From 3f9d443b1e9423e3b182fb81f3b9b9c5328bbbd3 Mon Sep 17 00:00:00 2001
From: Jennifer Kirsch <7807969+DysphoricUnicorn@users.noreply.github.com>
Date: Mon, 6 Dec 2021 21:01:33 +0100
Subject: [PATCH 0001/1641] Add link to example error page manifest (#8014)

Without this change it was a bit difficult to find the manifest so users might not know that there is one.
---
 docs/examples/customization/custom-errors/README.md | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/docs/examples/customization/custom-errors/README.md b/docs/examples/customization/custom-errors/README.md
index 3a925bed7..00b999859 100644
--- a/docs/examples/customization/custom-errors/README.md
+++ b/docs/examples/customization/custom-errors/README.md
@@ -4,7 +4,9 @@ This example demonstrates how to use a custom backend to render custom error pag
 
 ## Customized default backend
 
-First, create the custom `default-backend`. It will be used by the Ingress controller later on.
+First, create the custom `default-backend`. It will be used by the Ingress controller later on.  
+To do that, you can take a look at the [example manifest](https://github.com/kubernetes/ingress-nginx/blob/main/docs/examples/customization/custom-errors/custom-default-backend.yaml)
+in this project's GitHub repository.
 
 ```
 $ kubectl create -f custom-default-backend.yaml

From 6163231ef604664ccb0728367245527f13ec9fe7 Mon Sep 17 00:00:00 2001
From: Ana Claudia Riekstin <17534478+anaclaudiar@users.noreply.github.com>
Date: Tue, 7 Dec 2021 11:01:02 -0500
Subject: [PATCH 0002/1641] fix to really execute plugins in order (#8018)

---
 rootfs/etc/nginx/lua/plugins.lua           | 14 +++++++------
 rootfs/etc/nginx/lua/test/plugins_test.lua | 23 ++++++++++++++++++++++
 2 files changed, 31 insertions(+), 6 deletions(-)
 create mode 100644 rootfs/etc/nginx/lua/test/plugins_test.lua

diff --git a/rootfs/etc/nginx/lua/plugins.lua b/rootfs/etc/nginx/lua/plugins.lua
index 0c1fd899b..55e208a32 100644
--- a/rootfs/etc/nginx/lua/plugins.lua
+++ b/rootfs/etc/nginx/lua/plugins.lua
@@ -1,6 +1,5 @@
 local require = require
 local ngx = ngx
-local pairs = pairs
 local ipairs = ipairs
 local string_format = string.format
 local ngx_log = ngx.log
@@ -20,8 +19,11 @@ local function load_plugin(name)
     ngx_log(ERR, string_format("error loading plugin \"%s\": %s", path, plugin))
     return
   end
-
-  plugins[name] = plugin
+  local index = #plugins
+  if (plugin.name == nil or plugin.name == '') then
+    plugin.name = name
+  end
+  plugins[index + 1] = plugin
 end
 
 function _M.init(names)
@@ -39,9 +41,9 @@ end
 function _M.run()
   local phase = ngx.get_phase()
 
-  for name, plugin in pairs(plugins) do
+  for _, plugin in ipairs(plugins) do
     if plugin[phase] then
-      ngx_log(INFO, string_format("running plugin \"%s\" in phase \"%s\"", name, phase))
+      ngx_log(INFO, string_format("running plugin \"%s\" in phase \"%s\"", plugin.name, phase))
 
       -- TODO: consider sandboxing this, should we?
       -- probably yes, at least prohibit plugin from accessing env vars etc
@@ -50,7 +52,7 @@ function _M.run()
       local ok, err = pcall(plugin[phase])
       if not ok then
         ngx_log(ERR, string_format("error while running plugin \"%s\" in phase \"%s\": %s",
-            name, phase, err))
+            plugin.name, phase, err))
       end
     end
   end
diff --git a/rootfs/etc/nginx/lua/test/plugins_test.lua b/rootfs/etc/nginx/lua/test/plugins_test.lua
new file mode 100644
index 000000000..d7f789d0f
--- /dev/null
+++ b/rootfs/etc/nginx/lua/test/plugins_test.lua
@@ -0,0 +1,23 @@
+describe("plugins", function()
+  describe("#run", function()
+    it("runs the plugins in the given order", function()
+      ngx.get_phase = function() return "rewrite" end
+      local plugins = require("plugins")
+      local called_plugins = {}
+      local plugins_to_mock = {"plugins.pluginfirst.main", "plugins.pluginsecond.main", "plugins.pluginthird.main"}
+      for i=1, 3, 1
+      do
+        package.loaded[plugins_to_mock[i]] = {
+          rewrite = function()
+            called_plugins[#called_plugins + 1] = plugins_to_mock[i]
+          end
+        }
+      end
+      assert.has_no.errors(function()
+        plugins.init({"pluginfirst", "pluginsecond", "pluginthird"})
+      end)
+      assert.has_no.errors(plugins.run)
+      assert.are.same(plugins_to_mock, called_plugins)
+    end)
+  end)
+end)
\ No newline at end of file

From 5cff197bc51079f18a9714c69a0dd11e4bcf310b Mon Sep 17 00:00:00 2001
From: Yecheng Fu <cofyc.jackson@gmail.com>
Date: Wed, 8 Dec 2021 00:40:00 +0800
Subject: [PATCH 0003/1641] add canary-weight-total annotation (#6338)

---
 .../nginx-configuration/annotations.md        |  5 ++-
 internal/ingress/annotations/canary/main.go   |  6 ++++
 internal/ingress/controller/controller.go     |  1 +
 internal/ingress/types.go                     | 11 +++++--
 rootfs/etc/nginx/lua/balancer.lua             |  6 +++-
 rootfs/etc/nginx/lua/test/balancer_test.lua   | 14 ++++++++
 test/e2e/annotations/canary.go                | 33 +++++++++++++++++++
 7 files changed, 71 insertions(+), 5 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 481356936..46f7c23d4 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -41,6 +41,7 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/canary-by-header-pattern](#canary)|string|
 |[nginx.ingress.kubernetes.io/canary-by-cookie](#canary)|string|
 |[nginx.ingress.kubernetes.io/canary-weight](#canary)|number|
+|[nginx.ingress.kubernetes.io/canary-weight-total](#canary)|number|
 |[nginx.ingress.kubernetes.io/client-body-buffer-size](#client-body-buffer-size)|string|
 |[nginx.ingress.kubernetes.io/configuration-snippet](#configuration-snippet)|string|
 |[nginx.ingress.kubernetes.io/custom-http-errors](#custom-http-errors)|[]int|
@@ -138,7 +139,9 @@ In some cases, you may want to "canary" a new set of changes by sending a small
 
 * `nginx.ingress.kubernetes.io/canary-by-cookie`: The cookie to use for notifying the Ingress to route the request to the service specified in the Canary Ingress. When the cookie value is set to `always`, it will be routed to the canary. When the cookie is set to `never`, it will never be routed to the canary. For any other value, the cookie will be ignored and the request compared against the other canary rules by precedence.
 
-* `nginx.ingress.kubernetes.io/canary-weight`: The integer based (0 - 100) percent of random requests that should be routed to the service specified in the canary Ingress. A weight of 0 implies that no requests will be sent to the service in the Canary ingress by this canary rule. A weight of 100 means implies all requests will be sent to the alternative service specified in the Ingress.
+* `nginx.ingress.kubernetes.io/canary-weight`: The integer based (0 - <weight-total>) percent of random requests that should be routed to the service specified in the canary Ingress. A weight of 0 implies that no requests will be sent to the service in the Canary ingress by this canary rule. A weight of <weight-total> means implies all requests will be sent to the alternative service specified in the Ingress. `<weight-total>` defaults to 100, and can be increased via `nginx.ingress.kubernetes.io/canary-weight-total`.
+
+* `nginx.ingress.kubernetes.io/canary-weight-total`: The total weight of traffic. If unspecified, it defaults to 100.
 
 Canary rules are evaluated in order of precedence. Precedence is as follows:
 `canary-by-header -> canary-by-cookie -> canary-weight`
diff --git a/internal/ingress/annotations/canary/main.go b/internal/ingress/annotations/canary/main.go
index 3930b84d7..d9e53b3b8 100644
--- a/internal/ingress/annotations/canary/main.go
+++ b/internal/ingress/annotations/canary/main.go
@@ -32,6 +32,7 @@ type canary struct {
 type Config struct {
 	Enabled       bool
 	Weight        int
+	WeightTotal   int
 	Header        string
 	HeaderValue   string
 	HeaderPattern string
@@ -59,6 +60,11 @@ func (c canary) Parse(ing *networking.Ingress) (interface{}, error) {
 		config.Weight = 0
 	}
 
+	config.WeightTotal, err = parser.GetIntAnnotation("canary-weight-total", ing)
+	if err != nil {
+		config.WeightTotal = 100
+	}
+
 	config.Header, err = parser.GetStringAnnotation("canary-by-header", ing)
 	if err != nil {
 		config.Header = ""
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 75c06ad2d..99d1c8f35 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -896,6 +896,7 @@ func (n *NGINXController) createUpstreams(data []*ingress.Ingress, du *ingress.B
 				upstreams[defBackend].NoServer = true
 				upstreams[defBackend].TrafficShapingPolicy = ingress.TrafficShapingPolicy{
 					Weight:        anns.Canary.Weight,
+					WeightTotal:   anns.Canary.WeightTotal,
 					Header:        anns.Canary.Header,
 					HeaderValue:   anns.Canary.HeaderValue,
 					HeaderPattern: anns.Canary.HeaderPattern,
diff --git a/internal/ingress/types.go b/internal/ingress/types.go
index 033fa9cc4..78c2245ff 100644
--- a/internal/ingress/types.go
+++ b/internal/ingress/types.go
@@ -111,10 +111,15 @@ type Backend struct {
 // alternative backend
 // +k8s:deepcopy-gen=true
 type TrafficShapingPolicy struct {
-	// Weight (0-100) of traffic to redirect to the backend.
-	// e.g. Weight 20 means 20% of traffic will be redirected to the backend and 80% will remain
-	// with the other backend. 0 weight will not send any traffic to this backend
+	// Weight (0-<WeightTotal>) of traffic to redirect to the backend.
+	// e.g. <WeightTotal> defaults to 100, weight 20 means 20% of traffic will be
+	// redirected to the backend and 80% will remain with the other backend. If
+	// <WeightTotal> is set to 1000, weight 2 means 0.2% of traffic will be
+	// redirected to the backend and 99.8% will remain with the other backend.
+	// 0 weight will not send any traffic to this backend
 	Weight int `json:"weight"`
+	// The total weight of traffic (>= 100). If unspecified, it defaults to 100.
+	WeightTotal int `json:"weightTotal"`
 	// Header on which to redirect requests to this backend
 	Header string `json:"header"`
 	// HeaderValue on which to redirect requests to this backend
diff --git a/rootfs/etc/nginx/lua/balancer.lua b/rootfs/etc/nginx/lua/balancer.lua
index e83257a6f..b6c420c9f 100644
--- a/rootfs/etc/nginx/lua/balancer.lua
+++ b/rootfs/etc/nginx/lua/balancer.lua
@@ -259,7 +259,11 @@ local function route_to_alternative_balancer(balancer)
     end
   end
 
-  if math.random(100) <= traffic_shaping_policy.weight then
+  local weightTotal = 100
+  if traffic_shaping_policy.weightTotal ~= nil and traffic_shaping_policy.weightTotal > 100 then
+    weightTotal = traffic_shaping_policy.weightTotal
+  end
+  if math.random(weightTotal) <= traffic_shaping_policy.weight then
     return true
   end
 
diff --git a/rootfs/etc/nginx/lua/test/balancer_test.lua b/rootfs/etc/nginx/lua/test/balancer_test.lua
index 4f40bc6ae..2d42ad330 100644
--- a/rootfs/etc/nginx/lua/test/balancer_test.lua
+++ b/rootfs/etc/nginx/lua/test/balancer_test.lua
@@ -203,6 +203,20 @@ describe("Balancer", function()
           balancer.sync_backend(backend)
           assert.equal(false, balancer.route_to_alternative_balancer(_primaryBalancer))
         end)
+
+        it("returns true when weight is 1000 and weight total is 1000", function()
+          backend.trafficShapingPolicy.weight = 1000
+          backend.trafficShapingPolicy.weightTotal = 1000
+          balancer.sync_backend(backend)
+          assert.equal(true, balancer.route_to_alternative_balancer(_primaryBalancer))
+        end)
+
+        it("returns false when weight is 0 and weight total is 1000", function()
+          backend.trafficShapingPolicy.weight = 1000
+          backend.trafficShapingPolicy.weightTotal = 1000
+          balancer.sync_backend(backend)
+          assert.equal(true, balancer.route_to_alternative_balancer(_primaryBalancer))
+        end)
       end)
 
       describe("canary by cookie", function()
diff --git a/test/e2e/annotations/canary.go b/test/e2e/annotations/canary.go
index d189c972d..31e740434 100644
--- a/test/e2e/annotations/canary.go
+++ b/test/e2e/annotations/canary.go
@@ -773,6 +773,39 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				Contains(canaryService)
 		})
 
+		ginkgo.It("should route requests only to canary if canary weight is equal to canary weight total", func() {
+			host := "foo"
+			annotations := map[string]string{}
+
+			ing := framework.NewSingleIngress(host, "/", host,
+				f.Namespace, framework.EchoService, 80, annotations)
+			f.EnsureIngress(ing)
+
+			f.WaitForNginxServer(host,
+				func(server string) bool {
+					return strings.Contains(server, "server_name foo")
+				})
+
+			canaryIngName := fmt.Sprintf("%v-canary", host)
+			canaryAnnotations := map[string]string{
+				"nginx.ingress.kubernetes.io/canary":              "true",
+				"nginx.ingress.kubernetes.io/canary-weight":       "1000",
+				"nginx.ingress.kubernetes.io/canary-weight-total": "1000",
+			}
+
+			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
+				f.Namespace, canaryService, 80, canaryAnnotations)
+			f.EnsureIngress(canaryIng)
+
+			f.HTTPTestClient().
+				GET("/").
+				WithHeader("Host", host).
+				Expect().
+				Status(http.StatusOK).
+				Body().
+				Contains(canaryService)
+		})
+
 		ginkgo.It("should route requests evenly split between mainline and canary if canary weight is 50", func() {
 			host := "foo"
 			annotations := map[string]string{}

From 84db822a944aaddd560f5d0bc4044f073b2e6fd3 Mon Sep 17 00:00:00 2001
From: Alex Sears <searsaw@users.noreply.github.com>
Date: Tue, 7 Dec 2021 14:26:37 -0500
Subject: [PATCH 0004/1641] Add newline indenting to admission webhook
 annotations (#8015)

Signed-off-by: Alex Sears <me@alexsears.com>
---
 .../admission-webhooks/job-patch/job-createSecret.yaml          | 2 +-
 .../admission-webhooks/job-patch/job-patchWebhook.yaml          | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
index 46afc214c..e57bfde49 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
@@ -8,7 +8,7 @@ metadata:
     "helm.sh/hook": pre-install,pre-upgrade
     "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
     {{- with .Values.controller.admissionWebhooks.annotations }}
-    {{- toYaml . | indent 4 }}
+    {{- toYaml . | nindent 4 }}
     {{- end }}
   labels:
     {{- include "ingress-nginx.labels" . | nindent 4 }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
index 1e9438825..4f8ba14db 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
@@ -8,7 +8,7 @@ metadata:
     "helm.sh/hook": post-install,post-upgrade
     "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
     {{- with .Values.controller.admissionWebhooks.annotations }}
-    {{- toYaml . | indent 4 }}
+    {{- toYaml . | nindent 4 }}
     {{- end }}
   labels:
     {{- include "ingress-nginx.labels" . | nindent 4 }}

From a9029d2bc7ae8626152e5fc010829374fc950950 Mon Sep 17 00:00:00 2001
From: Aaron Crickenberger <spiffxp@google.com>
Date: Sun, 12 Dec 2021 05:19:59 -0800
Subject: [PATCH 0005/1641] images: use
 k8s-staging-test-infra/gcb-docker-gcloud (#7999)

---
 cloudbuild.yaml                               | 2 +-
 images/cfssl/cloudbuild.yaml                  | 2 +-
 images/custom-error-pages/cloudbuild.yaml     | 2 +-
 images/echo/cloudbuild.yaml                   | 2 +-
 images/fastcgi-helloserver/cloudbuild.yaml    | 2 +-
 images/go-grpc-greeter-server/cloudbuild.yaml | 2 +-
 images/httpbin/cloudbuild.yaml                | 2 +-
 images/kube-webhook-certgen/cloudbuild.yaml   | 2 +-
 images/nginx/cloudbuild.yaml                  | 2 +-
 images/test-runner/cloudbuild.yaml            | 2 +-
 10 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/cloudbuild.yaml b/cloudbuild.yaml
index 22f4771bb..a9d4a214c 100644
--- a/cloudbuild.yaml
+++ b/cloudbuild.yaml
@@ -4,7 +4,7 @@ timeout: 1800s
 options:
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: 'gcr.io/k8s-testimages/gcb-docker-gcloud:v20210722-085d930'
+  - name: 'gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90'
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/images/cfssl/cloudbuild.yaml b/images/cfssl/cloudbuild.yaml
index d80d2aeaf..a71001c89 100644
--- a/images/cfssl/cloudbuild.yaml
+++ b/images/cfssl/cloudbuild.yaml
@@ -2,7 +2,7 @@ timeout: 600s
 options:
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-testimages/gcb-docker-gcloud:v20201130-750d12f
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/images/custom-error-pages/cloudbuild.yaml b/images/custom-error-pages/cloudbuild.yaml
index 9b913b3e6..45cff0021 100644
--- a/images/custom-error-pages/cloudbuild.yaml
+++ b/images/custom-error-pages/cloudbuild.yaml
@@ -2,7 +2,7 @@ timeout: 1800s
 options:
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-testimages/gcb-docker-gcloud:v20201130-750d12f
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/images/echo/cloudbuild.yaml b/images/echo/cloudbuild.yaml
index 3e4d67d06..2f773cebc 100644
--- a/images/echo/cloudbuild.yaml
+++ b/images/echo/cloudbuild.yaml
@@ -2,7 +2,7 @@ timeout: 1200s
 options:
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-testimages/gcb-docker-gcloud:v20201130-750d12f
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index d80d2aeaf..a71001c89 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -2,7 +2,7 @@ timeout: 600s
 options:
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-testimages/gcb-docker-gcloud:v20201130-750d12f
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/images/go-grpc-greeter-server/cloudbuild.yaml b/images/go-grpc-greeter-server/cloudbuild.yaml
index 14c64db31..b92b9c877 100644
--- a/images/go-grpc-greeter-server/cloudbuild.yaml
+++ b/images/go-grpc-greeter-server/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
   # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
   machineType: N1_HIGHCPU_8
 steps:
-  - name: gcr.io/k8s-testimages/gcb-docker-gcloud:v20210622-762366a
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/images/httpbin/cloudbuild.yaml b/images/httpbin/cloudbuild.yaml
index 02f28b8ca..b92b9c877 100644
--- a/images/httpbin/cloudbuild.yaml
+++ b/images/httpbin/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
   # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
   machineType: N1_HIGHCPU_8
 steps:
-  - name: gcr.io/k8s-testimages/gcb-docker-gcloud:v20201130-750d12f
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/images/kube-webhook-certgen/cloudbuild.yaml b/images/kube-webhook-certgen/cloudbuild.yaml
index 8bdd225c5..d1eb9fe6e 100644
--- a/images/kube-webhook-certgen/cloudbuild.yaml
+++ b/images/kube-webhook-certgen/cloudbuild.yaml
@@ -17,7 +17,7 @@ timeout: 10800s
 options:
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-testimages/gcb-docker-gcloud:v20201130-750d12f
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index c5aca043e..d507b8f1a 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
   # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
   machineType: N1_HIGHCPU_32
 steps:
-  - name: gcr.io/k8s-testimages/gcb-docker-gcloud:v20210722-085d930
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/images/test-runner/cloudbuild.yaml b/images/test-runner/cloudbuild.yaml
index 7258ab384..253b99799 100644
--- a/images/test-runner/cloudbuild.yaml
+++ b/images/test-runner/cloudbuild.yaml
@@ -2,7 +2,7 @@ timeout: 3600s
 options:
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-testimages/gcb-docker-gcloud:v20201130-750d12f
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled

From ec21629b81b29b0f0f810a014c634bc78cfb5544 Mon Sep 17 00:00:00 2001
From: Tim Bannister <tim@scalefactory.com>
Date: Sun, 12 Dec 2021 13:21:58 +0000
Subject: [PATCH 0006/1641] Revise main documentation page (#8019)

- Revise to be more in line with the style guide for Kubernetes official docs
- Avoid recommending that readers use `k8s.io` namespaced controller names
  for their own custom controller configuration.

Co-authored-by: James Strong <strong.james.e@gmail.com>

Co-authored-by: James Strong <strong.james.e@gmail.com>
---
 docs/index.md | 118 +++++++++++++++++++++++++++++---------------------
 1 file changed, 69 insertions(+), 49 deletions(-)

diff --git a/docs/index.md b/docs/index.md
index 6aa2ea81c..182674947 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -1,31 +1,35 @@
-# Welcome
+# Overview
 
 This is the documentation for the NGINX Ingress Controller.
 
-It is built around the [Kubernetes Ingress resource](http://kubernetes.io/docs/user-guide/ingress/), using a [ConfigMap](https://kubernetes.io/docs/tasks/configure-pod-container/configure-pod-configmap/#understanding-configmaps-and-pods) to store the NGINX configuration.
+It is built around the [Kubernetes Ingress resource](https://kubernetes.io/docs/concepts/services-networking/ingress/), using a [ConfigMap](https://kubernetes.io/docs/concepts/configuration/configmap/) to store the controller configuration.
 
-Learn more about using Ingress on [k8s.io](http://kubernetes.io/docs/user-guide/ingress/).
+You can learn more about using [Ingress](http://kubernetes.io/docs/user-guide/ingress/) in the official [Kubernetes documentation](https://docs.k8s.io).
 
 ## Getting Started
 
 See [Deployment](./deploy/) for a whirlwind tour that will get you started.
 
 
-# FAQ - Migration to apiVersion networking.k8s.io/v1
+# FAQ - Migration to apiVersion `networking.k8s.io/v1`
 
-- Please read this [official blog on deprecated ingress api versions](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/) If you are using ingress objects in your pre K8s v1.22 cluster, and you upgrade to K8s v1.22, then this document may be relevant to you.
+If you are using Ingress objects in your cluster (running Kubernetes older than v1.22), and you plan to upgrade to Kubernetess v1.22, this section is relevant to you.
+
+- Please read this [official blog on deprecated Ingress API versions](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/) 
 
 - Please read this [official documentation on the IngressClass object](https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class)
 
-## What is an ingressClass and why is it important for users of Ingress-NGINX controller now ?
+## What is an IngressClass and why is it important for users of Ingress-NGINX controller now ?
 
 IngressClass is a Kubernetes resource. See the description below.
-Its important because until now, a default install of the Ingress-NGINX controller did not require a ingressClass object. But from version 1.0.0 of the Ingress-NGINX Controller, a ingressclass object is required.
+Its important because until now, a default install of the Ingress-NGINX controller did not require any IngressClass object. From version 1.0.0 of the Ingress-NGINX Controller, an IngressClass object is required.
 
-On clusters with more than one instance of the Ingress-NGINX controller, all instances of the controllers must be aware of which Ingress object they must serve. The ingressClass field of a ingress object is the way to let the controller know about that. 
+On clusters with more than one instance of the Ingress-NGINX controller, all instances of the controllers must be aware of which Ingress objects they serve. The `ingressClassName` field of an Ingress is the way to let the controller know about that. 
 
 ```
-_$ k explain ingressClass                                                           
+kubectl explain ingressclass                                                           
+```
+```
 KIND:     IngressClass                                                               
 VERSION:  networking.k8s.io/v1                     
 
@@ -63,23 +67,25 @@ FIELDS:
 
 There are 2 reasons primarily.
 
-(Reason #1) Until K8s version 1.21, it was possible to create a ingress resource, with the "apiVersion:" field set to a value like:
+_(Reason #1)_ Until K8s version 1.21, it was possible to create an Ingress resource using deprecated versions of the Ingress API, such as:
 
-  - extensions/v1beta1
-  - networking.k8s.io/v1beta1
+  - `extensions/v1beta1`
+  - `networking.k8s.io/v1beta1`
 
-You would get a message about deprecation but the ingress resource would get created.
+You would get a message about deprecation, but the Ingress resource would get created.
 
-From K8s version 1.22 onwards, you can ONLY set the "apiVersion:" field of a ingress resource, to the value "networking.k8s.io/v1". The reason is [official blog on deprecated ingress api versions](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/).
+From K8s version 1.22 onwards, you can **only** access the Ingress API via the stable, `networking.k8s.io/v1` API. The reason is explained in the [official blog on deprecated ingress API versions](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/).
 
-(Reason #2) When you upgrade to K8s version v1.22, while you are already using the Ingress-NGINX controller, there are several scenarios where the old existing ingress objects will not work. Read this FAQ to check which scenario matches your use case.
+_(Reason #2)_ if you are already using the Ingress-NGINX controller and then upgrade to K8s version v1.22 , there are several scenarios where your existing Ingress objects will not work how you expect. Read this FAQ to check which scenario matches your use case.
 
 ## What is ingressClassName field ?
 
-ingressClassName is a field in the specs of a ingress object.
+`ingressClassName` is a field in the specs of an Ingress object.
 
+```shell
+kubectl explain ingress.spec.ingressClassName
+```
 ```
-% k explain ingress.spec.ingressClassName
 KIND:     Ingress
 VERSION:  networking.k8s.io/v1
 
@@ -97,25 +103,27 @@ DESCRIPTION:
      for this field. For more information, refer to the IngressClass
      documentation.
 ```
- the spec.ingressClassName behavior has precedence over the annotation.
+
+The `.spec.ingressClassName` behavior has precedence over the deprecated `kubernetes.io/ingress.class` annotation.
 
 
 
-## I have only one instance of the Ingresss-NGINX controller in my cluster. What should I do ?
+## I have only one instance of the Ingress-NGINX controller in my cluster. What should I do ?
 
-- If you have only one instance of the Ingress-NGINX controller running in your cluster, and you still want to use ingressclass, you should add the annotation "ingressclass.kubernetes.io/is-default-class" in your ingress class, so any new Ingress objects will have this one as default ingressClass.
+- If you have only one instance of the Ingress-NGINX controller running in your cluster, and you still want to use IngressClass, you should add the annotation `ingressclass.kubernetes.io/is-default-class` in your IngressClass, so that any new Ingress objects will have this one as default IngressClass.
 
-In this case, you need to make your Controller aware of the objects. If you have several Ingress objects and they don't yet have the [ingressClassName](https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.20/#ingress-v1-networking-k8s-io) field, or the ingress annotation (`kubernetes.io/ingress.class`),  then you should start your ingress-controller with the flag [--watch-ingress-without-class=true](## What is the flag '--watch-ingress-without-class' ?) .
+In this case, you need to make your controller aware of the objects. If you have any Ingress objects that don't yet have either the [`.spec.ingressClassName`](https://kubernetes.io/docs/reference/kubernetes-api/service-resources/ingress-v1/#IngressSpec) field set in their manifest, or the ingress annotation (`kubernetes.io/ingress.class`), then you should start your Ingress-NGINX controller with the flag `--watch-ingress-without-class=true`.
 
-You can configure your helm chart installation's values file with `.controller.watchIngressWithoutClass: true`. 
+You can configure your Helm chart installation's values file with `.controller.watchIngressWithoutClass: true`. 
 
-We highly recommend that you create the ingressClass as shown below:
+We recommend that you create the IngressClass as shown below:
 ```
+---
 apiVersion: networking.k8s.io/v1
 kind: IngressClass
 metadata:
   labels:
-    app.kubernetes.io/component: controller
+    app.kubernetes.io/component: controller 
   name: nginx
   annotations:
     ingressclass.kubernetes.io/is-default-class: "true"
@@ -124,16 +132,17 @@ spec:
 ```
 And add the value "spec.ingressClassName=nginx" in your Ingress objects
 
-## I have multiple ingress objects in my cluster. What should I do ?
-- If you don't care about ingressClass, or you have a lot of ingress objects without ingressClass configuration, you can run the ingress-controller with the flag `--watch-ingress-without-class=true`.
+## I have multiple Ingress objects in my cluster. What should I do ?
+- If you don't care about ingress classes, or you have a lot of Ingress objects without any IngressClass configuration, you can run the ingress-controller with the flag `--watch-ingress-without-class=true`.
 
-## What is the flag '--watch-ingress-without-class' ?
-- Its a flag that is passed,as an argument, to the ingress-controller executable, in the pod spec. It looks like this ;
+### What is the flag '--watch-ingress-without-class' ?
+- Its a flag that is passed,as an argument, to the `nginx-ingress-controller` executable. In the configuration, it looks like this ;
 ```
 ...
 ...
 args:
   - /nginx-ingress-controller
+  - --watch-ingress-without-class=true
   - --publish-service=$(POD_NAMESPACE)/ingress-nginx-dev-v1-test-controller
   - --election-id=ingress-controller-leader
   - --controller-class=k8s.io/ingress-nginx
@@ -141,45 +150,56 @@ args:
   - --validating-webhook=:8443
   - --validating-webhook-certificate=/usr/local/certificates/cert
   - --validating-webhook-key=/usr/local/certificates/key
-  - --watch-ingress-without-class=true
 ...
 ...
 ```
 
 ## I have more than one controller in my cluster and already use the annotation ?
+
 No problem. This should still keep working, but we highly recommend you to test!
 
-## I have more than one controller running in my cluster, and I want to use the new spec ?
-In this scenario, you need to create multiple ingressClasses (see example one). But be aware that ingressClass works in a very specific way: you will need to change the .spec.controller value in your IngressClass and point the controller to the relevant ingressClass. Let's see some example, supposing that you have two Ingress Classes:
+Even though `kubernetes.io/ingress.class` is deprecated, the Ingress-NGINX controller still understands that annotation.
+If you want to follow good practice, you should consider migrating to use IngressClass and `.spec.ingressClassName`.
 
-- Ingress-Nginx-IngressClass-1 with .spec.controller equals to "k8s.io/ingress-nginx1"
-- Ingress-Nginx-IngressClass-2 with .spec.controller equals to "k8s.io/ingress-nginx2"
+## I have more than one controller running in my cluster, and I want to use the new API ?
+
+In this scenario, you need to create multiple IngressClasses (see example one). But be aware that IngressClass works in a very specific way: you will need to change the `.spec.controller` value in your IngressClass and configure the controller to expect the exact same value.
+
+Let's see some example, supposing that you have three IngressClasses:
+
+- IngressClass `ingress-nginx-one`, with `.spec.controller` equal to `example.com/ingress-nginx1`
+- IngressClass `ingress-nginx-two`, with `.spec.controller` equal to `example.com/ingress-nginx2`
+- IngressClass `ingress-nginx-three`, with `.spec.controller` equal to `example.com/ingress-nginx1`
+
+(for private use, you can also use a controller name that doesn't contain a `/`; for example: `ingress-nginx1`)
 
 When deploying your ingress controllers, you will have to change the `--controller-class` field as follows:
 
-- Ingress-Nginx-Controller-nginx1 with `k8s.io/ingress-nginx1`
-- Ingress-Nginx-Controller-nginx2 with `k8s.io/ingress-nginx2`
+- Ingress-Nginx A, configured to use controller class name `example.com/ingress-nginx1`
+- Ingress-Nginx B, configured to use controller class name `example.com/ingress-nginx2`
 
-Then, when you create an Ingress Object with IngressClassName = `ingress-nginx2`, it will look for controllers with `controller-class=k8s.io/ingress-nginx2` and as `Ingress-Nginx-Controller-nginx2` is watching objects that points to `ingressClass="k8s.io/ingress-nginx2`, it will serve that object, while `Ingress-Nginx-Controller-nginx1` will ignore the ingress object.
+Then, when you create an Ingress object with its `ingressClassName` set to `ingress-nginx-two`, only controllers looking for the `example.com/ingress-nginx2` controller class pay attention to the new object. Given that Ingress-Nginx B is set up that way, it will serve that object, whereas Ingress-Nginx A ignores the new Ingress.
 
-Bear in mind that, if your `Ingress-Nginx-Controller-nginx2` is started with the flag `--watch-ingress-without-class=true`, then it will serve:
+Bear in mind that, if you start Ingress-Nginx B with the command line argument `--watch-ingress-without-class=true`, then it will serve:
 
-- objects without ingress-class
-- objects with the annotation configured in flag `--ingress-class` and same class value
-- and also objects pointing to the ingressClass that have the same .spec.controller as configured in `--controller-class`
+1. Ingresses without any `ingressClassName` set
+2. Ingresses where the the deprecated annotation (`kubernetes.io/ingress.class`) matches the value set in the command line argument `--ingress-class`
+3. Ingresses that refer to any IngressClass that has the same `spec.controller` as configured in `--controller-class`
 
+If you start Ingress-Nginx B with the command line argument `--watch-ingress-without-class=true` and you run Ingress-Nginx A with the command line argument `--watch-ingress-without-class=false` then this is a supported configuration. If you have two Ingress-NGINX controllers for the same cluster, both running with `--watch-ingress-without-class=true` then there is likely to be a conflict.
 
-## I am seeing this error message in the logs of the Ingress-NGINX controller "ingress class annotation is not equal to the expected by Ingress Controller". Why ?
-- It is highly likely that you will also see the name of the ingress resource in the same error message. This error messsage has been observed on use the deprecated annotation, to spec the ingressClass, in a ingress resource manifest. It is recommended to use the ingress.spec.ingressClassName field, of the ingress resource, to spec the name of the ingressClass of the ingress resource being configured.
+## I am seeing this error message in the logs of the Ingress-NGINX controller: "ingress class annotation is not equal to the expected by Ingress Controller". Why ?
+
+- It is highly likely that you will also see the name of the ingress resource in the same error message. This error messsage has been observed on use the deprecated annotation (`kubernetes.io/ingress.class`) in a Ingress resource manifest. It is recommended to use the `.spec.ingressClassName` field of the Ingress resource, to specify the name of the IngressClass of the Ingress you are defining.
 
 ## How to easily install multiple instances of the ingress-NGINX controller in the same cluster ?
 - Create a new namespace
   ```
   kubectl create namespace ingress-nginx-2
   ```
-- Use helm to install the additional instance of the ingress controller
-- Ensure you have helm working (refer to helm documentation)
-- We have to assume that you have the helm repo for the ingress-NGINX controller already added to your helm config. But, if you have not added the helm repo then you can do this to add the repo to your helm config;
+- Use Helm to install the additional instance of the ingress controller
+- Ensure you have Helm working (refer to the [Helm documentation](https://helm.sh/docs/))
+- We have to assume that you have the helm repo for the ingress-NGINX controller already added to your Helm config. But, if you have not added the helm repo then you can do this to add the repo to your helm config;
   ```
   helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx
   ```
@@ -187,13 +207,13 @@ Bear in mind that, if your `Ingress-Nginx-Controller-nginx2` is started with the
   ```
   helm repo update
   ```
-- Now you install the additional instance of the ingress-NGINX controller like this ;
+- Now, install an additional instance of the ingress-NGINX controller like this ;
   ```
   helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
   --namespace ingress-nginx-2 \
-  --set controller.ingressClassResource.name=nginx-2 \
-  --set controller.ingressClassResource.controllerValue="k8s.io/ingress-nginx-2" \
+  --set controller.ingressClassResource.name=nginx-two \
+  --set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
   --set controller.ingressClassResource.enabled=true \
   --set controller.ingressClassByName=true
   ```
-- If you need to install yet another instance, then repeat the procedure to create a new namespace, change the values like names & namespaces (for example from "-2" to "-3"), or anything else that meets your needs.
+- If you need to install yet another instance, then repeat the procedure to create a new namespace, change the values such as names & namespaces (for example from "-2" to "-3"), or anything else that meets your needs.

From 8ccec8449652b08d65d0a29838e66b5ea8624b29 Mon Sep 17 00:00:00 2001
From: dmitry-j-mikhin <41896087+dmitry-j-mikhin@users.noreply.github.com>
Date: Sun, 12 Dec 2021 16:25:58 +0300
Subject: [PATCH 0007/1641] fix nginx compilation flags (#8023)

* use '-O2' instead of '-Og'
  '-O2' produce production optimized binary while '-Og' is used mostly
  for debugging
* use '-mtune=generic' instead of '-mtune=native'
  '-mtune=native' produce optimal code for builder host system, but it
  can be sub-optimal for execution host system
---
 images/nginx/rootfs/build.sh | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index ab64d5d94..1aa655523 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -637,7 +637,7 @@ WITH_FLAGS="--with-debug \
 
 # "Combining -flto with -g is currently experimental and expected to produce unexpected results."
 # https://gcc.gnu.org/onlinedocs/gcc/Optimize-Options.html
-CC_OPT="-g -Og -fPIE -fstack-protector-strong \
+CC_OPT="-g -O2 -fPIE -fstack-protector-strong \
   -Wformat \
   -Werror=format-security \
   -Wno-deprecated-declarations \
@@ -656,7 +656,7 @@ if [[ ${ARCH} != "aarch64" ]]; then
 fi
 
 if [[ ${ARCH} == "x86_64" ]]; then
-  CC_OPT+=' -m64 -mtune=native'
+  CC_OPT+=' -m64 -mtune=generic'
 fi
 
 WITH_MODULES=" \

From 7bae2e7321a7bc623e85fbcae8ecab11206f2499 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 15 Dec 2021 11:38:27 -0300
Subject: [PATCH 0008/1641] Comment busy owners (#8035)

* Cleanup owners files

* Cleanup owners files
---
 OWNERS         | 2 --
 OWNERS_ALIASES | 8 ++++++--
 docs/OWNERS    | 3 +++
 3 files changed, 9 insertions(+), 4 deletions(-)

diff --git a/OWNERS b/OWNERS
index 1d90c4cd5..20082fb1f 100644
--- a/OWNERS
+++ b/OWNERS
@@ -1,9 +1,7 @@
 # See the OWNERS docs: https://github.com/kubernetes/community/blob/master/contributors/guide/owners.md
 
 approvers:
-- ingress-nginx-admins
 - ingress-nginx-maintainers
-- sig-network-leads
 
 reviewers:
 - ingress-nginx-reviewers
diff --git a/OWNERS_ALIASES b/OWNERS_ALIASES
index f147d0f89..286a0d998 100644
--- a/OWNERS_ALIASES
+++ b/OWNERS_ALIASES
@@ -9,16 +9,15 @@ aliases:
   ingress-nginx-admins:
   - bowei
   - rikatz
+  - strongjz
 
   ingress-nginx-maintainers:
   - ElvinEfendi
-  - justinsb
   - rikatz
   - strongjz
 
   ingress-nginx-reviewers:
   - ElvinEfendi
-  - cmluciano
   - rikatz
   - strongjz
   - tao12345666333
@@ -31,5 +30,10 @@ aliases:
   - ChiefAlexander
   - cpanato
 
+  ingress-nginx-docs-maintainers:
+  - IamNoah1
+  - longwuyuan
+  - tao12345666333
+
   ingress-nginx-kube-webhook-certgen-reviewers:
   - invidian
diff --git a/docs/OWNERS b/docs/OWNERS
index 1d3805a73..e8b886e5b 100644
--- a/docs/OWNERS
+++ b/docs/OWNERS
@@ -1,4 +1,7 @@
 # See the OWNERS docs: https://github.com/kubernetes/community/blob/master/contributors/guide/owners.md
 
+approvers:
+- ingress-nginx-docs-maintainers
+
 labels:
 - area/docs
\ No newline at end of file

From 13e711bdddf4fe302ffe899ee3ca2c40d9120ae7 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 15 Dec 2021 12:51:51 -0500
Subject: [PATCH 0009/1641] remove 109 check till gosec resolves issues (#8044)

---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 67a9ac74d..b7cf3bce1 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -51,7 +51,7 @@ jobs:
           # G601 for zz_generated.deepcopy.go
           # G306 TODO: Expect WriteFile permissions to be 0600 or less
           # G307 TODO: Deferring unsafe method "Close"
-          args: -exclude=G601,G104,G204,G304,G306,G307 -tests=false -exclude-dir=test -exclude-dir=images/  -exclude-dir=docs/ ./...
+          args: -exclude=G109,G601,G104,G204,G304,G306,G307 -tests=false -exclude-dir=test -exclude-dir=images/  -exclude-dir=docs/ ./...
 
   build:
     name: Build

From 2ff5af08d425d9b20744c333f4d68a7781c0b86b Mon Sep 17 00:00:00 2001
From: Mani Kanth <manikanth04@gmail.com>
Date: Wed, 22 Dec 2021 16:23:35 +0530
Subject: [PATCH 0010/1641] docs_multiple_instances_one_cluster_ticket_7543
 (#8042)

---
 docs/index.md                       | 6 ++++--
 docs/user-guide/multiple-ingress.md | 8 +++++---
 2 files changed, 9 insertions(+), 5 deletions(-)

diff --git a/docs/index.md b/docs/index.md
index 182674947..b06141814 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -132,8 +132,10 @@ spec:
 ```
 And add the value "spec.ingressClassName=nginx" in your Ingress objects
 
-## I have multiple Ingress objects in my cluster. What should I do ?
-- If you don't care about ingress classes, or you have a lot of Ingress objects without any IngressClass configuration, you can run the ingress-controller with the flag `--watch-ingress-without-class=true`.
+
+## I have multiple ingress objects in my cluster. What should I do ?
+- If you have lot of ingress objects without ingressClass configuration, you can run the ingress-controller with the flag `--watch-ingress-without-class=true`.
+
 
 ### What is the flag '--watch-ingress-without-class' ?
 - Its a flag that is passed,as an argument, to the `nginx-ingress-controller` executable. In the configuration, it looks like this ;
diff --git a/docs/user-guide/multiple-ingress.md b/docs/user-guide/multiple-ingress.md
index b0125c3b2..f13574044 100644
--- a/docs/user-guide/multiple-ingress.md
+++ b/docs/user-guide/multiple-ingress.md
@@ -2,13 +2,14 @@
 
 By default, deploying multiple Ingress controllers (e.g., `ingress-nginx` & `gce`) will result in all controllers simultaneously racing to update Ingress status fields in confusing ways.
 
-To fix this problem, you can either use [IngressClasses](https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class) (preferred) or use the `kubernetes.io/ingress.class` annotation (in deprecation).
+To fix this problem, use [IngressClasses](https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class), the `kubernetes.io/ingress.class` annotation  is deprecated from kubernetes v1.22+.
 
 ## Using IngressClasses
 
 If all ingress controllers respect IngressClasses (e.g. multiple instances of ingress-nginx v1.0), you can deploy two Ingress controllers by granting them control over two different IngressClasses, then selecting one of the two IngressClasses with `ingressClassName`.
+When two or more 
 
-First, ensure the `--controller-class=` is set to something different on each ingress controller:
+First, ensure the `--controller-class=` and `--ingress-class` are set to something different on each ingress controller:
 
 ```yaml
 # ingress-nginx Deployment/Statfulset
@@ -19,7 +20,8 @@ spec:
          - name: ingress-nginx-internal-controller
            args:
              - /nginx-ingress-controller
-             - '--controller-class=k8s.io/internal-ingress-nginx'
+             - '--controller-class=k8s.io/internal-nginx'
+             - '--ingress-class=k8s.io/internal-nginx'
             ...
 ```
 

From fea7fed6dad9e468f46d24a05f13aa4df0e85350 Mon Sep 17 00:00:00 2001
From: Moh Basher <36448614+besha100@users.noreply.github.com>
Date: Thu, 23 Dec 2021 12:34:38 +0100
Subject: [PATCH 0011/1641] Disable default modsecurity_rules_file if
 modsecurity-snippet is specified (#8021)

* Disabled default modsecurity_rules_file if modsecurity-snippet is specifed

The default modsecurity_rules_file overwrites the ModSecurity-snippet if it is specified with custom config settings like "SecRuleEngine On". This will not let Modsecurity be in blocking mode even if "SecRuleEngine On" is specified in the ModSecurity-snippet configuration

* Remove unnecessary comments

Only have the default Modsecurity conf settings in case Modsecurity configuration snippet is not present and remove unnecessary comments

* Fixed modsecurity default file only if Modsecurity snippet present

Fixed if condition  Modsecurity snippet present have modsecurity default config file

* Added e2e test to disabling modsecurity conf

Added e2e in case modsecurity-snippet enabled to disable settings in default modsecurity.conf

* Validate writing to a different location

Validate also modsecurity to write to a different location instead of the default directory

* Fixed the formatting

* Fixed if empty ModsecuritySnippet

* Fixed ModsecuritySnippet condition

* Fixed the condition also in ingress controller template

* Removed the default config condition  in ingress controller template

* Fixed the default config condition in ingress controller template

* Fixed pull-ingress-nginx-test

* Revert "Fixed the default config condition in ingress controller template"

This reverts commit 9d38eca40fe615a4c756500ca57b05634240edde.

* Revert template_test

* Adjusted the formating %v
---
 .../ingress/controller/template/template.go   |  2 +-
 .../controller/template/template_test.go      |  4 +-
 rootfs/etc/nginx/template/nginx.tmpl          |  6 +--
 .../annotations/modsecurity/modsecurity.go    | 37 +++++++++++++++++++
 4 files changed, 43 insertions(+), 6 deletions(-)

diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index ae5ec259a..e5be1490a 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -1537,7 +1537,7 @@ func buildModSecurityForLocation(cfg config.Configuration, location *ingress.Loc
 `, location.ModSecurity.TransactionID))
 	}
 
-	if !isMSEnabled {
+	if !isMSEnabled && location.ModSecurity.Snippet == "" {
 		buffer.WriteString(`modsecurity_rules_file /etc/nginx/modsecurity/modsecurity.conf;
 `)
 	}
diff --git a/internal/ingress/controller/template/template_test.go b/internal/ingress/controller/template/template_test.go
index cfb65c08e..b65e33c32 100644
--- a/internal/ingress/controller/template/template_test.go
+++ b/internal/ingress/controller/template/template_test.go
@@ -1781,8 +1781,8 @@ func TestModSecurityForLocation(t *testing.T) {
 		{"configmap enabled, configmap OWASP enabled, annotation enabled, OWASP disabled", true, true, true, true, false, "", "", ""},
 		{"configmap disabled, annotation enabled, OWASP disabled", false, false, true, true, false, "", "", fmt.Sprintf("%v%v", loadModule, modSecCfg)},
 		{"configmap disabled, annotation disabled, OWASP disabled", false, false, false, true, false, "", "", ""},
-		{"configmap disabled, annotation enabled, OWASP disabled", false, false, true, true, false, testRule, "", fmt.Sprintf("%v%v%v", loadModule, modsecRule, modSecCfg)},
-		{"configmap disabled, annotation enabled, OWASP enabled", false, false, true, true, false, testRule, "", fmt.Sprintf("%v%v%v", loadModule, modsecRule, modSecCfg)},
+		{"configmap disabled, annotation enabled, OWASP disabled", false, false, true, true, false, testRule, "", fmt.Sprintf("%v%v", loadModule, modsecRule)},
+		{"configmap disabled, annotation enabled, OWASP enabled", false, false, true, true, false, testRule, "", fmt.Sprintf("%v%v", loadModule, modsecRule)},
 	}
 
 	for _, testCase := range testCases {
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index c6e978ffe..0cc8d3cab 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -153,10 +153,10 @@ http {
     modsecurity_rules '
       {{ $all.Cfg.ModsecuritySnippet }}
     ';
-    {{ end }}
-
+    {{ else }}
     modsecurity_rules_file /etc/nginx/modsecurity/modsecurity.conf;
-
+    {{ end }}
+    
     {{ if $all.Cfg.EnableOWASPCoreRules }}
     modsecurity_rules_file /etc/nginx/owasp-modsecurity-crs/nginx-modsecurity.conf;
     {{ end }}
diff --git a/test/e2e/annotations/modsecurity/modsecurity.go b/test/e2e/annotations/modsecurity/modsecurity.go
index f88d6541e..4de85818d 100644
--- a/test/e2e/annotations/modsecurity/modsecurity.go
+++ b/test/e2e/annotations/modsecurity/modsecurity.go
@@ -342,4 +342,41 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 			Expect().
 			Status(http.StatusOK)
 	})
+
+	ginkgo.It("should disable default modsecurity conf setting when modsecurity-snippet is specified", func() {
+		host := "modsecurity.foo.com"
+		nameSpace := f.Namespace
+
+		snippet := `SecRuleEngine On
+		SecRequestBodyAccess On
+		SecAuditEngine RelevantOnly
+		SecAuditLogParts ABIJDEFHZ
+		SecAuditLogType Concurrent
+		SecAuditLog /var/tmp/modsec_audit.log
+		SecAuditLogStorageDir /var/tmp/
+		SecRule REQUEST_HEADERS:User-Agent \"block-ua\" \"log,deny,id:107,status:403,msg:\'UA blocked\'\"`
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/enable-modsecurity":  "true",
+			"nginx.ingress.kubernetes.io/modsecurity-snippet": snippet,
+		}
+		f.UpdateNginxConfigMapData("annotation-value-word-blocklist", "load_module, lua_package, _by_lua, location, root, {, }")
+		// Sleep a while just to guarantee that the configmap is applied
+		framework.Sleep()
+		ing := framework.NewSingleIngress(host, "/", host, nameSpace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return !strings.Contains(server, "modsecurity_rules_file /etc/nginx/modsecurity/modsecurity.conf;") &&
+					strings.Contains(server, "SecAuditLog /var/tmp/modsec_audit.log")
+			})
+
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			WithHeader("User-Agent", "block-ua").
+			Expect().
+			Status(http.StatusForbidden)
+	})
 })

From cf6ea087392f6f14aeec76664e0fe99f294fe2b1 Mon Sep 17 00:00:00 2001
From: Noah Ispas <13436814+iamNoah1@users.noreply.github.com>
Date: Thu, 23 Dec 2021 20:40:30 +0100
Subject: [PATCH 0012/1641] align bug report with feature request regarding
 kind documentation (#8051)

---
 .github/ISSUE_TEMPLATE/bug_report.md | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/.github/ISSUE_TEMPLATE/bug_report.md b/.github/ISSUE_TEMPLATE/bug_report.md
index f266d0f29..9f8fd83ba 100644
--- a/.github/ISSUE_TEMPLATE/bug_report.md
+++ b/.github/ISSUE_TEMPLATE/bug_report.md
@@ -131,6 +131,9 @@ kubectl exec -it -n ingress-nginx $POD_NAME -- curl -H 'Host: foo.bar' localhost
 
 **Anything else we need to know**:
 
-<!-- If this is actually about documentation, add `/kind documentation` below -->
+<!-- If this is actually about documentation, uncomment the following block -->
 
-/kind bug
+<!-- 
+/kind documentation
+/remove-kind bug
+-->

From ce9deaa33280c6125d67a4da765a94114d048862 Mon Sep 17 00:00:00 2001
From: Tobias Salzmann <796084+Eun@users.noreply.github.com>
Date: Thu, 23 Dec 2021 20:46:30 +0100
Subject: [PATCH 0013/1641] Add stream-snippet as a ConfigMap and Annotation
 option (#8029)

* stream snippet

* gofmt -s
---
 .../nginx-configuration/annotations.md        |  18 +++
 .../nginx-configuration/configmap.md          |   5 +
 internal/ingress/annotations/annotations.go   |   3 +
 .../ingress/annotations/streamsnippet/main.go |  40 +++++
 .../annotations/streamsnippet/main_test.go    |  64 ++++++++
 internal/ingress/controller/config/config.go  |  12 +-
 internal/ingress/controller/controller.go     |  17 +++
 internal/ingress/controller/nginx.go          |   1 +
 internal/ingress/types.go                     |   2 +
 rootfs/etc/nginx/template/nginx.tmpl          |   5 +
 test/e2e/annotations/streamsnippet.go         | 138 ++++++++++++++++++
 test/e2e/settings/stream_snippet.go           |  85 +++++++++++
 12 files changed, 386 insertions(+), 4 deletions(-)
 create mode 100644 internal/ingress/annotations/streamsnippet/main.go
 create mode 100644 internal/ingress/annotations/streamsnippet/main_test.go
 create mode 100644 test/e2e/annotations/streamsnippet.go
 create mode 100644 test/e2e/settings/stream_snippet.go

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 46f7c23d4..5a217c27d 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -99,6 +99,7 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/session-cookie-conditional-samesite-none](#cookie-affinity)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/ssl-redirect](#server-side-https-enforcement-through-redirect)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/ssl-passthrough](#ssl-passthrough)|"true" or "false"|
+|[nginx.ingress.kubernetes.io/stream-snippet](#stream-snippet)|string|
 |[nginx.ingress.kubernetes.io/upstream-hash-by](#custom-nginx-upstream-hashing)|string|
 |[nginx.ingress.kubernetes.io/x-forwarded-prefix](#x-forwarded-prefix-header)|string|
 |[nginx.ingress.kubernetes.io/load-balance](#custom-nginx-load-balancing)|string|
@@ -927,3 +928,20 @@ nginx.ingress.kubernetes.io/mirror-request-body: "off"
 The request sent to the mirror is linked to the original request. If you have a slow mirror backend, then the original request will throttle.
 
 For more information on the mirror module see [ngx_http_mirror_module](https://nginx.org/en/docs/http/ngx_http_mirror_module.html)
+
+
+### Stream snippet
+
+Using the annotation `nginx.ingress.kubernetes.io/stream-snippet` it is possible to add custom stream configuration.
+
+```yaml
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  annotations:
+    nginx.ingress.kubernetes.io/stream-snippet: |
+      server {
+        listen 8000;
+        proxy_pass 127.0.0.1:80;
+      }
+```
\ No newline at end of file
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index b217eee49..d35a19b1a 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -156,6 +156,7 @@ The following table shows a configuration option's name, type, and the default v
 |[main-snippet](#main-snippet)|string|""|
 |[http-snippet](#http-snippet)|string|""|
 |[server-snippet](#server-snippet)|string|""|
+|[stream-snippet](#stream-snippet)|string|""|
 |[location-snippet](#location-snippet)|string|""|
 |[custom-http-errors](#custom-http-errors)|[]int|[]int{}|
 |[proxy-body-size](#proxy-body-size)|string|"1m"|
@@ -988,6 +989,10 @@ Adds custom configuration to the http section of the nginx configuration.
 
 Adds custom configuration to all the servers in the nginx configuration.
 
+## stream-snippet
+
+Adds custom configuration to the stream section of the nginx configuration.
+
 ## location-snippet
 
 Adds custom configuration to all the locations in the nginx configuration.
diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index 9fb53dd1e..fe7400ac7 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -22,6 +22,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/modsecurity"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/proxyssl"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/sslcipher"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/streamsnippet"
 	"k8s.io/klog/v2"
 
 	apiv1 "k8s.io/api/core/v1"
@@ -115,6 +116,7 @@ type Ingress struct {
 	InfluxDB           influxdb.Config
 	ModSecurity        modsecurity.Config
 	Mirror             mirror.Config
+	StreamSnippet      string
 }
 
 // Extractor defines the annotation parsers to be used in the extraction of annotations
@@ -165,6 +167,7 @@ func NewAnnotationExtractor(cfg resolver.Resolver) Extractor {
 			"BackendProtocol":      backendprotocol.NewParser(cfg),
 			"ModSecurity":          modsecurity.NewParser(cfg),
 			"Mirror":               mirror.NewParser(cfg),
+			"StreamSnippet":        streamsnippet.NewParser(cfg),
 		},
 	}
 }
diff --git a/internal/ingress/annotations/streamsnippet/main.go b/internal/ingress/annotations/streamsnippet/main.go
new file mode 100644
index 000000000..fb22f754c
--- /dev/null
+++ b/internal/ingress/annotations/streamsnippet/main.go
@@ -0,0 +1,40 @@
+/*
+Copyright 2021 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package streamsnippet
+
+import (
+	networking "k8s.io/api/networking/v1"
+
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/resolver"
+)
+
+type streamSnippet struct {
+	r resolver.Resolver
+}
+
+// NewParser creates a new server snippet annotation parser
+func NewParser(r resolver.Resolver) parser.IngressAnnotation {
+	return streamSnippet{r}
+}
+
+// Parse parses the annotations contained in the ingress rule
+// used to indicate if the location/s contains a fragment of
+// configuration to be included inside the paths of the rules
+func (a streamSnippet) Parse(ing *networking.Ingress) (interface{}, error) {
+	return parser.GetStringAnnotation("stream-snippet", ing)
+}
diff --git a/internal/ingress/annotations/streamsnippet/main_test.go b/internal/ingress/annotations/streamsnippet/main_test.go
new file mode 100644
index 000000000..0b8e3e3aa
--- /dev/null
+++ b/internal/ingress/annotations/streamsnippet/main_test.go
@@ -0,0 +1,64 @@
+/*
+Copyright 2021 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package streamsnippet
+
+import (
+	"testing"
+
+	api "k8s.io/api/core/v1"
+	networking "k8s.io/api/networking/v1"
+	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/resolver"
+)
+
+func TestParse(t *testing.T) {
+	annotation := parser.GetAnnotationWithPrefix("stream-snippet")
+
+	ap := NewParser(&resolver.Mock{})
+	if ap == nil {
+		t.Fatalf("expected a parser.IngressAnnotation but returned nil")
+	}
+
+	testCases := []struct {
+		annotations map[string]string
+		expected    string
+	}{
+		{map[string]string{annotation: "server { listen: 8000; proxy_pass 127.0.0.1:80}"},
+			"server { listen: 8000; proxy_pass 127.0.0.1:80}",
+		},
+		{map[string]string{annotation: "false"}, "false"},
+		{map[string]string{}, ""},
+		{nil, ""},
+	}
+
+	ing := &networking.Ingress{
+		ObjectMeta: meta_v1.ObjectMeta{
+			Name:      "foo",
+			Namespace: api.NamespaceDefault,
+		},
+		Spec: networking.IngressSpec{},
+	}
+
+	for _, testCase := range testCases {
+		ing.SetAnnotations(testCase.annotations)
+		result, _ := ap.Parse(ing)
+		if result != testCase.expected {
+			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
+		}
+	}
+}
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index d17135f1c..f37516e78 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -659,6 +659,9 @@ type Configuration struct {
 	// ServerSnippet adds custom configuration to all the servers in the nginx configuration
 	ServerSnippet string `json:"server-snippet"`
 
+	// StreamSnippet adds custom configuration to the stream section of the nginx configuration
+	StreamSnippet string `json:"stream-snippet"`
+
 	// LocationSnippet adds custom configuration to all the locations in the nginx configuration
 	LocationSnippet string `json:"location-snippet"`
 
@@ -956,10 +959,11 @@ type TemplateConfig struct {
 	MaxmindEditionFiles      *[]string
 	MonitorMaxBatchSize      int
 
-	PID        string
-	StatusPath string
-	StatusPort int
-	StreamPort int
+	PID            string
+	StatusPath     string
+	StatusPort     int
+	StreamPort     int
+	StreamSnippets []string
 }
 
 // ListenPorts describe the ports required to run the
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 99d1c8f35..7d958a626 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -538,6 +538,7 @@ func (n *NGINXController) getConfiguration(ingresses []*ingress.Ingress) (sets.S
 		PassthroughBackends:   passUpstreams,
 		BackendConfigChecksum: n.store.GetBackendConfiguration().Checksum,
 		DefaultSSLCertificate: n.getDefaultSSLCertificate(),
+		StreamSnippets:        n.getStreamSnippets(ingresses),
 	}
 }
 
@@ -562,6 +563,11 @@ func dropSnippetDirectives(anns *annotations.Ingress, ingKey string) {
 			anns.ExternalAuth.AuthSnippet = ""
 		}
 
+		if anns.StreamSnippet != "" {
+			klog.V(3).Infof("Ingress %q tried to use stream-snippet and the annotation is disabled by the admin. Removing the annotation", ingKey)
+			anns.StreamSnippet = ""
+		}
+
 	}
 }
 
@@ -1779,3 +1785,14 @@ func ingressForHostPath(hostname, path string, servers []*ingress.Server) []*net
 
 	return ingresses
 }
+
+func (n *NGINXController) getStreamSnippets(ingresses []*ingress.Ingress) []string {
+	snippets := make([]string, 0, len(ingresses))
+	for _, i := range ingresses {
+		if i.ParsedAnnotations.StreamSnippet == "" {
+			continue
+		}
+		snippets = append(snippets, i.ParsedAnnotations.StreamSnippet)
+	}
+	return snippets
+}
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 4d1aa3916..ed5590c3e 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -599,6 +599,7 @@ func (n NGINXController) generateTemplate(cfg ngx_config.Configuration, ingressC
 		StatusPath:               nginx.StatusPath,
 		StatusPort:               nginx.StatusPort,
 		StreamPort:               nginx.StreamPort,
+		StreamSnippets:           append(ingressCfg.StreamSnippets, cfg.StreamSnippet),
 	}
 
 	tc.Cfg.Checksum = ingressCfg.ConfigurationChecksum
diff --git a/internal/ingress/types.go b/internal/ingress/types.go
index 78c2245ff..db4f37f99 100644
--- a/internal/ingress/types.go
+++ b/internal/ingress/types.go
@@ -76,6 +76,8 @@ type Configuration struct {
 	ConfigurationChecksum string `json:"configurationChecksum,omitempty"`
 
 	DefaultSSLCertificate *SSLCert `json:"-"`
+
+	StreamSnippets []string
 }
 
 // Backend describes one or more remote server/s (endpoints) associated with a service
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 0cc8d3cab..bf780fe80 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -827,6 +827,11 @@ stream {
         proxy_pass              upstream_balancer;
     }
     {{ end }}
+
+    # Stream Snippets
+    {{ range $snippet := .StreamSnippets }}
+    {{ $snippet }}
+    {{ end }}
 }
 
 {{/* definition of templates to avoid repetitions */}}
diff --git a/test/e2e/annotations/streamsnippet.go b/test/e2e/annotations/streamsnippet.go
new file mode 100644
index 000000000..cc9aca715
--- /dev/null
+++ b/test/e2e/annotations/streamsnippet.go
@@ -0,0 +1,138 @@
+/*
+Copyright 2021 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package annotations
+
+import (
+	"context"
+	"fmt"
+	"github.com/stretchr/testify/assert"
+	corev1 "k8s.io/api/core/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/util/intstr"
+	"net/http"
+	"strings"
+
+	"github.com/onsi/ginkgo"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.DescribeSetting("stream-snippet", func() {
+	f := framework.NewDefaultFramework("stream-snippet")
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment()
+	})
+
+	ginkgo.It("should add value of stream-snippet to nginx config", func() {
+		host := "foo.com"
+
+		snippet := `server {listen 8000; proxy_pass 127.0.0.1:80;}`
+
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, map[string]string{
+			"nginx.ingress.kubernetes.io/stream-snippet": snippet,
+		})
+		f.EnsureIngress(ing)
+
+		svc, err := f.KubeClientSet.
+			CoreV1().
+			Services(f.Namespace).
+			Get(context.TODO(), "nginx-ingress-controller", metav1.GetOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error obtaining ingress-nginx service")
+		assert.NotNil(ginkgo.GinkgoT(), svc, "expected a service but none returned")
+
+		svc.Spec.Ports = append(svc.Spec.Ports, corev1.ServicePort{
+			Name:       framework.EchoService,
+			Port:       8000,
+			TargetPort: intstr.FromInt(8000),
+		})
+
+		_, err = f.KubeClientSet.
+			CoreV1().
+			Services(f.Namespace).
+			Update(context.TODO(), svc, metav1.UpdateOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error updating service")
+
+		// Sleep a while just to guarantee that the configmap is applied
+		framework.Sleep()
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return strings.Contains(cfg, snippet)
+			})
+
+		f.HTTPTestClient().
+			GET("/healthz").
+			WithURL(fmt.Sprintf("http://%v:8000/healthz", f.GetNginxIP())).
+			Expect().
+			Status(http.StatusOK)
+	})
+
+	ginkgo.It("should add stream-snippet and drop annotations per admin config", func() {
+		host := "cm.foo.com"
+		hostAnnot := "annot.foo.com"
+
+		cmSnippet := `server {listen 8000; proxy_pass 127.0.0.1:80;}`
+		annotSnippet := `server {listen 8001; proxy_pass 127.0.0.1:80;}`
+
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "false",
+			"stream-snippet":            cmSnippet,
+		})
+
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil)
+		f.EnsureIngress(ing)
+
+		ing1 := framework.NewSingleIngress(hostAnnot, "/", hostAnnot, f.Namespace, framework.EchoService, 80, map[string]string{
+			"nginx.ingress.kubernetes.io/stream-snippet": annotSnippet,
+		})
+		f.EnsureIngress(ing1)
+
+		svc, err := f.KubeClientSet.
+			CoreV1().
+			Services(f.Namespace).
+			Get(context.TODO(), "nginx-ingress-controller", metav1.GetOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error obtaining ingress-nginx service")
+		assert.NotNil(ginkgo.GinkgoT(), svc, "expected a service but none returned")
+
+		svc.Spec.Ports = append(svc.Spec.Ports, corev1.ServicePort{
+			Name:       framework.EchoService,
+			Port:       8000,
+			TargetPort: intstr.FromInt(8000),
+		})
+
+		_, err = f.KubeClientSet.
+			CoreV1().
+			Services(f.Namespace).
+			Update(context.TODO(), svc, metav1.UpdateOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error updating service")
+
+		// Sleep a while just to guarantee that the configmap is applied
+		framework.Sleep()
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return strings.Contains(cfg, cmSnippet) && !strings.Contains(cfg, annotSnippet)
+			})
+
+		f.HTTPTestClient().
+			GET("/healthz").
+			WithURL(fmt.Sprintf("http://%v:8000/healthz", f.GetNginxIP())).
+			Expect().
+			Status(http.StatusOK)
+	})
+})
diff --git a/test/e2e/settings/stream_snippet.go b/test/e2e/settings/stream_snippet.go
new file mode 100644
index 000000000..90f928c23
--- /dev/null
+++ b/test/e2e/settings/stream_snippet.go
@@ -0,0 +1,85 @@
+/*
+Copyright 2021 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package settings
+
+import (
+	"context"
+	"fmt"
+	"github.com/stretchr/testify/assert"
+	corev1 "k8s.io/api/core/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/util/intstr"
+	"net/http"
+	"strings"
+
+	"github.com/onsi/ginkgo"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.DescribeSetting("configmap stream-snippet", func() {
+	f := framework.NewDefaultFramework("cm-stream-snippet")
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment()
+	})
+
+	ginkgo.It("should add value of stream-snippet via config map to nginx config", func() {
+		host := "foo.com"
+		snippet := `server {listen 8000; proxy_pass 127.0.0.1:80;}`
+
+		f.SetNginxConfigMapData(map[string]string{
+			"stream-snippet": snippet,
+		})
+
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil)
+		f.EnsureIngress(ing)
+
+		svc, err := f.KubeClientSet.
+			CoreV1().
+			Services(f.Namespace).
+			Get(context.TODO(), "nginx-ingress-controller", metav1.GetOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error obtaining ingress-nginx service")
+		assert.NotNil(ginkgo.GinkgoT(), svc, "expected a service but none returned")
+
+		svc.Spec.Ports = append(svc.Spec.Ports, corev1.ServicePort{
+			Name:       framework.EchoService,
+			Port:       8000,
+			TargetPort: intstr.FromInt(8000),
+		})
+
+		_, err = f.KubeClientSet.
+			CoreV1().
+			Services(f.Namespace).
+			Update(context.TODO(), svc, metav1.UpdateOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error updating service")
+
+		// Sleep a while just to guarantee that the configmap is applied
+		framework.Sleep()
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return strings.Contains(cfg, snippet)
+			})
+
+		f.HTTPTestClient().
+			GET("/healthz").
+			WithURL(fmt.Sprintf("http://%v:8000/healthz", f.GetNginxIP())).
+			Expect().
+			Status(http.StatusOK)
+	})
+})

From d5fd674313330f322a598752ddbe07fecc098be7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 23 Dec 2021 11:48:29 -0800
Subject: [PATCH 0014/1641] Bump github.com/spf13/cobra from 1.2.1 to 1.3.0
 (#8058)

Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.2.1 to 1.3.0.
- [Release notes](https://github.com/spf13/cobra/releases)
- [Changelog](https://github.com/spf13/cobra/blob/master/CHANGELOG.md)
- [Commits](https://github.com/spf13/cobra/compare/v1.2.1...v1.3.0)

---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  29 ++++-----
 go.sum | 201 ++++++++++++++++++++++++++++++++++++++++++++++++---------
 2 files changed, 186 insertions(+), 44 deletions(-)

diff --git a/go.mod b/go.mod
index ea740a4e4..dc45a8044 100644
--- a/go.mod
+++ b/go.mod
@@ -10,10 +10,9 @@ require (
 	github.com/imdario/mergo v0.3.12
 	github.com/json-iterator/go v1.1.12
 	github.com/kylelemons/godebug v1.1.0
-	github.com/mattn/go-isatty v0.0.12 // indirect
 	github.com/mitchellh/go-ps v1.0.0
 	github.com/mitchellh/hashstructure v1.1.0
-	github.com/mitchellh/mapstructure v1.4.2
+	github.com/mitchellh/mapstructure v1.4.3
 	github.com/moul/pb v0.0.0-20180404114147-54bdd96e6a52
 	github.com/ncabatoff/process-exporter v0.7.9
 	github.com/onsi/ginkgo v1.16.4
@@ -23,13 +22,13 @@ require (
 	github.com/prometheus/client_golang v1.11.0
 	github.com/prometheus/client_model v0.2.0
 	github.com/prometheus/common v0.31.1
-	github.com/spf13/cobra v1.2.1
+	github.com/spf13/cobra v1.3.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.7.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20210427055340-87e10242a981
-	golang.org/x/crypto v0.0.0-20210711020723-a769d52b0f97
-	golang.org/x/net v0.0.0-20210805182204-aaa1db679c0d
-	google.golang.org/grpc v1.41.0
+	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5
+	golang.org/x/net v0.0.0-20210813160813-60bc85c4be6d
+	google.golang.org/grpc v1.42.0
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	k8s.io/api v0.22.2
@@ -48,7 +47,7 @@ require (
 )
 
 require (
-	cloud.google.com/go v0.81.0 // indirect
+	cloud.google.com/go v0.99.0 // indirect
 	github.com/Azure/go-autorest v14.2.0+incompatible // indirect
 	github.com/Azure/go-autorest/autorest v0.11.18 // indirect
 	github.com/Azure/go-autorest/autorest/adal v0.9.13 // indirect
@@ -62,7 +61,7 @@ require (
 	github.com/andybalholm/brotli v1.0.2 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/blang/semver v3.5.1+incompatible // indirect
-	github.com/cespare/xxhash/v2 v2.1.1 // indirect
+	github.com/cespare/xxhash/v2 v2.1.2 // indirect
 	github.com/coreos/go-systemd/v22 v22.3.2 // indirect
 	github.com/cyphar/filepath-securejoin v0.2.2 // indirect
 	github.com/davecgh/go-spew v1.1.1 // indirect
@@ -121,17 +120,17 @@ require (
 	github.com/yudai/gojsondiff v1.0.0 // indirect
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
-	golang.org/x/mod v0.4.2 // indirect
-	golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c // indirect
-	golang.org/x/sys v0.0.0-20210817190340-bfb29a6856f2 // indirect
+	golang.org/x/mod v0.5.0 // indirect
+	golang.org/x/oauth2 v0.0.0-20211104180415-d3ed0bb246c8 // indirect
+	golang.org/x/sys v0.0.0-20211205182925-97ca703d548d // indirect
 	golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d // indirect
-	golang.org/x/text v0.3.6 // indirect
+	golang.org/x/text v0.3.7 // indirect
 	golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
-	golang.org/x/tools v0.1.2 // indirect
+	golang.org/x/tools v0.1.5 // indirect
 	golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/genproto v0.0.0-20210602131652-f16073e35f0c // indirect
-	google.golang.org/protobuf v1.26.0 // indirect
+	google.golang.org/genproto v0.0.0-20211208223120-3a66f561d7aa // indirect
+	google.golang.org/protobuf v1.27.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
diff --git a/go.sum b/go.sum
index 02f4f714f..669f21dc4 100644
--- a/go.sum
+++ b/go.sum
@@ -17,8 +17,17 @@ cloud.google.com/go v0.72.0/go.mod h1:M+5Vjvlc2wnp6tjzE102Dw08nGShTscUx2nZMufOKP
 cloud.google.com/go v0.74.0/go.mod h1:VV1xSbzvo+9QJOxLDaJfTjx5e+MePCpCWwvftOeQmWk=
 cloud.google.com/go v0.78.0/go.mod h1:QjdrLG0uq+YwhjoVOLsS1t7TW8fs36kLs4XO5R5ECHg=
 cloud.google.com/go v0.79.0/go.mod h1:3bzgcEeQlzbuEAYu4mrWhKqWjmpprinYgKJLgKHnbb8=
-cloud.google.com/go v0.81.0 h1:at8Tk2zUz63cLPR0JPWm5vp77pEZmzxEQBEfRKn1VV8=
 cloud.google.com/go v0.81.0/go.mod h1:mk/AM35KwGk/Nm2YSeZbxXdrNK3KZOYHmLkOqC2V6E0=
+cloud.google.com/go v0.83.0/go.mod h1:Z7MJUsANfY0pYPdw0lbnivPx4/vhy/e2FEkSkF7vAVY=
+cloud.google.com/go v0.84.0/go.mod h1:RazrYuxIK6Kb7YrzzhPoLmCVzl7Sup4NrbKPg8KHSUM=
+cloud.google.com/go v0.87.0/go.mod h1:TpDYlFy7vuLzZMMZ+B6iRiELaY7z/gJPaqbMx6mlWcY=
+cloud.google.com/go v0.90.0/go.mod h1:kRX0mNRHe0e2rC6oNakvwQqzyDmg57xJ+SZU1eT2aDQ=
+cloud.google.com/go v0.93.3/go.mod h1:8utlLll2EF5XMAV15woO4lSbWQlk8rer9aLOfLh7+YI=
+cloud.google.com/go v0.94.1/go.mod h1:qAlAugsXlC+JWO+Bke5vCtc9ONxjQT3drlTTnAplMW4=
+cloud.google.com/go v0.97.0/go.mod h1:GF7l59pYBVlXQIBLx3a761cZ41F9bBH3JUlihCt2Udc=
+cloud.google.com/go v0.98.0/go.mod h1:ua6Ush4NALrHk5QXDWnjvZHN93OuF0HfuEPq9I1X0cM=
+cloud.google.com/go v0.99.0 h1:y/cM2iqGgGi5D5DQZl6D9STN/3dR/Vx5Mp8s752oJTY=
+cloud.google.com/go v0.99.0/go.mod h1:w0Xx2nLzqWJPuozYQX+hFfCSI8WioryfRDzkoI/Y2ZA=
 cloud.google.com/go/bigquery v1.0.1/go.mod h1:i/xbL2UlR5RvWAURpBYZTtm/cXjCha9lbfbpx4poX+o=
 cloud.google.com/go/bigquery v1.3.0/go.mod h1:PjpwJnslEMmckchkHFfq+HTD2DmtT67aNFKH1/VBDHE=
 cloud.google.com/go/bigquery v1.4.0/go.mod h1:S8dzgnTigyfTmLBfrtrhyYhwRxG72rYxvftPBK2Dvzc=
@@ -28,6 +37,7 @@ cloud.google.com/go/bigquery v1.8.0/go.mod h1:J5hqkt3O0uAFnINi6JXValWIb1v0goeZM7
 cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE=
 cloud.google.com/go/datastore v1.1.0/go.mod h1:umbIZjpQpHh4hmRpGhH4tLFup+FVzqBi1b3c64qFpCk=
 cloud.google.com/go/firestore v1.1.0/go.mod h1:ulACoGHTpvq5r8rxGJ4ddJZBZqakUQqClKRT5SZwBmk=
+cloud.google.com/go/firestore v1.6.1/go.mod h1:asNXNOzBdyVQmEU+ggO8UPodTkEVFW5Qx+rwHnAz+EY=
 cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I=
 cloud.google.com/go/pubsub v1.1.0/go.mod h1:EwwdRX2sKPjnvnqCa270oGRyludottCI76h+R3AArQw=
 cloud.google.com/go/pubsub v1.2.0/go.mod h1:jhfEVHT8odbXTkndysNHCcx0awwzvfOlguIAii9o8iA=
@@ -60,6 +70,7 @@ github.com/Azure/go-autorest/tracing v0.6.0/go.mod h1:+vhtPC754Xsa23ID7GlGsrdKBp
 github.com/BurntSushi/toml v0.3.1 h1:WXkYYl6Yr3qBf1K79EBnL4mak0OimBfB0XUf9Vl28OQ=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
+github.com/DataDog/datadog-go v3.2.0+incompatible/go.mod h1:LButxg5PwREeZtORoXG3tL4fMGNddJ+vMq1mwgfaqoQ=
 github.com/Knetic/govaluate v3.0.1-0.20171022003610-9aa49832a739+incompatible/go.mod h1:r7JcOSlj0wfOMncg0iLm8Leh48TZaKVeNIfJntJ2wa0=
 github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
 github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
@@ -90,9 +101,11 @@ github.com/apache/thrift v0.13.0/go.mod h1:cp2SuWMxlEZw2r+iP2GNCdIi4C1qmUzdZFSVb
 github.com/armon/circbuf v0.0.0-20150827004946-bbbad097214e/go.mod h1:3U/XgcO3hCbHZ8TKRvWD2dDTCfh9M9ya+I9JpbB7O8o=
 github.com/armon/consul-api v0.0.0-20180202201655-eb2c6b5be1b6/go.mod h1:grANhF5doyWs3UAsr3K4I6qtAmlQcZDesFNEHPZAzj8=
 github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da/go.mod h1:Q73ZrmVTwzkszR9V5SSuryQ31EELlFMUz1kKyl939pY=
+github.com/armon/go-metrics v0.3.10/go.mod h1:4O98XIr/9W0sxpJ8UaYkvjk10Iff7SnFrb4QAOwNTFc=
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a h1:AP/vsCIvJZ129pdm9Ek7bH7yutN3hByqsMoNrWAxRQc=
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a/go.mod h1:QmP9hvJ91BbJmGVGSbutW19IC0Q9phDCLGaomwTJbgU=
 github.com/armon/go-radix v0.0.0-20180808171621-7fddfc383310/go.mod h1:ufUuZ+zHj4x4TnLV4JWEpy2hxWSpsRywHrMgIH9cCH8=
+github.com/armon/go-radix v1.0.0/go.mod h1:ufUuZ+zHj4x4TnLV4JWEpy2hxWSpsRywHrMgIH9cCH8=
 github.com/aryann/difflib v0.0.0-20170710044230-e206f873d14a/go.mod h1:DAHtR1m6lCRdSC2Tm3DSWRPvIPr6xNKyeHdqDQSQT+A=
 github.com/asaskevich/govalidator v0.0.0-20180720115003-f9ffefc3facf/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
 github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
@@ -108,29 +121,38 @@ github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6r
 github.com/bgentry/speakeasy v0.1.0/go.mod h1:+zsyZBPWlz7T6j88CTgSN5bM796AkVf0kBD4zp0CCIs=
 github.com/bits-and-blooms/bitset v1.2.0/go.mod h1:gIdJ4wp64HaoK2YrL1Q5/N7Y16edYb8uY+O0FJTyyDA=
 github.com/bketelsen/crypt v0.0.3-0.20200106085610-5cbc8cc4026c/go.mod h1:MKsuJmJgSg28kpZDP6UIiPt0e0Oz0kqKNGyRaWEPv84=
-github.com/bketelsen/crypt v0.0.4/go.mod h1:aI6NrJ0pMGgvZKL1iVgXLnfIFJtfV+bKCoqOes/6LfM=
 github.com/blang/semver v3.5.1+incompatible h1:cQNTCjp13qL8KC3Nbxr/y2Bqb63oX6wdnnjpJbkM4JQ=
 github.com/blang/semver v3.5.1+incompatible/go.mod h1:kRBLl5iJ+tD4TcOOxsy/0fnwebNt5EWlYSAyrTnjyyk=
 github.com/casbin/casbin/v2 v2.1.2/go.mod h1:YcPU1XXisHhLzuxH9coDNf2FbKpjGlbCg3n9yuLkIJQ=
 github.com/cenkalti/backoff v2.2.1+incompatible/go.mod h1:90ReRw6GdpyfrHakVjL/QHaoyV4aDUVVkXQJJJ3NXXM=
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
+github.com/census-instrumentation/opencensus-proto v0.3.0/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
 github.com/certifi/gocertifi v0.0.0-20191021191039-0944d244cd40/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
 github.com/certifi/gocertifi v0.0.0-20200922220541-2c3bb06c6054/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
 github.com/cespare/xxhash v1.1.0 h1:a6HrQnmkObjyL+Gs60czilIUGqrzKutQD6XZog3p+ko=
 github.com/cespare/xxhash v1.1.0/go.mod h1:XrSqR1VqqWfGrhpAt58auRo0WTKS1nRRg3ghfAqPWnc=
-github.com/cespare/xxhash/v2 v2.1.1 h1:6MnRN8NT7+YBpUIWxHtefFZOKTAPgGjpQSxqLNn0+qY=
 github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
+github.com/cespare/xxhash/v2 v2.1.2 h1:YRXhKfTDauu4ajMg1TPgFO5jnlC2HCbmLXMcTG5cbYE=
+github.com/cespare/xxhash/v2 v2.1.2/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
 github.com/checkpoint-restore/go-criu/v5 v5.0.0/go.mod h1:cfwC0EG7HMUenopBsUf9d89JlCLQIfgVcNsNN0t6T2M=
 github.com/chzyer/logex v1.1.10/go.mod h1:+Ywpsq7O8HXn0nuIou7OrIPyXbp3wmkHB+jjWRnGsAI=
 github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5PlCu98SY8svDHJxuZscDgtXS6KTTbou5AhLI=
 github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU=
 github.com/cilium/ebpf v0.6.2/go.mod h1:4tRaxcgiL706VnOzHOdBlY8IEAIdxINsQBcU4xJJXRs=
+github.com/circonus-labs/circonus-gometrics v2.3.1+incompatible/go.mod h1:nmEj6Dob7S7YxXgwXpfOuvO54S+tGdZdw9fuRZt25Ag=
+github.com/circonus-labs/circonusllhist v0.1.3/go.mod h1:kMXHVDlOchFAehlya5ePtbp5jckzBHf4XRpQvBOLI+I=
 github.com/clbanning/x2j v0.0.0-20191024224557-825249438eec/go.mod h1:jMjuTZXRI4dUb/I5gc9Hdhagfvm9+RyrPryS/auMzxE=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
 github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc=
 github.com/cncf/udpa/go v0.0.0-20200629203442-efcf912fb354/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
 github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
+github.com/cncf/udpa/go v0.0.0-20210930031921-04548b0d99d4/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
+github.com/cncf/xds/go v0.0.0-20210312221358-fbca930ec8ed/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20210805033703-aa0b78936158/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20211001041855-01bcc9b48dfe/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20211130200136-a8f946100490/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cockroachdb/datadriven v0.0.0-20190809214429-80d97fb3cbaa/go.mod h1:zn76sxSg3SzpJ0PPJaLDCu+Bu0Lg3sKTORVIj19EIF8=
 github.com/cockroachdb/datadriven v0.0.0-20200714090401-bf6692d28da5/go.mod h1:h6jFvWxBdQXxjopDMZyH2UVceIRfR84bdzbkoKrsWNo=
 github.com/cockroachdb/errors v1.2.4/go.mod h1:rQD95gz6FARkaKkQXUksEje/d9a6wBJoCr5oaCLELYA=
@@ -152,6 +174,7 @@ github.com/coreos/pkg v0.0.0-20160727233714-3ac0863d7acf/go.mod h1:E3G3o1h8I7cfc
 github.com/coreos/pkg v0.0.0-20180928190104-399ea9e2e55f/go.mod h1:E3G3o1h8I7cfcXa63jLwjI0eiQQMgzzUDFVpN/nH/eA=
 github.com/cpuguy83/go-md2man/v2 v2.0.0-20190314233015-f79a8a8ca69d/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
 github.com/cpuguy83/go-md2man/v2 v2.0.0/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
+github.com/cpuguy83/go-md2man/v2 v2.0.1/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.7/go.mod h1:lj5s0c3V2DBrqTV7llrYr5NG6My20zk30Fl46Y7DoTY=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/creack/pty v1.1.11/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
@@ -185,8 +208,11 @@ github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1m
 github.com/envoyproxy/go-control-plane v0.9.7/go.mod h1:cwu0lG7PUMfa9snN8LXBig5ynNVH9qI8YYLbd1fK2po=
 github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
 github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
+github.com/envoyproxy/go-control-plane v0.9.9-0.20210512163311-63b5d3c536b0/go.mod h1:hliV/p42l8fGbc6Y9bQ70uLwIvmJyVE5k4iMKlh8wCQ=
 github.com/envoyproxy/go-control-plane v0.9.10-0.20210907150352-cf90f659a021/go.mod h1:AFq3mo9L8Lqqiid3OhADV3RfLJnjiw63cSpi+fDTRC0=
+github.com/envoyproxy/go-control-plane v0.10.1/go.mod h1:AY7fTTXNdv/aJ2O5jwpxAPOWUZ7hQAEvzN5Pf27BkQQ=
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
+github.com/envoyproxy/protoc-gen-validate v0.6.2/go.mod h1:2t7qjJNvHPx8IjnBOzl9E9/baC+qXE/TeeyBRzgJDws=
 github.com/evanphx/json-patch v0.5.2/go.mod h1:ZWS5hhDbVDyob71nXKNL0+PWn6ToqBHMikGIFbs31qQ=
 github.com/evanphx/json-patch v4.5.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/evanphx/json-patch v4.9.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
@@ -195,6 +221,8 @@ github.com/evanphx/json-patch v4.11.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQL
 github.com/fasthttp/websocket v1.4.3-rc.6 h1:omHqsl8j+KXpmzRjF8bmzOSYJ8GnS0E3efi1wYT+niY=
 github.com/fasthttp/websocket v1.4.3-rc.6/go.mod h1:43W9OM2T8FeXpCWMsBd9Cb7nE2CACNqNvCqQCoty/Lc=
 github.com/fatih/color v1.7.0/go.mod h1:Zm6kSWBoL9eyXnKyktHP6abPY2pDugNf5KwzbycvMj4=
+github.com/fatih/color v1.9.0/go.mod h1:eQcE1qtQxscV5RaZvpXrrb8Drkc3/DdQ+uUYCNjL+zU=
+github.com/fatih/color v1.13.0/go.mod h1:kLAiJbzzSOZDVNGyDpeOxJ47H46qBXwg5ILebYFFOfk=
 github.com/fatih/structs v1.0.0 h1:BrX964Rv5uQ3wwS+KRUAJCBBw5PQmgJfJ6v4yly5QwU=
 github.com/fatih/structs v1.0.0/go.mod h1:9NiDSp5zOcgEDl+j00MP/WkGVPOlPRLejGD8Ga6PJ7M=
 github.com/felixge/httpsnoop v1.0.1/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
@@ -311,6 +339,7 @@ github.com/golang/mock v1.4.1/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt
 github.com/golang/mock v1.4.3/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
 github.com/golang/mock v1.4.4/go.mod h1:l3mdAwkq5BuhzHwde/uurv3sEJeZMXNpwsxVWU71h+4=
 github.com/golang/mock v1.5.0/go.mod h1:CWnOUgYIOo4TcNZ0wHX3YZCqsaM1I1Jvs6v3mP3KVu8=
+github.com/golang/mock v1.6.0/go.mod h1:p6yTPP+5HYm5mzsMV8JkE6ZKdX+/wYM6Hr+LicevLPs=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
@@ -358,6 +387,7 @@ github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/
 github.com/google/martian v2.1.0+incompatible/go.mod h1:9I4somxYTbIHy5NJKHRl3wXiIaQGbYVAs8BPL6v8lEs=
 github.com/google/martian/v3 v3.0.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
 github.com/google/martian/v3 v3.1.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
+github.com/google/martian/v3 v3.2.1/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
 github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20191218002539-d4f498aebedc/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
@@ -369,6 +399,9 @@ github.com/google/pprof v0.0.0-20201023163331-3e6fc7fc9c4c/go.mod h1:kpwsk12EmLe
 github.com/google/pprof v0.0.0-20201203190320-1bf35d6f28c2/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210122040257-d980be63207e/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210226084205-cbba55b83ad5/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210601050228-01bbb1931b22/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210609004039-a478d1d731e9/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
@@ -379,6 +412,8 @@ github.com/google/uuid v1.2.0 h1:qJYtXnJRWmpe7m/3XlyhrsLrEURqHRM2kxzoxXqyUDs=
 github.com/google/uuid v1.2.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
+github.com/googleapis/gax-go/v2 v2.1.0/go.mod h1:Q3nei7sK6ybPYH7twZdmQpAd1MKb7pfu6SK+H1/DsU0=
+github.com/googleapis/gax-go/v2 v2.1.1/go.mod h1:hddJymUZASv3XPyGkUpKj8pPO47Rmb0eJc8R6ouapiM=
 github.com/googleapis/gnostic v0.4.1/go.mod h1:LRhVm6pbyptWbWbuZ38d1eyptfvIytN3ir6b65WBswg=
 github.com/googleapis/gnostic v0.5.1/go.mod h1:6U4PtQXGIEt/Z3h5MAT7FNofLnw9vXk2cUuW7uA/OeU=
 github.com/googleapis/gnostic v0.5.5 h1:9fHAtK0uDfpveeqqo1hkEZJcFvYXAiCN3UutL8F9xHw=
@@ -402,14 +437,24 @@ github.com/grpc-ecosystem/grpc-gateway v1.9.5/go.mod h1:vNeuVxBJEsws4ogUvrchl83t
 github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
 github.com/hashicorp/consul/api v1.1.0/go.mod h1:VmuI/Lkw1nC05EYQWNKwWGbkg+FbDBtguAZLlVdkD9Q=
 github.com/hashicorp/consul/api v1.3.0/go.mod h1:MmDNSzIMUjNpY/mQ398R4bk2FnqQLoPndWW5VkKPlCE=
+github.com/hashicorp/consul/api v1.11.0/go.mod h1:XjsvQN+RJGWI2TWy1/kqaE16HrR2J/FWgkYjdZQsX9M=
 github.com/hashicorp/consul/sdk v0.1.1/go.mod h1:VKf9jXwCTEY1QZP2MOLRhb5i/I/ssyNV1vwHyQBF0x8=
 github.com/hashicorp/consul/sdk v0.3.0/go.mod h1:VKf9jXwCTEY1QZP2MOLRhb5i/I/ssyNV1vwHyQBF0x8=
+github.com/hashicorp/consul/sdk v0.8.0/go.mod h1:GBvyrGALthsZObzUGsfgHZQDXjg4lOjagTIwIR1vPms=
 github.com/hashicorp/errwrap v1.0.0/go.mod h1:YH+1FKiLXxHSkmPseP+kNlulaMuP3n2brvKWEqk/Jc4=
+github.com/hashicorp/go-cleanhttp v0.5.0/go.mod h1:JpRdi6/HCYpAwUzNwuwqhbovhLtngrth3wmdIIUrZ80=
 github.com/hashicorp/go-cleanhttp v0.5.1/go.mod h1:JpRdi6/HCYpAwUzNwuwqhbovhLtngrth3wmdIIUrZ80=
+github.com/hashicorp/go-cleanhttp v0.5.2/go.mod h1:kO/YDlP8L1346E6Sodw+PrpBSV4/SoxCXGY6BqNFT48=
+github.com/hashicorp/go-hclog v0.12.0/go.mod h1:whpDNt7SSdeAju8AWKIWsul05p54N/39EeqMAyrmvFQ=
+github.com/hashicorp/go-hclog v1.0.0/go.mod h1:whpDNt7SSdeAju8AWKIWsul05p54N/39EeqMAyrmvFQ=
 github.com/hashicorp/go-immutable-radix v1.0.0/go.mod h1:0y9vanUI8NX6FsYoO3zeMjhV/C5i9g4Q3DwcSNZ4P60=
+github.com/hashicorp/go-immutable-radix v1.3.1/go.mod h1:0y9vanUI8NX6FsYoO3zeMjhV/C5i9g4Q3DwcSNZ4P60=
 github.com/hashicorp/go-msgpack v0.5.3/go.mod h1:ahLV/dePpqEmjfWmKiqvPkv/twdG7iPBM1vqhUKIvfM=
 github.com/hashicorp/go-multierror v1.0.0/go.mod h1:dHtQlpGsu+cZNNAkkCN/P3hoUDHhCYQXV3UM06sGGrk=
+github.com/hashicorp/go-multierror v1.1.0/go.mod h1:spPvp8C1qA32ftKqdAHm4hHTbPw+vmowP0z+KUhOZdA=
+github.com/hashicorp/go-retryablehttp v0.5.3/go.mod h1:9B5zBasrRhHXnJnui7y6sL7es7NDiJgTc6Er0maI1Xs=
 github.com/hashicorp/go-rootcerts v1.0.0/go.mod h1:K6zTfqpRlCUIjkwsN4Z+hiSfzSTQa6eBIzfwKfwNnHU=
+github.com/hashicorp/go-rootcerts v1.0.2/go.mod h1:pqUvnprVnM5bf7AOirdbb01K4ccR319Vf4pU3K5EGc8=
 github.com/hashicorp/go-sockaddr v1.0.0/go.mod h1:7Xibr9yA9JjQq1JpNB2Vw7kxv8xerXegt+ozgdvDeDU=
 github.com/hashicorp/go-syslog v1.0.0/go.mod h1:qPfqrKkXGihmCqbJM2mZgkZGvKG1dFdvsLplgctolz4=
 github.com/hashicorp/go-uuid v1.0.0/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/bN7x4byOro=
@@ -418,13 +463,21 @@ github.com/hashicorp/go-version v1.2.0/go.mod h1:fltr4n8CU8Ke44wwGCBoEymUuxUHl09
 github.com/hashicorp/go.net v0.0.1/go.mod h1:hjKkEWcCURg++eb33jQU7oqQcI9XDCnUzHA0oac0k90=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
+github.com/hashicorp/golang-lru v0.5.4/go.mod h1:iADmTwqILo4mZ8BN3D2Q6+9jd8WM5uGBxy+E8yxSoD4=
 github.com/hashicorp/hcl v1.0.0/go.mod h1:E5yfLk+7swimpb2L/Alb/PJmXilQ/rhwaUYs4T20WEQ=
 github.com/hashicorp/logutils v1.0.0/go.mod h1:QIAnNjmIWmVIIkWDTG1z5v++HQmx9WQRO+LraFDTW64=
 github.com/hashicorp/mdns v1.0.0/go.mod h1:tL+uN++7HEJ6SQLQ2/p+z2pH24WQKWjBPkE0mNTz8vQ=
+github.com/hashicorp/mdns v1.0.1/go.mod h1:4gW7WsVCke5TE7EPeYliwHlRUyBtfCwuFwuMg2DmyNY=
+github.com/hashicorp/mdns v1.0.4/go.mod h1:mtBihi+LeNXGtG8L9dX59gAEa12BDtBQSp4v/YAJqrc=
 github.com/hashicorp/memberlist v0.1.3/go.mod h1:ajVTdAv/9Im8oMAAj5G31PhhMCZJV2pPBoIllUwCN7I=
+github.com/hashicorp/memberlist v0.2.2/go.mod h1:MS2lj3INKhZjWNqd3N0m3J+Jxf3DAOnAH9VT3Sh9MUE=
+github.com/hashicorp/memberlist v0.3.0/go.mod h1:MS2lj3INKhZjWNqd3N0m3J+Jxf3DAOnAH9VT3Sh9MUE=
 github.com/hashicorp/serf v0.8.2/go.mod h1:6hOLApaqBFA1NXqRQAsxw9QxuDEvNxSQRwA/JwenrHc=
+github.com/hashicorp/serf v0.9.5/go.mod h1:UWDWwZeL5cuWDJdl0C6wrvrUwEqtQ4ZKBKKENpqIUyk=
+github.com/hashicorp/serf v0.9.6/go.mod h1:TXZNMjZQijwlDvp+r0b63xZ45H7JmCmgg4gpTwn9UV4=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/hudl/fargo v1.3.0/go.mod h1:y3CKSmjA+wD2gak7sUSXTAoopbhU08POFhmITJgmKTg=
+github.com/iancoleman/strcase v0.2.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/imdario/mergo v0.3.5/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
@@ -445,6 +498,7 @@ github.com/jpillora/backoff v1.0.0/go.mod h1:J/6gKK9jxlEcS3zixgDgUAsiuZ7yrSoa/FX
 github.com/json-iterator/go v1.1.6/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
 github.com/json-iterator/go v1.1.7/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
 github.com/json-iterator/go v1.1.8/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
+github.com/json-iterator/go v1.1.9/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
 github.com/json-iterator/go v1.1.10/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
 github.com/json-iterator/go v1.1.11/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
 github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
@@ -481,6 +535,7 @@ github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhn
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
 github.com/lightstep/lightstep-tracer-common/golang/gogo v0.0.0-20190605223551-bc2310a04743/go.mod h1:qklhhLq1aX+mtWk9cPHPzaBjWImj5ULL6C7HFJtXQMM=
 github.com/lightstep/lightstep-tracer-go v0.18.1/go.mod h1:jlF1pusYV4pidLvZ+XD0UBX0ZE6WURAspgAczcDHrL4=
+github.com/lyft/protoc-gen-star v0.5.3/go.mod h1:V0xaHgaf5oCCqmcxYcWiDfTiKsZsRc87/1qhoTACD8w=
 github.com/lyft/protoc-gen-validate v0.0.13/go.mod h1:XbGvPuh87YZc5TdIa2/I4pLk0QoUACkjt2znoq26NVQ=
 github.com/magiconair/properties v1.8.0/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ=
 github.com/magiconair/properties v1.8.1/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ=
@@ -494,19 +549,29 @@ github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA
 github.com/mailru/easyjson v0.7.6/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
 github.com/markbates/pkger v0.17.1/go.mod h1:0JoVlrol20BSywW79rN3kdFFsE5xYM+rSCQDXbLhiuI=
 github.com/mattn/go-colorable v0.0.9/go.mod h1:9vuHe8Xs5qXnSaW/c/ABM9alt+Vo+STaOChaDxuIBZU=
-github.com/mattn/go-colorable v0.1.2 h1:/bC9yWikZXAL9uJdulbSfyVNIR3n3trXl+v8+1sx8mU=
 github.com/mattn/go-colorable v0.1.2/go.mod h1:U0ppj6V5qS13XJ6of8GYAs25YV2eR4EVcfRqFIhoBtE=
+github.com/mattn/go-colorable v0.1.4/go.mod h1:U0ppj6V5qS13XJ6of8GYAs25YV2eR4EVcfRqFIhoBtE=
+github.com/mattn/go-colorable v0.1.6/go.mod h1:u6P/XSegPjTcexA+o6vUJrdnUu04hMope9wVRipJSqc=
+github.com/mattn/go-colorable v0.1.9/go.mod h1:u6P/XSegPjTcexA+o6vUJrdnUu04hMope9wVRipJSqc=
+github.com/mattn/go-colorable v0.1.12 h1:jF+Du6AlPIjs2BiUiQlKOX0rt3SujHxPnksPKZbaA40=
+github.com/mattn/go-colorable v0.1.12/go.mod h1:u5H1YNBxpqRaxsYJYSkiCWKzEfiAb1Gb520KVy5xxl4=
 github.com/mattn/go-isatty v0.0.3/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNxMWT7Zi4=
 github.com/mattn/go-isatty v0.0.4/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNxMWT7Zi4=
 github.com/mattn/go-isatty v0.0.8/go.mod h1:Iq45c/XA43vh69/j3iqttzPXn0bhXyGjM0Hdxcsrc5s=
-github.com/mattn/go-isatty v0.0.12 h1:wuysRhFDzyxgEmMf5xjvJ2M9dZoWAXNNr5LSBS7uHXY=
+github.com/mattn/go-isatty v0.0.10/go.mod h1:qgIWMr58cqv1PHHyhnkY9lrL7etaEgOFcMEpPG5Rm84=
+github.com/mattn/go-isatty v0.0.11/go.mod h1:PhnuNfih5lzO57/f3n+odYbM4JtupLOxQOAqxQCu2WE=
 github.com/mattn/go-isatty v0.0.12/go.mod h1:cbi8OIDigv2wuxKPP5vlRcQ1OAZbq2CE4Kysco4FUpU=
+github.com/mattn/go-isatty v0.0.14 h1:yVuAays6BHfxijgZPzw+3Zlu5yQgKGP2/hcQbHb7S9Y=
+github.com/mattn/go-isatty v0.0.14/go.mod h1:7GGIvUiUoEMVVmxf/4nioHXj79iQHKdU27kJ6hsGG94=
 github.com/mattn/go-runewidth v0.0.2/go.mod h1:LwmH8dsx7+W8Uxz3IHJYH5QSwggIsqBzpuz5H//U1FU=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
 github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 h1:I0XW9+e1XWDxdcEniV4rQAIOPUGDq67JSCiRCgGCZLI=
 github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
 github.com/miekg/dns v1.0.14/go.mod h1:W1PPwlIAgtquWBMBEV9nkV9Cazfe8ScdGz/Lj7v3Nrg=
+github.com/miekg/dns v1.1.26/go.mod h1:bPDLeHnStXmXAq1m/Ch/hvfNHr14JKNPMBo3VZKjuso=
+github.com/miekg/dns v1.1.41/go.mod h1:p6aan82bvRIyn+zDIv9xYNUpwa73JcSh9BKwknJysuI=
 github.com/mitchellh/cli v1.0.0/go.mod h1:hNIlj7HEI86fIcpObd7a0FcrxTWetlwJDGcceTlRvqc=
+github.com/mitchellh/cli v1.1.0/go.mod h1:xcISNoH86gajksDmfB23e/pu+B+GeFRMYmoHXxx3xhI=
 github.com/mitchellh/go-homedir v1.0.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0=
 github.com/mitchellh/go-homedir v1.1.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0=
 github.com/mitchellh/go-ps v1.0.0 h1:i6ampVEEF4wQFF+bkYfwYgY+F/uYJDktmvLPf7qIgjc=
@@ -518,9 +583,8 @@ github.com/mitchellh/hashstructure v1.1.0/go.mod h1:xUDAozZz0Wmdiufv0uyhnHkUTN6/
 github.com/mitchellh/iochan v1.0.0/go.mod h1:JwYml1nuB7xOzsp52dPpHFffvOCDupsG0QubkSMEySY=
 github.com/mitchellh/mapstructure v0.0.0-20160808181253-ca63d7c062ee/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
 github.com/mitchellh/mapstructure v1.1.2/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
-github.com/mitchellh/mapstructure v1.4.1/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo=
-github.com/mitchellh/mapstructure v1.4.2 h1:6h7AQ0yhTcIsmFmnAwQls75jp2Gzs4iB8W7pjMO+rqo=
-github.com/mitchellh/mapstructure v1.4.2/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo=
+github.com/mitchellh/mapstructure v1.4.3 h1:OVowDSCllw/YjdLkam3/sm7wEtOy59d8ndGgCcyj8cs=
+github.com/mitchellh/mapstructure v1.4.3/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo=
 github.com/mmarkdown/mmark v2.0.40+incompatible h1:vMeUeDzBK3H+/mU0oMVfMuhSXJlIA+DE/DMPQNAj5C4=
 github.com/mmarkdown/mmark v2.0.40+incompatible/go.mod h1:Uvmoz7tvsWpr7bMVxIpqZPyN3FbOtzDmnsJDFp7ltJs=
 github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
@@ -596,9 +660,10 @@ github.com/openzipkin/zipkin-go v0.2.1/go.mod h1:NaW6tEwdmWMaCDZzg8sh+IBNOxHMPnh
 github.com/openzipkin/zipkin-go v0.2.2/go.mod h1:NaW6tEwdmWMaCDZzg8sh+IBNOxHMPnhQw8ySjnjRyN4=
 github.com/pact-foundation/pact-go v1.0.4/go.mod h1:uExwJY4kCzNPcHRj+hCR/HBbOOIwwtUjcrb0b5/5kLM=
 github.com/pascaldekloe/goe v0.0.0-20180627143212-57f6aae5913c/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
+github.com/pascaldekloe/goe v0.1.0/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
 github.com/pborman/uuid v1.2.0/go.mod h1:X/NO0urCmaxf9VXbdlT7C2Yzkj2IKimNn4k+gtPdI/k=
 github.com/pelletier/go-toml v1.2.0/go.mod h1:5z9KED0ma1S8pY6P1sdut58dfprrGBbd/94hg7ilaic=
-github.com/pelletier/go-toml v1.9.3/go.mod h1:u1nR/EPcESfeI/szUZKdtJ0xRNbUoANCkoOuaOx1Y+c=
+github.com/pelletier/go-toml v1.9.4/go.mod h1:u1nR/EPcESfeI/szUZKdtJ0xRNbUoANCkoOuaOx1Y+c=
 github.com/performancecopilot/speed v3.0.0+incompatible/go.mod h1:/CLtqpZ5gBg1M9iaPbIdPPGyKcA8hKdoy6hAWba7Yac=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
@@ -614,12 +679,14 @@ github.com/pkg/sftp v1.10.1/go.mod h1:lYOWFsE0bwd1+KfKJaKeuokY15vzFx25BLbzYYoAxZ
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/posener/complete v1.1.1/go.mod h1:em0nMJCgc9GFtwrmVmEMR/ZL6WyhyjMBndrE9hABlRI=
+github.com/posener/complete v1.2.3/go.mod h1:WZIdtGGp+qx0sLrYKtIRAruyNpv6hFCicSgv7Sy7s/s=
 github.com/pquerna/cachecontrol v0.0.0-20171018203845-0dec1b30a021/go.mod h1:prYjPmNq4d1NPVmpShWobRqXY3q7Vp+80DqgxxUrUIA=
 github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXPKyh/dDVn+NZz0KFw=
 github.com/prometheus/client_golang v0.9.3-0.20190127221311-3c4408c8b829/go.mod h1:p2iRAGwDERtqlqzRXnrOVns+ignqQo//hLXqYxZYVNs=
 github.com/prometheus/client_golang v0.9.3/go.mod h1:/TN21ttK/J9q6uSwhBd54HahCDft0ttaMvbicHlPoso=
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
 github.com/prometheus/client_golang v1.3.0/go.mod h1:hJaj2vgQTGQmVCsAACORcieXFeDPbaTKGT+JTgUa3og=
+github.com/prometheus/client_golang v1.4.0/go.mod h1:e9GMxYsXl05ICDXkRhurwBS4Q3OK1iX/F2sw+iXX5zU=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0 h1:HNkLOAEQMIDv/K+04rukrLx6ch7msSRwf3/SASFAGtQ=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
@@ -635,6 +702,7 @@ github.com/prometheus/common v0.2.0/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.4.0/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.7.0/go.mod h1:DjGbpBbp5NYNiECxcL/VnbXCCaQpKd3tt26CguLLsqA=
+github.com/prometheus/common v0.9.1/go.mod h1:yhUN8i9wzaXS3w1O07YhxHEBxD+W35wd8bs7vj7HSQ4=
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.31.1 h1:d18hG4PkHnNAKNMOmFuXFaiY8Us0nird/2m60uS1AMs=
@@ -657,7 +725,9 @@ github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTE
 github.com/rogpeppe/go-internal v1.8.0 h1:FCbCCtXNOY3UtUuHUYaghJg4y7Fd14rXifAYUAtL9R8=
 github.com/rogpeppe/go-internal v1.8.0/go.mod h1:WmiCO8CzOY8rg0OYDC4/i/2WRWAB6poM+XZ2dLUbcbE=
 github.com/russross/blackfriday/v2 v2.0.1/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
+github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/ryanuber/columnize v0.0.0-20160712163229-9b3edd62028f/go.mod h1:sm1tb6uqfes/u+d4ooFouqFdy9/2g9QGwK3SQygK0Ts=
+github.com/sagikazarmark/crypt v0.3.0/go.mod h1:uD/D+6UF4SrIR1uGEv7bBNkNqLGqUr43MRiaGWX1Nig=
 github.com/samuel/go-zookeeper v0.0.0-20190923202752-2cc03de413da/go.mod h1:gi+0XIa01GRL2eRQVjQkKGqKF3SF9vZR/HnPullcV2E=
 github.com/savsgio/gotils v0.0.0-20210617111740-97865ed5a873 h1:N3Af8f13ooDKcIhsmFT7Z05CStZWu4C7Md0uDEy4q6o=
 github.com/savsgio/gotils v0.0.0-20210617111740-97865ed5a873/go.mod h1:dmPawKuiAeG/aFYVs2i+Dyosoo7FNcm+Pi8iK6ZUrX8=
@@ -681,15 +751,16 @@ github.com/sony/gobreaker v0.4.1/go.mod h1:ZKptC7FHNvhBz7dN2LGjPVBz2sZJmc0/PkyDJ
 github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
 github.com/spf13/afero v1.1.2/go.mod h1:j4pytiNVoe2o6bmDsKpLACNPDBIoEAkihy7loJ1B0CQ=
 github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
+github.com/spf13/afero v1.3.3/go.mod h1:5KUK8ByomD5Ti5Artl0RtHeI5pTF7MIDuXL3yY520V4=
 github.com/spf13/afero v1.6.0/go.mod h1:Ai8FlHk4v/PARR026UzYexafAt9roJ7LcLMAmO6Z93I=
 github.com/spf13/cast v1.3.0/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
-github.com/spf13/cast v1.3.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
+github.com/spf13/cast v1.4.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
 github.com/spf13/cobra v0.0.3/go.mod h1:1l0Ry5zgKvJasoi3XT1TypsSe7PqH0Sj9dhYf7v3XqQ=
 github.com/spf13/cobra v1.0.0/go.mod h1:/6GTrnGXV9HjY+aR4k0oJ5tcvakLuG6EuKReYlHNrgE=
 github.com/spf13/cobra v1.1.1/go.mod h1:WnodtKOvamDL/PwE2M4iKs8aMDBZ5Q5klgD3qfVJQMI=
 github.com/spf13/cobra v1.1.3/go.mod h1:pGADOWyqRD/YMrPZigI/zbliZ2wVD/23d+is3pSWzOo=
-github.com/spf13/cobra v1.2.1 h1:+KmjbUw1hriSNMF55oPrkZcb27aECyrj8V2ytv7kWDw=
-github.com/spf13/cobra v1.2.1/go.mod h1:ExllRjgxM/piMAM+3tAZvg8fsklGAf3tPfi+i8t68Nk=
+github.com/spf13/cobra v1.3.0 h1:R7cSvGu+Vv+qX0gW5R/85dx2kmmJT5z5NM8ifdYjdn0=
+github.com/spf13/cobra v1.3.0/go.mod h1:BrRVncBjOJa/eUcVVm9CE+oC6as8k+VYr4NY7WCi9V4=
 github.com/spf13/jwalterweatherman v1.0.0/go.mod h1:cQK4TGJAtQXfYWX+Ddv3mKDzgVb68N+wFjFa4jdeBTo=
 github.com/spf13/jwalterweatherman v1.1.0/go.mod h1:aNWZUN0dPAAO/Ljvb5BEdw96iTZ0EXowPYD95IqWIGo=
 github.com/spf13/pflag v0.0.0-20170130214245-9ff6c6923cff/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
@@ -699,7 +770,7 @@ github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/spf13/viper v1.4.0/go.mod h1:PTJ7Z/lr49W6bUbkmS1V3by4uWynFiR9p7+dSq/yZzE=
 github.com/spf13/viper v1.7.0/go.mod h1:8WkrPz2fc9jxqZNCJI/76HCieCp4Q8HaLFoCha5qpdg=
-github.com/spf13/viper v1.8.1/go.mod h1:o0Pch8wJ9BVSWGQMbra6iw0oQ5oktSIBaujf1rJH9Ns=
+github.com/spf13/viper v1.10.0/go.mod h1:SoyBPwAtKDzypXNDFKN5kzH7ppppbGZtls1UpIy5AsM=
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
 github.com/streadway/amqp v0.0.0-20190404075320-75d898a42a94/go.mod h1:AZpEONHx3DKn8O/DFsRAY58/XVQiIPMTMB1SddzLXVw=
 github.com/streadway/amqp v0.0.0-20190827072141-edfb9018d271/go.mod h1:AZpEONHx3DKn8O/DFsRAY58/XVQiIPMTMB1SddzLXVw=
@@ -722,6 +793,7 @@ github.com/tidwall/pretty v1.0.0/go.mod h1:XNkn88O1ChpSDQmQeStsy+sBenx6DDtFZJxhV
 github.com/tmc/grpc-websocket-proxy v0.0.0-20170815181823-89b8d40f7ca8/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20201229170055-e5319fda7802/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
+github.com/tv42/httpunix v0.0.0-20150427012821-b75d8614f926/go.mod h1:9ESjWnEqriFuLhtthL60Sar/7RFoluCcXsuvEwTV5KM=
 github.com/ugorji/go v1.1.4/go.mod h1:uQMGLiO92mf5W77hV/PUCpI3pbzQx3CRekS0kk+RGrc=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
 github.com/urfave/cli v1.20.0/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
@@ -764,8 +836,11 @@ go.etcd.io/bbolt v1.3.3/go.mod h1:IbVyRI1SCnLcuJnV2u8VeU0CEYM7e686BmAb1XKL+uU=
 go.etcd.io/bbolt v1.3.6/go.mod h1:qXsaaIqmgQH0T+OPdb99Bf+PKfBBQVAdyD6TY9G8XM4=
 go.etcd.io/etcd v0.0.0-20191023171146-3cf2f69b5738/go.mod h1:dnLIgRNXwCJa5e+c6mIZCrds/GIG4ncV9HhK5PX7jPg=
 go.etcd.io/etcd/api/v3 v3.5.0/go.mod h1:cbVKeC6lCfl7j/8jBhAK6aIYO9XOjdptoxU/nLQcPvs=
+go.etcd.io/etcd/api/v3 v3.5.1/go.mod h1:cbVKeC6lCfl7j/8jBhAK6aIYO9XOjdptoxU/nLQcPvs=
 go.etcd.io/etcd/client/pkg/v3 v3.5.0/go.mod h1:IJHfcCEKxYu1Os13ZdwCwIUTUVGYTSAM3YSwc9/Ac1g=
+go.etcd.io/etcd/client/pkg/v3 v3.5.1/go.mod h1:IJHfcCEKxYu1Os13ZdwCwIUTUVGYTSAM3YSwc9/Ac1g=
 go.etcd.io/etcd/client/v2 v2.305.0/go.mod h1:h9puh54ZTgAKtEbut2oe9P4L/oqKCVB6xsXlzd7alYQ=
+go.etcd.io/etcd/client/v2 v2.305.1/go.mod h1:pMEacxZW7o8pg4CrFE7pquyCJJzZvkvdD2RibOCCCGs=
 go.etcd.io/etcd/client/v3 v3.5.0/go.mod h1:AIKXXVX/DQXtfTEqBryiLTUXwON+GuvO6Z7lLS/oTh0=
 go.etcd.io/etcd/pkg/v3 v3.5.0/go.mod h1:UzJGatBQ1lXChBkQF0AuAtkRQMYnHubxAEYIrC3MSsE=
 go.etcd.io/etcd/raft/v3 v3.5.0/go.mod h1:UFOHSIvO/nKwd4lhkwabrTD3cqW5yVyYYf/KlD00Szc=
@@ -823,13 +898,14 @@ golang.org/x/crypto v0.0.0-20190611184440-5c40567a22f8/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20190617133340-57b3e21c3d56/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190701094942-4def268fd1a4/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190820162420-60c769a6c586/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
+golang.org/x/crypto v0.0.0-20190923035154-9ee001bba392/go.mod h1:/lpIB1dKB+9EgE3H3cr1v9wB50oz8l4C4h62xy7jSTY=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20201002170205-7f63de1d35b0/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210220033148-5ea612d1eb83/go.mod h1:jdWPYTVW3xRLrWPugEBEK3UY2ZEsg3UU495nc5E+M+I=
 golang.org/x/crypto v0.0.0-20210513164829-c07d793c2f9a/go.mod h1:P+XmwS30IXTQdn5tA2iutPOUgjI07+tq3H3K9MVA1s8=
-golang.org/x/crypto v0.0.0-20210711020723-a769d52b0f97 h1:/UOmuWzQfxxo9UtlXMwuQU8CMgg1eZXqTRwkSQJWKOI=
-golang.org/x/crypto v0.0.0-20210711020723-a769d52b0f97/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/crypto v0.0.0-20210817164053-32db794688a5 h1:HWj/xjIHfjYU5nVXpTM0s39J9CbLn7Cc5a7IC5rwsMQ=
+golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -864,8 +940,9 @@ golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.4.2 h1:Gz96sIWK3OalVv/I/qNygP42zyoKp3xptRVCWRFEBvo=
 golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.5.0 h1:UG21uOlmZabA4fW5i7ZX6bjw1xELEGg/ZLgZq9auk/Q=
+golang.org/x/mod v0.5.0/go.mod h1:5OXOZSfqPIIbmVBIIKWRFfZjPR0E5r58TLhUjH0a2Ro=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -890,6 +967,7 @@ golang.org/x/net v0.0.0-20190628185345-da137c7871d7/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20190724013045-ca1201d0de80/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190813141303-74dc4d7220e7/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20190923162816-aa69164e4478/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200114155413-6afb5195e5aa/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200202094626-16171245cfb2/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
@@ -916,12 +994,14 @@ golang.org/x/net v0.0.0-20210224082022-3d97a244fca7/go.mod h1:m0MpNAwzfU5UDzcl9v
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210316092652-d523dce5a7f4/go.mod h1:RBQZq4jEuRlivfhVLdyRGr576XBO4/greRjx4P4O3yc=
 golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
+golang.org/x/net v0.0.0-20210410081132-afb366fc7cd1/go.mod h1:9tjilg8BloeKEkVJvy7fQ90B1CfIiPueXVOjqfkSzI8=
 golang.org/x/net v0.0.0-20210428140749-89ef3d95e781/go.mod h1:OJAsFXCWl8Ukc7SiCT/9KSuxbyM7479/AVlXFRxuMCk=
+golang.org/x/net v0.0.0-20210503060351-7fd8e65b6420/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210510120150-4163338589ed/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210520170846-37e1c6afe023/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20210805182204-aaa1db679c0d h1:20cMwl2fHAzkJMEA+8J4JgqBQcQGzbisXo31MIeenXI=
-golang.org/x/net v0.0.0-20210805182204-aaa1db679c0d/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20210813160813-60bc85c4be6d h1:LO7XpTYMwTqxjLcGWPijK3vRXg1aWdlNOVOHRq45d7c=
+golang.org/x/net v0.0.0-20210813160813-60bc85c4be6d/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -933,9 +1013,13 @@ golang.org/x/oauth2 v0.0.0-20201208152858-08078c50e5b5/go.mod h1:KelEdhl1UZF7XfJ
 golang.org/x/oauth2 v0.0.0-20210218202405-ba52d332ba99/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210220000619-9bb904979d93/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210313182246-cd4f82c27b84/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210402161424-2e8d93401602/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c h1:pkQiBZBvdos9qq4wBAHqlzuZHEXo07pqV06ef90u1WI=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210628180205-a41e5a781914/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20211005180243-6b3c2da341f1/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20211104180415-d3ed0bb246c8 h1:RerP+noqYHUQ8CMRcPlC2nvTa4dcBIjegkuWdcUDuqg=
+golang.org/x/oauth2 v0.0.0-20211104180415-d3ed0bb246c8/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -970,9 +1054,12 @@ golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20190726091711-fc99dfbffb4e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190826190057-c7b8b68b1456/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20190922100055-0a153f010e69/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20190924154521-2837fb4f24fe/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191001151750-bb3f8db39f24/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191002063906-3421d5a6bb1c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20191008105621-543471e840be/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191026070338-33540a1f6037/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191115151921-52ab43148777/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -983,6 +1070,7 @@ golang.org/x/sys v0.0.0-20200106162015-b016eb3dc98e/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200113162924-86b910548bc1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200116001909-b77594299b42/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200122134326-e047566fdf82/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200124204421-9fbb57f87de9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200202164722-d101bd2416d5/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200212091648-12a6c2dcc1e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200223170610-d5e6a3e2c0ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -1009,6 +1097,7 @@ golang.org/x/sys v0.0.0-20210112080510-489259a85091/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210119212857-b64e53b001e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210220050731-9a76102bfb43/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210303074136-134d130e1a04/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210305230114-8fe3ee5dd75b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210315160823-c6e025ad8005/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210320140829-1e4c9ba3b0c4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -1019,11 +1108,20 @@ golang.org/x/sys v0.0.0-20210426230700-d19ff857e887/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210514084401-e8d321eab015/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210603125802-9665404d3644/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210630005230-0f9fa26af87c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210817190340-bfb29a6856f2 h1:c8PlLMqBbOHoqtjteWm5/kbe6rNY2pbRfbIMVnepueo=
+golang.org/x/sys v0.0.0-20210806184541-e5e7981a1069/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210816183151-1e6c022a8912/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210817190340-bfb29a6856f2/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210823070655-63515b42dcdf/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210908233432-aa78b53d3365/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210927094055-39ccf1dd6fa6/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20211007075335-d3039528d8ac/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20211124211545-fe61309f8881/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20211205182925-97ca703d548d h1:FjkYO/PPp4Wi0EAUOVLxePm7qVW4r4ctbWpURyuOD0E=
+golang.org/x/sys v0.0.0-20211205182925-97ca703d548d/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d h1:SZxvLBoTP5yHO3Frd4z4vrF+DBX9vMVanchswa69toE=
@@ -1035,8 +1133,9 @@ golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.6 h1:aRYxNxv6iGQlyVaZmk6ZgYEDa+Jg18DxebPSrd6bg1M=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.7 h1:olpwvP2KacW1ZWvsR7uQhoyTYvKAupfQrRGBFM352Gk=
+golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/time v0.0.0-20180412165947-fbb02b2291d2/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
@@ -1065,6 +1164,7 @@ golang.org/x/tools v0.0.0-20190621195816-6e04913cbbac/go.mod h1:/rFqwRUd4F7ZHNgw
 golang.org/x/tools v0.0.0-20190624222133-a101b041ded4/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190628153133-6cdbf07be9d0/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190816200558-6889da9d5479/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
+golang.org/x/tools v0.0.0-20190907020128-2ca718005c18/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20190911174233-4f2ddba30aff/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191012152004-8de300cfc20a/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191029041327-9cc4af7d6b2c/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
@@ -1107,8 +1207,12 @@ golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4f
 golang.org/x/tools v0.0.0-20210105154028-b0ab187a4818/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.1.0/go.mod h1:xkSsbof2nBLbhDlRMhhhyNLN/zl3eTqcnHD5viDpcZ0=
-golang.org/x/tools v0.1.2 h1:kRBLX7v7Af8W7Gdbbc908OJcdgtK8bOz9Uaj8/F1ACA=
+golang.org/x/tools v0.1.1/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.2/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.3/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.4/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.5 h1:ouewzE6p+/VEB31YYnTbEJdi8pFqKp4P4n85vwo3DHA=
+golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
@@ -1138,7 +1242,17 @@ google.golang.org/api v0.36.0/go.mod h1:+z5ficQTmoYpPn8LCUNVpK5I7hwkpjbcgqA7I34q
 google.golang.org/api v0.40.0/go.mod h1:fYKFpnQN0DsDSKRVRcQSDQNtqWPfM9i+zNPxepjRCQ8=
 google.golang.org/api v0.41.0/go.mod h1:RkxM5lITDfTzmyKFPt+wGrCJbVfniCr2ool8kTBzRTU=
 google.golang.org/api v0.43.0/go.mod h1:nQsDGjRXMo4lvh5hP0TKqF244gqhGcr/YSIykhUk/94=
-google.golang.org/api v0.44.0/go.mod h1:EBOGZqzyhtvMDoxwS97ctnh0zUmYY6CxqXsc1AvkYD8=
+google.golang.org/api v0.47.0/go.mod h1:Wbvgpq1HddcWVtzsVLyfLp8lDg6AA241LmgIL59tHXo=
+google.golang.org/api v0.48.0/go.mod h1:71Pr1vy+TAZRPkPs/xlCf5SsU8WjuAWv1Pfjbtukyy4=
+google.golang.org/api v0.50.0/go.mod h1:4bNT5pAuq5ji4SRZm+5QIkjny9JAyVD/3gaSihNefaw=
+google.golang.org/api v0.51.0/go.mod h1:t4HdrdoNgyN5cbEfm7Lum0lcLDLiise1F8qDKX00sOU=
+google.golang.org/api v0.54.0/go.mod h1:7C4bFFOvVDGXjfDTAsgGwDgAxRDeQ4X8NvUedIt6z3k=
+google.golang.org/api v0.55.0/go.mod h1:38yMfeP1kfjsl8isn0tliTjIb1rJXcQi4UXlbqivdVE=
+google.golang.org/api v0.56.0/go.mod h1:38yMfeP1kfjsl8isn0tliTjIb1rJXcQi4UXlbqivdVE=
+google.golang.org/api v0.57.0/go.mod h1:dVPlbZyBo2/OjBpmvNdpn2GRm6rPy75jyU7bmhdrMgI=
+google.golang.org/api v0.59.0/go.mod h1:sT2boj7M9YJxZzgeZqXogmhfmRWDtPzT31xkieUbuZU=
+google.golang.org/api v0.61.0/go.mod h1:xQRti5UdCmoCEqFxcz93fTl338AVqDgyaDRuOZ3hg9I=
+google.golang.org/api v0.62.0/go.mod h1:dKmwPCydfsad4qCH08MSdgWjfHOyfpd4VtDGgRFdavw=
 google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
 google.golang.org/appengine v1.2.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
@@ -1191,8 +1305,30 @@ google.golang.org/genproto v0.0.0-20210303154014-9728d6b83eeb/go.mod h1:FWY/as6D
 google.golang.org/genproto v0.0.0-20210310155132-4ce2db91004e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20210319143718-93e7006c17a6/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20210402141018-6c239bbf2bb1/go.mod h1:9lPAdzaEmUacj36I+k7YKbEc5CXzPIeORRgDAUOu28A=
-google.golang.org/genproto v0.0.0-20210602131652-f16073e35f0c h1:wtujag7C+4D6KMoulW9YauvK2lgdvCMS260jsqqBXr0=
+google.golang.org/genproto v0.0.0-20210513213006-bf773b8c8384/go.mod h1:P3QM42oQyzQSnHPnZ/vqoCdDmzH28fzWByN9asMeM8A=
 google.golang.org/genproto v0.0.0-20210602131652-f16073e35f0c/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
+google.golang.org/genproto v0.0.0-20210604141403-392c879c8b08/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
+google.golang.org/genproto v0.0.0-20210608205507-b6d2f5bf0d7d/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
+google.golang.org/genproto v0.0.0-20210624195500-8bfb893ecb84/go.mod h1:SzzZ/N+nwJDaO1kznhnlzqS8ocJICar6hYhVyhi++24=
+google.golang.org/genproto v0.0.0-20210713002101-d411969a0d9a/go.mod h1:AxrInvYm1dci+enl5hChSFPOmmUF1+uAa/UsgNRWd7k=
+google.golang.org/genproto v0.0.0-20210716133855-ce7ef5c701ea/go.mod h1:AxrInvYm1dci+enl5hChSFPOmmUF1+uAa/UsgNRWd7k=
+google.golang.org/genproto v0.0.0-20210728212813-7823e685a01f/go.mod h1:ob2IJxKrgPT52GcgX759i1sleT07tiKowYBGbczaW48=
+google.golang.org/genproto v0.0.0-20210805201207-89edb61ffb67/go.mod h1:ob2IJxKrgPT52GcgX759i1sleT07tiKowYBGbczaW48=
+google.golang.org/genproto v0.0.0-20210813162853-db860fec028c/go.mod h1:cFeNkxwySK631ADgubI+/XFU/xp8FD5KIVV4rj8UC5w=
+google.golang.org/genproto v0.0.0-20210821163610-241b8fcbd6c8/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210828152312-66f60bf46e71/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210903162649-d08c68adba83/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210909211513-a8c4777a87af/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210924002016-3dee208752a0/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20211008145708-270636b82663/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20211028162531-8db9c33dc351/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20211118181313-81c1377c94b1/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20211129164237-f09f9a12af12/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20211203200212-54befc351ae9/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20211206160659-862468c7d6e0/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20211208223120-3a66f561d7aa h1:I0YcKz0I7OAhddo7ya8kMnvprhcWM045PmkBdMO9zN0=
+google.golang.org/genproto v0.0.0-20211208223120-3a66f561d7aa/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
 google.golang.org/grpc v1.17.0/go.mod h1:6QZJwpn2B+Zp71q/5VxRsJ6NXXVCE5NRUHRo+f3cWCs=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.0/go.mod h1:chYK+tFQF0nDUGJgXMSgLCQk3phJEuONr2DCgLDdAQM=
@@ -1218,9 +1354,15 @@ google.golang.org/grpc v1.35.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAG
 google.golang.org/grpc v1.36.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
 google.golang.org/grpc v1.36.1/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
 google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
+google.golang.org/grpc v1.37.1/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/grpc v1.38.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
-google.golang.org/grpc v1.41.0 h1:f+PlOh7QV4iIJkPrx5NQ7qaNGFQ3OTse67yaDHfju4E=
-google.golang.org/grpc v1.41.0/go.mod h1:U3l9uK9J0sini8mHphKoXyaqDA/8VyGnDee1zzIUK6k=
+google.golang.org/grpc v1.39.0/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
+google.golang.org/grpc v1.39.1/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
+google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
+google.golang.org/grpc v1.40.1/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
+google.golang.org/grpc v1.42.0 h1:XT2/MFpuPFsEX2fWh3YQtHkZ+WYZFQRfaUgLZYj/p6A=
+google.golang.org/grpc v1.42.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU=
+google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
@@ -1232,8 +1374,9 @@ google.golang.org/protobuf v1.23.1-0.20200526195155-81db48ad09cc/go.mod h1:EGpAD
 google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGjtUeSXeh4=
 google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
-google.golang.org/protobuf v1.26.0 h1:bxAC2xTBsZGibn2RTntX0oH50xLsqy1OxA9tTL3p/lk=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
+google.golang.org/protobuf v1.27.1 h1:SnqbnDw1V7RiZcXPx5MEeqPv2s79L9i7BJUlG/+RurQ=
+google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
@@ -1252,7 +1395,7 @@ gopkg.in/go-playground/pool.v3 v3.1.1/go.mod h1:pUAGBximS/hccTTSzEop6wvvQhVa3QPD
 gopkg.in/inf.v0 v0.9.1 h1:73M5CoZyi3ZLMOyDlQh031Cx6N9NDJ2Vvfl76EDAgDc=
 gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
 gopkg.in/ini.v1 v1.51.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
-gopkg.in/ini.v1 v1.62.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
+gopkg.in/ini.v1 v1.66.2/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
 gopkg.in/natefinch/lumberjack.v2 v2.0.0/go.mod h1:l0ndWWf7gzL7RNwBG7wST/UCcT4T24xpD6X8LsfU/+k=
 gopkg.in/resty.v1 v1.12.0/go.mod h1:mDo4pnntr5jdWRML875a/NmxYqAlA73dVijT2AXvQQo=
 gopkg.in/square/go-jose.v2 v2.2.2/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=

From d6284d16728063c870aa602e0585999607acbcaa Mon Sep 17 00:00:00 2001
From: Noelle Leigh <5957867+noelleleigh@users.noreply.github.com>
Date: Thu, 23 Dec 2021 14:50:10 -0500
Subject: [PATCH 0015/1641] docs: fix typo'd executible name (#8041)

In "Checking ingress controller version", the paragraph cites the incorrect name for the executable (the one in the code block is correct).
This commit fixes that inconsistency.
---
 docs/deploy/index.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index b9ce87e5d..af29ef767 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -295,7 +295,7 @@ For more information about bare metal deployments (and how to use port 80 instea
 
 ### Checking ingress controller version
 
-Run `ingress-nginx-controller --version` within the pod, for instance with `kubectl exec`:
+Run `/nginx-ingress-controller --version` within the pod, for instance with `kubectl exec`:
 
 ```console
 POD_NAMESPACE=ingress-nginx

From 079d0cd41573ab0ef052b5398622e8c414eaa3d2 Mon Sep 17 00:00:00 2001
From: Josh Soref <2119212+jsoref@users.noreply.github.com>
Date: Thu, 23 Dec 2021 15:02:29 -0500
Subject: [PATCH 0016/1641] Report expired certificates (#8045) (#8046)

Co-authored-by: Josh Soref <jsoref@users.noreply.github.com>
---
 internal/ingress/controller/controller.go | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 7d958a626..7c200bd8f 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -1332,7 +1332,10 @@ func (n *NGINXController) createServers(data []*ingress.Ingress,
 
 			servers[host].SSLCert = cert
 
-			if cert.ExpireTime.Before(time.Now().Add(240 * time.Hour)) {
+			now := time.Now()
+			if cert.ExpireTime.Before(now) {
+				klog.Warningf("SSL certificate for server %q expired (%v)", host, cert.ExpireTime)
+			} else if cert.ExpireTime.Before(now.Add(240 * time.Hour)) {
 				klog.Warningf("SSL certificate for server %q is about to expire (%v)", host, cert.ExpireTime)
 			}
 		}

From 362c97bd0976affb3d82074b65d46ae3f597692d Mon Sep 17 00:00:00 2001
From: ZxYuan <lvp0526@gmail.com>
Date: Fri, 24 Dec 2021 04:08:30 +0800
Subject: [PATCH 0017/1641] Remove force sync / 30s for non-external backends
 (#7958)

---
 rootfs/etc/nginx/lua/balancer.lua | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/rootfs/etc/nginx/lua/balancer.lua b/rootfs/etc/nginx/lua/balancer.lua
index b6c420c9f..2c6a83ae9 100644
--- a/rootfs/etc/nginx/lua/balancer.lua
+++ b/rootfs/etc/nginx/lua/balancer.lua
@@ -23,7 +23,6 @@ local ngx = ngx
 -- it will take <the delay until controller POSTed the backend object to the
 -- Nginx endpoint> + BACKENDS_SYNC_INTERVAL
 local BACKENDS_SYNC_INTERVAL = 1
-local BACKENDS_FORCE_SYNC_INTERVAL = 30
 
 local DEFAULT_LB_ALG = "round_robin"
 local IMPLEMENTATIONS = {
@@ -146,10 +145,7 @@ end
 
 local function sync_backends()
   local raw_backends_last_synced_at = configuration.get_raw_backends_last_synced_at()
-  ngx.update_time()
-  local current_timestamp = ngx.time()
-  if current_timestamp - backends_last_synced_at < BACKENDS_FORCE_SYNC_INTERVAL
-      and raw_backends_last_synced_at <= backends_last_synced_at then
+  if raw_backends_last_synced_at <= backends_last_synced_at then
     return
   end
 

From 66c5793af32f9ea9027bee054bad41268d1f7db1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 23 Dec 2021 13:20:29 -0800
Subject: [PATCH 0018/1641] Bump google.golang.org/grpc from 1.41.0 to 1.43.0
 (#8054)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.41.0 to 1.43.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.41.0...v1.43.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 3 ++-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/go.mod b/go.mod
index dc45a8044..6e2f1abf9 100644
--- a/go.mod
+++ b/go.mod
@@ -28,7 +28,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20210427055340-87e10242a981
 	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5
 	golang.org/x/net v0.0.0-20210813160813-60bc85c4be6d
-	google.golang.org/grpc v1.42.0
+	google.golang.org/grpc v1.43.0
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	k8s.io/api v0.22.2
diff --git a/go.sum b/go.sum
index 669f21dc4..96021702c 100644
--- a/go.sum
+++ b/go.sum
@@ -1360,8 +1360,9 @@ google.golang.org/grpc v1.39.0/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnD
 google.golang.org/grpc v1.39.1/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
 google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
 google.golang.org/grpc v1.40.1/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
-google.golang.org/grpc v1.42.0 h1:XT2/MFpuPFsEX2fWh3YQtHkZ+WYZFQRfaUgLZYj/p6A=
 google.golang.org/grpc v1.42.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU=
+google.golang.org/grpc v1.43.0 h1:Eeu7bZtDZ2DpRCsLhUlcrLnvYaMK1Gz86a+hMVvELmM=
+google.golang.org/grpc v1.43.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU=
 google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=

From 8e9bf7f62c454bed1009a9a99ded721f1ed61ca0 Mon Sep 17 00:00:00 2001
From: learn0208 <learn0208@gmail.com>
Date: Fri, 24 Dec 2021 05:28:29 +0800
Subject: [PATCH 0019/1641] fix custom-error-pages file not exist (#7728)

---
 images/custom-error-pages/rootfs/Dockerfile | 1 +
 1 file changed, 1 insertion(+)

diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index fc09e92d1..cdceb032b 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -29,6 +29,7 @@ RUN go get . && \
 FROM gcr.io/distroless/static:nonroot
 
 COPY --from=builder /go/src/k8s.io/ingress-nginx/images/custom-error-pages/nginx-errors /
+COPY --from=builder /go/src/k8s.io/ingress-nginx/images/custom-error-pages/www /www
 USER nonroot:nonroot
 
 CMD ["/nginx-errors"]

From 6d4c51c31f0c36ab95a920f9f08fc858fdbd544e Mon Sep 17 00:00:00 2001
From: Bhumij Gupta <bhumijgupta@gmail.com>
Date: Fri, 24 Dec 2021 03:02:30 +0530
Subject: [PATCH 0020/1641] Added docs for --ingress-class-by-name flag in the
 cli arguments page (#7624)

* Added docs for --ingress-class-by-name flag in the cli arguments page

Signed-off-by: bhumijgupta <bhumijgupta@gmail.com>

* Updated docs to match the flag description in code

Signed-off-by: bhumijgupta <bhumijgupta@gmail.com>
---
 docs/user-guide/cli-arguments.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index b3bac7d96..bbf06b720 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -28,6 +28,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--http-port`                      | Port to use for servicing HTTP traffic. (default 80) |
 | `--https-port`                     | Port to use for servicing HTTPS traffic. (default 443) |
 | `--ingress-class`                  | Name of the ingress class this controller satisfies. The class of an Ingress object is set using the field IngressClassName in Kubernetes clusters version v1.18.0 or higher or the annotation "kubernetes.io/ingress.class" (deprecated). If this parameter is not set, or set to the default value of "nginx", it will handle ingresses with either an empty or "nginx" class name. |
+| `--ingress-class-by-name`          | Define if Ingress Controller should watch for Ingress Class by Name together with Controller Class. (default false) |
 | `--kubeconfig`                     | Path to a kubeconfig file containing authorization and API server information. |
 | `--log_backtrace_at`               | when logging hits line file:N, emit a stack trace (default :0) |
 | `--log_dir`                        | If non-empty, write log files in this directory |

From 452515ca2f4961aef7e1624c596f4e75865f71f8 Mon Sep 17 00:00:00 2001
From: agile6v <agile6v@gmail.com>
Date: Fri, 24 Dec 2021 05:54:30 +0800
Subject: [PATCH 0021/1641] doc: improvement (#7996)

---
 docs/user-guide/nginx-configuration/annotations.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 5a217c27d..2dacc5293 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -641,7 +641,7 @@ Note: All timeout values are unitless and in seconds e.g. `nginx.ingress.kuberne
 
 ### Proxy redirect
 
-With the annotations `nginx.ingress.kubernetes.io/proxy-redirect-from` and `nginx.ingress.kubernetes.io/proxy-redirect-to` it is possible to
+The annotations `nginx.ingress.kubernetes.io/proxy-redirect-from` and `nginx.ingress.kubernetes.io/proxy-redirect-to` will set the first and second parameters of NGINX's proxy_redirect directive respectively. It is possible to
 set the text that should be changed in the `Location` and `Refresh` header fields of a [proxied server response](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_redirect)
 
 Setting "off" or "default" in the annotation `nginx.ingress.kubernetes.io/proxy-redirect-from` disables `nginx.ingress.kubernetes.io/proxy-redirect-to`,

From 1bd083276d41261cf2025a964cfbe247369f4336 Mon Sep 17 00:00:00 2001
From: nasa9084 <nasa9084@users.noreply.github.com>
Date: Thu, 30 Dec 2021 02:21:36 +0900
Subject: [PATCH 0022/1641] set edit_uri value with main branch (#8088)

---
 mkdocs.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/mkdocs.yml b/mkdocs.yml
index e15e015dc..c76a640f6 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -2,6 +2,7 @@ site_name: NGINX Ingress Controller
 repo_name: "kubernetes/ingress-nginx"
 repo_url: https://github.com/kubernetes/ingress-nginx
 site_url: https://kubernetes.github.io/ingress-nginx
+edit_uri: edit/main/docs/
 
 # Extensions
 markdown_extensions:

From a14edba8d562390da444023256dad7175122b170 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Tom=C3=A1=C5=A1=20M=C3=B3zes?= <hydrapolic@gmail.com>
Date: Thu, 30 Dec 2021 01:02:50 +0100
Subject: [PATCH 0023/1641] Expose GeoIP2 Continent code as variable (#8072)

---
 rootfs/etc/nginx/template/nginx.tmpl | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index bf780fe80..954d07fd7 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -181,6 +181,7 @@ http {
     geoip2 /etc/nginx/geoip/GeoLite2-Country.mmdb {
         $geoip2_country_code source=$remote_addr country iso_code;
         $geoip2_country_name source=$remote_addr country names en;
+        $geoip2_continent_code source=$remote_addr continent code;
         $geoip2_continent_name source=$remote_addr continent names en;
     }
     {{ end }}
@@ -189,6 +190,7 @@ http {
     geoip2 /etc/nginx/geoip/GeoIP2-Country.mmdb {
         $geoip2_country_code source=$remote_addr country iso_code;
         $geoip2_country_name source=$remote_addr country names en;
+        $geoip2_continent_code source=$remote_addr continent code;
         $geoip2_continent_name source=$remote_addr continent names en;
     }
     {{ end }}

From e625c2507a4b73f779daa8b375aeeb0ad8ca5fa2 Mon Sep 17 00:00:00 2001
From: Wei Wu <62574090+weiwu-sre@users.noreply.github.com>
Date: Wed, 29 Dec 2021 16:14:50 -0800
Subject: [PATCH 0024/1641] Fix chashsubset backend with canary (#7235)

* Fix chashsubset backend with canary

* use floor for buckets calculation to remove hot spot

* Remove testing code
---
 rootfs/etc/nginx/lua/balancer/chashsubset.lua    |  5 +++--
 .../nginx/lua/test/balancer/chashsubset_test.lua | 16 ++++++++++++++++
 2 files changed, 19 insertions(+), 2 deletions(-)

diff --git a/rootfs/etc/nginx/lua/balancer/chashsubset.lua b/rootfs/etc/nginx/lua/balancer/chashsubset.lua
index d9ceb471e..f004521bd 100644
--- a/rootfs/etc/nginx/lua/balancer/chashsubset.lua
+++ b/rootfs/etc/nginx/lua/balancer/chashsubset.lua
@@ -25,7 +25,6 @@ local function build_subset_map(backend)
 
   local set_count = math.ceil(#endpoints/subset_size)
   local node_count = set_count * subset_size
-
   -- if we don't have enough endpoints, we reuse endpoints in the last set to
   -- keep the same number on all of them.
   local j = 1
@@ -61,7 +60,9 @@ function _M.new(self, backend)
     instance = resty_chash:new(subset_map),
     hash_by = complex_val,
     subsets = subsets,
-    current_endpoints = backend.endpoints
+    current_endpoints = backend.endpoints,
+    traffic_shaping_policy = backend.trafficShapingPolicy,
+    alternative_backends = backend.alternativeBackends,
   }
   setmetatable(o, self)
   self.__index = self
diff --git a/rootfs/etc/nginx/lua/test/balancer/chashsubset_test.lua b/rootfs/etc/nginx/lua/test/balancer/chashsubset_test.lua
index bbf55838c..59cb1e588 100644
--- a/rootfs/etc/nginx/lua/test/balancer/chashsubset_test.lua
+++ b/rootfs/etc/nginx/lua/test/balancer/chashsubset_test.lua
@@ -86,5 +86,21 @@ describe("Balancer chash subset", function()
         assert.are.equal(#endpoints, 3)
       end
     end)
+
+    it("set alternative backends", function()
+      local backend = get_test_backend(7)
+      backend.trafficShapingPolicy  = {
+        weight = 0,
+        header = "",
+        headerValue = "",
+        cookie = ""
+      }
+      backend.alternativeBackends = {
+        "my-dummy-canary-backend"
+      }
+      local instance = balancer_chashsubset:new(backend)
+      assert.not_equal(instance.traffic_shaping_policy, nil)
+      assert.not_equal(instance.alternative_backends, nil)
+    end)
   end)
 end)

From 71de8e1a23fac0f3fc4c6cf87d9e454573604a69 Mon Sep 17 00:00:00 2001
From: Scott Crooks <sc250024@users.noreply.github.com>
Date: Sat, 8 Jan 2022 11:53:04 +0100
Subject: [PATCH 0025/1641] docs(charts): using helm-docs for chart (#8061)

This enables the use of the `helm-docs` tool on the Helm chart located in `charts/ingress-nginx`. This will make it possible to automatically document new variables in the `values.yaml` file.

Signed-off-by: Scott Crooks <scott.crooks@gmail.com>
---
 .github/workflows/ci.yaml             |  12 +
 charts/ingress-nginx/CHANGELOG.md     |   4 +
 charts/ingress-nginx/Chart.yaml       |   4 +-
 charts/ingress-nginx/README.md        | 253 +++++++++++++++++++
 charts/ingress-nginx/README.md.gotmpl | 235 ++++++++++++++++++
 charts/ingress-nginx/values.yaml      | 334 +++++++++++++-------------
 6 files changed, 670 insertions(+), 172 deletions(-)
 create mode 100644 charts/ingress-nginx/README.md.gotmpl

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index b7cf3bce1..a6dfe75da 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -123,6 +123,11 @@ jobs:
       - name: Checkout
         uses: actions/checkout@v2
 
+      - name: Setup Go
+        uses: actions/setup-go@v2
+        with:
+          go-version: '^1.17'
+
       - name: cache
         uses: actions/download-artifact@v2
         with:
@@ -132,6 +137,13 @@ jobs:
         run: |
           ./build/run-in-docker.sh ./hack/verify-chart-lint.sh
 
+      - name: Run helm-docs
+        run: |
+          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.6.0
+          ./helm-docs --chart-search-root=${GITHUB_WORKSPACE}/charts
+          git diff --exit-code
+          rm -f ./helm-docs
+
       - name: fix permissions
         run: |
           sudo mkdir -p $HOME/.kube
diff --git a/charts/ingress-nginx/CHANGELOG.md b/charts/ingress-nginx/CHANGELOG.md
index e895efc36..91dbb0dc7 100644
--- a/charts/ingress-nginx/CHANGELOG.md
+++ b/charts/ingress-nginx/CHANGELOG.md
@@ -2,6 +2,10 @@
 
 This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
 
+### 4.0.14
+
+- [8061] https://github.com/kubernetes/ingress-nginx/pull/8061 Using helm-docs to populate values table in README.md
+
 ### 4.0.13
 
 - [8008] https://github.com/kubernetes/ingress-nginx/pull/8008 Add relabelings in controller-servicemonitor.yaml
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 729a011ec..dd01623cf 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.0.13
+version: 4.0.14
 appVersion: 1.1.0
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
@@ -24,4 +24,4 @@ annotations:
   # List of changes for the release in artifacthub.io
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
-    - use controller v1.1.0
+    - using helm-docs to populate values table in README.md
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 5e5c8b235..0407f7a79 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,6 +2,8 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
+![Version: 4.0.14](https://img.shields.io/badge/Version-4.0.14-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.1.0](https://img.shields.io/badge/AppVersion-1.1.0-informational?style=flat-square)
+
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
 This chart bootstraps an ingress-nginx deployment on a [Kubernetes](http://kubernetes.io) cluster using the [Helm](https://helm.sh) package manager.
@@ -226,3 +228,254 @@ Error: UPGRADE FAILED: Service "?????-controller" is invalid: spec.clusterIP: In
 Detail of how and why are in [this issue](https://github.com/helm/charts/pull/13646) but to resolve this you can set `xxxx.service.omitClusterIP` to `true` where `xxxx` is the service referenced in the error.
 
 As of version `1.26.0` of this chart, by simply not providing any clusterIP value, `invalid: spec.clusterIP: Invalid value: "": field is immutable` will no longer occur since `clusterIP: ""` will not be rendered.
+
+## Requirements
+
+Kubernetes: `>=1.19.0-0`
+
+## Values
+
+| Key | Type | Default | Description |
+|-----|------|---------|-------------|
+| controller.addHeaders | object | `{}` | Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers |
+| controller.admissionWebhooks.annotations | object | `{}` |  |
+| controller.admissionWebhooks.certificate | string | `"/usr/local/certificates/cert"` |  |
+| controller.admissionWebhooks.createSecretJob.resources | object | `{}` |  |
+| controller.admissionWebhooks.enabled | bool | `true` |  |
+| controller.admissionWebhooks.existingPsp | string | `""` | Use an existing PSP instead of creating one |
+| controller.admissionWebhooks.failurePolicy | string | `"Fail"` |  |
+| controller.admissionWebhooks.key | string | `"/usr/local/certificates/key"` |  |
+| controller.admissionWebhooks.labels | object | `{}` | Labels to be added to admission webhooks |
+| controller.admissionWebhooks.namespaceSelector | object | `{}` |  |
+| controller.admissionWebhooks.objectSelector | object | `{}` |  |
+| controller.admissionWebhooks.patch.enabled | bool | `true` |  |
+| controller.admissionWebhooks.patch.image.digest | string | `"sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660"` |  |
+| controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
+| controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
+| controller.admissionWebhooks.patch.image.registry | string | `"k8s.gcr.io"` |  |
+| controller.admissionWebhooks.patch.image.tag | string | `"v1.1.1"` |  |
+| controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
+| controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
+| controller.admissionWebhooks.patch.podAnnotations | object | `{}` |  |
+| controller.admissionWebhooks.patch.priorityClassName | string | `""` | Provide a priority class name to the webhook patching job |
+| controller.admissionWebhooks.patch.runAsUser | int | `2000` |  |
+| controller.admissionWebhooks.patch.tolerations | list | `[]` |  |
+| controller.admissionWebhooks.patchWebhookJob.resources | object | `{}` |  |
+| controller.admissionWebhooks.port | int | `8443` |  |
+| controller.admissionWebhooks.service.annotations | object | `{}` |  |
+| controller.admissionWebhooks.service.externalIPs | list | `[]` |  |
+| controller.admissionWebhooks.service.loadBalancerSourceRanges | list | `[]` |  |
+| controller.admissionWebhooks.service.servicePort | int | `443` |  |
+| controller.admissionWebhooks.service.type | string | `"ClusterIP"` |  |
+| controller.affinity | object | `{}` | Affinity and anti-affinity rules for server scheduling to nodes |
+| controller.allowSnippetAnnotations | bool | `true` | This configuration defines if Ingress Controller should allow users to set their own *-snippet annotations, otherwise this is forbidden / dropped when users add those annotations. Global snippets in ConfigMap are still respected |
+| controller.annotations | object | `{}` | Annotations to be added to the controller Deployment or DaemonSet |
+| controller.autoscaling.behavior | object | `{}` |  |
+| controller.autoscaling.enabled | bool | `false` |  |
+| controller.autoscaling.maxReplicas | int | `11` |  |
+| controller.autoscaling.minReplicas | int | `1` |  |
+| controller.autoscaling.targetCPUUtilizationPercentage | int | `50` |  |
+| controller.autoscaling.targetMemoryUtilizationPercentage | int | `50` |  |
+| controller.autoscalingTemplate | list | `[]` |  |
+| controller.config | object | `{}` | Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/ |
+| controller.configAnnotations | object | `{}` | Annotations to be added to the controller config configuration configmap |
+| controller.configMapNamespace | string | `""` | Allows customization of the configmap / nginx-configmap namespace; defaults to $(POD_NAMESPACE) |
+| controller.containerName | string | `"controller"` | Configures the controller container name |
+| controller.containerPort | object | `{"http":80,"https":443}` | Configures the ports the nginx-controller listens on |
+| controller.customTemplate.configMapKey | string | `""` |  |
+| controller.customTemplate.configMapName | string | `""` |  |
+| controller.dnsConfig | object | `{}` | Optionally customize the pod dnsConfig. |
+| controller.dnsPolicy | string | `"ClusterFirst"` | Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'. By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller to keep resolving names inside the k8s network, use ClusterFirstWithHostNet. |
+| controller.electionID | string | `"ingress-controller-leader"` | Election ID to use for status update |
+| controller.enableMimalloc | bool | `true` | Enable mimalloc as a drop-in replacement for malloc. |
+| controller.existingPsp | string | `""` | Use an existing PSP instead of creating one |
+| controller.extraArgs | object | `{}` | Additional command line arguments to pass to nginx-ingress-controller E.g. to specify the default SSL certificate you can use |
+| controller.extraContainers | list | `[]` | Additional containers to be added to the controller pod. See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example. |
+| controller.extraEnvs | list | `[]` | Additional environment variables to set |
+| controller.extraInitContainers | list | `[]` | Containers, which are run before the app containers are started. |
+| controller.extraVolumeMounts | list | `[]` | Additional volumeMounts to the controller main container. |
+| controller.extraVolumes | list | `[]` | Additional volumes to the controller pod. |
+| controller.healthCheckHost | string | `""` | Address to bind the health check endpoint. It is better to set this option to the internal node address if the ingress nginx controller is running in the `hostNetwork: true` mode. |
+| controller.healthCheckPath | string | `"/healthz"` | Path of the health check endpoint. All requests received on the port defined by the healthz-port parameter are forwarded internally to this path. |
+| controller.hostNetwork | bool | `false` | Required for use with CNI based kubernetes installations (such as ones set up by kubeadm), since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920 is merged |
+| controller.hostPort.enabled | bool | `false` | Enable 'hostPort' or not |
+| controller.hostPort.ports.http | int | `80` | 'hostPort' http port |
+| controller.hostPort.ports.https | int | `443` | 'hostPort' https port |
+| controller.hostname | object | `{}` | Optionally customize the pod hostname. |
+| controller.image.allowPrivilegeEscalation | bool | `true` |  |
+| controller.image.digest | string | `"sha256:f766669fdcf3dc26347ed273a55e754b427eb4411ee075a53f30718b4499076a"` |  |
+| controller.image.image | string | `"ingress-nginx/controller"` |  |
+| controller.image.pullPolicy | string | `"IfNotPresent"` |  |
+| controller.image.registry | string | `"k8s.gcr.io"` |  |
+| controller.image.runAsUser | int | `101` |  |
+| controller.image.tag | string | `"v1.1.0"` |  |
+| controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller) |
+| controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` |  |
+| controller.ingressClassResource.default | bool | `false` |  |
+| controller.ingressClassResource.enabled | bool | `true` |  |
+| controller.ingressClassResource.name | string | `"nginx"` |  |
+| controller.ingressClassResource.parameters | object | `{}` | Parameters is a link to a custom resource containing additional configuration for the controller. This is optional if the controller does not require extra parameters. |
+| controller.keda.apiVersion | string | `"keda.sh/v1alpha1"` |  |
+| controller.keda.behavior | object | `{}` |  |
+| controller.keda.cooldownPeriod | int | `300` |  |
+| controller.keda.enabled | bool | `false` |  |
+| controller.keda.maxReplicas | int | `11` |  |
+| controller.keda.minReplicas | int | `1` |  |
+| controller.keda.pollingInterval | int | `30` |  |
+| controller.keda.restoreToOriginalReplicaCount | bool | `false` |  |
+| controller.keda.scaledObject.annotations | object | `{}` |  |
+| controller.keda.triggers | list | `[]` |  |
+| controller.kind | string | `"Deployment"` | Use a `DaemonSet` or `Deployment` |
+| controller.labels | object | `{}` | Labels to be added to the controller Deployment or DaemonSet and other resources that do not have option to specify labels |
+| controller.lifecycle | object | `{"preStop":{"exec":{"command":["/wait-shutdown"]}}}` | Improve connection draining when ingress controller pod is deleted using a lifecycle hook: With this new hook, we increased the default terminationGracePeriodSeconds from 30 seconds to 300, allowing the draining of connections up to five minutes. If the active connections end before that, the pod will terminate gracefully at that time. To effectively take advantage of this feature, the Configmap feature worker-shutdown-timeout new value is 240s instead of 10s. |
+| controller.livenessProbe.failureThreshold | int | `5` |  |
+| controller.livenessProbe.httpGet.path | string | `"/healthz"` |  |
+| controller.livenessProbe.httpGet.port | int | `10254` |  |
+| controller.livenessProbe.httpGet.scheme | string | `"HTTP"` |  |
+| controller.livenessProbe.initialDelaySeconds | int | `10` |  |
+| controller.livenessProbe.periodSeconds | int | `10` |  |
+| controller.livenessProbe.successThreshold | int | `1` |  |
+| controller.livenessProbe.timeoutSeconds | int | `1` |  |
+| controller.maxmindLicenseKey | string | `""` | Maxmind license key to download GeoLite2 Databases. |
+| controller.metrics.enabled | bool | `false` |  |
+| controller.metrics.port | int | `10254` |  |
+| controller.metrics.prometheusRule.additionalLabels | object | `{}` |  |
+| controller.metrics.prometheusRule.enabled | bool | `false` |  |
+| controller.metrics.prometheusRule.rules | list | `[]` |  |
+| controller.metrics.service.annotations | object | `{}` |  |
+| controller.metrics.service.externalIPs | list | `[]` | List of IP addresses at which the stats-exporter service is available |
+| controller.metrics.service.loadBalancerSourceRanges | list | `[]` |  |
+| controller.metrics.service.servicePort | int | `10254` |  |
+| controller.metrics.service.type | string | `"ClusterIP"` |  |
+| controller.metrics.serviceMonitor.additionalLabels | object | `{}` |  |
+| controller.metrics.serviceMonitor.enabled | bool | `false` |  |
+| controller.metrics.serviceMonitor.metricRelabelings | list | `[]` |  |
+| controller.metrics.serviceMonitor.namespace | string | `""` |  |
+| controller.metrics.serviceMonitor.namespaceSelector | object | `{}` |  |
+| controller.metrics.serviceMonitor.relabelings | list | `[]` |  |
+| controller.metrics.serviceMonitor.scrapeInterval | string | `"30s"` |  |
+| controller.metrics.serviceMonitor.targetLabels | list | `[]` |  |
+| controller.minAvailable | int | `1` |  |
+| controller.minReadySeconds | int | `0` | `minReadySeconds` to avoid killing pods before we are ready |
+| controller.name | string | `"controller"` |  |
+| controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment |
+| controller.podAnnotations | object | `{}` | Annotations to be added to controller pods |
+| controller.podLabels | object | `{}` | Labels to add to the pod container metadata |
+| controller.podSecurityContext | object | `{}` | Security Context policies for controller pods |
+| controller.priorityClassName | string | `""` |  |
+| controller.proxySetHeaders | object | `{}` | Will add custom headers before sending traffic to backends according to https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/custom-headers |
+| controller.publishService | object | `{"enabled":true,"pathOverride":""}` | Allows customization of the source of the IP address or FQDN to report in the ingress status field. By default, it reads the information provided by the service. If disable, the status field reports the IP address of the node or nodes where an ingress controller pod is running. |
+| controller.publishService.enabled | bool | `true` | Enable 'publishService' or not |
+| controller.publishService.pathOverride | string | `""` | Allows overriding of the publish service to bind to Must be <namespace>/<service_name> |
+| controller.readinessProbe.failureThreshold | int | `3` |  |
+| controller.readinessProbe.httpGet.path | string | `"/healthz"` |  |
+| controller.readinessProbe.httpGet.port | int | `10254` |  |
+| controller.readinessProbe.httpGet.scheme | string | `"HTTP"` |  |
+| controller.readinessProbe.initialDelaySeconds | int | `10` |  |
+| controller.readinessProbe.periodSeconds | int | `10` |  |
+| controller.readinessProbe.successThreshold | int | `1` |  |
+| controller.readinessProbe.timeoutSeconds | int | `1` |  |
+| controller.replicaCount | int | `1` |  |
+| controller.reportNodeInternalIp | bool | `false` | Bare-metal considerations via the host network https://kubernetes.github.io/ingress-nginx/deploy/baremetal/#via-the-host-network Ingress status was blank because there is no Service exposing the NGINX Ingress controller in a configuration using the host network, the default --publish-service flag used in standard cloud setups does not apply |
+| controller.resources.requests.cpu | string | `"100m"` |  |
+| controller.resources.requests.memory | string | `"90Mi"` |  |
+| controller.scope.enabled | bool | `false` | Enable 'scope' or not |
+| controller.scope.namespace | string | `""` | Namespace to limit the controller to; defaults to $(POD_NAMESPACE) |
+| controller.scope.namespaceSelector | string | `""` | When scope.enabled == false, instead of watching all namespaces, we watching namespaces whose labels only match with namespaceSelector. Format like foo=bar. Defaults to empty, means watching all namespaces. |
+| controller.service.annotations | object | `{}` |  |
+| controller.service.appProtocol | bool | `true` | If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http It allows choosing the protocol for each backend specified in the Kubernetes service. See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244 Will be ignored for Kubernetes versions older than 1.20 |
+| controller.service.enableHttp | bool | `true` |  |
+| controller.service.enableHttps | bool | `true` |  |
+| controller.service.enabled | bool | `true` |  |
+| controller.service.external.enabled | bool | `true` |  |
+| controller.service.externalIPs | list | `[]` | List of IP addresses at which the controller services are available |
+| controller.service.internal.annotations | object | `{}` | Annotations are mandatory for the load balancer to come up. Varies with the cloud service. |
+| controller.service.internal.enabled | bool | `false` | Enables an additional internal load balancer (besides the external one). |
+| controller.service.internal.loadBalancerSourceRanges | list | `[]` | Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0. |
+| controller.service.ipFamilies | list | `["IPv4"]` | List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. |
+| controller.service.ipFamilyPolicy | string | `"SingleStack"` | Represents the dual-stack-ness requested or required by this Service. Possible values are SingleStack, PreferDualStack or RequireDualStack. The ipFamilies and clusterIPs fields depend on the value of this field. |
+| controller.service.labels | object | `{}` |  |
+| controller.service.loadBalancerSourceRanges | list | `[]` |  |
+| controller.service.nodePorts.http | string | `""` |  |
+| controller.service.nodePorts.https | string | `""` |  |
+| controller.service.nodePorts.tcp | object | `{}` |  |
+| controller.service.nodePorts.udp | object | `{}` |  |
+| controller.service.ports.http | int | `80` |  |
+| controller.service.ports.https | int | `443` |  |
+| controller.service.targetPorts.http | string | `"http"` |  |
+| controller.service.targetPorts.https | string | `"https"` |  |
+| controller.service.type | string | `"LoadBalancer"` |  |
+| controller.sysctls | object | `{}` | See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls |
+| controller.tcp.annotations | object | `{}` | Annotations to be added to the tcp config configmap |
+| controller.tcp.configMapNamespace | string | `""` | Allows customization of the tcp-services-configmap; defaults to $(POD_NAMESPACE) |
+| controller.terminationGracePeriodSeconds | int | `300` | `terminationGracePeriodSeconds` to avoid killing pods before we are ready |
+| controller.tolerations | list | `[]` | Node tolerations for server scheduling to nodes with taints |
+| controller.topologySpreadConstraints | list | `[]` | Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in. |
+| controller.udp.annotations | object | `{}` | Annotations to be added to the udp config configmap |
+| controller.udp.configMapNamespace | string | `""` | Allows customization of the udp-services-configmap; defaults to $(POD_NAMESPACE) |
+| controller.updateStrategy | object | `{}` | The update strategy to apply to the Deployment or DaemonSet |
+| controller.watchIngressWithoutClass | bool | `false` | Process Ingress objects without ingressClass annotation/ingressClassName field Overrides value for --watch-ingress-without-class flag of the controller binary Defaults to false |
+| defaultBackend.affinity | object | `{}` |  |
+| defaultBackend.autoscaling.annotations | object | `{}` |  |
+| defaultBackend.autoscaling.enabled | bool | `false` |  |
+| defaultBackend.autoscaling.maxReplicas | int | `2` |  |
+| defaultBackend.autoscaling.minReplicas | int | `1` |  |
+| defaultBackend.autoscaling.targetCPUUtilizationPercentage | int | `50` |  |
+| defaultBackend.autoscaling.targetMemoryUtilizationPercentage | int | `50` |  |
+| defaultBackend.containerSecurityContext | object | `{}` | Security Context policies for controller main container. See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls |
+| defaultBackend.enabled | bool | `false` |  |
+| defaultBackend.existingPsp | string | `""` | Use an existing PSP instead of creating one |
+| defaultBackend.extraArgs | object | `{}` |  |
+| defaultBackend.extraEnvs | list | `[]` | Additional environment variables to set for defaultBackend pods |
+| defaultBackend.extraVolumeMounts | list | `[]` |  |
+| defaultBackend.extraVolumes | list | `[]` |  |
+| defaultBackend.image.allowPrivilegeEscalation | bool | `false` |  |
+| defaultBackend.image.image | string | `"defaultbackend-amd64"` |  |
+| defaultBackend.image.pullPolicy | string | `"IfNotPresent"` |  |
+| defaultBackend.image.readOnlyRootFilesystem | bool | `true` |  |
+| defaultBackend.image.registry | string | `"k8s.gcr.io"` |  |
+| defaultBackend.image.runAsNonRoot | bool | `true` |  |
+| defaultBackend.image.runAsUser | int | `65534` |  |
+| defaultBackend.image.tag | string | `"1.5"` |  |
+| defaultBackend.labels | object | `{}` | Labels to be added to the default backend resources |
+| defaultBackend.livenessProbe.failureThreshold | int | `3` |  |
+| defaultBackend.livenessProbe.initialDelaySeconds | int | `30` |  |
+| defaultBackend.livenessProbe.periodSeconds | int | `10` |  |
+| defaultBackend.livenessProbe.successThreshold | int | `1` |  |
+| defaultBackend.livenessProbe.timeoutSeconds | int | `5` |  |
+| defaultBackend.minAvailable | int | `1` |  |
+| defaultBackend.name | string | `"defaultbackend"` |  |
+| defaultBackend.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for default backend pod assignment |
+| defaultBackend.podAnnotations | object | `{}` | Annotations to be added to default backend pods |
+| defaultBackend.podLabels | object | `{}` | Labels to add to the pod container metadata |
+| defaultBackend.podSecurityContext | object | `{}` | Security Context policies for controller pods See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls |
+| defaultBackend.port | int | `8080` |  |
+| defaultBackend.priorityClassName | string | `""` |  |
+| defaultBackend.readinessProbe.failureThreshold | int | `6` |  |
+| defaultBackend.readinessProbe.initialDelaySeconds | int | `0` |  |
+| defaultBackend.readinessProbe.periodSeconds | int | `5` |  |
+| defaultBackend.readinessProbe.successThreshold | int | `1` |  |
+| defaultBackend.readinessProbe.timeoutSeconds | int | `5` |  |
+| defaultBackend.replicaCount | int | `1` |  |
+| defaultBackend.resources | object | `{}` |  |
+| defaultBackend.service.annotations | object | `{}` |  |
+| defaultBackend.service.externalIPs | list | `[]` | List of IP addresses at which the default backend service is available |
+| defaultBackend.service.loadBalancerSourceRanges | list | `[]` |  |
+| defaultBackend.service.servicePort | int | `80` |  |
+| defaultBackend.service.type | string | `"ClusterIP"` |  |
+| defaultBackend.serviceAccount.automountServiceAccountToken | bool | `true` |  |
+| defaultBackend.serviceAccount.create | bool | `true` |  |
+| defaultBackend.serviceAccount.name | string | `""` |  |
+| defaultBackend.tolerations | list | `[]` | Node tolerations for server scheduling to nodes with taints |
+| dhParam | string | `nil` | A base64-encoded Diffie-Hellman parameter. This can be generated with: `openssl dhparam 4096 2> /dev/null | base64` |
+| imagePullSecrets | list | `[]` | Optional array of imagePullSecrets containing private registry credentials |
+| podSecurityPolicy.enabled | bool | `false` |  |
+| rbac.create | bool | `true` |  |
+| rbac.scope | bool | `false` |  |
+| revisionHistoryLimit | int | `10` | Rollback limit |
+| serviceAccount.automountServiceAccountToken | bool | `true` |  |
+| serviceAccount.create | bool | `true` |  |
+| serviceAccount.name | string | `""` |  |
+| tcp | object | `{}` | TCP service key:value pairs |
+| udp | object | `{}` | UDP service key:value pairs |
+
diff --git a/charts/ingress-nginx/README.md.gotmpl b/charts/ingress-nginx/README.md.gotmpl
new file mode 100644
index 000000000..5cd9e59e1
--- /dev/null
+++ b/charts/ingress-nginx/README.md.gotmpl
@@ -0,0 +1,235 @@
+{{ template "chart.header" . }}
+[ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
+
+{{ template "chart.versionBadge" . }}{{ template "chart.typeBadge" . }}{{ template "chart.appVersionBadge" . }}
+
+To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
+
+This chart bootstraps an ingress-nginx deployment on a [Kubernetes](http://kubernetes.io) cluster using the [Helm](https://helm.sh) package manager.
+
+## Prerequisites
+
+- Chart version 3.x.x: Kubernetes v1.16+
+- Chart version 4.x.x and above: Kubernetes v1.19+
+
+## Get Repo Info
+
+```console
+helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx
+helm repo update
+```
+
+## Install Chart
+
+**Important:** only helm3 is supported
+
+```console
+helm install [RELEASE_NAME] ingress-nginx/ingress-nginx
+```
+
+The command deploys ingress-nginx on the Kubernetes cluster in the default configuration.
+
+_See [configuration](#configuration) below._
+
+_See [helm install](https://helm.sh/docs/helm/helm_install/) for command documentation._
+
+## Uninstall Chart
+
+```console
+helm uninstall [RELEASE_NAME]
+```
+
+This removes all the Kubernetes components associated with the chart and deletes the release.
+
+_See [helm uninstall](https://helm.sh/docs/helm/helm_uninstall/) for command documentation._
+
+## Upgrading Chart
+
+```console
+helm upgrade [RELEASE_NAME] [CHART] --install
+```
+
+_See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
+
+### Upgrading With Zero Downtime in Production
+
+By default the ingress-nginx controller has service interruptions whenever it's pods are restarted or redeployed. In order to fix that, see the excellent blog post by Lindsay Landry from Codecademy: [Kubernetes: Nginx and Zero Downtime in Production](https://medium.com/codecademy-engineering/kubernetes-nginx-and-zero-downtime-in-production-2c910c6a5ed8).
+
+### Migrating from stable/nginx-ingress
+
+There are two main ways to migrate a release from `stable/nginx-ingress` to `ingress-nginx/ingress-nginx` chart:
+
+1. For Nginx Ingress controllers used for non-critical services, the easiest method is to [uninstall](#uninstall-chart) the old release and [install](#install-chart) the new one
+1. For critical services in production that require zero-downtime, you will want to:
+    1. [Install](#install-chart) a second Ingress controller
+    1. Redirect your DNS traffic from the old controller to the new controller
+    1. Log traffic from both controllers during this changeover
+    1. [Uninstall](#uninstall-chart) the old controller once traffic has fully drained from it
+    1. For details on all of these steps see [Upgrading With Zero Downtime in Production](#upgrading-with-zero-downtime-in-production)
+
+Note that there are some different and upgraded configurations between the two charts, described by Rimas Mocevicius from JFrog in the "Upgrading to ingress-nginx Helm chart" section of [Migrating from Helm chart nginx-ingress to ingress-nginx](https://rimusz.net/migrating-to-ingress-nginx). As the `ingress-nginx/ingress-nginx` chart continues to update, you will want to check current differences by running [helm configuration](#configuration) commands on both charts.
+
+## Configuration
+
+See [Customizing the Chart Before Installing](https://helm.sh/docs/intro/using_helm/#customizing-the-chart-before-installing). To see all configurable options with detailed comments, visit the chart's [values.yaml](./values.yaml), or run these configuration commands:
+
+```console
+helm show values ingress-nginx/ingress-nginx
+```
+
+### PodDisruptionBudget
+
+Note that the PodDisruptionBudget resource will only be defined if the replicaCount is greater than one,
+else it would make it impossible to evacuate a node. See [gh issue #7127](https://github.com/helm/charts/issues/7127) for more info.
+
+### Prometheus Metrics
+
+The Nginx ingress controller can export Prometheus metrics, by setting `controller.metrics.enabled` to `true`.
+
+You can add Prometheus annotations to the metrics service using `controller.metrics.service.annotations`.
+Alternatively, if you use the Prometheus Operator, you can enable ServiceMonitor creation using `controller.metrics.serviceMonitor.enabled`. And set `controller.metrics.serviceMonitor.additionalLabels.release="prometheus"`. "release=prometheus" should match the label configured in the prometheus servicemonitor ( see `kubectl get servicemonitor prometheus-kube-prom-prometheus -oyaml -n prometheus`)
+
+### ingress-nginx nginx\_status page/stats server
+
+Previous versions of this chart had a `controller.stats.*` configuration block, which is now obsolete due to the following changes in nginx ingress controller:
+
+- In [0.16.1](https://github.com/kubernetes/ingress-nginx/blob/main/Changelog.md#0161), the vts (virtual host traffic status) dashboard was removed
+- In [0.23.0](https://github.com/kubernetes/ingress-nginx/blob/main/Changelog.md#0230), the status page at port 18080 is now a unix socket webserver only available at localhost.
+  You can use `curl --unix-socket /tmp/nginx-status-server.sock http://localhost/nginx_status` inside the controller container to access it locally, or use the snippet from [nginx-ingress changelog](https://github.com/kubernetes/ingress-nginx/blob/main/Changelog.md#0230) to re-enable the http server
+
+### ExternalDNS Service Configuration
+
+Add an [ExternalDNS](https://github.com/kubernetes-incubator/external-dns) annotation to the LoadBalancer service:
+
+```yaml
+controller:
+  service:
+    annotations:
+      external-dns.alpha.kubernetes.io/hostname: kubernetes-example.com.
+```
+
+### AWS L7 ELB with SSL Termination
+
+Annotate the controller as shown in the [nginx-ingress l7 patch](https://github.com/kubernetes/ingress-nginx/blob/main/deploy/aws/l7/service-l7.yaml):
+
+```yaml
+controller:
+  service:
+    targetPorts:
+      http: http
+      https: http
+    annotations:
+      service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:XX-XXXX-X:XXXXXXXXX:certificate/XXXXXXXX-XXXX-XXXX-XXXX-XXXXXXXXXX
+      service.beta.kubernetes.io/aws-load-balancer-backend-protocol: "http"
+      service.beta.kubernetes.io/aws-load-balancer-ssl-ports: "https"
+      service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: '3600'
+```
+
+### AWS route53-mapper
+
+To configure the LoadBalancer service with the [route53-mapper addon](https://github.com/kubernetes/kops/tree/master/addons/route53-mapper), add the `domainName` annotation and `dns` label:
+
+```yaml
+controller:
+  service:
+    labels:
+      dns: "route53"
+    annotations:
+      domainName: "kubernetes-example.com"
+```
+
+### Additional Internal Load Balancer
+
+This setup is useful when you need both external and internal load balancers but don't want to have multiple ingress controllers and multiple ingress objects per application.
+
+By default, the ingress object will point to the external load balancer address, but if correctly configured, you can make use of the internal one if the URL you are looking up resolves to the internal load balancer's URL.
+
+You'll need to set both the following values:
+
+`controller.service.internal.enabled`
+`controller.service.internal.annotations`
+
+If one of them is missing the internal load balancer will not be deployed. Example you may have `controller.service.internal.enabled=true` but no annotations set, in this case no action will be taken.
+
+`controller.service.internal.annotations` varies with the cloud service you're using.
+
+Example for AWS:
+
+```yaml
+controller:
+  service:
+    internal:
+      enabled: true
+      annotations:
+        # Create internal ELB
+        service.beta.kubernetes.io/aws-load-balancer-internal: "true"
+        # Any other annotation can be declared here.
+```
+
+Example for GCE:
+
+```yaml
+controller:
+  service:
+    internal:
+      enabled: true
+      annotations:
+        # Create internal LB. More informations: https://cloud.google.com/kubernetes-engine/docs/how-to/internal-load-balancing
+        # For GKE versions 1.17 and later
+        networking.gke.io/load-balancer-type: "Internal"
+        # For earlier versions
+        # cloud.google.com/load-balancer-type: "Internal"
+
+        # Any other annotation can be declared here.
+```
+
+Example for Azure:
+
+```yaml
+controller:
+  service:
+      annotations:
+        # Create internal LB
+        service.beta.kubernetes.io/azure-load-balancer-internal: "true"
+        # Any other annotation can be declared here.
+```
+
+Example for Oracle Cloud Infrastructure:
+
+```yaml
+controller:
+  service:
+      annotations:
+        # Create internal LB
+        service.beta.kubernetes.io/oci-load-balancer-internal: "true"
+        # Any other annotation can be declared here.
+```
+
+An use case for this scenario is having a split-view DNS setup where the public zone CNAME records point to the external balancer URL while the private zone CNAME records point to the internal balancer URL. This way, you only need one ingress kubernetes object.
+
+Optionally you can set `controller.service.loadBalancerIP` if you need a static IP for the resulting `LoadBalancer`.
+
+### Ingress Admission Webhooks
+
+With nginx-ingress-controller version 0.25+, the nginx ingress controller pod exposes an endpoint that will integrate with the `validatingwebhookconfiguration` Kubernetes feature to prevent bad ingress from being added to the cluster.
+**This feature is enabled by default since 0.31.0.**
+
+With nginx-ingress-controller in 0.25.* work only with kubernetes 1.14+, 0.26 fix [this issue](https://github.com/kubernetes/ingress-nginx/pull/4521)
+
+### Helm Error When Upgrading: spec.clusterIP: Invalid value: ""
+
+If you are upgrading this chart from a version between 0.31.0 and 1.2.2 then you may get an error like this:
+
+```console
+Error: UPGRADE FAILED: Service "?????-controller" is invalid: spec.clusterIP: Invalid value: "": field is immutable
+```
+
+Detail of how and why are in [this issue](https://github.com/helm/charts/pull/13646) but to resolve this you can set `xxxx.service.omitClusterIP` to `true` where `xxxx` is the service referenced in the error.
+
+As of version `1.26.0` of this chart, by simply not providing any clusterIP value, `invalid: spec.clusterIP: Invalid value: "": field is immutable` will no longer occur since `clusterIP: ""` will not be rendered.
+
+{{ template "chart.requirementsSection" . }}
+
+{{ template "chart.valuesSection" . }}
+
+{{ template "helm-docs.versionFooter" . }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index a96bfbfd0..e923b3e15 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -12,9 +12,9 @@ controller:
   image:
     registry: k8s.gcr.io
     image: ingress-nginx/controller
-    # for backwards compatibility consider setting the full image url via the repository value below
-    # use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-    # repository:
+    ## for backwards compatibility consider setting the full image url via the repository value below
+    ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+    ## repository:
     tag: "v1.1.0"
     digest: sha256:f766669fdcf3dc26347ed273a55e754b427eb4411ee075a53f30718b4499076a
     pullPolicy: IfNotPresent
@@ -22,154 +22,149 @@ controller:
     runAsUser: 101
     allowPrivilegeEscalation: true
 
-  # Use an existing PSP instead of creating one
+  # -- Use an existing PSP instead of creating one
   existingPsp: ""
 
-  # Configures the controller container name
+  # -- Configures the controller container name
   containerName: controller
 
-  # Configures the ports the nginx-controller listens on
+  # -- Configures the ports the nginx-controller listens on
   containerPort:
     http: 80
     https: 443
 
-  # Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/
+  # -- Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/
   config: {}
 
-  ## Annotations to be added to the controller config configuration configmap
-  ##
+  # -- Annotations to be added to the controller config configuration configmap
   configAnnotations: {}
 
-  # Will add custom headers before sending traffic to backends according to https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/custom-headers
+  # -- Will add custom headers before sending traffic to backends according to https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/custom-headers
   proxySetHeaders: {}
 
-  # Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers
+  # -- Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers
   addHeaders: {}
 
-  # Optionally customize the pod dnsConfig.
+  # -- Optionally customize the pod dnsConfig.
   dnsConfig: {}
 
-  # Optionally customize the pod hostname.
+  # -- Optionally customize the pod hostname.
   hostname: {}
 
-  # Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'.
+  # -- Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'.
   # By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller
   # to keep resolving names inside the k8s network, use ClusterFirstWithHostNet.
   dnsPolicy: ClusterFirst
 
-  # Bare-metal considerations via the host network https://kubernetes.github.io/ingress-nginx/deploy/baremetal/#via-the-host-network
+  # -- Bare-metal considerations via the host network https://kubernetes.github.io/ingress-nginx/deploy/baremetal/#via-the-host-network
   # Ingress status was blank because there is no Service exposing the NGINX Ingress controller in a configuration using the host network, the default --publish-service flag used in standard cloud setups does not apply
   reportNodeInternalIp: false
 
-  # Process Ingress objects without ingressClass annotation/ingressClassName field
+  # -- Process Ingress objects without ingressClass annotation/ingressClassName field
   # Overrides value for --watch-ingress-without-class flag of the controller binary
   # Defaults to false
   watchIngressWithoutClass: false
 
-  # Process IngressClass per name (additionally as per spec.controller)
+  # -- Process IngressClass per name (additionally as per spec.controller)
   ingressClassByName: false
 
-  # This configuration defines if Ingress Controller should allow users to set
+  # -- This configuration defines if Ingress Controller should allow users to set
   # their own *-snippet annotations, otherwise this is forbidden / dropped
   # when users add those annotations.
   # Global snippets in ConfigMap are still respected
   allowSnippetAnnotations: true
 
-  # Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
+  # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
   # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
   # is merged
   hostNetwork: false
 
   ## Use host ports 80 and 443
   ## Disabled by default
-  ##
   hostPort:
+    # -- Enable 'hostPort' or not
     enabled: false
     ports:
+      # -- 'hostPort' http port
       http: 80
+      # -- 'hostPort' https port
       https: 443
 
-  ## Election ID to use for status update
-  ##
+  # -- Election ID to use for status update
   electionID: ingress-controller-leader
 
-  # This section refers to the creation of the IngressClass resource
-  # IngressClass resources are supported since k8s >= 1.18 and required since k8s >= 1.19
+  ## This section refers to the creation of the IngressClass resource
+  ## IngressClass resources are supported since k8s >= 1.18 and required since k8s >= 1.19
   ingressClassResource:
     name: nginx
     enabled: true
     default: false
     controllerValue: "k8s.io/ingress-nginx"
 
-    # Parameters is a link to a custom resource containing additional
+    # -- Parameters is a link to a custom resource containing additional
     # configuration for the controller. This is optional if the controller
     # does not require extra parameters.
     parameters: {}
 
-  # labels to add to the pod container metadata
+  # -- Labels to add to the pod container metadata
   podLabels: {}
   #  key: value
 
-  ## Security Context policies for controller pods
-  ##
+  # -- Security Context policies for controller pods
   podSecurityContext: {}
 
-  ## See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
-  ## notes on enabling and using sysctls
-  ###
+  # -- See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls
   sysctls: {}
   # sysctls:
   #   "net.core.somaxconn": "8192"
 
-  ## Allows customization of the source of the IP address or FQDN to report
-  ## in the ingress status field. By default, it reads the information provided
-  ## by the service. If disable, the status field reports the IP address of the
-  ## node or nodes where an ingress controller pod is running.
+  # -- Allows customization of the source of the IP address or FQDN to report
+  # in the ingress status field. By default, it reads the information provided
+  # by the service. If disable, the status field reports the IP address of the
+  # node or nodes where an ingress controller pod is running.
   publishService:
+    # -- Enable 'publishService' or not
     enabled: true
-    ## Allows overriding of the publish service to bind to
-    ## Must be <namespace>/<service_name>
-    ##
+    # -- Allows overriding of the publish service to bind to
+    # Must be <namespace>/<service_name>
     pathOverride: ""
 
-  ## Limit the scope of the controller
-  ##
+  # Limit the scope of the controller to a specific namespace
   scope:
+    # -- Enable 'scope' or not
     enabled: false
-    namespace: ""   # defaults to $(POD_NAMESPACE)
-    # When scope.enabled == false, instead of watching all namespaces, we watching namespaces whose labels
-    #   only match with namespaceSelector. Format like foo=bar. Defaults to empty, means watching all namespaces.
+    # -- Namespace to limit the controller to; defaults to $(POD_NAMESPACE)
+    namespace: ""
+    # -- When scope.enabled == false, instead of watching all namespaces, we watching namespaces whose labels
+    # only match with namespaceSelector. Format like foo=bar. Defaults to empty, means watching all namespaces.
     namespaceSelector: ""
 
-  ## Allows customization of the configmap / nginx-configmap namespace
-  ##
-  configMapNamespace: ""   # defaults to $(POD_NAMESPACE)
+  # -- Allows customization of the configmap / nginx-configmap namespace; defaults to $(POD_NAMESPACE)
+  configMapNamespace: ""
 
-  ## Allows customization of the tcp-services-configmap
-  ##
   tcp:
-    configMapNamespace: ""   # defaults to $(POD_NAMESPACE)
-    ## Annotations to be added to the tcp config configmap
+    # -- Allows customization of the tcp-services-configmap; defaults to $(POD_NAMESPACE)
+    configMapNamespace: ""
+    # -- Annotations to be added to the tcp config configmap
     annotations: {}
 
-  ## Allows customization of the udp-services-configmap
-  ##
   udp:
-    configMapNamespace: ""   # defaults to $(POD_NAMESPACE)
-    ## Annotations to be added to the udp config configmap
+    # -- Allows customization of the udp-services-configmap; defaults to $(POD_NAMESPACE)
+    configMapNamespace: ""
+    # -- Annotations to be added to the udp config configmap
     annotations: {}
 
-  # Maxmind license key to download GeoLite2 Databases
-  # https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases
+  # -- Maxmind license key to download GeoLite2 Databases.
+  ## https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases
   maxmindLicenseKey: ""
 
-  ## Additional command line arguments to pass to nginx-ingress-controller
-  ## E.g. to specify the default SSL certificate you can use
+  # -- Additional command line arguments to pass to nginx-ingress-controller
+  # E.g. to specify the default SSL certificate you can use
+  extraArgs: {}
   ## extraArgs:
   ##   default-ssl-certificate: "<namespace>/<secret_name>"
-  extraArgs: {}
 
-  ## Additional environment variables to set
+  # -- Additional environment variables to set
   extraEnvs: []
   # extraEnvs:
   #   - name: FOO
@@ -178,35 +173,34 @@ controller:
   #         key: FOO
   #         name: secret-resource
 
-  ## DaemonSet or Deployment
-  ##
+  # -- Use a `DaemonSet` or `Deployment`
   kind: Deployment
 
-  ## Annotations to be added to the controller Deployment or DaemonSet
+  # -- Annotations to be added to the controller Deployment or DaemonSet
   ##
   annotations: {}
   #  keel.sh/pollSchedule: "@every 60m"
 
-  ## Labels to be added to the controller Deployment or DaemonSet and other resources that do not have option to specify labels
+  # -- Labels to be added to the controller Deployment or DaemonSet and other resources that do not have option to specify labels
   ##
   labels: {}
   #  keel.sh/policy: patch
   #  keel.sh/trigger: poll
 
 
-  # The update strategy to apply to the Deployment or DaemonSet
+  # -- The update strategy to apply to the Deployment or DaemonSet
   ##
   updateStrategy: {}
   #  rollingUpdate:
   #    maxUnavailable: 1
   #  type: RollingUpdate
 
-  # minReadySeconds to avoid killing pods before we are ready
+  # -- `minReadySeconds` to avoid killing pods before we are ready
   ##
   minReadySeconds: 0
 
 
-  ## Node tolerations for server scheduling to nodes with taints
+  # -- Node tolerations for server scheduling to nodes with taints
   ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
   ##
   tolerations: []
@@ -215,7 +209,7 @@ controller:
   #    value: "value"
   #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
 
-  ## Affinity and anti-affinity
+  # -- Affinity and anti-affinity rules for server scheduling to nodes
   ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
   ##
   affinity: {}
@@ -259,7 +253,7 @@ controller:
     #         - controller
     #     topologyKey: "kubernetes.io/hostname"
 
-  ## Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
+  # -- Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
   ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
   ##
   topologySpreadConstraints: []
@@ -270,12 +264,12 @@ controller:
     #     matchLabels:
     #       app.kubernetes.io/instance: ingress-nginx-internal
 
-  ## terminationGracePeriodSeconds
+  # -- `terminationGracePeriodSeconds` to avoid killing pods before we are ready
   ## wait up to five minutes for the drain of connections
   ##
   terminationGracePeriodSeconds: 300
 
-  ## Node labels for controller pod assignment
+  # -- Node labels for controller pod assignment
   ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
   ##
   nodeSelector:
@@ -284,17 +278,17 @@ controller:
   ## Liveness and readiness probe values
   ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#container-probes
   ##
-  # startupProbe:
-  #   httpGet:
-  #     # should match container.healthCheckPath
-  #     path: "/healthz"
-  #     port: 10254
-  #     scheme: HTTP
-  #   initialDelaySeconds: 5
-  #   periodSeconds: 5
-  #   timeoutSeconds: 2
-  #   successThreshold: 1
-  #   failureThreshold: 5
+  ## startupProbe:
+  ##   httpGet:
+  ##     # should match container.healthCheckPath
+  ##     path: "/healthz"
+  ##     port: 10254
+  ##     scheme: HTTP
+  ##   initialDelaySeconds: 5
+  ##   periodSeconds: 5
+  ##   timeoutSeconds: 2
+  ##   successThreshold: 1
+  ##   failureThreshold: 5
   livenessProbe:
     httpGet:
       # should match container.healthCheckPath
@@ -319,16 +313,16 @@ controller:
     failureThreshold: 3
 
 
-  # Path of the health check endpoint. All requests received on the port defined by
+  # -- Path of the health check endpoint. All requests received on the port defined by
   # the healthz-port parameter are forwarded internally to this path.
   healthCheckPath: "/healthz"
 
-  # Address to bind the health check endpoint.
+  # -- Address to bind the health check endpoint.
   # It is better to set this option to the internal node address
-  # if the ingress nginx controller is running in the hostNetwork: true mode.
+  # if the ingress nginx controller is running in the `hostNetwork: true` mode.
   healthCheckHost: ""
 
-  ## Annotations to be added to controller pods
+  # -- Annotations to be added to controller pods
   ##
   podAnnotations: {}
 
@@ -336,14 +330,14 @@ controller:
 
   minAvailable: 1
 
-  # Define requests resources to avoid probe issues due to CPU utilization in busy nodes
-  # ref: https://github.com/kubernetes/ingress-nginx/issues/4735#issuecomment-551204903
-  # Ideally, there should be no limits.
-  # https://engineering.indeedblog.com/blog/2019/12/cpu-throttling-regression-fix/
+  ## Define requests resources to avoid probe issues due to CPU utilization in busy nodes
+  ## ref: https://github.com/kubernetes/ingress-nginx/issues/4735#issuecomment-551204903
+  ## Ideally, there should be no limits.
+  ## https://engineering.indeedblog.com/blog/2019/12/cpu-throttling-regression-fix/
   resources:
-  #  limits:
-  #    cpu: 100m
-  #    memory: 90Mi
+  ##  limits:
+  ##    cpu: 100m
+  ##    memory: 90Mi
     requests:
       cpu: 100m
       memory: 90Mi
@@ -383,9 +377,9 @@ controller:
   # Mutually exclusive with hpa autoscaling
   keda:
     apiVersion: "keda.sh/v1alpha1"
-  # apiVersion changes with keda 1.x vs 2.x
-  # 2.x = keda.sh/v1alpha1
-  # 1.x = keda.k8s.io/v1alpha1
+    ## apiVersion changes with keda 1.x vs 2.x
+    ## 2.x = keda.sh/v1alpha1
+    ## 1.x = keda.k8s.io/v1alpha1
     enabled: false
     minReplicas: 1
     maxReplicas: 11
@@ -419,7 +413,7 @@ controller:
  #         value: 2
  #         periodSeconds: 60
 
-  ## Enable mimalloc as a drop-in replacement for malloc.
+  # -- Enable mimalloc as a drop-in replacement for malloc.
   ## ref: https://github.com/microsoft/mimalloc
   ##
   enableMimalloc: true
@@ -432,11 +426,11 @@ controller:
   service:
     enabled: true
 
-    ## If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were
-    ## using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http
-    ## It allows choosing the protocol for each backend specified in the Kubernetes service.
-    ## See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244
-    ## Will be ignored for Kubernetes versions older than 1.20
+    # -- If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were
+    # using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http
+    # It allows choosing the protocol for each backend specified in the Kubernetes service.
+    # See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244
+    # Will be ignored for Kubernetes versions older than 1.20
     ##
     appProtocol: true
 
@@ -444,7 +438,7 @@ controller:
     labels: {}
     # clusterIP: ""
 
-    ## List of IP addresses at which the controller services are available
+    # -- List of IP addresses at which the controller services are available
     ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
     ##
     externalIPs: []
@@ -468,14 +462,14 @@ controller:
     ## Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
     # healthCheckNodePort: 0
 
-    ## Represents the dual-stack-ness requested or required by this Service. Possible values are
-    ## SingleStack, PreferDualStack or RequireDualStack.
-    ## The ipFamilies and clusterIPs fields depend on the value of this field.
+    # -- Represents the dual-stack-ness requested or required by this Service. Possible values are
+    # SingleStack, PreferDualStack or RequireDualStack.
+    # The ipFamilies and clusterIPs fields depend on the value of this field.
     ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
     ipFamilyPolicy: "SingleStack"
 
-    ## List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically
-    ## based on cluster configuration and the ipFamilyPolicy field.
+    # -- List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically
+    # based on cluster configuration and the ipFamilyPolicy field.
     ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
     ipFamilies:
       - IPv4
@@ -490,12 +484,12 @@ controller:
 
     type: LoadBalancer
 
-    # type: NodePort
-    # nodePorts:
-    #   http: 32080
-    #   https: 32443
-    #   tcp:
-    #     8080: 32808
+    ## type: NodePort
+    ## nodePorts:
+    ##   http: 32080
+    ##   https: 32443
+    ##   tcp:
+    ##     8080: 32808
     nodePorts:
       http: ""
       https: ""
@@ -505,15 +499,15 @@ controller:
     external:
       enabled: true
 
-    ## Enables an additional internal load balancer (besides the external one).
-    ## Annotations are mandatory for the load balancer to come up. Varies with the cloud service.
     internal:
+      # -- Enables an additional internal load balancer (besides the external one).
       enabled: false
+      # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service.
       annotations: {}
 
       # loadBalancerIP: ""
 
-      ## Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.
+      # -- Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.
       loadBalancerSourceRanges: []
 
       ## Set external traffic policy to: "Local" to preserve source IP on
@@ -521,9 +515,9 @@ controller:
       ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
       # externalTrafficPolicy: ""
 
+  # -- Additional containers to be added to the controller pod.
+  # See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example.
   extraContainers: []
-  ## Additional containers to be added to the controller pod.
-  ## See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example.
   #  - name: my-sidecar
   #    image: nginx:latest
   #  - name: lemonldap-ng-controller
@@ -545,18 +539,18 @@ controller:
   #    - name: copy-portal-skins
   #      mountPath: /srv/var/lib/lemonldap-ng/portal/skins
 
+  # -- Additional volumeMounts to the controller main container.
   extraVolumeMounts: []
-  ## Additional volumeMounts to the controller main container.
   #  - name: copy-portal-skins
   #   mountPath: /var/lib/lemonldap-ng/portal/skins
 
+  # -- Additional volumes to the controller pod.
   extraVolumes: []
-  ## Additional volumes to the controller pod.
   #  - name: copy-portal-skins
   #    emptyDir: {}
 
+  # -- Containers, which are run before the app containers are started.
   extraInitContainers: []
-  ## Containers, which are run before the app containers are started.
   # - name: init-myservice
   #   image: busybox
   #   command: ['sh', '-c', 'until nslookup myservice; do echo waiting for myservice; sleep 2; done;']
@@ -576,10 +570,10 @@ controller:
     key: "/usr/local/certificates/key"
     namespaceSelector: {}
     objectSelector: {}
-    ## Labels to be added to admission webhooks
+    # -- Labels to be added to admission webhooks
     labels: {}
 
-    # Use an existing PSP instead of creating one
+    # -- Use an existing PSP instead of creating one
     existingPsp: ""
 
     service:
@@ -608,20 +602,20 @@ controller:
       image:
         registry: k8s.gcr.io
         image: ingress-nginx/kube-webhook-certgen
-        # for backwards compatibility consider setting the full image url via the repository value below
-        # use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-        # repository:
+        ## for backwards compatibility consider setting the full image url via the repository value below
+        ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+        ## repository:
         tag: v1.1.1
         digest: sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         pullPolicy: IfNotPresent
-      ## Provide a priority class name to the webhook patching job
+      # -- Provide a priority class name to the webhook patching job
       ##
       priorityClassName: ""
       podAnnotations: {}
       nodeSelector:
         kubernetes.io/os: linux
       tolerations: []
-      ## Labels to be added to patch job resources
+      # -- Labels to be added to patch job resources
       labels: {}
       runAsUser: 2000
 
@@ -637,7 +631,7 @@ controller:
 
       # clusterIP: ""
 
-      ## List of IP addresses at which the stats-exporter service is available
+      # -- List of IP addresses at which the stats-exporter service is available
       ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
       ##
       externalIPs: []
@@ -652,14 +646,14 @@ controller:
     serviceMonitor:
       enabled: false
       additionalLabels: {}
-      # The label to use to retrieve the job name from.
-      # jobLabel: "app.kubernetes.io/name"
+      ## The label to use to retrieve the job name from.
+      ## jobLabel: "app.kubernetes.io/name"
       namespace: ""
       namespaceSelector: {}
-      # Default: scrape .Release.Namespace only
-      # To scrape all, use the following:
-      # namespaceSelector:
-      #   any: true
+      ## Default: scrape .Release.Namespace only
+      ## To scrape all, use the following:
+      ## namespaceSelector:
+      ##   any: true
       scrapeInterval: 30s
       # honorLabels: true
       targetLabels: []
@@ -705,12 +699,12 @@ controller:
         #     description: Too many 4XXs
         #     summary: More than 5% of all requests returned 4XX, this requires your attention
 
-  ## Improve connection draining when ingress controller pod is deleted using a lifecycle hook:
-  ## With this new hook, we increased the default terminationGracePeriodSeconds from 30 seconds
-  ## to 300, allowing the draining of connections up to five minutes.
-  ## If the active connections end before that, the pod will terminate gracefully at that time.
-  ## To effectively take advantage of this feature, the Configmap feature
-  ## worker-shutdown-timeout new value is 240s instead of 10s.
+  # -- Improve connection draining when ingress controller pod is deleted using a lifecycle hook:
+  # With this new hook, we increased the default terminationGracePeriodSeconds from 30 seconds
+  # to 300, allowing the draining of connections up to five minutes.
+  # If the active connections end before that, the pod will terminate gracefully at that time.
+  # To effectively take advantage of this feature, the Configmap feature
+  # worker-shutdown-timeout new value is 240s instead of 10s.
   ##
   lifecycle:
     preStop:
@@ -720,7 +714,7 @@ controller:
 
   priorityClassName: ""
 
-## Rollback limit
+# -- Rollback limit
 ##
 revisionHistoryLimit: 10
 
@@ -734,9 +728,9 @@ defaultBackend:
   image:
     registry: k8s.gcr.io
     image: defaultbackend-amd64
-    # for backwards compatibility consider setting the full image url via the repository value below
-    # use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-    # repository:
+    ## for backwards compatibility consider setting the full image url via the repository value below
+    ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+    ## repository:
     tag: "1.5"
     pullPolicy: IfNotPresent
     # nobody user -> uid 65534
@@ -745,7 +739,7 @@ defaultBackend:
     readOnlyRootFilesystem: true
     allowPrivilegeEscalation: false
 
-  # Use an existing PSP instead of creating one
+  # -- Use an existing PSP instead of creating one
   existingPsp: ""
 
   extraArgs: {}
@@ -754,7 +748,7 @@ defaultBackend:
     create: true
     name: ""
     automountServiceAccountToken: true
-  ## Additional environment variables to set for defaultBackend pods
+  # -- Additional environment variables to set for defaultBackend pods
   extraEnvs: []
 
   port: 8080
@@ -775,7 +769,7 @@ defaultBackend:
     successThreshold: 1
     timeoutSeconds: 5
 
-  ## Node tolerations for server scheduling to nodes with taints
+  # -- Node tolerations for server scheduling to nodes with taints
   ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
   ##
   tolerations: []
@@ -786,29 +780,29 @@ defaultBackend:
 
   affinity: {}
 
-  ## Security Context policies for controller pods
-  ## See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
-  ## notes on enabling and using sysctls
+  # -- Security Context policies for controller pods
+  # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
+  # notes on enabling and using sysctls
   ##
   podSecurityContext: {}
 
-  ## Security Context policies for controller main container.
-  ## See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
-  ## notes on enabling and using sysctls
+  # -- Security Context policies for controller main container.
+  # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
+  # notes on enabling and using sysctls
   ##
   containerSecurityContext: {}
 
-  # labels to add to the pod container metadata
+  # -- Labels to add to the pod container metadata
   podLabels: {}
   #  key: value
 
-  ## Node labels for default backend pod assignment
+  # -- Node labels for default backend pod assignment
   ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
   ##
   nodeSelector:
     kubernetes.io/os: linux
 
-  ## Annotations to be added to default backend pods
+  # -- Annotations to be added to default backend pods
   ##
   podAnnotations: {}
 
@@ -847,7 +841,7 @@ defaultBackend:
 
     # clusterIP: ""
 
-    ## List of IP addresses at which the default backend service is available
+    # -- List of IP addresses at which the default backend service is available
     ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
     ##
     externalIPs: []
@@ -858,7 +852,7 @@ defaultBackend:
     type: ClusterIP
 
   priorityClassName: ""
-  ## Labels to be added to the default backend resources
+  # -- Labels to be added to the default backend resources
   labels: {}
 
 ## Enable RBAC as per https://github.com/kubernetes/ingress-nginx/blob/main/docs/deploy/rbac.md and https://github.com/kubernetes/ingress-nginx/issues/266
@@ -866,8 +860,8 @@ rbac:
   create: true
   scope: false
 
-# If true, create & use Pod Security Policy resources
-# https://kubernetes.io/docs/concepts/policy/pod-security-policy/
+## If true, create & use Pod Security Policy resources
+## https://kubernetes.io/docs/concepts/policy/pod-security-policy/
 podSecurityPolicy:
   enabled: false
 
@@ -876,24 +870,24 @@ serviceAccount:
   name: ""
   automountServiceAccountToken: true
 
-## Optional array of imagePullSecrets containing private registry credentials
+# -- Optional array of imagePullSecrets containing private registry credentials
 ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
 imagePullSecrets: []
 # - name: secretName
 
-# TCP service key:value pairs
-# Ref: https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/exposing-tcp-udp-services.md
+# -- TCP service key:value pairs
+## Ref: https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/exposing-tcp-udp-services.md
 ##
 tcp: {}
 #  8080: "default/example-tcp-svc:9000"
 
-# UDP service key:value pairs
-# Ref: https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/exposing-tcp-udp-services.md
+# -- UDP service key:value pairs
+## Ref: https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/exposing-tcp-udp-services.md
 ##
 udp: {}
 #  53: "kube-system/kube-dns:53"
 
-# A base64ed Diffie-Hellman parameter
-# This can be generated with: openssl dhparam 4096 2> /dev/null | base64
-# Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param
+# -- (string) A base64-encoded Diffie-Hellman parameter.
+# This can be generated with: `openssl dhparam 4096 2> /dev/null | base64`
+## Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param
 dhParam:

From 17b6c99a05d9f4ce9ede1343599a2f08e84838b1 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sat, 8 Jan 2022 11:17:44 -0300
Subject: [PATCH 0026/1641] Fix helm releaser GH Token

---
 .github/workflows/helm.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index b4aa5a5ff..50b7fc05b 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -54,9 +54,9 @@ jobs:
           git config --global user.email "$GITHUB_ACTOR@users.noreply.github.com"
 
       - name: Run chart-releaser
-        uses: helm/chart-releaser-action@v1.1.0
+        uses: helm/chart-releaser-action@v1.2.1
         env:
-          CR_TOKEN: "${{ secrets.PERSONAL_TOKEN }}"
+          CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
           CR_RELEASE_NAME_TEMPLATE: "helm-chart-{{ .Version }}"
         with:
           charts_dir: charts

From 4dda149ed02dad03cc6dcc862be1b8c93dc9824a Mon Sep 17 00:00:00 2001
From: Carlos Tadeu Panato Junior <ctadeu@gmail.com>
Date: Sat, 8 Jan 2022 18:18:19 +0100
Subject: [PATCH 0027/1641] chart/ghaction: set the correct permission to have
 access to push a release (#8115)

Signed-off-by: Carlos Panato <ctadeu@gmail.com>
---
 .github/workflows/helm.yaml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 50b7fc05b..a99fcfaa6 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -33,6 +33,10 @@ jobs:
   chart:
     name: Release Chart
     runs-on: ubuntu-latest
+
+    permissions:
+      contents: write # needed to write releases
+
     needs:
       - changes
     if: |

From a13305185abf95fe2d6585a51d7ba1878aea711a Mon Sep 17 00:00:00 2001
From: gi mbu <slawek.wolak@gmail.com>
Date: Sun, 9 Jan 2022 18:06:00 +0100
Subject: [PATCH 0028/1641] generating SHA for CA only certs in backend_ssl.go
 + comparision of ProxySSL structures in types_equals.go (#8098)

---
 internal/ingress/controller/store/backend_ssl.go |  2 ++
 internal/ingress/types_equals.go                 | 12 ++++++++++++
 2 files changed, 14 insertions(+)

diff --git a/internal/ingress/controller/store/backend_ssl.go b/internal/ingress/controller/store/backend_ssl.go
index 377f62015..41a5b2b40 100644
--- a/internal/ingress/controller/store/backend_ssl.go
+++ b/internal/ingress/controller/store/backend_ssl.go
@@ -154,6 +154,8 @@ func (s *k8sStore) getPemCertificate(secretName string) (*ingress.SSLCert, error
 			return nil, fmt.Errorf("error configuring CA certificate: %v", err)
 		}
 
+		sslCert.CASHA = file.SHA1(sslCert.CAFileName)
+
 		if len(crl) > 0 {
 			err = ssl.ConfigureCRL(nsSecName, crl, sslCert)
 			if err != nil {
diff --git a/internal/ingress/types_equals.go b/internal/ingress/types_equals.go
index 18ffa9042..3e39940a3 100644
--- a/internal/ingress/types_equals.go
+++ b/internal/ingress/types_equals.go
@@ -317,6 +317,9 @@ func (s1 *Server) Equal(s2 *Server) bool {
 	if s1.AuthTLSError != s2.AuthTLSError {
 		return false
 	}
+	if !(&s1.ProxySSL).Equal(&s2.ProxySSL) {
+		return false
+	}
 
 	if len(s1.Locations) != len(s2.Locations) {
 		return false
@@ -401,6 +404,9 @@ func (l1 *Location) Equal(l2 *Location) bool {
 	if !(&l1.Proxy).Equal(&l2.Proxy) {
 		return false
 	}
+	if !(&l1.ProxySSL).Equal(&l2.ProxySSL) {
+		return false
+	}
 	if l1.UsePortInRedirects != l2.UsePortInRedirects {
 		return false
 	}
@@ -558,6 +564,12 @@ func (s1 *SSLCert) Equal(s2 *SSLCert) bool {
 	if s1.PemSHA != s2.PemSHA {
 		return false
 	}
+	if s1.CAFileName != s2.CAFileName {
+		return false
+	}
+	if s1.CRLFileName != s2.CRLFileName {
+		return false
+	}
 	if !s1.ExpireTime.Equal(s2.ExpireTime) {
 		return false
 	}

From c917ffacd28c848475ef0be3fdabdfefe69c3074 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 9 Jan 2022 18:45:12 -0300
Subject: [PATCH 0029/1641] Freeze code generation boilerplate year for proper
 validation (#8117)

---
 hack/boilerplate/boilerplate.generated.go.txt | 16 ++++++++++++++++
 hack/update-codegen.sh                        |  2 +-
 2 files changed, 17 insertions(+), 1 deletion(-)
 create mode 100644 hack/boilerplate/boilerplate.generated.go.txt

diff --git a/hack/boilerplate/boilerplate.generated.go.txt b/hack/boilerplate/boilerplate.generated.go.txt
new file mode 100644
index 000000000..daba3a171
--- /dev/null
+++ b/hack/boilerplate/boilerplate.generated.go.txt
@@ -0,0 +1,16 @@
+/*
+Copyright 2021 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
diff --git a/hack/update-codegen.sh b/hack/update-codegen.sh
index a80a03b3a..9023a3a1a 100755
--- a/hack/update-codegen.sh
+++ b/hack/update-codegen.sh
@@ -41,4 +41,4 @@ ${CODEGEN_PKG}/generate-groups.sh "deepcopy" \
   k8s.io/ingress-nginx/internal k8s.io/ingress-nginx/internal \
   .:ingress \
   --output-base "$(dirname ${BASH_SOURCE})/../../.." \
-  --go-header-file ${SCRIPT_ROOT}/hack/boilerplate/boilerplate.go.txt
+  --go-header-file ${SCRIPT_ROOT}/hack/boilerplate/boilerplate.generated.go.txt

From 38c73233f3db84866892c68845fa188802550d0e Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 9 Jan 2022 21:29:12 -0300
Subject: [PATCH 0030/1641] Remove deprecated libraries, update other libs, add
 ci v1.23 (#8118)

---
 .github/workflows/ci.yaml                     |   2 +-
 go.mod                                        |  43 ++-
 go.sum                                        | 275 +++---------------
 internal/file/structure.go                    |   7 +-
 internal/ingress/annotations/auth/main.go     |  15 +-
 .../ingress/annotations/auth/main_test.go     |   4 +-
 internal/ingress/annotations/authtls/main.go  |   4 +-
 .../annotations/defaultbackend/main.go        |   3 +-
 internal/ingress/annotations/fastcgi/main.go  |   5 +-
 .../annotations/globalratelimit/main.go       |   4 +-
 .../annotations/globalratelimit/main_test.go  |   4 +-
 .../ingress/annotations/ipwhitelist/main.go   |   5 +-
 internal/ingress/annotations/proxyssl/main.go |   4 +-
 internal/ingress/controller/checker.go        |  11 +-
 .../ingress/controller/store/backend_ssl.go   |   3 +-
 .../ingress/controller/template/template.go   |   4 +-
 internal/ingress/errors/errors.go             |   7 +-
 internal/ingress/status/status.go             |   3 +-
 test/e2e/framework/framework.go               |   5 +-
 19 files changed, 97 insertions(+), 311 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index a6dfe75da..a4f6b8ad8 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -186,7 +186,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.19.11, v1.20.7, v1.21.2, v1.22.0]
+        k8s: [v1.19.11, v1.20.7, v1.21.2, v1.22.0, v1.23.0]
 
     steps:
 
diff --git a/go.mod b/go.mod
index 6e2f1abf9..d3497ed21 100644
--- a/go.mod
+++ b/go.mod
@@ -14,10 +14,9 @@ require (
 	github.com/mitchellh/hashstructure v1.1.0
 	github.com/mitchellh/mapstructure v1.4.3
 	github.com/moul/pb v0.0.0-20180404114147-54bdd96e6a52
-	github.com/ncabatoff/process-exporter v0.7.9
+	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo v1.16.4
-	github.com/opencontainers/runc v1.0.2
-	github.com/pkg/errors v0.9.1
+	github.com/opencontainers/runc v1.0.3
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.11.0
 	github.com/prometheus/client_model v0.2.0
@@ -25,25 +24,23 @@ require (
 	github.com/spf13/cobra v1.3.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.7.0
-	github.com/zakjan/cert-chain-resolver v0.0.0-20210427055340-87e10242a981
+	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5
-	golang.org/x/net v0.0.0-20210813160813-60bc85c4be6d
+	golang.org/x/net v0.0.0-20211209124913-491a49abca63
 	google.golang.org/grpc v1.43.0
-	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/go-playground/pool.v3 v3.1.1
-	k8s.io/api v0.22.2
-	k8s.io/apiextensions-apiserver v0.22.2
-	k8s.io/apimachinery v0.22.2
-	k8s.io/apiserver v0.22.2
-	k8s.io/cli-runtime v0.21.5
-	k8s.io/client-go v0.22.2
-	k8s.io/code-generator v0.22.2
-	k8s.io/component-base v0.22.2
-	k8s.io/klog/v2 v2.10.0
-	k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a // indirect
+	k8s.io/api v0.22.5
+	k8s.io/apiextensions-apiserver v0.22.5
+	k8s.io/apimachinery v0.22.5
+	k8s.io/apiserver v0.22.5
+	k8s.io/cli-runtime v0.22.5
+	k8s.io/client-go v0.22.5
+	k8s.io/code-generator v0.22.5
+	k8s.io/component-base v0.22.5
+	k8s.io/klog/v2 v2.9.0
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.10.3
-	sigs.k8s.io/mdtoc v1.0.1
+	sigs.k8s.io/mdtoc v1.1.0
 )
 
 require (
@@ -75,13 +72,12 @@ require (
 	github.com/go-logr/logr v0.4.0 // indirect
 	github.com/go-openapi/jsonpointer v0.19.5 // indirect
 	github.com/go-openapi/jsonreference v0.19.5 // indirect
-	github.com/go-openapi/spec v0.19.5 // indirect
 	github.com/go-openapi/swag v0.19.14 // indirect
 	github.com/godbus/dbus/v5 v5.0.4 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
 	github.com/golang/protobuf v1.5.2 // indirect
-	github.com/gomarkdown/markdown v0.0.0-20200824053859-8c8b3816f167 // indirect
+	github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7 // indirect
 	github.com/google/btree v1.0.1 // indirect
 	github.com/google/go-cmp v0.5.6 // indirect
 	github.com/google/go-querystring v1.0.0 // indirect
@@ -107,6 +103,7 @@ require (
 	github.com/nxadm/tail v1.4.8 // indirect
 	github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
+	github.com/pkg/errors v0.9.1 // indirect
 	github.com/prometheus/procfs v0.7.3 // indirect
 	github.com/sergi/go-diff v1.1.0 // indirect
 	github.com/sirupsen/logrus v1.8.1 // indirect
@@ -131,15 +128,17 @@ require (
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto v0.0.0-20211208223120-3a66f561d7aa // indirect
 	google.golang.org/protobuf v1.27.1 // indirect
+	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b // indirect
 	k8s.io/gengo v0.0.0-20201214224949-b6c5ce23f027 // indirect
-	k8s.io/kube-openapi v0.0.0-20210421082810-95288971da7e // indirect
+	k8s.io/kube-openapi v0.0.0-20211109043538-20434351676c // indirect
+	k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a // indirect
 	moul.io/http2curl v1.0.1-0.20190925090545-5cd742060b0e // indirect
-	sigs.k8s.io/kustomize/api v0.8.8 // indirect
-	sigs.k8s.io/kustomize/kyaml v0.10.17 // indirect
+	sigs.k8s.io/kustomize/api v0.8.11 // indirect
+	sigs.k8s.io/kustomize/kyaml v0.11.0 // indirect
 	sigs.k8s.io/structured-merge-diff/v4 v4.1.2 // indirect
 	sigs.k8s.io/yaml v1.2.0 // indirect
 )
diff --git a/go.sum b/go.sum
index 96021702c..156bbe48b 100644
--- a/go.sum
+++ b/go.sum
@@ -52,17 +52,14 @@ github.com/Azure/go-ansiterm v0.0.0-20210608223527-2377c96fe795/go.mod h1:LmzpDX
 github.com/Azure/go-ansiterm v0.0.0-20210617225240-d185dfc1b5a1/go.mod h1:xomTg63KZ2rFqZQzSB4Vz2SUXa1BpHTVz9L5PTmPC4E=
 github.com/Azure/go-autorest v14.2.0+incompatible h1:V5VMDjClD3GiElqLWO7mz2MxNAK/vTfRHdAubSIPRgs=
 github.com/Azure/go-autorest v14.2.0+incompatible/go.mod h1:r+4oMnoxhatjLLJ6zxSWATqVooLgysK6ZNox3g/xq24=
-github.com/Azure/go-autorest/autorest v0.11.12/go.mod h1:eipySxLmqSyC5s5k1CLupqet0PSENBEDP93LQ9a8QYw=
 github.com/Azure/go-autorest/autorest v0.11.18 h1:90Y4srNYrwOtAgVo3ndrQkTYn6kf1Eg/AjTFJ8Is2aM=
 github.com/Azure/go-autorest/autorest v0.11.18/go.mod h1:dSiJPy22c3u0OtOKDNttNgqpNFY/GeWa7GH/Pz56QRA=
-github.com/Azure/go-autorest/autorest/adal v0.9.5/go.mod h1:B7KF7jKIeC9Mct5spmyCB/A8CG/sEz1vwIRGv/bbw7A=
 github.com/Azure/go-autorest/autorest/adal v0.9.13 h1:Mp5hbtOePIzM8pJVRa3YLrWWmZtoxRXqUEzCfJt3+/Q=
 github.com/Azure/go-autorest/autorest/adal v0.9.13/go.mod h1:W/MM4U6nLxnIskrw4UwWzlHfGjwUS50aOsc/I3yuU8M=
 github.com/Azure/go-autorest/autorest/date v0.3.0 h1:7gUk1U5M/CQbp9WoqinNzJar+8KY+LPI6wiWrP/myHw=
 github.com/Azure/go-autorest/autorest/date v0.3.0/go.mod h1:BI0uouVdmngYNUzGWeSYnokU+TrmwEsOqdt8Y6sso74=
 github.com/Azure/go-autorest/autorest/mocks v0.4.1 h1:K0laFcLE6VLTOwNgSxaGbUcLPuGXlNkbVvq4cW4nIHk=
 github.com/Azure/go-autorest/autorest/mocks v0.4.1/go.mod h1:LTp+uSrOhSkaKrUy935gNZuuIPPVsHlr9DSOxSayd+k=
-github.com/Azure/go-autorest/logger v0.2.0/go.mod h1:T9E3cAhj2VqvPOtCYAvby9aBXkZmbF5NWuPV8+WeEW8=
 github.com/Azure/go-autorest/logger v0.2.1 h1:IG7i4p/mDa2Ce4TRyAO8IHnVhAVF3RFU+ZtXWSmf4Tg=
 github.com/Azure/go-autorest/logger v0.2.1/go.mod h1:T9E3cAhj2VqvPOtCYAvby9aBXkZmbF5NWuPV8+WeEW8=
 github.com/Azure/go-autorest/tracing v0.6.0 h1:TYi4+3m5t6K48TGI9AUdb+IzbnSxvnvUMfuitfgcfuo=
@@ -71,20 +68,13 @@ github.com/BurntSushi/toml v0.3.1 h1:WXkYYl6Yr3qBf1K79EBnL4mak0OimBfB0XUf9Vl28OQ
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
 github.com/DataDog/datadog-go v3.2.0+incompatible/go.mod h1:LButxg5PwREeZtORoXG3tL4fMGNddJ+vMq1mwgfaqoQ=
-github.com/Knetic/govaluate v3.0.1-0.20171022003610-9aa49832a739+incompatible/go.mod h1:r7JcOSlj0wfOMncg0iLm8Leh48TZaKVeNIfJntJ2wa0=
 github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
 github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
 github.com/OneOfOne/xxhash v1.2.2/go.mod h1:HSdplMjZKSmBqAxg5vPj2TmRDmfkzw+cTzAElWljhcU=
-github.com/PuerkitoBio/purell v1.1.0/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
 github.com/PuerkitoBio/purell v1.1.1 h1:WEQqlqaGbrPkxLJWfBwQmfEAE1Z7ONdDLqrN38tNFfI=
 github.com/PuerkitoBio/purell v1.1.1/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
 github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 h1:d+Bc7a5rLufV/sSk/8dngufqelfh6jnri85riMAaF/M=
 github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578/go.mod h1:uGdkoq3SwY9Y+13GIhn11/XLaGBb4BfwItxLd5jeuXE=
-github.com/Shopify/sarama v1.19.0/go.mod h1:FVkBWblsNy7DGZRfXLU0O9RCGt5g3g3yEuWXgklEdEo=
-github.com/Shopify/toxiproxy v2.1.4+incompatible/go.mod h1:OXgGpZ6Cli1/URJOF1DMxUHB2q5Ap20/P/eIdh4G0pI=
-github.com/VividCortex/gohistogram v1.0.0/go.mod h1:Pf5mBqqDxYaXu3hDrrU+w6nw50o/4+TcAqDqk/vUH7g=
-github.com/afex/hystrix-go v0.0.0-20180502004556-fa1af6a1f4f5/go.mod h1:SkGFH1ia65gfNATL8TAiHDNxPzPdmEL5uirI2Uyuz6c=
-github.com/agnivade/levenshtein v1.0.1/go.mod h1:CURSv5d9Uaml+FovSIICkLbAUZ9S4RqaHDIsdSBg7lM=
 github.com/ajg/form v1.5.1 h1:t9c7v8JUKu/XxOGBU0yjNpaMloxGEJhUkqFRq0ibGeU=
 github.com/ajg/form v1.5.1/go.mod h1:uL1WgH+h2mgNtvBq0339dVnzXdBETtL2LeUXaIv25UY=
 github.com/alecthomas/template v0.0.0-20160405071501-a0175ee3bccc/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
@@ -92,12 +82,9 @@ github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuy
 github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190717042225-c3de453c63f4/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d/go.mod h1:rBZYJk541a8SKzHPHnH3zbiI+7dagKZ0cgpgrD7Fyho=
-github.com/andreyvit/diff v0.0.0-20170406064948-c7f18ee00883/go.mod h1:rCTlJbsFo29Kk6CurOXKm700vrz8f0KW0JNfpkRJY/8=
 github.com/andybalholm/brotli v1.0.2 h1:JKnhI/XQ75uFBTiuzXpzFrUriDPiZjlOSzh6wXogP0E=
 github.com/andybalholm/brotli v1.0.2/go.mod h1:loMXtMfwqflxFJPmdbJO0a3KNoPuLBgiu3qAvBg8x/Y=
 github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
-github.com/apache/thrift v0.12.0/go.mod h1:cp2SuWMxlEZw2r+iP2GNCdIi4C1qmUzdZFSVb+bacwQ=
-github.com/apache/thrift v0.13.0/go.mod h1:cp2SuWMxlEZw2r+iP2GNCdIi4C1qmUzdZFSVb+bacwQ=
 github.com/armon/circbuf v0.0.0-20150827004946-bbbad097214e/go.mod h1:3U/XgcO3hCbHZ8TKRvWD2dDTCfh9M9ya+I9JpbB7O8o=
 github.com/armon/consul-api v0.0.0-20180202201655-eb2c6b5be1b6/go.mod h1:grANhF5doyWs3UAsr3K4I6qtAmlQcZDesFNEHPZAzj8=
 github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da/go.mod h1:Q73ZrmVTwzkszR9V5SSuryQ31EELlFMUz1kKyl939pY=
@@ -106,12 +93,7 @@ github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a h1:AP/vsCIvJZ1
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a/go.mod h1:QmP9hvJ91BbJmGVGSbutW19IC0Q9phDCLGaomwTJbgU=
 github.com/armon/go-radix v0.0.0-20180808171621-7fddfc383310/go.mod h1:ufUuZ+zHj4x4TnLV4JWEpy2hxWSpsRywHrMgIH9cCH8=
 github.com/armon/go-radix v1.0.0/go.mod h1:ufUuZ+zHj4x4TnLV4JWEpy2hxWSpsRywHrMgIH9cCH8=
-github.com/aryann/difflib v0.0.0-20170710044230-e206f873d14a/go.mod h1:DAHtR1m6lCRdSC2Tm3DSWRPvIPr6xNKyeHdqDQSQT+A=
-github.com/asaskevich/govalidator v0.0.0-20180720115003-f9ffefc3facf/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
 github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
-github.com/aws/aws-lambda-go v1.13.3/go.mod h1:4UKl9IzQMoD+QF79YdCuzCwp8VbmG4VAQwij/eHl5CU=
-github.com/aws/aws-sdk-go v1.27.0/go.mod h1:KmX6BPdI08NWTb3/sm4ZGu5ShLoqVDhKgpiN924inxo=
-github.com/aws/aws-sdk-go-v2 v0.18.0/go.mod h1:JWVYvqSMppoMJC0x5wdwiImzgXTI9FuZwxzkQq9wy+g=
 github.com/benbjohnson/clock v1.0.3/go.mod h1:bGMdMPoPVvcYyt1gHDf4J2KE153Yf9BuiUKYMaxlTDM=
 github.com/benbjohnson/clock v1.1.0/go.mod h1:J11/hYXuz8f4ySSvYwY0FKfm+ezbsZBKZxNJlLklBHA=
 github.com/beorn7/perks v0.0.0-20180321164747-3a771d992973/go.mod h1:Dwedo/Wpr24TaqPxmxbtue+5NUziq4I4S80YR8gNf3Q=
@@ -123,8 +105,6 @@ github.com/bits-and-blooms/bitset v1.2.0/go.mod h1:gIdJ4wp64HaoK2YrL1Q5/N7Y16edY
 github.com/bketelsen/crypt v0.0.3-0.20200106085610-5cbc8cc4026c/go.mod h1:MKsuJmJgSg28kpZDP6UIiPt0e0Oz0kqKNGyRaWEPv84=
 github.com/blang/semver v3.5.1+incompatible h1:cQNTCjp13qL8KC3Nbxr/y2Bqb63oX6wdnnjpJbkM4JQ=
 github.com/blang/semver v3.5.1+incompatible/go.mod h1:kRBLl5iJ+tD4TcOOxsy/0fnwebNt5EWlYSAyrTnjyyk=
-github.com/casbin/casbin/v2 v2.1.2/go.mod h1:YcPU1XXisHhLzuxH9coDNf2FbKpjGlbCg3n9yuLkIJQ=
-github.com/cenkalti/backoff v2.2.1+incompatible/go.mod h1:90ReRw6GdpyfrHakVjL/QHaoyV4aDUVVkXQJJJ3NXXM=
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
 github.com/census-instrumentation/opencensus-proto v0.3.0/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
 github.com/certifi/gocertifi v0.0.0-20191021191039-0944d244cd40/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
@@ -141,7 +121,6 @@ github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMn
 github.com/cilium/ebpf v0.6.2/go.mod h1:4tRaxcgiL706VnOzHOdBlY8IEAIdxINsQBcU4xJJXRs=
 github.com/circonus-labs/circonus-gometrics v2.3.1+incompatible/go.mod h1:nmEj6Dob7S7YxXgwXpfOuvO54S+tGdZdw9fuRZt25Ag=
 github.com/circonus-labs/circonusllhist v0.1.3/go.mod h1:kMXHVDlOchFAehlya5ePtbp5jckzBHf4XRpQvBOLI+I=
-github.com/clbanning/x2j v0.0.0-20191024224557-825249438eec/go.mod h1:jMjuTZXRI4dUb/I5gc9Hdhagfvm9+RyrPryS/auMzxE=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
 github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc=
 github.com/cncf/udpa/go v0.0.0-20200629203442-efcf912fb354/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
@@ -153,11 +132,9 @@ github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWH
 github.com/cncf/xds/go v0.0.0-20211001041855-01bcc9b48dfe/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20211130200136-a8f946100490/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cockroachdb/datadriven v0.0.0-20190809214429-80d97fb3cbaa/go.mod h1:zn76sxSg3SzpJ0PPJaLDCu+Bu0Lg3sKTORVIj19EIF8=
 github.com/cockroachdb/datadriven v0.0.0-20200714090401-bf6692d28da5/go.mod h1:h6jFvWxBdQXxjopDMZyH2UVceIRfR84bdzbkoKrsWNo=
 github.com/cockroachdb/errors v1.2.4/go.mod h1:rQD95gz6FARkaKkQXUksEje/d9a6wBJoCr5oaCLELYA=
 github.com/cockroachdb/logtags v0.0.0-20190617123548-eb05cc24525f/go.mod h1:i/u985jwjWRlyHXQbwatDASoW0RMlZ/3i9yJHE2xLkI=
-github.com/codahale/hdrhistogram v0.0.0-20161010025455-3a0bb77429bd/go.mod h1:sE/e/2PUdi/liOCUjSTXgM1o87ZssimdTWN964YiIeI=
 github.com/containerd/console v1.0.2/go.mod h1:ytZPjGgY2oeTkAONYafi2kSj0aYggsf8acV1PGKCbzQ=
 github.com/coreos/bbolt v1.3.2/go.mod h1:iRUV2dpdMOn7Bo10OQBFzIJO9kkE559Wcmn+qkEiiKk=
 github.com/coreos/etcd v3.3.10+incompatible/go.mod h1:uF7uidLiAD3TWHmW31ZFd/JWoc32PjwdhPthX9715RE=
@@ -165,17 +142,14 @@ github.com/coreos/etcd v3.3.13+incompatible/go.mod h1:uF7uidLiAD3TWHmW31ZFd/JWoc
 github.com/coreos/go-oidc v2.1.0+incompatible/go.mod h1:CgnwVTmzoESiwO9qyAFEMiHoZ1nMCKZlZ9V6mm3/LKc=
 github.com/coreos/go-semver v0.2.0/go.mod h1:nnelYz7RCh+5ahJtPPxZlU+153eP4D4r3EedlOD2RNk=
 github.com/coreos/go-semver v0.3.0/go.mod h1:nnelYz7RCh+5ahJtPPxZlU+153eP4D4r3EedlOD2RNk=
-github.com/coreos/go-systemd v0.0.0-20180511133405-39ca1b05acc7/go.mod h1:F5haX7vjVVG0kc13fIWeqUViNPyEJxv/OmvnBo0Yme4=
 github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e h1:Wf6HqHfScWJN9/ZjdUKyjop4mf3Qdd+1TvvltAvM3m8=
 github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e/go.mod h1:F5haX7vjVVG0kc13fIWeqUViNPyEJxv/OmvnBo0Yme4=
 github.com/coreos/go-systemd/v22 v22.3.2 h1:D9/bQk5vlXQFZ6Kwuu6zaiXJ9oTPe68++AzAJc1DzSI=
 github.com/coreos/go-systemd/v22 v22.3.2/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
-github.com/coreos/pkg v0.0.0-20160727233714-3ac0863d7acf/go.mod h1:E3G3o1h8I7cfcXa63jLwjI0eiQQMgzzUDFVpN/nH/eA=
 github.com/coreos/pkg v0.0.0-20180928190104-399ea9e2e55f/go.mod h1:E3G3o1h8I7cfcXa63jLwjI0eiQQMgzzUDFVpN/nH/eA=
 github.com/cpuguy83/go-md2man/v2 v2.0.0-20190314233015-f79a8a8ca69d/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
 github.com/cpuguy83/go-md2man/v2 v2.0.0/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
 github.com/cpuguy83/go-md2man/v2 v2.0.1/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
-github.com/creack/pty v1.1.7/go.mod h1:lj5s0c3V2DBrqTV7llrYr5NG6My20zk30Fl46Y7DoTY=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/creack/pty v1.1.11/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/cyphar/filepath-securejoin v0.2.2 h1:jCwT2GTP+PY5nBz3c/YL5PAIbusElVrPujOBSCj8xRg=
@@ -185,23 +159,17 @@ github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/dgrijalva/jwt-go v3.2.0+incompatible/go.mod h1:E3ru+11k8xSBh+hMPgOLZmtrrCbhqsmaPHjLKYnJCaQ=
 github.com/dgryski/go-sip13 v0.0.0-20181026042036-e10d5fee7954/go.mod h1:vAd38F8PWV+bWy6jNmig1y/TA+kYO4g3RSRF0IAv0no=
-github.com/docker/go-units v0.3.3/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
 github.com/docker/go-units v0.4.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
 github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815/go.mod h1:WwZ+bS3ebgob9U8Nd0kOddGdZWjyMGR8Wziv+TBNwSE=
-github.com/dustin/go-humanize v0.0.0-20171111073723-bb3d318650d4/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25KnS6fMYU6eOk=
 github.com/dustin/go-humanize v1.0.0/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25KnS6fMYU6eOk=
 github.com/eapache/channels v1.1.0 h1:F1taHcn7/F0i8DYqKXJnyhJcVpp2kgFcNePxXtnyu4k=
 github.com/eapache/channels v1.1.0/go.mod h1:jMm2qB5Ubtg9zLd+inMZd2/NUvXgzmWXsDaLyQIGfH0=
-github.com/eapache/go-resiliency v1.1.0/go.mod h1:kFI+JgMyC7bLPUVY133qvEBtVayf5mFgVsvEsIPBvNs=
-github.com/eapache/go-xerial-snappy v0.0.0-20180814174437-776d5712da21/go.mod h1:+020luEh2TKB4/GOp8oxxtq0Daoen/Cii55CzbTV6DU=
 github.com/eapache/queue v1.1.0 h1:YOEu7KNc61ntiQlcEeUIoDTJ2o8mQznoNvUhiigpIqc=
 github.com/eapache/queue v1.1.0/go.mod h1:6eCeP0CKFpHLu8blIFXhExK/dRa7WDZfr6jVFPTqq+I=
-github.com/edsrzf/mmap-go v1.0.0/go.mod h1:YO35OhQPt3KJa3ryjFM5Bs14WD66h8eGKpfaBNrHW5M=
 github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153/go.mod h1:/Zj4wYkgs4iZTTu3o/KG3Itv/qCCa8VVMlb3i9OVuzc=
 github.com/emicklei/go-restful v0.0.0-20170410110728-ff4f55a20633/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
 github.com/emicklei/go-restful v2.9.5+incompatible h1:spTtZBk5DYEvbxMVutUuTyh1Ao2r4iyvLdACqsl/Ljk=
 github.com/emicklei/go-restful v2.9.5+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
-github.com/envoyproxy/go-control-plane v0.6.9/go.mod h1:SBwIajubJHhxtWwsL9s8ss4safvEdbitLhGGK48rN6g=
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=
@@ -214,8 +182,6 @@ github.com/envoyproxy/go-control-plane v0.10.1/go.mod h1:AY7fTTXNdv/aJ2O5jwpxAPO
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
 github.com/envoyproxy/protoc-gen-validate v0.6.2/go.mod h1:2t7qjJNvHPx8IjnBOzl9E9/baC+qXE/TeeyBRzgJDws=
 github.com/evanphx/json-patch v0.5.2/go.mod h1:ZWS5hhDbVDyob71nXKNL0+PWn6ToqBHMikGIFbs31qQ=
-github.com/evanphx/json-patch v4.5.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
-github.com/evanphx/json-patch v4.9.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/evanphx/json-patch v4.11.0+incompatible h1:glyUF9yIYtMHzn8xaKw5rMhdWcwsYV8dZHIq5567/xs=
 github.com/evanphx/json-patch v4.11.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/fasthttp/websocket v1.4.3-rc.6 h1:omHqsl8j+KXpmzRjF8bmzOSYJ8GnS0E3efi1wYT+niY=
@@ -229,8 +195,6 @@ github.com/felixge/httpsnoop v1.0.1/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSw
 github.com/form3tech-oss/jwt-go v3.2.2+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
 github.com/form3tech-oss/jwt-go v3.2.3+incompatible h1:7ZaBxOI7TMoYBfyA3cQHErNNyAWIKUMIwqxEtgHOs5c=
 github.com/form3tech-oss/jwt-go v3.2.3+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
-github.com/franela/goblin v0.0.0-20200105215937-c9ffbefa60db/go.mod h1:7dvUGVsVBjqR7JHJk0brhHOZYGmfBYOrK0ZhYMEtBr4=
-github.com/franela/goreq v0.0.0-20171204163338-bcd34c9993f8/go.mod h1:ZhphrRTfi2rbfLwlschooIH4+wKKDR4Pdxhh+TRoA20=
 github.com/frankban/quicktest v1.11.3/go.mod h1:wRf/ReqHper53s+kmmSZizM8NamnL3IM0I9ntUbOk+k=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
@@ -242,8 +206,6 @@ github.com/gavv/httpexpect/v2 v2.3.1 h1:sGLlKMn8AuHS9ztK9Sb7AJ7OxIL8v2PcLdyxfKt1
 github.com/gavv/httpexpect/v2 v2.3.1/go.mod h1:yOE8m/aqFYQDNrgprMeXgq4YynfN9h1NgcE1+1suV64=
 github.com/getsentry/raven-go v0.2.0/go.mod h1:KungGk8q33+aIAZUIVWZDr2OfAEBsO49PX4NzFV5kcQ=
 github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
-github.com/globalsign/mgo v0.0.0-20180905125535-1ca0a4f7cbcb/go.mod h1:xkRDCp4j0OGD1HRkm4kmhM+pmpv3AKq5SU7GMg4oO/Q=
-github.com/globalsign/mgo v0.0.0-20181015135952-eeefdecb41b8/go.mod h1:xkRDCp4j0OGD1HRkm4kmhM+pmpv3AKq5SU7GMg4oO/Q=
 github.com/go-errors/errors v1.0.1 h1:LUHzmkK3GUKUrL/1gfBUxAHzcev3apQlezX/+O7ma6w=
 github.com/go-errors/errors v1.0.1/go.mod h1:f4zRHt4oKfwPJE5k8C9vpYG+aDHdBFUsgrm6/TyX73Q=
 github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1/go.mod h1:vR7hzQXu2zJy9AVAgeJqvqgH9Q5CA+iKCZ2gyEVpxRU=
@@ -251,7 +213,6 @@ github.com/go-gl/glfw/v3.3/glfw v0.0.0-20191125211704-12ad95a8df72/go.mod h1:tQ2
 github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8=
 github.com/go-kit/kit v0.8.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
 github.com/go-kit/kit v0.9.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
-github.com/go-kit/kit v0.10.0/go.mod h1:xUsJbQ/Fp4kEt7AFgCuvyX4a71u8h9jB8tj/ORgOZ7o=
 github.com/go-kit/log v0.1.0/go.mod h1:zbhenjAZHb184qTLMA9ZjW7ThYL0H2mk7Q6pNt4vbaY=
 github.com/go-logfmt/logfmt v0.3.0/go.mod h1:Qt1PoO58o5twSAckw1HlFXLmHsOX5/0LbT9GBnD5lWE=
 github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V4qmtdjCk=
@@ -262,69 +223,25 @@ github.com/go-logr/logr v0.4.0 h1:K7/B1jt6fIBQVd4Owv2MqGQClcgf0R266+7C/QjRcLc=
 github.com/go-logr/logr v0.4.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
 github.com/go-logr/zapr v0.4.0 h1:uc1uML3hRYL9/ZZPdgHS/n8Nzo+eaYL/Efxkkamf7OM=
 github.com/go-logr/zapr v0.4.0/go.mod h1:tabnROwaDl0UNxkVeFRbY8bwB37GwRv0P8lg6aAiEnk=
-github.com/go-openapi/analysis v0.0.0-20180825180245-b006789cd277/go.mod h1:k70tL6pCuVxPJOHXQ+wIac1FUrvNkHolPie/cLEU6hI=
-github.com/go-openapi/analysis v0.17.0/go.mod h1:IowGgpVeD0vNm45So8nr+IcQ3pxVtpRoBWb8PVZO0ik=
-github.com/go-openapi/analysis v0.18.0/go.mod h1:IowGgpVeD0vNm45So8nr+IcQ3pxVtpRoBWb8PVZO0ik=
-github.com/go-openapi/analysis v0.19.2/go.mod h1:3P1osvZa9jKjb8ed2TPng3f0i/UY9snX6gxi44djMjk=
-github.com/go-openapi/analysis v0.19.5/go.mod h1:hkEAkxagaIvIP7VTn8ygJNkd4kAYON2rCu0v0ObL0AU=
-github.com/go-openapi/errors v0.17.0/go.mod h1:LcZQpmvG4wyF5j4IhA73wkLFQg+QJXOQHVjmcZxhka0=
-github.com/go-openapi/errors v0.18.0/go.mod h1:LcZQpmvG4wyF5j4IhA73wkLFQg+QJXOQHVjmcZxhka0=
-github.com/go-openapi/errors v0.19.2/go.mod h1:qX0BLWsyaKfvhluLejVpVNwNRdXZhEbTA4kxxpKBC94=
-github.com/go-openapi/jsonpointer v0.17.0/go.mod h1:cOnomiV+CVVwFLk0A/MExoFMjwdsUdVpsRhURCKh+3M=
-github.com/go-openapi/jsonpointer v0.18.0/go.mod h1:cOnomiV+CVVwFLk0A/MExoFMjwdsUdVpsRhURCKh+3M=
-github.com/go-openapi/jsonpointer v0.19.2/go.mod h1:3akKfEdA7DF1sugOqz1dVQHBcuDBPKZGEoHC/NkiQRg=
 github.com/go-openapi/jsonpointer v0.19.3/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
 github.com/go-openapi/jsonpointer v0.19.5 h1:gZr+CIYByUqjcgeLXnQu2gHYQC9o73G2XUeOFYEICuY=
 github.com/go-openapi/jsonpointer v0.19.5/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
-github.com/go-openapi/jsonreference v0.17.0/go.mod h1:g4xxGn04lDIRh0GJb5QlpE3HfopLOL6uZrK/VgnsK9I=
-github.com/go-openapi/jsonreference v0.18.0/go.mod h1:g4xxGn04lDIRh0GJb5QlpE3HfopLOL6uZrK/VgnsK9I=
-github.com/go-openapi/jsonreference v0.19.2/go.mod h1:jMjeRr2HHw6nAVajTXJ4eiUwohSTlpa0o73RUL1owJc=
 github.com/go-openapi/jsonreference v0.19.3/go.mod h1:rjx6GuL8TTa9VaixXglHmQmIL98+wF9xc8zWvFonSJ8=
 github.com/go-openapi/jsonreference v0.19.5 h1:1WJP/wi4OjB4iV8KVbH73rQaoialJrqv8gitZLxGLtM=
 github.com/go-openapi/jsonreference v0.19.5/go.mod h1:RdybgQwPxbL4UEjuAruzK1x3nE69AqPYEJeo/TWfEeg=
-github.com/go-openapi/loads v0.17.0/go.mod h1:72tmFy5wsWx89uEVddd0RjRWPZm92WRLhf7AC+0+OOU=
-github.com/go-openapi/loads v0.18.0/go.mod h1:72tmFy5wsWx89uEVddd0RjRWPZm92WRLhf7AC+0+OOU=
-github.com/go-openapi/loads v0.19.0/go.mod h1:72tmFy5wsWx89uEVddd0RjRWPZm92WRLhf7AC+0+OOU=
-github.com/go-openapi/loads v0.19.2/go.mod h1:QAskZPMX5V0C2gvfkGZzJlINuP7Hx/4+ix5jWFxsNPs=
-github.com/go-openapi/loads v0.19.4/go.mod h1:zZVHonKd8DXyxyw4yfnVjPzBjIQcLt0CCsn0N0ZrQsk=
-github.com/go-openapi/runtime v0.0.0-20180920151709-4f900dc2ade9/go.mod h1:6v9a6LTXWQCdL8k1AO3cvqx5OtZY/Y9wKTgaoP6YRfA=
-github.com/go-openapi/runtime v0.19.0/go.mod h1:OwNfisksmmaZse4+gpV3Ne9AyMOlP1lt4sK4FXt0O64=
-github.com/go-openapi/runtime v0.19.4/go.mod h1:X277bwSUBxVlCYR3r7xgZZGKVvBd/29gLDlFGtJ8NL4=
-github.com/go-openapi/spec v0.17.0/go.mod h1:XkF/MOi14NmjsfZ8VtAKf8pIlbZzyoTvZsdfssdxcBI=
-github.com/go-openapi/spec v0.18.0/go.mod h1:XkF/MOi14NmjsfZ8VtAKf8pIlbZzyoTvZsdfssdxcBI=
-github.com/go-openapi/spec v0.19.2/go.mod h1:sCxk3jxKgioEJikev4fgkNmwS+3kuYdJtcsZsD5zxMY=
-github.com/go-openapi/spec v0.19.3/go.mod h1:FpwSN1ksY1eteniUU7X0N/BgJ7a4WvBFVA8Lj9mJglo=
-github.com/go-openapi/spec v0.19.5 h1:Xm0Ao53uqnk9QE/LlYV5DEU09UAgpliA85QoT9LzqPw=
-github.com/go-openapi/spec v0.19.5/go.mod h1:Hm2Jr4jv8G1ciIAo+frC/Ft+rR2kQDh8JHKHb3gWUSk=
-github.com/go-openapi/strfmt v0.17.0/go.mod h1:P82hnJI0CXkErkXi8IKjPbNBM6lV6+5pLP5l494TcyU=
-github.com/go-openapi/strfmt v0.18.0/go.mod h1:P82hnJI0CXkErkXi8IKjPbNBM6lV6+5pLP5l494TcyU=
-github.com/go-openapi/strfmt v0.19.0/go.mod h1:+uW+93UVvGGq2qGaZxdDeJqSAqBqBdl+ZPMF/cC8nDY=
-github.com/go-openapi/strfmt v0.19.3/go.mod h1:0yX7dbo8mKIvc3XSKp7MNfxw4JytCfCD6+bY1AVL9LU=
-github.com/go-openapi/strfmt v0.19.5/go.mod h1:eftuHTlB/dI8Uq8JJOyRlieZf+WkkxUuk0dgdHXr2Qk=
-github.com/go-openapi/swag v0.17.0/go.mod h1:AByQ+nYG6gQg71GINrmuDXCPWdL640yX49/kXLo40Tg=
-github.com/go-openapi/swag v0.18.0/go.mod h1:AByQ+nYG6gQg71GINrmuDXCPWdL640yX49/kXLo40Tg=
-github.com/go-openapi/swag v0.19.2/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh66Z9tfKk=
 github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh66Z9tfKk=
 github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5Fng=
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
-github.com/go-openapi/validate v0.18.0/go.mod h1:Uh4HdOzKt19xGIGm1qHf/ofbX1YQ4Y+MYsct2VUrAJ4=
-github.com/go-openapi/validate v0.19.2/go.mod h1:1tRCw7m3jtI8eNWEEliiAqUIcBztB2KDnRCRMUi7GTA=
-github.com/go-openapi/validate v0.19.8/go.mod h1:8DJv2CVJQ6kGNpFW6eV9N3JviE1C85nY1c2z52x1Gk4=
-github.com/go-sql-driver/mysql v1.4.0/go.mod h1:zAC/RDZ24gD3HViQzih4MyKcchzm+sOG5ZlKdlhCg5w=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
 github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
-github.com/gobuffalo/here v0.6.0/go.mod h1:wAG085dHOYqUpf+Ap+WOdrPTp5IYcDAs/x7PLa8Y5fM=
 github.com/godbus/dbus/v5 v5.0.4 h1:9349emZab16e7zQvpmsbtjc18ykshndd8y2PG3sgJbA=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
-github.com/gogo/googleapis v1.1.0/go.mod h1:gf4bu3Q80BeJ6H1S1vYPm8/ELATdvryBaNFGgqEef3s=
 github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
-github.com/gogo/protobuf v1.2.0/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
 github.com/gogo/protobuf v1.2.1/go.mod h1:hp+jE20tsWTFYpLwKvXlhS1hjn+gTNwPg2I6zVXpSg4=
 github.com/gogo/protobuf v1.3.1/go.mod h1:SlYgWuQ5SjCEi6WLHjHCa1yvBfUnHcTbrrZtXPKa29o=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
-github.com/golang/groupcache v0.0.0-20160516000752-02826c3e7903/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20190129154638-5b532d6fd5ef/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20190702054246-869f871628b6/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20191227052852-215e87163ea7/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
@@ -358,10 +275,9 @@ github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaS
 github.com/golang/protobuf v1.5.1/go.mod h1:DopwsBzvsk0Fs44TXzsVbJyPhcCPeIwnvohx4u74HPM=
 github.com/golang/protobuf v1.5.2 h1:ROPKBNFfQgOUMifHyP+KYbvpjbdoFNs+aK7DXlji0Tw=
 github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
-github.com/golang/snappy v0.0.0-20180518054509-2e65f85255db/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
-github.com/gomarkdown/markdown v0.0.0-20200824053859-8c8b3816f167 h1:LP/6EfrZ/LyCc+SXvANDrIJ4sP9u2NAtqyv6QknetNQ=
-github.com/gomarkdown/markdown v0.0.0-20200824053859-8c8b3816f167/go.mod h1:aii0r/K0ZnHv7G0KF7xy1v0A7s2Ljrb5byB7MO5p6TU=
+github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7 h1:oKYOfNR7Hp6XpZ4JqolL5u642Js5Z0n7psPVl+S5heo=
+github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7/go.mod h1:aii0r/K0ZnHv7G0KF7xy1v0A7s2Ljrb5byB7MO5p6TU=
 github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/btree v1.0.0/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/btree v1.0.1 h1:gK4Kx5IaGY9CD5sPJ36FHiBJ6ZXl0kilRiiCj+jdYp4=
@@ -405,7 +321,6 @@ github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLe
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
-github.com/google/uuid v1.0.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.1.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.2.0 h1:qJYtXnJRWmpe7m/3XlyhrsLrEURqHRM2kxzoxXqyUDs=
@@ -414,32 +329,23 @@ github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
 github.com/googleapis/gax-go/v2 v2.1.0/go.mod h1:Q3nei7sK6ybPYH7twZdmQpAd1MKb7pfu6SK+H1/DsU0=
 github.com/googleapis/gax-go/v2 v2.1.1/go.mod h1:hddJymUZASv3XPyGkUpKj8pPO47Rmb0eJc8R6ouapiM=
-github.com/googleapis/gnostic v0.4.1/go.mod h1:LRhVm6pbyptWbWbuZ38d1eyptfvIytN3ir6b65WBswg=
 github.com/googleapis/gnostic v0.5.1/go.mod h1:6U4PtQXGIEt/Z3h5MAT7FNofLnw9vXk2cUuW7uA/OeU=
 github.com/googleapis/gnostic v0.5.5 h1:9fHAtK0uDfpveeqqo1hkEZJcFvYXAiCN3UutL8F9xHw=
 github.com/googleapis/gnostic v0.5.5/go.mod h1:7+EbHbldMins07ALC74bsA81Ovc97DwqyJO1AENw9kA=
 github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY=
-github.com/gorilla/context v1.1.1/go.mod h1:kBGZzfjB9CEq2AlWe17Uuf7NDRt0dE0s8S51q0aT7Yg=
-github.com/gorilla/mux v1.6.2/go.mod h1:1lud6UwP+6orDFRuTfBEV8e9/aOM/c4fVVCaMa2zaAs=
-github.com/gorilla/mux v1.7.3/go.mod h1:1lud6UwP+6orDFRuTfBEV8e9/aOM/c4fVVCaMa2zaAs=
-github.com/gorilla/websocket v0.0.0-20170926233335-4201258b820c/go.mod h1:E7qHFY5m1UJ88s3WnNqhKjPHQ0heANvMoAMk2YaljkQ=
 github.com/gorilla/websocket v1.4.0/go.mod h1:E7qHFY5m1UJ88s3WnNqhKjPHQ0heANvMoAMk2YaljkQ=
 github.com/gorilla/websocket v1.4.2 h1:+/TMaTYc4QFitKJxsQ7Yye35DkWvkdLcvGKqM+x0Ufc=
 github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 h1:pdN6V1QBWetyv/0+wjACpqVH+eVULgEjkurDLq3goeM=
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
 github.com/grpc-ecosystem/go-grpc-middleware v1.0.0/go.mod h1:FiyG127CGDf3tlThmgyCl78X/SZQqEOJBCDaAfeWzPs=
-github.com/grpc-ecosystem/go-grpc-middleware v1.0.1-0.20190118093823-f849b5445de4/go.mod h1:FiyG127CGDf3tlThmgyCl78X/SZQqEOJBCDaAfeWzPs=
 github.com/grpc-ecosystem/go-grpc-middleware v1.3.0/go.mod h1:z0ButlSOZa5vEBq9m2m2hlwIgKw+rp3sdCBRoJY+30Y=
 github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgfV/d3M/q6VIi02HzZEHgUlZvzk=
 github.com/grpc-ecosystem/grpc-gateway v1.9.0/go.mod h1:vNeuVxBJEsws4ogUvrchl83t/GYV9WGTSLVdBhOQFDY=
-github.com/grpc-ecosystem/grpc-gateway v1.9.5/go.mod h1:vNeuVxBJEsws4ogUvrchl83t/GYV9WGTSLVdBhOQFDY=
 github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
 github.com/hashicorp/consul/api v1.1.0/go.mod h1:VmuI/Lkw1nC05EYQWNKwWGbkg+FbDBtguAZLlVdkD9Q=
-github.com/hashicorp/consul/api v1.3.0/go.mod h1:MmDNSzIMUjNpY/mQ398R4bk2FnqQLoPndWW5VkKPlCE=
 github.com/hashicorp/consul/api v1.11.0/go.mod h1:XjsvQN+RJGWI2TWy1/kqaE16HrR2J/FWgkYjdZQsX9M=
 github.com/hashicorp/consul/sdk v0.1.1/go.mod h1:VKf9jXwCTEY1QZP2MOLRhb5i/I/ssyNV1vwHyQBF0x8=
-github.com/hashicorp/consul/sdk v0.3.0/go.mod h1:VKf9jXwCTEY1QZP2MOLRhb5i/I/ssyNV1vwHyQBF0x8=
 github.com/hashicorp/consul/sdk v0.8.0/go.mod h1:GBvyrGALthsZObzUGsfgHZQDXjg4lOjagTIwIR1vPms=
 github.com/hashicorp/errwrap v1.0.0/go.mod h1:YH+1FKiLXxHSkmPseP+kNlulaMuP3n2brvKWEqk/Jc4=
 github.com/hashicorp/go-cleanhttp v0.5.0/go.mod h1:JpRdi6/HCYpAwUzNwuwqhbovhLtngrth3wmdIIUrZ80=
@@ -459,7 +365,6 @@ github.com/hashicorp/go-sockaddr v1.0.0/go.mod h1:7Xibr9yA9JjQq1JpNB2Vw7kxv8xerX
 github.com/hashicorp/go-syslog v1.0.0/go.mod h1:qPfqrKkXGihmCqbJM2mZgkZGvKG1dFdvsLplgctolz4=
 github.com/hashicorp/go-uuid v1.0.0/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/bN7x4byOro=
 github.com/hashicorp/go-uuid v1.0.1/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/bN7x4byOro=
-github.com/hashicorp/go-version v1.2.0/go.mod h1:fltr4n8CU8Ke44wwGCBoEymUuxUHl09ZGVZPK5anwXA=
 github.com/hashicorp/go.net v0.0.1/go.mod h1:hjKkEWcCURg++eb33jQU7oqQcI9XDCnUzHA0oac0k90=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
@@ -476,7 +381,6 @@ github.com/hashicorp/serf v0.8.2/go.mod h1:6hOLApaqBFA1NXqRQAsxw9QxuDEvNxSQRwA/J
 github.com/hashicorp/serf v0.9.5/go.mod h1:UWDWwZeL5cuWDJdl0C6wrvrUwEqtQ4ZKBKKENpqIUyk=
 github.com/hashicorp/serf v0.9.6/go.mod h1:TXZNMjZQijwlDvp+r0b63xZ45H7JmCmgg4gpTwn9UV4=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
-github.com/hudl/fargo v1.3.0/go.mod h1:y3CKSmjA+wD2gak7sUSXTAoopbhU08POFhmITJgmKTg=
 github.com/iancoleman/strcase v0.2.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
@@ -487,17 +391,13 @@ github.com/imkira/go-interpol v1.0.0 h1:HrmLyvOLJyjR0YofMw8QGdCIuYOs4TJUBDNU5sJC
 github.com/imkira/go-interpol v1.0.0/go.mod h1:z0h2/2T3XF8kyEPpRgJ3kmNv+C43p+I/CoI+jC3w2iA=
 github.com/inconshreveable/mousetrap v1.0.0 h1:Z8tu5sraLXCXIcARxBp/8cbvlwVa7Z1NHg9XEKhtSvM=
 github.com/inconshreveable/mousetrap v1.0.0/go.mod h1:PxqpIevigyE2G7u3NXJIT2ANytuPF1OarO4DADm73n8=
-github.com/influxdata/influxdb1-client v0.0.0-20191209144304-8bf82d3c094d/go.mod h1:qj24IKcXYK6Iy9ceXlo3Tc+vtHo9lIhSX5JddghvEPo=
 github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
-github.com/jmespath/go-jmespath v0.0.0-20180206201540-c2b33e8439af/go.mod h1:Nht3zPeWKUH0NzdCt2Blrr5ys8VGpn0CEB0cQHVjt7k=
 github.com/jonboulle/clockwork v0.1.0/go.mod h1:Ii8DK3G1RaLaWxj9trq07+26W01tbo22gdxWY5EU2bo=
 github.com/jonboulle/clockwork v0.2.2/go.mod h1:Pkfl5aHPm1nk2H9h0bjmnJD/BcgbGXUBGnn1kMkgxc8=
 github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
 github.com/jpillora/backoff v1.0.0/go.mod h1:J/6gKK9jxlEcS3zixgDgUAsiuZ7yrSoa/FX5e0EB2j4=
 github.com/json-iterator/go v1.1.6/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
-github.com/json-iterator/go v1.1.7/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
-github.com/json-iterator/go v1.1.8/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
 github.com/json-iterator/go v1.1.9/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
 github.com/json-iterator/go v1.1.10/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
 github.com/json-iterator/go v1.1.11/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
@@ -525,7 +425,6 @@ github.com/kr/pretty v0.2.1/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfn
 github.com/kr/pretty v0.3.0 h1:WgNl7dwNpEZ6jJ9k1snq4pZsg7DOEN8hP9Xw0Tsjwk0=
 github.com/kr/pretty v0.3.0/go.mod h1:640gp4NfQd8pI5XOwp5fnNeVWj67G7CFk/SaSQn7NBk=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
-github.com/kr/pty v1.1.5/go.mod h1:9r2w37qlBe7rQ6e1fg1S/9xpWHSnaqNdHD3WcMdbPDA=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
 github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
@@ -533,21 +432,15 @@ github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
-github.com/lightstep/lightstep-tracer-common/golang/gogo v0.0.0-20190605223551-bc2310a04743/go.mod h1:qklhhLq1aX+mtWk9cPHPzaBjWImj5ULL6C7HFJtXQMM=
-github.com/lightstep/lightstep-tracer-go v0.18.1/go.mod h1:jlF1pusYV4pidLvZ+XD0UBX0ZE6WURAspgAczcDHrL4=
 github.com/lyft/protoc-gen-star v0.5.3/go.mod h1:V0xaHgaf5oCCqmcxYcWiDfTiKsZsRc87/1qhoTACD8w=
-github.com/lyft/protoc-gen-validate v0.0.13/go.mod h1:XbGvPuh87YZc5TdIa2/I4pLk0QoUACkjt2znoq26NVQ=
 github.com/magiconair/properties v1.8.0/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ=
 github.com/magiconair/properties v1.8.1/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ=
 github.com/magiconair/properties v1.8.5/go.mod h1:y3VJvCyxH9uVvJTWEGAELF3aiYNyPKd5NZ3oSwXrF60=
-github.com/mailru/easyjson v0.0.0-20180823135443-60711f1a8329/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
-github.com/mailru/easyjson v0.0.0-20190312143242-1de009706dbe/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.7.0/go.mod h1:KAzv3t3aY1NaHWoQz1+4F1ccyAH66Jk7yos7ldAVICs=
 github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA=
 github.com/mailru/easyjson v0.7.6/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
-github.com/markbates/pkger v0.17.1/go.mod h1:0JoVlrol20BSywW79rN3kdFFsE5xYM+rSCQDXbLhiuI=
 github.com/mattn/go-colorable v0.0.9/go.mod h1:9vuHe8Xs5qXnSaW/c/ABM9alt+Vo+STaOChaDxuIBZU=
 github.com/mattn/go-colorable v0.1.2/go.mod h1:U0ppj6V5qS13XJ6of8GYAs25YV2eR4EVcfRqFIhoBtE=
 github.com/mattn/go-colorable v0.1.4/go.mod h1:U0ppj6V5qS13XJ6of8GYAs25YV2eR4EVcfRqFIhoBtE=
@@ -556,14 +449,12 @@ github.com/mattn/go-colorable v0.1.9/go.mod h1:u6P/XSegPjTcexA+o6vUJrdnUu04hMope
 github.com/mattn/go-colorable v0.1.12 h1:jF+Du6AlPIjs2BiUiQlKOX0rt3SujHxPnksPKZbaA40=
 github.com/mattn/go-colorable v0.1.12/go.mod h1:u5H1YNBxpqRaxsYJYSkiCWKzEfiAb1Gb520KVy5xxl4=
 github.com/mattn/go-isatty v0.0.3/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNxMWT7Zi4=
-github.com/mattn/go-isatty v0.0.4/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNxMWT7Zi4=
 github.com/mattn/go-isatty v0.0.8/go.mod h1:Iq45c/XA43vh69/j3iqttzPXn0bhXyGjM0Hdxcsrc5s=
 github.com/mattn/go-isatty v0.0.10/go.mod h1:qgIWMr58cqv1PHHyhnkY9lrL7etaEgOFcMEpPG5Rm84=
 github.com/mattn/go-isatty v0.0.11/go.mod h1:PhnuNfih5lzO57/f3n+odYbM4JtupLOxQOAqxQCu2WE=
 github.com/mattn/go-isatty v0.0.12/go.mod h1:cbi8OIDigv2wuxKPP5vlRcQ1OAZbq2CE4Kysco4FUpU=
 github.com/mattn/go-isatty v0.0.14 h1:yVuAays6BHfxijgZPzw+3Zlu5yQgKGP2/hcQbHb7S9Y=
 github.com/mattn/go-isatty v0.0.14/go.mod h1:7GGIvUiUoEMVVmxf/4nioHXj79iQHKdU27kJ6hsGG94=
-github.com/mattn/go-runewidth v0.0.2/go.mod h1:LwmH8dsx7+W8Uxz3IHJYH5QSwggIsqBzpuz5H//U1FU=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
 github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 h1:I0XW9+e1XWDxdcEniV4rQAIOPUGDq67JSCiRCgGCZLI=
 github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
@@ -608,73 +499,46 @@ github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8m
 github.com/mwitkow/go-conntrack v0.0.0-20161129095857-cc309e4a2223/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
 github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
 github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
-github.com/nats-io/jwt v0.3.0/go.mod h1:fRYCDE99xlTsqUzISS1Bi75UBJ6ljOJQOAAu5VglpSg=
-github.com/nats-io/jwt v0.3.2/go.mod h1:/euKqTS1ZD+zzjYrY7pseZrTtWQSjujC7xjPc8wL6eU=
-github.com/nats-io/nats-server/v2 v2.1.2/go.mod h1:Afk+wRZqkMQs/p45uXdrVLuab3gwv3Z8C4HTBu8GD/k=
-github.com/nats-io/nats.go v1.9.1/go.mod h1:ZjDU1L/7fJ09jvUSRVBR2e7+RnLiiIQyqyzEE/Zbp4w=
-github.com/nats-io/nkeys v0.1.0/go.mod h1:xpnFELMwJABBLVhffcfd1MZx6VsNRFpEugbxziKVo7w=
-github.com/nats-io/nkeys v0.1.3/go.mod h1:xpnFELMwJABBLVhffcfd1MZx6VsNRFpEugbxziKVo7w=
-github.com/nats-io/nuid v1.0.1/go.mod h1:19wcPz3Ph3q0Jbyiqsd0kePYG7A95tJPxeL+1OSON2c=
 github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65/go.mod h1:Tx6UMSMyIsjLG/VU/F6xA1+0XI+/f9o1dGJnf1l+bPg=
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 h1:t4WWQ9I797y7QUgeEjeXnVb+oYuEDQc6gLvrZJTYo94=
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833/go.mod h1:0CznHmXSjMEqs5Tezj/w2emQoM41wzYM9KpDKUHPYag=
-github.com/ncabatoff/process-exporter v0.7.9 h1:RRvLF8pbWwLryEZiNMKJGfCTQkJW8SNabneiKQq3DBY=
-github.com/ncabatoff/process-exporter v0.7.9/go.mod h1:I/1yUBpScNw5UC/Qf2DC9vWqol2cR6jPqSVulMEnzxQ=
+github.com/ncabatoff/process-exporter v0.7.10 h1:+Ere7+3se6QqP54gg7aBRagWcL8bq3u5zNi/GRSWeKQ=
+github.com/ncabatoff/process-exporter v0.7.10/go.mod h1:DHZRZjqxw9LCOpLlX0DjBuyn6d5plh41Jv6Tmttj7Ek=
 github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
 github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
 github.com/nxadm/tail v1.4.8/go.mod h1:+ncqLTQzXmGhMZNUePPaPqPvBxHAIsmXswZKocGu+AU=
-github.com/oklog/oklog v0.3.2/go.mod h1:FCV+B7mhrz4o+ueLpx+KqkyXRGMWOYEvfiXtdGtbWGs=
-github.com/oklog/run v1.0.0/go.mod h1:dlhp/R75TPv97u0XWUtDeV/lRKWPKSdTuV0TZvrmrQA=
 github.com/oklog/ulid v1.3.1/go.mod h1:CirwcVhetQ6Lv90oh/F+FBtV6XMibvdAFo93nm5qn4U=
-github.com/olekukonko/tablewriter v0.0.0-20170122224234-a0225b3f23b5/go.mod h1:vsDQFd/mU46D+Z4whnwzcISnGGzXWMclvtLoiIKAKIo=
 github.com/onsi/ginkgo v0.0.0-20170829012221-11459a886d9c/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
-github.com/onsi/ginkgo v1.7.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.10.1/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
-github.com/onsi/ginkgo v1.11.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
 github.com/onsi/ginkgo v1.16.4 h1:29JGrr5oVBm5ulCWet69zQkzWipVXIol6ygQUe/EzNc=
 github.com/onsi/ginkgo v1.16.4/go.mod h1:dX+/inL/fNMqNlz0e9LfyB9TswhZpCVdJM/Z6Vvnwo0=
 github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
-github.com/onsi/gomega v1.4.3/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
 github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.15.0 h1:WjP/FQ/sk43MRmnEcT+MlDw2TFvkrXlprrPST/IudjU=
 github.com/onsi/gomega v1.15.0/go.mod h1:cIuvLEne0aoVhAgh/O6ac0Op8WWw9H6eYCriF+tEHG0=
-github.com/op/go-logging v0.0.0-20160315200505-970db520ece7/go.mod h1:HzydrMdWErDVzsI23lYNej1Htcns9BCg93Dk0bBINWk=
-github.com/opencontainers/runc v1.0.2 h1:opHZMaswlyxz1OuGpBE53Dwe4/xF7EZTY0A2L/FpCOg=
-github.com/opencontainers/runc v1.0.2/go.mod h1:aTaHFFwQXuA71CiyxOdFFIorAoemI04suvGRQFzWTD0=
+github.com/opencontainers/runc v1.0.3 h1:1hbqejyQWCJBvtKAfdO0b1FmaEf2z/bxnjqbARass5k=
+github.com/opencontainers/runc v1.0.3/go.mod h1:aTaHFFwQXuA71CiyxOdFFIorAoemI04suvGRQFzWTD0=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/opencontainers/selinux v1.8.2/go.mod h1:MUIHuUEvKB1wtJjQdOyYRgOnLD2xAPP8dBsCoU0KuF8=
-github.com/opentracing-contrib/go-observer v0.0.0-20170622124052-a52f23424492/go.mod h1:Ngi6UdF0k5OKD5t5wlmGhe/EDKPoUM3BXZSSfIuJbis=
-github.com/opentracing/basictracer-go v1.0.0/go.mod h1:QfBfYuafItcjQuMwinw9GhYKwFXS9KnPs5lxoYwgW74=
-github.com/opentracing/opentracing-go v1.0.2/go.mod h1:UkNAQd3GIcIGf0SeVgPpRdFStlNbqXla1AfSYxPUl2o=
 github.com/opentracing/opentracing-go v1.1.0/go.mod h1:UkNAQd3GIcIGf0SeVgPpRdFStlNbqXla1AfSYxPUl2o=
-github.com/openzipkin-contrib/zipkin-go-opentracing v0.4.5/go.mod h1:/wsWhb9smxSfWAKL3wpBW7V8scJMt8N8gnaMCS9E/cA=
-github.com/openzipkin/zipkin-go v0.1.6/go.mod h1:QgAqvLzwWbR/WpD4A3cGpPtJrZXNIiJc5AZX7/PBEpw=
-github.com/openzipkin/zipkin-go v0.2.1/go.mod h1:NaW6tEwdmWMaCDZzg8sh+IBNOxHMPnhQw8ySjnjRyN4=
-github.com/openzipkin/zipkin-go v0.2.2/go.mod h1:NaW6tEwdmWMaCDZzg8sh+IBNOxHMPnhQw8ySjnjRyN4=
-github.com/pact-foundation/pact-go v1.0.4/go.mod h1:uExwJY4kCzNPcHRj+hCR/HBbOOIwwtUjcrb0b5/5kLM=
 github.com/pascaldekloe/goe v0.0.0-20180627143212-57f6aae5913c/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
 github.com/pascaldekloe/goe v0.1.0/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
-github.com/pborman/uuid v1.2.0/go.mod h1:X/NO0urCmaxf9VXbdlT7C2Yzkj2IKimNn4k+gtPdI/k=
 github.com/pelletier/go-toml v1.2.0/go.mod h1:5z9KED0ma1S8pY6P1sdut58dfprrGBbd/94hg7ilaic=
 github.com/pelletier/go-toml v1.9.4/go.mod h1:u1nR/EPcESfeI/szUZKdtJ0xRNbUoANCkoOuaOx1Y+c=
-github.com/performancecopilot/speed v3.0.0+incompatible/go.mod h1:/CLtqpZ5gBg1M9iaPbIdPPGyKcA8hKdoy6hAWba7Yac=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
-github.com/pierrec/lz4 v1.0.2-0.20190131084431-473cd7ce01a1/go.mod h1:3/3N9NVKO0jef7pBehbT1qWhCMrIgbYNnFAZCqQ5LRc=
-github.com/pierrec/lz4 v2.0.5+incompatible/go.mod h1:pdkljMzZIN41W+lC3N2tnIh5sFi+IEE17M5jbnwPHcY=
 github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
 github.com/pkg/errors v0.8.0/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkg/errors v0.8.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
-github.com/pkg/profile v1.2.1/go.mod h1:hJw3o1OdXxsrSjjVksARp5W95eeEaEfptyVZyv6JUPA=
 github.com/pkg/sftp v1.10.1/go.mod h1:lYOWFsE0bwd1+KfKJaKeuokY15vzFx25BLbzYYoAxZI=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
@@ -682,33 +546,28 @@ github.com/posener/complete v1.1.1/go.mod h1:em0nMJCgc9GFtwrmVmEMR/ZL6WyhyjMBndr
 github.com/posener/complete v1.2.3/go.mod h1:WZIdtGGp+qx0sLrYKtIRAruyNpv6hFCicSgv7Sy7s/s=
 github.com/pquerna/cachecontrol v0.0.0-20171018203845-0dec1b30a021/go.mod h1:prYjPmNq4d1NPVmpShWobRqXY3q7Vp+80DqgxxUrUIA=
 github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXPKyh/dDVn+NZz0KFw=
-github.com/prometheus/client_golang v0.9.3-0.20190127221311-3c4408c8b829/go.mod h1:p2iRAGwDERtqlqzRXnrOVns+ignqQo//hLXqYxZYVNs=
 github.com/prometheus/client_golang v0.9.3/go.mod h1:/TN21ttK/J9q6uSwhBd54HahCDft0ttaMvbicHlPoso=
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
-github.com/prometheus/client_golang v1.3.0/go.mod h1:hJaj2vgQTGQmVCsAACORcieXFeDPbaTKGT+JTgUa3og=
 github.com/prometheus/client_golang v1.4.0/go.mod h1:e9GMxYsXl05ICDXkRhurwBS4Q3OK1iX/F2sw+iXX5zU=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0 h1:HNkLOAEQMIDv/K+04rukrLx6ch7msSRwf3/SASFAGtQ=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
-github.com/prometheus/client_model v0.0.0-20190115171406-56726106282f/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/client_model v0.1.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.2.0 h1:uq5h0d+GuxiXLJLNABMgp2qUWDPiLvgCzz2dUR+/W/M=
 github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/common v0.0.0-20181113130724-41aa239b4cce/go.mod h1:daVV7qP5qjZbuso7PdcryaAu0sAZbrN9i7WWcTMWvro=
-github.com/prometheus/common v0.2.0/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.4.0/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
-github.com/prometheus/common v0.7.0/go.mod h1:DjGbpBbp5NYNiECxcL/VnbXCCaQpKd3tt26CguLLsqA=
 github.com/prometheus/common v0.9.1/go.mod h1:yhUN8i9wzaXS3w1O07YhxHEBxD+W35wd8bs7vj7HSQ4=
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
+github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/common v0.31.1 h1:d18hG4PkHnNAKNMOmFuXFaiY8Us0nird/2m60uS1AMs=
 github.com/prometheus/common v0.31.1/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
+github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
-github.com/prometheus/procfs v0.0.0-20190117184657-bf6a532e95b1/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.0-20190507164030-5867b95ac084/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
 github.com/prometheus/procfs v0.0.8/go.mod h1:7Qr8sr6344vo1JqZ6HhLceV9o3AJ1Ff+GxbHq6oeK9A=
@@ -717,7 +576,6 @@ github.com/prometheus/procfs v0.6.0/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1
 github.com/prometheus/procfs v0.7.3 h1:4jVXhlkAyzOScmCkXBTOLRLTz8EeU+eyjrwB/EPq0VU=
 github.com/prometheus/procfs v0.7.3/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
 github.com/prometheus/tsdb v0.7.1/go.mod h1:qhTCs0VvXwvX/y3TZrWD7rabWM+ijKTux40TwIPHuXU=
-github.com/rcrowley/go-metrics v0.0.0-20181016184325-3113b8401b8a/go.mod h1:bCqnVzQkZxMG4s8nGwiZ5l3QUCyqpo9Y+/ZMZ9VjZe4=
 github.com/rogpeppe/fastuuid v0.0.0-20150106093220-6724a57986af/go.mod h1:XWv6SoW27p1b0cqNHllgS5HIMJraePCO15w5zCzIWYg=
 github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
@@ -728,7 +586,6 @@ github.com/russross/blackfriday/v2 v2.0.1/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQD
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/ryanuber/columnize v0.0.0-20160712163229-9b3edd62028f/go.mod h1:sm1tb6uqfes/u+d4ooFouqFdy9/2g9QGwK3SQygK0Ts=
 github.com/sagikazarmark/crypt v0.3.0/go.mod h1:uD/D+6UF4SrIR1uGEv7bBNkNqLGqUr43MRiaGWX1Nig=
-github.com/samuel/go-zookeeper v0.0.0-20190923202752-2cc03de413da/go.mod h1:gi+0XIa01GRL2eRQVjQkKGqKF3SF9vZR/HnPullcV2E=
 github.com/savsgio/gotils v0.0.0-20210617111740-97865ed5a873 h1:N3Af8f13ooDKcIhsmFT7Z05CStZWu4C7Md0uDEy4q6o=
 github.com/savsgio/gotils v0.0.0-20210617111740-97865ed5a873/go.mod h1:dmPawKuiAeG/aFYVs2i+Dyosoo7FNcm+Pi8iK6ZUrX8=
 github.com/sean-/seed v0.0.0-20170313163322-e2103e2c3529/go.mod h1:DxrIzT+xaE7yg65j358z/aeFdxmN0P9QXhEzd20vsDc=
@@ -747,7 +604,6 @@ github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d/go.mod h1
 github.com/smartystreets/goconvey v1.6.4/go.mod h1:syvi0/a8iFYH4r/RixwvyeAJjdLS9QV7WQ/tjFTllLA=
 github.com/soheilhy/cmux v0.1.4/go.mod h1:IM3LyeVVIOuxMH7sFAkER9+bJ4dT7Ms6E4xg4kGIyLM=
 github.com/soheilhy/cmux v0.1.5/go.mod h1:T7TcVDs9LWfQgPlPsdngu6I6QIoyIFZDDC6sNE1GqG0=
-github.com/sony/gobreaker v0.4.1/go.mod h1:ZKptC7FHNvhBz7dN2LGjPVBz2sZJmc0/PkyDJOjmxWY=
 github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
 github.com/spf13/afero v1.1.2/go.mod h1:j4pytiNVoe2o6bmDsKpLACNPDBIoEAkihy7loJ1B0CQ=
 github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
@@ -755,16 +611,13 @@ github.com/spf13/afero v1.3.3/go.mod h1:5KUK8ByomD5Ti5Artl0RtHeI5pTF7MIDuXL3yY52
 github.com/spf13/afero v1.6.0/go.mod h1:Ai8FlHk4v/PARR026UzYexafAt9roJ7LcLMAmO6Z93I=
 github.com/spf13/cast v1.3.0/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
 github.com/spf13/cast v1.4.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
-github.com/spf13/cobra v0.0.3/go.mod h1:1l0Ry5zgKvJasoi3XT1TypsSe7PqH0Sj9dhYf7v3XqQ=
 github.com/spf13/cobra v1.0.0/go.mod h1:/6GTrnGXV9HjY+aR4k0oJ5tcvakLuG6EuKReYlHNrgE=
-github.com/spf13/cobra v1.1.1/go.mod h1:WnodtKOvamDL/PwE2M4iKs8aMDBZ5Q5klgD3qfVJQMI=
 github.com/spf13/cobra v1.1.3/go.mod h1:pGADOWyqRD/YMrPZigI/zbliZ2wVD/23d+is3pSWzOo=
 github.com/spf13/cobra v1.3.0 h1:R7cSvGu+Vv+qX0gW5R/85dx2kmmJT5z5NM8ifdYjdn0=
 github.com/spf13/cobra v1.3.0/go.mod h1:BrRVncBjOJa/eUcVVm9CE+oC6as8k+VYr4NY7WCi9V4=
 github.com/spf13/jwalterweatherman v1.0.0/go.mod h1:cQK4TGJAtQXfYWX+Ddv3mKDzgVb68N+wFjFa4jdeBTo=
 github.com/spf13/jwalterweatherman v1.1.0/go.mod h1:aNWZUN0dPAAO/Ljvb5BEdw96iTZ0EXowPYD95IqWIGo=
 github.com/spf13/pflag v0.0.0-20170130214245-9ff6c6923cff/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
-github.com/spf13/pflag v1.0.1/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
 github.com/spf13/pflag v1.0.3/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
@@ -772,9 +625,6 @@ github.com/spf13/viper v1.4.0/go.mod h1:PTJ7Z/lr49W6bUbkmS1V3by4uWynFiR9p7+dSq/y
 github.com/spf13/viper v1.7.0/go.mod h1:8WkrPz2fc9jxqZNCJI/76HCieCp4Q8HaLFoCha5qpdg=
 github.com/spf13/viper v1.10.0/go.mod h1:SoyBPwAtKDzypXNDFKN5kzH7ppppbGZtls1UpIy5AsM=
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
-github.com/streadway/amqp v0.0.0-20190404075320-75d898a42a94/go.mod h1:AZpEONHx3DKn8O/DFsRAY58/XVQiIPMTMB1SddzLXVw=
-github.com/streadway/amqp v0.0.0-20190827072141-edfb9018d271/go.mod h1:AZpEONHx3DKn8O/DFsRAY58/XVQiIPMTMB1SddzLXVw=
-github.com/streadway/handy v0.0.0-20190108123426-d5acb3125c2a/go.mod h1:qNTQ5P5JnDBl6z3cMAg/SywNDC5ABu5ApDIw6lUbRmI=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.2.0 h1:Hbg2NidpLE8veEBkEZTL3CvlkUIVzuU9jDplZO54c48=
@@ -789,21 +639,17 @@ github.com/stretchr/testify v1.7.0 h1:nwc3DEeHmmLAfoZucVR881uASk0Mfjw8xYJ99tb5Cc
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/subosito/gotenv v1.2.0/go.mod h1:N0PQaV/YGNqwC0u51sEeR/aUtSLEXKX9iv69rRypqCw=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
-github.com/tidwall/pretty v1.0.0/go.mod h1:XNkn88O1ChpSDQmQeStsy+sBenx6DDtFZJxhVysOjyk=
-github.com/tmc/grpc-websocket-proxy v0.0.0-20170815181823-89b8d40f7ca8/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20201229170055-e5319fda7802/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/tv42/httpunix v0.0.0-20150427012821-b75d8614f926/go.mod h1:9ESjWnEqriFuLhtthL60Sar/7RFoluCcXsuvEwTV5KM=
 github.com/ugorji/go v1.1.4/go.mod h1:uQMGLiO92mf5W77hV/PUCpI3pbzQx3CRekS0kk+RGrc=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
-github.com/urfave/cli v1.20.0/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
 github.com/valyala/bytebufferpool v1.0.0 h1:GqA5TC/0021Y/b9FG4Oi9Mr3q7XYx6KllzawFIhcdPw=
 github.com/valyala/bytebufferpool v1.0.0/go.mod h1:6bBcMArwyJ5K/AmCkWv1jt77kVWyCJ6HpOuEn7z0Csc=
 github.com/valyala/fasthttp v1.27.0 h1:gDefRDL9aqSiwXV6aRW8aSBPs82y4KizSzHrBLf4NDI=
 github.com/valyala/fasthttp v1.27.0/go.mod h1:cmWIqlu99AO/RKcp1HWaViTqc57FswJOfYYdPJBl8BA=
 github.com/valyala/tcplisten v1.0.0/go.mod h1:T0xQ8SeCZGxckz9qRXTfG43PvQ/mcWh7FwZEA7Ioqkc=
-github.com/vektah/gqlparser v1.1.2/go.mod h1:1ycwN7Ij5njmMkPPAOaRFY4rET2Enx7IkVv3vaXspKw=
 github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
 github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
 github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f h1:J9EGpcZtP0E/raorCMxlFGSTBrsSlaDGf3jU/qvAE2c=
@@ -829,12 +675,10 @@ github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9de
 github.com/yuin/goldmark v1.1.32/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.3.5/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
-github.com/zakjan/cert-chain-resolver v0.0.0-20210427055340-87e10242a981 h1:fT5BTZ0s8G56nHHHyIf0/y1DE98CP5cDD7YTzyojDt8=
-github.com/zakjan/cert-chain-resolver v0.0.0-20210427055340-87e10242a981/go.mod h1:/Hzu8ych2oXCs1iNI+MeASyFzWTncQ6nlu/wgqbqC2A=
+github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a h1:CbXWHAnmrtTKgX+yMVVANuRJP8ld88ELbAYAYnBdLJ4=
+github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a/go.mod h1:/Hzu8ych2oXCs1iNI+MeASyFzWTncQ6nlu/wgqbqC2A=
 go.etcd.io/bbolt v1.3.2/go.mod h1:IbVyRI1SCnLcuJnV2u8VeU0CEYM7e686BmAb1XKL+uU=
-go.etcd.io/bbolt v1.3.3/go.mod h1:IbVyRI1SCnLcuJnV2u8VeU0CEYM7e686BmAb1XKL+uU=
 go.etcd.io/bbolt v1.3.6/go.mod h1:qXsaaIqmgQH0T+OPdb99Bf+PKfBBQVAdyD6TY9G8XM4=
-go.etcd.io/etcd v0.0.0-20191023171146-3cf2f69b5738/go.mod h1:dnLIgRNXwCJa5e+c6mIZCrds/GIG4ncV9HhK5PX7jPg=
 go.etcd.io/etcd/api/v3 v3.5.0/go.mod h1:cbVKeC6lCfl7j/8jBhAK6aIYO9XOjdptoxU/nLQcPvs=
 go.etcd.io/etcd/api/v3 v3.5.1/go.mod h1:cbVKeC6lCfl7j/8jBhAK6aIYO9XOjdptoxU/nLQcPvs=
 go.etcd.io/etcd/client/pkg/v3 v3.5.0/go.mod h1:IJHfcCEKxYu1Os13ZdwCwIUTUVGYTSAM3YSwc9/Ac1g=
@@ -845,11 +689,6 @@ go.etcd.io/etcd/client/v3 v3.5.0/go.mod h1:AIKXXVX/DQXtfTEqBryiLTUXwON+GuvO6Z7lL
 go.etcd.io/etcd/pkg/v3 v3.5.0/go.mod h1:UzJGatBQ1lXChBkQF0AuAtkRQMYnHubxAEYIrC3MSsE=
 go.etcd.io/etcd/raft/v3 v3.5.0/go.mod h1:UFOHSIvO/nKwd4lhkwabrTD3cqW5yVyYYf/KlD00Szc=
 go.etcd.io/etcd/server/v3 v3.5.0/go.mod h1:3Ah5ruV+M+7RZr0+Y/5mNLwC+eQlni+mQmOVdCRJoS4=
-go.mongodb.org/mongo-driver v1.0.3/go.mod h1:u7ryQJ+DOzQmeO7zB6MHyr8jkEQvC8vH7qLUO4lqsUM=
-go.mongodb.org/mongo-driver v1.1.1/go.mod h1:u7ryQJ+DOzQmeO7zB6MHyr8jkEQvC8vH7qLUO4lqsUM=
-go.mongodb.org/mongo-driver v1.1.2/go.mod h1:u7ryQJ+DOzQmeO7zB6MHyr8jkEQvC8vH7qLUO4lqsUM=
-go.opencensus.io v0.20.1/go.mod h1:6WKK9ahsWS3RSO+PY9ZHZUfv2irvY6gN279GOPZjmmk=
-go.opencensus.io v0.20.2/go.mod h1:6WKK9ahsWS3RSO+PY9ZHZUfv2irvY6gN279GOPZjmmk=
 go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
 go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8=
 go.opencensus.io v0.22.2/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
@@ -871,19 +710,14 @@ go.opentelemetry.io/otel/trace v0.20.0/go.mod h1:6GjCW8zgDjwGHGa6GkyeB8+/5vjT16g
 go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI=
 go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 h1:+FNtrFTmVw0YZGpBGX56XDee331t6JAXeK2bcyhLOOc=
 go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5/go.mod h1:nmDLcffg48OtT/PSW0Hg7FvpRQsQh5OSqIylirxKC7o=
-go.uber.org/atomic v1.3.2/go.mod h1:gD2HeocX3+yG+ygLZcrzQJaqmWj9AIm7n08wl/qW/PE=
 go.uber.org/atomic v1.4.0/go.mod h1:gD2HeocX3+yG+ygLZcrzQJaqmWj9AIm7n08wl/qW/PE=
-go.uber.org/atomic v1.5.0/go.mod h1:sABNBOSYdrvTF6hTgEIbc7YasKWGhgEQZyfxyTvoXHQ=
 go.uber.org/atomic v1.7.0 h1:ADUqmZGgLDDfbSL9ZmPxKTybcoEYHgpYfELNoN+7hsw=
 go.uber.org/atomic v1.7.0/go.mod h1:fEN4uk6kAWBTFdckzkM89CLk9XfWZrxpCo0nPH17wJc=
 go.uber.org/goleak v1.1.10/go.mod h1:8a7PlsEVH3e/a/GLqe5IIrQx6GzcnRmZEufDUTk4A7A=
 go.uber.org/multierr v1.1.0/go.mod h1:wR5kodmAFQ0UK8QlbwjlSNy0Z68gJhDJUG5sjR94q/0=
-go.uber.org/multierr v1.3.0/go.mod h1:VgVr7evmIr6uPjLBxg28wmKNXyqE9akIJ5XnfpiKl+4=
 go.uber.org/multierr v1.6.0 h1:y6IPFStTAIT5Ytl7/XYmHvzXQ7S3g/IeZW9hyZ5thw4=
 go.uber.org/multierr v1.6.0/go.mod h1:cdWPpRnG4AhwMwsgIHip0KRBQjJy5kYEpYjJxpXp9iU=
-go.uber.org/tools v0.0.0-20190618225709-2cfd321de3ee/go.mod h1:vJERXedbb3MVM5f9Ejo0C68/HhF8uaILCdgjnY+goOA=
 go.uber.org/zap v1.10.0/go.mod h1:vwi/ZaCAaUcBkycHslxD9B2zi4UTXhF60s6SWpuDF0Q=
-go.uber.org/zap v1.13.0/go.mod h1:zwrFLgMcdUuIBviXEYEH1YKNaOBnKXsx2IPda5bBwHM=
 go.uber.org/zap v1.17.0/go.mod h1:MXVU+bhUf/A7Xi2HNOnopQOrmycQ5Ih87HtOu4q5SSo=
 go.uber.org/zap v1.19.0 h1:mZQZefskPPCMIBCSEH0v2/iUqqLrYtaeqwD6FUGUnFE=
 go.uber.org/zap v1.19.0/go.mod h1:xg/QME4nWcxGxrpdeYfq7UvYrLh66cuVKdrbD1XF/NI=
@@ -891,12 +725,8 @@ golang.org/dl v0.0.0-20190829154251-82a15e2f2ead/go.mod h1:IUMfjQLJQd4UTqG1Z90te
 golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20181029021203-45a5f77698d3/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
-golang.org/x/crypto v0.0.0-20190320223903-b7391e95e576/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20190510104115-cbcb75029529/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
-golang.org/x/crypto v0.0.0-20190611184440-5c40567a22f8/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
-golang.org/x/crypto v0.0.0-20190617133340-57b3e21c3d56/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
-golang.org/x/crypto v0.0.0-20190701094942-4def268fd1a4/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190820162420-60c769a6c586/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190923035154-9ee001bba392/go.mod h1:/lpIB1dKB+9EgE3H3cr1v9wB50oz8l4C4h62xy7jSTY=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
@@ -904,6 +734,7 @@ golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPh
 golang.org/x/crypto v0.0.0-20201002170205-7f63de1d35b0/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210220033148-5ea612d1eb83/go.mod h1:jdWPYTVW3xRLrWPugEBEK3UY2ZEsg3UU495nc5E+M+I=
 golang.org/x/crypto v0.0.0-20210513164829-c07d793c2f9a/go.mod h1:P+XmwS30IXTQdn5tA2iutPOUgjI07+tq3H3K9MVA1s8=
+golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210817164053-32db794688a5 h1:HWj/xjIHfjYU5nVXpTM0s39J9CbLn7Cc5a7IC5rwsMQ=
 golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
@@ -946,16 +777,13 @@ golang.org/x/mod v0.5.0/go.mod h1:5OXOZSfqPIIbmVBIIKWRFfZjPR0E5r58TLhUjH0a2Ro=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181005035420-146acd28ed58/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20181023162649-9b4f9f5ad519/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20181201002055-351d144fa1fc/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20181220203305-927f97764cc3/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190125091013-d26f9f9a57f3/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190320064053-1272bf9dcd53/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190501004415-9ce7a6920f09/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
@@ -965,7 +793,6 @@ golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190628185345-da137c7871d7/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190724013045-ca1201d0de80/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190813141303-74dc4d7220e7/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190923162816-aa69164e4478/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
@@ -990,7 +817,6 @@ golang.org/x/net v0.0.0-20201202161906-c7110b5ffcbb/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20201209123823-ac852fbbde11/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210119194325-5f4716e94777/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20210224082022-3d97a244fca7/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210316092652-d523dce5a7f4/go.mod h1:RBQZq4jEuRlivfhVLdyRGr576XBO4/greRjx4P4O3yc=
 golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
@@ -1000,8 +826,9 @@ golang.org/x/net v0.0.0-20210503060351-7fd8e65b6420/go.mod h1:9nx3DQGgdP8bBQD5qx
 golang.org/x/net v0.0.0-20210510120150-4163338589ed/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210520170846-37e1c6afe023/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20210813160813-60bc85c4be6d h1:LO7XpTYMwTqxjLcGWPijK3vRXg1aWdlNOVOHRq45d7c=
 golang.org/x/net v0.0.0-20210813160813-60bc85c4be6d/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20211209124913-491a49abca63 h1:iocB37TsdFuN6IBRZ+ry36wrkoV51/tl5vOWqkcPGvY=
+golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -1038,21 +865,17 @@ golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5h
 golang.org/x/sys v0.0.0-20181026203630-95b1ffbd15a5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20181107165924-66b7b1311ac8/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20181116152217-5ac8a444bdc5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20181122145206-62eef0e2fa9b/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190222072716-a9d3bda3a223/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190312061237-fead79001313/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190321052220-f7bb7a8bee54/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190422165155-953cdadca894/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190502145724-3ef323f4f1fd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190507160741-ecd444e8653b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190606165138-5da285871e9c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190606203320-7fc4e5ec1444/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190616124812-15dcb6c0061f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190726091711-fc99dfbffb4e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190826190057-c7b8b68b1456/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190922100055-0a153f010e69/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190924154521-2837fb4f24fe/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -1064,7 +887,6 @@ golang.org/x/sys v0.0.0-20191026070338-33540a1f6037/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20191115151921-52ab43148777/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191220142924-d4481acd189f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191228213918-04cbcbbfeed8/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200106162015-b016eb3dc98e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200113162924-86b910548bc1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -1136,7 +958,6 @@ golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.7 h1:olpwvP2KacW1ZWvsR7uQhoyTYvKAupfQrRGBFM352Gk=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
-golang.org/x/time v0.0.0-20180412165947-fbb02b2291d2/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
@@ -1144,11 +965,9 @@ golang.org/x/time v0.0.0-20210220033141-f8bda1e9f3ba/go.mod h1:tRJNPiyCQ0inRvYxb
 golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac h1:7zkz7BUtwNFFqcowJ+RIgu2MaV/MapERkDIy+mwPyjs=
 golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/tools v0.0.0-20180221164845-07fd8470d635/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
-golang.org/x/tools v0.0.0-20180828015842-6cd1fcedba52/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20181030221726-6c7e314b6563/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
-golang.org/x/tools v0.0.0-20190125232054-d66bd3c5d5a6/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
 golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190312151545-0bb0c0a6e846/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
@@ -1158,8 +977,6 @@ golang.org/x/tools v0.0.0-20190425150028-36563e24a262/go.mod h1:RgjU9mgBXZiqYHBn
 golang.org/x/tools v0.0.0-20190506145303-2d16b83fe98c/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20190524140312-2c0ae7006135/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20190606124116-d0a3d012864b/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
-golang.org/x/tools v0.0.0-20190614205625-5aca471b1d59/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
-golang.org/x/tools v0.0.0-20190617190820-da514acc4774/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190621195816-6e04913cbbac/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190624222133-a101b041ded4/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190628153133-6cdbf07be9d0/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
@@ -1167,8 +984,6 @@ golang.org/x/tools v0.0.0-20190816200558-6889da9d5479/go.mod h1:b+2E5dAYhXwXZwtn
 golang.org/x/tools v0.0.0-20190907020128-2ca718005c18/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20190911174233-4f2ddba30aff/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191012152004-8de300cfc20a/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191029041327-9cc4af7d6b2c/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191029190741-b9c20aec41a5/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191108193012-7d206e10da11/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191112195655-aa38f8e97acc/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191113191852-77e3bb0ad9e7/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
@@ -1178,7 +993,6 @@ golang.org/x/tools v0.0.0-20191125144606-a911d9008d1f/go.mod h1:b+2E5dAYhXwXZwtn
 golang.org/x/tools v0.0.0-20191130070609-6e064ea0cf2d/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191216173652-a0e659d51361/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
 golang.org/x/tools v0.0.0-20191227053925-7b8e75db28f4/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200103221440-774c71fcf114/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
 golang.org/x/tools v0.0.0-20200117161641-43d50277825c/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
 golang.org/x/tools v0.0.0-20200122220014-bf1340f18c4a/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
 golang.org/x/tools v0.0.0-20200130002326-2f3ba24bd6e7/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
@@ -1220,7 +1034,6 @@ golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 h1:go1bK/D/BFZV2I8cIQd1N
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 gomodules.xyz/jsonpatch/v2 v2.2.0 h1:4pT439QV83L+G9FkcCriY6EkpcK6r6bK+A5FBUMI7qY=
 gomodules.xyz/jsonpatch/v2 v2.2.0/go.mod h1:WXp+iVDkoLQqPudfQ9GBlwB2eZ5DKOnjQZCYdOS8GPY=
-google.golang.org/api v0.3.1/go.mod h1:6wY9I6uQWHQ8EM57III9mq/AjF+i8G65rmVagqKMtkk=
 google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
 google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M=
 google.golang.org/api v0.8.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
@@ -1254,7 +1067,6 @@ google.golang.org/api v0.59.0/go.mod h1:sT2boj7M9YJxZzgeZqXogmhfmRWDtPzT31xkieUb
 google.golang.org/api v0.61.0/go.mod h1:xQRti5UdCmoCEqFxcz93fTl338AVqDgyaDRuOZ3hg9I=
 google.golang.org/api v0.62.0/go.mod h1:dKmwPCydfsad4qCH08MSdgWjfHOyfpd4VtDGgRFdavw=
 google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
-google.golang.org/appengine v1.2.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.6.1/go.mod h1:i06prIuMbXzDqacNJfV5OdTW448YApPu5ww/cMBSeb0=
@@ -1267,7 +1079,6 @@ google.golang.org/genproto v0.0.0-20190307195333-5fe7a883aa19/go.mod h1:VzzqZJRn
 google.golang.org/genproto v0.0.0-20190418145605-e7d98fc518a7/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190425155659-357c62f0e4bb/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190502173448-54afdca5d873/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
-google.golang.org/genproto v0.0.0-20190530194941-fb225487d101/go.mod h1:z3L6/3dTEVtUr6QSP8miRzeRqwQOioJ9I66odjN4I7s=
 google.golang.org/genproto v0.0.0-20190801165951-fa694d86fc64/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
 google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
 google.golang.org/genproto v0.0.0-20190911173649-1774047e7e51/go.mod h1:IbNlFCBrqXvoKpeg0TB2l7cyZUmoaFKYIwrEpbDKLA8=
@@ -1329,15 +1140,11 @@ google.golang.org/genproto v0.0.0-20211203200212-54befc351ae9/go.mod h1:5CzLGKJ6
 google.golang.org/genproto v0.0.0-20211206160659-862468c7d6e0/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
 google.golang.org/genproto v0.0.0-20211208223120-3a66f561d7aa h1:I0YcKz0I7OAhddo7ya8kMnvprhcWM045PmkBdMO9zN0=
 google.golang.org/genproto v0.0.0-20211208223120-3a66f561d7aa/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/grpc v1.17.0/go.mod h1:6QZJwpn2B+Zp71q/5VxRsJ6NXXVCE5NRUHRo+f3cWCs=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
-google.golang.org/grpc v1.20.0/go.mod h1:chYK+tFQF0nDUGJgXMSgLCQk3phJEuONr2DCgLDdAQM=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.0/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
-google.golang.org/grpc v1.22.1/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg=
 google.golang.org/grpc v1.23.0/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg=
-google.golang.org/grpc v1.23.1/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg=
 google.golang.org/grpc v1.25.1/go.mod h1:c3i+UQWmh7LiEpx4sFZnkU36qjEYZ0imhYfXVyQciAY=
 google.golang.org/grpc v1.26.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
 google.golang.org/grpc v1.27.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
@@ -1385,10 +1192,8 @@ gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8
 gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
-gopkg.in/cheggaaa/pb.v1 v1.0.25/go.mod h1:V/YB90LKu/1FcN3WVnfiiE5oMCibMjukxqG/qStrOgw=
 gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
 gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
-gopkg.in/gcfg.v1 v1.2.3/go.mod h1:yesOnuUOFQAhST5vPY4nbZsb/huCgGGXlipJsBn0b3o=
 gopkg.in/go-playground/assert.v1 v1.2.1 h1:xoYuJVE7KT85PYWrN730RguIQO0ePzVRfFMXadIrXTM=
 gopkg.in/go-playground/assert.v1 v1.2.1/go.mod h1:9RXL0bg/zibRAgZUYszZSwO/z8Y/a8bDuhia5mkpMnE=
 gopkg.in/go-playground/pool.v3 v3.1.1 h1:4Qcj91IsYTpIeRhe/eo6Fz+w6uKWPEghx8vHFTYMfhw=
@@ -1402,14 +1207,12 @@ gopkg.in/resty.v1 v1.12.0/go.mod h1:mDo4pnntr5jdWRML875a/NmxYqAlA73dVijT2AXvQQo=
 gopkg.in/square/go-jose.v2 v2.2.2/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
-gopkg.in/warnings.v0 v0.1.2/go.mod h1:jksf8JmL6Qr/oQM2OXTHunEvvTAsrWBLb6OOjuVWRNI=
 gopkg.in/yaml.v2 v2.0.0-20170812160011-eb3733d160e7/go.mod h1:JAlM8MvJe8wmxCU4Bli9HhUf9+ttbYbLASfIpnQbh74=
 gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.3/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.5/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.7/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.3.0/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
@@ -1420,7 +1223,6 @@ gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b h1:h8qDotaEPuJATrMmW04NCwg7v
 gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gotest.tools/v3 v3.0.2/go.mod h1:3SzNCllyD9/Y+b5r9JIKQ474KzkZyqLqEfYqMsX94Bk=
 gotest.tools/v3 v3.0.3/go.mod h1:Z7Lb0S5l+klDB31fvDQX8ss/FlKDxtlFlw3Oa8Ymbl8=
-honnef.co/go/tools v0.0.0-20180728063816-88497007e858/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190106161140-3f1c8253044a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190418001031-e561f6794a2a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
@@ -1428,38 +1230,39 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.21.5/go.mod h1:Un8C5Hemo2r3MfPOjZvwQQ9KkBbiTBUCGrjlivo9uJ0=
-k8s.io/api v0.22.2 h1:M8ZzAD0V6725Fjg53fKeTJxGsJvRbk4TEm/fexHMtfw=
 k8s.io/api v0.22.2/go.mod h1:y3ydYpLJAaDI+BbSe2xmGcqxiWHmWjkEeIbiwHvnPR8=
-k8s.io/apiextensions-apiserver v0.22.2 h1:zK7qI8Ery7j2CaN23UCFaC1hj7dMiI87n01+nKuewd4=
+k8s.io/api v0.22.5 h1:xk7C+rMjF/EGELiD560jdmwzrB788mfcHiNbMQLIVI8=
+k8s.io/api v0.22.5/go.mod h1:mEhXyLaSD1qTOf40rRiKXkc+2iCem09rWLlFwhCEiAs=
 k8s.io/apiextensions-apiserver v0.22.2/go.mod h1:2E0Ve/isxNl7tWLSUDgi6+cmwHi5fQRdwGVCxbC+KFA=
-k8s.io/apimachinery v0.21.5/go.mod h1:3PfBV+4PPXNs0aueD+7fHcGyhdkFFYqXeshQtsKCi+4=
-k8s.io/apimachinery v0.22.2 h1:ejz6y/zNma8clPVfNDLnPbleBo6MpoFy/HBiBqCouVk=
+k8s.io/apiextensions-apiserver v0.22.5 h1:ML0QqT7FIlmZHN+9+2EtARJ3cJVHeoizt6GCteFRE0o=
+k8s.io/apiextensions-apiserver v0.22.5/go.mod h1:tIXeZ0BrDxUb1PoAz+tgOz43Zi1Bp4BEEqVtUccMJbE=
 k8s.io/apimachinery v0.22.2/go.mod h1:O3oNtNadZdeOMxHFVxOreoznohCpy0z6mocxbZr7oJ0=
-k8s.io/apiserver v0.22.2 h1:TdIfZJc6YNhu2WxeAOWq1TvukHF0Sfx0+ln4XK9qnL4=
+k8s.io/apimachinery v0.22.5 h1:cIPwldOYm1Slq9VLBRPtEYpyhjIm1C6aAMAoENuvN9s=
+k8s.io/apimachinery v0.22.5/go.mod h1:xziclGKwuuJ2RM5/rSFQSYAj0zdbci3DH8kj+WvyN0U=
 k8s.io/apiserver v0.22.2/go.mod h1:vrpMmbyjWrgdyOvZTSpsusQq5iigKNWv9o9KlDAbBHI=
-k8s.io/cli-runtime v0.21.5 h1:ZpPmrRsHvzdMzXrcr1/ZSBHLKrhS1aHyMr2hGJNlNpI=
-k8s.io/cli-runtime v0.21.5/go.mod h1:TKlcXsRVImtcPDGEe72pyZtD9UgBJNupIf3hmsIeekE=
-k8s.io/client-go v0.21.5/go.mod h1:EUornVlr3rBrPKXUoMPNggJdEQmvFNMpYO3Kb6432kw=
-k8s.io/client-go v0.22.2 h1:DaSQgs02aCC1QcwUdkKZWOeaVsQjYvWv8ZazcZ6JcHc=
+k8s.io/apiserver v0.22.5 h1:71krQxCUz218ecb+nPhfDsNB6QgP1/4EMvi1a2uYBlg=
+k8s.io/apiserver v0.22.5/go.mod h1:s2WbtgZAkTKt679sYtSudEQrTGWUSQAPe6MupLnlmaQ=
+k8s.io/cli-runtime v0.22.5 h1:bZqLgx1INiPgXyMk/Hu3o5NFmdfvlvtsoE+wHJuKA2U=
+k8s.io/cli-runtime v0.22.5/go.mod h1:12ah4O0kaevIYHsRcFGt8RKER0wlTN2yCgHp1c4Uxp4=
 k8s.io/client-go v0.22.2/go.mod h1:sAlhrkVDf50ZHx6z4K0S40wISNTarf1r800F+RlCF6U=
-k8s.io/code-generator v0.22.2 h1:+bUv9lpTnAWABtPkvO4x0kfz7j/kDEchVt0P/wXU3jQ=
+k8s.io/client-go v0.22.5 h1:I8Zn/UqIdi2r02aZmhaJ1hqMxcpfJ3t5VqvHtctHYFo=
+k8s.io/client-go v0.22.5/go.mod h1:cs6yf/61q2T1SdQL5Rdcjg9J1ElXSwbjSrW2vFImM4Y=
 k8s.io/code-generator v0.22.2/go.mod h1:eV77Y09IopzeXOJzndrDyCI88UBok2h6WxAlBwpxa+o=
-k8s.io/component-base v0.22.2 h1:vNIvE0AIrLhjX8drH0BgCNJcR4QZxMXcJzBsDplDx9M=
+k8s.io/code-generator v0.22.5 h1:jn+mYXI5q7rzo7Bz/n8xZIgbe61SeXlIjU5jA8jLVps=
+k8s.io/code-generator v0.22.5/go.mod h1:sbdWCOVob+KaQ5O7xs8PNNaCTpbWVqNgA6EPwLOmRNk=
 k8s.io/component-base v0.22.2/go.mod h1:5Br2QhI9OTe79p+TzPe9JKNQYvEKbq9rTJDWllunGug=
+k8s.io/component-base v0.22.5 h1:U0eHqZm7mAFE42hFwYhY6ze/MmVaW00JpMrzVsQmzYE=
+k8s.io/component-base v0.22.5/go.mod h1:VK3I+TjuF9eaa+Ln67dKxhGar5ynVbwnGrUiNF4MqCI=
 k8s.io/gengo v0.0.0-20200413195148-3a45101e95ac/go.mod h1:ezvh/TsK7cY6rbqRK0oQQ8IAqLxYwwyPxAX1Pzy0ii0=
 k8s.io/gengo v0.0.0-20201214224949-b6c5ce23f027 h1:Uusb3oh8XcdzDF/ndlI4ToKTYVlkCSJP39SRY2mfRAw=
 k8s.io/gengo v0.0.0-20201214224949-b6c5ce23f027/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
-k8s.io/klog/v2 v2.8.0/go.mod h1:hy9LJ/NvuK+iVyP4Ehqva4HxZG/oXyIS3n3Jmire4Ec=
+k8s.io/klog/v2 v2.9.0 h1:D7HV+n1V57XeZ0m6tdRkfknthUaM06VFbWldOFh8kzM=
 k8s.io/klog/v2 v2.9.0/go.mod h1:hy9LJ/NvuK+iVyP4Ehqva4HxZG/oXyIS3n3Jmire4Ec=
-k8s.io/klog/v2 v2.10.0 h1:R2HDMDJsHVTHA2n4RjwbeYXdOcBymXdX/JRb1v0VGhE=
-k8s.io/klog/v2 v2.10.0/go.mod h1:hy9LJ/NvuK+iVyP4Ehqva4HxZG/oXyIS3n3Jmire4Ec=
-k8s.io/kube-openapi v0.0.0-20210305001622-591a79e4bda7/go.mod h1:wXW5VT87nVfh/iLV8FpR2uDvrFyomxbtb1KivDbvPTE=
-k8s.io/kube-openapi v0.0.0-20210421082810-95288971da7e h1:KLHHjkdQFomZy8+06csTWZ0m1343QqxZhR2LJ1OxCYM=
 k8s.io/kube-openapi v0.0.0-20210421082810-95288971da7e/go.mod h1:vHXdDvt9+2spS2Rx9ql3I8tycm3H9FDfdUoIuKCefvw=
-k8s.io/utils v0.0.0-20201110183641-67b214c5f920/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+k8s.io/kube-openapi v0.0.0-20211109043538-20434351676c h1:jvamsI1tn9V0S8jicyX82qaFC0H/NKxv2e5mbqsgR80=
+k8s.io/kube-openapi v0.0.0-20211109043538-20434351676c/go.mod h1:vHXdDvt9+2spS2Rx9ql3I8tycm3H9FDfdUoIuKCefvw=
 k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a h1:8dYfu/Fc9Gz2rNJKB9IQRGgQOh2clmRzNIPPY1xLY5g=
 k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
 moul.io/http2curl v1.0.1-0.20190925090545-5cd742060b0e h1:C7q+e9M5nggAvWfVg9Nl66kebKeuJlP3FD58V4RR5wo=
@@ -1472,16 +1275,14 @@ rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
 sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.22/go.mod h1:LEScyzhFmoF5pso/YSeBstl57mOzx9xlU9n85RGrDQg=
 sigs.k8s.io/controller-runtime v0.10.3 h1:s5Ttmw/B4AuIbwrXD3sfBkXwnPMMWrqpVj4WRt1dano=
 sigs.k8s.io/controller-runtime v0.10.3/go.mod h1:CQp8eyUQZ/Q7PJvnIrB6/hgfTC1kBkGylwsLgOQi1WY=
-sigs.k8s.io/kustomize/api v0.8.8 h1:G2z6JPSSjtWWgMeWSoHdXqyftJNmMmyxXpwENGoOtGE=
-sigs.k8s.io/kustomize/api v0.8.8/go.mod h1:He1zoK0nk43Pc6NlV085xDXDXTNprtcyKZVm3swsdNY=
-sigs.k8s.io/kustomize/kyaml v0.10.17 h1:4zrV0ym5AYa0e512q7K3Wp1u7mzoWW0xR3UHJcGWGIg=
-sigs.k8s.io/kustomize/kyaml v0.10.17/go.mod h1:mlQFagmkm1P+W4lZJbJ/yaxMd8PqMRSC4cPcfUVt5Hg=
-sigs.k8s.io/mdtoc v1.0.1 h1:6ECKhQnbetwZBR6R2IeT2LH+1w+2Zsip0iXjikgaXIk=
-sigs.k8s.io/mdtoc v1.0.1/go.mod h1:COYBtOjsaCg7o7SC4eaLwEXPuVRSuiVuLLRrHd7kShw=
+sigs.k8s.io/kustomize/api v0.8.11 h1:LzQzlq6Z023b+mBtc6v72N2mSHYmN8x7ssgbf/hv0H8=
+sigs.k8s.io/kustomize/api v0.8.11/go.mod h1:a77Ls36JdfCWojpUqR6m60pdGY1AYFix4AH83nJtY1g=
+sigs.k8s.io/kustomize/kyaml v0.11.0 h1:9KhiCPKaVyuPcgOLJXkvytOvjMJLoxpjodiycb4gHsA=
+sigs.k8s.io/kustomize/kyaml v0.11.0/go.mod h1:GNMwjim4Ypgp/MueD3zXHLRJEjz7RvtPae0AwlvEMFM=
+sigs.k8s.io/mdtoc v1.1.0 h1:q3YtqYzmC2e0hgLXRIOm7/QLuPux1CX3ZHCwlbABxZo=
+sigs.k8s.io/mdtoc v1.1.0/go.mod h1:QZLVEdHH2iNIR4uHAZyvFRtjloHgVItk8lo/mzCtq3w=
 sigs.k8s.io/structured-merge-diff/v4 v4.0.2/go.mod h1:bJZC9H9iH24zzfZ/41RGcq60oK1F7G282QMXDPYydCw=
 sigs.k8s.io/structured-merge-diff/v4 v4.1.2 h1:Hr/htKFmJEbtMgS/UD0N+gtgctAqz81t3nu+sPzynno=
 sigs.k8s.io/structured-merge-diff/v4 v4.1.2/go.mod h1:j/nl6xW8vLS49O8YvXW1ocPhZawJtm+Yrr7PPRQ0Vg4=
-sigs.k8s.io/yaml v1.1.0/go.mod h1:UJmg0vDUVViEyp3mgSv9WPwZCDxu4rQW1olrI1uml+o=
 sigs.k8s.io/yaml v1.2.0 h1:kr/MCeFWJWTwyaHoR9c8EjH9OumOmoF9YGiZd7lFm/Q=
 sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=
-sourcegraph.com/sourcegraph/appdash v0.0.0-20190731080439-ebfcffb1b5c0/go.mod h1:hI742Nqp5OhwiqlzhgfbWU4mW4yO10fP+LoT9WOswdU=
diff --git a/internal/file/structure.go b/internal/file/structure.go
index 485db79c8..d109e8c03 100644
--- a/internal/file/structure.go
+++ b/internal/file/structure.go
@@ -17,9 +17,8 @@ limitations under the License.
 package file
 
 import (
+	"fmt"
 	"os"
-
-	"github.com/pkg/errors"
 )
 
 const (
@@ -50,13 +49,13 @@ func CreateRequiredDirectories() error {
 			if os.IsNotExist(err) {
 				err = os.MkdirAll(directory, ReadWriteByUser)
 				if err != nil {
-					return errors.Wrapf(err, "creating directory '%v'", directory)
+					return fmt.Errorf("creating directory %s: %w", directory, err)
 				}
 
 				continue
 			}
 
-			return errors.Wrapf(err, "checking directory %v", directory)
+			return fmt.Errorf("checking directory %s: %w", directory, err)
 		}
 	}
 
diff --git a/internal/ingress/annotations/auth/main.go b/internal/ingress/annotations/auth/main.go
index 0a642f99f..e05988365 100644
--- a/internal/ingress/annotations/auth/main.go
+++ b/internal/ingress/annotations/auth/main.go
@@ -22,7 +22,6 @@ import (
 	"regexp"
 	"strings"
 
-	"github.com/pkg/errors"
 	api "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/client-go/tools/cache"
@@ -118,14 +117,14 @@ func (a auth) Parse(ing *networking.Ingress) (interface{}, error) {
 	s, err := parser.GetStringAnnotation("auth-secret", ing)
 	if err != nil {
 		return nil, ing_errors.LocationDenied{
-			Reason: errors.Wrap(err, "error reading secret name from annotation"),
+			Reason: fmt.Errorf("error reading secret name from annotation: %w", err),
 		}
 	}
 
 	sns, sname, err := cache.SplitMetaNamespaceKey(s)
 	if err != nil {
 		return nil, ing_errors.LocationDenied{
-			Reason: errors.Wrap(err, "error reading secret name from annotation"),
+			Reason: fmt.Errorf("error reading secret name from annotation: %w", err),
 		}
 	}
 
@@ -137,7 +136,7 @@ func (a auth) Parse(ing *networking.Ingress) (interface{}, error) {
 	secret, err := a.r.GetSecret(name)
 	if err != nil {
 		return nil, ing_errors.LocationDenied{
-			Reason: errors.Wrapf(err, "unexpected error reading secret %v", name),
+			Reason: fmt.Errorf("unexpected error reading secret %s: %w", name, err),
 		}
 	}
 
@@ -158,7 +157,7 @@ func (a auth) Parse(ing *networking.Ingress) (interface{}, error) {
 		}
 	default:
 		return nil, ing_errors.LocationDenied{
-			Reason: errors.Wrap(err, "invalid auth-secret-type in annotation, must be 'auth-file' or 'auth-map'"),
+			Reason: fmt.Errorf("invalid auth-secret-type in annotation, must be 'auth-file' or 'auth-map': %w", err),
 		}
 	}
 
@@ -179,14 +178,14 @@ func dumpSecretAuthFile(filename string, secret *api.Secret) error {
 	val, ok := secret.Data["auth"]
 	if !ok {
 		return ing_errors.LocationDenied{
-			Reason: errors.Errorf("the secret %v does not contain a key with value auth", secret.Name),
+			Reason: fmt.Errorf("the secret %s does not contain a key with value auth", secret.Name),
 		}
 	}
 
 	err := os.WriteFile(filename, val, file.ReadWriteByUser)
 	if err != nil {
 		return ing_errors.LocationDenied{
-			Reason: errors.Wrap(err, "unexpected error creating password file"),
+			Reason: fmt.Errorf("unexpected error creating password file: %w", err),
 		}
 	}
 
@@ -205,7 +204,7 @@ func dumpSecretAuthMap(filename string, secret *api.Secret) error {
 	err := os.WriteFile(filename, []byte(builder.String()), file.ReadWriteByUser)
 	if err != nil {
 		return ing_errors.LocationDenied{
-			Reason: errors.Wrap(err, "unexpected error creating password file"),
+			Reason: fmt.Errorf("unexpected error creating password file: %w", err),
 		}
 	}
 
diff --git a/internal/ingress/annotations/auth/main_test.go b/internal/ingress/annotations/auth/main_test.go
index bffb8e0a8..c552851ae 100644
--- a/internal/ingress/annotations/auth/main_test.go
+++ b/internal/ingress/annotations/auth/main_test.go
@@ -22,7 +22,7 @@ import (
 	"testing"
 	"time"
 
-	"github.com/pkg/errors"
+	"errors"
 
 	api "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
@@ -81,7 +81,7 @@ type mockSecret struct {
 
 func (m mockSecret) GetSecret(name string) (*api.Secret, error) {
 	if name != "default/demo-secret" {
-		return nil, errors.Errorf("there is no secret with name %v", name)
+		return nil, fmt.Errorf("there is no secret with name %v", name)
 	}
 
 	return &api.Secret{
diff --git a/internal/ingress/annotations/authtls/main.go b/internal/ingress/annotations/authtls/main.go
index dd89df4f3..cbe014c4a 100644
--- a/internal/ingress/annotations/authtls/main.go
+++ b/internal/ingress/annotations/authtls/main.go
@@ -17,7 +17,7 @@ limitations under the License.
 package authtls
 
 import (
-	"github.com/pkg/errors"
+	"fmt"
 	networking "k8s.io/api/networking/v1"
 
 	"regexp"
@@ -102,7 +102,7 @@ func (a authTLS) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	authCert, err := a.r.GetAuthCertificate(tlsauthsecret)
 	if err != nil {
-		e := errors.Wrap(err, "error obtaining certificate")
+		e := fmt.Errorf("error obtaining certificate: %w", err)
 		return &Config{}, ing_errors.LocationDenied{Reason: e}
 	}
 	config.AuthSSLCert = *authCert
diff --git a/internal/ingress/annotations/defaultbackend/main.go b/internal/ingress/annotations/defaultbackend/main.go
index 7b239497d..b1685015e 100644
--- a/internal/ingress/annotations/defaultbackend/main.go
+++ b/internal/ingress/annotations/defaultbackend/main.go
@@ -19,7 +19,6 @@ package defaultbackend
 import (
 	"fmt"
 
-	"github.com/pkg/errors"
 	networking "k8s.io/api/networking/v1"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
@@ -46,7 +45,7 @@ func (db backend) Parse(ing *networking.Ingress) (interface{}, error) {
 	name := fmt.Sprintf("%v/%v", ing.Namespace, s)
 	svc, err := db.r.GetService(name)
 	if err != nil {
-		return nil, errors.Wrapf(err, "unexpected error reading service %v", name)
+		return nil, fmt.Errorf("unexpected error reading service %s: %w", name, err)
 	}
 
 	return svc, nil
diff --git a/internal/ingress/annotations/fastcgi/main.go b/internal/ingress/annotations/fastcgi/main.go
index a7e96a014..b32b85997 100644
--- a/internal/ingress/annotations/fastcgi/main.go
+++ b/internal/ingress/annotations/fastcgi/main.go
@@ -20,7 +20,6 @@ import (
 	"fmt"
 	"reflect"
 
-	"github.com/pkg/errors"
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/client-go/tools/cache"
 
@@ -85,7 +84,7 @@ func (a fastcgi) Parse(ing *networking.Ingress) (interface{}, error) {
 	cmns, cmn, err := cache.SplitMetaNamespaceKey(cm)
 	if err != nil {
 		return fcgiConfig, ing_errors.LocationDenied{
-			Reason: errors.Wrap(err, "error reading configmap name from annotation"),
+			Reason: fmt.Errorf("error reading configmap name from annotation: %w", err),
 		}
 	}
 
@@ -97,7 +96,7 @@ func (a fastcgi) Parse(ing *networking.Ingress) (interface{}, error) {
 	cmap, err := a.r.GetConfigMap(cm)
 	if err != nil {
 		return fcgiConfig, ing_errors.LocationDenied{
-			Reason: errors.Wrapf(err, "unexpected error reading configmap %v", cm),
+			Reason: fmt.Errorf("unexpected error reading configmap %s: %w", cm, err),
 		}
 	}
 
diff --git a/internal/ingress/annotations/globalratelimit/main.go b/internal/ingress/annotations/globalratelimit/main.go
index 02a732847..c5763d0cb 100644
--- a/internal/ingress/annotations/globalratelimit/main.go
+++ b/internal/ingress/annotations/globalratelimit/main.go
@@ -17,10 +17,10 @@ limitations under the License.
 package globalratelimit
 
 import (
+	"fmt"
 	"strings"
 	"time"
 
-	"github.com/pkg/errors"
 	networking "k8s.io/api/networking/v1"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
@@ -86,7 +86,7 @@ func (a globalratelimit) Parse(ing *networking.Ingress) (interface{}, error) {
 	windowSize, err := time.ParseDuration(rawWindowSize)
 	if err != nil {
 		return config, ing_errors.LocationDenied{
-			Reason: errors.Wrap(err, "failed to parse 'global-rate-limit-window' value"),
+			Reason: fmt.Errorf("failed to parse 'global-rate-limit-window' value: %w", err),
 		}
 	}
 
diff --git a/internal/ingress/annotations/globalratelimit/main_test.go b/internal/ingress/annotations/globalratelimit/main_test.go
index 341a9883c..815d6cfff 100644
--- a/internal/ingress/annotations/globalratelimit/main_test.go
+++ b/internal/ingress/annotations/globalratelimit/main_test.go
@@ -21,7 +21,6 @@ import (
 	"fmt"
 	"testing"
 
-	"github.com/pkg/errors"
 	api "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
@@ -159,8 +158,7 @@ func TestGlobalRateLimiting(t *testing.T) {
 			},
 			&Config{},
 			ing_errors.LocationDenied{
-				Reason: errors.Wrap(fmt.Errorf(`time: unknown unit "mb" in duration "2mb"`),
-					"failed to parse 'global-rate-limit-window' value"),
+				Reason: fmt.Errorf("failed to parse 'global-rate-limit-window' value: time: unknown unit \"mb\" in duration \"2mb\""),
 			},
 		},
 	}
diff --git a/internal/ingress/annotations/ipwhitelist/main.go b/internal/ingress/annotations/ipwhitelist/main.go
index 4fd40ee2b..77c2b6cc0 100644
--- a/internal/ingress/annotations/ipwhitelist/main.go
+++ b/internal/ingress/annotations/ipwhitelist/main.go
@@ -17,11 +17,10 @@ limitations under the License.
 package ipwhitelist
 
 import (
+	"fmt"
 	"sort"
 	"strings"
 
-	"github.com/pkg/errors"
-
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/ingress-nginx/internal/net"
 
@@ -75,7 +74,7 @@ func (a ipwhitelist) Parse(ing *networking.Ingress) (interface{}, error) {
 	ipnets, ips, err := net.ParseIPNets(values...)
 	if err != nil && len(ips) == 0 {
 		return &SourceRange{CIDR: defBackend.WhitelistSourceRange}, ing_errors.LocationDenied{
-			Reason: errors.Wrap(err, "the annotation does not contain a valid IP address or network"),
+			Reason: fmt.Errorf("the annotation does not contain a valid IP address or network: %w", err),
 		}
 	}
 
diff --git a/internal/ingress/annotations/proxyssl/main.go b/internal/ingress/annotations/proxyssl/main.go
index 2452d90da..22f49b3eb 100644
--- a/internal/ingress/annotations/proxyssl/main.go
+++ b/internal/ingress/annotations/proxyssl/main.go
@@ -17,11 +17,11 @@ limitations under the License.
 package proxyssl
 
 import (
+	"fmt"
 	"regexp"
 	"sort"
 	"strings"
 
-	"github.com/pkg/errors"
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
@@ -132,7 +132,7 @@ func (p proxySSL) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	proxyCert, err := p.r.GetAuthCertificate(proxysslsecret)
 	if err != nil {
-		e := errors.Wrap(err, "error obtaining certificate")
+		e := fmt.Errorf("error obtaining certificate: %w", err)
 		return &Config{}, ing_errors.LocationDenied{Reason: e}
 	}
 	config.AuthSSLCert = *proxyCert
diff --git a/internal/ingress/controller/checker.go b/internal/ingress/controller/checker.go
index e6aa8ea85..3229778bb 100644
--- a/internal/ingress/controller/checker.go
+++ b/internal/ingress/controller/checker.go
@@ -24,7 +24,6 @@ import (
 	"strings"
 
 	"github.com/ncabatoff/process-exporter/proc"
-	"github.com/pkg/errors"
 
 	"k8s.io/ingress-nginx/internal/nginx"
 )
@@ -43,27 +42,27 @@ func (n *NGINXController) Check(_ *http.Request) error {
 	// check the nginx master process is running
 	fs, err := proc.NewFS("/proc", false)
 	if err != nil {
-		return errors.Wrap(err, "reading /proc directory")
+		return fmt.Errorf("reading /proc directory: %w", err)
 	}
 
 	f, err := os.ReadFile(nginx.PID)
 	if err != nil {
-		return errors.Wrapf(err, "reading %v", nginx.PID)
+		return fmt.Errorf("reading %v: %w", nginx.PID, err)
 	}
 
 	pid, err := strconv.Atoi(strings.TrimRight(string(f), "\r\n"))
 	if err != nil {
-		return errors.Wrapf(err, "reading NGINX PID from file %v", nginx.PID)
+		return fmt.Errorf("reading NGINX PID from file %v: %w", nginx.PID, err)
 	}
 
 	_, err = fs.Proc(pid)
 	if err != nil {
-		return errors.Wrapf(err, "checking for NGINX process with PID %v", pid)
+		return fmt.Errorf("checking for NGINX process with PID %v: %w", pid, err)
 	}
 
 	statusCode, _, err := nginx.NewGetStatusRequest("/is-dynamic-lb-initialized")
 	if err != nil {
-		return errors.Wrapf(err, "checking if the dynamic load balancer started")
+		return fmt.Errorf("checking if the dynamic load balancer started: %w", err)
 	}
 
 	if statusCode != 200 {
diff --git a/internal/ingress/controller/store/backend_ssl.go b/internal/ingress/controller/store/backend_ssl.go
index 41a5b2b40..19283d2fd 100644
--- a/internal/ingress/controller/store/backend_ssl.go
+++ b/internal/ingress/controller/store/backend_ssl.go
@@ -22,7 +22,6 @@ import (
 
 	"k8s.io/klog/v2"
 
-	"github.com/pkg/errors"
 	apiv1 "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
@@ -180,7 +179,7 @@ func (s *k8sStore) getPemCertificate(secretName string) (*ingress.SSLCert, error
 	if secretName == s.defaultSSLCertificate {
 		path, err := ssl.StoreSSLCertOnDisk(nsSecName, sslCert)
 		if err != nil {
-			return nil, errors.Wrap(err, "storing default SSL Certificate")
+			return nil, fmt.Errorf("storing default SSL Certificate: %w", err)
 		}
 
 		sslCert.PemFileName = path
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index e5be1490a..9b61d059a 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -36,8 +36,6 @@ import (
 	text_template "text/template"
 	"time"
 
-	"github.com/pkg/errors"
-
 	networkingv1 "k8s.io/api/networking/v1"
 	"k8s.io/apimachinery/pkg/util/sets"
 	"k8s.io/klog/v2"
@@ -81,7 +79,7 @@ type Template struct {
 func NewTemplate(file string) (*Template, error) {
 	data, err := os.ReadFile(file)
 	if err != nil {
-		return nil, errors.Wrapf(err, "unexpected error reading template %v", file)
+		return nil, fmt.Errorf("unexpected error reading template %s: %w", file, err)
 	}
 
 	tmpl, err := text_template.New("nginx.tmpl").Funcs(funcMap).Parse(string(data))
diff --git a/internal/ingress/errors/errors.go b/internal/ingress/errors/errors.go
index 11ca0f3cf..93c9ee5e0 100644
--- a/internal/ingress/errors/errors.go
+++ b/internal/ingress/errors/errors.go
@@ -17,9 +17,8 @@ limitations under the License.
 package errors
 
 import (
+	"errors"
 	"fmt"
-
-	"github.com/pkg/errors"
 )
 
 var (
@@ -50,7 +49,7 @@ func NewInvalidAnnotationContent(name string, val interface{}) error {
 // NewLocationDenied returns a new LocationDenied error
 func NewLocationDenied(reason string) error {
 	return LocationDenied{
-		Reason: errors.Errorf("Location denied, reason: %v", reason),
+		Reason: fmt.Errorf("Location denied, reason: %v", reason),
 	}
 }
 
@@ -109,5 +108,5 @@ func New(m string) error {
 // Errorf formats according to a format specifier and returns the string
 // as a value that satisfies error.
 func Errorf(format string, args ...interface{}) error {
-	return errors.Errorf(format, args...)
+	return fmt.Errorf(format, args...)
 }
diff --git a/internal/ingress/status/status.go b/internal/ingress/status/status.go
index 791e88818..bf79701fc 100644
--- a/internal/ingress/status/status.go
+++ b/internal/ingress/status/status.go
@@ -25,7 +25,6 @@ import (
 	"strings"
 	"time"
 
-	"github.com/pkg/errors"
 	"k8s.io/klog/v2"
 
 	pool "gopkg.in/go-playground/pool.v3"
@@ -294,7 +293,7 @@ func runUpdate(ing *ingress.Ingress, status []apiv1.LoadBalancerIngress,
 		ingClient := client.NetworkingV1().Ingresses(ing.Namespace)
 		currIng, err := ingClient.Get(context.TODO(), ing.Name, metav1.GetOptions{})
 		if err != nil {
-			return nil, errors.Wrap(err, fmt.Sprintf("unexpected error searching Ingress %v/%v", ing.Namespace, ing.Name))
+			return nil, fmt.Errorf("unexpected error searching Ingress %s/%s: %w", ing.Namespace, ing.Name, err)
 		}
 
 		klog.InfoS("updating Ingress status", "namespace", currIng.Namespace, "ingress", currIng.Name, "currentValue", currIng.Status.LoadBalancer.Ingress, "newValue", status)
diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index 11405c69f..f0463bd0d 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -24,7 +24,6 @@ import (
 
 	"github.com/gavv/httpexpect/v2"
 	"github.com/onsi/ginkgo"
-	"github.com/pkg/errors"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	corev1 "k8s.io/api/core/v1"
@@ -508,7 +507,7 @@ func UpdateDeployment(kubeClientSet kubernetes.Interface, namespace string, name
 		deployment.Spec.Replicas = NewInt32(int32(replicas))
 		_, err = kubeClientSet.AppsV1().Deployments(namespace).Update(context.TODO(), deployment, metav1.UpdateOptions{})
 		if err != nil {
-			return errors.Wrapf(err, "scaling the number of replicas to %v", replicas)
+			return fmt.Errorf("scaling the number of replicas to %d: %w", replicas, err)
 		}
 
 		err = waitForDeploymentRollout(kubeClientSet, deployment)
@@ -521,7 +520,7 @@ func UpdateDeployment(kubeClientSet kubernetes.Interface, namespace string, name
 		LabelSelector: fields.SelectorFromSet(fields.Set(deployment.Spec.Template.ObjectMeta.Labels)).String(),
 	})
 	if err != nil {
-		return errors.Wrapf(err, "waiting for nginx-ingress-controller replica count to be %v", replicas)
+		return fmt.Errorf("waiting for nginx-ingress-controller replica count to be %d: %w", replicas, err)
 	}
 
 	return nil

From fd820db469f61860b381ac75931a261aac87439d Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 9 Jan 2022 22:31:11 -0300
Subject: [PATCH 0031/1641] Update to go v1.17.6 (#8119)

---
 .github/workflows/ci.yaml   | 6 +++---
 images/test-runner/Makefile | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index a4f6b8ad8..0d9ba2ad2 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -67,7 +67,7 @@ jobs:
         id: go
         uses: actions/setup-go@v2
         with:
-          go-version: 1.17
+          go-version: '1.17.6'
 
       - name: Set up Docker Buildx
         id: buildx
@@ -126,7 +126,7 @@ jobs:
       - name: Setup Go
         uses: actions/setup-go@v2
         with:
-          go-version: '^1.17'
+          go-version: '1.17.6'
 
       - name: cache
         uses: actions/download-artifact@v2
@@ -319,7 +319,7 @@ jobs:
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
         uses: actions/setup-go@v2
         with:
-          go-version: 1.17
+          go-version: '1.17.6'
 
       - name: kube-webhook-certgen image build
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 664782a09..4caebebd3 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -39,7 +39,7 @@ build: ensure-buildx
 		--progress=$(PROGRESS) \
 		--pull \
 		--build-arg BASE_IMAGE=$(NGINX_BASE_IMAGE) \
-		--build-arg GOLANG_VERSION=1.17.0 \
+		--build-arg GOLANG_VERSION=1.17.6 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.21.3 \
 		--build-arg RESTY_CLI_VERSION=0.27 \

From a17181e43ec85534a6fea968d95d019c5a4bc8cf Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Mon, 10 Jan 2022 01:37:11 -0300
Subject: [PATCH 0032/1641] Update go in runner and release v1.1.1 (#8120)

* Update go in runner and release v1.1.1

* Update build/run-in-docker.sh

Co-authored-by: Jintao Zhang <tao12345666333@163.com>

Co-authored-by: Jintao Zhang <tao12345666333@163.com>
---
 TAG                       | 2 +-
 build/run-in-docker.sh    | 2 +-
 test/e2e-image/Dockerfile | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/TAG b/TAG
index 795460fce..56130fb3a 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.1.0
+v1.1.1
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index d345a81ec..e89abe9d8 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -37,7 +37,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-k8s.gcr.io/ingress-nginx/e2e-test-runner:v20210916-gd9f96bbbb@sha256:5b434c08e582b58b96867152682c1e754ee609c82390abf3074992d4ec53ed25}
+E2E_IMAGE=${E2E_IMAGE:-k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220110-gfd820db46@sha256:273f7d9b1b2297cd96b4d51600e45d932186a1cc79d00d179dfb43654112fe8f}
 
 DOCKER_OPTS=${DOCKER_OPTS:-}
 DOCKER_IN_DOCKER_ENABLED=${DOCKER_IN_DOCKER_ENABLED:-}
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index fc5f30000..e53d02242 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,4 +1,4 @@
-FROM k8s.gcr.io/ingress-nginx/e2e-test-runner:v20210916-gd9f96bbbb@sha256:5b434c08e582b58b96867152682c1e754ee609c82390abf3074992d4ec53ed25 AS BASE
+FROM k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220110-gfd820db46@sha256:273f7d9b1b2297cd96b4d51600e45d932186a1cc79d00d179dfb43654112fe8f AS BASE
 
 FROM alpine:3.12
 

From d8c9a6c238f714587da4d2ac2dcd0d3d39419ccf Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E6=9D=8E=E8=BF=9C=E5=90=9B?= <1123431949@qq.com>
Date: Tue, 11 Jan 2022 15:23:16 +0800
Subject: [PATCH 0033/1641] Fix ingress module a syntax error (#8129)

---
 docs/examples/multi-tls/multi-tls.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/examples/multi-tls/multi-tls.yaml b/docs/examples/multi-tls/multi-tls.yaml
index 3612ab6d7..167e48ae0 100644
--- a/docs/examples/multi-tls/multi-tls.yaml
+++ b/docs/examples/multi-tls/multi-tls.yaml
@@ -129,7 +129,7 @@ spec:
       - path: /
         pathType: Prefix
         backend:
-          service
+          service:
             name: nginx
             port:
               number: 80

From a9495ecae0306030076d258513c2dbc89bf78b72 Mon Sep 17 00:00:00 2001
From: Mario Vejlupek <mario@vejlupek.cz>
Date: Wed, 12 Jan 2022 15:30:37 +0100
Subject: [PATCH 0034/1641] Add custom error pages example file (#8060)

* Add custom error pages example file

* Update docs/examples/customization/custom-errors/README.md

Co-authored-by: Jintao Zhang <tao12345666333@163.com>

Co-authored-by: Jintao Zhang <tao12345666333@163.com>
---
 .../customization/custom-errors/README.md     |  2 ++
 ...default-backend-error_pages.configMap.yaml | 19 ++++++++++++++++++
 .../custom-default-backend.helm.values.yaml   | 20 +++++++++++++++++++
 .../custom-errors/custom-default-backend.yaml | 16 +++++++++++++++
 4 files changed, 57 insertions(+)
 create mode 100644 docs/examples/customization/custom-errors/custom-default-backend-error_pages.configMap.yaml
 create mode 100644 docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml

diff --git a/docs/examples/customization/custom-errors/README.md b/docs/examples/customization/custom-errors/README.md
index 00b999859..a137fd6dc 100644
--- a/docs/examples/customization/custom-errors/README.md
+++ b/docs/examples/customization/custom-errors/README.md
@@ -2,6 +2,8 @@
 
 This example demonstrates how to use a custom backend to render custom error pages.
 
+If you are using Helm Chart, look at [example values](https://github.com/kubernetes/ingress-nginx/blob/main/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml) and don't forget to add [configMap](https://github.com/kubernetes/ingress-nginx/blob/main/docs/examples/customization/custom-errors/custom-default-backend-error_pages.configMap.yaml) to your deployment, otherwise continue with [Customized default backend](#customized-default-backend) manual deployment.
+
 ## Customized default backend
 
 First, create the custom `default-backend`. It will be used by the Ingress controller later on.  
diff --git a/docs/examples/customization/custom-errors/custom-default-backend-error_pages.configMap.yaml b/docs/examples/customization/custom-errors/custom-default-backend-error_pages.configMap.yaml
new file mode 100644
index 000000000..86b1c44e8
--- /dev/null
+++ b/docs/examples/customization/custom-errors/custom-default-backend-error_pages.configMap.yaml
@@ -0,0 +1,19 @@
+# Custom error page configMap
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: custom_error_pages
+data:
+  404: |
+    <!DOCTYPE html>
+    <html>
+      <head><title>PAGE NOT FOUND</title></head>
+      <body>PAGE NOT FOUND</body>
+    </html>
+  503: |
+    <!DOCTYPE html>
+    <html>
+      <head><title>CUSTOM SERVICE UNAVAILABLE</title></head>
+      <body>CUSTOM SERVICE UNAVAILABLE</body>
+    </html>
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
new file mode 100644
index 000000000..ce42bb9b5
--- /dev/null
+++ b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
@@ -0,0 +1,20 @@
+controller:
+  custom-http-errors: "404,503"
+defaultBackend:
+  enabled: true
+  image:
+    registry: k8s.gcr.io
+    image: ingress-nginx/nginx-errors
+    tag: "0.48.1"
+  extraVolumes:
+  - name: custom_error_pages
+    configMap:
+      name: custom_error_pages
+      items:
+      - key: "404"
+        path: "404.html"
+      - key: "503"
+        path: "503.html"
+  extraVolumeMounts:
+  - name: custom_error_pages
+    mountPath: /www
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.yaml b/docs/examples/customization/custom-errors/custom-default-backend.yaml
index 579e48544..4b40d36e7 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.yaml
@@ -44,3 +44,19 @@ spec:
         # env:
         # - name: DEBUG
         #   value: "true"
+
+        # Mounting custom error page from configMap
+        # volumeMounts:
+        # - name: custom_error_pages
+        #   mountPath: /www
+
+      # Mounting custom error page from configMap
+      # volumes:
+      # - name: custom_error_pages
+      #   configMap:
+      #     name: custom_error_pages
+      #     items:
+      #     - key: "404"
+      #       path: "404.html"
+      #     - key: "503"
+      #       path: "503.html"

From fc38b9f2aa2d68ee00c417cf97e727b77a00c175 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 12 Jan 2022 22:18:37 +0530
Subject: [PATCH 0035/1641] changes for release v1.1.1 (#8125)

---
 Changelog.md                                  | 46 +++++++++++
 README.md                                     | 34 ++++----
 RELEASE.md                                    | 66 ++++++++++++---
 charts/ingress-nginx/CHANGELOG.md             | 38 +++++++++
 charts/ingress-nginx/Chart.yaml               | 40 ++++++++-
 charts/ingress-nginx/README.md                | 14 ++--
 charts/ingress-nginx/values.yaml              |  8 +-
 .../provider/aws/deploy-tls-termination.yaml  | 82 +++++++++----------
 deploy/static/provider/aws/deploy.yaml        | 82 +++++++++----------
 deploy/static/provider/baremetal/deploy.yaml  | 82 +++++++++----------
 deploy/static/provider/cloud/deploy.yaml      | 82 +++++++++----------
 deploy/static/provider/do/deploy.yaml         | 82 +++++++++----------
 deploy/static/provider/exoscale/deploy.yaml   | 82 +++++++++----------
 deploy/static/provider/kind/deploy.yaml       | 82 +++++++++----------
 deploy/static/provider/scw/deploy.yaml        | 82 +++++++++----------
 docs/deploy/index.md                          | 20 ++---
 16 files changed, 545 insertions(+), 377 deletions(-)

diff --git a/Changelog.md b/Changelog.md
index e755ea2c2..ccc60e746 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -1,5 +1,51 @@
 # Changelog
 
+### 1.1.1
+
+**Image:** 
+- k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+
+This release contains several fixes and improvements. This image is now built using Go v1.17.6 and gRPC v1.43.0. See detailed list below.
+
+_Changes:_
+
+- [8120](https://github.com/kubernetes/ingress-nginx/pull/8120)    Update go in runner and release v1.1.1
+- [8119](https://github.com/kubernetes/ingress-nginx/pull/8119)    Update to go v1.17.6
+- [8118](https://github.com/kubernetes/ingress-nginx/pull/8118)    Remove deprecated libraries, update other libs
+- [8117](https://github.com/kubernetes/ingress-nginx/pull/8117)    Fix codegen errors
+- [8115](https://github.com/kubernetes/ingress-nginx/pull/8115)    chart/ghaction: set the correct permission to have access to push a release
+- [8098](https://github.com/kubernetes/ingress-nginx/pull/8098)    generating SHA for CA only certs in backend_ssl.go + comparision of P…
+- [8088](https://github.com/kubernetes/ingress-nginx/pull/8088)    Fix Edit this page link to use main branch
+- [8072](https://github.com/kubernetes/ingress-nginx/pull/8072)    Expose GeoIP2 Continent code as variable
+- [8061](https://github.com/kubernetes/ingress-nginx/pull/8061)    docs(charts): using helm-docs for chart
+- [8058](https://github.com/kubernetes/ingress-nginx/pull/8058)    Bump github.com/spf13/cobra from 1.2.1 to 1.3.0
+- [8054](https://github.com/kubernetes/ingress-nginx/pull/8054)    Bump google.golang.org/grpc from 1.41.0 to 1.43.0
+- [8051](https://github.com/kubernetes/ingress-nginx/pull/8051)    align bug report with feature request regarding kind documentation
+- [8046](https://github.com/kubernetes/ingress-nginx/pull/8046)    Report expired certificates (#8045)
+- [8044](https://github.com/kubernetes/ingress-nginx/pull/8044)    remove G109 check till gosec resolves issues
+- [8042](https://github.com/kubernetes/ingress-nginx/pull/8042)    docs_multiple_instances_one_cluster_ticket_7543
+- [8041](https://github.com/kubernetes/ingress-nginx/pull/8041)    docs: fix typo'd executible name
+- [8035](https://github.com/kubernetes/ingress-nginx/pull/8035)    Comment busy owners
+- [8029](https://github.com/kubernetes/ingress-nginx/pull/8029)    Add stream-snippet as a ConfigMap and Annotation option
+- [8023](https://github.com/kubernetes/ingress-nginx/pull/8023)    fix nginx compilation flags
+- [8021](https://github.com/kubernetes/ingress-nginx/pull/8021)    Disable default modsecurity_rules_file if modsecurity-snippet is specified
+- [8019](https://github.com/kubernetes/ingress-nginx/pull/8019)    Revise main documentation page
+- [8018](https://github.com/kubernetes/ingress-nginx/pull/8018)    Preserve order of plugin invocation
+- [8015](https://github.com/kubernetes/ingress-nginx/pull/8015)    Add newline indenting to admission webhook annotations
+- [8014](https://github.com/kubernetes/ingress-nginx/pull/8014)    Add link to example error page manifest in docs
+- [8009](https://github.com/kubernetes/ingress-nginx/pull/8009)    Fix spelling in documentation and top-level files
+- [8008](https://github.com/kubernetes/ingress-nginx/pull/8008)    Add relabelings in controller-servicemonitor.yaml
+- [8003](https://github.com/kubernetes/ingress-nginx/pull/8003)    Minor improvements (formatting, consistency) in install guide
+- [8001](https://github.com/kubernetes/ingress-nginx/pull/8001)    fix: go-grpc Dockerfile
+- [7999](https://github.com/kubernetes/ingress-nginx/pull/7999)    images: use k8s-staging-test-infra/gcb-docker-gcloud
+- [7996](https://github.com/kubernetes/ingress-nginx/pull/7996)    doc: improvement
+- [7983](https://github.com/kubernetes/ingress-nginx/pull/7983)    Fix a couple of misspellings in the annotations documentation.
+- [7979](https://github.com/kubernetes/ingress-nginx/pull/7979)    allow set annotations for admission Jobs
+- [7977](https://github.com/kubernetes/ingress-nginx/pull/7977)    Add ssl_reject_handshake to defaul server
+- [7975](https://github.com/kubernetes/ingress-nginx/pull/7975)    add legacy version update v0.50.0 to main changelog
+- [7972](https://github.com/kubernetes/ingress-nginx/pull/7972)    updated service upstream definition
+- [7963](https://github.com/kubernetes/ingress-nginx/pull/7963)    Change sanitization message from error to warning
+
 ### 1.1.0
 
 **Image:**
diff --git a/README.md b/README.md
index 8f4109a00..6c604ddba 100644
--- a/README.md
+++ b/README.md
@@ -28,22 +28,24 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 
 ### Support Versions table 
 
-| Ingress-nginx version | k8s supported version  | Alpine Version | Nginx Version |
-|-----------------------|-------------           |----------------|---------------|
-| v1.1.0                | 1.22, 1.21, 1.20, 1.19 | 3.14.2         |  1.19.9†      |
-| v1.0.5                | 1.22, 1.21, 1.20, 1.19 | 3.14.2         |  1.19.9†      |
-| v1.0.4                | 1.22, 1.21, 1.20, 1.19 | 3.14.2         |  1.19.9†      |
-| v1.0.3                | 1.22, 1.21, 1.20, 1.19 | 3.14.2         |  1.19.9†      |
-| v1.0.2                | 1.22, 1.21, 1.20, 1.19 | 3.14.2         |  1.19.9†      |
-| v1.0.1                | 1.22, 1.21, 1.20, 1.19 | 3.14.2         |  1.19.9†      |
-| v1.0.0                | 1.22, 1.21, 1.20, 1.19 | 3.13.5         |  1.20.1       |
-| v0.49.3               | 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
-| v0.49.2               | 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
-| v0.49.1               | 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
-| v0.49.0               | 1.21, 1.20, 1.19       | 3.13.5         |  1.20.1       |
-| v0.48.1               | 1.21, 1.20, 1.19       | 3.13.5         |  1.20.1       |
-| v0.47.0               | 1.21, 1.20, 1.19       | 3.13.5         |  1.20.1       |
-| v0.46.0               | 1.21, 1.20, 1.19       | 3.13.2         |  1.19.6       |
+| Ingress-nginx version | k8s supported version        | Alpine Version | Nginx Version |
+|-----------------------|------------------------------|----------------|---------------|
+| v1.1.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         |  1.19.9†      |
+| v1.1.0                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
+| v1.0.5                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
+| v1.0.4                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
+| v1.0.3                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
+| v1.0.2                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
+| v1.0.1                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
+| v1.0.0                | 1.22, 1.21, 1.20, 1.19       | 3.13.5         |  1.20.1       |
+| v0.50.0               | 1.21, 1.20, 1.19             | 3.14.2         |  1.19.9†      |
+| v0.49.3               | 1.21, 1.20, 1.19             | 3.14.2         |  1.19.9†      |
+| v0.49.2               | 1.21, 1.20, 1.19             | 3.14.2         |  1.19.9†      |
+| v0.49.1               | 1.21, 1.20, 1.19             | 3.14.2         |  1.19.9†      |
+| v0.49.0               | 1.21, 1.20, 1.19             | 3.13.5         |  1.20.1       |
+| v0.48.1               | 1.21, 1.20, 1.19             | 3.13.5         |  1.20.1       |
+| v0.47.0               | 1.21, 1.20, 1.19             | 3.13.5         |  1.20.1       |
+| v0.46.0               | 1.21, 1.20, 1.19             | 3.13.2         |  1.19.6       |
 
 † _This build is [patched against CVE-2021-23017](https://github.com/openresty/openresty/commit/4b5ec7edd78616f544abc194308e0cf4b788725b#diff-42ef841dc27fe0b5aa2d06bd31308bb63a59cdcddcbcddd917248349d22020a3)._
 
diff --git a/RELEASE.md b/RELEASE.md
index 32c64d0dd..10f765929 100644
--- a/RELEASE.md
+++ b/RELEASE.md
@@ -167,14 +167,23 @@ Promoting the images basically means that images, that were pushed to staging co
     - annotations
       - artifacthub.io/prerelease: "true" 
       - artifacthub.io/changes: |
-        - Add the titles of the PRs merged after previous release
+        - Add the titles of the PRs merged after previous release here. I used the github-cli to get that list like so `gh pr list -s merged -L 38 -B main | cut -f1,2`
 
-### d. Edit the values.yaml
+### d. Edit the values.yaml and run helm-docs
   - [Fields to edit in values.yaml](https://github.com/kubernetes/ingress-nginx/blob/main/charts/ingress-nginx/values.yaml)
 
     - tag
     - digest
 
+  - [helm-docs](https://github.com/norwoodj/helm-docs) is a tool that generates the README.md for a helm-chart automatically. In the CI pipeline workflow of github actions (/.github/workflows/ci.yaml), you can see how helm-docs is used. But the CI pipeline is not designed to make commits back into the project. So we need to run helm-docs manually, and check in the resulting autogenerated README.md at the path /charts/ingress-nginx/README.md 
+    ```
+          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.6.0
+          ./helm-docs --chart-search-root=${GITHUB_WORKSPACE}/charts
+          git diff --exit-code
+          rm -f ./helm-docs
+    ```
+    Watchout for mistakes like leaving the helm-docs executable in your clone workspace or not not checking the new README.md manually etc.
+
 ### e. Edit the static manifests
 
   - Prepare to use a script to update the edit the static manifests and set the "image", "digest", "version" etc. fields to the desired value.
@@ -207,22 +216,57 @@ Promoting the images basically means that images, that were pushed to staging co
       data:
         http-snippet:|
           server{
-          listen 2443;
-          return 308 https://$host$request_uri;
+            listen 2443;
+            return 308 https://$host$request_uri;
           }
       ```
 
 ### f. Edit the changelog
   [Changelog.md](https://github.com/kubernetes/ingress-nginx/blob/main/Changelog.md) 
-    - Add the PRs merged after previous release
-    - One useful command to get this list is
-      ```
-      git log controller-v0.48.1..HEAD --pretty=%s
-      ```
+- Add the PRs merged after previous release
+- If you use the github cli https://cli.github.com/, then that is one useful command to get this list of PRs
+- One way of using gh cli and getting the list of PRs for changelog is described below
+  - Install and configure github cli as per the docs of gh-cli
+  - Change dir to your clone, of your fork, of the ingress-nginx project
+  - Run the below command and save the output to a txt file
+
+    ```
+    gh pr list -s merged -L 38 -B main | cut -f1,2 > ~/tmp/prlist.txt
+    ```
+    - The -L 38 was used for 2 reasons.
+      - Default number of results is 30 and there were more than 30 PRs merged while releasing v1.1.1.
+      -  The other reason to use -L 38 was to ommit the 39th, the 40th and the 41st line in the resulting list. These were non-relevant PRs.
+  - Then use some easy automation in bash/python/whathaveyou to get the PR-List that can be used in the changelog
+  - I save output of above command to a file called prlist.txt. It looks somewhat like this ;
+
+    ```
+    % cat ~/Downloads/prlist.txt 
+    8129    fix syntax in docs for multi-tls example
+    8120    Update go in runner and release v1.1.1
+    8119    Update to go v1.17.6
+    8118    Remove deprecated libraries, update other libs
+    8117    Fix codegen errors
+    8115    chart/ghaction: set the correct permission to have access to push a release 
+    ....
+    ```
+  - Then I use the bash scripty way seen below to convert those PR numbers into links. If I saved the below content in a script called prlist_to_changelog.sh, then I run the command `prlist_to_changelog.sh prlist.txt`
+
+    ```
+    #!/usr/bin/bash
+
+    file="$1"
+
+    while read -r line; do
+      pr_num=`echo "$line" | cut -f1`
+      pr_title=`echo "$line" | cut -f2`
+      echo "[$pr_num](https://github.com/kubernetes/ingress-nginx/pull/$pr_num) $pr_title"
+    done <$file
+
+    ```
 
 ### g. Edit the Documentation:
-    - Update the version in [docs/deploy/index.md](docs/deploy/index.md)
-    - Update Supported versions in the Support Versions table in the README.md 
+- Update the version in [docs/deploy/index.md](docs/deploy/index.md)
+- Update Supported versions in the Support Versions table in the README.md 
 
 ### h. Edit stable.txt
 
diff --git a/charts/ingress-nginx/CHANGELOG.md b/charts/ingress-nginx/CHANGELOG.md
index 91dbb0dc7..616948228 100644
--- a/charts/ingress-nginx/CHANGELOG.md
+++ b/charts/ingress-nginx/CHANGELOG.md
@@ -2,6 +2,44 @@
 
 This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
 
+### 4.0.15
+
+- [8120] https://github.com/kubernetes/ingress-nginx/pull/8120    Update go in runner and release v1.1.1
+- [8119] https://github.com/kubernetes/ingress-nginx/pull/8119    Update to go v1.17.6
+- [8118] https://github.com/kubernetes/ingress-nginx/pull/8118    Remove deprecated libraries, update other libs
+- [8117] https://github.com/kubernetes/ingress-nginx/pull/8117    Fix codegen errors
+- [8115] https://github.com/kubernetes/ingress-nginx/pull/8115    chart/ghaction: set the correct permission to have access to push a release
+- [8098] https://github.com/kubernetes/ingress-nginx/pull/8098    generating SHA for CA only certs in backend_ssl.go + comparision of P…
+- [8088] https://github.com/kubernetes/ingress-nginx/pull/8088    Fix Edit this page link to use main branch
+- [8072] https://github.com/kubernetes/ingress-nginx/pull/8072    Expose GeoIP2 Continent code as variable
+- [8061] https://github.com/kubernetes/ingress-nginx/pull/8061    docs(charts): using helm-docs for chart
+- [8058] https://github.com/kubernetes/ingress-nginx/pull/8058    Bump github.com/spf13/cobra from 1.2.1 to 1.3.0
+- [8054] https://github.com/kubernetes/ingress-nginx/pull/8054    Bump google.golang.org/grpc from 1.41.0 to 1.43.0
+- [8051] https://github.com/kubernetes/ingress-nginx/pull/8051    align bug report with feature request regarding kind documentation
+- [8046] https://github.com/kubernetes/ingress-nginx/pull/8046    Report expired certificates (#8045)
+- [8044] https://github.com/kubernetes/ingress-nginx/pull/8044    remove G109 check till gosec resolves issues
+- [8042] https://github.com/kubernetes/ingress-nginx/pull/8042    docs_multiple_instances_one_cluster_ticket_7543
+- [8041] https://github.com/kubernetes/ingress-nginx/pull/8041    docs: fix typo'd executible name
+- [8035] https://github.com/kubernetes/ingress-nginx/pull/8035    Comment busy owners
+- [8029] https://github.com/kubernetes/ingress-nginx/pull/8029    Add stream-snippet as a ConfigMap and Annotation option
+- [8023] https://github.com/kubernetes/ingress-nginx/pull/8023    fix nginx compilation flags
+- [8021] https://github.com/kubernetes/ingress-nginx/pull/8021    Disable default modsecurity_rules_file if modsecurity-snippet is specified
+- [8019] https://github.com/kubernetes/ingress-nginx/pull/8019    Revise main documentation page
+- [8018] https://github.com/kubernetes/ingress-nginx/pull/8018    Preserve order of plugin invocation
+- [8015] https://github.com/kubernetes/ingress-nginx/pull/8015    Add newline indenting to admission webhook annotations
+- [8014] https://github.com/kubernetes/ingress-nginx/pull/8014    Add link to example error page manifest in docs
+- [8009] https://github.com/kubernetes/ingress-nginx/pull/8009    Fix spelling in documentation and top-level files
+- [8008] https://github.com/kubernetes/ingress-nginx/pull/8008    Add relabelings in controller-servicemonitor.yaml
+- [8003] https://github.com/kubernetes/ingress-nginx/pull/8003    Minor improvements (formatting, consistency) in install guide
+- [8001] https://github.com/kubernetes/ingress-nginx/pull/8001    fix: go-grpc Dockerfile
+- [7999] https://github.com/kubernetes/ingress-nginx/pull/7999    images: use k8s-staging-test-infra/gcb-docker-gcloud
+- [7996] https://github.com/kubernetes/ingress-nginx/pull/7996    doc: improvement
+- [7983] https://github.com/kubernetes/ingress-nginx/pull/7983    Fix a couple of misspellings in the annotations documentation.
+- [7979] https://github.com/kubernetes/ingress-nginx/pull/7979    allow set annotations for admission Jobs
+- [7977] https://github.com/kubernetes/ingress-nginx/pull/7977    Add ssl_reject_handshake to defaul server
+- [7975] https://github.com/kubernetes/ingress-nginx/pull/7975    add legacy version update v0.50.0 to main changelog
+- [7972] https://github.com/kubernetes/ingress-nginx/pull/7972    updated service upstream definition
+
 ### 4.0.14
 
 - [8061] https://github.com/kubernetes/ingress-nginx/pull/8061 Using helm-docs to populate values table in README.md
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index dd01623cf..961efc061 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,8 +2,8 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.0.14
-appVersion: 1.1.0
+version: 4.0.15
+appVersion: 1.1.1
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
@@ -24,4 +24,38 @@ annotations:
   # List of changes for the release in artifacthub.io
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
-    - using helm-docs to populate values table in README.md
+    - #8120    Update go in runner and release v1.1.1
+    - #8119    Update to go v1.17.6
+    - #8118    Remove deprecated libraries, update other libs
+    - #8117    Fix codegen errors
+    - #8115    chart/ghaction: set the correct permission to have access to push a release
+    - #8098    generating SHA for CA only certs in backend_ssl.go + comparision of P…
+    - #8088    Fix Edit this page link to use main branch
+    - #8072    Expose GeoIP2 Continent code as variable
+    - #8061    docs(charts): using helm-docs for chart
+    - #8058    Bump github.com/spf13/cobra from 1.2.1 to 1.3.0
+    - #8054    Bump google.golang.org/grpc from 1.41.0 to 1.43.0
+    - #8051    align bug report with feature request regarding kind documentation
+    - #8046    Report expired certificates (#8045)
+    - #8044    remove G109 check till gosec resolves issues
+    - #8042    docs_multiple_instances_one_cluster_ticket_7543
+    - #8041    docs: fix typo'd executible name
+    - #8035    Comment busy owners
+    - #8029    Add stream-snippet as a ConfigMap and Annotation option
+    - #8023    fix nginx compilation flags
+    - #8021    Disable default modsecurity_rules_file if modsecurity-snippet is specified
+    - #8019    Revise main documentation page
+    - #8018    Preserve order of plugin invocation
+    - #8015    Add newline indenting to admission webhook annotations
+    - #8014    Add link to example error page manifest in docs
+    - #8009    Fix spelling in documentation and top-level files
+    - #8008    Add relabelings in controller-servicemonitor.yaml
+    - #8003    Minor improvements (formatting, consistency) in install guide
+    - #8001    fix: go-grpc Dockerfile
+    - #7999    images: use k8s-staging-test-infra/gcb-docker-gcloud
+    - #7996    doc: improvement
+    - #7983    Fix a couple of misspellings in the annotations documentation.
+    - #7979    allow set annotations for admission Jobs
+    - #7977    Add ssl_reject_handshake to defaul server
+    - #7975    add legacy version update v0.50.0 to main changelog
+    - #7972    updated service upstream definition
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 0407f7a79..32dfd36e2 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.0.14](https://img.shields.io/badge/Version-4.0.14-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.1.0](https://img.shields.io/badge/AppVersion-1.1.0-informational?style=flat-square)
+![Version: 4.0.15](https://img.shields.io/badge/Version-4.0.15-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.1.1](https://img.shields.io/badge/AppVersion-1.1.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -303,17 +303,17 @@ Kubernetes: `>=1.19.0-0`
 | controller.hostPort.ports.https | int | `443` | 'hostPort' https port |
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
-| controller.image.digest | string | `"sha256:f766669fdcf3dc26347ed273a55e754b427eb4411ee075a53f30718b4499076a"` |  |
+| controller.image.digest | string | `"sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"k8s.gcr.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.1.0"` |  |
+| controller.image.tag | string | `"v1.1.1"` |  |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller) |
-| controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` |  |
-| controller.ingressClassResource.default | bool | `false` |  |
-| controller.ingressClassResource.enabled | bool | `true` |  |
-| controller.ingressClassResource.name | string | `"nginx"` |  |
+| controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
+| controller.ingressClassResource.default | bool | `false` | Is this the default ingressClass for the cluster |
+| controller.ingressClassResource.enabled | bool | `true` | Is this ingressClass enabled or not |
+| controller.ingressClassResource.name | string | `"nginx"` | Name of the ingressClass |
 | controller.ingressClassResource.parameters | object | `{}` | Parameters is a link to a custom resource containing additional configuration for the controller. This is optional if the controller does not require extra parameters. |
 | controller.keda.apiVersion | string | `"keda.sh/v1alpha1"` |  |
 | controller.keda.behavior | object | `{}` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index e923b3e15..93096dda1 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -15,8 +15,8 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.1.0"
-    digest: sha256:f766669fdcf3dc26347ed273a55e754b427eb4411ee075a53f30718b4499076a
+    tag: "v1.1.1"
+    digest: sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
@@ -96,9 +96,13 @@ controller:
   ## This section refers to the creation of the IngressClass resource
   ## IngressClass resources are supported since k8s >= 1.18 and required since k8s >= 1.19
   ingressClassResource:
+    # -- Name of the ingressClass
     name: nginx
+    # -- Is this ingressClass enabled or not
     enabled: true
+    # -- Is this the default ingressClass for the cluster
     default: false
+    # -- Controller-value of the controller that is processing this ingressClass
     controllerValue: "k8s.io/ingress-nginx"
 
     # -- Parameters is a link to a custom resource containing additional
diff --git a/deploy/static/provider/aws/deploy-tls-termination.yaml b/deploy/static/provider/aws/deploy-tls-termination.yaml
index a3d7c7cdd..63c3b0a33 100644
--- a/deploy/static/provider/aws/deploy-tls-termination.yaml
+++ b/deploy/static/provider/aws/deploy-tls-termination.yaml
@@ -13,10 +13,10 @@ apiVersion: v1
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -28,10 +28,10 @@ apiVersion: v1
 kind: ConfigMap
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -51,10 +51,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 rules:
@@ -119,10 +119,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 roleRef:
@@ -139,10 +139,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -223,10 +223,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -245,10 +245,10 @@ apiVersion: v1
 kind: Service
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller-admission
@@ -276,10 +276,10 @@ metadata:
     service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
     service.beta.kubernetes.io/aws-load-balancer-type: nlb
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -311,10 +311,10 @@ apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -337,7 +337,7 @@ spec:
       dnsPolicy: ClusterFirst
       containers:
         - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.0@sha256:f766669fdcf3dc26347ed273a55e754b427eb4411ee075a53f30718b4499076a
+          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
           imagePullPolicy: IfNotPresent
           lifecycle:
             preStop:
@@ -429,10 +429,10 @@ apiVersion: networking.k8s.io/v1
 kind: IngressClass
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: nginx
@@ -447,10 +447,10 @@ apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
   name: ingress-nginx-admission
@@ -487,10 +487,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 ---
@@ -503,10 +503,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -527,10 +527,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -552,10 +552,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -577,10 +577,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -602,10 +602,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -613,10 +613,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
@@ -654,10 +654,10 @@ metadata:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -665,10 +665,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 2014ca51d..e4856da9f 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -13,10 +13,10 @@ apiVersion: v1
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -28,10 +28,10 @@ apiVersion: v1
 kind: ConfigMap
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -44,10 +44,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 rules:
@@ -112,10 +112,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 roleRef:
@@ -132,10 +132,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -216,10 +216,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -238,10 +238,10 @@ apiVersion: v1
 kind: Service
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller-admission
@@ -267,10 +267,10 @@ metadata:
     service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: 'true'
     service.beta.kubernetes.io/aws-load-balancer-type: nlb
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -302,10 +302,10 @@ apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -328,7 +328,7 @@ spec:
       dnsPolicy: ClusterFirst
       containers:
         - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.0@sha256:f766669fdcf3dc26347ed273a55e754b427eb4411ee075a53f30718b4499076a
+          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
           imagePullPolicy: IfNotPresent
           lifecycle:
             preStop:
@@ -417,10 +417,10 @@ apiVersion: networking.k8s.io/v1
 kind: IngressClass
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: nginx
@@ -435,10 +435,10 @@ apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
   name: ingress-nginx-admission
@@ -475,10 +475,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 ---
@@ -491,10 +491,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -515,10 +515,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -540,10 +540,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -565,10 +565,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -590,10 +590,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -601,10 +601,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
@@ -642,10 +642,10 @@ metadata:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -653,10 +653,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 983e2d51b..900c34020 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -13,10 +13,10 @@ apiVersion: v1
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -28,10 +28,10 @@ apiVersion: v1
 kind: ConfigMap
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -44,10 +44,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 rules:
@@ -112,10 +112,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 roleRef:
@@ -132,10 +132,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -216,10 +216,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -238,10 +238,10 @@ apiVersion: v1
 kind: Service
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller-admission
@@ -264,10 +264,10 @@ kind: Service
 metadata:
   annotations:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -298,10 +298,10 @@ apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -324,7 +324,7 @@ spec:
       dnsPolicy: ClusterFirst
       containers:
         - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.0@sha256:f766669fdcf3dc26347ed273a55e754b427eb4411ee075a53f30718b4499076a
+          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
           imagePullPolicy: IfNotPresent
           lifecycle:
             preStop:
@@ -412,10 +412,10 @@ apiVersion: networking.k8s.io/v1
 kind: IngressClass
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: nginx
@@ -430,10 +430,10 @@ apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
   name: ingress-nginx-admission
@@ -470,10 +470,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 ---
@@ -486,10 +486,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -510,10 +510,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -535,10 +535,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -560,10 +560,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -585,10 +585,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -596,10 +596,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
@@ -637,10 +637,10 @@ metadata:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -648,10 +648,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 3eef6bb59..0e0852550 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -13,10 +13,10 @@ apiVersion: v1
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -28,10 +28,10 @@ apiVersion: v1
 kind: ConfigMap
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -44,10 +44,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 rules:
@@ -112,10 +112,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 roleRef:
@@ -132,10 +132,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -216,10 +216,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -238,10 +238,10 @@ apiVersion: v1
 kind: Service
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller-admission
@@ -264,10 +264,10 @@ kind: Service
 metadata:
   annotations:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -299,10 +299,10 @@ apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -325,7 +325,7 @@ spec:
       dnsPolicy: ClusterFirst
       containers:
         - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.0@sha256:f766669fdcf3dc26347ed273a55e754b427eb4411ee075a53f30718b4499076a
+          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
           imagePullPolicy: IfNotPresent
           lifecycle:
             preStop:
@@ -414,10 +414,10 @@ apiVersion: networking.k8s.io/v1
 kind: IngressClass
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: nginx
@@ -432,10 +432,10 @@ apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
   name: ingress-nginx-admission
@@ -472,10 +472,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 ---
@@ -488,10 +488,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -512,10 +512,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -537,10 +537,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -562,10 +562,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -587,10 +587,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -598,10 +598,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
@@ -639,10 +639,10 @@ metadata:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -650,10 +650,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 094ace53e..d72cac794 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -13,10 +13,10 @@ apiVersion: v1
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -28,10 +28,10 @@ apiVersion: v1
 kind: ConfigMap
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -45,10 +45,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 rules:
@@ -113,10 +113,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 roleRef:
@@ -133,10 +133,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -217,10 +217,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -239,10 +239,10 @@ apiVersion: v1
 kind: Service
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller-admission
@@ -266,10 +266,10 @@ metadata:
   annotations:
     service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: 'true'
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -301,10 +301,10 @@ apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -327,7 +327,7 @@ spec:
       dnsPolicy: ClusterFirst
       containers:
         - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.0@sha256:f766669fdcf3dc26347ed273a55e754b427eb4411ee075a53f30718b4499076a
+          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
           imagePullPolicy: IfNotPresent
           lifecycle:
             preStop:
@@ -416,10 +416,10 @@ apiVersion: networking.k8s.io/v1
 kind: IngressClass
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: nginx
@@ -434,10 +434,10 @@ apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
   name: ingress-nginx-admission
@@ -475,10 +475,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 ---
@@ -491,10 +491,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -515,10 +515,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -540,10 +540,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -565,10 +565,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -590,10 +590,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -601,10 +601,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
@@ -642,10 +642,10 @@ metadata:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -653,10 +653,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index b599f414f..784993a92 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -13,10 +13,10 @@ apiVersion: v1
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -28,10 +28,10 @@ apiVersion: v1
 kind: ConfigMap
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -44,10 +44,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 rules:
@@ -112,10 +112,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 roleRef:
@@ -132,10 +132,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -216,10 +216,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -238,10 +238,10 @@ apiVersion: v1
 kind: Service
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller-admission
@@ -273,10 +273,10 @@ metadata:
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: /
     service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: source-hash
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -308,10 +308,10 @@ apiVersion: apps/v1
 kind: DaemonSet
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -334,7 +334,7 @@ spec:
       dnsPolicy: ClusterFirst
       containers:
         - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.0@sha256:f766669fdcf3dc26347ed273a55e754b427eb4411ee075a53f30718b4499076a
+          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
           imagePullPolicy: IfNotPresent
           lifecycle:
             preStop:
@@ -423,10 +423,10 @@ apiVersion: networking.k8s.io/v1
 kind: IngressClass
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: nginx
@@ -441,10 +441,10 @@ apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
   name: ingress-nginx-admission
@@ -481,10 +481,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 ---
@@ -497,10 +497,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -521,10 +521,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -546,10 +546,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -571,10 +571,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -596,10 +596,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -607,10 +607,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
@@ -648,10 +648,10 @@ metadata:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -659,10 +659,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index a8cd76371..c87aa857e 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -13,10 +13,10 @@ apiVersion: v1
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -28,10 +28,10 @@ apiVersion: v1
 kind: ConfigMap
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -44,10 +44,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 rules:
@@ -112,10 +112,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 roleRef:
@@ -132,10 +132,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -216,10 +216,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -238,10 +238,10 @@ apiVersion: v1
 kind: Service
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller-admission
@@ -264,10 +264,10 @@ kind: Service
 metadata:
   annotations:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -298,10 +298,10 @@ apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -328,7 +328,7 @@ spec:
       dnsPolicy: ClusterFirst
       containers:
         - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.0@sha256:f766669fdcf3dc26347ed273a55e754b427eb4411ee075a53f30718b4499076a
+          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
           imagePullPolicy: IfNotPresent
           lifecycle:
             preStop:
@@ -425,10 +425,10 @@ apiVersion: networking.k8s.io/v1
 kind: IngressClass
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: nginx
@@ -443,10 +443,10 @@ apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
   name: ingress-nginx-admission
@@ -483,10 +483,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 ---
@@ -499,10 +499,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -523,10 +523,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -548,10 +548,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -573,10 +573,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -598,10 +598,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -609,10 +609,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
@@ -650,10 +650,10 @@ metadata:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -661,10 +661,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 9ebc76cfd..a97984338 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -13,10 +13,10 @@ apiVersion: v1
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -28,10 +28,10 @@ apiVersion: v1
 kind: ConfigMap
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -45,10 +45,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 rules:
@@ -113,10 +113,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
   name: ingress-nginx
 roleRef:
@@ -133,10 +133,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -217,10 +217,10 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx
@@ -239,10 +239,10 @@ apiVersion: v1
 kind: Service
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller-admission
@@ -266,10 +266,10 @@ metadata:
   annotations:
     service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: 'true'
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -301,10 +301,10 @@ apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: ingress-nginx-controller
@@ -327,7 +327,7 @@ spec:
       dnsPolicy: ClusterFirst
       containers:
         - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.0@sha256:f766669fdcf3dc26347ed273a55e754b427eb4411ee075a53f30718b4499076a
+          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
           imagePullPolicy: IfNotPresent
           lifecycle:
             preStop:
@@ -416,10 +416,10 @@ apiVersion: networking.k8s.io/v1
 kind: IngressClass
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
   name: nginx
@@ -434,10 +434,10 @@ apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
   name: ingress-nginx-admission
@@ -474,10 +474,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 ---
@@ -490,10 +490,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -514,10 +514,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -539,10 +539,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 rules:
@@ -564,10 +564,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 roleRef:
@@ -589,10 +589,10 @@ metadata:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -600,10 +600,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
@@ -641,10 +641,10 @@ metadata:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.10
+    helm.sh/chart: ingress-nginx-4.0.15
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.0
+    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
 spec:
@@ -652,10 +652,10 @@ spec:
     metadata:
       name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.10
+        helm.sh/chart: ingress-nginx-4.0.15
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.0
+        app.kubernetes.io/version: 1.1.1
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
     spec:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index af29ef767..51bc4be50 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -49,7 +49,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -181,16 +181,16 @@ In AWS we use a Network load balancer (NLB) to expose the NGINX Ingress controll
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.0/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
 
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. This section explains how to do that on AWS with using an NLB.
 
-1. Download the the [deploy-tls-termination.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.0/deploy/static/provider/aws/deploy-tls-termination.yaml) template:
+1. Download the the [deploy-tls-termination.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/aws/deploy-tls-termination.yaml) template:
    ```console
-   wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.0/deploy/static/provider/aws/deploy-tls-termination.yaml
+   wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/aws/deploy-tls-termination.yaml
    ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -232,7 +232,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -246,7 +246,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regards to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -254,13 +254,13 @@ More information with regards to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.0/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/do/deploy.yaml
 ```
 
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.0/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -274,7 +274,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A [complete list of available annotations for Oracle Cloud Infrastructure](https://github.com/oracle/oci-cloud-controller-manager/blob/master/docs/load-balancer-annotations.md) can be found in the [OCI Cloud Controller Manager](https://github.com/oracle/oci-cloud-controller-manager) documentation.
@@ -286,7 +286,7 @@ This section is applicable to Kubernetes clusters deployed on bare metal servers
 For quick testing, you can use a [NodePort](https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport). This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.0/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range), see [bare-metal considerations](./baremetal.md).

From 5552fdf814f8ee16b534c354d3e710fafd4cb53b Mon Sep 17 00:00:00 2001
From: Tiago Ferreira <tacf@users.noreply.github.com>
Date: Wed, 12 Jan 2022 19:08:14 +0000
Subject: [PATCH 0036/1641] Fix api version for ingress objects on K8s version
 <1.19 (#8112)

---
 docs/user-guide/basic-usage.md | 20 +++++++-------------
 1 file changed, 7 insertions(+), 13 deletions(-)

diff --git a/docs/user-guide/basic-usage.md b/docs/user-guide/basic-usage.md
index cbb7004c7..089c08b3e 100644
--- a/docs/user-guide/basic-usage.md
+++ b/docs/user-guide/basic-usage.md
@@ -9,7 +9,7 @@ Let's say that you want to expose the first at `myServiceA.foo.org` and the seco
 If cluster version < 1.19 you can create two **ingress** resources like this:
 
 ```
-apiVersion: networking.k8s.io/v1
+apiVersion: networking.k8s.io/v1beta1
 kind: Ingress
 metadata:
   name: ingress-myservicea
@@ -20,14 +20,11 @@ spec:
     http:
       paths:
       - path: /
-        pathType: Prefix
         backend:
-          service:
-            name: myservicea
-            port:
-              number: 80
+          serviceName: myservicea
+          servicePort: 80
 ---
-apiVersion: networking.k8s.io/v1
+apiVersion: networking.k8s.io/v1beta1
 kind: Ingress
 metadata:
   name: ingress-myserviceb
@@ -40,15 +37,12 @@ spec:
     http:
       paths:
       - path: /
-        pathType: Prefix
         backend:
-          service:
-            name: myserviceb
-            port:
-              number: 80
+          serviceName: myserviceb
+          servicePort: 80
 ```
 
-If cluster version >= 1.19 the Ingress resource above will not work, instead of annotations you should use the new `ingressClassName: nginx` property.
+If the cluster uses Kubernetes version >= 1.19.x, then its suggested to create 2 ingress resources, using yaml examples shown below. These examples are in conformity with the `networking.kubernetes.io/v1` api.
 
 ```
 apiVersion: networking.k8s.io/v1

From 5f7656f4ccb24dc29ed24941ebddaeab802d7285 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 13 Jan 2022 21:22:30 +0530
Subject: [PATCH 0037/1641] updating releasemd (#8135)

---
 RELEASE.md | 99 +++++++++++++++++++++++++++++++-----------------------
 1 file changed, 57 insertions(+), 42 deletions(-)

diff --git a/RELEASE.md b/RELEASE.md
index 10f765929..4396c20fc 100644
--- a/RELEASE.md
+++ b/RELEASE.md
@@ -167,7 +167,49 @@ Promoting the images basically means that images, that were pushed to staging co
     - annotations
       - artifacthub.io/prerelease: "true" 
       - artifacthub.io/changes: |
-        - Add the titles of the PRs merged after previous release here. I used the github-cli to get that list like so `gh pr list -s merged -L 38 -B main | cut -f1,2`
+        - Replace this line and other lines under this annotation with the Changelog. One process to generate the Changelog is described below
+          - Install and configure github cli as per the docs of gh-cli  https://cli.github.com/,
+          - Change dir to your clone, of your fork, of the ingress-nginx project
+          - Run the below command and save the output to a txt file
+
+            ```
+            gh pr list -s merged -L 38 -B main | cut -f1,2 > ~/tmp/prlist.txt
+            ```
+            - The -L 38 was used for 2 reasons.
+              - Default number of results is 30 and there were more than 30 PRs merged while releasing v1.1.1.
+              -  The other reason to use -L 38 was to ommit the 39th, the 40th and the 41st line in the resulting list. These were non-relevant PRs.
+            - If you save the output of above command to a file called prlist.txt. It looks somewhat like this ;
+
+              ```
+              % cat ~/Downloads/prlist.txt 
+              8129    fix syntax in docs for multi-tls example
+              8120    Update go in runner and release v1.1.1
+              8119    Update to go v1.17.6
+              8118    Remove deprecated libraries, update other libs
+              8117    Fix codegen errors
+              8115    chart/ghaction: set the correct permission to have access to push a release 
+              ....
+              ```
+              You can delete the lines, that refer to PRs of the release process itself. We only need to list the feature/bugfix PRs.
+          - Now you use some easy automation in bash/python/other, to get the PR-List that can be used in the changelog. For example, its possible to use a bash scripty way, seen below, to convert those plaintext PR numbers into clickable links. 
+
+            ```
+            #!/usr/bin/bash
+
+            file="$1"
+
+            while read -r line; do
+              pr_num=`echo "$line" | cut -f1`
+              pr_title=`echo "$line" | cut -f2`
+              echo "[$pr_num](https://github.com/kubernetes/ingress-nginx/pull/$pr_num) $pr_title"
+            done <$file
+
+            ```
+          - If you saved the bash script content above, in a file called `prlist_to_changelog.sh`, then you could execute a command like this to get your prlist in a text file called changelog_content.txt;`
+
+          ```
+          prlist_to_changelog.sh prlist.txt > changelog_content.txt`
+          ```
 
 ### d. Edit the values.yaml and run helm-docs
   - [Fields to edit in values.yaml](https://github.com/kubernetes/ingress-nginx/blob/main/charts/ingress-nginx/values.yaml)
@@ -182,7 +224,7 @@ Promoting the images basically means that images, that were pushed to staging co
           git diff --exit-code
           rm -f ./helm-docs
     ```
-    Watchout for mistakes like leaving the helm-docs executable in your clone workspace or not not checking the new README.md manually etc.
+    Watchout for mistakes like leaving the helm-docs executable in your clone workspace or not checking the new README.md manually etc.
 
 ### e. Edit the static manifests
 
@@ -223,46 +265,16 @@ Promoting the images basically means that images, that were pushed to staging co
 
 ### f. Edit the changelog
   [Changelog.md](https://github.com/kubernetes/ingress-nginx/blob/main/Changelog.md) 
-- Add the PRs merged after previous release
-- If you use the github cli https://cli.github.com/, then that is one useful command to get this list of PRs
-- One way of using gh cli and getting the list of PRs for changelog is described below
-  - Install and configure github cli as per the docs of gh-cli
-  - Change dir to your clone, of your fork, of the ingress-nginx project
-  - Run the below command and save the output to a txt file
-
-    ```
-    gh pr list -s merged -L 38 -B main | cut -f1,2 > ~/tmp/prlist.txt
-    ```
-    - The -L 38 was used for 2 reasons.
-      - Default number of results is 30 and there were more than 30 PRs merged while releasing v1.1.1.
-      -  The other reason to use -L 38 was to ommit the 39th, the 40th and the 41st line in the resulting list. These were non-relevant PRs.
-  - Then use some easy automation in bash/python/whathaveyou to get the PR-List that can be used in the changelog
-  - I save output of above command to a file called prlist.txt. It looks somewhat like this ;
-
-    ```
-    % cat ~/Downloads/prlist.txt 
-    8129    fix syntax in docs for multi-tls example
-    8120    Update go in runner and release v1.1.1
-    8119    Update to go v1.17.6
-    8118    Remove deprecated libraries, update other libs
-    8117    Fix codegen errors
-    8115    chart/ghaction: set the correct permission to have access to push a release 
-    ....
-    ```
-  - Then I use the bash scripty way seen below to convert those PR numbers into links. If I saved the below content in a script called prlist_to_changelog.sh, then I run the command `prlist_to_changelog.sh prlist.txt`
-
-    ```
-    #!/usr/bin/bash
-
-    file="$1"
-
-    while read -r line; do
-      pr_num=`echo "$line" | cut -f1`
-      pr_title=`echo "$line" | cut -f2`
-      echo "[$pr_num](https://github.com/kubernetes/ingress-nginx/pull/$pr_num) $pr_title"
-    done <$file
-
-    ```
+- Each time a release is made, a new section is added to the Changelog.md file
+- A new section in the Changelog.md file consists of 3 components listed below
+  - the "Image"
+  - the "Description"
+  - the "PRs list"
+- Look at the previous content to understand what the 3 components look like.
+- You can easily get the "Image" from a yaml manifest but be sure to look at a manifest in your git clone now and not the upstream on github. This is because, if you are following this documentation, then you generated manifests with new updated digest for the image, in step 4e above. You also most likely promoted the new image in a step above. Look at the previous release section in Changelog.md. The format looks like `k8s.gcr.io/ingress-nginx/controller:.......`. One example of a yaml file to look at is /deploy/static/provider/baremetal/deploy.yaml (in your git clone branch and not on the upstream).
+- Next, you need to have a good overview of the changes introduced in this release and based on that you write a description. Look at previous descriptions. Ask the ingress-nginx-dev channel if required.
+- And then you need to add a list of the PRs merged, since the previous release.
+- One process to generate this list of PRs is already described above in step 4c. So if you are following this document, then you have done this already and very likely have retained the file containing the list of PRs, in the format that is needed.
 
 ### g. Edit the Documentation:
 - Update the version in [docs/deploy/index.md](docs/deploy/index.md)
@@ -296,3 +308,6 @@ Promoting the images basically means that images, that were pushed to staging co
 - Release to github
 
 - Edit the ghpages file as needed
+
+## TODO
+- Automate & simplify as much as possible, whenever possible, however possible

From c0098f305c05a79d2df5d58aed07138fd454fa3a Mon Sep 17 00:00:00 2001
From: serge-r <serge-r@users.noreply.github.com>
Date: Sat, 15 Jan 2022 08:27:41 +0700
Subject: [PATCH 0038/1641] Add ability to use custom prometheus buckets
 (#7171)

---
 cmd/nginx/flags.go                             | 12 ++++++++++++
 cmd/nginx/main.go                              |  2 +-
 internal/ingress/controller/controller.go      |  2 ++
 internal/ingress/metric/collectors/socket.go   | 18 +++++++++++++++---
 .../ingress/metric/collectors/socket_test.go   | 13 ++++++++++++-
 internal/ingress/metric/main.go                |  4 ++--
 6 files changed, 44 insertions(+), 7 deletions(-)

diff --git a/cmd/nginx/flags.go b/cmd/nginx/flags.go
index 72a2bfb8d..f9d6702fe 100644
--- a/cmd/nginx/flags.go
+++ b/cmd/nginx/flags.go
@@ -22,6 +22,7 @@ import (
 	"os"
 	"time"
 
+	"github.com/prometheus/client_golang/prometheus"
 	"github.com/spf13/pflag"
 	apiv1 "k8s.io/api/core/v1"
 	"k8s.io/apimachinery/pkg/labels"
@@ -29,6 +30,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/controller"
 	ngx_config "k8s.io/ingress-nginx/internal/ingress/controller/config"
 	"k8s.io/ingress-nginx/internal/ingress/controller/ingressclass"
+	"k8s.io/ingress-nginx/internal/ingress/metric/collectors"
 	"k8s.io/ingress-nginx/internal/ingress/status"
 	ing_net "k8s.io/ingress-nginx/internal/net"
 	"k8s.io/ingress-nginx/internal/nginx"
@@ -161,6 +163,9 @@ Requires the update-status parameter.`)
 			`Enables the collection of NGINX metrics`)
 		metricsPerHost = flags.Bool("metrics-per-host", true,
 			`Export metrics per-host`)
+		timeBuckets         = flags.Float64Slice("time-buckets", prometheus.DefBuckets, "Set of buckets which will be used for prometheus histogram metrics such as RequestTime, ResponseTime")
+		lengthBuckets       = flags.Float64Slice("length-buckets", prometheus.LinearBuckets(10, 10, 10), "Set of buckets which will be used for prometheus histogram metrics such as RequestLength, ResponseLength")
+		sizeBuckets         = flags.Float64Slice("size-buckets", prometheus.ExponentialBuckets(10, 10, 7), "Set of buckets which will be used for prometheus histogram metrics such as BytesSent")
 		monitorMaxBatchSize = flags.Int("monitor-max-batch-size", 10000, "Max batch size of NGINX metrics")
 
 		httpPort  = flags.Int("http-port", 80, `Port to use for servicing HTTP traffic.`)
@@ -283,6 +288,12 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		}
 	}
 
+	var histogramBuckets = &collectors.HistogramBuckets{
+		TimeBuckets:   *timeBuckets,
+		LengthBuckets: *lengthBuckets,
+		SizeBuckets:   *sizeBuckets,
+	}
+
 	ngx_config.EnableSSLChainCompletion = *enableSSLChainCompletion
 
 	config := &controller.Configuration{
@@ -293,6 +304,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		EnableProfiling:            *profiling,
 		EnableMetrics:              *enableMetrics,
 		MetricsPerHost:             *metricsPerHost,
+		MetricsBuckets:             histogramBuckets,
 		MonitorMaxBatchSize:        *monitorMaxBatchSize,
 		DisableServiceExternalName: *disableServiceExternalName,
 		EnableSSLPassthrough:       *enableSSLPassthrough,
diff --git a/cmd/nginx/main.go b/cmd/nginx/main.go
index fb87ad84a..cbfca547c 100644
--- a/cmd/nginx/main.go
+++ b/cmd/nginx/main.go
@@ -133,7 +133,7 @@ func main() {
 
 	mc := metric.NewDummyCollector()
 	if conf.EnableMetrics {
-		mc, err = metric.NewCollector(conf.MetricsPerHost, reg, conf.IngressClassConfiguration.Controller)
+		mc, err = metric.NewCollector(conf.MetricsPerHost, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets)
 		if err != nil {
 			klog.Fatalf("Error creating prometheus collector:  %v", err)
 		}
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 7c200bd8f..a4ae4217c 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -41,6 +41,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/controller/ingressclass"
 	"k8s.io/ingress-nginx/internal/ingress/controller/store"
 	"k8s.io/ingress-nginx/internal/ingress/errors"
+	"k8s.io/ingress-nginx/internal/ingress/metric/collectors"
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/internal/nginx"
 	"k8s.io/klog/v2"
@@ -97,6 +98,7 @@ type Configuration struct {
 
 	EnableMetrics  bool
 	MetricsPerHost bool
+	MetricsBuckets *collectors.HistogramBuckets
 
 	FakeCertificate *ingress.SSLCert
 
diff --git a/internal/ingress/metric/collectors/socket.go b/internal/ingress/metric/collectors/socket.go
index 8fec7dded..a220d1456 100644
--- a/internal/ingress/metric/collectors/socket.go
+++ b/internal/ingress/metric/collectors/socket.go
@@ -56,6 +56,13 @@ type socketData struct {
 	Path      string `json:"path"`
 }
 
+// HistogramBuckets allow customizing prometheus histogram buckets values
+type HistogramBuckets struct {
+	TimeBuckets   []float64
+	LengthBuckets []float64
+	SizeBuckets   []float64
+}
+
 // SocketCollector stores prometheus metrics and ingress meta-data
 type SocketCollector struct {
 	prometheus.Collector
@@ -79,6 +86,8 @@ type SocketCollector struct {
 	hosts sets.String
 
 	metricsPerHost bool
+
+	buckets HistogramBuckets
 }
 
 var (
@@ -101,7 +110,7 @@ var defObjectives = map[float64]float64{0.5: 0.05, 0.9: 0.01, 0.99: 0.001}
 
 // NewSocketCollector creates a new SocketCollector instance using
 // the ingress watch namespace and class used by the controller
-func NewSocketCollector(pod, namespace, class string, metricsPerHost bool) (*SocketCollector, error) {
+func NewSocketCollector(pod, namespace, class string, metricsPerHost bool, buckets HistogramBuckets) (*SocketCollector, error) {
 	socket := "/tmp/prometheus-nginx.socket"
 	// unix sockets must be unlink()ed before being used
 	_ = syscall.Unlink(socket)
@@ -138,6 +147,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost bool) (*Soc
 				Help:        "The time spent on receiving the response from the upstream server",
 				Namespace:   PrometheusNamespace,
 				ConstLabels: constLabels,
+				Buckets:     buckets.TimeBuckets,
 			},
 			requestTags,
 		),
@@ -147,6 +157,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost bool) (*Soc
 				Help:        "The response length (including request line, header, and request body)",
 				Namespace:   PrometheusNamespace,
 				ConstLabels: constLabels,
+				Buckets:     buckets.LengthBuckets,
 			},
 			requestTags,
 		),
@@ -157,6 +168,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost bool) (*Soc
 				Help:        "The request processing time in milliseconds",
 				Namespace:   PrometheusNamespace,
 				ConstLabels: constLabels,
+				Buckets:     buckets.TimeBuckets,
 			},
 			requestTags,
 		),
@@ -165,7 +177,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost bool) (*Soc
 				Name:        "request_size",
 				Help:        "The request length (including request line, header, and request body)",
 				Namespace:   PrometheusNamespace,
-				Buckets:     prometheus.LinearBuckets(10, 10, 10), // 10 buckets, each 10 bytes wide.
+				Buckets:     buckets.LengthBuckets,
 				ConstLabels: constLabels,
 			},
 			requestTags,
@@ -186,7 +198,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost bool) (*Soc
 				Name:        "bytes_sent",
 				Help:        "The number of bytes sent to a client",
 				Namespace:   PrometheusNamespace,
-				Buckets:     prometheus.ExponentialBuckets(10, 10, 7), // 7 buckets, exponential factor of 10.
+				Buckets:     buckets.SizeBuckets,
 				ConstLabels: constLabels,
 			},
 			requestTags,
diff --git a/internal/ingress/metric/collectors/socket_test.go b/internal/ingress/metric/collectors/socket_test.go
index 6ab972f58..3b124efa0 100644
--- a/internal/ingress/metric/collectors/socket_test.go
+++ b/internal/ingress/metric/collectors/socket_test.go
@@ -68,6 +68,17 @@ func TestNewUDPLogListener(t *testing.T) {
 }
 
 func TestCollector(t *testing.T) {
+
+	buckets := struct {
+		TimeBuckets   []float64
+		LengthBuckets []float64
+		SizeBuckets   []float64
+	}{
+		prometheus.DefBuckets,
+		prometheus.LinearBuckets(10, 10, 10),
+		prometheus.ExponentialBuckets(10, 10, 7),
+	}
+
 	cases := []struct {
 		name            string
 		data            []string
@@ -338,7 +349,7 @@ func TestCollector(t *testing.T) {
 		t.Run(c.name, func(t *testing.T) {
 			registry := prometheus.NewPedanticRegistry()
 
-			sc, err := NewSocketCollector("pod", "default", "ingress", true)
+			sc, err := NewSocketCollector("pod", "default", "ingress", true, buckets)
 			if err != nil {
 				t.Errorf("%v: unexpected error creating new SocketCollector: %v", c.name, err)
 			}
diff --git a/internal/ingress/metric/main.go b/internal/ingress/metric/main.go
index 0cc07fe28..644a9b690 100644
--- a/internal/ingress/metric/main.go
+++ b/internal/ingress/metric/main.go
@@ -68,7 +68,7 @@ type collector struct {
 }
 
 // NewCollector creates a new metric collector the for ingress controller
-func NewCollector(metricsPerHost bool, registry *prometheus.Registry, ingressclass string) (Collector, error) {
+func NewCollector(metricsPerHost bool, registry *prometheus.Registry, ingressclass string, buckets collectors.HistogramBuckets) (Collector, error) {
 	podNamespace := os.Getenv("POD_NAMESPACE")
 	if podNamespace == "" {
 		podNamespace = "default"
@@ -86,7 +86,7 @@ func NewCollector(metricsPerHost bool, registry *prometheus.Registry, ingresscla
 		return nil, err
 	}
 
-	s, err := collectors.NewSocketCollector(podName, podNamespace, ingressclass, metricsPerHost)
+	s, err := collectors.NewSocketCollector(podName, podNamespace, ingressclass, metricsPerHost, buckets)
 	if err != nil {
 		return nil, err
 	}

From 15b0aba03b700daacf0e9a3f5154ca1b9f77ee18 Mon Sep 17 00:00:00 2001
From: Damien Mathieu <42@dmathieu.com>
Date: Sun, 16 Jan 2022 22:33:28 +0100
Subject: [PATCH 0039/1641] First sidecar module: OpenTelemetry (#8013)

* remove opentelemetry from main nginx image

* add opentelemetry sidecar image

* handle extra modules in helm chart

* fix running helm chart

* mount the modules volume in the init container

* merge the mounted folder

* fix the otel image

* fix licence year

* fix cloudbuild image

* use the same nginx version as in the main image

* only retrieve /etc/nginx/modules for now
---
 .../ci/daemonset-extra-modules.yaml           |  10 ++
 .../ci/deployment-extra-modules.yaml          |  10 ++
 .../templates/controller-daemonset.yaml       |  28 ++++-
 .../templates/controller-deployment.yaml      |  29 ++++-
 charts/ingress-nginx/values.yaml              |   9 ++
 images/nginx/rootfs/Dockerfile                |   2 +
 images/nginx/rootfs/build.sh                  |  45 -------
 images/nginx/rootfs/entrypoint.sh             |  27 +++++
 images/opentelemetry/Makefile                 |  57 +++++++++
 images/opentelemetry/README.md                |   5 +
 images/opentelemetry/cloudbuild.yaml          |  24 ++++
 images/opentelemetry/rootfs/Dockerfile        |  28 +++++
 images/opentelemetry/rootfs/build.sh          | 111 ++++++++++++++++++
 images/opentelemetry/rootfs/init_module.sh    |  21 ++++
 14 files changed, 353 insertions(+), 53 deletions(-)
 create mode 100644 charts/ingress-nginx/ci/daemonset-extra-modules.yaml
 create mode 100644 charts/ingress-nginx/ci/deployment-extra-modules.yaml
 create mode 100644 images/nginx/rootfs/entrypoint.sh
 create mode 100644 images/opentelemetry/Makefile
 create mode 100644 images/opentelemetry/README.md
 create mode 100644 images/opentelemetry/cloudbuild.yaml
 create mode 100644 images/opentelemetry/rootfs/Dockerfile
 create mode 100755 images/opentelemetry/rootfs/build.sh
 create mode 100755 images/opentelemetry/rootfs/init_module.sh

diff --git a/charts/ingress-nginx/ci/daemonset-extra-modules.yaml b/charts/ingress-nginx/ci/daemonset-extra-modules.yaml
new file mode 100644
index 000000000..f299dbf1c
--- /dev/null
+++ b/charts/ingress-nginx/ci/daemonset-extra-modules.yaml
@@ -0,0 +1,10 @@
+controller:
+  kind: DaemonSet
+  image:
+    repository: ingress-controller/controller
+    tag: 1.0.0-dev
+  service:
+    type: ClusterIP
+  extraModules:
+    - name: opentelemetry
+      image: busybox
diff --git a/charts/ingress-nginx/ci/deployment-extra-modules.yaml b/charts/ingress-nginx/ci/deployment-extra-modules.yaml
new file mode 100644
index 000000000..ec5923548
--- /dev/null
+++ b/charts/ingress-nginx/ci/deployment-extra-modules.yaml
@@ -0,0 +1,10 @@
+controller:
+  image:
+    repository: ingress-controller/controller
+    tag: 1.0.0-dev
+    digest: null
+  service:
+    type: ClusterIP
+  extraModules:
+    - name: opentelemetry
+      image: busybox
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 365a3cea7..72811fbe4 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -143,8 +143,12 @@ spec:
               hostPort: {{ $key }}
               {{- end }}
           {{- end }}
-        {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled) }}
+        {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraModules) }}
           volumeMounts:
+          {{- if .Values.controller.extraModules }}
+            - name: modules
+              mountPath: /modules_mount
+          {{- end }}
           {{- if .Values.controller.customTemplate.configMapName }}
             - mountPath: /etc/nginx/template
               name: nginx-template-volume
@@ -165,8 +169,20 @@ spec:
       {{- if .Values.controller.extraContainers }}
         {{ toYaml .Values.controller.extraContainers | nindent 8 }}
       {{- end }}
-    {{- if .Values.controller.extraInitContainers }}
-      initContainers: {{ toYaml .Values.controller.extraInitContainers | nindent 8 }}
+
+
+    {{- if (or .Values.controller.extraInitContainers .Values.controller.extraModules) }}
+      initContainers:
+      {{- if .Values.controller.extraInitContainers }}
+        {{ toYaml .Values.controller.extraInitContainers | nindent 8 }}
+      {{- end }}
+      {{- if .Values.controller.extraModules }}
+        {{- range .Values.controller.extraModules }}
+          - name: {{ .Name }}
+            image: {{ .Image }}
+            command: ['sh', '-c', '/usr/local/bin/init_module.sh']
+        {{- end }}
+      {{- end }}
     {{- end }}
     {{- if .Values.controller.hostNetwork }}
       hostNetwork: {{ .Values.controller.hostNetwork }}
@@ -185,8 +201,12 @@ spec:
     {{- end }}
       serviceAccountName: {{ template "ingress-nginx.serviceAccountName" . }}
       terminationGracePeriodSeconds: {{ .Values.controller.terminationGracePeriodSeconds }}
-    {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraVolumes) }}
+    {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraVolumes .Values.controller.extraModules) }}
       volumes:
+      {{- if .Values.controller.extraModules }}
+        - name: modules
+          emptyDir: {}
+      {{- end }}
       {{- if .Values.controller.customTemplate.configMapName }}
         - name: nginx-template-volume
           configMap:
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 2c0641bb5..a1943cd91 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -140,8 +140,12 @@ spec:
               hostPort: {{ $key }}
               {{- end }}
           {{- end }}
-        {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled) }}
+        {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraModules) }}
           volumeMounts:
+          {{- if .Values.controller.extraModules }}
+            - name: modules
+              mountPath: /modules_mount
+          {{- end }}
           {{- if .Values.controller.customTemplate.configMapName }}
             - mountPath: /etc/nginx/template
               name: nginx-template-volume
@@ -162,8 +166,21 @@ spec:
       {{- if .Values.controller.extraContainers }}
         {{ toYaml .Values.controller.extraContainers | nindent 8 }}
       {{- end }}
-    {{- if .Values.controller.extraInitContainers }}
-      initContainers: {{ toYaml .Values.controller.extraInitContainers | nindent 8 }}
+    {{- if (or .Values.controller.extraInitContainers .Values.controller.extraModules) }}
+      initContainers:
+      {{- if .Values.controller.extraInitContainers }}
+        {{ toYaml .Values.controller.extraInitContainers | nindent 8 }}
+      {{- end }}
+      {{- if .Values.controller.extraModules }}
+        {{- range .Values.controller.extraModules }}
+          - name: {{ .name }}
+            image: {{ .image }}
+            command: ['sh', '-c', '/usr/local/bin/init_module.sh']
+            volumeMounts:
+              - name: modules
+                mountPath: /modules_mount
+        {{- end }}
+      {{- end }}
     {{- end }}
     {{- if .Values.controller.hostNetwork }}
       hostNetwork: {{ .Values.controller.hostNetwork }}
@@ -182,8 +199,12 @@ spec:
     {{- end }}
       serviceAccountName: {{ template "ingress-nginx.serviceAccountName" . }}
       terminationGracePeriodSeconds: {{ .Values.controller.terminationGracePeriodSeconds }}
-    {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraVolumes) }}
+    {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraVolumes .Values.controller.extraModules) }}
       volumes:
+      {{- if .Values.controller.extraModules }}
+        - name: modules
+          emptyDir: {}
+      {{- end }}
       {{- if .Values.controller.customTemplate.configMapName }}
         - name: nginx-template-volume
           configMap:
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 93096dda1..a030ff2db 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -559,6 +559,15 @@ controller:
   #   image: busybox
   #   command: ['sh', '-c', 'until nslookup myservice; do echo waiting for myservice; sleep 2; done;']
 
+  extraModules: []
+  ## Modules, which are mounted into the core nginx image
+  # - name: opentelemetry
+  #   image: busybox
+  #
+  # The image must contain a `/usr/local/bin/init_module.sh` executable, which
+  # will be executed as initContainers, to move its config files within the
+  # mounted volume.
+
   admissionWebhooks:
     annotations: {}
     # ignore-check.kube-linter.io/no-read-only-rootfs: "This deployment needs write access to root filesystem".
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 4893f3c54..a9e180315 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -33,6 +33,7 @@ ENV LUA_CPATH="/usr/local/lib/lua/?/?.so;/usr/local/lib/lua/?.so;;"
 COPY --from=builder /usr/local /usr/local
 COPY --from=builder /opt /opt
 COPY --from=builder /etc/nginx /etc/nginx
+COPY --from=builder entrypoint.sh /usr/local/entrypoint.sh
 
 RUN apk update \
   && apk upgrade \
@@ -72,4 +73,5 @@ RUN apk update \
 
 EXPOSE 80 443
 
+ENTRYPOINT ["/usr/local/entrypoint.sh"]
 CMD ["nginx", "-g", "daemon off;"]
diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 1aa655523..bee2561d0 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -35,12 +35,6 @@ export NGINX_DIGEST_AUTH=1.0.0
 # Check for recent changes: https://github.com/yaoweibin/ngx_http_substitutions_filter_module/compare/v0.6.4...master
 export NGINX_SUBSTITUTIONS=b8a71eacc7f986ba091282ab8b1bbbc6ae1807e0
 
-# Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp/compare/v1.0.0...main
-export OPENTELEMETRY_CPP_VERSION=1.0.0
-
-# Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/c655b8...main
-export OPENTELEMETRY_CONTRIB_COMMIT=c655b849f017a5363085a4b4e6fcae8a4b7621ad
-
 # Check for recent changes: https://github.com/opentracing-contrib/nginx-opentracing/compare/v0.19.0...master
 export NGINX_OPENTRACING_VERSION=0.19.0
 
@@ -144,11 +138,6 @@ if [[ ${ARCH} == "s390x" ]]; then
   export LUA_STREAM_NGX_VERSION=0.0.7
 fi
 
-export USE_OPENTELEMETRY=true
-if [[ ${ARCH} == "s390x" ]] || [[ ${ARCH} == "armv7l" ]]; then
-  export USE_OPENTELEMETRY=false
-fi
-
 get_src()
 {
   hash="$1"
@@ -226,9 +215,6 @@ get_src f09851e6309560a8ff3e901548405066c83f1f6ff88aa7171e0763bd9514762b \
 get_src a98b48947359166326d58700ccdc27256d2648218072da138ab6b47de47fbd8f \
         "https://github.com/yaoweibin/ngx_http_substitutions_filter_module/archive/$NGINX_SUBSTITUTIONS.tar.gz"
 
-get_src 37b2a2abf75e865449ff1425cee96dbd74659ac0c612c84ee5f381244360cab2 \
-        "https://github.com/open-telemetry/opentelemetry-cpp-contrib/archive/$OPENTELEMETRY_CONTRIB_COMMIT.tar.gz"
-
 get_src 6f97776ebdf019b105a755c7736b70bdbd7e575c7f0d39db5fe127873c7abf17 \
         "https://github.com/opentracing-contrib/nginx-opentracing/archive/v$NGINX_OPENTRACING_VERSION.tar.gz"
 
@@ -482,32 +468,6 @@ cmake -DCMAKE_BUILD_TYPE=Release \
 make
 make install
 
-if [ $USE_OPENTELEMETRY = true ]; then
-  # build opentelemetry lib
-  apk add protobuf-dev \
-    grpc \
-    grpc-dev \
-    gtest-dev \
-    c-ares-dev
-
-  cd $BUILD_PATH
-  git clone --recursive https://github.com/open-telemetry/opentelemetry-cpp opentelemetry-cpp-$OPENTELEMETRY_CPP_VERSION
-  cd "opentelemetry-cpp-$OPENTELEMETRY_CPP_VERSION"
-  git checkout v$OPENTELEMETRY_CPP_VERSION
-  mkdir .build
-  cd .build
-
-  cmake -DCMAKE_BUILD_TYPE=Release \
-        -DBUILD_TESTING=OFF \
-        -DWITH_EXAMPLES=OFF \
-        -DCMAKE_POSITION_INDEPENDENT_CODE=ON \
-        -DWITH_OTLP=ON \
-        -DWITH_OTLP_HTTP=OFF \
-        ..
-  make
-  make install
-fi
-
 # Get Brotli source and deps
 cd "$BUILD_PATH"
 git clone --depth=1 https://github.com/google/ngx_brotli.git
@@ -675,11 +635,6 @@ WITH_MODULES=" \
   --add-dynamic-module=$BUILD_PATH/ngx_http_geoip2_module-${GEOIP2_VERSION} \
   --add-dynamic-module=$BUILD_PATH/ngx_brotli"
 
-if [ $USE_OPENTELEMETRY = true ]; then
-  WITH_MODULES+=" \
-    --add-dynamic-module=$BUILD_PATH/opentelemetry-cpp-contrib-$OPENTELEMETRY_CONTRIB_COMMIT/instrumentation/nginx"
-fi
-
 ./configure \
   --prefix=/usr/local/nginx \
   --conf-path=/etc/nginx/nginx.conf \
diff --git a/images/nginx/rootfs/entrypoint.sh b/images/nginx/rootfs/entrypoint.sh
new file mode 100644
index 000000000..9479831f1
--- /dev/null
+++ b/images/nginx/rootfs/entrypoint.sh
@@ -0,0 +1,27 @@
+#!/bin/bash
+
+# Copyright 2022 The Kubernetes Authors.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+set -o errexit
+set -o nounset
+set -o pipefail
+
+if [ -d "/modules_mount/etc/nginx/modules" ]; then
+	for dir in /modules_mount/etc/nginx/modules/*; do
+		cp "$dir"/* "/etc/nginx/modules/$(basename "$dir")"
+	done
+fi
+
+exec "$@"
diff --git a/images/opentelemetry/Makefile b/images/opentelemetry/Makefile
new file mode 100644
index 000000000..bc5876525
--- /dev/null
+++ b/images/opentelemetry/Makefile
@@ -0,0 +1,57 @@
+# Copyright 2021 The Kubernetes Authors. All rights reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+.DEFAULT_GOAL:=build
+
+# set default shell
+SHELL=/bin/bash -o pipefail -o errexit
+
+DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
+INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
+
+# 0.0.0 shouldn't clobber any released builds
+TAG ?= 0.0
+REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
+
+IMAGE = $(REGISTRY)/opentelemetry
+
+# required to enable buildx
+export DOCKER_CLI_EXPERIMENTAL=enabled
+
+# build with buildx
+PLATFORMS?=linux/amd64,linux/arm
+OUTPUT=
+PROGRESS=plain
+build: ensure-buildx
+	docker buildx build \
+		--platform=${PLATFORMS} $(OUTPUT) \
+		--progress=$(PROGRESS) \
+		--pull \
+		--tag $(IMAGE):$(TAG) rootfs
+
+# push the cross built image
+push: OUTPUT=--push
+push: build
+
+# enable buildx
+ensure-buildx:
+# this is required for cloudbuild
+ifeq ("$(wildcard $(INIT_BUILDX))","")
+	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/hack/init-buildx.sh | bash
+else
+	@exec $(INIT_BUILDX)
+endif
+	@echo "done"
+
+.PHONY: build push ensure-buildx
diff --git a/images/opentelemetry/README.md b/images/opentelemetry/README.md
new file mode 100644
index 000000000..f5c3d90de
--- /dev/null
+++ b/images/opentelemetry/README.md
@@ -0,0 +1,5 @@
+# OpenTelemetry library builder
+
+**How to use this image:**
+This image only contains the necessary files in /usr/local and /etc/nginx/opentelemetry to 
+be copied to Ingress Controller deployment when OpenTelemetry is enabled
diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
new file mode 100644
index 000000000..d507b8f1a
--- /dev/null
+++ b/images/opentelemetry/cloudbuild.yaml
@@ -0,0 +1,24 @@
+timeout: 10800s
+options:
+  substitution_option: ALLOW_LOOSE
+  # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
+  machineType: N1_HIGHCPU_32
+steps:
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
+    entrypoint: bash
+    env:
+      - DOCKER_CLI_EXPERIMENTAL=enabled
+      - TAG=$_GIT_TAG
+      - BASE_REF=$_PULL_BASE_REF
+      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
+      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
+      # set the home to /root explicitly to if using docker buildx
+      - HOME=/root
+    args:
+    - -c
+    - |
+      gcloud auth configure-docker \
+      && make push
+substitutions:
+  _GIT_TAG: "12345"
+  _PULL_BASE_REF: "master"
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
new file mode 100644
index 000000000..bef5b5562
--- /dev/null
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -0,0 +1,28 @@
+# Copyright 2021 The Kubernetes Authors. All rights reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+
+FROM alpine:3.14.2 as builder
+
+COPY . /
+
+RUN apk update \
+	&& apk upgrade \
+	&& apk add -U bash \
+	&& /build.sh
+
+FROM busybox:latest 
+
+COPY --from=builder init_module.sh /usr/local/bin/init_module.sh
+COPY --from=builder /etc/nginx/modules /etc/nginx/modules
diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
new file mode 100755
index 000000000..60ace8bae
--- /dev/null
+++ b/images/opentelemetry/rootfs/build.sh
@@ -0,0 +1,111 @@
+#!/bin/bash
+
+# Copyright 2021 The Kubernetes Authors.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+set -o errexit
+set -o nounset
+set -o pipefail
+
+export NGINX_VERSION=1.19.9
+
+# Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp/compare/v1.0.0...main
+export OPENTELEMETRY_CPP_VERSION=1.0.0
+
+# Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/f4850...main
+export OPENTELEMETRY_CONTRIB_COMMIT=f48500884b1b32efc456790bbcdc2e6cf7a8e630
+
+export BUILD_PATH=/tmp/build
+
+rm -rf \
+   /var/cache/debconf/* \
+   /var/lib/apt/lists/* \
+   /var/log/* \
+   /tmp/* \
+   /var/tmp/*
+
+
+mkdir -p /etc/nginx
+mkdir --verbose -p "$BUILD_PATH"
+cd "$BUILD_PATH"
+
+apk add \
+  curl \
+  git \
+  build-base
+
+get_src()
+{
+  hash="$1"
+  url="$2"
+  f=$(basename "$url")
+
+  echo "Downloading $url"
+
+  curl -sSL "$url" -o "$f"
+  echo "$hash  $f" | sha256sum -c - || exit 10
+  tar xzf "$f"
+  rm -rf "$f"
+}
+
+
+get_src e462e11533d5c30baa05df7652160ff5979591d291736cfa5edb9fd2edb48c49 \
+        "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
+
+get_src 45c52498788e47131b20a4786dbb08f4390b8cb419bd3d61c88b503cafff3324 \
+        "https://github.com/open-telemetry/opentelemetry-cpp-contrib/archive/$OPENTELEMETRY_CONTRIB_COMMIT.tar.gz"
+
+# improve compilation times
+CORES=$(($(grep -c ^processor /proc/cpuinfo) - 1))
+
+export MAKEFLAGS=-j${CORES}
+
+apk add \
+  protobuf-dev \
+  grpc \
+  grpc-dev \
+  gtest-dev \
+  c-ares-dev \
+  pcre-dev
+
+cd $BUILD_PATH
+git clone --recursive https://github.com/open-telemetry/opentelemetry-cpp opentelemetry-cpp-$OPENTELEMETRY_CPP_VERSION
+cd "opentelemetry-cpp-$OPENTELEMETRY_CPP_VERSION"
+git checkout v$OPENTELEMETRY_CPP_VERSION
+mkdir .build
+cd .build
+
+cmake -DCMAKE_BUILD_TYPE=Release \
+      -DBUILD_TESTING=OFF \
+      -DWITH_EXAMPLES=OFF \
+      -DCMAKE_POSITION_INDEPENDENT_CODE=ON \
+      -DWITH_OTLP=ON \
+      -DWITH_OTLP_HTTP=OFF \
+      ..
+make
+make install
+
+# build nginx
+cd "$BUILD_PATH/nginx-$NGINX_VERSION"
+./configure \
+  --prefix=/usr/local/nginx \
+  --with-compat \
+  --add-dynamic-module=$BUILD_PATH/opentelemetry-cpp-contrib-$OPENTELEMETRY_CONTRIB_COMMIT/instrumentation/nginx
+
+make modules
+mkdir -p /etc/nginx/modules
+cp objs/otel_ngx_module.so /etc/nginx/modules/otel_ngx_module.so
+
+# remove .a files
+find /usr/local -name "*.a" -print | xargs /bin/rm
diff --git a/images/opentelemetry/rootfs/init_module.sh b/images/opentelemetry/rootfs/init_module.sh
new file mode 100755
index 000000000..f1e4b27d7
--- /dev/null
+++ b/images/opentelemetry/rootfs/init_module.sh
@@ -0,0 +1,21 @@
+#!/bin/sh
+
+# Copyright 2021 The Kubernetes Authors.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+set -o errexit
+set -o nounset
+set -o pipefail
+
+cp -R /etc/nginx/modules /modules_mount/etc/nginx/modules

From 9cf5d951aaab5d55427aa0e72b316eaaa48bfe26 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ga=C3=A9tan=20Collaud?= <gaetancollaud@gmail.com>
Date: Sun, 16 Jan 2022 22:37:28 +0100
Subject: [PATCH 0040/1641] jwt accomodation (#8126)

---
 docs/examples/customization/jwt/README.md | 48 +++++++++++++++++++++++
 1 file changed, 48 insertions(+)
 create mode 100644 docs/examples/customization/jwt/README.md

diff --git a/docs/examples/customization/jwt/README.md b/docs/examples/customization/jwt/README.md
new file mode 100644
index 000000000..a751ccb7b
--- /dev/null
+++ b/docs/examples/customization/jwt/README.md
@@ -0,0 +1,48 @@
+# Accommodation for JWT
+
+JWT (short for Json Web Token) is an authentication method widely used. Basically an authentication server generates
+a JWT and you then use this token in every request you make to a backend service. The JWT can be quite big and is
+present in every http headers. This means you may have to adapt the max-header size of your nginx-ingress in order
+to support it.
+
+## Symptoms
+
+If you use JWT and you get http 502 error from your ingress, it may be a sign that the buffer size is not big enough.
+
+To be 100% sure look at the logs of the `ingress-nginx-controller` pod, you should see something like this:
+
+```
+upstream sent too big header while reading response header from upstream...
+```
+
+
+## Increase buffer size for headers
+
+In nginx, we want to modify the property `proxy-buffer-size`. The size is arbitrary. It depends on your needs. Be aware
+that a high value can lower the performance of your ingress proxy. In general a value of 16k should get you covered.
+
+### Using helm
+If you're using helm you can simply use the [`config` properties](https://github.com/kubernetes/ingress-nginx/blob/main/charts/ingress-nginx/values.yaml#L37).
+```yaml
+ # -- Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/
+  config: 
+    proxy-buffer-size: 16k
+```
+
+## Manually in kubernetes config files
+
+If you use an already generated config from for a provider, you will have to change the `controller-configmap.yaml`
+
+```yaml
+---
+# Source: ingress-nginx/templates/controller-configmap.yaml
+apiVersion: v1
+kind: ConfigMap
+# ...
+data:
+  #...
+  proxy-buffer-size: "16k"
+```
+
+References:
+ * [Custom Configuration](../custom-configuration/)
\ No newline at end of file

From ae6ab1d5ed705b9721a587bb18c3883f7ecffbdc Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 16 Jan 2022 19:08:06 -0300
Subject: [PATCH 0041/1641] use github token for docs

---
 .github/workflows/docs.yaml | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 4fdff33d2..420808443 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -37,6 +37,9 @@ jobs:
       (github.repository == 'kubernetes/ingress-nginx') &&
       (needs.changes.outputs.docs == 'true')
 
+    permissions:
+      contents: write # needed to write releases
+
     steps:
 
       - name: Checkout master
@@ -45,4 +48,4 @@ jobs:
       - name: Deploy
         uses: ./.github/actions/mkdocs
         env:
-          PERSONAL_TOKEN: ${{ secrets.PERSONAL_TOKEN }}
+          PERSONAL_TOKEN: "${{ secrets.GITHUB_TOKEN }}"

From 0bc01f7c35410ce5cb07ee86ab530e99ae352026 Mon Sep 17 00:00:00 2001
From: Alois <aloisbarreras@icloud.com>
Date: Sun, 16 Jan 2022 17:17:28 -0500
Subject: [PATCH 0042/1641] Updating from/to www redirect to use
 X-Forwarded-Proto (#7623)

---
 rootfs/etc/nginx/template/nginx.tmpl | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 954d07fd7..07e36925b 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -586,11 +586,17 @@ http {
                 request_uri = string.sub(request_uri, 1, -2)
             end
 
+            {{ if $cfg.UseForwardedHeaders }}
+            local redirectScheme = ngx.var.http_x_forwarded_proto
+            {{ else }}
+            local redirectScheme = ngx.var.scheme
+            {{ end }}
+
             {{ if ne $all.ListenPorts.HTTPS 443 }}
             {{ $redirect_port := (printf ":%v" $all.ListenPorts.HTTPS) }}
-            return string.format("%s://%s%s%s", ngx.var.scheme, "{{ $redirect.To }}", "{{ $redirect_port }}", request_uri)
+            return string.format("%s://%s%s%s", redirectScheme, "{{ $redirect.To }}", "{{ $redirect_port }}", request_uri)
             {{ else }}
-            return string.format("%s://%s%s", ngx.var.scheme, "{{ $redirect.To }}", request_uri)
+            return string.format("%s://%s%s", redirectScheme, "{{ $redirect.To }}", request_uri)
             {{ end }}
         }
 

From 37326815882ad9a12886a0445217dde637fd0dc2 Mon Sep 17 00:00:00 2001
From: Nicolas Lamirault <nicolas.lamirault@gmail.com>
Date: Sun, 16 Jan 2022 23:29:28 +0100
Subject: [PATCH 0043/1641] Support additonal labels and all Kubernetes
 recommanded labels (#7186)

* Add: Kubernetes recommanded labels

Signed-off-by: Nicolas Lamirault <nicolas.lamirault@gmail.com>

* Add: support additional labels

Signed-off-by: Nicolas Lamirault <nicolas.lamirault@gmail.com>

* Add: commonLabels default value

Signed-off-by: Nicolas Lamirault <nicolas.lamirault@gmail.com>
---
 charts/ingress-nginx/templates/_helpers.tpl | 4 ++++
 charts/ingress-nginx/values.yaml            | 6 ++++++
 2 files changed, 10 insertions(+)

diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index 726224f18..a72af5d9d 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -88,7 +88,11 @@ helm.sh/chart: {{ include "ingress-nginx.chart" . }}
 {{- if .Chart.AppVersion }}
 app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
 {{- end }}
+app.kubernetes.io/part-of: {{ template "ingress-nginx.name" . }}
 app.kubernetes.io/managed-by: {{ .Release.Service }}
+{{- if .Values.commonLabels}}
+{{ toYaml .Values.commonLabels }}
+{{- end }}
 {{- end -}}
 
 {{/*
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index a030ff2db..d30c170b6 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -7,6 +7,12 @@
 # nameOverride:
 # fullnameOverride:
 
+## Labels to apply to all resources
+##
+commonLabels: {}
+# scmhash: abc123
+# myLabel: aakkmd
+
 controller:
   name: controller
   image:

From 784f9c53bbf50aa49f8f6a82d951e95828b21f2f Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Mon, 17 Jan 2022 05:35:28 +0530
Subject: [PATCH 0044/1641] checking mkdocs & ghpages (#8150)

---
 docs/user-guide/basic-usage.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/user-guide/basic-usage.md b/docs/user-guide/basic-usage.md
index 089c08b3e..2142121d2 100644
--- a/docs/user-guide/basic-usage.md
+++ b/docs/user-guide/basic-usage.md
@@ -6,7 +6,7 @@ First of all follow the instructions to install ingress-nginx. Then imagine that
 
 Let's say that you want to expose the first at `myServiceA.foo.org` and the second at `myServiceB.foo.org`.
 
-If cluster version < 1.19 you can create two **ingress** resources like this:
+If the cluster version is < 1.19, you can create two **ingress** resources like this:
 
 ```
 apiVersion: networking.k8s.io/v1beta1
@@ -91,4 +91,4 @@ On many cloud providers ingress-nginx will also create the corresponding Load Ba
 kubectl get services -n ingress-nginx
 ```
 
-To test inside minikube refer to this documentation: [Set up Ingress on Minikube with the NGINX Ingress Controller](https://kubernetes.io/docs/tasks/access-application-cluster/ingress-minikube/)
\ No newline at end of file
+To test inside minikube refer to this documentation: [Set up Ingress on Minikube with the NGINX Ingress Controller](https://kubernetes.io/docs/tasks/access-application-cluster/ingress-minikube/)

From 1614027cd42aa3fac53d62afc235b86adec7543d Mon Sep 17 00:00:00 2001
From: Josh Soref <2119212+jsoref@users.noreply.github.com>
Date: Sun, 16 Jan 2022 19:57:28 -0500
Subject: [PATCH 0045/1641] Minor documentation cleanup (#7826)

* clarify link

* Add section headers

* console blocks

* grpc example json was not valid

* multi-tls update text

The preceding point 1 related to https://github.com/kubernetes-retired/contrib/blob/4f2cb51ef82b4dddb625f6053ad132c1faf07aa1/ingress/controllers/nginx/examples/ingress.yaml
and the deployments referenced in https://github.com/kubernetes-retired/contrib/blob/4f2cb51ef82b4dddb625f6053ad132c1faf07aa1/ingress/controllers/nginx/examples/README.md

They are not relevant to the current instructions.

* add whitespace around parens

* grammar

setup would be a proper noun, but it is not the intended concept, which is a state

* grammar

* is-only
* via

* Use bullets for choices

* ingress-controller

nginx is a distinct brand.

generally this repo talks about ingress-controller, although it is quite inconsistent about how...

* drop stray paren

* OAuth is a brand and needs an article here

also GitHub is a brand

* Indent text under numbered lists

* use e.g.

* Document that customer header config maps changes do not trigger updates

This should be removed if
https://github.com/kubernetes/ingress-nginx/issues/5238
is fixed.

* article

* period

* infinitive verb + period

* clarify that the gRPC server is responsible for listening for TCP traffic and not some other part of the backend application

* avoid using ; and reword

* whitespace

* brand: gRPC

* only-does is the right form

`for` adds nothing here

* spelling: GitHub

* punctuation

`;` is generally not the right punctuation...

* drop stray `to`

* sentence

* backticks

* fix link

* Improve readability of compare/vs

* Renumber list

* punctuation

* Favor Ingress-NGINX and Ingress NGINX

* Simplify custom header restart text

* Undo typo damage

Co-authored-by: Josh Soref <jsoref@users.noreply.github.com>
---
 README.md                                     |   4 +-
 docs/e2e-tests.md                             |   2 +-
 docs/examples/affinity/cookie/README.md       |  10 +-
 docs/examples/auth/basic/README.md            |  14 ++-
 docs/examples/auth/client-certs/README.md     |  21 ++--
 docs/examples/auth/external-auth/README.md    |  10 +-
 .../auth/oauth-external-auth/README.md        |  40 +++---
 .../configuration-snippets/README.md          |   9 +-
 .../customization/custom-headers/README.md    |  12 +-
 .../external-auth-headers/README.md           |  10 +-
 .../customization/ssl-dh-param/README.md      |   8 +-
 docs/examples/customization/sysctl/README.md  |   2 +-
 docs/examples/docker-registry/README.md       |   2 +-
 docs/examples/grpc/README.md                  |  30 ++---
 docs/examples/multi-tls/README.md             |   5 +-
 docs/examples/psp/README.md                   |   6 +-
 docs/examples/rewrite/README.md               |   6 +-
 docs/examples/static-ip/README.md             |  23 ++--
 docs/how-it-works.md                          |   2 +-
 docs/index.md                                 |  23 ++--
 docs/kubectl-plugin.md                        |   8 +-
 docs/troubleshooting.md                       | 116 +++++++++---------
 docs/user-guide/default-backend.md            |   2 +-
 docs/user-guide/monitoring.md                 |   4 +-
 docs/user-guide/multiple-ingress.md           |   4 +-
 .../nginx-configuration/configmap.md          |   2 +-
 .../third-party-addons/opentracing.md         |   2 +-
 27 files changed, 208 insertions(+), 169 deletions(-)

diff --git a/README.md b/README.md
index 6c604ddba..3fec178e5 100644
--- a/README.md
+++ b/README.md
@@ -1,4 +1,4 @@
-# NGINX Ingress Controller
+# Ingress NGINX Controller
 
 [![Go Report Card](https://goreportcard.com/badge/github.com/kubernetes/ingress-nginx)](https://goreportcard.com/report/github.com/kubernetes/ingress-nginx)
 [![GitHub license](https://img.shields.io/github/license/kubernetes/ingress-nginx.svg)](https://github.com/kubernetes/ingress-nginx/blob/main/LICENSE)
@@ -28,7 +28,7 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 
 ### Support Versions table 
 
-| Ingress-nginx version | k8s supported version        | Alpine Version | Nginx Version |
+| Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
 | v1.1.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         |  1.19.9†      |
 | v1.1.0                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 552a11f1e..29ef07161 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -1,6 +1,6 @@
 
 
-# e2e test suite for [NGINX Ingress Controller](https://github.com/kubernetes/ingress-nginx/tree/main/)
+# e2e test suite for [Ingress NGINX Controller](https://github.com/kubernetes/ingress-nginx/tree/main/)
 
 
 
diff --git a/docs/examples/affinity/cookie/README.md b/docs/examples/affinity/cookie/README.md
index a37bef6f1..891f828a2 100644
--- a/docs/examples/affinity/cookie/README.md
+++ b/docs/examples/affinity/cookie/README.md
@@ -14,13 +14,13 @@ Session affinity can be configured using the following annotations:
 |nginx.ingress.kubernetes.io/session-cookie-name|Name of the cookie that will be created|string (defaults to `INGRESSCOOKIE`)|
 |nginx.ingress.kubernetes.io/session-cookie-secure|Set the cookie as secure regardless the protocol of the incoming request|`"true"` or `"false"`|
 |nginx.ingress.kubernetes.io/session-cookie-path|Path that will be set on the cookie (required if your [Ingress paths][ingress-paths] use regular expressions)|string (defaults to the currently [matched path][ingress-paths])|
-|nginx.ingress.kubernetes.io/session-cookie-samesite|SameSite attribute to apply to the cookie|Browser accepted values are `None`, `Lax`, and `Strict`|
+|nginx.ingress.kubernetes.io/session-cookie-samesite|`SameSite` attribute to apply to the cookie|Browser accepted values are `None`, `Lax`, and `Strict`|
 |nginx.ingress.kubernetes.io/session-cookie-conditional-samesite-none|Will omit `SameSite=None` attribute for older browsers which reject the more-recently defined `SameSite=None` value|`"true"` or `"false"`
 |nginx.ingress.kubernetes.io/session-cookie-max-age|Time until the cookie expires, corresponds to the `Max-Age` cookie directive|number of seconds|
 |nginx.ingress.kubernetes.io/session-cookie-expires|Legacy version of the previous annotation for compatibility with older browsers, generates an `Expires` cookie directive by adding the seconds to the current date|number of seconds|
 |nginx.ingress.kubernetes.io/session-cookie-change-on-failure|When set to `false` nginx ingress will send request to upstream pointed by sticky cookie even if previous attempt failed. When set to `true` and previous attempt failed, sticky cookie will be changed to point to another upstream.|`true` or `false` (defaults to `false`)|
 
-You can create the [example Ingress](ingress.yaml) to test this:
+You can create the [session affinity example Ingress](ingress.yaml) to test this:
 
 ```console
 kubectl create -f ingress.yaml
@@ -66,13 +66,15 @@ Accept-Ranges: bytes
 ```
 
 In the example above, you can see that the response contains a `Set-Cookie` header with the settings we have defined.
-This cookie is created by NGINX, it contains a randomly generated key corresponding to the upstream used for that request (selected using [consistent hashing][consistent-hashing]) and has an `Expires` directive.
-If the user changes this cookie, NGINX creates a new one and redirects the user to another upstream.
+This cookie is created by the NGINX Ingress Controller, it contains a randomly generated key corresponding to the upstream used for that request (selected using [consistent hashing][consistent-hashing]) and has an `Expires` directive.
+If a client sends a cookie that doesn't correspond to an upstream, NGINX selects an upstream and creates a corresponding cookie.
 
 If the backend pool grows NGINX will keep sending the requests through the same server of the first request, even if it's overloaded.
 
 When the backend server is removed, the requests are re-routed to another upstream server. This does not require the cookie to be updated because the key's [consistent hash][consistent-hashing] will change.
 
+## Caveats
+
 When you have a Service pointing to more than one Ingress, with only one containing affinity configuration, the first created Ingress will be used.
 This means that you can face the situation that you've configured session affinity on one Ingress and it doesn't work because the Service is pointing to another Ingress that doesn't configure this.
 
diff --git a/docs/examples/auth/basic/README.md b/docs/examples/auth/basic/README.md
index ffd8495f3..5e890df80 100644
--- a/docs/examples/auth/basic/README.md
+++ b/docs/examples/auth/basic/README.md
@@ -3,6 +3,8 @@
 This example shows how to add authentication in a Ingress rule using a secret that contains a file generated with `htpasswd`.
 It's important the file generated is named `auth` (actually - that the secret has a key `data.auth`), otherwise the ingress-controller returns a 503.
 
+## Create htpasswd file
+
 ```console
 $ htpasswd -c auth foo
 New password: <bar>
@@ -11,11 +13,15 @@ Re-type new password:
 Adding password for user foo
 ```
 
+## Convert htpasswd into a secret
+
 ```console
 $ kubectl create secret generic basic-auth --from-file=auth
 secret "basic-auth" created
 ```
 
+## Examine secret
+
 ```console
 $ kubectl get secret basic-auth -o yaml
 apiVersion: v1
@@ -28,8 +34,10 @@ metadata:
 type: Opaque
 ```
 
+## Using kubectl, create an ingress tied to the basic-auth secret
+
 ```console
-echo "
+$ echo "
 apiVersion: networking.k8s.io/v1
 kind: Ingress
 metadata:
@@ -57,6 +65,8 @@ spec:
 " | kubectl create -f -
 ```
 
+## Use curl to confirm authorization is required by the ingress
+
 ```
 $ curl -v http://10.2.29.4/ -H 'Host: foo.bar.com'
 *   Trying 10.2.29.4...
@@ -84,6 +94,8 @@ $ curl -v http://10.2.29.4/ -H 'Host: foo.bar.com'
 * Connection #0 to host 10.2.29.4 left intact
 ```
 
+## Use curl with the correct credentials to connect to the ingress
+
 ```
 $ curl -v http://10.2.29.4/ -H 'Host: foo.bar.com' -u 'foo:bar'
 *   Trying 10.2.29.4...
diff --git a/docs/examples/auth/client-certs/README.md b/docs/examples/auth/client-certs/README.md
index a60aa14e7..94cf6c697 100644
--- a/docs/examples/auth/client-certs/README.md
+++ b/docs/examples/auth/client-certs/README.md
@@ -1,11 +1,12 @@
 # Client Certificate Authentication
 
 It is possible to enable Client-Certificate Authentication by adding additional annotations to your Ingress Resource.
-Before getting started you must have the following Certificates Setup:
 
-1. CA certificate and Key(Intermediate Certs need to be in CA)
-2. Server Certificate(Signed by CA) and Key (CN should be equal the hostname you will use)
-3. Client Certificate(Signed by CA) and Key
+Before getting started you must have the following Certificates configured:
+
+1. CA certificate and Key (Intermediate Certs need to be in CA)
+2. Server Certificate (Signed by CA) and Key (CN should be equal the hostname you will use)
+3. Client Certificate (Signed by CA) and Key
 
 For more details on the generation process, checkout the Prerequisite [docs](../../PREREQUISITES.md#client-certificate-authentication).
 
@@ -15,13 +16,13 @@ You can have as many certificates as you want. If they're in the binary DER form
 openssl x509 -in certificate.der -inform der -out certificate.crt -outform pem
 ```
 
-Then, you can concatenate them all in only one file, named 'ca.crt' as the following:
+Then, you can concatenate them all into one file, named 'ca.crt' with the following:
 
 ```bash
 cat certificate1.crt certificate2.crt certificate3.crt >> ca.crt
 ```
 
-**Note:** Make sure that the Key Size is greater than 1024 and Hashing Algorithm(Digest) is something better than md5
+**Note:** Make sure that the Key Size is greater than 1024 and Hashing Algorithm (Digest) is something better than md5
 for each certificate generated. Otherwise you will receive an error.
 
 ## Creating Certificate Secrets
@@ -29,7 +30,7 @@ for each certificate generated. Otherwise you will receive an error.
 There are many different ways of configuring your secrets to enable Client-Certificate
 Authentication to work properly.
 
-1. You can create a secret containing just the CA certificate and another
+*   You can create a secret containing just the CA certificate and another
     Secret containing the Server Certificate which is Signed by the CA.
 
     ```bash
@@ -37,14 +38,14 @@ Authentication to work properly.
     kubectl create secret generic tls-secret --from-file=tls.crt=server.crt --from-file=tls.key=server.key
     ```
 
-2. You can create a secret containing CA certificate along with the Server
-    Certificate, that can be used for both TLS and Client Auth.
+*   You can create a secret containing CA certificate along with the Server
+    Certificate that can be used for both TLS and Client Auth.
 
     ```bash
     kubectl create secret generic ca-secret --from-file=tls.crt=server.crt --from-file=tls.key=server.key --from-file=ca.crt=ca.crt
     ```
 
-3. If you want to also enable Certificate Revocation List verification you can 
+*  If you want to also enable Certificate Revocation List verification you can
    create the secret also containing the CRL file in PEM format:
    ```bash
    kubectl create secret generic ca-secret --from-file=ca.crt=ca.crt --from-file=ca.crl=ca.crl
diff --git a/docs/examples/auth/external-auth/README.md b/docs/examples/auth/external-auth/README.md
index 62ae72e2c..ad3ee8b09 100644
--- a/docs/examples/auth/external-auth/README.md
+++ b/docs/examples/auth/external-auth/README.md
@@ -1,6 +1,6 @@
 # External Basic Authentication
 
-### Example 1:
+### Example 1
 
 Use an external service (Basic Auth) located in `https://httpbin.org`
 
@@ -44,7 +44,7 @@ status:
 $
 ```
 
-Test 1: no username/password (expect code 401)
+## Test 1: no username/password (expect code 401)
 
 ```console
 $ curl -k http://172.17.4.99 -v -H 'Host: external-auth-01.sample.com'
@@ -74,7 +74,8 @@ $ curl -k http://172.17.4.99 -v -H 'Host: external-auth-01.sample.com'
 * Connection #0 to host 172.17.4.99 left intact
 ```
 
-Test 2: valid username/password (expect code 200)
+## Test 2: valid username/password (expect code 200)
+
 ```
 $ curl -k http://172.17.4.99 -v -H 'Host: external-auth-01.sample.com' -u 'user:passwd'
 * Rebuilt URL to: http://172.17.4.99/
@@ -121,7 +122,8 @@ BODY:
 -no body in request-
 ```
 
-Test 3: invalid username/password (expect code 401)
+## Test 3: invalid username/password (expect code 401)
+
 ```
 curl -k http://172.17.4.99 -v -H 'Host: external-auth-01.sample.com' -u 'user:user'
 * Rebuilt URL to: http://172.17.4.99/
diff --git a/docs/examples/auth/oauth-external-auth/README.md b/docs/examples/auth/oauth-external-auth/README.md
index f6e21f488..a08928720 100644
--- a/docs/examples/auth/oauth-external-auth/README.md
+++ b/docs/examples/auth/oauth-external-auth/README.md
@@ -6,7 +6,7 @@ The `auth-url` and `auth-signin` annotations allow you to use an external
 authentication provider to protect your Ingress resources.
 
 !!! Important
-    This annotation requires `ingress-nginx-controller v0.9.0` or greater.)
+    This annotation requires `ingress-nginx-controller v0.9.0` or greater.
 
 ### Key Detail
 
@@ -32,45 +32,47 @@ metadata:
 ### Example: OAuth2 Proxy + Kubernetes-Dashboard
 
 This example will show you how to deploy [`oauth2_proxy`](https://github.com/pusher/oauth2_proxy)
-into a Kubernetes cluster and use it to protect the Kubernetes Dashboard using github as oAuth2 provider
+into a Kubernetes cluster and use it to protect the Kubernetes Dashboard using GitHub as the OAuth2 provider.
 
 #### Prepare
 
 1. Install the kubernetes dashboard
 
-```console
-kubectl create -f https://raw.githubusercontent.com/kubernetes/kops/master/addons/kubernetes-dashboard/v1.10.1.yaml
-```
+    ```console
+    kubectl create -f https://raw.githubusercontent.com/kubernetes/kops/master/addons/kubernetes-dashboard/v1.10.1.yaml
+    ```
 
-2. Create a [custom Github OAuth application](https://github.com/settings/applications/new)
+2. Create a [custom GitHub OAuth application](https://github.com/settings/applications/new)
 
-![Register OAuth2 Application](images/register-oauth-app.png)
+    ![Register OAuth2 Application](images/register-oauth-app.png)
 
-- Homepage URL is the FQDN in the Ingress rule, like `https://foo.bar.com`
-- Authorization callback URL is the same as the base FQDN plus `/oauth2/callback`, like `https://foo.bar.com/oauth2/callback`
+    - Homepage URL is the FQDN in the Ingress rule, like `https://foo.bar.com`
+    - Authorization callback URL is the same as the base FQDN plus `/oauth2/callback`, like `https://foo.bar.com/oauth2/callback`
 
-![Register OAuth2 Application](images/register-oauth-app-2.png)
+    ![Register OAuth2 Application](images/register-oauth-app-2.png)
 
 3. Configure oauth2_proxy values in the file [`oauth2-proxy.yaml`](https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/docs/examples/auth/oauth-external-auth/oauth2-proxy.yaml) with the values:
 
-- OAUTH2_PROXY_CLIENT_ID with the github `<Client ID>`
-- OAUTH2_PROXY_CLIENT_SECRET with the github `<Client Secret>`
-- OAUTH2_PROXY_COOKIE_SECRET with value of `python -c 'import os,base64; print(base64.b64encode(os.urandom(16)).decode("ascii"))'`
+    - OAUTH2_PROXY_CLIENT_ID with the github `<Client ID>`
+    - OAUTH2_PROXY_CLIENT_SECRET with the github `<Client Secret>`
+    - OAUTH2_PROXY_COOKIE_SECRET with value of `python -c 'import os,base64; print(base64.b64encode(os.urandom(16)).decode("ascii"))'`
 
 4. Customize the contents of the file [`dashboard-ingress.yaml`](https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/docs/examples/auth/oauth-external-auth/dashboard-ingress.yaml):
 
-Replace `__INGRESS_HOST__` with a valid FQDN and `__INGRESS_SECRET__` with a Secret with a valid SSL certificate.
+    Replace `__INGRESS_HOST__` with a valid FQDN and `__INGRESS_SECRET__` with a Secret with a valid SSL certificate.
 
 5. Deploy the oauth2 proxy and the ingress rules running:
 
-```console
-$ kubectl create -f oauth2-proxy.yaml,dashboard-ingress.yaml
-```
+    ```console
+    $ kubectl create -f oauth2-proxy.yaml,dashboard-ingress.yaml
+    ```
 
-Test the oauth integration accessing the configured URL, like `https://foo.bar.com`
+### Test
+
+Test the oauth integration accessing the configured URL, e.g. `https://foo.bar.com`
 
 ![Register OAuth2 Application](images/github-auth.png)
 
-![Github authentication](images/oauth-login.png)
+![GitHub authentication](images/oauth-login.png)
 
 ![Kubernetes dashboard](images/dashboard.png)
diff --git a/docs/examples/customization/configuration-snippets/README.md b/docs/examples/customization/configuration-snippets/README.md
index d60a3d1a0..5ef230ff1 100644
--- a/docs/examples/customization/configuration-snippets/README.md
+++ b/docs/examples/customization/configuration-snippets/README.md
@@ -2,13 +2,16 @@
 
 ## Ingress
 
-The Ingress in [this example](ingress.yaml) adds a custom header to Nginx configuration that only applies to that specific Ingress. If you want to add headers that apply globally to all Ingresses, please have a look at [this example](../custom-headers/README.md).
+The Ingress in [this example](ingress.yaml) adds a custom header to Nginx configuration that only applies to that specific Ingress. If you want to add headers that apply globally to all Ingresses, please have a look at [an example of specifying customer headers](../custom-headers/README.md).
 
 ```console
-$ kubectl apply -f ingress.yaml
+kubectl apply -f ingress.yaml
 ```
 
 ## Test
 
 Check if the contents of the annotation are present in the nginx.conf file using:
-`kubectl exec ingress-nginx-controller-873061567-4n3k2 -n kube-system -- cat /etc/nginx/nginx.conf`
+
+```console
+kubectl exec ingress-nginx-controller-873061567-4n3k2 -n kube-system -- cat /etc/nginx/nginx.conf
+```
diff --git a/docs/examples/customization/custom-headers/README.md b/docs/examples/customization/custom-headers/README.md
index 378f2aa87..499bfc386 100644
--- a/docs/examples/customization/custom-headers/README.md
+++ b/docs/examples/customization/custom-headers/README.md
@@ -1,5 +1,15 @@
 # Custom Headers
 
+## Caveats
+
+Changes to the custom header config maps do not force a reload of the ingress-nginx-controllers.
+
+### Workaround
+
+To work around this limitation, perform a rolling restart of the deployment.
+
+## Example
+
 This example demonstrates configuration of the nginx ingress controller via
 a ConfigMap to pass a custom list of headers to the upstream
 server.
@@ -29,4 +39,4 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/main
 ## Test
 
 Check the contents of the ConfigMaps are present in the nginx.conf file using:
-`kubectl exec ingress-nginx-controller-873061567-4n3k2 -n ingress-nginx -- cat /etc/nginx/nginx.conf`
\ No newline at end of file
+`kubectl exec ingress-nginx-controller-873061567-4n3k2 -n ingress-nginx -- cat /etc/nginx/nginx.conf`
diff --git a/docs/examples/customization/external-auth-headers/README.md b/docs/examples/customization/external-auth-headers/README.md
index 9aaf6864b..946088b4b 100644
--- a/docs/examples/customization/external-auth-headers/README.md
+++ b/docs/examples/customization/external-auth-headers/README.md
@@ -1,7 +1,7 @@
 # External authentication, authentication service response headers propagation
 
 This example demonstrates propagation of selected authentication service response headers
-to backend service.
+to a backend service.
 
 Sample configuration includes:
 
@@ -37,7 +37,7 @@ public-demo-echo-service   public-demo-echo-service.kube.local             80
 secure-demo-echo-service   secure-demo-echo-service.kube.local             80        1m
 ```
 
-Test 1: public service with no auth header
+## Test 1: public service with no auth header
 
 ```console
 $ curl -H 'Host: public-demo-echo-service.kube.local' -v 192.168.99.100
@@ -60,7 +60,7 @@ $ curl -H 'Host: public-demo-echo-service.kube.local' -v 192.168.99.100
 UserID: , UserRole:
 ```
 
-Test 2: secure service with no auth header
+## Test 2: secure service with no auth header
 
 ```console
 $ curl -H 'Host: secure-demo-echo-service.kube.local' -v 192.168.99.100
@@ -89,7 +89,7 @@ $ curl -H 'Host: secure-demo-echo-service.kube.local' -v 192.168.99.100
 * Connection #0 to host 192.168.99.100 left intact
 ```
 
-Test 3: public service with valid auth header
+## Test 3: public service with valid auth header
 
 ```console
 $ curl -H 'Host: public-demo-echo-service.kube.local' -H 'User:internal' -v 192.168.99.100
@@ -113,7 +113,7 @@ $ curl -H 'Host: public-demo-echo-service.kube.local' -H 'User:internal' -v 192.
 UserID: 1443635317331776148, UserRole: admin
 ```
 
-Test 4: secure service with valid auth header
+## Test 4: secure service with valid auth header
 
 ```console
 $ curl -H 'Host: secure-demo-echo-service.kube.local' -H 'User:internal' -v 192.168.99.100
diff --git a/docs/examples/customization/ssl-dh-param/README.md b/docs/examples/customization/ssl-dh-param/README.md
index 9029b834b..2eae67ce2 100644
--- a/docs/examples/customization/ssl-dh-param/README.md
+++ b/docs/examples/customization/ssl-dh-param/README.md
@@ -1,7 +1,7 @@
 # Custom DH parameters for perfect forward secrecy
 
 This example aims to demonstrate the deployment of an nginx ingress controller and
-use a ConfigMap to configure custom Diffie-Hellman parameters file to help with
+use a ConfigMap to configure a custom Diffie-Hellman parameters file to help with
 "Perfect Forward Secrecy".
 
 ## Custom configuration
@@ -27,7 +27,7 @@ $ kubectl create -f configmap.yaml
 ## Custom DH parameters secret
 
 ```console
-$> openssl dhparam 4096 2> /dev/null | base64
+$ openssl dhparam 4096 2> /dev/null | base64
 LS0tLS1CRUdJTiBESCBQQVJBTUVURVJ...
 ```
 
@@ -52,4 +52,6 @@ $ kubectl create -f ssl-dh-param.yaml
 ## Test
 
 Check the contents of the configmap is present in the nginx.conf file using:
-`kubectl exec ingress-nginx-controller-873061567-4n3k2 -n kube-system -- cat /etc/nginx/nginx.conf`
+```console
+$ kubectl exec ingress-nginx-controller-873061567-4n3k2 -n kube-system -- cat /etc/nginx/nginx.conf
+```
diff --git a/docs/examples/customization/sysctl/README.md b/docs/examples/customization/sysctl/README.md
index b285808b5..54fbe4355 100644
--- a/docs/examples/customization/sysctl/README.md
+++ b/docs/examples/customization/sysctl/README.md
@@ -1,6 +1,6 @@
 # Sysctl tuning
 
-This example aims to demonstrate the use of an Init Container to adjust sysctl default values using `kubectl patch`
+This example aims to demonstrate the use of an Init Container to adjust sysctl default values using `kubectl patch`.
 
 ```console
 kubectl patch deployment -n ingress-nginx ingress-nginx-controller \
diff --git a/docs/examples/docker-registry/README.md b/docs/examples/docker-registry/README.md
index 102c8d39d..8ba230f2c 100644
--- a/docs/examples/docker-registry/README.md
+++ b/docs/examples/docker-registry/README.md
@@ -1,6 +1,6 @@
 # Docker registry
 
-This example demonstrates how to deploy a [docker registry](https://github.com/docker/distribution) in the cluster and configure Ingress enable access from Internet
+This example demonstrates how to deploy a [docker registry](https://github.com/docker/distribution) in the cluster and configure Ingress to enable access from the Internet.
 
 ## Deployment
 
diff --git a/docs/examples/grpc/README.md b/docs/examples/grpc/README.md
index 7a9c2aef2..2d1929b66 100644
--- a/docs/examples/grpc/README.md
+++ b/docs/examples/grpc/README.md
@@ -1,28 +1,28 @@
 # gRPC
 
-This example demonstrates how to route traffic to a gRPC service through the nginx controller.
+This example demonstrates how to route traffic to a gRPC service through the Ingress-NGINX controller.
 
 ## Prerequisites
 
 1. You have a kubernetes cluster running.
-2. You have a domain name such as `example.com` that is configured to route traffic to the ingress controller.
+2. You have a domain name such as `example.com` that is configured to route traffic to the Ingress-NGINX controller.
 3. You have the ingress-nginx-controller installed as per docs.
-4. You have a backend application running a gRPC server and listening for TCP traffic.  If you want, you can use <https://github.com/grpc/grpc-go/blob/91e0aeb192456225adf27966d04ada4cf8599915/examples/features/reflection/server/main.go> as an example.
-5. You're also responsible for provisioning an SSL certificate for the ingress. So you need to have a valid SSL certificate, deployed as a Kubernetes secret of type tls, in the same namespace as the gRPC application.
+4. You have a backend application running a gRPC server listening for TCP traffic.  If you want, you can use <https://github.com/grpc/grpc-go/blob/91e0aeb192456225adf27966d04ada4cf8599915/examples/features/reflection/server/main.go> as an example.
+5. You're also responsible for provisioning an SSL certificate for the ingress. So you need to have a valid SSL certificate, deployed as a Kubernetes secret of type `tls`, in the same namespace as the gRPC application.
 
 ### Step 1: Create a Kubernetes `Deployment` for gRPC app
 
 - Make sure your gRPC application pod is running and listening for connections. For example you can try a kubectl command like this below:
-  ```
+  ```console
   $ kubectl get po -A -o wide | grep go-grpc-greeter-server
   ```
 - If you have a gRPC app deployed in your cluster, then skip further notes in this Step 1, and continue from Step 2 below.
 
-- As an example gRPC application, we can use this app <https://github.com/grpc/grpc-go/blob/91e0aeb192456225adf27966d04ada4cf8599915/examples/features/reflection/server/main.go> .
+- As an example gRPC application, we can use this app <https://github.com/grpc/grpc-go/blob/91e0aeb192456225adf27966d04ada4cf8599915/examples/features/reflection/server/main.go>.
 
 - To create a container image for this app, you can use [this Dockerfile](https://github.com/kubernetes/ingress-nginx/blob/5a52d99ae85cfe5ef9535291b8326b0006e75066/images/go-grpc-greeter-server/rootfs/Dockerfile). 
 
-- If you use the Dockerfile mentioned above, to create a image, then given below is an example of a Kubernetes manifest, to create a deployment resource, that uses that image. If needed, then edit this manifest to suit your needs. Assuming the name of this yaml file is  `deployment.go-grpc-greeter-server.yaml` ;
+- If you use the Dockerfile mentioned above, to create a image, then you can use the following example Kubernetes manifest to create a deployment resource that uses that image. If necessary edit this manifest to suit your needs.
 
   ```
   cat <<EOF | kubectl apply -f -
@@ -59,7 +59,7 @@ This example demonstrates how to route traffic to a gRPC service through the ngi
 
 ### Step 2: Create the Kubernetes `Service` for the gRPC app
 
-- You can use the following example manifest to create a service of type ClusterIP. Edit the name/namespace/label/port to match your deployment/pod ;
+- You can use the following example manifest to create a service of type ClusterIP. Edit the name/namespace/label/port to match your deployment/pod.
   ```
   cat <<EOF | kubectl apply -f -
   apiVersion: v1
@@ -78,7 +78,7 @@ This example demonstrates how to route traffic to a gRPC service through the ngi
     type: ClusterIP
   EOF
   ```
-- You can save the above example manifest to a file with name `service.go-grpc-greeter-server.yaml` and edit it to match your deployment/pod, if required. You can create the service resource with a kubectl command like this ;
+- You can save the above example manifest to a file with name `service.go-grpc-greeter-server.yaml` and edit it to match your deployment/pod, if required. You can create the service resource with a kubectl command like this:
 
   ```
   $ kubectl create -f service.go-grpc-greeter-server.yaml
@@ -86,7 +86,7 @@ This example demonstrates how to route traffic to a gRPC service through the ngi
 
 ### Step 3: Create the Kubernetes `Ingress` resource for the gRPC app
 
-- Use the following example manifest of a ingress resource to create a ingress for your grpc app. If required, edit it to match your app's details like name, namespace, service, secret etc. Make sure you have the required SSL-Certificate, existing in your Kubernetes cluster, in the same namespace where the gRPC app is. The certificate must be available as a kubernetes secret resource, of type "kubernete.io/tls" https://kubernetes.io/docs/concepts/configuration/secret/#tls-secrets. This is because we are terminating TLS on the ingress;
+- Use the following example manifest of a ingress resource to create a ingress for your grpc app. If required, edit it to match your app's details like name, namespace, service, secret etc. Make sure you have the required SSL-Certificate, existing in your Kubernetes cluster in the same namespace where the gRPC app is. The certificate must be available as a kubernetes secret resource, of type "kubernete.io/tls" https://kubernetes.io/docs/concepts/configuration/secret/#tls-secrets. This is because we are terminating TLS on the ingress.
 
   ```
   cat <<EOF | kubectl apply -f -
@@ -121,7 +121,7 @@ This example demonstrates how to route traffic to a gRPC service through the ngi
   EOF
   ```
 
-- If you save the above example manifest as a file named `ingress.go-grpc-greeter-server.yaml` and edit it to match your deployment and service, you can create the ingress like this ;
+- If you save the above example manifest as a file named `ingress.go-grpc-greeter-server.yaml` and edit it to match your deployment and service, you can create the ingress like this:
 
   ```
   $ kubectl create -f ingress.go-grpc-greeter-server.yaml
@@ -144,7 +144,7 @@ This example demonstrates how to route traffic to a gRPC service through the ngi
   ```
   $ grpcurl grpctest.dev.mydomain.com:443 helloworld.Greeter/SayHello
   {
-    "message": "
+    "message": "Hello "
   }
   ```
 
@@ -162,12 +162,12 @@ This example demonstrates how to route traffic to a gRPC service through the ngi
 > https://proto.stack.build, a protocol buffer / gRPC build service that can use
 > to help make it easier for your users to consume your API.
 
-> See also the specific GRPC settings of NGINX: https://nginx.org/en/docs/http/ngx_http_grpc_module.html
+> See also the specific gRPC settings of NGINX: https://nginx.org/en/docs/http/ngx_http_grpc_module.html
 
 ### Notes on using response/request streams
 
-1. If your server does only response streaming and you expect a stream to be open longer than 60 seconds, you will have to change the `grpc_read_timeout` to accommodate for this.
-2. If your service does only request streaming and you expect a stream to be open longer than 60 seconds, you have to change the
+1. If your server only does response streaming and you expect a stream to be open longer than 60 seconds, you will have to change the `grpc_read_timeout` to accommodate this.
+2. If your service only does request streaming and you expect a stream to be open longer than 60 seconds, you have to change the
 `grpc_send_timeout` and the `client_body_timeout`.
 3. If you do both response and request streaming with an open stream longer than 60 seconds, you have to change all three timeouts: `grpc_read_timeout`, `grpc_send_timeout` and `client_body_timeout`.
 
diff --git a/docs/examples/multi-tls/README.md b/docs/examples/multi-tls/README.md
index 198bc6d38..cc990151b 100644
--- a/docs/examples/multi-tls/README.md
+++ b/docs/examples/multi-tls/README.md
@@ -2,9 +2,8 @@
 
 This example uses 2 different certificates to terminate SSL for 2 hostnames.
 
-1. Deploy the controller by creating the rc in the parent dir
-2. Create tls secrets for foo.bar.com and bar.baz.com as indicated in the yaml
-3. Create [multi-tls.yaml](multi-tls.yaml)
+1. Create tls secrets for foo.bar.com and bar.baz.com as indicated in the yaml
+2. Create [multi-tls.yaml](multi-tls.yaml)
 
 This should generate a segment like:
 ```console
diff --git a/docs/examples/psp/README.md b/docs/examples/psp/README.md
index 4d5f317fb..f8426baf2 100644
--- a/docs/examples/psp/README.md
+++ b/docs/examples/psp/README.md
@@ -1,17 +1,17 @@
 # Pod Security Policy (PSP)
 
-In most clusters today, by default, all resources (e.g. Deployments and ReplicatSets)
+In most clusters today, by default, all resources (e.g. `Deployments` and `ReplicatSets`)
 have permissions to create pods.
 Kubernetes however provides a more fine-grained authorization policy called
 [Pod Security Policy (PSP)](https://kubernetes.io/docs/concepts/policy/pod-security-policy/).
 
 PSP allows the cluster owner to define the permission of each object, for example creating a pod.
 If you have PSP enabled on the cluster, and you deploy ingress-nginx,
-you will need to provide the Deployment with the permissions to create pods.
+you will need to provide the `Deployment` with the permissions to create pods.
 
 Before applying any objects, first apply the PSP permissions by running:
 ```console
 kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/docs/examples/psp/psp.yaml
 ```
 
-Note: PSP permissions must be granted before to the creation of the Deployment and the ReplicaSet.
+Note: PSP permissions must be granted before the creation of the `Deployment` and the `ReplicaSet`.
diff --git a/docs/examples/rewrite/README.md b/docs/examples/rewrite/README.md
index fbe9f30c7..c529c34ef 100644
--- a/docs/examples/rewrite/README.md
+++ b/docs/examples/rewrite/README.md
@@ -1,6 +1,6 @@
 # Rewrite
 
-This example demonstrates how to use the Rewrite annotations
+This example demonstrates how to use `Rewrite` annotations.
 
 ## Prerequisites
 
@@ -15,9 +15,9 @@ Rewriting can be controlled using the following annotations:
 |Name|Description|Values|
 | --- | --- | --- |
 |nginx.ingress.kubernetes.io/rewrite-target|Target URI where the traffic must be redirected|string|
-|nginx.ingress.kubernetes.io/ssl-redirect|Indicates if the location section is accessible SSL only (defaults to True when Ingress contains a Certificate)|bool|
+|nginx.ingress.kubernetes.io/ssl-redirect|Indicates if the location section is only accessible via SSL (defaults to True when Ingress contains a Certificate)|bool|
 |nginx.ingress.kubernetes.io/force-ssl-redirect|Forces the redirection to HTTPS even if the Ingress is not TLS Enabled|bool|
-|nginx.ingress.kubernetes.io/app-root|Defines the Application Root that the Controller must redirect if it's in '/' context|string|
+|nginx.ingress.kubernetes.io/app-root|Defines the Application Root that the Controller must redirect if it's in `/` context|string|
 |nginx.ingress.kubernetes.io/use-regex|Indicates if the paths defined on an Ingress use regular expressions|bool|
 
 ## Examples
diff --git a/docs/examples/static-ip/README.md b/docs/examples/static-ip/README.md
index f74be5757..992839a24 100644
--- a/docs/examples/static-ip/README.md
+++ b/docs/examples/static-ip/README.md
@@ -1,6 +1,6 @@
 # Static IPs
 
-This example demonstrates how to assign a static-ip to an Ingress on through the Nginx controller.
+This example demonstrates how to assign a static-ip to an Ingress on through the Ingress-NGINX controller.
 
 ## Prerequisites
 
@@ -11,15 +11,15 @@ and that you have an ingress controller [running](../../deploy/) in your cluster
 
 ## Acquiring an IP
 
-Since instances of the nginx controller actually run on nodes in your cluster,
+Since instances of the ingress nginx controller actually run on nodes in your cluster,
 by default nginx Ingresses will only get static IPs if your cloudprovider
 supports static IP assignments to nodes. On GKE/GCE for example, even though
-nodes get static IPs, the IPs are not retained across upgrade.
+nodes get static IPs, the IPs are not retained across upgrades.
 
 To acquire a static IP for the ingress-nginx-controller, simply put it
 behind a Service of `Type=LoadBalancer`.
 
-First, create a loadbalancer Service and wait for it to acquire an IP
+First, create a loadbalancer Service and wait for it to acquire an IP:
 
 ```console
 $ kubectl create -f static-ip-svc.yaml
@@ -30,7 +30,7 @@ NAME               CLUSTER-IP     EXTERNAL-IP       PORT(S)
 ingress-nginx-lb   10.0.138.113   104.154.109.191   80:31457/TCP,443:32240/TCP   15m
 ```
 
-then, update the ingress controller so it adopts the static IP of the Service
+Then, update the ingress controller so it adopts the static IP of the Service
 by passing the `--publish-service` flag (the example yaml used in the next step
 already has it set to "ingress-nginx-lb").
 
@@ -42,7 +42,7 @@ deployment "ingress-nginx-controller" created
 ## Assigning the IP to an Ingress
 
 From here on every Ingress created with the `ingress.class` annotation set to
-`nginx` will get the IP allocated in the previous step
+`nginx` will get the IP allocated in the previous step.
 
 ```console
 $ kubectl create -f ingress-nginx.yaml
@@ -65,7 +65,7 @@ request_uri=http://104.154.109.191:8080/
 
 ## Retaining the IP
 
-You can test retention by deleting the Ingress
+You can test retention by deleting the Ingress:
 
 ```console
 $ kubectl delete ing ingress-nginx
@@ -85,16 +85,16 @@ ingress-nginx   *         104.154.109.191   80, 443   13m
 
 ## Promote ephemeral to static IP
 
-To promote the allocated IP to static, you can update the Service manifest
+To promote the allocated IP to static, you can update the Service manifest:
 
 ```console
 $ kubectl patch svc ingress-nginx-lb -p '{"spec": {"loadBalancerIP": "104.154.109.191"}}'
 "ingress-nginx-lb" patched
 ```
 
-and promote the IP to static (promotion works differently for cloudproviders,
-provided example is for GKE/GCE)
-`
+... and promote the IP to static (promotion works differently for cloudproviders,
+provided example is for GKE/GCE):
+
 ```console
 $ gcloud compute addresses create ingress-nginx-lb --addresses 104.154.109.191 --region us-central1
 Created [https://www.googleapis.com/compute/v1/projects/kubernetesdev/regions/us-central1/addresses/ingress-nginx-lb].
@@ -114,4 +114,3 @@ users:
 
 Now even if the Service is deleted, the IP will persist, so you can recreate the
 Service with `spec.loadBalancerIP` set to `104.154.109.191`.
-
diff --git a/docs/how-it-works.md b/docs/how-it-works.md
index 1e530d045..b7d48b00c 100644
--- a/docs/how-it-works.md
+++ b/docs/how-it-works.md
@@ -1,6 +1,6 @@
 # How it works
 
-The objective of this document is to explain how the NGINX Ingress controller works, in particular how the NGINX model is built and why we need one.
+The objective of this document is to explain how the Ingress-NGINX controller works, in particular how the NGINX model is built and why we need one.
 
 ## NGINX configuration
 
diff --git a/docs/index.md b/docs/index.md
index b06141814..bda45d317 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -1,6 +1,6 @@
 # Overview
 
-This is the documentation for the NGINX Ingress Controller.
+This is the documentation for the Ingress NGINX Controller.
 
 It is built around the [Kubernetes Ingress resource](https://kubernetes.io/docs/concepts/services-networking/ingress/), using a [ConfigMap](https://kubernetes.io/docs/concepts/configuration/configmap/) to store the controller configuration.
 
@@ -26,7 +26,7 @@ Its important because until now, a default install of the Ingress-NGINX controll
 
 On clusters with more than one instance of the Ingress-NGINX controller, all instances of the controllers must be aware of which Ingress objects they serve. The `ingressClassName` field of an Ingress is the way to let the controller know about that. 
 
-```
+```console
 kubectl explain ingressclass                                                           
 ```
 ```
@@ -67,7 +67,9 @@ FIELDS:
 
 There are 2 reasons primarily.
 
-_(Reason #1)_ Until K8s version 1.21, it was possible to create an Ingress resource using deprecated versions of the Ingress API, such as:
+### Reason #1
+
+Until K8s version 1.21, it was possible to create an Ingress resource using deprecated versions of the Ingress API, such as:
 
   - `extensions/v1beta1`
   - `networking.k8s.io/v1beta1`
@@ -76,7 +78,9 @@ You would get a message about deprecation, but the Ingress resource would get cr
 
 From K8s version 1.22 onwards, you can **only** access the Ingress API via the stable, `networking.k8s.io/v1` API. The reason is explained in the [official blog on deprecated ingress API versions](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/).
 
-_(Reason #2)_ if you are already using the Ingress-NGINX controller and then upgrade to K8s version v1.22 , there are several scenarios where your existing Ingress objects will not work how you expect. Read this FAQ to check which scenario matches your use case.
+### Reason #2
+
+If you are already using the Ingress-NGINX controller and then upgrade to K8s version v1.22 , there are several scenarios where your existing Ingress objects will not work how you expect. Read this FAQ to check which scenario matches your use case.
 
 ## What is ingressClassName field ?
 
@@ -85,7 +89,7 @@ _(Reason #2)_ if you are already using the Ingress-NGINX controller and then upg
 ```shell
 kubectl explain ingress.spec.ingressClassName
 ```
-```
+```console
 KIND:     Ingress
 VERSION:  networking.k8s.io/v1
 
@@ -112,7 +116,7 @@ The `.spec.ingressClassName` behavior has precedence over the deprecated `kubern
 
 - If you have only one instance of the Ingress-NGINX controller running in your cluster, and you still want to use IngressClass, you should add the annotation `ingressclass.kubernetes.io/is-default-class` in your IngressClass, so that any new Ingress objects will have this one as default IngressClass.
 
-In this case, you need to make your controller aware of the objects. If you have any Ingress objects that don't yet have either the [`.spec.ingressClassName`](https://kubernetes.io/docs/reference/kubernetes-api/service-resources/ingress-v1/#IngressSpec) field set in their manifest, or the ingress annotation (`kubernetes.io/ingress.class`), then you should start your Ingress-NGINX controller with the flag `--watch-ingress-without-class=true`.
+In this case, you need to make your controller aware of the objects. If you have any Ingress objects that don't yet have either the [`.spec.ingressClassName`](https://kubernetes.io/docs/reference/kubernetes-api/service-resources/ingress-v1/#IngressSpec) field set in their manifest, or the ingress annotation (`kubernetes.io/ingress.class`), then you should start your Ingress-NGINX controller with the flag [--watch-ingress-without-class=true](#what-is-the-flag-watch-ingress-without-class).
 
 You can configure your Helm chart installation's values file with `.controller.watchIngressWithoutClass: true`. 
 
@@ -130,7 +134,8 @@ metadata:
 spec:
   controller: k8s.io/ingress-nginx
 ```
-And add the value "spec.ingressClassName=nginx" in your Ingress objects
+
+And add the value `spec.ingressClassName=nginx` in your Ingress objects.
 
 
 ## I have multiple ingress objects in my cluster. What should I do ?
@@ -138,7 +143,7 @@ And add the value "spec.ingressClassName=nginx" in your Ingress objects
 
 
 ### What is the flag '--watch-ingress-without-class' ?
-- Its a flag that is passed,as an argument, to the `nginx-ingress-controller` executable. In the configuration, it looks like this ;
+- Its a flag that is passed,as an argument, to the `nginx-ingress-controller` executable. In the configuration, it looks like this:
 ```
 ...
 ...
@@ -209,7 +214,7 @@ If you start Ingress-Nginx B with the command line argument `--watch-ingress-wit
   ```
   helm repo update
   ```
-- Now, install an additional instance of the ingress-NGINX controller like this ;
+- Now, install an additional instance of the ingress-NGINX controller like this:
   ```
   helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
   --namespace ingress-nginx-2 \
diff --git a/docs/kubectl-plugin.md b/docs/kubectl-plugin.md
index 7f4205746..01be19f59 100644
--- a/docs/kubectl-plugin.md
+++ b/docs/kubectl-plugin.md
@@ -226,7 +226,9 @@ Use the `--service <service>` flag if your `ingress-nginx` `LoadBalancer` servic
 
 ### ingresses
 
-`kubectl ingress-nginx ingresses`, alternately `kubectl ingress-nginx ing`, shows a more detailed view of the ingress definitions in a namespace. Compare:
+`kubectl ingress-nginx ingresses`, alternately `kubectl ingress-nginx ing`, shows a more detailed view of the ingress definitions in a namespace.
+
+Compare:
 
 ```console
 $ kubectl get ingresses --all-namespaces
@@ -235,7 +237,7 @@ default     example-ingress1   testaddr.local,testaddr2.local   localhost   80
 default     test-ingress-2     *                                localhost   80      5d
 ```
 
-vs
+vs.
 
 ```console
 $ kubectl ingress-nginx ingresses --all-namespaces
@@ -272,7 +274,7 @@ Checking deployments...
       https://github.com/kubernetes/ingress-nginx/issues/3808
 ```
 
-to show the lints added **only** for a particular `ingress-nginx` release, use the `--from-version` and `--to-version` flags:
+To show the lints added **only** for a particular `ingress-nginx` release, use the `--from-version` and `--to-version` flags:
 
 ```console
 $ kubectl ingress-nginx lint --all-namespaces --verbose --from-version 0.24.0 --to-version 0.24.0
diff --git a/docs/troubleshooting.md b/docs/troubleshooting.md
index 2bcc97dca..2e8684a8b 100644
--- a/docs/troubleshooting.md
+++ b/docs/troubleshooting.md
@@ -13,7 +13,7 @@ Do not move it without providing redirects.
 There are many ways to troubleshoot the ingress-controller. The following are basic troubleshooting
 methods to obtain more information.
 
-Check the Ingress Resource Events
+### Check the Ingress Resource Events
 
 ```console
 $ kubectl get ing -n <namespace-of-ingress-resource>
@@ -41,7 +41,7 @@ Events:
   Normal  UPDATE  58s   ingress-nginx-controller  Ingress default/cafe-ingress
 ```
 
-Check the Ingress Controller Logs
+### Check the Ingress Controller Logs
 
 ```console
 $ kubectl get pods -n <namespace-of-ingress-controller>
@@ -58,7 +58,7 @@ NGINX Ingress controller
 ....
 ```
 
-Check the Nginx Configuration
+### Check the Nginx Configuration
 
 ```console
 $ kubectl get pods -n <namespace-of-ingress-controller>
@@ -80,7 +80,7 @@ http {
 ....
 ```
 
-Check if used Services Exist
+### Check if used Services Exist
 
 ```console
 $ kubectl get svc --all-namespaces
@@ -130,14 +130,14 @@ Both authentications must work:
 
 **Service authentication**
 
-The Ingress controller needs information from apiserver. Therefore, authentication is required, which can be achieved in two different ways:
+The Ingress controller needs information from apiserver. Therefore, authentication is required, which can be achieved in a couple of ways:
 
-1. _Service Account:_ This is recommended, because nothing has to be configured. The Ingress controller will use information provided by the system to communicate with the API server. See 'Service Account' section for details.
+* _Service Account:_ This is recommended, because nothing has to be configured. The Ingress controller will use information provided by the system to communicate with the API server. See 'Service Account' section for details.
 
-2. _Kubeconfig file:_ In some Kubernetes environments service accounts are not available. In this case a manual configuration is required. The Ingress controller binary can be started with the `--kubeconfig` flag. The value of the flag is a path to a file specifying how to connect to the API server. Using the `--kubeconfig` does not requires the flag `--apiserver-host`.
+* _Kubeconfig file:_ In some Kubernetes environments service accounts are not available. In this case a manual configuration is required. The Ingress controller binary can be started with the `--kubeconfig` flag. The value of the flag is a path to a file specifying how to connect to the API server. Using the `--kubeconfig` does not requires the flag `--apiserver-host`.
    The format of the file is identical to `~/.kube/config` which is used by kubectl to connect to the API server. See 'kubeconfig' section for details.
 
-3. _Using the flag `--apiserver-host`:_ Using this flag `--apiserver-host=http://localhost:8080` it is possible to specify an unsecured API server or reach a remote kubernetes cluster using [kubectl proxy](https://kubernetes.io/docs/user-guide/kubectl/kubectl_proxy/).
+* _Using the flag `--apiserver-host`:_ Using this flag `--apiserver-host=http://localhost:8080` it is possible to specify an unsecured API server or reach a remote kubernetes cluster using [kubectl proxy](https://kubernetes.io/docs/user-guide/kubectl/kubectl_proxy/).
    Please do not use this approach in production.
 
 In the diagram below you can see the full authentication flow with all options, starting with the browser
@@ -247,72 +247,72 @@ Note: The below is based on the nginx [documentation](https://docs.nginx.com/ngi
 
 1. SSH into the worker
 
-```console
-$ ssh user@workerIP
-```
+    ```console
+    $ ssh user@workerIP
+    ```
 
 2. Obtain the Docker Container Running nginx
 
-```console
-$ docker ps | grep ingress-nginx-controller
-CONTAINER ID        IMAGE               COMMAND             CREATED             STATUS              PORTS               NAMES
-d9e1d243156a        k8s.gcr.io/ingress-nginx/controller   "/usr/bin/dumb-init …"   19 minutes ago      Up 19 minutes                                                                            k8s_ingress-nginx-controller_ingress-nginx-controller-67956bf89d-mqxzt_kube-system_079f31ec-aa37-11e8-ad39-080027a227db_0
-```
+    ```console
+    $ docker ps | grep ingress-nginx-controller
+    CONTAINER ID        IMAGE               COMMAND             CREATED             STATUS              PORTS               NAMES
+    d9e1d243156a        k8s.gcr.io/ingress-nginx/controller   "/usr/bin/dumb-init …"   19 minutes ago      Up 19 minutes                                                                            k8s_ingress-nginx-controller_ingress-nginx-controller-67956bf89d-mqxzt_kube-system_079f31ec-aa37-11e8-ad39-080027a227db_0
+    ```
 
 3. Exec into the container
 
-```console
-$ docker exec -it --user=0 --privileged d9e1d243156a bash
-```
+    ```console
+    $ docker exec -it --user=0 --privileged d9e1d243156a bash
+    ```
 
 4. Make sure nginx is running in `--with-debug`
 
-```console
-$ nginx -V 2>&1 | grep -- '--with-debug'
-```
+    ```console
+    $ nginx -V 2>&1 | grep -- '--with-debug'
+    ```
 
 5. Get list of processes running on container
 
-```console
-$ ps -ef
-UID        PID  PPID  C STIME TTY          TIME CMD
-root         1     0  0 20:23 ?        00:00:00 /usr/bin/dumb-init /nginx-ingres
-root         5     1  0 20:23 ?        00:00:05 /ingress-nginx-controller --defa
-root        21     5  0 20:23 ?        00:00:00 nginx: master process /usr/sbin/
-nobody     106    21  0 20:23 ?        00:00:00 nginx: worker process
-nobody     107    21  0 20:23 ?        00:00:00 nginx: worker process
-root       172     0  0 20:43 pts/0    00:00:00 bash
-```
+    ```console
+    $ ps -ef
+    UID        PID  PPID  C STIME TTY          TIME CMD
+    root         1     0  0 20:23 ?        00:00:00 /usr/bin/dumb-init /nginx-ingres
+    root         5     1  0 20:23 ?        00:00:05 /ingress-nginx-controller --defa
+    root        21     5  0 20:23 ?        00:00:00 nginx: master process /usr/sbin/
+    nobody     106    21  0 20:23 ?        00:00:00 nginx: worker process
+    nobody     107    21  0 20:23 ?        00:00:00 nginx: worker process
+    root       172     0  0 20:43 pts/0    00:00:00 bash
+    ```
 
-7. Attach gdb to the nginx master process
+6. Attach gdb to the nginx master process
 
-```console
-$ gdb -p 21
-....
-Attaching to process 21
-Reading symbols from /usr/sbin/nginx...done.
-....
-(gdb)
-```
+    ```console
+    $ gdb -p 21
+    ....
+    Attaching to process 21
+    Reading symbols from /usr/sbin/nginx...done.
+    ....
+    (gdb)
+    ```
 
-8. Copy and paste the following:
+7. Copy and paste the following:
 
-```console
-set $cd = ngx_cycle->config_dump
-set $nelts = $cd.nelts
-set $elts = (ngx_conf_dump_t*)($cd.elts)
-while ($nelts-- > 0)
-set $name = $elts[$nelts]->name.data
-printf "Dumping %s to nginx_conf.txt\n", $name
-append memory nginx_conf.txt \
-        $elts[$nelts]->buffer.start $elts[$nelts]->buffer.end
-end
-```
+    ```console
+    set $cd = ngx_cycle->config_dump
+    set $nelts = $cd.nelts
+    set $elts = (ngx_conf_dump_t*)($cd.elts)
+    while ($nelts-- > 0)
+    set $name = $elts[$nelts]->name.data
+    printf "Dumping %s to nginx_conf.txt\n", $name
+    append memory nginx_conf.txt \
+            $elts[$nelts]->buffer.start $elts[$nelts]->buffer.end
+    end
+    ```
 
-9. Quit GDB by pressing CTRL+D
+8. Quit GDB by pressing CTRL+D
 
-10. Open nginx_conf.txt
+9. Open nginx_conf.txt
 
-```console
-cat nginx_conf.txt
-```
+    ```console
+    cat nginx_conf.txt
+    ```
diff --git a/docs/user-guide/default-backend.md b/docs/user-guide/default-backend.md
index d57b89323..f15561086 100644
--- a/docs/user-guide/default-backend.md
+++ b/docs/user-guide/default-backend.md
@@ -1,6 +1,6 @@
 # Default backend
 
-The default backend is a service which handles all URL paths and hosts the nginx controller doesn't understand
+The default backend is a service which handles all URL paths and hosts the Ingress-NGINX controller doesn't understand
 (i.e., all the requests that are not mapped with an Ingress).
 
 Basically a default backend exposes two URLs:
diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index 05d6a3f87..7d86260f0 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -22,11 +22,11 @@ This tutorial will show you how to install [Prometheus](https://prometheus.io/)
   --set-string controller.podAnnotations."prometheus\.io/scrape"="true" \
   --set-string controller.podAnnotations."prometheus\.io/port"="10254"
   ```
-  - You can validate that the controller is configured for metrics by looking at the values of the installed release, like this ;
+  - You can validate that the controller is configured for metrics by looking at the values of the installed release, like this:
   ```
   helm get values ingress-controller --namespace ingress-nginx
   ```
-  - You should be able to see the values shown below ;
+  - You should be able to see the values shown below:
   ```
   ..
   controller:
diff --git a/docs/user-guide/multiple-ingress.md b/docs/user-guide/multiple-ingress.md
index f13574044..83eeb3f48 100644
--- a/docs/user-guide/multiple-ingress.md
+++ b/docs/user-guide/multiple-ingress.md
@@ -82,7 +82,7 @@ metadata:
     kubernetes.io/ingress.class: "gce"
 ```
 
-will target the GCE controller, forcing the nginx controller to ignore it, while an annotation like
+will target the GCE controller, forcing the Ingress-NGINX controller to ignore it, while an annotation like:
 
 ```yaml
 metadata:
@@ -91,7 +91,7 @@ metadata:
     kubernetes.io/ingress.class: "nginx"
 ```
 
-will target the nginx controller, forcing the GCE controller to ignore it.
+will target the Ingress-NGINX controller, forcing the GCE controller to ignore it.
 
 You can change the value "nginx" to something else by setting the `--ingress-class` flag:
 
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index d35a19b1a..b48cc1028 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -221,7 +221,7 @@ Enables the return of the header Server from the backend instead of the generic
 
 ## allow-snippet-annotations
 
-Enables Ingress to parse and add *-snippet annotations/directives created by the user. _**default:**_ `true`;
+Enables Ingress to parse and add *-snippet annotations/directives created by the user. _**default:**_ `true`
 
 Warning: We recommend enabling this option only if you TRUST users with permission to create Ingress objects, as this 
 may allow a user to add restricted configurations to the final nginx.conf file
diff --git a/docs/user-guide/third-party-addons/opentracing.md b/docs/user-guide/third-party-addons/opentracing.md
index 27c64e300..468be24f7 100644
--- a/docs/user-guide/third-party-addons/opentracing.md
+++ b/docs/user-guide/third-party-addons/opentracing.md
@@ -140,7 +140,7 @@ kubectl create -f https://raw.githubusercontent.com/rnburn/zipkin-date-server/ma
 kubectl create -f https://raw.githubusercontent.com/rnburn/zipkin-date-server/master/kubernetes/deployment.yaml
 ```
 
-Also we need to configure the NGINX controller ConfigMap with the required values:
+Also we need to configure the Ingress-NGINX controller ConfigMap with the required values:
 
 ```
 $ echo '

From 0e5d4ad425cf519f7c674a16b9e8bda523b2566e Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 16 Jan 2022 22:25:28 -0300
Subject: [PATCH 0046/1641] Automatically generate helm docs (#8151)

---
 .github/workflows/ci.yaml        |  7 -------
 .github/workflows/helm.yaml      | 20 ++++++++++++++++++++
 charts/ingress-nginx/values.yaml |  2 +-
 3 files changed, 21 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 0d9ba2ad2..62843b1d7 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -137,13 +137,6 @@ jobs:
         run: |
           ./build/run-in-docker.sh ./hack/verify-chart-lint.sh
 
-      - name: Run helm-docs
-        run: |
-          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.6.0
-          ./helm-docs --chart-search-root=${GITHUB_WORKSPACE}/charts
-          git diff --exit-code
-          rm -f ./helm-docs
-
       - name: fix permissions
         run: |
           sudo mkdir -p $HOME/.kube
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index a99fcfaa6..7545e5d66 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -56,6 +56,26 @@ jobs:
         run: |
           git config --global user.name "$GITHUB_ACTOR"
           git config --global user.email "$GITHUB_ACTOR@users.noreply.github.com"
+      
+      - name: Set up Go 1.17
+        id: go
+        uses: actions/setup-go@v2
+        with:
+          go-version: 1.17
+
+      - name: Run helm-docs
+        run: |
+          cd ${GITHUB_WORKSPACE}
+          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.6.0
+          ./helm-docs --chart-search-root=${GITHUB_WORKSPACE}/charts
+          git diff --exit-code ${GITHUB_WORKSPACE}/charts/ingress-nginx/README.md
+          if [ $? -ne 0 ]; then
+             git add ${GITHUB_WORKSPACE}/charts/ingress-nginx/README.md
+             git commit -m "Update helm README"
+             git push --quiet https://x-access-token:${GITHUB_TOKEN}@github.com/${GITHUB_REPOSITORY}.git main > /dev/null 2>&1 
+          fi
+          rm ./helm-docs
+
 
       - name: Run chart-releaser
         uses: helm/chart-releaser-action@v1.2.1
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index d30c170b6..778951098 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -34,7 +34,7 @@ controller:
   # -- Configures the controller container name
   containerName: controller
 
-  # -- Configures the ports the nginx-controller listens on
+  # -- Configures the ports that the nginx-controller listens on
   containerPort:
     http: 80
     https: 443

From 2db580a51385c26a356ace9b511d0878955c5444 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 16 Jan 2022 22:49:11 -0300
Subject: [PATCH 0047/1641] fix helmdoc push shell script (#8152)

---
 .github/workflows/helm.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 7545e5d66..0dd718846 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -68,8 +68,8 @@ jobs:
           cd ${GITHUB_WORKSPACE}
           GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.6.0
           ./helm-docs --chart-search-root=${GITHUB_WORKSPACE}/charts
-          git diff --exit-code ${GITHUB_WORKSPACE}/charts/ingress-nginx/README.md
-          if [ $? -ne 0 ]; then
+          DIFF=$(git diff ${GITHUB_WORKSPACE}/charts/ingress-nginx/README.md)
+          if [ ! -z "$DIFF" ]; then
              git add ${GITHUB_WORKSPACE}/charts/ingress-nginx/README.md
              git commit -m "Update helm README"
              git push --quiet https://x-access-token:${GITHUB_TOKEN}@github.com/${GITHUB_REPOSITORY}.git main > /dev/null 2>&1 

From 51fa86e690c25433af02783d232289e6206b5a37 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 16 Jan 2022 22:52:10 -0300
Subject: [PATCH 0048/1641] Trigger new helmdoc generation

---
 charts/ingress-nginx/values.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 778951098..4e7e6ade1 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -42,7 +42,7 @@ controller:
   # -- Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/
   config: {}
 
-  # -- Annotations to be added to the controller config configuration configmap
+  # -- Annotations to be added to the controller config configuration configmap.
   configAnnotations: {}
 
   # -- Will add custom headers before sending traffic to backends according to https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/custom-headers

From c667cf083b53829c876f877585e8fa00cabc633f Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 16 Jan 2022 22:59:36 -0300
Subject: [PATCH 0049/1641] Last attempt to fix helm docs (#8153)

---
 .github/workflows/helm.yaml      | 4 +++-
 charts/ingress-nginx/values.yaml | 2 +-
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 0dd718846..1134a66f0 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -64,6 +64,8 @@ jobs:
           go-version: 1.17
 
       - name: Run helm-docs
+        env:
+          GITHUB_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
         run: |
           cd ${GITHUB_WORKSPACE}
           GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.6.0
@@ -72,7 +74,7 @@ jobs:
           if [ ! -z "$DIFF" ]; then
              git add ${GITHUB_WORKSPACE}/charts/ingress-nginx/README.md
              git commit -m "Update helm README"
-             git push --quiet https://x-access-token:${GITHUB_TOKEN}@github.com/${GITHUB_REPOSITORY}.git main > /dev/null 2>&1 
+             git push --force https://x-access-token:${GITHUB_TOKEN}@github.com/${GITHUB_REPOSITORY}.git main  
           fi
           rm ./helm-docs
 
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 4e7e6ade1..bddd1eb5c 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -71,7 +71,7 @@ controller:
   # Defaults to false
   watchIngressWithoutClass: false
 
-  # -- Process IngressClass per name (additionally as per spec.controller)
+  # -- Process IngressClass per name (additionally as per spec.controller).
   ingressClassByName: false
 
   # -- This configuration defines if Ingress Controller should allow users to set

From cce04fca486f81b5107a720e3b2d36f1b7a820b2 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Mon, 17 Jan 2022 10:09:30 -0300
Subject: [PATCH 0050/1641] Rollback on helmdoc generation (#8154)

---
 .github/workflows/helm.yaml | 22 ----------------------
 1 file changed, 22 deletions(-)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 1134a66f0..b0adb644e 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -57,28 +57,6 @@ jobs:
           git config --global user.name "$GITHUB_ACTOR"
           git config --global user.email "$GITHUB_ACTOR@users.noreply.github.com"
       
-      - name: Set up Go 1.17
-        id: go
-        uses: actions/setup-go@v2
-        with:
-          go-version: 1.17
-
-      - name: Run helm-docs
-        env:
-          GITHUB_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
-        run: |
-          cd ${GITHUB_WORKSPACE}
-          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.6.0
-          ./helm-docs --chart-search-root=${GITHUB_WORKSPACE}/charts
-          DIFF=$(git diff ${GITHUB_WORKSPACE}/charts/ingress-nginx/README.md)
-          if [ ! -z "$DIFF" ]; then
-             git add ${GITHUB_WORKSPACE}/charts/ingress-nginx/README.md
-             git commit -m "Update helm README"
-             git push --force https://x-access-token:${GITHUB_TOKEN}@github.com/${GITHUB_REPOSITORY}.git main  
-          fi
-          rm ./helm-docs
-
-
       - name: Run chart-releaser
         uses: helm/chart-releaser-action@v1.2.1
         env:

From 4badf201733f5a693289df56b5301eb0ba29d00f Mon Sep 17 00:00:00 2001
From: Marc Portabella Clotet
 <56038098+marcportabellaclotet-mt@users.noreply.github.com>
Date: Tue, 18 Jan 2022 00:16:49 +0100
Subject: [PATCH 0051/1641] #7271 feat:
 avoid-pdb-creation-when-default-backend-disabled-and-replicas-gt-1 (#8155)

* feat: avoid-pdb-creation-when-default-backend-disabled-and-replicas-gt-1

* fix: added-eol

* feat: avoid-pdb-creation-when-default-backend-disabled-and-replicas-gt-1

* fix: added-eol
---
 .../templates/default-backend-poddisruptionbudget.yaml          | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml b/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
index 3a6e8ebde..00891cee5 100644
--- a/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
+++ b/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
@@ -1,3 +1,4 @@
+{{- if .Values.defaultBackend.enabled -}}
 {{- if or (gt (.Values.defaultBackend.replicaCount | int) 1) (gt (.Values.defaultBackend.autoscaling.minReplicas | int) 1) }}
 apiVersion: {{ ternary "policy/v1" "policy/v1beta1" (semverCompare ">=1.21.0-0" .Capabilities.KubeVersion.Version) }}
 kind: PodDisruptionBudget
@@ -17,3 +18,4 @@ spec:
       app.kubernetes.io/component: default-backend
   minAvailable: {{ .Values.defaultBackend.minAvailable }}
 {{- end }}
+{{- end }}

From 2aa34202c1ae42fc689cc6980817aedc80b75229 Mon Sep 17 00:00:00 2001
From: Aditya Kamath <theunrealgeek@gmail.com>
Date: Mon, 17 Jan 2022 15:24:49 -0800
Subject: [PATCH 0052/1641] Allow to configure delay before controller exits
 (#8143)

* Allow to configure delay before controller exits

Signed-off-by: Aditya Kamath <theunrealgeek@gmail.com>

* Address comments

Signed-off-by: Aditya Kamath <theunrealgeek@gmail.com>
---
 cmd/nginx/flags.go                        | 3 +++
 cmd/nginx/main.go                         | 8 ++++----
 cmd/nginx/main_test.go                    | 2 +-
 docs/user-guide/cli-arguments.md          | 1 +
 internal/ingress/controller/controller.go | 3 ++-
 5 files changed, 11 insertions(+), 6 deletions(-)

diff --git a/cmd/nginx/flags.go b/cmd/nginx/flags.go
index f9d6702fe..f620690b5 100644
--- a/cmd/nginx/flags.go
+++ b/cmd/nginx/flags.go
@@ -197,6 +197,8 @@ Takes the form "<host>:port". If not provided, no admission controller is starte
 		statusUpdateInterval = flags.Int("status-update-interval", status.UpdateInterval, "Time interval in seconds in which the status should check if an update is required. Default is 60 seconds")
 
 		shutdownGracePeriod = flags.Int("shutdown-grace-period", 0, "Seconds to wait after receiving the shutdown signal, before stopping the nginx process.")
+
+		postShutdownGracePeriod = flags.Int("post-shutdown-grace-period", 10, "Seconds to wait after the nginx process has stopped before controller exits.")
 	)
 
 	flags.StringVar(&nginx.MaxmindMirror, "maxmind-mirror", "", `Maxmind mirror url (example: http://geoip.local/databases`)
@@ -321,6 +323,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		PublishStatusAddress:       *publishStatusAddress,
 		UpdateStatusOnShutdown:     *updateStatusOnShutdown,
 		ShutdownGracePeriod:        *shutdownGracePeriod,
+		PostShutdownGracePeriod:    *postShutdownGracePeriod,
 		UseNodeInternalIP:          *useNodeInternalIP,
 		SyncRateLimit:              *syncRateLimit,
 		HealthCheckHost:            *healthzHost,
diff --git a/cmd/nginx/main.go b/cmd/nginx/main.go
index cbfca547c..7293e6b10 100644
--- a/cmd/nginx/main.go
+++ b/cmd/nginx/main.go
@@ -155,14 +155,14 @@ func main() {
 	go startHTTPServer(conf.HealthCheckHost, conf.ListenPorts.Health, mux)
 	go ngx.Start()
 
-	handleSigterm(ngx, func(code int) {
+	handleSigterm(ngx, conf.PostShutdownGracePeriod, func(code int) {
 		os.Exit(code)
 	})
 }
 
 type exiter func(code int)
 
-func handleSigterm(ngx *controller.NGINXController, exit exiter) {
+func handleSigterm(ngx *controller.NGINXController, delay int, exit exiter) {
 	signalChan := make(chan os.Signal, 1)
 	signal.Notify(signalChan, syscall.SIGTERM)
 	<-signalChan
@@ -174,8 +174,8 @@ func handleSigterm(ngx *controller.NGINXController, exit exiter) {
 		exitCode = 1
 	}
 
-	klog.InfoS("Handled quit, awaiting Pod deletion")
-	time.Sleep(10 * time.Second)
+	klog.Infof("Handled quit, delaying controller exit for %d seconds", delay)
+	time.Sleep(time.Duration(delay) * time.Second)
 
 	klog.InfoS("Exiting", "code", exitCode)
 	exit(exitCode)
diff --git a/cmd/nginx/main_test.go b/cmd/nginx/main_test.go
index e6d24b301..2a29953ad 100644
--- a/cmd/nginx/main_test.go
+++ b/cmd/nginx/main_test.go
@@ -105,7 +105,7 @@ func TestHandleSigterm(t *testing.T) {
 
 	ngx := controller.NewNGINXController(conf, nil)
 
-	go handleSigterm(ngx, func(code int) {
+	go handleSigterm(ngx, 10, func(code int) {
 		if code != 1 {
 			t.Errorf("Expected exit code 1 but %d received", code)
 		}
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index bbf06b720..b9cd0c564 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -40,6 +40,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--maxmind-retries-count`          | Number of attempts to download the GeoIP DB. (default 1) |
 | `--maxmind-license-key`            | Maxmind license key to download GeoLite2 Databases. https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases |
 | `--metrics-per-host`               | Export metrics per-host (default true) |
+| `--post-shutdown-grace-period`     | Additional delay in seconds before controller container exits. (default 10) |
 | `--profiler-port`                  | Port to use for expose the ingress controller Go profiler when it is enabled. (default 10245) |
 | `--profiling`                      | Enable profiling via web interface host:port/debug/pprof/ (default true) |
 | `--publish-service`                | Service fronting the Ingress controller. Takes the form "namespace/name". When used together with update-status, the controller mirrors the address of this service's endpoints to the load-balancer status of all Ingress objects it satisfies. |
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index a4ae4217c..48a91b67b 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -118,7 +118,8 @@ type Configuration struct {
 
 	MonitorMaxBatchSize int
 
-	ShutdownGracePeriod int
+	PostShutdownGracePeriod int
+	ShutdownGracePeriod     int
 }
 
 // GetPublishService returns the Service used to set the load-balancer status of Ingresses.

From a665a409da87028896dbb3d8dfc78cf8a154e275 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Arthur=20Woimb=C3=A9e?= <arthur.woimbee@gmail.com>
Date: Tue, 18 Jan 2022 00:28:49 +0100
Subject: [PATCH 0053/1641] helm: ServiceMonitor: sane default
 namespaceSelector (#7998)

* helm: service-monitor: sane default namespaceSelector

* chart version bump (4.0.16)
---
 charts/ingress-nginx/Chart.yaml                               | 2 +-
 charts/ingress-nginx/templates/controller-servicemonitor.yaml | 4 ++++
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 961efc061..4d48ca0c3 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.0.15
+version: 4.0.16
 appVersion: 1.1.1
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
diff --git a/charts/ingress-nginx/templates/controller-servicemonitor.yaml b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
index 3e602d44d..74abe43a3 100644
--- a/charts/ingress-nginx/templates/controller-servicemonitor.yaml
+++ b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
@@ -30,6 +30,10 @@ spec:
 {{- end }}
 {{- if .Values.controller.metrics.serviceMonitor.namespaceSelector }}
   namespaceSelector: {{ toYaml .Values.controller.metrics.serviceMonitor.namespaceSelector | nindent 4 }}
+{{- else }}
+  namespaceSelector:
+    matchNames:
+      - {{ .Release.Namespace }}
 {{- end }}
 {{- if .Values.controller.metrics.serviceMonitor.targetLabels }}
   targetLabels:

From d16e0dec4865cbd5b937dbffb957423c308331c5 Mon Sep 17 00:00:00 2001
From: Alastair Firth <afirth@users.noreply.github.com>
Date: Tue, 18 Jan 2022 00:28:56 +0100
Subject: [PATCH 0054/1641] Static manifest generation uses kustomize instead
 of python (#8099)

* regenerate at 4.0.12

* bash for loop and static values files

* add .tool-versions

* fixup static manifests with kustomize instead of python

* remove spec.replicas where set

* generate manifests for all supported versions

* update docs

* remove all versions except default (1.20) for now

* update to 1.1.1/4.0.15
---
 RELEASE.md                                    |   61 +-
 deploy/static/provider/aws/deploy.yaml        | 1090 ++++++++--------
 .../deploy.yaml}                              | 1112 ++++++++--------
 .../kustomization.yaml                        |   11 +
 deploy/static/provider/baremetal/deploy.yaml  | 1096 ++++++++--------
 deploy/static/provider/cloud/deploy.yaml      | 1098 ++++++++--------
 deploy/static/provider/do/deploy.yaml         | 1094 ++++++++--------
 deploy/static/provider/exoscale/deploy.yaml   | 1090 ++++++++--------
 deploy/static/provider/kind/deploy.yaml       | 1114 ++++++++---------
 deploy/static/provider/scw/deploy.yaml        | 1092 ++++++++--------
 docs/deploy/index.md                          |   20 +-
 hack/.tool-versions                           |    2 +
 hack/generate-deploy-scripts.sh               |  227 +---
 .../common/kustomization.yaml                 |   14 +
 hack/manifest-templates/common/namespace.yaml |    7 +
 .../provider/aws/kustomization.yaml           |    4 +
 .../kustomization.yaml                        |    4 +
 .../aws/nlb-with-tls-termination/values.yaml  |   36 +
 .../provider/aws/values.yaml                  |    9 +
 .../provider/baremetal/kustomization.yaml     |    4 +
 .../provider/baremetal/values.yaml            |    7 +
 .../provider/cloud/kustomization.yaml         |    4 +
 .../provider/cloud/values.yaml                |    4 +
 .../provider/do/kustomization.yaml            |    4 +
 .../provider/do/values.yaml                   |   11 +
 .../provider/exoscale/kustomization.yaml      |    4 +
 .../provider/exoscale/values.yaml             |   17 +
 .../provider/kind/kustomization.yaml          |    4 +
 .../provider/kind/values.yaml                 |   24 +
 .../provider/scw/kustomization.yaml           |    4 +
 .../provider/scw/values.yaml                  |    9 +
 .../static-kustomization-template.yaml        |   11 +
 32 files changed, 4566 insertions(+), 4722 deletions(-)
 rename deploy/static/provider/aws/{deploy-tls-termination.yaml => nlb-with-tls-termination/deploy.yaml} (55%)
 create mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/kustomization.yaml
 create mode 100644 hack/.tool-versions
 create mode 100644 hack/manifest-templates/common/kustomization.yaml
 create mode 100644 hack/manifest-templates/common/namespace.yaml
 create mode 100644 hack/manifest-templates/provider/aws/kustomization.yaml
 create mode 100644 hack/manifest-templates/provider/aws/nlb-with-tls-termination/kustomization.yaml
 create mode 100644 hack/manifest-templates/provider/aws/nlb-with-tls-termination/values.yaml
 create mode 100644 hack/manifest-templates/provider/aws/values.yaml
 create mode 100644 hack/manifest-templates/provider/baremetal/kustomization.yaml
 create mode 100644 hack/manifest-templates/provider/baremetal/values.yaml
 create mode 100644 hack/manifest-templates/provider/cloud/kustomization.yaml
 create mode 100644 hack/manifest-templates/provider/cloud/values.yaml
 create mode 100644 hack/manifest-templates/provider/do/kustomization.yaml
 create mode 100644 hack/manifest-templates/provider/do/values.yaml
 create mode 100644 hack/manifest-templates/provider/exoscale/kustomization.yaml
 create mode 100644 hack/manifest-templates/provider/exoscale/values.yaml
 create mode 100644 hack/manifest-templates/provider/kind/kustomization.yaml
 create mode 100644 hack/manifest-templates/provider/kind/values.yaml
 create mode 100644 hack/manifest-templates/provider/scw/kustomization.yaml
 create mode 100644 hack/manifest-templates/provider/scw/values.yaml
 create mode 100644 hack/manifest-templates/static-kustomization-template.yaml

diff --git a/RELEASE.md b/RELEASE.md
index 4396c20fc..74fd3f1e4 100644
--- a/RELEASE.md
+++ b/RELEASE.md
@@ -1,6 +1,6 @@
 # RELEASE PROCESS
 
-## 1. BUILD the new Ingress-Nginx-Controller image 
+## 1. BUILD the new Ingress-Nginx-Controller image
 
 ### a. Make changes in codebase
 
@@ -8,7 +8,7 @@
 
 ### b. Make changes to appropriate files in [images directory ](images)
 
-- Make changes in /images 
+- Make changes in /images
 
 ### c. Create Pull Request
 
@@ -18,7 +18,7 @@
 
   - Example [NGINX_VERSION](images/nginx/rootfs/build.sh#L21), [SHA256](images/nginx/rootfs/build.sh#L124).
 
-  - If you are updating any component in [build.sh](images/nginx/rootfs/build.sh) please also update the SHA256 checksum of that component as well, the cloud build will fail with an exit 10 if not.  
+  - If you are updating any component in [build.sh](images/nginx/rootfs/build.sh) please also update the SHA256 checksum of that component as well, the cloud build will fail with an exit 10 if not.
 
 ### d. Merge
 
@@ -26,7 +26,7 @@
 
 ### e. Make sure cloudbuild is a success
 
-- Wait for [cloud build](https://console.cloud.google.com/cloud-build/builds?project=k8s-staging-ingress-nginx). If you don't have access to cloudbuild, you can also have a look at [this](https://prow.k8s.io/?repo=kubernetes%2Fingress-nginx&job=post-*), to see the progress of the build. 
+- Wait for [cloud build](https://console.cloud.google.com/cloud-build/builds?project=k8s-staging-ingress-nginx). If you don't have access to cloudbuild, you can also have a look at [this](https://prow.k8s.io/?repo=kubernetes%2Fingress-nginx&job=post-*), to see the progress of the build.
 
 - Proceed only after cloud-build is successful in building a new Ingress-Nginx-Controller image.
 
@@ -42,7 +42,7 @@
 ### b. Make changes to appropriate files in [images directory ](images)
 
 - Sometimes, you may also be needing to rebuild, images for one or multiple other related components of the Ingress-Nginx-Controller ecosystem. Make changes to the required files in the /images directory, if/as applicable, in the context of the release you are attempting.  :
-   
+
   - [e2e](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e-image)
 
     - Update references to e2e-test-runner image [If applicable] :
@@ -72,24 +72,24 @@
 
 ### e. Make sure cloudbuild is a success
 
-- Wait for [cloud build](https://console.cloud.google.com/cloud-build/builds?project=k8s-staging-ingress-nginx). If you don't have access to cloudbuild, you can also have a look at [this](https://prow.k8s.io/?repo=kubernetes%2Fingress-nginx&job=post-*), to see the progress of the build. 
+- Wait for [cloud build](https://console.cloud.google.com/cloud-build/builds?project=k8s-staging-ingress-nginx). If you don't have access to cloudbuild, you can also have a look at [this](https://prow.k8s.io/?repo=kubernetes%2Fingress-nginx&job=post-*), to see the progress of the build.
 
 - Proceed only after cloud-build is successful in building a new Ingress-Nginx-Controller image.
 
 
 ## 3. PROMOTE the Image(s):
 
-Promoting the images basically means that images, that were pushed to staging container registry in the steps above, now are also pushed to the public container registry. Thus are publicly available. Follow these steps to promote images: 
+Promoting the images basically means that images, that were pushed to staging container registry in the steps above, now are also pushed to the public container registry. Thus are publicly available. Follow these steps to promote images:
 
 ### a. Get the sha
 
-- Get the sha of the new image(s) of the controller, (and any other component image IF APPLICABLE to release), from the cloudbuild, from steps above 
+- Get the sha of the new image(s) of the controller, (and any other component image IF APPLICABLE to release), from the cloudbuild, from steps above
 
   - The sha is available in output from [cloud build](https://console.cloud.google.com/cloud-build/builds?project=k8s-staging-ingress-nginx)
 
   - The sha is also visible here https://console.cloud.google.com/gcr/images/k8s-staging-ingress-nginx/global/controller
 
-  - The sha is also visible [here]((https://prow.k8s.io/?repo=kubernetes%2Fingress-nginx&job=post-*)), after cloud build is finished. Click on the respective job, go to `Artifacts` section in the UI, then again `artifacts` in the directory browser. In the `build.log` at the very bottom you see something like this: 
+  - The sha is also visible [here]((https://prow.k8s.io/?repo=kubernetes%2Fingress-nginx&job=post-*)), after cloud build is finished. Click on the respective job, go to `Artifacts` section in the UI, then again `artifacts` in the directory browser. In the `build.log` at the very bottom you see something like this:
 
   ```
   ...
@@ -99,7 +99,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
 ### b. Add the new image to [k8s.io](http://github.com/kubernetes/k8s.io)
 
-- The sha(s) from the step before (and the tag(s) for the new image(s) have to be added, as a new line, in a file, of the [k8s.io](http://github.com/kubernetes/k8s.io) project of Kubernetes organization. 
+- The sha(s) from the step before (and the tag(s) for the new image(s) have to be added, as a new line, in a file, of the [k8s.io](http://github.com/kubernetes/k8s.io) project of Kubernetes organization.
 
 - Fork that other project (if you don't have a fork already).
 
@@ -113,7 +113,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
 - For making it easier, you can edit your branch directly in the browser. But be careful about making any mistake.
 
-- Insert the sha(s) & the tag(s), in a new line, in this file [Project kubernetes/k8s.io Ingress-Nginx-Controller Images](https://github.com/kubernetes/k8s.io/blob/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml)  Look at this [example PR and the diff](https://github.com/kubernetes/k8s.io/pull/2536) to see how it was done before 
+- Insert the sha(s) & the tag(s), in a new line, in this file [Project kubernetes/k8s.io Ingress-Nginx-Controller Images](https://github.com/kubernetes/k8s.io/blob/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml)  Look at this [example PR and the diff](https://github.com/kubernetes/k8s.io/pull/2536) to see how it was done before
 
 - Save and commit
 
@@ -130,13 +130,13 @@ Promoting the images basically means that images, that were pushed to staging co
 
 ## 4. PREPARE for a new Release
 
-- Make sure to get the tag and sha of the promoted image from the step before, either from cloudbuild or from [here](https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/ingress-nginx/controller). 
+- Make sure to get the tag and sha of the promoted image from the step before, either from cloudbuild or from [here](https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/ingress-nginx/controller).
 
 - This involves editing of several different files. So carefully follow the steps below and double check all changes with diff/grep etc., repeatedly. Mistakes here impact endusers.
 
 ### a. Make sure your git workspace is ready
 
-- Get your git workspace ready 
+- Get your git workspace ready
 
   - If not using a pre-existing fork, then Fork the repo kubernetes/ingress-nginx
 
@@ -165,7 +165,7 @@ Promoting the images basically means that images, that were pushed to staging co
     - appVersion
     - kubeVersion (**ONLY if applicable**)
     - annotations
-      - artifacthub.io/prerelease: "true" 
+      - artifacthub.io/prerelease: "true"
       - artifacthub.io/changes: |
         - Replace this line and other lines under this annotation with the Changelog. One process to generate the Changelog is described below
           - Install and configure github cli as per the docs of gh-cli  https://cli.github.com/,
@@ -230,41 +230,21 @@ Promoting the images basically means that images, that were pushed to staging co
 
   - Prepare to use a script to update the edit the static manifests and set the "image", "digest", "version" etc. fields to the desired value.
 
+  - This script depends on kustomize and helm. The versions are pinned in `hack/.tool-versions` and you can use [asdf](https://github.com/asdf-vm/asdf#asdf) to install them
 
-  - This script depends on python and a specific python package `pip3 install ruamel.yaml`
+  - Execute the script to update static manifests using that script [hack/generate-deploy-scripts.sh](https://github.com/kubernetes/ingress-nginx/blob/main/hack/generate-deploy-scripts.sh)
 
-  - Execute the script to update static manifests using that script [generate-deploy-scripts.sh](https://github.com/kubernetes/ingress-nginx/blob/main/hack/generate-deploy-scripts.sh)
   - Open some of the manifests and check if the script worked properly
 
   - Use grep -ir to search for any misses by the script or undesired changes
 
   - The script should properly set the image and the digest fields to the desired tag and semver
 
-  - Manually fix one problem that the script can not take care of.
 
-    - This problem is wrong formatting of a snippet in the file [deploy-tls-termination.yaml](https://github.com/kubernetes/ingress-nginx/blob/main/deploy/static/provider/aws/deploy-tls-termination.yaml)
-    - In the configMap section, for the configMap named ingress-nginx-controller, the "configMap.data" spec has a snippet
-
-    - This snippet becomes a single line, formatted with the newline character "\n"
-
-    - That single line formatted with "\n" needs to be changed as it does not meet yaml requirements
-
-    - At the time of writing this doc, the 'configMap.data' spec is at line number 39.
-
-    - So editing begins at line 40 (at the time of writing this doc)
-
-    - Make that snippet look like this ;
-      ```
-      data:
-        http-snippet:|
-          server{
-            listen 2443;
-            return 308 https://$host$request_uri;
-          }
-      ```
 
 ### f. Edit the changelog
-  [Changelog.md](https://github.com/kubernetes/ingress-nginx/blob/main/Changelog.md) 
+
+  [Changelog.md](https://github.com/kubernetes/ingress-nginx/blob/main/Changelog.md)
 - Each time a release is made, a new section is added to the Changelog.md file
 - A new section in the Changelog.md file consists of 3 components listed below
   - the "Image"
@@ -277,8 +257,9 @@ Promoting the images basically means that images, that were pushed to staging co
 - One process to generate this list of PRs is already described above in step 4c. So if you are following this document, then you have done this already and very likely have retained the file containing the list of PRs, in the format that is needed.
 
 ### g. Edit the Documentation:
+
 - Update the version in [docs/deploy/index.md](docs/deploy/index.md)
-- Update Supported versions in the Support Versions table in the README.md 
+- Update Supported versions in the Support Versions table in the README.md
 
 ### h. Edit stable.txt
 
@@ -294,7 +275,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
 - Open PR for releasing the new version of the Ingress-Nginx-Controller ;
   - Look at this PR for how it was done before [example PR](https://github.com/kubernetes/ingress-nginx/pull/7490)
-  - Create a PR 
+  - Create a PR
 
 ### b. Merge
 
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index e4856da9f..b74690c33 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -1,227 +1,249 @@
-
+#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
-  name: ingress-nginx
   labels:
-    app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-serviceaccount.yaml
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
-automountServiceAccountToken: true
 ---
-# Source: ingress-nginx/templates/controller-configmap.yaml
 apiVersion: v1
-kind: ConfigMap
+kind: ServiceAccount
 metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
   namespace: ingress-nginx
-data:
-  allow-snippet-annotations: 'true'
 ---
-# Source: ingress-nginx/templates/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - endpoints
-      - nodes
-      - pods
-      - secrets
-      - namespaces
-    verbs:
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - nodes
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
----
-# Source: ingress-nginx/templates/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/controller-role.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
-  - apiGroups:
-      - ''
-    resources:
-      - namespaces
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - pods
-      - secrets
-      - endpoints
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    resourceNames:
-      - ingress-controller-leader
-    verbs:
-      - get
-      - update
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    verbs:
-      - create
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
 ---
-# Source: ingress-nginx/templates/controller-rolebinding.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -229,459 +251,413 @@ roleRef:
   kind: Role
   name: ingress-nginx
 subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-service-webhook.yaml
-apiVersion: v1
-kind: Service
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  type: ClusterIP
-  ports:
-    - name: https-webhook
-      port: 443
-      targetPort: webhook
-      appProtocol: https
-  selector:
     app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/component: controller
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-service.yaml
 apiVersion: v1
 kind: Service
 metadata:
   annotations:
     service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
-    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: 'true'
+    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
     service.beta.kubernetes.io/aws-load-balancer-type: nlb
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
-  type: LoadBalancer
   externalTrafficPolicy: Local
-  ipFamilyPolicy: SingleStack
   ipFamilies:
-    - IPv4
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-    - name: http
-      port: 80
-      protocol: TCP
-      targetPort: http
-      appProtocol: http
-    - name: https
-      port: 443
-      protocol: TCP
-      targetPort: https
-      appProtocol: https
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
   selector:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
 ---
-# Source: ingress-nginx/templates/controller-deployment.yaml
 apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
   selector:
     matchLabels:
-      app.kubernetes.io/name: ingress-nginx
-      app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/component: controller
-  revisionHistoryLimit: 10
-  minReadySeconds: 0
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
   template:
     metadata:
       labels:
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
     spec:
-      dnsPolicy: ClusterFirst
       containers:
-        - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
-          imagePullPolicy: IfNotPresent
-          lifecycle:
-            preStop:
-              exec:
-                command:
-                  - /wait-shutdown
-          args:
-            - /nginx-ingress-controller
-            - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-            - --election-id=ingress-controller-leader
-            - --controller-class=k8s.io/ingress-nginx
-            - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-            - --validating-webhook=:8443
-            - --validating-webhook-certificate=/usr/local/certificates/cert
-            - --validating-webhook-key=/usr/local/certificates/key
-          securityContext:
-            capabilities:
-              drop:
-                - ALL
-              add:
-                - NET_BIND_SERVICE
-            runAsUser: 101
-            allowPrivilegeEscalation: true
-          env:
-            - name: POD_NAME
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.name
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-            - name: LD_PRELOAD
-              value: /usr/local/lib/libmimalloc.so
-          livenessProbe:
-            failureThreshold: 5
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          readinessProbe:
-            failureThreshold: 3
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          ports:
-            - name: http
-              containerPort: 80
-              protocol: TCP
-            - name: https
-              containerPort: 443
-              protocol: TCP
-            - name: webhook
-              containerPort: 8443
-              protocol: TCP
-          volumeMounts:
-            - name: webhook-cert
-              mountPath: /usr/local/certificates/
-              readOnly: true
-          resources:
-            requests:
-              cpu: 100m
-              memory: 90Mi
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
       nodeSelector:
         kubernetes.io/os: linux
       serviceAccountName: ingress-nginx
       terminationGracePeriodSeconds: 300
       volumes:
-        - name: webhook-cert
-          secret:
-            secretName: ingress-nginx-admission
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/controller-ingressclass.yaml
-# We don't support namespaced ingressClass yet
-# So a ClusterRole and a ClusterRoleBinding is required
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: nginx
-  namespace: ingress-nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
-# before changing this value, check the required kubernetes version
-# https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/#prerequisites
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-  name: ingress-nginx-admission
-webhooks:
-  - name: validate.nginx.ingress.kubernetes.io
-    matchPolicy: Equivalent
-    rules:
-      - apiGroups:
-          - networking.k8s.io
-        apiVersions:
-          - v1
-        operations:
-          - CREATE
-          - UPDATE
-        resources:
-          - ingresses
-    failurePolicy: Fail
-    sideEffects: None
-    admissionReviewVersions:
-      - v1
-    clientConfig:
-      service:
-        namespace: ingress-nginx
-        name: ingress-nginx-controller-admission
-        path: /networking/v1/ingresses
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - admissionregistration.k8s.io
-    resources:
-      - validatingwebhookconfigurations
-    verbs:
-      - get
-      - update
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - secrets
-    verbs:
-      - get
-      - create
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-create
     spec:
       containers:
-        - name: create
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - create
-            - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-            - --namespace=$(POD_NAMESPACE)
-            - --secret-name=ingress-nginx-admission
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-patch
     spec:
       containers:
-        - name: patch
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - patch
-            - --webhook-name=ingress-nginx-admission
-            - --namespace=$(POD_NAMESPACE)
-            - --patch-mutating=false
-            - --secret-name=ingress-nginx-admission
-            - --patch-failure-policy=Fail
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/aws/deploy-tls-termination.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
similarity index 55%
rename from deploy/static/provider/aws/deploy-tls-termination.yaml
rename to deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 63c3b0a33..242624ef3 100644
--- a/deploy/static/provider/aws/deploy-tls-termination.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -1,234 +1,249 @@
-
+#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
-  name: ingress-nginx
   labels:
-    app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-serviceaccount.yaml
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
-automountServiceAccountToken: true
 ---
-# Source: ingress-nginx/templates/controller-configmap.yaml
 apiVersion: v1
-kind: ConfigMap
+kind: ServiceAccount
 metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
   namespace: ingress-nginx
-data:
-  allow-snippet-annotations: 'true'
-  http-snippet: |
-    server{
-      listen 2443;
-      return 308 https://$host$request_uri;
-    }
-  proxy-real-ip-cidr: XXX.XXX.XXX/XX
-  use-forwarded-headers: 'true'
 ---
-# Source: ingress-nginx/templates/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - endpoints
-      - nodes
-      - pods
-      - secrets
-      - namespaces
-    verbs:
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - nodes
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
----
-# Source: ingress-nginx/templates/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/controller-role.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
-  - apiGroups:
-      - ''
-    resources:
-      - namespaces
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - pods
-      - secrets
-      - endpoints
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    resourceNames:
-      - ingress-controller-leader
-    verbs:
-      - get
-      - update
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    verbs:
-      - create
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
 ---
-# Source: ingress-nginx/templates/controller-rolebinding.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -236,464 +251,425 @@ roleRef:
   kind: Role
   name: ingress-nginx
 subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-service-webhook.yaml
-apiVersion: v1
-kind: Service
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  type: ClusterIP
-  ports:
-    - name: https-webhook
-      port: 443
-      targetPort: webhook
-      appProtocol: https
-  selector:
     app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/component: controller
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  http-snippet: |
+    server {
+      listen 2443;
+      return 308 https://$host$request_uri;
+    }
+  proxy-real-ip-cidr: XXX.XXX.XXX/XX
+  use-forwarded-headers: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-service.yaml
 apiVersion: v1
 kind: Service
 metadata:
   annotations:
-    service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: '60'
-    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: 'true'
+    service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
+    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
     service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX
     service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
     service.beta.kubernetes.io/aws-load-balancer-type: nlb
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
-  type: LoadBalancer
   externalTrafficPolicy: Local
-  ipFamilyPolicy: SingleStack
   ipFamilies:
-    - IPv4
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-    - name: http
-      port: 80
-      protocol: TCP
-      targetPort: tohttps
-      appProtocol: http
-    - name: https
-      port: 443
-      protocol: TCP
-      targetPort: http
-      appProtocol: https
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: tohttps
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: http
   selector:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
 ---
-# Source: ingress-nginx/templates/controller-deployment.yaml
 apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
   selector:
     matchLabels:
-      app.kubernetes.io/name: ingress-nginx
-      app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/component: controller
-  revisionHistoryLimit: 10
-  minReadySeconds: 0
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
   template:
     metadata:
       labels:
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
     spec:
-      dnsPolicy: ClusterFirst
       containers:
-        - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
-          imagePullPolicy: IfNotPresent
-          lifecycle:
-            preStop:
-              exec:
-                command:
-                  - /wait-shutdown
-          args:
-            - /nginx-ingress-controller
-            - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-            - --election-id=ingress-controller-leader
-            - --controller-class=k8s.io/ingress-nginx
-            - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-            - --validating-webhook=:8443
-            - --validating-webhook-certificate=/usr/local/certificates/cert
-            - --validating-webhook-key=/usr/local/certificates/key
-          securityContext:
-            capabilities:
-              drop:
-                - ALL
-              add:
-                - NET_BIND_SERVICE
-            runAsUser: 101
-            allowPrivilegeEscalation: true
-          env:
-            - name: POD_NAME
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.name
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-            - name: LD_PRELOAD
-              value: /usr/local/lib/libmimalloc.so
-          livenessProbe:
-            failureThreshold: 5
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          readinessProbe:
-            failureThreshold: 3
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          ports:
-            - name: http
-              containerPort: 80
-              protocol: TCP
-            - name: https
-              containerPort: 80
-              protocol: TCP
-            - name: tohttps
-              containerPort: 2443
-              protocol: TCP
-            - name: webhook
-              containerPort: 8443
-              protocol: TCP
-          volumeMounts:
-            - name: webhook-cert
-              mountPath: /usr/local/certificates/
-              readOnly: true
-          resources:
-            requests:
-              cpu: 100m
-              memory: 90Mi
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 80
+          name: https
+          protocol: TCP
+        - containerPort: 2443
+          name: tohttps
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
       nodeSelector:
         kubernetes.io/os: linux
       serviceAccountName: ingress-nginx
       terminationGracePeriodSeconds: 300
       volumes:
-        - name: webhook-cert
-          secret:
-            secretName: ingress-nginx-admission
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/controller-ingressclass.yaml
-# We don't support namespaced ingressClass yet
-# So a ClusterRole and a ClusterRoleBinding is required
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: nginx
-  namespace: ingress-nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
-# before changing this value, check the required kubernetes version
-# https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/#prerequisites
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-  name: ingress-nginx-admission
-webhooks:
-  - name: validate.nginx.ingress.kubernetes.io
-    matchPolicy: Equivalent
-    rules:
-      - apiGroups:
-          - networking.k8s.io
-        apiVersions:
-          - v1
-        operations:
-          - CREATE
-          - UPDATE
-        resources:
-          - ingresses
-    failurePolicy: Fail
-    sideEffects: None
-    admissionReviewVersions:
-      - v1
-    clientConfig:
-      service:
-        namespace: ingress-nginx
-        name: ingress-nginx-controller-admission
-        path: /networking/v1/ingresses
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - admissionregistration.k8s.io
-    resources:
-      - validatingwebhookconfigurations
-    verbs:
-      - get
-      - update
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - secrets
-    verbs:
-      - get
-      - create
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-create
     spec:
       containers:
-        - name: create
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - create
-            - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-            - --namespace=$(POD_NAMESPACE)
-            - --secret-name=ingress-nginx-admission
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-patch
     spec:
       containers:
-        - name: patch
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - patch
-            - --webhook-name=ingress-nginx-admission
-            - --namespace=$(POD_NAMESPACE)
-            - --patch-mutating=false
-            - --secret-name=ingress-nginx-admission
-            - --patch-failure-policy=Fail
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/kustomization.yaml
new file mode 100644
index 000000000..ca2086ea9
--- /dev/null
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws/nlb-with-tls-termination?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 900c34020..af3463951 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -1,227 +1,249 @@
-
+#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
-  name: ingress-nginx
   labels:
-    app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-serviceaccount.yaml
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
-automountServiceAccountToken: true
 ---
-# Source: ingress-nginx/templates/controller-configmap.yaml
 apiVersion: v1
-kind: ConfigMap
+kind: ServiceAccount
 metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
   namespace: ingress-nginx
-data:
-  allow-snippet-annotations: 'true'
 ---
-# Source: ingress-nginx/templates/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - endpoints
-      - nodes
-      - pods
-      - secrets
-      - namespaces
-    verbs:
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - nodes
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
----
-# Source: ingress-nginx/templates/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/controller-role.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
-  - apiGroups:
-      - ''
-    resources:
-      - namespaces
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - pods
-      - secrets
-      - endpoints
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    resourceNames:
-      - ingress-controller-leader
-    verbs:
-      - get
-      - update
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    verbs:
-      - create
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
 ---
-# Source: ingress-nginx/templates/controller-rolebinding.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -229,454 +251,408 @@ roleRef:
   kind: Role
   name: ingress-nginx
 subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/controller-service-webhook.yaml
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller-admission
+- kind: ServiceAccount
+  name: ingress-nginx
   namespace: ingress-nginx
-spec:
-  type: ClusterIP
-  ports:
-    - name: https-webhook
-      port: 443
-      targetPort: webhook
-      appProtocol: https
-  selector:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/component: controller
 ---
-# Source: ingress-nginx/templates/controller-service.yaml
-apiVersion: v1
-kind: Service
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
 metadata:
   annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
-  type: NodePort
-  ipFamilyPolicy: SingleStack
   ipFamilies:
-    - IPv4
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-    - name: http
-      port: 80
-      protocol: TCP
-      targetPort: http
-      appProtocol: http
-    - name: https
-      port: 443
-      protocol: TCP
-      targetPort: https
-      appProtocol: https
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
   selector:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: NodePort
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
 ---
-# Source: ingress-nginx/templates/controller-deployment.yaml
 apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
   selector:
     matchLabels:
-      app.kubernetes.io/name: ingress-nginx
-      app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/component: controller
-  revisionHistoryLimit: 10
-  minReadySeconds: 0
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
   template:
     metadata:
       labels:
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
     spec:
-      dnsPolicy: ClusterFirst
       containers:
-        - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
-          imagePullPolicy: IfNotPresent
-          lifecycle:
-            preStop:
-              exec:
-                command:
-                  - /wait-shutdown
-          args:
-            - /nginx-ingress-controller
-            - --election-id=ingress-controller-leader
-            - --controller-class=k8s.io/ingress-nginx
-            - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-            - --validating-webhook=:8443
-            - --validating-webhook-certificate=/usr/local/certificates/cert
-            - --validating-webhook-key=/usr/local/certificates/key
-          securityContext:
-            capabilities:
-              drop:
-                - ALL
-              add:
-                - NET_BIND_SERVICE
-            runAsUser: 101
-            allowPrivilegeEscalation: true
-          env:
-            - name: POD_NAME
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.name
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-            - name: LD_PRELOAD
-              value: /usr/local/lib/libmimalloc.so
-          livenessProbe:
-            failureThreshold: 5
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          readinessProbe:
-            failureThreshold: 3
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          ports:
-            - name: http
-              containerPort: 80
-              protocol: TCP
-            - name: https
-              containerPort: 443
-              protocol: TCP
-            - name: webhook
-              containerPort: 8443
-              protocol: TCP
-          volumeMounts:
-            - name: webhook-cert
-              mountPath: /usr/local/certificates/
-              readOnly: true
-          resources:
-            requests:
-              cpu: 100m
-              memory: 90Mi
+      - args:
+        - /nginx-ingress-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
       nodeSelector:
         kubernetes.io/os: linux
       serviceAccountName: ingress-nginx
       terminationGracePeriodSeconds: 300
       volumes:
-        - name: webhook-cert
-          secret:
-            secretName: ingress-nginx-admission
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/controller-ingressclass.yaml
-# We don't support namespaced ingressClass yet
-# So a ClusterRole and a ClusterRoleBinding is required
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: nginx
-  namespace: ingress-nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
-# before changing this value, check the required kubernetes version
-# https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/#prerequisites
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-  name: ingress-nginx-admission
-webhooks:
-  - name: validate.nginx.ingress.kubernetes.io
-    matchPolicy: Equivalent
-    rules:
-      - apiGroups:
-          - networking.k8s.io
-        apiVersions:
-          - v1
-        operations:
-          - CREATE
-          - UPDATE
-        resources:
-          - ingresses
-    failurePolicy: Fail
-    sideEffects: None
-    admissionReviewVersions:
-      - v1
-    clientConfig:
-      service:
-        namespace: ingress-nginx
-        name: ingress-nginx-controller-admission
-        path: /networking/v1/ingresses
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - admissionregistration.k8s.io
-    resources:
-      - validatingwebhookconfigurations
-    verbs:
-      - get
-      - update
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - secrets
-    verbs:
-      - get
-      - create
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-create
     spec:
       containers:
-        - name: create
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - create
-            - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-            - --namespace=$(POD_NAMESPACE)
-            - --secret-name=ingress-nginx-admission
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-patch
     spec:
       containers:
-        - name: patch
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - patch
-            - --webhook-name=ingress-nginx-admission
-            - --namespace=$(POD_NAMESPACE)
-            - --patch-mutating=false
-            - --secret-name=ingress-nginx-admission
-            - --patch-failure-policy=Fail
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 0e0852550..87f64383a 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -1,227 +1,249 @@
-
+#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
-  name: ingress-nginx
   labels:
-    app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-serviceaccount.yaml
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
-automountServiceAccountToken: true
 ---
-# Source: ingress-nginx/templates/controller-configmap.yaml
 apiVersion: v1
-kind: ConfigMap
+kind: ServiceAccount
 metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
   namespace: ingress-nginx
-data:
-  allow-snippet-annotations: 'true'
 ---
-# Source: ingress-nginx/templates/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - endpoints
-      - nodes
-      - pods
-      - secrets
-      - namespaces
-    verbs:
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - nodes
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
----
-# Source: ingress-nginx/templates/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/controller-role.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
-  - apiGroups:
-      - ''
-    resources:
-      - namespaces
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - pods
-      - secrets
-      - endpoints
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    resourceNames:
-      - ingress-controller-leader
-    verbs:
-      - get
-      - update
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    verbs:
-      - create
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
 ---
-# Source: ingress-nginx/templates/controller-rolebinding.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -229,456 +251,410 @@ roleRef:
   kind: Role
   name: ingress-nginx
 subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/controller-service-webhook.yaml
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller-admission
+- kind: ServiceAccount
+  name: ingress-nginx
   namespace: ingress-nginx
-spec:
-  type: ClusterIP
-  ports:
-    - name: https-webhook
-      port: 443
-      targetPort: webhook
-      appProtocol: https
-  selector:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/component: controller
 ---
-# Source: ingress-nginx/templates/controller-service.yaml
-apiVersion: v1
-kind: Service
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
 metadata:
   annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
-  type: LoadBalancer
   externalTrafficPolicy: Local
-  ipFamilyPolicy: SingleStack
   ipFamilies:
-    - IPv4
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-    - name: http
-      port: 80
-      protocol: TCP
-      targetPort: http
-      appProtocol: http
-    - name: https
-      port: 443
-      protocol: TCP
-      targetPort: https
-      appProtocol: https
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
   selector:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
 ---
-# Source: ingress-nginx/templates/controller-deployment.yaml
 apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
   selector:
     matchLabels:
-      app.kubernetes.io/name: ingress-nginx
-      app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/component: controller
-  revisionHistoryLimit: 10
-  minReadySeconds: 0
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
   template:
     metadata:
       labels:
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
     spec:
-      dnsPolicy: ClusterFirst
       containers:
-        - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
-          imagePullPolicy: IfNotPresent
-          lifecycle:
-            preStop:
-              exec:
-                command:
-                  - /wait-shutdown
-          args:
-            - /nginx-ingress-controller
-            - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-            - --election-id=ingress-controller-leader
-            - --controller-class=k8s.io/ingress-nginx
-            - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-            - --validating-webhook=:8443
-            - --validating-webhook-certificate=/usr/local/certificates/cert
-            - --validating-webhook-key=/usr/local/certificates/key
-          securityContext:
-            capabilities:
-              drop:
-                - ALL
-              add:
-                - NET_BIND_SERVICE
-            runAsUser: 101
-            allowPrivilegeEscalation: true
-          env:
-            - name: POD_NAME
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.name
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-            - name: LD_PRELOAD
-              value: /usr/local/lib/libmimalloc.so
-          livenessProbe:
-            failureThreshold: 5
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          readinessProbe:
-            failureThreshold: 3
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          ports:
-            - name: http
-              containerPort: 80
-              protocol: TCP
-            - name: https
-              containerPort: 443
-              protocol: TCP
-            - name: webhook
-              containerPort: 8443
-              protocol: TCP
-          volumeMounts:
-            - name: webhook-cert
-              mountPath: /usr/local/certificates/
-              readOnly: true
-          resources:
-            requests:
-              cpu: 100m
-              memory: 90Mi
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
       nodeSelector:
         kubernetes.io/os: linux
       serviceAccountName: ingress-nginx
       terminationGracePeriodSeconds: 300
       volumes:
-        - name: webhook-cert
-          secret:
-            secretName: ingress-nginx-admission
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/controller-ingressclass.yaml
-# We don't support namespaced ingressClass yet
-# So a ClusterRole and a ClusterRoleBinding is required
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: nginx
-  namespace: ingress-nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
-# before changing this value, check the required kubernetes version
-# https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/#prerequisites
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-  name: ingress-nginx-admission
-webhooks:
-  - name: validate.nginx.ingress.kubernetes.io
-    matchPolicy: Equivalent
-    rules:
-      - apiGroups:
-          - networking.k8s.io
-        apiVersions:
-          - v1
-        operations:
-          - CREATE
-          - UPDATE
-        resources:
-          - ingresses
-    failurePolicy: Fail
-    sideEffects: None
-    admissionReviewVersions:
-      - v1
-    clientConfig:
-      service:
-        namespace: ingress-nginx
-        name: ingress-nginx-controller-admission
-        path: /networking/v1/ingresses
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - admissionregistration.k8s.io
-    resources:
-      - validatingwebhookconfigurations
-    verbs:
-      - get
-      - update
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - secrets
-    verbs:
-      - get
-      - create
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-create
     spec:
       containers:
-        - name: create
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - create
-            - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-            - --namespace=$(POD_NAMESPACE)
-            - --secret-name=ingress-nginx-admission
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-patch
     spec:
       containers:
-        - name: patch
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - patch
-            - --webhook-name=ingress-nginx-admission
-            - --namespace=$(POD_NAMESPACE)
-            - --patch-mutating=false
-            - --secret-name=ingress-nginx-admission
-            - --patch-failure-policy=Fail
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index d72cac794..6409fffde 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -1,228 +1,249 @@
-
+#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
-  name: ingress-nginx
   labels:
-    app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-serviceaccount.yaml
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
-automountServiceAccountToken: true
 ---
-# Source: ingress-nginx/templates/controller-configmap.yaml
 apiVersion: v1
-kind: ConfigMap
+kind: ServiceAccount
 metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
   namespace: ingress-nginx
-data:
-  allow-snippet-annotations: 'true'
-  use-proxy-protocol: 'true'
 ---
-# Source: ingress-nginx/templates/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - endpoints
-      - nodes
-      - pods
-      - secrets
-      - namespaces
-    verbs:
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - nodes
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
----
-# Source: ingress-nginx/templates/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/controller-role.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
-  - apiGroups:
-      - ''
-    resources:
-      - namespaces
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - pods
-      - secrets
-      - endpoints
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    resourceNames:
-      - ingress-controller-leader
-    verbs:
-      - get
-      - update
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    verbs:
-      - create
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
 ---
-# Source: ingress-nginx/templates/controller-rolebinding.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -230,458 +251,413 @@ roleRef:
   kind: Role
   name: ingress-nginx
 subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-service-webhook.yaml
-apiVersion: v1
-kind: Service
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  type: ClusterIP
-  ports:
-    - name: https-webhook
-      port: 443
-      targetPort: webhook
-      appProtocol: https
-  selector:
     app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/component: controller
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  use-proxy-protocol: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-service.yaml
 apiVersion: v1
 kind: Service
 metadata:
   annotations:
-    service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: 'true'
+    service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
-  type: LoadBalancer
   externalTrafficPolicy: Local
-  ipFamilyPolicy: SingleStack
   ipFamilies:
-    - IPv4
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-    - name: http
-      port: 80
-      protocol: TCP
-      targetPort: http
-      appProtocol: http
-    - name: https
-      port: 443
-      protocol: TCP
-      targetPort: https
-      appProtocol: https
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
   selector:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
 ---
-# Source: ingress-nginx/templates/controller-deployment.yaml
 apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
   selector:
     matchLabels:
-      app.kubernetes.io/name: ingress-nginx
-      app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/component: controller
-  revisionHistoryLimit: 10
-  minReadySeconds: 0
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
   template:
     metadata:
       labels:
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
     spec:
-      dnsPolicy: ClusterFirst
       containers:
-        - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
-          imagePullPolicy: IfNotPresent
-          lifecycle:
-            preStop:
-              exec:
-                command:
-                  - /wait-shutdown
-          args:
-            - /nginx-ingress-controller
-            - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-            - --election-id=ingress-controller-leader
-            - --controller-class=k8s.io/ingress-nginx
-            - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-            - --validating-webhook=:8443
-            - --validating-webhook-certificate=/usr/local/certificates/cert
-            - --validating-webhook-key=/usr/local/certificates/key
-          securityContext:
-            capabilities:
-              drop:
-                - ALL
-              add:
-                - NET_BIND_SERVICE
-            runAsUser: 101
-            allowPrivilegeEscalation: true
-          env:
-            - name: POD_NAME
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.name
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-            - name: LD_PRELOAD
-              value: /usr/local/lib/libmimalloc.so
-          livenessProbe:
-            failureThreshold: 5
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          readinessProbe:
-            failureThreshold: 3
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          ports:
-            - name: http
-              containerPort: 80
-              protocol: TCP
-            - name: https
-              containerPort: 443
-              protocol: TCP
-            - name: webhook
-              containerPort: 8443
-              protocol: TCP
-          volumeMounts:
-            - name: webhook-cert
-              mountPath: /usr/local/certificates/
-              readOnly: true
-          resources:
-            requests:
-              cpu: 100m
-              memory: 90Mi
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
       nodeSelector:
         kubernetes.io/os: linux
       serviceAccountName: ingress-nginx
       terminationGracePeriodSeconds: 300
       volumes:
-        - name: webhook-cert
-          secret:
-            secretName: ingress-nginx-admission
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/controller-ingressclass.yaml
-# We don't support namespaced ingressClass yet
-# So a ClusterRole and a ClusterRoleBinding is required
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: nginx
-  namespace: ingress-nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
-# before changing this value, check the required kubernetes version
-# https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/#prerequisites
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-  name: ingress-nginx-admission
-webhooks:
-  - name: validate.nginx.ingress.kubernetes.io
-    matchPolicy: Equivalent
-    rules:
-      - apiGroups:
-          - networking.k8s.io
-        apiVersions:
-          - v1
-        operations:
-          - CREATE
-          - UPDATE
-        resources:
-          - ingresses
-    failurePolicy: Fail
-    sideEffects: None
-    admissionReviewVersions:
-      - v1
-    clientConfig:
-      service:
-        namespace: ingress-nginx
-        name: ingress-nginx-controller-admission
-        path: /networking/v1/ingresses
-    timeoutSeconds: 29
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - admissionregistration.k8s.io
-    resources:
-      - validatingwebhookconfigurations
-    verbs:
-      - get
-      - update
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - secrets
-    verbs:
-      - get
-      - create
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-create
     spec:
       containers:
-        - name: create
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - create
-            - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-            - --namespace=$(POD_NAMESPACE)
-            - --secret-name=ingress-nginx-admission
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-patch
     spec:
       containers:
-        - name: patch
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - patch
-            - --webhook-name=ingress-nginx-admission
-            - --namespace=$(POD_NAMESPACE)
-            - --patch-mutating=false
-            - --secret-name=ingress-nginx-admission
-            - --patch-failure-policy=Fail
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
+  timeoutSeconds: 29
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 784993a92..ef0769852 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -1,227 +1,249 @@
-
+#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
-  name: ingress-nginx
   labels:
-    app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-serviceaccount.yaml
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
-automountServiceAccountToken: true
 ---
-# Source: ingress-nginx/templates/controller-configmap.yaml
 apiVersion: v1
-kind: ConfigMap
+kind: ServiceAccount
 metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
   namespace: ingress-nginx
-data:
-  allow-snippet-annotations: 'true'
 ---
-# Source: ingress-nginx/templates/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - endpoints
-      - nodes
-      - pods
-      - secrets
-      - namespaces
-    verbs:
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - nodes
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
----
-# Source: ingress-nginx/templates/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/controller-role.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
-  - apiGroups:
-      - ''
-    resources:
-      - namespaces
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - pods
-      - secrets
-      - endpoints
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    resourceNames:
-      - ingress-controller-leader
-    verbs:
-      - get
-      - update
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    verbs:
-      - create
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
 ---
-# Source: ingress-nginx/templates/controller-rolebinding.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -229,36 +251,91 @@ roleRef:
   kind: Role
   name: ingress-nginx
 subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-service-webhook.yaml
-apiVersion: v1
-kind: Service
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  type: ClusterIP
-  ports:
-    - name: https-webhook
-      port: 443
-      targetPort: webhook
-      appProtocol: https
-  selector:
     app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/component: controller
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-service.yaml
 apiVersion: v1
 kind: Service
 metadata:
@@ -268,426 +345,325 @@ metadata:
     service.beta.kubernetes.io/exoscale-loadbalancer-name: nginx-ingress-controller
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: '1'
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: 3s
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: /
     service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: source-hash
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
-  type: LoadBalancer
   externalTrafficPolicy: Local
-  ipFamilyPolicy: SingleStack
   ipFamilies:
-    - IPv4
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-    - name: http
-      port: 80
-      protocol: TCP
-      targetPort: http
-      appProtocol: http
-    - name: https
-      port: 443
-      protocol: TCP
-      targetPort: https
-      appProtocol: https
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
   selector:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
 ---
-# Source: ingress-nginx/templates/controller-daemonset.yaml
 apiVersion: apps/v1
 kind: DaemonSet
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
   selector:
     matchLabels:
-      app.kubernetes.io/name: ingress-nginx
-      app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/component: controller
-  revisionHistoryLimit: 10
-  minReadySeconds: 0
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
   template:
     metadata:
       labels:
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
     spec:
-      dnsPolicy: ClusterFirst
       containers:
-        - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
-          imagePullPolicy: IfNotPresent
-          lifecycle:
-            preStop:
-              exec:
-                command:
-                  - /wait-shutdown
-          args:
-            - /nginx-ingress-controller
-            - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-            - --election-id=ingress-controller-leader
-            - --controller-class=k8s.io/ingress-nginx
-            - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-            - --validating-webhook=:8443
-            - --validating-webhook-certificate=/usr/local/certificates/cert
-            - --validating-webhook-key=/usr/local/certificates/key
-          securityContext:
-            capabilities:
-              drop:
-                - ALL
-              add:
-                - NET_BIND_SERVICE
-            runAsUser: 101
-            allowPrivilegeEscalation: true
-          env:
-            - name: POD_NAME
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.name
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-            - name: LD_PRELOAD
-              value: /usr/local/lib/libmimalloc.so
-          livenessProbe:
-            failureThreshold: 5
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          readinessProbe:
-            failureThreshold: 3
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          ports:
-            - name: http
-              containerPort: 80
-              protocol: TCP
-            - name: https
-              containerPort: 443
-              protocol: TCP
-            - name: webhook
-              containerPort: 8443
-              protocol: TCP
-          volumeMounts:
-            - name: webhook-cert
-              mountPath: /usr/local/certificates/
-              readOnly: true
-          resources:
-            requests:
-              cpu: 100m
-              memory: 90Mi
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
       nodeSelector:
         kubernetes.io/os: linux
       serviceAccountName: ingress-nginx
       terminationGracePeriodSeconds: 300
       volumes:
-        - name: webhook-cert
-          secret:
-            secretName: ingress-nginx-admission
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/controller-ingressclass.yaml
-# We don't support namespaced ingressClass yet
-# So a ClusterRole and a ClusterRoleBinding is required
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: nginx
-  namespace: ingress-nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
-# before changing this value, check the required kubernetes version
-# https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/#prerequisites
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-  name: ingress-nginx-admission
-webhooks:
-  - name: validate.nginx.ingress.kubernetes.io
-    matchPolicy: Equivalent
-    rules:
-      - apiGroups:
-          - networking.k8s.io
-        apiVersions:
-          - v1
-        operations:
-          - CREATE
-          - UPDATE
-        resources:
-          - ingresses
-    failurePolicy: Fail
-    sideEffects: None
-    admissionReviewVersions:
-      - v1
-    clientConfig:
-      service:
-        namespace: ingress-nginx
-        name: ingress-nginx-controller-admission
-        path: /networking/v1/ingresses
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - admissionregistration.k8s.io
-    resources:
-      - validatingwebhookconfigurations
-    verbs:
-      - get
-      - update
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - secrets
-    verbs:
-      - get
-      - create
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-create
     spec:
       containers:
-        - name: create
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - create
-            - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-            - --namespace=$(POD_NAMESPACE)
-            - --secret-name=ingress-nginx-admission
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-patch
     spec:
       containers:
-        - name: patch
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - patch
-            - --webhook-name=ingress-nginx-admission
-            - --namespace=$(POD_NAMESPACE)
-            - --patch-mutating=false
-            - --secret-name=ingress-nginx-admission
-            - --patch-failure-policy=Fail
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index c87aa857e..4cd1c32d4 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -1,227 +1,249 @@
-
+#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
-  name: ingress-nginx
   labels:
-    app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-serviceaccount.yaml
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
-automountServiceAccountToken: true
 ---
-# Source: ingress-nginx/templates/controller-configmap.yaml
 apiVersion: v1
-kind: ConfigMap
+kind: ServiceAccount
 metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
   namespace: ingress-nginx
-data:
-  allow-snippet-annotations: 'true'
 ---
-# Source: ingress-nginx/templates/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - endpoints
-      - nodes
-      - pods
-      - secrets
-      - namespaces
-    verbs:
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - nodes
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
----
-# Source: ingress-nginx/templates/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/controller-role.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
-  - apiGroups:
-      - ''
-    resources:
-      - namespaces
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - pods
-      - secrets
-      - endpoints
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    resourceNames:
-      - ingress-controller-leader
-    verbs:
-      - get
-      - update
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    verbs:
-      - create
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
 ---
-# Source: ingress-nginx/templates/controller-rolebinding.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -229,467 +251,421 @@ roleRef:
   kind: Role
   name: ingress-nginx
 subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/controller-service-webhook.yaml
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller-admission
+- kind: ServiceAccount
+  name: ingress-nginx
   namespace: ingress-nginx
-spec:
-  type: ClusterIP
-  ports:
-    - name: https-webhook
-      port: 443
-      targetPort: webhook
-      appProtocol: https
-  selector:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/component: controller
 ---
-# Source: ingress-nginx/templates/controller-service.yaml
-apiVersion: v1
-kind: Service
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
 metadata:
   annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
-  type: NodePort
-  ipFamilyPolicy: SingleStack
   ipFamilies:
-    - IPv4
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-    - name: http
-      port: 80
-      protocol: TCP
-      targetPort: http
-      appProtocol: http
-    - name: https
-      port: 443
-      protocol: TCP
-      targetPort: https
-      appProtocol: https
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
   selector:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: NodePort
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
 ---
-# Source: ingress-nginx/templates/controller-deployment.yaml
 apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
   selector:
     matchLabels:
-      app.kubernetes.io/name: ingress-nginx
-      app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/component: controller
-  revisionHistoryLimit: 10
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
   strategy:
     rollingUpdate:
       maxUnavailable: 1
     type: RollingUpdate
-  minReadySeconds: 0
   template:
     metadata:
       labels:
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
     spec:
-      dnsPolicy: ClusterFirst
       containers:
-        - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
-          imagePullPolicy: IfNotPresent
-          lifecycle:
-            preStop:
-              exec:
-                command:
-                  - /wait-shutdown
-          args:
-            - /nginx-ingress-controller
-            - --election-id=ingress-controller-leader
-            - --controller-class=k8s.io/ingress-nginx
-            - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-            - --validating-webhook=:8443
-            - --validating-webhook-certificate=/usr/local/certificates/cert
-            - --validating-webhook-key=/usr/local/certificates/key
-            - --watch-ingress-without-class=true
-            - --publish-status-address=localhost
-          securityContext:
-            capabilities:
-              drop:
-                - ALL
-              add:
-                - NET_BIND_SERVICE
-            runAsUser: 101
-            allowPrivilegeEscalation: true
-          env:
-            - name: POD_NAME
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.name
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-            - name: LD_PRELOAD
-              value: /usr/local/lib/libmimalloc.so
-          livenessProbe:
-            failureThreshold: 5
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          readinessProbe:
-            failureThreshold: 3
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          ports:
-            - name: http
-              containerPort: 80
-              protocol: TCP
-              hostPort: 80
-            - name: https
-              containerPort: 443
-              protocol: TCP
-              hostPort: 443
-            - name: webhook
-              containerPort: 8443
-              protocol: TCP
-          volumeMounts:
-            - name: webhook-cert
-              mountPath: /usr/local/certificates/
-              readOnly: true
-          resources:
-            requests:
-              cpu: 100m
-              memory: 90Mi
+      - args:
+        - /nginx-ingress-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        - --watch-ingress-without-class=true
+        - --publish-status-address=localhost
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          hostPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          hostPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
       nodeSelector:
-        ingress-ready: 'true'
+        ingress-ready: "true"
         kubernetes.io/os: linux
-      tolerations:
-        - effect: NoSchedule
-          key: node-role.kubernetes.io/master
-          operator: Equal
       serviceAccountName: ingress-nginx
       terminationGracePeriodSeconds: 0
+      tolerations:
+      - effect: NoSchedule
+        key: node-role.kubernetes.io/master
+        operator: Equal
       volumes:
-        - name: webhook-cert
-          secret:
-            secretName: ingress-nginx-admission
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/controller-ingressclass.yaml
-# We don't support namespaced ingressClass yet
-# So a ClusterRole and a ClusterRoleBinding is required
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: nginx
-  namespace: ingress-nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
-# before changing this value, check the required kubernetes version
-# https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/#prerequisites
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-  name: ingress-nginx-admission
-webhooks:
-  - name: validate.nginx.ingress.kubernetes.io
-    matchPolicy: Equivalent
-    rules:
-      - apiGroups:
-          - networking.k8s.io
-        apiVersions:
-          - v1
-        operations:
-          - CREATE
-          - UPDATE
-        resources:
-          - ingresses
-    failurePolicy: Fail
-    sideEffects: None
-    admissionReviewVersions:
-      - v1
-    clientConfig:
-      service:
-        namespace: ingress-nginx
-        name: ingress-nginx-controller-admission
-        path: /networking/v1/ingresses
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - admissionregistration.k8s.io
-    resources:
-      - validatingwebhookconfigurations
-    verbs:
-      - get
-      - update
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - secrets
-    verbs:
-      - get
-      - create
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-create
     spec:
       containers:
-        - name: create
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - create
-            - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-            - --namespace=$(POD_NAMESPACE)
-            - --secret-name=ingress-nginx-admission
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-patch
     spec:
       containers:
-        - name: patch
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - patch
-            - --webhook-name=ingress-nginx-admission
-            - --namespace=$(POD_NAMESPACE)
-            - --patch-mutating=false
-            - --secret-name=ingress-nginx-admission
-            - --patch-failure-policy=Fail
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index a97984338..4f918c422 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -1,228 +1,249 @@
-
+#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
-  name: ingress-nginx
   labels:
-    app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-serviceaccount.yaml
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
-automountServiceAccountToken: true
 ---
-# Source: ingress-nginx/templates/controller-configmap.yaml
 apiVersion: v1
-kind: ConfigMap
+kind: ServiceAccount
 metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
   namespace: ingress-nginx
-data:
-  allow-snippet-annotations: 'true'
-  use-proxy-protocol: 'true'
 ---
-# Source: ingress-nginx/templates/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - endpoints
-      - nodes
-      - pods
-      - secrets
-      - namespaces
-    verbs:
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - nodes
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
----
-# Source: ingress-nginx/templates/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/controller-role.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
-  - apiGroups:
-      - ''
-    resources:
-      - namespaces
-    verbs:
-      - get
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-      - pods
-      - secrets
-      - endpoints
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - services
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingresses/status
-    verbs:
-      - update
-  - apiGroups:
-      - networking.k8s.io
-    resources:
-      - ingressclasses
-    verbs:
-      - get
-      - list
-      - watch
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    resourceNames:
-      - ingress-controller-leader
-    verbs:
-      - get
-      - update
-  - apiGroups:
-      - ''
-    resources:
-      - configmaps
-    verbs:
-      - create
-  - apiGroups:
-      - ''
-    resources:
-      - events
-    verbs:
-      - create
-      - patch
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
 ---
-# Source: ingress-nginx/templates/controller-rolebinding.yaml
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -230,457 +251,412 @@ roleRef:
   kind: Role
   name: ingress-nginx
 subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx
-    namespace: ingress-nginx
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-service-webhook.yaml
-apiVersion: v1
-kind: Service
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
     app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  type: ClusterIP
-  ports:
-    - name: https-webhook
-      port: 443
-      targetPort: webhook
-      appProtocol: https
-  selector:
     app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/component: controller
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  use-proxy-protocol: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
 ---
-# Source: ingress-nginx/templates/controller-service.yaml
 apiVersion: v1
 kind: Service
 metadata:
   annotations:
-    service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: 'true'
+    service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
-  type: LoadBalancer
   externalTrafficPolicy: Local
-  ipFamilyPolicy: SingleStack
   ipFamilies:
-    - IPv4
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-    - name: http
-      port: 80
-      protocol: TCP
-      targetPort: http
-      appProtocol: http
-    - name: https
-      port: 443
-      protocol: TCP
-      targetPort: https
-      appProtocol: https
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
   selector:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
 ---
-# Source: ingress-nginx/templates/controller-deployment.yaml
 apiVersion: apps/v1
 kind: Deployment
 metadata:
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
   selector:
     matchLabels:
-      app.kubernetes.io/name: ingress-nginx
-      app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/component: controller
-  revisionHistoryLimit: 10
-  minReadySeconds: 0
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
   template:
     metadata:
       labels:
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
     spec:
-      dnsPolicy: ClusterFirst
       containers:
-        - name: controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
-          imagePullPolicy: IfNotPresent
-          lifecycle:
-            preStop:
-              exec:
-                command:
-                  - /wait-shutdown
-          args:
-            - /nginx-ingress-controller
-            - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-            - --election-id=ingress-controller-leader
-            - --controller-class=k8s.io/ingress-nginx
-            - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-            - --validating-webhook=:8443
-            - --validating-webhook-certificate=/usr/local/certificates/cert
-            - --validating-webhook-key=/usr/local/certificates/key
-          securityContext:
-            capabilities:
-              drop:
-                - ALL
-              add:
-                - NET_BIND_SERVICE
-            runAsUser: 101
-            allowPrivilegeEscalation: true
-          env:
-            - name: POD_NAME
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.name
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-            - name: LD_PRELOAD
-              value: /usr/local/lib/libmimalloc.so
-          livenessProbe:
-            failureThreshold: 5
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          readinessProbe:
-            failureThreshold: 3
-            httpGet:
-              path: /healthz
-              port: 10254
-              scheme: HTTP
-            initialDelaySeconds: 10
-            periodSeconds: 10
-            successThreshold: 1
-            timeoutSeconds: 1
-          ports:
-            - name: http
-              containerPort: 80
-              protocol: TCP
-            - name: https
-              containerPort: 443
-              protocol: TCP
-            - name: webhook
-              containerPort: 8443
-              protocol: TCP
-          volumeMounts:
-            - name: webhook-cert
-              mountPath: /usr/local/certificates/
-              readOnly: true
-          resources:
-            requests:
-              cpu: 100m
-              memory: 90Mi
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
       nodeSelector:
         kubernetes.io/os: linux
       serviceAccountName: ingress-nginx
       terminationGracePeriodSeconds: 300
       volumes:
-        - name: webhook-cert
-          secret:
-            secretName: ingress-nginx-admission
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/controller-ingressclass.yaml
-# We don't support namespaced ingressClass yet
-# So a ClusterRole and a ClusterRoleBinding is required
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: controller
-  name: nginx
-  namespace: ingress-nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
-# before changing this value, check the required kubernetes version
-# https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/#prerequisites
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-  name: ingress-nginx-admission
-webhooks:
-  - name: validate.nginx.ingress.kubernetes.io
-    matchPolicy: Equivalent
-    rules:
-      - apiGroups:
-          - networking.k8s.io
-        apiVersions:
-          - v1
-        operations:
-          - CREATE
-          - UPDATE
-        resources:
-          - ingresses
-    failurePolicy: Fail
-    sideEffects: None
-    admissionReviewVersions:
-      - v1
-    clientConfig:
-      service:
-        namespace: ingress-nginx
-        name: ingress-nginx-controller-admission
-        path: /networking/v1/ingresses
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - admissionregistration.k8s.io
-    resources:
-      - validatingwebhookconfigurations
-    verbs:
-      - get
-      - update
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  name: ingress-nginx-admission
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-rules:
-  - apiGroups:
-      - ''
-    resources:
-      - secrets
-    verbs:
-      - get
-      - create
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
-  labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
-    app.kubernetes.io/component: admission-webhook
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-  - kind: ServiceAccount
-    name: ingress-nginx-admission
-    namespace: ingress-nginx
----
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: pre-install,pre-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-create
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-create
     spec:
       containers:
-        - name: create
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - create
-            - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-            - --namespace=$(POD_NAMESPACE)
-            - --secret-name=ingress-nginx-admission
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
 ---
-# Source: ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
   annotations:
     helm.sh/hook: post-install,post-upgrade
     helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
-    helm.sh/chart: ingress-nginx-4.0.15
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
 spec:
   template:
     metadata:
-      name: ingress-nginx-admission-patch
       labels:
-        helm.sh/chart: ingress-nginx-4.0.15
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.15
+      name: ingress-nginx-admission-patch
     spec:
       containers:
-        - name: patch
-          image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-          imagePullPolicy: IfNotPresent
-          args:
-            - patch
-            - --webhook-name=ingress-nginx-admission
-            - --namespace=$(POD_NAMESPACE)
-            - --patch-mutating=false
-            - --secret-name=ingress-nginx-admission
-            - --patch-failure-policy=Fail
-          env:
-            - name: POD_NAMESPACE
-              valueFrom:
-                fieldRef:
-                  fieldPath: metadata.namespace
-          securityContext:
-            allowPrivilegeEscalation: false
-      restartPolicy: OnFailure
-      serviceAccountName: ingress-nginx-admission
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
       nodeSelector:
         kubernetes.io/os: linux
+      restartPolicy: OnFailure
       securityContext:
         runAsNonRoot: true
         runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.15
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 51bc4be50..c3443e731 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -55,8 +55,11 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 !!! info
     The YAML manifest in the command above was generated with `helm template`, so you will end up with almost the same resources as if you had used Helm to install the controller.
 
-If you are running an old version of Kubernetes (1.18 or earlier), please read
-[this paragraph](#running-on-Kubernetes-versions-older-than-1.19) for specific instructions.
+!!! attention
+  If you are running an old version of Kubernetes (1.18 or earlier), please read
+  [this paragraph](#running-on-Kubernetes-versions-older-than-1.19) for specific instructions.
+  Because of api deprecations, the default manifest may not work on your cluster.
+  Specific manifests for supported Kubernetes versions are available within a subfolder of each provider.
 
 ### Pre-flight check
 
@@ -186,12 +189,13 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 
 ##### TLS termination in AWS Load Balancer (NLB)
 
-By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. This section explains how to do that on AWS with using an NLB.
+By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. This section explains how to do that on AWS using an NLB.
 
-1. Download the the [deploy-tls-termination.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/aws/deploy-tls-termination.yaml) template:
-   ```console
-   wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/aws/deploy-tls-termination.yaml
-   ```
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+
+  ```console
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
    ```
@@ -205,7 +209,7 @@ By default, TLS is terminated in the ingress controller. But it is also possible
 
 4. Deploy the manifest:
    ```console
-   kubectl apply -f deploy-tls-termination.yaml
+   kubectl apply -f deploy.yaml
    ```
 
 ##### NLB Idle Timeouts
diff --git a/hack/.tool-versions b/hack/.tool-versions
new file mode 100644
index 000000000..5baa8790a
--- /dev/null
+++ b/hack/.tool-versions
@@ -0,0 +1,2 @@
+kustomize 4.1.3
+helm 3.7.1
diff --git a/hack/generate-deploy-scripts.sh b/hack/generate-deploy-scripts.sh
index 28625721b..2ec0adc1b 100755
--- a/hack/generate-deploy-scripts.sh
+++ b/hack/generate-deploy-scripts.sh
@@ -22,194 +22,51 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
+# for backwards compatibility, the default version of 1.20 is copied to the root of the variant
+# with enough docs updates, this could be removed
+# see     # DEFAULT VERSION HANDLING
+K8S_DEFAULT_VERSION=1.20
+# K8S_TARGET_VERSIONS=("1.19" "1.20" "1.21" "1.22") TODO @afirth revert for #8000
+K8S_TARGET_VERSIONS=("1.20")
+
 DIR=$(cd $(dirname "${BASH_SOURCE}")/.. && pwd -P)
 
-RELEASE_NAME=ingress-nginx
-NAMESPACE=ingress-nginx
+# clean
+rm -rf ${DIR}/deploy/static/provider/*
 
-NAMESPACE_VAR="
-apiVersion: v1
-kind: Namespace
-metadata:
-  name: $NAMESPACE
-  labels:
-    app.kubernetes.io/name: $RELEASE_NAME
-    app.kubernetes.io/instance: ingress-nginx
-"
+TEMPLATE_DIR="${DIR}/hack/manifest-templates"
 
-# Baremetal
-OUTPUT_FILE="${DIR}/deploy/static/provider/baremetal/deploy.yaml"
-cat << EOF | helm template $RELEASE_NAME ${DIR}/charts/ingress-nginx --namespace $NAMESPACE --values - | $DIR/hack/add-namespace.py $NAMESPACE > ${OUTPUT_FILE}
-controller:
-  service:
-    type: NodePort
+# each helm values file `values.yaml` under `hack/manifest-templates/provider` will be generated as provider/<provider>[/variant][/kube-version]/deploy.yaml
+# TARGET is provider/<provider>[/variant]
+TARGETS=$(dirname $(cd $DIR/hack/manifest-templates/ && find . -type f -name "values.yaml" ) | cut -d'/' -f2-)
+for K8S_VERSION in "${K8S_TARGET_VERSIONS[@]}"
+do
+  for TARGET in ${TARGETS}
+  do
+    TARGET_DIR="${TEMPLATE_DIR}/${TARGET}"
+    MANIFEST="${TEMPLATE_DIR}/common/manifest.yaml" # intermediate manifest
+    OUTPUT_DIR="${DIR}/deploy/static/${TARGET}/${K8S_VERSION}"
+    echo $OUTPUT_DIR
 
-  publishService:
-    enabled: false
-EOF
+    mkdir -p ${OUTPUT_DIR}
+    cd ${TARGET_DIR}
+    helm template ingress-nginx ${DIR}/charts/ingress-nginx \
+      --values values.yaml \
+      --namespace ingress-nginx \
+      --kube-version ${K8S_VERSION} \
+      > $MANIFEST
+    kustomize --load-restrictor=LoadRestrictionsNone build . > ${OUTPUT_DIR}/deploy.yaml
+    rm $MANIFEST
+    cd ~-
+    # automatically generate the (unsupported) kustomization.yaml for each target
+    sed "s_{TARGET}_${TARGET}_" $TEMPLATE_DIR/static-kustomization-template.yaml > ${OUTPUT_DIR}/kustomization.yaml
 
-echo "${NAMESPACE_VAR}
-$(cat ${OUTPUT_FILE})" > ${OUTPUT_FILE}
-
-# Cloud - generic
-OUTPUT_FILE="${DIR}/deploy/static/provider/cloud/deploy.yaml"
-cat << EOF | helm template $RELEASE_NAME ${DIR}/charts/ingress-nginx --namespace $NAMESPACE --values - | $DIR/hack/add-namespace.py $NAMESPACE > ${OUTPUT_FILE}
-controller:
-  service:
-    type: LoadBalancer
-    externalTrafficPolicy: Local
-EOF
-
-echo "${NAMESPACE_VAR}
-$(cat ${OUTPUT_FILE})" > ${OUTPUT_FILE}
-
-
-# AWS - NLB
-OUTPUT_FILE="${DIR}/deploy/static/provider/aws/deploy.yaml"
-cat << EOF | helm template $RELEASE_NAME ${DIR}/charts/ingress-nginx --namespace $NAMESPACE --values - | $DIR/hack/add-namespace.py $NAMESPACE > ${OUTPUT_FILE}
-controller:
-  service:
-    type: LoadBalancer
-    externalTrafficPolicy: Local
-    annotations:
-      service.beta.kubernetes.io/aws-load-balancer-backend-protocol: "tcp"
-      service.beta.kubernetes.io/aws-load-balancer-type: nlb
-      service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-EOF
-
-echo "${NAMESPACE_VAR}
-$(cat ${OUTPUT_FILE})" > ${OUTPUT_FILE}
-
-
-OUTPUT_FILE="${DIR}/deploy/static/provider/aws/deploy-tls-termination.yaml"
-cat << EOF | helm template $RELEASE_NAME ${DIR}/charts/ingress-nginx --namespace $NAMESPACE --values - | $DIR/hack/add-namespace.py $NAMESPACE > ${OUTPUT_FILE}
-controller:
-  service:
-    type: LoadBalancer
-    externalTrafficPolicy: Local
-
-    annotations:
-      # This example is for legacy in-tree service load balancer controller for AWS NLB,
-      # that has been phased out from Kubernetes mainline.
-      service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-      service.beta.kubernetes.io/aws-load-balancer-ssl-ports: "https"
-      service.beta.kubernetes.io/aws-load-balancer-ssl-cert: "arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX"
-      service.beta.kubernetes.io/aws-load-balancer-type: nlb
-      # Ensure the ELB idle timeout is less than nginx keep-alive timeout. By default,
-      # NGINX keep-alive is set to 75s. If using WebSockets, the value will need to be
-      # increased to '3600' to avoid any potential issues.
-      service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
-
-    targetPorts:
-      http: tohttps
-      https: http
-
-  # Configures the ports the nginx-controller listens on
-  containerPort:
-    http: 80
-    https: 80
-    tohttps: 2443
-
-  config:
-    proxy-real-ip-cidr: XXX.XXX.XXX/XX
-    use-forwarded-headers: "true"
-    http-snippet: |
-      server {
-        listen 2443;
-        return 308 https://\$host\$request_uri;
-      }
-EOF
-
-echo "${NAMESPACE_VAR}
-$(cat ${OUTPUT_FILE})" > ${OUTPUT_FILE}
-
-# Kind - https://kind.sigs.k8s.io/docs/user/ingress/
-OUTPUT_FILE="${DIR}/deploy/static/provider/kind/deploy.yaml"
-cat << EOF | helm template $RELEASE_NAME ${DIR}/charts/ingress-nginx --namespace $NAMESPACE --values - | $DIR/hack/add-namespace.py $NAMESPACE > ${OUTPUT_FILE}
-controller:
-  updateStrategy:
-    type: RollingUpdate
-    rollingUpdate:
-      maxUnavailable: 1
-  hostPort:
-    enabled: true
-  terminationGracePeriodSeconds: 0
-  service:
-    type: NodePort
-  watchIngressWithoutClass: true
-
-  nodeSelector:
-    ingress-ready: "true"
-  tolerations:
-    - key: "node-role.kubernetes.io/master"
-      operator: "Equal"
-      effect: "NoSchedule"
-
-  publishService:
-    enabled: false
-  extraArgs:
-    publish-status-address: localhost
-EOF
-
-# Digital Ocean
-echo "${NAMESPACE_VAR}
-$(cat ${OUTPUT_FILE})" > ${OUTPUT_FILE}
-
-OUTPUT_FILE="${DIR}/deploy/static/provider/do/deploy.yaml"
-cat << EOF | helm template $RELEASE_NAME ${DIR}/charts/ingress-nginx --namespace $NAMESPACE --values - | $DIR/hack/add-namespace.py $NAMESPACE > ${OUTPUT_FILE}
-controller:
-  service:
-    type: LoadBalancer
-    externalTrafficPolicy: Local
-    annotations:
-      service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
-  config:
-    use-proxy-protocol: "true"
-  admissionWebhooks:
-    timeoutSeconds: 29
-
-EOF
-
-# Scaleway
-echo "${NAMESPACE_VAR}
-$(cat ${OUTPUT_FILE})" > ${OUTPUT_FILE}
-
-OUTPUT_FILE="${DIR}/deploy/static/provider/scw/deploy.yaml"
-cat << EOF | helm template $RELEASE_NAME ${DIR}/charts/ingress-nginx --namespace $NAMESPACE --values - | $DIR/hack/add-namespace.py $NAMESPACE > ${OUTPUT_FILE}
-controller:
-  service:
-    type: LoadBalancer
-    externalTrafficPolicy: Local
-    annotations:
-      service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
-  config:
-    use-proxy-protocol: "true"
-
-EOF
-
-# Exoscale
-echo "${NAMESPACE_VAR}
-$(cat ${OUTPUT_FILE})" > ${OUTPUT_FILE}
-
-OUTPUT_FILE="${DIR}/deploy/static/provider/exoscale/deploy.yaml"
-cat << EOF | helm template $RELEASE_NAME ${DIR}/charts/ingress-nginx --namespace $NAMESPACE --values - | $DIR/hack/add-namespace.py $NAMESPACE > ${OUTPUT_FILE}
-controller:
-  kind: DaemonSet
-  service:
-    type: LoadBalancer
-    externalTrafficPolicy: Local
-    annotations:
-      service.beta.kubernetes.io/exoscale-loadbalancer-name: "nginx-ingress-controller"
-      service.beta.kubernetes.io/exoscale-loadbalancer-description: "NGINX Ingress Controller load balancer"
-      service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: "source-hash"
-      service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: "http"
-      service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: "/"
-      service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: "10s"
-      service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: "3s"
-      service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
-  publishService:
-      enabled: true
-EOF
-
-echo "${NAMESPACE_VAR}
-$(cat ${OUTPUT_FILE})" > ${OUTPUT_FILE}
+    # DEFAULT VERSION HANDLING
+    if [[ ${K8S_VERSION} = ${K8S_DEFAULT_VERSION} ]]
+    then
+      cp ${OUTPUT_DIR}/*.yaml ${OUTPUT_DIR}/../
+      sed -i "1s/^/#GENERATED FOR K8S ${K8S_VERSION}\n/" ${OUTPUT_DIR}/../deploy.yaml
+      rm -rf ${OUTPUT_DIR} # TODO @afirth remove for #8000 - this avoids the duplicate files for easier review of the build script changes
+    fi
+  done
+done
diff --git a/hack/manifest-templates/common/kustomization.yaml b/hack/manifest-templates/common/kustomization.yaml
new file mode 100644
index 000000000..a4b5f64cf
--- /dev/null
+++ b/hack/manifest-templates/common/kustomization.yaml
@@ -0,0 +1,14 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+- manifest.yaml
+- namespace.yaml
+
+patches:
+- target:
+    group: apps
+    version: v1
+    kind: Deployment
+  patch: |-
+    - op: remove
+      path: /spec/replicas
diff --git a/hack/manifest-templates/common/namespace.yaml b/hack/manifest-templates/common/namespace.yaml
new file mode 100644
index 000000000..db890604b
--- /dev/null
+++ b/hack/manifest-templates/common/namespace.yaml
@@ -0,0 +1,7 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: ingress-nginx
+  labels:
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/instance: ingress-nginx
diff --git a/hack/manifest-templates/provider/aws/kustomization.yaml b/hack/manifest-templates/provider/aws/kustomization.yaml
new file mode 100644
index 000000000..cd6ef95be
--- /dev/null
+++ b/hack/manifest-templates/provider/aws/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+- ../../common
diff --git a/hack/manifest-templates/provider/aws/nlb-with-tls-termination/kustomization.yaml b/hack/manifest-templates/provider/aws/nlb-with-tls-termination/kustomization.yaml
new file mode 100644
index 000000000..ecec1095c
--- /dev/null
+++ b/hack/manifest-templates/provider/aws/nlb-with-tls-termination/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+- ../../../common
diff --git a/hack/manifest-templates/provider/aws/nlb-with-tls-termination/values.yaml b/hack/manifest-templates/provider/aws/nlb-with-tls-termination/values.yaml
new file mode 100644
index 000000000..5b36b3dd2
--- /dev/null
+++ b/hack/manifest-templates/provider/aws/nlb-with-tls-termination/values.yaml
@@ -0,0 +1,36 @@
+# AWS NLB with TLS termination
+controller:
+  service:
+    type: LoadBalancer
+    externalTrafficPolicy: Local
+
+    annotations:
+      # This example is for legacy in-tree service load balancer controller for AWS NLB,
+      # that has been phased out from Kubernetes mainline.
+      service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+      service.beta.kubernetes.io/aws-load-balancer-ssl-ports: "https"
+      service.beta.kubernetes.io/aws-load-balancer-ssl-cert: "arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX"
+      service.beta.kubernetes.io/aws-load-balancer-type: nlb
+      # Ensure the ELB idle timeout is less than nginx keep-alive timeout. By default,
+      # NGINX keep-alive is set to 75s. If using WebSockets, the value will need to be
+      # increased to '3600' to avoid any potential issues.
+      service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
+
+    targetPorts:
+      http: tohttps
+      https: http
+
+  # Configures the ports the nginx-controller listens on
+  containerPort:
+    http: 80
+    https: 80
+    tohttps: 2443
+
+  config:
+    proxy-real-ip-cidr: XXX.XXX.XXX/XX
+    use-forwarded-headers: "true"
+    http-snippet: |
+      server {
+        listen 2443;
+        return 308 https://$host$request_uri;
+      }
diff --git a/hack/manifest-templates/provider/aws/values.yaml b/hack/manifest-templates/provider/aws/values.yaml
new file mode 100644
index 000000000..743721fc4
--- /dev/null
+++ b/hack/manifest-templates/provider/aws/values.yaml
@@ -0,0 +1,9 @@
+# AWS - NLB
+controller:
+  service:
+    type: LoadBalancer
+    externalTrafficPolicy: Local
+    annotations:
+      service.beta.kubernetes.io/aws-load-balancer-backend-protocol: "tcp"
+      service.beta.kubernetes.io/aws-load-balancer-type: nlb
+      service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
diff --git a/hack/manifest-templates/provider/baremetal/kustomization.yaml b/hack/manifest-templates/provider/baremetal/kustomization.yaml
new file mode 100644
index 000000000..cd6ef95be
--- /dev/null
+++ b/hack/manifest-templates/provider/baremetal/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+- ../../common
diff --git a/hack/manifest-templates/provider/baremetal/values.yaml b/hack/manifest-templates/provider/baremetal/values.yaml
new file mode 100644
index 000000000..3c5a0840b
--- /dev/null
+++ b/hack/manifest-templates/provider/baremetal/values.yaml
@@ -0,0 +1,7 @@
+# Baremetal
+controller:
+  service:
+    type: NodePort
+
+  publishService:
+    enabled: false
diff --git a/hack/manifest-templates/provider/cloud/kustomization.yaml b/hack/manifest-templates/provider/cloud/kustomization.yaml
new file mode 100644
index 000000000..cd6ef95be
--- /dev/null
+++ b/hack/manifest-templates/provider/cloud/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+- ../../common
diff --git a/hack/manifest-templates/provider/cloud/values.yaml b/hack/manifest-templates/provider/cloud/values.yaml
new file mode 100644
index 000000000..7d8266c0f
--- /dev/null
+++ b/hack/manifest-templates/provider/cloud/values.yaml
@@ -0,0 +1,4 @@
+controller:
+  service:
+    type: LoadBalancer
+    externalTrafficPolicy: Local
diff --git a/hack/manifest-templates/provider/do/kustomization.yaml b/hack/manifest-templates/provider/do/kustomization.yaml
new file mode 100644
index 000000000..cd6ef95be
--- /dev/null
+++ b/hack/manifest-templates/provider/do/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+- ../../common
diff --git a/hack/manifest-templates/provider/do/values.yaml b/hack/manifest-templates/provider/do/values.yaml
new file mode 100644
index 000000000..2b0578414
--- /dev/null
+++ b/hack/manifest-templates/provider/do/values.yaml
@@ -0,0 +1,11 @@
+# Digital Ocean
+controller:
+  service:
+    type: LoadBalancer
+    externalTrafficPolicy: Local
+    annotations:
+      service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
+  config:
+    use-proxy-protocol: "true"
+  admissionWebhooks:
+    timeoutSeconds: 29
diff --git a/hack/manifest-templates/provider/exoscale/kustomization.yaml b/hack/manifest-templates/provider/exoscale/kustomization.yaml
new file mode 100644
index 000000000..cd6ef95be
--- /dev/null
+++ b/hack/manifest-templates/provider/exoscale/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+- ../../common
diff --git a/hack/manifest-templates/provider/exoscale/values.yaml b/hack/manifest-templates/provider/exoscale/values.yaml
new file mode 100644
index 000000000..76863f013
--- /dev/null
+++ b/hack/manifest-templates/provider/exoscale/values.yaml
@@ -0,0 +1,17 @@
+# Exoscale
+controller:
+  kind: DaemonSet
+  service:
+    type: LoadBalancer
+    externalTrafficPolicy: Local
+    annotations:
+      service.beta.kubernetes.io/exoscale-loadbalancer-name: "nginx-ingress-controller"
+      service.beta.kubernetes.io/exoscale-loadbalancer-description: "NGINX Ingress Controller load balancer"
+      service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: "source-hash"
+      service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: "http"
+      service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: "/"
+      service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: "10s"
+      service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: "3s"
+      service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
+  publishService:
+      enabled: true
diff --git a/hack/manifest-templates/provider/kind/kustomization.yaml b/hack/manifest-templates/provider/kind/kustomization.yaml
new file mode 100644
index 000000000..cd6ef95be
--- /dev/null
+++ b/hack/manifest-templates/provider/kind/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+- ../../common
diff --git a/hack/manifest-templates/provider/kind/values.yaml b/hack/manifest-templates/provider/kind/values.yaml
new file mode 100644
index 000000000..f327c351e
--- /dev/null
+++ b/hack/manifest-templates/provider/kind/values.yaml
@@ -0,0 +1,24 @@
+# Kind - https://kind.sigs.k8s.io/docs/user/ingress/
+controller:
+  updateStrategy:
+    type: RollingUpdate
+    rollingUpdate:
+      maxUnavailable: 1
+  hostPort:
+    enabled: true
+  terminationGracePeriodSeconds: 0
+  service:
+    type: NodePort
+  watchIngressWithoutClass: true
+
+  nodeSelector:
+    ingress-ready: "true"
+  tolerations:
+    - key: "node-role.kubernetes.io/master"
+      operator: "Equal"
+      effect: "NoSchedule"
+
+  publishService:
+    enabled: false
+  extraArgs:
+    publish-status-address: localhost
diff --git a/hack/manifest-templates/provider/scw/kustomization.yaml b/hack/manifest-templates/provider/scw/kustomization.yaml
new file mode 100644
index 000000000..cd6ef95be
--- /dev/null
+++ b/hack/manifest-templates/provider/scw/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+- ../../common
diff --git a/hack/manifest-templates/provider/scw/values.yaml b/hack/manifest-templates/provider/scw/values.yaml
new file mode 100644
index 000000000..cee5e2b1e
--- /dev/null
+++ b/hack/manifest-templates/provider/scw/values.yaml
@@ -0,0 +1,9 @@
+# Scaleway
+controller:
+  service:
+    type: LoadBalancer
+    externalTrafficPolicy: Local
+    annotations:
+      service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
+  config:
+    use-proxy-protocol: "true"
diff --git a/hack/manifest-templates/static-kustomization-template.yaml b/hack/manifest-templates/static-kustomization-template.yaml
new file mode 100644
index 000000000..fd273c7c4
--- /dev/null
+++ b/hack/manifest-templates/static-kustomization-template.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/{TARGET}?ref=master
+# ```
+
+resources:
+  - deploy.yaml

From feba7e1ffc7f2047f1cae5cb5f093f5b34c58abd Mon Sep 17 00:00:00 2001
From: Rafael Maciel <22459495+rbgnk@users.noreply.github.com>
Date: Wed, 19 Jan 2022 23:31:51 -0300
Subject: [PATCH 0055/1641] docs: correct typo (#8169)

* change docker-destkop to docker-desktop
---
 docs/deploy/index.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index c3443e731..9f613308b 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -159,7 +159,7 @@ Kubernetes is available in Docker Desktop:
 - Mac, from [version 18.06.0-ce](https://docs.docker.com/docker-for-mac/release-notes/#stable-releases-of-2018)
 - Windows, from [version 18.06.0-ce](https://docs.docker.com/docker-for-windows/release-notes/#docker-community-edition-18060-ce-win70-2018-07-25)
 
-First, make sure that Kubernetes is enabled in the Docker settings. The command `kubectl get nodes` should show a single node called `docker-destkop`.
+First, make sure that Kubernetes is enabled in the Docker settings. The command `kubectl get nodes` should show a single node called `docker-desktop`.
 
 The ingress controller can be installed on Docker Desktop using the default [quick start](#quick-start) instructions.
 

From 39e721de731e95bf87359378d11af503c31928b7 Mon Sep 17 00:00:00 2001
From: Frederik-Baetens <smurfendrek123@gmail.com>
Date: Thu, 20 Jan 2022 10:17:52 +0100
Subject: [PATCH 0056/1641] Docs: add documentation about default ingress helm
 value, corrections to only ingress section (#7943)

* add explanation about ingressClassResource.default for helm users

Also cleaned up the entire "I have only one instance of the
Ingress-NGINX controller in my cluster" section

* docs: default ingressclass only when running one controller

* fix link to what is the flag watch ingress

* clarify usage of default ingress class annotation
---
 docs/index.md | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/docs/index.md b/docs/index.md
index bda45d317..2b35e7e01 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -111,12 +111,17 @@ DESCRIPTION:
 The `.spec.ingressClassName` behavior has precedence over the deprecated `kubernetes.io/ingress.class` annotation.
 
 
+## I have only one ingress controller in my cluster. What should I do?
 
-## I have only one instance of the Ingress-NGINX controller in my cluster. What should I do ?
+If a single instance of the Ingress-NGINX controller is the sole Ingress controller running in your cluster, you should add the annotation "ingressclass.kubernetes.io/is-default-class" in your IngressClass, so any new Ingress objects will have this one as default IngressClass.
 
-- If you have only one instance of the Ingress-NGINX controller running in your cluster, and you still want to use IngressClass, you should add the annotation `ingressclass.kubernetes.io/is-default-class` in your IngressClass, so that any new Ingress objects will have this one as default IngressClass.
+When using Helm, you can enable this annotation by setting `.controller.ingressClassResource.default: true` in your Helm chart installation's values file.
 
-In this case, you need to make your controller aware of the objects. If you have any Ingress objects that don't yet have either the [`.spec.ingressClassName`](https://kubernetes.io/docs/reference/kubernetes-api/service-resources/ingress-v1/#IngressSpec) field set in their manifest, or the ingress annotation (`kubernetes.io/ingress.class`), then you should start your Ingress-NGINX controller with the flag [--watch-ingress-without-class=true](#what-is-the-flag-watch-ingress-without-class).
+If you have any old Ingress objects remaining without an IngressClass set, you can do one or more of the following to make the Ingress-NGINX controller aware of the old objects:
+
+- You can manually set the [`.spec.ingressClassName`](https://kubernetes.io/docs/reference/kubernetes-api/service-resources/ingress-v1/#IngressSpec) field in the manifest of your own Ingress resources.
+- You can re-create them after setting the `ingressclass.kubernetes.io/is-default-class` annotation to `true` on the IngressClass
+- Alternatively you can make the Ingress-NGINX controller watch Ingress objects without the ingressClassName field set by starting your Ingress-NGINX with the flag [--watch-ingress-without-class=true](#what-is-the-flag-watch-ingress-without-class) . When using Helm, you can configure your Helm chart installation's values file with `.controller.watchIngressWithoutClass: true`
 
 You can configure your Helm chart installation's values file with `.controller.watchIngressWithoutClass: true`. 
 

From 922e27fea7a2409f2a23a741b939ddfe01130324 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 21 Jan 2022 05:02:30 +0530
Subject: [PATCH 0057/1641] reintroduce helm-docs step in ci (#8164)

---
 .github/workflows/ci.yaml | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 62843b1d7..63bc7da08 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -137,6 +137,17 @@ jobs:
         run: |
           ./build/run-in-docker.sh ./hack/verify-chart-lint.sh
 
+      - name: Run helm-docs
+        run: |
+          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.6.0
+          ./helm-docs --chart-search-root=${GITHUB_WORKSPACE}/charts
+          DIFF=$(git diff ${GITHUB_WORKSPACE}/charts/ingress-nginx/README.md)
+          if [ ! -z "$DIFF" ]; then
+            echo "Please use helm-docs in your clone, of your fork, of the project, and commit a updated README.md for the chart. https://github.com/kubernetes/ingress-nginx/blob/main/RELEASE.md#d-edit-the-valuesyaml-and-run-helm-docs"
+          fi
+          git diff --exit-code
+          rm -f ./helm-docs
+
       - name: fix permissions
         run: |
           sudo mkdir -p $HOME/.kube

From 53ac0ddd4214d9a3662751ba3741af3375af5478 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Thu, 27 Jan 2022 10:52:50 +0800
Subject: [PATCH 0058/1641] Using Go install for misspell (#8191)

* chore: using go install misspell

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* chore: fix typo

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 Makefile                                           | 2 +-
 docs/index.md                                      | 2 +-
 docs/user-guide/nginx-configuration/annotations.md | 4 ++--
 test/e2e/settings/namespace_selector.go            | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/Makefile b/Makefile
index ad2c8340d..b1c90e0f1 100644
--- a/Makefile
+++ b/Makefile
@@ -167,7 +167,7 @@ live-docs: ## Build and launch a local copy of the documentation website in http
 
 .PHONY: misspell
 misspell:  ## Check for spelling errors.
-	@go get github.com/client9/misspell/cmd/misspell
+	@go install github.com/client9/misspell/cmd/misspell@latest
 	misspell \
 		-locale US \
 		-error \
diff --git a/docs/index.md b/docs/index.md
index 2b35e7e01..63afaa66d 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -63,7 +63,7 @@ FIELDS:
 
 ```
 
-## What has caused this change in behaviour ?
+## What has caused this change in behavior?
 
 There are 2 reasons primarily.
 
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 2dacc5293..57542f25f 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -251,7 +251,7 @@ Client Certificate Authentication is applied per host and it is not possible to
 
 To enable, add the annotation `nginx.ingress.kubernetes.io/auth-tls-secret: namespace/secretName`. This secret must have a file named `ca.crt` containing the full Certificate Authority chain `ca.crt` that is enabled to authenticate against this Ingress.
 
-You can further customize client certificate authentication and behaviour with these annotations:
+You can further customize client certificate authentication and behavior with these annotations:
 
 * `nginx.ingress.kubernetes.io/auth-tls-verify-depth`: The validation depth between the provided client certificate and the Certification Authority chain. (default: 1)
 * `nginx.ingress.kubernetes.io/auth-tls-verify-client`: Enables verification of client certificates. Possible values are:
@@ -944,4 +944,4 @@ metadata:
         listen 8000;
         proxy_pass 127.0.0.1:80;
       }
-```
\ No newline at end of file
+```
diff --git a/test/e2e/settings/namespace_selector.go b/test/e2e/settings/namespace_selector.go
index 4fa28826a..ea162d594 100644
--- a/test/e2e/settings/namespace_selector.go
+++ b/test/e2e/settings/namespace_selector.go
@@ -98,7 +98,7 @@ var _ = framework.IngressNginxDescribe("[Flag] watch namespace selector", func()
 			_, err = f.KubeClientSet.CoreV1().Namespaces().Update(context.TODO(), ns, metav1.UpdateOptions{})
 			assert.Nil(ginkgo.GinkgoT(), err, "labeling not matched namespace")
 
-			// update ingress to trigger reconcilation
+			// update ingress to trigger reconciliation
 			ing, err := f.KubeClientSet.NetworkingV1().Ingresses(notMatchedNs).Get(context.TODO(), notMatchedHost, metav1.GetOptions{})
 			assert.Nil(ginkgo.GinkgoT(), err, "retrieve test ingress")
 			if ing.Labels == nil {

From 6eecefd3dab9e1784be609e3e83af0418a216539 Mon Sep 17 00:00:00 2001
From: Sandip Bhattacharya <sandipb@showmethesource.org>
Date: Thu, 27 Jan 2022 04:06:50 +0100
Subject: [PATCH 0059/1641] docs: fix inconsistent controller annotation
 (#8196)

The annotation for the controller class was inconsistent in the example. From my best understanding, I have tried to fix the inconsistency.

Also, removed an incomplete sentence. And made one sentence more clear by breaking it up.
---
 docs/user-guide/multiple-ingress.md | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/docs/user-guide/multiple-ingress.md b/docs/user-guide/multiple-ingress.md
index 83eeb3f48..246e38b52 100644
--- a/docs/user-guide/multiple-ingress.md
+++ b/docs/user-guide/multiple-ingress.md
@@ -2,12 +2,11 @@
 
 By default, deploying multiple Ingress controllers (e.g., `ingress-nginx` & `gce`) will result in all controllers simultaneously racing to update Ingress status fields in confusing ways.
 
-To fix this problem, use [IngressClasses](https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class), the `kubernetes.io/ingress.class` annotation  is deprecated from kubernetes v1.22+.
+To fix this problem, use [IngressClasses](https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class). The `kubernetes.io/ingress.class` annotation  is deprecated from kubernetes v1.22+.
 
 ## Using IngressClasses
 
 If all ingress controllers respect IngressClasses (e.g. multiple instances of ingress-nginx v1.0), you can deploy two Ingress controllers by granting them control over two different IngressClasses, then selecting one of the two IngressClasses with `ingressClassName`.
-When two or more 
 
 First, ensure the `--controller-class=` and `--ingress-class` are set to something different on each ingress controller:
 
@@ -20,7 +19,7 @@ spec:
          - name: ingress-nginx-internal-controller
            args:
              - /nginx-ingress-controller
-             - '--controller-class=k8s.io/internal-nginx'
+             - '--controller-class=k8s.io/internal-ingress-nginx'
              - '--ingress-class=k8s.io/internal-nginx'
             ...
 ```

From 0c2070ef4a70f09c0abe4d668dcdfd951522c9db Mon Sep 17 00:00:00 2001
From: Billy Walker <39878488+bwlkr@users.noreply.github.com>
Date: Thu, 27 Jan 2022 03:12:50 +0000
Subject: [PATCH 0060/1641] Adding annotations to the controller service
 account (#8173)

* fix: adding annotations to the controller service account

* fix: adding annotations to the controller service account
---
 charts/ingress-nginx/README.md                                | 1 +
 charts/ingress-nginx/templates/controller-serviceaccount.yaml | 4 ++++
 charts/ingress-nginx/values.yaml                              | 1 +
 3 files changed, 6 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 32dfd36e2..15536a79e 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -473,6 +473,7 @@ Kubernetes: `>=1.19.0-0`
 | rbac.create | bool | `true` |  |
 | rbac.scope | bool | `false` |  |
 | revisionHistoryLimit | int | `10` | Rollback limit |
+| serviceAccount.annotations | object | `{}` | Annotations for the controller service account |
 | serviceAccount.automountServiceAccountToken | bool | `true` |  |
 | serviceAccount.create | bool | `true` |  |
 | serviceAccount.name | string | `""` |  |
diff --git a/charts/ingress-nginx/templates/controller-serviceaccount.yaml b/charts/ingress-nginx/templates/controller-serviceaccount.yaml
index a4d7db5d2..824b2a124 100644
--- a/charts/ingress-nginx/templates/controller-serviceaccount.yaml
+++ b/charts/ingress-nginx/templates/controller-serviceaccount.yaml
@@ -10,5 +10,9 @@ metadata:
     {{- end }}
   name: {{ template "ingress-nginx.serviceAccountName" . }}
   namespace: {{ .Release.Namespace }}
+  {{- if .Values.serviceAccount.annotations }}
+  annotations:
+  {{ toYaml .Values.serviceAccount.annotations | indent 4 }}
+  {{- end }}
 automountServiceAccountToken: {{ .Values.serviceAccount.automountServiceAccountToken }}
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index bddd1eb5c..67144b097 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -888,6 +888,7 @@ serviceAccount:
   create: true
   name: ""
   automountServiceAccountToken: true
+  annotations: {}
 
 # -- Optional array of imagePullSecrets containing private registry credentials
 ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/

From 32aa3404f7a99c01d12329bbbe81550200b0ee27 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 26 Jan 2022 19:36:52 -0800
Subject: [PATCH 0061/1641] Bump github.com/opencontainers/runc from 1.0.3 to
 1.1.0 (#8179)

Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.0.3 to 1.1.0.
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/master/CHANGELOG.md)
- [Commits](https://github.com/opencontainers/runc/compare/v1.0.3...v1.1.0)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 31 ++++++++++++++++---------------
 2 files changed, 20 insertions(+), 19 deletions(-)

diff --git a/go.mod b/go.mod
index d3497ed21..496cb25c9 100644
--- a/go.mod
+++ b/go.mod
@@ -16,7 +16,7 @@ require (
 	github.com/moul/pb v0.0.0-20180404114147-54bdd96e6a52
 	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo v1.16.4
-	github.com/opencontainers/runc v1.0.3
+	github.com/opencontainers/runc v1.1.0
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.11.0
 	github.com/prometheus/client_model v0.2.0
@@ -60,7 +60,7 @@ require (
 	github.com/blang/semver v3.5.1+incompatible // indirect
 	github.com/cespare/xxhash/v2 v2.1.2 // indirect
 	github.com/coreos/go-systemd/v22 v22.3.2 // indirect
-	github.com/cyphar/filepath-securejoin v0.2.2 // indirect
+	github.com/cyphar/filepath-securejoin v0.2.3 // indirect
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/eapache/queue v1.1.0 // indirect
 	github.com/emicklei/go-restful v2.9.5+incompatible // indirect
@@ -73,7 +73,7 @@ require (
 	github.com/go-openapi/jsonpointer v0.19.5 // indirect
 	github.com/go-openapi/jsonreference v0.19.5 // indirect
 	github.com/go-openapi/swag v0.19.14 // indirect
-	github.com/godbus/dbus/v5 v5.0.4 // indirect
+	github.com/godbus/dbus/v5 v5.0.6 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
 	github.com/golang/protobuf v1.5.2 // indirect
@@ -95,7 +95,7 @@ require (
 	github.com/mailru/easyjson v0.7.6 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 // indirect
 	github.com/mmarkdown/mmark v2.0.40+incompatible // indirect
-	github.com/moby/sys/mountinfo v0.4.1 // indirect
+	github.com/moby/sys/mountinfo v0.5.0 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00 // indirect
diff --git a/go.sum b/go.sum
index 156bbe48b..64e23953d 100644
--- a/go.sum
+++ b/go.sum
@@ -101,7 +101,6 @@ github.com/beorn7/perks v1.0.0/go.mod h1:KWe93zE9D1o94FZ5RNwFwVgaQK1VOXiVxmqh+Ce
 github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM=
 github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6rlkpw=
 github.com/bgentry/speakeasy v0.1.0/go.mod h1:+zsyZBPWlz7T6j88CTgSN5bM796AkVf0kBD4zp0CCIs=
-github.com/bits-and-blooms/bitset v1.2.0/go.mod h1:gIdJ4wp64HaoK2YrL1Q5/N7Y16edYb8uY+O0FJTyyDA=
 github.com/bketelsen/crypt v0.0.3-0.20200106085610-5cbc8cc4026c/go.mod h1:MKsuJmJgSg28kpZDP6UIiPt0e0Oz0kqKNGyRaWEPv84=
 github.com/blang/semver v3.5.1+incompatible h1:cQNTCjp13qL8KC3Nbxr/y2Bqb63oX6wdnnjpJbkM4JQ=
 github.com/blang/semver v3.5.1+incompatible/go.mod h1:kRBLl5iJ+tD4TcOOxsy/0fnwebNt5EWlYSAyrTnjyyk=
@@ -114,11 +113,11 @@ github.com/cespare/xxhash v1.1.0/go.mod h1:XrSqR1VqqWfGrhpAt58auRo0WTKS1nRRg3ghf
 github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
 github.com/cespare/xxhash/v2 v2.1.2 h1:YRXhKfTDauu4ajMg1TPgFO5jnlC2HCbmLXMcTG5cbYE=
 github.com/cespare/xxhash/v2 v2.1.2/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
-github.com/checkpoint-restore/go-criu/v5 v5.0.0/go.mod h1:cfwC0EG7HMUenopBsUf9d89JlCLQIfgVcNsNN0t6T2M=
+github.com/checkpoint-restore/go-criu/v5 v5.3.0/go.mod h1:E/eQpaFtUKGOOSEBZgmKAcn+zUUwWxqcaKZlF54wK8E=
 github.com/chzyer/logex v1.1.10/go.mod h1:+Ywpsq7O8HXn0nuIou7OrIPyXbp3wmkHB+jjWRnGsAI=
 github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5PlCu98SY8svDHJxuZscDgtXS6KTTbou5AhLI=
 github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU=
-github.com/cilium/ebpf v0.6.2/go.mod h1:4tRaxcgiL706VnOzHOdBlY8IEAIdxINsQBcU4xJJXRs=
+github.com/cilium/ebpf v0.7.0/go.mod h1:/oI2+1shJiTGAMgl6/RgJr36Eo1jzrRcAWbcXO2usCA=
 github.com/circonus-labs/circonus-gometrics v2.3.1+incompatible/go.mod h1:nmEj6Dob7S7YxXgwXpfOuvO54S+tGdZdw9fuRZt25Ag=
 github.com/circonus-labs/circonusllhist v0.1.3/go.mod h1:kMXHVDlOchFAehlya5ePtbp5jckzBHf4XRpQvBOLI+I=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
@@ -135,7 +134,7 @@ github.com/cncf/xds/go v0.0.0-20211130200136-a8f946100490/go.mod h1:eXthEFrGJvWH
 github.com/cockroachdb/datadriven v0.0.0-20200714090401-bf6692d28da5/go.mod h1:h6jFvWxBdQXxjopDMZyH2UVceIRfR84bdzbkoKrsWNo=
 github.com/cockroachdb/errors v1.2.4/go.mod h1:rQD95gz6FARkaKkQXUksEje/d9a6wBJoCr5oaCLELYA=
 github.com/cockroachdb/logtags v0.0.0-20190617123548-eb05cc24525f/go.mod h1:i/u985jwjWRlyHXQbwatDASoW0RMlZ/3i9yJHE2xLkI=
-github.com/containerd/console v1.0.2/go.mod h1:ytZPjGgY2oeTkAONYafi2kSj0aYggsf8acV1PGKCbzQ=
+github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
 github.com/coreos/bbolt v1.3.2/go.mod h1:iRUV2dpdMOn7Bo10OQBFzIJO9kkE559Wcmn+qkEiiKk=
 github.com/coreos/etcd v3.3.10+incompatible/go.mod h1:uF7uidLiAD3TWHmW31ZFd/JWoc32PjwdhPthX9715RE=
 github.com/coreos/etcd v3.3.13+incompatible/go.mod h1:uF7uidLiAD3TWHmW31ZFd/JWoc32PjwdhPthX9715RE=
@@ -152,8 +151,8 @@ github.com/cpuguy83/go-md2man/v2 v2.0.0/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsr
 github.com/cpuguy83/go-md2man/v2 v2.0.1/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/creack/pty v1.1.11/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
-github.com/cyphar/filepath-securejoin v0.2.2 h1:jCwT2GTP+PY5nBz3c/YL5PAIbusElVrPujOBSCj8xRg=
-github.com/cyphar/filepath-securejoin v0.2.2/go.mod h1:FpkQEhXnPnOthhzymB7CGsFk2G9VLXONKD9G7QGMM+4=
+github.com/cyphar/filepath-securejoin v0.2.3 h1:YX6ebbZCZP7VkM3scTTokDgBL2TY741X51MTk3ycuNI=
+github.com/cyphar/filepath-securejoin v0.2.3/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
@@ -234,8 +233,9 @@ github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5F
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
 github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
-github.com/godbus/dbus/v5 v5.0.4 h1:9349emZab16e7zQvpmsbtjc18ykshndd8y2PG3sgJbA=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
+github.com/godbus/dbus/v5 v5.0.6 h1:mkgN1ofwASrYnJ5W6U/BxG15eXXXjirgZc7CLqkcaro=
+github.com/godbus/dbus/v5 v5.0.6/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
 github.com/gogo/protobuf v1.2.1/go.mod h1:hp+jE20tsWTFYpLwKvXlhS1hjn+gTNwPg2I6zVXpSg4=
 github.com/gogo/protobuf v1.3.1/go.mod h1:SlYgWuQ5SjCEi6WLHjHCa1yvBfUnHcTbrrZtXPKa29o=
@@ -479,8 +479,8 @@ github.com/mitchellh/mapstructure v1.4.3/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RR
 github.com/mmarkdown/mmark v2.0.40+incompatible h1:vMeUeDzBK3H+/mU0oMVfMuhSXJlIA+DE/DMPQNAj5C4=
 github.com/mmarkdown/mmark v2.0.40+incompatible/go.mod h1:Uvmoz7tvsWpr7bMVxIpqZPyN3FbOtzDmnsJDFp7ltJs=
 github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
-github.com/moby/sys/mountinfo v0.4.1 h1:1O+1cHA1aujwEwwVMa2Xm2l+gIpUHyd3+D+d7LZh1kM=
-github.com/moby/sys/mountinfo v0.4.1/go.mod h1:rEr8tzG/lsIZHBtN/JjGG+LMYx9eXgW2JI+6q0qou+A=
+github.com/moby/sys/mountinfo v0.5.0 h1:2Ks8/r6lopsxWi9m58nlwjaeSzUX9iiL1vj5qB/9ObI=
+github.com/moby/sys/mountinfo v0.5.0/go.mod h1:3bMD3Rg+zkqx8MRYPi7Pyb0Ie97QEBmdxbhnCLlSvSU=
 github.com/moby/term v0.0.0-20210610120745-9d4ed1856297/go.mod h1:vgPCkQMyxTZ7IDy8SXRufE172gr8+K/JE/7hHFxHW3A=
 github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w8PVh93nsPXa1VrQ6jlwL5oN8l14QlcNfg=
@@ -522,11 +522,11 @@ github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7J
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.15.0 h1:WjP/FQ/sk43MRmnEcT+MlDw2TFvkrXlprrPST/IudjU=
 github.com/onsi/gomega v1.15.0/go.mod h1:cIuvLEne0aoVhAgh/O6ac0Op8WWw9H6eYCriF+tEHG0=
-github.com/opencontainers/runc v1.0.3 h1:1hbqejyQWCJBvtKAfdO0b1FmaEf2z/bxnjqbARass5k=
-github.com/opencontainers/runc v1.0.3/go.mod h1:aTaHFFwQXuA71CiyxOdFFIorAoemI04suvGRQFzWTD0=
+github.com/opencontainers/runc v1.1.0 h1:O9+X96OcDjkmmZyfaG996kV7yq8HsoU2h1XRRQcefG8=
+github.com/opencontainers/runc v1.1.0/go.mod h1:Tj1hFw6eFWp/o33uxGf5yF2BX5yz2Z6iptFpuvbbKqc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
-github.com/opencontainers/selinux v1.8.2/go.mod h1:MUIHuUEvKB1wtJjQdOyYRgOnLD2xAPP8dBsCoU0KuF8=
+github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
 github.com/opentracing/opentracing-go v1.1.0/go.mod h1:UkNAQd3GIcIGf0SeVgPpRdFStlNbqXla1AfSYxPUl2o=
 github.com/pascaldekloe/goe v0.0.0-20180627143212-57f6aae5913c/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
 github.com/pascaldekloe/goe v0.1.0/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
@@ -589,7 +589,7 @@ github.com/sagikazarmark/crypt v0.3.0/go.mod h1:uD/D+6UF4SrIR1uGEv7bBNkNqLGqUr43
 github.com/savsgio/gotils v0.0.0-20210617111740-97865ed5a873 h1:N3Af8f13ooDKcIhsmFT7Z05CStZWu4C7Md0uDEy4q6o=
 github.com/savsgio/gotils v0.0.0-20210617111740-97865ed5a873/go.mod h1:dmPawKuiAeG/aFYVs2i+Dyosoo7FNcm+Pi8iK6ZUrX8=
 github.com/sean-/seed v0.0.0-20170313163322-e2103e2c3529/go.mod h1:DxrIzT+xaE7yg65j358z/aeFdxmN0P9QXhEzd20vsDc=
-github.com/seccomp/libseccomp-golang v0.9.1/go.mod h1:GbW5+tmTXfcxTToHLXlScSlAvWlF4P2Ca7zGrPiEpWo=
+github.com/seccomp/libseccomp-golang v0.9.2-0.20210429002308-3879420cc921/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
 github.com/sergi/go-diff v1.0.0/go.mod h1:0CfEIISq7TuYL3j771MWULgwwjU+GofnZX9QAmXWZgo=
 github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
 github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=
@@ -909,7 +909,6 @@ golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200803210538-64077c9b5642/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200831180312-196b9ba8737a/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200905004654-be1d3432aa8f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200909081042-eff7692f9009/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200923182605-d9f96fdee20d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -926,7 +925,6 @@ golang.org/x/sys v0.0.0-20210320140829-1e4c9ba3b0c4/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210330210617-4fbd30eecc44/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210403161142-5e06dd20ab57/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210426230700-d19ff857e887/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210514084401-e8d321eab015/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
@@ -938,9 +936,12 @@ golang.org/x/sys v0.0.0-20210806184541-e5e7981a1069/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20210816183151-1e6c022a8912/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210817190340-bfb29a6856f2/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210823070655-63515b42dcdf/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210906170528-6f6e22806c34/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210908233432-aa78b53d3365/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210927094055-39ccf1dd6fa6/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211007075335-d3039528d8ac/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211124211545-fe61309f8881/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211205182925-97ca703d548d h1:FjkYO/PPp4Wi0EAUOVLxePm7qVW4r4ctbWpURyuOD0E=
 golang.org/x/sys v0.0.0-20211205182925-97ca703d548d/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=

From 8cf73d9720106921447537098980319441859e21 Mon Sep 17 00:00:00 2001
From: Tiago Ferreira <tacf@users.noreply.github.com>
Date: Thu, 27 Jan 2022 16:34:59 +0000
Subject: [PATCH 0062/1641] Fix Indentation of example and link to cert-manager
 tutorial (#8203)

---
 docs/user-guide/tls.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/user-guide/tls.md b/docs/user-guide/tls.md
index 158d23fde..8a18069d4 100644
--- a/docs/user-guide/tls.md
+++ b/docs/user-guide/tls.md
@@ -115,7 +115,7 @@ spec:
   tls:
     - hosts:
         - ingress-demo.example.com
-        secretName: ingress-demo-tls
+      secretName: ingress-demo-tls
     [...]
 ```
 
@@ -156,5 +156,5 @@ data:
 [SNI]: https://en.wikipedia.org/wiki/Server_Name_Indication
 [mozilla-ssl-config-old]: https://ssl-config.mozilla.org/#server=nginx&config=old
 [cert-manager]: https://github.com/jetstack/cert-manager/
-[full-cert-manager-example]:https://cert-manager.io/docs/tutorials/acme/ingress/
+[full-cert-manager-example]:https://cert-manager.io/docs/tutorials/acme/nginx-ingress/
 [cert-manager-issuer-config]:https://cert-manager.io/docs/configuration/

From 40c69a1ef706a76c6b47d317003965ba9186cde3 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Fri, 28 Jan 2022 22:16:31 +0800
Subject: [PATCH 0063/1641] chore: add Artifact Hub lint (#8204)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 .github/workflows/ci.yaml        |  7 ++++
 charts/ingress-nginx/Chart.yaml  | 70 ++++++++++++++++----------------
 charts/ingress-nginx/README.md   | 10 +++--
 charts/ingress-nginx/values.yaml |  1 +
 4 files changed, 49 insertions(+), 39 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 63bc7da08..25b8d5e14 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -148,6 +148,13 @@ jobs:
           git diff --exit-code
           rm -f ./helm-docs
 
+      - name: Run Artifact Hub lint
+        run: |
+          wget https://github.com/artifacthub/hub/releases/download/v1.5.0/ah_1.5.0_linux_amd64.tar.gz
+          tar -xzvf ah_1.5.0_linux_amd64.tar.gz ah
+          ./ah lint -p charts/ingress-nginx || exit 1
+          rm -f ./ah ./ah_1.5.0_linux_amd64.tar.gz
+
       - name: fix permissions
         run: |
           sudo mkdir -p $HOME/.kube
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 4d48ca0c3..e57e3ebb6 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -24,38 +24,38 @@ annotations:
   # List of changes for the release in artifacthub.io
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
-    - #8120    Update go in runner and release v1.1.1
-    - #8119    Update to go v1.17.6
-    - #8118    Remove deprecated libraries, update other libs
-    - #8117    Fix codegen errors
-    - #8115    chart/ghaction: set the correct permission to have access to push a release
-    - #8098    generating SHA for CA only certs in backend_ssl.go + comparision of P…
-    - #8088    Fix Edit this page link to use main branch
-    - #8072    Expose GeoIP2 Continent code as variable
-    - #8061    docs(charts): using helm-docs for chart
-    - #8058    Bump github.com/spf13/cobra from 1.2.1 to 1.3.0
-    - #8054    Bump google.golang.org/grpc from 1.41.0 to 1.43.0
-    - #8051    align bug report with feature request regarding kind documentation
-    - #8046    Report expired certificates (#8045)
-    - #8044    remove G109 check till gosec resolves issues
-    - #8042    docs_multiple_instances_one_cluster_ticket_7543
-    - #8041    docs: fix typo'd executible name
-    - #8035    Comment busy owners
-    - #8029    Add stream-snippet as a ConfigMap and Annotation option
-    - #8023    fix nginx compilation flags
-    - #8021    Disable default modsecurity_rules_file if modsecurity-snippet is specified
-    - #8019    Revise main documentation page
-    - #8018    Preserve order of plugin invocation
-    - #8015    Add newline indenting to admission webhook annotations
-    - #8014    Add link to example error page manifest in docs
-    - #8009    Fix spelling in documentation and top-level files
-    - #8008    Add relabelings in controller-servicemonitor.yaml
-    - #8003    Minor improvements (formatting, consistency) in install guide
-    - #8001    fix: go-grpc Dockerfile
-    - #7999    images: use k8s-staging-test-infra/gcb-docker-gcloud
-    - #7996    doc: improvement
-    - #7983    Fix a couple of misspellings in the annotations documentation.
-    - #7979    allow set annotations for admission Jobs
-    - #7977    Add ssl_reject_handshake to defaul server
-    - #7975    add legacy version update v0.50.0 to main changelog
-    - #7972    updated service upstream definition
+    - "#8120    Update go in runner and release v1.1.1"
+    - "#8119    Update to go v1.17.6"
+    - "#8118    Remove deprecated libraries, update other libs"
+    - "#8117    Fix codegen errors"
+    - "#8115    chart/ghaction: set the correct permission to have access to push a release"
+    - "#8098    generating SHA for CA only certs in backend_ssl.go + comparision of P…"
+    - "#8088    Fix Edit this page link to use main branch"
+    - "#8072    Expose GeoIP2 Continent code as variable"
+    - "#8061    docs(charts): using helm-docs for chart"
+    - "#8058    Bump github.com/spf13/cobra from 1.2.1 to 1.3.0"
+    - "#8054    Bump google.golang.org/grpc from 1.41.0 to 1.43.0"
+    - "#8051    align bug report with feature request regarding kind documentation"
+    - "#8046    Report expired certificates (#8045)"
+    - "#8044    remove G109 check till gosec resolves issues"
+    - "#8042    docs_multiple_instances_one_cluster_ticket_7543"
+    - "#8041    docs: fix typo'd executible name"
+    - "#8035    Comment busy owners"
+    - "#8029    Add stream-snippet as a ConfigMap and Annotation option"
+    - "#8023    fix nginx compilation flags"
+    - "#8021    Disable default modsecurity_rules_file if modsecurity-snippet is specified"
+    - "#8019    Revise main documentation page"
+    - "#8018    Preserve order of plugin invocation"
+    - "#8015    Add newline indenting to admission webhook annotations"
+    - "#8014    Add link to example error page manifest in docs"
+    - "#8009    Fix spelling in documentation and top-level files"
+    - "#8008    Add relabelings in controller-servicemonitor.yaml"
+    - "#8003    Minor improvements (formatting, consistency) in install guide"
+    - "#8001    fix: go-grpc Dockerfile"
+    - "#7999    images: use k8s-staging-test-infra/gcb-docker-gcloud"
+    - "#7996    doc: improvement"
+    - "#7983    Fix a couple of misspellings in the annotations documentation."
+    - "#7979    allow set annotations for admission Jobs"
+    - "#7977    Add ssl_reject_handshake to defaul server"
+    - "#7975    add legacy version update v0.50.0 to main changelog"
+    - "#7972    updated service upstream definition"
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 15536a79e..17b534154 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.0.15](https://img.shields.io/badge/Version-4.0.15-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.1.1](https://img.shields.io/badge/AppVersion-1.1.1-informational?style=flat-square)
+![Version: 4.0.16](https://img.shields.io/badge/Version-4.0.16-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.1.1](https://img.shields.io/badge/AppVersion-1.1.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -237,6 +237,7 @@ Kubernetes: `>=1.19.0-0`
 
 | Key | Type | Default | Description |
 |-----|------|---------|-------------|
+| commonLabels | object | `{}` |  |
 | controller.addHeaders | object | `{}` | Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers |
 | controller.admissionWebhooks.annotations | object | `{}` |  |
 | controller.admissionWebhooks.certificate | string | `"/usr/local/certificates/cert"` |  |
@@ -278,10 +279,10 @@ Kubernetes: `>=1.19.0-0`
 | controller.autoscaling.targetMemoryUtilizationPercentage | int | `50` |  |
 | controller.autoscalingTemplate | list | `[]` |  |
 | controller.config | object | `{}` | Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/ |
-| controller.configAnnotations | object | `{}` | Annotations to be added to the controller config configuration configmap |
+| controller.configAnnotations | object | `{}` | Annotations to be added to the controller config configuration configmap. |
 | controller.configMapNamespace | string | `""` | Allows customization of the configmap / nginx-configmap namespace; defaults to $(POD_NAMESPACE) |
 | controller.containerName | string | `"controller"` | Configures the controller container name |
-| controller.containerPort | object | `{"http":80,"https":443}` | Configures the ports the nginx-controller listens on |
+| controller.containerPort | object | `{"http":80,"https":443}` | Configures the ports that the nginx-controller listens on |
 | controller.customTemplate.configMapKey | string | `""` |  |
 | controller.customTemplate.configMapName | string | `""` |  |
 | controller.dnsConfig | object | `{}` | Optionally customize the pod dnsConfig. |
@@ -293,6 +294,7 @@ Kubernetes: `>=1.19.0-0`
 | controller.extraContainers | list | `[]` | Additional containers to be added to the controller pod. See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example. |
 | controller.extraEnvs | list | `[]` | Additional environment variables to set |
 | controller.extraInitContainers | list | `[]` | Containers, which are run before the app containers are started. |
+| controller.extraModules | list | `[]` |  |
 | controller.extraVolumeMounts | list | `[]` | Additional volumeMounts to the controller main container. |
 | controller.extraVolumes | list | `[]` | Additional volumes to the controller pod. |
 | controller.healthCheckHost | string | `""` | Address to bind the health check endpoint. It is better to set this option to the internal node address if the ingress nginx controller is running in the `hostNetwork: true` mode. |
@@ -309,7 +311,7 @@ Kubernetes: `>=1.19.0-0`
 | controller.image.registry | string | `"k8s.gcr.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
 | controller.image.tag | string | `"v1.1.1"` |  |
-| controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller) |
+| controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
 | controller.ingressClassResource.default | bool | `false` | Is this the default ingressClass for the cluster |
 | controller.ingressClassResource.enabled | bool | `true` | Is this ingressClass enabled or not |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 67144b097..079094b2b 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -888,6 +888,7 @@ serviceAccount:
   create: true
   name: ""
   automountServiceAccountToken: true
+  # -- Annotations for the controller service account
   annotations: {}
 
 # -- Optional array of imagePullSecrets containing private registry credentials

From fbdfc6505b8fd9eea937ae10af641cbc1dfdc5cd Mon Sep 17 00:00:00 2001
From: naseemkullah <24660299+naseemkullah@users.noreply.github.com>
Date: Sun, 30 Jan 2022 06:52:23 -0500
Subject: [PATCH 0064/1641] feat(metrics): add path and method labels to
 requests counter (#8201)

---
 internal/ingress/metric/collectors/socket.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/internal/ingress/metric/collectors/socket.go b/internal/ingress/metric/collectors/socket.go
index a220d1456..44ca4b48b 100644
--- a/internal/ingress/metric/collectors/socket.go
+++ b/internal/ingress/metric/collectors/socket.go
@@ -190,7 +190,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost bool, bucke
 				Namespace:   PrometheusNamespace,
 				ConstLabels: constLabels,
 			},
-			[]string{"ingress", "namespace", "status", "service", "canary"},
+			requestTags,
 		),
 
 		bytesSent: prometheus.NewHistogramVec(

From a2a0e67fee9964796f56e3428cf6d1dc99ced261 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 31 Jan 2022 03:22:24 -0800
Subject: [PATCH 0065/1641] Bump github.com/prometheus/client_golang from
 1.11.0 to 1.12.1 (#8210)

Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.11.0 to 1.12.1.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.11.0...v1.12.1)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 10 ++++++----
 2 files changed, 9 insertions(+), 7 deletions(-)

diff --git a/go.mod b/go.mod
index 496cb25c9..fa5be593d 100644
--- a/go.mod
+++ b/go.mod
@@ -18,9 +18,9 @@ require (
 	github.com/onsi/ginkgo v1.16.4
 	github.com/opencontainers/runc v1.1.0
 	github.com/pmezard/go-difflib v1.0.0
-	github.com/prometheus/client_golang v1.11.0
+	github.com/prometheus/client_golang v1.12.1
 	github.com/prometheus/client_model v0.2.0
-	github.com/prometheus/common v0.31.1
+	github.com/prometheus/common v0.32.1
 	github.com/spf13/cobra v1.3.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.7.0
@@ -119,7 +119,7 @@ require (
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.5.0 // indirect
 	golang.org/x/oauth2 v0.0.0-20211104180415-d3ed0bb246c8 // indirect
-	golang.org/x/sys v0.0.0-20211205182925-97ca703d548d // indirect
+	golang.org/x/sys v0.0.0-20220114195835-da31bd327af9 // indirect
 	golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d // indirect
 	golang.org/x/text v0.3.7 // indirect
 	golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
diff --git a/go.sum b/go.sum
index 64e23953d..f7fe66f18 100644
--- a/go.sum
+++ b/go.sum
@@ -550,8 +550,9 @@ github.com/prometheus/client_golang v0.9.3/go.mod h1:/TN21ttK/J9q6uSwhBd54HahCDf
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
 github.com/prometheus/client_golang v1.4.0/go.mod h1:e9GMxYsXl05ICDXkRhurwBS4Q3OK1iX/F2sw+iXX5zU=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
-github.com/prometheus/client_golang v1.11.0 h1:HNkLOAEQMIDv/K+04rukrLx6ch7msSRwf3/SASFAGtQ=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
+github.com/prometheus/client_golang v1.12.1 h1:ZiaPsmm9uiBeaSMRznKsCDNtPCS0T3JVDGF+06gjBzk=
+github.com/prometheus/client_golang v1.12.1/go.mod h1:3Z9XVyYiZYEO+YQWt3RD2R3jrbd179Rt297l4aS6nDY=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
@@ -564,8 +565,8 @@ github.com/prometheus/common v0.9.1/go.mod h1:yhUN8i9wzaXS3w1O07YhxHEBxD+W35wd8b
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.31.1 h1:d18hG4PkHnNAKNMOmFuXFaiY8Us0nird/2m60uS1AMs=
-github.com/prometheus/common v0.31.1/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
+github.com/prometheus/common v0.32.1 h1:hWIdL3N2HoUx3B8j3YN9mWor0qhY/NlEKZEaXxuIRh4=
+github.com/prometheus/common v0.32.1/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.0-20190507164030-5867b95ac084/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
@@ -943,8 +944,9 @@ golang.org/x/sys v0.0.0-20211007075335-d3039528d8ac/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211124211545-fe61309f8881/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20211205182925-97ca703d548d h1:FjkYO/PPp4Wi0EAUOVLxePm7qVW4r4ctbWpURyuOD0E=
 golang.org/x/sys v0.0.0-20211205182925-97ca703d548d/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220114195835-da31bd327af9 h1:XfKQ4OlFl8okEOr5UvAqFRVj8pY/4yfcXrddB8qAbU0=
+golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d h1:SZxvLBoTP5yHO3Frd4z4vrF+DBX9vMVanchswa69toE=

From 0f464333a91b523581c6b1e74e49dd8afeb72906 Mon Sep 17 00:00:00 2001
From: stoupance <84509312+stoupance@users.noreply.github.com>
Date: Tue, 1 Feb 2022 18:34:10 +0100
Subject: [PATCH 0066/1641] Remove Capabilities.APIVersions for Kustomize to
 parse file (#7829)

---
 charts/ingress-nginx/templates/controller-servicemonitor.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/templates/controller-servicemonitor.yaml b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
index 74abe43a3..4dbc6da9f 100644
--- a/charts/ingress-nginx/templates/controller-servicemonitor.yaml
+++ b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
@@ -1,4 +1,4 @@
-{{- if and ( .Capabilities.APIVersions.Has "monitoring.coreos.com/v1" ) .Values.controller.metrics.enabled .Values.controller.metrics.serviceMonitor.enabled -}}
+{{- if and .Values.controller.metrics.enabled .Values.controller.metrics.serviceMonitor.enabled -}}
 apiVersion: monitoring.coreos.com/v1
 kind: ServiceMonitor
 metadata:

From dcd552ceb55b14087ad4e2a8c076055fa932e095 Mon Sep 17 00:00:00 2001
From: Damien Mathieu <42@dmathieu.com>
Date: Wed, 2 Feb 2022 14:12:22 +0100
Subject: [PATCH 0067/1641] use functional options to reduce number of methods
 creating an EchoDeployment (#8199)

---
 test/e2e/annotations/affinity.go              |  2 +-
 test/e2e/annotations/affinitymode.go          | 10 ++-
 test/e2e/annotations/authtls.go               |  2 +-
 test/e2e/annotations/canary.go                |  8 +--
 test/e2e/annotations/cors.go                  |  2 +-
 test/e2e/annotations/customhttperrors.go      |  2 +-
 test/e2e/annotations/proxyssl.go              |  2 +-
 test/e2e/annotations/upstreamhashby.go        |  2 +-
 test/e2e/framework/deployment.go              | 67 ++++++++++++-------
 test/e2e/ingress/multiple_rules.go            |  4 +-
 test/e2e/loadbalance/ewma.go                  |  2 +-
 test/e2e/loadbalance/round_robin.go           |  2 +-
 test/e2e/lua/dynamic_configuration.go         |  7 +-
 test/e2e/settings/default_ssl_certificate.go  |  2 +-
 test/e2e/settings/disable_catch_all.go        |  2 +-
 .../settings/disable_service_external_name.go |  2 +-
 test/e2e/settings/ingress_class.go            |  2 +-
 test/e2e/settings/namespace_selector.go       |  2 +-
 test/e2e/status/update.go                     |  2 +-
 test/e2e/tcpudp/tcp.go                        |  2 +-
 20 files changed, 75 insertions(+), 51 deletions(-)

diff --git a/test/e2e/annotations/affinity.go b/test/e2e/annotations/affinity.go
index 479860043..4ca567e4c 100644
--- a/test/e2e/annotations/affinity.go
+++ b/test/e2e/annotations/affinity.go
@@ -36,7 +36,7 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	f := framework.NewDefaultFramework("affinity")
 
 	ginkgo.BeforeEach(func() {
-		f.NewEchoDeploymentWithReplicas(2)
+		f.NewEchoDeployment(framework.WithDeploymentReplicas(2))
 	})
 
 	ginkgo.It("should set sticky cookie SERVERID", func() {
diff --git a/test/e2e/annotations/affinitymode.go b/test/e2e/annotations/affinitymode.go
index 3b533906e..6d22ea59f 100644
--- a/test/e2e/annotations/affinitymode.go
+++ b/test/e2e/annotations/affinitymode.go
@@ -34,7 +34,10 @@ var _ = framework.DescribeAnnotation("affinitymode", func() {
 	ginkgo.It("Balanced affinity mode should balance", func() {
 		deploymentName := "affinitybalanceecho"
 		replicas := 5
-		f.NewEchoDeploymentWithNameAndReplicas(deploymentName, replicas)
+		f.NewEchoDeployment(
+			framework.WithDeploymentName(deploymentName),
+			framework.WithDeploymentReplicas(replicas),
+		)
 
 		host := "affinity-mode-balance.com"
 		annotations := make(map[string]string)
@@ -64,7 +67,10 @@ var _ = framework.DescribeAnnotation("affinitymode", func() {
 	ginkgo.It("Check persistent affinity mode", func() {
 		deploymentName := "affinitypersistentecho"
 		replicas := 5
-		f.NewEchoDeploymentWithNameAndReplicas(deploymentName, replicas)
+		f.NewEchoDeployment(
+			framework.WithDeploymentName(deploymentName),
+			framework.WithDeploymentReplicas(replicas),
+		)
 
 		host := "affinity-mode-persistent.com"
 		annotations := make(map[string]string)
diff --git a/test/e2e/annotations/authtls.go b/test/e2e/annotations/authtls.go
index 093afe14e..790165475 100644
--- a/test/e2e/annotations/authtls.go
+++ b/test/e2e/annotations/authtls.go
@@ -30,7 +30,7 @@ var _ = framework.DescribeAnnotation("auth-tls-*", func() {
 	f := framework.NewDefaultFramework("authtls")
 
 	ginkgo.BeforeEach(func() {
-		f.NewEchoDeploymentWithReplicas(2)
+		f.NewEchoDeployment(framework.WithDeploymentReplicas(2))
 	})
 
 	ginkgo.It("should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret", func() {
diff --git a/test/e2e/annotations/canary.go b/test/e2e/annotations/canary.go
index 31e740434..4f1bdcad6 100644
--- a/test/e2e/annotations/canary.go
+++ b/test/e2e/annotations/canary.go
@@ -39,10 +39,10 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 	ginkgo.BeforeEach(func() {
 		// Deployment for main backend
-		f.NewEchoDeploymentWithReplicas(1)
+		f.NewEchoDeployment()
 
 		// Deployment for canary backend
-		f.NewEchoDeploymentWithNameAndReplicas(canaryService, 1)
+		f.NewEchoDeployment(framework.WithDeploymentName(canaryService))
 	})
 
 	ginkgo.Context("when canary is created", func() {
@@ -132,7 +132,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 				ginkgo.By("returning a 503 status when the mainline deployment has 0 replicas and a request is sent to the canary")
 
-				f.NewEchoDeploymentWithReplicas(0)
+				f.NewEchoDeployment(framework.WithDeploymentReplicas(0))
 
 				resp, _, errs := gorequest.New().
 					Get(f.GetURL(framework.HTTP)).
@@ -145,7 +145,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 				ginkgo.By("returning a 200 status when the canary deployment has 0 replicas and a request is sent to the mainline ingress")
 
-				f.NewEchoDeploymentWithReplicas(1)
+				f.NewEchoDeployment()
 				f.NewDeployment(canaryService, "k8s.gcr.io/e2e-test-images/echoserver:2.3", 8080, 0)
 
 				resp, _, errs = gorequest.New().
diff --git a/test/e2e/annotations/cors.go b/test/e2e/annotations/cors.go
index 64b633173..c249b3877 100644
--- a/test/e2e/annotations/cors.go
+++ b/test/e2e/annotations/cors.go
@@ -29,7 +29,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	f := framework.NewDefaultFramework("cors")
 
 	ginkgo.BeforeEach(func() {
-		f.NewEchoDeploymentWithReplicas(2)
+		f.NewEchoDeployment(framework.WithDeploymentReplicas(2))
 	})
 
 	ginkgo.It("should enable cors", func() {
diff --git a/test/e2e/annotations/customhttperrors.go b/test/e2e/annotations/customhttperrors.go
index c0115cb52..7256b93fa 100644
--- a/test/e2e/annotations/customhttperrors.go
+++ b/test/e2e/annotations/customhttperrors.go
@@ -101,7 +101,7 @@ var _ = framework.DescribeAnnotation("custom-http-errors", func() {
 
 		ginkgo.By("using the custom default-backend from annotation for upstream")
 		customDefaultBackend := "from-annotation"
-		f.NewEchoDeploymentWithNameAndReplicas(customDefaultBackend, 1)
+		f.NewEchoDeployment(framework.WithDeploymentName(customDefaultBackend))
 
 		err = framework.UpdateIngress(f.KubeClientSet, f.Namespace, host, func(ingress *networking.Ingress) error {
 			ingress.ObjectMeta.Annotations["nginx.ingress.kubernetes.io/default-backend"] = customDefaultBackend
diff --git a/test/e2e/annotations/proxyssl.go b/test/e2e/annotations/proxyssl.go
index 0e928664e..3672a4d81 100644
--- a/test/e2e/annotations/proxyssl.go
+++ b/test/e2e/annotations/proxyssl.go
@@ -150,7 +150,7 @@ var _ = framework.DescribeAnnotation("proxy-ssl-*", func() {
 	ginkgo.It("proxy-ssl-location-only flag should change the nginx config server part", func() {
 		host := "proxyssl.com"
 
-		f.NewEchoDeploymentWithNameAndReplicas("echodeployment", 1)
+		f.NewEchoDeployment(framework.WithDeploymentName("echodeployment"))
 
 		secretName := "secretone"
 		annotations := make(map[string]string)
diff --git a/test/e2e/annotations/upstreamhashby.go b/test/e2e/annotations/upstreamhashby.go
index 9474f2b2b..c4732a18d 100644
--- a/test/e2e/annotations/upstreamhashby.go
+++ b/test/e2e/annotations/upstreamhashby.go
@@ -77,7 +77,7 @@ var _ = framework.DescribeAnnotation("upstream-hash-by-*", func() {
 	f := framework.NewDefaultFramework("upstream-hash-by")
 
 	ginkgo.BeforeEach(func() {
-		f.NewEchoDeploymentWithReplicas(6)
+		f.NewEchoDeployment(framework.WithDeploymentReplicas(6))
 	})
 
 	ginkgo.It("should connect to the same pod", func() {
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index c5fded856..3775af8bc 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -40,30 +40,45 @@ const HTTPBinService = "httpbin"
 // NginxBaseImage use for testing
 const NginxBaseImage = "k8s.gcr.io/ingress-nginx/nginx:v20210926-g5662db450@sha256:1ef404b5e8741fe49605a1f40c3fdd8ef657aecdb9526ea979d1672eeabd0cd9"
 
+type deploymentOptions struct {
+	namespace string
+	name      string
+	replicas  int
+}
+
+// WithDeploymentNamespace allows configuring the deployment's namespace
+func WithDeploymentNamespace(n string) func(*deploymentOptions) {
+	return func(o *deploymentOptions) {
+		o.namespace = n
+	}
+}
+
+// WithDeploymentName allows configuring the deployment's names
+func WithDeploymentName(n string) func(*deploymentOptions) {
+	return func(o *deploymentOptions) {
+		o.name = n
+	}
+}
+
+// WithDeploymentReplicas allows configuring the deployment's replicas count
+func WithDeploymentReplicas(r int) func(*deploymentOptions) {
+	return func(o *deploymentOptions) {
+		o.replicas = r
+	}
+}
+
 // NewEchoDeployment creates a new single replica deployment of the echoserver image in a particular namespace
-func (f *Framework) NewEchoDeployment() {
-	f.NewEchoDeploymentWithReplicas(1)
-}
+func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
+	options := &deploymentOptions{
+		namespace: f.Namespace,
+		name:      EchoService,
+		replicas:  1,
+	}
+	for _, o := range opts {
+		o(options)
+	}
 
-// NewEchoDeploymentWithReplicas creates a new deployment of the echoserver image in a particular namespace. Number of
-// replicas is configurable
-func (f *Framework) NewEchoDeploymentWithReplicas(replicas int) {
-	f.NewEchoDeploymentWithNameAndReplicas(EchoService, replicas)
-}
-
-// NewEchoDeploymentWithNameAndReplicas creates a new deployment of the echoserver image in a particular namespace. Number of
-// replicas is configurable and
-// name is configurable
-func (f *Framework) NewEchoDeploymentWithNameAndReplicas(name string, replicas int) {
-	f.newEchoDeployment(f.Namespace, name, replicas)
-}
-
-func (f *Framework) NewEchoDeploymentWithNamespaceAndReplicas(namespace string, replicas int) {
-	f.newEchoDeployment(namespace, EchoService, replicas)
-}
-
-func (f *Framework) newEchoDeployment(namespace, name string, replicas int) {
-	deployment := newDeployment(name, namespace, "k8s.gcr.io/ingress-nginx/e2e-test-echo@sha256:131ece0637b29231470cfaa04690c2966a2e0b147d3c9df080a0857b78982410", 80, int32(replicas),
+	deployment := newDeployment(options.name, options.namespace, "k8s.gcr.io/ingress-nginx/e2e-test-echo@sha256:131ece0637b29231470cfaa04690c2966a2e0b147d3c9df080a0857b78982410", 80, int32(options.replicas),
 		nil,
 		[]corev1.VolumeMount{},
 		[]corev1.Volume{},
@@ -73,8 +88,8 @@ func (f *Framework) newEchoDeployment(namespace, name string, replicas int) {
 
 	service := &corev1.Service{
 		ObjectMeta: metav1.ObjectMeta{
-			Name:      name,
-			Namespace: namespace,
+			Name:      options.name,
+			Namespace: options.namespace,
 		},
 		Spec: corev1.ServiceSpec{
 			Ports: []corev1.ServicePort{
@@ -86,14 +101,14 @@ func (f *Framework) newEchoDeployment(namespace, name string, replicas int) {
 				},
 			},
 			Selector: map[string]string{
-				"app": name,
+				"app": options.name,
 			},
 		},
 	}
 
 	f.EnsureService(service)
 
-	err := WaitForEndpoints(f.KubeClientSet, DefaultTimeout, name, namespace, replicas)
+	err := WaitForEndpoints(f.KubeClientSet, DefaultTimeout, options.name, options.namespace, options.replicas)
 	assert.Nil(ginkgo.GinkgoT(), err, "waiting for endpoints to become ready")
 }
 
diff --git a/test/e2e/ingress/multiple_rules.go b/test/e2e/ingress/multiple_rules.go
index 030be172a..07f5c1427 100644
--- a/test/e2e/ingress/multiple_rules.go
+++ b/test/e2e/ingress/multiple_rules.go
@@ -31,8 +31,8 @@ var _ = framework.IngressNginxDescribe("single ingress - multiple hosts", func()
 	f := framework.NewDefaultFramework("simh")
 	pathprefix := networking.PathTypePrefix
 	ginkgo.BeforeEach(func() {
-		f.NewEchoDeploymentWithNameAndReplicas("first-service", 1)
-		f.NewEchoDeploymentWithNameAndReplicas("second-service", 1)
+		f.NewEchoDeployment(framework.WithDeploymentName("first-service"))
+		f.NewEchoDeployment(framework.WithDeploymentName("second-service"))
 	})
 
 	ginkgo.It("should set the correct $service_name NGINX variable", func() {
diff --git a/test/e2e/loadbalance/ewma.go b/test/e2e/loadbalance/ewma.go
index 52e235569..15289f372 100644
--- a/test/e2e/loadbalance/ewma.go
+++ b/test/e2e/loadbalance/ewma.go
@@ -32,7 +32,7 @@ var _ = framework.DescribeSetting("[Load Balancer] EWMA", func() {
 	f := framework.NewDefaultFramework("ewma")
 
 	ginkgo.BeforeEach(func() {
-		f.NewEchoDeploymentWithReplicas(3)
+		f.NewEchoDeployment(framework.WithDeploymentReplicas(3))
 		f.SetNginxConfigMapData(map[string]string{
 			"worker-processes": "2",
 			"load-balance":     "ewma"},
diff --git a/test/e2e/loadbalance/round_robin.go b/test/e2e/loadbalance/round_robin.go
index f035005dd..bc74ba9fb 100644
--- a/test/e2e/loadbalance/round_robin.go
+++ b/test/e2e/loadbalance/round_robin.go
@@ -32,7 +32,7 @@ var _ = framework.DescribeSetting("[Load Balancer] round-robin", func() {
 	f := framework.NewDefaultFramework("round-robin")
 
 	ginkgo.BeforeEach(func() {
-		f.NewEchoDeploymentWithReplicas(3)
+		f.NewEchoDeployment(framework.WithDeploymentReplicas(3))
 		f.UpdateNginxConfigMapData("worker-processes", "1")
 	})
 
diff --git a/test/e2e/lua/dynamic_configuration.go b/test/e2e/lua/dynamic_configuration.go
index 0a88fb07b..b382e52cc 100644
--- a/test/e2e/lua/dynamic_configuration.go
+++ b/test/e2e/lua/dynamic_configuration.go
@@ -43,7 +43,7 @@ var _ = framework.IngressNginxDescribe("[Lua] dynamic configuration", func() {
 	f := framework.NewDefaultFramework("dynamic-configuration")
 
 	ginkgo.BeforeEach(func() {
-		f.NewEchoDeploymentWithReplicas(1)
+		f.NewEchoDeployment()
 		ensureIngress(f, "foo.com", framework.EchoService)
 	})
 
@@ -124,7 +124,10 @@ var _ = framework.IngressNginxDescribe("[Lua] dynamic configuration", func() {
 
 		ginkgo.It("handles endpoints only changes consistently (down scaling of replicas vs. empty service)", func() {
 			deploymentName := "scalingecho"
-			f.NewEchoDeploymentWithNameAndReplicas(deploymentName, 0)
+			f.NewEchoDeployment(
+				framework.WithDeploymentName(deploymentName),
+				framework.WithDeploymentReplicas(0),
+			)
 			createIngress(f, "scaling.foo.com", deploymentName)
 
 			resp := f.HTTPTestClient().
diff --git a/test/e2e/settings/default_ssl_certificate.go b/test/e2e/settings/default_ssl_certificate.go
index 421a1543b..eede8ef75 100644
--- a/test/e2e/settings/default_ssl_certificate.go
+++ b/test/e2e/settings/default_ssl_certificate.go
@@ -38,7 +38,7 @@ var _ = framework.IngressNginxDescribe("[SSL] [Flag] default-ssl-certificate", f
 	port := 80
 
 	ginkgo.BeforeEach(func() {
-		f.NewEchoDeploymentWithReplicas(1)
+		f.NewEchoDeployment(framework.WithDeploymentReplicas(1))
 
 		var err error
 		tlsConfig, err = framework.CreateIngressTLSSecret(f.KubeClientSet,
diff --git a/test/e2e/settings/disable_catch_all.go b/test/e2e/settings/disable_catch_all.go
index f5d9bfadc..dce772f9a 100644
--- a/test/e2e/settings/disable_catch_all.go
+++ b/test/e2e/settings/disable_catch_all.go
@@ -34,7 +34,7 @@ var _ = framework.IngressNginxDescribe("[Flag] disable-catch-all", func() {
 	f := framework.NewDefaultFramework("disabled-catch-all")
 
 	ginkgo.BeforeEach(func() {
-		f.NewEchoDeploymentWithReplicas(1)
+		f.NewEchoDeployment(framework.WithDeploymentReplicas(1))
 
 		err := f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
 			args := deployment.Spec.Template.Spec.Containers[0].Args
diff --git a/test/e2e/settings/disable_service_external_name.go b/test/e2e/settings/disable_service_external_name.go
index 910a906ca..d8da89d4a 100644
--- a/test/e2e/settings/disable_service_external_name.go
+++ b/test/e2e/settings/disable_service_external_name.go
@@ -35,7 +35,7 @@ var _ = framework.IngressNginxDescribe("[Flag] disable-service-external-name", f
 	f := framework.NewDefaultFramework("disabled-service-external-name")
 
 	ginkgo.BeforeEach(func() {
-		f.NewEchoDeploymentWithReplicas(2)
+		f.NewEchoDeployment(framework.WithDeploymentReplicas(2))
 
 		err := f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
 			args := deployment.Spec.Template.Spec.Containers[0].Args
diff --git a/test/e2e/settings/ingress_class.go b/test/e2e/settings/ingress_class.go
index 09134ccba..2372d209b 100644
--- a/test/e2e/settings/ingress_class.go
+++ b/test/e2e/settings/ingress_class.go
@@ -45,7 +45,7 @@ var _ = framework.IngressNginxDescribe("[Flag] ingress-class", func() {
 	otherController := "k8s.io/other-class"
 
 	ginkgo.BeforeEach(func() {
-		f.NewEchoDeploymentWithReplicas(1)
+		f.NewEchoDeployment(framework.WithDeploymentReplicas(1))
 
 		doOnce.Do(func() {
 			_, err := f.KubeClientSet.NetworkingV1().IngressClasses().
diff --git a/test/e2e/settings/namespace_selector.go b/test/e2e/settings/namespace_selector.go
index ea162d594..7c07a841d 100644
--- a/test/e2e/settings/namespace_selector.go
+++ b/test/e2e/settings/namespace_selector.go
@@ -37,7 +37,7 @@ var _ = framework.IngressNginxDescribe("[Flag] watch namespace selector", func()
 	prepareTestIngress := func(baseName string, host string, labels map[string]string) string {
 		ns, err := framework.CreateKubeNamespaceWithLabel(f.BaseName, labels, f.KubeClientSet)
 		assert.Nil(ginkgo.GinkgoT(), err, "creating test namespace")
-		f.NewEchoDeploymentWithNamespaceAndReplicas(ns, 1)
+		f.NewEchoDeployment(framework.WithDeploymentNamespace(ns))
 		ing := framework.NewSingleIngressWithIngressClass(host, "/", host, ns, framework.EchoService, f.IngressClass, 80, nil)
 		f.EnsureIngress(ing)
 		return ns
diff --git a/test/e2e/status/update.go b/test/e2e/status/update.go
index 23679afdc..43d61b0e9 100644
--- a/test/e2e/status/update.go
+++ b/test/e2e/status/update.go
@@ -69,7 +69,7 @@ var _ = framework.IngressNginxDescribe("[Status] status update", func() {
 		})
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error updating ingress controller deployment flags")
 
-		f.NewEchoDeploymentWithReplicas(1)
+		f.NewEchoDeployment()
 
 		ing := f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil))
 
diff --git a/test/e2e/tcpudp/tcp.go b/test/e2e/tcpudp/tcp.go
index 9b1885510..553cb46d3 100644
--- a/test/e2e/tcpudp/tcp.go
+++ b/test/e2e/tcpudp/tcp.go
@@ -38,7 +38,7 @@ var _ = framework.IngressNginxDescribe("[TCP] tcp-services", func() {
 	f := framework.NewDefaultFramework("tcp")
 
 	ginkgo.It("should expose a TCP service", func() {
-		f.NewEchoDeploymentWithReplicas(1)
+		f.NewEchoDeployment()
 
 		config, err := f.KubeClientSet.
 			CoreV1().

From a46626b259d87bfde2a9967cf3a16862638521b3 Mon Sep 17 00:00:00 2001
From: Kundan Kumar <kundan.kumar@india.nec.com>
Date: Mon, 7 Feb 2022 01:40:52 +0530
Subject: [PATCH 0068/1641] 8217 fix removed extra v (#8218)

---
 cmd/plugin/ingress-nginx.yaml.tmpl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/cmd/plugin/ingress-nginx.yaml.tmpl b/cmd/plugin/ingress-nginx.yaml.tmpl
index 1283cb7f3..9fce2d92d 100644
--- a/cmd/plugin/ingress-nginx.yaml.tmpl
+++ b/cmd/plugin/ingress-nginx.yaml.tmpl
@@ -6,7 +6,7 @@ spec:
   shortDescription: Interact with ingress-nginx
   description: |
     The official kubectl plugin for ingress-nginx.
-  version: v%%%tag%%%
+  version: %%%tag%%%
   homepage: https://kubernetes.github.io/ingress-nginx/kubectl-plugin/
   platforms:
   - uri: https://github.com/kubernetes/ingress-nginx/releases/download/nginx-%%%tag%%%/kubectl-ingress_nginx-darwin-arm64.tar.gz

From 6b6ebf0a7c5d3cdc8eacdfb0ec63f50e811d5dc4 Mon Sep 17 00:00:00 2001
From: Alexander Brand <alexbrand09@gmail.com>
Date: Sun, 6 Feb 2022 15:14:53 -0500
Subject: [PATCH 0069/1641] Update the $req_id placeholder description (#8163)

---
 docs/user-guide/nginx-configuration/log-format.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/log-format.md b/docs/user-guide/nginx-configuration/log-format.md
index e39c5f695..4a8a45755 100644
--- a/docs/user-guide/nginx-configuration/log-format.md
+++ b/docs/user-guide/nginx-configuration/log-format.md
@@ -29,7 +29,7 @@ log_format upstreaminfo
 | `$upstream_response_length` | the length of the response obtained from the upstream server |
 | `$upstream_response_time` | time spent on receiving the response from the upstream server as seconds with millisecond resolution |
 | `$upstream_status` | status code of the response obtained from the upstream server |
-| `$req_id` | the randomly generated ID of the request  |
+| `$req_id` | value of the `X-Request-ID` HTTP header. If the header is not set, a randomly generated ID. |
 
 Additional available variables:
 

From 4b4895b53bb5fd00874deeeb914d5d36fd19556e Mon Sep 17 00:00:00 2001
From: Tomas Hulata <tombo@sysart.tech>
Date: Sun, 6 Feb 2022 21:18:51 +0100
Subject: [PATCH 0070/1641] add ingress.class (#8136)

Signed-off-by: tombokombo <tombo@sysart.tech>
---
 charts/ingress-nginx/Chart.yaml            | 2 +-
 charts/ingress-nginx/README.md             | 3 ++-
 charts/ingress-nginx/templates/_params.tpl | 3 +++
 charts/ingress-nginx/values.yaml           | 4 ++++
 4 files changed, 10 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index e57e3ebb6..6a8510284 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.0.16
+version: 4.0.17
 appVersion: 1.1.1
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 17b534154..e5e93a146 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.0.16](https://img.shields.io/badge/Version-4.0.16-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.1.1](https://img.shields.io/badge/AppVersion-1.1.1-informational?style=flat-square)
+![Version: 4.0.17](https://img.shields.io/badge/Version-4.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.1.1](https://img.shields.io/badge/AppVersion-1.1.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -311,6 +311,7 @@ Kubernetes: `>=1.19.0-0`
 | controller.image.registry | string | `"k8s.gcr.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
 | controller.image.tag | string | `"v1.1.1"` |  |
+| controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
 | controller.ingressClassResource.default | bool | `false` | Is this the default ingressClass for the cluster |
diff --git a/charts/ingress-nginx/templates/_params.tpl b/charts/ingress-nginx/templates/_params.tpl
index 64a462eaa..305ce0dd2 100644
--- a/charts/ingress-nginx/templates/_params.tpl
+++ b/charts/ingress-nginx/templates/_params.tpl
@@ -12,6 +12,9 @@
 {{- end }}
 - --election-id={{ .Values.controller.electionID }}
 - --controller-class={{ .Values.controller.ingressClassResource.controllerValue }}
+{{- if .Values.controller.ingressClass }}
+- --ingress-class={{ .Values.controller.ingressClass }}
+{{- end }}
 - --configmap={{ default "$(POD_NAMESPACE)" .Values.controller.configMapNamespace }}/{{ include "ingress-nginx.controller.fullname" . }}
 {{- if .Values.tcp }}
 - --tcp-services-configmap={{ default "$(POD_NAMESPACE)" .Values.controller.tcp.configMapNamespace }}/{{ include "ingress-nginx.fullname" . }}-tcp
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 079094b2b..eb6db4a05 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -116,6 +116,10 @@ controller:
     # does not require extra parameters.
     parameters: {}
 
+  # -- For backwards compatibility with ingress.class annotation, use ingressClass.
+  # Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation
+  ingressClass: nginx
+
   # -- Labels to add to the pod container metadata
   podLabels: {}
   #  key: value

From d769ceaa5b29af5095224a44fdfcc774612a3981 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 6 Feb 2022 12:22:52 -0800
Subject: [PATCH 0071/1641] Bump google.golang.org/grpc from 1.43.0 to 1.44.0
 (#8209)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.43.0 to 1.44.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.43.0...v1.44.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index fa5be593d..98d374bf0 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5
 	golang.org/x/net v0.0.0-20211209124913-491a49abca63
-	google.golang.org/grpc v1.43.0
+	google.golang.org/grpc v1.44.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	k8s.io/api v0.22.5
 	k8s.io/apiextensions-apiserver v0.22.5
diff --git a/go.sum b/go.sum
index f7fe66f18..573fc3f84 100644
--- a/go.sum
+++ b/go.sum
@@ -1171,8 +1171,8 @@ google.golang.org/grpc v1.39.1/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnD
 google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
 google.golang.org/grpc v1.40.1/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
 google.golang.org/grpc v1.42.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU=
-google.golang.org/grpc v1.43.0 h1:Eeu7bZtDZ2DpRCsLhUlcrLnvYaMK1Gz86a+hMVvELmM=
-google.golang.org/grpc v1.43.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU=
+google.golang.org/grpc v1.44.0 h1:weqSxi/TMs1SqFRMHCtBgXRs8k3X39QIDEZ0pRcttUg=
+google.golang.org/grpc v1.44.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU=
 google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=

From 04035cc1c2487a73f47450e3d2f45721391de4fe Mon Sep 17 00:00:00 2001
From: Elvin Efendi <elvin.efendiyev@gmail.com>
Date: Sun, 6 Feb 2022 15:28:51 -0500
Subject: [PATCH 0072/1641] Do not validate ingresses with unknown ingress
 class in admission webhook endpoint. (#8221)

---
 internal/ingress/controller/controller.go     |  6 ++++
 .../ingress/controller/controller_test.go     |  4 +++
 internal/ingress/controller/store/store.go    |  3 ++
 test/e2e/admission/admission.go               | 29 +++++++++++++++++++
 4 files changed, 42 insertions(+)

diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 48a91b67b..9afe00953 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -233,6 +233,12 @@ func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
 		return nil
 	}
 
+	// Do not attempt to validate an ingress that's not meant to be controlled by the current instance of the controller.
+	if ingressClass, err := n.store.GetIngressClass(ing, n.cfg.IngressClassConfiguration); ingressClass == "" {
+		klog.Warningf("ignoring ingress %v in %v based on annotation %v: %v", ing.Name, ing.ObjectMeta.Namespace, ingressClass, err)
+		return nil
+	}
+
 	if n.cfg.Namespace != "" && ing.ObjectMeta.Namespace != n.cfg.Namespace {
 		klog.Warningf("ignoring ingress %v in namespace %v different from the namespace watched %s", ing.Name, ing.ObjectMeta.Namespace, n.cfg.Namespace)
 		return nil
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index b67929b97..5e3eb9113 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -63,6 +63,10 @@ type fakeIngressStore struct {
 	configuration ngx_config.Configuration
 }
 
+func (fakeIngressStore) GetIngressClass(ing *networking.Ingress, icConfig *ingressclass.IngressClassConfiguration) (string, error) {
+	return "nginx", nil
+}
+
 func (fis fakeIngressStore) GetBackendConfiguration() ngx_config.Configuration {
 	return fis.configuration
 }
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 7e9b89735..2b15dc74d 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -98,6 +98,9 @@ type Storer interface {
 
 	// Run initiates the synchronization of the controllers
 	Run(stopCh chan struct{})
+
+	// GetIngressClass validates given ingress against ingress class configuration and returns the ingress class.
+	GetIngressClass(ing *networkingv1.Ingress, icConfig *ingressclass.IngressClassConfiguration) (string, error)
 }
 
 // EventType type of event associated with an informer
diff --git a/test/e2e/admission/admission.go b/test/e2e/admission/admission.go
index 2099e54d4..c4c1ef76d 100644
--- a/test/e2e/admission/admission.go
+++ b/test/e2e/admission/admission.go
@@ -191,6 +191,12 @@ var _ = framework.IngressNginxDescribe("[Serial] admission controller", func() {
 			assert.NotNil(ginkgo.GinkgoT(), err, "creating an ingress with invalid configuration should return an error")
 		}
 	})
+
+	ginkgo.It("should not return an error for an invalid Ingress when it has unknown class", func() {
+		out, err := createIngress(f.Namespace, invalidV1IngressWithOtherClass)
+		assert.Equal(ginkgo.GinkgoT(), "ingress.networking.k8s.io/extensions-invalid-other created\n", out)
+		assert.Nil(ginkgo.GinkgoT(), err, "creating an invalid ingress with unknown class using kubectl")
+	})
 })
 
 func uninstallChart(f *framework.Framework) error {
@@ -270,6 +276,29 @@ spec:
             port:
               number: 80
 ---
+`
+	invalidV1IngressWithOtherClass = `
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: extensions-invalid-other
+  annotations:
+    nginx.ingress.kubernetes.io/configuration-snippet: |
+      invalid directive
+spec:
+  ingressClassName: nginx-other
+  rules:
+  - host: extensions-invalid
+    http:
+      paths:
+      - path: /
+        pathType: Prefix
+        backend:
+          service:
+            name: echo
+            port:
+              number: 80
+---
 `
 )
 

From 935ea3d8303cfa56bd42358f39adfa922a883038 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 6 Feb 2022 17:42:51 -0300
Subject: [PATCH 0073/1641] Update libraries in webhook image (#8227)

---
 images/kube-webhook-certgen/rootfs/go.mod |  12 +-
 images/kube-webhook-certgen/rootfs/go.sum | 208 +++-------------------
 2 files changed, 35 insertions(+), 185 deletions(-)

diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index edd26c0df..edd74bea3 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -5,10 +5,10 @@ go 1.16
 require (
 	github.com/onrik/logrus v0.9.0
 	github.com/sirupsen/logrus v1.8.1
-	github.com/spf13/cobra v1.2.1
-	github.com/tidwall/gjson v1.8.1 // indirect
-	k8s.io/api v0.22.0
-	k8s.io/apimachinery v0.22.0
-	k8s.io/client-go v0.22.0
-	k8s.io/kube-aggregator v0.22.0
+	github.com/spf13/cobra v1.1.3
+	github.com/tidwall/gjson v1.14.0 // indirect
+	k8s.io/api v0.22.6
+	k8s.io/apimachinery v0.22.6
+	k8s.io/client-go v0.22.6
+	k8s.io/kube-aggregator v0.22.6
 )
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index c1592f68d..5889d4e49 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -9,33 +9,18 @@ cloud.google.com/go v0.50.0/go.mod h1:r9sluTvynVuxRIOHXQEHMFffphuXHOMZMycpNR5e6T
 cloud.google.com/go v0.52.0/go.mod h1:pXajvRH/6o3+F9jDHZWQ5PbGhn+o8w9qiu/CffaVdO4=
 cloud.google.com/go v0.53.0/go.mod h1:fp/UouUEsRkN6ryDKNW/Upv/JBKnv6WDthjR6+vze6M=
 cloud.google.com/go v0.54.0/go.mod h1:1rq2OEkV3YMf6n/9ZvGWI3GWw0VoqH/1x2nd8Is/bPc=
-cloud.google.com/go v0.56.0/go.mod h1:jr7tqZxxKOVYizybht9+26Z/gUq7tiRzu+ACVAMbKVk=
-cloud.google.com/go v0.57.0/go.mod h1:oXiQ6Rzq3RAkkY7N6t3TcE6jE+CIBBbA36lwQ1JyzZs=
-cloud.google.com/go v0.62.0/go.mod h1:jmCYTdRCQuc1PHIIJ/maLInMho30T/Y0M4hTdTShOYc=
-cloud.google.com/go v0.65.0/go.mod h1:O5N8zS7uWy9vkA9vayVHs65eM1ubvY4h553ofrNHObY=
-cloud.google.com/go v0.72.0/go.mod h1:M+5Vjvlc2wnp6tjzE102Dw08nGShTscUx2nZMufOKPI=
-cloud.google.com/go v0.74.0/go.mod h1:VV1xSbzvo+9QJOxLDaJfTjx5e+MePCpCWwvftOeQmWk=
-cloud.google.com/go v0.78.0/go.mod h1:QjdrLG0uq+YwhjoVOLsS1t7TW8fs36kLs4XO5R5ECHg=
-cloud.google.com/go v0.79.0/go.mod h1:3bzgcEeQlzbuEAYu4mrWhKqWjmpprinYgKJLgKHnbb8=
-cloud.google.com/go v0.81.0/go.mod h1:mk/AM35KwGk/Nm2YSeZbxXdrNK3KZOYHmLkOqC2V6E0=
 cloud.google.com/go/bigquery v1.0.1/go.mod h1:i/xbL2UlR5RvWAURpBYZTtm/cXjCha9lbfbpx4poX+o=
 cloud.google.com/go/bigquery v1.3.0/go.mod h1:PjpwJnslEMmckchkHFfq+HTD2DmtT67aNFKH1/VBDHE=
 cloud.google.com/go/bigquery v1.4.0/go.mod h1:S8dzgnTigyfTmLBfrtrhyYhwRxG72rYxvftPBK2Dvzc=
-cloud.google.com/go/bigquery v1.5.0/go.mod h1:snEHRnqQbz117VIFhE8bmtwIDY80NLUZUMb4Nv6dBIg=
-cloud.google.com/go/bigquery v1.7.0/go.mod h1://okPTzCYNXSlb24MZs83e2Do+h+VXtc4gLoIoXIAPc=
-cloud.google.com/go/bigquery v1.8.0/go.mod h1:J5hqkt3O0uAFnINi6JXValWIb1v0goeZM77hZzJN/fQ=
 cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE=
 cloud.google.com/go/datastore v1.1.0/go.mod h1:umbIZjpQpHh4hmRpGhH4tLFup+FVzqBi1b3c64qFpCk=
 cloud.google.com/go/firestore v1.1.0/go.mod h1:ulACoGHTpvq5r8rxGJ4ddJZBZqakUQqClKRT5SZwBmk=
 cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I=
 cloud.google.com/go/pubsub v1.1.0/go.mod h1:EwwdRX2sKPjnvnqCa270oGRyludottCI76h+R3AArQw=
 cloud.google.com/go/pubsub v1.2.0/go.mod h1:jhfEVHT8odbXTkndysNHCcx0awwzvfOlguIAii9o8iA=
-cloud.google.com/go/pubsub v1.3.1/go.mod h1:i+ucay31+CNRpDW4Lu78I4xXG+O1r/MAHgjpRVR+TSU=
 cloud.google.com/go/storage v1.0.0/go.mod h1:IhtSnM/ZTZV8YYJWCY8RULGVqBDmpoyjwiyrjsg+URw=
 cloud.google.com/go/storage v1.5.0/go.mod h1:tpKbwo567HUNpVclU5sGELwQWBDZ8gh0ZeosJ0Rtdos=
 cloud.google.com/go/storage v1.6.0/go.mod h1:N7U0C8pVQ/+NIKOBQyamJIeKQKkZ+mxpohlUTyfDhBk=
-cloud.google.com/go/storage v1.8.0/go.mod h1:Wv1Oy7z6Yz3DshWRJFhqM/UCfaWIRTdp0RXyy7KQOVs=
-cloud.google.com/go/storage v1.10.0/go.mod h1:FLPqc6j+Ki4BU591ie1oL6qBQGu2Bl/tZ9ullr3+Kg0=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
 github.com/Azure/go-ansiterm v0.0.0-20210608223527-2377c96fe795/go.mod h1:LmzpDX56iTiv29bbRTIsUNlaFfuhWRQBWjQdVyAevI8=
 github.com/Azure/go-ansiterm v0.0.0-20210617225240-d185dfc1b5a1/go.mod h1:xomTg63KZ2rFqZQzSB4Vz2SUXa1BpHTVz9L5PTmPC4E=
@@ -69,7 +54,6 @@ github.com/beorn7/perks v1.0.0/go.mod h1:KWe93zE9D1o94FZ5RNwFwVgaQK1VOXiVxmqh+Ce
 github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6rlkpw=
 github.com/bgentry/speakeasy v0.1.0/go.mod h1:+zsyZBPWlz7T6j88CTgSN5bM796AkVf0kBD4zp0CCIs=
 github.com/bketelsen/crypt v0.0.3-0.20200106085610-5cbc8cc4026c/go.mod h1:MKsuJmJgSg28kpZDP6UIiPt0e0Oz0kqKNGyRaWEPv84=
-github.com/bketelsen/crypt v0.0.4/go.mod h1:aI6NrJ0pMGgvZKL1iVgXLnfIFJtfV+bKCoqOes/6LfM=
 github.com/blang/semver v3.5.1+incompatible/go.mod h1:kRBLl5iJ+tD4TcOOxsy/0fnwebNt5EWlYSAyrTnjyyk=
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
 github.com/certifi/gocertifi v0.0.0-20191021191039-0944d244cd40/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
@@ -81,7 +65,6 @@ github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5P
 github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
 github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc=
-github.com/cncf/udpa/go v0.0.0-20200629203442-efcf912fb354/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
 github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
 github.com/cockroachdb/datadriven v0.0.0-20200714090401-bf6692d28da5/go.mod h1:h6jFvWxBdQXxjopDMZyH2UVceIRfR84bdzbkoKrsWNo=
 github.com/cockroachdb/errors v1.2.4/go.mod h1:rQD95gz6FARkaKkQXUksEje/d9a6wBJoCr5oaCLELYA=
@@ -109,7 +92,6 @@ github.com/emicklei/go-restful v2.9.5+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=
-github.com/envoyproxy/go-control-plane v0.9.7/go.mod h1:cwu0lG7PUMfa9snN8LXBig5ynNVH9qI8YYLbd1fK2po=
 github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
 github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
@@ -161,15 +143,11 @@ github.com/golang/mock v1.2.0/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfb
 github.com/golang/mock v1.3.1/go.mod h1:sBzyDLLjw3U8JLTeZvSv8jJB+tU5PVekmnlKIyFUx0Y=
 github.com/golang/mock v1.4.0/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
 github.com/golang/mock v1.4.1/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
-github.com/golang/mock v1.4.3/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
-github.com/golang/mock v1.4.4/go.mod h1:l3mdAwkq5BuhzHwde/uurv3sEJeZMXNpwsxVWU71h+4=
-github.com/golang/mock v1.5.0/go.mod h1:CWnOUgYIOo4TcNZ0wHX3YZCqsaM1I1Jvs6v3mP3KVu8=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.3/go.mod h1:vzj43D7+SQXF/4pzW/hwtAqwc6iTitCiVSaWz5lYuqw=
 github.com/golang/protobuf v1.3.4/go.mod h1:vzj43D7+SQXF/4pzW/hwtAqwc6iTitCiVSaWz5lYuqw=
-github.com/golang/protobuf v1.3.5/go.mod h1:6O5/vntMXwX2lRkT1hjjk0nAC1IDOTvTlVgjlRvqsdk=
 github.com/golang/protobuf v1.4.0-rc.1/go.mod h1:ceaxUfeHdC40wWswd/P6IGgMaK3YpKi5j83Wpe3EHw8=
 github.com/golang/protobuf v1.4.0-rc.1.0.20200221234624-67d41d38c208/go.mod h1:xKAWHe0F5eneWXFV3EuXVDTCmh+JuBKY0li0aMyXATA=
 github.com/golang/protobuf v1.4.0-rc.2/go.mod h1:LlEzMj4AhA7rCAGe4KMBDvJI+AwstrUpVNzEA03Pprs=
@@ -189,11 +167,7 @@ github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5a
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.4.1/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.1/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.4/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.5 h1:Khx7svrCpmxxtHBq5j2mp/xVjsi8hQMfNLvJFAlrGgU=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
@@ -201,19 +175,11 @@ github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/
 github.com/google/gofuzz v1.1.0 h1:Hsa8mG0dQ46ij8Sl2AYJDUv1oA9/d6Vk+3LG99Oe02g=
 github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/martian v2.1.0+incompatible/go.mod h1:9I4somxYTbIHy5NJKHRl3wXiIaQGbYVAs8BPL6v8lEs=
-github.com/google/martian/v3 v3.0.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
-github.com/google/martian/v3 v3.1.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
 github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20191218002539-d4f498aebedc/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200212024743-f11f1df84d12/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200229191704-1ebb73c60ed3/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20200430221834-fc25d7d30c6d/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20200708004538-1a94d8640e99/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20201023163331-3e6fc7fc9c4c/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20201203190320-1bf35d6f28c2/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210122040257-d980be63207e/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210226084205-cbba55b83ad5/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/uuid v1.1.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
@@ -252,7 +218,6 @@ github.com/hashicorp/memberlist v0.1.3/go.mod h1:ajVTdAv/9Im8oMAAj5G31PhhMCZJV2p
 github.com/hashicorp/serf v0.8.2/go.mod h1:6hOLApaqBFA1NXqRQAsxw9QxuDEvNxSQRwA/JwenrHc=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
-github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/imdario/mergo v0.3.5 h1:JboBksRwiiAJWvIYJVo46AfV+IAIKZpfrSzVKj42R4Q=
 github.com/imdario/mergo v0.3.5/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
 github.com/inconshreveable/mousetrap v1.0.0 h1:Z8tu5sraLXCXIcARxBp/8cbvlwVa7Z1NHg9XEKhtSvM=
@@ -276,7 +241,6 @@ github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI
 github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
 github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
 github.com/konsorten/go-windows-terminal-sequences v1.0.3/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
-github.com/kr/fs v0.1.0/go.mod h1:FFnZGqtBN9Gxj7eW1uZ42v5BccTP0vu6NEaFoC2HwRg=
 github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515/go.mod h1:+0opPa2QZZtGFBFZlji/RkVcI2GknAs/DXo4wKdlNEc=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
 github.com/kr/pretty v0.2.0/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
@@ -285,7 +249,6 @@ github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
 github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
 github.com/magiconair/properties v1.8.1/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ=
-github.com/magiconair/properties v1.8.5/go.mod h1:y3VJvCyxH9uVvJTWEGAELF3aiYNyPKd5NZ3oSwXrF60=
 github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.7.6/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
@@ -302,7 +265,6 @@ github.com/mitchellh/gox v0.4.0/go.mod h1:Sd9lOJ0+aimLBi73mGofS1ycjY8lL3uZM3JPS4
 github.com/mitchellh/iochan v1.0.0/go.mod h1:JwYml1nuB7xOzsp52dPpHFffvOCDupsG0QubkSMEySY=
 github.com/mitchellh/mapstructure v0.0.0-20160808181253-ca63d7c062ee/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
 github.com/mitchellh/mapstructure v1.1.2/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
-github.com/mitchellh/mapstructure v1.4.1/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo=
 github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
 github.com/moby/term v0.0.0-20210610120745-9d4ed1856297/go.mod h1:vgPCkQMyxTZ7IDy8SXRufE172gr8+K/JE/7hHFxHW3A=
 github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
@@ -335,13 +297,11 @@ github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1y
 github.com/opentracing/opentracing-go v1.1.0/go.mod h1:UkNAQd3GIcIGf0SeVgPpRdFStlNbqXla1AfSYxPUl2o=
 github.com/pascaldekloe/goe v0.0.0-20180627143212-57f6aae5913c/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
 github.com/pelletier/go-toml v1.2.0/go.mod h1:5z9KED0ma1S8pY6P1sdut58dfprrGBbd/94hg7ilaic=
-github.com/pelletier/go-toml v1.9.3/go.mod h1:u1nR/EPcESfeI/szUZKdtJ0xRNbUoANCkoOuaOx1Y+c=
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
 github.com/pkg/errors v0.8.0/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkg/errors v0.8.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
-github.com/pkg/sftp v1.10.1/go.mod h1:lYOWFsE0bwd1+KfKJaKeuokY15vzFx25BLbzYYoAxZI=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/posener/complete v1.1.1/go.mod h1:em0nMJCgc9GFtwrmVmEMR/ZL6WyhyjMBndrE9hABlRI=
@@ -386,20 +346,15 @@ github.com/soheilhy/cmux v0.1.5/go.mod h1:T7TcVDs9LWfQgPlPsdngu6I6QIoyIFZDDC6sNE
 github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
 github.com/spf13/afero v1.1.2/go.mod h1:j4pytiNVoe2o6bmDsKpLACNPDBIoEAkihy7loJ1B0CQ=
 github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
-github.com/spf13/afero v1.6.0/go.mod h1:Ai8FlHk4v/PARR026UzYexafAt9roJ7LcLMAmO6Z93I=
 github.com/spf13/cast v1.3.0/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
-github.com/spf13/cast v1.3.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
+github.com/spf13/cobra v1.1.3 h1:xghbfqPkxzxP3C/f3n5DdpAbdKLj4ZE4BWQI362l53M=
 github.com/spf13/cobra v1.1.3/go.mod h1:pGADOWyqRD/YMrPZigI/zbliZ2wVD/23d+is3pSWzOo=
-github.com/spf13/cobra v1.2.1 h1:+KmjbUw1hriSNMF55oPrkZcb27aECyrj8V2ytv7kWDw=
-github.com/spf13/cobra v1.2.1/go.mod h1:ExllRjgxM/piMAM+3tAZvg8fsklGAf3tPfi+i8t68Nk=
 github.com/spf13/jwalterweatherman v1.0.0/go.mod h1:cQK4TGJAtQXfYWX+Ddv3mKDzgVb68N+wFjFa4jdeBTo=
-github.com/spf13/jwalterweatherman v1.1.0/go.mod h1:aNWZUN0dPAAO/Ljvb5BEdw96iTZ0EXowPYD95IqWIGo=
 github.com/spf13/pflag v0.0.0-20170130214245-9ff6c6923cff/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
 github.com/spf13/pflag v1.0.3/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/spf13/viper v1.7.0/go.mod h1:8WkrPz2fc9jxqZNCJI/76HCieCp4Q8HaLFoCha5qpdg=
-github.com/spf13/viper v1.8.1/go.mod h1:o0Pch8wJ9BVSWGQMbra6iw0oQ5oktSIBaujf1rJH9Ns=
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
@@ -411,18 +366,16 @@ github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/
 github.com/stretchr/testify v1.7.0 h1:nwc3DEeHmmLAfoZucVR881uASk0Mfjw8xYJ99tb5CcY=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/subosito/gotenv v1.2.0/go.mod h1:N0PQaV/YGNqwC0u51sEeR/aUtSLEXKX9iv69rRypqCw=
-github.com/tidwall/gjson v1.8.1 h1:8j5EE9Hrh3l9Od1OIEDAb7IpezNA20UdRngNAj5N0WU=
-github.com/tidwall/gjson v1.8.1/go.mod h1:5/xDoumyyDNerp2U36lyolv46b3uF/9Bu6OfyQ9GImk=
-github.com/tidwall/match v1.0.3 h1:FQUVvBImDutD8wJLN6c5eMzWtjgONK9MwIBCOrUJKeE=
-github.com/tidwall/match v1.0.3/go.mod h1:eRSPERbgtNPcGhD8UCthc6PmLEQXEWd3PRB5JTxsfmM=
-github.com/tidwall/pretty v1.1.0 h1:K3hMW5epkdAVwibsQEfR/7Zj0Qgt4DxtNumTq/VloO8=
-github.com/tidwall/pretty v1.1.0/go.mod h1:XNkn88O1ChpSDQmQeStsy+sBenx6DDtFZJxhVysOjyk=
+github.com/tidwall/gjson v1.14.0 h1:6aeJ0bzojgWLa82gDQHcx3S0Lr/O51I9bJ5nv6JFx5w=
+github.com/tidwall/gjson v1.14.0/go.mod h1:/wbyibRr2FHMks5tjHJ5F8dMZh3AcwJEMf5vlfC0lxk=
+github.com/tidwall/match v1.1.1 h1:+Ho715JplO36QYgwN9PGYNhgZvoUSc9X2c80KVTi+GA=
+github.com/tidwall/match v1.1.1/go.mod h1:eRSPERbgtNPcGhD8UCthc6PmLEQXEWd3PRB5JTxsfmM=
+github.com/tidwall/pretty v1.2.0 h1:RWIZEg2iJ8/g6fDDYzMpobmaoGh5OLl4AXtGUGPcqCs=
+github.com/tidwall/pretty v1.2.0/go.mod h1:ITEVvHYasfjBbM0u2Pg8T2nJnzm8xPwvNhhsoaGGjNU=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20201229170055-e5319fda7802/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
-github.com/yuin/goldmark v1.1.25/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
-github.com/yuin/goldmark v1.1.32/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.3.5/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
 go.etcd.io/bbolt v1.3.2/go.mod h1:IbVyRI1SCnLcuJnV2u8VeU0CEYM7e686BmAb1XKL+uU=
@@ -438,9 +391,6 @@ go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
 go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8=
 go.opencensus.io v0.22.2/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
 go.opencensus.io v0.22.3/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
-go.opencensus.io v0.22.4/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
-go.opencensus.io v0.22.5/go.mod h1:5pWMHQbX5EPX2/62yrJeAkowc+lfs/XD7Uxpq3pI6kk=
-go.opencensus.io v0.23.0/go.mod h1:XItmlyltB5F7CS4xOC1DcqMoFqwtC6OG2xF7mCv7P7E=
 go.opentelemetry.io/contrib v0.20.0/go.mod h1:G/EtFaa6qaN7+LxqfIAT3GiZa7Wv5DTBUzl5H4LY0Kc=
 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.20.0/go.mod h1:oVGt1LRbBOBq1A5BQLlUg9UaU/54aiHw8cgjV3aWZ/E=
 go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.20.0/go.mod h1:2AboqHi0CiIZU0qwhtUfCYD1GeUzvvIXWNkhDt7ZMG4=
@@ -465,7 +415,6 @@ golang.org/x/crypto v0.0.0-20181029021203-45a5f77698d3/go.mod h1:6SG95UA2DQfeDnf
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20190510104115-cbcb75029529/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
-golang.org/x/crypto v0.0.0-20190820162420-60c769a6c586/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20201002170205-7f63de1d35b0/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
@@ -492,7 +441,6 @@ golang.org/x/lint v0.0.0-20190930215403-16217165b5de/go.mod h1:6SW0HCj/g11FgYtHl
 golang.org/x/lint v0.0.0-20191125180803-fdd1cda4f05f/go.mod h1:5qLYkcX4OjUUV8bRuDixDT3tpyyb+LUpUlRWLxfhWrs=
 golang.org/x/lint v0.0.0-20200130185559-910be7a94367/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
 golang.org/x/lint v0.0.0-20200302205851-738671d3881b/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
-golang.org/x/lint v0.0.0-20201208152925-83fdc39ff7b5/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
 golang.org/x/lint v0.0.0-20210508222113-6edffad5e616/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
 golang.org/x/mobile v0.0.0-20190312151609-d3739f865fa6/go.mod h1:z+o9i4GpDbdi3rU15maQ/Ox0txvL9dWGYEHz965HBQE=
 golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028/go.mod h1:E/iHnbuqvinMTCcRqshq8CkpyQDoeVncDDYHnLhea+o=
@@ -502,8 +450,6 @@ golang.org/x/mod v0.1.1-0.20191105210325-c90efee705ee/go.mod h1:QqPTAvyqsEbceGzB
 golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.4.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -521,7 +467,6 @@ golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn
 golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
 golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190628185345-da137c7871d7/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190724013045-ca1201d0de80/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
@@ -531,46 +476,26 @@ golang.org/x/net v0.0.0-20200222125558-5a598a2470a0/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200301022130-244492dfa37a/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200324143707-d3edc9973b7e/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200501053045-e0ff5e5a1de5/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200506145744-7e3656a0809f/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200513185701-a91f0712d120/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200520182314-0ba52f642ac2/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
-golang.org/x/net v0.0.0-20200707034311-ab3426394381/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201031054903-ff519b6c9102/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20201202161906-c7110b5ffcbb/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201209123823-ac852fbbde11/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20210119194325-5f4716e94777/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20210316092652-d523dce5a7f4/go.mod h1:RBQZq4jEuRlivfhVLdyRGr576XBO4/greRjx4P4O3yc=
 golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
-golang.org/x/net v0.0.0-20210520170846-37e1c6afe023 h1:ADo5wSpq2gqaCGQWzk7S5vd//0iyyLeAratkEoG5dLE=
-golang.org/x/net v0.0.0-20210520170846-37e1c6afe023/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20211209124913-491a49abca63 h1:iocB37TsdFuN6IBRZ+ry36wrkoV51/tl5vOWqkcPGvY=
+golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
+golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d h1:TzXSXBo42m9gQenoE3b9BGiEpg5IG2JkU5FkPIawgtw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
-golang.org/x/oauth2 v0.0.0-20200902213428-5d25da1a8d43/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20201109201403-9fd604954f58/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20201208152858-08078c50e5b5/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210218202405-ba52d332ba99/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210220000619-9bb904979d93/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210313182246-cd4f82c27b84/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210402161424-2e8d93401602 h1:0Ja1LBD+yisY6RWM/BH7TJVXWsSjs2VwBSmvSX4HdBc=
-golang.org/x/oauth2 v0.0.0-20210402161424-2e8d93401602/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190227155943-e225da77a7e6/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20200317015054-43a5402ce75a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20200625203802-6e8e738ad208/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201207232520-09787c993a3a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20210220032951-036812b2e83c/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -605,28 +530,14 @@ golang.org/x/sys v0.0.0-20200212091648-12a6c2dcc1e4/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200223170610-d5e6a3e2c0ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200302150141-5c8b2ff67527/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200331124033-c3d80250170d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200501052902-10377860bb8e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200511232937-7e40ca221e25/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200515095857-1151b9dac4a9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200519105757-fe76b779f299/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200523222454-059865788121/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200615200032-f1bc736245b1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200803210538-64077c9b5642/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200831180312-196b9ba8737a/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200905004654-be1d3432aa8f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200923182605-d9f96fdee20d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20201201145000-ef89a241ccb3/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210104204734-6f8348627aad/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210119212857-b64e53b001e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210220050731-9a76102bfb43/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210305230114-8fe3ee5dd75b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210315160823-c6e025ad8005/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210320140829-1e4c9ba3b0c4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210330210617-4fbd30eecc44/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210403161142-5e06dd20ab57/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -643,7 +554,6 @@ golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6 h1:aRYxNxv6iGQlyVaZmk6ZgYEDa+Jg18DxebPSrd6bg1M=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
@@ -688,26 +598,10 @@ golang.org/x/tools v0.0.0-20200204074204-1cc6d1ef6c74/go.mod h1:TB2adYChydJhpapK
 golang.org/x/tools v0.0.0-20200207183749-b753a1ba74fa/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
 golang.org/x/tools v0.0.0-20200212150539-ea181f53ac56/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
 golang.org/x/tools v0.0.0-20200224181240-023911ca70b2/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200227222343-706bc42d1f0d/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
 golang.org/x/tools v0.0.0-20200304193943-95d2e580d8eb/go.mod h1:o4KQGtdN14AW+yjsvvwRTJJuXz8XRtIHtEnmAXLyFUw=
-golang.org/x/tools v0.0.0-20200312045724-11d5b4c81c7d/go.mod h1:o4KQGtdN14AW+yjsvvwRTJJuXz8XRtIHtEnmAXLyFUw=
-golang.org/x/tools v0.0.0-20200331025713-a30bf2db82d4/go.mod h1:Sl4aGygMT6LrqrWclx+PTx3U+LnKx/seiNR+3G19Ar8=
-golang.org/x/tools v0.0.0-20200501065659-ab2804fb9c9d/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20200505023115-26f46d2f7ef8/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
-golang.org/x/tools v0.0.0-20200512131952-2bc93b1c0c88/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
-golang.org/x/tools v0.0.0-20200515010526-7d3b6ebf133d/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
-golang.org/x/tools v0.0.0-20200618134242-20370b0cb4b2/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
-golang.org/x/tools v0.0.0-20200729194436-6467de6f59a7/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
-golang.org/x/tools v0.0.0-20200804011535-6c149bb5ef0d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
-golang.org/x/tools v0.0.0-20200825202427-b303f430e36d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
-golang.org/x/tools v0.0.0-20200904185747-39188db58858/go.mod h1:Cj7w3i3Rnn0Xh82ur9kSqwfTHTeVxaDqrfMjpcNT6bE=
-golang.org/x/tools v0.0.0-20201110124207-079ba7bd75cd/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20201201161351-ac6f37ff4c2a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20201208233053-a543418bbed2/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20210105154028-b0ab187a4818/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.1.0/go.mod h1:xkSsbof2nBLbhDlRMhhhyNLN/zl3eTqcnHD5viDpcZ0=
 golang.org/x/tools v0.1.2/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
@@ -723,27 +617,13 @@ google.golang.org/api v0.14.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsb
 google.golang.org/api v0.15.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI=
 google.golang.org/api v0.17.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
 google.golang.org/api v0.18.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
-google.golang.org/api v0.19.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
 google.golang.org/api v0.20.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
-google.golang.org/api v0.22.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
-google.golang.org/api v0.24.0/go.mod h1:lIXQywCXRcnZPGlsd8NbLnOjtAoL6em04bJ9+z0MncE=
-google.golang.org/api v0.28.0/go.mod h1:lIXQywCXRcnZPGlsd8NbLnOjtAoL6em04bJ9+z0MncE=
-google.golang.org/api v0.29.0/go.mod h1:Lcubydp8VUV7KeIHD9z2Bys/sm/vGKnG1UHuDBSrHWM=
-google.golang.org/api v0.30.0/go.mod h1:QGmEvQ87FHZNiUVJkT14jQNYJ4ZJjdRF23ZXz5138Fc=
-google.golang.org/api v0.35.0/go.mod h1:/XrVsuzM0rZmrsbjJutiuftIzeuTQcEeaYcSk/mQ1dg=
-google.golang.org/api v0.36.0/go.mod h1:+z5ficQTmoYpPn8LCUNVpK5I7hwkpjbcgqA7I34qYtE=
-google.golang.org/api v0.40.0/go.mod h1:fYKFpnQN0DsDSKRVRcQSDQNtqWPfM9i+zNPxepjRCQ8=
-google.golang.org/api v0.41.0/go.mod h1:RkxM5lITDfTzmyKFPt+wGrCJbVfniCr2ool8kTBzRTU=
-google.golang.org/api v0.43.0/go.mod h1:nQsDGjRXMo4lvh5hP0TKqF244gqhGcr/YSIykhUk/94=
-google.golang.org/api v0.44.0/go.mod h1:EBOGZqzyhtvMDoxwS97ctnh0zUmYY6CxqXsc1AvkYD8=
 google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
 google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.6.1/go.mod h1:i06prIuMbXzDqacNJfV5OdTW448YApPu5ww/cMBSeb0=
+google.golang.org/appengine v1.6.5 h1:tycE03LOZYQNhDpS27tcQdAzLCVMaj7QT2SXxebnpCM=
 google.golang.org/appengine v1.6.5/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
-google.golang.org/appengine v1.6.6/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
-google.golang.org/appengine v1.6.7 h1:FZR1q0exgwxzPzp/aF+VccGrSfxfPpkBqjIIEq3ru6c=
-google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
 google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc=
 google.golang.org/genproto v0.0.0-20190307195333-5fe7a883aa19/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190418145605-e7d98fc518a7/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
@@ -761,31 +641,11 @@ google.golang.org/genproto v0.0.0-20200122232147-0452cf42e150/go.mod h1:n3cpQtvx
 google.golang.org/genproto v0.0.0-20200204135345-fa8e72b47b90/go.mod h1:GmwEX6Z4W5gMy59cAlVYjN9JhxgbQH6Gn+gFDQe2lzA=
 google.golang.org/genproto v0.0.0-20200212174721-66ed5ce911ce/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200224152610-e50cd9704f63/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200228133532-8c2c7df3a383/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200305110556-506484158171/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200312145019-da6875a35672/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200331122359-1ee6d9798940/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200423170343-7949de9c1215/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200430143042-b979b6f78d84/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200511104702-f5ebc3bea380/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200513103714-09dca8ec2884/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200515170657-fc4c6c6a6587/go.mod h1:YsZOwe1myG/8QRHRsmBRE1LrgQY60beZKjly0O1fX9U=
 google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013/go.mod h1:NbSheEEYHJ7i3ixzK3sjbqSGDJWnxyFXZblF3eUsNvo=
-google.golang.org/genproto v0.0.0-20200618031413-b414f8b61790/go.mod h1:jDfRM7FcilCzHH/e9qn6dsT145K34l5v+OpcnNgKAAA=
-google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20200904004341-0bd0a958aa1d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201109203340-2640f1f9cdfb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201201144952-b05cb90ed32e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201210142538-e3217bee35cc/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201214200347-8c77b98c765d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210222152913-aa3ee6e6a81c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210303154014-9728d6b83eeb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210310155132-4ce2db91004e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210319143718-93e7006c17a6/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210402141018-6c239bbf2bb1/go.mod h1:9lPAdzaEmUacj36I+k7YKbEc5CXzPIeORRgDAUOu28A=
 google.golang.org/genproto v0.0.0-20210602131652-f16073e35f0c/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
@@ -795,17 +655,9 @@ google.golang.org/grpc v1.25.1/go.mod h1:c3i+UQWmh7LiEpx4sFZnkU36qjEYZ0imhYfXVyQ
 google.golang.org/grpc v1.26.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
 google.golang.org/grpc v1.27.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
 google.golang.org/grpc v1.27.1/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
-google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKal+60=
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
-google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.31.1/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.33.1/go.mod h1:fr5YgcSWrqhRRxogOsw7RzIpsmvOZ6IcH4kBYTpR3n0=
-google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
-google.golang.org/grpc v1.34.0/go.mod h1:WotjhfgOW/POjDeRt8vscBtXq+2VjORFy659qA51WJ8=
-google.golang.org/grpc v1.35.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
 google.golang.org/grpc v1.36.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
-google.golang.org/grpc v1.36.1/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
 google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/grpc v1.38.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
@@ -832,7 +684,6 @@ gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMy
 gopkg.in/inf.v0 v0.9.1 h1:73M5CoZyi3ZLMOyDlQh031Cx6N9NDJ2Vvfl76EDAgDc=
 gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
 gopkg.in/ini.v1 v1.51.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
-gopkg.in/ini.v1 v1.62.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
 gopkg.in/natefinch/lumberjack.v2 v2.0.0/go.mod h1:l0ndWWf7gzL7RNwBG7wST/UCcT4T24xpD6X8LsfU/+k=
 gopkg.in/resty.v1 v1.12.0/go.mod h1:mDo4pnntr5jdWRML875a/NmxYqAlA73dVijT2AXvQQo=
 gopkg.in/square/go-jose.v2 v2.2.2/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
@@ -860,34 +711,33 @@ honnef.co/go/tools v0.0.0-20190418001031-e561f6794a2a/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.22.0 h1:elCpMZ9UE8dLdYxr55E06TmSeji9I3KH494qH70/y+c=
-k8s.io/api v0.22.0/go.mod h1:0AoXXqst47OI/L0oGKq9DG61dvGRPXs7X4/B7KyjBCU=
-k8s.io/apimachinery v0.22.0 h1:CqH/BdNAzZl+sr3tc0D3VsK3u6ARVSo3GWyLmfIjbP0=
-k8s.io/apimachinery v0.22.0/go.mod h1:O3oNtNadZdeOMxHFVxOreoznohCpy0z6mocxbZr7oJ0=
-k8s.io/apiserver v0.22.0/go.mod h1:04kaIEzIQrTGJ5syLppQWvpkLJXQtJECHmae+ZGc/nc=
-k8s.io/client-go v0.22.0 h1:sD6o9O6tCwUKCENw8v+HFsuAbq2jCu8cWC61/ydwA50=
-k8s.io/client-go v0.22.0/go.mod h1:GUjIuXR5PiEv/RVK5OODUsm6eZk7wtSWZSaSJbpFdGg=
-k8s.io/code-generator v0.22.0/go.mod h1:eV77Y09IopzeXOJzndrDyCI88UBok2h6WxAlBwpxa+o=
-k8s.io/component-base v0.22.0/go.mod h1:SXj6Z+V6P6GsBhHZVbWCw9hFjUdUYnJerlhhPnYCBCg=
+k8s.io/api v0.22.6 h1:acjE5ABt0KpsBI9QCtLqaQEPSF94jOtE/LoFxSYasSE=
+k8s.io/api v0.22.6/go.mod h1:q1F7IfaNrbi/83ebLy3YFQYLjPSNyunZ/IXQxMmbwCg=
+k8s.io/apimachinery v0.22.6 h1:z7vxNRkFX0NToA+8D17kzLZ/T4t+DqwzUlqqbqRepRs=
+k8s.io/apimachinery v0.22.6/go.mod h1:ZvVLP5iLhwVFg2Yx9Gh5W0um0DUauExbRhe+2Z8I1EU=
+k8s.io/apiserver v0.22.6/go.mod h1:OlL1rGa2kKWGj2JEXnwBcul/BwC9Twe95gm4ohtiIIs=
+k8s.io/client-go v0.22.6 h1:ugAXeC312xeGXsn7zTRz+btgtLBnW3qYhtUUpVQL7YE=
+k8s.io/client-go v0.22.6/go.mod h1:TffU4AV2idZGeP+g3kdFZP+oHVHWPL1JYFySOALriw0=
+k8s.io/code-generator v0.22.6/go.mod h1:iOZwYADSgFPNGWfqHFfg1V0TNJnl1t0WyZluQp4baqU=
+k8s.io/component-base v0.22.6/go.mod h1:ngHLefY4J5fq2fApNdbWyj4yh0lvw36do4aAjNN8rc8=
 k8s.io/gengo v0.0.0-20200413195148-3a45101e95ac/go.mod h1:ezvh/TsK7cY6rbqRK0oQQ8IAqLxYwwyPxAX1Pzy0ii0=
 k8s.io/gengo v0.0.0-20201214224949-b6c5ce23f027/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
 k8s.io/klog/v2 v2.9.0 h1:D7HV+n1V57XeZ0m6tdRkfknthUaM06VFbWldOFh8kzM=
 k8s.io/klog/v2 v2.9.0/go.mod h1:hy9LJ/NvuK+iVyP4Ehqva4HxZG/oXyIS3n3Jmire4Ec=
-k8s.io/kube-aggregator v0.22.0 h1:he3plI8vlaPJxR9vsy/lL5ga1V8CoA8M8x1Bn8eTCeM=
-k8s.io/kube-aggregator v0.22.0/go.mod h1:zHTepg0Q4tKzru7Pwg1QYHWrU/wrvIXM8hUdDAH66qg=
-k8s.io/kube-openapi v0.0.0-20210421082810-95288971da7e h1:KLHHjkdQFomZy8+06csTWZ0m1343QqxZhR2LJ1OxCYM=
-k8s.io/kube-openapi v0.0.0-20210421082810-95288971da7e/go.mod h1:vHXdDvt9+2spS2Rx9ql3I8tycm3H9FDfdUoIuKCefvw=
-k8s.io/utils v0.0.0-20210707171843-4b05e18ac7d9 h1:imL9YgXQ9p7xmPzHFm/vVd/cF78jad+n4wK1ABwYtMM=
-k8s.io/utils v0.0.0-20210707171843-4b05e18ac7d9/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+k8s.io/kube-aggregator v0.22.6 h1:/iaXzOWia2dqOQkIA9eJtkmfTveJMLz3Dci9ZA/WgmU=
+k8s.io/kube-aggregator v0.22.6/go.mod h1:0RSTzxqiwsj5HUlov195Z72ZKyE4qgedKXCl6sLKAjM=
+k8s.io/kube-openapi v0.0.0-20211109043538-20434351676c h1:jvamsI1tn9V0S8jicyX82qaFC0H/NKxv2e5mbqsgR80=
+k8s.io/kube-openapi v0.0.0-20211109043538-20434351676c/go.mod h1:vHXdDvt9+2spS2Rx9ql3I8tycm3H9FDfdUoIuKCefvw=
+k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a h1:8dYfu/Fc9Gz2rNJKB9IQRGgQOh2clmRzNIPPY1xLY5g=
+k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.22/go.mod h1:LEScyzhFmoF5pso/YSeBstl57mOzx9xlU9n85RGrDQg=
+sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.27/go.mod h1:tq2nT0Kx7W+/f2JVE+zxYtUhdjuELJkVpNz+x/QN5R4=
 sigs.k8s.io/structured-merge-diff/v4 v4.0.2/go.mod h1:bJZC9H9iH24zzfZ/41RGcq60oK1F7G282QMXDPYydCw=
-sigs.k8s.io/structured-merge-diff/v4 v4.1.2 h1:Hr/htKFmJEbtMgS/UD0N+gtgctAqz81t3nu+sPzynno=
-sigs.k8s.io/structured-merge-diff/v4 v4.1.2/go.mod h1:j/nl6xW8vLS49O8YvXW1ocPhZawJtm+Yrr7PPRQ0Vg4=
+sigs.k8s.io/structured-merge-diff/v4 v4.2.1 h1:bKCqE9GvQ5tiVHn5rfn1r+yao3aLQEaLzkkmAkf+A6Y=
+sigs.k8s.io/structured-merge-diff/v4 v4.2.1/go.mod h1:j/nl6xW8vLS49O8YvXW1ocPhZawJtm+Yrr7PPRQ0Vg4=
 sigs.k8s.io/yaml v1.2.0 h1:kr/MCeFWJWTwyaHoR9c8EjH9OumOmoF9YGiZd7lFm/Q=
 sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=

From be65620b313029ddd2e68c03c52460c717c2fd86 Mon Sep 17 00:00:00 2001
From: Indhu Kumar <kamalakumar.indhu@gmail.com>
Date: Mon, 7 Feb 2022 01:47:45 -0800
Subject: [PATCH 0074/1641] prometheus+grafana using servicemonitor (#8186)

* prometheus+grafana using servicemonitor

* fix review comments

* markdown changes

* more formatting changes

* fix review comments
---
 docs/images/grafana-dashboard1.png    | Bin 0 -> 360254 bytes
 docs/images/prometheus-dashboard1.png | Bin 0 -> 387285 bytes
 docs/user-guide/monitoring.md         | 187 ++++++++++++++++++++++++--
 3 files changed, 179 insertions(+), 8 deletions(-)
 create mode 100644 docs/images/grafana-dashboard1.png
 create mode 100644 docs/images/prometheus-dashboard1.png

diff --git a/docs/images/grafana-dashboard1.png b/docs/images/grafana-dashboard1.png
new file mode 100644
index 0000000000000000000000000000000000000000..a4dfd81a74b8dcf6e8e0b8ac9fc4641d80659fcc
GIT binary patch
literal 360254
zcmeFZWpEtJvMnshl0~+dY%w#-VrE8*nVFfHEwIJR%rs(Vmc`7>%<zr&-sj#E?>jeQ
z$G$(`o9KzI>F%oPuFA|>xiWh~Wu-+v!+eDS0Rj0eCMqZo0s=Du0s?^t^$~bvD$7?I
z1mu&6sepj2n1BGDtev%ysf8g3h-he>GURuK!LRA+zoMfjz!0O6+(dHG$?<EUz~mw1
zpvCaA0-_PVAMa=TnWM{<?iYtxIzkvwhiIyTyK7Swk{xB!gk@in5M>^<*{ynyEk9h2
z@_08hHZp>k+}aZV()bSR!)cqvM8lcLhEE(P<_3en3zpmgu43cL08Pov48!~7@Qvoo
zir11%ISmEy%J!-)6igd^0m3_pH?}_P;)=im>SMhwmKz9yfZEbK%^wOj9;l)W^C7^c
z4$PSRf(Bwtb~DGH9op6+WC=tz$F6ab3WVvDFI}}~*w2ZHo9~!lH@pYLgq<I&1KI8Y
zfl|+TWO!J4T|C4xs|{Qa1O9yMzRzfO?b!I!(w<#SP!&T3pByaWAW`G;!JDz^YyI}l
zP_Tzew=k+W;U>yM_t({-!Km*#6g?}OKlU+%%J5H-FX9{_LGqw>5JSa1r$b2fyB|S6
z_Rx4(i4ye)BLs)q=j43%5Y8w2@qu20dY?%SpA=NjGXx#lAnSr6je7E#HIBBHMq$XP
z=>AIMAX7WA0`f9dFn;J2Gs`EZI?5CU7Wo%`KCgu;k$6~;$_G7TRcVi0abwA<Xl$-r
z!nl6&&H4aVX*@W1rN#a*hCE$cikE861=+TFw5$;1vMxy2Kxo9FN1X!K<<5Iu8kH2@
z5pk?)!f2_GuS0>fP|%9IkzD8@$Xkj|k3@l;wnL4qLccIeCi_Pr8aH58vGkl(<yy>W
z(!WEY7ff=elav3DlI;scH@5HZquA<9@F(l|i0=cvU1{j!5&c=PY~^O<Ji(6WlZ`Km
z0Vt@AJiP$pFG!J|^DppWowx|lJ{B%o=j(+aD15J1bR{0_z9XH#vpc`At&{h-;vsE!
ztzCAiZt7Z#twS3KzMYQ+MnG<j21?Pto;~2-Qg-`E#)kcbcQr7BGer^z#qWXA!}txy
z((}QFhZBa|U&p?;)ixuGv+WQ$9cd9d3Th4-J77scka+Se8w-*>^My{4nxU->!s@f7
z+j?gMPc0nv)~96z){WB%cv$#=bS}JMrQWham@AGY@8R{7`m9O9=4iP~C_99O+oz<j
zw_kC(l~C$l0o+3>j6p}EI5-chJWnZySGu?ltt0>_j)1goX+8AH92G7dJ<`gLr4StX
z9o;2IgX@Q1FVR>qWZ-HEAA@<yhYGTPF(jxZ&?LwVRq=P$^7r=X?@8oK2&s1QlfZgm
zgG)vx?i~*}INCZw@LrV3y?VA9e)1AP=<BV};6n!CHjEy59I~YbVZB5Fd2Fso?Zs@c
zjQ?O$8bO+XM$V>jf!E;;E!8mf31y952lmPqBE171+*g(kt;YvE8jPfy0(OHv!LLY%
zBoR`ak4*(`*5^itasH!|Z|gc<A*4vBm<^f+nB_Wq1FW(PsSC7Q2ggJd9u#yIzC#ZP
zy-+CvWDn|vFj%xK5lpCne6#}*EFz(u0SN;xxrh?M(a$o`&zFpL;B289yo*1V1_W|p
zUHv@->0`qVv-=9avBTU5tC|oc`$+TGOn}v5X!_6yQT{e_fL9An7o^Ra`we$ZyciBD
ziLI|=l!&|=QB{ROg*x1mJ8x0?sidR0%2S2VV_dlkt`zgh2icZ=tS4<9Cb9$B7Dvlx
zyf0z>=t9#4+v{t47*CJ;IW73t&X9H9b7C7PWGK~uq5ye*2wlhxx{XiE5@`X>f&@SL
zYVqAVTNC+5NXGDJ@U4hWNtqFsLZd=kiI4_;ws|i}d!rk2`Q^z?u}$F*zz<-GVx|l7
z%Z-Y6i_!Aqi%FCy<w|6i%A7P#!WJ3pysFU_!j2^(@vjD_28Rch1|znIx25fPgi`bb
zE((ZbtI4m(;$l5x8DrgJ>kkhPcMrJ_w`PP6?Pn-w;0rU9y$fG`iv{Wms*6m&vpJGG
zlGcT~r98$9=crEknH1IXFUqTZK0!GFEtByt-ze?;y>348yKu5_sv-MAJf_q%Z*VfT
zRJBw!%T@HM+Nd5)byzLDtam24Ofk<<@F-uYf?3nO*6D{+`YqDQ$|8Dg#!<9GsUyGR
zJv*!e;2?F<RkD8{&4D>hBtvFRnn&Pln)q;W-_D`NaoF+h5O8?Af3V+pM0_AMRWiwu
zKiAoTG5ZOQFrn&)ZM3cbg>AqE)GSnINH5`SL<7TS>#OJso~N%@(yQ0Y(If8X#E)4Y
z**;Q!I{bW!xfygDwDq~*s}%#M{ydkwbMBhx>Ol2RNRd@~{)pp<%^yY>mW*cfhu@g#
z;aK7^Dj2y9mo2;Kpcw|4RW0q7bBANCzUojgXj-~;T|+2D4eISOP$m^5aTy64AsX4$
zlo^#7z3ejYhVByYK8>EK%Tl#aGf*q3GpS#zB&$W%q?)RlyY`1!>{t@ls+l{E9k$j*
zI9A{AAGsavF+Vb6rRb%orMLr_mUx%ImduvSodh|oo3WZBoGfn(TZ3CC+J;`MKOC+f
z;MvXZPn?R{T-%~>C~>ShWV2VLhNYUN;jlBN=A=rb9;InVRAa@loAnmj=d?ArG;B9n
zI5%>r8DG!;CeFbWX}7I&-f2{7)UwZM3~U^=HMem;IbEl*S=;s+_CKW`)6WvA={J_4
zl_}ce9;cy|sBozGti{sm*s9-};F58Ne-HjNa=~_Z)j2m+KXI3Nmf<Ds#pc!gk{(s{
zg%G30b41_U-n;xw=`9k(h}W$n-Y1f`hSy5RaXkkw9M5YaGSirfLy6fO{z$P>qLS&}
z=G+}X>yFk;4h{<qPY!GPc?MeQlP2yX-UufZWhrwh=`x{*u!{mXJ^_QCP>)n3eQ<x#
z#`TYzuN>yb2cl*M9@~!tB67EKlZAb@`wdlFN)gTImZ;Q`<x!yYsfmj8clwrkuzKFu
zGFZ4AZD!9?4Zm#}x5j#>whDUABE1t3QY)!8tg<b$Ijh*j7|E%NNDe&hL@$T7BcXFh
zMv`sFd+CH?C!@v1rNmc$E^^R2Y$k`Mnc|q{nX-^9NG3BMbQyFHHpWCr{Z8#lvm;B3
zPET#)ctK_fQXf4TT{o~8*x#sfHFu?b;Cr5Vrtxjp$y-;=_ud^E*;9R0Evaq_@a=-p
ztq-AAqjgKe{@Kd*<S8vVHkRtUyuJM5YUX<2D$>KgiFI+{5%X;NaDoIWR+O95QLiJ#
z7sVvsBoH(}GWZq7aU-iu$cplf@3oRFv#_|(+H7)KV5+ttw4hG1KBLX$v1YS!Gs9?|
z(S<SDIC(Uc<!Xa!wzRC~=fanols%OZRk{LutNUfmE3zxQ-4~@z`ReNJiig1~Omqy|
z#OC!2_zj-vc(Yh>32T~b^#)hOHqqKb$Eu}G$ME*pi(#7h=2+!eZ?!IUyNmwcJW8*u
zl}z@gM-1bJDe=e&;R$Ohhz)vk;wN#vl(-dN>x-?v**h*Aw$Dnc+GlmO>RqV~sXZ)4
z4iydsImREwS3K2fHN3hh+RVIu7RE%gc4`0Fele7vDfPsRX-%{CY#VMeTvoQBepFmm
zLJ2^uN40cs;xc_|%xLj0UeImG@#x=6+f2i5-gHVUzbGzRu&i}grB<V?I9ZGV6j)jh
ztOj{XKLJjSk7;>8;0EAZ?%7`UFd+%ynQ<?<YtPV2w3)H;acN2f4)f=3reTjbzRG`H
zjQYVfxx7E;a<9Cn?Tqt{L(Nh0Y`%Icb_+HVK9!97_Y#rmA$OAFrR`PhZgT-iYLk=O
z^T90RPvfzS&m8WDSVzmDSFd|fTIa1c+u3)$j}qw#hiaT^aBsU8OB+h#vrWTV37Cr>
zi(i-eYjN9=Tz0l+qDzb`Y|Ay9a6DUIgf}D9S*EO<mN(bjyg2S|k2r*!AJ4{GMH-Zy
zw2!=cKjc8pv@gB1wRhKS&38u!Q%7y$u6T~PKVOC(4;G9;$e7AdrYCWixSl>fn<%R&
zFNKHFvTKWL-8v_{X1(+WDFZ6J9vJt><I|zJ(kk*QAXlke&Ci|ov`@Xi-SypayCmF|
zzj>-=@U4}@ui}n*O1|EgdLNQb77UF$Wni`odNr~{v(Vvfh&TF+fPP|TVnp^~;Q-Cd
z>!|tAQZGkBapvdmM|M`>5A{r1+CmE#Mhe2=4<ech%ZtL9W8pUnqepR!Dsmry=hM{q
znI&$3VMQYjP<T!vxQ~h9V*UxF2+?PJ(%1Jj;=_lG`feTT4-?-rTl^^kpw2$2r=k{?
zU7_A<#okR>+da2IhCwZN-o3PgSXM;IhVnc>0bP$ULlrS2DJc*NU>OPo9P}#)1h51O
z{Bnb0{#RKTlnms<AIHH!K!Qy{!2h}i=(YUuiT>;NpZgELf<PdFN05MDmrSsKT@5pl
z`Qcw>2t4395IzL~F)`p?LEp~M(8}J#+5x^<ycl=@+D25>9s~r9`27niCQoz@yr+57
z?<x)|Qj+ZY)|NE72G)9pG%l7l@9ltay08O_mWB?xcrKO}R`%>JTm*ky!453HAEqV1
z`{NP^b1niEDOo%LYdb?cW*RygIs$GOJUl#3I|Czjc|qa7ssn#<5tukQ*s#;mIy*bl
zI5W~%+Zof+v$3(!(lO97Fi-=pptg6la?o|5wz4Puvyp$bBWP%^Z)a-bU}|lJ_uj6q
zp0%R`7XiV0NB{Nt^F9q-O#izlEBn753;2Mv?`LS~Y3OMGt8HLa&iAA2vZgME7OH}#
zmcTIs_Q6fhNYB9eM}`02ssHZs->RzocU1-!X4ZeN`fsQH&#H>{hIRthmcULOxc_^?
z{;K@%C;zI*N&Ein|27tX4)h;Kfg{Zg!%6#Jv&IdBb7|27oJcHFL7DHsJy6WvKVa_y
zMfT?&SO%+~v&E+O1Oed%5fkM5?gDz82HApAx7eqRD2oD0?xz(7aii6oy*ln@>BDp&
zlv|YPcb$!gcI?6@WJ(}ZJQ<EBg^23jAGxl`Cs?J!_g(P*as<C7X<=byfibC@EtT{c
zF2;Z%X*<Kh$mwc(lp8XktU+R5)Cc^ZZ<)~u^TA+?{F9TVB+$_y|8(;a@BveE0!P9F
z{imBRzmN~`K4z9nss8Cryx%=U?ePa9Ua)_>1%?5e2rO<?RsE+A@;(AECJT`Nd`^78
zVNiihz$)6;RR7}#0aiqrsD}UNQwjo&LIG?7t$5eSQ0#vpVq}?yxc^)%K#|D4gOg=a
ze;*wk`t^^+69ih8cbNNsAr?fkg;27*>V?TEam4>v#6giVed0a;7egtUDT|ot1Cag3
zLMidjMVyEil=|s^F_h7~Sp>YGmRV+2O7Z^-%L6nRw|{deeL0C`Yfa?HZP$I}OI2(a
zj59nhuU8>njGCQJezm_Y(zL(brX0^#b&EUB<3Rt|PSHUOrlo0vWZe>@k0iBa`g%nK
ziev+IjMP?<sOh`aC`QQ5^Q7rvk+Y4Z{I++Old2TzZ{2j8@579Zolf}oZmLooL~m5y
z5H5d$nm|#K>g{qWet<v?AYvmBZB2)+Ud8+nPoogD6<QXg%MH{;a%kBBj2}T;uJ7lL
zodKeKF;Szh<7Xm+mImS0c4Mm;Fea^>7zBT>^N^n%e0dTQ7n@Jy8++Q-o=+Lo_IqO(
zXMj6H&0JB$VC~=8y;xrDug~_m;?-O&_XBgo-A)6{Yw}|*@*1!5TZ0+iujB}76F-4s
zz>5Vg9#6Gn(Cm0bYippre!1<E&LY+4mB5l((;9yAI(}zs4LiSkG|I&$2x`fI-1j$4
zN{?Ws#RE)a-GJp1K%O&2qA&3~_qxxoNR{*cv-V*_8n%Qgu3r~Ftr?J0=z)VpslEC|
z2Ji}q+f+@7=xG63&tFio1Bn5Gtm&kTRoLBL#wmrZ&lb1dZBeB4;ZkjbjqdtnnKzd@
zA%9N>@r1#4D6lrSrD3gp<C*jI!mn9I#v(2eV&Fb}w68)n54V1RK}{uiX}VEX7t(*9
zG9m;~-Y9hs?~Bdf8rf}8Hk@~MGx(zkFVe_^+9E65a!)*K{r*ccXlv`s$W<s4Bq|dk
ze@`h97(t~GmOw4c`IAl%mvOc+M|zb?soPLA7R(TL1;B`+Lw#`S$qcT4O=@JrK(VE}
zHy%ds4to`ZZdc@3WfZ<-oNaZUn1x&0oQA5vm>^T_|4oq%Ndh4aIROED%Nn_bvVy<-
zysJk!i>3`zZcztyg%64}AP9V36b3gjQyMvl0Icy=4M)){!}ck`%Q?AvnQ5RTT&z3Q
z^|G+u2~t7SLZe;3i_hQKdL(_2dz?U)l4XtD!RsOa8gE(%Wq?}11F!)Dg3Nwum@lol
zObLZx{E>TF<?Oi+)oZ2%4@ZSdq-Jk>PcAmii<_9K?ga5*i{P-2e{*ToBk6$F<M6SR
zBCFx@Tk`ktZ=4US>rL>ZRHyFp0Jgz^II)Em_(MxRS>ih=e!o4fGWMj$!Wq-gXUFLi
z<hr*jPtFES%ZtxrT!<2&mVOYPe{(UWM_vc7!tMZ&#4g};p76DGYFP9xZc22<m7)D%
z3zDGrZNvG6X~{>4i+!TE8WT$3Oxuo~lSN<I4{t*k-yXPemdgS6ANSHj@_d*({kZ=g
z6!A@jw(*;X(@{qrvWQy0#aq*%0q9v?<gE`Wh1208;rU8}UpENh=Oo1LA}R6?Tr3YO
z1~X~ja!3(*V>><xp1gVB!doe;d-&VS^vLt3=<wnGt=Wy{9RX+Mvw*BDgEj=3KleY)
zAK+fz#;`;v5guq@NWk2dv!j1Yh}(x!;BC8{?i33o(>|q<{A!PE^2~nMXvq2!>bA~C
zQa$oasmjc#zp2qiV5xY35A(AD3`>L!TmvkL;bki79^?(xGXx{S;G%fQpj=jR1N+2z
zje@8McK=U(|L;}blmf6tC(DZXz6f>E!C%D4#G+eIw@XrXOPQdT3&!SY-%%-XDC*&x
zlq1;>_nDMkWkyq26oezZ1~3N^{!IyZiNGE`CEE*xhAe2?8!VSfwo_}yo!4|PA~{?y
zT~uGMf3>#kmg4+djeoO_;6STjOP64w|EE0~JfrrAD)%a#ZmexPu3vji4|{#s!>u+r
zAW&_#iXi2#00Z2giglvSD;3Er!WGHN-7a~1??HK`v_C1mK5xPAHF$L=R9meSxCX}E
z0gZRaPvD|)DL)WW^|XK3&*~kFB`+r)N3k_~o}lgZYc!=j?vBU9Ix3R!-Pq}-Zn-`=
zVH>`^+{PFyb0gm`my}~Dm&uQQ>6b{LIk6jq-)h`VNq8AMF}OA$%6vD%QCFT=SJV4j
zF502p8}`*sCtqD3;uL3V>U&ufIxoNTK3!iXFvO7_JnxI(#5dX-vtA&q^ZP_cEHycn
zFj>iSq(~$J5Re+$Bxo1f1;-MEJ$zLwb)@lgJ1An_LC6M?Y}PaWWckaC)sAv8t+aLf
zOAuyI@HjL)oX973QED?k%v>~%*6T~yRq#)2;FTs8`_YKyHnUNNH;2v!0~5^<eroLh
z*-ny4f^Vkc(MVze2Yye;o%dQH&u)eY(K!G1aVH^T=L7MlMdWh43#tCSMQP1AghB@$
zBq$sbDI9bcnp07Ak1Z4p2zsByvOZJefrD>jpH?#PmAtOX=60yR-GT661Mj_)D6_w;
z1%V-6Y0K&Jx3N^4XR)lluRo~G<7Rgj;$-$7SaaSjP~W$7Wx1|-CF(`iG^-WkjG>l?
z8Z2+VFXP|VTK1hGu3{RECCdI7>Lbq<f21ho5HZ#xQrv#`JnFXB>c{Q}EnW`8A@C$l
z!xn|pWhfI{-BGo@`y*`k28RO%yS^`Pq%*}hG?;B_wC1xOMA}{tLdSPIpY23CP@KKr
zUYzY*kAxeC$+{GU!cc50RvYaLj^MX|P@156oI5mjK`V+fXBl@+xm-hNjP>O$*CB}^
za%Mk@=T)|Y0n<2McaG+#X7ew$0I`_U^rUi@al#A>)x{QWRDXw?EjHldaty6;o)K=i
z-odd9o8j&ixa@gXW`&Xde4cuaVge7DFP%h)N~vTg4timn0vNru3BBAq!B6LU*jAWA
zgCkgMduhs->W=x(D{N&wVu-mPE1a|n(aJ*;j<0I_)tLI_NLZfl-X+20Y=B+r38<~O
zrr}F%Q}uL`Iwa`HuRK_Lch~X?N+^$)IRC(^m)OA8`dF1KV`A<gn?}#2$XA2(^BjE<
zR?|9_BX~o$Z*Z`B=_$oN)NQuV<<C1p82o^6n$j=gBWMmU>3~Pf?<9RduoFNEoalzY
zA4OEb!Q|wnlQc@Ry)0x$bFMq@$fc{H&t8GId835Z@bO2{P_}iY<89^0r5)#-$JVK{
z?$MZo7TEiG_r|)~f1%}atGee3i)9aW7R?-Cy|9^5wCFC$n<71J24koIZ8CbFDW1%q
z;BW`i#9VJXnyg6^@s&BoZf8gg2<^dY9yWr{b~<(M2F)v4v0T!Bx(E3zXx|3-08D;o
zSDS3qRG+myv4iZ6XHXN0aAADy`*9#6zEHihd@Vz*h1VVQGWXf|^7?c}`*7NHon-j>
zfuBFb$+~63h)t@jk}5~A2I^^rCJ!V~XstOG;pC{I{W9Y=fVQbH{?op93g+GEVSS!<
zyA^PHVQ0`MQ$BvO+j2U-mq@NR!Bek)J?t~Qq|ycqQ6Jr&Eahpvz^+J?A2_r!S+6dB
z?zUgbe7(FJ-Wd4-kISv}>UwN@dQ<3~(^qG>1Xx>cki@B>-E0bqFf(il*aNZ-1VERW
znZu{fY$ndj6Vi>w4|Qf|7~Opn#ywLkCf-ahui1a2ehn~G_#3`xZxHq{sZOz@QeqFs
zZrztS?P^<j-W~Qx=0BkFz$jiU<Q`i&2SIdd`_lM_Gf-O?K@9hyg=E>t8m_M_W;8QV
z>?91?T=?14P##j1j<l9|{gl21PK$Q5f*Cfr6!@2$EBpqGC+gPir%?Qk?75?`tAP7H
z;s!9tDLz*9ty;!WGT*@Mx}#ZEC0zXcE~P^o1R7F+CJ*x<7+nCdE57_KN<3%@xQ<4#
zSzPxDr>?Hc(=E>m9hW;P5ViD@8+`g|-lj0yHCN&c_k+IjJcO|Ci$#B=zM`S-jJ570
zAcR^o-0U5u+eYkpfu20xXtOt4COd-ZdqnE?qHi@iVGMWP0T%+%o1Cb)m$0(}88#74
z0o@xG>4Jy8g|khnx7GCecV~hp^3HbZk*W{;+P21f$qZ9vr~TY7S=tFuHn9j4%5szm
zBLb97&W|HcA9?m4_<tQRcx1I*^rc^}+@&xQ?>ung>4c%(0VS^pX+fi2-N644a5lk^
zvp(I!V7^O0tj9GU;b(KzG={zH{ieRxmv_Yr1wkL>G*uw;^8y*?cV{kP8v>`z8yVaE
zdbQY|AAxN8oR+t$RcoDhrlP9G7P^7wd8hkiiL<ecQ=QqYT=rrLmo2W>b=&o^YZ@ty
zrp`k(dYlh)zs8xi_Y1M(k>)x{aJ1`bYMy+yAT-PA-I{j-i4<)dHiuJ#EnoW8c)O@o
z<Ad~g5$ZTiLZ`p=U5_D5q9@{ATj>UI63vDy(!d-z9>R16Tg#6P`-C+th}wm^5K~Vj
zZ86H)WWi0Br_4^f+XXht$B&=CM%PY`d7QT1t#V8j(3VY*?En6c{$FK1a)`bkD~%D#
z#BO@&+9NqYDrmnzJg!(i&+Z$kzKY*crLO0s)Ckj~fmR6nO{-1qH{A^Mmlc$rWJkJ}
zEA$bkp7ap^9WIO@@x9Gm%W!KAKgyVh4BCJigif=c)k(|)@U{%49dYvN)#m6d+Mc*0
z-Z<_f?GCbD%a{HZi`R9SG^OdA;^59*7o^3^9z4ojbGt(giyJeM4i{4HdfCZqYx_Y5
z3mnk<wv;sZIoh001xSY7tgwRCNm$?(#@#TD_~!vPx0PGp^Pi{E=H6Y>t*_%!pk?hi
z7~@q9L_d19Ou9Q7gB}^#`nl50+W?Q6b!H->gDb*b&z#R2wC&Ft015#<ha%|xcjpEO
zAdcrqby3U*UYrZc1$!9pEga4k`$v0sTP-deVH3IpKrLbDbaSGVC_e?kVdF!_vf`a1
zS@7W+Bq4{^TRh0AX|B>8QEz^*?immTm;Ak%jxZse#3@0c$Uai^!HcyaTPmjXa0`86
za}(G5nNJPSMD?9}0m|fP&YEbY`9^G^V(R8WS=&?0s_`bMgCU8ZfC!2*Q)tos6q|@r
zp!`sbG*d_mfrIbbph=Qn#p5EC#kuIX-J9Q~`Q*-WQbjdm1-No1DGIkQpp$2ghJ-_3
zviXLg!p9XU7&YfTZ^yvrso$9|+jw2b@?y3Tk5qkCQrs{R`j&|M$j$x1hOZf4=cwJ)
zK7nnI=gFe1=DZjBoacXlE#TmriFlE)m=Lv%q~>Zlj}w(%W>%yrL;UGUeN=qQ1gKY9
z0FvXa(=)zJX@$a2_Ri|np24k=!%)*W$qZihsW9Et7R!qW37fp6dk9MeKU%G7I&)Yn
zgoJ5D4!>lyB!wGqPixHnZn&pl4O>@87D^M8J}HcoAlQ_>`z`6%DVewW>SfoE;z#bw
zo*#pkGs>9NeL&uCcHlM)_PW7PV!(v|g4Ut~EQZ*u^g$Jxv%6_hJU1#W_=W&g!<Z%=
zDn$lx@YlL{^&L#DC8boBJ;s9CPLH!)MU|MPtgYWPROza2=FH9Eh*Cump|ACR(*81R
z@?j#6<WI=C<w;)wUYm(L2NVsd6+bp(vdmFIvhIf@Ml=%DjewbPA(_zxWo_5NDmwKR
z7hB_$r}DWwyFe87rA*7i8#bJ)NFQ>w5pz(>Jn`V6*g<IDh50H%!`;&UnqrS=AG9wc
z@(-NFm&4m#FebXTPJP!9Vw($!CFwEfS}saj-dl<bfD;zu8-q~^nz-8&4%gDgY%F~o
zZ2THyo}b@|6k-EofO1uDy;fe@GYfsA7bC_S?hcR5z%R}H@ZAL)61FL=S%Vyb6{6Ai
z!x;k9xg^W^ZrkPKQAMI$*0Ygzt`9Q`1IbW7I2=c5wPZ4DH}yvHH(ZH1E9{kjNsr`F
z&DHK`Y?*q!_!2;w?Tak<;f_h<UJ`h10|QwEi%8IaCPH-1@DcjKZ4uJ+qh1m;X7T1t
zpascwOREhDGg}+f#7y0>oX(c=UMn%R#%$M%rK)X9URD|{q{#YbaPpyMQDE}JSe7Ov
zKfrppnjT0c5Vl_lu}MionP)LPQiG2mD0I5WMDvQm`sk2jfKjWk20(DDNR-)|elXZ;
zh#Tj^9(v4@#=SN9!%j_ikMm!BE+%AUUbUQYPOrX&J>?stb%|78R+5FN%@dFN#ave5
zfarC70eQK6MY(LloGt**B{{}+<WZz_VnZ%(pgo?4GT~-J7wrplZ!Dm{+?>!U)mzWW
z(b07CadLR}efMNP%4y^U+nk^mXZ%$r%9N7wuVs-BOwEGv?RaR%>KlvoYU;O~mapUA
zwAEkAt<ONkl5x=k#sxsj;6-_5-?=T^{wEiW>{*acC=(y~#84B&L^CVQ=WflEf6)Jh
zx$P+wTiV7rgIW_@r2wyPj+n(|TdlK9=+w!y@LZfkhDuybcgQN|Oq%UpE8zTUO<W=!
z$F#20nI~&+%#HWiYSKHpt#wwdu!jAS*s7hP#F>HTHQjM#(@u!md84$YKDVpxI5tY#
z2P3kp?vQIgCm$(GX`^s?q{?iHi)nwhzrCs-PPg*flpSP4nfx3F;tu?mr#q&aPuIbS
z6J5!h$ExAECcpKpaEcxwN@b(IvUN&9%An}Byql>T9m7lzAd&)rFsmgKJoO(iTc!*G
zJ*?u=Pvf>_6SpUGib@q;q*65QZ$&wg>}ttOR`~0AE17&BQcqeOFhpYZhG{E)Eq%OU
zk(v5WXbOnh-M{&=l7#sCq~$oJbvyO(!Ko9p=Xxa!ZdW5tXlduPtjkFGB|fSiRNDBr
zw3({ss~dW9^T^ESFyuEd#`&Q6jouuNpA}PplFfH-sD*?}N?6;f3C|b~o_WYg$6Npx
zk?oLNhld<2sf)M;C%MaOZ6IL_TnM2S%1<0xDNQ6u(}h+>00TtqR?CHr=Aq11w(5MS
z6H1)9zj$%8vHL>5FxDWW;5ZsM8s6M7jMHSZ^LXa^D8;PPe*(g-1tf+;_vHBUDiedr
z+$vSo^qGhK9Kr#`zOn1gn1()EPo8(Cj;{QIQ<S%4*b0YK>Pv#%g@4l6bqc{E5cQAF
z3Aa<q=Z0J#eCsIXSM$!_Q(X*)9Ta;fiM_GbqR28ouR)voGIN&X#=`E>CVYTnornmY
zSqR1vr%s=N?vF^@Ew!4|RXJ<f8uMiz*ur_oR0`0<TNJa|ft1U%T8*e$`A8GlBWoU4
zb+wjroR$~eP$pFj){{L+X2dW`l6wtwo7N$6x<y~&6YH9vPSs<Sppy9sa)<lC%Es<?
z)gRyegi?RsemXEUjrmMI{eyDJxfD1(uaHNnyPmD9JdXz$tLaE=Z?P$(8!U+yD+4qj
z5C@Wg5UeDl3BdT<Xu{~PBmM|igI`!hUKW1puh&Rl7`AEpt!ZrhT+j#>yY_V&TP#yb
zxX?zvL8=^LGhEZSp0zq-m9zpu+t0BycX1%?l19V_rtV1{^*=ayEJ*J-DMUdF)}%Q-
z3%u62nC*iIZ^^EL6YkRZo4nSVDCmiVc<m=+n9u%;qqqfuJo%y!rkiNLca8Z1jKF_R
ze@jDZACy)G6A1a0!`eQv|GSEi0J>2=t`}{s0bJRL=S4_$KaJH@L+vQQ$Zf?~VFr6s
zBP3R$=+=KYmRpfqcN4b82aN+E-S+V<uNN5WP~+r0AOup=nEb+Nb=sxY5|vPt+vr-d
zQ;kv@UDBG6e+dN^TGvwjNnv=(WrKlf!wU5Cms+z0;V*F#RFA*UI9?qZKbyBPKVsKX
zD+Aj5s9}b}j1e?X{{lnzUci3toq#kiC#B3#zLeUK<D8@OmX1`7ZjKsQr#gxAZj$lf
zit}g37{2en8^kPGQil{;AL%0(Zij}FjguH4DNC%?cfx63N#8*+mHKV$^Zgcl5shP8
zNV@YX#OXul-O9$j4BG<}+ubtkb^x;UuP{_fHdn8@3rbg^&(W}GBeqk<mpXA>sLBoq
z(<jj|sCg<?dY7a1Dd0<v?H7F|V8dny8X4Rla_6ngGtS!E)zZ~kcxl=i0MC2R;owV0
zytR#by$oNj_Cs<l#1m);jWZm}Q}eYzBIRazCE_RuRdgRlSyEDI$ENb7V$(RBNi>ax
z6SI3;P$tqV4xNWbotuOXR+__G-a5@#ux4YVdBZtLq_HTca554Zn(4q6vjl`)1o_sy
zo+4^ZmzWIGcSA9)8-!>Yx8+$5)0|ghF|Cd_f;Ot~Gkf<cOl#OL=d_FJ`Cx#MF6mj%
zS!KMn#gP!``HG}EQ5mLC;v%wG%zLN3!g^b!E};8^*WO=Z&l!KAmG~A{cr>kGHn0(l
zTjVvjL=2=)8e8sOo2xAj6y9B(ygauD4*oQM^}7YNB(5ju`sCN@2#kkJLOAnGKz|qP
zBfeSQJ`ixytTZ_zd5k^N3}F;p`OR#hQL7D`7Npa}QD7hbfNXzjlbX=xd3$C|Vp1)e
zeR?oX<J|eJ#7%C!&S49v_L~s3Jn~O){$aXQZ>=1k!!l$XcJZl>3vxc#79;$(u<^@U
zV`OEsVCaYM-Y<N!<(h;gaW-cUdl`;>58quMmgrc<!(eGk$={U5!C0Tq?fbrj;*tQ0
z04}{QIG=DYeALs)#(fKK`ryevK<;v)%UM}~f@ifKjEoy4?g?5w)wF+>_l%@N>ph@Q
z;+%G+_4%e4!YRXjz%<SXGHcwfIPS`tn!)0nq>dG0qTGH5AVd+u?c0+na70E$fDb4K
zI_bzZJ_4TcwBAFA2uBonQq4}vlv=@uWOpIX->8Vh_Dnqg#{lcRI&=>`A65^=I7IE6
z64>G!BY15y?2K0=(u9`~Xc=1UJF6zYH~EoI3Jt^9$~Gf`VDXtMgpMysa@O;<Xe5Pa
znDgYm6U#d>*k`HbLERV!mB65#u`I`{aEw;TFPk;>4{ArpL`2>C6Jc@J*%MGs)BP!a
z;LSc`@h;z<hdga{P%%T)Ce~DFG=_aIaSLFKg5v7vi@=<IUc>z|9LZKfp;!z<HQeRd
z{DAqOc7OyZUi&TO>?7_x!IziIA1J`N)ngRrRWvEsp?l;wqHkoE?}H{Bomoa^Z=*`C
zO{0r72=D<|EZEuAPCD|UG|HVIHS4}4RKHZ5B!y8ll$*_T=ao{djq|(_X&16B;(Fb4
z?>HtSBOS}XohRKk|1$I9AD27+?iPR6CNaViPoXF-e(ddI4?Pt8aP}eYqG2nNLr&8^
zbJ6nLa^Z3c%{xAjyYvs+^?3>lwoSnkQ_oX<td_)zTf%au;tCkj{KJovlU8|{8Ryls
zx(XRba3bk&NiE}OdaN4L;3*H+2QpWd*Udn8GL@-tZN6;NFVKE_N`}X_d%;B~;H*;M
zZDW7VOMa`D#BkYqD!)P?Vtiqlw7p>FJ$TlC@e%^Ic;0Fp1#O}`NFT>2^tJM~aO#md
zl`r+@P*OG^xo%7>j%x1WZrQV41m${&l6I)9eg%WQ9RfC8iI(Vz<G}fJnfL}%gNVcF
z7^<bs;b0Q%f&kpI2rIx-;H+IF-POoc=U20$>o}93q*TgGoVrz`1YV}pPTQlI|FVt1
z-H)y^qfwfKl8UC;nw3_baUd5Xy4JQLueQS!DE9WW#xC;7<MH6_*5Jd%(ziLlRgb2-
zlyc|G6dTknj;n!-np}?S8(mkS!`<-i^1fUYw4jm=kliW{n1=po%KUH-QLE$FgDBFd
z%De8_iz=l6FvI{oNnHqEQH&nAZ+lx!s%~#&Sv}!f^K=*?V);soi=drE!vdxjQhokQ
zU#-{kAaBob;)Eqh)%_XhM*O^+Ca+O^6<X%R6FjziQM9XkyaYR{c{**baHlDZY9bYI
z8)?HJ%8WRw@i=XK`<Vi{dQcRlYVd>JA94+7bZ%^)Kn0(u)irlXt`a`alDpp=R`dmB
zTYYsYZ!K?Kw=YkNpoeqSRBLW?IGq$Y52TOlHr9Q(BxX3yddtVMx7>*-{$%tVN}5Vl
zzs5cPfZy?h<%R4jMrJJLXHHO2!sv83=wfZ7e7VUAerSCXx))Z%QMq~y;Mbh#vt?q6
zaj!r84<|Ikea<OtU>*TcM(M+VnBMJ+MfwNkLrVo-%sQT@CA^uvf!*fM0U1C;VJny&
z7pomEq)?XzWLF9f=FW_KqnXnD?@@U2cS2+nw$0_J1v~w%Fpm*Gr#SkHV({FuSWXhi
zvcd|-kVYwkU1;ZNucgc|`?B#QC%bmw_Dp63>HcRwdLHvn%R&wZO6@f9<ZwbdcBb*_
z?!?jT=b-4#{h@Z!sSo|~@gs~$oex@9b+KY`9%{7-0O8kzP<p-&%E4x}U`hrAVlq6{
z#H_5aq*<y{K62eV$=k#*l7+3pqV$ndN0E7;Q|+V$0vKn;pZbL}-*$6*<h$9D`CJ`Z
z)5`+a8Al%Ece6l01Y=E-Q09a7pjlE1X--*d8@glxWg-#JDLO$5rzG4a80%;mwX_pb
z5l^LwLWUAZR-@G#6uCcZzi`@-FNF!g@$#C>ePmNcYfbvbS~_%E(-~|kBkAzzH+Y6r
z&+CzP|L}!4!Xwbb9C%!bPf7uzcoFO*eWnlOme3{%T&*fJvVAq@NsKFFY2L$OaWccr
zXKjYU&0bKyj^->2cVX;H5t~V4A?LW?x@s<W)hkkdN46V=Gmo(r%Se6~4v_Sv+T^G`
zBSIa*&5j}ac`JLP`Zfjae6TD4ZDjw+r-K#s8ms^12%LqQ`)<70?hG0-DA5`g2?8<>
z(*BVyGZu40U)Jkj6G$Bh3>2Q}b5B{=2b+B7!R>;2a!jh``qORuv9~ZwTz{~I1$5Og
zU*KT5&RZs}mIHp5gR)^K9Jow|7LXnFB@}8F-bskVaDhE8nwu@x9l&%oApEz<u>qQ#
zZZvuzEqHt*YOG+8ea4~typ>M-RToe_H)mvD3Un>M(0il;X`N8n1U_C^-JG=t2(~4_
z3khUl!i*#wWgol70)=69o2S*U#k!+BPV01^=sNTI$f4{VbfelWmOuqDQfHCG%^oCT
zaVSBxBtdQ?E$3Co@Rm$1I{#GHw-%%cy}G%UMhVS}z2}FTINsCF%uT}|SFk4dvRG_-
zsUp*#PO&*O5fhbxHe-^Qwqa8|<lbxs4($WPDxRQ$6?koi$7NP^=|d5dNwf;SzxvI=
z(#!%0$36gPDr{dAl{HBd>dlS@57XTt#gK`UyAH8VI*8IlRSSk4n4a`7K+7V=?VfJ2
z^F~pXjVRP6A0)vRb77rC62a8e^)>Ww4AHf(yV##Q7D}A=a<>7OVneKWVEikqtxwJR
zyu3&<v1}jRqzgN+>(@w)$t9L`S89NCse2sW;+X{}B~WBvb|!UsKB(USh%@VcXS`Tu
z9-Z<mdekSe8%F9|&U!~>(oq%b{Ro7bbwEfZz-|4tz=^&MZ|=#nzt|FTrLGBYFH@=7
z=2110#K9<rwJdm|;o}@1Bf~y32!ocT?R5|st9MIxr~maoD>T^vxP=sgw%tXZ8B6)4
z7+K};+_EcU9Pc`3T>~3F5*>0|DVk{aqzcKNg>glIz70>|%1k~NJzJh=!BXQ+-VxhQ
z95ru6Pw5Hr(ay~c%7htc*$2i=@BDQr)xau*<P+*T9bz6B0=)B{F3;mnW=-&(X!=t0
zr9f{_K#;@Jh~L2+rrd%3`1Rp<$QbKqT4cCe?H@Wmh*z3P%>uT#yiBToDhE-!Z=O)p
zI8PviBpm2B<m1|X5yiF122oNo=g_1ThE91JdI$OX>K<H!d}1x$t)swu)DGWe3vJ?m
zYS<^``Apx>kn;r+QSC&{Q889K)*>ItaK<)AGL88+@`5<DiIlDfP;}0J-Zjtq0l8Sx
ztrcIERgam4D*AnmWm~spm>O1ob?cibecL#>D0Sw5A5A}++Mt%a;!U{+mfAbOYyqje
zNH?xu`dzF_B9kuZGeC7SFq1B)_ukcR?Cq85+Sff-qwzA*2Pc_kKTHRoGmhh}1$M@&
z*0_NEq^}!~<P-FQ-J|`ljQ+sFm$lhD!WcG)T9SzCS5DLkBf^P^UK}P9A4-~Y*kgxe
z2N9Jjf0bc?|2ZOMS*`z$tO`QifleKw5|30CC4j)^!6LD3Ra>=^OAMO+c^0jT>yb3W
zW1C!@f)DP}A8OaUuDay7b7wo_?KwfjAym=|b6UHywQ}tnFrwtT@olSf{pC)XV=3xw
z3pY;lsF*!M`#E<@>UU=3ln4~E^YQ)C0*OwCRBPJ)#a2F>I>tT|E5TX)n(Nd80S*DG
z1-_LUT(5ZWF7;P%K+GSiyEzPo(Upar{H=mir85z84}C)GcYdgvm_rcK-sf`z7ID?e
zPm2KJ7$39}HZ*FDjom=Yc}(WggCI+n=ZrHvU&2z%uAwX^gbAl3uZa7jC@-ktBo61(
zX|WZ30MP$teF=palkgt{KQUBm6?)!^lKIt7!d)D*{b+LA3v|#ubC$j0;r}EB1&p_F
zE{M^W62Hq*-s(85)z+3E8&YQW9tzdfglo9Y>|6qUD=dj3=Dvo@9m;{Nsa@AaaL!6Y
z&Qd}CdFQ?_#zm;ItF(K&V4tT4mAI2-ng{`mAkOwbx>W9Z(K9IJ?!Ov49uAUb99lT*
z>@u3qZe8xr|1^rN2JuR(y$o%+*rMxmvN*Hr*$^SySfvLhU($~|B9lhOnMTQ6_bj+5
zO_#YRH47om<5mCyCgEsTOpsYENEr<VR!$p?Z#~nraQ%S@;K)*d*Ze3ct@tw&><e45
z!W|ek>I25L*GGD?#|f69$-DZ)E0{MWLn+02?c$W|wRp~RJP|6js>v+*B0b{%GxXUm
zKbI7Ml!9T6$kyl{BI}Q@FVSxBZhWmg7K-t1N9=l@HQb_%%ArPkV<{WC3ps&%qyIT$
zInxKB@*CfehluZ1z?6Y9Sd+T_+h6+PLxsC<qK-$h7nt6!5;RyB?Xso{#FKtu&#byp
z3@LiQSgF>&Sxsvcm#npKY!2}7T%D|zRUGftJO`DvXUNVP*P#k4u-@$5@<8-`n=OBu
zW{a{%*Ze*_+KpnVt5s=BXjlhac+AR9EQ^4Aynsz!Ap5>L0=htI!r)GRI|rC2aX>)0
z#4?%?FYJbSeR(U_=0e&K1;s8DFc%|dH@(H)nzmG}s1&a4INNMCS8=kui0Apdl~F{c
z&v^9q>5OGqKc<geNh69)*c2@c)sZ@vKw$Z9PTT$(gV9Jz0Zqi7YPN|5_8?T97gmb@
zCxH;>h%D2zdsh#=6}c`~Q_Ljnv3`g#y>k#-FfdS<!BlZKR6;uxZbqtfa%%)yW;)22
zrZR>CruW0$<z6;|6p#ZXVxhh`;!F81<&tk{3^!vaWIl8xrbaOKrc{nCwONYXUE<%Z
zojh8)0qOrULfapE%tuKyv{QDCCl?x5b-&M^^&$I|-oT)HsI{78xnJ)EWa6sGvdt6H
zDWpTWoj69`-WqlwjrnALXKQistC(-FS2*<h(a``?)BtU`Nm!#7#O34dZQ2@llP^3J
z+L~kE`+-J>J-%L=TMC-ePO`IrA~v$0xxI2b4?BRBG{Yg8uxG+HDROxF20?DYNy|L7
zIriJwdHh>f{CmCvcs9-n-TCr-dx6LGZ%FnbSD@p+3b}*QtJr*V)E-^J;YJ<t5!z0t
z5$OOAV+Kx7GeiNOXzG;9kofcLt|WS`=ZpP#MYQ|rm+b|;=j*9AYUkAp?Sj-tHx<tS
z)=3Axt|DMeL18I={HL>WyCsPt!P=I=eYgG!E7Xov>xr=I%}l~FtBY*#V2qKg7L5Y5
z=;+fPkP_|UYbEaA%kU<d(^wi)c(nlY0wo8pouAa19)PyH{@vfCdNN-npr+}SR1@fn
zS;Ps93XrDS{L;Tr)<zCKA4H+rcn^E&LOb1`3ubiO6ajk2B76XDH~LudUcaeMKLpcq
zmeE)zB8S`qLs{K0COIDQxDDR1sV<v?Rz>*VTV8H`PrD#IH+OxVhrD0yf5Nf9vxl*t
zmlAnu^i1X3Yrgf}9J~5YE2yWK+(oGAfc&I+Y<5Cm;eMXTNgwxbe+FFszLRwJu;_B=
zjHg=6Ds#VWlCIqEc9?TMAdZ-h`o5^!Vm{pf@S(&4pFqY<IYoru`ZBTeSh9jU5Dll)
zEE0)vrWzVXdoGnci@2=Lu`~|T&g(v!9EB~h{phv(`}m2Sd&a)Qsnrt7#PVkEyJhsD
zeXgny+vdyhYZf8rtUi6CPMg2bC@z}j1rB5|uD4(5yl`XisCg$CZ0!0-pvEK4?iEFO
zpxUDr=YM{)pkr0MV;1}(9cjYpO-A+LF~ja>%3dPJtng6xY(RC{?YS}uiyyx?&Ow*$
zUPi`4GC?4G+>9!eeicOXfh6MoGek|ySPIw@UKM-~uSf|S!<1~0)I}hWhkz=V%o+n`
zpA3wH3P<Dl^k8M9)hhzCuhN2{DfgLsEmPt^+$OhejgZwYL=Y$Rl<U;K>EeIue-N6U
zx4h^<M!NdpB~jGsww&nz)_c7Z>4S1rY=a74M0B#Kb&}qVwKD;E>e&5ybrcuk8l+3U
zAeER$N&`wg#3S`Z!w;W{m8ZEqE^Y-fXk{<{Hf;7J4l!rQ>V8h!8&T!w%T^RmYQtNq
zcUG#aaMuuFPhC!2C%no*;8pm#g-WL8-9o`-QgX?&z?Z4V)8^6YodW8y*2_m84;r;P
zizAq4f5F;(7qlHlbkH7EEg-Ruz;I}nyw%9omwdr)nMn8p5Fxh}@5GMl-NJ3XRS3+A
zYUrg;KdN%;RzA|St&U)Sx}rlDoX7bC{FiSjra`z>(2ZG#J|5SM*`tXZn7`<I0rS?l
z;xE=b@2FkX4g@V4{xl4>Em23~Jc}Jz+7`8;JW&m&c~9Qo+g>jpyIm<VZ`N8egYX62
z>^d2(F7PcZZ5D{F=7S*hDtcwgu2o2n|D+!ebB}d9ZC;-ZaU^QJC~Lj=-~tR0#=Tx{
zl*Jw%Ac_(2>P=G+Y&QJ<ML*uDC0?A)4^l49kgAhWmZ)&$Y09d#+Z@IzYdHv3J$}8K
z&k`VQ%yxuifmv$hT}Rs1i9=L^sgsDCZSmHEGKu0i1$Q-3(F<Hye>#murHnt&GxC%q
z&g>oHQIQeyo}>}&hzCX#QCl=q<A~TAJ)SRuCtLf!u}e^jC`1Q*szIC}Xl<7vIDITv
z=0Ho?n0x0IG%#a%Ht|i~3506t7dqYUBv1MuKFmYL3$#{(4^Jx-n&$+_+t2FBPY{K#
zw!3HTZ%%!I6>W>rv1z09r@!fAxJs0DiylW=v?ZEIsVeo3XEPvc(;DwPmAJ)NZiT+f
zE3p+wrl0g>V<G7H8%JX@A0x88HXyGk<X2wY^7*GxCtr&}?crz2>;Ut<sDVk9hv`AQ
zH<28WO}gHg!Ux&|(`)^HeYl?XHD`o0EAPsi17l)&YwV4g`-Elc#2jfGYVxy!JUwvz
zx?SMZj%sm{%o)pdB&B%-^=Y=$QF@XZ4_x>wt4f~ba;}s7SK<FD`#hIa$K1~a=myeK
zQLfD3f=gB66h;Aafs`5@=Dn{oD!fYO3i;j4291F!flFra-q2fU4Si|eUb~pWxjJe^
zpOK_^?-yFlaSIlnyF_cKyO)P0ac8Z=t+D({=p31a0I%%9s1ut_ba$6~8B(laK7dP}
z;(;$iI`K|t<Yiz^rBiSmw@z(<W;k|^UO3zbAI#I0E8)7~y!3)qV!~;wqIOE#e5VLZ
zU_#eoWx`i(-7Lj3I<*P#+HkaSnd;g3JbU;kR85PxNLN0U!jqMf_N(Us-Kyb*&obfq
z-!cHo8stDaIp6>C8J2SUhDFP<3jk3|nc=Rs>T%?Fr{%sFBTZFb&{Lz6{RjUyI*(N%
z1zU@*siGh)3+C8fXX~k1oWu5-Nbr&wh*Werz^nyK%(em2eeFu7alo8WLV!>i-;d4r
zXes7P`O;16jMX0T^5&K%YG2eXb#;Y)>~JkjxP89O+w&F8cMf0DfER?76b_xOB-?|$
zo0XO<N<ZP@_~ElH{=ed?o(zRjTTKb4Z*mVG;}(A8_{`=aPQnl8%W!h9Nkzncou}a*
z;3G3^n+DJ8l)x)(NiNsz&Yx8Ltg#3Y3Vp+dwFGD#s^K@kjJ@zX8LYd4wF~<ERKZ#2
z;>(@ppwVU#N4feL2`Xh1N#m2RCA&m>I9j=l^4bQh%F9RS;iiUF6lu$q#}cF*qMk-p
z>n4~T_@9j9oWl`*&~6rxxZ9OO`d#<^D+(%#c5&5`2hO`MSNy#0YwNmp$qe=I!6ywz
zv&|hBd$;Yt9ER<=Trr6Q56#VR*v%la3nZ#qvjj0-V2Z1IW3>Q3T{!xc?+5!f*(1(t
zL`v!lL-Mq4<34Ls#$q2dZKmB3t<A7>n>T88uUIr{OqZ}<>Y&t@+H~HHdxl_No*+Wf
zQ+5b+-aUXtvWy*IzJWOAO|L{Vo#z^rHVNnn)D47drym=;`}pr&jJx#@IWq~tG0V@m
zvLy-$RGQmCQZn^cp4*8lN=f*V$4eC{=0&qg+`BJ+&%m&B%;ODaV}Xuga|VS7MR43o
zHxAZGx|f*cIK%#JN@^t=fPi2?E#E!sQU~}yKRIdM&s8s_17$wUQ~!sC9yrxH1~fcI
zE<q0e6j5@nVS-q)G7y!Cb^*w&9bx}A9iX}ut$w(QZ=7{ugf_VdL{iE+_|GW{KH$}a
zKoy-2@|mrgEZU9n!}7wlrwXgH*h=+M4F%D1bB%Lozt=hNl1s{zs17UPKEEoRd_o4k
zLIRk<dA;nVwu#_)dmdr=A=-&zXoxbAzwpXA()w(POJebtmP(Umey+Yx2@^|n&ue0q
z^gsbE<9U<M6NlbC9FC{1@DkyfU`r#c99<Z5Z$1=(|BQR6HLInX$R((nJY)5wy%dL-
zH&d-<N=QeWG=|CqYB`~_gT3f%=W^f{iFK1{p#Zj7tO%bFKZ@Kp$ZY*8OhWD%yw+K4
zJB-FQj+^@Q96oMvn|dJ4&<wVyImEER^}2L+VH2$a$0eoS`>JqLPb>jUVVR4pS$A8m
z#y6PWVJZt;0_3I)PBzd8Oy>Y!&{zi)^j#I+%*`F`bvX}Z-wTGL^}g%lX$WEDFXTub
zxmQ~i)NjU5B_rt^D|H?bws&@hxs@tan@!?F6gO%~9M<{BH0pp<4Nt=^AAADcT15Rv
zQgd!QNA%NPdY8+qKM6B#t2X_f2`uuOPi|+DNvz$_D{ncMqc)g>3ZT>hUx4q~rHib`
zm;0<y$Pp=tbTlP6-4i%$%R%b~N6I*QsCtHeQ|8MPPmuCp23xe%FA%FU3pO5ErR5ED
zlvg32In}+%ZnW9p#Fk{oDFfHd5hekz0fsk9mmTk@t=QY~3f_FQE|ro|1uG|^B${n1
zc~uHdy_Z{_Z^nrnx&po6y!gV%hq`Z%ESJ7HpP~1DDDja%;{g)Ioz0%X@m4DCBmW<J
zZy8qQ*0zmGm$VYnNT*77i?noufOK~^NVk-vfPhRoCJoXZ(miRUW74^AT<d+;diS%Q
zZ-2+$-;e#{ISzkJrw4f7V~lHzYh2eEHzC;AJG%~!;;DGdUTP)a`RV%GU{%JAVLsbo
zIkf|hZTRYU>^=+ZTM|0@Pk!oDZJsSyFI%IUwP|Z#PFz6A0>vkQI!#><J#AKgXIqCr
zZJ-}6Ec?C#V|FkHgm65|X<lwCc{nFuK4IwRUW5UBwW8oa?SfZ9y6?S&&2e`$2|b%B
zHT>2AN{3MrYl0uA?yOa`eX{P9N`tc;6Sv<hm({$AH;$X^u8Bp8!JqZCukxDO4sh>B
zUV<wxSaXiH?58ut^4yNo@l}h*L|eP75R5=BGjrdh#(8;DPC|VmlePC>wHT#`R9zJd
z`_w-l&G*FUR6Hz%)k?eLndf|Bnual@dPv6mrZN<q9d6oo0_45xR5i@cbz<ojz4TT{
z9$}a1)wlnSPeaZRqmA3?DJ?voYeKkPdhbG%K6G|mNYsLi$xQwYpz~<&udo^t_%jA!
zsWPZLqaR;Ff21oFStoa_AC9o5+4*c*qEePOU(GpN#=FR{OK6G&49m6`<$}l<U!?~+
z&231Eh!Y1eG6#q@lc{QdeJGBEyCS(}fsZa<w`>3yh*G082E-?35O8k71bA5*0{P^3
ze)__cR}Bf1n_Q9|1U)CagPnUBQ&<`)Q1gnZgr;<+9%?&Vcg!e>SqZQo!f+eCJp=uw
zSjneg=al8YQ*f}#6Fj^5I22N8_w$wtaTNFTU=|Y9qqF=nW^*tY9}$L`;Q)WYoB(S?
zKI^qaIiIN>@10KhWB7I3`~U#I-6-vD3ssC+Qw5Y{23=qP@!uU^tH}-Y`F}7+A1`>}
z$!GDXa>7S)nds(Ro;e!q&vE#VL@jKVT+Qvde(#6%x2~coSr{J;j3R}W6WPp);BWkw
z767C)mssg*4iTroEB>G@2&k-?$&Ivg<7D^0<B+v`l2qhsv*)5K+u@5nkhNw2)zmp&
z-ir2Krgsdj^g6E)(7un|tgT^jerD0tG8xg@Te7%0-&ZQT54M>(y$sIX<QYH2AHA-f
zy$8_YiQmTdH>st3#>bcuKUy)C>4F2&fzDbIoHX&W&H?^tW+~Xb?jkdY9DDw0UX@^k
zEO`U7R&@$XbhRZ!htv9c4m~ZW$*G<G0=C2PxU1${T;)teq74#>inJ#3qC!U3TrP3#
zh#-ou57sEBDxN_Z8&kWUv-55*=C&-XRxx}!r**WYD#1qpS0t$k+1nBBr^>ee*;M1C
zl)qook$l9Wi*qN_vsOn7#NR`<$OWp;tDhKmRpT7i>jSK<b~!){k^m)oV$Z!+CvfK4
zA1Sf}7<!)GEAiu&X$EUF|Ar~%1&7GdT8K-thpQS$aNPGR*8skRu%%;U2PSSgMzO?p
zgCM{VR>>+kdxYKf8rEFD8XqVx@jAUzCNUk>phF_lnG*2U?2wso;b?7KDJO0HH7;~e
z(2qpv7&=t5I}57vs=EmxP8&g8Ckyf8jP|&JdL3LnmzMPcy<I0BYB|(5GpG_Wokz?R
z)k1|2GaI_7kgcWfUDccz@`7|ymQsivI*1<}O&4iO^12>uYd-ySSr0Yo<*&IO(>YBH
z!yS2~zWnPSVFQ}S^i=`H%rf)6C~19Vz<5wf@Z7iiTgk<idpDAMj{%6ok}i>Rr4C6=
zHl>jKOs?oQeCefJOX=KZZNqDYIE;2)4z3!FeL*CV5|{0hY4aRnD4YIxLviU#a6zV^
zQPDu}v)+LD)o&?`nuqB<JjkHx%kgTDP;TVtTUbKmsSl@pNmX67<Y=YDXw!|%k=-@T
z9x5=_5hf*xipeiUIr!j}^AWUkRO%g`i;x0vBX(obT`sQ`f~&TsQWwuEzjNTe1|2kQ
zZM<f7zfS$uu#;)jDmasfqky3Z4V(WMRB4E&t^r?N2-5$ZsM19MB_&kC*ZPn`1GbN>
z1U<Bx)jAg8Bmm9|KW$mVG3;7UDYnP40LJKA0a`PAIQG28b%bc~_03_cYcE{K0hG#i
zsydO_{!%fMo6Qdar^-Z#LL}nlpp)Y5mAy{r+=I2Z(3^TCVau_1ha<``CG>()`o*2I
z^vX27>x-K^^Ypk6*7JxF=Q!$AH@8#r3CbVIjKYuXoQpj9-+1H*zl-m?La2srvOq)G
z-sm0*VYXR=28bGd&Z0Vug&mZ`=F22!+AP%{FW7GhYu4=WTqsr920b6mA>N<ZK}7a$
zZ@4AT&UoXVWL5!ng;*y|sk38f-+tbHg91=^(m2&o^<rgRZ%DZMB3K1kfhx{c<_%f>
z{*>o}%w4<GMbHV8&km3Am;gl*=ZLwl4xU+@(1C#IInH#zo7M7@y>L#s<>%0<T}aE4
z6xI=hI$4K-Ybmz;*Pa3_wg8jw7ooY!@gVfHtl&C?Y9E=rs5G6Olx+odwJNWBpV%R8
zBhSb{)v*vV50$YJue<F6=E{?L)6XfludlAQ))U(cYfHSwUh7ob1>Xcd6K|=p$Vz5$
z?{`$MJ|HLIb#fRnlI@!L()YU#1WI!gjC6Mj8dPH~x0|h|7%T8pTlOM`o#WmiQ5ClQ
z9Vg4gA<zgj18Tyl_>Q`HBy<-SV&S=mJKKzggKJn?CXSNPPv6<bg!v<wZ)rfT>JRNX
z0AsHgs81KEVUd-9Yj}HSNr0|(!N;p{nRb&Ar+<SaQ^y9Xyy?@hb7T`qYvY+I=?;R~
zrWs>nYhy}M*3MT)Lnk}DH%WEXzhehZl-D0*ZqJIM5sn;cw#A&XpDCBznno8uD+CQ*
z-XX4mS|VgU=O!5Rd#}bfev%mtCA(`MYDng^t9>_ZZa{KIT?1u|+?#O#=pPhy{fwX}
zcl#_l*g2yKmO6CS0qpaQ>Khi*w1bO8kxXWx`{g}5x5b*pymxWw8R`H4si8G{B-6tJ
zy~f(jIA(>}+h=W>Xx*Np#iEuA&FoG`==u`Q-QpNl*ZD%D>C$H`S6iR!>27ySG|_et
z8qk4wK4r*rc@easxqvSpqYVy@+{_6DP`J#t`LlAo1yrdIAsfHYSPQqQs+*s*`??NM
z@7%m2UUOeKMD@Y558}|DzhhC=Y}AEl6S6Q>+?=uyI{1n*=9SUAe~=O(<2#>O%Tu9m
zy4gg&J9B4Zb=;KY@=XY>+#9fcyxZCC-o%B?J{z5@MzvfLyZQ5mx8sn{d+-`aA1l5S
z!y|g^E&%r?WS$QqY>8~a;P0I!-%HVP5Ajj-+*KK`c0lL`EY4&6$Cq9`44{@Dtl1n0
zYP@oslE__OY6}nb;!DVBGw4vQC`_VP4{i=KP9iJ9`=4zDV~>imBVwz@cAW2Hv9D_6
z^$L=TEN0@3suejE%BH4Y8Vapcygms!mLM+#V14ZXyds8vNrE6i0a?h?>2OP9L5z6e
zbX)o3ZIGk`?2d1-Px`BSdoE%%w;jD~{(L(Qc^Kw{E8hp#=mqy4-=X<|>K@wu&M+f^
z4P@mQpykVrR}g{EdaxO?drP^(wdAI1^J1n)E<royN;6bjm=EahD3$8C*A^OdOILX*
z!dHWPxK&`SoyYy=H%`Y#p5CsOFg6(V=)YOc7d$y=wB4o~0We^hvQa;jBh<nV6b!Dj
z?Z5YUPO47#ZIsM4*b^wf2AeqO@?KztUR9^Dxqjk5>Ftmo-K>Ho?54<$%3T7ISk4<q
zuyywQ>u4if<JZkln}}_o_&bE4kgE#$0=m`^am2zBLoS9$-fbXZ-fAp}dnX0BsA~W{
z*h*=>aqKbRx;a`Ezc7e)SQ%(@sJ{%~Z9?*k_8-M4{1+a3C_r>+O+4qT_ii}HHI1uo
zJrLL>r4j(PJ2SFtJw06+0IF#L!%Ga0=`rsSH0^zEE)8<~CX<-7Bi&h>g%jVFig&t-
z2kaf?wUZE%CoK;@PEN;%oe;`=UNaT<aoSAC7O9kOHol<^J%w(LoQJl{{bUB?`pTfx
z``lB{ypsBmPx111FU43Z=oVmcejJ=3{%P1-6fEyzT~I3RrZOib1Q1oNQ9nCV0C;I_
z{Uv!6J<zY>b;6pLTYQHt+n-jp$3ebyFeUDa06Gxfkxi1sy_%?5CamPZcUkYJn%RX3
z02hI60r;x52Uvv)Ps@3C@aJsisulB#cx>yE`W@_5IYP=7pVn|RL*|S^&NJZoCM~$U
z*6&Vw$avJ6UhBIp!%(|sq2l#!@16``kHFP&cjuNnPpl<bQ{>j$!Dyjse2r34C=amb
zur|KkP*?lzUXpHVH`8E}Apd7MhAX(!K6-2RsGqZBlc)yLc75x<rMJ99+TA0l35_F~
zB6ZXW0k5`&G|drZ$dgql9|7>4y~y3JaB3%xL*JuPCf)PT@^}NUg`&_Nama@e_F-Cg
zQDGJNp3^~k{rMW|7Y~JAcgE)-7b$+68Se+4>E+>!emTCErmzZc8e3%iHTTNir)@R%
zt1DV3j)5*vgm{EEB^$4YHJuF@rg(bYUzx%xes+002T{y+3-?t#E=aShlJqC=^VRj-
zf1-yR%cfqZ^zf$5>H+84%;ri3%D6zSzngo$2fa={_x?itxPUq!?4ntD>CV+ufKYvR
z1EIm!R~ewkWKx&{`Njzg<4<1Qyeuwh-zkFlF9sbe^a|cksrfct&&ixbRCb3kgMf07
zS;RAX%7LWPv4RYvJ4AfX7FkbuMEDaW;fQ%mQvOH8&L?f0Bb)is;FpwBXP7Vbh`kO2
zmBdQYU+dP|WaODwsSTs~5&9ZEWS*SQ+omXL-VBY1F2K$K?P96PqL4;otDlwrR<kF$
zL>MP28xfS*H3HpN10G-JTnh6miEl@INokQtKHnNqcaLMgB>PO8mA=+GfeTKIN!=bK
zMB7*n9N<-?lPsCr`cfcvbC)ynU+kmEX)zs)xOx|aAy{kTv-7PhfCBNEV@aEXa?9-e
z?l3ViY(SgKVPt-9WLB_jQM7aU5hnFrwJJKnG5>-EdhV9_D=flYTAbJ7RBUq_c0*Fv
z0wmO&_QN!*#CeHh&{Z(cyr{EVl2lXRyG^-tTAz}jc(wP9vs^<G_P;qexp0BdF7^#U
zH4Luj)A+@Ivj+{7=W9eUh^u~y$1eWP#BhDZs-hHJh3P=V>GhpyMb25_tk^epdE`(_
zAR9of*jz|TV*FX9LH&kP_r)*?fKMpjxszLIfjF3<-};5<Vir0#Tw5CC^N&ys*WIC}
z+sX&nIjOkv+)`o5j6C*fi4xqQZ9?yF?}pb&^1W}TL(u0}i9(i9onJAFvM8!~2WkYD
zSia}2mLf6U$7hk>jRkhtX{RPV0DQcL=X;`Zh+$PO?3VGSvtq<%AP~q?p^ni{)mkrH
z#!9WGfi(Q}r?bmbsY?4b_2Ii)*tsa8#NfGY6to(fua&1iUVWlp@HXsTFMj%Md!EDA
zrJh)C{~d|SR3B~sw7#uV$5FNV+rCp%jFq@t($Chdwt?!`49#7FH_z;EFKq{BR-|2z
zBZxk2NmKhV+aiC^*Qim_^Sm>rmAmsm-_U>HZ<Bjix;ZSmLMwYe#2Eja{uiuPZKdaE
zZcj;}=v&|C<bu1|@MT)>51aJq?qqC8I;%qV!0#~xMp7zXI;5!<?mqIVYPq`|%bU-?
zlpcttZ-+Bpn(W46E-`XUXYW!NhG@)!$GvjT8*?XgOcJ`87grxkpOK^qMrJaS*TFYJ
zcc;0LBtmmM=n*sJk?6IKTac5{qp#7_4z!|orYwRY#MQKGH0wH`@x7?u8aKeUu|}YN
zYJ)IRs#CgTyfh-c^&H$h=z5|OA=<vVp<o(OCZz8R;EIIeVpkp!n8QMcqFl}l2Ki|}
zw)&{DNjNM5*y?@_@am4MwOp?H@}``<))tZHg(-pLkb_NI&Ku4(llz)}Jfktj8C`PT
z!n(R>9dTjx-OAwF_(bGcXE2@sfv?U_Y`=i$GdJHjy^ct;^wof2wy~2d*!|`Xoyznq
z(Z2YuQsxu+2-H~Z1engKYH${{ANxezm)qKSQ;t)BM38)-0!!;RJ_N=d*vAM>Z?hI0
zFYYoM1Ridy9Htj*>Cg%!jF%R^ecHZG-)~Ig1g&A)d$M3)zY;>TM>A98now-Khx6b8
zg*tQpGD~6&_nSH=z*kWt31K}~ueM=Df5CpPk$<MWGqtTuV!gp;c*$Lp*w(r*Uv0Cf
z(Q@NcMTD_Suip}|teHcCC$HmZ%|{~ZP7Lj(iW$Ys(GIm;u@YpA&3bUJFd6C@tI?KB
zmv%6LNM8_#{&l#=!jBnt-ib-p;b|bDzrgY^W^lnF;HBD%aN|s}WXAK3`55eBgsl-f
zIS28X-$4%3R|9!c6b1j9x>}LGt3yuS7cCZ05?T8E&*CafIFE-qFx1T~jPwGNS(O>f
zy?qlRLsE1y{$f6#)u-PJgGwN&33~>`tKX!v7?#x3Yd8#SL9IxWXi3whifXbo10}EC
z>Br>0e4#$YT;r*NQkJ73I&pOw^E)pV)f~D<00raH#?;dA_F)g`mUKGstWLbjf)i>j
zH)!=c2l|gmglq-hnr~x-9zH`7N5^gb@t|C6CIY1{fp^OL!!CtYPrlX}SYtVsb&w8M
zsA!04YVKQTXa>)qCV5fJ1O#@8hE|*}))s0f*{@0V;nj?@5O>yRl*yPq0YB8}zGVy~
z;eKm>B_XU`Hf-#$U{BkidbJh<nRMA&TO4`OIf<odiG<b+P`NrehR=K-1bd96aID{W
z9ym$*J#~2`--}`1g|sa2C<*Vj#eo1eS`I2<pv?i9C&fvSn^4*@{z%Z<s4t%4nVgwu
zA{!iQ|3!U__<UUQqF;+o$EK@qGY6^az^B!m9^%VVYcRxR(Hi)bC-lN`Ny$+f3b5+e
zza{J0b>3;z*|~#UG8a?SLApH2Ld`Q$3ptvW03!~$_63>ut^Z@|gQz?GhOmJ4lonFd
z#Y-@K?o#kuI%3WHr&n?x$ff*F-YCL0|5{l%E$n?bR1#Do`Zg+knP>j+(*b=g`~{VY
zKY$7R-O5y)!ma7ZhTXNTcmCrfSNtSv*lRUFsKy=abvHj;PzesNzLFC5yuZTlW9Fg-
ztB>TjX0vSTZ~_gHHPc@seD8!KCIidM3l^hE`0@;LzwDqX)v?m2UPqc&U|swun$~OP
z+nwi;)DR7l5Z@QPS{K`%x_bdsh1)%T$-yB~ckPBc!D?wN1`D72!C_4FO(x;B%B;~O
zH-OBB`3_<0&ypG!p+`)<9$`-j9g=BT()@ns+4J9I6ig?<EM$5%pU?-clt62@l7FPz
z-F5NQnDG&;!xcM`m7*yaioUTOc+?5BBd4KeKxpr3`~)W|jC$YM=TlpxcO)-LMBs>O
z_<95Z(B)h`l?c9qCAYQbk2m?AR<BtGS7!#Wg4tuw_`wP1@}5zxIEBA{nb6c~qCj?_
z1Dy5T9@$LMX8tUiA-iTWOR?5!{>gOb#^A_}a|WLqIIkn6#JBDXpY5j~V@yF`=e8}e
zrvV-hi7s7qx!SzA0Bg;eo(k_fKP$lt)P&Kx_fD{C@&6Q}<S!qKwO8`O^S^|*C*LuD
zad}oP&C_@@<8XxMzL8)Dr6*h=L;+ZwKtD6rEP6V<nu~T^x$CBEdPQYhxodYfhZM@E
zKQZ$0!}w~ldBvbrW1;NO?r(nZMy*zz&EkvH+7DpOV4WK|#@2Gdh(*{6Yfs`~)@*b~
zOzVmhS>w<xp)LKrMsX>g$r%$Zg-I0h_-4qfA5JAWu9gvBc+oetUyr0$d8WOfb>-{C
z1e%@zV8qAUMyW^q1xF$8MJAtZ((NI1`AS#;5yt<PG8-KSE4MDCl|`$#&~lQi0JZU>
z|C}mxyvB0jMcdH`2T5aLc^_>L!^b$vn}%&!%tvtH!qr*bbJgCIorC;QT=Q2fACCL9
zDO}pR4w~F(KJ2|ADK-@gB`O&IliF|>A?MJs9xKMc02*uilp_naM^5?;DsH^YbZ|hg
z>WwDT3e1s+a9@2;Lc=2^wQsc)9=2`63#-6o&m=@5en0lIsf$OW>yz_d^Wyez?z#sV
z7i4?Y1}*I{r=b{pxpS*T0w`8V(1_nI@W}9M2ih*(mdsJMr1H7t4NxZdomUQgkp=)=
zi%ds36NUCA)rJ!M$d(h_V%9tfRyh2?IY<NClY_C+&ADVs*gaKB2xPY8l`*ZXyl<f+
zLe$jbqD1NMOx>}z@CWq|usMK?*g%>EtK3PgU148I6P5Gu5b{M^pXiL+W5TF3QGGrj
z#|oi(#^gHgC$6qc@qGgVidn@5KRA<Xv40ED2sx-9ij>}l;KFJ>GnpxuTz4}%%hdb<
zgkEbe_Vl7pkKD;>#7LTEuUJQS;iNxpo&9C|41mXhSMzpU1IP!pK&AZ&VvNTbtAn0H
zKtBd3y!_pFU7)X4^7>#k!cyje$aYd9USY~BuQNYmp&Vl5gJExT<n7uU{(Rsw^0d6*
z{S89!aV~P_z}ywjj+;0C#`^eYI?p<c{xsVb8aSJNcfm_$v5{0hF;e%=#-RY9A9>0A
z{^rp7Mso#!v{Y4p@AwKCI2K1viOY2#yCB+kggTYhf#gY?tK|+}JD)o-{W&Z%);^;B
zG;IXv(u@N`H_P>(x&*Pt+T}9dNPg>^MJ<+_H#ym_O&eSfZnr%*9~vp<_8|r+{;9ae
zH_bnqFz^03F^(lenfXFKYzsR##}Pg-StCP5ad`Jj?P}+yHDNXP?aUu-$?Ft=h#!>7
zu;kl}Q2?BgdiwZhDUhoi9~!tIiuiz6$VpEX)E%q7eeT6@oEa(g;+4t{t2b^Y;Skrd
zW$?#if?k#ErCNu0{w^g^*NF<;F*&?!IDr;{m?B7RHSjXZ#Oo~+xw%+?B6q|a=cb~n
z51HJ>L~Jf~ILddcR6@d<U%S*!@=M9-$TZZw4X;1;coexW*}|x2X`fDbU1<<%^+ye`
z0vN8lqmG!*G!{#v)$K$o1%MPrLhWQ}lh0OJ#6y#iEKEt(yK{rz;GO)2M&AXIh9QXe
zZsZ8T$Vv}(z_1uYp^$TD3Z^fEsnMQvBG)R%qxKDVk7Fx057!7MKUbSJ-}?4eCIq3H
z&a;uT&#}2d{yG!^8@R{IYZV_IvW?6&Yd5Mlm6eV6pzC|nkDJO)wl!ayfgXC!1Tik%
z^!c^+rS&L=xUs**k*Di|*p)nL!|2?v%4)i%v&#N>JiL{v5kUnTvh~GwQbQ^Y^ZCk+
zp3gjAjh2d;;@WwOTzu?NhKDk$RLaqtT|nxsFUz%15n3UM%-Zs#By1AEMPWY_gt)XY
z{c?RsEf(PI|JlKBKcVfPXzr;w>7ymPir5UAuRWx*F0C8WeC-TnzFW73pb{#7jF;l(
zFlfgG)H_r!1lbbZT&?`vYHbz=^3;Knw9}E-%|6#yzO}LfG3@5u8rCRjAy~@q7Xi)B
z6+D)7T1-r`olEQ6M-s@z-p|~uiLz<BqjP|%PSuI2h^3H<0m?vp`io?S)wuzKgtzZ`
z3E!`5C_=Lj+@XcUI1U-kT)A+B*HN(5)L^g_$k>i0(eFIP=$`(iq?=ryZ=sLXuh{`h
zY<%}+HZG%UQPVW+pq1O4&h#0(hcxfkHZaW6>-xw??Pw$Y8Lo@*Dl`3wpxznD0*`KH
zUx6y%K#Q^ma3u`NG_>MA1QDh6;AXGmu7~&?KjhZ44WgS1r|y^9SMW;{_$a&G8p!1j
z_hHB06NLsl2u?|?-;l@T(|FbUlgpMf*~YJfvotE^WzLk5!|pJW#>srlBDboR$%LxR
z#n!X7fpA`WxZY(Q%QGkO{h3}qd%-4vWHmjX1p$DR??tDAUJ)U%4{Z6$&+LrUDS)m0
zELZK^)Ct*t>CswhIFoXCq!`)bO{oGzEn`}cb+N^CDJ|Aw#~Hw4Kf+L+S-5o{fFJR#
z1JWBH5iY`$e$FD(99$w)-tv#Jtp^LH35BNlO=%BYiUE?1)-@rm-38O!$}COU`M6Q;
zNnMT1%c(gduV9l@w&fTz{|jg1i%l5}9H_cHt>n0?46WHn_6amG<H_7TYRvP6Jku7L
z+z&M-jqW&F$TO=%1<R<DrxB$e!d#BWB%}h?W#5rE6?vL_8{2JbaG9svAJPneLvs9J
zU53nQ6VD(+(COi%6Mf7y=s!{7m`V)VRFJbQz-l%eZUqqe4sJCs7mM{Y&WfAPuNiF!
zpleZ|kIRcJ<_}jJUA3JQiuk8&HCO?RLwpu&q#a423u<sESeCHN&vhlo-QUq5%uD&^
z1&39>xOf<6%JrpDrTO^uch-0I`Q~d$u(_&pa;cmmgsAg*fx{IgW0ERGPANoOh7)iB
zSNh}owGf}NrtJ-e#jjFo-Uf*m5;Zl~e1|j<rg2C!Q>Cg3^871QL6KIjeaQfDR_NhU
zEShIi-{w|KI;&h)lmAm7c4a)$CV{M&Hb(OUDHn+Vpb2Bo_*iU>7St+`hnp?C^!bjK
zu==#vf7RVH2WKbE@Qz!e`iqPY-Y9JHgZtIgd>LaKq(~=f%Z*cbZ_gD$1lS0(Jo>l$
z+b@F;Sn9$&_8hw35FE^%-+;xdS3vpQP~MtdMrQfGJbN@W2R-*Q33o9<1V*M|wTGBp
zZ+>0AlqvJa>SVSF!gShUWb5rof~<;%Umerd&4A@!S6ilzizTREy3cj1fVzRq4T8nD
z8OE}vLbc20Lu51xp8z^cN~O@0+fq%ahg6d0T>z;LT-%&=?U}1Saz(>RPK3pGFFrTf
z3L`!{E40$bPONMW-TH2A4%$E(P*Znh8eQqaY%gP*0ApO9Xo-1?OdSBwyd;_3^s>O=
zpO05#`L;Q#VhM|o8^OC%9Ag;Qpt*w;Tgl}x|0OTNQS;+UKj!(n;igu7f(?bVv~tLf
z(R<G=8hvj$fJro?1~)D8WXJV8pc-OwUMwM{ZS6OkfVRc3+r!!mXalbBQ&H3fZA^p8
zTI9XI^UOF#lxX{^YJ2GKghj{*N2E=F=HGjqH?=tm!7HJd-Ayr5NL$VByy-dhQleqV
z`F8F9b!{?3punVXl6?)phjj*{q<Ft(g|9{@;!FhOSk9jTY*0hTJRB!cEKIbV<RVsR
z6cGm$S<qhO84Po2Ek}215=$Iw_XjIyXx>~ue5u><s>4A&{yV5ia-&){c8p6f!Y)7?
zr~Fls5@u%uZL3Mud7q{8m1!j!pkFUTVM1Q-0T5-k&Z=Ly=tPqz$WuKrX*8-J(gU5q
z2XacEkAujXc|QEYBmnI_zvY8&{#<>*76RTyn_J;-jOCh}TFO*`Jth;W+s=1{BaZ{?
z^E=rQ7#+*1rTdl?V3*!F-tw<o;IFE(hFhS;m@eI)98=T$BDYaaj(}&n604@2hAu4x
zD1>lXk6tx%VBj^@gu0Dp!$>h63~nuX9yY)9zIIvERxH>1$IXW-RvbVWzXqgGh{1{o
zjNrKr$Y@H>#5{>nJjs+?tEw8bh(X4^JP9eJ?reuO15G++e?V@fAAsExM|f?Y^qr@d
zpxo45emOgi2pDvnv(@4a=0+23cVdx0W;y^AG8TZtesTnV6+5(){2kibsJg*^t;+W|
zHYasg4P2G${u<CxF-*rz@7G*U(Nbo42Q>}kK`C=Iw>M-h2>=0EZ^&}LKShr4%)MvW
z9m@lN!oGE7VO|SHV1ntc5ldXg^9Z-)vUOm-GATlw%a31mw41FA-^L7fQ2!wtX_Ya(
zruO&%_&J_T;{H=Kk+J6r)X_dN%v7(Lg|B-`>%@V`p16o>A{ddQAm`@8n|aQ~WQM$U
zbRW=#wdrP~r~V#jj}2lSKdhBAMCY&04?*%c@V=M5j?obJcV7i$rFo2EeB=C5U2M<h
zcOKl2Tg<@z=KC+!dh(=<HcY>LM{@u=4r+}gw40S{8g+P1`kjEx9s}Sd1XDs2H}F#L
z<n2?kElu5zCg1cgkH+HrqtxcDM^tz2$ho{OHLkWQdZ;r3gi#F@7a)h^;TGN!Mk71l
ztPpqr91s?K?tzH&cuq;S;~FhLC6?J27NV7BoxSDUVUsqq4JrXr(0kxkxHYJ^7cNin
zYJX-s+$tiI(;EoK-lMuT`Ph(8QBwVU0LmYQA~M){3T`62l{};c<*PMA2>!jzA|DFa
zfh&WaO0<a?t@@fYS5jaTTY*xrP)G-$D4XX8CFOgHd%vw{r^!eI`pTvV6x@I+2<0v-
zor(S+8VvIeyXVxZFa<|<S@uZzCYCCYGgw91|LVaidakMumJ8v$1g;keL9M(|5S;1~
zFQ@y|=zGE3@in%9%9~xdwnIOd=Jmx%+ugk33ay%sMCWCC|17@9E-b7Yk~y$K*6zj~
zrkbaG*KslOj(&q}YK~~tAs|9CS6r)q`-KRGS$OW($Sl~u0EQXyg8^C6IgkP<Z4GCn
zQiTF1kyHX+X_qRrVZ$PBAeO>4RS`(U1*gF_iwt6)mZ-7%+x0;vB-;!11yyfwUwwMo
ztewQFuR~W?9{<k)^yKmQ286gEuv*nM=G1sA+&a7wnu-UemhDSwz9TC5t?yA`hlD=c
z)pwioe2SKB%TL8Sw#&DtWV6n{**tGzZgHom6D7GzGQ&oqU<Nbkfr`fr<)tH}DM&-;
zP(+QbQupw+Hi9=aKgUGFzx%-gsKo#k)riH&@pVKBX1sWAqp&y8F1-|qIwJd@%37Sd
zNg~BGVsX|7k4d-Iuzp&w07n#BCO+eC#U>l3&a2E0O3rSmb9lkF9r~r1T_OIHZ79JA
zNag#EmJ_QPtd=e&siVRVwTBVVg@mp$ltf_AGpzol_~<Yqul~HGwijEXC4g#XdoG*B
zRgz>}`6<8bm@E)HbXE}d;s9t4NIs2|6V&K?1vCUI-HsFJSp%^uY$0i)Tg}D;F^}kR
zsd>1MjJ+r?vn9ShT#c-)XEq)t2V(SJ1!PuI?!dz<KO!fLdN!>tKI9LnaXSMQAD$$_
z@vxg%A#i**T2Ly+s%of)oaqt-?1vZmNr-={S(lhHbph2(u@L6Y*0GqN5kVyrxKZXY
zD&_>e%;YT5`!Zc{61Z<2cs)>%<rDw8^Vy4)JZl(caD2$*y7$H6baSn~Fq$RkkpQyI
zO2lOoi=hs7D3jXg!-mS8=|m(?fJ$vLcH)1yRk3a+`hh?81+D|v+i|T}aRZ9$079RA
zfR1V%Wq(OwIMLe!8~mf8Y4f;dS}!ThcH8tVkB{~hl`%1vKLVEPB9FK{-+rWD)e>F#
zp~GDweQm6N`5ge6`vzz-ETO@P^10knb1jU%l;V%bv*%~r0R-a&8fdG!?+)r+V~cgJ
z*qZ=G`=fx45oievU(I<9bX=cc*mIA2Fq}-c&jQFEZX=OVf!BiUirRQr!PUXD4MkZ-
zShekgw4q3A|A>P{MS3jiJTiB(oQkR(4X{-Aife%q@D5iAp2LKqBoehfp5U5m+3@rk
zGXDbrYwTlVOhU{Yh<FExe1qp+77k-&OsLMkR~Onz$sUheBhS=r`e?v3--`#|;^T+K
zC0vKX7*tNVSxc~~5K|6bil{Dk3MCPMs7&|lTOAKE!Z5pu&#IA3ceKyrOzKmN<^W3a
zbZ&r5cw#cF7SZQh%DLJlAKlDF0ZGf3zC+*0k<FaFDT0Dy!J@(8ybPdRp3F2gYasei
z*Yx6MfRqYQOh>M!&qn9XVmScF<%wYlJ>O&u_W|vVRMgLh2-W${Q-E+S#iiLqoeK?y
z+OUyd^FhObL-)2Rq84nY964oh=n(+mG+wAv9L8HUu<=<%p&gLpT4dSiPedE^oIjjj
zPc=>I55>mhO+veK$9UmXHix(B#ns??$l||BpYZ{x;7ilF#^MIe6v;25oqo?V0{Cuu
ztvCjm-c$9_gzmnu6IYLW9}-!U!ebNlp&FMnSa}v1&$fBPW@KuE*YWe!_kv87`L9CR
z#giV)fry&89JK^J;0fzF&Ph!PK@6awSh6>W-D_-^I-fR_a-S#3JzY6zJUq2xa3Xf|
zwOKBrawdsr^-T6)kZmL$5T9WAhG3$DY54^!emF}=J5wvY%G&dN3w}{@!lQ7iLR-HH
zAQ-mrir*(rJGOVq(Vz9nKxO$W5Q+F6pnXvs_-3!|XJ+EtUyXlIQEa|AWiB-%y(2L$
zg*b7c@4d8bIxZqioU--716$w7z2Gd`kRk&VZQ5HK50ngtl`W|>1%o+MZjs%3GPnkS
ztI@*AW!L6x($LU5_nc_^UbKJ-KATnrc^(93Wbpeau$SBA-7u!)=AB$?iPs?i_|;F-
zQpLNIA8;}r@H2IYdw}js>4L{DIw@#X<mxLr($hM*;p<jM*ph?xfPER(W^zDpHpO8#
z*lPaOUR4eNj2c#ZziEg#LGj4OcYNYLQ^>_s(!N^c;+DB|0pW8V<uQS#hmK_d`IQ0%
zGvaA`_N#Wy2kV+xFd(m;t_<BAa>9FhHU9k5D~)X1j652P0OHOn4Gq{hen5HoU!ik=
zX$=jmyMRbjZDkF|*L3`S7&yH0Yybs^9>SA(W^pg2eOnz@AQThOIj!%)w(wQA=QAut
zsBupui2=<BTPtuH&}SnMpRQPeReLx*ES-@Pe!4zF*imVKjURx4Gn=JRYDG!`*LaH(
zZ1&^;s_e<c5LHdH@6z8Ts0>Kpds&;C`bmI%h7zILfc`*W+v@D0$&HNbyOHAi+)qP;
zg`@WXIwylRqU1d}u$!y0C?He=zz#b#cTuWm-6Fj+1-9z0XimlVO(L2e0w=vY1}v^)
zDR@?5`X4DMidPM&shOM(E<HoM9u`fm-cD`-bS*n@REz_fMg#x;1lvb_YOKJnS!avj
zFOVFI&$qcc5v)%O7+~}^`c;jABRJab1g=Jco5{R;gZ!5N{t|a%#^`}s=&o8qPYshn
zqk9k&V|AiSL10Tuz<YZGA6`4@&>F+As{>PLY#SOv>XBll+J1J(>C32ZJ4aw<?P3dh
zSW+X?SQWTPhi<S^*LgvQrWf`}<pH^=8uS~x+6J;BW^a%4oxM-i?mz~D^~&(J#IBd(
z1gbD2Xc|?ld-MGUhX`B@K0$F5LKb;sMDYNE(8fLbzJ2)mJ}iJl-P>Qmc$)&JF<g>l
zj>XV53UKNVvhEFmjiYaC)yfLV9WmTWEwj~9g7@oinyo(G%Q-O%Nw0;b=HL1bGshH8
ze`WPKpPkc*;A2$dR{`{UsDNq^ZVes6y@!ToS;>7hHLjg5*sFp`-S^*M$=(y7te?Rj
zFZKUvGZ3=J?4_(J$5FC{fE&s+g$HTE8~vj415evkjJ&1w3+;5$Q-jofOzO|UKRi1Q
znA?VSA7M0fDZrkpiiJ>3?i2UMLJd#{rXF<JpRJDFR06(i$Ry~Y$nUC<-mu`E6KG!*
zc-m8<+t^)kbddR;lppN}9vanZdH?q-ya^xE$~mID-y+fi$AZy<F%lxzcht%^A6A}M
zb8#|jm^KsuTkSytAa^et45-=8%p<d#jcPQw?(V9Aj0zY}qGo29p9utKJ`w+gRMdLd
z0!dFoC=N9|`|L8aWKmbSDgBQUwtq8Dn#G#I#qFH^T$Y^&1lXgGi2a{FA`k)k?3%8C
zM?;TiPycXynAiI)Ht$0;BEtx$D8$&doaq8MKP+b2ge~9f{%Li=`gi}7DU=_pluR1!
z28k=$7TOrRIK2w+AE@2?*JmFQRrNQS+QySbTd)!84NioqukWO$zr4X&1eC@f)gxiY
z+5WL}@;AdJC2T;0pW)4Hmt(sipWbXf4a6$UIC%*Va!XU!9}TMv;BlW({rT(`|IQWU
zM)6<WNU}$<>wJG9^K9oSFM5om3CZNkd&_?C&}{^mMly&PO=1{y_I}avSw3@=L)sIr
z9jE`ecm4IHum<35fg!`-&HLNU<HPX(8Iu@)QOOTS&6v_rFHC7Be;=pQ`oM}b?(g-v
z+0Sxn(XN$0>H88Bze*_b52D$B&%jfW?E<)QzuIm6;b!2T@Z0q0|Fi1{Dz!hL_jW7f
zxdmg(F?4@iSja7caDhk6ZGRZHDtwL@*UZ(62s7(x`;j%3^5D3r?7BzbJv_|wGu3DK
zs0_otzV-REL;KuY)fbs(Xk<3??AGJ99`Upanf%!JdIV6>U8EI&cz_2SD|i6c?o6iJ
z@$WD751*H%{NOq>&2V_JC;i?Gbdc~}H2~-=PKFlty6_@#w?|tQa@eA!9E#k8&#O37
zez9lu2_Rl2ud79R%IzA}4czma0{#QNQpIEER!^oR#Ol|03y*d^{^`_qLzB}HU~9ez
z08!}i=JIqrMk1?a5jdE9H&Q>*{$sxQ*O%m>Pmn?bk-J<4i(rhCLilV?oVRdPtyH|s
z?VhWK9X<LNiNLEgONhOtrSGCHhN0MXq*Zs$yF6)B79X<&_0#TMD7Y^)>*TKP`dnx*
zp_>^o)%}ir9)%}})m#uK5chFsLf1-Hc-V;0Jd5B=oru-UQRz&Tsp~M5;>kZNv;1lE
z=6?jwEliwAae(!E%$oUor!!<!Din{uwW+F5x8DHE93K1q86G-eM&7gJa>StGkqn*5
zxYdC}d2Fe&5{9gDh|mVWXNn3hyIC}<V9$=KSpGMr8h=I1AGv@q4DRw1dv?Fv7w=8n
z>ynZF56#v;0wMqBmvkRsiOHi8?Ns3UnJ_O-$n{-W6uaJbB_paUCL$jKu1;9u!jszU
zAD!ZrblP8FRSLQ~s7i*jw(?0(HG_-1+I=2A_bd)@Fti-F#&nJOadroI{=;(o+fMx7
z|B4_BEYY7&qAi3|H&*mW*LR1hi)IQh$Ceq2a8|s5B@=*L=n?TLQeG)sMgvZCYD>O!
z=iTv!Ye8t<v|6IV%wg6^ooD^quIamj3XK<|-5PfPjxhAMo%C@fX8WPo`EkGap@>db
z#lJ8R=(PwCx{03aztE9TrEGe1{=tG#wf!0UQ%c$%#ZtKUdZAC1gudnW;91=1T+s>2
z&7Cr-E9-ROWdlS2PX=y|0PWy^(^2Z#D;NwcNjUD`Yv0p7wu~>i&@gvZCJ<C89rWmi
zf=rpc!~Eh6uM|Ct0Xni~7GHhQ%dTWd24%dSHlXy`>f66|u<_!#{zYStp}8=TQJcX3
zaz+35RQtoy{D4_Cdm_n^J$Pcriur#k>i&B&|LuqOKj5R86qWXX#@A}HzDook2;AtG
zm6TBnafNtywIPu)Jo?8R-_`PoHB$||6cRic8lmb>p}Qhg%?T=2a5<c1_Qh1(Ot|=M
zF_+=@W<7_(C=zuSN)Qn+x8|z;{$mG(s~=bkZucjl@wWGkd`4!%yX$Q)|91z5$_~&C
zT?GIf&wTH%LN4zvn%Q&YVmS~K+REO=-BGt@x$a9JVGOS`VbTJ_b`p9`XVDTeaJ~NI
zI7BrIpx`IJtyaV*I0QDK54hPBxly7A<$|s!bcHW{ToEKV7rb-t@9AUs23}gU3^#5G
z<-l0`&_n_={pX(Zzx+T)4hxu`V29ufiF!maWlOGiTCaGY7m)duKaG2Mde*{(>FV`I
z*w9_!G3uqCNvR-oJZ@8NIG2)pYwj$`3gv>VGh<t>>g8S?O9H?!-R0hX!+s9Ab#>_;
z^_%Jol>E07_di1xLH5bpG$ay-&>7zcIJ3(na?7Vw563-+tJ4CWqC_J_l2!cAP$&da
z;%y@(Cp;0(?ns$-6Yey##C1P30e)P5a(<s8IZ^97fLO}Sj=o%c{%qFng1PYVftnoX
zkz0JI<>9o1c=`XI^0@!i<HkC}n+c~mOZ4OaZ`u+5;~X5l6#mbX{NG0AKV$NL8xY{H
z{~442jLE-_z`uU;pLOz|G5OaK_}6d#vrhj1Jtps$5vwH=`LzUnFAlP9Pul+H4Llah
zA8-KC$$zlf;zH3irO9uyz*%|yw^Fb0GkChPw<2*De}79lI@r(ZXyHtUfGu_`2wtOX
z)1nXB3}^tNh6}5lS-ihD6DAT5eKZvN?;G@3ys!!^8@kzerCTcfUs+_Y8}OUhT9B{)
zR{w~d1pZ4C=i`$N;HQ;@{mv{<v!QW72Bj%SUgW`njDv0#h<wcd_lMNN36=hk4_FA`
zv9d`#{;D=n=$HS}0{A2MB2@4@vFOI9(Er;*RepK0F<H!_*Fp?jo=}m?_2gij1c9O!
zIS55uwG2@N$a=9TGXKuYdnW^{h%(5YEjO@god4f1_l|rG<-Oj}CFMHWUpHi7HQel`
zFOyvZ$v^?(9SqDAh~95l5|BRo$l+hOGfDoAJsX{}6Z-ee&|Hd~!9NwT+FY|~@Y!GQ
z_mLl_A4I4h<n_0#yVn93xT*%XD+k~g(3Ai0;6NC?dIuCbifOP^n_s|(Ay$h7xn=$}
z0q@9}QN*cVjr(yjM<l2Im1+7%(h9qCtVP7K{w;IXlmiA!4WCsXXu^^s027@5gqKVT
znCwaToFer=@}GX3p;-TePM=5ZUkGpVVl?0Q_>J;k?-YCdIG0}7CkTHVEYRa%?W}GL
z0N2kvzbCts&xE&L0*j^c%j4?7qIxlkh`s9m*CHYJucpFE{2>cBSIwkn68_gay~zaT
zFOpTX<!_ydj~u{YY3eq4J-Q@5!}`$t1@@O06)?YQxS>UQ=mFwzbL67@f45bMO@hzC
zNii2rOX?bs{p&_7-2FIz#}d8xe=U7rbb-MFMI^HV34bgsY_YoXlZ+U^?Hrg6#YvDz
z?ElM!{{a`!hM+Or1v9U1sOwd))d2+zVOVv2=M3)MV#m((dbT$>h`_5dahiMqW+Vy)
zSgLF722;SGz5xR3%wlu^nAkt2q*HD=pJ*U#Em}Y?AJS}Et8vrIa5LvPkj@G~?25f_
zkLD5$M_4`gj1B;+V4P*wjIeLr{HC~nOrOcPdYdbS{{&8<W^O56r9O6QSd7pj%~YB1
z>~L&Wu@&tq#_x40tcDE?j%t_YFV?jJM>=~IDf{^n*BN)MhaJY%H3jfo&%&cgYP9gr
z9Hg+YwfqP`E??w+c+S-ddvVB}7MPky+E?bcvi3XQ3nI!|XDQ~K&1ihCHj*PfXo0n^
zs$(9fSskLT<C4hzaEm4ph9epA2$1o*+Q46(-O7A6FE}jV&Yp1QJ+14R%e~#1u;F?(
zzXa(ln#BCp#g(+33e5X9b?@yBHuo}6u93jkqhw+6{7$EP&2$V@{K9Nqe3%6<KLolR
z2q}a$dtO}YX5wxs&9Z#7Y$gT5=M)Ag2?4{o^~^sIQ&3~UO^nCBzpo%Xo;n7bucY5+
zU~0&)<K{5DtaT|)nJM0VmKsexq633ZNADU?+zD-DOs=vWZ-u<K-=<EU?^*P8c}8Zn
z@PVwrVJjs!=J{5pXNxJG&*d>vh4Fw%h3Cacrny_r5pufbwUzy980{?P?PY@XDj@w2
zj%ju&Z8~{je<Xr5UjT7~avYB<H14f^bQ!y9l;8ArLr3}e;?J4W>SJp~kn%gR<8Ig`
z^_gmEOV+<vV7Hz8A$XpUxG!#At(-sTzM6x^f=8R-6g~rp4Rz8c4c3@L-&P!VTyz0u
z8gXxVhVF}hyepF1jb5Elmd9spIn9bZv-*5T-Ni-ae+%!Rt0!?|zt6!Hs`PF687;AI
z4p5+snK5y<y|o)hQi3F95g0ka`tTwVjDT(DC*^^T*KX(fccc9^r#X7PTV%!a9GTAT
zf<&AiKpyhaq9=J35L}Y+-i7!+WXNk8>)lh^O{H#y0^G!(iAYW@bYizjjv_P*j}@0e
zbF|LaJ;aRex99U^IUXf|i@F2-$wyF(UxO~f)07Uk_n2Mb&+(IWyiy}QwlZov0sGy8
zEW8jhy}{Rd%iQL~fKN-zYDuj=m!bPR*liKv!(HE-efgi&?%u~+`o8&+o2$JNr2`;)
z@^E%3n%zb6`50nOk#uhtLIs*w=;7|t64Yyg_Cs&*{U`OyjcNV7!Ai$1E<GvHo?T}@
z9!}EhO$5O3yee7i?I`trfl8rMMDs|-IuNJMrl#kw^*pW+jsf|MM%v-k8QH0NeVy|+
z_P&rd!`8cVM`nr%f9sMy@%dWcRgV^O%Ce^R%7=2Rrd9ObH8fU1+V&kv7VZbipLL38
zil;wvR=+-vU|w4(*k{VC)a{+}5GeAPWTA>7c`@qYXW(Rm&3!uBAs%CMmlvYq^kf0H
ziTf$xl>Xk#apJsrw<i4U3pk-~zC|lF7C-eCoK3&|u*wz*uGmbm??A0t!5q|xrY2yw
z%j2lpHoPfmz1p<=S*NLcGh<!wu`jnPT~mg*z~gM2a%ui3`X$THK&SgsTyOk*T7TI;
z_h(rq?@b=yWD3cp_=1jDU7OS>wlJUloz4c`tuYwzVNqt%<5l3V_NoA$<@pmB<;}h6
zRwQ&}R6jObDOdy%^5l)lq@j6DQl-OZ1QRZ3DWkk53wFodX=M!=Cg~DCiXYDUex-g8
zM(dcBCuxuwVYj(f`!)MvaI{%nvflV>0j9sX@@6=$La3bHML*$sySl!oglsxLjU@@@
zFOPR#RRYZ3t2aqiQ92mFT(ojvl)rt(tToYnG_z*e_1S!F-)K*zNJEa@a!jk6S?|rr
zj@aM@{~`B^!_mBLtLCQx*ZOpWXDE4@PoDPEDx@>hW>Rw5^^RA$ZcUgn4HK_dHoc(D
zc^7Zou!Ig`mdj+<mJf%*1tg{*qVI1dQ;j*k+9cudGF%q;`Kd$s;50R%bD*q=AVn|^
z-p6PyY=QQ<dDY}7!*ixH(@MQb^Um`j!MC-UB%R$+hdnqSuk`YF7i^pE@qT`DRM1{J
zW+?4f9l+la&k0c%*f1a6P3*~M-U$I;z1h7l;y5U$P5H9rR1m1=9?l@By?geUZVdmC
zZfGhji(8rpROHe`1hS8O)?-D7@$4)VS#4z%I83CXK7Ri;nb}insp<hcM+)lUf}op1
zcw+hV_Vayks${Kcm!&XBztLmJ;kD;5yFmC23eLOp#^$4dO2Z?#Tw(=~ZdqknPK!hp
zc=Z5Pb<Z;A1TStFQgc_iK;h3s^T!d+bpP(s!XCR9(VakshE%UO#S6mva1s0~E~l+X
zmMhzO8XQ4qOUT!SD~s89tkc1Mh4LY1`d3`S9xiLskxq+GH@s!v2e*A?gM-^t!>;~s
zJF(ipX~Iqu8*#$$)TAf+3#B~IMs=O^=C&y*{u(Xs&85ArhF@4e#3i{<{X*{s1(!Ao
zyR5ZhNsy(OL?}b7foQZn#jO335Vjjn1m<l@^R-Lg_qK6zn(u<P7&b^7NW9Q{IL~k{
zNcgar8SgE|PlYd>?$LMGfuBxsclEtz1&1dymIRPOL8VPo$Jc!XqhLUYYQbGnqQ|=l
z11RZAd^+A1ee(7-$y^tINA2NEyF+(8q0H=7PLtLQM2_><V*jF&o|6@1$RER*P3<5^
z(w@T{V=bRRh`AW645lQL%<bplX#F?R=N1rKEB=Wnw3SsWj%o&Yr<Rxx%{$ROdqy7v
zV60WV<E=*PS@p`Lr!I<|ej?re)at5#7e@)3ApXkyTzz2IHEPZkL={{qmk6`J^IQR0
zmPzHS!P?yF{Gm&KhYA>NR;x@>wXEpmWNyrFD&pyyV}Rehm3b3)lKPeTG>iSRKT^0D
z2G2wr?A8me?`gJu6p}fjf+_q4Nk$)F2i~;_mzM|X8!Z={vhI0(83FSApUV$t7y55z
z1r5nYG#O8CKgP@MaSysS8qV?#477=y!{IY$GA1!;e;`ZagKqItMf0D~@m*ixXFbn-
zi&+tquqd^4$UE!0>P!_Y^=En}^=-K6tsJ@b`U(dqvl^WpNEh%GtK?T0EL7@0R>D{>
z@?L~D)DRV_SJZl*@8Nm+LKvTa%*TG3MAN?W^l2Y1_u8qF;qA=!IeNJ$teW&_hx7Cj
zo#|zu5I-lUl@cFqGWU3@T^9VCU}2Vi(5p;lAXkvY78$7=C~7^gK~%xu+dJ|imHC80
zhE-2XCy9u|Z#I{gSg2Fc;5`|snb0*SsW#gaTmz&-?_A-ulx^WmE-_jFv8L~)fv#GM
zjLgH%`&05(_rE&Y+XuETv0fq7I_qxx+#GDt@j0gn0jk{WW-7|Jw@?KJh6zp*pOBZI
zqVSD}c@$cZp00erO5TOx|IzgnSYKb9)7=&B2)yI9oCDQk$IDg(QJ!(a$VPUaOdx0Z
zTvzC{*OfzK2cZs%dUBtXE2lq3ES2bIwXL2Elvck6I1C=I?cUqo5OgaWvo?q~-7L*3
z*&1ZgEt7D;X+^HRyo@?5^>m6#;e0vcXw5%+K|~a@b*+-$rzQqcdDB&;S=Ny3H`~(-
z4>w15O*NbC7&0``A3|D%hIiMIKeYRp${F+|@~+AH`}i1?z4`cJw21S^aLRyug2`E)
zP5Xw*f}*vSGfr)CtIT;+g=pBpD0Sk#D0pi3F?&V;GJGI6&zgiEoE<CNqg5cG&2)3f
zxLYC^?NpL`e*`MuUn|KGD>zk534SfEa`>!ks_gZv=Z4pnj*9$zg95;h_hh+=`ylOP
zrtr8A3~g-0D_h`E4~uO3+OBCa5Z0pLAVU{j_QzyCe1G!%{$c|^M*@`MO7J{}IjANW
zs`g7U$2jfnDxeGH*h%deI}CAtbJ$_|j(i;XkBif|bmmo5yfC=81K3M1R6lbU<)yHB
zhIJ6YlA7>2n^T|PR!S}rzhxOp1KYcu^`M+aj0zdPix%cbtgd6bOr}$em(igONmY*%
z?nhq#(&RB7wIQA?FF?{Xgi<_OhF<4e$X#_h>%vR0r25^b(K~%7gATDT#|;VCrFe-(
zmmHwhupo@@PrP^QP+r0}6@%J}jba4kBY`}H*uFE4A@y`Z5>A3hQra~DvG$m+)Kspe
zVRu*>;|d!DMkl)xrgB#}JH&$gD&9uhcQqex`99NfhkL`V?kYQ?94__-v06i7eF6aa
z)Xp@zmKCb8wIsfpV5_J0cY680VM5bz?-#ub_)Xg@<kTS!_eqv)(YZdn=K1z3Mu}s?
zE^7<LsES!GS%)6>Y>pn(uQEJ<dxbICMq#e>jDo+H*7qIjRe)mwUW;EmCL&Te&kT0f
z1;5aGjwe*M1>{JyxD!2gtqe641~*i*IgVU6m)f=7RJ<-WiF55&7uyXm`;T_hyXWow
z1nJFfF31?Hr?LGm6u*x))#mhtb93R{x54&2B2TLB)tG%3zOF;HKA{Xm%Vl!U%kQdR
zwKI-xB<oYl*CZA30r!EfZcGUN5#{;@Hr~~bJ5@j@Aq$Nz@|8Ab)s=khQ@2{%2bCu1
zLE06f%-0Wdwh(WL!%VoYpOR#`HWZ_;A(qS;$7`iz-{NRbociet=C)erj=yb)-l^Ni
zaS$C<%9Q?JWW8lnm21>4EG|kKgHDm|?h+&f3F+>VlI|{P5Lke8cgLc;ySux4(cpR5
zd%y2@#&>?|FCFmAdtNy)(mYz0_1KEvrfTfC+svr#BC?&BBCfhVpzeogrEo$#!+p{w
zR+~oO^rlgn&=6T$MnfPay9cbQS68YRS7%<~NfnxiJmO3VO?SB(B_m6i8#aSD_eEvT
zc{;zX1^c{}wRA_yZywOf4f}KAHLW}l@<P)*SIAdMwL4#*wcHmTX7^4xaW>I&G~GlH
z=(aiep2DpkTDO3uvUFP$rp@Tjt$RlgF6$Xk?YA(+)%@Oylhki(-B@#j)QRdIsTFqk
z_O&wR*1L0dBb`<}20g)2w!8;`iymWFeKyth!fa!ASuhwllG}H>`gpzhWOa<+c;ww3
zD~Y~fGB#hLeaLXPSV8u8*=#O7F<-l+mN0x9_FxtN@{>VYxnp_k2;8pDr<dSTg+Z^%
zg;S9A811dctlr=k#?#Z5zcSC)B)_!m$GbC!=68cf=|O8R%{ClA<XyTTL8l0<WOQHr
z?stK_ghC!aB>3@!&${E?C%L|VUkHspxZd6zR3GX1Am&S4OO6hl!Nq03X+wEK`pyxu
zr3c&Bd?pbp{G3H!FCP#oI8U)%XkJz?tQ&PWJ*!=@@C2DMb4$wSBZxy-5M9`&+S0SL
zoq(*K#A?e}Vl0gO$^cU`NbM-BpHt4L#f<h8iu7{G&mRDQuI66Yh1R?6C-w!->#$;m
z<}0MS(suyhBY8oXmfl%JIJr7GCmGi7s6kIWN1Ka$f15(PfNmj@HTpw8bk1Lq9M-m5
zYW*Qm;SOYESGW|?1k~2Sr|)e`7jHtHA?f#|FLq^e{J#{<triPS<92e0`%>zG^@y&5
z>j?%CA5^q$!jEErV+s`KfMt0nhIe?kcafN>Y?JwoA*+vOjLNq!PnV3UMXh1|t@nd1
zU<UK~ji7E}1VRh!)>Y9%(Zx*#x)jZ5uWeuJlK#;~x+ffagE7C1(Z9{py(?$Wymu7d
zZMr8>e&`kUhz_t#UPa}O%QWXlRkG?0&3w)8HlPBH6Rqp@vpP;Ow?HX;_rUbv#Xi+r
zOYA3mv|yaE!dg-y!Z?j2KMoEF<L|}g?EJC(4@(OAN4M*)Z|kk`s195?szrjH8)@bk
z!Dy4;AVH41Ykn8Xlna(M5FIbVOV2Dpl)!gm*4p;%-TGeUKg}m|!@+##sj-+)d#i`@
z>V2zOQU*1(*V}L+=zIQ{0=0&I=z@<V49jSI#2bGrdI>2V-Jx-}riT<2E|)>yQ=>RT
zFJ+tj7Q^vtF_em?s!xC5mCR8V6Yf>NPy}4NM|R!lf}V^53zcdXl`Ds%Ud>$v)xnQw
z)9gQzie(hE%B+J>@aPYbyXu=&rYcP`p&~f-YF?wF*BTtwlr&39^U&XhD5krkHOeSe
z_A`k2@$2neRJz{xpQOBsd{<25Y<5)pR#v^@Bi_f#;O*Pjt7rw4XhSwt`#0xqknY*f
zYY~E{2Jh|8pLf+g!X^Nq9Yp9_H}^bGsUHKyzp;Ivv1^$(-P^e)kf386&YQv5+<pOu
zUh`TbN*lgG3gA95+98*2Moa{4I^@VO(qC6xbE-DjUQutl>>3_S&9h>?sn$cZatOM!
z+W(nse(^((Wz@bIUp2*3o!Z<&^Vc{T<)Bdm=1m^?p<{g+s$<FdXxi2syP;|II*qR8
zqQ&Mk_tZDwqYQUweJZipowZbhdl#l8XRv)RXO3?uR8;CG4KZBDGuzAFXn^jK^fFCX
zw0slIJ;TSJJq>;mePG{#>N?HmsDyNeet4JW-t^7AZXYyyZug`<6@abf91Q)dU$J>u
z)^%uI9KUURy-K4P!p$&Ime(SlhuJjhI-Mfl<biTilv2_EjI|L*-Ek#(m23<Y?{aX8
ztI<BLXk~;@IZ0VeT(W{aw=kt-ebW!zfc~IrLnYX0jy}*P`j*<1fk~Q@n0v#ML6Ly#
zG*~{4J~S!JdZ|YsY`_}}YKS|?fdu_Tp<=OoA8kSAc=|l=32w={=~eU+Ns-Ogl2EqB
zsMS_+8IHAl;oTnoC5lYweUN5Q?!fd5i>C;nDtOf9I5yW_Y-~NXZ#cOHuZ%2qBlx=<
zW|vJFiHk<`LU9i~PES*1=Uv?HkTNX~WgI7{CwoG9i|Zz3csnB$co{W%Y!kX8zv6>R
zLyK{}JYfjKz$N%!bG&XI?iVE2^=@{Otg3jC_PP{H)mH>`3iR3KTdhQTg#vkk#WsA}
zJ#u~vcNdiWvyiLIio7B=bs=q^LBYw!Vav7_=nRCji(g!!iQ4%))B0)cTojJ3A}Htj
z@pBWfr}T<Q5n&<_6X36zO;ty9mg9zG!#o8^!qK+8;n$6FYtKaJ78%4o9KRM=al85z
zZ0n-QJF(F2Fli$5mi|voO?Vwtm`W=n^l-t^6g(=VoHicGR&$^@#Q7?s9m748X@vs>
zPpX@MTGnXn{qYTvafG0NS3T)z-(fbj!B(66$JLTMf=e82BhtD8Ci82>3geQ=NxBh!
zF1w1(Huvd+pe{c<gTbwjs5~WFyf<%|gqT4<k@?OD271}>U$@JL(oS%wl{d(UB5Vap
zZmTFzL7><eF-)J8Za_!g^9kWy+>YR=AX&VMBWtz9j#J*rApM(cfOLKlCKR-OyL%QQ
z8aD8Sy<th9+QcUEIMQQwxQ89DdU)FSQ&a|t`HW?1Z*8Yh+u@%$V~M}G8xt1<y~Zcf
zOoIH-U7eIwRu2Ac7M~Rr6wjc(83i-G>y5w+k(*(0cTV>jLWGB>A6D;Kc{lrsRzr_z
zv%K@dP##5Kv|^yZW3jZ>rg~tsto8Zh!zWiSx_QsIhP(v|1^5H?z6KG5NE_)W#a$8w
z2CW7mIuEMRn8cP(<zEe~8Xc`E!`-D5Cx>G&Q<uv|Nz5#cX3$*#BY9WfxZfr21X}ey
z19p7#kSE*y+s<MqrU%$4vfZI1QWB{o(&%Sz7y3v^lEpV$znemQsGKPjVW46u_ey+}
zTaFf9X$G%$`tyk20bp4<e$bNTm>C{(rqpwx1)ZY*XrV@`ZEXr=ED3tDI6dP~tXeCB
zcbB+7RbjPO0J$T!oHxW}A>0`=X~##V$Rhi+$nXc+YGp_e31i8^Qz&Xg(Ji)mz0WQu
z(;;W$DYey+q{e)>D13W(+A13N10uzrQ0nCuEw=rGxjCod^iQ1ZLLfmD>W`@wjg;RS
z)j`V**U>$##*4pT$4E0RAD3B5Sw%itHn><;R>InAj(yW>8==?zjDj*T4NJz4+7gr-
zuEA>$KHwu@r&Ht5DORml`~qjSNw^ePF;q!ze*94Hg4zAB*2uG^<7diSQ3C?iZqs6g
zc1!Ipj=#+OFZ~B>)6g9(DDKtCK_g6K{iO-d?=R$T6dHp5(Mg1iZ+Btf9nZC>C=#;s
z5Bp-6)4N&9nM^<ba_SbGY=>L;lS^N`ZNLt4eT=YbA~k*mYl6fy62Kbw@k_{@b(js#
zmPP<Ay+Nq}IP2|)pVnM@ZJ$tDqa@s-q?^M`vMf7)kU&<o+Z~SHyd$BMA)<ddI3cbK
zZEBY&N!b1=$|<K1oc1s}`Q52F0!ly7#MIk-WfD|?Z9|N6r_$6|n6)(hRPo5yleE+%
z8(5&gT&mnS!+*fsK_FNun>{YW&|ee~&OZsY+A*Z$^c>I&r(TT2;}_K>N8(Q(#y8!M
zQCuz?5uWM9(eJ%pR*Y3`GE5Z_D3`_IJ;xi{V6hvr8sDe~hgG-P^cot5IA3}6UzscR
zjKN<WKY4Fg?;|x5D({v*-NuyYcjdRI#!&xZ`$0{kQkZ(WKtE$h5f*%~S)2<)59R0C
zzr6uqWmO0ya^2G*l`r<lnp8gVW1>K?MhmOfu7K5$qWnP^>$3K61U|oGzBge9nR#l(
zA?`HCTyQaAU+m2d;YY%;{qwmXLRb`Y`CXDaDDC!}ctJf>)Abbhy>w=<z^*gz-vj17
z^rj21zcm!Fk$t;#@?{SWT9~ENqw7RYDiQMx1#Xl@oNZ9O0|)4%^r9G`{xx&{qcghC
zyk&wjqB`6GnriP_YRqS_A>dHzMP}z;!V<7UACoy;O8Kj%4k_~a*0-@(8x`v|uN%K4
zDHBfXttnGyy=4~lpG8^ro^k(G`isM)Bf)H%na`{(Uk?2r5I}t69TbXS!eGn3FrCKi
zwQdmvQ)tDMo~Q6oG)sqFwJWU<RJtgNV){)uPqNB2V%}r3SNfevvit&+n+7<Oy#fZY
z9pGqC{S8DRIxc)QIa%Pb?2YAjbtawh833I%hf0np`t6{>H3YHkcPLZ*72WAxWh+_)
ztSpRx6!b#$o;uVi<3@eDSl-}i)n!O}CGx$gk?2foy>SWzf96?h++Fx8K(&!W>-DPM
zr8u#A)sMx(!L6CoMl=nE2H(kZxp>f!aS)Jz{aCifp&NH}I&z2`M(NY>AJ^Bxz%9V2
z^)gcldc0@o{A5e|tt?B7)G#~xI$a-1wuqs0f@-*Czk!PTfzI4@kujD9IY;63;C3B<
z>()gxm&b6ZNk^Y@1F3gY{U~u?Zo+%`0KCtYPc%=M{a~0Am`#kn!29$jPwSe<Y4-c;
zQ-%(lu>*L;Iz~RCh?*uQk?}ojCfv#|hk<BhuW&><snp@9ps{-XA(N0D(FxH9(0y~A
z?CW|VlK3qpocy*r@c<G7DwOn267c{P9j`A#3AjnGQY_po021TD&C=oYXE4g|ean``
z=0zt9QiQ6`>QF%HSi%M>41QiBriDceu%#>AsAy;zf4AAW4m`BRx^dXI6c;(2%dnH$
z*KCVGnNw@I!qgDYKct5aKBAcFy$X&Cy~+uMnokQ{i9qob?QrDC7jlc-^pc9{d>%(q
zE5<xco>K1xw%BkC^n|_#xSg7P{GnJ@gvJlCTK%Q6;fw&$dj%qs_%P%%B8Hk2`a|hQ
z!DOn2mPuUSDF&xBaOgJ?_pmF)N%4J&hGTh5!o5!Nug}*g3NNGU7+Xr$WacWM)<pP`
z0;pjoN3fcvpGpYe>A~vxJp88`EN>MkcTe(gucA{M<^?Y)PI3lD<)_;+c1~jf+0R7@
zD~-iR1ysxe!VJMh@oybk<?@9B;|fQlRoeS^dnzOeu7Aa6O29JoQ+7?Yz)o8ykm!m#
z+ilR~Z4W|#VwN>Od(Fj>Qd!dw)+V4#)SHK)Z+vGy3E2JU4-7C5J_oV|@4#<A7Ci=>
z%S3p}cs{Jm=6*}{`@{n9`C@!`Q&|U0^pN^bWmt|dh7Bw93?Oy$-@+bJU=~!<IN>;b
z?Gx}trby!h0kn!|x7NX&b7_KHU+AID8`Bo5;6Qwd+duGL_`b#PfxVBCPrdWOI!Ze9
zjouAM={C+o7u4A6wT-7RXL?RcZ)EIW?wO(!_l;wNIxWH-NK}|~v}sxw{V2eFMT)}{
zvRWmy8PaLh0>dIB&nK+3>8kO3Vspqd$8%%}-9RYxjXi$@w5peT$gRkr_<F4J8<_(Y
z#M7a5m0L5pc;(e>V8N`7M{Xd%(5K(z{bM&6Re!zLmC0J<n-)(V*JB<!&!D2|S+mK;
zN8Cn6V_dxliuzTg&|29n8WvxP+EXhhmdJVz>_5l|M5>ByMN}tR9qP6U^lG8fFX^xe
z4G;=Dr8HjLD5!)iYsTlhXcj1I^h|_@%DAFhwqm3ElAS1}p&Co0)~eQecNQlhu3lg-
zwEYIbgdRNTSC}Mh6R=BUdzOI)@9cHfN$2EG;s?WNoppfw1HTN09_;ek?!yo+S+g4&
zhKiO;2@n0?E7mD_4pT%Z)0)o;n#hmIPUZ=HZ~RfFvhI2+RMT_b1U9|gEcf%2=Ziz4
zL1c+@_f_RhW9FPD?VUbsSiHJL!JUN73x_@3p{Bk+?0Bb6p$~U(lQ`JLYXzdz{5Jn_
zyaq($S3b<iL2gfKGp_=k@w+`dZ`a)hLpw;pyNQ_+#z8qV7E=K;#fl#uTMm7h(z|c|
zKAgIFASg!t)w&&4_hY<wTVJ4=wuT@CbUdC+J=jUTF8FU`DaL<FOQU(6$bfE8K<vCH
zJ{HGlicE@5MyJst#|ORIyyF`ih*=;uLV2r9G=o6(jyWB5k|8KAh`9=1`$!2<Jy9gb
zZZR;fqzMIP4AN2A+F;?gEBM?+rhhSI!$RACU3At=;!h3Iv_`9=O?>;rJ-N96uz6jQ
zGnH<$+8%yvuKXLn$ZU{t$2b*=1g;Jizqn3b#Bke0*Ry~&#^M(M)wZNXG*w)ui*yej
zo{Iz36f@{mJyB1atKhryT)q@jFA`H*veb5=*Ylz;W6jRYx;T@~{?<D?gjL$@$Ve#E
z^$uv2aX6N}*;`g?vUcIa1&;d)0LA0<=pNk!sirqa^OpOjj)M&~3bT9$OwGeiZj#bx
zPty}xA7V#H`@A{S2$kN$SDPxRl(~0|TlooI#Uf(~P@!%vCG6V(Pp&)|8!uIJoZ~ZR
zCZy4sqUpT>a3JNa<z$6B`DYxp4vWL+(a{oN9y*_3>+kVCu}dK)`b?@fu_0VI{!gb~
zI(^f_(#@3@R+09eq$};m>g)%>ZU?=}Hs09MI9a3#MOY+gt?h*1ys;QMEdVm;3cUrz
z0Bc(39$PeVS^D99GrV=@Kx#p3QuE3pEs@w5Q=qcmpPG)|v>DFAvcmX$;J&7uH_zw4
zBhyv75{r$e9%zxWb&lg5N@!Y+X`VOzaX{C5%E?)IAw^li!*DXk>N>q9uJE58Fd$x5
z<-5s#C`eM7b+z0yLtnckop+rtK5hT8J7V26Iy2W^FeA$I1j+7kQPf_(2s|9mC3M}(
zxJy6><X6}E@3V)ka3560HnsbRKUYFOma-?3qB)QqD2Gw+tu9oJ@*BB)z>oM8Jza1Q
zi~jU{L27nO8NW5%(UZ3C%2_PUYIUU;JS=s3-A}pLm7ekBj%rGpR;GGw+9KJSFB|fH
zes!8T%xvjE$q`u2KFeq{IERb$1a;C%uL&WNDeSpoPU$t|wKF~8Z4FvLe*PuoZHYbA
z8>l9>x))lS<*&V9K+$F17e)89d^NETUk!X7nq#+&Q2z8-Y}GQFw<DGS=H69u5!drX
z?(cgad?mSb5n2ZbP6ikAAL6wv`z3;S?Wyxyz3!<;)d2p=;_=Kw2c&+5JMJ_E+G3e|
zsO!(x_F#H)tw}3}q3^*PV@UUqgW;giaX+u;n)%b@ed(IO=>=A8u?;57nT<AHK6PRU
zTOqM%wlWa_IlVZJv{U}^GYOc#N$?9(t^6Pbp}-r$b<QU-8A<&(Bk&tyK?oL1U~&vJ
zSo=;a`ct8HUt4)FmRlBum}O+Vz}mp2cfrb~|GVCWzuLrM6i=ykk*`RBeM%^T`p}~{
zuS1>as#B{+_dS$x5G~A#=~o1Z2Lo|$EsQ{*-7zJC%kJkgAT$KL1NJyYBE5d{CbHN<
zL}2fv(<RAx4UP$DXZ1~LfAxM<)feGwv@G5BdvF{S`5b3V-z@Cp25N(dKn2=*x88GT
z9lbIzWvA=Bl%at9ki;^02guMdQsSiiVCn9O0-81aj^7rHO}EKmzQ|6o6({mEUqR|I
zq+q4?3mU{d64^wqMZKjk7$*15J*Lhx6*!#bnS8BwWx5qWV$YW^iQu6xXVaG&+>ApK
zUM=~$3t@*dwiAQ65VZ~m&6ZYMbN{#%^+BselDjg9LhczvRK>zuIaU;!Uz#irJl^j-
zZH!p(R@NE0FdSUd58F19{@eU9Qi9dtz}ZYRj2wX|xqdD~REg+k6vxmh+AM375D&(`
zraPWkipwaZ*Ylsy%hZhM*B{C%K_T&gN+osMfa_<mSo@`v3Wf|8r$=ZU6wtELLP3Lm
z2#N)W!9cV4Z)#|(-#=cQed7eb)8c_v3kuUc!6%X?Vkp-F54qmn>&Swr!;I>V-(&Zc
zJ@-hkxlQ4ZloMr03h=pa&&18&YCWJ08+pCC^A;C#HdcgriZQ0Yq;S!Dql9u*bhZ-c
z1lwe|-!8jT449cr<ywPN2%e&dntA4XB=^L9k_5^lwhNVX05K=vqB74&B5)N153U#@
z1_yi>CXPj4B$m6`0>f4&3IRYV-@LSG1Fw;bx!fBj(C~A@_1v&GmIG~AQMoj0*o;_s
z!X8s5n~EBXN>d`Ud1cA2!f6)d?w82ZgKv(k{GdrEXl>0W3rTuc7Y~7&jA@HJEP_Tm
z@y+Nta-T^22tVPybR1D7o*^Aw;$cn|GO#v~Q>;^q!&O_}pzo1}A7YrG@$CC)=`CC_
zRr<HY@?Yd17JO5KIaL5;6$uK;aD$6Fq@4rFcRk;*^U{>RreH-1T$d;Oz!iiKaE6DF
z`YkDxRb++D7Hg3j504n2Yf;*#(li0mWF`d4E9xD_Y;eFAM7r7W#ja~22&-`GW9n)K
zH9~LEWHs?d1;}FoP(H{;4|p{BT~y~;<7}&*iG&}RIFbc-Nj1QVEAdv0I;62M^vVXE
zAt>jtd&&50g?hYGZR~Nh%JHke8i+<PD5UY|dodLWwv=(&X~YSB1^G-V4)WHpq<5XR
z#<4TN^4Bmh-kdBd;XM_(-MtLg(uR$N>|V5<us?JobRM-Sa8D3l4s>Wx3r(UGmG#ay
z;&@-5r`TY09*QjekA=3W(FZnVhKFCmOmvgK#xb|;OZ8{T5Lz-T-Gkgg4yOe)56M5f
zFu$Y}@=A?A6g!gU&i@O31(L3;iok+ak@5|=9Ct1+%9XsJLB|>3xfuNDgV46Z56|TZ
zk;fa$6u|%am&vB%oN^)U)rDO1j#jNmDice<>YQ_eC+dOO@}%Ga?bLXJsL!h>9A!kM
zcDnd|aB)s6D}^Yesz-3W1nU@~G+<VXp9-XY;AT$~d|Cw<gRo?YJC6s-TLTP@khaKE
z0l=Gz8BfpS)D*g3E*&p!L)1P9qCdd5dmA9okIFJ%S24NORo=wAjeDe0<dVm8wR`|y
zE%D1UPo)jET8|8VVA9wNzLr$AT`d6ZxPeERlJjBVWz(!@a`j_^Hn^5aFaLvU1^*Y<
zHor*_%R6tWQ*-$&kCszRq<a)-)T!vLN0l0+OS7nZ%l%W%B9S#a(UAHlQ<5s2b6fx=
z{RdwZ%x@rd6rm)k$pl}H3EcuWexZGDc$ph*xxXt1wagg+?Z~-T<kWP=w_JzSYs#g<
zca`5vKm(s$@d?p)zQE@<*1&?OubEKjJh>ZvH^J*Bj&%<QIJ}K<`T8<(w+gdKF@hZp
zPsy7=@^`9UXQ*o$avAz@8ry5(W+aajgN$?Gkgsl+-yl3-4uG(odF06OpKXraxXY1B
zA@7Mu&8++w@6%x`w^QR<Ps04(DIuld@3V_ke}}j7-&(&GjRzkAUV!y~ACBLH!e_q@
zCx(UdQ+|LYHt{3_Yc=i!6K>aGQx&SJAjxfVg5uN84%>Rl1B_uRpJ-10HVro8vcffR
z&s9S@K2Ffxa)F8M|Fb#*bCB|f5Hh+c&iiSR_ZQ^?LW#d%EE62Li}^IyN4{nng(d_c
zae`!0VrD(xSH@Wh9Z~>~2W%h-&7KFi{Hc)1=v9_4StQ?ABPsj(vJ%U-5Q)C5A{9Qp
z8xwmn#Yw83@Yb}U0`!p$wT7l316Vr}96!Zn*ByE(0H=2FmR@AXJJnz`Adq({m8xr_
zu>>5W=f5nt^U^Q-AWGXo48c;E%qI0=`EiArkof^k6v7^6x~$xKIH%6LCxjk~m@Za{
zT*#ei6(GM-*LpN5Eq_0#MEbtFW+G(HfSLO11?D=$Bp$`1%+&*0;}*@UuZ){uf_F~3
zbA~+Zhz3H7Pc1FB><rMRnnUGaTvo~=k$QHAk{=y52^{=kbTHh)xNYlhg(my_%+V47
z0{jReF|q<mM9*Z;m_X@Ev}MIU`{Y$FaxV(uqJshilZh!n_^TY?me7kj2hMZ%4W^TI
z511O)cSuxd`xRannmet?%WJxi=Uivyj{Y&kcPE)(^OnAHG94fd-eWtKb~)O6`s6%g
zKFhr0p``Uz>{_~J$vuR9<Y!y!y*gCjM`#?z8k-257GsEYm09S$Z2+uY8@D`qwJ~Af
z?mB))mss&$o+mmD@y}-%^dMKJZQU)|zYOctPANugR`7Owy-g>C=3|603>&Dz$1o@F
za<w_2jrWFJOZYuU+g2@vjV#iM93!br>AS-v{QjJ)IibXkKNSqHDDpapZobxP7weQo
z=WA89bVOUjp(Zm?a&>^{`MSlF@(zsP(Jk43@KW9`Bud4kX#Q3~#;;#VU7JtjLn|5N
z&ds1$86Nd^JUPm-C0EK8`B{{<zFn>#FxRzd2yEebe=i18n-J8zNUL-m2wC@fbo7jn
z$|}ywpYXzL9QUV0jtrhe+HUhso-k}0hQbWOPWAQE<|$vtt2@y0P{gGVcLDqIpKO46
zqA<pP%k~`Fv}Fs}jkNELi9rpLMiQr<U$iX}R$re)6-)b=Z;qpqq-gYErSPuMhr!TO
zs2g<DAmwJzY{;8rq{u^SG<dU0IU%{g^%reHF|GV2|Ex02n(xw#S5vH!QusJ=L=gi!
z{0S!LzFZyzuY0u}yvDej`M)eUA7^&V96Bpg1icv8;QuqQNwpo->5BPW@Fez0js9sF
zQ~!F%_3*Z4DVFg3G-ChFyDAE~yQBdQPT5z+n|w~s(iQsK-yblA1Apbh9NYbMQ4hoA
z9BLurJzjK-lUmI0dtrNBkd2E(+!jkMvE`p<=EBfDyl2WX&hW0fi>>JlGG80VIz2ma
z^L+?9ZhP)LMgt4172~7qg{OL2j<o=3=2#-6BP)L10i$k3b*<aa1bDn`*{=C2kc_&W
zgTrI0oMcW^^CY%1$`8?wpUrm{%&jo^8@glt<#EUUd?j_(_bc*Xm9A|Xqk+qAQB1yD
zIU{=PiaG3>92L;RS5CV5-uv$|_k|MGH*f$yb~~;pE*^g5i~t$Ek_M22<?R7m5#i1y
zm#+_lGb#tjSQibKZ6RVNE<k&g{jIo}P|@hK3NAB$Zd)TNN)lApbxi52PkAfv6YdhF
zkK%v12^y*BQ5kX{i{C--*wc>%%j2ClhgAq~0WAXxGvJJB+F3iOx2>m;7(`xN5$llI
z9{cTgbcsDkeYx>ZDt2@669okYu$5`RH~3J)KbcRLWSgj+r~p<<T_t3Hz}mD7UhKdd
zJE(eKmhf$V%PQ0kZ<P5v(IFrW_}94=f4^bgcEo`mRZ_5j^xyx#r`4o4mXvd;b`{_H
z2I?YFk{{B}53ar_wVRGZM+lM2JLI1$Q=Rp=phHVfK96g|g)f3BerE2uZt3iYJEHcA
z!0%hq5UkjFU?(~w#R6piBSZ5M(&A#83q3`p)9Ls)^PMOs{20{xzQ*;T2%qX30jEf^
z;{vYZ_hRXExAd;y%aO*h3jZzX!9k`lXQ&&+L~c+VxxE4H7Wye@c_BuYe@8U{W%o)~
z0DHIG{S^2!jrQZIS9TCHzXx!_Yt3=Yfoabh!DFvs`L$tG3>_g83a2dKd#LYF34Tl7
z4V_&EXm?6XxF@vE1GZy?#-lyIKe>8kUx~!>(tgyd#S>3I<kKgA5h4<0YF0Do=AQ~e
z1n@OF@6k^m&pzOAfu4&HzsyhyXD4&;AX}I3ijK>hINb7QfX19vD{{72H!6EEHyJ+>
zECd^Y$M*oezgT?GV~R6(cELS3>{t5rtNzZZ!CVuItC+QJd}!z5X_H<VyosR{QBMp6
zP=UFX3A+v~&i?%QcelFa3A5897vqm*@Br^kWi%4Pxxm><DLT-AJzB;tPzromBouo0
zYlq2QYRczLVphIc<1eEm4Y}fPh8;li+`Rmkf+XvW^A!$>e3%tK{AN#Ansu{0e;hXm
zL@Kr~{H&VTVQ#@^(JHnrYdP+i>UgkU`9v$fVQTg>PymL{x+r~1yQ;Mcu*;A48yzjP
zS<M{MRvmved{o({RDl$$EK98%8FZNonXk}Cuf8s2H}Z3SP_N_2m-S`SCe^S%ac*UT
zuQq-<;b{LbI<|-eafCNp`dkTLz0+J?cw3N{%pk+FZz$h1hk0QiH^6S;!DEkfUl^qA
zAjojVV>0k3c<##=`Ld+bWXawaquS|zMztE)p&V8o2Q&Iwi{<3AhXX<qL68g`x=nv~
z{QM0uTXveFeOHzRYrqY_L3!x5{o{YvzpFB~H!z0azBp1%XDK++OYv=8+2QMg;wOk#
zs9d3Y)&dk~sxJIU=1krQ0BIQt-zavBG+|eqDk<2Vl`6BUlIs6dS8xSqBxLToEjN0(
zcmO)doyB_MK};`G7fWGUSgP2heTrS;MA(Q)@hEcp+!h`b=`Q5xnWr8&FE>)eWPkh0
z$EZ-zn=)*M-T-8Xql&})BZ|k;S}!{^A`@xVvr)nIXHUhfQ@9<RrI4Fd;$`<)#^xCn
z?h=Y=GwcE|JD}25k|aPB=%3Wg!SAh0g)byY|JpLcS)`5NZ+i?--Ujd$qs#S}3*pyl
zq0yozfi}~;&J#_ibLBhIjNVr&0s2J4Ye9LCdYPwE0?VAqD&J`(5)L@iYNpbM2W9Ec
z0OO=HEa%y8Zgj4-SKNux{IEowCzhI0ggmv{9udyK%k-tnN(et!aIKF7U4lgFMaM)!
zPgM0(f-4iobXYORujP;E^`0T9ra}bFiVI)L?um~8(!Fype<M1vX<&qr2tIb(s$L6k
zD8-6Ct%SlM-&_}C25^$Q<>UdsEZUZ-uHf03slT6q?>?Gbx6enCLp5Vy%eSc`9bK$K
z3Os@x^=|0Z>EqeNDb||g)x1es?8<;NnLgx-W`tl#`P^!;WKp1!j|pPSOTI>5D4B(|
z0ZtlR9297zsQ&m3m&&x9r&wl^miX7~1J>CBGGo6nV%B72rY9m9=fgB6U`4RqnfQXf
zxD6llmPuEMv>2wOA#!!*iU}FLddC?qjKsSBj-%I-No=yxLBve-kSl{QA+>yp+PO&V
zAx>iK!Q1K`%}++b9qrNY1_(ej0urW%U5EF$p~Wn3INV8F`~jJG&_o(vc4bIuWX%~4
zP4zqfNt{J9qO9H-4p?Fgbvr9xVfbFs#b5f9Y(OH%3m3H&Vqz5Y^1_#BBRt=3qQ9n1
z`qR!<P6L1%>C(1O$ovVdYEQ|tEdnwJ<Zgk-v-u`~m%PAqAwMViSN29zEwHU0(e4@C
z-Pd@+S5MvSWxriCX+9VkJTmz7Lnvv;8ird^Ik&Aw*yC;XITBz4?0s;V$KN|WQJPJ1
zpaY!#28pCJAayRqOQc4pQ^#TffBT=V@>#B0gQm50vqmf{1a=pN57BdnnmEnv!<?%$
zgdYo~DHO_z%vo*lUqU@6|GPo3txTG9l3z@?8l7yDzqvVFsE@BZ57ao)D9T~(q*|OB
z9&%zv#oRm>G9O_(S*i)YH65gYBD%TV8L0$&dgzM<mNmDmT%=BEq~82M`8grAA4$$#
z&L*A-1M0*fK?6SA-9PZv33^Wh_wk0{>zenEHO1s!_HftU2(F>CtE$!}cWof_*ed;_
zUtCUDbnbEhyWCgN6*$YOC<kBdM~p+xU(u6jl!#KLS2)`+*pe+)!;{(0|BWE*DCX}8
z)o7lp`<PQv9(1vF{XVJNL+heNID1jo<y)hd5V{&g;nGr*O(LN!B&TP}&LKlq1;@=}
zwyyLHC>?735@*fm!*O&fvz(^!Rsskj{*&2j_;mNEh{?3LAq@_K3R@{8!nB;@_=%Ff
z5H$dw82GO~2a`9eD>mkY7hv(B2ZKbql|~v@_sz;YEB3teW0=H|=t4yQDjSjTcgDnb
zted+->iVn0qm$s-bO}|EIv?Nsvv-OO5IMto*GKL$O`z)Q#3xN8%jRzxIoa*a5#l&r
z^o*cjC#UI>j#`uzB5wS(T6*}3X{gitQ44${nFA5VTaMxee)UR=o}O-2zf9vfC8+)6
z7ueY|h_RaN?0Y+A{ZTiQ4TZj~m-fZfY-{F%GrZq!zm%TVDG+A=u)MlF{c2V^)WGg1
zzMq|rdW=5?AQ1+vxKEbY5__c&7HhPI%w^HXhuyvezJ?Nbblx+j?lvO;7x`j+hIqQK
zU<m_&uT{`>wZpQ5rxcmYO-%kpMpL14Q+z+)`s?tp^}MI3^5kUJq`dC2lJ=PGjODR@
zJ4Y=*fgasCXM{_E@ayiImotI4?JQw`0Jbx%SJ%FZqGa2%DNybjwS;i;@&I68zKWx|
z;@Jh8C0`~f=9Ye01{pBnj1+mVez0HBPK{OKu`9ZPSq7%q%%C$-lS?Eq>o=k28>GG7
zb~n0O8rW^r{h^BJJ7km4ATXn&Gt4DkRT~tJ`y>u9gq?QW+ivw4$T6vuB5UMbpKuFl
zI&9Zm8&oKkt648nPU`;4H>Z4ag#ZX5gH^b(@O4vy{s$S>1WSXa<DPkwc+9Lo*=p;c
z53oeFe7Qw(6`wx@1<jbGxqSt0oN1<j7t2`!X6KyeJW*K?PJ_PDZO%LUv80y(4tcgm
zh1vR&34c57hK~+}Q2r26eGNcWYZ?*|`v_kRIJp#Men(UPw3JH|U0$^`KLDy4cO#rG
zD>=tjH6S@-tJ72FR{%ehu44}0Oq^DXpe~p=?M@Ui9E@gVrkKpVv!!%H);#+{bR3q}
zGyitgYL?Bl%mR4hm8AdWjZ<_P*X3bMCktch_Iqp(<fPNMCHbC)Hb1A0hsZGTbXvhk
zwHZ)5e|XW6S3DoW<pww$7^~iaf!{gq2ar^|h_Gp3h?53<**63DvQgE+;P51-?-Z9W
z-@gSxh5Hf$J}07GE$90N-qyPX_u@?)o{b1C^?~i#4m^~#p4{Ji=afX4F?l_FZh!m`
z1Ru|u>+<wa#Z&DwUQw>)e54vmWz}*eO%=Q$wE<kY{af0ra>BS{j>r1AjylAwM`D|;
z<|@+tJJ)D(u-7L}X`An3A0VsB!m+d}+R1<^_n#zLa<2~yjxwchi$)wnYDr5M5uY8O
zX~i^Zm5#^phx4|zmI#f+D)%Pi1EKZ5W530Z%%Ny4z%$>qZy|(#?PSuqhV~{q;XgZ+
zW|X`80HR?G@QT|e4WPW@*ye_8|N8$Sf<7A@M0uEy+=1x<H?%XoD3|d^CEEfn%}d}D
z4c;li`$c6~#1!~SFAS$6wjJ;{(eQtz_G~E5-*~LeWtnCpYOnER$y-4mSNY16_QnOv
zmfm+|_g4pStV23i(EAWa;$M5xk5X0GNawRxdmq+HYR&Vsug&(-%W0(NuDP^OOtVa}
zpANhjLF%uj7vTvgGhb#$2Y>Txl<prhzi_{}KhHa=oU+sr(K-kdDGA@u5%&NZ);uD-
zgKpmEkCv`DYOgDch|U)Cf0`KCjLh#Mow4~@nHHz{Syg<``SBWL&Qv)W9utjr?A1F$
z-(4FCIf$=6K|r-S46^|h-}=X;UFkl9nGumjQ-6MaRZE%XUg%Ab=}QfQLsb^fnN%E|
zg)lJzhu-tUz7wfIFXzzzXKoBT+3<24VnW!gY{mvN8GSHjyk{&_mh2&uc_Z(DWTk#f
zG1V^loy;S?k5d2In>iG1_(@})C)HC>1Mb+zl77}`S2ZuJdo(4Q*;ptgn32OzJ90yl
z&*gBYCbI6iA?Zkix=eSU=_H3GPNLZq&ri>&3FwK^SRQadHlYC=b3c=j74r0_xo{3h
z_B<GSK@)obJp{;2ssDcd?V4qvb;4HR&Odh{AAv{LPQPMb7pYa!xox@TP@EV2A2z{8
z0qd*%5+P5rQRpm>Ay4twGay^MF?pQ!Yq`-2T%>q#oX!Gps<F!`K`?E_th9<D;n=i7
zQ#Vv^&#hk^KS&1#bvkjJ%#8D^zAmGphDe(DQ<Ti7WyB_-BZQ~#d%SB!8cR23Y@Oyz
zr@nSLcD3>bSPGe6_m2rY-sJ3dPlAsp<NrQ<K6>&fOL$oOKB|P?eBjv>@y{Fx9n_|9
zwGaLF9bJJruiN8)x&X?Oj#$^ZfEIy0EdaR#9R*cj@BNwy%XBR-7rTORv=nuTfX!ce
zn_m*`Myg_Jtrk_?bBBABDeVJ58?gw}Ou$SyB@q#=^7AHlE`J|MRH#x!kH=wZEM5W_
z%Z5?}Ck2#wbKA=Bzr1YpGgA9reeFTNjHG4?7p33|7mq}EeJZkOEn<|!U~$KYT=(=U
zGbTTb#^i>5kmai%83~{Du1;w)F<D9|h`@bNy_i<aOiUrv(lf;~xjC35PZJN8+%!RQ
zhL_85Y#ykz+cv={nV_iZW<e^^sK)Lkbn^A!j#c`mF$IYPh)!NT0^Zz@uUk!wNW2Gu
zc*+Y%IjVaHZdGUV$|1Y~ghWxm8+mL{V}K-gA7)>6iZ>fbjjc(Xz2^TGZGh{8z4aK)
zh*Uc2L!-jYE*SRvw|~0{3K%2>1eIVbC5a+Byg86uRIOV#+0#)M8N`8g;im0|%kKJp
zL6p-2$MAMut;W{}j^m_||E9pblHQ<@%GnceizZX-xbZTBcRO~nt6;_pmTGP4q6$E_
zDs&o@@!~xm4t{V1MXxsTaeVWi!&)*$72&H7)PCU0dI{xh|Boc2T1Y4sSy(Du&tajd
z;r_5JGyCym(k{JiEe^?irWB*fSoVY7;-)=wdU&SR)g<>V?pWZsd;ohodvl#@O(@`P
zcK`mK`t7BELGtUaOSF5#A5Yu{V&AY#zycclpBZ=~r~R+IFY5O?LXW9%96ra#S|kxE
zgUea<kCL4?`oWNu9Wdos(GlyImvXUf5!*l|SvaAzGmX>WF}Sx9t2WvDlPv#JU0dau
zFsbR!#i=+_+3-J8HjgU~xNy5k9A%6x&&EMddy}%X<mHMDNWpkxSg|ti?$nxe<F0Ol
zpBP(irK>F_5gQ{g#ID2s0R_C;U7JFjju#RecqM~bzy>`QL@fU(;S!m`+lr~x2pMz|
z3{y(~CfBaHUhKQw-H?;x<%oPHpq1xoq+(q;rZQTNVhz3i+A0nqBFq-I;2*KpIR&}m
zj`b+y-SKxG6QG#3=M@^s6}5(*Ow*<|{SO^-O*VC_%oFA|pE%*@d+<epvW#Hf6e8iw
zInLuSkc|M>L`JsP8thN3DS-_jFm(xu<6gsmL4tvP?6zpZ*P6x4er5oyhITN8ivl4S
zhw(Bm^v2|lf%n=5n|d#P@YALTux4=ENL>x9SqGiQtiQ97klRs3Z?M`V_JSnDVxEr2
zVfYfsT3nr%0w0K}@$+97oH7S*2^u&5NqeL3dyjLX670_7E9!}?eIx1~CGEqehhl2u
z!Lhe=PNaPe&z0x9;x)!U_J^o~xxlt(sQ-Y)t>~s3xf4`EeJGP8AYANrq{k~bH|~Iz
zOP{E+9C_F@5-^Vc-mp1>FVF3zHNsW)pH7OqV)9oxuW9&~6)21oOEsJ6R(X@Y3O7%h
z<LPv4bH%=QrP4Z}V|KiH&-<0Q93{&_fs+jt^KeB$X)k0QK&;E)`g|qGZ&&{%eT>&B
zpR_8Lv(@-D?)Il~*7OB)T32pKN=modE0Cav>~9mGe}UL@Ayv?tJOBxtRRIeoUANuJ
zkqg0LhzmhdO6-fdN;||x2K^SC&e#51fhM7<X&Hrd7%kZfKrIpO7yG?kU6NVT$J;aS
z$6{eh3W}eB_G-~)c%|)hA5Rcn)kK8|C$q^4N<9kJNa6rh)e;FTT@6_JI}+cdr6&L{
z1O-i7r4ui^er0TG#pq#CtjyB$H62ik6OQGZ5yIq@5Dis!vltGlFholNE*qw8-y{TT
zt`}wK8pSyslIo!20|><<=NLplwaS0ZBLM+@;(4(`9Q~aQFeUpA2vM8N@WG#nW)@EY
zjxoBG>9~?%_X|0?h^KF|HA8o3lK|lR=DOcAD5vcNiXDOxc6V?E{o_hHa9;Z#s{~Mk
zVkC*pYv8Hupt@){N~M2*w-(iu)5={(_YEumZGUp^1ul{V)kmoJ_H+4EBGQ?vt<DXf
zfgb?w^&UVpf=j=JINtRES+?Ssr31EDPO$wfzY7W4pp4i3e(y&MH%$!qYODLt&BHe=
z2}p|!_tSrYk1m&p43kiakLBIKAmbj$M1s>)La_dIj7#{UzeCMX4R?aI3|22EEUv_U
zvOT|69@=s@J?E;iAR6tj@U%TPyy<4p$BaMDgt^~jmBCC1?}@$iQ)*adRC)i-shNIz
z#b|~5RG5zPXrIMbe4sS>rwi06{6RMx&A{P<beRRs%F>@!BgnRr$*AThU8a)P%6Oe2
z1~hxCFc-Oo#179uDBwd1Z%>$tFN*2#svb^C?ttH{<G~j9#-~AN-1b2QZ9u=Zc)}2~
zx^}hZe|~Q9vn12!*FGk8FnlAQDJtne<@tO^d7e}A5g&eVnnoA+@7fvDN2mUtMh!$c
zWYoTE{aXlVIfTFWpsxrh>9orim}PvXajy94OC$pElU6xV8ll#A;)Aq$Pw>+OF6X?z
z^7ticwFMr}^e56a_*aiPmjIV~Q1p{QWZ4IW-0l5-XwwsLdT}CObs1S>i5QJSQ7eQ?
z2|dqtiB`JV^x8uJ61JvMkJC<UH&l^nb?jC${Xu*#&|Mxd$v}$mqr9zo0)coFaurIY
z<SAB<w`0%L-Nx;v!H8qJh%bXAdej>d{QPp~e!dFleRqewdiDo2D=2XDRZ}lq9=+le
zW*Jv`KuF#HAJkHp2;p~g3>EEJ{#F*AD;;@?e8IG({{hgoBOKIFPEi(Ns%L3*E7=#m
zdvt@0grqzoGh>&)&_Z5L1$etdz#E9W1Hll>71EXlsaMHvfOYssV)Iz!cO!1z7zmj!
zu<m&{bt5&v^kolN6)~Zhnv9m;SAqHRKlhH5bj?^27l_omUNvzKT5xkCfz+4y)S6*R
zQ5DKI@1@aR2uGBEdu6Kr2!$G3b}xS@<XXXGJ&#xG371ROH8z75)_f^Zhg#k&Njw5m
zBNzy*4;&655k}vWu!NEKhW*iJeDJ?)K$t5Z;8?PrIt#Y-hIv5Tu{Z*Tl1)m%r<KR?
zpiH;Oh}U0b5XUxqWw0qzf4==apo@m#?C>^fPIliKFRJ60-Bbdp?H!|LsM_6`yIcDm
zwxkifW@GEs1u~bCDKMkFoCg9(3y`GZ=`oP8N8^HWgH-LsluOl(-OdA&o_T8Uf8k9Z
z^j$>?p8v{08NDP5!Ihb$>n<j;he2VOM_3Y^vPzGZ;Y=_2&#d9WjrY?%O?3iQ3Ke=V
zuaoSdjQhan2>d{<9RkoIGH_0&^NOy@y$zfP@%VmbANjZ6Hhz1cm{4E>*LT>e(CFUP
z%pBt_vObLRToN$5Zhdl4r#UN{`BlG%es6V*yty<U{`N|0jT(o@Z`pUAI_M+j;5>CC
zPVPF}K#glj<B`+VKWUQEH8wAEXKaNv=_&7*c@|E-DM9k#Kk74NVv}_;;3W`z&r+nj
zm^s~C`;nmc9M8}HB^knt30hz}wgudBINsW9UU5f%y|G`vf5_@V`2aNS2Ogp8vip^$
zxbi5ods}3?y+fwe2w;XqTzql2d^jnjQ|E|u8TQ3=+AX!*8u+v~xJGbqNV5k|5jDFz
z8jeaJ9PAuflT3P&;hQ#O#_;4XX|DR&<*A5qa8OSOHc^@Q{VZxCV22I_<lmdke|DzQ
z{-Uu(-Et*#RR+(AEoNIKoT)Dfs!O#FCN^_=LG%4gQ5t!k(t_Bz{J>^6b2Mr|jwj70
z)CfGDJB`r!Xa<YMJ(a%?|Ey8nw5-%<R*UWEVQ;au<z@r|YR&FKy7i-t5HoPVK>8ad
zs|--E2W0Z_aT9s6fT$%+_yyBGE=zxTy8*0yCC#4SPaIgkUi#_l^+bbS^!R(#J?KeO
zRi^1mb$G)Rv!sA@Qfe`s9$ud?dT6lpD$qDTM0PdFbkLy;SK~Sj0*U>q#Ma8p?Dk6a
z5(^{Zof6<c?FTMceB@DeElbB3UE|=pMXS6Da5Y`62oO>u-6Jx!LCO1Iw>#Wb%J%bQ
z>_nh33?onWtlfsMwbRhyPhG2y>1u6Jn>7l|Dmn_%FoyCq%0KyzVJFF*+v|%D#SKj{
z9tBp_1s|VKOdB0f$gP^zvEmf*t^nfWGmxqO+h50^+`5^IZ?GgEDMT4+1A<iu444e}
z@q5@}g%2>%NLFZ%)giT;Emn|kOTPh9(fNiKZULSGsTi_u7`fWo4W{8)Ev(_;-!?V5
zPTFoUd{a3IUMhz(SG|e8%SQ6p4|L5(xT@-8(8q0R>m7W-`JG`U2an@y&DD&{l@BSI
z6nAO6gIj>bnX5HlmA-b#DpYU)xm@L~!*QmF06+KuEv)%WC%{>x@m$*|+Q^Y&d1b00
z9)|ZRexT>HTnx&Ssl6O{?Q$dv*fRd{Jyz&bgk|f}<$T6T>;QTvq+5HgghDG;uT%aY
z7hk{8ngEng0v?_wsVBFh!G5~Aph;3L;_vH0#4YhfKR@p<0EJNV)|047(K3L_d2E!q
z*?N#z-(UnN$QOWu`~?1%Bxo=DXnhnxs1x!-$(&nRUS{i``H8i$A9LF*^s>5nzASOg
z+Oiusu9;T+3sUnasY>I2XDLDN1A*<q2P?I~?dFgsWk^_u+5XJbW=t4?tdV68?JZ_T
zYs|dK6>mJ?uO3DDe}`zQHz44)($Vnbm`-o%={iM{dw)(W@U2hA*vOdj$y4{(!P;QX
zLS<e2>E-`2Fgq3NNYO_B4!or~D+czIiY8nz_ax||-s#kO#_hesnK!534m~~>c<0}u
zlsyu9t)`xeY@CZ%0dp_SMv<hjP>SKhev5-`6Aqbsx7*{SDlhv@<tH8#caiAQ*8>nh
z->KcOnnE0mnrBk{!u@DPKVHaLUPrVlt7ZNZ@iUQceG|dPPcPWz&9boa=RH8SYV-c;
zXX0I=F@|c&+-UnaXBKhM&5i*Za-{QVm4C|CT5c(8viPrz9K77wW@9hQch@o0QA}dM
zF*Ms#W$lV1KYL4$8|<W7>s;dPQ$=)k;*4;)tQ(f@CUW-Q)U(GALk6@PAS73{A@C;q
zzxF-_wGekl9*nVVYJNe}S!k_Xij=s^oT3C-SyVu(+lg7dv}IEd2_O|WKgo1?b4WK9
z$LmyHFgfehz~QJjz?E6+_0SD2?vpWF=jj>!!wfwr=?%OZ8fwSt$`H)LZzMs}TT2(H
zwRsf*o!{hwx4!aQYep`z29`MqYlg-UE<XHLohn8>*BaJvbZIis67oChb!wFWSFm`g
z7TBb;{0YWE5YVQQ-fU$yEi~@FvYC#X-Jw-3tA#zcTwsrmL7V!bx3EbCs7H)Seb^Uo
z2xYf_xDa(gIaW(XBg{K$Lp`CbX)yGuDaHR9^v;lQqSEwmsS_HovV%&Ik7KOnvQJn6
zh<grD9T#Jo!IC-W_Yr^+p4~0#?s0*%ac03c8*82Ba{Xoyq&I}YHvi&zS*IB6C?~jA
z!NEOrnL!<4Y`ppkBb(vc=7c0-fFguNudXOazOBCp_4VbhJKiQlLW5bu5egU;SY;@G
z<OTjNh%1)Z_gR3Y<KDnEIBeG`0f-^<Pnw&TitX0Iy8nMm-KpqCCtw0ffN5n{P`)lC
z`%hYsFdk1X_Bk!oi&^+iX^9tp7<l(3l<1RgSm9u=K@Vz757cO+LYWhvV@1r{jpN7n
zUgm4PG&aW#GxVR5mC(wh5qvQ?CVv|F%4`v*NcT=>q)HxOKH;9967RJP-^1iJEX^vn
z6@(xa5WF~AL|4qG^C?dX(p0buoM7;Aq&In)4oTSCnL>D=O_vO@F?>^YCZmZI%4KS$
zXp^={p+E!~+rJbto)&&O@knGNKnS%0zWj5U`&;G+Op+=gM<)Y}8i0gN4cw)Td<G~q
zg}u{2mTAfr|NYs7K?kxlL{Ed(grTQ#@Hdu}B*6dKO#bfBGDG_Dl=z=TO@{p310b7+
zh6DoLXiSctX1a*yW^{eCaW|gm{iCUYfs=5@5(z}jfL#qxkY%#v!kPxkfhDa-sel|f
z-CA1t5t84T5#uzeLQ-~LNb`Sr>NdZyp1pKZ?oI#4CZ)atC#Er31$KUc%u036RhUC+
z(Q;b8nxpX*I(r}oeA_g3$hlDH4pORJ7toF)kEOa{E5?KX7g?1WjXk(0M@u?=FA?{q
z+B9ImGn4-|>h$uDx!?lsLzV9E=P<@%+;(RUJQ>*LO*2R7t3#lGfj#|;U#<H*PmuoU
zzlqIl7ZsoOJ)FVK1DoD%@JAarhWCmojkS*M;!L&4TvoYl(%H_wRzjgyJKw(v-vARN
z8cV8y!)mUhCaZ9DkU-J<GvaDX!O>J%yFl#2S%go{8%4x>E2Rc!$XbM2wriWWa8|C1
zwinddqt#+w>dUG&dL7!)-hS?I0@VzEgIFXIn=zuoOFYbyY2@gP^1ug+@i&kRgYiN5
z6!rPP`b<62i*Yky68tT_Nm{?x4_=2lZ~cN+h#?5-n%H75fDj11oi7<KzO*p#5odIy
z#EBxCPbBE*kTB+8jPgBXYo2^3EV9IzrwJn!djC{tIQZ%`q8+R!(sMs>xmP9~Bz-s6
zi4?!|hjnGTKROE`6kFS!L2kz%QanyZ!3{1}x*3D)_;Vz)K2!is<c)i#Cm799AT%LE
zqOz?ti8xu5oT1YZ!YnHovzpF0f6WCf<<)+w+wfu>#&UiGu1TjeCMvT5W<bS(nJ^$=
z9OMsG9s;(R<e`ie$`yL$Ej(^_U#_hvk<A9!)wbK<ECMrZbtx_^2w#2gI{+a_hY)cZ
z|KXBkJ+W^b1!};k_#ub89o75&18>h%1>66WXS%gbU1ndCO4*;z%a`)xY>*(Vy2(xo
z-JzyZx?M%Mcqz;_S`N2c0=%~!lzK@DH^~)OqJbaXW-Pv=Gau>v5iOcSEhX1AVsVBI
zj~SX#M}hQz*n96_I@>OMG(>`kkO-m^L39x%IuX4S1VKda(b;+kqW9jSvxDfpr0Bi(
zt=Fyh?%bQa-*<jz=FFU#@BI1xm)R5B<9^n?%C)X_t+AKVh|<sAdHKyeVB^d=ZGXHU
zk|N}a^~Cnq4;&<8eCBtHpC(h~uzx!}X<M`F@sE;Pq_f%{^o@eOWjQllvL34DRIv-1
z;D8;Hk3k5wybou>19Y7nI#B19m=hUE)$2$3^Ow7V_ec9wWd<W+FYa6<jx+mN6|x*W
z-5tsv5%e75K1W^~w89bf13ja5S-f)DYqc+Tc+#$0r2y|bT=(grSHBUB>f+EZhR<fb
zH2|$^TJZH8ewP+Ao25poK-4>TnbopcSbv&AT=BL?Rs|s|&{7w%F)}mGk<Tp|cl&Gy
zrG$iqCK_c*_`ohS_%xYZ9kz_XnqQnf+00EW$`c^GuG2h-@iK@$Esb70kFeWxO#cBU
z-+ikTG3RPu>i}~Y`wPOSsdDT#{a!*Tr$M_J*-H3-8QDTdHah>o`)4ZJK|!-BO^Y;Y
zKfa6}#en<l4nxRTnp%yESJujN_wAp~AN>~VcC%CLxh$+qt9ah{+G}o9-q0kIv_5o+
zwwVv-X|!k&^lI509P}Fr^8Jya&F|L15P5O`Dz)?u5#NXCp5w2SO@N>b@3YocHPgk;
zP#l_AXUn4a#+5*T{w;C6FF&PnA-sd+WwzCWyRnw_2i0YP>)6EOI+uyQ>-s*8YAIue
zH1|f0Vc&yt-hInUS_`v-HUTxdbzN7~moYEA)b7}nqtEpb<SEoy@b^^7qx=T0L?Uh)
zslaPzeVbw)B|2@OYQFl4_o_5K0_ZzEb#<2FQre83AQ}0L9{v2+quS#KZ*$a^Ehf(L
z{dqupw&~)+r}gKZi<8QhqiJ^<L&<rE4|f@G`>)*IJ4o^it8aTQb2`!t#C%ge+CH;T
zj(=1B?h@}rfdVGW@%YJY1}c+PMZ?7eWp7JMFmHTvpJY2Qb&FfNYUQ5n6ucP1X%qUI
z04;ZKbWQ_7r6geoj6bBzBGT}asnrpi6cok3lDfGJBK$m>XsKQ8woapFF+WuZL}ImC
zPxou&fYOgf^6||qKTd;s`PZ`FZpFpz;;f)_+x-FIFW+VxFBWmGD*nubGe^AetB3#W
z?R~Nn4_($L-K!L8WB0sfS;_@JMU*@&#2Q~|W>q+VhST0&z(5)~ETT5}`9v@!_kjh1
zR3jbBtNsC9?q#F!q&OJT;ChIacy-pl=gFE~O%~l(x45)>qG#=x-W1-AL(PR5@rk5%
z_~$_QJusdZ-SHi&YlhIalZ@f-2>wORqNj)ZYaexxuM&{<s6sn-*Dyz>88&lA-Zk2U
z6Uet9lp8;Gj_M$UUONX4t-$>LIFsX{%Flh1uZ{x=5eYgJcTXrZVns_$<kc+qrcT$_
zPDZK0pnh>sft1&SM_TC0jo#YQ=j_61*Ax4DPNy&0k$sX>HSO|WRWH0a8K)@?nP99!
z#u=~+@m(Wj;ULl@7)i1cHO8f?=;dP4u6h$$GF}TdEw#T|sWTbMUl8}bz48{SnxACZ
z&$e&fd&Q_$PCm`<Ctfb2IzpW{{l|{wa&xGzp>q3I@rg<?G88i!iDBHDVZ!uoE9pCl
z89&Nk+g5UMRE~H3d=Ihwlo)%8t9ObvyE<LUS99IY4&~k?9Lngko)4ey6F*Od58k%j
zU{N=nDo)o&bBcA9)V6;TCe$Eor&G)=V^=q!!kOhgdHX~ROQ9{fZ5T^u!Qg@~d@5x5
zf?oMMbv(N<BiU?b`WND{bY}rXPmtSoyb_Ij2X$E%KZLJ-xH~Hs{)TX+YL-^=jtv7!
zLyG-I!dD3#!`x@q6Xn7$eZ8>vg;}^1V&<cSD(7F%lZPGNilJ6#hPLQPBTFlA#$T{K
z@svs8SExNWgws_`t~m+2qew+-Tb&FA!)Fih=e6innQh)f$udk3Fqq%@@0CiW7Sa=H
z-I=5Y&@@<nr5ej^H(QH)_~_5O<VxXeJnr_=$sT>DG8PP!h6(B6n*4W%IUBdo?F#u<
z?-1L~TM^T{-aS+nbPoF3LM26-pSFM}dJN==W}f`sH{m44S4Vv^K*R&_C)uDrgGTf^
z2wC(A16WFLDrXKf<>&g2s0IoZoPIspwKJVg=sA8ezyIz<iE)GqU2dY@ot|olU;?I?
z;^`W;5s?+63J;>W&dN2{`NAFyI)v|B4?5@{zL-?v(zR1#=(MB=lzwQL@+WTZTr4in
zrX?X3cCp-*LUp!qs<B4@-Sz6XLmKEho*GwSg%pMw&X&sF8RUCMa>`+f93HP1=7+Qq
zuPiryv_~i>-@{swgJ1NK^%SexC5Tr@+k^iFHD6xpgxc}Yh1>FA-LF6)@7$50y_e?K
z>>t<-`-e;HR*Af%n!nm}>3X2sHCnw$$>o@UhW6GmHcol{$H$K?oZ4SQ@`G8udp|$O
zS@>r5t6wWtsLp&M+I!Dpsc4YE&_6<!Ta5|5bf{Werz={7E77LAYOY7%^6^&fp25ly
z%QTcFcy?p1)`mIMi;?AHPz(v75t^>Nk1G(msX8Al8<`{z3Q(>GP&sahX`c@7tT#>*
zV74!<9Ots_n92Pxn24ma%X<6Fe7y8UvXma-{mc2JZ>5vPb|rimEn9c*>`a~VF|QEU
zBI&9{30$5FU-}G6r=`NryTz25+<N@x-gBI9rp+`u>pl3Z3@jV>GW&}#dBmbl>vpIJ
z%gR?k7NI2KSjgkO-!z9HKQ2l>4~l#r|GejOX#S%v;o{Zbt)j7ke)VG^!@IdGo&Ge9
zttit(j+TIJe0Y1Vs$1G-<(seCMIXkWOOeBv2Bar^^T}TxhOc5h7Og+N|41AcNN~Si
zdm}4w0VXI`G;8d?cBxz}8M48ZRdS6&`eFp;_xlx@eNKs;TGrm`yv`eM(zAQ30~@Nv
z+n`%uLwRELbNf}YM{SD65^~4tPYP>^amT`etsn_FexkNYqtO~rK6n)S{*k44mW=9=
ztV(nvkGA8_CTnZ{g|Ro|){a+S`d-wJ<!cC7OG6Y+=++tU_w_K^Bro#LVDA8k!VhQ*
z5IEpHx*(y34zRs^yOg+xqJl23(^;v5Ov;VHnvv)BJjcPm#Y4sYkTyHf;6OmOq<$=g
zQ8@2t9d~7)ZLBoKtS)dGrM@SeD)<4hb3Yh4udscOHN|;K+I#jplnoY|XT`k0EM1oa
zJE_zS!B5~HU*UfEGeGF6T^^UuOCuwJBDaeUtqR!$$9Cu!?Z<K79Rfb%tvzbxVu>98
zF-tPW$x`Qy7#k&Y6y2%S+j<x!t-~)c1_q5NOQT}Ze7-85E<D^LuxJT2?sH4!`;<_-
zWFJH-<{BdV+dbtVPax%o;qOa4aCaYV04#;lZu2#F*sG3kF@dX(HI3esk!=XY#v-r{
zx?&F2T(&;{8735$=(IG3Ts(KUk>U^FI`!TV+erbnI-ya>RM=NGf$JWa%zt&+#cv~L
z?KX9Ia9|d<Gaw}I1;0JK83z1@OF;JKzheGeB0xx97MD{y8pxJ+ph-XB)GQeE83E)k
z$5ws66v4E+r90DcwDVLm27*LeWzsRPkX-FznJ<s3jK->U<~SvO;zk0Ebv{%wbgzn{
z^lZtHktN9(mRs>W&bhzOw4>H4XxL_HQNwnl24aDbJR1|S0i!+&i^81uyxgOt>hkUi
zMVp?@Bc9sOhSPC+gfx;;v?~9r3p9kje;vW~B-HgLfea)hAYLy-!GZyV*Nw&g>hP<U
zc4GhEbolQeq~#R?UC@EzEHRY_RTdc-isV>v+As2L8eGM(juf3Ml({|rCr-rm4yI8$
z^_pvg4`%$=wIP!Zly?{D$`j29aml@U@}O>cEt&LRt^MB{OUUncVsS0VpZIKZ9G}9k
zX!y%if<KE5@@(Z8F;4`cywfRjg5Fh=^eT+PKx|rgO}j^eLm{88PGV*0m9_im`#4}3
zUinwRAXB@%8gD1H>OYt5%F(uLoE~gZz(BiIj2IAju7&kQ{*M<3mKb=w{(uK0<oknf
zI6nggMsXDXmECW>hgdO?_T=OdI1(;tL9+EbK3q12eo@evMV7E*?TdaOb!e{P5RMPH
zOEL&b#(YC8EhUBE?QwCIyRbK$cw%!vM+a!>EZxzHVM2dim?b5lXUPxrdD&jLb+Y+}
zeIJ>)JQ&eV19LYY!4!3EI7>20e=>NFrOZzaeuSd$1C^lnPEG7qd<O`rs=HWq0tKbg
zkv!K+2>kxLgg}rGI~B>C@G)`;*kKTA{}-LN7wNeFf0Of9!3K);xJ|7wK+eC_3K`6Q
z;8sjQd^3JHY-uUvFC}rwdKae9f>m4^uc*pCj-{s=^`-6V^fYXLf5L7cKFj+mEn8kI
z2<@5Wywpr9W$>ePQR&BGWUhgR)nLsil~2%<=LlJBL&9WoPie$H1{}$+P7G$qv9Y5w
z$<&8yq)U6VKgn=5$;A--#U*3X<yY5hAOdf~5@KaS=v@@VwByPcAIF5jMz!+CgZM?`
z(3b|Dh>Zt|e{C|CUYI}bzbg=m<G>08GbYV?B5(<r9vTh)sLD~V%5pras}KPL?Th`;
zJ<XS~je)s)O_yg|%+ntRmV!PWx1zEhoA-0VZ=Ye|02$b~yu}t}u`f)mPYnhs4I@?g
z8d<6Z(Iy=)80Y$>3b757oXTGTS%Rj`shXy%5(m;5*~f6QOF;$h=TAp}P<+JiP*$kY
zs!7|2iNwDRqw7x)4+|C#gVlT#+V`)+|Ni{BKc@U+l%fwOTQO&H()OHVU0ewfQ;SK<
zJ8hf$PN>T+apy}38xsv-oG^$?bm6<iFpk{E$WAgIcI<^;2ejnTA{m_n-#Z^*T5obi
zEqLR|vi&K2I=ywORex%d(5d~3XO|$dsJEw<YG$Z<ZO{~@RMuPE_ZABIEhIF-Tgcek
zR7i#Q4Nyw!6ScVS+<fG53k6y3mNWadQtPdM{+owj4*G{e9|(ki7==9a4)S-Xnulxz
zHsWK)vI1_Q*Mjgjezw=&2!0&=l=h?T_79?h@Q&3?CG4Az&;-f1QGTf27Wi@>{Nlf#
zdB@*6G|9=1`6+Y@S&h80I{wZI8#)r2cf5xxJP+sDzmNOx>HcdB|6a9!J;T3#_unw_
zZxFuDTmH=%5c$);#_+E({F|QtTTT31t079+e@n~jlKNj`_}3Wzzo0mYn4W1O0TN@y
zEv<c-9g;wEW1)r2p^d(<UN0izIod+tEx1W{rNTW#p23Q&l@D!O3u&fI4GN#Z`44m>
zNG^|3%NqNz_pZtKD#L#eCA9lU>qCvwxFlcxgEFB~fseeb$Atw}J~sJxV2&t9wMP|(
zrU%n8ez}JijqFQ8?MrIyr@!ugbx|>?KCdpt`w+X87HN1WF}x$e`nOMDv`r7!w4H9l
z<tdcSL|y6u@$r;h+@yioaB0+F{#2tKJ6M33yuUUuWOpg8mndK;vLOFDuUZ>&;#751
zFO*yC7+-F-qfYzoM=F&2>Z}t&z;ns3>eLo_gi@=nngj{<82*aA`VS@raIyMlGf_VS
zJ%(cjq_Y1TWM=>dcGvA5!GHcRY&3T8m&wa*39(mV&}lvcYd&n=JW;K6{94-VCUs!i
z-!5l>mhlw8TK=+!1EN!$LftuzD(WOo2W2sOtv}q1quOMaCM->9*i8rRG@F7+CKeAl
zf;5+pxaU`K>DprzB1oXF>pQ;s?SnhPC$+8ei|x=1Lx&@qL$GvDas#4VXB5xPD%c3M
z8_G3BGfF}Wd+?vPPd+1stVPg?X5`9MXN!1|H&2a{3;?&8>`){G`gi@Ar#w!h7Usde
zkJ~4(5mKJpu2!m`_MDFEPjk(8jaz6&Q{hijhydbe@m!x-P8Owfe1f#Drd5orE`^2!
zE8e5refryOVF0s@-oSSezLVJ&O~jM3=&XBLx6>{T<e41%d8TPuqhC@Y5J)!G{}s{`
z=BYeC*^`QBX3SLSf>;|dd6y^%q8X(>JKq0%3!aDn_@%0t?444ef)GvJWolTUYsHQ#
zBUoc{f}@x!=vn#j9ob&Ll*R0?FZyl2e5thSU50}*{KjhaBY;*Ag~)^OVv+0Py!xMy
z)A|$Vdu?U)vRdJLxO59+$Jo6PpK$;C;3O|E4MUZX@`Fu=*7R9zh6e+&Sj3UX=~T6-
z_-c-9^jLwonp*kCFkOCTRyNCF$+cmNSbJr}-54}=gr4tqFdN5Y3L0D^uLqBi@^L8o
zDgMH_;Dx$KG}3z!AmuY>$H)Ru_3t}wM7-nk$E>&hgVAD}Adf=7CBx(~W%=#}*SO~q
zJ9k<ohhQM(FN<TX-BVM&;Jc`L*o){vSUV>)?@l@JyyR{rM>pCc<5QzcRCz&#wWv~~
zrOfqd<|y){RubI0sz?T>H^F%t#kTdG8Z7i;`m~W;2<IWo_vU}ZhdJ52cy|31S@rt^
zV-4jBQGGmyP18^vT)|l;UrnMJ+39JUP0*2Wm$k2udp%8Ml%HWyE816ROA&CFBu%I=
z3on@B&gh(1o@=8?p~GpB>9DdBIIon7FUyIU-+kP9AE|IyIU7ciYWMUF_kTQ@hX*sd
zqdp5|>cQfEKka`H&Ji4(XUgll|2^~9G5{|h93b-lN#eY|!wPI)@yCasfkCK9=FPpN
zk+>xVr_SRx^r=IAGKnq?-<@~+0x{X1Bad^J5lRLub$^^w(Di96>AB$4t(~Labm+mZ
zTF{P~Pw#iLn9j{Kn>Z8!8<#@=|2oQTFP^&BB2`<k9c$33Hn3$tGkWQNlnPC>8=6+y
z{Ni!g=y|(8$5;j|9M)!K9Zf|uGL%kW*6$#W2=^?`Q(JD1bgGqpU-wb7;L4!(yd8se
z9fqW3A5d*AaeZ-!{@06h7xKw4#jfB!8F%xJ$+qp?+}8!uZf7EHmrf1q6BVj%r>it4
z8%NW6E8A|XZ-uqcGM)kd`bcgVrw+S!jU2HCf`BE*L9`hM1!*HpEHWG{p5+d{I^fg_
z6B6FE>RcA_F)gUqs<vN^g6Hk3?<c??kfGorx)|U7*DeO<4=;Lz<-M}Zd`$QDxvK7H
zgL{M7$v)1tzyDn#*OtuZY^_Z8g<{4BxGEyaF+g?lP!a3Rw&Zj=s&n8alg36Vbtv6<
zs%%-X^y<)pkGr)c#mpM<%n~?R9TGIjb0W&D2J3aZoj%#TxdD>aa@S{0^FN=t{U_nO
z!I6?tOr2I&4d>PgosLG5e}wgd>A#VqSc`*Zlkd!KPHYVFc%8F*IMAMl!1l<|jPSd(
zsepWr9M@rrJB;RlNLenf1^Q+qfV8$XhB<{s+2Z2-<?3K&8I7HS#O95^Liu0)mEePd
z_9#_}p3MvE!K0prV`<S~Qo4z9*Rb^6$Dcj$QQoQ6rN&lq*FNqwVIJYHR?m`6STXj!
zU`l1wuKyfJwC6D&JCg4%O)X0}AKMdfKi|@lc?ddmn3g9_0$i-a8{#_4X|0~MjI>0Y
zZ4*tqH6&zpn%5b^|9Da)wBv9O)w?f|)wN}rlRp0^74W3-s3Sb4)w}gipcNz^1l=xS
zzB*5$_hG+8^e!iH5do<5wBU8Nh}2RWP?YVb6Ei^515wL_ItQYfJ%X&R>8@U3PB-D;
z0#~B}kG$c0^r33Mzk{U3Sp({WaKR*dPGLWT#3pSg)XE@nor&!1Qy&+4Ze9DYg8$Kf
zal5c4{G$ahKvelNh=5&9wov{>z8ersWbTLdB<+qFYTP`uKX~Y@R)|s|c<7BG&S@7a
z^G%~o8Pp*4bEZ_yvU98X)ZaR^Ej2dF4~)mE720{VsMe-2FV1G|j#sn!fO}yqgl5(g
zV<V2(gz$g13Cztvf5Y~iv;La97YO%N;EFL;WaFILENS=~v`UAj_Y%-Sz;#?J{aSq3
zH<WxI)`L9W9-~R?3c<1^UPk^+d7Rc{gE(BBUa$sX_71+YLR4mO!PI!i5+j+$+}Bo(
z>p)fqTAGMPr?<Bt$RHMd;L!GyWzFYek-V?(;nO}9xcni-{{rtEEaldKjUAUG_HjFL
zjDvio12;xBjK1(VgxG08L9x_G;pC!XTCXEJrL|_uJhEciNf<2CdeL%0tGxC+*ItT|
zYc)e@0TBBlKi|P<-z0MnWp21sEVr2YSh^F82nfOOo|G%>s>P)>#iBVi#VlzxT7@+4
z^J4dg^X+*iguhvAqaj03pkB5dz;lx{@>F6<x?hO}Gbl^?<1<s79d1Sy)}JWyPgg7R
zkDV*%-RH9K_>8dK*MisigE`ve3l<bK!I@MF`BI}7Tv_WyiaGKWeG%(CL8hsfr}WGA
zM?$xQJzs;qErmy2JnlN%J<zxH@YvjlrnQmQd&Uz8mv`7W<)=*V=Yyq7kui#qX^IYd
zO;vziw(HrUK?WloqC%Jv1JTqiG0Lk%j&h5H#xU6_82<Ch`26lfnX@x*Pc^k@b1fo)
zR?V;(md!#bbwA(noy{-JTIbw<T7~I`*SjW!%C{X#cMgaHirJTpPHB9KU489~a;@Kd
ziNo`xib`X&orEs!cJ!_NI?e&*H~#(;TZiwwSYs5|9dYNId{nRz{W0zPH;|(>=BVz5
zR;y<z<`-`vQ&UvMYAdl^_yp?ZM)bf<*q{F{wVal-KH{6wgD<C4S!{eS>5j5+I1Dy}
zaO0ky2lVJItb8*@H^zAUoLsYJKfFB(nsF|CKBDd3#x4BjtkDZ6kZk|TdQFnyqLosz
zjnDP2)RzI-7?+dXrnwE$$R2MA-Nnq9loBcG2OxD5T)9a=FfRmf@1l9iKYXsb`Nnwi
zhsdA$tIac#{%=b3(?OPhwu`KRB7oZI0bnr@93Ejyx#al)UB~BOQ%R&0a~1E$`H8Vs
z2==Fe7P7YD#ehIBPs^;lU^YZX<0J_(7dfkeC!nqGi&9%I(Lwle%s|GH(`*tW^Ig$g
zIptW*5zX(_Um74Q-GA>CuY`(Y2WN})&rYE*F^%`SoPna2X*nH;#PK=!5Wm{4;lkLu
zwjyEhy=+PZE1oNsV*&UDR_B^*ZlS_H2SKmc{6ppmkljE_Z_QUt9Of&HZdBG3<TFt1
zd}=2LtL%8(aL-7YrsU(QZd%&V+u4$ya&a)`sieQdu#rV%8TG(na<!U&V}!(<yN$pw
zaU(B~yA!Is++4cPUqDB#q<&q|5sKX0Q<T`oq83u-2pVbp1A{e=6^S!`*BbplxK+vL
zv8Rp1eV7UrLQUCgyO%{RWcCdG7X>wodG6Zq*q+4Ms%6f~Q;LSSx&5q{m${0?dJ;Cc
z64OJJ<`X>eHIJy^WXJZ+WM&mKT4_OU=8i)flVzI8iF04e+h`C8qyY8}|G{@G0}H%I
zI^;FGGK&o#>#m^@qVko8Mc)N3N?TryY0)2U`ug6afrn|ZsTv2Vh@~=3hrOkQJPG*3
z1ktqNy-KFN9hwBa?Oy(3!yeKR{Z=#t-lYVB%S(}H2*oW=GwfDxnLL4d`?X$~g1V)<
zBWVP<mHY?$+ynwvZ`Ggd-z~ay_3Z!!Wi?Z_s<2!NSJM!z6fW6@_?|{F@I9_<1gKW3
z<K?T*D^&7V;~T{i_z_a@HQjQeXbV)J46n^da?^+d5!Lb(Yn{rn?n3mGB!GTa6)B&)
zb)XKC&0?^Q=49|2l5LipA@EASoY-L!y<n|BL6nfKfFg>yM)7o?bR{p)Af8SCJ8zLi
zKKxv7KN-RBQ0l?%<$m~-1R04cHTz(xTg$}RA7(6GjXq{6$lO!MDZ~1wmL|#3Uumy=
zm0pD@OwA^1EX!DLIe2RE6mB6IzZuEm+<jlI-ddsGtlj2va?$u}SbEgPsZPwKy|Y&&
zjS`)<O4G40AG!LojUFrk7dZ%Q<I+}U98(?<&pojI=J&G;{Z!ygt;5f%O)bOMDu$zR
zWS<+-Ki^L9P!U15F=Uj2kTZ}VnGZBqNL)Z<toNB`ms5@;;Pzc_POuU9fL;WssyS8%
zIDkXDgM?dY&`(YB(!^T*^YHPD)t|W_k^3V?<;tX0>n)wat?K_6Ec}wo^QMwo?x?*}
zqNq=SiMZ_K2zbGI{PoBx&<v9N_WH~FASn`N_L}_Ub=XBZ^jz<=pcc*t%`Vfq)v_34
zr2I`OPBX=qnM{9jTikGa`Hfz+^K^fjiJ?2+X(3ZgKg0yEM|4)O=u(f`W_A669G?a8
zFJh9m21pY(*M6_CX4J(R)V#mow|T*CIPJ?DAjJ0u2tj-9DRf)3^$Y&{#L^?W@Uogq
zHuaeV%ldE*pXIlOzc5Es*=x}!qe{86FLRvts}G=rss<!K24|NdTT?_&-X?1vV5pwS
zRs>ukm13lCCOkKM%R9i-rabwp$wq%RjjP;AIkCp*=UU|EX3}XPE;Jif7E(}d?j?@!
zNIEyr3rFA;_Y)kH&r&l859@P~&<aE(nIT@nc{7|y8>25G7E5>A_#jody?Ns4QrVN5
z4hQp_WEsYL)w$bYcM&&a9&tm0WABpR^1T1B6(gZ^Yszb}Uy8YB2u;gv@eYA~VTsab
zC!6TDhg2b*${M;Y(=>8dM{Vzigme(k;YR6Ew^l*Gb$qIHjk+AU6`&SyM$5)=!|dEx
zUy~Q2|0q~u-`OAUDD_ZrF0r`KWwq*$-RH)OnFv8vw@WPgu-RUzH7-zpahT9=`9bdN
zO^EJ91^g+*D`}!PPX=eKettsy@aOHV2!I?dl;^Nns00vgy&u@+PyatI#xwc6x5jaM
zy&or%8;&kT<4$MZoP3;60f|D6pBPk~9X__SF`i#%2HPz%SFa9}!smPX1p~kQ@c_<e
zFinrMF#=e<OfjkjPf3DIYu5iDLsgg~;!3jA*J8QMJtJwAh94ECY2fA;sMoPQtsR1D
zTh?V}v6+symtV?pSccbBYt-Srx1FV8{c-h4>VoiF@&jraQc4YhE9vf6^Jc4`#PBtk
zYZ@*Np@Zh1pc}^NOi7R@$;1|=gN12x_}UOzY5^A6!_5oY@Pf3JO^1Up003(2ni7Ha
zYh{0MkPz?b`wfcdbD)hj|5@-8T8<{HQU{}IZr6Qcyt7Sojs|H%S-Bu=bL#XN+~gT7
z$U~(8l|gO)Q?Nxp3unFU7;+rX6@?Akb=cVr1otrcTNVZIY`2k}j3c6%wS}64oEp8f
z0$y$CEH4>&9Y0uuLA6edmuD#W$$Aj6>hl{AtHeuiyX$3%Ib~$|Pu{9}4NS{`RSir6
zTUTSsZmeJ!57ZSULQ}2@tM`l?)<>B@GDDrI%WVU%R+;K6(pPLTUpilM5V&WgQDH*X
zhZ}ch;<g1e7+ki0)-0_A)-tPAHXmS88W<8SC)?EDCtK56=$s7-l>P>ntOEcf;a_|N
zB~%cMpD#q`u`}?w@8yr^H>Sd(9lN0VojQBbGR=20l;usjm-h>jHHN&PTse-1_VXFO
z7W~b=O0u-fx?*xgj)7%3-$<R_(8lpN8@ueZ+R%j*t6zB+VX3$0NL`#Z<1^blaoT#t
zwbyCW*|$3mXYQE!<_fkHtCs*#W63WA-;*ownB!>n@VjMO3z^#rsN=ZJKhG-I2T?Wn
z-@{{ed3O(w!AJr+vaK=(N?WRAzXcRJ<!bqRxD1clez>-9A_|0XL+U$#Scv<VSQxLu
zecRJ3+~b~{vPZndc7Vs>_HT^#xjWDdLC@cc4}J!Dl$$36TbmBWmmjR)$`2SwM}v7p
zmBWn*`sGB|WVW1Xwq0XYL9D@{Je%|l3XYodKL}WB8xRNcM&9INA!D~b^Q<kEAd6*_
zl700papRNy#;F!*BEN)|`#kP^bAj+exVt7@zJ(=oHI^BEJt%H>ZkJs|#aFA=SfAjO
zcRwyIaNww?g4m3L34I#Kos|aYd&UZO%ZPpM9<UoG(s+Po!p`dz!Y6n>14Uk|F@|!s
zDp;g$B|ytPV?I&OVu52$;3{)GSVwzNw-sC5BKpT7Gnhf2Sdp1<OyG30CaG9=+5QC7
z0*g~e9E83)ZgS5%Fi>g%Zm~usvjvw_6@+#V)*pX_zIUIJF}4%sOUi2*NJIhFwA`bn
z<DyL$XZ<QqK_OpK3#IPGV*RYHCa3;#j^#<XnE3&Rebk!eLr83RD9KHQBK9})3H7)q
z*+t|po4p&ZsjHkme2^x<yG*^mIVLbC)A7C~wuo{e4inzh7k0#7hbq3<k@v1&G=zYO
zDA}1Cuh5CDkn6kq8al`zBDuH^`3(m3xawY~wJH-Rb2dZgCX9MzhLxMC;S^bLn<$B?
zQ)P3$2LSRAkA8xz%1A`!c5$GZs~h>kS4>4fpQ|h*JI=y#U^J2aP^&=;M_~(niN)oQ
zAXvt_+|^f0Lm^+i-^Xg&oc1oy-;l?_oXB|@3A|s<8~eFTHiV#hdU*<J`Qx(wv=MC3
zvEC7h;a1rY6|DILlcWV9HIwPWDt#cy++1!myZX{$(mQN-Z~)G5@bKEbFr$4aT)Lw_
z4la7_(@<3oV^ECWU%q9^aQ2Nm*z&%Pl&@@s#^HPA$1gWLxx$EsI_HP@rU1erio&{7
zidccZxo+nEC1>2vgg)L2@>6N~fiEc}hf89T_=8fPrO5AZf7F`I^&5ydzQbw{tE`;W
z&XY?rKR&(A3cdnw6x}#r<}JudBhj`k9mlOTi1C39fwU@a467qxbDWDhW&lF>Wn`q7
zaOQ;C1C*#^yk+>!WjRfkG%|{{Ai!Qwdv||`1LU0#Vizs4r&@hzPe>9B`~Lk`m#x<{
zN-5ZY?k`O&FlF_mtzMf8uT#iJM_9DOX<5Zuv)HOc9b}Ek-sg3Y{RsNPN;(RrAt^1$
zh|Exk*NZODH~30&gKv;~ppa^n!Jfj-K@pRoyF4r*Hjrh9il{}UAlW<<t;6{#>T?5M
zV>#>!R$^k0Q(@^~?JNa9-K-j4B}`x(5<l(2{Ve-+|KUb;YZs@ol#!Blr>a}hyG^|~
zUMnA}X&bOym{JU@?2j1bU94I;rW{*^efC4Ol5QDv8lo=bZX?m`(;gO%4`M-2$ht_+
z{$RYm{{`wROH$K@IWk4u!Q(b(q;@qpU*tdvj@BLLCcWNr%5uPd^#m>B5&cSY{iPv)
zV&?nFbB`2bx7GI!3(r#d!16ZAUuZS_Jm#;cYldbA<T#~bYR1QuB><o9mS-S9#k*d8
zBm}m>`wU?l>36#_6n-z2^I5`*J=ez%lFZfPSoQUnO7D~#16Au7una-1zd1OLAv;RW
zHZ3*I?PL)@cVY%l>eA><k~(Il$ev2yh<A@YiA4$DU}oHY%O;p_&@gkbYu@e^RuVa~
zKt}|ea}aQb<Vviz52(g4bM2qmT7HM*69wL;br-E|c4&ZxB)Y@y*sE!_7$-qG`Yz@-
zrH(g-?e6G#dtf3BD-%8E_iz8|QLYj400C5Vq#{xF6Ml6=HR}Ifz9H1`7WYI32u7<V
zJKe9Supr(!G!H&H)wDF#Dq6P+xLvEa@yzCZHYyEGa6<I=SSq*q8p{s8i)sYK!F!D&
zB|p7E!I4E%JNueN=WOAkX%Rn)-&f)2xBu~FNS9fp8V=`@@SZv#$}Jf7S1AGcWQW9+
zs<yKP5W>Rm3ZL%@-l%C0;(W&`;k>{3l+1PC?K|wIxuG$Ua8m)8Go+jd@qNmrVX|52
zgGRWNt_s`Oj&HS1_QTtx_&g;(iGBDwyOAaymKN4&^2fTVkjG--vxhd?4IJMQ*pG!q
zT#M5A@y=AEs^t^-umH6wnI<KB-cWd!j77z*_HvN7*R8!MH|qNsT|XxB3f(AzBv{E(
z(<D2$E}CI-%GBe%))>S~q*#MId`OrVQL!<D>>DBxQ4P#O8mE;$VQ|xcg+!y6jAOpV
z++i<13+@Kptcm~apBds0DP%{@p6Dp;+@&%#=Ns!v5KxL{&@d`som&@7BF(sGGA)<L
zMy-t3k8lDDw4g=E+a#k)jeN05Ko@fkXI1)sVQMRvYtyosM!K}|AbujoHh4%Q1c(GY
zMF>FI7+4E7dIEs>b}9qS@>@YDkZ*+NMxV@hIf(GZWZ|4sr^*~A(YZ<2*t;@!X$*&i
zw2#^xXqZaDRW>w73Q-vk8Z$ND)qaTDnGm(Ac_uZP(rk&d#vq4fjlCN!Xd7(rTJbU+
zlQOmIxfY$TAPh&G`Z$rp)w&&L^UghDYC2nX-$i=-wskHQtnW)Mxv-G}r}6OhCGTbs
zvl#`N-3=UnZ<skYb(ufmTtcD+plW73VOfFPu};0#RCE7#2`MRl8Va*q#Z3Kf;Q+=(
zfWKlt6ngilKhUT@=L-nugNp4KKT9(ELq!vH-e+>G)qgGOt1H=IT%BkTTTem-ncLM(
zMtJI8uu6gQOO~8YMZT|bpof>%beJI~<>-o-$o`@_$b~kQ-FYv>{uls$2xN7|bp7S2
zt{B6w{oaPH-qtebETggFMVzXV36iB1@1ueC6eiskX$il8`dCX(zvewKW*|sDfG84V
zVoyN>jTwC*N+u8W2Y|<PR!`@s_Vg})jYS_H`{`BWjFB)XIol5H(#!?4Bx{rzKLrpi
zk#mK!<A;6*u32yE=!}tRN0GajRWuZrU>$l)fhL6N&sg1xP*uUygxI=<4FnYP9rHfF
zeG2Qx4P@s?5cOU&h)f3e8F6dKSqz62Y3=lA@wr4eT+hQEGdNZz+Ro7y>@Gix7(hx$
z9F&Oj3IPVuu*}PeJpS}cKr8ZmP3JdX()eL=-}`XTwm&R}v${R%U86wdTc3G6=@Mg;
z_uIUBYGb6WeeI|af@v8vDflslW^9Yd-ih7fw3D`YX%@FF{A&;P^`+nZ3mqei&LEJ7
zGkZ;jI?`8_A+<Y8P{a{j$8qJWU3%u$AI_+M45i>|nmL79CmETYFNuZ&{P~o=0Il;5
z1+ggE*4@8#7`oMJ{o6d-Z}$ma^((IXk~v6};2k`gGadR)!>Caz<2MlF2Bg?PBis0E
zNXQSI2hb7q1FeLFRMPsTE-izHR5^wPqB5qLu9$)rr;iqj*C^ic-4PQ`sh?T^BaUC|
zcftEZ@wkTK$8Sk<XnG5_qJ!Dc$a4UKffXil<&+2M9x9eUVtIA47SFu=4auD6bowG@
zmS&!%%9NiROzsf@td3%7jbY3Fu)?4p8nu6m3?v>NpvVSM!E~+^6<l5)K`nsb6slXo
z*)2dLd$+%%C!6>+>+-{DX7&6fJ9PaXzGW8z{=u~kW%oCAWzA*iP8(VP?I4e0E`fbY
z{iT6B(~Md-CbKbb<hXSa#Cm!;+uWrpvXBh(TBw|t^`rhe<>ovX5PrC^sG1z}kka=_
za?quJ)a><xWFZX1pW&dIBD9nGlM;uL69?~E<PPUKOj=p44iyOm19v%V3zSmsVv~x&
zM|^`Zvd5rlm*JMaR=^i?Dj~?T3$wCbid)VgE^zbBoz970pKcJ)=VyKt!Br%sa#U`v
zEq*4eVhEI}+boWPvl0Y0>M`Q?wm121BEf%*f_y9le(Ec9C75v!s`|YoG4^DCpsRne
zz&_VMQyS5jO;a_E`(2D1pw~S)m~2iX6KlaGkuzeHgPNOo_h3>zTb5Emr;uyZyg%7>
zxQg{-rSdj6*dCx(Wc{_u-}{K&=hHE^5>M5EwfadheWp!|1zu0>_%_HGbkQ&p<!({g
zvbF_4j4HQ32LuI8M=Y-Ni*+n(o8fNM5MiO2R1&+5>J-I0Y)+EytU>LP9X9VMuAXD)
zPxqWHM5$^==KF}v+J3fJNKx2f;5rx_$dLc}I?T<r*eSy0@<e4s)UdSf*nP{Sa@hQn
z6kFS2$*0+0iaYx+F?*V_#bRA9x>Spu_F9U^w*3&Ki}7fRN1)<hxJgdql4wl8FqO3&
zd0dd?vN8Qpeic+_I8a1!{0B~#&aaF<#qxD4#X?zOn{W_<Zn|Y^h0@l}^gc-!`AJVW
zbuz%-Ty80MKadrWhZ+MYJdPSDkpLTfwEc^E2p+A>po>4buAN{R>0h`Uy*Bcvp&hXt
zXFc6s4qPCxK1dj3VLu;P23Mw=<L5$b*lkKj$7VY43Zq_sxhJw4?=Cp3(Yw!4Y6Qk7
znKRAL@cL9=I2ZR{4&^!9j5{Y4-E+GB&38eJV*3y_q=cNUn)4h;{T`Oe7Sc^@PY$p`
zIzJWWr6+p<N>E+{4Q~aqI>}Ti>QXDfRa1rqQ!ck6SnbbU3)+uG1fh_4+z!%;70phs
z<G)!XqWFa$@mwS?b4Vv~^i`5T?Aq7!^c7_yCVFf2Z;zG1c`C-*mXU56SmggnJ=6wN
z$^}#^j7OyFPY&Uc>4<JV*ZKBmbSFdsH`%vS?p<lC6)aGnD4oRHp{Uo^f5K|%$<EI|
zf00fDAa%NCF%j=rb`#AMY{R28)k>J1q2)Xl<Wju&5?eb%TtQ>&ZoJUc67<Z)MxM02
ziJ1RVFTxfcc5WNy&ltntGCCIqPY;2`kk;jse(pMe8|;quDSad={1SNTkIQKB@Re9c
z?$P9g2IoWEC(G2&vuifjsqo)cj}AXk>_J_l(ut%PyqND1Fi&7jd7`YdE5ix<h-S!K
zyfAXAlCMQgCoYS-A5hwDSX<$9d|q8tdpfJn>HuR<P3X8PurAwQIqXq3?J;v~-}W<e
zPb<}HqkL)(-R1;k!cLcHvYpa-*@$-Z4vv@@M=v7*!gN?gZ+bS(S$_T?l7*l-QmAa_
z(1)1-`EBYTB94l;1XB!Bhe>}V1c{h={R-b(e(FsiPW-h?6+$?2Lgkjy$7=DQfon(x
zL4NQ|#0LHkoxL3af>F(Ukx{R8L{~F<?`(o^+rv5Lrpwl_Inb3-!h0IOoy%#HTggsn
zGLpv(DrOwlAlJ=_qX;&m_b(5V*S`V4yT4YAUaELX==}JiH;KnVykj`%QG3%w?$Y6q
zQ~{(T=q{(guIL`ZmkW|tfLLrJ6}rns^=X5hvo$Hnd8yQ~xdW5zMeBCp)%)g&Z=Tx^
zKWH8tB|<1bW*<AhASC?8G@D4A12Tk@)4CsEt`VXCwdqVm&{=ATu)jbi`&~mgUyg7P
z&4@rU!`Q&FUIW=Edm4A7x}AmXd2nup0z7}v;`eEGGK(!m`lJC(3hFfqTK)Mi3i`xT
zPe6st40#-M&p0nr9qiei5t=dgpA7OC!yM%@cjCfdDDObE1T@M!U+j!g_K>-37a&+@
z;6BP*=7a5-I>F_x(`9gH<LRQz^V%!J3EPUWHOyK5-xCFDZ_HJ-G`F#c`^A6=ET5G1
zxla*wp3sV(VEq}4r@z8oPGiTkxXVfEx9FeEDS>wLd_uz4bGPl=ie4R@rp^cX=-K3I
zF>cm4xG2urmDajl8l(C1OpT5A4cNF4B!jlV<iqP4DWS$Gl?^x-C*-zu3Z5<1xXqyC
z=H!dsj{&Y3M2Zz<CXcyXlh%2@MtG=fXqS0)>CDXV?*gIJ_;kjtz2)zr;Z#!Ua|cUk
z*|#;KU%vr1fxYbkpcho^Tx9T1OeAKre!Xry+pFzi!jWo1_&B@V#1gzWSNRuKf18;i
zk0(^~%T?7H_v-LawV~PaPYySMw@L3-v~*qkuD&@;*Vp-YRER!1`7DXwHsg8an0DG+
zxs%sLGVEotW4Ci3m_?%$@QPaf83ndzgSkWU>TDIHZzZyWrI(a_MIf)lu)49yLmz-1
zg{{$|s}?h$r<vkL=QXk=ZG&z(CHLKIR=0<}c@ex9m(g@9NaDD;YnHd;9z@Y;J_m#c
z+o`|^;aVdRD#^&uJ2o3wPNI8%+{a0B0_B#+oNt&*!hhkEK*8dmpL)nYk7vKM-OkrQ
z+R(6Upty}XowOTrnt?vBn1LhrRSee&2D)XdqnSZXB4@on(-+S7n0_pb_}wIjCoOxq
z=G2t^`5r2q?=3B-UX9GD9bB?F9I`5?o?CcX;Bj))^TvOv*&%ASfcLwE@K#HbCUVez
z6R-9O#j|Jix%c>$v<j0m1NEBnR$Z6+JFsv&)UoXsyF}e3we9|u_TUE-dkxKc`H7zt
z50DASuNjOSw<Cn3K&K-cr52msap>FE`K&g;filUpIB6GQb?y!ncPZX_CW|~iM4wVx
zCU)>6ffQnM&xTa}X{IEJe%m2X@?$lx7AU+^Y8#CP?&w=^M}^sw?%zd5<pZx?v5wtr
zJ(d<PdKJxxOzq;WnKpBM+TX5uOWJtpCi##>F0OM3e<g0OO8vUz>VWfy(s%1h?$0=;
zL-CkHhl&P4AX?A*VZA6DNsB|~A2nU1TQdpEvRV)vPdkA=t;jM?i#9d&Gfc7w3sC-Z
z8&RoYfwTy6D~!(iP3pnMMkb_eoQp0&^~>Oi97qm#^SH**(XTV33{`-`=ahfgyw^A3
zI)J{n)Dub7ftSTFhYF|wQkD;_ti#K9rYaVb-KLa+0dK_)#bH=&xw^n&KX$fwmh0?y
z%#x&mbb=+ExF?bM6z2YcSt02mg(Vt-D|CQ&!&$&)L2h&VE-IMd@>F?$G~duSBUxCE
zfAw+PE4OO%J9JN#71j?orrRleNuR0`C8PV}F&ZSOQl^ak&}t4O31j1npHUHno*caC
z`O|jPahh$tN$CD-6m>CDsa-4~#AR(X*>$raEXZ(bvcP)Loq_b{I`7&zx{=-Ocbq?f
ze5NMXZY$*?fH#@G+{2YLlB;VTE>LCviIG31^c_zg22XZ*dkA*cR}K_f4l0k$fgO__
zr#?SU&b&|4nU~-r(M;OUY?d$N)*p7Ir^pbNh2A|#XclWz)i#d+z~`fjewU7}p~ZNp
z<&Qw!?n#1Tv!*m}>ssIf;wWy6>*bzsJ}@q@N*WkfUjn?KPNLej*uw9k@(k5@yw>9T
zSG{Qo?A~VV9Z(1pKLfUd75>#A7W<VrnxjsHkFwxdV}_dbFZ3%%L&$8Cq5k@DSXkX4
z(uGd|%o-O{0TqK}!Xb*tvXY9B5m6XRyM1_nT_J+LwGhDUnV%2%kRToG7QkS2Xen;h
zYW(B-LJJP9j2aw74FpROz^KBZm##sx+bgd-EE85s$3V9$Z2Im1tuV|h;kurhrU$mL
zJ89D$Gb`MZ!TzDHPbJA}W2}V6m`ec7$kG%h3SwJIX-FRmZcm;c$AD1TOZsSjgFf$P
zrX!oZy2Z7G+JzRn#={x<c?{^r0PCpVUzwt!2#)D|c+DQ7_=~Q6KncHi=lTQPh+bPo
z1Z**;XLW|KE^UAQVpgXnlC9d5pt)(1@b*nYJJhW70cVOSsT#$A;k!D9*p57!(Uay}
zD$Mb#-w${ucQ9Z;G0)~%8UoqUAHQw$s5&)mE;vb}EjVdHcPA6@EFx$+BY%CtXqnp=
zlGDyhWh3lFR>$pmK=eXT%W1L62#;2=(vO!#KY9hXaYtt-+=<nFcKzL8-eL&RJU_$X
zW!sXBwd&D>A_rH*s+7Pg*~iu(b5j`RujZ!E-bX-TfNe6?3O&phN?*fcu8w~N+T+%1
zx!EECZ9ux2@ZoXu(?DOvOv#S*xPV8p+W(aHE*yxUbpLNq`i7pS4t)DdWGz2j>j?tB
z^U_Z+I*o+48!yWS(kR9p9-)*fymkTP5>yP3ntJJH5zwGKcz~=mnxO+ae%Trajzna(
z(+XZ=rb^S7eEQ1{JPSW*OLUDP9kE(CN%*QM%|~H|2*`dEdQQ}e=Lu}8tqET<ejaR8
z`0ig0*k2Lb8d;iO5M(>fX<O6vtpd$tJ*&dH%i{Z_<D6=&JJ>(4KWLVb?<jl6fRuL>
zpll1jFqmXb17#~#PlW_|EW25`(iXyKTQVWx)tHxD*s-iOOgQjCljn@_71o+k)yY-|
z6(N}cq*fOWuNx|c3bHGLi9b!zur4KDcfPUy>3mbB(opVudvlfc!Bgr_+KH34>p!lh
zr;QA^_yT%cC$?gFaEK)Q<aoZLZLqC`K|h*FgWP8M%Em5=%Il%k)k>S<Y^guG#2Rjy
z=mycFxykyKQInDH__GKdB6WY)i-VZ{a#swgT2a8xMYNxL=FA5<Z2ZNq4Vs3+{Ze?r
zzoRhH-ke)%XO4<Nc|{@~bab;We5*}kw0vlW;5cjlpmwhl>qj*;%P(_j^v?e%6xA9a
z<=->(g-r-Vle#_!NKlUN*zq=K0cF^XlovhUYiPTs1!Dd*b&+QR(&_B?<J~{T5NPQS
zITvuPMAbveEZG2==}YOBo_oAeXHJ_n<cs^|#cIrsih2CIdcUL1G3{W1OK+p7hc8~J
zqO^S429WKIutY+iahf$SpxZYF6hz^*86ml>t(Uvh6q6j`yhRj=9pb@(gvyNV(I_N+
z%lUvj*~RC9CpMz2!i0LLWINAQ8e8wSWoIRxsA{=N_&nI68OZ96(hcEaimsS$Ox^|6
zUNh{bI#LCWYtNr;BNjcd+VbOPUwa!!-jTNZh4SXQy_kBk&cTrZZa2xtS1gh=ITfwk
zT*n*iNgS<2ObDuXvK)w=xrwqFPhYtFAxHE)%u4h$1T_jKzq0CoG$9GGKaazdBj9A7
zHs!fnNJ$o7FCWZb9SAo;y}!nY$Ts2U@mBrbtJeKrvn!ciT3$-46`Oqn1d2|s>zax5
zKQ+@|<VM9|w(iU}>PWzmbJ0kp@EwhT&MFVlG+V9lp|l#4avB6nnK^AKbxs=BIP0Fh
zd&WMSn^!ZtBCd@zy?SYEXG+N=s|w?2z8Gqsl7PL?oywyJM7j?T;`j1;tpR_CQ2V@_
zl|}?5764$TUpd7dTk`WfIv7aATgqrX^YUpKoxk5xwDe<1=lAaoX+x}voyE?(EuOa<
zq`J5{n+zo!wQ4_<J^yXQ5+L7&JiZJR$^m<muq%0+>ly)D5YRGmKemctGgV-YHXQWZ
zv2G?XY=IrjCRjG$;eLP$a!e`lonHA|3OvGuFve?z7~rqVvaU+xDVs*OrHACpI+cCa
zbVc+BVSgJ07n8?T&7Wf`!hg4GKU|%w$DLX%be%q{s@caxet2y=Ub{EB=aE`oFBt<N
zN3Kp$8+Na{JfeF<oB=3Ns#m9QEYR+}5|WJ20X)z#YETmq0@Ekm-RjS+d4G`tXGjhh
z6z<C#>d+fbG*-MA9`CPKJ{z^of|JmygaSnK7BVUJ_PEwm#TE?~L<AT0HWIF3t~mV^
zkk^qzkhuD$aRx9Alk5s6P2X1}3%FmF`ZK*}6T@RlPEa9WC94I^=L^0gEes>OQp8LF
zx83n{SF43s;n^A{p)!tLsKJ9Vyxzlgm}=hp6Ed3$hAj)?W3_vW<Y}FKpn0)>r$B0a
zif%n?n^74mMm$#426d{xy5upoa=s0U?--2hOjlFzpG?=oA5+=Z=z(r?FpI3`cTO>y
z+Ct4e+g~;Hyj7Q0aV*BARQySP>>yuETyg$8$U+N!5kSvg;x9LZVPqj(Ea34^@~VGO
zt>$tt#EBR)diGui>Jtn(Au)8+%~yhYHvN#log<q6My}8vbCDSm`8fYVU`arrU;FZ0
zCxJ?1wO=gYo_3e2hwI5AM^*Z~dGvYi(`ZJmgc&u}J9$8{T1x#*U31>is1XYh1;{^r
ziL~DWH16C;+2{DFLhacWovKub#nGSsd9t@T=Kz#k02IL}AiDJRo>S5<0A}CcvD^{o
z;A78wJ=<_uOqdlfRCk`&%RPo~eBe{#)In1W>9TeLyPlKcsR3TwddqX=s;8!YA`UwK
zuy^U6cIv&BtDvFatNO(|CkIUgo`koP_+Fud%Da`83m16>DGvl;jl3sZ5I^3d^Se^K
z$m$r6KwHq$EArOinh^KSeIjHEM0pKN$=r6_PHyLXk4{45ch#>H_j6h@m;K~g)Auj(
zQOW%uGd;yv$`9nS@0}PX<jki6qy#SYL^*_6{X^e-N9_3*e+>?>a(nA(59(|iyPWOr
zZob8F)Bc)Owu*`}?vOxY9l)hr+ZyZi2DEdt<tN==y*Huo%W5v*l4@Mq(!tomT>j7!
ze|%C}+(4bn*6@MFNssbKbpa~`?h8l0O4*VBEqnslmCuHJMu)QF35SNUS*5Ny=rK1O
zbWe|m@|-(#er&!~du0BO8*D9N(^8SoDKM4_0_&Ukfw(mVSc~Idx4fVON*Bcp@jmag
z1pZ6$>ZA2oY(uvf7(DD3{~#~+UHVC|2rG!;yoOK96sc^J?rJp!WG#1bF(QPM%FMPq
zv0Sh{l9s3=8%y@rpwW_Whf3rx&i&xpO>NHCm!lS24@cI~RWNdLN&q6-m-pT^{!X`S
z;2DhX9aG)@?z<^EJ%HE>h)QuIkN@p~Kg*ZGvB*^y9xvZCdWg|-@8arr0hxW<w(}Xy
z0l670)g55Cfc%*&=Vcrh=0jd5=!v|v^awWea)WpNs>pXl{fbPowG{)fz-Vs}!erTi
zLizwm%7x9yvbA__#8cNMjQqmv!0rnHB<4T&xW0^)0fy$137mqZu1v_%@&^XE<-UX*
zF#5t;qmj3-6Q_`PyHckO_nk5SpV+isxCcJRDs6UT47x5^sqH{*gHanczRohr>xc;l
zlekZf^?$1)E2^ubO4E^}{#t!ksamerM+|mb{lstg)zj@EzY>f{5c73=-T9AQqX5;R
zB;`r^Pf%usVuI9ZELAo^@&hbU-}+4(<-q4}oLOsKxmD<=XWMgkOc{bx6o-uMFC*xf
zjX|n(aMa)lsGQ39tgdUdrGH{1*SaknTJe7CsJgUfd2o!$*zQ~mEbG(bwIx<Ll}vAn
z_7Y7uyycW_SuSxVeQ8phsP!#PGu-@rUP7!n26i0fwNnbB{EG;RH!^$}q<F^j^ASn1
z#pLSUWUk7KqVe}km#*W3Ro3e-TAIYZCIm^IS@G&7{vjZQLKQPH7MtOgU+dsrTGKC#
z+ef`$)!^5hR=8cp*{=1EGu6N=uio1w*}_i+kjz}b9E`wodR4}tkZ{V7=eSkH^so-&
z`p->zunK*>9!qygI;8w0aZVbdN`QX{IPvv%XFd`(I!#47YX5?NE=5KuR7eh0*{fcG
z##Uvq5<`yGnN{CkZoM1ROIS4dp6howsv9Cln=w>BY3Zl|+fE!xux@bnX{EZ#BQ}Lz
zHEQh+PgwqeMeybPoY?4wDbDV{6p<s%yeIcv1HLw`mB%gabqi(kZ%9ja3bko=PMNye
zf5r9vm$LN=`ttl2j@AeW_Q4cJ(QDaHNiMs&4?Vq3hHvMaUMPih)VrRULHU-~_a0d=
z_!;z*5rbTw`jpQ3XhY`JLX6qV&io&Zn={EAOHJPz-(~+FfG{qAc&_XGDU2i@9xHb?
z?(Ok|Jb##N6dkdfqYwg>onQz`7z*ceKK#=kelU`M8<}r#8Uekz_M!5LYgY)(x!JNY
z4rQOTtP}<%bdJONcopAR5)E9O>}IR@ttT{G{S?&=Ih@bnG|V*dz2+pZ0{l_N7tg8g
zS!jXBVY&>Nc!*XK-|Fia*{Maq&y<7~fRz$Y+|wJRp!egjWUsTVBVc-VgP^Yz1sHLe
zcN%41M#v!LpB#Ru`I(cPt`ia8Y<b&xBb+Y?!O8Bg2pN*HEEe4#4gsApndtQ=DQot6
zHNTb;;x~4&WBwvPLjMqH8v8{;-W9yF8-G%}yeVWomZ|zqbfS6m&sp<mXNQdVp>Mgw
z9(S?xQAoKm&Dne@V5BKnR`-Q|x5&mELCm`X93yS$5C4>7bC7<yle}C#SRD0#arTx`
zRfby^s31s5NlBNI5+WhJMM}CmRJxV!ln|u5yGvlxr2^7j(jwgr()Zbb=bUfc`|JKe
z9mApT^SmqOnrp80Rv<H7UmVEhtFO>>=j1xSlCwfyW<A&<Us@|ZUmPbe?AS?ddMgvs
zFy*v*2`2EeWiAV<P9sGU`0dtQHyUWsaDGZhDn5KJ!XAh2V~YSaq#j+v&9#h}b9}8_
zyDT^^S!+%E6xk#5a!{7z%LpV8v+!Z;xx8#S_k5OJ{>tY>tGdybPPTrl^vd<DmOsRu
z*4OOp-@tGa*`1N?wf=?H<(*6jHo1zqPt|Db<1x_tme#%)(rg$wvmIJh0el$wwa1xB
zC_7t;Yp;@{@tF|!*(zInfliNq^N4^d?+nSba~KEt!=SMjANMcIx8Jy=i?Cy+!t@Vp
zu;Lv@DId%dci_Va#EVnR=NNN>CcFq0Nb2=c&fm;3%D7Aj4n3R6N<#gJOG+7%dDN^@
z*{0G4FP8iD1+@wf9$bEZnVi;#Gcp!DJCq~HQ*AN#qej}i^l*oFdaOGf)vo<Z{rIT#
z!?i=-2H5}k2ekKp4*%w6LCIoFlRiqcuDcwYBZ_5qe#yiF9X65)=fEr#ucqH8|8xVk
z)(kDY6|Is<LgTypQ!9idVxF0V$ecET?`6d|f3SZhTfReC_Atkvl((vT%YrEJ{jkUA
zjwv8~w`(|oCgcXLtZ{|;JX&-9<OYP%gnBPEyQS3{_umAK(JH&Oh&_yo)o~X95`q6a
zHRpBj5wNG$K15er$FugYKp~e=8s2{&2}69#nTyt(k4FE)>Co3#FHEKf7&=B+h|YXl
zn7@#|P?uq}vJ0JE>*Fl9+sG}W`p4zWW@6s4UZT28slADn5p|Ws8h?7>wI%&<vFp4F
zXVpg|y}9|We>|wQiaN5DnqX`1_+oO<JFyh0-Q4}n$f3h(rzj-AwTBQ)e9CW=^G}d4
zrMguC2E)Savn<|o(^g0Bg)bF)>OJ1S)P7tG#`)F@ZeP7h;4CHXjtTL!ze-y2!*&ub
z+5}nj&B4@kYEK<#;$=&&kl`;Y=1Q|SBo>E^nl)K7MXOG$QTiht`MKnNlsM{n(f_97
zwC`timen;G%E$jpIW6RB^v)VxUl}-Lx%j85-e-ZjC(xZmM0pat_sxpV6_?x5Im;Bv
z@m6nOHTy{=zoWVQ+kSy@!mjB)(h1n2=sK#!bfXnzlL1z^5MTlr?T***pv@av<lc4c
zN6*EXIIEw{r4jElQ>;Ru?fCiOrr>mv^5(t<8zJ^`Vnv3N{q{5^lO|VSQ{CC-ucpFz
z+~4G-mCiw<hw+#l-nEQbZ@-TmS6$sJI%d7e*)*^=t~Y}nXybx-2AX&^`D1n|;U^&#
z7frDRU#A-LmF&XoKiuR{J|hiCVFKEyP8QA~)?2ie?juaW?Lge_7@&GBT|L3iWi?oL
zbOIyc$>mEt+8(iLRe!NRH+N3t4*|_lBoG%YM==?k-BHit@w5UTfpB!FQq%u0T?#+V
z&BP1S-Neg16j;j53m78-do4HYr5}})5AiJ*Ze=bhXp5C*v;)m`XYEQ73vcrjGa5nf
z^OERETqe-+8J}g*J&SA8%p<ygiF6zTw3G2+f)ht-bFSx=P?PazlvZq%`C~JnJB;#v
z%J}>K5@W~Z1M+&oD$r}7n*-XDgwatWAP>nt*LDcfQ8ptO(S&5?aEKsw+EY%@$JFj@
z$8dD7s3Sl{g772P6jvslSF9glOjTOVejDYBB!5f`qXM6v|I-AwCboSygxe}CZF~mC
zOQh*CS%BJH5zN{@rxcj|cGniIR68U0BbWm^mC!~pa;3kG))RUt#5-2a2Y!dd1B?kz
z_pg1fJh0Ja$e5IH3w2W#Uia7UM1g?;76FERzLoT+3I!wbWsZ#{X|EQDZX{@4fZ&5|
zxJ<0&-k0n(+^HCJpZDdI@Rn`H*_9{?+kP4QObh2ABHB`&>lBo_K#?a_Qo<2yXEUU0
zvCoak#7Pj`uz^=^8i{iw5`yg!XrPgC0j*yeFq9BUQ}KL-DekFcj0P!sYiPcEBh3)B
zY;-Do#{FiP@bkQOA9KybeVOGfp_B6S;~f*#Vv8iQA08jNHh;}#A1hmhKV~z|YC9g~
zw>U_tob0KqHgB@%u6j-dn-tG_11w+qt^Uau&r^G;+`vZs0sHM=+9l1~G`WU)YyWy&
z$9?w^B0$4UTJ$IRUObqzqWcG(p${(Bauca1@tLBS;I<Y&zgTRwrp?`SDA$Zt#P53d
zo{iQmzd+H*sTLjYp>!vhkXx-I;!n%3ran0LG1E6OI)qLAJ-%bm<=`;|Sj9qKaIW;c
zBG^8X6=b$*Jn{o0Bzs_5hO2`fj2zeu^w#<LA@8nS3MNK=k#2acpFLlu;#;=&Zng0;
zQitAvc4(x0vd^afT2;s8(x8RZ6|T0y8m|`Q`n}PgDPmtpp0PCiHQ(ev`wI2|_?=9{
z1C^dEo>kNCp9c$Bov{jljZs+Yx&{*u7mSp$hi$z_nmo((E|^h6Vx&xBWKL1IOe#G;
zC^d8s6}gmpspgFn++`l0rzKfSoc_)Gbx@To*r8Xr(!JbE-i<956M@F4{cK#@p~52Z
ztiASQ#bk!+X$}skR2W~7C6Q0Hj+U?c9+zyBE`g4vo-!#=gR;%8nt_3j_aD#R9;2G$
z516LhO@ylgXvy`JJdUmV54Zi<!v)kRu`35eiGNx{s_=fG<?jN_!=pb?L7@GQ7`Xn+
zQhsKo2WE^zECqJJ;K-^nOTG};@bM56ixH>1;re_1P<`mp$msNhB+k$I<vDqwwj6>Z
zKgVB$<K6vc=iR#JO<dXgV3@D<77Gx|a=7+)HuQ^%1rkisp$J?`ePb*Ws?%ei!w<7`
z%Dn(gNFb#W?mLX@skr**OTCXfIq{FMGy&n0P`G#_bV`9WlyQ34;entA8?MxRXzxTe
zT2Yq2cWA?^=~QBJ`dwq&Gl7MFZM4upKHB=|?(H!SrZlq15gUbquRvoM^cuOh+4htw
zp4UpWAOpo@+3oC3KSXbsi|VX6MQx_~=2Vff<F^;Ja59~6%cnP)OPxodV!EfFU~`6q
zaGT2gatiVZ2!|g!Kei|Tu2ZT^7|)(2u+|>DHY##AvoM({Xxw;jiQ!OR^5si94XjXJ
z>jnD|c&;@X-YQRW)d!Qk(BkAfu~k8Up3Ufi&$**Gqt(Z|-qwT;6HlGUjO^bpJKZN!
z$wPW|1fiq+e@)c{fqlXc4vAwHW)t}xf2t~N#b^xWRF0yb#xSLJB+qOI^b@(LgfB$+
zVzvu^DMN_GwAVq%5Mjx)4KK@g)IH=7OJxvH#>|9iD!caA8FWg^?Qo!d;HxoR!`E(X
z2FGBhv~Yt#{`2U>G#yU@Kp$l?fI)YIfP9?B`U1K6<Y24L+*Efe+GN{6t+&Xby%}r8
zsU9@oD;hG!!!nS<XH}M$O0(y0Gox64x^y-(S0jH^o-UsKo{<hl0mIFDGJdEAk2?!o
zzc0)i*W4O6h}FTy);62{%W5}?pnkrZAg<I)WJm31$nLgOki9>!iIiFTMzHsXT5sO$
zXI+;|Jg22fg2l}j{n1^q%Hd$dDppRcPKWLhDlv<%)hd&JOflX0cyO3t)s%}JXY4#F
zJQCw=6+M4N5Y=;TZad<b4pz_%_aihsV$9+dt;Ft*tqvqkTIb%bvBs~L@6K~O9UZ^c
zN{50$xwYYH&7wN}YDwb<xrJttpWTkSXd3H2gYX9d(;Q#HG)FQgXh=wbFivAJm6JKG
zQJIsSShu6vEMJ+GqJl=iOfsR{2gca5Hz&nZyGKlLnD#KG5)3Blho!)B5l)O><5i2H
zq8BR#X4#tK^_it8sWZ;D;?6jlLZS<84WUhUt;Os+4z6r-`Tq5?kHJQ&v(Qgj61?vI
zn`UMyteGhi;XL#-tY_Gz+_|A9hPP?kwp1OkjyHmxJ>}hpaGIdVsZw*ri6;QP2=js+
zoX)p-J{1pw%_J&lm_&}yEnDt($IKX3_l_5tFy^b~rdw#ZW;y>+5i^X(XeZZ|$&tYb
zp*U)v5fmR@-d=e&eDOo28B7}C5ZvJbPn5%YqX0@J=*e<|soGh)y6pMRq`}Um0vF~{
zXcPBKr`aN%;wq@Alm9{|o=sz&6OUBmRMS}mH~n!+&w|o3pB5if24%H1+-X$f(ZsQ^
zcW&CmSS!hzfLkYv=1es9uyL6bYlJfEeB~*Ql=FBDAArxaK}_5yC|Zww3dI?q(HGx;
z&xK?eT=|!wS7_QqaV5~XKiCgQ@dK|k?NDJYd!MsVammBtYZYGGChaPV^B?(VS!*Je
zgwOn=7-*XtD>Oi<!eb)v2&B~K4P_Uye9hfh)hjd<X}#$D9<g@&0>oSVIyb9gfMK<w
z4(_dC9!E3k67Ef>S4|(V@R{*l6H50T8L<)fy~#^MXVGjJvmTIGs5A%g$h=gjuAqx!
zs8N%=*AS&*r6&xiWYzzCzR^z+z&ZrpY!)y|PUIV7BGh&*(_rkO%lWg>?}zm+=m8{I
z)x<kM!Xb*$lsIg9D}m$?6PsPI`VrWlhJj!xqe}-m?s(*+PMkZu8f>j1tLR!V*3YSI
z^zzS7X)_T^SKgDP1B1T<&&#IQJ>PBq^&k<>L!z504ECGez7*Y<hizu^j0e(;c;p=?
z5eO-DzR#2DcR=F!GdPEM+R&jVS0;Ewv2iM`Ii8El9p@?J+h@=M#Yx}HS%EE~h+oJ5
zqmK)ljGJh>oLb`O$NaYofRA9HFTPSqg0Px07ZtXGX(V5lLm9t+$oXiMR#oR?w9(O$
zhzMA|B2hEL%`(ZSHVJEe{_(w2(Y%D?PtHjEWKVmr<(HG_2^yWW&IT&wAKuqS8te;i
za45s%+c>nB6?;aiR{;5kQ~tzLVi2~&8Ig>3{s^ik#gGYN4s*+-FDAHCQMS+C>JRJ*
zymZTeDd)H*s4r!fypBtouL2#DMj5}sHbW^V4@$-AD5&!|Y%;Hhk6FkGg!1owl}g=%
zl!#!~(Yx+^J;!Oy={!rH2Bf3D8N#A4<oqvAXvZSb&k4@ll#lhc>+=#F1%IqKWU6-l
zaw@2HMu-JCQwRCk$_A`AAAw1!$-tKxcA|pHe7r!<xxZ<19W1)ETH$yw5pIoaZ1X8p
z2#N46a9#Q@EV^;>ST_uazS&(<h1dCvXY0y9Ra5Mg_-O~}{A7m<V}PTA<VzQQC|F|?
zNjf&%v<aJD9ZVPTRxJk&_0F&9^-sUhPFhv=ua7i~jEFt~Hip#!6YQDG<w}EKricKh
zpOhhmLK^kE>t-y3eYg*vXbl(nXCDqkY5xWLn1;Y!rurxHxp1I!9b>C2-#AuqGHERL
zJlL6sK{3aionijKmmoD7n;MC>^{ERXr#>`q_>*xQr&~E+gT2Ax(Iyzc#BOO9jihoJ
zu0tY2uM=z-z?u`i4-Z2F08f^}l=IS2XVZ_wE3frb#Vjr7p@p&wV<k>J>Jd-L;EEAZ
zu-_nmEun#1h+GAGId10DE(iW(&51-%%43!i=zRECt}p3o$v;p)&1NUQjC+XXLuS|!
zl!ioN?c!pibNHeuSXIYK-j7HI4h3{}fOV}C-Zj<{5WtEG`MQ}=u@Gi$n*16i*)Qgf
z$Mo@RcHWGXIVpde4<ovluoi@y{7TWkTa?!C*dArNl)Y~=fHcp8o*J#>ckg2%4Lm>h
z-FX-5xxDWgs`Yi~XZ}#V^OAkgL7*iq9LpBWD0Q<9?uqB3e)nQ5pR@u=1Fz=_^asJT
zTcUvvWs(x5W!(>Tn?!W~lCVjms4#DTjZ*5MW#yexVy-57FohWl79NOZ@}HW!xwzDV
zuDXRtCK3io7=g|-g(7*<<Gq--<7w)U!k<xW@}+I32P?948Q0r}e21Q3SlU9U;dE&+
zQkJ7cdV{GwihoSSwfItja&MD+IJgR<H88RCQ_x&qh=H}^z{WgK9zR(Ez-rfCy(dD`
zm(Z%=v_L9>jWd7TP%<4C8`)U#8zl-n&Fx|^>9?;BHHyCDb~-q|n*eO$>3Qr7y_g@t
zWR#<L4;w5%u1lLO?bANvjK|mkn(J^dJMY9c1ngA#8LQQC`LC0Q^%z?~?{@)pD2)<W
zUk#x9!5sQCoBD&e3ep~obg_nQ0pL2MLjzk=f<09^^Fs>v4OEHFE$&BR$e&EPvtr1u
z%@&fKaqZCmB(U8VAHN;I*R)a$8cRPfn)7H@L?yx?mx!V>abcA_Fx5?{%3Cl6YV0Z^
zwq5d9Mcc{M9G0#@4`#@9**%mGIjpCI!1%o0PB0NWjvYQW`nneQ(3eYQDNIO!wF_oL
z3ykRU>7?P$G_z*4)&Z2ec;WZKEN^Nv<aDGd?qJ|iyX)XXut|#O<8K_d6&(0ZnAK7*
zg#HCqyB?6pZc2&1&egm68?16tM*rziQrA}&y2V@BGs@Huf_~xQ_iu$);tbcRQl>&h
zUvSf!Y#h%Yu=uR?Zt)Ek8$3*H7R1~j3>rH`6RsCvk%OPyk=sPw(J)jjLGYRqHWn6+
zDR>5PKkIDl;Ao=6%S!RkdCI-lsz^1+0EG=`EpAoMed&+MTmdTI&NaNgC{#bsnnU^Q
zrNYwYC}}XhFDp3ntnPWjuw0WXqWt{Iu~l=QGJoe}C@S5-N;fTSET2@DTb&kYt|Oez
z){yBREK8TKEnwm_SUxSJt=?NtpWm$Lk49aRjZL0&qfPa=%AfyuY$Nu)3`lnRV<%y1
zEr}Iv{Q#>I*v`Nx>b+7O4|_0|*Cp@wR;c;wx@$o$N_|=iQ3jctU1WXCJLsa}wz92t
z$vpQT_Jz4`upJ;wsg`fniYH2B^Z)FVs;C8WBt7cfZ$FkU_m~M#nt0>$?Un4UsP*MF
zJszEd7w(y?(WzO#{pr$aeuz&iS}`>hn|`>b>U-achq9_CZBBK8<U_NKf^S-AI2JOk
zFOrDiiaFQYerD)|Yc|W<HS{k#;?skb2abSz97PKp0qxztzQ86;Z21;`@=?_FCnWAJ
z#ZE1Tgj8o237xzIpM11%p%XNCrI_IyI@)q-`C~U-ZxJYkLiLrOf0#OEdgc;Ps475T
zH~ttM4Zk=1sU*SU^F><l74OXVE(r-GTn=mKI$(jyJ$TqW!BGO;QSH;TkT7T4`gRNZ
zQ{!R(p-ffU@zZ2B9p|;Bp%Y67ou$eWOaVt#=cBcCC8jkj)}-fnp>n^DX8N=Se>)Uv
z%}Z*$1X_a0aPEp2iF|6wr(24aIM$45+TcUQ#d?*0-M2uo$8MrSE5M-Fzp#_akV_QO
z>;3p}ATu$s(&uHB`SApp_cM9;pIuQDm?$LH`rP!^8@~g7(RzHo*2X&qoqVTXKGR&$
z5|G66$(ixAajKr=Ms}6ouUj%d%C<<Br?#XUFiOl5JB!r?c#ieI5ShCW0`Dn47`eG8
zulkbC(TS0}=mKy597(prtGKkLfP@8F!WvEw=3O5#CVl)l!3H?PDeP6R8Zg{3k&{gv
zuL)ONl}lDXVxubKO_sFo)~}s$d^?E22@;E8q<{rzy6b>ilqUFC(#kF2_?s5J`hI}1
zl18dCqiSK5v^MF0VDASkR@22+gzu(2!ET3x=R=tev9^KYLCeKihDXljSNZMKT&nSC
zC-p{oTKlElk1~|a6Z=0DV3ChR$}bpJ?zg53xz_W6{|E^QrZ>_{xqK;c5S%LGHeGAu
z4>h0ZpikVet*Ca$^=4_jNO}k)$@Ii)SfFKo;BkKf>>W#g#m^U)A4Uwf<>a^U6|g<L
z_7*qW{bDLIiP{56*j61{pQ4dhxzbwGEhjGCRb9u@9zTY#OE;Bi$^Q4P2qQ*$Y@ccE
z6R?#$WYkh{ch73RIBluo+Z5SO*bf3&Eqy#)qy=Ces=E2j6|7{Bt%cP3s!mY6-wGSl
zX>a9u8;bGa7`SGvBKxE|YR7{7GFMjy)rFk9LK~<!@#SF8Pnq{DMVaa8g0*;3ZsF<&
z*uXR)du!uLs4;iFEYQ+wSnZ@-E(La9TZ{`2y=<g^zq)(1-}iHR&Nv*34MW+;HDDro
z{Sod2=xam3$`hJk@}gOGJ0ME3p8iPND#j~N7_eMIMk>rtS&N=aTpfi@$~QS!A5q)H
zHRr7T;NjVvmxE2hu*=oOY2@s3cFISBKFy_Hsbvd0k-69BS&E7`i?=$k!8;*&ml-C8
zF!I`UFr!UtG{;{mfxVQ;<#_XB^c?;0Oyh%&rRc(!20__^XTMtZzxf>d59!4_dV0Qs
zZGXCcSWcOyOa-<pMuHF>jr|fVHpC$18>(TNocQcJtCh?3%Yf&}xi;l6*s0lkRji=m
z{44S|>8-%#KU=lD_?}?l$rX62v`}WtL|kr&0#Jx9u^Z{hN!OEc$+tPenDra)x_#E|
z+Z*}0Yw~Ln2d&Kfv<&%8Z9T5Xy*pNj(sJ_8JQ0=5^8(7=iJ9l+{ldb-#f3u)e2Pj#
zBP#z@`1$AHG`i>5nG{FcH4EEU2ZR?G6*exsnubP34!V*46Eh}rJABRcEz=Hj=gF^@
zvlpjUTV&dtydmQ7ue4cl($Mq23q8xRsBX+!|4n%uuw7}DeO#y}nvPzUPRC&4^%`@H
zl0es1B<Lvi0;(oM?D#(D^s^z!p@)ChK)Pz{m!@pEPiV|UxWDpL8r{b=`}pgZEWk>k
z8IQ$H8(B%EM*QxoIZLrx<BsehivuQ{tNn(mDwSFH73tb*FJ1#_J-why*86Y>SRKCi
z#tUoZa;3m;V<2JUS+hLHFE7NoYp>UusyRo$ZN3=J=|E$VIoPJkA15;AcNsXf?)c6x
zEXHMOF~lO!Tv4LE15_**m*h5@noJ9)L=;WS>%<1t+74D_ER9W#TOq_tKFy6&?+IUE
zLGF2_A=K!gOGI2|QM2yH)EkUzyT>2q01lI&)@?-kO=+ren}53ibE4&bkZ@t^vjrrk
z=Ohi{6yKaU;A9Z+mlz<LhTuE#qeSYJ<>hQ2d~NST&#DJ)`uhS-Qz&$nt`1T?y19Lj
zern?WZFqx|Dt(Ue)Jv77m(-6#!zy94ySvw$r}T`J4^BgnGKSjo9y}$gv2pJE(AlBg
zQ4*8kd`7rQtgTGBC=(Aw0(hvXw-~}7Gz7cvQl6YmRs#LSd~d^|tX$GYJlI|n;rF~*
zlY8vT`IK3uPtmK&q8l8=AyS!9_07z>hI-9zVh8zWdp7$W_cZgSQ~dIGvB8^tKT~6v
zvC*%uE_cX3&ysyc0k<EJ0B&F2413+@9=trkKs{Jkb3NDbli2FL_JLhlfhLt8^VRpJ
z<wSlX6$$FTGt!NmL`$0U?MueBA%oZI9zN(<=}kKBfA^3ESpw$bFIDm!%7+F|>}QT*
z%P*^VJ0enJ)Y4}{_x}*h^v5kBQ((Elm8fRUiTY}_jEPoTZN(86lS`3%4DGO8aXIHE
z+eh<?=5Qu}^;G00(VBA_qj900)Zd&&(*qVGwGfT*UhhD29JJ7!CAc6if8U99i4f?l
zYbJ~R3=SvIk=Q}{(!}df{B<-&v)k>2?@z+QwNmrAS|vk$W}{`}QI&#xxa+Rd>At}b
z7!1E)>?e8y?pEiBG3;J(Dpof(unjCkDbMnEv&0HRWreE&P`iqsZ!Tjigo;EAMV`Z3
zoVn**_L8Yc5kBiZ;#htficIkv8+qM3{$4Rs)jb{iRbEjEhJx(nqroAqdiEvip@WYT
z%P!)V7wQTp$2C#aM)whb{edfoKoDzmmfXPGN2a*>fn@-@lxZGc-Rh$;P2H5ZU8x_u
z7*2RO{3lU-oO|zfHluVx-F`oxFt4zDW0gt$JC*JC->h+?wm<m48;G`!`wcu*3`A$#
zn>TA(WW1=diPIV#4qM8PRHmL3Nh&Hvk~myor%&%~B@|jlZ8x9U{Wz;3SPx}5Y)6-t
zo@gYVp}$0un2VILBiK5>_#^qCyLs7TzMhQn2`$!$(`YF>Jk(w2nHYF-AzW5C3G{*W
z5&Lr={iEr%^0S4t;|<rp&9pQE)X{j#GRk0uGPjfKP-dT53Y7V+s1&=|NDm3U8NQpP
z&VB%B7ki~K$Ds^3zdg7xn6h+vGy45?mdONFzMGl3hFA+7)TFEo`|eU4ftwzA?mmLu
z*UhC-D8Or#iWYDOma{noJ3~NhY0nC6EGg+D^W|Ja=VRP1?`B!5(%e4ok-peZp0Mg-
zqP7xmcqEDaSKaf#6gr1mi!oroKJtdlW0R1+a=QwDBud7!s;*8WCE+4t2lKJO`DUv1
z#MdD20@ELtQmLGZU0q#|N)~h;tISL)S4ZYY>h4xrk8fF#H?fS*vG(u>tq>x^%%>3k
zf1FwAgv2nEN0ZkjBg$@;ise3((i%@o9+-_6b{fYcJ}N9-iaaz!c<7$nfnCYzbD>Mx
z7g_JVCqXfN<c)`O^j_Z`7CiEX@+|6|c>o)c$N%lj(N(NSVmCF43JsBZK5%x-Yt>a;
zolRg&db0aut!|HoeqM*`0`+t^6H{T*FFHsScIqjCaX5`p?zK->*6Z{}4<1B=BYVsZ
zXL&TkHQCkdEt`SiSi|#@*fmrna@!g$>yM^hikI(vuD(%zp&t$J9#_j;Snp`$@n%t6
zhJTf;dTA=;IVKwb{MZu`08ay1!x$LzI8GR8<l=7CkW(r_kUHlYe-<6Few1Z7_A>w4
zTBW4mbuF^6&h4qgt=6L$ex>g`rq9odNf;NCwAmVps<JEXp@UkYr@+D?>>uU<?>Q&)
zC+B}p{|@CtBT)?d(vwGV?0f3!px=X2JoJ8IxL+o`J@xVUd-n`NuHc&2$G_Z4g$to-
zRg1Z8)|20GG<%F5z!#%@(6NxFAv(y!N>lzUMjro+*aG^If^H4LnD$F5gLa*H+}DfI
z!i}u{&&`rGGID4;%_rCs)<MOQvoi@CW?2rYDIh7V1-6sSi1qQ<e2}QG_2`*l(_8MQ
zw`l3wLj>{s=iGT+ErRj5I$&Nw4y%RK>riJwZMX*S70W1}V}@}A2@sHej>_LfoID|X
zYBA{$&T*Z>Xpp!=S-2t-J4!Cga&dnJ8CzWO_LfXIAqZS%Qx+`wJdOeEOqx$Bt%7@N
z{0wm?{d_$lC!42Z_pW}y-MI;FEC}CVK^qCvzhDw(1@3QIGYHSnEtI<pl?GjcDK6`g
zbI>NSRh@=yR<p2Tdr0!)&-v<3&MEU)<I0+D(HW;8FuA?)G4?r*mm_?V>O#J-k&Y5P
zRMU1!f}LGMK_TL~Oaa_vFxNW60=d&rwHE1&vY1ov@ksh>vG|Kt8+vuu!@;@5$@y5L
zdegqEsVWP`;S_g~NvO#}&w<PSRyEqv^nvV&X7JLR8<$}W{GW)+gAw;OwrYK8ekkWa
z1;O|=G*k#U4DoU!rA4)1z&#6GB3~Y1jXMLfT#jN;b^1m@KX(ktzt;C-e-;-xRJEs4
zC6<2KY$GzMB5`?9owdESx2K{<_U}fpR6RFFYo7H8-^3BvkAMJhYuF~p1(cYAFXcIB
zY%8LknwptyVPEA49DOP(P{*ri+}`;l;I<Uz<05WiV$xHtuk%c|N$M=sS&OZ(90NY&
z-ioq6RfKHDqcr8D^w-R>Ef~G7xT8w<p+EwV4@Qi`o3?D`MT|PVOPlw#S%&fY_%5}$
zt4>hpx0V6x79DzhB`-0hUk8@73Q$a0)ayyqbDu&N^e4&<V0Og>v#Y9Un@tjUXc<|9
z5O`>7hPUuh2*x&(54jnqq0J$Dnq^{Ej71#XsAk#rXbDNmDc;x}UJyBg9`Kh29Mu`h
zU(Y>PP>^ThC=HESp3L@&QmC3BJLXn*5DnnOQn2^F^|nFe4~-h^(!E|(|MHO&{kJ1i
z9Zt<xDs?t1=*5}|g7GQ?%C8a<6SGT7WK4^&EE0z}6||L^@bIDu)q@+{KJ_@CmlAII
z1P969#2h{exJgb6iKYBb7I9@|Wl`h&2ga!>`w>d2s<h8u^pIn%u2%3UIF?7IY=jD~
zIdqng{c^qyKYL%Jj!(J@S-RrNPO_lrjMccv>kX6E{be@D13#U2QDN>C4|(HMX}iiL
znw2i2(n~`B)S@t}ZUxWYEk>3kuEJUV!%O&VV%tc2vEZ*(yiI4r@m~Z;FnF^UYj3aS
z;39a}=4i@(O0och?0u@3*&Gq^>MQIF^r*;W%9|^YV+Rg|FRf^k_AdfKbWlGuCdBrt
ze2o@ZUKOw&i}#`a=<4C@mh+|Q<XC*fS7I^t-pZ(PwQ3YRl;NoG@;KJ4w27V?3Veun
zry+6LeZzQeU+1jlV1J<H<R;usSyg9FbF6zs*&p<6axKM#b7euLu^6jOhDB3c?ERv$
zSu;)xlo^+@uG$ggUFCPE^9~Bgss5X3P@?Q+22p!3B7e5&O3rMe*ynFKqgRuo3`{;m
zy!6;UE=@gAg@+=}Op<8H-J$&g5$pQYuKN$(oK_)8+$ElGjIRSYKPcFP+zbo7-_d|E
z>`M2*{nr?nV8+0u`%1-qWb33mgm*J)Snqtt;X1scpPwn$E^YS$4~9Xif;2o;Dn)0l
zt2gVqS%&>2pF&((j;IZG8jp{dHWr6NA`QA@PGO0LOUt8BIrUOuvUfnTFA}hq*-&XY
z#yRWZ<o)iMV{sD)RV}+R*Zs~pMUchxZsO~9<q{)2lu0@cU{vHq;cujAPauhrG#w`C
z+sC^64s}Z8JW2_w;~jzdgMTY6WIoc7c&Q+G*S)2IOrd^A>D?Z1_!6b0B-y)>nO$pd
zqGBo=z{yy&iF*Sryu9&#J6FC<jJf~%UwA+j0`bDz_@_4yGU@zI2`^cgMfHpTZF_e0
z13@=ALG`ltPBLA&0~Z9agL8g)?^)$`j={FJXF?xrzOEv}2{8*zJL@S_P*GW)ZD>3A
z>Mk7C7f`~eS`yYodtxcS^3~AzuiER5d?}CXcCFg=1WAR7Pj>vU{K{W%u@`aA0_~9@
z3>em8vsS0*RIJ*lUw&7re>Cd<5SCf>M<vJKfR=A<{^M*vD!C>b%>3!<W_DK&v30>@
zN?`1$yuSZq>~EFlE{G?g=HVkv9Grzn!U3Fx4Vxr)M}Gv4o|X{l^XflGmw_GKY{;9N
zqOq-J)|9VjEjL?o(VNmoh|unN&q7Ag2gH}9ejCZACh`vl)}NEu*phQ^^c+4ImEeT9
z?7s5vd`h6ZCdqkKR<?g}XyiKHZR<<zd>n!HKsRZ~^6GCcp>@BT12FXgMp>6LOa*!Q
z_(Mx#V&d$66tOO%jc|H?ue82G_iUWBBb@i#z$URGAZ^=?*{}+Ubq77a`f51e`r1oj
z(n&Huo?C%kty`%Ee)gCaqFH0n8;%G7E8+{d$={PtR9y<D0k^p`LcKgUU_R!HWx;7T
z!F8Jve5rv=&qJSz-G)G5Q@9x*ANc+%@U@ZR!f4h$p0?SM!&vQRxqcd}WiJ4iD+fiZ
z$LcE_w4BR(V640~Ul!V(lXyX8@J;_d^knuj%p6n~C?|6xBTw99E{fUN*`H{!1o&dk
zUdNd?IaNp5+a1^Dehvvs>|Xl^!6lR(^)DVf&9|Ar!u<vU2=^sZdKX3r#tZeV1mN``
zYkwn78$rcNLvJLsR!OVAEOfUifv$~25Bl4TQQ;<G-g<Sf|Co$cyM3dmn&8Vdn#u}V
ziQzwppH(r8=_w~YDJIZwPmK5soEVOa+28NR&tWI_1Sduu2tag4=6U}INN%1*M|XxE
z$D)4rYcuR|RsZ>=kv6(ljlfF<yzeRroX?2z7z377>Re8{S7O;&Sx=r8>cc~M-mh24
zHg4AMuq?Y-UdK^nqh^&^=gK56cDAQVnsjGNdPFEbAW0qKoKSN*-?ERY7v&EdDj{&Y
zPJYO99u-yfZpjX2_TyX6uU-I9tQ{8w9_<se-2ct+da=4?vbyveb(teqOFAZMf8VXz
zWqjL3C~(23n5x_M$saNf=9F^e;d7Db(!H%PmUmnrW;zNwOr&SQWti_ryIZ!}zg~r6
zS*Q&~!GZ{gb?&g3p1LJk3<|$ncX*Et+(Au)r#ZBu2&%+PWF1d(c#Uy@?(x(mtGBmz
z{|d=waofc*7LPH8ww`c<@;4)>Ok?SC8HKqag{%Y*o76&9Cm5e*f{UR|`B0u@-$mGT
z-e|Chz7ImY8_X3B`fA19Po^>zCwqff1Zgn^BQ!p6WWy_{ox*Zuz5SNrFCqPJgl-0V
zf5>4VejF86VH`YxY|yq^gW7=N2^>zEZD@*W)8(t7u`{c?8jN!E(|c>m-xeP5&{|`}
zt{$$tOVI3YAFICOcZO>In&l_*Q`)~nE=3;n^OVBA&2EeNz!01!KPVC3Tmtw(_Xt#@
zL0Rc&i>$m3vvOx74jCk0udm;%^l1<A6fAYecD8$5i_=KC3O8NPWk8R=iy}XH^t&NJ
zoc5%<gvh?}Vv@)I32!6VN?^UvJ5E#Y{Bxrcq%|7By(F*<n{v(V@_Y_$sR2z!w&p4`
zR4OKzbMoap4?6mh_2!-!jTUX5@5#(TfO+N882#2Z)Qh$&A{9RuDqW>Q#<OV6y*ZFV
zzojF_<FPbK0Lu{nA6I1MsSxxOLj1@bA#ktC<Frpqe5$x!a^^fT`)YWcO73-mC*<%p
zJrFlmNoR{jpC85UCp(L`G;n3jp0N-pN(CHOjAv~(cGl)SFt|&FkXBHT2CMnVk^U=4
z?|D527p3>oF<cDZ`Fuw&WStspe90`To;@2X)1%EVF{QPbs){z;cuBOrkzG|Hs#2`=
zR5JDw%uu^il=fZt7<<N`c$uSq(CN)#K9>=Lc(}6e4dyo``jO%v7h^F}>{dYJR+I(h
z{#$=PGM+Pvf||^UnCg%-^;Sx5DWDAaeIoaI4+GKTKc?N2szM=|a=u`s<c2ibmrnlb
zz2zJnHq<xM%J1#+1HBwNK$@Y=y`^BHajF+1@xJ;F<Akxmss>3(dD(x*OM3}e3Z_2$
zl{{<+g$t+(DvY{QhH+}%?zUMA_v<tfV>T}G#S40*>^K*BLVn$phwIY+DG$ZrXYXa>
zPXSD?P<ee%9b_>Ou-UQ_<fNDp8n$FTISGm(@uxJm0o&E=)b5ChzBC5o^5?G?J(yTy
zOz79@u)uGAz@O!Q^(^1TMe8qKn(*Dj1w;X(4L8MLxb<b2L;nWOJ9__zB+N@*!}S#s
z!k0V!hF45YV&0l^5U-hwW{j1biwu>n!9c_Ah=yHk^V$Do8BZ=qe%qrobQHn%wpKLH
z!DDVq+`xXcJ4X_+X)o6QM_7E^8&}|R5t_F9k)*CrnF7Ga2y=wIaZ6P0v)jkZfB|Us
zDPIk|SkL<Yr@A4oZ8$~}Hi~*pN?ebQihdou%>TPINH}WHruaIm*3wDz{O!UjvJ&~R
z3;lT;OQs@aYQl&I&+GNsljh2jeoM74kS<tBEcNpNEN%&b!=X5-Jud%-F||YIFuUhz
zm0#L$mhpwqCG_T1FvF6`*=X{AYb*o_u2q_?5F*N64$180{><b@DDphGh?iMK8zBla
zHfmD$zErWS(yaW3e{{oVSwPSud}frk$920L)+x~sX2YB}n(3sz2od|Lq+#4zjPPrK
z6pW$wE9oq~BKGaav>7j&S-(UK1-2u-u{lVfQ>Ndy%l}o~th6~zo#|ZS>YT?u%G_&A
zZcak#wN70URUYgRAmi(5I<#8~K260NdRo->9>JRc&>W76#{iDDF@1BYteFxt74w+k
z;OcZg-`>$IhBHcf5=3yl3dkvnFz|8!RIsD{PjE!=a)gs$s>-s6#w%(Nx&?$juk%nu
z7KJEu&T-OuMI_}6n^10DV@|_e+imKIh%!65{>|3r=OL)$_c}yw*PnDy?$%u6+c!x?
z1KwmS(WiCXT*w>ZLGqH7;gOoZ#D#Uer%Fpn<CR&aZYGK|^qJ1=m(T&C(`x!mx33><
z5hiVasY!GdX29MgICb@dakW1c_(9mnI^fQJOHWXP{96qQhCi0qd8C(bXb)rO$eg5p
zn7UQ$n$=qV#X}i?M+sjGt9{lT9wHcDeo_m8<wXiC7Kllp#kg6`rR`~}mmz*ABF$UN
zS51b4E9GZCcGc?{TWCe;+)3XMZ?G@1<M5~Q*C)l`3nzShQEZV+pX7}rqu=x29t~9!
zJj)MD-4JG31muC`H?Iv;q~W3Qr+9zH5RB2vl(}=vL1mbLu6+C%yo_hyWyEQw>WP8%
z@wcoO@qcR(<S5PR$AwT!jxj)D=U>~3N`3xBr}q+d-}gZ=!}03OAN)nA+bd2kB)qiS
z8tlG#6qbX5yX(MRPHK&~40?~N;Xyrin~KvOgILStr?UK*ng!y?xi5_?jEFMuAYD!E
zoC2b$w$(YPFAJW2bE4b`q$?TV5N#9NBpmR_`mz+DPSQn388|~JgMnP+S80_X3~9S{
z$kFHP$g0THD<!C0Jr=T{qcZmzn{3wZe@A7(XwVk*eMn0e$G(yd)9b&nleF6VE;T^^
z?!B6hwqcEwH@5MV3BU6IDew#d9LS^eGH~!vk-=>Q<DiUqMILc@DE-GWYiw98)f(KN
zPVEU%L3mke=o_6(<q5&Q;hd@eo6-@y#^9qgY?rR?XG0HS6kgb56{#OOAy=jcd_|N(
zF1m^&9Qyh;M3K*8M{XCvtL7H=1$Psl#)H8A^~!DYAL<J)WXT*5EqRlNbqo5^!2=NS
za3fL;D0tqpkc@;+dhJ<tkC>z7H5DY0k|L2H7z9y~;Smx#U|UZ>gX4*D;H!IH8GzGn
zSVt25Pb5c%S4P6bZp5>jK~l^f#EEz+Oel1Ju_nOOENh~?gtrRW3l=RO2ZlD>zFq3M
z5hez;JM6Vm>g?ngv?L$@oenB*g0k*)3%)GD3+@f(&8EVl1~1qzQ%)BvjcFuC`nm>r
zAjhgbrtK+kypNS!VgL|MfI2I|O-};w^M62mYFN+x-)AdEq^n#FbUQ0SSG@y=w^yfO
z<}oR-8I#uFigO#&nkpN93Gxh*r?N9&X{;N{25iEyqFU%D`UT#W{aAtEI?`Dck>Nih
zA`j3U(}!gPN64bQ&-V}>3irOe&>L{Dm1&8wKCkb2ksyPt4aXw_Ug)cv7Ygq5A4a=-
zp{K`4Z!|ZWM{RPu*F$st<%k23HPhTu<%e?I2=blWpzPz!c7eHDq^KzrSgN=5)<-95
z{t9dG<(4KzOp~}1zY)!A5vTXKlXTS>cDL0jMLoy_hU2k~)L~Kg;3l);_T8SsLr-VD
zzmKQhv)Bb+U15b~?H>E3Jdg(+K-RV~lI=vMkc+#?&$h__;}{E`DE9PwmanA)*giez
z_=sIxDQJ<p;FtdQzaB7?@ee&@*&hp=Xf&j??bG$X1y5A@!0xtaq|gE&sO2b!9pMis
zR)V_~j9;J(;A;dKy7M6zzu?lxY@>v|O6UtQ5J%<#8H?VZ5P=0rdwG+kOtAk`=y^lT
zK=e+)GC)QTTcFY~yROo-i`~}_2|GKj0F2&8?vkf%)L5WCgmn-^OD%9l^RgN=cn*p6
zN+0d`(|)e%9c2?u?~UeLx<zbZn&81~He}b3f58LK{1XiEtfEWc&h`P^!6O1jf-;!(
zPyZ$10bxS~@K!2n6Z9Z1m)&44q5onoEMq1}zDV_2L$uPCAY|;>nU<+x$is9_T<jc3
z;<0uX?3HR&D4AaI@#Gj!3i$aDAVaZkO%82Ryx;gAk$Y!#w%XE5kA26)ckd{dkAU0O
z(Aw%96jcIVDojlC%M?2eeXIiOSk$u$OCwwl8J1{Sqv%1aH1G|0&gYe!?SbIC2e)CE
z@jqc$9iI+VNT2~RW{MSnWe`J5(Oxe*as_n@A@=`6&2kI0I=Jkl5E)N4SeAH?!u*`9
z#2b$QtLe*%T6~olEvsnb7R=799w)1uQ-Vwp<_%eUFe5DX^hD;YcD!E@2VNcvq-WG(
z2x*`Wcvkra;3xPZFLG_e5R4W7ykDY%IY<C;>T8fCieL_c%E&8n&x;Bl=Coqs{|P8D
zh>w8N8Vg0KTY8f02*{r&VxuLhT+uP+f`uyy3ViT`cP@K4$tfQ^`G0css|;o8%ATa*
zN(E<`aT}K=DI&ST?dLuA{jofW&SU)^lIyc%RyVySL@H25#w#>!S^Xgk_A@%_BSlzU
z*k^sA56t5AgWQ*3#1GhOuEK`{a0;zRLstl}R~mgJ5h`G>;q2`Gz+Tf~_8Oev4eV9?
z#$G@E$6mt>;F>k%W1+?6qIr$~z($1@u|0Ve<g|}J%X;n#*3*Th!=OI^XIS=Y3VeJU
zWY7ai`*oY269spkpj+Foa{VmXEr|7Bk!|xRF%bw6+Q8`N1WlBj$!w<u9YA!{mwYll
z$mz_ZgMWkaa(=>($3&}%&M+~eTmm$V3;E%hC?_8i=`4x^Ga>n|_zd0>WFyO9Z#U5D
zd7H?&b)OoN$Vp0!9}lzlvEL-jz}~fi9gTga2X$|t6f9$s|2Lbf;}5V(w~;mC%mxBq
zj3K7<uRno>QvcxBgW&|XcD<N5nV&WnDwBjqefDHdG~LeMC^3d9qK+FUyEdIOqmHRi
z8Adg8#4u9|PYwBVBQIup^74VMm^Zr<Jk(igxgGWFerv+`<IkMrQ?+61Jx8XLl{D=U
z)xc4~ms=F_U&2i)K?C));h}AVeIy3Uu%KtzK?dst0^For{h%M#t?hx4gJ+|kZh>xx
z9$X`b>r}F{T6Hn0QRuhGc7KHd<r6fy_3t<t&!($Ab<b7F*_0#-#=9rCni%Z`MJ4LD
zN8oE}-J^@#JtTBy-Z!+pV$J;h@8wuUcU_)I*4kMN-x5#V?VSkq>nr``rGpvH4^PQb
zIKX=eMhHb-Y=*GStJ_2^Ye@!-1?<K#!s5<T*;?cp0Icd*QBUaMCVyB=*@k|(XHjQu
zu4)cWgRdE6(*Rt|0$`U3e8X!Hq0Mh1^z?0n_Tt0O+vb*H7uGzv(%%@{EnV6R$F(1o
zew=rU2V|ywdhG+)EYo`)ilhPcMg}#*m>a7y5rNxmMo-rzQsAt&hSjTjn!bH};w;uo
z>2v0xrv5yY>b&bsj(is@>%wkzPe{q#Q8!|wnl4}z(n_nP0%%>bGwFm~_+e|jAQw$%
zirOtQu@}0LBJ8VDMDG@HOThlrt_7n{B;C41e;dKj&z=fEX1KjcL$4mCNq-KC4pIZ=
zNM-4YK?;XZP6fclE#Vrdc4Kaow^1uB7oNy<b-?P2whQ`<$=?wA1bCX&B)W%Dy;uh9
z%7M8m?pvw7RV;J0{z}_Za~R8<&m6~JSt*WoHZ9o=cad*}TO}j%y`p%3hl$i$suW01
zDtm!5RhO%{_i(0{(1i$T8qcdAgir{ZJt;rW+ezI|#t79E2Z3(H<G8)1J5Jpd{!C!-
zM3PN05xq`b@a2?dR(jtVTpNOkMiX6p@1|YPX-v3rB#mC1C&;YmkE3QN!$LsnwH?{F
zB!-7Njq9tIvcgRk;V449V67Ai^v-vnO4A33Pc(-<4;iGCfSZ(pahp;o#Nc_@^y@Q4
z#am*>w%mpv!<D-x-p}6u_DW_;6-W!tvN;qF5iS5ETrl^e%cND%;@CI4-cJq<tI~An
z?-C!%*@Qug1gn*w-xB3RRU2)SLCAhw@r3|cSmYK)$eRqd9t{lE*^O+&x&z60X<aMy
z1(^f*rjBC`s>p*xpEvpH<^+qQ<pi&pKxOS}78I}h1gz9A&nK}WnpdxIxqZVh{EueW
zCHxIww6XgNaV#LQ8`c|ID}g{cs5kW<#vaFMB<g_}&kBy~mo7yJ>{#l?j(hIxm;@y*
zoYF2U2~QCzS1ahQ`@l0b+Dk-xr1ChH-Wh)D{L3SBsqrT6s?otHhT}Cx18s*W(B))A
zM-%)q`${eoiU?yjtTbO7aGF@=S(K&jZ(&AMjd>7RYhUgi;&%@xr&AKVkg#hgmmWyl
zzU)-EUNc+6Z?Q+#SH8Uub&H&D_Byq?9%lO8WOp=j_ep1xQ6?K|G4I7M7&+b>|M+As
z+tq<qI58Rju*rj{`MN>ml|}VB^H7xn@?cdOeF342;}~iyC+IjHmT_IUlmGxH?d-M_
zxSZ524%H#lF@jZ8=4cfj2oYEmkVFK9t5P9P&g&`GRcZ<dF_i9{Q3*r_v`PbRX3)lp
z2KAp-ry_{PxCJ-%LH-~6xFc*fhlWw4O<84{J1qa2hVVNZ)XhIcw^+BBJ`&8?M2@>>
zkTE51#3&q}O#QwzANg;kN7dx4)suFGjS5{8#A;#!mMCQw-PkV5GG>s+Zi`+hO?MuJ
zjfK*klMgm!eEk?DnttR*j>f@fHkpi79FDyFeBwklF+@At^xEr_vCq5y?#7yyipnu@
z@Es5WUuTj}#;=!hzNW$?EXAG>1Q6py)3D2R5#gZ|Tz%D#KrN{mBtNGGU`+y}Qx~ue
zA<!Vw$YbjMNC`sDEjN*R7qY!PLqrQQBNE<-k&I$llq&+fku@VvomFd?ze*4}>W>j^
zD_TCv(lSL}T}8&23W~Q4vxs8&jckhF1ZgAM2H^BU9O@jB@a|hy-bMK-NEZcWqWLA)
z`l8c=%@UI;Z|wRRH)o3C*y8$|$?3XnsBTeE61%R1?>fh4LJr<ROc{kq69g5`cO|wS
ztGKO{Pl(+gW)#tF`CwVF7Kg8&`-5M%Pitbe{EdR+xp&we6=TmopMoVM&A3bIuumWq
zJPF(Pzym0J&hHgD9Nc7@$b@b>h>rg~^UKm@i4<#WNSfSD#yZ8i1-;x@tkrauS{IcZ
zs9Q1i=n5!b<G1V%CxCES{D|^(c9t{0`q7ZxP>ue(A+ao7W|hssDV^p!UB%E;`Fm@4
znrFrDRuTk5E$yh`p~XXsNARTcwRJ13W>Mp%*?p+>?TM4Nvt2~R7M`G{tOZgWLaS)#
zvfZj#u!8nYW7zV@z6Ng$8LA;BaBYHJA&-35D@-qAd-lU>Wb>gzYDKRNKdME+e0$O>
zgZ#Hb(D?5;=U0@%iSaH1mZTsbOs<8tGSp*+aVFPI3bGYDS?Ei6P_JYP+VvF!#8G>c
zYl~ohlOaU^|73{!aHMW3KGAmMQqlWc80F2=l25-aH@1EJ$Ld}hmA;vAiHsDWQpB9`
zoT{PijTs8;M4+?tpFow*QBqgI(4vSx?iZb^7t5Eyowlr3cA%eILhfAZ2=L0RXz{)y
zybkB^`$Bzy=HO_|!<RjN5UWLCJcro**%KFjd?DysrE$&<Irz0!%!#qFsR#hhD=(F4
zXU>rc2QgTl*#5(6^e6*evA(8jsCfsvlU4g}X2t~+VkIZ{#E9j=@v$x9-WG~@a;o(U
z{UU~&6fzbGp?nC!L5p0@L%?Csz&MPNNfJg-ic{XGu1aosA4muM?Ayds1;L4_>O^em
zwli<*(f&;3gnK#+lxi=A5<|XdfB@Bc#xja+{yL|-`%eUl+`3mh=R;@Qp$1{bGzr?N
zD_CbZ)EO{FUL=h;!skv=>tpt&qM{?3(<N~{HI+bP2kAq&p^OqMXr$`i?u7b8%(7yt
zu&-zouXmZmN`PEjp|c^?5~^PMwgWM4!-A>G{Yn$4+Wv-_h3U2-9>MHEcPk~Y%6(q_
zGEu>Ugvb{F1&o_CLV<WF)`5Ot)CsC!-ufly(e&Ra@U=J~Lh_ztNzy=wsq9m5!Oh4L
z1)45vfe@O+1&0UF9Xt*Q8*kCO=0P^?yYU-R<XhN)Rqo04D@S)z`J~}TNn0SjPj;>Q
zj5y6+fy!Mo)UEzxbSyT?(9~##M(6d{&Id0JtM-Yu3xQz7_-hN<_pvjoJWx>@#_~O&
zkZbDoQgHfBp?<Ja`&_r&$pKK<j0%rS?MA)_@;giV^aljKLNb=dlJ<ER93&tcpnjBS
zvnBu4tO(Ndpe7zGAmWzv$Q&tP+Q@j<2qUo3R2umjmQWE{X?x_2eNYAQ@456)Vr2x+
z8y|@b!0f14VWk(|!EtQIDj|;)mvS<%QrvyK{lY@`<h!DZU{_(^_YaNhFt%qJlqkK)
zZUIk$SQndDHjoOENQ*AQVZ#hcl)gkyRB$z3phRK%`e5k;sP|WHQZL3GAVyY)h&>yW
z*EgFZ+4wS`2wG^oJsMnQNh2QIjPHVh`hkkad2_vX*r2!CCfP38twB(IUC^yJo_y!C
z3+_~c;GEvfRFzNxCaGy@f>Z$4tUx@0?l%;va|Al+u!L~P0`Kz1v^jz?$FHI7JnW&G
zMdJL+ZZ{_5=~OF_jDw=JUUWGKytnYYx^1PDJmnLiIJs+Dx@poBcoE_?-%;rq$_Mu9
zYMBEMNZorhcU2f<0;=%hQjLr@E`d6s%q1#z*~W3K=1~Sv&>1qkJ+oG6w2oxIVx5~H
z9WTT{l*Q^u22pr=!e5OI$Y;wAvgiOV8<JCcu>!*Masx^p;GA&dK)!`Hlfys)N*ZRE
zhwVV_APN@ZA(}XP(;5@A*%jX;{e)|LX{O*hUD)TGkoz>hg3JtOX?oEs`w9%n0V074
z*`4qlEbu>1mpMTe%18LHuodaVgvj2JN9`4(q%>8{engDIzA7)SITpbE4lS-fA>?rS
z>sy(^Hq~uGISF1X6R@#T)T@~1uMnefb9G~B-Aga07i<yR?fepUX1<Aop+_-)c)U44
zv3(bsqBJTEw0mlYtf1R5n#<!!=AlA~#k+d$^ylMaS}!&djt=I^x0_gJJu<1(sHb4&
zb$UX>@M*V5o)%zUM=8~B7s1(X+>AMz4p^pYTbqF!%KqN8$cr+dgx}tL{Ve{TMZhm7
z1zfmEJ`=ivcpF&tGK-)DYC}{hP$qhD(D{Qd3pXhJ02@tl7nK6wqmdp)>|0<)`IRoK
zWw!Qxkl@S=U4MxF)g+8*R$tWEOruKN6i90-0$s?vX)(U2FT1DfhExk$Mv<=DhI(sG
z+KJ^uMSnaMUK#7!bh7Jzcii!#^8q2sfZ;M}TXC;T+8y6C%0NS$#<6nGBoD_#(`3gA
zh#%B52bpb;XC~=J`%pioKr3bo>zajEQeP%MNAoJWYkX};N6W*V=|#f&UOQUx@|4)W
zUM6M^81h~`hHHWpLIOBrUKE{RQckL!&^0q;?G}Bcxw$N{Z(jro9pE)C*9sAghhOOv
zBb3tvf-<o#e1Z#ZvV&bjp8;SxHtAO)RLqcT(^leub%1JSfe-f9(`5btdWDZST?zj;
zw`|8Jx`FhaIQ;L*imq(b-+17rZzz{khk~=-+MygpRTl&e($AdW!el-Z{3sUC&x=wj
zjs0-$c&@J_>9wEiBEHmgS<EuFUNq>p^O=yT25jeBdF&zdr5I&t?gEI-c${s`QngP4
zex9`z`^imO&S(?e;=YyNFEf>z1vC=OVtEd5_@8G|{Ujdb9JGJ-nqunC3GF4bn?2CC
z?EnEW`yJFwxy_k;6GKU$sjPi4DQ;3y+F7&w&X@c}iE*nvB*5On=hG#K^TcJCLP_hm
z?;XcTXec$Pzw0r;=U}!?zsdV}>HugUIDKt|9{~Om`&svOgBX866QBiXA{Z?#CycnN
z8*JPn#{}T7CP;WrQ?^Qgq^DxIamU>|cML=5=?GtzB(N$oL{PJO+}D^wc+|>oUF70)
z$EX56uxM&9#D>K>B~gBs-Lrams<zM7ZOFcGTcN2N+ul>w$5m<#Wi_@Bw7lL~C3P7)
zcZLWh=oJ5AAb?*!7@IU28|iel-@*<SNU=0*=SyHMAske@e^0rYyB(u3ajVCPMh7Bb
zXp}-gBb+s_EpSdoqO+`YTS{<S{QTsbc%ZWIr!?F0_|vBi{2xLNj*J0V7Qg1(g^cf?
zJdg9Zw$%Y5#G;Lrz3n!{Yd%$&OAfl3;aNM5<<<AM^cI?JlE0|gS$;dVfDK3e_UxS$
zIVzk6b<6+5-g`zhxovI3A}Th(3KkF)1rZVHLTHMDND~1O5Tep+6bJ!Ah=_`c0)k2}
zQl&=eNhm5JQbP@rkf3x3Nu(r^ge32cy7zg{dG|BMdH#Om`{RfjxYs?`TC-g9nsdsm
z2Wn&t4!-{U#o2aqk2_8S%mR4-V8__7Xhq<xeI0udy>9)3Q$QxB$1!;v0HNRh#y>z5
z0fI2b_vo=>M@p`i#ZOJSH?iMJMCR;0o!g54T`BOG5<jCcC;MX9VVxb!6S<#@oL)2P
zRL6JlZOWV;D=WJ$iCL$UY`0r$4)e;>dxU#(v-@S$hW{W~eZ-yF=BXzjSJiSqu%8vr
zh-drxogdf8s7)y53Vl7Kj`zU$0zqszQ854YORHkXs6ZqW2xcX|JbG02vL$>&!rtTW
zPMs!JQ*JncpPXD-K(_gd!F0>*#w*U>a-WRg=7$#^lFzC=Vzr{C@LdGrwkxO0_NQ`J
zbL_l(%YmFO#+nztthcLWN2dB5ZRzx3hun`YIs){WN=z)spo8J9qds*wUJ!7zv<yU>
zfc(q%G~<Tz>#M9Fhv&pM0tzj+XDd*^w_)oVe!7M<0mL7x9h(;cg{EUK+7s-66qHv`
zNF)$!`@Vjiv6FfwbGd50Bs=zb!V~WzliQBaK*!OLS}RQf%o=gG#Bu-YD|bpn_j|`(
zM9<|@K7kTqw=BqR4NlbtFoiWTG}@D>KoYcT0vw2#O&LC;VHZ;mdMA=?Tl5h5K+2W5
zIa_<zackbTqkwA5)o<mDXnlai<gO7}>SmVq?c3cr_^sXo;0f<++6i$9{;?EOJescH
zrwyItii<{vYVAC(sQ9wDIJm;S>wrD8KjG;d;0_pt+mpVo&K!NYlUV8SIzE^t0?FT<
z(*^yhe6*nFiG0ltKO3?>5WB%+IAS(t-|eHm>xu5pQ9q#*wy{1JHx~fA`-)<V+K1Zt
z<vCzXB|bzuo)jS5ZdiJ)21GVJmj;xF){H4;<8diKj^=<IUsoS*1q=gP?3Wx*0&=`+
zYiA0@GK*Wj82!}?pwIKcL2rup>RfZch9_6vk7RzO*UaT#4XNncYULdd@N$M)uBF^H
zsb7}?zp(qRdTo$q$8yZ#niHk8`$0(8@f!BAu_r}QT~j);hqJ#A&1E*vtM_j?ohqGI
zOHDYQYJ22(_Svi4kLtZ|dJ72dM~Bs~p1EqA0JWT|%sT$l|04?Hq%w(SK{7#y$$-{y
zycVZg8QKYp)Nngu?z6afytueHzpBd2`)b(>LTYEZGTQmsl;eAZ-<akVm|C24r31Rz
zvFN^M?yiW=`I+2W=sVyubIsZ1;La&O^mvBh=$Jjizxm<0;ZmuAb9Db9zXjIIwG&y~
zJGL`YVjJMS-4VQRtpi9heW_><AjtuT0d>1IN&XcOo<WIucLZDqut0@KX<SJ}Ydm9J
z+12+?=LWyl8O>4b*6KH)SSLyZ)@<{hI)lMT4^yIFM8>k!pQ~+B7XcE!QB&p%m2A5E
zc+2;i8bRTivKpgzW@_l>kjHoz`|!v=K!0)KmYxEPB*oY<`;X)G@lxtKKOcpaXP&<I
z=$MAl<AY@{zmtu9D5v%L8~%7%`j8XlwO&AV!m}4ic3-~_OB-dW3uWPkN?yV<j!$B_
zc!^6NbY%lGPu4~8R_=~`FSCiWLMGd4dfd8{ODc3QdRIml=@nzYGoIy+10OK(7ja4?
zpD)LytW}^L6FTXgJbO9aNcB<VVRco1bI5phjkn`rNsj(ew&0NZXg8EesJivM%F7p^
zckKMWW&O@I;}U7~C1Nk2BS+7SUIL5^M9~P*yek{2e$uNQ$Y26Iu6l=)id}br?A*2W
z!#XHg?S}w~Mmx`+6PuA&+Ie8|>00H}U$n378`X4x(XJ|9zP_EeEqyen!_;>e{h>#%
zWh;MF0&#5p-oL&tupwuSP4~hv8UvVqy*2ty>($(D!1TLCX5&g8$Ev?rS5|bFe5kfQ
zr|*z*=K+I%ds^Pc<xQKIlEPPqO#IBv`-u4!M}|s@JOPmA4-@C^T>wY=19AUZWzHH6
zVZh-&8}RoVw*e1iiRJNt2dYP&?k-t~)f!mmSHJbN=)d0Szx@<>8nDd|i_Go+diJmE
z?0@x#miRC0p8fZ-|Er(+^_-h)tVZj!ihoJ;zx@<&3UJ1z%?&pGw?FW&?|s|@oSOm-
zx8KR$zqs!I&3jK=2R!B9(bj+ej=z8L{Wa&&%&&cozyGhL{5PMzpaCuXI}-li{^(|F
zV7<wN7Z3iotCfxqTr;7N^(X!};`vj;RsgK`bhZ4p|LtnmqE?__;djLG-$>@qwOxCT
zv>CA8o8H!9|La2tAPN9b`8zcH{R02>D;p#O>unw=_(S&kUo1H?ecSy5*=5D$uNI$N
zl2=qrOh`zV0s&aZKg(?WPEUU^FW>7j44^uxra(3x5e7TQFSffs^v|dE^5*q7mr<Vs
zw;nTabZ|I91qCNmR8)jOZ~R>d^B?bc`Sf}peChL-9ZB|)gwF=Ck9mUz`-ZptvoI$j
z4SKjGk43aztn({mXufT(e0H_<4x-uH%iBA_{n>Wa|LJ0Fl)ik66i{NGrg6pD`Q~V(
zDJV3FTXi&ECKvhddiLK|w{!0ocfNOyVRslXlu_X-sl356q^9N+sP>d;(A|@NQ}zEt
z`XBeaDK4%ttWqzzddbh+9g(w)dN>^LKivetb*TXQuwJV;1h`=`1Nic-^RL_@gj&{^
zw*Ryz(st|f^YgFR4qDvX_uv(8@Ot%;KU{-<TRN~i1^@?d9?U2~;svV?1`S^<#U`}@
z)f{<f^e{^AS1IK`Jz>$o0HTR6cM>Ymw{dNY<9Ezln*nz{ihK4KL;2s&i8SulLqN-=
zLY^Q<-E*gCfaAy+e6UuX_fJ>f;Ou6Af7`1U+oJC(mYt8RmL`ixZ20Hh&Xe9@!!HIu
z|C@aFPrown_zoK(B>}>o@Ag2J?;qa?DE#Bu>Tmv=P4Q1(y0T|;aa7Vezb8LR*Jy74
z@T5?swbe*%_znO4<IAmEFTZue;0M#Y8W%#YuGOmkzfX#+7vEfr92C9x7cuf5zqDuL
zy}5744APG1l>8}3{Esymkhg6ZY?>1~`xl?#KmPyMUk#qDKMVZ<q(XOQ4*n0jM+Y7R
zW<*K<#T)vkHA`QJ%+?M8ytd7_xqlK2;57n}8Uw{X`zNLFKYS_2;Id>r5S`!mfc}GE
z06BbtM`p9_xYEC4@P85v@NXBbq~C}*1MIesl>lkxANFbUM1#R)pip7Q|9@=$AL;ym
z<=6lan{P#%lIu6Gs0lpL|4W!XP)f3X<=E->+M3}jlTEI8BC-qh#M*J~phbS!vUXQs
zH~!xPVX{pkyys?x$&fjfVOQ=Tuhh7F9Y|^&`Ria^2AWi?-5|w0*v7SZ{r7nTxE82U
z#;d??jKQT#mnK#ZM@^(b#3uM>?`#14;pF$rUaI+}rDju|p^p9-2If7pBledfcmfbZ
z0Y#+se=DNM%Nv%(DIjWHr8R!7qCrfF*BjcEczYv;Kew)^ygb&?)6g)AB+sTp#4iN~
z297|J_m{s1h{#G*Vl8Ydml#d&sBkmQ7+T1*v9b9g(8SaCuyS$9U1fCXgHZiIf6cz7
zKA=Jt9*96n407HE!CHd<x-|yQfD&2LR;bZUHiy<O;9~<fx0kD7e8G$g@l&ftQ%Efw
zu$Ymp^B4-Pf*TC_^2*UyadL8U5r>R8SviVGYwQ`(F#Xs!tKihSlqM*epl}L{Pg(eS
zKiZA3WT}OUVYDg1h=!P;;U2AU$<WHiMsjGGB~aNUWshuNP$L|vO$-b8d}EUD+p`|@
z`8w2eH}~?Z)v7Zz755|Yrjf#U`pMl=@OF`}KDy*o#>0`|)@SI_U2eaW;sn5w1Mc~T
zf7{mAo395fyv&iYOZA%TPju}|j7v$<d3f^2$3T>cmsb&_sJdEx@ncN?M4SBXE&Xh7
zH^_q`ON-j|Rg&rJd8<kK?M}JI+Ng0|t=E?Ny^iuJCe7uo5<`Zmsi~c%Rfhm2*z(!v
zkNhs*{c||pYYIi*2M&j;{f$usrh_p=o_~>3Yt=Zzn$|{zCLD}x76o1D-WL+fXdZ_m
z&d^dz?JJF(L%dQwrJu_?tY3av?ic5u201J`qDkKJ8KF#9MNd?0%Ne|;^`<MBNRx(*
zYRMK%bVNHH&5B^+l0z*mL)#8j-D1oQ_Dz2p{d}@t+&wgA;~jS$<youHxfHqalQ+fI
zqs3<!#I@c}56|q~&;NQYG=i-PG(`BV65>mLiEi?5BH5ZbyMF|T6ZTByZ8NE{{yKj-
zs>&lBT2XrK-ALz{vT!7a9(rCoc+M5FGRhBEXfEd=uE6&Pe8}$`{~?nBt(IhG1e7jm
zlM{ucLd-NqOVcVZf`Y1DH2WW~^DDUL8~5k#JUH^(TAvFwzAXXB(I8~akFB(*$@3{c
za9I0^mr7!+StwVyIl=xV^xUpT=fGYV?!&XYo?)nZ!wb{cF9?3q1(lh3>wPvK)<@j>
zs9M2eAN+K=aCf%(B*F+F@urFI+*3Doi89(i^Wl^Fdwy;~z}<90j5mlTp7`Y)y4tT@
z!Y1!se{nwl?bR28@nv4u$9)|M1q1ut-lur!t}uxY0%$9RSdRsr3z4(9t``-3D)5rj
z)B{@YMy*V!H^-l0+J73~GM3mE)Gc4(*$cZ<J46(;fU{pF2iMQOqPWIFvG2{~09yOj
z3f(^%WY3e|ws6~|<cB+JTk;*qu?gd}QxfW70xHCT!NK9$05A@d55I8XL5iP#1h1tq
zV0KdcbLaR4+J>ASyHx+Co0q-Qd>6Ncy3UVx(@r(IzFqa<iFZ?OAp+R%EAw&h<f_lC
zf%62pQor<hHUHHp6>f`1qEiL~sOrnk%R8T$!mhBndX?a23FpZhT@!8Cdwj>54nY1g
z!bktj2%p;t#I0Kc`ySMR9sq@slgZ;@pL_u%RW>I#lNV5{duwV`C7`Zel~a}+T7S`5
zIx+Ugmhr+%Nv95KKWNY%KNkA!LvObaD={}t+oJnWP@`%|W218{=q71%P4_*u%pKY0
zg3rwVI7`{mznve)c!;RTuVU+BAgU`}ET~^HiL*>(XqQd<7S=XML5IqKx^@1YDF$fP
z2I$jcFkP*Oo*4_A=s-=i0&?>IB`1@nn>)N^AdRNMBq$7S$3D~uT&;Uw{haA8<Ik||
zb<wgd+ppXZIX<|KD(2{WOmqa)?R(17B2(HrGwfq%*X|9AR^K}NaW7rqSvTwuU8(BK
z<5j}K!Yd)i2lfNfG60xVYp##&A2P{rmtA^K<aq%?jUVw+ZCCB>xdkecrx@0e#H510
zL~w$W%4*418&{@$QaB5v6VXz<>Cz#>Zc-9iyP&kREc|CLXR$>*Yq&O*@R<;oVz!?h
z)-0@<5G$!ohzW9i#9w7O_C7x>qV@B3$r2n93Z3dumLy|trD^!NHUTx?ezjzaOQqBN
zpRLzdCi;;VRWbzGK0K#jvTe;w&CAkj=<8EBeo{DlSRW{)$Cn%W@P~jpvEi<{Pd1_%
zjTPEo^*Qsq?HBvU@ETswMsVTV;U5tt))3Q@K%CiM6+WT+mwv{WYbNTlzB+1D9}?$r
z4zA4Pik^osCN+yDX;}I(_%%NFM-zRLD@v}e?PrdL<UXTz4cfB2WU2MOqvZ|Uih`P&
z3!Itt(DL%)iXnTncYZh@v5Il+dj;}sN}NGDX%3$kL$ESB)A;D6h{|m>JWJz!!}H>4
zL?!wGb)!qBrqpS+Gj^;!W`259k&OZx<vcF1w$O88XNEkfY`4@`d~PjNPE8MR=dDgO
z_KJ2~b@UtW%v7EBL(k$V=|eO*?0kLN{M%-WzWk+!D*TR6yvLNFJ!V;sbwU}pd!uLV
zNPv%gHNhHaJ<XP<!2>B}HPzY~L$t-#7JY)uyO|OZyvJ=BO642tz)A+s`7LwXQLYZX
zffd1A`9^|`J`d%yN1R)^NRVTe9Cz{d%fW88eIM>ZCGC?(A2pclWj8x;N4HmL(^SOj
z>(cA!j~)tQf4llVzi&VXXzlnLNZSfDtt;D9-5x<ho<_ncGtuyCTn)C%>@icZ4t<`M
zX3-CKIfZ=~BumiEx+H5-iobeIkH?A5(I0@auqSJn9_(Es$Wh82MD;h*-o_?D(Vxf)
z63`Y2OK))DbE&#hL3|_2+9oqPxw7L_Q`KBmLy+gFRik~KfnF_p2SdcH$V_|vsA)fc
z!Z(MzlWoW-D3JBY3=QCXfzL;5USdz`n<c#y9rbAH%(HBn$LV;32mG<L!&rybLd3DG
zaHePqt7UquQShbx5a$iGVJMUH1?c+W!GLn@cnfW#Wf8+0$%78{-NAf^nDu4*XKN7k
z2)A5RP!t2y0W`$%V3heQ@@vR;OQnr+kQ>^G5r(=vM5&%CiNCnFW4`ekoi{G&Qy)qg
z(&l}K!kV6liwrJmtgf_jpW!(i3aY6BmQM`k4+>O#*pyM`vU+{0o13=QUIUe!99qOQ
z*%ay=Q*`m3xXYU5B9=OisE_T})tx*BcwaS5#F@Y`h)WHpD^jR!Z;}(G6U(SMI6;Mx
zgPd!b=k*hvv|)F|(gHE6&0%A@^ixhXHfo*8-N7+sJi_@zo?}Ien4@-yXH#(5pgxM<
zIFDta=Ji(h<5}`#c@kaZ%1Sz%Qji7WvMzCw7^7V$O8oSG60wUb(^+99;;ibGr%+<J
zX^A<d6v@}C;AQ+&qpdi>c1(C2CDG%}bo;b4^Oop2{<*n5sdSxP!t9;mDJj3alMBCt
z)uaD+uxfC8{p0mj#>>Fe_w9{ei=sEF#Z^tA1@F4Q4n9Ew9IHDZ`Ko@uPd|tbBfHE&
zF*K>br0tRc=;3E(nJQMYmQHZfVmVnI89<<s4Q7VVfNs(WQKH(N_N=w(mC>!b-|F>T
zzG>yigui<EQfsL*kwwmu(If@<jj+9Xu1IQ-mc`wn(^jCN(VrAbu&%n!e5P6_e3p)?
z5G<grOre7bPcalR`>Gj`Y6nYs*y1MrV!?uuR8M#M&Y@9n<ef3aYr2DmQI8i2DskH2
zST^aMVnhq-usij>?zbVn2c$sHnBhDmTcCPH+?&Is^;fpg3N3;8xmJFD&lr^HT!+#`
zf5)|+Zu^5i-@qCUV6FX{<Slhi;Vja;m9!fz!TUo9_T<4^&iwB$#V0;Q)1IYFBVK2q
zEX^a7KhFUrz%`qTyp6vv^}By66^EQpbcv<O6ke0bvaz*=$5a^R0aIGaB)76o`6?Qe
zF#3a)`-kvJ3gX-MyE+r%$j`-=V`>#pyoQGPc7<{n!O`Ps-RuGMYM)QKqrtF(J-<*!
zb~KD5ob&ny_W>Lz<Bik0>SSs77Sr(1YuucjpOG1;mPgG{^F*Nc`Z6genf|Rle}d@a
zdcVVSu~B%mj1dsPtL(kFCwowOJO;<_l|Ls~((y`hH?`x31zT_l7&xLv8-0I(fFZIE
z|1i?$*A4rYAk+X695H5Scdw*5A?Mi~(;@PfRt}4syZcZ=zfd}Lm0GSJe<=LJes@^#
zTaApS-hQf*wN!%-Zm02b#ktRl9A?Dof)JV>37P~NQ_%;Mdv}wfIW_YOv}M<tp~mF1
z9_b#=1Vki^j3^;By)emoGW@z`xD0<hhZecDQ$-kOk-@%ih6qbY*}L>c|8yfQHEoRf
z(o;Vs_D#u$$`I>)TpwCMzaN~XSC5ODSJ0ikpO_CG?N5&|f!QDMt>;H#UAwUmVrBoV
z<^XF%xY?L+Ger0{R*oC4w=j{rxU8B;szhXoHqowvo|Y)o;D@w7o(M$gvY<@phYKE$
zV;v||aKH9ikF!v~(aV66Ec<2?x6jp2l}C>*<(37eGo8{*g!FrOma6#&vKg`G5Z$4I
z^N~88JO{W$&{Sw2XJ$O3g&jH%4}btp$O0K{HVTeu<ew^|`eP<B$p|<&B<lTvSGp75
z4&|J^l(BrhpHl}#FlHlQ@!iuSj+$JaaT9!|=Wvbawb9(LOe8f96()*{D4V{bE9Kur
zitTQ4a=$<d27=m`AX+`T1!izI+^CN$VnRuxp%3>X#f?W9*}m8=rpEIKsi0MpCe`aY
zzw3{_Dg1)a&i+S?baX4w(E5{A058-qvD~=c>ar-Ps_=TycQ-|CH3y=Xj{qTrqOZ^0
zzZN*ad+%D~UhIygOF`5<$WQimxP41OP{FBbDOi4hCEDwgWFvz^NAhJnvS6vhoxH)t
zpV4wH!dlu2_Lf2S@%=)KKqJm=r5KjZu*G+v#I$O=9*lat2qVQ3Kf-oEl6W&RmTWwI
z!DQSqXoMU-e%va_RhF6@Amo{q!cMSu_sPIS08DqHN(yy3**RmOLg&XfQi6qXh>vVo
znv(GAR4*XZY;)OtNJEL*nyDKhC!X1)@uFCDnfsOg!o>v-3{)wZ$mWC8+@0&i7nq|C
zcWa!WpiuAjm~Q`sEj_&ctvw<>#|$X*$GdkU^gFZkEo+GW(PvDDy8BoykGZiG#`|xh
z@?@wpa2#i26kL)z(=az@>LC0LGc>u@9Aqti*n|4*&&RNIKRsVF<Fi}yfB-|m5c#R}
z>?u~BKxZ%P8FalB&21qQ%ZaHMaG<kkynBG%9kSx}QI!IP5cSZ&CcM;CBa7$DD!rP8
zMW&+^X4kFL#<*5k7a&eJ#FB?i4C5Cfe$dOK$;xwt?{;+_CP;<(qDb6%#4*f=<~SW`
zrN-6koi%OCi7gZbb9a#9mt|DSIaM!sWn4(y+2xnsA=FoC^r!pX&N$m^TM`Y3M=~Os
z;ib5O*d6Jfea}_YC9>w#7;Uo_JFW`()GaS=bMy_%RlnVmiJ$r8-p50qr>B&ZqtEmF
zN!4At`9!%{;T{ZYKRvX5$)TR%kXHEmn@OBL<^DVrIqDc`1G{?$aH@g%)xaG2zGnF=
z91Ipp?3>Hg{d8dajeG>FAw*_#$vb8%CaT>U7%w4fo_T{_G6acx9*EmNHgDG?*VA}I
zQdvENx=Kr!7B14>$Y1?Lvdf~ugk~eUxpPxx6jglOSy?^3Q|>j)21=Z<ne-X=*OUjF
zQgHiqdeGR^Q|-&D2{hQn0*BemgDPBDFI-Qbc3;MExh+k5tq&lub$5Z9N1iP`q5%c;
z1H2IO>`#=cwezB!L5YlpXLJm?y<K-UT=I?$Xf~)%q{<_UZ5U%AED5awTy;d+85WbR
z^KxAo&%xQaqvyHy!|OYU3vVRfJ4kVDE3nN!82U}Ju+hLY>rznA8&&9wK2+1nB@J@O
zZhIU7uZtGM(!hL*w!<rO*qe{+3$UT`w9hYQdFwwmG=<<2se2AVIf#mJ5fBI)0yMF3
z8_1~rimJB$*?T9EN(@Zds}@oh4rGk&NO}dNDl*q%R*`Lr$Y7Fv!07Mn=kBT;tD#;Z
zw<y21Qhx@h`td8ufLZG4DSmbu738nrYMGDP$gH`1yX(g#K|u)sn)P1Ks3AWkWjUG0
zYNAt<EOk|j2Ep}d3`XxkjUg)TjDki_nPfQaMv><2@|%Gy&rS@OdTlV6QkCfjsV;$I
zekOcaM6H0&RF2TyU|3hSo23u<?d)`2Ma7BFBSoD!%OFYa>TDRT4c>9QVUoaQ>Fo-9
z$}aht3Q%5(#>2YH3WB5-d`X<CzpfR4{{zsz1KIS~Ei2lZw>x{V>AU*Ay>tsT_V`uq
z^O6)Ansa#Ao#NMJ%CUk(kvtikPei?pb$+tQ+(IIFiYj^~Q7YnRR_WV&mmM8m%Li`r
z*1ZASd~(x~?ro5!!tx65!AreTvQ0n6s*<IKTZc#Hj63Fy+c1`}byvWYciiRvU07tf
z6PBsnkzzCo$F9yYQkax-C(Y-^pY?Y3({ozOiF2FdffgIkntp_c_VgZwi*;Wzrx^n&
zZObnU`kUPS(V6~4kWg=XqBQ%GQvJ7Gv!OpBE|+>5yKU7=T&*c0&a_4s)l1_5q?dK2
z>HDA^S(*dW?~ykox~8ZXmo>uFOJ_3u>lVC2`B7Rl`#V`a2le^$+dYQ!<fLLiSKet#
zcxv=S_)|Ne$cUg6%}=Q&S*|_;4!S&7oKHbxn+`dGqFb@ljU|+L@Aq)jS2;sZ-=?~?
zXKtnkOT}QV>m$1B5#O{S%eu8O%nw*OVcOhGfqS3c&qgksIPKctk^-7vc^{Qq_HBiL
zy`PWGke4Ipf-erHgH%^&(j;7{542y~EBh<_)IbfD$lu3N^^S%1ee$3NW`&l;5g^W2
z`U+Yu)+{xp%NZh(nU&rJSvz4(Sen`}JwAvOgcBw&)uraK>0_@P{S{fGOOLKLXO=hJ
zyw;anm*yApt6AQ0=U<4#hQI6S*MjVGJAVWprBFXssanWEj$fWe8=oBPE++c#m+Wr~
zX@vUxgp@jdqNshVIva2fK+OWV`qUlhIR~HRFP3~S9EHqXhYtHHtW4x=^kguD=?(g=
zv}LCs3_E6S@Qpf<w)#bH?aF1-2OwkJZyT1Xa$oa{T8D{Vo&l@PmfDPdk-pt*X2AOQ
zWHyDm)Gevg<BTNqqdsl0Vu-=QN<bM^X54elW(N#(r|O_hw=@B&E*rYlXNL`PFRB&;
zvjqA%MTP?~AN*CVwGjwc?bL}HKs7PldzFGZm+_^V6Ez_JDsXW$$gKGFx5I|Gny7Tl
z$DYGUZ8xJ2-PEWqyLTY+DzYrg-*N7d1eYUxdoEwh`&I$mSpTRaq?)#^K)-(Rp3cvn
z2KRReQ~lkS2T#9?jZbaQ%V;6Irqbf^j={4^WN06&Ft(oJtoQ9{;w}G{H#e8s+b<Pf
zYsgPRt0&R;u|(S52HO`Y02sU0bvY;0i<lx3ipWX}Zd>j+1OX=dC4=az{gWKNVuik4
zScjVA&S70Ixv`d{^yzTf^16A4-q<Uup@x&>oi|4!ZzI4@(U5R6>FdTZy;d&Cf91u1
zMvuSn^=E}0I=`U$^Xq{&eb7B$e9Ez%jilwz2cdhpAC}n^$hSS;8wH<{AKDw|23m%(
z4mueZ3TuvBJXFtrm)y9qX&p5Q%<E{Jtmb8uf9SK+=M=gwYKCFBZZLZUEX>qj6&-bt
zAeX~|3K=n?du8jqY96!R5Jw;+^%?OrfBda?%#3iL@5S1v`^h+DSapkH6Ew<<V`HH^
zxgBU+nwU|M<Ph0@SUf|KP?+049Mzo!Kv~`PJOF@tUfJyg7di>K<`6Yt=O7d9-B2y+
zvrKZK-hMY6G9?9m&Y?B+9}-p-=laanG!!9y)=aTQikhzM4Nc~E&IAxW*T$5Vm%nPe
zI$AL+K9CZosVrQa;>8YB&6r$Z3p4z$Xx}SISr%FlcM6Z~SDK=_fGa-D^@9*jS((G#
zoH`u2slrIf8Fb^`DW5X^&VwQYjWY^mKN=!3t1T;7%B>wKg;|t&@&@^?r)KP<;~PD#
zwNNSAN0)w5xJVg0;e)i&V!t<jMFMy;qin>?hsSqtJ1x$Z%efnf4xL=sbh{dNrOD%V
zoHvE%{J}Sk7VHj$C-w2gn_BpbpR*>U@GH6IUI$ZDr>SC*-8PM&i>$yyD1Vmj?WE3d
zswnfOXU`JQyzbE!39QgLtp%V3EJ5BwJGwOM-Ay~E`EaQmKGQjH@KJIj3-E01dF-hy
zs-McrQ`bewE3(rMvw2S8UhJ%NdiTiC9uZl~-{-~?C^6&>UJa&q${J9B3WYV01W*Y9
z^6{7MUX3b|@yBQvU<g~vWX>kfk~zj&GQk%6^ljIY5GNDfUA?j3rcgJNsTK|kLO~^4
zfRK3nv;OgZa5%mJogT0_+sFE3ogPXC_fXbDJgQ<1N+eH*5wXfF{W;%~jIV|1_}0*}
zjQL!8c+Xt6Qth;tagtVquxV;6oLZ+hOt3&M_!jt-OWYitGXZNl@<IH2suz%vG)*+<
z0n~}R_|Z(;8wERR>!iUN7o{pWc81|}m%Pn9`uEz2ytLHgM%(+se(G_SrP9HDY2*0V
zThtvIiHC+vxN*Toh3ZSBCMF(gcG)^fUzKsp<I`@4N9nM0RNj=`s`k0rEr_9qwyIvH
zbm}7@Py{@N)FagATOK-xpqCs3Q`yd{iD2V8d!^oSzuMSWPQm0Z`$-c@u#<HuF?coz
zXq)#q0^gbUy<ZjQz}onP+)Xdo2}^DXe(wmGoy@Fib_7+C=#fAtHAtLDDFuz(LibNH
zYnor!<f-mk_S#2vmNT{DrJ5dlCWG!|Y>e8^c~7{}cxuSXvU4F+Kbp{n1R8673cpjm
zhCGpAvAyP06UgA3T3^?{c}ZhHo^CB2m3eCE*M{!e0yxp?TxA+JL-~h<7VRta14fj`
z%-k;Zu15a@JO&Cu#?yd6H82ODo;kL8uz%fn^4m9{pLwnM-;0_>>{(GXWfx;2_a>$j
z(sws&QyfXZl<A*)^Q5p?%Gr&bi@+5JS~1TiOKrd+*P+}z!Evc65h^fnDrh-xiGe4Y
zo0}JSj|tnPNhwShBNa(CFp)Pe<$w!3C;3KWzT&yl$4ezBTVpoVk}REzMLG^GQ8bsy
znI!o1F;X=1EM>aG%vcH@Vg^rLp|v_U=^AzGdOT9?(7hX_+8;J1EQB#u(V(C?E>LIs
zco+dOn8Gv(6RavqAF8svQ&Lu=Z0oyF_hS?c%02I+U%%;f*Ed00V~d$!6;02!>^`$(
z?jnwj9{8|zInZ0yDR}Pv?sVR@43s`EYx!rT#TP=U&mrhRNqIZLMVdT`I>NcF&w6Mx
z=n2Gcl7^N3m{G|YCg4jqK$n;#N+a}r{LLhAp(WL%$)`8+a?qj(`@6^}LE##ITJnaW
z&>i$DfVH-ygd5fKPlb(+KW;Q^pBULO&=f<{=$Ed3NJ;s9IWHRh%CA)XNB-a<5MfDH
zTPvKI>0HWV^|peb89#o?EY4RIF@0D{3F<n<l7Zx+QIo><Hm;C%rQ^09j9_GUJAOCB
z_@gS$q6TS8b@sqggWnqasV`+_@t!_K`j&G0NRip9%i=?-?u{pr;Rqu$<K$tyPFTmF
z^c#QGrE0tMogrPABAqbM18xn%ov<h6=g%`9>X6G;NGgwGDg^52O5E8D3H;bq5J)C2
z(0B<gzJ+mdmT$HBLv&x<VvVV+fCI|wgx{>Lf7ysf7V;MV3Ad}3cSPIUJI4!yySVFd
zje18tI04-}QX5z0uT;}dAjZtHEzQDgGQ-?SGp&ZF>TH&4%-s82vVMLFS?UX2CI@tr
z>}P26&|1?1Ff&B3s@eGZF{xFmQ=tXhb;L07JVep6z`0ezJ5xK378@q{x(4^y2a+)@
ztWTNITtiSQGeQ^d0u3-`-)exjrnvnH^nsYu|2GbVu?_vjV2OWvw-#c+|J*Rc@-dEB
z-qbbr?BYyA$@5t0(3Q8<0@)yXo&Hp}nmAbH8c&@clk7cvyejTl+E`~Gi+Xg4g(yJg
z!a2bSRHdcZfnxpgLC}(?KG8T(|29o*QsUYH%b=t0BL%wy*v(_qj|VSxS6Q}@#B=l$
z^xH7U&@gSFLv4=Cv$=tu%MkvJuLr+A5f8>Qs<S+Eg*EYo6*oR4EzaDJR+&@i%3Hft
zwF+6^_$pKd1`ShRKXPFEEgzq6QHrjK<`IYe$^^DC34v0*J5P5lfBC7rmb~pW9bH#e
zi?kO~?fH=d@8i)0Be=-!QovJsjuPvHIk&>cgbmYrN?=ZqGpEU$yF{-=-SGW>V1uDh
z)U^VcBOYJnQrbfOnh>lcN;$d>eg;TQW&Eh0M%}!+`LeMaUcP@Fl?<o)JQE}K)3Dq-
z3!?ZqvGM@giGpcYNwwD%741cK^=FOP67Ym{y&t|FlB~p#NbgD=619^_GlpDb;E*do
zU)``g_}+zx&(<q61K11Nv`z|UmgmxFSrKuj2a6-n6G!xq_ekl?eA`Ag8I1{RJk4#T
z#Y1JYb}F`V_FFPRN9n;u=?CwzVGDoSGWwmOOH%6})~{iFI}F|{t|2?{tcA?oKm(DF
zzuYI_-#0r+_XDzVAxUOKVZJledqGuZ^cP-tgU50$*P18RW6ggObi<-yuA;1mgf@P;
zdS8C5-a8;|NxKl-%3RA`2Ysm%_m;M8PO~o1I~CSZY*S#P{eUEso~lw`TcNVVJyb2o
zj5idi1(|nYAgc`Me&`T}ct2%jcx#V4;T0=3;>}?1`KrJf#*oL8O|gutK4kev>&j^T
zq_)Dt_;E{i23G;e;*pljb^YtV2M-6vHFTM-C1vIvy|q*$BKj&@=@TE9hPanTNJi-G
zJ$kF(#w%tEnr;^#R5G9(A_0we8^$VpE`Y48Q${4Si+o!#zd;!3%MyPQ^0BOKYmI(3
zZ;+4ox{E*P4`4|RxhbDHL{LAFjYj7B>`=?#Raj);D<jf5_XF)@U}>KEPaZxiZ2D0O
z9V)R?5$T^3y=$rc-F3K$6UqGYoK~@nW==XmyN)sE%>WYjiPsMcJM(faGoduEDYuWt
z5Plr*E1#zflN<SbveTCDfboOOkq9mYh<x{^1Fs}~pG{$+2l?*ngWXeD%7g35u%aVa
z6y6zbjDA*|$tm}yNp--7%w;8Jg!KS2d;ub%ZG)#H2n7YQ76DzhGWF5p^%?>MN!W<J
z5h*xJmCqHO`Xa1Zjx}{I5ODBlEz{|}OBEhMZOb|3yqdfH%y^!dk3Rd0>#%2Tb!2em
z<)|fuB@H;@FKNLA+n18fE~+QeMS||W2-2T!8!(S^S(UMD2YhYyXxGsd3tT<{<y(MX
zg@*cY#{qpG)HE9r{h|$h_zhB=#Ft%5Rz>K~DJ%cxT7HxJg)nOU2g2y8U{F$fqpv4B
zW!Vnxk=a0d#c+=R*2+@y?9$^N(&vv^qXC2|W6)xz-_ioa=)9j%cpxW(y?oT;Aflq9
z8w-pLnftP_%v}52C-otxS8o$L8_KZO*FZ*vI*j|3KkYbNhh;muJA0Jhn55c02LVua
zV-}EI)}yQ@hql%CSTv1F+>Y1Hd26pve$<RP=_o*uCR_ojR$EtAn}FEmSl$z{5ALw{
zwt_WsOi*#P)6sM!<E7?T@cZPKpPwNw^H|NSfWf!l-Cu>T42G{ImeYsWpFmGK=}Nlb
zpcnh-6Ot((bjQy6NZwBgAI_bG8;3m7T<<3<KuCi~99x4%>91wO%W`Er&!qfK^nU~h
zYmKZJg6aIl9=&)pz6+>*K(eruM6bIVkA6Yxl&|j+XQ<_jeGX~MLTvHtL03OwjjC(>
z>Q};QrKtx=A>+_UMJG#6n_AvW084-PUTwR3!3wxL@pY3vuHNkDOvBz4n-b*hzKJbc
zYL&MI4mZ8>C#GRq;hj||8x|U%@w7|Uk`w?I>B19FWu=$v`~Z>xH;OF=T1ffc0J5zg
zBndb;9a2(5Evar1awo{8nA{Bp#=0b>8I6=j?|_BPeCJ#+hGZ=NRI|rz9ZvJ2l0IKe
zOA3Ay*ucQUoRMlQ2!5I+w3dBtm*Q7xgsd#TNXo-t2#03gkL>LjmVPWpdw!l_;nAA$
zmS%CweJQdq<5(+e)(6-^NLQGlKX&|cawu7R)_<C0sd9MGtP#``m}4;;-kn&KMuX2M
zZ>bno(ikda1_9$0@~cYK++Cq8r_s)^sXHHk7AfaGO~aW1YP6DW(`2}HY-Go$rWi}J
z5F<PoDabkfN(n5>wbbpF*ab{ZS%Yqm0>n?G`pv`me|6ge92tO?Rk1gFupNuMNhDBj
zstEUlfi48)eVv*rxDUh~DaYc>L(aHM3V%4%o0}vNe9dw=hj{f4$i|WKbsoSLW*J0s
zMSm>zQSj3cIhN;PvKx7bW^uE@iKN`hxP7%(BvGzR#E^A-3v48`@)uQ$5`sjdB73Du
zv;A_~+GpE)OuMW7?P^flv8&o1gCVt{eGdTrx@qv$!O~ItSgnFM$<25rrx9ldq_C`L
zwSU%|vsYC&?#*V9y%&H4U4q-y))ye@;@a*jj;smE?{1&WhrYn^Gp*#=ncUL5%h^zY
zS^Wk*Ljcl>ZgB7c=eaGq#nH|X1qh}}=u68QPu%;~EmgSbrzG8xQrC&7-fQN;=FgLa
z(g$sr?-vZMi|^T3o!ztTh5&~RhAT<;<!uSR@b1=Gu{_w0oo7GY+cRr^;T>g;fX7@l
z@V$HKIhmtBeeRs|RM*7IdNcBmj)<dN@&x?jTY6`x<{#aC*FYySdlxXW@N>W0!8K^s
zz<GVj$!tXM3w4#OlAiuk+XKLsn2l9uBaAH7!3F4-B?mQB!SSc8r`EBkDU)4kn)cx0
z29?%e`X(y>O=|0zG;pS_>d;4Gp>gb9$=3s!YLGLCsfntsp6XKhXe)TT-)#YS6Fj1O
zc)CMSk{SE9=)zsYXyE{<1WG`})X;p)C3Plqg%*lIU-9eEU7uU-bNCxDPT7@KFEt4%
z>8XHrP$v3JnR?c3dwRU#G>N)$if3~~e`Rh~0uaTW#x<v^`^oz`jLt~pw%kv3VOh-X
z5h_SaG%LJ|hf6Ksp`ZHw<0irl9qL^gh!GsFofmS*+&vI@LG+{(Rj>LC>|<TZl`2mw
zcw&mrAqS!N*BZm^JA>iJ2AAfSNK5CR*z~WEB3WhrZL7ML6NF{wdZZmiv%Y6yk%VmJ
z@!;s|Fc;s~71SH8_Cusxjlw0^Cx6H3Hl9cuf)o}}tbed?1$JjHFDav!lys_c6B?~G
zEv*^mXZCwHLN?xOM}-j?<<<t2y*K}&RWDwUPTW{U6P<SW5(*tRH6Qzk$ek7IVa}>w
zvpCaO-tU^^FWP1YM$k$NF_%$f`KfAW+5}o`njGXq(McPyyF$86Qp}NgKuDDJIdC0e
z6$`IrVW&fnJz$)nE2-ei9OV=pG=oxqh?&YJrVrVD)m<7OTLmL|D{^S!2{ndA=-!^G
zS9t-o%06t0g~}bE7Obyoh1Tn=y3-WV(*HpG`Uy>EWXT>S=a1;8n&fmDcCi|KD=_(t
zxFl;+y@OzpImKid7|ZqaZkqQZESoH@el4WhdeF?hu`!qiuJ=7FIrC56*XQNQ3W6ne
zsKd=t$j^G`8#y#&-vXGG!Y~u>nX=t8e|^WczmM#$^=FTT$Y-0c&oKPOuYPJEyUi2G
zhT6o|8u?Zg!a*aa^c9mmP^qE7#-^~JW_mZ8ZSz$3==*Zw4HS8n4R)f5BPiC+{kc&O
z)1DhsT{0zguef)odZRvfqG|&|pP|T{OTm&KDolrj`n!wFvKEV%+~6>gP7->`RRm~5
z@6~}<Tx^q*O0`SI8l#}oUL(_U;x*Lgn$-rDO`o!|R@7P5!yQGR$$I*v>qQa0&Veb+
zJoLa-zXNUE8E~N+bqj1_X%4l3c{ssW!0*V)<-&!dVy7@aRM4DmPKK&B0BlZm@q6uS
z#rxz%%rxavX4gA(aVV-8?Jq70P&ZD4C9LySI|D7B#2%nzjI7KnI@Uab?IC939p~l-
zb%)`p_AqcX>#hxMsV0~5cu!Hm5;iIXK_IU3GUWpN2(O5tz?hZ*XrigPc)u(zIDkW}
zg(N+Ert}UQJf;1%t*Q-mhJUqg^v0|1(Vc}+XSPK&8Mc4IJ#^(e1@Xz_Ltx}95FLH2
zJLBzd3mcif{_Lb(V2uR!!Fs|qQT*?S)Id6GgNnTY1yRNc#OWVXb*GtMn^PQxSsH8c
z>toWfS*PzjHA_~*mtw(6<Gjyr1K(DEGrxVxq5d*~bf<x{qq0;csLGd&KTsBU*ZRwx
z`Eht6J@s;`+V=}`v$x_l6W^ZQjh_A7fV!TxMDX3un}|==Ye2mUdpk~&eJmMxIel+a
z-diz43kiJ%_xsmTC7|9srx1Dvtp-{`aifh$O)M$tRcp39P0pSwBdCcXs^j1RO<TJU
ziqnsaXK2IXA&p#umQy18fE_345Dk1NZ?`E-<x-4In*9YdTU!y{2l)hxsEckmLAKLH
z?>2cH>pG@3Wnagw!A>rA90;kQIaebE#z~>`@2cG{^KW)f2_M9Fs4JoZ@X)in`&0|M
z?>xB!O^a~3-lSD-?Z2@KgX8+KLN=1L*O!WU5ED7#swt<kb#si&Ls#Dw&X-?E%w@-H
zr@z^BA!g4@I4$C`QQUqvqpf!=ZUD8-zXkqd^M;q-@_}w$9VdPz*-&fOg6;`JT@Rim
zTd6ehzdMG`e23pEZv#1uuVziPBUto^MDrtA^!}B#JL0<_6;t~BpvM{3_pafYSYvJ0
zla&f~NuYDWPMK)!=}(Sz)8#^CO15;xigup~-LCy!v@e-F&ahlx?htL~jsCVG9oF)O
zBAcQLQfW{PxnPOGZw$giKY-SqZ8pN9hDoTYqiGsVDzZb9+#~fFySw669g5!#-2*qt
zldgM_c3UPm>jpP9m~bjGM!3N%c9vS)D%A{gK>vL1IH-3MAx}DW4{sDyHC~t*@zD$C
zd}c|?!=$>oxFb&<E_C`Wt0j%Hx!rJ6-0fh7)K^viJ099Ck+V}rRh<kRUx!}^t#h$!
zl_sBKct?X;UShz=ho#^q3pG&???La>9uRC^F@nMC#P>cXlHb-QJ6q!GpmSfls&bJb
zLUKLlm}Fg+$UruFmP)K~9I_eF^7zujTLi{%ouOdj=R%dA)m^<Je`T<LH<xr)8;NTe
z5>qm!DeePTd*@$=lV~5A&t)=`3`Mm%(L^gt(WE4IIu~XL3qdluXISviZ?CbPTC=N?
zCJfj`!X3a&ESujy%f-&{YR@-i_m<GfnmZ0i@cxh-#Ury9OVDa`--5gN*MIN+qV<}U
zNV*>WU?jAaW_6NrsQNbKeYUe~Z(+-A^R%k?t9XTq5$lSLRSxk*D5m_Cyhr^{V+~%L
z_?thPUB>Z2t$T#Lvr>;XES0BS*lq7H@unq~nU`Blj+hqi4sDfiGTkIPk~TkZuhYm}
zX*XoOA+hhAk@?%%yxdIhD;Cqtpd~-QU11mEz*nvjeUO|6Wz^n&&cIQOZotPV7VH(k
z9m3HFdya~PRmH7QE!~NcLa+8pw%Ig&Kq>c5P>_17wZnxM(o@e=%OMoMO2WuTDflvV
z)bY9gz}uY>5P>q*DmcPPS{DveMiptV{*cMbQg^rn%pshgYH>11vpCr>ibt{<YF&TC
zH(KbEH>ARXoVdXlP*JE4wnlb%PA&e^xs}DeovQokdn5;KW30!`$>8FdN4rF!^{qN3
zY+?3m!^|fpdrmpl4Aigh^jAQwcc62-LaA=OJNGW9@S0R{8n`H@fl}%NVEQ&U6pYKq
zITd!ZI&M+uB^KHTOd*scN%qs383EV`G<RmyPWI2OG?30TxV*)AtLOM^h49){l~xjf
zD8B;n<NaT!OdVW~>7e20mEe?PGR9QiIa-@shWFl7W^CK@V~z$TtXFd$%R!57iO$J;
z6P4!rQEB1J3qm5*wVO@0?Vx@<GcAofH+ji+BE@Rlr9SBB#jfXECQ)h1^O;E+UNhCo
zpH%2$VG?Mnou6opUVQQ}fT#%5HuqV`7gJNZzKr#ZuwZ%JOwmQh<W$dC$LLc{0#jMn
zAW!;qvZuaQNwedNqY2m+-aSOb#8BVkhCo5|$-FcL+qeanf|e?O@$KG?)PjTlaq?zE
zf~`*xMg<mGGwI`qP4%IMUAnOF+t%Hx<$v`8fLNtYnHJ)b=j)v=fjQ)y(1Tutx(8m?
zO99PU;hkRksEx1%Vj86D`Rit;m^WcM-&*30UtVIO8EZNfAv)U$52DD)4T1)}j*tz+
z(0hC47!=hh9=doVTj^R<I6&-oh}Fp{Sf+#2WFe~rO6BC^omip%o+a6*Y4UFE^Ifnw
zNq*_-LhG$1*g)g)t`8az=u7JjS#zPm@P#SzkwF0Avp$3<1;-j%|8;{4#3y;W@jSg8
zF#WKypmE)3Pw?ki{I`7>Op(~v;1e^%CT#fPZ1fZ_=;%#u-+fSQ16yZo-g26LvAD^w
zZ=30~hv5$XDSSC1ef!%?FuX4d#9oU2V=&Ke06aZ5<AMM%e3J90Mhsvtn~C+z3D?E2
z=MVO6h?XrJ*&+<j0^LdYvbidZtZweuR$T^pn|3<T+{XI~CS+lk7W-YIoWr+bnJ^5>
z5Z8b1ntApd<@QMbG<ekx!wC86yC^FL%@s@WR+-O^YHzJ7B05$z5=b`X9gmMbP@gR}
zY09|}qfM<}UfjN)(RsVF{K3aW*-jM}P2z^)%$H0D*AmuLX4Q^`&yEf$=Gt37K9b7}
zq-%6IRLz_^T`l@UtS1c2nAYp2`a)phJ##fSF0<T?FKhB~DUFR5yC=y$$koSZ7eA*3
zE}vFyi76B_YFg?}%W0JbwfNxRD6&SJ-rTj`p=}sB2C2fWa&P6BGVX<*NA0x>!${OM
zngor9oq86-N?Qy|IFxH$Uw7XL;D(HBmsC+{t)2<AtGZ^@>p{@<n!oZm1}psPj}WuJ
zZT)2gYrg5pjO+)@V7$BlB;v@I^$rbFG$+nuv35*hz20cy6@#>HkL8e+`16ZyYeRfI
z1zy1W&RI!DzCG9SL^)Id&?bIq$zvL<g@spi-_f(D&@+n?*eYR!aNQKXK6EGDF|x0%
z$g`Dv&y`f5rOgtjL(?pD!=SJD5zKe?_*>QDpDp6hdK^r{w6{p9eGI!hd)>-&u&Fw8
z%6;jl%%kf?90onu&U@-m{0DM*AboSi0u2bJB-Gv?c=0W{A!?T=h|mi7=6UBICt&8x
z!u(AY?B)@iguuH#AGoV^fpz7EM>EC@{NysyU26d0bElaa%G~`EUAYwc!PHt`&rLc#
zfz_Lxw@p&L7<0B$(~0HqZT#x5)<~t-*2U8)iGeH4j(Mq$0)E;}phqm&;pbTkWS>gN
zS!97%CXrIApOvPD{dfmI9<8f!$$Q{TpWa|6!=s3|9mdZ*4+|OHm)t%2JSZYMZzy37
z_fVSWv@G%|2Xb)W<Ly6sZ`aPvCz|Gl#5V%-L+Ah0WCGE>3b2W}>C73tzVR-Z+BDOA
zAWrCmNK-VQFQuv-UivyNc*{8{2$%<*dNfyaVcySp_gU>HrHwojImu&VcYMxYmgLHy
zOgIBWv&R-Msrbn~&wG1lTGGmPH!8Kh|7fNK)LRM?Q8cC~p$>9F&TP(t(f2oeB!^SF
zsQJ8?kN2+5aR(tGuMx#5akU8?H^r>;1tAymi#}JFj8FA332C<?-tC|t7-@OUjL>Ca
zG&G4N-K*o4Jeda06gTzs^o^l&OYUX)fCuU1`045Ou|s<`-KR76>RKARF?oxh5v8)D
z>h4TWd1hlhpzohuamf;g&@?Vh?2XIKlu)oOIW(pQowOA{)4{waR^qczYms`_f8-=n
z{F<Gn?+MN8FrQ3T`E(<L>4P5~Z$Odz{|XEN#+0M<n+-}EtNd+$pY&ZjzXS=CiP^^P
zW0tN|+&(gtcnKJdo(5P8n<ckYp;_j|QHhoh3p6WZSh@=IT)oqsS`uQKn}gb9>Dm|m
zpfRJJi%$y*I6){BJIbP{p1<_!sbWqLIBsevv%+XsCU-7|))laDA;})Xnv3@+KOch&
z`qZ^i9~Y;kIltz$#i3`;D4d<RWT~|hL|K{JUC8*E2JpMj(vY6?FCQLH2t%bG8kcFN
zNQVC)uU@OiGdjjtBqVnKgEQm^x&~{h1ZNUeq7=}$2O^bbaVMJu%yw<NciEt1Q=Be4
zZ$M|!GfjqeeTm)>rhg<0xll9=Mpvk}Gpyg`UWY|Y2&}M?;8ZUA<kPSKv(8a4qI@|<
zpeVf%=jNPPdr`f1y@Q|3;HYFCn>7OW3nfMCO#=`^Rls{xt3-i*jF4!^xf3>T_EnOw
zV}~}hkdtVm&ux&=dE7#F<>5z2@vK8y_?46@!ijW0zr8&wzv0&SHwKqifN|f)*UFdl
z*W7CW!@7UuHqJ@(3lIX&Ei*pepLQFYxa01W*pZr7S(xPRn47LA2|DNAA?BB#&)9kb
z9u~ZOF-6O#xWRjh-L7W7$FB66ygN2R#u02@fQqk`g9%W-_F8v(mSdEhUl$-^b%%DI
zp*0k`#EzMBKQH#VnVOAFMoTqTio&LZUMeV&FwE!8B4wE_%R+E90ZG!}DT`{$fekkc
zqcLrd<?tQK33r|8wWD0z(*(3@8<;8IxMZ*D3^N++X*{TbIZD$a)HdpMp1L>?<=&uX
zo*BwCnGR9hiXV#32w(KFNMl+kZsv`3;5vOM^M14yV6@v|hl><{Fbm0Gh+k<AGf$75
zD+biE=an~hEP;TD=f){6^ZHdktij0O?<+}X9-pGWImCQd^!W<duMp*P!j6_Lk$ce-
z%zmOzU-DwDT%2|eAQbW6+I6iq$B{KrQBQ`G-#>{B*MatRC~vt!r;q}CjF9hghH^~K
zLJm`<kf*vCTEXI{N*K1!PQ}iS0btX$3xkLY$l<BXWi(CyZPIK%jgA}*KgQMuWgH62
zHtnQrAU(c;&3N8y-0?d4YNg#VX94Q6JW4xvi)WU3Il51a?A(*J*QpHbDdAr229BZi
zPy0@`@0AT^r~j*?LFkrW21P^3jrr>+eA@lSj=pE<f**XeentOMv=AZ9mYZIJa;Yu6
zfKN&#l6G<?i6?ADG#=P8m1#<K1Y*$gduQEE7c;cwK7|M4pZ_etB_HiVq49b)BO9w8
zhd073s>H5vpJrM#ni*R(6rXjmzCF>sZ3fC^3`s3cST_TeReFJ7_j4WW1I&XEPq}D2
z)XrKz#q`0Unz;QOv(87+!Q(|!HuFpB#zSap%ij8z@B!;C*eaJ55E}mT#>!j?j@s-p
zbs+i>iDPP8vJdB%v(o(_CL+<F1Zr!yRk+pt&hBG3Dt|YeliIM99gy#RhmXhzsJ~-2
zdL9omfbAbZCig?@>uqyF4HeJ(5%TgA1uG8@ezfPRgvXIH+^7U~ru!&*N(j2g0lwI1
zYg!AV_BmFCjAqiPx3Q~LH!^_}Z@B4Md~U4v=ivf~Y5(e5_@!fV`v-99Ea*{e`WG&R
zI8yaUmz>0=^2+O1PoT@GU0US10;Hw*$z&x`Sn!km4S{cMPa`^etLOV$xJzX6&u`p}
z$@$9eN;~sAygBufE84h-sPz71kF&_u9Kpk1`vGV2-Qt(1`9X;#8zd~geKZgvKwZlv
z3xB@-M&cHCI#Uff+A!2~luW-pKOST=xUF<lDMaXeFH&$6K`*O=D4I^}U*Lce=IHVB
zl>futTZUErZC#*(A_^)Ph%}0Hsg!g{cT1~u$EF(<Dd}#MlH7E|76j?;O-VOM3!AuW
zgZMw^egEg4^SmGKb3dFfK8SAk#aeTYIp-K-N$(m6W}PxDZx{kZIdxR^)E0gPk7->M
zVI6%gA3`#|-3Fj!7~sU7;S1R%nlxV+J~$386fa;891j+GlYs4IO5a{s*z%g|u11pE
z_-slLujtAIi&X|Rk)vE(DTebDT`b*02~#kr$PJ|cvLGF1r~z7#0z;pnc)iYj2lYa*
zwt6qv+=H8>pFTXZ33lVGR?g)pbRD%jfYZDkm>zpUA$4OQ6H=X1=$GK0@0T#3x4NzT
zx~N1m!vU?>uF6<0WAD0rmLl~wCc*w9(cV+HZJRf$Yx&FRJ}NNHTrp`2`R7`bY8qLa
zL)!XBCkW{EpsTl`xum5_&FJ1l%7Dt0|6?I3{&sMmk$Msuk>0C?yaXTzoV?Pj&oLA>
zS`o{atGaEdaJ0@=FJNw#f6>F-lRED*ug7&^*(2$`x?y~4YE3bWKRT0mhg{rhcS31}
z{QXy#-knw(xEhsa)WmLa4RkGL&bKj>r0y#h2#~85t}-6XMWM~JOj1vJth_L*8Z5AV
zArjQDG0+7&()C-`@Sd%F@IqP$^HGU=hl-J>&9lC#!6-NuR9W!;%b^^L2yq(>PFVU-
zgz@U#nheFDzWDTc(cQL%Nf$(f=~(&Gsr1kmg5_hAKslH$R9mrZ(m2x6An)?Hwg#5T
zy%x#Y$C_pL4&OXNE8Y`|piymg5)Lf7+D`S_ZEw-zDw?bKu06W%3HSc}Za6qL`v(yv
zp|*_QeOj7Hw<5&8kgr-4gQjpG=lT_D<>Hr%upnfm?_`mAVk){fDMa*gF6q=haH@ZD
zirGwyx9QSTUo{9JGRb_crA96*nIKd(-iLd?g=&1B*xir5KYW)IZZ(s{M3!1<A%6FJ
z7cXba!Tp@|s>+tM&y)A{{qp!eqZRkmT+TzDOMTutNG8QR2gjtm<YUNge{cfo;oQzb
zVj}7G{4rI{Ay4QG#dmJrf$E5+iOofw;}@6_fHO$yjAoPUBZ9u>N;{TZ=Q>-nKiN4!
z(CSSqlkUMv!T|kh9|LftCv4NDlAoR-@wr?2wsV<^mTM1w-7)wcex(p{a^9?r>|40)
z%luQ#vx2rWTC5`?Qy@%AZ?-;XU{dVU#e;b1RwTUFFZY-Mmg9*RFj(8edwL{jZZz~=
zOOIF%1;daG{{h2aW<y`k`(Bag=dwLx)XRsrBH$%KOi?9(X1skr!y;EsGFy@TB|eKO
z1&2U7_tL00fXK~05Y}suD}^t=9%CGW4r(;vp&yRB!6uQH^U}TU4=ZbH0jO$FQT-tj
z_f=|k(1`2v4J>q(YP%ZZr2a;KBXRJo<Nzkp0O#6s-$Nd*1MKn69(AEsvePd9vz?xh
zr$U7l<KeZeE9vU$ZCi6~)|~IxZr@J!V14BI<Js@m0-nzFdDX(oz({cRQ@7+^9Yq^`
zh6YOOzS$Xh5&rzD=PEXpR`vT`iZb8NWD?88=Hna{C+YX^HB&yQ<*B(UG4Kv6WX_#2
z44t@=wyx+o9Tj*???QJhG7QR2<dIW>ubNeMVolQft^2$#EAEd(&JYYZIS+aHMyyRV
zXvOTJ!$?$v{0B6-AIa8pdfgtc<um2yG%PGYjPJGJ!#bEBg+jPL5cME$furDu_+PhR
z{reU&=+)1@xuue9IaS{a5)%7bKa+J$FfdMNi?-@&ZdX-6{s^%8Tv2gol|$uZ0wdlu
z`o;K@oYou0FzdPOjbBr#?z%3^M<CtY76m2MNsL>yVKuZQaojjAOR&9v{yUL`r=u+G
zq<?zw7~x+l475oz;;kzQAv*=~d1L&AZpTilg|jjTM{TFA#Y<rr{WbS@;+BpqvDmko
zQ`*hUCkj<T!`YP|rnml=iyEo_mAB$QL6s=PzaS4@iKnY%vh>;vGUJ4)l`J>cDP{T9
z_PUO2rEP6@@wR~Z(;LNB*Hy<KcKbx0f?32guFkwP=tPQIY9&T=z-Vd0-aL`BL(Nks
zFpr#w#HFF)M3qr03|BjLJ*Nme{%gZ#5vcU;JaZ7$KKQ}Afj0Dn{tRraLXe&H;~)P7
zJI~+T#j66(G4;H`6!w0>@?xu>aaI2O(d=}#_ptxzS^f3uem_w8^Aba>9`gJ*!2KV;
zNf$W08~{h3f68&^Q24L^`4~j3w^69@$5ZU*Ck_7zKNpu%2#kS_fTPbpmWKc9KZV}A
zMpGw&Vix+7@Lw1MsRFH~8*udb$I$qD`TliHV!v0Vn8U4qVGNXmi`)U|{Qnr1F0S<A
z5qUmFJ6{ctxxD|Vh5z~`;48jC5L$twPcqUN==h)h>91?z3;jK~x|8_rcfaC){3g;B
z<OuMPUlwT$<o5S3laEyFJeg8l@0$Ai-xR!iwroiMyKMg2B^O`)ciH@R+59)!oW-60
zMw|a8slO8U@2~!wr2eYk|7UjnFShwN*ruq!qf|2HvhMc0R3Q*&z8}EAWuQwFkBGEg
z8Kki3L_sH{ieoh*QNPQP`0fH+{c|uTbv_%7jXy=AL%cEV3Tqsrk?P#|gP@|>1pCQw
z$|U^Qx`}$T!^6@t(RYUdx-FrwR87Rnx3&0*zx|2L21vAYpvo5~c~a<9g5SGYCz5JB
zAebr|@<>=4(-3yBXM*=6Kf`pm{Gs^^^V&_jiXTV*Qk$lq1iW++fkcJV8*{y&3#OX?
z$}JFruQ4K;2V1{St(+4LyrKp$mf**)4|a!=AcSpK{~oV3OP_&ndt~7&`xU`b;H-2^
zVSS*tn<k&uD!sB%yB~RjxOYgkYtO6Yt`@V{20OHd4opSqMlHNo{uZ>7QX_BaHEwr$
zD2xk{1DW%@l^}%qYDP-E)HD(~x4Nw}jzH|-(}5<$P)&>KM2Sh%4Z<;riPIn42I_!l
z5efQ{(Y8dccEGuasj;$h?DK$9`maHra{Z2!nfpKBh?swYa&6Aw>G(tB%RyO(+M1dz
zP1=81TxqUW;HOFE-hA)WTeUz6@sE9=UE>t7Z>RdV*PqOX>_glv@?ecP(kpm_Xz6b$
zO8dgHyn4%IXBdmeMJ8R+wGQ8RPu9p~mqmVMn1iBI+vOmJMc!0|a=vMRo&Rtb@6Dh}
zj>f|pC;N~_ce-$Y#!3zI%1;T@-$9idP+VOa0+DuK`Nc8lIO%>Gz}3H`#e}gI?#mc=
z;K9$G@Md%cKJi!zza%)OD801^IL|E<UBJWtvE@e|B8!X-b867{$FMw&Iejj{VY^Df
z;Z#4}=s%k_!ZaIbw;xT6A&-)q(5zK#_^H^$-PPkQ^WXX}^VuOg73cRo2UuKm$jRgN
z)-M^}aq$_P0!8UC1|k3Z5f?-uyPL$%H3HcWUyf8jGC*Sp(4W<u3o&2W9)|$NUzE11
zxg9qk+-xgDJ>NOE!6x0COjkw`a_lGNclF>OeYcLH4N_eW{GJ`gT-V2b7pNSvX0Kd8
zfA?S1c2Q>ojw(PZk)ir}JdmXnh1msD1T%dqBoTui#<fDv6e|GuBZv)cjjMYE#_$JB
z>v-%dNef~%m6Q@Kp=qfK3%9oV-a2+hm`qm*ZL`W}z9DDAXaJr2$f(?D&Ha_G_;<Nz
zMErZP`nhvIms#3N=udPCB;%QdrFoW^!#<uYuQ2NFM9Zx!#Oo1Ry*Uh5k$mg4n9sj8
zuMUZKt+f1#f-a62-3UoBCZ<i3hzbdaV{IjIrwa{9A&&CGbPr;W#QEDDSO|^+ykZfJ
zR-8G@7{_9!7r;E)egnUI@5B64uY7z?MB5(67rx^UxExdQtOq#MTGi!rFP~_yFLig0
z<YC6L#qZS96|D`hGq(7IRBb1x2nR-Fp_4oUJ5+MMdarPV7qoeh<Byhbqq}-J5tOb+
z1#;Fe0>~OUr*qk(dH*&j@sZM=hdH{lFgKB8jFQXgTkVRlWAc0FnmO)#BEf?=x?AM*
z&9+ROjMkIL;t;e2#7;fAb?jKo#suIR&MDOK0VA(-7Y(t!FmWTb-Huh)D;Mr>m>1<;
z-)7CVz^+LLgg#$(VN8g#9my-W&q#s6+>(Jvvp=I$P?^8k|5)eef7OiuorH-en1(Yb
z8L_b9(LzkMA*eQOhq|VjMP!tIt<lzd3)uFD8+h=^5p%}&_`TSBw90hp*rm=xweu1u
z5|Jl*TVXgfis6(Wcy!=B@n7a8ImbrjfFm0PJ+wxR)eNr7*7UEs0;0&Sz$883zEXxy
z9cNM`kE0bk`Kpa&`Oe_bo<zQuxe>{GdML<H@e8A3I}p)M1WeTgY>KZEEq#*vMxp%d
z;8IbI49tA1r->wbjwS*t(m*(Xt?jVMo1})3_vmLrKVV`U&3ts{@PYzLS)ikN;cjd(
z##T!Pi5QeeGrrX3^>XTn{O1?fAvd*8H!u(8<Dhf>3er((C4o$6RZeC@<HKWPg6+OJ
z{|ho9EBs(RRJ#+i#w|S~O~+C|;~*%u(S=9S!($QdD{Dh@1x@JDdanKh?M79T8Z3^j
z4tV?Zi-f`)sJZie?ucVtz(elPhXwL*S~qM{$YfSD2zX({ti|4~SsFCaYi+>I{XBX+
z>w8;pwq(d)!7%LR-@ZQ5V4}0Se?1cPL_Xcv!20ZA2QrwoNfm3M%~EJ|c8Q49aJf|q
zvx(f~NQT%fo`N>Zb$uy@vYILUBB%_s&bofnwqxtZ!{gcU{Rx}SOqC7YrJfQPJ0%#Y
zx;BpbyzYvDte0<79Jo$FI}g@fwOx0;Y?k(ti=gAV_H8&(Y)@7`3asSk|6MQ*ZbUXe
ziZVS)g#*au*7x>7$RMA4l|4MbV0jGs`dfTWReEia9TcA<XjMWCL~33|CXsA^l#F}&
zR3x=2AckhHm00&GM)_PRYv&12fh(`WHeP4GEGTru90Y?npIdh<C%LiO@G_F9{qNI<
z+pR(E0}cLgBhMS)7u}XZ;0O!WTEg$O#(%H7Gn!o}(fK4Znsz`=6CFgi(wbkrHa+!<
z`#ZmaGiH6rjAKJg2sB(nM)ZQPtDJUejK)iS5tc<<j`jXvoMP0H>rtxElxIE9+Zh>=
ztt=Y165ANRLHtxjq_t)#a<J2le$h<UeSc+?=jf*^Q)pgM7~0>*Dp_Q#V#Vn;Mlo5C
z=GOU~rhNj-)f|nE*XBSgej2c$nhBCF-mrVL<95V6Q51teks;{>yXoJXqI)ia_Luf<
zl_0WX_pF-N2NmuBWv{ATqwg*6Sr5^(eeX@LUe++?OOc61qcUM?(sO96T4tU*JhZjs
z&KsIoQ`JBSrFBCqX3D71uX&Uk4fwjs6q1BtGe>e{O@6idQW*f{wFE(6QKv4yEF8CU
z+4Z@buABbz)BYU+NhOd?G<^k>+<5}^QbRJmR>D^kHffLqyY(?@WHi-spTQ|2wn16@
z^|UY5bi{hAcNI@r%Q|PwdH<dKc5_O{wUSfBJgwuK2J97lyXe{ja4P!WMc2<~jlm6R
zWX^8==~iX93s!Szo!}wGSe)~VAutEKe8@vlVnUK6>wI`vEadMNCC1qPtO>SvXd0%t
zml&^d#<4afPbYcS@-w|-g%hd+Df>j$vHYc+#e{fm!nE_?#M>fGJxJQB%bz{^Ut}G=
z-*3|C+h?yrz-m|a!)0VxFVm_3zBK7l;RQ2^n~5}co4T02$}4Jaw()#2i;GJ&nz^s<
z;Xz<-PCb*Dq<>hnzv8mgOKv?wpF0-!@?3#<v4}5j-SgU6>#<7c_e)klE3R?65nf4|
zsGE0!oYibI2=nraE9U~A<qnrV!VI$dTSTl>P3*`h_+T$yF<W^YUuh2=uuwT6@hcOu
z74kSn@Kmq<T<5|?Yk-2=*O7>1m#ri?fPk$MOUCdZIweSa@%b%rsbu(T@0h!|3~J$O
zm*XRXFLhpjie`sB;VDPak3DhyX__l`r_o)C0goZ)iKC=Yj-+>gwLLLPk-5f{A$j0h
znQ4!*8mooQ+wn@Xy9%P&w02rM!0Ipfp&%mec%4^YI!>o%&6xLKE4ynBK%WYG_O`h;
zmGGV}$>4e~ObO&rW5ghVGD>@p51C>Twv!i6&^eAI{O(adx{SUb=?*&$gqVNEoF%#&
z(b{e`(WM!)<fR;jL(0(Nr?=-Y9ilp^s7}d{*{V0sH64OCWTU?O-RsD>@^k#fAotom
zx-$?@gY2N|IlvOAZaG~6inD6XJmc<R4c9gkf);p*iOYuWeDP3Ds?F0F&JB@@)4DzO
zz^+`6y|0(C!g0TMK4~&}rXB{L$OJ`;yvymGLY)OW)gt|kl2w?y)zUa5n9y009@5&^
z^)VP%J8_+R+&<w&DWjYkx&!am^nnMI3p5^(JZ8KRPkZ5)5VLz58b+w&o{;4D+5pEI
zv7d*bR)1Q}`7%h>LVy#X2sI@-ccK-VA3H7m{7S_B#$}=cSIpa)Gj`4O&^9WF$8C~M
zCho`&kJ@hHsDiz-uYLrX6|}3}k2_TKhVQ<E6lW8B_{{;ME+l&9P)?|{{W9jbl@5>H
zIGVl5O+m%nV%%>u--OIj1Xq}c&WYE4?i+cx9wEx~9dvRMw%b824P7ZF)1m0nJgbk0
z4?Gh2q9)3NwWTfv2>w~Zu4l=g1n)N*%0z`DJw+?Idz&<lakWoWD(&2#Hzh1)cWA|O
zE0mg!nC@|NE~E7fWv#(WB#Ia9#w$xY+0|Zh>P@$$e;q`?i$^W0M)5{I8Ew-hK*lh!
zxVwcq4;L!*`)Y{Hqmu5oL+nhF;APTDC;K`}BUMF3L0*Q}hGA4c-kIpnctZ4DYjS7S
za9UP5CSrC=)SE^kuNef|KkwZ6V@0l;ja<B6aJwgZ)`=@tdk-lj%YbNsPOJI}g)Y&$
z>&s5geSxBmW1&+@Vt2J$P`CH1V-*VcEES5S8^craLpesYMtz4@!SRI~WJn<i2Vxbi
z>WMv2WhgUj8#68EjL-k1BnbnRpy{oe(^~Ib)JaUFscRU@J12MsQ`a379(y4s*#>eo
ztB1rre%`Ju4ULgL-{T!#klmWdCS}mNeLkH$d%$BzP%v)xT^)>T6UBW-pD7_VqPPvq
zTj~}th9KUj&5u*F6?tAF3mXwaIfcP<$d~K=68fA|g}55#uc}pH>@{ZFl{+6{jHDi2
zKEwi~H%h?D=6+_TmBJ68RrR7F76-j{ZTsVF_jts+a4_yBE<DTu2%^XWVESjS-*t=H
zftvisWz**cU)c!_s&K2#d@bi4W(WiM%4>dVc&|uVT%a1h(%;M143K6-Pk96-9l%9V
z&QN}g9MX!TM~|eZ3?R@X+l7|HKRyQ8*w|>?Zl9oN=LZ-z3Rc=JnRTjzQf$n2BNucb
zlrxo9o-cvIh*~Yx2Mqe<VoQcK<4tba96xn!rTuJC<^&Q-Pmi9hQ!0cJ%qrcRv3Ol*
zK^Yn}!fM{GNUgF*8pG@uZ)?^SXLc0Ajq0-Qr=Q~^Q9Lcc^%(~XVeI2ie>;GE(?^)F
zT7_Su`cckbwR1VLT&^7bSSE>L#ub5GrdQ}u3R)1)b_y~i3so(|L?Q=HL5E~@Y^r>-
zt93T>Zu~A~(gS)V(L!~y*0t&$y;{HO5E>wc`BL_WO>m>f9Gm5tP^dY?jWRp@uw<WK
z)JYiU$a+svzh?A1O{^---@b!<$aVkbA!Fz9eX18q6<xBHcYpz5_X5L6fm_<@SS5A0
zKb4{lFSS~Fwa>s%pwx=)0>z4%sPcMNvLrxoDO!Bln@&GZItQb+yC4D??9BkGHs;tn
zB-gZ`8s!y9;T~Cskcr$38-cd_u{UY;l$j(ryy0FtYJRsz!G4gckmfw(rhgp7iz{K3
z{k7EP0E2?ksV_HIXgf%9g#7D5p5b@@@)xuW4P<JY`OpvL!*_b3?*<t*)H&lcG}6{z
z96oV{n$L|%wByK#7K!8rej_<Ml(o@~>W6|K_GHT0h$?J*F{{FwX0#sAhh=;Wa$fgD
zC#I^Y#0vk0#rufDD3`1&ka+uJ^~rbIrwc|_X8R(CV&j#RjfBt?Rzj-=Ir(ab&1h6L
zB2592m|rtNLe>DtHx}bq%<YY?NBT2VEBfJ#GV1SFA3)M3J=XPY;L$`mF9bZW@~7UT
zELg^`Y5goEuaB7t0OQoDy?O{y9$U>hnb3ppIjWZ*PE@E!!lSuP3t9w;THBJ%P~ckO
z;qmpty*|}K*ADCK^3ohd(_bFpS&&k8{cmL(ty{PxB^YKZF}7wItL*f%$(R<*E9z0l
zG!oj2kJO`1D7^gE7|DZp1Y5Nyr2Qgz`<HZ%PbVTDk++KarpPdjD%UUx@4z%i%Q%{J
z`vj2T3na5S#yDo<hq-E{Eg}1eZ76T51*o7_EMT+OlI9<s?pk7*FvI(FYIk6c+xm{H
zn<!gJSf>dygs_`tqhp|h!eVb7$C<;piREtXQ@uG)2vZm#;YY@%Csc#vx1$Ujy&PW9
z67LOQ<ElTxhfLoNc<umwTkatA@`4dedZmyBrdsY`MD5gFSGe1ibmz@5bXl&@bxykw
zvVHhIu<QFf<V19w6PX&&4Bb0oMI<sq(|~_BtVqkdl)j6zZ`Rgq#ny<UBLPvfXb2eb
z)l{J4Xoq3wk3&n*mr-pTI=ZfsHaGG!F+uH;3#f4BHegZeE!#=1P|6Tib_xipi$_O%
zZk1mAIDU-wch2qa>%>3pOmxlh7TQO?o8WCY&|JW4Pt*HUrZ~_@?u@i>&V9Ish0e^|
zuGtN|ce;pWa_g^4H&g4Ch}sKAb9C2wuP5lWk!*KR6$;(@LKP8fQ;eY}!-g1g;SyA?
zJqb5_xQ>!B7=>|jy`==p86B;-ihQfeV=z$UGvrvnJy&O?8E(6xds0mzsr57jlC6}@
zpo9ffk;i-Pg|BBmypV3$jlM%JE}8(Re97LFyLG%j`Pk)V1#5Gl%iSLkmD-+#k*8KI
zVU#-w4P-W3?>QbbTz~3ihrM|%fFm=|M?zkM@Z)c+aQ&Jt#I0yKS4Pwq-&SuN7ot1T
zKjAoG78Ax8CN6bK9_Mx-enMz#kl3WZEsbGV#O{Q)1Fr!pqASibyJayd$=pw;<v@eV
z0Hp?E?hn>J*X8HlGp74*%jj=+5?aK6yM3(;H*v+XX6a1)0>JAtTG=n6a@0x))6D*(
z+dX>D@ajeMk<%Zs@?RDw%C6@|GYJg3JeS(bwoX+v8kg{k%r(6=)UbXCoebCHv=`l6
zZjzW&=1wz=*-AIG8%ZTDoI>pDoi5v^TDKAFSB;C9Lof{O+jIdX$$V3n6E*YN&k9<c
zlJ+D)jb|3|l2{F7c)33V$r+|pDSPj3ioT#e((#e_HNSK2Ov%T8zj^OSf7d%*tjAhO
z(r1h2Gax$BCl44c%-`HHDU)co=0AFe3V-`xfDQ%{pjqVPt*E5;mq=cPeHEXPjqm#^
zF{N0oz$Y<tuNr(ktr#En72}6&^<}=)>%WT?pO1V~#}cjlQDcwL6Gs{}`qGnN;d4w^
zn@c0yeF7=e3+ig*vpQAvCqIzzhQl)U%W4&C6k3O1>aG1X&8FIjB|6oo3t}TBwvhJ4
zV)fH_MhObLFd~!F$ijuP5bK3v)}|H1Vp=UnfkD^ZN@_U0=Kh;ZOW+50mnxY>QUGPm
z9Q|aB4ei$$PDlCO|6qsOTq)#+RcH^S%m%9`2G=)A;C*lqDqf#f<rYO}?w-L|et}}f
zA7FZa5>WkB39FeI6R`4)P$?WZI<E_$**us);inkBF>zfW&GA7e_`V~@gxFiF3xdfD
zwPe|XY58h3Giv$5oQlr16_w`5#_gQ<X4g&B*|SOaXh0Y&7%4j_v(R0dB`(zIur?`v
zCz1AM#=FB#fr|4}_9{3jlSacTgXvCv?5SjAgar?+*B&EzM67LSD2ohB6BMz`a)6k7
zUD(H=mGMZgRg644H?%3yXplOY<;K14b^RY*u8JOAnmsqTtbCO<d_;<;Uu)mADj@&-
zl#;l|=iNSykH5-$+u!d_R3w>nmTjBn^Z1aT!LBMGK_$R$$H(3Fth?+jffQn`Skwmd
zzeDJzV&Mm*gH`d(7qfHf`Do1#Gl}<1O$30TQ@`f5z@cH`^t)pBw7i0W%ScTg$f4Pq
zXd9p;>#Q**T}F2z7b(3+F{*q_jZk5irzu+}Z)_!@;rP7TdtEbUO(IpijaWXX{&k@V
zLRs~&o~-cox=5jR<Fb636iJaL!3m<V4&;$2-JwpRbP^y%uvXwBNb<@>_*_b=`iy5d
zeJ8gZJIJu{TP^<d8;KV>(p;Z!qi-l-<3g{k{KjC|@A*m>*k*8gvLrw#VB+Frv&a`t
zTq7r_Jte)CCtAjjVwU>tTjRrgi|ap8SmTi}u4o){qV&acNVU~15z;X&hrDmQ>1@9r
zTyr%a*iShjI-?SqGo2kpOc@?_b0mY;O48Em=gK5v`tYM6$}nEB(p(KX9D)gpK{m!C
z=}4(nbDV(_^4KHpawz~vN()EIOy%uWPdhm8b<bzggZ%X?zv>kx*x<37<P1H2n43Pz
zT&vj+8A@L;&o_|aTm95Rv)c5_zhDq8VcZKpN-y&nwCkB3;T0~4%5^`{wV>$+5d+i4
zp@RKNp#(C0H(>so^sSG!gJYoAW%LkT(;=m=ClYqQS=i+9Wg??e#RN#I;+lJ`>pCi2
zK*&#gX{IYoyrU}Cb#y2<I3aGZ)h)s}dUs&sV}#O1Kv;r0+Zu81AWbs8U3Z=SWMO8F
z-tmwH=rq}0ChNwJBy<mlzHBj7hq;*rx|;GOC!gKvZHoWoPOsf7M&7BNHf`d7fhQ{5
z=0w;M95Z@_<}3OzA3MbC#)5{?v%<?8AM@woR1+1wS1K<r@UgoRd>f7Ox%|5>10*;b
z#bNOwn~*y!%dy#7+nYC355D&)KV9XZR!og1{MDr|e^O|tpH$_c%(kj>V3|3Vm7&0F
za;xxUxI!<5F5#z-Y5b{n!H1ZLH*>cl#px@>H;tQOKmy#&$vN47F;ZeyqzarFBK<)p
zj$ow@UVD!J;{F5tmr5p!y&Y$FJGXLGf~*VPg@RUGdIbV#ruHa2Uq9SMjsIp<>RdO9
ztlZc-r>?yp#q6>zpV;~EJMG2bP$^G6QMgidTE`+KLOcI4nB_FaIN(;56h;)6Y^%1D
zKcOXDNk6H~qttRU)VjNot<BSbHK3w70Fx(buJ5pQZ$P4BuO48lgSOE&lnkxcgJtvx
z%}B{*3iaF&b6YrUxktW2h^@z@$7q04r`^4()PiMYWKZNw3R*<JrC|{aDhUjErt(rB
z3Cl?S;ul<RWpC8poW4_S#6f>2$Y$r6J%d$CJU#t+Ig!tZaj*YKADNV%mqFDEyS!Kc
z@FmgsWR0#gF=sE!fe`zdp3+ot?S<gk68?7xR3FWcP*#qHWr+$v#&Mfs$PB*f@yX+n
zg4ZSCJWF>Bbk)Wy^ftLvSu?XukDUwHOJ%1X$rldtrdhYG4;q#Tb+8`m%&B*&lC?`)
z3P%sPrUmiJ(6DSQ6Bg-oJOgJFm^>2l7h7_|mFRgkm*5HlZ8|Aznd=VS>btW7s@wP9
z7f^g0sIzQ+J^u3*_qv6d7&LHD5vj<KdY$v%gw%G7do=Qrx1QH{DjHfsEks6@=_1o+
zINKu0dHq-6$KywD(23sQblZg;W98~~PF6U+qr=<JH$9v)S&2@NjuUDP58F~1BiCEj
znl)`R1Dj|38HhJ~@AF-?u>rbbPLb63jDtIUJJ(@YMNq@k*Rb7Jgn9Z$4aW5JU$z~+
zw@G0!fm+O6X&$VxR#REn!<1;hE)hr%Tit3JSx2)_e-zI?@!XpX+nkYWXv(SY%zXu{
zPF<~J%gtWvA9y$Ck|iwKdPV|wvyoMrJ|d53RB!2hUg2ib>C2J=&i2xJL{zvnt_GuC
zm-*{Kwob&0NU04*&OwGCvuxRi)XJrP;jkk+YP|sAxS<yy?-OAdZaaw&t8||w|7-tI
z@<(g7NT+>}yG@-Opv+Z{e`U|;Y<s!=o9#7q?H-NB3qPeV6bL15@x5%zFQ)378Kwt1
ziK}D9gZP?zFR2xC%Bf?=OOMz_Dov**dh{@HBH!R(g&orj1Pcsq?XgJcwM|z@d*&jR
zONL8DW47e`51|gbGm@{@BYAO~18-(a0^>mRA!cu=i)(m}oBQWgctMA&(;yu>(gcCk
zM4;14pARH<JieRBV$*jnz44I34!ZR8vZ-JB6(2l4g$A-q4L6wiHJ*8hhyBiZAhlz5
z3Z4<}Q)MgO(QLSN#ZHD$uT$2=JtE9_i2d;F-f#Sydq)#YmhCy7^#Ca?#5k(!0cqTQ
z7jr+;k}sw0nJVI5v>VUZ@GZheP46NJu5K)&kGgiRQiHmel;xd?fB6*yycZG;WY-#h
zjFK|c#ijQ>+7uOGge=^NY9Hx+_Iq}#EB#8l)k0tTX+h*Wq>fnlH+hv0EU->N56JUQ
zJ4T1mJ5%kO-`NR0EuE(-ZVkm<&?86@Xf`|EcSI6sBA`o;yd;PX%?$y#EwnnJl&==n
zWO|hA8WrbuA|ENUK{={?Vr0=;>3ANs7<M!)J&;igo9S!1kAz1w3bPOwDqlO_-3Ic@
zUyPW=xO%^~{m5(}e^<_Y;pvWd8w?ZT@c1P^_aN#2n)1JytpGZu8hE_m7wvYgtRvX4
zM5|v4Sl~Es3tgZ8(+GNt>V+Xz;5U#utwfaC5JEZU)C=~5?nt;+=VEaM@q<mGGb@+?
zhvbUtj~D<5q*PP0No&Zbw>A4VkdfsWv59N+Qrsv;nZ8YB@G9VT)K@B_Yrn?^^>>Dw
zw&GqF%n!=Q9t@1Z%gPk^OeCI&T=LWaJ2j40Dw)&rR(N08(`r{=RPIX~|C}~^seZqV
zdp0PvEgGqkXzV|VY176W&C+B;K0mduo@&C<8&L0RiR5*^Gg88&uU(pZroLePKfQ6;
zS0vz#%Rc>-j(p>`7jN9-wxOWYRndFzuhe7^RBzr=A&s8^!0SBsy}H0X*HS5D9Zo~#
zXTSQ%=a}M*6j<f1zATa~RZr>Ccb>}0y^UmStEq<{)KVcEFv1D{K?2r|<KyqLn78LT
zE6+g%d#>}v`1|YG(9QXF;RSG(m;bspQfx4dLuy+$ZAMC=$Z9P%<UfHp*GPZdM^d-V
znI@ir4=WCX-2N2Q@&QxL!x)`-DFLHTCahGSmEPX?*z=wFBjkq2ca@)=&z}<gncu1c
zFGnO*J;&`v`7dS=6(cBKeUPSPz<VoIpgJA$NaKSH83W!`=|acpkjF1Yz3)Z^Cof&S
z7&<k}pN#~{E(9(A;j8%X?f&=e{_o1<|JRGT%--u;t9Ze*klyJ0+SdN(fhnzKp5C}o
zXOfCJmkO!)Z+cCfe^s<7R|=)hH}uGT$2>Ms&<;e)#M4l3Ab;LQs`iMOpX%!5Rjcb0
z%nA2>ML3*dIHSsSJ0mX)94>jj1;<ag4Rrm{b)XeL<i7kEL*VU1Uw{)XZ*p{h#j-55
zLTz~8K_w2sY=GQpTJYfQ>-wGxoDW1`%9eX~G3<CJ>YRG<FPKiU-REK+_3p$Q>y&ul
zg2+>FCJGwJxmI2{JtFp{@^Zgnb$yZxO6)75#c@y;R6d);&Hbm1KXP_K8(PSDGE(~u
zgh{<je4j}lFLIB6*`G2{e0J*Se6ly5G?$V&>A+T$_~BBQJ-&ljydUJwOB6ys`%6B|
zo)@FJd#}#L8~1;BzgOSJ`2mSyl&dA=)7bLj9+LJI$zwjKd{;h8>mJzYD{?DT)RdGV
z<l1H2KOcXge8yb3`FCklZewOeC2UKCI5=en=60yAg}=ogxMnJ<>9N3R3(jh4V8_ed
z32NkY6;%5(pvNdY*A8KBDb&{-T>n|oCPU@EcQ@+Dsw-DzIs|Yg%_$iURyNiW92|r`
z7f5S>MnN9xMF{lCIwOrCQhuvm_)yG5yDs^@4Nl&-NtxJ<?GL_;MIVu(gJB2>POSki
z$gKW7{#W*g>0fWvb3PHr|6@Up@ms=#IXhD)MUG5DS3U{wd@O%|W4(`P^CwDc#&`pH
z(htZ|q{A#~SXZ2{1P{8$`o%EW)8~8wE`^+cBgMBszPEEDnCjYfCmFV7DHJn@d9KN+
zmlrJxWSRK;0U!@TKw8OxgAhtxg^+EakIer;8wh;540-4Fahs9I57)C^!S+Fpwm^<i
zw(NXhHuhm44i#PwX0^@R3AYCc1E%BOJx(F`*-6D1@Mm2il_+QF$NgTpC-W7Mey(a=
zl_6)qYmoY6G#!Gfb}a)t3OhJ#@vXySPn_vb4dgFOEB`#QLckOOlaE~F<O3-cdUXXJ
zoQQG<?IHihl5h<*IMy_Nfs@eW0<8Xjk#F;zKp7uJK}O(M%TynmA{P${*0s4jfj5_C
zb@9ZJl7ll{-EI&nTkr?aj`{-`shOp?<oPhC?oHo8wZ5Z?9rQR~fGfQGy^oa2A2@jb
zoX=u=@uENe<5pxtE1rtkcJbB$6PI%U+<vh_fWq>(j6acKbPwljdfNMcn4V&c0y(TO
zD6pRr;;GlM>l9lNC|iL3TCc7ySr>9D&+G@e75dTqD`!eI^B?qu)XgCspo&i9eq8NE
zmXP=kcw7<Xy4Y-9>AoTuh7aQfGz9phKVwdZTv7J%z7vIAuyiJ7MRGlw1<rAX^ly;=
zPdH;2%yhXRi5r$V7iHz!Kd1Qoqqpa1?V~ef7yBO|yK}dZqpYe9hc;jgs_+_=rVZCX
zm+u3a4()S;kF4h3kef;)_M_?SLFYA-Kw+y+{?MMA4hG>--!GoHCsJ336z~o5VvO<O
zgQ`LNGUL09J5e{L)4Q2BMN#PAEBHuUYZkNN=L-Fbu_-%!=Mk&s@A=pzR8^`o-Yw|T
zp2yrLsQ(yQ!2UMq+$IWSxo89c(EcYT0k2==u5zd}9aRCF3a3N#Kd5xUr!A2|#I_92
zA_jaIIr8y*0P4N(mb#{B3jjfyy#$*oKq4$8fNK)(bw>|XC%fpgN|cR{TfG<EY*M7|
z4jE254n;f(L<K=SG5VqRQ*k<!f9zf?1u=E9mnDYPbrg1A1|N|-FCP+%YX~%?)Bf2T
znCI+jK=eAt(!$9%m+(mCu<z_7n)icv^0VEs_FDlc>CT7ei(NrkjvxE;Y~xKwDuuM1
zUF~)lpL@^(qiDZ)EBI+l<b=bD(nzt9!lm2~eGPyiLp#?R88wM}LV@HrX7tfQ%f<cf
zG0;r9?3WxJu5@+U{g&1u!#Z-krr^KMqrCw(i`S=k7m@~Y$0Er@ey(SkaZaNR<hE6k
z@nT%hKE=AlHITc0%U2_XiMz4n7zDVT2iO1e<Gc!Y7-Faa)XUCbq+}TobFaef6bY)*
zjU*~ccLV0PIJhjm+v9lIvZ7*VD$}LhgpkB4e_Y1!(e?6)5ne=NS;rQFq?-2f)m`h-
zGh+99dfA+pPY)JO6UYE1UgZ||>=V^uhY%MNoPGCK$1d<%9TD*;g&MV+;QY*@)V+eH
zmQGDhJ>WSz`z`2%9uxN@(b5^PY(wTd)Wmu|3w5y6ASU9jClTykCeR$06px~zx2W0v
zaCERR{Y5(u;tJLPQV0PAz26_kFmB#s(0D1XYNZ8;bvn^Q^*{t+So^rxY;>^tmX3Dh
zSx*<`@xSirzOYX?qB$5?<Vny#8d~M6Af?%9Q%X{^jZp^8;9$W0b)TYeV;<Il?P-m-
zBZ{S_?Cc1@%1+>D@}IA~4-7N_d0w^s64Pd<)E<X;BptO`&Ljb`<E&hv{;sj(T7U}D
z3Nv8HCbbj|NfxC34})t@QrHjjI)Xuk%F~m^G|MT0LcKQSkqV}gN0s?`5nvUNvY-%6
zAqwhb#ABYJ&l<i0K2*I^b$duEDj{MEZs|Izo@xb{LB!AW;4knv*JH{N)dU+AEBqBd
z-%7O4|E5toVzspH>ICvAU&SIc&pXa@wusPnQw?U>2SqCzFQ(ycjK%-dhh(1uyO*#)
zEV}}Xw(J-Ib8cDxR`(*|zzty8MyGlIbmMym+XMq{yn6w4BE905V0MGX$+ol&kM;Se
zs}r{feoH)h-q<DVIBo!ahwztu0i0l4B;_XfUnh-_#k??Wav1(#pO_m9ozWqG@{ena
z$*57<%G&rEjwOn@PG2et%(*${R0(6x-j;PA&&&=}+Kk|Ms$s|@_FD%h2#Z<ZO&i4d
zO0aO~(?Lzhw<LROBRhk0cfgxPDrD?fNV5URg^ru*-vtP<pP@f)u27eVv>Y$a?5D}V
z)?eF7@LnUu4)q8OWCv_1{czJYYas658Uiw!<vOK=w`xRYMSwPSxAyb>j#1I<`(_=R
zoc8O*!joE$)%YBmA9|~y9e8!@EhM^&>$k^;8pI(fLmzlJdgHUv@28@|6M@N0O=X79
zeX26^(Z@30U)FBW)DhSLCR)0d63q8tP7qAzi3aT_oq?m|(n?MhZYMVab;)w_TPM@v
zL`K`8OBoE2PMAWozr-^9aekFsYiM^31<?3H_jw(<Ml|;u!qQZNQ1mrVYuCyq-Q*h%
z$=@-Q8QLnfGvXKza&efW<n=wkRDFm{cOQKJb-KGVZo8E|tMbi>qXqhbT#EOaE{rc%
z$3!AKa;R;yDZ$WMaGkR?+k<t$#WZW70@_xiG4qp5cepzvL5hRw+lQMgbNS!0RK4;L
zF>8~mLd8U!<12(In3)>h^8vQABY-K{x`TIjuAIX*O{*qMYJCkDKyY3bK=PshL5U0)
zQZZZjeq4H<q>SvJX!2ad{D179{O{!c=n!(J`mw_|C-Jo_8%;?^B2N2j_{wEF?=GP}
zysqKcsDyNQjG5p$T6AUloIYN1Y!Q&hd(uGaIMcztm&dgLd?d+ZqsIWX2#}-brL8{Q
zZ{XoDe2?eKr)@C#d3V6ElxgpP`ZJWODC4a>u-g-Dk7sRqT$dr~%Ktsky|cD4CmOU@
zfr3TZ{h%ARA)DbbdNV;CB{#5{YyBWozkh^i(5Gld`vE<)-Lc0{U9KW!oO=stF3P-J
z#*(#a%f@OS%azx8y%*YrT~zyK4r6Jc%Af8;=aYs@&zyDN%{9rVdH1u*{z1RPfzc#5
z$cSA$tb#de%kxTBCS!Q7vXo6MOqgDGJ|}Z)bupy#fKE5*Y_Q4nuLql=HsC15>O=Cf
z!<&pB*S)Sf=nXNOQ4gs>D+e>bU7l6BoZ3-Dy_M~_m46rIiUun1Yn%D_JUeceUUW}1
z4=`oZV}qo2xrWG_=$3ICcKxS0ZW6JIPPmxZ^Hd;>8;oaPB8g%OKj4*SI)Kv|05PWl
zTUd#{mFQV9topc<Af3J=BZ5w~7vFQw3eYG0_2Z6(_5l?!0@zhg?ZhNuB8?u_Julo0
z{;BE(usV^w%l`S`A8JL7Bhv8WG8UKYd`FUrFsB4_oqF0<oqU?O(n>W+JC(lgL`>~r
zs(_dH)=bc3%t`ga(xQP^&grpfjkVK4C(*<>`{1siX$P4}Y^j^t6JGN;cIhosQRcch
zX>FwT=Xjsie0)gex@JnPTQ)G-0gP2%y_Q}WmrAw0Eqqp`eKGJ)#(hmGGkN+$Gn+3x
zY9wz+HcJuj!006CDOo2wrQ`kLuM0l-BCWvsWVQ=-@^du+mPN)#Y-eaotzMdg*J%Fj
z`^`<P;!^mKD2iF$i&Z|-Y&2%8%+v3SqOk$78u;4~5%<K-=))}PUr0({u?cK{LB*WS
z70`Hu!a_NW>T>T-RAwMJZSD{aC}dQ-soEnIGb!0|F*7?+F&uBrfCISNiwg7O!*a5l
zi(T6(Iqsu_dFnIwj$%8ve+jyuAkX7{cA7!bA&Txuh+njlbr>)=A7{?iGObU)yl}Vy
zY4nT8Ng5cK-S>jEfn=)#Z|;gfs_*W1Cjw1kszQ_bcMXvjZbo}I6s}|k0&7y^Pg(bK
zmYI)Qnshr&7~}L1L78Ft{uHOX2h~|Ujh&|!54bGLBOn~$z(JttLXugN-oX3p0R3=O
zaBEH_DQ*sF$iqRi{<W@VZgK;rQ@Xo$`~}ZUH<sn?_idfTkgYk|)<pw~=tr-J(ga0T
zUbSkS)iZYgZ>cFKOdIDR4FA;eF${mwD;H#dT95nP#?n8x8Bb{MQUn%Q3);>_#@XY#
z&MWi9ou#KOc}Ju9I12kT7-JQXFg*26v^tDI`neRX&8g_ODx@SnY0K2|9#?sn&B9oQ
z*bl#q;5BzMFj(jVaxTTCiISw2$)#O7&C<v7v0EnO$YOQ(qFDXM?!O!;puRCJ9NcQc
zzZkoJW*S0`qh+vIbor*}&y4ixSB1GHP-iupy?-A$xKac(q(;IFMH|A}m$_UTu#vtn
zYf}0=fUUWm+f}jc77jT5Vc_u1=jpukt<`0MoF-RF-zdxVlPWl5LUBqnfVa1r)9%up
zG6&JSeTSYe{RP&<ppI!QkJR_IPD8bGP{&?S!me0kxejF6#*ew^aAsQl3VEspJK6KE
zV03N#XkU5oeY8W=TJ5=xjG9Y&3LDSfudmT>@WwZ^`4EYYn%kKf@x<F|#6-S%>Rr-S
z{@KM376EDSsZjnN%i=XhwWHCw5Oi`aIn$BCx!F1dXPf~zpK(<zDZpy*nva@nYTsNG
zOFq1Ibb^R!NGHrO!nwT#sE+t%udF7?z>ZJ+i(xDCghK{FPRUSsW%`^F`<^pfxx4bD
z<9^3yUWxIrlXjwEi!US0*8NXR9($;+kL#<#jy87`W+Z!70lC$rW;(lak+CS0I(e<X
zARDQz?Vu`W(vGJIfYyG0Y_V%#i!^6E%+bj7vsoHbK=PN1q=I5j`?!{RcRkB_-Me^J
zG%B)>FVFkm-V<Biu7CejT3}R@(1=8*D~V|L?INzy{3)}_dKIr-|7D_tQlJiM6&f^5
z+grTjlz8IezA(<F+tB<8kaJn9GF@VRr<7CoX0HWp8ifp*dql@CGolP?^b!lkz{wF6
zd18BGC$PceeQvsi#3JYLECLJjxyL`&U<#Nyj5o#s&yjLJm5gb{2cM&cV}bmxjAkk3
z$hcSKp2=dmWE_=F6E|59FKesI>v?}h-mtuJ&SfJ>RXQX>xEl1Y5klzc%B;%%_piq>
zz?n|11-gE6B;{ti!SwA8uzsXXhJ8~78rMFfceDiT2j9VUj`NO&wKSzWB|@wc(Oko#
zYvm*}@R%~1f&2X&yTEKCo<;Per|U6{F>RX+EBYAh9d6WI#F`XfEE?XFRZvTGvwL67
z<(w`_$lI4wg=q)TP~<T^bC&{sROjwe{|4|GwpSfxN5#9rdAF*g9fXKFVoO7T7O;7@
zx<%o8+w&EchCSvbub9E?QmlNHnNF2lE$YU7#@E7X{`MY$Z_`sgRZ!B~_1+#B6G~q{
zc3P9+*)69gwX*0k8##UmkNY820?kswinuMqg{zP{yRNMr1li8b?O4p)+k35yB5~8C
zVQ4Jf0qR-cZ)8p2$y!!wQ^gtbiX>yQc@2mgsE-QDDi#36Jpw^&$Ot<*EGkkJ2_@V=
zn&r~rHrjfQ$2;YSG^rk>9pA9&v}Ifrbqa{noSJ9=Q%~Ijk7FrUqU#F&JT+mpep=dM
zP+lwowG`7sDf`k5(x{h>NgPX?PKnOexY+ZN<u0xGMpM`;3q^^el~Ov6aC~yM5mY$v
z|5a-Y%BZMfZCeL=wuB)NL}MQt2VTy-dFbT{bkhwk)b-pnM%9p2GvG5GDRYV_s9A0=
zu~f!1wDq%ZPezexE@<kv4%}yGK(KvxmP{X7JMGG^$3Ngopl%0EgP|oAzU;;#k^V16
z0piulK+hCGD7CXVs4bmk??>HhKK$#B0qodbT$?BZ8oVuy6jjyc&oI0%Nm3z7n8|ZK
zNvhfQ2>UFG_$hHmGTGbjwv13CT}I;P41-QzDt^A(Viedye79vEld=2gV&B7-ow@=U
zWHPwdXRoiQc*8^FFdZCVv7QJ|SejTLfsbdn^OjX+WoKt4xmO6*Ad;5%GRrQl(&>mu
z4W@6nl}*MUu1;uG+OB=-=%ZI-$;YpHcN}aVcWH%zZI>Un%!VJUZ0AV|KdxYXz&-A<
z?uXAYY_8v-9^u+l;&q?ScHbhcJ*33!B)x=Ue|`2%asYl%fRpy?;%d&8Kq<5NBGZG=
zk6H5p(i3F~LPXvNg%yW|NA3MrpL!EHy^pt<rmpPTOMr`}e27|nUQ#)6)O!_Ahq~o$
z`E>S3BFbemRsjv~OIMzB&l}ysrfR;scxs#Cpp)D|0-3jWd-;u>H(rYIC+lNzo^e>G
z=d(Az9JsMdR^s7S>zNrOGBMG&!fvT((YOA}3{3V^Uh^9|{xER}U+!msvhCOM!?M(3
z`1+;um9i9js)kui9Od9HQ!L#yDXZ^&b>yLFZW3`+1Zi4HxmqS>fdkp@!4=eDb2>rX
zbRrpc5^Giplf?(cs%`$eo#k11a2AW@@QTm1R#|~f#M%sD8PeU~gZvqd>7q)@CF6J_
z*t7JEr;JDGl_nPt<X(EP8EdybXVF=%-dTx?uu^oTwM&An)8?v|M34nN7vDeG9n$tw
zGtK_iwqLcOoMsnC^jZ7UQCI&;GpB92vSQqFc|ntH;hV;)LyhC+M!xLfu6PzDEs2`g
zg}0daqTl@E((O~sf}L_JN31Ntr>dI*6Laur$%a!~bo53F$qO}G^IbZW#(UFEN+9bv
zYwGDumX2|I9Iuiw!ck0iqNlb5#k;OjbN8D!8jGm0BvnH{Dcb@rRKCupKO;A#{f*TW
zzvrZvJf8{hxl&LuC2<hDn#O#@XJVddahm8Ck$!&iSkvu9C__&J>;40UPeWhub9CIG
zRPQpMg*aj13@gH*{jcr5C~>0Q8{$I@j#@OgWuDZYPB}YHH5wE@-CXxA+L6v*wx2vg
zgY1~}WSN#kOk^T}(5z3#fqB=F&A9!EYo0?Usl{AtgzbqZ`o>V*i19#{__l=FN|%)D
z!`*NCfl5PQIa6oEyHtXs9klSZr%#{NqacPNIK2b<q>g|w{<GCipeB!lE{_{R%d2&q
zn$-2axXcYi+0=yox~<|dWP906&U66Ay$&Q~gR|cvNPG_81ab67DfO@8E?;wdEry%!
z_JznW;^AP`N)dd{X!_TZlUCM&p`EYF>ALaIr-=4Agok-mJ}*ynsh9*7%AlsXu@{5+
z(pzHlrPspm7(Towpmr+%BxreW@y=s;YscyAm{nis{pudCU&ixe$yZRZEyMU2uEM`;
z4u9Fl5ncvvb5YrxxTeK@RTlP+GXX=-va*Pb2PSWV(|H#9zoP~0?0%V%-7MamNl!Z!
zHsVmwHde9t6dMfZ5@{TE8t;|rk7L&4nD&F}I|B~H$Tce>RP3*OaT)A<$)qyLr$YhL
z0iLYx?J<)FuWv3KS+drI<4m9rLg{x22q^|iM_akn9xWYCp3pKfIEnDMY;F&alCZnH
z?azdGn6v%DH`Ieiv+in*Sb4*A9~frHRH$sIrJGk*YeFVFGtJb>!YBe_S6CyKL~80^
z5Pj#XvYHV#>MP9zX8poZ*(6$hY0qpl?1Y%)^lw3;iTV^LOcoCoz(J$|<K}|{K#OaH
z$2`jl@t0<-Ob+=nl#xlMqND#BW#Wr#g8PI}rlvA<Kqo&&L%$<BN#8~8TM^Q8q<6P6
zuGm)@?_1tdFMoK&AYl}9jiOpfwT8jKw9EJQmU(&Q%enA5S#VC61uT67&!H*dkf12*
z$M?9r5FC<fD0F<RD5;-!o#ar%O39_B$>ZdkkZYd`k)ZeFLmA%f7j*|edaPx~1$P|d
zN~3<+RM$+t%Cw*DIgBl1RC@K%yka?(U<&;TsVvPk2m5zQoTyX~t)D+@(@*NJ8l<}6
zn%`31oa+cI5yCU<=uE29v>2dm)t9W1ad-S$g~@Mqvl#P!XT%cI$x%YiRhO}XrWMA>
zFOX4&W&J4Gjn1m55+h1ubT!*yJ6t7{H-Nq<^7<+qu|PkdEh(o>C#PNilbAlXEaZNN
z+RCF6lltldG|qvnw~($1Sq}SZX>IjGD7pe?c~I{H`6gN3B?}|g?md{9=%GLBG5Stq
z)XDMN$oi^p`LPh=bu_H)4Sy)?KpbvQ*R4Jvchz|JbhMLmsJ9C4R=(wm_v8yyV=^rx
z5jt^7`PM9y(e+AeYi0IM2%}TOqC9hwi?&dZ%iXSAUYnKxg<9iJBDJF4D;YV90xq@&
z^jw<*Zx6Iz(nbARPO`F|&Yp5pktaaKZVvcs*|Tn4#bvu)a@~WYpMX}Woy8#<_ByNM
za%>6RFiz?78QD07;+mXyt7T9p|9*VO*&g>6rY;`xFnJ4Rg{z~lj@X|khPF20Xm_x>
z{nL_{RYpZ~tXEn!zh`lyxbb^5<Z}B)yc|yUqj-NW#+?p5uYEniPKhxtlOHs9*LK!p
zpt~$XDe3bp6tJU0VYOo8=pM<W340$nkxYylWBIS09oudAtGE^c`o|I1#fX+iBbU{q
zmY-aOZzw?DDD%JG_|z_0WI)#~G(j{dNwg7|gVg*A`7f+U=zDXs)JA3wS!6F<Bc8__
z=*$M^4~f+nBcl5myiac^hp|mMDKR==GIa|tN!VITbdAoI&q#Oc=lc^R<lZct=#-IO
zqZzFnz^N2nqXOc${fRcb1$B#>l8G2uO^2<_Cf#2?o=Y4fcFC^uBb0j0`6o+<%d<I5
zT@q_l&NU1QRU}!O*aM%m*lIzAWSCxBF~zdsAO&r8NW1ZJ*<o!rD(%!my{`&Rqp-(1
zYMue5z6%{9_4ZWO0ZY5}G0M=5;uMiFazy&ugk}5g2qJY~xR^Ro<J0b|yp#dK6DsdA
z#{~xr;`bMa41!NI<n^MMVX_<HJi0$b*?;}`wqpQ2JkHiSo#U>qq8q+Z+%&{1=Cn&S
z+)^c_zUy`GbfJ|Worp#d9p{10K$KFROh6kV4QH1<&ra%PnYr2Fep%V6OF|RQ5Bl7z
zY8xaBihOR(`J;V{HA!`^Zx$~Jb5WuXaKHR;i#TOLqiQdzHERRoB<ZK(RB`wnD%zDi
zc|Tb9>lBGkhT^lRPT|+~auPmED8F#b^&oa^On?~Z3E@s><9Pkba)+bqR4mhMDotmf
zs0!Rd#rBEwV7oQ2U#hjWY;xMU_$Uj7W!V+)@-J<Eu?L1`Iu(oc{a1NZYzDPuE!>tG
zm&&Z*%aMwz8k+;AGfjMP0oX$iFQMEhc8tBOM=l#osnNJDy!o9^-Si_n+t;H`Jf#Af
z`ihso1SU0<9qb9Uf95uJUwSn0qyXYc%`&|<INHAMLd)a8Sb{LDW5}HFW4)aFjEH(W
zgae43AG;rIdhg$Nt?ghPUF@$~QI)%@rZn<^O51Hts3I43sx<0NXkC7T7^Ly3{w4dC
zdZBF_#QbQ2vB3aEN9T}U9f^LFW>M9o6x&|p-BT;;d^IP7uk|;I<qqW&Bx{@lR|_TR
z%{+|VjLO*|og=tDP948)vDk&@%0m%(FAF|fj9EP}tf?Xk#Iw(!b5H&H#Z0nyqZ$#p
zQ(f`()yfK2gd8+T85(lZwUE@JG*sLdwYy>}56yWBC00o<1XVak$-6bC!e5>T%3(#7
zJ&PMGGs{;GP*ARgJE3Y_Ufb#~+iv<ul(;D=w$6uuuRukU+_-I$4C37aHS9ZX9&(lI
znBKVxx6+|#n<&}uInLFrVx6fN*s$A1^j6QextO2B0Bf!9+#_JsuE$d$*2-WGyzkxx
zd?9i$862b5JVLs+I&Z+p_8F^Xl-*|84$^7o4jv-|By)EbBVwn<HktJq^u($}BM}}m
ziAW18zgfI2A-UWpiN&Bw1)1-ZTzfyMxx8xcadH_P*$(?;AE3-RE5hCmL!^wgaW_)R
zIzwx0$iN{6LYo9BUc=XtB}}PwjIMFNse9l|ws?oL_YI2=abtbda0kC8kH&%A8&~p?
zC&-mocYyP8E^9?UA?N>L?>oby+_H291Ov&0NCuHCpddLaN)D1^0g8Z<Gm=3>l$>*p
zl9ilMkyPXiMV4Fz6aocOq`ON!o}TXMp6NS%&V8Oc{l{OFRp0*hUVE)Ktkq~J>mL2h
z%%&#{WW@nWv{pDpeAE=J;)sTlcez{SPZflDv_{v&5l54+?I~HOMckH-GI)c@_#Qnm
z8+=J(XCLb63cSZLsh()%S6S1O-%^a7Cug-HyS_(B$^Q@~4UcJ6b#P9*e7d5`7r=)H
z8?!O7e7&DcqI{ENmJ+`;iGqc#Ue3+CN;aC61!sY)Xrjr$Q@IIGkU67U+`LhptkAsk
z1gxpuvqVX>$|XFVvUzx@SW(PKEKda?rfpLkYzm1)!}dv&8R6=N%Sp-4Dm^y#bB%YC
zR#oDBcx4UpRqYLwC39v!L@PUi^a?%9xs<?_!P;C3EPZfksQ5uFl{vI)6_?St#kenQ
zqU)A>-t9yeM-7spo{B0I*-f{NnpobG=ho<N^U-#y@Cre%!}rs=K|Ui=z67VCSA7CV
z*gAXzsr!jhhxoniA3h#&QNP>kK3W`W8tonXDxCS{<h;B`w0hHouRmHOzwvBZNL%Xj
z`;tNAH{qRBdtG{Oz5Meb9TR%fUCt9C+@!Bz9_k)BdLxyFxjPm)celw@$B4>JmMIOS
z{GJS58`eTLn7)5YYw@VAnbbIK$|=!uaaw?QWv1aWQ*bzg9I39G>c^?+s!2Ljh%oDX
zCmGz?wPbp<b2;^-&DFZ`{QUXN7;xIr83V5$&1b8~W&&D4*1yMcpza36uD&X|9@pM@
zsSu<!f;_4Hsh+!U^d_=BYK5N<<TwgF8+coDoS`(qrrTb)il3!ZVb*A77Q4g-tJ;ZP
zOt^ir(OV&k`oeJG&dBEp!J-EY-W<vu4E8jxH<~M|i!$VF&$YUVxqj~CE*^PN8#U4t
zdeNX;l)m1U?@NJ!%t1&|nS|UhZKKYnNkWpL@;U4a%zLNpZud#PX=8n-jAWCK8dMbF
zMlB)}cZ^Z3jHsoY+1qZdM|qrqNZJ{XDp|F9IV#%_Bk_|tyKj%Aps@y?DQGuM(s%*O
z#*oFlYwrbzCK`tJqp5T{stOwWjWH?9H?zw3paztDjkw@_3J)gSjkSFyet?{|{c_G&
zt#bYCzSdXV<`P}V!q<=UPAzNQTAGyBo`b+}>Sb@0;b2_BEbzpHkIg1&N53VR>IN<-
z2AA#bQQxZU?SjS=4Sm;Dmt>{uAIzQlK%g+l(v~~eC|**ZqTsa%!wc?J3@v&WiHVH|
zDw1l((kQ$-e8fbQGXf@|D6mhEd^Fokl4t!cB&=5j@0#QD;HNTVPu0attm?nEnh${d
zT|LT{8K;tKJO4ez==QP&7}{&MAwUWhQxaC+opz(45`P#xCjV$nJkci>`)m{ob|9%}
zMpO8Sr&;XahDhBL;fdFC^G{9$9gUk`o#c3GrbgO|Xr<|gW;gbwhg>ZpH(9fSn8!kl
zp;LP+h`nh(Ij_54URgCPEJSj3SJtY~iNVS(84EPM4BFLYyks(O;j9;uZ5y{y9cKiG
z4dy7ZmQy*-t(vAvduSZqP-UE=H}miR<fO?76?X$wqU*9<1;VxYN}C0qAxh{FBooo-
zwq#~UVqxig4fb1#`BREQ`i?d3N2u5bAp#wNwz$vbB7HPGu#5*@#-q#BpV`bSjAl8#
zdxt!0A(|U}SNN^pIKwfDPd{4s;Oe0=omQ?%cd{{TK>$tMDWYOvC9wKgb!WLU!L2Gs
z^kCQ#Wi4vFM3n&JnO`+cIm>%@+7{c`cxsV<sjpcgwy*tC1D4387K$2Mhc`hS;S~M!
z7Ykdg$}t(I`pa+mCthcCLB0uY^OKu&XRywGR-h%tv5b0NNNzfGaNbQ4smqny9hWup
zmZZ@9%VRT%SdJ;d)lS=Bi3S1CUi|Je-!%pW-2hiayz7D1fnpI#lK--b^)oeVH}qa7
zXBICfoQhI^dds#&vyAZCe}FEcqQ&o~*pSpwv{2w!zQ4URd1_n8RIMfd?DFF|d=GoD
zJFjBbo0!&PPzGL0&W^qTlQi`bcMTI2$15hV_NUD1VK050R??L1`tJI}{mcfJNS~G|
zzq8&Bf+way38L1SyTmCfN*+nHnyISz#IIV+u*D5)MF}jvL^Hu3iPXEl;SG&X+q7;v
zO5nmXSfj9OBq)ES`^a7**sXQQ4K+4I<ZqTM;W$*_9Ho}8rR}vna?q_~3{AN6ND>`A
zH#%bzjpUiT_LN7|Q#`Hf(ydf1v*l3@%Y-Mwx#J|Xqns4a6|#7ZQk|Jz%+cdzJFR)D
zSt0rOE9T+-WFDmIHZFBb7+W%l4#Nad`4YEyJRL<&<L7iy{8B34GeKaGy?~xqB~RnR
zVGvbaL$BunRaF-Dd(NE1ByRI`wGw@a04{|QP-w0_G?KCu)ZY)ENpi98^<?2*7jtkU
zW{2ExRv=Hb5}IMcY_&ju^RNmT4_J&lO{|yi9$7VM>wB!v_&w$mnq>2}tfDB{8ZJ;V
zX4B?BF>tL4Tns&yYYn2>sI%fSl2nZF*c}J6#e>494r+c&Q=e$VX8>#*daEiT<`QPF
zsmt0d3(Grnkg4mlW=QGZ^4~ZOxkoRzgSR7n#d@K&Gl1i>=9?0{6Q*0YWvp+G78boJ
zxnw}tL%MYVsIV}R(bXuTrqyV8C1YB1EYfABc>jxBZwD35k&snERakf8L0IFIxnZyo
zrJ1umYJ`cTiTi6AfGr|%c1zeoMJwecgURv_ET{65?^sUiSu6H6swRG-X85{=LCo+1
ze0VA7iX~2AUwgWJ=L}R96!+BuQ<&nua_pMDmG^!!cm8Abm-g>B{TgcuHybV5T~sXV
zitdSdMNy2L>>9*RdpwKM4Xkgw#-Nr>;ikvLrcs|*T%wN@W;YH~6I#Y~9?^9_vCGq|
zDdok6z-q&pGjsPIGC~CpsA;#6sfirCODx9sRbFMyJ|c+XY}(40967l<V{Cjw<<)gZ
z`DD-7n|gPYQu!<gRCEkr8mVIFvF5y%)mt7`o&c)W9$19Em{O&2bFT@a6#1;jdWZe{
zwyunI40}bG06(^vdBw9t((*0hDk<DLFTuJE=G3j;ThN*j0_K3qznT(wm|8&7DnCzn
ztH7>#H{LWgimn-5kg;P6O6X4Z2CLEi+w&Vyi=kJ#xG%?PkPh`YLW34XtQxYL4v*r{
zwe4<4K0_RlX1Rii`=j-YI#Ub7%8T9ChKnhncRpiMQFd(SNm2O_{`wS8W|T1=$_+|c
zVUA><Z<8O^o-p;!TUKabJPs8-7O!>Mra0Rj!UK0U?;Ki=g6-?zYIYM9Ojma8FVva5
z;kum<F&w^Dl_g)&RB|+>SD6En(&^q)6U$-eYn?WpCwDbiJGtiSUN%&xN)Rus+E%10
z1|(L)LsA#Qa@L0h*p=`VSWy`m0O^kw{wCoO|7dS&Zzy#gPGX|(`wq6RvF=?Ef<ZBy
z#R;cVOWgIarUwku)K8WY?Dmp&V&#KY>zGH3q-NN?rrZpUT9VQPCJwA)j&ZCNng~Bk
zq`+47*PoXh7xibT;~X*E7+k78N542{jO+EZdJdgpw<V@DTGFgq(lXBs`CjikDEEr$
zICS(dr}FgCr<U6z@ga7m(V+<|;l$9n17^0`3kD30@Z=-E7P|&>^DhPKSu&X~#st5r
zBiH6ALB2rbqX(|iFYnFdLB0TY*+|^>=6!$swaxX}z#8^UE6;ROdS27H{5T7}`RXOO
zmE8#0a?bHFN{%&UM0(HsOW!u2&g07%5sl<}llP0O>oW^=P(^zEjk8FX2O>%;qZrhS
zf(8#}@v@o->#Si~_aG%Ro6ig3IaVjW0B3-m3>zHY#K#lWUK4#ftAyQ!6w|)pg13BQ
z)ua-l@tj7hsdC8LM(Ycsj&X{IZNJdgT%cD%Fjt-=n{r)WFs10-nR?s#)~K2-BA3;f
zUeGthzg<1KII_VUnOTBMSl*pj5fjsm-^h~}6mevQ%ns(Aur`47h#?<83$N8rzlWRp
zmFXN#5&2}p-p!F$OpeDNeD^xbqdq#>LvLm4$J?pra-b_d!^Z`k8s+PSGV;-t;KnY>
zr^x0s4v6=fiHNc_XKRQ{u^D}8DXV<fcPUmczsaKjcHDI0&Z=qPmMs`9bJ-NSQMaDn
z8=bC(`>JZnL>I`aB<;S4DUK|{+X9HE<>C{I6_)2gnKPOSAcdE?4wF%^+qU0cW5I+o
zQ!?$_%y|rkzXH0D6Y8Dqq^ahgpk$_>H@{Ds67II77~3m$5<0E$-nnFAK*zB$r-);e
zL{+S7<C2*u%X|V?T|BP>mC9N1w4F<1%OwZUIAv$VnTI9*$dMz~BO!4z0jVtcRJiT|
z{A_~xFmj=+N7x`mwn1?EG_7OH5b@<CH5cPM$->6&@VzGKIyS+8^XUBMN}=3F!~Jw8
z;)kh5V#nn=ItCh>EobC-43sfBGC{R-kFQFR4v$AF?2X~!XJywa+X`RTQA90bW)E%;
z2jOFN$|Sm9^GH$6KutNdiQ7~m{D5>Smg_`g*y{$jLB>NuSHkkDJ*o_6tlr8%WHviT
zq)BY~!2CWM!D;*{tADGNqU4$CdhnDh^w<#&HwVREn804o&~J#^tv>Sk{4c^l%m&1T
zo*D~nlpaZM`EcLP2XczWn%6l=_ZIj#PqLV8<Y~6$QK2o{j<#dWBx+#l8tWVdMB9sT
zdox~AwR>wBodDD<X_9wDdXzl@g;8w~O}4+dwzhLL^_QC9D-gT+s1lu(aL$1_^xasS
z`iSCSYMIL+Bc9p-MrQpwtoOJEa~DY-D0D!;?Nf}oeex?aT8%O%bB|v+$(1zbUDG5X
z<6q!yNGx!nE|J+CR1%BPZ?Nu5tUa86=_R{IVb$+Ns<s4^ROscdTDb$|m&XxWdzaaj
zAZl>ZT{y}<wE()a4aK@TG^wjK8F+0+mm|k?V&j`4fh=-jAX8Iw@c#7R_nRr?@7zp~
zI3EojPtD~AEgQag$2UG49!EZiFtt&Purit0?0KRR!2oqnm%sLa>Mq#yLRMW1<sUT`
zqsNukvrLJMz1JL2i=`&r<dCQ+pIvKIh$5LZ-U>uXVaBW;us%eN)ALJ+#fG7KJh7R~
zIF>_=QSp1QAwJaxBd%pLd42A9sGGB&`u?Yo*@8aI_7`oaqs_06Er7Bag>dz{I@4+h
z(Gn>(Y-p2x=(<?1)WCI!rZ}v7Kt32!Bh?VG{^gZv!c7){^5UJ{X|jAx2?QjoOy@kU
zm@k_m8*%GiCCUb>*69?8Mdi)VlV*D|Jr72~_qzK&W)1>4hRQK+rUbs%9z0dT;=rUa
z=r0p_3%s4s60eN6;`w{rT;JB9Z}SNXmYz<&tI-?DN$vnsxOhl|d@3Ke$YwZkY6^LC
zYVm94^fHgFe;C@%f%BNmODcsYJ5Mt}C=W%78YykZNxBC{<-Pz6qXdBm!_;BMS&b}A
zpFbwAG6f|wx~;1Vd6aNHW}B}NU{oZ}>|SI<Dh!7_05U!$s~S}A$#MvK;x-Uy(L&Y>
zqH1b&hRs|x^?1Z!j@4?&ggHxJ`@M7THtbaC9c<-DcWmT{xyc=F-<Xu{ZziOAktrTa
z8y?Yp*#Nc8)QDbATzFlAUd9tREB-+NyN3K}CT0^lFOnoLX5dpiGwc=Jiz1)~e-=J8
zlM1^0<?>0~y6^i{V<L7aGpM<|M5W^PM@6CaFK!cycO8ipTi&*<n3);*DkSpe%y6lX
zC8pO~GP+P}y7Nq2yWM9(|Jm`Z_$eIAlqKLH681SZ_zqwk-Zu4I_UB33ZXVykwwCym
zthPSnIugIU-z5T{h=4leccnu4Z9lf;ni5niAe;tfGZ;n7UU6Bw?|S7~yHDHs^1ez)
z47$AvD7j~Y*(`jk5of4Jb5A_?{f0tZ8x-Cv4s&=&oCzLScFuLWrY6+wN{oVnW@Cim
zQ%+MNmPsn3(Qh=@3wJ*S_PQ33x@_>UkL&wTRd80^(qvRdv8&s^#XUMXTIQ}1K&_7%
zcpbG|L8z_vzdsswUDmOGgsJqLI4Id!ZPExH-lY#7Z&6>rpWD^Bbju>u6@8n`X<1yg
zP!&n!l-WuUDMjNp=6tl084^uVhmu7SJ>&314U^iL&rp}b>#P-&1=V}`-<>3vwo$vG
zm!e#!O;bGXNrsSLhmI|Y3>8;^hft)j9xkqe-fa7k_9P4HF_|Virtr2TFsU{X$8Z|3
zUfy8+CSna$cO896Rw`u{3;X2cr!F)`L~fINXxx@CJ>hUf-B7%@E<amf*wGbV@i1Sr
zgswpIgw_(K|2QvP`$^Y{pNC?C&`|LgxV@~$tLMb1I<KX*JXcdY>l#7LR%n5cLF#eC
zTPSGv##z#ET$*HaD8rgK?X#OPM6{?`2?o=aa6Yq5KYrm`{IH$ac&UM*g6(+&edsQb
zCU|Ym1*nOmd4Y}=dA>$StOb+?klTHt$DirB9uLhDJfGH#GSMTr^47};GPzRdkT>vk
zDWxjA@vLJZa$BSOGAf`Js9FUfe5039)^)9fiP<M2*`lFs3fJgDh2bZAcZ=7ROP+wu
z&#HawhYI2F3ulS9+hHc#7<YXTYw>c+jY?#zQ)qO$k3myqzd*_zr8M$c^9aEN*zz7i
z3{%c`E(t?jHA#`wuWybt@^v7r>vdMd!KrAT&gErTaZ#nA$|UFBP}DwdPc=|{=&Nci
zM|sEaCFQ#lpH==CR!!UY{YL(9KGuBq&9g!wvqzQn=t=Xbd`m&m+{Z0&LRD2&>#my}
z-?0)?!1MhD?tJ?E)@iiY6!Y}SibI%Mu}%l<wosqW`}-VEJf$Q_;gbCRfEs~ra`1lo
zO#YCu7bt7>n_Tb5bK8qVJ+eCyJd>l}cI2fYVO+d^r7DFh0`vxzhMrP~i0&_B-tQIz
zh{#Nk$WC9gYT!4qCoKWaWum1zU8CbAA%$R0<NZ{o3Gw_Kr*xsicl4^Qql8=iQfwY|
zJy#vUSTVOwgS}}f(W5n0%O|Rguunu4omm6cb?cRbc*Ut+$9eDaqd;Mko#YKW+WCM(
zG|)7mQF7eao;zMKVzsrNZyivW>FGsj*FIMpg5Hwq%Q9H#cBy|WDnul_X*kY`(hfuL
zN3Uvlv=)Dx6|vk9IVjv#ZG{!P4w;;Ru|#h4FHMGu>9as;9nYig!?_PPn?u4tz08Zk
zjZ@l*<-W%g_HeNpyPm-^P2sGPWEp&0gREl4Wtn~7V;xC0+I;0ZiqrnlKX>Vqmwig^
zBUrB0@!5A9P#VN7k#xChIvt}ALKn!SR<R%%59KzfcceosZFMALzx2uN>VGMy*=A@&
zn=8J1U9$A@jV!pUQ_kHFZhKW@Jz-fH9gtUTZG)3Ao4HYEO*L*DtFzTJVZB62iq9Ql
z=v7(IwL=|)o=8Pg%mQd@b;7V+LyX24140Co{09)?mwqC3a<T88P>Z-ObAmK!+)Vg8
zzs7St>ER>@yyv9&G<;x@0j>sawUBdwmVrL3JK7yKwl(wL)oV;rCf{rUlnW;wY#@!r
zs7nm++WV#{a-k~`_}PcUcS8@~6AfOjeVHEZ4%v}Tv5lhcV>r*V;RF7+Q&=D*V=wxP
zW2lhNxBh;R4i#)Fu!1}Yv38F;M72*D7Yx-19wUpa7yS0EJ4?ihyJv8sB2qH!I2b~g
zCvVNIC*2@8`{M_n@=>|>!6c2HL4ug43%sjqPbD7Z+L6(JsO?m^+uy<t>1$>e>3Z7N
z5@tjHfSAwWYzQ{w#r^i*o)`SW=jT3?7@#Vj3AKrvXWk<_O*>2f0ei%s{yjm`WeIaj
zEkM<nKZulmG_>zAYg@6nFd}6fw3^H$*3SqF!e6YXWnH!lVc(i>7UB}LdinFA(~>TK
z5T~%hHcTUI3xpX5ewWqU|9i3;I^yr^^!)|QGI;xp$oblX-1+{wci!E^p8U)HWvdS`
zzvAhQRLSHSsZ{4MN=N;vAS}=Ae&Vg!*QVUiPPe;iJ&Vb@L(BfoYIc(V<^t;uc9aW~
z&A=O`P87uL89~+VDhFuaZW4e0lBPF+z~Ymrh1Eh%YdJ5TW$hjAW9a=*=HO4QeJZ-o
z*nx#^)6XH0+RvM1?y&>QBditbpR0{^mS2$;1ID&JIrFo&I*UJcD3ATuzw+AC=4Y3q
z?W^_QTAuwd5k~9xYdZ*ehkpF67r=#g7hkh|2=p0|j4j=|=j|AqD4Q9mTbt&u>l)Xe
z7DzWI89;5da)A=J_VgPJ`|)!}UD&+znynFTIp`DuKI+E>5)3JC+(Kfh$7K9WuSQ_+
z0QNBwz!?7N?KZ&P_yscTh(_@%2(g}1T*~^s%0D(HFE+R$Zuh}fR5bL#v9(iu_V<#S
zivY;^_3irD;Gi{F!g|0*-#)~{I{WSHJ8#sS^i7=Q&wV-+8UT#e>A#_J&C$~+jgU!7
zt!K_Py^`*fwZw}nzgAKFgCuS7DNZ~c3J4U6k5P)S2LC;!$i3eeU;Kj{SpEDeg$V)h
zQ4%Ov4;rki??frz7|$kM(=l%bq>T<+!u|7^J%Hw(TX+o>(BmB9Jw0nF9d_^M5eLsc
zcJ?#LYzx@#a@sC*n3IzIuRbY{MlTyz9XUg<4f4?((GrI|=gq9IC%wO@H(m3<!}GZm
zLz~C16-{%$@O=|hx_6PL3@CzKkSr$?n;|E|HjAVYITY6GNDpL_y%K~YGC9y3ga;uw
z2P(^74@2PtN{!0O24iDDsb)$NV$}D0<FYL-!}-Hmk6X@{T20le+}6j_7R4N=&<&d&
zV$;Du%m(R`77Z3`y509`kdbxSrs3hl1@9`lyXSvDi-z<UFejxbn8SF{4|9a0CI5Rz
z_=2YU@I=mfy&A>S6WdQ>*%Ai@*^($K6~>_e;F7uu2F4gX84(#=m@_6GPvOg4%U6Uf
z><sqwFjtXSOxMeh^N931Kl?QHtQ1jPw-0?0-#Nh(3vNReh+eiV$?Bk+_mIe@VV*`&
z0>{j|xuz|E+e3>yYCDnUUP`0vMNF8nnl)vlPz_!6==5e}7^(h~*bf8w+2nlSsJ=b(
zUFyR;eeEe>@WSAa6Jq%Xoe;SqpWTR@SlNP@*ohRGSa#jU`>i1~$}5icbGwZaS^5o`
z@|EpsWDY=4;a~uU*igr?s#k7B<8oWVcq4}knnqhDEUOyi6K+X>O!8u3&NgDSB(|Wq
z;hshjdc?J%{EGf_Pl;z<i|VD%1{t6AeWO%fG71@x^TxICEcdnd<WJPc$UR<3Zao{?
z2U@2jUS$D)gdgnHsd~b{-b9$I!_t9;jT1z~n!G!;)!F#2)!F`JgtgZ$S!J!vy(0Rk
zoF*4`*5xnu9w%n+P4ikVXAg+$)~GPlcpW#ZutZydF2k<~>Lm1CP!9w^(v!Wc;DIVG
zhOWU%9qGXkW1h-o#n|Eeih{NBL5@}T&8&O*hJXum^`9UX)uZEcXo6`jrniL3_?;(t
zvM5CZOn%7y;`pwvan;38u@S`DaB>}{<9SK%%=393G7+md3s|)bta6=}Db*o?!)rg9
zbg}ZdDsDo~SkMK4;+RyaHL*k%DascOH8t$>x@3rTz!Z3+cQ)z9R97VlSfO~m2-Y{>
z&w}cWKk6)yKTYH_XJ=2W>hB%&61N7p8E00iB}M~jBso>I9V*hOCmBK=(Rg)n0hEUw
z(Lhg8rSH|O4r4ZlDc5yOyY)U!rn+tRP8cNgODgHB06vigXB@PGZH(<Ke!5h^=elrX
z+&T3~rLMv%27nilgcQe!I(;23A!L1^e4?->an(eyW`{qU7&E(sX_DUsLoD61adClj
zl-zwcyIH`2C=(C(YWHKOoc-f=ijYOSR-W7JU6>&(?W+J;FOT!?^>NPw_!bBYvImN|
zk`qC)0#|>PPZ}O<n&sB3b%-=yqUdyA$<@;0DZx%D8n2Z)>aL-}n#is=*Hn(iy+&;=
zw;l(BXzpHqsp1AS9>mEg6rmynYeay*(;L`P5lBCNv(;T?(77cQBU>QH87s0krYrhw
zQ)H&N1iCUY2Q5$$+8K$otQ^<yJbYH+4&XrN$(P}n0BTq!=+%!Kynu1#PB~4`tD6=b
zE^nVi-kyKe={Pz`J6u&l2N2nCP(Z<4t*eSf7NR11`|3_ApAO&3R7@5;Bkk{`*->1#
z&M};CRfH(|HVYvWvyCbQij7QBTm~h~fxYAX=N?!<7>TG9j1+_U<po*m(d=9)<~y(J
zp3Hb4+Dn>_uXl4=hS`dYzL-a(-e_>$=^yqFy~YeA@o~rzZbdOE3R(4ZuC073BcLPE
z1~tjFX77^_;V;aqUb-Jcsy)!Cuu*-l7QKPh6t|I>H}g5G+kl1`%F#0L6F2GezG$~X
z=ieE_uDcU`o`iK}=K$Fh34;9SGW1XgwIKj-%!&_F*D=8^h0h@M(P2Xa@&Xvg@-_&a
z$ZHt^)EBE;xcJM!Vi?H{fBOP=kA3)v9gr+JicOuGxsC-+1Ld|K$J|L(;)C;c>zoib
zQayHMHZSd8V*G&3D~A2yyM!8(DoD`p-+>>tf>FzfZ<Cr)_beq&O}{z~(5)W{(gknt
zU~xSxeS&h{+Nfw!?83T9HFC)00Pe4wm``QLM#6uVxsO5mrSM;TEEc5v>eh*s+bYk}
z8un6JGMv<p79v9zY7s&v!lUa)cygd>kHOd^TY`I_)hXsax8eB^<wV{l+Iij*vK_Hh
zFGjaDWnI=>f*fdHtx0z;m%}%zEg&4uLJI9A;b+^oAsiY#+D5ied<NMid6BH@`Ry6F
zoeuHc?(l*n=rx=o7R`CJ`ERqnd&bc6H?B8TbGxFO*0fYZS65A`mDYvpREUIj&I)W)
zU*56&4WdX03*@l4p{d`my-d>NA1ihP8s@fk8?_h~r9DdNNA@&SY5ny?ft10NLD^N(
z4shM_RY?~?oT6ErXEL`jG67NpSH;FdIKIHwmyyOL4Q7a~F9|7w$+nl+K$iCY%gyrJ
z{G=c+#m8uC?t@(Md;XzgdsXLJw0%0EUAi>(CdVaWQXm)mnZVaDeNRCwYf@zw$uTL&
zqSQZ`f{;H&rdFxtYZNg8T91uym-$wfE6v7I%2C#_?FpbB`8xdwdp7l<`-f?@XFB^n
z8aW&tEOp0d?_F6VKv<?75LUIzFr|E9hw{@1dA_^}Zt&Qur_+);cg%}=bt|pnxW<b+
z-Zm}xv^kD%Nu4klwG#DKZ?JEYKTUPnl_BFQY}zZ;vv=eZKm^%4j!yv}3J&pfYU2i#
z+lfyVRE|@mqy$5MT9kG3CQM-zANj~eg&BM8M5lr3M;|xdgH@LzN~Lv#Q_=zf(|f&%
z3JJ8n<4=Xl?6K`-NoaE?wX8vt`Qc6!mJ4UHW*r_IJ-ffqX{`@SQuzP<vgChUis&;E
zg2^j8;UHkB-NadcE5ro#JXq(X;IoWqRp{w|c3~ECZ)=;T<Oa^T9yq$dSKAhsQ@vt<
z+%=q@s3f<O&*Gc4*&Yo4!FqK<luzZmWG5ztIJ!DyWA5~usz-3LsPwU4)Z;jS`?LTn
z%*bOl6y|2aF=Whnbbz}mmR6NltZJ;Iv1IIsspFr!%_N=41|9mjp0-<VO>Qe8YM0tT
z>cANgFDRe71j7U;qZ56D(68zKS9M$xYqR#5Fd?FAE{UcmhZHCmiqgZ~$-h@Jxe9++
zC4(OgF<)nlWa=K#v=FLuwa(Mai?FEjKt<W^GFiW$96&e;Y>dr2j(?WP1TNGwm$>^_
zBdvT}m%pJk<AH-I78=cFzP-_wTG&;szxTnnVjR`5HyxAc>KKig6osA^6d$D!eH<pd
zKa|<%RtogjL=`|6rcchpe(S0m#aoOtz-H!BUex0pfIqEa#6n8K`>ziV7D*e_1)PIU
zfwcK7_Me$HXZtuEH^@Cf6jjA2i5+Pbufyo(Yk+=^S?XvV>AE}&w7}7}BDx>fJ^ZB`
zT%|g|O_DWitiaXvetbi7bl9qJdr35_KomVzIz&_=f$AyO)SFh0b*zWm?QeDVqH6Y)
z-#=z>vFWE5G@qCo9^zh2!=hj4lOR$ed%{gvK3p&wCQx?XDUt_;F9)1ja?fV+g00=B
z+?>JzN7d#m$BVPRMz+^UB(z4WB(hyiK%sB=8O0L@eVc6JPe93H<~}X4-dA@Rp3P-D
zaLxMmatKJZ5^3mW|GZ7*l6R+1@uz@wf1^%)U>AB7WLof^H>ES42b}=qyWXwC+g`1&
z_Hj3F>Pht1a&Sm6?ixFgGzH}AFI2SP(_E~OSQkPzGKg3=iW<X3B*6>FLaq*$_}A~E
z*%}X=XDo^1@7U&WQ2YptpPfbGSfJtvp3UQLgJunb=9`|8Co7r6i@>fD8>u9yV6`$L
zM>=C??hGbnjmncGUj>@LpB5$vGJs7N=#?8$Qxsjy^T-FJyb-=|>Ikl>jkw18FTQ&V
zz@(tCY%g*fzfcdM%1P-1b6d~0{&pD1`Dsde{o(0Z%JZ7<+1REJc()Sw8-hi7wjkCq
z+mA237HmTBOiP)q)mTa*%^MFP(^{L_k}fWsuc0;d_JQcbyVEqqhs<WGzd$2^b3DWY
zm>2*Ebn%$Zghp{=UEVWph~_S>SGyluZ`f0Fd8Zu+Vc0U{^leSo2}DY-vxc8vQMo?0
z`a8Z6MUDYU%0z6ydmy6V(tuMx4?D!L`$IeRL8eI}Mn1g8o?yn%K%)^N2=Rc#p<#m&
z3}4}Pj0W<njy9T-a*Y|Qx^-2dypRFOi4N5^)3`^&3UbuX^=1x+217gE37wJcP7vw{
z%G+BlbpuRn&EC~GW5>I2|IrUHM2yvg1pQ$V;ItTaG@A9;YpBYWDk;u?+b*$ABxE~z
z2Vx3H2QKSlkw!H58*7A+*0Bcisdfciw<g0wZpMQ#(<!+~FRyfDeXpV^@iC@?;@ax@
z`k2w9bA-^iJAr2vQIiyhtHI%zcR5A8kM>F<?nb-csU-XKD+W{;xtF_eS;ZAh)a;fV
z@e*M*^<rDFW4N%;P2*tCASLpvf_x}?Hco34j%;EZ!7)l>zbb0Qv3Od3G8Pr1doKf&
zpASBC_ivuO`3peoui**z;gQO!LN)TI6Z#`}$$6jVr)E0OYyhg-Ya=SZD-IJ<M^k>g
zh+P7OOH{H0x|*!>rg?TJ)MuoDNdBt!$;StwvMm85MLGT3y>(iGl}(Z}UVBkrUHvtq
zwSNkKP}D{Q)AcT8cb+-<@Fra4@wNcsUR5L}gH>#pIr9Q_X3ap;3HHns<L7eZgKH0c
zQ$r8-ipdu6D!5M}%X&SzOcriHDh=oK;zf<NPBsc|;FAg$)+ogDDqm$!LDuy?F_BMX
z;yF=K<+T{2Rp1a%;<bW3;gCUStb?g&OM+sLhYVc~-$)IN^0T;L-!$CL#QIL^WjqJS
z_QS|-X(YU!IWy?R%IS<ABz|2Aa~-e;OSa9p@AwMyXUuN1%|9040DGR2o^2$vxlZd_
zHQ6sPF3RNx5E!$c_X+3fU2jLti#D>GmujPE-Q`AC9{GF`zgWvp`@;0>%AC(!A4@I&
z4Lph8;cX%e7MZZ#FPjZyXfFj%rv1zN?T^qXJImPJ45!2?P}y;Lu3f?Sq*j)#1}ozW
z^^ZIf?)nBMw&yXW(&4M(^)jWp-ho&t!pg0f6v#>9`27j$AmFXB*mop^kU3VZZI61O
zDu7-%*U2K89;1DL4-3hnC%MEajH6|C21bGxKr57C6tKV1<z}^}g&23nwvT<K-*EvB
z%l1V}7-G9>#zl3AsC+!c0uKhd=_sOi8YTF)LD|v4UgZSlfE_=ifb{au>#YvW>2&v*
zZ>|q#hEf`w-0%qHV%)1K%EiD^M8avs(_brPql<QUN_=)dZBxh|u$4q8<e6FyEl{T3
z9yuV;bcA1DPV(^Ka0NyZW1zx-Nf*lZO85sUB1XREgRyO#Vtdn2mvfgf_W{;l-v^{7
zX^^9q-crNa$PVKADAa{$dlol&(^vS`rdfuxzwp8jGCy9IAPc82^fJIsU9hQ2DICt7
zyEzA63BNV_x;s<uzRkI*SJdZx*iFh-ROG!Ufd=R&WC-QQfHvc|qGfSFOP-%1t6N9z
z6ns`guhdmHx7awLmPgjNwUZO5j8488HQX_CO+h9=Z%VI=>H>X<vdN&Fj$RZ{-##o`
zQsi3P5P*f573WPE4HFeF#qqcWOvZAJBxFhklXH1M8y*L}&2NO!Rf5hOwE<j{P7RHj
zfLcyX&^@nE2BK4NgY^by+i`<uE#a^MfO~el@;5O#Vb5qerp-|%0waYqkw3C`H?v4o
z*;6~7`6e#`tPxpnxQ+LwcEhTsJteF*Jbd#a!jAy~%i_EJ<aVU4`oms?<-z;5*v|HT
z39gOoG{9N{Cc*2klVOls55FE~;8(4Bo5Zb~af1|lv&Zj}<FDdRe4oMav0(v@wcmNU
z(>Rt|kB2zrzN2G||0Fs#B3?k9^T;=606oCw-l}cfu2;E67tjApzID4NNmME7&30L@
zXt=pb-H2-_P%Nm{>N`hrB-kV6<GGz*?b)R-W0K&v5Z#kn=Z}izIbUkQaGb8{M<Wo6
z=r=$i+h3}SVe$)?9@dTSu8gZAbIhRuvIjG~YM>&wR*9n<n=Ej8-EdgSHkboZFD7UM
zTKV_DqmtM-Go-!>vKZ!O|Db4{3MU0pw)u5>AP?;kMYuyu2+Ds$j$)_A<^{Fif0^15
zsl04VN!{mFz1DQ%BRXGbc2cvP8uQ4RNP7Kw-MAB*F@rP)%$WUQQ~r}`Y|Atr;w*yH
zGc*owG5WwQj~FVdC>O`>gcnm9-AA@r!0jv(e-8nzoUmX+f@z3{jk|k=-TBF8h!K(d
zm9p`&Gah>i4HV`hi2=%w0Qnk=L;RKvOn1$8uY)HRva1*Aup9RkF=3?p$kzp1d%e2(
zNNzkGV?m9jd5}&$NT{#~t5C4^)2UlyJy>`4cHbZNTIl3#`oNFyn;#SSv(x9!mp&uA
zhEXj_fEX0n4zgEST5Mie)YOk4)put+R(#ff4s(If<NUlpjM8}SL@51WOv>N<fs9Ff
zv^TKH6iGjd2Mi;xSj4A44~MY_5DsgU_Bq3}ipMOZewfGS{{Hw|RhNk(jdVtCj|c4(
z_XKi5nO`f?eusoYT>h|n4=`7Sr}NeFt`9QK6qHPHJJ$-=uhE%{obRLtILUthm7e`M
z3s-^NA^OGk)`K_;Nx|iq#VtgrIX9H$wdBvA=ln<hyuTsVfLNC}*j=Mhf8Q6Sf4=!L
z$g2T!WJL9!Qk?%|Ea5+=HE#iKFXr=4Ztun)xl{j!1qXN<iQHp9<z)a|*+kr5q%0;i
zqre7T7^Ht;Ri{o{oc?lt^Kn{5e|BO01;eSuoPm`uF&ry%G1Mk^Rvt@NhiCXx2%eVm
z;kbK!;V(W`e;SB&T_?(ujnXQV(+RLIY+f|PLNteK;q|;puiypdtpJAiKdD@qKZvOM
z&#7F%xwk}U0p=gW9o_hY7y&>#sWJPWI_(Y+E40mx7$5t`Pm2h_T0E91y!8W|jre20
z*&jjS?kQ|h5Dz{0FLizpxLrQ-3eeZ@Z)gDens37;U})0(45E4iUf-^xpMsxh$I;sr
zu)Vg)K_s&AJEd=&`U534_A1_d>37+1N}WG3qW%R3gNzs$|JnZJ%e`~8)oGtnjl@I6
zw5uInad6~))cTcXc)MXXfQcK|Z&t($AO^&r{!Y~51C08*7+~+F9=ZG8JM-Fy_cDN?
z;@OoW@UfmR-+LqYD=SPp1bO%eU4T^s`ZLP1YD&=)*pZSL6;N=VCsVbKrH`7u?DLhf
z2V^iZgWB|efz05)e;(Ooa4d^->SO~=EEm3^nV^@IM1h!&+}KUcAfD?}iYt`N?(2hK
z<It(SDBv{v3L!QruFoh-a)QUhgmr;je7yQuWa06g8ySCAs{7$rsG(!c=HV;5edBe|
zO_3E1!<Z~Zk6fXqsU8u^u`dRcFwaPy@uxmxca@I@nJQ@4@IDDMa=4SDVjy&PK{d2v
z^CHgR{w!!ndM2x@vS<+~cEbT+hv?L;v<S!N5EaqlNu~h_6{Y7`_-g&${V5@b=Uy&L
z<GBMZQq;Cl7?EvH!IWtg%#1BhEiYpFO{Gg`VEO)tn#TNlGMjG4fdNpl#U={=xo@;P
z*Jl?4n9urT-e12?AsoQfM?@v8LzM3(y?GU&KyDa<2cT*@A_ZQ0>_^BIb^}jTO_ED%
z%|NjwlX6}E@m44Kv;O=?wNoGS(EeE)ZpenJ#T<PIilZC@-VM?<TPY=4a+(h+lJi+`
z1YYfpWf^45K`v+QT*QP{lRr1KZa+&CX*_;20LTwZ_oJ;&&V`Q*_=`Zdurp6$oR)kW
zC7P#g&ji}EHPr8HZI{}2Cs*`WFypLmrq3^Yz=1=Tx)ZZy%J3Hef1P`q9H)@Ax&o=N
zg{CNho2w#IGM!tf1P_T^(D6(T;~#`JqMC_B?p?i^#5QOuuNZ7(8qezz!i%*h9d9wC
z5N|0U%ZU-pnEC%J1T)v37HM5#3;KSWNB$%3n=cg)2CLYM8B`L{U78Wo1kr``NQ;==
zQyz(@3*h<(Wg}a2P?9a+Q(tkbo$1q66#Tky-8l_nGoyl$YJg)ayE;%5Nj&E?Vad5S
zU8WU#gqS;nDU#9d1E1qd53JnUf0%BFS4)+h6{C)JCk&R@<Jf>xA*P?6siW~=Ew^nT
z*MQid?ujhT_a%7sXD@-yggt2YL^vHA=(7u8BRJ$Sjn|ipWVg+1-ksAfH;h-yQ)w}M
zxjt%|Mv1Cw>IC-PaPzwI*kmV|c56sN;l!%*L3c(_)l}_n7$F6(bf5+yCN`6;t30gz
zuE65_S17Rl``5N{zqoETRD;ELt(knnW80*&&@IQ9R!yjnRbmb3vQ=x)FgBE9#lhO=
zuY(njoB(6%YO3e>2nDCfg7|B2S#RL546bW%IUSzWu5_1?OuP~$iXlmd2>vOO^uM}?
zF)}ile~|53Yv1V`0df-gc!$tdUNCA~`<;yy-Y0GDrOptc!v~GWOKi_(-aDevm~KcE
z#Yh$*q@EnF)g&`bvAY2t0i12rd6lJ&%B|l0Ys>P$D!g+LCBQQEz0#-o=PLdGc`oA#
z<W?vk_m4^UZF>!iu7n)O84o+p!19$f&VM%^-1&2N2oQx(JT>jrqQzKXgsY#Vcf|_<
zd}8!_&xh&s-J+_Qu=n#)?I6Hea2d0617p2T`1v;%-ZqTt*G}~|eY+mM`|J)mmcyG?
z_Pn}2dX~}_b5ck^8|Ow{KfP7P*K*RKMbK%gW$;$f@0zx=QRlwH=O2HmxNmzg8_p%H
zJ@K|Lb@wd-8{(1-FU=2HPVT?h8CF$OyLL#CK%Pn${3U3Yb|m+Op5zAU%9+Mmcl0<D
z2Bst%Rk)itg0bi=Z6QjUr2nF8z*4EAW)WJW`031mW{i33VV&40dMGefyie=0HKP1#
z^r_nW46$7vE8zsAUn&DQS{SY&k5(>n_EziQ!#~Z?&0m)j`aMOn07AdUgkZe?V9UGZ
z6-Fl>Ml%cCtH7jj3G+}qr|so3?RttF&2Z0s5c(Ts0oHWs(=_!YYMsM4wYLxNQvZlR
z??{tH4a#R9<pDa+<tSKl5lHNf^)zvL%r|ZhGWLdp)(^6w`jEw}%Sz#xzDOfQy0Nvn
zb&Z}zRf*XEpZhK_*x^>vnn>@1d_To_fAT5j>Eoyd&^*g7*bvef*D{@2>$u<cNj70+
zC(Ti85Sh@V^VE~pprjiIYh?zoCqj?E@sBqtLbOXA-peQ5k<_H%vdN-!-+WYRv44pS
zkWw|#<x$@Yv4?+dw$PdH<FvL?w^-taWJ~0;j(HW_8xx$!n|+)2rwMrZfVf^A^jp~9
z;jy=ac9=>7$<PzfReJ!qPa6=0&+LKjXlt|7-(eUNu9!}?9WV*u6VU9Zdp#@rB}NG0
zckiDPLQsOZa^4sST0&3ZYte*!=CV;FD5`iwP_A+F4GB<H1HH1$rGHS&>uL~|V;p@u
zs~-N6do84?ofQzFtgd$_(Y{22YIxJOxoX8~G9$$hHibk3!)7*sk+G^5Xbjdt^QVl5
zZ4vB8i^#U2*uV7naSCm0lGgmxZ9!T?2P80gtj@nQk40t>fbMbZ;bJ3}(iUCW@8{ko
z$<3G5-ZFV!mxgWhyQX>Ld+`LGQMTrsQErF6+puC_HR#v|Oy72bVt~a3d(2i4DS~M$
zLTP(nq-JqsWA#hsu~X0vf?ImI35}M^i{Tm@0dh3Z)%F3#Ee0f-ypY()KO#HFJk?J$
zM&hv%M=+t(q8@qbu;1<G30#tEIKOmAHb91irLRd)9xC?rb<i~)ex}(e>lJpU<maWl
z#rig1SN*0{-#>m(Q?qPo*VW$^AjsE-Mj?zBR_HKViNuVgLEfSXnfX`Upp*7_bP8~u
zb$|?QAzX^4r-qQV7W2M@be>DS;Ls;$@Cu=3DDkm8z4ACy#m;y|*={WmP6i3cXy*Bi
zc>vuLG0cPX<DYFzya6cRd*g@d4VXtS?aTbYAb0)|vcvuir)YgVg1G?VW<BmvC9(j#
ze-SgI$NGgFmD8@~0t>Uvm<}OOP)@K@s50t={J*JpG0JucC@s*IcMEv`sY&YpK(GBj
zjS>HHAH$}0ky2O_byXlLfz|!#LfIAyN^`!U$Ik|koItg^KlcNMQ(ms9N&TIB7f-Xe
z{6kQ0(R(?i_$j!{0+v)&H2br&+9wVk5DUdda6E{O(D*PT=K9U0Izoa}Gs=+i*DVda
zn%}8=s^4zuzc6^<;uO(^r~Z@-rvAS{rT(jI_+M|T_;1&U|3B?L8zAz*$Da;&PWd+G
z%IP<E?*8{n@_oo3NRa#u?989&vs;l((_SE_sfEnGCG7LVt}yby42m`O)SRjf(BnNk
zyw|qV*KWFqh!(rz+90g|`csXtT>v6}j*3(U_PZp(IPxbRYwx+KRs-;&Xo_6-(R;D(
zmpN<2c9;{CWFQ~_T(?G&imd6$)?R_g>R_RNw^vz#@BtJJEWf#`#etO4^wJO2FmR2$
zIm}XC+S@p@c7xPG;C&w!xX<oi_Omx(i&~I9HC+>tLH+9jW={P<39zSb`{#0ezYgO6
zmDd3mhJ=ZwKfk=$VB`NMS*(6WgMWYZzZd*Fh4BYD`To7l{(Y|h1jFdRx7q)~Z3d)g
zsR{cD?%xKM-vrm(;idGmf99^J*-BvjH<bX!AYGfsnF+<Tvj+u7C8@(XxtrtYmGGN0
zZ;LYJ)a*JY{i!=_*sTgyRP<g<{%&Q5@_sLOnIHZAa<>Z!<cOm&p0p(#knq$q%nS|p
z=k#Q$yE`6znvl`HcI8(dVe{%oLem3Uz{+}`LKI)}PLYURiNMJc*0>ug{E4War1qtE
zw156e_?h;Lwc@d7`>Jt&*LTu?uW0C+|FfPLpfwmLk{RO@e;%A+Lo|c$eC<!wHT?K$
zf&ZOfy>o_8_tYsqHktc()&A5Km@FKPS260f930i~KxYoY_BdA$&E>?xG-HdUmjzg;
zeSW-_C1rkpq@NJMpVK+uCvO#nk(<<0{`;$cK@z91|Cm+{f69V)g6>^F4UFknHo?7A
zWP#CFR+x`sC~>=uGP7YbmG_TvwX3WkJ$nx?V()*qXny|TzXI0v`<??owxZ=fIv+8T
zprvh`DG>1+1H*hIrjyhw?#x106uDqdEfBtN7b`z>`cAOQ{d4r0T!qgr4b!2jV0n{{
znc57U@x3Bupxfxj8qwa9kMxffdEz#GuQQ~?D`Il2NHcwO*l%>^`2(w_%&L+e(0-84
z!*zzP!fc%}noV<LG>UB3k2E#<VkX`JJV8F1Rb6F|AguNb^-VBxaIl57@8B;Q8Stsg
zS?U0jQoN8`x<!S$IvLOhbY~8U65x>jjXLPZf#Ll}2SyGU^nurRAVZr%0O%ODK1YT^
zU)D*EQ>({52zJqTd0>ihpH#S1Vr)RRgN)io&3jxn?I&f<Og5Sd2Q+P7RX)|MYAP$!
zfe|k4VTdhf2wglmPwpMs>tw70v=3yn?_N@PeP;?UI;e(YG%7J&SvmYd#wDeilQNBw
z_j{s<)n~|E(O%c2-fh>ZU48S^hFw7<((}jwbh#2c*olc|i#63lmde3p5CyQn+7vYC
z(jPof=FF$vfSwQP9Z=rEeZFDGEn#QNM!IFgM$AoNcl(l+MMrZm<%=@f*tD~jzm1VT
zg;gT1hbWl7ZF%sZ(t8&w*_{of36;n!;Ob0eZ<ZqJ*?YbzzMZ2fGtZ`by3S)Am<42G
zb%k;cLWFitue$Atvnba;ukEcXvzj8W$;tEzfwNa+(vWk)3C~qFSx!{Sv?*$Kz9KXj
zBO;9#tq7ZHgh-8t>ueTJq&dB<+PWIg882~p5sO#o(R>n>sXfX0r@{A~DwQ`dWByDp
zw+I}n^EaQJwY)KQ-TM@nXN>u0?DQ9%*={f+mQ}t1%!0DBU6)%-^JUFxg2{1;ar)xz
zDOEKHDUS*tpr~#zQF=u<zujqc)&6wki-vyEG*H}2c6dy<3VN|x6~ta!s~FW+5w74Z
z*iF1sr$;)IKuqKEgvT7KSfHo!>DkT6MH9t^FB%*Ra~jkpybF(SOpZnPQwW?ky~}a;
zBJ8(8^QW-&eX2(^8;oGPflt8C(n>~m={4}zdK@^B-P)vfL9CCW9-CK9xUGT_Teu@8
z?1;|28S7FHWKbhVa$UzvuZRJudrt~C{d_fCt8_<Vf7HArD^w(j^`%JGR(kEx(BNfb
zbdYJ5`@V0M+h~d%7^}N_Oh-%<wrmiWD!PnD2zEXo)z6p+yxKrd9CD3Ws1gZUL<_dp
zEFVhjHSLce26B<ftM&n3dgA&+J3r=CZE?6FEm!-ucQd|`#Fa^TpV1<gd{M{G^xB*(
z0b2)O_60<F1DR>25pJ(L((bH*?9yhn?$wS!e$^Ac&>}#Z`~}_fyp5rQ|F;GBfK;U|
z#+|mf+D8pJx>i$i^6<#q;G>$8I&hqHt2QLfPJ0R&c)$Ca7(Bp->NG%z>e7=A)oQ^i
zYcz%?o({vT2Ct$9RBJd<`$nqE9^d93*EG199$kfXM4GIwd;2)&23nSw4Qr4OnP-fe
z(@+VqdWZ@=Q1V{p;Nzwzt+JyduG+d)Mn_6N*BT={*-pogZ+9-BPx9B0_s#R4D;nWc
zgOvt1@Si5$v0~{?C?A-~wQi!`YV|r!KDP4O-=5>LSfQ^iI<KjYh1fVmH7#Qa99Lgn
z1Wtm;r6M@#b0`=R9j;8@3h!;G-^3;3e`|nFdfXDwG1Sou_tQl&ju%Yu$<ZVVx`eDX
zIJ4{vqPU-ELZ<kqN}Q-Expat5Ixpr`RUBVOQ4ELI*Qa{41<GdL^YeYO7ANCc3lDC9
zcQ+i8SYlBdmPOL^jN9^Rp1az|;pyp@WaFuBuQgKgO~-`DlV{4rwD)wz<V@~}fR5Qv
zUJB9=Opnic^Cd~(yht6J_uhu=SApLSHZ316=9rjZtsC?T3!&`1^)vJp-&sxR#0$73
zIMnYlQq2~Fq3wk(M73ToDb<T=_3<sozNzf5=31^&v|Ra+A5!N!#ew8-)unM;3ui*<
z+9GKjLhDO6A558!IOfVH-k5I<4Yyll%^G1$9eVHqqWYkcCM&>lpRE>K*tsU2s-`*`
z-=#X*Kc2AW+Bv?;g*i#0kJ@2!4`1^BJjb-&-kP+<D0O69<<WI*aUq)zHhG>y{k0#;
zt$bl*Gv)*HgV_$NTwD9gh^(UuA$&`2(JL$0l3f!m7KbLDj21)aNA+g}ZSItfzkS60
zY`i{LwC^|}W@{ha>rMloDr*|zUvxN<oajVA(n7(7qTedETRyF6UFdPxVcTfW@m5_|
z5aJcMQCEQoE`8E*rg8pbYjkizr*__hb(DcS$98HWJ(!UcBSE|$c@wgmjw~vHGYtur
zBjQ{okR7GSMz1LA#wlhtjhoRIi3$6~tgljPR&X|zHzw`v>8Rul(B<`7L@SNDUvHKq
zh@h~pegKW)V2jKZUUj1=aSj3pKWBPLmu;T#;u1G}c~G!?o%xJr{>|*&X(=zOjsfB)
z3vbg)9T6Jaw=0RxZJtU@zGc%BQdV;ww_NhN&;;`yA8z?v*_$tv$E-<@PH*yFvbZSz
z+lIHmwq@TmDf0&2E3uCKWyp<Q`Q#g7hno$@I%OupB{O)523VFuJiRPRz5Pu$D(x2S
zYVtZOMDJCk><?WQ@?uy6bJ<a~>F5tD%9pe3%o<dR%zKjg<WjkJe3b1zUsP8`L`OdP
z^!fH`?3McM4P9{WXwFpM2}n8B3$Zeh<gi-2M{TwE$V7re@>4LoOLe$}&DDiVSJH!j
z3*fY~B(KdqhJ|u0o20Myi3+06<!OC21Xg3hfgH$S5E3;z>%X|!96A(OuaGd>&2NQx
zZujL5i)v2cO%S&r?zPCqgPduVhkCr$#~*iXA<{aCLm1kUAXeYjv(;3m@+n&|`JMhF
z&8+iJtB_-KOvzdj=-u&sNxh2a1y^kwyr!#QL=<1WIRa4B#2W>v{HkJ(In!s;kB52_
z@|sE-(JDGsQ!bXM<e@||AeYS!bvYTYv`loUn>W#ZZx>&syRpF|t|%(7%~a-`)hO}x
zOAE@hn}W)n=@@n^a0X0Ah-qsTSvz<=+Tu(*{7^DkHE<D3QlJ#RUl)e^+`C)x6u)WP
zxSk)j4t;pCWz<0;Hf(eJzAcd#NzX0p=M?8Ee~YRhjrFO%`n*hA-28wVm!wY;vYjO0
z;o~W{hR-R=<m*2jYrDFty0mKWZR_f%gxIU@?;kZd)aErraT?rxMNF01w(0@e6Q8#p
z_L@wMjb&2M9qQg&#3CcjY}Up~shbRXr8f!n6P|=NcfHaJdP$+XWkc^jd$XN^`5pz<
zZ&Bm}+l5hdzO(#<XZX!Db!(c3f$20}_4lmm_Y;DUj?TyfFfl?gdVQj*lLW=t1>V#x
z{8F*wZ(wYp@DZLaN}ys4-6Lcz+jQWX>#1lVg;ui<2H~$|_v&PzxdG!S#6I)*kdUu3
zayYf{l6C5O5wI=BT;U-`nX-uvpAkNZ!`2zho}NapCJdK4tV(UIj47*JS6@SqWkv#>
zD0KDugyz-8FxTxhJ503BHt8<gc}BtK$zBB0d-f`<le2(xy|_`aDtcyezs%w823c-0
zOIuEWW4D1PZuxYoi}~b^-FT^EpuhuGYKM2i==RICMS2Ea^9H3GWfgY2+RM;K{_6cl
z@b0U1x;shKamk;-3sgwbGB~xo#-CX5P~7}RX<4wH7nry$n#kNUSMrHW@{~3G$E&}u
zALE5l>=FcSx$=mxT+Ad}1(6`IIg9Mu#((=fMsTkT@314cU;(YTzGI8p9apArTYaI8
zQo-83hgH!!UMYbeFT9$Xmod@s<Xihk;6Ppjy=9qQzsFaye>%Q8Zc&cAAyqK3&dz)^
z`9c0Pr?XVmw4F(JQ}%g%ukcRz$QCu!d8S^5u8G)vdtI_7U%^Nu2i=8(BPCstKaA2P
zAm?qoF<*Wnv@Bdx(MeU?bdU^r^7Q~IGssv3Y_~DBCEA^?ptn{|(6-6RHtrOk*T*t0
zi*IQ`^V3AuSnDABion7-a3$^}9CZ%IH-{7+P`fx}9ojDq?R=fEs!{C`I6&4;Rh>XE
z&9hgJ!1e#e^`N-aJXXhHdUKI<)xP+97BI1IGI4nRsXu|Mbck?iLZMEDilF00n5gD@
zx!Je|`N)h*<DTir(0hMX{24INDh@V`TfW5f#o^4!mD*Fp@5bN!U%kHJlE6FzGF2~d
z?Om)GxptVye@rG|c!IOIjY@svO6Ie#YF=73IjO*^_V%qo+B=JVsR87)zTLLMRMrxi
zS2U>M+ABt@cxg;^!7c*Hx%fYooHuo1M$)=L!DVh*h5vLo(O{T@P)&KGYQ}^9#C84u
zu=k#EO}5$AxS&`-Y=B5t5fN#E(yO9?BB1mhkxnSmdjJclG^vq}(z_6P3l<2y_bwd*
zgx&(=y@KL1^Sm?jKfZI$bN(OZi{J2f=f3x~_u6Z%y)O!<`TSR450ITnYeqf{>iNaR
zaP|t7n69rqTZ+ee6rwq_-(u#2Sfnk1In1(;ZnwoTRcq@}`8%y_-Fe%k><FdM>+V5;
zU+LRdG#7WYs07X8LfAD`V&317-6&s*b(a~22~A}SDd4U#D3@jInGxlsEw0Zn8_n{G
z4G6^r*mp4Ot;PCql-<ojW+5!Xp%G)=^cwe?_;(+Qpwtmbwd-_34VMZ|9mm(PGrw2I
z6vWY-arx>DcwmXE(A`!o>MO8ZaAEP7Us<J~!zZ$axBoDaJ>+0jbz>7Mz?~C*_(wv!
zhyt((!u~ptP$S?`u{DMMSar6r$YpR(C_G2+>P#$Af7#YClYu#6w}C{$K9H*t0T`)p
zO0V`!T}izA=3EfSq^x2(F;->Uk5SW4yHAU0u@yRC*pj>WC7cI4<=rh>MqDNm;gp+A
zEGZscWgpg)V+-!@O4_+jrFm^{<$;<THd^I_)|+KV%r=&BR;)(tOf`1j6qWZDBAg_!
z?_H)?csT38PZousxlWYVyXOBRy~O|X^ukG$M?~2oDhhiGhD-^#ZPsr&S+^aTaUC<a
z9zWZ;>O-_w>KJ&EL4bdaVPS<~u75$X8|%1Gr*ntSD|yeIp=$44If*sXkBkqaaI~3}
z$~7M17C!R}Pn=mifd|ku9c|Zwi1M0+c{JC1jTqGPO%rWr2QH04*A{vqrcu@<Iv2}7
z?!BTyeYIbmzbP&!nB#@<E7(}4VFPC2=NxjG{UaZJFL55=F64q2FJL*66*k^_S=*tZ
zw!=Jhn)M}iP}eCilA~oP=PtL=JG3~9eU`S=Ps>eWTpz;1Dla#%#oIgL^m%<MHamE|
zyI{EyQ((bYE5%Tb!5ZHt$_ogHjnGILg6QaMK0isDhd9&CC!Y3U=$23%?#$zrmA%x<
z!&}Xbfsf<8ol1Kh?s~kMojc-bV;|M1d@YXWTyL*rF_I;YG**^;YEkw3Nk)&tz$ZSx
zaLW_2*HF*yHA1jsE(SZVs)4)w-a1m)An4)yq7_wSnSU^SEJvaYJWx4ZEKH6se}jH`
zzHmPySzewM>#}UmN_|MncMo8S32XysiEBFNBe%AV$w@&J=fcUr*G5b}*suOD0%GG`
z`n*3rfjz#3(RgPBs<0bC<M@6T+=FG&;`8w{r@&8GX0S4eQMB~Uq!Feq8T_!jW^EE3
zJ*L$=&J9YO%q;uS!g{f$QgIwxPoip6ESI5=VdeyA_w8^LYaH+9h3pgFI?D$SiC{Y2
zz;)K44nuDB4muMLylVgmw2gIU1$TrZ+)yw4v?*E^Kv%@=)W+sk$2V-zVd+d7W7!8_
zaIkw*)b**DmD9zEG7f`oQ`&{KE;u)o>s@f0mAK|wO}zeMT;R5iY9Ul*q&XpVbPQjg
zrBuaKkaS<Pi~;1G=;{{=pR}-SyfbSNTX{_4gp$DAjomFCXt$SOz-e!?N`a{E7+8rR
zVpbvT&YRU6=%HPWQzD73CFLfA=hbf+*p)Okfu+dBNSxNn#mBgM3?`Vbf_zPE4@UNS
zbf>>}?iIyx=ar=OPtRTH4=VJg8_Bo)O0@GnAXdK_(~b0B1MAmoM?P#A44iCFZs<fB
zuPuBmoXFBCG@@0do29I(_IFaiIjePdaGFKitPf9&_Q7id#P;3`PVu_!ba6OLL%x-`
zw}>p)eWA=8n@bC}Lut=kacA2c2;HHu*&v>>7YyTTnY7q(wE<@??h%nndBN?jvbE4p
z6&fjA&#ZnyF9AHMK(hVxUap7zh{tz@-IVx=pUH%~B7UnjtGSzUXGLdrJdC}sF5D=J
z31YUX<vi>rRqa?f+$Yhr*I!)mv{#Ze@_zlK`KpmQQM`janvn+@GvNX?FSedA*wK?m
z+r+%TrE^szAEDNz)uLJ1x7)-~%I2&*HJ9e0LKn+5F97JBBG<+5Pal)i5bdTGe)Xs3
zQgJu?G8RxfZWOZ^otsYBCtAJ`tSBd{Y`?~PY^|&JT$Rl9fYRCAEuo^POjOI2(p-FQ
zh_E&N_9WTKMGJHFnj!Y28iuDI1i7_S$gECP<)avqJnREbNRXbH*h})@CC}M=_Vf6i
zSvB<RuK9HDptCvih|n+-I;QHf&ahXkBTi%2Xj9j2vl{sn&JMY*Z81MxYVsg#Kqg6K
zC4=KrG;&0pir4iWrpV+Z4Y$VLGMw=ndG9IuTX)jv)wK<q!vpscS=XRyC|a8`n7XI4
z$?YDoF1oL8tFT)mHmYUuHzQO%2sN^gV)u_^FL|5?Z)Beq$wA~?6C||C%s#*B2RI+|
z$aF#J@)EyQ2XvrwaOKB)$Z{5C3O#?S-6GL~#ZI_>Wn~2sm2@)NGLXcyv%o)DFxL60
zr0M6<JebYxuhsDBW;#GSQE^XSDo2iNIdR+e>^cwc=$-fAv)Iwl$S-cQt^Zkny6z|{
zUf2P{^3veXX79AGz6pzdPHfy5>5SVz;%4~PU=(T@*(&)Z_%2{?cRSsA70?tjTd814
zyBj08x_wn!nO!pdp2-@YLEjZBKG>9eIzHVdC4vs<tsNj&9waq8Ry)L)_%aBo*U_oT
zEiW%8d=Ir-)pTm)QvNoOa+_>W$ujDZWz0x39l;9jTHK9my$_$sb@A~#k1bG2_e$X2
zFX-&-5DR?YNt;>UrhwEpd=|oC^h$!GYX||aq==?v=b2S%-iY`w@=7}0B*x0l06=?-
zZNA>wlJ`bap6P%-3$)B^!7e|q*u@0#4LP!pUERVK=O@TaWjSZ&nD~@9&v*F>jDEPp
z?J(2?nJSr>w6I>lMRSrs+ywGfTpg<UZHw3|ZQzkx?|d|i-+5~~z3+YJ6ZlL|hTdZQ
zOw_AdgNd{N1JpX?xwi@9FY0l;2v3$0ah<Ov)L6UPVH6XQ=pF&>FEDSLNm~Cn#H(3i
zOGPEH^B9i{*ETFVlXA=kHkJG07AQz3$~wNx<|%nj$#8N?Z=~O8J9gB+Wgc|0a^PBp
zk3J8Sb&X?ncEPv-bXxE89d%33SwL9M-cwU{?L%knZJTGzCP>lKvEZTvlw-5^9{ZG-
zTB+_fMv7@RXr7+!E(JZSX*QM;iHk|$YdOEF`iNlOB)KajMr5J&E3jCrFO;Eq@!czj
zZKg8%X>oxBv-xzi-bR+lM7B{(eDmX1wIWzs8TO}`ckyY;-Iis_mhO+-hY0)XIZ~PD
z`|U#LgzTkvz4G0B2DiT=_u7~GA`{l{!DqX`!mDs=`ZSU^%B?HAhv^?q*~_B3zz$Gq
zOzIqEu7{IHq6cs9#r^OQB+9!TsNesS+dcQsxm|WZa)8fW4uwOzvjXL!g%aNCx`)LF
zfIT$BD;_#u2TJVHZ<*$T?N-LZps9I`{$}c?oQX(7mM+Y(Cdb+*xvsWitu+fHZHK=t
zHBZ~2l4D}71&9gAZ7j*Ro*gN!Z_KEv%G9d)nkn31R#PQil*4qI&-!@NbFJr>^ZuYw
z%JApg8I?CriT~R7vgV(~cNA~tt~&HpxRt^X=`)UCFIS@cu#l{xrI8#YjzrRZ+a$8X
zQVHeIP+F6IDy6U>4Jo$s{j_uXc_>&_`9+mhW5pL)M>n{gAchc87S|9~7Kb)Ht}0^J
z<m<3}-0~t}k43W}!`Ee%h3i$ytT|#<qe{`zQrX?qw}}tJm@cNC*k8Jx97m{OXAvN@
zT}PE18%{5&E#KHIghE>wGY-2W@4F{G4A14>%Nd?bo-AOr^LH-I0J8<+Le3pWQnhBz
zY+*+4SxW_ImNBf%GdPMDD|xQGUv2JAeKCu5M#1)8ZE=r(Ca733Ca=IZO0~b&C|N$f
z7Ux$oxz)0mW8I^x+~)e3X9xhT+Bt!nZK!e~QZ!#6nY^$%@>b<)H~++~nZXsE!JWAk
zJB91YPc*Z%oXYq53M6cH8CD{jbJ?l)yIiv0>vA>4(<>f=Je**#lJ52jk#^BWXLhQ%
zW7Krf@=H<e$G7~d*?Vdh(&hQQo85W$Sxq|PQZ2zp*#7M8qgYksFda)k5@XZAg_3FR
zh$P+HMD4bDcL>z0vIS=iTDFN@3KLyK`)fR^zzrQsR7jidAkR&c7<MgvTw;&T7*3)Q
zMs+RpPwjQ|Tgji*y!~loWtKE2Gusr-(Wi{+c)FU_$(q<tr@gv0)C{(&5O5m<zEf>!
z#J2EynVZFDgmvpH__U~^xaNm1x4G>bt_(UryJ-w+gHE?i_1G(Ye}=4hkzm>x@A?X1
zy5nBH{`RD6Tx|A85ARX8Udj<5piKTAt)$Ho=k~p7N`J8hYX(u?xTn6Ngq%#&dGxF=
z)o7ZM;r-{%Z2weTjZP+|*Dka(H}h6XH-Gs;8jJ_}P2z<jG}7klsj4ZuGvG9No?%nG
zNJ;YGl6|1mrBTdi+juTX)E)l2;68u~8u%6Xp!g``0jDK?3c#%jjWfD|9C17lISN<$
z;BAv^3RZZnD#XpCBvUj0U8zZXQ(>lt*t=Oa)vV`uW;z3c>$NC9q2d=0<CuFnCLiQC
z?8=_5lG$Ks3_)sK%+lFa>t$6|+WveDvo&Oa#y)xIx4X`oiR?Ct%?#$`&ER~dv=%M*
zpuFmPJtv>>u}&2+zofl~1m;sTmT>nd2T!x1o$^~2DutC?<qRo~EuR6$*{MGWwxok*
zge7Wil)s?)u$evKX91z6$?N1T)Nkg@;s=JwTfCaDzO~s*f97?zvS0ddK*}f3E>&vw
z5aktM3eqc5pfSp6JNI#QomdP`wZLpJH(iF@(G2X^4b%$|xU^>dB6i|yNB!9j8Olx8
zi2bOi`K_oQzDJNb@6$?&^vLvBf3A_QSXGazkF+emgoC;1?ob-sWj=zZ9Z&vVeE4V(
zWHvq*J@S!waezXZqj#l-NqzWJe6W;S&YWwER_<6?sp_SG!O*&esT!uzAuZBhxXAPe
zE-Gh<W0!tCW<sDzV7`4(2nofj8)TgO>c$6;E@^!unu)zr=UXhc7NoYu_OJ=eWjlWI
z6Nx7<N&R!uv$8A7JYRDsSVwA}9~x2@pFH;~gwCD^T^O9O@3Je|jWv<;BgN2w6J%5#
zTIY2Ags(Z>O_Eu?Ykfb2Z*^q+Yy=xC^E(-p_r=E#G>1p}`~ClM55m6ZFZpB615hU$
zXd@(CX~=9Hg%~r-x<il|SkuH?w@b$sH~49mCe?A%bLK=gWGTOacE_}&@f2v&Dvo^|
z=<bbS?3VZiOs@&!xmxg(%T5+se<xWSP~N2KF%;+E4gG><4ETZ=?hLIpP!;SIlcewE
z8;)iTs$aOaM0J4mFFNc$mGrxxPjyW_H^G-~CB#CE%Ot8Hnvd1ZH+r~mKP6NC7WD|Y
z0bcEG>w9>uEcoj0Xl3#QnX<1$kAU8P@eq1UIs@z($?NiDiObKu(nYn8(_LvFM}397
zy6JmpNb))R!3*~AkOf+x4zaO$$?C*gyd-c{_ID(KSVE0RVz=WLN61D9x=?{?;Fb*I
z%)^S}P=os!H|us~3CuV7Kk|DciH$B0l=&UeJa~nN2qML`NXp1t`fO+FDe%0|!-#*#
z3;h#<TNJ!0itRJvmCTigGXfZMz&4pyjblk3U3EcfMn713tAD}LgBLT?24~$rzPEno
z__~2Nb$#`chlf0nVHu>Jl17om=bswT)z^mLo=XjdXw1vWZ)E-ozaI@QpeQWq|2cq4
z^yo^Gfn@FL*KNP0UxS~K+TsmXynw^%M*D{6nVfHz;0>ZYm9TGuKXP6G<3G=NG9YH)
z6<YfcE1~vxAQt$(iXToB9C0NSuH5E72L;!YWZFF;HqK;wWA}rSVUYUglnfli42N6s
zWjvn0AN-H-JW=tHd&Ym@ct`wkTk|*RPX=%54g=xwO^_njtgdu{l{OmaO7a#B^>b+7
zAIzKozhvJ2bGrUZ^3nglPS-<%%uuGBrXM2e*z12TqAG|(+Y>oekKp-wli%X&K^{_?
z2IV0ZByCauZ`AzEl2AGzXR*pWjRs9HNp>oWyXXf6XE_-N_HJ72+LW!!?%QmG$r06d
zbNjm=`Nz&{AHq!AN4+^9AIG2nNN<y02ERBo0P{oEjy`c=tQK*%n4{hD@wY{-S1I|d
zZy+w7X8hh21~T7^-hH<W{+}#7f2+~5@zJB;;w67@42aa#OOB~st2wut4gcW5TRH?D
zsa`OaJv1#$Ufy<Tg?0SpN_tX1c}o&Yo6zH^c4h>b#vx3Le$*eGaLCWc=`jBaCk2^?
z;*eFseGdO4OXyqw<;LnirygHZUl8Tl(C@%IW>yPVjrg*5<&sw2Sq`io0A=z8{AB^k
zuO^OlEG%v-b2lG0VyLhv$(Cg-5&u#BhW=CS@n>mYlmBn7_W$eo2=BH-o&67>03dc>
z<M|Ju_^&#6{sY(XaQ%P%0ArpI%-53*huUaH1;vati%r({a3KD-kOX*^pPkEw?9O*|
z61J~+==Eq6+R$ZrcWH=Br0JKQ1H<91Y6{|5EK+sTYYVi^p-5R>`b+RH9nEFDPWll=
zEfO3Y35)%-HDi1v@b#Li#9Qx44qDBTn0+?h?Iy7?$+=N}!sCy`BNJUbUOi{KjdP|V
zHb$W7el)6*|0!MnGo`EXf+NQ5L7nmoj{6%^=JmnJE@GUG*lxLv)M)SQ$OUNoYmOh9
zUYWyR)V=ljda|mra>9pf?MvLhrdjHLX2b!6%YF_g_XEZV{8deS<AwKxeJ6vy2?4_{
zKyd*~e^K9TUJd$J!*^GP&i)8~w!bR)Zyp8W?Taf*{y+LEy?<p+P4_6kTYJBr9`3Jr
zP~ql+(SGoj0{dcTb1YyBcD2D1@VD%mg%)6|eedHDli5CC3k+$DbicNUaE+S=jO2u&
z{lCj=@ah46;imLC%<CV0e%L?n^DTkx#gCdd7*7@}2^LwWohf)fJ~2_-mmdpugca5%
z$wrz%WGFM&=UU~{80>sQt}8!qzsiX*QqOk|9q3%)#hVP*%60@<RR!-luNO&OSIM}-
z^dO{#L6N8!2isMq5?-zFZTA=5=AUUT4+vpVRAIo*B%5<vcRT_&WK403%1E_R;)Sb|
zzs0KH#10)ggu_|AMA9Byp*uHtVuy5X54999VU(I7cJ}_+kN12m^7c|671{<fm0pqQ
zE7EuuWUZNSEr?0I?ds$2hN+Q}=h-z<YG8~q>(Q_<TzIQPLqqsjl)z-viU@LLTZF#b
z6*=5nvEmvqJl3>oQm6P)Km2P@W$awAOr+FsK2(aZ`OAm1;uix6jg&K=((iRM$&fik
z_=@p1)s_;~DYG+?mTH?sKl}QYo!g~DwQV~Uoyir?^$|@j6)U$xxHK@#XNOb(TNe$Y
zZP!z>6LnBB85OM;8IO5?8=Dg*6cHnI#I`>D#RFbkIU*;Rn&Q+N$+u^vMH!p2k#62U
za0yuc7o#-gnqrrmk1gQmXN0<9Z57T^Z7uV&Xym=u)3RHi?`L)x?7z)xrk3sHUo5;4
zMcsyb;~69d5pACD%Gi=E8R#6+a2P$oT!+q<4cpmTsrNj5tN}-HT}k>BgDBgEJ!bB`
z<wTvbL2oWoSH-P1ML@cW*f3I-g8_x|<wsyZf$0M(NO-m8vj~Z`l~0S*FY@>k$&oc!
zC+r~@79ch*SGxdsgHpg7*!z9Uw~~v>#MY3vl-xTv954m!5nb*aOZ-?d5|?WPWuZr8
z{-8fOJ>zs1uYUAce_M}}cNX1D5tyeFDyT=sz#hVIZuxo8_S>`CF5?gm?NWO`+Y&_d
zSlhxvpLQ1XS-imd?#9YQ75r%3=flS)*87EIqSLduP{_SW8K*LL1{5q%knv7cQF0io
zWflxfv*?3;QPQajiHQ!)71pz<$>C!!AhZ`5+=ScBhTBrY2Vj~;y`>J>1AWU3*3&Jw
zskTS235=~iSgwM{)&<LN+$>DjnKyG<55EMiP~t{>>Y^PF$Ri&qmTB&(xtFa~BatoK
zVODeR{&dcj(<0W-nxAV8TweV{mz^WLT@J}-Xit|V$b=K?0jl^6po%{Semd23BA!$T
zu$8)3PB6Uw@v_+dKVH@h^RYKeYuyswr|$cx@YOGflxE6Ix1+66wXxO++>>kzu)LNe
z(+(pS#X&@JJ_zjesxzmH&>WK-tNP5Cs8DsYQIFTc{>24Ij!2jM)-r|uri@;L?4;{<
z&PmsW`_Pp#r<J-=G90_Qy82|dnUJliK^D5TJh>xNQ63BmgzunJD<*ryEKJ$xglt18
zK4eb}^=AeP@ahg+VbLjj>3YLF*OzuJ$WDuTh8eJ%G2wweI>4=<<CFs23PCM;_vxL-
zM`DPIi|$ST!EW{tJ$FW$iY2K=5^8W#R0B@?65zC7FzV7pkxA0ngS7Wm`kd&Q=H0=)
zVwyzp?`%*DOR>Gcf$iyhm0@GwX~C-2=2bc2rf>^;;qHKqrRf~b1IYCb3;yrVk*^8+
z_?RCCUcUFX?)fV*X^f}{t!@ZgAp00f?iR|>{g#Bzh2@OirX~)iF&(#lGa86b^kTId
zB6BYVf^jb1Sim+e92UU@-}8Yfqzl6vBMO2FGA;SK?Pl9ly0Wl?Ioiky`TLDN9Dy&6
zovstJNVUu=om!x8iyIoQ+S~?LZipEB=bLouSeSQdoM+!tr+1vzDb5_EYa0(cpKCL9
z%A~a<aO}M;*lP_=AQ%z)jT6XAl&5pu7trw%fQ~;V^+k}M*_U??R8+6PE3Ow~u%#<E
zro^VBTF??EyB&eJkdz1zZx2Rmxap0i&Q5OuB{1N8|F2oKaON`|Btv(}Tjbm@jJ3hc
z0S)g3WW7$&ke_c#C`^|5aOc(dR4iqUM0sf>nv)+1h#yyv-i7|`<ObXV4GOl-S$E25
z#wlC?TB288YBMadAyW>`hJW=wE%P-p8kd`pW8Tl}AdR@n-Y{r!ilT-7I7M69<-x<p
zPDyvW2-f)1^&9lGv_2)@g>g?YQVH!*P_5L_JazqCU}QWb_G+?O-Wee7L?hVvM^%pT
z532O0yyG9Qtf~ch(+d=V5jTso+XtfCAwql4xS{O6fSFE^f@EHC9Xaz1xOved(rU-1
zUbcDxYP0V~(96@`Y=9XaEf(e&wHy0NB;?T0gXc^KvE$(Z7k|X*NcLD9J2bA2&#PP3
zLq^Nl$=hDC!<%gxOI5w3G+i>@a+wWl?#R8XGkp`Hi21duo{S8(aBdT?V%T!Xo8{S_
zv%0AK)55J7s^Z1xK1|G0@+KYMwm4;|`+J)mn%(GtafiZCcMd%^%!7=9n(2`bQ@^UL
zRyFN+FuoM<szO6Ebu`@2D*N$xz5Mq6&-ePPf4-3OI9eg8f#pZ2_H99MHBF-Gk^#<x
zY@Y_poPzU8cU4xF!5j-Sxc-=@KeKP>a(|)a>C!n9jJuhCW7MuC758fKr?qv@sbdva
zl+%@h%Uw1ev`_N&sfN$vN@q=-;!s}=OC4hAbDw-aZCGmD`m_!Gp+X^XSv`nT=|~xD
zSJ271a!diNJ_T^YDCHubltzJxK0V)D+{uJ!AlW%fN^&@ZDIVvE4`7Pt!JPmmr|G~K
zF6YNb&wmIwAfzuop*%jjo3{I2#~c(bC4ABH21V<X|4X}Pau>{dfL2J#cz;t|7(c4C
zr}qZci&O8BI5CoWMeW!5IPQ4j$l7zhvqX8Phj6d8><s8^`V^Dp1J5#gN6ZH?<xYSk
zo8Y)~&Tx2hHhpPLb&R=}D6e|Q*NIweolwK3a!pD_g&=%$68n_R`xMQUn}%{W=C}E@
zfxo`(rhs)T7=CSGJ<UU7{rH?STdhO@?EvB;W#MtRKZ<6l_#=$!JZjYxL~Y`i3xvn{
zfe>W(>`KN9n=i&+L0@lv;r^Fnqj*#B8iR~*(_Zrz`Ui(BnLeL8kh{ezWiF;rmc6+a
z$F5cM$(L?7EXr~8{$z(AXX_r-wl&ng)(n*hrYVGHHogUBSI%mQ_a}FcDU_~H<T|fe
zT2BqmCyvo+PgqiRhk;?@TAWH|&}~j(MsQcEy_RMM-5L(7HyAVjoFe5}pUEVFyJopy
z&taRqv2z#UW1}RlM$5;eZoNAkBy-W%lkTN3Vf@Ke@dYiIcJ8f~F`FB|ey8W^dGM`F
zZxMlszY{sY{Caoy1tGl_naj-)FwKH(1$-v-N-|wDkXJKtW}{Z??&sGZ5jwJ-2>T-e
z=zy|2B72u0lWW*|qOP8#`7~wx`>s8NS?@VuV|iE$=Zx(^%JolACbfNVqqJ$~aL9-A
zKw${XRi~B7;L}MB+^DOvFvV(rm#UnhL8tB7+tv#LJXe^NiuzM(?G`!}kV9+Mn8A(6
zF>Oq-Hn<DbUAO<j;m-7E_GZzWcku|z!Pb<$oPL%S4D;EUxr|g2m^irH>;+~lJ>f9_
zZQO2-Sv~J(k|Gl5bFsrxzEU1qqmN|<M8^a9`^N;hi)jON7O_E6i%GX>Tcb&EwA{y)
z{XGwYd7K`f-XzIDs~B+xeO4UU1Fj4no@J<6e136hguLbIP>-9JBYrA*@NFx0iC;?W
zy5`+;l|n%$$NqRjUi;}ySv*}K%~6sm6@tU$x^#1Fts><0yPLGZt!{U1);@jbtO2I5
zO0({=Y0I{3OuJ#JB{GH^S8CaDsllK)H@U9n`&i?8i|z~k>IM`4wFS8iEPW6(E6ehH
z1#j7w#)hd$ds_KGUq-$FY=wPoqVn?#{A(hsmJJ%Ml6hZMVIzjkKIv%s$*F<TOPCe!
zU1FxEIims5I)EE7s3(sgKp$TPV_&Oa0Bp5RqR~q$<R!h#atq_J4Yryp_B#xJL^sEo
z4y-bktGtiA#X0qc*CE1FKpLi_J%JvHy3zOPu+;T9^VLUm0y&$loS3p!qolckTxK)(
zqdO$~r67{l2xp{wn(0ilTjsjKFEQ)lPaH8#sNrxfKy2Mt%l3Pf;b+r!P0N#Rm)7NN
zg6HNGxEDGL8`sg6{=t01f(mTu>)AG)Jl5_3LxzPvQ=4h%RIYlvN?XC&{A9@~I?Y-y
zu`Zzk^iTLEU_1S8pd%$lFM2i)>f(LNeBh4#!oVeV4ZfhT#{LKO=jR);$EYE-JTU5E
z>-0R!Zm^FRt1W0}l5TGheibPBGgRco(_n~oI@CLYwD{Tyk+AU(Ql}Qwfn)Tg=pR*0
z`y%Ku*7cn8L5@(+JxOqc7Kqq_{O7tp3+U$Q9`jcc*UZ*qXHiT|$lvYwY-2DVB&!lD
zx!>84w`_0t|BJ*JPLxMFJA83tU`>9-+LyD28WNO`E8AFjSQ{&bH0$}KBM1N`gz50H
zlcA<Y%6ud`k-V1Iup1bg3<rnns#(`x#Jcp-#_YD9<f^y;#f7h~+p;L7yu;tl*Ea}D
zcMAm&O;o+QY}sqPF;dleeSt%4w@lmunTZ$xFy0ln>*_R~bF6XRRNFdLc=;LbHR^=W
zjl&uz0BBIA?b5HQ`q=XEHoeBTGrT9PPcYt}IpmZOA~srE%XFEP^^e(wJ9xbA=XIaJ
z{MMx|Mh_1#1QZo{Xlk6F#t0lYr>@zDpvNO`xnAA_U*bo>Yzu5jM&|!qXoxH?lNggw
za<G9t5P^vFXvVdyayf7>h^5XQIXVAZmUcF3XUzf@L=r8c86hw7DSOhg%czBDATc}@
z;^{DsvQJ3^T}kl*qRtJ^c+5B;bZcHA9NLojtkNvn4H1nNLb1Jen`=#O$R44l@uL=b
zID{L~M!_VfwmdoScV6!tFU253!7a))TJG~aqzV1yr|X8wT@p=JXc}|8UDkqSppZ*o
z-+!Qm$igkuCZijWjN5Lq{<S3t%!U|@9}!4=sE%3%<I!Z>AJJk4^<9nrR`H4%YFt!8
z+w8S<*PmnwfrFvG6Tt})MYxZQ+@9HM=E$|~Bt}^7a9M9UvZ$^rA%;KbvGy*aoT1wD
z8t~e$<@9i2r{(v0)q7iaAR)@T_`MGO>#~j6eHuc$oi~VWgoa@7RmVjR#FMTIqDwEy
zCe}_UUU4@T6>?a3*Qm)`OO>q3y>Vf=ZH3#WYZbX}7|4M?U*Z29=L?WdzE{2<-jAW}
z04Dk$3CE)_=*b`HW`t=Uho5ipcXf&iA*Co>7%G>6L9nH+TN6gyCd-jJa6Lb&dwI>G
zyB~{VuiNsdP!ko3xY)t-(Xhe-9_n(J_0W2b@(0$|dm%}ML)Rn&Gj^xu5Y53AZrk;5
zm}B%wX&?#OxvSleE?E|~zy!J+*+}EBZG1RJPfD?6s2<t8XY5sWV_ZF5{(mbn8fmus
z(w8WD9bvw1>B>S<#4jr(vF-9=FDa_~0@M?vA0wnU)TXYheR|iyk0D%1&jABH2+Trh
zG@qrY06JrKlG28fWAnB>rgt8DVJ^-aj}m`&o(lcU0Ug^?f<nc2gYGx-J0(<$^r_b}
z?bp#C6o+TS5BPEK0DinY)-yhEgr6DJ%TGd-SBp?FdW&z@Rc5Lxd{F}H@rXptLzaIA
zYM^xhqtLOO=0|MtWC2R)<wjLR)t6ziM#3$q;NOAxKOsz5C%R{yi`aOc8rZul6+vew
zA69wH>QvONQ394YKk4946hFg<@t=neu(XxiQq_~=ODC|F{rja8Obts0Eqd;wie1#X
z00a*4$@^TT=KW81e=$Rg=Z?=30TZ82iLU|POy>;DbpMUWyik?Eyxc!O;bCG>muvE=
z7*;6UEO$G6=ru~9z0rSadr6dDWc`;~V~xZE9I$d?cY|2<f;zCE)bOTiNpPfgoEGDA
zdKo!=;|_;l!ZX`b<5nGalFt`Uha9!JeehFO$?ym?k2U@$!V(9Q)J?J;Hr7#o2%y^t
zL+z6G-$ba+T)ktIo|vF!3DKhcpINf!K$$JQKL3ym&lY{F{VUlbFo>F1ua*R?E{R5M
ze-~~4(;YLw6>SD=iu)zS<S#8L0Q1dohq3JE>RbN}SSZU8rk*-nT)<N?2^Z6Eg028I
zS3@C5;Xc%LcBDAhzV<4}kg%Ue!UZ)phhv-jaAZ;C9NQoCU)d4BKmn&AoI@`h@A!)W
zj=$gF#Du!ZTh6npJS?yrUa<44KrK(zGc!jy2F>-HZCLW>@qA81avxk>t&bThNA>yI
z9Zyj50Lf}`EQ;1>jE!>mk+$j3qej8+&jZ5ho(I4mi$mWW8UD#Np86MD<Ntf~$e{`Q
zSUGTFGXpagEGl`9DaU!TX+>St@K`pxTvSptimMat%;-<Sp`}J&h77>xZ?3l*ezAbl
ztOd80j8}a)Y_R7r?6`nkZsD@7V=)lvPW`;@koOK$@w6;`1B3g+QZXT>M$zoAi0K4W
z0Y{$ubb{C^5A!0|rP%`7Z)*<Fq5M$P4RvDjYuB1ZH#oOO>x*ZcSsH|{R30|7wm2LW
zJZ2X4im(q9xSLgY1}J^?DWrOg7Tem}#_m!0XS7U-cj+pd7)9(SG`ZhNX!CjOapn2y
zP<#{A%@eK%I{x4fUyt6?vV>SI*CrZ_*N-)RQNb3Ki<qw7aKgQCn3phgsY^I5fu%T3
zQ+PVBw7eLg-&R_|nS{$9Z2W?O_|eOk(}!K34=!DpzevNIQCQuUW7Y0gD4p!@Q2Y7C
zvBby0Xo;$tW9>`a?^hrI*<YPfsT2@ss#d=iCmWM5sJPE>Jm6e65N^t0h-M!obS(Wd
z8H*2B?NIw9Ja9G|{jJ;~2j>2Fww7y4F|OCP?$iTnug1d@7i3wn+qUCumhDY{6FF<@
z>Q|uLU!ALmvd>1_`})y}>ePjbbkbsN7nr%78x~t&LgSN>)H40NbXVkKgeSX=BMY~^
z=Xw#S98AZCD0erfdWqV3_U+yrIlF3kN9A?Qu#r9Hr#8^Lw};(Y9+f#fG2;2c8ap4I
z*reS3ehlKik|;cc4CoVKhiCgnT}%eU*~7TSOyRbT4|!!rue#xnP5k*cX5XWvwWo4e
z;_RHS#8dtt81(-I!2qnwGVq*-z(Oq3obX%uJvxji5A5p+RblT7?{3G{O6d=&Le#od
zmV6&@kH30sh>H&}svDs^riLz~uJVDuJ27@OJl*$smlVBAOHQvM&RM5PXv5WJt~ME4
zO9_FQX7W{B#de`F;k$S~h5=_3md~LuHu$DJ@yX{qV9AAKai)X~%8>IEJxl2I7?bm8
zybdrvzB8j1%Rx8hQ=zBh)E;FKaBLw60%wzhr`~Kn4x&fW<AmddDUaI$R{X@q0iMBe
z%0H0D>HitzVY0th=~1e^iXEad4}|j9EOg@u#RTcVkGb~q)HAkIfp_{p`R!2~Kf)a?
zp2~8MC<jfBbOm-#6P1+DQLIGoRD={*uZ|oW_baT{M5n8Ysm8c%6CsAnrBu~R=2W54
zs*FOVA-*na<~E(0mdLAQLl@9J8L)En#84@Q4@E!i1ex|J5EJMs6)NO~vcn<Hi5Z$m
z6~m?o4s(q{_;PX#hmZSi?^35~d`qDXs`L(Iy8MwG|M$B<GexkGx^ZnJ!jIL1UTe^s
z2a7ZAQOnBGl&|xuXef2S&~FV}rt8<pG}pRq3~=7_ArF2NJoK(v6qh|!AyTptQern7
z4#AoCPKJFl$G5}Lm?9ZD7EL)~3N|x~LgOWQu$+WM7qUs(AMP1~Urs@5|5v6mwm3SG
zWjhwdN%F0+08(ogRG4n}+GyNaJTco_Y~!70Jb2Bl+%4|TtM<gMVUC;LL)ekQPuUeZ
z-6N94rBDZ(U6BpDkkE7$wbJg=b!S9e$AufjPJW!#hDNb$;3B2Gf*d}MeN|znhSCbV
zj%HawVyi1O>fqTIze1?>{7HehfVkF`<C(s)8vJ5>z{a%Z`&aKq9;fATE;tR}-lchr
zv2KCSdG@Q>{>~D_6xYZ5H1&ro+}hCJ-MuLGM3;IF6)%2?(Cudsc6_uvQE%igAF-3<
zOSkc$hqt;CC>)VfU_HXeGC}*7dXWX@3-1hN{Tmu{E_Vo=5rl2fJJi*M)(@snC#&I0
z?2*3^3*vKyW%*vr1&FeCg=^}-Ml%O^^>>j*<6lTP!thD9(U0b3=Elv%ol1CuX{c$g
zJ5CgA1v!e!T7TMt+bvL#6Ul!*ewyMvHBlzu=7Wu5vGARu5f^AI65<|gJ8vD^i|I(r
z%+TH_&2KUWHMTb7{>=ui>`_Hj^#}j!amr&Z>lYwzwOM>9ahKy!C;6t9XQ%lR_1~D;
z$l-QZ$6DY<@EWJ77|whs#A2bqY2~Vk12%K^%yIz8<ET^GjTPTFzBi;kB_HqF?oYIq
zOHotZy?Z^boNe{qz>o;T&F1d12{HYRm_buY7R7CHDv?<`L~L*{BcuuYuxqD6Bde^;
zKgwQ%$VNEqqY>KUR?t;^B~P)E^G8^nCpHc?%4{OvPu6WdZd3s_b5ce!g@=azEC}fU
z>lRcsG1_DwAoBkfKy1(TSU*Un#;x+p;?0aisp~#2MXF-OdFvEFH@;My`d9>e9Wozj
zQFc$zuB?7w>PHF>a1~LZ8~=>O)+noXDQh=R{A5cfOTZ=s{IY{a`}Bgsmv7Aqz2|Sv
z?*=sHgd=e55?-Q|1w*1wIOBHlb@9m)cdTjgPgSuo2S2BZ{lGbw#(*8bimjzIL~axp
zn~p{*PP`<OyD=|lZ^1~jr<QFW*xxsJN!CJOd96p9C=c*!>iEQh-+tjz>QJ!GLp|R&
zbV-(mp%;fwTi!R5G|*BfX=tvCi#E>DKuCFsO}1LW!o{9(eb2vXeXb%m9E#Ht6Lbq%
zI~Q_wtImgu%(A9-=Y)l%Dz#C^3OZ(GXy?|>8aaQ>wn=iK!>o<Dl|7&PCB=+e;I)4R
z@yJpPS=K@i_!@Nm%*xPOCgtU!DW=nwaHW7CnKZIzF|oo?^d+k`_uyCFA3Gp0<C5_j
zNW8Xo7F*o>AR=4KenuGu7Iu92GQ++4O7)86P}%6-gY-M)Amf-k!qupnxN9v&H*8^0
zxj=n1v9(bYKvut+G!zhUe}Fj8_hzZ8^DbCcw%xW+14rEldnOt=mxkI_o!ccE2a76n
zC3JX75n|hqbS`i|0(b0P%?^kKnih7JWCl0RXli3)Le5T8RbL&TN|5>35xY*qARQy@
zG(JNRP;V5A>mE?qwbFh;Q+4AetV5u)WO;&BI#Y&&XNuo$R$t)RVw^^m!ePKq2a^#t
z)mrg3-61ev&gcx^8N&060`4-%rak|rE(?OP!9N=cMgZ{0dLY!k-(*?+Zj<#vq0I4w
zlfkzmczTugB!%@*YjHjp{r5(NUEW%m2o8QrPD;^aVV8kv$DT;lMswSkZPrj4^sR1?
zsfa_#XLwDm%g1&kr^+3S9_;OGHI5E~HLEW(v+cWj4Rg@VVw~^1ogLsl(5@g9y<6MB
zLh)_+dS)9#q4hT^VB+~v>5uFrt(&uZNL`&szpcOh3Z$lCldFQe6exhpvGRsszSiAj
zIHbT3k6@Y4{B4=rDhKM8vh`jVEP9tNI`e-3z&Z>?Tzy4C8AibxR$D$O<gKmxQ{U%8
zmO0yu9o0n#@H`=Z<L@*<iZ|mF_f}5Dgb2jKTr;$VyQv_0(VLS>HiL5khA%4?w==d3
z`cBQ4zSq-UFy(}H?M(LYSq`}_e-2TfeBVu}Lr3E+C@&@;-6WDMnIg_x=F#;YN0Uvr
z6_Md0=HNcx$I~{`WbeNv(vu#!vs`}%mDEaX%<Su;`j(Q@!kNlKN30rdcubh5XIZ)b
z0%STGNbg{E(p}P=4r%<Uefg(T3#82lO~Y;32xL4W{~vNzKw3+0Yr3`18b$pUYXq<x
zb~c4C0dJH;G0=>!`?CY|_G-$zKHNwp5V&}xS5*AIbV*UyMDk^yWZ+f7gZ=^ixgynX
z*Yy21rpjv(4V)buJ2O%<Yl~tM_sZRaVQ#U!r@IRw^5M8aK7R?CDLMhyG67!Oo{QmJ
zHW7G_K?b3Q3jro9GqRDhyktXlH&MntbVJNhbymyHZ(umSP+(xH_1J_r!&JI#!$c0T
zak`SI%ux}(hJh>zluGXRfHi-&LAv<G4F*1*u-VS06BL7CpHw(Cb`ZjgE#)d=U0%+W
zZ|z(PR+t}s&ued>gK3uc4f~tT%N#O-Xrc0#sPbiemc-T&lcln`+og@xO{5eF#=T!m
z)nM=Q6bdqX&DTu6agJ>4ap>&bEsnc?5B*Z8Yd$nK87C<j_S)fVHe%!P1wZA=`CW8S
zV$MRH{U72S)kQ!70}k)zh~f8hjKnD$6~dPHt~{tEw!VMD<y&x&)ZK`Xtc&oFW$)-H
z;V;s87cNq=KYj9R>e!=TU&XNZ{2N5wi*%2@WnnMT!y|Wrua>P&t8~F(rX$h3XIuL4
zY*Dpye4K5^G$YXmoqk|73v7WaLEZrty@oaW6bY*r&wBX!ULa?8(-uaGdvPoI%1;!%
z@+=!EAUEWSmd?o#tSI-$2U-`3&6#IiK!qSPM~7l@Z*_%mrnj_|%eH}G4E+fY<ScH&
zzNB+6MR(KnGo*X0FQH-r!7?^A;AG>Z6U?`sOBSqFwOW~~x120+X>NU<r&t#f`nmZu
znO%FKsf&-<aE12#`E~`7Cslb|G+XDNQ6AqCJtXuE+%@>{p{Lnh0`rT$6{kiw@a8kh
z?ED;v5mbuW>O@ib*0B;Ru3WN%Lh=qu)KQw%NQ2|gf+l#Z7j5<kG!k{VKw=74iGzTv
zi<3aa=<6`q-<Wa!q@r)6>!1n(5)BCE=L_w^G^u%RW{(A;=tD3_vF${q_zNqcfn*JK
zu}!;okDi>fL=L^4*EziwTF+TprzJMk9$+wHBQH6ilDYY$&Wx)<1Fd|^d5n}#1}?Yp
zK9c%Xk>u^HrIn%5n@sL|J2BW4!Xdopt9_ER@s6TR@^SaOtZ~YaSrOOGPg{vYep&D}
zysttbQ7(+LA_^Mwx#+wetlAn~zz$ZFDx$(!RfHA2PSTtBQ$Z$qDq5gBc#7nz{C3Mu
z-@-K4R|8;>dq1`yR_zylt(OVG#LO%eG35M$mfx|ZFTp%gC_z2=yrFvwNplSf7jBRl
zALxuPTEPVSMaz1Lv@>y%v@?T@W79a5ZPPKl1Fa@gr*z%KPo7R#wTq)y|KJp;=7-#x
zvrn}9LdsfDGxr!07|1j_xQL!}BbU^ps1#CRDFCjFA1(lHMZ8S`ID;p5zbZ5A_t!$6
zznhPst|!)_3zH&V#o!qemr}cPV^GAsx8$L^5>hg6My1}y_6-h!wX8$N+79uNk#(JR
zv$f-oJf}dd(j3D(+}sB`dggG8V-9T~jbzxNOiw!LhA0Wg2Nl=m&0t<t^lW>X^_HmP
z^}5yhl?3%`Q1Ukg7X51W^L-{3-SIB+sWcHUmTu}z-U2%c-}PF!)@Qa=Xfq?qL798%
z>dD(DpGVk-)Yj767G36CxdD1aV(so1xwgI8h998i&hBs_p<yU>ABn5W#vChL+d1J~
z&$WjOSVvAE7RN;?=SOT+^=D)dPA<(6<?#(V`q<7o!f8)xL&uW3g^2a$yPtJO4~}o6
zsUsvnE2ZH@>i(JS3h&#PSh~fJp_=g0zWN9rWUoVF^wWJ1;xSm<VN%7E{s@Nth7MEs
zW}<tf1uPsmbT`)f)9`T4Tto)gV!$N-E;v{IHGg81+cEw2S@W~q=z=fV2#Xc@!mW{L
zi#J@50~^Q1V!Q<dEYvA3w&E?vBbEQ#+#+p?9S_vNNgFZ4rMZ3o@C07iPhUylpz*1`
zH`u!+TKpZur{3)VToi~W%A~HljqqhhoM;-9qmxo^12fF*7diL@M7JhSwcc*=RE0lY
zA+%Y+%ks`0G={g+`i3{1Gpru2t@OQYUA9m8q_Rs6Sk-EOn2ge;w4Cy#S3Ry<%i)n1
zhzbXBy;XwVea%p+OpmUfsX%Y648Uyp_IyonW_kJ*_v(=X^Zo?1NMSuNtTmdy1?}dT
zj)<U`p2aZ<>^Kezn-yOt><j#glEK>}0!S+0-VDVM^K%7k>X(I-Mt0uX+0f8j=!S}|
zOEENueC9lLydUn_L5y$b-6x{lV7da?3*r93d&PWG)vNC(FT|4}4-w@p^;eZ9mmu|a
z<vFg#d#q>lQ6$LqM?B^<>3nX-ZL?XH(m(Ub6JkU+8P#M{DHPqVw{TEP#7FTSNErh2
zQN-xUZD2-EGy=Z4-*C{$^%H80J+(0Dc-U94Fmf%5hnU-_;r(^6Z2v^*(2^eW+sEGk
zY_=|DUhUKvLpczb8;j|=uPK5JIb0Qe&ebzg6?fCCHx>q2C3L8-#WqF9du1d(zKfk}
z=X}uns5SL*LmJFCyL)}Eb8sgji(05F7dO^iM>GYwvi|%@_PihGw*q8lymB7i8%LY1
zR{YReWZ>(-a0O&(lxe(}KqB#BxMGHG{Gxr=oO`_;sl_dn62W{eGdzqdyUfI2q-8}^
zJ#U&B%8>2#n14qfH<j=p6hZq6QN1LF-9ds<#w-CT6B*BE)ng$CduaqV>$Y;6jP84W
zQP*XT-tT0-z>U8?8NC2b!l}HmfqR3)f)p*h(+ZkRDUW%RSZP}A9z5(%bY?_0rN&s6
z#4=!P<=<`nisUyGKNPVyjc?-7_zhk$Tkn30|IY;5Q;DdEVvPWm6~=*8=C#<7Aa&vJ
z8||F$4{$Z_w0XgQ43V3A=iZ0T@o!{uArP4QwbG3_f52Zl7HZ_%B#5V^tR~08ZXm0v
z?UKiOMiPSG)~G9|*J6;_fon8f_e2yvKYw+HsD!eP!QJcz@-=jIIGTTOK%Sz-9*MbB
zJUP3a3++B-GL-hXL$8nT8fec2RvOZBCpU1l5j^QEQTb!WU6bI&d0v|m9Bf(>zC@H4
z!)8UQAWlQsZ#AE=U>QwpY&i={49Qfuo`iOeZ+_TYY#{%zKgk;Z%A%ka{Cq>jm+oZ|
z9GG~dqkiaivRaa~>hAm2pVz;Y`HMe#bfLdoAknD=a~pu#lc=hns_h<b2<EKVxwRQ=
zeU}}$=49ng)(I#O%u@!Ruls^ylWEeo-okU_u*%uJu3`^+^mg>}R17UyvVQU9Am!<4
zcwBp;$6&V2GUnxgon)DfYK#`?0hBnC_v4941*!bua{KH8kQ0B`iqoJ7p0~?J;;2nD
zFecW%Q4#=drD!p?99JQ?$JSSa>zmJ|daUPOow}bGF_D=bdlOc%BZ%R{OHc%M?r1G>
zA(xJB(2X0eTt?evFd1AA&Eo(g{65dUWGgXl=KY~p51!XU{OECDWCTlTP8O*beR~a_
z_+G;O8GtQW+<R(k8GY~i5LmZfJ_<cIuKU=y^CD&D=o9XPeBxpM16t~mw@8vbEoTxZ
z$h;S5MT+lYi>-mXVQDCk*chs%sBWsISru{UUj6whE4~h3)tk3cq+dA%iw<zQp&|*&
z{q?gn_%W~j|CfsWC*0lUt=sgO0&Kdb$8UY}eY@8r%e&A}CctFZYi(>t>P>v5QWPoF
zyRm^^NFVhu^d?c>n+^OERxjL4!D=QG_BDN_7Dy8K(Cw`f%h{qqe#`&T$VP=|^#`?A
z2Tr?-??`^8PmVHyqJ;OrtNAwkdMZtjj6!jIjIZ#=bBX$g|BT6PtPg6SxXZp#uk_L1
zTM4{u_MUHzzZFV%iFud(!8!LEk2Ha~mKiEPczBp`A}uV)YcMOXsrV<eaw7LrDEN+W
z$tXe?2F)-3)#Bh=93nKi{^P~9uO5BU=ZRlza9nTX*d=)7{Q$JbxRsXciT-e{bCNXO
zp0$h|1urpoIZiN79y$1XaSi+^2M;wNQC{myH9*h+>);Ii4IOfFPWO*mEeRi|sDPTQ
z{{{*+{S@{1Lz$7BU%=9|fc|V7S0i0crhi~t`ET?cTxbH1<J)ZoCIIMY@6T-Rihu)9
zP|XvXSe>t&A;2K7D*%bhzhLr>1$;ICm0NSb?)USTy-WIuJ!CBpCDFYG%AMzpqp&m9
zC!$u1PD#_Fs^FiZYngQOtmxhgk3N;zlp7Cv_Ehd58jmOB?~_cI9*NV)zFs?iv69j_
z*!J`VPGXQCPVoW@h*d#s6~^ZV@Mt*a6z&S5VEP5C=PLX6o#qFNi18*K@HRrP)j!;y
z7U}pcedzC}MZTviCXAo3uHG_8966z$>n`t~v27I%%!{a%3tk|uV{Un#1{s&%q~q}R
zu1L@<*n}7n#T;rHR+t5C+T2=3mknoBWRW79N_3=38b~m<_uo4GvNflk{ZXS*YXcCo
zmq3mB>8B6uSg&Qw-wSM#;|SDOxG6`UY87CwV*TdoH|K-+zKFmNZ&1qy680J2$p9ll
z72-5gB9FL~_%)F>^PkFpnly-M_;ko=(>?5eqLoj(7Zy1|;&4Zd4SvP=d{Uxp=_*Rf
z?I<dEYuCGy%o%2x%$d7g!n-4gcBY%*<}7PxVwwEqk4ljI(HkUP6>CcSH?2J&npfyk
z`qwX~YG7ACmBSmbv98>ErJt<E?tKP)K{xy06^4@$GzAQY_lT~=ty$Waxoo<fl_W5C
z9fd`Y36Z$4{G++1|9AQP@5dEh7uzUquqK*?D(Lo0U4O|F1x)H=4{9n6WT7=qcFlSI
zBJO>c)mOK!-|x=$*P#4p^%a9TOKdzw(*Dm6=#VXY96K1+G3zhr^tn2!2C6?GO@(tE
zFhj5VQz-E6=h3RS^?+09JX5cA4G&p91pN+V`O_HBBv?VlrO4za;lPWKa$~1aF#{>s
z^FBDuLDPhN(kRs<Ga3))yVbQh>o<=q`ZxQPA9yi6AL0Yk62Psl;#umMjwKEjg@lyx
z+F&WX5fU^@K_@JILrvO;SA0cTS!F;Em7pYqHp7#e#j=0$1)yNy`mo@=fYTvwjg+`i
zr|AT*APjMuV7O(x$6sy%EC!Tmru{b#=vf<-c0#JXa2KVqOtkvlCUeJ<zK$H<yjVR(
zL9P=;2w)w(S}@jEgTVw!6J_0|D3BDaD5;5SiuZ?SBtoY28(9luj$sBO*t&m}o+FGP
zfehKQ#PJXtS(Yq?y><lPnep&Z(eG;RZTIi#1M@%vn3eFi>g+AFj2*DEJl6Y3x15^0
zkW)3QOg*X;+AW7r>sAx^Nw#FpUsvMS1`Z2W0Re%o3x2Enrlf{{V}$MJZ}wF>4&{%1
zT$;BfmY?ZHWg>><&C?@$W+XviZf1c(go2V5NUZhZx|yG?tDWENXel~QbwF*`MyOhd
zoE|FXQP29dr1<#$$)0&6u9>vT0y?+A(N4U&g*0-#h;d)c+Sx6M98dD{yTY38@n-wy
zv>W?KX{kLNO+8?|j>N$#$~N1?1sq4>24F5mTos1Uor7M{u>V?~+gN_BVd*X%JJ_Qy
zmLP%UXaoNLT)Y1BCScilaTEXWH@;!YF?1e#|E;iH>_+(5P9SU_&Qbk7ocrahe!5WP
zbF0%okXV=02$Tbbr|<<cP)9Nft!$A<sml~aN0oc1XEq;PPFYDAV}j0f3#hNuWlnt-
zD!f{6cj=%eea0g;K01J<!4z3vo~h**x1ZB?uX;AaG!xxQ<qUDd46ut|y^v2bT^vSj
zS%5pztS|4e1-fN`nveRI^8Xnq{}R(Ox$bpUJkVOb0MVIiVaoUNCBH8K74bc4`X}cP
z?q=gFURhvVv8IiZ>)ZE{Dg9R8_~%qM#?huEq#&MtMWN6Z9~`5IMXbve1yAUsSDAtS
z*;k$m1_<ip0$M+qCwst|zRU)it3`QG(9ihdA$I!*kAkTe0d*8`T<nSN^#a3O1GFIt
zmwSclGMLda#CbCygGB>GpA;YvGPOmj!@T{L<+~9N9rZGLRopwW9m)q>Hg*j+JYzO$
zKi&hE4e@Y<xQlQ-0(8x#Mok{>Zv4GVk`=-nN>3sg{UWrO|2)ot*VInca+B^)?A-cY
z+2wC0cD@amY~6KZ337Ydv%Wv9=LSYN5`vQlDUH)1Ft3iXoD!n^#o&qMDj^bl;f6t&
z`KZc*(T%;olA|qfD1zij-g2O?-~9NU(YprlQtDQn2h$qvqX~QlJJ9U+^CV5#EV~R0
zPYMo%^*)sG{?$9kTh+8QKdjDy*`3soOdeQ_Ye{SacJ`*z_;==U{HTu~4elM@f(1+{
z_d(nJZI?;QhIvm~2;ZFf`u;vp|23Dv<sf)kXqkyTn@-X;`W&y>k353>6#BtaY-6(K
zJ$-wb3fH6}SZp5qgurZJV?#QD^V`uigC0;f;2KE^1s!O|H?t2CzBoV+%TmLldBW}c
z<PKx<{QTeiYQgXSs3L$%G@y7_i`mg!9<OBtOR$4s@~dHq^{`N43ORU%TTBSIfgD$3
zKbSNCo~v3j-0pT{0u+vIuutYNH<&LOrYk-W#&c>FuhymONxh#3!zvdkb=2C;7zAyl
zmnR#c1;<Xh-np)v#wKfFatUuIKcC5ngmXEJ1mx}4nD_ryzGVgzC}ZDrUKMi5zb0h|
zw=S^1P2kztqkp3`@_=AIhj9h%Iv1bA8*ymp2b}+bhV=`6o}Dh~Z9ExBlp}dIa|r=d
zIDCre<=u0fU*lR{|8_zJY2ahumg}U67*3mK&jl9(LZeL|y5RH>0ygVNgPNA9hJwd8
zpyWe3R$I9HU>wu{>p#zJ*l=8ZbA=E;tZ8`Lym@GFBKc8l>?&9QAk%#E-zurhz2b(~
z*$;LB5am%cbFwN!V>yV3jlyjP@|_CVq7Zj@Gl$NvMBOxy06u`&JWy;7T#pgcKV6R}
zi1N<AF#>AK)a?tt>W47zQ+v)FkPS7`cr7{!INl!j2#&uBw03^=R@ccAKda(Z!R-RZ
z!J*n^M0s5VT7Hzr0zw{8G>2?~&Gc^AHQUU@$gKV1K>KeMhb!RbvnMIW1qQgIDoYs=
z<CBk;<`R-cA8UuXp8!td9nH@GGu)+Y0e~ThMUh2w)~@WXoxxz6?DFThViicY7sN<A
zn^Al6l|#vuD&Yg;sb|MQy^!bseuQfK3#$TH_D+WFX7VwZs54Lia@GWx2)Ky?8-Cd~
z2D)3f+sxh(<=LS-g6Ric9)Ka0JhOIbj?&c!c*&eaC*!5rK;CUhq~PTR&bBn%aBM{B
zYlI5_{4KKYg`Mf2Tcka-ZV@xyqWHfi7@tio1959X_HPEh^*`-*S7$-Pvfo`@oMj+i
z9GS%!zE1Wiu#V1E*n2+rnwh%Q?(LM|hWo-$#p49Gxqf{OaP`<Y^L`E>?2ZGC2B?`{
zgc?krm(}onu^yd|-T$HOt;4EZxAxH`f{K_RARr+rt)w(6oze{|-3`)Upn!Bqx8$Tl
zS_SE@DHE6|U6Y0hOyWEf1oz%&eZO<Qz0Ub#T^GyCc;DxJ#u)b)_Zas$&1?U{sFX+N
z2mncpfb0C=@{7QvbLW#n<Y&7cj5Lu0i&aW|Y2iJb#Df}VGnlgn*uVzSQx`D2Y^Ua?
zQ8L2~X1@VVndE-oFlsn~V^@}lZyCR=t*E1ofdX&bUGD?Bha-KnH6sJea|Ky`=n9t?
zqSbSsKhpc4d{i&A<b8!2tQb@ej|jI5%fgt#jl7pl5+bfxsV_)W*(ehkakZ6-zN1cl
zqU){KwfVRZ(le*74eB7MK@*AN+KK>LA_$~YH{{PD-pVpa6|K{W@$09*P`_+K73Pwk
z>^&4tlk$3j{9)4`29u%>BUWj1P;0?PQE(H?1mmSR-V5*-oK#pshSBM;>^lrt^t+(Y
zez{zVI4;YG5nhh#IG!yyY3UP0kp{oXB72X{fJ54YJweN}NKvGBI_UQx?Y`6ToL^4=
ze@ul=AGDTG>(#llnQy;a-;0|}pFQu9?z&}9I;)B*9?(0UY^VGOlkFX(I+snx=h&5;
ztcLM6YS^D2n|m=Z_gg(p(V=>?J6+#&|8~?B+yOqrzIQW(&!SoN7?1}WEoz1cTKP>k
zF_xO2FL(fh#sLNu?Nywd=!uXEBj74Hcx*tZz89O-^Q!4kA(3;IPHxEgyEp`g$*LOd
zfF+JHP9l0ih76K}bguQL=|-OiQ~%7e`Qd1W&S|?fWuwNh+}cdJ8x}3*dW@Uo{t0f%
zR$3^X==-cT_I@M?@j!NarPDT#JAU#21L2~k76sD$*@uY>GAB%1dKJ?XbPeZ-3qY$k
z7_c3-^~F2m8b74}c8(c<$<xWQZBU-CD6eT{QZ0)En=}-pqFSOnP}`E>TGoZCwf`}}
z7f2H5bKX~~tRyF{*$h^bvNT@bT?C(#xy>yJ+7j-bPDJZfa@IM4ECgLU4z2V6UFw|$
zeZ-_HHRk#MpF~5YOzlC%zQU2nn-yCOW}NYp%*l>~Bry3UM;6qcjD-^LodXAlWVYk|
zID(oCID)#gocY;IocWL!I$!qZ1Expj1M)oc0s)dhMc>mBvHFa>JQ&%TThR)<Z_)ol
z@c~>aH!%Dwec%d>>%sBbQy_DzsnA%B1u6k9t3HBu!x?HZi*-l8v|Q3xo~Tlsbaw{1
z<D;zytV^M=*O}C^irhx<##m0amoyQYj0rJom4<^s&$ceGKtgm8+&`ef!DiTZ#lGLE
zf;+l1j=Swh$FYpRXYzS#>#h<pCl8xAvS@CR5uKm|b&dbUOu>I7=%3_LfoWaEU$wl9
zzh3Dz`rUhb3v|4529<(p1GnVndthYCZoFWW-B)}uGydqAqX?AV&xm(<66GkkjAyiS
zZnbNb#Jl}WASU%R^aK{v1d(sZ&6yW|myHB65ba4`%h4EEm!&|DRL6tK#S#RJJABN|
zNy`qMoEN2yhoQ;LA1P1XHU8k%%UT`UK{rV`92pa8RGPgVt~f$B%}<BI<v~+I9g|on
zWRD0mghVj9nPolW5?9UBW{K?1dqHM>=&T1;z|{^IG4+d}J<scZ;(25e(EVWyzUaF}
zM`TKl;))pp6^va!)PcZ6T_zaFVrH-JDk6=9P-6cimGnK^i1gRFC%<EmxwiGMZ*Mci
zD|8iehYVGF^B!2;YCHt}mqhmq>z95Mjor4}zkM>!2d4dMb6#lazXnS-q`P&;j)CWh
z_+kXTy+1#yBS5iOq`YiC=Lix)c70Ue6CX;P9!h{lAw+op1cfYsK!c~$#+3?QY}3;#
z82qoE*#Duxg$7Jx$=a3cia?$MtqibUKduT>69w8SMG#fQ9r_!4#0YtzgJ+%|ToX+X
z^0J=(asZk-{>3J1ti`sI<PVm<((<CYNPPy%f8-oN9w{S3KLQk9ruxAL0VO3(q`>{z
zvK50)R+2mSAxTy6UUGmW(hBsO3rd2ZA#(QL_!9bF<ex$X;q_yQm>^Kph0c7aR6*aD
zaGHM*sbmsf;+Px_<rK%iv`cwE`|+e3lHTIrchT+&3HOB=c|E3aIlZY$7Nv`0-@|{`
z#iEFz%HTiMBK5+OdqLH|K(<p1*gt`1^?*JA!+^Dz`*5gk^D|Ic_zf5+ke5$*oKd%6
z8^c~SIbjvy&)h<TzYy9jNfv6USm~>+m`(0!wSI}a_xT%b2MHgZGty-b{9#W{82%{^
z`{EVG801C)*608t&oSN-NL(EcJ25GqgH%%t!0rwtUmD1_O-F1ieh&v(s}>gL1XA=i
zAg5bVjzKF-ONN(j(Yw4Fu=dKHVhxesUK(SRo;i^BOhA&H?cN3zdi9gi{19bEs1FAJ
z>;e(*Kf1Y}1CB=dI*EjY@_O2AK+S<U@*|M%_OlfjQb2qEBT~)PUPX=7wc;;zxOe8s
z3iZwd(!ji@9Oo8OJX*`^?r<i4h3{@OKGS95(@XIeh8J4t15EE(Wy=t(q6F`TL&97T
zQ(-cQxmn8KIkD^?ue23Y$adqWZVuB%nzztI?!}*NZS2uQkJ$I-NBm1syjkEU%b`8_
zx7?n#mkOZrt;O)*K;nBi=mB{EZ&Em@yJUYv3XHGZVxPC!Nx9q(hht7#tLtHXp8gJs
zsJ;zKzCUq0?e!mi;~3C^-infyG?{wWMEk9p^Zz8XRBG1QpN0EjXjVwrp#Xq@jy#M*
zyZ!nn+4sN%(@I&G%Dwh)#3TB#OXG3+TaFexjzeq24oUsLF$f`7C%F+zXaW3)$0Gjh
zdj93p@tgjRal39ieK=0{Eb7iVxDa(S&rnH-c%EYGSdezuA}PXR>Za^H&c#+5&gFRg
z(?2djc*30l4&_7z#GSD25$yyx#<)gJ;p&|Y6-C54d)`?6$I_<+hsH63YFC{fWf5~n
z>CP4xbT^idm;?Pa!v_CO#ls~w#mr7og4P_YMT41Dmt#ExPrWylN7u43U<)br*Ey~8
ztYi&-(X~$pI1{KJsFQ>)pF<sP@eYNtMM`NtQM%Y2StiY;;Xz8`nc!G+Az@ZI-;Cb$
z2STd(7SdvvE~&m+xEwN0uQi0Q$@~BPGqvVs4cg@QBea`8iS<4UG|yGn*F_OAj(ztY
zx|Y%u=5iD+-{fUX-nLUdB8}e@l^wyn#jE>bH&3fdQt&nhbfN#f-WR|VAjj{5jrYo8
z=vM_kz#N*aQ)m-ax->3)`AyWq?9ZfkQ_ZcpQ_<vJk?{u?r@K8|y;9UW<NgRF3EQ2_
zHd@-PPcXS&-tkCEo>iHu(*UAhF=79u=+~#9>YeV|aJ9R6zwTI{vqa5WIoxs_?iRn9
zr86nPr?_VD^n1)NV}r(%=f7;CU;XaHV%RWaH**+)EjvHk=l3XEQm+t?0z2i-L7w<t
zJ57VUz3-lIa+OJJU>;aopr7uaIC@g&wIsL9WE>N|>*iB}ZwJA4hSWl0u#MrCq&c8B
zCJy;-Ih=!_Rysz4y{LKI67;T5<CIEP3zP~ejByc44ob^Acl3Xzb1vXD2vQJUOiuY@
z->b*kQ}oHxQEdk2>R0gCh8bd@axAR_L7pt@@BhxncUPXK{^t&kIXQ$BfF{RO-3_v5
z2jiHIBfkC+GjitgHtYlA+LFtp2i=}-_&tgCx}230T?;|sL|B?=a2)7@FwS!zJg>?3
z2E5C^!@yRS<b<BZhWi+3O*S^WpTFCXg3R?c+R52w%XaN%Vj??i0bk4SaGKMe!#w;w
z6+WsM!}JsB@t9VNW&_qr69en*7A5NqR4l@(On)q}&eKX&EXx25k!IN9;XeIj$zX^Z
z-R@8ShoNq=z5W@8gV3u^Do4lD*D+lMXQ;K~*9K5o%yQhqvU?QnKlH;FU&{bkKKK@t
zUpYs2JIJ=mOm%*j3mqx_gPHv&t$y=(Q)rkYJ+q{OPO}O}@D-C+d%e!RK$h3CA-;Ea
zvJ!wqf(MDA=6~vZ8_~QBa7vTC#z~`Kq&GiN@}KZy;KmF0AJAwNe3Jp!IrXYRT9o`i
zH03azW^*jtv!Eq-mD;`JG6@W8aHYV2fcwoIbgYdjQv3R}*J2XxNLtVMp}?=3csJ5Q
zr=nj3v?;MKW96R-KD}2vAxoR${z6S(I0qtyOz1x;*g68n)Q_Hq1Rq3t;48k^E@RgU
za)6k@tB!#HkBF;$&T^O`qhqmU*jX6V=8SZdW}gS<mG?eHdV3Ut`RSC@g|MNXQ)L;w
zW>CK(EqD~o!+9F;c=hBo@3qes6g7eOzGrd<S1!Fo=M^9(U)T0!6GNMC8tp$Z-vk4K
zo+_NjfvnU<_`G{bB;2(8sf!UGXA(xZb5052cI9KF(~HUV6NzkDBj{1Rf-g999bXvc
z<zxkCw&rJRzvG|bT`m_F3!+Tl&|Razk93S)+Qw%g@?$vakbR~UM5}c~sc6tVF!Z0v
ze+>QSZ`)u|uOgyB-zD4s)p+>-EtPwURT}UZOUn_aZIEDp!nX70T63K0mIhj?7kytF
zl+nk+Dy3Y0tdGMq0Ln=Dp&!f9(H^4-i<~(Ui<}i_Y-CumV3KBt`Zob?zNL~TSx^<`
zp=mo<7L{{}D+&X4idMHzdX&aAgiRp>>A#>F;il%CSCK2q`gU5-m56y(cLFYXw8OZ4
z+8Kd)qwqJpB4OzKfcKL}t-Ix)6pEGTvM@B$p550hO0ND9fT6kaepJpZcWh+4Ey8%_
z<CuB?`(PcDJ|U=yOaW{@hE;6#Dd*BqtuDSoF5&|XR;g29hY88sZCSE9&C9n0_wcPJ
zbK&6^_tosSXWpQDK*YYC+CGIh*cWx&m<)SrY83B1j>IOq7?FxY8-44m_(NtF5pT)0
z`<3Yr|ANl9HejVnMr(6mzcM|$!m%fads^YN@(I=l)nlXk3Zmu&MzKmS9`RFasUjlC
z4^g=m>P5r+0szTMg90#`)NlWWCiPou-CR5>Ujk?Y8Na#A2x88E>R+LK6C$UST^4O3
zc>gHEC2V((&F#GU6%Cr?GGx0-wzu}WyP#Ej80cXJbCOBvVt1dRiHFN#-#6N&4!X)9
zlNP(<EW3`|E5+`+m(4$bt|iJ<UvRbjn38qMo+WTBt3a!oAdAjzn}mWTdpTbTO(I2%
zm=?<`C319Kt0rH}%4<;v2<lDWE^!9NZ{8zz+7Eui26QT+jlY8FKnC|1ky|LbK&HZ^
z4p!~M#XtL9qnb*6a#?&<m`t46!7MaD&h$RvX__P~bb=(=PLbpehUFckH`I%)Zc7Qu
z7sPR_-ix7mQT!*V^P`#A6|UBW6)qrn^0^dw4vo!c%YLS17(H@f673R|N~B;$aj(X|
zSKzN+6>3Kh!9ljfiuOQ1yN1VLvbU<_)Zw&78KXo(IVUM$)o<kpQvGGn2k}2oBzlh1
z8N|xx<VR~O(yVysuCF>tZr!U)=RG&O+uAUnA|0&lAo<GW>>|0IT%^I%izIvwypS+I
z(BFdTvKSArSSEDdyFFTHmy71dIA^w|VRkCgZ}HD3Di;^VtJf5kjaSQiP{yfRm+Zy-
zupu-6!+4|BUqB~Ld+boi#zLa0tfB`tM-)h=$FUbFQhe8(=Rmpa+hNyJFhSXt=ak*=
z&sQg5p<TPCGND0L9~NKB)7+Tsz5S6t?@SGbP4~o7jP@ZBy?>!!kV6%hHBme4J!wOB
z3)O}6TNaO5=!J!v=vyamKcv?dWub4J9XL(Fgo%N-2ia-HX?A+@ieRz&*xQtVCr6cQ
zxP}2zF;X;;n6ohh_M%@-Ac?AU_8BL9ek#K(Yxg@1NI~(AI4e{-hCF=@R9P+{UcD_z
zw_T}Hq(+J0P#Nn5Y4BG&j>(xbDZU16DgW7w4*J-mQ1szg`*rdy2Dt{he3jHne0!BG
zR8<NL<rLA%S>l3pE+XZU)5La?8G^HC_jVJlItg@SK&p1C)c0`NN1339STCQ`{|XQq
zxS&>n5LGPOo*(*Ie3Ty@C|%JG<^=PK)cx5Zfu=j)u2TX#(yJM2@=Sn`vX}OPisuXW
zq92DF)9G)E-4BUTPa8o?+D%jSGkHLY8>fg%E`|vmRObItP(e5FJfLx;0;bX3uht&q
z=my#s6fc7^(dUiz4J_D3em+w)ClBjHB$1v0*JZlFZZ!M?r>+duRIT5?lI^1Jm|K6w
zW(R>bG+x~&#WPcf3}v>ulQ{5kIjvh8w*at+@xOYCVtqc`I_XLyazWYjdSS1|=gvZe
z|2N_r|Dp5wk@pdP56j+!m)&9-RC9LU-a6>R{DaN~lB>=)Z|fyHuBrpurv+4@tRnHr
zs{xVCL%v^iU(|6-`qu&)Jrl;bV)_bxYr;(0RpgJ;_v`I+JRpF8D%7!9-0v_EbK1>{
z5^USdodw~I@4x6~{X>#FzG6t$SzTiT8opaW_CaXHV`oAf&}8<rh<EuFfQ`(t=^TIt
zww)CPJvR?_9fJ^AmFBtVSq<9jddz?>)gX*2VHKynzEd#u=8y(UNC-&z_5Pa*`N@pH
z%ov~cngT$H!J2ael!OU=H~wFXfrC5vuTsPVa$rK3|7c^iV!Kwg_%bQ;4`PzNuq98e
zBGuRB(d}SzPOF*w^7GfA#hLR(V&1-Og5#2mMXA@anE2OGXKP5vLA9L$P^cyl=k>H5
zh^?8q3YulW6=8i^-?f%N<AG$j%@Aw(197=k5b}AF@>Bgz3>yDFAdm(umwLpH3#Vm-
z7VY2D#+Aq$YI4t$^O1k8kZ(%)^8a^Ak_vpGmrYLltGBri+1HOnr~ot^vUCeohImvt
z#_#qMyuIwWAq`UVJEU=S>U9ZqEepmk8V*!`vg+*)8UT#W<NO+g#bzbpkz{F0o;0!H
z_k`tUUwNDNz9$ugSwHcz9u=Bbe~N$(dvsRT>Q%_jA*VCMz4VBo=KEdRx2i5q?1GLm
zGS2NY!74WK-`=)Mpdr#1XEmP0Dz)KK<y^?OUY?L<1)K!UsZ=H6eH<d!3|j}TeE}Y`
zM`vwU!W7!*iq$W1r=X|8i<>|$4TB5}-nu5=(Z2`E{<?2{4H=>UPK*S~w=5yl&Y-Tg
zR#m{A_u~%3<L)R|Qr04)daHTb-Df@80Beq-cvXFQn*<GWBZ_?op@|Tmdg7w^_FDNI
zlxKpHz_>x;(P`eOl>f0_tnOoJ&x4uFC+8p_IXzSFVml^qLDL4jwgI0U|0fSJ>#ZEK
zT`&FB%jdVGCg&`6-0TJ(zawy&3wgYAr-f$p&CSzr|Cdi1x<y^URb+(#s}#=iffArL
zprS@1cBK>Gzc^$*>-V-KlZ5BMMSZ__+X7hC(8u1}=qm9F3jxP=n)lEn1E+gv@?!=~
ze&`}OLH3Eav3Td;eWiYYVkUlcQ|$sTixHR+U^Aam3oGGnez5$%cmb3D{sm+~jwmd(
zPP;t8lV)SJR$4a01j-!GJ84PlADYSPZu|yYW5q_*5lng=xRW@g1fuyC=vpU0Eg={w
z8GEh6(fS14Ryq|*SHG8~dvmdHIXymwS!};sYmGXX8{WEJ0wtZFwwHWyDTG<Dg$071
zgf-j#q_I)6lccb^^Nu$7VNX~gP9^oZ7^O2{V#;((U}K&V*q5#s9$JBN!GQ~nzIlO+
z>b`NBiy7$D2=zW<eSQaQZAF<ki1}CmOA)C7Rc@-jDSv!Wl%;Q4`3uz@53LL5thXq<
z{vF78|DT?7Rk!cF=<B<7y%d-uw^|x}QxwAgqaEQt6uIgb94%0wa_w{#1_b%(f!;iw
zbmOCf7oEdtbz!cg=8|Y&aq#I>Vy@E-8vSBgzH|>=sc-TsM#DxeeKCDNgay^9r96-E
zr@4dm`gh~9-BPq9X@Lxgk;|kYYkUv&u-x}}Kh5|R#Gk0&L?e#b#)2i=e71aE-S2Q1
zVqcYKdi8kr>j}%Dd!#!b^T+XbAgwl;KRet@pMQ&q;Y3-9p(CR4=szJ(VA;Q8S=m^u
z-eCw&L1%Ea_qH!8KLj`PR#6brD$CniDJw+&;3Yn>5q=vhNGj90LQl&ro}W0uD|$?T
zSov}c3MxaK1F86hnYu$f=j*$=YVFm!52}BBt^%W;@7Gv4Ft<RAd>VG=B5=z)Ufav(
zWz2HSfA08XIAfl}SGbA)^ad6_-}b9O_#@#*x9BNV=4<_KDclrE=T^WZS@o->c!4G2
zPswnvcCvVN8t#F|R>B@0L!(r@(Y;agX*42kytAuaz<%b~=~I|r{*3>V#)r#XkbG3-
zCB~+GgT4QjZmD$M_a}P6+m{e{1&S~l-F2S=X*WzKKcp&*2G0Ct>kN1_64)@-EjUC|
z_wZsX1pS3k1Ec+BoUGY-S+UH>W%1s|)+%%mLT#8ERbF1;?oqbCKCNml@Z(ac92Img
zxSS_#w)%NspQ+A6Y=Zp}kwD=}<FN-Gv!LIi9P=B|*Z?f%?R!kht8Wase7Kz9@$0K|
zDEEbO*lo+w1rL1p@?o`(dIc1heGI0i(l@P*iCKbB6yF#{<%ij?@ruEp+DNDb!v?6b
zXFl~Oh6}sF-o&3;?v0i{3@faclF6NY!Pwlh6gN!yzy5N#RZT5i{TXw<&(!34G=+}f
zRm23_oM~dv_Cwh(_ekZcMX;m#&*lI$M7}_Fa_}x<m&!ek0PS<wr8fo7AGXFC+38M?
zv`J2nuoicfyUx4r8qH@z--ipE_kOOsktKWW!0EBxJ4{Vz<@v<>eZuNScqZoqx%M0U
z1Dh`Os9ns9hM61&UV!;v!h{+8YGr8@a;Ju0h~Yv!G<lbmhBuJsP@npBX??a!v3bs&
zmi<C9utqPhhJgiH<akzHk0|<HzG|4i=OpRvWQ*OG(ceSH@~Fz481~(;r=On`VH@kM
zz#H%6hs%_C7C(yLduy$!&|SkdNqBP)P}8_3RPGlrXv}jk1;LMR9Bh%omX9$Y0bicS
zGk}L?!ZT5mJ5nu&jNM#ikx0JU64pavZR(Vv?T&B}bliXOHMrPxiz~^}DlbHM(U)@e
ztdvol@2z!C7uTd@nf+S=4~_`2yp150+vmIB*i+`<JSNwXOk@0bh>1@#^GN~Q4?P-8
z;(eU_d>LlX@}%OR<0rlOpHCVlOma81z51dV9<GUwnA1a@bf3a!*rlS~4EH$sMxW_e
zLdo3>zxG^*Y;}APu3m~PFl?UD8RA*Op$1i3T(8PL$n;cIRiryZ)v!eT!Kg%XV3P=j
zC5JK(-PtKSVxF9`V<Pr4wVjW|BzCBt4;34gaJ7LLvukq?S#OCz0((D8X4>pwQRzF>
zC#(2SC)+2X_Gd0hLk)dr!f*WBo$(3dY>-U0<SUBmjx^eIS1TA_o8we0ULsN*9_jX?
z^s@Y63c1LeZ!r8qupsXU1x+Y^*+Dn-ptbzQJ)#ofav;&v|EZJUq7}j0MV!zJ-!RHz
zVy1{0vbSEfcZczfs8%f0TOx$k57w^=N>-@;IwFur-XdI^ab2?ykVr_Z*irWE-afzn
zHNAj(OCqP+sX|pE*-<)d<IgiIeS!SNie0L)vHLUs8{T`4#2avp;Y9~5ljweY2jojw
zgN}Sfmss^@n)xmllk3iR#sqN?6Xo}2&!*FhqmDlrKKhfTYU_Tsc@A3e^&$$s&EI?|
zaE`Yybe9I)t)qJh7oAAMG-`$3FNqcRz<t6VNG1nbo)_Qa!OiOYCYgM78#$ZgU|#Qr
z3+P?Ac2@#-CI^{A^c367OoS_kO4J9G%rykh3oAPhISj~Rdi<ZRMMbo&htmTWvdkYQ
z;Ks#c*SI^rHe8Y^5&BIO2q}HBzSXLDT?uzwCVlM<^(X&%NI%PiX{Vaoh+h)7qDf7n
zKNnuCy@$9NL7R_NDy_X+3D(h_oKMIqhShhq1gi*4O}dnO5#u%ooqgr9ZuHt&?{D7d
zVxf~yj5vRByL~f8X?hF^5Bi3$@6`r$j9Shkp;3sDqbMhYR#P2@cCQNh7;G;{|IBsQ
z;>mVLi4L`@vg)voGwB#ZE)q+s;`<W&l>a2!b?E!(686L`xFz)$<5rH>x1a67tZdHG
zRW8W}GPoxCsM{jPrv*NtRf$AGLib#tzydK<Hvzj?a+y41rWfPL&~l-*od<B3P)VM<
zXRncgzS^{|7>G{pF@^+Q2b^kz@0CTm+`8R9n2>Q-d|w6f2ECW0D0<BaJTZ1J$pT)i
zvA2n!eRqw#cv}U>O!(EK^J1-7v(bYi^6?Mvk~6u9)5_eLEFovqctW9ps`P`qmP)@U
zyMYK*M?4?$b$UR9t1st9EylM4edV-9_?+}K0TKSf@>A7)(6dXpox10OqTfXMg{?TL
z656kLQsZu3l2MnoyArmdrn>cn=`ib8CpHvrO%D{^NIp*zv(DUE5D}1@WK6pG{S~<(
zn6}3a#DtZwvaleXt9q-3f;y`WhZ*(e9dS*V3D)HEm8gO)NF}R?|8#2W?97l5633<S
zDStFRLSvk$lonezWaxK?FKmG}Fn88}V0bW~dENjzn9CGtRoOGUAjEW};;CNLYplfq
z>?QC&9n?9vh<tMGVpr_?6rTLsF`I)6n_<?fnawO{k<D=3c-ps@@vpty?@be*_PYi#
zYz{)GR>F>!N~9MbVP7NTrvTfC`V0%YU#iS>CYd7CK6SXPBgefY&CDjYf916m-%zF?
zLRCI`fScv*B$?cFKj*O<wW{04vJ@Q|zs8UKWPZKZ4$G2t_C?jtx{PiV;(W%}D@$VU
zVZ$!<QBEyo7MJp8ia*Lvzr8Wp9Nhk1;dNjyL0w2&WR67l^1<dM95W6WZRcXk;Q=aD
zIbbend%aDq<)=^D=G)lvEJiovvfrU-<zr>6xi4Z(Bur}s4&TER(}p95S`QB$GnvRX
z{L08IFkxm$m5_C4k~IQZ85)9`Jj$T+4HY&odZT^Gz+B$Fgj@y#qSH`24G#a+0ckez
zTQjO7%<Vzxq1LKy&v4B#bBRMrm-FxtsVpw>immax1DARZQMBJ&)4Tkh&h}?F&<wUq
z1kR{<$UQ&0>m&c@mg-UxRd#dVRDGKJ19B`Qxw9d-m#V;tS*OzV7<DI7;xlLy7bjFX
zd#HBZ)09zuY%z9$6XG!<1lL%uTNJFVGwL)WLVmj^$(KkA(JYH3<{tZ0;Z?hULv(*m
zqc#uM(pc8(32TLWdgwlCMX0Z8T3>MyOr;vHSeXu`CbG20ut#^q9YkgInv!tmQZ)yW
z4vy>wBQe7uNsEyLsXDm1879GvX4gx&N(1OaZ`;GD9>BiV6O;zjUs^mZ=Yfqp=PD+0
zx9u-z()w_PNJW%$n*Gp@<uFU>7BrEt-d)e_hA?KU1qG6${B`x}COlj`M=#}enBz3O
z`w%M43SsivFH(V(T^EGqLzfw27Nsw86%SpH+EFXEcu+ann+pkl8z)R+Hl+znp(_N0
zK;J1p$>-@wR9_E+lntNI^jzTU61q9$*^ds6H6_~nqm)gTM!6;OYcj<y36>(?GZ7(U
z(wj^op5dC*Zqz(gI!z`i$k479PrzrWwcMapk<CzXucgqMS@&LnOpFO>u?<|YHGwa9
zX>_-Mf3zy4Oo#b{n`c-=?a#*vm|B^hvij7+N9me_=IMG#cLiIEjT9log+Ehxo#*ZO
zN6eFz>t}c;!Ua>|+I}2~KRc^8bs?tFjb`jHsv=lJ-c`g4De9*9ZHW&~s|8qy3D$4C
zr|!+$TL&F?58{2IKp08K&9F=plL=XmR_^%<*K}NIwTT>NCzw|YI@p48nf9{?^l~-G
z9gQSov{Stc95nC$Bp*d${aG|WOHl>rAhOmbA}H&v_P_IPR+(GhimcI^=)et&ilX%*
zp7nBTC0SpiV}y7t;h13#1JBjAJF7!6Tx=L_>17o@Z2w7ekg*_2Dq4rdyiSW*DO0wX
z`~`DvFRAiRKDX^9HmCi28s+;sxiZYavQf=^t)kOy0j{DWU{qzgTj(exnl>;TqUD7g
zj*e`+34ET07N+!1DjzO3ac(57&yZ|qM*?GCcjz-O@r4E8J*{6$B)m?dFOs$+kt|_w
zDgPKMVxANggi_w#_xMsrp94IsSY&kg+3ZImp$+4g#Vt%&UG2qomBE}vksq#CS1QC_
zGppu(mT_~;x0>a#&ussoQLtOOo8UZ3MG6ywR5&7f6^0-v$qsHkQvT0+#9Y}K?OlS^
zr82Izu{Z5yBf$wrU7lt{?>-T&onH*)k~M4=8u93A_piVV%Sc*;sNPHgR`LD6u!`(Z
zf`RuqNBbpDGzDM}8&sMCT{J*^rMq}-DOyan|NIvsr@iqDk?y?4GjXo6f%zd+;@8Zf
zhv$<*RmR=3p;`i?s%Fp}>&Rh3!Ci+8pas@bC%G_aO5GV(Hsn_#h}GopIvpeRVXVe5
z++l8@sb0MRS^yP^<+h~RzDeFes^abT?C9p+of$5acA#L2Sjsagesmx&lPqi$0=U`U
z!Q4911i3o534N4f|B1LjJ!!<N@(14d67+Ipyy<xGbPFcs!5!>v=k$EyoWNJ4gl3qq
z%JWedNs9)KK360ii5$WT*^A?Xf5Ag}n+whIbr<r>2dDSjyVrSU32{6lWOFNaEdsXv
z5A3P8)MNLJ-Rth3jlh9z*XYb{%MQcRbF%rcB=GhpfBKvX+w2Ov7^TSe+_vO%^VYu>
zM(W??9Xds7q|atZM~6o1e$0t(u3wF>IeN5bQnt{HG9zZotGDfv&p@)DcYL*6e{@L2
zOm0fe{)ssRy&>*}{$D<l1vSaYX(2eiM3iSfRP())WFA490B){82dszXlgNt>)8Iyv
zi$|J0EQgeNXP52L53EuD0$4YZNenvIQGk8I)m52T{3Kg1)tpJzZWHNq@Qx&{MHT0x
z`$Bz*fRAcq_S6u9?=T98qqXf|r%e~sA4OCz=h4dxu0;qsK$msayQ%}WT5!t9bIb?Q
zLg0c1>O#Bw0rH!6*<r@5Q<ChP#e3bxNnT9g22kTO>e510>%U65UyT&b6$^ZtCcbmA
zad3C0TZ0k|^$t4jETaa|D@=*LBFxhtzioH;mQRfTxHd<2?7Y$o>>i)MJb_m<tD;ms
z+Za?nOLA199q~>UaOQU1U8#bhrI)X7F{|`2g^9@TmoO}>e;Xzw<QB`R>E+EeH2`t%
za^TyitufmN>OnFTzwI?A1(vn;g)ie-(Z1?5L7+PQyX`xnr{UAGg0*9Ao=>x?_5-G7
zwb%<LwW_jsZMBLpc|$G|zmg;p?9!q{5c{ZmnlzIZ&#r(U>$9eDCnCRuOm-I@pYq9Y
z`F7HZ%z8g*nu;81HTx=L;>D@8X5NKCu3%2+noNmIr~OO^eE>mCCU<R-Nn*_&tlib+
zS^Z7B@AxWP#k;S)%Gh2E2n#%XGzJU&Mw~31<b6b4BMdO}oB9+c#YZrjBI2-ZiM;Lm
z=1;0W;`%+v6u?a*-8X+!y%SIfN&~;6+cV&0>db_UlMQiA&S#65#u1a=1;BjIQGcOK
z|FEB30JSKhg1_UDJVbi<U2t(56E<mT+E=b)KU~y+bTkMcWbT(Ncz2yVYA<lPBB&dL
z+nNVQqzR=tVJcdsX36coSBRM-8C81Qf%Izlbv2ffAcaTs=RDpm>c67tiK4epl(}=1
zBRJznM;<y}VO11V5e?BO(R4*F8by|wk0_YIQQo@7w=@H2QV0OJ8M^Zo_vkT*h|=rI
zYWcs>xhl<Xbe;*#9n7OpF^{Tf^He{~-7kERri;{^NOHtuVZ|&dqpKTcC1T*|uOn{{
z#YRK(r4<PsPGyp^ggL%f)iHM#kDLt(YAb_1;wqQQ>eD0=I#HW#qem+mgKi)xD|T4Q
zw5`NK&0fMTwKc_HIqRvRE=6b21++ag5|W`<8}MH1uFD+B!jodm>9!3sRafIU3YdY0
zS9?#QG+Z;KqPBjCRKUbrv(@T@Q7*2v_2)w)fa436M(X81$$4ma?(bfV;dO~(S?SF!
z**C~zchRHBMcUWG9-|Tao&Pmr@8inEgy{<GwK+oJ>Ehvm)ILLk7_T)PIdc|Up6hQd
zXax}ZOUabUPd3%$i5nEsEyhwcE{|1<16*l7uEW~>8{UJD6}vTFYaGqt^|`KlZTpQL
zr{Xe|Wvu2jLkiLd)sL4bh+5JY2+LP#dHnbi+8~Ku(Hw>flf<NHxuNJrA7DVVibE6V
zPVEcC!;0Vmo}C!n0%}l7>U-Iv6W0DQPHCZ6S%YnvU7)S7k~zvABvIL&WoO-3E7)ik
zYKCD6)-Yx~I@rAZ%$X`>%eel{PzP<#1vlI#0U^mYU7HlN3*AJFQ~j{AKz<ZfU7mH#
zqj%4duHLa}^mx1d-VF~k?=J*y2#pnqY4GRXcQyABxMA-epP{CCv@7I&6ehe#J@vw+
z6xU?7EADQ;vD{X+X*+>sx*TFN)R5a6ey{nEZ$?SC*nplV&E!EXM4?}Eugu80zEV5*
zK57t})c)mbt;e<+qa1eWLZsQkpjpXG4NHlUe7ntldbDnINjI;!wY;osq~oGjl)Mm1
zB8u5dZGcy4;&P9VtToAzNQaG<#j^Kwm@Bo4f1=7$GpEmY^BOv+<;(1|LfH@G3Cu7x
zk37O1$J__21=c#PekH}5vg-4AVgRS737lUB;|)o0`t81Zd~8T;2j@eoo(r&dmTP#0
zLWFBsZx8I>+yrf47}|KJxt@f@xeAOLUD;$#uRLq7^HH_mM`e<0Gnz>IGVHID>RXKF
zMLm%C8i<D1is?2AyUw%MV%8VhKS-E2BYW6vTN^EyfX{)w{V#kD5r--^gp{|U(<buJ
z<DC>5m7&w1CyvW)Pp!tEk@s>w#X!7I>6ZTPAG!1nQ)d~LmbSmvyuyY?5=lt79wi=a
zP-~%A7A9=Os#b~Dc`0AK8v<SR<Z)Uu@tqu$C^1tWwVP(yrdLY)d04Y8KF^)3_GQxD
z$%uvp!{J%~FngS^xqKH6_gXL}Y))XoD69w^sb`tZNQ>u{_Flq5Iw{`~F}HH^kPLmH
z!AM4(qVxe1C&MrPup_Yp=d9kmoQQn&Z(i(+*c8tWnVU-(w!1+|Y;qV^`>e5ALgx5%
z!HLc;qo)0w5*!*n#NC$?RNuDp6;s5{hiD0Ysu0>1ksdC$%<UEg<&c&MQSv!U9Qa4(
z0@=7FC9C|bkCQdS)<i-}-5L6^G+j)0w-z}c1VDB}o*ztYunHCpX{`GGh5in7|K)cW
z$t~yz!=;gG6FOQ7Q4QwmvWYC}uB9f_eHnV^1WQJyjMjan_i^g+4pp39-xNuSBrhl=
zkA3d4U><JJoj4{Y>>9(OMD;C*REVL$GX>X#F33xzErO@}wu%$P0dZ*HtB)X&in>R$
zwZIhyMveV7yP}xmSOkG2U@1u9z_N`Wb#ChIMi&|L5{9vTWG>&LPteO5sHI3v3ntx>
zulrd1m3PM137=Yg`4%W#f7>o|Gd#FB;$VBozR{v0+lDnVXpEA#K4RhHChZw%8+<4&
zr6x&k3Ny~6)>FuD<No1bxfnp>{8js_|1jA_pGlCN_7g%i)UH(oI$6S4h3XOxu`CiF
z^JKW@O6S>s#Cdlpz>sTX#i7RDA+4vN-8QDp(BQ<?sP+Y3z6SAI8T1-n&0V=LbmpNj
z!!$u^TR@0sk|`etWb)(hiU-{Z1+X1w=Z<piI>Y?9^GBA&-zcx!b3s;hAyCy!QD|FD
zXzx0Qz=*xKa)D><1K}^KrqH^KnysdbVPRpZ;ZDZH)~yS@TN>F<f3XdhI9G6(E3o#^
zKenP;zWpzr>kH?(iQIezJIXUxCVdIi863Y+_zX$5d|y|fqLtW{W|&h@T^uNg`PFd>
z8}+=7=q<_26Hh+wcJEMd`|Iliz3(`zRJG6>DunoduBT$H5K(bXMQqjQg=bcmbr;GP
zV#2<?#cA(=j`yID^H7~Soef!E{f+5%Iv2ay$Wpv!!|^&LM|6gHh3uhJb=GU$7=8t~
ztJ`zm$po$&El#+pqgQ<-@Jv+Jm!en?*CdCSREpkf+gSRAV8=3~SVKamvS((L54-vl
z_rJY*6mG5ZDn%-uGu&#>mf`toYFu~N3qk@m`S4BqNQa8$*FvH$SaIJ>)1EaKk9nNi
za^7sNs5TslO&DrzFijKo5@*P+QGQD~G#(0@g$5r+)s9@#nBCU<xzeIXeYlAFu&wCV
zn{pU5sUnS0vlcd6b(;GNzc_~NnivR>fk}_UUpuBTx$Ec4ByiC`JCDz(s{N^!S1meQ
z1UhWr7jD>@U_R;)$3K=4t&7;QAl&`cywX8wuAAa6iXQfg=XX&gGwoNlPFio1;Yp05
zEn9>`#-mj7e#A66&dg0;G#h(PO0tY$+ia8Z<NB#v21VJ4+|1eL-m^zi#Y2-kQ=m#4
z9uhDOA+usEGarN+FO3z%<!O|_c->AB_Fi+6`#mbLtHo^?%nxaLRC8SeHy7DO$gB27
z3NoyZ5{cxL3goCXY79c<=2YG)(RN0J(MZpGmq=9!*gUIu{2-N=z>Ts@cvkJwPCMU|
z9jLOsqfa^wcO$#RlPZGDubplpF`Lupb#~GA9NP(Stf~4`RUTWnw}(UYa7QEe1J>y^
zJmY!L%tOt+pQ_$abL>)9d3V_^o>^^4_AvEDuFvv{N=G;_cWV}RJ-exvyL?U-(L<K8
zJ4?pb#B3%SvGs3_pdhzDdC=Jlzp99435%wa4Z-PRWt?oTo7nIz04r7&6-)<hkwOmD
z2R2csgxKjJo=_eXkB%ez7#X_a&k~i}t2*25qNUukJ=dGYi>(sKrB(RsZp_2y{+^JS
zD(wK(tA@~guP3_0^ggPj7PO5y)6<ObXj?q7`A`DoVygnOgLI2wJHfA0aaMVE#}bzz
zPSIc>kZ8*sU62c9_a_Ly+0g9ID<^x1t;A!db*cqWI@40R!s;g8B!3%%Tsx8nG0mW{
zXLf7G>*%0a;s)8h#i0UxNAj^ib6s0e6`fCF=})PY{xy?4l~n=kui<e}0d>>0CR=^o
zq0a4HLh^PH51w#6kM0tfiXxs*`&NfM#ErRc`vG1rhq%yJEV_4nXRxINjUKXX(+K)L
zKerdSB%JoC%%O-FQ@GYpTGr^p)=ZpLWWG*fuU}2s0z9pK=lW^7@aNw~|3qDm<`Oci
z0jQL0nO=9Y<df=jBQNZ7-QTelXnR%pYf(k7#rshgRiQ6n{B&b*43;)nrGp}FdAM#d
zux|-PeleHpH<k&l+%S&GU7vW9ZMR%$nCE!3myO|uftZdg2>E(meEuL#NL!B%u6Yr~
z{DExumA0L&i+QeVWUK~v*@GSlyrC|pGkWCIM$qZa&%3`52d%uVd{0lIA}r<$aZc-H
zu-dXfHb%c@iy;~=8_1PA5lw#-V4Sn_d^VFToVnhz%O;k+o9S+?+trBHg1UPQtwZs&
zwVPG(9z#50-z;*1^rNa*DLv|*S<kZt>;K85{_SY|sL*xu`5;jH$Mt{gg3#Q`aOocs
z^ebVwy$^S@ZkG;kdgmw#UJ{TIhRZcX=Yo|U%{@90Z`*BJY%ex!H$vF2{`8FDwJfeV
z`l@Iir}?zC>;QEooIxdja~No=lLy{3XAJ`y*E`fb*T~t#SZYg)_jhN>`?lBKd352M
zOoL3ajkIFi66<@Xhv#siu5aKRtC@o)?cduZsPcP58L>-&f_^kl3B2#Y_p9~!(V2;!
zlzFtuYwe*8O|2SYeYpaj+3=9TG-G20>s5aP294r~4|fFR>Q&nLmn+7B{&T*3Tamta
zr)<anV1GU*_D6}fKLsXMpopcMXA`quwHE!6Iw*?KxhP9`8|El9fAjX^u~?~e6-TB1
zy)B^tsnrB?%r6_Wtj}nAa@10p<H7uTl}dq{Qh^4Jvm*8vkY9!-@EviAh5VROPqOK5
z_x#s;aQ0oOUmYiE)IEv$mHuGD28{Z#iKQLPXRbK#uRC;UfWp4rp$lP4)t0$FuA4wY
zl^xUHU;7;p6ZEzO%$qoIP1s`#Y2JH#VL+r_S&pqgIM6J^#!JH6^5^{flfH4omhnp*
z6Lu*-``<nzXws%f-yD9uLLThWuLeI7AAJ$>;cB>MamL#I0UPL_n8BBe#?&Oc_qQMR
zh6ES7bS-Cf+z?=e9U^S5P<VDA|7teE5@>4ywP%A*XH?z4|C7bZ$HXD=G1psxDHiPh
z2#w^%4+=HK0?A%j8lS14{`;SEKcT}H7u$&c{x}Uhj-OHSv}xgQ4@LwXHli_MmwpZZ
zVW<8ru<)~@4-WekAph>R{rv^}%jeR`!;swNul`f}`qy*to;}I_098&c!t?hJOmQRS
zggB>qW9<C*=e}BVd{~!GiSfVvU6i*#g;yHG^3Cef|KLW@HQ>4h%ts*9-<bZ}bD{7S
zesj`15qKkU?C)Ru%f>M;N`ZDpsdxT8CY~MP`==+&^3880e1HGiFLjT5EHF>`^1uCE
zH_><rG_X8=>GX&0`nL<wjpn`_U!gJSdmuLYK33QV18aKqSA*Szh~_|k=smhFuw@~?
zEtE=Ju3Boi#5j6?7pKMNJc^2!5Ps7(VY{pKCt}7vfr>_Sov3>YP-2wD@)wNp8f8~T
zD>vS=2|4V9xa<|qynOe43MSV&g&-!TJ8Kfdl{k4z?13z0ns)4-m9`)0R!!vZ^^G<I
z9RlJIH|NVb4|e$;(8zU;SrAU7W@@unPZ_!0;O?|wG~n;*bZULMy;{Dyi=T++_NTJP
zaO~_4PtMl|lkgt!j2u=!9_LqYi|y85k8TZM4R*{cx~vU%Z6{stdF?nIUm`6HsX{&^
zo2+jDl^JTC>dp1>rIJHLtO}crjdhZxagt-uCPF}6DvDnk;GvXuWySefJ$Fj|rfbMy
z?we|qYb-idA2#QPw4{=hnyR3nDz`ooCCldU(rb9Fd;7iB8XCr1R=~5vjY|yMX&1Ds
zoemkFh;K#*l5k`46T)MVT#r~m)Zj4dkzrw<@z`^WCimR$VrsjO%yF(sG{+ZS+}<ov
ztW?BT@R8(9cxd~0duf<?lJ-N`;CO!9vplYsgTpm3FI{H4qxGts7pWpys<rKAI<j-a
zjogFwx1dRE7L9-HdMpx@_zT+C$RF7^Vv_Ri@Su6?T3DJI-L7GSYe`G2+t^6eO@co@
zt?{_MfnUat<%XmXw1#jZ{FBJ$OlT>NZO2^MYnPdq<?l4!8N9cTMG`Ob>mtJPY!xz{
z{M6j2%|{2a1v=JWmIb(YpyGFObY2^t8Xd*r@s$gsJh^hXPlag&1zvjTR3Z~m86tjR
zs#k@yE49UfiOe7<)(8-WLM=wL^J^v;7*jTYWTV~DlM2+z!e@BtT0>ut1j7~1?8amk
zouoo11?=~)F9h|ak!g}x;s9B$$mT>7(~+>-0WoX&w*8iU)7gosxH{)$86*omn#Bzk
zhsMw28~@-k=rKt!_?YtLM>5Q2YVHx5qw?@y6a0QN+c}g{G($3tzz(cMoO@%qA#-q1
zkP6NFYj4H4b@IWxw_=Q=LL^!1tZ3}^o*i0GN7Ca>L%!p9_}9!>s0za2-~AKl!}Su$
z2DCha999N3hVl=3^NJHEJ^ZOa=}k%e6YH4gh)!Sj6K-?+0^@1}i56r|g`?8HAgCRX
zG6Dl0dKVdqd9y`ENKGYS$H0N)K0D&^9d=jCuuF*0E4Ez{TKD0IFbi<_+kVb&)LOp}
zzal{6`hOli4<@>tW*U0pP_b#BqSGNkhrBEW;{D90*rinOg2OLQvu+8A(CHb``jku0
zCfZ2{j)(^8em0noBkIcK%F{Y3ao-yjR~>F=mFuU1=Ula)k&70!?uwrHE-g_&<}n>_
z-!+I55VCs1q_<Y*C{shoHmQTg@`o_@g!DXjqmFn6>2VKfMMb+7JOpp+Rp@x0wRz?P
z*QEvs2`@ZVDvOxQ-~-$m&=zbhw+Ed^lC-9~_?9EZHOu-Xs}{<TfpLS|Jiul)tcKDv
zII_kEn)|e|BZU`fRzzOr(*bZuCaF5?x!?MZ&2Ryz6CQcG%=z&4)o7R>Xy?B9?kh_c
z0VG7?WGQs*xEK>I!JW7{{nx*7&$J}gx}{qoeC;N$a+V^2i^~8-M5D5;QO`R`Bb2{9
ztxy!ijJxa8;V}jEzrw%Vx#u$!06#>w{ozu-(4U0uL^ebE2bgUA-71`Pf<$B6?K0Ij
znm_2qQG;fLC-Llk1Tt@&BtL!5QbK`W`7vp$Az-yIKxX7ZSsI{0XfNkJ81d{Z1W`vH
z$1VVF(CudwUop{cjOtfulAQZkIpVrT&D7O|i0m991|KI_u6>4j(S+URoB|N)?Vgg+
z=Xku;_NgOCI9E43Rrh?I^NOx1EHx-C%=PLIX;zs*6lDM9+YiJ7jl5zs=ULG}jtN$z
zUtMa|-^dVvd~8&+IAleAz2c>a+QD1Gq-f`Hw~<*cG!3+XFWYwb73RF4HiTOGS;6Ky
zg=5$HeR|7tix|!dX#KM7r%(l`l2VfA*z^eJ_?%%4=j%iHbU4V%EI;sTJ)wJ7po0tt
zjWWHr*LV(yu15(ka<04-f|^YQ5cLzxZEKVmm2ECNn<>kc_3pbXv_J9Piteu8QD^pt
z#ye&N9yN{tMLhl{<0VC%gcUD!s_sosSYB*mFyQ>PZ9Fw<N0WQc+s&=st^I(c{{%WH
z<Va)cI844sWZUgV3dSAanba;I?3MEVK#hO3vm3{D7KgSo*8kehT#oI`?~k3K@hl4B
z+`j*|L^O~f>r=(JcE0%aE0Mw@Am;<_msjHe!Qk<Mh#x0X*bSP%nE~=cUKd1}Y511y
zj2A6YT5F<*lPOr32<glBkhZt)aXE06O?T;6t*YtN??f|xo5K}e<0*<;ZMlwpsZtEG
z5%lcv1JpJ4<>{Q{)>e6;K_#<M_v*UuL&033q(>Ie_OCUB9XbqP>0u~{LK2xQ2zL{7
z6OO&nr{KT#0byu3A+7Jo1JC?Oxur_QI1BoU;4Vl@DpQ_LDNkkNE2kfALBng^FVlf)
z7_YulwR&d39Ppv9Hy84T`wfQTp<Bh!_)e5xMTM)t%rhz<C0W**hfTNFoHKN}j+ClZ
zJxsT3z%C?fVb)!vEj3pnYb6QlW8diiBWX6t>+sRhOVLQ=+@OXh+fZj~F5KuK<_}af
z_zl^_w8|URDA*6QRrDvqdo3$EP6Cu9WvMt@BM+73*OwL2#ot8}V03UqsD-Uk=Jx&e
z$uSlqfexNE6{S~az%s=B7@AG}hGy3<y$Kgy^dk91-ID{v){?V7q51lO0p&%Gl27$_
zL8DR>Cy?-~ML9tWGP@E5L_vSjGlah0+|E?LT{8lSDa&99U%HvC$L&Eq`0m3oS-0JQ
zXExlbMbjNsn;gHyjT=9HMBy<Yj=FkfjvGX|)Yv;hp4wzN_R%W0I^5P$4O7MDb=JJd
zTRs*wKn^<JisHcg(~vn+b9D!9bDb~acqv0&lX%%YTKCJ!G;yMY<M3<rceQi>8s${e
z$@Cf5uIbsa*kvU}c^%cF@=@srlL=d}a8mL}kXR43YkVE9=~Z`)gI?jP2sRkYGG$(D
zCVH8K+rBg_0m=d~0vpT%3!jOfdo<-i)1_xOyG@TUVR=&?Qb9Cl!MyT!d+lg<sM<0-
zJBegY@V)#6MO)`MCE)WMpd<4ZMON33_Nb-f`;Y1phV+M78buQ{8(hBJt`MqtJa~_2
z;#11<xGq6^Js!%@uK>oWem3$JCV$)#dglb<{ycXsGsrwy>k^%?WgV{JY?s&cuc50R
za{9EEWT0zN0#h~;?697<i!`Wq-GZ_iyz~-q&2;Jca@a8K&oJnastpj{$2iDtEs~!i
zSZGM0U<7X_j}+JBE<4<4OU2l$EAP9j$gmz)UNk@x_XDUyoV(&H4SHWWZwcDZc81Ke
zXKJG2aEvAp*7ep=+oWWJacgo=zkv~svhD_KCS$A>bwQ}pxNv)Spz9-+x~!Tzd``*>
z0|lmtF#Pz=ILTWpB>D9kiOcIBvg+|8e-2m4;+6Qna_0R$?;Zqzqj*FSF``xnrD~^8
zDgBDJ$B4#y@$QSWBu>KaB(l)%zMcvl>6Q_S-Z9uD;bup?7-Hx<yl*R`#InO5g}9kT
z(26^I#bG6-{Cl;|lB2Zm=d1(I^UQQoZq(AF98XCwVFU$Eck76=IDedJ+*1c1N0<jE
z5$4NzjF|b)zIe&16^X2Rf<V^J<^tA6EYan|is#5gopqaBUol(+cJ22o`&n;BKry}D
z<_EenQYVm_g>%cbJYXMeIU?GYjJP^e>-E{L@&g$=N2=LX;`@(tv~^X;*?;$Fc?2Pm
zEC86x#BeCBY`{uei+=_V3!-u(=lf@*dnt`uewV@X+t=ib{Rj9C?u{S$;;DCCh8MZ#
zd%X34l6@{HFLmJ%D01KRM^5kBQst2rzbbKIU)v<(vB;Zhjg#*ZK=LO%%w0$qyS_41
zl4dcsSFIuXl`ny^B#8?2xzV<1%C6K@tJBtTs9I&)iua)Jb^=SY*PpcQxTm?jWD3it
zW7FPGUaZ~_v@jb%C=u83nmMLlb?Xn4`Iv<=*>(vd$;`BBM!x516*r1@qONiU8@o~K
zk8-H<?N|qkSKrXvvc?)Z{d;|;j!VYW;wO3JOJNFjQmD=O0Us-LJ87zzKqtBnY`9uW
z@L-8*cc~<JdLp1*8nCRQfn3R-c5#f`OQCd&hMA4Y=u&5noLO5AcIozCKbn*BB5tN#
zSU_FfN;1JpT)URBtTiL{Y#0X~vwKHDF~$X)n>-|2?W62%K8<4IZkB2%L<9kZIG%wc
zYUhq^^N58xU;ZAyVv_VW_DY9auJOy6MVzg<C3MFSXm^|=kBA4|!-Rt3OWoJo|D?Z^
z$HM~Crt7b~hoK*)F3vX6rHvQIm=dbwb~L)Z*XOM;W*VV-Y8gh;MKlM0Vj19EomEAn
zq|KqMl~oK92p3B?(h}Fv0ndVzDA_oPLoeL~R`w&W)F7(5oLe9N<RWO?Dv73nK_P$)
z#OUTN2aEw)$)Xp=#FAD=vAM3gdFr-+tS?_4&AEA%gv&+3T7Fw3FGo$6=3wtiq{VP?
zYyMbuy5XWy+Q!~rdypG1yR^SBmB2msT{$%{+QAvw_E&=a&}_TYL}6e-lccnCxHya}
z5?u(+l-#+~Iy(FQdTJ56sgbv+q|Y!~+7FjzYc>pKJT2aCIAEVCHrT|s0Y{LpFgcG$
z3c_3~5)%wSZP1ZDL^zk|Pti7n<D^0$8!O(_&m9}{8Dp(=j@!iuMpLpzHu13wLDar|
zNjc8I&;CLc^6ALL7)vVw;nhKc9HvA>=!cWwr9Z~fs3z+&bNUs8?T&LQMRe&Gr1AU|
zAu&O@B<B{Mam*~%%7Lci>jPC!R=6x$ZdWe#wS~pTGJr~Q!ml2_mCxe5rCyrWUi+=8
zf(19b3+>~%MHY0*EqI97%~I3T(_7Xin==rT%m$zl_xYG8C=P6y)SJz^;25<p_V<f#
zmXY(jHBly9srb!GuzcgQhdZg+^TdC#Q(X<3wzq`E+H=Nk4YZb|KTY}O+Mm_?#9+Fa
zvEzk#BHAzdWmafh<m`@SO}awPs|vO@=b?$21;9WAk@Dp@f911JqB3g?A#9TE^=sAh
z+>N<H3~Q#m9w{6bSpy+4`X3x*aA{JmRlu=}>~p#sL^Q_bXXu7m6@GT8!z``0PY?BZ
z0kB$G1oDm<PZZ*@JEyYr(?7oP-_SSkjiFB3gUq7r!egM7y|UhjnHl;UYR-=qRgXF?
zCh$I5JbY)>oeay9ls0`@pAA2Jir}06`~br+RW9^pl8X^`%;v;m7`w6D!QOKISW*Ot
zIKgv69gC2i`s)TAKYkGf>6HG|ncT0O0?1hcAZP%=VvySxuhA98<JWY~GR3RiuUylP
z>snBeVU-1}jo{*)+IfHz4Zo6<biPP(QMKW+zNZVH*+OiD(MYvMs2MHD7RV&tv#zau
z$~u`)*&Q0K7f(AIucJwlLoN%B``d(^WNV7Ji5f{qG1z%2t{clCD1C60?%41r6O}|4
zr9s7y+AD<L4i&m-->F3@XeuRQO(t3W`R2-lf@rW5Ei;P4;{_>T-Xoc8<u*JU5}I>$
z!Z=wL23Xe2f`zxFd_S8eqpp=QA0P8moWiT8)h`LT<D#SMNzu{!A|~bh=hzB+-g65x
zon)cr1(mx07kh6R7gf8y4J(L<C?QA)NGgH~($XL)-8~@P&Cnf!(k(f3mo!7ENOvnR
zAPqBw#L)4s!TWY^_jB*(_q^ZU_<yr-t#w^zpT}{YwcAJ1C%B#+e7PLkvo&=yt|E6K
zM&D16$&!0{rTYS<l-4x77dsSw$nWXsz_?fhIHr)>q7?k)hW4#V?eK@d;MP0ckXGMX
z1+}@73&w>;%@;0(-lfe_O`9V~EXbnj!Uoyi+%PRg3jhcr71Xb0>O9Ty=44ykM7Jsl
z{N;DN%VbyoZrYC55i!T9=gF{#vi4O0Zb$j!e#^r9qLDILOs{o;b9WL5%qL}h$nk!O
zUXxjp?#0q*JgeuDP;;2eih#sQzqfYe1|opmpq+hCYL?n2@n1dS!oP?#Dv{x)wwyEG
zW#>2F$xm@)Rgv4Ea>$6*OHD)A!;4AzgqQi3Uc9BhPB>X|Qy574IppFyfwfXca0Zuz
zzYV9K(N)!QN%FV1nTaSqSCgX`f@PkMI;>J0u8ktMCS@l|G_3_|`jU?G3NjEtwJ%4v
z?bJ!L!GXAUFI#V{w>P1c-mo)rpSwfm9<0VPzuIj4Q~tAIwJ$pZ(J=;LYcHjNrN(8&
zg6@4Uj_r)y{k3uq+4N_g0wsK7u!H?3)a5j6z*4?msT@na99x|LCDFDJJ2W5$<((L;
zaoGCaT(08-lTG#nY=hC*8ui7Q00I@CW@@;rmuS2ezvHE==MJ=HSiM$Msvfv|tJc5)
z;>8;PbN)e<rYia80AQWnVaBsf$JLpaK1Hg{S^!uzhwCXKJjFX6MJE9@Ui2#g>3aX~
zbUmu%FGD;*-=%#>AtyL_84)6X5?bH-P!1Kl&hdXEMV&QL^6#_G2E}kQ{ogw4)QI9s
z>p+5xmg79_T%fkFJKRZm(xi005Zcr0n5{dMKhx+^F5|iGhC*Y8O)BMg`Fe}w_AIM{
zlYFu^ip5`<qnwOc39STfOr)S@p`J0Ud{Cib_r1jliN|h&Pa1(SKe;X2y6U)F&sd_-
zaLOJ<F=gL$`piKmrFO2!YHbWaNKq-UOS(gGmRdk{2&}o!_0B%^D)Xzum3SNfX7+*?
zh^o{&U17jAAhSy;6EP_ZvKv}YFSOli<<)&od=a`XoVJV!vlfBhxd8N|;M0+j5u;)4
zy`^xmJ!B;L7O>jQd@Q3O`e%~54=0zkqQt@Gw5i(Y-e8Rz?Z<u2a#AyI>2O{keRv2h
zkSHJ69UT-r+DK4Mw}qq_VEop9gTKPt9g(F>ZQT61Wgp(J^ygwTdbs(Z5JTwp!;LUh
z8sYvsjR3sjLt@#S11g|$@*uy*@Z7}#-qRxeRo#nU<6rD5=v8D(|2wjschWhxrA@tt
zoYAy>eQ}22q%<B-v&||lBwHnyea}}#VmwtYov)A>sL|%FGG<oUj|O{+OP6~0gLh>H
zuN!PR&PXmvvD|Cy1ILF=HyQKuj}*Dhil*|q%>kBwq`~m8q9`5ZT*DNN#|e8*+p(0F
zXB>MqR{6Zo>X*8r+q8VlM_e^4_hl_X&wp&TWvYKc)>4w%y!nnmg|(`09CosPN*H-p
zE@oFQ*Y!g+o3^Y3v_I~vO{!omf*Sb@b#({FS8I=ti#hvJ`DIN8-C(AaO<pherA!1Q
z`l?=HxK_Qdb8G$G@VnA|R8ON)@bzrHPrkQJMkAE~sbo9MS`H{6j)H9StJ<^qH^5SW
zgrBFkX+{_~;t_*wqBUxRi)1T1Wz)3jydpK~q$}L<_3l1ybN-$7p_s9H;1TM-<Bd1Y
zI_hV0n5-rnKPxQA<$SfmS&PL}RNs|asJy!BY%8_e7(ztl;-hlK$H-o+k@7<`FInL6
zFTEfXIRuXVtl+-4dOpz)n|VlSi}R9G2%NW;yiToMUgzV$z7(}e1$q?>fZXR4W*IB;
zVj|0noWmd1O!6J0SVBPPzce~1z{+*pw{tKbW!JnZ@g2R_>+~=RD2-PVpFZ>W&YLg@
z{_3|NXKmD*Ae&H=nAV>Xl3V8{%Q51zDhJCoi)QPSbuaV&`SVMtVc2lT<)CR}gMS@E
zw7_8BYKYrS58pb=LwaKv04R*+7`#0@(f_Zm9bLn(=2PsM@NU;8FVYbmc5|m&h;hrt
z(Sms4!<IX5+Vh8-`sK=%U%7!0W5D6rbWnYPW9ZjP00K_uI5Wm>m)w~RLK}Z~WI=Vm
z_IDTKPda4O651o_gcu6m+F+F@Y8x^QOAEUw+LKnc=v%%|Px^p_L8VMZ%z1N`A%)A<
zX^P*xr)`Hxd4-Srw8U|#ld?5YBp5fyIKbsio?R0<C8_(<*%pD9r|zO2{oUI9kY(mV
zDsIP>7%;+n!EuS5>}xk~RsO0YU6lhlFu~zhkVyxSOHuSxf_&M+*Pb`Nth?Yt!n~#f
zN148|7)~<HS4)^!h<MVlS>#7#g5)&mzQia4jhb-zr`$EtCYJ51>L$xCaenJN`IWzS
z5&i#gEA5Xq+i%5r^~=zS-x~bASM~1`{#A|q;dXU2c>mLX{qtOaKKcI-`mg^ZG{0Nm
z|I@VpKW*CoKSF3|;8@kBgv`|6E8mgxI0*q^)Vd1ge?xv;m&Z0@L(4keBW7R7q-k`y
zaMU_{<%z65dP(xPi}>@S_#Xc-0T5gh+37;s^=qUt09lROVJRvnH<x=n`1g|3-?H=T
zhd+&?F)%R1aM^lu1M%0!bk%9~R?rdLe8>L9KcXdWxypR%KPnn6mEiZ|v~BT>VfMNH
zn$5pmBI2QQ5$=COeE8;L0Q;Kg85p>ier5(ZEd5+>7kyXmexjJM`*(TfPfG^iRZ;+)
zo;2_jHPuh#kEow-)}I~Dv2fcj1n!)$E}k39{PPd`3K8Kcl;7`7=Wkr<iPxqdgtDBJ
zbieweUHGq-7V1};id4xv;|jXKxByiVIMEXo4FJ7>U&IvmJI?rzC#4fBbXQ>>ZpT(v
zv#SG#RrEA0^~Qg>5~?50o*ZM(JAtB8iLX0Mqin`)|JI!j-#h>H^%L+Em}f?8fABb~
zM34)R$9vGUJh-nW_nW-)=gZp@g@}1_3_b5)_v2K+_*cF9&wuqFAMnR-g`Qym4D?*i
z$=`^Rzq8_h{-l5V+mJ?JYKgrq8sk6Wv;Mr$|M(|((!h+6Kd3T)d;kBC&;Rwe3rs?2
z)-x%-xBt(-@$Xmps^oiPO2fkO`Tz05{{C9Odh946vctz2|Ev`M+gJHWNae?wFs1Xa
z31I*0NB#YrKhK<M3k{&;HDeY0{Q>{m=lsvL{=es1S!6T%Q<x!3J!ujE#6z;y%D&a*
zKh-D-%P*E*Y-A*&*QYb0C%P?|&Hm=9$eJJz*+<Mj#4u_NZJ&~$IjDg0&p#$X`?w}}
z6FT~VZYVD&N7C<A&?A7{;RpZ3`5y-rc^lPH#o3xOr5np@aKPNB1nDo){V7jhu!ekO
z>K|vm`ty%p-L8lE+yTb|*7Lc}{+%?w6cf*nCwlNJOP#91(Dt8(E}fvuq)CYmpsU9`
zRkt~Ri$DGjR%crG^icS6_`bND{~w}G7kKTwGtlfN<G-eDq6`VZ8f8C?%(M{z{3*O9
z<#?AEFP_h1$;?T2lN5fF;dgE0msW+O3jrlBr+b_8BAClv^P`BpVV^KvUVD>2P661&
zu}`@OL(`%BLkEAp^-VdK$mfl4M=RxaABv_8*73;AAC*PTs`~enz$5dEizDn#;cBgC
zx&8dS^IJ8k`tNapSMRYvEp*B95dJUv+LZ(TnSS;EH%0=(Q%KvTLw20yxt-R0fr|4;
zp#W+w)W1K)RZ^%~?vc-hzqpUQ(cyrPT=B|2rF>{)z~61Nt5^36B+9t_Fw`%y{D)QX
z3&gjpx?FQoR+P_p?reeu3J$<L<Q)(C&&U85z&9vJPP$LF<|hhCUk(R^%g6uu|KGZ?
zCMfRP{(Gy-)jJB^!>%9qaiaOFz4GUyqtI-?Z-Che-7>#t#$0_FkjR}xrrW-<`O_kX
zyz|ut4!!5EPS(Glvo8wv%Tw_Wu-~6e*Ulvdxv07RJhQLBoUMy&W#iZX041f$@zti#
zxMwE9svPp?LF@WnWUr<~k^LEA8PNPtyBsd8{HMGVPw7)B4giy;PGa~yZ0hO|_?U$*
zhxcT=?*3`KS@7+OFV|Ew{|Rq<3qVw3Cft~c>LdI;FYM|N(up%J*Nz`A-Td=-Kionc
zeG%~VU$eyiU1kCa?TXQX@|L8@?LThu`XKg@&%P&t1NxuGD|2H8F36*r@K2y*K-tIr
z0H`b-ThJdr1VE721l?P(8valnA*#n{Hb}}eM(Ka5U{GVsz&`;~w_=ih^H{Hh0D%7P
zQ}WLR&irv9RCol}>rNu&;sKoB6$tm=FUIeG#Or^=>q;Q89x2q@;TO6MqN}B~Xr9*q
zn{%3L2GIV}hpzw}9HpWkZF$T7)OR2-yfA!L(?Im^nnU#ibR}~@4EAd_;jKUhyYBY;
zOR0`h+8)JU2Y{v3nurT*Mtp!St*)8Eb#@Yp+VieuN?q{@ISHfVZ#=BIt?u3Q3dJ@k
zHFc(zPj7O7)o^J9+X6TXV8!QWE!<j#7Edu$1=4BfP_QH#7*26>1{s#szVw#NCSh-&
zQRqDpx5&k@Y2(?!DbcarGAlq3*7#)j?brMJssq{zXb~_OC_nuc6`o9nLoTCI(@_%i
z=*Q=PU1Sln|7Ont2{w=lN!tLteMs@vY_oI=(7AwEe^xs?{b|uEc=3%97)SHy8?}|o
zYoVGH3qg*}={j{apGL;DBvr`im&)amU0~eFBLL!1H=%i@cOk8STRy70&LMQoZwc=S
zu-8^cb@Ktj#OLBz;=8^lS9@GN8frp@Dx)65YPv@{s-#?N^_>pkqxsZw@|>=)u<-g*
z-AYl0hW!z#>%C**;F*<vvgN_nS`3)P{jXVbVDok<C4i?6ij1X~@9BwD3rWUIzI~tZ
z*?5tz^?mD^dg0oOoyNazR><MX{Ehqtmc|pJlJQG?-10bgkb81U8*GujG1j4VsOS3Q
zVrpb1n!co8&l?G}$VWO+7bOI+<;#oIKqm(etw2trd3w2v%8{Cg&qPE69uf|#1Erx5
z5AP3WbHTly&d*ih&(^1wNgIx`cA-@WWwVlkh|H5++ph(F4o5%rFAe^Julx-B<yQEI
zXH<aIApW<O`jV7qKU|g#ww`L&nbYt(|HLrHtNdW2Cg@Gh;n_6Eq3Tm&6OgQbUhq+(
zPJr~D-FPI;w2SN4)zp%D=8C1#`xCFnaTO3_t&_laknq{X>F5Fj|M%*#vX=skx3v(z
zTF_th03kk`_I&^_EF5k*!G~mRS~r;xCX=O?no#HMH>FikFVS3Pyd$g4E<y-dZtC4;
zrvSn}lm4W~dn<!I3NvNan1ycJ0i?C3whHHZNRc`7QTkqwZRQ>31daVhT?mi-z{~6p
z;LTudj<~eOi<*f|Y}^@B&&Z3l!tLSlPpZI}vg++GtSB84x_5OaS^st?*Dr5qfxiJ5
zJ>&LEFT9_3h5=?dFyd?^#~vF2U8Lu`nii*ZxciFcZ{laHz{%!L^`cVo08F4YP9<CZ
zE`a|7lJj{<Z(vn$T1BJR>0HEVCHgO=efRj6(-gJTgaa!-qHm3rjw(E~xhNQ<rYzH8
z0;YK&zjsJ^-arE=S;>8=$mG6sUf4$^M(!zcjPV)N2v8d6o`z>M8I1SG#+5a327(jk
zyC`a=-x}7l4~?Q@)5QI+A1M@3W}gF%g_XxESX4iaPMI7gDL(tqnUyc-`J6LYPjS@Q
z#@G><ZDOA94dS?+bx#0bV|+`;XD1-KA+4ETcNGYD_{-sShkr9Icu)M)z^}+Syq^3p
z;{*=JD+kOAfU==#{q(Zl!bGj-Z)>)egG8k=C^(O}8#XF?IaZUm)ugvuV9%x&+6Uqa
zl}%2=1afby`o027st&zs_HGxT;C9e>z)|>!ku(wOmv3gqx^m$Y(xq}Be4$TzKgQKf
zUIYD8FHTB+ca=yxcvW<K{jD3)8Gkjfsf^Obil2?&s=gq=s=lBZ){JZ?ZWu1)Hocnt
zd5aE+X`^mWqrwpvj1BZp-v;@-I*M6cE@Vz0CoDc0s#nA|pBdt!R#TO@3w7LRHB>54
z(C?03;FXMYC&+WB&Er0%A1d0W9+k^UYLAKGf7EsuU1Zl*j#w_tmk<B>Ak>=}t6Ht<
zS1$=K?<y?p{R=P**t<NT3_z&XCW~95t_P&|+Ytfuwy3}wYDHi~C;;99M$rH@CkE&&
zz;ca&OkSA5+5+ukm(TW?DkfBe!C$_z>|S6>BRR+Ct*3Hw3lxhsM*k)t+ZvGm6-*QV
zil4r4aoiWZ=0|naWMYT~cGhv5Nm8Olsri$4uV`QaN2WSyJ6#rZc05^|q3U+gK%6@h
zL~Qzm-j5UgwF>9gh0vJ-mDJd)fbIri#wAHqP&goFzQt&N@d^6vfNi9g@xj`s-puj(
z^qgNssfL93fS&RIXsSE2E!c@-Oo-3=q1&si*75}TG#+Q0rzxDaW7B5@W^-QK)^79d
zt6m3!h!V#f<=`?0z=8@)cScY?0#FIXb?sSmVrZqff={mmTmMQqp@hHVMg7~T*AI3<
zd{+ec7u~Be(Eyy+sK2<pMXe{kS+bI}SMcH}O>RO)Ru;)^TBv0D`oi-#Jf}|_#RDj*
zY?q#my8m>ROI(1zsFm=U<CYr=y8~*u{N#NMC`yUfxIa%YPh#@H*7Q>g(TArh0MmiN
z-UQ2XG+~aj_Z<O!3D{8>{FSL8$G<@CM~5sK3f9v#+w9S|aL3W3xet+UN|!n7wD>&6
z`K<n#4!inTxrvAKwk1X5?&5t`i+wzxRUF3z5_eebF}9vIAM=6OQ)cEB7pW!!lgP9i
zt)}*iojl<zmN1|B77xm}&MD`il<}^Q01)4HGpj{IRj*<yUue*mu?`|pS}Z!P1>VB3
zB-HZYC6||uo%5N?@)2`i&y5ElvZ_dCmDZzOwqsy&-*_RL%)z4S{L1r`eaB33b!frN
zqg~V#6_+`ml==Gi_nBkg-)D;b67;@{nQUU+3jjVx=?h-oEeh~1wBK+uW{N_`JnZcV
zZ|wmHq{mG(9hW3EWxBCNTkBa4#L}P9f|d?TwT;f15k}LsrGCzddxOlDXIY$$Ow(1S
zksGsBPuskWnV*<y<l5E>Qhwy@R$$>oWf%|dU&(8!1m(4&@M~zmC=~gI+>XubkH%V)
z8l9{mnSB?wBLN+2tN>qqup;uZRsNE_MW(9NV3?08#wR;?beqR{<Aa+8zaTIprciCu
zVo}21co}zbZk{a6gSE9}?>oz<_fTCVd{R1soI6}#p7FT-sICcqsH0JvT60({czNq+
zg{UUrfqlN#_`c<~V1@hy$$5`mxi#pM#;tgv)9(DI#z$R#2e49O<U!Q2<1EfggGgmG
zYm;eXfXxEkE-3@$_QWfFJTsmG45(mjizLU>0#6j9gL`#jB<tj(AjyuukQbGsk7L<M
zKZ;2^vYPsIy6)0?AEDMeA?VE&%GNi?Zg4FqOv5+1@7pVYp|m`qy%j|h6xxH?kyv)%
z?OI_91xO$r7h)xQ!4@8l`DUKc#WRegws8!nt*drbJIi}euwbxp{?u~M)1vjjKz<Jw
zGFq;48br8Zn_G&E{^D$TsdqrC^?sz!*}BK^MX)XMsgtS?x8CgjBqDj!cDB{)p^YbM
z6bs51W}!+a)kK*Bx2U4VZ;ZJxVy`w6RN!WBaSY+!8gJbUO;ha4QaBetCdgiP&qDY-
zmn1)JLul69jt|}1&eNsFMZC(@3xKh=m2R;pX3@qGy&+_(^`b|dLj5A<{qFR3it#v?
zUN=B26h*p)5<M?+QSUA;iX^mpp93M@Ah$Rj1-ZWtPqC?T#)_ZeGg#A5oaD%NnbS6)
z>y8*M2B7=No#77zbPvP(!Q&F!qvgT6;o_~mO%dFY;%L@6b5;g-<^G-pK%ER`Sxxdv
zP;sa_DXZ41v2?mT2RQTaR?KldzSRxK{q^vn;2oHydsdYj|LIJrX}7oBl?N>W-1Fsd
zchKK?rQZt-U@TVAfcm0Ijn@F74Vrav@bvpBE}%js&{=#R8Mz}Y;;!9YjJ?8ykHp=3
zqnsRVbo>T@3HAqVYp?RYp&R0~fS>lZn|j=hf=}v{%L4}A#{9sJAEJ!2#?^OJxyEQY
zy|}4;>^Xe!109@Wz8L(-cGh!3V8vgmn*3#b-Jn^iNm8?8o-Tz_g^;kK9!-*Re*V<E
z2j3Y~(5wRh-UzU5eudioq9^X%?!-cn!1S3qjckV3PEesk*-lV)aspX*_h2NMe%kJO
zewf^Le?Ct$qnpM!|2KAzjufSeH^RlP05@bg&4pMS2q)tL9z;*3q8NK;{?#cQjAaey
z0D*KQTYdFT8vEs<p4X<a`S+~w`znfh=|#01^zj<g7drz=pUj9aUweHoj|n`FEgknx
z)X@>9CrmwW#mPR`K(-$Pkugd3o<QO}wj;7V<HUFq<}#N!f1d+R&iLWQMbL2N$+YSO
z18Ty_o=K~9Ddx#5?MKF~Z^H1b<lxf1>4SW^>W0P!x+y4jN0jQXTp~p^{ni#b0KnD&
z;D5u!z1g-pkBE!B<#!fL;b5fgEcC9$$(e^ba$4oGKXojU)^fagTBl~^LNBJ7-Ms0U
z=1HDvdeW64QSu_;D7;XmT?EJYon*r$A_;U|nby{zaLjo0le>vC4UXDKRqW1iN{J$$
z%i@+$?*3!|u+#4b(;0U}PDEUY&nZ80D`L*uh-FO^*i%j7@=5S=>{<pGc#Qh>a_1iC
z56e$#?~<`&YY-K*W;*l1oE5#|Xgd;z)%8^Q+rU0--k(m4@;N&qwWNF2q6tL3hBpPh
z0Jyz(Zob1VM5VDnpjavd2~j~?8=HKLu^}k$W8Jb7v`cz|hYa)CS<V-Dy$H8vgm;#&
z5N;%SpVzpZ^qM;g#@7RQIuY3eQ%)7_LPyl37^ZU1ATSgdv(b&&J0hW?L>8Y2y<|+(
zGY5Ds8kfCVq{x{lU%d~-hAI#ip9{1Dk^M^O+%dL^v1>#>1%Rsjph$osb*?<-SGTTy
zGjC-mS~xXf8gf~z(vME_4mYXu1&Ww_PZ0?3X=-nSUtRMnp;KtpH8h{Ct^rE}SWT_V
zC&M#%YnXvv=@c8ImkO7)X`Ei~-9plfDcfX$xtlecQ9B|-H^V8bC)h@VLzj3-k!gzC
zrZ?e!&S$3~MfVsL?Y|a$zK*G<czU?W|F!dTNj==BkWK~(N=WucaswniwsL$k0bq8O
zz+7DroD8IY=4+cV+{#JMVK<Ns4F4-e#S4M5_f22WBhz$&IVAf<Dd$XkXBUoK1ZHe|
z6j_?U^4f$k?y+exZFYd)SMtg$|6<*g@;HoS=4ALWX-p%`JE8B?098~q61&Q}IsYv*
z{s9pxZn^Q%<;Sc}lh9*%ZVpECmsr)$lWP*(!DPWDep0@w<=ToAP$2525AzZmdy=-2
z)AB^6GbL6^NabC~N=}TA>b(l?epjzd4ui1EM1zag5A2aUkm6yZabm}V?pf|CTdqW2
zCksouv2+S{KecluWzd{JA#=|dv5A~A9UyRiP6uIPYNxd}hECpA*<#<l#=wxxQH~#y
zWhQB7)0*LGB{7O=k1s#HDmWkC`<Cy6%dZvN02$pmU=A2hoPdW)p0Zh|ccvCIYkTmI
zibXP7+9>Pk;5>N2x@2#mhtx{u+#KOOUHSM~H`XE{We*5uIbyn7hl(xsml~?%A5l(k
zf1a5W^gE!ZeK|r4z*ODBxa%OyRgYI1KA>vEny-IVHZ<1@f9T>#KJ+UthpL_M@peJ=
zk;d;Hs8;Ep=S^_NlNZH^ZjL@>Zr<7p_-w-;#+687YgQo-gvqAO{G#V6x=2``qA%;|
z_ORUvNW1RhvB=HHiR{8}2m-SPm)0$T^E)+zn{}{96p#)0H{2J4#83R3HyoL}gNSvF
zw(i+ooCB*_lV;^HpY6@90aqq&u9|%(X>@4*e3{KKQ2nwy{b!;0C5pKL);qZHbJMAw
zYUgWBzC51fOcSzf(d^JQVY(FbSiMd!7Ja^B%F}-9ao=?U6P8r>^mJ3S`_ZYfM%}lh
z2DnWX{FlhXL)Q6d)45Y=p1fb3yS9@0$>-9dG%v3%-^01K&b0AB-Fs%etZ1v~q{T#F
z@1)rsH)6uBp0gJ`smn|;1qQF$)+Tj&E5^!VYE_jB=vFxgsT8>y_K0hB-DDlX7|zX*
zM)=FNs9LJ1;J*W>&E+5W<*}I{5dP$5_*j+)VL=RzW0Oe`*Fk&fP<IAWCmZuADGQZe
zwr43`&7Iye_`_!YdwgwAAg^~EGmtG@KN};Dy}QcOz;r@rbP77R6nvgB#r)ut^u1yA
z=!MI{h$k5jewWzg!yq}$<_RQ2Z}4->)?BdPfS+WIiSW+{R+VGzDb%cF6imvz_x%xJ
z6#U~gvT$x!!H=9T0~hK(GT9}hx~-z!&ybkJ@H$y1{|<Ls@7S5DY^qh;23Pcd#<@#x
z95>kdjS0wu)H*TjGmt#OBAun0`IS(4757A_X0o6n&yb0s$k*!Id(Y-iGVX|)9TJtJ
zTaOLKxbUUNUc-v=wZ4%xLfKY7<i{C?H~rf8h9s2;nl7dm$u-2}bgs^qZ{M?2MO+d!
zKcGLqqfIfL{{SuX=jTs>U61l;7Y!o?pDofy#AQZgFW^g%FIQ8>-FrvWC<F|H^;o_!
zovW>VpJE~`gUw{)g<n>ve@OX@rDWsbg@#I_?`WzR%U1nG!81FuZ8%{$CWO>F*K%<O
z>M-M(HW{5yW<k)}`2OvdZ25MTff=dA46pnI#^;X+EkM=&-U+ep_D4}4x0;47;Fio!
zS5;wLYgJS@)v{!DDvj9of{reEEv=;U#9-AT5JDVl!mDo(d!SYF<^kor8a0PZ=tN`K
zrcJ;q6)Y4(6#dmOe#O4=Y(rk7?%`y|o1BAGR&$g0XD>P;1<$E4DKvN<Eo|0WLta-U
zG^V!blLtks5I4CBX{A;gNA?|Nq2C0?ZEdN5ng<0h&aLKJWLq3*+|quCM!^gt`S+iz
z-grs^Qfy+T*ncoHFd$5bQyrvlFc8#<l9o5veg%XYJVR5vqIMK?3YE90ZWlzT1jHLI
z&ed*0a;=~NRVIshHOik{v(e09;x4;9o-M06AGXJGYb==hwufc*%TgHCW8Y8ai5s1t
zAj)qPK8tpr9h1l;qxw?D^g@n?rkryCegg468GdKfn25kDLF}x9Gd5w48B&hrr$UrR
z9q(MR`9F;@4+#Ks9_Tk$Zo)V=^AqV=_0JaH7thpK&7MUF>2YF{Q|8MyOqaUve+*uN
z7c)X9U6J7h%V_79lX^Z_PDd(M8IHUInRz;P&$Au?b1#(pTQ}w<x}J5qjco*2;!~UI
znbKyd`{=-%&^6YYu!kP?`8gvW&{vkk?vD3$RO+{}0dz${FKlBgF1C)d!%{At?DFaE
z)lZ%#=V9Mh9tq=A12KjCyO$W^lCq6;i{IY6FgzwxuAMcLC&7KYBA*ss-6dlP&o{Fi
z-AafnP$%e|dqf}4ODb#Qr|%P7g;f(Lzw&U8ADihXyt4q?LoiU_*)Lti0(7-3X1)of
zt5iQ~cGl-=W^YviGs={rS^GIsl2kLEsuU}}#(OD7TuxC9>LjWJBTkFBwNbhn?}E;_
za=4yP`Bb}LATD$D_@LvmXA{N?SB|e4aXJ%2ce-w5I|GoXl=rVyyMZIVthv=g^gi?6
zXp$ak-%j(h!9IN!g1&ioQa!rX+8N^~%jR3fb&&90c#q#iG3~rt*Vnfp4fj_x{dF<V
z2cD6Tak{peVx7xiPGz|!^fmnaa0B(yba?R>Bpq*Ys`UfE$)N!sMSAZiV?+qmRK>+}
zMp#Y@#vQggp0|W?RG3<}fy(<_X*xUTUK<|@%S33sQ)#72W);6@9hWNANXhEt^@M3E
zFVCK;A(Z2b><3C7ZE@4k32Ta*!z#U`EU?DBj#^7cYQ5OVdmbg~Joa*50YcQ7W41J>
z0BQSzu$;VM>$bg!k5(G#AMc2d4b#%+k|Z?W&MZuw_qJ;}2kz{2q?h@JiWq70Pyf(8
zu?!H@N?!m|-f;lF5G4p$Esndv(uvG*L7^)-Gv_Tek<i;*x=bpi>8mqIBi%2B;WEk(
z=e!Qn#w<0)*XDiJygvG>6r|Z$F1Az@xWd9mTC9m(nCg3dg`1b!6VuhX_H`qB4rixJ
zbd!JN-X<@{zuv3EeDdL~7hmz{<3Y8zO4XTbU9#WWxjj0vnxs~l?;vX6YR=i%9Og5x
zEXE5~YiXs_Q)*?$k6*4H3n1fmZOBLhIBuuss`gUKur#?KW`#LzJc}jC&9aRam_jhG
zbeZ&*E^8gUvE!ywK)bckd^jtGI}+hC$4k}%=j=Lt?lZaXW`Um3aV_n(`+KHY%a1#F
z?rBW31&?F%BVv)bf*HwG=iw2dY{QK!1G+0Oiymg=XVE0lR6f348UM_gvuC}Ft3ae$
zj-*(jsdX<ie;<x8Dzam>&JfDqfEm7dpKic2<jxi<#2mO-VdCPIo00=7b&GbkYh`YA
zN{zLB4VDvcu5+a@i>}@O+13l?VcfTPiPol36sm4&F;!C5*UT$_DMo1>HgTRE*Lx!I
zFs@s<qe#0g+GXa0`Ejbwu<6PEyPkq@$yY9eI;jhNSf(~PEMlZ=4wb%sOc0+IP{r%}
zgU{YKC=#yz7zVi1T(^r|tk?F=eA2=D`*-1>ucwq&(ai@lZ0++Ta-#tMF0iZ!V82RR
zhm5VZiQkDbg?LCo^3K^In&m9h9*R-u&-W$I8b{mDxYjuWzhrnjA`vQ+z$THd<NHh_
ziQSe1Ca_t#JW|55X~_JUc5t>oQ{IL9?(2M>VN(}l+E<iDi^6IT37c>~2pG$~x01!2
z`qDzF6z~%lE9x2+AsgBlWoVMnONx6`*NbntR*A|rI%e_JZ|TN^jK)IVZE4MU*~U7x
zY^oiSWAbmU(Mvur@BP|sxD+ihS*UDlNAZmo!BLVobvwJw4a_t%WEtyb+iPM>pcKIE
zlTl0+6*?h2$b0A+kEK|b!V@reb5LE^O)=^<1_mPe#l-+2e|ytIuO_HM9w)0#O4-?7
zkEIHoG7P8r?uj<%BV|mj8;PXbYw;^4>Q?vCUYJ)u;ACumYIawVd&tC6Bv9a1vqGXj
zpLD&+NMK{m%)3TT2?G&}X`Fu0sb`8BMb2(`;Q?sWul7m$qh=!S7?gi6z4GrzfB1KA
zoN8@BS3RQV8k?fuyQK^Lv}KbxbsuW^_++44x81DE$vNGZjvpx!;|1gL^NVJP(P_oK
zz|`8;{J1Z`HS(^Z4eurw34T8s2HIO%(X#cC!bSpn`oWMufx8bT6{3BcZWk5uAv``;
z1X7gbeJ;|EO)e82P#Jh(V%kYcsF={_@O`dK(mo^TGftuL!T0>Q>ASbF<4j4k*q$fx
z3>momNK@V;H(}}IK^7N)irmR_hD4K9K|cbu@-O;N*f;YVoXZ{3w`jIQgMiemYY`yE
z<Tf4#VTPpyyxmvxYMMOF6-0{b?25B|376wOW+xSNPUhY6(RCdl&5m>}Kc9L>GCt&{
z>vX*s%MieSRJfTxn-?lxT?rpzbKg+tOggdmDx}hy<WN_27|e%p3yYCQ@Ss_b$;@Ew
z0nw4~jc2rY@o3VRTD=eNFa_U`y5{E&e(*ZrL>3k=aMs0>#QunR)3~OnCg=FM^-Qg4
zx|fnQr{mL9^l}mEtTBUZ>YgudPjj8tS>fN#D7MbitZNGg1|UwY!^1Z4hwJ-HRwaBJ
zLv7=mEiO*USh3=ThUcb7L-r1}u^6JnC8U-TETcgSz<i3w-RHQo0U~wP7VB$O@h;rh
zDLB=$)eyu(C@{Ml@<TTiT{H*-6ZEChI|DN5M+C)p+Vl2$yEfgmkh`bKt^@k$-p(^w
zf7DHXnSaMHuf>#SNSuLqt=dkP1G}=B3K7cW?bYNS=L|h~&`9kv%B?mxY8l8*!QcG0
zMYAfucgjN@E)5$D+EdRpA{&+~a;3D}PL|N=G=HgvkfGUXH^=ES<&@FGamWbT$Oz8z
zy*_LD$sR;(MI^9QPcXJlxf@(<Ij6%-Pb)PF?7=8#>;_fk)pxk77@)Jwwyo_hNMG7>
zmLI6(>tfz)mEoTCDbGW<)}O;&=iZ4$-N1W->+s0-*AG&$uj1D}S;M3LVrvhLd~;$^
zGR{WoDu1R~S!3Il<K+D{uM~>|9?w^a{>=orFL-nwJ2QT}ggUQNH*#NQHdU=#YkstN
z$1~y6SCfhJ{pB0lrX>UVCko{tVZT1v@)NC>-(MY$*6Jv)J}F7h@BHbl)-rEmKI*O>
zH#0fss_Kqhhi@hfHvk8`O;~H?HrPzW`MnMIDZ=P2-<Q(1>*;>Z5qtTwB@g0f<5@#i
z=@>D!%C}Mq?|ytScrU@=rotDuSQD^Ho)S5N750&uR{0&%lwWN@`XhcEK~y0ANexYL
zJyPFu4cMI?vWfCDQPkH3F||a$?T9A_eR&H?l4QP4uL0^aE1jjhc&f&f;KRRDuvH`=
z&%MmP+*kB;vIIn3wK`KM$7Y{F0dyBtUT&j}Q%c>t6XCJl9I2E6-lrQw7*brHl(E(q
zm)iW+lA;xxj=REV``OA1?(J+g$MNWX0q0s~Kw+x&^g)t?KbZM!?-N1@VI5pKS7IDM
zNc*8Ka?ULery6F1SkB8~56?YGe<4!_YSx7mCE{`*RGbITaWYcdq6$K}FpA0!z1{Vm
zeHb<d>)ASKI}Rl2%;hLL7OGaYw4_ZP^E#i|9qLfZfU}0+rtRcy><U@irgHD4n>5_M
zejk5NSh0S4#66h-{DaWfhZaHUt)T0M6wCc~3L>jPFQpv)!n%{fg#d&@l4|`%meQMb
zp_F}kzdd@t7>PHtu-+Tdf?)I6BEOUVP)AX)-;UCy+*_twwCS2n>ja6V8g$r1v(GUp
zRJ4e=BSN4b7@lCCdax5TOGk#vmn;S@_HsuAbrwHK@z`ugBnaPo#XTSBU{jY=mEX;O
zxY9q#{w=S!YaYzUNnzH^BYK#g1~X%F7kc?zglnulthxx%1OXB%>kRhMxMWQwrpwd#
zk@JI=E$bh*&Z-x0-0d_0$-wdpmi@!C?Qq7$Y<0#~kM_l*$D<XRCk?V0vrgQ5xlJMT
zZEwTC#nE^3E<Zhl&p2hYH~Oa(=`J3y;WlYnS1UIp=9413n`XDad78)?*6PgxQQvkW
zk!V+t&24_={B&evzGkq`;ET63?xQRcl*OEnDc#rf9om;Kof_9ovF}UvzTYo_I;~Hs
zakidD2&h7In_*5F$bp88?O>&w3s_f<lK|y7-%-813ph^1t+UOM-dy#_>swIHmc0b0
z#_Rx(E!a#hQob(0vBGIsi~j!k^`f3J{pQxH8f7XTBJtqfuX4GM4bQlL_@Xb1N>B!g
zEMyLJ$bb9x#&LX4d~ynDqx9Lf3A);RSe`)2mjA$|mzN!>aix2Swi$v?n{cZ0svMw}
zBjX+vW~0cx36H8o@mv?TPL{!Jhm8J-w`KzvofvKjP3|d4;EASkb<D9#wfAsM*3K0c
z)cb#vq+&d03A;;S)^_V-8p@Ec(nSsU5hZ#kyL?gD{~|q@56(b7&}U2XC!MDw02HlE
z_y!p$s_aION$-la>V29ngUR_M)6~)dFx`NMn&3uWAp2eCJP{@)64oY&)wiEv(1|nU
z9Vl6@NMjR4ae>dmTx9nL`!*F~W$xYyzk}}li$~cV8}F%%A}E|v3(+@wj1L=!ZDd#V
z_GVXbzEZViwXCdVM<@=42po!Aj3Z|UWdMEIW7$sYM!q0v8`6w25T~@6sIE~dSDQX`
zAbARL$r}GsaJrrk$=Ua7`&80MRIeD*FaAQTdaCBI1Q`3m|6xIfEEq7JNgpide;vXr
zDn^V1oa$OWd>u@zxI1Vj&bLdxIkk-4Xd1AcEqL-`U$}Ebu9oLCWU`CPVgHRAe4T#G
z`j<Ljqf<Zf(x#^wa2x25<`?9+4iN+l^ZSc=t7MT0eA}I}L8lCk@<ZLkt(h?2l(I;`
zE-HpXXJ>WS+f9trDOkqCvTjKHu;5_q9*$_s8Ibh1N2N3g*iL)VZ7yO997y}-6%?!e
z92$-+9H~iQ(tDySvFYSq#g*N&3b9Sh>qiuw8pDM=?2<%`E@qau$Sdsc4SxD@oi^8h
z(X~_>;$2t#jOK)IZS+bB<~VfQT8^!BTtByuv~DZRt&-x~&lj|OefR1PriQI>PS#3Y
zwKMCkic|JIkJB~BQNIaGsxr^LacIivI>*;!AX)bkT*CQ+4oLgGC*n5>1c_+%?HB<&
ztcFh_Xp&5I6v34D@Ewos4Vl&wqS-gxF8gbAw$0~xQ{+We((d57FKc#5-wOBLGvur7
zDx2Q0X=@DQRO|A~Vq)*=LI(UMJem)AS{+BlS0*E%Ps{7IehigJ^O(xO9`0)@U}|;Q
z_KfYIrHwoTGQ$=A=1$%70`n^9?lJLnGi;2za)QbuoGFijPn#^OMV)gnhU*i7)sKoG
z4{09YNZk{f7WY!GvP2+Q0kXuPf6o$c0d9HTzGL5wLHxnX2;JjI&|3mFw9U%)!!GaB
zO~`zg8>}xaC+X#odp32c3psvonq5q>PFu!7*5Z<f_G*(E+Y2SwaCY{mYbBwDo*wu8
zr=c|jBwkI+<;0-m7#ad|Hq5*0rO>1v&03slyRs%&(rQPzty?e--{4ojgC@tpMCt(X
z;!`tp#*RHAwto7lqDiQ(_c>DCmh12=Mmm*{Rjx=9R6VQ%$v^D_cJ{6BTZz~8FS(cR
zu)uWs+#T<XO%^H2Kj4kF3JBZcVU2NvpyTpM=3e-*uz>tnYJpOb4g2&<AU}H(W5ZuU
zfBhbnU(US{DZgBFYbD6Ffs`9kkFS^SphK^Z2qzl@iKQbKRhD<}>Gtic++^dvf^MaY
zYBrVoTh}G}u@<+T0G%YoXfE9Pr2>dC<(}TP=vbu{n}P2hC4j*v<&N@0Q*>*7lm=AD
zDqrXjRa03oXVGKaFGt_Rq_k3m22Q%|teajuCwLq#*FBI$`;jK*iIX1aO7x|@F{eP#
z>U4P?OfBYZ%t_eO(XG@1X6a-0@VPnf)9^7{6;O>STqty)%9JUlGMI9HmKdkHYD;U)
zN*pFJ9>o0_N_^q=MxaW6(tY_2&(MPNkC3~cT<K%V-k`IPd)BnHZnvEBY&)$;ua6jy
zfMS$vd4`xY>&3-5USZA*GCPzXlCo2nVV`<GF*e|%MxB(wE8i1C7W^Ce!a#}Y{&lM(
zEnvC>A@3b>?q&>pu70%B+fKBgh?fhJ$Y~HnaA(P|(xiWva5^IizpCOYyz0x<8rK?l
zTg&OLl?j>ha~5iycbLcU0iPajP0RlDnA0BN9&$%wZ-c#8b;*+SAhA7Zsb5rV`SuZH
zYOCOk^ZDRy3{EwW^VST*be(N%>E)@=#pxW^(z3elkSqg45e{PD;*`sB$Y_6F^^tl3
zY6W>D%KbK=fhm#?D)(4!HvW<Lq{rqm5V9-sOS|j*_aq3YEY*umbEc_`B|6oyQ2@JD
zbm2J^+<lwx*HVE!d87P?yspk|qpYS|cgEx1p+DzIUi@TUW%Zr*#!dM+8yIg_o-CPi
z7PWpvqK;>hMezLU3VafakeRT2$8{)5;MkctOD{epl_KD|^CpSs*z3ewi*)Y`Q;iWq
zp{Hj@i;+sL`W$|-mU)i=N0U=2DkV)w5k0wm@mRfD#Lu55zO34IT8vS(WP>xM@d-={
z5`c0AHx-nz2AAAzr6?=TS5nG7O{$7-S0Xk^$okP1jdBr;y&RJ&af^|>!;^TBfwgdA
ztns3W1fcfW#le?+cyYW6$uUXe^R|CEB;Nj22R-tt+WQ~TlGvw4d#2cNk;o$LOA}yi
z0Oicq?AU?b5n`yU*z(8|S(6yg25HHtXq5m;6-|oFtw#%v!tkT;?WWSKHujP^cClc<
z%6-T#^l_ynSm$u1;0d4^^4{&fT<;z69!Pgg6w<rP2!umyUk3YlSBpa$>mR02s+WV9
zz?NK2wv)M*+TYK%c%>)<bqhk*g|x>U7{bs?x#EkHu*AzTAa;bHmL-9@9w%R>5cE>@
z7CWhnQ{zj!?Gz@Z$m!3HZv>Qw_KMZY*VaEG#>kLvUvd<8*9;LZ;G?};WSURs6jbGy
zee%{MwM^(mzrU(}PPl!F^Kyp<iNI#I!F$02Bqu6?Ag|_iAzqKSi!vKcmO#G%->i9?
z`1XmnWMr@Wl_!uxc>;QKJ0`#r)Z+O@sMX13qcL|@%fdtZ=Ptgf)Xg88VhjX8+0As?
zJ`#A9$}2kwsSt^xq8|)?<L?U|APQ1LDvz)Hhh<8d!WGf?zw<;mSMtNND9m`lYmX;&
zt1P!n-cZ4aA?xI3*u|?!h95dBlIGL=nRuNyqKY^ep(#gB%@?AzQDS@Q*p=ThJdc-&
zN8l43@NWpA#;wd#Blte(yR=IFoeRRC*=34}VoGz+^fd0OZ0aYz8jA^+ls;b>n_Nc)
zJTe3Q^ha!6_d0x5zSE<y8!IYf_P_kcuB`9<zbjk&oiCm_W!$Cx>WupSt|%d(7m#Jk
zr0d&7i+MCVtfC|<A?vioo6*>`+Y{O{d8}#z7n*KZ+;r$4kKcu%-4qd(6-#2Z&r7v?
z)!^wRBl6&Z<wU_#pjz*ATB=i{vN8Z!Pe-7a&v!c|_kE2*$VOjB-ygz1&(%&$mt#*+
zawi$a_n&zm6#!Hqx@>`-fez+khEuF0gZ~%}^o{B2^XKsOQBO#oK|}|2+ey#^pJC=$
zV(i&CK9jG-GG(|9t{vo+&m|-Mohm{GO0e(vJ=fZ1RYJJ$5j1A+l&HFpTl9z2x=&V2
z{s<-Jcs{+<EIM>3><%f6HCb17+v}gqk=ULdb7M-XCs??SiX!Qvgj8-nqc9_Q;whJO
zL+Z)(@=;6S7bRL%eXz5Fa_vTo=8Xo^Src(lEY@r^B-s${qgOKeK-+vBgqg@Kx-tkV
z%YTfjW&+{?gYmt)DS9D1Mg({REm3|(RSUiGI3~y7$<HHB8A0gu-jmrmq2CH0U?0(U
z`AwuexVLEGwP@M-VrGa1FZ+#%G3u@or1i<oqGuh3&s3Q{0-!8;9w(b+)Olu?Carg{
zX9ah+GoQpiM2CQEZJD>N+^0)!^XXRFS@$#&THiTrG|Q|S7#VN}n@_hSc>-nLld;3S
z4~7x3CbHUCtSf8&9BPHmrS3P?nHuN3=6p|pk!d}q(*on5+?jXuy*XGe4Xb(Rn?Exb
zmo};fz|&`Uz6#@`{7DzZhpWn{LKvziCjRAz3J`9WP+z0Kf$9i{axG$&9l|~A6ktA=
zeAAD;F=?~%G=X}Wu|e$46lHUY3`-(IM8AZo{pW@W(jv7&hKeM(f4Ci+iQIVpR=#;Y
zTa_-M+MpxmPwp4sXY48NHFc-)>N?NuK8+b8CJu9fVm+Ll5jdNP#uwi|ql@3(2!IL^
zMZMEopEQ+xA5m*Ceh<JLBw7z{C%?GTfip4<s97m*Ndv=VsS^(1poo^Mj3NdNQSx39
zE~Ii|NJ7jr^cLTM7bO8kl2m<uM0MPUski+J?|Qcbc@ks(x_2P$``71C+0<KQ*-Flj
z+$qfPlZeE%Y`GW1s*J{do|%*NuN93Kk2~LaUC1DAPq~dFUe0ol;T8O4bbOzGTJ$%?
z!n<u|qlHiH$W6M$D9h2G(|ivj;pj@-T>B`pJSQ&@(fdmJ1G;rP!p12}Xqj6x8DIX~
z#&eB2xO=8CF^@erRyg<ol)F&FRqu7Kt5zSLj=mj=k@G{8QLbu#n^&cR6Vyi$J&VA+
z1AoNavfl*M37X%20)h-#(n0)p6VF0)W*SB*SWRc|2s<$nmS@WIHoy^h&z;v7JapRF
zoxjl(v5b^G)2)!!7k65ksN)<?ER-)_u*#$2aOqAKm-hmm_ST<gi0JLRbo5{43r;je
zh6<;Qn$7MX?vkH$(Fi(W4D@ME?;C|)_5t;AlfxN4A!q!TGjIbQBRCX@39+-1Ttm(4
zN3Da-`5)xDxMdd|t!I0A;3kA#o^bK!5{ghN!6?CFW#JAkgU!-vybOZ<4%({^9mWOA
z!Nq_EmCx_BoKALu*z)VWkk?cBKkD19?*>5`e~uPcB_sUHpeD;AElI3>{h5I87kf?&
zoN*QehkS<DxF1+xWj~9*F(p)QH%y*5$X`q;r%B1_W>A%{*|edb8W?@Aoqg*q_fS^r
zp>Bc5G0^(SRfDDM%CVmD>d!cFALl5;X65<M1F0P1>QeRQX-L`M1ZrE07b71GO!7Om
z62zM~O%r44u4-QuQ<Xc}w+op&s=`dQh=FP?tQ53#BIQP^JajQvHygFZ&x<I7?|s2$
zO1OUhwgC))LF1;O%f?#_8>iHVd3=CS0&$usDo(q1GyfG3r(s;TrMmyke#_@gVm8Dj
zdQw-p8yq4wee{lY`C})gbE6yAkA}Mgeua(e?%TGP{#SWPlcG`cVdsj(+EZY`=diK^
z5X!p8K?Kk`C9Pi00Nu+mWZpwv4gSHjs6oHUo%<0z6-mjYmixv)1K?ROrLG!;k%A1$
z`TkHq_q5bQu}hfHUA+r$Av`Wj5*lt>n6}MoRRn6X3nv@9MZp6$e-7YS>l8S@e&Lh;
z5Ku_A(BxKplkq851bC-MYWj2NuI7m0-c@bypW0eoUjcRVXTcPwuw|hz%Uq&1&QqHh
zB9<!!3cf^7Y@SH^guvd~=>*P~i*zQSiQq_~mYe_^58)&}cpNJSTNKKvR^Y{{ak(7Y
z)rTf56!PaIni;mM(>C!gbJIq;k9Bje;TuB_*Gg7`;zA^IUHgVRp_5iX#f#libB-UE
zZ7C~z((eFR3>nK}xOYbul=h_hvT66hp|_oQ&_WO)n?BIfobbFJ#RSXc7T-=sUmlUZ
zuu&^?dT6<&Nu9!Jt%7eBCD$1y8ZeOO$GU6)ApjJUgax0Jc<}aZnpdB{nGh-4%p%Uo
z&Fo9Lyq=C!9Kc6q1su|O2}PYK;3Q`|GZ$xjg9BxgD^mJR^CyhJCVBdCOdq_Odh1}5
zEjG`o!u;a256}S8W0J;~$Ow~aTrw7+bgwN27zc!fNZgSmSW%71<I_8w>d0wgW^5A}
zKPcCreJ|ii7f&)F&;2n!qDiCP8<UlQX^Zj=|5ZG*Tpaz(5$)@BqlxF9cW@gu9@*x|
z{g<XR%UMiQKeGq%{V<|6n%c(*`fI<OJ-j>G__NV_zA1jiE{m&8xZHBM#QMDm6;HBz
zSi>=%^$#|SK0LosTBkuR4g{)FKD<OUdJ7v=*GX|c!>QA1fn?=s!%_lGIHrnPju+&g
z7+H|t0pk1crf55bU?7q!r*TKu2YNy$#JM_6Z|49j<DQm)uUWrmZ9OAdl*T(dZ&Xki
zVqD-~Gg;!8UEB(M(nK*X{L~~%9?^0#N=8kBbR~Xa40lCt<D7tU-^b^Idk+}MocnJ<
zXTy_Seb7YmX0N^XfrO+QU+{`?5*Tr?&<+_`St+FR+CIivh8LH`%2C+J53@we5pBOw
zz~Np}NaFP{m*Pz&-AZNAtkJW(5F05U9Ev+c)kA<nb)oQ4@KvFj6ji8}p-RO8_MI$X
zxmxoNTDxk!#o2~9gJd7n*&!L6PCmUenYtJ>%R9*emQ7>%AAM*qrd+QDY6r6or{4>k
z6h$&2;EfTfsBt_+7kw9`$%xgroIFn;Tef&FO)eqB){C9`VtZ{^ah*qk+&(9al$*Q#
zcmk*o-o2f@YA)^#ajmN`yMPl?-1z*iBaE!9GUk=(XK0k)s1D`Q8<X~s9zV|8&Aqm1
zCa_@%3fhYN6iyx^Nm8Jkg$Qx)ST}uL{t#Ws2yL2nUl~+cLrrv``QV#RpiuBA#-KrB
zS>0{4>!0(!kGdt=mzg?NJ7=_Wh#{Y?AOHOCstib5;hoHqByrL^^BiFlh2ugGIII#_
zdE#hDjO}ri8-((KAg<8k$2YR(8{m2(e1YPLZ^n2c{3CY^CR3Q!@<$2b(C=&%V#hy0
z?^&J8)rvJ=b2UQp)0K2P!e7gJ`JbNe_6}Aa&YtG<kq*R^k{gb#>RGvzqm<YX5TOrm
z5}({LgdQ<mK>N=CAw!BwiLt9Z5fR4N4O+m)csaU2Y|gQ!1t=(tIHK)|NseBsho)=!
zp$Cf};-{w!xsU1lGX>lr@L=;n->UEVPg;c0NE{2CRN|}to@V>rHS|Y!wpXyRXSUlD
zFKE$kBEM!jt&f37X~w%DK0ikm0N{O`2rln4W0@HOW|0<qrQ$4C+PN$oFNMB_g4?U|
zoH*6rS%(dGf1Tf7ji%}JJ7vK)Ht2?cYI!G?)1<giPOwDsQ3h+qoSlUHY4P;3AhVSM
z86E8Q>L(e}Ld0k;l=%uE!c^WywSw+7GP6{;8X|9dgR0!`o|hdzP4mh5V=fA_VVA#(
z9d>I(I+uv@R>?x8LLQ>9_ee4|$21)nHXo)w&{ewYT~DqU#LF$02Mq)wqg<Wa2qA0=
zFp$V#;B=Yz0T6}0IPCrWd0NaoD}!eR=+BM93+h(9SePzKf6U1UhaSR$S{^zgBm6j<
z>OQ@l0tympF8y`u#COd)Pu~UL3eYVJ6qK*>sXytO3AiI*f;Ga@zt&OTVQC}=8bam)
zT2Hicj#p-SRh?K62fUtr?5$N1pc&$XHhVYaFQ8DYv*xVI{*kp-t0FRPZU9Io<KEu2
zdEJ2NUsP?LsFlxaR18Fy`Tns8phybOoRMGipS>mw#V4is+4!Knv0M4@wM+A)U+oL`
z^oLJj^qedPY}tCR^AUX?I8?WqZPkf73&_n_f}iX&wbpz9>tfo#h;nF=6hk2H`-qnB
zQ+NQN<JdatYwDXs<dhLo2k1Cwc_!?;p3wom`ug-O(Oki|_L=C`B-FJi(3Q~J8?4}r
z_Dwv}T(4;+2A2b#p{$Sc<-))ofyCVXy>y|>4=>DBq}=b5M5;Y&mgk;wKUHrzhQ~4H
zxQHf8fCP@-gjR2lDM5+`fiPVfY0;=;hC=H&txs^~Mhf^Tg`2(dzWEG>`Bt8Unk7M#
zm1XHB_t1i_cTZ<lyQ6V;CB}-vaYO*Q*-p$g#4A5^Q())XE@)f*I_7XUfyphU+PC*f
zO!UcvzoeV*v}oLd;@lQ=7EXREwT%QaQhPnos&+>_I`w@I01=eBYR`_N$_<cHRO#r;
z+v;s5AprCUimNo1@rL{*=?7kJu-^76F!$g1_<g$#m<MBG^9OfV2jI`U65g4*reC$F
z@Big<+7~~GMfoCc$Vj|;=G-CE=?cDNT8yW>_HynsmOL?udIf_bS%|`RzrlQ>mXcoN
zpp{RgNtVm8bq{;z!9&}bqXZ|!?B~+A+3QsFSvEZAG1EJP=s=9;1Z<bf?~0aqxVf3^
zfU`O{O%59yb5!CXp$Ei!4eI(C9(Om%j>Zc}g8wh}-U6!Xt?L`56p$7Pr9oOiLAph{
zTN*_gq`N^vY1n{tcS(0B3ew#r(hVDshHq{3JkL32yx+Lrci-<m_ueti7+c2P=y0$9
zS~Grg&flDCwgHHEhJj*d_D7J!AfhBW-e%`Y#bui6@m<TCgOsk=g|Gh1DQGBf`7oZ)
z5wwJ~Q~yCOzn*zmo)1@<wpS^v<mI@~wJ1_1sQEw1W>gxKvt?ZrGDc^3p$E!B%f&VG
zDzhIY2_k(zA8LBYTiHL<7PN$JK~SXXOXqVzy4<52q@10+#v)-tQUWMSJyl3t0ykAo
z84@fU8PF=oZU4?mHkDSKcTmVd!);e8p53ipK=r5S#C_RB?5V;2QkbNh<(fH}8`I);
z$$E;MkGX7%i6DnZ+V$supB~o&Brs98YS)zGInUJ?t6B}snvIChQ>A1Zq#hPc<*13<
zfHEkS?i6n)?G#cJJ10@>>5-nuq`{+y&wHJi{TN_40clSn;@&!!a6q!G#9OXdB1v4m
zNfsdb<bh-X{-2Wtt%vz`OA`iRc5aCcM6*(h`csgG<ywPqCv$y>pG}|EccBSzsW1ID
zp=%F<-zEqxW8OuJcWYTK-*@P7B>Z`HbU&*9-59VqZ8+${^*!;tBH2`+K*o0%(e`?0
zR(h6!jXzh*l(_XBp26Z=j%_G&P<g_ezMQD*N#j(h12v40h82>lqYUZMCWkga6?on*
zOPDS{nmfKga7RsN)&CQg;8ny>Ki__ijEC{?bXPi_M-SuyqdJp=a$v%EF0a@~ay=;T
z$8?RVoMBo4HqF^HwG!<IX4c2Lfp&m_V91EyDa)xQ{mwPG$_v`r(e>eSyJkLXCg*(H
zV;S0_w?1~X?$iLgF@2}*7)~+h{Fo>w#ZI||aIu@EC4${t{iK;s_)aqXrOoXADSDVS
zq36ZEI1;bXrPACpoTfS{47}noVq7~BhTe52+1NNemruN^+{;VDNpym3$|3V>Z=Z;T
zk!GY&c(jb`dWmLdiMnaaJjMrgaZv7h{;Sf%!H=hnhB_hHS}3?sV_o$ihII-Bc`@@o
zzr#cjJUx!UK9S?ageh~ajMA*}0TDlL6I!%4^VD{=?kTG{dFGcrMMTvEX?~51z7oJI
z1(m@M(?Ks6mp`^)%IAwe=)G<}3g}|aAOgj?dQzhMINJm`O1%ikq88tXpH_xD9}!oi
zx@;{sj7lm`^+o55j8I>O<mig8G3~Z6lJM4W1S)ojQV>|Z)o!UQnxj*+TkXHM_R&Z<
zAjU`Tz4G3k*u4NhMvk<(>+k$4)EmxMNy{Y%3@PU_#3rT98$2;O&*v>Jsj#}1=nalc
z)lyXpN9;MaIV4YOvaH@7KfLyY+QhS3CcPIb-0YQKTWhMvvJR=jgU%vux-RyPtBB!c
z`LUx>;vKDX(@{GxOzkJ>E8BsDaIzO8a&6oPdIQCG-(HB^4vk{#=c8TbN2OdY(QHy_
z;v6722S$Qv`dH+w`NqKe{D39RZ6c9YVM%i|c;ybat^Gj5i!YJs(jo)IYl8Jc{pLeO
zu(IkztK-E!ZGpjsT8ZxFS!GMbk^imHg*&gJ^K}ZFM@pw3&Wp)TNTdSrZaR3O#*a~T
ze<zGIdB%=-W~efzoHJh0ysX3lYnFCg$IZ`8Pf!PY+&FV}p<bp-a#=2xqnNiq=Fya6
zc4-^2;Kd$dM>YF|(}780>^3pcYlm5Wy#T_RbU0-H(FWH0cO17$bX-@uZ~K~;8Lf%7
ziKEMOzTRlEs=m?hkE-)?Rq6uCcdHH8W;zJ3V2t3Rbh=b(7OET8u+R|djY|V`p+8*O
z6AC#0by#&IQk<BYh_i`W*C1^EsZB3fSR@E1<(eIbrdtmBw9-wPE_aka)JMznsD_4r
zE8gW%RC9Pc_<4q{&%D>3RAD0G^OI?I{Z*O}2nbAL`vvEB_9j&5TmX5^0ZHTeDEH+d
z+cGCD#<F>7Q&i-WmNc0%w$r6(c~!ZYAdVPQdT<w6(lQ~s)6Pu35{l(~GgGGY{-acz
zGY#8`^uX@iX@N*4tvOXwjyC4oXwS{2PCMjaS-y%`oe3_J{#Z$xV<WPgH1EzYr=&GQ
z-Fphm@jYV%(IdBeL_gB>$fLh)S~V)^liXJ1?dM;0Hw<xK3{@X(Zx;?jTm=L*TN~Hp
zce4S4Sl@-v_+O=ZNTG7H8Wu*o>=JdjD0Wi6uZv@Hd+XZ2H@(|}TAuN`Ak~n^5s2MV
zz-D3XY?&l}qG2YT_1mxKVFqE`YE8S&=iAq3Z@SPQp!MUW$huR$e-bh@aPD^}<r7<S
z(9k)Lm}1B&s0#YkpH~al__JMsvP6vBcCXUm$gn)!V(so%IYW-!z@gdTBbbejKm$d5
zJK<ylnCBI0M0&3jC}K^?_45@QHAm~GIh6=s8QNU#pJUe^m8x@g7P22U3zo6!YxeAD
z9Eq;^=ot91T>DTv;-WLd1;o~AtgJ3d^#$q}6xVd(dr0`?`Su@H8CleRZJ+jqSXc)6
zd&KG=i@r8!%=E^9I?<X8MERS~_QnjbSe1C{d}q^C=~ogyDPw_IE3m&XvWt1vza$C{
z6=H&LUHgN<bgn4$)kl{DURGz5`B!aJ$%vL^@#M51@d2Jk;S~T^twTQ5U-($H>42wP
zM$&)#K+v)N(F<p%=0|we#7VGF?OvZ5JEOlCYdLYeLw6g<&K8d<zA4ME2De;|6|+U(
z`t<H%Cq6h?w%4jVV&M|1Q?9>rhhBL_zlK!9F~Ty?|E88oEp$1k)@iGA^S$n<`nang
zW@6N-uj-Ba`o-Mb?Mkp8pHWMHKU<U4IKZSOl!!gr6VWwKqJzdCR^P4Xjx==;26u>r
zny)F})TKZ!Q5eQaurT>|b`iE0$_TpIy5ea}Im649FiHy`ozeUvoduKKWe!D>Nc(~<
zbV$l22QE9k0{QDTkSyx&MAn*D*PzCZwD0FXws&#A*uR!6)FNtF<&)s>sp#WTXXd)5
ztoykkCHFIib>|g6OEODvT#sG9^w6ig1>9wHS~I3Q#P1??@gvJ4_H$fEr)<CbAlGqW
zm*u^=EVvbxvpMH|lhTcV0}_Nw{!lLRW?_^Hg<|}sL$&^zgQapS?Z%vZ)GRF*zPK)q
zWWpRlu<Bm9CYM<AMHd>q11K?K3&jrF7~~XSd<tSdhcdEsNwZvwH=pllola-RbyE}Q
z#g=P0&x#y(kE}1EhQq!=A`Sb7!k8n3JoWgQ1+1QXlK_+Q#;p9R@;C_}CO#0MU&%%$
zA1tgm8DND;;IoF3xOV#P(N5Y2&y*PiR+`KzR9nr*mY{9oKL7rmHSpU-UH3sRq1Z-(
z!y9xNt@vHaU<Uj?t@s}@#FbCQQZX{xIKVe)f&6u)XcXW|fNy!|CzPt|2Qe_9sqlCM
zN`v;!*E03x@~96LPTLEHa#RCD)O4dNKE6f@N`@^QbW*@%x^3`Zy%n&h`EVCl%_n&1
zxuP%urv6<{kpAA*Mh#+v7m{#c5CbvU*fuPdL`M%;5g25FC3L+OM=L!hA|4?C?q*Qe
zu$O-SU6N0x$Fojx0!_EO^;qg377GEwxl??Ner%CO1EnPy2Uu`~HxsB<O;Jjg_`$X^
zN(4^Pgox8D<u1uc68~W=xK{TWND8RE;=GFIb52TWty@)z06ak+oRDL=Y1DY<+ZgLi
zdhYu!Qvw#SO$XJV5Lh;R!sOo&5B!oY2Ptij>N1}hk;HJz53BlL(j6gW@ym)5C4S?=
zhV9^&XWzRROJdPj8ehoqRy9KC?LN9+Umk;2OS0}@x%X``g|Y3d$e4G@d=N3Y6jpjP
zGtl4hI_^aD3!JO8%M;TRaW>=4KYYJ0VVq)9t!;BExO_O=51|U@lJW#qu*vF6HkaL|
zURJk09VqBA##@}UGlOX>HVH_?43;h391Gz6&{}`N5$^&NPl#P#33&&pTjQb(BeZVu
z`^lg<S=Z;UcB95CP6qu^GWsnZ$I*qQC3JXTWQ!bw(|ZVms#NpU8RO|mbhsgq)6Rg^
zRQgWm+MC)~5aecevi{B31K<6pm(TCr2#OE=^RHp=Bb;Gc#qx~#M%`i3^T+EI1&qSM
zq45_J0Xy4YFCp?@-1FP7jHv$j-5-DXFa_?Y<4bS^+ONa=_fMY}HzBDkAOii-J@A(W
zVFRiZj3wmrVN&8RPXPYaJ6fU3C;OC32>)8)?>FT5H{u=*cox4w!5{1RwN#|vBn)yR
z4w&=#^9v-$6ue{_QR?7sl>3*8-~0^nzuD5)>;ED_{%JqKYW~?$7_a4@E&WGI|Ey5|
z`-)Gcaz^>bEP&sp;2$FZ>(BeguKvX{{Nt+raaI3#|9=40AL#TK_WK8;f}rUCR~S{`
z?aw(kvPqBQ*`?f6PpIip=@fWx*mC(Z4pivIS`f`)?9e~IT9sfScAaAy6G*Ya3edNr
z?jCmV|D4bPIqMDt9rYQWI1n7&#9?)I#x{u$U{$(5qjh~8c&)>Ztl*_IKg=l5o<$R7
z_}ZL`f3MYV>3p}v>2QGLem@lv5%U|;WmmS8N4$TF67Idf2?ZV&Ii~S%<QXhYnKN{1
z7^g6HkhmqeA8d0D704Rs(YS3_#R0yPOjoL7z*a@SKtaD%%O!)>+&tyw**t~d#fjgp
z15;v6449-L$KAhEJ^coH9!3KFx;kxmlIH{6X-IT0-7nOxx`6L6bqaTv<xM*GI9*<a
zPHmQc3(*)xvb)1*oMcmtPV!XK+OjENl(n8_E9H-@#J>U;AA4A+XSV>m;hHVq-GJQ(
zk>0)@3|kYi%+W5hEh~Ca^~I_4eAmm{zNINV$z#l=91PSf5E!_Xj)+OdEz}HXwey?y
z%dpNLb?qy8dc7-j?u;$P@`ck}!=BoOdhWyF5i;YR1P0LZ$8wn9SmPLLUQ&{E<^htK
zLzON%#|fK^vkxt&?Ui_5gYw=?Xu4*NJ?{f#aKMS~KPPFSYm1x9DQ@cbnfPvMlz)o5
zd=8PKiUf1?R9Q8zJSPRS914Hh4)|n~BrfepU5o0c-3nfLou%%o9v>QdXcec+Y^muK
zF@zkWXxGaB^4$GRTLr5P)Wq0ewSVsALoK2=Bb&XPPt^X5PQm+o^srLVM@h|1A+2IF
zCR5PV!s=~?5`?1CFeiI9a`|@O4m2qECWm=0gPX8p9Z3>-+ds)GCj?^LXMF5_hDWF)
z9!^3jFL3l$&#t-teAnfXUUCh>?Jl(%j#x0})Fn}=FA$TIYBfb!Sm5e}D%UF-!jbZ~
zHAD!Fzz%8AF)f+hAbqjb^|dB(Y4gwW!*wS&Dc-}5TXu20w;NlsMmBM|hB&MyTWvCC
zOA2S?3F+L92<hUqFF0#3kxN_l3l2Ai*|V9~zKoEi=W<w$lIJy;X;s)J^BS+!vTx3;
z=?)j0vw&;s3P)X1J)OQ4mNsRDmDXNJ)n#hw)#%kD_M{soiiPMVVq$OpP3N=`BuB|+
zZ#_IrliLm$%KOA*YJ5F#c5c{Jxo<k%gfTfG!Ryr6HaVd&=*D<_0dyz^<Q5C`MeA8_
z_I>nVf%b24w);&g&By}8jHxMpOHtCy%I1Mon~B#RI&+hUvG0GJbuqdG2;s_{SL<Xc
zeeEi^vmKoi7D>{w8)4L|*&z1ix^XWFHe<DEtB9>X5~mG%ual+u;#mOtHY3^Pd?0KL
zu0*g=4MWGQRdP_x5s|7>DJlTb1IL0Bl#JIQwr?fG#7SH#wNJy%vjCTVWcg+LAph}%
zh+6TB)hz5;k(^m>MN(}itAUReRR7YZUvGS#;esxXP|&9{f>`5u()=E-0gPm@{dDT(
zkkS3qfh`*S{+v9Ag>$>%Q};D4TIg2Y#s!$?8GVYj8w)0Qiay{pqsUFx)E!;)+~%pY
zF8u^=Uo}|~`;7vbEMo)b<*K3h^~};*0a1#VoV9F@=w^7mSE6IhH*qqLJoy8U&qAmo
z+044gQ=kijVtd*l(z4H}7j(&Qype;<=wMc236}Q_=Ig0hW=m}|(h_@RM2BW)yq^i~
z5+~JJeUA2EQMdc1ljz?`82Gz;R1wcF2dzjX3)n0J!PJz7kOyoky3YIDcn|Z8kKv`R
z{rRhe7at%@8@=dk7js>>MbPc-*)~#)vu85%b^-b$xW5}GjHFU8m7<IEeLL;drHNDk
zzOqyQNC451Yn$`On<lq^8}T%go2*Z7ALuqAeAE$^QZROTx;mXLUdjy3k5*&NBfngp
zbK9j_v&t#^!X8c26Jbl6l0~^blIM{rMdj-n;!_4|%K+{BkSL`r(`bC93Rix6kmIiB
z6&oZNwHY9@g!5SViot4az3Z+sUgR#3O(!f8V>X@>x~1HtX^H1Tpcq~-UIeMuYleRT
zYGr?R4nhbTu>24>UdOLP=P?Jglrtli3QUH}oa*@$5~A;*pq%mT+o0d9W3k}by7pNL
zFR{lKXt}5x{|<ND=AoEIh3Uxg^7A{6#Ec_x4<=&wg|)<z8FtGOVvobJHx=VPW0rfw
zA3#G=n16JUhMc|qa%Wgy2y|IpPXdft=`|vS5i|b$5)wd=93eYkqI`*Ww80U3`v}Ua
zhIxN%eDcd_QG+k8JRNN`ZJ)|&xIncojm(4P>TKR`?P5HxU!H>sRRvO5J(DIoq`!K*
z>&)dFMPOHBLtOp>c4b~CQ-i&9u^+(~*bxoe==1;WO9#Owc%dg|J788S)AZU?E<kX%
z(kw<QW8IHuYkbgUvMtujZ<Sl`&p@s~4Y0}HVqSK1b}loz5!m$&=jC$bk+2@8`Pqlb
z4RZ;$7(?$K=~SwXQXo8{{1kv^2`9TMWG*(kJ&|2yF$pc%W!g=tdx0s~SX5y*GLLhd
zs;<k(UN9ajLSkrNGwT>v+I*&zVvqhAlnD-+$Qb`-oFvFWF8GdxHfH675Gob%`&1w7
zL9?+U%~IB23s0v^&`a7Un&wbb!`Vz-<FxyIY%$HL-^X^H+DqMG!uzzFMX=Cd#>zia
zWT$Fe7rIY-O<O$mRPAW;YS7Mm!3KQ2@;cM7Wg6es$2P+-+*5qf<71wI&x-hoLSFOx
z4WQjLvjWF1aD!|`C|C|{wHPv#-JQp+a>RvEnD}eX!=De65Gg80@PV@Y*1`ux<*W<S
z+(Ox;Q8V3CD-vn^l1Nyp8RjKS9n4cQEt}=UL^(K=_{HjF677sxVnnd`9~p*CPFZK_
zmX_I*{tc9TxoIl3=u+bzAaxjd!fN1}Lbc{AYWI2)>MymxsGJkxezKsZhrgQa=7WA8
zQj=H?8hD{#9!l0B@5+b8rM`SSmD#2I#n+c@E@ESD<9w72yUh)JKTq0NJ%4<Im|JI1
zwg2#}wR$mld%!-dlt-2hJ!RBPMWtPGmp|NgD5<B`uDRf+UHK^Qv!?Nd3&7%v($XC1
z=Rt^?=hqPbtBNVG!fIvhpsgm`R(E7_RnM6twYe6+y)G#AG5tcZZiV(vid!7xx9s3C
zl(F+Rta<6=GtP!1t^uM4Ugz7K`75uH2ET@Q4mTPi;+f{c#{BdNI(C6ePwi_$1gox2
z`f@@U*zPbVJ+Uj8al77dKVEaxlCOi3jpw;q!113hDSzD*a+8i$>l5qdDZp9@Jq06F
zgwW)^`#a1GQL^9$*MIQ(x3&6(JzE2Xh7QG3sUMb@fkACb)mu2_mea;VMTVE|2dPi5
znCaDbUgJUXblXPInNE3l@qkZc)OE@vUgKJS<8nRgUi~5@-C-N6`c33d60L%l6;%sj
zO}gy&uV8etKfQvIZ?NT;V%xN0m9lbJ^HuR_q&S&v$XoS76v4cSI=fu=y-)b-ljj_;
zt|)D0PHjEWsp|EtKAc-9gWf&9D8kkOqJsg$O+U|qmE+>-@5<F%j~(Iv;(HGs{Cv`1
z1wR6KEV<tkMmO(JE@U9h?uNbbi1ESg`-qV^^3<v{1C`x!=-H^p<<Yp@$Yh716D`6v
zUfi`ZCf^>p>h)0fwM~+TTaI=I?q608o&p6%6eNm6w489=;LT^+<fUg;tZXZ6&M`i|
zg3a1c$n92Vj--}e?F9FVFXwcrW*Z(<7hDwst~sx(<5=9cG<d4zi#r4bL6z37{0AWw
zhFG)=OkKOYj^C8!`I*7h$JXb8Bqo<Qm=$=XO~TlUoXHgT>KW}{Jiq&lp{Jsshx0D-
z6kr#Thd$s?R}6WqSIiRFn|w2|;7=BwI?>zm%;0WTzGdugQ;i1C>=?~F1R0B%9+XxT
z43CR8koHj-L|;<z@6;|DPAxTzehf|uiI<LDxrNr%9uS=Pyl##h|L>rHPV=VbP*K_C
zQ?1(VsFZDc)XGjZB<I)8KBJP5^RiNSaRb`RIlt7POGG;^2u+hoVO856`m!SmsXH+0
z>>71hf82{k(4$3RC`FcJ<0{ABj@jXS2FN*iS`?qR1<tn?=kWWQW_Q-e=RFg>!q&1d
zG9Ulw(|g?AgozwY+Y^B+&nG$hsSaPRn$8+qj6pH$-sOG=S+-+Sq6+`@pG^?#y-*Ge
za0dH<PEjXinm(ob;ulKNlv5i^sBAI1C;}5j?_?;ZD1H`}wm>kGHS2f?&SX+q#l!f2
zauMe+1z}FtZ5EqO_ueiRd?r5Idn#{LYcafof4Y{5HCr;St)s}})F_fnW!H5SQ$QCu
zZb3P4^>eyZ?)B9CXwwxmuH{>b+s=B}K~IHz7x1HaXf;tc_1r%l(ZlZ|tu&W|#x7sW
z%|@ZfBkkQa^Pb9Yb|VQ?z9pIbX115u*E5WkuqQ%EsG=+(97+?k1buq>tWElUrc@mP
zr(jZPflWo(!jI2%<B3>sjDJ(;S2qpG94`xrO^|<*F%u+Rt5+EjKE??(K1#sr3+vR&
z_L_fbyFtIKI*ltYKx5F3soXJ1r>Dpm_#ueHyFfDg^k7N(I_k+{0PmfxFn4}?Gua{{
zxsQUEhssi9B>N~am&iXQB*T@`Ki^W?`4YVhP7(sfVn}qsiqC&l9G}O(16u!uH=i0~
zY`vq^?gli(78AiN8kFh!7r<>_EfoLS`l;zwyl7AP>xBmn@*~3PT3gSHJ*;OvY!3%J
zzJ2_Z8Iz7}DH3oTjX{+1>81YQ*&^<>r;1Tu3Jvf~QL~QIvK)NZMd$!LG&#b;nj#u&
z&tkO$*FjV63Y#<ss|{{%OrFi1b=&@?LOv!w>c21a0?A^K?4Y#hWb7?B<mbkq-j(Az
z9yb{3!D<3Ya@x6dXYO~8(2j2pP?g|J?NZ+Rq<@pXFLF0jgCD?C$;Cfamg8zp(mV)>
zSB^m}M%4#w-q#>BbP5S<;cjn}DxfD?E~Fzdfx+yeCffeJwF$xH0TImT1CreD(A?yb
zm0%OG(1a1zxa=@mZXBa-@Q2fKj;_YRJg)RI1C7NdDJZc1C@AZ&tB|D&5o?ZW*X!fg
z;?<iDx<9Y$9;le!u_z%ikxjPUI$7wu-6npJE;JS$%QVFhsLIvWy!Ydv{2-jfHa)Xu
zyX6|5;lVbj&Kd&ex>IGYUaXFzg;NYVzVV?8fm*X1YjL18I&Y`Ou)ATXOxnDLY1YRv
z?RTZ#i*per$+M8Rp1GYHhAH}r8ZGF5gSTv@SCpUM0P^*O#pxMQX+Ay0)Q+M!DO23_
zr4&0R!@>y~vOfM_g$Gz&O8wv~!pim^WBA!3rVx&y*xu=`UR5(XZF#{1tNTyP6z<ep
zSk%@ELpEjOvE~1+2h=xJT~nY34w^k=o+r8+fZI7gHC?k!8N;BacBERUmrHp^wNO(!
zVSY$#)MZ#F!}fUgI08U~qAB$fT}r#vUL~<X;HnGiml@-}UEHb|DLWMxC!B&_xeb-s
zF;;XQzaSFA$w$EnZp_vg9#aAcTs8ENL82l9Eu@kV3nviU5=AlaqD!!(R;u29BPGfV
z_cG#+VSABjh`=Ut=*>*aKN*Mgn~VnNjdlJmk#9ZcZ&n<%^?r-Y)3CS8p&YOeBLP*5
zxmT0Jn(gftAat-g3|VmhoLGb)nvXuf8>QVTb3AJEU90{h!fu}K1JK1*;_~OTRhDPw
z#_3cOp6=y7h)AOa_z%!S*+^!0QqI*RYf74y0A)Zej^mA{R`bOM+8~Z8P?}^emk>Va
z8qcoEb6%2N>m;W#Mc_wnX8ZkV%?~5OyfMxU>Z|a^&+w#o<CL<cB<p1pdD>QYTdtW0
z4E^p{L@7>4EO4PAYu<b9X*zf3%%MOaJ`{uCIM}wSmh6T|`EPj@dh;uQngf%3l2@pb
zeUXt>xH2+Kj3<8&m`vX|!`h-?X}a(QGlj5Kk=tb;^uz7lBAdJF9mmBUD%?c^zmT1T
zs`1sJ*eD=$DxP7iz2P_|b;C%TlY0yrKi>Z<(qRtrv_Ft#hl=9Z@)9CH-q1bjH&4DU
zjaHTukfrabcL9-ruY}|zWLS=$I<ebX_6fE1Oj$=kJQ&w^jW>MXR@0wC=oCLd*R~`(
zDVnO#!bs}WNQ8-dT%ox$QuU?LM$7?kA_u{WBX<i2!z~VV%*tdQ`)KphI$axgz>mx_
z-ko-jPjLl}X`Ds{W(U)a&KEYcT_c??M2~t$q8~GV{&w<djA^LZpxgbJl-r^)$z_F`
zeo_hQz{+rOC~iqUQ@zdBQC8Djq;VRtxYnTF^+9w&$gOu2FWatzcVsIdl#s4p;5h5a
za1Um_yiq$neN*GSm1I2UYW#ipE>1Q%$!*b78dcl)-b83`h_aHKVzXq7w$Z`QuDCM;
z(i-jc@Oa5$=c9VJl~>#sd*vBNqPtr(VGYW1JnQ#Pug<Nq-}sr$t+=oHS4Cc3mU~Hr
z^Fmoa=*w8h!5s8KXml|K=f+V2ZswKQkVIeEvD;H_wpAHf1W2YN)oBOB7-|@Vrw|6o
zBthEJ^go`bKI-UMGLJ#D1Z+yA^{0y1Rmg*GJ%ICr46=Kws;b#j4t;X%B({IVdiA2x
zE1gl<E`8-^JkPg;mq;PH9`!u*jC!gajB)(r=UWxwjTNSu_DxO61;bw0p(aP~kz@R}
ze~;eV$f->Aysc1CaUa!bcqP<Ut47CwS*No7NjoVW4^ys7vVcHs55>k_!)}XRNO{YK
zS-!#o!u<)Wx45QGPT5IgB~H=PY7vMGA-B?1FV0<C6oRiqxZ8ZO)7;UXG1hs|uP${l
zN5?BS$16y^A?xC-D`))H(`1{2kSNYVa9e?m`ZW)-I@9!-0}<L;W~JHi3xTVpYy0T4
zr$-!Y?~D6l5&Y6p`y5tBxNUo$baa9_pws}t%GBk~ze~L`*=YC%QED*acc53&r^KU?
zQsf#);5m3Do~paGHhPO`gcePz$ocr#vjuN=($?`7H4stAi}Ew&=FTW}VPomPeA<j*
zIqKl^ts5XiV`%s><kgc$52kYrFURS5#y+UB>ftQ*KTwkbvn?QDXgZul_dt@Q{l0N`
zQ2HW7=kBDUX62ha`<E?GexZK5HzRto4?4MjdWO>&uO#J5dfPrVeR%x=D$|T!hR_vh
zTj}SmQ@D54kahJT-W@~&{N3*+*gn6T@k2nQK=(J&cx>elq4%&BxMj0la0JWOb{VI7
z6ezv@Fm6JPW-4Mf+9atH?3kQ$_h>ZvX-o_6I)ekC_4+)0Ga-|V`71Xi#+eQHtKJF8
zn<E7*Fu1IGJlCRW)YB8}iX>_`vWHr56^nnQl7M@_Lrk?Xuz|M;5!r<ePsB`Cq9T=j
z;1vg9bSkeeg7&Jrv8=kFK1|btdw3aKiS(X1lUlj?{!1x$+Ai*WN_1_wWuhS3{ZNS2
z577^U2o}+HN>l@s8;>&jGsy4C7jlFu+4Gh@?p@=wTj`BZEj-{b*zh#EmwXG&xVs!L
zSXKEqAvMonI2{iUnbbL=^~F2cP*0+#qoOH-o@Z2)Gq5=#>mK#z@`9I3Yh^J<rjc9&
zVWiv|V8lYegG}l1>T-YuXZD>HSWzc_UaGNXfAAcISh;d=R4O!cNIbcGKsSGAVPTT)
zZW;0FjD3P;K5HX<om%BWD<T<JgGccUvsOgcWtrM(NF2hiWYqg2uP@boLyr~o5(2+2
zT+N|mL7dEL8cV)OQ~s{na{keLyUOl|$q87P?j*-2PYOTXEFMkkV`3!3E!I|6JL3-p
zvzh5;_~<%5?=v#1D~Ej*y*t>`#^E9cnsWxLx_t11M<YF~8}$c?HLBgyS)c#hn$u%$
zTH4Kv4J6Z`jm`;C>^K>&lEyk+jTtXE2ppSdQO;TBUKq>M6@OzoBsEF}eMC91VLRv_
zCvn{@GP-_!b)0U$HKZx($PY3?uWKvp?sn<buRS{>UCHI}Za$qK*Xfw&Pjb@+V9s{C
zYP=h@BQ*~_-RojMaAt!JLgsOpUhls4{fX@kH{LTR{|yO|T9km9bJ7=uD}hhJy)hxG
zA&u>-cAk998b}uB&zLlZ(Day=iTb_;kU}ajlw?|NcX9F)5oyxt5oHlJ-=1C~22r9h
z5(QTqxJW^JUE`bXP@^iMkK8?#kK8zsj%kH2ahHQ45ns0*^cP5fOt;g&UVt^y<=H)t
z5`C_5?=?Ma{9~03?)VYefR3))CEhY0@5?Rw7%AM#-(C*^6ES#<OwZZI51n{sdYjkr
zP=$MY1iDj~KcAtr=^q4DuIMYt6B%$zzs^vx;|K!riPgr*`|eT*Z~c*K2S7AY;$&VD
zB)eK>dih|qD>R(3BnsqTWJd9xU#k-Ag;#+G^{h}+&|nUM_TJTg#+>PnOPTj5SMt;d
zm6;+=u^AOdC3d({wi#sZD(>l&)uFpG*ehAgycL)Lh{#Z#4~!l&oPta;oM6*TXKCo1
z{s`XQX)IJNrdH?vIXr5v{;eg&`AczsyV!e_8W@%=ciXW({PD)g{+kJ+5eLVN#rP(3
z1o9Zp$8EO}9(coA@~$T$3aIO1E;P>-D2B6$Mc}Bj;%#Mu(pZynETJJFmDgsRjJW-d
z781Q527edFP!XHL5hS<lGWS~Z)LUMTLh_y=lh{Y}BsZztXFp=MR`FN7ck6Z^b4?Y_
zb1U}X^`gQv?gr|kTCNtm_SbduHY&YYCWt04^w{3xB-yKTM;bnnf1V}!ddmJ*`vPEY
z)|)>Q{OD6&)E)8CLuawHWYM_uq5d?1StsPxnW}R0`sBpOGw$h!y%*-`?gwmT`2o->
z$%OUsSBXiPpb}!Aro&|w6P;0R?@Do>iBX*ehbtnZ)uvLUVR}X_CiKf7nXJyhRw=Jq
z^S%+74eVE#_=9K7zFwcrFkDyX(DZxm7+Di$B_4w|xgT<f()hDn%YoW}R_+&ZpScD$
z+)g|`pSZXkhn1Tih_x7v#XLr+_GpQDyzkE(2gMMDtYJc|GQJY<xO8#eQ_SF1Xnu#U
zx3**%ZFTpkLxF-it*yA2w=<M;$x!T*Jr4ZXh{5&2XFFCCiBw3;Ov4I}q4>peTxz!1
zwoc;X!TdCiq2{K*Z(qHdo-SXl%T+gCr`SS4+Y>m!vBWn5Me+hS=7A-0OHGK|sH3=6
zSJVYxz4M-hF2vxIGv4?d#K0y-#_^zBHU&oEeOhdn_SF}Qd+G6gc6VP0;O{qh5@NxI
zC#(zR<yxsw(CKH2%S2Iy^G&gv{P+QD6LLM=`jPkysV}$54Kpg3xsmHD4qgK%t;_>z
zSa{%c@zL*mOdx@^WGCEZ(KFQ@>cu)&w|X8nl!rD{OpbwyUOH;7yUX=uXF#?&RU(wt
zxm5y>0!8j?{r9WjxW4F7^Vm%W&sb})h3T=@HY-{J%ZXU;V(=gpF|Qm5L{IDKiulsp
zi|?5?i%!z4=G~j%A~7Lgc~MN+x`G=f|MdawRNof2Q$16hwr#w<*}N=vamS+|eYf$R
zPT0VlUbEv9kPnjT-$Be$$ya(qk|a;|!YO>}-nv=<vB~8im|@f%%dE)=t6w&PNe=5v
z7D(*D9M;c}ADJL&9td!?2lRl!<BD?^yF?(3DFNWvZljK~?z0<D@a*dc$4Q8l=2Nw&
z3e9RkPqr!P<||E#Ou%}v4W>kaCwRCKZt5TX@%98B5vN7U4=yyKMG>soTwes2I5w{x
zTW)}Tx;Q33z0)+0^_`M9Ke|up)kMdJJoP)xSKnr6(DwD~EuB(ca;zdM{psU82ZSzb
zVTeIM+TEd0C{WL5Ig;D~a8eR%%O9|X4Y_2em+k|SZ9u;ivSyRX^8@bHq&rZM|Kv3l
z;-E)NeItF0>R;-9%C^iR_a0=E+}Wv>EbGk`yk=}Vx)s9?wu!77X+UXNL}C2f)DFn0
zXP>#B#t>wuMk7>`FT<K*J|UBBSx+WKg=Lc;>+89JeegFc%_`Trznn-?lcgidO)LBA
zRwB!?)?;1CP1#c#*;kXj;~d=LH|g5M<Rzt2U#czB+?0jaXA?SL{xqY34mM_qak4|0
zd+ib8d~ZU2=3WR=lxS=9Zq4gKma|EvX3>7GI4Xtax-7jz1LePbnx>hLDiFlKjE*`*
z0X;U6Y;uC#WjM`LVBQv5BX(cmyn6*>#XG&#T8k`@_C_n$Z8<7qJ_V+iRJQqfxfcBL
z2a=i}u6WBD+SJM)T@=G^Evjm}0e`B>I@#O(+n-iW`EXe5OIle?W%)w{*7P-+9Kn2<
zg|RG_zylVs8-FEc68u$#ZvGWT0A(uDvi4Gt9S_`cqVk2P0N1kCQc&<$xav-B5SW+(
zp8t=RKOO?=Jg~dx#UB=WPwnaElY-MEXaRVnpG%rgg7(&-ythYySVjKmJ?*uO2Cy+n
zP$>yC25<ot36JH1zpB&k8f5NNPI3GeZJR~BO|C!AU~%pQJ9Zkw-`r}@MF7($A)MRH
z@lcE}2C`Jk7NK+=1kX;-UX|rUL94_dK4@jKeK&JWFx)LBBoN+_1M$+LOzYs1?BW!g
z;3j+z?S(%i49s#jc$@5(PB%|16mBCiy(E44q&+ZD1auP7-7H9@OexG!G6h;Gk^-Sx
zHbI7OP<uJu(hcjMq#yp(FOY_G_v1EN71I01)}0V5a#HgL^v34T*Bh|A#tDMiV<4sM
z8R*(UmbPIxqwT&Mw29r7KmulM{w_R!yQEU{lh1vh6d+cZU~LbViKw=S(M3;J;9NsQ
zrfBpw!k-B65x+;05Q4d~%B=S>ww2OQNG=I9i<n-V7iFUA&h(WI3>itrWB%fZQ-ixA
z^zx_`-ug)AxFhbr7?$AHqLP~TS7>g2QIwzMUW{Y-{TaZSH`9?2$%r_jgeXw}@{2`T
zdm<MF4aIT949IY|gX3?fpr0pvxvEds#fdy%Ks>~8s^k^2zp$VH>VfaQE$1_-Rf`~*
zI#IcN+Yz+O65Lb5ttF}xKX+L{r;JS3@6H1{pBowS0Z5k>Al;4xv98Gnif7Dkp+{d|
z$x<(yhteSu{Bmo6I({<oF%s#nFibn1gY$@jScQDFdwg#>5pnGarsQcm3NNyVVl%fl
z>0(56CkQV?u&@Ft;qNNIWS%MiRW|W<6yLIGARoPW*B~Z>WAW!|uQ-@rPy+KFU|e@0
z)Eh60dhg};DEfIJzOkoDePcmGP85(*7JPFCdOh>!_iM3l5STRbRBJ~-=)(vUAO|hf
z2(BT~f0dQLh!KD?BV-2d&Rq9EF9#(MH4{lZ#$}VZC3<<@B}r}|L)ah9@v1KyU{E8P
z_4jB~DbRD?tRS6+f*2=rdizINPNZ$M7^E33-QA<?g|g(SCRJCf{{+l0zzD7a92O6K
zo?`>mV!|0PNcyX+{6&niETP#~go|x$=^&eR59UFo3trHRH$0SgnWB*YBZB(4J#Pq_
zL_R=%bM_SwVCGH}L6orebr&agID06hf<5C<2W5FP_-lex*Z2d)+st2XjNOnA$6nb>
zD%6L*Kn|?lf%ACy7g_nM7~QBjAsHzq=%h&lqQ<YO^i_&`irS@X7}G`RkJ#PvnmH5P
zaFPWEF2dS}eC|rLR<n%UrTg3p0wy2lBGas-Vw~*VXLNdckH%D#n#Y1zttoCS53B(q
z9D_)b90$mOr!>+bA?;sf<u77nn&_S{*nYBSO$RcCFhe{T#h~{8A(Mme|00}kdBDBq
z5}IkX6qoARt)5zVr|XIOQm~PBSA|J!yN7z$lQ%y^*+`dPJk_>yQ2*r=X|Vp|)=`XU
zOsicjwgoc9IB)6YkYr47tf6O-WJ2HJPAO%7YdPLzzb-nLSm)k5fiz-Vre^o(nj4&U
zD&)ejCbS9vSs5Gw4p0I5VHMyL7_hYZ>5R3g6Kj~e;-FQDLY*&?Ew94>;svEp))cRj
zp*JvHoMbBYEe(S*aaBCj5k94n)V!6-xU6MuBw6nZm5r*rBLFr;`m*eMKU^s&y3rBC
z<R49(>S!ZVj$h@?hP#Vdw$0D>mbqwS^~N_NOFI#^JtXHDgz?ZvcMA6BqisV{T@*tk
zxbeZQw6nv%+@$2&|G05ge9zwFQ_Urso=uzyao^b$by?B9t=Qvj8{+$FXIGdT_NlM+
z*YckH=gk}B75{lb^s*IuzoXUZC4peq-1(*G&naX1nw@v2ES<bW0`~oO4no{3@7)JO
zq+Rea#%p(_xZ7nLP1-Ywg9FS<cFYp_VEVo!{2$kMy05Map}F0+IAfixPKOYQM$0q;
z=_*sNcZpQP7iEd6yUt5Je(2(k!!HvOtUI@-^DQoDk7O!@iOO=NoGXXzTZft7`=xX3
zssAs?#c03J&*ar=sY?pHVN68YDQ=xz`DtAh42XeZWN)tregBMgxT{Ln6SIuEI<n;t
zL_4DF1;1k4MKJH=KWtm+zHY1vo&P|z>J}tQWy#gGb)QP#N!)|DH?AL4Zi@~I{nE2&
zD9}MV@f_mJtoQ~u#jrX9y?a#CH2pA~1*Rn347L2vL5WbMA}~P(i_2Lre{|Js(ma*l
zBQO)Om<3-A-y7~)2Om!D$&M5^zQMvheKUvwygqeW;jazGCHaqg_RM?cfF{P@p574)
zGsMcwg)U*l?mfcwn!v(ld>4*II@x8Fw*I=s+Ew-e^<nqALYRgxV@}-Uug$gj-SqnZ
zJc!-6p5(>iVl1e*7KFsm_<B>K&@sFh`=}44eSrQ#NYq^f=hi)JqMr}6T5n4|LgBbq
zl;*4SoSuP0BB=gd8Ul^VI{YUcq*#V+ul|Vp$9;Xt@ou|p%X|k7yR<t!No=|9EvrdR
zSO;6$*l_TE-jxmz<wAA1VvTXpnyL&}*^LjmC}~v^-^tYxKE%~U1&@2|5weigRo^DH
zqbBG-&pKV25_Fw>23Jf#k>w|ZfGVM-fSWf^)xEd*UR;KfFIaJX0_Vix3*`#s#e2o|
zDIC+3I*yMhX$~YD0Ln9=NNCMhdXv7QTHt&>funM(1xE<0OzH#!#}P^OlNHi{NRd*4
z-WHh%F<;&tB%xMva!Zoskqu7oYT16}^@&*V7vSnzPtx9V_jeAY?eKg7!rYBK-`V)a
zgvXG=g@-UoEu7KA9SGSa4?3&74qt`CX|g<%K=whp8&RD`qmXVMw=j+u{^7YZe&$da
z)!t^1XpiU#Ugl60)exVZr9O_(CXWR`v6|Qs)y<~x{9nXATLpcj%Ddx91(qDMM?|@W
zQs6s}k{0+P`)SLBU;vl10v?LDx3JI@Pgnk^6<qPWdy-{E+^uj&O4ro3+_|fsv9?Uf
zXS=C;c{PG=o7u3vo8q4A#}P88^|b@rA61?9%#;WIM0S<p2t6e`VRoM7#9wa`DQb|{
z^x%UzVldp)>kzL)B@TGgO|6OQji*JDOw1-y;wdUD#T!vSid7n2?KZrKhD!>gU1c%p
z?PPUMJkRcGau^pIXqFHxaH`w7&LFqAI(JpY>?JaC^Y8fS@$)TDNtt?<dG$Cv{4RhE
z=c5gdP~2|$yM5|>>x-7tq>b<Ox5Kp`E-GTWx3`Hj7khWOqqZ-4I)?-zm#9hHZ0wKV
z|Hj7pqc$nUAZ%D~lI1xv1jQ~MbpO<OT0j4ED*mkV$VZPkYX1?k=i<75q3T|@C~L}c
zs}*09b(IuMEb7E=cfrGB?@5CV-vC4o=qX0XQDVP*a@~qghj!=J1A&u}+&BxZTj7&;
zgN?zGbK|tNsC#M0uLgr@5los;C`gd*N(fE)CJ6bL=mhAg^S!z&+n;!RnKYJ*QOH>)
zASBO7Oq-7L_>x(>lB<$OQPCOcJ15_m;@HDpw(;Be@Rf>TQX?1$d`MZvR(vW+(%j`P
z`~|}w17h;}>U@oRpBaZF$fBXCC*-<ZznyQyX|IPn39U+LBtmX+p$c(;-y<^Tcj1(S
zJ<0*;T{<`<A#!Pip|Qb74Z8`mR{BNr?j<qH@hIUg2qBZ(d-vHWxH*tX?T`p6roTTi
zdIq%!dzz|!F3wVfl6FM-)*f^-!keO*A>h?J-uKkm50d0tyim?JoxTksaer2i1kOw3
zGuxRN)^QtQGK3EuXSH3~*?Wm-?3X){EAcSd(!6YE)kH^d1WVv_yRPj^Om;v|p3A<k
zZgam|L#5U?C;W`Yz_l86FOlg<6SS>Vx4GPs>B2}_ru1U3Fs{@>i?NsGXZU0o+!8W8
z_P01-N}lSGX73&o5pHtot(Vt@FGMDqR4#uquDqx-3lwLL8jM8@AB3)!=p@LOTxJp&
zBMrFXJmW!m7~x%ci{0mrP6K*NiSw6-j&+L`1s;dO_s=t%yQ*HdRfnug1aZRmEIOZe
z);R1XvIz6<#QlB*{&p5kRD?IM19{`oOS_#ht*O{V<G_kv=4gW>`+#*=s&x2cPGk!Z
zxy=L@g+|xRBPQHYbJgrIeytCZhd}lYr%05G4&1T6bL#o-H<NiTZqv?>eX?psTJ#XS
zXrGpEE{<LyIPY*5N7{isW-RP6r>`28!DG5<cZ-?2$?gb_*_&s^-wvliy)U?cOKON6
zF^JY9exI~g_eNiyp1wYN2R9}2+8T(T3{3p=W5RR-^~4|jVAgfj(<&HD(`@&YCFO}8
zd&JQ7A?&R)ZYy6{O{%*Va?9!6kwwqnHgweBA|r<UyO_|_*~-|s`_K%631`vVYoz`i
znOiL@(DefqWQIKL!Fq?!Y3nMLW|<Bt{qPqnA}m+OpRF!PmWQ96^ako)?E252@OI_;
z4_&;v{?KpI+C&bAPzNkt*ve<}VSZ0UlT9+MK%SYYE{66i@l>^E-pG4|<TEJm1Nu?Y
zkQJ!;Zo{$rQZ76}Sc6xizfmnT?*EBu;RrE`WgCb;4ksxKszYgcrBd(sJi)jG;}L?1
zP9VlzVIedic{OQi(}*Uc({57lYjUq@Vq*I>%$pQB;?AZI`C`H>UEVruZsntyjE$VO
z*SU&VR#b%LOktR5u5ai|7tHxzYp<V*JMJY0$j+c%yjM;bqd1Xmqu4?6{7Nso838lW
zIqP3hQM`pvfP`cweZv;&mc%tQ6oETnCDPpQMGN0|h?edC{sesJXS{iuZsPy`({Q&?
ze7+h@Xvvy;tyO7;t6HEGX~rpo1umVJ_mKWN^;IxiNB3k@ied6&Z|&_CQ<E>rt)*Pq
zrX;@ePl<oXeOFH!s>GB$2);B(&`t7&LwPF%b1?7F;VYA#DynfHJ!Yv$$D425Bh=%Z
ztVAaTAFdmR+-<kXntCX_$AYnkgvou7vY7HvRo12qPaM8d(UcwQv1Cah<Gr|?tTIsF
zFxU11Q+|Z3RDJyhQ1nRy19+m|f9Jfrm9Eb4+s>t9iK?I=Y{ArO%lk@QKLWlorr@5!
z?k9qBcAX|XC;RL0Q0VtK4D&~5zVk24UYg&#C{GVD6y76}X0iy40tzEuo$li+1c&4f
zd~ev<R&}Wbuv-48@d)JJF8AR^P~N}o_?J9=ro3^DuJpqHHLUni)y9)^WH>v7p>mw3
zImV7Oph;KB*UC4hl(;L_R%)f9X$<*o4~hfXA7CNehWSecO+WNBRm<wQR4c)rOT>#6
zY1X;pHmk<VrD>j%-Z=fn-N5-9i*ln0yFsm&Kocfm%Qc$zs=3%ctIncI9Iq&M=WC3J
z?bR?(PDDNmFBTzrV`-R@1G3OTG#K%w$$>U-;V%_1OEFIX@`zynWDsHB#z;ikW<Vk)
z`|D69sQ&9i!GW)QrNZNgbTEMv{2_P`=!&^`mdnaiE2a0C!vsjtR08<pfp*9B7~V49
zb=ypBKl5BRGYVrGX01lrdJoR71df>Q;dS53Cbeh2F!NVUbv1w~NIF1qkWO>m6Wa@L
zOTy`0U%lv{p42_Y;lfGA6L!gO7pN_)O$kjmr!@S?(-%mXC``gSd#^g;R><V1HuHu*
z(l|8NggVqYkBU7IG^zjZpe>{U00bv+dJM!Ly<+}cN*Gf@@`nQ&f9dxed%)Mb@`#CU
z?dSY>pq}89hyoRI%XN9lK@LXi>O%*IBGRA)E7F45j{y!vL-=?lY3rHIKu&xqPW(<8
zU%V+W-$QFDNBy>wTzMLNnYp$9e$GdT7=~%M@1J9&sX7Eyh4+TA%kus)3t&Xhx#zi9
z|K?tPE~i`J!l2yqemm!pVXYiBX&AWa`O@7O2B#T~1lyMvFf~%^u-3=+o_~#wbT0V1
zNUPpwgH*M9!#$^kvYPcf`54mUaD!sn-S$sbb0}4GLca}M6=Ac<LzG$|P0e+V9O2K;
zcQ=J^4XjK(KOeVCup;oC*M7HQLw2#TKtHbb*{WpeuolbnXb)n}n0@;7>dAPd_c_oV
zTWWxRdt>~DJph2t@HKyl-P(xmXS?UnYOoj5mIqJTmPV{g@=MCl$^UC98@v)C1%fv6
zfaDWj?DFs&(Mc6<qzm(JJ!kFUb&Yv+V}`dTz4XGh;EFeDl!+EN^Kfv&Z5KF6Nqx<3
zUECJsAYJ}!#m9#<dIts_(ao~bK=j}v12d}eXYt(*NCPX+FpjOk`j*lNJ?`%jHX(-L
zw^AX0J%LdCGOO7C6SKOF)d2Go#e+aVGz7MreDrv6;#Ys;aYnnwO!ZDmm>P7YTpk~B
z-5$_&pVv?+6vjaFIl~X$u>WY&Y(4mDlLvDNyY(VwaVVd5Z}YimAN$G8dzfagy}myV
z_R{wuES7lf52q=YK*vY~f}6>K_g1>jA*G2HnzzHj2QOVyfx4gJx+~a1o1!S|<Pky$
zL-->|4EEcs7xh1IqD{QWK|t}uEHq4?v>R%=i*Yga?i=49KqP*Vq)7_@#_s&wYANk_
z;$5vXA8Y^mz!l$@rK3MnPc4qE4*>s{I1b*Yj8ew&eXUmaA7(JOmeM5~@=(E$l;OQa
z1mLP#Z(LRFf5TO6V=et}?P<!`m9yDkbH2a6;=&zG<rlA#fXVtyxdC^e4(Ve}_L*mu
zc&_8Er^wT7F9rjz-E{4@!0~(EXqk;6uF&*qKBkI7U54uArjty1^0br2sxVor!NA)#
zCNhDxWfB$3J;HmF*4_Rc)-K38iN9d%&i@3)RtiRl!xa-&i2>wbcv^XU+jIN*>lEpO
zo+=+vxZ<AuFkR~48;juvEXE?Ckk<7C&&a}<8on=xh$=6-DW@u3i7wsd5dPPtB1RU@
zlEa02+9dYY{~ZuFMfQ!#TP^n0|C$7=6(|WcA?v-k{i$75Ydu+*EUqpL?F_f|Vst)T
z3+wxMXxNqMUSW$!4XFgc0GWxFSw3(mNH;-dCtYINgay>Ldhih%sq9@=&(E}cUF77M
z1Rug#`4XBUR-(<XO`x5JxbT(n-@XH6{Q-uoKQWLrV77$4_@V>0R&VdCt(j|kq?(|y
zypB*sPG3!*O&S4wk3o~W;k4#SZ|sMZ)9hbfNUeWAM9ojg6lNZVJQn$?ubW9b;50|)
zNfD<8eX0s$*Uy&H*-U#gGGH-=6~c!W*Yg82{tH)}Azl*Cqo1pzt}ttH$Qou3V%<03
zzfqJEm_+(&6dhL)YNWAe5*4wJE3lw=8~%P%t2<<2aLfNjGNR>kQc==+pWhxACjWE;
zWYpFt9AHU>os3JLiy3(W<paBf7njfBiv6E;BlZ|DRh_<hdT}O}?I89CRCaxlxlgVS
z3*>KQk6xX-Y9pG+n|tw9nao$B2e=G-rLlDMGTD(39MX877S;%sj<uB%P&5rMs9SmI
z7RSNx3(KMe!2926U}j?}T2{g0|A2t>xy+nox!PNFQ>}d)=^sj6wi_F2T$kQ6DjQOG
z#<Oxrq!g_vi;46b1#kp@daETwZUjSN!V6Vk_s8L;q*U*O%;N%#-f@yVxTL7m7$bIk
zJ;C=?o&xEymw!;t0LDo#oY*(R6Ff>*5zZ`_H}Nykz73C!5(3Nh;Hq#4mrX7$TV!hB
z^CdideeqV_86qqs#`2iV(D|v`FJrwFy$-@<w#ZKo*b<LnF{ZC7k0XgEfbk8#jG)GQ
z?p2%Luq4d;y}D)AzF!V+&cZ8eB(BTb<5G|$7Wm&M(d+bj!4o?u<wj#OU>f^C$o!|?
zt)ZW!?&&UO7sRtx4`M7PVjVGPU12&fovOaMFdiH+x4w6CF48a^h_lJ^gF~^#1=!3M
z+DSvlk=U4I`Lx?tJo;@&>K<x1E6TUETPvC9;YKVs391BlRv;agG_19l2&mu$g=IfV
zb(FM~QsLVW{4$QxPgeP=!|{0YYmx0HrWqHKhD(u1mCnh3`$Z*jzO$HzH-2$u(hGTb
z!KuX2Lu)9q*XwfZ#+<vPvY_6<=?e9RTe(SF-SrfCOCqegM+AR}T?l~%jM&In1qkri
zk3q^yoV&^h_nw>P`C`84d5+pqMJ{uihVrV`{}Cg}wOZy;G$FZ;-Sg6_VrMnU)4`ac
z?(z=@>N1jPB}sAPKoc*W9+P;knmLX=v3HF#!jICc-p$BRO$@PfXw0*|#gtevCe`8N
z3B>5gE><>pfs;t{Y}sG$GRbiG)lI^vT>uI&ku@w<w0-=fTL`XL5<#$y2H<&)ef<r;
z4*l8y9R|JtS-y$0Uui-`V8;>DrD7PAPoc{u=RdbG^ZVku;#lNI3rHlWsS}ggzB8bh
zJO>eR0nV91!kw0M{jkQn=ZG#y17am_tKgFkCIr;BFh(gpw9OgK_H$ou^gXjZ|HC>#
z^Tg+)o`GN(AHsRQtIu=Mr`n{Zx*_mUN9-X(kfVKzX(ihcE*U?n{?*2MuT|l~I14@h
z!Kc!cxr=H|m>auHz~aygeZX!qoO9`g9%CiT!$-BeW!2nh?R9eFgOPClufs)cN(7Sz
zr%h1;ryZk@A5N~E9~`xJ8`j>tcW(gkk}Nx?BUvbhQJrJRY5UASmRU>cSkRila<;mv
zhkxVqsJgDaaq8$8N(z&D3Gwz^Md15j&kW&k!ROMkk8B$|)_=S$Q&tvk!0URrEg4hu
zQUs?r{+ub)*@ZBl!^K06EB!t{bPqRcXWLOjT<_R9=H20I99X8aJH^RrVLUN%hnqo_
zK5fpAMP~Chg2}M8iPvZD@a<1Tj$AxQK<bOmxpVbqH6-4&Jnh#edVw?`MS8TRr3A~-
z`a+GaNo3;Y>zLiv+zTAPU3qcZy<&4&lhLfm`$msC{*)Y;O`j~j1e6w+*5U7JC!<12
zq_Q`1&v#oSrRHiOL~y8Td`5yDvmoA;Mk56@AQ?9ju7%d<W?~5@Bsr{~@=+BlW#4hw
zaYn7Obn_VuAbL~JU~pM8V^3Rkwa9&cSoJewX_JI<PIFvrU_*<k|KfAT8xL}VlD3@n
zuDqPW+a(^O_+-Vu<D|Yb$8hfh_^=uS^MGrHa_(^36oJH2r6JDU6DSOX!vd$?DIRaE
zAH*SI70FTQ5=w%rajCZJUCIqQFzXjq7)@vE$$F*R`^Awlb5?rg<Qj}p@?=+W{g8*|
zjr$(6)LkV(uZ&C98EnQ&bnJT__`wCGV+|`FuUn(-l@63mdJ{(TFPgLuC~=UI!1gI5
zpM6*|-(&nA#JzV^Q){<99GW01s7R5ns3?d?S2`#~X@Y<lnu_!ik=_!pfDKR)k&e=9
z1VfRoC@8%ILJx@aUP4Xa_v`@Yp7*`yyx$r3eq-D}9m7A!-p{kvTyxGfHy%l{n7kHb
zY<!c;w9u6*+Ze9d&}4hZG+NG$q9IBeFI^L0Mh)(-oM)A`a>OkLpAt9u(WOi=+HuES
zSUJweL(-rm!^*~~iihJ1GPo_7$-B~@HHKaoS#8seRv=!!6r6H0S@jSP=-LhBYB0nf
z@k6k3E#yh>OhwY9rK?w{plCm_1#@Pp_v5jnZPR-{%kvp1Wt&QyURC4idxU-d6ssn;
zQu-@{B&?i=O9X)v$bgWGBSxtwCZp&nk=9eu9Tz=N*$<o(PJ+Mabn2rSs%||(cYD_H
z_QGdx96GIHBjhh+ljgA>{H{;xbv8u~v?vSzg2}7cobY_4c9i-qLAkpW(hqL3@F;G4
zbwTS^1qPpG(5AphnV~phaZX#&>*XYONx4O07{+>qd!lU=ZU<8AtIM|5*9E;jZz*KP
zFrnIFHrK~CgYV7<-eF%=N5M(>aO`sLzOf8>+|lUrhG;3>l{%T5D@9!IC@^(zg_Gx*
zs@ZM|8fK{zCb^u529|xrK}T`=2WP`^OFxYCztc0@d@W*3SDqOC$Qqx*C?E4iMEI~G
zFB8=FQjn(z(!^RRfcw`%K94xZ21=wamN}lirLbkBOv_`~Cw+sqnA#;t0=~#}t|H3f
zAl`SU?J+AXwS1x8#vhtE7<{<!PBQ({Vj~F=DVJl(CtWanh$ZDCPXe5I$p0~HM0j6y
zCktgou0d7n`Blp=Y(2{4&P{x8xZX85(^oP+&(HH7ZS7}SdSa}<gh#wQ@_HFtnp#t1
zQk<i=-+ez->6z&>N&T|+Tb?w{<;x3fdcvCBMb3Pr>Dfl%6YCD^H5k|N!-+OCo83Ln
zT}b4fbl~nMDHWIyzt@|`US}-!SMotnGLyA+<RswB>+;56-OtZWUB;RCU1Fz7g>{2(
z%Y$X3@bt7X{t3U~WZSj)qtXvT?0m(i`${6DJsjh`_e}|_t`G3X>5wE;t`Dt$j{rF&
zG9E@Ngc&!32{ix8R`PG~jdv})uT0(5I@eo!nvrsuFS*(0B1F4Rg={^cr>B20$?7JH
zODoh&!9LdJD$$GY$F<JL`J`QsSQH&`DQ3kfR)R53Nn+!1{Kno&H1U=H_KV4FGfMZ-
z&ldNmOVFx1RJ%6<e~tb5)%&M*+xbPtGre?_x#T`b?;y!|=AqrCbHm-F3|KedfsIsz
z;!ED9lo{E?4k-##x>tDTb7vEd!z#=kEoldtmyx{k&7gi!_F^&BqXffG7%SM~5Tupw
zj;G&ROE$PN#25O(Iv)A+!q(C!Tk)mHnrw_FEx1~-#QxOkeNT}6MFH{~zU=vOqm)BE
zN@bKb4V68p%}GJ_xgTg@nOdy;%%)WaEsg;GJg(sr@eTc$`74C9>3pH=3Ea7JAFf=o
zg8vhwaEHn!^M=BcezuEoSo5Rjj4s4SaeI`0`MSw`BHteO{uR31BB_kj$gwmshHHD5
zFSp`byjCp}Y>z4*Wr<SQ@)`0Z%3Kew_+gTF_fVgAjhpQXr{^s<?~Ux07xoheK2B(T
zG~+?Tx{)jLnnK2Lw~x3iI^y6c6<gtz_6XIs_dy+6q~SCdUZ?1eQN2-Z({$|&{BUh}
zYCNhR<oMR?XP2`|Dmxv+|1TrSWm8xBXC{T1cTw?e-zNC`_glViUhuc)mI-DC7(n4f
z5m6P-gsBYn-|0}r!R$!^{@i3ltlKnl%<`J!k7Sb)^NrcC+X{*e$&5w(ViYC#`irkV
z@KLO`w?u78R-sXb(j(;7G^aKg7OG$^%WojOccOEcD0+ZxapbaIlL0R4rWVemP@%a%
zGewUTTqp0gV2|dFu<EwjaKRU?*u|TKm<~bzWs--2WVx41>l+W-ZyHSzc25_Nd7xtL
zzZk@lZ&a7{C#hiXE!xnSkwoEr@`)amEtH;r5F(8%+v?e!vy%QDy`1S%xn}*D`_dcY
z*E_**BA-rkz}Iuj{JQ*Hvz+)wG`j7bgiZ4kGv7^#q3%yj3My^#adw<KQLB5yh0Wy&
ztgm_6UZ(PBl&HnNL%c8;PQPC!Z$^Q6$nEtkD%SIGI{Mmp=jYh@z?(jipzMK`$7yNe
zPM;^SbsUR~m&O;(TNnSznCakfk6jpm--mium_?(x&LED5Kh~vd>yQN?TOYyTvB7U0
zWpJ|Y?1FR&LUl4zf+ol+C#i|LklhzzB^C0LgZdW`)z(>#3^{P??P(7*sm<TW)=&2L
zW-LFSecJb-5<5e-_7pPTPL_T03JfWC$TpS&ncp$m<w+h7^&8^`!w(^JL0xWHCrqX_
zwfEJ%*{Xjz=!(^?xpw8J)r9-a8qx9PeI`xnB<kk3!sY>|w1}NH54>-`@^;p3h@x%l
z$Trq%68Gqewu*6C!Q~z{!9F7oJ4i{N>l=%YK5qFR=DygVX3pZPI_sZEGxtMDWL<PX
z#G5uoh&(foeK)!bo91bfeZJ{iWB#JNVyX5c)?7@RS4^>;ThZss8fy!|4<WK()>g=$
zeRBgZZbd^wqk2B8cy;Dm?$X3$ReHjJKQ^B+*mw4YUs%7VJ<8v4oTHt?rajsw0&R3v
zs^8ab{6vk#C%<K>nhrGHzu2|-4L15-drfv}$;_0Fb%C8Db(Ps$diHaq@z!(>P%*=u
zZHKCZ(+eAs+QZio338tdIEE&5^}kLbHpA(c%L<nqFKC~JdX%z+)s!UB>N4M{FPouk
zbP3Ff9TRjruPpz(ntSE2R31aZ9rN9(vI94#bn4&}2{NYm_{mHCs6NO2Gq|7VGGR1c
z<gvSx2ZPm*WbIxiZVLX2!S;}-2d7{aN=zXIzN^7+QO)_#KxWa*m*TKCB38$PG}0{W
z?Jv{}q+pa&O^xwopYAV<-hAWzG_)sZ@o0KHth-fMT0mg^r{^;K^L@+2r@)e(>QP;;
zGKA*}>$uyvnZo>n$&pMXsdTQmIH3;OqT)bR*Jk=DxNlJ}(B<EO1FNEOx}GJdN>5c^
z+K;2zMX2<rDKLE{gby<j%i<RZV_i=r9lP}dBfVxZI`RqD@f;4s@RapQ6@r)F?>b9K
ztBG|EzM7UV681+aJ`0@3O<Hv1@)N3iL8oHxYUglj&`Kyyc;GWzI(e$Q^s@tpK{5S=
z0S7L3sHQnh%FHk#tLf7vwQEDwY8;~iMTTY0hJO0~b44C0dJvH4DR9K*8`BO+Z-zNQ
z<l)_(vpqhmLUotBnKu;f@cJ7@-9Db<H6?C%P?3Y=Ik>>#r_)R+MY-!fkhFWbhtiu2
z8kEYsvoo-M1L%Og#?J~{j7h09y39V2+DPHzZ02@*y_yXBh2}_%mF_FI5Gp^q3v2DE
z1e<hLidDk#BoArg#B@_8fy{nd#whrG?MzRKi*JnIk|V9fk%XBAOzX^N{GK533yc_#
zS+nA_q0h--wVat!UH9eq2!PJZ8$ODi?GLKMBrZKh({Cw-?)R=N{?=uld5zOX3z7=X
zQ2hfj>gm1&zp;P{z310a8esTK1UX?bNRz^jTetS4Rm=HzXm#SPwNv@y+23?m&YTI;
zD)TZd3os-Y(|pOOC_YQ_TK!TphP|#Wc1{kI#Pq@jq~po>`&ai#XUvOWZddJzk{@CM
z6yIy$26zx<64odeWDY(lo+C}8lCuM}-CUNjG~)IXzLT7^-iHRFYP2nq4M`J#sjQ?F
z1(pLyfRnCKnxifv?!oI}Uo!qdT3G83njL&X3*C`}`qLE;ACo%beAj>fF5KaC4Rgg*
z8&V!W7R+|x9J^Hc6D^;urcp*$`QJ$-;<y<_@=D(#EOv84%;Kn`&-$!!OCM@RhgnaU
z5?(w-yZ-C>(WTifUxaVf$Qt-w`2FG9qm@n-i+kW0&j9E8E^{QuX%Twz=o9!)Mjw4x
zHvK_^fDaR5^JUIUwf4er67HnG`}bPQrTz`37w(yI=CR#D&FQI|ArL-ro*oV67+Wx7
zH71EN#$749y_|;SuxcN<=6HBI9v|27ntN>PiJKRgkH&juty-{*{i&995pbL{3|QMS
zG|Yx=dn*yrj8CnXX%{@HvSsT`7CUXTPQ#P&%Fm^qJXSy!5d-n}vF{H2@ocS*922Jd
z76uVQbhXR)FRqLUayvuAKIToMCgt~i6eDQ&+C01SM61UdCG~Tev3XhSXQ5f<=D79G
z`lHv_mpN>-VENaZG@d_4iRuK$JHq2NJbK+jor!%hUD#QWJ7xh&i@}rK(sGvxl#Qzt
z1i(2Nkc4|YTI@YEa~mJZ``0Aw4KkMZ4Xl$%>mCp}oj3S)U+CZhL$Tzx7SQ{ByW#XB
zC*?BW`2vo;t74`dnHq4s7)`S~vF*F-FtcB9sUM=~fgxHObtzE5qxD;8@Y4Kj$a|bx
zxh5^QQD2&dDW?o_f3WwEC12SRs=D;ztBe~8KUVF3L?g;lTwf36c9o;8nOiSWZR(xU
z0gzWOHN-S{a$?c|i_3b))6Q)Wzb;r85W1ZD6@|1tl}sWIMOwEw7WQf}3mR&cnCaz3
zs+P*`N5lhhaEb|ZggnQ$({jYOmdB@`kpg5XZIX|UY+RyE&HZ3=%wMuw<e{51eDiku
zt^{;DSP@G_`2`RM<uppQn=<caC@?ko4wtii3O-)j1;#O%v{?ev{#c!j(T#Bpo30oV
zp3_pN%1a!uMTvvlhS_r*EaNs40eG9DAcIV@IZEO_GTXYh=Xx68f1u%`c&)%5rL~H0
zxx~2ts$a?Itj)?y-%@JhbZt^ZdF9#**Wa15*QUGO#=vOZ#(cv~&@_0~g5Y43f2Hig
zSgpM`+luot&g0Tckq$C9^YPQ(1OtLqbo{66xgS@=*7F9$ylFXw{M8tqwM0;aw#W=P
z1Z?XJ)psau5T%=v(&)a;3eWBm58>&qPcqrFG&HnqqgLG+27<v_cc2=@C^vV5Z#p1o
z=6x65H`d*p<Q>%ZgjMY*E{;R;k$hCa7CP-z#Y+02kLz8d5c*oFAQUVGGu5EfGa3=)
zu_`MHo*qz_2O#-bI{K8?Y#%A0RBTJ+A-B&Re}l&M8>Tv2xc6eyow*N-O<MblXI!t9
z`+7-dHhfOs%1=I3!)fjCuE7@pu726Yb+<+F%=i)N`iWC_LxciU4{)$M8h^GkaOimw
zIIImrx>%>y#Y%AKCx(@X7etkKO}lrOx(iBN$PaOI^cwWm+p1F2q1?WT$7$O$?*yzl
z5k<R;yffWG9uDliw|1aBIqet^rF+vpR-wk!q93!vknSvbKimdJ_gkxyxI)o~%P&<b
zI>IaDFL@oMKj#o+yrr1W(NV8%QJvO>`FNfb+9hVCsyqNr0F@f2EzKOqnaxVUAbjN^
zHFyB|1SrIq`PqtddE1!6E0A1-&&58Gdt^!2=dMdFS~hiW8(eKeLo8dTS&QOc-KTCY
zpX;^9e!R`sUG67i>N~zU`mL8F)Q57Be_I|nw952xOU8s~%xSjI81H=tZYdVHxqcXp
zd9)RKHyWS*!UX-rBIoxnFCO3OHjRSp2Q>~)zl$lzf`8;>=WSp~_;E<tlLfa~Ui#j7
z350vz4OI5huLIw)lh1Oh%_TDqM6H)fSe*#=@<Dyfip(WMTDQe|^jgRC<7OG6WM*Z^
z!%;e@&6s;Fl*L0$Qt!Hg;|1<5_c`;hQ55X*OYq{hr#E1Z<5Gj?;HCbch~uR3Nc%ez
zXhFsgIttOMm*Ty8(>*iX?l}&5|9pG6JAaZ@u<1-HCLw5MOEA5%+p(uW7w5#4g>hi`
zc)LE(khs{*id`*a6RHn{5v?w1G?i*Ay`oEKZv)>8c4@ExS9$`XxfcdaMi)4=?R7PB
zsHfs`1Nw9hQ(!)aobIKioIiGJbHjgT68`eC7){KcoBTJrw2{;1L+KMya&GcmU8QmM
zb6MA;Aqu~X=WJ!PZS26KdksGkbnPFWy`-x|s3-7c>_PHT^62Ha67S2wzHhc{!F(6y
zN7KfgYuXxPWzt-5dBVTETz-3I++4f`|Fm4;s)dh>qj4c4iA=Kxu4BjC#-9ssjjSF{
zc!ds5?#{QnuG^x6-Kf<FE^t{X6hHXiUh$^`PZ}hFJ~i+v%xcN<i}e!21vo5}^GKpF
z6*m~Fx+qI@`nF=@0Mqx~NE7DRcZo4kI*2nWw<1(d`kVTOx8bp1)CyO(o}RLx;W@FK
zGO63_23bZT)01-b59+nvdb>;mZsNRTguwJ?YqJmFTPx471Z~sC#6F+pcZJt*&wZ{n
z)vdFQQqlJ5Jbr9$WE;s)N@*kfxk$zo*%e+5@<U5C_{_ZfFUSu*vRYbAcwe2n?#)Dy
z;9u5JQc@B~Sh>WP;L){^?Aj)DBh}K&>c>54kna1!o^=!7Wovuk$|;IP9+<1SdYElf
z32tt(L4Ac2G|$PmP6^3)VgwSO9NC`VYMyCl`Yk|`x@ZKD8@dM}&%qs$9Rl_*FpDQF
zswwSj8Sg<xNVMQh>qgNUmlQ!3m7|vprYx-%?6=sPd<8ZwH_ovG#bsKP^o`$yGLjhB
zLyu)SLa}<_nS*TYW4xy)T?R9R8`-exKTVu=o6&v}Pw8{O%oT*MeJm!74Ie_VkD}r)
z#&V<XCxpKp_n(B2KD=GBy;?4P^rLBs>0P;01IJ9`mGj<StI^eqO<wq>_dZ+qOIq#%
zuH%>g<T_bIcwIO<9B8i4lJDt*T<rSt_E)wzqFPVjDoOY5H6G9X&m6>uzgmm;ezt$C
z=JcWE4Q*)4J;n^f?ao{Z?y|QVcK<b!P4^LRr_Rk=@WnV8r;?y<j6CjwP;CF_wv(<Z
zX!{qF6Ahmx4q!$`3sduxXxA0)#N@#9Uptjg!-pDjYIsn`4|xARlVS8;*%09>(X&FT
z7;QD@L3N%kRL*!IhD4o;^_f{qztvY=z2_dj+|RWy*w2PAK{7|I{P5==PZ~+}+%y<_
z!m6rAT0ijOKHhVYIZBowm*`iqrscx^#@h$&P31U_mJ-=`8vhgGuC!9V*Ovw2>m8Dk
zI(dF%!n!}l3%z$iZ^pK(#B#S92UiEEZ1W!mdns*%u&+4ptpz8|r(vab@e@Jr(aS^B
zcL3^LXQ8%%gb$Ka+|SwXE3qp1?ARYq?5ifUmcFlkR`s6VBQd_Dhw2@5W!ijF_w?!<
zP88IAE9}8N;C(;5@9I{GaGk13y9seyRcsRDZu%Mek=12#U7jpO5HG&gVgF+ES$ihW
z<*GQJ#|$~2w?fB#2%q0PdydL;npsT+yZqS2HV-_9TAQ`+9n(>7)d_xoL-6LC?Axus
zd|eZt`u-kt{?}Nk7u?F1_9!6ys74<$;?+J`ZMFS~utx<)&-1(@H}lt16uDh{n%_EU
zGz&Wg)U;v<3V}K#t_<#fBPB&CZLUAE!=@>rD;6Y~k8s|a(?f(C1Y`*K8~9;+ED<GT
z!s&&DZ#PSKddXxf;7)_3x}sRkIOor5U7^WXUjwYLnU}%bq|A^iN0<J~nMc@YO9Pp9
z4%_x<TQNU)%(`)L1)k3^USGalhxvj%a?cLW=k+Z9U!_Fd9VziDy5%T&sMDvRO9*za
z2QRFEHLdUYE=A%U%n6+GL@?vxAMiQ>Sw$H(?JUHhI~ga$>6|`rlMvX~ig=R^ELWzk
z#)6Q8b3P7oi~xzzS+nZ<0Nt(4JvEXHC#w*gXQ^>}Ru6<Ya$bE4NsKnC?QXb!<!Rxf
z9~r%ynv3S<C>2J=DeL6ShgX;sMB?~ndOtsesM)vG^DnSEu<VSb9jY#WqEG=(Y(kB+
zn6C8Of&Xu^9&HHIz6?-c$o<-%fS{TT<u9YWw`eOP3ml}#m9N&snBT3(J?kICi8BE;
zs~3N!s%#sN-kmz<?><2rHuiW>Ct~o!1Dp8ONiltN|6p~rS;Kw~<hc}|nX-me4b8=<
zwd*wTo5TG<<AtfD3XGyY0T&HAV$A0JcYJ+ToC1HviY>fs<bc4-8{viS(<oc@jC#vD
z<oU1{Xk%UTOCKnGW!x?*Fdr<bx#}Wq)0}YVfajb@#`V#cm}334L_GJES#8cqSB@O8
z*ZU_w@#PcS_KZgz80~xHo++RVb7Y@s)&Y}A|2_S8%)2+M!H(^i7~Qwm<jLd*m`qMk
zHw$QIm=mHoUk7T^G@M(vQ-RMpzyr5pV|E-f;o?3Mlu;6H<p5UQ11~DD>S6|bKuTa?
z5WBBp@Los;3q*0fusiW;-XwR_@<vM8eswtu;#lI(Bs2QETQ9u*vgQMC5F8d#u*UWp
zs0(qgq9`zvICP@?4G&>c-)`q{0fVsu<CzcmLWl5WUl*N>=?N88;WE*)LKR-E=@vI?
zQz}OMR?mb&bXVK80t!s9PKKHz_?rBD=rN#P+N!zVd>0`~{Q9rt{(S(6%M{;@+g0H(
z<A^bTY>y2HYnI`=(5~sS(UsP6NMC{3R|e6~*<B2(xM6|#qVTzjHFuW2t%1Iq;XV#w
zDf*d)Lh#bN&fU1&y9RWk&w*1-iCIvfCgckuWI(*Qf$TbC|GC(uzkM~BfT`;GWyLNq
zX=7!N)Lq{7$wlsAdqxpJN4^}2w%~GHg*nP+VJ~$S;0iF$nx8&xx1peYS3!BA*p&i&
zVUbS#fjPxt(_&s|7(ADE=_&*|qz6}-t~b%Kw(2Nkdt@7w`2#^$E63}rud4Uu#A?^o
z!2{PF%?G;NKeco%;Yw*0EXk+58#?7##?$ugsUV1>UZYxvx;bUA^65T`dJWbK>?gk@
zs^*zQ(TAS9C$9OLEGs4hRAu()PE3CZ&OrZ@s*v|enTO4AEwhNznWz*Fz{O=a5g$4U
z6ZdFcSYMcCj6bBvQN}dG0uG(eTp+vP#6uX|$)YQ~W>~5O{z?WAMB7Uz9LwsL{dg;N
zKtZq8vDu1-Ybe~so-q<XU9pVUc)snepbg-$EIvqAi`EENr+)<_2GYqq$QY2K96JU~
z*x*qdW8l`Op(Gn#Lhjo&NceX+Tq<9Q9$sDB8;U$V9!4uqa31c^^K?y2)M1yM7^>CL
z*tXo}UiwSR?d1=oNu5z-@w*P8jmXBbbq~WWS8sKM1UoGYMUIyPqdpM-A75ytI#=<^
zoig0#@XH<hZPWXQ`*{!gkTHmV4=_%Qdo1#j0@ns4=+K92_qU>{<%?G+kZw|A{m50f
z(L|pNXi}JvKi+~o*i1geb&3SILHb6eyP@+A@pW?)$?&ze=1U?E-}>(W9Y2%L`A4|>
z#>T?-gsvAYwCQc*fvLZC?Y(*egCAlymH8qOy0hL8X@G0(%1rP6Vlcl4{#;$0)&!Yo
zD`!X0*gcY@5Z>QZ0jrR8lSYZ10@J8J&1j~!60LfYqu`=-b-N-|kRM1$KK_bu(5G%a
zxO#xv-hn<GD#)Gtg~X|;4_|^PvXdbe2s?bufePgD8;iAXs6s7Y+W1k(=XY33aB~YC
zf%8-*cC6Qmn?bt}7DulY>;r386kpEJ`NLiTT19)8R-sD>w~;8*A&+ucxeQ65<2wf-
ztB0kQ0u#Sx(WyhWxOQMRgtyya{Aw7$c&lS*!Rr*6sh_Sa<1wR2ut4-i1uok_TLUcA
z$dI5nN|-vGNTv0%u>wPV^cAkmqhUdfNfOVWWw~%t>+q^qd@1CX@I2&iF0AaGT7~Z4
zEQJd<AYQM8n&rG=pyWNcACi7qPllA8p|ttza01O)uW__-@DQ~1(7w-h@inBsAB8T;
zOW?gBBc23h+_@^WAoroCV0xK+OVS)QBgtf<r2VwA+HE+EwjnOC^gh0r2OTIk81u$)
zvT`R`3+pa+V@w3h?uRxM{+WFI=H9aN#PJvBCUG(`ITbU8(gjzpL%a<5LPF@(tCDSx
zp3XKu^1%P}jE|g)#*3#qMVM&wry#-Smixp#`aP^(qvM&XwUZZy1=+mRN{O<5t1Wk%
zHk{P+S7JUji7hyGV_tcid!@TIK}_7_M!&Mp^3?k}A9IH#m6LJzl*PP%5AtXECNsKE
zcdJZxWGCw=#H-HgL|v2KTeFuRa@i>J*IcUQ?H*38=Oq<P_Ph>pFl(}_exdux_V(aa
zKtq0EqH9IWWvd-9qaOGdmy_V_t+C<#<G_MG5B#oN!yoE$A$2w)_;>h2uQOE_Wxpow
zr_A#{=4b{P{m=fjr~G)!nbV+19mm3B$!sSL1%_qh2Ln*iIw<s~wh>9^M=G0r^z>s}
z(ys6KHO?vqal>)<rTnT>#XW!UPL?hy5hiF`GKGUr5vmPSo9a>Z2{mzS*G{EdH9SmL
zD>QSp%9Pa4?hY_q2Yi*Xd6NL9k;JL#wIwFlQ|zYD3PkmfjbdDyoLk2re0E}1y-cLA
z?&NfKmPfxcPrm%3!%!)n<k8~cV#QGdWDhNmzAk)i#JFPq;6!=E&~$zz?BrB2L=F0J
z0-4q(B3|_2lKobn>kgBv(4fqHic)Fa((d@PpATWg5el7$#)CJgu6T*-Mwy$ggnFI+
zmJJ@_A+lF&@ONkQasRh<stdJWO5Y4}azkdrn`JL0g&{iNEm-*b3#0EV8`PZaO51lJ
ze;u;R-o^|MVDNn|cR{J(n}i80tB^~D13;2BQgQ*@980bfS~<gY7hLuw7<~C;^>O-5
z`fSTsp;`<0_U5IPenP^$B;26Wk2It1lQ}gkmy@7TY-X6k?RE?ggBz&gIdT%(GsP;B
z=VLzgv}8-+lk?ble74704n$FK#}+0Im{&eV3NcS@*u$o4;(gU!MvxXs2I+d?A+jGt
zV*Lzd1YfR(=_n+n#{0Dvv(o+q?bvVM*AxGB7P)bGhw^8-zS>nUe73jke%?h22yhc)
zxPSa$5<Z6gQMA$CN@2mqPUbxox!1pT^V%ZadKL2MRc?bv`JVhJDgH-~a_q>Fr~lwF
zrf!up_jxou#31nH`g7v~QR2g<#e>Dh2T+leHueDTBZ9qgKg5O*@vUJxr1iIOLSUCJ
zI#`18zQOrSdOHb)385STHn*lYxuy6ud|Rufh907P+Tnx?bu$YKQV9(52*VpAqjR^>
zZG%Blm>jTilug~EG!BC^b7nrctAS#dl8=hxlKxtR863Sc(N$tUewUN~4H*aq|JOOp
z6k}DGa{a-SWX`oNToybh*mIuv6|GI}+N&_}jn$Ec;^1iw*cK}9ER)+~3&ubg+`6D>
zLJPLo8vTml;(#u#M!(}DHH514@V4kUeDLqfB+&8RcT7-|b-eruT*4lHPP=vq3#<d&
z=-pa&prI<~$3p`PbsfA%j?iu6*V}uVCGA|PV_iDD#GSsf37qM2@Qecv1pOS7i?v4-
zdvY9oipK+cf=eToSD75U^j=HK?~x~7i1pRm2XUgN*m)DdY^_O`G<ZJM_(Mki)Yj#f
zM@utBe={j&K0q1xc%)Lg0Q}vQhRaw&(FSqeKV1fVCPVf02*w11fIL%aH;wR5(KDr!
zR*AtAd(bd=_-Mncp(`|unUcix>&9+-;~#;8R8I3gZ0MNf!RdwTRxgo)JN7jD>L?YJ
zYOnc;V9Z#2W|~cVHO4h&?l4`eFhWBYehw^Qvf8cpQdN+57+Z-GMX37k95Y}Q^a+q`
zKsUPiKkY_;e#{xKM@GeSAzp09ob}&?A@GQ$*B0p$B=9Hf8DC1&6&JZkO|&lx3}JdK
zxw0!w#QKOonH5U_LnuAdnWCBtkwl))b8ZH$EjISdCU>A@Yc7}qcLkSAeePYxgt8Af
z2`r!~RO3R@6?;uf+>h2EDQ#*(A~g*%4U^-MaGe__?G0Hh3QS;WaGmAR)jyi|M!tft
zP+to0yNeIDjAL9jHYGA#*+abOsHY=R!%v^QLHTd%zR6QOE`+DhPRUo$rnrWW|Hzff
zpB)6`%d1Q;%i4e%QFTl?EFM1jiJdW&g+7~cK-b>Sl3f_u-N@a4x`&3kx!Zr>2(_ZW
z9^>E&t+tQ}hV26NVSn=gJx9~~^v{45`@rjw)NR6992$fD|78sBETU~T^JxgizV}nR
zg!Zn=qE8Yc*>)}LpYWKis!m3(;8pMqk*3mJ(j)W<vEcUGfe>&I)MmNE9G4gbd7XDA
z2I*hB2UgWTMLm-`a{UvN&Yispa_MVlT-Pjb=(P=nNM(3?{4(+;5C*OCS0itcQK<fX
z*`)m+Op&$wyJvSc-0wQjmvbHCV}JW7fs`kH`0;N|z^ALGeh;3@e4G-)ai#(NhGfyG
z?92z2F~%T%!UT44ImIt-LXjq15U%A-3ON%%YT=WGzf<9?Or;BcBKYe4A@0YX;w8r%
z{f4_0{@#78%NqOOI9ScND$=7`4OB8c=t-5{iVb;-G6KRnfO5e;u<7*F7*$4v)psJA
zab7c5)>p$A+X6Mm3(FWdT@{#Fkgwi4#oeQ6*53F{B@nS*Q7{^ZIMTNgC<th&a4QMd
z#;)nHj_6s@#voY|TP&(yMYYoY93r7Fe=-6aZR^2d$#t)iLO=Hxno+HMbzyd?lZmR9
z`iSv?FG?SP4Fvz-WzGCc(I@U}XT)qOc66X0oo|L+z(=@P_lc$O9aErG+Gs$#70H-`
zQzrby6VF&NzZ`~`Oj--iL)GI1p*2}LGM0bNS<{c*RC~DtFpHwz88XPG3^s34%je&)
zafSV}cKmNW<bwbN6{TN8P*I#ae0|&GB?(k3W<mXgr%WljpYIR9C@ku~w-}Cb>I)5A
zITu^3J8O31ro}*Dbj}B6!HAoqz$ip%V@;gC?mZrUduimyUe##e<vMx57gJ%-zQg9}
z1)wXg)tnn`6T1}HrmMyk*2ZCzt?Wn(N!bzRegXaQ;$PlAXiFjw3WF`&CyIfKT8oFE
zb<iL;;%Fd#B0ocqAZ-v_kU7*!kze6}S3xKD+dR@aPyKa{L$gjdgNJf%GU#==*T4;P
z4<!5?bnFs&Jbq9CkPWf8y5};0-h2G%{riyBbzlB!A64kQ%WIA210t+;^JQw}CF%%~
zzg(ied;-Ye$Ndc-!84i2mon|@K}GxbA;10W5GR7wlFRp!2M2K4vJd<I{N6XdP?sZa
zG7Fr1K%jriAeZFS&2iJ<mkL);O8<}Injh9%j5lD@Hy&>#sO^zcY+~S23g+O^Dp{F&
z4|sF2erg|(65VPq94eBrx#NMe?fit+OH@_+eMC{lubLmAZ_dP0`gFx#>jZ{WLzInH
z1~)+$(PMz<`%Vk)7($6He~UqKn@vHIpWx%2J(Cq$YzBkh_7Y}Yztj<R2fQoA+xZg*
zzY~M`_eN$vFpo5AFuSrSXt`yx{zV5YCasbY%ON$G5bKpUVPK%IGfDeC%kB9hKFkD8
z9s2p&^I5rV^6JH3FU%eXTXV>n)aQHugr!vsAQ0$w0s?`yvH}DxG6>9Kpuk*RF!fj#
zd!Po)J`GKA`g0Qt!y4mbiP3BUS*QtYho-<{81Rlw-h8~&>|b%M?ydE;3LhTH39s?t
z+e@3j_qvX9t>{jQHA&_WruxDqi6)vO9JU@)ol2(XY!UgB&&+VwMztf@M!Bw26qUG7
zi-t5gv`e?+NC=GIdKdpVfPI)55ym*5k(1I3PZHG$=6#tDp3Pq&XGR>91m*?s8)Fy7
zS*22~97763)6rC>C9C{HzM}=En6!H*r!~tWS>lPnKRnWOzVT!wB4+wGUUIb|{&tMU
z%aI$kn<9-CdmO1K4yr?)Lu=M_#u_Z=#B$Bl$HPV}H}?-+qm-@wqP*$oUqd`vold<y
zj)(lsI1ctlW{)Tum)h|K^N5>XMum0mB@;wP0Q;gUlL01`o_*MvZGfG1jsjDQQ2IiF
zO(Ar-`nKVl3-Jvf(DW5aYP9mUF^DcbWq@U_SKqGWQp^-!Us*nq0UYJo<`p69CVjEM
zQhK_*ni5`q=S-jHV!NvG1G)sc(J6P=$p(+3!wT!Tps_mirW2?2B9DvwT^GiM>IlWe
zzyrb6*(Uh{<-sqCEY%8R-(a`un-;zjk~UMT_~|R!8PYW?rkyoaWsOnYO6C>$CoH57
z6PccTMQ?Q+vn~fX<xd#`UE~xA{BgcAbMO%Lo}_Vtyaz$bkqViya->zeEl(tvKd27p
zQLBP&^z)eaEc-*>|6<4z_1wST@dOQd8FlG(z+Wb9Jh_~j@B<PK>h{FOcT^1GbTnmZ
zp33itMMr?UXxeCCfx}VwS_$hmI+Uhq?&jh#EaWZ|Cmzs4B=4vu2Ypy3WuL&h%W=Jz
zSqtzy7#VjW+eCMAv@RZqAnzb%_Qen{rA@oBQ+tn7yY*5}qRrB~SJlpvTOy;EBv*J5
zzI!{VWPkOvj==+A-BVp#gT+H2UXcDM!enmVZhc;X1GJ1UJQVfjs2JA<nu_A6MV!+r
zq2>zC#J!@J*8fVE!i02Ov(rKK;}nZ{E?0Af&wa=I-$tLVtqTOlOA_-dnw5KK@>KNO
zFBae*@i(@s-o^h-)oYjVFYqQj9E&_wHU9DvLo$&4n!iVwsF%2tUOUTzr4OHhfOgyZ
zXr^G8*{5HCT4?(oVP+Gj2jIGn?6Si|b_qY5Td#W!0ps~oIa8kV#I~2^Ibe*fws-0n
zKL{*~CN9`pTg@6>nKxwb+p^fOjIqALD^PJ$lBvt(1gzrXgSOw2tL>NdLmJ+YZ<$(b
z(E)HkD9M%o(f^|Ick`TUBDsnj`~R%|?I-;UeAgCKKTd(1ZuN%fSY_+{ixC3)om*Dl
zR`_)iBFwl)q*=hVF<@pu{_=t_tzqA?)Zhq{;>P-qi1D^21<~3Zc(OpgeNWt`=g3X{
z)W&1g`MV-^vGYq4G6d5EVkDp$6>1@FI-diJ5tUNdV1tAXY4fFaddP)!LHJC+YTam7
zGPFB7eqj!5<pEuElyffgliX}U6<Uff)<qqv@M(+hlzWtTZOO1~6YR*U93K9y3@#98
zi6yk$L!&1mSiV@C!~XIK-FAOi{PmWpdg(6xB`nsz8fds>&1EV%<~tcB&4wg>!??tZ
zT>>&(&qFEwkNNAoz&4W$e3ad03GTw%w5{7V@>~KUV4FD9H_dnmhs$J~9lG68!xAWM
zbS@^-0C~bWvDR;6SvNE;)^>43%aCbdZ$du3^M%eZ@5!0?+44vhA+v#(&or*^k>~Yz
zu%QJusa3lgTg<M`X9SBQn_a=VDFLg^ZUKC}dyzEiuH%%%;>trWPms}q|NF=1{1xv&
z=Ht)bxOPT-0VlA<8zn!%G1=P`K=Q(F?`R%ZD71>D<^H6~GRZL@*5U0d#lY>C_{>e!
z^F@AK76<=!l*fs`+|oXNczWyB{7;Ro4{jRI0et;Bvk7RCAxSx%WD8^N+ppH_h_V@m
zpMW|ibi4%;EK>++?K>NQ&U+I`Q;VUtKiWbqv0h*IHjK?HU9tt%AAJ*(%Nh|v?{TW-
zm+d>U8a;K!AGK0o7-d}<8#YHKTYtvYgyA>d00XufV40GF_7G1BZS^3^)PScd7P)#`
zr0>2D9)n?x^8sHSaJVevK9z7T0#n$UGv;={ZN~MfbAN7~7sej9DJ2=#l_AmRW{naw
zAE#nIJ;<@Vn+0&b)Ney_eG|X9-_W?=%^U4%=LcjZ;+icZ5g03+-arE?cW6w+G7H@2
zijsV3KJMfo=i-eA-|PMSfrfh`sS-{7JQA!8LL-Bfg*r5n0wn;9q~;-I=_D`xmp<n`
ze~a>j-X9R-=3a25ksZ-E&%IJ*AuD??UwJzQ$NX<<S@+f#N`OBwDQ*uSLwtB~Frz9E
zuBPW8;p$J8I$hdktD%p+YxKa&8Ry`nWOfiFZ9&Gx)(gOn-EvOBvbq5sn_R|dp0cUv
z&_Aj%72zBgpx8^avN?5bR2|Gd)Tuum=Q5wBaYmnMKpb8Py_iws2#6o@dcUU8kMj81
z;ZT|BCN^;0EY*+~fuO`$^{;{wc=dmgu0%dJpo1NPw@Cv6KDL@3u-Dhr?tdMYdR?8U
zhu^j&PaIL4G?o;7p!k(Me>DFwe}o|0aUq6i(*_&z9u<i7$;$b?z?{_4uvhj;BA(ig
zE~{>igRR@>$o`7l=7UCj<eiz1?;ku+f>Db?4g;$(tBwdTyDeMq2bcwZ=?<c@^v!$j
ze>Qj6Y|-um*%i%E9orD)pkg!#N&$O5e;PYjC@|$g2f^R&Kt4CHhTYj|25A6ugf_oS
zZ*JQ#Y-5KiV-<Tz#f9AI|IYpX+lK4>U}to9ya+EKE<=d-&kI{#2vmcXbPa`*8Z<y~
zQiSC{J27B|A_YMHNB;u(!3zECu}3d>4;qtev!ct+c>JOS4_1rQRtEO96^jzrpW2RI
z_^HV|gA^;|Jc9(rR-UWtBLU`qeQUO#A<1SvH$)a3kr;9vcDS(fh==p|Dj+=|<R9t*
z%cze)NTSOIt|Q2t3+QUwG`@?#7ky<&HyyDnkWKo~9pj_>29lQmE!@0I$GOe*SSZR!
ze{?s<lwsPVmHNSe1DJ8|o=SL#ug_L{_E%PDPKaLbCI893|3Cf7-?<fK5bKOf!$qHM
z2}380C{2(L9Zz0uir7{EM`ZHuDbQVp)IAnz-CYJpdNqG5M21Y~6}9TD9FA9`t#}&o
zh8DKkKoz&A@GE-H>jj$+(1RWkVY?>?hzM=y&%UU1ujnZxE1>|Urw~7P@o;6S>$eYm
zDxO&FNQ;MqEr*^Lux<-`d%=tTi-<lT?D3pEs3@px59i;u7BR>A5N5O1J9amXF3`on
zBJcyo&)64^?e0&ly%6Z#M>$W<qj?~(!zycX5xduZF@7b!>x2IMO`nG`?v!)({KqFb
zkx*^}IVxg0&>0eq#K|>Lc%$ETo5v?+Ju6hOP=q-et{#p(3Vi;^fAjgP{?or6SXvKw
zjPaWwFCi`n)IZyO>{b#lULK{sbA|la@BY_gcl6bhv-5G($do~D@=g`K4IcXuHql05
zK%cdNRZ13MPIs@0vc+Mq0Mw?(7?E7oWk_3Ld3WFe0?g_h;ct%)-q3I?=MaK4*Yb8g
zz!1T}qTu9dCYE2F(SPVYtu<BqY`bFeJ1&k=$lh;#QGRyyML&hwzJXT{?<`qXS^z(r
zF)z8{J{S3$!U=dHoRCn;KgRa}<*;7_QHRjz3uMcf9ga1H0hx)*xY|csu-Fz`x<JhH
zV+}_Ab^(w}2z~#T>n8@}&^L|3f=aYgb)LO2(W*wHuotp_rS;HV_EAzqk-;b*C&<DV
zB`(u)lU}#-@%T;*{>%)Y8&gpab@jwnh2agaZl?kU{q3xx4(jMN`|Uo){Ev)HW9NC!
z-!C+0t=OU6?t4^ddMTBgrfXUrGim;gpgVopkfP#vK0Nk;`M$?Ls34ogk&BuwXSO$6
zPO~}yN?7eEa)T-qd1d?+qdZ~mcl%Y(rQ=Cz(z4(OAVAO#w23<Zcl!7BYXA$Wq~&in
zu4ft46d0BXbx2BU_0*q;-aTjQ+{!<|W+7Q`p>%!6$o9Dh{oH&5_vF6I`MPK+as;2r
zqW(sF@oGD_>t!x~{FBNceIa5Xwe$x&a=-cz@W_swa{+ip0nn>BEmx-*W!Fz8tI4l|
zr+Y(iu;uwn?(w;_ApVN%H)JEicgBAv9Aq2@Nm-zvf>H246x7@Dw|+ZSoI_56bV<i^
z3gLDVX@mQK8P5^pFaw9nTWi5LK~g{pRA24M?h>@4Z7kZ<<Z@VGJ*Lr3q4_&{CMMBN
zfvBn?ALBhJ#o4IaejK_Wy1^%~`zRqTifdT(XRg%n=_&+jpapE<FMLVmjw^-l4FwyP
z>OpF9vTKgX+i)HEH*g)S2?CCpF5hscYK4QiBW13i6cKoJ_Ry<-OuGgI{3W`hO1uT2
zSR$1C85Sw{JT}5+3dy@Pw@Spbs?hQ8+;bMMw2~&K8g+UGaf~PZ7Aw)^GenFDITFA~
zjT>Z@Xp_&q<p0^Z=RrR8-fyEu+mU1UKK8tgcek-!HuV9<fg6`>Z;Bs9e)3Pg4OZ^2
z!CAD(KCrXD`9O<+?Sm@OzBl^E{xAOS-C=-PZl|kBhb~eO59jY_;H^nv3YjfO83v@N
z*p5XE-gxq3f1f{o|E)(R&@WIsM#a<zqX;GsGR-d375Co^7Ank*MZDo&8@SG>W0w6$
z4cHNqsuH>5hy{AvxLM(EP!M1~!CvojAu)hKKC8IB=I15rRv<5RTx3`}RtcfdXCM4w
z-8MCp5qKM)fbOzw4+UtKxF1T=bl>91Fyj}rn6h5RiL5J6w%wVhmf!1@8Mb4j`ZDO<
zr#rdEdYlF$Of9nLAK{J0Zz1**^Z0@d0?6js%)!Ui{@`N~&|H?}{J;A-W+JP~(g{}s
z+9RHZHYH>$AarO{HWe~_^o1siwHYU}Rfj5h!OsG*4)LW+!il~RkJkJzJQ~PbEK_9w
zseqg0YjLn}iy@_Lc6d%he<wMqqxtli{;SWgmMM9z_44@9e$J5U%2=?IO0x}5Wyrwg
zyk0lY$Jmej{D9V@C_&88PGu|%;*!oT@)K*9?3U?~Ac+Wd70PL;cYbCTpcn(Nu-a#%
zc%-w7UB`$`X3>tDF&8)mz_n#O`P=!pzt{L>l?wa0w0N;pma0T1W<T_HXs_tAzwRR6
z?1S7iCu^ctkTxKlO7g(-4t|rxqPjB2H1{fVo(>(q5uWscNvgR$-A~kLBk)g30w(1C
zc(XN?N}_Z&AVv{jFtBQ{M@gboR4{qdDA!{ml%-Ez;0H(<l@xqV{}Kq9$y?1WSL+9F
zk+&T5o1GX`F7!WG`y(rOH#eBvaKyx04jpU`gv@vQWNZ45P+&|XU*BLDN!~v?M+c?S
zOgzSTK~cncFaG*hU4{mXvF_~w19-eSC@?uo4|RSoaQJHIUXtJ4*_4deee9#eyS?{(
zZP-)&=;adPo4pkqXH0kE&=h`9{`^ytt}QYHw0)?4#IY-QOm|MNO7=>pD}1nbR%#Qa
zC^N{^f6sNY#HJC?niQT*51itsvmIi_)Ii{uf^`>$4f*MPvbh=b6S0W>AHMS@$Uvnf
zg7JSUvu0R;)iAm;)$QV~1an*(0#nJ7oYKDDKi*MKni4zR7>Kz7@5pTzu+5dkx9)gl
ziM(}!I^%$gT7qBue5YeL{0Jf$<R`tRFE-#Iu=HA4bA`EGv}a*%0er`&az?3dK_HsP
z*Mz#|@almFcD}Xb4e-?$LKtdlC^bg9b~xAq0S?<aj-P_Gf3a!$cL?<QwWJ9)01d_@
z{+MYKc>w-QoZSlt*{nPHe|@S4S``&{%=o)A)+4<6nRNdS5YKomSzj?@&DK}1EURC$
zB-xWA`zA5$&;WehF)u@w`6GPY0(IV0S}1F1FUVCYZ;{Me*VTcNc@~FQS4sw@W&#)N
z<H^&36!$$TFdZyI(?J*0z4C|9bdXvfSL|=46+3HkJMPAyh>pKV375RZsS`CLl@=ib
zcicH-t2Nc*8eWmX#AD{a2NM~9J!5{48{76F0I?Do1K6E%ewzS5a_j_qb4aLDQGlxk
zq{D>9o$;3mS#~D9uno-aLPCl3AqI#rA$Y#Xw6`R`z_r3UKWivG%*utszJI4O+!kVb
z{1}`*C~Fx@U7>r85v>iKzWs=)gi}D!AwfUS#0;P#z>DU+DkTraLH}$hhT1_0M24Cr
zZcAZ+&0BW{6vTR50u2Zb-bvha#PS}XUfP~;q<1HrRl=n+MY0pwg?7Xv`Z;4pPw88Q
zNV<q04ND+LRmxAqodHBwSy|e4CQ!6HTniRxKZh^@c|E{~|FJcq$yB4w>?~$GUd{ZE
zcr~-N<hAgRsIwsPhs)haZhgKcAJ|^x?G?EIJI{smyaX>N(hBrnb1<!;0B;sU{^{cX
zCqG@@OCL7%ioe~(mv80++VG{fnA3P@ADX^%+84ngSSOrLME8k&C#Tp<AqjSJ@JSUI
zvW#v#7HF9>8#VYsB2_*Sm3kdyEP()%J*@@PJ!yBoQx<3Fm}h|95XieL0LD&eiG22j
z&-3M(zRVTa<w+$)7`faW{-2kdKOb9~^q{GTUX(U_*0xS^<s-E3+jI3z++T*2(S6uu
z7`D;jg|+EL{UD4~zc!nA>@!10Y+=}5r_W({>Y;-;w^im;@$5^$ky4719sbRNO<l>y
z7R|Q=0?VSu2M|Tm0=d1kxr6~HMOhbHyg6cwZlUGTD##gx!oS(cF!LFJYt+s6yVT7f
zW-aC)GHYN!G^l|Fd2|ct9x=9ACX!=BaU*g7$|?vzspNP@zp!ni1SFN$0m0t=l)2>N
zP5H+F503X0ye!xU8*(FeyL-vyv6}blVu`2Nf{H*~8k9-=dgR6^X~>+1OPPN&<s#&>
zG|Yx872>_9!UfGk%)G#YpFWAVJI``ogZZ4Cgv|Wi43p2I*`^!j#UsULs+;2J7XT?r
z7f$YxaU>7Y4jjA5i~{M|*kbE_lW{7K1#Q;T5LqsbRGz<+j{4o4JGz@6I#%ajGsbnV
zKye%MS<F*lCNlLTorqn}FTuT`JQ`oSsuIAlV<w&WhwCCz?b;cVUcYW|>H@3uP>_Fu
z-5){z83N>?j_>ec#e9>+3vEWA5y4vXPQR{0uoxV-r{1jvk`KN-5m54v1VAwOXs9md
zpQ^$3<3hZlUkE5F|Gi}MIm}!R9%8tD3|0Yb*3oKY3t~7!+GPuToF=n?egevm#H<y!
z!0jhxElHZM|1=I6fy#VVT0wY+7^OXGrKc_3r!Y=+zyU2E(HwZ-doG8+gdH|PD_Sxa
zBUo>p^jWsbAoll^@ILV)hXtT(!73Y4X1kj!r3K$*7hS-v41dE|-Ge6ZxG*s8i>Fo1
z_sD{{i%&G$Qa9W4{Rz`vH+hOb`l&%WDM%%2>`chG)#*H>)>gFFf-^D=ZQzx#m55y`
zVtP?QZxHGJuaRZ#^W~Z7(zr(X%<Mz5nG@Y*){M-oq{|PvQBU5Uz4_ZSwCy{{2ugY2
zF8Jn3cbEX8D)4xe*orax{KEM}Elbg^b1^#xTJ^r3>AaBgnOx?8Hpml}aLU9wa;6Hz
zq5e8|mptcjw(q_ljK$+R1g1=J+HCjjblCsq<)Z$zO{h8l0TjqiiWp)y&y$E5Q=pw-
ze8KR#9kQM6dN{;Fz49kwfArH+!@GnxxU|J6hu&2iZ}%}e3v90+K6_~v)g%@|n-W(O
z>)V=+L6W44i)V+cKV2l;kC!szv6fAo+N$hZn)di~N2Gi6UNz5nx4lymJ8iqBT-aHJ
ztb&2?9`B)S+*lR(9CKf_Z``X4>!Mg0GiApfvs<MxW59h<YlO;ay7ze_IyXT5i5&TL
z-UC8`Uj>M~I484E2f0+){*9jg4icSYe`!f)IhDO2Z8|kdf&F%c)MOqI&ci<cRb6^4
zf!!9@5XL3r-h4pH{K{kp$;M0+xwGebzguGQvY%hwUq_jxqrJzkD3CDy60>|%aY<oO
z@ybAokt}DgmJkCUmkR)UH0|%7KP{)OSRhz$znPW)*_#nv%b(>a^<ITO_AtB11Le7!
z-F(G;JU|n9$$>J1{w0jKhfZpbipFB*<Yw+qk(!p5U#eala(2VVVZbU-aA8Y`m&<X3
zY<RG|I!ywD&+W8VW+jG>>}%adL#sJHPAOaUTOPmp#$V?|KsEPAXGmy@*89=G13%w6
z>HHuZO{ce;ZXMT?ULQN9>YpocgB)|_v@Gyq(IkHGKFEx5E=mIt1>kyl{>QF!Qy(@R
zjKiyr=9e^&Ej|mc8~d5Mr{x)QUE25bio}wwUcC3GsY<1l>$eA4S)yB4{5GZ?yhqmf
zZJTD~u&GV?SZPAL;6!41$nanQDa%KjsO7RgnYbbK`g=Os?C3v=Gu!gfaQgm?IUQM6
zl}_MkdJi1(Voo=dN^h98@mc6HUpMCxyWJa9o#NN|T&IneN4xeN>t5cMPobTt>k47s
zT*%?*LWN%6#eT+MZ4g@<;zMp9WQ`M`qCaVzz@8v+AGrAE$<Fo%7yh*lMiRIA&bYP5
zG?Cu2AWow+Qj#f#F2{O-L+Sc8OBirNz|uqnzz1D`ExY}?@X*m%`nLvn)r+<Z)a<0?
z({>Twr#w|=?SrL0_ajFMm{k;B)9dGVxv>Rop=CzIv`P1n4#sWrt-6~2xOGs8$7~94
zK0hjtBZSYtPVkvUHhUs7y1Nstt@WBD%j7}c78h`U4E0=^9xee%+Y9?6N-CC@f0-zd
zn=I9TY_fT2Fu2Q5zGdAAHV|V0$8XJkXiO@<dfCrv(_)X@@;8_ul%WFo5kZvAQ}Tv@
zDVJ>6y7b#bJ@dLekfAcso9{Ov^s$0%{9(LjT!>6Tx-;pQhD<Zqkj~ohUMUtJ;KDYx
z^cFU0XHyX6giSjZu|F(9MwXGZAVuKvgy2=|=!cL|c0!bGGRl3TGkiTsa&pIHRre0P
zBzIvC1(?M4Wt5?=C<K|W@$r%y+HlcmR81r#t|fATfTqN08oQN0I=>ko?Ktm2h{!GE
zee%a3Vy^IJsUhqq+WU0>$O4P&t?7)LZZkuJk1-C7-B~kABLj4I7dT9UPhZreoZ~n(
zJvRwp0FIPMAH%ggl?iR>^Zjt0DV-f#O{sVfw%A{Kw`j*>IrQ6m^h(UT!;n634e6!k
zVj%HqmaV%UKs9&TO}(|d9ttX0CKb=L&f_g&Yi-NwkHoRARCCcr1(E~%0lyJvL7_IK
zoF;X!2bg}ypSW0kV5w`gEp7TDD;u6+f<-a9PR!)b>%*@`|D(GfEC^@7jPjrA@uVJz
zTeq(Q*1)42pT29bG&_3q-ui98(E~-IaaQa^q6J$lDmXUD#XFVHYY#0ot@J7{j-n8p
zp(yK&dDch`J(QOBBo{6cto_?PBrY4z9<BMiP_)+8WDU;ezJ%nK>J-`Qe;tUXLvtjQ
zTdXx#)<p9Zl;R{RWHlo}w6fwmd6N82li5<RJoDlr(x2|N{3?|Wx6J|<R5;5EUq380
z8<^m)xNYE5fjK5rF+6^#c$!S@C=UHW4M1>&pQ8eNwV@dx_{0%wu1jDnxi_`6^EHhS
z+afmk00*EXOJm;&Q*3__A%YC{cp7cA3j2MnC)RE;+c!^LDQg~CV-0Ktw@(q;mzI+r
zxH9zk!o+%8ll+x<ovqGVj`lAgS4~YTRHona3S^m#u&sWFjdp|L=sNyEw3_5~m?OC@
z8fQ#izyjO7+Zzq4|465t74TpFuy3WpZ8_c?W$Re334<)txfZ85Qo$0a2D)6n_k#Rd
z5{vlUAPJ?lR(WZq83emZB1DjqyP;~UU8C_IY<XrGTVuuNnFP$seJ6xZD5M<IQF!Yf
zDlLL%%dEXV?Cl3O|7qnGjsReLVrbG#+TF>z^md1t)owOOMC=2Hh6=iTd}^bV6EQNU
zD5HcBXqqZp^p+C}fcpJz5qBN3JB^w|LeAgJPwh(uE)7GPkk&a~S|vZUz~Nq^Ywo^_
zZX`>bANBGcR3qP4wtu^?Xnb|Le>b!l3Cr5$-<=N%1^ALwd%S^b?vLTCaifNc;etOI
zqSPB&w+s>(r6?7w8#Y<}=2}j4=UULldQTw6L10*`j>=?k1WD6##c_Q&f`oTCI(*vK
z@|&@K;mmCa08O~Kt%z#vW*DR;-4$~yIZNV@ue+;lIsg{FnH8fap<5{}QYitLRKWX<
zxlCz+%~MN0ui;x}wf7i8=T1NL&oWbwj)1;hR0nOIN_Wc<+D}Z_U&oHtX8JT26BO8M
zSYuF!Oz|r$L#t8ca<&cKTkJI>C@2#0mXVv&o_>}ioG*))-@h7;%|*0wAf_2VO3dmi
z{I`U)Ax#PlVNxpLT<p1%gi|I2XTjMVnT=G*>FnTJops)BS29yIQk}41fwMY4m_sV1
zUwY$WxK3HXa=oGB3$&W<-cJ>4Hv~FY`Y{{#UTcygyx{e{_Nxu`s#mY3Bmf=js>lne
z=30^QUZ$+JMw2Ad@SV*^TRtw*mE!<G7$0P~xZ}I{N><H(;t)G4jkYjgxEGn`<Zn6j
z1BY-GQft^%)?ba>SRo~Pe-5FS%)U8vt2;0G1VK4|7~{AhY2n|VV-T(1Y<*>7{lVj{
z_h730erF)E=`3o;10(9lKG$sFTKhA#1xgClNsm}9^1BfK%A4E;Z{){*s&G2{GG%*H
z!s|bxn~UI^B*E-lN=<U4y!q-*w@GA@AbR|^^BFFqo<wW@ZcO@=RmXm(*thHJ;s2Jb
zCcfDxV(2yU<=?~A-j}ypjyA@sy65jjn|#i5%cP$vTg-_Tbt*ErhVCv3;Zg`xEt}7C
zi<kBUINT24@u4XC90Np*0S_~;>`ZLBey%c2cYz~^+jPg5qL8f<(GZa7lB`?iM%IbG
za!uB*io&k-OBzNLIQ42X@kHMyf4txWi2^6vc*G%C3ee$~|05kf`Y$yzs0tCEDt%39
z_!-M1K)zjX$p{9@!3Vy|L8;=7L@QyS1FNXdx{}!`l&m(J4A{`l&|KV7@WD}-spJ+Y
zPzF%bQ9n@RT{@m{>q{m@9Zk|0jegRT|3}+fheh?aU7*Y`z|h^@4I&^N(t?uG4I&_o
zfOI!fQlgZSQbVH%3@HdmN_PuGcY8MI?|Z-Zt8@N2f9~t@5_t9<Ypr|T&!&rHljn-`
z)W(y0SELKUPh=R@5Y?2!L&+x#U?)gch2nV!OGD9_THw_#LSJ9@r@p*Dz2<u<{yn{p
zf4*^dD}!Hb*Z=FO+S%^(7uB$2oko5eVS(rXB*&T0p!iz54}AydglcuACrYu9n%1pF
zf)M?aaWtgIdraWQAGxJUzv#A@JE1<x!}xtpuZRYfe=S<)Ko{J}*(`Rr;>8=1(xl5|
zXprUmW>>wIlSVIwA_aF)YUId7t;Z}Pqd7n#!NRq=+14Gp#Y!!Z>NATk!pU0+kQ&XI
z`E}m+4_dmiU*nThjQdqZt?MrZovi(M{}K9tpI=M+d4~^e+w7}Z#sX~0o4N&ulUE|Y
z%fC{{9KR4;ygEOuFki-X6-AXH1<kSi9JCq^7)Uhz{dw<=@_eaqk{gZx+mrVbO)Rq%
zGDb~RuDU|~b2yiTao=6AJkdZT<1UHa&cFETVv9#!qOE#QD1yo`NTwON&T40E?C+UD
zJeSi)!6Ya(AY5i~5WX`ta1Ks7NUy;Loa&vT`gAQz7x`U6<zo8x+6!<<uBs{_c9mez
z$~eZ;SuIwltAh&vQiFU7akj?A#4QN|ML}~Ej25-Fo2hbRu@8ZJCtW)O;;bFx?fc7$
z#(W8{A^9QmG^nwZ5=8gGQ_>d*4De8-FJsHJ_&X=*n@@or75IJAjK3s4X`yMEcYc0S
z`uOQ+h<NeBo-gG5NIc8}EkSW55f^f{iQ+WQTymU?-#de8!>alg70~HPUC6{70lSVd
ztgXWVJeAuO*K**L7Wn`J;lM`t5_87yv`Kw^tifVxp0r=K-de2qLYjdPf?GX`f?JJ-
zvlB8t@A;kex9Mp|d&P&`Rkx+6SL?LXX2-AQ+Y(opM5vJ?ksb!tqZ8|EGX`E2?=NsG
z%$KTT*ieca5mE@im|uBaZu(U?9Gi&5fp&pI6CI=EWXo~);Hp>{pQJHEJjYvzwbsGZ
zBN}{1E}@5t?<{n8&N)vov2^3+A*{H0217)LqKT$!2@S<EBv*4I4Lkz&#)>=RJJ=EC
zh>vo>|GSQ7)(U$$X4$I%rGqO#y~MJG{F|Enx2~QFeZH={P_JGq!=v|f=VlW=V5hVH
z^(6BFzD}tD>JM6fh<DSV+TO_psqamvXX~c{@-8$w44YA+oIsseMYayl_lo*1;a~$D
zB@2mGy1;R(dqrP%saA&kG9Z@t2V__;b|fN%B=yT^W672cq{Up%BAmxFznJI>-87mU
z%_$=f??lDzUA^?{TxsT&Kx1crq2_CDj$+<f<!*7alyBPJr*A5=zofDEqjA+@s;$$s
zeM`i2c(iT&Wm=S477Miq7OZ(}nl)QBL45G0nHv-y?;Ft{o+WY7lC&)vwXt%{u_DMh
z{BVnYI}zog=rls6&B-vIYjhn>`vMjD0*(@fvD%~%OQfU*hiJhwLg%ctZNfZ4>(K>k
zCXcoy4iGWuYV6)0m52rp+67_|dQPP|fn$@EZNaA2K7nQL9|j6#>2sTDNZUO>G9#C3
znT75>fa?c&q$P6Ga}>NaI=-T}qrbi)7TH-tIzT-4IB=rG^e>sk$K<~3=>3*Q4M#F0
z*(F)FT2hu7731jk>S@WQ#A!`5E=+zz_WU&xra$@n&`~})q;o510cOcktSK*y_PwA3
zXyDWrUpbYHJubPl^f4Plq|Nu683FU`?dcSi9P@S`^Ir@2!4-9QS7#%lWKxTaU5cY0
zopc^Pd&b1XOdYI?cC=q<eOAFYsP4R$l$3<5R^zmq1bb}uMNt${f`Uh=rQrMW*GpdU
zGJ6FqwCV^I)n}8Yw7K_MlYqZ2zKQ{aQd64H;SKozV7+GQFXu(Nb1#L_zcH-vk^P+U
z!Ey4fGLWL+`&JfM_nXs6I%X|C`g;C)ormnGAK_nV<9P}<JFCF$Xf$u158oE^*G(zG
zGsG`Y&EhV2k|BW8Z2DCh3ue@8VuY8}x%*j7>S?AdLoW#o-(*^o%wuZ?b+`F6RZTL}
zj46kkNxZee*S0+2)yP`x-r{eC9_<8HeOjk!nyRX*oOZ3URkwhkii&%5m{-rA7|L)j
zZs=8+rN%jt^aXu6v{oJpl+4Gxmy=XcVTWI2^y!VwG;sZ>u^l4?i8#31X>Y=7vG3Ps
z3uo(y7ge9qRIS=fOJ36Ad~$n*)iG<V(66E@jJbk~yG#EkU1Lo?Yoqjh+xNoVDY}2p
z0v!yL$c}rZ$?RZ(flFMfX9n=uluCn^kAY*3YZVf5ffC^1YY=R}ZY%M7Nn$69m5IYi
zc!H_Ve%)6=k}HK29t>lJ4NRw+3-^Wb+zQ@@+cPbu`V1Xq>X#&JROCBJesqg$TS6KU
z15xw|Ey446f#0i*<@_a7GTGa`mdAS$U5~Q;fHgYZprhUmz_iLB>~}%b$g!nJ!mcSt
zGDyO11o1xlh2mgXAJW(N_}9djSoW+kuA|YKbM-oV5n-PbtfQ^b&caV>Qt4QLP8!^s
z#`|!+eB1Y61ES-TrvRQZJ9XAS)twC3@P1lgK5-2lJYAe|s+1sk09=u$E!(<<Ja~yk
zs&(INeTlKyTVFmwQAepEmu6*zS{x|;D|~Qh!?N$n5Vd$kRq)yf;&kJ-JnXG%N>8tD
zSbtDi-?5laif3u<g`Es{1c^^7k=U%fJw4_+yLfL@S?VT}6hRX%go;Cw8xnyP+A$jt
zx!8%RBP%Bd*^;WjMZGy?{`C3mQE0UasUItb{rJruweJI$QjU4k4khW5qfnoP1xe5A
z*v1F&^!mqp(T3o$-=B33AB_#?TXa1C{!vow@|}H~@hid5#a(|SIXxfX?vY<dZiXVf
z2}nF-$Pat3tv1j{uSs&lg6IOTP=ixXdxnKL)uj;<I6w6I{?=~6_F#7_y*;~3cRhYi
zh)tFY=zR<qhK+vgy;3xMXB^PRP2l*tASb>Ys4V4|#q9aRz|rGr_h+1JG+F{u1uKY|
zqZ%wFwO#>jMS~s`+JSmz$h0LS(ebfS%_q?#4CY-?^iS-h+VV=*9fZ7IoRON4$BoA(
zKl(IM1fw%VJ^P&!e=d{Ki|i+J#1q4dmHCz^APJ`9>gG}Ojr+YXkbmwRTUJ_hcGhbV
zI8`UH1Yp3g4hW6<KVxCSP0;0INK#O0p5b+T(+T`!y0Rm5vN?jSnyoSLJr#>6Q(5Z9
zhT-RzS{|dOcPQIp=b}sLVs?CTifO?~g{soK&0j7{L`Oj-5}J%4hYFw1rI#fgG7U5-
zwqzbs;3GfbQ$zdsFt(gpG;8}#DX^#UMOUZYr|#TwvO_1{gI~0yu!3P<?`uhk+xDD2
zgKiTwuD|4$O11K+XU^~I!~SDLgD{tA6$u702gJHRBYfTGm3B%BiN28I3|<z211As9
zqaZ+lcsR;28k8qBxrnb#nJMZKwli=<gdi7OGgeZX_*gu08wZz9yLbk-)7Lw-bW05|
zv<m%r!V#k-xU{k4yy4#wPx><tkD175Xn3IB<B`F0jNc#aDF@W%c(#3JS8wuuQW^Ik
zUW&_q2|lPG-2hrRjuNQR|G6V^P!fxcEAkAveA^DU$5`YqxFU1fbADno*qEA8?{_RY
zQRfY#>I!^?XXZkUh)uEnCSDA-REAp>3oDe$2cp2o3?gf*rT?^*?Kvc?R_3uFC>{6(
z#Pj|9&n8PkSr9iRRVB#@w4%YE@|8W(@%u3|C%Un>ypVE}o^VEV>xK1I_<9MA_+;ko
zKbf5rtBD3WeS?3gF+%5TW%<!k;MUnw%I>}%KfU(sz*OO~a~;nTCj9AUK~JQsW8IIr
z$X~4ECHJ0vRsD!9JMTm2u`|Ont<`MA<tyS|PWIbs1oiCKvW9DxPT(lbr^LY28rnV@
z9>mRy#lVd@0OWWj6CZGm6&y*ne+v0jVKKv^!&1EYkVf0tQ!?1sJ4>b#xtsBz8x8Dx
z99)lha|?p4${{r?+BCaOVhTnHCJk;HMD1_JbIGWY(HgOzysyEF@q>F1Kh6+P#i|cD
zVE5daoU?fAnZ-<FlfV2IaCQFLU+!8M1^LMhl)EG5a4Z!9z+o69SlziLOgYzDdU64K
zL(s~(U>WLDA#W&f<L^^Egbv}QJFqO`xxbo~@W%Bq7jWrFm$PEXSFCJ|%!^L0B6WII
zaqIq>jSAOe*P-TVM>`}-g;-*V!G=}s`yUg}1~h;dqE3x65*Et{=V1!_@aX6V2GQVs
z$hf?A<>$ELZx|RhnauA|;Qc2^hC(4oPU6*f)xYmo>;1^UulNfN{?%XylK06v6IKPP
zE8|$obKLFG^9+fL>TvxhL+!-`u_ft~&Ii&Qcre)T!=776mrNqwyksr`7SV;Zw<RKO
zaRq|1oy1-qC?0ktLlbXp0X#llg6R4jonm&7m(Jh>!}i6;p%$eJzecy&wQ&Y+h&z|!
zgImLRKDN{HEe*mM<QdF{gg85!T1rc~JdbPVmYOY|K1F{k;3AqF&BJYQVn5KIkea$a
z+c--|{UN;~puz2&VWMImZPFX)1JCbB5bCt)mk_cA9MIgFh7P1s@BQ#47F&*0C(iHV
z1^4f0UH{YTere5(Z^CD>Ginf%=8w&9?Z>{PRrT!ATajx@C@wG8w<ukGhNsM69alWu
zI%Jbw%nqNDgENaItfHr%sxp$3k{G?KQV3YouCa8`WwiMtm~sR;R61aoBtJ-F@Dq0k
zTC2G#lRWd7vutZ|7<l|&b=!PV%cI(0^}^5*RcMkTBJiK)kl*JI1>S-TwmHYO2le?e
zCZ<r--79pJEh}c^Dz|K^9B%lHtX}M!JhRrb|Gp#EQ3QmX%Fq&Qs)F6olTOz{IZ#Sc
z0sN)+8!HIpT5jWEz7#2`lO><nBmEQMxnRhfSG~fWu+#+|%trw-Mw%yMXFclM{n2<d
z8cK+#k4f?LgqT5bTdpVCOG*$QNJfMI<SE4NC<4jp%G>=~@3XTx-DLt$jl(hn>?2m^
zd4j2fS;tWh;lv{aej@12#$O=C+9jati=&7Jcc&1$@p5#hdVAz??78HP_*Y}LyciE^
zZw4$~Ymc(leqY~kz9tit>t_uj?)Aqz#fO>v2tLU)C^^vEN_>Yui25~x@^OGRbq7@U
z55$Y;oJyXvmIiTidYr+~U@DTr3N(p|l6VUxq>aXDrDO35TrZh(GNr89liAGs4O{Oo
z+J4{QXX!mlK$-Y0`4*|Nl2~31rupq0KC-a=5V?buFJE9IDN=2oTmXFIKH$ee&*A0$
z@+vgm>@YPu|6_PIXBtemmNQd2v@x$)t5CH?_(MOVB94mw5<;ijPARhG^gB*GM(_l}
zH483nWMoBlJ{O^0(8pa|r*wS?Pe%b(oQ_^m6ok=%8=n->D}8WGOEfk16wiJ%Un&hM
zTW3F>2DohHoSy9vLXu5aV*C)ohlEn&Z(G5YhyqU~k09ok{RheS+DDqpM+REnA$br}
z%oAnKt@~Q62X?5;yQzy|rd4BnFYy)~N5w2|5x$zs68q^&t2nN&B+6qZIRLn6@0KFv
zQD4x3$5y0Ni^W@0KM`SvG5&}Nc+|w_(%jGV(SpG}tYcbtH^iajbeP3_W*NHYdhMNo
z+S|8&hwpvd0zgwzllpFLFNHVgm{@7?=bR^v+{&vRrk$LPJbjq(2j2)OlCY^GrJ^%T
zZ<wxb%NsmUdaQE=l<dLl^mXn2z;2r5(|H(Vi6~O?`G65LU!^nBCkX~Mu}eXVk<ff3
z4cxaxPM76f8)tUn{Kz=yM7PB6@u}pUh(Tsv`G6Vj_4V}&=J&~2si4D%@}y-hplGWI
zWWq4d-LjBLNa*6Z)ZLnKR))NA^bA@kvv1>p42TE8&C+z=s)Z7*^#^QRp1IeD15$D>
z#p#C}y5(SE$o@7UoY5^Sho@^D7_XJs9)7T&bZsLnpI(?fox><<o~qrH-WbkbT=)=D
zJYETTicYdd0!S859iuR+EW4c&TD(>SBs89dMA*rMtkte$Efl0<g{_0{QZ*QCU>yO$
z^v~P|)j6Vq<~*O*2FioV(uYE<@IbEsjo|7z$`scF_OgoJ$C=$Q^5jNC)bnGWSKg_F
z1C37_gpy<QHi#cPLXhhi1IJ<83DZ+_Ko)vkd&Vr}6lj+`7_7V=S)!zkBBWwSW>$Qz
z!;+vbCznSypYmDDt?uQ{j6UB^LBP;ZevZlPbeKfjwb?UTAjcX#HO76vo+yRPwqxhP
z8>l-U4=@07MNc$T$4*P<nCuwSOF*XE@VvXQ{%p94#OtTbH^YtY-1@WoRjGd{v$HIy
z3}1$)e|LWi6VJFxfXlcUDUMof(?VrP07l<39l9xaRaQrOUQ1zajTk4C2l$1)qh4MA
zUl?ljU1!0)azSWMXCDjbIe$fjDG7qgI|>4bHCy=L3cHs>7}JTSoa*jsz}fhGHnT<F
zx1aV`*ZR_9mp*yVa)ATT4<zwg5NWtHwcf3ia1&FhR4#JtCp6w<G`<z+$-JbT&E!c?
zvG0kQncR_2cw0^pI_>>Zb?rCTJ~cL-ZgNQY75I1kVX)HReN}N+k!g1>zRX;YqGVHN
zT54@~F3J5lWknj`A+fe`|NDz;n@~y&n^?RyUpYF+U6p=_;r{jY)n?oB`C|zUCJY-1
zHQ3Cblzs>*!>VNjkz9#d2tS~}12^vXy#U34rvk(ANfaPPQAkdQ?}_QAYroipZFj?n
ziy8`nb}M02Q5Tx^Y7JK(b7LJ=;fRWOi3e)*r-saj7kDkFMI2iKY~p9Bh9S`aL40*$
zVxsf*reOE??<C?wCPDC<DeR535eG8r2?#?V^zAL``T02eNAiaNM%9h_zCK$?E4|TW
zExwdMam_$a@n~P~jFx~t#s6ACa|6eq^nHpD8N6F%4lfTd?RCR=#Ipu|-o41fqaNxz
zkVs54*rP5+0O&W2;g-1|`hPkPwhfuNxm-)ipGs9_{60o!BJRo{sMu#y&VRNY#ZHBW
za*wWKjDu14tD`cQYSLXf&N7f2tX!J^E=Dd~HeH!Hzi9L2Z&=p>w++j<lU$Uuu+Pv{
z$&woNW9`YsXL4<&7Tb+3%3F`rzJk+2;p$>Mn0`9ZGhXkr0X)fNP($XnIU!FKCsk^S
z%&MB#Ez2)1ZiF|m)&hv<s{&Yb;K)E9yafjut1zyTTJ{p}*B4>p6!a@)zAGb!zP9=?
z;xFiz%iLCm41LM<d;e6C&maDOKNE^SpgEyrw%ME3-mpnG?vN~!!<eXe4j)rKI{eaY
zcQeIa>B*O0NhS;hY;x!UJ-HQhzRbsRokUtJ{Me?wec>s~Lb99tm=8x)I=;k<|3*rN
zkx~zy+sgRl&6dbqw$jL*DaV*RGOnz31i8+G;ur8InilWb8z-~r0EK94^w=_%qSmbM
zmzta^i|+}a{oKLJJ;-u;Boc!e=UokMv8;Vyr5&#UPf%nGZA^*x^^W1?wo6pxe%1(F
zMFu=D+Wirbp+ZE16!f9zk<w70u!K?s6K#5spO1!h9j4!DR^C}AUy%PPkmN5E0ae1i
z!`WVd?q9+!HY3+-;0xM7b_#Jy*ZsFr;PAa{Kjp)t({R_?j>BKkF7H=9uUu=Xp0Orm
zrYtjVa%r(sSlE3#BQ6+Tr|e83RJ;7C)=v-IzeRLk)VPmz=?TMF9xg0ODC(_y@6xQR
zP|byW;{<^QZ%K&bcy{F58fJ_)yQM8P4my4dU$V|+$D*@r{zO;fYHHQqtsaph4LbAa
zBzXJ4k6@r3_c9#n90p`G8>g#Y*%SRy%b&a}Lr{9BRmSYOC6!)-6%9;sr+mivxuxE2
zgSoS3wf+Ka*eEp$P;*HJykH<vK7`YSH5e=SyD#qh7G$vzpwwg)>h2)@RrYkkrxF3t
zjhc^&5*zwY7jckohhj2<%jE*=&wpSfY)={0w0Zp1un!P4JbH#QkWbraf>y@dNf(iU
zhcBMT8Ijrr6&dlN;(>4(D*mJ%hUZ<@U}0j0@JeQbh&el2KaH@OcXYp6@a*BkjpGs^
z$A?M)AW~7Eult2VPccodKYctP)N<0EACZ_Ej4{L;bbE4AdjSs$V+Y?@Zz-}PTaKU%
z^bkJ?5BTNK1tIJ|x9=a6V8*ZWAIl}O<s6GQxuWSAb$MH&pw!&|83)nZLqsl4*hoY7
zzVVl!0D=TEg@PU#zBBWko*ZaDzV?y0juEbtvzY~`$*0cdVa!J}mhzN();!>KEgp=I
z3-+|anqfzFx(CCS5T`0_%8rZVUbVK>8qSYhnoXjSLX%5;^2gB=S*+%3xVa2i5<63K
zl}MC%Unc(~8!1W+g|KL)f5tsWjHfUYLdUsAbTJP{ev(0q)#j^B%vc(;`#?#Z2t&H*
zKaLl;zH|nt@eL+L9?&#$$ak7?V=sDrBu&zM@4Xghi1(#y(dG60%A>z6MNtV19T-FJ
z(c(iN-ZC@U1esYLMtH-Xr(}{pw`EUOb%jg6N2Te%4uvfzWzo$TVBF;hB8rv23{A8W
zv?+_j0+cT4W}tNW_mYxPumZiKXvnwuP2#+7>-t4fqUpF+GB2_imM@vbi{x%yY7?>a
z$oo;Jsuz*bQK3a|E!^(s6<R?9(j_-+*+~~xf}X-Z>SecqSi~PJJd7;UW@)MRjj_(?
z4c7AEX^F@5KmL)Y8A+E?V<=kAltSp4Y?i^XAiJz^PesCiNWG8JGsZXj;rzIYsyK=r
zE2}dr*}=huOY0S}da2&rmCNy__UuD1LPwbh)iU>9GZx_R^y2RhkMFMLUKysRMT@VQ
zx5`4#SAyghc3yGNmO|z*8)=Zc`hHmN{fQ&%|22+wZH-AO>dF~U8C|X)DqZa-kO3ng
zteExNszNl_@QMr=Q8YEl_A>oPMHz;+s>!u{y=zLXp|?%R<Uq~fpSuA5bAt*aPMsOw
zQZ1S;W*~~<*wSiB9oL+qWD(&L<3v-X5=OHP7QQbPk#(v)tN>Kof@0Q>x(tp_qypr%
zB_&2D2un605e#yD246LZi##Hx2+MTf<yIG6EN>C@{?+fKcd*$c8ec?3qKnJ**`|_4
zEFAe(A2q!bSQOP0e~$dB4FX8%q<z0hFi5y;yi3t>Y(7}7KPc$6e0YmiP=m~xS<5Or
zBx;A}MGA2W+JMRze1EW9kmrDmNTOT<{oIXP5JVm>jtWV$!(@yv&u3w4_q-eGK_CCG
zHTgF9!U{wI#kioWr<wbEg~O;x<uysuPKfKMN^e~$75vdmLNeh!Gxl5g_@{Jf2Kqm6
z#(<?Alk*{jO8%}0-TQAvsI;OZ_KG0L@oD<U;++@ha@t|{mO=t4&yV>C2(j?#EY@f&
zM=ewiL>=bNjt?&OThZQ0>jmAD<;e$kAa4WHMJ0_ZIS3vo;;vtV7y+p=C(?Zd4b;eU
z7?S1FFHbYuF7MCvkOp|V>|c#l(?KXQ7N|?xh2pI-g6SiXoCse)HH)ULR&+^e2CRoa
zDji89yp*p!0z2JHg>(RQl+<IIK!4BfedUDu;D3~#5E@NS28IQSKinCZBkJTtyH`mg
z!Awcm8tQRY#+zm;DzMJ2f<B6E{yKkT2#sfBqO6wNlcpr}iXod1SjfrPSw$+RZR(?$
zii3I*g08ZTR)Koo{MIbG37EXv^3LhhhKn17l{OtS#GfoVxZC}Omty}1ynJTV<T{u)
zJ?lz)c&JSCg#b%9_@4$bhHtQ{pufkd8x9(0_y>o%ZzssN<AFwQLq2`S6A48_ni5G*
z@23uA@1mC2ahg)r-yvdV3^mczaIvnYvI|ulT3OrE?NIvu4N@3?OpFVF?<yieh2!z~
z_=)QIuG(y-k|fHhTqx@U*&(tKxNRFFg+IeBu<)fJREkJ&RzG%t)AF*swcrI5)Tx+y
z?K1j!9eO*brtaJ(Ps3RXU;r}}AkaqrfAqa7qhm6gA%w}7c%Te^*faW%*R+)Yz|3li
zma!jy1rAlGz;}x{y|-ZQmLNJ^G-2}qRlIdE+*&^#$pk)Tx%CXQ8<zCTaQ?x8oy0ef
z+QHA3$VKxt;WINQqnC8oW^sQ?2AT7VYcdiN)F1C_L&bJ%pnQB*IdV~N@W}Ov?%y9?
zocU7iytsrS?CC7!TmL+4%Iq~g@FOju3#WO!M~zUMTxHTQptmf#P7y0f1$5TuzFjha
z>^1x^X?T;1|Mq{aY5!k(W2qKp4k$4q3?C#X4GhlLgl79u)1$ysbV2PST#7(|_R@RQ
z0F!KuGj1oU^I9s4X^NuxQWk+7byG)Pk$obj-^ncBG^9D(8Bj9}q?!j0<v*X!DX7!e
zeVob(un=;Z3$3;uXu*~8$HgS+4|y--bjBSKb&CLL!DkX1F}33;HS!GY9{?d)`f<L^
zmzThdw+&FCR)kS!fcuitcGkK|-Me%3^Ja{3yxfGOf(*I<0DVFm>kLd3@MYe{Lqq>1
zg)sY%+#h&2in{98!@`;s4vYqThxuA5p}(RSG^7#Oz}SM_xa)jUc!-kI18VafyS(^S
zhfMOG+voJ<TPQr|&cT$$VBHEMe_Z*x`cLlO9#4N9sy#LS0_GiboB(JTagjwP*DXy%
ziQXwgK6mF8;^LC^*U$MCCwhhc?gS>uO_7#;DZTT{xSZI;M5@mI270t}d|ysZu5GkL
ze=h*e+R`d}Nq;@e%tmgEQLJ5tb9z&fxRCgOfXAc(s*=hRnBPnC8Qs4I1t0ndvgb3L
z<`FP2#Q6<{RkGGDwq#`=5ZDIud}OoZ95R}yPgtoAA9X=a>2p>_{Kh`WKgXA*`N6Qd
z<Jz73^&I`D=wEb*|KGEO<w_wL8gZ6Y|031!{&VDL8^Ix$SK)VHac7MO524pL;%yn`
zDf(&dp6UZz#L{fVWudHVhJ2tu^M`cNk&*jmH-qlaqrDrjF#RR4r6b7({z`?|iI_-V
zzYE@`QR#OESlZV8;uIrpuOBOoAM92?Pa}83rpbG<{kolQ_J9ur{O6~U$(5jG8q4W3
z!6?sB#<}B0e^0OLv(64!j%GfG^CP@2)$4<o!mca#G9+H10@F{(ki7;Qp%!W}2E!CE
z3zts6UoUN7zyVD4P|8i=JML41{&FoNKyp2!@mujJa5H+u#(0(Jb2RL-X~yCCNLppr
zN$GmxFF}f4DvZHzK@4}UK+Gr($dL4Sc%sD{-e%A}UjEYv*ns)>e{BS9PNQd4OW8UP
zjm!X=cjI<Z@NnrOB;m}md=EJCo%MmzFs?OQKxAE5d^ecm#XU*IxfZ$}`Xi^U?MH)j
zygJ@l^@5PPQDx)xe{_p&+L#Fjh8Bw3fEzojI67#bdcc274}Y$H;7GnQ{&gn3lIoA_
zN(Y}??ayA7kg~;G#1HeWQkO0X@7OtJ+~@dec7p-M#3byfCNy6yUUddW0JR#wJKjC8
z#X&~HBCzzkkiZ1E>_6Fv3uI$@41W`Aj+~Sfcq%UBebh&zPm(1&i=1A*_AMcJh9$3m
z=3S*{`*)|9wU9uPeW!-$9suLt?p)@IDHHYs8?lwt2i<>iQyPFy|1~$!;cPjhVcjF?
zN7#5ogWm5{pDgR&hF2#Ji2K@r^+&%Zd80jv#;m5i{$5Ej9wWd)?i>feXvlqaK{^)?
z6o0F3eS3#PG+3oTgs_YPYBJZ5o2hX(>{8g=7XP4^;K@4T#niQ95w&S&7oN#ZlqaAr
zmppeM6FR|6Oe<^<#~~+A^AmnUfI-TGr9$G5hJry9xX6gszB}!oRJBKV+jgXZw)67g
z_{$fGw2SQA&ucd?mA^C276_Eeta5v31~grLS{doRhPqD!BC!GzFyD#S<h_GK8f}UQ
zLX;YVZZlB^ytX?6b}z;MtLj-kN)0*b{SSI>c}9{zy)4blpzGpWpoSdDCH@K;6BDP<
z@3F`Nd@!m|o2ZHDd5z^P;nAySqd$ZK9K=$-1)CPycX|9^{HFyAN`+T2F)ZlZ0tvlk
zfC`L7TKI7RL7T?>Zl?tE+?|${i(AHD|Ko<Qu||GO8>8Q{_S{vZcH<1;{^mvHi_y({
z`y;kXNE_2Iw7d-AauGcX<*t@K7)c~}D(&(#cx8p@N7dWgLEIQ);CvF&%GdnfBAs_;
z>+9TZHE&0YcR88ky>UbfjtmPX)%u)q!OD`emc#}GY~XIooX9WL;s?J}O@eEq|EPL<
z|3i^RhaXStgukU=UU9vwW0K9hEa}<561U~h4F)OV4c-Yt_{v<i$(`b5LOL0EgZ<Ps
z-*|Pny=T!@i_=mMOB>EvgcgDU@@hPYEzpYe4|y$XZE3ZaYeBxnCY9k-fO7-C^Fogy
zaGX~~U{;s(03oTWXApW-B{$;dzW)uTdy7HvE6i@{)ho>CfpICAHl7k$Uq4+Exxm>|
zxbdQga&Tq-$0G0r;law6l%GAe->Hc_mIjdH<t=i=MiueqewUeo{HcpKQaiuED0I8z
zq;0fs%d8l+9^EGG^(5UXcM;CwqdLGSl+S(7a1MH4BhpbPfTt|}22J@^f*B9pZM;VB
zvTq&VQTPL>Bhmg1Q1@_#S#ikA0_{wD_NzBD<(pTT!AFO>Pd9p?i>Ku{qdCuv_(ak@
z{q2E?E7dJo0W{)2Vo03olaN2j^#nZi*YI|q1W~}$f^VL+d~VjtJ8-r)Ec91A=H_Lj
zy2S6fJGiwsb2Ud(Q<&#g5)3oiv<C<tNj<}mt15+`#z6hqSqiBYY}`kz9xo@fGSb~N
zU!s`X<JeDK@l%P{(8ke9VWbU@e6V@O)X}LOE?Pepf<|itUJOn+84vw&&%5v5m@F6}
z3&9IQ0+db~?21bZ7tZmI9+)<_UHkIk6G3xmm;~fUzYiNSOa(VF-;(2?2stjIN+znS
z4kiIz5lf^(BZzAYpA-}CNEXrhs|-o}`=K$0$%&WL3uj0@D=Uah-HQPm&?w3~W&_#A
zma`i1isZ0nPOs8HS_RI-u`I*Fb?KaI8eCe}>6DAZTD35~$YXZM@-Gt_nYbPV-&y3Y
zk1f`@j=ZTYyV;cWzy8psMsd)Kn|9+Je03okmMyT7M$2=3916^z8~sZ)nn>KX54dJ7
zVG6fpS4l-B>@c7ZJ<Fy#$9b_$oufe@ncENtgNO~OP&GT0j}|8)FHiQyrc>Y_`FO}I
zr`nbKMSb7{>Kjysz+urk*c{rl&hBW>H@CFgfKrL<E+p@^lmxkb-}umBnf++{+0Q7_
zDRN}p?=DpVW$Q(%JiiW*{`ixI0L$8c(hI!u5=fed{AL<Fg|=?K|Be-D<HfMC?Kq1X
zu?+DfRlVYS#g!A7N}Kg3eqIc5_*L&b9`-sjpK|g?ubLu($BJfj2b)HG4gB%`@AMvM
ziWYlj_;M|)f0FP04Rt7ujXvY+<5hrH`QI|B0eSz~0S$jHxj#><v8FH>ZB%646GYeI
z%{N@Yu%)5FRYD~{IXPM3)vIuJJAC(h|NGLo=YUKBNIJw_#Gvy1iI)#Y+BU;YAFyOS
zbZ`I#?#=S|s6w;t6$qf-zXCEoU(5^rC&vn(ddG~u<WtW)I3_x!)&)1=qeStMf<mj7
z9+&qL+<AYvU2X~Pzu}?-CG(M;SF+n@9Pf-rd>Y>DsbJdF!=^B?r+=m(7^Se*aE)32
zDc=Cg#feu)t$JH{{4IL)qqcVtFr5)x<~q|JkK_~j7i(I!k$;aD)N(7cV3wYK%ioxP
z2tf94SSk|{Ko2`H-<DJ9h7lG`kFy-u(T=IsbWp;@OKCZu7D45d4D*yAPfPL8fN!&g
z9<C3xM<ua4i%3x8&`2V&vv*~X@l4z*A!m2Wyc#KXQmIkQ6n9Q+u{QKh%t$XSv9w!l
zj(gAK?U2d+im3x2QU?!(4<g0A(Lonq6DB0J0FJ3$@D}*O^WWTR{3)1H_Gk9Vk#Hpk
zFj_RC$1)HZ>e~?&&3PVa?#l6c=SRlXatd@C%Hu}j=wxVGFD$Eq+yH(NNW}`;u%*;y
zP%w%QyaSTug#$G~cK`@DoROz`nhC%hk}N#szWjg8A>H1ZTSW#k-USb8VzUOKHdbOK
z?Ksj|*RLD)^~}rx`=FOX<JD-yRYMH!*x24TUNuA)7zIPx?Yqq_fG&UbtR*ZapuN^^
zTn`siiVO7dgWG9{%{}MAOOW?vWYCz}u6{Wc99@-03A=`({eU2zcq#X(YPgbVa<G9W
z{*DVp+lD77YTz0TN7NCM0uS)TS?*1I+2~VWOuXS?qDt5;EgF{B&ic{h0Z*k-xue!f
z%W_>B(khI>E<oBM-JT75K4~tyPyZi#@hc}`EJIS}9v7>?z3G+O>6AzJUJX)sKJUvd
z7BDgb%({<5PgEZ_V(!kq;hKsE8w?EE*s#TTy)$8ADwl#rNzo8YD}c)AQBp|&o|=zp
zvHJLLS^5g8(a>O~lei`z<nj8%#8pZc8WGVB@QOw^^vgwHECgU~b2$*Vom{14Ds<r(
zfJLXHVOI_DgsCL-e-IN;!fTIn;rK(PwwOgco;g20XW*FfzGWo+WLQWeeq^RK@zn{}
z{@R^?W#w6~7ujvsTmRGb9(hZ(^n#}h4bybJGMJYN6)zqH??uYo7dVV4Jw8Izuf{o3
zwIJT$x+W^F45>f|=fgTY4yZLhjByvE@s(RWZ^vroFVn@HD_6PIRV4onPIJT)4TB9B
zeC>dKHly8CXaR+D{UL{&)RlO|T2CE+|6yquq=okxPEdYT?zh+c4&i@f`w;{<t>V#2
z3@!N7Mq(ghC^e&@BDq%Cp5!bCcrD*VrdL1T$J2#T32b=OXXFXNzlVv_0H@kT4@E!p
zx;1u>DT5q<uOu%nKIf*d^F;x0bI8_~y|Dik8<yYhlh2;}ALm`hf2RoLe22fk{E<XZ
zIPey$M29!+Bgk*8TpLZ2ieFW@5Q&PwWdD4=-bB#dAKrZZLH=+iBKzj%QvB9pxF>$_
zV(3dXiR=fNFYnPu3e<vk$4c=AzTT?;tI1y&cxVF-B(JV|)m;5lNXkiuF?(Ftov$z4
z7m4#fRdBknKE8H+6UgeV|E2={SnZY;_<jsb75u12s{&{*R#63)n=<~hUFa$?38tww
z4KN-+{c5|=up=Vk(t~CphA4MzJ$Yv|3%D}GUZGwzA7vO_4Jl4Z!`4lMM+(*2cBcbE
z$oUI<{-<|+vAs-Jpjm^3j4zdV(+SMj3M;p=jo4A&0+p6oOPIO@%gYVRy8t@^Bfjk7
z8vs`-Ikv{0JPLgK*(N10m1wW3TI7y_KE>Z<1xkQaju`<1-X@Uj9}c=%x!<@cORIEL
z8!OZXx3v|*L%0meJfFnC>+W%rg1qg4PBf6%YLNw~h~GrS=&T0F@$Z#L3=Rt+l9!C%
zRjL#DS1+V}!(ZO{YicMX81&dZ0lRJP)yxM;hi1cmpIQNAu|n<UtkP8a$Gcj;;S}_j
zYd-=}FxNSf9!Esw2pV{fvWlo?iGrFgJ%rqMa_YlduVZQ7^fq748CC#7smKoRU>V}&
z-qS+sl~R$Hh3&!ehn=2RezE4=3yBtI5yy55z~WkJZ`s9(qDUz*oyE!=uLtRa_<<M1
ztw(q=fQlI_=nj}?V%f&J2!L(~AoJ#i1k+QOwqb^qJJ22@<UiZ&|C18rU{D{jp0$l4
zA59bl2qnN<Au#JGqCa3iot=iF!mnxYJ~(_!!FnrUEn0fBV<<ukxa}Dhuz-xuZOu`d
zPqJpemw!r8Iz^f6nU@LdglH|tVdwadP;l6I{C0y5Yw|?n1e9aULH3<V!35cWS=TMi
zoTZfBVmrF_5Hh`zd{o0(A+`86s`{K`$%^LOf+3&@otS20mou2+T#`w#eayW>Z6jNI
z-b(XY$N%qOX6@g^rxZnu%f~MYH%agx)%|jZWfZJ`NZeE5<ypruKpuGg{n&y<+hXn0
zJHus8*`yupd@Wx|Tqde8?CMu%d6vQM&_SsyKxw5OQyuHOqeQ@Jz#C&EVBkHCY(ES9
zowoyTyRg8Mpv&LbPVn<`rQUoMQu8CU-PS0=uEj~mfnF0MwXDbZkeq=Fb)n^6Sdgc6
zlk;NmLdqyS;iwB6LC3z4Fz`hIy~(Eu5?|}3$&*S8+71f2TsRgod4o70eS7Eg(a`MI
z#IT7{oC96Y6C9|t6cS2?9|o*@!&t+ZLEFHdgI?o`-M;TqXPu0_{E(Ov@PUZV8h&fl
z_QR&H(dJjAQ+J*0Ilu=0Zw~T)JYHcdN$6EFFD>RX2a#QbzVq4M!-@KUcwd9>Z-(|@
zK06`(nGI2^VEy&)DP~AOUweDI1ww%(-H2%u)t+6ROB=KoIU~f&&c_hvABl&7`-*;H
z6!E4xHMyvO8cz4R_6MGFumkL%Xa&3dLpATD)iagFvYyVT$%G(>r;nL_#=$-+vu4@G
zL!FFHmRhIXZw(0@%>SksuO_x#L2aB$OwnjOE6XuR7;+r$tVK;V8IEh8D4OKKpOn<P
zIfX(&1-Ckz>`)S`mb39w@)$3JyA=ZcD*Zi#J#K|N|6f6k7(9hLM~hZJKX$imr1r{B
z<_OH>BJgYw8W|5aecdebOK_svx;~lNpXcH^v7CZJo73-8&ev3#>)J}%Y>`S~7%um$
zh99%3=LGtC&{3AupcyQk7rjjD()LT@Bmv+0B7a{lXju`kq0|&(aWDYpTI>8p#`zDf
zpj7S~nzr_r^9p-<Ur8AHCByE~=iS0G%O^CzAb>IYxKa*KJnstV%D7)fMGf@)uC@aE
z2tqL0;|W$L+;skziJ#*P8|>-((ocyK>RkrW^w(=`uOUYp$5o#tH^*`rjT$|Jc*1XC
z!JQcdK=Zk#hD|Of9?$3QZ#1FuU&gc^1?`bh>tgL}sXvjtZd@?;7`l{-a`A5BCM5u?
ze6tUH`fw&P!Uu0}(|toNun;ij)3r=Du;C96m=1BSO^U+~e(ASx-xmkKt>6QQDnkzQ
zJZ(pH&4Jm*Cu4mWwfSGkkLJHXTl(wO=B?b=!JQv0uDURE7(+Ura|)F%>W-a9;R_cp
zmJRW%d)q=R;HlS`>FQjfnvOWYG?l0h<rgI}AXPm0<=_x`$I5{u<;;|fty~x{)O>uq
z3-wQ8BEIy}aTG(Cc5aYSamkA)FabkW%T_vOXASLG0B*MbiInzDy~;Q`Y>o@csly%i
zX+%<Yb(QtL-=;WSmLWese;D?--AC&QGf0h`FlUtWvHjEN$f$aKSKw6wGP>DB!jQ!U
zsg`6|)8&CU8#%g73d0Jp<bmEp37fcgvkds5fX>)4Na<~2$WIS1RSf+Kur=U|Aa-^M
zrel!}C6X)S#=aGG;XuW0^#8eB{ycW--c1s32LrHH9->vK_JV|$z46*|XN!5s+hH(a
z-28OM_?;CWGLU(tih%h=fUM)!HBu^rE+>M;FZQpOf|w&E;#YJhU4v%UskHZ#*}qc(
zTscG1-SAl{lp9p`?C5(z<lvQt*PrlF#@l|j4FjcCTCULXXi52-MVdw#_?y{jc>Bl5
z2MdG}&ftC+4c+(9s1GfS`%mXA?I~#mx=*1ZHlVUJnBm=<J)+N61}uvxPz6A>r*ku^
z@kzG>D6M$6B>$R*cG|5t6Rm>J39Q_`E;+JL;Wc8W+#3;v0Iw0iIhC4;1z}@j`jLWw
z`??d?w5f851?0dMX9%pVky-0S)cz|^Q+mf^-lxvPj8O<#V-M*)_Jc?9@bN(b*C|jZ
zY#O@th%ofFNh?IhS>E^TwpVsKNc+Oci7u0{H2QP75NQBVeYoV8=+x{e+2-VJqW?*W
z-3n-2^^6wr&&IWaNewR8G?~C8e$@n#&K|qX@Epg?=?(_qH%#dnT{s+QCK_Q?%S0;C
z3E<SVWXhrDzaT6MxTKcuXxyHv56(c0ufF8Nd-tc*0z&KmYpM0#;*=OXA*G=a&&cEM
z;4tMOY0ePUEiIq#l~|nE&-K=}q`93bzy3oUhAu%S1cRGiS4XVQ4T8=0pEgy4pE}@i
z%DMv!DfVxhWaBJbydXE%9q=60USW86hIj(Tv)2vVMJ&)Sh9^;JKN`3q{Z3h_Lf$Gf
zYcD_H*;5N#zjn<qwXJI+$3>yp@TnruG5{O!n%3Wu2{xDV<0!BJ_p^J{_)zoPxxQEK
z8~=t_Pe0?6MFmAj%~9~B?jm}>0`+EZ0>Y~;1=Bnb*tlU;265YVmkz%Bq@hRt5^|^4
zcfJ6XnM~ibVAQ(w2Ac*5Tf94jCIi+?Kp&Qq<<RbF68Vf6hZ~&>_~qCDi#i7MImSGm
ziQG({iPwVW{I6;F`wH!<n+=dUkP+$pg^TBN#;aGKKlj`_KP0yh7d)mS;-z86aCijX
zr}}EPD6ZFdWcQ^p9m#eb@HxuE>fR^<^Q}|}cMh|~C=8yCJ=-A3`asJ5Y`Vg)YnMYS
zQZFsi<NN+xWb5AC*WH-KD-0XXr;#BzY98UK+^)1s%98IOyznWNQp(?94**HJU_i>R
zddyD9GSSq}zbPx`$~*I+-zD(i+xX7|um<!4q3FjFD&*B?1Ocva3a1teh(IUo0_$@Q
zqv20APpoTyhVRQJBqd=}i`D-amwoGYO{NIQP%U?&0u>19BCAmsIARKe$<wV;sx$us
zm~=<#(ZlStJ6q_QB%4}V=VyMX8_f)X^0!ql!h*85QqQ>avUPn5^Lr<#3ni#HP51rP
z5Dn5NV|kaqm8U&v0)*il=_iiDM1cH2%2e0gH2L=P8+E-s^%C($-`PLl>5XZCInm&S
zEXoL85FSuo&{Kp&H+Wwy9Un*7!qZ6<s*a>pct1z!Rm;PCv=i*S+O&z=p!|?47grYc
zC*@K<LnB?gL@+CE<p<^1a2F0fU)LpeJu#6W@@Q{|OFO2Y-?%aTuNNb2`{|`at7E6e
z(GI9pX}O$qM%<^#t!o2oWq@xfZHlw$mW$^Vng$nU+ZF~hv#gQ4m2}8rt9Sy)R@Od}
z%<ElU^SH98u?fpJV1tiF0alNutg}@^UTBwKzAq9Ptes9uaA8J1V9aT9Sw^kdJ))&E
zal^!5SPY3cX$=hG{q!#T7F6Mx(0VVnq5S&oO-mPS?h4_^Y2t}=hnX~SWT`Yx62O{<
zA2zNx@2_z>Zw$+`qf5z>fv#vqShGzAJ_PE}^7hq|0@!)Gb9!ei!SpMBeZ9oWxJl!-
zW9(fe7g(xu+SSc@f?y3S?ew2dMe5RuYwg4gkiA&#Rj;w(V`FYK&a>!LcAjsF4HYz?
zKQq6kI6JD2k1g)>z3tLuK;IZLTll#9y}FUr)@l}rgiSGh6({11i#!@Q9rL;Gu+yPi
zF5O7iFFa+>=V!U<Td9qgF>d4faT*OfX3Ix<rgsi^(balU@2mX=)40PD(+i0-G7NEo
zL>~Y*gO|RQjC23d;}QX~|DW}^+yoP@7w9(DI7X}ExtXbfCs_~NKlEQ~TYc_sdwHrh
z1^d8&vJnQxu(3L$!aQ4spwz?-nd`UTNh+G<-mjIh1`H-XjMqsG0#Xew@#8}<xWn#B
zqAj@5BbVdd8X$Y<@4Z<-R4N=o(w<k`CA{BZ?1#O<kSB60I^`y)S_P^^?YE6ObYBay
z3(M~~10b$ven1x5=(kv!(E1y(r$hy}`=^F=_Mz~TEB2qGL^OVR+(c~Z(&D=Sat=mD
zJB>1L3W%?Hfy{eKNk?*i6|-Nlc9~)!42+ThCL=S=`mR0lR5JAIZUdT9Mr0_jsVXU=
zTo)$kEAYILEbBM0@n&_XFj?Z512(86hz)?-Pa)9;+*g>8YcAISC&{9NNZ?wY-(pM#
zDsM8a1U<T8qfjwJsRIPpjZQt_1dXkzK4ygXFFCm*0BvIpFpQ<S1Ph;h_sGnVKUC}#
zTukZXOz>Kb-m5St2_@wL)<|Py_#P^$#Q9yGwg9V_!Gx@Fl-e=pw{vN}J3iGiYOb!e
zD0nz@@Cm?UgT&cAC{G|Zu#D#?q)(o5l6<-yf$KD$A6O`(UR8NUn8K>vGLIxfvnCQH
zNteeMr7<556dHvN2a_soObGjkZK(;f$Q$oJnl5GS*#Z0=DMAKKRpq~o5)>A$D43ji
z#JGt(u@t0x555ko_Wa$MNB(zVn=<Su9N6;t2Yt^Nm$4qw_!r~<yn5yJW#+HRX1|sI
z``!4PkrY^F0^uj5rZYeYLP<c@2*?1oc|i<Zj&J?}aC||iqty%JIp}?LWFY=F{qLcp
zgmuzA&DEMetFwW94;`otBO{~v+L2R^UgZ))a|hve?UsEcJ9Tc`drw>n$pdO_iYPqZ
zT3g!}i7!W3xXl&<>pQCgwx)1o=ln+2#jU`T(wVHD!Q4-a@R(?y1gDw)AlzJ2lvbIt
zIXr7uFEhYCv%h*;`6yrMEabGSb-P{=uZgjC_a{a1(@z-7UH<f`m`|mBjwbN+Zng>b
zjXqNIFfO>B&YsF-8X}@?15AZ+XS251!uL&WfH{@r#nlKxglKScIqb^`pi97-Jf~+V
z4(x=MPU<4A0O!bT88Gt!_}25!v9V=PZW>3Fl``gM#zf@$PyJi&8|v8s7WRin;$H!!
z<?3AbV>(AA)_(>AZBnTw$2J;o(y!&K{c;ehz)Gy0wG*GaDEHRvo#Qq1u!?=po=q<P
z(S66{IePs#Mv_^2r*u1B=urML;N*BK<W@#>e4cl@P;;{Fr+TD!3-TBrx6i0ARBF$A
z7ERIVAcKB?H)(SG^YW#7y*{z!{AdTu0wKAFd%Nt>h_B-G8I>c)Vf5O+h{9ASocWJY
zO<f&q;O)W>h>NXu`6Bc%dn7=bk>>4=EFwp#c}(viZ*^BHmL7n%wc6ids%?h%P8?q3
zmH&K5a;5CPSl9$5io%Mx`0)ZNbm58;c4P4S(oNLp>l<$S3i;?s#QGKL`kUV;x<9pS
z|3n3P0x?HNYhm`|RF||C3AbN?Y?9o16?AN2g__NC>q3XAvcM9%^ID&+XY(uFrjL6c
z=$<ug)6yee^15lDyXr%29xVg#f-cgpw}rU%QlqeNS|*VJzv9>X6g<E*0|XF#r0;J`
z<@lN)44YcWHwm93e2IJblsA_i0TaND6$BlOq4+Jke0~QT$5a?L$NOzYKEU|%t{Y&V
z*HXIpOw0ah6u^quHbRmA>WxtPQ&O5|Tqcdep%H`w)t#ZWdZ;s>{i*L)m$%TE8@p``
zGxKYklizj%&|N2>%RN1mc_?kT9j9kA$!ZebYlm=}bjCqGYQkUg^T=Ls(AjV}lWx<P
zxaSj*+XTOZhq+)PlATM^D6YJNrHl+uj4@T!!J7EFkmXV2`~9$YvMpNV;s;76h+>R+
z<Y7Uh0?kMJ1~{Q)sWhX=wnA{Lzr!ru|CaM3sc(?RN}Y*OY8qpq?g770$bl;f&h`i_
z`P2}x#3d*-1F;Ud26<d$l{8iS)q)#*VsKlXg-R@vEAP_YEFoQj{x`bOiSKQ1a2PUX
z>s(=1>awvEqn#E3EIT2TB0^W0OP>UQ8y89-H3YzTS0^Hs`!_Oq8gD!Ad!d%qquzTy
zYchO3!z*fwUj;eyfc+)Y#~C2tj*{@d>(tNB#VBS_auxl#)~&5gliHc^XiW58&o_Dz
zy1G_{!4VC|iESZs6sV^{{z~HUo;l2lUs*-l4hN2j+jnEhxT3AZ+&v9m!yoL)(^;5v
zLTbVw`}+s^hz^ej4s%f28>c)noRw^WT@+WGRCiu*3a2(fte6LtsWu`$|L@MaD~Z?j
zN`I%~%KzyrxttV$-zr{Tzc-wCSzQ-RqjLZ@tTyNEciv@+#I0;VwhKoFy3MyD4z2y^
zj*0_QPslzy8Dm^EUcJ&%Pw=Ue2yKF{wrUEOmXfvy(MtpR%V)3Y&8ESVTC~;Z3=;7X
zu>E9309b*>b>rGM_rUGiBx?C;lepk$dnHlvg5sxQO90UD{_?j0R}&5lo5PA0JmBYE
z0hU}s4yTS`(-UAs8N1kWDeDMMj^kv{@(hT$C}yPtTz0})Cc+_|;tpYfIwB;@RNw9F
z0VyEy;}WZ1b(|+`ObqaSMBuE6#I{J3A)qGKwPDqO=YZbjnqIh3Lf#7aS=!Fs_&~6@
z%KnBZG@jDW_>D^>FnXeI0vodG(S{MYmq<NxnmBd#*W_#c*^ja@s-JU(z8&UEc;}7d
zEj~ZVYO3scRe3UqIQQ55`LmEIdX!^JO`4KK2QQV!1X*s-dv6d}H+w*$oXm#4{#!L<
zM?y48Tc19MdAnRMl`}`e*_pQS=9`MabGrhSdAoNg_u93fgJ4`Wa;K2WRfN23W~z&;
zO5v#yQWfY|3iA0ehF0rj)D>#Pd)<B+|E9L5&K?Z#*2T4yY8(G19wf_J(2LWHA<ku#
z?OQLWDJ1U_$0S?I&*!;hSTpN@rjqimVHFY8&?Q*_6gTJQWQ4XrZ0^s}`BNVFvp!TM
z34c(e@WDxe;G(MmDjsf#t~-@)H>+hJK+^q1w;eoA!<lTPiayOKG_?G<`taqHYE_OB
zIacgJ;KdU=n>w4L7q2cF{_Z*y>1XTmJNqAVynON1YbEjKM*VccsLz%jF2d=jvVUhg
z=GELJA{s2-Zy^I-H}p>WR^Ye}F(ep#6Q*z+?nPN?z_VH_J~)Qg@4)nvo>~F+Ehl@X
zufHc8rF~pB$q}2r+(iEq#lmq4kt-TC4w(c9;EECGRYhJThXPH`>TxM%;(#bFo@`v`
zgf%FH0HQ$-6CN>Y^I1s2Wd5f*-he_U(V<;ls<RFUU>QM2KQ7Fq%qcUd3)eOAHWpa8
ztSvEH%5&kc1Q;=CPg+bEBKULN$VhxEFjaE(2jtDgUiOzCq=Uc}mjlN4er3*huYjYa
zfikb2ubfr?NIsR!_cSvR@M*hf{JH?HrvUBCeYGBNY<SDDqb99_fkiG(u(WGe$|3f0
zEUm(GW8C5$AOaSOdIUKRi1UuYEk-rpif+Huz9d7JfaqPRE|Lp+OLVzf4&lrsn2M=;
zlw+@qi)?M%ke}BgTdhw?`)9V##iat<OQWbonFvKO&u<U#Kyodj0Bu$bc^KWyO3MMX
zMB30unvpouP@Y_a?@k1NUF8sD&MZPEu)(Q9DOF+6JLP!l)$`|a?l+BF<z)4b^s!0J
zGfcnaB&zr&%n913)(R{J#dNlXkeZ0yn(u+D8$AEr(9)=(#LK}1a`<OeZ|8+Whvbc`
z7M)3a-m>oEcjYBwUiDV0>-OJ&N9bl_IG_Bk`e?z_p@n>w9IN|}#tVq#-!$HC$8)qD
zutXJGyw;0Gx}5_Gvvn!w9D+9Nfh$%7!$QYH3+t`1jF>I|AHu#esIIkLG7tzP1a~Ju
za0wRNA%x(B;O-8=H}3B4?(PmdNN{&|m*CEZS>&AW&b?DpGe0SQP}F+X`*!!!-AiZ{
z<|PRhh68M{n!kiriTwJ?Awfj-fyn5_Qhde&@D@L<SJ}K~WoAYzR;qx#I#_x`pUe-9
zNwdZ06q}ZYnAXCVh1Q35nC?=~UJK;R$HxE=+?m_I`GI;LrMr6xdb7tJ=_N=B0uJc+
zi}lYG{wK{PA1?Q15YQZ-p(c$au_i;GhSTa`vU76Qw~ElmTC5y%HgwzLJwG#)GfO_X
z`m4jCKG&bz7VhaJkOPqKVOJ~Yv_p)nyBXn~rsav%B}%RF8I=NNcZbMVNnbEy`x3gm
ze0cw{9trE;n|)>fDs`q=3XHXD6Q#9V*^pzfHH#FRW(GJdkzBY{zqlU@%r|{@`uqIj
z4#jrodg1{c?AN=O=l}Y5;L0d>h7BrK+w=F#Y2)|?n>2|NZgST;Vh4-G920~zK^N4I
zW~VW5qk@aGL<*Q`fKg;L<x&CmQzr&gGIl?8Y<#bFeppIr=!!7e=lnb%=fwvinXbgT
zZ)PEDW-FcYgB5afxBu`_FsYj?;!=|p<mpW?%WRuz>Z3d^7>--nT9~)?k6W<)f37#J
zFg_o<vjdttsiOqiuVl<}hkx~i!59%+uXj6p#7}@nnYxNi;Q99ZXLmMUwZ^yAnn}LU
zs+f2yVF1nF{|#ovMp1xHL+;~r){EMbsQ7ZO1Uzq;xK<xnFsM!^5EFXKr9!-+h0Sk6
zgrmjLmicJe8KYXN^&A11iX>nv6wawi%<s1PF`QgZ53_HS44N^XOcz|K)ap|){P5W=
z1(cN&2`JNbR|zhY2{O1qpA`bjsCqI^rZGoSdFgjeV3pq)i{nogjJ)3XkU#*ok^ua3
ztEgRDTJA8lHXrf4{#}r<*)Va&qP(EA`m!bEDXSzYhV#KUVhuCikIiwopB+Ac&8_Xs
z==&<vl63U2tsbivUe(z^`usUdVF9Ui$@@iv%WRx@0G0Z=Dwf;sy9I=8KKlaO`DB03
z`mk2|lZ7~Q;`P{ZHBKq^Kv<~{0w*%4I{2u0rg<sFu|KmO7lgq5af!R4AJS1vv-rSx
z>zi?|M4((Sf9xzVWI3~UQnEvE>Ib@uyR-dV+KZtW$o2974C#NT6ctveay=>~vVq*$
zc~5QA(-{9#U}O@34kzsTQHMmO?L|g$@Yw6JcSxgO0M$*^_AS&$SttwK4g?#Q4*Y66
zln);`JIOlp$RjO1fvhx5JCXPRi2?R|C4{y-p8d(AM~b+cdrAcNws5bMBTDu}{HFqj
zNEr{Y%ubaez~K1pYaxHx(yNz#hCs~jGQhUD-rbLWdRUR7b2d>i{YI8)qs~F#nLSJH
z(I-3M2X%^*gGQY*r(_DB_%}3uI56*fJcM+Wnwkp1-hzd`bgdtLg@NRmygxTMF861B
z2Cj(R^wzYE&&RrS4O4n;`SYTmL6=N>vkhRJ<C||X91cf?v9NV!(_S)sPwJtxuoXXO
zlzc|{ALJ#U|7G^)oG&@{D~$mXBBPq>>b2N4PRAwRh_$|`E_p0>e~uUFj{nsje(j#u
z|69FLvG7!Fa<5I%Gk>vdl#2c;2h}bRR$04DCiA6nestnlrf}l3KY%xYDg(C{6c`i|
zV2Zb*Kov}?i`Sn%iJ!=bKZw<$Q}?r!p*xMOM8rw!4lM|utkb}{8Xj7^aJK9yHEgcg
zKR9j4o!paIC7T1bA?k(PyM6_o1dNS;UQ_4)k?x?e!k7qoR{+R?$RWAM)B;${_9qqZ
zUhF?Qy#=2Qs1o7!{GL|}CUvd~Qhqy->&&coi5EM_36ywu)u00IvKe(Dfwu|*5)q=L
zTO%U_UX9KM2BH6U%>|K)Y#&CEpG?~b@<Rd29~5j1otS5+8SgqBlc(#=@%<T!{$m<$
zCGP|e#At)BG0K)~?PA#hx&*c~4nMQomhOxM|42|IA20)XzsPG%wnl6vLBTX1g6%FQ
z;|;d~-=@>67pa72Y&cU&1j=G;Y(3~RU>K`FB;lTeIX@)1{mdHnxbUjlN9wev0(&L`
zX(CLD42U1V!YeaHpoyXW)(ak(K|3>t7`AVy6nWZts0T0JiLZihg5gvbaK%QZ4=e9N
z+Mqz0c@NUvH3_3eLgw_(BWUo9(l!RWjn>uls&f<|C%Z{r^o1Vn?g~OUcAtr#9}NoI
zsJdgqW`REfHf8ne$0Gej7U4Ym33wIZ%CN!c{}^Z^jG_bn4{1zR;?hv@bOvNCL4~U%
z=`V`579SkuJyXF)QcwU?iiPx=M{e4AYIgs%%y<X(l@i*y;UE)0-S?)+2U5MQkp+-*
z`CsH*#+DHI1m{dR>3tu|Yqb8@AM)bG#+B}GNnUA;L--Cn4tY=QDS4Q_uz45NS+9k#
zV&nQ4;`LI6B379kPemc}o5^obWz8S|rZs-RSKg-S##vYvCTNO@gQJ$TQ*iMkwOFV?
z4e!qnHU11Khd(9@_O}>BYMs~^_1LW38q`4r17tJ@?j>LXbmU#}e5*Jd%KVope)=8@
z!u>~uu3i4OP73O+@!Q1OzyWyenOmGX?BF|A%4m+b6*HUj=J9GKl=eM04veuk-bC?r
z=uk7OF%Apm)A1{8k{)2HLyim^xsR?l3vFr>*#CGh&W{)Y;O9}OjYo>I@ecr{gy^Zg
zTtltAERS+j4idia2M^w+te<?}*X2Pu$-P8`2GTl_3s@vFEbK2~51DglNi=dDEI^2K
zYJ3M=M;Z8wZ{CUd4>r<080Q>`P9C|ErX5-Fk$}EI9sgU$cPT*Ym4DIit(A7bB=P!1
zW;)O8ocSGeUY9KwSEO%}4p^M<7?xiB*z{r&`4s}#^b`5aE>9>bmVHItukNm#8O{&w
z-&`GwxnG@~{pSauJVFsav(bHum_0EBFe-!KE7QgHT@FF?CIK%NqfoDsS_I`py*jG#
zVtWR9>vxI*ix)BVKpP1aiSI{2BLPZKu65G4@v%a;m6dFL2cUS0<c6yJo!<0-PwnbU
z8$i&YiIVopSe<U_PO3UPVDSwGCBU9^Y)KU=E>hy=Q?|zp;JE#BnUC5|38pG(3=g5o
zNUYeS^|dF>BF|iu%$`{fJdt*~TM2hCNdje75pO*#Ibg&b($2+|C{BCGcoR_Mj<Rn&
zqFW?gI1*TVUx8Yx&ztS#`zmT_BR~Bk6zc^3A8$kCQwJX)^HhZx!dj{B#(V?x-m-C_
z)!0app<L|fPrx0&vN2U!_agT+{Q{oG{Nlf>NDNqJtWknHeAUZlCFz*-g?w!KZ=?M-
zIy9a{#?%6z1~8!Zd%Ra@XZkokYR-(3=P{Y7B^Llknm-1+z_gS0d(=}>Xgc=-r>a#$
zi+qnRAkI%`qdbE2lKT2@fIR9Stp1-_-|Zo<4~2I^go?i~uH)9t0_<2)@YOXo+Fhj<
z*?lKb?O_U?!$1;R=>Cp2c~><~=Zb5p_}*mQYGGZX(q+5K6Y%+j2gP#4xFL`Zm`^|O
z0hM72BdY8lJ7ldXu&-r31ADkyCndMlMNQfXZ>aWoNli`y=LG*u-=L&|jR_sz&Kv(s
zliw;aNCDg3FJunVp{~HB&;**cxmKoXwT1dj)=ysKO%RcaXz|=rE}syuI8CJ(k(<{N
zm6KeMppr=h*n~$<EIsxAgAQ6>^7>h?E+pdV-eNQE@WG<56)6*-S|h$lbLCL+Q6E&Z
z*=xMn%PxXIUhu|hS78Cgh`QUF7O6F_<*!q{bn{5FmQ$p*>?kve<HFWh1wyc1Y^5#@
z<RNWwzA6Cmk8yqRCaY^Z@I{T~SqY$y&TXAiX69La0%~h|rfK1%nwRO>;2f68qws4v
zfpVS{scU`PEkkvPA)7BaIhp-^8Oq2vZSf1%cg7z@Z1{h^RtSUZL4jf<eUV2?$5SXB
z%%%6$Fq9e2@o_XYX~Q0!!>WEAiMqe;8Z^s`(yCy>N^JXEnuakO(X<)3-L9{!jDta|
zNH8(U2+R641Utf;R;m0~82;>QF2=;pj?0FxQSk5xw6Btqk~&y}cC9^M4T55?sl<Kl
zqp3dsIJFkLHX%n&x&)RDH4R-)zIyd!rhgytzH<!v2=v{e$C|bP&O|D;O#Di!*hz!<
z{y;U4?_&FP=54${S^L}vj2u7rOZSNQLaFL`qz}!wXKDHoE0oJh&84${-i}|#a17o}
zYe5nXk)YZ@;Zxd|kS_cP!*U(fL(&gYM46eyv1iFjz{v|l<6}8y?g8S4#SE3pZ~Y9;
zk~vAp(hoA$fx>zN1k^CF6J9J~Y^xQl8k4{dBuif1fPdR6ID4r}JV5)PHpqJC$b{cu
zN*rkGTt94*$g*B1Jq1_g=m2nR3igvf{2pM=@GYMFA!BF~v|_w&+I&hAawj}{cPV%1
zD*p)uioWfX(wnoNMT_L>7ANp+KI+(}0Gc5%P^_uxG<|^6DFs0p-gq>l8AhgUQQePL
zMSG0BEjB&ohaYB?z_DEFK|cwQubTgv68f1eb+|E-+DV=dCZM4}*)Z<!-Gs<w>G@Y&
zSQ7=pVv-qb_YIM=pCuyyA1hOUIvZ0}5UU(Zd?Txvy@0F%&PUNRb1!IElHGgzuM)g)
zdVF|D0Z4?A!9{$u-HN_C!eYWrHdV5PvVTg(g9PG^#KIpgg@33}PyAzxoW4N-fUWI)
zXn&>Yl?^qG`<uzt(^Kn?_M5DcvMUl&QlU~x?gu<_LUC`$fVQ`|O3Vrt+P+pW$|E_W
zZ&#QQ5Ri8y0@C5coguriR5A5F|4xbz=Ges5*QF>KKzF^73Gj4yjG}OY)u3~NyE>Q4
zmuF>tlp!pnagzG%qWm$_VkxWLSWH2ZiTL~8*;fM1$a7UVP}@C_7pSdH%1uFCO|l4F
z8T^qhcB7HB8}|tqA6hquoHXan&^ZY$cKuLxOD$quUyu-&O}S=3E+KWL)afr8UL4YG
z(DCFDTj|xZz;*RLuN}r17dNyrAO<*ly&TZ*&od4#-`gGDry3TW%$9ox#q^l$(6ann
zM?@9l+9{Iy(0_}p-PLo&2O9A0UEulaKb!RvwQNC(SU8_5sCIkrf)DkWwQ2dZ$9UA_
zGt>7b1+{$V#<hs)J^%-JpY@L(rv9B7KE5OKpqC{MHVln&-l6IzU0!{J3Yar?%5elV
z08@q&U_IW?1XII6op-Z?u7bh%_T;Nb>vSdo1QR@A&<pB3xzAaxP&7K88G)X&fBE*C
z{Z%2&MLNO%&yAba?5^L$DE?*TA*V;k=ic$2&{tpP+(S>S1Bg`@pId>;phEHPm@sIR
zW#bq`0Y)#ln&5gP-5UXcHk~P@$GmtDPerF!=1>|z$Om_m{h4Ak6bwT9xa}P4^-{{V
zKfSv?gsT@II&ksnNCW1aB?1jq*L)a<N}iRV&urO@y_od1&ZVlOYOHt&y7=-B{Mdv;
zGB3N19C|axI>id0%q-*joy*?tWMnl9n>KPSEAqEr|CR<r|7;!;MiHZpI4-#fmg{^=
zy~!q+6eaeJnW*8d8@Z-Q9GqDe4!!>OdeP3OKOrc5x-{D(>zJm?+0JQPpbKhL-Wr~0
zbQ$4dlH_=#1;hJ=xPc@HxvdxwLEm^1IlgV>?ABTxp4pGLxl7Voo`B;%Ceib<LzZ6p
zPZvPoLce3MU1g%4@$f6uA)4Ogi8H*W_U2I2JZBt{YCqRE%nT5>h%}TP37cUKP-2t+
zK67-NKGG3KBW`T?-~%DGo6=VU;41ppp!c^iXriAIq3dJFjDX-e3ne8S-@Oy-WBakv
z&n(WpvYT#7y#9@9vzzOeZF*X=O$|8|JxIuQBUh%o8(Q|2Wm6vA<6-(kre@m`rA1#%
zhDJI_$dxcyF;7c64Po1_fY0%%3eg|QMWO^JpA6a^@JR?=Es94_L=*qmf(x_LH!|q*
zUI%$Qd+4$im0pS?EXP7G{hRKW5EVS>eFYJI4_L>{>tQb&V_$B!x-cX)e88Q37?uH8
zKJq|$%W6`YKqM{{5rhW@l#}UUfb|ZX_5tli193V6e>JUknV{bJHnnIAVab2c2#*2)
zN2p%l$UoMQj34+R_hr?CqVDrL`#s5#TI|)GBNST+gz=W8Z}05MXphVR;~sz&vl`v?
z+Ze@tD~Ve(4q>Q{UGYNkcroOq348!U;A_T9SJXgu)oSp3-eOEK6t5^sfnq5NWxiXD
zHWHm$JN!T_HNs0DH^92kCVORW;a_T0?N>q>!B{sujOvZA_@B>nXk>yP8+8cD-&$>v
zi&aA0npR&q<^Cu~vD_Uw{<MA(vF<!#zc*il%nI7msrvK$08zqWG7ZG(@pvRdIpQh)
zSRRFv!+S5jKT*IhmrpKjzHn?Ahoi(5;EHxqU{>(hBUveqAom(ojQV)uom$;U-pz++
zWmg!6Tzwe2%<0XaJHLKd|3J}?_Q8^*evlAJ0qpp3gESXQc=<P;u?~ht+rP5q_=ELA
z87RZ#4DKF%_s;}p^LBr$(EQuQst~MtUgY|l_ZT)I?#9@eZbvE6>@5nEBHqy>o;Hg*
z2Bq#K5W!kgYW%hX0ZM`3czee#K8`z$Z8$LpM8QFYmW$VHMn74~MR(u3d{Jpgs+>1V
zOn?5mtdEp?rv8sN!XV#7DR%w1`K79c6z;{DxWC1}+{A6?cCS*^{cmCQ_QcB$YLqXH
zqNg7^iVh<TNnGI2is{=31XvaqDwg>x55p0Mc@C?&U#opYU5XZ^;(V#WT^HNp18;vq
zMI8eS*KdE6WN1njcqnIxb0PCfK1lruj`Ez@dlY!#^zZsN$(i!)pW!kU?x^M&ct4b@
z!@q_i6R;%-!V(va{xk?Q=eBa9R6;p<>%srE*2omiQ5i!HUfVp!%1{ghJ;U^QS3olJ
zZJ5v2nvS}{beC3Bh4|?Kc7@CJ0?V4JQII1~+9*1Qjp-w5{!4{ZxJ)*uRDU^vRoM=*
z8lj56ywVHwy!m_nBJHP4Nw3PzG|aGL-(CIoEx_1Hp#1Fi0A$N_JHNj>A4E@ScU%8&
zlgxSTk<nFFcL;A))d~f8n*2(XYPO)}Hs`T3yJBQQ&Ky@=5P$}03jfUwny#%;qrmkr
zZ}{uYs*}N8Uq8Q&XunlKC#S}}<*OHS7Y~~9<uFZPXsGY%(}@xe=Yn!8p1DT?ojRgu
zu!w-^0q5SCt5F;xx^LUeL8m6|zU_l_*$1FHn1-0ll@yrWZwSW5c0=%{%5R?o;S@+u
z5qc14mXT*%92CoJO<I5p9BpL}f)f2jBv-4gJsRe>u*~}}@5m80it4-r2WSJpd=mAv
zzq2oK;zS(e=O5iCHicERUMPT5=`$Qn?Dpk>Z2X{%GBsZAqMrSU|4M;UJ#Of+NTAl$
z$U7QA3RIVq=PN36jaKeNn%8`kb9ZcO{u~@xK9vc0WJg7&guXS}ZM2TK^YV4bUwrqs
zEJC}BqU^q2O&a960y12qtMuuDhVrT5;R(s6wg0K7_xFH#v$<6tbP)lGj0`QWnq`ht
z2aT7S?=#Pr%iiw%-&)}E#zxcGb-9datx=6PKptle&{X#zy5(at1(Bp3Uj-!6gIxiQ
z?JU$viO$Ppl9GC41ObWQ^fRl)MCZx(tXvEb@3#zWP4Dw6Op@%cxyqI&?fg2xn$^B-
zVW-aX!^+E%yB)-MA5fP9Q~T{KpMRV{Wofem35s`|)I=1`a2#57%byTVdZrslM_8p(
zRp?BxlL@v@d9;Cw#2fs9v`eXiLTiVZZ>at_1tCyi`um%xPz!s?*8=#8ssT>`p7#G-
z0m@gl5n}`%gnJCSo~K~X_fM?lIcVp}h9?0b8l@ld{x_m58#InEOl!m|_lSMludAL0
zb#HT4X<F3($0;lHKMvr(1P~8UJ7ylDL$FJ+R`Wr7V^B^OYazvgYOPKft}IqfiPy`?
zm>Wc-K|rw@W;6ffcgd6G2JTcId!hFd&;H2xuMtn$vC9#xCS4!<<K?Sw?~W(zH`I9l
ztuQVhxWIm!4}Nh3&nO{u9|Srs0X^r%#g_9Ma!yy<?A^7`?aRd1e<0uEB2f8I;T?#k
z(c#i$n&3lLp8HWM6@g4NG({J>-8*v1chDpKUI-i}A85<~oGzxV=$beAgDC_nWgD=n
z=n3FuwgpdEL0uUUqc))G;BfYt%?1@Jo@*agw0<|aB-$|Om;nh-Yj%8GG&Wa`KrXv~
z-NX>YzWa|cUnqKhh(GQ@T5-8W2UMoeLWZS!9W>kBK^(Cq<t7(Pxe63icn#5a5CLXz
zb9_ynh#^W}tG6dWaHf#PI^U71H&c_-19X|ri0U<=sT>5)Ds}s(c)2iG9TpU+4Se^3
zMoirBcZFSwP2Mw%@yP@Xy0>6dHYj_sM5+2Wh&3@lc<(y)XAK~;t@&O;M9bqSmhovy
zd|!Kia_dSZEM{%^^6ygXR_G<J&vggL`aU+>16}hqMwvi$F5gGW&=lzDl3Cx&ONrA<
zmcOm&WKhSO5p@BYqc`X>_<#xMC8bH+H{tELU+s4~Jw#n>*zD*6#RV+&<0wRJe19Lk
z((!WL>eG3#^kKXt2-A&oJ(MSbcj>3T`>2wx_%oG!@JZ;A?2OO)8p@{)`4?jJnZtG2
z9ScYhoZwMF*l9EKuu*|rT_+Ia5{3WIrzE<>VMv+cz7<>ISYlw|1HbMwsD(B>9_Lz>
z*r&U_lJ`(q__p%}P*zQ7O<dkRGKBs<^02h4Hs_CQ&IRGY)|yTUy-?&=07X9e>mVXX
zZu2V93bAeKtFWD09A`c^gBuvB^Lpe8Xd|R213P3MspJ3U$E*NBF1`7vME3yI2~$zU
z|5S_A<944lN}^SN>oT5lbWI5Es$91Uxr1ndUaPWtV7zpHS!5Xhu?@E&K7T7HAaPC9
zj|!~L73l`uNYXhjKV&cM?a4<*{Zz45h^76KLkr+z$CYuEFJXOdv{Y3|bLBj-M0WfS
zkLb!RmUYbdU8$rfLp<L?sDt{b&U%GOg+x9jJ@$%!U(w!w*k$b&38ZbqN^W<QPWX7H
zy+Tv?QTtNK<CDpydmOpIyL^Ui&P$@6p0g(J8(^P86O!~Uq?5kmJ0+@av=99BW001(
zR-f8su1_F_L~mSdHeW_J2nCg<`54|8y`(ol5#ptp;M=8!*~yQUNSoFcc^|kJNdOFZ
z)-Gm^kmxwo0kH*H9OC61`HE>=r?>&ApQVU-*qlR_Xn5xE%I1rvW{@$b6bj>{-dL!S
zt;ZaIB5((5BUe^IaA+`cdq;$Pn$3A;9jlz=VMBSmFvzt7KCT(myAs=tq<Y{k?qR^x
z@^KdG%ysx&2j>2M%tl+lLyQ&-PIka9PrBu)V%jgMmKkVop&$AeDx<$-SpcXkqZv*4
z37MD=9-?(}_}ymf6nVXz`@}0XmB1<6jW)xTOHks)nFh(|UEeQg7R(azvpY0f+7rZi
zymr~>tOLR&AAmmBCCR4hZJqmCkZvm77Z0hq_tcc(T|PJLUf<$qLiP=Rx7+05tN{&!
zz?6T@#^#ZJYYc%<O`wmxdC-fX{G)v1_as<=K_6ZJS4CAJI|;uBc1M@G-#~~ln#q`@
z6Co&hVk&@<KYfpZY{@*hEN&O`GQi{+&M11~y%(EVgpMc?6#y}i?P7|8^v|TyF{WL-
z6X1;;-?BHcJdNltI8?^{)qkep{Wsne;z0pg^$O6V)O*R9>%ncZ{A;@6ca!@6ZI}Mv
zrMs7tJN_YhecexIeuHh}mu96k!%z}?mr<m|@yEYLzT=NO5-u6@^RvHJ7df9V_VmUo
ztURiYXdx~gfOC|o6r(&pKOOx>iHwxAyA|*WDOXw((P`e-;UqkXAH!86mzb|+1S|pS
zK-TJNh}5mE2zgythU<rynLg>D5@qws&e`^hhfk<ySSUk7M2+xzHvO(NIl0p_zo_HU
zS>-7?hW6==LXfnM^9i$ZX`phQ9AJ}~jigN(j__1eks;AhJ>5G|C(B9#+m=e_@XCB6
z<@7jKb<6O+CZ_{^LELG+H1cqtaCV<iv@b(NB|h^N*J7c&Y1(gV((XkbPT?oWeHy#K
z)%ZMT7C*K5hG_qZgRo#%WPxY{)wyb|BNhG&B#1TdTx9PVXv8@e#*%La%ar{Tjre)5
zZW3yoCX<k`VMpALLyGLfinU|CFY7Eddq_z=dX7hSH9i|K15sLNsheQo>?gDJlE;ud
zh~N2y=5Y9*@D=ty1FKbS&4xjZ_Mv^nr*+4NZv~f?0Pi>dE1>@0vv;8`v&L;B+B2S~
zP8=&_3&=se0zy&)2EZOpd$01jbH&YNi`78;agH(5aCjjy)(&2ia7-)-cGSTGimQI~
zitphLdsAolhIadrI>u1wcW_)c$636DZ>^Ir!;6~9!z9k=bZsH-Z&7kRpuu|n`0Y6{
z3$}4fOzO)2r;VGc%s9@paL7)rdu$(~4v99*9<lqkand5mzbCi0G4D_47yH6{Sm4~&
zvdSU|*)HxC2+_P5NQ{QX;FJ}h72aS6h8T=#oA}jI8>o8^--(&b9o&NQSyejz8D_1R
zE%-wBXg@?h;0EJon!*4In-lSi8+<qNiSVSZ4(+^Tv|`p4kStjWt@zJNA|n3lhrgR-
z#NStBgKpyI{!$z3aRfl;`aYTF$9-EvdT;shycffQKzHF5@PUBQEQd0#4L-x(5z|pU
z^5<1#HlJrC*8muu(@3w##s_330%8yT_qeP=@68}&;T~Tia4C%7CRZ6`_z^U?b{7`v
z9%8J|Hbk5Fs4EW^iGQyx5V!k`QiR7vpT+3GcqfVNKdeZXEgN&kdXv}0j_V4{Y!Ew-
zeo|&4qOZ+;*!A^{pA$G4o^Yt@i7Dq#bRxMSf~Lj~rN7jSCC33~^nJctn{915VwqiA
z^U#jTy3Vz05dr;Ia+iA%-|{67GEHL{LLSQS_0DG}t@sfo_nlsJhIOWF5e|J!AbPSI
zLQ~?W(9uPcR3mgu!c%*MUNLWxr##gsL5Dg%LY#cqp;aQJx+lYv?{Vc^juqP89%oPW
zJDZo!98om;-QYanc}BTyA?e-s1cN-fN{`13Vi&5&n^sI7_L{$@UOCdax$W_~3f+=k
z@N^`*7y8Yu{Os$Z$>MF&#EN+8kHvQOaH}I5M!cXMbbkTQ^MHxr1w4mgS^nqCR+XNL
z1>zh(nPFG(F7ebGPa9;avPDBWz3*s6#*hEyc#3hL+#mQ(0GDPu{!h^MqCX}B$isfE
zwcj4dJE#5el+kwhsv&uxIb}qchy+<7a>vsXR(2e<DpXkj?zd1?Ce_@pU=6u$?>S={
zpF(AU4(QKQxWByh1fQy)N2my)Iyzq$A?HHoJGMUV<}EM9q--t4o%p!e9ITk7r9O-d
z4}_~g1+@wZ)WQDvc;3x#Q!2!EJt-qVYk4jLWhuK}aw`@^)s46i@oi~q0sBl0{U-xX
zCmp=8?XaX}PfV3`NXlg;wCY&^jF|{veeD{C!+rF}=j1KB?U!-i>pG4TK6>lHer7i9
zEy5ArWviFw?>Q6h&bRWaj?9yVB+?z`ly_%1tFa&k^1A9~Z$80$^@vH*26>IW|482o
z|8|(Di~Q!5d(4pZb$wA!MJayfU86@VNQ;>U>iB0bkxau9t8B)tA{0GX@M0zfPTubw
zrtw*{=;gc-@wmtH4I!bUIULtj?Btb8%F@gCq_gi3+{YFJ&ak0X3Ar9ANl*+4F@L8j
zcEpUi<rYY96z^KO_F~n|jC!stnAMkUaFT6gYPDo;Z}4`#{FCW^_O4j#^bqTtl%t(t
zEp7S%@npABu!n{lUHFd5GAV{+wx=RSL=&u}Zb0{5uI9LDmnZ#svOZMV&$N)6Hhmkq
zji~)AbL%yIvJgo4$@EO&#%=$`w|1)uMFdG*-uIfNAi;^&cA^P;{^DtC<lY0#PSM^s
z@AQMgkhA1IT|+)aQ*T2ui$)q7lP&xV_a&#Y4p+vo!4SMD=H^L$6}o1H5S&3d>pKod
z0kPuw%vfPCCu2E&PZuHY$)SRw+g9Bq*D41zqnLAjaGSw1AC2z8ZUmC|pa*HYdYLjh
zHkkMPJ34<tew9JMT?^%Bz1Q#Q%%1nyF<@%l;X$zh^Nk=ou`e*H;mi+PlQ~1hetv#-
z0)sxRUS=-9*FbrW=c;_}HKx@(HYQ7RKQgrM$sagegMbebV;wBy)YN^Ixj0m&0H24q
zb8f#6XC9PscjwUKf~<P*F@7h;y$kU)MKDE6ay_i_DH5++_K5VYvZ9SE0CAg6?3v(S
z@!N#)DNEXIM{(~nZnNX5lxKuEDi#D3Sk~1Utsl}CC}g<}TIJK!PS%yxc|L&b<=B#$
zcMw=o9-6AZ+ndViXso#p^?cR${dKPqw>L;AdU+e;5S9302xtv%E9VStW?T7cKVUIz
zOrW5M?KRy}JZ8jwogZKc>E78|3kc8cqQ&?gX45f4lOD1(`d#Kp`yCdo34RU!A4@SY
zrQ5urRNIu6&t!CzN~<pK?MtuClHBQjL=LgQ+_qR>jnF8xme7<Hd{bzxp@GzvIB)pX
zypihRLWC;w>iaY5+6rYV_R2_r1Ol(kzdxLHOV)fu9M~oX!~-7<BXpu&UV+68DP0zS
zSzY5$G{K#w=sQ$5NU^yaEWaA=h2#u9L^olL;VB8p$!X9qJPmV9^K%n;FfThnES&Eb
z=e5Su9G9~Tx^5Am$`BX6$|&=6dGVEYN)kniauT<l+T(i3D)dxx1d>6jeu?sgLKGA2
z72^A(YN>~ssJ>QTuaj@+(1n9fKhfjq7vT&n^vHx7l;M-p2ZwaR8z=RKuw_+DRvG^0
zO3oTC%JyD{p5cJ0Rcz6JS5pcZkTlZGdH=Lzjt#2&((~R{qd5%y^Xf5svgGNYow<rz
z%hhI`W@VXwqN@64XE_2~ovC>5CHF5(|4)ZrW=7Q1)+tJsJ2j_wvF*o&4nE1@KOVa?
zn9J8CVQVe<f;ZeK1C$jsnp6#VzlO^(s5PEAxZ!LX+*7|P+PuEtf0lc;9H^~OpOWdk
zr<s&dc@X1IA<4WF?#pqV7(9^`6ojJJY>g~$dkSV|JHfqtRmXc&QS0{Lz*SSit6-lr
zpz04~2Ep!xX&&qI2E_zU+O*EMUQy0Z{LgHDUm`$Lio3smR>+m9*6rm)@MmUq`Ogi6
zqKC5%x=j`8Xt_36EPk2H2TSOsJ1-RmkMev0j#joH1w-0QHdnkS4@~3pl8~_P%^TT}
zz3iC|--;#UrPTAwt;Ua8i};AEkRrTg{zsS1SgxnGx65uD3>O4J#;Dq;Dj8LWCjB=p
z8SUHS?{(s-G9kSh!~0{&fc16o>%FrPszpM|&f@zFu38oCv(oX%UEN-8rLlVc4CO7?
z3irk*6CaO!DKm*s26g_7wgS$&((tCkcPQ^9VHC^er5{fYf2$dH1oQ9h)^Qtm4Db(~
z=aPro<3X!(lifMJo(g|8;wf;C`pbPHMYw@Du}$q`0mdUmKnN8b6j&}ZIhC)&%BC@}
z6YUfqwzz-)`+uL#=@RUTLG+a=%KMTSt?V<#P<obqEoV8GV@n-GUfrWQ2;=M^F#)qT
z5?>+PncMH0<}~?ysoofwJhO^+@lo)3GGDFve1yRPhe0L1`6MIwQ8Gb&<$DEM&uY!c
zk#xf4pOS`?5?C_TD%~WD#`A63u~>Eo@H^1?A>;VP=D@v$nJ2muOm|`aOz;<SE;CIE
z6D)MLam^z2Jk^hCHDxIcs9>7~=i4CrTec}d-vl~=V(_yiDno>o+XbfBV9F=!Wc#_)
z{NL<o!9Muj9Aw}aif+@1=JcPcJ1nKL<&t6^hJ7eju=`}xs{tFS=x2^y)CqUHtFz-2
znb*#QE+|J`3xB2^(QYw3a+owt7$wvXd{gLjGSv7Vxt!e#f9-2C-RFKFJ`k;T<vI5i
z-ix$+;6yaq>DRO!3P(@wa|pBEoEg>td^BZYi5@-EgvJ@KC32?jMUk*72rs-akJs@k
zsQT!#Gpu_RXiSx3q)$9bP5jNX?DKJw{hi1~G@DG(W<Ba@-yYH~emIP*^SG>m0}4uf
zd4Ot4XVT-k*_F$~3b1U(;0WXQi}7_mR;bCR+Mk=wTn)P_1_Qs}^Fz_kX54ljHs97c
zNik_mwFJ!nei~LC3)IQEx{zQv6bC=v*Qo5ot_>gKYBV22S(r^POqQNQke~BXtlDOH
zkdr?#{K~wNW1NR)HJy`Xx1K-W?*GjCdxqCW3W|-PPZR!n1$leF4tG(Cy!=ox2&u58
zi|0ndwY`)y%%wp=VG5EvV7Kv<2f3?bA4n)K`HCz}cf4D=Nh4q2<Bb3cb3er;@;W0v
z$xeEv$E2UF(9$|F-yVpomp*AMe8)CKdS6w>l1k+#uu6F}dz9$DEqr&=J(b4#Afw^_
z`uL`YyT#>(<*_V{b(K$wu$K@75-nEku*}gD)rW?{hKa9O5&exHsA!yVQOnu8&$a+=
zMAA!p(pmquQ0`{mOUU^_jX>W*`{L}4as6BlFUnUu=$@0;CR(%Eozur~JB2+l%Z#^i
zVaC<>ufhEr!u4!xN}sd)50D=zLXhWY3VRr@Bi4-qj~=3dq7Odc1ApOsx7J)?PM2BC
z{%uTmTHRI+kM}8z`{gZG(}NY@KZ;yuzTvfIvkY92p_qZ%rb;6#u7X}z=cgni$0_#<
zcn9!Ckld(Tmw#AcZmw^0Mho{l100V<A_tgdmOVkYN5Pw=FIsLI_d7fzrCL^6&Za|7
zZLU*$sI2x2+|FEk9z9n$we7`MrY04jYcxrV)n*?)w`|tEZ}}Vq<2AU)at+0LHJGbd
zlbsQY`v#aL3a6p2eQ{V%4@NZLW`PQ;rJF5>nWw|g^to>W{$PzBVER3~Kdqizc3ol$
zS^klpSM2FNrqZlU-)YyN!QyX!?y&q}GHIo@7xETCW3US&@Iq%fSn6_kYhsO8@c#XT
znEW3tc9RC|GyY9wu0y2_4{@$;&eQR}6Q1G0+IAzOcp*m3m|q1cZgT4#V+6%PQf8)R
zg+E<OG-$zQvy%C}a&D@!ad>&ixTp5Rv+TsJhEo=*T{GM9R~};rqWFQcMttGTxtu?!
zOU-Ah>e*RdlOu7}Q%_s8xP)yVm<#_d-p;!u)V>u_?2q4!C&ZuYE`5Y_tqNPhA!s#)
z{R~`v`=x!>C`I~VG96BVspPiIEIaH`qh%vyTH!}ZOn}*{(j)Jo9S)>f!$sPnbIV}R
zYclZ&{l*OP;C1NN=AYIR8An-OVe*`&IrB7*tOaijK{=-)zCWcho!@x1&}@%je>~nK
zIgH&aHAC9@N1Rp(B9d@({3Bm|2%a>P?H;4I_2y5&UZpT{18)-b^{AW?tzu!}VvC9G
ze!?lA%WO_mmzbH1!=ER#<M~5#)dtJ7xupvN{4X+2@=8<;g+;a`ux|#@#@t)<vBQ#7
zX_8xO#5hf56&OB2Unu>_Ubl*?2d{_POtre7UiS!mOm?`wH~Qvh;U+^Z7I2gR;{W1t
zJ468Wmj=iQxO{JTH&tp$y_*!_i&acYA|dc_humVk6uN9%+RG$DS$mE(rV87jIp>dg
z>3kK$O!5nUXtEtaMM14K-M9&>@1bDBrWRy&d6-)zEi7P`5r8tbaP|uq<ty3Wx9M4j
zf#&E#X4pHGOWM~^>R@JBNlW52_NJx2%J+{00!&SAg*_EN8H;Zlj=I0RPy;tDn{(O|
z`RU>xbpg&EnfO-i0}iN_*4J0!fc{@Ux$;2C%V(OXxsu}|b6_t>%zKP6wmY(TlIL(7
zo}b3;D4$Rx{rN#(?oiYICV$lMDMd5&wl&F$yodLO26LJrd%DCUCxnqxX%uPGN=}Xt
z@8*cs`Qa^NSWbfG3Vl3V59d=O`hGq>++M-!Kdn(aLy#G&cb6vW5neR3>f#tETuld*
zbGD{kAVHBT|1sJ?Lb{#%?agH<3uOV?VE3h?${qYp5;M*6NxD-DCuNHis^Q8Gn&7L>
zh(r3@n_^jAUOl=38C;=4uH?YGwMqPxW$qyB7@KF+R7Zc3Ay&Q}-${bg7NQ)qQ0KP~
z(Z327m%`p5r{fKWSBN1ZQ8OEf&s}{~!#8;QKFv45#S~hn<m;TwD^u^RucT_`EE;;u
zWhXE-=n<O8Z=CM>X5EC3xd&-j4c0$b9Inbdi(~(+8LLmDfMyRbJ8T%=9UWnju6e>B
z?q+(j?5o$K^!oI0okyX)ntc};E3B?H`NZ8;3dtenM;W{SuqC&$yFt5mRO2A#Md)-x
ze>u#ql~kt^%XM9ZeRUDRpCpKkOlTh8^zjj<_ThLomI(hWw_Qb}-4*w$rMY1R6KuI<
ze@s0Vj7c-bG8&e}zLL7d;ahdLHCt@QUr=*gG^&ZM`Hi<Zt)OAEK=RJyI{`o^&Rz>F
zV9R6T@??v$;knofPuBU-Hps88=gG9S^Vb%s^aSaZYkbB3oWQrfoGtgm`Ko*ZagT9<
zw%i5jZrq$@$N$Y#sr&w<XaZk#YI|bCJY53?pPQ=(4ILF`k4EOzMa>K`G5Q<U{5CTs
z){>jX8?odD^PBHhh7@QjA7sIWXpqA!@Z3Fz?HbyGa<y9DQt7_C^L(eMgt`4ns}+B-
z<+@ZVS^WTqI2|<e%>KNd1Utpio;W)_Gh|t;#a(NvTyInPM{AmNQ(f&+->%G0jdjjG
z+bHCp^f<RiG{ss4%vXo<_nW_N_svWmFWH>k8lI6%R0V_|j>C(G?04u_zw!Q2IZ))i
zx?{eT;)RDIShKfY<%%mTyI!8Fmc!h*z(SM&cR|~&tNQISdGwB`C}evyK&l<Mhi4|3
zk%4Q@=2~c>-YsFMTyI}u=FMkfE6*MwoHwx0sHC1JOjg#vXWj1F(1u$YmH@`Sq?bO3
z+F`{oJ_1o*W4}q<wGlZ@k*Kxhk2ihPea3M|>ThS{Jg6!t65j;x>CV=)r0KR;8DkD0
zxvw!KvmLT5pBfG)Pxk4^?CsyIWPFR@dkP%>ARMcv-kQvCU>mN|b0c}TvX4YhY7ueK
zyw~9#+Szuq641kUm+k&+`^T|n|C-x!ETr@PVaIH;Q1^FmxM0A0IR*sRmJFBXVWci1
z*LyOOcD$q;wlW#xFLn4+toQ)aMOWqYr~?tPerOL~C|dU4kgCmU^gS@H@GMuC#q)~N
z%Hw&yAl~25Y01ICw=govCcvtHl&c)Sn%?=MaW?6+d^r=n1+Q0Z%ooCkSMe45EC!-#
zj!Mjzz+@O1AQf}&Mzz4@*h8AkX%ddkTD9f3p0n$gR_H9pHn|eyD4m07mU@Dm5(iB#
zQW`qjYCB1Ox^G9%>#@mQe;6|BX=LTZ?b*;#?4*NM8n9efj$`5Ry1wcS%(1X~Z&&&J
zvL#PcFx|N2-9u)jF|z4mQ=Un1oFmKk_3pbH`zfYR>aNFLxV6qrE-)%N>1Rp%1pT$`
zOyO4--L~P`h8~N(L&^MyV#!QTW*6#`eTn?@BRb<0hoD%uli7UDB=E;zHuqJcJL-?y
zR(|BA6^eY-QiBWp_w!ItWyC^6+dqmG^28azQrm+G1@vn5V=n+cXBZ1>CUZO|J&V_D
zdPYraYFGV*i{=z8i~4&yOy-B#{f@&<xl*g=iIjeLNU}Tau&|4w!{&hu89SQ|m^r60
z6r@QdXgS2S?;kBd6c*pi9*Ib(Pgn4#IS=eR&nRg<2LQB7VU_3H|0*hgnC1A`<%iV^
z;;*Bg0Qm#TL9yv&Q_za??Etj$=3HiwM|hK=*H2UT=DOW?*{>Rg^Zv-(^Vmv|akYZ>
zX>s51KC`%8FH>lw_LE8-u1`nQ5ltk0I6cUu_*^wdR`K|4vV9K1XCs^l^n|gjbFi4n
zawov|DHpWOK+9F$Z$F|nZ|U5C5%c+`Vh=Fmf_Ff?+FtGUQo63nm2N%bY<oMl-?Xe)
zA%lpQr-Lh~V&QyF$j!SO6JaSCyiHrA!BzUF_<kBD`!S-+^mqz0zZb-6OTRprcB&pe
z4)q{oO`k7m=DIOF?jx(VnwH$1e$9vA9kRmII&6_-)@^zLn%S4Xnptuvz{A7>>oFd`
zgjg-L`K&hL20FN&;?uYPyg_o`G$dI#`?0AsgE;28#P8q62%1S+-uK;<$)Bxz#lynq
zJepc5Mz9k82C-F(fA<&ftfmL7#o{#_q4lqh%U_VLE0<`X)?x;xqUD4h5Ai>2;RSv=
z>(6Q5-^N5-y5u>oUU@#%OO_k8MfC5sF*c_*r?;ueK6JI7)VaixnVfC-DJUo;e0l!>
zH@#we^ZLedmD>~eG|+S7TfeKDo<pFKI2r6JnRbm7hQ});b8%}9M@#^UCmY*<5AdXt
z)Tz=42w9MCgB&IjN_*H~(I>SH0E`0Vw+DU*`(!j{N#PGTmshw|{3T;`-&Y-`a_xC*
z-hmbG*^j5U;p{E7(U+1jpCqk`ZTXaq4Qpf_i*|(NVVLrDRI^7<CyV5#Cswx*JM?I!
z`j*<&Xlsfy;0H<*MTNHLLXFu2U(o@4j`?vI+Hy5NyO9>2SPr7N{@YCc7GstLD>{AU
zSs8to<TfepHF@i&w_{7Cqzi-zp4UrIgcjq5xcpcYj;+~gCMD+YhhJD+e2U~O4zBG%
zA39Q&aC6)N_ag_oXlIY3EJdt-NX)FV-1YEgaH1^{|1XwJSjTau+5YLM*sCA$;OgrL
z_iF)x!+=N`5SX?+XT;+~cV?m8t>sA}C+aMNk*~l7Zq+2!*&X2Nqu*4s8jD;2R9_6B
z`()l-{ARs1sq$ga1*h|rGBX9X(o#9^et(o%*d_!yf4r}k=(F@$QUQEneP;2O94duP
z_*%NXw=|zzJe+Kc)pAnbhKy^5a_m$5V#B*WmhWW>*3a+c&f#}84F3g7d18W2s_LR#
z-WLAY#o4mw=dnOGCL~}cO5J9HdswT4u`gM%sW!44;+$SvK$*$XzWfy;1`*LEw+KG~
zZKBiiE?yrfr#Rcw9X|(A|7JD(wlj{v11Bz<_1+zQOPW-Yx>V6i)pXoM4JXP}MZY9X
zjjYH>Z?9p2$57{((X7EF%Cun*T8)gfQ4NeT#zhtr!7h*%CBT64l@a=u=wgSVI7NOX
zXMh$Kd|oN3E3?KPRN7bb_Hm$#If&P5mAsmClw$gp?T;Mh^A1Fyj@bLI+2g&fmdybE
z$v*UKnOcMFEK!=p7$4ICr|Dc}R1)RNF2Tjr=H*C>Rq}SKv7^3A^X9e7RbZ9t$PFH?
zafkmv+@jm+`pv3Gfo5CFVU$JF636@XvY#Vz+MHjbem<Uf*zU(KKHwMJ8{v4E&6J9d
z@?S6mr>M$_Pp?jul^_2}Ky};f>R3WNorXC+0%ZpZ%5M;zb=oIuRa_?Vxj-M?Xa7Jk
z*OUO`vL93n*&1YA?MiA@-;!+qEOIE*aobKTi3A%U;+JJux(r?~t1Wi-=zuE2w-ZJb
zj<%;V`WVH~(;sw-5|b9mw;yEv!O}Q=1L%Glf;*mzt^+d^QA&quPSKr4H&B#w*+wjy
zGkZlnc(L?YUtHw2h$y_Pa5&i|W7VVZ3(Q6;=MTSQ(AdDNc5=DM&MtB%4nK{NI`J25
z?+$*@jV@~BoMii=e$!>0ROI<tjTpob7*)X%Hg(9Bp+C1f&7Tm2d}ytSbJUb}L`HpB
zLI>7ACWah&dCnkbz1lX)nD%kjunv;q7)+@s`o2oBqWp%}iAAYETBG;iv3qx+&dg*9
zL2rMR*u!|HNX?Pa+44x@{%*KILu}RKIqk0mu@TwPW&8|LoAa${1zOE&JSNB1g$K-y
z)9wY+7yiz9PrTZelAQMEbx2*f9HCZo2`AxPA<)4RL!qv>E|c%wgcP7y5T$f%)@c^F
z=DncvS%j1o`my=kgZC19_By2j&Av%5s*C_y6`!DpHwsvNm<3f~eWIE#hm-z=<m!Ma
zmDH5p4H_ivVu4%mThVpF+H>G(9UIy)9%O89nBh^P|KOuF{V8aGI6dNFrbxs>?I>Jf
z5LyjuW`M)V^5Qi^h|*J*Xvs9`Z259|keS3#`G-ultjdq)S8oatVNzdt#ge^XFX)_R
z>TTZQR{2v}<U#Ul826aIV4jp;6+Cn?bLh8Hq_pSe@?lyk>;e~{=fr(CaWc=*=#L?L
zc*hpWGd{4TbpE^>r(_noitZN_a7*hh0n)u*aP`@Oj!5~u*M*i?HDB$Yyg_!0o=>Xe
zi`5k^j8s&ahZQY;;iitI)b-mv+_f&nbQ9Z!b<$$_Pd3DK*=}1My@lymo_#3SHc!cQ
zzwH)}XAi9~wrvSIP}TzTMG;N+;}AmLnOEe0_ASY#8tOy-EM!8@enyPY<HY}?MR0gx
zz$3qO+=x>GBO%Tt(*On)ldDeRTRK%D^J9?SXj0MK;M*<|2g-k^S3jl~H94iWsKW7s
zW=_x2>48@3A7$Bg0K6&RHric(OJ*O0Ao^)SoX?Um_(bt@u*L=w`I+xgIFXrUM9R}<
zRE6ni-r=Yyr*s>yWXsH_&zdL?QV@M6V(!mf?Od4Nd+bOXqHyH}zFM}-gN?pHutW8W
zb~k~KgmlJ{i~nd((N1L4&@gH>kre#q#1IY&jrqs{|BJtyr5pa8rALBq$Likq86)`_
zC6%YX7u59n1vTNu&KB2E5*D`2=y!C2F4f{?M&1x!-yd4$q08)j#b+-suyskttWDCi
zI%&Jk%9l!+49;-R#iWfF=14(xHdRuz5d0BF-_TcabG;I<KwKNJU!L;I{3{qzWV<*~
z(A+DdC9zphkyR5>Ca#n&ckfI{rkXpS6={v$5#)fA&6&k1{qZlpN!Mj8p^6Uh^;ASV
zWpX6bON*z@G~nnCtXB-=$i6CSV8};IaRf}fz4et?lj7|2ek=7t$NI|P`>A{ruOwj2
zJh&eMN*T7DMq|GHff%FyFewxws|GI2u5VY&i%%}B&%0KU;f~m76bd2dKlDh+-s388
z8(8?YbAdRPiss+pDc}pg<}!r8MCCznO{5}CeH-VaC+`9U7B~13uCb<s6fS-Y3nYhe
zIUR~#^f8+q*qi8nH*u`ka<zsL+tV*$c!yT4soajAEfxrl8iHwl6w4nf2FRWzPuDtC
z@v7#|YKP$;i#_~Vlx-=v7hZEIPP#P<9fn?yr$^2nQ1#3@X@5|Rh&PK}XTgEami=zd
z2I*I+)xV~R{;;>v-X@|!r$}w8tSF$?>Z*aO6W@4Kz0mfu-C)gS)sCy9qc>siusP8w
zkTXD}+=RbSwaBp;lZkrR*alA;slur6;T)1=b4D>zLdnawBa8l2TN-DBkTP)VP}|UI
zI_iSvKwEzy1X<PjBmIO(WKWgd2u<>5!}y=cR|QUOzCqTsIml5LpMcUtZjnDm(#gUl
zbyuDdnTJ9%+P!05*c3^LF+r~sy1Dw;7#BKcH_sr*^#(0Lx(0#1AQD`M#rIDa-4b)h
z3j8TNJ>HN)g}Te94<3|~?a#ssl@#p{bK)vmH61exih$;{Q1BhV43rA;v9o7e-`U13
zY41m|Ym9exi3|E{5|i~|6x3v6LhW%Dn`<isZ?1}rKBwKSO4-fY^21>zF3-Do9Jt#R
zd0vOf%#8D|sFt-6@m?t9hIlt2_&<K_y8k2LGRpuV%j#|8pJ+8ulXQuS4EcqsIwg{h
zY}v^GZ@j&c7Q3QfI#~@{OAwd5tE(fpf8Xg;<#fHC;69!+igz2-Y4tN5?<#bZ{bVts
zSnb|`>CeDMwH#gOy~%TIht&ep*J4QP&bjlVJo;R9UwqDVur1&B#SfWvWN)C#2$55v
zyjcIz)S2x2pK~q>pu9CDqImJ6w~rK2n4r&IS|DYLD$3Io5yh?fTs&~KrKj#Ql~s5a
zCCQq<Cl!WWv5^QS#-TqZ<^YO)Rhs$edO_V(&bH!YHt|JOQ?3ZMtvl<V5`k>#HaVeZ
zTQrlZz7t(30W;nu7}*)F`Fv5e?kDfo_=m>_t_4zj?mF>_8y$*`&#1`ryV<W4j#l4F
zRE1~2vxhcD_nxBJQToaJ97e5rd)P7;@smN5(FAKO_@amA^R@G>H<&oz1X)WT@8k5Z
zPyHFpw+7G5Dth{lGkvpqvQTAo#J@S2zq_33{t4(H?y*UMt3I+l)EZi?km5aX66IF=
zjBrND|EViJVK64Qw4&NI{=ejZStOWq6sTz|g=s4Nvyr(J{AA0s!>k9>@x$)E>|XVj
zvCwN{#ThiCjJeP^X-XYK8?)l8x7`EG&`TsydZJK7ixZ{okm*?qhBTvaKaorLz|_D_
zk)P?F8GD>Tx-b9&oK@eq6Zx?0I-;4s|D8`w=5>aeLAp^2N-xpn<LKqQ;~zQtbBmRM
zHFmY|F+L7xziAp{RMQe!wc`iSYW6n;u;oX9shM=^gVPm)3hB&Vhu~+rv%J|BAh~-v
zK2peV`AuCSP%Nl#!?0ExUEsh!Sx}B|*Vt8EH~$bm_6!TuZkD_pALAp~mq;-Bq-&Hz
zDcpLfKNSQw`$SIlYEk)f=2(jA!<h}GQLi};*7hM0Y#)Yy<Z3YCWtsfScw15^O~*3g
zGn7VthSROt)lkU)+pLF6lVW2i{l-4~Ky<ovc-T%EwFp~UeEmCySF-eT68yi<uVp3x
z(Qe&iHy#f;&nk7>0iY`5OA%O;rc$xJ0aSAcHevgS^v^-=0sF!j#A;P&Ir?h;pJM?3
z!saKBnFwbQ+Zv&F=-I1Blc8r?Mn^$T8ZM%7#||!VYExSz*`RTfcA|)V$5%f}<%>Ts
z5k;aN4xkk}4-@|!k{mIZPv}p~W?XW3+QqwJ)E{x9*leDb8n{0&)XKkmVG^4{0Fyu&
z@Dd;*&0O#<CiVMYl)ZISmERUMEQeIOy96mgx?2g6mTu`15J`yxh)9D-cXu3VQQ&}d
zcMBY81f=@_-*ZrZ_ulv3_Z{Q=^9&t>=Xv(tYt1>=Tx&0F4GAA?g(Fj>R=jTSGOy5k
zkzqiX9%U<sYhrlOHN<IOr=ePYl|)G~-42mP5%>K%o((n%E1RDiH5ug0R-`eu>T6S|
z!2s62)IXtPpugI=-=I0(>wERMP=|FG-iJyR?}2zO{9@jK-2|7@oDAk2TLE%OUyjJk
z=1#GCrr&zigkbf7DX<l$P_RO$@rod!wg!A9IkLs&C9-AZk1raSYKWuh7VFJY88iB3
zTOLcL%D9^n;&o#o`9!~2j_<*REr@q$+ygJSitFUQT{NVp9uk5H(tLN}XFD4p9^H?~
zrGQRLcJfAZvEg+SA#vxh*IPS}_o6~KjU05F8v3_Fzv2o7*a;Td;;cS6<9>KIl;uRJ
zq&yeRB1b5uLu4SDtx1PW4$t~1eX}s}>~$d1b*j*-FV=}UoGLLcvF*7wkksM+F<XV8
z9M7m+Ari=0`Zddp<Gn|LI2~piy{N>+*Vk^v<xDGlQJ-8C+IxBd3hAo9g#|t5?H93f
z*o|{<3qsvvzjhHRd#t2hW=&inQtQ@>`H;t=5i9$6WL|&fUFukEQI(?AE>7oiaA~YE
zdrrFNdX1($Mq(?rd2EkI_MFe_Z_^ynkgg|RcjWmg<HG9a*P2-fNN5Y3DWCKw2E|W1
zO*e3y#BRPR1S;tYTch<)T`r?L{bUcVR*fIV#vSu(V9oyo6rL}~PAh-{PZyv{cLzlY
zkpYyuh@L6=78PILvu%68eNdYCD*oK}nB?-|r0N%2br?onXA*oS-xvETerHn5-s{_?
z{pOEEzgjDLYHpBm&QtY}4Sv=80)+F{q5ctWUMmxq&x4<oq$Y?R^g{S{!m%&jjDz&m
zeIx;;q{6;q1btWf)UYwy)>@+9fE=FUPamU;qPeU$iADmNZCBAFLqh>EWX)cXOz-;>
z^PVG#y+{-;M+3Xu^B6=&h6)FZ6(YY~O#7C8*xKSWNI$d*G>nE{nX44yq9KE_@$qtp
z&_b=)etDFcm1MmS@%?<)^X*C3v8I7M_M&WAgwHZ>MA4v4>LxR0f>4g-kIWd}tsN)e
zf`+?Fvf1;UO9OnSuo@mF#!z{DZ}P*Mh&Ci%i;(s9YzvIx_U`s2ijRyE!Z{DahlEAS
zoL^3~rzt{>$V1NtLV59B+HkfC>7^3r#fZ8v3CeXNeC%r@$Clh+?@B)loE_6AFkcy>
z32x_}QExwJcTG`EUTXgv-Oq_EaM1Q2_J7A2g_uwqOP+mgy`aOdze|We?Zgf}U@V7#
z>(E#efv`@AiKy!S6V{1Yfr(2w(Z=7j)=p`C`_$(tR{O1}^2aHD#9+=EiVU%zKKndV
zRpKdnJd!h1!M?CIL1p<7A1^3$vO5EB_!*jL=Pw{T8@oKPL)yWgE&bKC@O@b3)kzM)
z7j=W+w5TEnXA0h5V&w479puhac`5!3ONSTqS;v{8MMx+gqx|i*QeQU4y2f%uIKc$5
z>^5zY!DDS&WQwg$WaFb_Xz+sIQm%v&M1VH6LYlo3@STC~m(kl0Q(1Lvd761O!yHQJ
zvv9-9e3I75UA!PE<8O-4=7`r5lj?1p>Mtw-<CC-y@6X=rev4}qV$lbo@*|S!LM)W3
zkn48)PCPxY+Wm)^y`j^%m`ganhLwgYa%8JGM(@v31hYgb5@f!QY`ECwg}at$*5(LP
zL0ope*5|D4JY#s88kF#^k|xaFfvnPpENTb}$z}ampJd4t*e_0V8rLj80~Zt>CNTA>
ztcw=qsK7Rz`k^G0P>Hs8%yQ3W{^d}+0H?&aerd2;+os5mqB$zx)M&0NubE^8a!H{U
zmliMIE_^+`+G8yMd_^lF3Vx4;@w%TNPMKET-rLyIywstYzKPlZ;CWejr$iHYp&pqA
zQ8+I(*|M%I2i#}Bx^L3{OqTOpnR>o!P<T|_c>F-rcA<(RYMFsoAEi+y25(p{-1m`p
z;%(F|k}c(+(8|}@WxJw(ky~f=iqWAkcOfJG<rblQukU_St%_EBPi!lM=LO4lh@IGN
zWG&sx3$}j~c)NT{?X;uIjXfltf_s!`wMR8b(9Iug5&8eIoLbAImt9=dcO3kse&OSx
z3d8kxu<ZrBDegB<>XmI1OAi%2jG~nJU|HjKsp&w?4=0j+EGOaTI9HX<^qrf(PA9v5
zcOgaJ&BiWe<v|$X6<$z+9J9g_H><Zdz9@HZX@F5dCY8eel4;>g%DGYa_cef+6;(Y5
zE3HM2nPS|xt>q=Pb-wPufy;}7D%@Tga~fn0_md2ao?$CAHtPxrowfx{t~J|oAMi@<
zaXG_Wr`*kCOe=G`A-az;4!^JFDx_Z2)tX(G(b{&NK{|dG3zIhR3-yf$WZl==*I%u@
znW0=5bQKbR?j7syjeo-%6@REhC<(t$Gr%#@+0d_S^RSL^sN=ZL2`BWp<2nM${nm`R
zF466g+~g`aJn=>)mNtpr9%B)#X<%Xr2p#@`fY3o7ha4a#gD_gk-oq@_%2EhSQESS1
zK2rLlF!L<_ylF!wXV9UKQn}Y>@XVdznD$sB*~fyB7Ku}x5v8VQowF#2XVMnZKv3(S
zaFr%rC#&Y+aQw*ELfDsk=rUN}Ado1d8zva!xSrlqvJappOeBW|qkFG(rGZ_xXraNl
z73@0Wj=F;jN0VhsKW=dnd4p-ke})~VDY6x?=z2ghZZ~n(am~$gScHzU^hAni<<kT3
zl5oW`^QU|F=>q%{Vz9uk_?nr5$LpKCGJ;+mTG={<jJK;gQ|I`1E0R692bo84Rk)BK
z%Ds7y&(#Z)BZ_<TBW=?&**H9hW69ISnms2ub}eZ}VQGwyP5$nFJ-xH;6AX??-gjYU
zVBHuiCaUn9_Q;OZ<6yQDVxr;q69ya0Jth|t7W5ZA>r0I>!olgC;UcOeg3``+^@oO>
znrUQ_%1tP9#kS$gC(`S5H%6mwQs_e%-JOeMONPf@{%w2GCxtf1r$dj=$vIc#s48YJ
z*Z@Cc7caukm`#PTLJun8C}Pv-R;RKjio0j(r{5H*O#;lpPCmc#HpmHAWp`i}=nlq+
z&KW96^A5dFpQROKIhu)L;RJX;@n%^e4X^teyw$tfFbA4*bqRrb!1zA>9T&C4c7REr
z7_A$o6fjXPwiRcyJ$$0|Cy|vE5K|xr$k1htUUW(hPCBYpV^vTMnAVaA)AiGD1s`#l
z_u1qUKza7m%5nEfDRSNYS|HT86N4=fyNKB<^+=O#+8y{376v1Jz)KY2^ozP&rt+<Z
zFP4pOzZbt1s-VB`Qj)5WVYg+&)ZC?|6XDq7{yFrMY<5iQG^>IbTCFhqwGT(l?rd0C
z%~XIvbbhtY=6y{D3RkuL%G&5GTlMKRx1HCSIUJMDx-W$-+nEIdEI*#r%%+6bEQ)NB
zDrihPDc<jLoMJH_-8sRjJGYrm;)ph-o$f|eHSNUXKK|<Xy%P_LTYl_G{Q_Q}@G_Q3
z%8G`PN<TQ|%7J!EEnpO48>7{BtpeP>1B6P9+?_>(*)>Bvb0K|jcrJy;+#tumPsc@8
ztDq19m8k~jc^SUE8Hc*5{2BGf1PBQG3n7O817TBwiM+n_!+)vA+dLggk6NnL>X<9O
z6j!uuTcggn%Hm4K@I)+{GLyAw*~i<kXnOTiBeejvz*b$xcjuLj+ZTwcI9rVv$_t#0
zk4byi`d(+NCPvRDdJ<Y8A~r=^p?@Reue4z6^FS$zDZ%DSou;Cc$h-tUxqWBv<E-+7
zOlIl(ce}sz{NMvWIvDMCdh|-&5^JyYUhE*)-^AKbvj-Jg!nL^_j3|X}^z*(Bkot&+
z7xc;zUwZzfm9(aM+dM7<&3t+7POA*(eh3TMN8(VmTDNiR)4bJFa<GV2iT(wXGPnay
zn*s}uev`?`+Yu+-Q3M3aq5)H3;hW~DiWrjeDf2jYi;K%38_c<$m=8BB&R`5-1)uk;
ztS?2QsC<1mIcDSAOnqNTwU37^rLqd*v~B1)F3CPx30XQ$Ay$vKi$D6}AWEC%M{z^`
zO^sYE%>5I_C|)S#@`LkOT8iSsb&rgYSbB_sad2TUUYYN!cg|68wk_}2H)Z;{1hreS
zGZQwZxqoK?%stVgk~D?!mD-Z$%l?9Toq8`Vnw{_BLE3ap+M(P+6hb%HA5oAv=31vp
z$kOO3TPsPKCV9xG@@t`=#}KOw{_j<OxvCTK;%l=7^MFBJN45C9*hv3GmMWdD+40il
zi~?j;CDsCNjV14(Xj=>da)uX8QM`_D>p)DEg;+-kYtHI(V8l(XUt_Je#0pTR!19s7
z{Hoj0O)BZ9+syCu?uzG(c)#t<0iIf<wH_rfs3cZU#}pr+3jv1ZPMy)&ve?@rx@T73
zM`s=$r}Amfod>To=^wpia`<UbT}!L=(28oHWisHES)+<-w}7hU{0f(7zw><^_}VlF
z)+sXxrn6Ig2iyt)H0YglyD0$n*bV7;7NUUw=ux0eosu$WLD-~BwEQT&I;<cv+496e
zxtjo_cezqyw^g)Z@_Z;gXP3P0V8M4SPxxZNsBFCsqCyb8)F|*S^1a`TPt~i+Qj(pq
zooThkP$rzT3Q~^^H!^;wsp+!bC2kV7J|Ui~tH;1qb?ieY4?<PRJuPR^<)?}K#+D@3
z0IQc^d#<B>4jHyU865;DP`|{Dqx_~NxnJN$o!Dw#;KHF%mRrVY9Jr)widyqM`V8;w
zw4li@W$kg+GVxA-&L`XqGBJ`w_!_zF0@YK+S18}}7c2PIOKaI}^j9RFijwT8&>Un-
zG=C-`wRgfY5LsWB!LXSjH6EIg-)duoUv*7UER#-{?j;YTzRa!SP`a&nnLqijLyiR&
z|DoVZFMmw+W}>-(wwg44I8wE2d<f9TO%;3}ce?d|o2V2N<g5HN7;kvbMj8177ygG<
z$P76_sO(>Os=OT+WGY3+1!~Y=MEE3WEL#V-nzMnbe>?kHDo%q?JFRp_2=zcM3qz2s
zcT&Nt8jL84m;?qLcmXQz#5M}Fgxl^E9X`9Swu1#P=`5P3MP$p7K~BIKO90>>j+t$P
z#&^1nekqqf?q56)7XtYHyO;;h0PLf@l;&Ke5RtK|*~L2K&<sFULDSq=$>g=rsQ?Y{
zCmSq>`ovxMK>^^m(@G8s1erOz3c{r8$@Cc{x$f_YZNE4(NyyMInWkg%coMCr9A{%k
zP4<n*ltc3?#o-1N;XCE`Wx&%J9eFd?Xn+FFW=31?8&0+-9PP3HX)G=5sPU7TcJ32n
z%qXFqJE>=*EH0NdX6xErtR`sDDpwb)p)SLa>pG4(+ujgWn_8y0)wV4stX$6eV4jGB
zBA}_jiCFm1ll>?i-V)LMJ}P{ui0UIkNy7bi$}ujMH#}y!w{=(bCuS1@ixy-Uk0Fsy
zRZbZK6`pq@3GcAL=G;_)R`2}(#MIOgzQ>kyAD*JXCk3yalV$TdAHvF1bWMKP43Lhg
zNQ#BIS){vYA~PHWk1*c|88orz68Yvv&K1r@O4naFuV3y{*87r4ilVeQxt~2~;y+Us
zc``GD4z6zF+$_IErg=j`)95H6UiNS4z(G~c?;;&-YIY@H?|2|w0=;Kr8zw}C?}>q9
zw)Xd!z1jVKHAu)y;8)4%c)7y3&vK8lnz&a_n5g3&K#%;;i|hS116$wIDG_Bhm|E{h
z+K7y8sT&Gn#X#mf0ZcQ{$+#jKYMFlUZThExU%QX}BKwOpz?Z9G$QCH?TtSYjdM0b0
z@yB>ECbmDzjro}It<TNbl>~WSw2~5LRl$2|4YcUwGqZ8afTR7US&G6sRdsgzhc#(u
zSCRBCMm1Qe>d(`bzk4>5ICynp<{t{?;`p+4breSHWrrg`CYJxdgG_#0)+1MPxYxJX
zi^sPJvbb={RjSi%n_q_xs4GQ1pbuQs#p=o;r_Z7osuK8wH*CchsYZ^$NPx6;(FuW<
zEjCu{blRuC=XY4wW)`}@llRokk@e!jxpq!+QX<wzDK#U~$#oRSwAU`<^@9su{FquB
zNUiM`a=UW9z#p%zQhV{8g`|qm+iq2`QtsQQVGRGp;o<xo`ZHxz<?KilXm++DaQQO=
zauSc>$gK&3s@nC?BEb0k*p+dg>+d~8;pya;&;l4bbabx=^ces;$pzXK+M)V16VqCn
z55o@o-|OF35R+rg5(m;?olPqHwcTie#J&@Ir>P-t6+|o7@4ElUtA9KJpbN*Mwwn@d
zs`W;k>`D@Tub5Mls~CpE3=j1C(d8|SE_R;H1+MXUx_-_0GQSWIR>R-E16#z;{JKwF
ztxM#bib_u)S7QPxFv~M08KrbeW;5RZx^t=w0rRjPUP{!;p%3Pnkc(OIWYj*wj0vZh
zezVrl3DSVFw0w`IWdfUlOF7gFM2{V;FC|tgza6YvTc`P4%#aiq0&LLf<$tij!w-*D
z6I&t7V#S<C1hRnM<>jS}ZeiGE>|*)Nzq7_;Cv44A{MSS~LtkCe`cs*3e=KlrEnZWf
z)ZaK4&;4~69WR6w$=vs$oyLo=4TSkxlR9<ID{t3!C`56(Ml8-Jvdm;=mR2o0s-vhq
zEiPn5U)lBM%qu*RaAkY;GNX03@f?%Do&gIp`py}4v=N2=+eN-lL<@3zlr&%YYBUiT
zbc}23g}DR+-MwUs9fP!Y3}}Pz)fCDY6m@fEMeJY+ld2>W?w|KQ@u-JJihrF8EK^t-
z*_zl9%Pf>UradHHPTpG?=L~1)c$z5JZlJzFru}r&B6luH#jV3Fuptfb+-qp@aw_<w
z$UWeqmkV57Y-yir4PG^hnC`WIbYtc2bz`o~2>%?{${;Dm8TM8g*@r-m&&nC+f)7)3
z`*ip#%O3yByW?+2;$?nRj7*FQm)guG>2=!5W%79T+er1qcR*=BdxPng(Uso;<#Vc@
z+@P(fDUaq1dq4)<YH`Y#VM7;F5Y5a<1<;5YbV(Sc=Kg&lbdVICy6Rp4&N)WWNf0Y-
zw(IG}gRpo00`uSX%M+cc0j={iI6<PPf4Q!~HN(v_k3mif4T_%{^6LTJ-vjn6$#4UN
z(H?OJ;siLTv!KS``}s%9lnB%B6YS&e2Dz2Yyg$#i@GeT#sZ$YC`R;h<Ai7p^;3iTx
z&t5zyOvaR&A*{x3(M0`4+#1kvkuq~wPYu5?k6WXF2@Y(Z&s89_&I^|)3Mo1jl=dlB
zYld#;!!`xRZqUaQKuR>$;M}V11H?_o&m|d|d^EEACB!#~;+2JiinUkBeW@oczZkhz
z><dasvd4tr@1o?IvH&jd-e#)Um&q;iL}7XC(?i?L9IjUYYj(hm^4?!s57&q@jXLYG
zuXH~1Mehby*~`oTOH^irbD7&5KE)XJEYhbfnlAJHq+FhLVV%m<%Ar2rcRGBH^owv&
zRg!4u%b276^HXz@5$zIviuN!DR+l)#WEXjU2}C?wL;nw^_U37JVIORYFk_t5EA&1@
zBo`;$?d7J1a&+Ut!=|%^+40M?Xq;}~>O#JfXOIOgigbq`z2)N`XZNU8Fl?67wRp}V
zr;sCPP>?1(6KVs3`~|wVrK#yYyhQQzom+3wAFnb;)_D?%amVlFLc!Dz9U*-a*^OB>
z78s?1hMdp+V{|!FjI?{e;$J=ZoOoIYz&h6dhINTx6dC-FV^6|)8eIw4CPs3qCgz|~
zGvX*UOhiv@Fc^0(Ki&EOW3GM}JybVcgRt1t+&gREw^GTlCls+_$g7!k$dgqsOJteu
zbIg_8=e6|-J9)5b*q-pFt|E43@6pM?malqSO5Ifdp;+qWkH<Pf7W*t<W?l4^MSSM(
z+*&tRsu2<WOKt0XKYjvkz`Soc;{8^pIjv#1AIL^V22?oiR#wov*J~<hJtv7Sel5ae
z-XYv?<yj6f?bnRF?UZ5%q`W5>K(PfEU(G>!;K@C4BQ$8nUS9L3Px`1AN0n9uw3LeO
zqshpL8|!Ts6NLiGnEh3Xw0bHg{c|rf7-DEpER4DkC1hdWQRVO>7YrMRPb+X45~#2s
z74rW80G__0fbnED*HLRsqWMQPP{Kb<%dHGkoj4>sOMfIey1z!ah@}gdHD@vizk{1k
zC>~YP8azmQDlb*L%ei?czwyal>T8g1KRQ$b_(29QNRy&HL_h#}+HdMuC}uML3~dMY
zH4p7GJMrb-S=1a~5Ov6_xC!5<gsO<mJ*jo$GY}h{m9Q17YB}0)EbnWKnroQ~N$OdL
zr*`d=0=)%<_T(J_5|R`*#6Wsef^0qDTDdp54|1c)`bb86)bnuh)yq}JcKE^kF7*~g
z@}E;uu3}?F_$>UShh$j5X=<2B=9utp-%<<&pZlKhW$(9fa!wxy?^4aoABA)GJ;Rbd
z!A=0diKN;WK>N9u0vFYfHE~l>s3qsTsyzEAqkL>RCCb{thr8d!rYxyS_E`ZPBbeiV
zo(|ydx_JZwW0QvbdRMkJ?NA{lMY(Gj)8W);{K8f8ucWRIO%8lb_dyBetke2Orn=5a
zg-Id>l|BV`2uFh37;o~zdZJc|uiq-E_w@pB$zH^$Au_xmS=?`~6(T8TTak?jH3e@3
zzPV4}<H?qr%088Tb??6BYr-wm%|(5AfWZDVkjRf6%q6RgZ{VgutH_l-uDLfBcyKa{
z%&YVxi{&}-Wys?eQcbBo2xGmREcX3IRguj5&Ccnf0}o3%W-x4Iogc{?*2+1rI>RS_
z2zhP~Z*kczR2*TaYKsYp`z0{RP|>P{Y%pt*cJT~ez3Y@~$^&<{nm@1XjyGER(zC2j
zo6_BhGjSFNVAVFF|A|$j34$DRo?_U<XX$u6o^;z50B}*HM@9FNpfM-c7h2FC5v_c&
zUs@RNDGf+PwcnsT;yx&>)-TTm=vQ4dX^`bS&ka~yafyozf(cR{eOx4gGiBz!WWP<4
z)ydd4m?$~2S#vwoFY$SD@mBQ2_XyZ}e5mUHW=GuS^Q<tS>ld=htH`IRtU3r&<GX;d
zeygC`(oOuF0W5lanHn~}eQ{z2UlmH;zI|mWc@KL_1JSo3cgI=^Ii-Y)T5u_k8gGcE
zLP~j=hw>X}A7NRBVmUifiCxT4TU<9F)tRJvjqiuKJ9b2!t4q9G5_*A>?7T-7Kw13r
zBV@;M)<f=CGVnQBrvYsm*8$JfpYu=kzt2C5`UVq_?zHcExiJF=T*bvQbC!6s11VqC
z(UE0Fq06vZihA!kER-Fr0kbnsE&78g*N!cb)-^)>7Y8WaS;HuWSl>M(kJY-oe*T_J
zA<ExGL5it{axYcQj4>G%`~WF=*ijQ9E5B3WONu|m5W4#@2b_wr%Q|;zqkJg<u_p}P
z4@_dm;LY){Qj7vrt~$@WT3-rJqFkZij@cawSV%TUZT+1IN42r-l%P7r8ha~%G+Skq
zz0-KtPUkBL_^YEH8`#hB?b+4}4)TSI2!kr)JxClLou4pAo;Eb=ew{HcH0AhNA};j9
zy+6IO+rzk{gJHRKDpkv;d+J-GUf)Ka2h_ubRjpZL(Ggo1#1+lFb=m8XR&=<$#BB%t
zxFBf~*f<E}vJt-H=#LH;bKmRiGEH&+Y(v8T+cs3mdFqY@(tofqk^aGrT67@(NeapE
zF!)&cQ*)Zh<3zE>elhv`UMLp(luh|$^pt<k@a#(~;#m+-KY^Y0@+IR3zTTyla|Igt
zcR8794~22zB?A&?s8BnGtU8YpBjCK2h@1Q{^1{b6!G(;@$pE#lG10!NYB3J6FS6N|
zt;^Ps!AVr`41LVkNr3IE8lS(1#Mu5An~I6k*?42ZoQg5=Q{_W2OG_?s<xxSaxzBfD
zaZh#N_MjAi84k-8cNQZ0J+ct}9`At25{$6it<eW%JPI^X^^9Y2C6KK$|0gV+jdh(C
zetUbs#06Xn_;}!_4nPxS7&G3ngO@95a?$=_?bsrLYPc9e3@szxWig}?`aZE%wI^+<
z$1vvasWl5-Dfxv!^Lx&>S=2h6U1uc8t7flr5d+^SH4E{zp^F$cjev|=*X!5%BHmgX
zEM$}57!@245Y--_&sgY!z_G1QG`0N~i#{mJL1BXAVltLNw+#yuO43j%I#HB%bjIp8
z9G>n8-A?7RB5VNUJ4#}r=~z@G`+;35IQE`DbqwhwQ~P!M900E@EqHGP_yEw;>@eD1
z2;pUg!1zqUYZvbX%Cw+FvohbP9=4h{iq-uodhp(Vieh7c+!t!+(>p7vPxo30D9>YH
z@&rhMfhy<Ql*N|`$29PS4w>3C9d!O|6713>$7AZ|w<HzcpZ#t-No)qe#tlfvdYATo
z+zcRn=mrQ>#j>@dtxT}sBFAe}W=Aix{9l;&hu6}c&-quK)w+enw*SNRm>f&KWf9TC
zj%vIf4XjV)DU%6B0%d~Np{5j_AgJvN*2YMfpqRU@&0X+V%X3f4RwvKx(c$O(;7UKG
zwz9y;^ALYB+k>5$%)IOPakOXvRlYYlKe<ceGUOTm_SyJJ4RVo6U`hbmA|Okx4eA=M
z(K{A)!p82#AFT#-9XYRAaC^Eweo+5rY0*^dLVg)~kGR(GH|iq``kyQ|S0+1_<zP<s
z!O^waWvn7#J}G<$J>Nj2INJ&?pl;bIS_&Kx2r1b-?q7sA>9m$bh1fkY)?eqHL0XfJ
zFWcRe5MJ_;`-3HQ%^gA3&%03nhx;tRL|BNamh_gK7V~1euZn`2g43<$G|=9-dFXR#
z0GbZwuc{rC=qmikddWR<&g&{U^ysP&5%sitWSrMxB9fnm9a`?z)%WdF{#c+nx6KMB
zD5EL5JtD*mg@B!3rHBp}V?`KIfq0{0O@7+yME*3c?-hdbm68lpRhSnxe0wSlWNx4T
zmAMZX@3%m7*=DC`LfbYctY2P!$0a3zqVaCDN~TTV;H@t24WfUTOOo#DEyy@N_9-cM
znt|n*8SItbFU^+-SbWZ|sT5#BtjBSD7oK32ZT1YYteVaV-<XN<KARos2?%C19$?SC
zNl`@viGEpuy1=fN!-~cRd&y!d-*i!E+OiTF1z_CdY2&uK;X(us`6c;IL~Gp(5bR`W
z1AcCY;U~Y>a_>LNUjHZ(w`)lN1iT{tKLJntUhkMV>8^Pc|MFbqxZk+ynlQl#16}yy
z21f_R%s&LminnxF;1NoiF=WM3asOb^b~8=OSnH@N2d%b9A=Rt-IE}4LuX6AtmqNa%
z+*or!+ifmk=V%PRSmX)B1&JG$deeb59>~uXiF;eqm$3JKaWCt|Q6aMzR><hgAzWo=
zR4vD)0<ADocuA!H>_V~omDx?viBFKnri?#rw^-9nWx;-9VH)4clS8qcyAzWmHHY|<
z;5{;u28%l6%$}788l^4f1tAZrB|MdI0M(s8XW6^9mb~WmwH*h+4s)Ftgz$GR_!iNJ
z7)bEnFdIm-jJIjlPWgA5&379E{hV-Cbtz*mAR0?zEgf)S%#oKOfsPo2;a5rjrTqg|
z+Sv|<7#3_<k+XwZnA&4;_^p0wu@2FQYP`?r0_~ZyXyC$0pox>usPR4U*kD%u6>N$!
zvnKJj5^tLs^T|XO1-Mb;`{lD4veLS!-cDwYtAMT=F5-TbJ#wtVyeUw$f;CH$FN~W^
zrJ)3XllBwY#SWhvcu7Y36<l7vab*6DOW!BP-~yv9P$UBG;Bg@+1V8nY$MSdJC6f4Q
z2w+;$@wIGAH|=3y#!Yg{Bm{)y&_5<i0_FZ1@Wb~X3Er0pCyX#u>LW@Gm6rP`4EG45
z$~hn(aDR|SDNvLCwut^Yq<g8FRx8t};8j@CxbZD|$Q$IFjvvCHS~$OhXpXuo&2%5T
zTKz2{5Tx$D7kNI`VxG6R*66aA?9$CZjwdDuvL6&hjTR36?jcp^jYAuG6Sg*>zc#1+
zdk_C->Gt3D@DGmlU$Ww=Y>{*#7v&R27tC85SJ@}b@qoob^{(IH$X&fD=fy{EMJ9>&
z3BT=+P5rc$$>OIEeLx?+s2kCh6@dS@-hix1uc?Fwa-*2c0W3ofB!Dw%hRLk_xmxI~
zhm-8U9Dm&e=Ig4;>4ijt)ba;&8>Jq8SrdJJ9;F{+eI_RB)BF>1q+6WAy6>5?ona&C
zho$&062%aI)7+y3)e!OD77aD{&R^Iq(9y|>EH|wt?t&o^H^A5E#f!~mfN?)*Auy))
zVFGSYT?^>)mwM1h;i*I;?IW2z=TCUsvi4cBX7L8-2`k>+y}4av8_?!QKx{-Mvp^2;
zxt(v3+2DFW4HwDI(awlvdA;V5YSWL6tt78Q>{O`XXk-EK!bb>RsNxb7<L@u9a1I=8
z&!(0QFh)^lbs080KxKH*S8e6}JL;76r!ZI0FwGLdUq_kRvB$aAo&oWTyDj<ik5;E8
zmKZy{v-o?~OCre7&|H}kX_yXMTIiP2ZDRUP6eum_-_By~6b*l;J!n#n#q<AuOD1U_
z&VU=aQq5XE&n}<`@M!h}dHX5O_us_9wXLr^*nd(Alqq!wBME_LQljXy8Sa25GBH$g
zx`o4^+1NlY3J!nU;ZAV(odl%rt7CM3iArC)CwdRbq0zPPf0GFb5b#Pp@?!NQK=<TQ
z`qoH`Qw9Fejwej8-gDiHZ!gup-9<D50Y;MM&I3pMrSMP&p%4aQk{wfRU!b|Kd1Ro!
zm-T5;T~xuHgQrR;(J?I)28A$QfsK3|ESmgp<ObF-Zh;M7bjOhjeCoy0@^Tu<m3Caw
z2I~JGXB5b*L?m&A)lucPpp)*0(9!VSa{i&15E>*sxSSKKTsPX^JS&i@7gQ%jM-F_V
z<_E|VE4oPF*fv?B1ph@AHD#4dn4qwsjOpF8NYKQ}Q89u!GFdye641S%d)2W~9g%l^
zz7p>=Jvasi)WZ~aiEp#GG;Q}2``ux@$&D6v#Gd^`l@^oe(LF02pGtgBC&x>kXe?{q
zqyd)Bfi%9Z1nacli8Ua4jv1xKv73$-V}<)Ru`1=~Zo#JTN%DEpZz-`XcMoE1o~0IO
z6)TT{2tWNxw!jw$Rh>mHJdgN*{g?PT2vpy52$15zQ*-cDL@Vj31pPlpo&dmT@cY{b
zQvUcXWk!*MwBLJB%n{jV8`~*$osAL5q*^e>2wWI9mR*knvP5j3GE+i8m(uVvN29$Y
zLr1K>FNS{X2(`$$#1G7O{V+wabel35SM&?9!-WIpKq|CFTe6%PQ6RnkSB1=<^J%RD
zI@Ip4Z$bFhp%Ct&H&rR51KbKheU%Tk#IP~Xcm%xI3^vv-VD0(s^x5KdR>MMh?hjaf
z4DQhl6^FtE3tz4KaP6hKbi0Vqoei*l7pBF6uTdSO;S?d3Yt8lI1s5GGT<U7gZR6;=
zE9F?5LswZt?lY8Rx-2Q@9l*rGvJ&msJmc<JZ>I+gO|yP5yW<%LGT%=3@0w=a<Ij2~
z{otnn45b9f$z_-FJpx|dD}^;)=et%kQ(s?n7uT3?sa(JZgrh(P)vurZuJ!-RuKI5;
z=_XVo64_{HGB%QYGcN=2Ym9n-QtGtkD-3=2=*{PCLIo>SMuJHHvaPcak_nsb0c>Rx
zYfiS2u@EWy#{`OxNuZTv(bC8ae+5~zjK@V7C<FkR-!d=@i0a|mqa@rDrXYc@VQeJ5
zM}l%AW#*c;Iz{<M*^=FY!Gh3trUCw#AZjmaIUq0#D6RuE!z$utR!oOJdsd_b#BAzw
zC)!j^(UEd5+0c=v5=+eLt@i7!w_Pi*&1=h4+VtCFY#wTr+gLfVEXe$UOB}Sp9uoeu
z?vAzz5WUJMChYTJF;(-&KyhHm<6p&rJ=9`>O_+`Yct(_2eFbxD3P6f@$G?#x7Xm3-
z{4b;kFfkv5|L0@0ry~anw4p<E3Q#Nz88YVfTbvyC2aj!Ff>R;u?qavESAU3}i-g39
z(!Nn`IJM)}VtmEeqy#8ro1XHPw4M?7W;`!YGxuSSyfyb&C`UXmkfZluG*;szI}{^8
z!D=?8A`Pk^E^~R;`Do@4-6N-Ww$Rz<_!sWc>eofe!eTf=jB%m)7Yp{0E>RXa(@Hft
z8B`!TpYcfD=;i&HG^pz7#~}_sfB+b9^RX15%<$=u-9<>axWG=H!i@M8{LfAnbOBtC
zAEOcLcYr@s4yZ8y7C>pv1~?WPXt3dH6#L(!3U7C^`}GSxI#`fY{hX*;49P&hkY>np
zt247JpiEnPk)Ue3S41)g)4-N!W$@HQ4sd-l((G+-2LPRc4Fu4kO|75F8T#X4n}|@c
zxBrksh!`)G_%G3<g;vBa76&}Bme}M%AUkMW6XfOgea!Xxw$-uM4jAX;N>8^X;-2!*
zn<%c(>bNw?-|(XQ^@Z7j74UBx_#Zl)juOn?z5E9YRVQl!I?~4g#7pw1DMu0iM?Agz
zAEEZv^!j>@guTZJCGCEa^AS&!S-~t~XHrN?Um-<H$2^l4-%G~HfR~{}gE8`Rsl*Bb
znM>p6(bJ@W&iERu5!wfHap4kuH~=f1ZFwyO@Ny&~3#0%a`8y^b?1t{_l?p(&(_>ix
z^j_<kh!87??T_^2$_Mff$3dK^3xIltTCr9e`qzPGY(nzN7$30%iLzx=C}BDjaiQB7
zaHfwWwsHX`wrWgO411|h_4CN{5zF%|m0|+}<DFc~CNcET`syifryuo~Ax1$&5uImJ
zeHM)-S4QyEH*n~?IZa0hjQgIZ%ObO9zxdirRJUK>F(8H^e4XYx27++up~Z^|bG=y}
zL?r<ZOdb4VzeBvnzm^BVwswIt<XpjS*f2rjo1h-(FL3H2PXcYIr(&>r`*)+I_OL%T
zLdd0vqZInuM>}Bg?9)&O;I|`X=@LXci^RP&jKBiB1ibb!za8zfKky&|3k3@WXV*t6
zSqH8{0SAVB<gTT5BP_=>hdYE~B^^R%nt`f&7&H@7bm_(jCiP`up>^bpwg8gl2R#q^
zUk~rMQS|4;RQy%ra}jF%7GQ8Orat96%t(5!WL{8o%EmM%-9g9$S)MUB@XSF)DrXjp
zA?jTbBtRZ1Ci*KN>9dYurr!zB1yH(gIB`D;4i1>`X_!oG3q*#CaGLl`nU0k}83ZM0
zReGUwyR$&d<VwAwD7sQ}7wuM7<5iG_tAJ*oQ*TRWH3w>~1Qyz^mRwvZ)`w`BtPK4f
zhI<<zrQWJm^InYVq`5zxtBN@I@|jog<a0i!Ymfn0Ulq{@3I|};|G7R>dn!b-QJKvo
zAbn&iR0&Jtt|deK9|8W_GK?24$p8Z3ki!51_wSTO=`NQ|jrSB#cK}=^EkF)H4~sp#
zc;Kk8S;UTTo++c@s_P+va~}(kU)>U(o+O=5AdJ0Izc~P6AD==LV}pI38YtGWVuk_Y
zY?aKp5E_l|oo9O7XG-LzkJjGGlfHPKfK8(zm-NCh*f?1I&^>a%FiPU`@CFP#y9}c)
z2sHabD4PVY`ymP<QqLnIHTJFy!n%pZ1Bg70QJD?-_|yxHE%-^SndOB6L*=j8pIEtK
zbgu}CJREVU1CTJUqra6X!!Qj-(X9<vq`!L~1>W1rUEJiqn8(A=^=R)QdRN{Fpj`Dv
zP<=&k9eLqHP}3bGIy@>QfQ`a3O0@{Z-m2E(skKoWCc@OQQAT%VFMpL6uc}Ad4x(e)
zw!Pi?@+3qml^g<;``?q=AqO-{-9c<BUPKsf6IGWI^;W-IYpc)pvGFKo^{At9K+esl
z01GL3%K0kind>*xiQ=~GAORvPpXvY!xEDh?ySCtg|G*EFbl^Rt9b1Wz08rS8trqYi
z4HSSFeRs?eUF_-#P=jwdN=#>3@1M!bw?G)!doA9YSQfdu${>KdYaV$r0I_94fDmW%
zPVK=L`@JL^FCGCLA1f@q`;`7&GNT_W)nVM`-30SezggMS|BJGqM2}L_tG2m;QDH8x
z8`pyZ1%7P)wm6ea%qw;|EO#DfoMq!-+zD6#`d}^+4D*&NvEZG7-W77F(1yn%8O|+E
zVxQOTH1|>;<}H)UBc3n9n#NR<?!yp(Z==>80^gNmt+kNC=dJu+5gN$uP4=uCq9D`7
z^S=u+miJ_lcD}_M6zg5F75E{LNK7wE#j@ro$+XQLC0U84j^-cZnTB||sTkfc;y5Cg
zyQBQO^%Du|E~Y7peCtBGeWseja9*HM1CRoM{Or~KQ5fW@#KdV@4$3r*QPdXQOJbM!
zrjPs^NdE@?T_pdv=Ub#*Nc%a-vi=hnrKVyyFXzsbGn>sl2gWmOY@-s2l0OWsIHi+|
z1Vae%)z&sFXsq9w)b^l5fqjlLeu6UvoH0TWP!kH}n7)THE_G)y7P0-t4?t7-|NW(^
z4nVWOG#|BE@shEN<1P57Pw_es<EOyL3B(Yl>4PSf63yagz=)CDj~@vjb}Y!CP~bgL
z`S<<Tr=|8%&0EYVe&v5n84HL6N;Y?|yMsI2sD#@qaqfW4gCwm3OaDCah*E0`zy0VJ
zx8$AB+)9+DHDpA5IB(Hol6boaAa4_+y;O-oo=P$}0MaggzFj<WP6+L|jdV=gxfSdv
zpEwhOEJQBVf%L<SIb(oLQ{Ba-AnrfJSc$(tvPVYqm9Z8jTEUFL+dy+!1HfyzdJj-*
zP*G7``;<KpovC=?`sdRPF3jadU*FSE^2aq_Twux@{+yai1O{(po-BN&(JIqbhqReZ
zCujOSW}xxyu2jx{7GERqq{uQHx!7)E-W)NNgTuHg=@*47ro(JwPi1=28(2X3#<e#s
ze)aL8!(816C$uc*R5DG@N%_q{WmMA4Wlmpl-=_80kR&7rtaC~d?u>&XhEQUTT?KG4
zTb;lkB=Q!o#~U2p$Xg4>ZRY{4UohSG{jPNWTSC-gLA3<%_p*<ScK$Tq=)XBUOUk{G
z(=i0|Pn4-EdJk8N?abDO3%t}-<y7*Fy5>LLX+ahjIAFD#&Wd?*W%Px`V`M4lXnZVp
zBhkdqy(qBE2Qa-KbI=MO9RPl$?AU9by;Lwxlh_@o@kSmL3to`<gcJ8RnsL^tGZ7-`
zU795eWJ5dw;zb>a-f<?68olpAHwM~cB^)@r07dVca=KXTu>e0VpZ~5|Tg4F$PnLfr
z6+dqGG&3!o+dtyX?ZZ&V1!hWOH#@O7x9b<0cZ6AvpR#?$i_aaGIBpjzQO_;VAe^nT
z#58i-d6058aU-_`OcaKMg3(1z%m-GQA8mPOKf<V63*XdXYL@l3iSan^+>p#5V<lOp
z!tg}&(EZ$eNdpjgINjB!$;+`tocki5e`u$+J@lKC)3B<@<y>>9TU}-}!hngWkeVdx
zV}f~Q+0&2zSi$v$56{zRNQZ;OcP@48hcpVCp5)3!f3j*Q=#so)n^>ssu1&+#O%wH5
z3FKSOJr&=|=8{A((LUVCx88Tbf#&g@DKNpvGSqr<I9eB5B!8<Dg&wA3^=$<s&3hax
z+P~k|+4JEr4=W;UF`-Tw&LPpbM0(aN2MpQl4`}VexOJY&i{f}jkSrRWR#0RjsHGSS
zbCxeKL}ck{l@D+;36|Gd19uJh%1fkLQRk=Ij|Z9+hQdZZUXDY&Hiv7^_lILs@Z1+K
zu#en1p$DL*{WZoC4Qoz{S95f;9*gh2u7NQl1*eip1%>C(Qb=Ql%BE`y_!=1gHDZ24
z_Dr;HH%r2|B5OHXRDI}Xh%|GoDR6gu%=ktRwPtMbl5`;Bu-3RKD~p2Pwvjg7^D*;M
z_ZOeW(`)F)NLTPr+rpdK8i}}HQ|&E2hOg8GFRo5&RVF^5qZlG~x|<uHDrSol7!NmN
zVvQUQgev@Q++EGDQMav11K{h!C)p6?3sS9NiF&6+6<pk=%;vKLmn&?J`bDq$>op>h
z#*^&{t+|JgL+W9?;e$Cnxk#FdDNgy-5L#oz0EN)Sf^S_X)S?@3%)y$S>SGW*(E}lW
ztWpO^-~^h``ad_u0&A#bMW4f_(6i!50~g~6H_V%FUEoiI!m8z@PMU@61Ba!z5v$XQ
zW21!T-<9MaZKJzKj{iyc7m3&!*<Q$d<Y;^(N{#y80bD-#IcQeD_9PE67|_>BdaLED
zQ|0*$Fs`R~qSfK3ksf#939sahuBza$vApma?a<~XFiXq-Jr1Q=-Lj5R^T|)i<B&S4
ztK*M--YJ%lri({f#n0olA=i<QnpX^YGYR1-ebDVGP0}s*osr}^hs!qYM;W@PHSAHA
zF=fZos#{ym<*E|EO?L&xq^F-q=0<U`$)(Y4@!b+RP2{dB+@nP-?B5a6y^sb%^#srq
zM*)HfN){k_YNuN7VS*>*=p-98c0_)AZ!XXM78;t0*58nBQe)Hbe6YG&RH`1kN`VK_
z_#N3^rP1Q72FqOGJdx@%n>*wb`>N!&P<Q~2k4C3$PL#OXUbOs4#{j)O51c3PCRFG(
zS$+fBnKG~UbzR`U+ZAq&Abx}D45BC&yW!Q<Xyvg8-NS}}E3yr3j|~0iNaS6K+%|zk
z@xU&_9O`*p7`MpF<qf^xDC4u*GpV^^bL%f_C6un2yI(G~FMyex4%f8jQ@J)U>cHd1
zP+<07C};H4nE02|JY&+MkuhLWqbxA7(Zb$iC=0!4$J8&MT3;reckowHA~Eqqw)0SP
zPNA^bPB>v^eeI^_L9y%3gy7~I!9{m!-<vCsy4U;ds#1N&dQ|=QO{2D5)-v5gt~7yZ
zF@*4DMRvFw!BPUJNx-9DZmiUAEWEGy)7ZByk@nhkI>*ZNGDGKoh^ZpB|9}RC(L5To
zVwgqiPDXrAbp$W09*gmrrN2r3hO3+0pN>7Zbe;gr_Yz`Z`gKB5ej$ftj)e)fr=#Ic
zYNn>x`VFs9jTW5hhwGFcD8A41PgrbzJr;?4L;_@)$PBPmO+Noepa=+XQi<0atGs8&
zkD0G5VS-mwUT^Mzn}!wq$j_7|gN=cr7vOj|ewnL;2C6#k;CcC&b{~kHA{3k{`;j;_
z%WV>2F|F1_MQhEfdr98?xn%faashTez9qlQ$qdi#+EDV_Daq4}7@wXi?{ub<9UsT3
z6pl>j7()_GT;?rnEH=%=edqZFM|zmkpTQ~m#)ia-v8<XNHO6_limDD-|6s$^#kCzv
zKwJDOsy~$F?U)N`zWz2jNHKA;?}t@rJGNLGAI>a|QUhr|63{Bujs#!s==}8Ebo6cq
zV{vmqOAh-h(qDG)+l}WHc108-hNScfssNc>l5ZnpE>gp1?LWoFRi4)B*KxB{AgF*)
zoG22sSN-S4hri03kP%O>&sy=_n$v~LVF>j4vF{^MsM1`QoS1^&xgziECsXlskJdlK
zcM(H%M=cW#iv_=~H;ZnBb6STQ!Ni7ccRlZg&pax$8880}=uDa4x4ARW#3bao5fZ#0
zMZ#qHcGsKqs?#gp?s`7-0m9o|52B0gK-nY1+>XJ%C&3UXP)HrvmG+H#<^_zK$Hsh9
z_xG;v26p|{`u1M-P1f3FecqpuNCQ7l=MV9yy}Ex?;Co$z?MS~=?YepSKJm04a0$~l
zD1QFH%ltsIX#kke@oY%qCQmp+<C~(?T)}a+>krh#4fS`Q%XR#yh!b;{59~$G-O?wQ
zW6){yk#U4{hx8jQVzk$J?Y<Y?y*dub4cS>`2$|M_gxtg-Y71JnRgZ<x!B6}XzA?ds
zgYqn2@SF|YDI?NGg|aeoy!)rwEu@E$@6DTUshUk*^c?y%{uN)dA!^Sow*As+zOZZP
z^}Qk-J|IiK0i&gR3<hadn#taq%^V}^*1!a)lVI(1&jMgX5r41n3klAYoWAXV44pAg
zTA^ui`Z&|GAaE;>T?z-#G~$0~;yj_j&bO69AaCp>c~b_@2++jY1xn_>fXOXNq3!7Y
z9k_$t7BFnSrnw6kfoHTtXm<U$BIP9NM7`Lp$-d132=^!Wm#rn&<(xC~@POb#_B!t8
zL%9^*Qv;Ek#_$cei}&Umaqo2Ht;zC-W53etC58_Rnod={e8xZVtWIJ9&G!uJj&pTJ
zoE3%*RbbxHqRW~7=*?{TU%3F5rqEksmWNSaomF3)YfTwGlYC@gmf-vrwTV4${<E`q
z`dl^N=&&?;Z9(w+h~cd&r)`EP_-#Q4I>Wvte#Q|V8YT?Wlhs!A1wr$5i;_T4wkrKe
z=06t7x^2TAzV%w2#e85C%P24cOI~oX?owLKp4Q_#7?*nD7n!f>%xYO|xongz5Xzli
z{t)M-1tv7-zI_X-zE0pUuz_WzZeG$}Td&c_KyULWXY61`;J-Cap`W>R%ElZ1?x?yA
zCWB%OIy8u2a=`vX)tMd<Oh}`gqcLfgt)zaP!89IaI3J_YEI&5>^%<rP{5UQ6jcpq9
zRHWw0^ju2Rb=%ga2GhUtsc#8J<vg$G{x+%}9hHBu+Na^XZ}+8WNVx6<4AL+C%nw`>
zk?Nd4*la3%GQ+%4&I-|ctr&~!NGY=uEfV!75wdWc@g5(%6RdeE!*6pLMeQmLsYv<Y
z9;mmz604F=!EZPG7WL3I;FF%ej4=W=rX(_Y31Nf9Thxm%#2(5N1U`gKArS>twLl(Q
zczw?K<D2qQO7WKk3*L+LWsr<Z4)ve3Kg-mv$TD!+RfXO(PnJ^j9sowx$$GJDj!&sD
zK`zbWG7PYWg29X2R;L$5&-L)(1t05L<ZkC+1Qg46e8A{lAPwe29v}c(Ft%*oW(^dx
z!ng}x$xD!(MNloJVcnr|0lBOM`ge8H4{qN112`W4M5&QGq8zETzc5h&ZU!f)F4is=
zx808AL`>MV4Q8ThIts(ws9yxvPAI1MyLZa(+TNd>`4UOYrkQnde3EY-Eu8Ula$a#L
z6`1o$0dFx9pgn63;S$|n-RIlSced<>G+fC2bUj!+_G#9;SdLcQxVh$yT>zhAcVT?7
z6p@l!phJ8z!FE(vA~+ff+v-G%OYhwyZd&-oowx%tg!2<Q1@h;cp`}UDOjs<k@SVV@
zEKhn0<&zmmNk~SKfZ;z3H?zimy78xTR~0{%5!rcC`o1KBXZNX+%r~Jye@z#ufxucX
zM&{A?wxS~MJ%H(;lFa+6A<XXc4RWDWh&Z~c8)Uo$P#HHq74~H+O0mw+W_V?5p^wt?
z2EJHlz!x}oYcB9(Tm5$!6;ep|cVGF$Tx8lNX9@pOa6?@4JlxA%{H!*9C^EfBR=d2|
z8kbt&oy5f%vOTf*73>4P>z;JE?OdIMt9HFcZ=8qNx#pLXpQ%Uihmg%DeF;}jt<z`H
zA8pR-3~iOpGa3Q|Fw2e34~T7gDaVc*dmvDmp=e6`hoq`y>W;L&J}gZDR&HnG`#X8{
z@r$}x*-xF$OLwU^f!R|NhhH+iMI7e8bg)$U8Y6~nj&AZ@#ive!ntOyjyQSs@?IlLf
zLxJg<cHpXwU;JloU2^#Zdu0TvmcB?(OKx>mba+X7!B@_|KFQ0pyZStvs~$yJS^gxP
z#!rEnlCsHGr&wP8vot3<z}!O7^qE?X<k#G7c*7MY(5OM^-pk4)9I;Qt;_#NI;y0N$
zDUWlz#Pkbrcn%OTxgKsdv}mxm6|J6P@4v`bz3wD>cHG4>z~6FfeK$fVGe_%G{8dj7
zSX$J6Smf?4(?J>&dU+?>Ig4gK3C1h((q)F%v;V>DNF*u^fb*g<v~HPtboe-Mc^MT?
zZ(ky(s=1sbMBZstjO0_*hl$M>KUgu<Ja%Sf3p3w5Pi7-M*;ZaZ`YZ*E?c0v3F$ymm
zJNd-0ks*!y^G)EdhDZdZHxP}YxExQ~_gW|#VX*mG<MDEJNdXUOM}gTr=Xz=(N09me
zCeC+w7(L)9Cwa{dK#8R0n;(9zhvidA=PIFg6D1?b)~<!_`gvJ$k*B#~`f&ylx*xpP
zjRfsSoS<%YYsuDz{u%LV7%2XC@a}*BsSJ?(?x6VlGk^})IA8UvDi++<&}VqBx5o%=
zAx$R*CVp2z7l!WOWE@&*iT5c2^O*vUhN|l)Vx>wANk5pgRxb!mJdONb{T=K-9keTa
z65EWI4f^*#fN*fMTssRAO-rU|fbJq8&0Lz<pH4&dN2DnJJj3k+(QRV9xFL(6w?wUZ
zLQ5mdVL+9YyEhp(wXta}_x1khpJCfg@Q;07qnyy|m!;n8JEzaTy322Y#vWOxm;DPF
zGdJ=@8GF5{*PXQSggY~jDhuKatD=8@lM7+t5AmOzU6*la44wV#GhU__%M{^fq`K&K
zT7GmaX!6r`%P*cyE9cu!{-d(Rsq$J`NbS9MdSZPiR$edKl32}(a8dr_>pjD7L30-*
z`HZA5!u+iuqKOL{pJyLEX!+%h^LL99Eqm3a`VWQ+^*X?YWdQ#2#+ZXrrRqM_r2;;F
z8uIPu|7R^cP(Jy6kHkKS{^i2Bs0c)ga!<1xJ6U8~#3KFuUjcax{#WK)@8gJu7r<L|
zB44hYML@K^a3pMMfp)^kzax;{7QFq~#4pYm>MmkU-XxZ2mp|+1DBaAFSWmKaY8HrO
z(=K}og&*)5y?&z#P`1vsh}<vklBcdql%dA*z@B5k6<0y85mVb;yP$;Rp<=FYZa%y;
zmiLpa#f*=OvoTL!6H>a&jmkx;#~$r7_P!$aa{R7Q=jEi7@r=Fd>gsfH^KJN-+1^*6
ze?9r1m)(1O2j8Y?xW_>+GaQmtJv2*=>JFQ)9~NBnv84Dkv~X;*t-<+ooz{;hkcLKN
zn%zb5?5@q}9E4R|U`c^Zr-F*Zq&eckXnwBz;mZH<0fFy?aVf9#wg>^PqGpYc{*Sft
z_vZxx^2A_M;u;%sR@3&!hno?PzM^I=4qm7HYTR0T?j-)ab4$z}IJD7NluERI2l(-v
zCK<n)w~$1(hue-5s5%mIXDGTNrxxX?qZX-S+<`-C1KfV#r9M?Xl)XS|R8bfx=URKu
zCX-e$Vd3Ug$wITfH2=@>O5UrT&xA!P>0i7SfbO>9t~Z5Sw%5Dyp-v+--kOEByH~L^
zwEX@3^-R;GBt6<iY5{eCoX{pOA(aU};f|kjeC<B6w=}>=dvm#H_+|Cvda~f@f4{pJ
z{)gHCSrmHJBxGW3fRZyc!Rwkc=Mmb}+|6t8*_QwxqY(c|K3lEr(3BZ|kya|sc#-Oq
z`5(iT?QlIZPEL6@VS#gMvJRO&!Jn-K9x@>P*D{_FB5l)h6X)D25O&@plK*+&?|=p|
zfXRg-r^YFzasCOiIT{O|ka5w>asDYIImLuWllHZuRpRr`mrY*dRD;va=IC0(7t1Un
zKCdh$f%&I|@^So82+{R$sIg4evAoRMnH=+#US2Qysq+=K?*R9aQsPY+NI#Ly>jbBK
z2)HIBVU6=lTGDCkLhZ{<bGFx)sSa_QfmySuwLcVYh~3(IMzZbyYwx?ln%de1X#&cj
zsesZ20g)!s1O!4C5J7qeMY@1=fzU(+rT1QxUL##<u+e*qln|AkP$UpAfxzr|j_rK^
z%=~jTb1_`->}O~1cdhmIw%1Z`Y=V7&JK=FY_G}k_3e`WXNkkG1Od8l83fSY~6*}11
zLOthr{zK&e?QQg|e)NKZHTc#(O~?2(%puTvnVVAoHlH>QhXFo-Ao>$M6KX^U>J3=!
z=YCiBKWJ>9^d<T^072=7ft5joEN{~x<A`&@!&E`jdw0EoWUS*zPB_M~T8)?L?utmd
zdK2}k4q(K^Y6o=~N9EC<Yz-ju9mRAhRHi)vgv~J%f(QE8Pl^x=QCVtfN{;&-=V$?`
z-$+TfIh(!R5x@%=QLI`k$xEGmNu0s(m`uI49f-6fIhy;BlTgCWy)WDyLU`&s`TtEg
zP$vuV_Yc_HJ%$Q**XsgwAymROCmpaadVxJvi$!(h*k20-J5D@gdH&IHwo$<mNaKoc
zKB?K=ic>gCND}`Wt(U@y_Tua~71dM#>@um}V{bV@^3(Wy*K3^=K(<yr@6HW=;;Otl
z#eVE0yAtJ_H6kLZIt>*?gDP`2r4KGf<6k~dkxDGAHVK)ttE4nI)+2)UtJs4ib>9gB
zaf87#t3XU1u0mQphFuZJgPwUU<u<DsIJpeC=#F8GgTCX-+F`RVx&Cvx&qKePJtKpq
zLg3_?B%14=Y|Mb8IPrV45KkFZkw2$OpkF+}Or5?aP8CD6_u<70W#vB^fKGs*WrA-J
zHXzV_)L&sNQm7TM&l8&{>%99w`>$59H&buL|9pjr%s>@H*rUqK(1G%h<X`9^qFg6%
z)BxGPUji^q`6v`<m`9lW(=bo;AK3q@@;6|e^xOY7{6us&<Os!<T%~LO`CiY-@2lwg
zr-9~&{UQE2hfW~HPT1!_?vC1p|3E4y2Eb8zz^Tvw`5q@9K{Mda180eGC|v?Ri2UJ)
z{Crf03^)-7XoYxu{>gv*7&bw$e@Onvr2qL-HYX=gKyx6p0TOm*A^J7fe}?$3A%Vv5
zGxldm{^LizIDk#dO6X|*ey{Vm$q%uuXW+-t9r8f2OihvVwryX($;+<XyD#s;-YcEa
zrDIq>p_qJGn_dN^5^e%gRng5%EPckqrDn@+&R)Q~Et;ABzVs}ElV;#vcE6xlU7fzK
zgTv5z@FvIRuG|XVa&JEGpw){WL_|zR2O<hnA^TF!5l*f}>KadX@Z;|HpNPr8C%#;^
zamvTo+4GT5a)uK9_!sX_jO-pz?;!yA=h6QU>i-p7ar%Za3Yql*yH4BfENj<Tw@!(C
ztasAae&q&lspV&uynksht0`Wj!-QeYY?0-ez}Op)WtO#Pt`tcS>H?)GkL9`2>RXvh
zM{E!?jDO*1qSwXh8x-9cTYIxo^eNk!4K7?UVPI|#Rher;U~ajZjZgLHn2OM%uqj5~
zC`!&xbT?4=LD9&|md|z$n0yNTMG~*=2>JLP9tar<e`~w8QxyEy-Yr}t;o_!D`=^yC
zF~lc_9eJ**eFvoa*7c9iiAbgy02tz}cb{;_?Hq9VIK6P!GygJBGa<UORb$ZncIV4L
zQb65^RGE;+@(s%j1Lr5hXMnvtjcJ>Bs`g>8k=^;GV<47`?}N$yVsM0QqCAcEy%xXb
zv0i`%?(t{%t|WIRlt22MUJ#c?Q{tCk={Kz{<0~!wm35yu;&|~!vwf%TzI`{&1p*a>
zA+F5TxTd+UU*?WLaBj>5DFYdi!u>MdVW#7+Z8vkT&U*+7Bzm37+j48&5DurHNrU^s
z<=k66#(A;b2O()53+nyddEm3pb|1;7_0@D|=Vv*vh&ys3%>+_Kl02khQvDD?-8*KB
zs9rs9+f1xkI8b@w=*fT&rQ$u~xYei=rH&5yT#VmvV;SQg&%_%IAt_eFjI9L}J|2T^
zKZ(Z8wE5S8aci2*n6xuXlQ642Rt4$6+OzO<qmIEWi8Mu0^`4^xHqICpsi}q8<iNb6
zukVg~Vx%njjt@Tt4T~m0__Ri2oR&}$`5sbpf`MC@pmvw9Bf;n<zaz5;=_j#WhMi*|
zb2<?gx=2ILzJn~x`-z0q$Jn^r=%QG01)Y7$@c|e!l}{lL{jseXR!^ZTuL#C4-j{|O
z6^QxPRFndN-7Mv3H~9FJh{TjW5*_S3_$**D@yd#*X6!`K^5QbPMy9lx?Te%Oi+v$C
z1$2;u=(;-V3stOT0vr6v&}^evD{e>wZnVF%BZl0pmAs$woNzv~-7STNsKdiW{UX;{
zU+k!S>!MSJxW7d(y!}--d*E`WYhdpi3bs`DS97&?QQ0$}ukF7GL&*)x7`LosZXR|R
z*mj4y2={ZmWZvzvP`HiY5rK|2e%%TQ;bgM*&2<Gn&Ph#lKj4l_AvUI_pIk*^iZYjl
zp=dDnQ+P<ghVVy8-+_y8Z{t_oO^WUIyf>M-weqaLeAMosiG3-+yV$xAE2|MFHk`m6
zcg;-dhIu$!5dMlkHYKgnu$vnzbB)A!Y^Yf~tI-oyf3OpiVnx~!*tLOP{c<AKa&i6B
zrItkB4j^Tnu;vHst_%stV;8T7w&C~k*t|HcDbz<(>US{AA3eHrFX3@C16#}i8=;S^
zA70_HW_H{WtqBeFASr5tmTBm!Gcy&fglhJt$&4k9^~CTlYO$F%r>V^VBr*~<_gSh3
zq_1)l+-|RqUoCnoNk(_YGCz4M&H2_ug*}fsfjIVdrE0cHu@iaQ?ZRV2NdaQHg5yI8
zEwwV9yP2v&Q*l-_d#>UmGZH3hoi<@Xdq*A798#(i?)ojzLuN<5XsF@dbfEP<f6MvW
zWbzqed_>RaM%)>nrdDf(y&G?QCZ9qNF+x~8)$r0jT-vp`W1(v1%Ki(}+SLUA+MOX+
zyVXw#wWw;uL^s?MrH$SdgAV5DyHFJ^&ekr`Tt#*GxA2=SZFjB*F4gd{r?j-Fc~0}-
z7abJjG{uC6;c|O(@^DfOL(-ubTRzl+QKiKNTTegwqx}&1_%pG`&Dn^9)9}KIqrVPK
z9sE2kqQGpdxd7<`edBft&0)E@3p+0PJk~l_hXKTaVQl+REoX{wX1K$;s|)k8_ki5t
z*ysA8G1R&|4pHM=xi!DwZQAPV8qB_!U2>_#MyX>jd&07SNibUg2&2lp*Cs4uznKQ+
zY%y6^CW;06dJnt{W=BM@iDMbgpa*H~QA&08gZK9ERBY7aR@C*yi&~^rvWipmSCsRU
z_oXB}kvGK9RLrXUSUq*}vdlWfV{jR_z<$7$3)aYP<Pgk?PgkKUtKsBvFkI|qu*DMZ
z9X4XJtDL%h2W6Rzm~zw4sfpY^Wv1uLN7LiEF%Dn|)fsf*yr6>48PCG%%2-x-UFjrl
zbmNm%N!XOoTN#q4r&y1YxIL*$3cMFk&||!a=^^S#i-sOG3=-zMEJv$>nv(4Y+Fq85
zj{Oy97B{U*jusWm{PGQ(wv9r7Z@-7-lX6$QX(seSf)`@T_K^#zf<bD$x0tgO)Fnto
z9)9zHpF?kVb7<sI1upJS&M5I?eb>B;vjc~)na;?1^TlTfplM9feG{UJcOpx{tmWJq
z33&_m2z9X=dt6ov%MC;=46O#2gRx7vLwcnD#7-H6zJR<JP}eWhdX2@%j=CR%DXiqK
z`>jmxwP5iZ&^G?9_G7or*eT5M(<q6NM0cC|Skkc}Q@s5qsn`liwEYNIaTPq#*lJWB
zGj-5p#vZuf=)X;?HTg2W&Ytp6X9nvA4N98ZAL!n_cDx@0v-|k9g3Y$WwGWQYaSt(e
zNBJ&0)!J_`x8LlbDSj#7w1Sd&B?{AyC#Ajiv8Epma?$G$ACY-^_XM#mnWle;et1c&
zIIj{SEICocr%<HqwybtfnoO;y$g}T4Y0-%6b6U~Do4~OFgR!^-ax)0*#O(i}d{zPS
z$@rUm!u^g@S^WkyuDZWrz3rE#Zw(DtbP8&chLX?Jwd^NC+jp4!F%4-L=_%U0VCs6l
z+^<w?b7fg>)h+JJ-a)yTyjD-YB)DA~e9`(C2NG^Ryzb&P+Fk9i8*e2Sh{7{j&1uO4
zM}@F<$FfV`qLKa<(Nd-(;Xj2m=Euge``Zp}zIr)0Vr(s;GQ;7M&AZ{HNQ)&L!sA&3
zUQyUh7k3&{nGf1$Ta)^9TKz0g{7P=FLv39<{B|a4X-~Fz6~BnGx!iJBsRKDQN^o7e
z^S&8YYXs<boHGg+o&srgsB&ZG5`2e{h&_fh%c5?3ckd?hg945tm8Y~U1;!lNV*2da
zflw=62d$oC(GBoq9#889m~L4|@vW@v)^}e|x8KK?=yz9-9n3}TB1=(E`vf3Iw?&d5
zJd4Naz8#yR)5q-{m?;)qTHb_cc*I_slox6$O#?dyaw&StO=5pC8GTf24`OpNiv6Ib
zuh}t?@IicV)=dexNC~to%n`xZF4Y<u-;(`XVC7_y>Ist-PWe7iVH0&uDv}~F)L`eO
zm4pCX&$CciLO@x98IaAR=q;ZF-`t6;?Ry!%u@fni2?c?S4HgP5LUSnbkrq|pRb`Sp
z%#QH!ljEQYW*)<Lg*fELrHj+A?kFE!r5!T6B)k4q!XK{#>G_%vt^%KLz4NYR?zj-g
z6%rlvxlf=v6=+>)c1&`B)D5RqTOzma&s>0k2(HV)nnXKmGQ>F-zv;IZZ`k}4iI6u9
zF;<fO=u^<u517`=EK+XCG&wp0TbEO}zNqRf)!x4}e7LERaorAl^w8zb=pkaY^+bjJ
zdO`sOYH-nIO(o=}jP*Wc6~at^mLP%<b0J&+a0rqTQaysLngZMN<wW!TCWMt#e(k;f
zB3kPJ<!Wr<AJ%ppx4(N;S~i`l>SBibNawoWDTO+R?n9B;c=vdVZM@UcEa0jx4+I+^
zRIT7Ij>9Onl8Esr=vE7hqjp~!`OFsx&mN~uCTQd!3-+*#yWL=5jxiaKx{T&0Y=&dl
zmTpzHHO6Ota=qX(j)g(tfyu-HDaY#*af(W#`z0v=-OSk-sq06r>$1Z_%SaTrN~{)&
ztuT5Te&)J>iCkMgvp1bIG%6>I)M>imkJ4DyXg9So3U=VjC_r4BkVp1$zW8!5-d8h)
z>i+U<V(Uei<c&x?<vBsR-7X-{d*w-?PyZ&+CfM5?)FLZvD{&h*CqfvO-mGZWIH$N}
ztlbFdz$skyJ#-B6(?S)Z)Z@~^X|5YcdHSq-);35Vf7?mYNzxMO(1Xmfw4f;_z5=S$
z%mSH(n4@4q$@U#><UsoXN2kvBnQ=!9i#uP`vciiv|JBbF_omhZce>4~j21Q&j<C5F
z^ZO+28DOED)i{l1ltjywCw$m|Ue(!D-=V$H`Rg9#>)7`8rG62Z)=D+BXNzm)y6WNy
zeKdYrCoZvq;;%E9c?h%cfyGB|1t#>MzKYci0mK_p^~gR0d_$;~@Rkr_))w-Tx}J9l
z2r(Da&hc@^XM*^*+$R#sJ}_XPY4ySaP9tw<y`Ag6xP#HlkKNUK=59WNopDgYJHjFz
zrjrS@=^YPBsYe$D7luvY&F-;<RZ=CRgEiZot&l~Fj)RX{CK7KPi}td%+iT(1iu7=e
z^*i-(*#YC#^sdv%fHPUJv@9=E#p==??7i~S(49YhX(>kH=7loKi5xpvwWWFf9XW?L
zu~jTa!7WNd8*n+8N~@`RO)!xjb(4d)LeZ!Cg4pY7)x8q<QpgJ!O+4V5mprm{_6fJc
zuP2t+jV*d4oa?giOJaT4c>$L#Y8%n76#^dh=#WMDZgdEXZDv-*H3RB21NtC#;bFs7
zm*wlzPTfZ6&mqU$1O>Xqhaf2)VM!c-x#-?GrGv&KMl}j;WLJ&m`fBnue|>~g!<FP=
ztL6ZIXiE43fe25;cXA#qoOK$j&j9aaA;x0roWCO7zLG{*@N<B_4j)?dNa@h~Ux)$k
zPdg~wo-T)U=a~pLAw*SU-GGUan<b%(!X(jJ(P!vxXcJrwWY5Hx=ZEi$7G2~{0xtcX
zP1{6l0Kcw!K-v2yp$%|VhOUCy>23Mq3_vj2Oam;1VgS;pnl-%$n?hlFB*|(80jGl>
zQ||vPEwMm?3aO{Xh3~%TwVNq~DM`~@n;jb(XO_kk^W2`X&6L(NPEE~#nK~`rz^|q}
z_F|!~zePJm*OLt5cdxudr6Cg86~hwMLbV1&oe4S$=KRo*&(i*%pA^-u<OcRn%MG3J
zVbaG)0QM}y|Jb{ob>gGPBK?MHj7HEXsNy{On4ibmrxs5!Tr@0_ki~122eq$xqDe6R
zq8<qVpE0Yle&=$TrlOoW<`|qlKQ#NQB_TEzFcM7j3h?v#D{<e6LcK6We5WCIR^A2^
z44L2GuwHb5MK<0)uZ~wu1x`t+NGJ;_sN1s6-`YI>z*JGF4jIBRCH6VxYomiQ$!8oP
zBC%?m+F^S0h*IwHn}Rc5X^D`4r+OVBx7F49d1DKb09v<ABv@VEcGZ%#mN<j#{)YCp
z<{t!Ctu)3x!;MzoKB~35i9a`#h!f2|qkcg*3UKf9^dOo0n*2QK1Ps^J-n^;~$<Pl8
zC`;}T+PFU1QzoS~JS-zN$O^#dddUt1Qp}&zgtU;|59~cA;}nP0{?7AUG09Jsn({oQ
z5%tmsCE3hdX*X3Kd><a*(Cmj}g&)4y4289;Q?%!Fu~Fz3rs$#N7C*haHxcPEmaj-^
zTI2a78|E+z55?zZ)5_z$FV~6m0<i?>^IFmA<HmZgd5`X#d$=6h8%ey{_r{C0J&#o7
z?51mVSkEj4&Ag#^;u!=VWc$^))z5`MNeh7>4i{ui9o*}s)BirJ3Eq$m=2k^syS4@v
zf!0H_z3<}TI0~9IK6fbIL5`i-k*(&{BO($}O2F!>v7ILcE2UlHu}1bhe*5gR6G3`j
z|HLSO&)VG<y-XnL3E(-s)mTV~dWPd<N4gGVmYpfn2~IM=uP1w@yLAaM&n@LMQ;7qk
zE*%qjR+o$1wPb;SbgZr}FT)<Nzk3(^%x}r41Bmn=1+ff0E1<igN5COY34Lk$??CgL
z$x6{tWf!r+H4}u;#_lb?RTsoH-`e#9Jl^izQ|hs`=p?G#E#Mr(Q~_a@{3h$ErnrUS
zTTHALwk(Vy0h&@OLjIfQfl$_5%s}+%R<Iv!v;SLzvWki%Ab#)rkd`CB5psCD<{jIt
zdA%dQ7rRMe)1dhk<IOz75Q;koih#*4&1#rG?nV^3L!)+u(G66p=C`g|LlVl~diCTd
z1i*Z3t5edf{mVXGK?`v{Yr8O*Jqdri)g0Kk{^}iU_ch;A=H)cOpkf=EMGMgB0Od^V
z48?S%sn~giO-AfqQ%409nm39!z@qyxI68EL)_3SADafQq=izpoNME`KH#*#qy51PW
zQV5Iqt5tIzjEXswPeR9_q(E3AaSjnGN`sr6$b&5A$a3zuZ>B+P{$}dPp65@_yn9lx
ztOXD=;8EHQV8%|j|5iGK1l`|X^D$*?04C3iRBu%S_iHR`;a>|$A-i1}1uy6dk=#b;
zOtzI74{9km6LJbb*qVGV){5jG5{eC9!Yl_LOzo$5uYZ9XkL{x?B;FPo?^gGAB$nb8
zk$4~U``H~lH<M++t<@uXsIhsFrL=0t&IWFnr`22b!*=sx@WByip8_ztdT;CuLg=LB
zs}4fn&WAN-vl`;BVW!UGuvP(UPaX|(Q0#J4iZNfW4|%f^SG;%*wi0(jL=8sH>}bhZ
z$raBNR;sXC+H6=G-?sX;e<?W+hVXAZFfHi^GHQj#DdCGiLJCGLXT?#U3tzat7NABu
zIA62#tX9-7LZt(F;^pFOv9@{h&R)jYYY$s^=k*5<tg*AQAu%dWa)_<mAWdGK^VSbG
z-}=V^RywEc2q$p$t~Xvv4=rSKs{IX`W}K5vy<;=%3IFw8SQTTCTvhgD-lIH8jMelK
zODj@wxGm)Afc3R*FOtRe-qX%NGADq#+Hw}szuU?_(po&6&Kq~+9A?F9EmHMhHgRA-
zc6KX?kU68hi9bD%DwMSoURmK%xb+nxX>yPYMxJb5sGg0+Nefhyq|$<RM(aXBAIM&|
zK~2N+W9u&tghVI0v-&*6fF}}q+av|ukv;d?l7dqS7XBvhT0I(*$%ZLN)AR>MO2c`W
z8%@N`3YsY8n*kv5%)E-N8ZHj_M-#$Y>E>qjMDN(ml@+g>1Q*O{iQs~{ZPpctkCgAj
zT8rU%TO7^yBMb=#>T|>H*2X?d(Q`4`6EOI=yB}ECe_fRCe)|iA$DaOfEs_>F)lg!!
z8Q;opEwo3$ld+I9Zm)(r+-}m5&pkdIO=exd9oBsMusQ=Gt)hBtNLG81Zi#};#cJtn
zV*8N1b@1W4cS{98G0LY~b05}O0U3m+l(rX`8cB4QyFWsr4ygkBy7R7WMata&>WJNr
z3qihisXAzBXmMMr2;Ny-Hg^;3%im;|#SfW|wfR%ILTde&CKVXvIzGnwdxcaT541YB
zwFi7!ihXCWu>L55V;q`+Ueu54chz^FI_QPHIqSr;28M@I=|BA2zc!QBITw<(-VT!w
z=#27;N%mV|z8n>l;3b;zX+vW<a6~bp=L3_)3knI(-T1lvFUK<ErAK`43#jrYW^<46
zr<<L=ockWq-Vo4OJ{Sp)QpI<<eH0O}1?0IRbcuB26@(;KIUnc^+j8G?cx~U=;JHXY
zWH#J^aL<q#)8RV`y0cRh8;y{ECcv8m3A{Ct;Fj<ZM#v3{&a*~Y3K4wns3P5FU@ioK
z1{CW*0(}Rev$0cT)!>p|!z!tc)DuHrmV935<sBD}8yC`>4>0rZGIh6-U6jF&#?e65
zIuc*SqyciQwplD|blkIwicsC;xb3sV!?ZUk(gvgk0)vIitc;ObLG}{CZ!rO;L2i>3
z4({!9E05Su;1w^cS19zL$icYxmydN4rRA@$7$+!%7?@@z+gju)khfPl=2M@(t3X0d
zWumYu=)Vc18k--67X_UHsBUZ_37Qa^oP<S=hI{&P1x*G!W$biv-9|(MCvoyw4qrFi
znzfCS!?=E)?9<mdR&&EIsdP&ljW0iE=wAX-RBQ*%K_B{nyh`J3OUupJ@VX)&RE`8}
zuqistA#LI~|McWmBfsC8!g0I*j{O?At2Y+0w-(T4+N`#U<M4KS?NL}d+gc%ljwx^3
z_*S?B-y6Va5nM-~3RP<z?iIib@6n-E(4+P39do!hHn;$$xHZ&qy+bx>VE+Jtu<nY>
zsqEhQ+C~Tn4p?nv*GD+|BVABg_9cj<R?>|xI9VW43+ErxOvIKeK*#FK{75%0P;l@%
zc+2a@S=t?JB93+BajVeUyC1F=bkKGicA|+L3)A>1xOEdj>HAXqPs+IAT+7uFgf!&b
z;Ul$F?~cuFUG)~#FP1voKrsAJY`4`c5wOlUp4%BgfAfLzFFu&pfqNBM`9u{$*?HBG
zW4m6bm=(vQTe_9;YmEHvaxvHY%cSyxm!+;QN#Zo;$|9WF47MO*o55EQ3NLYynrj3u
z&|YvGRerd72h+UR9{ag;m`9xks_5PtsJ2N{-#E<Uo?#GT%Qwj(zSMX!c4rw#Ms$>A
zA!%hw{G_@&%uF?|szY(xBg(<)$A`D=R*(Ks0-~!J)gNvY=K!tD=I03hi*YjOb8B-o
zS%Q|h$^mO}sgP%K(59xFnP0WqkER{+dh2CNdZI!e%I`ZoLEYQ!sqy?o9I+a-sWyGS
znS8j>b#|?_;8q)!+!S|s8ebBrPQxKU!Qovh?|_p-W+C4mdev~A=C!U^GxUdhZL!s^
zj$*^SKcE|=tnnyoj-C`_OF<S%FwenyU0yVsn8pOHxeKg1#mymS`5_J3=fPtu4IlvT
ze0w$*$%^*rS2fp>S=kA+<|@gXGNnc993N!<#UXuVBD7cfto|ECjpd5XE3G#3XK?Kg
z0r#zW{~*F{lzRswQk4xHX+75N0<j>q*T=W-t$VfhtmK8{a)@A;`MHEHW<U^~KycA!
zG3g#Jf3N3N#o}Po`~y}u%?=NSS70J!WEun6WiGm9{2(4EB)HLg!QKIxX(zW}MQ$x%
zeh*6le%Y?(BV<h4uqXc35#eKzAt8xaTud%*R3{>ck~989*p;o4O@CcTi|Uv)Z4$SS
z6HfX>4CfjveBs5BcT{pyu6J%ql~fa4rTBWvdJbFhHae|ozREqb*j`E*6L<Zp$b*;V
zA%$8co9JvLt=Tno4hXXE$xg_^Hw(|tFa6CG($+a0d}sHX?+ts&$jYa+@xeM>FcjM9
z;=BkBap(81!6EVOYmyH_4Shk0(zwwwoCoOm4KDtT@&Ob0$Wb%aBj{+=;l&={CVnqM
zF;eb?#|D18bE>zwj-wYb)ULde<k|EFkqnJ?{-o<(I0XZGiFfaYlT+^&IKNu=@Kx`I
zYlURDrW}pDDfl2`Z(F@xBD_xxGcz81y|TMm?%w2Xnb!S@d<N)GwZdVl+)GcQf!_OY
z?>@MpQ4n@1@W6GyM+({;c;rb))BxvBF2S~5qa^*;x7Bx0&S5~h`-SnNBfJrp^}(mN
zjJb<0#!(&F_lC;j{k=aYy`Y$GLOekqDa?;|CwVzac83A%ko&EaJ1(^X!n}Mg94CK2
zNWoCnemH~Qiz9RC+SBjw5{H^T5@>Hx9oE<pigC`D;6c1TWy0(j)qeV8EC>u_Pu#7B
zRoK>w?k+dxg9UCo=&JMXo892HK3Fg1-eBGq;UmPAhXC0{d%=??r5xd>pZSH1VHsKE
zFt(!S8@WS4Mr4oXb=sE|+mS_yn~nLbWm@BdeCu^32?as-C-Qt_&}m78%HUz!bIS{*
z+vtzBx8jeCpKfui0ckP30j=CO#}0*6z%5@s2sg0ZkRW}ekd`gBAKV>3xnlJ0sYTlH
z;aG)2Da_wt;(mzkn6%8>nkq7hk<3JbC73DRY`#HS#Ye?L-}5vS6Fwvc4b*dM#uV#@
z)9BwQZyhLa9W3uM@?nzQhh@M6HDJOH(#!&eq;W0WGZ-n0iV)QMpxBlV2a$Jx^JUwn
z<b8%@kN2g{U#$$;yj8+dIe6WTfwIpSPc#8>f8DB8u4aOw;DmxFY3s|Uv9FXv3b#(*
ze^LW{%a)NC7=u6hP&CE+y_}>}RhR$?vH=R04p;AuTxxfk@KIg_3W1GVzJf`RaBe_(
zOREdtIIzCB1wGzB1ouem&<9-T1y?DS$u{k`dgia!+X}cO1sgy+ulmd^&bfQYqdvM-
z#Y1@Lk3?g@?P{>2(gie>Scc$k_FE%_uMIo~FA$mngd)?ZDc=jz?H(;-9uq<?dpD{+
zK+zA(y^Xyb1KzMLh^=>d56!;UF%h@D!sPwo;!Z;skkipH_zu`!^`FX9Pa=?>D}z~-
z8n+va!5NbQac;pr4%!p<tdEPqjRP^TXQIEJdupC>jeto^TDgKFI(hp<1e@Rbvjm*F
zjJN!4>xJcK`a6I#?^e4fVraZK48I5YxRN+5gwMf$J*>seIWIQYUOxyYr`<3f$16H5
zrqgyc+PLSp1Ad{ZLdZ?o?$`1m_1bVRAla_ND9IHHYW1~Fi&Hr2Vfr2%yB7xbs&fRT
zL!(}7oovpTbw{WKzd{h#ei>&#&j)Uivke`cI{CQQZyyfjL43mrqnESXdjPLqDdsU)
zS=8__{|YwsDkWM-waRlP-fQW;_G?ew4kTh>K5#=QhQ&2az;XUd(9GizuILMw5R_@2
zteMLP-WDeWsq15Jm@0C5k=!995X6{Vf;;a3b=LteJGTorJBn^z9?a9xJn!C+tK2b}
zc^}{Q2ymYVe2)~dsWPqNh`cfmE$x^cI#50<L0?W(EK%}#xupX_lhpe%+u>xAEk8_W
zXC+Io%Uo#1KztZao6I1PHg25Q8O3v{8`t8=;WT$`zj@JmK6<bDqBL*34PKvY$pi`7
zJ#f*K?lM#$AIu@2;k>ZN{i`p8aP{rfdqU9|)jx3SkM<DG9g>N-jJWudzx9y-&p)Gl
z4}hXh{r{kTYo+<WjjMXcQN1nen)?}B9*VN&O-=>0rtP?>eC6r5pDjS&i5{;A^a1_#
zv@8CPzM-(QWRCgT#5pA@zcmK|Z9<X4ofP?_gV#uZwG07QrK$i7vzs~6fAZ1j3CH{x
zx32TQw;cgv@>AA3c3^1g`}^BSH-^l&K&?+@M~dmVb)Nk(GXslIT+NsF*NK00EPbD@
zE(3}9h>>daO_D!n5KJsjRCN@cap8}r=^}_Qwye)B{x#iTVrIt*1zY>bKL>mQ+Ntu(
zw=`X5b2N8tC*5G)1er5HsCdKvc<l9wQVuv*<)2HXe0XvMg!*2F|BVNTh!@Dd5ly_l
zagOefY1tGKVG0szu3Y*<x;n1`(~60DOnf0URNp4bD@Eex&taJij`Ls&x&3dOpw@DG
zp^R&Pz|$QB<Z?1w*h~2bwU|K!Y`y0Nk-FYbwxA3%W6bYuNF8_B{6Pzl9toHzGg*8%
z{Ex-mGY`dy&SFIaehi)ONg|Fg8cG%5j@JgJSC_$3pvGw*7A@Xse=l7$;@#4(_OZrO
z;_mc2Y>viW6lPWyKL+{^9wc!}SHZ}(eBk6iRC6}!EX_48AlI)GImsIf$_9wqRo2@;
zcg2kJ#pd|q+%89F@`#@^)1@a+mr{U9^~d_Yk6L~U;1DF2ozjo7Kv<GzyB)mfi%aGY
zPLR>{P>q1HN^FS3oKIgWh-!$|uh58Z{-wIo`2b#CwtE}-YYBv_GXQ<HZ$1&d@SWd)
zf9Dw@8~7xrqU_El-{H1NC8DmkUwY$67s;usR^oELMD3i7X@tE^q}^a#(k~f$No8_k
zy>BT`MPb@kts-X@*)UmQJl$CPC(CgH$uEF%i5GW%a?Pm|(JqQHcAy%ILb@m+N=~{<
zHj{AzsVVzd+mSO8AIl6|pYOeEaC=9QuXy2=LO+S!;ST?TfkMqG%c(8?>ECd+Kw?A;
zlxt$3bm{Vca0?wL2!D>~z1t5G6A=r=-<Wmo)zL#gD~uu{p(m>ZYSuH9j;zl?S4nv4
zOH&^_4-&S^b%UPm|AA=&a|zopyaLE}tN+BWWdjHdD?gndTv>iC<F6m1#<zezn3-~0
zUK@K;mL*C=R?7t}NqoefN3_dyiR6Nri8AY#2!rLd;52)VAMXHoXJB|ma6Se420r{b
zzyOu5g1x*F?+*e|-qYl4oSGV8Iu&G7%z9ps#EH@b!%bc9w7Qc`d85a7Dn6oFQS16(
z(D|v~09{e)B=|rQTr}i=3ivqz5Z>{=_+Nkh&@iQ@VTtBe$~otd`I!w4Unsww{0=@?
zb6uHJGAv%G>H=-uQ-<vaC~@}R;P)hl8g^D&>}i-TxJ?#U$%kN&hIW<_zwyX-z8g53
zA1p4$r1s<|w|^3%E5l2C{nSa?M)Ago%-Nu`oWm)<YLtm+{FV}@N}x-m^27~g_SE-<
z4{3hUknA+mcXXX8SvmRJEC71kJPDxdvM@P7+JDIR=`<yrgaz5DOVO;>d6}ev`#U|R
zfHJH&J+QwKEEGOPr_658HpKno4FJ`KLUhK&vzf9ZMi|uN-k;L(9ppq@8~HCOD%arj
zrmEZu>yWK@7S+s2r@>i`6J6C{S)VAkR1G8s(#V%c_KdAKKk=}?nq{``c~|+)|2I36
zZ%+oatd?=OEc3im`F$z*YJh0Eh(9cj`LU9TNRW-deJsU9<i&9n&_!UFp2Y87h=WOI
z$<m}ln#5<i2$Kl(Z&C-+ruy#On2(Ea^ZsEAB>=fFA-y1``U|N-x>k_;pQbNy>taX<
zr59cC5%QBY3brKjt`PawiHoGZ4g+DIxqdPtXM8p&ictuYRAtgwS;^-LFODJ5U8Jvt
zhVNenBb^`MGJE0ZQ$M&2lwV5{w(&}p_EJkhE$K3n@*F3Sq$Iv@<+0$&Z}rgBMggrP
zhsxgsu<$aVzsk@%i@)9D3<cSfm2!xkVIcjbD@#K`HnR6eNuO_)c3x_}NMcVp0&-EK
ziGKSqY^=pLXy|Hi*I#r$r$IzKPB2>aD(7f_qdq04O)+4!GMcYk{)wKj#S>ujyHT5h
zE!^0XU!y4vOhU<LPLX<HE2+*pg$dP~4o*23Pl=vW_zh0ksd~qGJ%!`vOZ|P!>ZqLA
z)g5C9_GKmN!PVcM0#+270cb}1<+r83_-c&dt80`{OWkU$H{ZKDZn`8u6^kl*W;ma@
zG)8WIuP(EFxZ3&M9r@qzQOHHW(W{-p-|hi8S|;F#={%|0PkVAhx3h_-aX07WP-uw~
zr#xWl7U~u?4Y@y!o<i01W>yaiqv(E@ZV)GV*fPO)sU46VX`Bh5n30$ZlYDCMn(U8d
z*yI98^Ut`#^%H5tVke&O^)td>EPrktA9!~4GTC!V18q`Qz(#0>&q1{@#H*=7_2P`Z
zS%V!U>=2eX?I|9xuW7{B-*^}(ot+f#VE_+iHuOvea^+Q<7)=@aIm6XpaX`wbI9O0C
z@n33Y2Uzf6|6}@JVw*0aThAkjquJr>r=<UQIUlKxp-M;Ybf@$yl$C0Q=a@BAI6^<e
ze4Tk>m?aW@P*Xj{+F6%n&I?<)lBil`j!GJ{oZ3<Ri9b;1rLdNkr(=a0Ueom+1>mFU
z61$iU7un5=KFv4}e1M^Xn=r~OJNk#@{%wW<Yl<l_^}oXW6Fp(~PpWLC2?eM%@(ww=
z=;c=feaw=s!Yq?3ae391rHUU|9J3@{cn33^MmUPA&7qAilRkf$y!dI92UVjn__}A=
z`K^ucZ^S+)FjA<YUslnNAG^0%U4xpc7I4Yd&XPzeZf>0}x1YmUr}|aZlE3Z!?H$70
zY5*J4b*t|;)8?$3?`VF1mrbIyJGqW)q~1vkk6oCN08rMqmu=J*X7s|`?*+WxsQ`?b
zOsfU5y+^DLMpiLp(c=X?l5@odYUXS@NMZ}NGq#Ms#$uq;4UsIm^X}=`>+QXkhlWsm
zbNN8)u-Uu03w}&y7~`7;_}6zxF$GINlhUuZfCL)B;}$ILO8=oB!!Dk9?i<7_9eGne
ztt5LzO``p!>{V$$a?2bNBm8T)@2q@C<u2SI<sKJxJu<aL$oE_35na8^g00aL5_am0
zM(xHAZ}nq7p1$+=0xh+FI(?l3-EZSPX3!n1bLlWiad`+oyLT3`V1WPFwnQ@#*P*%o
zo8|_%p_UJXPj4SMC;DT$x&kCGX0(*q78wQBF7B&dZrnU)xt;P{PJu}+KRvXZ!x)0Q
z-Z;z=B^Ni73nXVGLW>78dwpl6M*S}J!Cyr}${8LsJfAUgjUpeCUtCpUW&A=%x-uO9
zODoV(^1b5OCxvt<uN$MhLL}`hUng;~Pu832JGHT4Y*i#_)PHd)a1{->C*qfB$bUJ$
zbc&n?F6O{CQG7ApuYB~l;;;!zOqC@<A8j^1(T9CJQHk5G5CIs_#TFV|L&ZA-GQUrE
zU!5}>^tjPr_C@1|2RiR=|Awqz9_D|21$s*on`+ptIRfHhWAzr@<JJ`e+~2926Q;S2
zj~Pt}5CwH|YyM>~{%cs@#R(KcdA9y7<NdGUk>0NmPd-L~v;hroen!;6Cz0OF#x-Jw
zu};RL>!;QHUx4~YJS7BmM^2f)dPB=M_9mF=E(c)zfk?uzJ8P-;$^GyKHhc2{^!xL&
zKWO~R{{2s{@=vf<y^2lY%)dcFVHu65G$;a;x8Zr0R6d3m)Kk8tuA==(4(tCXSPTm-
zV4JGZdr<14To`V-Qu`d_1Ni&qaIC$fFTJ@<6Fd8M<zN2kk_Ls^T93E?_iO$>_VTHb
zdegG|thKQWP=~*Q@)4>4HYb7D&fF)#-b0B#Q|vo7udR`FM;ko)c%9+Di2~3xi8vTX
zFXPQB@M0J(8y`eD5e*<f;!H!?8S3ddC)t5UM`YpYb4;gBa_*e{@1jBN)Z<NNp!VlM
z-S^^?$#&q=5el5;;~+|dCj{iu+ZyrF*Pfj4O?MToNQ%9-Ig{m~!uc<0_)U&}h9Ljk
zv#9{NN=C@oZ<z4!y`}Wgtx1}W1x*q-OX9Y@6W4_-CD({)#yauQNZYCyQ#F;(4}NO#
z-<*m6^4?v#(#_)A-RrCZA6Avv4A$>8asz?=F)fw6LsmgH!kh^B(@?#oQmth3=zjo<
C<ZwCw

literal 0
HcmV?d00001

diff --git a/docs/images/prometheus-dashboard1.png b/docs/images/prometheus-dashboard1.png
new file mode 100644
index 0000000000000000000000000000000000000000..86c76cbf272652bbbfea73cfe75e248a15692f9c
GIT binary patch
literal 387285
zcmbTd1yozXwm%Go;!cZOpg_@JMT0|uQlzE0dnp8$K(OKzZ;P~8fnvqo0>LRzph&Tx
z!QGv}m)`sS@4a>3THjjto^=j0nVCJZXJ*gdzdb~2YpM_v&=Fu@U=XXRD!s<Qz(-<W
zJgmpVL8t8b$vwirAbRVdsHm-`sK}!2?qcWQWQ&2J8l9|<`$ngqF3b31V&d-y<cSo1
zD&MKO0JV4zUO#+=uf~!SmPqzycQZG{k@{8X=8q__*Fzh=C{sghs5x)Z)16%Y54p!2
zPrmK6xi16_&s`l4$p*CuHwk0BJ$GaOX!3?I803~C!VgN50I(;k`4N!GJ^0#=ZQ$xF
zgwG=?N+3tOeb0a3EC+t7pZTc%PU6m7ITDz7gdsP^GQ2bh@g)<(40c&k`yP%#_88VP
zp%DFGB-}us04oeq_rRX(i2vcRHZm_%65q`!3W1@W=iW5Niy^WvpJmuR7~(A=BfrbK
z9@CBSR#JhXozne^jK|97*WjT3(u*i?P8+rr4e8<VWv|`j;;uarV#B>AqDrVj{uLp4
z|C6S<t$TZiyN1=Zfk=OYuIG<mupu8^b<r&h^e4Qr;O?GB#%|ImmjU)EkCMG`G4k=&
z$fI8bOhj>7cU@!Rbo2W=t3K&|P8J#Mk(c+z|9QdFSS&#kzD<!=08UJ+fGBEwo17!=
zOun&O@nm2vzs`VN@#Trh);II;3f$uirIdj?`kdgr>I8>Jgp?lv1#(V?PhNb8Fu=01
zH`Mh1{=)ucRU)JGcedm{E@VTPxF!n;soreg2cdjRH*QolXhyqjnkpxXvaA!AFdUzJ
z;M$_lcdp~olHVX*?$-;3YPLj;D7t}gARfN%db~7s6y=Jp_w|$T4!40OapjNnC1ZU<
z51W<=78tC23}3<C@n^lkqb?ki$>QRQ)zI#ZrndL!>*ZeQNDY13jspnBU#+wa_D>{M
zDw{u>KTLIhLgf1XkqsuM>uW(p;g7f~-G{WKA3B)H@PnNoW`|2f7?0%dP6SH)CEx$*
z7|rdVm005H_GO`1?OZ(WFhp9qs4d~!DBT|phsWWr425e5-W^;4&Uv~*UVi?NMCxnv
zj>LgNF&fZ~XGJqgBG!%NDhncz3AOO(X?4ra0kv&YW>L)IC*V!tGln5_l-S1(av5+X
zzo7(l`Gnfa9y$|){gyf!Wot?JR*2@v#FzJflM<4KWl6IP>h+Wr5u8XNf(Dn;8*;|j
zS`uF!<GGW~oZoz*JEvpn(tA{QS1&VQARMtX#Kd&9AbXR(ePYRc)yh$iCl!|2rD;W7
znP(tvVZ~XAQ~FS<puMYPr+;ai?wCr9MvJ7D?K)Dne4sG*qfn|*Du1fhK$SvAtwK+)
z^@e(Zy0T%X0taCrBlgSqw2j@Lo?dQV59N-^Ufl(>+7bmSlJ)jfn8;IN$k-<Sx*l-j
z!w^4ygmK+ck<mln2u{IrEsf($rQ(t>IbvxK!q;dVCwjCfXhC@5_AslR6#Kol09AJ|
zcH#q$E^fkQ$<&Zy3yw707xEGYB$L5s7Q)jw-tSwNSc-5}I@DaLOdf!jBpV6!wKyU8
ze(h4f6Ik%@a{!**7=p^BWVqdrkDfnB)P6z`t@t|8^9dn2o4XB%5HpvG9_vn0nJV$I
zusgOyw29no65^-gcS7G#e<i`sAGULQi=IgmoIN*u`{Zk|rb5l{2emY&!TicRqwhRP
zjUuy@fH_m6B&Y1NF_<qItu5@*DA(hvs%Us04|ac_b}A(*Y5!3bV8G@-qF+T)N`Dhf
z=_Wbcow-C1-%jbqWEMQqo4T}fWC~#nq=SEu?S>u#vFSRZmgElEUGXUK48w}UUMoDb
z#9bCxCYn>v4D(T9O_Hw#_;s|VDg5FXX5j}oKiTILB}YUjM7KVn=nr0%JLc?3Z2Ye9
zn#+OFfpiOdi=g<^L}5X>-H-JjR0SzNIP`d4m1rZ%yiN8#%nH{9R#VM<*j0}Qob-?P
z5B@~-$E^;oYP!oRr&}o=6+Y3f<~n(r{5jyW@Mq}fhVAX`^=+B$l|Rbc9)EcLkQQa@
z2Nm7D|Djk{SY7P!M#78Bi?c4;Fa0{@d7j~T$lKyth1u6e#CwnSFw3+;%a=<#Mwc9a
zjTVg+jW^~Vz4%n>kl#O+QEFIfnB%K@Qf=2jWjJUQQ`Yn6Yng7om(oswUWKSBwAMS;
zJL{ZcZ+@1#HhU-0v(!t$>r#@?vwkaM%=cyACY7gXrb@QfqNc3k!36vE?54YCjn|;p
z#diJn`R3MU(+>NV#(2q?RKZk7JIy2!30rDatXra6=#g945#A(TM^q2nd0e9qvh_|C
z#S-v7@XK8wYUi4nI1MKUM*@e3Xq$MS9vN{Su|ix(=PU%Wo|b;?^L<fu;b(OcuF8U-
zLfmc~GS-d;Ec{Mz`<bX9iC79vg|Lk69Jo^eU#MTy5bQqpeekn0odvg$DcG;`^r22d
zzty@B&zHh4(ss}7$nD%~%IwPQQ0t=W(d+E%H$w-;+PpA6AwE505#v*XuSW4T84iYy
zzI`8@*1+twMvh*?+pTqRUe#v`JAOMGqSvAf=~n4R>Ck!+gdE}l;vK@#TS>~Lg`p+R
z8+=~W8rk~0ZQ!mNYkO&n#eI77_r9v@soNtdJ*frHT*<184;k+=nIwfX@-oyjb~4T5
zsu_|c-}MxE<h3<I8dsa0e43<;>`$jh+4JaC;BIw3YfXAhW*&J>;Y~wsj;_$X{Uv_a
z#nr&U(0##S>l~GuK6@>oR`G_+2tQE0!n1<dOsv(b)w(qml6?WV#J>4;B(Z(cF*V-s
z`{LU{cA#dUL|_XlE1`;(jix5xmvxXwQ2D*yeLRMpoL_rNaJ*cNoU?`3QXWeTOW^PL
zZ}z-WdZLb`JGzzXl_Hm}htPT;l&Xabn-HIri_n4i555MGDf2bUFAy(Jsc0$Z9Gm}h
zhz>S@Rme)YTO(dDvafjgH1>>6%5ir~^_`9X>h({RSLd(BihA8P8>?3I;##P|kNM)u
z6EFoc(sTtctie`<RzZwf49rq(?{3E%N8N;1hI__W3cC;DgHp*dDtVWkbHTZwDhV}V
zF1})ptpIn`<AK$9{5+0dUtPI+1e8CICBAr}@nSw{R!Yzl`87Jzfyp7?L5ySO<yX<I
zPMfa&rcVhPqZyr<?oTrlvohMGP?Ta3#zT8UOEykFH<zn?9esgU^0$9(`QO7W@|O$?
zg4PFqZ5ZAemQ*)~z3(KjY>47B0{Ue#Cbdf31Zch-9?p0_w>pRNedoL7tI{orWH{RL
z|8(ncwMT)gR{TA$y}?35K0)Mlvtq<gj($1<ujQOJWoMpy`Mb)e--><|xx5>jP#mu<
zj4rHu*^u1^xvoK0BD3w5gdxIT?Y|CXh@C9+PL`I{B+by)q;DAfG88EEaK4-~J$ZWK
zzK+sEzOJrbt+?txp{J$+rnM{`kuJ+lq`dq5LfwV`)VR@?yiK*X$g2v0^ooIhJ{sgt
zY5A=GImoEf*!`$)R95d!yi&x&VMl1hHa&$hH70e@fV|Oa>cw7i4-az%UBeIOXC7WN
z+wjSkh8{VctyU*S14dV~@dHHz5nd@fDHS)hW{r1#x~_ljh@aC_xj^7a@S}l(ZyGnE
z^e+61w{9_S2g}Nqjdy;OmGIP)H#`PIo24CYnzCU*KV~c&^ZffZGLe~#ElBUo@}nQc
zGvHdNA)gUX#op|v`a-bF&xMEp&71mt`(2<c2FXuS*rfz&gC3WSRFwHxruKlk#9Wl2
zfSJEUal2sZY=Uq{itaVtY(lK`*xcq6<Whgb+=uCzl#$oVgX!v(&ntxSq!~|TMiEaO
zwq?F}9lM=;UT-Pn$Y}QVyWN@;PO=})CYFM3GwjSopWJOEm>ssduI66!T&riLZX1D&
zNbc8<5X*Walg)!>sr0k{vvi2QT4p!}WNr0NVu^i)Te)d7Q$Q=~IWo>zY~0y<4!P(T
zD0OkZBc<$feK6dr(x~rkz7yDkm52KWjzG1+yJ}XZyAmV$5|GUE0l%QP$I-j}g~JcE
z9JF|{zQ~mL?qA=&)i=;b#6$xn&0m<E`=s9Gp!y>8>nj4Ugf~Z0vhbxdEAlIF7kGUg
z54|_c_k*5Y^q$K=QZLHy0}Qj}7t2W(n1=&i-d&akZF7zl4vctb)5Dblo5T{u1Xz||
zG=-{Q5{ZfkQwEDkVSdYRufc*fyyD<K2nh{&dQcIHcgtA{1Co5;#E=TbP|YBedj!gJ
z3K=4>;@*9%av8=F+}uPgmi$v_-Xyuc=#WEclb#0RNQ6;L9y~Jk{{3AX7FKpcmxT+~
z?>FCIq1<732SmmhkBiDq9$%V$z8H6Lziq?)fH&81fr4XzD-yJ$Wv}qirpE_c12sDh
z4GeB{91jB<lMdq{I);h<WH9OfJN_K=DF)U*(jQ=8L^@z#|5q7Jbolp4M1Oy2{uyF@
zjKIJ}|Dr&DkZ%wEUuk^gH?02`e^`&s!;sfeR8vETI@a#Cw$2`JT|8+-C`ix=_^zsk
z9vB!@?0-K@wbxG$(e+O|yfN@J(0D0n?E>bvv~jVr<%fV>|JH*6f=HsHU|Ua176{nM
z*+UW{&H9fLlIZx~WFRZcKZ<xdO0ybhXtOA~xZARb@(b__u*wjyu&{vKZR{jpD?R@&
za`Z20*0-LXu985YkB<+(k1)TByFE})LP7#4AOsW=;zO6<^YC@{w1n_Ed$9eplK)qa
zlC6ieyMwEzgNrlE-+C>rT)aG`Sy}%!^xw}v`)Lbt_@9=XJ^pK0=m7%%<^Tox1%Uru
zH<}dmH&s&G0b=W9sN?`f^9<dFjG&095a=HS|0nBzn*3j+2LD4U^h{Xbf0O>NtbZld
z^{{nUbOECq^_2Oa3HvYN|DE|?gdpJGvHve#{FBlDNJVp6h5!Wo?^%-}kT5L&ik?UY
z2PLgH=n%ck{yq;7=s!>Y8KUD@;5y-qlRgX#ISe%=`8N>E-Ar8AAEnvIJ};D$BcdlF
zq%{V-2Y&UcD#xNPe)GpPlzP{6s_lbmmCr6QVRNokmo9JAH-pLYDAl7u;i>3@FX<W3
zeTk;j!Pfg!W-*C=8zEnzFE54eVFw~`_H`RpmIwdYt4p5tTmkl@(SePe4D&yE53!$g
z>nQ(cv}Et;@KmGpu|Qz%|FHWM$YPSHV7&k2l_N&?yaY2#^znZ*ZZb^#qc^xp-@?h$
z#2r4SgM6#gMI5Sc_8Jy%Z&z)&DgXUS-+n=N$nndDa{fDOY>t;1n;e=Mt7!vDa@haw
zTfqN-0;yrTp`H&`#y)fxv+Pv5*a^d5I5Fjs6k+`EZ?mhG3teAb@pxG%7#|x??8cF`
zo&J8Of-gs$JM`bKEJ`l!FXPF-iBiAsC1W|=y*z?T!j}90-9e(u8{wiS!Klx7;?>KC
z*u5yB1wi+w=zo7T)c$2xUHM6Ip2K@=4y~-+KsDHsMutf7!xT+rihqA1i;{!UuoA_@
zIjeR=`*$V(NKR0AE+3X!$-g~B3vNypz`~or2fDW@>KNn;Bhh#V4U2(}P2q3;6Mntp
zU;&s7;U&Mvo8XiapUv(=v1&oiM&CyN+ml!;`IlwQIzO=9;bW66YrF&@|C0_G$^M<d
zdx=SMQQ`M)YT~o_l$@d`W_42kz9f3jr7Wia<5D)e0ViXVE&Ycpf${IKGCj)Jz*Z07
zsPlCCn-g&{i7)@jCY&Wfk8O6iX);Mv@cj{7({&{XRTq7cyQ}=~Z|G_~B3hwtl+ZqP
z!@lg~kkS12L8DkQm-aHB#=b1b0Qe8MX7zqu!|ylWvlDXWI8WyI%b#Am0&ruiqaLGo
zf`mL%`sM+95p8!7^w+cW`y1Io-g(c1kSFVx_Fo-18pb{hwj}ErEYvw(G*sX01`VB+
z`&7&i6gX@rLpp98c1JW?(?8z!vB&k^Fb6Iz_?>_+&cqfQwPaBfRZhLM_O2&GV%awc
z^ZRW{zJ^$1rzB-m^~bm~#eZ9H8Iixo#KLJzjfCwcy#1rA?<I9US7n$`u8em?_FDSB
zGiVG8UVgu}<!}7e_qM-qybCOQ0CN74pZX%Gq2P;8Bz$AP^<KWOmcrOQy2o^cvHt8q
zk9a_lluq-oNTC?0+dDMNcT)QHr?p`GuSL8QNltF_J7M7ekF0(h_`td^-fR4&aNIp!
z)73?}^oRc|U*vW;ER-S3s_DkDVm;vydDX`lP7}5Pz-9tCV$AardQfP#EWSVaw3jf8
zv_ztU9-KB2x7VN{R_A5^g77HtC2Sd$0_kyl2jzOTw-7KAfR@wN7vXpnDi?h7?@G$Y
zrZwm@@7l3Q++AAFQqqI&uIA&!=6`SQ8E@mjZ;xXT-**byAjZx!LyZ1EI~-mOmZ?+L
zb<mc_B(bS9kM#PlLuNobr8Ui0lohEbzl0Ogy=NWhl~+G$$sA=d!>_LC#SptSO}-nM
zQ+&0*72*a~3bO;<58(H0HylT-SA`CDtLth?BNO9>c3<*eT`l!^bVrfz4+7gfKXGWe
zdyGgo0M)IJX=MXpQfsR^w}JO}7x0#S>1MGXL}h@Z!{sh?Z|62i^Hma<ob%xoZ%!-&
zF6Mol$G)rWy9DtZXw<DU+S+I<wf_967xV5(d!6X^$}8v9KDPN^!b7`MCU4~z0|hRh
z<;RL{t|Z8Mn+IOyr(0gr&dr_t+M_bGAs3tX9M>pj)rBoaGW$&vGl8ZHWp@v|<`_JF
zy*jENN;;e}4>}7F8a}v3E#5zCRG%e;5qMO56?e-ucI|j*8cD)fu-T+-JhtRek{Wyx
z=nnscI)1EY&;hR56FnPyx%Cj(c9{!xT?%cZX}#Fq+cDBfEiP(4MfasSLFW4B#m0Ju
zhi1d?PC|_%M|f1AWzwy&AHra@in}63dFf*e&@DUYt|@3(^0<i2SZ}#N+u`p4BXhf?
zcyUFYEtPfuwn5T+b94PGwETIpYQWFu%de3H_(Z-AQ7t$7Edkq%-g6zJE=iBogD<pC
zi3Jy=P*)>C<qcSMnP-V_-~X%Jt|fS2$O?0{7~<+p&s6~Nd`B)#nR%RXF<FUZgmFC!
zxPc!u3T6jn?YGrM9R=R`X0&XM@of8ctYoYlm0S0b6!%FfOvKYYn~f}G_bhwX`R9DW
zT1;$d5@8%m-Gkr%ZLiV17hxsZ4`MpB0z&pS91rx&ZIhK$Cl(^}l$|2`KscXeuWVv(
zMh1Z`g4yw0Tq7K&VlTRF=#zPQu2n{|q?#HcTlad@5~T0mj?QRR-I9GQYw9%$ypJll
zK9}a=Q*ZKe$Q2bmS&n3GPIqaZiOh;8&7{te_SxP_G4tDk=(aB6={m#r&cAC;g;&($
zlNp2IUFT}_W25}#VhO*I^$2GVm$oCjRxjRf3<&22F!Gsu@2@jU0MHYcm~NFRXxFU|
zL(2)h8{&7G)uuiuMRYAP?w7Zo8)f&b8$0b!nnCx(TlDVfJNUh@5$+{?^K_1-ul@+$
zU%>CZfUv_5YU6O~{h;gdY}h7c`5<3|iSCtN^Q)w@+_3;|Q(NpTziqCI>AW-PpRB)U
zec%DDEEUxmAJm>X&xv2OqevTb6eA}G6NS9gl@@p^VD7D6d=4G+KJ$AKM6}2l&r9;i
z7Vo{;x+tXE-lErr>3*Ep_I3Or=<2hirJfn4EaV=`XXx3KP5lM}++YeoF2Mrq`SguH
zD(6?*ni!+5&rhOLjoxuJAog2y>n()~{I0hO=kpRK&SEa+JhU37kulF^7Gi#=N9mCN
zV#`Q~BV|3m+gKnz&qVIMLzybUD<_3)z>BXDy`|Of40l*v*J<q~Wt56n+oqc1K{sy~
zd^Z>undO415ftjY%k>L(jzFW>sUG;B$k^yjpI6w!(i<ihfAr0-b}yg0-ea8uxgFO&
zkzJl6T;{!|%r@FCk%S{`73M|tI)9Y^^<*$&#^mWtw~U}=i2p1g@=RWM+{6mT#nJr<
z4+ytvcrLi`Wg{ay>Tp4e)Gz;W%0(6_qK@aFYO|!G%^OwG+Gd0JV)s>${5)3u#LDi4
zU$<gdBuxbuAJy{E(Uip8WVBDqnj{}$$$8P=F|CE?DEDGdY_Y&0-6)n5U{<UOe7M+Y
zzu$-=@j-X==5-cyK_Z?y<<IO*bmR!Sh31YS@{G?XMki-e<}HN7@OCKIz#vh_;}AL!
zjV&!J>`wpeBFm(DGSYS~@nW~t-dW~*%l+NWJYlFgUb>Cua{Z2T%eA)f7yLkT@x%A;
z_pdgxFW@8+t7He{B_`LCjpcZN1s)(Axeq%Tu7)%_P4{?hjpaLiHPWLp1is^ntmk7V
z%cjODB2UI92P=YA9GvU!trk<w+>38^Yeoj_Cd-V)8rF>*Q#3v`e6*H2`>cZ!^fvjH
zxAUh&-)!thYJ*Z0J~N96bf|7&M?+iyd$BOf``x9Xi=@-EfX{fGSpHx!>FoySVab|F
z7>G_dZpUe|K6$~qy1vYIrjJclvuEXg^Om$>!Efi!N7H4*izxjMwNcGV(Blfi`(zTE
znn*P7i&wD-L6~R(oHNAH%adzv@Zv|KIbRi+cYpJ<jyea6U_Z0{2HG~#Yz5y})q2Kz
z?<6Xca?w+WI4dF)n5#d341C6pdBbE8%1_@&EH+ok<s;T}ylzbm`)JLX<(Ye6FXm+#
z(Iz<or^g$C?z;4|r+T&=R6$!!OZG}5l?eY;v9|cZ(JoHT47bEPX!hRQE^oS~yNBMR
zZW>c5a4CVDqnuS{&~x`pNw4D*jWhcXct=k<9WOoWIRwoZ;!_T*!@huHrDZRBloEXu
z_c?T4M_qJjS$hoXb`x}tE`XNmMM~CEOegnh$4UBwr--(yBkT@8PRTmFUAVVU`s!Jj
zg%C4LGr~VA&;%^#MjON(GECP^nXc#=6*mjyRN=X_U9EdKmer*gdyXp4r{3R;LDipt
zj0HfmWsS%W%l48z>4ZQP`28Ie?sPt5?}GrtGfCNF#2(>*`eKVuE~A!0Qd@{V8mv6r
zeXMVi)P`X<@3&L2p&UWf2}7S5`%U)QCpqs7#Sl(4O?mM$+$ZdUW+~3Ju7v$CfI@pH
zqBbaN657D}#1OLFa@0$Ig9@uP)WMGM&)1mIk~sT}6Am@>eYrRI?lH1e>{j|<h}*Tj
z2EY`-q4jn5Fyg2KmpM##VFdsPj;YVxQ661$EV%*{NZvKBpqAOnS&3FV34yzcDM$e6
z$Qv3kDOlTMI@4!v%glG}F`TCy3MzSRPfjL%wyLuwNwGU+566)XuuJ|Tx;bqfe^!F`
zWk}9rbn;_2$HLCkc<5YS!lW;4O&`IEy8<i**gOp-vr8WmMf@sj9iDAtEZA$j^Lce`
zes@gmbBphF_H%vy(FtEGU)3I8spz8rNkO}|R~7{l^}f8QS;VRv&u0x@aY{QbyFFf*
zknUA)7*Hf8Q!keh{Vet3C+l^1Tf4?-A$wh%hG*13eK<v8+V}nLrN?Ac9fyH^sDSzz
zdk@IFLgwd<&Q3YuRPOh48`%Jd{@Sv0fI7>j$|s7YzzF?yhdYtDAeFK2Qt2UIA}<&p
zEuRW&j`;VzesgpftAUNp>e0;sFng&4|5qE}n-_&e?9$iO)-#46RLRalD-?-&pyQ*4
zWWZ94YEaG9Y23&{<G_s2bI%}+v1j?uTFA6mVFOzBj$|vX=}}LHK^q~b-%7}r!{e+g
z{46ELx!AkY(;&0g668(Kk^$d#pvT2BbG$clVN)#^`??4FNOgYo9thsmbr!@w4?7@v
z-#`IY&(}>DDnF5`Ol8<zGEkW5J^OJx6nR_TvVS~ys1*4db2O|Dtxe6(`wf-_k~0~^
z%dBrw<S>R%?iAa0#ff^-J5|0P>TEr;qqsg@Z~k3aI_-GS>i@-w)%h2m5PH$m!_$5z
zI+h!5$8j^=4jq5A>7i#(PZ1E<_2~@5-w#{SI+P`U%1ZGrMy~{I+YDjNrMpaq(+^8>
zl1g7DLeX16+6ZUme6vm^CoQI&I-IIJ&fZQ@wxVUf*?D|Oln)RxC9aS%dUv`v)nH?)
zb9;H$axhP8pOIu2uq2P$e7=V$gny}8&_A?8o6tAOr4_3x#uP}wC2zE$(KMR(yzuSe
z6Y<r2z(R?s1b_*V1?h|qZ1G+H()SOwn(5b^_YQc!Zp!RrFkbu^Ple{Rptd-NFNv(;
zobES6jzdhTde|rv2vR9~h@QR{Wol!Q@WU=r*~W1#srh>|yBXU#{+8X3<&HnTpck8l
zuIO<xSq0Y?_klZhXN|rwsRk4c9!bG0Ee%nDGW(JnyB@Dc8cu6AU3w<<ZW0A?QB?1Z
z@I_L|5)woz8gD<mc{`|LkSXQk9hTaQhEvX7zJva&(VQlU@1G{_7#$87@_jPIjXq2(
zjtafsQLh*tF)Y6&oeRqDRaC8y+R@DD|BT)yU!xoXY406PGCBhhiM3&Q($`U4?%^J|
zO#YDO#TfolkCrd|mjO7Ii|DgBHKG{&gRCx&92szTwXuIP0(V{cSTT+mni*b}CLYzz
ze?C2`CCj+drh5D(Fk)-oDu!>e=+Gdl;(0v7ma;`uuU(e!`kZM3qtxU-6hP^$*uM&(
zMtTED$78dp${uR-ISpCV>6R$*kbf$kn9Pk+EOpe7%nd{ITWd41J_ZkwTEph7#tr7c
z!<>uy+9d@-w4k5O-`OSF;?T(W454b7JUduitY}{S7^9N_5q^?8WT0x_&~OrFqQnph
z2-);;htGjs;C!^av_@hEAJ^oE+ZyM=7xO}jYsgpeo(7Xklzm-O>jqOA&DYe`cPgiS
zBv0+5H%l=v<0F}m`p)cXSVfR%>jss}YiXbwQz+WGW|i(#9nJR3JY{)i8Lc<CPvkYN
ze;q72Dg0tbckqX&yKbX#?`rw0oJ|Noh+wN}vh8|Np9E;=F(j?uIxh&(`YC2+v%=?!
z*0ahu<7??(ae$uRI((JAa!l}w3ZCw}Z@bQh$8&i!IdW@7MK*kRmG?Y<ZOPUz1@L{@
zpk`QltB*6MOG~nNUy?mxTvL{B{Dh_N4t|dsVZQea${HRLJ^+zu85mG$!C9|#JX`Uu
zL`6_Xear#A%VCA8;$19*WM6U8-Fj)eocceXhz8z5;IYk*jziS-r1M%=W~~_?<V$R1
z2v2p%n=uhZ#4}0HPLaYsJ_74iCVBB?`Rw~<0nQ$f5+~E0WjU@QT;Liz_DjiL8e#sp
zBrg?S$zH(jqYYw(dU|~~p|2NDucgsO8VDh7I(gtq@+Hgtm`etK!w#)AUYs!4FQ5vm
zrUFx@!$6JMuYuDe8GGxeSvA!IMiWBA9ftN<Yc(qjEZCiFc5kT%@Q=tWS$n&yadyfu
zxYR|q#C~1sfKh1_V0^Fen+FUIij56!@TfTNtd&m0UN9!s?Y6GI@t?((OU#X}f^`0c
zU-x##<<#3aH{Z&B&Z?~U_ABhGEe4*Hr3<))Ttp1Ea*c2wMcE_Rj{6-c>BoC}*DRU0
zP*0XSTSew@(-ouiZA`0ksX9m8NkU(7cH%xf&A$4b^Ll0B3=X{C2)x}=2_gk7{!Umn
zQ<|^6$W3%1M|CFZ=j&Y4go%7J$xsJjtsCkgRE^37ulr8nbZp!C_wvk%d&T-7ELY-(
zdTtV((ot)^UQ(y{)tA+#ji~}!##vMMRsnp^?}>mjrw<!t#LIsld^jPtwewwYn{nS@
zq(_L^!M~5}V2zc#Ig1ziOVBqso_>03e)M~;%DS&M`(;*@?H}K5#tWTGk%<vD_=|AJ
zL|*UdSxtO4h|aIz+soZZPZMFhg(iKG{0?5c-5FA5CEHdVn%i58i*_v1%iPsyk69yT
zp^Vhh=AX|_Mt>&w(|5PTmYzq7Sby}P0#P3(sWo|j46xmcbWGcLQ0}vjU+Z(^^?1Oc
zko{urIjCy}lvc6U#=N21?}D%k-#Du@o%HIH9Kd6{R;ZO;zG8EtE)Xa_yNZJ;Ak>+G
z2iHSV@s)g|RBs6@DK$ZW*23<-UCN0=dsPafD5${mAW?t+$U~~ZmdTn~%}ckD0#rVV
zBtSen>F)pf1Zu?}fI@RAt3=HyQc^CW3>9GRTVN*TUt;NGK&sbet?S!=VXqJ35qjBu
z6WqNw+a(qA%PRNe!#i`rS{h~_L>BT?O?;{~FVWI6PTfpWQx%6cy_0N+(d!rUt=~aY
zi*fmQbyLd^rKrAMm$qlT_&U(ck-}maQkS(Gy8gv}ZY|Yxxl84`GfmdmWxgv0cc2M-
z?ct1u*!-?F6j#d*5ED*qI1NVQj?R%8uA#6w*xfZfjO@dE3P(cT%3y@ol<Ax(!r7Yo
z<_c8B$g|>g!@1m|sj8%awoDb&WOzy&6{>G9s{yKH4o73hTTkZ9oE$4!>!p_3QK-Rg
zi0Ne<b#~1#sD;Vcj8#ax8R6Vg0F<AxLxAf&4q7kFreO=Gzn|0s6vQ2)zBfh-y4n#R
z*g&|ts=J9r%N|=E3C%=k*M@Sziln*7rPo_y;fEoFC^=H!Pq@AhrB+Ub$9~sGGJPdt
zwa5FdFnh?Fve@c(<{ksAf*9x`iwS({OUl}enumv3t_iK4*K=m`vc>XEVR*N{$Aw`2
z(75R5%x-MihYiB9>j!DSKf#{+74&5WdSq?7yEjO3y5c}8xQ@n}QvHGq0<YHQ<E4FG
z)+i^s_wD(7f6(cvEY!8MD2i~>K|bUx<uqZm+^G~E26Y`hU^pV^By?2gtNV=bOD_|~
zH2^bC|269u@2<rTxRR(BJ7}=io9Eb@`1gY8rUa*`u`r0HE3>EHa>h$s)4;{GTzk$G
zniPwEB&tNlGx|#jp>3v%pIr%;Jyj|!I~}D_e&pwwV#-9WXa=T0FbEy+*;{ol%3k2u
z(rhYxemvZ-DRr<a>9zexRITu0E+7HAm7jX+aty#0c`i+~{9_8$*DUksWZq|S@1cZD
z$3alz^M=j(@Ie9;{YFQVP0)l?tjB<b!)Wg}EgJtEjrJA8w~9_*s0>^&8xGoTL>r;o
z6jOUABeDlO8S@rvx_ak1BhIkp-j9x~y9u=$Ssvxgwf1cpk<WH|+)nsJeQK|gY0hYX
z&TG5BYVPo+o;Sa%Kp8l7%1I4Ymjh-?E@fVo$Ho~_he7Zpd=_jsJinDv0GMv%Pk+j>
zgS!O#m{xE_4Ts%a+tRA}wc6EZE$Su{)}7Qhh37L)v)^i2t+Z(r*&!y4M*TCg7KxhK
z^lG0^Llm0WRAb^u`QMH-!B=O}U0_>Gew%<unt8g=VRinx?{Hub)^Cv9#SUVGb0d)K
z!dP6zB<~(|5EMXnofc(UR`jh3T*^m(a{7KBesEVCK)B;zU%%kzc!9<hT2z>QCx8p+
zb<yf7@}29Qk&P*`O%572N;S&yunWPv_qcxaIepWan1O8RK<1c!feYoZyy{P{`u>9S
z%K!$SUAMNlIB8v~KR}`zr?(#tPlu%rUfv`Eq-{;@Gri_|O~v@P)N5p%>5EB6WKNv8
zqgaToB9iagK9a^+9FUh1J~w3#Yu;-K_i}<?Z<j!U6`y-%iTi6bETF#x`z~EGyiuf!
zoMuE?vhzR%vY)L_MfcsXm}xetFJ5*E^ETYNyM6o`sDr!Tav;<9jENrXo3KjzdqMc!
zUSC*%h&SA_rBMqtlQuGk#u~E-*40#upF=~nKegd{fld<?Wxj9K*;h~qIvS{m`(9T&
z!4Cp&u0>fPxkL`)Q&E@rHD7gII)#b$ko|=j45I3Ve-;i_R$Ml}gzS9Yu`@Vsdv9GG
zAs!L<v~T87Z=}nVDOyzdeX*qgX7&eg3_2Nio_&7Y*;aN2z~VHf-qJsMPa86B(Z>XJ
z>Q|w{qiWjdLCH4qxBeQt`;vS$y&L!!NQ$rD$xD#oR(o!`VA;nwH>M6Wt)9CpTBGG(
z)!7M<T^*m^iUGE5?zddXz-dcUHCWBDV=APsTR@@R8NLO1L$MDB&Ls+GH^gRt9a@gK
z5AtpJ?N10ls<3%?K#Ml^TY^-Sp_DS-Txw2%t_##=5X+kH^)oEpc@-hlp0h8ZjQXtI
zD*=?u8L*Q@pBJ;h1^D6UCU;5sYhyrN-M<2*QF6=J5GL3~7IZwJzmr6PW|kL_WlA-6
z;xyFgJ9+7#sxwq;7zU|Ie8CFq&HhpRD)wS}MXL$3VSbske%6C&Dih?c^CC*cz^HRv
zG~BSm<VL9pdP*LdGOv-Z021oZSx#I0(?N`XJFqWeZ>y*P!pSEQ|K|BybohgSKI+C?
zSBS=G+~jNbY1{EY$!@OS$vlN69zd&%n#GJ8ZDTC#?^(J`sk>0`&Ok@L$KIq8c~^qj
znU0!0w~)Av__|+hiSEpTy3YEk>lwGp)_b=2r4GJEsFkI%7zTgaU&j<{;sw5LnD>U#
zaq~JFr<65s|JXm~;a7({?Ju-O(jQr7e&cqe?*_Nf1DKYre2?P6^;dR*azaiQolDfP
zw{eRQ-!6o4){zx+m7+j5iKQGvg*)uFkB(q|K;6mA&f3_iD%{v{PqHHXRt9bP>yT5J
zRUqZn$FQZYi}JdhTB~sn44;T^E`_?|CUMiw0TN>Fypj})<b17?a9N{IMx<o<#I~%B
zgHUJV+B`d@E%D50gbrDO+YT3-d0tp3m^f*UahD%Y_e#likonO;^^KKOw+In~v2}~U
z+cDcN{{85_?8*}Lb#ev31m1>NX{`e280}q~QaAID^n6L%&X!={Z#mw561C~ve8d44
zXPU6jF=cicbiqj=D;WLKWwop{de(XHWP>ymAA&`Y+gxf>i%;Y<EpLR=5=zZ8&FC}d
z#-3%kYe5{+{1-xD{9U!P)Q%B!SeaONZ%Ucu0<y3>X*Z?~ZS;1XBsijRRk4^cSZS=r
zxh{wAU%yFw$(RqmLmPhq2nz9D<Nz!H;myHA?8Q(~nkU1wrq8BHywOolXmYX!I_yZp
zR4WAt)@YsHWcLyry=yuzn-257`y%g^Yh|1zFmlxsTJ+evsyxag?r^&<r^44wVVZdy
zt+nC#(#rLcz1XW6ky$vI_=Bp@Z1pK^xbq7<9OC3YDNMPRuOIr8!ouHtKI^Dn-f>yk
zn05G_29`Y|(CTIs*rx!JYRpK^vfah%P)lK9BjL(U#$E7!yHn~@<*on<Ln|eoI<psw
zn>FUysImI^fH#QVh+{*o2Fov*?t32D(6u%FTjXWn>+Wary~>m9vuZfwiY=rb`@)dV
zor9dcO{;X-UXzBX1DNcp*O4+c6lm`2Kt_k!=()eVrd_Ow*`{9KL-2EcW>jc&Px(_(
z1!n70$QB>bLjy&>5&~5d61gTm!S-sx$bl$Ma?J%D&WzPi)^p1t0v^L*;n%z2!+zeq
z&{s)W!Q91Ir;0^d^(J+v*5bqOE(YuCwc<Fn6|(JV0}^F!F4Sa%T3|}w?Z@5A4v8!g
ze3Q7ZD7*-OtIP?v)6RNA@b$0JD)W3T$-FBn5&$#43n=uKSXzgLidE!0Dy_gw{?kL)
z#H!&FnvKZ7*Ve@A0>lx)k6w{QkVTRvAIFkDdwWs^Bdwc#%`D_f;FTo#A_zp)Wei|q
zUg#M~17r*2Gv05=-19a~RrBvg+DpO8mIHW4j<GxHWV)*0Mh7>(w&gZWdpteNFJ^X}
z<DN~bE_&Fk#r(YZnHSIN+h>{G`XeB)#!3<g@YFg5Kof-aLj~$aSp;vijcZEt@%T2!
zCMX^i#5^9oU%ra*wi)fA(zxijB4)NltDJ1rILt3sX_<eNqG3hfk~))r1>KdteZdz<
zVUl5u@tHROm`!J0<g8^Vg?lDzrkg}j6Bhq?Y@_QZS0*t(!O>e|=>R>bDlvwZJ)`sT
zLpJL;ub?5OzrJB-ccI3qN8TsF#`Efm+c-OZPqK0)eas3g=cf}JO3Iq65ycxM;cFVt
z*TNvMO69jyv1AoQ+`oiJ<^tscERI=$5PL-n&*gCH2}*;d)}4t(^L;_N?$maFl%ycO
z>GMta4dsDe)Ow{%zZ?%%WXEAHwb{=h+51~FiwIYn=KJ*F*6V?iePlPK>GXL$!iDb$
zq+d)1+;tr9Zo%y&#ko{Txa*F2ixyMPt`7z0bWs&VYN*ecv6()zJ<uF0OcSz%L*yZ<
z+j?Fnx}6*H%DNIqFzbx2gK)fV^0o^~Ar|XJ89^k+HrBX1HfTD1-?WjrB0A@)2wx;;
zlR18OB(>kjcINMnb}SW`+l{1$Z4rqvVT-^(q*Ty}%1-V!_xjx~QOoPz9hXL9=O*^s
z(+A(k{H6%5^^C#KRHXZbZyuzj{(<NbQsER_##IJ;WZCOQQNvy9Lu5MljNI%qvNdA#
z38Yk&jBrE`FGB>s4Pht?gkeV=Lf*##L@#d!f-bC-6xv9j&@|FWx-nrs&Thi3Lz3=6
z=i`;2zK4?6x)7-qTj>av5cysbM#)R+86c_e%oP13fTi6Ud)xxuSPCD)!O+}=Ms>~c
z7=2CP+2i;l<X7tHNv8n(L5W3m-lj0-Fx1oH^eBQ*S3;mjlq^q`fhz^+ixo^vd6%E`
zq!1onc!=U9=r}J)#>stmh>J>d+QZbb^{LNGx7MZG4$2%NRwEpbkkl|;J;NR-OYPM>
zWF@W`;~@aA^F^$+3K2c*LvNowuDe2Dy(W@2qMm&Mu#KCw5fU5;u0ED)teF^7ztXmi
z`V&GO#qy2d=7;B3>h0vjaR&1R4B#HYSs9=v)b@LRK>K(fZ_t+>=*RC_xOV^`Pd8f_
z<J7a~#sk5IS<9v*z-)uLwsmlq`!*iJU9;la^t<NfkEM<fk5I8ri#n4VJtvA|MH_tT
zc$dqTE>s<J+V6c<zv?}e(GAJZp$<RO<*#|Q!~lGyZ?URDT}d2mq+xqVhqANK+pi^j
zRY<Ja#NkXSC}~M;-6^oM&PiG3RD&i~1;W^^Hm7q~9Wn$O|5e;zSpEz|9O0ep->A1)
zlSmo@R@$W5n-09$+t}!0KJRE{r#XAqq&euDpyNN+u7Z(cHhSNYXIcpYFa@w+W6il#
zE_n?sq&tGGB}B1Z@m_Sw=$SYuFK#TQp?xDFj{`2T`?DKciO)n!D?I5Mf|RG&_w&&+
z>Se@GzTz7ArO-t=eIe1%1#FUj3NBI!(>dD^r9k#6z;ds{iIYEFd!e1*<2L@<A^PIm
z<Yo!XzN<;KBuGJ;grW{)ebUNppX}W-m0_)>Q?TphTB<oo|IQywJ<w4%<yIu|;aV0k
z=lZgeDZv@<{yiYLlTyS^w)v3oqpY4yUv;B-ceQp9oyWapO9W9MUizU?#Axcb5jEMg
zHf)o|NXsaXP4#x5K^-d1=)&=#;OB55@NZkJhC>Cyn@R+!%%uhQ8)DmhaBe^bw7hA)
z&|2n<HQ99-xswbIdCKL)Tuz#$Rh)pQcql;agxISu+juVyI{01Q!-PIg7yJ6OXpghF
zN?9^@sDVSLxDF@9H>b%0VOOBMh=j+bOGBJRhoooNqjmzuaBEU)fJWL_!DzjuA#+kC
zjPDE}Va8h?gJ<P%Pqo=7cYL&^v{<e!tMV7cO!YEmUzquHJ?tSH;&lCH5=wtS-)L9b
zbJL;2zlW)_U+Bb~r2#4U-Zq`k^Z^o4a@OXOQ25ms;ls<>&E_&2wBQAJw37LldGFBD
zvC?_IIobd7$Fto((;E#&VUXIE3G&!GeMrUo%XsS!@u?hUy*KxL_D**q&!ebCS0o~Q
zTw(B)`9<_Cj;-ejbc}j8=g&S%nHJIhD+o;Xo=agV>B;f0y#5xWSRcwk_7$CuS<aEn
zHHGnbwFPr*s4%S<-pCBS&)#-3N0Ro3YL3UqdFZ{I&jHHIyzjB@l6ZDmGkCpzyWSVp
zsC>(mM6?<to-5L=F#6EgW;y&Lbq66;CKzy)`TIZwD8pLwNlS9rYc~-X%w-d)!}5ta
z@CPOISx-5zZB^*v4wub;5_cc&!rEO--_2!Z&isTan!kC~J^PPU4F4|4G~AP=b~0cU
z4eGIY%~*7u_G~ZrW4vP!jiC0Da)Mh+(l8XtdxqdPSU`qix|9Td)}XwlE}y_&LU)f;
zP*an<)86UL0;Rn0qXPPE{F*GkV=kYc0IvmHd|mr4gy{3Ah5(A$q`fW{tef@lz^OPf
zweY}-RvD21+Wu>{cyS@dRWp~?;r&~}VW8oN`cPhiWH0H1k6D<F>ikV<hAv@JQpZ2@
zZf}!R7?-_gi%$n_LGot{9>9^HaSgGfWu>6S39a(xA3<~x$Fn=-M_KK=*8(oMo>t5B
zo$NSyf@ZZyFxz?9qho--Hcg^6?ZR-U#r{fy^uD=&b%v`gk<B_S)|;^Ou2M+wqPHt2
z$ujyMF6-xbV_FX%CNcHB8BTwU$O@R8abO%FAhrv~p?CgFr0G<NneJ=71c>6Jy_K^e
zi%hS|;hA~L6cvX%giO8hg1QHO!+M2-wM|4v!73J5<<!c|`h9D<O0!*ssfvsg^T}BU
zotZdUGj@$RyoQ$wdA2#)McN&9`f`!}E~{nztK%&zwlvXos&F}_LO)LY_aOqx+rMsK
zKZ~EopcMA8=x|Eq$r$%On;k)0_R|Egu@$+he|ayb<-~~iN~~uk%@JqlVtu&{{w4A~
z!}gP$T`K_havJ$lizt)BOA6j$Hb*ka@5B#+4_n3@vLb2f8?a0PvM`mUq#lBCGA=f&
zrD+R>*ba|@$Gqpw{l^FJn}tlD1z+|MS)T41tQ0o{#WAr?*h?Z+%i7F1VuX4tv6Vx&
zmguU_H11h`ilZ!5x=rSIqh{}(qE5z+tG}gOLI)D9-Hrtv^-!BVVXn6w@cx|Y$VwCH
zD_<EY9wK5ueirKgHIL6yJN<?-;;>OGTP9HEwu24dOpJWq%|A+_GnmW4$ryGnsg^c2
zv?CkTdOX0hKP<I>YG~(so6D?9+c^0XK>#am$!K9QFho0f{eSLg%M=i0u!#^Ljd&_Y
zD3ETlEK1IYvt80*=cJ^d$#-CDaFI7oDpx8vPlBVnQQn}vZRJMo)s&LX1Uuq@aPCmD
zX0IOMC$DP|As%e4-2E`p;#4+NF3t8F7A}GZIhv$F&)Z`(gmJZ@p$L(hWMjf-E(<%Y
z#ezt$h_9T_)yGY^#0#G~cAY~gR`UR{u5Dpw#8ivG6&cE{M*XULi{(J3K#u^|05^C6
zDO0Q?APhx3h&;@!2Qpmnb&3Ab+-ps%W<-1T*++0|i6JkEtYD2nCSciuNz`oM>q&{V
zJFR<egOm$9=x`CK+tUMs&o<eS3T>i~L<Tj{?&Oc&yjoHEJE#RF*_$C~fkh_q#W0F(
zj?*yGP>_8A>*^3UCL0&kNpRO~^$MYBD_CoYl%OE}Xuw-kx8;PwA2jx09-CC2b)8MU
zoFOAYi`FUZ&fnAOX^-V>qxbg$HxrhUrU~}mqJe2?i1ixnp9P(N%39`a#X2412ILNR
z+dlH{!A&jl^m3)|((Luni7}r7XfQ00JpjxLl$3vkVs0^C2TMEsWMkTDs`rhETWp=S
zjyh;^;{3lC1Ji`C%eR8!ppFLfeHYYEG&8GzMdT2h9aoPrx*q}p1^p;tC)BnY+}()Q
zi#Fxt8YdZ@0eYhu1$G|hpyREGkB_PYyND-wo@D0=S8c%av+|4*nz+ItDog?X*T+Yt
z!kQXpcthItjdA!IQvCSE&<R1WP~lbeJ7uFRGE!3GR_MW+Pk80FIkl;QkT&gr9HgQQ
z>a-Gc{0CLmFi)Z9do*GTCzTUyN4qIo$GyC9MtrnnO?`-&((#ZAn}q2cj#<=gXq~*-
z{LiyjGTC0|UmU7?@s1*3x38tE2xylxw|W;9Z5KQar2D5<2(NCz3sKkyK}#}`VtLbt
zv6X*P=EteOj(~1n9*?<-X78@2yJ+GxjvSrzF$OtppK%Yf9r&Q(kAZfJn^@sro9G=*
zT05PZ%s>bnS)u+)`oxS7mz2rm^`jfBaX;NCbInwz&$lcY#K6@mi1q{lu0g_u5{%r4
zO^H9ps;gaQ2Qs78B*+uH{BUoyk6|x$167s#z4SecR9dXqx24SZTeLg1TBLRj5XpdC
z*90l|_F8ZwMa`<Mk1UD<e9enh3L(tP4aA?K^=Ue_acUGm<vN|CHnf&J%z>AdaPIRD
z7U7U8AGUProFf`Ci}peQ;QN`oJk#L}`a+@lES(ffTw(Z1yllCRobWEaC2o#a2pS3r
zdt?gilvydBC$+V;kZxO_#>v4q!>tsz5gBxvR+^=P>Eev?Vu^%(kL%$&k|W9G?>4Oh
zELk4P5~UfEe;o=vzSx@*TL7UnR0Y$-Cf_d7hE+e8sTEd?B&mx*f%=#V3&90^QG?>|
zCW^Y#H*Eu3c;)SX&Jj2n+R;w$M4d-^7iENF4!qcgW@xc1z#!?Ri}k;b>Rfs_CU9}e
zo;o_|Jz<2}b03@Z-IOUssn7>kVq!}DDm^-T1dgb?Ie^O&3-{Miz#6Dt$?iTg>z3|K
zK@10Fgh|0}j|Wk?)AS`8sbVe%g}w?f7<kVe8q{#18g_*zB%ow4!NX&B!t+t~JE7(8
zL$aFL?UE~9^a%n~iF$aL8|n57dcII&cH?lRkH!h)ZD#FcI)4&uM6;}y3XdGyE+@2R
zAGSm}b~34xd*NGBDfBM&B)a3obbUq6{KN5IveJgjWV?A|k?vB}bg{b<q!e`6sA^z<
z7Hu<rI_hwNS=-iZGz{vGcijCc@T!;IWfxD&w0NdIsky(Z*G}=gCqNG|TnZ0l9Yb7_
zCS?uT|NbU_7mAhA6QVyD-KGIask9P+?JgT8Tz~k+V`49A(y;dl5uh*S5-#i;fS(nv
zAdU~SbdNJADPY#w2?S?L+A$791PkERohVR8h_ddqG3{TiQpZeo$)ufY$)tr~Qpw7q
z)f9gu&fVvhMZ`)%g=0G3#e{XdOfN9kY;<aHyJQyJ3A!P@?W}%LFc%5FwB0$XGlzFW
zuZYGs>`vxt)WnCn(*Y@G9s0(5inGmcZzP*o221fa@^U0caAl&nt!pkq8GT-M(pFT$
zv|gVIo77#P8ewrLQ?zwU^)eF0qDRDZ?y%u-5ISQIOj)aITFYAesuQKJbkE7qk}0Ye
z)u2)#{X(Xfz}F29L!Bc~Bc<o8-^btlUlhO>-^8z<y}zZJ6r~wMfn0u6GIF<;*&(w2
zH2qB!X95I_V9N@F#5FzIDFnw>#+Ri_2B0X`f&G+7!yIbB^ZFUPow=8yv#u*|oX$IA
zLdWHYTKx|84)xy8`%W>+D5*Ge=$0;pul^{RAl_!Bf^8xt-%}eJRxtpGZ_qyf`B2k_
zU)6(+m{`u5Q!`(TKglnXiEe-3;rDSYHQbOVs`|;)a&fF?jrnap>#8l_CLdq}Y`J|M
zIYq-uaucKNRx>18wh`CGIeck7q9u_4p-oTW?M#1Yh93fnrk)GqHAP?ZWejaTXghKC
zbM}>BRw6rh^pQ$beX9(bU!%q9#@nidXn(SWiLX6;CxEj;KCuKQ0Gfqe=a$|+w~3ko
z4(_#!TAI?>0PVfM5dkonI!jIcw(@1V@%x-xF_SomCYA$ONce0|Dnl#L2#29%pOehm
zI_)Nnj6Z}sHcGm|0Kl}+LpE#k<*f4&Gz%?;6eyO-frF)TRdY*pmKAuWae^3)JLN6c
z9*i4TJsZ)~rG(pUi9hL=@DK)CDth9t(60KMn8Jxy-I)fzMhfaeZ+t`ZFXl2K7{0~B
zSW&I#R-}FabE(8}?fHf*%|lPh&hc3go{R44)RUZyqtEAQqL>wO9lK{kRef0>I_s#R
zr(GW8OtF>w^PjZq;W2><ZI<tFaST(?MoBDSL4UxI1}{H@7+-6}{{tEFndhEyl^Sn(
z-CC7xwDi=pr}Bu{lkSzv!`y+TAOWS7N#mJGV;55-c*<|Lib?uI5i=Tdbj{Ao!p)PG
zw+XZV$<mF#Q(b_*zh6X&XG0s@TRPq6N8nhB@d0LqHfl)~?5(5xycYv5C=#Rsm5&Q2
zMJMZ9>kr6|8+2}RLRzz@Me2T08>W(dF>||m?7&Q%CGVs`Yds=3nQp{uSNGrwH2Tn&
zwO4*3ESVDdXBK!W_4A4ndZ6gpjP}RexE4#Ke~$qp4EROt4vlDH*ukhu)<2%O@DUa|
z6;OPS@3eNO-XkgyKil*s+Lv;QMYSIe`OqB_SyXygtfjri3<Z93dA=w%(iurT(ZIVL
zXnifHygNlOioRwn#mp_vFU2g6U6JmK%y)IJ+22{t(rN=S+vEEhilJ{2?W5f~c9T6h
zPfH%7xd?CQTl_5?{#e?5WW(3HI6w7=LE;8!X@so&r7{&K`^e^ziiM~n%+5o@;{Rjs
zJENLvw{<@iDbhij)KEm}9qG~pq^Tgi7ZK?o5C}!2g^q<L5JZ|v?=AEW(xvwrdI%)}
zLb;3Y+;h*k`#WQQXYXJ4$Nj@#gpjQDu6NBf=QE$@nW^^&d%>Ed<B8b#Og_Dp4-)&<
zk*d*$LE)y?UAvQ#4-1xZYty&51In0bsZd1v+x{8W-^aM9mZz-aFm%&>$yxsBpXk#<
ziBK@gjq13*6o}<sZ2@m}_WYHfuj$GDRVSE0{`ycsTHv^8-4}CCc%>Fm*f4&t2*XsL
z+a#(Z5mbGJjio=FLTuvhBGS8fKfz}mf8-8TRHmn_A3(bvcTL%?lR|Yp?)m^-4g%-e
zHNA{A&k1v5{^*Fgi55J@G;js|Dh;vUevpWtW;Jisk!6Yj>VR8Os4eFtruW>E1<1v(
zR?IZvbq%79$yju%3*)UHUSzO-VBws`{JAIiyS6FKOk!oK_M&XLzqQ@!S_)@eQul8T
z!g9iHmCIawX!dQCI<C-R$fOW7^JVsFf4&#N3EOXKW5%5%JNMLrrwAr@_f7L~1O1wL
z=nC12Abz49{#S!IGLrIO{c$!mfZ}uC7P&KOb3vDw)|MK85lZGbvW$-)%XfjJo{X;t
z(A}~Q8E=7*P!p!KezhO}<I6(xIYF=`k3vNk;l2d}zXE=)Tk^|o-aL?tGTW1ASN!%8
zpvu@HUs~y<v&y-qyeoT$#4ep#2*}BL13@BWs3XfXu|+OKF-kGV5M(C({q^CU;5ME<
zh}wW;YSHXtnRy9h-8P??8!>_Geliu@p|dsO+g2#Q>HstS)(3W<3I6T(C!#Jxp~qmG
zZw-Xhg!fzBbG=wN`LnfEwGEI!pYGRHMevwdocmIyqO7up6If`A!K{RA^0{npL<?$B
zkp#VbXZz*N;eDXvnMS>`-d@jje7F34s7O$X{5g%ZiXjMgtTZ0~EPNlrnXb!uQ1puB
z^LFA5EgpUmrw8tp6OB}<iv*N$$v)Jr>}B(JCJ#nvO5q?7tPrna6Z(>jVkXG2S00Sf
z>hnBMzQY=6!0<xp!UC^<II)Cz`$NJ4EfHC-hjwQl?=fHBJ+}50$;TTf^AP0eP(O6_
zb>K2Kl4{vdP`%i!K}h+x;o6<P0y2Ic!qEZ&l%;8*6OTXbo{WJa>?Xk8Iu%&-=1)gm
zuz$`Qw<q_E@WLO4JTfQbsd)!b<mcdBL)=9*tjDwJ^osRR@t4MOR>(Fn8(RstQl}_u
zklBZeR`=+KZ3+5jo3E=2-FEpu`jM*{w^UlSJqUYS<-{|=f5%Ce=bKdRLeC~12s(DK
zhdIhGzzA|XmcKWaUT~A^+<zBk;10m{`(_ggbYhb%1WonBVX~SAiEA+foZk;fF<<t{
zDGXN`X|@&Q!h96UyLO-dXAn6!`(3pgDWmMpFd0f?veCBpN=8MO^(kxIaFz-rZt@r9
zozD>clKq_z7?5@)2KzKt?sH4z<2Iq(qoxhT1CT-@LO8W5@pM0v(q}TRzU)A02wFlO
zbvw+dmXvPGYWDJ#U^e42)1Znmn=HeUOwu8deeqI>DU7VxL~d-}7+?nrU%}M_l%?Co
zd>2T&UiMYI0GZV`D(tT_R&%4L@~08iRrlLh8f}m{=-FvfVlI@UbM+YfuZ`4E@^~_&
zcNN9Tm|0J*7&()Q-?{{%9?)VTNtsX_tiQ%z$;DhuX=<4%h=rQ^_1NxRkUlvn0N95M
z?V}T{w%(((abRZlB1!&h7--=?V4%RJG9Pg-TNqiKd{%hC)!BJwIP=kx+~I*NAl(=h
zhziLizIEYHRGNs<2*-TM!y6;uIymSy8lWi*XY{QJbW5w8=gSA6ZAf3a&pH8+-fv7`
zY%-3HMzs$!Id;9gVDX0GOuotHZ&#nIfJ+}64E7=OvF5w`a2i5FwOiG}B$7iQ>gYmM
z5R(t3kk{g^Ta5F{1)ylq4)d)LJ5GeeXG&66A{I-2qJS3iZ-fpTp`1&%nSJ*`8D4-s
z<LzA4&N^b38J7^>`^f{=?cq?G3Gi*Jq2v-%`5_uyE=8smW9p_pf))d2T)||{)g)q!
zJ>KwgiS<HY5|J*<4L4N+w*inynagDycZDH-Dnl{jsV*GLlg1-0=mP&xTOfkuad?V3
zJd<=(2T!nEmIVvyLG}3<lBgyVR+w?wCtYfV8V(MwfeGYM$IR=j7>2GyJ5re=fJB>O
zcd-Q)$o}s8q1q*J=FF5Y-IRv3d(so!-j<~yKwrnlL#QJaAB^bdts9F7X!DigIA?pW
z|7)BoRmB4zb<N&vc=ViP`qN6RR1v%Ml&Sapnpwc9tsdk#0qASjr3pel&NjsS{#^$F
zspfgRE7>0pqzkHbwuyn(=FT5lJn)hkVHZUw{T1aRV7u{N$C1_0`a4~=GIkW>sVgpT
z2(3OA$crj<Lf^k{en73yI(h%DodAv{G^OVg)&Yy&WrY2FPxV}`J6~e@<Foao%fpXN
z%&fn<%dRC`grh5Bb9V|4aO`Fs2$Y$oe-)hX3IRaTyiH$3@($XoF^w#)C1AkVPs7pN
zf!?8kb>!+R^GCa*1+veUKnQV3?d0SC#%I`ae|f0^J<omorCT&)LULNPK(UL&Il~|A
z=8A8*p{CuvZy|5d*$@HofZ=rl#Po02&`d`|onHCLry-Jt-zcUNW9prE#trS#KlVG#
zfB{tx!i~T5_&>b>e1{30bp7P;FS?`!6XpypdWB|+m&HNf$tl8IL&1>yGSpj)%&<j4
zA#hM7EV%c$%kO^7xi!)uW=dp`+al*8nH6muLDoNy_lA5KB~R#N4l}gWI2Y9Zvv~=G
ziG{=@(opdIEM$`HtRhNFa@(=|Rbi2R%CX7Jvy(TFrc&m+700qRuY>OaSX5I-xd5V`
zB5LOQQ}id!cJ5`mqH$~hN7wALFF=dg=cdI0>0krO12}mgrRc8`N8v@HCt(mig2Obw
z*O5~W53>oF%l7MQWxENmRhUX?d8^tg;Z^I5m3zMY0Qu&>DK<6<RH1gX>d|%<BJN&q
z?k>4O0WsKTdRJppD1cg+%pLDl8neYoOPwADn;)4`>l<16R1b%pE=TMXMwy-+)~x0)
z*p%cx+*!X-U6&LFUoPJ(9ZM|oK#a7&z!?A^`C8o>do>B@CU?BHY8BH=HJc7Yz<MU$
z$D;c63Hq0iy#VyW)gSy{Sc9l`J(2Tmfu8*bSMVdNsS@Gr(kGKs$CAa!P(L1X@P|;-
zBtBEPT^VpC$4Ct>*7$|%cdPSPhSLCLUD5Waom@3W4pXJfpMvPX)JE75@@Q9tcUx=>
zO~5CbKoJ`uN#o;MkCwp58_j&&Mo^lAS3}gr!Iby4_LsPVCkK3wpfYlX#dnC-g}$fS
ziD|r43=ZEp>|zc$%5;B~;z@l?a?YMwR@;y0+J+N2r-x{o*(SUk@of2YoA3Y^*HDE~
zYO`I^MbGfo59keMNX6dt3WIR76ED$MJ12+HDZih<Gql)uwSSSe;OeZp$(NK}xc|{7
z?0MASXwtTxiLx(u$wSW0QiKH2opKqy3bHsMkQaM_el1z6c>pR$>gxQ^pN{NQ$Ti*$
z{iy8^FI8h*fHG{WSvY}<YfnzHJ{3Yh3E%g)ZoopABSzhLg%-&a1j-xJ5cE><ijVA+
z)O=nQXI#q{LF+A!O#PsC$U%?N#(_cl5C^v(*)b|?+eKBzjg<&ieF2XZ!;6y1A_@p7
zfh-2$o!7au(jO4RnAIFZ!D&g9v2ra4a?-@p(Dk_E{i$bjBB?p$3HYct4FFZbCdt$r
zHJ>?hQ%P7a#34ng=gtM45}%=hG`$%YbxVkXK?`Xg?OS@G>;Vt09nVVWS&Qs7zAHCg
zBSyCoaCL#vA+@vgPegP+4FS(C)X3dd+=#WX0mL4M7ovN|(4+mY!G<6v1v8w6$)ft*
zEkK26FK51)VF2xFlsnsCLoOvqTams1Ef~!h#I8*{6dg|$*6JMyKCV6k9u@vm*3n2#
zkY?d1>()nNybLO<1PFfcw!Fol|7y8lhEJU8XE`)3QHJY4Uj)x?*PT+b>>p>LYv55>
z*}@W%7&FQuOElBYlnRtEF=T_0+smX9t+FZ8Ub6X3-71{;1cD0b%awPQ7%|KT%JFZI
zq8D0wh~fs85q^aHh~0FzT&bNTJZ9Z+qpKt!f+I;)Zirx$el+f(RZ{}~a3saD?Ob`Q
zoA6q2W*>h(Hh#cY%ElCyoIQ^9=ja-|v}R*}=t-nq?k8<?yKoloHQs^3ey7jNvs6j#
zxvrD1?@752eg)vaDjutv4=+$+!P9A<458?Ht-pU)5+m&)b@n^Wy!Gbjo=1a~@*UKF
zK(a{EpPh339PRl)b@BoPqY?$AWY#%D>wm3CVpyL=ki}tW{JO(XB(DMKNZ)K12#<L=
zY2_N5z}n^hc(o+b)4b#|=4j9_MzJCaoBqw!x}plu@Ep8PhP(3c{GBN-D@^N~a+>l}
zA`an2fpdKuZw|PuQr*-xatR{BKj)T+FWg%{GxrC0Z;hwZ^;xlxDt4TKWVFqADOtPg
z<o^(QZ4aGydVvlsY?|+>*{szy)OnBZA$K5-M~luEs@dK8!GOI`8ngXWq8i)Btbcs>
z`<nRdegkBJpia-oo&yLw0QuIs{t5scTMEn3bpg*k?x4&9caPb3CiViF=s7^&1|%>H
z#swdJlyEU~`Uu{=1^r7Y0`YpIp0fhxtS2#A3VEhU;2ZgbUA4_O32U&-HO1`qIs~Yv
zURD8<^34Xb7NOikLTEtsGGBYgFx1ufoKL)&e#B0*mdagtz0aP9Noif(rSYV*H}o0f
zrLz!ApwrwtzeH%5Ygr5Aabj21Vn@hDJM4==nBX7k_`e3_iV0tu6_Sz01><X#Oy2rx
zo_y|e2q@04$@7CiUDIj}a_<(xiu(S_eho4kzbsEQ9KL(Zjs8MiC2#Zik!Z4Ysq44z
z05LX6v~u}Y2nXb7nvL5~x$jzGi2*p(XB9-BZ_C4oIUIz`SnB{EpHacMnwV#wlN(5!
zn23RF?H5TaNyhWgz)L_$j*YitZ#s;XV!Y)z87sB7k*KYNEnV7$?nh>Q@*2Ju98n?q
zJHkSb_646!1=T}9a41>M1R{~ydB*>g1Y0tSw-?xatqJGn;yf>(ne^cv>LxsWxqS_o
ziWOw?;vJ6HzXUY5=fPU4I_<S2J{_aL32vieeHB#?cpyi^?Ci%n+7rg1c`u|Bak+m6
zhyaqI-ZW80DX)TJZ_ry|`&b$DBt@}uRV>1%op9c8QdV0dTzq8T?H$#!Od41t0HA$O
zR<!5mnm=o~4jRo(PJ!L5+h2ZG##9E6txe;jU9jA!i|p?X-=K9iicjrA@zxB;B!-I&
z`P+E96wNYZ{gXBO!}$1VNCFm{gXYVb=sOkQ>w7f0q2j{$k6+Wz2Vk9=K4TyFy`QQY
zj)b(H2@nG%3vLx_FI<+z#{hH(Rum__)g51%VT6>CfuN7xe-~fy6Gjy^e&24;cgesF
zB3f%E>uk8}+`i@<=9wLxN4~$Dgvcvem4|svB?oAbUn9wSpUL8^2M@n@NpjCd%#=xk
z%nGkdl8mwhVI^=e2Xi>;xgyysH{=>qH1R!=Zq)g2gSJ#QhW9V06K5dGJT^|-{@p-?
zMP~_5BE}3M%nx5c_1lF_ay&VH7v?5UZ%d#T4K_V#&P-4$vQ<c(-9!3|Rvj(b4rbrl
zI94RU7+nziP+|l!dw!8|B0c3zb^xUr9d`N0UU%{tfi6G-eE={Qo(Gnge!}PU8RrTC
zGo-bHee!B94}KVi(8P9z<(b-dtjz`aqY3hVeldI7L*=}&?Q-IjWMU=g{r1*!#ZRvh
zXiR`6eD++ZaZi2WiKE{05x0oyhEHedUr1a<*^~2ip?0?egntPHZ+nlRdi48*b#-%}
zQmzr83MPq2g|8Y9A~oEoZWgBd?(KM2&${>3(!11w=0vUH4hQlNZ7Tctq>_ks@*+N_
zq&nA4$y^+bIv-^BkZ6-KehQM8Ha11qa|U?~N_9EaEQNVd%DKplisq5U1^pV+Go4Gi
zL3-mBvtM)ghZsWWGuJ+6;~drw1fCoMuV1yxLLgX+$lcb5&SDM_-g}z+p+X1Ip)`0&
z+2smw!Yj{AW1zh)YifNdP}36SP2}Q%$LRNLUE<ZV^`lWO?a;?kXbl|Uo{6Jz$K<Y)
z+n%c8uYS?;KV1<&rX!CL#YOuJ$B+v>(&h=PIlNrxhyjpSV;Pq>ArlQ-z4?B!sOBH$
zCs+WWfL;_<O*6BqNx70K1Wh@m1d42uJ#!I^4G%Jb6B?AW;wI{Iw-fRsd)TN=N{HB$
z*jlLy(#Qr$_RiYZ<A~j8!h_OZC`d<!Cx18#_5_5?q_-X0)&w`S8P9>};dk${y)}Y$
zOZkh>Kr|zdU32^me(t;FskcF!KzV0gJa15}301C|36Sz0Pq91gr)!q?>$Qjxm5OgW
zkhc6ISkwe#GO=o_NIESIB*3@h;;V=fe$B-H)_dG>+~t{U>zYF{d8nS;(l549z+TJP
zZP$ToD)!wQ`S|D^3kSZK8Vw<;p!)%T0r@$8YVTdC<!&~HC3|{nJ*dizynjUDxWhuE
z<^$%|)`Iwq5SeyDN@@rj_p(V>7gYe>2ld3oHebA6ijolN<W46io;r}`^W&`AX^JhG
zU4|~J8L8OY<*>eGY!TIR2jY{HlW{^vq)77dnQbT-J?omWcG)Eny$gs1j$uZ%c|`!%
z^G9-9BzM6^YMj7cUH%>$&Ov0y=c?JUs?yAX;Y&u(qvx>!N{;3MDPXIMhO6E>fUfyl
z^tqC0*?er7^m3?mR9wUwcBek>+6hCELaq{#c-xREs8BUgq?9bqR{4k!;Escy<uT@H
zw&m+M7G$O8&RcLE12R3kna(#M;PEVd31no#ETYx3>VS(I8^`s)g=hW_B4wKnnS5!;
zep-_U!R%mP{rV=@R7l&9X1B@Qc+~<KS~n^)%b(I0y=MCuN3i6og3Mr?;?q*nFT+Uj
z&vq8NJU50wGPi*ylo1k>z#td8Xr@XZJ$&hLX;sc-<0RJ|_Bp2dAtv<_?;_ixir3B%
z_L!(e++WBs#Wu+e=m|z;AhbCqs5d9|9d;D;Sli1%);`*!9(gd9hozJBwjUIvy>z#Q
z(+auA<}vCdHId9fPLlO{OuA_bLv4tB(h8aps{(=M-MX0dk%piABDbzWghGFWfP+GE
z|1nh=k|faOYR_NYFpeRM3r?UdUecMrrvzqLt8ZKIu!DKX`!>r|FH~*0mWlo5rDO7M
z2RZj}P-`E;D1<|DIHa9)Qiwt7HQiYxaw7U7`VnNLZVQG87_t#?WiemXtaJX1UoOT4
zKe>ihi|d@>YFs$hCC&@0O_eT97vskpjh<X0Q8EZnn!E<}4*YQNc*(ZSC0B1hT;*#x
zvrjkacVa&ai{;awTA!Q$pi_`_SZx@T!yIP@8q5PV47%&F^ZwheKRT$c8sSQ_e>B}9
zm3}~6PYD^Au|=3NGVzyOUKG3M7t}>&kOtCP7zZ{G`@Np$i30-<ka8((fuy#d6cVn}
zv-qStc+)P!e;r>@ZR16Iboqc-zUgiOty9DCxCg!6_g~C_;DZ?!OH6*n0GTa4R=P26
z&GbzKw|e*MgJ4;rH+ZPw`>FRWp_iz*k7Wj#O#IVyB@rD@piuk_d~=?``cz`;yWwos
zQj@~8;UK2RcV8>xRPp${XUD~TbYDTzlEFJqD}DAoA@4>b7A=Jg4fQK{dCd+n*CQf7
z=&Yw}ov;7^lkA=YckA0XvLi4$6=bBvp};!8QyundX8|7OOTG3GmIV0=*Lk`jV=)wo
zB*w&}UR(B}z2SJ>_!wT^(Mk~eW87Ds3HlmEtAq_N$p$=uc(iuEI25@-Ed=1iAod76
z2?=L7fhDThfUNsP(<BK}0^gL(pY^i6Oj^Q_oYDS!oMRu0LkZY5S>Q9#2~N4s>KHaY
zF-Ww%Ge#8d;kh?E<?;$|OG0mpVb|2Lf*IPbklN$BM}v=J^_<QO2h~bRq^Hi?@Hy2j
zjE>PWt%?hZQ21g14bPLCPO$)V!x=R1!WJ};Po)zZ(||PmpuLc|vMDX@x*dsVVV>4g
zC^pVNp02i{Jcv<TE#;x+bOwU=j|qiw8n>bz&c62#xYVI`9Y&7Ed}*~*6k!)Op^iM?
z0^$S7oz!a2EZb^|E60tTqnwRH+MedgC%3)Nij$bGrnFq^V*6AAO#%!?*CV8PA-E>H
zGO5J74H*k)*yFhl?9=_<bdX*SnF;cn%dQRAGHSDu4oQe}Az7TKp01ktJK3)dd;kHa
zxbbXD1TG3{2S_j~uOWjH*tCz3r+#t|559b_<Qp~*05rz(2xQjL#7ZOO_9Oi~nEM-F
zW?MRpz}c<RsS<cae??}6N0a7df5V|O1*-(X4F_IzpcC2@@4q-q64xAJao;azH{a09
z@Y~G+4h88mlG4TBRWW1usK%3XLhqK_fzsl3J_!}Dv`2{s@f|`tfVRk6(VTG$d77C)
zS#6$4+I)&{k1wzNpzT}CnNmaRhB|}qM&>b$xgdNv+38Q(B7n(U<Ar`!r2>6S5FP?-
z`VpnzzyuIMO<uSF2t?&Pl3OC6*QQugR!nlS`PSC4PGNUHnqYrA9B;4lo`O=*a|g6+
z5|tIB3l>VL=pUz?>C`}K7(q7ZI~$EXPa~Y}zP!LDg~0iZ{!E<;G5*HLpD8X{AT!ZH
z7lu#ABX6({OW@ir*J6T1&q4Unh`P>=(&G@iDoZ1qtFCo!5G*It=N~hs*ZzPPAGe1V
zM`vI7sF4zQ2_J9PHypAPQAg9ovt6sm+PPg8U|>2dLcLTfb6SCeUCJxf)Qg_vW&+uu
zqV)^^51`xc1Dd!yzuzsb4ehGKECep>R&DQ@5p}w>%Uo*^NsZ6f>0LPZ6qr$&?FQBM
ztOc#*6t_sm$$}WYHkLNOIrmr`NNyKx=W33CtZL*4cEfA#ShM(aF?#PGg7+p%`j}f4
z6NPDsqpB%D9e|%y@|{1XzSf3<p>F8Oh9n5GL9&I|e3R`hAWTu7gOaM$aAx@SMiD)v
zZ>5mFZB)#Sxt}SoC5d9!gJ^q08T0|xtX%v6n#Kg2IT(KIf3|~=`6$4=Gi3+!#A9%^
zIN4N0gYelu<1yV14sBry=z`%GyuuqfX#gyAd<KZL*aX_x6!0y3&P=`LI0yvcMCHfP
zLE9`9)@0yqrz*7IEFF$TN$A5)iT1-FMh)VWB?1(nj5?4rjH@OHaU%Ly&QOd`bk71>
zN-N!eaQ80Z=zeQu=NE?)Km1yNq!fphJ}Ez?PR07B^Qpdq`J)XnL&2n{%BVl!n&C7z
zS|>t<raUc~K#Odoa?62w-0k#2Hc;y!+TcE}{DS2~lQ(MouPnZbhX@=Ke3S#~DOHt?
zdt2=QsRe;IMwd(&Y-%{)6M1(TWJSm{|A3H*8dYI1P!OJ1@YXeR7Nq-n9FPi_m6&rk
zf8$%R>>8JEC&3r7XA{_ZXeFg!b9uC)P0~X4zQjT=tyO5citOoNq^g8Cl;r(BCI6%R
zlxGuqN&wL1%1~vZSn<P!-Rw=UzQpvK){z&D7GiN>Az;f?qdc*5HXl%h!P^hYru7mt
zwakGh!wc3maX2k;bIdnGfPyM3L~grKMJiSHSGCK+d{k_!4>S~<UA~lR5lZ%EGbhn&
zC4dgG-`RUi#>2!w(ntR$P%V6sKjdVMNnT3p^(0wt^`B{&LM?5yvPiT5wvANwZE@43
zFIS?1W4RqtW?PVWhFYf5szgUys?rQCrpwG-n<&XU(c?y9?@hPp|7u9s>@AZ^^dGy|
zE;Xq8>R(v5RQ?Qw@{c@lUj{EdBy73&KCigxY+44jO1arAfpI9Zbr92_>m$EiT+<rq
zyyvryc9QFJuG_pXzEf!V>+F&M`<O`HIH*P<<P`?EE~sWch3vqKZPFkS1dcq@andE5
zPsld4b}qhAFwn~$9tR02eTQ~f)dIj$k@y++Qe(^z9l!PAFR3`@ck90RyWS66#xK|l
z@;!|lOqap??)UZ<W|OYXgQD6uqd>2gE+bB4vP*5}9n1US)n@h4Z<9=Y4X3-Rw_Bwz
zQfSP<!_|xcN;U#C%~vN29@JgCvyF}E5i9RoU9!B%OW#X_!f7<mmKZSCV95TLC6mtg
zdNX2rZ0%WO_&D}i0%&dKw8klso+hBvvps)`lzQkP`*tZfiKo2v!ML4|NbkXG)zp-+
zq=9J_K)F((d^c=}AWO^5iN9*n$}GC)m@#Cd06AWm+Qw~B@&+qdxd+_YM#Boy1K6@Y
zzHMrAKevTkS3aj1ItX{@^VeANdu$_wdfOL`A6M+m{bq-XU79M0vjclQZV%?qN`bWi
zN=A}GsYz47#q5!=M#d%IoBPi7C$2ZOyYP!GyG8F!+n+)3wXGfc{;Wgy6`~nhKVlmn
zyEm;^Cq8G6J3vTC>*G`@6Qa7S$L(qWVb0Rz&vY@M>Jkz|pT;=t)gqWMBY|5*#?u`0
z>TZpJOxW_kA|kUxwJ2Kxl;b1Rexv0j$szWV)Ar5NPk;J){Ixngxb}BlWKfOPXMW~D
zxfIG)0eWNjB-seQ0vIoLS@^3u<e78a3clrB-$v|T$S1<OEy>RBtR=DeDAh4?AP#Hm
zN1>3%7j2?*cQuDSd%XYFmO}l9t8Y<!%jjv3IFmuJq3z=#@3FCoI?|6VC=2{EGPGzY
zu$fAm^v!(6cBdQ$%j%yza^18|S`D+Pn4dWins%<=r9f(`fS*58JuGft84=YtrwkZR
zMeohc1a|aCu2V0UYKPc{tPw9+8&cCR9pMtyO!dzM%zu0dCsX-K3s3%BAR_mu2)K`O
z+Ube%ry6IdjmKxizXi_)VjeX==2}v0ZFZP{y!ll=_(f*&lxKq>t_nV0ie1QeNdRCT
zO}a4L1PeyL4lT2xyUE+yE97c2Kx@PC*_q+axU+SG#N?Wnto9$TWYz^#J1q=hZkNoe
zI62II`|@fO?YE%hsCFuNt}YM&Gb&8M;tFXW>>LV8pWK_SzHam^E*kQ3^D9YWIhM5t
z5-M3k!E7qAZ}m+Al)uQ_y6t~<q!x(iC$l2p=at{58{us@8Zmotj4r9x(f06ZjWF7}
zjV-r&9$+^{y2Wn=UnGcpYgn}stCozQy2L+plo1{AVj(F(wA`^XjGgEvBN>R?0HkZS
z{9lP#lMDRqP^CWCRxR>+3XZrpob?Rbgo?az+`wIgyGDted?PC|Q29*(XrEB>(uZR8
zB)&a>(5BHK32deA3<tiDL~AV1%&VDph)Jtd)zcYsB^y#X6B@7nb#hz<hd)to!0$%$
zcBhxQCCn>9@?}v2p?%aBG4^(AAl@Ss3?DV&dp^Qs#w<!oZhQ^iiokzU$h=dYSe5<p
z%(CO_679;vTUib0owe81)+=WB+H)-#tt9qZXcejf+dlZ}J%Y_-A$;|jd(zK4fd~;F
zh<|$!$)mVakC}(mPrbTg!*P@V8lx;Q1u#R=!gb?qcOM&mub{Xp#@5*J_xI;!uk|qb
zm*zz`LL%@BOA63smwIFTKXUj=_0O_qQ{QhCn5dB%vohSdDKs*oFAuej@lZM$(>Dv~
z;6s1oISa0Ua54lc0JMn03k8VwH!?To$TN9!R<x|ii^WyEi7uuF^aJv>>8esAK%Bmm
zMJzl2z|N3aeDa6^&&jd`{;V1l!n<kZ<}g|H{ozHDI)AMQRr~r{pRh$-AtXEBVY4e<
ztrBZH^EBkOG64!4o2gBKxp=4|Aj`8D{B82!e`ji!&!};_su#Q<(@A&wR_x7~Ikoh6
zk&_NKda{?YFzG{0Ie&jamI*C@yQjz1-giLjC~*ky#dBGr6F!nt{PGlSt+@CqqP{2p
ze@7GW&lIsFvSL8p92?<q1BuGKO7%?h3!#){@1<CtLTJ=qm_d*U0qvGaG!oji<Vb7i
zwD*Fwx17t>YGt|@@dXH{&cH9QY*U2)FHYG*@M}Niciudm4r;Igt_J~`YGIsA&?hmM
z?EU5b%gUB1?2g(FB^iNC2)??b1At8oRK0le^G~^p7A5a5OI`wG=O_LL5i|?eo@XDA
zp!=~B%R{SC19a+%+C9wBeX<qNoGG%(op6ClnW`<l5Al2b?ZQ2CnE8ybEL&{u9X0iN
z1N;xYEMvi>#0AE*7ycaNE5}V+Kb2MwGd_w64@#HM01~Hj7J*wQYecADV`|+`;0=at
zY&5KJ04N&a(?X!Ky_}X4mH?r<RuW19<{CLy?~(up8}{&<U+Xbi122|j!fv#W=^M8d
zvsHAW)Fvw}*2Y6cG*Bnrzdxv8l>x|Y!P#@gpDWuse*b6wSv>?<E6(#Yk4Sef9bRJs
z;2Wd102`VVJW&Tiy|V>8l)!o$!&&vr;Hvqm9W;Qlqd`w-HHge^1GPzo*k>v;x&!zW
z=zUADa-u8VAOqB#w#KQOYy>a}G~Elvs4Lq$0#)##1nyh>VBG=Qkd@>x62>nn(Mi9-
zcepuQ3F!}(&s%~>$0?OSlam&~#C`^1>(+|RsuE?=#2xl+E@tn9RmrLdZ$0s9mZKIo
zB-c{pukA@XYbAWU9_+R&h%b4lAza_bSO1H@lb*yX%R)~&Yy%qfLWv1=YG$9401t02
zD4s`+JYj69<MjL#w8o>j7{Wrb?d`s-%x1k9T^CoK$70ogK>IPl+u(_RUXdmSu?a_1
zkm>CMJ{xc2<j^(RVb5p=9~tU7HL&o9a1x!lk&yLLyprhKrxx9B3HmYFm)ml<nw#ou
z<j%X8iNl|=G&|C18{tr(B1=y(c8B`A9X>S^crnNq)ZS}4D8}wF|3{fj?6>tFq|icI
zo_58jj`;8ORL_{fbMh>Tkcf8=CeOBukz&&)q@+JBB~B@1X<V31IHA;vklxDo;$%GP
z&@T5Pd$?iazCt=}xNS?#lbXHW%BX~jCj7E}>0r$8Vqv`hWYCaNk^eU6)(1v2X(W7Q
zz}E`Fk!aBBlrXCkTq4Y1r=uO5M?H{#Omr8SR2Rgl(AS;2WW?DnIzRcEneWlnd)?3N
z4dFwO(lH~s?&3e=VUP;f^qW22@%?9^;a>qRy{Wbh?Z|NB%5CCe+ZOs*s^t%RSY#vS
zo9;BJ16Y;SWly{%c&8D&n@T771uJ9eXf1emqI;x|XLnG2r_$m41ocCIk;kRsbH}{Y
zDI;ML{Y>Y_a8Vo<AauGk$U8`ry7RK=W}3F%tCO4Y%Lj&Z@Re#0h-2{J3Bz6;Pv`-m
zgy&Uhkqcf11TDc|LAZGk`vF4f^ng`PDIpWtaqKZ$+T{b%o)2eQHFanb2w}Hr@?&on
zeka<C0tB^>q?Nn;@5Ry$mL6dgW|*sDW}a*_ie+2gn|?4p8up5grxvzy;gQ}-uMI|B
zuK3|&Xo@o79`Z96z1*Iysv%>u+o>a9v*mjh8MFBX!{aY-+v{4c%_#it)i0Eoa`<l<
z<IXO>xBCwG@MJ2b(H#&V-XnrX2Or7spmn&Pe#;PhJ;cHsHhz%Vz_ugo|Eb`RNr6j8
z?hL(c{4tRCx?QlaN3_%j@Uqrr=`PfIPS<Ks@0C@juT8R?N7xU+O^SDEA+N0Mpd~)I
zYw3!xVcd!iS)1=sD1VtK%0WJ`R1_WCBZSXt-FA^Ww!P{~%`9Q3%NITan2XICITR<n
zBx)*1{4;s04Si#A`{M1qnx)&@cTWM6i5zLnh^ztWkg{}B=yF@4n6u46i!m5x!w3uX
zVa9D@X;n$nT96YP;K1l&K`Qey59g~A7mldjSNrX8hd|;AO=jpujO3Y_A3CQT#tLRn
z{5Qk~pX*TuAcR4*x9OD}t^)V3Z!g&)*Cy2~uQgfWM_)gtJklsMofz^{r?$UL4zXJd
zb<#27>9jUK?4Ot~tlHu-ixvqKl3R%uX1C-Bbjx7R{B-h#iF`h<2VR*=y)@<jQfQE6
zHp$#?Ga!B6fkMn4y}IT%NAo+uQT<-c;mu_JmjvNcfWd5}A{Qvv;$7s$fDFcj!|WT^
zT%b;_^|RBckp9V1Iga4lfhb2>iyyxyFGsayJ$s;<tc@wf&zT}<PptMy8;K-4gJqYL
z9i_=&FU6Du{D}M2H9|~1I10!G+kIX+IV8EoN|>jK<7(4oJE^|2tF{AtwX6pL$LKA<
zc5U@C5xkboV@dW%D+7~y!#?&Qv~l{PFr9QvXeD}z)pF|*?4m@vn7ttQCGFd_+un(b
z(Qn1xPH9Q)uC{TN!Kqiy_sbZEi4btW2?@O9=T4NyjYCN!<Y6k7SBf;WOA*yqrRZ%%
zh57#aYVjb@fH^nh1q2{UT?|rcOAa&Z8_;Oe8}sj=e`{XqFH1yU2-LhI3#;ps=%Wan
zKF?2y!*i!)>3YBk+MSd`B*&ZcPQ50SpxzU&$i&AZ$V~7a*ew+x(@JlBjXVgUsz`t`
zNr;=&hbZ&gnQ(sIoN;ON9KG~0k`tIKwN^pOXU}>S5FS^3MAM*dbTxY>>sQ}{>>?84
zs-oazrL7N(FM4MJp7N4nZugRKPRs4_ChR-?JbSKg{KEd?>kgExR+g-Jb*`ywfbcl|
zuwS&@holvlvUG0G`QX~@%&|nXY9`EQi~qemIvm<iyQK@T9w)?azMQt*<4^dV<N8Zk
z+u?_L6;EbAYm@6j#BE2hhV;DH+oibv!EjkzC#QYMU~w7vR)X+|{tSP%vzy%O4Os!p
z){rBnp;^R7U*;_ehF7VcV&Z)T$Jo_1+RERafZjBsR4&GI^uqk$hSCVGs7j#Q)7|P>
zAN+6Z+_G!4qv#f>tn%{<__saGS}bRQ;%7}MDB{JLX}^;I(cl{}Zkm7W)J4~WeaGm^
zHCY>uv>Hy=VuWm$=PUz8YRhe7`|c^x1jC?Sf<U3DrjAUL+u)k-;=MOJ^^~y@*oViV
zjQ}q)t@2<9{f`Jc%gw@1k9F`-fPZh#@zz|vfW;^~|MxF?GP;(}gC9HOJEztH@>H`W
zy+ZCOXxx)JQWd{dnKs@J;41q<wDW=TY6FI}0Kv$Q1Yh^}%sCS^;BPB*f$<eM;<7$J
ze*b=wJYB!n$bYObl6)aJS#hW(rMs$JEO^RQh!1_-hEw3m$L*-z9aPc^_H8F)B;yii
z8e-v@nX=1BCwaW;110nk8xzrnPUvE}B^MUS!~IasqYV&@Z+*!;Ev*UbZxiD(cu-mu
zF!qpqK8p5Hs~6y_q!H&S_Sr(B6i`b}P{+PJ&f-n8Wwb8D*-!RpxlME8xG}nDFF`HJ
z7GDQg4xEQmu=7ml|E!drZWOwS?>Q)gnC+!NWJfkUM6f%IMwN$vo$je}OM;KdzpUG6
z_1Hb4AE^J5)h4yyh}|>p&!uw7LI7TY4>SM5+-%m>Sp1;E<QaGWIlf@0vs;}`%u)>}
z{MKBJgZ@P2cITMQr&`S@@@3mZEka|_8wx`t{=3BDA_Su%Vg#mAzHd$Oxf^3mzOI~;
zEX@JTmk)l1*lOxQOZRVf7Y|X96AWQp_3~=pv-9v|j6blD-kA4IpYTloB=7|M>v~9s
zh+NQias7P5;eb>?*II~&-@|#Jrq{LUqCtdIY}Y(i!OW~m4w8hFSz6#Z#3r2vsL%!G
zdV$OszL9lC@xY;M43seUN9IduZYT6k6(5WPgO7z(E9RB&b^nm67LyiKPc(5?s~%Dy
z^ojcd&i9cZ@4-VR7Yq_s_edIUvwb}qJ{$NE`yG5!?5+5`L=qscs$P6gSVw2~Wf-F4
zds&MZMcixm1)5zy45hQF0<#M_RrVZ0WD7d*v(%HH8p;B*9S)`{!bG>&?gmoltqRYg
zx)?KL^YlGzz$WX8^|>N4O`;s8YrKEW)?fTN%VADvF;O9^+<K64?q`0HkpbXSOBMEl
zuF~^n{~8s)>yvm)07U@0ko}w|)8R>=P$#Jc2)->42vMo|u9cqX8O2-o9S3~lOD?NG
zD1I8?R63tU&13=il0wUJXvG|p>0J-s={hDQfg?B)U8Q#6I?gpc@ZCrw*-Apx;{LuO
zX}ulHCs&@G-nk-k2FOqEX-rI0yk^PUi(V#10?e#^&_Z9jwF2+))>t2J-Q>5mkM^eA
z*Q?g6^_?V74d3syBWVxl#-cO1`gY%ul3msg%K1MSaNn#b+9ZeuTs@a|E2+0DOgQ<?
ziaFxO8w*3gg;=8exFHdQ_fwfRVunXUG3v6cMdSGL4Fh%Cy7fNFGn=P{tQt?*|GHv#
z@QG*znx%RlEI-pT^rV_7w;N<FdwLj8#;=@7NB%wLkLNJdPPn&p%Jmk<xk+RLb33EE
zL~J<}?1?SFm-e^iE>E)R0mHP}Yh)Pk<8Pa}Z)P<;I3Y_u<>kIzFj~QnQanA(6`u!Z
z(O>SlHl2Oe(RKr7K4_YaP&fD;Z4B>SVv*h<1B6Q|5BD{M`&ZYIz-$eN{>oVjb-v+m
zahX5vU;tO|dUd|WcDts_v+Zh$xOalrGdISFeSPDxK<cX=QiiW0>9w;Vre&hnwM4xl
zeN=x;@$BMt142(lkLX70pzPU3)?UB({97<3aTwI6sCM0*kRM)h?Nk2{9VGuCE|+yE
z4F}&-?aCwQHnl5cw?W@y&j|bG$xUDnk{S=XPH7yUC-y6=|D(4sFeiuehV+X6VSlyr
zFV2iQx2AJJm|4&8z@s*eqKorGj)B7U2fr!JCaeFW#rf=yAYcs3eVWsgo9-{DujBDE
z6$`78B0r$dMB<WE{!1vTL<AIsQo~-%VHSL}r9%cjMLcG@(Oz~vjRGSp1sG$mbBrE{
zJ$-zf6$1k^dUfEOyd#L42P#Qn?Lw=|NKylW>w{eMzCLtwsv{zOX`QtPf4T72-%JnO
zXm3{X3YEVy-2i;)4*s1<S5CpeJRYYN>Fo!pDb0f`0dAC^_SJ>{u@&<7BdmhPwSf^c
z<AJfBAv*7xS9?A&TETnNCOQ7xcYn2;{AaHKBSU~uJlnEOl64PNEnX~>BN6NxyDk(f
znl0sDO{4xgW8|N|@_3Xoo~(G2&Vke^`420&TLi5(3^nb_F_ihQepH3;^#q(Voq}6w
zBRKdv*uE3<xpt+`|BV#-Z`bS3-jahqLRaOt0>L7kOKW=sZ^c`##J@a<{`t89e|=ne
zjc_EURZ#|U;j;j6AGk~B`!v_0J>|cA5npFsgRq&LPdeT--~gzEI4~GXDIT+3T!>-u
z{MR?vP#BQ)PlRbzkyP4}H*?Sb`B@<ZByKQ`zvwLgcI=PE7CSKQ>9^0k?v~z@ckz{!
zoLcT0wtr2C{`M6e8sM(UEjr8@sk(8Kl2g<D6Q{P<r~8^{*g<j^<li~8ueKDx2D63H
zBs~4s&kHzl3og+0AS?H8x*GrTCA;2eL5XU>t(WLyrpxv3{r`^;AO`64M7$9EYk2&}
z=>h-Ug)+JiEUD4D&+{MulXw61J-HOXeWl64`LyHizdle5Sb_f<4)<>iBm@3G`6;kb
z#S_vVQ0e?z7x4dYfd9V%{-2BhCxPg_n<hWs5U-r5RF6Ewk9<GJi~E#~mqnG0`axv!
zgi<p#A$v~!ZFb#f0yhZn-X&6a93MZ>X1X9*&=2!}rRDzSq!<f+<$aEZ$#`V=oKoM!
zXL<L>Kl>4{hJ(Ls`;oB2lJ%dz@&Ep-jmC}lV7kM)G!d2KU-emQO)?OUs8e&JDq0CH
z+bEh3d%O2?*PN$l{@GXm-=C<I`G-9G0sMQ)=I5WDetKTalB_D$R_yAD6$C4cGQPTH
zulnxWMx}GDnEA5{ySWwo-HH9zr^ny8{X!I4jX2wGg}FB>n}=w~4flmQrhOpdeTKP&
zm3bnZ$th#i^IzQxynm!$>PSF0f7ntn&5M=);|31d<NwKzpa)beP?{VXvGO#%bgY@i
z1j{_s%v6|=sw?83uKs@=B=8%Z?mHGU+y(*8K1=d;DZ?TWM8xBDnnwo<T0LLH<7|39
zthB>4et|wD`?CVGO-g5M9sWma5dZ2X4r(O&3u7oHaEw}^_V_j=K|uGgdrt<k`djCl
z)Z;2-ag$AdUvW3gwvR()sr5yfztqF|ua^Y1s)F=+eZ$9Ws~efSA1j+rKd$`>=TM(_
z=d_s_hJWzKqSX=$3^}}uOj6Jyq|CBBhW!#7fg*puXhFaDACvKan0OW_U|t>2aDF)W
zs&=E5kX;)l9bxjRW0?{f#xnm!)PZCDwT53Fot;_ANDhbHK$_Q?495F|+?5f)7MWCj
zqgzaEXLvumvAJq@W-V4~W|EQE?@H#OewE`EQsfg-KKL2$Ohpo}aaA{EoGfdl!`QD?
zyStbB*1vo%Cx2Elm|m9e#6^5?G%V|WUj7=j-k&|oHpdPLy1AsUVX-ybR?q(G*!ZLE
zD2`z2=PZ@jr-`$MYpPWq9N0BQrLr|G3&MzuhF80i5fKs;cA>Mi?&=>{LmTX#r`;CX
z2%+NEf0_r8QlE$W<RGQ|SAPi)l&I8g^zrAY3?^km3Djem1Vt2?{C^E+2|1qNpY9wg
zA7GgSC#@O8eM3I;y#$1nE>EPszv4COiM_h~WOs$h28JGu(e3U(V*0!FebjRsf0^R|
z_r!0B)n_XOu`|M`DVi--XmsCQlR8S9r5q1M!X*8m`uBIng@<A3m`ez<+Xn%&M%b5F
zv~|Xe>}KNS$T!Ti@(s5CrkVtdszx@@>t38~VMHH=xjt*7NUrAUUZQvA*-j4-pS~$a
zW`iMgPPh6J`IE49Z!5z+6%)2|5QKxa6^hcJuJV~QL|n|5$^G=1uRZ;0MFoc0N5uN-
z5nZs)j==DPR~%c%`#;CZ0^gAKc=yM-uRe}Wc1(1tGZhRhGZlPNmga7@(@wcx-P>Q?
zS)X9l5vkTt=a~)A6<-v*9tJ0AZfOvg0>UTUdZQGf91aM2M{Q0iZA~Tm9@{Nk;;PYl
z*&)Mw;*J*Kaw$!ZVUQ(d`k_=|58t$7q1F%#9?{3=)}6lL-z-}#6>*>TP;kKQiIk|n
zKhJ~h%+>3gfzkH0r@8cO{M`(Hx8#pm7;%6glSG2}^rqf#IdHK18-HWP%*0S@wp*4a
z6&ro3YNbDnh+a#L4EbHH*hbWn_9A25;H}A(`bOR4>H73b9%F?kN0G!791~|lnTjte
zeGA!(Wxp=eyKAlWdda*8tF22dac4gvLrx(e-FbwvpMKuwIe-(yC>f7B+d~@8f1ca^
zl#m@dl{J1SGClBo&<?TOQ3ki=CK!kRwi`&vxudpcrOfV<hvo2Q&A5d{1hCg*8#!yE
zToO(CG3u^u)9Uu)>T>ZsxA~<k(+F;(W@AO}dVS-Lxj-SzM{@mD>Z2&B+~<x4<wmx1
z^c}w=d%Bp9-xsBTp!&s@lv9n?;U*r(FVX%Uz;%etm{7teYgfmii29qS&%4KU1lMnD
zxO`nC2g9a%g?qQ0BCwo-X+%M;^3pW9<q|4@GN$PK{gR|`j~4>GKV&K4cvId`)0aa(
zcE>G|&|8&L2ukCOmE4_cME2DXP&$oC6$a3lvq5Pxw5ETtL6gJ=Qr!6KHOP<%YTh+h
z>QC{9qQuMTdds>J9Olk~%-J8ywfuW#mYjRO@He^qSP2${c=gS<T&ykrvZwHvY!Bz&
z`JiLO5KRfVka~Su`$(#EC;fzFUPoK{zG$3hVBz4HsKa>o!CF%{M(&*DQ1<k<)TFpM
zM47K?=Y@+j$E_da?NM)~>13dYD?ZdyBup%tX452@$qb0~V4B>&d*}kD$Slw#=(d2*
zmWa<`p|=wEQo6sM^67G4u_Mj5>4euWzUXPs)OsY{<<cF(?fO`@7t461HjpOam;{M1
zMK+~Nap)JBe4IH?dTw090+SlQb>Ak>5}wvoC-nOrOpK;CDk4HqKAH7J_RzyJ$e`@$
zHnQJR5mFaRi1FFZ_!<eWYjEYwk(X}JM<W;bZ{N9#Uwv9Kica1;v(k7V_;5R9Zm2Y3
ztG+Gd*&$-kWv?L(#d}Xkdtwv|w`kE(%;kJ#a}{*UeKM_nPk2(~QH3?ut9&lIA&}y*
zQQeVD8<~~9?w=s#?Tnqj!;}>${g4XvvCQ;JcA0+M`P10pXLdmI>x8sP$6y8ndxa?5
zxht^D5}$d)yB6PrPY=Ez@@x4IZ2GuVxbzawO_@LJ1Qop@y=r{wh4IlWD>QqEjZH3k
ztx3j@rGu>CpvqDabL&}#>@zuS*{_$P8vJwKHot5?#6!KGNt4`F^l2D0_HqXuGSLga
zsaX}KI$#xTX!1f%v4s*+0VCqlVZT{mUbgif6Gb@H^v-z^#LKn*8$NY|pIm3ucPiRt
z55=5k*)@%4?Zu_uoZ!7Ea-3@4TMpq#np}|vNl8_aUogy++ZEsCGEps?e(S$n-Pkva
zH+`OA4}4Ji#$a1Jv#9#tZHDF^9^k1-uHU4X2U)9rnV)T%I{qT_eDffB)BQ#LeyW&{
zLVLV%R<8Ht<6)0MX$}eZ)%bu5yq>bPzJ`XE#a{Vuw<gV=-sRuZ91XH(9*A#I411dM
z)UJ;(SE>&PguNkZIyS`whW6a1KR;JE`RD!qY1kHvclG+~_XX@No1PJ*BgR{@X~#ZK
zZ7kL0vsmF?MHht$r%YF{yfnXn-Fx1=B%b@>8YPZxO*5K^@-FU`DdxlekPAE#wc-KZ
z>~-R#p5C$T>`_90+YADvt#}aaglQox)p){5icP<r+qCX;^gS7^M(ia7Vt6!d>bXYc
zj-2xjC2q6-YO`|^AvCYMF#1M)df<miPk~2Ht;)|CY=@RcYsSlby}o$MwuYi)&$04B
zN%bQ5vXBR|@(%su(UoMuLpH;MIqx!X&kIP?R)g<aLXvvIcJU`*MxpcoIeZdpdy1av
z7|C{194*`o6|&iIMZ!Jjib&s9QDq&$_T*ekex*naIx8+fXv|z2rH?F<9wCxuF{TRg
z@IvG2o)U64+un-Jc^?y>jy3l&D*bLJPX~3Fv=4mKe?CB8Hod92o=H;imfZA_<k>>K
z+Emfp<C}pM^^<hvvLA~ZFFSF=Jl*EJqols5tvn&l(X5XxgJ7I}mP_}{MEQt!s@{yw
zJD;Y@x^!>mB}J7d?ZwGG1R&Ye3YUq_u=u%~h0|W~z;s4!robceTJ)Fvxz+E!7nT>#
zeKs!=+-DGjPdkpI)?CqPx!gOGdnJ{uFkIBp)HmLwAHRIsb=&*Az3qzgjdmlww6DB5
zQhz|bn?rP+2yswHbP4_EhJFJ1@H)g>pYu-rwK6NaE<VW3%lr4CdG)8waOAQ7_uar;
z->(EoTL0+<U>0LNcDNH_9Z2nmu8pP@?F_iT#qMAHMm+zeOJh$X|6JMj)ur*?_W4%^
zfgl;oX%2GE<o@q``I%w1usUUB<P3`PeovYYb00GB+%j*w43XhoG&@{ipSI<<J(23<
z9YNem$|y8MxXW?3eH7Cfol?GvFxLZPznlE{I6L|yc;aP^_cH<__O+C}!QaktvP|O&
z-op0h$zZuuQFaNN4S^o#M)mK;HLe#b<%nb?-K||AYZa11S^kgiX?vfU!QWGN-6c=p
z?uS73zzZnb#Rf6lJO0bL*o@7D0oj>Z&aAbrjKrxa>tBK#x%6hlCUNxQ@}1H2NEyWj
zJA*dd7uE9C5V=iER;p(8!e!#UjPT1{;po53|Jm8&f6Bx2@v2GcuZpGGFNct?VAypn
zaoU5kKE=F{Xe6zfgw1TsUB`wIV%YwKg=oeL4s}&P|1fnCf(1=7z9W<s5tC!k{vtG{
zN#esBc(ysxgp>lk+&k(*G~QRuJB*~_exs-f;%21x8NsnX4`NC$ux#Notq%=hGWkOR
zk>S%x=M`wg!Jj1(NT%J!Gu^Snr!%()7uNdJGU%Pital0WZW_{dUmLKkhsjvI=egJ1
z_eC^nXD;xWnSV*b@A_k|Q`<2>!_|d#Z^n@%VU}eL{}p)8c^Dk+ES~h^eli<GOsW7o
z^a4WFml#jpP?vj0*_~_orD*1RZ5lsnG#HpNV6=&v75;c(;Q6?ED8IPr;i%oOw^^WK
zqZYSkSB++>95$~)J^+0WojuVTG*|vB=DLaj4Q77wk<<^DHT4$ei{bb0;Y9rQZQM_r
zeYSQMKXq^K>@3yA398a|ZwY<6d^p%^j6^2@g+NF_KAUgAt+NJtcb*>qg$|nbnQE7e
zS%;g-d@OgR<F|_%o*bQ*+4jA%YuL9cj(3*5=yL#<JP$tedhw!qdqFFE$@>gl9+c~P
zc<i%O^x<l%(rHHQ$3o2y)3spvi=5>YyH3No&=1J^`cJdN(q4w9-7oWe_foEUc<)20
zVw_IT+79+7**@+Lnbq2(X525zo>y^Cvl*6871>|NOUqn2u1|d%gr#}X8^i_+=T0Mr
z$PZ;vU-+R({WgapF!49$Omt<{@SUU`p|4w`?$1m2GrZ@;J_;<()1Y3qkM`SlRM5Np
zaIP*`lH8RYTUZY`k2u<xnvr{GGr3@k1q!OQfvVCQgYluUF+6EkrHqm`3UE^<ziz^=
zP-FCF9xQ&VdVab8AdpWRCZHEd#rp;UtPtdMY{E%(%t<LY;L>iO{0j2IxgqCgDkIY2
zMTSpPfdR;SVS-~>OfE&Zk8mK=`1Nj`=SZ2SlvKX=AkFHTLvc*`WH70BwLGAi_|AGZ
z`#bUX%3FG;;h%*C#!d5K>2rs@{i72=GG2D2y112J^jY70YpvgX@CYC~wiCXrPXV5g
z_GG%ZGMB#KDw?v)ToHNn!8QgJt4+<w|E@R>YQF=dmyh2xe{HEci^E-cLd58pH2#zS
z%-Xf)EAZSWl-;P&^YAI@yKtY%Ns83VIP+Ulpc8lvHPvlXllc|5Ue%kLviu(Gm3x{s
zR^^<pGvj5687*5w<84uK2mUYi-ZQMJFZ&<;S^y~#6cGibsDOZgN|P>Np`%EV5{lBh
zlu!ahK$=Ps1f&Q`FDBFwAV5SwIuQbdmLR=`5PA*wF#mh!H*<f_GtRuZ_szV^lbk2#
zoPG9Qd#z7d2U#K6?6V>>SN*Vs=5?jY(-QVfRHGaz!=-`V2Qb)}swgwLy>yTOk`<0i
zzgFMUDzBydB2;`%?a;=X-84m!KicqHZv!>;-Gv0V>HY)19KYzLnGlT`8!BE&BiF+w
z$AKVJ{$fD31~s=|?nw@kL7NE{1|HhzwZGZjS{W77Oe%?|(S#*++nNq*KNre2Y<}he
zmk0b6pJ%?kWpiOKIP4Cb458!j{q;N4>E+MVU$#dlAe9E47xkL-jpaA{pUp&Y!zvr^
zfl|_e+gRI5D{19ib05W(rqLoQ%QJ`-931G4_;)koaMPL2l7>6m&dY}uD2RyPH>fl!
zm5F05xbUKMM~rlReOdoELv4*@L6;CoOq;tn!QjE-_KIoVj{!fTzi8!GR*4&X&$lCT
zRl*p`19q`%{o>fLH`cX~g<A&2MC+srDR;eV+53H$KSbmr{9x5d!2X)UlVP~n_p*1T
z0O|187Q-`oUG&Vsaz$7MCc`Ire+AiTZ&YoPvOvT7++?FAIg7W$PAg6=4MHgnuAg?s
zyYgfxakTaGyp;+>NVxP3L2~Q&w#T(E`KAV}Ed;o^z#_wVGFs0=?uYuuz9+ghdE7Df
zY?CRrQzwY|cNRjaiRW$JhUqtZa+WH~gAP(5zvOWNK(g>KhK9m`lE0b89936_{uJQ<
zC1<+reD-Cl1=G!8FZ#)aMhD4CGT;DFJe8-LatT^DTM|SaJG$@eZcJW~Gaa)!IW;ql
zA2)1=9`23uRELj-GX+?5d=zz2wHy&C44+-8QIdMIbzF{LX6w+r_;RYKb^#FQK0|st
zkLwf>Oa>tN2Ti(4?Oz&IUH&r6d`x|*?#P1WX6Wyzf}0SnRJ)z<2ytwOk;|DUq4lgk
z-*22mZoR&CpuQ-st2EyK;<&c2QWZcCG@jZUc0}&^<$%Eg{ryjbcO5Qi7qji99Vsj`
zFY;~PBS<~tXvUG|>sKx3_NUF(FXvzt;MAob9j;1^c<e>d_@k6LxD@=}NT2@NH*2Ab
z2=jWApJ@yMnQ6O--ApT4(gPS*?cwU%Kkt1Hfig(mgd@peC?^HPPw<H?JZ)3khRZXk
zlX#Hhve-<~%TcqETRxg%K238<tv3CLZp|u`uH&+uerfT3sIQ5GW^rsyT!!cut3o+#
zpE!>4KG)%mR(qF`&!f=>#lsV#+v85E_aM_lnKgNxN}v<=NMX=Z>yNV`zWhk5Qyyq-
z$vPs~M1xRdG|~YX)@GA);SM^8mS3B_y)aypD^ckE*=J`|s~X|{^%?Ns@S12l;s=%d
z+2ls7cT#){WBb-;G#@NuEUy!@+&8h{W8MB%>4qC3y^6#9(YMHaD^?KH@l%f^C_vI-
z@CPx}$J<^2PIh*%yL!+4zAN0g^{lj;KY9#CCb+Wg?={6Lr7T7=k4^yPBcBdFhL@3>
z^RjHf8z!pdr>i&({}JRD%z`}l(dc`Jgqi+lI(G)>nbnXlThEE|WD%08&`Vs<@x?&=
z=ol8U8|vG*-RsQSv*33tJsW(-#~wcjx3vI=Nr8$KM?|*dy&rju`+NxT4SEdw-g5Ol
zq<&rnxvrRc?tFpYpqCY#?JTlyV!f4^?^^%S8Sip^XYq%)3Gxa0)22~Fzvb_jx>Vf;
za9uNEmbq+4RbIcDvFL3z53x7f1f`>eudK<PuQJF3nyyV>G`>E(K3jzyuXcKr5#Mr}
zvSu_U(8<XiZv;t7kc?Q@)M5Qm(S5q2Pdsw2=<`BZz*f7NX|8?*_&zyg9h(dcgv>Ox
zPc&)Nd)Yek*+`%_9WJcQiTZ1-lsD9w1>21?A}wx}NIE%(b;=?g_w1sSKFyRA%#Pc>
z5SrBfBw<XHN|Z$IV%1xZhU<)Nu_<<nAuk>X4_&<Z<i5aTXF<PNm$7Q~)T(NnE3|)=
z+4;NTWXwr%#q>Lx=6;7DId9@}ih0~qfoeaFptL*Q@uXQPzSe~dJ}N^7wdvKiS`JVi
zJL_R}@vpGnr1-!uyG$K+J*|?5UFZ@`qY_Q)Bk^03ip+!{zlVRskmIibl^qwHPZN_6
z!R6O4`Zdu*Bk7hy1X8%Zc9V1X_SmVs$xc!<XUp(g#?xVp0t-Jl-q+NaIM06{=gUxv
zWM7C_?tR&+j-j4%akpCAxkGG7L)zOkK{%Rwg`g(E{Mph#ZWn8SPOP6!XIPsCYv%+k
zOs?&ZXy5f8v@2gL0r5|lX+FaAY3qo@86~9&`8`uQG#TkH7RpZ+bPe?t;f6g!)K`|*
z9X5kKe*flOkoM0DsPYQ?c+;ck)_$Oivk#JgI{qm-4{nfME5GZzd^n47#cs|!6sPQl
zCJVz3wO4BA6wyNw&-m3FLt2}lu3&b@GZ2BrSvm{wZG<^Nwy%CvwQ)Erkyu%qDh0R9
zH;6d^i|VA@6U|9`j`~}*iYLyq=Kn|<wW#ihr+$ex?Ct9aqHY0cUVHxn_XtBU6>%<M
zzv115W=<umczd4`>f2A$sUf6Oaz6t9ONW8WE<m{sn9LZMbRAG)6?&UG8x@RvE=Z*v
zeVZtpi>v=kvOeAx%%2E($zN*5)tFos+y7ACH}&0JW@@S3LxTU^6)CI9=E~*S%O4+>
zw_6~^l3Z=5N%avGX+8F_VXI!J7OpgVl8qET4vXiH-u@Wg=T?gh*C{95rbDL;F6^b`
zWNJ6MCmq#a5sl1WdgMrbJ+M^La09T4)PVaj-OZ;dl|swn{FjQgL(u?KtyU_V2ENyo
z`B8pd?|k#9Lx!YxjDl0hS4+HzOTr_N%O+T1`QsHkjZj~}1(Z@padb{>y8XsVU}3wc
zsI`Ih;o{=R(dVusCe3JUQz>2hgFhpfCjd%^@>h+hJ@Vv}ai6_6w{{<8qK>OusW=I*
z)z@);vXdv3O$xPylfs-tZw_SniPvnepqH;vd59sgb8kS5JHl(-sfsPdzo*El+R~8r
z7WQEc`;q$jnz;;4J!7#kN=~Z;dovEPUn!Jfcr@DJ6w4I&^_^MZE56;m{lvbBn(gU=
zl%N4WI}J=e`A*^|kB)V6^oMPMp2U1PsSo?)Z%(y&V5ekZUk$~}BU2{?%`3kUh-(8*
zHmlRIHWNO=?{gP~`n>i(Nxo~a{qWXCvn|rR3@nl{?+HVZ_wTy?c)-bndu<rdO>?u!
z;BNn>#F@NC5qR8=9(L$<RPpPab)=A4bzZ0aI^E6>k$hY~#+I-rWi|p|3hnzsb@^}+
zl!CCj2N)js@?`icSrNPF%8dwHGZu2ptoFmE5NZ{KAnPz(`}wm((1x0zfsoYcrKG3}
zd+ICuqIxV?@9l5<+HErP7cE%C_(r{HsYbA{`lzW#5uk}ZVe4JhTc;@p@vkD9XeeHV
zw}w5`077IY%R94EbbU9@dtYkUt@dkl$&3`Z{O1LsTlroq{7M<7X0=^V!_Jg&M0}5O
zoexnQn--O@d?%2)Aa7dOKaMO8;z|;;5Z(CH{Rv8(udv*D?*LH%w{fQeYXmnJYv_E~
z?d7?DOge~;`H)6j&~xT>)`bKkjSycs$bkTS)Vq{z-|MAG;07T1N_;0)_XJV9_BKu^
z2VzG#P;VC(;{z&|8{1kGx&xHUxacNlOHk{jUu3XMzK0ETLr|vYBQ52J0&a>IS+P-z
zc7<Li2$=YlDJSGX{EozzffRw?>s#03KZeF@07CqZ2aw5eacX%~Y(_v~qX610&4G}6
z%zkEZ_lM_sgnt}jS?KfbDMQgn_QI3Nh<w5h@-6}A$Oz$;1%T7bGXCF44E>_+%eo7C
zxjEp`LA?rp=WQg_Z$V}mNX~&RsE$ka{Pjca-z#@n>-J|`EoKmNd+q0Bgp4wcp6-qC
zn4k4qi=J3(j9{GZ9YnP^kvQA282E>MC@2n|CpV&zpPaOxI{48^6miRMZMr;-wDtnF
zdk~R$xz=gKl{w`vv-;{2_t+QL#|1>wlRr7-4=nu%dw96CcxVQI=W^=8T@D7t%@XV*
zy+ZGS+LRrV*qw$_o3iy8@^i!N)`B7zBN-=mLknC_34$j1HUrrOBlF4Pff&9#nkE5J
z308#D$VX@Cv9g_}ni0ud4D=<c4pWq()U3jSr4NHeUuy151)DpjJ`+_`KwmLO8E)0B
z*IFBIg)U2DOYT?dtYhLwPY1`EyO&Kb^=X$UiwI~+izU;sZ%7PmoYc(sWFcqlqua2U
zZ)XatYu$U<*QRmUa5@I@0d5xEn~|tiuL>f-2~4ktz5C(3u#@xgG{sApV*^@}xqIbI
z1vg08C-6(f!ff3y%GF1gG=O=Nt6T>_Uyrx~Ck3I_+-WNg$bAQP72Jy1<Je1!SG_f2
z#DOE+v0miw*O=zL|HfdA)l?`-WD@*-h%Pjk0x71z-umt3n3TvrXP7EH2BE%DL$GkL
z_12hQUxm+Pts&!fcEx_#Jv}_qe^PYy*T&Y*zL^FnJdAO2q0KIj<AY%&W0hO-tq-mQ
zZd5{(w<gESAI`^ez=PGPySr<}B{surGerK3fN$vjqRXQ#U!?C`rJFoW(RwrUy|L-;
z>M(RB-V^&#3GWim`%LkJiyWjQTx8V7myFQkfteeZJ14&XT(7p`sIM*b*)NrpT9sXx
zZj@trLeP<FO4;|XsrK;mqXf(4+D|;2ssA9JL(Zx3aBQe6<GnnU+AB24#}_H>u%^GT
z-h<xisNWw<vnu%lfu$=zA?;2lL3W=F?kwMReWCWS?o9A~)VCvp&`h_6O`SS6ibQ|*
zc5M~?%g5>f)wS&INK1*|JKiv%{|{gF^#(~r*37e~<sBPi;TZehLKVn|i8=*aipD=E
zwxk`+gdN%xg?Lvc9P(a-vADIp-fkian-ppY8`7X<5CCxo&$?77-2VHH^-l`0qixj1
zaNXm9hBJRSO!)bB*K)JAXaHf4%(7eg+0AFMv=!g-Cco0AnTOaIN;i|lQN|`!Y=kz*
z2)euFX**Cf(AR)d*s2EX7*VBc?2_{-E$R7?!$5!`YJr?^9aOs+IhS#&mLgnIZHB0y
zbrgJ7TM6Gt74UI&!0}d@I0IYb*6(g^I8Qz}UDUM7>=+HHhk0kv4u>->iq*t|xlsYD
zl6=@YAWm%<Kg$og4(&ofP4FUc!+`<vHAL?8Jum=>MMZN;xu<QIgYU@?fy&TH6Ai3>
z!jCWQxC{vO3N?;AI=g>gN6bj7C*EXuwJJQC<n@1o+t1-UtbY^_1U~@qiFbc(epe+-
z?{f!Lf`>K(x8bFl3$eWx0lSGHUI&^l&co$?oi#k>pG_oZD37@*dFbFvxUh+6ls+n3
zSAp`$sIZ5-nG;}*?fKA_I9Cni$@hi}X^J*4+#%_&K)<|T2ZE-2<Sa(9IJHLjJ>k5@
zH<m2e>3h~#;;FuRZv}^eFGW75Edo(`vWiC;bz4t33%zkO#0`=h<Z{Hx@)dG--<PFM
zkM+d4b|=DUr=fTtnR-gE%KB;4of98K>uEc#Jp+rCEDRc=a|e#@da_{02}_T;brKJD
z*P;CFSKWCT;2rs2zgyx;iNHJMTqr+6XmpVk$wvnjW1}(<<9hbc#OvN)Q@Fd6lFj`@
zbe>~LVrKT&a{(r3uVI~T_<(RN=8~idEfdEzyG-vSCazy%YUjzmf6L{h`*e_5Uk#-;
zd`uTC1}!8zxL@pI&2Y8+W7%-*Qb~tRviYP%_gVDZW#zgl3F81ZN{lYsFvh)Md1=3j
zRAiX%WK`+50=@5HR5Ofu9?m%F@Or-`quz!nkU28d?^=pv$gcw4WuiW?h+KBp6S7@o
zpwLhb67A$Fovyo>qRRK(VN_zNaw^K%<*}|l3)aQd0*RjeFsq>G+<a3`MlW&zqoa}G
z2gK}!SM~;&vMGU~?cKm_ueI7-5JdfR{FGPYD8$7?6Z%YDdZ^Olvtg;+2j#j`vnFFE
z6)}W?cX{!v(FO?SmBE9lkjxxSe8lnGIxZ=umec9~sQtKq4N&%kDX$$pM-0G<#{D%v
z<vutt2nm@u&2HAqhBSRb;_4sYi10d82B%>d5`iK@^vU`->_{DrUMc%3OIkBT|L)HV
z4x`BobS-8Xkea|e)0Jt_@qwA0c^n$ZvD$f41W1#oWSv7i!x*L$&ThJW=wR#YK!Bk(
zBL^ijQ*Ozc6qS6n2wK#Lknj4%l%hw)_zqPUj<)eMY9c$GPF$94(9(!>hm2jOs7$$C
z0w}Gj<2|+^F)Yv21m2$$_`tS1t0V>R<uI2X^HwHE=W}!MI-j?`Iuoi4ggysWnZXFi
zSF>~i0k@s2nJ&wY>2OK;eo24zC@k(FzxEx29bydp$DE1}R2vm<!lrEsB+WC8qT3PQ
zvI#mw@9n^H*F*oB*~Q}NM503dZsFx-+~*rJ$6M<hd2REUa%o`)&tJuywU4vw8hVx0
zIFjaC$2%Rk65=~io1)VWQ9b)zda^dFU!B9Tw*J-i_GGb4c!nhKa;|f0hbM@ARF-!-
zUWufYh5n}|#NIJe9lA>YA=OxU$9y1u=VNp9X8l;dE!H^T_)V>TahnZBJF))^V_^Gu
zMaE+&(B`936g+ZH$(&RK@yRsm%DEMfaq<~ugTorm+Eu>wrS3lt%|G04cq!~yJGJ6P
zJ}iGRQz8|R%Ul0@bANWUC2OMO<St{Rp`UlRMO2wl>|AcgCcegat(6<*&qg*2lXlCy
ze947qdbr12nE;d*I0lp{$~BQ;rgQWylp44bT7XqJ{5Yn!X?wJMuL-D=cQK~#IjF%O
zg*j1+rs-E{`FAir_A^-2ILS%K()^lRJ;kvt9!UAP>doV8))lMR7%X5jxp5>%gIZe=
z)8V;}D5l8;9kailkTDJ9jWRH~_OnyV!@#o(N^!qtVd1$O>$goZ40_%g{i#e*Qv#|K
zt7U+qd0Au$s`9kOri<>b&4McQmv7+1Op&HV9pViLVE{}AVHEb-nySzZfP<+$OAPZd
z*&>kO`aAxeSUi9$v@lBUg!<OLru_z>x~3W*Z;E25RT@O@+iJ%IBpRXg=}Tg1<+Y?L
zVNr}$hX27GLA{*Ps}^M*x$;}hN6yGwpkezV{_ILi7Tscm!*)2wPdTsoNcs@#3f}ze
z+1KmSUAz%>3&!1d@5C#l(GR4g)W(PwFI|-YkJ^gkyiK&ao{H}mEV$mzw_SCXM13>v
ze!|Z@xv&X6>_%BHZZLa4sl3|<=fAJl<rQ0`9Q7f)wXK@IY~Xz81Up*glM<(t>qp2{
za@7e&AFR1=<8HazQIK(+Z<IX#y3_-9rbx$ox~l#ovfj%)l3K}058qw<Fn~F74GlDr
z)Jr=G8ld!_oviWv<$9OZfBYfCBuRQM=;#!46eR5vUY?F>S7hXfDv_;&5d2v~{B#>6
zrAG3!t_VDQccH9luhjt2X9bEjds#cym53XQm?dhqL%g9ABfK~l8`MgypE4Wx5on{<
z5$FCcBSH!m`LLB6$n$m=m)w^9915P7pu-t4`&2r=i5By%;jf*1QjyyjyUb*)qJ{mo
zOexGl?ETydn*zd$n`y1~#8pL)k4#q%f(b{}Pp>x{nDqzd`Dp3@NXBl#!mNSmMbGXg
z<i?pv03Pk3eYENO;zi7mqxZ<eVqz0VlDA9qug0tsda(Uz+%7Nnb&`)nMW?+_6?dAS
z$);W!rr7)HcnyFK6yl%Ixm-f62X41H<Z(U+**jJjRi)&AEnDwVc$^V%@RU<$)MhY6
z5*lMaV2nS&GQ$$<+gX2Vlx006y~ymc;KA0fX4S{ee!{xq_qMn#PgYEk3JgurJ$3BJ
zQCIknLAUSsdlA~mZiz$}UBM^c&$e#25?X7u^fLSeu0`hWI}cQa9w2R_&yM7Q&o~+V
zXiOTL>c^h7JF-Vb<N`t`sWwEShJ_yqv`fjiffxzMMoM?;>yiSO75na6JFOq)2ZXJa
zyOLy0Y21H)i>-Ucq}UX{?{`TXE5sb}NByFjbg({X60C5~HQClb&%!4XUOUs{-@4l2
zdV3maxs=E|6$KWx&b<+1&!UC?fm_uWNOS!-r~R70VfN&W+V>D$)89j}JED<36~jLd
zXfneHZ^H8`IWm;I0Mdj*zjx&k*qy)n1jw8K@VIT(poM4-@xipb(O>R8Ng}4p5`=NU
ziprm#C^#jOKs?pRlff0sIOSj|2zj3GSRnc{{8Nmsbg-;vy+lsFNOgvec-k)vBm)*C
zahf90yw-e_QFcN|LDPkU1^48gleZH-eue)u$2W~x098UxCK@)p?cd1opF$?*YAy5;
zulZlW%8xfe4Cb|&nB=W$?FKcXsY$8IbvX^>Yc!M%Uz96>-{&&xw&Gf5C}+@G*@|AV
zEeN384h_g-?<3HPJfNjkLl&(S2%+jnz2m&Pu(gQU#>2M2FKp+K=!qow=<q@#%R7wI
zV*=tx(SrbT8j`*PgrUoZ#RhmedDx7Yk)N(z!#0GQa|dU|Za+A|o(VH_t^4}+tZih{
z7>~IMT_%@u-J6)gZ}e@OQUfbGV(bliX+aJ1b6PohR#?Rn%w*u%+8HxR1!=@~GGhmb
zYFWT^Rk5#|p=Mh`zX4D<$Q_sDu(lzRT5-Q4iiAKq4CqM|eEO6$W=D)-n2gS}ug!;%
zeT{}43-gYr*;thez<G~_`Ff+Nc0Xhih5ZK3NmehJ1Yo^TS}G-h#5;{EFB{u_mz&T$
zM>h{#3<&3&TfaS$VW2Gb^H1Cx4+#(<(sUgX8p4)@#7e8bSsbCpdW)hzFOz=`(oiae
zdw|qxc=0)v8;KOIiQrnklD`-Sq+nkrkVgKUuY*HdENC9VnD9b=CedoA92)b!D#35f
zl(^<7rxt6YzJRs(uCZTWLL{3{O@#RR-x8IWQxg50Co<-@pUfz|Je~m_ANoI<x<w9G
z$^~6dwogFMgn-c&^8ijS-kcQzSG>RXQnPWti)NF4y+r`8H5GUrmvioy7ELYb`p#tN
zy2S1L#`sjpqE<-zQn$MA@7Bzqc<QN$H_p0bIg*|pT7}8zjt1KPs+?<G;WuQzsV=_e
zpj^}Ci=>%PEP}zbS}1zyNQzu6_j25b^=C|cJfFs!E7gpjY0+rymHib9AY3-_cP}gc
zFgS&q>UEEVU>0C*V6O?9JkFu2tVEF}Wc#!Hl*KnM>siKCnIRt@ffk|f_<hhs+G|Yq
z_TB@F19_%%1ih+d2fZxcSLmGeV+!5eMgm0-kCe7=`xUoZLc|cz-ibspjAN+u_Ba$J
z0gw%*ElYh;m)^cgtPa83&99!jyAx`arJT_~uCpnQU-((cIfLJ?<KsBZ2>>~qDqE2F
zo>QHJSCdv=Zl&4jX|;W@ZvQ)!0Bzf7j%fz?Ve+iq^yK8+4ahTk(K!UPng+QB4r7>c
zVP7@^d*?3n$x+u+?sz5@F772(Yb4id2bM^q>!Sc(?&dNQhgF2D%?bG~$}-NuzKK;i
zlsZor+%cbd_<5+>>eOgUxnUPBFY)E3UzT=pql3Xc7plg`z1{q;mI_?#8x@QxN*p%=
zTi@tob{3c7;);R>tDJB`PYFI~mjx$}48Jt$?qgRsVxOyRSDRJ)*_QoGBaXiYdE9f7
z(x>`e9DLv<bz6Bx!AAKGpD=0ktWNCBduEIcm?>!9(q5E9M7I*xrQ5!dMvcGV*_o^^
zrsIN}oYF|Vn3<)tOlCyy#y1bcx<84w?(ZEd9QmN^0l#=MsL$cr!j_~Rw}=bUO16&~
zngOCFl&;yZt`~76(H4jEdR4IGnCwq4N%A0PcBk>d8UpmH-JRKy^za0(_3Jbgz4hmP
z*CLZsTe%%Zp;~-(up@%dLk4yR&hV&8^PGhdg`99BiT+8lhh*QHYi&4hRq9(n;+3>f
zYX(`@+n1~%qjRn#H^gp}#_iBeU5Ua*S%w4KrL<aW)9tKx)Kb$)dp^|8w`_Txqo?wI
z*ec6ptN0z=l3Qk$j=8d>++1Y0r8u%y;^%td?N0jJ3d(I(iN8L|z1PiI*z4-EGxG?k
zvVy>V@WY4PA8>Ja-;eou<?OJnBMqfI)fKsK5NO^b=3&@Iy*m;~#O~GPWZnVtU5$Qk
zocD(8T-%2x^QGT14&SwkKQ7Fr6B!E!mV>rP$>;erZ(Nes>bjG&DUKbNB%8X`Io5VI
z+_)1V*e;_3FGBa4*&SZF`JzEHXJG%?(TUKYh~7hoxO;cTp$BKwcje!2XuXwC$W|;q
zn8V)wlN%u?7VseGdoZ(~(da__prM?vFt-JV^O)P#dt6?x2H1tpPj(5F+5Xws(YrPy
zUT8f4CXY0%z+HSPq>hjppzPHhX21;#4B-5++%M-S0#?BabTJ*csqKyqm}lB;;yJgl
zTgDaY*zm_Q@oV&S+4YG5r`{bI^T!5kmJjDGnT>Wye9c~8%M>gjY<!yTJclZNI=;x1
z(R>oY_#8efT>u-GU~K)|Je@B4r#s<^y9wmUQ7<(1RN6tO&oyh-dh6jM2jBXtdq@79
zIp#@d8DTAQ3f!PE1Nn6(<C-;moTyS}(Auj)bJC#wy%`C)2m;-MAQPVlXSrk@(cObr
zmprGlJce_gG*pA%2+V%3B9HTGN*!G(w_jPVna;{eocWl(tC}Ys@_od6$$BqB++}-c
zM6#rcs9+JdR8oKO&l2jtf|-t4utd=Z9;cK~Q}h->cBC{}uo35MLIJ7HL&hdRzmhwr
zDb~rr+Q3+)lGi!Hg;l!F4)(Qjzc_V<C$5pEfjVp2tKo|v0E}v1-2%z=;~(pZ`@mUw
zjs;ju?m-KXGngYvMDvxX4|i=e0O@`d`Gxy_%+)n=5{%Di#q3zr=_N<49JvDqV$w!?
zS>|*DIZOR9I*U-}S8=?-0ay*N8bxo}rFQrN`EpbqZrY6HUg2pfAec`QJ=D>WnYmE-
z<ZIo>TTdr*WMMiN|Cpe)F#+z4yG;gfCtu!(WN%?lex~|I#Qgt;oqpdq#}nxjZ#Mtl
zKNa|o#l(r~KLS#JzaE}4;JoLBTRaMnpNYZq;hTS)a(_3o<Q!XhB${oF{)kchBYfK{
z0GwzKA!zsJAHV(6U&MtUyIWY&z`TDy{hu`Fz~4W}1g>x%otJ*@-@hxK*Y`P&)kLb!
zkg)&c3RwbyE6gINdOZ5mz5LT1INSt=15`H5_8(p0#xYsa;M8&XKN^nzKCpj$H2-~I
z|1{<PKVD(h#>l<xY=>&4|7?}LzOR2g^@}>&+y9OA|38Q1Anzx2mefbR^>u*vQ2+h-
z2n6A*M}T;#-%La2^xvcAzY&^w6aZK@H$ry*!M}0v-w%o80Jig|o`N#x{sfTyqa-qT
z<JdjIwYbdsA6=m%aD@-MbEhBtN5j#l3JiyTL51#rbcF@L9>p%19MAgin=OHRQDX*%
zW8rI$;-9L}zYpN?u>ALd{nK##_ksQ6O#SZ)`==Q3-xc<c!H?&^A@QGv<Nt>}Okh~i
zf<#aSm>O5?-s)G?KI%%3K+0eF@BaN<y!Td|t#X|Z9xMz-j|tCoWX$>@z$hZ;7V{OL
z!9W#xh?i5^H9pKDfNxzf1;Ah2`B`^78s*zRTu1x#8yVC*eDMNkM@0LNBk@lG^?&~m
z-1WCpqUEX*Vn`+eosLJ;Q+Hh_t^H8rudU%&jRj#K$qzgnmiwoS>!0d?f6Ppef5<`H
z&pR_I6LM^VC&>~70L!y?g0D7R@CR<Dxbpl&%2vR5DB;){<v-O3?2^jo{s`6n&rR^8
zp6-*3%m@FXHBGu@9Fm~&Q}R8&(q=Ty;e8JLdq|BqpG89*Q3tI=sl2rl@IjjE3b1=$
zu)6Y3q2nJjkpJ~VmO2k1#McQAPyX3$+EUh)Dp{;ATbz{+qt<vl#_{te;>Uhme;k{D
zB0|Tb*HV8TS9h1v3IBdMb3goIo4az|7sJC^<V;~J_c>T@T__!MhqpBTjA(~1$1xgr
z-5wJ9?@yZ)6`m$Kiaw?6ajix|_@?UpOj56@ZFdIe-RKXMK>7kWjF)Ntexp2|^cRGl
zKZ$8>ZUgiV;`m_C%K!Hx{GaUe_><tpwhMret}`sND`~98(@#KtdrEhv&<^T5Wg=7J
zwV($%X!~&e?tJLP`IkYbg<<|OHFJn95C58Sz0%)>SpypY>2%9;HgFQY#9h7iwsX2_
z1ev3?5U*Eh|5VOtsmi7N)f7Lv$Bq%RD#iubdD|)a0qBh0pC(OeGA_58derOcGg{@y
ziwAomF9;jz1OBaBFe>s<Qowfo`?TA`TqUT!vf$%IBTaCxPj{(Z5&@Xd<>89QQf|a+
z&+@Qwu}WYTGkGHAnXbaa5#q2)kL;3`ph0=gbo*!1D%Vj_nA;G~x{~Ro-UrenWnd>@
zIYkhH(&Wf-$I6!dy|pDb>zR_`I?9YvNgS~F7NTJ_mKny<Xz3t>MAPM(*{+mlBS=?4
zqf5nE58tWjR2%}*l(s#Lbld9Fmw%h*OE)0*;YH&n17;XKy)HA%;r@0f|I}t{CafdQ
z>bgyu%=pfT-<)9*Cj!%BIz6R3*I6_G^PT!YyEs_HYtxxwYqu0A?K^)48hBmAqR#hD
zO{3XpXLo%T-Y|{GsB}=R)c`Kn4>}}O+vT|2R?xpsehN?b+n9fPSv)8{u;h(s<8y!d
zd1#q^?+?9#C%o-8#O=K+$DZs1s};XM{>M<KAn0|$CtqGGbh}*?`;eJ*cttYbtVe!(
zV;9T=3xevPyOD(Q8H?VPIfpY3(!O^~8-93emtm!=iNSXt%unyr@wRkt<AFvCpXU6O
z_v_uaR}{9;X#mhkR-#ARAALiBD{9jX^D1q2rm&d!1F!<G((Ltr8APm|gSA)zp|oRx
z{!LhIe$DcnMNVM;emw=Nn8D|_K27=QG~jfN8Pf3B(GW9`HcR^`=CYVu{U|ni1W&uU
zs4)j!IS(ps!EY@O3x|fEO$PYshi1-CFh0{+jM(kjZIV(Ol|>pdO(*3%+r0|1znSZ_
zEnq#oHuO3?W2v|vI`r39x3aiKn3P-6qiz$vOV%<ir|+BlQ)D>z)_f?O<#)u(eaPku
z(w3#~CBNQ>;r_~@<z*e+XdTKE8TEe`!8i%HgJ=5Y28dGW^CFin?LeCzIl#6L>BHx|
zkpA9I?WeX0tmIAH>p>6CaruM!XXR6vqm$5gS4o5^;~M0mHnC0+XRB6XWWN3LIw;^S
zw6>ta35Bx14ucynJ*qc4r0j(T2j*HwO%f~JPjOsY_H|=7Mp4P`71@wfT0v})Zyug)
z6PSK3pYGlf7%NmYbt`+tD$of#dK&fflzPMo(30cL-Sm#cIu^I;rlEQ$D&X#s_-^ZI
z+iWCKYGP)r=0)iA_|a;@E%QBao{|AzlI2l9H47NrJc3L&(E$xNCszHdH&Y;Mz`V*a
z=$s`+>88tf)7I6|(=%1N4D>M`!gdFw*Vf-A(trD~F^qH^6SC2L2O=Dyy^FOn_N@A(
z<LU8gUF&9;mkwuqw#H&@02}@}?A=tQ;!Uo>xq2tZtfSj%7PxY-SL1HhQK?#5I3XhX
zO2RxL)9(>Yp+61;@!MwBJP^+G(Xlx;7BA-jY+dKCbJ+(KmmmGle(}FQ>G&VdEa+5X
zM%KWD8Sb@SwyjU?Q+is;Y~WpsB7#SS^tciW(`5Z>SAt&gBgvy{^k>EP)|?i$hMrj!
z!%hR1o~xv-pCFYGlL^QdrGCkpY$RMt8qypWd4le!mQ(uhx^^mnq<>YVwi8PY!#O3r
z;-)*3@o7oFzP~rFnAyz`gTDJb&ttx{<uiIa6;qUfs`&mo1Md=@+QRu0`Ymmtw)&|(
zz9qQ(&HEK`gS8Q_>Q=)qj44)+^u!~5x($rlmc+K#LQXaY(zR~V{W2Q&HRabyxtPv|
zoFa{m2@Y3qmt<5QB(r4&ziqC3zc)qAO*XqR(~*SCF9qb^yDR(Lte&zd{wY85*1(7U
z-Zvu1CO>^t_Lfce2+V5)=3WO@ZDo15Sy7`m{C3)>ysvYGIJ<Dr`?-$9^&vaAixq|0
zYrW}y9>4D|8mje^X?E9UDk2*C^|KX*fAmDv*e)QofQB;DJ#wjj=uCN%>hAV9oan1^
z%EY0YMwMM`SEu2KlK;j~eeEFOPGtU3+n1-I{_)~=F%SG4kaK{>F6t7Zryz46O19?o
z#lC%AOl$T26Jf8VBRaLEyu>`QnjIDNXbzX^Oa(Tcv#8lHd=NVutQsD6h04bczG-B}
zWx8pK$#?t}7yd7IPj@pO+-XYq*=2zdmjb5|Hpk+v&tvxKJQ>p0yIw0r;-`j>Qi}Xg
zZ;Uk_2rJmH`xGx)JV9St9z&vG@mJ3RV$2Ak?d){X-$F0n6zk*<Jn%?i@S-j{*2Yld
zE(%uXDM|U%l9j=?avZ!d#yI|P_>cV7oNkyIH4%9p=wh^8mLTC<wu&1zPb_zDCH1Hq
z{VMV#kyn;oM4zA2E%vlWRZ{bm#`aD<r}{NAK&gJQ3NKWAK}`{>lcRa&ql@00k&wb!
zw?ejN9Mp(BVToHRB2c(wecK=kSG;;>$fUJWQp3G!*GfRKmE6dXWMW|Fdri2;x}STS
zQ?j}nGL?^CvM%`IHR52CV~aGMls7$_0%+}?d9RoHk!S7<Xs%DUU$sloK03HAZre@I
z>E6?|4Xp$e4L1kAsb}9~J4-@Jg8LkCacN6G$G{b;v%8A6W6k#lL^j1WP;(|G`sK^N
zsuH)2IYb8NKU>(s_#%@jh%XR1@KKd)yvUQ?J_T$yyGeVd5-gqUw)c6p*zMvdIkd5&
z19<R_Q(7xKyK|qfCtLVO9bVbDrReQ$q72#z`sH|_Rf@B$;lD(s^lrsDg!r!8YA1%|
zbCrCr_+1g!ci3(x|Jw4QytJxh_Qjn4rxyS^->lUALzl&B&A}?}uAt9|!*O?`5e5&F
z!lEN|nUy%Ij_O;GC{GMPmjDmGQ)kf81H6JZ<wzB}-}rkZd-l?7+Di%wP^xy1mcGi~
zASpesG|8+I)_xe3Atui%;5C<ok4rL4{Ur4=iL_Guq%ovwE$!&B7T7S<1y3+*g3s2U
z4LSnXtcI-Dy}J5qQK{ZMh`<POz#Diw8YXk_-<x9ID^#tJ8x4bVpe$Fq;uxTWOkb0W
zK<KqrqJB6&FYYzrCQiH5f0=;Ntz07#u8yd8%BA{$RYEy;R{5m3o;5;0-S;<a5r0s8
zxEmVGar=s#RXpj150K(#*#cq|38fqO7+g2`{4<ccsw*|gM7gfFiFR1jh|ti#9XgS{
z{HoSrZ)8aSvtQ+CDDQR(QF=42a#ieNV$<f*VA6T3+GTBLgBwTt*F;V#MAe@Wc*df8
z3ZRei@l?Agh+qBcyAtc}5pQ1Wy<7FmfJs*c7mZSyrT|ILFrrTNV$byTUO?CP+NQ>%
zY~bo<{PHMjJjmR2v_WB-!NE7bYS-))fwI`O33H1xu9yqI^_WHM%~TFIFEE*0PXuPn
z^?V+cD?P=3rG)M4CbSZ>a2M%hxUMqiO8h3XZe71iTyVR*Sup~8pAz^9;72hbSCsxm
z31e*=taT1B{!II)d{4#HkGj2PS~uumU~dLQhxHO}1Bx$Da1#;4CwivpJYGZ((8{Gn
z6XTPhVva2|QxD&ON$0G!A_(YQ$LLX&Bu2oq|Dx8&>DP43z1FNma-P;DHi7r~tsY0A
zvA)4FM`u%|TyGM%gT5=N7vUZ3g^O#VI7*=<SSQ#121n^CkgMCdsuBILwfxa1X_!5W
z(#0>MLs4fY9nR>ML>G6>Rl!RpVggrMGdrGPw^qgY6I!D`mgnsyVH6Gz-ra?+2vF6D
ztDOp&$wktH-_c92xk8WVX8IW>1IsL3)ogy8%Wmx$C2umzT$J`8NE)eU;>|s>t3oCR
zq{lc0J4|mTFx$IpqCGvoYSfFF%^RFD^PCOC<WX@w1xhQKTFP~@$RbUk*;##Ox%ZM(
zFHbJ5?sZ8}XVC|xI%%uE{<t~g9B=W?4SV`Y@7rKl?XMhKkMLLyPRht4)L2!%#$%>D
zS$!PWD9S_+bUK&2=Ms~^V?J_E03wDr^A0m}r&3^DU%xI=So52Axt7L>iOClH>=s_Z
z(&|mMdx5RvcNguDN0-F+Z!6bz1<}X^{Ubp3|0?U+x=vnJj5Mlt=iPPh8;V0{ZPFbI
zq58`ce_si@9f|Us6D>5%S8iU_E7aq&*=xSz>b*Y#`$hLE<RmZSrw`$qOC1TZ5XO|T
z+CxJ5B!0Zk;aL6Uh8zLaF+hnSt+ZUr0VQJ&Mc;Qv+j^&_;oHP*U53l%JMGS<%01cv
z3j@+Nef<lr{o$(;zh+aZuTAo;aQDDvwYz&9^3n<`POjfBw%!IB7lFha-JhUiqWga`
zao=LY$~UDQ;!}|x(05YA>TsXgp7hD+rSIQ)o2<Y8{>qCxxX!VhD);iO{Z13|a)oW@
zx`G8HJ04iMEf&p&%3gAgBjqkbj-jqpRsy$FV!lpAb_6r`hlpCGb0x{9VigUJGe3(<
z>V9xF7=|1`+VyH?i-cdcb_d=Y(ht`v;G1a;1bxo{5-dUef-fMol`*8Ll-uyFVi+@g
zZE8H9wxuJ}yho?cb$2lJONkUHHXU4+^-;*+2gDA}cGugO{rtdsUs3AFanfx8Ll2!@
z%EV|V-X;YB;&Hk8^1NaquH$2sGC!$&j|}3p>BJm8Vp60*eHfe?;dAJmMM2R6Uy_t=
zk-E=_KdJQ+EHqv6HNXP8P~OZ`p*+Mwl_pnlQneFa)Dunx99!$kq)k~zgDSTM@T4Kd
z9I0VZ7|)ke={L(RfsH=yIWu^9JDO8^SQJxFbLy1;p_x(d-a+raUXu-niKubb8^4$f
zrPycnQkYc7&y+9_pj`pFbvS2w=BGNAaCU7DIKCbUbbI7H;$0nX1IB&XntRvao^53z
zR{J}kX0fBQ-Y@&7&TVqA!j{RRWVai29gAN=?LTKnEta;wX>F1W#5(+bRuX!4N%EIt
z$sY9#ej~-AQq6guI?Gw?%WDB{H82^#%7G%CJn_aBhqxve)BFX6ubE>0%=1#$2#f-I
zfp9iHG4#fyT0~;Of+l8PIVtE!H7iM*6xMea&}WBf*cpBN5ymh)SD}~&*xRho=LY7W
zIflhQ;j_bB`@>h39p(G%-Y7oqDR^?+Q;FYCYo_`LvQo)*ZIjyB*3DfvupJyE2HN&x
zlaJsBExl7r1E)DRq*0wzh7o*Q6(-{_N5fiu!Cs-Xy_BrX(51l==_WeD>}248%lzJ+
zyx8+q{e79QSSpBK{)q4>p`sxJ9rSo0Z#&X(HU^M27J4PsFn7z2w3JX`$;jD*jrIH8
z38O&UKckq<|BXZa9i8|q_#>nB5FkV<IJ5+AXO|RR&)rQ}2-@64t=&hpjuixgXeo+R
zuV8t~#yW53&SS2n!2!tnVxEI^o`GxO!lS9cL+h=LI0i^#AWf+6Ubcn8Gmw~`Tz=p1
z-2gRv?@G(us^7J&kC@k0lx5u}rybVTmRixnAVW*&A>7Aic}KmmyZJJ+tfQKClOr{$
zkH@^!)as~;;67?7GEIf9cx0Emj6w=unO=80ph9IefUoOc9iBVPTlB7@sGV|IsZ*65
zA8k*oZ+hb)abv**5EnIkQfg%c-X3lHX(cujM)4hxLmee-BK>ebiBJugb>=?hAdbP0
zqodE=FhJyv(u&j0V>JHOi<3_#Qo~g-M-u|O)Yi<&E>Qrn7&8>uy8Kl+jkoEMMg@O#
zSM1!bN)n(!ejn&Yd@@rTw=nUjK>}MoqjWUc-G`80N)h#!yv>4GU|xTxC0!y6Gi7sy
z)aszO08_!idJiSW3aGs5OS7c!WCY7~DLnap`Ua9Tju|&J^?YYkvtlBXzcvi<0;>7E
z#hF&Ad*66z@e=ac1O;^7`Z1cp_@H)yiic_E_7!sXFmd`;7YA~dsAR9`qI_N^E_LtU
zi-560o~!zgAFgKC`%HF8u!aEf4zzd5it4=~pQn?VG9h%*@snC+C&IyqJT7X!_^7GD
zG4f%P$4E@-QH|y2@$1WPZ6_N;Bdq5mr|{2`aeu)L!Cu?y?%+TR#Pi)^k}OUM%bl^N
z%Y1g}Fq_(V|5F;5nR)9bTI2CE!C%NbQ~YnkyAMSq$MJ&nQ#Ls)8U8c`)=`m~iovBX
zc-7HKzVWcYm?Z^2r-8I(ag&HpZ89&2xVT;G9;|Uxe}QR|M(O$nH=TXhJy0roYK^R$
z>6w}O8&bMtcyxC`GT=CWhD19OSCWtFR2mNUINjtMf?qs*H!@dYI?EoYn~D{|%X-@{
z(emj@uN~*JW*(F<qWF;M#L#QnlleMn=P2CO^Dq2AOa67a5a_odwCg;<{=rrN8VF-E
zJ5*fnO^=;gRwdV)x;FF@BPLcrVC7Q*INPrB%!pS~ao<me_|pG%hx30{&j0?T_AuBB
zunfx7yw#(wcP0ww!*5Ioo!gyTC^du>+ZGjGmA_;Hx_*fVx?E_dDkMaM5?>2Fk;l<t
zOtgl-$TsLWj|*q=)fK%*HgkIlckC+|rf4WP@(>?;&H^UMjkP4^v-W_`09BJ`#RGr9
zZt=IGdg229K)LR2UTuFreKz6Nei2YA@O^kQGFpPUg*Uru8l{yyz<t7E`OvY=5ilNY
z`p<Z$ya>7<T|$Gl8(0c@iJVfF1Bp7m?v;eA6(rKLI&!3@D$VUQNDg@cXj|QYo^YhJ
z<NSS@QGEpp%BB;R<g<774ClpFF?LcD;Il|fYIqxmvkS65B^SLoZd?3&ewXeP^Muy<
zy;l~(i~Z8P(lB4)F^E?x#OR>?0IOn4r+P6B<$Pzr|82yr?Cb47E1wqBh-7huSKw8<
zsaF02n+zjQC3<-IC5Pe4RD^-Tda6^Qh~U8L7{x(NPk7W}6ys*0M#BemFUX`Bu9%Bt
zjRZRORh~4-rro>|Q8=0O1V_^TBrmBGc6>-v{M>%V?uV+&f<qI`84gCBGg`<dcU~S8
z7_=3gDe(}Jq7i+$5a~qFtBn6tRX@w&Fs~IWS=dcJ=Rg3A9GRKYhBcz*(kQs)P78O2
zN9P-;cQD$Lr%Rg|r2{m4tMs)H5O|;5tK#d(>7~>Q6!L0AIZp#k{cepRH*|3wX{=pJ
z?q>{FHpev^vAMtP-UNxspgj1FY^Ru<hIESy_%BGrR=g0>{q^0y#>1w*o=K8-AT;8d
z5yQqsd8sca?!l?~+QJ64LV2=W<90|z_B1KiOL{fW@$~qZPh>aouI(@YFr!a_HyXiL
zuLzbdSv)^F*ZPUVs`_I{5Uli-C&Lv}R>(0gG_w~gaPQmp_<Li|_ZIUqw8@Mytj&yX
zZ^!(rsy*lP{aU~f>YvKd-~{ur8})wf4va~OVLiW89jjSSH1^Y7(Hjp~zd6n&F>db-
zUC&F+*ge-RNzzzMGT9s}0Fax&eP)Kj{%H|kXCA;9wqCa~%hA}P^7ELrajl*3cS{8<
zW=v%ZDocYckn9CGi`9K}(*~-f!T1)l{6PUM9td5q`^(g3T>0<yhsS$QgV}BD8|fIj
z7nP<X0Oq^H9wq(_9HpJ+E3b8lX;NF7z~<zWKusF+?EjU$U#5Trbl{lzKvo1v+~AdA
z36-FqwmYb=lagHU-MX4&J?LP7K>yU2dj}HUY0~GYd$nC1&K4eX$)(ufp)7VMXbfNa
z-cZ$x_ZlI5Mf2226Dw^pAL(KbcZ|tSOLAWApc`@JfS1uN>+-ML`G(*779~wYTxK78
zK5PmDB#6P_<u36K=m5)R{UK23`W1`q@7fKQO)1GC*tiY{1}o!dGo7@glkYs9@xt*T
zxU!WV6ex?J5U574E30&Pi6MFNX<8b<wR9x7xNlf&vLgQVHmT^Bx1DK;t4PWDG|`fQ
zgsN20lSoFKyx-c8(1RMSOFxjCK$8`qdaHf9zo^80#02`{fC}c|z&pB8p&H3J?0M3Q
z!SNq7ScwN&t(6WqTh9Bkgg52~qkW<#kJAul;(9n9r>K|U(@U=k_tX6{`DJc+0Nz@S
z#%GMFP9H|i8GT|*qMXMY4k2Fo3k~b7Hl2i9l!(8)CtcSwaPF}U<jRnoy<K5V2O3d$
zbFOx1EYPBmWLWEwTT!>Ydv;x>vUkTx&R^nD!_Fe7DUHabGn(owVsIi}9oQ_ISu)H+
zzwAeyos_JG$6SyGf3D5Ly25n|6Yn73rqKo;ZpTrtGahPfp_*wa2TSvF$w9hf)eZ@y
zkjlsfewop-j=<V<uGY3YQwavUU6@Q(nXxQmR<Y88am>b!j{ZAxh3wF0ByAwdb(9~l
znhu+%-OWR9h2#ml;eUiREDa*8(AnOd^A#$^ZH}eJnKXNcdYK9ck=+&OF@{Gd$niRS
z6XHwVt$kLnB(YPNscKwqjWjSjOoVJwe=*eUr4Bt}5i8TX74ff@RJ!jm7K*cM1#c@@
z!n~MU<NASor)ZSZ4P#fl|7H~8Zh|y*O)?jgpVA%_;>8p637ooQ9`p54PIVLlTsNiO
z{@T#DwgQ|Vr+u0f542=r@S;EbQlONCP4_s67`J30<7BusPOzrSo+E8tba6KFs)Ylk
z=t32FWk@uKQT6jhgoAXQ37hLsTd&lOi>@j5sd*=4*x#-hW#OKfMO4A-ESvktFcwhU
z14qhXwZ&#0XAaQ9&bQc6QitT)Kd$i!ASc4St>i&}&Bu=KU9YJEm^I58k)y4#(xb=Q
zmNa~*_lDhlf#{1&wDVr1qzZ?G@QlaRagnA<a0^ME0(=J&%N{5wtSwo<IsoXY8}?>R
zjjIlPQ4OvZCdRs|H&$dFpF1sXOc~rJcu<$li*}s@Y=VJbz&{;*apR&5^Cw3SbJ8w;
zo6f@lJw^%Rmv9EvnDS!U*RF2;--}P@?&A<5z%1T=9j>1amy=SM+k_p7?8(5{j?7Aj
zyJI(s5*d+DJNz~8XMV(*xk%bBFz(m;hQ|lms_%WO>}L&>nb;BiGn<Ou!G@%8e@Y+u
zAg!#a@&0p<P+y0`1|6+SV%g!V7Zm3aWD03?ikY-8W)9~VsDp|RNxA?4!n+_JPi@tl
z?A9<tul~1wBB|pmH2L1faN-gSD*(`_K=YE9KU@5C=hw~2%y=p1F?-?68p=k{fNKHR
z#*rlJW5^TtDSir=tRol;P-pC2E9)aqy=~~sOmfHH%%>sY8;6}c=$nHY9(!Y3(t$w^
zG)5pBC)}4R!*Xwt+@*ab(~$9VJpdg+N*W_A#nC6k-sOFKL|LkH>Rw+7SReBg8S^<Q
zEjA_$^ivSh`j^V#zDGRZP+!sC=U4PMTMG$!{$aF@L~*v64atV2ejXzG`kb%Q-9-p1
zL&ENMAh9OVX8wB+@djwwEU*cHp#AA68;^BBAJQW)B07ohS(+KmF(1>5Ar8ghHV4ga
zU~94v*6^0V|2#TXr^AfjIP9JK9K?SsuB_-qnB3sB4sO*n@L6t~Bz(Dm?XB6mQC_d;
z^rL76t{$(>YCI5|w<Fvt83uRMpAj5+OB%V`kx&y5og*VHMe1-pRx6Y8v~6$V(ScIO
zV}{AkP#wM+>WEX_faG77M7#8B_0^v#FMFZKl+vW3t+Vh?I;Vh^zU5%WT7r|ocZ{^N
zd$wQ@Q1vwILe$le5=Un}(pFf+>UXZm3G&ZI2B4?WrH$h%G>jcU`z7CETC_P6Ev52B
zF61dEVgPO<bUQ_~5scec0iN)IvV5S$Qed4ASy6fv3X;{?cehP<Wv>szIeY;eXnBk?
zQ^EP}5oP20yZzhUdaR#t6KW!5KpG+M`zUM;A}*&rQ=o>Q=nxi7co%Dsbv!viJDD_v
zSDQ6sx4i?b>VWsW<D6K5B~m$E1wfSJ12u}Kl4pvo>MR*)GeQRx5&*<+doM>2r>ck>
zqe?IpS>0w=!NbyT1LUUI4k<~q1b>!f0yWqVGDXS~i(1tce(oq1i(xj-lhM0aVZ#Rp
zt<uz~b)ync_z%p^n$xadOUF@#54XFHK9sXH_U$$8haay=l`;yw^*Wam^?Hb<Y}>rl
z0!juigP*cI5e&I-PMJo|;K|bmH2SBN7oLBIW*B3a+m~;oE!*<m!mJ00rle>c+TKmT
z`)$D(mS5y*uxWo*fS?+;qC?g#C#MA)<y*k!!W8muFHc6%b+;Ou8B0@HrO6+J#<Z=>
zDYQ2TT{7TZX;-4S0#~u1pJdZ$X8Kp$`u!;SZ%CdDA-$^uBA5`pSFyKoJVZHFy0FBE
zN)o%piVYVOc<mh|+Z3POWkV1<GiQL$qN`H8am8X(x$gSeC2K^@TDdz+Vs&_@c~P0(
z&HuWM^ze;>^I0og1B$yF;-)Dg7`@2685I_{{!-~~+cbl|mDAc2?-$0qfH`GR>{@T|
zE7$6FLLiI(CP+Gh8LBB8IS2Wc2O_0=&N|p0?d_)unYvy!q`V^UmxOt{EMw6KkWVSw
z`zk_}ZRu!lkwj{N>+}e!leuQAY=S;;@Ri7LQy@*wg^wOCZKdaw@ma3&dy787g||~w
zY#f0x<L-NhXyV@H?hpXVlE%7m0@C90FAF2YSvNZ+RfB8~5sm^c+-A{AxK9zdGgIHv
z7kOyjVA&Lj*j1JfW51xU|5t5ww~`$#MpAxWwhxYDo-A}yHNa{N>UZm$5Hk`K-P;9@
z^j0olc~U-0r!^^r;WKsB)-k$`uz7bXL?}AU#fT8sDJ2@0?8;J7>QcRZSY#)wJ1N9~
zXy+l0?3uTQQ9Kmh<YP;7LVWkki#k&FgMt(eP1mVIuU0ArR~LO;u7bR5&o>L-`d*by
z@~8v<U+lekP?KBMK6)Gw0TGUhD9E55ML|GiQbth`6%iEzGK6`CFwa8}5J3@95rITN
zK&Au|WF{dXgQ7q{gb*Mk5s)y15as|O$$jbm?pLR~>z@AgKeuk(>OUwdsoItIU3=|k
zul?+`o&`4_Tcbj!$Q7Etm;4ol*NM$%?e3_^kf?FPp4?y!OR?_O+CovMa1vi54D-_B
zNUs`C0x|DyCv*OcOWm5!WtP?GBqy>-rX8q7o^7=OXUTa93Sn+HDR}!?lj%hOUs9;>
zIqENcXpL`>Bx}oSLLW&mv@u<Mvy72@LL80kBf3BIYKcoIik>QH9Ucr3MaK$<>QE+P
z{bCN?bPv12ZKEutoY?;h@Qt5dxRh3Jl(6K5AESO<Qa;sR(S5xkU%!vhXe6dmQ1rx?
zM#w;Uwih(C&c~|KA|VW>;pMoW5tigJU>{R8Q{-~cl`vKOEIA=~3SRMD^L&2d55dpV
z>x8DQ2+UEf`GTF1^Zag2*^AjnITU_ATHj-55f+_k(R(Iy9M-zO^qjTKKx+xys0Jtl
zm*nFc$k%UlvzyKe&}q54Cd12%s+7&4tzz5y>oJq;u?|aDO!<wKF6F?$q6e?n6i4LE
z%|a^-6Vpr+4sqlY$97)WWunJ&yhH$8;~Aj~$9}>rRCzCNI9qA1pDU=|n1=|TG`s9e
zZR`xUGDOJcV63Gs1ekRiZ-CDk>bdD9Sv*`HZ=b*npI<3zscouGfA?kN+1-W_vld?y
z>*FC<m|9BD4)LI8^JvUe6eDGaD<HHZ;43Bv2&O?kKNE}pS+8pW)(9PfYE>DhG_tQM
z0a8O1Ui3&t;^JU}XiizazIL`o)@~m%>jr&EVf^g(Aa9})>{vB=4tIk(<7`YeR`5m?
zMJAwDQ7#ACC6~Dm3(nhC7O|hlQBlT~pkcEX6>(S$1#x0EQs#Nrh|ejkMF->x@r|HZ
zCwysgjyK1$$@OnA?&6DS|4B>TvuHMBCT0TecU$ioZD^74Drt3am@@OvU@<qKqRJ6C
zBlGfJMyS6n09A&mE`OD)96K&hRtHQ>&h+mg4sut6mxpGOoPPY6Bhn2DI<-*vb)TZk
zYajZ_C6)j*l_Sh9v{CMqQGz<NreGd+hv#w>MrZcz2{@j_8cj=u;aG@+^T9Uam@)X#
zeb?i|a!oSbdvFUs-guocEqcB&je8}q?0leoS={Ul1A|l&xf;%0F+w-0=Zz=xC>YH~
zx{?+@p>LEM<Ba9nNcV&6C!Pqm&JQ2D8=2>(Tz9k8t1^*|_*4WDE8HNrZ0I*SAJ46a
ztcy$*>`;t>f}VO2mOc%gPphp9TYUXKStp_D0iOUT81>Boz+l9cTZwCo?pn3Fvq8ky
ze2Z_Dz;Dfgdv}DlhXlip>J3q_$IQ!^LR3Mby&|iBSSM0fU4mpdvbL4;_s9{P`MrTa
zBZakLoR14WlnSvRMK7&6)X1}Pu7VKS^g8$Rg%z_8wU}mI1Lal4_kX(wgw%?|p#vgo
zr`hN7W6y&FgBVY}Fs=&KzebR?0pka(_4{gqIgyMPPR5Nl$ZQb_Zzvn0KLTHCbK-`o
zTYXevh;cOv<P~P49(4VYM5Gg-e67X2@{3W6y&Y!y%YLzHs(zhMJ4i~78vAQ$iQg(e
zZaA|%>*kHUU1+Yx5?K<p3L$*OX?#)SEdZV|;`0H&9B!e17Ysyt&H!rrjtaqtL&JGF
zOw!piQGTRBpE~1Q;wFi`Iqs(o-vzWRDE)@{OER~6HvmpK^0qeN9;|ytEpOwsq&#dg
z%ElyL?EsOF>NwtP-K7gM3ZESoZ@o+m5jD{|Alx+*OXY~@9GG|V-;+;oqCK(h{(8S4
z4YkyE;UpyC<JR}<1+;P@;RB#@Oij4gm1e)}F373E!w{_}6CKk1pKT)gHpbQgnHVRl
zTDm*X9Te?nb$^di^RKIccQQ`48MyW4IK4RcLCA#<H;-E$^gAkiNG)l~e2FF*?af!)
z_)HtNMtkW%8`NU@`(`||2>y&fNvc4u89rAHq-~kme+00LMB=9ce?JX8pkXB+;=@Mt
zf<Kc0f&QuuSNJJ17>uOIupK&Y8{HCDYSGyG`9yxBbjkiSUc~jrH8ZF|qx)AyA4x$k
zHIIS!-+xPN_6AT0<txZ8@)Ue{#yyY5e@U&W34o0<)Y(Ual?H)TeKBInYC0n>{uq62
zK7X^)%8+uY8d$Z}%CP{Ujh13H;NmibILWLDv_6PFCDy)-Ry4T0UoR=^7T}==<wz*I
z9f5Dle`rKG&vwGU4W=<>I)b%E%&I}x34(N(RzE}zYvH9snDcGkU#qZ@A|x=fNqP?C
zIOHH?Yd!tn_xXM^({FMf>li<mdoD>_M}+gJI7WN;$lbl;!_<Af;UFm?YhDhP>AJrH
z1S5>23fS{ibsiNwXbXE&XWZiXzSB!0e{u6FTahCK0E;%L|ENa9^&!Qgp7_Osa#?{&
z^?yvB^=C@e?H=11Q#8oXf`2x8`#23i5b^T4qC^isi^;gtXFq{JT{zA$K1CwudWBM1
zFT<lh$!bV6HfcHfwQ8GabKZq>3oQ=N77cF$N*2$~I#H!^79Oc(Bf{j4kqAM}KS%vo
zW-eu`$FtiOr`ZAYpkEhUDUBOr+I_LVU)wVzXuLswKNGE&#QLNYnz;+6zF*w5FlSl0
zN&8r;<PqQ|=Y|;0CerCAoQ8^&2`Zp(A$9eFC$naEgjdF!X_Uu9GFtlH&W%BnY4~m*
z?EHZq-HqhZF~8AAm<wvP>wO3UvikrV$6Z3sw0L`+0C2-F_D%E}!V7Ch`QqL5nI_<H
zS|b%BXqFM%@B=gAw|tlv%wO;L`8FxqJNJ1=`TaIdywl*-816=K_)NM*+oX!X_}Slz
zzQ3gc+7&*BhdZxzy;T&t8lYf~Qtiq>-z@o>DZj1ECSKe1b&)GCw2$3^UZxSCzK@s7
zQuVc^8h5%gNHqdd`7L!p@nI0Fnmc>PW-w)uC=^xDgT8E*j_kBHs}<W=YNGq^IKa4B
z3+U6>x@V&d6vi87BEaI!L@qaD#qSm%5h=w8yNUH<HRo{4H<r<QfOS9Z3AuWd9eEQZ
z%B#^Y=>1}H?twugk#fWx%9}`?o;~=5BM%*(->L3!?dXg3bfZ=958uXCOptNt!Ef_~
zSp@6N!BnGl@OwSfcbTu}EGtzTL+Dsa*{z8MR-}z+FC)1rH+XHdZJ-jQDYg|#?!mHF
zVF>I({<hOj@t%ASS>-<*7{dX@TlzvD-c?`@BTc+lo9l&<7nwa;g#DCf*cY4h(@ElT
zU;nB**hA`eu$7~`-Vv#7FEK#X7&~@^yLKiJ5XCulC-9_&O~k92h=JdIRKp1I{Ri*r
zC^%RF5x_vO57ol<X4v~ue%Io6{-_PlO$`Ay@^`)yIn#^phh3%`6MbPt8zP>>(kr2P
zfNGNC00Him!1r_8X(5K$YR1RwmN9lkEkJYj^2z{?n#B_lU$wS{I_k$<7GtcDG*IHO
z2S?F5Mtr0@k#<+F_==bwpSVmtYkz-93s+#-s~u48$*aOJR!G8iqYh6}ZqD@#;$$ow
zm^9M-#cNMe{Hn^9(ZZ07yw$Z~1?~O8dh5N2nAXMVE32LxgdM@Q@`v7AG@pvBZ>Bb}
zGdZj-UXC7XyvsoF(7H(9g!ElDdt8JqGHDuYOjkZAg|aP2;LI7~L4+wv@)O+XO3f-_
z0e;mFl>%k%D)78EqptV0Xjz~90P}Vmp<YfOJGxF2T_(jP_<+WctwY7xQCBbJ$S1Lu
zdz%k!a<o=IOtii1*xG2$+7W_9r9Y9)X^OXofKFZdkRT)u%Z13QXVdtpzy)K~QOzxe
z-$%f81sRz6gp85%F1#JSuypmZqYy0V6C)N6=SxeAHso-g?%74&%#W?GU=Po`LPXD?
zzFj9Dz`m7Fnxgrm>8-301|1fbf^kE7jR3tVGACYK*3^D{ftjipV9<9*emr`8QO<R?
z8r{mc!LLpZG7bE(NN)YM>GTrl50Wt96?mojIH^|m%xD78*csj{cV}ORsqh(lH1jci
z#Ju^km}`jQFfO83$NN-mk@2Xv>u913Klx+g!Nwgt7z}s@#RL0hMT}SAR|qqsGCQZO
z@(?}|ie&(48Pm(c7Nz7+H_KMDGOnAlelkX?1ub;u3rxDJmD6&Q$DW7$972KPp2fk6
z&LiZnZl=iQpj-Y@RN&q{d))qUP{}<?BWLhR!IgCC+jC&gJ;KtS3J%dycPPOb+1+E=
zT3L$f)X`kUy~{zDw%n`y#+U;A1v@@=<VMtfia!^#gOP}d3^o?K0+R}=kW7gNS(FHR
zHxw!H=9_rO0W`J^T@|BM+?6^|G^1Z2AD0pl`h3G>9(_Z^nuW0LFc<f5Hrr_PMbrmx
zfQTDuabq3Qm|j)ydwLF=&zY`!$o)zcu^C5I+(!7J;UTb6;Akf3UlQ<cryA5W{f`8l
zqC44#cRQ^;&`7Vv_QFU53vNQv7=+fi`)AmzYy5}T%Rtc{-+$J{&AN+qW@xbIz{Kj0
zBBfo!{4@S|;E*8LRiTfT+x=S&(5yS!XFzS(qITRW9D7&im~N|XqmQ>j{03yQQx8(t
zC?&YNcPo6bX6)b#tuJqsEtG~Bz=;Lkgl3t9@3kI6_(Aus0TSsoI}()-zP+{PX9p%r
zg}6iOzRX?(fs0*7Dt~Xcw%>KfcS!X9eG*_)7{c0D>Riq_ce8<D@z92VwPiDdTjD-n
zKgj1?wawO&Ixv4#_2H}SHPSvKp*#5G^0*a1Mrhz0Z>N{Wh4l$W_pKW2I^4(D%zNcL
zrd-zp@DFMjxe^271kF+sohUWZ5+Z4-HngJ0+e)hxM39;*T|gU4moy|E=N^g!j@s?X
zNZG?R(Scv@SsQrfSR1q=5jmxsSyq+IM45KD>SuG!tup(<HepC824P0CLU=vF==*pw
zmA6kOfnC3rfMqfPEEDM9u;91{mD3qW#cxrbOK@yo?LP}-^{9qPknPEukwbyS_b**0
zG)VPS@8OTC0;vy-_M4vtokvy-0s<;kEZgAL;V;nj`wuP652lfkB8>04`{2c!;0ll7
zO8ro(&#pdp0z79{P2ziu*AR(ToEvku=4NYT>06V-0N;GKjwnV1v$Q3L%<pMi_Twm*
zJ143Z55C4**<+x^(!R_N)Y(fqe-yp0h@|3XS=IA-^SaWk%cAXpR)4LGvbd8TENb${
zY}^cr<Rd7f`B~+&363+*c9O}Tye(?t5EsjdNDxt<NIe0aof`&X%Za-$gkwr?cS_Zb
ziZ;K`mMDK|@jzdj@dz<W_G9oaa<>lss9*bH9lv0|a%H62(_^5<7h?>nGcUJ-T#MO=
zy`q;?yt+-h2$02HE9WJBac$=FlIim&F6-I3kfLY$Y9&pHy4;mOmBN?vj%v)O9l<J-
zos)br6Vm(TBJ0sECN=53>RjcD4WeBP$>*9~6*-q%SSMKBquz)C0#m+zP#<H$L{I2R
z^0D@+vD+56?tnk6&Gw@|sRv6vu)k+4(k&L3;ss@ue~Y`}-&J1fA;^#X@zN_0GGvi{
ztbiayW=D`iNHE&V5J)St;sugP-{oCbklZ$WQDA&SAL*>Gp0E!Sa{0v8yP7;RpdlN&
zViD^^A=+Q<$Gp%fN-lkvcl8pu<w17AHilEUwGngB)iwXbLs7~_Q5O_}fa>1Yn+_+5
z`JgOyq}jJ1dc>PZt$JxXcdQOS7y6OZXZR%TP!d<I2<gYCpIVh0FZ4!^4PBoyL|l0*
zGri?M=&j=DyrnkOtmGjF9LGF1Y!lZ{Y2SOTug$rCRn6Mc%y{YvMuWI|76k;}pF;2r
zrVE4lpOfR1u9Ks(0BQ5*J7Y9^^Nm597^!HpBi}9R(1<~pk>W@>7Uh9nmC0O+K(X2P
z4TJWl8V&aOKmbn#8T67B2vQKeNSP!rF6Ro94Ny<lu%Tp~_|F3_H7L427)WT~oHR_?
z55)q<D9EMlGoz3frCv||dl0z8OtCMx5ZlhZkVGXn(9V`g5gF5u*$*7RWeSf&x6dlF
z^@C`tULRdszp?dKxXi!a@BeSc+hAzys%}#8!S@tOWL8JSsNMUEwv}nu2#?Ip-pz}v
zf2#mEBD^&$mE?qM_QlnMQ?iQ|USS*w{-?c^^?238(RE-)s%_e~yGq0K{CcJM<R?DQ
zzsoL}z^wK}9>m;y-V<3M%nGg~SpM+Xj<YYb=K52vo<bSKhrv+4P2h=kX`(}c%N@Ac
zJXY2e_>lIo7m+dG?4tKh3@fcYSQ*w!-LR9i+@e}fCouaZxh4m<nVG((kM;T{Jx}LM
zR|>WZhXqzxHbo^^kCt@yv_PyA9fWaX(mh`FCHjpaYk|~0^PC{OT`~Nya7C%mm0-SU
z4ZdS$m%DT_Ehf7Gs+7@NIhZIWeQC0NqV@cnkej)EveuuwMT#1v$WAP9JZdj^RmwP3
zNNBw!xzH#hixO=Yh&;0}Yawp>+eAt%aP`Z5c&MkiqUC;K=zh$^ez}p@*0?a31=tSx
z4Ax^^W2`>hJ{?7=b+r{!H@5avK&;KPF?-s~B><if`p!N6IM+?BYtI1Xqkh3O?kX!g
zo>W^2&h(X(D9IlbQa%-Owmf))9HP9%3AL{AxZcXLQn)AH3bYzB%Qgd@;&j?<`W*9r
zSnMZ_FYdi5W>|nnf7z(RiSIk6`r!)5OmQO7qgpB2mvbA2_(0<RRR6+Mx9$RXjUP+6
zLI3in=CAb|A)aO?^~DOuwAafW1oG}?r*7)x$tR-lTU`F-7v-{ZRz>>S5VxVE&;y8a
z5J1nAn3vtIM@26)_DxtM2lW$aNNuyeAHf%p(ZD1$tcLZP7oI!fXr^Wddbo!EeRjXv
zruF4voRz*E9~7KSr)<4HjK?c!O(pz6j)IE%YVl!3eCU*m%e3CQnDc3N{#L%z(g^z^
zgcz0vH8~U-Uf$arvJUQ_)!`FPtq`lteuYvL^qSQUG)})BybrZmUL+?JgmD?SWsQ<U
zR!QfYk#_h3KMZ&Mcm&@3XG37entrfrof273EI){)rI9V0llD{WFV=%-lK4X>fHGF;
z(VOb_Q#L#Pf%LREVdAq?SZKSwX{qC9KQ)NfF(0%0C&@*kgz%|%4w}`z8P(XnX73Ce
z=1}6Ih~AoW?7TaNp-q|C(f=tjbNxzcM_l4ESDU*~1b?e0^ISsuu2qv`f=6G`wM)_(
zer!Au4oKxD_~L$GeJkw79)Epw)jndqVPZeYkn&9iB-W_KjQ$i7qjn+2@%3>&MO4$$
zgZ>uXb7n_A`}WCF>ibR}pm_{526sM_x5|)y`QpesD!8;&yqpxerjd5OO!kYxRIXI!
zbyf#{okivC7NG!LeC`*BnmQPhf6w*ped?ak?$a<F2)$@w7gLqR#n+u4$%afRb-?Vr
zU8>ysG1B!@Ayrk;FOLz+%ca8*Uf^K;qG!>i@=pzjIMj1?9*lbU+<BlA;$1Id!SR&o
zU0i_YAa@p|BUQl;K-cBBSr^w@8ZiNZA|0za@|COMio9dzJVntI-N>vbY`KuhGXBw7
z3@DvBAZ1%^ZBget+iBjS0%Dd{PQDdjvz|t0qI`-1%g_Fi_uFgV(&&K;NJQ^}NNr7)
zf(7No@rvT`*9mjLKEiN89#`{tLj{!#BAM(~DzCy}_*ral5LML#U`d)Xe2xk$S2-L4
z?*g+rttd5I^>r4Ukx%k1Jf2iM@ie5P#AE5+&;u}rx7;fqi5u<q_SCc6SchyqzU8{r
zevA9Teh6(oLopjN1V2GyZ>lBai+xyvw^nb?BO*za>VF)8jG%!gq;^N~iUp{|;1?^A
zPWBIVyqLJz!_%juO3693rOS2s9Nh0ZH_CfO#?y<KHC6K8h|_97?qt7bvsg97fz3Fu
zUw=oR%i1WY+8m?^HZZ_{U`60Yl#d^Q0ij&8Pd&pM<I(Wg9$s5;W!gyHEIXOShSZii
zXpT@n&u<oUK>f^tQ)_jd06F08(ua@ttm$LM&og&<e+TV{8ik+-S(DdE5F9m#`mkal
zlr2U5V?9NN{Dig|A10x<@!07gN}$rtxorrOYhKyBT373Ei5F;IvVcF{R_*@%88!;A
zqq=ChYKh0@ocJ*H*u{I(K<kDk`7;mS43@UFtc_R}e9FgAW+bc!xlpw8wJ;RcCgzL7
z$r}=!o)mRJ;^VKYbz`r`svT}O8uj)`JzG|E{;9mv^zokn$&lsi*8QAed#*0^!%xat
zzj_i%i(mh|&Lite=h6+wkqrI1WP|9vjjMy!!#<;)@McIxuB1<O-UbbR^k{;t(7elH
z(Lg1kV?f6>WtI@f|4F5p*B5mm*y<JQ7Tq+|#Tqnx@gY@1rAcV8`1?J7n7ljzSywmQ
z5CV~$9+KUAMSj2n2EQsQc&)xj*6MUe8A?v<(S2)=HWeMaa6-BKUKr+;JMldX^)gXD
zZ$>}V!8jJ)r2e>=+3aN?Jbw0*Xu15a!I@B_;@>O*rde>e^l0NeC~r>!?DQSj-08_t
zWb6HGt&qK~M`z|od-ZsZ6lpb0^*`XZL`^7yX2j|pug#3p8EYRM6vWTp5^HBqr<oWR
z>|uB8L654hG(??WyS5zM9a;~R*aVd!TuYTKCU#!vIkCC9y5fsxJ9QYy@lQlDL2{Rv
z1-=NO8DO&$yE7PSP6mJBlOYEz<$CM&N3iFl?)(U|5jDwUC>cs0hR*wh<C?x#SzIl|
z4f5BV*CL=Mdmq?`A<EY$EoN7MO}jxg8ZC4z>aE<HAW;))aImn1_?>6c&swc_dEc}F
zNpRl!h?-1M6Kg#Ks)|xLpN00(r3)&og0%QtZITbJkftiGX`Oyde89L%3H3*8tSm2n
ztU3jVW76C~jrC&ZD)ikFd<i(Tm1>d&nY(5hI)#ex9@QLG<--p!s(I|X`Yv%Gdavbl
ze)6#!w*@)WH0$VX%{KclpMn?BtK+%}Jo?+q!%^IzXy}CQ=8$<WeBNY#qQH2<p?&{Y
zocvE$W80!&j+U7~+l5od-_H*o@&on9GpB5$8m`p5Gb5EZ+u<Jjyp06ltK?px%T^*A
zy%wpnH|qwmF!2W-rdq2{8WA8r#B7)y_Z|OmR-aYi1B)y-52njLf4}H_Tt>rp1r)mj
z^x3qeAKkt@){&c8+TSGTW|5H~C|UxqcmICN7V$-GiF|=pM?L(w>(}g~tI81T8da?!
z`zj&qX9jZTo`M_Ax!;4Gf|_=DXS($2govC*A}B}>C8_6ueWS<34Sm)y%E(kBUUwo@
zccVK>hXa3aZC2+Szo$9<yKy1rPB2qAhAp*>EiWNrK*^8icak*;jCuYET~)mfvz7sE
zsM;6j^s!OQ3oY98dHaimCm+NHyKBr_%=c>zm|Oh_hapNmvoRzyLWdco4jg&`I1g*&
zZI;NZZ-ABQkp-gZ7_aA0ji9^J#~z5o1RW4F?4>y&9VZRsyfdiAJXVr*)a#48s7e1J
zO|wUrBxdhFx}9#+oVn?8m4!jPFM9SAs$fj@;?-B`l-+(NH$0yTj>PfaKi}zDoE!1r
z;jj_e_wKC+7tFxDhzA}v6{b`8?GyfSO_2Tz^=1UXyfzQ}m?S=~YEP)~@~KL>T=IE`
z02u1IgM1B|rA2%W_4N)D5wds_ziZPQD55#C+rNOS7ZVDa0g*3t1cT``g*n^u3g19d
zp=b4vLS0F49f1I;D@fgkAbDiZ`UKA<%3ulnXpC*OSKvKS%nGw1!gNi+g6pB1d;a*|
z#Z%|jsW<)KTBuDT)<nz(pzqYQ_HJ_OMjnfET9Pp1pi^Jm`=f6k*AKph<S6=>YSe6U
z-pq>pUM-by%&<vIbB&co;%~Mp*@^5u)zE|4`0K7(gBpPL0i7h*vv}gs71{R)h&8Cx
zQC-RO^t4hicWdLcQrIhqQg9wFR(QAk*8+QRWzp<C#OQ~_iNGnYmF#GmcY_Ta^*#;p
ztn@_cP8&hfGxbI9zbLQOAG&nrThVV%5ff*%^C1X9cTM1+4_Ax4Tamd_LeK?)DZ#jz
z9Vsp$Jo_=6YLjDFiyc1y6mxg50(NfT^LUW;(cpyDZy!o;yI+o^D1_!SpV+<nVVBy3
zB_Pa&5puKGyxB|x4^6p4ui2ri%`KP*<%ZxKy7q&Lz#N?U^f9H|3W`*E{;^1uVnOd!
z)^B`E-0Bt+ke+Rmc2(e@UJ<alM%saqvk|B(#VGyd7&bm+aw|15GCQ2GY7-j}oQ`7R
zzKFpH7l6R@`TOKqZ>i^~8o~Llxlrq@d*Fe?r`{Az5^8GVqGy#t^S~yj%K;pzRRn7h
zz&;5}llTXc<DlS&WI3b!85JaM;zdiaiS*{yK>50iy1OnJ3jKy^IQ3Dv>@UTp&XfZX
za+@yK<^MNHheMXKmZIpd3eNhwMb8j+0>n$<=BLY-{-W;aZ-=tIfVS}eV%1API51UZ
z$Bx|>x5XHq9$x-8lC1YMfzjzbz3By4x9gYBJOQ)-9e;j2vy;B9Te!M#ZR+J;UDX0Z
zl7Q~^$&b$ePk%#w?H=H}uh#+jtJ7B9|3;7G%FH3zBnwSFix+~xpeyf>>;$MN$IiEk
zl4WDr_no?d-pBW!*8mT*_f1Ib?R0tA8e?R4B2ecW1CRA>0*#1dP5fmV7jRt|n*_YZ
z-n|9?gx&w<qw}`T<3UB*zwcG|=Nn1c?NK{h{{wNz?foSSuwU2p<nVuE=Kno^|NR&L
z(dvJ7>Gdb=gDa;2f4kV{X#4M6>K}jX1TgA^?DK!)Nq_pC?L5$zPXWW<sm>JNp4opb
zjsJi6?!VLZCo}$cy8i4X|6N^wibnsty8etR{~rfK&z+Gu|F;&ve}VBI_k#a-r%rOq
z%i3AuKMV$BUlsvdnQC69@PD?IT>^q`|9_Kc{%3&un_*;)fl(e;FG&6$Zt4G1a^Vkb
z(c@;Be=SAwr>*60!>+)9Q9m9#s{eT{{rkOo98g64TzdXLw1z4WXBG;4_Wn1K*Pk$M
z`*GX1b!<%?B>ppNcx+2kAAC0aFV_7>-}|RmO*#nZw-vYkRZhk~joAM90|;R=P9LiJ
zKNn@&w!P@KzW3b(kN?aXAI<`!jL*3KyP)?U{Z#fY5RAVQ?ElZKanlqS1-sY%AG*{#
zV5wXZEBeo@@!tjZ503fY1@>nL{_g_&GbUd7|L+3xI+s+pkZRyM_^!c~8%M=giYau@
z5_n%2CL{goqkg+g^K33x1*dnqvLQ&gV%?B7!zJtY9lHm8cc2XEtf}6<laD@aDlBZw
z#TZk+@n9dRJTK@LIWy+jMr8GKjt=IUi_`v+n%K*(xx(FC5~PAV9`Fmm-z#TDf9l>B
z)V;nRU`+;vcA$v#&mG<R|9sl5xGPxpN|y4Wv>)GXsh57{9)sZpiwF)?=z~-Q>=u2<
z;;WY~XXhR_+}^eh8T@>99Emr|MJsjYdngAkaV24qT9C}Ot?s{d>3ylSb5t&1s><F3
z0OeS-oi=FGnFZ;8+2qO~u?IxPQ`p|GH-fpXKQD!r<8Z^ZH`J;u3k6-<gp*k>16F4V
zu8Xf-Tziz8VZN?Cf`fJtx}tH_p4GwHvn0dcVvmXajCfNZvk$x7rr}M+rwiz^iv@0n
z&=P?dY}of6$;>7>?>F;v-G8gye7S4;v3_2&7vFv?)!p^B#j)+@{$-D<Fz36inlvSE
z0y<~cqdHoL8g^X1eJY?L=A4zIZuTX@IdD_!y`$*sNtPZ0f`F(g$qZ>uc%x`tySuIx
z(ID-=A27OnEC^|yCF6#_SQ9eZ=UuUboLp3CMWk3C6jRARZT2Pk?-km=P`|OBj&i(*
zs($UPn&LPh%u(*0J~pQ}?$Ez#AuV`buEP_<c~&lLtthGCnSCKus?p|0kA*z#?p(!O
ze`x9PWM?4<mVTVS>YpSa+xNbCDC#>VliZyt(!me+CY0$vO;{McaP~QCzP>lE@2xR?
z+r>t4pS>>dp&DncR5o#}xEk%PPtiplX<t6uIQb}3im6^SF2BtFkfk?icU7lyBSW6f
zEj07EUU&7DkEzf&B6onEKHbT^Ixe%!I=iRdUeR`Ei3Ov&yI|5oom(81o$Ex3#)Xp<
z31@kbe1y9eoZbmhTf4i{E?S5DE@*aU#~0h++03cjXvEF)%{_3p7nj$rt9Y$>7XT$V
z#LY~+2DR)a-7#<Uz<ShLb5UC$a<KERuuk;JDqcw8f=9q%HEX-I=Npj(&#J{6k}&<c
zY-jnm3Y#*goCCp@+Skn!u6)@^)M3?z^OBkIlk=D9qWxjL3>8~`p%2QRqEAF4)pVxl
z%xH&*ee36k<^&+KSyh^9@=Hp<a07|})?R%cw5E45b6Hx#UUz+*-_)VsxH~Q5n8O;`
z1wKA!{==mzSm*Yn9y7I&_CbrCb$MAlOA2YBjzcqC)sYn*KceM(B!@L~f>;j5Q1hAj
zevGyZkv_^<sq}{g8fM^w8-iUoVG6{uJ1qFdKapbrhVR?s!cd!UFa_mUc8}Muq++Pf
z$>}0>IA~Eid`_T$Io-B}n;X=+NNZj0HD*7IV9mHmN7WmikLkF!{{kT13K{95{divd
z4*E8n7yq$ENoRGvpa=ptZ>Wy6q-GT7g!ha_GdV30CR(e`fn)-&Yg4_tRp8)hm=gJg
z2$B5pTIBNAYa)*)_BorpueM3mWk)q$X12~7#BGGlMY<NG1XLm0N3ioprTf=SzGQW#
zD<n>2?FTHE<pbX!HhyZqm4?3$P8C*f?CR0V`u!TexQAR$)a=o~UXI9<E=ow3F|FPQ
z+~&V$5FA@`U#-o<rAnT%?hCz`p{?6qu313r6M5&MKH}H*{H>*_3Q<Rq7s=934ZJh?
zZ1P#-j5iATRjVa#ue1KoIsQ$!ziG_A!GVd^o+3h%mWxAq*@>(x9t|co-<@7&T@3W8
zY`de$DSIJ|7l5#gH@PEG6B`b>aDH31>`+452*V9EH<<qwn}!b-3zwUV8?Lu7hAmcI
z9(&O==2Pukfox!oz8DKr=dawJZQk7X-tKGYDGuv2gDosqqYk#7&&IdyC8n282v|J)
z`U$pGCODk_U@^p_-gX(@v|xHclK8E)?sdcqn+DfHiV@|XDA%tpu?K|4Q=*toRnEf!
zRi_bSm+dXY&<_%piXh2zW)Li+2a8`;Zan0DqW>O{oTXXq#J{`{&uRdJi-A%j7wPuM
znMqsM`O!xH<KP#Xt#fABkl0?E^bD(7-AnJFUp$IoUMS3oV{WpMI}0ZxRw!&Ie5u<z
z&>xvI{ijLK0wu*ghF{yBfsZu+M*WZqUlq5LwbpNpjo$+|LVs-@)LZ`LR1}Pif7TpN
zk@(S|99E^0c`EjFYS~4qVnrd4F;6P(+(Ro6syg^c+6zf}xBT<b38~NR#mW~YGrsje
z4|(uEIQIt64;i+xcm}pDrfhOE5?ntGd9>(SAZ@-K^HsRr7hq>^%x6H!UBYcdZNB@>
znMbZw<DUmBu>5b^ix_o9=ab5D_yJ}N{^9gi8$2^m%WbMT+qrS^>fxJWkIy*w?eujE
z1oN5av^@46MVehkad<f*brGE{tN6)|V@F=N1<C?7pJv=^x|^LgtKAEJbuzf=^Zk{!
zEj;Lfo_o(@y`@q^@`ze#-RNdzfi+svuGvg0wc2wPZeB}O@)e5@F6F7(pf`-|)}Lmj
z(4EJuZ|NAKY^v7F-);tuga6@ZDVxD}`&^QS-@1EM#A-8bVNDVL#H&QGW0ru#e;RX|
zTT`zf;d^!k#f5zVIB^lT4{R6R`nEh8=_r-2su*#i#K$kPd4xFEMDn3k8e!p{AY>6%
zfYx<odkH=}*v_VPoh`bPb@6CPd4pxu(VQ+CX7Jr_*7ArewQ*qz7ARE_y`{|X(3K;B
ze%RU~cEXe!F3uUlO31gWuxb3HURQRJH$*M)DoFp>Y#7sYTx&=DxOO#s<xZ&Smk<st
zSrINWQrUpAsh025#c3^S1@@iv-IF|DZJhp|P0cS$bQvtWq8@*ubZsj~mzkC0YqHn%
ztWV8HGt#$J)@@*(fb6nl>@oYE>F=^~dPQdXNq0go0hk{|;%*INEJ{i3P^Y3ya2<KX
zCdkaxG&uPg*R@jpT{-=}JWr3e*`cjIeR7%di)jqs)PgVX_p)(JkE#mR-l;o>$)RC$
z#di;uA~H~=z4Bf%5&O|4|1&89Z_BqQ<+kqsOv;wZxYR#R3UPZ<h%wXHmX9*Sc?1cy
zuWKO!<G;5n+$L7<RvMfpHhoWVVPo!1@8Q9ZlSn}F2g$cC`>2ZNbqw}(|FVmUHUQR>
zsuEh_dz}@M>P}y3P%aagj3bpq^y~4-p<2!^`*hy@Z6wCMjxh*_kA>#e?n%x6rJnwG
zum2{s2m`C=H>%OI%gbF<&b;=_4XcM2n_A5ugo-ko0yQ(&ghP#17tsfqg@RX|BYp!`
zN)c&o%8ob>8pcRZK8vY+VVLUy)GP6p-Ri@37LG;WeK%WsV{Pj1(mK_Wsh$bB%H6Ts
zhwlI7KYk&AQ|eXSqj6!o7x#{fEuFIDr}Tu#Dv_`CY`?mgl8GqVui%F&Kalpe;_<fo
zqcb~}OoK~Qkq=8|mIn4CD*=Vb)hXED-(VJJ8%jBqR5u@G&dqUEIWvyd(Cls_Yrpyt
zkP9#hI&B9#0#BKJM3IpIM0Setfc4a)1oWe$epI_)E`cKMUKG?b4H(nRQXrm#BE_Ih
z=lTEqu(B_a08Jyf;XG(2%0xGF1u+*nvq&_4{FG7m-5M`AIE3<TpyWQ;yP{=J!ki0*
zR5jIo!7hfAlC|7#(()LlR`(H{Gw*438F@)D4G_O7w{ki3JX2*#PQ{lSW%|+4z_cJj
z&9v^WR27gB<5DeYXOipV+OyTtovlSQD|y&5Fzh5!)up5buXO1us>uQ38`9Ro#5t9=
zklz*H5U)X1EVBtY3?w6&hFo4BQ0dLWGI4rC0I=qG{}3MMaM?`SlpSqPS9W;MMhn#I
zS7(>98eYWx@Ez*c5aD7UcQAV_Q3hW**%jZH9g4{I^9D+12<IMFoDVZ$HvvgGd~H>(
zz3REpwFb+NjtM%3A?lHYawmDSlAq>B8<pzl?=%@kDihc&R{|ntCr>AYiucBp8jF7D
zbJlPe|M1C}eXp?dZLA%Kv!*8L+vqRh^|joxQYy)aHC>4#djnOMLtfow!+~*aLzMxO
zKQ#+pi7A-F&e}ye^k#b$Rc70Ibx7fXf-1*Opr`rZak@>`B001rye?u@9y^C>;f*%H
zy-)d%T?QL9ZAM@=dUDz}mCVrQ_yH8IK!-{{ZEbvB#|QlF@VZmq36=0A@$IB?b)Z&C
zg}|t}-C<MLlk@HH*&i!R*B;gW;uuNq;-$mZnc0jQTu)BqW9lhfbHHS73nmy(aW7~@
zo#O#f<1&z|<E_C&GOF9X3`bu~!x}sZv+uRS%H;^Sf-@|k=+h%I+exH<)Ejy{48hn&
zc`)rJJ0YGg^lGgy<x;4nA>~)mI^3G?%@mIfGet{L6Jmvj9aQXHFB~+|J%<Y=|Ew~0
z9k<RnTXo-$a+>6Gnnlka70)LTrZzb&J(wMI<FmIjHUlWW@$}n26M7YKIMkN2+^g4u
z)A!kY5i;kOw9%gvX~b|VDPpg_wf4#KtZBhTbGN8*;ahaW&V<2n_;8ecu_)z{srp3{
zNtQCEjJmDxJi|-B5wsSugn!rA>w7Q~g~UEk(}?a2ZQebhWlsGuXH)g8w9+zy$a7KP
zUDWI5=uGEB#$JoHM1+z<6imwlW>HJy($(d)V1XE&$fm4~uB$3cR$&nWY*;><Zk#QJ
z<YT{`%dHPS1rP13Os6Gh1>$>!4#OuEc>C7^`LQWFp(QZySI>*lwZsLx!{-EEOhiVW
zOYh83!&)B9${_y{Uf6EA%sszkhIG+OG&b#K_xmPyk57iPQl*d}^~p{e=LUNa`h_>t
zyV+K%2jjPskt{RH{aip65qh#}vf7z`XY%%BtAC9B%riawA-YQF*nwp%M;qyFtDD(O
z=^=d>m5Gs(7z|gN#5UYuUygZ&>m7m2JEYX1F$p*eh-kLXOnr}Kw%tf>iu&mJ^~R79
zS0hv8jahp7s0BCMLd<lk;4NW8ExIR4Ws#J-3k~-4abbDTcamj2W14f+s6HCZs{V~S
z(-iqzEbFP+xKrWHGhXJy-QMQMnHnsUW<~W)ZRq-H=yo9gT;6KlI?3s@{;Ou5rORm&
zlX1+e(Qi?(YSMM`4qhG(kI*8Xmn1R6syQAyE93`}YvsM&Nxe(+bbgH?!n?i;&5=LM
zrgC(9XR2aU^hi#oNQczWI!3MF3&qTe7o2T$2P!!}NBge4>Zv83&i2B5VY;I;HglW0
zW~%dTMbh|=A3kU6)7!E^W7|PRn$pzjfDA)V;(2ScJ6s;Hsw^rwyrqtCnqee)g8;4T
z^2PZ3<uJim%<xt-Go*4-5H1~xuB=P`X{F-vMVY3|wl4Q6pRMg0E_ZBh^Wo@mHxn(n
zZWLU8E$;AJ@}-Sv19EZCx<~BBXWMHE=?Y%VYt}Gw9a_S+ca>|mW|dDvrTb`oLm2{9
z@}AYr%|q-G6g_hO9^UL+-BatbPhRpdQap_{Oxf~>=eWB}$5b85e(lZji;<KVR=T1B
zUq^w9dNq&S&B^Iof?K6cN9WgfEVF-zwcu{jn}3e!w`}B%8F`EM8q??BxBP^jFeE;R
zHpftVa+=R%)&zVGD8lGS*8oLFlu~N1T0eAMt=@uZ&s@~}vcw}##b-U(Du^7aX2u9Z
zr`**q&oyxdZ;<W@%`?{?4%Ak$3ZJbtJ`}eCB5pT@q^Vr`R#7k4cXJ$APmwZU>t@1h
zaB7fF)&kzd^##rxVh0iGujMMyTPNe9|4{&Y5c9WfGw${N@w4jzB&pCW3-($v`C!7d
zbR$o?$`=>yNF}ysQDc1PaZG&`$6s0>m#ZQDom<RjU3VB(HI7teZ%0j_uvpc0Zlf}M
zX~wN>;b9OiF=WmjRloIG_PbbguZ+debW0-86XCO2Ou(hl`uo=cS=n`2j9Rk#JDP~Q
zT~7EsUtn*v$a>nrCnkEUhXM)d840oCJbXSNjWxNoYLHlL0zbCLZwn<zoo0EqPDM?E
zh%h2sWbff-&LI2_E_&_4R8Gt*;d}VI4-2mbutvkNmrGoP3eJC%+_eV=_r;yu+wn)Y
zyJ3&k)VaWoLUBX6#0kNz#!)(Gd3wU69r|KqkZ&s6>#pWl{hQ;tehHT^zGPgn!6c?L
z7_JIH81+*&a3kG<KQWJ4*knRh#*IFYl0zH$^VSb7HL_47V|F}g19<jkK%$~yJjOzf
z(<48+=AO!*()!+CQ6k6m(aIo+xo_vSz6}-yiE5aKA-lP&tmG!K=Z3_>D-P9Xlhzkb
zre;mq%^i(aIAS5ntTa+mSKO~HyT%EUn;nTFF+#I0Fk|l7{|*M)$uDl&OA5n|i9)G2
z_DQ`H^&@#vw-U#>H77Aw!K{#BC$!&Ed#~>PHtg7St$Xj-pUW((jJwqN`H}tM7iN}I
z@r4<@-hEK7l4gMdh|KrO;4tBcpA;;9EKv$}K2<OO`zTZx{$yEiaN>C2P4=%Tc(b=^
zl7{zJ*}yJHC@crPvg9W8q^8$mB=Y;y4jGG|I()QQjZUFEbbJ;y%F;e3e-xb@VCN?Z
z1!D5$d#Q#_&HS)pE|fh?4-f4xao}Dae@pOMX^h~-i*z$WDHFYpw$R0fpONPyx+7aw
zP=+!t^BB(H<M8~GZn>fQVda-*9#7znHEblaPZfWuTK&|MurO=hD<q<5>+wTyV$w>~
zME}_}RK)T1=Z6G0e=RQKC*pN$dF(T5f!KwlB3kveH4}+F_uey579E)_GEgyWW34~u
zR=IKU7i>q9jPM`bTj6;PB$UaHBzL4W64p>@EmTESQY-M~o9GK}NW^oyBR;JReM-f5
zos?ToYjfaRRMM=>x@?b@YV$BSdPK#esA25$EA=Dk;@!_s1zFJ#V|s_B9Ct}UGieD5
zsp`TZsXQDqI0wq4)6&pOP;p)8;u!4{&WjJeq?k_%nV6EHw7(-Ye3TTn6({vB_r=O&
zQ3_6<x)XYGQyW`T*=)!NDBT$+czY#0v@+ah+Rfo+OL-ekdbknQKwFQ0fSSU6Q(;W4
z-k;lezdDEQQZK@C8rP_bl<7~&xq^D}07Z0Yw}elOOVE*^Aa;Hry+>t)Uq4|oh6~9F
zr<*Q!zce9}1kkCrL75(wXnWC3%oIg^SBJ3>4Y&A9y=b*bD@%Hpt}42jWzf1L@v30U
z#2cH-(E<O2q@6o6-g|b!!q8aVM0n#5?HfFfA|z>T?ruuAe>we>_ceXQgfDZVS3>Jp
z==|AzrS?-L0xFIf9xkaHKMLUdJIaTS1_U_*q{TY%#dwghB!_Zl;muq`$jt(BH=(1p
zddK&rTYBVi8<7J2z0tloHN<phstFmbYGQLn5u-#l8HZiHsI!@B6hXe+WULc7_B;N;
zlb-QGdeH`PN+jZ)Q&2XxikP{RcnTkLeOZ%sI#TC;(xs6tPj4KG;kq_ldL!tq?5C(m
zbRVt2L+@~y$(T1d-kMog<q<@28e2;w2P1}igdW~N8>%790FFlekG;;<Ef8Ky*QR77
zB*#rA(SFv;$vOKhG*&l^S{-73a?VmEL5V+V&Wuzu=qBEfa`nCPgqi5<45nUCNNd?=
z9ckXB1Lnt$X05LnjQJLu<r3gBP!Cji$n}cqCX>4Cksh1HfqMndYWs>JJ0Qh%Mn~iN
zbmmYLr#n26ah^2{)hAa?Cfcw^_o~dL&9t1JzcgXr-!PNYhoAfv_V<mT!*}yF$Cw#I
zH1VvnTj0glD;qcv%f=~&#6jPh>DB3&HQn&RT^zi|TB@>5f6dw?GS$D}pX(SuZ1>dM
zY3Q5oENYTY@4>#0{E;}vMS)`&1lmBF$%-6bTW+*2<y{EvvcsdiPy2Yr_kJ5IoXSyW
z4?lCwss-wvx*#sKMoQQdQRj0#ISGu8{$5?*dCXLk8FDYBKO!f5=|aK19O|K>ORLYT
z()Pq{g^Qirh9E&R&!zZ-S!V6a8OwDCrPkV1XZ9>^i{$keQ|S)rxM@u_ZbYsvZCT);
z&?<I1Zu$A3I0Ug2G)W+4Y4D3YZ35YECADe6vCMk>n~#L7!GyQlFy8Tw!FYRJ6y0__
zyakchwj}-AA6n`O`l&iaUa@s{k+|j!sv1!&Q(9vzJtIfM82*Ru3NZ>AhU&P+f+s6A
zo%30I>|vrk*mi8R*0@zQWt}d;`&R$HGFLARLC+5Pa=F&gni9{?!%Z(Js-FpMUF^6a
zSFDDTU0jsQwwkWl7~`K;s~h^BhlE-JbynjPWkACxp&}=2c4nt^|7nx+p`*cdGpnA|
zpSZ#D{embWpX-)yE5B1mR+@>HN|bdMveI@t2iJ>KR1?1SEsp&QZPYTUWGFReaxnqW
z9FJ&L>WtRcTKno`GIVA0qyRh9`_~}cw;Hrph}+=@6oqz{`HuzhEgl|WyRwXwM9k5V
z^v5Q8``X6)AWF84?E|Fd`<E<P+4)<jy%rUF_Eau@Qj%y5#B#<`d9XISuSnU6A_F@>
zm4?VEai#5Nztja%;>RK(?&n6DD$=cb>In9)6YyIbt3NGvJau2*B_R01hWqRL^f|sS
zGEG0f%U%+VZnMj16$a#C<lkm5e}D8i@m61O{UZIYyV&lY(J%~JUDCy;dPk$P$S2Nf
z32dN0L&~G}BcXkZmgq6wdXL*Uyl=ep05x1h__^?<b<#k^&SV720$@`5>f+>eBR(<Z
z%f&KV;O|$pqx9XZJ>=0lU$WkY2Q0|Z?n^ow6_f4Tasa{-Y;VrfFQGLQPL=Fjt``vW
z-iKNJAp7opg&|_C{gh!QEs~LWK3S$6Tjmw0;y0I}pYZi@)`^pXCn;f-aVMW1hr8dq
zzC)wAG=Q+$+YF&>u6xA<%q`>@v(DFz*c%?TwzMcO5ee-e-9DqKXH)ZKC}sGm;4|&u
zncr(qP}RS=eruR1oYWn&)2b9}$8Nl-ZBbJsBo<vET8HLX$(q4a=y@`a@0F|=T3ZIZ
zD__Y%sEs&j^#kl~OT%>U6k0(7;kUdR;r6<rDs(n7pGGE_KZ=_DaS}fWmoqO6rQcee
zr6La@e$<=<X*F6(1$KEr;sK4+sM1z2%!EZN@SRUr-NzU#j9!R;1Y{sv91DCO?lUxX
zmdUOR?|bqU47yjBZN^PVu&RD>O9iSfH~Najv#t;R0u($yi}Uu}cC!F&u75j(YODa%
zE~noj2x4R8=c0p>xAZ;*kjy?4lVv22Nsb3DPlKiga%-2yHznGwNzHU4`J@it2;R9~
z8Kqg^KUNy&b|?hD6cclJQWsMTMQ+QoRr4y2dvLhRlKR?q@ecn;W7Pn`>45GjiFPeo
z{lS#D-%-KM3tO@eYxAOyEN`qYx-PtQ5O8?at0xWr?lQVvCZx_EdS`D$iTp?`UZjG2
z5Or}vck64tyvE2A>55b-75UoRuStpZL;#~S$N`a8SC4~?O&6|;A)%WyQ}!}jvmqm?
ztQ#peFCB)k7@;?^0(-FM9mK11-YV|jw-!D-;BiA=r#U6u?eQ>_&1k(PsC4GjPuMw$
zIXk`SA0dnRpItw_*T5Uf#EetaEo?$Q0#&Y6t^UI6El=;ng&_pjJ`XfDYd0;@NUgmF
zJDx_f%Ei5%+Jx0r6NBdunWq_P0OEP~(lMIHeo)NHF~Q&Y{LqvQF~wi=t=fq9L$$#Q
z1@lh{xMIX;Df=cdNZPx~SQt=8pak;bY2S)-1d2-?EhMdt?}Kfi5aMD_NuK~={m|T{
zsWO$;jlghOQfz%tsv3!;_*6DW>u|KP$j7mPC&FtYJKs*o-Bsmo6teV=EWZG*{qW=y
zH^A6=;`>{dP=WV$5Tn;9U1rtGCOn$;^4zlW>35NK(HAb{3ArlHB~G=b568Zc8iCXB
zu%lq0wU`#>%BM9>-$@~}p%tQ-@c0a7Xm#jd9P<U~MU#T!es3Sd@VqWza+!3}@YI~|
z{kR*m5*Pz|$QbKB=>h0d2*jG7cmiVBG0}wfv0Jfvpx@{{s=Ote)7*<OSM?l_oqhl&
z9!-drGs$tp1ZnBMQ?yLb#rrW<H4;D$Vryp8Dr6e};+D&y^N`Vsyy5(%!!#tiNPO?U
z{ZiVpdGG~b-VJbe;*(A9@67>H?h3Ibm5f;aWA@xi!Y;jad+%8JWHeA%8QU2K7403K
zjx0m{U?H$>-=!*dJ_TyTItPa3np=Mf_3CC<OZ@tI+;@03%VIaOe@b^Vdu)u;4LM1)
z?H7LN?S_SCa}tg38(38)2KPhpLSu?nM=fP9!n*XeV=Tm0JnGpYu5?BD-DLBoOHol*
zf6_i9F)&VO`HZsT-Nq{4@3><4P@g%@)Id5IS)^nM3cd?I(oi%j5D_+^q4)BqiLbBB
z4P<g%c+5E!r_<4HST{ByhV;CCDyRUpmqP>aqP@S(gMpR?R5YSNlUfPiba}2X!b4j_
z1v<7m)jFJyo!*@8vZQshDSq(1trB<^LToqDd^mc2g+44G_5(IB+@kH&76x5zQw0jx
zgg@?31YI_-i{*T|BVdkxG*BaV?2wPA2uU%I&NU&!r31Z~k6-4;#qkqJXQu;Jgy?95
zF?Xu8qDv)11|)kd-_t;c+JnAS!axWizXaEctj)wLL-)#Xz1#*s^m~%yi&z9`?^vZA
zMUVyBrD+JdwZM!qC&~7R+@LR#l6innxo89E4Ywf7*-Tym%`ROF6@=8=m##HDCA$SP
z5kB4=zrr}ff_Xp=#)}M09mEK&Ib}U>sx=LJxFg?PtpSL~TwYv0^KmKMLBBE48>9*1
z3p9SRbpJQk%`$4YJ3D((Pa!xfEFy7F%N)Y7wD$o7xUZpAp{I7YAsWNlcLc{da0-?O
zgTZA=XGCzc!pF?SeQ*M~FXU9ih&c(C{<EYv>KCq9eDC;Uh2D>`086}pmIBz2hSW~5
zGQnj7EtCP%Es&FY90Jl=ox8RiziFi;NxY`FcWli7tx2?IVylL~Q22wuDYngGBc?SP
z%^UP*Pvli|QD>)gGc8hVCp1&78FgtM_6j~dH63O27cnAztJB|%Ufe0UR5~f>#l>~v
zk#vs<ojMW3Ev{<J$8czv<B+0~_d7rdr<gIg@|;b*S#Q{NhZq#>q&r5+?LK4ej|VeH
zq0?%BtN^~49e-6q(3B3lxL$xhP+J(e9z7KjRK<@j-4YV2DOs|}fJdCNi4Wpwe}e9r
zeGN``5c7GqCqYPPyg{n_SJ*%b8j}oKRw$F-hf-=G3>f%ye2IKKbpz4cDbloCh!is#
zUB&fL!+%k~uG2^9VvjK2c}4Ibktr!5X;HpZ7T)OO5|5of58@w=Y}2hJxiVO6yQo~h
z+)%ngir8YnMrib{-HW4cr54bBw<(Qif0U(vvz|&rDyp37=}$bFZHgI0ZmyWCN1>Fy
zPH@)^mizuGHSPeAt9UBn&=G~wXJH6b;7@%>8$*Y+au5(19owz-{-sgkwbZ@H_XhDM
z;<izx;a<}Vey^bDrU&n_H-evr!OBIaM$XD*+xyhdOK89by%2yv$?iPCU>&=#+AD?C
zf4@6ix2wk$V2>R&GYdSJ-y)X4N0AuNJMLT@9<x4X*pDC|_xUKh_q4cLu*UGpCv%4+
z+MJ4s2<Dft8`t*}?~aK3pz4raOwKmz5xl+wTPz(jaOV2&#I217{}*HL9nSXKz5#ck
zwL4JMs_Ig-wQ5&YwN;~36b)K?@7Ph)Xtk8q-ilaB)CdyfYgNtIu@bdMB(@;J`|0<2
z-{W|m-(T<FdL*sh_jO<Ad0y9f`skF}a6Jzi0G*t$|M8{Ss95Qpk1?sHHwto}I^|{8
z9Mq4yh1M%!FZAlEu5~GXm(?2)r`EAnLTaH-$qttq`^L<#I-yQ`EDPGBYDi2QmjVKR
ztd%;DJ3(e{Hl4}hJiR1eozjm7jSa+_<S`d~J+|3b`Uz5qIx6Xixsn=^rF^jWZ6P!&
z;7ldc)R;WkcO=s5u+WJhlF812O-Anci!B)pX18<T9MB{8ijJKa9<}t7qMJc+s)sq)
zk`MY8GSPU9o|+edO+I4F0*JO;D3jJ@X_w7eU!Mk}BSq@|3LdN>q@K^sPgZt8$6n-&
zN}P<bIpiaNin*ATmxrV;gf#{H0K9v~YAsqBHipP`i0b}A*9s2DK~>hZ>!hq*A+s-U
zE%+C_)u$U9EZCa|`*+0n<IE>yEZ%&55&8h^2F8$+(z`tfo8roa%riE#P&oMjPg{~5
zCF2JQv~|8MFhvL+n18vV+WMF3@3~N4LR)}Dc{9V7m84h5x##e7U~f@mjA;#ndB_P8
z-)Q+-jE3!C3V?7j%EF=7R*1z1rEgZJm(Sd}gyIkJ;FaDch4g5i-V&eWlK*hyQ^Hxm
zvDQ<H|AIDbIrO8T0cOG1YQB)*V;eYF+#v`!er00ZpY>Iz2Nngtu2ktE!-TH%Zq>nK
z-8;eb=8am4A{WJAuP0*ZRq<?hEL)3>3@6*QoBBg*k+aNa{31uA4vkg59j6-`Sy9yF
zH$<>l1n{?gD}x2{=8`hUp~oMB_x+pR4U$KUTP&M(Ctlq<?GjN{i_o~pz5PVDVX^w|
zX#R<jO1UC#@>P%TY==G}+db~Z8+zcByKzE=w;VZf@HgNI@b*(8%3FCQOBT^!sUbwA
z(u9LZSNMzS{$X^=BNrwUpPju>qGW9J#!Dx=dUs0JXa699&EpB%tB7`^I|KF58nm|Y
zp^d4<?u*Ms`hP6f$v4tV<n;g4q+;*LWFmuaW#oG;!j<%%6-n|0bMnEvi#~y=JKC(0
z_7NV_4}9<><G9aRRvv)apR%)K%T=hM%`Xiy6tf0;lXKOGb1hu~n=0z&r|_mAETZJX
zvhlECn=-s5VpXOxES%Y9uZKhD7sI#7`s4}yId}e8Z}{Rcn8o|N0NXu*DO(G#9S;e@
zRRy{!z+xX&&w85Gy&#D4jL41Ez6jmAdeHE49?q}p_|0A7jYGKkqN<Fra{J6Fy|G%s
z1NF1Mcktt%3fjjdE9j_ZNP97<ruhkC2Rr|`l7up=dpU~~4`?L$DVozCy;jkkN^IOU
z&krn`5=4PV4hS<P{3CKZzPom}yhpLd4z@l!aEdn_Wxb!hFo&T<<QCUjnw7ZYGaK4d
z%-3G98t-GR%+7${MqOO}=QjTc<!H&0AA)09KvS7n0PjBPl4j;b1c@0#I{I^}3ylcg
z+}n3eY;wAN3^?k5VI0^-yJkCnJeS)WhJR|e2C$8e?VkdaO-GJdUq!q;Sya1#;~`M(
z*EJyr8Yg(Z`;ubJt&BSK6UlD^?G8WZ@MZBE>u)w~DRG_cB5_D~Pi>hwu*}RKtOcn3
zZS!fzqKivz2YKd|+l0=M;8!HmZ`k2Hyr|1@ojCe(MBD!zj80|YY!z?q=5Vnw5YQ>z
zISu|x8Vf?#8{M6<<FYwl*?L}V-1mGQx}HX)Z2-Q#ogqdej`$LrmDN;gxzluWgzfP!
zrrNeIXnEx-!<p01sJ1xc0A3@w;h+ZnV|MT*jD&p1Ht@Ku9i+RSE496KS;l!?xN;a|
zlvjH8ms=f~ed`_0xS3k0docN3%0l&W9O%R+7K2&_qXO*-qrr`!gJ~vp`N);4#zuuh
zozAbW7pcxijfBass$uD<e`K7;C%>d2VY>IzohzO_poF-lLKj@cmd{AaAk{1YlLY6f
z5NhTqg-=PSUu>25V0f|gpRBMzN1hDd*t+eR!xK{g_i2?CINkO~#fU%}EVbJkJ9F`v
zrZwHy61U11>Ev2}Wa_o~ao-4e=<nt5;NR|D;$NkHnG(Jb1Nq6vHq)?uD6O7YR_k;7
zcj?0{AObqWMiRR{<BocUS{Yka@K1aNnR1c;(P#Q*3rl0pzm>93W6vpN3h&OQMy9*T
zB1f6y5IP5k7c0kX6DRFEg|nIq5!$AJy-RYIhYpuAhuUqmd|AIg{L|I)uF#OQQ}#Wk
zRqUsSm}!mctA^)J-jc^6W|@3fuS6cnG+YBpGui?$<K@W;LDc2bA}H?6^{TtAhX0P!
z6^c)mQd)oLB%0|d&u?2+JZi9V8P+t4(5V3&fPm30_{-!vj~;BV4=JFkZWfi^GG+jP
z&Oj`Le*;PF2=mj3WY=CwGr_+zD*o&wN)&YHttL!hMriXq7tv1CaK94PQtB+_qpA6@
zztN7K4mG}(;_!no5c@OH<ww(mC4<7Q-rJKg_M-?~e*Il@Z?saGxA=73zBXW*Ig;7y
zRHamC&$-sE%cesWO>aYVa@gI{2b9s-=6&daOML1kVbb!AI)l;RC#R$E>Dm>y{)dlb
z9!w**P{u^rU}EMK-Gin6t+3lxu3<pkeY*0S--7)#Tggn$$|HdPzZOU?oc(gUy<p;!
zy}s~c9j-rl1i%-`8@<q0p7yG0GfSw@#8AC{_c&0sET>S?ScnAmdlaEqGZk_~k5d?9
zybG?aXoM#e<zzZBm)t5ZEWF#4F87d!Eu_xhXrtE$3v(&K7*|hc>*_7#JwWjNFpCO-
zI+zZ1g>aU<{}6VeA2kZ{atxThIBgABpgYF^)E8g&@$1VuF_Ei)Rd!6Qvt#ed&`orj
z<r}VgUCiRndV~Gt5spufTLhqOqDD94_57urNuUzP+wGGBN{4R%b9!N~p!9lXf@_wy
zAmymhI>LcSe^wJ+*AAhLHbIO9@Q3Ajs>dF28T`QeEgyn-Aud5ZcRU`CaCu|dc}%>i
zU*`A?+BXPS8uuZ>^xk}Rm$aP?SYi^X0yBhgorrb%E95OZV&3_P;Fst<7REBsu-ged
zyT4f^y5@#SakAA;&L)=9rR0b|%o7o43`7irxb(U&{m)cs0@zIkgVjUFJ}Gs-&f<G3
zdg3te2H=NZeQErYQ-y)$QTiA*!VSheb4w<lYIDg2D`9GDYQE|Hz=Uh!5P>(`2Y#fv
z*42N)v{qf|?ktQ!-5#eSeka;EW42%J5GNb}htN1Pk>$eX+r$~978gHQc64bUj%Wc#
z7&EK|THqyiy#@~Qat{VBwZ<GlacxsO02(<CV&Pwq56<dKJJ7Kha!T60Z$^CychWfm
z#Q+Z5`{<AGk>~$s{o`iZUs-PQIpDVn@Hm6DCNb`${+t(kPZB}_-RrKgxsS^_;*n`~
zu#8+s#;=<>Am8kRX<91i%5&~k!(?OHklQ5?<s;}av;5xFKY$12MKm^Wb3^L|M$Vt(
z5#3RTsm8@Bt2}WkLDt21nvKpyW!ybxw;#FYP%Av9c=$)JDsbWr>x^c2#*qgB(hgqO
z=Lux|Hgo$!o&T^65=}8OG?F%wH#BsA+VmK&V_UUia`ziGZi?>q?bnwV$Sf(pwS@)C
zfBQ`vRE-&c;(@`t^e^(g$doyusf&6lE|iAjT+0OXr{K9<ro);+K4_h>+Yd_G@Szt@
zVl_kv_kjG$3ka*OtzoWzf)tHY+tlw9K&1CuBwL)<%UuW`Ur?*%SMjVJdmA-({BolR
z(H;pNwKdomHwAl+ehp=~&4vyhcB<;M06;^94>p={gPG-KZ<@+Pm2;+rx;P?moa9zN
zwjEII_Rw=fljjU!{6IB=O)K1Qtx=_WwRV>MXUu++EQ1!;p0|V%C$g66RPzOxU^{BK
zo4J-gW#cOIfWicPqz<Vu;9-~C+xIe(tZIAk+(MdIGE>wK%WSB284JApecL~V^7nOo
zM}?>LxBCzXiCxp0fSK(V8h)k@2&Ro0bd1mCl~_ZLrQw-oKG()qNazltmT3kmJpDbK
z#BbyQ#1j0pKla*$w%ZFD1-zu@BKAp};eM6Q$q)fVC*aaO6nPc}3=#lZHEE-UdJZG>
zf~)X$xh3O8Nq^^PUWKCx%a2Q^-PK-PWJ}VN_c&-kGJ!W8&=y9$J;}P7^==^tJy$$}
zkEkX_Cx+?P72Is`4b;A|!cS~=H**H&4%=JSqtFqrs9!tMPPu=xTZmAQ7q^gG8hO2S
zFpQrmd8mnpS^n`e%Y7-qhu9GMK=kwE|Iuj<m|_~X8nt+J?Qu2cWv2_Z4%VqIG*vRc
zy6Q>lFBN+H85I5uIHQ-#+r;!DjQ9;14643pF$LLYT{-;7818tz#BrtuC@bt&<Rz9M
z#$9c}QS_Z#AIASoYPCFLcDP-ZN`hBS-Z*s9LN9pWA;*CijXQ?mX2;k)Rl7NQQ$!(K
z?at#$?H>5#gaft^{kJ`X>reOE`(_+P3JPt<`v>*4H(m3QSDcGAY_6gEXd=1rs`AaO
zd{mpeZdIq8Yr~Ei^T3qYkO7b^A^(LpDu4E<VP#}+T+I6%S*pr%!*g(E2G;zn--?Pf
zgVu_h{)Egm*ro6pZ64d-dNUnzdPUMKapR3PSF1MHhoMdAZ)MY4@`)iO!bHPezTN1C
zq~bP)3*qwhAr$D2%GT!Zb4}lCosvR=C3-jPPaoNRg$ombK~iS)V=DWtD?tlzy`C1g
z&n&;_v>%T)cW}MO!QXG+g+~~v=udg!^QhADDm)h2Ejwrc7#$W$`TgPsu<=Wz$#{%2
zp!v+X$pZZU6qAr@fU7g$DJf(4e=zZXmXiDifieTrxtWub6Xvu-oxol3nR{FK?8g)J
z<TC#JB^DAQkRq+8Mhhx03iE5Q=v_<efa5}pPW)4C4L*aW{y+lnGxm5Rs(7m0;X&Y=
z<ZsjI$81%u_@<!a7LKNrDT#a`{omKNFMvb5-w@O!fws3~Vq8o+i7{85E!$rgYJ7|I
zh;t3?gt!mO^fcIB5A%q~zm#O4&1LOh?S{>vsrM{K<#J1yI%6W8%R1CCfLr(r0(zg2
zQM*j>iDt99IRq<Y2CZbt;m!UnIc}&LezqAg(&htn$c-z$&X3xZuvdwVJG=Kvex;P{
ztN#o)McrL_qGV*ajt`z1>M4vATG_C_?6`$fsS#9DPVU|5z{WlnU;X#8t;Gsj^**2}
z*F2LB`Yl|k{;AW+80-bE#TBDhSdI6l9#&zNUWsT)TwtRlKIW7%qs9P@#00YOrp%e(
z$&auP1QRW_2_TU@B0}`X2;bjMWlqlj@WwOo6`icj2!*_^drgjccm&X%O8{EEPq{iR
zE+ktUbRLHs_iMA^N%z93c1Z}*R*ch~{Vlz=>fwz`X+o|1L)h%GQdck)v|1`O605XG
zFDZ#&Kv~I`Ctc^>{YUq$QpARwczOU+%!TGbK7fT!E~8a0z4WdmQ1`)BPsC?5#V_x7
z9dA#(^IA{DMSLq%4SDw9ihRy(WoBauv;7(q^o$-2i|zj47IHt1?eJ!b3MI5w=xH>F
zA!Z`-`0MeEBvXpCqRd&lE&M#w1~FZEFynYV$6Yl-Q|`qEKP{5yNhA<3la80I$rzV=
zBR6=G0hSSAZWL_)(dVTRKRyqTdhYh5ot@b?O0LrTmbIK!@ySHy%FHR@eqqg*8n2-R
z-(HCbFZ$Z89ZFuNcLoGZ0lkc59Ch+%n%SM{Vfm1wPRYV)$_CiISPAS?TFOnIJQOB|
z2I85+;?MDa{9F{M?c-I<O_m$w__Q}2Yrmsv#5m#AKF7shjg*Y$;jw(SIE_Hx0r|X;
z4UV!XS1nEpyM-v&%7knodhma_JDgRfq0%dD!3Pi`SEq|XPIJa_!>uyDSakf+Fr=oe
zu%x&oE3J%c{%_YZ(>uL{y5tTj$5r3LnO^}>|K+{+@tLA&_<PKeH=Ka+BHP~jwJ+=B
z^VAGmN7riq2j-*iLy*sn7(nKMnManjX!{5SwKEHdmNft0?H1{!S%TbmczCM*p0D?}
zCk2CSh#|%U`LERLYh6R>JNrgs6h&aMqj-ZdJyCr4gUWGCjkIX!;mD2<k7eBhkG0b&
z>qumqf}jfk><*oLtdlP+Y^jO&EHYUDvUlXZTA=UA8=Cv=9*0`KHQs>R)$`vLFVFof
z*Sw_3`s#(^tH*aa`Oh<)Ik#-UdWj*1Q~%6)hj@zXhvP#=JIdHtZ3BkT(9nR}+k^m7
zYPLjarOHX@n!mSyd6Tl-mO`aRySc-V$nuuygWT6!4W!^Kh6$*0x84U@wS08DT>y!i
z;<1;iT1~wZoc(xHfv*eaxIka}#8UE_@OA1khg;w-u(I`Eb?SFHFe#g$;M31KBeCyQ
zJUNzEFp-y0C(ef$L>#6O+#Bq>q=}TdEJyrHRr;Of<n9G@#~0t_A$37#!tJ_ulub+Z
z`ovO@_75k7SC_<|P12=XR}OfN7N9k*KH1)+fqwJjNfs%HfNIdOO5H&Tqie%0fw2mo
z(idqmnzlWu;%fAu6(me!IR5<K;<qZ&v-Wi5pi4Qcig5!3H<w^bzn1y_W{Ua$=LMiu
zNpb%L+@Y(vkA6%KohRRqXK#(bVB?7h-qt}$k!q*kL#(!(Qm>q1OsU3$jY)u5)Jc3%
zE}R89r?N#8nghn-F%pgp6UezRzmDpP!kskgc{g#(rZ7LNUtf|X30W*CGm*u>)4I9L
z>7mAMrB0zEN&(wN8UDHkG3xziXHv~WcSVMjxBTBSZpdt-_G<idLDk8r@C|<qOcqlx
zER2q<GgM3goLc!z=wWQOOZN(Z+)rg>CjH!v=;Q&r>7}2u`A*bDvW_28UOL*&+_?A1
z&!Pt;+CUg|%mJDG<HP8d+}C^P7o<aBQ6enPHTxB_O*;^PuTB(y`Lr=$2MSkh3+HXs
zrmzIK$$KsE%=ShezrhSs^4xY4s`F-ZBOh8sr-y!UM~9NFBUn^x9x*EVg<rA-+j6=!
zbA<ff(!idpc2ZCF4+pEW@Uc|cr0Lm7B-Vu-S^0`AdVjOOw86UrJ?R?h@a}vo|1td?
zCS8$GJlMsP{81`nrEuKthRVfc)wCf^5=L)Qm`$>11uynTZ%z4X#Ma_&S?Zy64q5}w
z<#^m9^$51@=)gogHOz(ZuT`&SLRO=L8Vk&Gbn3RcPvlb@>=`w?-P_Z2l;#gybC35r
z2@l`Lw}oe;R4Z>toL%e!Z>c0#+4@<L-Hx*-@z?xvZq=LSS=@e^b#cLGvPQ?y!Lx(6
zxS53-{39`adg&qXOD1yk2tR&6_y>U^ippPJJHKUOIWiv%O`&Ff&kG)CsLL>Jb9^G-
zEizhpyKiLy8o}Snzq^Bk7)P2;71$;6xM`;l$@YJ6s}QAEoVa=+e^S3gWdZIf!^U`{
zv}RShl|WW~U6y@vS#IQ<=?ohrgzc4G(QN-_Jo^mT%7;cz8>ah~H?gLrsn?5zxc$Uj
z^&Qcc)JM)gs(!pYbTJP3(H$!n?iW-TH-+2I&Em~%ZaHZDIOipkls()nZ0<?@;a9I#
zuJ>OP_rS(qJ+R8Jz3@3jy`E-Dl)(9{rFHW?i|LUR2#)~Ebj!J~Yu$G}Y|ZCVvEsYj
zN8yoraIEaxLFZ7uBOS8WpQ+pNv<NhKYWU*cB~hxT=a$Q}ke~dz!d=d(9nK!@thg6f
z<i{6ZpC%iY`+F@My{m!v{`n`=QuA=ZZdW*qs(f%#Oj@*#8=GLFay>>=AezM&1{_mA
zz(!F1Cl0%wXFqy-Qlw6pn30W5P7r(kp-gf#__6W*H8I;5ztc<{@yQm!64nh(+=co4
zx?aF;RSc1QhULX_@QZMhUe1+<LU;&BO}w~ErILU2sfv`r#nvsx+HU%NOhIs+uO7fs
z^ubpjurD~3h54a-hE#zo#C8L?FxYRu;^Mb(+KMn;m4(u=fgkd3F0Z2R<EgPzkVQhp
zAG{&KKb0_;Mi?Nv(|tBafIPj@Uu5qG7Ng6(Of0hnVjo~T*Bv?au(d)vgh&1kbF3=e
z<&i)+kS;?gYhUW*sgSJnk#uwNX=-NEz?upNw;yp<5G`4%&2(JGBqr6(3j7O?U+r7<
zB)J=JIGOaY4z^y6wmV3%SdCIVQMq#yHeA`}B&WT_qg7Wb!RK84*ru>?QY=@id+Wi<
z*n+3)eBVi)$~FzR7?Ww}dA@(|#+<2%!AWE?uQwa_B@=6(`9Ndjwb{OeBkcyTVC2?3
zaG>{QXRvf}7OP&Xo|WIC@<Z%DtPi-KeP8_GFVL>RDRqIWA$>L%40cM!=Q6sL#@jmi
z*n)||S^iV!j6!m3ItZ`^Qp&{r@GzpMVrH5!acK>jY%bbZSvttgEGx|G*f-+rq`Dnz
zc8wV3XM0)KtZ6u@@)6tk1-Gu`_HoTq!IZOqk2|c+#jRYwt6iHD$11b}?eSlG*^zxC
zIhIkN8$oUe;pFr#c<}n`St<!QA{(iy>k$Ggsps9)>z@XLM5B53Of4n<cSpk%u<hvh
zoeKX_aP4#Mu<Fr}^yWT~#hBUIORD$e;h`*SV~6+M8V~mdajsOjEiYNs024oy3vTbd
z@30Bmtwm)~-^KMws5n?&*UK`58)QHOe2NX~DjHlLsD&|XbdPvd36k?(g`dccj1qDY
zpL(IT6EiKxp&~3Wp=QM+fBH0$!lE&3CppL+gK&eyC}^jd556ujF1=pxJn?%N1M~CH
zQ~U5^mc27)r2{$F*0A`_#4iXBLRDAOA;`(NiIJ{Jh!@qm=1X~#AZsS);5VFD70q)-
zydMZ0GRQ)uEV3qw8&zQbf$Qhi6BG*@@yy(JgvU=!je5Y)?#$j&GA&xOT5;dgWTm`I
zSoio=Rr4Zx(A~nsy>s94t&&|`gZW(9Wv?hfC(ScN10lD}>uZP5MYcsVl>1&v(^aNL
z1ZtMCbg>On<$MKDqpt4MKh*&giEgqI)z_`2%Jw0yjn(Q}lDe{;ufah*WP}B{JE|;G
z&`P9zwA#?!x!LK>cWcSytBXSq%v3XFh!U<NHs;2zp(jKSv`%K0xu*KuZP~Q_`$19<
zxjf{>C#6=s+Z*22S4FN@^*&~s`BKriv__xep$BA)=NbQqDb+48&|Ia6v%I!A!Sg#^
zTaG*_K5heJ4{hX>KYdOVO%&mIrPL$IzuJCr4SIWuj_Nd@96xw;<S@(PUnwa)d3PBm
zwz;bH3|AsA#6n<R-<Z9zdQfSHyWLiXc;Ez*;&=89S`eyiW=&SP_YVa+V&cA$I$xHQ
z(D^hqZ)EGPg)1p$Bg3H2b6I&^+yv_q2kxdZ)bbWSll=1*8c#efw#`#l^wJlX9c-GQ
z7aO{6;<P8dF6nmNxlzUuwpgtj5ZQRVt&=Cglm?e@B-oz#H3oWswDr?9V;taCc*G{!
zxUXZ*D?2FZ3295Xzq`-v>QRY!jf(cwYe^d@-k+yH&+zrTTFH*W!l@1C@7%0_bh*}{
zx;Sgl=5YS8H5K1TyT@vkLe-}B-HFl|u20>!$MaHBzp&nj#@qB6Z>A16|6oUF<A`1b
zcH)iSqT;S3Pu5jTNS7u{NG3k#*^uCjGW@uiad%B%S)es$h~CHgXsGz*OGXq%VU8<b
zqLO&j{IsTf6&g2=yPElSWS(s%mHNqc$MN?(&mK{mz<kVq59vkjM1S=O;qX1XTgF@k
zbp&pDse>s@{ymA%I}n2EbWus@o{@;AZr+f#p4*Ptb&c|3vo`^2F|9QiEiz!REBDvF
zz6|pta(|BUt<#V!6Fl4+`gn1~>o7Ebv6ku;jTgx(yf_UNa8p-S9b{^3)=-fKK8~jt
z=Xhr0lm$!o|1PN-hy%7Pymj%}pOfqYx4pILbxX$L@4p{Pnd+HN1-&t-X<QxsIcQGp
zXcxLjSDSoGk7T?5cE;MDMxag_xjI6^>xqk8foQ!cdFy|o!dExGd#5jflEUIG)s@|}
zwOXRslLCB5AIj<|#|Uo>VwG53IT>Q1jR~qWb4}KaIWBJ(f|gf%uk=Y;tAujz3a#gE
z2hR>kU6MT^Z9C+C%cvsX;w9Vr3@F5a6qc$IT>~Vt*5!Z<lEWPw;`=z1bZs9ia`I5#
zY6f67hOQE)TcYMyw-TBi#(TU=1I?a~l$p@|R4+exZ5~Ya350s8*Cz)w2>TMD=@tSD
ztXrxB)m}{ge~v(u8K8OQmBuEIaHz~Anf>(sX^}idX_on%BJtfpc09Ngvc>CsH{9Cv
z7wZfEaKGGU$MhQKc=Qf`ZTh{gCoBH(<HA{E4Ddk}xWd|aq0StkhUiXJ5fd%6kiitP
zRqJ)AATxbh&dm_q2jQFT32I~`!I0JS{s$fHnZu_WA(Y)Reor6g%&=m>*?X+gSh9Za
z6-iT<T6JLVi!K=cbDWXg7}putKDPE0TQ~=Fqo|9&%xY-)GW?s!RfP<c%JU)NEZ!4N
zo*T;pr9M_2E)l`?Eo-H6&tix_$YcMx_$rhJQ`ZJ%Z}G3j)%-WjAmkd7Q%KY>*=9E1
zRqEe*#}PB~`-htj#FtD}*L#jSfxBJv@U~Vr$ghgo<(Zz@5Q|KT`iV83Kej0g4L97r
zcj1s1ikJh<zv&9qg*FZWQM%RAF3(zc7aFEOn{%DhFAf@9M;nd#e6Otb3ehIPo{$0q
z$cdL4qP?8<AsIHg=CY4xy}c$E4zvr%IzAd)$%~Oeq8CGycif`IC5x`ovugV#+#;Rc
z0dV3(VdPB>Hv09Rgp=7l)iHjUGjd3dO7Y*pOmR;$QFMZ%;kZ~KW+p^*`pgFL%JDbW
zqjy;iPaM&XyROoLu#58wZ;46+O28GM<??=5hfH5tGEGwqEEe#FB&8DWrTYN?r3=9~
z#=*Cl0znEi=f=Y8(KYYrkh<l%X;;~fh{>M2m558g`*}|qn#>cGeW0P+z-Vg<UyKZR
zk{U{Xn5`5>umIn+y7uGDhRkaiF7k9#+;|`|BtIvljMI6Y5!8^a5eDbs*!r(qS@Hkp
zRw}q;QiwDmZ|yHv<Q}gK=`u^yu_%iIDP<Sv0|ed-(EE&KcZ;4A5zv#WZo7KBCD}Uk
zH(5c2;VKA=q~k_Q*MCmDsGT@xB>5WHlB=63`L&5d`|Pfev!DiofpgP2MlJ-Djw4>%
zQJ}eMb&Mp&tLXfpf#ScICCbOha%rjmRC}zzx1XR=l^eQ;;$!fU5?AaFx6&m`NHI@m
zAn}mF6Np2vrSX!5i8MMf>DL!N^n|olw`JtmOm5QhXkGfmyxkg4;L|N7S9xQf_8t(w
zhL4i6WB2RjU1yF!6}QWs%5mf9cQF`>H%ae9{8OfxX4#M1kl9<&@=m)~>S#oo3$t5t
zig`A-gjvU`0<6(_*F4a4gcX+>YUQS)*kD5f6?=_wQLeh37%l5^KJV5N`NaU+G)xJw
z(9OJKmjOj92^61av!Nr^2WW(P9K-mpKO!0h)UIcQpfsR5`Bqx!WL_Q5bI4K0%r}y<
zXp@=%U^T$S0B3pofujYaj{gNdm_+-Pe&2KGa$pEk$X=tpd}A^1j7aq2s&DxsP|E73
zm;xnJ2s<lwYz@#bww3Yi1KYf8dGB@NvEjwmN|M80u<l#}hM}M}zEkGF+R*N9)mQ>t
zMfCLH(`6n=z*D|ogTm&f08?&!75Lg1b7^;3xSrE3v-%uC#MJuqP~B#4tI6)+f3PHp
zlqDvm*4K(;xBE3hpv`yMF)Dt$Urv`WSX^bMRGB0LmxXek-{&cFtj>ym+$$;LNwAcG
zC>_?FbY!?NI_!_>k*)FATk<F#UI6<hQCZeeYcJwcS&S#TvYq@BC!v}HLUFa?CZbwp
z0h0Gu&Rq(UHftSB>L_gV&NhiqY4l%ItwYm`)hPYExu-s$4@vvts}x_KH&JzTAulr<
z41%P;AGjqMctpn!CD^%^y2UXa{B&qnP2Hyz&kjl2R9DLh1hCUUzk1(T$5{k`{COv*
zL4nGB9Be}Nf2@ap3GBXeGcH=@Y8@<(hE!+BKhF7Sl<jeU4Y{)m4MZmEtDlz+Duxdd
z`v1IgS`H0LNVj9$Fntr8>s?1;#u_!2n^H)77G1#sZz|!E9EOAQ<rZxoGNJ%f-2h~&
ze_!h*v90|sc>cTMW_6?>Il%~HJ3M_@Vq<MxlOHme_O}v91u27n1!G6ekw3X4L+J5N
z<PH17f1hgj5D<SOxTTsaks15*)L^J7dC+xe2YoN<FB01`*VyaLSzN4^(>YCy>UQ<7
z4$8p^<Wi8mavAvVKwS!04X8WFbL=fqMcVS90(4fYmsxL}YfOO)1Yi>6volR=AkWIc
z7XzbInAp1nRMb2)4$+e|g;tENvd)cWx?)xsfLS@9K2ZU-`No`5<JrRoo@&gJ?HB%=
zL;_6RwB8G6iJqS`GSe$HJZ6@EnDe&wUN$SoSam6*CIwAX&8FD!^kzHx_AfaveCxNe
zX+mPhzg0`sJ$A*&y331?lYc;ti^3TxRX$<@-5@7##i8U`CJuoF1R<NprAaqRGE?zs
zbxD&MzMO?u?GXd;4})db4@wo=MB=XNedV*uwkZpCe0BP?gqg~pNRRE;+`ZYesFGQ>
zc9pH6ivzp;a?qV6R_WE8lQ}|mL00&|?Su3=q)peV4{>!u%eB4<OS<P$tZ&9SK%r)c
z@Tn_%Sp=vamrWA#>M9kojipoKvw(n>XZmKBhSYIAi`lxDT#WAat+yo)S~uq#N_5#9
zM|V_@UMh-xjf?RXmYk%={aaF~WMApICb_t=OSxfwrTDV=QvMsksfj=kfcTZZW3Yqw
zjuEt*NQ>s)BgI7|NZaYwI0IZ2_gypM5aO5Gk-cRfx9*f5NuZyC@Tr|Iw1vpycOPF?
z>!xBG;|gC~xe>v<AN6V*T42-D1f;qLNn4h|*--%TW-=*&A33TTR<pYs?iU|mo-Y>-
zqggXX(&{J8%*&hc<1^VrH)y*21iO(EEh_>48Zb2kP(o~by=0gQPj}KOp9XW4z~5kB
zM)tR)O5^ON-t{)SZ*$$!3265hE&x4(v!_-CLe}CPre4&@&k`al$$n6s9v(=%a@J$k
z88R_sbR}#jIC+_bH|=t0J6!W%io5b{K`Pc$!{9%Sf$8*wi`&;y$1G;+I{xw}M=BnV
z1OtNey1@Y}acbUUNFh}bg-ScGm{gxsfV;P3d{vc*=E$xaqaX&sW0(E$j>XQ!!wtFY
z@*_%S+uFzOk&RZ+uepQVqngz=YA(}KeU{LUg02RO_f9E#8g~@^u=X`}M^vjNW0w52
zQK3nb&@ex~r9sPV_FU6%=*9Van-ibDKor<qKCksRuRM`YR&hD%yE_L5@kA<71*_}=
zPm9~G8?c-qnHuBl095=5l~NSW+nhmPRNJ(iI=34{KY#o4-Vw}euAu`~R<-(A+}a;~
zzTyQ^IExYkDV|u&EmQ?Jtpo|k*cauVv+DyLR>`W_o#ndZA2@@%@4g}hd8q=sXkKf!
zox#9Y*kdMX2t67!&nN5#nDNLUP1fqXS0<by<W^L(wxLwWIr8^Gyv9giV-%PDKoZTn
z4<ugt{gz`~`&Qgzf87*n-L~s_Ts>;QQ%xqEGl0#Z{Ao*bou@SwlV49|ck6=uB?pLQ
zVoqec&xQ^~BTr@bXa}Q0<UEBkyT0@|b36LUx7>Ea))pEnrS;-4xoCNxUW<YK7AeAt
z%+TaUZx@*p&FCQen@;NdGSG2*b`qD_yaD7z(C>#QD8d)@PT%SkI=Qr%u*?D)r3!&5
ztf8vDAJAAuk^-`WVZ#*)t-WJWLy#oWDdO|J;-{H@SOL*{4Gyr$KC+b^p3IpCS%a!q
z-`}NahLb|z6W5WkX}4IC+}yjCqXD3SYkrXa^aIUDnPFq^h0x(Cj-Bpk8%|tM))QJ~
z+P>Q*`jt{DC*%K?r_dpm#}d)<`=z{~7#mQHxens&c!kM|uhM$jjWQ{p>mjm(N1FDP
z*V#_-Ja3ykDa86+6^UI&6u+%+5@P@Ag)4p=TsK40HfGCI-dnd)6{!zga}dF)P4s{*
zw0?c&mja_z7JFHSu6~6$O)UJpk#H(7+5BoYz>*-WP#Hg@W%E4%3`je}Cv&MtMEOQe
zF70Tr+fB?^@>mK#`AJ0-C=TO%S*XGVR=(f7He@RxsyxFaPyHcVb&$-pWu9<8;(#kP
zL;bW|%_MP>oCR9MZjF#Ub!MNqzSiq{alEVKpHKeQ>o_o5=Q^-S;ohy{?HiP2*7~yd
z`V+U#!KRi*A|X4ZiTn#!e2ov7&;FMUIqoHXK&{I!g;NXsHs1AKC*b|g&A`F5I2rqt
zA?7cUQB`7v6*hWaR3nYg*&+Lh${Vkge2FYL-{e5k$$8y&($l=jxbF9#vwoyb>1uQB
zw{{rj2e(V^qVX0JuZU1!%08g`ZaK=dka}C7ep=F{`X%N&5R1nWVsVW+i63WwqriU_
z$Yr;YO$lh)U#!~^Q1l*cjI(F)>|O6WP1RnEg_*8+E<`ZT1n=(ixOSPFHZIG4nIBFL
z*!LDFo$z0ypLD%z)Kwr8Bm<c|qqJU1TFC)N?)n$hT)LGp6c*LESXFHV)9g1C3&s=<
z`!|?FhZ}rX=z(+X8bPLQe>weXtk7@Fnpp5N1PLfHnX#=~S0&Wz0Vj*+vrcY(;0<1x
z*F`wQ5c|)wGnzC0@OGYFFZFCgJkkBzL}w-f7W$IBOK=baWk*;9$@VOoBFOteIiv!h
z(C(y5Ty_L2+W*#@V&Qdp0AIv<P97+y32Hz{G5cR|Vhn8q6&xGe1(||TV_&i(hh@AA
zL(kZazGbMc!WhD0US<j{v3N*-{Zm#7Z_6+)_{?uPz&$5(g}M<UA}@h2c_!iDi*a*u
z`u7qigG$W>j+}<I@p!3<0F>hrYOZk0TS@4(#GZo4jm$+h$a1}9cufrcA-w-{jp>_#
zoCF0w><M|ZpM##`_rFn)3ikgzKYeO}^JerS8LDe`r5?4L3e7$57Cf#9M$-77H3iiX
zbe0r?R~m4W|71yC9$%I#_IaXE(+w(}&m+Nw-w&!}F}6ke)PZ|%S~N@iIQjJm^uBkQ
z@`~qkWmt%v(M^YBg`>4|b@Th@UEdqpK}RXJ#V*y*rK;9K^+x0(d|d$+iVoMo0d<o4
zO&<R(>5CIOH}~R*-Le9xPhX>;HwS(a`nGyAv1@5u;g$YeHXKvnuqe{I0y(?(Bev$?
z!&`XI?<)VUeENH-Nl!xA*QZ{3Pg^I%Y|2T5i2(y9aZ8v;%Ia7JddKN$WqaRp9$1}}
zvqp6*`|6tW&v%SL#^-CDURQxGCmt=7rhazOv!DB#?5iX-Jzcw`J2hylhQ)$=lm;!H
zAnLDhg9>+O&1aKj`DowOJuHNjrW=!mPH03*s{W{_-5Ky74|_v9nT>&el&vp9*YBqs
z3mrR*S!xv7CHiLmMXG{qx13&&UD?hmlVDE6*)}jKfE%60{D7Bx-@z)l@NUZ<8p-!)
zg!a{+ShZtpr`Wd`t4}qC4_--NnMo!5aeTVna3lTMJrZ$I08nQJT>?%Q^g``91IbAQ
z)isW4v%j=gE6}@{NC{d1ps&a7VDI<^5)Uo1dvYh-@8@CJ6HY0?wSd)&|INc%TZa}g
zY&7meV^@{j^$}&hKQBqX62ATfLtXv02F<#`usNR?nT(GemD|x?1_9cF8eO>yrt8uH
zbIsJAU#;v-0OY@q5VoRe1+P9SgsgtT4ZQ&#6ZGMqrf|>VVVzRc**R98;W7ujafS6W
zrQh<ltA5$@M9IstXT5yB6+$P5`m~k}#B8>b;CXORs>YP6R98=rtBjqPk{~cQA<n^n
z&mdrXm29Xt|2%OnFOBCDM2iOGxbEK>{5m;w>!O%e>=o6m(+sjhwJ%#rAGcipn?2R8
zk=%3S5jlqoS>ah7-zk8EI<WKU7Wur?=|_hE?uvH7us1RQ1IFUj3#m$P0tVDSq8Jk;
zCW@s>XT^Y4>A}(uk<9^dqyokXtGIYChU@z4+I8P-_h?C)bLW|k^c!(F#f=B?H>sl1
z(Xd{=Zf3jR@uIK^&-|pg$DDekduC394utIMAo*^-ZMqFHXy2-%81&jZRr(rF>!4x=
zttb|cEz1IEDKpz6_mcT@FhQ`~Y&vq1ij`J-#i`fjXBIo?AF!sf^?9Wt5GRPG`Q^}u
zeIBtLbgwhURM)%0JPSU7Y7gYI%TXrDHJZw9EDol-00mUWEiV3Bj&xMgOT3$%w86M>
zb)){NHm4qSIWpaK2Xh@@dd;hBdj6}ZQM{(()RKO)$xkh4<l!*ll1M4O=n>lc{V{cx
zfNU#8scK-d8PAF$Rk7nBq^odB!{X3m#siZ@LWs>UyLe&(yT<T46YJgCXVX<xt6}>E
znIk_eB%`F~${TY=xJeZ@DqJZhb`gGveW})qB@r_4Kw8#m&$dCBY1i<wnreWl#cGpt
zbx$hn?a$2-9!w10d6!o4rt8eXqe<3lOP(+rK>?)MkG$2fkf$<zZ`si=!nJMBY9#;5
zo}dr=Yp!ENL^4OFn^$1Zb}HI5&FBX<V*$Q2beTy5AHYh93a~l#ai5U#zgC?199+EO
z&^EWZB_0EP3nP40v<OJ&3c#K)raEC*clMj>V{JSNxonj@S8MN>HgvFur}!-S<p^h?
zUVvaOA=!B=Ft{k#tAp3ox7_qk2Q<5*28-CfRjQh(&69{d8e6$I+4pE%tOW99Mc_KU
z_HmZLW;M>4-i#$GB$mxiNvIwF9I-Q@dx>|@^k^t{+TxVi9Hf+_?A1py>RQ2=OmXOr
z0{i}KaZ88W%rnc4X*5{V6PJemz%R?HjEZg@44PH*nl2)3S7d@b)rSYK#q5AAsvIlz
zzP?QU64)3qx8a@0f3wOXV1H)UX98scu3^y+4tZn8a3_-rs|35W>4ob8i^pg~NRmI&
z$quUAc)ioB8QA@;Y{a+l3fASK^qxvjQooG2K(t&U<3xS_?H!dDWQ(Y6GZCBP)0O}c
z93H@jl4h!ubOX+)glU5bWkt60O`BYOD>FY&XSNo|b(Dfnc<qQ*)T5Z#P#&5BP4?k1
z_nJ(!pmSf~@D0M+cTn&z42l@&;7Jv&r06$Q>mPMQn0oUE2%$@<_VU(tu6SPj-N~&H
zA;wAD>dBIDb7{5uo$|_2=$D}ldmCGpg5D?F`=$fT@{TEl{Z+0~;N1wXX*06JcH>n+
z;>ML_b{liq$)lBZ7U_yj?V>w%S-9<IzYYYywBxqXQ4V!>nllP3H`_KV0gR`WY5YHJ
zqVWAwFIi?J4y{tlj_krS%nQOYylks~ue#i?KHR`RH)%W&DmKV1d*j~A+wom@>>ZoE
z_tMa?)F^ieHygN~2C@(jGE%g>#}=!y;jJX^eWCoTtReP&2$d{9_vv^ab(lMUd=v<`
z*O%1iY%$A5b;96V1>R33qhU?&PYSVDVFX_wTwMex;Z)kQTjI`_?fdjUGTPLOoOUx|
zdjMTO!WcBZF%Z9k78<|*9o5L==!cz}7$7Pp0|~+>BRLq^lZ-6_35b~^5cN4#GV_rU
zk9#WPM?@|9Cx)%EuR;uq5oz^fo+-{omDoUh>?t)02$A}J(Wqx1FSPZHc_?K8)y$1k
zO6<>q4^OeMc{vEM-a)U2ZOxB6rHx8pmJc5`$w@2A+swSKBV~b3PATa&@HNw{NA-)%
z3CCmaMyf3-ID`DB=j~)^MpIP1YSQJAhBv3(+!~J3_%n8jZ>D~9nLtfQ5ETeEOyUUm
z`Q6o>1lpB##trX=|5pZJ1x2V>kp8k&uDrkr<H_Igj~@{xM#uk{tK%{EroPk|3#fPC
z{rmROV_LTqCl|w9^`=NJ*+GhPw1-{Gi{WoI7(X`R>NS9a7mC)&+S;NTR6I5)1rf<@
zB=4x=8*{V!HwJ8|6nLVMIi~k{+hfahs6%qX?T|{eyN_vU3{ZPDxW~zvC?dCWpVXd3
zg{fs=#S{z@{~sdk9*!VJHG6wP`ky(t8ELPm1#SQ@3lVRz1p{!>6d8G;K2&5)&Kv!a
z>vqu2w9}+i|LMeYGPnumS2_2oGG(_WsDkb-=R+G$;6ceUuP!?FNv@B)2KOsSoMB-0
zUOpJ_fivD{XaO|dXh!!8b(}+u`rsUYX&`ovk?dGu7Q;yKnU^^3s9~8eh;IyGos;-6
zIIcLwLY4hK`NYXxSD|4+cIf;{Kwm{brbCSXqOrtm*-B$1O|yvCl6fQ(0V;vtR?OvI
z^Czk9Imr*@fG;_Ax$BbLDeV4FWPTTgK3V(vM!)sox8!NnEpigxEJ_+KqU=&v?w1?X
zdxvTit_U|5Smco$IAzY{qVtT}#qZ}SF8u^OIsA{~y|q(Tx<PS&D@uK=;Z;fl&j(s#
zzsnhxndOS7lN=4|XW6RQ58h>gguH8OHZ&nI#kwqMy6SFVzL72VgRJ2`$b*(>gzswt
zG>cpJW%m6JmD28JhjTLyD&q+mC_lw_2X3k-UD>ppE@O<o#jGaj^>_&))s<BQ$xpl{
zsWH~TWXs-UjLgHynG%+QF&n$CU*tf7+Jm#(b)t2&QrC9gM+_|0pBXiF;`mRgz`Akf
zKY^wTO5emQ@&Yp;s@c9nd9lM4t3TvNerk*?NO#ec2Nh?00F)`4y{rcYZycqn4gs?e
z>*fA>nFFN-KoDya(J(jb2U_=zTIu;#7D!S`-2d1m=IaVOs@G>?sK2{SSXLW8X_orw
zI{BfS#8=F(X|nJ<&wLtPEmI`p-)XnGv3_0^Tohp3|8<~2!t80xg70<yKYgH22aOwr
zK}xfMWA*-(dPd_rbDBKhn*!r1F4gYFopz}Txjvt-$eKn5DR;AZrF6N~9w|D|?D>m9
z)t?lURy`^iiXVcP6uEjV)=PtAyi@FrlZfhZ^G6_w`CT)&_{q9pGp6k%LaoO)Rsp$3
zPrmSycpmkgAlmG#bQ<cR0PQ~=qNd>9rv;Uea=2Te-3~DrbS%cP-aLF@h1TOK8{e^6
zOQwxtcGkn;1%^@ih}R7?KF0vU!One;flIs_9XGSL-ZAENbLU;xyDZN4%A1jF;I}>M
zv6~Oc_Md>uE5!tv%RZp$Vh!P$RUr$v{HuC2RJ$@idd%K<4nq*g&&ZFq3(Tb+0Dr97
zMynwy1L4yX5g;h!u$43EJ<Il&D)V~zChkTj{iZ(2e!5xe*eia*W#_vdtaFg8G+s&^
zT4nTaz=^Au_LClBhK6#dhmAX#=(PRs!(S^<(Zz5##c2@iJw%-_&RhvSYBLr=sz@ut
zPTnVHZNYtMV<%-`l8ZZyNxoez94eeL-6VLaer{NA38fVET7JH=`2P0nG?aQyBA@!{
z#<=RcnqP~E@1Nr7G^*KJ!SrUXkJ{$=n>VDZ%R@)JSlUaViEusm%X$vX=@Af}nS}nk
z>5*mCJ2*$X>jX7!`az6^Qz%;3G>eB{&iVTR8v-Q{fBW0NGT2PXXZO}9sW(%p07UMZ
zY#SGYLv+%U-uBO^<&R0!Oc>dB1&lYFm%nZ6G|HQ{6Q~C(m3Bq&++Z*ONgWR&)1E3L
zTl^&-@Q=Kwmrsk57fYmZ{=+ATDiUdC*|HS&1M?ypR-Az28iWN)8r?RAfH+9Qte?^e
z22s_XSGdx!lzbV1LpStlKM%a}8GO^^Y6W==<eS8?oB6c_&CMP(Kz`&o8{05Y)MAOr
zdT61a&i|C6eVr`09W4Gw79fpOEux(S@OTyNtlHu%LRdPqDL)(nJcuNY@!4Ju>92Q5
z1g*yyv0z+@SNG?s%&U}ANW>W0K_VN$NQfATu92)XGlET?D@~s%_DcE$*|LW8EZ)I$
z|B=Zkgl`l;UZY&ow|VIe{9nCR`e#E9PzM9s1Jd~ue;hW)$_jS#j0Mq85S6DKi0Wp2
z{F}o;O4n?l9muB2T@XG;9*=y>^dy6Of$=rG6AW<`bCb<mbXaJX1-ZZdsdu*wPzMWo
zc9IXi<E3Z-#jnS=(SuaYWrKZ%90%0+2qH?Bg+BOpK0uD6hwhfnqmX5s(Z2eNg~?gB
zd`(5F?uZbt@*VIg1n08W?6xZvg-4#3UAKX#IV5392oGzz+KQzJH~5~j$V_f+Uasi^
zlb_ev?o@<+dX@}Cc&oVC7O9(A4{ZH_pKi4BDRoB86mU7kJPXK7B^;#j%b2;ba+eQn
z27D>f$$41D=ptCZdx6$aG+kgBj!N5`m+G>v+Q~9&bj6r;Pms$c`?!mLb-%vW0@shD
zrg+yeiVL9-#kXxftyo9$UI0`|^Y&X!c**ZV^^^;~iSASK=rG>9_c1Au+u9_$KIU2o
z89O4hhAm7|wjyZAzMyv&r9yE6Y*y8EjVPHCBf?lc&M5~S#C#~9n`;<s@#U!ZSRtR9
ziQzZ5KelLf6qAzGc!0YNGnbC0X6_sgC5>b>tzIQMf9W%!1P{|_p&DA`5rrN^Ieg53
z_LDk!cgz?`bo1R`DHEd5pLV6coo{qWdwx-Tb&)mqaEE9>-2lvVR3+BY(kh~S_m!;~
zes7t8FDXgj9L_f^R0VnooC@y!IJ7a!Uk-I1ZPY3}JcRjhfakm{WB>)dHxU{+pyu4C
zuBPO`v)RO0NeXar*vV{nI|~}h#2)vZFI74yOTZ6aEg54*xEj`Eo{xN7Yq6DTzDgm_
z(xrn<DJJnju`9Iupnr9c&a+gOT_8{4zvgM5y8VUI+y7*MiZ&N}M3dk6=>l^*!<<AZ
zEM0`gA^7RJlV7NA0_sk_#flTYG>ToI3iEC#>D_HmnWc|M$~H^;LlR>;O#O?j(-8`N
zsq;3M_;-%Wd1q0GUc7q;iaY_ABG!yzoyA|)*M7faa&_#kWs#y`<qOQlgmnZnl|rzq
z{vHp0ZX(h=(-vc5Q5CUQDDh9E%;z6FtCMwI?3_k$1BEfpY?Gc`jVPO)G+ED?RxCt5
zHuRK&?Y{jNlK&XS7a45sHQzmt*YT)ArH=&c1Wa0kwQ0NLN~(#O(9pWp6M+l+&`VN_
z*1%8($hUZ+plFyGT<2*s7__DUSxq5~!-(43^gz?p`?t_cA7(3@@RDP-4wVGDPkeL4
zeAQs*V`b|SYQ>jyxiRW}a>7Jlh<tccQ<z`x&npU^t(1}7rG6_=OpXoR^w6tQjG88h
zV{uXcsos(=m27JQj)`JUz2VEcT&H{iM{>_*IZz#~w}}a+XOy3k9nW*VRZ8=R#cbI>
zSlW3>tLP$d`eSRRz8B(UVt*CBGq4M&$~xaMvi>gY`>!wd_IetIbzauVn_?_X&eM0q
z()*-Fs~a0YPmA;$Ck+biPu>eZeXCgfwFzOdM~T|eZ*~0qt+@Wn!q+F2ayZL^o-aC`
zaNYTp={cmBbRlBv*~drw8j-zW!^r6-*>qpi(C}H<%FmTe)b=H3@LCX?#L|(y@DKM!
zWf7{Dnc#q=7Kf?CImf-n;U7YqzYtygU_R+9s~KI)BRlc3PMt?OIrwl&S8s4s8E)qW
z`470`>V8l&50U&UV4S}d)8i=H$Ll>+vpVj!w&u{rY>GE?wR`#4T(+oqhs0AoPIn%g
zVIX@Y4Rp$~T5Xs%5$=HSxVkU|V(}qHpXlsjh}0wtzH0e;O9iPe|COD^Pxmp8iUC!_
zOUl=T8m<GXJ+vS}3vto!7`7tnVX34@X#}+sJ|c_2eY!Iea?p6&K-gy*<BsC#xW5~0
zKGi+)RWxwqEA=^Bf-Ge(9<vW9v)aS-7Pv68XjGh_uTxK|sM&A3KSN{M1zZ0hS2xFv
z;E|WC?kxp-;F?-?8|N!jSr{CbWz%T6A-{8uNnd*cekn?bFijNlUSj5+<3PCv;1;0*
z1nGb54weoIt9QE(O(fuuvj1(mT1|yZfTl1ddr{)M!~|r#y?`*3ByRYenY+C4VMVj8
z1Mha%QUi_s_koVtD#gAUVIcPDc|(k}uKWWB1?Y(8iO}yX?rP8Lc%2?w2#cxLFRkfp
zqxxWL{2=*-@Kv@mj^KL%W`zsinY$0Cwd#&TqsYTD?^WD(<IZz56?$h6m>$KRKkodT
z2y6VV>jdtAPvw|$^LqKNa~CC;WzPdKb{l5^<?=qU-?~?2K_OlN7kE|BC$QAa4JK>g
z(zH!R!Aw7}dzX#d&=x_Z&WdLo>*V?re`df$deJUZzGkZ=TOT@M(veNJF9(h#j9cYT
zn9lU<;Nr93e2ll#+_$R4rg@@5?1Yk0XZC!uN7P&1&o)}z0hDEeY>I8-aE`+hzFG^r
z{K~e*|C`kERe>Q-u+<O*6DzU5U|g&Zl6-K(N1|WT3tPm0^306(d)mvOOpe_rLFi6h
zgl7Hcr2=?qu##0_mH)PfFI9`3|EiB84f1hG()t>hA?c|4MV0nJ4=AQeQF(vQYWH{<
zZFqj%@6P|j-djdxxvdMsf*{=jBHaxFN_TfD4G+@Y(%ndRhlqf5cXtZX-6`E2-~H%5
zd#|<Lwf5fY&l%$z<NSMa&Us&5^Sac(_nOnMh-{C`BSGSTfLU1qeEt^@N2%hWr-?HW
zt2LOoA`LVS0lPb?<lwa4P`>=AWz<^@D~)Q86vV3!#csE|lDUZ=O6z%A04L($Lt`l7
z-5s{GYy0rQ0rzBK_=5i(&W6;q4vPhZ^-#uRuLg$4$q!wwR0h`tNtUZ#kAgWJi;bZl
z{UD8};|G1i`KpSQ<jVM!8{<*RQ>%pT97{a2k7+7ul?Z2{?A9$qK}KQjqQ9Fmh00HK
z3foB*l$*-sco^k5X%%n5<<RFXlv|G}iBRF-9>XX{K&?<1^o~kJJs682HhxDHnB~eG
z_2e>3`a?NOYbJ$hh!fv%GCd(89$gFlomM5Sic#&V=lMpK03mx!W4Cwfq{ZA9y)Daf
zw=PLGuiS?0qLptqD_qp_pZM|i4D=mz9_nM5H!ovO#*$;o9TIwvAL}ipEcR!LhO;n3
zf;5#mLgsBeu=1364YVwC92yFN88ye`K&f5xkeK>Kz?QK3nJOCyO1*^@w8@~gRl_x_
zK0DL|bHBM{YM;AMCE^?8Fmg~6^=@cd&pu@Vu<F?K4V5wWoYGq^O_>^C*`_4Mk5O`m
z;v6Z4PPn-DL5pzPNeIK$f-Z-=HdzbkpE>wQ!|Ymy#EnASe_!thK+X=XlP)NsPL)Ib
zm%ePr5FaO6tUboaemix*3p)!BdURZh7xZUVz7*qyiSokul`q%cwbRd*N{A=+eb$SU
zn{mLB0r&I&o)Ex=QHnu<C*Efm-<4ONsnPeHXE0OFq;1=(JT<X7hwh7)8it&^#4Bw8
zz0o*AsN{Re>3Z0Qn>~rM0ZA`=<*YrVMZr^OY4jBOaL~5}NPC>LyCeBJXq&|w;Qdae
z|C(S&v;ka{QMBxS`Kv@<SbF(e%~D)iLt#!`;YuFRnGR?RPpa(bqWpS)*J^!3<yLaB
z(Rt%+tYF}JD~<ND(wJeU!bom-L3a)Uiq(9Yie9}sTC>hpGFuXJV~}O2bZA0LvC*mQ
zNp=!=>=4m1W+G54c2{j1!*hGXY19urA$y9Y^Ab2%P+jZE`JBNdp_#!%4t{z2%cbgD
zuXj{Rszb%9{X6;9eyMNkD&NsqyxC6?2*|*Cqz7WE@k+RbYh@37Kxp$Ft;Qg4I!ixx
z&0$klq4Fd1>8H#tAXD4FBf~|XwO<a@%}^(@C5(U7PqQn)<lY~>Y@{(DLkMFx+8prH
z6Z-={Jn^Oi+DwEnznb{Nw4i@Y4*0WIWYxg^>rUPlJpA9LBL3``zx|9q7HBdgf|I!O
zhtW2_F~9y~+90|HAZc_nw8N4A1gn31oPYj=s2@Q0XGH1q-`&Xgosa+9qy6KHkMsbq
zl?^kB{hST;&*2Gw^2^^Yi)sMSvcj_*m){zafAS>1drt38ETE6*^j1RFAMUpQ`#%Pi
z1CXbB`j+Q!0bUnCvee$`z{uYkQYfqjKt9$xkKmtB{Y!BF>kFbXa3`sY>y7Q-J??*6
z;xiop`To{-zqbhf1K=a40VJc}-r0WmEjs=q+7tlDV;j8B|9_a_-yKri96<6%cMlHE
zzlG)hW3S&3>i@CVZ-4>&f9&-e3GsjI^&4RD|L<xq??mWhWCBjQhKqv)p}>ggM?$^_
zt5}q<zo(~BgPQq)KCT+ohtXjg)nbpv(~!TV_WvNt0in%=736|yH8C4j?)V6CTY9qb
zjkL~gBNlI_LZaGyM%V2tj-4GYt5t>LUHi)kmQ9G#slOrh`F#+C-vn({`XwyDFJRI{
z%GquW#Vw~s@o@vCBW&5Ce?zDfMT66f_}m{<<BLE>hh}9Y&_(e_uq)Y{ooJm>VJ~<8
z^P~Rj;AI#=>Zn#7@%!cWw+tf(#t7Jhgbk#UrS!m3r5ODy|NUD0?QlSiT#fDivzeO5
zPtR!;drgrTjoRC~cD#V$)so5k|NT-=AoG46>$rTv_U@`hv0hlAFP>gw=OVnykB9&p
z;&0#;bqNeCpktfA`?`TtLXed=`w|y0B;3Pin&-cVdG8sZ=vVL10lmFN8MN@<TTI^4
zjDTG+#0co_|J(9kM%q7L{ci)7I}W|@e|iA`*4F>__W%FeGV(~E(SDb$_XLwxfALP+
z;4+=3-1U;+_6s(HrZ_w{4H@=SK6S223B$%fT-ZQ}HxWoP9m@g!-&wMMa4@W)(OH9P
zfOy5V%Z($mXIsfZTfoaapwtSeZjV!@DpCKc%cKodo^7t1qyCL$#iRHIpB;;aza(99
z<02J7m0bx?c@v5C?a-QH>^_bNRG$Iq@J}-Q!;${%Ei84UwLqinLV64^RX2cpdmSsD
zMoAI0zra$b%cLfY%1AM24)u4=SH%wm^ITd^k_%PqXeM5422T_y#aX6tC02|YqypzF
ztx)*y1r$G#xwjwOs!ZZ*5#HOo0WX+zMr}}C?WBmU=((w_%lVE&(gv+^FEHQP0DJ{%
zxwXw}7nm6F#&$r4?U^Q4K@!yQU3LTk56#l!QH=Rqv(`(^2R`bzIhCHon}0`cGogzI
z5iQ!%%3qEaxIc~7a*?2~1NyptaVpb=NU&Ne6Y7>pB(w8OBD8j%lHD&l0#$hp=rY9s
z9mG%mrvTWepxB(~DNN&*b`ZzE^wfWR#UBcVP7*YAc#mT6;G=!t8-V<BnT>Hg^p?PQ
ztp)(Zo9um3l<RL16No_EXY?sA9+~@1vkoKs;k=#xiC@`+f1>Yy^3H#AhE8#!4w&P~
zyC!AO_IWv>3UFI2t{bW3B8AYjyV5FW;49PGeK7Y@Q^>pGcOzCFbcU#%rz!+I4yhmZ
z9~zrJU1TTpQg#I1VCy3P9bHE1jY!y;a?_Q-?6LZsu=uk`i1_eUz0||qwc92oTbbu0
zgmbYG<4m1hg4~FPRkK2|nM>GkqpA$BdBP%)<v_&cRlL}rqny&3d&khUuKOqm#J~P~
zn$;zXT=8`(X}k!yt1_=cQMq@q&$cg!=RIvtd%>-rcz1P5m$7P;Zd3o^;3)Lhz9Dh1
z=l;$Xij?3j(ux=)*{l{<?anS2-4k8|5l-+PiA<+3*G`?3yj@ZW4CEzeE^S7jLW))L
zAjgw+3AGxJCOjS&X&PlJMh@HcAWVqAwePAr7@xD1?vluaynDX$TN~Kf`XAB3+fLV8
zq<q*rDU>^&ud^HQ^02xd44DuH3SxmK845S5^oR$G6+OI-A*LXrlID4hMW<5>92QF-
zJa+3=o;^c05F^lcgT@~L({>9Q_xd<DW5c!Jpv#l4tlbTFy^v)%@^qL><)Ho)S*^}A
z?t^P}Al}U(-VW=M^QnDbG<k@|!bc3s^**E70UvGb`qK|&xtP!PX0x+i*Wb`&Tuc8Q
z-Yk1A-b=K&ThdGh+z*h6TMNhM%GSy)=H11jc_+W<(G&qjStoPQ)a?c@vs15phERcg
zbK_lwW!f;e(P!Ii$&-!oK5*rPQT*`kV$<!HOWKltApYvU$%S!!vJrE#(XXb3z-VVU
zQ-ZKH9Ona#P<#6Nh3e@l=RqaM$vB3^#>eW2<cb%6C+wk11EvS>`W*KwZ)L^Yi|jm~
zR34*Zw^znN!}VL~Z-r)g&TId1?i%1~WzxewA`YvYA0Sivw@~M}?>@aNP#1Xs%I3~?
z`C7Fmo1`e~S|*wfDp@{j%~X4oh8fek4#_vED^a`7nv}cuAOn@Q8AIlm=b11E3BVO_
z@%w?Dy3<s&g%ZAax-v?zgakx~egsCRouAVmL)3rGO5SJay?`QBDJ*{Xs9rta159Vz
z9dN&_JW9eo=={DyYOr}JvBIQPViF^2dt1a7s39Ue(8Ubg*SxA2ZXqHS3oE0n5@}@0
z3XsZ+CQs{9#x85=w{TpvkkeK!DMrM#rFp)ERVvyomr91u<yc{4f?v{dQLg!}B1c1i
zBY$GFS<gtV@(RUqaWBL0#=J*s8HeM;cIi0#<2x;=V{UfoKc;j3I)cSN2+iyUbWp=#
zF}Ug-;k5?v9*3R2OVJgAd76|l?^iv3;WoSo=of*E&qar3CRL-#Q(!Iy?lH5utiP&T
zUsd-AbRF3Lwo&8XGN<)qIORTO>7-kx#8G1+<>ES5vB~943v+|Re)OZ(Oz#Qrdq&cr
zEwN6-ztV)>P#9Ncw|!7tB*-v71)29CrM2NPUDDwv4qfn{y!F8cwpzGBIx&yHzDGVA
zl``!kMd4Xy;~NjXEIN?gdSG5E5sxrxkjxIoyxZ*26?K6*j(@BZFE<)KaQvE9?~ni#
z70sTiFkS*<sem$V+sQiYS)e^bUQ*-5j+DnP7fWTx46plADJ9%02hAU+HT{c0$-onE
zg?TFQu)!jq-w<#n5|V~kdx8PA<HralbC<98i;wb~j8_wfUju)uzS!v(=5LhZgK>V~
zbPfPBQRyBmK&?$4D_x5xWfNf~$iQu^lMUK0efDg#1Dy88lqh`Dvjiw-Yg`2)9WVqQ
z;~=2*T_o!1Z$13q(JHzG5NIVylL?0g!;q)~9vB5(Xq3JN&Rz*3kO`w&T?faVfHgXS
z30Tv)*zbq~N(Yi*spZk@j@z|5^d$@L@`>Z(HYqd$7Gf<O77L3ms?}J|H^svfT8s2R
zf?91(M{~kh)4NWI(K0(WR}O*3PttUMW@r8UOdJ((nBZ(lIDR7DTN)e|f1BZf42}fD
z(nO*HS=#!jtnOa6r6E|SPa+{$Q7?_s$bkx^=$CJX$_MDw%HJuMTx-PBY0+>w9>CWw
zz6rza$FEsHw^l1OH0&f=?2Dn?XiQG%^?nNT1uWTs+lgc<#hMU(>U?KGgNfHoO`${}
zeiFmK<P5S%0Gm*pNqF!-v6+JjVADj72PPbh&FA8YMCk+uxt7CVw^fM1S`s^+rzrGw
z!wM(ZCZpDRL$Uz?NDc+a1JCudjkQ!D9W>?oe>j{~11A1%>M@&livJj?sNsqrN|$Pb
z{VNlJ-v>aH)OU;lou6TKeHs90Njo3xO2PCs4G9NaNX|OA?>8&g-N-M6Xs5qYO@SFB
z4^2?;buycJAVqq~YU4c2b%|#(awkizQe221e+LYZnU6n86@)s*g9H6#ngm@5pqJ0-
zYT*b!>4gPoGc_P>l%fX~i0#<owZOyQ_({B72ZR@*b{kb*(UQ!=hkPbVlh-`$PC)78
z{z8Ks*4<43Ad~q$G_D%lm#tcklT%%XI27{~MO<B$n%$W%6Rw%T4XUgjAYB)C-9b@y
zLwUr2i7eAz-rXIRK?N}8WfHb2i9D*+?FBxw>wzX%?KkX1b%?Fc5b*5(pnXu$PG*&X
zzxy%xStPi3W75qE!Oapn^j{qL$5)ZEfR{fCm;UV+)=>ojc%pTFp#k%RHxxQ^Q0|ry
zm=UTb-t62#w*=VNTh<omy*Bw!wf-$drJm=~$9%e$dfBB6c?}TWmy=xg>uDbM_u&nK
z*C))Ub0!ye4^Mexo2?o*R4BBY-O8;W@LG=MqWKae17)=~fZN1(lRswbd^ghM>iMQR
zKv+~kQ^k5lNw2Tpw%Es{FxgI{=DocgT@Nn%v;5*OhW1VbNFs!q4fj`wf`|rqqR;J;
z*<gwYz!sk-O1CovTdnbT*SU9P`gwbc6=DvDi=-TOn~~+YX%rj%=@bS<kF+ZJWI*AN
zqjH&si>p;DzvC<y`oJp?VDxCq+^TbaIG}(*#yjFz*RV9DC~3Nh=CPWcS`v4qRo$Yu
zE1IBLXs~KpsYvH2vzT)z7+8+0_MFI%%QlUpiRN*2z&UE;|8aVg;xJOj_eex8`J7E9
zMu${XG9taneUqF`p-@!;hwla>Pqj?YRzwZVPk+SIFZIMP4J3NHVpGC?<&;n{0c<Jg
zWGjNP)qz0fhRRrFB;KGE7Wnhrc~z1FF2hYnpF>}8^cSzzINN;z3NlUd!tMW(%29*N
zfF*6*U8Xs}ngk$iaQp`g!yl|xq$vTB)JYuytWE-RjEv7o_t<b^I#Z^X>yD*Nr?od#
zWf3&iLGtU5e<paDQvm^j=-5B4^XoTvP(Z)Us8>(H9MuZe4TA=#G@&YuPE0>;CHw1T
zWDM;*LNMM0)!5Im{s7uuT(1t8TrjcKuG-?<t=xL_4F9E$gn;_@@*TAkVPB6C39Gvy
zziq=-E@V?@Jo1JFhv%nV?R=MKwAZQyB&V~be~gwdm_k^cZhqsX!srQ$M;PK8HX^|I
z3;Y0xBLla|7Us&rL;0oho&%4CGtAi&3jPip7;`3V@M8;glqd>WA7MoasB_o}F*qYy
zOy_akXb&-ifo9L`o;jJsEs==pkMoV!`8R>Tk0iiy3PWT)KgZ5TCIPfzuvsx&22Lxt
z0dJsdjx|2(G%~GG_9q#oGN4q}Pgyy?Hq<{ON>2tF;mV!#ZI1x5SDC|R)$d&iNG4yY
zh(xJCISwpEY&QpSkT`dKKbiNpI3+p&kk_?9trPg`Q}Ht3xu3_BfdkNy)Zp)~O=SIu
zK&coNu73@!PH8}@4t||M{YCK#7yz}sQKtbbVdhF;L3TcOa1auz?BA^Mg&$Z0zLW}V
zQ~)fW3YG?A7#)^i9{B-Iai+=f+onV)p<0cMD)sHd5BxRt_r8YQN>h46(<6z>NK^Rk
zA1nTr>2O4W%~CUH{zGij+YgNQ$lN$z!Jk5khy)NyB<<ql;1jk3x+CQDEfBN@4WTQo
zYWn?~;3|;|q*zT+HEo0_s@0r#O!=Dp*+p9NKc0Yy6<AewZBQA^ouL%KqYe$f00T{6
zkKh+T|6j=S3&IK028qEkW-?$PKl`c6Vt`Ebz&iGmKyV@$3JpL36a~l-qcbFdrOo5d
z1rhK={b%0BP{*(<1_88zdOzu;R~k4D^VrO$DsVpUBY*<^t>PHS;a0N|xN!f{ap?U5
z3G{<RYajT6jUE^V#$n`lU>)?EGh1sgwDN&<vXdEDY0*1F!dNu^+Oy_|Cc)_>_3L@_
zvlzsSUl(jC44(EYfC<3_Y^*4^QI*L3hm^M$F=`$W0WtT}xPOGA(7`0?lP3Su*bV}l
zK(GR$1uuP^MxwJpe=Y0oph?hx(`+5~<Nf;4?*vj1SQ7TCiDu^r12@QLJ>=ufdEets
zP^HP`V-4eCGSd7dxcG_aAx)3~cu9ru?*3BRkxT%)8HAp8g23;~z?pWl<L8!)Sun@1
zy)G9cb~h3{FRt*e$uZ&kvd#x2-atC@GW@k0{iOta3C-_l6liX2|Lg3!;Cd+KQFE}r
z(W?qzXZ6m_U>vyc^dvnYg@2Jc%2O^i_AuT&ZUH7jBG0ET`yr`|Tnej1c{6>n!Kh~N
z-XvhXH%W@2$gys{FNM+0*ZS-yWkNus1NW7__Fx{7F|({fYVu`D9K-E*fc4ogwqbz>
z+He5G$^xRtWBJM6hG0ah4RiN^NyQHfoXPn^%4ECgy@|YcC|0LN)qUgy<RWJa)=@D>
zK`pmxP2nE5we*eJ05&jc(rz$`C-U;!D*dSY9{QBNc#68M!;H_tYf=)civx-!H{O{X
zr=yRuwqt4ZIzYt~6xx-0o2FX*6<bSIpZ2H7*G)eh`jX!?4x>fo_gIM~qE)v>EXl+m
zJr>#wm>J*HYa9gsFlrNa2a)aA)L|o#3P8)IUa7>>tI^F>n@8i%)%1DayOKMmH!5b@
zD&;BNmX{txY4Qm;??YetUFcB%5Bo;qKm%Pqr8-d;wWU02Jd92o+~HzNRMku;@-lE3
zVZvufU+v!hD7Rk3yWTpCv%UIGOs!HD99tl-z|i<5J=Nx-E`8J_W84#4F71{2!~Lap
zLwUdyYs?+=)dSgn`LTA#<ycE(+FZ>Xm&-`@`QDO$=Od^hFbV7&8FJ3y(E{f{ZRQ{M
zaiX2FjC8+6kt`$eCvz-LT{%P}cZXsIMsGfKy7yG4w41td5ZHw}lH9y(diF4D>&2gL
zlf##MUE_ANZ|XQi>zGc9WEyLoi-YET@gq>bZ9c;yc<#`d|G;(KL>0BS65PQmZg0j;
zmEOqkE{EkD+jwe<k8!*1&iL*%wYz%Vr-3wR0ML06Q?Ur<GnE4B3!}YOT>^S7v19#8
zM=69wI3I5s#mCozC+#Dt&L3XgOX2W-&A_z2=UOJ_In$>!aS%K4Ol>{Kh#XG)81Y*N
zqtz3V8fmpl2v*LM&Gw}8<LitLI<<;=PkA<5Yfl`GE1rg-8x_`ghNeYvyZd8M+p%8H
zp4MypRrd_NDo@i>#Y-dop@=2u`Sow#4r5>l4pFVu)C~!ET!fRg6vm1^KORXa=I#6d
z=;|Zwk?KH-{<r>(3kcqca}kpd3*SDvmg1=efOQ4294;4_q=mJ>x1f+Tss|?b8_2X5
zxfN^QKYS$=|7=OL=<8JAm<qrA?V79c3D9iTAAX%@=}YkQ{+NXZNkQ2bKKClb`v<Gb
zX;AYiUR}AUgkv&V6fX~F|6mDU4fTQZk&Ve>J`x?QzNB|{2)1NHpoaK{Y3@LSP*30l
zx?-b{iIniE;XM&>IlRpA{CnHe1BO7{&M{09rHBR_QAINAyDJ;6*G&%R@H0(jxeb<u
zzD~bjZp-*w^bQK^kyVb9$01|M&8{0WtT-;5=O(cNGTiPSO5et4bxrY=4_LMX0t%Ms
zD1%?p$LScgeQcq57npPLNFcZ0M+Yj8MNDy{F^-$@aSHKBqfDDyG#WFZeZ<Ilj8^aV
z)3n<0Qy6_b2OX6CIHW|tq9GYbcp$#H1(L}ONTg_BJC#^G|0CG^`Z}V>1Z)$T3H=$X
zlgnwllun~*sGC~3_S5=M8m*8}_S8_187gBD1b2ziC;r99e5|O1;(|^3<j65?##xf#
zaE(=hx#d99K8_6&^#$lM(Mnvu!{$3_+pTZ3Q}a$KvD6xinuF|+Nuuxjr&mteG)ks>
zZu`awzgUmx!a45EB2@+Kd=QsF9Y#RQb7?$hPHSv+)OM$FcXcR3=;jPc_&OXS%u~Ex
zk~65Wnm6e<t!?<V)xxo+y58B6!5<zw%Ki3Yc43@gx<+n@_fT+zF)$jp)<Y0s1!Fc4
z?A82)BfsHuShgT+Mq+LrF~EcK$bM*kU;M%O&ZB_@2==FMzHzvGYOzs#OK5{&F;_lw
z<GVtqSSU>G2>K#wjK-)KjZ;G4<AigVYEaEX5tJ}9#NHDEtm{XKS_NFZ@(7tASrjcW
zXau@INM!n47c!W_t@%5uM@x2Tpjr*Dtevb@PDIaQ9Yu!^dYWHP`i@%m+s@b@y&F4J
z*VP}e%hrvWfAGgJ9~xPs)E^2?E5H2CM6E`Zps5L5eAv+U!6yp@G7o5IiQI;XZdVrt
z4qAkAH_DQ+H26_2YkAS)(Ay+Ra@;fevF;MXL?BTnT|P8e^7jrkMLG@5PeuJ`hM50H
zLx9ypP$@sVK%*1<%8wNk!mHxFxwSdFu#R%~IjoEW;a!kN)pL5~cD21z^{?V+CL=dY
zt{_7*G$70{oW0Cq^Zt>yu1En0EcV3YXtX5It;yzo5O!5oy}UG?sj_R>n`_WuF#A5e
zk3OTJB8s@0y?)i$lR_}I`>00BRby2%)WgcrvYBmj+Oq^;Va@b?3N>IrC7{#ygLQF|
z7`VFLK(oprYj43bKZIjHhZPW>(WI``p9sIQptw7Uy#%@y7Qa>LM=5Zq<MRBb*0s@A
zZ;-A3kb2M<8$S4GRO0r^tch+RdK@$JZBL+MD!oyHY;zn+uA8K`T>A5w(%neB$ICCV
zw8=g2VL5d7)w`_<Gxe82smkmT&x5ioKb#NDotvph9dJ8me>sm>0YqC)EJfx(PesJR
z+|a&;!D0G>VzaJ6UlMI2(N5dbTZ6S5PclFRDCTHF_a(7xv>DwS^bg_BZA_PCDSp;B
zp_VU=bjROj<gA=XBk2kbwAT{OPcLP~GR$;$z3iR*hPz*k9vnv%wR4~uLBK($!D<!l
zc6|zSZ(xwvK$h2p4D>CM+P8l}o$(9FWQ*F~#UbOIF!{9Er+`aI<yv^4hoZg^pkI-W
zmfas)k&ff6s4nyUgc@!YpTlkXrfZkxmO$@eqH-~0vRIw?8vc3gs6l`CnHpB!t?HK@
zIQX<+=qQ(rot(F>gi>9Wlns(33tQ*!Yb<8SE*C#kxzEqO1Qm#7NK6t{U<UPEs(cv|
zs7&XIn&sR1hh+)WMzdSqbNy&tOpETiVbsq298K>Uem0i`Yk9rB;#=-{iQJb?n!C=Z
zsadY>Ii0a61T-skLRcZ+s<NHQI1w(Go7X)AdhpK{8QTgO0=Ib&sm>e=IrWFrwfa@^
zqwy4S)S3-9Y)9l{S){KY*mfO9@*Y9rzS<}Y&S`JcLLUu_*S{q!rLl@J>jF2+dyEKx
zgjPxs{)L;n*LeP0z9xq*qXwvBH}=FJA+W3Nq&Q6uFar@X6mT11Oz(qwcZlzr0k#k9
zcES<oIvv^_VZ7%dH<=^KV@J`-T{-lZF{QXKf;8%dTsqLp%@yiixUXHC3YXkFi{6Tz
ztoPCchNqQoWdlBUkEzyST8VQ1XM5N6qY=-2PC43WF;L4bxAR&ECiB{Gk?m1$-gW)a
zEW&_zgIR%8v*yfxxwnV;th*|3SA@DkdGAQAM!!w-#JD5Bd<=d|Cb2;v{N8ovMKE?R
z`F;tPmTBzizUf6t*scEe&^P6?@I;&jY5NPx4XKrd+9OGbSDX%4MAw_A61M9{#JdTQ
z9P8b4hw-!LC6x_@si$j>yu0(aM=`bq=j4{vPg*)}KFo_JJ#^^<x+$<hc7>#CJ=~Qr
z+C}Ac<rdP9$AH0`6%AJn*-Xv4(_Yfy4>8FJ<MxIkXG$sMp6AyW4o>}rs*g+$ZW))+
z`^l_|yqnc;tUs+p^I_i`+GEzJh66c}iQz)xtyIsb*Nq1hNt_<BZmcU993FRx?y{8#
zbtx%JMk<-R7dt0@h3d`YMT*07S^M>Kk6$O27yP0K`^G<JZA4;*+C005Ib>PTj&2tT
z=B${XO5>{TJ3?8CtK<7tI<zF~*c={PBrjoER}lBQ{DRhOa=E2(oUyDWm06a;gBj>0
zx$m*EXU7=Hhs{`d`C}n-EqmvO(Y1L`QqVgdS@$R>V6*QKR(<Wx75CvXOSCeUwMyL)
zFX#%C@5q~$2&jxE+4+_YYs_bfGTg?s0e!8_YNdG?uRwV3pY0ImX0W#VG{BF<8Q;`N
z^fCIR;y9zXhp^G&u;-SP;`V;S1gn5U25Dudz%i)XJ`s!X@PT723jTX`c6w!F%jcE7
z=`R~fo=Jt5Umq(Rv6dCcWL_|&E)&czY<P9-BVTrCp>WLOBRfuYXdyc$5IQ<0knvk1
zK-IMr2+0{58nMwfrN}7WbN3CNoxO8xA#IpDwV!yrICz5RHI*A{GAfY5;7%;}Ab6ui
zF?TgMTjP$=;(0LN*nhdk<2T&NjG5n7CgdtDIL7PYL`Z?S-vQOq+{hj5?s;AH;%?wT
zDC+y^RH?*c>xnbV`}=+o5?pk$ll5VbEThP*4D8S7YQs!w4*KT^w_CmLG^ZRCssri)
z)mwK`o0+Re4_Zev!x5g09f!t=N3NoaJ|eHDNlLK=ol0_sW0hhUS@l7D;cky;`%zUN
zYHp?6hEa##*xgI_Q%J-XoxlLSU5i6WGq^U*6?xH!AcehPQ6WfB8=;!rZl0hNXZWL(
zXnQU7INmwBR3_TAvM7m)C$rL~E;JzXx;u5?;xK4BiN`cOA(Kjw8QYdS1a&mgQr3y@
z)8b-Z9kzHKiz-klK1b;V)#7!ArpW744;Z0XwJk{X%s?euaWg8ee?2nm3h4JRU-B19
zX?qOGhz`^f=Lk_^uB3$T+s2-CIX^?Q%2?{TY~`dFJSB%e8Qo%l{HXY4YQ4c$2==)7
z@jG)5t8gd*3Q5;1`~o|JTl1n2Kc{N+tP>YVwqlT<Wf3mb%v=O?C=4|YYw<M6J5u8G
zFzbCPSwU{DPb0*_UT8<I4uR~z6Z1m_Jwba#yo^pvFnQB=$kOO>3312kx#GFh3>};y
ztuBJYK>0ol^>B79;%Lis4EwU>OAz!o1PbWqo6vF1%)@pmC0Fe}7$7el%Za=X0Z!jn
zr@k!TUm%>#x}_Z2z6+{34rL3S{UD@;q%D`h{%qd)rj3k{r93wX=~R7-1rf<?C_R%{
z$<Tn}2v_wj?faMY51i&)hgme3wd$$PFY%^`jNS*dCA&~Wwpqp$mdBY1CU|s6pUklq
z!bcn|z3F3A&fz}8XZ3b%$Wt7wrKdVDTOmWC&ke`-A?BG)sYGBAmD7geINfBMr(`xb
zM!T?n|9-Xf!RslqD7DS#`d-&HW!N&UUi{uG=Lb^|o^~;7zT)Wm_ep$Lfz7?T_o^A;
z$$Ase8g~=;rf<wMhkVjfrrPK8^xk~tk@3#JoetpL<JP@BgA?I!=c;}+N9lfj@Kns!
zJB(L59=}OTth%OH8;+$1rDnD>Bh6Llyk6$@#-rZTBC{lZH2<#x<j+y;4_L<a;|oJ~
zQK3<tGF*6EP~Wk{-c!w|HtRQioZ?NI%0%Rq^tGoAhut2}*{fRHz9)~VsOJkWj@X`p
z4kwt$_>#0J)Fbe5i6)ue@uXKEk=gXqj1d;RHv$%Q9_)|Jq8SJ(!I>5_gwV%^2(<>?
zKp2d=eCR$B!Y-$f$wMYIY_1z;?+XK-9{rg%*1qk8(A#(2c8Is6T>d#*jqh2^R$&>c
zvE~Hmk3lI7rYSm1I8!Ju9nNkebk_C;0iGJTJr*)nn!2kP{hES%k>O9JAk&1;byKJJ
z4toRbAGAdT*(Ua+C2*<17QXSI9PS&ZcapKvxG~c*3r2h1+wu=H#9GCz9~BO@Z`-e*
z;!cPlPAPP%6pBj4xaT?)`3zIp-X@)G9BA=E$XRM*HN=s_AFq;0=bMLMs@>n5Js@dv
z)nUu)zj!AZNr$9Qf2AScm0G@(ipoe9e1sZlPD~&h-PYFz+H*a2WVLy1Fnea+?ts?O
z*C|T5O&$Vkd%0;}>%K;V;p?#(<7x9*Vf1-kXz*NIU<>h38YjG5Q+g}HQZ8M)2p#VT
zqlb^M8zQ5E?$|C~4=KT`!@ES1@?KK*75TJg_xt|2!l4R79=%DtfSC1TRek3OndhQd
z>;kj~$!C!aLWbfU51|y38gDZck{+i|VJUIe8oXc}t=hz}bjU^WD<gx`8e;RtlEPxW
zwsz_w*fQSp+6gW@?Ox3c#C~jLS3~T{ERtX!xw<%~U0ypEPwM>GgOtK9wuZ*2)jcR#
z`9eyN8?U6r;|C;P4;(s0z*$m-U^sXD5`K^ar*9L_J;r_;Ij>n$I`?|x;bJ`mfqA=q
zy|fyU-sYaNe@NFFqc(d-$HOX=XlT6Oh}A22f65T{%uBzI!vQ6OEBu$N-h%sv`}Kn1
z^DR{0+8q%#KX0(RForxV>P~e&-Lz+dFr(!~ux4g>@KBDBTDhfn8y5KpTZ;jKzFIdn
z^Qro$keLtk8t`*E7&9>ah~_Od_0&%_o_jUV-zhH<yD_kY&rDhe6rvp?Kuz%#p~SB9
z%-cCl!)^tKj%)wv10PS<N*kJLn<)pn;F@+ce|yG?MZ|(9sZ5aLaz5jkngQphFDA8Z
z-QziRneScp3%l(uwS^j>w~!=Z(v(`P;kOlueRGyW7aVo^Rsxf`%X9!~wwRV;eS8L&
z$YoK;9?EzurqH!xPsDm^>bTKvviXM5y4AAZ=M9A~%+=Gay^o}&9}Zr3AvaIsa~Pzr
znjrABX0oxZ*wdq&`ltjsKNpH{-t_RI?%vaEi}agzKpYE(<Dtf1tcfYnAnlClf}!oS
zcC^@0QND?AW-s+xOtmhR*e6H2)DiU7vfRuQz3;$kns;InSjv^lsHJ43Qz<o;U^TW!
zRdJ?~uZ21_On@Is=gx;Eg9%IOZo&^{zDd}<PE1Ipsd{P4=*>=LbKeh5L6GtVR_!Qo
z_ljdcx_#nvO`h{uw@t;iGYZdD<`h1jyo>cAD_tU!xATLZZ#UmtAltfpDLK)VQyyy|
z#<acM-^Meiv$vccjQRXLmPQ39nq01nhc2DNxl?$2vesVg>r!KpEn@Lkq1IJa(4|4Y
zinl(s;;9)VOwafwQm~&P{aoj>b4Zas=3*f{)O@WA6>}e%KFuIBHL&>F<kT<mlC>Hp
z;3_|0R7*W~x7BZu3pBL;F>hiCS+b>h4bLnW$uZ+~iOmqrRm;Wy-B)nPfA``=u*f*E
z(FhP+qoN4!j^92W+jge%b7Ft;z;}Vi*XT)^%Hg5<10Fuirqyb!WgwPYv+W`iyA)|p
zjhxpLXpN0Hqx95Ub!cQ5p^|u)gJK}O(4((b&Vak8l#ltXvFi{5YfsYUiiutT)l@?-
zoBC>#N|UUf@tu)a)`H>zg4&WNBCfGmPQ!xs)d{@+Nup$YQ73fIjirTZmGCuhz!C;l
z$&%TsfXd`nc(dg!#Xrmkekh-aCoV~@mnTW1UPovof?s+SmSIwiFDJCQ(u4iKr)V{H
zQWJ}Gr_zy`32)Q}P7SvSZ7QH(Z1w~vpstchA`?hUpG{7|G#*xbMd0)I;0S)_RhvF5
zkyw)9+IA{dvx0Nmv5rQ{y3VK(ShB|Vyq%}s*}G~Nw^4ubhdiQpp7?}e0I`+98A4Z}
z(M913T`9wJ7z)|6s7pTEapR-oeOf2$eZ==))uWg<Xxo}#gDq6({ZSc>;y*~n5!2%p
zjapZeNCgFAcrdAV>`9PLY+iFd$hLi4h!<2}^?Mu2U1qyt9<#>uG^_Hp<wBc2db*Ad
zLQ)_wTZ1D;H0j>me}vh3P$`2Uou`kIL67&sXkqbfGKmYLWpWx8E0)!CPxmZFN-VpJ
zHDl=Z)C^z+MCz3g>k*3%ss`Lz^tm11;Yh#acruj1Y3TIg0#ih`OEQ6FCL#*4FzKs#
zQ6M+s{an5*bd1Xx&fA%W&@(>&NKrv<^V8ZE*VFAcH+p4+S~n<LB&_$mW&3m&7iV&n
zKRRw5-Oy<tWM50(i^(c~eu1;!bL+OV-4+n_O4#|{S<$r}!{AIROJa}tV8hW0RB<Vr
zw$k6_HOy(>#LmlMy!U}u)<-9bDGF6iCTMcO|A~K&eFBTX{!e4E78@+zrmkVDC#PvT
z=jJ)t+)f@Lq>_5-EL60OXYsjAg^ksTsNWetay?(B=h;WXWxQ>73>CX&5eY{nc)1}5
zX>aQ)7)pgE%&Oi0eAQit*pe;%*vCMOpzYLg7PWR8vjiCd!garoOSxNP>{*lbP=tR~
z5zB_($1ob_82%AyIHx6LLQh0&!lsGowy=2ew?f|_`<@7m=f^Ob4fpFstW3ao9=Sh4
z56vT_LYs!6%1xUp6r_^4@#|;~w`Ij8>8cuji>~A5rYv5Q&fyHxSjm^DA8L<4-oD8_
zDVL|OS9E1+hw$>w$`vHTB59BN!HvK;+hWH*SA@3uvAPck&p7d6H9KOkef(S#-W2HN
z(oOd8DxF)`i@8*<PYCIy0Fz|c=(RA$HG0GkE;o`dG8qzmVhRZG`sJlZr6f)6r|`3H
z3UkK&Gc6SObLC#JmP-xP_g5*T0OO;JPeDO^wh{QV11JklN2wp>4|^gGOa1(tyUbuQ
zs)vnViN@oDKKedd%je1X()8PFhWmS)&144lc}<*Lv*=vk;YeDz5EDGq_RKht*l)i{
z4E!_^=z8wH+3{?kp2|lAQDM$^!S`l;+x{vNj#T07<Bu1(pE_L8-`)~Dm2O<r@emv)
zqxh^bs6r`LEHvXbzTa-|3iZJS_hLHA+4JKCd%N0nWL4+w+HAI6B)tlV7eU#|aW4`?
z)afMJZjrijW7O2&f3H;JK>ASk`QpG2va^pAhQ^>2nYa_<Tu1d>VlU|<Tt@DTMH~!x
zjV^v}<ZAkv+Kge|o?%KR+8SD1;rk}V<)%KA@%xIcQ^83)>3DptgsYsQ`)KzJ&Ko?I
zofsbH%yW(sBX33lTFh^4Kw);o(g2=BHHc3&VegPHypk}&KKB-3E(;5&z^>3dbw|3~
z^&b#j(oQ?B^R<6V@*82*`i%t!b49~1D2hmLQ8)6H^QXw&`+_a&AH5En0(%9cy*?Ye
zLeDpe<uXb`FPqFzNgdoUqVVIJoG(z{U#Us=jj~v|a6E1LaV&j-0_{!psl$)hMq%7A
zHrzsOkizh$V(GoYCu>ZL&L?z?S=vj}>mzR)lq*~yyN$D)gtyxHtFBOY1xvK3CQomV
zklBb$D--2Ex$!g~^n1DxgT%2`h}qNx8`+OnVSe<v&cyo$tSNcWCHIQ6h6i9o(vzod
z`#`>SjZv328VcZoJ;wT$UKrYtY(^<tpV9Ui^l5u=(JzKr3~8?zr+~=_p@+2r`9<b&
z=T^8Ncj)FT`!m!K_x4MoE8b2jj+mw<LGBO2-&^dYT5V9IBzWR;7%q3R89x{+zIC?x
zw3rJ@AnuH@Va)n!FJDvLe~Vy``>iMjbr=t)A4L|DtP?@@<{cXvAQxKQ;UZCo-G{@Z
zGz=q989|lejbVo^ZoXC6=^eopyvsd)RwS7<Tvb=dr)%YU$t+QzxIH*xML+A$Uk$0>
z22mnLOglYg&6o(@M@FWDAc%S@>}4kB+*V7^CSpSsM^7ADjD2*1!6LWl44sChEq}4r
zpOHPrKcHw5%e_Y%uYj<#DjI>vb^BbYKT)G@^Bg&Om^W*$S}Z7#uRFnfKKHoW|JkwF
z2%*7=-JC#EugIa%i~M(fP<!)RRzcm3u3;~~hY?0BehdgrG1(^nh;6;f=L#ayv-7iV
z1@UhC!x{POw0onRIptub9pUd04$baNFueaXs!U8^+l7-jiTL%CQC!{Io+DFV&W!E&
z7LDC!jda24%H~{j$pZ;H*s}<e2h51tA<zo1?ao>Wwx^9?-)}#2k2Vmqno8dnsi0^}
z&OW`$?8W5a`h4r2<+n)2R;W4X_(q4of9DOtSrD6vuxD2aS+JkASBK_kU{1>8q3l7L
zyw>8#uDpfR{!0J6xw^fx-L8vwBK=gRIqwbYvjkMR&3p2jbyy>v4jd`OnB$ub1gFc3
zH=a3N;TR~Epe88adYE|__ki%g)fN*YN;yKd=harK-%|8`TxWTJ^mG8j`uSXD0+n>a
za7MtQ=bN?N>;V;j0$<T%`zn=QLyHFfG>RhU<~q-vn=n5{(Vjk+@V;`raZ!z1@>|}x
zYk*rbs+@IJI3nnLG=jE55BVn3_3Sq0e>}9ae(q_l-#|Fs+~K>u+@FTR2snRRKkB*u
ze6wnq%|N4&ea%j6I)@xgRX;-$%Px>R^5s<RLWg$S8!{P<2O$3j?1<w%z|7zuF{M8f
zk*-#V-MT!+ce~$%K}&Mvd7gXivf#^w4GATaSFsTon*>Q|3;)!##3jjt8ZMohB}l9P
zgbQOC-$0OC+6IH%7f*zi=GIz7xurO5`YB^0q4nJKA>_sm&Pf|2qdP(S#9D*1n!C7G
z`VSvZfa1LhGX`nCud$nayZNU2F5am$Lgu})>yhd738V3Jc@tGWosA;hY=@s-T+;(V
zPt&5Fu}12LV1jlL=42wO3+SrOV~gi&I{nEkD3v?Y7^6mm{XMW5W#0=`)XoxM2Nj-#
z^K8eccLwTJxkNa<kPyZf5ccG@)H_Rx3xVW$SW!Jb6WM*O*N;7v>gAE9P7~<3%>gS}
zCXN?1bMGD(#u8!J&Vh#i$v$^cJ}W(sUzuaN9o|LNOnr^bppmf7@dsO~UE4$Ei=8F%
z(^!cXWB576GEuEA8rea&&Hb*9tsSAUV8Iv3tQZI_W-{oA87_R2emVG@I@JuXE%=QU
zEAuXca*JUob+;HbQ)S}opQb!&6<c>O?_Q=c!PV`W1J(x$bT7}`8|B8^75llm!&l-%
z#c7x3?f2-c&Pt(uE6y5a=bp*CaJTiQBY3QN9yG-#mx$XuD8mw!+f2(7Qrf%+fjSAe
zmBu{-L7r5jB1TVmW?9kIG+TqB?1Uww>HH~}qeETQ@avxL3Q#_AR`nxpjJMQkK-^WP
z8y6mLWhUzsf{&dKdjfYnzaJ{^3PgB_AP)q*00+#5z^4f_9QIgvO(CfIc2i2#x*gZ;
z!{U}=X=zmv0=aKA-FyMBc@aB^PK&s+Ad;2|F)vQ(9UPncqEJi{#LCSp7PE5I($am#
zevh-SY!*}a23#*sS8EF7n1b*WXpidp8+WS`F{r-UWuu~WAciO6E!Rn#Y!73ufad3=
z`Rtv~+9wO#-){8OO$YKl1jyX<eCBdgn8cCNfQJ2yB*^}rkq~h$h!37AuL<e|aiPU~
zFpFqtyHX@5P%}_2*^HU!6HAeKe$&{yya_M=xWVkbv64HOM;nz363^>+p=83rD?NvY
zvtwO06vs#srI!?&p<NvZ-Flz7p7(x{O=(*XY_dhwh%ykf7+XAl&{C%*#>$~rNBF^P
z$Ych;u%!p9@%$0-#hW-3{*Uc1Op$pO-mBMNdu2XRi0#@a{74!*)4I)6E`Q9tvk*))
zz6eO2K^#GDjS{etaNlvhjK12}*dm-U4t&OefLk6<Wjxp5PHL`RLDxHzvki^jky;RQ
z)41kEIOM~Y@NjURfbKA-PMkjLiwoa2pj6cLEz5DJU&QXj9+5bVfR3Krm6uT;9GYR;
z$tb#4%wTkM4aYejo^32WN)^Luqwloqz9cjoE~~RW_~7}G^>gl1M3{uvA~aFZE@+F(
zWh|fGk3{!-oCmY;I*wnMq=Dm`Kcjut^bl3w2dUl_8Y2bogj<3-*+%BH7Mb64F?>UB
zn$a<yWursf_k4tw^-zZQN9bt@S$3!vG$8hfZapOXJeb{~aeZ8S4}>oR+S#hM>Fp=A
zi3~QmSFM|4M;H+YLfo<LTjd*HL{Di79y)^@OQ7})@997t?CpVdYX<AP{!Yd$WUgH?
zD`;}o^urz{HHS>7B+PB0;zBN!DxFR*s-Q*qcl<!j$?q78^l{+!$3gwCXkg&&%w=|#
z6rBpQ57$JiebHBO@Uw<o@0JNZm?+8NXo!tGcc~Ow`7F*pG*YHU-)e&@Eh@<M{1j<#
zGT>0`c>XhztIX%5qcnlL4!8w&2*8Tm$cWRB{!I1>)_iDPL9>&hpI);DSGOy?BLd@b
zJf@jR?odr8w!$F~<+Q<JSOTz~EqcU*0`GA+?3+cOIK{x#)-ykld{Zrl82vI##o89P
zXYpg{_;KG?$DQ-oVf8wFnBtqOld=E&i+j-^ekMuDjpSJ>j-5U;s%R02e0qsSp>{p_
z=OzrDl>i&_;9&2jusizqxgs|*I9jOn2<_|QNCPr<ng4Mi1kA*{Zt`Zom{<_Z#I_VZ
zb@<GFPCE>RypM=E_YqBrx+d>7&gAK|G|w$Vc8gJ0kqXj~`Zp1eT7AQgolkM{<zN#(
z2G1o$cl(j=LpJuVT$G+q>FhcaYHm=g^iLnj?Y80wkUXAF9m?x&6PLjiKVMa|omr{}
zksrC7Jt;(6)mdXgG;9!^i1S#EXsIixNpYHc3t#)bOBuq)I2v_zW&p-0ITM>oT9gk~
zgr`>Xl^$fFR&y%_F=#iu>67SvjwuV))I>Xc2sDzz4h+HfQ{o|1Oul6#<P|mcuL@NT
zLaZ_8jNhK5P%#dKmu~f*L@dEmJ=ID<(OTA_x2W2B^yfj5gq~lTcDx@{A$4V^dIgj?
zHA@k0VzJ;iAy3$I3I!Pr*l#29?mVoxSi>FbFKU05GbK)^PwhG`j~~u(Ikle9Wwn=g
zI2UXz859z%LWf|~lm8TwzDGxHulm8&&&ju2+9*RUJC=q9Yp8oFjl47F952Q|>_@F>
zSNyPm(R?m*hF-qqOyf(e^ix=o`;*>i7)djTS=;+hGDdEXWz|KS{dEKP2F31)CD<!!
zF3#Q?U}M{X`ZrNfq2;51YfWP;CPjU$#fdxB;fTYf<=!0s#wdv~1K+bc_>|YG^d2lT
zCXot$6WHDp1#%?obOE09>P2-PY)j1@ji=5mjP8jiv4zi=)=aX9d$$v25r|5913b5t
zP(}QTWx?*SkT~XAANp!0YzamRcdp#dQ8rG6eqi6}Q|_G*Thpktx{vuUk}G8H`&UsL
z{6GLp8TT5e%I3Ac??NM9oMS7gZI#7WA2;S!qc88EFz2?$A`$zTZ-R7@r4xr9>{yeB
z@aTV*1c{Ge44*P1FZQC9WRn|nwONJHJyRhry0#x9xK@5JTlRpWGo{Im<%@KT?1C^u
zB}NQ~P2dAtQo*#|LNzQfW0DIoH$=z&++=FA>XpIS`*e%5bTRsXE?4vE&KXo*H>f6@
zin&SnWBvJo_Dl%YXIYh@$<?jq4G*S@LTE+NsKay=vuL4E;z8J<M|q}Tq2`5)K}4L6
zn}MgoDpQSmc+|x9-EqKT(Lb!nR>)^Ns&HpW?D6o`^)l(S%{??@%O?TW-b8t>(;gb3
zdcm9Tm20@0e!58*RN3iG_lQb8DcGwrOYYe51Rh^w<*=rnPCC+lF%OB`8pL=XX9Gb@
z{EG1l{4o$9e)crch{?YFd+LkNEVa=^jFBQ-_?XCevkmy&i13L#0XohI&#8%}Q|SCv
zFf_PVXJ`i7lCpGP!F0VsQ~Mh8NpYP@fd~lxevkM@G7)If1(AfG@?gM1kU;J5ZAJ*i
zZNL7UZJvH0Jky4j#U@@en`9<#R3k#O+@w?h?<?|FD9Jl_acu?Jrui1T3UtX#g#u&>
zhKHa009}JRjPp;O)Z9|actF%CbQnQ(!7so{kqQS?J&^WB-C`36K0Cx;GLl>AT)8ie
z^{;RJg1wptqwnj|y>h%`9YQP+6lf6-W(1hIFS6Bc$ee3noA&MHK>T^>NvasdPJ&n)
z@lQ3RF;rDoeqimHWR`MMfiQq*l%9WDo<JBM4JaSF39;Ls((9)oyM=bOdWj}`pxQ<o
zgt>%aoA3(BncCFT_7;7<0S}dRtT$#ME{khrqM`?)D~YW((FUEr@aiM6Y&)4IS>WO-
zh|d+$kr98(fJ8L7-Op3T&)FaknImLz>m(LF^+UmPUD~aSqCgZYZOGF4U?r<Qtd-b>
z@|)}fjDTb$?03D-7k#X`g>?eByNCov$0buVt8`_90?z}5nbHx734+t*Q3F=qo=ec9
z3%0$8e@j^<4of-n#&`tOlv1+xg*nxYd^8_lOs28?qkDXO)9f2>TDryp@fSYT&bP$^
zqK&O57x2g5^>71{o4VT<gU5}wov0o(pv&^;08a+dE;npr?gfv|U}#rA@44h~br?jK
zRpJ>2*2KnO(eC;Sa=icP1u%Tg%{l_w|EA$N|9uhvdKz^zp-3~vmGEtX4J9#XxJ~cV
zyE^`nocgpKI5!vKbbzm13o%#oJRjF=t~AiQOm04`oY{0qk%aHBd~vl`FME$gm%^si
zCn!J{fFqm1@!qzeykju9N{}1pvit_mexDD|qvTzObiotxAR{cKeQONBr?rd05cu}f
z`KZMKhq`9q;EFe)YEV(2od$-lT2CtEAcW?11tACkJ|z?Lcj98;^(QtfF-i6zIR4I(
z&PmUC_QY_%DOcZLm^j^~6hdp$^Wyf)V58YmS{?VJ(C&%mkHQ!gb2Or_DXU+t`SEE+
zjGqXO`!fb;OcnL2L6a-m2q$JCU$Pr@VTng^78(0|8?ahxZnGm~G<foi=Ub!4Ir?IY
zE5i2u&O*u*UFA9iLoj+b+a8}8dX92DzCs|W)H%O~ysuRJ4%!q_yjsOBduI^NfTE4+
zD?5@xE!K<#rkDB{K-d1kuf=X-$=P(8oyO^Jj5d@h%B8awEzavnr!u!ulqq~8nnz5T
zIv}xv1@N1Nv?oWaiyXk}MJwDIixp2RKSPh5)Zr-6go350EIjb?kiQ{d!pR;$3g}7I
z#u0fCYTI4mtOV%|?QnP`(J!sivz<D3!$Eb+i+Q2X-4l9aWC2oj8X`qF=XbLPq~kCW
z5PdG>=>as#*nPHD*3Id&%dqrjRNGA?H}9aOqF3hFF0)FMMs5dR_s2N@<sWiF5-v6S
zRNPJ;!_zxw2%#<XrO`rkjOmWLmfr%2veX$2qW8hA6xyGi7}TXLoW!|@4%fKYn`m3t
zR8##Vh>gl56N@BvA}jhvjRHS#$WUSy2z85wVLgS9oeID0+nGvgGFusIm}+#NK}dLt
zD6@Oe7mbQCM=;vy<f0JIYa38^TITj3t;*~9Y{`OJb1&TjnDi6`(U=N^Pw#SGt3)U?
zS6Pe`x}L9cY|j*z@#4xys?<oBg{<Z6l-Zb(8Z0OF`DME6JQmYSrpY|)!Ja2qDOFF<
zzHo<bikyqy!$|;w{@9@}zsuxx_nxMg#}s|-m^K`W4-pGgICP{WUL4HEC9<y%-Pxqx
zjfXNQ){O`&Qw|D@(My@6%BoyS#>_H11>(VjLsme#Oo!67*iAm-qqc7{mEp&fQhzD2
zLj!Z8G+XZsu@@lrOU9P`g71YfsB*r(tn-mz3+(8Ne9TW7X2}m&V3yYC^O<myu*a4>
zk5Kf=&-|#j-*J=QMbV-OzhZG6QIBvEh2&mGV^b$f1ktj52`;ejvt*<Nm;}X*PhcUB
z^7RB|FebF<!~n$1+fE<Cy`GDUQ#qaKfZb$fVj!)x(T=k{(M)~#6kfY~SnXK`pSur%
z1unI2<7AqPP?$?jh4~wN$M%3CNT?C0<Bsp3l_x`nh1z9_Cr_&{zuU;K)&#e6YwIQf
zVaN8ig}JM07JnzH$E0Vp*xxqKD~*?sOy8L1nS{{e>II&yS{w|vOT_BwkcW;&5H4l9
zuf06le$Z;3qeAqd;}SieOU@;DMWeETvOUj6R9MQv<!Gg4q}$;uUo0sTl=147X4N(Z
zfzkSkti>S`24i*MTY);!&~_4b7ySI)x5KXp_*`+82i07oNg<hL+|Kq@5MF9hcg6r=
zR9+4sjB5QM4>``5>^bJe1ZeL}kekjo16tScQk&<QV0Q9(XJ&Ht<yzqPV7M3&csN0B
z8<~dF)9;hR0wa{%C<hmK7*hc}17Kf>;UB(`>rl<j3mX|OmyCRiV0(>2MjJeai43(`
z9*0TvR&0C{XFg}BqUlR0HwB+n`>LQBoD8ndAa(SAxJ5*e#pIum*+SkJ4Qa!pXN#AZ
zK)EC|SX*N(qsJ(~&f(@>cAWM==)FohiF-2qu3IohDzK&<SDVn1QYqdol12*DT>Nl(
zbi?7~#M4TvdNVIVWHMX0v*4!n{}J}qVO8~8yRdY3cb6dD-61VXvyessC8WE%k&p&K
zx|>C}v~+h!cgLB_XS?^lzVp7{@h@2y%r)oyjUM;7hXK9OSxroyk0vU0vEj}YSGoJ=
z<Qb8~U)zj`16-S%`$rFKj8x=xBDA5Wej0$tegp;$%+7!J+J2SI=qTa%vNua5K58I~
z)Q7t8<u{7Dh_I5=0!{aXJGE4Y;k7Rf&obQ<-sSHxRMvE%(h+3)r8n9-4hZF-2Mm@B
zuE1kn>`%X=^_o4PfCgZP_3apCw*#JgfMqErMhoBicPYJzUjH2>u*UlFXotu=lRC#F
zuN`V*U)H!egD|9jX~(wG?0_T4U0BFH99Mvi0%)^@4D+Yg5G`;sF3^Gabl>;%;*#L^
zqEJU~T6iRdFEnPXZ}A%LJEQr8oF+rY^5yLd5_o(=DS^k#po0P}bPi-oPTydH@ZdW@
zD!T^9t2~CuEyv`-Zl?+y8k|;=mipXy1mhyETL>hhE>@DGvf<cJf=Qz<%p6>x%S?U+
z|G?{2v%bE|ZJV8B8Adu~6>&q^p#b};4&hMdTYMIUaa+PclJUYjr^QOuPuAv8H4fP_
zA`W_+*uDdl|HfLBr9ccp8)@91@m%N?dh0#G<Wk3N-(F@brgA}P+aSQcf8A%TU3m>x
z2;>td*0ZL#>yNr%-0n~k3UKnOX;)FtH;VcZ-1VhKJ3PVKg4~!?VQ-$SRM*@9&>i~0
zJo3HsC*NHT<M#LXx&$qiA(Mr!HtiDpq#;D2zbX3TXzFM4bc$MP2}5&C=f>ZD-0AId
zug^BfZC7Jv?C$E|@$5`-=C7!6IM;1e6idz{|I!6blRxAyd<$c-hvc3q>g7}E?+%52
zWb`wIPi&Q?^<)hugCr*{Vqb0c&8RsK_RK2FB8e6&bYj<4?a^d-`g8KSt=aDoaV1`g
zJasXx$sG7xD;2}##ecam<$v55xlj#3(DmWa@MOUXE<0_VVD_q0U$3`O?~T#xx>(H5
zgY$Uo02m~1s3O#Xa;046tBt<v-XpB+)$z~FSH^PknCpKEpER?DNp)W6KU-DJMEfQm
zs~kmGgm+>UY*9`t(5l*=vy|oHgq93*D0WYc9{^k<y;5@Z;^uwA-ExoZ^^J%gE#T7-
z7iwt#-JsA{UBx~Ba(z32khcyy@JoDAdf<ikk2cRWm{!pB96^hZJf$|G)bKV-K3ZwP
z6{!Vn#{I)@5q*JPujA(n)?g?5q!Rebb-K=X%1uDWLfG9Ud?z~#BhYg%;JzY4p6CoW
zkoH4Wh_V?|t|8wDsn1UIk!>pB>+6{?v=<@>#Cd$J%O^M6a4y$-0$Kd*Cd=!xJ!u&h
zk(d}HSZ}&rI+y?*oMQu;^rnMk{H{HV08Tz1%qeP97LoVh{CNd{Zn559Ti~KN>YyG9
z7>yv~aAe%o*YK>@`n%UvS9WBCeZUo3o6S<c0jVSQS=yGs<3!Qq5}ajWM=caFJixvq
zzb<CbU%$FCfl|S@U1BUXj&Dn<P*_bqaYlLaQvdOfCU2Spn#>U9Y>m&a(5l&mkI7Y6
z$nf^EvHkMfW$Fidx6sFxR<FRNAt}0yQG(ITQ0vxiD>rC|*7uvrW5iS$5$?CY8a2j#
zNIB#g$i~lqO}7pVaQR4Fa}))nS36M_f%DQ3fEc0|q|5Q-u!{exLN+8A&9hzF%KOnB
zX4&g0zlH?P)tmEFf6Lm}PuM|HSPSVydP8N&6ON3)05g?-u*+XjGSziw_1lb4yl3)w
ztt5Pb7C+p|_3gg1CEqi6u1Xd@BEW@h`CcloQZ6D)Z^%mLCEA0IAUo{V`HyAW{X4v)
zGYYA&^;HRfd~b=XMOP}PG#>(w)=`hu`K@zEBj>0TfZ2Q*%W@U!&)6XdArPY~$FQJW
z0=psQM-t^su9O&P73dacb7K1Xl^v4Iv`gZ9Y0%<2ye-qAh@(YWr8zTWp%826yK^G)
zdO+2P;61K(`lR0ykSZ7LQ8;1t>+M%+M`H1$Tk3&znuEeFmM~!lMN;t;01#!)*Oc7m
zvBr%eaz^&h=AjA87O40D4;P;JD<KkJ1b&n4?IimbTKw*m2>x94?|Y7^;%nGul<Mo>
zeaNjdggsu!B_k@5p+gO_E_u9IXFw!P#$&4qB*WFhH+FiHuhM63CbvE_1L!;6kt__m
zO9_im4p|iIrN2@e?#tfpcs$AvXK#IAY-i>~D$RcjEAz;*jqE6sAna?gzWMpCM4cck
zsj$8LR+VA}20f1Dn}`n4Si5h;+#sKX<fu4S>A^lGiT^cE5D_L)%iA1691CHP(ah{`
zlV=TKZR3<|9CH}XcG`2ngbsv-0IHbLOo5T3aB&GPbho3GMj~ga3Ep(7jJ+nbQQ=B+
zlZ>E?wU1_Vv3A}An?qFmHyAy3j5*j$h8@%gpyx<$bYWMQXt9;b2thm(|0Vv_bSekl
zC+iN+l{W9-veLZ|(oQ$1gCp>xBEmTx{>}A90H9;i{KhR_OvsMP%FP@_q&!FbP1*{+
zw_`AAqqncpoPE{K!z<B-AcS{?Q!l*AwaHEhmGDpySSk-|N$UMbUC+)_wm3!E##&2u
zl39eR?&vl|9RXllicp;7z5{ut$&ct~47K)f{{>0XaHI5}`@%Coq#Nm}#fZ*f(!(pk
zw0|ej73KBJ@gWU{=*Y?Yx1s6!AlHM(uOC8u<<Q6}9KQoyk{LD}5DwM;tDBnn0=b`+
zY_1GzLFePwScYaRhU-og+yh_(rM?U6W_S`U-3=F;8(XF*G%8-PDiha^?{4LWM5pNo
zo@Ve-1=3Vf6tionhDFdU61M;Ij_S$5xJ_g-28wI`P<x<D<vM~aYP$!~<K4*>UD`rD
z`S57~HF$C;o?<#M1B!$8808qjXYGs3EQp1WIfDU*SQCxEzvsCWZ{4U`(vMK}`EhE#
zqP$9S!pUmsg<5}LAvy}iLWvDQ>rt3Dzf-Hjgf0XOl`oi!R0b*0;4F-@N4--vk6$q9
z2`w&^YpeXi8tziXPPvX0^?Oa)%Hq3*T#8nEhA#+e=12gE|HzuPu&ZvHNsUleDWjN)
zm^i=%2*Fo@tkm=B-2a=Im%28Ivd258`3k=c7lvq3pSgJ1mm4!K{K$gi@y((-G~Hb$
zq%BDlVqgrLJ%q5az9H@IzT1mKtOeR`99qlYWe{^zW)U<m^T!;4Am#}4^hu)`NMfzo
z-BK2u4&jCb?z*L8W}0j{3*uf;k-DGY-+gKvzOS!*_vs`Ampn1^)OX7w^K3(=PrZAl
z%+kJ~AG|kk;=^zdwl#e&%5L4lt6wr3Jori^Ts%JI$FN&X@wt`#E{KU87WT?>tFn*X
zMynlFrS_FRTMR3C){QDH4b`&Lc1rmOu1&I@`tq-{`h(E-(n|-gu^dCh>EcVX_{%(_
zp@fS+_u>2aBisdahC=1$CnLH|ZrRGdD~^JyzMT~7oHC1mwb*;SDl7KBm@_tcY~>1b
zQG=)OTzXz;hRKg0FA1Q;16D3gJM?SQv(B|kwGi9=UdiK06LVA|#onyyTOC(x(#Pwv
zXRJ$QuVK4(G1qRV#3@Gt^G+%}=IW$>{^WTu)T3mJ!_P?hbD)amK%hzb7=&W3G#Rox
zG$(zkUk^o-Ek7V`l*$;MW)VU1Q$~t<bP>DU7vvr7zu5Lr#Iz28Q<=qmDUq%HUNh<v
zvwwUk9ZHP3t#{?P%Sd6}*0>X%*Ghy2|Feo_<0)=n4jV!5Dm!N0624)+_xNj3s{S$K
zi_Vxy>g;v|DgE6*cVjWuQ?GUj3#?zd2m1o1s1YQ;^sGN7GOD;fAC;O@qN9ZDG-0lX
z`j1&z<(CME_wK;WC;TbJYPK!j3eb<_i42b2r9E5xB$RphghoJvk>rwAvM*QD5qm7w
z85EHRAh!4=U`JD4eVDqUp=aAN^*EaS1^-eJA~t`j8T?7@_cN`wzfX80lYzIeyfj9V
zHu~sO`E!x3$e!xkZ1kWrTV_X~6co<H<n7+2yn0Tj7O#2sRax-8_iYQWbU4wj3=*6(
zLmitI1@WdE0G-GJU{~~8q=y8=((069Fr~^I>$E=Bfj=d2qj#stscX|-NeY+DF7>zo
zX-b#Est_++1lw*O@%IdVlwR8$qNph(HY5H*_w_{|1+H~=t3Ve*iF~OEu>?C~Qj@f*
z_dK+!MEtR!*-5rb(1qr)usQ$0Ywxtu1^%Fke2LYYvjjM+n*c=zr^&WPTR+q0Pmeq@
z>94x)ov)F)3dm;>AC}&>n1b>|5<63hym5*d7&kfq&2$7TSmNExcef8)P2B@$gt79P
zlG!V>R4uDODKJcdV>#cn0*|MjYQqBBt&ID1)bgO)no-}fRF-7zyzIMEa2;ClOOptL
zJGAPb{@-;>YWxxTeSthV?ZsE6Klzj-6i_n?^owWAMFGr-wC6UgD~C4Y%uvSo+EA`D
z*z%SI>HX+%5<N7yj&M5Bb=)E7g=)>|WncN2(YR~F`GtS~x*{r{9+NZnuDSrtgZmj$
z#EP3@H3c6hT_n<Dky+4?b)l*k%l8AA71e`d8jpuFG+`6DK<>~SsWTUHwU0McHy2w%
zV%<Q~M(D1z75ctRcqWynIbGBal@)O)RnV5*1`6k0$yDQ1AH~C~6lbc7#lQi17hf~t
z`lA=SGQ*?CIM>jdm%C7GY)?ih=pqObh4xTf@nh~-BWay;{?tY(D=#&<ZY5Z+gsMn+
zDuhUv>nG@O_}y)PEq=vh^>Fb@Llu=pYge;V^#tEUi(P2O3mU+aQ&W+m<gs+~0hRj8
z19h6_Jz-NTrne=G?%Ov;$y{bN^eknw!HT%dUklanknxy@yGDzy*X~^Cx24M8Y8zJJ
z7IK5iCe6lEb-VBn8~a{5wrVGt$<4;sf?W?ehrY3=xnE5zNN1}7q`_I%U%!Pp%X<=4
zdTy=j+*q7hN{RND*$=y^mFtj5^^P>5SK2T>=+_$qQ4!UADrGD~!b1x-uKBuTZIb-r
zam4-@mgsE$lHN?$W-N@|)Sf9fCEZ|@WdO}}5*L5C(_C|R1@68MAq2INlH9(-fLyL_
zDFifSW^2vT-{ccFtImHpEVkZ2_QKD?e2bb@?2ON%iw&$H1L_g)fd=hQRu9%IazS)>
zN1NQ!*$_C}l?b~1#^7e&%VI`qG1BDBPV>MG2Qm?V8@;x$1)y#-pHqt|md((A0~XJ%
z$}p)q=-(qi=zS8f&lCivLgp=wIcr3AIMN;(+9G?3WFy?r$#XrlG>(%zAG2)S+nx&+
zwsxBU(;%DO@anSi%Wct^$rxj`4C(D6hgE{p-^M5aRhNAs0&ejfpr`e|+yN~a_bT^$
zFQm=aB8zgd-5(%e;ubIaxwlO4ogL-jC{;M=WDbk;<qf3~#98!1&8Qr#k#9;<;jU(5
zs%C<Z4FK%LT({agd3_dtBRj6`R~<6mjI%gQI(G*#tQJ(2AF955H?%|*SzhAzY*#A?
zxd({V;DH$rf7%b#esUMu$#~WS0JMg8GW{RRfh3xXaH%%J5QUX+Q<_tCSoF1)<?W##
z5sr%^e^8yNNftj67XZ%lba_T^sw*oeiYF8Cq}m+PYcKjFY+^Dv{LEOK&{OF_8lIG{
z2G(pd<}g#D5Gi%uJFhq5x!cdRddBj>;hj>b!^FsSuPM@yDD1?R(gDKx%0893Ut*UH
z1mr@`E9q}&uzrs&bviaHcZwDVy2vh5R~jS(jheltA=kieh2(Gx)o~>jpz+r(ko9~d
z18G+}iWczvDg8TBiAxGQ3*dAtq600roB_Zn7`M5FlAq{PwQJ1${&~4`+$#RnPVVc=
z_?}Cj%cUU<5EI-7y0@6^W6?Kn@Vj75ToAPAaC=rU+)3rzF&&Yx>CC+|Fhc{cDiYK}
zTsMBo9KA#C!d~?W!l*t^4D7vsn2Qds>|rmiG)6!ck30a7Ii`BD<Uu#*ZfBSoRVhWY
z1e^YkVVG2Y%G(^@*+-l%Pu-w7jC%vVD}fm$g%?ca?TrprOz=V6&?x(UJ4=j8*_$uX
zh8vkFx_akhJ{&)qN#U`+3VW0|tvx>f@gUkBvlUAtS6Pe(Fh-eVR~(<-Qv>TGed?@R
z$`6WWkr4jm$QuEy_VL-5qG*Sst`-IuRR>Lb_tDKOhE*;>b)#fD`u*ttD(U);iLdSx
zi1D}D5FLlfMQF#gS+`5;=C*p8nP46piXpUN95*Bhp{|83?;R*SKVHL#wz>~Xjk|S+
zpmD5s^WnajHzA3x%rnf1@_D+gdTKFRZ{GDe48!N*ec!L^tZ;>RT5)*vvUdWdRG;h{
zJ_9!ZLLvo9NW-ceDxb(W%*qC6-`G8!I)i{N)y;R2SPK9gU_&<FoG#OLlODN}5+?AY
z%8~(yhqv;*%;J*(czQkuNdhKDpCtPmAHlOwk@YM*6!VTM*NLx9<3K3zk?@K@D#Gje
zX}Ii^BuzS$d`OyD#1jh#b(<j7Beb(KyG8Is!6Vrhhu-4V0xTBI$78vcWUKqiVq&4X
zPpgD7mv3$px+3V8fsy3^7t7IikdC_$FZoJZi(dPRf3mH;V;ffdjW*lp*kjj9A36Cr
zcO(CrsMQEqSh~s_VPQ=5VZm(^I{>4cjO2K#EYu!N`%IT<12moK51DO9?=4L*r-?2+
zXcBR<ERPFjzFM>*hN+Q&O@q{XReWC4heG0qY#+eMNp>hCjKj$R66~euCycvVYeatX
zQfLk)!&1?f#nAI4I5zcD`x*&b!rtK4ML>3KHPb>3wi{9bLiLzGX;aIOKN<C(SOn8|
zOv$J9Ibge5(Ua!iRS#2~hMTt1ldC`szEo<BPxA4~%t5gRnZ*Zz(_VAT-BL$KjJ+D(
z&V9U1x*@@ikh!|~NsN$ozlG#6MZGBDTPlS!+>_rlD!g8Z7ExqD8hz*;lY!6B$bQxe
zY@V4C8z1v-smz#XOzXUTzYl11oLeljKo7D;R`khF;v@i+^Eq=Bn-rxk<pY`Ne%8hV
zRbRQGnQ#+pZPea{BKyFzHz}O{+G@Z=?@<9tB|!1OcC($_^2|c6K=X%P%;hdhR>*NV
zJr6e)&mQk1P8COoX19E7J1{6D4vZ@_>VL=5*p|q6$RB|-1*$@#j<f2Ey_k7)UgiC1
zE>Aydu+GhpPxX7q7i?^vD_CUdzHv*Epf?x|URnS0rWZAOx-3pQIa#*he`@m-hK>Ls
zGSLrgF>Avj<FR#>(?rDBt@lIG{e+!18PU53=Cs~-713!2FrX@jkDIRdDz=v|0R*8T
z2Iwn;j87#RD(;cl7GPjjrlUoV??pLJuIZOi;;*^F)T^%{{VzJ3qVPX6f%b?om~5MA
z%s=Yh24Sjlt0A71-N6R<4=2*f7GSM<-rm97l{a?wI1xJWdJXks(!7>-xg4h;Z$U)e
zpwvb!h=nWKRHo+rK=c}ERebs;+cN<Q4fRyJ+N)Y^UT+WoU)l~SLi+?;|2P)=LiZnk
zBu!}vZTKMCS?ciYKQjs)z`E8M94v`PA|Wl*5|3bzYxO!{+6&1I0CbH7HHV%q0u5XJ
zGLSHW3H-GWQ0-aE@7XNC9F4QX?Y$%w?(K##P?Hq)L{wLFEVy3#Zj%NsRRPK<?}1TD
zVbU_e70VXoBvB`%(=q(8gI@F_GtI^CW#wEb26|DUG?8&!0WKC%6hRV83&igb04V1h
zU{O+_i#E{J*IN*?#tFl4{;Y$bkvt=76(>NIk!Lc#u(s)1Oz9SpOy2`)xd@zgWM%^0
zPQtmN68FG)><P;qZvl?IqX24Yl3saw;hOM;5O0|;P(3~Mr0wRCkS6-uYAHba<30Fj
z0q?;l%+xVXn<5EbwQMWi6LuLUa4QE}zjK5jTN+ExBogG;N?)o5E@rmxC$VLH{(-M=
zo5cUYo_x7Ie3%%Qb)yo2kQmqCn&dIr@tOP$${(fvb9L%0I`I|n8ez*nXD<Fvy0DGt
z@w|s&aa|fbnz?*FR*t2uEr-f*yAn;|8ytXwpo5$c6fp1$e!KBj*YZ$HZI%pgJ=@b6
zdm}prP9!&!+v=8H{wsaUEO+x;cOR)!U0~V)ZO~YI=v3<d%#%>lVSN!VXp0@E?+w9l
z2C94g=U)-UVKD36k$o~&$_q|w8ST=oJc_7ujmdMOju$b#gQ@)ZHheY{L_gn_e8P6a
z8`Kx|CU$$CiXiAaY23fcSl?e?0me3r&f5li@}~yZ;&&uL+ovj-C$|-jk1w}Ftt*Y(
zE71sF*Qsnw$I!`rdR)`|oNED|3V-%3-PdeSohes}l8Su~WDryeRk-x`(!HhoT3L#N
z?J@IiRLP7M``BIiDinN^o4RT!r>#{xR<+o!xDyVV*1oufk(s$@FYz?)ETe>o?eW~L
z?tXlUD7|qJ2?9n#?8;;IJSsCdl?D5+t<)`-DwF!x2OXL5Im@Gk8ta9JqcTYxztsfk
zqUjL^S>tb=lB$v}tJ?8Xo<#<@G>neB-;P8UvzyDa0Z=6Iw>?QWM{wz6xU8onZQB(F
z$xRrfNM<kJZtPz~BQ~Hw8r6d-S^q?Ii~qt-!RlE7eQmP4)aB#sfszRceAYB7(TkEe
zthnAw#3~j%L;=`IF6v0#NPl(jOG0^SVH*Afxqs)20rJonj||coydSy$t*V%)umJwn
z7r@`9mI}C)xWv?s9j{`EB+hXjHPF;tF*8mB=q&AEA)ukN=U{u#7b=Evyy83R<%P)r
z5@rP}?lLiS4h<5FuJu&^@G)ZVk_%~XDW-d!hD%-H=&S@O^2=cybt)PfhLAC!Z(wC2
zZM=E?nGN}roMW4DM5-g+BJMi?lR4qM1?C-GDl59nJu;;L<fu0PS_1gFOi*>i{Ilw_
z8sp7mUwEKz3&L7g;EwRgT_m1RlnhYm1n=aifa_11qBGgCXjS4!bEG3bp7K}Xl!sdk
zg|Bnr6BFTNga>4V`h#Uj8<SRAJiEZlO95<#qEemG3Y72Wzer3o%quEVV=h7<IExlO
zdkhfY)xZFG`#Y|7uEoIX7C8%#UhX^!S6v%m7IS(0&3tp~9SqBnD;~$M-ofRB%a}q(
zmBk0Hi0ge`Lby7fr_O73(EJpLTlh=9a*Kr~b(+Pjdi)9DcrLoDUp+^B?+X!?+1{5J
zdQaK@ScbOhBD7kkuK7!xkE*neN-v?B*uJmRnsg}nl<fd*sJNo~%X^G;XNA=P)c>4W
z4q}$&`rhf%$<r{(O^5KBOav~GuyJ<~qzDHz7AQgM2~<U5IhEP9hB@BbiI6BGv)g5x
zQRDA;xNnRy5DQS<KdA5ju^S`QfI+f|MKf|z2qEZHNhaZOW^o|%vc2YIdi4!}KV?}t
zzBUSeVIXF-qpzV_${>Cncv({L{T?T4f9`QKmP=QDXNl<T0R6vj5wJQw%t-yX>qgBA
z5j#Jt<sARQ$86Cc?>2~QO7c(n>jUJ){~Ae-p9k>i48CYE=8q}Ow%*>}Od^rwH1q)|
z1S(;#II%eq$1ZU=M{sI?)xz$!+P?Z+G~5Wg>*mC2=v=F^vt%%eTKnJDPP$zex(cx9
zY@w$md8%7~3nl@mkYXFrPN=Q|<jZY&ppuYITiLTm?xVd<ZmY#S?yu0E92`{(MZ;m2
zy>Gg&<y4ZVjRofa{PsU#4#c_rz1)90H*Or;AWRI`SVA^#L!L>#e|`(m3i5Q*Bm9?1
z5cm6@3@Qon6a@A{k=!*is4hq-MhZEX0`ijhA9w%5HUD7c|9)G0IwC(X(B?_Yks*}+
z;Umi5H+>J8((rQnLJRqT61a;d%;VS@uA8R~1PekT^DiOf!!XoxVe)GXO9w?cV>O?g
zBnt!p5&y4y|G$60WPwd%>h3~ca*^Qh_uJ}zllS*8Xt4osnsl;h*q?AB43Ym`2!rri
zAPPbZtvYlFw!j-kNrI*(NlEaSqi7-D-@p3b9_~E_APaMSkx_q3&zOmj0EH#pW{(;2
zJne4KDmd$&r`HI_7HqDHac*&lqjwtE!gPR?3NIFF{?BLepXae<gG4{&=Mtq<5VZ!L
zdG-Hl1_57y^x1_liWiio-Laza(N_leo9d8Yr~fq5|L4aLCj@dpFuQ$DVd~#sAf*J<
z2w`<R8}fm#no|1*Nic(G>&fK;ALVBks*OD?NwCs~_}~b54d(yy*W&+^MEL+^sP<uZ
z)rP4wonHbSg6)w6&jLNHM0Edp5^-34IY5WYOq6;4sFox))DNUna^Wke2c{H3S7SuT
z9uZ?~`i0lPO}fq(PW-*e|LricXn>n1!<_$5&r%6Ej8Rx5vwz77%_=w5vL}6aR|35Z
zcI$WVBZv(-^7JZj{C{0~l^AjkXck3*|B^d#c}SZ*#^b8s@Xz1wU;$!vJ{!b12<WH!
zk8tAu6gmGFK~;fRECye?>c8JDi3P|~U{1V(!Jo61hlE(6>{3-sz^9wlayEYq`~PyW
zKiAL!bd@2TcJ8mJV7dXS#deXQw?~8pkwq-XGX#Jb1rq~YvUg42X#H<5Qv6@X+5QP4
zNhD-s^8fmPatM=>3Y07`HK`7fTpwlN8!d3k#`KbbD_$?Y8U24=(G7CN47{&@&j?c!
za*rh$u6zH?Y;gkbKxZ4r{7O(S#Q89VLjUAyL)d}g(x)VY+$iXkW5WNx-iyOZqC?(d
znuE-%zjB7D53ynTn}wi1_v{Wqr@CiSB-M@p6&2i7w3Qv0;G>qAi#+N1WcDm2Z0yYs
z1!M4#H})Sr{J(#I<paJ4?wTm;?ynv+hykB8J`3dF|4}?Ye;_^e^KT-VX3`6>Q1SV3
zEQoXl9pZ6+N@3k{0uAzdfLGX%4mz9LkZQ1X(=~FxA6}@pU2UfdAr-(*U{NQ{k&7m;
z^Hn?k=lbn2;+BtK#L`Dj;m`!YocriuW$i@krK5lRk6T@(hMX{#Wl_*yDMf@xDW=C+
z!S6p0!vHaUIBP+)6M#pZ$-M8VXvrr(`M48-(xOP`yK~&uIo7glyFM<5mQlglzhFB;
zFwfFh$UZmqieOU#81>D^^YMa#?+Q{*6$ld*X_lIxk3@tR^6Y^20gWGPi?=BBEumyW
z_>-juDAdv+@2f@`r4q?#77{GTeAAn++8+@x5;_^bebR0#o7zzm81wx)cIS$vd%x9Q
zi0%;F)b+SEG8P(rK7uadoz|Dgg7a@*b)*Q<RQFE>W`7T5F%WpYi(5)+LVslLZ*|MB
zlqU-LRLzIaFEC5QR*S?>6Y(UjJL3EA1({=2+I|hJl!kk(h~+2w0i7{nuD2s!#UT$h
zZS(9$BNuIlTdG&<11#FX#;3+KN4mMcm-;Rro4hj=b1Zm%e|;Pya?NHwx|NZxN99^&
zYJMF~R&{{rUQ?6qlT^?5pjj3-;M-hh6O_QDk-RCyOjF|p0y08@eL+MUr=_hYd#$o=
zId^kYZ&l#n64`A2#uJp#Mi5cy>~+lt{WaOP0l+7u*>ZjV6!6&~GQI3zr7?Pdx4z`^
zL?nA~9rWm2g0uRY#7rTEuSND{$c|Au0d31tOr41Rf>bhir}Edq?J%d**G1ZH4WEjy
z8J>4tzy@en&AzsIiTgV5B4+@vh{y%Ys^5TkNy6u^M8wtE#KWw=_hCpUW_)5KyDNBY
zkiZ+%(--Xv(r`YWg=UIls4x1c<5W@<ft-SQb9G2k^KpXw(@G;uIjBYRs#!OLKv#@S
z(yA>1B~X(E+cxQb(3r;Gj^Pw3;5gzK>EZ!tQ_<@0@r8&3Kq^V$YvCEgw!5yf;r-RC
zNM@j#Ko+vM1~s6O7ic=5Au;}Ii!$57_}ZGk_K&*;w3`m{CVo!5PXFU@`IP{%K&L?^
zgSW;5HY~JHXmDX~zUwC?*`9h`%0~RMekSuWuuc(1YT{`38_HQ85I*e1d!GI>o2@Zp
zmX5|p+nc<DdGozOB{{cFVjqY;Ftw|!;eeF|QO;Za9iEtCUf{8@SIQLZs61hN>~qxJ
z6NE-2RR_C=znsQkc|Xs=x7?$x!Wq2kMk&oC0Af`ML*=)Us+9c4Y@T|Hc0wiRcD>iI
zZchyxUsY`WMhN1tX%M$FLT}yt_+wf1z5M7E1m)M|j}V;>1s9g!b8MYMnQyz+6&!|C
z5|oY>H1yf9?Mye+ioN~EOTZS`>OquzK|>1dPn8Om8DfW+y{-!vb*YxE+K$IQOh`40
ztm^EYnq{hv*=~8d+%l~Ob0&&R@^XDw#q9ZIlx@7SQ!cjJ9yxOobgGQcz==DE8622~
zif53k0{9ool=k(!L8FV=)5Ses5g{r&W7Pp3*fs$jXh9t(zfAdlD+z6a&Hyl%>??Ey
z*xjcpkGf95%!(6{jx#)Q_rKN<a-m>Ah&OE$KA1_jvD#j&lJ}U7fNwi8WwaXXE~!VQ
zs507~2?%+zNLEx*=*fmatvXDq%vU%K0K><{@39DylMsBe=|d5-HV(l!h(W^)gTz+2
z=}LRZfX$H>rv{!}A%G}OS%<mXs`d)%py5>W_s7FDyKLt|+8A1MTDsBcuU*$-?Yl6d
zwjKBJ1KE117CyoQIVqciKW~o3d=S{gy6TU`C>^0OLU22HFBifw3_Es)3FNWZUUrA#
zt7}%1)}24zJ2yBVi%N%+qs7sxpsvjwh`siOT};8KJG^x;ba~uH`>q^MoFf}aJZp<$
zMIq|p6C6!0wJ9G<Y4#HrlP>HKdiwf!#s4^*z`A{pnN}f=(6}$G$Lis13k3|UWx}Qn
z`J4^s+iW_ARI__Czu<h_J~&9S-V=#}ghOB9&U>&kn%S|?hhW?rfrNy^k1smEyg!D=
zHhb8DZgv_=mjw*Q^gfz>!CM%d>rX6o%@p<Y(<(RY3dW$Ig1(QCPZTDSHd)g*rPB*w
z_wve|vzQi<Z$DBVl@3jy2kcwd;es<IzB@jhV&Y_8rrDov4x<`vNq>`SCDWB?AMF<!
zd7P_dL(XGoi_^-jC+sZKE5+IFyq2^nUeof0E;%QX01@{a{yPt+o@>}~F})<Cty>dj
zf|sg)LkN868=>E5BwU@iNs)Ha#v9_<RJXUc9l)*<D*Mg;p>uDK<~|$KD!?x(eT!N+
z^LoJ4ohmILgp{MRFfnkvj<3AVLL!-I{U-XJ5P+u3>g~Xr{Gi6-x>Luy9YSBA#UZ&8
z^{N32dtIP6E(#$3p!@=aVxV2Y%t?|z{+<O;mv|Y@fQ3rg5a;_I3q}DUc8`y~xZ_41
zTevZ-t%rV@6iP4Zx8|(~-A{;wT^?nm*xWV|PsX2xMjhUUTz_+&ApxI~r+J-_i$2z*
zgoSP=){Y=Q&aC*`BpG%Fk3u;b1v;KH_{DmE4@_1c4&NhhyMvah7xwX-G5ipv+$lVV
zR*(kov2x$lNh7*C+U=Q)-4_O(n>-9|QmZDQ@b)=vChtJoMp8@ILa6XA4WkQ;GGhq_
zr3-zADp_eDdJw(mIDKboIawi^z+?~?T(StP&}8pPG7xn1(R}rd2;KOVUL`Vb6?+WZ
z?E55nq*<St%u-$PxfSmX9UKPLKoR%r^CoGc=mK)~EW^)?ZyI9y<C;9~E{MMD&jp8O
zfO(uudPAVNekdbxa+k7*?)|h=Lohtb5b-82({F@lR2$3?A=w;EMfj*$j?AoC8idC@
z<MXWL?WM9eQ;as8%DYB?G8<*k)K$AbgBS0z41aM9(-V&G%lCPu(=RYQC6edlbVDu=
z^@xPWn6NvXKx+VpnekgHrwu$QzY8L$#qCwqEvIAA+p!#1oawTUK|2Pxva$W&YWIyg
za(d`_ffxwg)qcnCoPhO=w^XkhyUKik1$~OeY;K&;(Y9-00fAmQ9lbA#g6}uUGIQ<6
zX&+Y<{Eo=f`u9&_)s$Kzq(MAxuI^nCDGsYca}Fmr12}o8X9LMpFq5U{2yYADj;qlE
zu&VB)nH6oz$Sr2AF4Ji?rPP_{L7Dj1xwEhNw^g`^QPv_9J?(oPcM&N(@4M?*pwela
zNE_SII&>=ROhf(nJX8*68&S$YC?5DoslO-k0=+!lB(e=r!dR*mJ<QiE`T+O3Hm|BD
zFej2gqsLpITg!Q1mPrJRI$a;F1dBexcRCmve&SO(;8z1{V<iiDXTMR+SZp*}P9tJZ
zUvfYpU{gO65y3gNXdCD12RL-pL;nS&3Vd|fgv<cpl#uBNZamp<dO5>WxF506<VRf$
z5~W4XTdHQXcmNv{&<)%#G+Xu7ua~^dhsQknh}myG^E>XLKC=efbR9SQBV73#qTr8l
zzvHDK8nqx=!I5V8eM=)h_Q&dq1F@zFtgXk6Fo_hfEf6nt^(Nz4C7Mi#_q$>eI;X`5
zYAWC7p!$P)Jo+?g;J=`LU^iL*8{DOI5%<LKNn6srzGw&sA0mToB9lgtat3!gi_7(q
z!PU|>E`?(I8UKfBm2|;%HPPv6lRk8DtTcHnYH1%};R5kIj+yBNij9bo3CpZ#8uuB+
zNTMbk?j|0KHs-H<<>H@?hcA&%^#_Ft=2ggqV1b#{ogRR&Fo2HanuPqUtwjjPP2_vI
z&o_dvS9@TiK7-l<La=BgmZ1ZcQ67h=s4{f80jLC~FS`ohj*T9mvyT46n~)SIgNWVe
z)dDfqvTM1jn(LYk4!4X(pU)8;HVpE)-|MH9C;u%1P-lRYDpc2Ek;YVsU6vJxs>?+$
z#kaE7QD=dd-Fj{hOkWH=<p8F=(Qn*>`se7lLWL-sCVq{F2KGcjK?c1Cj$9Q#M3*gF
zK)%xKwGy(!Wl@8lJN70<d0dTiC8KUC8uFZ0l@D+R_q-<qQ|mv44pS!aSiSYfk_t{v
zD1P&Z(co~Mq2LvGW@fbBz~LclbhX%)e9(uAd+m5UKWCenn-cuwOgR5EH83``4(E_9
z?zO=i3S$b;?j4D_yZ|W5{lb%2!&!zoWzIHFPAB95>OBOU-=#W@5lLN1YdwmOWdiVg
zZr2C!jSkxZZGz5Iq{XbWxq1YabKpWjlqZ9F^4^Hl0<6Oi$PbI{yh?<8#1)=*0c@VB
z^>-82nHO7f(WLNGMQ^7qs-g4*oRm<7Vk+a1h=ZdD&1wThTinDadeL~c>}=gdapZC^
zc?ts7vyHql{JwmcunhazfPQM`z4g(%-9H$Er|y+amaW4^6AwM;-V_wfd6T^FPXjGj
ztL%Qr?*>2|OOB#*_tTp%1D4#c;6Io@%&MyuO1f5WsXc@n<F&ldCiRhAeM6_nDA{DN
z!0Vuzu2=Ud802{$Zfu^!X#Wl+PDTQE<8YyNNm~D47XUaV{WD@mn`_8<q(L;waS&ZX
zd;esA;gvMpw|uWSIy3GyuwC*wvt=RbM8NHUzvd&($-2s9o5z4;e<}mtiu5sO<5>!F
z?6dV0c9YW)CHk7;oCm3^=-@*JrJ%wng@j+?-x&CS#%HBVUD!EYxpxv}C_pB6MTD`F
zS&h;bx*df#vBpMkY#FT9J=0)kVx+56X4sa2@<Jx4buop@Vs&q-*toumMXQXI)*OrX
zLP4`l&BNtnRidXlvz7eP>E+dZmFYm-9!nC08O5xiw8(P*?kl^)gDr>`n6_be(p=pX
zsf7~b6}_Ka2)B?ilAHp%k3dS$6xM!Jx^HyW?<>skFDAw*(BU3I1a>DF-8hVpgZjHX
znFqCw&EP-18Gxe`$gRN-g-(BbZ8IdlY|bDes2|j%0^Px?ua2OUG6)R;TnHR*jr^KU
z1m%=Ir_40E{_rsB<pAisUfFJ&OKVoBFW-z+%2UffaDfk(7mmLpoz{UopkCoGSEOuz
zbDGOG&FBBN5w+xsGWCNbyn-7Jjdwm#30|t$3Qn-APT1$eJ#>pzAx1TTh6aIE(u4<k
zwD(NZZQuR4qF{-T66W{3W68pl`R=Xt%Ku<UFILc?)gBL>LI8QfeCSP;x^(6HBkP`t
z>01<nEUBGOVY@lD*@lhREmds*t8K%Zo`$c?H=JL(@?WjqPdH$^y_pBLl!?s)cx@I@
zZK@!iQtdo|Dr88?mt@4)>*gf3SCROrD*#&P;^kK+ldKmGJ7pq1exj%XK^e2`+1hZ1
zFT>yFxNyj)3*teRQew%gWO9a{<C|Tu$%W%Hp`z{2n1P@*Y}q^s*g$?rO2YI3EOS-n
zP#)tY7+T@W`Mpt@-NQLME$~C|Zr4)fR(zkAf{^0#Uw|m6BT1k5CJQv*S-(`&al-XS
zF9Vjf!nj=={m|~{IDGl_rFhX>Ca9K8GEw^>fJ*MP+-a=!F!LuzLk{|3(1OcSE+*C}
zhTBGC=WM|-2`-Wis4X#YJR-EmHO`J~z2p`;FdQXblZ~%Tue9;0+qbGripWDc^+M4d
z?hEHZe^Z;O-SqW9>>)tm&{a5L(SQWb@O~9TF&4f=a0Ql$T?A6kTTxv5qoqbNVPPdH
zlVT}RV<T|eSgI-NcIn04B}ovF4|Ge#&W|iL0~2A1&(WSoApw#m9@}gNt#3?E%_OEp
zFPfSx2i|PmHh&rSxS=xyDGSJnv5h7F@rJYXM2~THnLk~kjJ!?hb*=&SOapofxg$0n
zL!w7X_bUG4h3)>PTo1L1I?q1V*-_A)@e2FzOeRLn)*eY?lW!bW=!U#jzmmPnH%N-S
zIdA#TJQ5#8pqk}JDW*d6-$A4sf;n))oNe`N=FA8T&b5T=GqnZ7waow4=nO!j`ta*J
z%buhYNb{i0<&;|gy@`GD7`$7HVjL|JiE{{?YNlwQp0!^Y=H27d{qbTDKYo&^sHhL<
z^aKNkTq{==tu^X-Y+-q8FzJ?du`il}dHIT%+wwi(nWk);ZOO;3AT+RwHB1=H#1B;r
zVEO09@}ps!*KiABQOgD1E8PTltnRZifTqBK?l5a#x7k{hC0QVrU`VS15jFKfbqqlr
zDIC@sYh8z1TIf%LW|R!6IGhapDEs5{SRg(Rj^F4*QmG_3+@QJx0e{bNK6a;KZ=D&f
zsDT_S%Ryb0wZi?HE^FwQ1KS!&Z|-ACjx;KUH=YV&DKc%qtU67Ib!!4s_xb%DOd`2E
zG8eiq6vg%j)$}oDQ1QCL+C$g1PsaJA0$bXB|DC$aqz(=V8nRpG@!Wcc^K`v8x@$+_
z{qYolGrzWH%Ki}B%_41MIxL!5|HQtNMIh|GgP}UN61xDE%~%lwOf?ymSO>lgJAslK
zh%y2Vva<xrKM$p1#OEvRq%H|M2TZeUmZ&$`u2I)~yicNDeiL3c35rmw;Ia8B-HwS>
zrqrjJ7Jy&6aQ5<F{AvCfC%m7QJC$>G5052aW>?Lz)#0vnCqJ*gmtpji>?PCVdwGA!
z%qTmcmlZ=#5}m?r#9}&<pgz#nEB)%p+J~191%nwIU0%~1gc`_D<okFp?(gQ<^T{k!
zvQqGpm}y3KKXEu)kDxTTLxtt-QHJOJEeAlB!;ZDLhO!SR3lvBynLd&NWot0S?K0jh
zSZjS%3{^<0P*-_N@F~~aad)ni8ArMImv)AzL*1Dlne%R-%dQP}3u!2KK>E30?Z<Bc
z?w6;o$bb`6gAE5(9R^h9%7%0$<mJw++0Y}qoG`wh{+-cs-(ZOxiLtjrfK98EHA$lx
zM|;JMwG`%Q{JY<gF*VvUUi&Xa(>g%WBsGnFjDcDj>8A(eib_LQ2NQ-^8$?L;9N(>b
zUh*W|7jvM5F4sCRM83xeWZHeDis)O34UnqgeR^*+b(#|T`?$m9^JB-1`mCUXQ@gle
z7!=0QQjg)&>W;=^@32csY*#X6av*el!oe*#2I6x23cTyC6t6t@b{&QaRHL>9?7atC
zSID+#_MhUG*o5VxY@IGh!#B)MCEWR;asVA(tO12E>~)zXlDgjH10V-RX8-8iQ40$X
zRm{gOIuY+lZp*(kD?Vn>Kt3GgetmQ*8A~nWCmDz=@r~Oz-eG)j=@YNS@BNwbux#Dh
zkEaSMuX{)FSRBr`m4TfR8KM2?;iLlg(pYo9TYe+yjb@4=po)bfNv-D;3^SJMH^zmZ
zs<UgCgGAz~Iqw3Ey)S+-bcc-R$ZT|q;}R9&grTUH1mmEyuXUG;Jt5vK6|n9cT#nIp
zpL=e@sFI7kV7uDccq9Z8d$iCv+Cb?H1xl*>bEUW;mXR4Y!*&3Vu{!?Pd~#4oK&$W#
z`c0lP2GhiM|5>~B6cKc1@P#M*Xy)AsXXQrK{>=|(LDW#UvwkRY{7WI6f_&4fGkiv9
zJ8dFQw}%r^50`6vHSRjALBUob<-3TnY>V~=zgDoDP>~#WdsQNK-RV&&iS4~?yXhvX
zPL%`z^>$f_SqR@5y;<A4LUDgG6g@Yw6C!osj}g#YB`jm~AEXd#?HVpl`dSh(BpT$a
z$#AiGy?SJmffp+x#A%A2taQ9_NjO3(hC1p2rUa;Z)pA>TKO!%)U4L3x-Pz4Mc5pf0
zgCkK4MFoW4&syNT>fCB?=?oYhPkS8qcZX1qgGag*;-!G$dZ1JD{+iBh0B1n|zT4~Z
zjKtk*t<n9$$3W=%Nb&}8ZH@=Wc8OLsrT6>u-p24$pz*c?L-g5GtM@a0T%J6dfHp0~
z*~pK4xqTq$YWM~iJ$>c0y+4Jszpd1P-=#HjAxV^O?UVx~ZJ#SvFHn*_*Wo-&*M(!p
z7SeUo$?NC-ashY*-=5~m1bpfd$(A^}!4$|Du~{C40Z>xXdQD|bXoIS-50?0@*L}Et
zyXw$hC#=HjFfB9iL+Cw^UmfUt;D))vb8JtxNea03!>S^gTYmlsAU{y0{f8|MyE_DS
zCWru6W{7oE%nf6U9`yDK7%i15mqxfccn`zmyWB8F>1Noa<Ci>^N`!ncM0epe4Sq)=
zBkr5cYa$&D1tfXv!CB5ZIuk!WN)v2b4~*1b!etd0f(h%BFp!tS5*UYvv+FyQ_n&zV
zp648PvehSE#O9Vt3U3OU?9p~fXpLi3>Vr**BFOoCKf^nUazuP;2~u{^!L20~sWD7m
zQ>=Y&IyzDslQt~M`<n6FT#s-!Dj6pxcBRhz9qnM$a+$~i&JQL3#&i4=saR$=r|!8a
zStP0ZoFA{0(gkaRoosZOd+yK(OI+fmV===5f%^~BZnftzyFNP9OLp$u{K;De8C8xf
z6wxP}t&R^2KYe>#=Vri0TCpXVFf6yS`<K&+bdAND-z3yOi46n}&{A3q&p1BmK^Ntk
zuR%d<3!y4yPGtL0cz0|>^M2}Et?=ltbGb)wZzs_7Vyu(;9G47`E}$rXt6$%LSNztv
z^K8w-;P4QsOUgJ|UQxlIt+vzV56?Y71z^=?x&q;vk$tRY7>&JGym~xhqyR#T1Ftn#
zyMStuovB?y9gnfP>Ohw|j|}3=sf?ZK`KXd(q>rf=59$+Hj(?+uZKMLJfgD7PmQhz1
zmt;~ODl64=!Jc#Vh=~Gqnt0ATRNSq#&$**4!nE_U$4(g9lYux4DknLvXPZXkqYir*
z8|0T`)#UlcJz)~_H6N6JW{IN%Gf!h1pt&kD9y5TEziV97<0fXI*DJSSBm@Ir9K-Ye
z8X>~ux76N8;+^hDU^)??AOPS<YXDEbxq_>7IQsq-ynghaBw^T>0Wl2-G;hy(*v%jR
zFbg!n>(j}RTl1Gb;9bcVfn6?ZXltEjzj_5j@`drF!{<CTj^Q$2gXe&1B@Z*z*NL1w
zLk6|OCu$GNEw<aR)sOqXJ`)NXNmkVk!t@d;CY2+Lz(@X?ZF1ii{9>)CIIv)U6PMkN
z8u<D0CH^}I+tY&dgUjiG!tMgcdut+{k|j@QfIt%UnN!t=I{U`%>da@CkKfm=BjVKd
z{fwr|`Q2AW<0|X9Y=npLtVViofV_hppd(by81Dt<GuNdTe|*jy=b^FIZ}WiaeOyWn
zMD(Jr;#NFB2z&ZvHk30!KqBjCAn1%Ni*fL2b|&9OP--dPJFM%&KadJ0psL)6%lA$e
z67eB&K=K=7m9GvYdm)&rHK>7>BxPXV&}Vn#Xn?8hS8p`5h$3y!PaUPM>9CESUwD#W
z-COL=q23hfueP@X2#j2!l#?*#+X_TDPL3#P9lV~;ID}2NzHda~&)1#Pkq*YHGX>L4
zmM?#*BI8arz6l97g5P=OQd}Z6BMUTTWMtN8qJ5vNp@`H{k&P*NIE*;BGmuWQJ)F|f
zC9N&EtaESe3B@>11&UZ0MCjr-ZeUmX$mZMG>NfYy6<4@Z^5;Bt_lEv+3eq?#y!ljJ
zPt&}RVb|Ryr55Xigr<684}&kr69(ZOI>l@;5*_&cI5r_4)rp(<=im>&@_m!7^X=03
zt<70*mR#N3B;oO?yBVeP3gi;Wj7DS42E`USDmS3~$M&a70!nnC;cDHQ`QK0FIvbJ~
zIS8Jgh3rUve>t?jn%;bUvz`6ej0P8y!@?RIO$sxpRkp6P%W+o!D{rzHk1C^OCVM`)
zgy7(#QD7;AD)PU1qaYK}rms%((1IR7y^`&sUdF<NFZU$bVjOjn9UR|eUeh34pJMLr
zJ?=SP@X~dD(qrz{aJQABaw+}B)1Uy>s;(v)NoEh=cB`oQ|3n&|t&4{O=96OXXFx5_
zbmch8Yeg-S4M-T~9y`y00LXo$c$}l^Cd<YG`PBMR7|+x3;+ExL_09A(Y^}1}Q^AL^
zf75-O!=jV&zlip7tL6g+MWUqDm%{LvZ|GIRir(af0Tbpqd_q9AnQ)#$%**m>O}4>y
zEn%!CPcg|n9$F(gVXoGSK#bgZvQVQ>?Iy^kx6XtU`vTZI@l@6&8tz4F5pTdTS=JZ;
zI#;U*LAsy&u7Kkplb%TN3y1+_Y;bW{vz<8<2Y`XR$4xBMqwy&BvFa}@M~azD%&6pi
z{_a*2NmD4N>)qj_fi8FUdxvIv=#t<Yq^~R%h^L}pZv-i~x?roM5#~$S+VziApumr{
zc%L0}YyiG4pf^(h;w+yvvl9R)8~QVtGvD+ASkHIi=3G!a+<B~u%!kbwK0m!D`IvGD
z)*bh_V0%&bKD<#$=lIfTjf3^WO|0}!ZjlC=I~bu>bo!HcP^AJsSn}#Ne%cM7>vJ@D
z68MeceSEsDb8ht`=q$y!*jZ2CIS}(RFV5POsj+Y@q?mpil!2cb!zF_{yC9;LF!7=1
zmA2zvV^y2@x8#ai2UdWe^M)hZr_hazAa(UM6=>@<p3&ki*6XFcugG7EyI^=XCW)!Y
z$%EHQi>6CTlf^%O6sof}uC}RNzDj^*)vg4bq-C57$0s(5i>CmPHhZaVE3Ez25QHlV
zNEA?k(sP|c$V{^ZUwe$jH2r0`rByW67H^pzS_-E*ZmPa@C^_ahPEKCHGAs#C0Rq{4
zJ)CC)rZBopD(8XrNB`P;uiM%JYU-YpIDW;&>456N^GysyvItKxhjsZF`svb@{w_OX
z3D0D`A%_b=X%gxIw~jJ=%~^XgLI3F8)PKk1#%vaL;F7%hdW^}k6*VL)vIK(`Obij)
z&7TCTYj`5F*$hI83S{_8<W$QMh4I;63b9|~QA>ZX4siLWsY9k!I(sIt3oMn`c2Jsn
z6|712kJz68Jjw${1R0ca{6b&+yvbSOF}{7t#~e)@)#&IQ->I&kNvvvRKy+{Tz7zco
z{+}ZS3?sYh``^Fv00y<&=Yw=O58OtAK8n7zBV1>6^qH<h+hFKdc@52wf28O#x{G9C
z&5BI8!O(&0&)%TdzjQt{FAQiJ9yut{4}cX~Q-(fSc%OqVc2{>TU$SD!<uH^@6>FU@
z`AGi!*wPoe0llz(djjrN2uSPM5l~T4>7DX;9!lY|-JgDy0koc*Ld8{j8fri<hMlNm
zBrm=NQ+LLwtm%YY#|GNlfXZ`x5sx$9Y-LNtYqGqxa$^1Dad}1r?8FJkV7VxCSYU;B
zL2&#GL$IX!vkDk3gCfu5*0FaP=&U6dsvt=mNq@Po_^zO{Wp2Q4g{Tx$RWH~`ZC`*F
z0rlGL{SL3Kn5(p=Q0*S9N~z#a&rvyy7k$;hgsJ~nO}ZP#SDTuY^8<lpU3&N~+!#4<
zo<qL8s`G4_n+QU|{#b;2q5IhlRYN9!CwS{N8e<{gJ0`{`12!^Q@r(`ZDGt5yT5g+U
zig)qpORDa!yKh&Ku7vZOOd58YM-1p)5vN@NNQ~-r)TqQl21mKUqNwjY*84?gtDNB2
z`UHN9d;wegXMf<3E|>3J=XW4KEi-I=;VF0{w$rQDa_ENYgPKxhKYjwRT^L<`$AYxo
zjqtZi7LBn*wcT0gV$9UIb)y5fWmMg6z)m}fmsNrm84ti#7H|7ZPDt_6HwM5ifn%tZ
zcm6<)0w5qY6vK0~>g6K*^~1(Ta@|iJ-S_U<?ke&fk~O+<qF#?kQdh!(ky^{A+wQs+
z{`ySHQvBM+iVMB`+=oA>1+rh4bytNZU2FC83BRXWW}J~@-}h;|&bm-A?wq6YT6X=8
zmFU_l47E*mbo^5cjC=|d`QS<yZpBX8IgBk;P{)aM2fk6fsP&vY@8X}ItF+>~I1=(n
zP2+QiPk5!FYqd<t1|HMiz#5&WupWHUBLab421dh;lXu6JD5{9RgdKK=V5J9>r|`P^
zDI`y0P>6Q+4zpH#yd?fGbK_DOO@0H9alqh&R#$XDNLXvX<2?lPenj}`vmdDW%ZN39
zNY>EDE`d~(-&RLAhh;)pEA1U%WVmo3=;gA^zZRS%*0_Xmw++OrTg@e-*p^ZZ`Qhfd
zrtLRK6#ee&*tvM*{AD90iA@gW%-jGLG9Jr|P;9z&45`dE7jy)4@*o|D2jOC3lv7ZP
z7h2xnyG;Y+J@Vklnl+9te@u+~l0DJ<pXgT#sU^3hH9dmwTq!1^6jec^cW+vjFHh7P
zTi-^b?8sqQh@3M=y&FKV38JIQ2)nOdrL8Oaqt$u$(TVU|f1CEn3_dFze4iHknd2)F
zVWx_1L(PV2TfH6y(}bL(w7xQHq5sNLv>3B~etJB)_^km7T3#J<Ae~oA;iOy1spl^d
zbDuueF^?eRXz%FgXoo+tlp2AbX3)~oy81P($2wx~<g~44q%_q~W74Ts&0m&<UDttG
z*As^4fAM<)VM^cC(*=KhI7JxQso_TElQ{d8%ByUdU~<gBN{pB3f^IKlFOOfQ0`yym
z$hb_b*D~8T*)8l&Y8aI$INL120QhLob0`^S{av9M2AMkshs&I^%W>432n!Zs9C*G;
z%u>k*V4nvP;r}7*Ed#1-o4s$kVSzMADFV_V-3w5ZmhMhTk?w8@r5h9w>5fHrr*wCB
z=X)-$+xy=8-OqlW4}JiaaK<rn%*^qh-*8%G=CMza&o`lWg7ydc`caQrwJfA=druPT
zuw*i2RL3?`fkf3i`kt>1=v#1}9mZba<+1_E%zWXh*E!<d0?v~t1#xQ=r4-+R{O_gL
zf_t7LGcN9Kz>NXTJ&Z<u(daoW$AneK-~nL`yA)oQ(5q^hNrH=yM)A2K`b4}Au(&8)
z!)mZsE4%3T{M<o6*Vgf8OK#7L&wgAp_919{i%0M6VH@Z}*UB7u8PhmJ4wH7jnZ46|
zDzGy_#j<f<dbpqh2+BL4+^&N%IG@8byWCXi2{Ou8Ekv=>Kv?|wP{{9;`M4AfxilZk
z2~=0STU0?Ci~?&02f;yVb9GwgzOnq97^g(t0EWnH>WX$LS7X+#OfZ4)dWaS?EN_J5
zi0a$K;sV}LEf8Op4?~nSg#s%WrQ2x<8e!UI3`p4Xgx@%twVzVmM{)|oSls4p2H90)
zW5%i#TU!xve6E>*^czZ+(sNqatB8guo!w;=VqR`l4Ir|Y%a^stTp?YI<?8I|=PbhO
zo~@m23}_yCK9aLa_W}|KHM5wPT6nJp?ON`?zfaImc5LT8vrK;T2^D}muhBTxTYWPu
zpUA1PKB^h(iWKoh2>diZwea1XLl5YNf;jj7IF>IAeS{Ze#Jlj_O^haexF70$oM^5=
z^#mn4S~~ei6Z<(~Zq;ISIG0G#Uzv3UT@OE7`K6_6AnnS7PU>1cb4wKXE{(&Uq&=K?
ztbMP+?K0Cu+fB!svAtYni_i9m)#VTc1Qt-fWK(vOrU}AVyXDPuO+|B~KQP?rBurr!
z+?6_aoosuze)Ca~IfYO##gC)7vny}Suc{IZ=|JBAhpcpj%b{u%$86OS>87C2Z7*l9
zJXp@LC@<nxIBq{={}grkPwogY9FniHSsY}5KNSjEsgX(MI^JZSnwt6s9C%5a>`oNU
zVYyzv0|6bF)JwNBUPrv&!@|&6z&<+by@5kiC1BFeT&9C5@--!yl4!FT&Tsw0JMv&I
zE<C+(4ajJeS7)lMNS)o>?33~7m0&PrNGBAX0Z_!rH3}yE{mWw-nKU?HT!`_D;26ws
z_IXXtm>0jAA>qrHXM+Pf@0XRMSB&+p)@qR^!ULS?T6br>{6$IUrn|)*Tj8}ud|8#j
z0){ruyN;>eSE$dD&QQ@Sti&{eRclQ=wz!%PFDc4X(X)=uO2xD!>5}#Z%t>%0eqtZO
zoo4VPxO~JjpDXyuUgk@OI}2D=S>v^veoB=YlhGr8WFC?sl};z)wBCvDpS{E{meWWa
z+{HS+I{SBm9@aBXNCsUYpN0b+pGx*sfCN%N6BlTqf$m&K?<qf`9FvrAH_9tz(XQX{
zBZrf7$w#89)qTdyAOb1Yj=sv2iyUmJa=PAeAY%Q3CoDweMpSNc?W;H23eSYIqU~`(
zoX=R>H^c!kpf^+Cd3|^N4zGN(a{Of)FDyBU^s`$zTk|BuGHOnD!`{6fM!Io^_WIiu
zj_*WHElbjlsM&3!1iTq~H_k_4g3fAQ7x-TcsVpmBLr?*TX%o!gfaWn(28zvjzVXrZ
zn5o%ZMJ?Xy`QaFP5~o!bnMv?k;XSPUmk&drRWtZSc4mbfUkoQcmld8ooyt(wq3S7<
zqmt;QDnr`E>Yvy)z|=HWo0b=zX*z;+qCg4SMTqC|Y+E?^(q%k2Q%|?JNFDb|q)PTa
z(Dv{FUZ=_Yp5%((6wB{vm&4o`yn3%#L(41x@oeB@b@lfmLb9i^nS*qAMO7E;5`LtX
zV@?ic)A!*8Ih9fMWjL39KG!%Qv74_WE;AbZVU-0;o9i(~$Izc7&Ed3+*cgf*TGEO;
z*uufe+c2El{O|TQt2LkTDAL58GJq-(;894(ZwMgR%=hNtn04yflR=~c*w0Bgv4cn~
z1qI0M^~>lm0OPZh30l9+tW5VakmdpD?+eisVK!*~V|ce7Vt<}2@1<bM`CuuJ4n9Ri
zuE#cY2B+8Z$}3xo8Q=7UIH>uWwxCu6+n|}%=>0n>zZ2*Jfhtb>ahu~mi`S@IDgY;D
z<f$UFBn^H0bG3>>!mNa?7gME%M@v4790@V6q`({fiIp@)o<nJZM|aoujp>nsgx$&9
z#Ra&DQhSHhfXL}|K1(93RoCnORsI^mZYfy~1~I!xBD=8>nTb+F-@rhGps-7u6(PM6
z%EQC0jo+z%N9qxMdp)#L@@bo*x7x6{1*o28O9U%usWyl+PgemnIQi1LYk*8+HXEp1
z0xYBjAu4o^dXp|T7e<o`Fysp{M_a!!=>QtsrR5^E*e`=TWlPf(CDh}<3k%Su?DcuM
z`+Cx_TY~Om#8A*}CIHT2ps%-Ee{p7g_=vGM0Tx*Oq+dC!P@Z-d#UNx;q~5FRJn6Q@
zLw-ZJ%Sw!XEH9ZvAF&v==E-#TaDL{Dvj6;3cUFX(oLEZD@tTnFlgUv*@%B`riG!j~
zH54y|7XjGC8rq7JcN4P8IT+je7Zs=z<R-&H5cK1z#btTB5we==(fCLPg@QcR3<%kq
z-sCCqD8ld9EUd5#&1jCpluj>#NxZv<U@Wltx3q0GW4T$abCKsB=WPUjxTaAL*Mdoy
zv)rz3(C?gfYDKrEYuK_|yJv_qWgm>ZU8Fmg&0VN&kvklVJ^IlF;h(LfdYs|N&YvQs
z7dO=;(%Lk^`~#_rK+DChkMd8=R#;w(ibBPU__jdd8PFgV&+M0NZ{HZU%)?!95Biw<
zq2p3eFx}feOojc6`OtxOrVK+91#QQ1)q=(?e8yHJn$XNqg&ARh^LlTr&yV*pCGwGx
z`q!b#>}xM4W<Lfy-QQrAIN7$29r>Sr=a0V*iYFo;i4a`sDEW1~(gBZA7-nM}X0({c
zrqyJJdla$Rak?qe=$-?zDlMF-A6(Eb@_r#>_0jm<CytuydZ$CtLf3~CO1za!$|0Tx
zKu|awMi#i<;h$-wkoO|y;+-p_W}TT3-feDPUYsTc1;y694drv*olBTv$z?EvDNuHV
z27fZMq}pvrXltaNWs#G%s3j;To<-MZ-tDsG-9(dTgPZ8xRSqcg4241I6vq&E_Fu-!
z_|Il}i}l>UXx<HgDj>YNg88yaLrBEtS|AY1OSQ05xvO`k_IL<J-yHDy_$sW=koD9*
z;N8wbIjE^RIP{3JUD1I;(fD1-n04X(bEO7Z<%O<_)zNR0<&8?kP7Ur#g)DzoTdzmj
z)Q9dYB9%Lktz3m%S`kkYx(?-cCkxoGd{CN%c}wHv+oe!84w9V<Bwera>V(4@msI{-
zA{5HhJ(`)zr~TE!HzN#>k-a6wMs53*V=y$~d4JQ9_NxH~1OhcTO-rzE_Q>w?4yHI`
zrHei1u@!NR7t`G01hq|)<gRu_w%y-ey0D?$$WP_Us0CSxw_=w}mnFWXRbXQ-Y{nMb
z&e{~*=b#@!p37=J0<;;xKL&zrO2O}R3Sdn#gKNN~`OCa$rHN+VeNGa16c!nBjQhb|
ztm|uE__@qnPiLSc+Kxyw9)6S3q(JS&xe&Wp>AIIy?@UQOcVKU}6cIqD^@mw9wSUsc
zg<x>c{%`<xhBCh@1|(?UqE2dp-$0qh?}4EsaO&$+tlKinUA)w@8Z@d&h1EL&hSYw0
z=a<~4G04Iy7Yb+VmaD;7QM3qTWJi3}=a*5r_$!E=t$kzg8r&x!cv-N3XnYmm3H_;|
zN^5E>KEi)OP3&MiFeK?h_Kt~Ea4beplOTahzk(chdEq5F)&nzc;U8@~(8Be@cSiZB
z$)*%Cp0!iLHAEmSd<~nnH8;Y)peKBpG{reBl&19DVyF%c5I(;7)#j_<z#&@C?rHF5
z(WakcYVQ+l6{l%)3ie?~kWG|ZUVZI`PuzJ?4AxEAqr}OHE0Sulc95u8&}oqS^t4}@
zEZGb=(-)CaAxj)GU2ZzG4CnUSVJdh8g6X=wGu+68$E<`MbMGnQw0l8T(@JiwPa5s&
zxC<vM`xX24(hv7e^z(hE46DP9^a#SyyPi%gOe!l4F@-qGjF<M0En+o}_k3RRulwgr
z?zKuSI2R=%-KWcq@s-`fmVp_jJxqN{$2drp`UDc{BAWJK$mWo4GjOP~+%-gTbl#`>
z+WD7SrU2o&xmAa8YYm`3O28xw+0PkD!9*uuiVk{X@9685n5yLH2((tII$sU@g_K<Q
z{!UI05*j(`ZfS@TP-ibi2eZCFlh;zubmt{MAZSb1GR$fMgj<pabi)F6YZ+$D)%kmp
zetaAn#X4sBZw%E7HSi_VxtJh^`tr=|(KA^cQka8fj(<MmQmwT2jOk5>#+IduiMi$V
zf(LU99a$0j2Q;hocfu1tW`z2_on%UG9%TM0@b=sxIM7ZzzF0{)4ZcBXV=xt6fLu5b
zc)V>m7Z(r|+K32({^S8-J)L!jJYUcSs@PZxj{^y-K%`{uP>nt8>jS658R8h)%O>l`
zt5p!48l~`$_o*6hHZ_$Ul?qs5Q!tT;`^oUSlnYiK18sYrbzBR=3nP;YxTBDAS#PxB
z6<+5n(~HJ_z^5WS{TM|bOI8eS(aG){M0&vw3Bor@=eJvF59D_`XwCoQ3DT~ts&m*z
zAbLjFV4k(99A7xQc6V_wo$5uiu0L7AC7%5)8&G;`e{*@?-6ON!y?>bvdqF1XleNY9
z;X7T%$|;;&1~h;Ens4_@Ew`#B(!3b->6CslKJ>gOG;-lQ;FBaZ{_4jb^)sm<l~)vJ
zJ0EkvuddbAD<t(FQVGNw=Np{TUC4Flc1wnwo6JY2U>{y<_%}^?8|OpakYT#`=&2yA
z)$skhs2@yFD}u%syQmr7mMm`M+4!@FCWsAFncVzVeC}7QgnRnL5BHzC($4jWRCRTA
zkIv54G7T#C+0tp{$R8N71!v61B1pNX?0w72=srypc&`Yb^#{EWz@b-p)BXK5E-*Mf
z^&azpf(>R@DSUT-wt8u2hhDZr!kNcYfY24GJqkkffv_tt!tz_VU{}7%fUem~On(s?
zpq4Vhln!Db9E|Z-vE+s6`FJJ#I|ko`9XNva79vYA9)SFrrS#}z{Jh9xzk6f6HJww+
zn0C3SBAMRvm}sSjyK=9m@XaFjSl6D2hOliN>3eG(_RwyRp@^JMed4>8jF`dzXZX5`
zwY0qwil6jKJ^*$NVdhn#DR}h)@D6xn%0Pz;b|+NWA1;I95CnDB*l$t9(WrFv3U0AT
zuqLhNR%D*<?Sd6^-}-P)DibaUu7tE?$Jb)UFSbni?O`&!6x9)?>9#lWg}^%ri}XcA
zUQrR&ZTe4*Jb3?2bt4H;CEWe!fA|Kvj5{~uI(9gw-b!s*;4!O=FJGJ-y^z;G=>W$1
zR5GWcbxxdu*g`zgy{=w|&pk+fdb`nQB!}|O+O5w6uyVJ44&CF@O=D6ij><%*Mu~y4
zzKt1d?XoE2=ZQSlTN$vBJeS{90(Ws$<fn8g3A`SmAsO#xizLc(hO3=GI&TcdiPWlF
z&OomAz8r-SOB+((U)vnP=lygXtWW>GB8u-GK2&diNlwJ){=H>(U<wJ*;u~$a;Y!TD
z!1!-o=E50A?{CtUM&?O8))?aj`VXQn16%in%}_3#4SoqiXpUxvX^?YsY_EHjtrRk@
zmHXmtGjr`;Dm#YnBRNrc6{NFU<@f|MQ)<$sk#f5tDBV^2zQ<h?Fc?=8IkXgg1wqP@
zem>;&W3sBU!y))Wfif5_IpbMqoQZ5QT&Y3FnvAk;kn6QxE?iv`0v8va1Cu(>P(}zn
zKmA1fhe0I2@lrqVj)YVkqD7|lz6Q-Cf9NJFb)_WT@Ye9J-yybg<EsRdVg@uQgbP2!
z=i84BGi@Gy3?}u$Ug#cPF32~i2>N}t(<KB8D1?v~$UFZ4tkWvLF7j7dwuP4dwGhq5
z=uBbn`A>s}-;kkQb=`NM{ckMlc|^dUo*1+f*;hUmz10}{y)hX7LgMr53c_=Z!&>@l
zXf)ut!d0_~d!$zPNQwC2Z;bCNw{*TcsTH1!{|)sM@wC*BtCiJMekW&zKl#cs;x=1|
z*0f>P*lOU&&sXfprAx(tMA@5#FxY>k0h5#~SUaq0s;M*LK0tYevSAg>e{gVM3us34
z*}JWt5rky9U!P#}JMK}=&SZ%K$#ku?2K;Hx*Jw##PATfI(VX~OALH=0nL(XxxWuw6
z;Yco_3t)WVaJ3<aI>czzx<o2f<sgWYioA%}YHPk~{zf$Qt&Fi(1c$yl(7@2COf*%A
zf93f=U9VmB(V;uFi51`mV5GUZ^p><tH3Qo{jt75B;%bnKZfN{9AyQ;=%PH*rSd+bd
z&F2<5I;~PyvMsjm$D~(OIwIqFDL_hGA_>($+o|NqK_8CKFfCBq6{T)(>pSWlxV^LJ
zPwV-7Xab9RvQjQz<g#zjQW_*Qmm>(I9Ore_Auu+SxJ#U6(J+ze3HPTPV@`R(n<R5b
zCy#!3yR37Jfv#k#!W@je7Z^yE7o<%*Sk*40odK^g%SCjmIAzltAN=cCgxcogb(dD-
zDWdrFF}mZ}xs0SqaM{m=5ruR;PsD)oTuIjXiDt?D=qJN+*n>@JeB{oFA%qT&TVd(8
zk|aRI%*}%&A+e>6BIu;ge%VG|wLSU^K7)|c9lpx5trJOK`IyI&!?K$)Pknx9m*7E-
z*JMr{9+sr)m*Q_44Du-uNFmAfVjH>M@vyR&CXhh0+Vz!}CJ{)frArH$HKiLUQc3H5
zP8U2vASio@4q6UNOKguU+wgZT-y96$JtausF#i~636GA?fW_l_hY(IG++*}0E*KhX
z`?a^6wa#pe=bV%$!R=>j9me(;v2*Qcl|<y{RJAFU!fG<B26}#tWcm};B4E7Tn=bpI
z=*|myy0yLWgrGwF1*(YI;CtZsskH|6TmOlu;}&t5cCv~I@$3#?d!v<p>ku&hE+IHo
zUO+xuLz$U*+%=@#(9(`<XW7r=^K@B++eJI%Cu#$?L9it>U6>j#Z?tStKVzuTyu(3h
zGm}eQepG>!1Y8a^Hn@Gx++PCp66Jj=3LO(6FEREORSyi2#F#R%0paTa(t3?zktH#a
z&=+jnSBJju74JH-oOM$K?4DQb5BG?hML1}37jKduSd163NO;o0wI9uHA;Pt76lpd^
zr-LSo`#K$>d|hPak6nD;D$jQ*O)GFRV};*mo2Jg32+`b_4ond2N)5TH4$#)@qEBK!
zQ2v&2?KDOooM}YlE)E4fz*IZb|L(ce+*6&MD9q5FRT=Is4Y>>N7`i<+eAm*{Z_i2-
z>#nqr?y~9mh?{bV>P$E9Re|^VZx0gX6~b`aERc-X>R~lBX69i$R@vFvE$dty^M3qB
zBeQ1DxSt4QO|In}vRk}Z4U6{!0`U}lUxMADaINIMgMf_q%k6~~kNrk?h#5$5Rli#m
z?><vc?ner*J$Sh_prfcqWvFJD$Q9DYTDjpLszwnev5B2_z0wgDB#{}{`WvWdxhc2+
zD2kZbt?jT3k?57r!X@EDU7+ET&ur61Yu~Ts^VD9~+N7{y`R%&yp@~P3D088I0t@UV
za8c(sC`y@4|BBx$wxcNk2AcFa1<_P4Z?C?C^a0a^{Gt^JMPh#RtYcei)uJ@aa!21*
z5v-W28$VT{)metDn8!vN*>TZ@mX!zi&%6T%3ynE|t~tE#z{w5eb7(g=PXhJMi>DYL
z54sBzfd%fCJHrBy+>efMaGRaMb2WBUniJAdi4A{<IC7RjdNaJ3-7gn_PLJh@dAI%v
z!{A=>ZawE7f!fdDR{w`AhC;G_-9}e3Bn+~SFx)a^rcZIm%ty5?U^-U;PdFBxMgtq1
zPPqE-uPM3FFXLE6-K}5pfCW4$Z)qt-)AA;*N8oiNQI0A$F?#Me4sD{GYU%}yZ>ZUp
z_oBeS@e@w6$j^MvT5p6lgjLWARqW9_^T@8Wqw&75!fk{ob_p~QHUgmxOvX%XTtQ&+
z67r$pmgpv1`RT<x{}s@2r*{Rycpt(AFO|QC;D{yY(AcQ!Jf$*3D@Uo&>d%NFh2{v7
zHb2rEes<g4K6Z+lyqXL2fC@+swTFp@TrrmZuEzWdY72X~HdP`wpb>R%x~<cxpCG4D
zxmM%HTD@q|*6nm`?G^gEIr0+Ze6fP4i%e8Drv@=J*FA1w(Q%8Mu9Hlr;WX+=nci_Q
z-mbNrm;K`*9ZRMe!JSp4s0?WxbyclxY#psp8i=JA+LE~Bt*0>HnWTRI?DXh#h5}3Z
zeDWDT{o&Be>BuDl6K3z<{%90!xGN9$d)KB-2|D)QszbvsYpR^C!jT$QJ+6*?1YgQ_
zr;lV**DX=I|H5k<UU@v8=J0C|!A-`8LF(cnHyo&G=dD;3J0`n8@9_6}xXv|uwlfQ)
ztZv79uPgF&-=F-R&p@r%T_zNiAV7-w^=N~$ZCofb=_x-+r59=UTMcEdk`a$NXMCHz
zIm>|`gE2^gYGDg@erYZG9+LiA@uyD*sbkss5(_yVyvSD~YvtgMUe#ZS4MAUV|G2w7
z4$5qe&IwoS$N6niy_Igt!<z}@uPz7zn8dwV#>tmpwEFSS6dZA(LnZqSnv<EI`T`Ty
z&Hq&SMNzAxmG)InpdFVP4WV+xUpK&*>up`i%HOvg)o^ryRtpU~zQXT1l9`f=3<xJb
ztexVJDBZkEGg(S7moH0s<Rl%hZTHbhBOk7d_7YG0r-YTsu!QfC4Gq?#q0Or=hP1{c
zpAN?+pbF_&Fr@9BT=UuV=`!glqam|#Zxs1k5Ct`&^$b@h81mIh6DDqd#!X~adV@iQ
z4xMbag7p@@_9qy!N;}lt`jcUa6ZbYz>ZcTe-{8JR8~o5FWQHWtx$^=Jcg+q~$7KVS
zrPvBQOmg|^&4sSV9hTtaVu0Y}o%$q8!t)JYQ}l>~VP3I>W}uy{r7>D}3+s%sT5n+w
z`v5le>%VFo|HA45F|-J@@&=?Flm*YG8r--cdMvPdy{Y`%cy#iV1&)96JtfBN0#vCM
zigkrEwO2JpHA!T1?7F9#X`GFKUfr81(FJPO%o(84+g$2u{(6Q3izO7PH4ED&a@Qn*
z%{otf*s57FPpiCfuB$&ac~Z~$5Nqjv@R7F(sQP5zI%Q<rYrE`)GTl<Cqw&{960aUL
zsO6{zo9>0!-bPCu<wna-ss&fCUMUB+rihr0HIixS&m@SJnVtHS_cQ#wmLC=kSv{C<
zgw@u36IFGCkqom=KN)p9(+`ktF<Lj67fR4S{(MiHjNrgL66Npgi(m!3BNQ3vDYVSZ
z7i;Lvi%h)&%KqqpNCwfSed_&^=K(mXoH)H<gvX(kZeyDHr>G{h$`WEA09l9Mh@~m{
zE~HJ8AmHf#zFSPn-}(2XjqjgbE<}^G$yc)9v2QN6+fH5moma%cQBDUvv^q+3GASr8
zn@{f_&}WKjI-YoQE_Ykrna;Y`?m@RK_ia2V1Y>07;MJ@^o9qz2nYYj3fa8&&R>(sA
zqc<qu=8$|C5NZZ<h>)N{U(>%T&;Pu$zh8)ypk!?B0a8G3!Z0ImRIza`i*dScNu(A&
zbrf<ug|1iFfvQyG7mq8`imZ9bUU_n7D%_SUmXhC?vx(B?gdk4HqsC{Kwl<8+pGHb)
z-<XYlsOrK9y^rfp!_b^4{Jt*5y$_3bV6LbJ4As!XBADTuh)O#sY2w@`6-$GYXujPi
z<?-6^$9rMX<!c~_w{JeSDJP_-TbjpcG4_*X+`+Q*^7!(HnA^PGN$^9Nj?o#~@thpF
zKDgy;>vIeuLHrM~#f(6ql$^bE8C!%cO%i>wHnIOP7X1Ji?TkKx5Ga?1E)g0ZeLEBW
zYNZAcio%2<uq{`z>JNU#)z9kktDhUoz~)u?J&VG3c})0rr8F)DeKr~!^csqJr>uZt
zLn=(Y2cI^1lw?4rXPSw9IG$L}YH^3h8%C$YphPLW)}4m$Stcwnq+NrMJ3rKSgTZLD
zJhzRzE(BD{1*{Nf=pW>8$X^`Xbw~;9F$TVWhAQC(@9KnG?+(y252t#@Sgl9DxL^dT
z^(Noi&_%I;Kyq#ucM=4F+dm5^gdH)4eq*n^&&FXbU+pC|D?Q7Rc-i-ji@C;e0KPPf
zxY68Xq-C5=`kC{6(ty`)6+pk^k|7~a!xQ^pNXHh<N?ouUC*w`^mhL|wi2wgO5XXW8
z@TKs;0s7JL@v;FwM)}QZ7l=mV<`t}X$TP$b@ywXS>_$<>`hvI$UHEvHM~v-lr4hta
zWU|i}Oj)Jz1dWZUBp>yf@CCeX5WbSn4G3-)+VP{I;?hQ2ZOV|r7bQ=0-?Kle_&r;v
z2e*ocEU$-|+L~1}5Eg_WePx>QvrlF=P_=H$!Upj>0a#?Bk?L=IxwRNyE9FZ+mUwM)
z=|mVbU<uv>A|1mS9wqK0p#-LP%-ylY*tlY82za~(U`?=d;H_(bvyDyz%;wDc$aiUD
z24!S{O91k?v_!6|&dkoa!|MyEaIjfC;S>-K7a&NvNe`|3d!`N(MN7i3mb{uCka<6E
zezRi2>1uF4Kpfar{@$e*JOgk-MQ1P)VFE&&5_4MsxGB+icJ*6<VlMU1%$9Os0VYo9
z?ue}cm2YaSZ9||>)~5stULZg_o^d!pO_RG{&=8k%vd@uWMJ0Ay8dgYPw=YULX4+LD
zs$ipSw|BHe`HBe?GFVr4chL*^z91i79vWX)gk)2>O)!2IW~E9yjAt44zdsJslr9B0
zwTR`p;8E&8ui^frYRSM3KxZLNYPJ!Y3%cW9|CnJ_QU?Ai&e|fx@k8nvM|agY<sCN9
zswY8GwFRkO&?lv0Br&9mO}GXaQU%2S-68nDgr=FcPEH_OEkGsW`+2=Lpgx}a<xUM;
zO5P&=vUc$1?KN(Hq5uij!2<cXe2ZG}=I$*qfh+}xsFO2Ksa_P<Y@`%fJW~JWxd0GN
z+Db!@O%?9ziBQ(s)i_Lgki=;F1Fc9O`~ceE$%^aOflLR&raW*Kne`AbVo}Vka*}{}
zZDdw&5$9Wmz2f7dH(>Nf2)_vid@K7lNK>Th74yOP<R*^A$zfGQDpvd`?_;jt9jOc1
zkXWi!PGw*oWbjxId^Iea`)KzZ3dyflFB&E4qXrI{k;0QKC@*l&;{e>9voF#A#iIvB
zrbV?@d4=Nni=*Nur78#ISS_`6MMA9mk3^${ZLFsU)q;Z-w%>wC>2@oLf#`6!*3=6-
z?Kod0A4Z$6B3cFxcZH14^*N19^1y5sErj@6r$|mX@mlE%KO3rZQUSQ4`5K^djjQCl
zP$zr`lRVVq`>wdDIazLTd2BL0$~PcSCYcWDhb$g${<<v27A8yCk4AVTAE0>K=h9%f
zP&yx={X2*1+1ZS;%N<m95S`t%B#7JlHj*5^%(M><Xx}uMEs(E~7mdvg#jAQTdye~>
zCKl;eGE5=*JW7uU(F>7Dd!nRp>^-yrH<Z>K#s9bm{XiJkMt<ibN{Gv8pzv4(0TYRv
zI)@OoYzood-X0}pSP?e4qBxnVygklBfU|-7t)u0#Z{ennoOtwH)>OX8NX+oBA#CQE
z82lz6K-ym??@tr*G}1z(Q~5MjNwLOo7WqDvPOaKqs6dM+>@cgVs<938B}#}R9YKn~
zXPCwN-9regLv$0j(1-~zgs8+UZt<8%2)`{aNoorby8+e!j5Bxl2NoSi_}bl{zh7$h
zewKUbPv2$~&wKXnI1cVL1~t5_6712Jw+_+z7Mf+)4Hs{zTsy8ohqI{VG#JQu!WOup
zc*#|VNWzJx{eiJzJ^8VkAYcvvqh8`~!Xa>z?0^f7Ys@S}SWkh43v82|tjfZ9#2U0t
zXZvX(6Zw0w7Os$Uli!7GC5E^iN4%9kV?RTdB;Y^;&KU@jf^Ptc!o(S9h~MjmhX>*m
z#1k>MGWAfXLYh>4h?T${&nQT!Gsd)kFLq)rWIM6vV0rLd=}81G4^^<{OU95r1s3g4
zZWj<(#L2oH!nQ4S7S2LkZYKsZRnF;8<PE77lGf3w^nI_&7I-+EmOt9gR>l){nd&o7
z7HUx^Bha*yvVVS_(&U_2&6FU_5>B#n`K~}f?Hdl2)BE6DAF%pw6ySs&WzI1V2PhlO
zW2m#6mhIe)^SA??LR$ABit`071T*caKn8V8GPo~-L0Ff=LJR|LW<xNk>Hjqb1o*ze
zFWPaRy9;^hWq!12Qzej~WyTGrd7tz==4T1+A0KN4y^E`5kE^R?K|<G`ACl9WGM;aV
z;$%FN&;d8|04Gm$$_u(@#sUIsJKM)FtOB31+TYiru*%LkcMg0%%uc}G+-P&N=}ut^
z3TZx^EKaxeb9ua_z(q6dy&*&xr-cZm33#FiQ3xHecKjNJb}gOpk~RaAjs(&K&k?>5
zMFZ?eW=AC~AB=whN6}DKFpf}a(o_965W2Z10K>~@E=RhMg*<LBgoM(YH*s&%_al=9
z#AKcHzycVA^)CCLrzf;b7Jb@St*V;b?5YPoErBj*2y&YJon<ttf~pT8F7+=EPyOsy
z-wN0qq{kQQwB#Ktb^}Tc9wieTAC^6;w#ni}MhjA<?5pEdQQ)-B*W&FtPB4Ip#4%$x
zr|U%-u9FXp!3cnbK5L)%C;`mFkRZ4(e6Rkii}wBqha(f5iziFXy5YHkf^j&e@byb=
zpO9o4d+c29zv*01oLe2%KM`K@bKr1IovQuz=A6NDu@rewyQaNiA*7^qquD?mdUK|{
zR;^p!SnKN`a-o%FbBXLfeH(pIH9n}v7Bl=kQB^Bb8C7dIEOcO{zeSF}LF4~O0ivO^
zAYL3WF4lPx>ohoH1%$;0CX^Z^V&Jv?`AR;FuhZn-vYS6)4Fe32;5L7U_%{ZT41PEH
zuV0n`1?vGzUS}w+&09Zv`Oojk4W1+>bm?H#d~r6S;rit1Rq<uF4WzkJb<I+AbW^#2
zH^1%|>d=4>6c+gjbdF-69y7j@*#GbG?f<w`amp6}oK2@ab^edkM(fTi`zshgd<$nj
zYP^)`3XGiWYQ0?WF+{#3!tmVA5sYG2Ch=pR`AfU=2DbWlld%81nSZX>-x)g82-w9i
zA^ks%eQTb383%oT{Y~u7*^bIOr3O3Fs!KKnDP72GqW~Uv#aJ>OYeP2O%v#oHIzqEL
z^U_=Yv)6pD#Gcmim8TvU!iSl<OuEaF14cX%{k8IV<Sz1fRW_VO%x=8?XPRS#;ybKe
z)@P`T_@DRnpO+JS1&v7THl2ZHJzLw$3rge!Rt1ACA+tAluXSjExZqzOeE|iyN({Q>
zDm*3mzE4ia-<gnE+o$Da=ZCoLKrC<H>(gEjs~md({kas4%mO@ZLQV@M+xZF&x4icY
zR+Bmj^|rql7njQjvcyALFM(U+w3^4!X>#eC<t)%ePU1$L5nG5&zI1T|DnfJ6iqL<q
z^Z$^O_((zv#W+r*Y;Txc8|uGY;9Yv>lD!T+9OcMGtUbZ^ca6{#DNrk|{PX=Us!$IK
zY)9fTdpgz;LGXm4_YeW-URx#|mSQv*QSU0FvFVuDdbnK6V}n=j2Vl5UCJW*3qlC0I
zM&^w89Y^2rc%ERe$R)nuWlR-TtU{Fz<_6+>9)}G^n`DMfT~@n(TNf=6VgP|99@zU=
z#)|!){P(}z5hXhm4YZcH&(hd<)UyfS{*^S+-znO3#{9?At-k`^O)kPq;-@De&I9C=
z<s!k{#v58Zwp(=RchHa{6aFTl0lVsO3iFhZCEh_4^%#%=p`n|~_z<xfbQ_9qRNV3s
z@miNnAsP-j0_G~4;uyq+o6~D}d$9*+EENmQV(*b7^*ZMQhU=6Wbfn3TE56YEzl}Ho
zYQ(eQW6po?QB4kbv=bcJFQ1m%laVuGuaNQEp>@inQ56S;WCw{BHQ9H2^jpr9k;N5h
z8Ojp?69GuGgBlj*`9y)L-dbt(;ey`+d|(UE*lIj|5>QUXi+d1)mw<f;u<n-T@?W}N
zT`9cT)VV_=>}L_1HR!0^<<<w1>7(saQz9Vyu>pX$A>mJo@c-q3KRtbHRH!?DCd-GJ
z_^&O>I~I7*rmt8nWTD0qObz|Y2mA2URJX**Lf`g1wR98=8euQ!uwk+7Jh{3yVITu`
z7I^i9f*NnGIuYz&Kuz@-?FW?V!#R%9^{EVU9&T&8q!TN^bz0i4&tPr|8~tcua~|BA
zE(70P9WO<989MKrOHTk(WV15<?UDaCTNO6|-h5d5H#xC?uVX5xzeWj7dWywfKxZ(k
zQ?|E#YMo+8tKI!!x&7?uB9&XK)-_cXnWmjVwT@amk{t75PZ($uXJpW=!aLiU8EO7T
zrh@dUy^ZVL*K~hWMH2(AZgDV#5=R04f4h*s>o^zz>NHSk5(EE&I7OiDVH-g*=*c_0
zp!1PrY2Ow8@*QuGmv_of@#QT{?#)DMJ*(j$+>!HLdxlIw0$ZlU7@+?DAVCB~AX+tF
z0w$d-XP;Rp6;jU@X*G~fSk1IvLaSDSeAPkFDpv}klr&^1(+QFz8<Fub;PZ*I6;fO8
z1(|>^;VYRKA{FMe--U55KzLo^dQSsbX*eTpVxB@ac-^ZH_Ur8FG^vhsra2<n%wMG8
z|G}d?tr`&{U}uDM^X$Gc`THCu05eT<faGyPojGM0cJLX%n3p~Smg#bf80hL|pOjiI
z4lm}FjKNCjpho@H`@`we&7<8(mJ+GNX8@$_$81g&hzRMjqfd2de;-p}%Inw1>0|kt
ztO2OE0~$enQK0$7|8_-BKcQrYimQ!M97s6+esCA4j}P(bjQ<m)s6(seW&K~USE;FV
zu)Xu1zWaak{x1-rE<MydNA&L_8HNUybw?vDQ19b|0%cs{I9e2v5}_U!tV$IAKQGY$
zdWr2RswDV-FA-{3xiK`;Pq0Dp=g@V`WB=<DHE<{}@4Sp24{>*)IQ<!l$g9{s`bU>9
z;lIX=|IJnY{lc3Gdea2|A!GXlLoXWVlaTqFC!eVd{fnVSJk^E_RODz!Zz-IS-jTb%
zp;V$#6d=-S`HJ9zr1aPS|L;2^_^B<-4QcD{>6Zcvp;ZWYS^@XGS>*pjh)_f(*w2+n
zAQxy;6M++0&HP3=6xkiA`v_kxRlGcqOA$q{|0OSm0aZN2K$_w6p<9y|C<u$pXKN%|
zbejDqm23)6G$~5NzvN*3&w}&P32_{>OlYIgLc9Zjs9No>egC~oHE6j&<z+Vf-*1TX
zK_BQBMOk=&Gv|$>CJy|ZKtJ><0#H|4H=YG3+{y?padv-0xrr_Ji>GL6>%P~qy*Z|Z
z&x_WMs$OqpFsnYPGAhe8)#*-WP6J}Y=H`|*y}qjb=Ms-X4H@cVH2wfz*aro?6n?8-
zV|yIaV+P;>K>%4$Y&=gvW~U!Nugq|eD^~rj-esD{(b34uX(EX+*{>0dX<{xJU!}$G
zA;Ed8qilbo4~9!h8e2)eXb|dKz0DK;`%t0YmIvxf>^5TFKH<v&8)#MmzGKQzX7q&k
z#%_dqYxkk_vV~n>f&z>U2D+%*R--<O232!;7~w!haeRZ&H%d7%qn(8=R?kgC^|Fc%
zUHO+bA8X}^y}9=JTaIyQc|!qM8+gcC8=%7mS0FTc+#&&31j96rwx-?wbYU-Wk$V7K
zN}oslJf+OeIP63inzEz6;Eaac(yw^JJI&g<9v?SH%b+jYqe<Uq^C`1Db;QT*rg!*)
z%^cf$Z_qwznQQx35@$YO|7YK!T!9{DwI@pbr=Y3{bt8q{G1|a#3KqG7qHvD{y?R|K
zw5S#e<8}4=MOk>9huC4$?1JEN*9MA`$)9zV^`pm>&L33?I|d<3FK)iBZ}@SoE6+iJ
zdQ6QSw;lNNBls^1V9X1<W`C+DtnSMW4B2e;9~H$k6mb%`cxG*+cbgkgf|^`Y5Pg|o
zSCVpkqcgKFYg24j0Om%xBUkQ0NAdFDb3ldpsM;3`Wk*InVor9dBcQNnHed8|uE7bk
z(C9(C3+Utt6@*z{?9{9UfD=Vf{bSGZ&1l6kV<sf%L~<4X`Vim+QpP}UojTEs<lp#u
zGN@I;laqaT+F+ZZuiS@rGAR=vWsWg4a~ve|it7Ande&@ki_t0ba;>rNT6Nen*2`>0
zTkr(ja)y_r!ap5ftQBBYWQ|ShXlZ7qOEH>LDV>mA33Mi4<DeAW*<gkzvxb1yua@DX
zsNb&yvoiXz=@D7r{n0Ob8*HlQzYi=`%lHdFnv!`3<TKy|oEyWOO6Q*yigsg>MbL==
zw)Y^ud{uD?yvz%X;p_k6?y&8ki*RL-DI)xD$UqO6o}xs|-qS08K>&571=koCW{mhN
z4X5|0+SM)yv+z24WRROZ4xT~}6dR$(sDZB)kLYF85mc8iEjIctb#1pM_>WB76=}n<
zewNV~QPIBKF*DZ!jAM(c#Ndwwk+2;*x1HIdwPYfD03b9!QB#KFQ+8~n{=vHN`Wafl
zF>2O9z$dth#@6#Qh0XtRxq!Dqg?g)RAz9Xc-wO(q!j3L+^~K_8^$|f=AFBW_)ikG6
zfO8?Yps#lILSNCpoCSQn^N3MmWuhU-L+>ur)V620yeHF|sSNxuUMkb8jDL6N1rxd8
z?n5E$B^vmnlu|=!cig7fqp^+SusDj#PFj-aR!(_-)M^ueg&r-nhykN2xTbzeqk7#P
z2U#cM^oXc!_<6WppWs7IF9HG5uSkCa8x#0&brqgGQjp5E!YqneTO$~!%@uYRU=J<-
z*_}KBz@R1NQmCjaU7MQ^K$_})w*~+H8%=2*Oa7kP7j|^ghQ}k=G@*0f_K;_yWk&D)
z$Og}WBle~9Jz@a!2#R_2hfs*GW>Q}g<=EGaEPo~YgGg@g*U)q0gO8ZZruJ0@Ot*K}
z91xF7EO&PyQKbvwXg(Q>U^0fdN)tFsn+W;t$xHOxepi_H(=*c10<{&_`?K6NZkOck
zrk7bjuXMncX=46u0zLn;P~Y%;hfr<Q0}tsIR^K-`bLT%lH_V1ca_&lbf8=G>$E|Kz
zFQ~*(IjKrw!CysZHpM?JdTN?G!H`=0$kt>8FaV$2h&Ly~(IK_XML&w-i;M7=ByL!E
zI5EY=EI_dh3E)r;3Ov%HUf7eyGX9q>7WkjoY|yo8Fvt+`#3;^)2R5p+XW^7xnlFIH
zj~n#wsfQFom69_&thH}7x>MR+TZUL@yzLu~v1rIWVIvnjI5UW7U6roR_Gwwh7~0*s
zAiJ2eH!y=jHz?^|v(iK2_K%f4sD4`H&0l}pG;fA2)*ksspwR}Eo^yyo5@5r21QtC5
zqKhJzng^<px@Oqq9Q{5S`KwYiwUn(6Es^40>VF^>MhZ9NLMIAHYS`O`|8^-5sM(L3
zVb%xId#qrNMXOUn5jfic<f1LcyN*ZqD}C*%Bbg!JUMkV)#sw7!*dCRzc2v*TI|fcL
zB`13XpD!jkl*9)3xDSv!hJ61ncw{kK_ev@MiiIVK&x2-f)+;Jqsv-oRg8(Y7`GChl
z6Z+j6@cFQUw`ZnVv@G!T$19xywdE!V#7Qdn6#G5L@8s`}Z|^$7Z1-m{MSL`hw7kSx
z;I1=uQZ-6U=3Ujw9pT+?A0mcAvc=%dMhaeY`*b;OFQ8k`L0-$OKrqS2DL%wA!Y&*x
zwv8GyBt&2yZI97TBkguZ5F>`*(#9CS@XM+tF5hU*Y<sr^tm>=;8-RlhV$ytLe4lUS
zxFBJ8r|_kXhET1}Js>24$8JUB!QEvUARt5JlDP{4Qg|Pp0i7qx(`>By_Fa9u#L~&U
zq_Syz#_U{L3>W7+t-vRjC-(VEjFtre0ATerhtT<nFRwjebL}Z%^Jx$6G}5(EUlKkE
zX90-ww<-t2vyU!hS<V}Pot3!myCw{F2AJ3Py=6}No@$Ut*Pm))Nzh7M-PuDhnMp3x
zd5?RWkMPBHZ%bXbYKd`bYdUKQ^H33xD*5bk-yKS{n#A=d>ghc;%I~FTWzjV=EtDUX
zuWl61+OAd?3Rq&U13e{q%D<8JOw)-wGtDUgmF+z;mJd(}v#UqNrS>2F`Jp-MRo|M+
z$z~sN7-7H9wB-PRll>T%D;b@#csnrfcjl=R{4MWaGCUq3!Cj?w59yML^2&~z(eeeW
z7FwR&zUPX9t7V9$_8t{g(uZ{=9qv>NH=bs<he57Irgo{n>V(nVD*g@Q$Afimw2u}P
zbG^M_a%(w$`N%IQ>WdJ?Yj1M3Tim2~d$E6%c5fAcs++|mp8>Ph9o^Q<7<w?6E<7Y*
zarJy>lBH=gA`7RnSv?bscyaP$yU!P(D<eBOIXy7K&aO%&1M)n)pc7NUddGb@yp|9=
zpdyl|^eaZ)Eh{3_F0+t!j~M*|BysWBR{fI`712c^j35ALUp4<A#w7)`G_T8;{+<1X
zO%AndfkBe<r?gei4e;mXf~&T6NWl3pVY+7^N#8+Ic&<@k&G2vO4<h<H^4qhKk1ab=
zHhR6$o8J1?mA_O5{fD!a(46<~F_Q|tx_<+QB`T?|SPc`4V`+h#_Bo;O+>pBt*%>6n
zL_KTMONfbB+e6ph`5QwyH%Ki+EP9Q#+>XmHpZWJ;^G!JmW^cRfpSkyX5)5s~Hd(Tk
zz!rc2B)~ZJqSm{A3Na1eVsV?Rmdkq7I6eBjclkpftGDw5b#ClE5Nk>Al)`j)G`N1@
z(9Eqq>K-v1Zd6n)H&J2KMvy>DKK#Zbf={7;xSaitRc~0n#(h1Xj(sXe<{Ofb$Ab~&
zRquefE9t~T*X(j+5YU1Ah6l;%=6oCV`ee;VcHWif`ERSKdQ&H}KUs-YC|uS+)#F<Z
zN$>>*$=yPWkaXf3@)EC3R0&=tjcQC=>CXMGNHWCAPZO-nCLqf{Q*3Mn*?LU4Z@xa~
z7&Jh?zr6@F8I(oZKVH6gM)Osi%0eEsLoE9(MnHceJINbmfJ6wo<FuFzdPh!<R0TgP
zy1X$lKq?Kn_yxgIK0-Caa7Fl{k=#<5?d0)mt$+;JGON=(^bQ;EMUxT%wVG0~#;ayW
zx(6}=OL6Z@Mm)H92F<r<+ZTINgMtoqb^HFnIS!(ks!~R`GJ_<+I$bA!iD_;~joKl=
z1yzN1svzI~Fwml(_!W9f^!1(c$A-qUBBwv@zV(ga*E?kK7K5Gl=m(7p4w<fvTenmq
zlJ3IeZi1`lIVTU#=XT@2{<E@ty2W6cg0h_tXxxa$)bwcR5^n2}C7dNf@o;38INjnZ
z019p`g*=jk`{3Xp%^zlFW-S;x`tVsmor(oOK$-K`tAJy_s2GVUR@wZ{fR#3Y^({5z
z*||A#kZbCt8^@%nqKRkV0)!((7JN83Kzs;IE^VR7<+9^W-s)2>kPKvwX)?!w6su7E
z40QzTr4FfUSzB2e5a7zt<lVM)<BYj&I9Qk7G9=ia;Je>1KW=QK7wCV3d!Hc{vKDpX
z<UD)tBut09QmgHW$rL|d=K6x`OE;o%Iqe&sgSCcBdDAKvoH$W24*vbVoWN)Y3`D+c
zEsB-`_=knciXinD?P4rCxkD+-28{cqbTt-J8A9l*QAC4jf*?9^9P?E`t4nyQ@<RsN
z@L|{`*IdARYQz>w7ss5$B50)z`GU&lwEJ3uup{igt>IAl=2ADTE%w7IfeGt)XPi~h
z(N6Uy_1TY#PnSBL6|aC!KldYlqKOKP0lv?7YJqUv?qSnytEE2iZwmee>J&_Ff&p;4
z9^S%J29lCz?SZHr^jF#SlExq6eKCkf+kk!Kr^x4vaPyREGsC-=Ux2oSmY!0a(`N~B
zZrk<l*J#rED{NFo*FgKETEpkW_ca=4T%2|%Z>$Lf4>?V^hU+O@wd*}LnWYoC;E!&w
z&G)u&<f|Q-N*Vsu!NKo%;Ja{-^nu~Zw%+7CKT61hPlUy#>udTOoJxo7aag`88-~c1
za4rPKgH?w}uy_i^naY=l(vc!4sMBe>z16I<ZA0J}z|AeZe$gR?{*Az<+FHlP_C5q&
zSv!dSDp-iv#*ZOGQU4v#7}+uHEbV%cTxkh^U^--n>n!-F_=7cru)cWDGwcO#H5tDP
z85-~9;Q}gfND$aL5!l||S<?uBI<){$C(xyBau@^-4tfy`w1>4?JF*D(3OR{`GuakS
zRSR_(La(amc7dA(2&=Kc^fQ2@0ssy4hGhW@B6;fd`fnCw{IRl8slX}L{j7k6Nf&<=
z?3T~-={ASE*hxDth2_R`i#xgM!832iRmH_?!i{X~_-XCFz&=LZgSKN1wT?VoZ>HZR
zVhGuY7CUynRxdM(qF1ITaG)ZzVc22OZN!M5;^37wgKt=vo}Mn<#5!KSKHanpYRF*l
z_rzyVS>tLit?{_nBhFA2xT63#oYmIaX<c3bhZEqBTuarYrKOF|>a2D~3<N@y*_ho`
zDvkRHJZ1L)4rjSh58N-s+>M3%#Rj*o1{8~ivsgy;7=XihL6rz(TQL>e(8S^?vTTJG
z>jH*cvUQ%Sb(YYwLKV$(**$<(R6n<BbEKcCV@l?Qy35?eNo1U*rjV)GgQul;x%^u<
z8R&Ot28F-7<?pyU1#Kw_5LYnAU_5INrw_eW`H4MrdCQ{aaKhWqdxnt4Cg(QeuXC&s
zFN;VhC<Ny^I7VZ*JV(p*b!BxhdCE-d4WiN=Kii#=p{DcN>l)#^JkGY$2Krn-lUE<h
zuq#I}chVXjk<hV(1L7$fTkJ0$kLx`F+-5XjKl%k9|0I39^3F7(Wi2))iUa=$2#as7
zATGbQ26FriOmyB)%-VHdh&8GYsXH`hDE?GD;Wj^YDgn4nszljTA$X?Qip|^#@nG7U
z9AA)Y>ulY8Y_j;sY;dOEbejxNv_7abTZ+>E2*qt`TWcCO*dcY$A%+qKo^=@J$Rwh8
z8DA0}%<E;v+3dku2@#O1P`gvA`?;{;Wts(H?0_Q3NJ1=XB{J2-f@n@=%*OH&&-Sdh
z^h+4fW9tu_MLqj}+ULsnyKaS8ZS1*tPh#hof1?G*_U7o^D@`xcj$99g5wc_g(bx%J
zk!~^8+4i(w2+b;~TAHAfP=8{zNF31jIy_75I)G!&lYAO@aW383Amn!OyzYFD2{8;x
z<qlcx3~pOfIdlNX=7P>=S8UbQHjl8(Nv)}wen=vtM(@{M#5<Xd(Qro!^Kdl<Co?UC
zvg8a%HNXO~yHep2Ab_{|hhP#paN=!?Rp?reO#j8Uuw>|Q{}XSsGRa~6=CcXah})N4
z3(6_6Wh~b|T(F)%2=+<{uC+eE+e`~FZ)ergJa-`vD74>XS#!aICtqj^dc5*Wm-{+6
z;Bq~sAdTG*_Cb#GJ$1=^YI&+XR_AB_v#WII(La}P7Pqagn?G5vBa}Z8zhk%je0#aT
z>8l^#!i)pe-gYWWh1ep<>hWHF{oJzew!Egu?C*3d7}V$dju_+u&dvJbVFZ`}_X>%a
z<EAMkOy}UDjPN^vVPy81o}E37Pcdpa#HgzExa9)W3RB`nK{8({gqbBAI~UIU3xRG^
zxWM!de=0kLaTDf3?fSST4FBa%WY3>VC*=_lHY)k(-1rl*Iqpqq5e2^xvjW>ug`OXE
zh)Z9ssNUardU0FKPV)hxpTAxH&~&a9I*lpdk@pAAlMPxzTav3XNU*Gs0NCT3uZv>O
zY!)d>&h|bfc-?Ti8~g)%RB;ble{b-JDkzof-FY1&awZ%xw{b5d{}Ws8>}OY9eaX!k
zI-ofP(c<~>umPpYzOTZ5p2>F$SRK72F5g;53A}nPf^6Kx+FT~rgiLN!-Xk|mKfYL2
zD~(W*kAGwRriQI9&+OUK#mZ`=yvvTUI>mD;a@SXU6*h$JVVj2$=$KiTmA(>EwzFFU
z7>JIrP{JdisC}K$ET3$*+8#jOaC;&)%s&E|=D-vugq{AVU33{Vv2-HZq8Y-zer-EE
zyTlbAVbbOG&?;dz+Ap_eR)`I%9ZcjM*b`GV{K}y6fV@g8v)my%KpQyXU~ADko0YfT
z9_@#;Q6VgOFuRXrJ~i95@hsHjqQo}tWe~_`ZI8)n^+)g5()p!5xl}fwby24mBvG_A
zjk8$970+71;yTkhUTObsYq%)Fk_!N1Y|A{80Mikm(PgT(1K^Lood$mGL?>{YeDezO
z<C0F$C{LdmfOnj!P7VlrpIKPNW5ZZbvcab`&{Z>*`Kn#9wy{0o3}C)lmP*KB6zewm
zRR4o_3?hS=R_qQZreld|sQ&&qy)^#vZG?{lDc5mX^MUZpEhiV2ba0RX{~1ll_FnDj
zaD~LDv|{CQKHRv-4VOaIZt{6PF`#$A*+t~hY{=%9t>%;N+TO6-Q7eD)SMO~??J;7m
z^gq;`69r&b0;o9>pv|TJ-<(})_00ZO4W|-|AXxCqZD#N8bljz>o%TrF-?{<UcgE18
z;ae@>>{GfKI?vn5NrxQBJIqFZguEwRg#+l0i*I!s-IrMyGo9++G48Z(kL9|I-Cdt@
zL~go-|HV6g{P{sNM><h@=HGb7pC4i|X7We~1GCSMj+UzI=IDwzx{ygTf*Sph@6!y4
zgT^_xQZSu>>aAFf(ckk25d`Q|KNR-pHyF^$lQ;A*OA+G@Bx&qrJFekds+qV?3#{i`
z_Rf}T9?Xg{M8mn#AM&Ex-dGm$=vaz@gH3f=iTfP}nPpK`)2~DVdOS19OIW??oJ(?Z
zn+VIMk<**I_alvNYx=_$WoSyohCFA!__$2|W*^X%CyW843mi2-CT!(oL>^#t<);tK
zCxC5BL5dqjCq<*GSO_oicyPbgJND%jkQUeLn$4Fz1QoWd`{_StOL<9C7%yVKYS|`$
zMs7-F46vE)iqJQ~mK-3HfmE?wkB*)Z*pm%Tk8b)%LmTW%GFHh0a{h`%%I`;`>kRs%
zc#pfV4P++$-*Hw-xg&6Cq?;w2UVr@IUBD<FT#FssT0+m?nwDnuyNYaS?R8Vo@IT4@
z9b#pt<H)M+p(ng^-r#h9-^;-ONzTN{7Pm`^qj`WXn1oLmT2(_P=m=M!Q~#APv#Z;y
zFMdqL@2W+(W-@akfeAQ;)d|YK{;w1n4cM^ClmJX+&ASmKG0(>?a5K=i{wz=Z3~o9&
zfOnE+A3`Avj0qB%ocMG~R{telznTeu#ayr^6ML>vN89?@qy><(Ig^V?W+V4Cf3y{1
zQGzzjuyG50>iU^lT;fQ<!QHs@{U4XTa0_v41mY*4QQl>wjhE-tVt{R;2wh+E(0$~x
zE$Z4c@5Hrg{a#&5_1`(T?ba}r^WAK6L#=$NFLvn8M1gvn)A7%|B+gHv^nOgP<zhHw
zftmN`yYZrA2Y}90A~1(Zw^6|DHEZGj$KG28#kDr=!VwbO-6ev%!vJ9jA-KCkfZ*;P
z+>@X|gIjQSg8Sg^?#|$F7Rlbvn`iG+b?W<mogb%aLJg^8X5DM`-FNqObzd!-z~>4*
zTq#M@ZS^<wvz#>A<$Z1Yi648VrD?~iPmjoWvbPY=g!B7fa)q5!<;Ejk@zXyNeVsUj
z#Qp!qOyA-GMj65+FZ%Qs)lT(LtDVW!TEvVE2JLO)CObcS0d+n~dxgyMCVCgXe9U_t
zFig&rpu=ruppZD(vI+e2i%~nnswg2Y^!yli%}&!6cD$x3>P(oW<7t(}9hgscsTcGl
z>%diP7yKUK$ONdbjO<7NLfHX@0$Es+5>6>V%0<@|$wxI`>uKMy@BFAkjfKy}5pu&`
z(ADS3?b}rLYPZ2_OqblB<rZgR0I=ie)tUsd=b=-rY@s37YU1Zhb(Y_FWKN*`(KCm$
z5YfbQXZ`E}^q)d%kJ)^T&PNW|e298v2g+cLzAF<7?x)V&QcM+6x&qo$X;Es52AiKr
zO|LArO45iMHIti)wKsK$u4_g*g%!PK`We)nxunc=h}Lm>+feU*HlPgozpq4FR<$Lb
z{uF_iFzFwICcSorp+AJ6@?(iET)E;5=#57vO8TI(^L-bP3L6vx&wuhD(Hin0b}2=q
zGj2_T6$#`tTDPOpE(`?;htFO*&nrC$paA+stIh2Aru?wxB@f~YY^}r5W52`~_}ml<
zA8ZPKxK(umM%}8IeFtnR1#wFyzVd*ZjVvo@BF(E$HV5KzE%m?3J-oXlb%5?kKogM9
z#m>sk4hikK3zc?*3wseNRmP8TR}C+JHf$$;P?0qTxzUkxcw}UxHT!~q?K;wIt$oNw
zzH*TT#b<dyPyzQ%SrS|ZTElv3AX7#p&_7JhN5Vt;S0?*Ej1Qnufb?+2BW*Bw;*5do
z`KlI#9=d<48SNnO)GC2W;=`Rq0=iwv*~Ldayz_3-J7%A0GmYV3#m$Uo@B*?lr+6q8
zx}#M%j*jmTF8yKY+6dRK;0%cm&q<>AMJ2d++aSCVY%MI1ILhYw)?2W+jx*5AnZ)Ic
zpjNe$Lrj3$A4JY0MC&(>TEOeD=RfZbd#DRZ;CtE=LrqNfWT~PR=<OIsu<iM!H+P8X
zmxlM+g>59@M+b2z`U@UZJ{I$1m`J7qU}BhWSc0a`*f#rc;n9&EDc>P7$)xn|Z_LqT
zZQwo*wmH!mp)0*mlLr=WyKOoHdBcn$qlnveM$_?4lefo`sci9Nt`M(}p^N9?1OcKs
zc{2TfRIRkMxnhdRbOa$!0o-Kcli4mNf=yBqQL4<(C!eWgDfR`IE<-k~78iBn*gGL*
zc_nBE0QxUet04>my)R*|9P-C}P}|up`vta7Qks{p+YaLVLIHUh_?-V+>53H4+vzKM
z)u~p-P!2uq!<|k&2)JW2zr2+>J2T6_E)ziR`CZKV=ELj1gyzs+ipL=3Ddyvlg##+=
ztu?kAPVO}}Yh*w=@!T9h_E3Sr32O$M$S8cBsr|rU#bbJxkk+d*quXSIjzILML_|bL
zW{cq*t7baxHum-gjOGn%$s37DNta4^^6U(IaZICh;j}rv=7%*>KnpXO`_-u+yRsG#
zE3UooCi|C3k;y$UX&G_r-(m5mfjXtde!eq=^<+1Ayk#6rghQFYY>F-HWpkc;1fIfL
z^Fiz?3+M0eJ1(9ZjGQ~SOcIln(t!|;2C7s1)(fVOnKKM@DF6iRB_9<s{wOH{FWc7@
z#BPa?w}W~AqmeeHtKZf6OCqfjYuUJ!uh!hwyN@o)%nGy7`}Q;!*EMeIycw6z4<I3M
z>KB?|ks^<QRyLgYRXAMXAX^P90RxOIrD$Sn6uz0){c0`143nCmIg6Rq$sZNe9^X4x
zq(}vxz+>PQ+UvW@XZ3rvi^rZUQ%80PRnSBu$HTeOfR+pXqVi@IO6H!i7$D8Fe-}|9
z@9;^I`PumhX9k|0Jh|uWRYyiZS#hdkenW(=(<(P>wjjVDN%qaxIg*-;S8S|xfI+5y
zg->BoBhSPCmUZd;V58y<2s8l!R&n++zoCWOPwJ8XaxVXUU;)krdCxt%k@U&r_P@g{
z3QljwUHl&C-VC>Ib3G)L%VH!;@}>rng9G~EJee<Ys@9&i3X@)q?ahM{THHH=pBpj&
zc2-Y}a7v@h;fCUkJ^i_i8<=I(;)i$wo%Spz*Jq~jYG_zk@J$QLvo@cpM6PdWsF^~*
zrg`L_g}f64^hCS+=Xm~|#Q$9b0CW+E0;z<qtroamIR@^ikpCJ<F=lqnoluJzyPPT!
z>+YuYW+o)YrHz%cxfSze&@E*(TmKW)uN^Wi;3Bkx{Sb(Z-t04<#>rQqDB|j?UZ1vB
zelo5Hnchw*4~F>_k7XUcZsT>ld&0$O*&g6UQ9qU+^K(NwCDnRlT`qK@Nt*HFczKXR
z9Qjw&0#daj`V|ZVnl7vCNXl@ZZN+@NQ2ZGr5)O=6huzgRz@qvS`Eb|iRoWmU`68Sj
z=Sph?wSP=)0o3)uNe;TuPaxVT3s`<S#dAj3(r}IHbenZ%x_FStjWnHCs;|Qq$NP{j
zBv&6EUY%_>Z=$z8sjypFr{}V}fSa5sLIeha#+tXs6*nga@IHu!)~nRG&^w1!|E^me
z=8z?bcZlr8!D}hxlrWtn=ud$NgjW6(^_d)c@k0iP`1Aja_)jgWYH9`Vy@jgrZNaj-
z+B@wJW&Gv@yj5O6i}%rb>vL3?fOmJ~eSXNZE>58JmJhNxBtS=2JWB7mkf{J{dz=+X
z%e1?M2B6>P0wl3#h02qeChoZ;xC38E23$6{a#jj7aa)q-FVhYJ$WI<}S-SlomxGgK
zg0%mLbLc;zy24p9EGbmTl>_m3R}#C#&eYguyLsp^`0kbHcP{>X+GNB83`_I{^k+>a
zyKaEtYKs7*<R(Ds%J3POeWpsu5<9tI2_&@Zbq~}+)7_Q0LO1=mKCcAOsN=<A(9^}!
zmqQSnkN^xaIQE}mP{={MxjkQaz5yS?3-HAuWnlOJ85H`r&H1`NaLL!USQLB!gwk1V
z__t!#IraZZF^hogA9`7h|DW`-8bdUF%z<>GEP}r!*L8mJ<P6vHesvG`O_3`_YFCl$
z5|$qB*J4{XnnWTD7Vk9c;cKC^V#lpv11md=0Y_${4gZRJ!EJ@yi^l8?Oe>2aF@J`=
zsRr6|<1sK10maPVRVp@YHnM>KH5E`bSBUgd@~f|(iyKm}@{h0Nq$Pk#Tm8<2rB{Ow
zX0ktJV)krJpFn-vp}NKHV@7|;FkD6wosXJswCXRf--Rt*g(Y}df*6wpV2{^W-9Lr^
z`p)m6`!>(8j7=gRy6k`U14tdJ$=C@lY$_V+Gv|)2+iO%Wtz9NM#@9%%LcrKx%9F`U
z%(l`lf01cw7Vd6t-yNI0tyVXgwUjcf$mhqoUKRpWGv!o+5$WmXTx<#?vHCe5t!AU!
zGlzpYSW?ydtF!%QM=PBxdlmPa=t?>3>3g`p^j>Y;gP6B~sRf&J`@B|YwGIdE{cM)o
zNO&0P2{Kl7){%&zczjAY37E?TT6HMzB9h2v=n^?$#iHpL&YAyzD`u(L{HWLgPmc0x
ze++0Ob=Y8JB|}tq7f^8Kn>oG<Mfy+M*_$VuTPW$sfxb%$@+H8~1CLuh$f#CvYz*kp
zy&-OQA|-FZ2AAzJw;PJ}V)NrIO%(Ig2@sODX(E8&pa4hoMmyD}kZuZxE^#F~yil`Y
zuOUIwTR@Qci4am|Nb-3(B<C%uRmhW8Ai!$@{-|X5oXVuVg*UekToVPf^?}jU|MszP
zzlzLEczgu#0JiPp?H>YDltO}9_cjiTpCQ_xaRG)d1I8)MR^-6R=XTaqZ{owXlbm%9
z-wut2+s#l03gWx5ewe+Ui=ZL5CT0j~S<$n}@x;e~kP9wpqu_q({(3yD+IXE9&t~r(
zZZ|;gYBV?yKSw4WAU!rPLha$P|A^>^fa3+^Ku3mv#$N#9Zo#<ji+3j+o0<7S*Od=V
zJnx~`kLL<z92XH>tNqO1Zch~;a&dEmcU4N9&=G3KEoWimvmscLkJ^a<kP<vy?w>|C
z^+sg<&L_ZX@5=t}yIfpN|5Xi8ebN|0atZVY(d1p=wA!xsN2<r<F26uBX{8G;^{NEq
zCLk$IUV!98Yeb5`;!bRl+@V|v*qLE_WIDLl*E&-yhKY~|V@5KCn-GUijRMtpeHZ4Q
zg*SJ1cX6kx=<qNV7E^ccnKGvUs(aef7a!M$0oHoBZKz+<9<@hf_r$I&Suo#pv%kKY
zsk--C4S&*)DS{HbZj;{=&X&WPezxtGCB_;9MEBmO#v?7fIM3H8FmvhE>PHvpOqJ<5
z(J25yX5^Rx73vvow(@{Hx>YkCLs+5a*?N1ztbsV{XL(c~?dD41cX#D_^cA!NKH^Q-
zUy3QNaSw_c?9bLTuN>)fxk5oix|R??;Yw<pF^)5VwfRZ(L@EORBqfrh?eeH`^C5^L
ziGO9_Sw{6jgQ?N`<k|b$+m#4`?>gQ$pI_UX3?*7BPRW)uD%fz~ePD8wAyO_8Lw0_k
zYW`H1dJgpZf8aCBQ_6)=q*3(M=o1&rQ*fw9dFC2Mz)Kjodq|@6*?k{qjwb}J3o&1*
zh`rc{cdpj%2~tqVJloJoUhlZMjfd;`?tnn#aj~fi;r0*!OKgu9cGtgLU4`1L4ge~g
zj;AoeX%kekX<oq)M7CcN&Hs^@I_gGR7x>>wOdTk-*UGSK>(QOwqBV~%pekxWxU}>3
zA$t49f5WXn-w4*{Jp+h-xgM|W-dlW^5+O^6X}gO<U53e4mYeH|aK4?NOofe&jf-1b
z@OU)iTx;Et0Ro6`BY=Ok(t!+3T>L@T6VFcj{Q{NmBo$8DHy9fkIFw)j`7|R>pKB4M
zW*+R72Wq~$wl-Ma8l5DZ6ylfsnE556|8P6A$Nm0&i!BS3C?6P>bX@(p57>S$jYn$!
zKBs;mt-pRj|J6M|ps`I5lnDlb;9b7WSX~l_@@*PWbnSG)IEPDoc3j+t{aAB^elX&<
z&rR-7E}*lYtITx1D((R)(z*X0Xer~TFvt`^fa=szI9X`x39lK}(jLq+t3{#(LnG0M
z_g$oJJX8MXq{|)oYwO(;Q~|#)Go;4-U2flY;g`D1Eo&^L0v#iq*J=5o^=A6USsW(=
zRXM5-QyPRV5;&!yFEBfiiP^kx*)7L#2493*gO}R+w&W#X_@*7`<JtWHO_akl^z@GA
zTI7WCF_5K{mEkZI-m_OdQJiQPswT_z*P_%UfJDqiJ+I?|H&9xFUq2UWehAyujoHC$
z-R(fKJw_A@G(a|szUC-plO*DNZZghv{~f(G^^BCw*Y#c5D2W!PlljL;A9?u)!o8Ae
z@Fs6fyn1k?`U?$jhl5XDgq}b3h#^7X=95yt<r?dBkvHw0v~g^L0|4^5Ha{gn6NYd|
z5XWK-x{)sr6bz#;6aqa)fRWX~Q~(bR_ZiERDgB76&)wdUVI<vEcyk`x+~J>A_zH0Y
zpH0?4r2R^+drIdskAuwnhL7E)Z|DJ)wBA)0ks~7i3><hrCSo3Yc61;-nq78z-v_fq
zkx`M8z~w=Ax+fq5B&M>fJGb+Mc@ud?G7S4W;6O^6i6Yf!R3JG(;DzHaftSK!H&RSn
z<2@xn1i55haem|MM^SnJv^$ngAyoX8k?984cPP!cU(Y4RZN@=B<*i4~vP(yeoV_Q`
ziPSHx>xU}r$LLPCSM0be#_b={%-=yVs2eYwHU@~b6e>&<F^33Uyl1-82w`Fd(}^1U
z4CyZN<+D*<zW@A&B>0z1Q<u9q%Y#f4VFKG2F9X}={yqw)<vd#nv5ep!DotMTljRTa
zRJ(Y`-|*BQb{zB2cd<LF#>r&r>(pZN=2QIzU6iR-or=|NDypRkq@~ZIVc(phnXn7S
zDa`C;Gp4)S$rkTuiY>B*(`A5PGY=AHNUB!n7z9Z?oX_WR!fgv%;EGiOrMX7jFcadc
zf%?kn){b;FAP_w3e)){w<MMGXW`~y<wZ2eC1~a+*z5L=yJ4F9GH#y0)Ny80}S<~tC
zq?y+>w|u+zLjl-P-yP}*(~ota2njh{P!`<<7Yxyi>w{-3mW-7me$<e&L|A-A$iV@Z
zAKa;%peyuTuz%Y_tBOftHO?9n8Rp|;mQ+DJlar1B=&kYgR5t1Ebi)Kq0$#E`Fg)YN
zTo)wsjMSF6*@{9s#f90s+a21BsnQir2l8cfF~ks10|J)*WM0zsK6Rae3{m`2WI6?4
zvJ@}s1ywL(xIo6a7T9t)L-`Ae*a2BXAO+4{Fqvd<;Iq#Z!DLEUkGCGfH@wh+*K|36
zZ-_+;zIVnnEK~kEJ2&tuw%3xMbP`}}t5_GNrW$tdpnMgrr0SK!o6IXj9n$7TB^VL1
zn&|Ih&8M>kh5SW}6zb_c8|yi=3j6G*(lsp6E5~-tJL@%LiOVF3FFnuqF#&C*_mD48
zs0tOpR#4(sDme#~7p0Fo?#>FQ3y^L^p_b`GK3mq`#mjfh^Ptw4hxi`aPBV@Ww@Cqx
zF+D4cP}DkgO8n))O4!LD0;z@kV%kEck@P@a{G{uPfG!S7O@}B++LK<wM8!Ig=CL>#
zO8RZPvNmtr;?73%-EGF8!(`x>awe-1+3ftoaGno`Z}gK`iA;k0zMtUGl~Zp-^Hi7)
ziIAdTr>$bMS%5QCqKZORI>WQHEYBR!)J`hf5jVt89VOMvncsTQJy|`R*?sn@b$#F)
zuQo}<hUMZ7ca)}+)Sz{fPI_&je(mn&b}Y>6yD}E(24`aVJzJx#uuB7j#+~(*t(#@;
zHpUPA-C|AkKc{9nq>p*l{q~RKZkrE;geh!tcU*Gl)VNco{P&?b4!ZD9$R0hsWYKj{
zErGJ;ub;S~R~>0AcQdb<m}Fe0Ha6Y^C=GM6{<pniTwbW5QOcw(k!zEyloP{3v98Z4
zS@w4EqX<7I=+@y<>nTLwo+}VK$x0I7W-vsG2vwkwO@mR)QxGlSp({8I2`lO3MUmf;
z$myDq58fo|VbumEUDZ$xVE8&&`;)*ve~k9%&zHB8<Rfss6QA1^!9ft3G%+8IVDhwu
zRw-=#B--M)2>gW0LBb`4^>m$;&zCIO-_2WT33j?JIK8jJ;zb|B2f(l6E|)}KWZrJE
z8g03~hciG!)w2Bnk)rEZhAkg@g`-z00>W9!5RLSoT<OBs-H3;?#lXRNM|9^SBv;zM
z`IUiph`6<<^7_2>!=w^Q!#8H3=ji^gc%KEr4gjSh4!v}&+^*0>yp@wEpsu!uvMq!;
z=wg<~D<HbYlSqqA^lKYSo5Ypf7O4D#Ij8oTet|N28mshr?AVHnsb`~BB9DDMm{BY0
z#7ih<Cd5&L51K9#v0CH!t}g^sV=KD^_M1&sE+pxlIkVI3w3|9o^1QWA-d<kYx>cAs
z>UXdkVAS4@t%-nt6|oR7?qM{YLYbTlY4mWfJfIvGd<6665zI~GqkEDRUe0A_^pHNa
zs>(Asi+y&1bln4|DvP-^q-E9Tz%Q2e$uI9ddbJK7H`y(Jd!VKg5gzfC^j}wxFxn&8
z-mAEE?&&e>etjvb5Y43x4#eFM@_O#|2=2dLZ|Yw@BG;-X;<yc~q-c{b2$K3t`OL}Q
z54N6V9$qki8ZEZBw~AD*sYb+jtkLux>$F1GJNY^s=J78_+E1=gi83npUVt5oVQUVu
zq@W7}X-2<o^7l_>jOK$@JoMBje|_gmswY4enGv#_P9+6!XKBZ4z1PC`w-wrG%a`q2
zK~n#9Wx$2L`GI+uhsG$G7Zt^B>#uTvg|f;2m>3vKr0}Y1#)E-^$gF)f_x7Ea<NXrm
zHv8>otQqUcDYLDw=mE<OZX4vpO<4FHf+ZKFD`lg(Vh$C-nJE~Hu|Ir-<0gQbr7jYb
z-Gx{eyMy)Y2H`5;rvK-qN8z;)z>MDF@Rv=$=YpAJ1$6w?so%b3S!^RWnW?fQ)qnX^
zn{u`2R&F*LjnO<_ArDUczqi1z?GX6IYr@wlwrJi9j`7`1qr6}?8pP2hv*}guU4s~3
z7O`Eo)fUK@YIANlie-zHVNB%J0;SbjFy4J~L&hS5^!_XhXbTv^7%221w~bua2Zx>v
zh4~ZAUmO47CND0)99|DLb>cQW{cHa@!ubXS$jiu}&DGe71n+V6Z3EUBDAbw<v`<sy
zsg}K7gQRF<U)~IBUt?oB!5!&Q`0oAr(0;!kfOC=zbUZf80cm-I9uI_vu#moZM4oK=
z^!Q+k_jK8Jj#;Tt8T7(^z7lP%KarxNHV4fU?gq0yObeiMqmV78GnkP{SyT{C(|-6O
z|M~GAKy@AJts&JA`d_!JSYmPUrw<l@6lW%d;<L&n@z^iVbtc?R7g51(ZvhQ?w3_uY
z5{f0n|MP(U^Q4fTpe^H5VK_VogC;r!E>`K)s#jQ&YBAm^AMj_?p_0fupr>(2cdSOy
z>LZwF&|sEu*86^a?!grGDTZNUc+NolNv@9f6E!pE-mW56&vZ#ovn)V2Ef|fWJNM(4
z7KI!c@)EZg8pR)r1+7;FbG{CD7kh8g^wr>Xv_7`O>sw1a+OQ=;eM3adpBl#NLE14C
z<lp+~_XhKdK-Ymd0+4w&kWvo=3f0uW0ODo+emejoe~kbK_kEV47VIVgtTL|S3AjEE
zPM7z;Hzx2gUaY|KxYNHr>LqIv_wp&s?S1+jH8ZpK6e!upVa#apLohMH?`wm7!sWT#
zN|hQ`BKhcqqB3a3Y5t|x$y9=!`vgbFoMY#6`oB%%;f`B{J@R!bv<B1v+gjCuubVo4
zUu=rD{Ax0_YWAqOn91dkY_^n`<DvfmkmUV>qt1jO0JnG(M7rXu)WPt$FJy8pEZsTw
z(SXsx@tNWdo})G~emUYFkE&S__|zIPgtPxVwEw*6gCT2U9eLmE40nWaxR}24r<wfw
z{qx6gM@U#*|MU@$;Hm{5fkB))m$r&<M>o!PL!AF!*`I%-4F4u@gNAza&zti5>|(<7
zLW4-Wc)UU0Cf@85QRwpzU-{p^;yqlw4B68^Hsi13m~8RkN@u;+Ad2K|CmTb;3;$X0
z|Mrc>D_~#cXUL%banpV~qh<+UVXR>=i2-Pgk5Tz+QU3K+zrXPJPaQPi>fd-H{o9NP
zfh)Cr8Y7_WhXzRz!FB)l%KtpOt)d?c<SUr(&ztu9Ju9%VJ~j+15^y~X=wg%SUtjg-
z9rAj3EKi@Y{QF5-JX|TV%AE$lCVP@-o+AHi<$pNiH~-Io{_ioMvr4ps=JxAy-qpsp
zDjY^)G++2K1y<hvA1-j28nBz?t>)CJf7$|CCt#W(D~}JOTV2HiJD=1`PxuXIVOE*f
zs^#mb5hyV}`UE1RQF;7lX!)=Afu?|mX+MKoy!hA03jli^SD;f8(49v-O2b&3;w1W1
z4@VJ^d?O<6sGXYcNGdyk)SaW--3RzKz5?F{kCk=F>0(_>fI^5enaC3bN=T(9-we9`
zw*PFHn=_B4qFWoDKq{EWxWF+`4Tmt6h|zqxf`y3iJ9Go~cru0;8fy06LC^m<EH6r!
z<q9;*`=2k$-6u$R9QmUdv>KO1?{6(qNapHXMzh->pcm(~YD`rk*ZD~(TD8(CKkQGv
z&TY0r*>a>FY1ZC;=GP(wd#2RnJACQ&W$02bKVfM&+R^pt&hs$H(U>pq;9+?y<RA83
zxQX!#)pJy*lv>A~Cv?DV@c=KTESi_wPFMuYXGo`nPdClRU{Ff!7Wb=qGw=?WrT4J|
zp;<v{WVRH3v?|*iP!kc`IXF24?$AEKy_;r46bjSid%1{sGTNHOyBmYH?k5ly+xn=(
zS`Z8zK6uP1sDJsUqj<o39JyQ!I{njq1hPIkQVPVyEC0k{aYsAQe7WttBKGjiA#dTP
zkvq+W25BB^y_wG7=z{vr`jA21u7->mee64Ceb-%1(w<}djqYJ}MNLx)m1ei{X-*9r
z`J+V;-sUGy;A7r6IdQ#`j8||P2)!?41?G54yy{g7wV|8%p&?ddyB2IyH~qagyfh&5
z8fGBCcQ6Dwo@=+-WD27vfips=rV8QrV?7>sepELA@5CeRe%82haMChzWW#@T)TD6k
zym_!8eM4$}`nO|Rjsccw-AgJ0`ww&Uz7QkRLO3F83AwUMV1usYaK0;R9~mqUVDK9<
z+7bGA%RB+&1eFYw`pj9Q$lnt+%+B~8>aa3%m1B^-)yr-aW_W)p#%!X51NhFsE+jlq
zR1AYUL&*HrEl$I&A>)bRsvy}<G(a*E)qeL10h?aV7iZv_UWqTv8Ii>`W2)SlmCp%{
z0oD54B4c87jP?_iw8cby#dhgRfyY(doJa(TEQE7DE4?#(sKRt2Y`>!t4f6X5ue=p}
ztpw-9BJF<pYweLo!O@u1C@9N7O1%I{;lg`Ogz=Z3z6k~v@4=q9`LDC4jlkQ9vTenx
zeBl<vI{v7=>S=on8YJ%#Bsrf|P%B+;Ypb*JaxedC&1EsX_jEn9Yp|U5Dkc@-5-oll
zH0gRbC*A~0pE;T<CtFu(P9;q;;md7E*yZCTfOcWOZpn6aVqHqB&QX{SuzQz6Rc2Ss
zx;d%}o!!Lb$zkXvX}#eMnm;-vbVLV%UX%}UKk#ON^QA%i!n8?`KS8Ed9Y!N5yU}ey
z^!-W8*wOL$CB}q9gEh(Pj1$VjPSno7o}~B1dmwYY;4=Bh`p@I7jqhP~33oGY(<QE!
zvymr5I8N%oxR^VAm-F)x64&Msl$rTK*HLGvXsye^7g_U>g!UY(nAMKjCc_pI{#4|E
z!V%=3oXY+m6jr8?C{{C?pg6Zr9-|e5b*@5H*$j7`jP+XMqoZDkIMA-U*=TD%;n8$(
z!}uD(Nt25B&dtqf5QO&mVG;04jhLiB{a+_7|7m+9$1>>DmjL=7Cs_;z4qn>RV#a@7
z|4WT0M^b_3Q`Mq&N5|2=yn4*1voqlOWJIZ<U?I*hrFspX7sz>-Zyp;*5*X|oa-`G?
z>2vrF?|*hhsbknXqKod0?n%{9{^@y-o>WT!=%opy-l)pS4Y%#*E)>o>zfa{Pkx7=I
zrV`3~SsQOKH2_4tTWvv+Q8e~62wh)%lAYJ_dpT~qy%<lHDgk8TTj4^r;4{S4Y%FTI
zYTvtoBwo9#K2@<8HtMzhgn+M<j@r!t(rsSrwuayrAdunZMFePo@;L9pqLK^(eS%ct
zF?|db!m-4$DC>He2~`$DmnY;=)cWrL{5+&{Nu#x;h3X|+)Nq!hxN4aSBI(|iGaeyh
z8Xq63{n5~??;{2xoi{cPc`iLu-{>8C_vh+FCJME)fyotede#wL(Y&~sV&8@}S!Kr^
zMVM^vJ>sg3lD^aFSr|fM`it>NNTh(hly0}I7DcN(pwbY#RU5uls{dx_^ANjq4Rx|s
zC!5`icbLfoj7e^KW*H&a_3cw*&fC4`#JK2J!tB74<KWrpzA1HC2m<z(yaP`W;e7l-
zG8FmR`&SHgLGt*Hcgx?&u#Gz1spE?R2=+L@?*7ib*5!-_IGZG#?jXBIwuDJ^WNjm&
zn3ewwEXkJ80v*ACz^F%@)w@ogWEc5B$5S!9u{#bHH<L9`uCdz)NP(*C`cn!e_z|w%
zB2U<y(-$dCPo0sG(Qb^9xkI4OJ`e4n_OOss?+AX{VVh&l)r2(#t-s%`0R|ZvB-jhp
z%H-8W?_7RbSrirau7di#vHV;5JYLtm$L>US!Q;gBhGmvshaWh97(cFc<4yFK#}Hcr
z&vsIa)UL9rP10H7nm9nFc-cJ0@OfT>9_Q8Cz#eHs2)MVBT!sR)ZkIZZv8tWm=TPey
z+myR=#5ckffSHB(r8aX{VLeeAjpzIKIUD&!T<(GFCso|#D!$(J6eJG0QNkc#vd@WP
z-u-Y$>0>{Fo4>UHHbWRGhvF-C)=CtTqNwGDi^+X*rV$ktzl^W>A>!sPc>M&QV(IB~
zn#Z%9_D^WH<HalClAip$Y{zSYnJY2H1<cJ$<-1bps;vSr?8RiRl>3&$h~bvQmBdc~
zDOP{Dq_uZ6-Ide$)4BUb!}(V8Pal6#k}6#xSo!|#vCWSD1h&16t(Fc@t?PNAY(Q1m
z-7aQN6m`0677Jbc_4W>Rx$esAT8F(_nwZ|3%j2PZzS<y%3M-!dJeH8R>-2CL#!V8A
z#b0>rO=y%Wk@lt=L@JG!>ZcUaoR}-}`{iPZ3Da?u!C<iQaz^**hPEg7Y1oDsP)@zs
zY1}jja37o52ibDphBFgMjsP%C@^YPbx>27piO+E$r`0VObWK-bIpH7AZoI4TGUEia
z8e1Ph!k4C6wlN%=rkxlAGZ335nl4Kb`M!EY;uV<dWSHN11ytVB+30Sf8S6C=O#BO4
z#U`W`$EiQEH)-!tEWdxVTJe60P9uj586WgHk6&9DTexP`6lZ}Kg@i`}HhG$ceqAPa
zBRPG&KVewS8d8iZ>AJisN&x!6rCIByI^F-7|LNEd*)WfbEu$5#wVs$v(xwD(WP9SZ
z^HtG1XXx(KYQ@47d)M|YnE364y+kar=I!#G>bGp3BK_cs=uFP_*lafjt@^jXJRTO0
z{KEs_4oH>M7@-m}fBocB)w}R~*7EL_P45EDrBTd)5NUpKw;ROH*@Jt)tF-QS%O2Qi
zdR0!kS%~)f<e&~{$sN4Ag{2nqKRwk5T5g*tUzbdHd(GR^*K0CAay0BrvYo8Wv(L*j
zAjHn0G(c(~M9<e?ad<Z$caW#4@*5Diz<KP^SSAh<0v>bxMe|YR4KE*1?DhaL&?x=D
zqgO5UwFqu1;5rg1U+ay{2DIsC>^=!Q0#hnJQ?PrWoUMwsoxD>F5?K79T$Fs_G<>B0
z6L7B~3u!-(Ri8|3L~zVhm}WafLtK=8s0h-1lBWj7@F+BSxMxEZh>36Y)Hm8#aV$tZ
zZ=j@}^yXr8UHNjEK<AgrpaMaiDu4mSa)v+uXLfn_aE^H5cW2)oW}#V5T)K{)Zlt5M
z<!wj{9Zd8H()EQ<`w3h{816NSVRC4aq1c*A^^1S_-pF1$@{Mq5)O}yHraKSKvO^np
z^R}k5FW}212Dki(_viN|ku~6F<Z<eETKL(ix<&}Dw~3Ri2M2TusWu$(qq%|oS&oLp
zsWmeUQ&G9m?=ss$eomN?*5{g=OqEKy^0=)As)bok)hZ%h?XE-+ZL^zB`G*q=EXmC0
z=(=C&&29|ONOqTE6Ia?k4!NE`nCaZ&$oEUQo0PDGdQ9Zvdl;+Ld_CdFCAK?~g#vxz
z!lX#IpP@H9AU22O*_!r{**cC-MRMQ_PD`kS@h4$E_MQ5SKKx$6r&qF5!<o5`DUBT0
z1lVu0Je$rpD@f-0h1ooH$=vz(5ebKqCH=B#XZ_(<I?$>h{71b*Bz&&IQ<T?N`tRJq
z0BKplh=Xc&Hfhadma0>U#^!M|^)Z$nXu=1g^gT2A6jF=(mu+9@-iA?^IBiCLA(aDW
zXPM<~bD>^lI*s6%Z;oz_a8#zN>n^P?`<)QgL$^Sv_J=`vs7f$)h6%~jB|J@bHXP@j
zCXLcfkIP;9r}6qjNqOVr*-Y>Z_;Bt^tGl!w{czABw@R9>Kq8;ZGZ4?n9{8TwYrF_6
zq*y@}OJ~E5_*GFDXQe>BVpb4K|IFhj)cyg#UgFr=j170rTjA-r9f}6f>wLG$yGz_N
zw-xh*!v3o>BO2|(A9VVbuMB9o5Y%1I+`_J)mnr=owcM^e(lxS;E(=SQs^4%23I%Tn
zO}8Dvp+;A5pCZyR5RW?oQ7I5`88U+FOUqfbcpySaCn18WH3yp@)UofX+@4X$`4h;M
z>8_3Wm4C4vi@Y!w9zU0Be3tbkT)n@UWR^9#s`x6`*sQ`5Dz}wo81%;EYNlzF1{Rr4
z6r#*Lefl)>k&Jn9QI-3(!x4FlN5zy1$Hzf0n?N{1sHk$2id(hy%DdLGlw0e*oy)d`
zSRg3oz-?Cp01g$Qu&2Mz;y)5NZFB&+DDsb_s`Pd8D|?x(uWZIQWv$voz@76AZIn-c
zBXBG0kmp?g&>;SJ!@%W`>bST6Wtv{>@wcrclPRjsk;6*Ui232yZR)if2n|;!<W(Zh
z^Xjj19fpuNu5X=pUsojVYWNz+4|Vq>RM-x6(wjfyNr6d9E1D2?nP53s4@Qe<aJs#P
z2*`yR%*Q@c-qW&p(ZU6AuQLv4h_VXt0!FW+vF3yOjDeQwa_3&9E0-RH^f+Ox5s!=U
z!}1E#bBil&pfi4R*)I<we&Bkh?KZS#mFaJd%X)L{GIStlcbU8K5~^3Kw`NjPMGFRL
zx?Ok?jh9=O#k{+(34La9gMG3!Vq{jIal|1-SFB$oCmiw?fl0YgO^9xDWl&=`C=4@1
z@nS7stiojcJJ3HfG+y9I@T9w2TQaI%k@z|`a4f&!O%iV<uGW*2_l)j<R<}5&uag8Y
z#w@mr4yhPbxpzLRBRqwwzjUKPs^z)sxqgvpKm<`HJZ2LGzkmY4+17iLv9uaB_L$mT
zyyx_WG4$Gkx3I{}KMq^>3?&I<8{M3P8dlBckF$Mp_LAl;hh{9HEYPJ;ZWw~16K4qc
zEeR=9txUR@8A6ByPY<s_*77lHZJT8a*kk#ZJ&dCYuQjz8w74eLZ{&Hmd4TODYhJ4D
zLi2q@S7hR5xP7WoT4}tl>5Au><qU)5;pL6nn%MBl$W!YE1Mi+;gWfd`9GgPTnnbxQ
zJESmkl(4R7XO9xjZnhTnt)D&tiCU=9Xc59Dw8}+U(aUOg0o4aNZD9Szbx0h$I(D}K
z_7Fd`_NuptHFW17RNEsh7`ta?w9KVRNB<XVXq8}hD&7eivnF1-+mxtXk5%NS!%}P1
z!!E#OM6Z!d+=a;EG?Ac_$8bx2yGqh%94^SeNg`8DzRQj*i+1kmKN`D6sp{{k58Nhb
zbKpLzC@Mabvc2lV*JHF@F9&@@$L>m5(8!>-w6C{I4w$9ZJP9#>*oyq9HGIICHlGqX
zw)1>ukb7Z@1mjm?;dOwn(&$!m1PW1)1twrzO8BQ#6)W>zN3okK^?YN^4y=`t8&{k;
z-<=YwYiH$_GV^Jee+B~+xPh{@3Do%7y><JZ@9V+XaQd}86}o2d@gr4<GU%=|=-hNH
zFS_r<bJyJRV7}p4C=?iNM=%fNvEN>0TP+CpI4a8nDmT0JZ3tC}RI06Xd!lJ$Pxn1<
zuk5#k2X`}zT+X(KL&zo~`eDem%!WHk{uvuLd%^(#uz)_bD~3AIl;EC{&Py@6Goj8f
zl*l(>MrA1RE$&JI!tl(YisbF+w~`YYzGbI!Y5C)q5SatqQaMPEDz$rXTb>GoJ;Kqx
zfE$?guKtZYM`F6nk})K4l2!{6&uu)hHPe=S($}rU<*0nR;y1)gWM-H5HA%~b0h15M
z{n}&18G+w<#_Zktg5~GfTIF7H@aXHZDI6Ep#Ksw?WQI9}Y{cb-m~`}1s_L)6HZ=I*
zk#6XJ=q=Rk!B8J#t%4BUcz;A0e=+u<W*UG%PHW+~cj)%!8v<M!r)JPBzX>ZFqEgUJ
zUR~ug1`54xGrZb4@Z21mScnR+6AsLt&hkNZZBeg(`9A)`&`cL<Ku|!!<88EI-rmnk
zFOX8<5b>4iG|kMaAcrA~$I<!ISSS3Ll%bh=!XbETu)aC3G(g|!X<J(J+E8C6ATav(
zV2&N8`sB(7KuyX@KBTJDp=gHMuAEJ{$TXds@gX(Rg4YUFtF-pZT(1{Uz<eGhyvD~0
z%eH|dz=*M2-KQc&9<{q&J}Ng6+KHUTL(^OlGvyYdPp{6f)4J_AVkkXN3djQ&k)dD^
zl%soIOyTN%sB>Lq0dY%%zrPmRyw(-rr*=b0!jZ|Ll-#+{%(0Wh95m}hjFv}IrsIW?
zY19LrT&GWazOo}4najNi-$hANPe9OX?{Usah;W}-77NU_^~mK{UHW0Rsdjv`I5<sL
z-JeXK;4}5uCxAc?WYl7gLOoNhN~`Z-k4-*w4RxM)SKRpo1sap>+w6u0bVR~xyllxk
zVUHZ?LI+h%cYzSqn=YZQ-;4zNIx6y4dr2Dw0H7wAj`S=D4JJfpap;xwKJKsm%(atJ
zcRS1{U7*#Oc-C$5E&4Ju5*2ZK!DEAOirAGrxhA4rJUTLe0Fbs$Rvf5Z&n=pB#3H@U
ztULL1j;e9Wi+p?dq801@xqea8I@;O&{+x(VyS<omm?5N!)#GyL=ZkFJw${+Xqvh5e
z5b9KN^kw_CEs$>>bvWY<l?L9=@p;;5aaKQ5+Ni5x?D|c0T%dUOCvc7c6!{0AudgM=
z6!VobpFE=w7%*UT%x{MkLnY;BBbci+SHJucDSOD)YL7z7PsfkfwMtgHLZe=3#{AX+
zI)55f08HdX4@g;SBezx^U8n0$=2H(IzkD%(Ld?UZFf_!7(_R+K|LUDYG)*+t^U|)t
zL=}xLJwBXu+hx?I>GGh9x*-k73_uFiOX5NQ1FHVDjhi1J-3_A^f&_3qUG58#ud~(n
zfm!Bt;DtMPzkLMjWU<}70lLPO<G$RlGEMPQx$;weQFNjdierYk@`2e%=Sj9vhPUpr
z1wCuskbJrARdkBxlq%oh@6XV+1CBeg3`z$9v@!IG5Ov|ZgZw%EP9pv!6XO}~y~1*%
z4RP6b2J!d|yTuWjJh7-=O(P3=A4VwN3?I<asGNpusw6XA{$;*;lFU^*UnVoYynnt=
zMF&?=@4$%91yJat;u<xKA2rSa=IYttLZ#U3k6#iF2`g0E#nxS?Nf2u{EFMRpBF^WH
z<<a(+RQ+6dy1~15AD&c~BYqC|CA|&|TIVqsew&S|sVFdNb5+D@+*b{6!=81t%2Z3t
z;}~hLI$CN!;$rZQq5sntcG_4ui=(rWvbMBuiY@7oPEzD-vt?TI>x>7KOnSWOV%ziz
zNV9E}*L#wQFLz9gf`qP1v+1P{?heddcETpYOaLI6sa~}7ePBCS_7yaEve+0=|73ej
zu!UFG0;rEsf(Vr{mr=$5%MP|;p6XA~9GGd+aohln_IEZ8S-)x<;cik$`C+BRQD5>w
z8cDfOBhwT-+naoF(T<|cI`2eFq47GP++w!ayFXRL;~2mHp^;zM@s?S;sK&+)48oZy
z;S`mcsXX{@!RONBc48>$TYMw`jnh?l*(#Z6oVE4?e`9`&x#k43rbFTxWX@wN`62ro
zxY`i?wU;8K9!LG!H_jlprAB>=2=0UZ`bGDCFzC*`+E5tHpf7I7OljS69*g8lf{4r8
zWHxJ1!>Jx$fQu4>U3l!k$>-}21|Hn{%iZpsW+D^LA1k-^FVjzIf9@6YEcCkzlKetL
zn>pd)gt|-NA{ro>65obXt%*uGxVTheD5VnPYVEd`WjY(Zgq?4yWK~q+ZghegW|A;u
zaUVvBt5#^#*tD!T8(+_5i10ywbmqPbBTy*T5e(p=`wYxir-W831NmD5PwiFv(np}n
zir(C|NmXMb6jfOV)qQ6|1k_oInrk}3#aIYz2;pib<bURG9uM@P0O4#k+A_5--COnY
zgXiu?ozHmmH{1(#)>qlSE1{UE%`%%6Ol#BY3k6P8f|ahaOl9rgPrL4;j1iKeZ+j#5
zu1SjLUkSUAC)D2&x!12o$qIxWE<4J=?M{}ZaPMKwpAkrfVvV+Ep+&SJ-JRYl*xH7I
z5W7`mlmNVDnJIhd6||)T3|Geaq7ah&#^c5!7zq=7?rwg1eLsX{4CU-ouRK3d$Cp+U
zYZg~{1!#ZogrCSydWwu6ykJoG88Fi&Iuf?baE8VbIxtbA4@)E8aYUY<N4p$3*o^8=
zkPq|-SHQml?Zs*v&-!+qcsCH^P^owg2Q!ATet6F)><CncWg7_xq8X9XMC$@YV0^T_
z6D|$Ho_E+sXfD4Il#K7=^9-&xI|7?e@$+m;50AU_Q{`Bf>}8yPPL+F9$UjcY>+O{m
zahEDHgnSX+Wj=1NweL#^!!1Zo4lvZO)q0ztU0ml%vc0aqPr3mR8h@TA;)E!deDc0t
ze6IT%<%Uy;A6(JbXA}EY8Vy!>@Sn`p&m|fi=+Gf7t>&RYc8vr57R}YGzFwbb(5qIa
z_1VH1Lv`>qk5@fXcX+aT!^`e!W*ASLE~oALRPRC5Wh_m0$3xU!rB`+Bvy8MSqacz-
zs|Dt&&P1TQ{jkxHd_HhVC|9Vi(lC<4xlH*Z&f_vX6{BJ9hcs(H9XM?8R2vScc<V>)
zN#f0GUGL&Ld$o)54f+2%3aX`bTK$pj)^j;sjZ*cZg>lAip)-~?(E`CH<3GMle<=H4
z=|GpZ!c;Du3@VxGpbf%!#R47yYGjn%u;MyX2Y{Br)w}vs%{m7uKg(G|3tmd2PyEEU
z%S}7gkUY|w_Rc~g6VALgtrL~vuAu9w0`;n#JeL9@FsLZiPxqhH(cuHbcR6*~0Vt}3
z9$$MhjC8S+mu_aqp2)YRZS^Ol_jmfE9jKGHn9{d7(IhoMy=dI(B@5($(wdKZ*I&{S
z9X)x$wx1aBXJ~QXi;G{sMK~MvzixS<)9CG)s~9Xvt~K&H%y<^B^K;y6+&fA2Vd|sy
zTp;c$gy?>cuk!d-#!|vrfi2i1Uu#!64;_V0s?-7wyF#>K5E_N*>Zxb>DsjE<YV5Vy
zHy(er@cU))tF4VK3;3hw$eSWWX#-;)JRWau^XJVk``H3@B@`x#!Sqv4DO|y!3?)@@
z3`snL_wyc+yRCkQ9(2>Ax|FpX)wKo7Cu7LyTTQ$^Ys$-o`}x~P6KiWU!oDc$jh6SW
zA=6lEHoA*?_~DVXlL0krEcqMcGcuwRAs<f=9UKRQEDvSf<$J3E3F<`cJjP@jrRyCv
ze_!9>USeKC-2(kmQ^q!ZRCoiLw@yw5s1Cc`47DFnLiU5uEPFB-b1jn8I>;5?OIyMp
z{i<JM=CSChwk1970F5~lv)cE{jgMSrCOo)T>;ayQTxXr-E5N;mxX&j!r$X5gkMuD1
z5*p@@VG$Q3lYaE6Xl;`)CT);A4gmkFS>?gzOmcTX3Q(u5fy?yk+Mk_OEDO$_FMmJt
zg%?cv9Z1w{;xTmi_PdkJJ<m(CCsoS~yZ2=MqS##{LWVyZKP8QbFilbDQuRn4sj)S>
z?zg#3@w`hF3P9<01I9%X!PxLz89<+GmZJ}0l}><g&^sJHp)o$x#r%^WUL*zR=aUF)
zHkTz@aJ^!H<#7IqbhpEvTM>)_F1ebfXcZ|aYbk$V<i@k8cRSw&C-o~gkq}q4Uav+c
zKiggrpSVox*KeUT<N)z86_JLs?2cg<+^B`S#Yd&Rj#X~%B&_cl4Ue7tsMie(UF}ov
zaz2{nPKxIP1*bIkRUD<io1ABbrsgEAZ}we2V>Qs9A$kkzK_)4cbb~!ss5oLa|GKE&
zxMl?%Li`wu^anHqd2_iPPL?V}_v<Trw=R<rs*<lDXBK>y56c%2;+FFHTKj}`Mx+e<
zG7r|>>4T#2sizA7)IFN_8zZ(TyrBd=ilNe+pEO<A-)l>inw4C)8W;dy@sw4){D_ZC
zfPvl^^DLxc!KF1Te(Yq>OaibdY3*WHpNJaI#0XmQ<o(Nb_oFD*gM8YO4eu=a>Gy&h
zGam#kCI*Oe_56-mh+aUF5OEm?YtIO`cBs*l75Dsr;x~=dczdm{lEGU9ozZ=|9xFa*
z5i>s?d>Tqscj9afs*8T|c76D_YlBw@TQ|e~BH5365R8%lkH%o_4tTV7{)2&fnd^8z
zC&3V0xg~J;(v-p+A})hmQY=BwnB1$BbmuaoJjs~Y+D`Ee=dPp^JCCDA0FE{5Otec1
zFihA_6sRpCoJFBMnVUsj{T)!c`8-;nU5BJF5=H{)stKUBAB8;A<SAgj(5Puq1eB=*
z6x2l4{&a=u764<EhBo{x+2E@D_Cf@u=7Xhmz57gMpwYMPNXl#=rk$Kz#J264+MLG1
z!g|R+UHh63V!t=7$Pmq}dCPJhB-C%yq$j2kkg}stpcW03JmSjR@6C|6jf7)8|7Ubd
zCiqYq1M%l>L^x9MI`7wx-AWK(L=UK5YkLC1S>AfD<mZIwppjK&L{w?qGt8fvYvXOl
zVW3^eEuJ2e#L=^yj&=a>{HHyp4IfC41DVhr59ZiGRLG<}aX_z><tZZv>wY~IYgO+y
zB7<#C+jxQ6pb@F(2M)_s?o*}KEc%!Eac^mqw9MjL`512bJ|hIllqSEvdjcrIq8%}@
zE_*Y&+5ij`!CbX-B$q@_#m<EA$FGudSefA^tQU*{Ock}eIr=K94qJCLdy_Td@hUZ^
zj_H>B(+V5N2j}N8l2QB(dm2?$oVv?ER$Q+A;mFroKgYWDIfr5tpEMt9eAq3|2`9nr
zC6{WsnJ5`H-QpCt&KgMJcIn;b;y;g970vh}eIgR)o{XR<3Sk7;vd(bgY{P=-9vdKc
zssm4ux4y%h2)_XMF?-?>gHBzmx88N<f^#PdQzO>Iw&McQJwN&w$4L1L$9CdWADyi@
zF342i=JD8d?n;L6EtR4zsLJgf`<4wjn^+_;&N}w(F>lNz;no+a269^8sF+NWfj^j4
z<{x{SO^I37W21+2)Gm1EHS&tjtz-feiigU#2Sxx&XAf9l-F~uwiAU)#Ff(=6`A>I8
zVWkNY0%XyG%oObAH&lqKbO2@5SwGqt*U~!b<Ze2xdX;I>csA;ifZEe7;um3uwmHqs
zZ&V|mxgZlv@&_y;uYWFkB^LEvESjeKYW=>CT%Vif%}gb_CuSZHIG$Y}G(8NZ&zJ&0
z5%hqpvojd-<e~_)Y1n_pijAT`thhjg8=<}?Nk0ETVjpIwmzt9{L`AwN^ngW^t?$m#
z@=1;o;SVn!eUpEc+HB#M3sBo6WlRSj6#;T_nJ<sSC41`Svk&jzjksWCBU}y-V=hU4
z+^_5%74a=*&%SuwHUp4O_U>!!Q_pag`s0sS=jvP|c<f!<(N>U24*Bg5#@lE6Rk|N?
zA@&}?K<|30)e2nRRgVBegykdOp(o3ZGFJ~2qmzyRP@BOQPCuu}*PcT1P1k}X8@G+_
z4}@TjVRZu$lT(h_3FQlcjLHIa?zt4wu1d3!aDX8ouVRe5Cgf92tCrN%bTA8bsb(>p
zh1m)UakLz%edW$$^R_$&g$VTaX1UfpK`9E*3P~^A#>C}1u`*J?!pC9c_&7YvC6eeo
zQQ|@pA5leSg^rB7L72VJMntd7!4g_oqb1=?%Q$I&QetVU0i2x!jAN9viP6aUy$e1u
z!;9ptnfOLvS%Zb$_5rQHPJ15vJwZSyHfBr&i4aUYE#l9l%;98=vevb8Bp8@IV65Fp
zQtL{p;J(a!Sh0gwB`Q+-5b-g4wxNx2KNRw8&lUviR#y2snQ2Ub*drqT+eka-54k`E
zWlR<~ggN@L`{j-c9?o5;&yl}dX!3kRwd5|c{RQ(e)1HV=xOXC{{F&bjUS1E*GXCW$
zm;E1kMy0p(+aQ{Z=8&gj#;Lc?uf;HGTYv<ta9SKr*8A<2-?p*FZI9*4r-J?ZUWeWQ
zvEKv2XVdV*i9sey0$)F&XBWq_X>Y1bq);hW&JR!_%i_QnpC35m0&0;{OvdsI%vM4R
zJ?J%S6+i+tH0H`bRK6s;?sF%sTr4B_IyG|9e8l``F~bEvP*mpT89Hl{3RnWz^c~}^
zl`l{;#W)kiY@m1b-QrONV`R7BXWU3MMxMv>pIsiG+T?~taUpz3;e9h%H-GF|G`zW%
zy>&6-aB?RpW|Vb5)=MvJM_J@M)Yrr?>6<JWNx|$soA#)JE;gDA(#;Plpu@T^ncVM5
z3NRTn#E(X^oXMRzohTu++xUs8dOusiq*vrhQ_@xBp1Erh%@U$t4lv^^aNcR|!)H&7
z0NJ_Gk{#M%P{7LSpn8qXden{)Bssm1Pm2{C3w1rvbh)hvjO~W*9gWx4G4?3%+8r_n
zWE<4cwE<02I0oH`s=h8Dp(cqGU0=7=y?LzVy#-INX@^aKRtxG363XNjCnB-Vb!zU_
zl?QYe#EH~mn|hRT&99}(@0$ge8IwJ491x=EcP<8FcH$d+3$)PR(hai#eKCC;eEp<+
zE}`*N;aIRGXc5nxp<956WSiD57ab!d%Bx;5c61+OS&i8=>Vn+ZMt)9z$1zZ;G3q&p
zHhtP@sH#*WC#*Wb|FSUrM26UIEsuS)>i$j5wuDA2i34=^GFGWjOQ=ft`uUk>%5bK5
zz5{2Bl2-A~x<1>s@#{igC!USi?MUo_9{;hmc>A5Lx%2s0!$f#56*Cr3L9(zLyC`ca
zBXB)HMGt1D^K)*y3D_fy<=lNL8Te*P0UCC_ecojnGL1$GOzC)Ntf6vP&;0G=H|+a>
zq{tbtZpsv(DOXew`P}cI+txEd7t<u<pfjmm1X*l!-;9I?MTvVSK0A-E{?zX}yoPVR
z{sCSCf>@^p+19JmR5V;8Cg=F21^9G+Qd&<TYvQ|tatS92KnGQ>9I~bqIq<;#+B5-2
ziRL*mtG4Dw>Qq+UM#R9*^QzWuH_r2C&VR+VWX;L@T+?1+L{jY8PL<HrZp<Tzy|jyu
zTWm)QyEK4$su7fELju$ZAqR3OBd1t>^<DOe)`{tCdiBadpk>{F8SzSG(nzX4Y$vCU
zTqgv}I#enxUE9!`JYd)W;<|36kcV9V!Fy@G!F3CWF(`%w`SX+t;+<`OtdX~cu#a+~
z{c8hZ0~_eZge$0?x=mj}#P4Il*r~o9P|V~*gn0aX0{%OS!HZ|kvhYWG;$GPV=bc{&
zN1+MsCS$tJhO>yH%R3F_JALK><{F2h`JYbT6~Hl1-&!r<n;kb&?eMTJN(4F{DRD(#
zF-@wTeeAvB>=S?5E)WgWC}akNr;>WSBt6E)M(uHF8VjLOqLRjEHH;bq3o#B#9VzYv
zeo5)!**#k+;B=ME492F~8G*G6Kp{=_Y;UD6OqXloKac@>45<}+qDlj`$skEhUX2$v
zU-Q5>7&Y<%4pEd51ysE`I^?!DZKBgvo=t8txqU=9dx`w|F&YLDZo(m;e2(r{0ULDk
zwNbKJArUMeQOa_9($sh`mo=-czEqko2m+N&X|TGeNI!eU&$h*6Q>K&%j!LWEota1p
ziP$tSQc7kWcwBT(X1Y!coTe2=vXXg`_zHZFq?ATPA2&fzBUnn6R-7&OU^nQES1kC7
z5t{P^M|nJ7UBtg`?U3@?ck_R-_tsHWu3z7;fr6lPC=H6FARt}RBGTPTcXy+tln6+J
zbjKnk7APs*-QC@Nu4Qev{+{!k=Y7u^XPhz4e`_z<Yu)#{=T&olKi_HAK4Npz4qM-J
zyjWe1<wq^6O&vNUEB2+(V%9s1PJ*z4w)W#1I%x@!YpkwS*f6831u7|6#6n!-FS4cb
z!MT1$$K`qp^_n?C<QpI4UK|ZE2Dq%V_uTs3*ANlDzFJE@<<zd@%wHWa)5d=Tl?4>T
zd+`J|{?XF)k76^c$DlllH(C?JuEa2PEp9OpnS1OZvRKi6evMz<ZpPjr&lm5bX{g<$
z@Nl7Ed|4;w?rk{=jUda#mej1)R9X)9g$VHu=D0m`uLcV`CS$`jHRuS^PV|>U4-9gN
zo~mOczZ>`q^|fK%`x;5_YejiGVy{|aARUa@tr*@foHbIsVKFHZ$Bsq7W*Mg27Hz_O
zf7fMVSqvXN0%}mW*#Ehq25)w>X3}XVURF7_Zb8yJj>Gn&{G;ewbhpS-0%uZNn#s!I
zxI7A%n52>fQf6Jhcz-KYclXl~?DpXe(z8VpUVuEz@>JdUOFEL0m422ys2r8T`<f6|
z&!KLuCNJ{Q%|H{?gw9FW;d@t(N;Hu(VtK~cCVoe?Sfbi;vYUx+&C7mFquOUMQ%%&q
zsr`9GJ<=oqHHWJNh(Hn2Ld?)KxN)Zf41Wv4m1vEM4G!JU@*Vu8$*X7G7UNw^lkLv$
zz6%Ps?f?O<%A@$E$OhZ)k^txsgoVRu<da1*=9<O5%X2*9_<i%cgP@^TFGyDT@i&a5
zgL$%5&tt8-BNiE-l{g;5nDK4A%Yl;SHj&eU7Fs+aRyGwTjpDnv*pH|#ZkC-NJr%CW
zQ>zr><>g(Gl=f^oU(|x=Jw<MAO|&i#Mj;Y%-HMgtYyw9d2t>nJ7s#!}Mp&``nha22
zlYt(Mjzra?`q?)H5#<g}dA%9?B*?F;c=_H9N+IkF5I_a<J9x-Oi+7>uVN}bEdq0jR
z&FAwsw~73Zya!rE)}OC#yQi;Z&BsoO?&Ya{QY;CKaN^E-vER7)wkKH)RvVLDecebq
zc4)>DpB@|$%h1vmr7XzUl~%_RKnkXMty;!Oq-5K>HmdE#s1wJoOX__YrpP)vm~USQ
zlLVcbFTocsg%3KSIhhtn(8NaW&BMX-2A8V`Z;a~$oBcxlIr4<=SO=uG7@dizskX%T
z@HhGm`%4^Nt!McWd~w5_;U#ch3$ApYr#jh6mM~Utvn0UI2)uMIMvb5e0UZr29C8O$
z_R>-D%A*^DE&`&NfCEGbFmxqkS9Q#==qF6Ta5jyU@#z@X@2qiZ7wlfpJKG7xbR1FW
z(P^5<OJ6;ccB-uxVJ5A}Fy8h*?4FrF5v3cj%BYPMc4c@w#G&%SuhZj}R?{;nukt(=
z5HFqAcwN!(Wi-2i6(t6RP77vX*2ZoZ6_Kf|>|n$apgHprsuK)lfXa~oEM<Bz;>wDz
zNcK^9&hc|^U`GulY|_NfzU!lcyqnIQ*kngI?6XzhasK)MZo1_(VuabYjRKd|-dDLq
zsqpJzV>@17ii1&%rHz^bA7@DjR}kdov!?UcCMz)MVsbVxz$B2-THcUeJnQ))T#~Se
z?0=B_d`)D1ra_cBrhP)uW`ZuKt(S*6hn{=jG0OnX21mt$my+*c<7)n}^VrLcq81dw
zAr0>oo$Y*<_Z{1Xj)W_*-$up)NR=A%4<0AaRwP<g#~c%X7mH8f!R4uzlQ!7v(nlF8
zd0e~U%j3*xIp<3QHku)CmI9%lEsjQ((4E3&gNN5{xPgW6!NpwxGVD!Iqmsz2D4sj8
zS?Oy|%<FfBe3_bh$!@>(@y&V$B7^@kOq<n#RA3P#DA$lZk2>RkMHlcV%i}%?MEc;Q
z&CKj+kEkU3y2_d~%qYq|toV42K&d1bfw9v5@(%pf2~?8LMw?_;;|*u~D^W7r!(6P1
zA286sna!FP;jh?O$MEg-E=Zodd?gThvxJCFbWwyKV+1RWLDL{%gWLXvFx^CQazyQt
z?a=*}a1u7G=8(6D+9JF+;4cO3YDqb7f;9({8()K;L{^zU6ccC(73k=Dk|oCLm?$|{
z_XIin7@U%g4_-;3IpJt_s>Q}augtP<?z#F8`Qy4>9Zgdsk15EiA{x9$?@YmDgg$NK
zud(97?3fdHC2+Oacp||2&b|6deX;YKx0A4_6)JT?`M<PB?Ps4UN80s$X;Qk*8v7M!
zX8B%Ps&Z~UKr2ixxINuUr`O*q3I<~Hq_e0@n(Ja)3je*LKw8<Hk?G(^Dh7Lz7Ra;d
zrA3N<O&NIz$*s)my&p;HQWU5rKJaL$<IyQBRIEwml_89-w22}Qf`hm7i~j-QeMUNY
zPs=RMXRK6^?}%+ZVi{SJ9NX!M$=I{ENbTyR4n$_LKJrKAF>S9A)a}S1heF69CgNb<
z7bCwA!NQtt>rgQl@f2U^)IY!4_VJg&PLK0bk;L@^wEG4iS(+@aFil|db;_fWU5~X7
z9f^1Gk)pm#2lblNN-~NMqSOu|E(?h?P0L^d?7*2{=E#AN>o5v(wy8dqAk}r3ln48&
z<&nw3wJ)!%7Te<Jf}3_(%rEe#%c<~|KWP+5eXB%S?~7i;xCBDPiK?K?gYu%i#<Rj&
z;gUFw*R<;Bb6ZY+Wrr)rxX|uZCc{aHzeW3kQ)8r5LYKeI>NAXQf++{u9e*`F%Dhe3
z=sI?VnD$#Pi$&%;IUTO2PnnGB3?5%J6Y^HtEDJd7E?9W;8%5>)7;5aB9J)jCu|8Eb
zdAq_T4J|hOht3Knwcl0ypUV&me9Ay!R^$u5lZ%$ry-O2}yLTy|Yr9q{z#IH-C!{S`
zkIr_jy@MNMx(-|qV~^qrU)9}Q<`wUMb(Iild#!i6&Sx1US}jo5A$pw1$1O=b*lU@x
zz$qvT^zTr%QB+>W!P5%1!%rKCk_;(J$LwYc)2jylqLxyzWPty<&4qmX&$PogS_Ic8
zUv>F?-%={OwXD5=RE>V7P-|Wc$jZkX%E`XwEE%uTMzM#Gd}btKWZq3=sm*K?{?bUY
zt0T@k>aFkufXHUo_VJiPuc0Gjw9yr6QE#`7_Ud)?9KS<tAttO^_!=Ll7|?*CpDapK
zuN`bpQwzEz-GTT7GuC!6p)EY1p$T9;gZD|%j_D>-vrXdg4hOb|KFtNW_>PQP-nU6_
zi`pWhqQqhVSmuM0uI0fR8-3#<rCLRCn1nBm7W#I%%@q`Ct4r1@{r3<2bbO=smU|rZ
zn@3EmTbh*fNd@%c+vu{J_6IJUp{zD5PrTHtC>F2!&;&oX#*o2dy-k|nq*q_{HIxGf
zi&pmQx&u}(y{1uR-fAQ*$HYomO^1wHmG#!E{2ZM6vzf=ypf&mX>9%p`<kAYt=yoIL
ze)wrndMwzfP@OT4YLVbw&PL2xgjfeg(8c+HXjq`%4&Rk*vZ?!Zm_LiTGRd;g5ooVo
zPg*pPYr^$9#;LPYe~4oO6ksUc*nju}{zD~>+>eK9{&DdcU7Wq{JHV^v*4T|LM;O+W
zyMfBOEhO@>$omIb&tvJp$zqq}>GeMqHpJ>+Zk6aQkfTtDuCNQ(;%j_pcUhT`)*iq`
z60{<uim=@WNyeBHxvH)<eKkM8j;||=xqg0UXWggIY(q-9WHY)ufElZ>yDv{Lz()Hl
z;`7CIcyN^U?IKv?-KfkAJufR-y7$ixre5Y+_pR+2gNQEUpM@h2d%l<RE#cNu&c$Cc
z!9pNg?R;$Cv$GVloPQ2#0Vfts@<0FdAAV;MhDmlb<o2{+wMa)C1Zh0ZQ!Mg0(lAc@
zggKMxO2s>IV1+jQl6paWo#k59DN2H5{<2TXP*7cmu4qI6E9T}r2g>qM>et7}ZyO>A
z5>mzG3bW;C&cm+wZ{75NoDaH1yyL<js-fFonrN4B@;CiQUHJ42FreyZ1RTZqKM<Q4
z>Z=E_P@7eGM6{6GtdPTT;H%hlxB2tn=_(94C#jctPyqMOrT@4Ya~}ZaY;;*lA09uS
z&+Kh|L{O^w$v*0#3rpa}m>+5~o9vdf2OSVr^f4tou3VeU?$a9KjTn(;m%v4IEPImr
z0+%H*SJm(VRk`3)3l{wamy^gBHK2;svF`yUS*Si^(tiB4Hy<fK#n*(p_2Wum4<8i4
zw>C=}L|^OgN84alnN%9ff^xm~kfZwaWBou}=8ucdF%JW8CS(07z-$M>kgXdxZul*J
zu>-%M8|eM!fP5!g8gxR=&~1+n<8gD9o7)w2TUU571;We^we-&w{0agqj7VpsqWu7s
zOeM9^?;T5I_TOTqSqIGz@Jk&kK}K^E{o-(qz|o?1<1UJHzP->%l?h2p3>ye5DUu7+
zBXWB@=#Fwe1>RV(h!!rlb^+#+pwcb8-{V;`?(-(Es2BX~bT?s{__{I-4-is;$NML9
zPfT?U5Gg5BQ&SntGK~TEGR5QAw>M_Rz@>*>-?zT*Y5$v*z;B?f9xU918oUZ|<*0jG
zbEDb&0z}aWSpdrJL(;8|>b!&fXv`u?T<umez!ZDN;e#nF5u{?swJcl0>2EO6hWicS
zsq=|k=ehfwS2V(Cd83fbL$=`Q)kmdOI&*_jHQi}E%)MZzB#00)CtLjN6_sqpJ4J5M
za4Pw&fmi1PrhFVAB}Cj!p9}Yxu6V{1!ursCmn{hXiVq7yESuE_Zv5k0YEZ|13NYo6
zONfK+Vu?Uy72|KR!<t}X{_@7pr~f(Vic_^pjVtsFx_z{*^*s7X=8+;Jflf=9-?eMk
zD9U{EP>Dio4ye;0?x=JR`G)>xn5P0j&~{|hOUh@T?DnOV&mu*C!k)G$0#E(bR)G?S
z2T)@5^yoNx{wV+4C@Dj`=>mvzqDcb0Vww$vm+JKdPWVbZS7SR*qG~nA&^{mI+pSq>
z|1-jUO<;s5vjzTNjP=<Y@a3jKT5-{IlG$l@2o82`fM<XRo<Sn7N5m~pFR$)5@YBjc
z@Bgpx?_T>uWZ*}%b(q!v73jpM5irD6^n{i9pBd}BqPSiIM#j_I(hcN^x8n`k4b>?K
z*pEF%03J{9H~#s6-x=>;ucsKmc}-Qw>+Rov_Yiz))JuVgT#d4aOeRN3{8$?3(-yNJ
z*zS^I{-b679o7Ez+PxJPl=rZxez+L?`iCnBkw7)6_Zm&EblSfp)8f1WImSiIv+0f}
zYUis+$zRv?U%a4&k@Y&V83=!F0El0bf-!u{yU4hCMle$$xC1%HS<1615caVd|2KT>
zT9FrG7l+xN`4FglTu1-!?*C~OIm``(h|l^b==p0dnDGRWLi<u!Um1ru5%JGw`N!{i
zbQN}-eu>(B<DVe>KJ<OB!yY;U)O9?%uXx%Yxx}TNk&v&K{Wconudn*gFFxzQ{?7nJ
ztbeASpBMQ8JT=BIzLYBYw!mlaQ#C)62Kp?o@8V-lir*%jKQHCmKSjXgbPQCoe=jDF
zVOn>%x^Uw-Trf6t?+|32yuAyoroqU#`rq9CCz$dmLMoB;ufKEm1Ha<KyLq}sa!&Ch
z#rkWK<2d#9z~$mL(*O4To0F?R4Rrvuomod~@u=|)2%%^H`yo_0jFTmsf@~7av4$O?
z$q5^s*Z;Rir~P}EYH5d+Jxfs^HKhQSc^{1>&=e4Pv`Pt#2A1X8zvha6#g}^xY&cB{
z-#!1!$zc=Jk0q`Te&505642y+-@!c8z?vcWWS?N`GZsP7vhYHLtS~)5jOOn=(7(P1
zSZfHt9^~W1?~3o=W&?M30ubSA?)DYRiK+%G6OdfU>4w{3Z*i1W;Qmm{Q8cI|*eB#6
zrHYXob6p>xiu~Z+kK|5FS1NuRAO7ds@iTn?74M(PU}5fgEBs&Ye*4ok*c1d`-(pza
zLzXERdSbnIBofVJ7J?;1xVZ`h92tPDCU`?k_xfux`DJ&{xWdxPxNsOFKZBtn10&gU
zZ3*gE`IDe@&1^g*(EOe(b)>{ldZjNDgBf-2hnSD@>UUl^7MT==^E<!2lE=f%gs=Y#
zbbd+$Mg`r6r?Zd$oOq{T>-lcc)j%VXi7%pu%b_Jfgj?#gaUnPRZ+#RkBkE}~;$PZi
zv@`iiZp}N96c@1^sDXm_LVll`e|{&8X&{6Im%$kB(TR(n0KNU^(>|yQ&P#ywZed)z
zgfmNytF#5ZQ(R80`!427!&ogeeM~wKt%ogi@pSUg6w3|ofZhi!8Er|+9R#D5oZgK=
z*bEnrHCuzON_P#{aGT(qUscDT9Vt7tnfPxysJhLZA|##vx`TL_=m5iT=s!FdARy#`
z2P*0Rfa#|k{=bCjgT&HN?|xTX?cnJ=^{yKIZV7NhYv>1?-Z!ffs(}xJkbbT*|IOOl
zFbT05*%`u~A*jF<O2|b?+;39F03H$S?7S0m^2Zc1&j+iBherd=R)M%8jczcODf+yZ
zx*<ae5OcSQNf}>mNh((um(w_=AFAvf#6a6(Lf}2%_+S30^?_X%nlkHVnd1JFg-2i4
z4D@;z+V`e-KXKNNSB9v|DC8p~0lTnDYkf6aRrb47Y^e5oOK32virsPTE)dR*4-x(X
z*aI*c-URTdquk?nUW&+Xv$Gii4^y^sMsqoE7k)6|(_ImKjGx1bI1lD}F?ip7_RlTz
z(=(Xa*BO2pg$jWRA7}P8&QoMoj5#K%5Am+XF_YC<8hP*=pI(@C_}&()OftKd^$sP`
zp#2SWaT2=c)Fu5qjtZ;9Xw-XW&O$6wtJH%N;pn=DhTeq`@aQA2ECiy)mRPn>9_!XL
z6nyV!L7Uhyw3*?%Xw(&JL!%9jZEzpp9wh@mz~;A*NA<gdr(R%NxKKp7f_ve}6<~J$
zw)J>pZEdUMfYm6OrM1f9V(MhJ9qo<DuVqUEW|Wg3bbI8+&*%Gdw^0qu<~Sz_iON(K
zO-Ls8PlK1oCncPK33UbX`W>inoL)jo_95ZDerBjr0HU6VY0jz9!?kIQ5%VSXaa3n3
zoo7N!@$JNX;wMIC-E`plsNvE&BL%e@gCZU>=O~G=S!$PQc90+T!>I8la*|{FWb_Ku
z#wMR8v*^YA!MdXXI*pjk>Vf#7c=PS`Gd~k<R>FT)zE97=#VLp+{`S_7S=K!YEQY$c
zuI~;@QS%pH%M{OaiM{D-O=ax)$PRpDnKPvpOm%mgIiBe9Q>-JGFBYu!5OzwJt7hW2
z*kGL<5_M;0zuH^c#%M_(BO?=Ai$7ThwP{Sp*{k!-VXqldo+o81eOTvoJ&P2NWfjSk
zPET^jXIqNWi-#EZCfq(^ATk|I6^&Rv3B&{E2G{2yq+X&+n`7ntpzUL-wn(V-M3n=D
zgXQ6koHDb?v{r>YN&6#yP+H<$?oADCa^0G`I$rJKQ>fj%CanTyqUD#g@)ZuN*l|2W
zd{GR#DLG0-_V^u4AicuJ$4_Z8QXIzQU$WH=Qo)ez*W<mrk~l=){0*$z==9RF(qrR>
zEz8zG_0k%+E>~DB(vo2x`l<pqy{s_GaV88M7dy|#ATQ(RG;phhbV2vPc=&eA^z^j#
z-V*(D@;pJ%k|LnrDe7C|<R<2wduqF3F*D0HFZfwfZkef~*tFSY&u(O&zcm~ii`tYL
z?o!$iUEiK#H`_m13)~eRJOUGnFb>AhPY(sVTU(PNEcJ}{#qTvR2Bplfz2ixNm1scQ
zL0A*R+Fdu@;Dpg7?W-j5;?V_v#p5m5Ioy?b0F>zopy)y+HG#Jil-VQ<aVMXkV707O
zPc8bPe!fBQNnDFXJw;}aXefYhMcZ%L^hird7l>)p><956M{p(_HZdDqB~cQ-3%b?n
zuf1=^f7Efx?};n$)!M!~s?Z{oJc5~0Oqqn;4^zByBeM&xBC8h-vplsg#2YBSqE<~H
z&SQ2f)tqEwHtfEdCGI2R4`oP9m5XZxxHT)c3DD!O$f=dTIm*`yjNKE5F7fAIY|TDF
zRIT#d@EOOM$=2>mwGz%!C@a0KRBn1Mr1PA1(&^BxZ?|6|mb*UscobimruL~i8cL;X
z3n`)f{>m{`zuU5)(q2PEsDAs%{*Gdncnc<_!O%Ni*>$h1tY@n`wO;;xW}jb@I3hwI
zG0bAPCkw0jnzzNW{ezFE&KSZqHa3Pz{14VSp3+ECEA6mlNmk>Rm=4Ff#xO>>#&8AK
z5_z}MFAq)YtaL+To_sm2-kmtLo|@vVdk{QY00<=AeM8XwKrH%T*ZP$f;W*T3Fr#i%
z$nD^kPRlOk`s<%w0Abw}GWW3CUH11eM+z)3z(lKt)v5!!UM=+#jtf*Ovl7_JMKxU8
z#fIxC)=1+RdKSmd6i%(;ZM!~kf3(<q!k9{`DslwiB&|V#QvTE=B#BQfdbCe=^K0-=
z8m&@IR^?&ZwxzD=`+L2IGMO)yrNx8oxgU6@IqwpfOhQ6C;yLvCUU3V?yL=caGvaTL
zequ|74pam?t*gLNqC02UYFV_KPF(cbqG)$YH${lZgE50Nbdp#HgM=yzLgi_#N$!$7
z(WiP1LE*>qcRJn%hLa&p9I=;Z&Qp!J5$`Cc7-Q4QzVp6K_)IP#Kk03f>JF3tCILJO
zLE3c*lW=USj6SPQsoe!JgWOMgLq2I-7CR5_5HiHls#Vjh>pn~HFdWDb;yK$ZvWT_R
zY3&J~6iaN@>^SE<S4ie`IxyZD*<8cb-giwzPWq-w&vUi7%xRN}8>DX-S&?qq?;5)a
z*5u)C`i<%#x{U<#T{VmC#-82-)hc_xlLI2{v(mZA%1Mbh&0RbrV7iKlU!`{OVYYO4
za~!SC2Udz5wH7?IQE%E;S_I2^aJ#wI&r}2F!_S>|wtjlg2J_S~h*&2+xTU8{B!F@#
zl|aK=tYqMd(IvKBhDCniTk3qgBU@!}5i<)}G6k|g>6FIK#CT3W`-u#yZTQ&zm3|B&
z33gW+`?Dj9?a_xID>8L*)~yRVQupQUD0KpPlCPjS6&WBnRtEDo`{J{blQoQ2W9=Jj
z*Jp!YUCidEiuv7e0N$to&_;@WuEl~xqQ17%*!|~@^|J<yG^D$KTucNL?6A89M_)Mi
zc_{9m87!SEv-x^C(5G$*Uv}q=D;U(KA=SS!ZO?S@yWLkNWXo=KKenQii;_hNYo`5Z
z^%|7tF!J~@g9fRdAv-EMr7eR(1~Hsf>m>E;lP7C0UgalXI4zvV&2z|h2!*m^L5BA_
za_&E|8zqZjDCx<N)s4Q0UVp<<A_i(`1`+_MmCB~4RVg#%O>j92;fLxz8tsD2lH<4F
zG37{T1e~fmR#E~2q0W}}rN!i_%PH%)Zi#s>QOt5Xs4+4zx{RR6{wIXKQUPn2W_PYb
z42Vuk(4523NufZP+v0fkzD74L!uVi1{9h1#H1)yeAt7`ixw70BCR*-na(Q)sq$qRC
z+H3UjtFgN?2gBs9%cIG9`4p$x8g6YF5*dO;X$K869=U`Z$li}I+pu3Z2J_&p7kYiU
zekyaA7iY4vTeqIz$@<<agPsf<#f4#qpGvmCT}+N(k)&qLY$WMU9J|X%qpdYH&6sMH
zdHkC}?r+iusr@f+-8+nXWjN#)fv#cULb3gDnZ;c`UkNWc>bv;xPI6Auj0Sf05R!X8
zG7VgwOyviX6qOQVzrDVD#nx<h&R%9@Vb8x8%+uv9%=)TXWt07Z!`DA|f^Mk#+nO}?
zkl?(BUcyGT=@Sq8`;OH_!{Gko4%?id%KQWW(}iW{MHgsDPO;t(b$F@4K#qo6+Rl7S
z3&R1eOxo*Y)N+N+!3?v6%i*>3Q+Bg?*t!KjNE9>O_%j#rNzC2Nr^tTe<I&w-^_OV@
zY^Rkzg7)Fm!md}$1vy2POO2yO$Xdw!kAMTkN&y$J2u8fpfAiE4n3<-ZpB`qnHx}}~
zxf#YUFjOD`n4_6GARNVwKVJ*hQtu?csLoNVEG?%P*a3+&Ttj?>pPS8}XSko9Py!HO
z*cnU4Mo_7_+8oq+(*KpW-SgwdJr3a)EM9}<L~rPN!+7X=-w20jm_9_qstoIVu_@as
z#1`*erslNwfth5Yhf86pKLJq3ExQv`A|?L11;d-2S}d9K+KZ$#F>l4?CvxKaxlIkI
zyN(|$VY)zRdn!LTuqb%iuQdS7^&&)*X1AK=li{Hy9$F&_2Iw2~M$tE^=ZuXpGi6I&
zTO3wLYX@G{gEDEj4KzuS2X$rM>7b>lUGL?|9-{ybove$x<7D>bj6bapHB&%k<a9)$
zzbi^os{|K0ggh10QCp#EXfw+*b?|cqX@M~%Pfj{@Xv}BxBLSnOHA@y)W})dp;1o`!
z{6N~h+_E26lb6T`UrWL`RxziRE?h24uIMIEJqDMWp7)|Y6TdJ_n#)}os=?1yU%#<3
z27zv&M+!SGj}|RzL=)F*J^#7`a~z?IUa#vfEXxF=^m);mLw;z%mx=SC)sgA@!UnbV
z`M#Yf;X*F#@0CmR^W+18KF6EaKT4-nLGqH9|2FlRd8JaQP#B$tx+a}NOxf8ov7ytC
z6H9;#s}}Nl<EryS5o$=24|IDC!?<nNTaZum8jkPdXoK>K7r@ly!mxS=i78wpBElc1
zqlE3UFQ}q}pTJo*W-THfamjk9o2kayqI5Gfe19XqTKvmssVIgsH;+a+Is~T@e#Wtt
zv^=%-L#qkRoNA>dTk4DDySStHJ0aA&XPRd34Lr+w-oT@<K?$iy2>ru>Tu_X<q2vt3
zVp7V_tI@eVf!?T;>U}F!lFORSeuReJ-NDIwHD>}?)L~_rdcdNh@f)J@FN=y0YYh~e
z_U{|MLWW73fHLTv?Dbb)Ms~2W^`Z95t%LgF2ZNZ{)I?|`kl$c=HFAX)m&;WhD&^d(
z+-{%zKV3xL#8vun{Md5;3}khIi%L~az)*RP@t*5Mt@`?!4Cu{Bsn-!py22--q+l{x
zq=&MO-8sh!xpUx%gNjNV&ykW0P=zkEZI3+k6X;%#Xpi?uL_}g@V!itI5fS-BK45Ga
zIxit*P^i;kORzcUVq#=Jy4sf++WW4I{iLBY3;U7sgWzV9mliLlYrQA|M%hz&xxYG?
zio;tJQ4LhLqI9oSd6<EX0z?F_3Al;<JL7jr0uD`=0jX;u#<#W)_FRHCd?oWW%*q9<
z4pfU0BY{+QMTV;qb7<TVRZ6e1BYV$xwwqh5Ih2zhs`2$X7qwpM9wmCVW_cfFedXoW
zt@fkcYhuIZL4026TvnR-_FP5_DQf9v7)~9G<WAFLYTdy&LYw9V-N0_yak>1(p5os6
zsn{ar(VR)qy(qUDUiB6AM?Rp8(Wa}i)NX!aI_pqjO&v??>!uPU<e4<}JP%<z3<6BR
z@72O1lbx1tDL1~Nls&m<O3<HC2%R?s+P|(<(z%?XVy8pGm1A8q{wf`8wJ7La$jjB$
z{AyxkG&E4+tGP^6&~TF>?7;#h<QQb`wOeM}?}-iG3!2^M!GB0-dNYInS-v2@ckp9R
zQW|Ylh&2Q<&RwS&_WuCv{)+3rfZgjlnEo^DzWq9mWe90|X!L=ThxGD&`i1q8Qd@*W
zTwF(wlf6|l1nd|llNVaTZfUlRALKjhlKC*rSK96wz$AszPa3F+kk8!<wc9oEg>|l3
zYTKcXXPFop%mXG@xJ2a94?MA2@qdQ9*JA$nxI6vS{|I*vWl$RgZZB$0pH7u)tlRA*
z8i$6t*+=V$o>rZAIPE+Jxc@H1KZ1%}AsKxpvw}TuS3bY9qJyZP{FE$@=Rly~XB|lj
zW2nl3F^<)OPyQL;B;){MgNW&S#u@<~%f%+5;Br3ddffAGV*N!FgN`NYuthl74c#T>
za58gj82|@i-?~oAnRlQ1y)xRBqPd((F=uy$V+q);%`<?`mgYc@&gFSPB<NmGd0RUq
zkqz?cU4!G<m#gF#TiIeUzBPF5`&Ds1sGXypuZaFy8$-Vx2lF75^{wyOXGod@PlNSG
zN~!nOCl!Fj)M94+#75f;2W@98)vf*Ps5tiU_7~0XhsxWXDw4%P2#Zd#2^$Pd;`C>!
z#-CMDrHT`hTsw0RrMRPvx@|*YW~}@WNo-ZBEu&_8>y9CdO#)Cyd)(QTcH5R9+n^q#
zM_MUN5qS>Jotu;;P(Eg}z|3@{84MZ6AR%-j8!6Dekt&9_9O!?i@UR3?E=y!|tv%p|
zEdah<2a*@@yxm{(o1}@vd4s(>h25)70U2_MLNql29Z|dTO1dlk+u`P)Ww>eVv*ok%
zo-|F|bVG^VEWYHh-AJMxzb_E9fw&#H8YY4f$89ZlF4?+V(~&|y`|xXjWMgRElI_x%
z*no~y>wws5_`UKcNbmzNx6X#arVey}UHMxm^h9n?VhjE9i`PSGISy>OlrCqoLB*XY
zy;&`a+R1h<KRb>LdA&8hlofhfQ?{JTqRx_a=N@zI*288}5^N;F@F8kVz%&K4XGg%_
z+Vm_BwCPafLTPVoBg_L?9m?7UZ5A_IHZwYW^Zx;}en$Gg#H>5bY`w#O$nby4tgj|^
z9OpTWxg=^-EL4)ut{4-=t#1Q=&bZUeqH0G=7v@oj<wfLr<Stm441Q?nK=%iX$3E|M
z&<LFpM57o|>yZC{{`|k-&o%Oll}@%RDH&b}Sf4r>#endY;|PO=FAPBU`d<UkFZDJ#
zr;;hESuftH^ZB5%U*!#<YN&ZlObmc5C}NT?BB|Khw-gAz6w<PAf+_qIS07lz3Gziu
zI4wcFR@^4)hu6X%*p*o|&+o(p7Zx!Vndwy*71<4+t~;#`<`e_8{TQI_a~VskFti<!
zR^aN4*eozV73o%c`I4B6lFySBNh<U9YGLx4(y;AHPx!^i-F;NYiM4yOXUqD$xlpx(
zqrvP=VFuYn#p(HwMZVON+SMtrYn<Px=x>cfM3qySaOJjU6^o&l!G<(_jmTDDRKVlo
zl*k9(4r)9FF*h_f)O{+BBb%CzJpoOus$uv-o|PJ}qVz2Jj?dYJ7+~9NPONiaY`fJr
zwtcty)jAbm+f~gvipnUlY)9ot;)mbhA$^HqHhmzrqx?uJt?CEbuCg<?%Qxr(y!-TK
zt?X16j(18<Ba5~jq;=<AGpwMi@pc+_BaTlXg%ey+3VKaTYrz2Y*>H`|f+$0Is5z=i
zEYH7<hRfeZ13iXfk?x(iv(6Z3ktAg08Fs%|0=L@6j;IvaGAYP0s~qSyk+LK6p8~By
z4Eu!02bw6f=u$w(&7^*IMmDLft)1Ie?aonROs{3xU_6WqW#ml=ve=%q;nZacs+!SJ
zKrX?P(ad+CQJkxvH3pf87h+I(WRm#7uG+`{q<p{UcaNAn1jy@8HRtZKyKTSMka!#Z
zg)9ZNb8M4{MJ?qEHK}%Y${><-u4YtQKV)H+-}exTI?aTw$r&!LRxUixJ(^>iDO-KJ
zc&AQZs^hd5rKfERNyw#v?`rWUr(#I}7+?`zMcNzAu%+bo0_nGb#1IX3@A|opzP!PA
zLH;b_;E-bBglx92JUhrnjo~D7%4JQW)26>_BGKQ}G%!wdMJ^!>wNr+B?c5JqU>?o3
zu0W-hmBO%IaK5r?rr*;kGlo91zdjzyIv17Qe8yj#-IQUAw9uXee1NjlC`+|beAjN#
zm)1|fjTRg7ZdUIy5BnfZ&ngyY)`=Utn3v?8T~gtZ_PCXLwU*VZamkm=mbJFZ`yvvw
zX-)1N-ju_dwN?Lm4FK$T-vRc)ZvZ>WnyyDA$6zAMQ3fQ_gbz@3d2~$J5^UMCHYWE;
zJ9<_hsQ`d|_6NY8+A8Sq17I)x0kDrnnq@eaWHnOC`aXjJ?Bl?|j{YV9*mv2M0&TK(
zxpi?rq~?U5CU)%SIZa?Vs<IDOrrx^Pd^vu;od)LGPML<rm2;(GDHZC$;KElm4d+eq
z2tQqDKC^iML-6N`N<i_L0j%aa@cg6?+&N4}o+uH?JX0z<{B-wD6xETlv-)WYU&qdF
zEMR#?6<W{5Vwk%x&QEo!O~-+WKO4a;gVR;(5kE!5VIx9+gjo(=U!2K$3+_L*?x<TR
z*ZjnNS#(bDM=G=;+`0~HDVzm;acrm9q4bNN@TW@&8z?0`^=-(;s}6l{dc`HOU8;t+
z*RkWIqL+Wi)W;fOn0lPQOfI@o;6t>*4XG#zE$o>)x46V7bKf2i$`Y&Kj&M@6a0I^+
z(C$E#a8Kn4M11sR-cQc=a8Uy<b5~_E(&r(+m8EZo=ktxTEBYJBa?_vRPew@Pa}$Y#
zVl=vn(#hp&GMj}eOxTQV`z~&vl+r=Zs6Y{b3{i*vMOIi4ijoOCnXPoXI2nI%z=h!_
z{>TA57So<s2a+c?Bi40!=i7z}priKMq{8}$vCS}qer2JfruO>FZRt*2;q?iK7i*ti
zWix)qu+lRPy#s77+QjPf<l4c)mk^b~GUI3^C~|wF_4((G%%^R5&TX@^&aj}#rz7-F
zk3CjY^W#G4GwKpREF6A_WI0-DDl*^7B?>b5A%vJ6aXiAHe_-lnqo9L)3C;{qTKZ+l
zW>Z#T4sr$IMb)`Jyh%cMsPt`u+6ZMU{}n)l5#d!JfHwB?tbPPg__18m%0@69_~x+$
zEb<aCGg06jsEoO-`MvzP8^pi0Ww!<T8-IO^&t@qJnw;R{ohuaTbrOyg>iCak%je>P
ztiWX2I<PZa1~dFG<eXZ8wp_=|Lbb-hs;{W6FH=UwAN!H9@m3JqoUySB;+;EKbS7#c
z@rxs+Ce&puk$DzTP4$Vo4yqPprgfb*@opCmRFWT`s<xL5^82O}P~QGi+4J;0@w+8Y
zd#3|}6e8D)M<OqR$ltuk0ropnfs^(jjh8kato4t`v8N!Y62gU4^)Z$Eq)^6vcQFNQ
zJ32uuB%NZ)Q{4ti+=@9*sSkI(>|<(KWPHTc=I-wJJw_|r9AgIbIc`@l$V`|9&~Y<<
zi=ha)X?HeR%~_#4Oa7hQOff7w_|iG@(3|h&R7tU@Yw@i<H8mjdXA~fits2a*6m-V=
zp`tJ*6CM=`C$vW7cLD6&uP#Nk+)>W+p%S^E)C&G+EepG6X1|Vb9BBF^cFLl^TDsm-
zU)X>Y2q`y`QDbo)o5UNCN_$aiG(Itr(LLEC5$YDwkSydXVq*w3>=hW^?PE+H9?Gu~
zOMg`-+>!*k%~E`Nr#I*xzA72$!;$zV*ugngf`TNzV?VV~+pDPXm5ot#u!a4cg_e*^
z^b-U8HbT%Oeuc%5sudU>Y#^$gqMX%#vU_loBtGvHNO_S%?<0<#<M%<u!?_3!>GfuJ
zQ`%b2B^MnBxi)Wc(Z;QghdPw-2-&%{@l_?b-jxVfx1YEO(>|bTj`u%q@QZvOep(fD
zTI5obqsnto+Q+@Y^A@i3NBJI=(Ib22UQ3dozxJD<s!j;2DQJwjQ;x(^dZ=xu#u=(q
z@Y16=ltJgYCW=iI1Dg=;^r9pQ2}vOV(w@3Y{{b7ELL`3&Hl2Db5C{^F#$3|-1k7h#
z5sMKz7t0t~!W{%4?=rAK=rIn&W%A|kJ#l=E+Bv9)@VE42@&PQ40_Y#?*(q0Yv!A7#
zC5c6<JIMH!t*#MdF)hEtA4+Gkl4(L5rfk6Im{hm!zaP(dl`w%=r2-SPCl3LuIbIp*
zSvFr4|Kg@(>Z?)X6Z9}PEU}HFC*jnnPlLV4^OR!fr0vjZ2V&7<P|ZM}&%RQAayB^Z
zX|b3S#_@6&ALWwOm%iI4`xoy(VMU8jw`y+u{Hml)OP0C&BtxETi8tEDUN%}?hUvO;
zOVyZVj7NgAkbeYC_$kQF2j1g|e|Yv-Dt@sJr9x(rh5c(4`Q_dQ%hLmguT#O92D3uq
zVq4dTy~U!t!S+e#d`zi#Ici2?w76fVsWHQcLn8>EjLTwsS`3#Zr4!x_Jv$Y8dVq0B
zJXtJqAF(Z}S3kS4{zeDq*u6V~-VOfw11{~Kg!pjUl1aVZw2Kvcr^VqhB;52{4eYgs
z2(^CjLryla>S49bL4dd3g=`xBSO_0}!^uaz68$qZE_r(b7!xxJ%?>p6=;~*gb4P4b
z);VmyE+pJulXw&@>;uEeoo4DqC|}6y_yM9k4-n-<6{l<&jrF@zMu+q^CW_<A<wPs0
zn{P|{SB1B?yeyWLH^Kg{jQv#0b@@RW+i0l^e2M9xl<jB?umU~QW7Gg^;&2dK@M&<=
z&7B|dHx+xOCN>f9;r=)p&Qe0;kIQs7Edgi16i>v8^s3VJ+>zb!$;!PKK#rYhK3%Je
zA;b-8!T=#AKWz0~yao>5%qz0GK1Zh}iyd*6hvmQ%Iz8U;x!gUKyhYnsL~NR8AVbEq
z!kTQP>W@Q*-6=sUItp`0){A#&T;Qz!be$xgt^@Jp_nuhaWC7I@#8Qaccd6^`JLvL)
z)<@a%eUqP*Bi#C&sc7D2b{{eKUVp6py92dP)T6p0F|piPgaYlNdN!zY4P*e3b04e`
zLWQa`Adv<0&XG%O%<!zKnJx1~7!37bSkKkC?k3uZ>LlA4&4rVKrI~cOEO617uT%F~
zXe_spq%ZD=cHY=UZK8O2?6+=;#&*jC*Gr6w0!4hwj*rAf?2mBAD-IP)d0fce53R;O
zr`a)5Cy`v2X0`}gz_OIqC6O$akoVGUnFu1_$kZ7{wv4E==!oCOn{SR&*+>Ar=SFPT
zv^_ze?pYVdBALG6&=q?#GgzeW3&Rsx*(;Z}@>Kz*UK-TM1u~jK_gcd;g}w^s9Rd^Q
z&Uk2Fv7ixm;0sO(GEr7H`{q|W*#7XK{TmZ8u{&!qZB2Ntbnim0e&>Wsy&31_-Z?AG
zax3vs8I#i;<qIbY$g|#9u%Q~=d*Zg#^~y2VqL|g!%bw<Ik;GvBB=Lb}(<=uy3koId
ztPJgokoeYz5@+%8my=dmBSXNO#@}&&U1Ie@k**amzjUJ`KJ~!NG%J)ANrjhaZ{@yS
zoS)H<RaZycWmn-m^-|iB#-uutbYsBP6>}{kLE^NS;O@*zhFic`uDrT05@sxyW2%s&
zEVg-gBpGe-kmA*s_1JQfCr7)9jhV5xw$s`pMG{a5OpA{#YFQm2J4lV(dgA_D&$t{9
zJ{)4ph1><u_{Mi=Jhw98O~qhl$7!U4s{D@ph7Z^jZa5r%8xZmfgU&e}7qRRv%7}Br
z+-^S6OfFes`cEz{`jo3YlhpalZ6}``wzs&b51tQ?5&ee|g35UHz`CjXrtFM)R(V5F
zNmDS9zn<Y@gQzIE@1?Fna}+s8(ITtf44W%5#IT>Lt`dI~oG|dK2e?g!3Os`F*+~7B
zx|(Xat!CIwlhJ+LA1U|Iv-<^EMBVVle;&cL8I>TF$-VXAhBqi+CV?^X_8I(*4C&P8
z3oG`m{JuD585X2}?JTLU`N{h>6@7kXSY|val77FV`xvR4^kGdj2@CwJ7zv@>{5#ZK
zrfAE^ya^ZWy?`4I=UF$T{297mS4D#ME@Yo&;!bC$m<-un%SLR5;_;8KF&&xWnD99C
zCI%sSKS4|@%M$YI-k89N|I)Y-1j%K*4s0wJ&BoH-6Zvo$5gIAwD<5YDA8Dle`W6)%
z9TMVhZKv;$XwYwe%uyMnm8~8t3L_K69$s4;wkj5@>OX0o>eRtI=;_~Ir-d2tw`@;d
zuK=#>Jv=kh*kw|gdWVM@Hme`PXib!r>Uo}ZL^DQIU+4xH@|`7XXJfZhXmG1Yedzwo
zxA3)FtJtZN@c5&26dUmgo6gFU@>as*w^%OHa?Otb5)KYP{~+O-BLL5f<FJcoHX8=k
zms}}MA&0lWh_>VQr)G2-Q@=rNgesQ5@9hd1+lZmpTK4e^4d5RsGZCXh;wXRfdTHX^
z$$D+*7D=tLc%pwY=U%4wsytnKESqJ9nsn_|xz95#xc%A9=4JR7+GVKcxr*g2QytgZ
zc?NUk+XHjIm2mDADbO*?2^Qo42MDaM5y5$HA5)BaJu{h+2sP<o&|0BG=Br232uw>z
zKQk;g>dv9;$0pI+MdHA}raO6YeQ&=^>$V3K5-$H@XX?j~s*Us&`TWdns}(2IC4p82
z5iRe@M7#V#$qjZFa*M^QxZLJj<dQFZZfTKSr|oheSedGGndy4sW_lLG${GCJ%?vT(
zn)Jlx_C;kFqu!p)sV8bsgi|Tae0!)cQ-q3|t#uAvT&&5><!NO9S;K)WJ$$wD9;BW4
zFA3L$g9(y{trpObWZE)qa}_cMsF^Z7x1`^3*uBfq{Gz@qZ(<@~>x@E8&TZF|E+GtH
ziloe5-AK?W`tYy<&8J?+EPBm>N&5?*maEhL8VOJ6b1+ZfCqZmlvHLQ3U8czrKNW9V
zHy2vAy68!Kq;V7j-eJo}RWIwl4euq~h#;Glz|+Xs7k4fd%ZYZDZF1~NlZ_^ZvB^Px
zp?|-_NLjCEnCM_dx}=f1QE%P~i~8$kG5*f_JA`hoX&<6McEanEW+UK`d+C&y<P7m>
zwH{xz8BZvepi+XmnqNvifZX^|bve9M;BH)QPpE}G+Mw(89raeOw9Wm2dO!GvdRN+Q
z_JC8QFAVhtqqO-u>V2>=P7P3R=C|?AJ0icK-nek^@G=n1hWg2=ZnW#4#G5_=W|j}s
zk5*&>>pi<@^^^5>2tXkesM(6;=WNQ7Ne{A6b%wFt5+kfQf8`}mJOqFMFTvp1QOH>l
z-OBpcA<mgh^}>kqVUGNsu6{JYd{+bJTN+_Uo}hx)tc{HpWq2T&HC6N&?&q1{$Ua=L
zp5>#EsiFMyV0ca)1rt4QjgN=xwGCP96B}p6r2R*RP634L><Z0d{CL7Xk#p5<H3zp{
zN|!zj2ZZD+(=g_8n70qvJ*?-T;oOBjw$AQu?0<26I?hb<R8z>x%9l1-Qd=3(Vyx*p
z_j^Im?V9AkS1Uo0m3|>c3Yljwdep{vGU#OQ<SF(Y!kruKz`0rV(QXHv9&#WjMTTri
zMLWvJyyzj^iwF`zK)PO3iAH#JHzgoL94ezm3!biLPuF>V(hj-3zY-vtPOG*|N5X8$
z6nOXGMt}a|8Sj0c+I5zfsE{TM1q=-gXOl=7|ABS=MV`twLC8Y-1%n78*E$~P_F^{J
z>v92c?OUP;z;~oE#NKph@lEDJD-(Y7<Haxh-snzx{?yw{j}7Z1c7z?RRLoR;j1z9W
zrYZ2FhUgo#ElGtjo8S)19@^-Kqu5cUor)T3X-N&H5Rnf(=?2|tPI{V$b>CszDn8?~
z=;?$g>-SAD`K-n@SmD1{Cd1aZUO%XQV=mFZ`(cn@o&-T*B1LxGm(E8z!S%d9ul<8y
zHE3s(T#?UIN~v&Y1B{Bp*S@^<;%4Wj8%q0jD5+?iZ#|@EijXghpFlaTVjtib?Pl6E
z79|6tB7Fa%DH^L$l<3EH@StiXN5jK|?M@;zi^Zw4-yvbp#!dcwE;oD?{*Z`K<cC+#
z)6Xu~V2y}1Ig27+C{aF8C!NP3LLua&@HZUHTPJqZqBF;@W-hHKoIlcGcKV_L947rV
zXeIp`oPfu-d?l?(xm&JsiKV`gjjHiuPR>{Wy)C}vNPBHeiY^FLJAk^hrf1qVWb?FF
zZ$O&;rC<KJ6D@-&utzg(%wBGQGU9wBoWngqioqUU1A}vjN}+)any&4acq8O%RTq5j
zgJYuCIQyGg%ZMaHEh-Jn1gsSi^1egeilMbn49=BK^wq;qr3jivrH>i9GIRwqiibwh
zM-K_R6L;;Fy1brM+&g}^qb)8bXqB4GH{2^}UK40d&CsItk&%RObmgqoRk?WfJ#_f)
zq5q<|1b+-%FOpX>QJRHfd&0v@O{?4fZ-**Toi=9X)_k~3ch$@C>ec&>?hHL_S0471
zo1gvEPX6Ym<avdZdf8D^3!Qgh0oq5481MZ4big$4kSNQ59oq7tPV0DKb7F(8_^Dj=
zqc-@Jso9+C_~LVIQ3xcD*?=nVJ;Jb*fcKV8=Zh6#B>;6pW^2+dFkH=bdlCbN8?mY6
z3AUQNc?^ak?h`CX^aH4SF{9!e)GY%RkW>Y#JZeSan!pHZE0qI^K`~F0z~;(8T8;&)
zm9LjYMr8=e$Ekbx24=xtd@$qES4QD>&rX>Q-N5PliSg01bmvF{CvWG~c5(50POI#5
z)$KU7oy|2bEKoTh_8-;bMx<5s573*N>}T1FYkf{J8Qc>0)|wp@Fr3WhP=^<QQE{Px
zj*G*aqLqkrl?ycAI(@hEbvxvTM;F8C3KEpX1V_y;qj3s9>-Wmr3$IV+2SYmVA(zzi
zbq!lB4u|cEmqcXsq!Xc_Ce2NP6uLfyViKnYmp-7vdVPVoc%kCPuC54*-9GM<e>d%p
zWfG1L9yI$J8-+>1NxlTuk>sE22x!_3DHMk~5XqbuRqW5X>T{=u?|0Z*w^x=+#7Zn#
zSP*flZC0fn!)uO<D7YO7uio(IBdDIVbgQ)95HJJ8Hqf2Wb88*%UbH6iFX>FPMTT~q
zR&|^ft&O=|+B=?4U1+8Ga{idE?Zw@>s(>L4FXF<`DxQDKky*^Ucc{xc2?_U040;>w
zgLJqtoFH0ewg-M(O_0M%J<r7*CZmC8D3)1wkhT<k^%8)4$kP~R6U%?|+CUeVC7Jjd
zY}=IY{l;sr_I~f`{q*S-95O|~$bRXXt^ad`y~_Z~@`#Ld35`Wyd7W9*^x&(^{=y^B
z_zdN0{Bi7d6pzz7clgDVF;*Q9V*~x&k2{Ur3>RWk;UoL0?w)mUyC_}T;YY&Dz$B(S
z$`_%92H@F<w;y0@ZC@W5LPw$>zE9|H&Y=C3nCp5Rrfr_@WAc!YkosvJ)(2#x0gsjo
zF-F;P`o^Jnly#++OYJmKjQ)>lJTM;+vXV>0k3A}Co9oN$)eP#C1ZM_WAc3ES(b?Bf
z@OF;?o&6TG8PM4;?lC$7I{Ou%vqv(L1SsNj=&~302ezGSSY6NH;<((@^R6Q+ZDcBX
z*KzEW*h%O3J3H)3hSYkEt1C?4rdQh9z!J(9WtVxShl4g*jb{6<kzEPthWH1gp12X^
zMAfAeHv2x%rFe`(e&ogIM=J6_C^EhYuPZLU!@k+M;Hn69Z7a>0I|n{XUU!1NZycVn
z!yWCK59DMl3eqqbjSUUl{}cu1WTv}m&tf|EvF)F3->#WqpxgH)&?LVB@@jUhD~_5m
z!4`U|EBFiBkfWf}2F+T~OD*H!t!gju0MoA!{96lxdc{Kk`21A~u$i22n1D_Iju<h-
z5{O$_NGSHHP>k2|`y?b~IA+`*<BO1`hBl~$SfayPMKDINnGRsxzMT#>lGECgzjga2
zdKj=j`9)Lv&j|Uc$Tvk(EH%CtheLPOoJy(i0oUnTktxAucHp^<Dsb{$!SZqahkpK!
z6}g+ipr*1#@(IUukf~(PhI3F67xsGdD1ik!iLeE8(@;xWi_qji=7?d`qMDJc!ZG9e
zcpoRJj+Fv?ve@~(G8ayUEo5Kj8cppgd2JOTx20@QfkZw^hSsUAE4%XT-<uNuRIR}j
zo1nk!8rx|n&t(b%TC+QbPlgE)zQ=~#RxL@8TtBl>eM|0X|4+K@=M91z-+*B=1j?>s
z@}Q}AFn#xXH(Hsd=2KN%%}nQe6np2=Va)Rwv?ap#K}+xD_mP(!YM`aJ#zYlp>Aj6X
z?#J&3Yv~O(=VZwLZt4BoR}jB@f-qL&mcYl)zYJ;#(#B1%<cYYQpW)-mr)oF9mkOtn
z%Xs<ab=KF#vJ3XSPoKeY4~L}hPwe9tDJ@cP8#Ky(c%C3rwlpurF=MPcyG-+>%HUN?
z!XvR*lWyW|)FI63D0b@=bS<CN{#^byCx@Zepm*^Sul=cM_@Q<Eyos<jS{7VeSEq%q
z@PS4tL%GDzZ)0A}jX)s)V_)M2Xp)J>$Mxq9^jBwVIMCVJ%B80+c>JS-3SG~(Xo&Uk
z!SxE4O|%<tQA>^sQ_?t<dL-lCEBQgE$-?^<ldob{*k^v2rd7h^`{IRY0GWSuzvhBD
zZr~gepQlkn%jcVt2I^CiKq=L5AOZyBv1Q_`WwxOs`?F;jejWy7?ly^7<N;)luc~(5
z;=Fpx+Of^)nn#ntFQgJZ42Cm99huasoudf390e$4(lF_azTphgpr`sgRyP*9*3O_s
z0}~EVLJA`6|2+aaV5;AM=jb$VQ0Z=oSEP{~Zm_sx({<mkM^bwn{1y{=ppP+9<Tjl7
z`2%kyKBC!}D+7Yg7){4jB3A~BSe8%nOxh|pJMK9C-jHhw7smU7p4)$aT`Ac06wQZd
zAA%;~g)(LiQ((@t-kfl0wH<m2Cc-cpC5A_(FCSQ-e%=pdUAP4e(72|Ev)ziPw@V9t
zg^Bsq>;d}CYIeq@-wz7z+2B*H!ZAnw9HsyS25W#`T8QT^=n_8N+|>2!xBFB6{B4kZ
z@6i74Cs^@MBEtL|dHs23F%3)zyK9=pf8W{f@8rSkdgP?_|8g!Re)$k6+@gfgJNSJg
zJjsdpfAsPEQwaCtn;*j%!jDgH{uR%k@4&djtE~w!e7=jFMgEY#@BDW-@+Z|p@ONx~
zr+P$KQApI$<DGB+r@r<7{8XQb!PR?QyZ6rz^K;H-frZgc8aGo!l6am@+Q#3*;rA)x
z`|BwxSb&gu+5Y~ceSfVBZY;{+!8E6*y@>q|z4hN;_4_-p$8r-<`=2ZPIaiLst`x7}
zten!*{(`geF5X{v{x3fC|4RWhg~M0nc6lCA@AeEEVU62dmQam`HU9=RE9PHe^7GgD
z{`;V_Tm^DxDH>J_6gcSLf#<7m%}?1E{%U-+(G5OM7n)bUn`Zp`lVG1mybXe!Zo7lP
z@u#}&*TcLeLfnnGy(VZ6xYY-Z^==z#r_*S3+nuCBe}}^F@4O6mN1q9IMkL(MDXicA
z^>II5ybD8k@SG%G$rD^+d}}}G1q)r=><RL%EG*KoOi!KhFxa=om;XBy{`Jn&`yle3
z)Ou3>9!0R%&-mcbQ&Bg!XWiy8c|FrNpYMP8Mg`}yi>?Mu6fYb1PhG)PypI5D@%@Xu
z`tw7+kA`RZAco2IZcm;4bqlPw9<Y-TR!uuB^7THd_ZM;3n{-0hN%G~yoat%cpzWR?
zMWM7?kd@6AV1C`zcVJj<d(NJ#R1^eKFCw6J&9~f}US{I{v)Mf==<vN;tI_1;j}4cD
z`njTj52fk%ifO$N*gp*|eMJ5%Fo++*iuLej_Vi+@C6;P@RW3LiJ@3L{5HMZ1*NHq*
z5)unhmmc-~rOnVX6ZY7?8xFf=YAI!|TrVHrT2+c}SwMMw5JIxTvxN~|V;&;Voqy=l
zSFMKk0|Ewh)!x!|4t$|dN*N);3rCsf@to!SaYffa^OIqrC?mKJUb!E&nu75HLHF(o
z9jl1NF4iv4y_<&)Y+<m|aD5&=zM69g7k?%8JL>#B`aZ)(=`NM}-M?bD1_oPBisw3A
zFQTf~x;lYF3b!78zm!Bj{0bcfajKY)t<abUtV#FkJo$2KDtX}hW`cwy$J8Rc)32z|
zV_TMytwjy=hM2g?kMZM^*RfHb6~b*y)=0qC(|E>EGRK>+9;4_wElsRJSgqJH6Pym3
zISN?7%gbq~LSpKL037tpP|fFh-3OW^;K0rn=9K;U`_0JbUw5k@idH&0`BX5`UgY)j
zzyzC}-FaZk1d$$=)?Y&CP1yGG6mYcnII(8dYfwcra)Lhg`=|lnx6W7W9ZRXy)t2ai
zZ{4^tMlZU^$d_WU(gRE-R<<zv=|GX`s(`lRA>LD1y-;w|X7%}I)p&zyASc3ud)Gjd
z&Xf-(9FmYEL4%34<?R)NHkEh7y@M6|tIHG6(;dt*Ghrt&HBdg8Z;csDm02yE?P>1%
z>hZbG2L&dv04-X5mRrKJg<PDGw!g=pjw%JA_Sv@U*SqL-;5NBFy|h61ZN7b)1Z*?Z
zlcH&@vHuK2XKyfpb2DPy8b!17vX{SMe~@hR@N4$D?8B2x1K!g#*K(plP{QY8Vt=x}
zNfef5c>~sadzj;LSP+RHN9M$OIYX)UVHjP4(f`5RTZcv2?Qh?=iHZV(fJlkbDczue
zbax{lUD6FA-69P#NOyOul+xW@Lkv0e5bqjq-TU6Uf6sHg$NL`7@%%T64m0ao*SgmF
ze$Vs#d?hHmxAfvO@vXDdNxMgEZs`OaeieC?8kPAM&u9}F-#j$M8Md|&2{6(Zf~|sT
z7%svZOZ7pm4^k?M-&O^{;y)&zwT={H)y^nFR}UX|#I<Xb()6Fp2POkpJutVYQlNj_
z+3&&Jln_1Tv$It3byC^pOFhDc?2KL0HW!?+KSZm5SclNhIvcZS933hslDeAe&+0Ho
zpc4%yoU5!Q%q3FTQoHPa??O_x!*CYCbO4m?jv<r%<$$8}KvtR<xk61Z<*t*ZlG^Kb
zwXkDSQsQkzfjhQt1ovvQBHlL5pkqyffoIhodiGCy=NvQghKbL4F7nSWfqeZ~4w(!f
zCl!0dwULWa1fN>mM_g<Oi~PF#KfR3-j<1V9Xt(T-HR}P3EH|1z{njyQba!MA5~|&F
ziAmT*AO`vjneWC2<vW%DRGWU<<+)MObefympzMkrm7RTOX%f;S*q_!;sdZ}iAc_W;
zcee#A#^N;ciq1;2d)=G)Ct3{-q3=+!(^*Ug08|?s8tfL9sKle0$dINJ`78$j)duFj
zTBkM4>88uK@7~$SWrpA_*K7m+HM`YJDr~&0W(XJQNRJN=MFP5wdW2+0Xw@i1!eB)H
zwxJ;*=>cU%RG?c3Owl-e6N4Mi_^v;K0FmJFDrO(Zk<@qRtW)G&hIPf%88~iDr2yLD
z00<YOsyPn%7RipDA(1$u#mrdgC=zE281=_pT;k)c6L&#}yx1A=t-0)0pBX$jO6763
zY2Pr4|52#?;pg3ms#{odmu!9p{Jc}>poE_X-^yDIGMSlD+h!c!@!j)jgy`$ftwDVm
zG<!`ol}CL`n>BR6kzD5|(B|!PH;lQa$ihG);g6*OMg&x?wvRnU9k*vPI%63WfS}6<
zdTCC?U)BHpssK+Ci|!xC#Sds;rhe$rZ0C{(W+Q+4mje>BBK|T3aSXifN({u<JuAT1
zTY~Y~cdJ4C=?EliQDu94pUypZ$qsSx^oOrk$!Qev`itCz+Zp-vNw47*k_5zN_X5k~
zB}%$+`*_Qj!b!n0WAy^kk0watt`4-&=5pIF6S?EKd{o}7)3Y^y4{+MW+9b73aK7{U
zd0ODn<&&;q%FNXLx>5$xnH(XtFLivA($BwQeKMs%$GEifU}SGld3xBFhvk_dNrH;g
zKmDyvz%4px0s!_{bDKy7l?&Ayl;b~45^Xn0B+ahQ?URgH4H^wxy?=A>gVR`syu<G2
zJP9cKYIFiaXKGOso*<2KVGLB>VjxpY;u_*8L!5!9D5%`BH;G$@*YyZ1HR~3B-4#5h
zzT@r2P-d0_dcKuNc=)F?efY@cq{-1%L(A0)OfpD{O>ay_+dZAMHD;s!eY~=@3vYyt
zw0fme5?7@ah15>T_QCP{!>vi9xFu(Nj!(o&IhuimT20cCo{%TzU75hIhHp`AIfg4p
zX*NPD9N$rFyfwMqhQxcXf<-h})e;ql^0}3rImPMl=e7F0wzITV80ZV1#8RQLfd-R|
zL1$DZP)c<0btm$A2l1araSa*f{V?-#-@k7J5-v;jN83Wt^cO1z%B`QCn(Q$kGt?9I
z7q24)l7q~Uz<^KIi=Ln8G^+Y@2D3uhy0TUyW#mEPS+>VCm-I^kt|CF4ULLpO_n-y+
zayG!)TKxf&NDz6bbf6^Dyfkytt@$nu#8T)+-yLGaMUFeL!P7Y8=QCKnQ8v#vSKDbj
z%9#c23P?l$(G!C*(fL>Fvqk8<mrYPbxe$#;qg|u+#&Z<oZO=;aKvu=Qc%#*d(e-}u
z-FRK%gu~Sm{h^}E$F*;EQ_B-M6%2Ft^vDu807IJxeCrgTEfUdhO+Ywz0EYIfSJKYg
zjt=Ohr_L$TsT+I%F;!^2dz_!IkaUDJ^D4KW_f4VDY#`0N+l?IbM9CBzTGssy6}9yB
z*1U@d-7`1-{b>7KM1tSX-P0w~p<5YjBnnJQ_Zc{5qCB&VKn@rn{7TC39z38^FApdT
zMl!A?%6s_`w7lp0gKV;@c2ywej!J$JDjQBL!fT}%dVHhj5vyrHECrzs4#<PO<?HX?
zX>@xEqBCI*&{JHBd>bd{N3(%Qi>?ghqqg%hHh^5?6E5m$WVJHmY!L^;E|;r*Saf@N
zj|gs{pd^YfA}zXSdu`*tui8H?y38il1i*S!nOq}y;K8@_CbQ!PbDzJG?R`}Eg7^{f
zg~T9$uE=fl-1o0x%^D3d%0$<`n;tp3rGQXte;utvGBXqkU2RtL@6L)iS*RHtoCz=n
zkn0zm0CGK%RzBEQ+;rQOH))KS7(lL5^`svS=4ML`yAGla<agtmcMM5yei%0vr<g>s
z%9XajXETvTK_gPEv$n)%H+`<-b_gh5r}q+pp<INp!)(;Ww~>ewY0(8rYC&Gy;_7Xn
zSmG`yQ?K3%KiGGuI!a22XL5d`ls{K5v;LQsTT}zs77mJB<I7CCgvq~Tn*<fjflclz
zi|aaMzM@u#A+xW!FLsN?D-zh+ccf=$cylCk<cA6nC~WNs_=oG`-dy(PR`jWyZ~^1v
zZ$%bDu59-%Cg=G=9-WX`U&640ZMYn^Fc;%slb)P*w^*}vdK*=Fiih>vzZCnv!xQK`
z9>;Cgtn4e2VKAMotdMf`sOA+5c&ZlgNJVeA@BJ5Ih50!FHYs~e|FdhJ4L7A$j{~vT
zD)lD;<@%j-86lut*P{W-waMLIl<V3?K)DVFlxx@CnR2(*4vua&R=tPA1zI$14zw4b
zCouPLTMamL59O5vMR6-%M*xRztrOM3iShFg2c;Xqnpt`e?*GaH=zjNFsYkC~Nmqif
zrB#_9>DEQ+^`<BY7Y9nD?WfwEcz|0Mk+L2R`os?TJ#|H4!R;$+E>L~o)-6Px9%XJM
z#%ygr64X)6nyH59{++?{+4J_!(HorJO)Lie3DmBk?4<MQ<|p;QSDs65CkCvzfcH{D
ztl;<34Y*V7v(awfj=1_<Nq5$=Gls4lC_<Gi%yrxklsd?sn2%9tE$Z#g0|DN>UXMd4
z<2Ejar%ofV5w4{Euf!doq%v&h!uJsD0AH47Wj4qDz*P6*+RC|;WV?Rtxj$$>Z@-nb
z6U?$z6l}MxyPudyCDhE;YnXOKy_~Lj>071cyy^$cxC=?KtD(t9b@vP%Mltv0OS;(F
z&+U)7SP3=&rh2gNd(R}pa!T)`i92?FK15mD$}e3<nTUU4svArqALz%28+=hJ8%+#&
zhNgy88ng&Jh+gSB3l+a*^>PI%{ZMb3mpQeZx{kzDM^boLIZaG7>Z3GFHe`V(-TcX=
z*tTm?{aI<}y!gFEdP9z(wlm)pyIuZXF_;*#|Fzr??pwRvc`O^%L9PS*M~hG<oa$YT
zF2G+b-~G^L|55c-yEdQ*gyOtH>Wt33>HK|O|82(Qx5-ni=m-YP#Ve=q-ln@=OJi0d
z5;M7>=iz<PG!4%SG}w@wYB2_PZpRD3G{C98tp=gGV39%`82P`cfLWNfsHA169oCPE
zkG<OVfZ1<;{vya?x?j~Y>Mt(HPb?Yws6Nx-r<Nn0Ou{ou+Z}<gd_3=PUR#m#-0Q4G
zdvC<*xbwx(A!z^Y_e^Sq=mR_My>AG&X<)~N`ZrwL#4+#M0CwD9ft8?V30I~x$q7eE
znpkyqeW^RrJ10R4Yh2TF{khgC2=LF9In<E3VaEkqRoAKIm<<2k;elYEN#E(#NWa|(
zxl}2+3hcP93m(9Z+bR*$!39v&nw3!lnf6Fj^^5PJ&h7wJeHWmr8{H8}Ge}f*t9WM&
zLzcmU_J#lP)DJsuZ!(vKAN7YxsL<uu#yUfjH0xHAf@i!CP*s}^_N+s1;1Ajp4;uI*
z()BgDMsmUs55q-72Hg3FDrO3hH&17W%P8Y)kGZNAE?1F}8-GXwiIpevDY6c85&9MB
z+9LF7Z6Ko!PHPznz)t_>N(1;-M-q1x;7SWrDjje;Zlx10#1l|de$n23_wHSbt$&E!
z))XffrFNf^KvM#%nK=Hs>I{U}HD-*4=(0C3+ziBucft7qR~q;>_Q<9bvZV254ne_s
z8OfEl23+YAIJDE&h8S?A(?#!hL{fwUuJpmW(%)QZo8=C`m97f!1zc&jfwr1I9wmQs
zrEN`2NP+Fm!DHv{G-ir+)8rd3!>xKf+bvp?NQI*gFZoxFi`t5bIg|8*f?*;E9r2`v
z+v|q{XzQAcC<fw@n%JEM(j+q=?$cyl2WmW(FleXjG{H=97&KZVZaLwxKwbjnu`R{z
znZ{Xk(j8Mq!7qTIrYH2i&JfWv=P%?IoNu>G=>B%*U$l~S7;O`XQITW5-lN?l!=KM9
zh-*2OWxH^B&p%Z_?#)xMi|rVrso20rdTqHio#+;eA5fnk50XAQ-&C!cEJL{NXZ`?7
zkCjAnHBEN|u(YQlvn!+Cmk~e{k|KEWgm18|iM=1+s*z4+EeJ#AKnjKU(5LE^TsF)1
z)T%GU=nv4@y@#mMM^i7n`52L2+cWpwt7$VxudNZygx~(MzHs=X7c$tvI9r?8sWFI!
zD;9Y7iImAa9;?YXF)F4QqX2+nfjW!Ia9fP8UblKVV__&ew|zQ<7YUYT0AOj=3U#6~
z{Z1rU`mm4L5O#gREMRc8NLaQ&g|Ojtt@Npk-fl7+${;&^Gc<IgT5Qp8s1AxEz!Klz
zwl}srJ6L_2|Dgden*z49wyol+VwZDSW+-4wgJ~01djvDMg|ji5C-~IQJq3-qQn{!Z
zKn4eQBPlW(Kn{Rd|ATEep1G$Tkf(LlMA5f9uvZ_~D%qQwEpq|8?SYsD7Lo?)o>TI}
zZacAe`hzZg4;*#Am~VSryUPe+o@euqDo|*OC~2GsdcR6+=Q)d{OAGyNx5Wga4T_Hp
zfG*7&IXEZdWWgHYj8hqQc_9*S#5gw*t-IGweBov~Ug=Fs%q4W|-Al@yu@4l<xIfy}
z9Qes~ivtbP1vBj*L%##N?U7*8hE{t$Vxrovz)@ypEJ=S#3%8>(Yy)o=z2Wk_Z*(N5
z)}#2RlF4iAR=!RXB#elcIx$@`{=*L&fg<JUvgV;pm1g~?{kbpKnk4~fXjwv9_=_i=
zrS05jP(ESJ^Zpi=Xg*f_1!H{Nbx@&_UbFf+fkzA$5OK*Rmazb|;|UXnf00Fhs;?jx
z;o?Fp^_WC5=F?1xSm`_0)Lt7))6%~#A!;iA8mMz-IzYO<Eo{qe1tn>Lv+0igQKGs8
zVP+7|p1jGlJ)wYDUiTrv4`v`Kcd0ve716}dZ$Z+d5ZEvs-|DCdq0_pvu15A=J^H(F
zjyy2dBDS9=3GfWZq8k#Wns_Fw)Y-V2AH$>g?4xe&K<^plY)@rZ3D%TqufbSq78QgM
z6)1&rWw+}>-Fx<PqLW<$FO?QbZ14dM+SM<r{0I(JjC@!%DKnF<(llc-<ocvVzevbT
z`AquCmHxkJ&@@MyWG0CX@g<+>Gh1eQxg0z?F=XFlci&xO?n7xf{U$iZ-S1PPZ!Uz(
zI6k0ddEl=sb5cB4AV0ir!vV8+qx+2@YjL*Lg1f?mn9RmbC7@liJrr+qKP8X1ovP_V
z7%4svUQCcdOPfr!=N^xFN#|LpVWHncOQ2d}&bW+iMa(Thn{XRzo|YeBhq3&?%48Ct
zpJ1CVrI!a)v;8f}<eh>)EVWhtw$xs3aSt67u!kA~BBh>F<m(8GU|&6P7<LITY6u_f
zWu$!NPO+eTb>Q8UHJYNU`5L%tNAgw4zqVda$O9y3)Rw6lG=M_ew)>}c-O79%s~H(O
z7KCwB3gy1g_20&`vUgX3gbAvT<{ad9=b)gUyff^9&~)n6UB+#XPI0h-ScuKBL{emE
zhkRXFlEFpAsl9LUnJpkeqar>b>Of2tg&NTy{|da0dTIpu_-P*>n<9+eLb|<H%-tYS
zYClx&wa{tYwhXfdSEiyZg2k;`*~$X#-eV8Z2gI}J?#@ZMX16td7N4K}+ftjzR!|ez
zW&3SnXXi~kK;3d8wHGO&?pK2Mj;+$ZeG@(Tis@R#O`l4C2F@g<CgY_BzU^@NLw~Vw
z7noZ3U@$|Y=$9{F&@5CRw+rw{!>qTXRkTY?fS8>i?64&eYk)00vDLok_|3J$zA6{{
zAzNC+`&zan_yQWxIQgIs{$3QDYe&|f7QfpY87uoZt@F?dB{m@*xu3Ula+yHg={Yn^
z*R@!2hg~NC)|pG&0=NoC%Qev+%~r;7k!^Ch2b;QKV<WN7E9jq!A^qCl+6wuklIgfC
z%X=T!A8%q^<vxTNNl*GXHmIki-LT)KYFT{d9qIA$)mB)95eeSqE7i19i56XHeF>Ov
zs4s@0mGD%fc|6npAo}9#xPY;+Bju!FVs+l-W?cf#k54JeVxJo=x+yq4n0hSGQTwzd
zQqz+_X6++SoV^2D*-`Weordh%0C0$fF1Fyexbr=F1uN7k8z7I`S<>;yh)7E<LOFC$
zrL4xd5x^eGY}7;g($UMyYajIK7ifhtnDT)@$jD$aM?&S)On*pl6@(4R?q;Rks5o>O
zU(_jTB>pa&r0*Lm0zr*lM=kOOu}9H$K!WQ?{an$)8FA7#&tlOgsn$aDRHsn8TT^Ns
z#q)>lmFDWbGQzUwUDF$~?8LTB9Lchv9<(75`u&cPf#7J2XZig5*``2@;w<UpuwhzP
zFLU~@9}^>;XV~+#$OJznZgihG&TQ!VOgktA7#+^F3G8Hs;)_MrD@#OCF~A7~5_nbH
zVt7vK`~IG($6%&9H@a>9F;fj1J@WIxLOuL*p&srv0Q;rnZU4r4>EQ|=x}VkHxZ6Mp
z;wOCp?VeG~RvnIcX+M}H6I*vCuXuiXpcLI5(=c8V5Z2ts=W#Zc8RiHyzlJ`U1=<bZ
zNc1dOFtND!nKO?Hi`ht5&Q2(z%N@ET*_WlSdFDtMt`_>V$Z0%UaI-CH%!~*XhjW)>
zvce2kL7^yGFaXM0{_GE$g9kE(u?eC*iUJfIMtqauiSz?=*!N3~2R3fxD3?gCtgFIz
zNm>xv0XvUS86o0Xg;QxZ$rj3Wiqtwc)lYQGDWT_UC?<x-H_{sQQvOn(;#JSiqTad_
z{`SVHxnkXeWPy4Y`;ESD41|JuHb$nSW}@w__*r28U(M?;;##n~@i98EA?KW^_C1qf
z`9WpY`l7zs-%IHc#o?W1la+Fv9J`zkjA%!BMNKJU{4&-O0i#upGV6VX79nh#G+q25
zlcTK_O|NEXsg=vK`$Jk|U{@k|N!nt@f;AGA=~ky5XUGw6NZdZsbC(=^8Lr*C%rg%V
zy&T7(pT%@MP#q4NrDxC}p|*P#?%p|zuc#C<=}dz9nnT+174b?;=Mee@sFRutl7Sg!
z;9d30=o*J;{g<~Ikeb^!CWM7PW{hf7vVB!=Hy8z|NFq$}*x<dL4kFlCq?Y-20vwRt
zFjLJqD|=w76so|ZRhr-BDiM(NqlClwMxiaK_l4DuD$Zartw8~(mKHir!y$c(12r>r
zQpKn!b!GHjEBQYbzk$fIswU#oJuX%qnO}v{w@;qguPXuub2NziG#{78<~AP}JOLn&
z*Upk82Hi7@1a~>8=HR=|n~`@oJ9}-_t1K;a=#JPeCWJsnV(dw+{RY>qCA*ML*o{6D
z3O%aVz%KnHWE;6{1}cX?w$1#=J~uJk*!e-NuahoH;UK<kSf_`@hTO-iF9VcS2D)9t
zjb+F165zc`<2?Dca?}x>j6U8pm0cDv!NH4(8jfM=h+$()>rJBQ6Bd9yf8V#bKb>p5
z{o+PxMoPDLYCZg+u+U2W&UMw(!R$UvO^B+mljlW61Xt5Rn6ohx3x)rxWOkG+e>we$
zJKn)MJc8iRr(||OLMg8$;JNeWoA##=?yHo1yAljd;?Q1^KmoP8k<=NBg31WAOz9+X
zKO(&I;Wz%z3V>EC9a$t<FJJT1LM#sRxz6E_H5E-%jIWpK>koA&dHSM!UdVv3hD|i+
zqgrQUIYx4REGv88*aM@xqb1;u5b-TC_@Y-;Xf@7KcIw?U9*6DaHy)OCmC<U4@hBLM
zG`=)6I?+OGR`l)34tZpYUSLsuGfbrYW-(by7R_)(Yw-QUOBY!V#|wf2^@f;6eB5QV
zVQs+S8z9S-FUW++YaVe}zDA>n1J0KzBdsGwEr)8Em8Bl&C-#wlcwcHq>w27lnsH5Y
z8+c!$^{3Tv4PBLgoYpeex__)cX}2H$(qYJ5KjuCLz<?!bU{uKl=mW-7z%fI&0Nl6{
zl|1FpJ!r4hpaYV{vC@U7);2RYW=k;H6-^U6Ra(VSI9t!Tu4V`_m~&nR<FK(gwG-H|
zRr2}z`31#R7K--Tg8E3bhJoa0b(j8vY#C2sHD=X3lnZFJc(5sD9~Z7nZ2S)#Wig=5
zVi1$Go${76CLu!IX|t*qUA(M)POuPzg;YmoJw*oVO}j+Q#JhaXqzSHzO%3v8nuu~Q
zTX=9!%jPSkM2JAW)O=!&U>3d2-4mg>fJsM7e4;2M(H$H}*xPWE<9$w3h6$)ktkZ7p
zw;CmL5wiKa<tr6=y~d6eZ4G+XPOxRY`xS$lR^Yo!!tp&Av(b~5=B{j%Mp!>|Z<z)e
zbGq;h#5rkWr-+S+$whIsSMG$O>6+S)%R!4vEe0>{P1IV{v6Pta3h0{ygff30+}hJh
zRV1EiywKj&HBH!4f?w+5B~Cb~!wrM2lN6SLjK4^|j%T8DvtM}BVJz*PlsN&2)-~lq
zK~|zIA2dF;;uh(DZpQL7;O-&KPs8z<69&@77GE9i%s*9Zl2cH#WN5KfS)K5lqiAb*
z$_UCUKQxbV1afm*&`)4n1zW2Q=fqE@F!<$^`g^uOy7IW&tLx~aEb>OnP8x%@{e@;u
zJytt66tyJAem2qHK6#@AfXC&=5mTYv2!i0nm7XM;<hnQdt}+gzt<3Q^P;o@LL64a9
zP&Sq-Qa}B^2O2ge=99^i=i9?77RiEde1YwGccC>$!1qpR!wIqNH`TB^edQ)Yvp%_@
zh1PVM)$aidkGy*%Th5z<rJ#rcFk;>P`uKmB73@d>LBYvNeT!?6=6w*&=<07O#YKuZ
zH0hoiDiLrH-}Ql4;c6WOKqcR{Q+$h|zu{X>BLGTiBVWJfVr=)Fa4VXOu_ZQMH;{fA
z$;~IVeCK+f{(PX>$V%{#7Ls<{0%*sj_V^W>ePU={FP#Q6FC-l;XH%3nxgP4(do=K;
zA8t;>`QtI1fJqenyE&Cje}(ND|49fAgBo>b162z?vjdORv2H3)uRpO}R*#ik@mer9
zcLU<ydv_wHV|~+!>WD$X6EE{-^6u50h_q6Vt^Bop$=xiAi61LZa}t9{*at}U@eX+?
z{s7dQKX7<p#vNe-5~GIxKe|&}{*Sv;XC`Xv=oR_%@9gfJKl5lrKDv}fF@Kq%Ki%5t
z#G{^~jcqty2xj8)%7xOo#%k2s<?Nn)R=YI`GC&6V)8u+zQL7Y6`l8~pB|h8J)zw9o
zjcRm+d2lHK)=4gliMwUi3Y3?k>X7{d-h&~9+>S9D-l|1VDSVNuUXd%;j;FP#Uhh=m
z<YA*WL9f%u!wc_XW`pjw5`yVwt=vcP$8>W?PPYq!Rta<v%W?bP-cv*rnT5@1whIO;
zL((vS6~|&QuwBu<eDq@9<vVQ@&&{8(;sH<k!Qu>x)o-5XD~lU39m3lq-)LUiwSy+4
z6@Kry52X7&Ij8%`Ck$5FMDKsWii^j#1`1G2M-A~KF|6RbiRHUHthM&rCFY)|;-n>`
zywR#lqxAxxCNj(y2)b#O(z^sc87Jpoyw8Shf|8GV<>q5YP68+luSpItfR-<SX(`8|
zU0Qf`0Kz+y1?n)0{%xIXDIUhlU*em?cll6v0r**byvzVAg-B+A0pu%^5ZBBk3e@wu
z9?B2m6r8Xy?eav^&Y#Vb`G41-CEBqW8+!ZpuZ6zaGv!Kgsl=*O&_ul7w0kyqw3sc4
z*Y00AH3AELeX^a>@<hrO02a*$2hUOj{nskm`WGJKER;O%<<n~N@E!{$^j}_XNqMc7
zo%&&%nKV`ka?JaqUsh295K1@)>yybqAgUdslrO7YS%DsyXO^@lhSbZTyBtJ7ZOIFD
zWrUF>-p-h!Pl>6X?yl~lc+5Ay9j<uh-vTrI*TeU}xK7vl3hAsx&29DmWjz%xVJ4X=
z$75cDr!<GM@k>7xVNmw?G6wB3xlfcM(mS&^lS+;0jUn?RR-(11-u}o|_K0iPnV31e
zQ+(!EC_v*gdaaG=j<Z^u{JIT+@u466HuMvwYs?2DpxL0EwXXj4m-3_Q`q&_$2)=A!
zbIuA*?+6jU2Q4HAD6i>~9$zGCkr_c?U693(fzV^l7I1y;Zrhj#H>_A6t0T$*-i-^%
zTQqz@jEd+A+^7x}C%9T^EZ4qD%GG9o^U#J;>#*L)LpbB~vj)z?t%-_YdVnu`LihlQ
zn~%?1qyq}a`joc7Kelv5$Ss}9;M&P6u(*~S2nv*s7<cH_x*SDVGvO>9<lzX>bqJyE
z>0vIk#{MN^zZLF1n!R>BZ91y!YO{noG*_ope!e8-&qe=mfHH0-_Ys+JovV(M$HO}A
zw#uHn9Ke;?WSuPTL9mtYoNv%zx}3$g;2He{#KRO$yBdFPPwwz{Yi;o^wbZJUJ+bMP
z2fF0fWx!$7&$g?)LE+6GYcVFFGFnw9>$|s1+3tzHdPvM6dKuuaF(sS<#7b#MrFCt&
ziNSr;TEp&m2^~*nVOA0x+j7(XkiF$HYy-S|w6DVmc!leZU=irl(ec+(lNB<hBkN!h
zMXLQ2O3_m`PCWw|;*Sh!k14%Zo(1R9W)^^1QDX}=fyWf=@AM1S;yU+Y)DPv$X$75j
zRWjYuoeGYo;k-xqeX|jdImRQ7<2y&X`{c-eX>lYsWx&>SlSq4562_DK<p;GK9fHZG
z)s_b~9q~{7C&<VMWN*+G=F2rC+;!}nmvKPtpACx6ySqi(cV;_nIy^N79sv)_;}~5J
z^c0k?cXHXA%6WmP>)c!3rCI?)<QFXCE40j+7YmPt2zG~!Pm!JBI-KqVd5iltY)!?@
zB(DxP`Jd}}a<^e*mwsZjyU@IIr^A3C4Z-!gxxO&3Nq&+8#Wjakt@L^lhw}$Es~Pc)
zmPt71|FW)o#ywL;!iAB&i75&+DLAz4CtNu54b|i2bEN2i(^gogN``0mdi4J*E9sB6
zy9-D<I=D0Jl0hDgp?${&iuS>tcFb%hw;=Re*tYI+3sm}ae{FRRv}Eij?&5RT51uzz
zwvbqlCz88r-%~5@i<{Nvb^X?xF2C@I&ELg*y7UICsjQBZ7$yBCFE~<7+02e(Q3h*A
zl1T_7O>@ORO>-IgNiK_g<P-|c{9yaz=0doUw7Ht#SlRj=x6Q!50iH0DWS9T5Gw6&!
zq!bk@Opmg|{#Fwoqg=sxPlwy9-=$YKCfueC8%s>$1mUyFcMhvVE-&t3_PTI{Y)scV
zu7RMJmK42Bg&g^erLyOT#zr8xb_=`rHXHs+8NL(JlH+h*c*!jp-yo%X@4UTpR7><0
ztaerdu4sbOI~e|yzCKxdYO1e`yYQMZ=Ewd^%d)jRZ7AreI!-+#5dGmCg?0{lK4u_c
zr?B|=ht%Z^nO}dw92+CNkc$y6^HqDraJybyP(_5}*52uz7upge-!$x3Zz5BOV1vjM
zBCQSz<FmG4mWv|PJtsAi3*Gy(Zy(j<s8R6}?L=u+B;k2@%~YY{=B+!`!3TpB7xOk5
zUCK8!$=L5%5D@BpXumk0VBQ~3T{L7CZZs|FD&P9dsy`c#v0c2=b@a8bKp0<z`JRts
zW8h{mUUxT1bBI8M2~~?VG5WD6j{WM8@7U8YcfI+RI4fb!vpzG+(Gqv=^}&s6YAjCQ
za9Kdmscl6UH`Yf^mc37(KuMKN;E9Tq`Mt|d4D|ImeNP|&`ntL(<3CnE-DPo%@~y}Z
z9c$skOQxYbX8NRByNo8Ev2VjHdSkeXO%OOrC;?i*?AsRu%n5mi#|d+0%^%gvEk%HO
z&VW9MmH!}COn%j5Ry3B-wGOgX=Je`+^oELWo1;ZL+;F=W@@SXre7h!yjdi9P?c_Qw
z#%nJr&A^uupf!>T&fMQJfonU@ty+O`T1O8bKe(3soa0MoAV6@BAQ9Z&<;Bec>w%FT
zVZ#DxH;Xtme*u9pGR>-v2z^|0AyxH6rFULb-!Umz7k1-}0wJPB4i=TPdkqffkA~d~
zN~CIPi)ct7xgS~GsZ07q+Mzclhmf@?k<n_m6TZxqf%TC=1WB?=yNeM(k|tT?ETJxz
zmd;$NmVI?v6Ab+hgd(*&ZBV90VwWRC3PX`X-Y84h-^KbJnSa|sL(AVg1xD$(@c>LO
zZ7v9t{z3Sq!|uPQCjpZS(=jZ=J!3T=d(ULh@tUAxp#hvC@ezfutN(U{n*Lwn2vv-`
zX-{A!vE2DQEde`aK+i1Ma@JMIzh^c@5ckQN;gVoSBqu9&cXZet0~x_D=WGK7-zdYq
zK=^@q9-IMT(jO*qXsAEM0O97nXMrin@F2`1u1%NKGvO?_n~|1UZ(9IX6CBArf1}E|
zNJB-B!Sw8=d8A>1`PbY%>#3E<7uSHoh_Xn7fP61l_o?}H<EhMfvjY<VzIF>387gzs
zIdumV4Raf(k@!K6Xe(5>7uPYz#$WzeoVMfww<N;?P#~lN4i6$o+{T$BF=xSpG?eg?
zH#Bj_n>iBApo^^%MCQHaXFC&XZX{TH=9vp=73UEde)&+V(j*zF>THm=*7|bw#G+m^
zezH`g#`1}|ndFQG$OB1M5V=U!s(bmcn;`=#>gr1Sz;v=U`mRP^JxD~5Lugc4AcK{-
zmYZQ?%u5<p4mKTQ8lxmf7L6Dl(ia9n-eXkHo>2_vDQNt_{GL1nPHBMoO%_;Th=TBP
zZky_DhY~!Q1j!?EYz04rQs;Yio%~m=A8r;ko%ejXKFg2TU#Ie|yvC0w2^YY5XfbhT
zJNq1Qz<9{noD!pYi_3M3C(&jm2Z%yW_ZP1SM4fSm5@6HeEF%_Fp8Cnf7ETlRjA&MY
z!r$6_p|&@<-?#9WZwWjS8=k)zn~E=6`3B!Ty%*0MdDRzsoiG{KT=B>DO>6PP=N5kD
zksS7I{ajDrqn<+VhL)GkjE5CEvmXV*LA2ABch*MID9h#ZeC9P(+?iU)?s=berhO5r
zj#gIKQ<2+0tGGh<U!hy!(rdnd$9V{#-%J;i<fNoRF5^(BC?KaWLiFQnN^rRk4ULjP
z`NXx!RoIDMr_3;P|8dqt@n7M-PKRrsy{>`Pf*hrv$hB?peG%=c{uhXNYcOsW;3H&f
z`4>c6moOeWwd<ND-NvrrD+uUG;ep?{e*KNyJHY0}yvr;7M>RJv0Xzf(T~7DyXRt^h
zT&|Muc$BPWN>S>MG3MfX@sdx<fc|Msra4pr=Ua>)8#=WW?CIj{b?qE2ojal&lFu&x
zBGd`=B;~i>dyoVab6pEx%nCn0*JH%t{}f7Bf)UBPP;!ex(C_X5bDx+lH0YKsCLW#`
z!G*V=d};UC2T);6Y8Iacq$DPD8vmKD51eJUnlVLREO^=OEq$M6>XZbvCc2g5y9Qkk
zp97m2BmMnk4T_y&#_;gw;7rj7O~1JBQH*K+G5Lfmd2ack)Z#u1-%m?jw5<qxkAfH5
zW%|b9&}FW<_sftV1CZWDS=11zr?u3X=pXce9(Gu}H^MPpk@usdT6gYP(a=<=!0M5A
z)a-M?qqJB&OFmTHb-t5zU`eFnwgj%}#E~R|b8pz*bXErT(|-4s`RbXw+kdz^PaYoL
z>73cMoT`2i-&%IpL%4Znok#3!;4lA_<xA!uqnm1FhW6Bd?YFQIFZNUqads{0?-Cvb
zxB5`Yr^`xVx&aZ}JDDq7|1@~~cpdlwd8uqB_8ljXZFq9F7mx>YO1MNj;;t0e3)Te%
zEE#6pp7R<JrWQ}Dgjljr#YU2s)0u+n)pY$3HZ3BRDB`>I3f+cZ^5I64ck8!*Zs-?C
z-){R`KM}b0^Gqu$e?5jyLm0%@$bA%#p%nv4zI>gKS)KM9BoG}<$iwUZkg5ML1hsGj
z-RuHkjTJ=JA44Wo^7dZk$FMsn8hlnRP50-f-FM<@CC3?B9S9uQjM@}iQk)oOT%L>2
z3;A2i(l(l$kXE?R%WmpzWL-ZN8S!}1wSi18y@l96eGAm0(5$r9;{W)xPmrJX-<CsC
z!vAjWbW3{Q6eeK}K2XHxUk9mwzt3kva9pnu><ph=f3R@ENUpxuYp~AYoGc+o8_jUd
zw^1i(Ak*z@#-Z^N;yS$+CVaLg_`wv=_N(|&@OmteS_jZZbC8;^p4GIF2*3aL+x~SO
z@Rvc!;^<7z?q_3f4$TYH%oU7{DW_}gC4x3Ny4HayAW*P57wOx}mCv|?O{*%4eR4LU
z(~gbn1P1bnkIV1Xg}<)+&5|X%9Rr|`6X}<>>o^TOrXn9h&3KZ0{n+UwPs%a^%jh1F
z5?%e7&!-1_(@<+~EPLr8{|Q(Bsp3DaZO8Yn0A*)lP7CmY|8N(4X7X}J9LhO4IfXa?
z-jl#^u9AcugVpIqwcf|<OKK1^5{$9_rw#BU5+I2eO{xlF@HQfeJYYAwCtV`Kbb``B
z>O$Y9YdEE>Pj+`K8SC=*4}R-WUE;8N3_0n1#P>e+wMtanb^M-+afe<}G?>l`@8qCr
ztsKZ3?aoi_?+cK!V$-Pm09h$*rHni{!`0iXH&rAK6%sckiQbi@xss1sz@ba)b$iZ5
zdhWL9r$LGe=k}xK>$QDv)PD}$4&znWi6w}Xushi^Z~@r049R%;`uzBaQp0ZX7cX8!
zsR*fvhI|KOKB@_f<o`QQZ9OT+T7utH-RxiL^+Mqo40d05sO33S6?$KhGa_x54-Id-
zhgczPmr?{!I62aGnZ8k131qe0?EfTLzkO>4+Pk))Sn7Y8566(smKc!_)4)~wUAke}
zOGH?B05AjSCUviYYK1JgFy&+KB3fSjH7c_ZN3qZ3ar>243xn0i?z-!5cwJ+QiqwJn
zW4-H>&Odv~|9e|yx7FAVg+T`qsfZ4+x%r8TrYiXB{^>CO=L9lFIx-DEJ^R%o_}4EK
zLo!qyuo{f}p8!Q;6|Gb(Jz>MqOkEVvdDSWRI6A_{#3W*9Bcee<d#dB?=1P4^cyys^
z$vc~68d_Jdz=TVo)n5CZ{`Rl8N4~%)0wWl#GR5&rP4=%32BtM2R%Y4&VuRhz97$Ta
z)9%7hx|qH`f2AZ~QTzJR#Y%xXxF8tQpn{s-A#f`(D|m(d>;M1P7o^XS_7$hAZ~nL`
zMbp6tDNE#VB_UD)#)^<296Hm{0c%_V9uacNKkcx;T%SKCs8<W%Zq~Q3XspuwzM38*
zT?nw1ukje+f`f;v{Ye9vQf8wQ4&Z$?h{pclf&S-G;q}A5*21R0%J9eg-u&^tU%>k&
zE_Elyayh_W{r~s2B;+JS?0E`VY|%6-JzD{*T0oeJ%b=aU2$ad-uU0S4Q9$6AVMoN%
ztXtj)QowSeohWXd0++&gw(;C<cj3l@8wk7xO`o?mD_vA{ML*{Ry!9Piod+N74{gxz
z-&+DXp4^VBoWFl>Qc~piUQP6M0^+|cfa;Ka{W{&eb)oub#x)js7I9P@Dg>dFkrXoW
z#;bZ%pKT2T1m|NIbRec9ZsTedod%Z|2nIT}(kKVm*o%)<GN8(nDIEG}02Gl(TFU&r
z-T(8W{ANq`B1Hx=kaBK5WcmG*sUq(pLV+@jBH0uH#exY57U#WQ;XKgpm#?zieu!8J
zp%JJD4Kgw7k0;e}dtlWXN)dF`(}mQn?Jl;L&KmVXLJ#_)s1ybUW%yryX%+8q*a^U;
zp;!E;pYhL0eas04<jn0IBhT+2d<PRbRG%kMcPGkCq(BnuCy;B5M@OTSD+IWB%!f+k
z^goJR#tSXUincW%c$*i9?*S71irw*!?!4D_YUoj|5rj$_fQ2eK+oF>UI=>pjSGw7x
z)P#<gB44g<O^Z4gg2Ma5gL^twWWZmJC;DHE<Nv%<MBjm%OyXT+7|HJ|(%YNh5kCIH
zj=W`&eAb;k26TlC%RS)TJy9S~S3jBA`u1*H$VnIo4X`9oDAMMo)~F0Y=Ery=Hmmf(
zd_)L4XGvRO_(#~YPFGudA8S$*(D@I!gP&5m9>UnjD=jAJ>)~_}2H>}R`hxcR#ruzO
zeU1stl-ig{PIvKtck9t2S9P>kk^=QKDusQ=yI6OvLAzpY)f?TV4@-teS2aK?z;SJW
zEaBO_YnlZx|K@<AZCfK}^ZaWHsRZ+nc|R7hzzywPFyBNx&q`*VeTUA&IVIrG-mK}m
zBMg96U;T9V_h0+ZJ<0ROIY{SPPB%x}zrd-#c9<@pkZaV=h`f85Q8%5M6mvcdeR@$I
z*Q1$CF7;@Ax(=5;(&S`s`ANM+byt~x?Uie%SXTPt@D<-afO0gjN9JT(&GIp_+EXS!
z)4i%yYo`{2oR>%hRi7|+@n}7$=l7dQsegOold1Ijm;CUzo8;FYMT3x6JE$y-@sF!*
zkG$H9AyNVDQsW9*LP9>)ih0U($iPt>ejsB9N29gX{<Kmpu%$Uz?Vm25r-dKQCK>~9
zobWI>I_Y6=fnZj{<DL7$#*>(2;<9PN_qvDCoYCqK^4(meQyTwrM(+{)bVd`NdR_hf
z4*BQQ1h4;>u4OQ=>{ehFZp}1E%(}tp0I5Wl2t4=1@lx6B*N51M;4t2W^PT2!yZNs-
zoF(79c~)UL-LchGS(hc9l&a$qulK-V`-0D)E3SVmoDO~h)p@9EfwT?es+I_tcL%m>
z*4ruKPa}hz-5b|w3%FedGtrg2uNl7zeSB-rJp0vuq5b}2nmkTHM*Z|LzlHxk*3TD^
zy36T$kdwN&0yeK%Ak_Mi2oA04dk{g5m4{)~6}P>5da$t<S8C8H+u(8#vY2E5g3n*3
ziFoQOHk_;^f?M!Y39*LZxA(oF>nq)f3jL`vj}SdfoiV<0kauzxcDHx+Fz3dTiQj>4
z13K}gM6jb~D%dm1Z*}ElD+ii?y_U*bklx@am7fd}kK}R{sn#-bl_=d$_r>sU38N$T
z2Oh$I9i5C(JaE&4djHz={p;%Vfi?Gkw)nwTCa_6}h`)l7Tgp*v@^HV8c1VQW9lSgw
z+9j7h3q)quZtSgeOAvB9$og|l6LH%3WXdG#4jsTwygI+8F*H6D4=3i2X;%jN2heGJ
zJ!Tyf&vn2~tuTK>%|I!jYWu6!qtb!?Ycm@erLwc8FYM-5uAQ12Tt9c;tCUjtQ2W^G
zqB3}YqzL6Mxh}7S!uZ)05ThgnbeIBgT>1}`KLd`h(IUU6z$=Ag!--0F|7K(Gv=Z&s
zu@e6tN#U4ntNf`mjCnG!0tQx9^@p`_h1w0&{_h#}|Ee%PtnHLsw4H*?Ko|9AVt@L^
zIaKe?)EdB@mRG5W(+0J_@wn^<IBZTx-Cy9|YDL9e%XEq$1+@sp^f%9x3ik!-_jbST
zyu$p)j6r%}Zv&Gx!)+Npzdr&DaF8nrO0N<Lk$>j-=|(?DDB(4k52S#6x;)?Z+#l8P
z{O;~bG7|ziXFK!FrD2|*V8a`Nb<C4n7rX7m<(AXL!t<YATnly6jGu27xg|H}J`T&t
z3hLh|Y9iVofjMt4PZWJ;gWTCweS744>qXs4fW<9!vd^e@L`??$lkPh{{>FU&#N|Zn
z)MiaA?X^vNRyGj#B8SzgaXOUk46mYb26lGy0CquC{Py_=vd>3OXrYiUbWNku_gO;m
zdyGBHK?cE8RuCS>k-R%v4pF?G<Mi0tR{XH(UPF$&uQBplQ!m&I8jBadyYum_od5K%
zqX_9r;K*H^oe*?1D9zm_wmR_L+^aa49=mOK)^a;5Yi%?Ox58?2!i4b7@8_q_qu>TS
z@;vOh#uu~@yoeq#bDQol-DA=1#|>gAIRnAB^j-$t61|U+@ic%X!`m)EbTx@zN?=>c
zWt&jo{w18e%g}0@zNWNhDyiw@xkDB#F@76n@!`AGEc_7r>+yd)0Kk>|%#BQSQN<PU
zb#faA0$t;Y^0k|&^J-}rRvRN0Px4oU3+PaHRo@#ibjLA9(rezrH7ps$J`8{wComaM
zYu)!`SwT|C*9S7nrX`a3+{K@YTnO3YvqoBc1myXq`@;N|)dKhz4w7$;2t;4Mt1mfV
zR_M4M=KO+b;-KQ}(=ya#e<FCIILqxAZJ6p73FM~GN4LQ;b~=ql0UZ0Y1?JPUL9|oT
zkKUg>{XT=uVzycyI+alvLAlcxf~FmgR!AerXnoSMIsas@J^X2XW}zCM0G=;}n#cz=
z2ZFUul?i|!731M|?f3HbFDG%$!{{A`y4e+RH@Wp+ME0&lIi)Q0B)#c<cXx0Qu$oVd
zQLPrfgI;2`{p4YUdcIa3`90!2{d5c2+rOVZW{_}aD=oZ`KYA$jiQuf`cVI0X&>mX|
zB$^IecUe_Qn7{;8{7kg3C>}|E&wVe@f~4Q;8j8u<zz)X8sYa(=J;efbR(q4Ec7Ubr
zr=HIc%2;R(4&KPi&2P0{Xwg{%tEJ+$_e$xM90{cEDo^l>fDpPD+M$jg`j>>&LZr@_
zi0h%`?pzx_Y*o=(cVr{FZb{``xlcj+WPT?o5R*K;E%XscR1UjsyU+Fp?drwzS1a4L
z#yfrUHq;vI1zB(3MqNCk3+6;x`&F!MgaeEK7NV<EzkDP3WRCwLeP;F`R`5s}B!={!
ztZE)*kaXsV6un_+h2Sj2x3-5Ms;tXm>{fT~o2)N7SmdZhwt<74jmypsiB^M4C=rj7
zs4pt^V~_ajf5f1;MS#I-tTuhf{QE|#g$Hap@0!i!V}vshGq2#*dR{jAlBHpU(;R4T
zaU`=_Y3GvF`?iGQ$CfcA0k4l?FGLXR$cwsc$G(ISHl>4<tOm>b2VR0WVGkKUaA+oq
zSC|f`0`-uo?%kShn|Uo5a=8gi6R59~xlAd#;Mp!k;bA4xXctsTmJO~kT04x4RX<pf
znN5M^ESNZZ^4@mc4Pql|k~q3Pd-waI{CHJlaK+x}xSlpxjkhr37|qxKgGwM_tl9w^
z+(#pXw%X1GY68?{Fefrn3Y2A30UnC1*HzATg|3ny&_#Nz8T<6jXWu(G>6~Sm&Q8}?
z|40@|O$KAr-}{jFKlYUW3cD!I1p-(Q`7em9X|~v!55!<>gC_us%YHA;RZh!9aI_A>
zWhmT{bnMJ6l+OrKthF<-Tv40=BE16Dl7WQ;_8BKZ7wJ=IvdWY43BrP~&RMH5#g(+Z
zfKiWrPIYG<0lVWD7Y~Ng^d8?J4+KHJhp#)wMOa=hDouDU2M%X+PBcpSGLe>3v**1%
z2!mSs_e*>smB_vRfTGfNy-FioyKmUFmr}puIErUJ(ePfU1^1cA9uRZOe-*k-^-POv
zfmJx@@m#l?lQ~jAS$DK02jT|y)G!%s5Jt#|5b(&8pW?8lRLBfjh+n9Gdyum8+73QK
z=W=m&<HpU*G(alvKuhLz6-FoKOI6Id3PXRcq8~$;BvvJ}&F}O)mO&>aYQZ^?%bq&6
zxyH}ew?7&%yv06{MsY>E&ZlWLp!1Tn*dFk)1c(2)N^!d<rS@2L9pf<t*&U#g5cFRE
z;Nl7R7bne8V~biDxvZqm4*f<e;3{EX$_6{~p?-vL%A3D-s6VzCO;0{EsLW!y3V(Ex
z;S3u?+4JAuUsI@cM^w7$@;-k2dD$JGSq-eV<Wgh5r<8bIB9HfX%{GHD!lhtSH3~jC
zT6t<^V5ilQC-C_TWLLZ1DW#&qac`@REE|Y04s+9Jt8m#=Jas#wsHnifB#O`0L5%=(
zPKOGf<vwG4;%2%V5@;;684^YJ+4)N^4ar+nPM26ei&|;u7T+LxAZBZ*RCuz#E8JEk
zz){6%bfaqN?k3mKdq{m{yjsAD$0Y~*0UDoRC;D`zi0*yJwZsP!g5HmA%6&LKd})un
z&6Bn**wcTi??_vC?*RmMI@BZ1PRy5OqER$pi^Pu8oA5lMHOFD|N#K36dp}gw-75@L
z=521l)&53vmvvRny}rCia+!=dGKn>lF$I#wAPG7Rmb8v&>TmC(H`vYPGnY!>DmwCr
zaK7@Izyrib=W-z*uX-}JIz@3ZwtBAe%Ya;EXBnJx7MHsPT2(I&GbTs_lHZ>0ufNEU
zh*o@=NmQg&C#}`AMkOSpLJK1o`xw`Dxn~=dV$!{kw*Ao;mG<jcnN{)*xpS22rx<oC
zB5L_+4A$%;zV3MT<drV1=e;^Sv1SALYbZmNQf4OaiZ;hi%(z@&afTm83uLw-iiMIU
zwG{QH(n)NBW2(;yI@HMu@y`~Yi^nthQV)dDCLm5?t;?+k4M_?c@}l8lF<tR%X_W=7
z)$0?Qj>B;;ZBcP<3=XX^=bOI~{UUG!wGSBkm*Q|3;v{Np8`9`2I1&unzh)=KgR|j4
zHlw}?B8*VkcClAH?dE~W-q0G@Lx?5pO<t#d&!5~)#Gq3nu-JAf4pb=_!Ljrv7I89R
zRkN8u^CwR@KRpyPH{6AI-%8D()0hqdQU{G00b|@7SG+%+jneunL=h_pqsNUUbF~_M
zdS0I(xg(M6lWlt#cXH9{T>e<K3(K9|;|tX~k86aSE>XZ2M&6Pk2DU?*Q8G>&1!`#t
z!?ug32lzu78t9wxU9%J(iO+f##)q<I|GIN;nl9OkNBV-VzsQQgrAo*;vDx8>(`qoA
z(#~l5M6GKUE1Zy@q~;CrNoyI24uog_0#RX-bgaFa(^tN=#|S^MJ#V|GUg1KQ!ymTW
zi}vvtp%Xulu~c)4$?afHt+c1r5y>4(UCJfgZrhxT_255N$>(>m=FXGc_0R)#0#@9y
zE_g%IAg?=PLT8+zgz7*Rh-2V;^Z=PpP-CNZLC~Gb?J=M5(zG5Om_Cm^(h?qRzW`ba
zwR#?t^U^sG6xF(IoMOY^H3^qU1T_rh*p3DWs9tp>!<9%bd2}jFl@dV^0rN_0C4C?-
z4iRzFS!QZ;HXp}3$v{jpN=iymZ09quw`q?^6a4+;xPuA~uy`@n^Iu=u0V+8XK*?qb
z(hgF5&tag11N>6vZ}jfBjOsX6jK{Ilj1=iG`0$A2^UUquATTTjSyna*ZJAdn?t~L?
z3Yd)+Mkex}b~@QYryXa3_nD?IQ!0_t{*<<qi-}~Wu~R1duw21~d9PkFre)v$#IEIQ
zef9u6_HqDrUS+bhVg^9u2W#h3-*Y6!%kAc8Y)zRj^Yd*~0@%&kSx;RqW=}1boVWG^
zS68ENl|(kaxDQee`fJ{HgOmeQS1pUNK^?1&dXrrimP}`~;M}k>nSnDccG?cbOyS1A
z68d{=7Nv%B^c(!7R$IPDQsXa|yg0AjUpzW5m>A9(eSg8{-j-W0e2}|8xRbI+)U8pR
zt@I=0V1qu%e56LB`ovRXb&$c_bv&NY9uu3v&{Z;5r|g*0)u=Zq&C1nN1Vksuzr<+|
zv1)i3p3GB;;kJzRq~V6GXY8ixkV0W<MR8?2yH?Jti?jWgS@h5?Cx*ZNqFojfdZCCj
zx*qDdF%dseVUfm=>Kp8BvbvK@E98oEPus}p?o)qs5~5^AUiU}B7L$&}+!Xo<67QSx
z(_9syt$NKP1l-Dg)0A;EARzscV@wy7x6Uz*tw3G19NN7}B|z|9U?>~Y--v)?j=KXV
zYB)6q?}#M0)^yZD6xx$qRZOVn=bI>j!%)08VYK3Ie3RJK_Kk>WM%7v_p(DSJq0LBd
zdy;JfMo|&QUzaSWxOKhg9+o>$UP`l;^Lh&en(5_tD2`wpuk9mj9Nlfs5*5FzFU3`d
zY%>KB4nrA(vC7Mub6d7EnR0Tg>$PRs@vT0>x@GJBH+ld?Im=|h_l|U4EJHMrs8YkY
zh~r7z?wOqJscxSv$yGGm*__gEVO^%nrDV!dsqh-zVZ1y4addd>cWbA&ffm9|uHD9R
zr)%i_@iO1c(-8`sd29xv-6w-|C9&mhCpPX_iO~Aq$y_CxyxO_BSHZlx`gK6%gtbkG
zuK@OAEf;oN`XvvpBrp~s7H&|^geybN^SK7FU*j}sC}zvPP+6!^xV6jE{)qSYzQ|jC
zWbNvvN+i49ad^X-@YDXLC{?FZy-`G=PgIEMqqC9ad-L5s%>y>XSFTXe(R14IXa+22
zV=%bpI_)3PNys>8j#QX)<vzV`Z`D%zOy&qM%D<<un@k-h?!ydP5)-Y0{OC|oWZMT!
zD5p1eDmSEgpGgH&!9LTS8mm_q57-DrKyln+VyTxTE&GiTvqw2Is*_J>gZ<c;l9j(b
zpB)XxV0jbiMFL%oJ-9zpu^-C`%%Ke0p0{N}Xxj!Ta5PyjKBZ_bYSkTzzId0b!?Eo+
zze^e3(XmKEa%&n0$j_N9-zoQaK2PQ{NnJ59o4q*SH^?eX;PB#|RxDKX%56M?G|!8(
zE}}t-vlqkp1%<w?B<=+<8}$x!D48wQJQd(6JAUI&Fj8)q<T7zq6XHvKh66u=<I>ir
zTN6^?j72}trn6lMz<5>4PJ**<9cOyj(iZrVkoH10$E~ImS(67vojUUO1PD0gcZ~|h
zAm%ZAxnM&npV-eKdz-7*0E0u6gh&Cu78V_FgSpKJHCW6q^dVVyDYRkb>rGd7y&^LT
zX-H~Bng@9!zv83)=D%`vj@+Y%!wkp!@76k(YWgg1jikjI`m$GT4CTIvXEwsrTgzMU
zn6)G`-8gPF+CRx6EH^tABEA{}cbf&N2&4WDh9z<8mo;LEY@s`{RRJH!rM`9>FfH;e
zK^=GHm!rh|!zFNftEw-Dd=01l4R_@9nTWKo<>PhR^Lt~}K8D)buomGitXb^9y^>FG
z>9xy`>unRUNj#AuSFdexd<s=-64(OxV|J!Ex)b<(gK(&5drvwak(}{6Q)`~_S$-`l
zJ!>8*Sc1!%rE^;!aTYNfSg&`Sr=fFpwjI}e(Pla^D${Qdn{?|D0TF0ge1<%p560~A
z+2ot9T%&75&*fT-7_YD#|JZmsAYc7`6M0h+p!|X<{ats(P`Iv~ubQ%HwEJ+z4K7tf
z(Tt#j4fn(Wh@KR93gOD(?sZh=ULYkOI<W87dibyd`e)B%Vcet{VD0Z0+kFRE<JOAU
zl_@d=@xBcUyPnc+TEGriK~C$#ZMXW~?e<aXank!6J|7d<tt^?B3h>|y4Y~Xm$AYe$
zNv&Q41!O>$vDbPCNEPA??_i-C8KATjxA(QS6uNpJ^smHH{!8j91e{V_9$n7c8u>b*
z)GnonJQ><x(6H*Ozvf8$EkhI|kt<q^=7s}0#J4KG;)tzb$*H_Zp`LyA6N7k0=3%RX
zLg{gdQVCB2Rg3HC0(SR=M`)Wxy^spvjJpHQ_-1EDmOGRf)3s-iBJIsqNt{T|7uS4q
z7KVtJ+$Axw%Yd5m$`dAEh<i5s)83}Sn81lBX$pa%wu<aJmrKs`+BK$Wr=5?5ftMOG
z)1&KzAiTUy$!w_q`c(pPhwL4_79?fdV(-DD1GsAZ=0wg@cUpm-330^B<Nm{BkCecw
z{nWho1~l1-s)l6)+OgARXmWs{kQ3A9u^EN?{%%&Ogouxmskz~fu8fmJjGt&EtqcB+
z7I8@pUUuz!?IgfG%DVjk=6qEiw-}}7YpX<VKF=O&nlM_Lqs>ZRNBEuHcH5E{8nQnA
zN`dU8W~dB)9r{?Vm8LW0fw?1Lv=7Xt$}=3S+@=cY>^IHVba!a(Q^yJ_*i1Ab7-&+6
zP_5cRlAgPvTR#FpI7&r^o5Q`d+@)CTO>d67{vXEv0;<Zbd*g<WC@LUb(j_3>T>=71
zcZZ5}Np~nMWzZ?z-L15AcgRNAG;F$g*Y=$Ad=L6P|Mwlkp$-S&-uGVjy62knx~`wL
zBa!K`ZR_2`)r2BFKU4Nx|K-vp+D}->w*E>%o%1wP36av5?eRR;qhIM~H^%ZOa#SX)
z<9%}Fx8gZ1cO%x>w^p}3U8I8&`t@qaw?K`Ze8Ta4t$uz%Id3%gXYG~Dm)!z$oVoRl
z)7hl+K}+F|(pt(4_URuD<xag99=WiZR;?-4B~u(oX{^iO*IN*D(kV`GqSJlk6}>f8
zuMl0D-KjM~tK*kzw73f;5$JJC$57ySBoF4jkIFwH!49@gXUCuoL*eBcUgGzgEXH$-
zg?O}s6?gRbJtdH^o_eqt!6@8&R1i$IIe>ex!?m`%a}F9|OMKB;D~R~M>lL2K{s2mN
z#;TV!FZ<n!8)MhEt28A>J$U@~E1{b-@`=2vWv`#ZBMiow+-r3JM7GfdCdL5I4Dld%
z#^B=FVg<fN6j+lgu%>K3gG4)XN`Z79A)^q3-j&_*MBYctA=8$bVEQMm0KLF60oe$J
z@v&?yUQ<Dh2Xt(dQjsrTl7~Dv3~u*l9ACo6=7XUqqY`nC^1!+P&Vuw?sQiuRD!e7P
z16R>I%dAiP0Tq3wG)~iVyPY+e___@|xr+@vAv}m+)Z|Q(zDMWsEu@8vqUB-b{dc!;
zj{7w8a@&VwDU#V|jppg%FDD$MqB_gPWt7ug7Ae1iqnUDq#G*~0ozWITuBrKqbH!1D
z{A_v$HkyU2@S465wj(x3H>kBEYW%{i2H|x$2*k<@o?B`{LC>95xL4r@QbRW18ZS*p
zMLv4&$HUCsH9zq_@-dT@)ZsmQzznatq>Uf+5x1g|kBqHz*kCSZQEGT7_fViiERmc+
zaJOCW*1LQU&0Y064{AQ~BkmKEU9p6HlSSzs?nO!|uyyo0&c-Tn^XP?{n)F^I1w0_5
z3rW|82O9uv*;KT6l=TcTbDawJAwpece)NzIWXn)zErMFcta8`k(DS+}QnDe_O4fLa
zZQ7CgdSsw^Fyp(*a%OLokig!|SQVB#;Ir9B7rYvfOYz(*9WT&G@rvj94w_=aK3<*`
z{7Xpg5(WD8Md}U45<$E2rUb~ENH298(Ycl&Pj{5em!{R&6Kk91hwRgz^v3;K?rZ`K
z8SMJSd;QaF`}>(4KhR8!T0_%;XLrCCS0+XiNwt=Y)MoB3nJMM`5LKW`W!{dN_^uSi
zyw6*a;ReKzpTtz|MeEJzwuT1SkT}@IqH8^UTgW!_ZUpMh9@(o;KEjcVA-kHdqsc`P
z@+oY)rh&p+ixeDz%%{pS)rbs1B7tTs9v&V|<5;P4y*=f6i-Gqgbpjr}Y7pFm*&ypS
zYB=DQ*d5Iz14hN_{|O{02B<hZtKNA0z;q$+tA>icePi1sCgE8hp#!T)jHU>q2e}q(
zHKx5l1{3z?CE?A6KTtHqf_>ksp{8H9kAxz5J<#9Oo483z<Z_2lkJTjw1vyA+AyPrA
z(q1dDP;DYV9c1Z;z0b&k724%7uMK8Osk%OO$+^eO7)ggzxJ|g|Z@C#Db8tCquYKOu
z60*QXQDQjYbyfiy6ZyjQVv5k`V0_S*2#&m$Zz}BZK9zncu**aSc?47-kDw4VYvUg(
zR2mID`|M3Z+xj$zU4irv;l73-q_&&ZVZz#cU#aGa%ntS7_^b#XDPr~e4`u!LVUH#j
zI#k4nh{~(Z2Hl}>iWctU7meTZ^l0bF)sr98TK04};-&flxBv52Dal#%%`H|7MRjS)
zc~1Fc!8n|`Ou2;Uc{~cSgXC1s^J0Zx-BRf$y}$v}^YC4{)pnE><!xQeciQPf0L5L{
zS>0wKsP5wWvr;iPe3$>^c#VU--nEr50paObbcDzQLg{j7|7VF!w!KDa+{3X9KbNBU
zKsUo7(4#sM=1hq2^77a&@acDH>=v-->>Y?9^wkf7GXA^hC^sZg*JrqTlG(Lh^n72H
z8zJ*|IXidV$U0=Ns2AehL{;?1KIWoGCKw=F0m^=bfvHevUL%*-O;to2&RcN09rmA?
z-?Re$f~8kVbHL#HI=XQV*aoE3w1}q?NJ3V59~2@J<=bE|s53HgT4hQ{waL6CI2_ya
z0II4zw|-9R*~zTku+CmX=xdolla2-#^Z;nV3M~3pq`<VyCRYSvNTN$J*hs4;IH$WQ
z+CsShXQY6>ekZL-0EWWCjE#WJuurAN>!C>WGR4Eh?+0TalikIFc$7e-z<m%Y0B=cA
zF6=04b*Heg6`u2pMedI!e&%F32v9c=w7}9HrxOE_0?8m!Ag+E#QEM*)qu8l1p3@`9
z@tG{CY}oYSYNE^1C?*AIHIy}W2PNVeed%#V6ot3)a7Og}k!mAtILLO=U2fI?G^vA?
z4H74m-(H+<$~(6yq?>hD5Xd9J+&o62cpcKypR>Gvb3iy|{T*@|$svUn74=Hy$fqkA
z11wdET%-N015iU~`=cyw@T#U0I8hS$raMY3Fr^1SL*GV?vI!P&D>U!4iNUAGBjt~U
zHk}t2=5=q|+U{ZzRDB|P*g9($hXtv1BP&CVN&{&Oy`B$AJVs|nhqP`b)%CkLjEBdi
z0B&|8(BJj1yOoE#QRu5uj)CG(rJa7vXo5K0eYnkbn)L$A%ah5FagdI60VswL<bqam
zYv|CPz1eA^Y2#QrZIuO29#=^1ON&OuoAL9>k61zY=IOrOY>jO$P^~)Ed!6o4_azJI
zjL)FZ<sXxpOnfMMcfRBm_S`>ldAAs3KeDR#T!7K(+6ioFuR*;~TOEOqV<qz#!PFk(
zBTm_bAReY0KhRv6K~~ZK*ks_L^jD?f)&nh;6!YuY$7|{S(4RF&PW^IbAR|C(xYguZ
zabYaRZ1G!t+3ETb-(ws84GgsK$>C}?fL5In=206+P`0pJp68&STxi0udC|ppW^_qi
z=(*x^Qju??#8fO_1nAd@XMusyKiCa$AyzX@zSG`&weit{cBb-ZLj)>xS$-}(8bxW=
zbInmB$*e~vaJq!vo$iEa4pLYm?ux2QF`-^FDKoOs(6d?I@q~hoTOA?z8Xz8k>s5|g
z>^Q*M4Y#y^<Fq&;?kj@1MVX*`c)A@bYK5e0IWdOv$DL}p{MDP(T;epgcv&ATp2VAQ
zu$XA&e^6;;W7cK2KExpC!Gwa>d;$^|jjtZHg`f%Jl|1bLpEvkf&g0=zDJ-OcJjgJy
zXvVC~se)EaI_t9!v!{D2si60vp*BoJ?C!tBX>o=_ul)$Zk<EogTf2w*Neho~-@gCj
z&vpBG)0sHOX4eh8sC-R{_@MQvzOaME5Q;Xc_l%LnUV4JC*}>yL`x|YmUCvuqan1m>
zQ8oj|QuoDkZJ{l8eWa>zKepB~D19XXdeWaIW*j%hhXAnEh``;~aKP4*1BgKOy5=D@
zUK2&TjlDp>q6BIsCd)UHWOm$TZ2o?JLC*-CGoZC#iF{9IHy&>|u!np9i*tbY-!lmW
zm?*FG#-*EEy9xQZWKsEx-gr%*0e_+Zy#G5QrM*fD>{)<K`jx18i6(5p%lBW7^+4#)
zA`F|M<b;FM0&F~St#LXL+=2MfG)pjo<TO2XE$qejcM%YG9tzyz@8Wxn^OBNO#Fepi
z+D;T6j_Eo=GkqcG3dwuYs&{J?@Dp?OTX*?*atva;E}EMA%tSmMw_r^aF=$Cpue_0p
zO-B!@*&KM$O(XWb4juylWK%(Xy}PIeN0!d#M<jL5*TS~3kpj*;?*|_xWImQYEah<s
zREyOv-^>x7<*TyX$As6(@tT#J3Rc$r)2hd)2FDZQeUXfD%O-QCHa~Mx;GN(ym!G>7
zs^xB6AvE2|1f;pfSHgjJ(Mg!MSPTedMYZ(m@6Fbtk9oLY81I()P_y^n&kdbe-~Xp*
zS^T?bnWvgx{n(nTJ$AeqKi6o&Qh8RARA4h*gL$|yqhpbO9K>@v0aLA0eO@S^wAz^B
zT8}ZHb<3t$__D%;($6Iv1$HtYv<(fYyMA-$zsDhOW69rWY^E~m)u}p>#2xeDb%MR%
z**38Jr_<J-zfv#;qNZU`TH6K*je>RqiJ9MVDsZ$J3E-`&<r~+cf5ScdP!1Q>y=s5|
z{pgJ4>_aIr?iZzW$uo0y3w`gaQ(DkSQkVu*M0Q(KZ5ss)i0e7>OAojf^uK@oNCMiS
z{eDN-Ne(e4grx4wFHeDwx^ui)+Ra>t5x4O)V5=IR<S@uY#;23y&LfY{?{rME!N@PJ
zrA3coK6gVQ=io;po*|MfX-rmCpM(TEZK_5K_5|o`=6=5aGG75~m>}#)(~rk}oYQUZ
z1c}S$GL@!d<Fs#LG|N%ul2gczR7FhCtEa}{v|GDo1he(7N+IDQ1<_a=5XyNijFc@i
zyjF5R2BI_)1#GXRN9U(?GPLH`LxJWG<;j}YrgXwxfB5WxRD(0_VkqjA8!FMrLiRw{
znZ!O+5xBD%r+<wKLgFY|rKBU&JY3;NzQ9|Tl$8z#leTM%`AV&4k=$~Gg@y6h_>+5Y
zvbk_*8TAX)H$1mUOP8%=kraC|AWX<tzGv^x!$yc<1Wc-|l%Z9O4!a=&2yEr24+A%E
zmK_3#QK%f?xk4J4qtEGG)u%YZC~FvzGvj<gUB7j$M`pe!>c^wns5vuVZn)EQIhy9E
z<Jwq_0(1G$r&F2fd4AjjJK7itiRTW!-^Yw%;LYcK^$tfjpZz{85gQ_LY%gAj5`N<Y
z#K69DuxMO+4MauVt9Q;yOPp(Q8PrYB?^TIST2Gbv_a`DP_=4lv1EZd3IU6wn131K|
z-bro+<-O-y1Vm(0$Mx6ECqhurHDT9Ddy3=+O>$O^a{B3J-AM=Jrm9UIu7%+Wz3~&^
zKWMx9Ze><)I+PYkt3Vp!)xZYw|9Og#JN|%7&ntlO|BeAwMCc$UMe@mvpjw>6r|>x!
z`p!s7QOmO`WpXaM55v+Q@S`wT*l+0<cfUOlZNkBs3GW&pAO}S0_HQ$sF72-Tmu|Bj
zo`n~;4vdzoGlI4^3t7)RJGnvz%Y&CXvvxL&Gu`}^u~Y2X1G1z1At)hR)<SNnWq4BV
zVhwsw(&6ytouPD-;@9Ug&MiTW+qrF&%{1-9d5nlb!tr2U_uc==P;4*O$>xH$PkiN>
zVm$OsBJq1x@v{SVZy1Eye5@)7udc!ZTD-dCv`C4v<dVif2G(kFgs>nJR4YiM^p&eL
zF2)n6AFJV6s20Q}Isf&05K;M&N-9@r1TT-FR-TxDSRL}Fw5RPZOQ4+Gr$<P(rg~ls
zI+>Dk@gpD8JA)Qnk_ByvaT!e;&3dd3^;^aZ9#G(!t$)^XI^fn55^-DyRuECYpa3{Y
znj`D{m<+?cbg85vkvEbNWm|PPB&^1AJtJ6kZw@O@TR<2Hlj;svB@(WyC8BXz)K#mv
z0@}DX?7Nc+K<W+r%z0i;jrE#h3@)q~i?2LT3@w(bE~YaZepJ?Y_4jgK?QDnkBd>-|
z<p0yCVEemKk%JE@6+)w%KA+j%+b`ZM&vDs2366J`^5QPQO*#F=R&xMxI%`v*C?``K
z-u;XrAH*(Z%_!Ptq#HI+#2Ub0Z3x{rz})`As)d(cCo3`<`dNl@Qw3VI&}EX92eh7i
z6#5P#Jfn3#?%&v-*d%;}=4>l&Me!z@yOmZSt&cI3W;-SIhcr@MCFxP?ByS!hFIfgd
zUC3U6Mqa!#Usb#QKCee1o7G%hlzfUX)8B|_&wmineH8k$>@=Xf!vEXEpS_SieEb~&
z9$z`sm%t;D;oA$>0eDt+_JeT6hvp7{tZXj{u(F%A<tJ#Df-oWqQ?Sx1&p58KfJkD9
z-%wP4;QiatiWh$51IZWzDhPsHHP=ZEQehor>RS0r{)?G8+bn^m3;u!Xj=HQRUKpOr
z!n&bH2erEoxQ|Nas;VALVnOu0cN6zK@y+vHGmPf)OwzU?&C+1lmMI<>p}4bi)*~l;
z^akYWkmQ(tY>798tdCh#Xf%vX+k8bYlRL5$J($WS$<Z95j66HMI|p!TYhNa3A>8zi
zTcaPfD@-MkupfPpU@VAjeuD{y!+-?MSY$e1!DiHJO4mJ1SYvB<)~m(u@iS;PN7Yz9
z$hJS0OUHPM%AlXvCZFE*=WZh69(1I;7n1&9y%jT$-CYU@Ktc690yIIZ%OWgmT9X`v
zyRGD|u2J1l8953z45b*&kxVM_kj{u=mhpb62m+aA`S`Tu89)u*K@wQIeS2+c-^Af)
z(-q*L#VLAPga8gYfu|sqGgl>_k?vL!{R>;8WocZa8XYumJI$c0@gkjKTa&jdReeON
z_FJaWBz<2JXgQ3p<TnWvGVR_O^~I0T*>{9GX!wav(LOZ?Lv*#VJznQ=2L=jA31+(K
zbZDHm0NRk2xL;!5qs=$>V-0~iL_s8C=uRG^Hu9+<CXh~y6tSHPziz##EmExv7zZ}~
z-WV2^q~<qof$UE_p?zi_;2Xx)y^~m@V{g%N?1*!m?8fqP_Hi$IhPCeJ98B~p0vo>v
zw73bdCMdUOfR4l$c;}wl7<GM#?*Ub9?}<m;_o-K(m|sukQ;WE3Ms}s?dP*m7qpB5a
z`zwb)5!{`AmXy0G!6s9rf=$E_FR6!##7?`_D%}g7!d~sU-wKrGKRh;DEZyfR3}<<5
zYu>XWw>F2>o=L7rz_G+PP}QsHY&@Fb%7F5bL?j_3XeS$tSu=o8f2d%}er&MPFgx5p
zG56DsvKQ=>Lm=*3XD<}pe!jtop|nKxVp;K=w1ZTch|BT?+vQUvY~@-zqsLmx8z1J4
zg?JeGpWeN325Ip73#Ds3=<;FXBy(BnFDquY0yr{#dMCuZwBUWaT^~Kr7U)mu^cq~0
z0^W~RL-zr+rl%1Y_W{v5f)w}sPJKmM^@3M|=0#`nsit422y{aQ&XennQ@KDR#boo@
z=!=~Iu<^%_9zER%mv9mE-VPDEZTCzcEwjho0|xOQ5BD|z+@h@L<DW==F3A~TO@A~D
z{|+FwSR0om#)a6@ZW>vCdt1+G+KS5{s*g_5WkGYtbwfeuO9Wo>XT#|kJ|61O{kvfc
zwx2s}nkkB7aKVG+#7#q9A#6Wk>6XHjTBmC&&nkm>jiy>>=k3c7m1WHHO}7dQ17;yq
zbBqkV7W<T%HFnSDgGBW#5xNu(J}Y6&(qJQ*pyTS@UJdg>(n}+>qzT;lQ<}=}xs_vq
z!z0M;&p9Z<&x?+$%T`;RNP>h0A7Z0C=m;e>qh1}VwwTG{a@-l0z(aj_LIvi&&kUFb
ztdRN(2x}D;LAMZvA~2oi$j^GB&DVIB?Wq3MnE6@J^^=h5gj!UTQOO4+vfn_ewPJBq
zO~uA;9Nzkn>4du1<PWl3d8-+su+7Rmlbt5u+Ap-Qih>D!I}Q-$vKop<BNohHd4J$B
zen1C&`<AbxNz(N+_8IdC_{>B7gZh)1@CHz?UjC)#T3n`vy(0MH2RYq~vOG?lT_IMx
zNenvfVGW5+&#oga@~(H$Im$qmVA`AWF_K)gCTC>xd{9qV(93-wrfa1Gl1<kvS7Q1q
znuJ3b%yX+^Gf)VQ#!uGp4YYK>4?J%C(Vw>Gm~~t&l;P8_o-{x5rO*xU1Z3N^rgg76
z4u?VoonMUCmG5qGd<z!3nv%KTQ=n_OO>g6!H+RilG}gA2*E^R^;L+=G^#Ewku#E)R
zdEApR`do_mhef7u3L<1NYaBPCahBHFUz;;(waa8&K$d`9%t$GWkgMRS%_d@a>x5+V
zWIAzkuQARA@O4C-P}4<eHdMd(h7jer+O=dc-%zWj;|y)TD-NKPlck30Ra>}sf}Y_3
z7G;_r#3&{98Az45<9P6gR<a3REG-y_s~G<X#ZYiGRrnC2>SxD<5$jWx==mst8|$TU
z3~{Xq_16vRJ1%l*&wa8xT+U%A=DgdiB#nETxZkM)6P6W=eTj_I>2!*Qt3z5_Iai66
z2V!F-x%=f2+lFFEMa~1|^}NNht^I~tOJX7^Tm`#7GE*4I;ikNE+x{Z;a*_156%uSx
z{d}#{Z0$-%vfOFEc7!%f6xBCJwJNBO6D^<5b=@JvLQ{3L(8A=^fL`LH?_37mNWruN
z5TX9<$8YWEE4)KsnQgEzubQo1Gr@$Xcfsot>;G5S%&2=a+Tq$*YfBSBT+zb8m#F-4
zUZeNokNOjYQ~;kDKmJ?i_+Pw<UCTWhei%!f0*F`?0%biIO@QxCN!?TmWL|F~mS`@_
zdot7r%EK5{3+jG&1IWk^iq^vMUwGz;oKJ8(a~P0a3J;6pO&EPo{N6$o*~H|oaxUg)
zRS7-(&M0su+{Y{8vRZPVhwrIdIOnvXs9Zi?pV6fDGRg3y<nl2v{Q3r>ReukhDmCd+
z5Vkh?Z0j%=C|D)pw`;$CK%kyRjwd=+q$U0y<xrpUH2#+&sMU}?Kz6w-2kRG``3&4B
zMk7fB8V+yNm+X$Z(n`6>DyuPg29o*0KpzDa+dJvC<Ml4IQR=ujxG{8E25frNGU5eI
zEN{-ywq}NCNv4%P8#8guT<{UFo02zb<fa+JS2+=f{T!bk4vH>5qjo`<N|I`UV)B{y
zgicVQ#_;Y(OiE3!c@{0floRxq#xxu!v8NYEnETuF<uR=)#N4kx9C7#+hRk|ePnHF<
z-)IW#(jaUuZgl`56l<scf~IN*={7iFX2y8VOTnAxRS}tF0>4no9c{@=ljnNLg07}Z
z9bv=1iRP^cf_M;ukzj0EQ)qvZdYaHtXeWh%)<Nexp(s0OzZ@`-sA%P<3+%r#+=PX<
zj!t9I+j$~jCW*VQ$bdQ+za5TJ?ifrryzzoSmtxlp2!2iv_TqS4z(gg_*&Vp+i$#F;
zRN?;afv4Nv#d;%D^^14TxY55YstD|B8pTRUk~O*D);r~_tt!FoR8SV(4A7KPv@3<h
zGh1l`bG^-=WVB|`cT$*UTPzS{zfzFE_XCfW9c4|;*asSM!k%9$){q1~9xlq01S<b5
zDcoG6m)QGB`9MY+8HcF9)Uea3n~|f|1@@`LJ`Rl5#p3*3*yu4+R7h$jW1-F~n_6!B
zeUt2Mp@nZgFvmNsv)e2$jXtvEbUNHOYK_#u`~Kl+3lXu10Q>7_Hv17zj_&r)(-!MB
zGdJeny^|67G9l?wcdDG^^D<DOMW*DUK=zYig%2Wybhxuq@Y(ph4Ay51Qiz%=?mql)
z<D(B0h)kOIp@BR2rCkN0zIUAjphAR4;m06_T$=fao%bn&d%it2OeT{!Ao?2kqEw$c
zJzE>y@lrZm>urc+y1dZz=v;cmMiE$W7=4E#xw_y^$E_RXH#liF!3*96?P61+LIE*B
zuAHtruF5_d&t1MUU<gr|jy-&}=d!<uvd({vQz+~qMI_luX=W;xPpnN!dnNOuYshdk
z=ef%&+R@{~4ZqSW0j=Ku<+=Jwhmfycn6?2iqLByAsq_|q6amM^YVM;6SJ3?|bSCcj
zZ{FCi7REe0S9eFBEF!G`0Yx%l0oKp0CLB_<s#Trf3rU~jgLZ~>)}<Pp8QaMz&gV;5
zfsn@2Rm7wwOw10^(uZ?^Q=v~;*bQ0DzN6_kq2lMdjPW6{&Ur)3YNq07Wa^dnjbrwI
z^-RLCUMT#Wsj^CEp!{@;7ENg;<N4>uR0O={B3aX?8x1%L_hC3l#J~F%{<@P$0sKK6
z6&E#yabkiZ9Z!4E=d-F*BKSDlF9@(zx-?GdL=$<4%_Ah|6@H8}m0oQLJo~2CQ9b`@
z@%cbf^AqAaWok4eqP<Q^2nN-&|MlXoQ4t1GM6v-A9oV-&g7+Rf2Bf}NfdOiCKs%vY
zq|4X+i8_RS?<~E!pMicC10wPNm(^PZx21%1d&9xVop_f&+NBQWyDpWuixL?SQLQ4w
z*b&<z%9sdG(B3Ac*29aIO|%*?Fc_@{0Q$l5nfti^>-Bj_{Q%EK96~~KXMK>~@CB&w
z&SrZOuJ~E%Q4Z@6#2Rw$r~WsI@gJu>9+3Z9DxIRkjr=ERfytgvLXKxM?5kT=kCyNc
zPNqa6)q!U|mXg%y8D@(4ip=v()Sc!}b>1@xV$p@HMs+<gcU2U}3$iBPGgEPRgMjDj
zYJY%TWDyH$OHbr0Q>n6?YJ*vUbmM0ZjsT2&ZE+m2!2F2DnEsXrvur!TR!52cQ20ZV
z8#RNE0>+C0XCiLPF95wYB658p4y*{6EEY7GK$)lvY`KlpX$&W?_9k2<D)Ih5T<C`D
zA884k%QkLDSw=m5m=J$PE!nAZ#5hj&SQsKgjkm|kC{{@Y?61(4k+!)F^o?aw5na^Z
zZ`b)};GVG2#SOhVCj~We16(gZ-z-T=Kmi}DZ^k6~0o6B%f0K*T0sijCV0mOszQbG~
z_c`z68AnP#U<B`7uxDm&zC?c;tL+b<^AAsW=dg+EThJc`H$HqqkCOlMEgN74-|AZZ
zUzF^BKHLr9v4I}S_}%*5f$O6Iw}CRmwD0@A!x-4_9isZ(266KPIR>J)f%EY@RKM%T
zZvk^ZMKVjlr+XbhXnK!49p(4u&M$@ffBvzU7JT^x3+COM-3YL#_2C}5VqLrebYwBX
z0S>8%|FzKn{`Yw)_!gyu9eV%9xd~h`kGJ6CXeyB=eMkj94xdow->>4|7w6yK8{j%3
z{pP0+$$!5DF4W-OXt2`~6nPA^fCI!rzhA{)X(Ru+P%dQfFSn6nrTovk{pT;ci10^m
z3%%=$P|z&?i@omVHTmPq-N2W-UShrU`TY|7h=Q+-ZX?*m7x1T`{lOns@y2)jp9|?E
z5o2e;`<fc2kfmAbajVoO6ez70G-*SBv)KK6o&LFs<ZfV1;Wv7`{DU%m5#=+01aqO#
zZ$#FBhz6O=TOm;-yZ*l+h`&0+*J!;(;Kx5~pR!oHVEo<yiSzCOd#138=8ZQ0f4BU9
z{e4#mewF9rU$))22;lkh1NDxFa!}`wgI9w6tpcPfZ-l^R$1kA!$ARI-H~tWTU+k31
zHrd}7(AUp*Jk*0aKZL##RCu>v-Gr9HOO+kTvC8C~K)CXMr$zjQfQGFo*3iJ`OWbr9
z_0LDyldswSF6O7?T`G@sMI@^+c2*CwE3Ug$_`bed!&cm`K++{+Ec(B%!(VSr;jC89
zxBgmxtSoy3FVKG5=i2K!KqD1kI%k`q0$J5wn%+^|DXyk$5qqM~a}<`J+}~r&A^*SM
z2*${rNDLP5B1<+QoP%Eu*qawm{LU5nUw>U+XOp)6_!oY*nS|(p(}~|n)=pi6SdEZb
z6Ae)$eqWE9i=tfcMCL7?X=yYi*O!{?CvTwW?M&@+*t1+u&Qo~SERVLi?W#XxFgKri
zyf8K~neX>-J~}Epo;ikGFknfD^4n89)9#BK<3TQH&9FxBCgY=)Tj`0C2w7{@ARXe_
zcxO7Y=Ds+cAK4RlS9L!VfdDITrhmp+_#A4WU3bk7gnFUunX*qRk+V{HZ5uqtxBGUE
zk_13nDUI|8a$&V1)sLVsT~EGM@vrTM=l+kTrMrxr|G;bhe@l^t>doeX1Ydef@$ykw
z+)Mr&*W_2Fqx75{kT#TpkC#geWrCc4u2T_~jjQ=g6uhBdS80zans=A>owz%Ew2w~w
zqs>WlKE=Iw=zJucKvw<mu~>WA>BE`F7>7ixAFgy8o~EtNY}l_4HZhfeO~?i5Es22h
z5Xf29GX@wdJ98i`X%8csFiKJLXBJSeQaZN7bh*0VBjJ7X0fEIJ%R-}gsPX)m4m?^T
zX`Pwr4YvE973RiVHev4`-va*LdoTeWTfe$y>E-v4EH?8o8&9=E$914aY-*~%X`&mR
zfE%yz$qDZti4qNM;1+TZR!Htooxz2a{<WjCc*~}hP72*c+6TIUz3{T;)?3gg;=m+m
zJQGAU@S4wwn`ILjWB4>aDfxDF4qZ5l$=fRG@%+|su$#jrj^-2cajg4jXjx#QFJs%+
zgZ36t1u-Q0fjyyxI&&st97kZS!PcOW)Rg$u9+qa49quKkHD!{JbH5#yr~7dR+Sat@
zHit&j=5dl;RNio3LUkxzrR7lQU9?pb%jN<^o1}>zH(^%m8+XmFI(#$Uh-+{7eHS1%
zhwp@y9tMOPzy%zx?<u=bgr0FoOGW$D{w`KBxs7i6W+cDu&jxb78PBPzKxP3ck%HP6
z58Q_ZPIJAKfa{7pZ7|=)Tf5G(wg800p|7Q*&vWcZ65M%(`u6htc8*%TbB0O2|Gu$A
zce#daU~6(Gx7EC?Lh_xSRACp4buPz4Wbf{HYP**sj#I&F4XjNiNSo7*fz!^LSWdS~
zv-RirIbWSrFIFukv7CFFY}Oz_nrh!M>pnor{>cPNnIsKA6fD%=-c?!@cp479C%X4X
zuuCz#$eu`)cE`5W2r|*|feLDaF5lJ#-Rf}`Ut)sWa@9hz#lg3O!NCfKI{Z|uDa`nB
zk1{@-xmVYjk(|%5fVLFLsE?5EW%$(HZupiAXO*@#5m98987=VxcWNb%Y|l$H;(&Mw
z$HZAo2;W0YAoAv&X?N<S9&Aw4;eWIHf%r##l7KSkEzqguMLHbM3n3%d$pWHoI;8!*
zA}F<}68)-You!+Uk~L@7!FzOsG&t&;dv*P`&+0RRC$&DKH}N0OFn#!^-B@5Ezh6Ve
z&{luA%I8^ilGsVQ+d_2o_DkTX@ex5CY&UMma^&7Aox-$VM^!Z*smNs@H*upxHR3`q
z9k!yshRXX7pXd2?dVxdtE85#!z_;Dqk&?zH8ZXEIZu3bte5&(xIJp>`isGdr^PS$s
z;1FCU>GCWETQh7Th6c5gmBRh^VHP;{|86(G7UbJlP=GeXx~Q|#+*qKXmIyipw^_(3
z^s%<&LoEvZ7(^4Z_920e*mzud3D3NfPsIuz>HTvpD;&pWCjsQsWG91}8^htn0Iv94
zcimC#;+$n@iYNjM47?vpO}F8Q6uGZgZycv64{p&$aye2;$303edO20q`pR!4dqDA1
z#`7*7LrJ&gC=JV*1De}xap)0SU|Qm^ab(pU#c_{XI`Xmd>JC7!L;DTB+<`5DGk_M|
zOR;0bf@8nV9E*u!l{dR8dxw3`=swZLbb9UmL;?f#6c8(fom;wEhMnsxQ8ttW5^0As
zpGYUs|1z~My(t0#2U%agknh1@sSaja{t-tGB$9y`10#+(ArZ{Cl0ZIb5lepNI-LoF
zPV%Vhh~u|?lL%)ZxsHB3Nu(cPo#OhgedA0MX*?Nt#ZCH?sZ(AHEB6w0${k*V{Ij(c
zfUUm1y8WJ^$?$dmr?^j#<Ttqm1dc;;Vq<2opWM4~#e<9y0Aa~NN00*&DJ{4Z#FBj5
zRUDq_1<!54di0E3@H!iIQX3`@&L(RaNIJhi1Tfq|6_4-U?^weT7K*XccG#(U3LV_d
z%`B(M{CHTVyv@0d;&p|Iz<b?Vy?P#|vAS7Ei)JVjPtGiK--~%;6B%ZWwBvRgKPgMk
zWM`=L+R_+5t(IU1@5_}}w%OEMB8O|+uF?}9Ch5%VR5`nk3TY+4IcY7N`t8cZZ0=(M
zny05fZT+o7yWvXrZ=6Ol7>FpgWZ9wLv4>e-me;7{O!=T3oBhn&cTjafP_;6;2Q!F4
zj$0iuUkud0+&cdLv)U9%$nD};P%)O`40mCU_E<Oj>*cybqA0pJ=krbM_2D&=o<L0w
z<Gxf0$_GCkVI?w|6_B?R?t1)6Ve2;E^M*u1Gr24#dJJ>9gR!ZzZe5-!*7Ee^(HEYA
zE@h5Xag*2q&gzQ^S}peY-H`~)fUL3hPLDTueT*;zN%y0zbl-dE*eIjOcpgd8I4qK3
zL``z#E4`Uo<xr*Fkr%G=+Le})BmxyNG&MWfbHdrJQsED2P8(2H7h>q6S){4~`2D*|
z7BbQP>-(Z(LC2`)PWLkbR7H(|FJ#5*!c5R=vL@IX%xp&ODWr}zM{^C`*^2H)L-n|f
zG20pty*N)Ja+$e#9Slp;Bup2s{^H95`?Jd1iM{+Hv|45XG)XJ#J9qC6#g;CaZd6$@
z+b>yUnk`8loc|PAT`gVWT$>06c@`8sRQkvdGGN$VsdMf}!~P-o0O?G-lV7YHvhoY*
z9Q{rsY2$;0^+2*vdR#el82y!gV)RL0Oxklp#k8;Q;vZ4^l}DA((2u8*2(Q>C^Z=qf
z2!pC^N_$rx7m-v}t%naVADN&T{NZdUV8<-+#J<*}mWM<U)B`c|jOTY7^?z^$x>deB
zZc5*LV-59sS(Tn{iB|xEA>sqj$V7Fnrp;ql2FeD6PlKi_%rUnwApiisCtUq%nV#Q)
z_dq}E!SeT{kh8-rIirQg>3NLyddDbw`(?zB=x^+_Pj0^jBD6ta*aLWs00gnqeQ)Og
z%(NAOdz{Yu>Z0QHcdR<9<a@S|7}F4Z7Wv}Fm6K!SknN+*DJlu`3*z+@Z?R;ayhRvF
zB1izlW>KhXVsu#_rJJs`&-RG^x^<e_2YzmT(Vo@-=yv>EP|5prZJno-9*`+CCfV6A
zIW7SU_3!LtX};{Skx9Tp*#r78@mjlO_AyBtOtFU5<*@YMN*N!YYM|vB(CN?UbA2ia
zf>VaY^LUp1dOmhTpGl@@bU$P44S9?xavo#6-7K2Utw)1qZy|4k|Lpl3!|N~m)xNo{
zvmACYK)-Wf6|=TqOWPOtaTy`*)9~Wgd(4NrN@Dj{qMaFD5fC~BluWd?Bxh2n81)RV
znOSZ$WD%w*n2=`I))(=Q=7vrC4-by^hojGr3P<r+4!;X05h>!P>V@N(7tpSzGxaWk
zoAGDv2=ig3#n_i2s;1Ac-o2BMsoR7i;~jg>H|8%3*GDB>RmTaROim{Zjec)dT2mf3
zRPG#Wmzpvh5H&csevfb^{3VZguRyD8&^HjB_>O_U-!q%}O@cC#5I1`D-0i_Y9=NYr
z0tG)SqTb1Q)xvtRT#9FXw$!)w{R+!L`i^9%6UG)F=ZTGPC#!ke8wiY#7EjG#b5B3k
z-p*RYV->?(u{qhk(&a^dXL!g<BHVKSFSfhYt&~=&Hap3qsd_|#M;CA0KVe9fVQ{6j
zy<`o1aQ5B~+PyZY+R6V~Q~}Or-mJApt7@HjvAB}vzpo3}%({X6Cw^S_1Q7Vk<rKCi
z8{ur`fllkGgd&u7NJ8oYlC62riTs#<O!+g{_F;)=xy^a!NTvE?6eB5(qB|ChHA`f@
zEz%^@)tOC=!sr$}j$1<^>cv__D_)g`KaX2;thcnyM<^y-n+LgA0&l&#eWSU+iSeU3
zMoZB7X+!85Bdf|vVN*)^{bGl;;XEWg{DDs(rPSCmQ0)b#LA}$KuG9JH>GNA(rWa?e
zkGJO>RtG66XSyuL3+Mz*OgO95L?;?FJ!)*1BwNc<%50)c@V#5rigc&UH6kZOgYcJw
zZ2!9P%z-!XrQwz6vYDf|GLQuCWyn3FEf#PqTdE_)Wmkq%mZ`&+9&X<+wr}2PkX)+P
zPp2IaTbK={C9Gmf4iILFNoK#opLf~{uAlaEk-1%@l1(Q?at}MW(3K1?qx)2uzhc&H
z4~>i1gsH{O)U*^Py4=fIlbZg-B<Nb}%uFxGnaRGo>ppBUWa5ZKAmd@rYz(4CUji5A
zOJe1bB0cvY|Ht%wDIC7YO;>f(k*6T`#B@Kpc{Lk`9p;8dFMG9R(mFEUba}q^xk%_i
z>O*&&JoQTUF<|9>7RbOADpmG1mHSF}QvrZ-KMTpH@QE|17ez0F{|}IsZ`+-8z)8#d
zQ2t+}WiS_U-u={Z&RhC5yb)o!hlu{`>tZ>^!5<&IHiN@d;0g&Tfm({IeAQBf<*tuO
zS6K7!BcIsKMi@S_8SBtuY|&4d{Hz3088c&=e0-YCA~7Q9z9G7M$Madem#LYiQ^_7W
zrs{lFzUf+AS@KOkV{&5}SeQ&lW66TyoaJVMr+~9u$Q`B|L(=-CuLTI{a!gXZ0&u-*
z^qQ@$x|4;7N_k2EJhComTKMur{A|_tI8<1dHPC0-O8=Pg>CgRE(g*0s+$$S2;sFOO
z;&TYn$+Lk8JsE~1dpi4>3k5l{lKci0Z;D#aR7e~P#evQ`HqriX&@y0=+d3tG&Yqcf
z(tC_%F=6xNt#1IYhj6}UKc6>Vi4^bAm2nhU@{?Ib=l)|Sf`uyYxW-b1CQ5lljNV5c
zOpIGqShh=7hD0+T*<<45Cz0?s$_O}bMJHUio=C1Kt7^Jnc~WjqT*<_Y3<K1)Fdjm&
zUTq>4t$aouVQv4pe~~MJulTK-HwC6<lSeH~FhmZhj}?SJFGAtgK|T;g5)Mp!kJ6ZN
zBCW=*0Cr`XCHZgbVE@E~hM@B^dC)%3T7n?zQ6J<3JYYrYnH?z(&eKiYh-+Jj7nlxz
zGP;Ur+ydv-Cry6tAd{?hMt@_xkV$-gJr-Xi9}u)fmf2h%FrxK-rbRdEPt<ZdZU&R)
z1IjM_0X2GqriKH`oT_w&Kn#|;XG^@l7hym2;N6{~{WX~7EG`7m!8>U?M6p=Js#e+_
z!J40#M-5UlTIq3@uB86_QAXcEBZy7yOuuBI4n0QpyfEfpSLP?le1@Z;)}xz^u`@K{
zZF)A|!|By3fsB=W)EnFgam<YkK1!;W+T<HZO!T)$Zxfs+uIg-;++ZijIorrxtBsv0
zPGBDD=Q!>)eto(hKb0e18%p`q3L(%_)cM_7Ojyk7`rL~;#w#m6Osx0sh$JL~vO~vm
z^cFDQ**>1y@ta^rlSv&eZdOQR6A1_I`#LY_o%bKg)y<mki%c*3Mxer?wH(?-N{+A6
znm0S%6{dI*!vV_tBUM`hIV1ICUE-49Cw64{qPw@~RJ0kyzaE<TQhYZkFrjH3qpc;$
z%K(kjk9^Tp7b3rjnd4&C`Jrjnq&H`W&bvu*aUMh>(`gERVWMwo&1*w{w1LDDK##K(
zb9t`35zRDeO=Xg*xgTv6Rtd9)hL5Hvqz8T*c$zcIwK3i!eC}-HjJaM)TUEM5gH=o+
zZz$=dP-$N0b_f6fq-`tSa7k7jDk0I|?BskYXNq{)?H8`Ieko=bZ3dzICKROZ39oIO
z=slVGUH7xX^jaG4BI@Dkr@0ZnYd<?&A3SbtQkx5%-R2jxg*-|U^46c$DR)Z3Y25A5
zxNHW)$YH`xCB%hL0^O(8<|*A<1>$qy22;IC^K;=ZX5qqz>rCrwtM&2wbteT{HzcIH
z%<)k7J$vQ%em13_d%ZNd$Sc+=>CnB4O8jFtecF^__R4A)XUgM;kJo6K1jpDI1=O)E
zbxNxwiNez@(6eC(9P!0NO{g!R-26NEbt~;lVmF)UdUpWDL^fL?@M&@onTT){lTNhV
z$^%cnn8sOv&5Q@<6?5V;vyrSe7BoIuYx~VfHt8h(%8;(`8K6RK$C%=SbB{sTn)H9T
z$7=8}2UyQ@;-)H~O=XsI=ndH_j}fMpl>PK580T(T*I=TiZr3XzFSd^=AjLQ5`DdCH
znjz%?3>IzHCGtP+6i4`-Qm3*$<tGSifpUa<AATOCn{c{LIG(wlJGzm#xzd+b3zVOP
zZ;U(&mJ*^j{xU8xqWI3mR#hbs+#L!8+rrR0eY0K?R^1o9&PH@*Ef|<TBAG--O+>q9
zQX9(kKUQ$o8hWK)b{JOYp0@dRaO1m8bV~}gi$u8;&2}*6$RscdlU!wmnqwI^?OX`u
z@$rA1+zG~rAe*$(EPv<WA=YSHDtgqUo+is@CP4WT!Choya@kY7tu2-NGqs!~sIj9j
zd+zV>V0VU99@tS4JzexpzEA1GEB)6p9T{FjRKBWOe`q5r^HG8g-?fnYvC<401*H^7
zjO}&2m}HAa*Gu{c0#|$kA|6ubQ}L$|OI8~t9F;M-KR&Zi30jq(;zXewFVL0NYMbd)
zUmK8+F^#$}#e1^BLf7abGsCx5wq!Z+d22}I>S^<(u$Gfi(dN|0g`z5H;_2fEvyo-y
zqYsCR=R1UbXQ&TNT|Qd^4=zs8LxCjZf6&KU>&sUFeQfynMg7JgD>JgOf&*wJ;4Hpk
zk9C%++hoMBHz8SHSrS~u2fRjC&s@H##RAL8KEqbWZ=w1X7%cSL_)dT;rtz+_L~sm_
zucB9Vl_8~1+pRDc-2Co)K8FK&bL7z}@?cL0dWkObQI7YKTaq@HnmrXLgM!|>65N)!
zx#J6xzd)nzp%gq4jsXLId>P_0C-6uv69y^sqg7TqG2H#QjNOJWr$N^4atPPv+;%}w
zU5V$p(^Lh3#<UnZzJyv2r<1ymFR7-AA$9{YqYM#VS1CpWw)<>8DBi`1^!6cdD!`BY
zT;)2?SX2&aMV%C1I6I^mC`}Y!=YPPA%mdmTVl}LP%;@xG!BB`rxOQ8%FC0UG1nvza
zZIDa9c8=>8a82onqM<m<i~P9WxI$Q^eyHK<a32;Q{Y(mbdRZkf<2L?|O65n2RMMI<
zO>Q#nF{)9NshUH4v)xbSlIO31HxToeH*n>bH;{`)RS_Qmz0t6Fz>#ic@u3m$20r-$
z&ceVO*b4UsdUi4g0B<0Zdd1_*s~#5u8nH166KjniC><GEYv<w#Z(QRY?Y>LBMWr_(
z_vtpk%eA|7M4&EpVYP64P+px0vOJVOQWgPJu@?mO)$;cb8{9UU8yM0qdt@V~Z8?L7
zU+2;6SGu1IL*$mgRP@=9Ucdu_RW(e?Hu|<N{Nc<3-N{J}`|f1J<5m>tsrdZ~a)|mU
zxTE|tMiJgZ=N=T|OySu2q^G($ss=73s;O^z3Jt920H>Jm+IZC&AZ&=W+DWMv^0eC<
zW-$ER>d^W+(!j`Z8-V6J1x1*fA5$dvZ^-n0XKb^NDKC4;6M;H`$l*2wrpz@4lS0R{
z21w(R>2&VgmD0ty^fdWIO?oK-o&uA3!52dj;vECAd^5XM=2MEQW%xsQeY!&Gs|^OL
z@fw=;PlRqv;c8@Fv<9F$T#48msi(e*62cn;rXLyWJsBoI*3+mbwmUNJq~u2v@A2N@
z&E~a*JWMqMS_gW4<lgmJKj7z~KHm=qM?@Xu1(#kyCwcXE!X*0;6IMYJt_Vhmkp@~N
zk@_nDi`D$uwr{!6<f$o_UO+0=@K_wB^^aX}489Alj}V=HU&DaJMI3E}TX34neJO|^
zWxO}m9n;bvFlz@ElouXlLx)&s_OO3~LQdNcJ@e1VCUTM%BIvlw9^4zeeN(PulLq|R
z=uBIL^rI>Qq(~7yQ|>k@2{=iAvxb8fizwJ!St~cVGRh%gBcK8Xtl@7S^|q#_{6}f!
zE#7R@3frqz5i^n+WejcmkpqdYD5irSFpBJr<<lwsQT+LqKc;(sd9IRGN8PqDl7Fvp
zq)9K9JIOf~QL+D=a$3LQ4Kn}-Oqd=4Ez24lHXIN$nebv}oN4WIgfKbu4aKZNOww)#
z#+0XY?6<A!`T7xxi&w9$c4wB`rTzWTR%&<Vo2XlgP%iO?eBS!L7J#x=>*fkVT)`5#
z9fVAgEU>{!e-aDrT>f`E0)n3HH|m#;KT8+uUdXd(2jSx$qa;C7#QW`5wemCWoWDeZ
zA>8%_35(p4nhp#^D|IE{QM`k1t~V1G<J$Z9#$3=x4*`yw_Ktb<?1PVXr8#aE-w~^j
z{fca@NWq6P;~m?VgzQ^CmSDC?f1`pyaP(4xj`hxDsV~ToqVECTFh|U;wb+;`lrPKV
zExCWAg0}%G*a5o}_FFR?gjB-k?Ih5lBSr@lm^w+lc+yHr)Y9}!;a^4=6xvjuw}o8g
z4T|cX?q4@iCls%Lia|DZKwZQj&{^T`Pc_SSq=OHYxa054dx=Rjqv-_kv|Te^R&1vY
z3A@KXt=Q=K)KNu$2T8$4q6rO&>6;@<KE_UQ;Y?1?Ia#jRcMp(X&_=;;pz5Y121LZ_
z$^-KTU1kcz$5db>#U=}P0t%4AW`PsXE1yQM7K;+O?*oMpb<ob)hcQ<lBy5@wsZt%G
z7yZ<-0PuBedL<?j54`9vCu*CgjnO@BpB*YC{N1yfn>_(uKt{!ynxTy!S95Kt^0RU)
zZ~E0KJPS9OK-bOl4E003X2}UGa7Tc1p9WYvcWr&Bx%DG46pjzu_u;qwq@5n?20jyr
zuRBK^=&>$i&@>#tJtXA(_|A(I1*LAL(oBL{1}9rJSNS<QaZIspmg5G`u)>nK;C=uQ
zAzsyiXB4#EQ1ti8=)`6jq@>H(gI;htzvH@}+1X&KINa`6+YG|!BAIl!1FL{c9vn89
zzw;m6?F4E%<Bm`QqyBk_%XN_+#Q-}tjqEcfohpZtZ$v8}$``}FFDw`|IM}PWC4=uv
z>WyO4+h-pL7Vq0@pp>2sNZ9~CGrG)VfK<tT>->M9e%0ZqU-iV5AllP3xZN+IWQ$O4
z(k<#=yPtv-xHEN1poE^Bm$9vi(N0XVnf5f!Ip;6?5DDux6P1oZD5ulrti+CkmqI^9
z{(WrNkHy=qxBLI8pF>Y2Oco`OV4&$EkDB1uTMGyNZv7}`%J$qzzAvK-C;mo>HADz+
zNfL2ee=^jpn~bmvQ7lWQ@w$Bun&vQ8j-PK?-0ACVmuTji>;rjayZdyipPGJ>Q^v^*
zFLj1;$FNq`ZRQwGexGq#ed>O+{h3CcS<kY!PcK25xAU^fX6h-OGOzwd|B+<a=|``W
zi@*X>u2;NcxoRV+!DZR4RDd^GZaV2qm2qh#bMaV1eqh{(<ZWy`I=a|BvU{4ZmcWa5
z&^Iubcj9Fra@wDKqsN;5_uBBEvmdzJLLTqkhwOs-AUySHFjnn@t)JgjesO@wqA?Vp
zmo3{3x->q>H~JqXqCcWt0zk2fWkw;mW6v0_Q}W`i$979tlF-x~=D=$_ChbRCZ4qQC
zlj3^saf&`lp72Gcq@-AOA~eQxk)(+4qS<#%0aKPDz}vlc-}hemW$H5<`LJ^UFutx#
z`VFzx3r$RY@C0REPAgg9>T5sX@Pqx{AAHgavZ(cY1zCoK^T6JWc1I{f`?Gvksiz*u
zv0#jfhBRVz+7)~Rwm#~whQ4N>+Nhe3Tpxo;QS{MVVFg2*fbB9x6j9a0Vo4Jn_TbO(
zVx{0s;e&|XHZJE0u625`$@q~TK=OsVA>Fgf6A?mojpb9s(8&Zd#<v#O+FSrCR33D%
zxD+_FyIG`zI&BDI@>S&m43>k#FT5U(73%f8?4LFM`t@6d!<3yC8CWLZm^IjD;Ptul
zw832i-kc9Cttp2eO88bNe4Em;!icn-mhY9JCU9nd&X(`FL|N%in?Pw;8B~uUxtC6A
z{eX<^eU^Lzg*(Wo`p`tc$*L<87(pD>(vc-cs1$Ip7FK00ulsU&vETGDGBEgQ9a|ZO
zov>&>bG3uA^9&KjJH1^<ImpzsNi+_&sL&i5WSvI47xtnx{D~|N88o%&-$DXz3AH9A
zDnc<n05_GAZF7nHc5SoXw`njw9Ial6v3sm8X2>OZwYgl`LB~jue70HQzOZOGnS?*{
z<o8{pchPvt*dH19wF5%A=Mi%?$OBtCeXDkV1~`#M)<!6RJ2r*|&P@O~-fp-yvL}Y6
zXDba-`{W~~M5t$8iTAY^^8NcC5{$YdQ-Q4_Ur)0Cyp|-Jn9oiT<PL;->JD-hgFWXx
zl$IxB3mAllK`8Y0o5a|fTNL`Tf(#F_Zxk_LIN#<0dUx#?_Bc#bp+Jgm+Lv=?)4A3)
zCS@m^i`ALQl6R&YLYb>~#}yL^)`I=xFn>j+4>>cf=4H^u?5&ph!{}>I-vA~Nsq8Bv
zp5tO2UQ|zIrVyN=q}r=kW6SzY3^#7Av>MJDQF(JsMiSe&&-O0bT69;2rE`bp3S(K~
zq|q2Q6I1RLTR*Mpu78qET|xRf+w_lBUwt$PQ6?Cr$;9k5RiYQl#6ggNW(cZG9adC&
zd;e8wejLs@u*eJTO9nYvMxSOtj829Vi2zZmjJv~m==|2~kn3Zmx=V0!7NoPU5uG=t
z(2t^zdTbTXNvXQvdS<xpK=qnzCqkNH9)#}an)PsdJd8UL#HBaA-2K#g&4i2Y!e^Nm
z5rO`Xc`u7ednC103Yhn<E}<~hikuB`9czmttSUEuk<w=)0LI2Pb5P*{X?yNgZ_AM`
z0FQ@;CW2Xl%w~Id>z*A%v5c`s<@+YVrwy9xBaSG~^w4RmpT|23*~y+~Ls{2W(T*Ub
zGtw$a9I{>~e@f1vQJA_d<leKS6?}&e$Lz`1g$lbv!aCZHiEJn|Qm{6{(&lR5*E-#=
zsk!*4KS2AdKj3Ov!yG#lf(L;;bXZ`S%$j?xQBq|*=XO>w1GRg&Q(+@TtUQ;fSt8{9
zmJIdGI7f-(-<>V=TiSmqUO|-^f4?MKAe{RPR-j7XqvS%^0tj%|O|^&iV_x?aeTt$L
zD2MVgz=%ZxHLI<Y7WKldN+$%-3^o#huu=>J^M4v+Ts3@|!Uq$!PR9!L=}Va4;tvjY
zjYA9|mW~nHiAzz+WqZ?)&<cXn1}iNlo@V%N!nLaV+olZSLHJfVw&XYVS$LnB9^Pjj
zTRZSz{|JZaV#8s&>(7A$veuRrz;p{CGE5->$a^hV5D5U&Mcwx9v{4yBx;K_3<K@+s
zF#03=b_F=4$9U?pWhgPbH7f@_+)^q5PQ2|Gu~vl-G?8FMv#42O23r;8q}F-^+EY2z
zC)q&Ni9y2a5_IN$Sn1IfqagVB{G|0b=XEe7l3tB|it+I(`xdTEB^vQTm}RSeo$$pE
zA$qm4JDKM@x8{ZnJJ)PrZ$f5rM$<R4N3-M@q(AYN7Q7Ojm_0=?JwP{9!-kM8=~P?F
zYnAiAFAKfPjSRw7Qh_Dm`@N{{UN*LVFr)95JL-yI*~vGL>E#nN`Pkwg%CF}U`OWM0
zU4B1PwL|sVD2$!GWrhliV^X)H3j!h6i#7~K)nauuz|(d51VVcN7K%~)+P0poBRt)}
zE8(>RKsBQ_Qg6QAJItj0rm)%@XD{Yg8GjKI;IgWM3XWSKSuIl~A>$5a-n;gwu{`yU
zi`IM>-$g0T;O(k!Nr>^@R@%k!L}02IAew+!u0g}Crc_d(l8t9H5Fce7%=-A;@7Y%M
z0<8eC(b0j3u3ykX1hF{40&`4PTFytBhkPiX@*_dJW&d-Pjqq|wQ~XQ!JIQMi{13%8
zlIaoKj$Hw#bw%3gRkja~l(j(QA;0sL;MR0yAa`&z)CLSdH?NH#yx)Bo9Ev~(+C`Q)
zex=xICK&keDm**ofe&xXI>l3LZ6vU0Mnm7#A3loJVmDFmGb-u{58sfXH3@t^J-Iu+
z@owNet4}8gF#>|mv{W7?<jid~Jo#30_|fy6SM7U|l(iN)W+cZXj;!z*O{aA~r5m0O
z!y>c$z~*SFP!zpV%l&H4MTi89<OliT=B2+NF-pBa<H*}?ko4;jQ{%FRrB<vq@KFBL
z&ZgTP%{zkEbLBx_Li2~oaK5o3HDB|w9C<|lm=M`Gk1##{ZP0!*dVq|0W5o|X^+9}{
z-@gB_e3Dsk1neY@Q*k4}x{>)JV&i1TzyMYd*jfX(05j{>JRznZ=fh>z)%5Z<iEvth
zQ)Xa^FJhDq*Yk_9Larw{$U=5ib2P`u!7UugVjv9TaWQTCYd+gh9{`yid3$?1J_dx`
z)BV!_5OO=S6~ql(<Z1sV<gVf;A>N0jedZ4TQ<5)E-tF%)@7rB(Vz+Z8&iBoumJ&~`
zG^W<|R<-Hs*%N$GeKO#<qXv#U`PoeQ{Q>C&_j=qfk6;F=NHax4euWyr=lN}vO;=;=
z{||d-9aZ(Vw|hkt5NQELS^=fII~7E_OS-#T6a+*{kp<G--LMErrAxZIYteb<(tXa^
z>UqySW8C}aJBEL3+{?vU^EdN5pU?Bi!5ZCoXP(qhCzQabJ(up%D{s#8&aC$<S}xQv
z@{PeO*KgU;(U`vJU%Adx5I`4lN8iikM=(%WayyNWlw;4u-Hkt)BCKvR!5J04F&npC
zfqwFSDR0~{)$__Pgppb-=@Vv~=XZexqyuN}dWnsycCMmh^9_s?O+>yWuzr+gO!3up
zWDAMZrE$UVqMSR5Kh1Qeg(KlEQY$%PVv7wm$H!@)?Ixo0ceiN)6_@A10jB?7)SVZ{
z`*S?H@FeZLN(ZlPkumCK@o?#BjI+qK;S#Ujud^6uhgb4$;z7B5+Bi`5&MZ)<y9@Me
z_DYqDtKQE)2+J&s!$n004l%VX!2~QrLZbMQaOUpJ2vf;B=d%=G?o7V+K1E@4MSFkh
z#aSztUiv03Q`O(&8Xj^nCVg`A>*ykVak;tXKm&!z^<H`sVnx*ihS{#ou43!nR2?dA
z);>dtwu7{fB~6bkEnL<ena<C`->PylyX5j#+X{f54%^+FVCZz(h%g^EUzy2M8g(m>
zGG3cHz^S@FWUM$Zj<z!XMJI<|KHzFR^+{{FQj*-83N3yHHOy~hT}u77^}SpSZ1fAi
zlqV8{8bCQD?OqQpr9!#=JIK?MmNrm)>&OO~XEgy+BdCP_1!xRK5?o%<U1~eSg}NfU
z{nEEnXo8MFZN%6@BE4bWe6qSsN}&d(_Xflvr9PAhsT@JiArB4^l>;WjlH}UiZdlJy
zc0E4SM$Oj;aLq^k^80@*Xoo-zXPl6vqG}@%kU>cpNy<=#yr|yH!DPvAufuLh-PlRb
z?JzF(Y8dcF>Z0M-WP*2F-((CLoC|Ri-Xp+!ePmmyhJL`E`^@TdDOW(9>OJgqp@Vs-
z&5!|Wwkt6;x!v;q%r|>(uz!xLJdN7o^Ae9%piG6{|0vsC8u(ac+7ifK0@?&=$cV?+
z_S)psi?6CnMj0zm4J0K+ViuA)?EU$l&li5Km$__8!U%fjcDN!AqHl5B3+*pwW5+#C
zcm12S2anN4D7!Rj&SiTnZ+VR-tPP{>R=4Pq*ApGqz5%!$t49q#+RAX7?j3G+xBWHv
zC8blxUH9E+7W>a08c{qT-I?tgI+fk3JZaorYjk_oaHuQnD`p+gSdszU4towH-?9WJ
z90z@R2H`e(pbe&qS#OQYWZfo-%2<K2gceDUknDGi)fNL>2df-{Zbb8*T*by8<3GlZ
z@36Z^oT>U+($PZm)hM)_axKQQ^ciHP?-0@RNpO$r&T7`M=lw+Ps)EO+N}Ng1&a8YX
zNQ~Oz$)>$4N+{+t)#1pU-;Vtri9(AyZ{AyK*q!_R3bov2X_dVj6d#<$TewS`{M#0e
zmi1OgKX!ymZ`6j17{q)8wZ!zebsB2U9NW>Z+Rf@6o$}XiN1OPjw9^<QW)tI`aSjvC
zorjehs~3%<AsOQvt4>p|{pctCF^GiG)`mYGOy9W(G3t(=?>GAEk|ZVGTXcbOBgOmt
zTc*Ozx~s#jQIXqaNOuTDL0KtFYtFtL7kI#oj|~0j?)onu|5IcS|BqKjaJp{od(OY;
zy7Tk%REVcn2)zD0&lP#H^J5<8qB<mOo7&dKkI&$+7$N2Rn#E4rpidTW53=U&ZH^Q*
ziIuj+?{Y5C1YN2YX2=86j!aOXFdLw#U}0cyCEn(Ip7%*M{D=y#k1N8MpM-=Y-%S@q
z7>fUv80i;j9?<{#Kt2mbpzLa!Q5V_lgriBD`%%&g#VctXzQQL$;LXvOkkIPgd`Z1`
z@M2zebl_34mQEyVx!jHw0-M<|WcGyf`A)K*eTro<1~D(D?lXqov<5-RC&W;r&M+U<
z_bnJEO;WVY2B9vr$xkC`?-x-O!Wz4!v6dD<?ppJ#0B0)c_#FlyD4b&2*q9IdL|Fbw
zgeqM!THaUpn_wLXumzr3@BmxRM{|BbkjJieB<=LgL0Eyu6Wp)-gI&D{iJ7&bm4LBR
z8j;43uK7-vzGrKWjTg*UTSxo6C6n5^o?h>+MbH;$=9yoM>_qn5`s~K2{auH}cjttQ
zVMiOm4~w6qPcxA7V3htU8wEpsy32m~EiZ#!xEcT)n^>EAOh$O7fZp#(noHyt@PkGi
zRiF;`9AoJ@gDb!Si$%<&t|wBJSB3Jx<l7i~LR*}9>G5#jSIca!vsKu0xL$Nes3fSj
ze%(aFr=y)cxDC@Hmx>&>JRGPi-1!02DFL7kn+*=sX&ZQLPARN09U<m%yA0eD|A@V6
zs#gPTWxqWoHPbu$aIjSDDFEt7k2;!dr~V1lHRvN$>bSf|C;CO&G?PYIXtyX?O|ES=
z3k;*lsI{TTQhX$AF4l4QzAkHb9{w2+Xamo<-|F3)E9drgxg82;>h58qmm5T;YCmjn
z-`^*3vtE;XQa)c;vigyV6urfL^HPD^k&X5J8@*kT9F;7`=sRXORS@i#a$-7IOG<vo
zo0BCxjvKvGQpQ21KkF1OlGlz<Wxgem{Br(;LJ>z;_JKL0n9pBaU9wmZ^27Vh`}f@e
zRp$(+>V92Nel+eDTnR;_u05fgf!Pzp)K^?@E!*}@f}E|TQSD>+m9gIw+jAB2@5I4+
z{66c$EhpQ1@pmT-yFQ44Oj?kBZJWstGHG+K5>Nv~-jn|Pe9bRFTQ+yYLe&0V)NQtc
z>nRtuw`IUt4Wh?`UUIrI$}-nmNZk^M<4>)e`;^OWK~{;0|7gfn3=!1l1CVtEe))z!
zW(8az>dnn;ZsbPZC3o(>s<TO$A}AARZ2hh+B{t30B|X~z=v^Tl0hAZ<ui6_!=k?(n
z4gb20VU^qajTXK{KNmG^8PJFY0xeO$0zs9SoOTPyn-f(7Y1&GulAqpzsJXrVTIgyX
zOn#Xnmrxj5_%-oQz>bs`oTmIFsPHyHjOreh`*L(msZ9?XxBCSX;0_{)d0k)J7Y!K8
z&BB&nQVh&|ku=ymwWBAsb|L1yr&F!j;Q*oAP0{4CH!H$b5{FBs;i@ih=6xs}@F>;8
z6$aPRiCt2EqE;i%Mqe*;(jPzF9m5F>G^Kd8E=<#nZ`3(?cC-5ol}Cw_@s~C;A!~@=
z2Dbh(AO$6HxhFy4{CKye<MX#CAPa6`eO*dT)WHwJ<hl+e=f($&ohb6zF9YBQ7L*Hz
z8O12@hJa)VRi--q$<f+)LL~jb!)BOHY1rOEcbcgIBa9id;nekhH+Jj2NkkhhQI6dx
zTi)2CC|hF2Uu%5e?D-NjmhP`G;19^kMHpP{$z;0fk^sbNCslkPf>^){E`>MeQr}zP
zzf1LkkgojY!XoLb1DIVb)q7?)l$q)P?J1^36V7d>#pf>x|JbmQ5fA;!Z~f>*@LXfq
z`<USafW@u9ctZJyP0cUwGjsjAOEc^mLG>@|(~q|WIf$x=@RV#-<X`^DpYztWP#4u3
zf4(Ljj@+?WX%B+{p8}q=D9m4;-tWKg6%yhMR?iKS6@=fpMbaPdPX@kMlO$;2|M<tH
zxryM<7wo*h2JUxSyVl(RHszRc7w6Y{+wX6=^9ug*YiL@(-=<sx9}&Zx6duW|it^_d
z{`GJE$3~Ih?WuItVgUVMD?(5B*MIc;cPGYtCBci4n1uRg+wsonqWOXu4uj^`%k6*v
zp?`zmz>f_q2s;7G_c;pIK}zs&oc!}YIK*Gxso@6v<=0sqesP5U@i@Ro%=N*9cYKQ9
zpX%=&6#k+Ae2t6vHR4^~`6b8NA3BY9D8Co2e|;MlLHNsGy`}%N?REnE*)ZWlEf?|k
zr}|sBfPd(J)0ujZ8y?0RPeAj*BB<>w$wc;_-v$Hza-`ngo4+W^el#5MZs9FqWYIFr
z?VV2&r2;$QysCZA1G5C*HVghqoBcYdm_k4gW7>*%Dfs(0+>r+z0t%U96}uo!0o8K^
zsP)jzzVv}3LQ1(O5Dc`;B~+pK8@LvKw(;Np25JHxR_zMQtNFjLV(?cqbil)PAuy;Z
zNtqRywkiVevX4j@zVO1Rz*T?$#qetD8{>#4h6ve8jA$)^^UrCVtf#>R4ZFpNC<=CS
z28ba7wy)3hIWRkaE+nLqC^L09X)d~izc-K`D_HIH_E*2m{L;-p$0Th9XfH!+{O1*-
zC=ibuo)c>FRb2(crR#P^GQX0?>RN3EtBWP6rNC8#?&~70u%qQE^Zm<G{aYWE_}<AD
z0Y`QA+oBh@?xYIfGlV}rJv@!&F11F5M?Y!{zijK)Ds`Urf{dm<4Ubi4HJ7xVZ*?3s
zR!Zs!`D8g*tBDvd;Qay#oiMeb1F|{>n2_yDPsvzLCb(R@9pcU+Z{Du4#ZyVIonMw?
zURtyZEzm4`+a1eiPPzbLhfB?~)+bkd5s+P;3buK+HHj!#K&SW&{k;BqkTdYGs);1O
z^4}lqHH3HInZFaI?b-Yh$e0HL8D}H(;em{>gTQS;PSPDRL|01k6qSUG*^V9%6Ueia
z;U?Bk0BE|}voCF>iv@YuEj0j92+dDGKt*m=hi^&l3V3<Ua={jz<Gu;N9YUBp?W>Fy
z<=a1S*+-pyM~8<pE-*0oEYhg-$;?ys11~mOs=f+mnYG^h;6;A>G>!>py(Y(5=>-3!
z1LF+B2i-L+2~s{j`^sI_-QP>iMzMi6c8(MuwV)u?b*&>Jnbx}x3Y=v)lQ908uKrr}
z{`vFYIw6=sZ+v)_Aq-7XAsMJxzhQdu?JLSotgS!Q*9XIodD31GaxpyZcG4-|OzP<F
z!!W16*A&11!Yf<nt}yS7fXDkk)@cp;oPP*ZJ8R@_`KXG#yt=$*_I-<}9m2st7t7H>
z!+TM<TqF&yO+He6+2j2?b|#hDT|mzh&V7%d<tajq({|D!QH?K8xtrs9Z@}#I+wr%~
zZXKR&F$JjB=e+N2bj6E(I1-#`5aCDz{kFF#2<b?T;jq3hP1?*Nn}{if=rHBXOQdH}
zGsU;)`_Jc14}abiZx8=`-f*Q)?u};+T4eEB*W+27{tFiE#wEXC&;>*uUV8+lsu67F
z3%*=N4<5gH#eo^cu8#*lFax{t;PuDSp9iNH>HOibgqL#BAHit?>7kwogvhvNB%})Q
zbA_1{2>tnR!=u7p0%ZGffjglOTT?X>LPC($tx0!9s4CW6*e5Is>)LIX0Y|I{{1^|_
zGr}jgrI-1VxfuSsQ11d7rU1Odaf(D(9f&i__O_^=`X2ia3R+MRe#uOo*+}{O(&Zum
z+5~z<C}H+C9CvQgZ9kS@!=qat!(|q2Nw8PMjOFakq|0%qN%`uV^9U+SVf}Fp)X;=W
zkq04D$>XoBmm*Ly8*`qBeSKyfN4EsZj4%BgKp>du@zKMyKs0k@5Y~8qBPuA|)A8a}
zZpVxFzP>_Ln2i3*G(gA%;z?T4(5RtOi3H#~Ip&Ry?7IT$KVRtv4;EHH)=}JuL#>2E
zNFm8zv(*Ot1cA=C|2rn@GXhUXA93FzG9vyLuO>ci<fkB)KwY;0$k0stio%mlPl7tK
zfI}pHht=xR`5Z-Bdu)iC7Vg!hl*3`GJ}ASJw1=}ZwS=z6pKhLBWZZQ)Lot+&3y`M_
z%rI9i-`oim&X7q+di3mL7znJ`Z>K33DPNVorN>M{JPv{<R)#jmBWR4#0j?&O+B;qE
zozM-;Kv3q|GAu@m<r{ssP*t~4Lgj|@buwmVG8Wcj!sQ>y(1%_ue8Z`B-sT53?3D8Q
zeTG!>NI?cE!0@I&P0A;NTZvi{LZ8<*t4RVjs6IkM3-j|LtNmlBB%7<;@6l%iGuCDC
zNwfq=*Nao;Pm9&F<L%0e7oWv(XyNmEAG)ZNiCYG~uAMztIgF-Kh1P|Jtk2Ch`NQJ}
zK@R2h7TjqjX5(+qpJ7uu#l%gXi8*)>SMy~ta=W<IuAiRw*-p8daq}-b<|Q!74g_J(
zjcWDicD22z&F^v5a&pKu){1o;3Cubo(i*ObEAy}WIjZC&NI5y9tb&ZiW90*l33prU
zNv)s4gAgBZSjoOdMDbm|VkH)+==+B7?=y_`FyKp3PZhdzI=C;2tGtY&z9J;xFLM}5
zWi8fLZjWpA{L&*Jd~MnL7|*kQ_jX+EL9?#KGo0o$q%S>&aR8Q~o7J+ONggO&-{5mQ
zPUzYYX62ZlL>QdjW~Jk?d9x*e&V@%(D3-O)TKbHB@7dk*%&o>QD%O!JkTGpHkW^5x
zW5AK9{i525Au8PhCHW;h2aw5Cn1Ip(&-pgn1Djd?U`@yP5MZ~Rowq@Hxh_wJ<Ec(}
z-kSsDn9-n`oFoxSg0icGU^bqPtCXXz_BL0u!YhTD0tUa~(BiJuKfyF_&E+b63X%Zn
ziJh_{lzDeR(UvM(?t)H@?bN@h)M(SqmG(QOZE`bfq7Di5k&&8G8e6@`$?b!c?<xWD
z2t*sFkEFzLyiS=KdrPa2qcFM!l3}4W{~u|#l`n6Q#2-v?Y>bmdfaJ-P7r3gdNAoiC
zrcJHV4zMLUB{~@4Xo*5b$Yx6=foeR+0`&Hct!N0Pykh#^a?9U}R=E^;bDV^<t<+}9
zf_g{Y3+R}K4coqCb_F*ykP@&s5n4``cNtoF<gr>#1OQ105)q$MEae4vIB;Mza0OQU
zKCE7i45jWp+SN9@$$f867C<t%SsxVTdx1uq{7$w#QSmVo?MmoByZ~lLON@ccQ1eu%
zGiU(2{zRVD^p51+Ib`S0&qR@pyW<oTb47SOV%svx!9--y7V@J2NyF}BZ(T#5uURVz
zE^o;WQqZOcICq!r!0iwB%)191^tEb-Xl}I)=I94zO<SH4qq7s;7mXHF)a~)w_@GNi
z9svtqmA<5=q$6gwR^BRmx%#@=tc?eTik}Sg=e?5VVZC-X#ERlA2Ug24s@x|oZd0T2
zAz<*V`?obsM<3U$19RDx9dGlZ!b*R9w+lzNvrV^BWe?-v{N7ThAsEQ!%X07GZ*|tX
zyu4U%-bJ52xdn=vprjr-P3O9Ge&Id?xmXEiPIDb#UOkN+23G}c<xQh^p7|5i9K~gF
zZ!fuyRZVp{$^I-a7RtOz*xtbD2?Idl6KxwP)zu4`aPpgr-ElD>VM7L(2q*E()u2&%
z1(pL>^ZhaN5buJ*6*x60pW51!1e~fDTvG^$>KoKR#xEd-);nH<8)NKg3a55sl!<tq
zF$-X=w?>_CkP8yrFZt4_Pqxzu*vwSN6fA*c+*0dqkE)9Y?a&ouI+C3NZ{gDug|~K#
z?S|RGQ^0?_uj7Hluhl-V*SCg4;uW#aVqgL9F|DW5{1vU+Q6LXL^@P9YFNg?Njl!3^
z?RCh|HR1h6+_L&P;nGm-6n)r-YL%~o%hpH={#C{c^fkiJ)p7cPWqX;=7!NycGE<~A
z`6TI4*}uUSW~_i}V0H8sviQ~#;~jQh<h9dDWn>iP!MHb09hPiA*Q{rY#EoTYJw}t>
z+&G?*-c)dHqNH0H*_}6IX@veIqtY7tZaw1rBA$CwUZ+MGjeu{C=LzLw)zZ`sul$#`
z)60`J>RTlmRjb}Ht8YT{YVS+Ooj>?QZ^%dKs0nU_YvEC6_!srbuj(-}sr`A)BWd@6
zdJE}`3K>~{42Sz$i#7pa<y`s6Bn<2Q)$ecK;n6=Qao*hO9iAvO4z(Jr(nqq#?b2D1
zm=3<TNje6ykf(2j>JA3XHqYC?I8SkDqu=)9qFO#|@<&g)b+FE*5`<Llwo!SnT#iWt
znE=U~hqfQ@^l<AL(O8+SNe@N^6^iYG37Kf{W7~V3a6QjNl^r+h_abz)1-Swt9B%im
z*f*Oy?5dSjCbPWw1)ki)N$C8#T|&bcU*pG$+&xzp2=N}utkteo%fjHwU*T8+@;U{_
z*+p7;?IMS8L!6o;BE!M03*phg?1_Q(Wb;t%Qn#)#WPi53GhM|BC%O(Nr)_+00Sr2%
z6`{1P^~tSe8C8Xy1?c*D>~N8ni`Dtw^`L=R9YI;xk~vgzQIgegja97-?0r|CsBR8N
zk8AaKTTY5=O<jG}eaey{odih!cJ4zbg;d|1!h>4+xGeW!8N$;nG@=BUg%pH{XnmC4
zxJ4ZDW4v%~n}tvxEx4(8{<UpdA#0dUQT->NCouy#>txWg;|to6grMV2==_BA(yM)=
zO9DVps}ud%1-Ll4Cc9~4RRKhW+#sq9C`Q=Khf?2@H@>y+XJf!40jl=CosDG=LYR}&
z?nOQr0882bjdtSSGkPuGum*@`9k-6+hE2|g%=Z`6R$^jyMVrc726{6V`xRQR8preb
zY*k_~txX#o*H{-b$6qdas)kW7ORe@=uYcniw23W4?np{%X+`?PGBEQt1R;*>(s(t)
zF=?u-bCUcaJnV1Wc_U1Z)?NpM{aFu*`r1B~20$X&C7F2IiM^4m&@5eZEbt)}jj1>n
z69`T)QG|s?ee^yX-6<`zzVbRvHOH8jkU4y;m}h2~y*s24j;>;MFVw)t+vD86NC56|
zeh9y1&r_{Zk9_#Bd7#A~<LhkY+Mu;bXTrMbOsh3h0*~|57b$}6`DO&3!`r|;B=g$G
zTJ|ErHzLJFRO~O#^_i|Rb3rmR?qi9Njs0OA4K$yHN|LsxQ`x~Ks=l@SWv1VST~Ioy
zYxi#=o=d0rx;*FWHQbgtZ_2l?RKE;AJqy=QRXc<ZtB<^7kl%3J9NEQTHR}v*UKdGA
zn!b}Pjy9znBMx*3y1hoaqkFi6B{Bj{w*@Bhbt>2md*XvfYC4waG_*u56THsJJomr2
zi<8hti4gCx7r5h*@15vc^CI1R0CW6ECgL`mWOW_rt(&?G`-{*|@=p4#l@%!;#xbaK
z4(ncIg;WoL(PZ|#yDFa~jIStV{j|SjG&=Zypz}%rUCn>iEO(qdHd?z~NCcQ^w)D)e
zd{y)=g#Y01MCN*$I3ywDhr)-V69pF#`i!)W$PQ0hMC}?oE{YeiPpx9EO5E#vFI-KC
zW8#YQ*R_V1L%(bCa&2=9EIa0s*nd@vf2cFC(ZwFU6X~(=Rjy-OU+zhBNlm<(YPClT
zwK{{B?-E<H=_$!axVEOa^Q!3h;5aZ0@~&0pTx_U*pf2t_-jwyUAaUJZ8$zV@W3)Yk
zk2a#oWv#BBSa-YHn6s2SKMHLx6B_mwJA#+hEP#B{WiR@UfVFOcQ}+{)w*iO*N-W2u
zM2nn5Bt*nsuifV%IO8u1oa^f9=Bh;Osy$AaiSQX#sFQR+cuyMIcL*#okrbrvormHa
z!4uGEVcr{-+YLT9_9!M$@#*hP9jaGYS>E4MZi61HeNXVdd=mOi|E29qV4V5beyOv+
z<_g66q~Z%5y5-9QkHa*4p)w*Z5OdZiM$q<0#cdndBgH$%$%Gou=VLM?o~=9R__|$~
zb|`(uu^E`HgbVWW7g?VAOiogfS*CB-3iWUjZ+bt`g{rK~a}3Bq`d1%|C0AyvFLC?1
zgvMWr3{+^R?>?ZH58Ej<ezAdDAl34`bbEqNug7(1fi~8ibZK{~kdK~S9r8`^yN-->
zPs@bYq(h)ne3dc#!;XaEPI01k!@Fc=IGh`()i}@VEkFq2_N@WKUF(j(Fxk5kkC}ye
z4RggePg^lU2_+ACX3O3;$!G4bZ+|rD44q#v0u_t?8uEo)rLlT}SJfUnMPyUVLHWl>
zhf_NHkV)0TgMrYLKoL<<W4Ni0qubF9*RMdiIymA0&khWVJeGoI2kw8rwrew>LiGCB
zzxD6vUwDekYO%OCy-fmBN?peJ$sWOhe@kflm$~bfa#+O56keoiGA>Mt@h|H(rXlJT
z7D-MIxKLX@S6G<m20QaOrxH&R^4;;G6kg0%tI$3it#_{pk`48KOvqzJzDqF2YP4{q
zn3JBPBB158AY^gbHe0vGZeo!O;!_^T7Z6YSnJ`zqS+vFRqC9xRzHNgyS5)!r&?uvS
zcrKR1dTfMZ!d$l3aBVClgG@D7rvTkkU_;}3*VoPbCY(8m<C5hbDR=Xs{Ex}_Q^(m?
z_z~<{>hql0GcinWf>x9_6{_MKGh;#tKDL7m=0-kI+%V*G5K(vg+sO%y0#sxAjkwtZ
zatZ^sptmRdMpUkL(|w-xg)Enar`7ISk9nXWoUA;k<t(W(1=+z+mFdg3_j)9cd(a#w
z7?S5;y-~hhujAJFsQJA+2W*d^>zA<=HD3Ae@L9k#X)rMj<nR>GM$aYEV*{oKAWe{g
zeCIqxJ|IJ%4|eaw?>$g<w~FDD#pj-H*AL&u{YXIr4%t7BaQW~f+$d854$l!0(eflO
zp8e?L`s4(@;m<nj*?)l&<^q&(kK#tkTs=Ysm(xZRvR1;Fm_eH~&=cwfY{b^CKG9Gq
z(565a=m-><E6(hq1{q5+$BU1=0!#igOo-)=Q}5E3`V7bZqsbGXEu@RG#r(beyTc7i
zr>>Jv4lIP@k$3wk(OjR}o%OMNhOTp8KrguYFn>l2s(G{>0PS=NF)oYjda~(bAt+~d
zmPo!rK*k;C1pC)UR`tp3hF(iG#SyH!0mwG(k)&%Sqzjv}Q)&fI)jv-#)%SVL7mW{k
z%n9kopw^ljro_)BNb;&!>EjKiN#iA;dn<^up|DIlUlM;OBzn1VBpT4BEySLyCdAL5
zG*vl5>aIg0mmXV66wc^Vo8Y*ySGRkE(tqrEB<p?0?NN<GhKJDU=Y$+Xvl22@4+$<|
zqL^Qr<PjdroD|OFX{Ke{z1^_1DVp}^IN2Vp2_17n#^S1`Y1YpNdiNram9_UyYo+&D
zJ(?e@5%rxcFjmuzmqIK@Mf!ANghid((@&7TvC%-}@pcc3luqsYu+=Gei|<^XN=Y(I
z^*g=zAzm_Y-wze&v#ytk)QYA7p7s?vdD#Ak7y4rkRY80Pp2wFp;w3=1NHFy%hQm_$
z%`J4sLoWOg8ofL>wD)V@J1+d38)*S#xsfkY!c^j)45~iwY?$tM);!d5!h2s?g6;^j
zB`yU^+GJS@>{Q;q7({9o#<aa%e|>)xOH`G~>8K6|AUr?~l4pNZUC2%BzE|mWaqCx(
zP^8h&?&&@^AbTCYd)D_JxUMkEV$f`8Zp-bS=*PdUS>~e_Smsj`c=Ogn%6^G1OyTzS
zS?EdiVrw5oa|w)3(w|gnco_;@eTGZ&d(gC;I)^{SorQ$JtcZiEHnt9|wt|>{RK{NM
zAuIviZ=?RUJ@8C+VrnNd2Ppzi)`8kU%5uEi(R5z(OENEBI-l3Ms#}i!wv(~gpx@?r
zMMpYtQpO?9LFIA&NPI9-LY#3Mms%Et`e=?73WoT(#E#5s0|uRNY~@E#q4QSk&!9qF
z5~~K{)1d+k*N{a*`C(lfIk@QiZlj;+AAMa9-q&}(IU1We0Z9NSt>_tS#**NozQbYa
z+nHuQD@vA1+Iz)qw&B9E?E3Z;k$~Y+QSQ&Z^a<RLh$>wYvV-rS95j3ao^QR`#7Wv;
zTl4ClzJbKDjZxufpNAm(5V;?+WYjj+Xy-8{y{=xlJ7*hJ`K<m0D@NPnlCbwT5rCu=
z*pm=w>oHht@;Cu@Alnj{)~p`sw01CJWz%!p!!UB<!S!VXhX3rmjah7`HbUOgW&Y0N
zN-^IEM~MKcs!ML4530OTW!!H^$K_*`>9U?;4g2Sc3+&!1+B5j-2;w9hktujjLQPrq
z6j$6{TKjX^FFqpKO}7O;E2%5=Ak%k08yQOvS5KBm0zzci^J40x7Q=MCJj}lrb-61Y
zp}_C9S=?rETYbD|U04!c8wx|H2fbo80~9@;*HPWdO1*we{#E9f-DOwrw#m{4SMfVO
z@j9ilcdiw{#L$80bMPv5eALZ{TloOt?u5-3|F>OMwr!r|g45vqeRK($b&gqreYdu#
z2CMynYSNik(mJfy^*r8cyb8FA!P<B+oO^1vdR%MP+j!&Y9t_KUX3gpvuzy_Q%!S8g
z`%V%}%m=w5VQD|MOL6OJ_{N~C26c6NO0>Chgtllp9l3EFiQWHE5N#m#0RgPNCs)u>
z4G?oUq^8ILBJHZaF_aA!=;&<Pef=xukZ#&JRsrNwz3(km%2CE;xM}2QB@8fy4;QWy
zu%#|KKWkniVje0Qp@b0EU6y<CC7&hmc8h8J$IxhiHXM)EZqBvbdYV5sT}~N;OgkdU
zPxp_mX$J3_2dly73jkT{lsI#2V<RY~lvS2Ci+p3YD5X0^WW@zkDgvlj+WKUz3ag;r
zrl_|=U-rzegfgWp!T+5de~e@7(gxIQgCTCfKhg;ecP)!3)K{WmqqZVT8l?3AM+Zlf
zW}D%#DBh^C1A>0F-BwcrUzdsarn=h6%KP|+de&w%=lBYH3n5d7gO@8`CvinHnV!fP
z#P8{D(`@+p4a7zdWIml0ZZDPMx7){HHEma{@O1$RcBJS`c%ufFWZcD`iZx=W%kp(l
z*YD|fHHwi$4}I@x>si0H1baal{?k{nO@1~4=+`rvUbyH7Y}9?Qj^GeY_1>O*GL0Q-
zq4Patnw~+K`jG=;kLS@LotaA1iEzCbGa)gD4Z3}Yqth_ixa>2?PBZO2TVo>en<Q);
zpVm*Wk81J!unCai%DLp;gQHDUJg<>yy0@mBljpp2+30H=x3uv+prC4IHk2KVg~yl7
z<O{&;A9LWnJ`eJm>Fxt!+ysFo+Zy{RNAK=&ErE@sw5NfX7z6j2Q!|3iRiZPN<S!47
zp0O^q*%tFt`?*vPm7ohnf;!Z#^p243gWRAJdY+}5#>;gn^U#<!J^C7ZuqjXa=casr
zbzpIt0tNd~A|PP>OvCsPdt$j1wlHW?b4T4ZquxH}Id<{TTuv44-h;)mTaIyVM~?G2
zZ6u~hgtpsFRy%4T+Ho%#9wL}<1=vuJniB^hr|<xQ$7HiD?;jlr9o~`JTub>-CxxL(
zZCkP#C&r5)Cy_=Fs9J`;rn<|-4?uG0`_AjFzb)ldFQmP`uO-4M+8S9EY;Q7Vs&!j7
z?{!i<D}uE^QnHReUGsxE??^9o=RU@0K56o?1H)(f8n~~0sT#<2{Cy*5sv$}NAdJp(
zaPcB^u+*SCiHl2gIY@HrHu)gu=IzADJk@7>?%rfw(mxqVxoD?vpN=q`K_2VFS93R%
z|A9#^lBD1?J9~az<1O?>!TH+z5O`25W2Ya0yBk*TBogTau8zX>2_4H4q&nbEmMQHI
zoL-PptgOyyc(36-)|^;zw7IgHlcn0CwC6O=39C~+j67yY;lB`W94>yjJC8B#Y+~g6
zb9!>2z883#f9b?l4OCpV#`-)xcQttzJ3Sp!;lv~jyz318+I2RnlC|GZ%J=rP83{Q9
zP3J!th*h8Yy-yvbRu|%@rXIju7eKNTI?ETr!^>o$QWC}XwGu7Mp{_5sVx8j>VBAAJ
zW$VLPdY{(pxUoFj=ERo@Gr>7<UVl}!$LXe8HMk=f)upc<E<x|E?#3UN`_}E*w&kj#
zU)VlbHI;Xog8p;DVnH}3GP^uKDYmb6Sj~J9$E`~MY9yGOQ?(jf1@dXP!G^Fa2|xqp
zfX|dF4ypZ8w9Hu^&7?0LT~fh0Rd25HwWJfYuzW`(9g)S(TdoBQ7yZ4XBYcL*iHP`R
z@b9SX4WAD~JMDkuEe3$R#bs{ro@pDSB@%<0XI{v=rT->xF#s2cS%PpgxaOYKnUDeh
zT1tx=ah!6nXSMAJyy-&QJP-~%^6)mQ#7U$DmKY<_v``gRW4{rtd8yj_yrt(c9;|&Y
z427Ge^2AMlwEs%oD9Y<{+_3WsW_VRMSZ#=^@71Sfqk@^#YNT?_apTz5Y~+zacklzY
zL~A7PyyrX%gm!t#wYNSfi3(tkpCnBYT3N2@3AED*e{+KeE=oZVTADh;km@#`EVKs4
zIGlA8%`raVu%5(DddB`tE`qytDsEh}ad53TB}A9XdOQi|XW(L$LlF~)vt_np)BlaY
zT+T8UFDWu*G3qPa7XO<4PX-elXqKAZ^nQU8`v01${zfc?6AAg^>N{`q!1+1?$RxLO
z0V)j22|YY6(tj+MEK1+R>AH9KyY-;rkpDmCtQF?_zwFyU#Q_>}FrP1&JN?S1)ftj`
zcWza^$4F>syZ(8iopmHz0=F8w`x671_H%N7uAf!zWw)UgH3$)l^S?i~^q@>&_sB-l
zs*$7lE_;Tw*rMXmhV^Jw7L`!d@XSSb0=Z&p9PoU_anF<rZ)EF77VzJL!9H%PCaRRA
z&)XwU>7sLKBnn=q2CkrRW{Z$HG6jLvl3*`RyR46`pd|=@0POhEMnUj2mVbKiD$wvo
zdA()i|9v(Kh=zBp=w*sA3EcZ+Q^4?3(YzmptGpn`I5{M(UmmKGJFWdbSAv)3Ixz{U
z^aq!PVSbFoXECy<sGw+#qe3iSrRz@AIv2xyU3%-7;M3PFkt<{wO?zjplzejEJg!;`
zVJI*ok*{&)?s!s&Y`wJqWPj(2h}q;Nk;wbuis9wKBu@<(Yf9QiKB+L8<VDy<*0p!j
z%=9W*pRu+a{<0@)hjvzV0rK8-wRq8v2dobIZPJN>_2-nKFxR8}!L$LM;*D?KwWo&=
zePZSn8ndy=@H7-J((%G)_S~*(r4#ipw`hM{kytv8+A^-qw(el1q*4)XO{Ln3oEr5u
z*w7L2+eIAv_x?Zfoi9b<eCOIfSIqz14TD-PrLwH+85VW(d|S<UjTj7oE5M+!|KwQ+
zcY1!0h+&VF)v{aYyB-pl#{}Q@nr0Ci&ykSUdWK_7NGYgVa;5p)IF;+b>*^d}X$RIJ
z5C-wgcc5!N5qBCcIiZLuwAh@iNEj>Kew<+ldiDWV!9Q10GfP{me=Vi%U@1-hxs=Xu
zUB~mxu_>`g6ZX5!%<VHu?hes_dtIG3Q2TBIbYgXXHO!b1M9pSQRN2Q!-&+LRHF)yu
zqLbXNX5!Ou@>YJO5r#T}n}~>CyMP&%ESO5a(?49km<Uk_A>_)GPm^rrr(gLz3}(+3
z*vAL`P9U0e^<Y@Xne)Z-32^^U8UJtM2K4yh_pO&)?;^2)g%ee&k>W+gyaO<j=1Nx#
zobSh1^2`zoAEbW`4e)iDMcFx3f~6Vx$;(YJih6Bb)7^IKxT+IsicCmRxC)Lr8>WkW
z%byh~_HLzH)B8C~xt0?$Ukt6BCcy+L6&r12NM+|YF5bM{yH`acTi}Wvc;jJ61yq2G
z+A*g+_DS!(Pz&$fC4IdDcj}_A1!7ru%s%!9=$AhJ6fb|<C)vK3hE?J4a2q30d2=c}
zhA_k)*b7E*DNt5<&Nhmf4HuPQRhLRs^sG#FlL_3)zLblrp$U+k@B7k5Xce|uj9DQ0
zNfMqRij}?1d%@&bja3|aB$0->-J8@jSZery|NV21_}jRpUM}Bsp^@*9poHw-+uHm&
zOX=%B<;f4=<*foyce6F`)g{b@T7B>!iLQdpolUK_F+nxe6r7}^EZx-kfk#yBB<Fsc
zD=03J_Ha#B*+WKxi2N59o0AOGOcFnww8`bioR9Y?9tJa;RfNN30&a(^5<rEkHuQ;J
zNxs|>JupX~DEm!5P%>2?ZP0P#HDhgXJtm#8R<CkHo5Y!4AAs2dhc^jF4m+OLSd$*_
zg)UTj4{j9KIQ_=RKZNfFTH`020aBXVYFN=dxvtk$eXy@q(F2ABq9E-^e0@XcEl-xg
zd+Msfypu<$S_%HG4VHNSI8}$#EW>B#`~w!?-*O6Wb6O+3;yB}}BfJMjmKw#dK=yg4
z_Fhf!7}h6YUaj?$#+D%Y!XEvlZ3lZ}X=mi`t<%e60T8`GDJ<pTq`w!O<jjNY|NYeM
zjyN(vB=JBtuqn$3yJzS)-gdDam)m)ZaCdrxTFteX#XY11yJy!v02puFpIRKjbMKnp
zDeE=`I|2vb<f+#6x^7Q+#P|g?bUd?}>?Lf;G5AHYzP6DMnSZ}wkNc9bqS>9;l7<~n
z3U=5WW5Ze{<pGzh-B6yfb|6ZAU`F_d>=FuBf@wQ)^Cdh7=M9SsU(7tV&u$+;fT<PX
z`<t$wImhxH$w{xFVE@!d(V+0=Y<hQm(4kSNZ1qC|$u1?^@#?ir9`7DQ5|ulq5kXT0
zcge-w@6z(V3Ff(Hq(O5-Sr|&={3fecg(vT`zs7KhGW#0cW!Bw$_e6mtDEU&yla6F>
z5eK84|8j?qS}mCqXoDo#QGrdhdy7Wi4J6Np<AsoX3;~x=$xpOGtC#MA&LA%LRD&0u
zC3&!N`lQTs;2m%urp-A<YN&$Y_pXq%W>Yo`Ae38;#ughn-Zi|BW^wmL9KQ$>2GIu$
z>QB-7da()_JrOY*;S4%cD&Og&?OnQo56peX>f^_6mKcq*>2oI}1DsFxaL3BrG5Fjs
z-^cTM=^^7~tK?9Nc^YYa^JUBzKCz2Tx~iPS&~NKwsF!B0b}$)!JB97Ud~(|VafZra
zsgn!DNJ?KyiSWW>B!>#p_gDL~q~!&kX5YqBQO;2pdt0-(LxtqGV%;_7c*_~j<g(1P
z*34?5dgI<LOT13)=n+M+FU2q7)Fb%Jm8&Tl6E|?k%ci{&Hf$nB2d-?e$h`#Y?np;-
zcbN<qyDDVU33nUeIB_C&g6npZ{ZM^0A8J&Biz`jRy1M(p{MEx`50=)e&4R~TnMR}x
zfr-@W#0jj_e3*Fb(NuiBD=f0;3KBT~=th2T6}scjER(It=lXI>D)gR|e&Ai1_9~*H
z#`6#*O@^e}O2>5(ms$>b59FGuu|WW93tXh*Vu>hC^_xHyn14Hl-I@$fFi@xTeUI|t
z#AxX=eI&hSA0H*X!|hObw~(Kd?l|E*_+?{?A%cjgDrEh2i}ZK%?<{W>>Lz0L;+v))
z!mTV}OAL?jBBB&F)!8zYgVz*gU8=rDd>bA~18#E5u-<zSU9Y>>wc3_3WI)ltnCFLp
zhXl`~++?y_$e?XHNitx&7Fe_;&4WbE{pb?c5%jF}3=$lFMS9w;kJTUZ4?4AtsFiYb
zCu%w(=qc*;?UAc-$QNM1^nvYgmr!+oy4+F9E#<i>a4Y!?`8llfe$<is9H;vnryRAm
z&4|c;@+yTAe}iFz{!18^AJyQ0f?<#O^<DtO-DHoGy}<e}A`frvcoD&>U15|bXJ-%m
z^|6S15<*+zuX8<O@b6#b;`bytZM5g!CCmXw4e|OFT40kMS87Z9`#x=l7=G&PsVZgr
z`1SVgF)7HM)NY_7sOIk#3mcX|-cv^rnySWe&Kfu`v3vd-1#9SCC34>Of8$`UMtLxf
zAHQP=5fF9T_MJi$Tiq-mRpNg7Nm~>XmHIX76Y}I&cjXX^d~RY11w36LdIF^NtF_M%
zl8!J1uV9qjM%z{&CnmcoARX5HBqQu+PD?x`ERf0Rx(XKMP^Vh6r4*(-ec|VJlL9*4
zky9ED{T8jN1xnO3mYjECm>poaD!MGWn{}ek6FRG?BX4`?I5HR-aQLq<JH7i9B20MH
zU0AW0zwCZUd1x{hd)%@Z5lU5s?ACeW=CCdP=GOkl8u8%ES6-hvrae^iHBh=WnO%!g
z-14f?83-rYiXJ)ykr5AmX#;`Zkb*?#DWc6CN0wz>pRr~Ppwwv;V;;=Gg~ZqDB+&_5
zELaf;9NsXS>O2*C=r2IXY=KxrMe2-mgtGNuX)wv2W9(v>7?#gDZ0yM+a+@!X<%ikb
zxTTkxfa%^{BrGk9a#dcA!wWgZt7tcRwJ2C-pMF5?yJkow#&ZIJ7j<_zmJh@P49;jV
z4SYmB0&lV?P|74btoFC(R-Ywl@oQ#|v_dM^T9e=1*LmUmH5s7gXK=J!a%=>7@Jw&w
zIPk6N2obMxeCjbT5iI27)M*K|gs5h{dJ7eA&YNvMhBIg&yQPGFo&uGeE450pE{Xw4
zgrO9@LGL)V&D~0pADZtp%!Fa*>Tp1U*IC!UjD|l;r6WQSA6gQGAs=zXS$0+7nDahV
zc96eDD()iM+q^J<qa0*(TZtSO>~XrozO!`$AzzNb`dn^DNWQE8xSRy|?bAy2jXzU#
z8u)#Hv9%;qyxQ~hTs&No@IC)fe+-hy8UhZh4RSYq1{*0chc}hj?h*5$qp>%=fm6{V
zJXlWiT&*i?DNDK{QnL;Wg{p-z4F>jm1O$>mT5VHAG#)}ojx7c%HBV}fGpU)deO&^D
zh=zYph4D!R@t4rl>9^`;Gl7^gT8!*M+D2IIWty_wV=i;)ony+r(OQ+;*+JK=Gcjk%
zjsTMTX}3Smeb8u3dyE7R2k&+0Pb9Zo+V*o1Q|y#BCQ-UjTw6!+O_u&tCyLBiRqhN8
zXOiA<SjFm7(MOX3P??jG^rR220}6eyrdcCl)2l`XrGFv02b)6brR&KhqpB5B%N>IH
zV|P<B-nH?<kzAdg^PyQnJY2MuE6So}`WMO!{9HZjp4w!G$*npK<)*{m$a1L@+FZp$
z?umEBh`UeDK}1R36K#_U&hyeGSiS&KnI(nN^vfGa@KAfc;%`Y%ug@2?=ju^1pqFP~
zBYd&2G0M36`sf~y4#>Zh1VAnbNFzO9o{|jUI4J2c9ouKfeO|qxUv3M^vQ+2grYylk
z9ADBd25s?ZY#)5b)pZz6w<q9rsNCmnZ3B9@g&D)vSO{PH0hX?YK8!M@Bjn^W_t4c?
ziHdL011dO<JCA>$#pC=z*Zh<7(`8;W_qGHc(+z(d+7m{e!#gMaL40)g&$3DEM!m2a
zd!nbkmdV*?AO~HaStI9!OCV4A+wd=X(MjkPb{Og<d*Y#6R(jjPgyiGE0Y#2|b3&(X
zCb!+t`M$}K*w+t+tR`P&D~jHeaI{8^cT%lJ0TS0`a{L64xN(+RM>p%?pe>2#UY3-t
z%Ow$OV*On+3=*z)c!&(Fdk(l$j{fNP4J^*g>UNBHS#KNKx8NVu#O?a$q~uKE64cB?
z^DmngXJxHvMH4u@eW>G$ausUuYR|eEcjcOyKQlfN&+V@7z@v|nI&V}r?jKD!p*U?6
zBcrdcsDjqIAEZLuj#7av{GL7k)#W`7BUZkLy!UyiwC2IRj?-BQeRuW7%4g@wNr%#!
zt+UB00o?~b%TDfq@1-Lr7rwnTvi=~beWXdt#-?z;xThx^l%e!^+n99%Ye$MWc$R;p
zXHL#H!uG2j*He+WKKaATKlU&D(TS3QAfP(naD;`}-@~wv1ocpnTC18>DNA0=vYK{t
zFetdFjR#%9oI-J7epS=~eKDFrA^ka&rVl=t-V)>g!S_A_k%-VolOCtHw}Zi8;$s(z
z=eE)=MuPfc&O{ePhpo@5q-0LiB(+kYE<cqT7guC2FTx%{Bw)3ouPwESdg(PABO9nA
znZWJ&w)?H0obv7rn{_;IvmULN-~$ysGD`PmeJnAcy$<Aq#Ns*82QgBGhll^g_P(b9
zZ0|7J2H`*0UZalBN`UPZ5dv&4xNG49Y;Sk$iN*+*R5Xima-%TxUP3@m3aU$V^m^MY
z8HpEX+8ri+T&Dr40phr&0uSD7Uoj)=Z3a{YuQHn6ZPfbLmU2<epBZT1&GpgOk-UiK
z6`Nh|>9CCunQ|w$+B@)=WtdNrke&a!VLcx@X**?g#gsBv7|(kYhX=F!f^d>0x;sbQ
zvu@-*m3x*fP{L7dKX*A-*uiCIkRf~%)lG}x#}l7A{ITiSO)qG64(WCZ-B#yB|DhuZ
zt3*6L8l0%=>j_dd7y?gH6}9;XCJamsp5*)k6XpmM_=yPvy$8UAod71xQGP-wvzC^x
zn@<w7U8zY+xe!)%`2j#skVrwUKe!lE0Ms#<mO*+X&4EL~ZCnVc%<Y}E+ZZm39yqU+
zKanv(@U13NF6~2m-_=5b^-8lMV$z-IOfB>&Y*04Fy<d%$hoVn@AzrA9;%Bp=3HtmO
zaw~le<~O`zL;j0S|B)#I@RY)zUFzxJ23nZ60Ah_wT~E19k_o^<nKH)6KY@mLxL6)X
z{d%m5Kc>vA+-vBjw}k(jJWW!O2IQTsi8FsUZ)e$eo17aKTb)^fBD>m^uAw1f&Azs>
zwESDg$d1{O5|(=R6A@JvnM8eE`G96HcQ*0*MW)1&)pd0ZMG!^<r`9wOz!FH|5BsHc
zNLR66_T&N@Bb^cJ+bbOZOiSQ}2@St<Ufb%U&d@?6%qxZ<_4_95+I1PYIU-8lweB2+
z0Q`n1lW#hZ%(l)OR!T({U*6x{6IYXjtdUjhJ^XluQ|TgC>Rm7;Z=+Huc>R9-K8P-8
zPAXTN3o9h6@1#O!di|5L4C6(4S@$%4GerIGWYr^U1UWgmyV%&mz(pkj&Ih|)U3$X#
z;IyaVug!*XpNYM@D_3*wbwBgq9R{zj%Pv-<?Vlf)25cJD<et4fBW<=X=)2;!{}>-#
zN;B1YK-?itQcm~6&n`8XgMs-G5rT$DMIVgMy-j__NIIrBAW0-ukYVUK=TFKEa|e-8
z2hjs3<@GPma7K6roKZpi=324N=GREN2j8<4sJ?kZ!Do`+#2&{6yu;U*e^SeWn(&fi
z&<kenTV(NP!9;Fz+;k(hJ}<Q2r%F|9_2t!IJPt*c(_qvfXiuP{V|(&34y4)GJ$o}n
zEKU{#G0WQeAofKu*F=u4+{19;jKnJyt==*fI2#6HlAC5Ke#2ITy4V(Z_+~5SFXVLG
z%AH&o@<u2plVi$5w9zqXi8g8FjbrHDLK#q;iDitv*rYab_BO|gK>E>Ht|20Pyyjk~
zQR74hBwc~Tye@*kJrA42+$bFs=;2}VxR`yoAM|byy0r|0teX}I<hK8j5x&0#_~-lV
z)#=n2gv{^p82TPIqpDTD0=_}%Sq6+B?;<B&J@Qi)zK`?y+E$P+<rc}XNDb9<o>%sb
zHis2CiIW$3VzR{ldZ;_z;Ax(CKS=WZ<tcziG!qJ16xOEv%$Hdx0D|0mW8njsNga-?
zA|l5Ox?=<7Q=cZa;Jtr@hOi>=EG161-IwCk8M&_OS;u#HLty{gh5*Cm9G>!dIW7K}
z?3a-an5^T6pdfc%q=cRH9CMBW!9nvsCnz>-!^e%Y^lOCQIZeS2AWT#Hg9+s{J~qf=
zWNF3yWtf8T`|F?o{Yd}YO8?uJ{y&Yl{$XM0#qxG<ej!gW`64VWrQfyxq)xsP;rHSG
zHwqK}zg*zCz!*McJb%3I6|f2==6?NX26z&o?o8?6ym$~YZ9}S+qe@Aj&4B!x7m0f0
zH>~=%AD>!)S&qU9b>{T<SuTtf*eyX=$EDq~98q`maAvsh3134^$d9g0Ab8u=Pa#&5
z86Ij13Mo`}vhVJ8mwq@p{BAyMGFgoV$Ahx9awrYIhLO465Ze4XV|z$mgN4ZKHgf*;
zEnGye!HOj+!+t7P1aE*Dj#bbX<zEx<&rkaFEtqVj-UeGK8EOebZ(uo_?3)4BxaU)s
z_?vY^x#nQ^{i!v^)A@Zmf4xV}LQ@Rh+KG@l0Ru+0zIsBX#}VH~T5tD(D*Y-%2mje!
zky~|QlQoXl@qnMsHL^lBhX)s+94}=FY+s*mCYVb-QAl^-GAaWgCe8Q=q!gLgW#<*h
zijvY@?(XvoKy{d3k_PY{(Wl4S@68mw+w=HwAH&eMf>OUbJAPv4DnHx9%~@&w_VJeR
zrAdl?+o9FucIz|M>(?1jR-&AtP*w`a8K3Nuq4oIvWgkI1idQFmRpn6c!3V;;S0+di
ze?%>RAOMZ>K|Sas6YAs#Y=F-MeG|2uJDCvkuxD->N-oOoP3l&_!!1ut7EK8%_DhS5
zjY1`|)T&}z*_8vdJ*qG)$Dm@#E=9wrgZ10%4G0L|A_Wx{@4_p_F5S;h^I1+>4saG}
z+QuStA{o*VPGD_rnndt;%O>VkY#`^p>B;TL9mng~UW_er3oUU=i${Z)W&4h=D;3uS
zz7H$$=d*;kgN5F$ZVzzc=wm^P;oeTimBNz)1yij<eI(?SM~UWByXns_J?htq6K?2g
zAEpP-^GI+kALskelZJ&MGS*W)vefK=7u1y%3o(9QegsMRLHBHtcpOc5q#WSPNdAFe
z^?|r~Xf+7HY`qU5wKmIXjNprN*A9!_q%7NHl6ukCmeYN&C4TojWe^JXX}2(om~Fl?
zszVL3CJx*ZR93!2++#5Gi4Z@a`2fy9p)J2hA?pK$=@%%;jm7~Cch1p5+lQ024=BcW
zhw|<fWYIwUWWONXoG{bTa+;{V$9zKJV>#|DTR~hqN2^hiE^X3Si80sNgmlAj3T5Gp
z9J8&-g(p4cK0?)G9_9r6BByqrnuyCSf?lUi&%g(>N6-hC1gn>8+eJgv8#?XD#E;Yt
z-LT}*h+9VORv!MskNK1qA!-^Yh&Mk6OuHFRU;Y^&Jc9x{1#c2=gDW5I+$io0S4t`N
z0-F~rs^?^Rfc?;`3G^vjAMJQtoX<{b^>&I`jKTw-AGjasxUUR{wM2l#5VPTOG+f%1
zc*Zu18|$Q)$cS}Uvl0YnvxsV+q}PXKLkLH2B&nl2&M*$1%SV5t`Wu;isDrS{?UV%a
zE50Grjg%lcT1<x&8+J$zTTdkJ?ASY8oT6o`CK1|xZ9kSz?B?-t(0Sy)%UI{NwzVs0
zc67W3eQbb&M$D~g1U72?>YP@PSKY2{R%(MMmp1ihdLHP5u4-j598x+qhv|fzNQl_4
zuPq(<CcZc4!~qAFXyo!gw|*0F8jL66gAg&u(oosrP2}+6TP#C@R?2Rn)Jw-L$0kZu
zY(E%fhn_$F^fkJ51by(+SNE&l>NhGYK&CBVZsv9xo=d)9kT`^Q06a$uMP_Q$N=!l3
zufMrkspE<D6t7d~$zoNtHlS(eAz`wQ@e!7GJaF3~86?J@^B+J;m{j6t!d4M2Pj;?g
ze;2ueoZ*HS9*F0TQ@j3WMDz9@wGutHHbYHV${%iB@7xBvL4>>r%(<KDLCO4oOt_5j
zneJY<mp3l>GPO$ysfI`e_YYk2E!YV(sRCXzr!gP8Ru}I!OA}Pk$2$2<I&nGLhDu}#
zU+&YNIc^>w=_G%Ikgs08@y>kO?GQnoX1rDr#IY@R{Jlnz(Otd$^QEp<OR=TD&TS$A
zuh;#?Pi2H$Vf`W)d<Nr2r1y7>`8CS}z!bN*rbG=;O#mMc(d~odP%60lkzG^F%9Krd
z9YGnqj4<?|QGd`c2>%K78u87Wi||z34)f_+cL?B^o^jbP+2qhxZ&W%maj<CBc*S+c
zqor(&7Rv!g*jn^ug8TQM>CVo=;f?lB1KP(X)@QoHP#ah|$=Y1X`psf+JF>-)lfOm>
zGB&3+P*cxdulEpd1I0eATp<Va(z<RIE%KFsM4PAW*`Z~%$KvftsB4h?yXku;s0$h3
z#>lm^d&?snb3Uo<)4N4P>uqPP`Opxj<?Pja%Z>*Ls<H}twV4&;3HmvqaTnFCaAbKO
zUNRWj9d?x%zOc&JKAAuESbmXu{NRLh@vb-O!ne5bOl>e_5^>o@FbCCp0xEL(aJu`l
zH^I?<h>3rF$$~Y4BzNT=ha#K9K1q3+xyKMweNMIOnR7n3KzUjQtfu?$UEcG+vV^w0
zoVjSM42!w@64bkdk1_k>c$`<jwLDlY&1O#o{D*ri9g1IJ%1}v<{O*3^vmgRWLkj~#
zwnKwNz;GidT=5JRwUecUYLpn*bz6RyF#boJXJy!hiplvY%wexx%fHz0Y1{`ZF}|=f
zAXUmo-gbM4Pn=;%W!<}ZWr2s6Tt%WyE8X-ubl?LYWW~r}zwG$+X3j!7ljS>LNLduL
z)~#75we1(1%7#SG6Z_y1?<ktJas>TEK(aNvpF#xYk!^bn7g{hbI}Nwr=Sj~cN@-2o
z&*%VvrY_(WIv-wN_1Jf-trRKnIyiWKTe~t~OLPirE@yBs&0Zo~rK0?fS`{Fg4JGNP
zJ?7cg4jN&R7)4&kyHx6r8wIuRV$>+MKOuHG*g8O9%e;C&anRSMVDf#fY)_q9rn+?1
z<hb{X;>G`A@4SPe&e}FTW&{a}fMfv)l3Ie~pr9Z*=QM!Ok|k#l6&oa(NRk9ZGDuDh
zC{a>3IX6gba%wVkv!``@-wE%2yIcFuw^ds;HRU)|(=@+x&U2pUzOOr*eSkN=15k{$
zPJ(2gFWl_>>i8*~dJ#CWLWKqMd8OvVFlVd+_G>KBs-rcY(nWVxL)jTJ6)CvXmt&B<
zQPN!*jOfnvEMJXc6)_L5NHEu6Q`x90tUsV!m45u?R@<tO-!NH@LAsbptw)4)04C`(
zUz8)N+G=*n(o*`G3NRN7>}FF?cKL5D3K~`foH42MyT2OK0S2ReM3U8^E@hwXJ)`3p
zRgnpd$^!LR1l|Lkr(Q?5I$mZJ0}dQf?ZYDZfou{b6A!xZ(QyJIqD&AQ+8Z+&=$TDB
z$psXqX@$@LB`}2j1V$5?E><1-rknQq*Hn&Hh(_yX)Wk4*lX496T3fH>v;1p>`r$U@
z9kCu_M@;o}Re>i`UC9EmQj|N>r5yXvo9_h)S#>pm^Lg<;0n}8C-E150eC`0w=h{2v
zmaPcv91-GW1j_0IiVDrb{OI7N&PUVHjl`DF);XGi6qhg2{8oxSOKm4TGZ~Do!-YaC
z2=R6j$Z98*wRoNW-frD@s$~fzk5S#z-PNf04sB{B!0MHST}op=(NkG1HeQN@xP`-F
zf-x4EkTp;788v&IjdB$5Jv*D~olI?QII-bYeZGHZ8a**H<K~**;E$44MM{l@>xNC{
zU8HzFs2V60DD@PC7ug>V&Vh6V)s*>-1gHIP8dqtmO>pJ2)tL45*DNo3PjYnTR60J|
z;cd_Ifxm3en8?CWl(CxlUd>3P@UmDd)CoN|!>-!>DwTy}y5XEbFvzFW?8?mT(-W|e
zm@7t)7uLtgX*D|?JJlUcWZ5Q5RLxDkFT!@sK(GevP^VUCQeu+Brq@2Ivv47X42PMV
zJlb8)^gkj|2Z4XH>mm%86o)}UM7?W-Tv=6`<+%F&?w-Kmn1am_#Bl*;-MCr4^|+v<
zR=aA2_uv4b3ZhGa$8GvdD=mmF<u)i*-<)n<?2%{8xF1H@b9-~_1$p2-qaus@J}Z2!
z^?Lel6_%|eH#KL_>L<tKShz-Xg!K13y~5;uuihQYua>Qmp_5lqw+v3B(NRKUWp<gW
z(MTT<8_9N(tSJu6*XN08fce_ntv}2G%adI6_&`7L5E97apve6V=)Y+wxO6*9h0XPt
znw0b>Drx?H;W$eOYLC+ytPX>XU>`!1RAi3`%NrMHr$3PM$<;NrFgNwPxrD11^c`Y-
zUphtS9B1U}Q|_j_wCBbk=70NTHByp^bcABM>kvy<dwVbIfZwIot?p8(G`HN!Lxj2l
z$S$ojK=2E$kT#eG68X+!@(0DWyHvEqqCq6=;Yy>Rr_u99sj{BRaIcN=zRj-*VxMAw
zw<S{+Mw;8@6`OBV_JMQ)d~Y+547ae*sb^O7iv>_L!+V5}Hf2=VSATginZs;kPGlWe
zv5l~Yh72V&u8mH#i*r(g6XE-*egm9?R+>Zj7*lcQtsAwHEA;pgWLbx~0q87lrhSij
z_B}V8Y_Tf=^Q^O#6lFJ<z5bZQ=@P?mN_#AilK<hZtH@BI^PLmnY-rTlyva7^>F<Y+
z8{|pSBw?3M93E4%sa%scmO?i{OaS1O-YzK-6GbcV-cZnK9&RM@dBC!@`Evxl>+=tr
zwWKZ84(8uJoa(Q&gTjtMlIaUF`G6bGvo=`+;)Q+s#Q_FJ1C}Rt$P^~=zU+}KyIPXV
zXZoS@M8Z_Oap>tXHK=s|SN3wT1)rdmd|<GQRYer>ZCM9iM^WYA)}s#8L$uPHJ#Ed5
zl_+mQjNsk;VJL5T>N0UN4)HoeA78WWRq0o{1%~uaMQo9bN-DI%#hp;kx^7VhL(1;3
zr0R9gnjb6q6UsdjBX&qS6d^73yYqX@1%jLjzo?;XlMb@MJpJMaK7_ih?!2qJ=q{sx
zOjAhhlKRJy$v{~Ou6MCV!(%E{iUkdW6SY2?^>u}!iJ3xf;XiHI*k3kmOeAE~WI%(b
zwrX;qYJwLO&A#Fg7`Le+Xi-u+>FlS|U@oXHou!<~Hz?}AKRZW?9id9BrB87O+>_?O
zGioO?A)CsK+1WzVtbzJ`s(zn!)9yKA9P^i}TZnnzMdBJg+`^G!^Pcp9XcvF&UcUNe
zdx#FNxYB&*bk&(@OJ!(Ke6ihak|Kga+ktCevG+H*ZGebw>79No_w@2;S#HPX_wT>o
z{7w5pA_jD|O$bc(vKw29%^P35)4MnPShaeodAbqI8EBKSiG`LEyxakk0|h2yaIUX|
zV3pnKulxsg@9b6lD$5bAEer?vr7NO+-92HE$tzxFCz%*cR}jPc4OqNy1B>@^H<6%2
z$GK`>>G_T>*!>n>3fJ!C0avXFyv19}#ROQqH`l_p8-y=No)=h;X3z4-&LcrPi26hr
zs+Liji#{wJ_Nwv-@F~myA*^oS6b{`~!aaE~HfujZSQ(8f6!~Hfj46%Fd<!B7W?m(g
zJB-~uW|qrH2|Nr+CYzAyv_Vezmpb=ZAG(dYSqj%TB_0f*Uu5Pd)p+#S`5)0jBuCQK
zYpct$zX~8L=?nUAt<4kG`yI~>kyUS`u%E#x28?V)Z`pf3_p09CI43%;^md*n;t(SR
zGFbIG0Y}0EWU#jW%wUb?q-Ob*!72?hSjp?T=V1uWft&+Dikq5oAm7k};6`QuzrmKS
zccPhM(NHFWevAkbbPgo2qH0dk6l5emnHp{=5e5`3(-p+jN{6S27`zAiucYV1yUfj|
zLnQQ4GH=-eWyYnoX)rhr+kt6=G8=B-guFCrY*6e*O?*wF|8oOr1@OBm2NO}fnK&cl
zI6BR2>syQD+Ft6Yjd1m9rdtZFsG2Mxdp!oLADrYGj$5Y<u&Lnisw1$A4lU{Un9jJR
zhtWyN$yTneHLm=<K=wq7eQ62g4QKI-LcmeH+Y(uDq(lXU3Qag(81+vT$uq5ql#8TU
zy(N`viBMu7s&-$z=LDbU@Y6T|N3gy8kY8&1Y*>cy-nrQHBO-|ALiuX(0|^FPp)G|)
zl%Qv`Ul*jC3Sz(+RYc~svz76V*Tk^O0f$`kOZAlyjO{{H7aW-k?OW<lIgOg2MGDhT
z;$(ZB=?{{voyw_$D`r8WgCULqlR<`b479%6)oaD|DBtU1mw!lKo)c7kPLX0x?4)&i
zsFC?0Tc%B4{i_aijeB&xz}$;P=^yjB>cbKf1mSBiibd0-RtuJ(rarFq3CKNb6xB>g
z1%^M&Ii}E9p`&>+vOculRcD$sVR$}o#I>KdDvxbmV0R0*x>piDNsib{tKWu#TcL;F
zV4J9rQBLZ9#r=y@k}Lg-eNCpUT{bq~Alju5E@OBd@N3!xD?hZKXBjZG=~-aQVS=eC
z*wvgXt}(85%LW;;4wA<kjsJF%|AEoJ>^^ldUXLE!VuV+(AZJC2h<AOcu3o*-Xah(C
zktAWHZqeO^0ocRd7h<uoQ&Uq-rkneW>?Dn-938GI#7R*_t)%bnx2VU!24m?pw%nin
z*6N!P{mwL0r~Y^=49*rC)EvaB_>OGqD@JJ@2fpcR)3YPXRf@N5`(K%!9q^Fh0eb;Q
zZzah;PFza-UXUwUTMz;E0u+`ZGl98(8T@M@6BSEekicW2xMai<b#>UJo;C?Om=e1n
zg%6R<@ZM)y!f5j@>D;EWQb^ETjZp&WZ{mBnR0AVKPpNyLR^=a7a=k9UQcOSbA6D`j
z)+ONErsowB)9H}iVMMBu-b2-mKaP=68^4wCdfDkV_dQfDnu5tzOPr3Vp7Op~p0v{C
zq4b5seIU?q;~+%Lf|x;SyY9-W&FR;&Z2=tc7-xOL=(=N{^D4N9IpZsnd+t6O&lAfO
z0Wac{DP)hY$;i4V`hdut(%%2DO}>eV`3gT4*Q)C?)f_v=in=_VUA*|cF?oZMm+&>4
z!M4y+($w^n^{eW$o6mMqS>$LSj?-I}P3)UtFJ9`T2qMrFQqZlBo7<1F-?ZSc(-|)B
zyzUs8K8NXqGCmL@H@y_i9(TF%g?c8*>VUarn@o`hef2f}ndW54tdoRDhVzqTsV;i?
z23*LIGAt=oDnmU-BEP$sGvl<N_q3O7fA>Ic3a|JUv(U*5m4J#-snDS_xFp;Bei9%f
z7(eoLs~;&PZ2Aau>PLX=Y~itvk6x*FO?f^DkbMD5Nw33Rxc0PpzUzJWei36<Uw8&8
z!0R6Tx%5p_31`DHp9l~jdnn#G@hP#&Wh+OPusxymzT5JvyY|D2u<8SmSd}57hia<}
z@Otf}mB+e5E4*iR>K@NGOi(jG^c2>tdu|~uJ>CdoBG(QYR1Yl0hx(3WMy3LO2F0>_
zI+l&;lhE;ZlFb-gJP}QgJZPYrN!7TRz~!;#X%;R$zvMN#R^94dgN4Z|3)xJx$4%CF
ztZ~2_YNvi#$QhX*WBqS7_4TAwg&*H-$t|pJ%jK1ksKV5rFmP$zEieF)ToD)`xL83}
zi!2vgI+BZHA|pM7W1Hb?i&#ggAw+dyD^v|VXGY2UCNSMONiJe`a?9c2&c5t>q|}LK
zLCF_8>=K2heM2Cr=gJ{`T-v&H|F>+b?F$cZgW$SdE-tk^-TD1l;6e0@T1<ic8C=wf
zoOR&}ceU<fp`@=(-2Rx6_YM>}TT+J|ZGM*8?gY)Y9Pb_obc;Y%qdjW^(MySw?xnFw
zI14FHVBU2*-gmCz(#g@@o_(vP*^_oZf_r7oF@x;VWQ`|scnEOb4_*fq&D2vMTtT$@
z<!Y%KkceAiKU&)MM<OmWGjm8I(q;Np<?ZKq7kj*bJYmcM3xb4Rtny)x288n7&q&-9
zsoFn9;!<9BohF5hmWDF4b{+WDk}xF~UTl>5$GT_3ulo`c$%1HM8F(Uf8si(|TGte7
z$C?KzC(f@OFFGeHuB;-s>t?W`z0%59yZKbrIal>1m{wLE30UhAR+W=#@{e{I(F321
zllM0i+F!95p55>I^q59M`fyoYYB<kW_5H|<2FuBztX?*1yS7EB@RF@|$oY^!PG=L*
zC<FCa0ZY!&lYraNtb=oiKH;n>`I?BC2~ZkveFMEQ4y{kuoQ&;X)fVdH=$ed1s>OYo
zK>BR^w0Q-!r3wjHe|rE3pKs756;BqmGDYCq?=D>VF0Ez;&tlHL&^WPW{?%y5&^<$R
zS7_gE0~xb3xrtU?>XkH{UC1Vjs!~nhAK6OH&4C#P>|sd-9UE>`QJeX?Ttks0)wIEn
z-`HSYl(mN&zh~4gG^~pw3@MDtzfx~(z$8%&-&-SS=c)VUW4As^SCh&ptV_PB_9GOx
z{zoWotfbjv3sQqZ_;%WBhlP#TFN75WY+51f7D^xxSEGcoWhz=p_PJ-nY4Dj0ufnV?
ztx3->>+(=dS!~6T*3_<XU)%i12m*19ADKX2NdgNyPSgE|g}p|ZWbd3nF-yp2i<L$A
zOxQs~4)EuC`<UsQL`ixZ!@WXziJV1z>t?8)Nuc4|if)z4B%u=@HDqJ8+>un(EwZss
zeX1G}*tM|DR%2qdF;wgfTo?=OUm#t`^u}04Pak3}>zqVgWiD>697pytee3<94lI#g
zrV$3&Rg-!i^Yrwqj=W*ssJ<hVUqOMpSvYe3Xe^1er1LZ%<yg_4t?F3$`UfCYZ`*+;
z2vaZ?*FuK6Cgw$s1z<t*vr$+B%J2>$JD~_#X${BGgPJ=d7;C@5=J<}^K@ipCdTvax
zI-odcZ-&p6*)>>VOZXU;GnJDc?4)Ev>4wU{W%r-UEwaw?SC%iYi5OKMU9pg$p!S+t
zJU^@ZVsA5R6o!OyZd0Fvn)>FsCJ^QOF{FB<l`-&J9tEd18AEP|SPGluQV~>ARZSWz
zh`*n*k`m48hqQ)DuHAmr{e>y2z{go+R4Y?eVa(Wxa>!tF>e5Q8)9UB~S|7pWPEUw#
zBqrGOBcS^9_wMoaCt$!u^(A6iVPFN&O5F8Bb~`3=w|kt>3#D)Osw_l%yT2HEXOCDG
znA;5;*v6B|z{{gudY~ps*-E|1^-h|#p*^V#UeI8f_(%6ou0bAZ4dGPQdBkjHksR=S
zdNM#JT7jwt60ZA1u(c8_UC|6_HJ`Tj6Ga)*StbQP<R;6~s}ORI>jT<M^BF2~YbWN!
zlzPFF!!R3u<$K2Hqoue^h^e+{|1)!^gU8pTNQN5QR#??Xgdt{E8O{lZzA6TMiyK1_
z>GW+%QtPhrfofo(M@Q0U8H)l7J!fHvnhdxgS=&1rSBx^f+vs$v&%F57;_!^GIJaRQ
zht(A`8fe%1`!CnFX4_<=LdckOna)R><AJl{9Y2)0_43lsO>a4oL<exosW02dO5%vG
z9hYA!6VdVVo-J3;uG$dGf^*yJ*YpAh{npkNmXEP_MO3=YWQA`lzS_MLMhrM@*lv5}
zAtK?D-<$dZ01Bll0A2vPyqO+u6J|L-vm0aErs{r|^Ei81H(WBw(~r+gKe}U0N^PCU
zT{2*?m1!oBj0uZ4##W3vR6T^Gt)}2T^uBf7w;2p|8^V(QIJ`K29bT=*$$!i+x&~bJ
zq3bTdsy?d(Ec7_Mh5kol2pagqDd-9<5m;Y%<mqbAxtu()KJV(D4@MBXZl;kc*R6L6
zS{Red98ik72`55cX?|8!I8fqewAxQ>wBoplZsPjBj;!tHg$WFScw$;ni)-$WhIDlX
ztZa5ik!cE)YD=nOf7GG&$!gfCbz@iW6~wyOsFFM*pbXI`;gAWnI$8Se#FPWr{h272
zx6-yY0F);-`x(T}bEnPRDwP0f!&h%=g0$h~!F(<$LhgmcVBI`@CM5a{aKn~dt#gjA
zT1m`1>o2y{Ji|R?Fp&Oae>hrpwIycQj)4e(10-wQmnn^OQ&wSQNa!Q;YkwcDoqi8y
zZl_T2H9b}E6@F!q3eyi7xec=g)JTd{xs2jC($=bE@W>;B2@1=|X0qMpw@h-jCxprr
ztca{X4mdT3xJ>MC-ojp`F{dju6eQ<aqh;yWy0AtN^(6QLwm|46Q?OUpd!f{eGsdzO
zF6K1Cb_(pxRGHvvDIyK4@h;zSg>#boY8g>(aakc&797;*)j~4x4}APPGNh5zihpo@
z@BDV($~t|+be3J#TvL?PC+bN*^lLJwjW4(+rWOz&dtqQLIem-A_*N{ix?~Gw48M`Q
zUd-ME78J`uZ}yqm-KCCMI^O3<%brgp;?B`uQI^psdW~eSaXZkgW5scltBw?|8ZHyP
z(EZhTZ#B?f6J}w;OJK^;IOTjEgbu@zj?xclITyXATFN`0URFCyh3sclXJ-^p0kU0>
zcVKq4SBF7Tp=CVX8qxeic{20nkv{KMDon5r;D=zg>%K1s1IU0Yh%+?rnc<SP2Zkz4
zZ~+*I9aj1RYUGbi-cfDTWKYDY;^Z?d#w9vUQn^H)YuBDa?{I6GTJYd)Hh&ldxbqKx
zxbvNpgBFX^!Df$_f>*7N#Crl+YZdpryV{y3##?L%-x(2u)Uc2x2+djM7-hz2xKo@S
z<pxqETppo)Yzb;Jz9ThEV2qz=bNVQ&eI+_kn&ZgAXS)*V;l@fo^P&KkZs|8DSuX$;
z2enc%zE+B?6952-15bse{_JefTr7J3kn~*%6dBWMNp#b0mw_smsqa)BgV~U1_N$U(
ziA>OrN5JNG2lI^<zkhw^QVU2xyr)I!cldozm2%&s6aV4$Cl>><sqQ9c$-mF~2`+(Y
z?>RZ~(Sl${riqubLkqzvYV9uA18bXh7MarOw~pifcUW{2Gg3~fnM(>6blxO?Tc&CF
zN^dkT0m6{$*LB|0NM4>%U|Cr*;XH9%k%9Lxu`l-B=9@4h{6jKpCQ|?-QhPEt5kbQ9
zRs2m3nG+^vGJ8m=P^>>n*3~5h(WIDM=cO@MiUCoA+y>=|=P&sfy-$$ZAqR?vPyDOJ
z+GaJr)0dItr>>fP-W4ETJU)1&!BHQsn$*6-l<WExz}0zVqm+~PQ<dTdmxr9Xkwi~z
z23Ht~YY^yMhuts2eha^sEq?CDgHK_!CxoO=GCFhx5u-JB;?7y*YHvjoOLQKXaruVH
z#B_g8?U}MO_&kh`j-@Le!Pg-kW|cRMCJ5#HzRE`{@ZdWJ{gG=&Vaqc-(B_6U{;F}R
z&bG+w4KGVFLDOuWDA#2Kg<kakn#={-gDmH;eh!pwo~z@pIrVZl8k?ON#XWI!`35z~
zQc0An@xnq(3@L@K_^s8Y%IyYdmqS_@U6UkiJd<YNkvLZnk(XnTS(m5kS6?LZR`k*b
z@L>A!&|^mm07plpu!F?42bJRfcyPefUY-?H{wNPUtIvi$F7-xWiKIYUK;>^`a+)u2
z6*&%e{^e^aRhOzoN_a}hAP=Wbb83v=_G3fOxUG$Q=V;ZxHilrDW(1uOq%J0VfgY`l
z^gr(Ot^s<9tH(*pVFxHj-)tZ6nujgYC&wiclHfw!|54$sz6vm5M*%VkFK9n%!2oV&
z_LV2Vzq#$M7*s|5!4431GOc>(<m~4+R=xm@x9R<u3hH%{;qSyCzPGX+Xh4~zs;jsq
zk?yObI=mpfd53=pgg3j?PAetCQkEqSX5VU8KAzeywvz^>yT`{{1b>f&XnP8F*0!|x
znZkz_AVBoV-pD%DLJ801CMHMGqTix|y~N%CBJnXj)xv-QjP7M|rISI9p<qd4U6fu@
zDv&TxAH7K<bFy0y@~MM58Ni-0D>vnjRa_z!VR=EE3Zi*wca*+S;4A6k5${`_LY=8$
zh84DV8R2^c{Hvd5Ur9y0FME|Y?W<sqzF#XkK00moEW46`b=hGW@)?;-Oin70&bYrt
zH5<!o@+o(y;4)01%5Ux^flBe+7Z-Jg_64>*e`Yt^4I6kY;!dybyJiX&`E3@;p(M((
z4~bLuT0arLV-1_BU9)%UomE>{j-PBty=4neXN#Z_d#JGs-|2iLw2LK`?j0s&|7M~@
zc}}Y+ZDQw?I97cCMwI&O|ELIXtp(_S(wlE@I*gX`HjDUdU%Txzpt}~O5|a6&2&mR>
z>7f6k2(ZN$0WIG2*jBAm4M6b|G09s8$N@`ua=?(8pWHx-Pw%*!3u>h~MDivEMmPU+
zQ1nMV0LTG<xvlCARsZ{$T|wr6J2#m3x{A6vTN_z3P0WVQWNS1&x-7)#s#@<bstl>U
zLLVtqP~Vq?#5^==txU~5S)fUA?^=JEUX1RVtO6HM`qhl3xz(+gAY}Sc53{$A@dR3*
zPB;+fcQ76-AnsdS!<O8}ZCt57su0adQ3R{zHZW$1*l^7P-R1bGb3VkhVp6d0XF$X_
z$OZlcKm^~8=TG$Ga%Eavw4anaqzCrpN>nfHfSlmofn2?e5ucqUfFju0JIj<@UqRM>
z;qQ+r4g^U^oY=>ng+z<Xz$K?DvU|c=itX12k@Au`vmarM#W<fHlPE9U(-L)eBDYDk
z9#>q^W`@%6aD#brWMaL_Kr3!hJ?2ARwvBaEYnJAeG6<PIFW@<LZix$oOlxV9PdiL*
zvb+1&W#-{Srjds)94D()lBy-0LN;Gq@(Zi>T(&5%ewycdIDMa@9r4V({HqzY9?04x
z@Dy`C*0&uMIqdLtCq@YP&H9#lwP{v$#LB>LYDuRrn)$I7Vsz{4`j>;zI(!nQps%4E
z<Gr2bndPvo8-vE28HsTi?E#^!bDIaQfgf9yq~~Ah;Q=eAj^PQn6nq+{`o>Bf71pC@
zs53LL7f7zu6F2}eH;9lJ`<A=ZB%UWRPEFlR7)C`a<UhE;qB}vmvMY<(nZIx%!*VZh
zW;?x7p6gxI#dHS*)nqmO*APc3gw?>#=@Bh)v2}>fPYglF>|?WAfB3Bt;=mS$H`JtL
z?ll)Oh1q=TzPwco(x!D7N~ns5pL^M^d=_8NvRk4djh3uY`eW<$mvHbL(6w(wNMz-n
zxGjx7^H>{Y%@uUnS6}MJiMsBDySrw|Oe})x*5YA>bb|EL(5^wyt<*p}N<Ng#2R-#4
z`i7sD2tKg{{i6R|?+&t(;R}S(HWH}G3~<aCvzL%X)lNBk8Rp(fI2N{T<wfD!{8yUC
zo?Xza;7z(p>7ewpSg`Zcb+>rnG4FY9WNora4DG2?F+8uyTOy7W)<(e%im#~$C(L0|
z0uF7clfKx8)ph`pcfVJ_?-UIlKiV%|+X8U_28|zhcCm%;fV&;R`YZIThc`eQ7+1Np
z@Rb!S9S4lo`c{nRf!U<w;X?Y-tD@PN#3(J0qMfCiANL9cSJSJdgqU(Crx;tj)vj`}
z@;TmYovW5UxxkbxT|v@*{vVG$2nLWiaY#7J6AwZcQg5dpn$dp(vciWW#TiNpPD8|L
zyP#Q2ur*CS-OT!h)({es%=I=xvxRvJbM}(&kkR1~D^1PzRr;gCale4RV$p>%pK~8W
z)|#3h98T@IlB7ZfKB*|ImvJcaaLqECqG#!nb=Q8d4W_$%ZTrlr!AxeXjduH}C)W+L
zCe42`8Ost{yO!O=T)(Tcm8H_oRM1nW=-AGA_9dci?U|aD(@+7bzi1ib^0v|0<xwo)
zW45gdKyjZ6Bz<U7m5%BU&eskL99n%4n;cTY9|~Iw-z`amzj+vh=w+(%w8yi+2nIag
z*I^xF0NWtyNHe6uX)?feELFfvj?Iysq}eiBguBCH^GR&uC+qfip#W_V2+#&&yGf5G
zac7#$Bm%Jqf}Ca(0BwN29oSs&VnFb(pllE9x7X?0_RDdx815#^yUDKA9;;$SRN^EZ
z0PNVd6-E%<36b}n>@1YZ#0vrFg<|k>qEpXcy)Pz(+WmEMwPU>TN!bgqrL+#cyfgq5
zY*WdNWnVG)eQ&M)(LuY8o9sKMjVBcVz^c6DW@#gTD=i^PBkM%h?MLN<I8qt_Ppwts
z8b6RDc7DTGK1DwppntSo@(fF2CcH2_-UeK!$m+X~y#sDV_ymS)l!7%^jV3Yy9ni;r
z?SO(cgN5!UrYwN#ERD{g%b}o8b&D4010C};l+=y{emHhWC)o!e&0Oh}gCnQu$%~2m
z!l-dZsOWRsnMv2AW_iA)bb{O?b$m$_iNO6JY2`R=_9Ecv>8LI%zCvFgFajAU1Jysc
zEf~b!>0~@Au?2gEJLpo1xF&VVNK816XPv5LX&N$6N&d3GUdhK885=m`!hkdK2;I1v
z!midSuLC!e@8xq`Sdy-8fr1gowB6piaT2B`a#wSwxa6UlC!NC`R+7y3Y7!u<as~v<
z<539H^&>jPTMwbTbWqmh88n&QU>+a5qljnsee0B6Qr{<)goWWEOBZ3HLt6rT-Zvit
zpZCpU(2LLe_W5((H~+?)b1!^%S5g5vH{`*E;B0W%%r{;vCt)&un%WZlHxt2~>mPua
zkxIR5(cfwupZ5)F`N5@{bhkOgnHdZ2Z?u~1A!6^MF3&czfg#ALWX^FXSfS<^ayLgM
zc5d;annsw~UN`7K8b@wM_T<0pQ7TJoe&m_<9Qrxi*Rspb>I-l)<9x10d$ad*`X(No
z7v#M6tVue$p`l@p>U-max1Q827c0ZN9q$ZbodWIGK(WYH5)AtB(#?ALEb_Gw%!b}v
zA$&XmSXk~=;du!g-R6f%fR`Y_xwC#G=Ds%mx;Ima-E))ZOO-S-GfFBst(dI->`H$s
zJ<w5dwDa>1>x+6Ep9TCEHK{CZYm!ix0AaiG@rO}<8H!SAByFrPG`C)Pc##?vqg6NE
zyz*+8gAHpFVD?KmjMahkiApt3mUWt^!G}9biW(^+x^kQRQ;ReMJRt15E-F(w15)?i
zJh2yu0DR<z+o-PI^Gsjs4JFTfPGH9x%pJMgoyqU0U-QNV-JT(&Aep5ru5WBm=txh!
z7SourLXlRllRI>6+~7l%ccWo6N`I-?@>*$?#cq4kCtJc8mG^>a4d;k@DK4M4$|TDM
zLCDIm+|Kx&{4g@-<EFOlF3(BY1F=#&F4Ob3Kgu+az@CUc-XQbeZo3N7z9B&}0r6^g
z?|MhLy6wpdb?&*N&PPPpeU5GCw@Ut?m8sTO?jZi?*}e}B<eIl^LO!WQU-E(>0<xZw
z#)iuF+2gRJ(;E_;*rMD0URAsEw1paL<9yiNR2V}VUZ)jwe4yh|)ej;JupsSNmes-j
z?2`Z2)jIPTHj7j5ywa`0^H-`$91;den)pAesR5|^2kv+iS(W8D&;I5W1XX)vWJcr>
z04D6v-WGVNm42w@f|#1T+^UxN!CM+~9RL%^>qVUUKS)V3!Hs7-s2<YwN}3H*lSasl
z825PBFJB9+6cZawT3x`42l2Rs_5J~XOQ=uf44tgSlk^&4QQcr(34)BX*O&c6WI1Cg
zFdx@G=1P~u#vAU?Tyym-%h8#2vM0Ig2_n*`E*>b&TpJ3ye_|r${^3L?ms7e_edlKf
z_h0^QdA%R*Zt32#QgNxV_*ifF?`rE`i2`p2sF5t3d^)C$Yd!7yU=TqsuAWQT6|DEE
zw|FTkI{SL8#8461xo#48kET2W1G7Df8$pMvvq2b@m=x?~tcIh_Rb4e~@b%_>N%l0c
zY*|PoB(Vi9tynr$LKr%jQQ#~)<dyY9ytsTQu7^G@$gN%RV5WSPe-&xjX;D*YUrZ&w
zYYkOh9x9A|Dml>_cyc}zDoNL}gGdqw@DA!}^&&(zNVVBAxb9mjkcmCo3qzkB3pa_9
z*di#}kCMa`5k#Rcy8@TuwP;Qq#be?%4#xqFLSSLkdhj5`S(I|h8GB&3Lj6j1%Z0<F
zV5ZiWk5K}B1zGf7(8eM$_7xX!DFCJTPmkfBJW8kWk*7g@G3B<?1!Pf>2GjZZ)jAo=
z!538oTjz=Hn#wbMGjg33tKGmT7<`hR<W^bKlDwCK4G5ANyTXKwz0efMJx!|%VJzdy
zZ9S7*oEsw@EZ0q|I%P4yXSx<p!8wpn`EQ;=7<K03fAJKCp{CjYfv146am=qEn>eUj
zGHw56M>1u;a+QldSY$29+^NF^xwoQn++5;1O%<ypl|0M5z=vM$sih^R=~i2#xqW!%
z&}PC9V_xORD&pEU+Z?%6wj>6B>^9UC+0FC9OZ@^PdYRXx?&*ZLXKCZJKt$u|vQWlI
z3WzUdn|h(HvCnQma5+KI>l&NmVbUybf#nMkbhyXgK3{HPARAX1XRmaM(}E#TkAM`s
zvu4^jWoPx$&22Zt$BxJn6Q_y;bKJ)^ExLPdMI+Nx;+D-F35Upj*S3a4`3MHt6`dP(
zP5!_4?mKT~REict4w=TFLD%c=ghDoznr^;j*Qj>0vC>6hL0UPlw*8EfvAd;4b2ubZ
z{2@N8{7<Ww&++)4EcXft1DBenUvi{(tDnC(CU_(g<qnMGM4R>RH&qgwr((Y&{<nAv
z^YH&APhp*&a<e5yf5Qdm_q@>@>Qwi$D&F}?C%L`;*mCKSr^#N8EV{SU9O_pt04Wh!
z$<Q+`$vYRQ?Y1+jV|$pFu5X5=&jx_qhr8-+(~^P9$Q(a-Y2yfD|M&%&7?1!{PS<W*
zsKKI;o$k8Jz$o#G$;N<tG3=w=k8wyO(&Hqu@4&O5;J`%BcX2_93S#=sLZT#2d4$KX
zlw<S%^BVrAyoSvo97s@qJMhdMfdTG~klL(Gs?QFi?k)tm?P%v@p!w9meCjc+*k|pz
zVA(28&@H0Y0Zr)JNPTv2H9!00%hyu-1H~wN7mmUd>p)07<vh9jMiJ+4Fmh2}A!Yb?
z$reQHy>F3M_@6_hkM$rk;L@ZeeU$h~<)oqgV~3PAtsdynH#j8-^$k0d8;`2dLyN9d
zXqa4<i**po{3;7mf?W2?0{~ePQ|nIek#u9m%jLI)ocICvt1#OV3ue;yuhlsBx_&H?
z4A7V?b7iM4*Y$?EA=1k|kE`Cc1c-cnLt0{qe07}m?PXEnAyaHb<DIVKU2&?SQ}uaH
zgCC2oQoXOew<TJ)0Q1;?9N!5U_ZmxTnxGZES1t+~!S<t7^?qLsz_^6JdoAo0YsVuX
zX?3)umUay1tB6<Y<y((i-K?&_1eef@j{#muK<GE~Vd=wJt=Q>}WAR6K0&n&+NV#0)
zAuxS3yT}P&CZXs5HoQCFH`V3!=xY1?%O6r*Qax}YaS3{~g1Q*i(U>}+A0p+1JFO#O
z*~aj8!XFy9&tXBW5_gqF7d>f3MAgX}V4g3qxPm;s;y;x}7CSj+JOQ+Qy-Kydnn#f)
z;i4&luHiuKn4E3YnxXh(Ew22$q4t2a*tqz}6SY^P1S_s;90PJ$xSw%|N6nsJ&s-z#
zZOV;Fhc3fXzI(OYG%3R93kRMzU<M~PYslik<2{)Tr1V8Kdp^_D;|ytW;joIt)o|qM
zXn7A}WISakPoJ~47PI~m7*{m#5~<PSJ!0SS)xivMFk|ed4jyzcnR&ta4uwl!0Zp6L
z&h_dO!~oC%IzpPq5N{;m_wU_%@RiQj-%^9xw~~m2B*t{tTVkm<BW#nd!;fdzqIF^=
zk=!@Za@{j3?C5tuP3e7>*xq<rf^u3EXj4ggKs(&zp6?2Elx$t`Lex25&S+kf_aNLk
zO~@q1W2w1ic!nO9U3P_YYtxNc47Sx73+xdS(T@N`@}6uI(Vva#cxT|9H*9zhucMTI
z@Sa>qW&uOObv1fn$jBK}8G?<@A?0s78@U?VYbf=ZH^HtSGaOhrX~*<0+Mgz-5srnp
zi74Ny-%!bFBF$F=h%abk14pjc#(QBk1`9q)=?@WHMPzR!r;9?EEnC8S`x<S`(ZvL=
zSAc7S4);u!u(+%84X?PfNh5-f#GuXGNYu@uJkQ|%wHS%3HyA`RmE(I^N;+pd<LiTy
zO5TaOvT<@Zg>8oJOH@CJjjsYB@LN+bt#&d2U31}D!POocTzhM}qW;6(U0m_4IlY?G
z*t!j_Vai~Iyn}``4u;j~qp8_8t*ZezIGw!cY%TjVn;DV{$Isw%_I6|^P6#(lk6ztn
z6yPLTZgZWq;e$|dze)ja@3l?1V>!C38geM$D=x;q1|boSXOZ{d)c*Wo=x4b#<M49^
z=ya&)hhDJX+b@XLZ{?Gcf4k={y&Y46*c?%1bfuh*ZyYOm9DPz0ax?W!;b_O$W_Q&D
zxNg;8YFw*U?8o9K{Rd1vmMq<QG0Eb>hu)XNIt?p4w!3YlV6``kJ>j5K($d}JewNbn
zxkAk8O5lwq^G63}^PTbcAHr4)*VzGAqTT7g6IbHSZ{#6LU?M&sH}Hl!2v8=&9%Il}
z`5o_W0<o^{C4$oc)c`~(X})P!{^4Evj`uD-p2d0J1uO?00oHG0I8Qf`;r4U<XTyJ6
zN7M#p?Rj3v7>;a2%p(%ti(Fj~PS{(}zo&fdLi6-YWR!ZQt#?0L%qhhu_bFuW#SNvm
zMt0DU&~!%uTL$HavioH}uat0LnQSm}5&4%<@On3XhQGj*2w!exI07nAWpjK0{qEXu
zo&S*+3-!Ku*`55@Y0#->4r2Yg#^%WrcD#}Qx$bZ1ftyW4zblu{7Ao~y&Y!Bt(J%j9
zj?g=uJ3}e@ajMoh=QVzBmG9H{dvLWrN?%QYBk-YD@7qjOa#)N;sBFWFWBwG8CW0$J
zzQLWX8&3|Hz01XIiGTH;0Ok|t>jU;f!zx?iV8=0DVu>;MO)K(L5mD#3_Lc~mUf`>E
zJGM`H_BbBz&kTP4yt^ww7<^nu5ZL(Ke;*9RdxB${VtubT#><&yVr6zc(3Ai=C<EQu
zQ-RkXfB$ldkeE24jANwODqYNd=|)wQ@R>5xBBB1k3jjb7MHcz@jqEo9eS8A>OGW;1
z(5*X)VEFHWrf6j(_+GaG)4f9-_hqpUx{#!ij)zaj+yS#aSyYWjDp2t0GoX_ekVR=<
zgU+(yL+%SqxQ;N-E|78nIoY&jSLZuPUk^e;!nD)O)iRpOL579<qo-xy`vg<J+|T%p
z{O3PUD1g!{FY895Ke*yF$_;7H1<AhXnP&BQ?!`nzr5-xnEEs*s`pxN6+bJKr6*(+r
z$iMi%?ry@)_&nNsZgb(W>NNz;gQB#izKo!Kh7>?I_GP&~T&gDcAid0dQ5-B(YcN!e
zxA~p^?+SoBUrfONsZ!$nf&uLH@5C#OOZVmEdQmkRh6S&{=B@aeIhfMu)*C@QI3vPC
z<|cUz9-J|^3em%ZGnD=c&Ir8z<fwts@RU{e{ok+#R0_i&6zLY;x2X(FrhiS(2LHJR
z5~PtPnx~RUW#GR#{jUA51^uV1-M_m?UwH6uH27ltzyIpj*CpcV1ZQtlIm(2@8XGa}
z{GF=w*97tZ|Azi=KA{J<m?m}wPI|{tC%vD@PkOVtPI|F{<2=k;tY?D;R@K@%-f`+)
zXX1s~{rl<u*JJ+YKRhwR|N0>b=Ys$4bUanh{_466JSglWb-i5H8;z_zB_k2&NdJ!b
zA5ZVECjkFUTu%j$L9F^mXZn9g3b;>8QB9YfOr6RXKXm$CgXqgBI53_>yyW~l8s*P#
z5HJ_;>CaKGr~X4q{oOB_G7?@5N@D((0Q{~`m*eKIrTo{I__e-&z*xk~KmSBN|7j@%
zDSv^=z*nKT3^oCVv-~wra%h1hXCN`_(trJevG`N#3Z3fTvoV7ns)84k@M=^tlq3Rg
zZNQX+=f8d>C;aN6E%;3M>!kYi?t<{I1ZS7_zthT#rCm5a{V4z_GnBQ`nE$z!|NJ*X
z;02*)7*zj}$Ncce&+501$~-!`VOgw@w^T<ty(%3D13u>0+U;m1`3%fQC5z|k#()0}
z{smYOG<yf{gzaw6V)^?|w!r>ffXQ^tbA1`Y!+jY3r0_W)Cin)bh&YG@G^VbUy|hZ3
z+If2Yo9l<C#Q*j8Xu{Xm78So0kpBH+QFsfwO$sHbQV>K&1`#@y?E01ITNs<mNlKv2
zW<i+S;-G(f?CsmPeV8v~JeX4E@^&%<=F!3Yu{+sXnQ5bCwwf<4QNIx;>u31&IDc`v
z_}w#XQiz!FuahcA{K?3p{Ou>T>esIY|51Ox2cAs!>uv5@v1IFan&@e2M+eSKxLTF;
zd>6ZW)p>@Ywn8i%C*t36%H4%(7Q2N$=d*Yud;Tp2wnGC*6~i6!$cX8s-UJ-DzrM%!
z@Viletr6AlV6!G5`$44w6U3^1Hl>)(eq2@gJK+0_wbT`N8!0NLCpdb;k}}7o+Y|bh
zJ!0PSvL`xn6}6_-5~`m%I~=$oC>~HToC<UOi_G%+CLSWP@9^Zx-?xN2nt)wms%d|l
z@!bgM+@14c3?VCBjud_ILFY95gK{>VVy*a!&{=ObX2yI8m6@1iq211vO%4!T)rTi~
zghBRFRT3&5T!rlV1Rd`A)9c^4K5`}G<;yhfY|V?vc!f##d2k*tgl<J!I&|oCP-%f~
zvZZ7J$wG1Z%DGW~(JfJ0N;#yU{Zj8ct{Cn#z+bOkX^kAdcmsw@_cd-_j~PCC8_7~V
z*5Md`oG;<A{0#HwA1vg0lPu&fPv(z<X5$5TJ|@(OzPQ3Ers=~&K9UZ;=ow94ySS0q
z)6DuUVKnEKl^Qyk>ISq%!NIrljn?*Nj(}VdRN{o=HiVQZ`P99<OF!6E2ArO?6KD#b
zow<qmM*Ryx4`qM<V-BdD^H9O?)_Uucjg{u)bRqlk2cGM4Z60uUt`@tcb}J@rU{b6Y
z1=H>d-k7rjtin=z>yvobouYgsLq<nz;WZwB0SjtKkG``eU3X1yv!*$HZBE15tTa~s
z+~f8Yr#WX%2BAOysBrLmN{;>h_#bA_8?N9~X2p<v$XU-OLl*p|W}?TFf7UyKu}j9R
zf+wx`>^8qw>p359UFAokR@iopj0OS~JI8HQ;A*OwETz_q?Zs@9F(Gg(^KGCjA<lbt
z=Q`Ow4#tS5SU%Jd$~Th*bU)JPwxaz(jp`)}us@S1f{K$8_qhoTWS+rDVpTx#n9M-;
z0NYA6!x>Pqun5)F_3JU!9dh<esgG_&xv(()X|K354tCG51k%W-|Jbed@#V^UrQ)&W
z0<!h?qzl_Eg_-c(Csb6!cy$COk=$)@7tpm|#4=_8Q{J_)pz15$>x_n;8-yklei*2V
zikkEro#%;{`bX1D!AkWY@Du*2q<*hoVJkY<mCza~S}&m&`vpW*)j$83s@@h#`rL~~
zEc|Wgoh9iub7Obgx*N5NPOEcHa|*o?VGaK-n4d7>_k$>!Gxz_VH5qgR><920{rYv>
zIUpj!6r<K#{A?&ZO+rtImbifY-raaj>LUr05wB^s2qP-hng++3#Olgc7Hy_LpIB_Q
z$MF%Qr%ma#+sRjH?Hf=r#pqsvow4SGJ&t3bp^KB`u~IqtTwpO$j`{xej99?&*$m{X
z<fmKn888N)Z{=Ng_`f6lD(x>{rdntp$OV|V%Zdp?`9=#)6L5u0)s)o!Y)w22=B5e_
z@?4&<<M;<6Du||bza$}HyOIGvG-jyIcaIlU>HOAZzH>^~z-`2N*}~Df+5;<=BuOhb
zQeu@3gaAJDh}-=9ZyFjJ0iH+s9am=UM$g1<Bgh_DcaZLHmjCgA((lFU=<URmMDsZ9
z9+0PuRXFv{ap^70cNx9Y>@@g=htT5baD`u<K4%MZoMWYT7#-cjXZ&Qsb7ScHB9f|G
zbn4z!U?ORow>iR4lNZ6_U)xWwkzn{5&H{{V&T%bFzYdO|dpF1^DDLYu3$Un;Gzmm%
zPm8Kw{|F{}-9Vhf;l9-0fC(fiOc`5vc#0`m_5J5_e?Lju@N<i{%>0?WY@ohjp<>D2
zMe|K*<x+OuAy1(AI4vqcb$rZn_A%2@VfX$HdT}<ohQzAll^84PrO)*};Gs6TJh3Ck
zE1^23I`LubWQ3dho~txm|NV<|jG3&yyggmt7VI|9jp?<i;5oR;HkMQaNmYKa6GWm4
zb|l6gBEk>6ifJeEI7})p-=DN6%;dmF+6%kV&~Vx7x)I*4IqFn-UpXyEe>M3x9aHb8
z`-MY&2Maqs&M;H#(sKM&_~Xl{P&iAIUUs$;I#Rn3B&Qa;bdBz`zca2oXtBc!b9fjn
zup2XKrRpHlo&%q0uO+dugjzmltA0XVwVWQ6*_|_BH&>>e>}J!~13I?ZhgxbmCWf&f
zS|by821d}M755CKOfAq0E}2)H9vPbWbyA_JhPmg5i(J`PQ8g+0A9kC_qqIQCZ<c!p
zbg?yMzBkHsUZcO3V}y-fTtZ&5+Vd^j{`k<OU)V0A$nSBp9<);S1Os^*Nd=}gasu@S
zs>5;e6^<zWt&O50#&A4wkou^fFl=7xz>Ox~s6Gfld(u2QtX?++F9tK9?o}D;m)Ep+
zLTu1oq@VCeT?-bFKc}7QCpubXSHa!))Y~;{+cGLgi#`TqC|)b8x=cx_`WB3DdFoHr
zG==N*M#~-V0}^oz34@rjKwYBhTzgCre0t>bt@pblRHgo{DQ@%Y^$`-CnX@cW>PH?9
zS>AnYF;Df9u&<i0;dk*7*ZJPoG}A=Nb0^&Q-^!&nDH2Yp3e*xzbt<7}!vY?`qFfL9
z%Xx#M=*2zOAZCws?cI3E!=iE;lf+-Uj2oBxom(Aa6cEapVSP!Jo+^93=j}=ECy(ap
zS-yAZ;xiXWdvGWA(G+`b@vV%R&=d!`+-ACY)kmXu96ZH$UK0CQ>@o7jqMS`zD|7aT
zv8c3_jb21$j_U+pY};CO<m5%MF{Rdh%L)lJQeM6O)U$}m>f@uMj>SH@01PqU0n5l%
zbWFyKpFckGoefFduD8|UNw{|bs?<3AFUHY#ic<k~C0Y`)AicME|I6l!V{u6kL60X)
z`fT^e+W?Q2o60dyW2kgmzJ3w2<nFK~$&f`4Dw1CO<AaD4Su93v8zUDT`cEPP>Yy*`
z7YpD&&=KUgpK9H-YJb=N;qDnFU(TpVpQ8NwW&uiG#z5}v|M&0+$|Q#cnKRFX-IW3D
z+eQsW!l;|D$!qk7N>r(Co@cBZsN+m_g&q5!NWI@k-A>-RchJt;>U|;XXkuw-Xe$nt
zL>n;n0J7)Z*xTtTP@k5glh^T4wfjFq5vtvf{sKi{4tejsB%atv`|QGQ=9X25W=b8F
z4sjbw*L|Y0G?HH9O@)PDkCRH=c>U}VlBqF}*7$`2dCTQkr0Ay70z<7&t06o3c%~)%
z6J=L|=sG2-{m!s6pS@)(9n&Mf^=CznM%VZs{pP+tI>IC^J)X?e^qTP^ldWI2%)yr6
zU#JMx{}mNs`0_r8XR&Kt!;dGcK;#2{smKG-lg(VtfUUsbT+^myw#|%O5d)NuKTId_
zTpM5vumP+=Slz*zZ<Ss1oBO@4Sz-k-L8EIP%NhG35b~OnVQRE{WbR9FdhpoGgN0%_
zq2Ufj`A6bksaCC^$2~g9zaR)tym$8|)td?D=A=LteZiYtvMSHQ<o?2SI}-Hf3ljwI
z`Jyxbx+K`0KCX#ucD>Nl8izP7VD(OVO&~C&?a1J{UYTw9cU+oROzFe6EAEPUN|c*G
zw>&WC1#s3^f6F<8H~?yB)uY{2Em(wA;|t=Og(07(65R&Enqi<lEi7>)YSs!j(La{d
ztMPEa6r44JkwLzy&&d4wPKW<9nL4PNh_dFl>-duiHx*}<W#u7aKE*Ts*c60PSMY~5
zCU$w{q31(Yg|d+DQXZ;>HEbM2n30mYM!WNFp&nAj`-I4;=J1=lgABa62GUD3Nw<Bi
z6Rwy1VKk#yEU{v4;kK>lfZ_AGS3MRpbE5}~wJ{)e{+D{ctTVIfN9=r{J&Lngf8N#L
z@xWS@5OcV!$7s33h0QRR=m6Z}1s@r&3;da2$kWrJlCaok(-(o_HjMi#l7JbOnS7kG
zT{rYS9y*SXo%eJNHj~0_*%6pjKE9g_G%pto%l$HpJpsTujMVH^BkH!zL~oY#x@8b;
zV6)#+zs&`RjbAu9(aLZbAjk2Y?gTfY%S4AFXK8#bW}2qSC|_r3=g#+Oe|%s*3fNRk
zuM!X29<~|HIR}iG0R>8bm8I_#>*o*Ky%m7TCa4h7+J6QG1gdh!7DJ-OJYkwGYKh!k
z#pqhqhV#CAmW6g;@un)gm1bIF<c#nRyjo_vnKvp34j7PnQowCc9e(~2gRTA)Y^*Cm
z=u<;5k;1wHt+0dh<+5MbhZa$|1<CE!vGH|-kZ-Gv6BWCJLi0y#YRTgbAk(xxQIs4S
zs~|5uTR5L9rK1(^=3Djnt1%3hsoFn4>b{|2<zni?wb5e^=vWzHC9X+sj=qfsRE!1k
zdsL<$yB)@?qW5u!W&@l}rYmbNH>DqLYT{XY5-knA10AuN)oul;)m=<bQGv<z6%>E^
zMzYWMFLygOM-+j8&J;JeR=vbZ+pt*Qv?2{AjHnsT^rEAhV26ckdhVU##*|5IYwKsh
z%_M14Ue8;<yTWaR(2&bi1~dHCX0Spa%O&IG`2b2TMyV@Ujh@m)vu{|W=Q3v?lqMc$
zRMast!tifk9Gv~L+oI--H>HvH{uFFZfI48J!E`lI3#9RKnAQ0)FEx<!7m9&m)NzzG
zxy{*vc4dc`gX4jO=Qm|gkEAzFpD|(G&NZvAD@{erS$TPh6zNIeT0@a`13A&g=#$~G
ziDXINS@}vRB9RZi3hKW${@MIUpUsjSvw(y9rf)mGOn<q;s)&#0%J4kl(kplXd1?*u
z|7rgh4U}Oc*u3&asNf%EVh|qu^~FZX==P>|NJY)$jGGn+l6TWOi!D7WZY%>*a0P$6
z+1ICQmOaxkorjn!D707UNroV)^gaLN_WQLt^J&~RS~)0}Y^@Ma^n|paU5DuV@--(y
zs^s0y(Aw#pocJh@<m$UCqR7O=VAqO!lF2kRjm>gk9Fv8c8CeX<8jGbxXfA}(S_`;f
z^IrsK`R>4(?>X4QET@Lj7Q%L*H>Z8BCXt^A(T9@U{~8bEeK#$^pi%hwc@QKo`$v%c
z+>pSdEq1Lr>yx^|zOWxb@@00yJ3duWKZ4}-$@msl&9?;qPZ0n`-R27+uV1J~1&4P~
zLIfkl3qQBM0T=+c;V!gtvS2a;k52D!y;;bEw5BtoTg(!9ipO_~<2Nj_B%~v*2|X8c
ze^f|9t3>&-Y`MF6fflm6au+-4wtZ{=1wnL;ZI_`pqF^<!l3-{5+~&LNzR)AG%r^2?
zt@IZKrdYR;*HlFZj4*Gz(X_IjD7={b%+VfsT3aVcOlH8YXg1ZT-xq_B)(N(e+*gY0
zFNK_j%FC20hX5q8zvARK+0Vmp19E)qiTnGa(lOGgkk}1&wUn4$-F#D)`-<>Q5WaE~
zT9DY{-mj=WA;Ftw1WxkRZLnUo<NJGQgQCQS;M@I?K>r%uh}XaBbu`U4?s35mtxr8p
z9<MUV5e3Xk*>EW9jVLmiRkki8>OEh*%W1V{lfraoeYqXYoxBy}I;or~@fV?^G}C!G
z#XMZPUE*GIrS1I8;yNX2CI{u+YD`tLEEd4N;0URii9&2`T%azj!+mO6;cgNr3CvSI
zR|Uk(Y8RlGozFih`}pP*eNY6gaPQ_!&uey&J$GMC>fi<i4-Lkd*SE^3%7qmLto4<5
z#>yS$<nOmcp6H4oQ)OZI77kZ<nZ*&sHhpZe578?sY9lX0LazVJhaV(M6Ur5YBIpjB
zF9tS^fG<BO@nqQ0xN1fh$h1Ad^njS)W$#^_BKa$lmru5tpAJ*JX1jm)D%riOm+e11
zxo&df$yJ-vAT?*gcb)7oaDuL6giB$~5zYG}H;2DOpu`DUS5o7-g58zO<Q1E5h7^8|
zm131sP7*8olW9NT)Kl{MM+244mabIw??5&*ku}}fU&r&WPW01AaHqRl@o_@s8!eOR
zpkO)dMywMmy=WQHM{0-YBW6Nqh1R0tn>~$FSlu<3G(|6zamNS0VRwI=u=hwFc=m6{
zkg~6*huR^sRN@&Aw+s~DHn5#OcAvYs#E07T;1C{!ypC=u4{TVdw?|spiuu$Obp@}L
zVKntN)mW3c_V|dFia)8yiAzHYtDEAS#C#%b{cD>a0g*tf>5~}V!vvsM*llS(KXPOk
zzeVxUVb{9lbWPk9UunC^O=8*4Us8qoJ}D?MdaUw#-h{v@A{ay)RA<TF@}PE-aUb#{
z3j;!SV@Qc6IJL9cx{4~k)?2H(ik=YD3TrHT2)#}RP4W3dY{(QZV|9*qmf!gPqz%x~
zx(F2PfCTz3qq1oKk@WtYIia4UVk_KNkDg=EcSdmk6;7<Eoe&QhgMrlYP;7BnMJfGT
zUhzne+7aC0*!lw6tfl=|0=)?<$?DPA{>9=&tmovXiU}{&!eA~k^M!C5$dS}KQ9HWk
z5P5F*rG5=gNp7dX`*MT0xuazQkuDOSLEri@BWynGF`sB>mt!pbIg8{(JX3>YR4XWI
z24_14oEwFZ+vm9wqlwMtg1*RiMM%mfN(Tn<5*G0RyFTOleTLl@qw<X~I*S^|Rl}T`
z&Lh(Or)+9Tyd6a-(ykQ7@ez#>s=Vd3FmHw7C|uLfLHe?kQ*v0rQO?Mx1Gp>t+-cOF
zPEv~aytlX3AXf73o{zWd37;#7wl@RQKfgi&B(c@6=E5l?L7Z$`F+o%<5|Db^+X!HJ
z5#izQc2ZMQ`>WmUGNmFZxZ5qw4Yjr3ZR@s9tdfLf5dkgtYZIktPF9I<D$j8hpMFcE
zPa-f0-2<>1Re$~Ktuhj-E6#=1UGF{o-MYdWdl*Dr?v2iSmsBDs7}r4Fd<=JyWUI@i
zY&&5QMn^CekgdG+ule<__VZmZ6oFqiHU1y0eRV*TTi5TgK_nC@DM1Bk3CW>Lx}{sX
zq#Hz9N+qScyBn2~9J(0<grQ*=I`5uyj(+d)y!ZR(-v1sI^@+9jT6?Wu$YmRg2IYje
z3RUvg=w_E(^2&&l0-~^qgy1Y-4xPwx2NtQE7R-<fHBuRs59YFqj!>9QBi5DA=`?e1
z71Kv^kTR^?+w`~m@o{l)a-&u3vhr)l93w@kA=GQRQo&`sfES`650|4L3*0A04x1uh
zhq7RFsmZ@=nnJee%Nj~;_!n87h6fPJ?K7y9KR(}GJY<pf%SW1Qtzu7^TdoC~0>b=+
z2$pWgUxayh2}Z<QI?)&Ea(*r!*X1&vR)yTEFrLo0Jm??K7qzEV_<BrHutv8KNtk@6
z&bocbdqW64;@k>?Ns8~uS6b70b^gZFB$r`M!;U+O4zZ8KvD~!$&}{MUDgNa-F9}N<
z*4&#jpB7#rQo2k{mlMM<Cq;SA7xVJPq%n)%W{POUr+tp2bL)_t^C`gKsILIV{E6Mg
z@n<Hp1@cHEJoiwKGz}H|3b3ynK-h>YPJCO+jqrn9-N@FKGdeQu<Zkep^LNht6{Pro
z1u3F0&|72y=SPd&S?dmrXjp5K&WQD{(`;fde7@T##OQ^SeM4O@EL)lIwK#=NX>kM7
zvXSuvU3f(CX`?G+{Z@f-Lb8_)a|+bwpw2KkmcwXv4%eYDcJwsjlkX^E<=(>TvSsq4
z?q3Iit-EUV4m6~mKl)&Rxo+ey>KI8S^D*J<o}%wfOyx-Je%OYZNT<FjImAV8yn~p6
zf<nx63fSQW$6iHp?yHyT`OKsc$Fp0lDIRqgE|=NcJy{uMX7ak(YX1`XjX}q0Nxp&k
z31A|;6_tfRfzVjT$f(IaFkraDaOZ#8pntV&1>`}amMJ%O{Jd)wjJ6{VhNtXDyay%J
zpD#zBDL1^hX>VU><c)^#!l7&w6AH~4DhsK}>or*)p~8bk##|gf)rdk~WHzyJ?G_GR
zNc%Xj!F^5BlFe(MK&~#YH)~jZ<o9>kUmwj%^Gy;q*wtGbv3U{LPK=_i*YXEWyOj;n
zX+;G$<(-ov2(sjCwyor<P9Gia-LiU4^`s35nYwEllt?8~$&tu`K8sRz(k{rF0Uc-D
z{f{VgBCNH8ghT5Rdih5h8Y0#>EIRJfD%O@xMHxsPy!n=l17cgI)UjuIZ)@7-qhT!$
zEJB!XtrT~faK?)6wB=nuki&Y%i{qHuhSPknGbh(PyXt{2ki&h8m-*R*NFr8~uASJK
zFU-9R<LbQFlL3-1y?0cdfbxf2zp(C(f}vtv&Q<cN6vM4N(xma&2LL5EdePjw7zyo)
z%vp)XFA9A&ZQD1j5Y$OVEE!ein%MW@5f8(uiC`gBul^LNzsr~Ut>(B`B0G;He(o*g
zvg>R0anDi9@yKn4=Gv0Avl(V+PeS?DHu}r)p0)GN4?cg#(FUiS<*#qpCZqS&4_(nT
z2I6XG4jMY4Jf-5WU|j0%gE*n?_@>Tw({Cf6I~NzZsqpM#Qs9;5qupid)+O2vF;3es
zh91D?wZHdmH7<4%Beh4cO|eS{sV1_rjUqV)FS`7S*1s=sNKnVtaK}mr$~^vtd+~t9
zFjkMP)rMA-T@X&uR;ESGw$j`UYSXDPsq)je;r^?uiTxBLGi63wi-hq`9-ZmRr>nhU
zv5~PhN?l&e7>Ju9B-z{e<QymPo{t~L_8BZJ3%=6KqnC>CYnq}LOXUKG`pcs1aGS=W
z>?ihEeO(mXi*&BLzSXXwFTI13PY*rTrp^t`?DoFdtRB-w_bqRBcb~qeCPP5(3Lw5D
zd#B+iaT((JmmfWLWq}74I{Drsrcrzxn<gIMy`QBNH&&opGFVB(YWB5FB0#(Ie3ae&
z`}%M};8bOg<762ta9S3gzfx+780yfO<|v`Ya$GQD3AA^@8yb&pn!IbDC(fjKq=8T0
zj2t6&nk`HQgmP4XR5#)U9lwou5ZTR(ca(chVh=>7nwwo9FgvHj5T@$I5Nvm$+)G76
z8XUN5nLw>f0lspzv>7mkiriayebQ?N4tzwOhfRIM1sOQoz$Q}}fSiJ#6uUDzvjmzs
z-e0(}UVmz!bMGjFA7Oj3QV&gle=*WNRH@LGYpyw3XwFC4cS4wKdbnGt)zq0t56Q)E
zzU*kNc0fl=#K`trVx#{ovp#!XJxj8lsx-3;1VjS`0JAilaqSEzt@Ju~o7AZ?SLsgR
zDAAttzBmq)P2{9lpCBdyn9KyANFBxH9<q4gxNZq$QObNF2%uFp6<>$}leR332AF^~
zK6X@aOSTx!4(kPcZzKy8@V$2%7bIs;eDBkZiYO-C=GuA-8{nG6qe%EK6Fd<?kQGJB
zdTr%cno%nK#8oFGVJF-4wn3V*^q&nWlEYuA1aWw_a=E#GC2L6QJx=B1ReIQ@J<Aai
zKKQv#Jha~LX`3c-UAWHXfJ8q<1RAdG;xcBdp~4)DH_r%Z+;MiMzVqXj6|%PQ0;kDj
zTgQB2f*mf#)FPtmF$T4SJ+%+2nA+F<Sh#S{U+wO4Tq|Awu>}?0{j^t2GG{jrz}jkW
zm7cz)dyr`dJdshN*|u>}A+e0X1CM(|SH4YlP_T;?JKa_)=n1#Q!SEm3)X4xvodgCF
zerD9$rxdx?IDb9{)S`%3CUn=s4+1bRW4wq?6AH=L9iELAY4;R|l*5ZqcJYW7xpYBY
ztY{T`6KLknRanxsm;J)e$;te%_?C}tC;wZig=p{e&|P}nHy1%Di}GHGU%oiMmHVYf
z=2cS$4pd3-WeH!(gF}{I8B8bhh}+v?7T#w+=&1XAdT-A?Wa~7)JZJIG80xP7XAJcU
zHR^hih~g!?k0Eeg9mIc2jye{_>dZ{2$ngA+9ZB~4N0$H=_v+1K3Clk@*`6m3fRoJt
z8e9#O$z8qi&!xzKFz>52vNe`hufy5CLeq@<6KPJ%1WH~qoWgNt^nf{hrKtj~YH{L*
z&4nQrQIEovc($^0a_N0w4&QQd5&}jE^nEW&bdosPtWv1~h|<&l-{$aW(qN!^W4Zpw
zQyJu%>ZE#!s?Lo_!*$h11XWD2(I2U7&kxcY$PilSJ4b)0D^h2DvcgbEE2OC`Ev0Rn
zc3!4ZA*>v<rq?Hm9G*CkQ~czyy5h6b_S|Te>qNk>^m&dSRhwpu{-Y|_D&IuF$flA#
zinfN;N-#_}n+GA>oKAzLs;sP%vvs>s<^D~h{XkQ%o?4;kHL=>^l7KtuZjR=3NESGs
zC*OJKa&HoK4G@DPX12Q@c7ZT)O^o0>d&Av)kWcT9%+Z9x?0T=AcnirqXxbRM&i~$O
zqLv1zYRgy4rLY7i)1G8%13!h0P`5f}mz8I$$M2kNW^yS!VVA>d3@CZ*i$7qQh@PlN
z?oJsc@wlqByRS_g?%%*?8p}USw+$ERjTiL49gxsqiYde6xtubhnrM?q6>L$d+_my-
z%IQ{^Ve2~qX%6zvG&kBE+ZkOecXM(0epZK`e?|Fx0i^lp439a`?O=^AXGyX)f7#-|
z0RFUXkq;##ER(>|vz2nND%zJI8mO$w&dG20Blo^!0r$@U%p$ZS`@M!5^wh07Iq!rJ
z6c|0{D463I;VdkSEk2ESfB^>^*=d6A+u&eSM>0=k`d}u>099GhV+Zj6%2n35dJ2uV
zIeK^ic2Gi$`Wdm_wjFZ0k2RUR_O^b5LHliPmw|&j*#_<JluPvlE6_6<^}bx?_B^Sa
zVWdgMh<d8<)l|v9Z{bo(v)b}Q0)Xx2P$#<xJtyL-vFDdPM#6KzF@VrYYv6ea*b0N-
z)C8HEfC4$BB*$yyoG5@YfyYt3VfZ@|%jYvSnEMAjKhbT*iQms>IGZnO5V>&^hMdZm
z)l9zgm6RfRAYLIX<#4FDq9$`yI!|bI(OiF|P{f#8P)7@RkzIFb$`2f*YiCg~y+g?_
zx7-ffU$$xz@LeWNyB5*WcREg&><=qS)_k{ul@yUar<ziY!JEKt^wje}@rt<`EwSyV
zNJAG5b()LPiLEoovK>Z6X`x2Pz>>kW^Vrps&0BUQiv$@#e^IB6m+Sy_nlgN_P|K<N
z>GgNv664rKz-=xK-%2NXnTrHI!ta&SX}9!o8sv){_DvqbG^qv$uN0kay;J4^TS)WN
z0jhq(BK7E<H=AU{K;*wH5>l^tbvF$!V#sEZijV@oZWgEyfWew#<Z{u`GZq9lp8M2(
zs}z<TyEx?gQfVH5h(5w9>aj5@7|B$Znkus=KoCP)&USdC=~vGNVou|mXc^9U-v081
z*M!yB@Hb67)d+1Bg5dw)$_7ord+ue6rHzT4QS=yF$}E>p`yCCvFMN{EbzMg-e~g#t
z<^a<7;I6mow|bNA=x9$;z@6sA9u<T$sfnOY?Ht;{*C&-GfZDg&#aA#X3oQ{Jk9Z0;
zGjr!hHIz8ReVv3O8E-)e2r7qapuwf1Ykub?CmnHf_hJY%y<KYMyq~<wtnOY^=^rjr
zd!I%wkv<(G+UN+X3+7LJ<VRV9@SMRpFmHttO>1#7etqt^H6#ODSN6@oVNx5PB|s|P
z;fg3hijRB3AOxrcFC*7dv(o&J!f;G#{JgXGOSj8Jf7xPZmR?E^Na@{~=uT-<N2gkJ
z2*pr0ny;gtk%yywpR6c<LG)b2-tf-aR$htbOf+XiSZ;pty|wUZiU{#>;O@d@MZu5m
z$fQa8L^=csf1p~UOWC}3xK-IW1WR{4?q#u-1hBMyKT5x12sq8Q#D@T|{TZKegCt3$
zv$6N8FjiJi@?kGDcZ87B#AhBHJXU7v>?wx?`SO9^Mct&05inj0cyQ}q%OjN%XHTe+
zTh4Ewq)$k~tiE0hl8PX<T%gvbQ_pyfCSz%aYhkNAnt0ws0F;EIX`T-jTT6r;?~;&<
zx>Y4?HJysYW(37-cnkQ(qER`9e><R@Ke$TVkkr<}N1@^FI^$LEAVugBrS^Wj!kq9q
z6A{C=5Q!i-)0N~0(=F~yN|6fFquEMc4lDM1L(bEt!-E#GR$9#8mtMPNypsuaS`Xj3
z!*1su>Zwii8ZeFR_p$I!9}lS<s;$?L^-ImR^GBmBI8jo7u#~+>?BjPqw~V$MM}xa#
zXk<RI7=4@tp1?B1z)wEq;8N>ApGn)MX)?Gwnn8Gyj5l?<$%M%Y54)x|LQ<R0B|@Xh
zTrf{5>!ZrqweL}8!>j8yV!4b%#Ns{6GBk3@6Hp?<TiCZz*7ch_PTy`to7eCfBrZ}(
zqx|GcUd(r@MD}t)OaRO|lv~>)O3+?SScO1o3sAaG_J~lv3bPH~5!T|f?ANKD=c`7h
z^Hmg83K6R28Qh3Xdr&vW@kk7KIYcl!nT==TH9g$;aT_CJ+Sz(IO;{YzqbWpt%UoBK
zNWq!=1pt#MC3Ij{=f7=_9xYIbp10;Y>vEzv(cFU?`0`+|sWRxM*Av&B%&V%nScq@h
zJm+v9G|-H`(F0m8O3e`0m5*q?<q|<7UKd7%v-%ftI|-3Ew%=4+SI2D^!@R)wC5@Z%
zhoz2wpz!C7siwf@3nxDcc_Tr?wv=HSditEQh%MxMOr)cBkum8a;YL=uT3OEOx511`
z>)D$cjKEah1@Uq4VsYie$1AEU5HNcA(^MW%w{ZgD3TAy%FK8YvZT4@sNKICVr_@M%
ze4NITC8e;{Nv1SwR193J*MVzwgM`Ke+G9TY@B)Q~X6A%<c*&86&n~pMT~=^plGufB
zD}`dE%jY=B<ZD;l<Yj22`q7O?m7rESUT8$j^MQ0usV4~fh0RQH7}j)Z`n8R}*Z9@3
z?;(r=D_B!Yi-Q)_@#}E}thY0fft{ec1+C^(uPfQT;BKxdB_%yn(e>EcnJ9b=+6aH8
zzfXbDh*Hu67NsmVnZ=5RGuEY`KaJx(DMb!f$h}#nYWYJhG;1tnFX=8rJqF*dbApaT
z#k-bYc`+GB@5-bQ0@6WW9b)DEC(EkW43G;HOFJFUF6W*h3IkhfVfBt7VEiveLOaHc
z$E2h6ms5PDJzN%%sF$R$57hN=LoO#+$wPLI+?%=l0|QaoA#ImmG9KN0-4O1o-RSZG
z=(vWqqWH<sP6Oy0l8>>%tGguIurRNAt^}8Gl^SbpLw;|3fVri%BKa2q`E8)U00v^&
z`A*hQop31LwEGr?${C-Ah%uYmQ#Cy3Cv2<Hmss<ArqkksWF@`ThO`y(Hm6(H%DEUR
z$eazB?3HS?(tV_4xzTss&;)fb0A0Cpo3@F4v$V3V%w9n<i5@*n!!um$-1+4e6LA|k
zK4QN(IV2u`eDR9hq{{J+ZxwsZ!nJCn9mg?VQ2G55_V$&*V#6gZwo(O$Ac^Et>>k+x
zlM3vFKEfqhQI?@y-a+g#Ep)^I2Gj$JIit6+Xg&XAK4}~7BpSN4{N6(>>uDtp|BUC*
zsiFG5d7v!IOmtmR54|!WqVHJ_d2-+RRE>qyY=hU+f|I}cpVrnfMyhXFb7X-@POf6#
z)-7>o8OxwEC=T}8_eGZ(S0upz_4&<-rrBOkfY%v~^)&?w-@yKzj**nRN%RsOMOXfo
z%9JbUIgb5+>%KKmnhEADtxY&e{BGZx7++%!sv2un)pm{KooPZqSKa`0<qSYqR!?NL
zJVN8St1XSPe_ugfC@=c2$!f>hUtYPEHBOx)7I>TQRsbduz4v_%j^hQ$p9b(>#I%BM
z$UX|d&Hy0M?&5l=aDj)5JoBusK>~3|ZpRthRB;G!ASz}`0(N3%`j6fp?Xam$oFn6O
z4U-0Yn3`4`&TUOCu|5>t!$^g>!9A(xlg;6YCD2}>)Z#{oylU@QMi!A(&?NzLgvP6z
zXM>I@s_?6D7);ewmvl~ZLiVBe*3MC*O!HB)o>7y-tamS@Ff?#8j#oN<Gv5vvZ(+{2
z<lFBpuVeJDseSte!knRgeR1YW)4>|jH3GZQCY5=%un22%H&RLBc1#qp*|=ey9Au57
zX%Jy|#*&cny#!bfDE5{d7$IOIc}k<%njkA1^~A_}7WIc<iUEd4v35hEWvB87QIT{Y
zqVpgN?Dg4<d__P8GRH-q<mYkw*Hj}$Kpq33h{ikh0d@eJcX<+Wr%pW9dQDTQV1Wzy
zqHxOYNgJyu1V=x-S3HE#W_GC=M{W}@@*z_b+L8t(Jzf!~gSL|u<=5W+DcebjH{()h
zJMqUa-sE%uSw(I0vva2@R~Byi>otEl!ROivKB!o@?+IyT_pTy`w<9yN^kpy<&_D2G
z6W44HH?wk>%}qY7$9Ie%>xp}N8!jz#qdYrvC%ItNElOr%RWhivn){+U!Ptgx+myXy
zGrbOoxOU9%X??jPMvhf*+%qv3YQ<QZn`;r<-<I6KS$C55;k5CvU$aeT<Op-3Lq>DT
zUuEgM7MkPfuH@^+UZQ!n_?^HvU;=%hR<4zRSUyFE*M*=cPpXD&@9@l@Z1RV^P9$}B
ztPKV-ocpNu0g75|yO4?FK!Sq}k?`Ai`dIiVASgsC*aj>*vG5b0X7ck4x=2~aUiNDF
zGV?%h)#7wP-$3r76m!5WE>U>?C$~78tm))MiQ!BPzpf5XiQ;nehQb!<-RjW|-tHN&
z*H31L?~Ykbi%xWZ0p#KgUi{@svr)x>A{7_~>1pmJIJ^(0G6mNEXx*5w=p!z1e%&>p
z3a5zJl%qH!Ii2RDw!M3)rrTmoO2f$J9{j`8!<I~AzSS`P7_K{1K^;3Qv*Gwb_*DWJ
z!*pjyulEonj@CBzT?@vB`glhzl)`kqPm_kDj=W$^76deBn@BV7cxL;U!JM$2v8e(R
zXE1RgISKX$cz0-N0X!@ps+#7NvWHK(+G4f>T2r)hIVOE^LTA@vxNc0>7u2bLBA7<2
zM2h!GjeF`$BA1)HPuGrM=^dZzqEGXg_?>$V_cAvMw$Wk5vHhslbj_kZ@!6x3!pXa`
zb2W8EN}X7HVmVkNg`yUVtSK$tcgQ&3=-?!Ws_f#K7?E@R#QnZ8xjxZ44J@0o^un8(
z%W^|`XZjMkl-wra@E5?vojuv`Q&9y<-~t{uVNc@T;x6fOTNn5R>^;mmDdo@xJl<@e
z?>{hAWs&p`9xon)MpSn+T@HJa9UaoZa03zEI#Pd+*3O;wZj!L;vQ(^Wqb*qk;PJZn
zMF{_Df&LAJ7r07=Ga}S@NJo{%$Mo1%Bbodqf2th*3Wl783dDpgRYfygsPO^+Yz_mp
zzs9#HyDS2Vu-yRp8hGTuqPkT##KzC1`<3)t$f$My<h5k}>n_WNClwxRyQH*(OhcTn
zn(1lGwCBn@*l&N4Ni|NoIYfsWh;Hl?*m5rfc>M8-QOhQ0hAw=u=qKR{YF9gZ!(QDc
zBz+LnnI2ndHY_Oz5%*6Dq3o3abVS=DY^*C??1obH8*NT^=&Wk2MY~FiI>X6x06g>E
zGkUJ4(va6!m{tDwoyXZ(xtum?)fRE1_&mA0soO$qgO6satg^_V5v{ING7o5ldtbd^
zvff3!zZxB(av!Fn`!XUy{-CBi@Q~l*2rY@*UQ8#JL}*rl1kQ+owf$}UtAcIPa@RQ_
z9<AEI;<^@T&st+tl0eTjE1midP=%C?VH~Q63dwD)|B8_)RE%tFA}VXi?P{m#)mfBa
z5Z9UJh~xMQ*YKymzJiPRo69+f(Ys9)aTmyt-Or#ni0OqPiglVKiP|gfc!{;b)*2<w
z6lns}mb_QnS$%syu{PZQ!_6?^5b;W9jd1z6>?pjm-9QLSo%kvE#scc-p}!zoKX=c2
z_&%xl3sx&6lCCUMe#XxJzU8kX*a+bM_Lb?v+h&?Hs7+J=Y@*^pCVV=&6v`fQX!u2F
zh^VHC>#mA#RApQ~)6FN~RGQyGd`f9>imjKP6vwF6WeXUrm3DeCn_XHKCbV-8Kw=4=
zn;B!E%;UXCcv)PiLq7dFJpIPJa1qf1C=|+>Gom`VGK2P9ht(mnP4e6%Uq>C#eOe<5
zwEg{W3h3dYX;A1`&wn;s3>>r>c%Jk+CA&KKz)N{E@U-&0vMHxFE{0aw^jITCR;ax-
z$j$^U?HU2u(Ap#H)$LjARi9_`!7j2n462L!%0Zp%?C7!tvTkJYW21;VS@hj8@*00%
zh6Em&0kj?KSx<qaj?Eb0z|NDv>uI+j-v}?B%erQg(aQOheXi0aQ6mPL#{S_J%@zFl
z{rmblsEL}%MALfUNVE3z!z706e<5i8E+@Y;UOCWeFdwDmrlBNyy?|5I7ymqj^`lS2
z!D4}KX}=W04@d5Uz%Lxb&xz;5@8~|Mcng@`%;;737Pw?%t?%Ix*~#5Ts-<=Yi#lvl
zVQ{$GW)`b_l!r@7Jaw(ihE6O_S*2UsZ{fmmHK#<p=zDu6=c;OWld3}nIqw7LIc8Cc
zpJW!-V+K5Q=%(J?1mmmrKzaGV(D_q=0X+ejPf@~{Wb;091&W8;QnOuW^FhMfPn<U%
z-*9%dgU8HEV3Tu6l1xcI!9piSz#SHF9=-TgF#mQD?E4v53_hi#d|RyB!r1OaV!RKk
zhPE_)mD}j(X<*w@0&$?C@)`bxyQKEBa1a3jMdh#6@hfO*DRC-+?=CrYmIIBY5?RfK
z4^A&{Dw#^;fVhxa=W6&s_tM2om0o`}!JspyaGtt^rm3b1oYv%YvwLcz<8j-tS<fh;
zauSD7<9JU<%`>EMP!3^7j18|-k`7@tS2bgK(MjZ|l^&`aG&V6&wg;kte!_ZIKe*kh
zgmVaQX|?ERuT2-^++S&*K*#*;`F{OUP#lnBwC@uU5iK^d7<G%N6ugvq&17?Pz0p7`
zR~!=<$cmzE{`%=(7sY7Tvv9V(kA+N~PFJ2)W(Ce=EULcn!+A0_{)i@+0NZGd?VPV~
zicxE#?geHFR$5BD$n<x{aesKjH$&{zk3j+&c>-uga_fy5bO7V8*)LvMf)ES372$Gl
zXL0Hs#39<)l2beoDn95>?7Z5sc^V}QTp}WAZt%v?JQ-z(`7}YSV<0ihza?|me%b8P
z*32X;O{2gShH4L^S7+OirpGOGE8rth`n|XfMua$c^lI`yB9!XNjXWGDQmYas`cqQ1
zUr0;SUC|=Yu%#k2R6D$0p)ANNpBO0E)EGzdEA>U7m%<yKNW}~Q*P@k+^V2A>BO=O;
z-2n8D73fndSl`vApvcxsQq{7!LZPGOH}GE;!8-x@+lcHM%&hKt_Nv*u0+A=p;RhZy
zYqRohkb)ws;ov~!b(8UVGwj<DZf4}JBZjZ95%8zlyc7w%`@Q~Sosj95^|XM}h;>i|
zIZQ1Ww#9&jfZ7vdWl5uq@5ZyU*PGglrh>LHn@KSlg-%-`k#eqHZ9!`);|uifXXr!z
z?UnR*KRfE9>%N^OT2I!CWz4-9j(nCIgB$sue3()|4uoLrl+yit_@5M?#|BpgsoSI|
zfsV<^<E&Q^iIbjmZT7locatP-&X~|KbFDBQoyv2z_VDkJ&DIxaSk+~SH{k`6DK6R;
z-vAa-O;Ga5#U?NT<+hrP7}}2kRy@{FYKn^*$MGv>I6{zdEd^p$pWNK1^`57)y`&IR
zi4?vhoa!mRa<YwpV)VE_`ctkqx)9bw(Z1L35KX;d4|T*|S(0G$ZFP+^jd_6kpLEF}
zUw|UA{X>ZL_lJ1%Mhf*57MfJ(o}-_sDi?_eE_TVZ@zY+ZNG3<Em~Lmbz2%kljfJF^
zT!!JV*^&lkF1;>KR4a^i|IAx&F(+D`$4|^doi#&b1u6?jQuPSJpa(eY*apE&cKzhH
z*CbZ*602Q>f(VFJDu2%bKi}kE`@&;<6!j}6x&!j-kn%S*TY$+Y6?dV?g*xiptBT+r
zEG?H8P%rpKm$gEUJT1l7ZaZ!-|J=Qum4Pa)njd}gz<yUCOw@yZIfOw5aEGeiO>A)8
z1~Kx^>P~(i7)0+wsG?n>ib=u+gL2R)ZvB(Z{Tu)8MK2ikO7#{*)cwATy*a%8Rx&7-
z8E-IoO9C@(viush*$|b9s*_{#3n3={U6;<4ZV&sEaP9Dy1y*PBF10;+zV-Vf!fx~8
zCd?^Bu3&G^joo4F>{1BI8IC!QV~z%0QG>ODHP_y0=SOTs3qJokHT{FB{tyB9&P<46
zUgLkQt(R!mqj5@f`yTHd*bnNP&E8;jMP76Bep#t!Q-gyvlC_$4|B@UyvK%o1FbN?6
z0~6V4cDKY)`^{EwXEaVk>pFL~yFvZ94K4%!(R)7Kvo{@M5c-DuAh}H7P5;{K{`<vy
zQxt9b_W=C!wHBe?SWSk7Vt34#Js<rG4D$P=UQXw?(xNyb8Adi>_Sks~hh-Rulg9Uc
zu#%OjM}OW?uR@UOV$NyhQYOZeWZyFHc+wBgaTd7Ve4+YRF#l&j38Yg3E@--jwKV?k
zr_ai}Xb&i0xRb&wb2U~vt8rK%>rRQm>TmFqx!Pna$6aPTHEh3)d4v5$d5t*%XS;(m
z{pz(0QMcl6P*VcQ=-U$~JZ^vHpfb|+hi&$c-&*}bS^f8m*C}B6ZB+=#{p*i?Os@()
zYFivAC83PL4b<-A{Z3Z)l(E{OP)<?u!^oIn7S8<hdj=3$;k74esy(8CwG8YVWJz_#
z>+rShWHJdFC0fmp3>-O72X#6X`r<%8{5M1Ef5Z)#cmv%7=xyHLSJ@xe)6uVo;Xvv0
zfw&z-(~-r-{41g_NBC&~{Zi?|6oIonOR&)NR$a(+-+d6aFRMjCiwv{SpUV|X8_BHg
zyE*Lugt05z4;Cf=Z^`i=0fWN|Bq|JyeewVOPU6t7`{P9L&X<WpqNik=<&e&u^H_2Y
zj7dCx%g&*&5_sb+Hg?6@VO%p|xO{gcvxZ*H*=OOkXPbQ5VITYM)5gOJ;{4oHA`TKe
z8NjAgJZu)S*&YKJnqgQ||9BTa3+n&*&4*6l?X>sbD*DI0{#m&d|9MyK4)pnp4)A0&
zsnfcnMPu$ATSdv(uVb!r$AQZFnSGJ4VJ>0Qu7p8KUZbrI$MlADsp35miU<cc`erEu
zTKI;Iw+GlHISslg+CqZwto{2V{Lj6ByL)Jjx}82W-hce=pSPWe{@8^==Ut|VxEu9z
zzt<rLe3>sJ7qFxX<UKC!o;E2ie0V3T%*XtLOuNy{!b+VM9n_n_6tzmHarXF2`<h2@
znsW`2q44fUWQXHsJsuvNEPgKGBBlSr=l%8~worUl&zCE|_*K8ES{#{&Uoa3;Q4&I}
z4@3e3i}(-tM9IQ<=!=AQT*h!T_N^=74T4f+13TVU^JaBW`(xqE^SA2h?QZ6CVV&ed
z7E0Sn^Oh8BRbhP{yk!=}&<);&ybEqCnuKuI7&eiHdUVHy3}x35&nZuKYqCo=9?HX~
z_mVX?-~I2~<R91Xk%B<GH~Z1>>u-<pFx6k+Ey03W+V_ADy?MdiK|3{*!vO<>QrKpj
zWq~YriisPz9S6;Nx@u$ba28zAu^RsO1a=)Iy7JbXi<#*6klrB%e{vSUU5fp~0$AL#
z)|eu@H17#@Y31dbhAaDEUeEYlcHy5%=|vPO3q|#WOZ+Pf8G!&%7b7IO>G7n^@Cpnb
zA~(3}JH8>Hf-WcSnI9<l-bDNc@$V1*>zn;~fsg@MlOvrgB;>zul=o1EVfU8n&B&{)
zDRiW-LOOkf-<v$L+x{XPUvUi4uC<M@Gm@6AO6eD(pa`$LcX$Bkv8Jm-OHmM47Pn?e
zBT0bgTe$gl5_Q`G@9%#0<okwye;AZkLC#leOFB;P>HYER-atj;=YsBnc;@i?>kAS`
zt%65q0^F616fiIvHvP=sPqw2&lN{`(jG0j}zBOcW30%d+Z6;*+%P@8?W?aHyge{$V
z<*8EWw9y<%Wnotp0O(^V#k()&>EECPOnUG?3kspm1yi+V6~mS+uU^RY>6i%tM69e;
zF)g4C8xcD;Q@=TF+$LH?13w%b^2b&|utgKI=C2!U0^eo02Y2lE<@vA-2PEgRLI)CL
zB`xZ^5Kvy<9J+QuVH*7h6TLP|!(B@*SKPM{+z%xLWLaO3;SZi0PV)=yOTBttt?<z8
zywBNmDgW~EyK$aoF)$9p20{db_iF9oSfJ*XcIlTsDrViDYmt+Sr6*q0V2tMvwBtWe
z3*F2Yj3qU~uDeA4&bRHo%t;Aey58M^^W*SSbG;%av1>mG!|zK`Il6QVBjZ1dL{yIU
z5ugBBGqq3z649zj0o$rj*lYh7S^28P9ejMV4ytd&$98<(iQT+RFT$O0rw#zrXeB|k
zGgLpqbsyba{+<xzTF_I6^~nSjn4<vZ4rg#X?UP+LjuL!0h%?dXicw{Xq{XAriZhl@
z`cYj|D{!-o%sr+=O%N!Ee`syAeKcjU_O<2FQ@O1fYfN1rIDi!(I|Ux6gp}qEAlE;B
zc(wV+qto;Gm83riX@BN_fzN=*&h$Oz`n7*eRIj6ORM*R-o5?c)mb?Hw1X10+AEU06
z*UpC?w-}D6&Lr2(lQeNraI<aBk;kO69OJ}~HBNx}Kt>DYvV1&ns4<J|h@y`8Q%?Xq
z1tD7KrRP1&6T95RZUBj;0iqUPo-s6Vy(TorAGO^T2{JJev0N!%G$ojBrU0>HQ~MR%
zr@+^T-$S6zGpe{9Q-)E$Lf!}1B{Y84A_%?x`^vkT1Qvr&vyj(=6hOe2s@WPo^(IA3
zUDL4~o^)EHsybQ3(XMrcu2i4(QRm8!-S2QJ#ZTYjOU-Iv8Z`QHSQgrqH?&A3`mIYZ
ziD4P^FZBFB*P`Q^?Yu9^3<jWerT#>&!Z?g?o{s1%4wL9FUJ%~@^JNOi-+gf>Wm~XH
zFYcFKjKBa28M_ioi2FNA?Me!WawxSLZnA>2zYA#&d3KAlE;H4UBtm*5!<^7ROUih}
zRYT2og&R}H?Hzkc<7(x4;z5K`UZ*0@=z6}((fgGh|EKlNmsggc@$WwRyJdUvc%L&S
z)q5oDzLJ$7QlcJxPT%9S1tR?xHd*?JnWB<fe`3^QiF-ZlzFh(jk@ICqyzb#ZzE*nv
z#;y`T56%jCpPx8#+wBoPk&6l4UG5X6QFLL{YjWCrki_GiyfsrNrLWILBYd*AI{_jt
z+hV*}2^g%;JOCpaYtr66S=C~lEL>_?#bxPFPc^Fxbpq|ffcytgWdmxot4}pwTFhrO
z@nWANgqv#MX^edJ*ByX2Wo@%oQa(U78ud(b+dzeFBH$(GZyj}-zr#0ObJyL*9lghF
zlh#hohK$7FZop{CV%F8VzF3LW$sv&+LQR)=jyUc&+@rcNRDWw>e+g4*<L5$!{ki6~
z@u8udM)#ncAA{inU*22K){7D_YNh_@io}3ksyBLBXGGrcbKy4oivM##{H%i?lYx!%
zNpe-VV>SSP9RNrS+&c&><pdC!_EgRx%FjaJZ&Pjw{XtNMyoago6o92$Z^co~)+M~!
zk#t(#pO3Tsai{ojwa~Y6Yv+0W@i${Wiulv>{qzy{Wx@D{&8ylG<)k6l!1dAT!31aG
zP*$kAvh&7*)d~H=GX|LBp!M9d`L1HQ^Q#V9Q=}(=a#H`O%`?$1TTal|uWtw|&A5i7
zK~|T6Q?kLIT3}Rl>*0k%VN?jLfXsbmG{u`piq)hqTT`LN?}(PG%6jx|zN))UK%rLS
zE8y~nL`|(pb=^mogbU}WWwO;N@BDB@luBh4F8HYCgqJAvJz)BlU(!M(7;>Rb8Ig68
zDf#K$$=;eE!0o+MG3%2{;S<)b-@l)p6Y1nMoFyZb(R|9@KTuhJ6o=i<zt<lgCq>L|
zmA*Ocd=FzJ+3SRcR;m8}bMqrgnRtjl)j4zY)=bl*@k~*qYOZHP_0aY0QyqAODZE%a
zKtiX64+xVky~A7CjizHe7`Oe}p<Hjf7%&((ebbZq4U0+ttC75`A<NC@Tkab5mRw+3
zETPf^@ox6m(>Sd*&|<37avuHU-J8hmNfmZ(l^7YuW;P_B_wkA8@G^s)G;8*SplFJR
z(587T@Iy5jS?B;jYty5k4|{WKqq6pk7FiM*v8%CVErVOYzqD5_BTocjz!>4O@I&In
zYb2u5t5uBK>8y4z@c6#hnXUO)CG+!K)$y$FDsb0t{BMCxX#{}g_&480F0i>Tv(dz}
z-F$MJ;%kzz`Q5Ld>^pyiAO~)fcOvqvw6Aj0ITdQ@Hh(XiaEV-pV2>h-X0W5f1nQu-
zhTz|Ul5MU@NwdSj3|DY4e?({4`6ug{MjC!^r;Qm29;c1;P$Jd=CDD}3g@xvQgL5~=
zZDcbiwxjlT{TB3Pv63U%U+X1IO1wCvBHD4>@p90pvsb0_xb>jWZVYi;ylk}JoWJp!
z3~jx*12+gD&x!5+PRl`IfAG&uK2D|pZ&so4yNk>PKQBsD0RY|H7J{iw4>l$pL?PG<
zZA^nPKr=PjV^@MFlD>YrRNwc09>PBN7PcjnScTflrvf+-EG$XDV{c%Sa0-0*@L^Z|
z>LEOqJ%QaS-zggEc5!iPV{kW75>yP2F+$CLY5^!$7|X;SD3g;S4KzCe;h&7W<v!y5
zTnzgY{2$Rwy2)Q#TV<*)7=(i0x-iavDd1ekKvj`OPZ;`JNhx62xEy&GC8vqu%FNyx
zC%KZc2KqW$tNl%ZY_`Z7530}DY~wWT-O5bGPD&NAxZRGisuJv8u&d)O$f$Y7^Tn6X
zc@U~I#?xVLLWmfgSe&0ex^9o;j(tt^;J{hGBm~2K`CL0Xfj=@ytdibxd=J*v#AY<B
z-oRa@kP~+_-{gDl%Q2e08xWQ-nB3$(YMkhr5v!Zd#J3I~DG_Y#sJ#3vm~#R&8;8b)
zTcTi+$&Bh_c}a9?GlzqL<h7O+8g*xLczeq{+YM~3z*(WYjx2IY5ZD!L56rjj*>203
z_KaEOcQZmGd1`PZXG(EB@Ng-c^1RO&PZ1GK(FJ3r(}5gr4(mcsLI`r4`Hlvxb?rNg
zwYil74>o&M*sMCFPwZC4ozi(5up-!9?z9GAQIVw>);rR@n{wW`znDmJijA7wnaj_W
zX+TOx4LiF^{onEXr6MYrZq`|)nH(066wA;xT%5gj55*BL$9Z0i(m{GKaEVJxsPnnF
zARPI=oo!#&Tskm<q^yE;`X&Yk7&ET@sFH)b=K9J>+m}+NvQF=fg^!|eGDwd`hILNt
zzRqele&y<`OMK)nQhY%dR^c$holb-W4t+Dof15d3BGYQ?^V`NRLZ#Zd@`CnNd$04?
z?E#duc=4hax5_Q498)_*w|-+M&fy7ZqGMqLz<e_DyekPu23o1l7b20`eLZWQ(VN$Y
z>X9y25hn|_6n`H|1T3!~A*0&u8`^r}!mqMck+;mik4RHQU7!$T=$a6`y&|*D9{ymO
z8BeWkJX?l1XZaJWiR6`3^Vb_S0PK!PhhhOhV3ql3dLrf50K=i@O!(xCn$^8K8*mpA
zq!S+^eH97iw<+G$BoczOq;>fGtLDuGMJ0i9&+7Rr2;Kr-cl_Ifl$yg=osQbHOPM!?
z<YU{u+#SZ7cif8oX1{mt4PQBETH)Y`d>39MWs-JC`zj|f;_LK9#dbbB1uT&PzFMX0
z?0(01O;c_dDatanc{q1LH}X2u;%<z#I03N@-zA~v*nmzd>%)a-o;93P4Kc19&VDW%
z?G}AgRf?fTu-F@_GP-8;UpZf8JFc_iU??cZvmZOVo#f?=WcSus%?Z-IEKc8UCbt@?
z;HWC&ztnS?nyPeVZ8{Ys5Po_vQ*jvyJ2Y?Jc{@EXiMeQv&pFbO;w?H*C$8f&AvG|E
zB<OAeZO+w&)>}WG89EZPu`NR#>0d9_#6^&BnZuuiO>>rg-kQ9O&Y|?rxDkgWpr^zy
zow=VJHi1i=1LoHs$Toij94TelJ?T#2Coj_2Poa2Ea=iJvOLO1$>_e4-KRj0@#Q3X}
z9@%P^O;1b_n>32luZ?deO>$YFR6C{H8J0t#iy3P?iPVwO_iZ{Y8?Qo%6qL@--Af^-
z#XM`|Z#o+aF(3ZsILUlRgT6QEki&6vu&4AZb`9}Jf$;I}QnZf6%fd6L#K-}R$7XQa
z#);)%{w<dXi4D>fDkP#qexO&YUCOM>0Ti<c$kwuzPWD!78>G4Wg}p2;KEY|}BCX*S
z#?oaxmm}fz{lcUkBXK15Ha8r&H&*JK9c-NvBRQtQ4?AjU9|~6!JUu)XI3aoUrR&Te
z!>swJ@l@4=orem468|2I6%39gP5LK7j^Uzb5;u0?HPfQwKkFvPzv`w=YXrUJ%0i*x
ztmCY=!=!#;eLs0YqN8^+a;6ZbIw|(Bh$n)2pqPma_b<KNKhWAl^<a&z9Z34E1b{v}
zmJUd%DOKg^jAGDa2Lq5;;0Ii}Q7~0wIVqIT&dMcg>DvSYgNtA|*6Qls>TsoMV`_n)
z7m7;HKGK|+!tMBOf{yHRvF)_!Y`3Sp*Bg-Y0j%?fR4u^%vNmp3SxycaebXdGE|{nQ
zu1F4qD#EAT$Nx57dMBB?wA*2e!|KO9O4EZO)iMLoRnhmSr>ufOaJebYf0b<4u~FN<
z2?Il4n-T>q20JBvopNN|nGQPigMnZ(Jc&l-si!=1;Qa~hCaZN;{ly#god{F%toss?
z13XZpjBx0yj5{>KDpkFXw-KnxC+-E0%p4Q1Y>r<Juf0Ku3n?8uT}Hh4u6sW#wfOuD
zCUXS*rq%26!Ez6*e1x)bJ=5~R@GkCs*OmCmP<n4=I;N_E_ey@bGS=fxYu%(Lwv*`G
z?)z9t_?IuYD*V&G%YwQxsx02|0in<{tS6^gI~pDOG|DHdvCM2|(;w_AdTwnGt^;y@
zL8ZDM`R36wPk>7geLai&ivE`|=Q%GK63VYBX8Z9~dsFK+-NK+gR5Bd?639E>7f(td
zQ@&DkN$uIz+V{*6?bz44q&ek*5HCK<1+PiW;Fg+Rn&_&@hVaQQUuz&{8udF7j6+~%
zCgTiv`5*u0<u?OfzR=(SUYeCAyG?d{SfalH(D!5S4;$yH%wbI0<h|3(B(%h+(I~Q2
z;d=gnI*rWToQT<u4Z+oBcBCqt>%?GE;#I%#%~$QL^=p(H({q-7U^4aqIF^y$9(?7-
z)ALCDTwpHZVldbK{z6%e#6fe0B7fPkOahzT?L#-9>v57Qr3#4osb1O-SXMBq5<Y11
zVjpf!%LV%H1PrHp<KyZ^Ci1PGGaL2AsKoSnf3;hFeQ!2?y3TS5GSb&+Yl(Q$Htgz|
z#|5^2%a!h;<Uk14?4dAnW&z0uT|~=-e);5mA=<>hYVv&^igqArj+NHrIPJ8?z~>&N
zs(H}MHD9Bv6_8hDN48cEa|BMBIyv=xEx^<pe?~}<z(jk!I6HmuqP4nkYS8gwWnlvx
zQQH&k<+claYPWnGJU>mQ|I`;{zN=Pda03jXLLeW&tk3OW(j-s7XC>BtvS(HZvD*hY
z_?WoB_lLqOc!1e91pr&*fhc*Bh|`SoQg?K~xBkI|<Z?$~nYpl2k;wU&F=R?Bi~r(C
z_}vMYhZP_uB-O9P5wx&<);WnHWCl_fiiF=Nh3yS&DMI#-+Hc4L%h#-qFye%UqpUj=
z$-2)LAO1Q+|9yeufMVs<KiRhy0(SD{*=4+s>pa%U!nB=}z0~ZJt<ipY+n><qMJmR2
zbLAR!(MLhdg4RGGeSd+bm0T7kjys;Hkif#fw^R{D<u7ynXuVr$#ISyIQ{K8zmy#~b
z>e6q}dosCa#9_|~V3KAn;912BDUuM?EkpbfBbkIyCodfx$6#il`0!x##4TiSD-0)s
ze1buHk0VQpU^6TPv;44%Wr^;^^hRIk4JW`&y*<*rNE{FpENqo66B)y|F{Qnwc=5@O
z&Fu%8WHhbD3c+7Y`S-biDPOw(|HhOL8T!eT*SG&CQ(kQk+jFdh$%w$ljE73wiDc8Q
z;(WhmZV=iM8r{I6da&`$MzsMT1P*HuxUYs!x0_{bnh^DaMXD)sm^L3lxMyFa957Fj
zU;wLor}Nm*HGd?fpR>@Z{AWOvZ>@bA$2&@|&8F)Y(xq?h)Uffi7xClI_#XIId^gvU
z$HVb;4_%RjSC{Mu=-U>dC8FNq^4Zd#dWEAwchRqNj39%zI-KwVZ`38NUWuO$o>siB
zJ$|kZcg$Z$O2v}q_#@MW{t9lr{fmsA@M5Gmfyr~Ge&8CJVCCkfi`nLgow?rAi~o}x
z|624jiDZnZ%Z4W-pv%Z=bG@>9^(wOv8xu1NxGeDO+ZO66kYNm`r>AGua35GZtBGi<
zRTzhDXyhx?(CReSE?N&|khza70s!cf+t}F7Ypqwg@E2?iBHV#}RONbxg$_yh!M6{O
zhS;GA?T*DquWua;)VvDb<ccwTq22K1`1Lg*2>DlkvtMn+zc0`X!14VCV!@5&Ih_#1
zkpw^eyzZRE^L*Qkd+oa?BSh-<+RG=@quxVYmPJ##OBXl`&uJpV#Hwi0u_UI$b#vBq
zCxv)l8|5{wnhM66GQD~fOOgXMCTBm%!P7Z&LiZtcKVZ!X``VzhIY0Q8+xs?x({ed3
zMJyrEFiQPJ$JKXhqsi1*_75}-m@KWPo!Q!4@|oPHj+Z*OjpEQ$;Lw?2@_VBbBiJpl
z-C(Vn<f$fOT+>fY*J)3e&-OXy(xNFd3#o-5UHdr-QB&={>J?Th?Cu$$zT}F2I)C<F
zWgibAk$c+N6xN3)by<e-1aeS=U~^F0JN^vA!tf(Vby$#D1c$^IgWBOFTr0MBDIc>V
zvKV<f1Q_mfJGcRux0O2@ui+ZG@?MvzU{Qwp!O?hCXJ?xQL=kw&SIOu3puFUz8Fb4B
zvi?xmUphnj=nl2<Q}xgu5FQIv<u4nz`bK~z&SYFM`C8vs5;-W4Lg_^=+Iavx0bsGn
zqF5~Ty8?~B0<x9_EyWkuw4z{~$ZQ#sKr_pPrZK0r2_L?*@7ftMc!fa!p%@tdm?Vwo
z6+@Y{okrZ$yBuxDs<zA-UvBe*P7&Z4+P*|CXpO@gCbM%6M+LMF1?ro7Efs!BjH_M;
zM^Z^~a@PuHJldC=t?Bg=kyKqW2TtQaMQ-#}Yy}4o{-7=46zGRdR3XHG&DGubYCx7)
z$odSC^~9%Fdw2*B0H%BO_nQ%Mt{aJ3=qC=nAt_&W5=S9+A+g$ABi7QvP0M9^A8?@+
zR@2qYj{EAoelC2%7_I->QAbca>e`Z{w;i{i%W}qf<pIgQu7l#sFxMyiql_QF%#c`2
z0yze9KeUn$C^L7^`JqKla#u;90Jh$I@9>uz`OTPQ!XXxw{7Mf=`;H%K<mNoEMvr)N
zTwn4s;fEZB&bgbT*@_<geH<i?d!KknAJGAnD<NA@{c;`4z1svv1~%s2;%B0(!_)55
zN}Ctoc+V*m!X(aj))`W|lya0Vudo*bq-+faMs9f8Z<P3z(P}GTJ!y}`&a`!MT6y+2
zD_+5Uu>*7U$_HM7_LvD`rS+J;)!CZ4$DOY!8dDf~%EG?PR+nEEm<GM5u?~&032ta8
zS?jckjioigAnmo+Z86R=f5)7{Y>&TxT-jpje8;{g8f<Y$AIEcf8~kM#JF=6v5w2cZ
z;Y<|C{p(VFU7G#o-br<%$N>V7w$B!Teg~N^ZRa68RXvCxHg{qpI`YOSe>hoQw*C)T
zav*n!GwGp8^85aE<#Bi{i1oMXPglMd+Ru(E7s5c@i^|g93zswPv{Sab$>7N|s@EK6
zudSZ2REQG&-9gs68~05A?fv*Ca><Drm8SFgA%zXj+hj6{oC-09xBs+P&!AAcMjjEd
z9;f_G-79%GUxlvIxDK>PHBhdo^y3ApP>F{*hC0SfZy0agm3rddXLvWQ1=r8zf+~FR
z_X(K5Yt*2Fb8K*z-T?!FzfmVtBEv)9Sp{eY-4rNy_2SuPIZuMbR5MMct}P61{OlZi
z?!ectJ7el13{9sHq#=r%IjqFmvO3K&PfpwE+lX;&<C--+W>!*|q$D-QYYNMXZs+(>
zf4+Banf9cXG3_?u<#|m!cQc|oKBkw8jXH28wB$z@cJMN@#`(PS)*Ld=;xHnsYw%G^
z7Q8^2J)wq<j)^YWr41?aNBb@J3x5rV<xrXX@xZ%9GPxH>bj+r<iM_kuWwi2PUe|N=
zem2kout2pI;-A@m)E~F?uIeK@0)4|Y_D#D#*`>7zd6z%vH5x0+#t-_|gN2h^;(O;4
zwf*-TjclCSwAKcD@S9_9glsqN2WWE?{Jp(2;VmEiii@rF5cmRv2~5?w+>PvH!OJw+
z&;yW<4ds`PE=brg5R}G!sX{lBTE+9qlKDIX^2c%+I6`>O@5`JoI*-0Wg~?x=O!E7!
zpJ9^jsxZ*5K3<=YgUWc8>QxzwXM^qPeG*Icd~?yf{k(N0H+SoAecd-&e#i26lem`h
zb4nKQ=Zus=d27@=uGg<otvhW@2%_Bhmhx2!6v6pv^W*{?`W+V9(A7I(-vNwy8sJrP
zdM7nWYDzRs++#jbirzMdHP$6z!kz^thFMA9y?dAPV~6OfYq3lMJBw<ELthVs8tZuv
z@*SNmxmPiAqXMef>~XxXR@?+UT{d6n<NQAPxOd}93Od5h(<x$$%e`0bzC7;2<3-J&
z&Z~_I1<=9V%l>!B<us9RC?llR7cc!?hB*>5YN$8Lh`ST9-wm_g7@8jStXLt$OmuI{
zl?oDStopFNGK!V-gJd`8*<B86*n54ex^$cE<dJe$Rzt4~dY4_{bXTpH-lek@&P>lO
zEfehj?s1v0+eDRU<LU>mw>(xqRt!2ka8EK@EnnKLwZDj$xFPyf-3GVC$8(`g0`YA4
z;Bzc*xK{1!4~)8XLL^j63t0dd)@4WYPO)=>ux^S*x`>fyjqv5}Pa-_--$eL?{|6#G
z?6&>UXLCNSu`ht`q4am!;`=jg*;QGCIQfra>SylSDG89@)Oe1{U6&1Zcuj~H1`;dj
z6eU2acZBU+DbhmqU%5+^{%k@KhM1?NhEx<gswx2s_NGf9bH4s(T!q+!4G3txz*I-M
z%P{H28y@(Un;4;XB1NRoPdHLBn$|t2yfHMHA;AF2*SS!;I-Ju3XPlWFjGV<oNE?H>
z%aCmOtF9p45u<P4NzD9Ggi-kU14AF3B8>wmMeP?7yK2+Hbmd|#uF1KxP7;=wjH{p(
z-Zmp$zq~)L>pci)$yu9gqXoEu*_eCR!Pv3{r{iCi<USH8*8!832Dw{|6W3LIxEw>f
zr9Xq#YPAwa-a(wFU5(dsJB3p_bsDpeI2A-08^z)f)vFNpk3dc<ezF<|G_t;ynq}#!
z1l4T!%H%&Y&6vgc%0iV>wwaR2ay&G6Z9dqdyWW1!2Tk8X7F{N&1~k~sk><C!Zs5<$
zB<|47HrhsNRC|u%Ebea{+^w>ho`T4<M4=KHX7?KQo3j{Of7;Qo*EzbFL?ZiZ6A<h?
z!`CT%DPCgs%l(lmz-&H@kn5e;<xvHsU!2@a0L(m8Fk2TJ|3Qbh^Y(f;U23Z|<^4U?
zGKJ6R9<R!tL_>4^#sty6ogq-nVzX}SBUWA%!(2sPq;!~@!HZ`VCno+EK78%2j?q4Z
zjojv>mp`wBbB<Hy-nePr$3gwdzViiI&AZDh%Zr?2M}T+U*gTS0`1&Qg!xBh@x--~)
z_8}!e4d{-~E|)3(LKz1HOKzRE_x@alW~H?_ZQD^NZ@t3w7(<`ZN2C8N-IoKPUzVce
z`EC`#IvtYu>-$ZR?Vz5YwHzKk&9A4L5KHyAR4^=eONy^c{dp*De)xI87SB3nQ}r*B
zJ2|ie2Ra;37q9QMew**`=vKZ9PP4{=3&k&QZvZ>+-M2R|RzQ2lt|8NfQ9fM+9TaUS
zf2aT7BzKf)L=6|V>5N-#8^)Q^XLcdbniR4Sd+r63YUqc3<S~-OlO$Kg$S{7w!h^oM
zaBrcV>hrn^Z>SDUOt6q4&avy)sHXM4X*ZvneLO<9$ifm1OH?5kO`5zl_XkP2$wgaA
z_^b%r*sZ$dPd2iyj+831FR)N|?o^g5p6Qp(9<Mu(W^0p0;@Hg2TU5GT8r6GEJB5+7
z5Q=U%%00n9eohxFY^8{A8*02%t|Uew?;!os`@Ql3coRYlQ;oD7TqM+i)$a7FjCGzH
z6Sn5V&AxZ*E2ZFvtNU1+qs3lbe+IAQEpmHKvFaY7MvyDy$LQ5pc7SpBbS*k1KRAAX
zxZRv6i;QQpF(L^W4;H>#FG<p25$^K2M_*|;OG=zXBX+L)Wu8PuOr;^5ae*V*`*_}+
zR(<F=jp6XQdxZLt^Yver;MI-5T^yy5)UoxaCAeX|-4gBpSb}5s(|+PLu$`Sq@lG|l
zRMmM-e7wIto@WuEQwhco<y)WZjEr<U-`Ap=kpssV_=ADk4Lvfd{2%SVH3BK)p)>!G
zm3Ttkh+=XD(Bd4~60;VK%Seb|&K39nXMBTy;2+HwLEvfM`4UiHPcr40x=nZez}($O
z7wf~J%U0{*ZrxWU+CT<pX|S_ukApUT#m}NHe0{mEnz6rrOuJ98^BlDGtNz+m5%d4s
zv0!4DRGe5oxHWJ29(0Th;_@&#FDdQO!sOk{6zwOf$s4`Ni(0|(Bd)fE_7Kc%JIj!!
zW!oc-&Pux_N$%I*-xM1EANJlls>-c@`&ASL>6R80kz7bON-NUc0@B@G0)ir;bS<Py
zx?Ab)PU+4?=Q|hs+0XNA{hf2(GtOUUjCTyi9=LU^b+2{LdCxh&-|KT-FSSJ|Hd&}G
z7Wiqck;WSQ5>moeqoY*cwk6q(!=R^x5kz-Z=$WR<%!z@(UrLy}O$_81GI5;ef`ZGe
z%)*O5jt2^N-GKLp=O)E4sjWcfTSVA9VAQ#Hag5wQ(YbImn5N!u+WEc)s@Rz63=U{o
zZ$Rb_^6rq@W%V&L8)2!YIroy7Kff5ny*!AWw03!@1@Dd)dIm@KSd&rtHd61~$K|bK
zqY<~21#4K8cVr5sDK+gwO7l#&YKAl~<kvuk-@qNI9qF@ne>agPpCZSZbz%L^a8M>-
zZnwygN=Ofy&mECI_hdXTP);bH*%Su8=t*WFWPMvR#ZhIS{MDz#(iq8W#B$Y2zkxh~
zc3ONp$r$#8x+??Ub;0~H^T!QC>}kBtn<A>B_fh=dKITWHJc~ZB^$kKEt^g&)(o@$(
zI=K_;;U~7}y{gGh&r_s8W2*oZM79J=vR#xb=_qDE&X>{j8JgYB6<-ypecYKRzs$B;
ziVGXfI?LoMx+dHRTBUE{H1e@ILHmCb=Vg<n#v%|Tp2~)X)uV(-yVX7{iUu`tEL$_O
zGlkYA34FODv+<#)S>)`Bh=FuD$~m-+(>5nzTY?AWtBK9`9Py3v)ar!oIlx{O)dwGC
z6Dx#oI8#Bj;5*>amO8`y89y>Ti}MxV0v3qb1~J#q=QyY-=0o#84CXJi5MRb}m{T?}
zl|IWaXry@Sur(v3?a9-CnOTJNbiQ{D7e8`vOzhaX?ZatRo>FnJHR_R^>i4lhyTw&m
zwQ`F)3<Q?F+BHt?M%UH{;=1?Z?Z9#7WH*|VwHsLS2Q<PmOAO3YDHzu;uBt(h*@1H$
zka579>PsG*&xbXaZ)6m9Hf3?CQN(bD_E-oi`e=IP&Yo=_kZgCIkjWpO(l)pnvUAgU
zgsM>r`p0=L5}!DGx}2sFROY<l?)}#+3*HE)Sc6L~TFY!kuGjz5GN=MA1I_s1PwJ;`
zhQ!?4IcC(MBMGfIMxz8F$bZ{G=~DhcDDs<k{;X<7Ag`Tg2yxi#?uiH97f%sgHCnH)
z(QtZQI6rRyx(^;|&#dshQXndj0K%AvSR}?{J5gzy;Urbilj(A?*ZQ&9b2BDH#EDkn
z`#L5WnUu&UT&(N+<(`#dtu>5VHR52Sye=c>+X`FJD>Qt8-rkvH=N#;~GsAYKkJDSY
zK9Xx{c3uq3QUr__RQ{NHyzr@~C%pS9%1R0sNN;!_A2D;-cTy2mET)D%%J;`yEX90Z
z(|n#c0IbO*ZV~ekqz$!y?aLfqF&gqTT)HZHd7*=)y|Z4KX>83$wi~V)Asx&svBTpV
zsAwK<xps`Icx@v8nQV(&sYm1vu^(~u?v$sB!+ZWX_pwYCf^6J&@y=rn_H002{LOqH
zSeNg9-R(KHt)>(`jx?VbOczUf{Q0%45k-@A;=z>)uvtvPDKtcBZJN)=nnkt6K8QXq
zwH%GCa=esLIwapkl!S6mPtkYg-8Ga-sL9NfNsCPgZPUadro3ip^5H(=By*g(Ks<O=
zf7_wq{x%4y&aWd82Ktc5BrQ$rwZ1imGwFb!DM_Jw?k~~St3CSK<|tf`w(0mXDojIq
zk@-2gvYd0uO7u6_Z56*SA=d|e5tMF~0*ML}hYoQ<Z0N-N4N}6O){0+-iaj4e1W|BY
zZ-_s~c(@vQE3DUBN9f+*b%%hSVJpE31-TdE`wJmwjV#ckGiut^38#&a9LhT9E$Q%Y
zB_F(`Dy!r>-n=#f!i%jcuwh;}8)zT5_^M@bGS6FLBd}<Ex5Ir#_C!~dB=M%01W?)n
z9PPN)%nrV4#|R2zAwfX}yfxs}Foog#mV2l7goHJ6BI{dN@$h-gO)nT#qSYO`wL0Hb
zrm%kmOE@02*477jxnsfxp3y8z4A#FJV4}Y+PGNGN4e`UWt`HyKKJwVJ-kGT_$_8Y%
zR5HgA0*ACPM*u^i7?(#(x9sj{fsRne+x_J3`C5S4wit9|1+|VA=}Tm|<iK=&fcBxp
zbd-^L^10$WtS`^NiZ2TORd80I^ak*kq|ti#J4NCBjp~;?1)03*(Yd=?mB7T3N8i^s
zzi?o}0U7B;|KB-o{PdSwt<HPA#>Ogxf(n9*!EhF;1nkcz9N9nRiA<-oGN*rQ;F6d3
z{!T+vvtm+3rVo3#`u`T>F1%lz*m^<RxsGw{ypvE4Pl_fk2#PB!LCNX(Z=9Rt>3-l#
zq0PHSQyFuCXqnRaWE~}CK(zNSoO@yS`=2=XlPv;EbX!)C1A@|ySx4_7lYAd6bzf3E
zzU_!zuXd!$lNJXtD14uon~lgZ>id->wUIHQ`n}0iLDIKhKQ1^+ET4a1<6-$yZ<O+f
zEc?yI$xX>EfOD5t>{cz)t`#kGltonKPL>U>+_^8&`z6>xg>y7rQR1(#=*^Te4znp?
zpE{EDzrv#F!>ybDfpc3kk|_v9aQUZw*DepfNsP8hf%FK`xjDTt_=#m%9X96r*uRaP
zTGJt1l5R8#!kJ_39Cp6WdvN5@W{VVl?)J?CJ+^nH8D;sEWd@5u&)4JPHv5ew;~%5P
zgVKCdh)&M1WovFWI3->?GyDj&rgAkhc=2yeozM8IY&7F@|0R7eC{yYs*OwqL)bEY!
zb(~Rdbyp1XhP_a6Boq6lrOnI!<UgVxS0^6Vqwly~g`*t!5rzKMaD4;h{DLIQeq*G?
zmcIC}P-T+8LY1XIUf-wJtWt0Zm3LS10#3HAC5F9ZYSj+8VMZZ*3&4a0|FZC{bXu}V
zpj@TR(onj*g}#>AXTBNhXf<U)5esRmWZP%GZor{wA=^m;$did(NFM%C%V52oh_V-r
z&bxqk#Wf#<Dcw!`^d;1UV`cMpFF67)?D?fCzx^qC#43R?3A1)&cuAh6svfc5uctD_
zQg`4gEu=X0XoK$P`SNxfqlU*~A@G<qniP<&%p!*VSGF=k;VnOSw(@iHiIRak9kMzr
zp!9$XVuVPp9xLZD84r>>=<<AsC{r&_emAD1755Li8tt%+{(oSrdAYr!5}ZBmV~}F&
zXbS2F#GtMXx*E4nSa^4|PJ9=C5L#PV_nnL*X@^|<xY4&qGH4bo(Z{+GV;hLq3*>wA
zbZa-=#yzfw=P@_+gAn(UE6c;93u}@r#-0vF{#o-UcJA7W8eje;XMf>_{cA^FK79;I
zP}ufeHbwL~x_|8uh&u+}lyai~i94<rZidGlyX<v6vR&>{yB3&huNgY&hUx8*h6FbI
zf>ODn<~$#Wo0y5Zb>}yd>z4Q3S3e+vyibd-#)M*vmMC(04?=@AT%OgWP>E~3<S_y*
z7DOucmr&eaia2DuuTP%d%_S0YTLwqvG)DQO{`Xr1K{~9AKq^&EV`i3uS#uXC*+e8`
z#|0e=?pKnFg`m!~>l(n9YD|>dQy6;Q3kLFLg1j7(--!Py%Y5O56)oV&pTK1+8k`Nf
zstQ0^dW$&8u@QO18HfU=PrYjYkk%C9?8X5-xexlmspYgjO1Ih*-twg++LtqD3uRUX
z`nDO!M7L*ht1&VME2iblT6GMIGo+<RJ{?aTR@?nDvwL_SaW4)(M80#MYv}3zBdQ<C
zVNlAhoCjDFzf;c7aeiDf8L&f3fLk*%!@)n~;od)<{vgv*&Q%kk7I|_<YIC|uwb;N~
zlo@GL6$^2r2G<d34;Ojy_sz;J1Sni3jHC8)N;v})67al#DwiPha!k`gvd{@yg1hHo
z{W^mFO0cz(O~%e9?#C%i_maoq>-%cnO54ueRG__zNTQ3t`X`!<`Teeyz(IG1O+c4w
z@nfU8<YwGTi(1~cK(zJtf{B`+I<f0Rc_Pwy?gJcmycB=ytK}mDH!go*(6f4WxB<Sc
z+1Z`xYB3TbrL@pc%xsNH=B3_5ZAC;kvhT1@D7=81#1iEB=Pd;KS}!`#o2yLziUcRX
zEc?sJs-+;PlO%>K>(U0vkT~4b8dbTLaRO3obnkyvAazNsK)WN$G9N1UjX;l@6;3_A
zz{LD<*~bxhqTEC>r&DVAy(NcV+fUT}Sn|7jAJX4){l9RHU!Dln4qM4>ZEX)R;z5{u
zHfa02cXeh_S;1Qn<TC+fct$~^-`C;Wm{uZyUsYDX)*%H58pLHWDTh_Bk&D}n{}ba>
zg#?GiYz7I)UVy%#SuK1+lVwrZ)ikq<EwO%OZTTshMY_{&r3d<I4)K9e;S$~B1<yp`
z&TGw=%6S@C6vA>cVD-v;`|~}eXFRa+TF7a<mpk3$aCLV}P*+zC`APT&!m-d~(S}Ao
z+%Quh<TQd&qvF?oJjeh>EHxdBB^t`#C?bsj{h%HgHHBNqYbQEitp5NmUgvkmVAEfz
zBo>cP&yRQHL8-8*Gj@#z%zRvYe9=k~J3rrOAhWj41?uPj$9p8<8<=O@G3|1c&SiUu
z^sgd&BU=!v0XD+zcmZUc2qsZaoFDdcmh&UQ{)a^^kiwlH7<FOd?P!7jy7@1@!Kq6b
z<$DW%pawtS37>ECLuN%mcHpec{b_H|FkU^{;!#_U0KOG~kMGw-5yid-e>c4Zrq|cl
z;N7%mltMln7QJS&-U)$GTjvWH{C7SmW(B+jH&yzx?T;ryC_JOQEoY&%5Ii%)#yJ1d
z@Bc0Q{x@m=uU}sLfM538sC##Q2aUYF;FtXZ5^{YHT=uof!v7`u|JTI!mVhG*n#7+`
ze_!knV&KR^4YvmgNSyWX4HEjjSM<+|yGsv*P6!UhOiaH`PfR2uc-#A6|HRS?cy))c
z1^<~>`qzy3>%af!OZq=w(*GYv(#n5OKpR0S+qC3lF1b@n8_vHEaKF#tzo$<HfQEQE
zUMBsvtpI=R1t%Rht)9%FX(R8ccpab4%a>gIV&kb$Y#5YHT-U)|9GCrh@4udAf4}5^
z-s*)L9QLVGzSa8MN^&CLYIs|#x!-SYaDIDx0zX3~kl?{x$8t*ZEV*Y&skpQ<sU^5s
zw-~mGrjl^We{DahP%pSnWLYyidi~XPr$^G_t0nZlgM;HyR~JulHAnR<^bSHlJo&ia
zcB-Tto_tJy8|vOj(S|~?f3b9Jw01>o2b;6)h-c<M#d|H3U!yBc=a4^J=^DjuHYU8c
z(3;W_K`Zz5$tztB%!8ZcW8H_hHCFV-yprMh^s-X7Mu(q~Be4D(@qI)D|71iMWU+rY
zsQ$fEkrfBev}e9M5{etx^Q5&$(RG>|tGDxwzbFiyC%m!Sx?&-!VGk|Sb}|~g9Aj)#
zuQ=v*=Ul4z`A+dTS%KG;S&x)3x$g4*Ktr>{lTZA7^{Gc&6Sq*n>W&KHCsr6Isx9k<
zEag(grQn8+oYwQ4o3>?u)H5tA>^{G1m2k|jHw51{Rs$mkqUx4OWtYHNy*g%Wqx(0v
z%1aSE4ppfF7Jg@iA34Au>JGuxLixE5;P<;0>1Fj?i8+!Q)sN0_dZ=W=ZSRmrZ7f))
z#)pVRRTu9I_2v9Wv!wb<TDX~ocN|ZB%Py)Flbz~q#nxvIS>E3ER+0Dxnsm4jE#5gU
zmb2;}x4n5pAVXp9D%2>pq0#UDO4W5~;txE$$RfW;-x@t_GYlpISLGJywSCT$mor1E
zJ-wh`T3Xjfc0pFm{fYDDzEJxAC^qa}WbtduVmKQ?pwK!X<th0C+D-ln#)9mtS^xDT
zg#gFR37j(z_eZ$`OR=|l>pJI<_gh%IUS{D`E+e+jSlFpw>x?^}Id_YsjN{C@CamKF
z^8FSiGvE0^N?K=Rr(~l0K9>8`(jAz^;>$-Pm}B(<UZ4dRqScw0xZE2vS5(fa4d)Ko
zFJTyn_XQ%l-A<T>OxM@(uEH5im7-$vJA)-6l0qF2Dtb)C9{7N9(jVZ(vAt7~=VFQA
zq*wF3WF%_BXI4*16uT9k`0I6y{2gQo06*?GKw_W%0FTzGzQIW24j9}{yM2G+tb*W%
zicq*|XHRHSKo!BTpG`pCH>rcZf6Cf!tj#K#2N|<XsCt8jCRv@VE=&96PLgrA52@9!
zM+`^WuU}zPryGE5nliIIWZN$G(EHxeFWz>P5V9_|&K1$Av*)D%y>qLt#rT1DqYO+!
z1Fq0D`y7A=)C*g>(>(C;hOVpvHueEzcWbOYTkVHk^>%{xiU!oQO+zXnCwvC!-n{UE
zC(LmB2+D1{{AN7h`@By%yyj!><5uH<wCCpL)yMn$s=X@<KGo^!4`GL54ZQhjkBj&G
z+HNy?7*2DC8*lp_oAANtr`-;wo|R>FZiI7~Bk1v^8$fwoUl9jSr}MlAK0SL`f_34P
zi|^iSF`WHHEG}jZ0)IEGfu;{^bTl9+MXBp_v9L;OY`th9EVS?0%@ue*6nVrxHLEw^
zbvog6s^;3I7c{G9K-6|a91mf0dS3CGPgTgWCyRff1eu?EndYG(qv#aS5Dd)NKYGRd
zufe00oHV-4A~Hv?rU%y3|4Gj=Xqk=S>nE4`u#e1Cfre(b9I)Q;`>b|Cm|GZbi&m=x
z=%<-Zkxl56_U0$E*8x4#Zi1i=o*HkABU{6{oi%I0>m>Tp@jZ?Dx^FnMwT5PQk=aUf
zAc5U-m+I^IC(rdeqQ7XlA1ZdT>wUegz1(OH_W0b>b+-OCD;=+pah}>CU;2Q^anPi~
z70}}CfbtPjiT|qeIs~RWc9$(^F2K+hWQ=~1dm_!afsT%zett|Y1L6!cOaRfysJN_~
zRDHbtv5(F>oLiChbrfT6>zqa+ud|@{%a?G^p4U+$Y9~h0D?0CLj1KL{*5^|;{D4w{
zy9Z(@KP=zVW9D4dJ?Ok@?Eb}G<IPqS$B8pHhJC_LRbDT5kG$qFkhs|emxEpwzy;Gc
zc!zbwS}*4KRp&?uj~y*isN17jrj>gjmY<{Wda5R2tNo8bs3$w0({AW|Ks{CQyKcdc
zI8^)Z&VC3LiVay|f{BEVfI-fm3It1X1F5f;W_R<QPMYalzf?bl_CLYLA{vW?q^|TP
z4x#~=K9Ml(P0Ya3Qy^jsf=4rSj%LaVxs65jFX=VXo}BFIRXM|+HiwXFJ8eoY?7{F|
z&!<{l=T*@K!ob%++8jiD+N(*?R7{Td{Xa*Jzt_VGLHL>JS@V15JfuCT87ILAPZYF7
zHEwlmB3WwUrB@38?M%b`aY|k(*~qSyW?SxKjzs;D+@Fl!ouVATSJU`2hxZt{g{pg|
zGsLdPyC{Th2WKEJF7e}&^zT~^_)t^WTl;lOq-Bs3t)#z0ZuF?I-BV&hI}#Av2%ah8
zVh`JWH(D>nSmkj|b6H9i0DWLhp7FUIrw>yHCRr_0e4Bv0FF=uCHG21MW=F@JCeH-A
zcj>*^AIMz}dy&J8ekM~LoV4pv)P0gRS1V7=R;29=jo28mR7hXk59}34>mi-BJ!3MP
z_^etY4sw(!$YQg?m3TSNzuAgqYi(&(u4N>O4aSyk=xb)bN%sAi={Y;2kheK$5;n3F
zL8qMM+RHC^fNP}35#zMVwLPj$i7J^B7*c8D(O=!<Nw_s$9)eEFO-X(apH?CCb&YB~
z5nHAhi$QlfA<IhNprQ0qbctDiICqI9wd8JLqWc~dDVNI-Q~Sb5y*7EaN*&2G7KT6d
zC7bG4w9rL?3e^n9;<+V_{knolSmC?=DM)>A8r+K#v|xg^;@e{$-?!iFlPbxn8?;vT
zJJnx~cSbQ9m<=N}d-Ce5?<WGf*XKv~+t|AkS;8LF>{W3O8Dw<^2gwG~d3(QPH92@V
zK}*Iu3AP!4nf$=2Gcaqnd4e2!(&|L3mRc}K1i622V9dIH5P+0xpsFTHxEv;+&2KXE
z{W(0MA`2jsyo*uA7mr-dy2cNRR|ztxP?lf!r}jVlG8ct%@&3oS#68O{P&Dn@VqXEE
z_4lzt8xLon;+T+X=LDF{u=$cprrAk{{Y=!hk6{lqjo<x#U+Kmu)zdn1Y3KnpAMSgk
zx@!`C8((yCep;=vv~TYbXTDL+S1IO8nP-eTgO}D^sm|Ldj({n23*Agcg=#x`d+Rdh
z?W#PWHjS=aj}|cNr8Oiyb{vM}j4JB;N7XTHXY<wBd90B@a^g>&61JQ#PCj0^8Z>t(
z&U@gTaRd_i*ErkA&+^x<Zk2arN-{F!UXa;lA>iH|cX7On=Z_CSDrEp-^Yuc$rR2wE
z4Y1-xo`bl{S7^lSsPZbU4o4pi1uon^bY?es8d767EDoee$fNH~HS;I%yT>|gPtjaE
zthir%c~@-E{aM${viTEU(>z<meA7pv;T&ZGa)A#Xo2~YMJbUv1xsqJN5;%vaJ~RiI
z&AxLuH}p7yUiIq(+-Kj|$LUW`411xk$TT<tak$vbCx+&Bkjk3hR|O1E?V0(Wx0ADs
z*)A_s=5|e}>fW9M0=FiyZ_+{27q<%&6BBXwH7jlWj<%;IMz7D~#PQ(9WpInPT+t3}
z!5Z<OpI`rR;%<SP478wS8IszF04>n|<80XIEB^-_D{o$FD|Lv|cLhG<bH5UZt-F32
zG-c<<*_F#ROc(mKO0n$)!8UK&QE_jFCeW+Nmun_L3=^4^AHxutsgoXiC+Sk#dSeSR
zm0tuVO9?ef;T%=*6dLl+sMd+B9k5m@dc<iaN(#IzcGN5$PggR*$A`@D)Fvq<FcPy`
zNVQ&{e;PKvT^$reG?KA%-&3zVBGbaB#cut8(0_~VGJ8<E(G!rF5Af*L3KBUADt0<8
zG!wRqtE>l?Ju^G06M5JGnK_UaU;c{pTVP0$BfxdfvS&wet$ux*cvsvN$(DopnzsbY
z4G*8PmWw5$-R7dGe4Zy51J(6-Q>s~*GgP|Dp_psLtVZk@k_o`fWl2`YD}*!a6KVEj
zzBq*ITq|Nxbn@3z{O3)ONp8EVM_v5mQRHWh<qE(n_Pl%kb`cp5`UeKHXqvl0KK11D
zMSlFXE;8q3x#k@(pPi3_B<+Gj0djk~&8w3ywdFw$rP-(TXn*?jEcyE92{;t*G$iS#
zG*~@@eMb4gl)9f-a0Xw&G911`wYj<co7)n$xR;YE`Ey2v^gEUFV0Cun2ijHfF7Ct9
z6kjFk?ti}44A^@^X>NNPe-RDu{Z@@LESf_CBcp1Yhr8F2bkuM=a~KwGzFOtER@7)d
z5MgIE^8ByK^{kG28Dp}jL3QO)^RRQ>K4R-+pu*PGZRuiwPfLkw!vdptd!m*)SF1R(
zcrG2Q5y<XhJ?0{x?;IQ)M~~mzhaWyLvAic60#|@s8}*B-@RG9t%HG#&0^}DFhF`{(
zL0X7{*SU#&bSKD=mj@7yIsbcgka*TzNY7+CS(dA#cf374-x%B2Qq?i$n!(~9s;Ez?
zHZl2YAIz1<_}i6XV>y}$+`+vbWA_42*e#}>@!b`D7v}e=tCfF`GXbY}Y*T(~qLk**
zBQKRj0wt5F3hU_k_JZKTA|TA9JFuev{hZjO1vYriGlk`AmB5ms#u%qBi?|HB>7;)A
zfG{f$bEx+0Q;>5NT}_YVm~%plMXl7&UZMIYL39twoLSJ^l^FT-FCaBr6Jf_C$a|6Z
zroIJxk`|kPMlrSJrxlLSE=JobI2_V6VQQ&FqN5Dcq%}<XiDrh#J$sgzqCLvxS+V#D
zGo;qZoB(4`<+HvNeFY%b3r{|=vVqSa_5nfee5EH=)b9blLXM3y5WJlkcGe$kjP12J
z9Hq0b_0FP7tDhh3WJp&#aQN!#&w5C>%;sEeS2Oz4v3;(No`dKSFdlK#dFeyoSZJhJ
zHD%Lavp*d`J4@Huna+AARenVRsVleV)%&0*)|u9ihz^?!^Q9L_2wi|v#zav$=`=fP
zYFSI@h)5OVsieHhQ7A-M>WcBXx^&C|WGAfiS-W~fp=Y~VorbE(bW!ClcC@4i9x0}k
zm*|7NXl(NWalNzfdXk3WD>ml`XvEK7$LjaG=K7)?ZMSNT1}Ad90;HKBuYkhYT=mPL
z0uR1Y6Z#vlvx{E6?!C*wwyBCvuf4tLD6V#nVU(8X)p*hH%b}xjYV!V8O@5}}xzAip
z1o^NULkh|e3|A)JCu7mQaj1j?C>ZvzCZCIU8X8YYVWHZ$!Wq?NW9*zOjjqh%PJsn7
z8$7PryhwZ9MQ7t9sV2~*_Z*q=s*XO#P^_)W^Ed1LYfb^Kvtu~NIIUvV9RJwhyoqwM
z#(6(LW|3fZT~Yn{wav9(IGv$XoRA$@r*4+4Jeb1hC17>peij!b2Ldt4sQqQXzJK9*
ztN@rhb@jHh-?fy-KR|+b%3Hw>5}Ya{inouLHjYSVGZLyDY?ZFI-E-_{)|}Z?E;L&N
z_u!{KcQ=SywN2$NQiM#N*g+z7eJf?r$4mG;d;9dqd;xII8FR{$h@_7>$ZHX-`1b7)
zF@~KRy{m_wHwi>h7sG7xxs<chf}ZVChX^6_yU<>F&I?+U$rFzpIgluq6@9`aO_di|
zJHIC&MSr08Gx0Ua{L!zUKKm)7KmkHzZZVvV2e$RncwuA`aaAUNdjV{My^ye&hyvn~
zfuYnC6lf1S4JF`#&J%IcPMZ*5F;bbi*gz@bi0z90T`?!Jk>cXB@mzyn(N;~^>0)<W
zRM9)ExlTW2k39ccq}bX^xPQQYK)rU?8X%MGgq_Zo4W$X1X4yV*xDqL}7Dc_VxIfx{
z%qvxsSbGxF+GRFM?2NQm^AeB!kK(~Hyd1I|QYgV^ryM}gm-~nhGfB&H+9t>VajGcm
zv0^gkP^sHJnu2Nq5;=qQnYe=seIxOJyVlxi(jDn3J!ylopM0&&f=6kZTrW1MB&S{c
zS}ZDrUp5RvxeAqQdhl2V>tM$p`Bq}WYOS`DR>j6CTuIDIXv4g-@!m*6glDhD>|z|C
z_7}QGokZhV?v<ZG7sAaJ57+LP=CW>&S+n{$JTJggUFw7HhhKtV8y;S`&bC2xLz$-R
zszoyCtV(<lc={$)w*K>%=4!{w&ocxRh6!nx=XWw~qoh&yB3145kNO(l=W2VNwx`M9
z^{nsNO_pu(WG<X*F3y1$RN&)2DWI+qk+?{Eg<p$yRwba{6aPw)LVNXyl&KGMy)e|e
zc|fGa;~W)*VTRtEcpxf-kj>^{?Uh=l)lQr2o)-tF3hxkuN%XJ#arV9hLU<<jUP$JX
zApBFWzN0|qyJ{eN%al{S{QdPSzg+*Hy&{=YY#Sq;LPt9@+mD9yq={2nKT|`6;zffV
zih8h-)Sj&sJ*F!>AxDun8MS=Z1qV%Kdbg*2jhHKgmYy$oq!ccAa+Hmu?2S!6ah;W2
zBYwWz9m{It^otnRPQ(dgO$P~oV<bzY@q=4FI!mO|${aj^G2ZD#HwgN$-`9V(QontS
zmnIn%S<Fr&--3#stR9D;+uQ*M@#@UMsk+KkY~?iV>>Wt7N-{OJC$r(P)5hp_5A4|B
zEpG%{R1|#1bPsJ$y<c;#cU`I2{QLN=b}<iej>(pWBl&ElE?wUXInl7|>XWT=&)RDy
z+C#xAstq#b?^sZz01>&hvSz>arH;DN)@rOk6{qXMRbDh~V0t4P5?l>Q(5`9$J$}tC
zS=$dQhh!Areqq=$BYFF~ua9RWQnc6}c}KZBmu_$GJhvx_giq;T4{qaI6mq`#IIM!H
z1h6|A1r~Bo!Hb}J^GS9+9M6K$)K@rq35YgVS63gH81-5{E2uizF7y>GHyswJgm}tZ
z6&*XZPJ+;ar=3<%5u+u)hux~NT(;@Bht{MFY9&@mzFlNTDw(YamEkl(0wny-`%lcL
zs}#vP=Nm<Xh{nfsu!vow^$LkyljP^LPKBhlQ{3mv3Ni$WpM`c7oP<td(?eygb$jTU
zJ`;1~X((S?^YN0s=8XcS8C{5jP8tx;5Or0e!sr1#h+5p~EM-Q=#3WNxk}r+FJMRh1
z=CByw{C+HbfeP=`ppt1gRxN+TgqVK~1@cldfs9wx7JZhJmVHA1j)Jb?lbo*@s@1(`
zqDYU{9723HoW=biirder!=hZ3+W71!$3&5__v(b5>J=s>!iA{><{^||zm#_8yF4p{
z<oa%vtjEG0&yd*#g<b+n?M0D12FQZmri%hu&;w6{#Kh|8Qa<@sPC3r;51-Kd7~A;>
zAXiEYmE!j&KjXLxk4v%jJK8002v;3A;hF^Vzad;fv}<_P;VKmd&Ep!%&*Ur<`aAb^
zh8Nl$9JQZha}S}YOP?0}%GF4t9UyTf)~I=#H+Z!(UL7(~vh%F7lCDWFPfsj_(n3$z
zct6~j)$T-Gl|Fe7#6UBsm51q%+cww72?{%Aqr(EbfxcNzX%DZsxWuX-TaBtg0qx4*
zRvLl!lSv?0+1zp|x*CMk4<zC|Z5N86b9GR_u-w`z<Y=$Ycmuppt`GFiRvV9lDBaI7
zSZiLfn+`<ZL))|j;7WnAa6R{7P<Kw$Im(W2S&~<74}e?SqWLn-REp(zd3)c^Y}w3c
zMKAQ+%&GqWVNSU$xEO7#D`>8Co9{-P0|>137}T~dXaIJ)oZfLUUEQE(S}PNhn<5tU
z&16T({+Z$L(}@!`{ywpt^$6Q`Hi}X{IOW~UrW}twxzS4?mjCyB0=k(N2@XTcF7hKe
zyM-3XDk|Tno2QHbt#0yEcRT6Nz;0}t6UvIzMq~NP1lzs>d@H5{ybs`ogU}fT;b_v=
z`Pew50}Qg#z#lt@;~T<QQH~UtQDz$Ukuo~=ZOg#HFI$m@Rqtoa>vItWWc0$0EJ42q
z;XIBOrJX881wnpJ@o?j8aH!)rieZsYfAfWs`v{?xlE;=$BiPRx9RI%h`x3}SqC^Wd
zfDqE&wON9J(6DPx5(fXyrKXv66^&N1^?0hIgK`h|HW;;`pol#x%4T%+>kCH=6f|cN
zcPh~Nq<idrbJc%WZs4Eb#R1&;^?(SHUpn#$Q=09QpAibibW$R_b`pxi%!*CMs~3E9
z`l;NOoFLw!HAnv)(q3%1xY)u(U3zw^PZXKVFxGj{;rw`5fA)5gR$I&WdSRcac$On-
zK+Og}_=}pYZK#IM0s|M#cQ@2*lR!&coZjLMH4Ex3IR0E{kV1ko2U2cgU0%gVzO6SW
z?q=b9n6}3v$tLA4dmA+5=)Fxkv7CSLvP<Wh{7DRemj&=+`(cQ6IOpg4(FW)79DtXd
zE<yx}5KVRBt5ql1m7~g+pAS9Rzn3CY@viOAu)4ilb$e^+Uum<F{BHiX4X{8<T@4n3
zF5)DKHlXmObq4p#pu|X#y9uk8n@8b;;`b}W86>=+i8%cbPd*n<Dj};NEG;r;dWCGd
z8gyESeB4OB1MLe1edp6@41s}z7z&K~alOTA#hK?j?7SyV+!)<0-)m0TCZD6&P9=b}
z^XSQDXHAINbZH9gLe3o=hsOI#51KcUDlKL06FADfVRcsIfN8sjzADBL>*umjV3|K|
zx^+K+N47kVf)d%5iw-6;dYZR!_8rDMY<~@8ySxU_Wx&jW@lF1}F}^in{)kv81m}Y#
zYb<E_6U+Q@uuX<4=fMI#l9<k_bJs36`oE4^WZu-$&^~aK(#OKj23U62Q$gR$LVC40
z0nfTAvm^S}nO%H{7JYfK)#t{hqA~iKrg@Gf(me36XP;S80-6_~dHCXQ8yAl}!ue$5
z0~+x=!lPTtsR0Ycr09Otc58B~ANa-;v#|HSWL9bd<!|G@jqXo!l<S7qz}+CM_bghm
z+JS=H{Db01O+sQqSM>A7U5zM3w^Wc`t!9fA$7?$mS{2`rvvIPwP~z^|1|vo<?IdYD
z3mr&*FRtN@3BlG$q5Zw&9`F*#0|H<A7^l&}3Ei{nG3$hTxya#hPuaU)dE}=t?Vxjz
z6AISM{!QqDB4fnE8i`!FFJ`Zdx1y4g<9iL`zp3)%6P`<~ycU(H{_x;%D7dxZ@!Mdn
z$st;ibj*CIEj3oROg-^87H_(_(N^P6Y=-eD$f8!5#14trmcGB)lr;Cd)_o0~8kvMn
zkP}M4pXKaX1ohDU7&b#Pv@>?!jqhvnW(^4732)OREil+r|FoK_X=A#Wr*<?iml<nr
z;9{P!p}_$WzdKPff2r5f%>86H>A<Uv>|2Axg`!QI62t0XNHwP~>D&UaD$GaA+on5J
zauyPHdAlR!Z$+CoHs^oZEaB&izFfC6Q%BX%xD28TFYlv&UD|A%+851%^-bNPgLrg1
zbTyDTE+=uE{Bz9ihZl2etqcI|V#{IQRDEVuPu%3UeOY(-u%*Pti>tLM`gV4_r>DU2
zIV}SwvvQiZaMndS;0#@d7X|cCqy0Xk_i(pr+BdHsibauX!o=<y4pWy7*?TG<Ij!~B
z4=cA$NA*Bh)TLWHiQ_9Zp=Dx+G)znZv1Miq0yA=x4eG!gos4u72r~lc5kToXz0qF?
zYG@U$h;QTk6;3CCDp!QR=o16^BSjTetrg7N_AqMY>eLLLBd1m!1@&?Zb2AP@IJpT9
z{$X(@qj_5jV-CB&UQSdy=F`gq!x^~Y&A4w@@h|h0o&;v?GBeeVC`h6Z;mi*TJuXyw
zNP=I1y-S}bakss%a?dzFK1I>PepTSnVhRY*3d+}ptzs?gKr-XQy#9x#E?Nw<PNO-}
z$qvQKF)fGps)ww%xyB=FwQ;|pQVQqLt$FOC5EZO5ck@}P<7*Fd3E*|C@(y{^9Vrl=
z_m#+V6FjOH%o?_MP=oWPxei%9;5hf1>&$+dD#b0B71?;y>no^k+(nl55~)XazST0B
zoP)VDn>(2a^C!=-Xs7aDUc^k0jhJ%&Vq}prOi<sc^gWfVw(jfG){s*_TIFmbcFQnj
zEv2cwfR*4|pXhQfEYPZ4*o1LoDTG`;kwfYviQ{vhh+}Gd5b~Kcg`jH_0Q<Yd<sR)9
zAZUnble_rm<k%hU>$=*6?GgRfENcRe{X0ttA~US7$tUW08uG`28qz;=#TOTc)}<$l
zI()olUZ3W8;>Li2FL1glq(^S}y+^3{c@9J^f<fAkYvxzVL~7*rgViDHBMHZ?RsQ-4
zKB!IEPGGP-7^B3aLbmnE>)e(WJ{@9*?!fs1rp=nTzif?am^R_E)S>8-5u2#Nppp5g
zJBCYgi#ZYsxFYyjn#EE4*g1RS3Owtd8<D-c*%~Y}s?=Tqx5};6Xt34J;m=CTJFhNk
zm2k|<spH+Qv+{_kw3!*)+rMW>w>76XJ}8@T7PREAUeiOqU1C1{^>w6^{0D|bF3+WP
zJdl?7_>!Bw=?;&t6R5}nOX_Uof^yCyqSh?8)BSL2X|j;mRNm&jpB^3_O<!&|NPwzT
z3P^?Mpxpc!)a=j^7RR+{=0ss}d3ot~avFK?aJ0-^y|N^KkmPl_NFaXrqn8Nhl+1VO
z{ogMQfj#?t2y#LiF^5GTNRwS;RBryz5nM?+C4FQ=AUn^zskpmUKATR$Wy8skSJ4Vi
z+b$G#YR^7#fEm<$$LkL>?MJcj26-%c{I-EuDP{<w(?XeMhP8S=mVd=k)4u^?*pWs?
zNCsKCamPTONTyw0A4JP}rPq{k0Hd>qcqusr)3UWk^FS*D;~ja?M=Kl*az0kx$Ed5L
z{%WO076%Y!mhBpG*7DAEl*t8ZDH)#@3U`a40)BUa6XIg$$Gu7M7wbb&-)m@^&QFRV
zMvX0!MKfuE1Tth;uSW(CE>3N$+_+?Tal08M3tGQ`blLudYR5GYDrG0(%Q;@46Luh#
zzCKoM8z&U4rs<$Sssz{y$5i0-^$LeBijn<nIZu+!@}y!*on7`5ZrMszZ7q<HCn1Mj
zMaGGNx@+l$S$&i85$|D_QJ&?$n#4APMN}xy%ER*KyO$a}Txq*>T(bq@N8u20STzDS
ztZ=!e+QAO0olSa!5=WX$@h14sRFK7<<13Cj+Y)o`pd17A&2lI}XHhvN)}1Bjuv`5q
z4MX4ovKaA*dq)Sa0_+1_iA~)`75@gWwEZ;PaOmE!peQ)sE#y@tZ#uhxT94Q$oFqOB
zjH=oOB=NSE@-QbLiC3yk;3V;s``U%v<$PMio}9*5FnW*Dq+VTpl>0dY5syo_e7-Oo
z@Tx+Kv$DTS0d4ZS2BrGs=pR7T`4O=vz5#ZRK$eATlUCr)oC1hhe4W63(5PwHYB65q
zCzZ(0;0VfcVIaNu9WIN1JcG=)TM@L19b*~H%QE@&@p`utic=eAKTs>gu^0xQoNN^0
z)|MI%w!{!tZvF7SQ(~#zR*a3`y2K$Ofdu<@?O-*gg+AMvWip)Ilw_Qn9tF`J06|x&
z{`}~+om#iupMxE0V9I;;-<5D)JD~W|d))d=PHpuQ<_>6&@5edGm94~?#AFF&mEax^
zE611hDuy`q+;uWz0*AShZ<<;iaU*-C(iwQ71^vL7b#Yis!9rY|6G>4qJ$%nt&YvSw
zIQZRxoD*_%?FP3!9)(#qO%?K<!_K&b`RvA%>K~LfYx390Vi@GIISxC7x;204R2n=g
z47clhYN{dFiqq>NQ5le1K0ZEK8fn=ep!=_?H3igPfm9>?`p3@_yK$S!_Bg?se!Z4{
z(CiLBbQ{m5v)?{}ntYh-gu0)#vwQNanwkt`CJio}-nRB>>0TXLW3joe8E46S>&;=-
zv0kL7H`ExB)F?KvNJBC6jflhK#Vi`p!@M*gZhxht7uJFXH|G^q9j2c7)zz3FEAvjJ
zMkU38PcN7grloIB7P}Ew{+0p_6BaaxY8{LZ!6y=()L=}m!P5!0;6F0ASAJpWS)=AS
z8r%buDE;}sP+w^D@1?!`W@-OL2Oqp4wR6@^6DND5eBbujs`TTIQUyPI4p&nHS!%}=
zRZKba-(Bur`C*Q!`y8@%l^ANZ!E2y$v0QxmZrI+FW76)pD!T`{Y>uwpQz7m<G{b<A
zdmo&+4qp)%mg%MO1ztwUCDz?}f^SG3-bOkva23>Tn+RMqu<u;KmwH`<jvNw>$F(3p
z)Sx?du51;=D&pee3WH{T;i-9UlbIV6%8JSh0;Tx{<$Nvk%{=9N=mA+a`{rzYA_4-!
zBJC*bY$HEMv*qitEtk}hAirXO-|Aq7bX1Ox^N8MaV*j|MrumonSRW#~bl%3`z--uJ
z_%I^j%`<%Z)%7Hu$ZC&EZU$|#ebij5xrT$~xTJox2Hs~69DuA8u}_xjkLv#|c=g}w
z<xoGO@(s&8e8u}xET1n@G5s~Je_i(1kFf-jTaVfT#RCYSxAHBA-wc&l(SE}D(AJx9
zRpeN^bl+kibZKSnz;kPP!Ia>YP@+;dt%#kWC2x}PWZsxBR5F$c9W5_0kO)^=EPmx3
zIaJ94_quRwyTvCIVmQoRiYgIMzA@!K;joU*hvY#Ms8x07JGKFRO}}rdMazmSN+c@=
zlUt)n!+bVDodbCiQ46mG>Q5do()uqf_Bp6B8%AyrK(vy}NVy3?P`BqESM6+;4>zk^
z<aV97LeRj^R+8W^TSb^V368X~6RgI<NEs*x$BS8_&!}g1Bq?U*8pSeS1&(M0z2ODQ
z`aacpCM}6(A4&AMSfHbr?}I!1_9Q*+R_~vCET+Hu6)<LLAYGlCMaW?1d5-c4P9SUd
zt0>Z9Nog23h$OoN#S;00afs-Aw6;C%+N8C~Ne`h$r|N{nD>Az_&6|f^T?EZ|<b0km
zrzhuidco&%oF*A}{bllX6fI4s4HCZXz;lcUxJjx^Ia%#uc5&1q2|xX#U$=5KYCmiT
z9vyD)Q2`5>H>4Kyxk$Elu;)aF+AW&56E62mrZqut3o?9<E<OTHQ-TyGa}4&q<(V}-
zwmfcY{D9fFo-{dA%*a1KP79}z+s%ICMtVNis<ThjOFS0W!aPS4(HJ>N{l~e@V+!;I
zfC))O4*zP!RRKeegIzZOF7e2<)~o8{%&S~A51Xxz(_o!lBOOj4mDm32yJ|U<|9W0x
zy!LpaG;M~jI<A^lXtXDx-0PnEu}>jrL)}4S2E{&E@gJKp!9qzzKR%0?9(}AG0+qOk
zlSWFZ&7Z-DR<wl$!H5p=W9J$^_t2hM&o`Nr7uL9)7NH_`B5+Do`Z}Hg{-5ZaOV0ww
zzk>lHxEzb)I<UY@>$j8;yfGhI5dR66Mi5l)mHi)fg1GcPpmSP0Betx0nI;j%4s7na
zl0^*X9Aml*^;!c|3;nq*qF!HLz%bzWMxKq6#?dcBkFwN`y|0sYV9TwW1Ok#6l=I@9
z%fE1-;O79%RLr&Ol@adl7gXS~#Efb5hx}5Q1+E4wz712d)daao)6{-OxpRy1cISI2
zDKzwL8!)M-CbIMjp#+hbkfOUz+17E=Q%O%3(6bc%m;C1RfjjVh<5|CR^mC`iax~jP
z{|Lb*qmaZ0y>Io<{ZvO{ZUgg+oMWimT)rbW9ocpnna6lm)JcZi+qa<yUV}RumZ{Wv
zqrxg5rTNdiz`k$rgoxwW>Vqvj?QwLHg9Q3UEqng;{o4_=s_zFr-Zza8CKY&jze$Lh
zF-7h;FHv@5gn`C7S=a^#rOKc;K}_J1R}GKC<JDlc2unv~w^F!1Zb2xQ`!YQ#w_Eg3
zqa?e%Mv3kIP-wpQ_~TjAQ`q>>k2$VDe8AHTHj5E%PI`Wm3{Wba9v_Io-06tODKR}J
zbGe%5LKHw|*LtUzqbBm{tjpo+gXbcC`%Cd3eCKThLdb;buetg;Q{5*=4)O}Zxa6Nc
z@F0R8nFuJq4=>iUE^g>5S`D5JhtC|ysMU@soU3Z6mUi$kPcaC%@jnsvG#$xfsVIH{
zo0Z&9wAKUa5S>2Vmd#urNkv?G)8YLTlJTN`b1W(SM9i#9E}gHE3@jN}TaScE*mZF)
z*_=Pg=7|(P6-1TyDMH~P`E;^cxNtBCNkQ|b4Sah+(31jibfVT(sJ~fs?*{F#Q2l`+
zBm!)XlVS7Tr+J#LMqy6k9vdU(DQNW}<c|q=@4<W6<Y1syoH|ZA0Bsjden*LWtCWz&
zLGw!Dr~E@9?ev<n^&Exy?)h*w34BEjM*H!8Ymc=>v%yyw%65R89u?aD0MT4=-{Uue
zH0c?*1vzKfP|ek{kZR&U%0>eF=1Al;(#Y$Gh0!)f<#YI*Z+2;%(uCo8=WxTRU#eZe
zW_5u(f8#8r6Fp^^4Q^Q0XufpS!)~XcJRW@0ksIxSSm03SETs9^ic1Jyl@CBA1UF^7
z^MiHr+$xLqEm5vq_qxW5Sq-<{s+`uo7ACULV;<*d1wBB{7Y9%t^U>NFpTR@ndvJoF
zf#Qdb@k)0bbz@w%F1<%*D1{I1r)dzt4YK5ok#;NIQ0~R&0Q<+L2EGW3sfw4Kkqq)V
zO`f*+3~CCW8aaC%;M%Wd{cM?*&xBc^T4OS-LdInye4$y_snQz-A-7hwpbOkp2vAmh
z<hVU`FkzZcNVa~mql@22D&P@cp&4HkQ13pDqWN^M%OA(TpU-hSev=qwhO^M0=ZKy_
zX>1ISPN}cdbo8C7!4I<4lNj~4Z@*3T%$Y0dN>2gz2!))YYx+g`k0MT8{u_%$0N{==
zuXEZ<#+r}njO9DEj#KT*5JYA{IV?wYeZ-1#?qpW<afQ*isWo3V0n~2Rv0mJCC_zW#
z-#?gqaI}N3Rnj#_6K~$Sc~jp)>WBH6j{7&CNBQLd?Z$myV^6&!+giEuj_24z)(gAU
zHKN75T56$8E3CB>Y&AfhcTQ|fEMEUjo_8mx@AR)Y%;^sEYu$5`kIfDqBS;skhIi;N
zf^3NWt!6zZonr1mxD3r$3~6g4zp|6o>zUa+ZQ`Ngg+*NIgvhoGzi|h7-n~cpgw5)u
zTQAP9Q1o@oaAP6`NsjI7^B2>B9{R<m^-uo76Vrp<$D~@1Vmj@OW`kW0SD$jAogKNx
zvKd01%e#1R;<<45-wIW}Ry6Y!&Wjx@w#}g+8~WK=Hv^m<`$uQpOnK?S4E@GF-%3&P
zwjY~teV8!nrh4f&);7#))^@B=F2#`1d@8ZTe|b;5mqrSObG*&={mKWfQlsf$1auNs
z%Lg0+hdUqTR*kjAqexw=p?S8MEniYZCj(X+ikcfDDFkcewx+YuMWSKfEIqAWd9~ZV
zT`WjCP$Ha!^wmDcs7#{ATqLN#qVo8{?J^|3S45FSpY2Mfw$vE(VB-v1Yqq2A5?}H{
zuSOCJh#%vD%4E`Rpb-zQ^MX&ke2tYYKNN!|S!a0th~KR~Ea+rnN;G0;FvlPDm8nNk
zrY+fe1(}Vyy;h<%xkAcL#ZdeBy1mvYympkHw!q!%U}tThPV4OAxw2pnpK-x3%@wE9
ziJdnFsb3@Z27aoR3NhrC_zP5=+0JWsgbz{$){ajWaN*JK-s_IzYaC16IF8oAyon$R
z@Vez{Jz1zHb~jDXp;$Z@l;_!XjEB8lkGCVBQ$sFJ5=ZH+4l1dJi7I_9Nfy(uE-2pR
zDCI6v5VM<wCbOR}ROSJb<Bo0v4Ev*{iqFLkg}*F7#OYBp>BxAsfa_@|l<z?3En|u8
ziWIlYL8j1Y0ee9}9`G&wVEA))VzWyWl%umeF3)-#MAqR2Bs>n<Kk%c6LZE>3kR^PC
zdp;ObdKfqI5u_4ie6z|^o~>-&Q7!q1#8SPwOM3q{$g%xlx=nQ(YO>Jn-<!ENCS>=7
zX-E%sXThqNWZhnTftPhJ@zI&dm9c$5A^lednjo{ts865L++7}CyqD5)7pBhVOFEZ^
z%14GHKl5y93a2v{?3gwr=5xZHf8G~^8DegKb^efHoP1wDr`FtX11`>j%QK6d1%(Ez
zRl32Mx{RhLIhky_{?XA?bNe_79wQ70EU;W<7a+349H#m>N)aIo%y;e|q*Rp()mZGI
zMD6&a7Gr(0j=6WZE(gj;r<l1wJvmdNyJS*sX5%!XI+*bggT#K<dgRuX?#cer3vMbf
z6Rf&VVJi_7ZmJjGgfV)2o%C8RMfF;*x4Tjs*$s%bGF9w<EHhjWgeEnTwn%S*gzpep
zJb1$QM8=H!xkSER4a6{blle`qJE4|gh)rTZL9U4JD4QYJd>WSJn(=_9t^0AK%o^7K
zu-ROhD6^ny9HHF_J<=aKgVvrKwS_b$?CUse5`Oh#?s@2HN@g>O|6pz<wVpb#(n*v}
zk&%mDKS7Nxt)g#}>Z_xR9z5pToEat9X*!~5hL}sZjBBkZ#Y~N>z6Olc&akxd<)jQS
zF?_(pa6jZXg7$7GF+|Nstw2<s<QwuhZbc4y^;#YY!=3o|lIi0bhjv?dOI+%5MAxhM
z)w!fA8E%@$fC-PR;#4Pe)Ep((bm%h6?fDlI9(K+{p0iMuJ@G?A`=O(Se?C-uid_mC
ztlZW=0{lCd(=xVnq(wZXp|mx8*Cy=LunR|}e6s1K`&^(xOj$>sHKgPuyEB;)r8az2
z-NO`clX_F}!i%rf`k^vD*CaK5TH&pHnIu7}#*x@g?OK-z6{M9ebOD$Sh82kkn`+U!
z<wlbI&F<i4@9PDB(ex(h-pL8@B?}wBL+a{Fr<fg1zxJk}#lDy+&t|D(E^=-+Z>R1&
zFH3Zi-t}-2_$>yFax?z?Tw%GH5W@F>8)x5|3siNt7F<6RH$jiW{RLb_C(F#kv=9?W
z4eNu>)q!W#8e*S^_PczLtvlW%Oa8|>4HbS)`)pk@g(B_ils!;z*V&}rxt(m6Qpn3N
zkA)fb(h(}xZz<T=vn(DK>VWo)Fh=r)rmXlkm+mTNGmz%3#p>yhTI$>A9A6LI>;fV2
z^6BC)2}K^_<Lg-mgzjRa$c#NEtJjc-WzBLMb9*^f372#`?+f#%F3ZT9vDBn?N;%o9
zj31xu;SiQZ2$`f|YbzRdMSC-Uy#MPWt(@m$j0Oli`Mjt98p=z!1g<qe*lm04xP<;V
zr11lgWs7~NdG&?2G9#UybS1})-u^Yo=Gv)#>CCE!n}Q}r3J=Gyhbsk?Ym>abZ^2Wi
z_K`e$P34e1d>iBH@>flMA@}(p{2=0*lL(zSw7VJ`%?K<m3Osj3Le>_jw+o8ehII~}
zHm)>+4knFwfb7Y!%?xiP&CB<9v*T25cn)ctUj=z2*%3l%Po?6c<pK-|FM6kEyXjf0
zonh&y?Hvwd)p4~2^puzv{n+pz@Al@|RnXFRs3yf4o?G*1{+RgDYO*3^`w2cR^9p#{
zw#(F;`EbQGc2?>2Ms<SVkIodIvOkMLpjz4M*!omX-9RKDgNO+FNczEUHWG%DNG;BL
zrBVvosL>sPl<i{afo!4j&jzfFU!X1J-Im`U<JcktnQ(Y4D+V%E0|@IT7kIktfX@ei
z)_PkZ{c?GTPD0@5N8M!GfA`bx?|KUf*vn8r5uG@3e+N2sp97psckfqRbsh*<-lTas
zvn@d}_g2C{5?k-CQ%GWMD#latu$x$IerGojt3682n=&{`Mt8Sme<kuXQ!xe=fJV>5
zZUsu61u*5)3LAl$mnn4a@VvNq6%RgeeT8m~Hd_6vC`187+uNjPzYk_7ZvX{pc|8dG
z&+h22Z4xF5JZl2w-gpG#I_`X>oVFc9@#YW7b*8mUiEapZ_@8=e`C>P_4yWxuTRgvO
zF@?D>dwPeaq7w*OQKenBFAxc<<VvAJ4QG(}6^Aiwd)^yW2_`A{wpJ5l=R>^$BToi_
z;0Q$eOc#B1u{Z4mSb4)7)Z}a!F2mlHy7LzA_wVb)3vdH5aBlzc|9{|sIq59OaF6T`
z1=Q5X<=6Zj7stgbBot-$$9R`xPcZbQ!<ZV1o?*HpZH`q2&TJgKj7H0ouf|7PofLa;
z&_M4?3jYEy@7!G7OO4HX1t%3!%)C8ETIFQx`YRF(!p%RjxiAYv0mNW>Va59Ux7wrx
ze?*LYDc|7mb#i#opgQe*MAkiPo6s}uB*;O|pW^=$^2`TGHjY6Nq2ntp#V~DrEXb8M
zdsSPvE_NjmWxBQvuOK_-X{ebwceaHavw&nG&(-beYFq&i1Q!NRt&TA25S8T=IVuUK
zoQa2~9A({!4|zgYqm>Z)muh|-GQAtK4<7ZMZS7CQxlRT}Z|($nWb7y3j?5=zrnyVw
zw_96Q#a^sjd_=ELNuEVYYVMD@)sw%<>tggbhcC<rhGwz{Y9GQMJ<(uzPc%4X*^gZ)
zU<EO=u<2bd|E19yGoK*uwFr#H5;|4rOH$Q-m&ua}<He6Jw|Y>-p4QbME-ZDXES#G+
zUhG{y7eq;c+>Y1ociimzJ5y*E5qxK-4bQ%z{V^0T;Y0DVrHhW?17<Isik@FTDDcQw
z?aDK_OM*vS?S2QHn%PhBgGXMcID9S0xt}!<I3bi#<--$9T1v<*+Y8S<b&pR{j%TR6
zV4c-&I;8&^Kf2uT>34>d;`#eq{vw5sCx6qD;s+F3CB)3Ee;AMaL%jY21$-qi1cm6|
z$B4HI$hNLgVQR~>!-DfJN&n7#`)@hLzkh%6h8pN9-jM4YVEjJBYrrm!cgHHoK?%f~
zItYEZ_q%xM-!F3W%m2>222aTcRN?=f#Ql5o5mZsv;5U2i@#m}GA8THY;I6EY=Jof`
z0t(Nft?%vc1LdEu27!B2pvdT8|NhBzZ^Q4x&qvh*B1n50Nxtxc)c?)Tb9ipwb9di<
zf#2V67ahD%O(WZcsvjm~0*#R9Zx_q|`PF{G2b}Y5+Bfh8>A!zofZR$7E&7M=l&g>^
zpmgCfH^=CI-0*)hukZxfbhyqlJ%s7(587=8L_I<sD@1v6Kmn?nLdfTLjp%>B&aJyO
z@E~-^3%^&tf3g5X_+3Es*?dhv(PZm~-SLm>{qJkP`Mt>w{`fh-5{36|{_*pJ2R=~I
zM~w{e1Z#{q-Wf6d^P~UvQeFh`dyJUL^hXwLp%=Idh5w7aw~nfEZQH#u0cj*eN?;+<
zA)Nw(3R2S2BHi7f5|fbbnn-tdD=FPw(jAj-_BC<&JnM12<K5r;jlJK!zwtd|_y_9r
z_MUfKah}KVJ2ZpTR>?i=^Q49T7RdT9H~(XlB)o~u->~wx)s#I19B6v>;bsnKF>ZRH
zqW$8u|9%aA9&qO-{2n9VKK}hmKEi`zvhh%hXw~-1Ft@)CwU!9%6dH>acKT#I^Ln1g
zilXx`SK_w|1HX@N;8lUl3K@dmuSwGb`1OoREE&c!yS9B#RXrNFUaFJ0MY|{|dXcUB
z=~0i@J%#`L_(?I~i^}lb%=lXdY!VgtPD#rZ24?UKSf!i1XI{cV_(BUO9anw*7aS`~
zjmu$NI?lVaVP5JE%}|96^?Iu#29wbOpSjk+7vZ$>DZq-=Wcp}@4}RiJOu$szT5v<e
z?)UTgzuupXaI;QGb1{nz9%+}%bsj7M*zsz0%Y=yJ^H#TaoI01iZlnE#g6sr=i%IgS
zQS0|t8?ys`6FaCrtkubrk)Z6<;gjie#Fe25X5Y4t4r!K^Z_|19g92&y^>f#^E+4%Z
z>NSm{2WM@vWLa|y15o>}Rbp4B;ZLTwCxZbw4;9414rAMcG9g@fZr}a+GVdusFbaD5
zhND{1jpV3`DHp#-wyGab><B1==qv!d3IA?%vMBuF^}csA^46`@sfVS+S?Z<6$T~gH
zF0JZ()16Y_J%{_Z_lCxNZQ;Y}2l|hooZ6;$uS}&-R|<>)PUK3z!2!VW%ss((&Xe}N
zqXWXfh^r4h>NH4Su1i%u{#yKk0Q$)6bt6$2cd(Iq(8i`{`2lG}e0su&Dr*cMtac>R
zlo<(z`iOj>SV{l{B34fB|MD$ti;~=ahxYN$PR>f{`H8`0907BK6{?fa#D0$e4$-+>
zz<eVlQC(Ise<$5oxwwiIP>(C*2<{nBeORxtO<}r*=<vV#0ru2`Cyjxt3z@Rk@QSN{
z-z)EBqxx3oOg><Fer@m`{ycuA`rXKV{GQMyRR&D`?JvJvFT(yh`eW9@r~cZO4x?Nf
zMQ=U%4|+3LdY@`y^3%T{OIVKM`v<S10C53>tg!Gv-ikt)*updYw|kn1M4T_--NBG1
zpG;*CE=wP4)Id~>wjlWEF=iBt$z8M)i;9i*2><mb5;23!i7M<aKbQv3u_Hr)I*^d!
zod~?FrF4W2Xa}{8xC-#0=4&J}9ZW;C_UtfH;<Ka>uf`eQlF=q}57#-#(}8E#F8rhj
z1Scubv`904t^oU{GL$8sTqek`4pbfd{Ll1BejikhpMbaC*;<plS~(8{NeQ?LCNT1E
z7b4c|oZ2w0V3k50B24)mO>rg$7j4>O**_MN$Uc>V)~2Afnhp?u;}CB@mLt;;!?I*a
zJH)#HZ$*KS=I-DstMw?7!Mnzo@GxfWyR=KryGlSiXfp<T^-}*AzorS8?d5;onOwf5
zOrL+7x&OP(+}sljv}M)-kpT|hRl#OCZ!c_OA$L8iT8KA(zWHL8)nWc93KSxzpf3VR
z`f?}ASHHPKa9*6#M^hT%iN!q$eo<k4L9&-&Nd&MxnAym@&c{Jp)3xFN&KB<0SU)$5
zpT8lp6<{wKs`Ol6Q>8A5v-9lVe(wJp{oFU&7*UQkCSE|$iGwk2q2SWIq@1Rc^nW;*
zOi-*l@HyIQWwkin^7Y#?eKF$k^3cb}qdj%UAt24qFlxbKeI_46o=ziR%Nx=ddKp7!
z+)3uDl!LuZxO-6^#%)7W+NM;bzZI#`+7Hr2SB7&ZT5P))I)mN0ZS|?f<!4qavK!7>
zth#INu&!>mp|b<f3uw~frn;QndLR2!#%!-fY*;*~)7p~J9RBs|qlavcs3y1=F`Fkl
zmHjC)!ZA#%W&ojh8`SD~ap~WT8u)|x&S0Zr#^4BAYYpqCOh(;nOJF2rGaHUt8_rvl
z+sU#b+3iqv#pH8YGCoz__ZtYgW0k7kuOIe(r{j*R;ExSTcaEh*T>d57*gc@_e_N=%
zcn&0VPf6|exR(>NCfX0A$9BTkYZ#{xd*b-ST~5)z7>(qMzjhXY@~%obKDmwMe8uIw
zfJDsiELUSJE_er}Mo^^5CR;szTrz)eIto(N4eFbEw9A<>kn5^vhV817W4rPQZ;j)@
zL!0%!iDUZKy^}zgwu$S&J}IX+FjLdJ@mM6B94&sm;j)^`l4|n^X~3%+2DAZ{iO_&Z
z7pmO2^yvzX9W&KSm3h#dv|f1meOt567MDRO2m~hx8#T{7!17ER;!;1XnN%BrId!V0
zhr{0Sa8K-k`rXM<r*C+6)5YU`GrS?71^wUW3x9iFHum4<3n%-xFZ@qmIOG39UwBB_
z|Brp)Ip)J`7*|tO{@iZIg%XizQYU`Xbn357=Ogn)#5wOd@~=$#RM}h%E^)@wa<_`N
z@-EaV6EHT5wmM{;xqc({D;Vv+bVnM}y)<6{7UGrsHra(V`HqN}J>7-^j5Yz0V|f4>
zQQul&3YzZKe3NN;Q%?PBY(`v!rVp8ok%sbC@l6T#B&FN}qfH)N0|c?KD(GwMO~*^x
zFr!7}phv}+j3;iv2yza1J|@#O%Fpjq<g<HLc0&1h<nvU=mMALjpx})Xb=)il4Znx%
zw%gP6{5f34IoY3U?YOOwl;s~MrPiV`xNVFwzng{f_|%RMWzHXOKuij}&45v{Us&@w
zyK=^N=Z*V;16;7rUHn6NYOz43<}Ko?1rKh7P(xAIAJ9$!;EE8&H8bh2d--P@l%S-s
zLF^O@t)^}2h-JSKU!}F)7Eo@J9~8WHPjD(be>5t+x?z3NBYwnSV|X3soOfTmzamL9
zmSdn-Z?Rvt<*H#KkIz9W7Sqh&E85!e2=hcsMFIPAvXI;f+e9zAiqur<UF|r(0&<qI
zR7<>vlV26S>|IOE<M$xqzzjO-H)0E8@^4mJYWkF|D?#X&|5A1UC^Wn^oHJPMhFNL;
zsF8{q0HNlq3843uuiZ)*dy+buBH;Fv*JN{|K7oI8e9GQO;c&A&<*0UTyKddG;!R_P
zAAu`ZwRvGZ><*oio^qjODepKg8I*xvl?;NIEnohz&uzNpW;qV^o8FT>eB+uF7{4T4
zfwmb|{vrmhW}a%Pm(te;4c%fYcFFVIV2w9fa+&Y$v`0Thyg1ud5Prn96e$x@PNU7J
zPOXtgS86(@YLDFcxZW2XiSrqSr~PXmcBPbWjCGrhL%ZTVS`?zMiZ>kc!wbGmUyQDg
z!|qcVEM#bSFGIuxoH@K74(F#U_=9*oFG0U(fJ%@KoOVH@-Kfkn-He$tI@su+=oC;X
z<MtlsKU<(Ut>{2(VUA;l9M9Q6kLaE+z_hj*Ah!wk972Jxem2n*Y9EyF*{>r-n`9T|
zL%$9!O(+8+epiCY)2qRcRZEHJ{8<u*;$Z2|R|ujn`kTj~{#5IL(~zY&auBq6@{@={
z$EjTD$d-$9RNXZ<ZJeO=K9)m@1k3mQW??zA)!VK5Aj`#0gX!nsaCv)bBL~VOe~RF{
zekdyy!Y9r5iM_kH+4{Bi${kk01B3NcZ`!cU9@c92_4tI6k#>D1zN((QRIe`EwF{GZ
zX(c*hzZwHkXceFBvw*JEXhaEjTN0ieJ#Zpj3UUQ2U8~cxv1m-G5qoM$D1*%vz?-R8
zO*E>G+c_tI)LD8g*!Fa}SY!xP(Y<*_hptx*zK?A^N-Cv|L<y8eUUYnZ<*@5SM;<$R
z{d(%&q(fIJdhg@ET=l*!<khwzod?RjdquEkt*u4N9C+VhZzvDHwvfz+K{)u?f%7Pg
zO!)2zuV-UE@YP)f$YjD}kzPATrDKmYtHX{-sqjt<e@IcHTQ~s?+DYF!C<pknmm3cG
zf-sPD-&Yv6U<rqP)S1j;wt-1tDg|Or7K>A#>UBTZ?4sg5jHFi?R+Y2V3Qpqj;X@qG
zlJA(sbZsdypA{Ojoo;j9UFs57F7n=4Y@ihwX;i=6HGK)}BT^1cGmJ}MD@{L3dF1VU
zXf1fImTX^~E@(sNguGyD9xsN|b~fgh;LzD=TN@0)>>-rXy8o}`K7`xv_`xpo-Q|Po
zL1B<$aAWFT|1GSwgAw`>eTA>|vD|MceTCIJ^nz|yJAEV5N!zM@)uZ9%<?#~pNd7d%
zn0rl?n>h95gVrVcc%hos9`*jgTt)p2FL9hdcsHZ(J2kJXGC$qqaZ4Drf^v<aER*=U
zh7lLFeiO}RA;@_9ZE#;`e=|@b(qLJ+l~K1oCpdmQvg3)+U<-$$prBns|284xK&g||
zs_$|6;`^8SNDKf#Aw`g_UYrLb_Y-crJZ>xx`=6W8J6)cB{lx-+8`3{F{Fe>sg6HIA
z+aEr9Ne6m<rj1}=Ih@ctzH=0tY67B<nUh7)lSedAaJPuD7^xHPBKkq9M9}V^YZeE9
z=wn_#R7?<k3~UM;iUfGRY({-8QH0xeYtN?Y3l5l$E0Myhb*CI1zF$sF5PLYD-*nlJ
zf;Cxr4`g69e$V$xRuoXPeNTyZrL85ldFub!0btZ_t&P>jVoE$NFXYvoG)qxG-a~gH
zBXNp-pU*_&LeWyA94d;A;q3k?4{4i>5B1wS(9O{w4cZ>kY5^*2Uh3!fmYZ%FN&?MY
zD5Egf70?bnF{vtvD}5EsqHB&hHI9QxtFV*^7jh3AGz|aLsZ#yasb=p5O(dROyJyvx
zD~SQfMYX`3`QYr7@D|1l#VBnim&f5pcSuG;#nF@evW;k~wVC@w4dR7Ze-o-cFh?O!
zi>pMgS|W2Z-+}3Ad{+mi`c5^MWOIwkH4`#u0IVNyFW@_0Ie*B|*&WD8o_u*C%qhoY
zJ))swcA33_9#5~RocCZBX=L-Yce-|sTzw9M%>~H-n|jrFa>b7GB*kr<b1licWIF{?
z0803@$-bL^r-(6sc<O>LEuitb$)HO16&wd*u_7-?hm<Xs8G@4)9VkF{*)mgR5?knV
zXAYz(GY>02THf9^Lz-vN?R**T$-!}k@vxEvZyjcKL-LSh+kOJBOe5$nM)Ggg@9qcL
ze5o0M>tJy3EGB<{SkMa6vcIRkCODnl0hTd?_2JxIB|K7g!@=(@=zgQ4jYNJ^qbTwB
zj@n5rElD@;mwWPEM2mb>^=gJpMrgu5``)+G{ip@FFpE{Ef$Os{={YXEAI1391^qy)
zj<%%g<p3O$s$OG@yi{el4<0;G9v`7Xv4;tO5;zim+TTjxcj1kQyBK*qY9Iw7lKs{9
z#t5Fkgn<+_j+OFFj+I2r<;<q(t<E`~Y3O4M)irhITctD+UURKz7i)6FjpFe_ygKC*
zIiajBXY!>qk$P^<u_1pTVcoa{fHcP*l#{pNcEi*$5sz)`r=HZqj)@J~FM|rZqt$`l
z6>^-8eH7jib;rgav?ZBhhRbX6O>4$t9m-K=i_{InAqp}Qf#;J2x_4mi99HkPjVRm0
zLSsi`2~ai~#5Qm<gqJb=@!t^{J~aqQ8O(jb=<t$Y7FX*$s*jzquc0W_sapP{SGu#(
zjzZoW+%e)q_6qxNs_7Rq#df5n1~W1dR*K%Os;vPelzg7gn@s+T-gVw#)c+0Mb!C5>
z?hO2KU?D4JE=CMTGg9z{EE9BAt94HRUvD(<^^S799YIk6E;ZhIxrFO@H+tZ9H&cZJ
zA+pwMD$(jJfxzv{aaEzNr$DM$c>APWbiI?Jy>Tx7TA|H;29_LLWVe{}i&577C-4RG
zaZl5op<A^y&tauQh*!$(Y6Wa|Tg1WaofbEA*8Ih+K3&;r>6O*&g*uzYQKk8F@S#@m
z1M%hl_HE`VP=G4xC(%<K6+ZMQ<XDZsj44>I22bPtD-+o43o@<bpQa~6PM$%n*y{RL
zB2>*=@Y1G-u;$6`qE`hSokbM4Ge8DepX};X#>m=-=zfEW>3&mDBAJy_cI{@j+fps1
z@zkZ`lr^aLrujyuz$Kp{{n2u{JJ*&#9IvbpGY}Zrqca>2)>`<jbb-F@&GT0EA4>1_
z@*o|BOr{{ya5rd2sNM30)yq-vA+C!vp@){cq>$uA^UAnU6=J{jQQ>$X?YSJz$8fk@
zc%6|Ep!Jd1O3~+PODmBqFggDZP<GY%qZj@629visyve3MzgRl_7Hck3v=Gx|Hj!t4
zV2RfHTlbmj7AtawUg~GLWwh3U(lz_i&!}YTq1dbXsuLq};nq9-x3ak3)fcJ*Snb;(
zzCo0+sDnuToe-;*%ajJc85w}7?QvZyQM4b~BgCc2@Ow>00>OZD@T{yp^P;pVJ(DRF
z)0tyRpQSu(7|s*c6aJjuUX&h>Tp#FPg!pa=-v%DA8ioPUn`4rQ>r}sqi@&#f!I034
zhxKNdm<+mb+R6#y-)_AwcIl3-l>sZ&Pri8c?==3fR&(~5T+eoGITaur9{0e8?jPYi
z<Y%$wFDP#WU^y8U7y_40JI)*HRx+twA8CqNPbhGR>t}erPRHO+0`Vr|D0|DDDL2hL
z?ip@&6}8rr)YgZPRkR>62J+(34B@IHhDT;ftSj>1KFTVpIp2bi8k}|pL1s3Xcc*B!
zqwEO5!*w0eil3{i6;Qn=%|U8)#hDKXVm}>lQa>GVVoI~CKkdOkJw#s}G%7G+?nuL>
zet2C%wKk*WBO9fM?%nYoBbk`N9+h$74jJptBQ`F>zih%JPo?&%IIS+gay1|1OMi~c
zbI35Nv5rqSoK~*Yh?*$YndioO$W+R*S@7P>hxY|1*ZsNG2aFIgHsgX_r_Rn7t=q4+
z0>TfU5Yc%nRg5O2NhBE94=J2&ME=w6Uj1*o`+vLLJ^Lmapq6l89Ikyc7~ZF5*SfKJ
z#y6LqU@)f<I)y!Vur(IXc{?_{?R>6#NL#K_WKVAZ_#U$5PY@#b9u*;G>|ncvPo~ME
zobJyvpliK2=0vAXYm~G%F}KlZD{m(x@4w|_$L%3&(Tpz8$*4~Ahc(lY%h4e{774rC
zH*x}Xf0S`Z<)X=&XIc7QkV!_$ya??C%k>Zr+{UMA5&uMx%u(yv)O4o~Ijr~tI)mFa
zok4Ih`4kv_o{9WH!|t^BUhrUhzBR-2fjD?4y7$yt52ATeeo+}7F#TFI{qy<NuCa!u
z8?Gr=Y7{^ck|>3EKk0oBg0knSrFL?wT{3Ht`=3%SR4rbwkm3}KEt1pgTWgrrCvl}F
zl9_Jby(=>ik-ONcVyI#-js$B+c6R~o(qIuyU?8?WHvhhdieB6<#30oVNO-G&+pyc~
z-DKQecaOGXohXUTVRykWa^Jf3NEkhNyvoK%yPB(5yA_?=b|Y$1uG-cly`c<XbNi=j
zophps|L0AfYGvo+_s~0LJa$`QC%{|`Pa!61-?@uU(4nR2uuA8VJK%mfp`S-lW7&OJ
zh!ouH-5oL}tO4K+jkq%0Jp3$Wg5LN9VKP6N+<&QFH1WdQ?={Q^8850l?Xv@BQUk1d
z+R8RAk`Qz-$=<5HI&#<O{U9G{u=R1G=s2tUBvV>+IT2m8Fui>gk`~`ziEx5@@1PUY
zo+`@M<vtJxs9ag?uUCn;6D|G}Xd2{XzYf~Dt+XE-gs53VUv&?5`DdYNEke~&UlP5K
zK%P45_QPN1_bC#ACHyRqPZos~W`|?PJ6B2ZVa}JfUd2669SzHKx1;MAHU}9aDWwqn
zbiCWKB17S7eOz@sU3&&cH^y+gcxfpDvFUpZ=Zmw$vKhJ&n=uQ+$!7oaXO+)_IsE$}
zhuZ-=w6@6w)Y|CF8+0l8nHj-qbM>DckI;}cIzBZ6CsFTcD*-KIi3zF?F5Laj_g{Cv
zf7tzh=YF?bTC?dA*0?`sF_QytVf`FrJ4GmIkNnm-Or@LcvR=tzT|8bAT4JgP;%e2F
zHTy!eskVU`?db=MTe0c?i66ew@&A+`e(tiyc#Ng8L%uMvNZS<gD71D`B&-6}3D@~-
zvz+=x0Fk60?G|jVIaD1f9?us9P0fkG5WYD6Z4HqIUqhtbO0OQ1p>NW@F<oIYVlX*u
z)I?^=RfrJiY0n)ZPc~h{H?lgP*=iC~RAPih6HmMEr#OAG7vs0zShOcvx$>lGqR<Mz
zc4YO|7{r)-vZ?U}23il&t<!@<1^O7m3%}0Sa>%TJSSX105VBt>(|Edn@xv?*r0j8>
z3}rGZi|qIJ$qL?9G)A8(wT9hnrx0p$jDZTcNk%dv`a+V%QjrfiE%%n_tAL1v&*|{9
zsShR<up@+M3CR;X*_m1)$!2#1WHq)INt^|g=xy^Gyj$#V7M+<a%~XH3XE9N3oP<Md
z++*Y91P3PGe|$mD5lF-zW_U8@>XW~*y5r5EGmiRjcivoi<d+M6b7I+e3YgX}w5qv}
zN6UNuBbOwbDOfB2W%V0(<O%3a2yBK;OuN}w<c5W2wE1S!yNoW!GA}vD3$|pzHa3Ps
zH8T9VG`0M*G==`OEXLYm$rh}5b;+iI{86T|h)i9t%Z1GeSzGGcdE%$?kiYCbnSpP=
zQlo;F3GR!7sSJSXQ>%TZ>#FM86TY-#OQ#%F#jcCOev-Y5_{NbyV!rlF#U$BuN!ckc
ziT9<LbJ435pwxsZe|xDrUYyQ+2?xqi;XU4}rFcSsln!XPZ`KAANw>IpY=NW7`gGr*
zk``bI<p4@8ISLRPKHj{O0e;iMAI=PM)R`qhS&5^>y=3Q29FOC&YHHO8OkK$Z3GdyV
z-%SwFiN3g;2|>dPI2r1x-wH(`UX;5x9$Fr&O9G-UCAx$WTdng+2%wxk=G(W3QaQZ0
z;)e`03PiXizj8PKp#^eI04kC?0ny-oA>cAbbSDX(X$mdko002yO)Qq0T9MCvb+7-Y
zFJ4tJrpdxUu(~FUBX@oT3PmWSY2tA>zzQeC#zq$!N}$$pjv1UqqY0)UsKrsgsk>bz
zsV0J?V&!WpR5Rst_-5jWyN#g$$?SBnex<MR#bDNylh=cMsUF5mm+Au2t?0A-r=;>X
z{eS$>q*2Vw!rHQKDj<`q*7aT{8xmj`aQmToEmc_n&fpd1dHwTkw|2+6jp1-^J7+1j
z#!Vd{I(;8oPrT2@W-!>h3OoN$AvmuK$MROXO>Yp$6?`RR*RdHZWL}$X@13Pc)x+hl
zu}HqVKlSC~>|1Wj{Rf55zPy_E3L|rIOwL)mZ)UzU+x_GT3!Qq7Of{7GMVv$a8%9+=
zheVS+zr8&?x|AF5>MUZ&y8Gsug&Orc{24Cwu0xDnK-7Bg7%3<`Tmza+3a$Z7CEOUb
z7JRHn^jUd(OYFz(fHv~sotZrml-<?&1xALmzv)<7E!Mm9>}kGCwOEBEhPIl&ENHXp
zX8Bj_Nf&&QjYwjebF~VmtIY&TO-BT~70pn<(zY5bZP#n0UEY1D+o?{KpFl4$yK?1%
z-U5DNysp^xnhUq3-tn3q@HijP=TtVfR_;25cdWiva1G4lw{Wulj6YG>4{g2_&y<?E
zVeA#>B28}RebqUQLe?ZJR{$ie-ePd;d^y=K>pc7N|5NKc{!#sh4+xd*2Q`<c>xPkq
z3m2*Zp|wF$xbMh7NpxV*PzidV)Y&qt%T;I}B;uh(Y4rf~18P(ybbH(ZJ~RcShgUi3
zM=j=Q)Jt|mLU@H~RV$ckPjvOI-I*|aKM{jr_lC9H-_(fAa5W;cCZ>(`H&FfWjgcu8
zkm~I-3e*YD#BNT^&w8J<BqGa$v`daX=SlT-U4`vF8-1MboCn#iReJq~n%T+6Sl0I^
z4%`<S)hEZ}BK^JT^2K6UQ)7fu`r~D^?1_4zk3S2$uP-OvZ63f{<{E>fhZ8ot(Un!h
z9xZezmrBq#V$W@I+a;96R|#W$(r8bLH02{ZtV+lBJCBLHhvpe9I@nhu=O{*f+xM_7
zt3YUM;%8olRGuZLB)Ul?rIl`_D{PL^a3V1j1c9I7Ck&j$3#mtB&DYj`7W?SMMMQBF
z>S@1SBkR+j_KHG?Q|(JVl@yy07tGb{9t^<Cg(TjVEE&F^vzU|i=*EV?-qMg5TaFHb
z$~P8d80_P%(b){9ebGs|XoMqQADhtOo(VWD-yju%HN(<hZpZh=KB{%^_uE%b!N+Q9
zAjNwAEQb7^_ak4NV1}EYSdnWfkgy%M)r7X`J?7k|o0Jc?*xSM@7c5V@mTy(_@SN!`
zfxwx_shK*(67O&VLPqCo#oO4w-1v4QQgNKG&|+%r$3Qs(Z(%GQED*7s3g-)I;yA<T
z>XGEz=pO#4$qaQ(;!tNywk7O<N0H?NMfpHNtd9EX8%iBz^l$GZtGZ>&DlLZ|uJvV?
zvzi_3M)37*Oq3@m<f#iEJwH3$KlK1XW`?E#sz=Y^;o>gys@LyjncC0ya>oM>-OSV`
zS*wF{R^mq-Od&u<&~@{PsmkVCHvJ&X;*^)rI1Zh;_0e84(eFmQdIcQ*I@b~7<x<e!
zt1M?0R(dM<dU+~9I<V6t!1A1DVqu2PO0TB`*`TFfaojtQKWt@YLWq}mKGle1?IAD>
zQwL&ENp0g7FP)2Opj|xfj5@wrMxM_QIw@*l&p)?<k-JRp$)2dlZ5Cj|H>Nro%l)A<
z+EuN7XN#|#hI3S;NL|i-nzU^$3wvQlCnyFxio$3fm~#YA3T}c~$p3aHbd?i_2BlM}
zL^oknd<xKOeFW&{nn*U35Yn+x)|E6{eQJBy3<tfjDaBI2W%iq!E_J<de0PH=ov4Aw
z1yJJsFKXWX?%`kl)5CucpW!w5h%E5%16tt#+{14R7Wf&~tNktfXSl`seKh9`#axd2
zPnc;BrCT@O7=VTS^{m%6Ycb}Ya55G`(<*K{@bMO+x2G*pNSSJ-<<eA3m2!bnt)or*
z@yy<f<PU*4KyFNN>!a@P`sQb-6rg{JO2}l!HbOu~GU6iSJ^ZkT^Hn(s-_w|ePc?P&
zH#2nl@ITe;0F5o>S6TnFy<-zlpZqdztpvR)qhmXVA#8HF^=Ogmp&G=6PG{ph7Ing*
z;dS@tdtj<edrLv6hSp9vv-iuR>^ZEZgRJmyM?W{3JBS(~B<80Wr$UZ%?X(SI))!w;
z!s%otj~^cOr*@R6IP099{KyBGx~#o#XKER8ZP*~?L22H4f7D`}ktD=|Al%V*TNK2G
z0#Difb~;x<?xUlV{i!2uIbdF9%~fGfr&Bft`R6w<6eQ#Mg+Ur93yEn_rgl>NQ(Z3?
zv`&(f-6e;iw7VexJjI-hLJH)c_Y$#-FM5`jV9%-5IeWtMF{KjtQd`La{qdEDvgN~*
z_=|J@5PB_>=*-m-B(1u2#;k2HmqOh_Mm%1c$l)3P`NoZX&V6PeQ<U^BP>}u6Uy$!7
z{|yvyWVr`~4G!MPZt7X+lxE4luTXJ4c9!<O9L`bGGuQjLq!BxuJ=gLklDP2;gjUy#
z*f=XmQ#oCdzCD5xWeR&%?hq+>Jf%(6#4!4)Rh2uYMbq~_R+AP+(aMOfSY+nc674h_
z=1=C}0jqWbpP6rG(S1TzWd)oSmIuGw`&n%2&Z|A@G;kRdXkzRU^Vs%1h6SB3b*YFF
zK9+nyOJMHR?U3P)QSKu=d0x6{b`K40Q6l<sn&iE=AOGcw+nmt_KBKI<>xmAHOw9wG
z?yy(5k>dZf5O<+X?ez|<li4+bzC)coX$k%_=BITna+#{H?6+TwD>nP(9*|peLU0rf
zRutVcEgJ6{4p8;L^+LqU)b9P)=)?!SfB|4J48%XQ8-1y7N*}h=X1-p1v&-?`l8laz
zOh`>K>bSTtu%kGm7PK<<9i#hqg>QBbM8j2n*E^-jNSi4}rHY{>8y>=7;;SWkvP;QV
zahzDdD*s8hJ7%6KXR6wU65ao;(s`cDE6@vds)~S~lgzWPJYcla;5ESTBhMbm(u<<i
z$jdpO_;jVt>#~H}b>?!T@XK(V(j)b3Q5%{kHRL*-4>ULW51cxgym7C!$R7|Osqp~B
zh-#MQTX;<Ga=QQKiS6E!1h)m41;5U-AU9j(l}|f%EG2(fAITp8+xIZ!xq2=?9BT4r
zt(tDz08#-4I0L{7l^_GqbPNZSNcf!r8N9A>)b(IU(Wk>wMcE@=s3z+sm(@}Vfc!uF
z#Q@;3{R|iYEI!u^fDiUdjXsSlAm2ja(EpBE+-M`QQv?d5@dl_MtN^)G5#3Ww3~Rb4
zsOabsCq&Z<l!r}IS@N`{)Mq_H{NYL-t<Dva3{K14#A8b+_zVxoTq|?NLP^V`o1JOG
zn2M#{ItmbliVFfo!j+q>A_wQ@M^+@klHmyHi|gNZYSHkWTJ(Hc?NIkUSj9UK?`}3j
z|FDXGR4{1d1=8+YWWnjG`*y4GGd=CLTbG;yl)h&y{xi1zEoQYefss5-Zgg|&8uS!w
zj5)2hphejc^>@@#12-C)vs`K>k3<Zz*e#_hK)$<T=S$((1y=Ogx~mc}#8)ol1na41
zhH>06;kKRlUW7dtj{`kvN1xIOv#?D~-09}X6jo2J;93X`rdD{1Y%%%eGNCP}oX3Xj
zutGE8SY$M6`vn)0W9K4J@k!M>9Rw-6L!2e*yJF3z=|^&J>!Ev2et!a1(_JXadJ-G=
z#tpp@ZFUOt?M~X|Sy%kXS{j8)6YdyN)DwuJ;4=m%s^?Z%1Nevu?mG&-0dFl0*$YP-
zI={Whc7Wy$gEG>gD81i}`%$SSNk37N4*o2vm|Qi1%f%PRaU37iiKp|bC(d{623MHb
z$*XpZ3k!6jF!SZyierSamU!*IOTWuE45ozMN)|<pOuAvE3@rR*JvRkiKN2d>;b&@#
z24XW3Vt-GnT24%Nu8^5k(;#0XtWQbU-Mbx24zRnN_12bUt0}RBK)450#i%5#vy3mt
zXNbaju?$~NJ8n-&vd<Y=5e_-dOxM1D`PS7SH3SS0^N!y)`yE_bT%`R==HKA!0sc;D
z_eP@JVszw28>~INAhMBWW?Ch;{m43V-OexI?9P!0kS1_S*-SGknO_Kw1QOj=U4qTe
zNM*iBW33^}a&a?N(spJ|F{%kOi5ItX3$!2v<z*N6+vsM_X3);+6v{q9cUX3%ruxW@
zKSsc=Oh$5Ko4N7PwIk#a_RWoEle5Fk;IMlWUF4-8yKK}WRUQ#2c2yiLWhb!c$6`q)
zw1S~7?*s`URW_6`ND#>0iGUc776|%|Zv-w^jh7lx6?c)WZFE==Wd9QpQ1%lM5OdHB
z`KtQl$rJAYBCa`U{u)%gKKb0YLpyX2WMXrTQ(gvtddP09UrH;s2cGyhlNo=@6+QO?
z%V*c8VNjbUuzb#<<`q<D!D=sk`Alfsd8v+W{Iy54n)6DTJ3@W}=8w{y5Co}GSc^N=
zp!K96H_>^+KL`Oz1FEb#dz7cf->Bh)fH+EIe?w@juQwnB>>LxsSL_B!s-h)2kx5a@
z`W}Z-36r-6KfbZJQSHA4@o+!|b6R0;_dsBONUfGe+4w}+cy|IbGnz?EX#0{QR!Bgj
zp(K=hDvi_6*YV&yYSap!DjT0hHBDs%10EY6nIREdUWT0A-f9uugLs&JYSVZP2*`){
z7r+4lqG)RaA6#9I0U%&G-9^8-eTZRfL0YfA>$KVaM}~W#{H<fZSwDRDW|T(Rxoo2(
zUI)vLKU3pr$)-nP0(}+8_j6x!FECGd3pHomx}4m_M<cw<Z9LArpi`J*&Z22p0Tq+M
z^cjRzo6ko&JrP4KMn08vPGRdb4P`O4p;1TcMcQSV+Adcg-O1_3&Ea?elKNwlk+f1&
zmFybf@kp78YTNBZEx_n#gNzmGy~Jx*Vm=(^T_~f+Zs^Gz(BrJB(Pb8{<u3h+1_*?;
z@a}tHl(*6C|1i<Rb~0PQ99v2OK9tqAlSQ=dEVV7VS~iTSS`tfA=SA-A>?6TFXZ3Q!
z%6;1^&DnPjd?@3EvXZy>>&NcPfHat9zalzx*+xPzMeeDwy%{+e3k9<Dq-*NsT(Z$B
zHT*p~@N7(DRL5S~aSA!ITb=ZoUhnsLTViN5IdBZ+c3#1Bl(k<Qink7o1Q^$Yo&ne!
zTV5_Hn;FK@0W>#GCbP?%L%iB;B>eRc1~r_Uiaym5AI#0)yd<s#?cBLuyEyO<`w%2(
zw}7WYakI@ndNaeuZlV$Do7NLW4d4P9uL;C2d9v;Dp}X#JHxe*Fic{vGB!CNyl$VbW
zUc&{hCp+^`2u=a>OnG#cWm0rv+Bej{eY!(`4Hp1`L`q0{I*^2u0z^*q(ii}X-_t^0
zzlIB(pS8w~J|!WocRsOXar&YiXbzgLAtJfAjZ`^M=4ll3h_ndMw@;U1&0?}kl=bpm
z!8WD@_O|s-6xNY{?Ox#vL0U4>NbNwoN&Y%LCCbB+bl&r^r{h3suur3J6X!y5RQ}ut
zyC3DtMP0_U7battPcr}SlhO_bsC1vSaym|;*ul{PJHOBZNkVY60L=*F6nZMT#%%(5
zUGex2wy1Ol#@fyG$b%Vb8jcq~n7*CgWX{5_U*H8*W;GlQ&U8$zX%=rLI=YrQOfoD=
zye|bWcwH+a{&<CbQgBjJV6`_)4>FU3F*3OZaV9=LSuMIRLk!(;+JExg%VaU=Ep@Zv
z5CKa{IsyzKu72N^k~tIw{}M~vIT&oT#Kypen*}R@_Hc^6<6^!*E58OC&J}>tMOUZs
za(649*bh=$6jU!qrXRHI&nK@tJ{YLXJe)xJ(y4WI>`8KkvVAAIXtpc$T3R+X^=I?i
z%s;w14lrWI&L(tVA)u3)CK)g0<z#o@x<O54<{w$T*IOsB6%bhql2S5j)$Gc+c$u#h
zxENhu=(NT8So%etcL!9Lw{*n2KDYi1njzqcs@|M+a6a7Ns`{f__OdpPM^RE3hd}14
z@Y-SP{1E|SvnZWQM8hVN^gK+Jx8sLf-leH-;uzR8zkjJv);K-2;i(gR5Gn9>j;Z9F
zG5VO051`~3$|;JtC#Ui`VYN{cEiTrSh0?)XGqp~NUZ*;Qonu7m!?;d$s(7FVM?zeJ
z_PZ#{ITBuj<6)N>XMqzW60wkXQxNjAc0MRJ@sR1u6DC<XY);=_<2t&X%WXfPFFF9)
z%tF<?E$j;CkzWDXF+<s}K$?6*&~(nD@Nz<V|9U_tfAnEp>$Z8^ByKQ5`>Xp;?%pK1
z|CM+D0U7FFH&acT@LtM~Z^8qAQ;$4^JLmj&Trv#-7jB4@^83VzloID?Nc8<Pe}wJ6
z(B(m$78&ZY`GVrrkY)<>W~a@|``k7M!9tpJ^=1b&r3|6dqb<H}*qVK>G{7DTL`xRA
zgB8k`0OIj8J-t5KKi8po5Uj5jTKKo68NLe1<YR$TeE9akUrnFhH{dI?8}1&De>diS
zz<~1`5D_W4V^U<j@rgGBv$!KS>jjC^Ni4Fe8k9q%f4uOd)|!lrrwJ6QllpOL!+aTE
z{qmbyL}#>)eSh(CcSmn{)&UVVyLq2;WMf3ed?DPh4dOi!MufLNV?%DM*8CBqkgxng
zkjJ)N?BQTOZKL7dU5HbbTJ~ey?+HCTXdvny^EML(Gul52s_-8^APMny{>><laO2t{
zjm{>(dsm2e`L4~C=h^;JMr|-&UIZhh%K#m|jzs*Uen2I#LNdk}7c{e5!!~taAIcTJ
zb#@Sbv(_9%>$(?qeB*{HM(tB?x7!T3BnpV4`ZZ#UVyu^~+Z1%}@sEBW-{=&UTA5Y)
z>tNyrHy+o2{^Rt<?^bFVc)EDT;%0FvAg7-9-j1&nN3m5)E*=qH0aN<^57<*NMxjC7
zR|E+xsjr{e+)E`t^ukwpv)ywFHj9gItE!FLgxaGiAb2X%EV~`~#Ri~Cv)Ucc10rpm
z+heIXK#Z0+okr?4nBZ-FDdEIY;0*d7+-c#@UUM;;^Pv*j#?P}k%-P4V>O7pPuxPZD
z1PPJ}+$Bch2kS$HlYyO4F94UI?|^6R`~-zne+M%m3R3r-YN@MebmCoS!YI$-3fG@j
zx)nH91KqdaZ{M*n5WHW7W}Wm-sANz|y!YIKKL+Y94B&)<ny<}pu0ovTpfCBQ5W-%o
zhA8$$?<<65Psy0+a!=SUzqVW6jXkQlzB>utCz@tWfMP(t<X-y^pD7kxWA%=I6y^5|
z`$$s)PJ>`5WWWcGe~yK5ZX#@Kp+HiIVPPbl@*Bt1)X0+2Pr*@w2zykzpYOjVD7|g2
z{+!-S%Ba!aL5#_kH1Om;?ATqZ$+>{z-OVTgti5mQzi#PAZ}_{(Ou7L=W&g!k4QziP
zvINQ&sT7Gqrk+D+Y5hL|6?_6$22VN&q`&^vW(h}MPy?YTxd;x=J@7yAv=G$(jxzYy
z|JgeV9O$p7_|LyK0wavFm5)s&7-*`<UO;{yXu$jOmtS<i;Hh`xj`Hv40~*!fWoLZz
zyf7JlGqvOT#DD+l|8gb%eTn{kiT*$K6xpkI+a0%4j1!)}Y@mx_CR>zBV6y!n!uX%R
zFz;~Sita)4#KPZSnIBKV#JLxp=soRaFYeuXvnGF7ElDDMd(67vO?L|Gm$wMF9oXgm
zK3x9GaWJRgv+ve_L`{4OAB3L5sfjiyu!j3T#yE&R)i9AuC0vP%AE~DkVnE-t;J`8z
zfbhFt{IKNR(cvbKoqnU21ehCCfn0)|5|AWqZwYS0zu?y%q#xYddbfPH{<=JY|NJY3
ziI?>kr{y2xMN%*r3;K{|BD01mn|Le_u+Wr2jQn<P19hfUI6{@<HnK}4d(<WW)z`GM
zLbafB{UbKV?MUsrq4Iow(uFy%{7rH&4+wX-=ufqMp7$LMNC8$-*;i0L|3P)T3~}=d
z=vs2`KX%xCKRB1Gi$f(z1aVOysM=5(6NMfjgVS|s$@mZ0LtJ3M<7!1t{l{tk;|F7K
z#q>HThD{x4;9`Ig^4ptUvSnoY;RuY63{(lr&OVU}1?iFRPOa^+I-fXD=oz+-WT*$T
zf|Z{4v`am$$%#?+bC~I}U54I~DLBu<h-doxPXNM85ugZ8@}4H}If>r!i$JxzMiE3m
z)wyT)3q>#pM-i<3i6Z!yk@CjR0a}pZcSrh%XHD>XA0?GDww{N%y)uM(>gd9hE3g`e
z&_kmC{8LS#f3ZxKN4JAuQ90p28Az#rF_T}Z$?DWTkuP(R1X>Z#n%Y5?XrN!GLr0-J
zkF*!EZO6Rb!j07Q@Frk%B`a)Br-9hQ-cJt2@rQWJ9Un&TkEa3c5o}(1tP>GK-Cjbi
zmOQBFefNgk9+1RjvEcMeB8)g}zSP3}mpKD|eZNY8t6qtW4*8u+^NbG8(4k8}$T|bQ
zdS2WgnT|vKVnK>$r3<W;%C_=N`H?7gYRN}>bx0um{RI|HFd97kz0U0F#wmq4HKk;j
zcMOM-m~s&(RVVYrS8k-^TOT!C<0TsFP84i)I$CVt-deYn2nkY7R5rgg&Pwv8VrFu7
z>#@ReKa*|DuQt;>s#<?1SADgCpKmwni{Br21SCvBZ;0|EWKP<q>Vp*mm;F|*a=srT
z9%o-uA%nWz1XZw|Oc~>WvwWE?R+ztun;NpiZX7#Ntw{Nunb*{FGM<XE-a(<4<0|_o
z;IiDm`Bb+%X_i7%>^|XeP6|k%bb8lK6*xrsWk9EuiY!s)U*7g#ivV@dUV)DEHvA0-
zbIb-tn{!9|`0co2cwT!?zi+Y~YNHvh<SUn~+tSbaD@38$w6Q&t>9d3kebYZ6=n#g@
zV;bC!u<v9ViY@h5*zvVkLZC;HzF~m<W|A{6b0%-bO(@b-AdM~)TiW+|{)%Blt1T!9
zi>6B@BtG}KFZ0X`b$_>m(aCrq0ri-L)O2Dfdt_yJb0X~N3tO?EM;~QZwrA?4mb*2+
z*jvoM0eavkuFfNOa^R^Lzzi&_zjFT`()VX=p_HLE0<Py#0GcIb(4S(PMPIeSDIXo`
zxiwiUj?Z{kHY<#p+GL#76k>&jjGXvGJn{+nSQxv%-fZ$zJVXY7cI@DB?c&eUI{+fI
z!!WC=W2`-*+F`3(*lyh~YyP}cWBSMP7Vl3q-a4os!gCn<_@?X3)p;Fp$X%16X{>YV
zar|oB$$p86iPm#Xuf!g^I=ycX>oaq$K5aZ%%-$P|;#K;S!1Pf`^n)A66kg9~&QzQp
z&N<)ZXO}@Fe2&jKOeeqC!{(5Ct}>@wO_M|Kc-V6rG~oUI`Zke(C#)G-7*LSj4KmeL
zF%sJaYLP&uy7;??%8V$BVw+VzmMby8-XW<Ip<q`}EG{RRD51Bg;oN_;AKkep=WQo$
zKXT>_GZ?oxB;h;n(Pbx#IXjp-A9R~Fcx(IP?i2=cwjZsr3=J{7CKvJ;Nkh(Vc1in`
zWrr@8$8un46k)c_^jR&D^``n0i3v*|A<v3HS+DmngQx=KNru4<U<NQ)$l9}(v%e{)
zvv^~!z8jb2O}QZ!L_MC>frehS#)HI@7ke(-ey~h}HcO$j2vxb#^g>iej6nc2cLq=5
z%jrqqU2vaqyrpY+rjCzMEhk1nVsEp0jy{xenbvs<dR-;Dn~utnG@(p_LJxcMF~Vuj
zyxRM#0IU4o!FfqOCf}WjQHhv8ko~V<ke9*(YjfIpaT;k1$f}~%hZ~7N&3GSW5WxGN
zQTpO1KlXpvyD_uWzrnTlWdBtLQK$m_OcL12ir;rOE)Ns{yYPSqj~yoO?r)3Zc0?vm
z*lqO=8a(yzci8{&?N&1CHsRp`Cg8ND2B#}1u^u%B&clOAtbyz*oIVmnWF^~im*H<3
z>T_*nG1aTabGVU7#Pc_P69pmNnM!@+aNX5d+MT^6=}YJQOktCVs*TYH2j&!<$JqWP
zPb11qCzg6S_!VQ=3|@z(OQt8c1`LEHP)P?jc+wfwJRo{K-y)R)Qd|c--7cBinG$&O
z>%{0|I8sk-)|GtkT6YWM)$+QWhUs=ii_iGETD&dVv7?S*eMqUGj=jZt-v_h1rbG%}
zbl)j7OBf%f{Ib^+K(!pn!AZ-$MQ773EMHFr(w-X?uhX944XA@nj-WjC>c`Bm3;UMA
zSNlI^g&nTAtdE(9xvf3kq`Z{8v%8$!FjqD7MP039y#{#vf0lhh|B|adskX*BldoDS
z#^-pz?CK8VJ$Go}jGZCB#ZUTLP>^TQjKq}ois9T@Q^2wIwZWM6S!Eo#!@Vq}L?Ve8
zmadhzg-Id?yG<6X3X|IDUB}Jer4sn#&vWso&Crv-_|YDkG@RgGZj)+6_b{L{`~C?}
z`_O~+W0}XP>1hf;<oRL{ZMW4Agi=XKR$4A5ji@{MgER*ryQaNIlIK_^K>SAyLfF|a
zH2bDNs%6Sc{{&$^H<H5|8QeJxPQamm%n!9bSK0wmnK=%XAm@m$izmrlKw6tEyjTnc
zjB8B4A9B9;sld}J)7THCNlw-<UMGcp_MB)X9XjvO5Rb)1*#&k7VbDNhT@>8}R5h6n
z!qVTTw-5Djj+%yOf1@iWMbm^8jBF^@wjnWXcPzA*Dx3uqWsh7uQR*sH*~zRoLn6|r
zaWY2M{hT`Eh3CHYrR@`&C@0aaT{&+Ks|lUc_gk;5*ev+~s@IzH*mJZ^^@|5)C;e50
zw~qd(hG#7l@36B~CAXX|KA@$fTe~=WB4?h}u2nvkw^XJ&$R0M`cK9uJJUzlcrtFJ$
zYhZTQ%Sefb94Yzr=M9Of7ork?1T=ttQff5xWxMXe>sZ9~TM{Mlq19c#Gyc`SDa(ZP
z=-A82*V}d%-}_Phu*D*aOhdV!fgblZAe-+iUkL(L(~WSQ;?5ARVi1vD03y<{$!i^~
zT*DWY=%fq9Y+|+TlY7$nGWBO021}hVVzs;OIDyUpx6OuTchU?#U5Z)VMYm{)p6ri$
zG}FcmGsyk&9{xhbn1J|dj|r-?-9`v{qSwLtn4TYEnd1iMgTqJK0hp|=CkIUF^!uAr
zexN9!Eej<zmBN~PiI*fAq4b*R{m!HI@TU+78Ia}N^UV=0wtviO+1U6+$+w2CW|So^
z`^^C^5a^7Yj{!wm>13ZOonJjk4K1z|*veavf-F_>)soPtfHu}q>X{}erwpDIU)~E=
z-R0A4cuv;x)TgBDj#3bZDpHx%a<@)*1c{{0l$|wnn>(*(Qbwvrwk#1|jz=$V8%UXV
zzA{>8Upt?MuuDWAbg<H>=VWwhGt!BOg%ytV5UO$80gUn$)n4vWQR5AAcacp6tJr3H
zKn5<yiGDj~@wg{Tg0r5;?drJS*;ZFo=I)>CE9YQ@D_33EBo>T0t@i8d(vdYgOurqm
zNc6LUj~#0GJs}bFDrxA*c5UQ!wwvQz8yXeni8u&Z#D|N3ltInE&jlBj#IPB?xr?RM
z$iKRV?}q_qFMa#N;{4W{cnN3yx0RMURtjOcfUT>OA%pe%9CnNgUv3z3PHlhA7OI&v
zm>XzY2MOq$`FftHavDf$>Sb0<)-UYiV~MQ&TTE(20~6|wE%$I`3QS;wgSo2Q?K>L4
zu}8IKcz=$5$}WC7+ICQfX^;QO%kaIl0xr|_Hl9KKoKmEYv@gvqXW>u#BK<)Cy70}O
z{=jv0`w<q>rO)sP^ov@TY8>t8K%H;$d*v~{Oz4^VtpRFHLO9{BSDT77N?$&VhjrXS
z#OPb1ck2tBfBfJCWc012B!CEXr^Bt(E1PWtq~`WISk-==;(QlJJi4Oc13ODkja`OQ
zilDrUWnAyts2rurw<MdNF@dNfFQ{>8D0AlfiokN=SO5BV{B~P4zcSFxYSg`e2!!mb
zYNa7s;fKY<9pfhGD5pFSEjX5h63*3&;nGSUZj7zu*OxuK*;Xj<Iig0MzzHUHVyTlU
zk&V|Nu8FsrYBp1M!7Aq6I_PJDXRw1}eP&*|;i3y98vS%m(?;~h1$F|5Rkj<)$Pd|0
z5$8@4`+M{6%FcVC4W<<W{0q~{Y<tlnZH8iks~4_og<8F-NqYo6Z6SVI*R^3CU>80B
z4!fTPYJQaP*Io7=Cp_}q;{wD+_fP&OHClaNLp=9HlxkCcMxfWnFshX$v8?V}!ah~9
z?@1A70DTk)ZhK#Et@tdxF(7Xb#1x<LR~F}LlVmyCs9}sj;biMo{_i)V!m||z#4PI1
zWG7=c@B0~Bp==W@cPCICzSWiNxP>nhurb!9oB|H_GafnqXFT#KDm0dmyW0-$1EWTv
z@33EFGB1R)D~{h&EaHi2iQz#^skN#{$Rew0!}Ch#Y8Rf9GYCgRY{$9QjfAtOdR@V-
z8CUIL43xEWQdc@@FsF_>N%`R^9ea~Ehvu%H!8@rZIW2d8)uy}+ZbvX`nDX|_mDK|(
z>25TtfSFdl?IBobmH;A`D3(p)7rN}j?TPZhLtj11xY4^#wJ1nPm_5WHeSm4bT5<eL
z5&0rZF`vOCL)*b&wV(1`zWsUNebSK%3+>A8tHScyTZri21I-y#D>UsVjHaqeb-t?*
zU(D&r`{B`t*jN%O5k-M~STK)-?r*sP@A#@n??!4q2$JjfdlVView$2Pu3uE`_f5bL
z0eI;kp>RKg3T&DV51u?b63G}LEmuvQIh-oV<k4y19ISPA1X<;0oH?DHQyeSQt;rXR
z&2Ec2Yj4@<Z5ZMsLa4lxix%IcW5QbntXAtf56fpstNv*er`Y7O3;bmi_XbAsvW{<}
z>ny98jvwXrU+-@&OW;$lbn+DwR9?R7${9>ly^EE^4(+NFw-Yj$Yw@!_FnywicU2aL
zgd+0IGY)HxTAR&qgu_FVNbHbsw)Au3n~eRv1!~q)NTFph*e&npA#oXnANuYj$IomV
zdY5-5(H0|O;Tc~XH`+Ckktea3oH_B-?rohFiRpnJjLCIUd9(P<>!flL)@QtvsM7M7
zC^t{h&L{0HI)z$r#qkNxHWiOW%whdzqwn{a;R(VcyGzWw7^GZciE}qhWUxpSC|w^Z
zOW8BaCF&#k_Lk+Ulu1|nQ=&A-lp7m$`rGl?q(Dh0051QfN4r|FX)Ukrc6UA87*6im
zIf@K7hOY!uWGG0y$ak&U_%6nK9_UGJL&(m&WHIpAe`Ns52cpWO{TD$@Ig7`wnnrc+
z*6GJ%*+F6&-pppxIX=P_BjS+^vVgt>jNw4Zq2E-H4>yJnIM@q$6L;U6MN4Nh8o^2k
zjk|kr^|?Pqf?}lW>dyO@+mEW)wwG<Bej3C57|5U?+v}k1es{Z99!TW;Wed0dWecxZ
z!B`VmLHVaG{PGrJX8kW)_|kq`1W6Mw@VH*Xmg1K)e+Hj?FjDHXs52X_@ZsM$EHsvQ
zo>bxN>D$JlO9owQNNN^eF#BVg<eY0pJhokp?mg+%K#yho9dp8wybwmG6JFz?Et6;g
zYwu%(FTwMO2$t!HSF`8$?n|-=oy`cuE&J_7Pk7$$T%5l7iv{p!g`3&)E8N}$#K%RI
z7V|Bs9MkshmJ9YU3kIi36?*<UU~}^6O9hgqS5n_ZTij?>mqrV<!)WAb5QB;F$BK0P
z$cl=O($bC90GOWhoQ?|Jrz43yn^muy=;YgNw<hojaR@p0X*22jf=GT!(br*5f^qH^
zeeaD^QvLpp?~*B47J#)f3<e5jf|o#aHNZ4Xcxe3%0eT(^3R{<4c??JG#ANC*O<EYQ
zOa&apWbIVb6E5o{F+4b>C=YG*@MbJr*PiD~_xP@6+Vl<LY==k6$;75gl0jJ}=gaT2
zu5Z&C$};pg@7<*gAbor@u51zeAe!{h=E-)B;vZ-do5wLAcf4?7(78cSJ66$gq+P7G
zNg%u;U$uoULp<~k2I9-C&otOumOUp<a(mS-Ev}#oy>VdF7=s(ex{6|^Y8+IXAO1vE
za$MI;m#zSXu~6|#K>W<p=dXcv`_<eZgUO0!4oFV4(M-0el&_D4R`8+pQzy`Stdon4
zpUN%6v)Z=`%D)NVU7C(vsZ}3IPoQg&zfknF@3fhW>Wjco+vMs#UQ~Q|x%niTc+B4N
z!4!yM>?k@9Im?$=H|dPlD9KZ<3}f-j56s1`f388vJL7!P{7j6huD?tQ?2jgF^v<eD
zT~l6#rng_GjxXeA=VC(+b$WQ>_)ljb``?_lA2y$&9Z&8&ZcDm>hv5-9O8YL?5zT)p
zI}-8Ub>4XRqlPI5{RjB8x;=8Be1bFku0Pg}r`D9Q(*neVFKN%LtN?K?+_B9&n`6B4
z*729lzv>@4f1J7XmKfZRVJtdgR<ety@jM`K+#R1prS&t(tD%{kCF$<a->j?iOy(r-
z?H%i^hJd||u1tHoFb*#4+~l#1SVvnM!6glGrX1-~*W~J?hg1*6gIVY545EBC=RC}Z
zsQC*NT_f_9NGw9ce#3=9tHA?($m09>moJZ^NkI|QaH1?%nBWW*ZxLpe8We<ia^sd$
zIS*|T!}-P0Op$)!yXFiKP<IG<73jF394PB~5BCW$s-WvAJ!%!=mE5q%hetH)SReQ`
z_Ca~<B*&Lriz~W)G4M4pT-HY*e62+onMMPgjHW=lD^kIP_Iqo|^)={=36Q8NRxSB}
z{E<eX5)nkR0XsMKv^{uMcv^r|f<pVVgI%tlS>bXZD?I$A`2578ynO#hw=LPyV68+F
z&SItEl#;Av6vp@3BUi#23|vNGQsgzq#8@|Z4mb29t3B;%-zI|<V$vJ$R;{P$=e*x0
ziL~QA-_w1`P$*@wh#K(5cG8;1Po~Mqr0Ia#K9(Y)YJ8qilcDNJ(`z0n)f*5$I2+IO
zF=9;oi~P(CF3Fv8@1P=pE&5|5p;eaL53yLmCJGp<4TeH|aV(s_8xm2~J=(fZcGI@n
z^D1Re^hlSy@&tO8cW`4h5to(p8(6A^FHT$P3Iotu?q?xkVFw=r^=xt?NzS$6ZVK-Z
z)A3skSD3&IiePT7^5OAFc8^|@Hm`!c!$P5SX59{VM$K!JxAo(1K4i4-?q(;>^yYBY
zx6vIwIME%VS(-|@jRh)E#mr^^nth!Ue%89)N7*#s;F`%FeMdUaQi0u?p6^$#s2V(1
z)P4$o%Uw6Iclp+tY{yd9My!ExZ0&H7zE89GVcYLdrM7@6)Yu6;l~dC=bJ2YCyAaZ@
z|H0Z@$2Hmh{lk}yC?x_SC8E+Gpfp24KtW1UQba^rI>wk>q@;>~w2E}+h!Ij#x@$0`
zbHIoV81WqQiu=0!{+|23pXc@S#UCfH;dY+Kj`+ko;%~)_&qAF+9yco)6lNJ|S4G=d
zuns@EX=9q$RW<+H%AeWlD+C!pulaT!&39mUv~#m#6<kX!yJ8Ynu=&8O#yYm+UCl^Q
za71G_1b#U7oXr6V8U~6lMggciB=UHP`1{9Y*3r_*?zbE;V~=)P?B>dyi!W>~E-)N*
zPD65hp3$>aJ7tcqUx0R)f4$1NY6-w~jl4@`-ar;3kUsF&_DOvKsKU<=H7<M4yO819
z%MOqSmnlqW`AX7}(Mi^`s`eO`NiQ(#d@fu?-jEB+=nY7S%xa32>c2tP`ObgPXG8A&
zX3xs>mSMM!Ied}%ft3}3K~AP@`t3T|hdhF4*#k}PrW`#4B}{5e=-LgjbhjEs7hP}1
zC6G$AIbUi&t%{k_i5pHB4XKyqdMs?{0JVl|^U2V?sA!u<cy3y)zqy%DLZRK@`v|L3
z@*&8m#)&pwXE#Yvhh7MBau$s{MbpWe+RAToGj?O{d#Y&K@VlS9W-y=4t<hE257rt9
z-yue1Y^cwwEN)k={Yr?+wI&$qx2qE@*Xk~~<MnkS>I4LJdH6`o=J^T3{`{A*=ja8}
z0fH)qnAd>hzUvQQHAY2ZKwY?9-eFyc5IK~p5}ZM@n-@O!(P%O^VyJS<h1F{sXv3Jg
z7|(auX)O1U+`9v=(*EJz?FE1+*-S0H<DQwD-b0SCIm*SqZD}7ihGfi3iLqz<drY@@
ztLx-w3w!0sjVlIFQ_aWvj_c!^cWrM`^8Oi-{+K@byfcwI;5jI_qykg;0Q4xR3-{(e
zE}1z5st@rsr~sR9rGCrPUf3vdiMB51(NZh(IzxMq;Uq<{%J2*U36|w6Z~A%!OBn97
zDc*bY-DFe$-lc)F0Q7JpV(;(H%%2zavLu0Xw&?{&L6>tlU6yM3wS6DmavK6_m%E0n
zXX#-TVTX~z$n~wy1YCvWu1!VP{^L@^S4P7*Vf-g6_+ny;HQhsti)U*OK7{zt)KWX#
z|M7Uwaa>k$*EWl`JHq#RxLujk1CQf;8w&a_&US`o$sy~??Nd9~V3}3dW0~Wl<Xsf?
zLIiwUis^W>^wzqbAvnVhe1Wm{C4u9!X(+l#k9=}xp1Q|T`9^1H1Dre%9*!(*#iL?3
zefB+sx4tdBoe=l8s(}(%4{D#VcO>3M7uvv)qtB_l0bNuxK@`B>ZNsW6a0TnXeW-is
zIGyPSb-xfK>3BP?QNl1_tE?Dt?Iq*(A_IMG%&AagS&y#t50rQPg)fcENjt1-!nE2*
z#~rZImR%+Pc=22kiMKA6A2fHUFyx9EJ6*;)PO^Fxd<j^lNo_*j@2!_-+w?M(w+)<1
zG`=3c<<MCGIAAWIjQ%qrtCX+m(lRCp8oPzv-F(^Hx0#d^Ng*elXgWySF*H}=%KP>&
zP(`i6E4b9rA#tr(6ByH_NxCliqwD2^D0=|VWcCnP3u}O~zg;UR!^H@gAh|Y&nV6vw
z<_V0#&)%ru=}|=Y6*6cHqpXj&^+<7AI0fcrP-1wds;{r_)psqbi=N>BxjAKpEiT1Y
zsxw>15a}LI3GW-thl^o8+Kv<}=o%4y$Z(|`0e62z90b#m8f0{h%$}U7hNKQF4xQh#
zlcxs=2~JOsu>x-1HT3|GP0(JVvScj*cGs%`SuPRJL_I;D?2deFlE}u>&(sdkZc49e
zEryXGzN-(L{DP>S=^J)l8m<!rsvQjrrrP=UV(&CEOXdM`;?{PoslFQ#BSRBYVIu#%
z6&M3kRm1p9!<;!{4vXG6z1ApRy>WP)IMw_FcT;4=R}gv!1i3fHYn_9{AGUTFBJRC-
zr`jtOmu>FeEgE#QtZF4wQu=W@cAXMCTB8)NU%5q<>X1LGef%_Jb&WrP%hL%BwtGxw
zk8C%n-C5v4%}fheQQ3uXK_#W94mOr;FXKB9y@!C<%WX+Xn0r;-z?`qY9W>;+ZYDK%
z(HICA&&MuBa{lx^y=@Q9r#~3I`6N9X<mw-;)?43bv~!-j5}#j2!|j2JBk>9!vz-Tl
z8>AnA(EEv#WVv4Qmzs^a#_ilpM`wcf{EZI*9#NbT8BP|B$maM2OMLt{R-fGyC!7sR
zJ<e`3?NqjpR=CmOlujnL4@E6(1qW@aPzH6tYsFLSE(cTm`Ax2C9!E5Zya!anZ-WXm
zu!v^I&H1j_F5`;A8qR8|skn9^=a!aK;W&K(nyHdJCe%wN8)N`#TzshGHSxFYQsmbu
zoxhFj?`~>kJxY7#xe1?pQ^ZX7@o~v>a3JTH!uN4!#%p1QqxrgdmmOain5qLf=N{Q7
zlJ3I4etsm7^6d`C*BiPL98FR$7ug5mo#e`~p-YTe=2^G4TH6Lq1tphhx|Cm`=)S0J
zk@MT8BsgWfE(iz!Bnw(S)<>0Q)pny7-dtr>#eRrXex{<_6~LKaDV4A3PSY@$_%xo{
z0r=|luVU4T&+#=R+;+Y!<GudI00Bo+Pj4S=(Jpn@=2a$W7PA^3r#Nh_FiNuqZq#o%
z0yW1+&43#<s<Qo6SKXJiwwN|Pz%XnHV^OEQq4sXuyEj$J)o0#r;CyUs3LYznmIf73
z>%lKYv$*{`<(hqSE*t$;mEcex(FRcXgkn<L!qwS)2a)=sMbHfMF<#W_o+$+-beAo;
z5_C|MKiw@!59fwe-E{mdRtGla%1h;*Sa2bf!Di6zNjnYinxy1On(W%$a|}IqgeJs0
z=;vP)eHLtZkt5v6Cqpy000MH%{}_-rnFHc2q>rclqG>AdR(#@r=_t1=qrcY9#yNJT
zigQzAXg7a(FLzT~2ez3({CL@0z01AaoIWiO^#Wwl{pm2J$94}dPEGC?9~?BE$XZ6e
zi8_AtXP|S3?`r*1H#+;6YU59Grx=s!!(P?2@tf9;dH6h`YXAfrK!I}^7WuF-+ottX
zAR}xWFt$mho>@0doYBYoZ?CpM%7Ce*$tc1hWsFZN{d^66)aFm-tQIKjfqACf0x{_s
zC;)D`A(65U_t7Mx?D13N!~N5tOkjRZWqwrs*W?0o?FW%GzYc^#-qA~PG|?J}WJ4Ck
zSt|GLmve(s&er3B->fySMf+V56lOQMcO2<6aC{+8j+<Le{Hm<pt3u!<O?2okoSk3j
zCwWOP)2pc-<-|M=S?B~!MN@=v`B|BSYj>IVip?mkwfXpQlAOf#Qemxq)YIx^LJ9!l
zTX@JJSuEFj%A*jAhtu=L`?6y4!8NN{O;_va(|U7MmHC%mfIeax^>GE_PeqlnY9Qrh
zO(?(BH7PDpYMdU%IExQBccf7rkrdXQCL?<ojKN;S_v+9G|9<pY>!TSZ>YK3zyGb-p
zG?(g9Kk$q2jE9(~>nDqFd1wW@FLaw(4;F`OGDOk_T`g5+*0s&@sBbgVin^hy%xn-_
z*Q%TKICRiuVV!15Fq!k{RzwKBtM`jGiw;bXZUNafdaL*-0jcK+tNAJ7j_)qt@@x}N
z1c}+V5_RBjdL921W#%d2$n}_hEDJ=UFERZOWP6wjVl}J7XAg*kEKnsaUF_-*E^x_u
zSDXvGZv>d1dc}VdS980RuYF^`LcpTcdG!iDK|jM_UNE`u@2*GBb{u(LZSUzojR}}U
z{<{Jb;hFhUmhZ3n3$VScup_lq?w;7wB#+`eUmHPj@Z2BS;>=hZBS@S4C>kZysr4TL
zeQJve>Je(!XEFu;<&3sH)zRPwDQLPX8NkT)D0=69YT6Uh3`W5kcekeqRGaI~yX{!H
zKioD*2-#OM<Bp}rqQw)f6>+v$;Po&SH%ceTnaqNlSmAl>Su6sLD7nyua}IW09%RJK
z4%0(Brq|2xRwV6%rGD<Xj^82l_&C}%;0x_YHZ1MQoEo*T5c~Maw@)r3o5{P3(bgvf
zA3yQ<QGcw;4I3Zq@+Q1Bn%5G;VzCSeT#VM*K<fVAd#H~BNGt0us}ZE8L8P6RLjAd{
zMMSMPPpK=cRsYQpLix8czCF1&49Ng$e-fBF!&&Q8J6hPZ6DZp@Ct}h9Wm!MU%&$qT
zOoy?DJNH7P8-S^^T!3X^(V0em8;g47VE0*jF1pJXpXo?9AWh1OA35OE(|-I=={=!#
zbl3D-khf>EUvWO0%cpnOL$pA>)uIU0-umouI?MBZb?+>Omr-Zd+&=*vtj6dOYd4FG
zTOvL*$k0eJEqS~eL}qzhnhpNKp{Avs2QUbXaBxY-f5*ZG7@lye&>L#TXx95hYh`qG
z13lasKV^%#4=?7!;!0+2Kxf(#=5@+c1SF&_LAN(d+SvR3SDzCQ#Mz$gjl3AZV{MBq
z0Lg4MNjZK?d`5`k&^i;?J(guZ>bES9x);pN^IlL1Sb^QNWLlnxWK^N$R23?hDz%Y!
zAeUl1aeTpX!CcaLE|J<SFTFm^jCD`@CpomL)M_9d_gTlHu%g&tfCqRx2gyos{g<~h
zDA16+olS<b&%0wYr)7+bm89{=FOL+y7ON#0yysV;ue#pwafRk;8K}-=k2^_N&bgdn
zp9+4PYBd^W8s@~GAVw>=Z1YIhEJ(hdS;8x<mS`5nu3<s*@W<!fi_~wviYpSNpEY`$
z=;djmGyQ6`>3Ou@bSBBFOS!FlR-Ibj1^rt_BB$CVmG)Orf00D{NF>pzb!nc18kuj@
z46yy4BQE1AhE4oztZDj%=1|SKhjH4DmHie<C{mM7m2-ToTZRg>=$yp77bVw133q|=
zrpUC-!|2v%e?n)eiw^RQfuLMag6Rguf%VPX_QS72TfYFe*+1G1i5ce~3>~P%CKbNj
zT!ANnzOrnVc3z+(U^`X4-^Zdp^{6FEUzgrGv|X9jExGg;LG(SB=GCWEfLd{6X4D1x
zm->gN`T15K&vlpD8I)agM%1o{yfbx!n0|Wd^tjgO@#1bQwicwz!s;lvc%6wx>E6M#
z%I2<uO3~@RDxQA7o%^O6IxqCR$oL+=rJ&nNM`xm_{TSCNXd()JbUN5lhPh?CCsoO1
zvf&gX&!AEA5a3esrJO2Ol5&>x-YN7@D{TDcMPhX}!&l-W6+A!+&+|saQmr*XtYC*}
zU!mzYOh&4ym;>fZef=Gs=!=t%N0kEj^WWG#CEg1Va6k!Dv9feZLN`g$H4K|+<V!8c
zW0flKYcRde2JkAoUHV@Aw3Y!LMrWaM35Yd%3S+jFE8mtmPI~6~UvU_JUA@)0W@(Y&
z22V`6&<u-fai~_DMwmqZ<-%ML^ERGg@DCT}iQn^kmHu#HUL}6MrNdOoX%y*}#QXfq
zCsn7*Bp2pUkGHi(PJ`b>3bb1jeivn_wtM#YEKZHQ%iAJoRk&5Wx>v(vKB1qzKojX&
z9Z@=8*G;3Cu5Wd{$<c2Qexn4l+OH5uCjv_4^ziUqpZ9(rQAYXZLHPb^J*v3d9^Zzx
z(8%4nai?+Rmvb85!oxtta}+u3I@px|F)z>q_>L33VhfBE{Aw>f<?#L?%%{P$+i??D
z?D_iqwsmuwRxH(v9BL+s1jX~j_@$u|pYCsy>_j{pmrSaJP2~K^E(&Msk#rd>8eX4B
zH@VlosP(10ul9|A6y9xod`=@gRWY)NrYFEMG=RU+-y>}=VSqX0=KNRrK*{U%GZHtg
zn_hB5ZZd7ONIxU;Q9m<#`0Ta9dBDN^?0>fLUeX^N%!8jCOv4c|lMHTI^+N8?B;=C{
zr)7d#Rpn&3=fd~xH`SB8L!MBx97abM%$W|kPXrA18Aq)sLNkwm9ajnbayv8{;7eGB
z<n41hmqk|nthel9tGe7vf*zsc8_I`IOh@zT*|`<Pjx<b72NNJWDXO)jPc)CPQiv>j
zzZ*O%0t0K}*PFDYMrheW2`<+YP0boG>pn+2qid4J)09$w9s)pg2S|hnG<!T3ip!P)
z@=Q%^5LQ_qqvt>s9esDJ#pH*$x81$hGOak2E&lg9P{5>t-}-bRlmL1G8KOxBPDBHQ
zJyv6|&!^}sD3eM$%>?^l*M%R2-oFUqvuHL?f4!E3U0@FvC1Crj(cY^g5(@>68ca(D
z*gvhnM%tO{w4aPZPhR`dVY%A&x#Ql4k>((KDYEswv&T%%37%coW^$1BkW)pmd};hD
z*dVtKp%iQTWD<0{LqSW_^m7-ze}I(+3RnCx=Gv`nPkWxLG5E!=)0Qq%t@0pK_g@W=
zP6IeUt>p8sxs>8hzAsr5tzx?{C)5oZy5*AUvdSuW6NDJks@q}MYpWN1iQ1w=p+Q#6
zy3W83NEB6=8C(-yI4_{K^3}fgy%nVesarc7dKrEUUFvC*P?&A>0qYGZlpQEwnsW^`
zZSaw?^$-6oyzQ2?M#|}}Wpi^=lwy}Uu^ZS_7z;PE_xU7jhwdAEpaP!a*~ggGW<csm
z6Nr89@#DeOXG->r4YAEs%3DvaH!(>aa$XiQ`yBlsNcuUGCdpGd#qjX6S!12+CE2o+
zW@Twb9feEA<yI+sTTEAK`qyh$Mv7Z+mf<Zt5^Azs>C6lpp=a~kB6P-+XRxv_-_%}~
zH1dilMKm^4y4e}D6_&M1eStBS)z}bNNjYhZ_Xiee;ImI*bmk5n^7iPf?E8s8XN~59
zMp>)^&Gu4%%#>V7?0w7{n8jz=?4ur2e?@m*!&iM{FYW-o%@%!8n{7;qI@M#3y=+*k
zpfWR%9Uzjfx8^sui?knbTEx11ZD`)`qAxYiNIdQB!@#F;hkU*GdB@bv+ejfQ8JP(k
z4p-w8nSa<RC-b?ctnE9w<KEo~n(!TK5lE8iff`F{hU(gdLun??1yQlcjg&l3qfElM
z?iBtG=KvKxJ+F$Kp+auQ9mAi9DH7JDZhF{e-N6|iyX#$NvO{!ep#74kM_<|3arDwh
z0dN*$=SmXf!y5mpXK|7h1|f3v3Y5PxLt*BcjL-^0kiKpecXho5R74wTl(1NQ&2W*J
z6tO9JdYEW@4Ch`SNWt{wjD$|$DG$D;5_MDrODYzPkP5~FHe`^uMGxCKymo7ftZX!o
zj<TI3pUffy6JR+qrw=M;ek0O`EHJl<nD%~oAi+C&0f4guS?PXVFn7WLN5v$J6#@%)
zR|?Lsrc!^Cflr8CIVQ++(qm3C)#;!YtHHCO@J7?3y#MSARQ)>=(=Fjn_~`cRISWeK
zcEPw*9>*6A&hvuZ%|D(fv$G<f-%m-_4{N4+!J*7|$1Ku=@9D#L*UlE9Qa2kqLD_@r
z+BJXieWjMLW4+I{hhJw>s^et<BD1l4qwNp~$^uH{BKIBXml3p_5h~B)zJp97Sg7_s
z2*cBCfmM23a90}n7+?E=6l^YxY#HzxKahBh2{F=A?SR)f$oua2GxttG_2uwIl+w`l
z&2(oiEP{a?SEhfRUJ)nj^P0i<!OxsBjQEjYc^oQ&^qvjbN>2p1VaD|F0b(Y>aM6fD
zyzc7ZLFzK$lXI%?qrbMbYO?jUg-YkfWQL+|xesU!slGnHydM@=Gd*4djs5A841O7?
zjN0Mgp_FesdiUD$G)NG8_Xz&H2am8~gve(1F#&qoT7W&szF#T`tU~eZcTW6T^}M1;
zqSh!<CLAh4!48)9`u-cvQyw}2XOLGhXYb~WQYW?95Rx^zDmh;ad`(akiI2IjL_0bw
zR9-Yycao9?BG+NyAF%p_%88aUY<r^fvnA>FsYxs~j#tw&`N95jYVmi3{;)>gCqHw(
z`0tWDQtb&Kh`A_ukJV=Z%WrL@hhxDIBOTq2O&ut#g^c(~{(7(VN2CfZ+<Zwl5>)TC
zo0Z=nHd6{;7G4+O#4{bkq;hs;wS}cVvPGF$_FWHEVh$mU9&oxWErs5s3~46hnWPO`
zfP|Cp;62GBIpk&mr+QM1%*uGq8P}C=j5;*bo|MVo**OWQX({2n&?^_60_a<Re`Ry>
zrB7wcxwOCUT$;0<)$(X>S&*Fm?RoJc_hov1gL{|1*Kfwx*nBl5re)p@&ba^NKa{Di
z{2&L2CZkWYC<|9|-2Nq6el*-qQcY$`o8g@0136zdx^#cXR6&<SEeZwpjI%~{0xfmU
z48TSifZl+OGDvKJjWXlpn?m2vIohC0cYh{i@awOZKe;Q$$ma@}T)3Yzl$-jIMatqj
z=oLnrm3jI#-Wtf)i6Wornol}i&qKB&1e|t#q$?IK|B1HRA@l9-)*wHB{tHlAQYm6N
z@__?`L&q2T(I#Gt*R%DDt^%t<V~gGWUQ;3+qX(dcarhtnl6`?+bwP=t<nx7dKvlrm
zzMEiLq3#ed%49WZz5A$Ftiwrju>b5;{?Ow>LG}2LEL(0F0+XT@CgYN~3QbM9yU!u0
z-AG9IS8UYv+uc%rJ4!zuO`5qr@o&ii1<+~uKBPf-7>wqR`@hY{a?sBFjhbJ${&MCU
z4LSHX^a5mESpZ`zv^uQ{$Ldv_*q)&L-`uQEw_oR2+NtXNo{?pCm+7yxBz1x`26pR`
zFJbC&k8XUF40uEXZ4BklB3K@9zg%?UA2%+4#y;ErRz8&9fpK?sXoQsEy8syy8o6tb
z*^a0L;5>glrr=T5yX#1uyou3pyG@kCnF}m^%2(1887f!<DXKeh@zRdc0IC{pKUQHT
zkpZkb)qy5Y+TQk({;JaRc8-tEhfV$yn)wlL)F9$@Mrn~7e-C;7g(qF^K$a!8Zl1*W
z05AqRHk%u%Ks`|N&Yj;Z=zHj%KHV7dQ4pmExw0Y|@$X6d_hQN=vFsGC)6W5k)pKWz
zwPIzl=#&_NK8~hyM#xuA^Q~D~7B^{W$)13F(3E3JjsLAPH1o#lW7s9ZuAOFlsu28Y
z^06PZzc3KjS;5>!qUd9O{lNMZQp>F?by;o#OpaspA*0k}0Ar7el(*X$8^0gJ$6W(b
zm{rz@>8DqYwWnMXfAOMt=<E;Vy5!S5x+loesW8_Tz`JC1T7Uh43ja?Uum_3Si7`Ld
z_V?iYdGVu*RPmbcasA`~cox5%Q~33s{=qo}!?GU(-p5C(bm7vk5JZn?@QO(@lXDor
zC_1;0^ZzI3@}G2?|NR*J^D+LO&VOI*@RN{_ZZCSkzWHBVO49W@4{4M`#O5vqQ47w6
z(HW5cS_=8sSp1LyX_aRrKi{v%@GDtBUF}Ly8VaZd)ZgQL7ypL`GbE*F*zV8f|9X2;
zaZ!i#33LwaLX_+#?Toyo|KV%@_q-!r)I&+%46C93KS|y{pAk;tuF6K{pM&{Pcb(Gb
z`X3$)L3$tbCk52M-k$UcIiy#3FdxjBfy=On?hEc;ztq2nnRM}rKsr)n$_xL)ANr64
zRe-Y^GwhvaPd-<u@jpD618J5c<U=F=1Ej4-dPN5*gc1ib36{CtkAD49|NR}W(SUCT
zYHP;$E6r&?j)V)6t`gV+jWUKOpSb?}2b&;eCJsULEGPawg?>9$Kzb#|!#u(fkOw>U
zKc)TprT)9Ph9U8R2*VA+zkc412x*#nx)?7o`FoHU{Qv!f)dAb7<OxcC$-jyde}AkA
z=@mU(3-dIFeu|}bBN%^L_T8P3=MV4i_Hl+uy!;=A%vT@yp(FK0`WOCVNM4ZMSvOH=
z=mWyvgRh=wJ$`-EWiOc`QCT9Y_m%ZA>X{LZucv=~uz$^vJ1!)aca_p_+rKWNJMGs%
zEZfd3hRqw~Z#t(A3~67IZ8QW+!wv=c$Dv8~(jLl;T1}}2r?mQ11V{Qp#?gqiu}>6C
zqM9Jq$#O~yc`xobHB51`=BL50EC=w=O`+hbI`MN&Q}dsEDH~3|lKIEPtEVDOqaZ)f
z9|qI*pFejllH9Jzub}*ST+ZSmj9~ZV2PM7gp*b&=m$a_G%Ev(EO!Fzy>$+qMzg|F}
z@(gt|O(pn9JiqyPpoEOBExv!ag<P}lSW4e#*_itmVX_DQlBEvkfbaQnAGs%>KRH@s
zSs?H5j#FKcA7icPIMw7hY#9waj-%~nJX3zl-^5skUA|MVb6nHW*cbqllO&*nFD}Dv
zdw|Y*M!`XgFNxFi20Tmiz4hC`j+!_c{80wHc_(QWK7PdYA4cg{o{+YJI7L1ag7#15
zssh<4MTV_>H_tH>z%dhbA)J!+ztVMYrg~uBYG-3pv9mv-K(pqmRTyA&))0O4MmL6Z
zUr&v9u4#0wj=wr}@+m(l#tC5(%U@4q+%&d?0HI@YdVa=L{ht^z%hrplK4tPC@uO<X
z1U|;z{US=?SEy-xGb{2<&Qqp~*$leAXvwxv;j$Uzqui~HpHwGUh?sA+J#2(7S4m9!
zEY%eKZZULrr_B|!ojgqjRso!(Mj#t@b?@IR2|TqXuyjUdTCPUjuHtQy^1AI`Yr^($
zSzVH|zGTh&|1PcapuwCPYClryDI(*;%!9&x^<y9zH<NwgixZK$4UC(`b^dAG%u2hC
zcimp>%jn;&p;~PE9z`N3rPc@m<K{?$1uNNB+lL4fW87)WG4&eBXE#@`9)nkORu5ZT
z1e152gLFRhJo)?=bmQ;mrVaqxaj4vItx<Fiuzxt^f#=IT=~-r~q8624fe>7ZMgN}&
zm^J_Z2$-_}Zv;%23+r>Pt`B|)FZDURvbBGBVQP07#(2={Ip^;HQhi5RiWD*YJwe|O
zUP+NA)|r57d_@v0H-@AwO|gG3HsGml1fI2dtf+6)36v^<=wxc-q4<3H8D#Kf*pFU$
zYmxc$;~qQxT;+=gLtO6hJ1ymP`To+LYD^KB&*<MB(g7>FA&2|kw+C=6{~pj@_;J>k
zQN*%morWXrHL!+x6nK77Mrb|?wRFL2p?Es#O*a>5TMa&a9D~en(e@3j!^HL!WJ-M9
zk9O|wmgg4=zw@xB6LqWeg&;W1AmH8>&Cja*y|w;%L7f1OIfev9so!fQd7GA{kNEP$
zy-<Z)x|8qwGn9WjbuHXxrn0Jdw;gu5cJcz2!e`;-LT^ODqoRkenKxW5_KAW$BTVdD
zTO-b`$v4=W!>8l-uzMi4TEv^TzT-KTc7H1*|GB5_{78u<(D`IkelJdQ>e;tDf_3}F
zDA9xOuLL(I%K>UO+<v@PRl@mM#>ul6!~+fw4~Q<S`=>$}!~`rl;sd5o?#A_AYZ#d-
zw*$$5K**<8ug<@hek}Z$FpY{_1d93ZZ>U;ljDkX>R<y+9h0gJ67u?gEY07c$dec>>
z-Nc6go{_xP<@Gzz+Oz8Opoff(dtRawv;_>#s+|SWaHdZ07sqF>I+YjC+9v~`)A-)!
zC2=@5R&1wIipn)<tt!7uvhxpEic16{AJ^+@T(*=Tb)3TV5+Sof&=42G*VX5lS#3(i
z2KkbJu<tn_QgKD>ps#7o0kE%G!?&u*ejmMj^D5%3_6ZKI85`_mIs_CO4r8QMt(qL>
zwibIC^Qb5&(r7u=9tq>b<kBB9CLJ<qp**c`H8j$xcb#+IuG&jmhGZ^FcEPp=*SPcw
zHYHJQ(r)@^d_SnYDnKEcML5*Bn?)ijrX=3Tej%Ac19c)U6QoDOCfpj4f?jxbj6GQ`
zzVJU(J&J-r_)uh-%dwIr0$>9}@|hdzf(;olo$o#<4z|fvKB^Yj@f0}u(l^MVCpcVh
zVI>bGYNx_1NGU@GyRivu=EpB!wjrk8@otGVN>oQBajL;{J}@!aZBvi<7?z5=1o?)g
zDRRU2%1ZJHb6>ukZD1HMuGsxhdtO>)Iby6-LiCPDF_VVi8RKdO<-T&G&l>Ej)9=|I
zdtbg`OOH5ryLznwcDZs%nuRX;H=W0xuXYNY1H$_A44OXaajGUO1BJp*O6-yTJ3Opq
zc6}k)I(dBZy7`86nsM*iB4zj3NI-<PApN?|!*Kf0n{S4i8wH|!gU^^4OV-KX&aUGw
zsU`ZH&wE^LGMLtS?ctj@pqwc`+gkgnxKu#Uv{p_=7R!52{i~>3)QtynAme23?Jlj_
z`M^8RaAAMr$xyP4%lZ$qr@jV2JuLGcP+a(;c_RJ*Z4@tK$r=DT8*Sd3J!{xsBoDRv
zJraw@ak}h$qiMVriGFnm%X+%&<U;IZiI=nsEEI}lmG*e@eiGJL%PI$oHMchU$wTLS
zb{v`Q02JOHgG?))6^54EZmFU0pN%Q_QO0z0u}qtDf?r6IZ^QQ!#f9j24gB#d<DBTy
zCm80|l(pNgnH>O2%9P4#fAWm!=N|Kx-a$Jw^Iprma><QwD^T|(Nzldv9Yvl;6>luU
z8T|aL#&%wpIuF@b0kL95#<{5Z0lh4R&2;TLdzQA?x03Vhbw*H71n7ttiLGTgm@0iX
zx%TLm)h*>*<h3!Y8yDCUJ*`qmh0aOy2}oI<%EIJp7WGa+hnKpxV~>{-gR*_p^MhIg
z{~+pk?6os4p&hOm*SM)Zog(7GvZ5AzsSDQ+=DQ~wT^71&l;2*J0CGx^<e|&DeqOHp
z|FC9O@6-a$a3mtNCbqYz|F+3oxrdYS?1bcg!sfRgb6{ICyvCl~7(jmU<7tYe9s`nU
ze|KrE@T%l$+w*eCLDzQqq=Tn-8IB+(MNZKbJ~cZOxqI<I^lNDdAy$L)Vg!W3eovOZ
z5y1q-s>)9#GOHMM?3x7kyNr(^bgeyKxckCPz;M3@_+TaTW`{{D5g(zAz6^EFqZ{Ye
z98R#zXKBU-@k(}{8#rlv(Cf;!H6yteJ`p6D50<P-I8)3O>ZFr9yPd4K^NXO>Fm(b2
z-B{b2`5r|=e=L*@nWO^nMmGzN=`}6<o*{?`fzM-#YSd#Fgw2ou_oL}~jjog+83*lv
zofDnb1KF=5Iay@srCpaUo;r2vyX9G<WZ6+$46;&E8?yYk=xG48nXK>zpbX0cS?9vi
z3~~UGMeiv|n@{44Dt1i|4MyMVztIEx4RAEg;1;vi1NA@yOy+;+k?jYNvJByOtoTMo
zc1&_8RTid{mhyIVSF%4O>%Fi32ZqPwusy+!QK+AyUDZS8xxvKCGwOF`c)nz8BIL6g
z$3&cB0W2vFEzrm5tRA29c6nFiMmp$qG^x!UzwZCUeix;{C*OF;v$9=UXbHhs*H|pN
z+)8(4O)wsR&XNI8OQSPc;iCafp#-&ZDoj75%(lPu6pNIPk)2|dZEpoT>|mCGa&}3~
zS{an@+`bhU=bVNSuwolFJHIQaNUqGErzgOAQ>$ko>LOwXm2sH0y|-zM^w-}DSd8Cr
zeI)>C#l)3ZE|whny_h&W!PE9U4hXKZzxQ~;vBPuip4aBwK2IA?B_Tv78_nFv1cP87
zD4b&;IRFnc+XxKj%%l3V%+EN}lOUF`O{}}<XPJcKM|Lln6k$?{6)^m3(+Ggqzdi;T
ziDiShkloHT?SdG3b#$Adz80QgboT#<Ybywnu>0h&X43!3m?>dn|0OhpTB(@&c5#y+
zchGs(dq4`ikUJZAxvDJu_ncCh|NETM$pXUNr0M3w_V44%Jn&mLe{6o8JRF>)BFom!
ze?|t=<u|-4vmd`a=W2S%J&9mJJoGHaE_&k?>#7L*?}1htlNCZS;*z4P&5#pU1_+G9
zeI#!62b^~(MU4})24qm#y!*J<12Vxs*{AN*en2Q8Z*)>EIb%McQVpyjN49>)q@e?%
z2FlfB-Xji0xqOA1<>ZdE#ecC-QA>NRSCPGGDmhnOjHOi!%5CF{STN+FJ3tt9z7RUu
z5b)@?Ot;}!bft5~PWSwqQ9C}H!Q2Oo_xve{0F}oF0S=3)lOtWVtebA4IH@8~t((i`
zG6dz6R*lrFzh<!OyrjT(;APbWBjBb~_BCZh4cW<zIGS{kGiKIO_t)6Y2QNmfONvP>
zTn<Njg|o`SaI<r~pP!(ova$>-UEWXDt(V)Vj}6>tGOSvYtP#Oxwmq4HX}sZ?S2c4U
z8;o+#?9sQOiBY{98cyJ~{4B^cLhcfHGC7THsAfIi0@4ly&Y`$HDAA3(MVPJa_nbM0
z+jM5kk9s0ls)J2GWN#52>K@&lbZttcWR|{{fY?`%jYxR%Y_qK!Xy^+Av*eNL*u$Zk
z4BSTP3R8i~8uT{CyKnJjTA(ARo_K%DXW8S6qi_@7Ve>}N)0^!9S`jX|NpcAzjU-?}
zdg#o0Zfu8l4iJ#h9uKBri9j|UBl8aiYJj|R5y>sNH_p@m_?G~;<YXD9gY6-bTQWYV
zhvb%gRGjBsS=<kD!O814L$`Vn4ii3?uQ!=51u%x*dVV0>!EVG4ExRP-RC=o|nP6~^
zX=OaJCLb*K-xb3TeLZ|KZ*Ap#?XNI9QD(*GIwEx5tD@L;mwag;BgHI$&3>rBFagL@
zE3d$wZpP$MelE8+mi<UIvG$a?k#|nR4B4@n91tuGS;0<zd}0o9*s+))(N8P#{}=Sr
zg-`z-{Z#OyUcQMcZ}Y*bx}yV77A@}JM_MLI!ISfiis&{4sf_MP6k8%B?hXB=2qO81
zB1jRVG?ge20N0@%tAr%T(-f=L0&x21wT3p_TMi|DxDtRMcw3CQPQ>PkS4YhQA3Vi6
zN#v%$DeN$Jbz@zsiJ-Bv*M>Kr&wL4)?PBq)6Pqb|FyBb+EbWb#3so6ILJnJPpWX^Q
z^GGEfW{uVJ>u2uRI?v@wh|2JCv_#ebH2}a{b?*Uyfy`&GrxYcCbf#JN&&X4!Cf{eV
zifXB%b9o;I;?DvbBpCOz$9o=-%p6-b`Rq}=1<0!@-`6+k@z$0pAm&zK6nTD8lYzXo
z*!rjzMto7=aRc?*u5hRt_<k_n*atvI7bEYFIsQHaIeM|8{Y6Nm%i@J1J?TT#>&8&P
z1=r8tgs<4G)%%{<;20xmcw_LO6>rD5p{rE4^LXI1Lg=%kvD5TtfTxb3zYK%fa)A4h
z;nnvtP?}rNMPAcd<kr=1v#G+MjvZa9$?$8UwnIfKPg(NGEWHN&ahMEwHw@Svqxkg}
z5il{kCAGMll&*p)Cgdxt5K3MVX99&+EAGXS3eMCst|~@VB}pYCZRYG$rfp?EcN27L
zMxtZPE3U<ECrIF|I&`kd1V@tdhIWo~;1ey?@C}t`KC@W_VVw$lsvde}n_Qujp@k7W
z`xM9}ox5xm^Wl#~cwM<-@A_wkTb8W#CTYZ1;I10iFe%42*YR^U$Z5W02h`J6ebDC&
zXZY~n^H^8MmHvyzia7cImB(85VNq<|c{<?YIYvD`W7`#k>13=)vkE$JYZgF2F5fMf
zg|UxG@tLRvg`6o>Q1H-?-tm1VGuf;W@R{WgWV#$yG=}e@4W>9xNDPDRf9vIAyKJ`3
zLBr$TQMJACp+@S+je4mF6(MBKN!`V+mZ}u-(cm^q&E8@$2QO}2mOj1TZn)_KN;Tou
zXLTr^`t$c^qA{q5qt`8}A70D=ci>_4HRx-N#dAU+Y`X18M(|qfwOGQG#Ioz>nif!o
zU&5D3w(A4B9m!0@GGINhFTQMfrp?BLt^Y_wIZBkGVD!tY^NTF^5Td7=0s*L3jEz`c
z$*~3ahUom!9zcr1d;E0f0YnxjDHl_c%WCJcG@>zf)$bg`!QF#1FtZ<%(38;Xw}ZMd
z@E=#U83?Si12Hnror#c<uOc)|xMzO>y^{anm0vos`ZXjUM_zFD$Z}2Xhid})p|2pj
z{Bw5UXIz2-{$6SCcq``?TW%XQsvxuVu4`SpbxBS+Q2Cy)bE87wL-w)ItMYT6ta7c<
z8%Jwp>cmQ-^n4<;%Xtt&NQMr&!yzk{!!|Nd7{Ln<A$a<986+j^P2Xx;b|`(kTqXS+
zo!2;2SEYog*Ew&{+_RC*M%^@IPc=nRHVwHnG+WzFBzn*u6fU|o6ArM=42!rR)^q$7
zPa@M-Y9@~5-86BKy_C&xUn27Mc>bOb#SH$*ntH}i--MBe<E}&8aEv@<2z=9CQ<V4c
z$Bci<Ari^b_-^Q6HAMJ5O+l<-<VcbCe)k%^Z2w5<a*(8It$JH4(~c?aT4?&{K)-9@
z;->e~M38FI{Pd*#l*jFEJMFty9{&hrvL}m_-njp`t6ijvS=SV{T{!bD$|sRYsj|9w
z2iJjis2lgn(@a&2meqYBv!24_m_S^slWiB9@RpHtbBtngKo-#z+pwt?WG@FWn2<T{
zjZ`#oJId<#k9rw)N-pOL2eV`pu*i71M5@NW&^zyi(%j3w`Sd)d`N@;>jDxY41j5W}
zE<K4<**}J&H*_&hSwd6b?d~GK((B3|JARUk`pTVGzk!Ruj8|7M>(cow2<t0%k%Zce
zW%+k{6Z?AN77Z$s83^RXLlgha?CTM3dQ=n5sQDCFdf~h!JvrLj<#2s9?s=vtw%lGg
zSWjnvyM*n$<=BR|E5b<Dt7&Ocro<)SH@N3?iP^+vwGYeXl(Cm-gg`B~y@Emf(D;${
z@J3U$Az?ZkrYOLQ=Q+%Y86K=qmC+zzB%V_eeAZ|OZou-7cA6#{s$`KR+xvHZ_i%K1
zYg4di_rbaIL8@aj`SgNKj`!2>;#KkZ$LEK)%bGNO-9{}CgAAV>vpXa(B1$`ZCdBs&
zQ(R=6tnRi5L3Ltw&LT?cKrYMcU@0`fcdw})ec2|0D<?FS!sHenX@Z6mS>Wf<*ls$f
zm0Q6K#*wo44<@oMd83+n>coM9#z`esV@y&nF05}M0^>$>LhsCus1BKG>1gFIo4Ode
z?p`<RnHoaX@Z;Jlc|)w4Yn|79&Av|Qjbc@_wo8Yk-VkN?aq0~Z>crFdE*npOi@*&H
z)bKl6Pl$h3GQ#h)#x|^0!-~pA4ksitZ^u8|7Z&#69vQlzq`+J`c_S~Q0BLI^Bxy#-
zdZk4)%h{Mxgq;ktDX2nz5P1G+ukWCC{4l_c^Ptcw1)sEfYoW)awravkMzyvs8+P9@
zf9ZvF(kRuLX>WZ8bg5+55Wy_d=*;q6q{l(k5@Namx!GwrF|dKRDWKyhx0kkR8Z?iT
z;K|*rEQ8v{_EIHy)rq<K*l)l_`?qtlyu6qzj!Ad-<Cd1wq+|+MH^$e3O1fm~a_ybq
zi2jKq$7%c(jE3}Tw5Hb3Y<8`0e!^;yDuOrSH_!zY4AKi>i*9<m_VnYG!@Mf=swsDZ
z_tx8>plzjmwB@E&r}?&Wg1uhNs_z(U*g;lZ%HHOQbT4YbK<pG(mt)*ZG}erm<i_pb
zfb2QlOjTQ}hslpzB5W7<Twkeb>zth?txod)X>~sM2#K~mKiT|d#I~ekFtt<M0=t8o
zZbMlnI<^#!yP>y-(+_+vwT90BcumV0^L0VIYTUdz_Z(u(Nu_eJmAAksOuG6hw8-gR
zjd-z%5#(S|Jt!^4AR8qrbcMms!|^r8D(rAGWvyIQ3mekc13BE8wiquO7cv@3P#?Pz
z(e2)G+c?F%Og#&2H-8!zaRqZ_Dm$LE7XMn5jrw<}9WJqrsl~@!Xv#6+Jl*5tOvsrG
zs)Gwi_lWL|J=*NLfH&EMnKjOOsTmqZ7Yu6sUj0VtFD(F$U@`0HQw?X$WAaRd_jj|z
z8b*~|Rkx|xj687?jdW18%K<ADHp%1@l{-a)c;}0$JL7sMSEj!CY|lnKb*XuadPv@{
z+Hu7sadmMfB}IQCX%KtqTIjKmG9_=(CMz{gM3d(56obIF=7TA`<Ci4U{goZ3_~7r+
zY`OE2V0Dc~{;|3iOQ%W=9J3-X=nt5h!iz3xuD3i@9#Q+<BW<}$ovehg@zu6wb;%8O
zE87mi%A#wKH6N5aP~N<M%`C-%wYv)1SXQ?z8okb)amd5$x%K6cT1m>tDeHP;VzXfQ
ze4OQ~unVGF?py#By_Wx$sE)plqt>?ec3Q4G#+9%hlu!-vul+Gr(y-B{O5R^S#H6&3
zwwZ8<(Mo603){F9sZeIC9VV$CF6?@6TMvKvPHuVl@*0cRJ@M(>lC~fK)lOk5(mhyw
zGfK4_eS15=?%*6&jcC>f*~T}clTOQww&@Y1@-n^?^vbBXJ9Su8^R$SQPZFt??Gkk7
zclRJoX!%J=eX1!ImmkN>wqjC8-Ai2SAl7#0<(o9_5#RmCiW-eX-&qxNMeccF)w*)F
z4=Qn0IgR_9T|;^UlPX7qvX@xbq1Z0O8C>9$W5MO#e%H!uhmXtYL^E1!h?(z%(Jg`f
zst;3J-!qcqZTqGc8VzBe*52Ab0;`F^{<HD+-XjO9mO~dW87yzG9-Als;T@a)xrFGB
zaJW2tCN(DpQMXlB9VlMxVifP45<@4tUUvh-pjwubwfy7&DS7cQ>Cr^W`%Q1@F;(V*
z(^cU-WY^9bL9u0%uaCl>PoTAnbY_LL-RI&gW8BTfVX5Jw*~v@g5ve21)W(T{_#}7C
zBHjoo(s*8^G(DX~=;=LNYJIbpt#dP--uu~UT0{Fvi-NC+iY~{A>0ZN+1+U$jmz8Xt
z2O<<g*{WNz+=vEKnVv$0mtu!Iv51M<0@X8E$Ggb8sX9XcSTZLA%fLBS2tgh=7}4HE
z?&Tcp4>B~e>&a+ATs9aW)QSR9?gxwCG0B(jB2(zuksYBoP0FNqTMf;k*B)lB2GTJk
zaO|%#MafA(6L;^3L-)_+&CAx#Bu>67P$OT`QAa)wBdchFi0QdE_Me}!tN6M%`K=ME
z_L|ZCc@2daMI>FFI98on(4H+rWz=I+uqk2of|3>yTM^n|<m}33SK#Giol81;Ml*Ok
zgf&vcLsa&o;YOX1X}$6EQ@JLo25j4nYynYlPXnd9NEiVlvQlyIAv=Vdbh12joGzyj
zK>kQ9TnU2od)*4;pC$`-Jem2O-|<#Dwww|4lhcl{LdN&`hO}j(&_Ra~#1b5yO?S0s
zIRZCZ&_pyW9~C&P@}3>2N~esltHZ`H<z(y`ncl=VI2qJb+$G*Z;EMWvE-h!qq}LYa
z!9R^ZkYzrfl5ICo)%Q_JCm%Nc=Q+Zd>8w-x-PKx_Ic(Fc2G+MEZ8{OOgfFe79Q5<h
zBBvWtnho<^N=foC8VDQo`gl<IodBhspCA5sV<JP<xGp|B!?pgjN9y<Kfgu4GCzEiF
zoZM37p>N%e{(0iPgEKKHM^iH|+as&@9H7(=T&#p_epTbxoW0Xk_El`@<;!uF$rPr;
zUg!<fodYW^&bvspLwhSYw%@I6DAo&p6Q9wyYz6<_1I0#6z4<inwqb{{eL!>@di#n=
z)LP%*x$Br0Q?MTG>i7yu$`((^>{{cEu1%bVm?QE+b=cI&cc;{354MC~;8)%2q-<-p
z2VsK@N+B}SVIr;b#P~<$5HF(?x`E{20tQnAEGs=Rysyr_8e5K4k0m&Ozg~~6+fPH*
zd_B#yMfUA>PyQa)tD4oOXRKkVbIsI~{U#@I>E#te9Df8|KR5dNb!zG+CRUVCC7tRS
zTz<t-*}Ck!jPB|Xi>V=mPy1odXv(aE!+{jDM|0mKvii`#-ltiBjhxNXw2Pa0PfHJ$
zfX}jmm$hw}%_!Xn|AuSNaR`WH9doB%tDa^(CtK;&%SEZuE^G7Q<&W&`SS|-y!?2ST
zy<d&BRGQAD4_(2i!Yd?JiqWxEWrAuQj2R1wx+)o_Tsp+Kjb^#r>D~zwR{ZFEf`uz5
zD`9$l<hHDq&bYa8cue>AV2>o9w>u+Uc}&UhTHcG7>-v2N?J}~@>?VpHKlgN(*#0J@
z#L{CPKR9H1WGKG&d(q^UNT=-p8bl;)N<WB$heTcX>b!*P48t@Q%r3l{>{VOAPLXa_
z^^uEVuvU^wRey%_s-5x#W~tg^EX{1<pgO%E+_zb9t=16H@rY<vQw*jl%Zr<qH@%mz
zp$Mt7UZt^l6Kkc(=@X`orl*&T9F(*W|K5+a5gFUAg{)0X?vtm?;?kgMY&zIw=Pntx
zK?BQYp6&sW-r|YS!GfF&gJoZQV>)I{H7Uj1FWx6b)b+qRJ9+RfQ+;@P#L$dMRn+EE
zs9?=SNXek2g{#&cn#*20<*-O5SWG(-S~-!CLPL4<RntOBD?Ln*_x`?V)WOZ!wQ%vN
zj=%(4%|mJ~QSL+PXYJ*NK{|T7`Vt*((wx$Sedoy~oBVUK616t>9PT2i<CkQUOw<#|
zr*0oWRK2B2Lo#XwL5Qz4^!2NFSH?bUc*e6<@<|pdCmR)CUrHUk*0b3uRp7mNieCRp
zZr$M?Y_&y(Fh)z7og2Glg9f~OwL4Se<p<+yJ`Bk|dy5-I;+Kt>B?Ja{YY8<4MyQ^t
zsZH7&F0dGhHog*nK$UUN;lO06OGs71E{oY4(Imsum_6;=KM2iMW#?wO4WKV(#D`<!
zdoLhfr!42z?k$<Uz8>?TcP?C3FnCBji~Q_gxdoW!ZvtLjF`*CgYz<Ewyo<b4FEu&G
z(0CT^!QRAeKYihZhfwfP)4R(}Qb%}(##ptwI&{9##sFO-DmF0(Z7y52^!?>RS|oxs
zfz{6g5s^aeHs(20Oc6@gcW?iI4ek*B%<;!DVt}2Z!+`ZfKeA_$L3yAy&AW(tIaB?6
z>F)Cc|26phkL)G;W%2F7ZxmwOdFfjgn|Dso;7%>~l^Z+t3>UfxMX%h6-8r|Ck>ZoS
zbF*am#Dw_quWf>L7ffK-GU|*6p0fpT{`4D_wdWOd3LH^83DAdHXl<DRn=iQt^d!6i
z>%L!<JGG%AU|p8iCz<0z+cxery=}HySzR}TUY6SXz!qeh=w!XS-lN3II>=UOk5J9t
zJ1r?}UQ=v(u-E=_m_`YR0eRtu3;W-lSU$mhP-v|__WH&zQ~Sn*>447{aXr^tW%&{4
zJOAfk!?~ZT;hSr9!$U0b^4ig1OG1NvwY#bkddQV0jZOF9My+luu_kNN8El8?`KGD^
zwBcH@=@ELS#Gdb-Wqm)slM;_@F{M8?-`32mWhb49J4333#`kUm1q>-h2X&1&6f5oX
zB-cS!Rp`Q}phm@na2~c4gS*K0Zrd;JoS-`YGs>{z2_BjumL3}|4*5Hd=$qdKsld<4
z3t=t15uv9AQ<6D(`s(`7l*s!~!P*Kw$;zJjr{b$1>JgN6f6au5d`2+9#kGUvSAS4s
zvt1-eTyA{KnUH98&4==~+sd$0^`&k@_wm&f`6kXKtxkcu{SC9S0bO21!BGLk!Zwla
zNq=U(jdK}@!mAcOhc@IC)Eekk1HN&P_-(9)=}BDR9!)X)@1Pr8T#7&byNCQ{#l!8I
zC3WhxuC7ClFzMZ|P7{<SmTwFDtk)<+YH|psf_V3PNX&5$+^IQ`4&QVmS~Li+C8g1X
z_FuvHbscf!Iu5gp<1HpVF)V5$R+WXV7n}p#Lo``B<JO<<SPKQ%!QwE#dmzSrlrEJ_
zcUsUsC0h&YgEJoD2ylP9@`)n47PP~fgFj38L_VfH%c;6g@O^fY^6pdiK^nLPvL)UI
zkuD{(bS5Z(VsQDgXQo$pMF)a%Ppx96x2-kkv`Db~iX*2#E!^$VuH?kdo?fHCQHgmO
z6H5UBv-Zj<r4ITH(U{pGwp`}Df5)wlzx+Iv%>Mn|{oVOQMhJ4>X}sJnJJ~*(a=nw3
z??z<OhB_4OrcXkHm~V~5uhy&yPL3|;Q>B&<^YNAb_&v`qN3{8j7t>^ZnVBO;Aj8o3
zlWASHMZ2x+ejj~!%_i#b2DAPaq9XAzQc3S{;fq!2GFo-fP5EX9$Wvk1YamZ8_o?gi
ziuZ==5Z_K24fOO&ma$Q`>=t6mtz44})*3Y`NzsMlEu^@NokQQlX6LOzkfO&w-A^E{
zf+4a`@QP|hgH@A7fNIUpgGfUM9oXkuXsso^u4+^_Dy5Y%KVa9ga`A8{LpFMVc`NUr
zaUrj^+r+}N4$|!8{Sj>47bBqqZ_@MIbYLfp^-z#9S-pak-u%!O;|qB7QGIbX#^<9(
zjUwz~Qx;v5ij`j3glhg7bGT$pvM61X4M>XLJN{h^vevp~Jtdv8M=;Zx-yKfQwo^?)
zJx!uNuBCM)@IlVv^XX-uy}lFyOU}$Sd1m9);x+*rm`^wQV!7DZOL>o(xA|R9Alq5$
z0co)&RVE6{csf0>|3X(QHx89TyH4pESfvd*4}{Co!Gp#<=aXi~)xD=^C+iNE>$1Vo
zwc|Y|Ai%a$f2JYcMlC)>8ZxL|El@f0ZfY|s);!v5Ku3>)?QlJ)4K2S5;w1Uqg<-M(
zN;*%Hoi{#q7x@Wlo4%C1%^9rstfN7aQ-*pKI@#egF_&c5vfe>+E+|hozCh`UgYsSE
z_fzY5Q|RP+0Nosg2%ctR`Q(j=eD@J!!JtL~sI>Hc%0a}en7-rTdUP2Bzr0Ii?Jc4G
zy}9`+RT(K%u1MgTZSk{Vm)TQ*J0FW*v}!vOdemGvuHt|+9><oi@&=1d7S#nLuzB4^
z;s&K=@#;0gLQR^4?CXL1<py@2mh3;&d4%Wb8s2QzI(ZQt+fUV*vv;_aA=Nl&?#8#)
zvM4^?@3v<8?Cr*3lsbg2Wu?^FW~o=Eu3Twns#8iwA)~eG=d!YH$bhhz=Zc-i4I0>V
ztYdcP1=Gj8t|oeoF6Lz+rZ)W;o2uuNp^ce6=$2USSdYXhZGTX+F-TDfq4Jn6&2sLP
zung8(ZZWmcYs<_lKT8;cng-W-95$;*Qn4Mp=%TWlF5lL?lE06wpq7u{PRsIIa;4nD
z`%ytIiekKbWA}xE8BTa&+iVJISf{w$91SoPO<B*TfxYb`HX2@tTk8W^iku??CkU37
zftVl1O4-`s<le-D1_X~A0Q$CeDc}_L(XUyU)ia{2tsR2Qj$>-QLpij@Jm-xkH+T!k
z;k<Z<iJDrPxp<q-Y!92H3++~;8D&~Wl|5G7sWslNe=WW@KNnxsYoFn*pNr2kIg%*!
zKHm?7&tr&fMIVTFHJMO{7SmadWE7>$)R|cch&^rBY%D!TT8mX1I`+NKaR0wfmp-4d
z(@u3+AlSEY_cD<IiFG4^Qs%SHc$c~~#CuOG#dbVWESV==hd7!HjfF>PtC#+f-{Q;u
zdGZ*$Zr?VGEP$ojwnm^M&k|Q_ED_I}sd1k3krYARYu$s>TD-xrz4?Qkq8{ddBmr7?
zk)(`+MhsW`BHLKi_)G$%E8`G0-0ult-TeFL;h|Ql3N4|~R!LNIeLGcB=8o~q*m;QE
zUEi6G4BBzPTQAyOtKR$OSQ9WmHBYT)3Ujq_snpkFzAdO`iUyh&)8UhoL2LqS5x%vT
zR&oS!l@+RGP25jpwI6a%)ZXgJ_o~0Cmd2!n$$=~Cz&kG8+}}(&Vm9%{H9t-FyWViw
zCRY>gl|4@1lwjR&68x|7k1{C#=(BYCilximMd}m%6kgbs^s$n|VVe_q457ZrgFyrF
zFtC~4F)_W1%%ZE$aa$!&AulT?y>xd)p!QyK$TEuVeotv+OW84uoS!-|F>aexh>kZl
zD-}C>9CqGqY#e5fHat~x3YQE&0BuHx$Thpo?~wALZ_SO6X86DcC|SpF{9s<k`n6H*
z#_&V9h#RZbfuxZ20~n>Yj$|0V@}&|kXV8yw*Q8RFS;vxaG=4j`e2K@*_sIJWA(qHS
z=1#|E-)xs{(N%D0I_w4t_$wtHx{!+}jOP>GeRd`zBl1Mg;#A5&?8ZoMm<#2~DZASc
z9>nH(YYf&UGkYdl=l^N%+T)pC<9{ucs7wl#TPZ3rlBf)&sL+(l-04QHBWal1QYb|y
zh0s(^l)K!*nB$TpB=?OicQ!M^#u&e^bAIO>Dra85KYo90e|=xyeZSA;^L#Gv=lyw}
z=c~jJn(@L9**!t_g!t6>4F)zF^c_22U-0$5Opci2r=;XeHA}Ne6Ke_(OzWWxpJ;#_
z?6RJpgL^u5o2Nm<T1`=>wv$s@m9+U2rzVnG20eH(-gkzFLFHzLe~&OfeM>modCKBK
z{cc`}2$4Bp-qoNj4moK84|0pT`S1(e*%M%fg4PO|yeK3vUnO`;1j)3DWf>psbdH<r
z9oapBY^J5V6jTNDFHpeFL^HT`v?1Td989tgxlpa}Tq;HJZXc5pzES63p2?J>!lqB+
zp^xwj+%KUf&V%_DdOJj2g&aLv)9BZXcL6A(`|_U)FO9vzsI2|$>tCQgJ6cth2TE4p
zQXEkp2)--iXPu(k$dWe}A+<`X;jAc1-TR)(q>lbJIwb(Rvq8XxuT=<#@$Y+z%frmK
z->Z7MZVW92&_il&@!d^_l{<ZOLK?>nYh?4o5O+gM@~Yrvw|UQ#^J(6#MP&!X&5s^r
z&N1MzQItfoeK)K5clUg)&7<dm`X+sZV-=p%jcbk_YZI#owH*`5Zn0}Us714o!0P+#
z^3YT8@MP(fXyTA(+MFUD_9XUwy{hg+W)YjF3+^%OPdSj8&4y4*Z8_Gwo@j<tU5bKh
zZu5~Vg?ER$Nopxu{WD4ipxMFe#XRNX{63gMcd(l0XKsWT#H5>8kdm*x5oI{wE&_pB
zR4)}Ek@r*YcYX5Ea%ppDNotw8I-Tz@%cznJSKCnsrQIIwHGt(}!j&(7^XwgH-5|bS
ztIG81Z+B}3VpPM8Adz3wlf$H1-_AtbfIg(vt85u=<Ape|I&)hw)-v;H!X(t>{-FF$
z@0)H9+usNmU!Q(AU6Yo1qadv6NZ1!q{|AQv_UbU5_9XE^the=Hk2!ntv9=1YlD9a%
zSk-!fxC7>F<X!S$w6Fw_-BC>x%Zs&ux@|2|iLvx87%8NDDz)-CI5&gr>dwZfJfy@T
zO15KszE^{j?mJr>Tewwz&n{JY1w6_iqC)F8NactzzpYmnzB~m9`z)mC*=(5AyiP|p
z*U;ov`?XO2K;*m|On~a$_Y__R9Nv^1bwJZIi#3+p{V~Ap98u+|i&GB)0b~9#4yqh5
zp=99vQaYNjyF!$ea*G9*P-fu^sh^{fXJv;FU`WXsk!vFz$LDu!F7AIOhQ|7aY7kpa
zOVG&ct@-BNiC6m6I>&PR%7+zkGI6fsp<Q>>vHFpa_<eIinm+4Oi_f&(sI=88O(CbX
z*oFJ=8g4jZ=`?9!LGl`{D#vTHvg-M%x28Yu?)p+2<*@CZ^ZbwpESP37YeLClK2(Z&
zE^XmIpOO~r&D#w%eDIl3t%*Q5H<EV7ZcP|}o>TrVt(Ia?nj?15#mVwcPl<1-a!v5U
zR1oa1Kq{$#XoRyG8lWKPB=r{l(oAN(l{G~CSZ@)D&n_P2#~S*63xUoS+qvl*TB${(
zLH0}&>41y)e6X=+=7xBBYw_@RnX-JoIhXuznjKQ>n!=8CXLjqPhSt2bLb<nlwRV<^
z-_N|@A0;kAXJs}775je?P73az1+38&Igx<V85YPwG(|NKT*ODPl={hFDb&n_0Zc9s
zL*1!l1Va_CDHg|VJjRT^QgnBanJlx;e6viM48_NVDi(WcK(hpOJtSdX*Z!XGw?T0c
zvAG!maa!Jx%|!VWNI^mv7ZCe(3r++|k4`8DG8JYn_?zmwllP7{w@zQX;T+oaAj048
za=sqGtKDP3BkDSL94$Q_*uZB{7o4?Svrm;I7Vt&@RztCYhU623kRyU6>9i{zD4Z|-
zK+^9IcZE3EzY{;=ruJZ_xp%tVBlFl-Xe(f&iGYpn%bAH{4Dw@>X<pc{I{56P-j~7R
zZ`DQo{HaE1;^Bwg{KB5{eIUuMDV9SzI(0vP*^)lB1`~09uJ5Y(w(@eSzn!n=bYB@T
zr7(?j{H|(D`t7AFHU=O6gkrz3i<&nBCl`G!6!rHRCp%^YZ8}24PMTmZuuv&H-9|8s
zd;ici*Sxn3dm{w7@GaxC0oCFAv1lgJGs0i|hzABi_Iyp>*|*_$o`rKXuL);}Nu`i2
zZdC8pobBpa!>6jRmP7QWOmY`jUic;_W2+q9u|@kysJg8q->h@tP~xQ#{64$_7CBNd
za6Ua*tiF;(u#I*0R>k1cO}c<AP`NLovo&F)L@XK?eeZHb2>&H|yB*Cj;)JgS7@_ZF
zbpFq*>0g-|^d%XI5M?JmXS+?5Jt6Ss4!8s&{qlj<r-B&Sj?uxLeTfP8?QJ30fo8GQ
zSXSsNqH*BX(iHkw9}Xv)r!qI<N>hwTyc<$q3Cs%&GlHG7ZmLWN*_A6p24fOm9uR7k
zkvpQT;$3sC>|AA`@AQoM{AND2`S8(iyaMGUsW};}KgP5yn5c|0`CgnI^qO9D6swTs
zSWybZ!>n}6^DLeBQ!q#_oG<{aC-j1;+zfqPCLM(-%GHZA9v4cA!xxGpD)cXiR7!+(
zY>Oh6tO_N}lA@4&Zd-Gwc-v(2IuZ#v$ypX1{V&$=aqo2gqC_^Hy*)e=%z9zIO4cQN
z=)=yt2r3S7@ay2a0pd&$$;$7Vw#SDd(|Ul^?#sA)<qs(zZvtB7`Nu|>x`EGyS=TYN
z-M++Olf<|(<sk872rr7aTNGIaD<6}dOU*xkQWbQTRyJ}n`o>TuZryx*_M=!;hPPVK
z({6<w7jzSLQk<;mo%7~>gF<5kd<U~U^BWw<gb)0EB^J5_Gx4X1b3O)>O%$hYx}|?f
zQS@fo=#AcwbY{2E+?Bk}#JIe?9is1iW65&>U85j!tKzp}=BXl;LsvI`ny^(hVabn}
z$7u~eF@RC{%|aS4y1bwBzV<#-?cCLaioz`UO6d^;sOwf5!|q;!+=u<|C_p~f&?6Cx
zTUTCy&p@ZHPZ8fd;Ui3tHv|IZ<S`RkJ>1&O^eBF4E%1$sdb=L!4&z&aQ*&XG+RnJn
zBbUZ1g(wY5>k`BhOGqitoyfCs-_;(@eEl=EdLTZr1z`4wd^1I`Vt|8eSMk2G@liZ#
zZY?zVz9dv^mb&J?xZ>=Qg^buEuUQnijJIyXSZF`<kYO0gH@=&SwumB7&J?Jduv}jN
z;WE$wcDz^^IwcK_**5P&vde(hh<o}_UT6ZRNg35dUp5?JF$hW6<H7@3WRG?D^kkn#
z3VH<gX>#JX-Fu44>#T>z*1RDX3(fmxcS)J&oXk<!<27Q6lbbKzmb6W6CT{#(&=hjA
zZM;rS%gHjc@-b7*+31O9!qA^)OFkBT1A|}!M0?%1o_I#ZNP-IbDq5wCzzf0Zuj}uA
zgHSLO)PBG7_${ZSpZrwoUGh6`rPXJVA;Q{Op$YA|5Vzj<D$LH{Q2+G{>83vJ8_h=)
z0)P}NwFWrLS=<Gn-NjxOs~ob5`>qr;ciASxEYjL<Iuq}ZVuVDc8sN9dgh~=C?Hy3O
z2R;ng$=D9O(dv%{W^6s0jZXX(v9=Rd(Tj0+<3bAQrtee?VH(XfmJFxKJc2{5t*iJ)
z6SY=l%*7at10VL7Q%t=%I@O{hr!b#-sSKTxH&Ud4U8{y8YV`>jxy5{&svK)F>y8o&
zS0B6T$$Vy4rdqi^gJypHCAi#VYz@9zRv}=Ec15UlP@O`R$gZ%7(Nh=dWhxI#1N$X5
zx-r95luT0HZvgtGJEC+EgBq{B*O!y##*^bU@GL1h=-SInz>3BnDAu)I$ZhDYmX1FV
zHr9A4y`X=i&epEV{dcF1d81dmh!BL5ykhMWx7X~q?Z-H#uWor_?DU5Ddv3Cf>Y+yr
zIGJ*u)|b>g?dpw8q2t5??w`Oq#C(|Y5t-aQCxokrHP$hpF%s+Q(*q-D8-S2djXO7w
zVYTAsjI6RT`_hv_WtnrCpTFuLeW2-9_GaP?2X%aFBe_tu%|Cooj^&sNl-}0U)jkjp
znV&PW9eVA3M~1K|sh@?;bIhc>y`jP!j<08`>G^gh&)O72VjSSA#PBM6;ot_G!Nt1q
zKo4y4oQ<B%KJE%!P2JHX%J?hcLj<4k5y|ithJv4#fOZuMSb|xuT4}d^Ofg2qtWzU$
zN-|kxlk+Shy<0JGx<59f!5?<>Yr4Zcg&Nvb^xj%QSEW%`(I{4TJXeBvSe*;ljK2s7
zHNIXLcdxb>($EtLt6b#>-rlFHvHX?Xo-&*2w&pae>DEk!`lF5yd({PY-7m7Xr+yGj
zIVgNyWc+1|uX0dEDU?AJ(sFKA^3WDJF=8hzrtGsb<r=^zMn4D`@4D*BoNns9?a4|l
zvt2|sZd5=6B(tij^_|9^cV#>>cfx&#uV^~)t<O7No@;sAa}9;>9RL5W(OHN#5=elY
z=|GkG<4LE$8Lv`7Uir{wCDGyJ&=R{gu2G`T%=1hj{k6aRmK(l(?SMBj#9*vs>I0#x
zOGrwuN8fbzI)yLDSuIQ7qt!c_r{YVsU*+M91?I24%$LseZnF=j2HQI-g#v={<y8@<
zJ2zG<-u8Tcy*=_DQI&oX43ShL-fYzCdUjbV@O?!?T0UTF`|GaC=a_FRb9ILI$%Vkr
zng}dvc7TR7z^OjJzNyDKc4POZD~YZ{073Npd_jh_o`qZ1(X#hY<Bi$1s?@|VN^2PY
z4G9D(HWZn+yd}E^87f<N{U~(kO1L_IchjlnElGDo8L{J<ahEGj2CPDN9r)&>qN07o
z3MPm3w0QqLIi-ARL;h39yD_buPZ}Mnj=RMqPHLs^T;MbVv)4H6{WtYyQwo}&9Z)X^
zz;hX}&gufNxP(M=`_!+Z<dpkazI<bsV*Io&K%=SYLl5`10>fc&Tc{%T@uPvonGKB>
z%D{*a4G;O~f;0Trv(lwW-0{bmFoO<HYG3~*?FVMZ4yw(k8g#U*YYZ<<>yf@AiX`UN
zixOP}C(F?@H2As+X2(Z?1=@KXs4h6r9SqrlJgZPfMn|Oiq}8WyKR;C+E>-kUdQqj(
zOc0|JX)O$#^&1aSrD1`?*a6zAaAvF@5Ptl6vO0{rTkq`0@kM$DmiQ72q+k#SwyQ~n
zw9W^r%{8=^ug%8^i=pf<drs33!8qI`EmL3NH1+a$-4>!cE%g#>TR$&AxLQQ|mUw9h
zBdf1HJk0nSS{3v<(&F83h3irt|CzX8(Gc7j#dI@;yB`l;YUh&`hy)JQxXk(^6Q7*2
zv884+!P}jpUQX9=Fi8M4*36VmXHqhiy|8{`*#c!}rRNV}XTR4J)8Co``xA!cZHoYG
zO<^#x>yy-hiEI7DD6(k+d1swnxG3WfH_=ox(TqPHQ>`EaBVr@`67s%0z!D<B?Ztej
zP5aN!kS+m>59It(kHVu7CDUbPz>Ho{))pQu7S)AM-!IC00=s{M7v>*DUbyfU09R1-
z_Lf(1jU7@Q+@$11V{PV+vcT(t5gm7h?p%wsN`477sGX2_F|W&~U9EQBc{MHctt^J_
z9R`oF9(g?(uZjxjQS%i=RymSIAaw>+?I{a+FOB)NTw_ecHJ!!GDmZ!%02HftQ_OFB
znu^c;{sCCmseqkqQI8<M;i*?@jk^@I-S*9hnH^BuRo6#KSyzC{!m1PPS64a4e1|b0
z>GQgbU{{Szt{v+uj@0rTwK53Cj5oQ_4=jxI7k@wz=giw5FX^Dv20$0yePl*TShWOO
z_bk$)MdtZU9k9+q&?09D(7>kv`bol}JoAABQC{^;%&8^L@*mX_<>l`7&`n%YC->Hc
z;!f<>UpwZyC<*wl<t-GoEA@THSK+@9^xqY0;1;B&r-W7BTCtN@1*a_i`|nC#C;~mL
z!#e3LY7)8wc=ZNtH6FI;=HKQ1{o<0p&H{}*>%+6eP5tu0zxt{%0z6;9SVfgy+K+!E
z@#6)0575dzYIlDv@+D3A^VR=#?E&-^x9Blo(Ocrneyn)8UOy@Vo*#i~%&fRYXEnf(
zd$3DOba;{4{Md(&mca82u@|frw+OI@sEQ={<y!osq<iIn=TUrL{8rkcGh4tFI^70K
z@ZEnk?uHP!qNaHL^(AX#f31Xnb$$<EUVF#(>;5Q;<)l;qm`fjVO-}rOXxfs$9&>Sx
zJ)YVs^`j`3u`7-lu+=4w8L-tQjv4%y&HowSInjWfp>d+YazWsq2*im7|A=Cl3l1n^
zi!3;xXc;W@kAvcXqJKoO+yw^|aX`_}E|@b#{#hnV??`Z_$V;ZHzrf9$DKgvm#9@lq
z5ju}JOc6UE$YF|p;e3{uo(6|7T@L^Kjea<UDceaq2NW%ZKtKB>4k-FrCO_Qye*i^L
zpZTY&R>^ptJ$1s6lSBA#v*ttwb|@aqi46a(LVy4{k%1E#epC`pDvd2F=cLlup>j?t
z?MJivNvSxgG`7C?ucf1$^+n6;5+{|mgfIC8Cgh~j*!gM+PActhGHF>u<A9={;@1z}
zo3q;V7tUv?>2W~Ovi9}2c5y(_4`%g~QgPN7{Xk6q3;;Nw=x3QMz4Iq1n)5HZl{1p}
z_Ri{@8J765fqk-RYL$@ztM62NI_-q0-I!U?hhuJXUGdU&ZeV5k-KoPX-3(Al2DT@p
zkX8+>czePlU^hSrOmV4GUEZan0&DN{IUQJDT$~a3$-DmGTR1AT)NlNxOB@yAsL&5K
z1AIf869;~j$&x6A{=WyZ$gNY8l-9=sx305Wf23jKhmMbrpH}v2dnrL&T>%4Lc(4T=
zv~#bsDBE`fG%y;@-1=ZhJ$xHr^M1VC^#$DQkm*97wSgUk2_Yol(J2Xu0LJRd_`i|;
zf4vQq-~DI#D*WKm<A01TIaO?#7r*5PNMJ&Ni94DP1o9NupS{P<5&>8CEdkguuPx}m
zN8{UD5a=e%*PXt2OXg4R?XMy|(}B0#Nzb1PNMs6tO9_{z&i&{3{#A^;A+Q~FUw$Pw
z_`0k_fRI3+(0C*J$|~0S`T2Egx?m(ikmJ0Ws;faBAeprvjgL8YI)6FMw%SxVS7bB{
zjF{XxILjrrXOymiC)6`uq}Zk`BgTJAEZq%C1Nq$c47Cuh+B0g1Rt|0?`s5`Mm1o#*
z<!cdqv#EbWcbYFE4pZ6$g7G9n?K2E;H)9u{8@<f<=t?~js1vA&9e&-uc{RwNHF-y$
zAV43KTYQMXzpY$aNRH6d*3SYJjx?v;t3lEr*rrUV2T3}ko1~3UBjAE3?k;`&7s2ek
z(KiE6YRe`iD+_Rj!W%a(ZXZF<i*1hm#dX;HdIZsW1zS&jxomkD8@eaGsuH(IjE0v!
z_#<mO<0e)f*4E=z@3#UxYzuxb`9eBGxjZ(1JqWTjTK3Elg5Ot}cn@oPf3+1fAcgzX
z!pNm`Y#G=iuVIs?-`+V>fMTuAnC;n;f|-#FQs1(~0sXA!=qR33CmmtCtD#8}#0X+?
z@s?<Po4ha0qB8|oYK`Gt)hNU@8(?_YXpy{@gmTjnTV;<FpW}fNR?m~<KwNVWd7Ti)
zUNx<BBUCjevkIR*v;wVg0+B#&k{)yvaMbvIge(ZcAH8c(=`x>Wi%QWJWQKp9a{UTC
ziz3f(xtk;d5bZ^R8JCrWtDTBd1zxhH%{s7wLT#l#XR9B8&p@EB2f)Dfdb>3w%)f<w
zX$w(8Wi+7t=)6uAQ!VaFwui#lm2z+|cvDVo&{LGy32Zwtjs=c3w7EK%%rGnNXT+Gh
z@3qD2)Xq)*LOXvPwJ=b@%lB8TQ%H6c-tOFsM}kX3*J|A@^iFTQax45<mE+;d!1sSw
zqH!2GSHT!Zk380n+n#BLwYx?yqWMo`VjOegI&T;k%0X=t+mSvcR8^#~Sp>V@sh+kG
zKZW{)X;d?(S%M+eOu)PHq4{4XTRG-L6E16=bUrFmdyo}(iSISanEhsVtn~|zeR2nk
zv&Bzf-xT_RAln8-@ni*D<!3>~JedZE^L3Lu3XJRgnpPk$Z|)|pUbA6IJIfPT!LPPp
z&u1Dm8+gie!_kI0mLuY*V?_sRN688-lz8Bgz$+Q(Owu#pGa&cL8?YKL;Ma%mCsr0V
zY;Tym`9aX#?DLtK?X2nE;_$q8V(bjXMDLq{zOz(d<cv->*O;w$IsK%~qtZdJQRw6=
zMGP?>rSxjxv!%8uyK*EnUgT@=6iiwTsNigYJ|?^(aS4Kjx3xHAoxiE&?C(sv<-5C>
zlx`jVjMVZS$<BN=0!nvsIe<J!b-qeEU|MV(PQWuugQgD;oo?8!#8QG1l-^Pa)>(pz
z^zm0DI|6J%mC4pUp}n}$PdY=9cn4~a$O$Y4QR@VX;F;KHdfHB#se{s?<hPnOX5-cY
zBa+HuSh+JCrxu@8wu}hgYkm{<rep;V0tyTz-haj=B{aAVf4?q`3K^1ltCx|Lm~<Ku
zljW;L&y4RmzDyyD%*$pi`g*2|;(=$oLh{SfZfJqlqs3mPfBcLmJ}!BTf0&X}k~c8w
zklX^TQ<<@JPtW$ktROx)tUY(zCD(Cy#w?ZL93(-s!XrVU+&P=CobGR)h@6;6?o2;d
zJq&}(;NxxcVj}vd_pnVwaDSE>m0cy&X?Jy`1P+EUr6vSCqctdBjIUbRBhLDU;~xWV
zzzt4w6PNYVuKRk~SCOroL{G1!@5()XYo{eH#~Mrv%XiWPDRWP7!%o}w)B9WYe(hkk
zc)X@0F<Eva7&;VALVd=XHM+A`CXF-=`&H>TpMRXqwmO0Rs{9gDx@N6eaMtee8z^^5
zUh8k>gu?WzR90?vXH|)`Z}>#w_LW3C1iuPz)zi2v+qx2MaK<TfS@e3IoQ*E0ZTo=M
zI%n)oI+7%XG(OvDT*RueoTriJ=Q5}>h_ZN+_vcynZT`F1%ea?!xZG*l^4il}$0rjT
zx}O#cG;@jV{c^~2+q0(x!aF%T<MXxjGIz>3M@Mo#rU&<!C5mFPM@ihOr(f(5MtUUT
zO-W3yvGfY4^r${MvMcptY6mf{P*CZpVji4WC})|_QSi3pDr5#T$cXXPYHecgG*fqt
z%6@M7J^?hC{@VKlHWE>P5G1f6hv#B*-TtAX<YMoVEbC?qC@f<nd4%j06QQO<)^TW@
zMa0Y6`I?uL*jn*wkR;c|HrYaBYFwP!3G5)D0cLX&9l0wt#<T!>)B~>6FhHOb#r$S&
za1m~1Zh)K2VMbkPa*%aruYSl4y<F|PrNcgF46&LdLxj8ny*KFY`*KL$NKqz#AbDhD
zfRIv**L2Z4YiUn4_NPMzHrlaPVtylArnY*fwCmKybzlsEgTcpbCxFQN!ecP`s#Og>
z+tjW;uk{9fcG%SWHCzc^?>_LP<u#M4h~%5W2$E=K`IW@lMIK@q3_8Mp=0vVoineX*
z1ZI-Ed(yMqcFX${FFeiwmAFuiEPJO-Y3<omqe(wZdU^A)*B)=@h82;u+1ppt1F#Bj
zN#974t=9SaEG^)ul80|3<+C&>nMT#v4tz>s_CP|sb4KB<T9(q$*b4?i)OJRcUp-W3
x$YPQWQUhFl(b_O{Ze&v0b4xtZ2nU@Pw{(8QbLQdQW2=DQ+0*AwrJuC9{XaVx%?AJg

literal 0
HcmV?d00001

diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index 7d86260f0..9be22a5ad 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -1,11 +1,15 @@
 # Prometheus and Grafana installation
+Two different methods to install and configure Prometheus and Grafana are described in this doc. 
+- Prometheus and Grafana installation using Pod Annotations. This installs Prometheus and Grafana in the same namespace as NGINX Ingress
+- Prometheus and Grafana installation using Service Monitors. This installs Prometheus and Grafana in two different namespaces. This is the preferred method, and helm charts supports this by default. 
 
+## PROMETHEUS AND GRAFANA INSTALLATION USING POD ANNOTATIONS
 This tutorial will show you how to install [Prometheus](https://prometheus.io/) and [Grafana](https://grafana.com/) for scraping the metrics of the NGINX Ingress controller.
 
 !!! important
     This example uses `emptyDir` volumes for Prometheus and Grafana. This means once the pod gets terminated you will lose all the data.
 
-## Before You Begin
+### Before You Begin
 
 - The NGINX Ingress controller should already be deployed according to the deployment instructions [here](../deploy/index.md).
 
@@ -67,7 +71,7 @@ This tutorial will show you how to install [Prometheus](https://prometheus.io/)
            ```
 
 
-## Deploy and configure Prometheus Server
+### Deploy and configure Prometheus Server
 
 Note that the kustomize bases used in this tutorial are stored in the [deploy](https://github.com/kubernetes/ingress-nginx/tree/main/deploy) folder of the GitHub repository [kubernetes/ingress-nginx](https://github.com/kubernetes/ingress-nginx).
 
@@ -81,7 +85,7 @@ Note that the kustomize bases used in this tutorial are stored in the [deploy](h
   kubectl apply --kustomize github.com/kubernetes/ingress-nginx/deploy/prometheus/
   ```
 
-### Prometheus Dashboard
+#### Prometheus Dashboard
 
 - Open Prometheus dashboard in a web browser:
 
@@ -112,8 +116,7 @@ Note that the kustomize bases used in this tutorial are stored in the [deploy](h
 
   ![Prometheus Dashboard](../images/prometheus-dashboard.png)
 
-### Grafana
-
+#### Grafana
   - Install grafana using the below command
   ```
   kubectl apply --kustomize github.com/kubernetes/ingress-nginx/deploy/grafana/
@@ -151,13 +154,13 @@ According to the above example, this URL will be http://10.192.0.3:31086
 
   ![Grafana Dashboard](../images/grafana.png)
 
-## Caveats
+### Caveats
 
-### Wildcard ingresses
+#### Wildcard ingresses
 
   - By default request metrics are labeled with the hostname. When you have a wildcard domain ingress, then there will be no metrics for that ingress (to prevent the metrics from exploding in cardinality). To get metrics in this case you need to run the ingress controller with `--metrics-per-host=false` (you will lose labeling by hostname, but still have labeling by ingress).
 
-## Grafana dashboard using ingress resource
+### Grafana dashboard using ingress resource
   - If you want to expose the dashboard for grafana using a ingress resource, then you can : 
     - change the service type of the prometheus-server service and the grafana service to "ClusterIP" like this :
     ```
@@ -168,3 +171,171 @@ According to the above example, this URL will be http://10.192.0.3:31086
     - change it to look like "type: ClusterIP". Save and exit.
     - create a ingress resource with backend as "grafana" and port as "3000"
   - Similarly, you can edit the service "prometheus-server" and add a ingress resource.
+
+## PROMETHEUS AND GRAFANA INSTALLATION USING SERVICE MONITORS
+This document assumes you're using helm and using the kube-prometheus-stack package to install Prometheus and Grafana. 
+
+### Verify NGINX Ingress controller is installed
+
+- The NGINX Ingress controller should already be deployed according to the deployment instructions [here](../deploy/index.md).
+
+- To check if Ingress controller is deployed, 
+  ```
+  kubectl get pods -n ingress-nginx 
+  ```
+- The result should look something like: 
+  ```
+  NAME                                        READY   STATUS    RESTARTS   AGE
+  ingress-nginx-controller-7c489dc7b7-ccrf6   1/1     Running   0          19h
+    ```
+
+### Verify Prometheus is installed
+
+- To check if Prometheus is already deployed, run the following command:
+
+  ```
+  helm ls -A
+  ```
+  ```
+  NAME         	NAMESPACE    	REVISION	UPDATED                             	STATUS  	CHART                       	APP VERSION
+  ingress-nginx	ingress-nginx	10      	2022-01-20 18:08:55.267373 -0800 PST	deployed	ingress-nginx-4.0.16        	1.1.1      
+  prometheus   	prometheus   	1       	2022-01-20 16:07:25.086828 -0800 PST	deployed	kube-prometheus-stack-30.1.0	0.53.1  
+  ```
+- Notice that prometheus is installed in a differenet namespace than ingress-nginx
+
+- If prometheus is not installed, then you can install from [here](https://artifacthub.io/packages/helm/prometheus-community/kube-prometheus-stack)
+
+### Re-configure NGINX Ingress controller
+
+- The Ingress NGINX controller needs to be reconfigured for exporting metrics. This requires 3 additional configurations to the controller. These configurations are :
+  ```
+  controller.metrics.enabled=true
+  controller.metrics.serviceMonitor.enabled=true
+  controller.metrics.serviceMonitor.enabled=true 
+  ```
+- The easiest way of doing this is to helm upgrade 
+  ```
+  helm upgrade ingress-nginx ingress-nginx/ingress-nginx \
+  --namespace ingress-nginx \
+  --set controller.metrics.enabled=true \
+  --set controller.metrics.serviceMonitor.enabled=true \
+  --set controller.metrics.serviceMonitor.additionalLabels.release="prometheus"
+  ```
+- Here `controller.metrics.serviceMonitor.additionalLabels.release="prometheus"` should match the name of the helm release of the `kube-prometheus-stack`
+
+- You can validate that the controller has been successfully reconfigured to export metrics by looking at the values of the installed release, like this:
+  ```
+  helm get values ingress-nginx --namespace ingress-nginx
+  ```
+  ```
+  controller:
+    metrics:
+      enabled: true
+      serviceMonitor:
+        additionalLabels:
+          release: prometheus
+        enabled: true
+  ```
+### Configure Prometheus
+
+- Since Prometheus is running in a different namespace and not in the ingress-nginx namespace, it would not be able to discover ServiceMonitors in other namespaces when installed. Reconfigure your kube-prometheus-stack Helm installation to set `serviceMonitorSelectorNilUsesHelmValues` flag to false. By default, Prometheus only discovers PodMonitors within its own namespace. This should be disabled by setting `podMonitorSelectorNilUsesHelmValues` to false
+- The configurations required are:
+  ```
+  prometheus.prometheusSpec.podMonitorSelectorNilUsesHelmValues=false 
+  prometheus.prometheusSpec.serviceMonitorSelectorNilUsesHelmValues=false
+  ```
+- The easiest way of doing this is to use `helm upgrade ...`
+  ```
+  helm upgrade prometheus prometheus-community/kube-prometheus-stack \
+  --namespace prometheus  \
+  --set prometheus.prometheusSpec.podMonitorSelectorNilUsesHelmValues=false \
+  --set prometheus.prometheusSpec.serviceMonitorSelectorNilUsesHelmValues=false
+  ```
+- You can validate that Prometheus has been reconfigured by looking at the values of the installed release, like this:
+  ```
+  helm get values prometheus --namespace prometheus
+  ```
+- You should be able to see the values shown below:
+  ```
+  prometheus:
+    prometheusSpec:
+      podMonitorSelectorNilUsesHelmValues: false
+      serviceMonitorSelectorNilUsesHelmValues: false
+  ```
+
+### Connect and view Prometheus dashboard
+- Port forward to Prometheus service. Find out the name of the prometheus service by using the following command: 
+  ```
+  kubectl get svc -n prometheus
+  ```
+
+  The result of this command would look like: 
+  ```
+  NAME                                      TYPE        CLUSTER-IP       EXTERNAL-IP   PORT(S)                      AGE
+  alertmanager-operated                     ClusterIP   None             <none>        9093/TCP,9094/TCP,9094/UDP   7h46m
+  prometheus-grafana                        ClusterIP   10.106.28.162    <none>        80/TCP                       7h46m
+  prometheus-kube-prometheus-alertmanager   ClusterIP   10.108.125.245   <none>        9093/TCP                     7h46m
+  prometheus-kube-prometheus-operator       ClusterIP   10.110.220.1     <none>        443/TCP                      7h46m
+  prometheus-kube-prometheus-prometheus     ClusterIP   10.102.72.134    <none>        9090/TCP                     7h46m
+  prometheus-kube-state-metrics             ClusterIP   10.104.231.181   <none>        8080/TCP                     7h46m
+  prometheus-operated                       ClusterIP   None             <none>        9090/TCP                     7h46m
+  prometheus-prometheus-node-exporter       ClusterIP   10.96.247.128    <none>        9100/TCP                     7h46m
+  ```
+  prometheus-kube-prometheus-prometheus is the service we want to port forward to. We can do so using the following command:
+  ```
+  kubectl port-forward svc/prometheus-kube-prometheus-prometheus -n prometheus 9090:9090
+  ```
+  When you run the above command, you should see something like: 
+  ```
+  Forwarding from 127.0.0.1:9090 -> 9090
+  Forwarding from [::1]:9090 -> 9090
+  ```
+- Open your browser and visit the following URL http://localhost:{port-forwarded-port} according to the above example it would be, http://localhost:9090
+  
+  ![Prometheus Dashboard](../images/prometheus-dashboard1.png)
+
+### Connect and view Grafana dashboard 
+- Port forward to Grafana service. Find out the name of the Grafana service by using the following command: 
+  ```
+  kubectl get svc -n prometheus
+  ```
+
+  The result of this command would look like: 
+  ```
+  NAME                                      TYPE        CLUSTER-IP       EXTERNAL-IP   PORT(S)                      AGE
+  alertmanager-operated                     ClusterIP   None             <none>        9093/TCP,9094/TCP,9094/UDP   7h46m
+  prometheus-grafana                        ClusterIP   10.106.28.162    <none>        80/TCP                       7h46m
+  prometheus-kube-prometheus-alertmanager   ClusterIP   10.108.125.245   <none>        9093/TCP                     7h46m
+  prometheus-kube-prometheus-operator       ClusterIP   10.110.220.1     <none>        443/TCP                      7h46m
+  prometheus-kube-prometheus-prometheus     ClusterIP   10.102.72.134    <none>        9090/TCP                     7h46m
+  prometheus-kube-state-metrics             ClusterIP   10.104.231.181   <none>        8080/TCP                     7h46m
+  prometheus-operated                       ClusterIP   None             <none>        9090/TCP                     7h46m
+  prometheus-prometheus-node-exporter       ClusterIP   10.96.247.128    <none>        9100/TCP                     7h46m
+  ```
+  prometheus-grafana is the service we want to port forward to. We can do so using the following command:
+  ```
+  kubectl port-forward svc/prometheus-grafana  3000:80 -n prometheus
+  ```
+  When you run the above command, you should see something like: 
+  ```
+  Forwarding from 127.0.0.1:3000 -> 3000
+  Forwarding from [::1]:3000 -> 3000
+  ```
+- Open your browser and visit the following URL http://localhost:{port-forwarded-port} according to the above example it would be, http://localhost:3000
+  The default username/ password is admin/prom-operator
+- After the login you can import the Grafana dashboard from [official dashboards](https://github.com/kubernetes/ingress-nginx/tree/main/deploy/grafana/dashboards), by following steps given below :
+
+  - Navigate to lefthand panel of grafana
+  - Hover on the gearwheel icon for Configuration and click "Data Sources"
+  - Click "Add data source"
+  - Select "Prometheus"
+  - Enter the details (note: I used http://10.102.72.134:9090 which is the CLUSTER-IP for Prometheus service)
+  - Left menu (hover over +) -> Dashboard
+  - Click "Import"
+  - Enter the copy pasted json from https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/deploy/grafana/dashboards/nginx.json
+  - Click Import JSON
+  - Select the Prometheus data source
+  - Click "Import"
+
+  ![Grafana Dashboard](../images/grafana-dashboard1.png)
+ 
\ No newline at end of file

From c1be3499eb98756af4d2f5a5d165e6ff11cceeb5 Mon Sep 17 00:00:00 2001
From: Ana Claudia Riekstin <17534478+anaclaudiar@users.noreply.github.com>
Date: Mon, 7 Feb 2022 12:53:44 -0500
Subject: [PATCH 0075/1641] Adding some geoip variables and default values
 (#8159)

* adding geoIp variables that Shopify uses

* adding source remote_addr for geoip2-isp
---
 rootfs/etc/nginx/template/nginx.tmpl | 12 ++++++++----
 1 file changed, 8 insertions(+), 4 deletions(-)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 07e36925b..2ee76831c 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -245,8 +245,9 @@ http {
 
     {{ if eq $file "GeoIP2-ISP.mmdb" }}
     geoip2 /etc/nginx/geoip/GeoIP2-ISP.mmdb {
-        $geoip2_isp isp;
-        $geoip2_isp_org organization;
+        $geoip2_isp source=$remote_addr isp;
+        $geoip2_isp_org source=$remote_addr organization;
+        $geoip2_asn source=$remote_addr default=0 autonomous_system_number;
     }
     {{ end }}
 
@@ -259,8 +260,11 @@ http {
     {{ if eq $file "GeoIP2-Anonymous-IP.mmdb" }}
     geoip2 /etc/nginx/geoip/GeoIP2-Anonymous-IP.mmdb {
         $geoip2_is_anon source=$remote_addr is_anonymous;
-        $geoip2_is_hosting_provider source=$remote_addr is_hosting_provider;
-        $geoip2_is_public_proxy source=$remote_addr is_public_proxy;
+        $geoip2_is_anonymous source=$remote_addr default=0 is_anonymous;
+        $geoip2_is_anonymous_vpn source=$remote_addr default=0 is_anonymous_vpn;
+        $geoip2_is_hosting_provider source=$remote_addr default=0 is_hosting_provider;
+        $geoip2_is_public_proxy source=$remote_addr default=0 is_public_proxy;
+        $geoip2_is_tor_exit_node source=$remote_addr default=0 is_tor_exit_node;
     }
     {{ end }}
 

From 53a232f829220abdc40e42dc9ab44f9975b7e319 Mon Sep 17 00:00:00 2001
From: Yang <940129520@qq.com>
Date: Mon, 14 Feb 2022 02:25:47 +0800
Subject: [PATCH 0076/1641] webhook: remove useless code. (#8236)

* webhook: remove useless code

Signed-off-by: SpecialYang <940129520@qq.com>

* Remove duplicated codec
---
 internal/admission/controller/main.go     | 1 -
 internal/ingress/controller/controller.go | 5 -----
 2 files changed, 6 deletions(-)

diff --git a/internal/admission/controller/main.go b/internal/admission/controller/main.go
index 8645756fd..645f298b4 100644
--- a/internal/admission/controller/main.go
+++ b/internal/admission/controller/main.go
@@ -72,7 +72,6 @@ func (ia *IngressAdmission) HandleAdmission(obj runtime.Object) (runtime.Object,
 	codec := json.NewSerializerWithOptions(json.DefaultMetaFactory, scheme, scheme, json.SerializerOptions{
 		Pretty: true,
 	})
-	codec.Decode(review.Request.Object.Raw, nil, nil)
 	_, _, err := codec.Decode(review.Request.Object.Raw, nil, &ingress)
 	if err != nil {
 		klog.ErrorS(err, "failed to decode ingress")
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 9afe00953..607bb5cb9 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -1741,17 +1741,12 @@ func checkOverlap(ing *networking.Ingress, ingresses []*ingress.Ingress, servers
 			}
 
 			// same ingress
-			skipValidation := false
 			for _, existing := range existingIngresses {
 				if existing.ObjectMeta.Namespace == ing.ObjectMeta.Namespace && existing.ObjectMeta.Name == ing.ObjectMeta.Name {
 					return nil
 				}
 			}
 
-			if skipValidation {
-				continue
-			}
-
 			// path overlap. Check if one of the ingresses has a canary annotation
 			isCanaryEnabled, annotationErr := parser.GetBoolAnnotation("canary", ing)
 			for _, existing := range existingIngresses {

From 86964b15a889c37b41f520b028643147213d0086 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Endre=20Kov=C3=A1cs?= <ekovacs@users.noreply.github.com>
Date: Sun, 13 Feb 2022 19:33:47 +0100
Subject: [PATCH 0077/1641] fix inconsistent-label-cardinality for prometheus
 metrics: nginx_ingress_controller_requests (#8225)

* fix inconsistent-label-cardinality

for prometheus metrics: nginx_ingress_controller_requests

* add host to collectorLabels only if metricsPerHost is true
---
 internal/ingress/metric/collectors/socket.go  | 16 ++++++++--
 .../ingress/metric/collectors/socket_test.go  | 30 ++++++++++++++++++-
 2 files changed, 42 insertions(+), 4 deletions(-)

diff --git a/internal/ingress/metric/collectors/socket.go b/internal/ingress/metric/collectors/socket.go
index 44ca4b48b..0cbeeb4a6 100644
--- a/internal/ingress/metric/collectors/socket.go
+++ b/internal/ingress/metric/collectors/socket.go
@@ -217,6 +217,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost bool, bucke
 	}
 
 	sc.metricMapping = map[string]interface{}{
+		prometheus.BuildFQName(PrometheusNamespace, "", "requests"):                 sc.requests,
 		prometheus.BuildFQName(PrometheusNamespace, "", "request_duration_seconds"): sc.requestTime,
 		prometheus.BuildFQName(PrometheusNamespace, "", "request_size"):             sc.requestLength,
 
@@ -258,9 +259,6 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 			"service":   stats.Service,
 			"canary":    stats.Canary,
 		}
-		if sc.metricsPerHost {
-			requestLabels["host"] = stats.Host
-		}
 
 		collectorLabels := prometheus.Labels{
 			"namespace": stats.Namespace,
@@ -268,6 +266,12 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 			"status":    stats.Status,
 			"service":   stats.Service,
 			"canary":    stats.Canary,
+			"method":    stats.Method,
+			"path":      stats.Path,
+		}
+		if sc.metricsPerHost {
+			requestLabels["host"] = stats.Host
+			collectorLabels["host"] = stats.Host
 		}
 
 		latencyLabels := prometheus.Labels{
@@ -415,6 +419,12 @@ func (sc *SocketCollector) RemoveMetrics(ingresses []string, registry prometheus
 					klog.V(2).InfoS("metric not removed", "name", metricName, "ingress", ingKey, "labels", labels)
 				}
 			}
+
+			if c, ok := metric.(*prometheus.CounterVec); ok {
+				if removed := c.Delete(labels); !removed {
+					klog.V(2).InfoS("metric not removed", "name", metricName, "ingress", ingKey, "labels", labels)
+				}
+			}
 		}
 	}
 }
diff --git a/internal/ingress/metric/collectors/socket_test.go b/internal/ingress/metric/collectors/socket_test.go
index 3b124efa0..8542d273c 100644
--- a/internal/ingress/metric/collectors/socket_test.go
+++ b/internal/ingress/metric/collectors/socket_test.go
@@ -153,7 +153,35 @@ func TestCollector(t *testing.T) {
 			wantAfter: `
 			`,
 		},
-
+		{
+			name: "valid metric object should update requests metrics",
+			data: []string{`[{
+				"host":"testshop.com",
+				"status":"200",
+				"bytesSent":150.0,
+				"method":"GET",
+				"path":"/admin",
+				"requestLength":300.0,
+				"requestTime":60.0,
+				"upstreamName":"test-upstream",
+				"upstreamIP":"1.1.1.1:8080",
+				"upstreamResponseTime":200,
+				"upstreamStatus":"220",
+				"namespace":"test-app-production",
+				"ingress":"web-yml",
+				"service":"test-app",
+				"canary":""
+			}]`},
+			metrics: []string{"nginx_ingress_controller_requests"},
+			wantBefore: `
+				# HELP nginx_ingress_controller_requests The total number of client requests.
+				# TYPE nginx_ingress_controller_requests counter
+				nginx_ingress_controller_requests{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200"} 1
+			`,
+			removeIngresses: []string{"test-app-production/web-yml"},
+			wantAfter: `
+			`,
+		},
 		{
 			name: "valid metric object with canary information should update prometheus metrics",
 			data: []string{`[{

From 5754eb60f46efaf3a0ace6d62a3c05c274956838 Mon Sep 17 00:00:00 2001
From: Aibek <35672535+L1ghtman2k@users.noreply.github.com>
Date: Sun, 13 Feb 2022 13:39:47 -0500
Subject: [PATCH 0078/1641] Append elements on match, instead of removing for
 cors-annotations (#8185)

* fixes https://github.com/kubernetes/ingress-nginx/issues/8168 by appending elements on match, instead of removing

* refactor the corsOriginRegex comparison, and initialize CorsAllowOrigin
---
 internal/ingress/annotations/cors/main.go | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/internal/ingress/annotations/cors/main.go b/internal/ingress/annotations/cors/main.go
index d2f232af1..de5b8c279 100644
--- a/internal/ingress/annotations/cors/main.go
+++ b/internal/ingress/annotations/cors/main.go
@@ -121,19 +121,22 @@ func (c cors) Parse(ing *networking.Ingress) (interface{}, error) {
 		config.CorsEnabled = false
 	}
 
+	config.CorsAllowOrigin = []string{}
 	unparsedOrigins, err := parser.GetStringAnnotation("cors-allow-origin", ing)
 	if err == nil {
-		config.CorsAllowOrigin = strings.Split(unparsedOrigins, ",")
-		for i, origin := range config.CorsAllowOrigin {
+		origins := strings.Split(unparsedOrigins, ",")
+		for _, origin := range origins {
 			origin = strings.TrimSpace(origin)
 			if origin == "*" {
 				config.CorsAllowOrigin = []string{"*"}
 				break
 			}
+
 			if !corsOriginRegex.MatchString(origin) {
 				klog.Errorf("Error parsing cors-allow-origin parameters. Supplied incorrect origin: %s. Skipping.", origin)
-				config.CorsAllowOrigin = append(config.CorsAllowOrigin[:i], config.CorsAllowOrigin[i+1:]...)
+				continue
 			}
+			config.CorsAllowOrigin = append(config.CorsAllowOrigin, origin)
 			klog.Infof("Current config.corsAllowOrigin %v", config.CorsAllowOrigin)
 		}
 	} else {

From c9f61211d3442953cadbf4e89357af500239c596 Mon Sep 17 00:00:00 2001
From: Alastair Firth <afirth@users.noreply.github.com>
Date: Sun, 13 Feb 2022 19:47:47 +0100
Subject: [PATCH 0079/1641] Versioned static manifests (#8162)

* update deploy script to generate static manifests for all supported versions

* generate static manifests for all supported versions
---
 deploy/static/provider/aws/1.19/deploy.yaml   | 676 +++++++++++++++++
 .../provider/aws/1.19/kustomization.yaml      |  11 +
 deploy/static/provider/aws/1.20/deploy.yaml   | 682 +++++++++++++++++
 .../provider/aws/1.20/kustomization.yaml      |  11 +
 deploy/static/provider/aws/1.21/deploy.yaml   | 682 +++++++++++++++++
 .../provider/aws/1.21/kustomization.yaml      |  11 +
 deploy/static/provider/aws/1.22/deploy.yaml   | 682 +++++++++++++++++
 .../provider/aws/1.22/kustomization.yaml      |  11 +
 deploy/static/provider/aws/deploy.yaml        |  60 +-
 .../nlb-with-tls-termination/1.19/deploy.yaml | 688 +++++++++++++++++
 .../1.19/kustomization.yaml                   |  11 +
 .../nlb-with-tls-termination/1.20/deploy.yaml | 694 ++++++++++++++++++
 .../1.20/kustomization.yaml                   |  11 +
 .../nlb-with-tls-termination/1.21/deploy.yaml | 694 ++++++++++++++++++
 .../1.21/kustomization.yaml                   |  11 +
 .../nlb-with-tls-termination/1.22/deploy.yaml | 694 ++++++++++++++++++
 .../1.22/kustomization.yaml                   |  11 +
 .../aws/nlb-with-tls-termination/deploy.yaml  |  60 +-
 .../provider/baremetal/1.19/deploy.yaml       | 671 +++++++++++++++++
 .../baremetal/1.19/kustomization.yaml         |  11 +
 .../provider/baremetal/1.20/deploy.yaml       | 677 +++++++++++++++++
 .../baremetal/1.20/kustomization.yaml         |  11 +
 .../provider/baremetal/1.21/deploy.yaml       | 677 +++++++++++++++++
 .../baremetal/1.21/kustomization.yaml         |  11 +
 .../provider/baremetal/1.22/deploy.yaml       | 677 +++++++++++++++++
 .../baremetal/1.22/kustomization.yaml         |  11 +
 deploy/static/provider/baremetal/deploy.yaml  |  60 +-
 deploy/static/provider/cloud/1.19/deploy.yaml | 673 +++++++++++++++++
 .../provider/cloud/1.19/kustomization.yaml    |  11 +
 deploy/static/provider/cloud/1.20/deploy.yaml | 679 +++++++++++++++++
 .../provider/cloud/1.20/kustomization.yaml    |  11 +
 deploy/static/provider/cloud/1.21/deploy.yaml | 679 +++++++++++++++++
 .../provider/cloud/1.21/kustomization.yaml    |  11 +
 deploy/static/provider/cloud/1.22/deploy.yaml | 679 +++++++++++++++++
 .../provider/cloud/1.22/kustomization.yaml    |  11 +
 deploy/static/provider/cloud/deploy.yaml      |  60 +-
 deploy/static/provider/do/1.19/deploy.yaml    | 676 +++++++++++++++++
 .../provider/do/1.19/kustomization.yaml       |  11 +
 deploy/static/provider/do/1.20/deploy.yaml    | 682 +++++++++++++++++
 .../provider/do/1.20/kustomization.yaml       |  11 +
 deploy/static/provider/do/1.21/deploy.yaml    | 682 +++++++++++++++++
 .../provider/do/1.21/kustomization.yaml       |  11 +
 deploy/static/provider/do/1.22/deploy.yaml    | 682 +++++++++++++++++
 .../provider/do/1.22/kustomization.yaml       |  11 +
 deploy/static/provider/do/deploy.yaml         |  60 +-
 .../static/provider/exoscale/1.19/deploy.yaml | 682 +++++++++++++++++
 .../provider/exoscale/1.19/kustomization.yaml |  11 +
 .../static/provider/exoscale/1.20/deploy.yaml | 688 +++++++++++++++++
 .../provider/exoscale/1.20/kustomization.yaml |  11 +
 .../static/provider/exoscale/1.21/deploy.yaml | 688 +++++++++++++++++
 .../provider/exoscale/1.21/kustomization.yaml |  11 +
 .../static/provider/exoscale/1.22/deploy.yaml | 688 +++++++++++++++++
 .../provider/exoscale/1.22/kustomization.yaml |  11 +
 deploy/static/provider/exoscale/deploy.yaml   |  60 +-
 deploy/static/provider/kind/1.19/deploy.yaml  | 684 +++++++++++++++++
 .../provider/kind/1.19/kustomization.yaml     |  11 +
 deploy/static/provider/kind/1.20/deploy.yaml  | 690 +++++++++++++++++
 .../provider/kind/1.20/kustomization.yaml     |  11 +
 deploy/static/provider/kind/1.21/deploy.yaml  | 690 +++++++++++++++++
 .../provider/kind/1.21/kustomization.yaml     |  11 +
 deploy/static/provider/kind/1.22/deploy.yaml  | 690 +++++++++++++++++
 .../provider/kind/1.22/kustomization.yaml     |  11 +
 deploy/static/provider/kind/deploy.yaml       |  60 +-
 deploy/static/provider/scw/1.19/deploy.yaml   | 675 +++++++++++++++++
 .../provider/scw/1.19/kustomization.yaml      |  11 +
 deploy/static/provider/scw/1.20/deploy.yaml   | 681 +++++++++++++++++
 .../provider/scw/1.20/kustomization.yaml      |  11 +
 deploy/static/provider/scw/1.21/deploy.yaml   | 681 +++++++++++++++++
 .../provider/scw/1.21/kustomization.yaml      |  11 +
 deploy/static/provider/scw/1.22/deploy.yaml   | 681 +++++++++++++++++
 .../provider/scw/1.22/kustomization.yaml      |  11 +
 deploy/static/provider/scw/deploy.yaml        |  60 +-
 hack/generate-deploy-scripts.sh               |   4 +-
 73 files changed, 22517 insertions(+), 163 deletions(-)
 create mode 100644 deploy/static/provider/aws/1.19/deploy.yaml
 create mode 100644 deploy/static/provider/aws/1.19/kustomization.yaml
 create mode 100644 deploy/static/provider/aws/1.20/deploy.yaml
 create mode 100644 deploy/static/provider/aws/1.20/kustomization.yaml
 create mode 100644 deploy/static/provider/aws/1.21/deploy.yaml
 create mode 100644 deploy/static/provider/aws/1.21/kustomization.yaml
 create mode 100644 deploy/static/provider/aws/1.22/deploy.yaml
 create mode 100644 deploy/static/provider/aws/1.22/kustomization.yaml
 create mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
 create mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.19/kustomization.yaml
 create mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
 create mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.20/kustomization.yaml
 create mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
 create mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.21/kustomization.yaml
 create mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
 create mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.22/kustomization.yaml
 create mode 100644 deploy/static/provider/baremetal/1.19/deploy.yaml
 create mode 100644 deploy/static/provider/baremetal/1.19/kustomization.yaml
 create mode 100644 deploy/static/provider/baremetal/1.20/deploy.yaml
 create mode 100644 deploy/static/provider/baremetal/1.20/kustomization.yaml
 create mode 100644 deploy/static/provider/baremetal/1.21/deploy.yaml
 create mode 100644 deploy/static/provider/baremetal/1.21/kustomization.yaml
 create mode 100644 deploy/static/provider/baremetal/1.22/deploy.yaml
 create mode 100644 deploy/static/provider/baremetal/1.22/kustomization.yaml
 create mode 100644 deploy/static/provider/cloud/1.19/deploy.yaml
 create mode 100644 deploy/static/provider/cloud/1.19/kustomization.yaml
 create mode 100644 deploy/static/provider/cloud/1.20/deploy.yaml
 create mode 100644 deploy/static/provider/cloud/1.20/kustomization.yaml
 create mode 100644 deploy/static/provider/cloud/1.21/deploy.yaml
 create mode 100644 deploy/static/provider/cloud/1.21/kustomization.yaml
 create mode 100644 deploy/static/provider/cloud/1.22/deploy.yaml
 create mode 100644 deploy/static/provider/cloud/1.22/kustomization.yaml
 create mode 100644 deploy/static/provider/do/1.19/deploy.yaml
 create mode 100644 deploy/static/provider/do/1.19/kustomization.yaml
 create mode 100644 deploy/static/provider/do/1.20/deploy.yaml
 create mode 100644 deploy/static/provider/do/1.20/kustomization.yaml
 create mode 100644 deploy/static/provider/do/1.21/deploy.yaml
 create mode 100644 deploy/static/provider/do/1.21/kustomization.yaml
 create mode 100644 deploy/static/provider/do/1.22/deploy.yaml
 create mode 100644 deploy/static/provider/do/1.22/kustomization.yaml
 create mode 100644 deploy/static/provider/exoscale/1.19/deploy.yaml
 create mode 100644 deploy/static/provider/exoscale/1.19/kustomization.yaml
 create mode 100644 deploy/static/provider/exoscale/1.20/deploy.yaml
 create mode 100644 deploy/static/provider/exoscale/1.20/kustomization.yaml
 create mode 100644 deploy/static/provider/exoscale/1.21/deploy.yaml
 create mode 100644 deploy/static/provider/exoscale/1.21/kustomization.yaml
 create mode 100644 deploy/static/provider/exoscale/1.22/deploy.yaml
 create mode 100644 deploy/static/provider/exoscale/1.22/kustomization.yaml
 create mode 100644 deploy/static/provider/kind/1.19/deploy.yaml
 create mode 100644 deploy/static/provider/kind/1.19/kustomization.yaml
 create mode 100644 deploy/static/provider/kind/1.20/deploy.yaml
 create mode 100644 deploy/static/provider/kind/1.20/kustomization.yaml
 create mode 100644 deploy/static/provider/kind/1.21/deploy.yaml
 create mode 100644 deploy/static/provider/kind/1.21/kustomization.yaml
 create mode 100644 deploy/static/provider/kind/1.22/deploy.yaml
 create mode 100644 deploy/static/provider/kind/1.22/kustomization.yaml
 create mode 100644 deploy/static/provider/scw/1.19/deploy.yaml
 create mode 100644 deploy/static/provider/scw/1.19/kustomization.yaml
 create mode 100644 deploy/static/provider/scw/1.20/deploy.yaml
 create mode 100644 deploy/static/provider/scw/1.20/kustomization.yaml
 create mode 100644 deploy/static/provider/scw/1.21/deploy.yaml
 create mode 100644 deploy/static/provider/scw/1.21/kustomization.yaml
 create mode 100644 deploy/static/provider/scw/1.22/deploy.yaml
 create mode 100644 deploy/static/provider/scw/1.22/kustomization.yaml

diff --git a/deploy/static/provider/aws/1.19/deploy.yaml b/deploy/static/provider/aws/1.19/deploy.yaml
new file mode 100644
index 000000000..c73b0e7e1
--- /dev/null
+++ b/deploy/static/provider/aws/1.19/deploy.yaml
@@ -0,0 +1,676 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
+    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+    service.beta.kubernetes.io/aws-load-balancer-type: nlb
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ports:
+  - name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/aws/1.19/kustomization.yaml b/deploy/static/provider/aws/1.19/kustomization.yaml
new file mode 100644
index 000000000..d18ef3896
--- /dev/null
+++ b/deploy/static/provider/aws/1.19/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/aws/1.20/deploy.yaml b/deploy/static/provider/aws/1.20/deploy.yaml
new file mode 100644
index 000000000..c8117bf51
--- /dev/null
+++ b/deploy/static/provider/aws/1.20/deploy.yaml
@@ -0,0 +1,682 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
+    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+    service.beta.kubernetes.io/aws-load-balancer-type: nlb
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/aws/1.20/kustomization.yaml b/deploy/static/provider/aws/1.20/kustomization.yaml
new file mode 100644
index 000000000..d18ef3896
--- /dev/null
+++ b/deploy/static/provider/aws/1.20/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/aws/1.21/deploy.yaml b/deploy/static/provider/aws/1.21/deploy.yaml
new file mode 100644
index 000000000..c8117bf51
--- /dev/null
+++ b/deploy/static/provider/aws/1.21/deploy.yaml
@@ -0,0 +1,682 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
+    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+    service.beta.kubernetes.io/aws-load-balancer-type: nlb
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/aws/1.21/kustomization.yaml b/deploy/static/provider/aws/1.21/kustomization.yaml
new file mode 100644
index 000000000..d18ef3896
--- /dev/null
+++ b/deploy/static/provider/aws/1.21/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/aws/1.22/deploy.yaml b/deploy/static/provider/aws/1.22/deploy.yaml
new file mode 100644
index 000000000..c8117bf51
--- /dev/null
+++ b/deploy/static/provider/aws/1.22/deploy.yaml
@@ -0,0 +1,682 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
+    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+    service.beta.kubernetes.io/aws-load-balancer-type: nlb
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/aws/1.22/kustomization.yaml b/deploy/static/provider/aws/1.22/kustomization.yaml
new file mode 100644
index 000000000..d18ef3896
--- /dev/null
+++ b/deploy/static/provider/aws/1.22/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index b74690c33..3ade4013b 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -16,8 +16,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -32,8 +33,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,8 +47,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -131,8 +134,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -151,8 +155,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -222,8 +227,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -242,8 +248,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -266,8 +273,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -286,8 +294,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,8 +318,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -331,8 +341,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -348,8 +359,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,8 +394,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -406,8 +419,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -521,8 +535,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -533,8 +548,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -572,8 +588,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,8 +601,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -622,8 +640,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -636,8 +655,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
new file mode 100644
index 000000000..eee0f093a
--- /dev/null
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
@@ -0,0 +1,688 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  http-snippet: |
+    server {
+      listen 2443;
+      return 308 https://$host$request_uri;
+    }
+  proxy-real-ip-cidr: XXX.XXX.XXX/XX
+  use-forwarded-headers: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
+    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+    service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX
+    service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
+    service.beta.kubernetes.io/aws-load-balancer-type: nlb
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ports:
+  - name: http
+    port: 80
+    protocol: TCP
+    targetPort: tohttps
+  - name: https
+    port: 443
+    protocol: TCP
+    targetPort: http
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 80
+          name: https
+          protocol: TCP
+        - containerPort: 2443
+          name: tohttps
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/kustomization.yaml
new file mode 100644
index 000000000..ca2086ea9
--- /dev/null
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws/nlb-with-tls-termination?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
new file mode 100644
index 000000000..cc52b3114
--- /dev/null
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
@@ -0,0 +1,694 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  http-snippet: |
+    server {
+      listen 2443;
+      return 308 https://$host$request_uri;
+    }
+  proxy-real-ip-cidr: XXX.XXX.XXX/XX
+  use-forwarded-headers: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
+    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+    service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX
+    service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
+    service.beta.kubernetes.io/aws-load-balancer-type: nlb
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: tohttps
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: http
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 80
+          name: https
+          protocol: TCP
+        - containerPort: 2443
+          name: tohttps
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/kustomization.yaml
new file mode 100644
index 000000000..ca2086ea9
--- /dev/null
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws/nlb-with-tls-termination?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
new file mode 100644
index 000000000..cc52b3114
--- /dev/null
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
@@ -0,0 +1,694 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  http-snippet: |
+    server {
+      listen 2443;
+      return 308 https://$host$request_uri;
+    }
+  proxy-real-ip-cidr: XXX.XXX.XXX/XX
+  use-forwarded-headers: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
+    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+    service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX
+    service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
+    service.beta.kubernetes.io/aws-load-balancer-type: nlb
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: tohttps
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: http
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 80
+          name: https
+          protocol: TCP
+        - containerPort: 2443
+          name: tohttps
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/kustomization.yaml
new file mode 100644
index 000000000..ca2086ea9
--- /dev/null
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws/nlb-with-tls-termination?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
new file mode 100644
index 000000000..cc52b3114
--- /dev/null
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
@@ -0,0 +1,694 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  http-snippet: |
+    server {
+      listen 2443;
+      return 308 https://$host$request_uri;
+    }
+  proxy-real-ip-cidr: XXX.XXX.XXX/XX
+  use-forwarded-headers: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
+    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+    service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX
+    service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
+    service.beta.kubernetes.io/aws-load-balancer-type: nlb
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: tohttps
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: http
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 80
+          name: https
+          protocol: TCP
+        - containerPort: 2443
+          name: tohttps
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/kustomization.yaml
new file mode 100644
index 000000000..ca2086ea9
--- /dev/null
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws/nlb-with-tls-termination?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 242624ef3..21aae7795 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -16,8 +16,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -32,8 +33,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,8 +47,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -131,8 +134,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -151,8 +155,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -222,8 +227,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -242,8 +248,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -266,8 +273,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -286,8 +294,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,8 +318,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,8 +348,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -357,8 +368,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,8 +403,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,8 +428,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -533,8 +547,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -545,8 +560,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -584,8 +600,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -596,8 +613,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -634,8 +652,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -648,8 +667,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.19/deploy.yaml b/deploy/static/provider/baremetal/1.19/deploy.yaml
new file mode 100644
index 000000000..ec21480bb
--- /dev/null
+++ b/deploy/static/provider/baremetal/1.19/deploy.yaml
@@ -0,0 +1,671 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  ports:
+  - name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: NodePort
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/baremetal/1.19/kustomization.yaml b/deploy/static/provider/baremetal/1.19/kustomization.yaml
new file mode 100644
index 000000000..d13af0f82
--- /dev/null
+++ b/deploy/static/provider/baremetal/1.19/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/baremetal?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/baremetal/1.20/deploy.yaml b/deploy/static/provider/baremetal/1.20/deploy.yaml
new file mode 100644
index 000000000..f4c419ed9
--- /dev/null
+++ b/deploy/static/provider/baremetal/1.20/deploy.yaml
@@ -0,0 +1,677 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: NodePort
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/baremetal/1.20/kustomization.yaml b/deploy/static/provider/baremetal/1.20/kustomization.yaml
new file mode 100644
index 000000000..d13af0f82
--- /dev/null
+++ b/deploy/static/provider/baremetal/1.20/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/baremetal?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/baremetal/1.21/deploy.yaml b/deploy/static/provider/baremetal/1.21/deploy.yaml
new file mode 100644
index 000000000..f4c419ed9
--- /dev/null
+++ b/deploy/static/provider/baremetal/1.21/deploy.yaml
@@ -0,0 +1,677 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: NodePort
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/baremetal/1.21/kustomization.yaml b/deploy/static/provider/baremetal/1.21/kustomization.yaml
new file mode 100644
index 000000000..d13af0f82
--- /dev/null
+++ b/deploy/static/provider/baremetal/1.21/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/baremetal?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/baremetal/1.22/deploy.yaml b/deploy/static/provider/baremetal/1.22/deploy.yaml
new file mode 100644
index 000000000..f4c419ed9
--- /dev/null
+++ b/deploy/static/provider/baremetal/1.22/deploy.yaml
@@ -0,0 +1,677 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: NodePort
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/baremetal/1.22/kustomization.yaml b/deploy/static/provider/baremetal/1.22/kustomization.yaml
new file mode 100644
index 000000000..d13af0f82
--- /dev/null
+++ b/deploy/static/provider/baremetal/1.22/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/baremetal?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index af3463951..8aea1fd40 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -16,8 +16,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -32,8 +33,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,8 +47,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -131,8 +134,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -151,8 +155,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -222,8 +227,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -242,8 +248,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -266,8 +273,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -286,8 +294,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,8 +318,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -331,8 +341,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -345,8 +356,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -378,8 +390,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -402,8 +415,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -516,8 +530,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,8 +543,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -567,8 +583,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -579,8 +596,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -617,8 +635,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -631,8 +650,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.19/deploy.yaml b/deploy/static/provider/cloud/1.19/deploy.yaml
new file mode 100644
index 000000000..8930e5c6d
--- /dev/null
+++ b/deploy/static/provider/cloud/1.19/deploy.yaml
@@ -0,0 +1,673 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ports:
+  - name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/cloud/1.19/kustomization.yaml b/deploy/static/provider/cloud/1.19/kustomization.yaml
new file mode 100644
index 000000000..a92167fad
--- /dev/null
+++ b/deploy/static/provider/cloud/1.19/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/cloud?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/cloud/1.20/deploy.yaml b/deploy/static/provider/cloud/1.20/deploy.yaml
new file mode 100644
index 000000000..ef71edab1
--- /dev/null
+++ b/deploy/static/provider/cloud/1.20/deploy.yaml
@@ -0,0 +1,679 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/cloud/1.20/kustomization.yaml b/deploy/static/provider/cloud/1.20/kustomization.yaml
new file mode 100644
index 000000000..a92167fad
--- /dev/null
+++ b/deploy/static/provider/cloud/1.20/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/cloud?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/cloud/1.21/deploy.yaml b/deploy/static/provider/cloud/1.21/deploy.yaml
new file mode 100644
index 000000000..ef71edab1
--- /dev/null
+++ b/deploy/static/provider/cloud/1.21/deploy.yaml
@@ -0,0 +1,679 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/cloud/1.21/kustomization.yaml b/deploy/static/provider/cloud/1.21/kustomization.yaml
new file mode 100644
index 000000000..a92167fad
--- /dev/null
+++ b/deploy/static/provider/cloud/1.21/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/cloud?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/cloud/1.22/deploy.yaml b/deploy/static/provider/cloud/1.22/deploy.yaml
new file mode 100644
index 000000000..ef71edab1
--- /dev/null
+++ b/deploy/static/provider/cloud/1.22/deploy.yaml
@@ -0,0 +1,679 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/cloud/1.22/kustomization.yaml b/deploy/static/provider/cloud/1.22/kustomization.yaml
new file mode 100644
index 000000000..a92167fad
--- /dev/null
+++ b/deploy/static/provider/cloud/1.22/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/cloud?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 87f64383a..aafd9fde7 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -16,8 +16,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -32,8 +33,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,8 +47,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -131,8 +134,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -151,8 +155,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -222,8 +227,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -242,8 +248,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -266,8 +273,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -286,8 +294,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,8 +318,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -331,8 +341,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -345,8 +356,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -379,8 +391,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -403,8 +416,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -518,8 +532,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -530,8 +545,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -569,8 +585,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,8 +598,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -619,8 +637,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -633,8 +652,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.19/deploy.yaml b/deploy/static/provider/do/1.19/deploy.yaml
new file mode 100644
index 000000000..6f63e5806
--- /dev/null
+++ b/deploy/static/provider/do/1.19/deploy.yaml
@@ -0,0 +1,676 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  use-proxy-protocol: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ports:
+  - name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
+  timeoutSeconds: 29
diff --git a/deploy/static/provider/do/1.19/kustomization.yaml b/deploy/static/provider/do/1.19/kustomization.yaml
new file mode 100644
index 000000000..c7bb8d250
--- /dev/null
+++ b/deploy/static/provider/do/1.19/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/do?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/do/1.20/deploy.yaml b/deploy/static/provider/do/1.20/deploy.yaml
new file mode 100644
index 000000000..6e5ef30ee
--- /dev/null
+++ b/deploy/static/provider/do/1.20/deploy.yaml
@@ -0,0 +1,682 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  use-proxy-protocol: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
+  timeoutSeconds: 29
diff --git a/deploy/static/provider/do/1.20/kustomization.yaml b/deploy/static/provider/do/1.20/kustomization.yaml
new file mode 100644
index 000000000..c7bb8d250
--- /dev/null
+++ b/deploy/static/provider/do/1.20/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/do?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/do/1.21/deploy.yaml b/deploy/static/provider/do/1.21/deploy.yaml
new file mode 100644
index 000000000..6e5ef30ee
--- /dev/null
+++ b/deploy/static/provider/do/1.21/deploy.yaml
@@ -0,0 +1,682 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  use-proxy-protocol: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
+  timeoutSeconds: 29
diff --git a/deploy/static/provider/do/1.21/kustomization.yaml b/deploy/static/provider/do/1.21/kustomization.yaml
new file mode 100644
index 000000000..c7bb8d250
--- /dev/null
+++ b/deploy/static/provider/do/1.21/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/do?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/do/1.22/deploy.yaml b/deploy/static/provider/do/1.22/deploy.yaml
new file mode 100644
index 000000000..6e5ef30ee
--- /dev/null
+++ b/deploy/static/provider/do/1.22/deploy.yaml
@@ -0,0 +1,682 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  use-proxy-protocol: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
+  timeoutSeconds: 29
diff --git a/deploy/static/provider/do/1.22/kustomization.yaml b/deploy/static/provider/do/1.22/kustomization.yaml
new file mode 100644
index 000000000..c7bb8d250
--- /dev/null
+++ b/deploy/static/provider/do/1.22/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/do?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 6409fffde..996fb7ea3 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -16,8 +16,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -32,8 +33,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,8 +47,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -131,8 +134,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -151,8 +155,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -222,8 +227,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -242,8 +248,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -266,8 +273,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -286,8 +294,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,8 +318,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -332,8 +342,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -347,8 +358,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -381,8 +393,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,8 +418,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -520,8 +534,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -532,8 +547,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,8 +587,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -583,8 +600,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -621,8 +639,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,8 +654,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.19/deploy.yaml b/deploy/static/provider/exoscale/1.19/deploy.yaml
new file mode 100644
index 000000000..ea82a935c
--- /dev/null
+++ b/deploy/static/provider/exoscale/1.19/deploy.yaml
@@ -0,0 +1,682 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
+      load balancer
+    service.beta.kubernetes.io/exoscale-loadbalancer-name: nginx-ingress-controller
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: 3s
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: /
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: source-hash
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ports:
+  - name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/exoscale/1.19/kustomization.yaml b/deploy/static/provider/exoscale/1.19/kustomization.yaml
new file mode 100644
index 000000000..8466627e2
--- /dev/null
+++ b/deploy/static/provider/exoscale/1.19/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/exoscale?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/exoscale/1.20/deploy.yaml b/deploy/static/provider/exoscale/1.20/deploy.yaml
new file mode 100644
index 000000000..f933c41b5
--- /dev/null
+++ b/deploy/static/provider/exoscale/1.20/deploy.yaml
@@ -0,0 +1,688 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
+      load balancer
+    service.beta.kubernetes.io/exoscale-loadbalancer-name: nginx-ingress-controller
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: 3s
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: /
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: source-hash
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/exoscale/1.20/kustomization.yaml b/deploy/static/provider/exoscale/1.20/kustomization.yaml
new file mode 100644
index 000000000..8466627e2
--- /dev/null
+++ b/deploy/static/provider/exoscale/1.20/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/exoscale?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/exoscale/1.21/deploy.yaml b/deploy/static/provider/exoscale/1.21/deploy.yaml
new file mode 100644
index 000000000..f933c41b5
--- /dev/null
+++ b/deploy/static/provider/exoscale/1.21/deploy.yaml
@@ -0,0 +1,688 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
+      load balancer
+    service.beta.kubernetes.io/exoscale-loadbalancer-name: nginx-ingress-controller
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: 3s
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: /
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: source-hash
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/exoscale/1.21/kustomization.yaml b/deploy/static/provider/exoscale/1.21/kustomization.yaml
new file mode 100644
index 000000000..8466627e2
--- /dev/null
+++ b/deploy/static/provider/exoscale/1.21/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/exoscale?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/exoscale/1.22/deploy.yaml b/deploy/static/provider/exoscale/1.22/deploy.yaml
new file mode 100644
index 000000000..f933c41b5
--- /dev/null
+++ b/deploy/static/provider/exoscale/1.22/deploy.yaml
@@ -0,0 +1,688 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
+      load balancer
+    service.beta.kubernetes.io/exoscale-loadbalancer-name: nginx-ingress-controller
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: 3s
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: /
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: source-hash
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/exoscale/1.22/kustomization.yaml b/deploy/static/provider/exoscale/1.22/kustomization.yaml
new file mode 100644
index 000000000..8466627e2
--- /dev/null
+++ b/deploy/static/provider/exoscale/1.22/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/exoscale?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index ef0769852..e03f2a9d2 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -16,8 +16,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -32,8 +33,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,8 +47,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -131,8 +134,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -151,8 +155,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -222,8 +227,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -242,8 +248,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -266,8 +273,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -286,8 +294,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,8 +318,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -331,8 +341,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -354,8 +365,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -388,8 +400,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -412,8 +425,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -527,8 +541,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -539,8 +554,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -578,8 +594,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -590,8 +607,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -628,8 +646,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -642,8 +661,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.19/deploy.yaml b/deploy/static/provider/kind/1.19/deploy.yaml
new file mode 100644
index 000000000..cfe8c44fe
--- /dev/null
+++ b/deploy/static/provider/kind/1.19/deploy.yaml
@@ -0,0 +1,684 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  ports:
+  - name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: NodePort
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  strategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        - --watch-ingress-without-class=true
+        - --publish-status-address=localhost
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          hostPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          hostPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        ingress-ready: "true"
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 0
+      tolerations:
+      - effect: NoSchedule
+        key: node-role.kubernetes.io/master
+        operator: Equal
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/kind/1.19/kustomization.yaml b/deploy/static/provider/kind/1.19/kustomization.yaml
new file mode 100644
index 000000000..94b7c887d
--- /dev/null
+++ b/deploy/static/provider/kind/1.19/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/kind?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/kind/1.20/deploy.yaml b/deploy/static/provider/kind/1.20/deploy.yaml
new file mode 100644
index 000000000..e2a18a480
--- /dev/null
+++ b/deploy/static/provider/kind/1.20/deploy.yaml
@@ -0,0 +1,690 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: NodePort
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  strategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        - --watch-ingress-without-class=true
+        - --publish-status-address=localhost
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          hostPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          hostPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        ingress-ready: "true"
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 0
+      tolerations:
+      - effect: NoSchedule
+        key: node-role.kubernetes.io/master
+        operator: Equal
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/kind/1.20/kustomization.yaml b/deploy/static/provider/kind/1.20/kustomization.yaml
new file mode 100644
index 000000000..94b7c887d
--- /dev/null
+++ b/deploy/static/provider/kind/1.20/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/kind?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/kind/1.21/deploy.yaml b/deploy/static/provider/kind/1.21/deploy.yaml
new file mode 100644
index 000000000..e2a18a480
--- /dev/null
+++ b/deploy/static/provider/kind/1.21/deploy.yaml
@@ -0,0 +1,690 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: NodePort
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  strategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        - --watch-ingress-without-class=true
+        - --publish-status-address=localhost
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          hostPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          hostPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        ingress-ready: "true"
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 0
+      tolerations:
+      - effect: NoSchedule
+        key: node-role.kubernetes.io/master
+        operator: Equal
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/kind/1.21/kustomization.yaml b/deploy/static/provider/kind/1.21/kustomization.yaml
new file mode 100644
index 000000000..94b7c887d
--- /dev/null
+++ b/deploy/static/provider/kind/1.21/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/kind?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/kind/1.22/deploy.yaml b/deploy/static/provider/kind/1.22/deploy.yaml
new file mode 100644
index 000000000..e2a18a480
--- /dev/null
+++ b/deploy/static/provider/kind/1.22/deploy.yaml
@@ -0,0 +1,690 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations: null
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: NodePort
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  strategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        - --watch-ingress-without-class=true
+        - --publish-status-address=localhost
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          hostPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          hostPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        ingress-ready: "true"
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 0
+      tolerations:
+      - effect: NoSchedule
+        key: node-role.kubernetes.io/master
+        operator: Equal
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/kind/1.22/kustomization.yaml b/deploy/static/provider/kind/1.22/kustomization.yaml
new file mode 100644
index 000000000..94b7c887d
--- /dev/null
+++ b/deploy/static/provider/kind/1.22/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/kind?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 4cd1c32d4..9d2711dae 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -16,8 +16,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -32,8 +33,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,8 +47,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -131,8 +134,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -151,8 +155,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -222,8 +227,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -242,8 +248,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -266,8 +273,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -286,8 +294,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,8 +318,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -331,8 +341,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -345,8 +356,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -378,8 +390,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -402,8 +415,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -529,8 +543,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -541,8 +556,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -580,8 +596,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -592,8 +609,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -630,8 +648,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -644,8 +663,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.19/deploy.yaml b/deploy/static/provider/scw/1.19/deploy.yaml
new file mode 100644
index 000000000..8b52a7298
--- /dev/null
+++ b/deploy/static/provider/scw/1.19/deploy.yaml
@@ -0,0 +1,675 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  use-proxy-protocol: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ports:
+  - name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/scw/1.19/kustomization.yaml b/deploy/static/provider/scw/1.19/kustomization.yaml
new file mode 100644
index 000000000..da792b8f5
--- /dev/null
+++ b/deploy/static/provider/scw/1.19/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/scw?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/scw/1.20/deploy.yaml b/deploy/static/provider/scw/1.20/deploy.yaml
new file mode 100644
index 000000000..bcffca757
--- /dev/null
+++ b/deploy/static/provider/scw/1.20/deploy.yaml
@@ -0,0 +1,681 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  use-proxy-protocol: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/scw/1.20/kustomization.yaml b/deploy/static/provider/scw/1.20/kustomization.yaml
new file mode 100644
index 000000000..da792b8f5
--- /dev/null
+++ b/deploy/static/provider/scw/1.20/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/scw?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/scw/1.21/deploy.yaml b/deploy/static/provider/scw/1.21/deploy.yaml
new file mode 100644
index 000000000..bcffca757
--- /dev/null
+++ b/deploy/static/provider/scw/1.21/deploy.yaml
@@ -0,0 +1,681 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  use-proxy-protocol: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/scw/1.21/kustomization.yaml b/deploy/static/provider/scw/1.21/kustomization.yaml
new file mode 100644
index 000000000..da792b8f5
--- /dev/null
+++ b/deploy/static/provider/scw/1.21/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/scw?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/scw/1.22/deploy.yaml b/deploy/static/provider/scw/1.22/deploy.yaml
new file mode 100644
index 000000000..bcffca757
--- /dev/null
+++ b/deploy/static/provider/scw/1.22/deploy.yaml
@@ -0,0 +1,681 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  use-proxy-protocol: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.1
+        helm.sh/chart: ingress-nginx-4.0.16
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.1
+    helm.sh/chart: ingress-nginx-4.0.16
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/scw/1.22/kustomization.yaml b/deploy/static/provider/scw/1.22/kustomization.yaml
new file mode 100644
index 000000000..da792b8f5
--- /dev/null
+++ b/deploy/static/provider/scw/1.22/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/scw?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 4f918c422..8fff56b99 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -16,8 +16,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -32,8 +33,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,8 +47,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -131,8 +134,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -151,8 +155,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -222,8 +227,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -242,8 +248,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -266,8 +273,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -286,8 +294,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,8 +318,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -332,8 +342,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -347,8 +358,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -381,8 +393,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,8 +418,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -520,8 +534,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -532,8 +547,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,8 +587,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -583,8 +600,9 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
         app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.15
+        helm.sh/chart: ingress-nginx-4.0.16
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -621,8 +639,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,8 +654,9 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
     app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.15
+    helm.sh/chart: ingress-nginx-4.0.16
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/hack/generate-deploy-scripts.sh b/hack/generate-deploy-scripts.sh
index 2ec0adc1b..4ec213792 100755
--- a/hack/generate-deploy-scripts.sh
+++ b/hack/generate-deploy-scripts.sh
@@ -26,8 +26,7 @@ set -o pipefail
 # with enough docs updates, this could be removed
 # see     # DEFAULT VERSION HANDLING
 K8S_DEFAULT_VERSION=1.20
-# K8S_TARGET_VERSIONS=("1.19" "1.20" "1.21" "1.22") TODO @afirth revert for #8000
-K8S_TARGET_VERSIONS=("1.20")
+K8S_TARGET_VERSIONS=("1.19" "1.20" "1.21" "1.22")
 
 DIR=$(cd $(dirname "${BASH_SOURCE}")/.. && pwd -P)
 
@@ -66,7 +65,6 @@ do
     then
       cp ${OUTPUT_DIR}/*.yaml ${OUTPUT_DIR}/../
       sed -i "1s/^/#GENERATED FOR K8S ${K8S_VERSION}\n/" ${OUTPUT_DIR}/../deploy.yaml
-      rm -rf ${OUTPUT_DIR} # TODO @afirth remove for #8000 - this avoids the duplicate files for easier review of the build script changes
     fi
   done
 done

From d5772069e86a5b3e1700401c168df436f080030f Mon Sep 17 00:00:00 2001
From: Noah Ispas <13436814+iamNoah1@users.noreply.github.com>
Date: Sun, 20 Feb 2022 00:12:12 +0100
Subject: [PATCH 0080/1641] remove 0.46.0 from supported versions table (#8258)

---
 README.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/README.md b/README.md
index 3fec178e5..f132be8a8 100644
--- a/README.md
+++ b/README.md
@@ -45,7 +45,6 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 | v0.49.0               | 1.21, 1.20, 1.19             | 3.13.5         |  1.20.1       |
 | v0.48.1               | 1.21, 1.20, 1.19             | 3.13.5         |  1.20.1       |
 | v0.47.0               | 1.21, 1.20, 1.19             | 3.13.5         |  1.20.1       |
-| v0.46.0               | 1.21, 1.20, 1.19             | 3.13.2         |  1.19.6       |
 
 † _This build is [patched against CVE-2021-23017](https://github.com/openresty/openresty/commit/4b5ec7edd78616f544abc194308e0cf4b788725b#diff-42ef841dc27fe0b5aa2d06bd31308bb63a59cdcddcbcddd917248349d22020a3)._
 

From 527361c8eb2da54862d0c80f5490d47c00f5e354 Mon Sep 17 00:00:00 2001
From: Romain Dauby <r0mdau@users.noreply.github.com>
Date: Sun, 20 Feb 2022 16:14:11 -0500
Subject: [PATCH 0081/1641] Minor fix for missing pathType property (#8244)

---
 charts/ingress-nginx/templates/NOTES.txt | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/templates/NOTES.txt b/charts/ingress-nginx/templates/NOTES.txt
index c10ab03ed..8985c56c0 100644
--- a/charts/ingress-nginx/templates/NOTES.txt
+++ b/charts/ingress-nginx/templates/NOTES.txt
@@ -47,7 +47,8 @@ An example Ingress that makes use of the controller:
       - host: www.example.com
         http:
           paths:
-            - backend:
+            - pathType: Prefix
+              backend:
                 service:
                   name: exampleService
                   port:

From f85dd79221a72e20a80acab0272474a0d8f0d1fe Mon Sep 17 00:00:00 2001
From: Goran <purpleritza@gmail.com>
Date: Mon, 21 Feb 2022 20:52:01 +0100
Subject: [PATCH 0082/1641] Updated confusing error (#8262)

---
 docs/user-guide/monitoring.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index 9be22a5ad..a89e11087 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -211,7 +211,7 @@ This document assumes you're using helm and using the kube-prometheus-stack pack
   ```
   controller.metrics.enabled=true
   controller.metrics.serviceMonitor.enabled=true
-  controller.metrics.serviceMonitor.enabled=true 
+  controller.metrics.serviceMonitor.additionalLabels.release="prometheus" 
   ```
 - The easiest way of doing this is to helm upgrade 
   ```
@@ -338,4 +338,4 @@ This document assumes you're using helm and using the kube-prometheus-stack pack
   - Click "Import"
 
   ![Grafana Dashboard](../images/grafana-dashboard1.png)
- 
\ No newline at end of file
+ 

From 1e66a54974856cd31fea0e203a7b97b955ebe792 Mon Sep 17 00:00:00 2001
From: Thibault Jamet <tjamet@users.noreply.github.com>
Date: Thu, 24 Feb 2022 16:08:32 +0100
Subject: [PATCH 0083/1641] Add a certificate info metric (#8253)

When the ingress controller loads certificates  (new ones or following a
secret update), it performs a series of check to ensure its validity.

In our systems, we detected a case where, when the secret object is
compromised, for example when the certificate does not match the secret
key, different pods of the ingress controller are serving a different
version of the certificate.

This behaviour is due to the cache mechanism of the ingress controller,
keeping the last known certificate in case of corruption. When this
happens, old ingress-controller pods will keep serving the old one,
while new pods, by failing to load the corrupted certificates, would
use the default certificate, causing invalid certificates for its
clients.

This generates a random error on the client side, depending on the
actual pod instance it reaches.

In order to allow detecting occurences of those situations, add a metric
to expose, for all ingress controlller pods, detailed informations of
the currently loaded certificate.

This will, for example, allow setting an alert when there is a
certificate discrepency across all ingress controller pods using a query
similar to `sum(nginx_ingress_controller_ssl_certificate_info{host="name.tld"})by(serial_number)`

This also allows to catch other exceptions loading certificates (failing
to load the certificate from the k8s API, ...

Co-authored-by: Daniel Ricart <danielricart@users.noreply.github.com>

Co-authored-by: Daniel Ricart <danielricart@users.noreply.github.com>
---
 internal/ingress/controller/controller.go     |  35 +++-
 internal/ingress/controller/nginx.go          |   1 +
 .../ingress/metric/collectors/controller.go   |  93 +++++++++-
 .../metric/collectors/controller_test.go      | 166 +++++++++++++++++-
 internal/ingress/metric/dummy.go              |   5 +-
 internal/ingress/metric/main.go               |  14 +-
 internal/ingress/sslcert.go                   |  11 ++
 7 files changed, 311 insertions(+), 14 deletions(-)

diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 607bb5cb9..651e983a8 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -146,6 +146,7 @@ func (n *NGINXController) syncIngress(interface{}) error {
 	hosts, servers, pcfg := n.getConfiguration(ings)
 
 	n.metricCollector.SetSSLExpireTime(servers)
+	n.metricCollector.SetSSLInfo(servers)
 
 	if n.runningConfig.Equal(pcfg) {
 		klog.V(3).Infof("No configuration change detected, skipping backend reload")
@@ -211,7 +212,8 @@ func (n *NGINXController) syncIngress(interface{}) error {
 
 	ri := getRemovedIngresses(n.runningConfig, pcfg)
 	re := getRemovedHosts(n.runningConfig, pcfg)
-	n.metricCollector.RemoveMetrics(ri, re)
+	rc := getRemovedCertificateSerialNumbers(n.runningConfig, pcfg)
+	n.metricCollector.RemoveMetrics(ri, re, rc)
 
 	n.runningConfig = pcfg
 
@@ -1625,6 +1627,37 @@ func getRemovedHosts(rucfg, newcfg *ingress.Configuration) []string {
 	return old.Difference(new).List()
 }
 
+func getRemovedCertificateSerialNumbers(rucfg, newcfg *ingress.Configuration) []string {
+	oldCertificates := sets.NewString()
+	newCertificates := sets.NewString()
+
+	for _, server := range rucfg.Servers {
+		if server.SSLCert == nil {
+			continue
+		}
+		identifier := server.SSLCert.Identifier()
+		if identifier != "" {
+			if !oldCertificates.Has(identifier) {
+				oldCertificates.Insert(identifier)
+			}
+		}
+	}
+
+	for _, server := range newcfg.Servers {
+		if server.SSLCert == nil {
+			continue
+		}
+		identifier := server.SSLCert.Identifier()
+		if identifier != "" {
+			if !newCertificates.Has(identifier) {
+				newCertificates.Insert(identifier)
+			}
+		}
+	}
+
+	return oldCertificates.Difference(newCertificates).List()
+}
+
 func getRemovedIngresses(rucfg, newcfg *ingress.Configuration) []string {
 	oldIngresses := sets.NewString()
 	newIngresses := sets.NewString()
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index ed5590c3e..e4037dfb0 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -275,6 +275,7 @@ func (n *NGINXController) Start() {
 			// manually update SSL expiration metrics
 			// (to not wait for a reload)
 			n.metricCollector.SetSSLExpireTime(n.runningConfig.Servers)
+			n.metricCollector.SetSSLInfo(n.runningConfig.Servers)
 		},
 		OnStoppedLeading: func() {
 			n.metricCollector.OnStoppedLeading(electionID)
diff --git a/internal/ingress/metric/collectors/controller.go b/internal/ingress/metric/collectors/controller.go
index 135e74b9b..e4e2655c8 100644
--- a/internal/ingress/metric/collectors/controller.go
+++ b/internal/ingress/metric/collectors/controller.go
@@ -30,7 +30,8 @@ import (
 var (
 	operation        = []string{"controller_namespace", "controller_class", "controller_pod"}
 	ingressOperation = []string{"controller_namespace", "controller_class", "controller_pod", "namespace", "ingress"}
-	sslLabelHost     = []string{"namespace", "class", "host"}
+	sslLabelHost     = []string{"namespace", "class", "host", "secret_name"}
+	sslInfoLabels    = []string{"namespace", "class", "host", "secret_name", "identifier", "issuer_organization", "issuer_common_name", "serial_number", "public_key_algorithm"}
 )
 
 // Controller defines base metrics about the ingress controller
@@ -46,6 +47,7 @@ type Controller struct {
 	checkIngressOperation       *prometheus.CounterVec
 	checkIngressOperationErrors *prometheus.CounterVec
 	sslExpireTime               *prometheus.GaugeVec
+	sslInfo                     *prometheus.GaugeVec
 
 	constLabels prometheus.Labels
 	labels      prometheus.Labels
@@ -152,6 +154,14 @@ func NewController(pod, namespace, class string) *Controller {
 			},
 			sslLabelHost,
 		),
+		sslInfo: prometheus.NewGaugeVec(
+			prometheus.GaugeOpts{
+				Namespace: PrometheusNamespace,
+				Name:      "ssl_certificate_info",
+				Help:      `Hold all labels associated to a certificate`,
+			},
+			sslInfoLabels,
+		),
 		leaderElection: prometheus.NewGaugeVec(
 			prometheus.GaugeOpts{
 				Namespace:   PrometheusNamespace,
@@ -229,6 +239,7 @@ func (cm Controller) Describe(ch chan<- *prometheus.Desc) {
 	cm.checkIngressOperation.Describe(ch)
 	cm.checkIngressOperationErrors.Describe(ch)
 	cm.sslExpireTime.Describe(ch)
+	cm.sslInfo.Describe(ch)
 	cm.leaderElection.Describe(ch)
 	cm.buildInfo.Describe(ch)
 }
@@ -243,6 +254,7 @@ func (cm Controller) Collect(ch chan<- prometheus.Metric) {
 	cm.checkIngressOperation.Collect(ch)
 	cm.checkIngressOperationErrors.Collect(ch)
 	cm.sslExpireTime.Collect(ch)
+	cm.sslInfo.Collect(ch)
 	cm.leaderElection.Collect(ch)
 	cm.buildInfo.Collect(ch)
 }
@@ -256,20 +268,89 @@ func (cm *Controller) SetSSLExpireTime(servers []*ingress.Server) {
 				labels[k] = v
 			}
 			labels["host"] = s.Hostname
+			labels["secret_name"] = s.SSLCert.Name
 
 			cm.sslExpireTime.With(labels).Set(float64(s.SSLCert.ExpireTime.Unix()))
 		}
 	}
 }
 
-// RemoveMetrics removes metrics for hostnames not available anymore
-func (cm *Controller) RemoveMetrics(hosts []string, registry prometheus.Gatherer) {
-	cm.removeSSLExpireMetrics(true, hosts, registry)
+// SetSSLInfo creates a metric with all certificates informations
+func (cm *Controller) SetSSLInfo(servers []*ingress.Server) {
+	for _, s := range servers {
+		if s.SSLCert != nil && s.SSLCert.Certificate != nil && s.SSLCert.Certificate.SerialNumber != nil {
+			labels := make(prometheus.Labels, len(cm.labels)+1)
+			for k, v := range cm.labels {
+				labels[k] = v
+			}
+			labels["identifier"] = s.SSLCert.Identifier()
+			labels["host"] = s.Hostname
+			labels["secret_name"] = s.SSLCert.Name
+			labels["namespace"] = s.SSLCert.Namespace
+			labels["issuer_common_name"] = s.SSLCert.Certificate.Issuer.CommonName
+			labels["issuer_organization"] = ""
+			if len(s.SSLCert.Certificate.Issuer.Organization) > 0 {
+				labels["issuer_organization"] = s.SSLCert.Certificate.Issuer.Organization[0]
+			}
+			labels["serial_number"] = s.SSLCert.Certificate.SerialNumber.String()
+			labels["public_key_algorithm"] = s.SSLCert.Certificate.PublicKeyAlgorithm.String()
+
+			cm.sslInfo.With(labels).Set(1)
+		}
+	}
 }
 
-// RemoveAllSSLExpireMetrics removes metrics for expiration of SSL Certificates
-func (cm *Controller) RemoveAllSSLExpireMetrics(registry prometheus.Gatherer) {
+// RemoveMetrics removes metrics for hostnames not available anymore
+func (cm *Controller) RemoveMetrics(hosts, certificates []string, registry prometheus.Gatherer) {
+	cm.removeSSLExpireMetrics(true, hosts, registry)
+	cm.removeCertificatesMetrics(true, certificates, registry)
+}
+
+// RemoveAllSSLMetrics removes metrics for expiration of SSL Certificates
+func (cm *Controller) RemoveAllSSLMetrics(registry prometheus.Gatherer) {
 	cm.removeSSLExpireMetrics(false, []string{}, registry)
+	cm.removeCertificatesMetrics(false, []string{}, registry)
+}
+
+func (cm *Controller) removeCertificatesMetrics(onlyDefinedHosts bool, certificates []string, registry prometheus.Gatherer) {
+	mfs, err := registry.Gather()
+	if err != nil {
+		klog.Errorf("Error gathering metrics: %v", err)
+		return
+	}
+
+	toRemove := sets.NewString(certificates...)
+
+	for _, mf := range mfs {
+		metricName := mf.GetName()
+		if fmt.Sprintf("%v_ssl_certificate_info", PrometheusNamespace) != metricName {
+			continue
+		}
+
+		for _, m := range mf.GetMetric() {
+			labels := make(map[string]string, len(m.GetLabel()))
+			for _, labelPair := range m.GetLabel() {
+				labels[*labelPair.Name] = *labelPair.Value
+			}
+
+			// remove labels that are constant
+			deleteConstants(labels)
+
+			identifier, ok := labels["identifier"]
+			if !ok {
+				continue
+			}
+			if onlyDefinedHosts && !toRemove.Has(identifier) {
+				continue
+			}
+
+			klog.V(2).Infof("Removing prometheus metric from gauge %v for identifier %v", metricName, identifier)
+			removed := cm.sslInfo.Delete(labels)
+			if !removed {
+				klog.V(2).Infof("metric %v for identifier %v with labels not removed: %v", metricName, identifier, labels)
+			}
+		}
+	}
 }
 
 func (cm *Controller) removeSSLExpireMetrics(onlyDefinedHosts bool, hosts []string, registry prometheus.Gatherer) {
diff --git a/internal/ingress/metric/collectors/controller_test.go b/internal/ingress/metric/collectors/controller_test.go
index e10dafdfe..bc9f21c60 100644
--- a/internal/ingress/metric/collectors/controller_test.go
+++ b/internal/ingress/metric/collectors/controller_test.go
@@ -17,6 +17,9 @@ limitations under the License.
 package collectors
 
 import (
+	"crypto/x509"
+	"crypto/x509/pkix"
+	"math/big"
 	"testing"
 	"time"
 
@@ -96,10 +99,111 @@ func TestControllerCounters(t *testing.T) {
 			want: `
 				# HELP nginx_ingress_controller_ssl_expire_time_seconds Number of seconds since 1970 to the SSL Certificate expire.\n			An example to check if this certificate will expire in 10 days is: "nginx_ingress_controller_ssl_expire_time_seconds < (time() + (10 * 24 * 3600))"
 				# TYPE nginx_ingress_controller_ssl_expire_time_seconds gauge
-				nginx_ingress_controller_ssl_expire_time_seconds{class="nginx",host="demo",namespace="default"} 1.351807721e+09
+				nginx_ingress_controller_ssl_expire_time_seconds{class="nginx",host="demo",namespace="default",secret_name=""} 1.351807721e+09
 			`,
 			metrics: []string{"nginx_ingress_controller_ssl_expire_time_seconds"},
 		},
+		{
+			name: "should set SSL certificates infos metrics",
+			test: func(cm *Controller) {
+
+				servers := []*ingress.Server{
+					{
+						Hostname: "demo",
+						SSLCert: &ingress.SSLCert{
+							Name:      "secret-name",
+							Namespace: "ingress-namespace",
+							Certificate: &x509.Certificate{
+								PublicKeyAlgorithm: x509.ECDSA,
+								Issuer: pkix.Name{
+									CommonName:   "certificate issuer",
+									SerialNumber: "abcd1234",
+									Organization: []string{"issuer org"},
+								},
+								SerialNumber: big.NewInt(100),
+							},
+						},
+					},
+					{
+						Hostname: "invalid",
+						SSLCert: &ingress.SSLCert{
+							ExpireTime: time.Unix(0, 0),
+						},
+					},
+				}
+				cm.SetSSLInfo(servers)
+			},
+			want: `
+				# HELP nginx_ingress_controller_ssl_certificate_info Hold all labels associated to a certificate
+				# TYPE nginx_ingress_controller_ssl_certificate_info gauge
+				nginx_ingress_controller_ssl_certificate_info{class="nginx",host="demo",identifier="abcd1234-100",issuer_common_name="certificate issuer",issuer_organization="issuer org",namespace="ingress-namespace",public_key_algorithm="ECDSA",secret_name="secret-name",serial_number="100"} 1
+			`,
+			metrics: []string{"nginx_ingress_controller_ssl_certificate_info"},
+		},
+		{
+			name: "should ignore certificates without serial number",
+			test: func(cm *Controller) {
+
+				servers := []*ingress.Server{
+					{
+						Hostname: "demo",
+						SSLCert: &ingress.SSLCert{
+							Name:      "secret-name",
+							Namespace: "ingress-namespace",
+							Certificate: &x509.Certificate{
+								PublicKeyAlgorithm: x509.ECDSA,
+								Issuer: pkix.Name{
+									CommonName:   "certificate issuer",
+									SerialNumber: "abcd1234",
+								},
+							},
+						},
+					},
+				}
+				cm.SetSSLInfo(servers)
+			},
+			want:    ``,
+			metrics: []string{"nginx_ingress_controller_ssl_certificate_info"},
+		},
+		{
+			name: "should ignore certificates with nil x509 pointer",
+			test: func(cm *Controller) {
+
+				servers := []*ingress.Server{
+					{
+						Hostname: "demo",
+						SSLCert: &ingress.SSLCert{
+							Name:      "secret-name",
+							Namespace: "ingress-namespace",
+							Certificate: &x509.Certificate{
+								PublicKeyAlgorithm: x509.ECDSA,
+								Issuer: pkix.Name{
+									CommonName:   "certificate issuer",
+									SerialNumber: "abcd1234",
+								},
+							},
+						},
+					},
+				}
+				cm.SetSSLInfo(servers)
+			},
+			want:    ``,
+			metrics: []string{"nginx_ingress_controller_ssl_certificate_info"},
+		},
+		{
+			name: "should ignore servers without certificates",
+			test: func(cm *Controller) {
+
+				servers := []*ingress.Server{
+					{
+						Hostname: "demo",
+					},
+				}
+				cm.SetSSLInfo(servers)
+			},
+			want:    ``,
+			metrics: []string{"nginx_ingress_controller_ssl_certificate_info"},
+		},
 	}
 
 	for _, c := range cases {
@@ -137,6 +241,13 @@ func TestRemoveMetrics(t *testing.T) {
 			Hostname: "demo",
 			SSLCert: &ingress.SSLCert{
 				ExpireTime: t1,
+				Certificate: &x509.Certificate{
+					Issuer: pkix.Name{
+						CommonName:   "certificate issuer",
+						SerialNumber: "abcd1234",
+					},
+					SerialNumber: big.NewInt(100),
+				},
 			},
 		},
 		{
@@ -147,12 +258,63 @@ func TestRemoveMetrics(t *testing.T) {
 		},
 	}
 	cm.SetSSLExpireTime(servers)
+	cm.SetSSLInfo(servers)
 
-	cm.RemoveMetrics([]string{"demo"}, reg)
+	cm.RemoveMetrics([]string{"demo"}, []string{"abcd1234-100"}, reg)
 
 	if err := GatherAndCompare(cm, "", []string{"nginx_ingress_controller_ssl_expire_time_seconds"}, reg); err != nil {
 		t.Errorf("unexpected collecting result:\n%s", err)
 	}
+	if err := GatherAndCompare(cm, "", []string{"nginx_ingress_controller_ssl_certificate_info"}, reg); err != nil {
+		t.Errorf("unexpected collecting result:\n%s", err)
+	}
+
+	reg.Unregister(cm)
+}
+
+func TestRemoveAllSSLMetrics(t *testing.T) {
+	cm := NewController("pod", "default", "nginx")
+	reg := prometheus.NewPedanticRegistry()
+	if err := reg.Register(cm); err != nil {
+		t.Errorf("registering collector failed: %s", err)
+	}
+
+	t1, _ := time.Parse(
+		time.RFC3339,
+		"2012-11-01T22:08:41+00:00")
+
+	servers := []*ingress.Server{
+		{
+			Hostname: "demo",
+			SSLCert: &ingress.SSLCert{
+				ExpireTime: t1,
+				Certificate: &x509.Certificate{
+					Issuer: pkix.Name{
+						CommonName:   "certificate issuer",
+						SerialNumber: "abcd1234",
+					},
+					SerialNumber: big.NewInt(100),
+				},
+			},
+		},
+		{
+			Hostname: "invalid",
+			SSLCert: &ingress.SSLCert{
+				ExpireTime: time.Unix(0, 0),
+			},
+		},
+	}
+	cm.SetSSLExpireTime(servers)
+	cm.SetSSLInfo(servers)
+
+	cm.RemoveAllSSLMetrics(reg)
+
+	if err := GatherAndCompare(cm, "", []string{"nginx_ingress_controller_ssl_expire_time_seconds"}, reg); err != nil {
+		t.Errorf("unexpected collecting result:\n%s", err)
+	}
+	if err := GatherAndCompare(cm, "", []string{"nginx_ingress_controller_ssl_certificate_info"}, reg); err != nil {
+		t.Errorf("unexpected collecting result:\n%s", err)
+	}
 
 	reg.Unregister(cm)
 }
diff --git a/internal/ingress/metric/dummy.go b/internal/ingress/metric/dummy.go
index 922a21604..8360dc87d 100644
--- a/internal/ingress/metric/dummy.go
+++ b/internal/ingress/metric/dummy.go
@@ -48,7 +48,7 @@ func (dc DummyCollector) IncCheckCount(string, string) {}
 func (dc DummyCollector) IncCheckErrorCount(string, string) {}
 
 // RemoveMetrics ...
-func (dc DummyCollector) RemoveMetrics(ingresses, endpoints []string) {}
+func (dc DummyCollector) RemoveMetrics(ingresses, endpoints, certificates []string) {}
 
 // Start ...
 func (dc DummyCollector) Start(admissionStatus string) {}
@@ -56,6 +56,9 @@ func (dc DummyCollector) Start(admissionStatus string) {}
 // Stop ...
 func (dc DummyCollector) Stop(admissionStatus string) {}
 
+// SetSSLInfo ...
+func (dc DummyCollector) SetSSLInfo([]*ingress.Server) {}
+
 // SetSSLExpireTime ...
 func (dc DummyCollector) SetSSLExpireTime([]*ingress.Server) {}
 
diff --git a/internal/ingress/metric/main.go b/internal/ingress/metric/main.go
index 644a9b690..97a8ca7d4 100644
--- a/internal/ingress/metric/main.go
+++ b/internal/ingress/metric/main.go
@@ -44,9 +44,10 @@ type Collector interface {
 	IncCheckCount(string, string)
 	IncCheckErrorCount(string, string)
 
-	RemoveMetrics(ingresses, endpoints []string)
+	RemoveMetrics(ingresses, endpoints, certificates []string)
 
 	SetSSLExpireTime([]*ingress.Server)
+	SetSSLInfo(servers []*ingress.Server)
 
 	// SetHosts sets the hostnames that are being served by the ingress controller
 	SetHosts(sets.String)
@@ -128,9 +129,9 @@ func (c *collector) IncReloadErrorCount() {
 	c.ingressController.IncReloadErrorCount()
 }
 
-func (c *collector) RemoveMetrics(ingresses, hosts []string) {
+func (c *collector) RemoveMetrics(ingresses, hosts, certificates []string) {
 	c.socket.RemoveMetrics(ingresses, c.registry)
-	c.ingressController.RemoveMetrics(hosts, c.registry)
+	c.ingressController.RemoveMetrics(hosts, certificates, c.registry)
 }
 
 func (c *collector) Start(admissionStatus string) {
@@ -175,6 +176,11 @@ func (c *collector) SetSSLExpireTime(servers []*ingress.Server) {
 	c.ingressController.SetSSLExpireTime(servers)
 }
 
+func (c *collector) SetSSLInfo(servers []*ingress.Server) {
+	klog.V(2).Infof("Updating ssl certificate info metrics")
+	c.ingressController.SetSSLInfo(servers)
+}
+
 func (c *collector) SetHosts(hosts sets.String) {
 	c.socket.SetHosts(hosts)
 }
@@ -200,7 +206,7 @@ func (c *collector) OnStartedLeading(electionID string) {
 func (c *collector) OnStoppedLeading(electionID string) {
 	setLeader(false)
 	c.ingressController.OnStoppedLeading(electionID)
-	c.ingressController.RemoveAllSSLExpireMetrics(c.registry)
+	c.ingressController.RemoveAllSSLMetrics(c.registry)
 }
 
 var (
diff --git a/internal/ingress/sslcert.go b/internal/ingress/sslcert.go
index 9265b07ac..7dee3880d 100644
--- a/internal/ingress/sslcert.go
+++ b/internal/ingress/sslcert.go
@@ -18,6 +18,7 @@ package ingress
 
 import (
 	"crypto/x509"
+	"fmt"
 	"time"
 
 	"k8s.io/apimachinery/pkg/runtime/schema"
@@ -69,6 +70,16 @@ func (s SSLCert) GetObjectKind() schema.ObjectKind {
 	return schema.EmptyObjectKind
 }
 
+// Identifier returns a the couple issuer / serial number if they both exist, an empty string otherwise
+func (s SSLCert) Identifier() string {
+	if s.Certificate != nil {
+		if s.Certificate.SerialNumber != nil {
+			return fmt.Sprintf("%s-%s", s.Certificate.Issuer.SerialNumber, s.Certificate.SerialNumber.String())
+		}
+	}
+	return ""
+}
+
 // HashInclude defines if a field should be used or not to calculate the hash
 func (s SSLCert) HashInclude(field string, v interface{}) (bool, error) {
 	switch field {

From fd87363b5e8d3ac78cc058544ed2d4e66980e53c Mon Sep 17 00:00:00 2001
From: Indhu Kumar <kamalakumar.indhu@gmail.com>
Date: Sat, 26 Feb 2022 14:53:17 -0800
Subject: [PATCH 0084/1641] Issue#8241 (#8273)

* replace daemon set for deployment manifest

* nit
---
 docs/user-guide/monitoring.md | 16 ++++++++++++----
 1 file changed, 12 insertions(+), 4 deletions(-)

diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index a89e11087..99039d635 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -61,13 +61,21 @@ This tutorial will show you how to install [Prometheus](https://prometheus.io/)
 
        ```
        
-      - DaemonSet manifest:
-           ```
-           ..
+      - Deployment manifest:
+         ```
+         apiVersion: v1
+         metadata:
+         kind: Deployment
+          annotations:
+            prometheus.io/scrape: "true"
+            prometheus.io/port: "10254"
+         ..
+         spec:
            ports:
              - name: prometheus
                containerPort: 10254
-             ..
+               ..
+
            ```
 
 

From bab0fbab0c1a7c3641bd379f27857113d574d904 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Sun, 27 Feb 2022 22:45:18 +0800
Subject: [PATCH 0085/1641] Start Release process for v1.1.2 (#8275)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 56130fb3a..0f1acbd56 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.1.1
+v1.1.2

From 4ecb3520c880cf1458753c436928ad167598bb36 Mon Sep 17 00:00:00 2001
From: dylan-bitovi <67594226+dylan-bitovi@users.noreply.github.com>
Date: Mon, 28 Feb 2022 10:10:57 -0500
Subject: [PATCH 0086/1641] Add fsGroup value to admission-webhooks/job-patch
 charts (#8267)

* added fsGroup to admission createSecret and patchWebhook job

* added fsGroup to admission createSecret and patchWebhook job

* modified helm/README.md to add value for fsGroup

* fixed patch job values ordering

* remove manually edited README for replacement with helm-docs generated version

* re-adding charts/README.md generated by helm-docs
---
 charts/ingress-nginx/README.md                                   | 1 +
 .../templates/admission-webhooks/job-patch/job-createSecret.yaml | 1 +
 .../templates/admission-webhooks/job-patch/job-patchWebhook.yaml | 1 +
 charts/ingress-nginx/values.yaml                                 | 1 +
 4 files changed, 4 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index e5e93a146..8336e0912 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -250,6 +250,7 @@ Kubernetes: `>=1.19.0-0`
 | controller.admissionWebhooks.namespaceSelector | object | `{}` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
+| controller.admissionWebhooks.patch.fsGroup | int | `2000` |  |
 | controller.admissionWebhooks.patch.image.digest | string | `"sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
index e57bfde49..f20e247f9 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
@@ -72,4 +72,5 @@ spec:
       securityContext:
         runAsNonRoot: true
         runAsUser: {{ .Values.controller.admissionWebhooks.patch.runAsUser }}
+        fsGroup: {{ .Values.controller.admissionWebhooks.patch.fsGroup }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
index 4f8ba14db..8583685fa 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
@@ -74,4 +74,5 @@ spec:
       securityContext:
         runAsNonRoot: true
         runAsUser: {{ .Values.controller.admissionWebhooks.patch.runAsUser }}
+        fsGroup: {{ .Values.controller.admissionWebhooks.patch.fsGroup }}
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index eb6db4a05..bae135c3e 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -641,6 +641,7 @@ controller:
       # -- Labels to be added to patch job resources
       labels: {}
       runAsUser: 2000
+      fsGroup: 2000
 
   metrics:
     port: 10254

From f3698d04453f1dfc5849b0cbe7b6735b1781f7d8 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 28 Feb 2022 23:27:47 -0500
Subject: [PATCH 0087/1641] Add OpenSSF Best practices badge (#8277)

---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index f132be8a8..718c115ff 100644
--- a/README.md
+++ b/README.md
@@ -1,5 +1,6 @@
 # Ingress NGINX Controller
 
+[![CII Best Practices](https://bestpractices.coreinfrastructure.org/projects/5691/badge)](https://bestpractices.coreinfrastructure.org/projects/5691)
 [![Go Report Card](https://goreportcard.com/badge/github.com/kubernetes/ingress-nginx)](https://goreportcard.com/report/github.com/kubernetes/ingress-nginx)
 [![GitHub license](https://img.shields.io/github/license/kubernetes/ingress-nginx.svg)](https://github.com/kubernetes/ingress-nginx/blob/main/LICENSE)
 [![GitHub stars](https://img.shields.io/github/stars/kubernetes/ingress-nginx.svg)](https://github.com/kubernetes/ingress-nginx/stargazers)

From 1e2ce80846c91f3c034ea62915bfe6d756c9cea3 Mon Sep 17 00:00:00 2001
From: Maksim Nabokikh <maksim.nabokikh@flant.com>
Date: Tue, 1 Mar 2022 14:13:51 +0400
Subject: [PATCH 0088/1641] fix: deny locations with invalid auth-url
 annotation (#8256)

* fix: deny locations with invalid auth-url annotation

Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>

* Delete duplicate test

Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
---
 .../ingress/annotations/annotations_test.go   | 45 -------------------
 .../ingress/annotations/auth/main_test.go     |  3 +-
 internal/ingress/annotations/authreq/main.go  |  2 +-
 test/e2e/annotations/auth.go                  | 33 ++++++++++++++
 4 files changed, 35 insertions(+), 48 deletions(-)

diff --git a/internal/ingress/annotations/annotations_test.go b/internal/ingress/annotations/annotations_test.go
index 8eec999cc..a253355a2 100644
--- a/internal/ingress/annotations/annotations_test.go
+++ b/internal/ingress/annotations/annotations_test.go
@@ -294,48 +294,3 @@ func TestCustomHTTPErrors(t *testing.T) {
 		}
 	}
 }
-
-/*
-func TestMergeLocationAnnotations(t *testing.T) {
-	// initial parameters
-	keys := []string{"BasicDigestAuth", "CorsConfig", "ExternalAuth", "RateLimit", "Redirect", "Rewrite", "Whitelist", "Proxy", "UsePortInRedirects"}
-
-	loc := ingress.Location{}
-	annotations := &Ingress{
-		BasicDigestAuth:    &auth.Config{},
-		CorsConfig:         &cors.Config{},
-		ExternalAuth:       &authreq.Config{},
-		RateLimit:          &ratelimit.Config{},
-		Redirect:           &redirect.Config{},
-		Rewrite:            &rewrite.Config{},
-		Whitelist:          &ipwhitelist.SourceRange{},
-		Proxy:              &proxy.Config{},
-		UsePortInRedirects: true,
-	}
-
-	// create test table
-	type fooMergeLocationAnnotationsStruct struct {
-		fName string
-		er    interface{}
-	}
-	fooTests := []fooMergeLocationAnnotationsStruct{}
-	for name, value := range keys {
-		fva := fooMergeLocationAnnotationsStruct{name, value}
-		fooTests = append(fooTests, fva)
-	}
-
-	// execute test
-	MergeWithLocation(&loc, annotations)
-
-	// check result
-	for _, foo := range fooTests {
-		fv := reflect.ValueOf(loc).FieldByName(foo.fName).Interface()
-		if !reflect.DeepEqual(fv, foo.er) {
-			t.Errorf("Returned %v but expected %v for the field %s", fv, foo.er, foo.fName)
-		}
-	}
-	if _, ok := annotations[DeniedKeyName]; ok {
-		t.Errorf("%s should be removed after mergeLocationAnnotations", DeniedKeyName)
-	}
-}
-*/
diff --git a/internal/ingress/annotations/auth/main_test.go b/internal/ingress/annotations/auth/main_test.go
index c552851ae..d4ec53459 100644
--- a/internal/ingress/annotations/auth/main_test.go
+++ b/internal/ingress/annotations/auth/main_test.go
@@ -17,13 +17,12 @@ limitations under the License.
 package auth
 
 import (
+	"errors"
 	"fmt"
 	"os"
 	"testing"
 	"time"
 
-	"errors"
-
 	api "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/internal/ingress/annotations/authreq/main.go b/internal/ingress/annotations/authreq/main.go
index 6cfcc383d..36af0e208 100644
--- a/internal/ingress/annotations/authreq/main.go
+++ b/internal/ingress/annotations/authreq/main.go
@@ -164,7 +164,7 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	authURL, err := parser.StringToURL(urlString)
 	if err != nil {
-		return nil, ing_errors.InvalidContent{Name: err.Error()}
+		return nil, ing_errors.LocationDenied{Reason: fmt.Errorf("could not parse auth-url annotation: %v", err)}
 	}
 
 	authMethod, _ := parser.GetStringAnnotation("auth-method", ing)
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index f2c1a59d6..7ca2fff45 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -692,6 +692,39 @@ http {
 				Header("Location").Equal(fmt.Sprintf("http://%s/auth/start?rd=http://%s%s", thisHost, thisHost, url.QueryEscape("/?a=b&c=d")))
 		})
 	})
+
+	ginkgo.Context("with invalid auth-url should deny whole location", func() {
+		host := "auth"
+		var annotations map[string]string
+		var ing *networking.Ingress
+
+		ginkgo.BeforeEach(func() {
+			annotations = map[string]string{
+				"nginx.ingress.kubernetes.io/auth-url": "https://invalid..auth.url",
+			}
+
+			ing = framework.NewSingleIngress(host, "/denied-auth", host, f.Namespace, framework.EchoService, 80, annotations)
+			f.EnsureIngress(ing)
+
+			f.WaitForNginxServer(host, func(server string) bool {
+				return strings.Contains(server, "server_name auth")
+			})
+		})
+
+		ginkgo.It("should return 503 (location was denied)", func() {
+			f.HTTPTestClient().
+				GET("/denied-auth").
+				WithHeader("Host", host).
+				Expect().
+				Status(http.StatusServiceUnavailable)
+		})
+
+		ginkgo.It("should add error to the config", func() {
+			f.WaitForNginxServer(host, func(server string) bool {
+				return strings.Contains(server, "could not parse auth-url annotation: invalid url host")
+			})
+		})
+	})
 })
 
 // TODO: test Digest Auth

From 49761416e1c01792adac354916ac3f6ec747f25e Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 1 Mar 2022 12:35:55 -0500
Subject: [PATCH 0089/1641] force prow job by changing something in images/ot
 dir (#8281)

Images dir was merged in before the test-infra prow job, so the image was never built.

https://github.com/kubernetes/ingress-nginx/pull/8013 Jan 16

https://github.com/kubernetes/test-infra/pull/25344/files Prow job 4 days ago.
---
 images/opentelemetry/cloudbuild.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
index d507b8f1a..5a4e1b3c0 100644
--- a/images/opentelemetry/cloudbuild.yaml
+++ b/images/opentelemetry/cloudbuild.yaml
@@ -21,4 +21,4 @@ steps:
       && make push
 substitutions:
   _GIT_TAG: "12345"
-  _PULL_BASE_REF: "master"
+  _PULL_BASE_REF: "main"

From 7b96999eb9f7f83a5b8d0a36dc737cd090dff886 Mon Sep 17 00:00:00 2001
From: Damien Mathieu <42@dmathieu.com>
Date: Wed, 2 Mar 2022 17:39:14 +0100
Subject: [PATCH 0090/1641] Fix OpenTelemetry sidecar image build (#8286)

* fix wrong checksum for nginx image

* fix wrong platform. Arm64 has grpc, when arm doesn't
---
 images/opentelemetry/Makefile        | 2 +-
 images/opentelemetry/rootfs/build.sh | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/opentelemetry/Makefile b/images/opentelemetry/Makefile
index bc5876525..10a8dd9ed 100644
--- a/images/opentelemetry/Makefile
+++ b/images/opentelemetry/Makefile
@@ -30,7 +30,7 @@ IMAGE = $(REGISTRY)/opentelemetry
 export DOCKER_CLI_EXPERIMENTAL=enabled
 
 # build with buildx
-PLATFORMS?=linux/amd64,linux/arm
+PLATFORMS?=linux/amd64,linux/arm64
 OUTPUT=
 PROGRESS=plain
 build: ensure-buildx
diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
index 60ace8bae..a79fdf950 100755
--- a/images/opentelemetry/rootfs/build.sh
+++ b/images/opentelemetry/rootfs/build.sh
@@ -60,7 +60,7 @@ get_src()
 }
 
 
-get_src e462e11533d5c30baa05df7652160ff5979591d291736cfa5edb9fd2edb48c49 \
+get_src 2e35dff06a9826e8aca940e9e8be46b7e4b12c19a48d55bfc2dc28fc9cc7d841 \
         "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
 
 get_src 45c52498788e47131b20a4786dbb08f4390b8cb419bd3d61c88b503cafff3324 \

From 6064a1cd72d8e7b7a8055d9b3b6588a4f021fe8e Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 2 Mar 2022 14:07:13 -0500
Subject: [PATCH 0091/1641] update tag for image (#8290)

---
 images/opentelemetry/Makefile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/opentelemetry/Makefile b/images/opentelemetry/Makefile
index 10a8dd9ed..20fb7ec63 100644
--- a/images/opentelemetry/Makefile
+++ b/images/opentelemetry/Makefile
@@ -21,7 +21,7 @@ DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
 # 0.0.0 shouldn't clobber any released builds
-TAG ?= 0.0
+TAG ?=v$(shell date +%m%d%Y)-$(shell git rev-parse --short HEAD)
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
 IMAGE = $(REGISTRY)/opentelemetry

From c5c35881c031fae2bfd26075f61e6ad895ee37d3 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 2 Mar 2022 14:49:01 -0500
Subject: [PATCH 0092/1641] remove git tag env from cloud build

the latest git tag is from helm, so force the make file use of TAG ?=v$(shell date +%m%d%Y)-$(shell git rev-parse --short HEAD)
---
 images/opentelemetry/cloudbuild.yaml | 1 -
 1 file changed, 1 deletion(-)

diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
index 5a4e1b3c0..947eacbbb 100644
--- a/images/opentelemetry/cloudbuild.yaml
+++ b/images/opentelemetry/cloudbuild.yaml
@@ -8,7 +8,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - TAG=$_GIT_TAG
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx

From fb72fcd81772fb3eca923897aec2d92fa5bdff41 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sat, 5 Mar 2022 01:18:52 +0530
Subject: [PATCH 0093/1641] release-v1.1.2-continued (#8294)

* v1.1.2 release

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* release-v1.1.2-continued

Co-authored-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 Changelog.md                                  |  42 ++
 README.md                                     |   1 +
 RELEASE.md                                    |  10 +-
 charts/ingress-nginx/CHANGELOG.md             |  35 +
 charts/ingress-nginx/Chart.yaml               |  44 +-
 charts/ingress-nginx/README.md                |   6 +-
 charts/ingress-nginx/values.yaml              |   4 +-
 deploy/static/provider/aws/1.19/deploy.yaml   |  85 +--
 deploy/static/provider/aws/1.20/deploy.yaml   |  85 +--
 deploy/static/provider/aws/1.21/deploy.yaml   |  85 +--
 deploy/static/provider/aws/1.22/deploy.yaml   |  85 +--
 deploy/static/provider/aws/1.23/deploy.yaml   | 685 +++++++++++++++++
 .../provider/aws/1.23/kustomization.yaml      |  11 +
 deploy/static/provider/aws/deploy.yaml        |  85 +--
 .../nlb-with-tls-termination/1.19/deploy.yaml |  85 +--
 .../nlb-with-tls-termination/1.20/deploy.yaml |  85 +--
 .../nlb-with-tls-termination/1.21/deploy.yaml |  85 +--
 .../nlb-with-tls-termination/1.22/deploy.yaml |  85 +--
 .../nlb-with-tls-termination/1.23/deploy.yaml | 697 ++++++++++++++++++
 .../1.23/kustomization.yaml                   |  11 +
 .../aws/nlb-with-tls-termination/deploy.yaml  |  85 +--
 .../provider/baremetal/1.19/deploy.yaml       |  86 +--
 .../provider/baremetal/1.20/deploy.yaml       |  86 +--
 .../provider/baremetal/1.21/deploy.yaml       |  86 +--
 .../provider/baremetal/1.22/deploy.yaml       |  86 +--
 .../provider/baremetal/1.23/deploy.yaml       | 679 +++++++++++++++++
 .../baremetal/1.23/kustomization.yaml         |  11 +
 deploy/static/provider/baremetal/deploy.yaml  |  86 +--
 deploy/static/provider/cloud/1.19/deploy.yaml |  86 +--
 deploy/static/provider/cloud/1.20/deploy.yaml |  86 +--
 deploy/static/provider/cloud/1.21/deploy.yaml |  86 +--
 deploy/static/provider/cloud/1.22/deploy.yaml |  86 +--
 deploy/static/provider/cloud/1.23/deploy.yaml | 681 +++++++++++++++++
 .../provider/cloud/1.23/kustomization.yaml    |  11 +
 deploy/static/provider/cloud/deploy.yaml      |  86 +--
 deploy/static/provider/do/1.19/deploy.yaml    |  85 +--
 deploy/static/provider/do/1.20/deploy.yaml    |  85 +--
 deploy/static/provider/do/1.21/deploy.yaml    |  85 +--
 deploy/static/provider/do/1.22/deploy.yaml    |  85 +--
 deploy/static/provider/do/1.23/deploy.yaml    | 685 +++++++++++++++++
 .../provider/do/1.23/kustomization.yaml       |  11 +
 deploy/static/provider/do/deploy.yaml         |  85 +--
 .../static/provider/exoscale/1.19/deploy.yaml |  85 +--
 .../static/provider/exoscale/1.20/deploy.yaml |  85 +--
 .../static/provider/exoscale/1.21/deploy.yaml |  85 +--
 .../static/provider/exoscale/1.22/deploy.yaml |  85 +--
 .../static/provider/exoscale/1.23/deploy.yaml | 691 +++++++++++++++++
 .../provider/exoscale/1.23/kustomization.yaml |  11 +
 deploy/static/provider/exoscale/deploy.yaml   |  85 +--
 deploy/static/provider/kind/1.19/deploy.yaml  |  86 +--
 deploy/static/provider/kind/1.20/deploy.yaml  |  86 +--
 deploy/static/provider/kind/1.21/deploy.yaml  |  86 +--
 deploy/static/provider/kind/1.22/deploy.yaml  |  86 +--
 deploy/static/provider/kind/1.23/deploy.yaml  | 692 +++++++++++++++++
 .../provider/kind/1.23/kustomization.yaml     |  11 +
 deploy/static/provider/kind/deploy.yaml       |  86 +--
 deploy/static/provider/scw/1.19/deploy.yaml   |  85 +--
 deploy/static/provider/scw/1.20/deploy.yaml   |  85 +--
 deploy/static/provider/scw/1.21/deploy.yaml   |  85 +--
 deploy/static/provider/scw/1.22/deploy.yaml   |  85 +--
 deploy/static/provider/scw/1.23/deploy.yaml   | 684 +++++++++++++++++
 .../provider/scw/1.23/kustomization.yaml      |  11 +
 deploy/static/provider/scw/deploy.yaml        |  85 +--
 hack/generate-deploy-scripts.sh               |   2 +-
 64 files changed, 7436 insertions(+), 1705 deletions(-)
 create mode 100644 deploy/static/provider/aws/1.23/deploy.yaml
 create mode 100644 deploy/static/provider/aws/1.23/kustomization.yaml
 create mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
 create mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.23/kustomization.yaml
 create mode 100644 deploy/static/provider/baremetal/1.23/deploy.yaml
 create mode 100644 deploy/static/provider/baremetal/1.23/kustomization.yaml
 create mode 100644 deploy/static/provider/cloud/1.23/deploy.yaml
 create mode 100644 deploy/static/provider/cloud/1.23/kustomization.yaml
 create mode 100644 deploy/static/provider/do/1.23/deploy.yaml
 create mode 100644 deploy/static/provider/do/1.23/kustomization.yaml
 create mode 100644 deploy/static/provider/exoscale/1.23/deploy.yaml
 create mode 100644 deploy/static/provider/exoscale/1.23/kustomization.yaml
 create mode 100644 deploy/static/provider/kind/1.23/deploy.yaml
 create mode 100644 deploy/static/provider/kind/1.23/kustomization.yaml
 create mode 100644 deploy/static/provider/scw/1.23/deploy.yaml
 create mode 100644 deploy/static/provider/scw/1.23/kustomization.yaml

diff --git a/Changelog.md b/Changelog.md
index ccc60e746..8aed9ff0f 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -1,5 +1,47 @@
 # Changelog
 
+### 1.1.2
+
+**Image:** 
+- k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+
+This release bumps grpc version to 1.44.0 & runc to version 1.1.0. The release also re-introduces the ingress.class annotation, which was previously declared as deprecated. Besides that, several bug fixes and improvements are listed below.
+
+Changes:
+
+[8291](https://github.com/kubernetes/ingress-nginx/pull/8291) remove git tag env from cloud build
+[8286](https://github.com/kubernetes/ingress-nginx/pull/8286) Fix OpenTelemetry sidecar image build
+[8277](https://github.com/kubernetes/ingress-nginx/pull/8277) Add OpenSSF Best practices badge
+[8273](https://github.com/kubernetes/ingress-nginx/pull/8273) Issue#8241
+[8267](https://github.com/kubernetes/ingress-nginx/pull/8267) Add fsGroup value to admission-webhooks/job-patch charts
+[8262](https://github.com/kubernetes/ingress-nginx/pull/8262) Updated confusing error
+[8256](https://github.com/kubernetes/ingress-nginx/pull/8256) fix: deny locations with invalid auth-url annotation
+[8253](https://github.com/kubernetes/ingress-nginx/pull/8253) Add a certificate info metric
+[8236](https://github.com/kubernetes/ingress-nginx/pull/8236) webhook: remove useless code.
+[8227](https://github.com/kubernetes/ingress-nginx/pull/8227) Update libraries in webhook image
+[8225](https://github.com/kubernetes/ingress-nginx/pull/8225) fix inconsistent-label-cardinality for prometheus metrics: nginx_ingress_controller_requests
+[8221](https://github.com/kubernetes/ingress-nginx/pull/8221) Do not validate ingresses with unknown ingress class in admission webhook endpoint
+[8210](https://github.com/kubernetes/ingress-nginx/pull/8210) Bump github.com/prometheus/client_golang from 1.11.0 to 1.12.1
+[8209](https://github.com/kubernetes/ingress-nginx/pull/8209) Bump google.golang.org/grpc from 1.43.0 to 1.44.0
+[8204](https://github.com/kubernetes/ingress-nginx/pull/8204) Add Artifact Hub lint
+[8203](https://github.com/kubernetes/ingress-nginx/pull/8203) Fix Indentation of example and link to cert-manager tutorial
+[8201](https://github.com/kubernetes/ingress-nginx/pull/8201) feat(metrics): add path and method labels to requests countera
+[8199](https://github.com/kubernetes/ingress-nginx/pull/8199) use functional options to reduce number of methods creating an EchoDeployment
+[8196](https://github.com/kubernetes/ingress-nginx/pull/8196) docs: fix inconsistent controller annotation
+[8191](https://github.com/kubernetes/ingress-nginx/pull/8191) Using Go install for misspell
+[8186](https://github.com/kubernetes/ingress-nginx/pull/8186) prometheus+grafana using servicemonitor
+[8185](https://github.com/kubernetes/ingress-nginx/pull/8185) Append elements on match, instead of removing for cors-annotations
+[8179](https://github.com/kubernetes/ingress-nginx/pull/8179) Bump github.com/opencontainers/runc from 1.0.3 to 1.1.0
+[8173](https://github.com/kubernetes/ingress-nginx/pull/8173) Adding annotations to the controller service account
+[8163](https://github.com/kubernetes/ingress-nginx/pull/8163) Update the $req_id placeholder description
+[8162](https://github.com/kubernetes/ingress-nginx/pull/8162) Versioned static manifests
+[8159](https://github.com/kubernetes/ingress-nginx/pull/8159) Adding some geoip variables and default values
+[8155](https://github.com/kubernetes/ingress-nginx/pull/8155) #7271 feat: avoid-pdb-creation-when-default-backend-disabled-and-replicas-gt-1
+[8151](https://github.com/kubernetes/ingress-nginx/pull/8151) Automatically generate helm docs
+[8143](https://github.com/kubernetes/ingress-nginx/pull/8143) Allow to configure delay before controller exits
+[8136](https://github.com/kubernetes/ingress-nginx/pull/8136) add ingressClass option to helm chart - back compatibility with ingress.class annotations
+
+
 ### 1.1.1
 
 **Image:** 
diff --git a/README.md b/README.md
index 718c115ff..96268a8f9 100644
--- a/README.md
+++ b/README.md
@@ -31,6 +31,7 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 
 | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
+| v1.1.2                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         |  1.19.9†      |
 | v1.1.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         |  1.19.9†      |
 | v1.1.0                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
 | v1.0.5                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
diff --git a/RELEASE.md b/RELEASE.md
index 74fd3f1e4..f954199a2 100644
--- a/RELEASE.md
+++ b/RELEASE.md
@@ -205,10 +205,10 @@ Promoting the images basically means that images, that were pushed to staging co
             done <$file
 
             ```
-          - If you saved the bash script content above, in a file called `prlist_to_changelog.sh`, then you could execute a command like this to get your prlist in a text file called changelog_content.txt;`
+          - If you saved the bash script content above, in a file like `$HOME/bin/prlist_to_changelog.sh`, then you could execute a command like this to get your prlist in a text file called changelog_content.txt;`
 
           ```
-          prlist_to_changelog.sh prlist.txt > changelog_content.txt`
+          prlist_to_changelog.sh prlist.txt > /tmp/changelog_content.txt`
           ```
 
 ### d. Edit the values.yaml and run helm-docs
@@ -233,13 +233,9 @@ Promoting the images basically means that images, that were pushed to staging co
   - This script depends on kustomize and helm. The versions are pinned in `hack/.tool-versions` and you can use [asdf](https://github.com/asdf-vm/asdf#asdf) to install them
 
   - Execute the script to update static manifests using that script [hack/generate-deploy-scripts.sh](https://github.com/kubernetes/ingress-nginx/blob/main/hack/generate-deploy-scripts.sh)
-
   - Open some of the manifests and check if the script worked properly
 
-  - Use grep -ir to search for any misses by the script or undesired changes
-
-  - The script should properly set the image and the digest fields to the desired tag and semver
-
+  - Use `grep -ir image: | less` on the deploy directory, to view for any misses by the script on image digest value or other undesired changes. The script should properly set the image and the digest fields to the desired tag and semver
 
 
 ### f. Edit the changelog
diff --git a/charts/ingress-nginx/CHANGELOG.md b/charts/ingress-nginx/CHANGELOG.md
index 616948228..f3f44c336 100644
--- a/charts/ingress-nginx/CHANGELOG.md
+++ b/charts/ingress-nginx/CHANGELOG.md
@@ -2,6 +2,41 @@
 
 This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
 
+### 4.0.18
+"[8291](https://github.com/kubernetes/ingress-nginx/pull/8291) remove git tag env from cloud build"
+"[8286](https://github.com/kubernetes/ingress-nginx/pull/8286) Fix OpenTelemetry sidecar image build"
+"[8277](https://github.com/kubernetes/ingress-nginx/pull/8277) Add OpenSSF Best practices badge"
+"[8273](https://github.com/kubernetes/ingress-nginx/pull/8273) Issue#8241"
+"[8267](https://github.com/kubernetes/ingress-nginx/pull/8267) Add fsGroup value to admission-webhooks/job-patch charts"
+"[8262](https://github.com/kubernetes/ingress-nginx/pull/8262) Updated confusing error"
+"[8256](https://github.com/kubernetes/ingress-nginx/pull/8256) fix: deny locations with invalid auth-url annotation"
+"[8253](https://github.com/kubernetes/ingress-nginx/pull/8253) Add a certificate info metric"
+"[8236](https://github.com/kubernetes/ingress-nginx/pull/8236) webhook: remove useless code."
+"[8227](https://github.com/kubernetes/ingress-nginx/pull/8227) Update libraries in webhook image"
+"[8225](https://github.com/kubernetes/ingress-nginx/pull/8225) fix inconsistent-label-cardinality for prometheus metrics: nginx_ingress_controller_requests"
+"[8221](https://github.com/kubernetes/ingress-nginx/pull/8221) Do not validate ingresses with unknown ingress class in admission webhook endpoint"
+"[8210](https://github.com/kubernetes/ingress-nginx/pull/8210) Bump github.com/prometheus/client_golang from 1.11.0 to 1.12.1"
+"[8209](https://github.com/kubernetes/ingress-nginx/pull/8209) Bump google.golang.org/grpc from 1.43.0 to 1.44.0"
+"[8204](https://github.com/kubernetes/ingress-nginx/pull/8204) Add Artifact Hub lint"
+"[8203](https://github.com/kubernetes/ingress-nginx/pull/8203) Fix Indentation of example and link to cert-manager tutorial"
+"[8201](https://github.com/kubernetes/ingress-nginx/pull/8201) feat(metrics): add path and method labels to requests countera"
+"[8199](https://github.com/kubernetes/ingress-nginx/pull/8199) use functional options to reduce number of methods creating an EchoDeployment"
+"[8196](https://github.com/kubernetes/ingress-nginx/pull/8196) docs: fix inconsistent controller annotation"
+"[8191](https://github.com/kubernetes/ingress-nginx/pull/8191) Using Go install for misspell"
+"[8186](https://github.com/kubernetes/ingress-nginx/pull/8186) prometheus+grafana using servicemonitor"
+"[8185](https://github.com/kubernetes/ingress-nginx/pull/8185) Append elements on match, instead of removing for cors-annotations"
+"[8179](https://github.com/kubernetes/ingress-nginx/pull/8179) Bump github.com/opencontainers/runc from 1.0.3 to 1.1.0"
+"[8173](https://github.com/kubernetes/ingress-nginx/pull/8173) Adding annotations to the controller service account"
+"[8163](https://github.com/kubernetes/ingress-nginx/pull/8163) Update the $req_id placeholder description"
+"[8162](https://github.com/kubernetes/ingress-nginx/pull/8162) Versioned static manifests"
+"[8159](https://github.com/kubernetes/ingress-nginx/pull/8159) Adding some geoip variables and default values"
+"[8155](https://github.com/kubernetes/ingress-nginx/pull/8155) #7271 feat: avoid-pdb-creation-when-default-backend-disabled-and-replicas-gt-1"
+"[8151](https://github.com/kubernetes/ingress-nginx/pull/8151) Automatically generate helm docs"
+"[8143](https://github.com/kubernetes/ingress-nginx/pull/8143) Allow to configure delay before controller exits"
+"[8136](https://github.com/kubernetes/ingress-nginx/pull/8136) add ingressClass option to helm chart - back compatibility with ingress.class annotations"
+"[8126](https://github.com/kubernetes/ingress-nginx/pull/8126) Example for JWT"
+
+
 ### 4.0.15
 
 - [8120] https://github.com/kubernetes/ingress-nginx/pull/8120    Update go in runner and release v1.1.1
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 6a8510284..69db0be31 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,8 +2,8 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.0.17
-appVersion: 1.1.1
+version: 4.0.18
+appVersion: 1.1.2
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
@@ -24,38 +24,8 @@ annotations:
   # List of changes for the release in artifacthub.io
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
-    - "#8120    Update go in runner and release v1.1.1"
-    - "#8119    Update to go v1.17.6"
-    - "#8118    Remove deprecated libraries, update other libs"
-    - "#8117    Fix codegen errors"
-    - "#8115    chart/ghaction: set the correct permission to have access to push a release"
-    - "#8098    generating SHA for CA only certs in backend_ssl.go + comparision of P…"
-    - "#8088    Fix Edit this page link to use main branch"
-    - "#8072    Expose GeoIP2 Continent code as variable"
-    - "#8061    docs(charts): using helm-docs for chart"
-    - "#8058    Bump github.com/spf13/cobra from 1.2.1 to 1.3.0"
-    - "#8054    Bump google.golang.org/grpc from 1.41.0 to 1.43.0"
-    - "#8051    align bug report with feature request regarding kind documentation"
-    - "#8046    Report expired certificates (#8045)"
-    - "#8044    remove G109 check till gosec resolves issues"
-    - "#8042    docs_multiple_instances_one_cluster_ticket_7543"
-    - "#8041    docs: fix typo'd executible name"
-    - "#8035    Comment busy owners"
-    - "#8029    Add stream-snippet as a ConfigMap and Annotation option"
-    - "#8023    fix nginx compilation flags"
-    - "#8021    Disable default modsecurity_rules_file if modsecurity-snippet is specified"
-    - "#8019    Revise main documentation page"
-    - "#8018    Preserve order of plugin invocation"
-    - "#8015    Add newline indenting to admission webhook annotations"
-    - "#8014    Add link to example error page manifest in docs"
-    - "#8009    Fix spelling in documentation and top-level files"
-    - "#8008    Add relabelings in controller-servicemonitor.yaml"
-    - "#8003    Minor improvements (formatting, consistency) in install guide"
-    - "#8001    fix: go-grpc Dockerfile"
-    - "#7999    images: use k8s-staging-test-infra/gcb-docker-gcloud"
-    - "#7996    doc: improvement"
-    - "#7983    Fix a couple of misspellings in the annotations documentation."
-    - "#7979    allow set annotations for admission Jobs"
-    - "#7977    Add ssl_reject_handshake to defaul server"
-    - "#7975    add legacy version update v0.50.0 to main changelog"
-    - "#7972    updated service upstream definition"
+    - "#8253 Add a certificate info metric"
+    - "#8225 fix inconsistent-label-cardinality for prometheus metrics: nginx_ingress_controller_requests"
+    - "#8162 Versioned static manifests"
+    - "#8159 Adding some geoip variables and default values"
+    - "#8221 Do not validate ingresses with unknown ingress class in admission webhook endpoint"
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 8336e0912..ad641f726 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.0.17](https://img.shields.io/badge/Version-4.0.17-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.1.1](https://img.shields.io/badge/AppVersion-1.1.1-informational?style=flat-square)
+![Version: 4.0.18](https://img.shields.io/badge/Version-4.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.1.2](https://img.shields.io/badge/AppVersion-1.1.2-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -306,12 +306,12 @@ Kubernetes: `>=1.19.0-0`
 | controller.hostPort.ports.https | int | `443` | 'hostPort' https port |
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
-| controller.image.digest | string | `"sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de"` |  |
+| controller.image.digest | string | `"sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"k8s.gcr.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.1.1"` |  |
+| controller.image.tag | string | `"v1.1.2"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index bae135c3e..c887dc051 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -21,8 +21,8 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.1.1"
-    digest: sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+    tag: "v1.1.2"
+    digest: sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
diff --git a/deploy/static/provider/aws/1.19/deploy.yaml b/deploy/static/provider/aws/1.19/deploy.yaml
index c73b0e7e1..710cfcafd 100644
--- a/deploy/static/provider/aws/1.19/deploy.yaml
+++ b/deploy/static/provider/aws/1.19/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,8 +341,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -359,8 +359,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -389,8 +389,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -413,8 +413,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -438,6 +438,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -453,7 +454,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -529,8 +530,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -542,8 +543,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -566,6 +567,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -582,8 +584,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -595,8 +597,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -621,6 +623,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -634,8 +637,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -649,8 +652,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.20/deploy.yaml b/deploy/static/provider/aws/1.20/deploy.yaml
index c8117bf51..440861a53 100644
--- a/deploy/static/provider/aws/1.20/deploy.yaml
+++ b/deploy/static/provider/aws/1.20/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,8 +341,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -359,8 +359,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -394,8 +394,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -419,8 +419,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -444,6 +444,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -459,7 +460,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -535,8 +536,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -548,8 +549,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -572,6 +573,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -588,8 +590,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -601,8 +603,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -627,6 +629,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -640,8 +643,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -655,8 +658,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.21/deploy.yaml b/deploy/static/provider/aws/1.21/deploy.yaml
index c8117bf51..440861a53 100644
--- a/deploy/static/provider/aws/1.21/deploy.yaml
+++ b/deploy/static/provider/aws/1.21/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,8 +341,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -359,8 +359,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -394,8 +394,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -419,8 +419,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -444,6 +444,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -459,7 +460,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -535,8 +536,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -548,8 +549,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -572,6 +573,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -588,8 +590,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -601,8 +603,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -627,6 +629,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -640,8 +643,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -655,8 +658,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.22/deploy.yaml b/deploy/static/provider/aws/1.22/deploy.yaml
index c8117bf51..440861a53 100644
--- a/deploy/static/provider/aws/1.22/deploy.yaml
+++ b/deploy/static/provider/aws/1.22/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,8 +341,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -359,8 +359,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -394,8 +394,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -419,8 +419,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -444,6 +444,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -459,7 +460,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -535,8 +536,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -548,8 +549,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -572,6 +573,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -588,8 +590,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -601,8 +603,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -627,6 +629,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -640,8 +643,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -655,8 +658,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.23/deploy.yaml b/deploy/static/provider/aws/1.23/deploy.yaml
new file mode 100644
index 000000000..440861a53
--- /dev/null
+++ b/deploy/static/provider/aws/1.23/deploy.yaml
@@ -0,0 +1,685 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
+    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+    service.beta.kubernetes.io/aws-load-balancer-type: nlb
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/aws/1.23/kustomization.yaml b/deploy/static/provider/aws/1.23/kustomization.yaml
new file mode 100644
index 000000000..d18ef3896
--- /dev/null
+++ b/deploy/static/provider/aws/1.23/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 3ade4013b..374823462 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -17,8 +17,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -34,8 +34,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -48,8 +48,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -135,8 +135,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -156,8 +156,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -228,8 +228,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,8 +249,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -274,8 +274,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -295,8 +295,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -319,8 +319,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -342,8 +342,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -360,8 +360,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -395,8 +395,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -420,8 +420,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -445,6 +445,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -460,7 +461,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -536,8 +537,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -549,8 +550,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -573,6 +574,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -589,8 +591,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -602,8 +604,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -628,6 +630,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -641,8 +644,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -656,8 +659,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
index eee0f093a..426c72b06 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -348,8 +348,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -368,8 +368,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -398,8 +398,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -422,8 +422,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -447,6 +447,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -462,7 +463,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -541,8 +542,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -554,8 +555,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -578,6 +579,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -594,8 +596,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -607,8 +609,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -633,6 +635,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -646,8 +649,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -661,8 +664,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
index cc52b3114..21ea91d49 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -348,8 +348,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -368,8 +368,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -403,8 +403,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -428,8 +428,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -453,6 +453,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -468,7 +469,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -547,8 +548,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -560,8 +561,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -584,6 +585,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -600,8 +602,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -613,8 +615,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -639,6 +641,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -652,8 +655,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -667,8 +670,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
index cc52b3114..21ea91d49 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -348,8 +348,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -368,8 +368,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -403,8 +403,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -428,8 +428,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -453,6 +453,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -468,7 +469,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -547,8 +548,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -560,8 +561,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -584,6 +585,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -600,8 +602,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -613,8 +615,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -639,6 +641,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -652,8 +655,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -667,8 +670,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
index cc52b3114..21ea91d49 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -348,8 +348,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -368,8 +368,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -403,8 +403,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -428,8 +428,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -453,6 +453,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -468,7 +469,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -547,8 +548,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -560,8 +561,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -584,6 +585,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -600,8 +602,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -613,8 +615,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -639,6 +641,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -652,8 +655,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -667,8 +670,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
new file mode 100644
index 000000000..21ea91d49
--- /dev/null
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
@@ -0,0 +1,697 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  http-snippet: |
+    server {
+      listen 2443;
+      return 308 https://$host$request_uri;
+    }
+  proxy-real-ip-cidr: XXX.XXX.XXX/XX
+  use-forwarded-headers: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
+    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+    service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX
+    service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
+    service.beta.kubernetes.io/aws-load-balancer-type: nlb
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: tohttps
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: http
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 80
+          name: https
+          protocol: TCP
+        - containerPort: 2443
+          name: tohttps
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/kustomization.yaml
new file mode 100644
index 000000000..ca2086ea9
--- /dev/null
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws/nlb-with-tls-termination?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 21aae7795..97c4697d5 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -17,8 +17,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -34,8 +34,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -48,8 +48,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -135,8 +135,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -156,8 +156,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -228,8 +228,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,8 +249,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -274,8 +274,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -295,8 +295,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -319,8 +319,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -349,8 +349,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -369,8 +369,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -404,8 +404,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -429,8 +429,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -454,6 +454,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -469,7 +470,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -548,8 +549,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -561,8 +562,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -585,6 +586,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -601,8 +603,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -614,8 +616,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -640,6 +642,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -653,8 +656,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -668,8 +671,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.19/deploy.yaml b/deploy/static/provider/baremetal/1.19/deploy.yaml
index ec21480bb..c03765456 100644
--- a/deploy/static/provider/baremetal/1.19/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.19/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,23 +341,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -385,8 +384,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,8 +408,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -433,6 +432,7 @@ spec:
         - /nginx-ingress-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -448,7 +448,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,8 +524,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -537,8 +537,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -561,6 +561,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -577,8 +578,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -590,8 +591,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -616,6 +617,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -629,8 +631,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -644,8 +646,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.20/deploy.yaml b/deploy/static/provider/baremetal/1.20/deploy.yaml
index f4c419ed9..943d0ff49 100644
--- a/deploy/static/provider/baremetal/1.20/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.20/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,23 +341,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -390,8 +389,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,8 +414,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -439,6 +438,7 @@ spec:
         - /nginx-ingress-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -454,7 +454,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -530,8 +530,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -543,8 +543,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -567,6 +567,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -583,8 +584,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -596,8 +597,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -622,6 +623,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -635,8 +637,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -650,8 +652,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.21/deploy.yaml b/deploy/static/provider/baremetal/1.21/deploy.yaml
index f4c419ed9..943d0ff49 100644
--- a/deploy/static/provider/baremetal/1.21/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.21/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,23 +341,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -390,8 +389,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,8 +414,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -439,6 +438,7 @@ spec:
         - /nginx-ingress-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -454,7 +454,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -530,8 +530,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -543,8 +543,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -567,6 +567,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -583,8 +584,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -596,8 +597,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -622,6 +623,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -635,8 +637,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -650,8 +652,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.22/deploy.yaml b/deploy/static/provider/baremetal/1.22/deploy.yaml
index f4c419ed9..943d0ff49 100644
--- a/deploy/static/provider/baremetal/1.22/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.22/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,23 +341,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -390,8 +389,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,8 +414,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -439,6 +438,7 @@ spec:
         - /nginx-ingress-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -454,7 +454,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -530,8 +530,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -543,8 +543,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -567,6 +567,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -583,8 +584,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -596,8 +597,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -622,6 +623,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -635,8 +637,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -650,8 +652,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.23/deploy.yaml b/deploy/static/provider/baremetal/1.23/deploy.yaml
new file mode 100644
index 000000000..943d0ff49
--- /dev/null
+++ b/deploy/static/provider/baremetal/1.23/deploy.yaml
@@ -0,0 +1,679 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: NodePort
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/baremetal/1.23/kustomization.yaml b/deploy/static/provider/baremetal/1.23/kustomization.yaml
new file mode 100644
index 000000000..d13af0f82
--- /dev/null
+++ b/deploy/static/provider/baremetal/1.23/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/baremetal?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 8aea1fd40..cdba346c1 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -17,8 +17,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -34,8 +34,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -48,8 +48,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -135,8 +135,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -156,8 +156,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -228,8 +228,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,8 +249,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -274,8 +274,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -295,8 +295,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -319,8 +319,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -342,23 +342,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,8 +390,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -416,8 +415,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -440,6 +439,7 @@ spec:
         - /nginx-ingress-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -455,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -531,8 +531,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -544,8 +544,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -568,6 +568,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -584,8 +585,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -597,8 +598,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -623,6 +624,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -636,8 +638,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -651,8 +653,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.19/deploy.yaml b/deploy/static/provider/cloud/1.19/deploy.yaml
index 8930e5c6d..af5e89f04 100644
--- a/deploy/static/provider/cloud/1.19/deploy.yaml
+++ b/deploy/static/provider/cloud/1.19/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,23 +341,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,8 +385,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -410,8 +409,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -435,6 +434,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -450,7 +450,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,8 +526,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -539,8 +539,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -563,6 +563,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -579,8 +580,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -592,8 +593,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -618,6 +619,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -631,8 +633,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -646,8 +648,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.20/deploy.yaml b/deploy/static/provider/cloud/1.20/deploy.yaml
index ef71edab1..ae18d5938 100644
--- a/deploy/static/provider/cloud/1.20/deploy.yaml
+++ b/deploy/static/provider/cloud/1.20/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,23 +341,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,8 +390,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -416,8 +415,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -441,6 +440,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -456,7 +456,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -532,8 +532,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -545,8 +545,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -569,6 +569,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -585,8 +586,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -598,8 +599,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -624,6 +625,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -637,8 +639,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -652,8 +654,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.21/deploy.yaml b/deploy/static/provider/cloud/1.21/deploy.yaml
index ef71edab1..ae18d5938 100644
--- a/deploy/static/provider/cloud/1.21/deploy.yaml
+++ b/deploy/static/provider/cloud/1.21/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,23 +341,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,8 +390,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -416,8 +415,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -441,6 +440,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -456,7 +456,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -532,8 +532,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -545,8 +545,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -569,6 +569,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -585,8 +586,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -598,8 +599,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -624,6 +625,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -637,8 +639,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -652,8 +654,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.22/deploy.yaml b/deploy/static/provider/cloud/1.22/deploy.yaml
index ef71edab1..ae18d5938 100644
--- a/deploy/static/provider/cloud/1.22/deploy.yaml
+++ b/deploy/static/provider/cloud/1.22/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,23 +341,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,8 +390,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -416,8 +415,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -441,6 +440,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -456,7 +456,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -532,8 +532,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -545,8 +545,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -569,6 +569,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -585,8 +586,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -598,8 +599,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -624,6 +625,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -637,8 +639,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -652,8 +654,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.23/deploy.yaml b/deploy/static/provider/cloud/1.23/deploy.yaml
new file mode 100644
index 000000000..ae18d5938
--- /dev/null
+++ b/deploy/static/provider/cloud/1.23/deploy.yaml
@@ -0,0 +1,681 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/cloud/1.23/kustomization.yaml b/deploy/static/provider/cloud/1.23/kustomization.yaml
new file mode 100644
index 000000000..a92167fad
--- /dev/null
+++ b/deploy/static/provider/cloud/1.23/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/cloud?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index aafd9fde7..206883b6e 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -17,8 +17,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -34,8 +34,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -48,8 +48,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -135,8 +135,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -156,8 +156,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -228,8 +228,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,8 +249,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -274,8 +274,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -295,8 +295,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -319,8 +319,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -342,23 +342,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -392,8 +391,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -417,8 +416,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -442,6 +441,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -457,7 +457,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -533,8 +533,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -546,8 +546,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -570,6 +570,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -586,8 +587,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -599,8 +600,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -625,6 +626,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -638,8 +640,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -653,8 +655,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.19/deploy.yaml b/deploy/static/provider/do/1.19/deploy.yaml
index 6f63e5806..69504e702 100644
--- a/deploy/static/provider/do/1.19/deploy.yaml
+++ b/deploy/static/provider/do/1.19/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -342,8 +342,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -358,8 +358,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -388,8 +388,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -412,8 +412,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -437,6 +437,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -452,7 +453,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -528,8 +529,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -541,8 +542,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -565,6 +566,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -581,8 +583,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -594,8 +596,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -620,6 +622,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -633,8 +636,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -648,8 +651,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.20/deploy.yaml b/deploy/static/provider/do/1.20/deploy.yaml
index 6e5ef30ee..98bfe291a 100644
--- a/deploy/static/provider/do/1.20/deploy.yaml
+++ b/deploy/static/provider/do/1.20/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -342,8 +342,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -358,8 +358,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -393,8 +393,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -418,8 +418,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -443,6 +443,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -458,7 +459,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -534,8 +535,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -547,8 +548,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,6 +572,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -587,8 +589,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -600,8 +602,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -626,6 +628,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -639,8 +642,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,8 +657,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.21/deploy.yaml b/deploy/static/provider/do/1.21/deploy.yaml
index 6e5ef30ee..98bfe291a 100644
--- a/deploy/static/provider/do/1.21/deploy.yaml
+++ b/deploy/static/provider/do/1.21/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -342,8 +342,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -358,8 +358,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -393,8 +393,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -418,8 +418,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -443,6 +443,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -458,7 +459,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -534,8 +535,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -547,8 +548,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,6 +572,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -587,8 +589,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -600,8 +602,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -626,6 +628,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -639,8 +642,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,8 +657,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.22/deploy.yaml b/deploy/static/provider/do/1.22/deploy.yaml
index 6e5ef30ee..98bfe291a 100644
--- a/deploy/static/provider/do/1.22/deploy.yaml
+++ b/deploy/static/provider/do/1.22/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -342,8 +342,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -358,8 +358,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -393,8 +393,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -418,8 +418,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -443,6 +443,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -458,7 +459,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -534,8 +535,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -547,8 +548,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,6 +572,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -587,8 +589,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -600,8 +602,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -626,6 +628,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -639,8 +642,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,8 +657,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.23/deploy.yaml b/deploy/static/provider/do/1.23/deploy.yaml
new file mode 100644
index 000000000..98bfe291a
--- /dev/null
+++ b/deploy/static/provider/do/1.23/deploy.yaml
@@ -0,0 +1,685 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  use-proxy-protocol: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
+  timeoutSeconds: 29
diff --git a/deploy/static/provider/do/1.23/kustomization.yaml b/deploy/static/provider/do/1.23/kustomization.yaml
new file mode 100644
index 000000000..c7bb8d250
--- /dev/null
+++ b/deploy/static/provider/do/1.23/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/do?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 996fb7ea3..324ae79e6 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -17,8 +17,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -34,8 +34,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -48,8 +48,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -135,8 +135,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -156,8 +156,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -228,8 +228,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,8 +249,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -274,8 +274,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -295,8 +295,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -319,8 +319,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,8 +343,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -359,8 +359,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -394,8 +394,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -419,8 +419,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -444,6 +444,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -459,7 +460,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -535,8 +536,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -548,8 +549,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -572,6 +573,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -588,8 +590,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -601,8 +603,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -627,6 +629,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -640,8 +643,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -655,8 +658,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.19/deploy.yaml b/deploy/static/provider/exoscale/1.19/deploy.yaml
index ea82a935c..3c22a0118 100644
--- a/deploy/static/provider/exoscale/1.19/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.19/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,8 +341,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -365,8 +365,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -395,8 +395,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -419,8 +419,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -444,6 +444,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -459,7 +460,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -535,8 +536,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -548,8 +549,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -572,6 +573,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -588,8 +590,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -601,8 +603,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -627,6 +629,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -640,8 +643,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -655,8 +658,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.20/deploy.yaml b/deploy/static/provider/exoscale/1.20/deploy.yaml
index f933c41b5..136b466c9 100644
--- a/deploy/static/provider/exoscale/1.20/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.20/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,8 +341,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -365,8 +365,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -400,8 +400,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -425,8 +425,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -450,6 +450,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -465,7 +466,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -541,8 +542,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -554,8 +555,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -578,6 +579,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -594,8 +596,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -607,8 +609,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -633,6 +635,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -646,8 +649,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -661,8 +664,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.21/deploy.yaml b/deploy/static/provider/exoscale/1.21/deploy.yaml
index f933c41b5..136b466c9 100644
--- a/deploy/static/provider/exoscale/1.21/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.21/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,8 +341,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -365,8 +365,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -400,8 +400,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -425,8 +425,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -450,6 +450,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -465,7 +466,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -541,8 +542,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -554,8 +555,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -578,6 +579,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -594,8 +596,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -607,8 +609,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -633,6 +635,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -646,8 +649,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -661,8 +664,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.22/deploy.yaml b/deploy/static/provider/exoscale/1.22/deploy.yaml
index f933c41b5..136b466c9 100644
--- a/deploy/static/provider/exoscale/1.22/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.22/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,8 +341,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -365,8 +365,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -400,8 +400,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -425,8 +425,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -450,6 +450,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -465,7 +466,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -541,8 +542,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -554,8 +555,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -578,6 +579,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -594,8 +596,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -607,8 +609,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -633,6 +635,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -646,8 +649,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -661,8 +664,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.23/deploy.yaml b/deploy/static/provider/exoscale/1.23/deploy.yaml
new file mode 100644
index 000000000..136b466c9
--- /dev/null
+++ b/deploy/static/provider/exoscale/1.23/deploy.yaml
@@ -0,0 +1,691 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
+      load balancer
+    service.beta.kubernetes.io/exoscale-loadbalancer-name: nginx-ingress-controller
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: 3s
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: /
+    service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: source-hash
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/exoscale/1.23/kustomization.yaml b/deploy/static/provider/exoscale/1.23/kustomization.yaml
new file mode 100644
index 000000000..8466627e2
--- /dev/null
+++ b/deploy/static/provider/exoscale/1.23/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/exoscale?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index e03f2a9d2..d65ba8628 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -17,8 +17,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -34,8 +34,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -48,8 +48,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -135,8 +135,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -156,8 +156,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -228,8 +228,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,8 +249,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -274,8 +274,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -295,8 +295,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -319,8 +319,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -342,8 +342,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -366,8 +366,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -401,8 +401,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -426,8 +426,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -451,6 +451,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -466,7 +467,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -542,8 +543,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -555,8 +556,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -579,6 +580,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -595,8 +597,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -608,8 +610,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -634,6 +636,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -647,8 +650,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -662,8 +665,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.19/deploy.yaml b/deploy/static/provider/kind/1.19/deploy.yaml
index cfe8c44fe..171725751 100644
--- a/deploy/static/provider/kind/1.19/deploy.yaml
+++ b/deploy/static/provider/kind/1.19/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,23 +341,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -385,8 +384,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,8 +408,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -437,6 +436,7 @@ spec:
         - /nginx-ingress-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -454,7 +454,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -537,8 +537,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -550,8 +550,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -574,6 +574,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -590,8 +591,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -603,8 +604,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -629,6 +630,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -642,8 +644,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -657,8 +659,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.20/deploy.yaml b/deploy/static/provider/kind/1.20/deploy.yaml
index e2a18a480..030092a55 100644
--- a/deploy/static/provider/kind/1.20/deploy.yaml
+++ b/deploy/static/provider/kind/1.20/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,23 +341,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -390,8 +389,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,8 +414,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -443,6 +442,7 @@ spec:
         - /nginx-ingress-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -460,7 +460,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -543,8 +543,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -556,8 +556,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -580,6 +580,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -596,8 +597,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -609,8 +610,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -635,6 +636,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -648,8 +650,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -663,8 +665,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.21/deploy.yaml b/deploy/static/provider/kind/1.21/deploy.yaml
index e2a18a480..030092a55 100644
--- a/deploy/static/provider/kind/1.21/deploy.yaml
+++ b/deploy/static/provider/kind/1.21/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,23 +341,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -390,8 +389,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,8 +414,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -443,6 +442,7 @@ spec:
         - /nginx-ingress-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -460,7 +460,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -543,8 +543,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -556,8 +556,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -580,6 +580,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -596,8 +597,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -609,8 +610,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -635,6 +636,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -648,8 +650,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -663,8 +665,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.22/deploy.yaml b/deploy/static/provider/kind/1.22/deploy.yaml
index e2a18a480..030092a55 100644
--- a/deploy/static/provider/kind/1.22/deploy.yaml
+++ b/deploy/static/provider/kind/1.22/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -341,23 +341,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -390,8 +389,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,8 +414,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -443,6 +442,7 @@ spec:
         - /nginx-ingress-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -460,7 +460,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -543,8 +543,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -556,8 +556,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -580,6 +580,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -596,8 +597,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -609,8 +610,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -635,6 +636,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -648,8 +650,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -663,8 +665,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.23/deploy.yaml b/deploy/static/provider/kind/1.23/deploy.yaml
new file mode 100644
index 000000000..030092a55
--- /dev/null
+++ b/deploy/static/provider/kind/1.23/deploy.yaml
@@ -0,0 +1,692 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: NodePort
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  strategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        - --watch-ingress-without-class=true
+        - --publish-status-address=localhost
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          hostPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          hostPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        ingress-ready: "true"
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 0
+      tolerations:
+      - effect: NoSchedule
+        key: node-role.kubernetes.io/master
+        operator: Equal
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/kind/1.23/kustomization.yaml b/deploy/static/provider/kind/1.23/kustomization.yaml
new file mode 100644
index 000000000..94b7c887d
--- /dev/null
+++ b/deploy/static/provider/kind/1.23/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/kind?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 9d2711dae..1725f1347 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -17,8 +17,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -34,8 +34,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -48,8 +48,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -135,8 +135,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -156,8 +156,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -228,8 +228,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,8 +249,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -274,8 +274,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -295,8 +295,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -319,8 +319,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -342,23 +342,22 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
-  annotations: null
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,8 +390,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -416,8 +415,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -444,6 +443,7 @@ spec:
         - /nginx-ingress-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -461,7 +461,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -544,8 +544,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -557,8 +557,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -581,6 +581,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -597,8 +598,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -610,8 +611,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -636,6 +637,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -649,8 +651,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -664,8 +666,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.19/deploy.yaml b/deploy/static/provider/scw/1.19/deploy.yaml
index 8b52a7298..8e29c5564 100644
--- a/deploy/static/provider/scw/1.19/deploy.yaml
+++ b/deploy/static/provider/scw/1.19/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -342,8 +342,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -358,8 +358,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -388,8 +388,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -412,8 +412,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -437,6 +437,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -452,7 +453,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -528,8 +529,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -541,8 +542,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -565,6 +566,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -581,8 +583,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -594,8 +596,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -620,6 +622,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -633,8 +636,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -648,8 +651,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.20/deploy.yaml b/deploy/static/provider/scw/1.20/deploy.yaml
index bcffca757..82cee679d 100644
--- a/deploy/static/provider/scw/1.20/deploy.yaml
+++ b/deploy/static/provider/scw/1.20/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -342,8 +342,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -358,8 +358,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -393,8 +393,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -418,8 +418,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -443,6 +443,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -458,7 +459,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -534,8 +535,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -547,8 +548,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,6 +572,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -587,8 +589,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -600,8 +602,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -626,6 +628,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -639,8 +642,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,8 +657,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.21/deploy.yaml b/deploy/static/provider/scw/1.21/deploy.yaml
index bcffca757..82cee679d 100644
--- a/deploy/static/provider/scw/1.21/deploy.yaml
+++ b/deploy/static/provider/scw/1.21/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -342,8 +342,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -358,8 +358,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -393,8 +393,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -418,8 +418,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -443,6 +443,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -458,7 +459,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -534,8 +535,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -547,8 +548,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,6 +572,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -587,8 +589,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -600,8 +602,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -626,6 +628,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -639,8 +642,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,8 +657,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.22/deploy.yaml b/deploy/static/provider/scw/1.22/deploy.yaml
index bcffca757..82cee679d 100644
--- a/deploy/static/provider/scw/1.22/deploy.yaml
+++ b/deploy/static/provider/scw/1.22/deploy.yaml
@@ -16,8 +16,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -33,8 +33,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -47,8 +47,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -134,8 +134,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,8 +155,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -227,8 +227,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,8 +248,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -273,8 +273,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -294,8 +294,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -318,8 +318,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -342,8 +342,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -358,8 +358,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -393,8 +393,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -418,8 +418,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -443,6 +443,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -458,7 +459,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -534,8 +535,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -547,8 +548,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,6 +572,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -587,8 +589,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -600,8 +602,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -626,6 +628,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -639,8 +642,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,8 +657,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.23/deploy.yaml b/deploy/static/provider/scw/1.23/deploy.yaml
new file mode 100644
index 000000000..82cee679d
--- /dev/null
+++ b/deploy/static/provider/scw/1.23/deploy.yaml
@@ -0,0 +1,684 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  use-proxy-protocol: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-controller-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: pre-install,pre-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  annotations:
+    helm.sh/hook: post-install,post-upgrade
+    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/managed-by: Helm
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/managed-by: Helm
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/scw/1.23/kustomization.yaml b/deploy/static/provider/scw/1.23/kustomization.yaml
new file mode 100644
index 000000000..da792b8f5
--- /dev/null
+++ b/deploy/static/provider/scw/1.23/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/scw?ref=master
+# ```
+
+resources:
+  - deploy.yaml
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 8fff56b99..138a9fcf1 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -17,8 +17,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -34,8 +34,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -48,8 +48,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -135,8 +135,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -156,8 +156,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -228,8 +228,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,8 +249,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -274,8 +274,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -295,8 +295,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -319,8 +319,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,8 +343,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -359,8 +359,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -394,8 +394,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -419,8 +419,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -444,6 +444,7 @@ spec:
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
         - --election-id=ingress-controller-leader
         - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
@@ -459,7 +460,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -535,8 +536,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -548,8 +549,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -572,6 +573,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -588,8 +590,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -601,8 +603,8 @@ spec:
         app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.1
-        helm.sh/chart: ingress-nginx-4.0.16
+        app.kubernetes.io/version: 1.1.2
+        helm.sh/chart: ingress-nginx-4.0.18
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -627,6 +629,7 @@ spec:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
       securityContext:
+        fsGroup: 2000
         runAsNonRoot: true
         runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
@@ -640,8 +643,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -655,8 +658,8 @@ metadata:
     app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.1
-    helm.sh/chart: ingress-nginx-4.0.16
+    app.kubernetes.io/version: 1.1.2
+    helm.sh/chart: ingress-nginx-4.0.18
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/hack/generate-deploy-scripts.sh b/hack/generate-deploy-scripts.sh
index 4ec213792..a697b13e2 100755
--- a/hack/generate-deploy-scripts.sh
+++ b/hack/generate-deploy-scripts.sh
@@ -26,7 +26,7 @@ set -o pipefail
 # with enough docs updates, this could be removed
 # see     # DEFAULT VERSION HANDLING
 K8S_DEFAULT_VERSION=1.20
-K8S_TARGET_VERSIONS=("1.19" "1.20" "1.21" "1.22")
+K8S_TARGET_VERSIONS=("1.19" "1.20" "1.21" "1.22" "1.23")
 
 DIR=$(cd $(dirname "${BASH_SOURCE}")/.. && pwd -P)
 

From 3bd32316babefb3f04827154dcdda593803516b8 Mon Sep 17 00:00:00 2001
From: Niclas Mietz <solidnerd@users.noreply.github.com>
Date: Mon, 7 Mar 2022 17:32:55 +0100
Subject: [PATCH 0094/1641] docs: fix changelog formatting (#8302)

---
 Changelog.md | 64 ++++++++++++++++++++++++++--------------------------
 1 file changed, 32 insertions(+), 32 deletions(-)

diff --git a/Changelog.md b/Changelog.md
index 8aed9ff0f..40a4aaaf9 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -7,39 +7,39 @@
 
 This release bumps grpc version to 1.44.0 & runc to version 1.1.0. The release also re-introduces the ingress.class annotation, which was previously declared as deprecated. Besides that, several bug fixes and improvements are listed below.
 
-Changes:
+_Changes:_
 
-[8291](https://github.com/kubernetes/ingress-nginx/pull/8291) remove git tag env from cloud build
-[8286](https://github.com/kubernetes/ingress-nginx/pull/8286) Fix OpenTelemetry sidecar image build
-[8277](https://github.com/kubernetes/ingress-nginx/pull/8277) Add OpenSSF Best practices badge
-[8273](https://github.com/kubernetes/ingress-nginx/pull/8273) Issue#8241
-[8267](https://github.com/kubernetes/ingress-nginx/pull/8267) Add fsGroup value to admission-webhooks/job-patch charts
-[8262](https://github.com/kubernetes/ingress-nginx/pull/8262) Updated confusing error
-[8256](https://github.com/kubernetes/ingress-nginx/pull/8256) fix: deny locations with invalid auth-url annotation
-[8253](https://github.com/kubernetes/ingress-nginx/pull/8253) Add a certificate info metric
-[8236](https://github.com/kubernetes/ingress-nginx/pull/8236) webhook: remove useless code.
-[8227](https://github.com/kubernetes/ingress-nginx/pull/8227) Update libraries in webhook image
-[8225](https://github.com/kubernetes/ingress-nginx/pull/8225) fix inconsistent-label-cardinality for prometheus metrics: nginx_ingress_controller_requests
-[8221](https://github.com/kubernetes/ingress-nginx/pull/8221) Do not validate ingresses with unknown ingress class in admission webhook endpoint
-[8210](https://github.com/kubernetes/ingress-nginx/pull/8210) Bump github.com/prometheus/client_golang from 1.11.0 to 1.12.1
-[8209](https://github.com/kubernetes/ingress-nginx/pull/8209) Bump google.golang.org/grpc from 1.43.0 to 1.44.0
-[8204](https://github.com/kubernetes/ingress-nginx/pull/8204) Add Artifact Hub lint
-[8203](https://github.com/kubernetes/ingress-nginx/pull/8203) Fix Indentation of example and link to cert-manager tutorial
-[8201](https://github.com/kubernetes/ingress-nginx/pull/8201) feat(metrics): add path and method labels to requests countera
-[8199](https://github.com/kubernetes/ingress-nginx/pull/8199) use functional options to reduce number of methods creating an EchoDeployment
-[8196](https://github.com/kubernetes/ingress-nginx/pull/8196) docs: fix inconsistent controller annotation
-[8191](https://github.com/kubernetes/ingress-nginx/pull/8191) Using Go install for misspell
-[8186](https://github.com/kubernetes/ingress-nginx/pull/8186) prometheus+grafana using servicemonitor
-[8185](https://github.com/kubernetes/ingress-nginx/pull/8185) Append elements on match, instead of removing for cors-annotations
-[8179](https://github.com/kubernetes/ingress-nginx/pull/8179) Bump github.com/opencontainers/runc from 1.0.3 to 1.1.0
-[8173](https://github.com/kubernetes/ingress-nginx/pull/8173) Adding annotations to the controller service account
-[8163](https://github.com/kubernetes/ingress-nginx/pull/8163) Update the $req_id placeholder description
-[8162](https://github.com/kubernetes/ingress-nginx/pull/8162) Versioned static manifests
-[8159](https://github.com/kubernetes/ingress-nginx/pull/8159) Adding some geoip variables and default values
-[8155](https://github.com/kubernetes/ingress-nginx/pull/8155) #7271 feat: avoid-pdb-creation-when-default-backend-disabled-and-replicas-gt-1
-[8151](https://github.com/kubernetes/ingress-nginx/pull/8151) Automatically generate helm docs
-[8143](https://github.com/kubernetes/ingress-nginx/pull/8143) Allow to configure delay before controller exits
-[8136](https://github.com/kubernetes/ingress-nginx/pull/8136) add ingressClass option to helm chart - back compatibility with ingress.class annotations
+- [8291](https://github.com/kubernetes/ingress-nginx/pull/8291) remove git tag env from cloud build
+- [8286](https://github.com/kubernetes/ingress-nginx/pull/8286) Fix OpenTelemetry sidecar image build
+- [8277](https://github.com/kubernetes/ingress-nginx/pull/8277) Add OpenSSF Best practices badge
+- [8273](https://github.com/kubernetes/ingress-nginx/pull/8273) Issue#8241
+- [8267](https://github.com/kubernetes/ingress-nginx/pull/8267) Add fsGroup value to admission-webhooks/job-patch charts
+- [8262](https://github.com/kubernetes/ingress-nginx/pull/8262) Updated confusing error
+- [8256](https://github.com/kubernetes/ingress-nginx/pull/8256) fix: deny locations with invalid auth-url annotation
+- [8253](https://github.com/kubernetes/ingress-nginx/pull/8253) Add a certificate info metric
+- [8236](https://github.com/kubernetes/ingress-nginx/pull/8236) webhook: remove useless code.
+- [8227](https://github.com/kubernetes/ingress-nginx/pull/8227) Update libraries in webhook image
+- [8225](https://github.com/kubernetes/ingress-nginx/pull/8225) fix inconsistent-label-cardinality for prometheus metrics: nginx_ingress_controller_requests
+- [8221](https://github.com/kubernetes/ingress-nginx/pull/8221) Do not validate ingresses with unknown ingress class in admission webhook endpoint
+- [8210](https://github.com/kubernetes/ingress-nginx/pull/8210) Bump github.com/prometheus/client_golang from 1.11.0 to 1.12.1
+- [8209](https://github.com/kubernetes/ingress-nginx/pull/8209) Bump google.golang.org/grpc from 1.43.0 to 1.44.0
+- [8204](https://github.com/kubernetes/ingress-nginx/pull/8204) Add Artifact Hub lint
+- [8203](https://github.com/kubernetes/ingress-nginx/pull/8203) Fix Indentation of example and link to cert-manager tutorial
+- [8201](https://github.com/kubernetes/ingress-nginx/pull/8201) feat(metrics): add path and method labels to requests countera
+- [8199](https://github.com/kubernetes/ingress-nginx/pull/8199) use functional options to reduce number of methods creating an EchoDeployment
+- [8196](https://github.com/kubernetes/ingress-nginx/pull/8196) docs: fix inconsistent controller annotation
+- [8191](https://github.com/kubernetes/ingress-nginx/pull/8191) Using Go install for misspell
+- [8186](https://github.com/kubernetes/ingress-nginx/pull/8186) prometheus+grafana using servicemonitor
+- [8185](https://github.com/kubernetes/ingress-nginx/pull/8185) Append elements on match, instead of removing for cors-annotations
+- [8179](https://github.com/kubernetes/ingress-nginx/pull/8179) Bump github.com/opencontainers/runc from 1.0.3 to 1.1.0
+- [8173](https://github.com/kubernetes/ingress-nginx/pull/8173) Adding annotations to the controller service account
+- [8163](https://github.com/kubernetes/ingress-nginx/pull/8163) Update the $req_id placeholder description
+- [8162](https://github.com/kubernetes/ingress-nginx/pull/8162) Versioned static manifests
+- [8159](https://github.com/kubernetes/ingress-nginx/pull/8159) Adding some geoip variables and default values
+- [8155](https://github.com/kubernetes/ingress-nginx/pull/8155) #7271 feat: avoid-pdb-creation-when-default-backend-disabled-and-replicas-gt-1
+- [8151](https://github.com/kubernetes/ingress-nginx/pull/8151) Automatically generate helm docs
+- [8143](https://github.com/kubernetes/ingress-nginx/pull/8143) Allow to configure delay before controller exits
+- [8136](https://github.com/kubernetes/ingress-nginx/pull/8136) add ingressClass option to helm chart - back compatibility with ingress.class annotations
 
 
 ### 1.1.1

From a43346d975a6350f48e5420782e5051b7805e106 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 7 Mar 2022 12:38:53 -0500
Subject: [PATCH 0095/1641] leaving it the git tag (#8311)

fixing the git tag for the image version, it is what it is .
---
 images/opentelemetry/cloudbuild.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
index 947eacbbb..5a4e1b3c0 100644
--- a/images/opentelemetry/cloudbuild.yaml
+++ b/images/opentelemetry/cloudbuild.yaml
@@ -8,6 +8,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
+      - TAG=$_GIT_TAG
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx

From 5a9fe30a5dbdecb675da740b632bed2f9e1449e7 Mon Sep 17 00:00:00 2001
From: hongkunyoo <hongkunyoo@gmail.com>
Date: Wed, 9 Mar 2022 23:54:13 +0900
Subject: [PATCH 0096/1641] Missing annotations (#8288)

Not quite sure but It seems that `nginx.ingress.kubernetes.io/canary-by-header` is missing.
---
 docs/user-guide/nginx-configuration/annotations.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 57542f25f..a0086abec 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -134,7 +134,7 @@ In some cases, you may want to "canary" a new set of changes by sending a small
 
 * `nginx.ingress.kubernetes.io/canary-by-header`: The header to use for notifying the Ingress to route the request to the service specified in the Canary Ingress. When the request header is set to `always`, it will be routed to the canary. When the header is set to `never`, it will never be routed to the canary. For any other value, the header will be ignored and the request compared against the other canary rules by precedence.
 
-* `nginx.ingress.kubernetes.io/canary-by-header-value`: The header value to match for notifying the Ingress to route the request to the service specified in the Canary Ingress. When the request header is set to this value, it will be routed to the canary. For any other header value, the header will be ignored and the request compared against the other canary rules by precedence. This annotation has to be used together with . The annotation is an extension of the `nginx.ingress.kubernetes.io/canary-by-header` to allow customizing the header value instead of using hardcoded values. It doesn't have any effect if the `nginx.ingress.kubernetes.io/canary-by-header` annotation is not defined.
+* `nginx.ingress.kubernetes.io/canary-by-header-value`: The header value to match for notifying the Ingress to route the request to the service specified in the Canary Ingress. When the request header is set to this value, it will be routed to the canary. For any other header value, the header will be ignored and the request compared against the other canary rules by precedence. This annotation has to be used together with `nginx.ingress.kubernetes.io/canary-by-header`. The annotation is an extension of the `nginx.ingress.kubernetes.io/canary-by-header` to allow customizing the header value instead of using hardcoded values. It doesn't have any effect if the `nginx.ingress.kubernetes.io/canary-by-header` annotation is not defined.
 
 * `nginx.ingress.kubernetes.io/canary-by-header-pattern`: This works the same way as `canary-by-header-value` except it does PCRE Regex matching. Note that when `canary-by-header-value` is set this annotation will be ignored. When the given Regex causes error during request processing, the request will be considered as not matching.
 

From e1eff7816005b3fad21a091e306132d11e0ca61e Mon Sep 17 00:00:00 2001
From: Daniel Lim <lahuman@daum.net>
Date: Wed, 9 Mar 2022 23:56:13 +0900
Subject: [PATCH 0097/1641] Names cannot contain _ (underscore)! So I changed
 it to -. (#8300)

* The name can't use _(underscore)! So fix it!

The name can't use _(underscore)! So fix it!

* Fix configMap name can't use _(underscore)

Fix configMap name can't use _(underscore)
---
 .../custom-default-backend-error_pages.configMap.yaml       | 2 +-
 .../custom-errors/custom-default-backend.helm.values.yaml   | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/docs/examples/customization/custom-errors/custom-default-backend-error_pages.configMap.yaml b/docs/examples/customization/custom-errors/custom-default-backend-error_pages.configMap.yaml
index 86b1c44e8..303734c90 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend-error_pages.configMap.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend-error_pages.configMap.yaml
@@ -3,7 +3,7 @@
 apiVersion: v1
 kind: ConfigMap
 metadata:
-  name: custom_error_pages
+  name: custom-error-pages
 data:
   404: |
     <!DOCTYPE html>
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
index ce42bb9b5..fc00707ce 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
@@ -7,14 +7,14 @@ defaultBackend:
     image: ingress-nginx/nginx-errors
     tag: "0.48.1"
   extraVolumes:
-  - name: custom_error_pages
+  - name: custom-error-pages
     configMap:
-      name: custom_error_pages
+      name: custom-error-pages
       items:
       - key: "404"
         path: "404.html"
       - key: "503"
         path: "503.html"
   extraVolumeMounts:
-  - name: custom_error_pages
+  - name: custom-error-pages
     mountPath: /www

From 974d038c2a83dbba1802fddd7105127faf2589ca Mon Sep 17 00:00:00 2001
From: Naveen <172697+naveensrinivasan@users.noreply.github.com>
Date: Mon, 14 Mar 2022 10:29:58 -0500
Subject: [PATCH 0098/1641] Pinned GitHub workflows by SHA (#8334)

- Pinned actions by SHA https://github.com/ossf/scorecard/blob/main/docs/checks.md#pinned-dependencies
- Included permissions for some of the actions. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

Dependabot can upgrade pinned version of actions.
---
 .github/workflows/ci.yaml   | 58 ++++++++++++++++++++++---------------
 .github/workflows/docs.yaml | 13 +++++----
 .github/workflows/helm.yaml | 11 ++++---
 3 files changed, 50 insertions(+), 32 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 25b8d5e14..cec6488ff 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -9,9 +9,15 @@ on:
     branches:
       - main
 
+permissions:
+  contents: read
+
 jobs:
 
   changes:
+    permissions:
+      contents: read  # for dorny/paths-filter to fetch a list of changed files
+      pull-requests: read  # for dorny/paths-filter to read pull requests
     runs-on: ubuntu-latest
     outputs:
       go: ${{ steps.filter.outputs.go }}
@@ -20,9 +26,9 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
 
-      - uses: dorny/paths-filter@v2
+      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -43,10 +49,10 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
 
       - name: Run Gosec Security Scanner
-        uses: securego/gosec@master
+        uses: securego/gosec@b99b5f7838e43a4104354ad92a6a1774302ee1f9 # master
         with:
           # G601 for zz_generated.deepcopy.go
           # G306 TODO: Expect WriteFile permissions to be 0600 or less
@@ -61,17 +67,17 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
 
       - name: Set up Go 1.17
         id: go
-        uses: actions/setup-go@v2
+        uses: actions/setup-go@bfdd3570ce990073878bf10f6b2d79082de49492 # v2
         with:
           go-version: '1.17.6'
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: crazy-max/ghaction-docker-buildx@v1
+        uses: crazy-max/ghaction-docker-buildx@e01797ad2ea9a981005ad58c99afa8d842e3d3eb # v1
         with:
           buildx-version: latest
           qemu-version: latest
@@ -104,7 +110,7 @@ jobs:
             | pigz > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@v2
+        uses: actions/upload-artifact@82c141cc518b40d92cc801eee768e7aafc9c2fa2 # v2
         with:
           name: docker.tar.gz
           path: docker.tar.gz
@@ -121,15 +127,15 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
 
       - name: Setup Go
-        uses: actions/setup-go@v2
+        uses: actions/setup-go@bfdd3570ce990073878bf10f6b2d79082de49492 # v2
         with:
           go-version: '1.17.6'
 
       - name: cache
-        uses: actions/download-artifact@v2
+        uses: actions/download-artifact@f023be2c48cc18debc3bacd34cb396e0295e2869 # v2
         with:
           name: docker.tar.gz
 
@@ -162,12 +168,12 @@ jobs:
 
       - name: Create Kubernetes cluster
         id: kind
-        uses: engineerd/setup-kind@v0.5.0
+        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 # v0.5.0
         with:
           version: v0.11.1
           image: kindest/node:v1.21.1
 
-      - uses: geekyeggo/delete-artifact@v1
+      - uses: geekyeggo/delete-artifact@a6ab43859c960a8b74cbc6291f362c7fb51829ba # v1
         with:
           name: docker.tar.gz
           failOnError: false
@@ -202,22 +208,22 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
 
       - name: cache
-        uses: actions/download-artifact@v2
+        uses: actions/download-artifact@f023be2c48cc18debc3bacd34cb396e0295e2869 # v2
         with:
           name: docker.tar.gz
 
       - name: Create Kubernetes ${{ matrix.k8s }} cluster
         id: kind
-        uses: engineerd/setup-kind@v0.5.0
+        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 # v0.5.0
         with:
           version: v0.11.1
           config: test/e2e/kind.yaml
           image: kindest/node:${{ matrix.k8s }}
 
-      - uses: geekyeggo/delete-artifact@v1
+      - uses: geekyeggo/delete-artifact@a6ab43859c960a8b74cbc6291f362c7fb51829ba # v1
         with:
           name: docker.tar.gz
           failOnError: false
@@ -245,14 +251,17 @@ jobs:
           make kind-e2e-test
 
   test-image-build:
+    permissions:
+      contents: read  # for dorny/paths-filter to fetch a list of changed files
+      pull-requests: read  # for dorny/paths-filter to read pull requests
     runs-on: ubuntu-latest
     env:
       PLATFORMS: linux/amd64
     steps:
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
 
-      - uses: dorny/paths-filter@v2
+      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2
         id: filter-images
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -302,14 +311,17 @@ jobs:
           cd images/kube-webhook-certgen && make build
 
   test-image:
+    permissions:
+      contents: read  # for dorny/paths-filter to fetch a list of changed files
+      pull-requests: read  # for dorny/paths-filter to read pull requests
     runs-on: ubuntu-latest
     env:
       PLATFORMS: linux/amd64
     steps:
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
 
-      - uses: dorny/paths-filter@v2
+      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2
         id: filter-images
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -320,7 +332,7 @@ jobs:
       - name: Create Kubernetes cluster
         id: kind
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: engineerd/setup-kind@v0.5.0
+        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 # v0.5.0
         with:
           version: v0.11.1
           image: kindest/node:v1.21.1
@@ -328,7 +340,7 @@ jobs:
       - name: Set up Go 1.17
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: actions/setup-go@v2
+        uses: actions/setup-go@bfdd3570ce990073878bf10f6b2d79082de49492 # v2
         with:
           go-version: '1.17.6'
 
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 420808443..df398b3f1 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -8,6 +8,9 @@ on:
 jobs:
 
   changes:
+    permissions:
+      contents: read  # for dorny/paths-filter to fetch a list of changed files
+      pull-requests: read  # for dorny/paths-filter to read pull requests
     runs-on: ubuntu-latest
     if: |
       (github.repository == 'kubernetes/ingress-nginx')
@@ -18,15 +21,15 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
 
-      - uses: dorny/paths-filter@v2
+      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
           filters: |
             docs:
-              - 'docs/**/*'
+             - 'docs/**/*'
 
   docs:
     name: Update
@@ -43,9 +46,9 @@ jobs:
     steps:
 
       - name: Checkout master
-        uses: actions/checkout@v2
+        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
         env:
-          PERSONAL_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
+          PERSONAL_TOKEN: "${{ secrets.GITHUB_TOKEN }}" 
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index b0adb644e..dd8e6d752 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -9,6 +9,9 @@ on:
 jobs:
 
   changes:
+    permissions:
+      contents: read  # for dorny/paths-filter to fetch a list of changed files
+      pull-requests: read  # for dorny/paths-filter to read pull requests
     runs-on: ubuntu-latest
     if: |
       (github.repository == 'kubernetes/ingress-nginx')
@@ -19,9 +22,9 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
 
-      - uses: dorny/paths-filter@v2
+      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -46,7 +49,7 @@ jobs:
     steps:
 
       - name: Checkout master
-        uses: actions/checkout@v2
+        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
@@ -58,7 +61,7 @@ jobs:
           git config --global user.email "$GITHUB_ACTOR@users.noreply.github.com"
       
       - name: Run chart-releaser
-        uses: helm/chart-releaser-action@v1.2.1
+        uses: helm/chart-releaser-action@c25b74a986eb925b398320414b576227f375f946 # v1.2.1
         env:
           CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
           CR_RELEASE_NAME_TEMPLATE: "helm-chart-{{ .Version }}"

From 1fb0aea2c51fdd9e7f224c54326aa0620bdfb8fa Mon Sep 17 00:00:00 2001
From: Rodrigo Riccitelli Vieira <mcbacker@gmail.com>
Date: Mon, 14 Mar 2022 12:47:58 -0300
Subject: [PATCH 0099/1641] Update monitoring.md (#8324)

Added missing repo on "helm upgrade" command
---
 docs/user-guide/monitoring.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index 99039d635..b8df59980 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -20,7 +20,8 @@ This tutorial will show you how to install [Prometheus](https://prometheus.io/)
 
   - The easiest way to configure the controller for metrics is via helm upgrade. Assuming you have installed the ingress-nginx controller as a helm release named ingress-controller, then you can simply type the command show below :
   ```
-  helm upgrade ingress-controller ingress-nginx/ingress-nginx \
+  helm upgrade ingress-nginx ingress-nginx \
+  --repo https://kubernetes.github.io/ingress-nginx \
   --namespace ingress-nginx \
   --set controller.metrics.enabled=true \
   --set-string controller.podAnnotations."prometheus\.io/scrape"="true" \

From 9180ef1ee4728dc772f35f9d5afe54c414f3585c Mon Sep 17 00:00:00 2001
From: thomasbruggink <thomasbruggink@users.noreply.github.com>
Date: Tue, 15 Mar 2022 00:51:57 +0900
Subject: [PATCH 0100/1641] Add the shareProcessNamespace as a configurable
 setting. (#8287)

---
 charts/ingress-nginx/README.md                            | 1 +
 charts/ingress-nginx/templates/controller-daemonset.yaml  | 3 +++
 charts/ingress-nginx/templates/controller-deployment.yaml | 3 +++
 charts/ingress-nginx/values.yaml                          | 4 ++++
 4 files changed, 11 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index ad641f726..c0ef8109d 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -409,6 +409,7 @@ Kubernetes: `>=1.19.0-0`
 | controller.service.targetPorts.http | string | `"http"` |  |
 | controller.service.targetPorts.https | string | `"https"` |  |
 | controller.service.type | string | `"LoadBalancer"` |  |
+| controller.shareProcessNamespace | bool | `false` |  This can be used for example to signal log rotation using `kill -USR1` from a sidecar. |
 | controller.sysctls | object | `{}` | See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls |
 | controller.tcp.annotations | object | `{}` | Annotations to be added to the tcp config configmap |
 | controller.tcp.configMapNamespace | string | `""` | Allows customization of the tcp-services-configmap; defaults to $(POD_NAMESPACE) |
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 72811fbe4..09852d041 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -67,6 +67,9 @@ spec:
         - name: {{ $sysctl | quote }}
           value: {{ $value | quote }}
     {{- end }}
+    {{- end }}
+    {{- if .Values.controller.shareProcessNamespace }}
+      shareProcessNamespace: {{ .Values.controller.shareProcessNamespace }}
     {{- end }}
       containers:
         - name: {{ .Values.controller.containerName }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index a1943cd91..effd5b06c 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -71,6 +71,9 @@ spec:
         - name: {{ $sysctl | quote }}
           value: {{ $value | quote }}
     {{- end }}
+    {{- end }}
+    {{- if .Values.controller.shareProcessNamespace }}
+      shareProcessNamespace: {{ .Values.controller.shareProcessNamespace }}
     {{- end }}
       containers:
         - name: {{ .Values.controller.containerName }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index c887dc051..a8b002516 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -529,6 +529,10 @@ controller:
       ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
       # externalTrafficPolicy: ""
 
+  # shareProcessNamespace enables process namespace sharing within the pod.
+  # This can be used for example to signal log rotation using `kill -USR1` from a sidecar.
+  shareProcessNamespace: false
+
   # -- Additional containers to be added to the controller pod.
   # See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example.
   extraContainers: []

From 01b92b8b3aca887b257851dbbc89e4c57815a4ab Mon Sep 17 00:00:00 2001
From: sskserk <78915702+sskserk@users.noreply.github.com>
Date: Mon, 14 Mar 2022 16:55:57 +0100
Subject: [PATCH 0101/1641] Nginx v1.19.10 (#8307)

---
 images/nginx/rootfs/build.sh         | 4 ++--
 images/opentelemetry/rootfs/build.sh | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index bee2561d0..2ee308d68 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -18,7 +18,7 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
-export NGINX_VERSION=1.19.9
+export NGINX_VERSION=1.19.10
 
 # Check for recent changes: https://github.com/vision5/ngx_devel_kit/compare/v0.3.1...master
 export NDK_VERSION=0.3.1
@@ -197,7 +197,7 @@ mkdir --verbose -p "$BUILD_PATH"
 cd "$BUILD_PATH"
 
 # download, verify and extract the source files
-get_src 2e35dff06a9826e8aca940e9e8be46b7e4b12c19a48d55bfc2dc28fc9cc7d841 \
+get_src e8d0290ff561986ad7cd6c33307e12e11b137186c4403a6a5ccdb4914c082d88 \
         "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
 
 get_src 0e971105e210d272a497567fa2e2c256f4e39b845a5ba80d373e26ba1abfbd85 \
diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
index a79fdf950..aab2abbd0 100755
--- a/images/opentelemetry/rootfs/build.sh
+++ b/images/opentelemetry/rootfs/build.sh
@@ -18,7 +18,7 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
-export NGINX_VERSION=1.19.9
+export NGINX_VERSION=1.19.10
 
 # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp/compare/v1.0.0...main
 export OPENTELEMETRY_CPP_VERSION=1.0.0
@@ -60,7 +60,7 @@ get_src()
 }
 
 
-get_src 2e35dff06a9826e8aca940e9e8be46b7e4b12c19a48d55bfc2dc28fc9cc7d841 \
+get_src e8d0290ff561986ad7cd6c33307e12e11b137186c4403a6a5ccdb4914c082d88 \
         "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
 
 get_src 45c52498788e47131b20a4786dbb08f4390b8cb419bd3d61c88b503cafff3324 \

From ba7f295538f6d0e0c1b5cde70c827b4e9796178f Mon Sep 17 00:00:00 2001
From: Ana Claudia Riekstin <17534478+anaclaudiar@users.noreply.github.com>
Date: Wed, 16 Mar 2022 09:25:49 -0400
Subject: [PATCH 0102/1641] Fix 50% split between canary and mainline tests
 (#8315)

* fix 50% canary test

* fix past tense

* after code review

* revert go.sum and go.mod

* run gofmt
---
 test/e2e/annotations/canary.go | 23 +++++++++++++----------
 1 file changed, 13 insertions(+), 10 deletions(-)

diff --git a/test/e2e/annotations/canary.go b/test/e2e/annotations/canary.go
index 4f1bdcad6..99d164f98 100644
--- a/test/e2e/annotations/canary.go
+++ b/test/e2e/annotations/canary.go
@@ -18,7 +18,6 @@ package annotations
 
 import (
 	"fmt"
-	"math"
 	"net/http"
 	"reflect"
 	"regexp"
@@ -806,7 +805,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				Contains(canaryService)
 		})
 
-		ginkgo.It("should route requests evenly split between mainline and canary if canary weight is 50", func() {
+		ginkgo.It("should route requests split between mainline and canary if canary weight is 50", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
@@ -829,7 +828,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				f.Namespace, canaryService, 80, canaryAnnotations)
 			f.EnsureIngress(canaryIng)
 
-			TestEvenMainlineCanaryDistribution(f, host)
+			TestMainlineCanaryDistribution(f, host)
 		})
 	})
 
@@ -1079,18 +1078,24 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				}
 			}
 
-			TestEvenMainlineCanaryDistribution(f, host)
+			TestMainlineCanaryDistribution(f, host)
 		})
 	})
 
 })
 
 // This method assumes canary weight being configured at 50%.
-func TestEvenMainlineCanaryDistribution(f *framework.Framework, host string) {
+func TestMainlineCanaryDistribution(f *framework.Framework, host string) {
 	re := regexp.MustCompile(fmt.Sprintf(`%s.*`, framework.EchoService))
 	replicaRequestCount := map[string]int{}
 
-	for i := 0; i < 200; i++ {
+	// The implementation of choice by weight doesn't guarantee exact
+	// number of requests, so verify if mainline and canary have at
+	// least some requests
+	requestsToGet := 200
+	requestsNumberToTest := (40 * requestsToGet) / 100
+
+	for i := 0; i < requestsToGet; i++ {
 		body := f.HTTPTestClient().
 			GET("/").
 			WithHeader("Host", host).
@@ -1111,8 +1116,6 @@ func TestEvenMainlineCanaryDistribution(f *framework.Framework, host string) {
 
 	assert.Equal(ginkgo.GinkgoT(), 2, len(keys))
 
-	// The implmentation of choice by weight doesn't guarantee exact
-	// number of requests, so verify if request imbalance is within an
-	// acceptable range.
-	assert.LessOrEqual(ginkgo.GinkgoT(), math.Abs(float64(replicaRequestCount[keys[0].String()]-replicaRequestCount[keys[1].String()]))/math.Max(float64(replicaRequestCount[keys[0].String()]), float64(replicaRequestCount[keys[1].String()])), 0.2)
+	assert.GreaterOrEqual(ginkgo.GinkgoT(), int(replicaRequestCount[keys[0].String()]), requestsNumberToTest)
+	assert.GreaterOrEqual(ginkgo.GinkgoT(), int(replicaRequestCount[keys[1].String()]), requestsNumberToTest)
 }

From 1953efa9d8cc3fdc7f2fff2f1148355047ace244 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 16 Mar 2022 11:52:38 -0400
Subject: [PATCH 0103/1641] Bumping alpine base to 3.15

---
 images/nginx/rootfs/Dockerfile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index a9e180315..9cc5539ae 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.14.2 as builder
+FROM alpine:3.15.0 as builder
 
 COPY . /
 
@@ -23,7 +23,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.14.2
+FROM alpine:3.15.0
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 

From 2fefd714bdb76779365636b9ae91e63eac2198f1 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 16 Mar 2022 12:57:48 -0400
Subject: [PATCH 0104/1641] update tag and force a new build

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG                            | 2 +-
 images/nginx/rootfs/Dockerfile | 3 +--
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/TAG b/TAG
index 0f1acbd56..99a4aef0c 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.1.2
+v1.1.3
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 9cc5539ae..d39863aec 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,8 +11,6 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-
-
 FROM alpine:3.15.0 as builder
 
 COPY . /
@@ -74,4 +72,5 @@ RUN apk update \
 EXPOSE 80 443
 
 ENTRYPOINT ["/usr/local/entrypoint.sh"]
+
 CMD ["nginx", "-g", "daemon off;"]

From 952a6dc22ca4a01d62162245e539daf4e827c014 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 16 Mar 2022 14:52:06 -0400
Subject: [PATCH 0105/1641] control tag with short sha

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/nginx/cloudbuild.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index d507b8f1a..1e524af21 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -8,7 +8,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - TAG=$_GIT_TAG
+      - TAG=$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx

From 0e2447ed0e41dd441dfb2b2a44559c35b40c1de4 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 16 Mar 2022 15:07:38 -0400
Subject: [PATCH 0106/1641] add the date per request

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/nginx/cloudbuild.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index 1e524af21..6c1f844ec 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -8,7 +8,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - TAG=$SHORT_SHA
+      - TAG=v$(date "+%Y%m%d")-$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx

From 5c47803d0f0d37cd83dc942a7e1c3ccd8565681a Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 16 Mar 2022 15:13:24 -0400
Subject: [PATCH 0107/1641] fix the cloud build

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/nginx/cloudbuild.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index 6c1f844ec..b5b906a8d 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -8,7 +8,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - TAG=v$(date "+%Y%m%d")-$SHORT_SHA
+      - COMMIT=$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
@@ -18,7 +18,7 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && make push
+      && TAG=v$(date "+%Y%m%d")-${COMMIT} make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"

From 569b3c2a70cd3f08792e699446b3edae77049f16 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 16 Mar 2022 15:32:45 -0400
Subject: [PATCH 0108/1641] update cloud build image

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/nginx/cloudbuild.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index b5b906a8d..d6347e437 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
   # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
   machineType: N1_HIGHCPU_32
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
+  - name: gcr.io/k8s-staging-test-infra/image-builder:v20220309-4b32800b2d
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled

From 40bb6c3d2ea0d3b99a4c1644d2194816fd1a5d7d Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 17 Mar 2022 15:02:41 -0400
Subject: [PATCH 0109/1641] update cloud build (#8349)

---
 images/nginx/cloudbuild.yaml   | 9 +++------
 images/nginx/rootfs/Dockerfile | 3 ++-
 2 files changed, 5 insertions(+), 7 deletions(-)

diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index d6347e437..3a646fc88 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -4,21 +4,18 @@ options:
   # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
   machineType: N1_HIGHCPU_32
 steps:
-  - name: gcr.io/k8s-staging-test-infra/image-builder:v20220309-4b32800b2d
+  - name: 'gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90'
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - COMMIT=$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
-      # set the home to /root explicitly to if using docker buildx
-      - HOME=/root
+       - HOME=/root
     args:
     - -c
     - |
       gcloud auth configure-docker \
-      && TAG=v$(date "+%Y%m%d")-${COMMIT} make push
+      && TAG=v$(date "+%Y%m%d")-$(git rev-parse --short HEAD) make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index d39863aec..a3c4831bb 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -41,7 +41,8 @@ RUN apk update \
     pcre \
     zlib \
     geoip \
-    curl ca-certificates \
+    curl \
+    ca-certificates \
     patch \
     yajl \
     lmdb \

From 3f19fd646fb2da4a44578861a26486f947894db2 Mon Sep 17 00:00:00 2001
From: Ana Claudia Riekstin <17534478+anaclaudiar@users.noreply.github.com>
Date: Thu, 17 Mar 2022 21:19:40 -0400
Subject: [PATCH 0110/1641] bump Alpine image in Dockerfile (#8350)

---
 images/opentelemetry/rootfs/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index bef5b5562..cea4270d6 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.14.2 as builder
+FROM alpine:3.15.0 as builder
 
 COPY . /
 

From e51c15160e9b4d641fc9e289601676e1adc70e19 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 18 Mar 2022 13:04:41 -0400
Subject: [PATCH 0111/1641] fix indent on env (#8352)

* fix indent on env

* revert tag to      - TAG=$_GIT_TAG
---
 images/nginx/cloudbuild.yaml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index 3a646fc88..0b81aa8d6 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -9,13 +9,14 @@ steps:
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
       - BASE_REF=$_PULL_BASE_REF
+      - TAG=$_GIT_TAG
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-       - HOME=/root
+      - HOME=/root
     args:
     - -c
     - |
       gcloud auth configure-docker \
-      && TAG=v$(date "+%Y%m%d")-$(git rev-parse --short HEAD) make push
+      && make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"

From d27d7c20b415c2e313e61aa3d032f82ca14c504e Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Mon, 21 Mar 2022 22:46:47 +0000
Subject: [PATCH 0112/1641] Updated semver in install docs URLs (#8368)

---
 docs/deploy/index.md | 22 ++++++++++++----------
 1 file changed, 12 insertions(+), 10 deletions(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 9f613308b..966703afb 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -28,6 +28,8 @@ On most Kubernetes clusters, the ingress controller will work without requiring
   - ... [Bare-metal](#bare-metal-clusters)
 - [Miscellaneous](#miscellaneous)
 
+## TODO : We have subdirectories for kubernetes versions now because of a PR https://github.com/kubernetes/ingress-nginx/pull/8162 . You can see this here https://github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud . We need to add documentation here that is clear and unambiguous in guiding users to pick the deployment manifest under a subdirectory, based on the K8S version being used. But until the explicit clear docs land here, users are recommended to feel free to use those subdirectories and get the manifest(s) related to their K8S version.
+
 ## Quick start
 
 **If you have Helm,** you can deploy the ingress controller with the following command:
@@ -49,7 +51,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -184,17 +186,17 @@ In AWS we use a Network load balancer (NLB) to expose the NGINX Ingress controll
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
 
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -236,7 +238,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -250,7 +252,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regards to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -258,13 +260,13 @@ More information with regards to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/do/deploy.yaml
 ```
 
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -278,7 +280,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A [complete list of available annotations for Oracle Cloud Infrastructure](https://github.com/oracle/oci-cloud-controller-manager/blob/master/docs/load-balancer-annotations.md) can be found in the [OCI Cloud Controller Manager](https://github.com/oracle/oci-cloud-controller-manager) documentation.
@@ -290,7 +292,7 @@ This section is applicable to Kubernetes clusters deployed on bare metal servers
 For quick testing, you can use a [NodePort](https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport). This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.1/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range), see [bare-metal considerations](./baremetal.md).

From 5c07c862e1f69e39da1e6b4121bba631f55e5651 Mon Sep 17 00:00:00 2001
From: Nishant Jain <nishantkumarajain@gmail.com>
Date: Tue, 22 Mar 2022 16:53:44 +0530
Subject: [PATCH 0113/1641] Removed s390x, linux/arm platform as docker build
 was crashing (#8121)

Co-authored-by: Carlos Tadeu Panato Junior <ctadeu@gmail.com>
---
 .github/workflows/ci.yaml                     |   8 +-
 .../external-auth-headers/Makefile            |  23 --
 .../{deploy => }/auth-service.yaml            |   2 +-
 .../external-auth-headers/authsvc/Dockerfile  |   5 -
 .../{deploy => }/echo-service.yaml            |   2 +-
 .../external-auth-headers/echosvc/Dockerfile  |   5 -
 .../external-auth-headers/echosvc/echosvc.go  |  32 ---
 images/echo/Makefile                          |   2 +-
 images/ext-auth-example-authsvc/Makefile      |  55 +++++
 .../ext-auth-example-authsvc/cloudbuild.yaml  |  24 ++
 .../rootfs/Dockerfile                         |  10 +
 .../rootfs}/authsvc.go                        |   0
 images/ext-auth-example-authsvc/rootfs/go.mod |   8 +
 images/ext-auth-example-authsvc/rootfs/go.sum | 215 ++++++++++++++++++
 14 files changed, 322 insertions(+), 69 deletions(-)
 delete mode 100644 docs/examples/customization/external-auth-headers/Makefile
 rename docs/examples/customization/external-auth-headers/{deploy => }/auth-service.yaml (90%)
 delete mode 100644 docs/examples/customization/external-auth-headers/authsvc/Dockerfile
 rename docs/examples/customization/external-auth-headers/{deploy => }/echo-service.yaml (96%)
 delete mode 100644 docs/examples/customization/external-auth-headers/echosvc/Dockerfile
 delete mode 100644 docs/examples/customization/external-auth-headers/echosvc/echosvc.go
 create mode 100644 images/ext-auth-example-authsvc/Makefile
 create mode 100644 images/ext-auth-example-authsvc/cloudbuild.yaml
 create mode 100644 images/ext-auth-example-authsvc/rootfs/Dockerfile
 rename {docs/examples/customization/external-auth-headers/authsvc => images/ext-auth-example-authsvc/rootfs}/authsvc.go (100%)
 create mode 100644 images/ext-auth-example-authsvc/rootfs/go.mod
 create mode 100644 images/ext-auth-example-authsvc/rootfs/go.sum

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index cec6488ff..63d41b588 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -256,7 +256,7 @@ jobs:
       pull-requests: read  # for dorny/paths-filter to read pull requests
     runs-on: ubuntu-latest
     env:
-      PLATFORMS: linux/amd64
+      PLATFORMS: linux/amd64,linux/arm64
     steps:
       - name: Checkout
         uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
@@ -280,6 +280,8 @@ jobs:
               - 'images/httpbin/**'
             kube-webhook-certgen:
               - 'images/kube-webhook-certgen/**'
+            ext-auth-example-authsvc:
+              - 'images/ext-auth-example-authsvc/**'
 
       - name: custom-error-pages image build
         if: ${{ steps.filter-images.outputs.custom-error-pages == 'true' }}
@@ -309,6 +311,10 @@ jobs:
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
         run: |
           cd images/kube-webhook-certgen && make build
+      - name: ext-auth-example-authsvc
+        if: ${{ steps.filter-images.outputs.ext-auth-example-authsvc == 'true' }}
+        run: |
+          cd images/ext-auth-example-authsvc && make build
 
   test-image:
     permissions:
diff --git a/docs/examples/customization/external-auth-headers/Makefile b/docs/examples/customization/external-auth-headers/Makefile
deleted file mode 100644
index 1ee7e06ac..000000000
--- a/docs/examples/customization/external-auth-headers/Makefile
+++ /dev/null
@@ -1,23 +0,0 @@
-all: push
-
-TAG=0.1
-PREFIX?=electroma/ingress-demo-
-ARCH?=amd64
-GOLANG_VERSION=1.9
-TEMP_DIR:=$(shell mktemp -d)
-
-build: clean
-	CGO_ENABLED=0 GOOS=linux GOARCH=$(ARCH) go build -o authsvc/authsvc authsvc/authsvc.go
-	CGO_ENABLED=0 GOOS=linux GOARCH=$(ARCH) go build -o echosvc/echosvc echosvc/echosvc.go
-
-container: build
-	docker build --pull -t $(PREFIX)authsvc-$(ARCH):$(TAG) authsvc
-	docker build --pull -t $(PREFIX)echosvc-$(ARCH):$(TAG) echosvc
-
-push: container
-	docker push $(PREFIX)authsvc-$(ARCH):$(TAG)
-	docker push $(PREFIX)echosvc-$(ARCH):$(TAG)
-
-clean:
-	rm -f authsvc/authsvc echosvc/echosvc
-
diff --git a/docs/examples/customization/external-auth-headers/deploy/auth-service.yaml b/docs/examples/customization/external-auth-headers/auth-service.yaml
similarity index 90%
rename from docs/examples/customization/external-auth-headers/deploy/auth-service.yaml
rename to docs/examples/customization/external-auth-headers/auth-service.yaml
index 3a5dff12c..faa345921 100644
--- a/docs/examples/customization/external-auth-headers/deploy/auth-service.yaml
+++ b/docs/examples/customization/external-auth-headers/auth-service.yaml
@@ -18,7 +18,7 @@ spec:
       terminationGracePeriodSeconds: 60
       containers:
       - name: auth-service
-        image: electroma/ingress-demo-authsvc-amd64:0.1
+        image: gcr.io/k8s-staging-ingress-nginx/ext-auth-example-authsvc:v1.0.0
         ports:
         - containerPort: 8080
         resources:
diff --git a/docs/examples/customization/external-auth-headers/authsvc/Dockerfile b/docs/examples/customization/external-auth-headers/authsvc/Dockerfile
deleted file mode 100644
index 90e6ec2cb..000000000
--- a/docs/examples/customization/external-auth-headers/authsvc/Dockerfile
+++ /dev/null
@@ -1,5 +0,0 @@
-FROM alpine:3.10
-MAINTAINER Roman Safronov <electroma@gmail.com>
-COPY authsvc /
-EXPOSE 8080
-ENTRYPOINT ["/authsvc"]
diff --git a/docs/examples/customization/external-auth-headers/deploy/echo-service.yaml b/docs/examples/customization/external-auth-headers/echo-service.yaml
similarity index 96%
rename from docs/examples/customization/external-auth-headers/deploy/echo-service.yaml
rename to docs/examples/customization/external-auth-headers/echo-service.yaml
index 9881ac8d0..636aaded1 100644
--- a/docs/examples/customization/external-auth-headers/deploy/echo-service.yaml
+++ b/docs/examples/customization/external-auth-headers/echo-service.yaml
@@ -18,7 +18,7 @@ spec:
       terminationGracePeriodSeconds: 60
       containers:
       - name: echo-service
-        image: electroma/ingress-demo-echosvc-amd64:0.1
+        image: gcr.io/k8s-staging-ingress-nginx/e2e-test-echo:v1.0.0
         ports:
         - containerPort: 8080
         resources:
diff --git a/docs/examples/customization/external-auth-headers/echosvc/Dockerfile b/docs/examples/customization/external-auth-headers/echosvc/Dockerfile
deleted file mode 100644
index 04e4ead42..000000000
--- a/docs/examples/customization/external-auth-headers/echosvc/Dockerfile
+++ /dev/null
@@ -1,5 +0,0 @@
-FROM alpine:3.10
-MAINTAINER Roman Safronov <electroma@gmail.com>
-COPY echosvc /
-EXPOSE 8080
-ENTRYPOINT ["/echosvc"]
diff --git a/docs/examples/customization/external-auth-headers/echosvc/echosvc.go b/docs/examples/customization/external-auth-headers/echosvc/echosvc.go
deleted file mode 100644
index ba9702aa0..000000000
--- a/docs/examples/customization/external-auth-headers/echosvc/echosvc.go
+++ /dev/null
@@ -1,32 +0,0 @@
-/*
-Copyright 2017 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package main
-
-import (
-	"fmt"
-	"net/http"
-)
-
-func handler(w http.ResponseWriter, r *http.Request) {
-	fmt.Fprintf(w, "UserID: %s, UserRole: %s", r.Header.Get("UserID"), r.Header.Get("UserRole"))
-}
-
-// Sample  "echo" service displaying UserID and UserRole HTTP request headers
-func main() {
-	http.HandleFunc("/", handler)
-	http.ListenAndServe(":8080", nil)
-}
diff --git a/images/echo/Makefile b/images/echo/Makefile
index 7a93aec25..38a341146 100644
--- a/images/echo/Makefile
+++ b/images/echo/Makefile
@@ -18,7 +18,7 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%m%d%Y)-$(shell git rev-parse --short HEAD)
+TAG ?=v1.0.0
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-echo
diff --git a/images/ext-auth-example-authsvc/Makefile b/images/ext-auth-example-authsvc/Makefile
new file mode 100644
index 000000000..85d2f8e6b
--- /dev/null
+++ b/images/ext-auth-example-authsvc/Makefile
@@ -0,0 +1,55 @@
+# Copyright 2022 The Kubernetes Authors. All rights reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# set default shell
+SHELL=/bin/bash -o pipefail -o errexit
+
+DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
+INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
+
+TAG ?=v1.0.0
+REGISTRY ?= local
+
+IMAGE = $(REGISTRY)/ext-auth-example-authsvc
+
+# required to enable buildx
+export DOCKER_CLI_EXPERIMENTAL=enabled
+
+# build with buildx
+PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
+OUTPUT=
+PROGRESS=plain
+
+build: ensure-buildx
+	docker buildx build \
+		--platform=${PLATFORMS} $(OUTPUT) \
+		--progress=$(PROGRESS) \
+		--pull \
+		-t $(IMAGE):$(TAG) rootfs
+
+# push the cross built image
+push: OUTPUT=--push
+push: build
+
+# enable buildx
+ensure-buildx:
+# this is required for cloudbuild
+ifeq ("$(wildcard $(INIT_BUILDX))","")
+	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/master/hack/init-buildx.sh | bash
+else
+	@exec $(INIT_BUILDX)
+endif
+	@echo "done"
+
+.PHONY: build push ensure-buildx
diff --git a/images/ext-auth-example-authsvc/cloudbuild.yaml b/images/ext-auth-example-authsvc/cloudbuild.yaml
new file mode 100644
index 000000000..b92b9c877
--- /dev/null
+++ b/images/ext-auth-example-authsvc/cloudbuild.yaml
@@ -0,0 +1,24 @@
+timeout: 1200s
+options:
+  substitution_option: ALLOW_LOOSE
+  # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
+  machineType: N1_HIGHCPU_8
+steps:
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
+    entrypoint: bash
+    env:
+      - DOCKER_CLI_EXPERIMENTAL=enabled
+      - TAG=$_GIT_TAG
+      - BASE_REF=$_PULL_BASE_REF
+      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
+      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
+      # set the home to /root explicitly to if using docker buildx
+      - HOME=/root
+    args:
+    - -c
+    - |
+      gcloud auth configure-docker \
+      && make push
+substitutions:
+  _GIT_TAG: "12345"
+  _PULL_BASE_REF: "master"
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
new file mode 100644
index 000000000..ee2737286
--- /dev/null
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -0,0 +1,10 @@
+FROM golang:1.17.6-alpine3.15 as builder
+RUN mkdir /authsvc
+WORKDIR /authsvc
+COPY . ./
+RUN CGO_ENABLED=0 GOOS=linux go build -o authsvc authsvc.go
+
+FROM gcr.io/distroless/base-debian11
+COPY --from=builder /authsvc/authsvc /
+EXPOSE 8080
+ENTRYPOINT ["/authsvc"]
\ No newline at end of file
diff --git a/docs/examples/customization/external-auth-headers/authsvc/authsvc.go b/images/ext-auth-example-authsvc/rootfs/authsvc.go
similarity index 100%
rename from docs/examples/customization/external-auth-headers/authsvc/authsvc.go
rename to images/ext-auth-example-authsvc/rootfs/authsvc.go
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
new file mode 100644
index 000000000..72f2a1049
--- /dev/null
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -0,0 +1,8 @@
+module example.com/authsvc
+
+go 1.17
+
+require (
+	github.com/google/uuid v1.1.2 // indirect
+	k8s.io/apimachinery v0.23.1 // indirect
+)
diff --git a/images/ext-auth-example-authsvc/rootfs/go.sum b/images/ext-auth-example-authsvc/rootfs/go.sum
new file mode 100644
index 000000000..6e3fab295
--- /dev/null
+++ b/images/ext-auth-example-authsvc/rootfs/go.sum
@@ -0,0 +1,215 @@
+cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
+github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
+github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
+github.com/PuerkitoBio/purell v1.1.1/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
+github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578/go.mod h1:uGdkoq3SwY9Y+13GIhn11/XLaGBb4BfwItxLd5jeuXE=
+github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
+github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
+github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
+github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
+github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815/go.mod h1:WwZ+bS3ebgob9U8Nd0kOddGdZWjyMGR8Wziv+TBNwSE=
+github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153/go.mod h1:/Zj4wYkgs4iZTTu3o/KG3Itv/qCCa8VVMlb3i9OVuzc=
+github.com/emicklei/go-restful v0.0.0-20170410110728-ff4f55a20633/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
+github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
+github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
+github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
+github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
+github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
+github.com/getkin/kin-openapi v0.76.0/go.mod h1:660oXbgy5JFMKreazJaQTw7o+X00qeSyhcnluiMv+Xg=
+github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
+github.com/go-logr/logr v0.1.0/go.mod h1:ixOQHD9gLJUVQQ2ZOR7zLEifBX6tGkNJF4QyIY7sIas=
+github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
+github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
+github.com/go-openapi/jsonpointer v0.19.3/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
+github.com/go-openapi/jsonpointer v0.19.5/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
+github.com/go-openapi/jsonreference v0.19.3/go.mod h1:rjx6GuL8TTa9VaixXglHmQmIL98+wF9xc8zWvFonSJ8=
+github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh66Z9tfKk=
+github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
+github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
+github.com/golang/mock v1.1.1/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
+github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
+github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
+github.com/golang/protobuf v1.4.0-rc.1/go.mod h1:ceaxUfeHdC40wWswd/P6IGgMaK3YpKi5j83Wpe3EHw8=
+github.com/golang/protobuf v1.4.0-rc.1.0.20200221234624-67d41d38c208/go.mod h1:xKAWHe0F5eneWXFV3EuXVDTCmh+JuBKY0li0aMyXATA=
+github.com/golang/protobuf v1.4.0-rc.2/go.mod h1:LlEzMj4AhA7rCAGe4KMBDvJI+AwstrUpVNzEA03Pprs=
+github.com/golang/protobuf v1.4.0-rc.4.0.20200313231945-b860323f09d0/go.mod h1:WU3c8KckQ9AFe+yFwt9sWVRKCVIyN9cPHBJSNnbL67w=
+github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvqG2KuDX0=
+github.com/golang/protobuf v1.4.1/go.mod h1:U8fpvMrcmy5pZrNK1lt4xCsGvpyWQ/VVv6QDs8UjoX8=
+github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
+github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
+github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
+github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
+github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
+github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
+github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
+github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
+github.com/google/uuid v1.1.2 h1:EVhdT+1Kseyi1/pUmXKaFxYsDNy9RQYkMWRH68J/W7Y=
+github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/googleapis/gnostic v0.5.1/go.mod h1:6U4PtQXGIEt/Z3h5MAT7FNofLnw9vXk2cUuW7uA/OeU=
+github.com/googleapis/gnostic v0.5.5/go.mod h1:7+EbHbldMins07ALC74bsA81Ovc97DwqyJO1AENw9kA=
+github.com/gorilla/mux v1.8.0/go.mod h1:DVbg23sWSpFRCP0SfiEN6jmj59UnW/n46BH5rLB71So=
+github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
+github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
+github.com/json-iterator/go v1.1.6/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
+github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
+github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8=
+github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
+github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
+github.com/kr/pretty v0.2.0/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
+github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
+github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
+github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
+github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
+github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
+github.com/mitchellh/mapstructure v1.1.2/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
+github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
+github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
+github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
+github.com/modern-go/reflect2 v1.0.1/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0=
+github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
+github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
+github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
+github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
+github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
+github.com/onsi/ginkgo v0.0.0-20170829012221-11459a886d9c/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
+github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
+github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
+github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
+github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
+github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
+github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
+github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
+github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
+github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
+github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
+github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
+github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
+github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
+github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
+github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
+github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
+github.com/yuin/goldmark v1.3.5/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
+golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
+golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
+golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
+golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
+golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
+golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU=
+golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
+golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
+golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
+golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
+golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
+golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20210220032951-036812b2e83c/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
+golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
+golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
+golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200519105757-fe76b779f299/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210330210617-4fbd30eecc44/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210831042530-f4d43177bf5e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
+golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
+golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
+golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
+golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
+golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
+golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
+golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
+golang.org/x/tools v0.0.0-20190524140312-2c0ae7006135/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
+golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
+golang.org/x/tools v0.0.0-20200505023115-26f46d2f7ef8/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
+golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
+golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
+golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
+golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
+golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
+google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
+google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
+google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc=
+google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
+google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013/go.mod h1:NbSheEEYHJ7i3ixzK3sjbqSGDJWnxyFXZblF3eUsNvo=
+google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
+google.golang.org/grpc v1.23.0/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg=
+google.golang.org/grpc v1.27.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
+google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
+google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
+google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
+google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miEFZTKqfCUM6K7xSMQL9OKL/b6hQv+e19PK+JZNE=
+google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo=
+google.golang.org/protobuf v1.22.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
+google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
+google.golang.org/protobuf v1.23.1-0.20200526195155-81db48ad09cc/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
+google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGjtUeSXeh4=
+google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
+google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
+google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
+gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
+gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
+gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+gopkg.in/yaml.v2 v2.3.0/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
+gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.0-20200615113413-eeeca48fe776/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
+honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
+k8s.io/apimachinery v0.23.1 h1:sfBjlDFwj2onG0Ijx5C+SrAoeUscPrmghm7wHP+uXlo=
+k8s.io/apimachinery v0.23.1/go.mod h1:SADt2Kl8/sttJ62RRsi9MIV4o8f5S3coArm0Iu3fBno=
+k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
+k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
+k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
+k8s.io/klog/v2 v2.30.0/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65/go.mod h1:sX9MT8g7NVZM5lVL/j8QyCCJe8YSMW30QvGZWaCIDIk=
+k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+k8s.io/utils v0.0.0-20210930125809-cb0fa318a74b/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+sigs.k8s.io/json v0.0.0-20211020170558-c049b76a60c6/go.mod h1:p4QtZmO4uMYipTQNzagwnNoseA6OxSUutVw05NhYDRs=
+sigs.k8s.io/structured-merge-diff/v4 v4.0.2/go.mod h1:bJZC9H9iH24zzfZ/41RGcq60oK1F7G282QMXDPYydCw=
+sigs.k8s.io/structured-merge-diff/v4 v4.1.2/go.mod h1:j/nl6xW8vLS49O8YvXW1ocPhZawJtm+Yrr7PPRQ0Vg4=
+sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=

From f192ed0ed75dd3315bab782743078ba858bf828b Mon Sep 17 00:00:00 2001
From: Tim Borkhodoev <38668303+SomalianIvan@users.noreply.github.com>
Date: Tue, 22 Mar 2022 21:53:58 -0400
Subject: [PATCH 0114/1641] bump luarocks to 3.8.0 (#8379)

---
 images/echo/Makefile        | 4 ++--
 images/test-runner/Makefile | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/images/echo/Makefile b/images/echo/Makefile
index 38a341146..9131d608d 100644
--- a/images/echo/Makefile
+++ b/images/echo/Makefile
@@ -37,8 +37,8 @@ build: ensure-buildx
 		--progress=$(PROGRESS) \
 		--pull \
 		--build-arg BASE_IMAGE=k8s.gcr.io/ingress-nginx/nginx:v20210926-g5662db450@sha256:1ef404b5e8741fe49605a1f40c3fdd8ef657aecdb9526ea979d1672eeabd0cd9 \
-		--build-arg LUAROCKS_VERSION=3.3.1 \
-		--build-arg LUAROCKS_SHA=837481e408f7c06b59befe7ec194537c657687d624894bca7f79034302141a34 \
+		--build-arg LUAROCKS_VERSION=3.8.0 \
+		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
 		-t $(IMAGE):$(TAG) rootfs
 
 # push the cross built image
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 4caebebd3..bf7df8625 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -44,8 +44,8 @@ build: ensure-buildx
 		--build-arg K8S_RELEASE=v1.21.3 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
 		--build-arg RESTY_CLI_SHA=e5f4f3128af49ba5c4d039d0554e5ae91bbe05866f60eccfa96d3653274bff90 \
-		--build-arg LUAROCKS_VERSION=3.3.1 \
-		--build-arg LUAROCKS_SHA=837481e408f7c06b59befe7ec194537c657687d624894bca7f79034302141a34 \
+		--build-arg LUAROCKS_VERSION=3.8.0 \
+		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
 		--build-arg CHART_TESTING_VERSION=3.0.0 \
 		--build-arg YAML_LINT_VERSION=1.13.0 \
 		--build-arg YAMALE_VERSION=1.8.0 \

From b6c7061e07423938410a175a5c295497ffe5f4ba Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 23 Mar 2022 12:45:20 -0700
Subject: [PATCH 0115/1641] Bump github.com/stretchr/testify from 1.7.0 to
 1.7.1 (#8360)

Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.0 to 1.7.1.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.7.0...v1.7.1)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 3 ++-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/go.mod b/go.mod
index 98d374bf0..0def711f4 100644
--- a/go.mod
+++ b/go.mod
@@ -23,7 +23,7 @@ require (
 	github.com/prometheus/common v0.32.1
 	github.com/spf13/cobra v1.3.0
 	github.com/spf13/pflag v1.0.5
-	github.com/stretchr/testify v1.7.0
+	github.com/stretchr/testify v1.7.1
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5
 	golang.org/x/net v0.0.0-20211209124913-491a49abca63
diff --git a/go.sum b/go.sum
index 573fc3f84..f82322a19 100644
--- a/go.sum
+++ b/go.sum
@@ -636,8 +636,9 @@ github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UV
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.7.0 h1:nwc3DEeHmmLAfoZucVR881uASk0Mfjw8xYJ99tb5CcY=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.7.1 h1:5TQK59W5E3v0r2duFAb7P95B6hEeOyEnHRa8MjYSMTY=
+github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/subosito/gotenv v1.2.0/go.mod h1:N0PQaV/YGNqwC0u51sEeR/aUtSLEXKX9iv69rRypqCw=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=

From 5298448865bd6bc742ca3eacd52e8bdb9a3eda81 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 25 Mar 2022 13:21:58 -0400
Subject: [PATCH 0116/1641] downgrade to 3.14.4 and fix tag (#8386)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG                            | 2 +-
 images/nginx/rootfs/Dockerfile | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/TAG b/TAG
index 99a4aef0c..0f1acbd56 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.1.3
+v1.1.2
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index a3c4831bb..0cb0119a4 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.15.0 as builder
+FROM alpine:3.14.4 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.15.0
+FROM alpine:3.14.4
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 

From 08fcd942c7fa141d806cf689a57e0e2b65f235a7 Mon Sep 17 00:00:00 2001
From: Tomoyuki KOYAMA <tomoyk@users.noreply.github.com>
Date: Mon, 28 Mar 2022 18:29:23 +0900
Subject: [PATCH 0117/1641] fix code highlight (#8392)

---
 docs/user-guide/monitoring.md | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index b8df59980..56eac8048 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -40,7 +40,7 @@ This tutorial will show you how to install [Prometheus](https://prometheus.io/)
       service:
         annotations:
           prometheus.io/port: "10254"
-          prometheus.io/scrape: "true" 
+          prometheus.io/scrape: "true"
   ..
   ```
    - If you are **not using helm**, you will have to edit your manifests like this:
@@ -61,7 +61,6 @@ This tutorial will show you how to install [Prometheus](https://prometheus.io/)
              ..
 
        ```
-       
       - Deployment manifest:
          ```
          apiVersion: v1
@@ -76,8 +75,7 @@ This tutorial will show you how to install [Prometheus](https://prometheus.io/)
              - name: prometheus
                containerPort: 10254
                ..
-
-           ```
+         ```
 
 
 ### Deploy and configure Prometheus Server

From 9960efe1e9a9c6e944967b52e1a8a7b7b659874d Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 28 Mar 2022 10:49:23 -0400
Subject: [PATCH 0118/1641] remove (#8394)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/nginx/cloudbuild.yaml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index 0b81aa8d6..3e3d13579 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -9,7 +9,7 @@ steps:
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
       - BASE_REF=$_PULL_BASE_REF
-      - TAG=$_GIT_TAG
+      - TAG=$_PULL_BASE_SHA
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       - HOME=/root
     args:
@@ -20,3 +20,4 @@ steps:
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"
+  _PULL_BASE_SHA: '12345'

From 244d1dbcb0741b226d86c782c05ad4189af617d3 Mon Sep 17 00:00:00 2001
From: Damien Mathieu <42@dmathieu.com>
Date: Tue, 29 Mar 2022 10:28:48 +0200
Subject: [PATCH 0119/1641] ensure module directory exists before moving the
 library there

---
 images/opentelemetry/rootfs/init_module.sh | 1 +
 1 file changed, 1 insertion(+)

diff --git a/images/opentelemetry/rootfs/init_module.sh b/images/opentelemetry/rootfs/init_module.sh
index f1e4b27d7..bac5e64aa 100755
--- a/images/opentelemetry/rootfs/init_module.sh
+++ b/images/opentelemetry/rootfs/init_module.sh
@@ -18,4 +18,5 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
+mkdir -p /modules_mount/etc/nginx/modules
 cp -R /etc/nginx/modules /modules_mount/etc/nginx/modules

From 79aa43540c67037ceae494a2f655adb00671ead3 Mon Sep 17 00:00:00 2001
From: Damien Mathieu <42@dmathieu.com>
Date: Tue, 29 Mar 2022 12:07:43 +0200
Subject: [PATCH 0120/1641] fix build and upgrade otel to latest version

---
 images/opentelemetry/rootfs/Dockerfile |  2 +-
 images/opentelemetry/rootfs/build.sh   | 10 +++++-----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index cea4270d6..84f5a3e7c 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.15.0 as builder
+FROM alpine:3.14.4 as builder
 
 COPY . /
 
diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
index aab2abbd0..67d1e67b2 100755
--- a/images/opentelemetry/rootfs/build.sh
+++ b/images/opentelemetry/rootfs/build.sh
@@ -20,11 +20,11 @@ set -o pipefail
 
 export NGINX_VERSION=1.19.10
 
-# Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp/compare/v1.0.0...main
-export OPENTELEMETRY_CPP_VERSION=1.0.0
+# Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp/compare/v1.2.0...main
+export OPENTELEMETRY_CPP_VERSION=1.2.0
 
-# Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/f4850...main
-export OPENTELEMETRY_CONTRIB_COMMIT=f48500884b1b32efc456790bbcdc2e6cf7a8e630
+# Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/2656a4...main
+export OPENTELEMETRY_CONTRIB_COMMIT=2656a4072e257b6794da86ddd1b773b49f5517b3
 
 export BUILD_PATH=/tmp/build
 
@@ -63,7 +63,7 @@ get_src()
 get_src e8d0290ff561986ad7cd6c33307e12e11b137186c4403a6a5ccdb4914c082d88 \
         "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
 
-get_src 45c52498788e47131b20a4786dbb08f4390b8cb419bd3d61c88b503cafff3324 \
+get_src 360cdcbd1a235ec62119cc53956b2d31b6ff5f41d44415be53acc544709d58b8 \
         "https://github.com/open-telemetry/opentelemetry-cpp-contrib/archive/$OPENTELEMETRY_CONTRIB_COMMIT.tar.gz"
 
 # improve compilation times

From 5402d35663917ccbbf77ff48a22b8c6f77097f48 Mon Sep 17 00:00:00 2001
From: Aditya Kamath <theunrealgeek@gmail.com>
Date: Thu, 31 Mar 2022 03:37:01 -0700
Subject: [PATCH 0121/1641] Add execute permissions to nginx image
 entrypoint.sh (#8403)

---
 images/nginx/rootfs/entrypoint.sh | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 mode change 100644 => 100755 images/nginx/rootfs/entrypoint.sh

diff --git a/images/nginx/rootfs/entrypoint.sh b/images/nginx/rootfs/entrypoint.sh
old mode 100644
new mode 100755

From 87979099fd53ea1557da4b72cbc07a0e5fd1373b Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 31 Mar 2022 16:55:00 +0530
Subject: [PATCH 0122/1641] set execute bit on entrypoint.sh (#8404)

---
 images/nginx/rootfs/Dockerfile | 55 +++++++++++++++++-----------------
 1 file changed, 28 insertions(+), 27 deletions(-)

diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 0cb0119a4..ccf70f143 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -33,41 +33,42 @@ COPY --from=builder /opt /opt
 COPY --from=builder /etc/nginx /etc/nginx
 COPY --from=builder entrypoint.sh /usr/local/entrypoint.sh
 
-RUN apk update \
+RUN chmod +x /usr/local/entrypoint.sh \
+  && apk update \
   && apk upgrade \
   && apk add -U --no-cache \
-    bash \
-    openssl \
-    pcre \
-    zlib \
-    geoip \
-    curl \
-    ca-certificates \
-    patch \
-    yajl \
-    lmdb \
-    libxml2 \
-    libmaxminddb \
-    yaml-cpp \
-    dumb-init \
-    nano \
-    tzdata \
+  bash \
+  openssl \
+  pcre \
+  zlib \
+  geoip \
+  curl \
+  ca-certificates \
+  patch \
+  yajl \
+  lmdb \
+  libxml2 \
+  libmaxminddb \
+  yaml-cpp \
+  dumb-init \
+  nano \
+  tzdata \
   && ln -s /usr/local/nginx/sbin/nginx /sbin/nginx \
   && adduser -S -D -H -u 101 -h /usr/local/nginx \
-    -s /sbin/nologin -G www-data -g www-data www-data \
+  -s /sbin/nologin -G www-data -g www-data www-data \
   && bash -eu -c ' \
   writeDirs=( \
-    /var/log/nginx \
-    /var/lib/nginx/body \
-    /var/lib/nginx/fastcgi \
-    /var/lib/nginx/proxy \
-    /var/lib/nginx/scgi \
-    /var/lib/nginx/uwsgi \
-    /var/log/audit \
+  /var/log/nginx \
+  /var/lib/nginx/body \
+  /var/lib/nginx/fastcgi \
+  /var/lib/nginx/proxy \
+  /var/lib/nginx/scgi \
+  /var/lib/nginx/uwsgi \
+  /var/log/audit \
   ); \
   for dir in "${writeDirs[@]}"; do \
-    mkdir -p ${dir}; \
-    chown -R www-data.www-data ${dir}; \
+  mkdir -p ${dir}; \
+  chown -R www-data.www-data ${dir}; \
   done'
 
 EXPOSE 80 443

From f1cb2b73cae4f68f5fcf7df74654adef045910ff Mon Sep 17 00:00:00 2001
From: Aditya Kamath <theunrealgeek@gmail.com>
Date: Thu, 31 Mar 2022 13:43:04 -0700
Subject: [PATCH 0123/1641] update nginx base image to new alpine 3.14.4 build
 - try 2 (#8409)

* update nginx base image to new alpine 3.14.4 build

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update test image

Signed-off-by: James Strong <strong.james.e@gmail.com>

* Update nginx base image

Signed-off-by: Aditya Kamath <theunrealgeek@gmail.com>

Co-authored-by: James Strong <strong.james.e@gmail.com>
---
 Makefile                         | 2 +-
 images/echo/Makefile             | 2 +-
 images/nginx/README.md           | 2 +-
 images/nginx/rc.yaml             | 2 +-
 images/test-runner/Makefile      | 2 +-
 test/e2e-image/Dockerfile        | 2 +-
 test/e2e/framework/deployment.go | 2 +-
 7 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/Makefile b/Makefile
index b1c90e0f1..d7ae2adfb 100644
--- a/Makefile
+++ b/Makefile
@@ -51,7 +51,7 @@ endif
 
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
-BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:v20210926-g5662db450@sha256:1ef404b5e8741fe49605a1f40c3fdd8ef657aecdb9526ea979d1672eeabd0cd9
+BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:5402d35663917ccbbf77ff48a22b8c6f77097f48@sha256:ec8a104df307f5c6d68157b7ac8e5e1e2c2f0ea07ddf25bb1c6c43c67e351180
 
 GOARCH=$(ARCH)
 
diff --git a/images/echo/Makefile b/images/echo/Makefile
index 9131d608d..01d532731 100644
--- a/images/echo/Makefile
+++ b/images/echo/Makefile
@@ -36,7 +36,7 @@ build: ensure-buildx
 		--platform=${PLATFORMS} $(OUTPUT) \
 		--progress=$(PROGRESS) \
 		--pull \
-		--build-arg BASE_IMAGE=k8s.gcr.io/ingress-nginx/nginx:v20210926-g5662db450@sha256:1ef404b5e8741fe49605a1f40c3fdd8ef657aecdb9526ea979d1672eeabd0cd9 \
+		--build-arg BASE_IMAGE=k8s.gcr.io/ingress-nginx/nginx:5402d35663917ccbbf77ff48a22b8c6f77097f48@sha256:ec8a104df307f5c6d68157b7ac8e5e1e2c2f0ea07ddf25bb1c6c43c67e351180 \
 		--build-arg LUAROCKS_VERSION=3.8.0 \
 		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
 		-t $(IMAGE):$(TAG) rootfs
diff --git a/images/nginx/README.md b/images/nginx/README.md
index 376948743..8bd1469dd 100644
--- a/images/nginx/README.md
+++ b/images/nginx/README.md
@@ -20,6 +20,6 @@ This image provides a default configuration file with no backend servers.
 _Using docker_
 
 ```console
-docker run -v /some/nginx.conf:/etc/nginx/nginx.conf:ro k8s.gcr.io/ingress-nginx/nginx:v20210926-g5662db450@sha256:1ef404b5e8741fe49605a1f40c3fdd8ef657aecdb9526ea979d1672eeabd0cd9
+docker run -v /some/nginx.conf:/etc/nginx/nginx.conf:ro k8s.gcr.io/ingress-nginx/nginx:5402d35663917ccbbf77ff48a22b8c6f77097f48@sha256:ec8a104df307f5c6d68157b7ac8e5e1e2c2f0ea07ddf25bb1c6c43c67e351180
 ```
 
diff --git a/images/nginx/rc.yaml b/images/nginx/rc.yaml
index 043d7bfe4..cf9c59d15 100644
--- a/images/nginx/rc.yaml
+++ b/images/nginx/rc.yaml
@@ -38,7 +38,7 @@ spec:
     spec:
       containers:
         - name: nginx
-          image: k8s.gcr.io/ingress-nginx/nginx:v20210926-g5662db450@sha256:1ef404b5e8741fe49605a1f40c3fdd8ef657aecdb9526ea979d1672eeabd0cd9
+          image: k8s.gcr.io/ingress-nginx/nginx:5402d35663917ccbbf77ff48a22b8c6f77097f48@sha256:ec8a104df307f5c6d68157b7ac8e5e1e2c2f0ea07ddf25bb1c6c43c67e351180
           ports:
             - containerPort: 80
             - containerPort: 443
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index bf7df8625..038d689b7 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -23,7 +23,7 @@ REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-runner
 
-NGINX_BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:v20210926-g5662db450@sha256:1ef404b5e8741fe49605a1f40c3fdd8ef657aecdb9526ea979d1672eeabd0cd9
+NGINX_BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:5402d35663917ccbbf77ff48a22b8c6f77097f48@sha256:ec8a104df307f5c6d68157b7ac8e5e1e2c2f0ea07ddf25bb1c6c43c67e351180
 
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index e53d02242..4daece323 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,6 +1,6 @@
 FROM k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220110-gfd820db46@sha256:273f7d9b1b2297cd96b4d51600e45d932186a1cc79d00d179dfb43654112fe8f AS BASE
 
-FROM alpine:3.12
+FROM alpine:3.14.4
 
 RUN apk add -U --no-cache \
     ca-certificates \
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 3775af8bc..0e886aff5 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -38,7 +38,7 @@ const SlowEchoService = "slow-echo"
 const HTTPBinService = "httpbin"
 
 // NginxBaseImage use for testing
-const NginxBaseImage = "k8s.gcr.io/ingress-nginx/nginx:v20210926-g5662db450@sha256:1ef404b5e8741fe49605a1f40c3fdd8ef657aecdb9526ea979d1672eeabd0cd9"
+const NginxBaseImage = "k8s.gcr.io/ingress-nginx/nginx:5402d35663917ccbbf77ff48a22b8c6f77097f48@sha256:ec8a104df307f5c6d68157b7ac8e5e1e2c2f0ea07ddf25bb1c6c43c67e351180"
 
 type deploymentOptions struct {
 	namespace string

From e5b028a75d2f905117fe278c240632e3307b367a Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 31 Mar 2022 17:08:30 -0400
Subject: [PATCH 0124/1641] update tag to 1.1.3 to kick off controller-v1.1.3
 build

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 0f1acbd56..99a4aef0c 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.1.2
+v1.1.3

From 230d8e67921c5747cc29baf230ba09431bcbfc4c Mon Sep 17 00:00:00 2001
From: David Jansen <39294842+dajsn@users.noreply.github.com>
Date: Fri, 1 Apr 2022 03:18:38 +0200
Subject: [PATCH 0125/1641] doc: fix deployment manifest example (#8407)

---
 docs/user-guide/monitoring.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index 56eac8048..048607cd5 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -64,8 +64,8 @@ This tutorial will show you how to install [Prometheus](https://prometheus.io/)
       - Deployment manifest:
          ```
          apiVersion: v1
-         metadata:
          kind: Deployment
+         metadata:
           annotations:
             prometheus.io/scrape: "true"
             prometheus.io/port: "10254"

From b9f50e691d36af5ad1194a6855fb1df0c0d8af53 Mon Sep 17 00:00:00 2001
From: LongWuYuan <longwuyuan@gmail.com>
Date: Fri, 1 Apr 2022 17:07:08 +0530
Subject: [PATCH 0126/1641] base img update for e2e-test-runner & opentelemetry

---
 build/run-in-docker.sh           |  2 +-
 charts/ingress-nginx/values.yaml |  4 ++--
 test/e2e-image/Dockerfile        | 14 +++++++-------
 3 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index e89abe9d8..60c566941 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -37,7 +37,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220110-gfd820db46@sha256:273f7d9b1b2297cd96b4d51600e45d932186a1cc79d00d179dfb43654112fe8f}
+E2E_IMAGE=${E2E_IMAGE:-k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220331-controller-v1.1.2-31-gf1cb2b73c@sha256:baa326f5c726d65be828852943a259c1f0572883590b9081b7e8fa982d64d96e}
 
 DOCKER_OPTS=${DOCKER_OPTS:-}
 DOCKER_IN_DOCKER_ENABLED=${DOCKER_IN_DOCKER_ENABLED:-}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index a8b002516..f355e5eaa 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -575,8 +575,8 @@ controller:
 
   extraModules: []
   ## Modules, which are mounted into the core nginx image
-  # - name: opentelemetry
-  #   image: busybox
+  # - name: opentelemetry:v20220331-controller-v1.1.2-36-g7517b7ecf@sha256:e3f635474b5da24ccd0ea6b078fb190dae68b8b4a44b52bea19ec2561f0102ec
+  #   image: k8s.gcr.io/ingress-nginx/opentelemetry:
   #
   # The image must contain a `/usr/local/bin/init_module.sh` executable, which
   # will be executed as initContainers, to move its config files within the
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 4daece323..002a002cd 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,14 +1,14 @@
-FROM k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220110-gfd820db46@sha256:273f7d9b1b2297cd96b4d51600e45d932186a1cc79d00d179dfb43654112fe8f AS BASE
+FROM k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220331-controller-v1.1.2-31-gf1cb2b73c@sha256:baa326f5c726d65be828852943a259c1f0572883590b9081b7e8fa982d64d96e AS BASE
 
 FROM alpine:3.14.4
 
 RUN apk add -U --no-cache \
-    ca-certificates \
-    bash \
-    curl \
-    tzdata \
-    libc6-compat \
-    openssl
+  ca-certificates \
+  bash \
+  curl \
+  tzdata \
+  libc6-compat \
+  openssl
 
 COPY --from=BASE /go/bin/ginkgo /usr/local/bin/
 COPY --from=BASE /usr/local/bin/helm /usr/local/bin/

From ac3b86b2c386c9a27297fdfb91ebf09dbe6056ed Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 1 Apr 2022 12:14:46 -0400
Subject: [PATCH 0127/1641] release 1.1.3 details (#8411)

* release 1.1.3 details
fix the readme with right sha and version
remove helm label
fix issue 8329
fix the 1.20 service after the fix for ipv6
udpate readme and change for patches

* update helm doc

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .gitignore                                    |   1 +
 Changelog.md                                  |  38 +++++++
 README.md                                     |  32 +++---
 charts/ingress-nginx/Chart.yaml               |  11 +-
 charts/ingress-nginx/README.md                |   6 +-
 .../templates/controller-service.yaml         |   4 +-
 charts/ingress-nginx/values.yaml              |   4 +-
 deploy/static/provider/aws/1.19/deploy.yaml   | 103 ++++-------------
 .../provider/aws/1.19/kustomization.yaml      |   2 +-
 deploy/static/provider/aws/1.20/deploy.yaml   | 106 ++++-------------
 .../provider/aws/1.20/kustomization.yaml      |   2 +-
 deploy/static/provider/aws/1.21/deploy.yaml   | 103 ++++-------------
 .../provider/aws/1.21/kustomization.yaml      |   2 +-
 deploy/static/provider/aws/1.22/deploy.yaml   | 103 ++++-------------
 .../provider/aws/1.22/kustomization.yaml      |   2 +-
 deploy/static/provider/aws/1.23/deploy.yaml   | 103 ++++-------------
 .../provider/aws/1.23/kustomization.yaml      |   2 +-
 deploy/static/provider/aws/deploy.yaml        | 107 ++++--------------
 deploy/static/provider/aws/kustomization.yaml |   2 +-
 .../nlb-with-tls-termination/1.19/deploy.yaml | 103 ++++-------------
 .../1.19/kustomization.yaml                   |   2 +-
 .../nlb-with-tls-termination/1.20/deploy.yaml | 106 ++++-------------
 .../1.20/kustomization.yaml                   |   2 +-
 .../nlb-with-tls-termination/1.21/deploy.yaml | 103 ++++-------------
 .../1.21/kustomization.yaml                   |   2 +-
 .../nlb-with-tls-termination/1.22/deploy.yaml | 103 ++++-------------
 .../1.22/kustomization.yaml                   |   2 +-
 .../nlb-with-tls-termination/1.23/deploy.yaml | 103 ++++-------------
 .../1.23/kustomization.yaml                   |   2 +-
 .../aws/nlb-with-tls-termination/deploy.yaml  | 107 ++++--------------
 .../kustomization.yaml                        |   2 +-
 .../provider/baremetal/1.19/deploy.yaml       | 103 ++++-------------
 .../baremetal/1.19/kustomization.yaml         |   2 +-
 .../provider/baremetal/1.20/deploy.yaml       | 106 ++++-------------
 .../baremetal/1.20/kustomization.yaml         |   2 +-
 .../provider/baremetal/1.21/deploy.yaml       | 103 ++++-------------
 .../baremetal/1.21/kustomization.yaml         |   2 +-
 .../provider/baremetal/1.22/deploy.yaml       | 103 ++++-------------
 .../baremetal/1.22/kustomization.yaml         |   2 +-
 .../provider/baremetal/1.23/deploy.yaml       | 103 ++++-------------
 .../baremetal/1.23/kustomization.yaml         |   2 +-
 deploy/static/provider/baremetal/deploy.yaml  | 107 ++++--------------
 .../provider/baremetal/kustomization.yaml     |   2 +-
 deploy/static/provider/cloud/1.19/deploy.yaml | 103 ++++-------------
 .../provider/cloud/1.19/kustomization.yaml    |   2 +-
 deploy/static/provider/cloud/1.20/deploy.yaml | 106 ++++-------------
 .../provider/cloud/1.20/kustomization.yaml    |   2 +-
 deploy/static/provider/cloud/1.21/deploy.yaml | 103 ++++-------------
 .../provider/cloud/1.21/kustomization.yaml    |   2 +-
 deploy/static/provider/cloud/1.22/deploy.yaml | 103 ++++-------------
 .../provider/cloud/1.22/kustomization.yaml    |   2 +-
 deploy/static/provider/cloud/1.23/deploy.yaml | 103 ++++-------------
 .../provider/cloud/1.23/kustomization.yaml    |   2 +-
 deploy/static/provider/cloud/deploy.yaml      | 107 ++++--------------
 .../static/provider/cloud/kustomization.yaml  |   2 +-
 deploy/static/provider/do/1.19/deploy.yaml    | 103 ++++-------------
 .../provider/do/1.19/kustomization.yaml       |   2 +-
 deploy/static/provider/do/1.20/deploy.yaml    | 106 ++++-------------
 .../provider/do/1.20/kustomization.yaml       |   2 +-
 deploy/static/provider/do/1.21/deploy.yaml    | 103 ++++-------------
 .../provider/do/1.21/kustomization.yaml       |   2 +-
 deploy/static/provider/do/1.22/deploy.yaml    | 103 ++++-------------
 .../provider/do/1.22/kustomization.yaml       |   2 +-
 deploy/static/provider/do/1.23/deploy.yaml    | 103 ++++-------------
 .../provider/do/1.23/kustomization.yaml       |   2 +-
 deploy/static/provider/do/deploy.yaml         | 107 ++++--------------
 deploy/static/provider/do/kustomization.yaml  |   2 +-
 .../static/provider/exoscale/1.19/deploy.yaml | 103 ++++-------------
 .../provider/exoscale/1.19/kustomization.yaml |   2 +-
 .../static/provider/exoscale/1.20/deploy.yaml | 106 ++++-------------
 .../provider/exoscale/1.20/kustomization.yaml |   2 +-
 .../static/provider/exoscale/1.21/deploy.yaml | 103 ++++-------------
 .../provider/exoscale/1.21/kustomization.yaml |   2 +-
 .../static/provider/exoscale/1.22/deploy.yaml | 103 ++++-------------
 .../provider/exoscale/1.22/kustomization.yaml |   2 +-
 .../static/provider/exoscale/1.23/deploy.yaml | 103 ++++-------------
 .../provider/exoscale/1.23/kustomization.yaml |   2 +-
 deploy/static/provider/exoscale/deploy.yaml   | 107 ++++--------------
 .../provider/exoscale/kustomization.yaml      |   2 +-
 deploy/static/provider/kind/1.19/deploy.yaml  | 103 ++++-------------
 .../provider/kind/1.19/kustomization.yaml     |   2 +-
 deploy/static/provider/kind/1.20/deploy.yaml  | 106 ++++-------------
 .../provider/kind/1.20/kustomization.yaml     |   2 +-
 deploy/static/provider/kind/1.21/deploy.yaml  | 103 ++++-------------
 .../provider/kind/1.21/kustomization.yaml     |   2 +-
 deploy/static/provider/kind/1.22/deploy.yaml  | 103 ++++-------------
 .../provider/kind/1.22/kustomization.yaml     |   2 +-
 deploy/static/provider/kind/1.23/deploy.yaml  | 103 ++++-------------
 .../provider/kind/1.23/kustomization.yaml     |   2 +-
 deploy/static/provider/kind/deploy.yaml       | 107 ++++--------------
 .../static/provider/kind/kustomization.yaml   |   2 +-
 deploy/static/provider/scw/1.19/deploy.yaml   | 103 ++++-------------
 .../provider/scw/1.19/kustomization.yaml      |   2 +-
 deploy/static/provider/scw/1.20/deploy.yaml   | 106 ++++-------------
 .../provider/scw/1.20/kustomization.yaml      |   2 +-
 deploy/static/provider/scw/1.21/deploy.yaml   | 103 ++++-------------
 .../provider/scw/1.21/kustomization.yaml      |   2 +-
 deploy/static/provider/scw/1.22/deploy.yaml   | 103 ++++-------------
 .../provider/scw/1.22/kustomization.yaml      |   2 +-
 deploy/static/provider/scw/1.23/deploy.yaml   | 103 ++++-------------
 .../provider/scw/1.23/kustomization.yaml      |   2 +-
 deploy/static/provider/scw/deploy.yaml        | 107 ++++--------------
 deploy/static/provider/scw/kustomization.yaml |   2 +-
 docs/deploy/index.md                          |  18 +--
 hack/generate-deploy-scripts.sh               |   8 +-
 .../static-kustomization-template.yaml        |   2 +-
 stable.txt                                    |   2 +-
 107 files changed, 1139 insertions(+), 4083 deletions(-)

diff --git a/.gitignore b/.gitignore
index 921ba6aec..0943c3b1a 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,3 +1,4 @@
+helm-docs
 # OSX
 ._*
 .DS_Store
diff --git a/Changelog.md b/Changelog.md
index 40a4aaaf9..0f3656b22 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -1,5 +1,43 @@
 # Changelog
 
+### 1.1.3
+
+**Image:**
+- k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+
+This release upgrades Alpine to 3.14.4 and nginx to 1.19.10 
+
+Patches [OpenSSL CVE-2022-0778](https://github.com/kubernetes/ingress-nginx/issues/8339)
+
+Patches [Libxml2 CVE-2022-23308](https://github.com/kubernetes/ingress-nginx/issues/8321)
+
+_Changes:_
+
+[8415](https://github.com/kubernetes/ingress-nginx/pull/8415) base img update for e2e-test-runner & opentelemetry
+[8403](https://github.com/kubernetes/ingress-nginx/pull/8403) Add execute permissions to nginx image entrypoint.sh
+[8392](https://github.com/kubernetes/ingress-nginx/pull/8392) fix document for monitoring
+[8386](https://github.com/kubernetes/ingress-nginx/pull/8386) downgrade to 3.14.4 and fix tag
+[8379](https://github.com/kubernetes/ingress-nginx/pull/8379) bump luarocks to 3.8.0
+[8368](https://github.com/kubernetes/ingress-nginx/pull/8368) Updated semver in install docs URLs
+[8360](https://github.com/kubernetes/ingress-nginx/pull/8360) Bump github.com/stretchr/testify from 1.7.0 to 1.7.1
+[8334](https://github.com/kubernetes/ingress-nginx/pull/8334) Pinned GitHub workflows by SHA
+[8324](https://github.com/kubernetes/ingress-nginx/pull/8324) Added missing "repo" option on "helm upgrade" command
+[8315](https://github.com/kubernetes/ingress-nginx/pull/8315) Fix 50% split between canary and mainline tests
+[8311](https://github.com/kubernetes/ingress-nginx/pull/8311) leaving it the git tag
+[8307](https://github.com/kubernetes/ingress-nginx/pull/8307) Nginx v1.19.10
+[8302](https://github.com/kubernetes/ingress-nginx/pull/8302) docs: fix changelog formatting for 1.1.2
+[8300](https://github.com/kubernetes/ingress-nginx/pull/8300) Names cannot contain _ (underscore)! So I changed it to -.
+[8288](https://github.com/kubernetes/ingress-nginx/pull/8288) [docs] Missing annotations
+[8287](https://github.com/kubernetes/ingress-nginx/pull/8287) Add the shareProcessNamespace as a configurable setting in the helm chart
+[8286](https://github.com/kubernetes/ingress-nginx/pull/8286) Fix OpenTelemetry sidecar image build
+[8281](https://github.com/kubernetes/ingress-nginx/pull/8281) force prow job by changing something in images/ot dir
+[8273](https://github.com/kubernetes/ingress-nginx/pull/8273) Issue#8241
+[8267](https://github.com/kubernetes/ingress-nginx/pull/8267) Add fsGroup value to admission-webhooks/job-patch charts
+[8262](https://github.com/kubernetes/ingress-nginx/pull/8262) Updated confusing error
+[8258](https://github.com/kubernetes/ingress-nginx/pull/8258) remove 0.46.0 from supported versions table
+[8256](https://github.com/kubernetes/ingress-nginx/pull/8256) fix: deny locations with invalid auth-url annotation
+[8253](https://github.com/kubernetes/ingress-nginx/pull/8253) Add a certificate info metric
+
 ### 1.1.2
 
 **Image:** 
diff --git a/README.md b/README.md
index 96268a8f9..c653e4c70 100644
--- a/README.md
+++ b/README.md
@@ -31,22 +31,22 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 
 | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
-| v1.1.2                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         |  1.19.9†      |
-| v1.1.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         |  1.19.9†      |
-| v1.1.0                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
-| v1.0.5                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
-| v1.0.4                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
-| v1.0.3                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
-| v1.0.2                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
-| v1.0.1                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         |  1.19.9†      |
-| v1.0.0                | 1.22, 1.21, 1.20, 1.19       | 3.13.5         |  1.20.1       |
-| v0.50.0               | 1.21, 1.20, 1.19             | 3.14.2         |  1.19.9†      |
-| v0.49.3               | 1.21, 1.20, 1.19             | 3.14.2         |  1.19.9†      |
-| v0.49.2               | 1.21, 1.20, 1.19             | 3.14.2         |  1.19.9†      |
-| v0.49.1               | 1.21, 1.20, 1.19             | 3.14.2         |  1.19.9†      |
-| v0.49.0               | 1.21, 1.20, 1.19             | 3.13.5         |  1.20.1       |
-| v0.48.1               | 1.21, 1.20, 1.19             | 3.13.5         |  1.20.1       |
-| v0.47.0               | 1.21, 1.20, 1.19             | 3.13.5         |  1.20.1       |
+| v1.1.3                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.4         | 1.19.10†      |
+| v1.1.2                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       |
+| v1.1.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       |
+| v1.1.0                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
+| v1.0.5                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
+| v1.0.4                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
+| v1.0.3                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
+| v1.0.2                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
+| v1.0.1                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
+| v1.0.0                | 1.22, 1.21, 1.20, 1.19       | 3.13.5         | 1.20.1        |
+| v0.50.0               | 1.21, 1.20, 1.19             | 3.14.2         | 1.19.9†       |
+| v0.49.3               | 1.21, 1.20, 1.19             | 3.14.2         | 1.19.9†       |
+| v0.49.2               | 1.21, 1.20, 1.19             | 3.14.2         | 1.19.9†       |
+| v0.49.1               | 1.21, 1.20, 1.19             | 3.14.2         | 1.19.9†       |
+| v0.49.0               | 1.21, 1.20, 1.19             | 3.13.5         | 1.20.1        |
+| v0.48.1               | 1.21, 1.20, 1.19             | 3.13.5         | 1.20.1        |
 
 † _This build is [patched against CVE-2021-23017](https://github.com/openresty/openresty/commit/4b5ec7edd78616f544abc194308e0cf4b788725b#diff-42ef841dc27fe0b5aa2d06bd31308bb63a59cdcddcbcddd917248349d22020a3)._
 
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 69db0be31..f8203e33e 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,8 +2,8 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.0.18
-appVersion: 1.1.2
+version: 4.0.19
+appVersion: 1.1.3
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
@@ -24,8 +24,5 @@ annotations:
   # List of changes for the release in artifacthub.io
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
-    - "#8253 Add a certificate info metric"
-    - "#8225 fix inconsistent-label-cardinality for prometheus metrics: nginx_ingress_controller_requests"
-    - "#8162 Versioned static manifests"
-    - "#8159 Adding some geoip variables and default values"
-    - "#8221 Do not validate ingresses with unknown ingress class in admission webhook endpoint"
+    - "#8307 Nginx v1.19.10"
+    - "#8386 Alpine 3.14.4"
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index c0ef8109d..0647db915 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.0.18](https://img.shields.io/badge/Version-4.0.18-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.1.2](https://img.shields.io/badge/AppVersion-1.1.2-informational?style=flat-square)
+![Version: 4.0.19](https://img.shields.io/badge/Version-4.0.19-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.1.3](https://img.shields.io/badge/AppVersion-1.1.3-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -306,12 +306,12 @@ Kubernetes: `>=1.19.0-0`
 | controller.hostPort.ports.https | int | `443` | 'hostPort' https port |
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
-| controller.image.digest | string | `"sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c"` |  |
+| controller.image.digest | string | `"sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"k8s.gcr.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.1.2"` |  |
+| controller.image.tag | string | `"v1.1.3"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/templates/controller-service.yaml b/charts/ingress-nginx/templates/controller-service.yaml
index 05fb2041e..0f47f131c 100644
--- a/charts/ingress-nginx/templates/controller-service.yaml
+++ b/charts/ingress-nginx/templates/controller-service.yaml
@@ -37,12 +37,12 @@ spec:
 {{- if .Values.controller.service.healthCheckNodePort }}
   healthCheckNodePort: {{ .Values.controller.service.healthCheckNodePort }}
 {{- end }}
-{{- if semverCompare ">=1.20.0-0" .Capabilities.KubeVersion.Version -}}
+{{- if semverCompare ">=1.21.0-0" .Capabilities.KubeVersion.Version -}}
 {{- if .Values.controller.service.ipFamilyPolicy }}
   ipFamilyPolicy: {{ .Values.controller.service.ipFamilyPolicy }}
 {{- end }}
 {{- end }}
-{{- if semverCompare ">=1.20.0-0" .Capabilities.KubeVersion.Version -}}
+{{- if semverCompare ">=1.21.0-0" .Capabilities.KubeVersion.Version -}}
 {{- if .Values.controller.service.ipFamilies }}
   ipFamilies: {{ toYaml .Values.controller.service.ipFamilies | nindent 4 }}
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index f355e5eaa..cea8cebe8 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -21,8 +21,8 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.1.2"
-    digest: sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+    tag: "v1.1.3"
+    digest: sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
diff --git a/deploy/static/provider/aws/1.19/deploy.yaml b/deploy/static/provider/aws/1.19/deploy.yaml
index 710cfcafd..30d40e77b 100644
--- a/deploy/static/provider/aws/1.19/deploy.yaml
+++ b/deploy/static/provider/aws/1.19/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -356,11 +319,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,11 +347,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -410,11 +369,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -454,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,17 +478,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -540,11 +492,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -575,17 +525,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -594,11 +539,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -634,11 +577,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -649,11 +590,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.19/kustomization.yaml b/deploy/static/provider/aws/1.19/kustomization.yaml
index d18ef3896..18c6bb6a3 100644
--- a/deploy/static/provider/aws/1.19/kustomization.yaml
+++ b/deploy/static/provider/aws/1.19/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws
 # ```
 
 resources:
diff --git a/deploy/static/provider/aws/1.20/deploy.yaml b/deploy/static/provider/aws/1.20/deploy.yaml
index 440861a53..0afe26fa2 100644
--- a/deploy/static/provider/aws/1.20/deploy.yaml
+++ b/deploy/static/provider/aws/1.20/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -356,18 +319,13 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -391,11 +349,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -416,11 +372,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -460,7 +414,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -527,17 +481,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -546,11 +495,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -581,17 +528,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -600,11 +542,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -640,11 +580,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -655,11 +593,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.20/kustomization.yaml b/deploy/static/provider/aws/1.20/kustomization.yaml
index d18ef3896..18c6bb6a3 100644
--- a/deploy/static/provider/aws/1.20/kustomization.yaml
+++ b/deploy/static/provider/aws/1.20/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws
 # ```
 
 resources:
diff --git a/deploy/static/provider/aws/1.21/deploy.yaml b/deploy/static/provider/aws/1.21/deploy.yaml
index 440861a53..b73d21f8f 100644
--- a/deploy/static/provider/aws/1.21/deploy.yaml
+++ b/deploy/static/provider/aws/1.21/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -356,11 +319,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,11 +352,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -416,11 +375,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -460,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -527,17 +484,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -546,11 +498,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -581,17 +531,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -600,11 +545,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -640,11 +583,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -655,11 +596,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.21/kustomization.yaml b/deploy/static/provider/aws/1.21/kustomization.yaml
index d18ef3896..18c6bb6a3 100644
--- a/deploy/static/provider/aws/1.21/kustomization.yaml
+++ b/deploy/static/provider/aws/1.21/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws
 # ```
 
 resources:
diff --git a/deploy/static/provider/aws/1.22/deploy.yaml b/deploy/static/provider/aws/1.22/deploy.yaml
index 440861a53..b73d21f8f 100644
--- a/deploy/static/provider/aws/1.22/deploy.yaml
+++ b/deploy/static/provider/aws/1.22/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -356,11 +319,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,11 +352,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -416,11 +375,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -460,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -527,17 +484,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -546,11 +498,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -581,17 +531,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -600,11 +545,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -640,11 +583,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -655,11 +596,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.22/kustomization.yaml b/deploy/static/provider/aws/1.22/kustomization.yaml
index d18ef3896..18c6bb6a3 100644
--- a/deploy/static/provider/aws/1.22/kustomization.yaml
+++ b/deploy/static/provider/aws/1.22/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws
 # ```
 
 resources:
diff --git a/deploy/static/provider/aws/1.23/deploy.yaml b/deploy/static/provider/aws/1.23/deploy.yaml
index 440861a53..b73d21f8f 100644
--- a/deploy/static/provider/aws/1.23/deploy.yaml
+++ b/deploy/static/provider/aws/1.23/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -356,11 +319,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,11 +352,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -416,11 +375,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -460,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -527,17 +484,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -546,11 +498,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -581,17 +531,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -600,11 +545,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -640,11 +583,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -655,11 +596,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.23/kustomization.yaml b/deploy/static/provider/aws/1.23/kustomization.yaml
index d18ef3896..18c6bb6a3 100644
--- a/deploy/static/provider/aws/1.23/kustomization.yaml
+++ b/deploy/static/provider/aws/1.23/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws
 # ```
 
 resources:
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 374823462..0afe26fa2 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -1,4 +1,3 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
@@ -14,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -126,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -153,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -219,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -246,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -265,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -292,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -310,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -357,18 +319,13 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -392,11 +349,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -417,11 +372,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -461,7 +414,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -528,17 +481,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -547,11 +495,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -582,17 +528,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -601,11 +542,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -641,11 +580,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -656,11 +593,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/kustomization.yaml b/deploy/static/provider/aws/kustomization.yaml
index d18ef3896..18c6bb6a3 100644
--- a/deploy/static/provider/aws/kustomization.yaml
+++ b/deploy/static/provider/aws/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws
 # ```
 
 resources:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
index 426c72b06..e2232bd6e 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -345,11 +310,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -365,11 +328,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -395,11 +356,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -419,11 +378,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -463,7 +420,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -533,17 +490,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -552,11 +504,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -587,17 +537,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -606,11 +551,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -646,11 +589,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -661,11 +602,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/kustomization.yaml
index ca2086ea9..51c1513c9 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/kustomization.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws/nlb-with-tls-termination?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws/nlb-with-tls-termination
 # ```
 
 resources:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
index 21ea91d49..07be32ffe 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -345,11 +310,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -365,18 +328,13 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -400,11 +358,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -425,11 +381,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -469,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -539,17 +493,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -558,11 +507,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -593,17 +540,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -612,11 +554,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -652,11 +592,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -667,11 +605,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/kustomization.yaml
index ca2086ea9..51c1513c9 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/kustomization.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws/nlb-with-tls-termination?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws/nlb-with-tls-termination
 # ```
 
 resources:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
index 21ea91d49..d86ddc4fd 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -345,11 +310,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -365,11 +328,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -400,11 +361,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -425,11 +384,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -469,7 +426,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -539,17 +496,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -558,11 +510,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -593,17 +543,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -612,11 +557,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -652,11 +595,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -667,11 +608,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/kustomization.yaml
index ca2086ea9..51c1513c9 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/kustomization.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws/nlb-with-tls-termination?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws/nlb-with-tls-termination
 # ```
 
 resources:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
index 21ea91d49..d86ddc4fd 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -345,11 +310,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -365,11 +328,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -400,11 +361,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -425,11 +384,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -469,7 +426,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -539,17 +496,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -558,11 +510,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -593,17 +543,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -612,11 +557,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -652,11 +595,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -667,11 +608,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/kustomization.yaml
index ca2086ea9..51c1513c9 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/kustomization.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws/nlb-with-tls-termination?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws/nlb-with-tls-termination
 # ```
 
 resources:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
index 21ea91d49..d86ddc4fd 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -345,11 +310,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -365,11 +328,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -400,11 +361,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -425,11 +384,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -469,7 +426,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -539,17 +496,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -558,11 +510,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -593,17 +543,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -612,11 +557,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -652,11 +595,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -667,11 +608,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/kustomization.yaml
index ca2086ea9..51c1513c9 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/kustomization.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws/nlb-with-tls-termination?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws/nlb-with-tls-termination
 # ```
 
 resources:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 97c4697d5..07be32ffe 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -1,4 +1,3 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
@@ -14,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -126,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -153,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -219,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -246,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -265,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -292,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -310,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -346,11 +310,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -366,18 +328,13 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -401,11 +358,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -426,11 +381,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -470,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -540,17 +493,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -559,11 +507,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -594,17 +540,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -613,11 +554,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -653,11 +592,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -668,11 +605,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/kustomization.yaml
index ca2086ea9..51c1513c9 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/kustomization.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/aws/nlb-with-tls-termination?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws/nlb-with-tls-termination
 # ```
 
 resources:
diff --git a/deploy/static/provider/baremetal/1.19/deploy.yaml b/deploy/static/provider/baremetal/1.19/deploy.yaml
index c03765456..49c11b1bd 100644
--- a/deploy/static/provider/baremetal/1.19/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.19/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,11 +315,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -381,11 +342,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,11 +364,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -448,7 +405,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -515,17 +472,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,11 +486,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -569,17 +519,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -588,11 +533,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -628,11 +571,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -643,11 +584,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.19/kustomization.yaml b/deploy/static/provider/baremetal/1.19/kustomization.yaml
index d13af0f82..d585f85c6 100644
--- a/deploy/static/provider/baremetal/1.19/kustomization.yaml
+++ b/deploy/static/provider/baremetal/1.19/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/baremetal?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/baremetal
 # ```
 
 resources:
diff --git a/deploy/static/provider/baremetal/1.20/deploy.yaml b/deploy/static/provider/baremetal/1.20/deploy.yaml
index 943d0ff49..aa9898d99 100644
--- a/deploy/static/provider/baremetal/1.20/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.20/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,17 +315,12 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -386,11 +344,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -411,11 +367,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -454,7 +408,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,17 +475,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -540,11 +489,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -575,17 +522,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -594,11 +536,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -634,11 +574,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -649,11 +587,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.20/kustomization.yaml b/deploy/static/provider/baremetal/1.20/kustomization.yaml
index d13af0f82..d585f85c6 100644
--- a/deploy/static/provider/baremetal/1.20/kustomization.yaml
+++ b/deploy/static/provider/baremetal/1.20/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/baremetal?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/baremetal
 # ```
 
 resources:
diff --git a/deploy/static/provider/baremetal/1.21/deploy.yaml b/deploy/static/provider/baremetal/1.21/deploy.yaml
index 943d0ff49..c101d538b 100644
--- a/deploy/static/provider/baremetal/1.21/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.21/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,11 +315,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,11 +347,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -411,11 +370,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -454,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,17 +478,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -540,11 +492,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -575,17 +525,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -594,11 +539,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -634,11 +577,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -649,11 +590,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.21/kustomization.yaml b/deploy/static/provider/baremetal/1.21/kustomization.yaml
index d13af0f82..d585f85c6 100644
--- a/deploy/static/provider/baremetal/1.21/kustomization.yaml
+++ b/deploy/static/provider/baremetal/1.21/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/baremetal?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/baremetal
 # ```
 
 resources:
diff --git a/deploy/static/provider/baremetal/1.22/deploy.yaml b/deploy/static/provider/baremetal/1.22/deploy.yaml
index 943d0ff49..c101d538b 100644
--- a/deploy/static/provider/baremetal/1.22/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.22/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,11 +315,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,11 +347,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -411,11 +370,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -454,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,17 +478,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -540,11 +492,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -575,17 +525,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -594,11 +539,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -634,11 +577,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -649,11 +590,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.22/kustomization.yaml b/deploy/static/provider/baremetal/1.22/kustomization.yaml
index d13af0f82..d585f85c6 100644
--- a/deploy/static/provider/baremetal/1.22/kustomization.yaml
+++ b/deploy/static/provider/baremetal/1.22/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/baremetal?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/baremetal
 # ```
 
 resources:
diff --git a/deploy/static/provider/baremetal/1.23/deploy.yaml b/deploy/static/provider/baremetal/1.23/deploy.yaml
index 943d0ff49..c101d538b 100644
--- a/deploy/static/provider/baremetal/1.23/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.23/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,11 +315,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,11 +347,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -411,11 +370,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -454,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,17 +478,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -540,11 +492,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -575,17 +525,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -594,11 +539,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -634,11 +577,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -649,11 +590,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.23/kustomization.yaml b/deploy/static/provider/baremetal/1.23/kustomization.yaml
index d13af0f82..d585f85c6 100644
--- a/deploy/static/provider/baremetal/1.23/kustomization.yaml
+++ b/deploy/static/provider/baremetal/1.23/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/baremetal?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/baremetal
 # ```
 
 resources:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index cdba346c1..aa9898d99 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -1,4 +1,3 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
@@ -14,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -126,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -153,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -219,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -246,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -265,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -292,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -310,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,17 +315,12 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -387,11 +344,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -412,11 +367,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -455,7 +408,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -522,17 +475,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -541,11 +489,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -576,17 +522,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -595,11 +536,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -635,11 +574,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -650,11 +587,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/kustomization.yaml b/deploy/static/provider/baremetal/kustomization.yaml
index d13af0f82..d585f85c6 100644
--- a/deploy/static/provider/baremetal/kustomization.yaml
+++ b/deploy/static/provider/baremetal/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/baremetal?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/baremetal
 # ```
 
 resources:
diff --git a/deploy/static/provider/cloud/1.19/deploy.yaml b/deploy/static/provider/cloud/1.19/deploy.yaml
index af5e89f04..f6000c6a6 100644
--- a/deploy/static/provider/cloud/1.19/deploy.yaml
+++ b/deploy/static/provider/cloud/1.19/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,11 +315,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,11 +343,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -406,11 +365,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -450,7 +407,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,17 +474,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -536,11 +488,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,17 +521,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -590,11 +535,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -630,11 +573,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -645,11 +586,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.19/kustomization.yaml b/deploy/static/provider/cloud/1.19/kustomization.yaml
index a92167fad..d477ec405 100644
--- a/deploy/static/provider/cloud/1.19/kustomization.yaml
+++ b/deploy/static/provider/cloud/1.19/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/cloud?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud
 # ```
 
 resources:
diff --git a/deploy/static/provider/cloud/1.20/deploy.yaml b/deploy/static/provider/cloud/1.20/deploy.yaml
index ae18d5938..d87b1331d 100644
--- a/deploy/static/provider/cloud/1.20/deploy.yaml
+++ b/deploy/static/provider/cloud/1.20/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,18 +315,13 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -387,11 +345,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -412,11 +368,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -456,7 +410,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,17 +477,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -542,11 +491,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -577,17 +524,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -596,11 +538,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -636,11 +576,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -651,11 +589,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.20/kustomization.yaml b/deploy/static/provider/cloud/1.20/kustomization.yaml
index a92167fad..d477ec405 100644
--- a/deploy/static/provider/cloud/1.20/kustomization.yaml
+++ b/deploy/static/provider/cloud/1.20/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/cloud?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud
 # ```
 
 resources:
diff --git a/deploy/static/provider/cloud/1.21/deploy.yaml b/deploy/static/provider/cloud/1.21/deploy.yaml
index ae18d5938..a1f096f6b 100644
--- a/deploy/static/provider/cloud/1.21/deploy.yaml
+++ b/deploy/static/provider/cloud/1.21/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,11 +315,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -387,11 +348,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -412,11 +371,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -456,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,17 +480,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -542,11 +494,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -577,17 +527,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -596,11 +541,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -636,11 +579,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -651,11 +592,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.21/kustomization.yaml b/deploy/static/provider/cloud/1.21/kustomization.yaml
index a92167fad..d477ec405 100644
--- a/deploy/static/provider/cloud/1.21/kustomization.yaml
+++ b/deploy/static/provider/cloud/1.21/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/cloud?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud
 # ```
 
 resources:
diff --git a/deploy/static/provider/cloud/1.22/deploy.yaml b/deploy/static/provider/cloud/1.22/deploy.yaml
index ae18d5938..a1f096f6b 100644
--- a/deploy/static/provider/cloud/1.22/deploy.yaml
+++ b/deploy/static/provider/cloud/1.22/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,11 +315,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -387,11 +348,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -412,11 +371,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -456,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,17 +480,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -542,11 +494,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -577,17 +527,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -596,11 +541,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -636,11 +579,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -651,11 +592,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.22/kustomization.yaml b/deploy/static/provider/cloud/1.22/kustomization.yaml
index a92167fad..d477ec405 100644
--- a/deploy/static/provider/cloud/1.22/kustomization.yaml
+++ b/deploy/static/provider/cloud/1.22/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/cloud?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud
 # ```
 
 resources:
diff --git a/deploy/static/provider/cloud/1.23/deploy.yaml b/deploy/static/provider/cloud/1.23/deploy.yaml
index ae18d5938..a1f096f6b 100644
--- a/deploy/static/provider/cloud/1.23/deploy.yaml
+++ b/deploy/static/provider/cloud/1.23/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,11 +315,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -387,11 +348,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -412,11 +371,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -456,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,17 +480,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -542,11 +494,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -577,17 +527,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -596,11 +541,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -636,11 +579,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -651,11 +592,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.23/kustomization.yaml b/deploy/static/provider/cloud/1.23/kustomization.yaml
index a92167fad..d477ec405 100644
--- a/deploy/static/provider/cloud/1.23/kustomization.yaml
+++ b/deploy/static/provider/cloud/1.23/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/cloud?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud
 # ```
 
 resources:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 206883b6e..d87b1331d 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -1,4 +1,3 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
@@ -14,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -126,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -153,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -219,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -246,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -265,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -292,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -310,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,18 +315,13 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -388,11 +345,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -413,11 +368,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -457,7 +410,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,17 +477,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -543,11 +491,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -578,17 +524,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -597,11 +538,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -637,11 +576,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -652,11 +589,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/kustomization.yaml b/deploy/static/provider/cloud/kustomization.yaml
index a92167fad..d477ec405 100644
--- a/deploy/static/provider/cloud/kustomization.yaml
+++ b/deploy/static/provider/cloud/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/cloud?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud
 # ```
 
 resources:
diff --git a/deploy/static/provider/do/1.19/deploy.yaml b/deploy/static/provider/do/1.19/deploy.yaml
index 69504e702..e746a93db 100644
--- a/deploy/static/provider/do/1.19/deploy.yaml
+++ b/deploy/static/provider/do/1.19/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +304,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,11 +318,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -385,11 +346,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,11 +368,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -453,7 +410,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -520,17 +477,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -539,11 +491,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -574,17 +524,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -593,11 +538,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -633,11 +576,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -648,11 +589,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.19/kustomization.yaml b/deploy/static/provider/do/1.19/kustomization.yaml
index c7bb8d250..f20d445c7 100644
--- a/deploy/static/provider/do/1.19/kustomization.yaml
+++ b/deploy/static/provider/do/1.19/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/do?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/do
 # ```
 
 resources:
diff --git a/deploy/static/provider/do/1.20/deploy.yaml b/deploy/static/provider/do/1.20/deploy.yaml
index 98bfe291a..815e70374 100644
--- a/deploy/static/provider/do/1.20/deploy.yaml
+++ b/deploy/static/provider/do/1.20/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +304,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,18 +318,13 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -390,11 +348,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,11 +371,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -459,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,17 +480,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -545,11 +494,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -580,17 +527,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -599,11 +541,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -639,11 +579,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,11 +592,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.20/kustomization.yaml b/deploy/static/provider/do/1.20/kustomization.yaml
index c7bb8d250..f20d445c7 100644
--- a/deploy/static/provider/do/1.20/kustomization.yaml
+++ b/deploy/static/provider/do/1.20/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/do?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/do
 # ```
 
 resources:
diff --git a/deploy/static/provider/do/1.21/deploy.yaml b/deploy/static/provider/do/1.21/deploy.yaml
index 98bfe291a..df2dce367 100644
--- a/deploy/static/provider/do/1.21/deploy.yaml
+++ b/deploy/static/provider/do/1.21/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +304,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,11 +318,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -390,11 +351,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,11 +374,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -459,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,17 +483,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -545,11 +497,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -580,17 +530,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -599,11 +544,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -639,11 +582,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,11 +595,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.21/kustomization.yaml b/deploy/static/provider/do/1.21/kustomization.yaml
index c7bb8d250..f20d445c7 100644
--- a/deploy/static/provider/do/1.21/kustomization.yaml
+++ b/deploy/static/provider/do/1.21/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/do?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/do
 # ```
 
 resources:
diff --git a/deploy/static/provider/do/1.22/deploy.yaml b/deploy/static/provider/do/1.22/deploy.yaml
index 98bfe291a..df2dce367 100644
--- a/deploy/static/provider/do/1.22/deploy.yaml
+++ b/deploy/static/provider/do/1.22/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +304,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,11 +318,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -390,11 +351,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,11 +374,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -459,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,17 +483,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -545,11 +497,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -580,17 +530,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -599,11 +544,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -639,11 +582,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,11 +595,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.22/kustomization.yaml b/deploy/static/provider/do/1.22/kustomization.yaml
index c7bb8d250..f20d445c7 100644
--- a/deploy/static/provider/do/1.22/kustomization.yaml
+++ b/deploy/static/provider/do/1.22/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/do?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/do
 # ```
 
 resources:
diff --git a/deploy/static/provider/do/1.23/deploy.yaml b/deploy/static/provider/do/1.23/deploy.yaml
index 98bfe291a..df2dce367 100644
--- a/deploy/static/provider/do/1.23/deploy.yaml
+++ b/deploy/static/provider/do/1.23/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +304,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,11 +318,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -390,11 +351,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,11 +374,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -459,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,17 +483,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -545,11 +497,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -580,17 +530,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -599,11 +544,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -639,11 +582,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,11 +595,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.23/kustomization.yaml b/deploy/static/provider/do/1.23/kustomization.yaml
index c7bb8d250..f20d445c7 100644
--- a/deploy/static/provider/do/1.23/kustomization.yaml
+++ b/deploy/static/provider/do/1.23/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/do?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/do
 # ```
 
 resources:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 324ae79e6..815e70374 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -1,4 +1,3 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
@@ -14,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -126,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -153,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -219,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -246,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -265,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -292,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -310,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -340,11 +304,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -356,18 +318,13 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -391,11 +348,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -416,11 +371,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -460,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -527,17 +480,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -546,11 +494,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -581,17 +527,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -600,11 +541,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -640,11 +579,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -655,11 +592,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/kustomization.yaml b/deploy/static/provider/do/kustomization.yaml
index c7bb8d250..f20d445c7 100644
--- a/deploy/static/provider/do/kustomization.yaml
+++ b/deploy/static/provider/do/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/do?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/do
 # ```
 
 resources:
diff --git a/deploy/static/provider/exoscale/1.19/deploy.yaml b/deploy/static/provider/exoscale/1.19/deploy.yaml
index 3c22a0118..61e084249 100644
--- a/deploy/static/provider/exoscale/1.19/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.19/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -362,11 +325,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -392,11 +353,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -416,11 +375,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -460,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -527,17 +484,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -546,11 +498,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -581,17 +531,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -600,11 +545,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -640,11 +583,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -655,11 +596,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.19/kustomization.yaml b/deploy/static/provider/exoscale/1.19/kustomization.yaml
index 8466627e2..e79016cf3 100644
--- a/deploy/static/provider/exoscale/1.19/kustomization.yaml
+++ b/deploy/static/provider/exoscale/1.19/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/exoscale?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/exoscale
 # ```
 
 resources:
diff --git a/deploy/static/provider/exoscale/1.20/deploy.yaml b/deploy/static/provider/exoscale/1.20/deploy.yaml
index 136b466c9..e3712ce33 100644
--- a/deploy/static/provider/exoscale/1.20/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.20/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -362,18 +325,13 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -397,11 +355,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -422,11 +378,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -466,7 +420,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -533,17 +487,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -552,11 +501,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -587,17 +534,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -606,11 +548,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -646,11 +586,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -661,11 +599,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.20/kustomization.yaml b/deploy/static/provider/exoscale/1.20/kustomization.yaml
index 8466627e2..e79016cf3 100644
--- a/deploy/static/provider/exoscale/1.20/kustomization.yaml
+++ b/deploy/static/provider/exoscale/1.20/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/exoscale?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/exoscale
 # ```
 
 resources:
diff --git a/deploy/static/provider/exoscale/1.21/deploy.yaml b/deploy/static/provider/exoscale/1.21/deploy.yaml
index 136b466c9..7c214d0f0 100644
--- a/deploy/static/provider/exoscale/1.21/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.21/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -362,11 +325,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -397,11 +358,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -422,11 +381,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -466,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -533,17 +490,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -552,11 +504,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -587,17 +537,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -606,11 +551,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -646,11 +589,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -661,11 +602,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.21/kustomization.yaml b/deploy/static/provider/exoscale/1.21/kustomization.yaml
index 8466627e2..e79016cf3 100644
--- a/deploy/static/provider/exoscale/1.21/kustomization.yaml
+++ b/deploy/static/provider/exoscale/1.21/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/exoscale?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/exoscale
 # ```
 
 resources:
diff --git a/deploy/static/provider/exoscale/1.22/deploy.yaml b/deploy/static/provider/exoscale/1.22/deploy.yaml
index 136b466c9..7c214d0f0 100644
--- a/deploy/static/provider/exoscale/1.22/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.22/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -362,11 +325,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -397,11 +358,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -422,11 +381,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -466,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -533,17 +490,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -552,11 +504,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -587,17 +537,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -606,11 +551,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -646,11 +589,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -661,11 +602,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.22/kustomization.yaml b/deploy/static/provider/exoscale/1.22/kustomization.yaml
index 8466627e2..e79016cf3 100644
--- a/deploy/static/provider/exoscale/1.22/kustomization.yaml
+++ b/deploy/static/provider/exoscale/1.22/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/exoscale?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/exoscale
 # ```
 
 resources:
diff --git a/deploy/static/provider/exoscale/1.23/deploy.yaml b/deploy/static/provider/exoscale/1.23/deploy.yaml
index 136b466c9..7c214d0f0 100644
--- a/deploy/static/provider/exoscale/1.23/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.23/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -362,11 +325,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -397,11 +358,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -422,11 +381,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -466,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -533,17 +490,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -552,11 +504,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -587,17 +537,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -606,11 +551,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -646,11 +589,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -661,11 +602,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.23/kustomization.yaml b/deploy/static/provider/exoscale/1.23/kustomization.yaml
index 8466627e2..e79016cf3 100644
--- a/deploy/static/provider/exoscale/1.23/kustomization.yaml
+++ b/deploy/static/provider/exoscale/1.23/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/exoscale?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/exoscale
 # ```
 
 resources:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index d65ba8628..e3712ce33 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -1,4 +1,3 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
@@ -14,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -126,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -153,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -219,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -246,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -265,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -292,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -310,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -363,18 +325,13 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -398,11 +355,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -423,11 +378,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -467,7 +420,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -534,17 +487,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -553,11 +501,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -588,17 +534,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -607,11 +548,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -647,11 +586,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -662,11 +599,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/kustomization.yaml b/deploy/static/provider/exoscale/kustomization.yaml
index 8466627e2..e79016cf3 100644
--- a/deploy/static/provider/exoscale/kustomization.yaml
+++ b/deploy/static/provider/exoscale/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/exoscale?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/exoscale
 # ```
 
 resources:
diff --git a/deploy/static/provider/kind/1.19/deploy.yaml b/deploy/static/provider/kind/1.19/deploy.yaml
index 171725751..8122b831c 100644
--- a/deploy/static/provider/kind/1.19/deploy.yaml
+++ b/deploy/static/provider/kind/1.19/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,11 +315,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -381,11 +342,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,11 +364,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -454,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -528,17 +485,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -547,11 +499,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -582,17 +532,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -601,11 +546,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -641,11 +584,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -656,11 +597,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.19/kustomization.yaml b/deploy/static/provider/kind/1.19/kustomization.yaml
index 94b7c887d..bd605a188 100644
--- a/deploy/static/provider/kind/1.19/kustomization.yaml
+++ b/deploy/static/provider/kind/1.19/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/kind?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/kind
 # ```
 
 resources:
diff --git a/deploy/static/provider/kind/1.20/deploy.yaml b/deploy/static/provider/kind/1.20/deploy.yaml
index 030092a55..934c81a01 100644
--- a/deploy/static/provider/kind/1.20/deploy.yaml
+++ b/deploy/static/provider/kind/1.20/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,17 +315,12 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -386,11 +344,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -411,11 +367,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -460,7 +414,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -534,17 +488,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -553,11 +502,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -588,17 +535,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -607,11 +549,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -647,11 +587,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -662,11 +600,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.20/kustomization.yaml b/deploy/static/provider/kind/1.20/kustomization.yaml
index 94b7c887d..bd605a188 100644
--- a/deploy/static/provider/kind/1.20/kustomization.yaml
+++ b/deploy/static/provider/kind/1.20/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/kind?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/kind
 # ```
 
 resources:
diff --git a/deploy/static/provider/kind/1.21/deploy.yaml b/deploy/static/provider/kind/1.21/deploy.yaml
index 030092a55..6d3e5ba7a 100644
--- a/deploy/static/provider/kind/1.21/deploy.yaml
+++ b/deploy/static/provider/kind/1.21/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,11 +315,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,11 +347,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -411,11 +370,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -460,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -534,17 +491,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -553,11 +505,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -588,17 +538,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -607,11 +552,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -647,11 +590,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -662,11 +603,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.21/kustomization.yaml b/deploy/static/provider/kind/1.21/kustomization.yaml
index 94b7c887d..bd605a188 100644
--- a/deploy/static/provider/kind/1.21/kustomization.yaml
+++ b/deploy/static/provider/kind/1.21/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/kind?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/kind
 # ```
 
 resources:
diff --git a/deploy/static/provider/kind/1.22/deploy.yaml b/deploy/static/provider/kind/1.22/deploy.yaml
index 030092a55..6d3e5ba7a 100644
--- a/deploy/static/provider/kind/1.22/deploy.yaml
+++ b/deploy/static/provider/kind/1.22/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,11 +315,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,11 +347,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -411,11 +370,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -460,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -534,17 +491,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -553,11 +505,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -588,17 +538,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -607,11 +552,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -647,11 +590,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -662,11 +603,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.22/kustomization.yaml b/deploy/static/provider/kind/1.22/kustomization.yaml
index 94b7c887d..bd605a188 100644
--- a/deploy/static/provider/kind/1.22/kustomization.yaml
+++ b/deploy/static/provider/kind/1.22/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/kind?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/kind
 # ```
 
 resources:
diff --git a/deploy/static/provider/kind/1.23/deploy.yaml b/deploy/static/provider/kind/1.23/deploy.yaml
index 030092a55..6d3e5ba7a 100644
--- a/deploy/static/provider/kind/1.23/deploy.yaml
+++ b/deploy/static/provider/kind/1.23/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -338,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,11 +315,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,11 +347,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -411,11 +370,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -460,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -534,17 +491,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -553,11 +505,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -588,17 +538,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -607,11 +552,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -647,11 +590,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -662,11 +603,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.23/kustomization.yaml b/deploy/static/provider/kind/1.23/kustomization.yaml
index 94b7c887d..bd605a188 100644
--- a/deploy/static/provider/kind/1.23/kustomization.yaml
+++ b/deploy/static/provider/kind/1.23/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/kind?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/kind
 # ```
 
 resources:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 1725f1347..934c81a01 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -1,4 +1,3 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
@@ -14,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -126,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -153,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -219,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -246,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -265,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -292,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -310,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +303,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,17 +315,12 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -387,11 +344,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -412,11 +367,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -461,7 +414,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -535,17 +488,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -554,11 +502,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -589,17 +535,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -608,11 +549,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -648,11 +587,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -663,11 +600,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/kustomization.yaml b/deploy/static/provider/kind/kustomization.yaml
index 94b7c887d..bd605a188 100644
--- a/deploy/static/provider/kind/kustomization.yaml
+++ b/deploy/static/provider/kind/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/kind?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/kind
 # ```
 
 resources:
diff --git a/deploy/static/provider/scw/1.19/deploy.yaml b/deploy/static/provider/scw/1.19/deploy.yaml
index 8e29c5564..d8dc86368 100644
--- a/deploy/static/provider/scw/1.19/deploy.yaml
+++ b/deploy/static/provider/scw/1.19/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +304,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,11 +318,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -385,11 +346,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,11 +368,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -453,7 +410,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -520,17 +477,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -539,11 +491,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -574,17 +524,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -593,11 +538,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -633,11 +576,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -648,11 +589,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.19/kustomization.yaml b/deploy/static/provider/scw/1.19/kustomization.yaml
index da792b8f5..d8535dbde 100644
--- a/deploy/static/provider/scw/1.19/kustomization.yaml
+++ b/deploy/static/provider/scw/1.19/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/scw?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/scw
 # ```
 
 resources:
diff --git a/deploy/static/provider/scw/1.20/deploy.yaml b/deploy/static/provider/scw/1.20/deploy.yaml
index 82cee679d..19bfb55a8 100644
--- a/deploy/static/provider/scw/1.20/deploy.yaml
+++ b/deploy/static/provider/scw/1.20/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +304,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,18 +318,13 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -390,11 +348,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,11 +371,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -459,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,17 +480,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -545,11 +494,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -580,17 +527,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -599,11 +541,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -639,11 +579,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,11 +592,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.20/kustomization.yaml b/deploy/static/provider/scw/1.20/kustomization.yaml
index da792b8f5..d8535dbde 100644
--- a/deploy/static/provider/scw/1.20/kustomization.yaml
+++ b/deploy/static/provider/scw/1.20/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/scw?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/scw
 # ```
 
 resources:
diff --git a/deploy/static/provider/scw/1.21/deploy.yaml b/deploy/static/provider/scw/1.21/deploy.yaml
index 82cee679d..25a56f11a 100644
--- a/deploy/static/provider/scw/1.21/deploy.yaml
+++ b/deploy/static/provider/scw/1.21/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +304,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,11 +318,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -390,11 +351,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,11 +374,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -459,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,17 +483,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -545,11 +497,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -580,17 +530,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -599,11 +544,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -639,11 +582,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,11 +595,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.21/kustomization.yaml b/deploy/static/provider/scw/1.21/kustomization.yaml
index da792b8f5..d8535dbde 100644
--- a/deploy/static/provider/scw/1.21/kustomization.yaml
+++ b/deploy/static/provider/scw/1.21/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/scw?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/scw
 # ```
 
 resources:
diff --git a/deploy/static/provider/scw/1.22/deploy.yaml b/deploy/static/provider/scw/1.22/deploy.yaml
index 82cee679d..25a56f11a 100644
--- a/deploy/static/provider/scw/1.22/deploy.yaml
+++ b/deploy/static/provider/scw/1.22/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +304,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,11 +318,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -390,11 +351,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,11 +374,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -459,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,17 +483,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -545,11 +497,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -580,17 +530,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -599,11 +544,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -639,11 +582,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,11 +595,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.22/kustomization.yaml b/deploy/static/provider/scw/1.22/kustomization.yaml
index da792b8f5..d8535dbde 100644
--- a/deploy/static/provider/scw/1.22/kustomization.yaml
+++ b/deploy/static/provider/scw/1.22/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/scw?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/scw
 # ```
 
 resources:
diff --git a/deploy/static/provider/scw/1.23/deploy.yaml b/deploy/static/provider/scw/1.23/deploy.yaml
index 82cee679d..25a56f11a 100644
--- a/deploy/static/provider/scw/1.23/deploy.yaml
+++ b/deploy/static/provider/scw/1.23/deploy.yaml
@@ -13,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -44,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -125,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -152,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -218,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -245,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -264,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -291,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -309,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -339,11 +304,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,11 +318,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -390,11 +351,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,11 +374,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -459,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,17 +483,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -545,11 +497,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -580,17 +530,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -599,11 +544,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -639,11 +582,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,11 +595,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.23/kustomization.yaml b/deploy/static/provider/scw/1.23/kustomization.yaml
index da792b8f5..d8535dbde 100644
--- a/deploy/static/provider/scw/1.23/kustomization.yaml
+++ b/deploy/static/provider/scw/1.23/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/scw?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/scw
 # ```
 
 resources:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 138a9fcf1..19bfb55a8 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -1,4 +1,3 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
 kind: Namespace
 metadata:
@@ -14,28 +13,21 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -45,11 +37,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -126,17 +116,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -153,11 +138,9 @@ kind: ClusterRole
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -219,17 +202,12 @@ rules:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -246,11 +224,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -265,17 +241,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -292,11 +263,9 @@ kind: ClusterRoleBinding
 metadata:
   labels:
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -310,17 +279,12 @@ subjects:
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade,post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -340,11 +304,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -356,18 +318,13 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
@@ -391,11 +348,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -416,11 +371,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -460,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
+        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -527,17 +480,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: pre-install,pre-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -546,11 +494,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -581,17 +527,12 @@ spec:
 apiVersion: batch/v1
 kind: Job
 metadata:
-  annotations:
-    helm.sh/hook: post-install,post-upgrade
-    helm.sh/hook-delete-policy: before-hook-creation,hook-succeeded
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -600,11 +541,9 @@ spec:
       labels:
         app.kubernetes.io/component: admission-webhook
         app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/managed-by: Helm
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.2
-        helm.sh/chart: ingress-nginx-4.0.18
+        app.kubernetes.io/version: 1.1.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -640,11 +579,9 @@ metadata:
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -655,11 +592,9 @@ metadata:
   labels:
     app.kubernetes.io/component: admission-webhook
     app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/managed-by: Helm
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.2
-    helm.sh/chart: ingress-nginx-4.0.18
+    app.kubernetes.io/version: 1.1.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/kustomization.yaml b/deploy/static/provider/scw/kustomization.yaml
index da792b8f5..d8535dbde 100644
--- a/deploy/static/provider/scw/kustomization.yaml
+++ b/deploy/static/provider/scw/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/provider/scw?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/scw
 # ```
 
 resources:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 966703afb..849040574 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -186,17 +186,17 @@ In AWS we use a Network load balancer (NLB) to expose the NGINX Ingress controll
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
 
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -238,7 +238,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -252,7 +252,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regards to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -260,13 +260,13 @@ More information with regards to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/do/deploy.yaml
 ```
 
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -280,7 +280,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A [complete list of available annotations for Oracle Cloud Infrastructure](https://github.com/oracle/oci-cloud-controller-manager/blob/master/docs/load-balancer-annotations.md) can be found in the [OCI Cloud Controller Manager](https://github.com/oracle/oci-cloud-controller-manager) documentation.
@@ -292,7 +292,7 @@ This section is applicable to Kubernetes clusters deployed on bare metal servers
 For quick testing, you can use a [NodePort](https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport). This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range), see [bare-metal considerations](./baremetal.md).
diff --git a/hack/generate-deploy-scripts.sh b/hack/generate-deploy-scripts.sh
index a697b13e2..598e60fc4 100755
--- a/hack/generate-deploy-scripts.sh
+++ b/hack/generate-deploy-scripts.sh
@@ -18,7 +18,7 @@ if [ -n "$DEBUG" ]; then
 	set -x
 fi
 
-set -o errexit
+#set -o errexit
 set -o nounset
 set -o pipefail
 
@@ -42,6 +42,7 @@ for K8S_VERSION in "${K8S_TARGET_VERSIONS[@]}"
 do
   for TARGET in ${TARGETS}
   do
+    echo "Running ${K8S_VERSION} for target ${TARGET}"
     TARGET_DIR="${TEMPLATE_DIR}/${TARGET}"
     MANIFEST="${TEMPLATE_DIR}/common/manifest.yaml" # intermediate manifest
     OUTPUT_DIR="${DIR}/deploy/static/${TARGET}/${K8S_VERSION}"
@@ -54,6 +55,9 @@ do
       --namespace ingress-nginx \
       --kube-version ${K8S_VERSION} \
       > $MANIFEST
+    sed -i '' '/app.kubernetes.io\/managed-by: Helm/d' $MANIFEST
+    sed -i '' '/helm.sh/d' $MANIFEST
+
     kustomize --load-restrictor=LoadRestrictionsNone build . > ${OUTPUT_DIR}/deploy.yaml
     rm $MANIFEST
     cd ~-
@@ -64,7 +68,7 @@ do
     if [[ ${K8S_VERSION} = ${K8S_DEFAULT_VERSION} ]]
     then
       cp ${OUTPUT_DIR}/*.yaml ${OUTPUT_DIR}/../
-      sed -i "1s/^/#GENERATED FOR K8S ${K8S_VERSION}\n/" ${OUTPUT_DIR}/../deploy.yaml
+      sed -i "s/^/#GENERATED FOR K8S ${K8S_VERSION}\n/" ${OUTPUT_DIR}/../deploy.yaml
     fi
   done
 done
diff --git a/hack/manifest-templates/static-kustomization-template.yaml b/hack/manifest-templates/static-kustomization-template.yaml
index fd273c7c4..18118a0ce 100644
--- a/hack/manifest-templates/static-kustomization-template.yaml
+++ b/hack/manifest-templates/static-kustomization-template.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/deploy/static/{TARGET}?ref=master
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/{TARGET}
 # ```
 
 resources:
diff --git a/stable.txt b/stable.txt
index e6c5acf0d..3e5a2f306 100644
--- a/stable.txt
+++ b/stable.txt
@@ -1 +1 @@
-controller-v1.1.0
\ No newline at end of file
+controller-v1.1.3
\ No newline at end of file

From ad47d49216b9460c299b267a69b710659044b863 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 1 Apr 2022 16:14:13 -0400
Subject: [PATCH 0128/1641] force helm release to artifact hub (#8417)

* force helm release to artifact hub

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update releaser version

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/helm.yaml     | 5 +++--
 charts/ingress-nginx/Chart.yaml | 6 +++++-
 2 files changed, 8 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index dd8e6d752..c20716065 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -60,9 +60,10 @@ jobs:
           git config --global user.name "$GITHUB_ACTOR"
           git config --global user.email "$GITHUB_ACTOR@users.noreply.github.com"
       
-      - name: Run chart-releaser
-        uses: helm/chart-releaser-action@c25b74a986eb925b398320414b576227f375f946 # v1.2.1
+      - name: Helm Chart Releaser
+        uses: helm/chart-releaser-action@v1.4.0
         env:
+          CR_SKIP_EXISTING: "false"
           CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
           CR_RELEASE_NAME_TEMPLATE: "helm-chart-{{ .Version }}"
         with:
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index f8203e33e..bf9006e58 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -14,7 +14,9 @@ sources:
   - https://github.com/kubernetes/ingress-nginx
 type: application
 maintainers:
-  - name: ChiefAlexander
+  - name: rikatz
+  - name: strongjz
+  - name: tao12345666333
 engine: gotpl
 kubeVersion: ">=1.19.0-0"
 annotations:
@@ -26,3 +28,5 @@ annotations:
   artifacthub.io/changes: |
     - "#8307 Nginx v1.19.10"
     - "#8386 Alpine 3.14.4"
+    - "#8339 Patch OpenSSL CVE-2022-0778"
+    - "#8321 Vulnerability CVE-2022-23308 for libxml2"

From 59c6c058fe7fc9c3ea8ebdc29c8712f3ef363dd3 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Sat, 2 Apr 2022 20:16:09 -0400
Subject: [PATCH 0129/1641] fix change log changes list (#8421)

---
 Changelog.md | 48 ++++++++++++++++++++++++------------------------
 1 file changed, 24 insertions(+), 24 deletions(-)

diff --git a/Changelog.md b/Changelog.md
index 0f3656b22..86a1d123d 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -13,30 +13,30 @@ Patches [Libxml2 CVE-2022-23308](https://github.com/kubernetes/ingress-nginx/iss
 
 _Changes:_
 
-[8415](https://github.com/kubernetes/ingress-nginx/pull/8415) base img update for e2e-test-runner & opentelemetry
-[8403](https://github.com/kubernetes/ingress-nginx/pull/8403) Add execute permissions to nginx image entrypoint.sh
-[8392](https://github.com/kubernetes/ingress-nginx/pull/8392) fix document for monitoring
-[8386](https://github.com/kubernetes/ingress-nginx/pull/8386) downgrade to 3.14.4 and fix tag
-[8379](https://github.com/kubernetes/ingress-nginx/pull/8379) bump luarocks to 3.8.0
-[8368](https://github.com/kubernetes/ingress-nginx/pull/8368) Updated semver in install docs URLs
-[8360](https://github.com/kubernetes/ingress-nginx/pull/8360) Bump github.com/stretchr/testify from 1.7.0 to 1.7.1
-[8334](https://github.com/kubernetes/ingress-nginx/pull/8334) Pinned GitHub workflows by SHA
-[8324](https://github.com/kubernetes/ingress-nginx/pull/8324) Added missing "repo" option on "helm upgrade" command
-[8315](https://github.com/kubernetes/ingress-nginx/pull/8315) Fix 50% split between canary and mainline tests
-[8311](https://github.com/kubernetes/ingress-nginx/pull/8311) leaving it the git tag
-[8307](https://github.com/kubernetes/ingress-nginx/pull/8307) Nginx v1.19.10
-[8302](https://github.com/kubernetes/ingress-nginx/pull/8302) docs: fix changelog formatting for 1.1.2
-[8300](https://github.com/kubernetes/ingress-nginx/pull/8300) Names cannot contain _ (underscore)! So I changed it to -.
-[8288](https://github.com/kubernetes/ingress-nginx/pull/8288) [docs] Missing annotations
-[8287](https://github.com/kubernetes/ingress-nginx/pull/8287) Add the shareProcessNamespace as a configurable setting in the helm chart
-[8286](https://github.com/kubernetes/ingress-nginx/pull/8286) Fix OpenTelemetry sidecar image build
-[8281](https://github.com/kubernetes/ingress-nginx/pull/8281) force prow job by changing something in images/ot dir
-[8273](https://github.com/kubernetes/ingress-nginx/pull/8273) Issue#8241
-[8267](https://github.com/kubernetes/ingress-nginx/pull/8267) Add fsGroup value to admission-webhooks/job-patch charts
-[8262](https://github.com/kubernetes/ingress-nginx/pull/8262) Updated confusing error
-[8258](https://github.com/kubernetes/ingress-nginx/pull/8258) remove 0.46.0 from supported versions table
-[8256](https://github.com/kubernetes/ingress-nginx/pull/8256) fix: deny locations with invalid auth-url annotation
-[8253](https://github.com/kubernetes/ingress-nginx/pull/8253) Add a certificate info metric
+- [8415](https://github.com/kubernetes/ingress-nginx/pull/8415) base img update for e2e-test-runner & opentelemetry
+- [8403](https://github.com/kubernetes/ingress-nginx/pull/8403) Add execute permissions to nginx image entrypoint.sh
+- [8392](https://github.com/kubernetes/ingress-nginx/pull/8392) fix document for monitoring
+- [8386](https://github.com/kubernetes/ingress-nginx/pull/8386) downgrade to 3.14.4 and fix tag
+- [8379](https://github.com/kubernetes/ingress-nginx/pull/8379) bump luarocks to 3.8.0
+- [8368](https://github.com/kubernetes/ingress-nginx/pull/8368) Updated semver in install docs URLs
+- [8360](https://github.com/kubernetes/ingress-nginx/pull/8360) Bump github.com/stretchr/testify from 1.7.0 to 1.7.1
+- [8334](https://github.com/kubernetes/ingress-nginx/pull/8334) Pinned GitHub workflows by SHA
+- [8324](https://github.com/kubernetes/ingress-nginx/pull/8324) Added missing "repo" option on "helm upgrade" command
+- [8315](https://github.com/kubernetes/ingress-nginx/pull/8315) Fix 50% split between canary and mainline tests
+- [8311](https://github.com/kubernetes/ingress-nginx/pull/8311) leaving it the git tag
+- [8307](https://github.com/kubernetes/ingress-nginx/pull/8307) Nginx v1.19.10
+- [8302](https://github.com/kubernetes/ingress-nginx/pull/8302) docs: fix changelog formatting for 1.1.2
+- [8300](https://github.com/kubernetes/ingress-nginx/pull/8300) Names cannot contain _ (underscore)! So I changed it to -.
+- [8288](https://github.com/kubernetes/ingress-nginx/pull/8288) [docs] Missing annotations 
+- [8287](https://github.com/kubernetes/ingress-nginx/pull/8287) Add the shareProcessNamespace as a configurable setting in the helm chart
+- [8286](https://github.com/kubernetes/ingress-nginx/pull/8286) Fix OpenTelemetry sidecar image build
+- [8281](https://github.com/kubernetes/ingress-nginx/pull/8281) force prow job by changing something in images/ot dir
+- [8273](https://github.com/kubernetes/ingress-nginx/pull/8273) Issue#8241
+- [8267](https://github.com/kubernetes/ingress-nginx/pull/8267) Add fsGroup value to admission-webhooks/job-patch charts
+- [8262](https://github.com/kubernetes/ingress-nginx/pull/8262) Updated confusing error
+- [8258](https://github.com/kubernetes/ingress-nginx/pull/8258) remove 0.46.0 from supported versions table
+- [8256](https://github.com/kubernetes/ingress-nginx/pull/8256) fix: deny locations with invalid auth-url annotation
+- [8253](https://github.com/kubernetes/ingress-nginx/pull/8253) Add a certificate info metric
 
 ### 1.1.2
 

From abdece6e80b6d54d177cf3f51e43d1f8220c1b1c Mon Sep 17 00:00:00 2001
From: Kundan Kumar <kundan.kumar@india.nec.com>
Date: Mon, 4 Apr 2022 02:34:10 +0530
Subject: [PATCH 0130/1641] kubectl-plugin code overview info (#8405)

---
 docs/developer-guide/code-overview.md | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/docs/developer-guide/code-overview.md b/docs/developer-guide/code-overview.md
index 6f4beb9c9..92f9fcbbd 100644
--- a/docs/developer-guide/code-overview.md
+++ b/docs/developer-guide/code-overview.md
@@ -101,6 +101,12 @@ The e2e tests code is in [test](https://github.com/kubernetes/ingress-nginx/tree
 
 Describe here `kubectl plugin`, `dbg`, `waitshutdown` and cover the hack scripts.
 
+### kubectl plugin
+
+It containes kubectl plugin for inspecting your ingress-nginx deployments.
+This part of code can be found in [cmd/plugin](https://github.com/kubernetes/ingress-nginx/tree/main/cmd/plugin) directory
+Detail functions flow and available flow can be found in [kubectl-plugin](https://github.com/kubernetes/ingress-nginx/blob/main/docs/kubectl-plugin.md)
+
 ## Deploy files
 
 This directory contains the `yaml` deploy files used as examples or references in the docs to deploy Ingress NGINX and other components.

From c6a8ad9a65485b1c4593266ab067dc33f3140c4f Mon Sep 17 00:00:00 2001
From: Josh Soref <2119212+jsoref@users.noreply.github.com>
Date: Wed, 6 Apr 2022 16:46:26 -0400
Subject: [PATCH 0131/1641] Darwin arm64 (#8399)

* Use sed instead of gnu find flags

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Support building linux/amd64 on darin/arm64

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Upgrade awesome_bot to dkhamsing/awesome_bot:1.20.0

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Favor find -prune for vendor

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Skip golang modcache folder

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Favor find -prune for changelog

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Ignore Changelogs of any case

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Fix service-l7 link

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Fix route53-mapper link

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Update rootfs contents description

The auxiliary scripts were removed after:
https://github.com/kubernetes/ingress-nginx/tree/ab8349008a1db07205c4e6a9a80b16caafd272d4/rootfs/ingress-controller

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Update paths for modsecurity

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Update paths for modsecurity_snippet

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Update toc for 20190815-zone-aware-routing.md

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Use Internet Archive for datapath.io blog entry

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Use Internet Archive for cloudflare.com help center entry

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Use https for nginx.org

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

Co-authored-by: Josh Soref <jsoref@users.noreply.github.com>
---
 Changelog.md                                  |   2 +-
 Makefile                                      |  16 +-
 build/run-in-docker.sh                        |   8 +
 charts/ingress-nginx/README.md                |   4 +-
 charts/ingress-nginx/README.md.gotmpl         |   4 +-
 docs/deploy/index.md                          |   2 +-
 docs/developer-guide/code-overview.md         |   2 +-
 docs/e2e-tests.md                             |  22 +--
 .../20190815-zone-aware-routing.md            |  18 +-
 docs/how-it-works.md                          |   2 +-
 docs/troubleshooting.md                       |   2 +-
 docs/user-guide/fcgi-services.md              |   4 +-
 docs/user-guide/miscellaneous.md              |   2 +-
 .../nginx-configuration/annotations.md        |  36 ++--
 .../nginx-configuration/configmap.md          | 168 +++++++++---------
 docs/user-guide/nginx-configuration/index.md  |   2 +-
 .../nginx-configuration/log-format.md         |   4 +-
 docs/user-guide/tls.md                        |   2 +-
 rootfs/etc/nginx/lua/plugins/README.md        |   2 +-
 19 files changed, 159 insertions(+), 143 deletions(-)

diff --git a/Changelog.md b/Changelog.md
index 86a1d123d..0ef69197d 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -1001,7 +1001,7 @@ _Documentation:_
 _New Features:_
 
 - NGINX 1.19.2
-- New configmap option `enable-real-ip` to enable [realip_module](http://nginx.org/en/docs/http/ngx_http_realip_module.html)
+- New configmap option `enable-real-ip` to enable [realip_module](https://nginx.org/en/docs/http/ngx_http_realip_module.html)
 - Use k8s.gcr.io vanity domain
 - Go 1.15
 - client-go v0.18.6
diff --git a/Makefile b/Makefile
index d7ae2adfb..c4e109d86 100644
--- a/Makefile
+++ b/Makefile
@@ -49,6 +49,10 @@ ifeq ($(ARCH),)
     $(error mandatory variable ARCH is empty, either set it when calling the command or make sure 'go env GOARCH' works)
 endif
 
+ifneq ($(PLATFORM),)
+	PLATFORM_FLAG="--platform"
+endif
+
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
 BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:5402d35663917ccbbf77ff48a22b8c6f77097f48@sha256:ec8a104df307f5c6d68157b7ac8e5e1e2c2f0ea07ddf25bb1c6c43c67e351180
@@ -62,6 +66,7 @@ help:  ## Display this help
 image: clean-image ## Build image for a particular arch.
 	echo "Building docker image ($(ARCH))..."
 	@docker build \
+		${PLATFORM_FLAG} ${PLATFORM} \
 		--no-cache \
 		--build-arg BASE_IMAGE="$(BASE_IMAGE)" \
 		--build-arg VERSION="$(TAG)" \
@@ -143,10 +148,11 @@ vet:
 
 .PHONY: check_dead_links
 check_dead_links: ## Check if the documentation contains dead links.
-	@docker run -t \
-	  -v $$PWD:/tmp aledbf/awesome_bot:0.1 \
+	@docker run ${PLATFORM_FLAG} ${PLATFORM} -t \
+	  -w /tmp \
+	  -v $$PWD:/tmp dkhamsing/awesome_bot:1.20.0 \
 	  --allow-dupe \
-	  --allow-redirect $(shell find $$PWD -mindepth 1 -name "*.md" -printf '%P\n' | grep -v vendor | grep -v Changelog.md)
+	  --allow-redirect $(shell find $$PWD -mindepth 1 -name vendor -prune -o -name .modcache -prune -o -iname Changelog.md -prune -o -name "*.md" | sed -e "s#$$PWD/##")
 
 .PHONY: dev-env
 dev-env:  ## Starts a local Kubernetes cluster using kind, building and deploying the ingress controller.
@@ -158,8 +164,8 @@ dev-env-stop: ## Deletes local Kubernetes cluster created by kind.
 
 .PHONY: live-docs
 live-docs: ## Build and launch a local copy of the documentation website in http://localhost:8000
-	@docker build -t ingress-nginx-docs .github/actions/mkdocs
-	@docker run --rm -it \
+	@docker build ${PLATFORM_FLAG} ${PLATFORM} -t ingress-nginx-docs .github/actions/mkdocs
+	@docker run ${PLATFORM_FLAG} ${PLATFORM} --rm -it \
 		-p 8000:8000 \
 		-v ${PWD}:/docs \
 		--entrypoint mkdocs \
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 60c566941..315756269 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -55,10 +55,18 @@ fi
 # create output directory as current user to avoid problem with docker.
 mkdir -p "${KUBE_ROOT}/bin" "${KUBE_ROOT}/bin/${ARCH}"
 
+PLATFORM="${PLATFORM:-}"
+if [[ -n "$PLATFORM" ]]; then
+  PLATFORM_FLAG=--platform
+else
+  PLATFORM_FLAG=
+fi
+
 if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   /bin/bash -c "${FLAGS}"
 else
   docker run                                            \
+    ${PLATFORM_FLAG} ${PLATFORM}                        \
     --tty                                               \
     --rm                                                \
     ${DOCKER_OPTS}                                      \
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 0647db915..c52b0ae51 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -111,7 +111,7 @@ controller:
 
 ### AWS L7 ELB with SSL Termination
 
-Annotate the controller as shown in the [nginx-ingress l7 patch](https://github.com/kubernetes/ingress-nginx/blob/main/deploy/aws/l7/service-l7.yaml):
+Annotate the controller as shown in the [nginx-ingress l7 patch](https://github.com/kubernetes/ingress-nginx/blob/ab3a789caae65eec4ad6e3b46b19750b481b6bce/deploy/aws/l7/service-l7.yaml):
 
 ```yaml
 controller:
@@ -128,7 +128,7 @@ controller:
 
 ### AWS route53-mapper
 
-To configure the LoadBalancer service with the [route53-mapper addon](https://github.com/kubernetes/kops/tree/master/addons/route53-mapper), add the `domainName` annotation and `dns` label:
+To configure the LoadBalancer service with the [route53-mapper addon](https://github.com/kubernetes/kops/blob/be63d4f1a7a46daaf1c4c482527328236850f111/addons/route53-mapper/README.md), add the `domainName` annotation and `dns` label:
 
 ```yaml
 controller:
diff --git a/charts/ingress-nginx/README.md.gotmpl b/charts/ingress-nginx/README.md.gotmpl
index 5cd9e59e1..895996111 100644
--- a/charts/ingress-nginx/README.md.gotmpl
+++ b/charts/ingress-nginx/README.md.gotmpl
@@ -110,7 +110,7 @@ controller:
 
 ### AWS L7 ELB with SSL Termination
 
-Annotate the controller as shown in the [nginx-ingress l7 patch](https://github.com/kubernetes/ingress-nginx/blob/main/deploy/aws/l7/service-l7.yaml):
+Annotate the controller as shown in the [nginx-ingress l7 patch](https://github.com/kubernetes/ingress-nginx/blob/ab3a789caae65eec4ad6e3b46b19750b481b6bce/deploy/aws/l7/service-l7.yaml):
 
 ```yaml
 controller:
@@ -127,7 +127,7 @@ controller:
 
 ### AWS route53-mapper
 
-To configure the LoadBalancer service with the [route53-mapper addon](https://github.com/kubernetes/kops/tree/master/addons/route53-mapper), add the `domainName` annotation and `dns` label:
+To configure the LoadBalancer service with the [route53-mapper addon](https://github.com/kubernetes/kops/blob/be63d4f1a7a46daaf1c4c482527328236850f111/addons/route53-mapper/README.md), add the `domainName` annotation and `dns` label:
 
 ```yaml
 controller:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 849040574..7c9219012 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -218,7 +218,7 @@ By default, TLS is terminated in the ingress controller. But it is also possible
 
 Idle timeout value for TCP flows is 350 seconds and [cannot be modified](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/network-load-balancers.html#connection-idle-timeout).
 
-For this reason, you need to ensure the [keepalive_timeout](http://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_timeout) value is configured less than 350 seconds to work as expected.
+For this reason, you need to ensure the [keepalive_timeout](https://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_timeout) value is configured less than 350 seconds to work as expected.
 
 By default NGINX `keepalive_timeout` is set to `75s`.
 
diff --git a/docs/developer-guide/code-overview.md b/docs/developer-guide/code-overview.md
index 92f9fcbbd..7531daf92 100644
--- a/docs/developer-guide/code-overview.md
+++ b/docs/developer-guide/code-overview.md
@@ -146,7 +146,7 @@ This is NGINX with some Lua enhancement. We do dynamic certificate, endpoints ha
 The files are in [rootfs](https://github.com/kubernetes/ingress-nginx/tree/main/rootfs) directory and contains:
 
 * The Dockerfile
-* [Auxiliary scripts](https://github.com/kubernetes/ingress-nginx/tree/main/rootfs/ingress-controller)
+* [nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/rootfs/etc/nginx)
 
 #### Ingress NGINX Lua Scripts
 
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 29ef07161..fa8158887 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -132,16 +132,16 @@
 - [should set valid proxy-ssl-secret, proxy-ssl-protocols](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L122)
 - [proxy-ssl-location-only flag should change the nginx config server part](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L150)
 
-### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity.go#L27)
+### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L27)
 
-- [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity.go#L34)
-- [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity.go#L52)
-- [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity.go#L73)
-- [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity.go#L90)
-- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity.go#L109)
-- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity.go#L131)
-- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity.go#L152)
-- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity.go#L186)
+- [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L34)
+- [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L52)
+- [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L73)
+- [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L90)
+- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L109)
+- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L131)
+- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L152)
+- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L186)
 
 ### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L38)
 
@@ -534,9 +534,9 @@
 - [should set valid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L36)
 - [should not set invalid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L52)
 
-### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity_snippet.go#L27)
+### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
 
-- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity_snippet.go#L30)
+- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
 
 ### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
 
diff --git a/docs/enhancements/20190815-zone-aware-routing.md b/docs/enhancements/20190815-zone-aware-routing.md
index 357e8ad92..7000fb6fd 100644
--- a/docs/enhancements/20190815-zone-aware-routing.md
+++ b/docs/enhancements/20190815-zone-aware-routing.md
@@ -17,13 +17,15 @@ status: implementable
 ## Table of Contents
 
 <!-- toc -->
-- [Summary](#summary)
-- [Motivation](#motivation)
-  - [Goals](#goals)
-  - [Non-Goals](#non-goals)
-- [Proposal](#proposal)
-- [Implementation History](#implementation-history)
-- [Drawbacks [optional]](#drawbacks-optional)
+- [Availability zone aware routing](#availability-zone-aware-routing)
+  - [Table of Contents](#table-of-contents)
+  - [Summary](#summary)
+  - [Motivation](#motivation)
+    - [Goals](#goals)
+    - [Non-Goals](#non-goals)
+  - [Proposal](#proposal)
+  - [Implementation History](#implementation-history)
+  - [Drawbacks [optional]](#drawbacks-optional)
 <!-- /toc -->
 
 ## Summary
@@ -39,7 +41,7 @@ inter-zone traffic and usually costs extra money.
 
 
 At the time of this writing, GCP charges $0.01 per GB of inter-zone egress traffic according to https://cloud.google.com/compute/network-pricing.
-According to https://datapath.io/resources/blog/what-are-aws-data-transfer-costs-and-how-to-minimize-them/ Amazon also charges the same amount of money as GCP for cross-zone, egress traffic.
+According to [https://datapath.io/resources/blog/what-are-aws-data-transfer-costs-and-how-to-minimize-them/](https://web.archive.org/web/20201008160149/https://datapath.io/resources/blog/what-are-aws-data-transfer-costs-and-how-to-minimize-them/) Amazon also charges the same amount of money as GCP for cross-zone, egress traffic.
 
 This can be a lot of money depending on once's traffic. By teaching ingress-nginx about zones we can eliminate or at least decrease this cost.
 
diff --git a/docs/how-it-works.md b/docs/how-it-works.md
index b7d48b00c..4ad824dc8 100644
--- a/docs/how-it-works.md
+++ b/docs/how-it-works.md
@@ -70,5 +70,5 @@ This webhook appends the incoming ingress objects to the list of ingresses, gene
 [4]: https://github.com/kubernetes/ingress-nginx/blob/main/internal/task/queue.go#L38
 [5]: https://golang.org/pkg/sync/#Mutex
 [6]: https://github.com/kubernetes/ingress-nginx/blob/main/rootfs/etc/nginx/template/nginx.tmpl
-[7]: http://nginx.org/en/docs/beginners_guide.html#control
+[7]: https://nginx.org/en/docs/beginners_guide.html#control
 [8]: https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/#validatingadmissionwebhook
diff --git a/docs/troubleshooting.md b/docs/troubleshooting.md
index 2e8684a8b..415bd3b96 100644
--- a/docs/troubleshooting.md
+++ b/docs/troubleshooting.md
@@ -110,7 +110,7 @@ $ kubectl edit deploy -n <namespace-of-ingress-controller> ingress-nginx-control
 
 - `--v=2` shows details using `diff` about the changes in the configuration in nginx
 - `--v=3` shows details about the service, Ingress rule, endpoint changes and it dumps the nginx configuration in JSON format
-- `--v=5` configures NGINX in [debug mode](http://nginx.org/en/docs/debugging_log.html)
+- `--v=5` configures NGINX in [debug mode](https://nginx.org/en/docs/debugging_log.html)
 
 ## Authentication to the Kubernetes API Server
 
diff --git a/docs/user-guide/fcgi-services.md b/docs/user-guide/fcgi-services.md
index becb4819f..db4d9428b 100644
--- a/docs/user-guide/fcgi-services.md
+++ b/docs/user-guide/fcgi-services.md
@@ -93,13 +93,13 @@ To enable FastCGI, the `nginx.ingress.kubernetes.io/backend-protocol` annotation
 
 ### The `nginx.ingress.kubernetes.io/fastcgi-index` Annotation
 
-To specify an index file, the `fastcgi-index` annotation value can optionally be set.  In the example below, the value is set to `index.php`.  This annotation corresponds to [the _NGINX_ `fastcgi_index` directive](http://nginx.org/en/docs/http/ngx_http_fastcgi_module.html#fastcgi_index).
+To specify an index file, the `fastcgi-index` annotation value can optionally be set.  In the example below, the value is set to `index.php`.  This annotation corresponds to [the _NGINX_ `fastcgi_index` directive](https://nginx.org/en/docs/http/ngx_http_fastcgi_module.html#fastcgi_index).
 
 > `nginx.ingress.kubernetes.io/fastcgi-index: "index.php"`
 
 ### The `nginx.ingress.kubernetes.io/fastcgi-params-configmap` Annotation
 
-To specify [_NGINX_ `fastcgi_param` directives](http://nginx.org/en/docs/http/ngx_http_fastcgi_module.html#fastcgi_param), the `fastcgi-params-configmap` annotation is used, which in turn must lead to a _ConfigMap_ object containing the _NGINX_ `fastcgi_param` directives as key/values.
+To specify [_NGINX_ `fastcgi_param` directives](https://nginx.org/en/docs/http/ngx_http_fastcgi_module.html#fastcgi_param), the `fastcgi-params-configmap` annotation is used, which in turn must lead to a _ConfigMap_ object containing the _NGINX_ `fastcgi_param` directives as key/values.
 
 > `nginx.ingress.kubernetes.io/fastcgi-params-configmap: "example-configmap"`
 
diff --git a/docs/user-guide/miscellaneous.md b/docs/user-guide/miscellaneous.md
index a991d91b9..196ea17fc 100644
--- a/docs/user-guide/miscellaneous.md
+++ b/docs/user-guide/miscellaneous.md
@@ -36,7 +36,7 @@ A more adequate value to support websockets is a value higher than one hour (`36
 
 ## Optimizing TLS Time To First Byte (TTTFB)
 
-NGINX provides the configuration option [ssl_buffer_size](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_buffer_size) to allow the optimization of the TLS record size.
+NGINX provides the configuration option [ssl_buffer_size](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_buffer_size) to allow the optimization of the TLS record size.
 
 This improves the [TLS Time To First Byte](https://www.igvita.com/2013/12/16/optimizing-nginx-tls-time-to-first-byte/) (TTTFB).
 The default value in the Ingress controller is `4k` (NGINX default is `16k`).
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index a0086abec..027db9407 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -222,7 +222,7 @@ nginx.ingress.kubernetes.io/auth-realm: "realm string"
 
 ### Custom NGINX upstream hashing
 
-NGINX supports load balancing by client-server mapping based on [consistent hashing](http://nginx.org/en/docs/http/ngx_http_upstream_module.html#hash) for a given key. The key can contain text, variables or any combination thereof. This feature allows for request stickiness other than client IP or cookies. The [ketama](https://www.last.fm/user/RJ/journal/2007/04/10/rz_libketama_-_a_consistent_hashing_algo_for_memcache_clients) consistent hashing method will be used which ensures only a few keys would be remapped to different servers on upstream group changes.
+NGINX supports load balancing by client-server mapping based on [consistent hashing](https://nginx.org/en/docs/http/ngx_http_upstream_module.html#hash) for a given key. The key can contain text, variables or any combination thereof. This feature allows for request stickiness other than client IP or cookies. The [ketama](https://www.last.fm/user/RJ/journal/2007/04/10/rz_libketama_-_a_consistent_hashing_algo_for_memcache_clients) consistent hashing method will be used which ensures only a few keys would be remapped to different servers on upstream group changes.
 
 There is a special mode of upstream hashing called subset. In this mode, upstream servers are grouped into subsets, and stickiness works by mapping keys to a subset instead of individual upstream servers. Specific server is chosen uniformly at random from the selected sticky subset. It provides a balance between stickiness and load distribution.
 
@@ -277,7 +277,7 @@ The following headers are sent to the upstream service according to the `auth-tl
 
     Cloudflare only allows Authenticated Origin Pulls and is required to use their own certificate: [https://blog.cloudflare.com/protecting-the-origin-with-tls-authenticated-origin-pulls/](https://blog.cloudflare.com/protecting-the-origin-with-tls-authenticated-origin-pulls/)
 
-    Only Authenticated Origin Pulls are allowed and can be configured by following their tutorial: [https://support.cloudflare.com/hc/en-us/articles/204494148-Setting-up-NGINX-to-use-TLS-Authenticated-Origin-Pulls](https://support.cloudflare.com/hc/en-us/articles/204494148-Setting-up-NGINX-to-use-TLS-Authenticated-Origin-Pulls)
+    Only Authenticated Origin Pulls are allowed and can be configured by following their tutorial: [https://support.cloudflare.com/hc/en-us/articles/204494148-Setting-up-NGINX-to-use-TLS-Authenticated-Origin-Pulls](https://web.archive.org/web/20200907143649/https://support.cloudflare.com/hc/en-us/articles/204899617-Setting-up-NGINX-to-use-TLS-Authenticated-Origin-Pulls#section5)
 
 ### Backend Certificate Authentication
 
@@ -291,11 +291,11 @@ It is possible to authenticate to a proxied HTTPS backend with certificate using
 * `nginx.ingress.kubernetes.io/proxy-ssl-verify-depth`:
   Sets the verification depth in the proxied HTTPS server certificates chain. (default: 1)
 * `nginx.ingress.kubernetes.io/proxy-ssl-ciphers`:
-  Specifies the enabled [ciphers](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_ssl_ciphers) for requests to a proxied HTTPS server. The ciphers are specified in the format understood by the OpenSSL library.
+  Specifies the enabled [ciphers](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_ssl_ciphers) for requests to a proxied HTTPS server. The ciphers are specified in the format understood by the OpenSSL library.
 * `nginx.ingress.kubernetes.io/proxy-ssl-name`:
-  Allows to set [proxy_ssl_name](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_ssl_name). This allows overriding the server name used to verify the certificate of the proxied HTTPS server. This value is also passed through SNI when a connection is established to the proxied HTTPS server.
+  Allows to set [proxy_ssl_name](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_ssl_name). This allows overriding the server name used to verify the certificate of the proxied HTTPS server. This value is also passed through SNI when a connection is established to the proxied HTTPS server.
 * `nginx.ingress.kubernetes.io/proxy-ssl-protocols`:
-  Enables the specified [protocols](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_ssl_protocols) for requests to a proxied HTTPS server.
+  Enables the specified [protocols](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_ssl_protocols) for requests to a proxied HTTPS server.
 * `nginx.ingress.kubernetes.io/proxy-ssl-server-name`:
   Enables passing of the server name through TLS Server Name Indication extension (SNI, RFC 6066) when establishing a connection with the proxied HTTPS server.
 
@@ -397,7 +397,7 @@ This will create a server with the same configuration, but adding new values to
     If a server-alias is created and later a new server with the same hostname is created, the new server configuration will take
     place over the alias configuration.
 
-For more information please see [the `server_name` documentation](http://nginx.org/en/docs/http/ngx_http_core_module.html#server_name).
+For more information please see [the `server_name` documentation](https://nginx.org/en/docs/http/ngx_http_core_module.html#server_name).
 
 ### Server snippet
 
@@ -441,7 +441,7 @@ applied to each location provided in the ingress rule.
     * `nginx.ingress.kubernetes.io/client-body-buffer-size: 1m` # 1 megabyte
     * `nginx.ingress.kubernetes.io/client-body-buffer-size: 1M` # 1 megabyte
 
-For more information please see [http://nginx.org](http://nginx.org/en/docs/http/ngx_http_core_module.html#client_body_buffer_size)
+For more information please see [https://nginx.org](https://nginx.org/en/docs/http/ngx_http_core_module.html#client_body_buffer_size)
 
 ### External Authentication
 
@@ -468,7 +468,7 @@ Additionally it is possible to set:
 * `nginx.ingress.kubernetes.io/auth-cache-key`:
   `<Cache_Key>` this enables caching for auth requests. specify a lookup key for auth responses. e.g. `$remote_user$http_authorization`. Each server and location has it's own keyspace. Hence a cached response is only valid on a per-server and per-location basis.
 * `nginx.ingress.kubernetes.io/auth-cache-duration`:
-  `<Cache_duration>` to specify a caching time for auth responses based on their response codes, e.g. `200 202 30m`. See [proxy_cache_valid](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cache_valid) for details. You may specify multiple, comma-separated values: `200 202 10m, 401 5m`. defaults to `200 202 401 5m`.
+  `<Cache_duration>` to specify a caching time for auth responses based on their response codes, e.g. `200 202 30m`. See [proxy_cache_valid](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cache_valid) for details. You may specify multiple, comma-separated values: `200 202 10m, 401 5m`. defaults to `200 202 401 5m`.
 * `nginx.ingress.kubernetes.io/auth-snippet`:
   `<Auth_Snippet>` to specify a custom snippet to use with external authentication, e.g.
 
@@ -642,7 +642,7 @@ Note: All timeout values are unitless and in seconds e.g. `nginx.ingress.kuberne
 ### Proxy redirect
 
 The annotations `nginx.ingress.kubernetes.io/proxy-redirect-from` and `nginx.ingress.kubernetes.io/proxy-redirect-to` will set the first and second parameters of NGINX's proxy_redirect directive respectively. It is possible to
-set the text that should be changed in the `Location` and `Refresh` header fields of a [proxied server response](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_redirect)
+set the text that should be changed in the `Location` and `Refresh` header fields of a [proxied server response](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_redirect)
 
 Setting "off" or "default" in the annotation `nginx.ingress.kubernetes.io/proxy-redirect-from` disables `nginx.ingress.kubernetes.io/proxy-redirect-to`,
 otherwise, both annotations must be used in unison. Note that each annotation must be a string without spaces.
@@ -651,7 +651,7 @@ By default the value of each annotation is "off".
 
 ### Custom max body size
 
-For NGINX, an 413 error will be returned to the client when the size in a request exceeds the maximum allowed size of the client request body. This size can be configured by the parameter [`client_max_body_size`](http://nginx.org/en/docs/http/ngx_http_core_module.html#client_max_body_size).
+For NGINX, an 413 error will be returned to the client when the size in a request exceeds the maximum allowed size of the client request body. This size can be configured by the parameter [`client_max_body_size`](https://nginx.org/en/docs/http/ngx_http_core_module.html#client_max_body_size).
 
 To configure this setting globally for all Ingress rules, the `proxy-body-size` value may be set in the [NGINX ConfigMap](./configmap.md#proxy-body-size).
 To use custom values in an Ingress rule define these annotation:
@@ -662,19 +662,19 @@ nginx.ingress.kubernetes.io/proxy-body-size: 8m
 
 ### Proxy cookie domain
 
-Sets a text that [should be changed in the domain attribute](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cookie_domain) of the "Set-Cookie" header fields of a proxied server response.
+Sets a text that [should be changed in the domain attribute](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cookie_domain) of the "Set-Cookie" header fields of a proxied server response.
 
 To configure this setting globally for all Ingress rules, the `proxy-cookie-domain` value may be set in the [NGINX ConfigMap](./configmap.md#proxy-cookie-domain).
 
 ### Proxy cookie path
 
-Sets a text that [should be changed in the path attribute](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cookie_path) of the "Set-Cookie" header fields of a proxied server response.
+Sets a text that [should be changed in the path attribute](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cookie_path) of the "Set-Cookie" header fields of a proxied server response.
 
 To configure this setting globally for all Ingress rules, the `proxy-cookie-path` value may be set in the [NGINX ConfigMap](./configmap.md#proxy-cookie-path).
 
 ### Proxy buffering
 
-Enable or disable proxy buffering [`proxy_buffering`](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffering).
+Enable or disable proxy buffering [`proxy_buffering`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffering).
 By default proxy buffering is disabled in the NGINX config.
 
 To configure this setting globally for all Ingress rules, the `proxy-buffering` value may be set in the [NGINX ConfigMap](./configmap.md#proxy-buffering).
@@ -686,7 +686,7 @@ nginx.ingress.kubernetes.io/proxy-buffering: "on"
 
 ### Proxy buffers Number
 
-Sets the number of the buffers in [`proxy_buffers`](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffers) used for reading the first part of the response received from the proxied server.
+Sets the number of the buffers in [`proxy_buffers`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffers) used for reading the first part of the response received from the proxied server.
 By default proxy buffers number is set as 4
 
 To configure this setting globally, set `proxy-buffers-number` in [NGINX ConfigMap](./configmap.md#proxy-buffers-number). To use custom values in an Ingress rule, define this annotation:
@@ -696,7 +696,7 @@ nginx.ingress.kubernetes.io/proxy-buffers-number: "4"
 
 ### Proxy buffer size
 
-Sets the size of the buffer [`proxy_buffer_size`](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffer_size) used for reading the first part of the response received from the proxied server.
+Sets the size of the buffer [`proxy_buffer_size`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffer_size) used for reading the first part of the response received from the proxied server.
 By default proxy buffer size is set as "4k"
 
 To configure this setting globally, set `proxy-buffer-size` in [NGINX ConfigMap](./configmap.md#proxy-buffer-size). To use custom values in an Ingress rule, define this annotation:
@@ -706,7 +706,7 @@ nginx.ingress.kubernetes.io/proxy-buffer-size: "8k"
 
 ### Proxy max temp file size
 
-When [`buffering`](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffering) of responses from the proxied server is enabled, and the whole response does not fit into the buffers set by the [`proxy_buffer_size`](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffer_size) and [`proxy_buffers`](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffers) directives, a part of the response can be saved to a temporary file. This directive sets the maximum `size` of the temporary file setting the [`proxy_max_temp_file_size`](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_max_temp_file_size). The size of data written to the temporary file at a time is set by the [`proxy_temp_file_write_size`](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_temp_file_write_size) directive.
+When [`buffering`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffering) of responses from the proxied server is enabled, and the whole response does not fit into the buffers set by the [`proxy_buffer_size`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffer_size) and [`proxy_buffers`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffers) directives, a part of the response can be saved to a temporary file. This directive sets the maximum `size` of the temporary file setting the [`proxy_max_temp_file_size`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_max_temp_file_size). The size of data written to the temporary file at a time is set by the [`proxy_temp_file_write_size`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_temp_file_write_size) directive.
 
 The zero value disables buffering of responses to temporary files.
 
@@ -717,7 +717,7 @@ nginx.ingress.kubernetes.io/proxy-max-temp-file-size: "1024m"
 
 ### Proxy HTTP version
 
-Using this annotation sets the [`proxy_http_version`](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_http_version) that the Nginx reverse proxy will use to communicate with the backend.
+Using this annotation sets the [`proxy_http_version`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_http_version) that the Nginx reverse proxy will use to communicate with the backend.
 By default this is set to "1.1".
 
 ```yaml
@@ -726,7 +726,7 @@ nginx.ingress.kubernetes.io/proxy-http-version: "1.0"
 
 ### SSL ciphers
 
-Specifies the [enabled ciphers](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_ciphers).
+Specifies the [enabled ciphers](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_ciphers).
 
 Using this annotation will set the `ssl_ciphers` directive at the server level. This configuration is active for all the paths in the host.
 
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index b48cc1028..daad89501 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -246,14 +246,14 @@ Sets additional header that will not be passed from the upstream server to the c
 _**default:**_ empty
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_hide_header](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_hide_header)
+[https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_hide_header](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_hide_header)
 
 ## access-log-params
 
 Additional params for access_log. For example, buffer=16k, gzip, flush=1m
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_log_module.html#access_log](http://nginx.org/en/docs/http/ngx_http_log_module.html#access_log)
+[https://nginx.org/en/docs/http/ngx_http_log_module.html#access_log](https://nginx.org/en/docs/http/ngx_http_log_module.html#access_log)
 
 ## access-log-path
 
@@ -286,7 +286,7 @@ Error log path. Goes to `/var/log/nginx/error.log` by default.
 __Note:__ the file `/var/log/nginx/error.log` is a symlink to `/dev/stderr`
 
 _References:_
-[http://nginx.org/en/docs/ngx_core_module.html#error_log](http://nginx.org/en/docs/ngx_core_module.html#error_log)
+[https://nginx.org/en/docs/ngx_core_module.html#error_log](https://nginx.org/en/docs/ngx_core_module.html#error_log)
 
 ## enable-modsecurity
 
@@ -305,35 +305,35 @@ Adds custom rules to modsecurity section of nginx configuration
 Allows to configure a custom buffer size for reading client request header.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_core_module.html#client_header_buffer_size](http://nginx.org/en/docs/http/ngx_http_core_module.html#client_header_buffer_size)
+[https://nginx.org/en/docs/http/ngx_http_core_module.html#client_header_buffer_size](https://nginx.org/en/docs/http/ngx_http_core_module.html#client_header_buffer_size)
 
 ## client-header-timeout
 
 Defines a timeout for reading client request header, in seconds.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_core_module.html#client_header_timeout](http://nginx.org/en/docs/http/ngx_http_core_module.html#client_header_timeout)
+[https://nginx.org/en/docs/http/ngx_http_core_module.html#client_header_timeout](https://nginx.org/en/docs/http/ngx_http_core_module.html#client_header_timeout)
 
 ## client-body-buffer-size
 
 Sets buffer size for reading client request body.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_core_module.html#client_body_buffer_size](http://nginx.org/en/docs/http/ngx_http_core_module.html#client_body_buffer_size)
+[https://nginx.org/en/docs/http/ngx_http_core_module.html#client_body_buffer_size](https://nginx.org/en/docs/http/ngx_http_core_module.html#client_body_buffer_size)
 
 ## client-body-timeout
 
 Defines a timeout for reading client request body, in seconds.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_core_module.html#client_body_timeout](http://nginx.org/en/docs/http/ngx_http_core_module.html#client_body_timeout)
+[https://nginx.org/en/docs/http/ngx_http_core_module.html#client_body_timeout](https://nginx.org/en/docs/http/ngx_http_core_module.html#client_body_timeout)
 
 ## disable-access-log
 
 Disables the Access Log from the entire Ingress Controller. _**default:**_ `false`
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_log_module.html#access_log](http://nginx.org/en/docs/http/ngx_http_log_module.html#access_log)
+[https://nginx.org/en/docs/http/ngx_http_log_module.html#access_log](https://nginx.org/en/docs/http/ngx_http_log_module.html#access_log)
 
 ## disable-ipv6
 
@@ -366,7 +366,7 @@ Since 1.9.13 NGINX will not retry non-idempotent requests (POST, LOCK, PATCH) in
 Configures the logging level of errors. Log levels above are listed in the order of increasing severity.
 
 _References:_
-[http://nginx.org/en/docs/ngx_core_module.html#error_log](http://nginx.org/en/docs/ngx_core_module.html#error_log)
+[https://nginx.org/en/docs/ngx_core_module.html#error_log](https://nginx.org/en/docs/ngx_core_module.html#error_log)
 
 ## http2-max-field-size
 
@@ -387,14 +387,14 @@ _References:_
 Sets the maximum number of requests (including push requests) that can be served through one HTTP/2 connection, after which the next client request will lead to connection closing and the need of establishing a new connection.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_requests](http://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_requests)
+[https://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_requests](https://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_requests)
 
 ## http2-max-concurrent-streams
 
 Sets the maximum number of concurrent HTTP/2 streams in a connection.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_concurrent_streams](http://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_concurrent_streams)
+[https://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_concurrent_streams](https://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_concurrent_streams)
 
 ## hsts
 
@@ -423,7 +423,7 @@ Enables or disables the preload attribute in the HSTS feature (when it is enable
 Sets the time during which a keep-alive client connection will stay open on the server side. The zero value disables keep-alive client connections.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_timeout](http://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_timeout)
+[https://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_timeout](https://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_timeout)
 
 !!! important
     Setting `keep-alive: '0'` will most likely break concurrent http/2 requests due to changes introduced with nginx 1.19.7
@@ -439,7 +439,7 @@ Changes with nginx 1.19.7                                        16 Feb 2021
 ```
 
 _References:_
-[nginx change log](http://nginx.org/en/CHANGES)
+[nginx change log](https://nginx.org/en/CHANGES)
 [nginx issue tracker](https://trac.nginx.org/nginx/ticket/2155)
 [nginx mailing list](https://mailman.nginx.org/pipermail/nginx/2021-May/060697.html)
 
@@ -448,22 +448,22 @@ _References:_
 Sets the maximum number of requests that can be served through one keep-alive connection.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_requests](http://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_requests)
+[https://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_requests](https://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_requests)
 
 ## large-client-header-buffers
 
 Sets the maximum number and size of buffers used for reading large client request header. _**default:**_ 4 8k
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_core_module.html#large_client_header_buffers](http://nginx.org/en/docs/http/ngx_http_core_module.html#large_client_header_buffers)
+[https://nginx.org/en/docs/http/ngx_http_core_module.html#large_client_header_buffers](https://nginx.org/en/docs/http/ngx_http_core_module.html#large_client_header_buffers)
 
 ## log-format-escape-json
 
-Sets if the escape parameter allows JSON ("true") or default characters escaping in variables ("false") Sets the nginx [log format](http://nginx.org/en/docs/http/ngx_http_log_module.html#log_format).
+Sets if the escape parameter allows JSON ("true") or default characters escaping in variables ("false") Sets the nginx [log format](https://nginx.org/en/docs/http/ngx_http_log_module.html#log_format).
 
 ## log-format-upstream
 
-Sets the nginx [log format](http://nginx.org/en/docs/http/ngx_http_log_module.html#log_format).
+Sets the nginx [log format](https://nginx.org/en/docs/http/ngx_http_log_module.html#log_format).
 Example for json output:
 
 ```json
@@ -486,11 +486,11 @@ If disabled, a worker process will accept one new connection at a time. Otherwis
 _**default:**_ true
 
 _References:_
-[http://nginx.org/en/docs/ngx_core_module.html#multi_accept](http://nginx.org/en/docs/ngx_core_module.html#multi_accept)
+[https://nginx.org/en/docs/ngx_core_module.html#multi_accept](https://nginx.org/en/docs/ngx_core_module.html#multi_accept)
 
 ## max-worker-connections
 
-Sets the [maximum number of simultaneous connections](http://nginx.org/en/docs/ngx_core_module.html#worker_connections) that can be opened by each worker process.
+Sets the [maximum number of simultaneous connections](https://nginx.org/en/docs/ngx_core_module.html#worker_connections) that can be opened by each worker process.
 0 will use the value of [max-worker-open-files](#max-worker-open-files).
 _**default:**_ 16384
 
@@ -499,13 +499,13 @@ _**default:**_ 16384
 
 ## max-worker-open-files
 
-Sets the [maximum number of files](http://nginx.org/en/docs/ngx_core_module.html#worker_rlimit_nofile) that can be opened by each worker process.
+Sets the [maximum number of files](https://nginx.org/en/docs/ngx_core_module.html#worker_rlimit_nofile) that can be opened by each worker process.
 The default of 0 means "max open files (system's limit) - 1024".
 _**default:**_ 0
 
 ## map-hash-bucket-size
 
-Sets the bucket size for the [map variables hash tables](http://nginx.org/en/docs/http/ngx_http_map_module.html#map_hash_bucket_size). The details of setting up hash tables are provided in a separate [document](http://nginx.org/en/docs/hash.html).
+Sets the bucket size for the [map variables hash tables](https://nginx.org/en/docs/http/ngx_http_map_module.html#map_hash_bucket_size). The details of setting up hash tables are provided in a separate [document](https://nginx.org/en/docs/hash.html).
 
 ## proxy-real-ip-cidr
 
@@ -518,10 +518,10 @@ Sets custom headers from named configmap before sending traffic to backends. The
 
 ## server-name-hash-max-size
 
-Sets the maximum size of the [server names hash tables](http://nginx.org/en/docs/http/ngx_http_core_module.html#server_names_hash_max_size) used in server names,map directive’s values, MIME types, names of request header strings, etc.
+Sets the maximum size of the [server names hash tables](https://nginx.org/en/docs/http/ngx_http_core_module.html#server_names_hash_max_size) used in server names,map directive’s values, MIME types, names of request header strings, etc.
 
 _References:_
-[http://nginx.org/en/docs/hash.html](http://nginx.org/en/docs/hash.html)
+[https://nginx.org/en/docs/hash.html](https://nginx.org/en/docs/hash.html)
 
 ## server-name-hash-bucket-size
 
@@ -529,8 +529,8 @@ Sets the size of the bucket for the server names hash tables.
 
 _References:_
 
-- [http://nginx.org/en/docs/hash.html](http://nginx.org/en/docs/hash.html)
-- [http://nginx.org/en/docs/http/ngx_http_core_module.html#server_names_hash_bucket_size](http://nginx.org/en/docs/http/ngx_http_core_module.html#server_names_hash_bucket_size)
+- [https://nginx.org/en/docs/hash.html](https://nginx.org/en/docs/hash.html)
+- [https://nginx.org/en/docs/http/ngx_http_core_module.html#server_names_hash_bucket_size](https://nginx.org/en/docs/http/ngx_http_core_module.html#server_names_hash_bucket_size)
 
 ## proxy-headers-hash-max-size
 
@@ -538,7 +538,7 @@ Sets the maximum size of the proxy headers hash tables.
 
 _References:_
 
-- [http://nginx.org/en/docs/hash.html](http://nginx.org/en/docs/hash.html)
+- [https://nginx.org/en/docs/hash.html](https://nginx.org/en/docs/hash.html)
 - [https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_headers_hash_max_size](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_headers_hash_max_size)
 
 ## reuse-port
@@ -552,7 +552,7 @@ Sets the size of the bucket for the proxy headers hash tables.
 
 _References:_
 
-- [http://nginx.org/en/docs/hash.html](http://nginx.org/en/docs/hash.html)
+- [https://nginx.org/en/docs/hash.html](https://nginx.org/en/docs/hash.html)
 - [https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_headers_hash_bucket_size](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_headers_hash_bucket_size)
 
 ## plugins
@@ -565,7 +565,7 @@ Send NGINX Server header in responses and display NGINX version in error pages.
 
 ## ssl-ciphers
 
-Sets the [ciphers](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_ciphers) list to enable. The ciphers are specified in the format understood by the OpenSSL library.
+Sets the [ciphers](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_ciphers) list to enable. The ciphers are specified in the format understood by the OpenSSL library.
 
 The default cipher list is:
  `ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384`.
@@ -583,7 +583,7 @@ __Note:__ ssl_prefer_server_ciphers directive will be enabled by default for htt
 Specifies a curve for ECDHE ciphers.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_ecdh_curve](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_ecdh_curve)
+[https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_ecdh_curve](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_ecdh_curve)
 
 ## ssl-dh-param
 
@@ -593,11 +593,11 @@ _References:_
 
 - [https://wiki.openssl.org/index.php/Diffie-Hellman_parameters](https://wiki.openssl.org/index.php/Diffie-Hellman_parameters)
 - [https://wiki.mozilla.org/Security/Server_Side_TLS#DHE_handshake_and_dhparam](https://wiki.mozilla.org/Security/Server_Side_TLS#DHE_handshake_and_dhparam)
-- [http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_dhparam](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_dhparam)
+- [https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_dhparam](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_dhparam)
 
 ## ssl-protocols
 
-Sets the [SSL protocols](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_protocols) to use. The default is: `TLSv1.2 TLSv1.3`.
+Sets the [SSL protocols](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_protocols) to use. The default is: `TLSv1.2 TLSv1.3`.
 
 Please check the result of the configuration using `https://ssllabs.com/ssltest/analyze.html` or `https://testssl.sh`.
 
@@ -609,34 +609,34 @@ Time Resumption (0-RTT).
 This requires `ssl-protocols` to have `TLSv1.3` enabled. Enable this with caution, because requests sent within early
 data are subject to [replay attacks](https://tools.ietf.org/html/rfc8470).
 
-[ssl_early_data](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_early_data). The default is: `false`.
+[ssl_early_data](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_early_data). The default is: `false`.
 
 ## ssl-session-cache
 
-Enables or disables the use of shared [SSL cache](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_session_cache) among worker processes.
+Enables or disables the use of shared [SSL cache](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_session_cache) among worker processes.
 
 ## ssl-session-cache-size
 
-Sets the size of the [SSL shared session cache](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_session_cache) between all worker processes.
+Sets the size of the [SSL shared session cache](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_session_cache) between all worker processes.
 
 ## ssl-session-tickets
 
-Enables or disables session resumption through [TLS session tickets](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_session_tickets).
+Enables or disables session resumption through [TLS session tickets](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_session_tickets).
 
 ## ssl-session-ticket-key
 
 Sets the secret key used to encrypt and decrypt TLS session tickets. The value must be a valid base64 string.
 To create a ticket: `openssl rand 80 | openssl enc -A -base64`
 
-[TLS session ticket-key](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_session_tickets), by default, a randomly generated key is used.
+[TLS session ticket-key](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_session_tickets), by default, a randomly generated key is used.
 
 ## ssl-session-timeout
 
-Sets the time during which a client may [reuse the session](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_session_timeout) parameters stored in a cache.
+Sets the time during which a client may [reuse the session](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_session_timeout) parameters stored in a cache.
 
 ## ssl-buffer-size
 
-Sets the size of the [SSL buffer](http://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_buffer_size) used for sending data. The default of 4k helps NGINX to improve TLS Time To First Byte (TTTFB).
+Sets the size of the [SSL buffer](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_buffer_size) used for sending data. The default of 4k helps NGINX to improve TLS Time To First Byte (TTTFB).
 
 _References:_
 [https://www.igvita.com/2013/12/16/optimizing-nginx-tls-time-to-first-byte/](https://www.igvita.com/2013/12/16/optimizing-nginx-tls-time-to-first-byte/)
@@ -652,11 +652,11 @@ _**default:**_ 5s
 
 ## use-gzip
 
-Enables or disables compression of HTTP responses using the ["gzip" module](http://nginx.org/en/docs/http/ngx_http_gzip_module.html). MIME types to compress are controlled by [gzip-types](#gzip-types). _**default:**_ false
+Enables or disables compression of HTTP responses using the ["gzip" module](https://nginx.org/en/docs/http/ngx_http_gzip_module.html). MIME types to compress are controlled by [gzip-types](#gzip-types). _**default:**_ false
 
 ## use-geoip
 
-Enables or disables ["geoip" module](http://nginx.org/en/docs/http/ngx_http_geoip_module.html) that creates variables with values depending on the client IP address, using the precompiled MaxMind databases.
+Enables or disables ["geoip" module](https://nginx.org/en/docs/http/ngx_http_geoip_module.html) that creates variables with values depending on the client IP address, using the precompiled MaxMind databases.
 _**default:**_ true
 
 > __Note:__ MaxMind legacy databases are discontinued and will not receive updates after 2019-01-02, cf. [discontinuation notice](https://support.maxmind.com/geolite-legacy-discontinuation-notice/). Consider [use-geoip2](#use-geoip2) below.
@@ -695,7 +695,7 @@ _**default:**_ `application/xml+rss application/atom+xml application/javascript
 
 ## use-http2
 
-Enables or disables [HTTP/2](http://nginx.org/en/docs/http/ngx_http_v2_module.html) support in secure connections.
+Enables or disables [HTTP/2](https://nginx.org/en/docs/http/ngx_http_v2_module.html) support in secure connections.
 
 ## gzip-level
 
@@ -712,12 +712,12 @@ _**default:**_ `application/atom+xml application/javascript application/x-javasc
 
 ## worker-processes
 
-Sets the number of [worker processes](http://nginx.org/en/docs/ngx_core_module.html#worker_processes).
+Sets the number of [worker processes](https://nginx.org/en/docs/ngx_core_module.html#worker_processes).
 The default of "auto" means number of available CPU cores.
 
 ## worker-cpu-affinity
 
-Binds worker processes to the sets of CPUs. [worker_cpu_affinity](http://nginx.org/en/docs/ngx_core_module.html#worker_cpu_affinity).
+Binds worker processes to the sets of CPUs. [worker_cpu_affinity](https://nginx.org/en/docs/ngx_core_module.html#worker_cpu_affinity).
 By default worker processes are not bound to any specific CPUs. The value can be:
 
 - "": empty string indicate no affinity is applied.
@@ -726,7 +726,7 @@ By default worker processes are not bound to any specific CPUs. The value can be
 
 ## worker-shutdown-timeout
 
-Sets a timeout for Nginx to [wait for worker to gracefully shutdown](http://nginx.org/en/docs/ngx_core_module.html#worker_shutdown_timeout). _**default:**_ "240s"
+Sets a timeout for Nginx to [wait for worker to gracefully shutdown](https://nginx.org/en/docs/ngx_core_module.html#worker_shutdown_timeout). _**default:**_ "240s"
 
 ## load-balance
 
@@ -742,21 +742,21 @@ The default is `round_robin`.
 - To load balance using session cookies, consider the `nginx.ingress.kubernetes.io/affinity` annotation.
 
 _References:_
-[http://nginx.org/en/docs/http/load_balancing.html](http://nginx.org/en/docs/http/load_balancing.html)
+[https://nginx.org/en/docs/http/load_balancing.html](https://nginx.org/en/docs/http/load_balancing.html)
 
 ## variables-hash-bucket-size
 
 Sets the bucket size for the variables hash table.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_map_module.html#variables_hash_bucket_size](http://nginx.org/en/docs/http/ngx_http_map_module.html#variables_hash_bucket_size)
+[https://nginx.org/en/docs/http/ngx_http_map_module.html#variables_hash_bucket_size](https://nginx.org/en/docs/http/ngx_http_map_module.html#variables_hash_bucket_size)
 
 ## variables-hash-max-size
 
 Sets the maximum size of the variables hash table.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_map_module.html#variables_hash_max_size](http://nginx.org/en/docs/http/ngx_http_map_module.html#variables_hash_max_size)
+[https://nginx.org/en/docs/http/ngx_http_map_module.html#variables_hash_max_size](https://nginx.org/en/docs/http/ngx_http_map_module.html#variables_hash_max_size)
 
 ## upstream-keepalive-connections
 
@@ -766,7 +766,7 @@ exceeded, the least recently used connections are closed.
 _**default:**_ 320
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive](http://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive)
+[https://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive](https://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive)
 
 
 ## upstream-keepalive-timeout
@@ -775,7 +775,7 @@ Sets a timeout during which an idle keepalive connection to an upstream server w
  _**default:**_ 60
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive_timeout](http://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive_timeout)
+[https://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive_timeout](https://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive_timeout)
 
 
 ## upstream-keepalive-requests
@@ -786,47 +786,47 @@ _**default:**_ 10000
 
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive_requests](http://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive_requests)
+[https://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive_requests](https://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive_requests)
 
 
 ## limit-conn-zone-variable
 
-Sets parameters for a shared memory zone that will keep states for various keys of [limit_conn_zone](http://nginx.org/en/docs/http/ngx_http_limit_conn_module.html#limit_conn_zone). The default of "$binary_remote_addr" variable’s size is always 4 bytes for IPv4 addresses or 16 bytes for IPv6 addresses.
+Sets parameters for a shared memory zone that will keep states for various keys of [limit_conn_zone](https://nginx.org/en/docs/http/ngx_http_limit_conn_module.html#limit_conn_zone). The default of "$binary_remote_addr" variable’s size is always 4 bytes for IPv4 addresses or 16 bytes for IPv6 addresses.
 
 ## proxy-stream-timeout
 
 Sets the timeout between two successive read or write operations on client or proxied server connections. If no data is transmitted within this time, the connection is closed.
 
 _References:_
-[http://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_timeout](http://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_timeout)
+[https://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_timeout](https://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_timeout)
 
 ## proxy-stream-next-upstream
 
 When a connection to the proxied server cannot be established, determines whether a client connection will be passed to the next server.
 
 _References:_
-[http://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_next_upstream](http://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_next_upstream)
+[https://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_next_upstream](https://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_next_upstream)
 
 ## proxy-stream-next-upstream-timeout
 
 Limits the time allowed to pass a connection to the next server. The 0 value turns off this limitation.
 
 _References:_
-[http://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_next_upstream_timeout](http://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_next_upstream_timeout)
+[https://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_next_upstream_timeout](https://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_next_upstream_timeout)
 
 ## proxy-stream-next-upstream-tries
 
 Limits the number of possible tries a request should be passed to the next server. The 0 value turns off this limitation.
 
 _References:_
-[http://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_next_upstream_tries](http://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_next_upstream_timeout)
+[https://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_next_upstream_tries](https://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_next_upstream_timeout)
 
 ## proxy-stream-responses
 
 Sets the number of datagrams expected from the proxied server in response to the client request if the UDP protocol is used.
 
 _References:_
-[http://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_responses](http://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_responses)
+[https://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_responses](https://nginx.org/en/docs/stream/ngx_stream_proxy_module.html#proxy_responses)
 
 ## bind-address
 
@@ -840,7 +840,7 @@ If false, NGINX ignores incoming `X-Forwarded-*` headers, filling them with the
 
 ## enable-real-ip
 
-`enable-real-ip` enables the configuration of [http://nginx.org/en/docs/http/ngx_http_realip_module.html](http://nginx.org/en/docs/http/ngx_http_realip_module.html). Specific attributes of the module can be configured further by using `forwarded-for-header` and `proxy-real-ip-cidr` settings.
+`enable-real-ip` enables the configuration of [https://nginx.org/en/docs/http/ngx_http_realip_module.html](https://nginx.org/en/docs/http/ngx_http_realip_module.html). Specific attributes of the module can be configured further by using `forwarded-for-header` and `proxy-real-ip-cidr` settings.
 
 ## forwarded-for-header
 
@@ -1001,67 +1001,67 @@ You can not use this to add new locations that proxy to the Kubernetes pods, as
 
 ## custom-http-errors
 
-Enables which HTTP codes should be passed for processing with the [error_page directive](http://nginx.org/en/docs/http/ngx_http_core_module.html#error_page)
+Enables which HTTP codes should be passed for processing with the [error_page directive](https://nginx.org/en/docs/http/ngx_http_core_module.html#error_page)
 
-Setting at least one code also enables [proxy_intercept_errors](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_intercept_errors) which are required to process error_page.
+Setting at least one code also enables [proxy_intercept_errors](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_intercept_errors) which are required to process error_page.
 
 Example usage: `custom-http-errors: 404,415`
 
 ## proxy-body-size
 
 Sets the maximum allowed size of the client request body.
-See NGINX [client_max_body_size](http://nginx.org/en/docs/http/ngx_http_core_module.html#client_max_body_size).
+See NGINX [client_max_body_size](https://nginx.org/en/docs/http/ngx_http_core_module.html#client_max_body_size).
 
 ## proxy-connect-timeout
 
-Sets the timeout for [establishing a connection with a proxied server](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_connect_timeout). It should be noted that this timeout cannot usually exceed 75 seconds.
+Sets the timeout for [establishing a connection with a proxied server](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_connect_timeout). It should be noted that this timeout cannot usually exceed 75 seconds.
 
 ## proxy-read-timeout
 
-Sets the timeout in seconds for [reading a response from the proxied server](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_read_timeout). The timeout is set only between two successive read operations, not for the transmission of the whole response.
+Sets the timeout in seconds for [reading a response from the proxied server](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_read_timeout). The timeout is set only between two successive read operations, not for the transmission of the whole response.
 
 ## proxy-send-timeout
 
-Sets the timeout in seconds for [transmitting a request to the proxied server](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_send_timeout). The timeout is set only between two successive write operations, not for the transmission of the whole request.
+Sets the timeout in seconds for [transmitting a request to the proxied server](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_send_timeout). The timeout is set only between two successive write operations, not for the transmission of the whole request.
 
 ## proxy-buffers-number
 
-Sets the number of the buffer used for [reading the first part of the response](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffers) received from the proxied server. This part usually contains a small response header.
+Sets the number of the buffer used for [reading the first part of the response](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffers) received from the proxied server. This part usually contains a small response header.
 
 ## proxy-buffer-size
 
-Sets the size of the buffer used for [reading the first part of the response](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffer_size) received from the proxied server. This part usually contains a small response header.
+Sets the size of the buffer used for [reading the first part of the response](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffer_size) received from the proxied server. This part usually contains a small response header.
 
 ## proxy-cookie-path
 
-Sets a text that [should be changed in the path attribute](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cookie_path) of the “Set-Cookie” header fields of a proxied server response.
+Sets a text that [should be changed in the path attribute](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cookie_path) of the “Set-Cookie” header fields of a proxied server response.
 
 ## proxy-cookie-domain
 
-Sets a text that [should be changed in the domain attribute](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cookie_domain) of the “Set-Cookie” header fields of a proxied server response.
+Sets a text that [should be changed in the domain attribute](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cookie_domain) of the “Set-Cookie” header fields of a proxied server response.
 
 ## proxy-next-upstream
 
-Specifies in [which cases](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_next_upstream) a request should be passed to the next server.
+Specifies in [which cases](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_next_upstream) a request should be passed to the next server.
 
 ## proxy-next-upstream-timeout
 
-[Limits the time](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_next_upstream_timeout) in seconds during which a request can be passed to the next server.
+[Limits the time](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_next_upstream_timeout) in seconds during which a request can be passed to the next server.
 
 ## proxy-next-upstream-tries
 
-Limit the number of [possible tries](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_next_upstream_tries) a request should be passed to the next server.
+Limit the number of [possible tries](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_next_upstream_tries) a request should be passed to the next server.
 
 ## proxy-redirect-from
 
 Sets the original text that should be changed in the "Location" and "Refresh" header fields of a proxied server response. _**default:**_ off
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_redirect](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_redirect)
+[https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_redirect](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_redirect)
 
 ## proxy-request-buffering
 
-Enables or disables [buffering of a client request body](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_request_buffering).
+Enables or disables [buffering of a client request body](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_request_buffering).
 
 ## ssl-redirect
 
@@ -1075,7 +1075,7 @@ _**default:**_ "false"
 ## whitelist-source-range
 
 Sets the default whitelisted IPs for each `server` block. This can be overwritten by an annotation on an Ingress rule.
-See [ngx_http_access_module](http://nginx.org/en/docs/http/ngx_http_access_module.html).
+See [ngx_http_access_module](https://nginx.org/en/docs/http/ngx_http_access_module.html).
 
 ## skip-access-log-urls
 
@@ -1086,7 +1086,7 @@ Sets a list of URLs that should not appear in the NGINX access log. This is usef
 Limits the rate of response transmission to a client. The rate is specified in bytes per second. The zero value disables rate limiting. The limit is set per a request, and so if a client simultaneously opens two connections, the overall rate will be twice as much as the specified limit.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_core_module.html#limit_rate](http://nginx.org/en/docs/http/ngx_http_core_module.html#limit_rate)
+[https://nginx.org/en/docs/http/ngx_http_core_module.html#limit_rate](https://nginx.org/en/docs/http/ngx_http_core_module.html#limit_rate)
 
 ## limit-rate-after
 
@@ -1114,7 +1114,7 @@ lua-shared-dicts: "certificate_data: 100, my_custom_plugin: 512k"
 ```
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_core_module.html#limit_rate_after](http://nginx.org/en/docs/http/ngx_http_core_module.html#limit_rate_after)
+[https://nginx.org/en/docs/http/ngx_http_core_module.html#limit_rate_after](https://nginx.org/en/docs/http/ngx_http_core_module.html#limit_rate_after)
 
 ## http-redirect-code
 
@@ -1128,19 +1128,19 @@ _**default:**_ 308
 
 ## proxy-buffering
 
-Enables or disables [buffering of responses from the proxied server](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffering).
+Enables or disables [buffering of responses from the proxied server](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffering).
 
 ## limit-req-status-code
 
-Sets the [status code to return in response to rejected requests](http://nginx.org/en/docs/http/ngx_http_limit_req_module.html#limit_req_status). _**default:**_ 503
+Sets the [status code to return in response to rejected requests](https://nginx.org/en/docs/http/ngx_http_limit_req_module.html#limit_req_status). _**default:**_ 503
 
 ## limit-conn-status-code
 
-Sets the [status code to return in response to rejected connections](http://nginx.org/en/docs/http/ngx_http_limit_conn_module.html#limit_conn_status). _**default:**_ 503
+Sets the [status code to return in response to rejected connections](https://nginx.org/en/docs/http/ngx_http_limit_conn_module.html#limit_conn_status). _**default:**_ 503
 
 ## enable-syslog
 
-Enable [syslog](http://nginx.org/en/docs/syslog.html) feature for access log and error log. _**default:**_ false
+Enable [syslog](https://nginx.org/en/docs/syslog.html) feature for access log and error log. _**default:**_ false
 
 ## syslog-host
 
@@ -1206,7 +1206,7 @@ Enables caching for global auth requests. Specify a lookup key for auth response
 
 ## global-auth-cache-duration
 
-Set a caching time for auth responses based on their response codes, e.g. `200 202 30m`. See [proxy_cache_valid](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cache_valid) for details. You may specify multiple, comma-separated values: `200 202 10m, 401 5m`. defaults to `200 202 401 5m`.
+Set a caching time for auth responses based on their response codes, e.g. `200 202 30m`. See [proxy_cache_valid](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cache_valid) for details. You may specify multiple, comma-separated values: `200 202 10m, 401 5m`. defaults to `200 202 401 5m`.
 
 ## no-auth-locations
 
@@ -1218,7 +1218,7 @@ _**default:**_ "/.well-known/acme-challenge"
 A comma-separated list of IP addresses (or subnets), request from which have to be blocked globally.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_access_module.html#deny](http://nginx.org/en/docs/http/ngx_http_access_module.html#deny)
+[https://nginx.org/en/docs/http/ngx_http_access_module.html#deny](https://nginx.org/en/docs/http/ngx_http_access_module.html#deny)
 
 ## block-user-agents
 
@@ -1226,7 +1226,7 @@ A comma-separated list of User-Agent, request from which have to be blocked glob
 It's possible to use here full strings and regular expressions. More details about valid patterns can be found at `map` Nginx directive documentation.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_map_module.html#map](http://nginx.org/en/docs/http/ngx_http_map_module.html#map)
+[https://nginx.org/en/docs/http/ngx_http_map_module.html#map](https://nginx.org/en/docs/http/ngx_http_map_module.html#map)
 
 ## block-referers
 
@@ -1234,7 +1234,7 @@ A comma-separated list of Referers, request from which have to be blocked global
 It's possible to use here full strings and regular expressions. More details about valid patterns can be found at `map` Nginx directive documentation.
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_map_module.html#map](http://nginx.org/en/docs/http/ngx_http_map_module.html#map)
+[https://nginx.org/en/docs/http/ngx_http_map_module.html#map](https://nginx.org/en/docs/http/ngx_http_map_module.html#map)
 
 ## proxy-ssl-location-only
 
@@ -1247,7 +1247,7 @@ Sets the default MIME type of a response.
 _**default:**_ text/html
 
 _References:_
-[http://nginx.org/en/docs/http/ngx_http_core_module.html#default_type](http://nginx.org/en/docs/http/ngx_http_core_module.html#default_type)
+[https://nginx.org/en/docs/http/ngx_http_core_module.html#default_type](https://nginx.org/en/docs/http/ngx_http_core_module.html#default_type)
 
 ## global-rate-limit
 
diff --git a/docs/user-guide/nginx-configuration/index.md b/docs/user-guide/nginx-configuration/index.md
index bace1a086..232dd5cf8 100644
--- a/docs/user-guide/nginx-configuration/index.md
+++ b/docs/user-guide/nginx-configuration/index.md
@@ -4,4 +4,4 @@ There are three ways to customize NGINX:
 
 1. [ConfigMap](./configmap.md): using a Configmap to set global configurations in NGINX.
 2. [Annotations](./annotations.md): use this if you want a specific configuration for a particular Ingress rule.
-3. [Custom template](./custom-template.md): when more specific settings are required, like [open_file_cache](http://nginx.org/en/docs/http/ngx_http_core_module.html#open_file_cache), adjust [listen](http://nginx.org/en/docs/http/ngx_http_core_module.html#listen) options as `rcvbuf` or when is not possible to change the configuration through the ConfigMap.
+3. [Custom template](./custom-template.md): when more specific settings are required, like [open_file_cache](https://nginx.org/en/docs/http/ngx_http_core_module.html#open_file_cache), adjust [listen](https://nginx.org/en/docs/http/ngx_http_core_module.html#listen) options as `rcvbuf` or when is not possible to change the configuration through the ConfigMap.
diff --git a/docs/user-guide/nginx-configuration/log-format.md b/docs/user-guide/nginx-configuration/log-format.md
index 4a8a45755..9a7506480 100644
--- a/docs/user-guide/nginx-configuration/log-format.md
+++ b/docs/user-guide/nginx-configuration/log-format.md
@@ -43,5 +43,5 @@ Additional available variables:
 
 Sources:
 
-- [Upstream variables](http://nginx.org/en/docs/http/ngx_http_upstream_module.html#variables)
-- [Embedded variables](http://nginx.org/en/docs/http/ngx_http_core_module.html#variables)
+- [Upstream variables](https://nginx.org/en/docs/http/ngx_http_upstream_module.html#variables)
+- [Embedded variables](https://nginx.org/en/docs/http/ngx_http_core_module.html#variables)
diff --git a/docs/user-guide/tls.md b/docs/user-guide/tls.md
index 8a18069d4..3d5234c0c 100644
--- a/docs/user-guide/tls.md
+++ b/docs/user-guide/tls.md
@@ -28,7 +28,7 @@ Ensure that the relevant [ingress rules specify a matching host name](https://ku
 ## Default SSL Certificate
 
 NGINX provides the option to configure a server as a catch-all with
-[server_name](http://nginx.org/en/docs/http/server_names.html)
+[server_name](https://nginx.org/en/docs/http/server_names.html)
 for requests that do not match any of the configured server names.
 This configuration works out-of-the-box for HTTP traffic.
 For HTTPS, a certificate is naturally required.
diff --git a/rootfs/etc/nginx/lua/plugins/README.md b/rootfs/etc/nginx/lua/plugins/README.md
index 0626a48ff..64f4912f0 100644
--- a/rootfs/etc/nginx/lua/plugins/README.md
+++ b/rootfs/etc/nginx/lua/plugins/README.md
@@ -9,7 +9,7 @@ Every ingress-nginx Lua plugin is expected to have `main.lua` file and all of it
 `main.lua` is the entry point of the plugin. The plugin manager uses convention over configuration
 strategy and automatically runs functions defined in `main.lua` in the corresponding Nginx phase based on their name.
 
-Nginx has different [request processing phases](http://nginx.org/en/docs/dev/development_guide.html#http_phases).
+Nginx has different [request processing phases](https://nginx.org/en/docs/dev/development_guide.html#http_phases).
 By defining functions with the following names, you can run your custom Lua code in the corresponding Nginx phase:
 
  - `init_worker`: useful for initializing some data per Nginx worker process

From 43a5b7a52d4f138575afe27634983c0acec654c6 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Thu, 7 Apr 2022 13:31:58 -0300
Subject: [PATCH 0132/1641] Add dependency review enforcement (#8443)

---
 .github/workflows/depreview.yaml | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 .github/workflows/depreview.yaml

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
new file mode 100644
index 000000000..f2605b7a7
--- /dev/null
+++ b/.github/workflows/depreview.yaml
@@ -0,0 +1,14 @@
+name: 'Dependency Review'
+on: [pull_request]
+
+permissions:
+  contents: read
+
+jobs:
+  dependency-review:
+    runs-on: ubuntu-latest
+    steps:
+      - name: 'Checkout Repository'
+        uses: actions/checkout@v3
+      - name: 'Dependency Review'
+        uses: actions/dependency-review-action@v1

From 02ccd22616ca47d447fcaffefa9efbdc545f2d20 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 7 Apr 2022 09:34:00 -0700
Subject: [PATCH 0133/1641] Bump github.com/prometheus/common from 0.32.1 to
 0.33.0 (#8426)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.32.1 to 0.33.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.32.1...v0.33.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++++++----
 2 files changed, 16 insertions(+), 8 deletions(-)

diff --git a/go.mod b/go.mod
index 0def711f4..daa079ac5 100644
--- a/go.mod
+++ b/go.mod
@@ -20,13 +20,13 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.12.1
 	github.com/prometheus/client_model v0.2.0
-	github.com/prometheus/common v0.32.1
+	github.com/prometheus/common v0.33.0
 	github.com/spf13/cobra v1.3.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.7.1
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5
-	golang.org/x/net v0.0.0-20211209124913-491a49abca63
+	golang.org/x/net v0.0.0-20220225172249-27dd8689420f
 	google.golang.org/grpc v1.44.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	k8s.io/api v0.22.5
@@ -118,9 +118,9 @@ require (
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.5.0 // indirect
-	golang.org/x/oauth2 v0.0.0-20211104180415-d3ed0bb246c8 // indirect
+	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
 	golang.org/x/sys v0.0.0-20220114195835-da31bd327af9 // indirect
-	golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d // indirect
+	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
 	golang.org/x/text v0.3.7 // indirect
 	golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
 	golang.org/x/tools v0.1.5 // indirect
diff --git a/go.sum b/go.sum
index f82322a19..74067dada 100644
--- a/go.sum
+++ b/go.sum
@@ -213,9 +213,11 @@ github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4/go.mod h1:tQ2
 github.com/go-kit/kit v0.8.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
 github.com/go-kit/kit v0.9.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
 github.com/go-kit/log v0.1.0/go.mod h1:zbhenjAZHb184qTLMA9ZjW7ThYL0H2mk7Q6pNt4vbaY=
+github.com/go-kit/log v0.2.0/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0=
 github.com/go-logfmt/logfmt v0.3.0/go.mod h1:Qt1PoO58o5twSAckw1HlFXLmHsOX5/0LbT9GBnD5lWE=
 github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V4qmtdjCk=
 github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A=
+github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
 github.com/go-logr/logr v0.1.0/go.mod h1:ixOQHD9gLJUVQQ2ZOR7zLEifBX6tGkNJF4QyIY7sIas=
 github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
 github.com/go-logr/logr v0.4.0 h1:K7/B1jt6fIBQVd4Owv2MqGQClcgf0R266+7C/QjRcLc=
@@ -565,8 +567,9 @@ github.com/prometheus/common v0.9.1/go.mod h1:yhUN8i9wzaXS3w1O07YhxHEBxD+W35wd8b
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.32.1 h1:hWIdL3N2HoUx3B8j3YN9mWor0qhY/NlEKZEaXxuIRh4=
 github.com/prometheus/common v0.32.1/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
+github.com/prometheus/common v0.33.0 h1:rHgav/0a6+uYgGdNt3jwz8FNSesO/Hsang3O0T9A5SE=
+github.com/prometheus/common v0.33.0/go.mod h1:gB3sOl7P0TvJabZpLY5uQMpUqRCPPCyRLCZYc7JZTNE=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.0-20190507164030-5867b95ac084/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
@@ -829,8 +832,10 @@ golang.org/x/net v0.0.0-20210510120150-4163338589ed/go.mod h1:9nx3DQGgdP8bBQD5qx
 golang.org/x/net v0.0.0-20210520170846-37e1c6afe023/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210813160813-60bc85c4be6d/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20211209124913-491a49abca63 h1:iocB37TsdFuN6IBRZ+ry36wrkoV51/tl5vOWqkcPGvY=
 golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
+golang.org/x/net v0.0.0-20220225172249-27dd8689420f h1:oA4XRj0qtSt8Yo1Zms0CUlsT3KG69V2UGQWPBxujDmc=
+golang.org/x/net v0.0.0-20220225172249-27dd8689420f/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -847,8 +852,9 @@ golang.org/x/oauth2 v0.0.0-20210628180205-a41e5a781914/go.mod h1:KelEdhl1UZF7XfJ
 golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20211005180243-6b3c2da341f1/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20211104180415-d3ed0bb246c8 h1:RerP+noqYHUQ8CMRcPlC2nvTa4dcBIjegkuWdcUDuqg=
 golang.org/x/oauth2 v0.0.0-20211104180415-d3ed0bb246c8/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b h1:clP8eMhB30EHdc0bd2Twtq6kgU7yl5ub2cQLSdrv1Dg=
+golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -946,12 +952,14 @@ golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211124211545-fe61309f8881/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211205182925-97ca703d548d/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9 h1:XfKQ4OlFl8okEOr5UvAqFRVj8pY/4yfcXrddB8qAbU0=
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d h1:SZxvLBoTP5yHO3Frd4z4vrF+DBX9vMVanchswa69toE=
 golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
+golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 h1:JGgROgKl9N8DuW20oFS5gxc+lE67/N3FcwmBPMe7ArY=
+golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=

From f5b212df30e37fa337dc09e2e448175f334f7515 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Francisco=20Robles=20Mart=C3=ADn?= <f.robles.martin@pm.me>
Date: Fri, 8 Apr 2022 10:36:42 +0200
Subject: [PATCH 0134/1641] replace deprecated topology key in example with
 current one (#8444)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Francisco Robles Martín <f.robles.martin@pm.me>
---
 charts/ingress-nginx/values.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index cea8cebe8..eb61ce78b 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -272,7 +272,7 @@ controller:
   ##
   topologySpreadConstraints: []
     # - maxSkew: 1
-    #   topologyKey: failure-domain.beta.kubernetes.io/zone
+    #   topologyKey: topology.kubernetes.io/zone
     #   whenUnsatisfiable: DoNotSchedule
     #   labelSelector:
     #     matchLabels:

From c8ed1f1d7a7f964e65e416cd12ee122dd7d39017 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E9=99=B3=E5=82=91=E5=A4=AB?= <chienfuchen32@gmail.com>
Date: Sat, 9 Apr 2022 00:48:42 +0800
Subject: [PATCH 0135/1641] typo fixing (#8447)

---
 docs/user-guide/nginx-configuration/configmap.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index daad89501..cf1f73772 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -965,7 +965,7 @@ Specifies the environment this trace belongs to. _**default:**_ prod
 
 ## datadog-operation-name-override
 
-Overrides the operation naem to use for any traces crated. _**default:**_ nginx.handle
+Overrides the operation name to use for any traces crated. _**default:**_ nginx.handle
 
 ## datadog-priority-sampling
 

From 5e322f79a1e179d087b0c6666d6a92fe29e523de Mon Sep 17 00:00:00 2001
From: Mathieu Parent <mathieu.parent@insee.fr>
Date: Sat, 9 Apr 2022 05:14:04 +0200
Subject: [PATCH 0136/1641] Fix suggested annotation-value-word-blocklist
 (#8446)

Signed-off-by: Mathieu Parent <mathieu.parent@insee.fr>
---
 docs/user-guide/nginx-configuration/configmap.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index cf1f73772..27ef647ef 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -238,7 +238,7 @@ _**default:**_ `""`
 When doing this, the default blocklist is override, which means that the Ingress admin should add all the words
 that should be blocked, here is a suggested block list.
 
-_**suggested:**_ `"load_module,lua_package,_by_lua,location,root,proxy_pass,serviceaccount,{,},',\"`
+_**suggested:**_ `"load_module,lua_package,_by_lua,location,root,proxy_pass,serviceaccount,{,},',\""`
 
 ## hide-headers
 

From 83ce21b4dde6a40de7ee14e32c43de81177e044a Mon Sep 17 00:00:00 2001
From: Gabor Lekeny <gabor@alpaca.markets>
Date: Sat, 9 Apr 2022 05:22:04 +0200
Subject: [PATCH 0137/1641] Add keepalive support for auth requests (#8219)

* Add keepalive support for auth requests

* Fix typo

* Address PR comments

* Log warning when auth-url contains variable in its host:port
* Generate upstream name without replacing dots to underscores in server name
* Add comment in the nginx template when the keepalive upstream block is referenced

* Workaround for auth_request module ignores keepalive in upstream block

* The `auth_request` module does not support HTTP keepalives in upstream block:
  https://trac.nginx.org/nginx/ticket/1579
* As a workaround we use ngx.location.capture but unfortunately it does not
  support HTTP/2 so `use-http2` configuration parameter is needed.

* Handle PR comments

* Address PR comments

* Handle invalid values for int parameters

* Handle PR comments

* Fix e2e test
---
 .../nginx-configuration/annotations.md        |  16 ++
 internal/ingress/annotations/authreq/main.go  |  62 ++++++
 .../ingress/annotations/authreq/main_test.go  |  65 +++++++
 .../ingress/controller/template/template.go   | 108 ++++++++++-
 .../controller/template/template_test.go      | 180 +++++++++++++++++-
 rootfs/etc/nginx/template/nginx.tmpl          |  58 +++++-
 test/e2e/annotations/auth.go                  |  93 +++++++++
 7 files changed, 570 insertions(+), 12 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 027db9407..8958ccfee 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -31,6 +31,9 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/auth-url](#external-authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-cache-key](#external-authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-cache-duration](#external-authentication)|string|
+|[nginx.ingress.kubernetes.io/auth-keepalive](#external-authentication)|number|
+|[nginx.ingress.kubernetes.io/auth-keepalive-requests](#external-authentication)|number|
+|[nginx.ingress.kubernetes.io/auth-keepalive-timeout](#external-authentication)|number|
 |[nginx.ingress.kubernetes.io/auth-proxy-set-headers](#external-authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-snippet](#external-authentication)|string|
 |[nginx.ingress.kubernetes.io/enable-global-auth](#external-authentication)|"true" or "false"|
@@ -453,6 +456,19 @@ nginx.ingress.kubernetes.io/auth-url: "URL to the authentication service"
 
 Additionally it is possible to set:
 
+* `nginx.ingress.kubernetes.io/auth-keepalive`:
+  `<Connections>` to specify the maximum number of keepalive connections to `auth-url`. Only takes effect
+   when no variables are used in the host part of the URL. Defaults to `0` (keepalive disabled).
+
+> Note: does not work with HTTP/2 listener because of a limitation in Lua [subrequests](https://github.com/openresty/lua-nginx-module#spdy-mode-not-fully-supported).
+> [UseHTTP2](./configmap.md#use-http2) configuration should be disabled!
+
+* `nginx.ingress.kubernetes.io/auth-keepalive-requests`:
+  `<Requests>` to specify the maximum number of requests that can be served through one keepalive connection.
+  Defaults to `1000` and only applied if `auth-keepalive` is set to higher than `0`.
+* `nginx.ingress.kubernetes.io/auth-keepalive-timeout`:
+  `<Timeout>` to specify a duration in seconds which an idle keepalive connection to an upstream server will stay open.
+  Defaults to `60` and only applied if `auth-keepalive` is set to higher than `0`.
 * `nginx.ingress.kubernetes.io/auth-method`:
   `<Method>` to specify the HTTP method to use.
 * `nginx.ingress.kubernetes.io/auth-signin`:
diff --git a/internal/ingress/annotations/authreq/main.go b/internal/ingress/annotations/authreq/main.go
index 36af0e208..5dd1126fa 100644
--- a/internal/ingress/annotations/authreq/main.go
+++ b/internal/ingress/annotations/authreq/main.go
@@ -44,12 +44,22 @@ type Config struct {
 	AuthSnippet            string            `json:"authSnippet"`
 	AuthCacheKey           string            `json:"authCacheKey"`
 	AuthCacheDuration      []string          `json:"authCacheDuration"`
+	KeepaliveConnections   int               `json:"keepaliveConnections"`
+	KeepaliveRequests      int               `json:"keepaliveRequests"`
+	KeepaliveTimeout       int               `json:"keepaliveTimeout"`
 	ProxySetHeaders        map[string]string `json:"proxySetHeaders,omitempty"`
 }
 
 // DefaultCacheDuration is the fallback value if no cache duration is provided
 const DefaultCacheDuration = "200 202 401 5m"
 
+// fallback values when no keepalive parameters are set
+const (
+	defaultKeepaliveConnections = 0
+	defaultKeepaliveRequests    = 1000
+	defaultKeepaliveTimeout     = 60
+)
+
 // Equal tests for equality between two Config types
 func (e1 *Config) Equal(e2 *Config) bool {
 	if e1 == e2 {
@@ -90,6 +100,18 @@ func (e1 *Config) Equal(e2 *Config) bool {
 		return false
 	}
 
+	if e1.KeepaliveConnections != e2.KeepaliveConnections {
+		return false
+	}
+
+	if e1.KeepaliveRequests != e2.KeepaliveRequests {
+		return false
+	}
+
+	if e1.KeepaliveTimeout != e2.KeepaliveTimeout {
+		return false
+	}
+
 	return sets.StringElementsMatch(e1.AuthCacheDuration, e2.AuthCacheDuration)
 }
 
@@ -193,6 +215,43 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 		klog.V(3).InfoS("auth-cache-key annotation is undefined and will not be set")
 	}
 
+	keepaliveConnections, err := parser.GetIntAnnotation("auth-keepalive", ing)
+	if err != nil {
+		klog.V(3).InfoS("auth-keepalive annotation is undefined and will be set to its default value")
+		keepaliveConnections = defaultKeepaliveConnections
+	}
+	switch {
+	case keepaliveConnections < 0:
+		klog.Warningf("auth-keepalive annotation (%s) contains a negative value, setting auth-keepalive to 0", authURL.Host)
+		keepaliveConnections = 0
+	case keepaliveConnections > 0:
+		// NOTE: upstream block cannot reference a variable in the server directive
+		if strings.IndexByte(authURL.Host, '$') != -1 {
+			klog.Warningf("auth-url annotation (%s) contains $ in the host:port part, setting auth-keepalive to 0", authURL.Host)
+			keepaliveConnections = 0
+		}
+	}
+
+	keepaliveRequests, err := parser.GetIntAnnotation("auth-keepalive-requests", ing)
+	if err != nil {
+		klog.V(3).InfoS("auth-keepalive-requests annotation is undefined and will be set to its default value")
+		keepaliveRequests = defaultKeepaliveRequests
+	}
+	if keepaliveRequests <= 0 {
+		klog.Warningf("auth-keepalive-requests annotation (%s) should be greater than zero, setting auth-keepalive to 0", authURL.Host)
+		keepaliveConnections = 0
+	}
+
+	keepaliveTimeout, err := parser.GetIntAnnotation("auth-keepalive-timeout", ing)
+	if err != nil {
+		klog.V(3).InfoS("auth-keepalive-timeout annotation is undefined and will be set to its default value")
+		keepaliveTimeout = defaultKeepaliveTimeout
+	}
+	if keepaliveTimeout <= 0 {
+		klog.Warningf("auth-keepalive-timeout annotation (%s) should be greater than zero, setting auth-keepalive 0", authURL.Host)
+		keepaliveConnections = 0
+	}
+
 	durstr, _ := parser.GetStringAnnotation("auth-cache-duration", ing)
 	authCacheDuration, err := ParseStringToCacheDurations(durstr)
 	if err != nil {
@@ -249,6 +308,9 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 		AuthSnippet:            authSnippet,
 		AuthCacheKey:           authCacheKey,
 		AuthCacheDuration:      authCacheDuration,
+		KeepaliveConnections:   keepaliveConnections,
+		KeepaliveRequests:      keepaliveRequests,
+		KeepaliveTimeout:       keepaliveTimeout,
 		ProxySetHeaders:        proxySetHeaders,
 	}, nil
 }
diff --git a/internal/ingress/annotations/authreq/main_test.go b/internal/ingress/annotations/authreq/main_test.go
index da903fe30..eac1870e5 100644
--- a/internal/ingress/annotations/authreq/main_test.go
+++ b/internal/ingress/annotations/authreq/main_test.go
@@ -243,6 +243,71 @@ func TestCacheDurationAnnotations(t *testing.T) {
 	}
 }
 
+func TestKeepaliveAnnotations(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	ing.SetAnnotations(data)
+
+	tests := []struct {
+		title                string
+		url                  string
+		keepaliveConnections string
+		keepaliveRequests    string
+		keepaliveTimeout     string
+		expectedConnections  int
+		expectedRequests     int
+		expectedTimeout      int
+	}{
+		{"all set", "http://goog.url", "5", "500", "50", 5, 500, 50},
+		{"no annotation", "http://goog.url", "", "", "", defaultKeepaliveConnections, defaultKeepaliveRequests, defaultKeepaliveTimeout},
+		{"default for connections", "http://goog.url", "x", "500", "50", defaultKeepaliveConnections, 500, 50},
+		{"default for requests", "http://goog.url", "5", "x", "50", 5, defaultKeepaliveRequests, 50},
+		{"default for invalid timeout", "http://goog.url", "5", "500", "x", 5, 500, defaultKeepaliveTimeout},
+		{"variable in host", "http://$host:5000/a/b", "5", "", "", 0, defaultKeepaliveRequests, defaultKeepaliveTimeout},
+		{"variable in path", "http://goog.url:5000/$path", "5", "", "", 5, defaultKeepaliveRequests, defaultKeepaliveTimeout},
+		{"negative connections", "http://goog.url", "-2", "", "", 0, defaultKeepaliveRequests, defaultKeepaliveTimeout},
+		{"negative requests", "http://goog.url", "5", "-1", "", 0, -1, defaultKeepaliveTimeout},
+		{"negative timeout", "http://goog.url", "5", "", "-1", 0, defaultKeepaliveRequests, -1},
+		{"negative request and timeout", "http://goog.url", "5", "-2", "-3", 0, -2, -3},
+	}
+
+	for _, test := range tests {
+		data[parser.GetAnnotationWithPrefix("auth-url")] = test.url
+		data[parser.GetAnnotationWithPrefix("auth-keepalive")] = test.keepaliveConnections
+		data[parser.GetAnnotationWithPrefix("auth-keepalive-timeout")] = test.keepaliveTimeout
+		data[parser.GetAnnotationWithPrefix("auth-keepalive-requests")] = test.keepaliveRequests
+
+		i, err := NewParser(&resolver.Mock{}).Parse(ing)
+		if err != nil {
+			t.Errorf("%v: unexpected error: %v", test.title, err)
+			continue
+		}
+
+		u, ok := i.(*Config)
+		if !ok {
+			t.Errorf("%v: expected an External type", test.title)
+			continue
+		}
+
+		if u.URL != test.url {
+			t.Errorf("%v: expected \"%v\" but \"%v\" was returned", test.title, test.url, u.URL)
+		}
+
+		if u.KeepaliveConnections != test.expectedConnections {
+			t.Errorf("%v: expected \"%v\" but \"%v\" was returned", test.title, test.expectedConnections, u.KeepaliveConnections)
+		}
+
+		if u.KeepaliveRequests != test.expectedRequests {
+			t.Errorf("%v: expected \"%v\" but \"%v\" was returned", test.title, test.expectedRequests, u.KeepaliveRequests)
+		}
+
+		if u.KeepaliveTimeout != test.expectedTimeout {
+			t.Errorf("%v: expected \"%v\" but \"%v\" was returned", test.title, test.expectedTimeout, u.KeepaliveTimeout)
+		}
+	}
+}
+
 func TestParseStringToCacheDurations(t *testing.T) {
 
 	tests := []struct {
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 9b61d059a..f24aea0c4 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -42,6 +42,7 @@ import (
 
 	"k8s.io/ingress-nginx/internal/ingress"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/influxdb"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/controller/config"
 	ing_net "k8s.io/ingress-nginx/internal/net"
@@ -227,7 +228,12 @@ var (
 		"buildAuthLocation":               buildAuthLocation,
 		"shouldApplyGlobalAuth":           shouldApplyGlobalAuth,
 		"buildAuthResponseHeaders":        buildAuthResponseHeaders,
+		"buildAuthUpstreamLuaHeaders":     buildAuthUpstreamLuaHeaders,
 		"buildAuthProxySetHeaders":        buildAuthProxySetHeaders,
+		"buildAuthUpstreamName":           buildAuthUpstreamName,
+		"shouldApplyAuthUpstream":         shouldApplyAuthUpstream,
+		"extractHostPort":                 extractHostPort,
+		"changeHostPort":                  changeHostPort,
 		"buildProxyPass":                  buildProxyPass,
 		"filterRateLimits":                filterRateLimits,
 		"buildRateLimitZones":             buildRateLimitZones,
@@ -572,7 +578,14 @@ func shouldApplyGlobalAuth(input interface{}, globalExternalAuthURL string) bool
 	return false
 }
 
-func buildAuthResponseHeaders(proxySetHeader string, headers []string) []string {
+// buildAuthResponseHeaders sets HTTP response headers when `auth-url` is used.
+// Based on `auth-keepalive` value we use auth_request_set Nginx directives, or
+// we use Lua and Nginx variables instead.
+//
+// NOTE: Unfortunately auth_request module ignores the keepalive directive (see:
+// https://trac.nginx.org/nginx/ticket/1579), that is why we mimic the same
+// functionality with access_by_lua_block.
+func buildAuthResponseHeaders(proxySetHeader string, headers []string, lua bool) []string {
 	res := []string{}
 
 	if len(headers) == 0 {
@@ -580,14 +593,31 @@ func buildAuthResponseHeaders(proxySetHeader string, headers []string) []string
 	}
 
 	for i, h := range headers {
-		hvar := strings.ToLower(h)
-		hvar = strings.NewReplacer("-", "_").Replace(hvar)
-		res = append(res, fmt.Sprintf("auth_request_set $authHeader%v $upstream_http_%v;", i, hvar))
+		if lua {
+			res = append(res, fmt.Sprintf("set $authHeader%d '';", i))
+		} else {
+			hvar := strings.ToLower(h)
+			hvar = strings.NewReplacer("-", "_").Replace(hvar)
+			res = append(res, fmt.Sprintf("auth_request_set $authHeader%v $upstream_http_%v;", i, hvar))
+		}
 		res = append(res, fmt.Sprintf("%s '%v' $authHeader%v;", proxySetHeader, h, i))
 	}
 	return res
 }
 
+func buildAuthUpstreamLuaHeaders(headers []string) []string {
+	res := []string{}
+
+	if len(headers) == 0 {
+		return res
+	}
+
+	for i, h := range headers {
+		res = append(res, fmt.Sprintf("ngx.var.authHeader%d = res.header['%s']", i, h))
+	}
+	return res
+}
+
 func buildAuthProxySetHeaders(headers map[string]string) []string {
 	res := []string{}
 
@@ -602,6 +632,76 @@ func buildAuthProxySetHeaders(headers map[string]string) []string {
 	return res
 }
 
+func buildAuthUpstreamName(input interface{}, host string) string {
+	authPath := buildAuthLocation(input, "")
+	if authPath == "" || host == "" {
+		return ""
+	}
+
+	return fmt.Sprintf("%s-%s", host, authPath[2:])
+}
+
+// shouldApplyAuthUpstream returns true only in case when ExternalAuth.URL and
+// ExternalAuth.KeepaliveConnections are all set
+func shouldApplyAuthUpstream(l interface{}, c interface{}) bool {
+	location, ok := l.(*ingress.Location)
+	if !ok {
+		klog.Errorf("expected an '*ingress.Location' type but %T was returned", l)
+		return false
+	}
+
+	cfg, ok := c.(config.Configuration)
+	if !ok {
+		klog.Errorf("expected a 'config.Configuration' type but %T was returned", c)
+		return false
+	}
+
+	if location.ExternalAuth.URL == "" || location.ExternalAuth.KeepaliveConnections == 0 {
+		return false
+	}
+
+	// Unfortunately, `auth_request` module ignores keepalive in upstream block: https://trac.nginx.org/nginx/ticket/1579
+	// The workaround is to use `ngx.location.capture` Lua subrequests but it is not supported with HTTP/2
+	if cfg.UseHTTP2 {
+		klog.Warning("Upstream keepalive is not supported with HTTP/2")
+		return false
+	}
+
+	return true
+}
+
+// extractHostPort will extract the host:port part from the URL specified by url
+func extractHostPort(url string) string {
+	if url == "" {
+		return ""
+	}
+
+	authURL, err := parser.StringToURL(url)
+	if err != nil {
+		klog.Errorf("expected a valid URL but %s was returned", url)
+		return ""
+	}
+
+	return authURL.Host
+}
+
+// changeHostPort will change the host:port part of the url to value
+func changeHostPort(url string, value string) string {
+	if url == "" {
+		return ""
+	}
+
+	authURL, err := parser.StringToURL(url)
+	if err != nil {
+		klog.Errorf("expected a valid URL but %s was returned", url)
+		return ""
+	}
+
+	authURL.Host = value
+
+	return authURL.String()
+}
+
 // buildProxyPass produces the proxy pass string, if the ingress has redirects
 // (specified through the nginx.ingress.kubernetes.io/rewrite-target annotation)
 // If the annotation nginx.ingress.kubernetes.io/add-base-url:"true" is specified it will
diff --git a/internal/ingress/controller/template/template_test.go b/internal/ingress/controller/template/template_test.go
index b65e33c32..a741919ed 100644
--- a/internal/ingress/controller/template/template_test.go
+++ b/internal/ingress/controller/template/template_test.go
@@ -502,14 +502,49 @@ func TestShouldApplyGlobalAuth(t *testing.T) {
 
 func TestBuildAuthResponseHeaders(t *testing.T) {
 	externalAuthResponseHeaders := []string{"h1", "H-With-Caps-And-Dashes"}
-	expected := []string{
-		"auth_request_set $authHeader0 $upstream_http_h1;",
-		"proxy_set_header 'h1' $authHeader0;",
-		"auth_request_set $authHeader1 $upstream_http_h_with_caps_and_dashes;",
-		"proxy_set_header 'H-With-Caps-And-Dashes' $authHeader1;",
+	tests := []struct {
+		headers  []string
+		expected []string
+		lua      bool
+	}{
+		{
+			headers: externalAuthResponseHeaders,
+			lua:     false,
+			expected: []string{
+				"auth_request_set $authHeader0 $upstream_http_h1;",
+				"proxy_set_header 'h1' $authHeader0;",
+				"auth_request_set $authHeader1 $upstream_http_h_with_caps_and_dashes;",
+				"proxy_set_header 'H-With-Caps-And-Dashes' $authHeader1;",
+			},
+		},
+		{
+			headers: externalAuthResponseHeaders,
+			lua:     true,
+			expected: []string{
+				"set $authHeader0 '';",
+				"proxy_set_header 'h1' $authHeader0;",
+				"set $authHeader1 '';",
+				"proxy_set_header 'H-With-Caps-And-Dashes' $authHeader1;",
+			},
+		},
 	}
 
-	headers := buildAuthResponseHeaders(proxySetHeader(nil), externalAuthResponseHeaders)
+	for _, test := range tests {
+		got := buildAuthResponseHeaders(proxySetHeader(nil), test.headers, test.lua)
+		if !reflect.DeepEqual(test.expected, got) {
+			t.Errorf("Expected \n'%v'\nbut returned \n'%v'", test.expected, got)
+		}
+	}
+}
+
+func TestBuildAuthResponseLua(t *testing.T) {
+	externalAuthResponseHeaders := []string{"h1", "H-With-Caps-And-Dashes"}
+	expected := []string{
+		"ngx.var.authHeader0 = res.header['h1']",
+		"ngx.var.authHeader1 = res.header['H-With-Caps-And-Dashes']",
+	}
+
+	headers := buildAuthUpstreamLuaHeaders(externalAuthResponseHeaders)
 
 	if !reflect.DeepEqual(expected, headers) {
 		t.Errorf("Expected \n'%v'\nbut returned \n'%v'", expected, headers)
@@ -533,6 +568,139 @@ func TestBuildAuthProxySetHeaders(t *testing.T) {
 	}
 }
 
+func TestBuildAuthUpstreamName(t *testing.T) {
+	invalidType := &ingress.Ingress{}
+	expected := ""
+	actual := buildAuthUpstreamName(invalidType, "")
+
+	if !reflect.DeepEqual(expected, actual) {
+		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
+	}
+
+	loc := &ingress.Location{
+		ExternalAuth: authreq.Config{
+			URL: "foo.com/auth",
+		},
+		Path: "/cat",
+	}
+
+	encodedAuthURL := strings.Replace(base64.URLEncoding.EncodeToString([]byte(loc.Path)), "=", "", -1)
+	externalAuthPath := fmt.Sprintf("external-auth-%v-default", encodedAuthURL)
+
+	testCases := []struct {
+		title    string
+		host     string
+		expected string
+	}{
+		{"valid host", "auth.my.site", fmt.Sprintf("%s-%s", "auth.my.site", externalAuthPath)},
+		{"valid host", "your.auth.site", fmt.Sprintf("%s-%s", "your.auth.site", externalAuthPath)},
+		{"empty host", "", ""},
+	}
+
+	for _, testCase := range testCases {
+		str := buildAuthUpstreamName(loc, testCase.host)
+		if str != testCase.expected {
+			t.Errorf("%v: expected '%v' but returned '%v'", testCase.title, testCase.expected, str)
+		}
+	}
+}
+
+func TestShouldApplyAuthUpstream(t *testing.T) {
+	authURL := "foo.com/auth"
+
+	loc := &ingress.Location{
+		ExternalAuth: authreq.Config{
+			URL:                  authURL,
+			KeepaliveConnections: 0,
+		},
+		Path: "/cat",
+	}
+
+	cfg := config.Configuration{
+		UseHTTP2: false,
+	}
+
+	testCases := []struct {
+		title                string
+		authURL              string
+		keepaliveConnections int
+		expected             bool
+	}{
+		{"authURL, no keepalive", authURL, 0, false},
+		{"authURL, keepalive", authURL, 10, true},
+		{"empty, no keepalive", "", 0, false},
+		{"empty, keepalive", "", 10, false},
+	}
+
+	for _, testCase := range testCases {
+		loc.ExternalAuth.URL = testCase.authURL
+		loc.ExternalAuth.KeepaliveConnections = testCase.keepaliveConnections
+
+		result := shouldApplyAuthUpstream(loc, cfg)
+		if result != testCase.expected {
+			t.Errorf("%v: expected '%v' but returned '%v'", testCase.title, testCase.expected, result)
+		}
+	}
+
+	// keepalive is not supported with UseHTTP2
+	cfg.UseHTTP2 = true
+	for _, testCase := range testCases {
+		loc.ExternalAuth.URL = testCase.authURL
+		loc.ExternalAuth.KeepaliveConnections = testCase.keepaliveConnections
+
+		result := shouldApplyAuthUpstream(loc, cfg)
+		if result != false {
+			t.Errorf("%v: expected '%v' but returned '%v'", testCase.title, false, result)
+		}
+	}
+}
+
+func TestExtractHostPort(t *testing.T) {
+	testCases := []struct {
+		title    string
+		url      string
+		expected string
+	}{
+		{"full URL", "https://my.auth.site:5000/path", "my.auth.site:5000"},
+		{"URL with no port", "http://my.auth.site/path", "my.auth.site"},
+		{"URL with no path", "https://my.auth.site:5000", "my.auth.site:5000"},
+		{"URL no port and path", "http://my.auth.site", "my.auth.site"},
+		{"missing method", "my.auth.site/path", ""},
+		{"all empty", "", ""},
+	}
+
+	for _, testCase := range testCases {
+		result := extractHostPort(testCase.url)
+		if result != testCase.expected {
+			t.Errorf("%v: expected '%v' but returned '%v'", testCase.title, testCase.expected, result)
+		}
+	}
+}
+
+func TestChangeHostPort(t *testing.T) {
+	testCases := []struct {
+		title    string
+		url      string
+		host     string
+		expected string
+	}{
+		{"full URL", "https://my.auth.site:5000/path", "your.domain", "https://your.domain/path"},
+		{"URL with no port", "http://my.auth.site/path", "your.domain", "http://your.domain/path"},
+		{"URL with no path", "http://my.auth.site:5000", "your.domain:8888", "http://your.domain:8888"},
+		{"URL with no port and path", "https://my.auth.site", "your.domain:8888", "https://your.domain:8888"},
+		{"invalid host", "my.auth.site/path", "", ""},
+		{"missing method", "my.auth.site/path", "your.domain", ""},
+		{"all empty", "", "", ""},
+	}
+
+	for _, testCase := range testCases {
+		result := changeHostPort(testCase.url, testCase.host)
+		if result != testCase.expected {
+			t.Errorf("%v: expected '%v' but returned '%v'", testCase.title, testCase.expected, result)
+		}
+	}
+}
+
 func TestTemplateWithData(t *testing.T) {
 	pwd, _ := os.Getwd()
 	f, err := os.Open(path.Join(pwd, "../../../../test/data/config.json"))
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 2ee76831c..f6495eb4a 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -610,7 +610,25 @@ http {
     {{ end }}
 
     {{ range $server := $servers }}
+    {{ range $location := $server.Locations }}
+    {{ $applyGlobalAuth := shouldApplyGlobalAuth $location $all.Cfg.GlobalExternalAuth.URL }}
+    {{ $applyAuthUpstream := shouldApplyAuthUpstream $location $all.Cfg }}
+    {{ if and (eq $applyAuthUpstream true) (eq $applyGlobalAuth false) }}
+    ## start auth upstream {{ $server.Hostname }}{{ $location.Path }}
+    upstream {{ buildAuthUpstreamName $location $server.Hostname }} {
+        {{- $externalAuth := $location.ExternalAuth }}
+        server {{ extractHostPort $externalAuth.URL }};
 
+        keepalive {{ $externalAuth.KeepaliveConnections }};
+        keepalive_requests {{ $externalAuth.KeepaliveRequests }};
+        keepalive_timeout {{ $externalAuth.KeepaliveTimeout }}s;
+    }
+    ## end auth upstream {{ $server.Hostname }}{{ $location.Path }}
+    {{ end }}
+    {{ end }}
+    {{ end }}
+
+    {{ range $server := $servers }}
     ## start server {{ $server.Hostname }}
     server {
         server_name {{ buildServerName $server.Hostname }} {{range $server.Aliases }}{{ . }} {{ end }};
@@ -995,6 +1013,7 @@ stream {
         {{ $proxySetHeader := proxySetHeader $location }}
         {{ $authPath := buildAuthLocation $location $all.Cfg.GlobalExternalAuth.URL }}
         {{ $applyGlobalAuth := shouldApplyGlobalAuth $location $all.Cfg.GlobalExternalAuth.URL }}
+        {{ $applyAuthUpstream := shouldApplyAuthUpstream $location $all.Cfg }}
 
         {{ $externalAuth := $location.ExternalAuth }}
         {{ if eq $applyGlobalAuth true }}
@@ -1074,7 +1093,6 @@ stream {
             proxy_buffer_size                       {{ $location.Proxy.BufferSize }};
             proxy_buffers                           {{ $location.Proxy.BuffersNumber }} {{ $location.Proxy.BufferSize }};
             proxy_request_buffering                 {{ $location.Proxy.RequestBuffering }};
-            proxy_http_version                      {{ $location.Proxy.ProxyHTTPVersion }};
 
             proxy_ssl_server_name       on;
             proxy_pass_request_headers  on;
@@ -1103,7 +1121,19 @@ stream {
             {{ $externalAuth.AuthSnippet }}
             {{ end }}
 
+            {{ if and (eq $applyAuthUpstream true) (eq $applyGlobalAuth false) }}
+            {{ $authUpstreamName := buildAuthUpstreamName $location $server.Hostname }}
+            # The target is an upstream with HTTP keepalive, that is why the
+            # Connection header is cleared and the HTTP version is set to 1.1 as
+            # the Nginx documentation suggests:
+            # http://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive
+            proxy_http_version 1.1;
+            proxy_set_header Connection "";
+            set $target {{ changeHostPort $externalAuth.URL $authUpstreamName }};
+            {{ else }}
+            proxy_http_version {{ $location.Proxy.ProxyHTTPVersion }};
             set $target {{ $externalAuth.URL }};
+            {{ end }}
             proxy_pass $target;
         }
         {{ end }}
@@ -1208,13 +1238,37 @@ stream {
             {{ if not (isLocationInLocationList $location $all.Cfg.NoAuthLocations) }}
             {{ if $authPath }}
             # this location requires authentication
+            {{ if and (eq $applyAuthUpstream true) (eq $applyGlobalAuth false) }}
+            set $auth_cookie '';
+            add_header Set-Cookie $auth_cookie;
+            {{- range $line := buildAuthResponseHeaders $proxySetHeader $externalAuth.ResponseHeaders true }}
+            {{ $line }}
+            {{- end }}
+            # `auth_request` module does not support HTTP keepalives in upstream block:
+            # https://trac.nginx.org/nginx/ticket/1579
+            access_by_lua_block {
+                local res = ngx.location.capture('{{ $authPath }}', { method = ngx.HTTP_GET, body = '' })
+                if res.status == ngx.HTTP_OK then
+                    ngx.var.auth_cookie = res.header['Set-Cookie']
+                    {{- range $line := buildAuthUpstreamLuaHeaders $externalAuth.ResponseHeaders }}
+                    {{ $line }}
+                    {{- end }}
+                    return
+                end
+                if res.status == ngx.HTTP_FORBIDDEN then
+                    ngx.exit(res.status)
+                end
+                ngx.exit(ngx.HTTP_INTERNAL_SERVER_ERROR)
+            }
+            {{ else }}
             auth_request        {{ $authPath }};
             auth_request_set    $auth_cookie $upstream_http_set_cookie;
             add_header          Set-Cookie $auth_cookie;
-            {{- range $line := buildAuthResponseHeaders $proxySetHeader $externalAuth.ResponseHeaders }}
+            {{- range $line := buildAuthResponseHeaders $proxySetHeader $externalAuth.ResponseHeaders false }}
             {{ $line }}
             {{- end }}
             {{ end }}
+            {{ end }}
 
             {{ if $externalAuth.SigninURL }}
             set_escape_uri $escaped_request_uri $request_uri;
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index 7ca2fff45..0ea97d3ef 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -476,6 +476,99 @@ http {
 				Body().
 				NotContainsFold(fmt.Sprintf("%s=%s", rewriteHeader, rewriteVal))
 		})
+
+		ginkgo.It(`should not create additional upstream block when auth-keepalive is not set`, func() {
+			f.UpdateNginxConfigMapData("use-http2", "false")
+			defer func() {
+				f.UpdateNginxConfigMapData("use-http2", "true")
+			}()
+			// Sleep a while just to guarantee that the configmap is applied
+			framework.Sleep()
+
+			annotations["nginx.ingress.kubernetes.io/auth-url"] = "http://foo.bar.baz:5000/path"
+			f.UpdateIngress(ing)
+
+			f.WaitForNginxServer("",
+				func(server string) bool {
+					return strings.Contains(server, "http://foo.bar.baz:5000/path") &&
+						!strings.Contains(server, `upstream auth-external-auth`)
+				})
+		})
+
+		ginkgo.It(`should not create additional upstream block when host part of auth-url contains a variable`, func() {
+			f.UpdateNginxConfigMapData("use-http2", "false")
+			defer func() {
+				f.UpdateNginxConfigMapData("use-http2", "true")
+			}()
+			// Sleep a while just to guarantee that the configmap is applied
+			framework.Sleep()
+
+			annotations["nginx.ingress.kubernetes.io/auth-url"] = "http://$host/path"
+			annotations["nginx.ingress.kubernetes.io/auth-keepalive"] = "123"
+			f.UpdateIngress(ing)
+
+			f.WaitForNginxServer("",
+				func(server string) bool {
+					return strings.Contains(server, "http://$host/path") &&
+						!strings.Contains(server, `upstream auth-external-auth`) &&
+						!strings.Contains(server, `keepalive 123;`)
+				})
+		})
+
+		ginkgo.It(`should not create additional upstream block when auth-keepalive is negative`, func() {
+			f.UpdateNginxConfigMapData("use-http2", "false")
+			defer func() {
+				f.UpdateNginxConfigMapData("use-http2", "true")
+			}()
+			// Sleep a while just to guarantee that the configmap is applied
+			framework.Sleep()
+
+			annotations["nginx.ingress.kubernetes.io/auth-url"] = "http://foo.bar.baz:5000/path"
+			annotations["nginx.ingress.kubernetes.io/auth-keepalive"] = "-1"
+			f.UpdateIngress(ing)
+
+			f.WaitForNginxServer("",
+				func(server string) bool {
+					return strings.Contains(server, "http://foo.bar.baz:5000/path") &&
+						!strings.Contains(server, `upstream auth-external-auth`)
+				})
+		})
+
+		ginkgo.It(`should not create additional upstream block when auth-keepalive is set with HTTP/2`, func() {
+			annotations["nginx.ingress.kubernetes.io/auth-url"] = "http://foo.bar.baz:5000/path"
+			annotations["nginx.ingress.kubernetes.io/auth-keepalive"] = "123"
+			annotations["nginx.ingress.kubernetes.io/auth-keepalive-requests"] = "456"
+			annotations["nginx.ingress.kubernetes.io/auth-keepalive-timeout"] = "789"
+			f.UpdateIngress(ing)
+
+			f.WaitForNginxServer("",
+				func(server string) bool {
+					return strings.Contains(server, "http://foo.bar.baz:5000/path") &&
+						!strings.Contains(server, `upstream auth-external-auth`)
+				})
+		})
+
+		ginkgo.It(`should create additional upstream block when auth-keepalive is set with HTTP/1.x`, func() {
+			f.UpdateNginxConfigMapData("use-http2", "false")
+			defer func() {
+				f.UpdateNginxConfigMapData("use-http2", "true")
+			}()
+			// Sleep a while just to guarantee that the configmap is applied
+			framework.Sleep()
+
+			annotations["nginx.ingress.kubernetes.io/auth-keepalive"] = "123"
+			annotations["nginx.ingress.kubernetes.io/auth-keepalive-requests"] = "456"
+			annotations["nginx.ingress.kubernetes.io/auth-keepalive-timeout"] = "789"
+			f.UpdateIngress(ing)
+
+			f.WaitForNginxServer("",
+				func(server string) bool {
+					return strings.Contains(server, `upstream auth-external-auth`) &&
+						strings.Contains(server, `keepalive 123;`) &&
+						strings.Contains(server, `keepalive_requests 456;`) &&
+						strings.Contains(server, `keepalive_timeout 789s;`)
+				})
+		})
 	})
 
 	ginkgo.Context("when external authentication is configured with a custom redirect param", func() {

From 3def835a6a8258f34a7ef1f200a366ff9a0d6a9f Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sat, 9 Apr 2022 01:48:04 -0300
Subject: [PATCH 0138/1641] Jail/chroot nginx process inside controller
 container (#8337)

* Initial work on chrooting nginx process

* More improvements in chroot

* Fix charts and some file locations

* Fix symlink on non chrooted container

* fix psp test

* Add e2e tests to chroot image

* Fix logger

* Add internal logger in controller

* Fix overlay for chrooted tests

* Fix tests

* fix boilerplates

* Fix unittest to point to the right pid

* Fix PR review
---
 .github/workflows/ci.yaml                     |  62 +++++++++-
 Makefile                                      |  30 +++++
 build/build.sh                                |   1 +
 build/test.sh                                 |   1 +
 charts/ingress-nginx/README.md                |   1 +
 charts/ingress-nginx/templates/_helpers.tpl   |  29 +++++
 .../templates/controller-daemonset.yaml       |   2 +-
 .../templates/controller-deployment.yaml      |   2 +-
 charts/ingress-nginx/values.yaml              |   3 +
 cmd/nginx/flags.go                            |   3 +
 cmd/nginx/logger.go                           |  51 ++++++++
 cmd/nginx/main.go                             |   7 ++
 go.mod                                        |   1 +
 go.sum                                        |   2 +
 internal/ingress/controller/checker_test.go   |   2 +-
 internal/ingress/controller/config/config.go  |  11 +-
 internal/ingress/controller/controller.go     |   3 +
 internal/ingress/controller/nginx.go          |  12 +-
 internal/ingress/controller/process/nginx.go  |   2 +-
 internal/ingress/controller/util.go           |   4 +-
 internal/ingress/metric/collectors/socket.go  |   2 +-
 internal/nginx/main.go                        |   4 +-
 rootfs/Dockerfile                             |   4 +-
 rootfs/Dockerfile.chroot                      | 112 ++++++++++++++++++
 rootfs/chroot.sh                              |  55 +++++++++
 rootfs/etc/nginx/lua/monitor.lua              |   2 +-
 rootfs/etc/nginx/lua/test/monitor_test.lua    |   2 +-
 rootfs/etc/nginx/nginx.conf                   |   6 +-
 rootfs/etc/nginx/template/nginx.tmpl          |  12 +-
 rootfs/nginx-chroot-wrapper.sh                |  18 +++
 test/data/cleanConf.expected.conf             |   2 +-
 test/data/cleanConf.src.conf                  |   2 +-
 .../namespace-overlays/admission/values.yaml  |   1 +
 .../custom-health-check-path/values.yaml      |   1 +
 .../forwarded-port-headers/values.yaml        |   1 +
 .../namespace-selector/values.yaml            |   1 +
 test/e2e/framework/logs.go                    |   3 +
 test/e2e/run.sh                               |   9 +-
 test/e2e/settings/access_log.go               |  34 +++---
 .../settings/pod_security_policy_volumes.go   |   4 +-
 test/e2e/wait-for-nginx.sh                    |   1 +
 41 files changed, 456 insertions(+), 49 deletions(-)
 create mode 100644 cmd/nginx/logger.go
 create mode 100644 rootfs/Dockerfile.chroot
 create mode 100755 rootfs/chroot.sh
 create mode 100755 rootfs/nginx-chroot-wrapper.sh

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 63d41b588..69972eb51 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -100,13 +100,14 @@ jobs:
           REGISTRY: ingress-controller
         run: |
           echo "building images..."
-          make clean-image build image
+          make clean-image build image image-chroot
           make -C test/e2e-image image
 
           echo "creating images cache..."
           docker save \
             nginx-ingress-controller:e2e \
             ingress-controller/controller:1.0.0-dev \
+            ingress-controller/controller-chroot:1.0.0-dev \
             | pigz > docker.tar.gz
 
       - name: cache
@@ -250,6 +251,65 @@ jobs:
           kind get kubeconfig > $HOME/.kube/kind-config-kind
           make kind-e2e-test
 
+  kubernetes-chroot:
+    name: Kubernetes chroot
+    runs-on: ubuntu-latest
+    needs:
+      - changes
+      - build
+    if: |
+      (needs.changes.outputs.go == 'true')
+
+    strategy:
+      matrix:
+        k8s: [v1.21.10, v1.22.7, v1.23.4]
+
+    steps:
+
+      - name: Checkout
+        uses: actions/checkout@v2
+
+      - name: cache
+        uses: actions/download-artifact@v2
+        with:
+          name: docker.tar.gz
+
+      - name: Create Kubernetes ${{ matrix.k8s }} cluster
+        id: kind
+        uses: engineerd/setup-kind@v0.5.0
+        with:
+          version: v0.12.0
+          config: test/e2e/kind.yaml
+          image: kindest/node:${{ matrix.k8s }}
+
+      - uses: geekyeggo/delete-artifact@v1
+        with:
+          name: docker.tar.gz
+          failOnError: false
+
+      - name: Prepare cluster for testing
+        id: local-path
+        run: |
+          kubectl version
+          echo
+          echo "installing helm 3..."
+          curl -sSL https://raw.githubusercontent.com/helm/helm/master/scripts/get-helm-3 | bash
+
+      - name: Load images from cache
+        run: |
+          echo "loading docker images..."
+          pigz -dc docker.tar.gz | docker load
+
+      - name: Run e2e tests
+        env:
+          KIND_CLUSTER_NAME: kind
+          SKIP_CLUSTER_CREATION: true
+          SKIP_IMAGE_CREATION: true
+          IS_CHROOT: true
+        run: |
+          kind get kubeconfig > $HOME/.kube/kind-config-kind
+          make kind-e2e-test
+
   test-image-build:
     permissions:
       contents: read  # for dorny/paths-filter to fetch a list of changed files
diff --git a/Makefile b/Makefile
index c4e109d86..58a3e95c5 100644
--- a/Makefile
+++ b/Makefile
@@ -75,11 +75,30 @@ image: clean-image ## Build image for a particular arch.
 		--build-arg BUILD_ID="$(BUILD_ID)" \
 		-t $(REGISTRY)/controller:$(TAG) rootfs
 
+.PHONY: image-chroot
+image-chroot: clean-chroot-image ## Build image for a particular arch.
+	echo "Building docker image ($(ARCH))..."
+	@docker build \
+		--no-cache \
+		--build-arg BASE_IMAGE="$(BASE_IMAGE)" \
+		--build-arg VERSION="$(TAG)" \
+		--build-arg TARGETARCH="$(ARCH)" \
+		--build-arg COMMIT_SHA="$(COMMIT_SHA)" \
+		--build-arg BUILD_ID="$(BUILD_ID)" \
+		-t $(REGISTRY)/controller-chroot:$(TAG) rootfs -f rootfs/Dockerfile.chroot
+
 .PHONY: clean-image
 clean-image: ## Removes local image
 	echo "removing old image $(REGISTRY)/controller:$(TAG)"
 	@docker rmi -f $(REGISTRY)/controller:$(TAG) || true
 
+
+.PHONY: clean-chroot-image
+clean-chroot-image: ## Removes local image
+	echo "removing old image $(REGISTRY)/controller-chroot:$(TAG)"
+	@docker rmi -f $(REGISTRY)/controller-chroot:$(TAG) || true
+
+
 .PHONY: build
 build:  ## Build ingress controller, debug tool and pre-stop hook.
 	@build/run-in-docker.sh \
@@ -221,3 +240,14 @@ release: ensure-buildx clean
 		--build-arg COMMIT_SHA="$(COMMIT_SHA)" \
 		--build-arg BUILD_ID="$(BUILD_ID)" \
 		-t $(REGISTRY)/controller:$(TAG) rootfs
+	
+	@docker buildx build \
+		--no-cache \
+		--push \
+		--progress plain \
+		--platform $(subst $(SPACE),$(COMMA),$(PLATFORMS)) \
+		--build-arg BASE_IMAGE="$(BASE_IMAGE)" \
+		--build-arg VERSION="$(TAG)" \
+		--build-arg COMMIT_SHA="$(COMMIT_SHA)" \
+		--build-arg BUILD_ID="$(BUILD_ID)" \
+		-t $(REGISTRY)/controller-chroot:$(TAG) rootfs -f rootfs/Dockerfile.chroot
diff --git a/build/build.sh b/build/build.sh
index 9edae604d..a865fe927 100755
--- a/build/build.sh
+++ b/build/build.sh
@@ -69,3 +69,4 @@ go build \
     -X ${PKG}/version.COMMIT=${COMMIT_SHA} \
     -X ${PKG}/version.REPO=${REPO_INFO}" \
   -o "${TARGETS_DIR}/wait-shutdown" "${PKG}/cmd/waitshutdown"
+
diff --git a/build/test.sh b/build/test.sh
index bb7ccdb7e..674b9484a 100755
--- a/build/test.sh
+++ b/build/test.sh
@@ -23,6 +23,7 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
+mkdir -p /tmp/nginx
 if [ -z "${PKG}" ]; then
   echo "PKG must be set"
   exit 1
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index c52b0ae51..c6887521c 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -306,6 +306,7 @@ Kubernetes: `>=1.19.0-0`
 | controller.hostPort.ports.https | int | `443` | 'hostPort' https port |
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
+| controller.image.chroot | bool | `false` |  |
 | controller.image.digest | string | `"sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index a72af5d9d..e69de0c41 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -43,11 +43,40 @@ capabilities:
   - ALL
   add:
   - NET_BIND_SERVICE
+  {{- if .Values.controller.image.chroot }}
+  - SYS_CHROOT
+  {{- end }}
 runAsUser: {{ .Values.controller.image.runAsUser }}
 allowPrivilegeEscalation: {{ .Values.controller.image.allowPrivilegeEscalation }}
 {{- end }}
 {{- end -}}
 
+{{/*
+Get specific image
+*/}}
+{{- define "ingress-nginx.image" -}}
+{{- if .chroot -}}
+{{- printf "%s-chroot" .image -}}
+{{- else -}}
+{{- printf "%s" .image -}}
+{{- end }}
+{{- end -}}
+
+{{/*
+Get specific image digest
+*/}}
+{{- define "ingress-nginx.imageDigest" -}}
+{{- if .chroot -}}
+{{- if .digestChroot -}}
+{{- printf "@%s" .digestChroot -}}
+{{- end }}
+{{- else -}}
+{{ if .digest -}}
+{{- printf "@%s" .digest -}}
+{{- end -}}
+{{- end -}}
+{{- end -}}
+
 {{/*
 Create a default fully qualified controller name.
 We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 09852d041..4d7361597 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -74,7 +74,7 @@ spec:
       containers:
         - name: {{ .Values.controller.containerName }}
           {{- with .Values.controller.image }}
-          image: "{{- if .repository -}}{{ .repository }}{{ else }}{{ .registry }}/{{ .image }}{{- end -}}:{{ .tag }}{{- if (.digest) -}} @{{.digest}} {{- end -}}"
+          image: "{{- if .repository -}}{{ .repository }}{{ else }}{{ .registry }}/{{ include "ingress-nginx.image" . }}{{- end -}}:{{ .tag }}{{ include "ingress-nginx.imageDigest" . }}"
           {{- end }}
           imagePullPolicy: {{ .Values.controller.image.pullPolicy }}
         {{- if .Values.controller.lifecycle }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index effd5b06c..e72e7dbad 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -78,7 +78,7 @@ spec:
       containers:
         - name: {{ .Values.controller.containerName }}
           {{- with .Values.controller.image }}
-          image: "{{- if .repository -}}{{ .repository }}{{ else }}{{ .registry }}/{{ .image }}{{- end -}}:{{ .tag }}{{- if (.digest) -}} @{{.digest}} {{- end -}}"
+          image: "{{- if .repository -}}{{ .repository }}{{ else }}{{ .registry }}/{{ include "ingress-nginx.image" . }}{{- end -}}:{{ .tag }}{{ include "ingress-nginx.imageDigest" . }}"
           {{- end }}
           imagePullPolicy: {{ .Values.controller.image.pullPolicy }}
         {{- if .Values.controller.lifecycle }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index eb61ce78b..500b2bb53 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -16,6 +16,8 @@ commonLabels: {}
 controller:
   name: controller
   image:
+    ## Keep false as default for now!
+    chroot: false
     registry: k8s.gcr.io
     image: ingress-nginx/controller
     ## for backwards compatibility consider setting the full image url via the repository value below
@@ -23,6 +25,7 @@ controller:
     ## repository:
     tag: "v1.1.3"
     digest: sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+    # digestChroot: "" # TODO: Fill when we have it
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
diff --git a/cmd/nginx/flags.go b/cmd/nginx/flags.go
index f620690b5..cfeadc7db 100644
--- a/cmd/nginx/flags.go
+++ b/cmd/nginx/flags.go
@@ -192,6 +192,8 @@ Takes the form "<host>:port". If not provided, no admission controller is starte
 		statusPort = flags.Int("status-port", 10246, `Port to use for the lua HTTP endpoint configuration.`)
 		streamPort = flags.Int("stream-port", 10247, "Port to use for the lua TCP/UDP endpoint configuration.")
 
+		internalLoggerAddress = flags.String("internal-logger-address", "127.0.0.1:11514", "Address to be used when binding internal syslogger")
+
 		profilerPort = flags.Int("profiler-port", 10245, "Port to use for expose the ingress controller Go profiler when it is enabled.")
 
 		statusUpdateInterval = flags.Int("status-update-interval", status.UpdateInterval, "Time interval in seconds in which the status should check if an update is required. Default is 60 seconds")
@@ -344,6 +346,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		ValidationWebhook:         *validationWebhook,
 		ValidationWebhookCertPath: *validationWebhookCert,
 		ValidationWebhookKeyPath:  *validationWebhookKey,
+		InternalLoggerAddress:     *internalLoggerAddress,
 	}
 
 	if *apiserverHost != "" {
diff --git a/cmd/nginx/logger.go b/cmd/nginx/logger.go
new file mode 100644
index 000000000..13ec095fa
--- /dev/null
+++ b/cmd/nginx/logger.go
@@ -0,0 +1,51 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package main
+
+import (
+	"fmt"
+
+	"k8s.io/klog/v2"
+
+	"gopkg.in/mcuadros/go-syslog.v2"
+)
+
+func logger(address string) {
+	channel := make(syslog.LogPartsChannel)
+	handler := syslog.NewChannelHandler(channel)
+
+	server := syslog.NewServer()
+
+	server.SetFormat(syslog.RFC3164)
+	server.SetHandler(handler)
+	if err := server.ListenUDP(address); err != nil {
+		klog.Fatalf("failed bind internal syslog: %w", err)
+	}
+
+	if err := server.Boot(); err != nil {
+		klog.Fatalf("failed to boot internal syslog: %w", err)
+	}
+	klog.Infof("Is Chrooted, starting logger")
+
+	for logParts := range channel {
+		fmt.Printf("%s\n", logParts["content"])
+	}
+
+	server.Wait()
+	klog.Infof("Stopping logger")
+
+}
diff --git a/cmd/nginx/main.go b/cmd/nginx/main.go
index 7293e6b10..b8378d290 100644
--- a/cmd/nginx/main.go
+++ b/cmd/nginx/main.go
@@ -152,6 +152,13 @@ func main() {
 	registerHealthz(nginx.HealthPath, ngx, mux)
 	registerMetrics(reg, mux)
 
+	_, errExists := os.Stat("/chroot")
+	if errExists == nil {
+		conf.IsChroot = true
+		go logger(conf.InternalLoggerAddress)
+
+	}
+
 	go startHTTPServer(conf.HealthCheckHost, conf.ListenPorts.Health, mux)
 	go ngx.Start()
 
diff --git a/go.mod b/go.mod
index daa079ac5..de5f5938e 100644
--- a/go.mod
+++ b/go.mod
@@ -130,6 +130,7 @@ require (
 	google.golang.org/protobuf v1.27.1 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
+	gopkg.in/mcuadros/go-syslog.v2 v2.3.0 // indirect
 	gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b // indirect
diff --git a/go.sum b/go.sum
index 74067dada..586115d44 100644
--- a/go.sum
+++ b/go.sum
@@ -1214,6 +1214,8 @@ gopkg.in/inf.v0 v0.9.1 h1:73M5CoZyi3ZLMOyDlQh031Cx6N9NDJ2Vvfl76EDAgDc=
 gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
 gopkg.in/ini.v1 v1.51.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
 gopkg.in/ini.v1 v1.66.2/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
+gopkg.in/mcuadros/go-syslog.v2 v2.3.0 h1:kcsiS+WsTKyIEPABJBJtoG0KkOS6yzvJ+/eZlhD79kk=
+gopkg.in/mcuadros/go-syslog.v2 v2.3.0/go.mod h1:l5LPIyOOyIdQquNg+oU6Z3524YwrcqEm0aKH+5zpt2U=
 gopkg.in/natefinch/lumberjack.v2 v2.0.0/go.mod h1:l0ndWWf7gzL7RNwBG7wST/UCcT4T24xpD6X8LsfU/+k=
 gopkg.in/resty.v1 v1.12.0/go.mod h1:mDo4pnntr5jdWRML875a/NmxYqAlA73dVijT2AXvQQo=
 gopkg.in/square/go-jose.v2 v2.2.2/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
diff --git a/internal/ingress/controller/checker_test.go b/internal/ingress/controller/checker_test.go
index 3f02f4016..fd712b6a8 100644
--- a/internal/ingress/controller/checker_test.go
+++ b/internal/ingress/controller/checker_test.go
@@ -76,7 +76,7 @@ func TestNginxCheck(t *testing.T) {
 			})
 
 			// create pid file
-			os.MkdirAll("/tmp", file.ReadWriteByUser)
+			os.MkdirAll("/tmp/nginx", file.ReadWriteByUser)
 			pidFile, err := os.Create(nginx.PID)
 			if err != nil {
 				t.Fatalf("unexpected error: %v", err)
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index f37516e78..4afb3e9f5 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -958,12 +958,11 @@ type TemplateConfig struct {
 	EnableMetrics            bool
 	MaxmindEditionFiles      *[]string
 	MonitorMaxBatchSize      int
-
-	PID            string
-	StatusPath     string
-	StatusPort     int
-	StreamPort     int
-	StreamSnippets []string
+	PID                      string
+	StatusPath               string
+	StatusPort               int
+	StreamPort               int
+	StreamSnippets           []string
 }
 
 // ListenPorts describe the ports required to run the
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 651e983a8..a7efdab91 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -120,6 +120,9 @@ type Configuration struct {
 
 	PostShutdownGracePeriod int
 	ShutdownGracePeriod     int
+
+	InternalLoggerAddress string
+	IsChroot              bool
 }
 
 // GetPublishService returns the Service used to set the load-balancer status of Ingresses.
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index e4037dfb0..4a6d3d2f4 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -575,6 +575,15 @@ func (n NGINXController) generateTemplate(cfg ngx_config.Configuration, ingressC
 
 	cfg.DefaultSSLCertificate = n.getDefaultSSLCertificate()
 
+	if n.cfg.IsChroot {
+		if cfg.AccessLogPath == "/var/log/nginx/access.log" {
+			cfg.AccessLogPath = fmt.Sprintf("syslog:server=%s", n.cfg.InternalLoggerAddress)
+		}
+		if cfg.ErrorLogPath == "/var/log/nginx/error.log" {
+			cfg.ErrorLogPath = fmt.Sprintf("syslog:server=%s", n.cfg.InternalLoggerAddress)
+		}
+	}
+
 	tc := ngx_config.TemplateConfig{
 		ProxySetHeaders:          setHeaders,
 		AddHeaders:               addHeaders,
@@ -614,7 +623,8 @@ func (n NGINXController) testTemplate(cfg []byte) error {
 	if len(cfg) == 0 {
 		return fmt.Errorf("invalid NGINX configuration (empty)")
 	}
-	tmpfile, err := os.CreateTemp("", tempNginxPattern)
+	tmpDir := os.TempDir() + "/nginx"
+	tmpfile, err := os.CreateTemp(tmpDir, tempNginxPattern)
 	if err != nil {
 		return err
 	}
diff --git a/internal/ingress/controller/process/nginx.go b/internal/ingress/controller/process/nginx.go
index 702f60da8..70227ac2e 100644
--- a/internal/ingress/controller/process/nginx.go
+++ b/internal/ingress/controller/process/nginx.go
@@ -20,7 +20,7 @@ import (
 	"os/exec"
 	"syscall"
 
-	"k8s.io/klog/v2"
+	klog "k8s.io/klog/v2"
 )
 
 // IsRespawnIfRequired checks if error type is exec.ExitError or not
diff --git a/internal/ingress/controller/util.go b/internal/ingress/controller/util.go
index 91e0c3acf..a8232ed0e 100644
--- a/internal/ingress/controller/util.go
+++ b/internal/ingress/controller/util.go
@@ -29,7 +29,7 @@ import (
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/apimachinery/pkg/util/intstr"
 	"k8s.io/ingress-nginx/internal/ingress"
-	"k8s.io/klog/v2"
+	klog "k8s.io/klog/v2"
 )
 
 // newUpstream creates an upstream without servers.
@@ -98,7 +98,7 @@ func rlimitMaxNumFiles() int {
 }
 
 const (
-	defBinary = "/usr/local/nginx/sbin/nginx"
+	defBinary = "/usr/bin/nginx"
 	cfgPath   = "/etc/nginx/nginx.conf"
 )
 
diff --git a/internal/ingress/metric/collectors/socket.go b/internal/ingress/metric/collectors/socket.go
index 0cbeeb4a6..ea4775583 100644
--- a/internal/ingress/metric/collectors/socket.go
+++ b/internal/ingress/metric/collectors/socket.go
@@ -111,7 +111,7 @@ var defObjectives = map[float64]float64{0.5: 0.05, 0.9: 0.01, 0.99: 0.001}
 // NewSocketCollector creates a new SocketCollector instance using
 // the ingress watch namespace and class used by the controller
 func NewSocketCollector(pod, namespace, class string, metricsPerHost bool, buckets HistogramBuckets) (*SocketCollector, error) {
-	socket := "/tmp/prometheus-nginx.socket"
+	socket := "/tmp/nginx/prometheus-nginx.socket"
 	// unix sockets must be unlink()ed before being used
 	_ = syscall.Unlink(socket)
 
diff --git a/internal/nginx/main.go b/internal/nginx/main.go
index 485b7d229..88d2ee877 100644
--- a/internal/nginx/main.go
+++ b/internal/nginx/main.go
@@ -28,7 +28,7 @@ import (
 	"time"
 
 	ps "github.com/mitchellh/go-ps"
-	"k8s.io/klog/v2"
+	klog "k8s.io/klog/v2"
 )
 
 // TODO: Check https://github.com/kubernetes/kubernetes/blob/master/pkg/master/ports/ports.go for ports already being used
@@ -40,7 +40,7 @@ var ProfilerPort = 10245
 var TemplatePath = "/etc/nginx/template/nginx.tmpl"
 
 // PID defines the location of the pid file used by NGINX
-var PID = "/tmp/nginx.pid"
+var PID = "/tmp/nginx/nginx.pid"
 
 // StatusPort port used by NGINX for the status server
 var StatusPort = 10246
diff --git a/rootfs/Dockerfile b/rootfs/Dockerfile
index 5a8af2a6d..1eab94c58 100644
--- a/rootfs/Dockerfile
+++ b/rootfs/Dockerfile
@@ -54,6 +54,7 @@ RUN bash -xeu -c ' \
     /etc/ingress-controller/auth \
     /var/log \
     /var/log/nginx \
+    /tmp/nginx \
   ); \
   for dir in "${writeDirs[@]}"; do \
     mkdir -p ${dir}; \
@@ -67,7 +68,8 @@ RUN apk add --no-cache libcap \
   && setcap -v cap_net_bind_service=+ep /usr/local/nginx/sbin/nginx \
   && setcap    cap_net_bind_service=+ep /usr/bin/dumb-init \
   && setcap -v cap_net_bind_service=+ep /usr/bin/dumb-init \
-  && apk del libcap
+  && apk del libcap \
+  && ln -sf /usr/local/nginx/sbin/nginx /usr/bin/nginx
 
 USER www-data
 
diff --git a/rootfs/Dockerfile.chroot b/rootfs/Dockerfile.chroot
new file mode 100644
index 000000000..53f8e3622
--- /dev/null
+++ b/rootfs/Dockerfile.chroot
@@ -0,0 +1,112 @@
+# Copyright 2022 The Kubernetes Authors. All rights reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License
+
+ARG BASE_IMAGE
+
+FROM ${BASE_IMAGE} as chroot
+
+# This intermediary image will be used only to copy all the required files to the chroot
+# TODO: Simplify in a future to a single Dockerfile
+COPY chroot.sh /chroot.sh
+RUN apk update \
+  && apk upgrade \
+  && /chroot.sh
+
+FROM alpine:3.14.2
+
+ARG TARGETARCH
+ARG VERSION
+ARG COMMIT_SHA
+ARG BUILD_ID=UNSET
+
+LABEL org.opencontainers.image.title="NGINX Ingress Controller for Kubernetes"
+LABEL org.opencontainers.image.documentation="https://kubernetes.github.io/ingress-nginx/"
+LABEL org.opencontainers.image.source="https://github.com/kubernetes/ingress-nginx"
+LABEL org.opencontainers.image.vendor="The Kubernetes Authors"
+LABEL org.opencontainers.image.licenses="Apache-2.0"
+LABEL org.opencontainers.image.version="${VERSION}"
+LABEL org.opencontainers.image.revision="${COMMIT_SHA}"
+
+LABEL build_id="${BUILD_ID}"
+
+# This will be injected in the chroot. Don't change :)
+ENV LUA_PATH="/usr/local/share/luajit-2.1.0-beta3/?.lua;/usr/local/share/lua/5.1/?.lua;/usr/local/lib/lua/?.lua;;"
+ENV LUA_CPATH="/usr/local/lib/lua/?/?.so;/usr/local/lib/lua/?.so;;"
+ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
+
+RUN apk update \
+  && apk upgrade \
+  && apk add -U --no-cache \
+     bash \
+     curl \
+     openssl \
+     ca-certificates \
+     dumb-init \
+     tzdata \
+     diffutils \
+     util-linux \
+  && ln -s /usr/local/nginx/sbin/nginx /sbin/nginx \
+  && adduser -S -D -H -u 101 -h /usr/local/nginx \
+    -s /sbin/nologin -G www-data -g www-data www-data 
+
+COPY --from=chroot /chroot /chroot
+
+COPY --chown=www-data:www-data etc /chroot/etc
+
+COPY --chown=www-data:www-data bin/${TARGETARCH}/dbg /
+COPY --chown=www-data:www-data bin/${TARGETARCH}/nginx-ingress-controller /
+COPY --chown=www-data:www-data bin/${TARGETARCH}/wait-shutdown /
+COPY --chown=www-data:www-data nginx-chroot-wrapper.sh /usr/bin/nginx
+
+WORKDIR /chroot/etc/nginx
+
+# Fix permission during the build to avoid issues at runtime
+# with volumes (custom templates)
+RUN bash -xeu -c ' \
+  writeDirs=( \
+    /var/log \
+  ); \
+  for dir in "${writeDirs[@]}"; do \
+    mkdir -p ${dir}; \
+    chown -R www-data.www-data ${dir}; \
+  done'
+
+RUN apk add --no-cache libcap \
+  && setcap    cap_sys_chroot,cap_net_bind_service=+ep /nginx-ingress-controller \
+  && setcap -v cap_sys_chroot,cap_net_bind_service=+ep /nginx-ingress-controller \
+  && setcap    cap_sys_chroot,cap_net_bind_service=+ep /usr/bin/unshare \
+  && setcap -v cap_sys_chroot,cap_net_bind_service=+ep /usr/bin/unshare \
+  && setcap    cap_net_bind_service=+ep /chroot/usr/local/nginx/sbin/nginx \
+  && setcap -v cap_net_bind_service=+ep /chroot/usr/local/nginx/sbin/nginx \
+  && setcap    cap_sys_chroot,cap_net_bind_service=+ep /usr/bin/dumb-init \
+  && setcap -v cap_sys_chroot,cap_net_bind_service=+ep /usr/bin/dumb-init \
+  && apk del libcap
+
+RUN  ln -sf /chroot/etc/nginx /etc/nginx \
+  && ln -sf /chroot/tmp/nginx /tmp/nginx \
+  && ln -sf /chroot/etc/ingress-controller /etc/ingress-controller \
+  && ln -sf /chroot/var/log/nginx /var/log/nginx \
+  && touch /chroot/var/log/nginx/access.log \
+  && chown www-data:www-data /chroot/var/log/nginx/access.log \
+  && echo "" > /chroot/etc/resolv.conf \
+  && chown -R www-data.www-data /chroot/var/log/nginx /chroot/etc/resolv.conf
+
+USER www-data
+
+EXPOSE 80 443
+
+ENTRYPOINT ["/usr/bin/dumb-init", "--"]
+
+CMD ["/nginx-ingress-controller"]
+ 
diff --git a/rootfs/chroot.sh b/rootfs/chroot.sh
new file mode 100755
index 000000000..c2ae3d2fa
--- /dev/null
+++ b/rootfs/chroot.sh
@@ -0,0 +1,55 @@
+#!/bin/bash
+
+# Copyright 2022 The Kubernetes Authors.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+set -x
+writeDirs=( \
+  /chroot/etc/nginx \
+  /chroot/usr/local/ \
+  /chroot/etc/ingress-controller \
+  /chroot/etc/ingress-controller/ssl \
+  /chroot/etc/ingress-controller/auth \
+  /chroot/opt/modsecurity/var/log \
+  /chroot/opt/modsecurity/var/upload \
+  /chroot/opt/modsecurity/var/audit \
+  /chroot/var/log/audit \
+  /chroot/var/lib/nginx \
+  /chroot/var/log/nginx \
+  /chroot/var/lib/nginx/body \
+  /chroot/var/lib/nginx/fastcgi \
+  /chroot/var/lib/nginx/proxy \
+  /chroot/var/lib/nginx/scgi \
+  /chroot/var/lib/nginx/uwsgi \
+  /chroot/tmp/nginx
+);
+
+for dir in "${writeDirs[@]}"; do
+  mkdir -p ${dir};
+  chown -R www-data.www-data ${dir};
+done
+
+mkdir -p  /chroot/lib /chroot/proc /chroot/usr /chroot/bin /chroot/dev /chroot/run 
+cp /etc/passwd /etc/group /chroot/etc/
+cp -a /usr/* /chroot/usr/
+mv /var/log/nginx /chroot/var/log/
+cp -a /etc/nginx/* /chroot/etc/nginx/
+cp /lib/ld-musl-* /lib/libcrypto* /lib/libssl* /lib/libz* /chroot/lib/
+mknod -m 0666 /chroot/dev/null c 1 3
+mknod -m 0666 /chroot/dev/random c 1 8
+mknod -m 0666 /chroot/dev/urandom c 1 9
+mknod -m 0666 /chroot/dev/full c 1 7
+mknod -m 0666 /chroot/dev/ptmx c 5 2
+mknod -m 0666 /chroot/dev/zero c 1 5
+mknod -m 0666 /chroot/dev/tty c 5 0
diff --git a/rootfs/etc/nginx/lua/monitor.lua b/rootfs/etc/nginx/lua/monitor.lua
index be7a173ee..8b0e18596 100644
--- a/rootfs/etc/nginx/lua/monitor.lua
+++ b/rootfs/etc/nginx/lua/monitor.lua
@@ -26,7 +26,7 @@ local _M = {}
 
 local function send(payload)
   local s = assert(socket())
-  assert(s:connect("unix:/tmp/prometheus-nginx.socket"))
+  assert(s:connect("unix:/tmp/nginx/prometheus-nginx.socket"))
   assert(s:send(payload))
   assert(s:close())
 end
diff --git a/rootfs/etc/nginx/lua/test/monitor_test.lua b/rootfs/etc/nginx/lua/test/monitor_test.lua
index 2762a980d..e75018adf 100644
--- a/rootfs/etc/nginx/lua/test/monitor_test.lua
+++ b/rootfs/etc/nginx/lua/test/monitor_test.lua
@@ -148,7 +148,7 @@ describe("Monitor", function()
         },
       })
 
-      assert.stub(tcp_mock.connect).was_called_with(tcp_mock, "unix:/tmp/prometheus-nginx.socket")
+      assert.stub(tcp_mock.connect).was_called_with(tcp_mock, "unix:/tmp/nginx/prometheus-nginx.socket")
       assert.stub(tcp_mock.send).was_called_with(tcp_mock, expected_payload)
       assert.stub(tcp_mock.close).was_called_with(tcp_mock)
     end)
diff --git a/rootfs/etc/nginx/nginx.conf b/rootfs/etc/nginx/nginx.conf
index 6f8e86b90..7f60b846d 100644
--- a/rootfs/etc/nginx/nginx.conf
+++ b/rootfs/etc/nginx/nginx.conf
@@ -1,6 +1,8 @@
 # A very simple nginx configuration file that forces nginx to start.
-pid /tmp/nginx.pid;
+pid /tmp/nginx/nginx.pid;
+
+error_log stderr;
 
 events {}
 http {}
-daemon off;
\ No newline at end of file
+daemon off;
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index f6495eb4a..eaaf60c65 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -285,10 +285,10 @@ http {
     keepalive_timeout  {{ $cfg.KeepAlive }}s;
     keepalive_requests {{ $cfg.KeepAliveRequests }};
 
-    client_body_temp_path           /tmp/client-body;
-    fastcgi_temp_path               /tmp/fastcgi-temp;
-    proxy_temp_path                 /tmp/proxy-temp;
-    ajp_temp_path                   /tmp/ajp-temp;
+    client_body_temp_path           /tmp/nginx/client-body;
+    fastcgi_temp_path               /tmp/nginx/fastcgi-temp;
+    proxy_temp_path                 /tmp/nginx/proxy-temp;
+    ajp_temp_path                   /tmp/nginx/ajp-temp;
 
     client_header_buffer_size       {{ $cfg.ClientHeaderBufferSize }};
     client_header_timeout           {{ $cfg.ClientHeaderTimeout }}s;
@@ -536,7 +536,7 @@ http {
     {{ end }}
 
     # Cache for internal auth checks
-    proxy_cache_path /tmp/nginx-cache-auth levels=1:2 keys_zone=auth_cache:10m max_size=128m inactive=30m use_temp_path=off;
+    proxy_cache_path /tmp/nginx/nginx-cache-auth levels=1:2 keys_zone=auth_cache:10m max_size=128m inactive=30m use_temp_path=off;
 
     # Global filters
     {{ range $ip := $cfg.BlockCIDRs }}deny {{ trimSpace $ip }};
@@ -773,8 +773,8 @@ stream {
     access_log {{ or $cfg.StreamAccessLogPath $cfg.AccessLogPath }} log_stream {{ $cfg.AccessLogParams }};
     {{ end }}
 
+   
     error_log  {{ $cfg.ErrorLogPath }} {{ $cfg.ErrorLogLevel }};
-
     {{ if $cfg.EnableRealIp }}
     {{ range $trusted_ip := $cfg.ProxyRealIPCIDR }}
     set_real_ip_from    {{ $trusted_ip }};
diff --git a/rootfs/nginx-chroot-wrapper.sh b/rootfs/nginx-chroot-wrapper.sh
new file mode 100755
index 000000000..f7318142f
--- /dev/null
+++ b/rootfs/nginx-chroot-wrapper.sh
@@ -0,0 +1,18 @@
+#!/bin/bash
+
+# Copyright 2022 The Kubernetes Authors.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+cat /etc/resolv.conf > /chroot/etc/resolv.conf
+unshare  -S 101 -R /chroot nginx "$@"
diff --git a/test/data/cleanConf.expected.conf b/test/data/cleanConf.expected.conf
index 5edad651b..1666c19f6 100644
--- a/test/data/cleanConf.expected.conf
+++ b/test/data/cleanConf.expected.conf
@@ -1,7 +1,7 @@
 # Configuration checksum: 
 
 # setup custom paths that do not require root access
-pid /tmp/nginx.pid;
+pid /tmp/nginx/nginx.pid;
 
 daemon off;
 
diff --git a/test/data/cleanConf.src.conf b/test/data/cleanConf.src.conf
index 81944e1ce..0e572faa5 100644
--- a/test/data/cleanConf.src.conf
+++ b/test/data/cleanConf.src.conf
@@ -1,7 +1,7 @@
 # Configuration checksum: 
 
 # setup custom paths that do not require root access
-pid /tmp/nginx.pid;
+pid /tmp/nginx/nginx.pid;
 
 
 
diff --git a/test/e2e-image/namespace-overlays/admission/values.yaml b/test/e2e-image/namespace-overlays/admission/values.yaml
index b88e8a02e..1f0367671 100644
--- a/test/e2e-image/namespace-overlays/admission/values.yaml
+++ b/test/e2e-image/namespace-overlays/admission/values.yaml
@@ -3,6 +3,7 @@ fullnameOverride: nginx-ingress
 controller:
   image:
     repository: ingress-controller/controller
+    chroot: true
     tag: 1.0.0-dev
     digest:
   containerPort:
diff --git a/test/e2e-image/namespace-overlays/custom-health-check-path/values.yaml b/test/e2e-image/namespace-overlays/custom-health-check-path/values.yaml
index 57bd1d105..7507d60db 100644
--- a/test/e2e-image/namespace-overlays/custom-health-check-path/values.yaml
+++ b/test/e2e-image/namespace-overlays/custom-health-check-path/values.yaml
@@ -3,6 +3,7 @@ fullnameOverride: nginx-ingress
 controller:
   image:
     repository: ingress-controller/controller
+    chroot: true
     tag: 1.0.0-dev
     digest:
   extraArgs:
diff --git a/test/e2e-image/namespace-overlays/forwarded-port-headers/values.yaml b/test/e2e-image/namespace-overlays/forwarded-port-headers/values.yaml
index 4fef671a7..e0b8003d2 100644
--- a/test/e2e-image/namespace-overlays/forwarded-port-headers/values.yaml
+++ b/test/e2e-image/namespace-overlays/forwarded-port-headers/values.yaml
@@ -3,6 +3,7 @@ fullnameOverride: nginx-ingress
 controller:
   image:
     repository: ingress-controller/controller
+    chroot: true
     tag: 1.0.0-dev
     digest:
   containerPort:
diff --git a/test/e2e-image/namespace-overlays/namespace-selector/values.yaml b/test/e2e-image/namespace-overlays/namespace-selector/values.yaml
index e4c0e7a87..06252da6f 100644
--- a/test/e2e-image/namespace-overlays/namespace-selector/values.yaml
+++ b/test/e2e-image/namespace-overlays/namespace-selector/values.yaml
@@ -3,6 +3,7 @@ fullnameOverride: nginx-ingress
 controller:
   image:
     repository: ingress-controller/controller
+    chroot: true
     tag: 1.0.0-dev
     digest:
   containerPort:
diff --git a/test/e2e/framework/logs.go b/test/e2e/framework/logs.go
index a4b645695..db3eb4a6c 100644
--- a/test/e2e/framework/logs.go
+++ b/test/e2e/framework/logs.go
@@ -18,12 +18,15 @@ package framework
 
 import (
 	"context"
+	"time"
 
 	"k8s.io/client-go/kubernetes"
 )
 
 // Logs returns the log entries of a given Pod.
 func Logs(client kubernetes.Interface, namespace, podName string) (string, error) {
+	// Logs from jails take a bigger time to get shipped due to the need of tailing them
+	Sleep(3 * time.Second)
 	logs, err := client.CoreV1().RESTClient().Get().
 		Resource("pods").
 		Namespace(namespace).
diff --git a/test/e2e/run.sh b/test/e2e/run.sh
index bfe13b428..1aa41e1c6 100755
--- a/test/e2e/run.sh
+++ b/test/e2e/run.sh
@@ -58,7 +58,7 @@ export KUBECONFIG="${KUBECONFIG:-$HOME/.kube/kind-config-$KIND_CLUSTER_NAME}"
 if [ "${SKIP_CLUSTER_CREATION:-false}" = "false" ]; then
   echo "[dev-env] creating Kubernetes cluster with kind"
 
-  export K8S_VERSION=${K8S_VERSION:-v1.21.1@sha256:69860bda5563ac81e3c0057d654b5253219618a22ec3a346306239bba8cfa1a6}
+  export K8S_VERSION=${K8S_VERSION:-v1.21.10@sha256:84709f09756ba4f863769bdcabe5edafc2ada72d3c8c44d6515fc581b66b029c}
 
   kind create cluster \
     --verbosity=${KIND_LOG_LEVEL} \
@@ -77,7 +77,7 @@ if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   fi
 
   echo "[dev-env] building image"
-  make -C ${DIR}/../../ clean-image build image
+  make -C ${DIR}/../../ clean-image build image image-chroot
   make -C ${DIR}/../e2e-image image
 fi
 
@@ -87,6 +87,11 @@ KIND_WORKERS=$(kind get nodes --name="${KIND_CLUSTER_NAME}" | grep worker | awk
 echo "[dev-env] copying docker images to cluster..."
 
 kind load docker-image --name="${KIND_CLUSTER_NAME}" --nodes=${KIND_WORKERS} nginx-ingress-controller:e2e
+
+if [ "${IS_CHROOT:-false}" = "true" ]; then
+   docker tag ${REGISTRY}/controller-chroot:${TAG} ${REGISTRY}/controller:${TAG}
+fi
+
 kind load docker-image --name="${KIND_CLUSTER_NAME}" --nodes=${KIND_WORKERS} ${REGISTRY}/controller:${TAG}
 
 echo "[dev-env] running e2e tests..."
diff --git a/test/e2e/settings/access_log.go b/test/e2e/settings/access_log.go
index 0e4c1d827..0e50205e5 100644
--- a/test/e2e/settings/access_log.go
+++ b/test/e2e/settings/access_log.go
@@ -31,17 +31,19 @@ var _ = framework.DescribeSetting("access-log", func() {
 		ginkgo.It("use the default configuration", func() {
 			f.WaitForNginxConfiguration(
 				func(cfg string) bool {
-					return strings.Contains(cfg, "access_log /var/log/nginx/access.log upstreaminfo") &&
-						strings.Contains(cfg, "access_log /var/log/nginx/access.log log_stream")
+					return (strings.Contains(cfg, "access_log /var/log/nginx/access.log upstreaminfo") &&
+						strings.Contains(cfg, "access_log /var/log/nginx/access.log log_stream")) ||
+						(strings.Contains(cfg, "access_log syslog:server=127.0.0.1:11514 upstreaminfo") &&
+							strings.Contains(cfg, "access_log syslog:server=127.0.0.1:11514 log_stream"))
 				})
 		})
 
 		ginkgo.It("use the specified configuration", func() {
-			f.UpdateNginxConfigMapData("access-log-path", "/tmp/access.log")
+			f.UpdateNginxConfigMapData("access-log-path", "/tmp/nginx/access.log")
 			f.WaitForNginxConfiguration(
 				func(cfg string) bool {
-					return strings.Contains(cfg, "access_log /tmp/access.log upstreaminfo") &&
-						strings.Contains(cfg, "access_log /tmp/access.log log_stream")
+					return strings.Contains(cfg, "access_log /tmp/nginx/access.log upstreaminfo") &&
+						strings.Contains(cfg, "access_log /tmp/nginx/access.log log_stream")
 				})
 		})
 	})
@@ -49,11 +51,12 @@ var _ = framework.DescribeSetting("access-log", func() {
 	ginkgo.Context("http-access-log-path", func() {
 
 		ginkgo.It("use the specified configuration", func() {
-			f.UpdateNginxConfigMapData("http-access-log-path", "/tmp/http-access.log")
+			f.UpdateNginxConfigMapData("http-access-log-path", "/tmp/nginx/http-access.log")
 			f.WaitForNginxConfiguration(
 				func(cfg string) bool {
-					return strings.Contains(cfg, "access_log /tmp/http-access.log upstreaminfo") &&
-						strings.Contains(cfg, "access_log /var/log/nginx/access.log log_stream")
+					return strings.Contains(cfg, "access_log /tmp/nginx/http-access.log upstreaminfo") &&
+						(strings.Contains(cfg, "access_log /var/log/nginx/access.log log_stream") ||
+							strings.Contains(cfg, "access_log syslog:server=127.0.0.1:11514 log_stream"))
 				})
 		})
 	})
@@ -61,11 +64,12 @@ var _ = framework.DescribeSetting("access-log", func() {
 	ginkgo.Context("stream-access-log-path", func() {
 
 		ginkgo.It("use the specified configuration", func() {
-			f.UpdateNginxConfigMapData("stream-access-log-path", "/tmp/stream-access.log")
+			f.UpdateNginxConfigMapData("stream-access-log-path", "/tmp/nginx/stream-access.log")
 			f.WaitForNginxConfiguration(
 				func(cfg string) bool {
-					return strings.Contains(cfg, "access_log /tmp/stream-access.log log_stream") &&
-						strings.Contains(cfg, "access_log /var/log/nginx/access.log upstreaminfo")
+					return strings.Contains(cfg, "access_log /tmp/nginx/stream-access.log log_stream") &&
+						(strings.Contains(cfg, "access_log /var/log/nginx/access.log upstreaminfo") ||
+							strings.Contains(cfg, "access_log syslog:server=127.0.0.1:11514 upstreaminfo"))
 				})
 		})
 	})
@@ -74,13 +78,13 @@ var _ = framework.DescribeSetting("access-log", func() {
 
 		ginkgo.It("use the specified configuration", func() {
 			f.SetNginxConfigMapData(map[string]string{
-				"http-access-log-path":   "/tmp/http-access.log",
-				"stream-access-log-path": "/tmp/stream-access.log",
+				"http-access-log-path":   "/tmp/nginx/http-access.log",
+				"stream-access-log-path": "/tmp/nginx/stream-access.log",
 			})
 			f.WaitForNginxConfiguration(
 				func(cfg string) bool {
-					return strings.Contains(cfg, "access_log /tmp/http-access.log upstreaminfo") &&
-						strings.Contains(cfg, "access_log /tmp/stream-access.log log_stream")
+					return strings.Contains(cfg, "access_log /tmp/nginx/http-access.log upstreaminfo") &&
+						strings.Contains(cfg, "access_log /tmp/nginx/stream-access.log log_stream")
 				})
 		})
 	})
diff --git a/test/e2e/settings/pod_security_policy_volumes.go b/test/e2e/settings/pod_security_policy_volumes.go
index da88ed5be..384f8c46c 100644
--- a/test/e2e/settings/pod_security_policy_volumes.go
+++ b/test/e2e/settings/pod_security_policy_volumes.go
@@ -82,10 +82,10 @@ var _ = framework.IngressNginxDescribe("[Security] Pod Security Policies with vo
 
 			deployment.Spec.Template.Spec.Containers[0].VolumeMounts = []corev1.VolumeMount{
 				{
-					Name: "ssl", MountPath: "/etc/ingress-controller",
+					Name: "ssl", MountPath: "/etc/my-amazing-ssl",
 				},
 				{
-					Name: "tmp", MountPath: "/tmp",
+					Name: "tmp", MountPath: "/my-other-tmp",
 				},
 			}
 
diff --git a/test/e2e/wait-for-nginx.sh b/test/e2e/wait-for-nginx.sh
index 9a37d1ffc..ed2e04426 100755
--- a/test/e2e/wait-for-nginx.sh
+++ b/test/e2e/wait-for-nginx.sh
@@ -59,6 +59,7 @@ fullnameOverride: nginx-ingress
 controller:
   image:
     repository: ingress-controller/controller
+    chroot: true
     tag: 1.0.0-dev
     digest:
   scope:

From d46da48005a1248686e0835de2110667bc489883 Mon Sep 17 00:00:00 2001
From: Mochamad Arifin <klampok.child@gmail.com>
Date: Sun, 10 Apr 2022 21:42:05 +0700
Subject: [PATCH 0139/1641] Update index.md (#8454)

Fix THis -> This
---
 docs/deploy/index.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 7c9219012..b78675ff4 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -325,7 +325,7 @@ See also [“How to easily install multiple instances of the Ingress NGINX contr
 !!! attention
     The first time the ingress controller starts, two [Jobs](https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/) create the SSL Certificate used by the admission webhook.
 
-THis can cause an initial delay of up to two minutes until it is possible to create and validate Ingress definitions.
+This can cause an initial delay of up to two minutes until it is possible to create and validate Ingress definitions.
 
 You can wait until it is ready to run the next command:
 

From 5737f166632a93011f6964b8b7ff7a977a5ecc43 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 10 Apr 2022 12:58:05 -0300
Subject: [PATCH 0140/1641] Update dependencies (#8455)

* Update more dependencies

* Fix e2e test for new ProbeHandler
---
 go.mod                           |  55 +++---
 go.sum                           | 295 +++++++++----------------------
 test/e2e/framework/deployment.go |   4 +-
 3 files changed, 118 insertions(+), 236 deletions(-)

diff --git a/go.mod b/go.mod
index de5f5938e..62a71d20a 100644
--- a/go.mod
+++ b/go.mod
@@ -15,13 +15,13 @@ require (
 	github.com/mitchellh/mapstructure v1.4.3
 	github.com/moul/pb v0.0.0-20180404114147-54bdd96e6a52
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo v1.16.4
-	github.com/opencontainers/runc v1.1.0
+	github.com/onsi/ginkgo v1.16.5
+	github.com/opencontainers/runc v1.1.1
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.12.1
 	github.com/prometheus/client_model v0.2.0
 	github.com/prometheus/common v0.33.0
-	github.com/spf13/cobra v1.3.0
+	github.com/spf13/cobra v1.4.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.7.1
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
@@ -29,22 +29,23 @@ require (
 	golang.org/x/net v0.0.0-20220225172249-27dd8689420f
 	google.golang.org/grpc v1.44.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
-	k8s.io/api v0.22.5
-	k8s.io/apiextensions-apiserver v0.22.5
-	k8s.io/apimachinery v0.22.5
-	k8s.io/apiserver v0.22.5
-	k8s.io/cli-runtime v0.22.5
-	k8s.io/client-go v0.22.5
-	k8s.io/code-generator v0.22.5
-	k8s.io/component-base v0.22.5
-	k8s.io/klog/v2 v2.9.0
+	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
+	k8s.io/api v0.23.5
+	k8s.io/apiextensions-apiserver v0.23.5
+	k8s.io/apimachinery v0.23.5
+	k8s.io/apiserver v0.23.5
+	k8s.io/cli-runtime v0.23.5
+	k8s.io/client-go v0.23.5
+	k8s.io/code-generator v0.23.5
+	k8s.io/component-base v0.23.5
+	k8s.io/klog/v2 v2.60.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.10.3
+	sigs.k8s.io/controller-runtime v0.11.2
 	sigs.k8s.io/mdtoc v1.1.0
 )
 
 require (
-	cloud.google.com/go v0.99.0 // indirect
+	cloud.google.com/go v0.81.0 // indirect
 	github.com/Azure/go-autorest v14.2.0+incompatible // indirect
 	github.com/Azure/go-autorest/autorest v0.11.18 // indirect
 	github.com/Azure/go-autorest/autorest/adal v0.9.13 // indirect
@@ -64,12 +65,12 @@ require (
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/eapache/queue v1.1.0 // indirect
 	github.com/emicklei/go-restful v2.9.5+incompatible // indirect
-	github.com/evanphx/json-patch v4.11.0+incompatible // indirect
+	github.com/evanphx/json-patch v4.12.0+incompatible // indirect
 	github.com/fatih/structs v1.0.0 // indirect
 	github.com/form3tech-oss/jwt-go v3.2.3+incompatible // indirect
 	github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b // indirect
 	github.com/go-errors/errors v1.0.1 // indirect
-	github.com/go-logr/logr v0.4.0 // indirect
+	github.com/go-logr/logr v1.2.0 // indirect
 	github.com/go-openapi/jsonpointer v0.19.5 // indirect
 	github.com/go-openapi/jsonreference v0.19.5 // indirect
 	github.com/go-openapi/swag v0.19.14 // indirect
@@ -117,29 +118,29 @@ require (
 	github.com/yudai/gojsondiff v1.0.0 // indirect
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
-	golang.org/x/mod v0.5.0 // indirect
+	golang.org/x/mod v0.4.2 // indirect
 	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
 	golang.org/x/sys v0.0.0-20220114195835-da31bd327af9 // indirect
 	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
 	golang.org/x/text v0.3.7 // indirect
 	golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
-	golang.org/x/tools v0.1.5 // indirect
+	golang.org/x/tools v0.1.6-0.20210820212750-d4cc65f0b2ff // indirect
 	golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/genproto v0.0.0-20211208223120-3a66f561d7aa // indirect
+	google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2 // indirect
 	google.golang.org/protobuf v1.27.1 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
-	gopkg.in/mcuadros/go-syslog.v2 v2.3.0 // indirect
 	gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b // indirect
-	k8s.io/gengo v0.0.0-20201214224949-b6c5ce23f027 // indirect
-	k8s.io/kube-openapi v0.0.0-20211109043538-20434351676c // indirect
-	k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a // indirect
+	k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c // indirect
+	k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65 // indirect
+	k8s.io/utils v0.0.0-20211116205334-6203023598ed // indirect
 	moul.io/http2curl v1.0.1-0.20190925090545-5cd742060b0e // indirect
-	sigs.k8s.io/kustomize/api v0.8.11 // indirect
-	sigs.k8s.io/kustomize/kyaml v0.11.0 // indirect
-	sigs.k8s.io/structured-merge-diff/v4 v4.1.2 // indirect
-	sigs.k8s.io/yaml v1.2.0 // indirect
+	sigs.k8s.io/json v0.0.0-20211020170558-c049b76a60c6 // indirect
+	sigs.k8s.io/kustomize/api v0.10.1 // indirect
+	sigs.k8s.io/kustomize/kyaml v0.13.0 // indirect
+	sigs.k8s.io/structured-merge-diff/v4 v4.2.1 // indirect
+	sigs.k8s.io/yaml v1.3.0 // indirect
 )
diff --git a/go.sum b/go.sum
index 586115d44..9e12fbaed 100644
--- a/go.sum
+++ b/go.sum
@@ -17,17 +17,8 @@ cloud.google.com/go v0.72.0/go.mod h1:M+5Vjvlc2wnp6tjzE102Dw08nGShTscUx2nZMufOKP
 cloud.google.com/go v0.74.0/go.mod h1:VV1xSbzvo+9QJOxLDaJfTjx5e+MePCpCWwvftOeQmWk=
 cloud.google.com/go v0.78.0/go.mod h1:QjdrLG0uq+YwhjoVOLsS1t7TW8fs36kLs4XO5R5ECHg=
 cloud.google.com/go v0.79.0/go.mod h1:3bzgcEeQlzbuEAYu4mrWhKqWjmpprinYgKJLgKHnbb8=
+cloud.google.com/go v0.81.0 h1:at8Tk2zUz63cLPR0JPWm5vp77pEZmzxEQBEfRKn1VV8=
 cloud.google.com/go v0.81.0/go.mod h1:mk/AM35KwGk/Nm2YSeZbxXdrNK3KZOYHmLkOqC2V6E0=
-cloud.google.com/go v0.83.0/go.mod h1:Z7MJUsANfY0pYPdw0lbnivPx4/vhy/e2FEkSkF7vAVY=
-cloud.google.com/go v0.84.0/go.mod h1:RazrYuxIK6Kb7YrzzhPoLmCVzl7Sup4NrbKPg8KHSUM=
-cloud.google.com/go v0.87.0/go.mod h1:TpDYlFy7vuLzZMMZ+B6iRiELaY7z/gJPaqbMx6mlWcY=
-cloud.google.com/go v0.90.0/go.mod h1:kRX0mNRHe0e2rC6oNakvwQqzyDmg57xJ+SZU1eT2aDQ=
-cloud.google.com/go v0.93.3/go.mod h1:8utlLll2EF5XMAV15woO4lSbWQlk8rer9aLOfLh7+YI=
-cloud.google.com/go v0.94.1/go.mod h1:qAlAugsXlC+JWO+Bke5vCtc9ONxjQT3drlTTnAplMW4=
-cloud.google.com/go v0.97.0/go.mod h1:GF7l59pYBVlXQIBLx3a761cZ41F9bBH3JUlihCt2Udc=
-cloud.google.com/go v0.98.0/go.mod h1:ua6Ush4NALrHk5QXDWnjvZHN93OuF0HfuEPq9I1X0cM=
-cloud.google.com/go v0.99.0 h1:y/cM2iqGgGi5D5DQZl6D9STN/3dR/Vx5Mp8s752oJTY=
-cloud.google.com/go v0.99.0/go.mod h1:w0Xx2nLzqWJPuozYQX+hFfCSI8WioryfRDzkoI/Y2ZA=
 cloud.google.com/go/bigquery v1.0.1/go.mod h1:i/xbL2UlR5RvWAURpBYZTtm/cXjCha9lbfbpx4poX+o=
 cloud.google.com/go/bigquery v1.3.0/go.mod h1:PjpwJnslEMmckchkHFfq+HTD2DmtT67aNFKH1/VBDHE=
 cloud.google.com/go/bigquery v1.4.0/go.mod h1:S8dzgnTigyfTmLBfrtrhyYhwRxG72rYxvftPBK2Dvzc=
@@ -37,7 +28,6 @@ cloud.google.com/go/bigquery v1.8.0/go.mod h1:J5hqkt3O0uAFnINi6JXValWIb1v0goeZM7
 cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE=
 cloud.google.com/go/datastore v1.1.0/go.mod h1:umbIZjpQpHh4hmRpGhH4tLFup+FVzqBi1b3c64qFpCk=
 cloud.google.com/go/firestore v1.1.0/go.mod h1:ulACoGHTpvq5r8rxGJ4ddJZBZqakUQqClKRT5SZwBmk=
-cloud.google.com/go/firestore v1.6.1/go.mod h1:asNXNOzBdyVQmEU+ggO8UPodTkEVFW5Qx+rwHnAz+EY=
 cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I=
 cloud.google.com/go/pubsub v1.1.0/go.mod h1:EwwdRX2sKPjnvnqCa270oGRyludottCI76h+R3AArQw=
 cloud.google.com/go/pubsub v1.2.0/go.mod h1:jhfEVHT8odbXTkndysNHCcx0awwzvfOlguIAii9o8iA=
@@ -67,7 +57,6 @@ github.com/Azure/go-autorest/tracing v0.6.0/go.mod h1:+vhtPC754Xsa23ID7GlGsrdKBp
 github.com/BurntSushi/toml v0.3.1 h1:WXkYYl6Yr3qBf1K79EBnL4mak0OimBfB0XUf9Vl28OQ=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
-github.com/DataDog/datadog-go v3.2.0+incompatible/go.mod h1:LButxg5PwREeZtORoXG3tL4fMGNddJ+vMq1mwgfaqoQ=
 github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
 github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
 github.com/OneOfOne/xxhash v1.2.2/go.mod h1:HSdplMjZKSmBqAxg5vPj2TmRDmfkzw+cTzAElWljhcU=
@@ -85,14 +74,13 @@ github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d/go.mod h1:rBZYJk5
 github.com/andybalholm/brotli v1.0.2 h1:JKnhI/XQ75uFBTiuzXpzFrUriDPiZjlOSzh6wXogP0E=
 github.com/andybalholm/brotli v1.0.2/go.mod h1:loMXtMfwqflxFJPmdbJO0a3KNoPuLBgiu3qAvBg8x/Y=
 github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
+github.com/antlr/antlr4/runtime/Go/antlr v0.0.0-20210826220005-b48c857c3a0e/go.mod h1:F7bn7fEU90QkQ3tnmaTx3LTKLEDqnwWODIYppRQ5hnY=
 github.com/armon/circbuf v0.0.0-20150827004946-bbbad097214e/go.mod h1:3U/XgcO3hCbHZ8TKRvWD2dDTCfh9M9ya+I9JpbB7O8o=
 github.com/armon/consul-api v0.0.0-20180202201655-eb2c6b5be1b6/go.mod h1:grANhF5doyWs3UAsr3K4I6qtAmlQcZDesFNEHPZAzj8=
 github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da/go.mod h1:Q73ZrmVTwzkszR9V5SSuryQ31EELlFMUz1kKyl939pY=
-github.com/armon/go-metrics v0.3.10/go.mod h1:4O98XIr/9W0sxpJ8UaYkvjk10Iff7SnFrb4QAOwNTFc=
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a h1:AP/vsCIvJZ129pdm9Ek7bH7yutN3hByqsMoNrWAxRQc=
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a/go.mod h1:QmP9hvJ91BbJmGVGSbutW19IC0Q9phDCLGaomwTJbgU=
 github.com/armon/go-radix v0.0.0-20180808171621-7fddfc383310/go.mod h1:ufUuZ+zHj4x4TnLV4JWEpy2hxWSpsRywHrMgIH9cCH8=
-github.com/armon/go-radix v1.0.0/go.mod h1:ufUuZ+zHj4x4TnLV4JWEpy2hxWSpsRywHrMgIH9cCH8=
 github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
 github.com/benbjohnson/clock v1.0.3/go.mod h1:bGMdMPoPVvcYyt1gHDf4J2KE153Yf9BuiUKYMaxlTDM=
 github.com/benbjohnson/clock v1.1.0/go.mod h1:J11/hYXuz8f4ySSvYwY0FKfm+ezbsZBKZxNJlLklBHA=
@@ -102,10 +90,10 @@ github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM=
 github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6rlkpw=
 github.com/bgentry/speakeasy v0.1.0/go.mod h1:+zsyZBPWlz7T6j88CTgSN5bM796AkVf0kBD4zp0CCIs=
 github.com/bketelsen/crypt v0.0.3-0.20200106085610-5cbc8cc4026c/go.mod h1:MKsuJmJgSg28kpZDP6UIiPt0e0Oz0kqKNGyRaWEPv84=
+github.com/bketelsen/crypt v0.0.4/go.mod h1:aI6NrJ0pMGgvZKL1iVgXLnfIFJtfV+bKCoqOes/6LfM=
 github.com/blang/semver v3.5.1+incompatible h1:cQNTCjp13qL8KC3Nbxr/y2Bqb63oX6wdnnjpJbkM4JQ=
 github.com/blang/semver v3.5.1+incompatible/go.mod h1:kRBLl5iJ+tD4TcOOxsy/0fnwebNt5EWlYSAyrTnjyyk=
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
-github.com/census-instrumentation/opencensus-proto v0.3.0/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
 github.com/certifi/gocertifi v0.0.0-20191021191039-0944d244cd40/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
 github.com/certifi/gocertifi v0.0.0-20200922220541-2c3bb06c6054/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
 github.com/cespare/xxhash v1.1.0 h1:a6HrQnmkObjyL+Gs60czilIUGqrzKutQD6XZog3p+ko=
@@ -118,8 +106,6 @@ github.com/chzyer/logex v1.1.10/go.mod h1:+Ywpsq7O8HXn0nuIou7OrIPyXbp3wmkHB+jjWR
 github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5PlCu98SY8svDHJxuZscDgtXS6KTTbou5AhLI=
 github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU=
 github.com/cilium/ebpf v0.7.0/go.mod h1:/oI2+1shJiTGAMgl6/RgJr36Eo1jzrRcAWbcXO2usCA=
-github.com/circonus-labs/circonus-gometrics v2.3.1+incompatible/go.mod h1:nmEj6Dob7S7YxXgwXpfOuvO54S+tGdZdw9fuRZt25Ag=
-github.com/circonus-labs/circonusllhist v0.1.3/go.mod h1:kMXHVDlOchFAehlya5ePtbp5jckzBHf4XRpQvBOLI+I=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
 github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc=
 github.com/cncf/udpa/go v0.0.0-20200629203442-efcf912fb354/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
@@ -128,9 +114,7 @@ github.com/cncf/udpa/go v0.0.0-20210930031921-04548b0d99d4/go.mod h1:6pvJx4me5XP
 github.com/cncf/xds/go v0.0.0-20210312221358-fbca930ec8ed/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20210805033703-aa0b78936158/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20211001041855-01bcc9b48dfe/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20211130200136-a8f946100490/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cockroachdb/datadriven v0.0.0-20200714090401-bf6692d28da5/go.mod h1:h6jFvWxBdQXxjopDMZyH2UVceIRfR84bdzbkoKrsWNo=
 github.com/cockroachdb/errors v1.2.4/go.mod h1:rQD95gz6FARkaKkQXUksEje/d9a6wBJoCr5oaCLELYA=
 github.com/cockroachdb/logtags v0.0.0-20190617123548-eb05cc24525f/go.mod h1:i/u985jwjWRlyHXQbwatDASoW0RMlZ/3i9yJHE2xLkI=
@@ -177,17 +161,14 @@ github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.m
 github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
 github.com/envoyproxy/go-control-plane v0.9.9-0.20210512163311-63b5d3c536b0/go.mod h1:hliV/p42l8fGbc6Y9bQ70uLwIvmJyVE5k4iMKlh8wCQ=
 github.com/envoyproxy/go-control-plane v0.9.10-0.20210907150352-cf90f659a021/go.mod h1:AFq3mo9L8Lqqiid3OhADV3RfLJnjiw63cSpi+fDTRC0=
-github.com/envoyproxy/go-control-plane v0.10.1/go.mod h1:AY7fTTXNdv/aJ2O5jwpxAPOWUZ7hQAEvzN5Pf27BkQQ=
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
-github.com/envoyproxy/protoc-gen-validate v0.6.2/go.mod h1:2t7qjJNvHPx8IjnBOzl9E9/baC+qXE/TeeyBRzgJDws=
 github.com/evanphx/json-patch v0.5.2/go.mod h1:ZWS5hhDbVDyob71nXKNL0+PWn6ToqBHMikGIFbs31qQ=
-github.com/evanphx/json-patch v4.11.0+incompatible h1:glyUF9yIYtMHzn8xaKw5rMhdWcwsYV8dZHIq5567/xs=
 github.com/evanphx/json-patch v4.11.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
+github.com/evanphx/json-patch v4.12.0+incompatible h1:4onqiflcdA9EOZ4RxV643DvftH5pOlLGNtQ5lPWQu84=
+github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/fasthttp/websocket v1.4.3-rc.6 h1:omHqsl8j+KXpmzRjF8bmzOSYJ8GnS0E3efi1wYT+niY=
 github.com/fasthttp/websocket v1.4.3-rc.6/go.mod h1:43W9OM2T8FeXpCWMsBd9Cb7nE2CACNqNvCqQCoty/Lc=
 github.com/fatih/color v1.7.0/go.mod h1:Zm6kSWBoL9eyXnKyktHP6abPY2pDugNf5KwzbycvMj4=
-github.com/fatih/color v1.9.0/go.mod h1:eQcE1qtQxscV5RaZvpXrrb8Drkc3/DdQ+uUYCNjL+zU=
-github.com/fatih/color v1.13.0/go.mod h1:kLAiJbzzSOZDVNGyDpeOxJ47H46qBXwg5ILebYFFOfk=
 github.com/fatih/structs v1.0.0 h1:BrX964Rv5uQ3wwS+KRUAJCBBw5PQmgJfJ6v4yly5QwU=
 github.com/fatih/structs v1.0.0/go.mod h1:9NiDSp5zOcgEDl+j00MP/WkGVPOlPRLejGD8Ga6PJ7M=
 github.com/felixge/httpsnoop v1.0.1/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
@@ -203,6 +184,7 @@ github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b h1:074/xhloHUBOpT
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
 github.com/gavv/httpexpect/v2 v2.3.1 h1:sGLlKMn8AuHS9ztK9Sb7AJ7OxIL8v2PcLdyxfKt1Fo4=
 github.com/gavv/httpexpect/v2 v2.3.1/go.mod h1:yOE8m/aqFYQDNrgprMeXgq4YynfN9h1NgcE1+1suV64=
+github.com/getkin/kin-openapi v0.76.0/go.mod h1:660oXbgy5JFMKreazJaQTw7o+X00qeSyhcnluiMv+Xg=
 github.com/getsentry/raven-go v0.2.0/go.mod h1:KungGk8q33+aIAZUIVWZDr2OfAEBsO49PX4NzFV5kcQ=
 github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
 github.com/go-errors/errors v1.0.1 h1:LUHzmkK3GUKUrL/1gfBUxAHzcev3apQlezX/+O7ma6w=
@@ -220,10 +202,10 @@ github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG
 github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
 github.com/go-logr/logr v0.1.0/go.mod h1:ixOQHD9gLJUVQQ2ZOR7zLEifBX6tGkNJF4QyIY7sIas=
 github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
-github.com/go-logr/logr v0.4.0 h1:K7/B1jt6fIBQVd4Owv2MqGQClcgf0R266+7C/QjRcLc=
-github.com/go-logr/logr v0.4.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
-github.com/go-logr/zapr v0.4.0 h1:uc1uML3hRYL9/ZZPdgHS/n8Nzo+eaYL/Efxkkamf7OM=
-github.com/go-logr/zapr v0.4.0/go.mod h1:tabnROwaDl0UNxkVeFRbY8bwB37GwRv0P8lg6aAiEnk=
+github.com/go-logr/logr v1.2.0 h1:QK40JKJyMdUDz+h+xvCsru/bJhvG0UxvePV0ufL/AcE=
+github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
+github.com/go-logr/zapr v1.2.0 h1:n4JnPI1T3Qq1SFEi/F8rwLrZERp2bso19PJZDB9dayk=
+github.com/go-logr/zapr v1.2.0/go.mod h1:Qa4Bsj2Vb+FAVeAKsLD8RLQ+YRJB8YDmOAKxaBQf7Ro=
 github.com/go-openapi/jsonpointer v0.19.3/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
 github.com/go-openapi/jsonpointer v0.19.5 h1:gZr+CIYByUqjcgeLXnQu2gHYQC9o73G2XUeOFYEICuY=
 github.com/go-openapi/jsonpointer v0.19.5/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
@@ -244,6 +226,7 @@ github.com/gogo/protobuf v1.3.1/go.mod h1:SlYgWuQ5SjCEi6WLHjHCa1yvBfUnHcTbrrZtXP
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
+github.com/golang/glog v1.0.0/go.mod h1:EWib/APOK0SL3dFbYqvxE3UYd8E6s1ouQ7iEp/0LWV4=
 github.com/golang/groupcache v0.0.0-20190129154638-5b532d6fd5ef/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20190702054246-869f871628b6/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20191227052852-215e87163ea7/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
@@ -258,7 +241,6 @@ github.com/golang/mock v1.4.1/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt
 github.com/golang/mock v1.4.3/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
 github.com/golang/mock v1.4.4/go.mod h1:l3mdAwkq5BuhzHwde/uurv3sEJeZMXNpwsxVWU71h+4=
 github.com/golang/mock v1.5.0/go.mod h1:CWnOUgYIOo4TcNZ0wHX3YZCqsaM1I1Jvs6v3mP3KVu8=
-github.com/golang/mock v1.6.0/go.mod h1:p6yTPP+5HYm5mzsMV8JkE6ZKdX+/wYM6Hr+LicevLPs=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
@@ -284,6 +266,8 @@ github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Z
 github.com/google/btree v1.0.0/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/btree v1.0.1 h1:gK4Kx5IaGY9CD5sPJ36FHiBJ6ZXl0kilRiiCj+jdYp4=
 github.com/google/btree v1.0.1/go.mod h1:xXMiIv4Fb/0kKde4SpL7qlzvu5cMJDRkFDxJfI9uaxA=
+github.com/google/cel-go v0.9.0/go.mod h1:U7ayypeSkw23szu4GaQTPJGx66c20mx8JklMSxrmI1w=
+github.com/google/cel-spec v0.6.0/go.mod h1:Nwjgxy5CbjlPrtCWjeDjUyKMl8w41YBYGjsyDdqk0xA=
 github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
@@ -305,7 +289,6 @@ github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/
 github.com/google/martian v2.1.0+incompatible/go.mod h1:9I4somxYTbIHy5NJKHRl3wXiIaQGbYVAs8BPL6v8lEs=
 github.com/google/martian/v3 v3.0.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
 github.com/google/martian/v3 v3.1.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
-github.com/google/martian/v3 v3.2.1/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
 github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20191218002539-d4f498aebedc/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
@@ -317,9 +300,6 @@ github.com/google/pprof v0.0.0-20201023163331-3e6fc7fc9c4c/go.mod h1:kpwsk12EmLe
 github.com/google/pprof v0.0.0-20201203190320-1bf35d6f28c2/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210122040257-d980be63207e/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210226084205-cbba55b83ad5/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210601050228-01bbb1931b22/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210609004039-a478d1d731e9/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
@@ -329,12 +309,11 @@ github.com/google/uuid v1.2.0 h1:qJYtXnJRWmpe7m/3XlyhrsLrEURqHRM2kxzoxXqyUDs=
 github.com/google/uuid v1.2.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
-github.com/googleapis/gax-go/v2 v2.1.0/go.mod h1:Q3nei7sK6ybPYH7twZdmQpAd1MKb7pfu6SK+H1/DsU0=
-github.com/googleapis/gax-go/v2 v2.1.1/go.mod h1:hddJymUZASv3XPyGkUpKj8pPO47Rmb0eJc8R6ouapiM=
 github.com/googleapis/gnostic v0.5.1/go.mod h1:6U4PtQXGIEt/Z3h5MAT7FNofLnw9vXk2cUuW7uA/OeU=
 github.com/googleapis/gnostic v0.5.5 h1:9fHAtK0uDfpveeqqo1hkEZJcFvYXAiCN3UutL8F9xHw=
 github.com/googleapis/gnostic v0.5.5/go.mod h1:7+EbHbldMins07ALC74bsA81Ovc97DwqyJO1AENw9kA=
 github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY=
+github.com/gorilla/mux v1.8.0/go.mod h1:DVbg23sWSpFRCP0SfiEN6jmj59UnW/n46BH5rLB71So=
 github.com/gorilla/websocket v1.4.0/go.mod h1:E7qHFY5m1UJ88s3WnNqhKjPHQ0heANvMoAMk2YaljkQ=
 github.com/gorilla/websocket v1.4.2 h1:+/TMaTYc4QFitKJxsQ7Yye35DkWvkdLcvGKqM+x0Ufc=
 github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
@@ -346,23 +325,13 @@ github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgf
 github.com/grpc-ecosystem/grpc-gateway v1.9.0/go.mod h1:vNeuVxBJEsws4ogUvrchl83t/GYV9WGTSLVdBhOQFDY=
 github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
 github.com/hashicorp/consul/api v1.1.0/go.mod h1:VmuI/Lkw1nC05EYQWNKwWGbkg+FbDBtguAZLlVdkD9Q=
-github.com/hashicorp/consul/api v1.11.0/go.mod h1:XjsvQN+RJGWI2TWy1/kqaE16HrR2J/FWgkYjdZQsX9M=
 github.com/hashicorp/consul/sdk v0.1.1/go.mod h1:VKf9jXwCTEY1QZP2MOLRhb5i/I/ssyNV1vwHyQBF0x8=
-github.com/hashicorp/consul/sdk v0.8.0/go.mod h1:GBvyrGALthsZObzUGsfgHZQDXjg4lOjagTIwIR1vPms=
 github.com/hashicorp/errwrap v1.0.0/go.mod h1:YH+1FKiLXxHSkmPseP+kNlulaMuP3n2brvKWEqk/Jc4=
-github.com/hashicorp/go-cleanhttp v0.5.0/go.mod h1:JpRdi6/HCYpAwUzNwuwqhbovhLtngrth3wmdIIUrZ80=
 github.com/hashicorp/go-cleanhttp v0.5.1/go.mod h1:JpRdi6/HCYpAwUzNwuwqhbovhLtngrth3wmdIIUrZ80=
-github.com/hashicorp/go-cleanhttp v0.5.2/go.mod h1:kO/YDlP8L1346E6Sodw+PrpBSV4/SoxCXGY6BqNFT48=
-github.com/hashicorp/go-hclog v0.12.0/go.mod h1:whpDNt7SSdeAju8AWKIWsul05p54N/39EeqMAyrmvFQ=
-github.com/hashicorp/go-hclog v1.0.0/go.mod h1:whpDNt7SSdeAju8AWKIWsul05p54N/39EeqMAyrmvFQ=
 github.com/hashicorp/go-immutable-radix v1.0.0/go.mod h1:0y9vanUI8NX6FsYoO3zeMjhV/C5i9g4Q3DwcSNZ4P60=
-github.com/hashicorp/go-immutable-radix v1.3.1/go.mod h1:0y9vanUI8NX6FsYoO3zeMjhV/C5i9g4Q3DwcSNZ4P60=
 github.com/hashicorp/go-msgpack v0.5.3/go.mod h1:ahLV/dePpqEmjfWmKiqvPkv/twdG7iPBM1vqhUKIvfM=
 github.com/hashicorp/go-multierror v1.0.0/go.mod h1:dHtQlpGsu+cZNNAkkCN/P3hoUDHhCYQXV3UM06sGGrk=
-github.com/hashicorp/go-multierror v1.1.0/go.mod h1:spPvp8C1qA32ftKqdAHm4hHTbPw+vmowP0z+KUhOZdA=
-github.com/hashicorp/go-retryablehttp v0.5.3/go.mod h1:9B5zBasrRhHXnJnui7y6sL7es7NDiJgTc6Er0maI1Xs=
 github.com/hashicorp/go-rootcerts v1.0.0/go.mod h1:K6zTfqpRlCUIjkwsN4Z+hiSfzSTQa6eBIzfwKfwNnHU=
-github.com/hashicorp/go-rootcerts v1.0.2/go.mod h1:pqUvnprVnM5bf7AOirdbb01K4ccR319Vf4pU3K5EGc8=
 github.com/hashicorp/go-sockaddr v1.0.0/go.mod h1:7Xibr9yA9JjQq1JpNB2Vw7kxv8xerXegt+ozgdvDeDU=
 github.com/hashicorp/go-syslog v1.0.0/go.mod h1:qPfqrKkXGihmCqbJM2mZgkZGvKG1dFdvsLplgctolz4=
 github.com/hashicorp/go-uuid v1.0.0/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/bN7x4byOro=
@@ -370,20 +339,12 @@ github.com/hashicorp/go-uuid v1.0.1/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/b
 github.com/hashicorp/go.net v0.0.1/go.mod h1:hjKkEWcCURg++eb33jQU7oqQcI9XDCnUzHA0oac0k90=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
-github.com/hashicorp/golang-lru v0.5.4/go.mod h1:iADmTwqILo4mZ8BN3D2Q6+9jd8WM5uGBxy+E8yxSoD4=
 github.com/hashicorp/hcl v1.0.0/go.mod h1:E5yfLk+7swimpb2L/Alb/PJmXilQ/rhwaUYs4T20WEQ=
 github.com/hashicorp/logutils v1.0.0/go.mod h1:QIAnNjmIWmVIIkWDTG1z5v++HQmx9WQRO+LraFDTW64=
 github.com/hashicorp/mdns v1.0.0/go.mod h1:tL+uN++7HEJ6SQLQ2/p+z2pH24WQKWjBPkE0mNTz8vQ=
-github.com/hashicorp/mdns v1.0.1/go.mod h1:4gW7WsVCke5TE7EPeYliwHlRUyBtfCwuFwuMg2DmyNY=
-github.com/hashicorp/mdns v1.0.4/go.mod h1:mtBihi+LeNXGtG8L9dX59gAEa12BDtBQSp4v/YAJqrc=
 github.com/hashicorp/memberlist v0.1.3/go.mod h1:ajVTdAv/9Im8oMAAj5G31PhhMCZJV2pPBoIllUwCN7I=
-github.com/hashicorp/memberlist v0.2.2/go.mod h1:MS2lj3INKhZjWNqd3N0m3J+Jxf3DAOnAH9VT3Sh9MUE=
-github.com/hashicorp/memberlist v0.3.0/go.mod h1:MS2lj3INKhZjWNqd3N0m3J+Jxf3DAOnAH9VT3Sh9MUE=
 github.com/hashicorp/serf v0.8.2/go.mod h1:6hOLApaqBFA1NXqRQAsxw9QxuDEvNxSQRwA/JwenrHc=
-github.com/hashicorp/serf v0.9.5/go.mod h1:UWDWwZeL5cuWDJdl0C6wrvrUwEqtQ4ZKBKKENpqIUyk=
-github.com/hashicorp/serf v0.9.6/go.mod h1:TXZNMjZQijwlDvp+r0b63xZ45H7JmCmgg4gpTwn9UV4=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
-github.com/iancoleman/strcase v0.2.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/imdario/mergo v0.3.5/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
@@ -400,7 +361,6 @@ github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8Hm
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
 github.com/jpillora/backoff v1.0.0/go.mod h1:J/6gKK9jxlEcS3zixgDgUAsiuZ7yrSoa/FX5e0EB2j4=
 github.com/json-iterator/go v1.1.6/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
-github.com/json-iterator/go v1.1.9/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
 github.com/json-iterator/go v1.1.10/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
 github.com/json-iterator/go v1.1.11/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
 github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
@@ -434,7 +394,6 @@ github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
-github.com/lyft/protoc-gen-star v0.5.3/go.mod h1:V0xaHgaf5oCCqmcxYcWiDfTiKsZsRc87/1qhoTACD8w=
 github.com/magiconair/properties v1.8.0/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ=
 github.com/magiconair/properties v1.8.1/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ=
 github.com/magiconair/properties v1.8.5/go.mod h1:y3VJvCyxH9uVvJTWEGAELF3aiYNyPKd5NZ3oSwXrF60=
@@ -444,27 +403,16 @@ github.com/mailru/easyjson v0.7.0/go.mod h1:KAzv3t3aY1NaHWoQz1+4F1ccyAH66Jk7yos7
 github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA=
 github.com/mailru/easyjson v0.7.6/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
 github.com/mattn/go-colorable v0.0.9/go.mod h1:9vuHe8Xs5qXnSaW/c/ABM9alt+Vo+STaOChaDxuIBZU=
+github.com/mattn/go-colorable v0.1.2 h1:/bC9yWikZXAL9uJdulbSfyVNIR3n3trXl+v8+1sx8mU=
 github.com/mattn/go-colorable v0.1.2/go.mod h1:U0ppj6V5qS13XJ6of8GYAs25YV2eR4EVcfRqFIhoBtE=
-github.com/mattn/go-colorable v0.1.4/go.mod h1:U0ppj6V5qS13XJ6of8GYAs25YV2eR4EVcfRqFIhoBtE=
-github.com/mattn/go-colorable v0.1.6/go.mod h1:u6P/XSegPjTcexA+o6vUJrdnUu04hMope9wVRipJSqc=
-github.com/mattn/go-colorable v0.1.9/go.mod h1:u6P/XSegPjTcexA+o6vUJrdnUu04hMope9wVRipJSqc=
-github.com/mattn/go-colorable v0.1.12 h1:jF+Du6AlPIjs2BiUiQlKOX0rt3SujHxPnksPKZbaA40=
-github.com/mattn/go-colorable v0.1.12/go.mod h1:u5H1YNBxpqRaxsYJYSkiCWKzEfiAb1Gb520KVy5xxl4=
 github.com/mattn/go-isatty v0.0.3/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNxMWT7Zi4=
+github.com/mattn/go-isatty v0.0.8 h1:HLtExJ+uU2HOZ+wI0Tt5DtUDrx8yhUqDcp7fYERX4CE=
 github.com/mattn/go-isatty v0.0.8/go.mod h1:Iq45c/XA43vh69/j3iqttzPXn0bhXyGjM0Hdxcsrc5s=
-github.com/mattn/go-isatty v0.0.10/go.mod h1:qgIWMr58cqv1PHHyhnkY9lrL7etaEgOFcMEpPG5Rm84=
-github.com/mattn/go-isatty v0.0.11/go.mod h1:PhnuNfih5lzO57/f3n+odYbM4JtupLOxQOAqxQCu2WE=
-github.com/mattn/go-isatty v0.0.12/go.mod h1:cbi8OIDigv2wuxKPP5vlRcQ1OAZbq2CE4Kysco4FUpU=
-github.com/mattn/go-isatty v0.0.14 h1:yVuAays6BHfxijgZPzw+3Zlu5yQgKGP2/hcQbHb7S9Y=
-github.com/mattn/go-isatty v0.0.14/go.mod h1:7GGIvUiUoEMVVmxf/4nioHXj79iQHKdU27kJ6hsGG94=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
 github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 h1:I0XW9+e1XWDxdcEniV4rQAIOPUGDq67JSCiRCgGCZLI=
 github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
 github.com/miekg/dns v1.0.14/go.mod h1:W1PPwlIAgtquWBMBEV9nkV9Cazfe8ScdGz/Lj7v3Nrg=
-github.com/miekg/dns v1.1.26/go.mod h1:bPDLeHnStXmXAq1m/Ch/hvfNHr14JKNPMBo3VZKjuso=
-github.com/miekg/dns v1.1.41/go.mod h1:p6aan82bvRIyn+zDIv9xYNUpwa73JcSh9BKwknJysuI=
 github.com/mitchellh/cli v1.0.0/go.mod h1:hNIlj7HEI86fIcpObd7a0FcrxTWetlwJDGcceTlRvqc=
-github.com/mitchellh/cli v1.1.0/go.mod h1:xcISNoH86gajksDmfB23e/pu+B+GeFRMYmoHXxx3xhI=
 github.com/mitchellh/go-homedir v1.0.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0=
 github.com/mitchellh/go-homedir v1.1.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0=
 github.com/mitchellh/go-ps v1.0.0 h1:i6ampVEEF4wQFF+bkYfwYgY+F/uYJDktmvLPf7qIgjc=
@@ -476,6 +424,7 @@ github.com/mitchellh/hashstructure v1.1.0/go.mod h1:xUDAozZz0Wmdiufv0uyhnHkUTN6/
 github.com/mitchellh/iochan v1.0.0/go.mod h1:JwYml1nuB7xOzsp52dPpHFffvOCDupsG0QubkSMEySY=
 github.com/mitchellh/mapstructure v0.0.0-20160808181253-ca63d7c062ee/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
 github.com/mitchellh/mapstructure v1.1.2/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
+github.com/mitchellh/mapstructure v1.4.1/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo=
 github.com/mitchellh/mapstructure v1.4.3 h1:OVowDSCllw/YjdLkam3/sm7wEtOy59d8ndGgCcyj8cs=
 github.com/mitchellh/mapstructure v1.4.3/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo=
 github.com/mmarkdown/mmark v2.0.40+incompatible h1:vMeUeDzBK3H+/mU0oMVfMuhSXJlIA+DE/DMPQNAj5C4=
@@ -516,24 +465,24 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.10.1/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
-github.com/onsi/ginkgo v1.16.4 h1:29JGrr5oVBm5ulCWet69zQkzWipVXIol6ygQUe/EzNc=
 github.com/onsi/ginkgo v1.16.4/go.mod h1:dX+/inL/fNMqNlz0e9LfyB9TswhZpCVdJM/Z6Vvnwo0=
+github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
+github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
 github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
 github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.15.0 h1:WjP/FQ/sk43MRmnEcT+MlDw2TFvkrXlprrPST/IudjU=
-github.com/onsi/gomega v1.15.0/go.mod h1:cIuvLEne0aoVhAgh/O6ac0Op8WWw9H6eYCriF+tEHG0=
-github.com/opencontainers/runc v1.1.0 h1:O9+X96OcDjkmmZyfaG996kV7yq8HsoU2h1XRRQcefG8=
-github.com/opencontainers/runc v1.1.0/go.mod h1:Tj1hFw6eFWp/o33uxGf5yF2BX5yz2Z6iptFpuvbbKqc=
+github.com/onsi/gomega v1.17.0 h1:9Luw4uT5HTjHTN8+aNcSThgH1vdXnmdJ8xIfZ4wyTRE=
+github.com/onsi/gomega v1.17.0/go.mod h1:HnhC7FXeEQY45zxNK3PPoIUhzk/80Xly9PcubAlGdZY=
+github.com/opencontainers/runc v1.1.1 h1:PJ9DSs2sVwE0iVr++pAHE6QkS9tzcVWozlPifdwMgrU=
+github.com/opencontainers/runc v1.1.1/go.mod h1:Tj1hFw6eFWp/o33uxGf5yF2BX5yz2Z6iptFpuvbbKqc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
 github.com/opentracing/opentracing-go v1.1.0/go.mod h1:UkNAQd3GIcIGf0SeVgPpRdFStlNbqXla1AfSYxPUl2o=
 github.com/pascaldekloe/goe v0.0.0-20180627143212-57f6aae5913c/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
-github.com/pascaldekloe/goe v0.1.0/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
 github.com/pelletier/go-toml v1.2.0/go.mod h1:5z9KED0ma1S8pY6P1sdut58dfprrGBbd/94hg7ilaic=
-github.com/pelletier/go-toml v1.9.4/go.mod h1:u1nR/EPcESfeI/szUZKdtJ0xRNbUoANCkoOuaOx1Y+c=
+github.com/pelletier/go-toml v1.9.3/go.mod h1:u1nR/EPcESfeI/szUZKdtJ0xRNbUoANCkoOuaOx1Y+c=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
 github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
@@ -545,12 +494,10 @@ github.com/pkg/sftp v1.10.1/go.mod h1:lYOWFsE0bwd1+KfKJaKeuokY15vzFx25BLbzYYoAxZ
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/posener/complete v1.1.1/go.mod h1:em0nMJCgc9GFtwrmVmEMR/ZL6WyhyjMBndrE9hABlRI=
-github.com/posener/complete v1.2.3/go.mod h1:WZIdtGGp+qx0sLrYKtIRAruyNpv6hFCicSgv7Sy7s/s=
 github.com/pquerna/cachecontrol v0.0.0-20171018203845-0dec1b30a021/go.mod h1:prYjPmNq4d1NPVmpShWobRqXY3q7Vp+80DqgxxUrUIA=
 github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXPKyh/dDVn+NZz0KFw=
 github.com/prometheus/client_golang v0.9.3/go.mod h1:/TN21ttK/J9q6uSwhBd54HahCDft0ttaMvbicHlPoso=
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
-github.com/prometheus/client_golang v1.4.0/go.mod h1:e9GMxYsXl05ICDXkRhurwBS4Q3OK1iX/F2sw+iXX5zU=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
 github.com/prometheus/client_golang v1.12.1 h1:ZiaPsmm9uiBeaSMRznKsCDNtPCS0T3JVDGF+06gjBzk=
@@ -563,9 +510,9 @@ github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6T
 github.com/prometheus/common v0.0.0-20181113130724-41aa239b4cce/go.mod h1:daVV7qP5qjZbuso7PdcryaAu0sAZbrN9i7WWcTMWvro=
 github.com/prometheus/common v0.4.0/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
-github.com/prometheus/common v0.9.1/go.mod h1:yhUN8i9wzaXS3w1O07YhxHEBxD+W35wd8bs7vj7HSQ4=
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
+github.com/prometheus/common v0.28.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/common v0.32.1/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/common v0.33.0 h1:rHgav/0a6+uYgGdNt3jwz8FNSesO/Hsang3O0T9A5SE=
@@ -574,7 +521,6 @@ github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQY
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.0-20190507164030-5867b95ac084/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
-github.com/prometheus/procfs v0.0.8/go.mod h1:7Qr8sr6344vo1JqZ6HhLceV9o3AJ1Ff+GxbHq6oeK9A=
 github.com/prometheus/procfs v0.1.3/go.mod h1:lV6e/gmhEcM9IjHGsFOCxxuZ+z1YqCvr4OA4YeYWdaU=
 github.com/prometheus/procfs v0.6.0/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
 github.com/prometheus/procfs v0.7.3 h1:4jVXhlkAyzOScmCkXBTOLRLTz8EeU+eyjrwB/EPq0VU=
@@ -589,7 +535,6 @@ github.com/rogpeppe/go-internal v1.8.0/go.mod h1:WmiCO8CzOY8rg0OYDC4/i/2WRWAB6po
 github.com/russross/blackfriday/v2 v2.0.1/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/ryanuber/columnize v0.0.0-20160712163229-9b3edd62028f/go.mod h1:sm1tb6uqfes/u+d4ooFouqFdy9/2g9QGwK3SQygK0Ts=
-github.com/sagikazarmark/crypt v0.3.0/go.mod h1:uD/D+6UF4SrIR1uGEv7bBNkNqLGqUr43MRiaGWX1Nig=
 github.com/savsgio/gotils v0.0.0-20210617111740-97865ed5a873 h1:N3Af8f13ooDKcIhsmFT7Z05CStZWu4C7Md0uDEy4q6o=
 github.com/savsgio/gotils v0.0.0-20210617111740-97865ed5a873/go.mod h1:dmPawKuiAeG/aFYVs2i+Dyosoo7FNcm+Pi8iK6ZUrX8=
 github.com/sean-/seed v0.0.0-20170313163322-e2103e2c3529/go.mod h1:DxrIzT+xaE7yg65j358z/aeFdxmN0P9QXhEzd20vsDc=
@@ -611,14 +556,14 @@ github.com/soheilhy/cmux v0.1.5/go.mod h1:T7TcVDs9LWfQgPlPsdngu6I6QIoyIFZDDC6sNE
 github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
 github.com/spf13/afero v1.1.2/go.mod h1:j4pytiNVoe2o6bmDsKpLACNPDBIoEAkihy7loJ1B0CQ=
 github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
-github.com/spf13/afero v1.3.3/go.mod h1:5KUK8ByomD5Ti5Artl0RtHeI5pTF7MIDuXL3yY520V4=
 github.com/spf13/afero v1.6.0/go.mod h1:Ai8FlHk4v/PARR026UzYexafAt9roJ7LcLMAmO6Z93I=
 github.com/spf13/cast v1.3.0/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
-github.com/spf13/cast v1.4.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
+github.com/spf13/cast v1.3.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
 github.com/spf13/cobra v1.0.0/go.mod h1:/6GTrnGXV9HjY+aR4k0oJ5tcvakLuG6EuKReYlHNrgE=
 github.com/spf13/cobra v1.1.3/go.mod h1:pGADOWyqRD/YMrPZigI/zbliZ2wVD/23d+is3pSWzOo=
-github.com/spf13/cobra v1.3.0 h1:R7cSvGu+Vv+qX0gW5R/85dx2kmmJT5z5NM8ifdYjdn0=
-github.com/spf13/cobra v1.3.0/go.mod h1:BrRVncBjOJa/eUcVVm9CE+oC6as8k+VYr4NY7WCi9V4=
+github.com/spf13/cobra v1.2.1/go.mod h1:ExllRjgxM/piMAM+3tAZvg8fsklGAf3tPfi+i8t68Nk=
+github.com/spf13/cobra v1.4.0 h1:y+wJpx64xcgO1V+RcnwW0LEHxTKRi2ZDPSBjWnrg88Q=
+github.com/spf13/cobra v1.4.0/go.mod h1:Wo4iy3BUC+X2Fybo0PDqwJIv3dNRiZLHQymsfxlB84g=
 github.com/spf13/jwalterweatherman v1.0.0/go.mod h1:cQK4TGJAtQXfYWX+Ddv3mKDzgVb68N+wFjFa4jdeBTo=
 github.com/spf13/jwalterweatherman v1.1.0/go.mod h1:aNWZUN0dPAAO/Ljvb5BEdw96iTZ0EXowPYD95IqWIGo=
 github.com/spf13/pflag v0.0.0-20170130214245-9ff6c6923cff/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
@@ -627,7 +572,7 @@ github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/spf13/viper v1.4.0/go.mod h1:PTJ7Z/lr49W6bUbkmS1V3by4uWynFiR9p7+dSq/yZzE=
 github.com/spf13/viper v1.7.0/go.mod h1:8WkrPz2fc9jxqZNCJI/76HCieCp4Q8HaLFoCha5qpdg=
-github.com/spf13/viper v1.10.0/go.mod h1:SoyBPwAtKDzypXNDFKN5kzH7ppppbGZtls1UpIy5AsM=
+github.com/spf13/viper v1.8.1/go.mod h1:o0Pch8wJ9BVSWGQMbra6iw0oQ5oktSIBaujf1rJH9Ns=
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
@@ -646,7 +591,6 @@ github.com/subosito/gotenv v1.2.0/go.mod h1:N0PQaV/YGNqwC0u51sEeR/aUtSLEXKX9iv69
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20201229170055-e5319fda7802/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
-github.com/tv42/httpunix v0.0.0-20150427012821-b75d8614f926/go.mod h1:9ESjWnEqriFuLhtthL60Sar/7RFoluCcXsuvEwTV5KM=
 github.com/ugorji/go v1.1.4/go.mod h1:uQMGLiO92mf5W77hV/PUCpI3pbzQx3CRekS0kk+RGrc=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
@@ -680,16 +624,14 @@ github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9de
 github.com/yuin/goldmark v1.1.32/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.3.5/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
+github.com/yuin/goldmark v1.4.0/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
 github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a h1:CbXWHAnmrtTKgX+yMVVANuRJP8ld88ELbAYAYnBdLJ4=
 github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a/go.mod h1:/Hzu8ych2oXCs1iNI+MeASyFzWTncQ6nlu/wgqbqC2A=
 go.etcd.io/bbolt v1.3.2/go.mod h1:IbVyRI1SCnLcuJnV2u8VeU0CEYM7e686BmAb1XKL+uU=
 go.etcd.io/bbolt v1.3.6/go.mod h1:qXsaaIqmgQH0T+OPdb99Bf+PKfBBQVAdyD6TY9G8XM4=
 go.etcd.io/etcd/api/v3 v3.5.0/go.mod h1:cbVKeC6lCfl7j/8jBhAK6aIYO9XOjdptoxU/nLQcPvs=
-go.etcd.io/etcd/api/v3 v3.5.1/go.mod h1:cbVKeC6lCfl7j/8jBhAK6aIYO9XOjdptoxU/nLQcPvs=
 go.etcd.io/etcd/client/pkg/v3 v3.5.0/go.mod h1:IJHfcCEKxYu1Os13ZdwCwIUTUVGYTSAM3YSwc9/Ac1g=
-go.etcd.io/etcd/client/pkg/v3 v3.5.1/go.mod h1:IJHfcCEKxYu1Os13ZdwCwIUTUVGYTSAM3YSwc9/Ac1g=
 go.etcd.io/etcd/client/v2 v2.305.0/go.mod h1:h9puh54ZTgAKtEbut2oe9P4L/oqKCVB6xsXlzd7alYQ=
-go.etcd.io/etcd/client/v2 v2.305.1/go.mod h1:pMEacxZW7o8pg4CrFE7pquyCJJzZvkvdD2RibOCCCGs=
 go.etcd.io/etcd/client/v3 v3.5.0/go.mod h1:AIKXXVX/DQXtfTEqBryiLTUXwON+GuvO6Z7lLS/oTh0=
 go.etcd.io/etcd/pkg/v3 v3.5.0/go.mod h1:UzJGatBQ1lXChBkQF0AuAtkRQMYnHubxAEYIrC3MSsE=
 go.etcd.io/etcd/raft/v3 v3.5.0/go.mod h1:UFOHSIvO/nKwd4lhkwabrTD3cqW5yVyYYf/KlD00Szc=
@@ -719,13 +661,16 @@ go.uber.org/atomic v1.4.0/go.mod h1:gD2HeocX3+yG+ygLZcrzQJaqmWj9AIm7n08wl/qW/PE=
 go.uber.org/atomic v1.7.0 h1:ADUqmZGgLDDfbSL9ZmPxKTybcoEYHgpYfELNoN+7hsw=
 go.uber.org/atomic v1.7.0/go.mod h1:fEN4uk6kAWBTFdckzkM89CLk9XfWZrxpCo0nPH17wJc=
 go.uber.org/goleak v1.1.10/go.mod h1:8a7PlsEVH3e/a/GLqe5IIrQx6GzcnRmZEufDUTk4A7A=
+go.uber.org/goleak v1.1.11-0.20210813005559-691160354723/go.mod h1:cwTWslyiVhfpKIDGSZEM2HlOvcqm+tG4zioyIeLoqMQ=
+go.uber.org/goleak v1.1.12/go.mod h1:cwTWslyiVhfpKIDGSZEM2HlOvcqm+tG4zioyIeLoqMQ=
 go.uber.org/multierr v1.1.0/go.mod h1:wR5kodmAFQ0UK8QlbwjlSNy0Z68gJhDJUG5sjR94q/0=
 go.uber.org/multierr v1.6.0 h1:y6IPFStTAIT5Ytl7/XYmHvzXQ7S3g/IeZW9hyZ5thw4=
 go.uber.org/multierr v1.6.0/go.mod h1:cdWPpRnG4AhwMwsgIHip0KRBQjJy5kYEpYjJxpXp9iU=
 go.uber.org/zap v1.10.0/go.mod h1:vwi/ZaCAaUcBkycHslxD9B2zi4UTXhF60s6SWpuDF0Q=
 go.uber.org/zap v1.17.0/go.mod h1:MXVU+bhUf/A7Xi2HNOnopQOrmycQ5Ih87HtOu4q5SSo=
-go.uber.org/zap v1.19.0 h1:mZQZefskPPCMIBCSEH0v2/iUqqLrYtaeqwD6FUGUnFE=
 go.uber.org/zap v1.19.0/go.mod h1:xg/QME4nWcxGxrpdeYfq7UvYrLh66cuVKdrbD1XF/NI=
+go.uber.org/zap v1.19.1 h1:ue41HOKd1vGURxrmeKIgELGb3jPW9DMUDGtsinblHwI=
+go.uber.org/zap v1.19.1/go.mod h1:j3DNczoxDZroyBnOT1L/Q79cfUMGZxlv/9dzN7SM1rI=
 golang.org/dl v0.0.0-20190829154251-82a15e2f2ead/go.mod h1:IUMfjQLJQd4UTqG1Z90tenwKoCX93Gn3MAQJMOSBsDQ=
 golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20181029021203-45a5f77698d3/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
@@ -733,11 +678,9 @@ golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACk
 golang.org/x/crypto v0.0.0-20190510104115-cbcb75029529/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190820162420-60c769a6c586/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
-golang.org/x/crypto v0.0.0-20190923035154-9ee001bba392/go.mod h1:/lpIB1dKB+9EgE3H3cr1v9wB50oz8l4C4h62xy7jSTY=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20201002170205-7f63de1d35b0/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.0.0-20210220033148-5ea612d1eb83/go.mod h1:jdWPYTVW3xRLrWPugEBEK3UY2ZEsg3UU495nc5E+M+I=
 golang.org/x/crypto v0.0.0-20210513164829-c07d793c2f9a/go.mod h1:P+XmwS30IXTQdn5tA2iutPOUgjI07+tq3H3K9MVA1s8=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210817164053-32db794688a5 h1:HWj/xjIHfjYU5nVXpTM0s39J9CbLn7Cc5a7IC5rwsMQ=
@@ -776,9 +719,8 @@ golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.4.2 h1:Gz96sIWK3OalVv/I/qNygP42zyoKp3xptRVCWRFEBvo=
 golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.5.0 h1:UG21uOlmZabA4fW5i7ZX6bjw1xELEGg/ZLgZq9auk/Q=
-golang.org/x/mod v0.5.0/go.mod h1:5OXOZSfqPIIbmVBIIKWRFfZjPR0E5r58TLhUjH0a2Ro=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -799,7 +741,6 @@ golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20190628185345-da137c7871d7/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190724013045-ca1201d0de80/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190923162816-aa69164e4478/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200114155413-6afb5195e5aa/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200202094626-16171245cfb2/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
@@ -825,13 +766,11 @@ golang.org/x/net v0.0.0-20210119194325-5f4716e94777/go.mod h1:m0MpNAwzfU5UDzcl9v
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210316092652-d523dce5a7f4/go.mod h1:RBQZq4jEuRlivfhVLdyRGr576XBO4/greRjx4P4O3yc=
 golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
-golang.org/x/net v0.0.0-20210410081132-afb366fc7cd1/go.mod h1:9tjilg8BloeKEkVJvy7fQ90B1CfIiPueXVOjqfkSzI8=
 golang.org/x/net v0.0.0-20210428140749-89ef3d95e781/go.mod h1:OJAsFXCWl8Ukc7SiCT/9KSuxbyM7479/AVlXFRxuMCk=
-golang.org/x/net v0.0.0-20210503060351-7fd8e65b6420/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210510120150-4163338589ed/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20210520170846-37e1c6afe023/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20210813160813-60bc85c4be6d/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20210805182204-aaa1db679c0d/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20210825183410-e898025ed96a/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
 golang.org/x/net v0.0.0-20220225172249-27dd8689420f h1:oA4XRj0qtSt8Yo1Zms0CUlsT3KG69V2UGQWPBxujDmc=
@@ -847,12 +786,9 @@ golang.org/x/oauth2 v0.0.0-20201208152858-08078c50e5b5/go.mod h1:KelEdhl1UZF7XfJ
 golang.org/x/oauth2 v0.0.0-20210218202405-ba52d332ba99/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210220000619-9bb904979d93/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210313182246-cd4f82c27b84/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210402161424-2e8d93401602/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210628180205-a41e5a781914/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20211005180243-6b3c2da341f1/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20211104180415-d3ed0bb246c8/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b h1:clP8eMhB30EHdc0bd2Twtq6kgU7yl5ub2cQLSdrv1Dg=
 golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -885,12 +821,9 @@ golang.org/x/sys v0.0.0-20190606203320-7fc4e5ec1444/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190726091711-fc99dfbffb4e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190922100055-0a153f010e69/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190924154521-2837fb4f24fe/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191001151750-bb3f8db39f24/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191002063906-3421d5a6bb1c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191008105621-543471e840be/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191026070338-33540a1f6037/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191115151921-52ab43148777/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -898,9 +831,7 @@ golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20191228213918-04cbcbbfeed8/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200106162015-b016eb3dc98e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200113162924-86b910548bc1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200116001909-b77594299b42/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200122134326-e047566fdf82/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200124204421-9fbb57f87de9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200202164722-d101bd2416d5/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200212091648-12a6c2dcc1e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200223170610-d5e6a3e2c0ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -926,7 +857,6 @@ golang.org/x/sys v0.0.0-20210112080510-489259a85091/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210119212857-b64e53b001e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210220050731-9a76102bfb43/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210303074136-134d130e1a04/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210305230114-8fe3ee5dd75b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210315160823-c6e025ad8005/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210320140829-1e4c9ba3b0c4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -936,28 +866,20 @@ golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210514084401-e8d321eab015/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210603125802-9665404d3644/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210630005230-0f9fa26af87c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210806184541-e5e7981a1069/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210816183151-1e6c022a8912/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210817190340-bfb29a6856f2/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210823070655-63515b42dcdf/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210809222454-d867a43fc93e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210831042530-f4d43177bf5e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210906170528-6f6e22806c34/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210908233432-aa78b53d3365/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210927094055-39ccf1dd6fa6/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20211007075335-d3039528d8ac/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20211029165221-6e7872819dc8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20211124211545-fe61309f8881/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20211205182925-97ca703d548d/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9 h1:XfKQ4OlFl8okEOr5UvAqFRVj8pY/4yfcXrddB8qAbU0=
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
+golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 h1:JGgROgKl9N8DuW20oFS5gxc+lE67/N3FcwmBPMe7ArY=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -993,7 +915,6 @@ golang.org/x/tools v0.0.0-20190621195816-6e04913cbbac/go.mod h1:/rFqwRUd4F7ZHNgw
 golang.org/x/tools v0.0.0-20190624222133-a101b041ded4/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190628153133-6cdbf07be9d0/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190816200558-6889da9d5479/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20190907020128-2ca718005c18/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20190911174233-4f2ddba30aff/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191012152004-8de300cfc20a/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191108193012-7d206e10da11/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
@@ -1033,12 +954,10 @@ golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4f
 golang.org/x/tools v0.0.0-20210105154028-b0ab187a4818/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.1.0/go.mod h1:xkSsbof2nBLbhDlRMhhhyNLN/zl3eTqcnHD5viDpcZ0=
-golang.org/x/tools v0.1.1/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.2/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.1.3/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.1.4/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.1.5 h1:ouewzE6p+/VEB31YYnTbEJdi8pFqKp4P4n85vwo3DHA=
 golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.6-0.20210820212750-d4cc65f0b2ff h1:VX/uD7MK0AHXGiScH3fsieUQUcpmRERPDYtqZdJnA+Q=
+golang.org/x/tools v0.1.6-0.20210820212750-d4cc65f0b2ff/go.mod h1:YD9qOF0M9xpSpdWTBbzEl5e/RnCefISl8E5Noe10jFM=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
@@ -1067,17 +986,7 @@ google.golang.org/api v0.36.0/go.mod h1:+z5ficQTmoYpPn8LCUNVpK5I7hwkpjbcgqA7I34q
 google.golang.org/api v0.40.0/go.mod h1:fYKFpnQN0DsDSKRVRcQSDQNtqWPfM9i+zNPxepjRCQ8=
 google.golang.org/api v0.41.0/go.mod h1:RkxM5lITDfTzmyKFPt+wGrCJbVfniCr2ool8kTBzRTU=
 google.golang.org/api v0.43.0/go.mod h1:nQsDGjRXMo4lvh5hP0TKqF244gqhGcr/YSIykhUk/94=
-google.golang.org/api v0.47.0/go.mod h1:Wbvgpq1HddcWVtzsVLyfLp8lDg6AA241LmgIL59tHXo=
-google.golang.org/api v0.48.0/go.mod h1:71Pr1vy+TAZRPkPs/xlCf5SsU8WjuAWv1Pfjbtukyy4=
-google.golang.org/api v0.50.0/go.mod h1:4bNT5pAuq5ji4SRZm+5QIkjny9JAyVD/3gaSihNefaw=
-google.golang.org/api v0.51.0/go.mod h1:t4HdrdoNgyN5cbEfm7Lum0lcLDLiise1F8qDKX00sOU=
-google.golang.org/api v0.54.0/go.mod h1:7C4bFFOvVDGXjfDTAsgGwDgAxRDeQ4X8NvUedIt6z3k=
-google.golang.org/api v0.55.0/go.mod h1:38yMfeP1kfjsl8isn0tliTjIb1rJXcQi4UXlbqivdVE=
-google.golang.org/api v0.56.0/go.mod h1:38yMfeP1kfjsl8isn0tliTjIb1rJXcQi4UXlbqivdVE=
-google.golang.org/api v0.57.0/go.mod h1:dVPlbZyBo2/OjBpmvNdpn2GRm6rPy75jyU7bmhdrMgI=
-google.golang.org/api v0.59.0/go.mod h1:sT2boj7M9YJxZzgeZqXogmhfmRWDtPzT31xkieUbuZU=
-google.golang.org/api v0.61.0/go.mod h1:xQRti5UdCmoCEqFxcz93fTl338AVqDgyaDRuOZ3hg9I=
-google.golang.org/api v0.62.0/go.mod h1:dKmwPCydfsad4qCH08MSdgWjfHOyfpd4VtDGgRFdavw=
+google.golang.org/api v0.44.0/go.mod h1:EBOGZqzyhtvMDoxwS97ctnh0zUmYY6CxqXsc1AvkYD8=
 google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
 google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
@@ -1119,6 +1028,7 @@ google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6D
 google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200904004341-0bd0a958aa1d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20201102152239-715cce707fb0/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201109203340-2640f1f9cdfb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201201144952-b05cb90ed32e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201210142538-e3217bee35cc/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
@@ -1128,30 +1038,9 @@ google.golang.org/genproto v0.0.0-20210303154014-9728d6b83eeb/go.mod h1:FWY/as6D
 google.golang.org/genproto v0.0.0-20210310155132-4ce2db91004e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20210319143718-93e7006c17a6/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20210402141018-6c239bbf2bb1/go.mod h1:9lPAdzaEmUacj36I+k7YKbEc5CXzPIeORRgDAUOu28A=
-google.golang.org/genproto v0.0.0-20210513213006-bf773b8c8384/go.mod h1:P3QM42oQyzQSnHPnZ/vqoCdDmzH28fzWByN9asMeM8A=
 google.golang.org/genproto v0.0.0-20210602131652-f16073e35f0c/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
-google.golang.org/genproto v0.0.0-20210604141403-392c879c8b08/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
-google.golang.org/genproto v0.0.0-20210608205507-b6d2f5bf0d7d/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
-google.golang.org/genproto v0.0.0-20210624195500-8bfb893ecb84/go.mod h1:SzzZ/N+nwJDaO1kznhnlzqS8ocJICar6hYhVyhi++24=
-google.golang.org/genproto v0.0.0-20210713002101-d411969a0d9a/go.mod h1:AxrInvYm1dci+enl5hChSFPOmmUF1+uAa/UsgNRWd7k=
-google.golang.org/genproto v0.0.0-20210716133855-ce7ef5c701ea/go.mod h1:AxrInvYm1dci+enl5hChSFPOmmUF1+uAa/UsgNRWd7k=
-google.golang.org/genproto v0.0.0-20210728212813-7823e685a01f/go.mod h1:ob2IJxKrgPT52GcgX759i1sleT07tiKowYBGbczaW48=
-google.golang.org/genproto v0.0.0-20210805201207-89edb61ffb67/go.mod h1:ob2IJxKrgPT52GcgX759i1sleT07tiKowYBGbczaW48=
-google.golang.org/genproto v0.0.0-20210813162853-db860fec028c/go.mod h1:cFeNkxwySK631ADgubI+/XFU/xp8FD5KIVV4rj8UC5w=
-google.golang.org/genproto v0.0.0-20210821163610-241b8fcbd6c8/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
-google.golang.org/genproto v0.0.0-20210828152312-66f60bf46e71/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2 h1:NHN4wOCScVzKhPenJ2dt+BTs3X/XkBVI/Rh4iDt55T8=
 google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
-google.golang.org/genproto v0.0.0-20210903162649-d08c68adba83/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
-google.golang.org/genproto v0.0.0-20210909211513-a8c4777a87af/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
-google.golang.org/genproto v0.0.0-20210924002016-3dee208752a0/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20211008145708-270636b82663/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20211028162531-8db9c33dc351/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20211118181313-81c1377c94b1/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20211129164237-f09f9a12af12/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20211203200212-54befc351ae9/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20211206160659-862468c7d6e0/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20211208223120-3a66f561d7aa h1:I0YcKz0I7OAhddo7ya8kMnvprhcWM045PmkBdMO9zN0=
-google.golang.org/genproto v0.0.0-20211208223120-3a66f561d7aa/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.0/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -1173,16 +1062,10 @@ google.golang.org/grpc v1.35.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAG
 google.golang.org/grpc v1.36.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
 google.golang.org/grpc v1.36.1/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
 google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
-google.golang.org/grpc v1.37.1/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/grpc v1.38.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
-google.golang.org/grpc v1.39.0/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
-google.golang.org/grpc v1.39.1/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
 google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
-google.golang.org/grpc v1.40.1/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
-google.golang.org/grpc v1.42.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU=
 google.golang.org/grpc v1.44.0 h1:weqSxi/TMs1SqFRMHCtBgXRs8k3X39QIDEZ0pRcttUg=
 google.golang.org/grpc v1.44.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU=
-google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
@@ -1213,7 +1096,7 @@ gopkg.in/go-playground/pool.v3 v3.1.1/go.mod h1:pUAGBximS/hccTTSzEop6wvvQhVa3QPD
 gopkg.in/inf.v0 v0.9.1 h1:73M5CoZyi3ZLMOyDlQh031Cx6N9NDJ2Vvfl76EDAgDc=
 gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
 gopkg.in/ini.v1 v1.51.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
-gopkg.in/ini.v1 v1.66.2/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
+gopkg.in/ini.v1 v1.62.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
 gopkg.in/mcuadros/go-syslog.v2 v2.3.0 h1:kcsiS+WsTKyIEPABJBJtoG0KkOS6yzvJ+/eZlhD79kk=
 gopkg.in/mcuadros/go-syslog.v2 v2.3.0/go.mod h1:l5LPIyOOyIdQquNg+oU6Z3524YwrcqEm0aKH+5zpt2U=
 gopkg.in/natefinch/lumberjack.v2 v2.0.0/go.mod h1:l0ndWWf7gzL7RNwBG7wST/UCcT4T24xpD6X8LsfU/+k=
@@ -1244,41 +1127,36 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.22.2/go.mod h1:y3ydYpLJAaDI+BbSe2xmGcqxiWHmWjkEeIbiwHvnPR8=
-k8s.io/api v0.22.5 h1:xk7C+rMjF/EGELiD560jdmwzrB788mfcHiNbMQLIVI8=
-k8s.io/api v0.22.5/go.mod h1:mEhXyLaSD1qTOf40rRiKXkc+2iCem09rWLlFwhCEiAs=
-k8s.io/apiextensions-apiserver v0.22.2/go.mod h1:2E0Ve/isxNl7tWLSUDgi6+cmwHi5fQRdwGVCxbC+KFA=
-k8s.io/apiextensions-apiserver v0.22.5 h1:ML0QqT7FIlmZHN+9+2EtARJ3cJVHeoizt6GCteFRE0o=
-k8s.io/apiextensions-apiserver v0.22.5/go.mod h1:tIXeZ0BrDxUb1PoAz+tgOz43Zi1Bp4BEEqVtUccMJbE=
-k8s.io/apimachinery v0.22.2/go.mod h1:O3oNtNadZdeOMxHFVxOreoznohCpy0z6mocxbZr7oJ0=
-k8s.io/apimachinery v0.22.5 h1:cIPwldOYm1Slq9VLBRPtEYpyhjIm1C6aAMAoENuvN9s=
-k8s.io/apimachinery v0.22.5/go.mod h1:xziclGKwuuJ2RM5/rSFQSYAj0zdbci3DH8kj+WvyN0U=
-k8s.io/apiserver v0.22.2/go.mod h1:vrpMmbyjWrgdyOvZTSpsusQq5iigKNWv9o9KlDAbBHI=
-k8s.io/apiserver v0.22.5 h1:71krQxCUz218ecb+nPhfDsNB6QgP1/4EMvi1a2uYBlg=
-k8s.io/apiserver v0.22.5/go.mod h1:s2WbtgZAkTKt679sYtSudEQrTGWUSQAPe6MupLnlmaQ=
-k8s.io/cli-runtime v0.22.5 h1:bZqLgx1INiPgXyMk/Hu3o5NFmdfvlvtsoE+wHJuKA2U=
-k8s.io/cli-runtime v0.22.5/go.mod h1:12ah4O0kaevIYHsRcFGt8RKER0wlTN2yCgHp1c4Uxp4=
-k8s.io/client-go v0.22.2/go.mod h1:sAlhrkVDf50ZHx6z4K0S40wISNTarf1r800F+RlCF6U=
-k8s.io/client-go v0.22.5 h1:I8Zn/UqIdi2r02aZmhaJ1hqMxcpfJ3t5VqvHtctHYFo=
-k8s.io/client-go v0.22.5/go.mod h1:cs6yf/61q2T1SdQL5Rdcjg9J1ElXSwbjSrW2vFImM4Y=
-k8s.io/code-generator v0.22.2/go.mod h1:eV77Y09IopzeXOJzndrDyCI88UBok2h6WxAlBwpxa+o=
-k8s.io/code-generator v0.22.5 h1:jn+mYXI5q7rzo7Bz/n8xZIgbe61SeXlIjU5jA8jLVps=
-k8s.io/code-generator v0.22.5/go.mod h1:sbdWCOVob+KaQ5O7xs8PNNaCTpbWVqNgA6EPwLOmRNk=
-k8s.io/component-base v0.22.2/go.mod h1:5Br2QhI9OTe79p+TzPe9JKNQYvEKbq9rTJDWllunGug=
-k8s.io/component-base v0.22.5 h1:U0eHqZm7mAFE42hFwYhY6ze/MmVaW00JpMrzVsQmzYE=
-k8s.io/component-base v0.22.5/go.mod h1:VK3I+TjuF9eaa+Ln67dKxhGar5ynVbwnGrUiNF4MqCI=
+k8s.io/api v0.23.5 h1:zno3LUiMubxD/V1Zw3ijyKO3wxrhbUF1Ck+VjBvfaoA=
+k8s.io/api v0.23.5/go.mod h1:Na4XuKng8PXJ2JsploYYrivXrINeTaycCGcYgF91Xm8=
+k8s.io/apiextensions-apiserver v0.23.5 h1:5SKzdXyvIJKu+zbfPc3kCbWpbxi+O+zdmAJBm26UJqI=
+k8s.io/apiextensions-apiserver v0.23.5/go.mod h1:ntcPWNXS8ZPKN+zTXuzYMeg731CP0heCTl6gYBxLcuQ=
+k8s.io/apimachinery v0.23.5 h1:Va7dwhp8wgkUPWsEXk6XglXWU4IKYLKNlv8VkX7SDM0=
+k8s.io/apimachinery v0.23.5/go.mod h1:BEuFMMBaIbcOqVIJqNZJXGFTP4W6AycEpb5+m/97hrM=
+k8s.io/apiserver v0.23.5 h1:2Ly8oUjz5cnZRn1YwYr+aFgDZzUmEVL9RscXbnIeDSE=
+k8s.io/apiserver v0.23.5/go.mod h1:7wvMtGJ42VRxzgVI7jkbKvMbuCbVbgsWFT7RyXiRNTw=
+k8s.io/cli-runtime v0.23.5 h1:Z7XUpGoJZYZB2uNjQfJjMbyDKyVkoBGye62Ap0sWQHY=
+k8s.io/cli-runtime v0.23.5/go.mod h1:oY6QDF2qo9xndSq32tqcmRp2UyXssdGrLfjAVymgbx4=
+k8s.io/client-go v0.23.5 h1:zUXHmEuqx0RY4+CsnkOn5l0GU+skkRXKGJrhmE2SLd8=
+k8s.io/client-go v0.23.5/go.mod h1:flkeinTO1CirYgzMPRWxUCnV0G4Fbu2vLhYCObnt/r4=
+k8s.io/code-generator v0.23.5 h1:xn3a6J5pUL49AoH6SPrOFtnB5cvdMl76f/bEY176R3c=
+k8s.io/code-generator v0.23.5/go.mod h1:S0Q1JVA+kSzTI1oUvbKAxZY/DYbA/ZUb4Uknog12ETk=
+k8s.io/component-base v0.23.5 h1:8qgP5R6jG1BBSXmRYW+dsmitIrpk8F/fPEvgDenMCCE=
+k8s.io/component-base v0.23.5/go.mod h1:c5Nq44KZyt1aLl0IpHX82fhsn84Sb0jjzwjpcA42bY0=
 k8s.io/gengo v0.0.0-20200413195148-3a45101e95ac/go.mod h1:ezvh/TsK7cY6rbqRK0oQQ8IAqLxYwwyPxAX1Pzy0ii0=
-k8s.io/gengo v0.0.0-20201214224949-b6c5ce23f027 h1:Uusb3oh8XcdzDF/ndlI4ToKTYVlkCSJP39SRY2mfRAw=
-k8s.io/gengo v0.0.0-20201214224949-b6c5ce23f027/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
+k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c h1:GohjlNKauSai7gN4wsJkeZ3WAJx4Sh+oT/b5IYn5suA=
+k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
-k8s.io/klog/v2 v2.9.0 h1:D7HV+n1V57XeZ0m6tdRkfknthUaM06VFbWldOFh8kzM=
-k8s.io/klog/v2 v2.9.0/go.mod h1:hy9LJ/NvuK+iVyP4Ehqva4HxZG/oXyIS3n3Jmire4Ec=
+k8s.io/klog/v2 v2.30.0/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/klog/v2 v2.60.1 h1:VW25q3bZx9uE3vvdL6M8ezOX79vA2Aq1nEWLqNQclHc=
+k8s.io/klog/v2 v2.60.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/kube-openapi v0.0.0-20210421082810-95288971da7e/go.mod h1:vHXdDvt9+2spS2Rx9ql3I8tycm3H9FDfdUoIuKCefvw=
-k8s.io/kube-openapi v0.0.0-20211109043538-20434351676c h1:jvamsI1tn9V0S8jicyX82qaFC0H/NKxv2e5mbqsgR80=
-k8s.io/kube-openapi v0.0.0-20211109043538-20434351676c/go.mod h1:vHXdDvt9+2spS2Rx9ql3I8tycm3H9FDfdUoIuKCefvw=
-k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a h1:8dYfu/Fc9Gz2rNJKB9IQRGgQOh2clmRzNIPPY1xLY5g=
-k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65 h1:E3J9oCLlaobFUqsjG9DfKbP2BmgwBL2p7pn0A3dG9W4=
+k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65/go.mod h1:sX9MT8g7NVZM5lVL/j8QyCCJe8YSMW30QvGZWaCIDIk=
+k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+k8s.io/utils v0.0.0-20211116205334-6203023598ed h1:ck1fRPWPJWsMd8ZRFsWc6mh/zHp5fZ/shhbrgPUxDAE=
+k8s.io/utils v0.0.0-20211116205334-6203023598ed/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
 moul.io/http2curl v1.0.1-0.20190925090545-5cd742060b0e h1:C7q+e9M5nggAvWfVg9Nl66kebKeuJlP3FD58V4RR5wo=
 moul.io/http2curl v1.0.1-0.20190925090545-5cd742060b0e/go.mod h1:nejbQVfXh96n9dSF6cH3Jsk/QI1Z2oEL7sSI2ifXFNA=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
@@ -1286,17 +1164,20 @@ pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.22/go.mod h1:LEScyzhFmoF5pso/YSeBstl57mOzx9xlU9n85RGrDQg=
-sigs.k8s.io/controller-runtime v0.10.3 h1:s5Ttmw/B4AuIbwrXD3sfBkXwnPMMWrqpVj4WRt1dano=
-sigs.k8s.io/controller-runtime v0.10.3/go.mod h1:CQp8eyUQZ/Q7PJvnIrB6/hgfTC1kBkGylwsLgOQi1WY=
-sigs.k8s.io/kustomize/api v0.8.11 h1:LzQzlq6Z023b+mBtc6v72N2mSHYmN8x7ssgbf/hv0H8=
-sigs.k8s.io/kustomize/api v0.8.11/go.mod h1:a77Ls36JdfCWojpUqR6m60pdGY1AYFix4AH83nJtY1g=
-sigs.k8s.io/kustomize/kyaml v0.11.0 h1:9KhiCPKaVyuPcgOLJXkvytOvjMJLoxpjodiycb4gHsA=
-sigs.k8s.io/kustomize/kyaml v0.11.0/go.mod h1:GNMwjim4Ypgp/MueD3zXHLRJEjz7RvtPae0AwlvEMFM=
+sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.30/go.mod h1:fEO7lRTdivWO2qYVCVG7dEADOMo/MLDCVr8So2g88Uw=
+sigs.k8s.io/controller-runtime v0.11.2 h1:H5GTxQl0Mc9UjRJhORusqfJCIjBO8UtUxGggCwL1rLA=
+sigs.k8s.io/controller-runtime v0.11.2/go.mod h1:P6QCzrEjLaZGqHsfd+os7JQ+WFZhvB8MRFsn4dWF7O4=
+sigs.k8s.io/json v0.0.0-20211020170558-c049b76a60c6 h1:fD1pz4yfdADVNfFmcP2aBEtudwUQ1AlLnRBALr33v3s=
+sigs.k8s.io/json v0.0.0-20211020170558-c049b76a60c6/go.mod h1:p4QtZmO4uMYipTQNzagwnNoseA6OxSUutVw05NhYDRs=
+sigs.k8s.io/kustomize/api v0.10.1 h1:KgU7hfYoscuqag84kxtzKdEC3mKMb99DPI3a0eaV1d0=
+sigs.k8s.io/kustomize/api v0.10.1/go.mod h1:2FigT1QN6xKdcnGS2Ppp1uIWrtWN28Ms8A3OZUZhwr8=
+sigs.k8s.io/kustomize/kyaml v0.13.0 h1:9c+ETyNfSrVhxvphs+K2dzT3dh5oVPPEqPOE/cUpScY=
+sigs.k8s.io/kustomize/kyaml v0.13.0/go.mod h1:FTJxEZ86ScK184NpGSAQcfEqee0nul8oLCK30D47m4E=
 sigs.k8s.io/mdtoc v1.1.0 h1:q3YtqYzmC2e0hgLXRIOm7/QLuPux1CX3ZHCwlbABxZo=
 sigs.k8s.io/mdtoc v1.1.0/go.mod h1:QZLVEdHH2iNIR4uHAZyvFRtjloHgVItk8lo/mzCtq3w=
 sigs.k8s.io/structured-merge-diff/v4 v4.0.2/go.mod h1:bJZC9H9iH24zzfZ/41RGcq60oK1F7G282QMXDPYydCw=
-sigs.k8s.io/structured-merge-diff/v4 v4.1.2 h1:Hr/htKFmJEbtMgS/UD0N+gtgctAqz81t3nu+sPzynno=
-sigs.k8s.io/structured-merge-diff/v4 v4.1.2/go.mod h1:j/nl6xW8vLS49O8YvXW1ocPhZawJtm+Yrr7PPRQ0Vg4=
-sigs.k8s.io/yaml v1.2.0 h1:kr/MCeFWJWTwyaHoR9c8EjH9OumOmoF9YGiZd7lFm/Q=
+sigs.k8s.io/structured-merge-diff/v4 v4.2.1 h1:bKCqE9GvQ5tiVHn5rfn1r+yao3aLQEaLzkkmAkf+A6Y=
+sigs.k8s.io/structured-merge-diff/v4 v4.2.1/go.mod h1:j/nl6xW8vLS49O8YvXW1ocPhZawJtm+Yrr7PPRQ0Vg4=
 sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=
+sigs.k8s.io/yaml v1.3.0 h1:a2VclLzOGrwOHDiV8EfBGhvjHvP46CtW5j6POvhYGGo=
+sigs.k8s.io/yaml v1.3.0/go.mod h1:GeOyir5tyXNByN85N/dRIT9es5UQNerPYEKK56eTBm8=
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 0e886aff5..ae243255f 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -227,7 +227,7 @@ func (f *Framework) NewGRPCBinDeployment() {
 		PeriodSeconds:       1,
 		SuccessThreshold:    1,
 		TimeoutSeconds:      1,
-		Handler: corev1.Handler{
+		ProbeHandler: corev1.ProbeHandler{
 			TCPSocket: &corev1.TCPSocketAction{
 				Port: intstr.FromInt(9000),
 			},
@@ -318,7 +318,7 @@ func newDeployment(name, namespace, image string, port int32, replicas int32, co
 		SuccessThreshold:    1,
 		TimeoutSeconds:      2,
 		FailureThreshold:    6,
-		Handler: corev1.Handler{
+		ProbeHandler: corev1.ProbeHandler{
 			HTTPGet: &corev1.HTTPGetAction{
 				Port: intstr.FromString("http"),
 				Path: "/",

From 89ed571d2a8c7c2486e9671808e27a7cfbe3b40d Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Mon, 11 Apr 2022 11:06:07 -0300
Subject: [PATCH 0141/1641] Implement object deep inspector (#8456)

---
 cmd/nginx/flags.go                            |  3 +
 docs/user-guide/cli-arguments.md              |  1 +
 internal/ingress/controller/controller.go     |  8 +-
 .../ingress/controller/controller_test.go     |  2 +
 internal/ingress/controller/nginx.go          |  1 +
 internal/ingress/controller/store/store.go    | 15 +++
 .../ingress/controller/store/store_test.go    | 11 +++
 internal/ingress/inspector/ingress.go         | 62 ++++++++++++
 internal/ingress/inspector/ingress_test.go    | 99 +++++++++++++++++++
 internal/ingress/inspector/inspector.go       | 38 +++++++
 internal/ingress/inspector/rules.go           | 53 ++++++++++
 internal/ingress/inspector/rules_test.go      | 66 +++++++++++++
 internal/ingress/inspector/service.go         | 26 +++++
 test/e2e/admission/admission.go               | 17 ++++
 test/e2e/ingress/deep_inspection.go           | 67 +++++++++++++
 15 files changed, 468 insertions(+), 1 deletion(-)
 create mode 100644 internal/ingress/inspector/ingress.go
 create mode 100644 internal/ingress/inspector/ingress_test.go
 create mode 100644 internal/ingress/inspector/inspector.go
 create mode 100644 internal/ingress/inspector/rules.go
 create mode 100644 internal/ingress/inspector/rules_test.go
 create mode 100644 internal/ingress/inspector/service.go
 create mode 100644 test/e2e/ingress/deep_inspection.go

diff --git a/cmd/nginx/flags.go b/cmd/nginx/flags.go
index cfeadc7db..302930551 100644
--- a/cmd/nginx/flags.go
+++ b/cmd/nginx/flags.go
@@ -201,6 +201,8 @@ Takes the form "<host>:port". If not provided, no admission controller is starte
 		shutdownGracePeriod = flags.Int("shutdown-grace-period", 0, "Seconds to wait after receiving the shutdown signal, before stopping the nginx process.")
 
 		postShutdownGracePeriod = flags.Int("post-shutdown-grace-period", 10, "Seconds to wait after the nginx process has stopped before controller exits.")
+
+		deepInspector = flags.Bool("deep-inspect", true, "Enables ingress object security deep inspector")
 	)
 
 	flags.StringVar(&nginx.MaxmindMirror, "maxmind-mirror", "", `Maxmind mirror url (example: http://geoip.local/databases`)
@@ -321,6 +323,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		UDPConfigMapName:           *udpConfigMapName,
 		DisableFullValidationTest:  *disableFullValidationTest,
 		DefaultSSLCertificate:      *defSSLCertificate,
+		DeepInspector:              *deepInspector,
 		PublishService:             *publishSvc,
 		PublishStatusAddress:       *publishStatusAddress,
 		UpdateStatusOnShutdown:     *updateStatusOnShutdown,
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index b9cd0c564..f2b0f7a82 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -12,6 +12,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--apiserver-host`                 | Address of the Kubernetes API server. Takes the form "protocol://address:port". If not specified, it is assumed the program runs inside a Kubernetes cluster and local discovery is attempted. |
 | `--certificate-authority`          | Path to a cert file for the certificate authority. This certificate is used only when the flag --apiserver-host is specified. |
 | `--configmap`                      | Name of the ConfigMap containing custom global configurations for the controller. |
+| `--deep-inspect`                   | Enables ingress object security deep inspector. (default true) |
 | `--default-backend-service`        | Service used to serve HTTP requests not matching any known server name (catch-all). Takes the form "namespace/name". The controller configures NGINX to forward requests to the first port of this Service. |
 | `--default-server-port`            | Port to use for exposing the default server (catch-all). (default 8181) |
 | `--default-ssl-certificate`        | Secret containing a SSL certificate to be used by the default HTTPS server (catch-all). Takes the form "namespace/name". |
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index a7efdab91..778dfa03d 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -41,6 +41,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/controller/ingressclass"
 	"k8s.io/ingress-nginx/internal/ingress/controller/store"
 	"k8s.io/ingress-nginx/internal/ingress/errors"
+	"k8s.io/ingress-nginx/internal/ingress/inspector"
 	"k8s.io/ingress-nginx/internal/ingress/metric/collectors"
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/internal/nginx"
@@ -123,6 +124,7 @@ type Configuration struct {
 
 	InternalLoggerAddress string
 	IsChroot              bool
+	DeepInspector         bool
 }
 
 // GetPublishService returns the Service used to set the load-balancer status of Ingresses.
@@ -237,7 +239,11 @@ func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
 	if !ing.DeletionTimestamp.IsZero() {
 		return nil
 	}
-
+	if n.cfg.DeepInspector {
+		if err := inspector.DeepInspect(ing); err != nil {
+			return fmt.Errorf("invalid object: %w", err)
+		}
+	}
 	// Do not attempt to validate an ingress that's not meant to be controlled by the current instance of the controller.
 	if ingressClass, err := n.store.GetIngressClass(ing, n.cfg.IngressClassConfiguration); ingressClass == "" {
 		klog.Warningf("ignoring ingress %v in %v based on annotation %v: %v", ing.Name, ing.ObjectMeta.Namespace, ingressClass, err)
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index 5e3eb9113..398e18830 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -2396,6 +2396,7 @@ func newNGINXController(t *testing.T) *NGINXController {
 		clientSet,
 		channels.NewRingChannel(10),
 		false,
+		true,
 		&ingressclass.IngressClassConfiguration{
 			Controller:      "k8s.io/ingress-nginx",
 			AnnotationValue: "nginx",
@@ -2460,6 +2461,7 @@ func newDynamicNginxController(t *testing.T, setConfigMap func(string) *v1.Confi
 		clientSet,
 		channels.NewRingChannel(10),
 		false,
+		true,
 		&ingressclass.IngressClassConfiguration{
 			Controller:      "k8s.io/ingress-nginx",
 			AnnotationValue: "nginx",
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 4a6d3d2f4..7ff772a96 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -131,6 +131,7 @@ func NewNGINXController(config *Configuration, mc metric.Collector) *NGINXContro
 		config.Client,
 		n.updateCh,
 		config.DisableCatchAll,
+		config.DeepInspector,
 		config.IngressClassConfiguration)
 
 	n.syncQueue = task.NewTaskQueue(n.syncIngress)
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 2b15dc74d..d29636b03 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -42,6 +42,7 @@ import (
 	clientcorev1 "k8s.io/client-go/kubernetes/typed/core/v1"
 	"k8s.io/client-go/tools/cache"
 	"k8s.io/client-go/tools/record"
+	"k8s.io/ingress-nginx/internal/ingress/inspector"
 	"k8s.io/klog/v2"
 
 	"k8s.io/ingress-nginx/internal/file"
@@ -247,6 +248,7 @@ func New(
 	client clientset.Interface,
 	updateCh *channels.RingChannel,
 	disableCatchAll bool,
+	deepInspector bool,
 	icConfig *ingressclass.IngressClassConfiguration) Storer {
 
 	store := &k8sStore{
@@ -426,6 +428,12 @@ func New(
 
 			klog.InfoS("Found valid IngressClass", "ingress", klog.KObj(ing), "ingressclass", ic)
 
+			if deepInspector {
+				if err := inspector.DeepInspect(ing); err != nil {
+					klog.ErrorS(err, "received invalid ingress", "ingress", klog.KObj(ing))
+					return
+				}
+			}
 			if hasCatchAllIngressRule(ing.Spec) && disableCatchAll {
 				klog.InfoS("Ignoring add for catch-all ingress because of --disable-catch-all", "ingress", klog.KObj(ing))
 				return
@@ -482,6 +490,13 @@ func New(
 				return
 			}
 
+			if deepInspector {
+				if err := inspector.DeepInspect(curIng); err != nil {
+					klog.ErrorS(err, "received invalid ingress", "ingress", klog.KObj(curIng))
+					return
+				}
+			}
+
 			store.syncIngress(curIng)
 			store.updateSecretIngressMap(curIng)
 			store.syncSecrets(curIng)
diff --git a/internal/ingress/controller/store/store_test.go b/internal/ingress/controller/store/store_test.go
index 735208001..4868f792f 100644
--- a/internal/ingress/controller/store/store_test.go
+++ b/internal/ingress/controller/store/store_test.go
@@ -124,6 +124,7 @@ func TestStore(t *testing.T) {
 			clientSet,
 			updateCh,
 			false,
+			true,
 			DefaultClassConfig)
 
 		storer.Run(stopCh)
@@ -204,6 +205,7 @@ func TestStore(t *testing.T) {
 			clientSet,
 			updateCh,
 			false,
+			true,
 			DefaultClassConfig)
 
 		storer.Run(stopCh)
@@ -307,6 +309,7 @@ func TestStore(t *testing.T) {
 			clientSet,
 			updateCh,
 			false,
+			true,
 			DefaultClassConfig)
 
 		storer.Run(stopCh)
@@ -422,6 +425,7 @@ func TestStore(t *testing.T) {
 			clientSet,
 			updateCh,
 			false,
+			true,
 			ingressClassconfig)
 
 		storer.Run(stopCh)
@@ -551,6 +555,7 @@ func TestStore(t *testing.T) {
 			clientSet,
 			updateCh,
 			false,
+			true,
 			ingressClassconfig)
 
 		storer.Run(stopCh)
@@ -650,6 +655,7 @@ func TestStore(t *testing.T) {
 			clientSet,
 			updateCh,
 			false,
+			true,
 			DefaultClassConfig)
 
 		storer.Run(stopCh)
@@ -743,6 +749,7 @@ func TestStore(t *testing.T) {
 			clientSet,
 			updateCh,
 			false,
+			true,
 			DefaultClassConfig)
 
 		storer.Run(stopCh)
@@ -828,6 +835,7 @@ func TestStore(t *testing.T) {
 			clientSet,
 			updateCh,
 			false,
+			true,
 			DefaultClassConfig)
 
 		storer.Run(stopCh)
@@ -923,6 +931,7 @@ func TestStore(t *testing.T) {
 			clientSet,
 			updateCh,
 			false,
+			true,
 			DefaultClassConfig)
 
 		storer.Run(stopCh)
@@ -1046,6 +1055,7 @@ func TestStore(t *testing.T) {
 			clientSet,
 			updateCh,
 			false,
+			true,
 			DefaultClassConfig)
 
 		storer.Run(stopCh)
@@ -1166,6 +1176,7 @@ func TestStore(t *testing.T) {
 			clientSet,
 			updateCh,
 			false,
+			true,
 			DefaultClassConfig)
 
 		storer.Run(stopCh)
diff --git a/internal/ingress/inspector/ingress.go b/internal/ingress/inspector/ingress.go
new file mode 100644
index 000000000..12db946ea
--- /dev/null
+++ b/internal/ingress/inspector/ingress.go
@@ -0,0 +1,62 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package inspector
+
+import (
+	"fmt"
+
+	networking "k8s.io/api/networking/v1"
+)
+
+// InspectIngress is used to do the deep inspection of an ingress object, walking through all
+// of the spec fields and checking for matching strings and configurations that may represent
+// an attempt to escape configs
+func InspectIngress(ingress *networking.Ingress) error {
+	for _, rule := range ingress.Spec.Rules {
+		if rule.Host != "" {
+			if err := CheckRegex(rule.Host); err != nil {
+				return fmt.Errorf("invalid host in ingress %s/%s: %s", ingress.Namespace, ingress.Name, err)
+			}
+		}
+		if rule.HTTP != nil {
+			if err := inspectIngressRule(rule.HTTP); err != nil {
+				return fmt.Errorf("invalid rule in ingress %s/%s: %s", ingress.Namespace, ingress.Name, err)
+			}
+		}
+	}
+
+	for _, tls := range ingress.Spec.TLS {
+		if err := CheckRegex(tls.SecretName); err != nil {
+			return fmt.Errorf("invalid secret in ingress %s/%s: %s", ingress.Namespace, ingress.Name, err)
+		}
+		for _, host := range tls.Hosts {
+			if err := CheckRegex(host); err != nil {
+				return fmt.Errorf("invalid host in ingress tls config %s/%s: %s", ingress.Namespace, ingress.Name, err)
+			}
+		}
+	}
+	return nil
+}
+
+func inspectIngressRule(httprule *networking.HTTPIngressRuleValue) error {
+	for _, path := range httprule.Paths {
+		if err := CheckRegex(path.Path); err != nil {
+			return fmt.Errorf("invalid http path: %s", err)
+		}
+	}
+	return nil
+}
diff --git a/internal/ingress/inspector/ingress_test.go b/internal/ingress/inspector/ingress_test.go
new file mode 100644
index 000000000..bfd9f6b93
--- /dev/null
+++ b/internal/ingress/inspector/ingress_test.go
@@ -0,0 +1,99 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package inspector
+
+import (
+	"testing"
+
+	networking "k8s.io/api/networking/v1"
+	v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+)
+
+func makeSimpleIngress(hostname string, paths ...string) *networking.Ingress {
+
+	newIngress := networking.Ingress{
+		ObjectMeta: v1.ObjectMeta{
+			Name:      "test1",
+			Namespace: "default",
+		},
+		Spec: networking.IngressSpec{
+			Rules: []networking.IngressRule{
+				{
+					Host: hostname,
+					IngressRuleValue: networking.IngressRuleValue{
+						HTTP: &networking.HTTPIngressRuleValue{
+							Paths: []networking.HTTPIngressPath{},
+						},
+					},
+				},
+			},
+		},
+	}
+
+	prefix := networking.PathTypePrefix
+	for _, path := range paths {
+		newPath := networking.HTTPIngressPath{
+			Path:     path,
+			PathType: &prefix,
+		}
+		newIngress.Spec.Rules[0].IngressRuleValue.HTTP.Paths = append(newIngress.Spec.Rules[0].IngressRuleValue.HTTP.Paths, newPath)
+	}
+	return &newIngress
+}
+
+func TestInspectIngress(t *testing.T) {
+	tests := []struct {
+		name     string
+		hostname string
+		path     []string
+		wantErr  bool
+	}{
+		{
+			name:     "invalid-path-etc",
+			hostname: "invalid.etc.com",
+			path: []string{
+				"/var/run/secrets",
+				"/mypage",
+			},
+			wantErr: true,
+		},
+		{
+			name:     "invalid-path-etc",
+			hostname: "invalid.etc.com",
+			path: []string{
+				"/etc/nginx",
+			},
+			wantErr: true,
+		},
+		{
+			name:     "invalid-path-etc",
+			hostname: "invalid.etc.com",
+			path: []string{
+				"/mypage",
+			},
+			wantErr: false,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			ingress := makeSimpleIngress(tt.hostname, tt.path...)
+			if err := InspectIngress(ingress); (err != nil) != tt.wantErr {
+				t.Errorf("InspectIngress() error = %v, wantErr %v", err, tt.wantErr)
+			}
+		})
+	}
+}
diff --git a/internal/ingress/inspector/inspector.go b/internal/ingress/inspector/inspector.go
new file mode 100644
index 000000000..98f257997
--- /dev/null
+++ b/internal/ingress/inspector/inspector.go
@@ -0,0 +1,38 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package inspector
+
+import (
+	corev1 "k8s.io/api/core/v1"
+	networking "k8s.io/api/networking/v1"
+	"k8s.io/klog/v2"
+)
+
+// DeepInspect is the function called by admissionwebhook and store syncer to check
+// if an object contains invalid configurations that may represent a security risk,
+// and returning an error in this case
+func DeepInspect(obj interface{}) error {
+	switch obj.(type) {
+	case *networking.Ingress:
+		return InspectIngress(obj.(*networking.Ingress))
+	case *corev1.Service:
+		return InspectService(obj.(*corev1.Service))
+	default:
+		klog.Warningf("received invalid object to inspect: %T", obj)
+		return nil
+	}
+}
diff --git a/internal/ingress/inspector/rules.go b/internal/ingress/inspector/rules.go
new file mode 100644
index 000000000..9c9ade0f2
--- /dev/null
+++ b/internal/ingress/inspector/rules.go
@@ -0,0 +1,53 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package inspector
+
+import (
+	"fmt"
+	"regexp"
+)
+
+var (
+	invalidAliasDirective = regexp.MustCompile(`\s*alias\s*.*;`)
+	invalidRootDirective  = regexp.MustCompile(`\s*root\s*.*;`)
+	invalidEtcDir         = regexp.MustCompile(`/etc/(passwd|shadow|group|nginx|ingress-controller)`)
+	invalidSecretsDir     = regexp.MustCompile(`/var/run/secrets`)
+	invalidByLuaDirective = regexp.MustCompile(`.*_by_lua.*`)
+
+	invalidRegex = []regexp.Regexp{}
+)
+
+func init() {
+	invalidRegex = []regexp.Regexp{
+		*invalidAliasDirective,
+		*invalidRootDirective,
+		*invalidEtcDir,
+		*invalidSecretsDir,
+		*invalidByLuaDirective,
+	}
+}
+
+// CheckRegex receives a value/configuration and validates if it matches with one of the
+// forbidden regexes.
+func CheckRegex(value string) error {
+	for _, regex := range invalidRegex {
+		if regex.MatchString(value) {
+			return fmt.Errorf("invalid value found: %s", value)
+		}
+	}
+	return nil
+}
diff --git a/internal/ingress/inspector/rules_test.go b/internal/ingress/inspector/rules_test.go
new file mode 100644
index 000000000..3c8f9f47b
--- /dev/null
+++ b/internal/ingress/inspector/rules_test.go
@@ -0,0 +1,66 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package inspector
+
+import "testing"
+
+func TestCheckRegex(t *testing.T) {
+
+	tests := []struct {
+		name    string
+		value   string
+		wantErr bool
+	}{
+		{
+			name:    "must refuse invalid root",
+			wantErr: true,
+			value:   "   root    blabla/lala ;",
+		},
+		{
+			name:    "must refuse invalid alias",
+			wantErr: true,
+			value:   "   alias    blabla/lala ;",
+		},
+		{
+			name:    "must refuse invalid attempt to call /etc",
+			wantErr: true,
+			value:   "location /etc/nginx/lalala",
+		},
+		{
+			name:    "must refuse invalid attempt to call k8s secret",
+			wantErr: true,
+			value:   "ssl_cert /var/run/secrets/kubernetes.io/lalala; xpto",
+		},
+		{
+			name:    "must refuse invalid attempt to call lua directives",
+			wantErr: true,
+			value:   "set_by_lua lala",
+		},
+		{
+			name:    "must pass with valid configuration",
+			wantErr: false,
+			value:   "/test/mypage1",
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			if err := CheckRegex(tt.value); (err != nil) != tt.wantErr {
+				t.Errorf("CheckRegex() error = %v, wantErr %v", err, tt.wantErr)
+			}
+		})
+	}
+}
diff --git a/internal/ingress/inspector/service.go b/internal/ingress/inspector/service.go
new file mode 100644
index 000000000..27ed27a8c
--- /dev/null
+++ b/internal/ingress/inspector/service.go
@@ -0,0 +1,26 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package inspector
+
+import (
+	corev1 "k8s.io/api/core/v1"
+)
+
+// InspectService will be used to inspect service objects for possible invalid configurations
+func InspectService(svc *corev1.Service) error {
+	return nil
+}
diff --git a/test/e2e/admission/admission.go b/test/e2e/admission/admission.go
index c4c1ef76d..c03a10ecc 100644
--- a/test/e2e/admission/admission.go
+++ b/test/e2e/admission/admission.go
@@ -110,6 +110,23 @@ var _ = framework.IngressNginxDescribe("[Serial] admission controller", func() {
 		assert.Nil(ginkgo.GinkgoT(), err, "creating an ingress with the same host and path should not return an error using a canary annotation")
 	})
 
+	ginkgo.It("should block ingress with invalid path", func() {
+		host := "invalid-path"
+
+		firstIngress := framework.NewSingleIngress("valid-path", "/mypage", host, f.Namespace, framework.EchoService, 80, nil)
+		_, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), firstIngress, metav1.CreateOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "creating ingress")
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, fmt.Sprintf("server_name %v", host))
+			})
+
+		secondIngress := framework.NewSingleIngress("second-ingress", "/etc/nginx", host, f.Namespace, framework.EchoService, 80, nil)
+		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), secondIngress, metav1.CreateOptions{})
+		assert.NotNil(ginkgo.GinkgoT(), err, "creating an ingress with invalid path should return an error")
+	})
+
 	ginkgo.It("should return an error if there is an error validating the ingress definition", func() {
 		host := "admission-test"
 
diff --git a/test/e2e/ingress/deep_inspection.go b/test/e2e/ingress/deep_inspection.go
new file mode 100644
index 000000000..0a4c3c539
--- /dev/null
+++ b/test/e2e/ingress/deep_inspection.go
@@ -0,0 +1,67 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package ingress
+
+import (
+	"net/http"
+	"strings"
+
+	"github.com/onsi/ginkgo"
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.IngressNginxDescribe("[Ingress] DeepInspection", func() {
+	f := framework.NewDefaultFramework("deep-inspection")
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment()
+	})
+
+	ginkgo.It("should drop whole ingress if one path matches invalid regex", func() {
+		host := "inspection123.com"
+
+		ingInvalid := framework.NewSingleIngress("invalidregex", "/bla{alias /var/run/secrets/;}location ~* ^/abcd", host, f.Namespace, framework.EchoService, 80, nil)
+		f.EnsureIngress(ingInvalid)
+		ingValid := framework.NewSingleIngress("valid", "/xpto", host, f.Namespace, framework.EchoService, 80, nil)
+		f.EnsureIngress(ingValid)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, host) &&
+					strings.Contains(server, "location /xpto") &&
+					!strings.Contains(server, "location /bla")
+			})
+
+		f.HTTPTestClient().
+			GET("/xpto").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+
+		f.HTTPTestClient().
+			GET("/bla").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+
+		f.HTTPTestClient().
+			GET("/abcd/").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+	})
+})

From 47a266df45bc31928d7891c1c753460deb6df653 Mon Sep 17 00:00:00 2001
From: David Shay <davideshay@gmail.com>
Date: Mon, 11 Apr 2022 14:42:06 -0400
Subject: [PATCH 0142/1641] Fix for buggy ingress sync with retries (#8325)

---
 cmd/nginx/flags.go                        | 63 ++++++++++++-----------
 internal/ingress/controller/controller.go | 15 ++++--
 2 files changed, 44 insertions(+), 34 deletions(-)

diff --git a/cmd/nginx/flags.go b/cmd/nginx/flags.go
index 302930551..337a1f827 100644
--- a/cmd/nginx/flags.go
+++ b/cmd/nginx/flags.go
@@ -65,7 +65,7 @@ The parameter --controller-class has precedence over this.`)
 
 		ingressClassController = flags.String("controller-class", ingressclass.DefaultControllerName,
 			`Ingress Class Controller value this Ingress satisfies.
-The class of an Ingress object is set using the field IngressClassName in Kubernetes clusters version v1.19.0 or higher. The .spec.controller value of the IngressClass 
+The class of an Ingress object is set using the field IngressClassName in Kubernetes clusters version v1.19.0 or higher. The .spec.controller value of the IngressClass
 referenced in an Ingress Object should be the same value specified here to make this object be watched.`)
 
 		watchWithoutClass = flags.Bool("watch-ingress-without-class", false,
@@ -203,6 +203,8 @@ Takes the form "<host>:port". If not provided, no admission controller is starte
 		postShutdownGracePeriod = flags.Int("post-shutdown-grace-period", 10, "Seconds to wait after the nginx process has stopped before controller exits.")
 
 		deepInspector = flags.Bool("deep-inspect", true, "Enables ingress object security deep inspector")
+
+		dynamicConfigurationRetries = flags.Int("dynamic-configuration-retries", 15, "Number of times to retry failed dynamic configuration before failing to sync an ingress.")
 	)
 
 	flags.StringVar(&nginx.MaxmindMirror, "maxmind-mirror", "", `Maxmind mirror url (example: http://geoip.local/databases`)
@@ -303,35 +305,36 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 	ngx_config.EnableSSLChainCompletion = *enableSSLChainCompletion
 
 	config := &controller.Configuration{
-		APIServerHost:              *apiserverHost,
-		KubeConfigFile:             *kubeConfigFile,
-		UpdateStatus:               *updateStatus,
-		ElectionID:                 *electionID,
-		EnableProfiling:            *profiling,
-		EnableMetrics:              *enableMetrics,
-		MetricsPerHost:             *metricsPerHost,
-		MetricsBuckets:             histogramBuckets,
-		MonitorMaxBatchSize:        *monitorMaxBatchSize,
-		DisableServiceExternalName: *disableServiceExternalName,
-		EnableSSLPassthrough:       *enableSSLPassthrough,
-		ResyncPeriod:               *resyncPeriod,
-		DefaultService:             *defaultSvc,
-		Namespace:                  *watchNamespace,
-		WatchNamespaceSelector:     namespaceSelector,
-		ConfigMapName:              *configMap,
-		TCPConfigMapName:           *tcpConfigMapName,
-		UDPConfigMapName:           *udpConfigMapName,
-		DisableFullValidationTest:  *disableFullValidationTest,
-		DefaultSSLCertificate:      *defSSLCertificate,
-		DeepInspector:              *deepInspector,
-		PublishService:             *publishSvc,
-		PublishStatusAddress:       *publishStatusAddress,
-		UpdateStatusOnShutdown:     *updateStatusOnShutdown,
-		ShutdownGracePeriod:        *shutdownGracePeriod,
-		PostShutdownGracePeriod:    *postShutdownGracePeriod,
-		UseNodeInternalIP:          *useNodeInternalIP,
-		SyncRateLimit:              *syncRateLimit,
-		HealthCheckHost:            *healthzHost,
+		APIServerHost:               *apiserverHost,
+		KubeConfigFile:              *kubeConfigFile,
+		UpdateStatus:                *updateStatus,
+		ElectionID:                  *electionID,
+		EnableProfiling:             *profiling,
+		EnableMetrics:               *enableMetrics,
+		MetricsPerHost:              *metricsPerHost,
+		MetricsBuckets:              histogramBuckets,
+		MonitorMaxBatchSize:         *monitorMaxBatchSize,
+		DisableServiceExternalName:  *disableServiceExternalName,
+		EnableSSLPassthrough:        *enableSSLPassthrough,
+		ResyncPeriod:                *resyncPeriod,
+		DefaultService:              *defaultSvc,
+		Namespace:                   *watchNamespace,
+		WatchNamespaceSelector:      namespaceSelector,
+		ConfigMapName:               *configMap,
+		TCPConfigMapName:            *tcpConfigMapName,
+		UDPConfigMapName:            *udpConfigMapName,
+		DisableFullValidationTest:   *disableFullValidationTest,
+		DefaultSSLCertificate:       *defSSLCertificate,
+		DeepInspector:               *deepInspector,
+		PublishService:              *publishSvc,
+		PublishStatusAddress:        *publishStatusAddress,
+		UpdateStatusOnShutdown:      *updateStatusOnShutdown,
+		ShutdownGracePeriod:         *shutdownGracePeriod,
+		PostShutdownGracePeriod:     *postShutdownGracePeriod,
+		UseNodeInternalIP:           *useNodeInternalIP,
+		SyncRateLimit:               *syncRateLimit,
+		HealthCheckHost:             *healthzHost,
+		DynamicConfigurationRetries: *dynamicConfigurationRetries,
 		ListenPorts: &ngx_config.ListenPorts{
 			Default:  *defServerPort,
 			Health:   *healthzPort,
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 778dfa03d..f43c72d92 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -125,6 +125,8 @@ type Configuration struct {
 	InternalLoggerAddress string
 	IsChroot              bool
 	DeepInspector         bool
+
+	DynamicConfigurationRetries int
 }
 
 // GetPublishService returns the Service used to set the load-balancer status of Ingresses.
@@ -194,19 +196,24 @@ func (n *NGINXController) syncIngress(interface{}) error {
 	}
 
 	retry := wait.Backoff{
-		Steps:    15,
-		Duration: 1 * time.Second,
-		Factor:   0.8,
+		Steps:    1 + n.cfg.DynamicConfigurationRetries,
+		Duration: time.Second,
+		Factor:   1.3,
 		Jitter:   0.1,
 	}
 
+	retriesRemaining := retry.Steps
 	err := wait.ExponentialBackoff(retry, func() (bool, error) {
 		err := n.configureDynamically(pcfg)
 		if err == nil {
 			klog.V(2).Infof("Dynamic reconfiguration succeeded.")
 			return true, nil
 		}
-
+		retriesRemaining--
+		if retriesRemaining > 0 {
+			klog.Warningf("Dynamic reconfiguration failed (retrying; %d retries left): %v", retriesRemaining, err)
+			return false, nil
+		}
 		klog.Warningf("Dynamic reconfiguration failed: %v", err)
 		return false, err
 	})

From ea5a3036bf52e86e2f6fd98b818d5c9cc4ca9737 Mon Sep 17 00:00:00 2001
From: Naseem Ullah <24660299+naseemkullah@users.noreply.github.com>
Date: Tue, 12 Apr 2022 17:40:46 -0400
Subject: [PATCH 0143/1641] Improve req handling dashboard (#8322)

Display per method/path combos for various metrics, adjust titles, and sort tooltip by decreasing

Signed-off-by: Naseem Ullah <24660299+naseemkullah@users.noreply.github.com>
---
 .../request-handling-performance.json         | 350 +++++++++---------
 1 file changed, 177 insertions(+), 173 deletions(-)

diff --git a/deploy/grafana/dashboards/request-handling-performance.json b/deploy/grafana/dashboards/request-handling-performance.json
index e231129be..1422336ae 100644
--- a/deploy/grafana/dashboards/request-handling-performance.json
+++ b/deploy/grafana/dashboards/request-handling-performance.json
@@ -9,17 +9,18 @@
       "pluginName": "Prometheus"
     }
   ],
+  "__elements": [],
   "__requires": [
     {
       "type": "grafana",
       "id": "grafana",
       "name": "Grafana",
-      "version": "6.6.0"
+      "version": "8.3.4"
     },
     {
       "type": "panel",
       "id": "graph",
-      "name": "Graph",
+      "name": "Graph (old)",
       "version": ""
     },
     {
@@ -38,25 +39,41 @@
         "hide": true,
         "iconColor": "rgba(0, 211, 255, 1)",
         "name": "Annotations & Alerts",
+        "target": {
+          "limit": 100,
+          "matchAny": false,
+          "tags": [],
+          "type": "dashboard"
+        },
         "type": "dashboard"
       }
     ]
   },
   "description": "",
   "editable": true,
+  "fiscalYearStartMonth": 0,
   "gnetId": 9614,
   "graphTooltip": 1,
   "id": null,
-  "iteration": 1582146566338,
+  "iteration": 1646929474557,
   "links": [],
+  "liveNow": false,
   "panels": [
     {
       "aliasColors": {},
       "bars": false,
       "dashLength": 10,
       "dashes": false,
-      "datasource": "${DS_PROMETHEUS}",
-      "description": "Total time taken for nginx and upstream servers to process a request and send a response",
+      "datasource": {
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "description": "Total time for NGINX and upstream servers to process a request and send a response",
+      "fieldConfig": {
+        "defaults": {
+          "links": []
+        },
+        "overrides": []
+      },
       "fill": 1,
       "fillGradient": 0,
       "gridPos": {
@@ -80,9 +97,10 @@
       "linewidth": 1,
       "nullPointMode": "null",
       "options": {
-        "dataLinks": []
+        "alertThreshold": true
       },
       "percentage": false,
+      "pluginVersion": "8.3.4",
       "pointradius": 2,
       "points": false,
       "renderer": "flot",
@@ -92,63 +110,52 @@
       "steppedLine": false,
       "targets": [
         {
-          "expr": "histogram_quantile(\n  0.5,\n  sum by (le)(\n    rate(\n      nginx_ingress_controller_request_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[1m]\n    )\n  )\n)",
+          "expr": "histogram_quantile(\n  0.5,\n  sum by (le)(\n    rate(\n      nginx_ingress_controller_request_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n)",
           "interval": "",
           "legendFormat": ".5",
           "refId": "D"
         },
         {
-          "expr": "histogram_quantile(\n  0.95,\n  sum by (le)(\n    rate(\n    nginx_ingress_controller_request_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[1m]\n    )\n  )\n)",
+          "expr": "histogram_quantile(\n  0.95,\n  sum by (le)(\n    rate(\n    nginx_ingress_controller_request_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n)",
           "interval": "",
           "legendFormat": ".95",
           "refId": "B"
         },
         {
-          "expr": "histogram_quantile(\n  0.99,\n  sum by (le)(\n    rate(\n      nginx_ingress_controller_request_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[1m]\n    )\n  )\n)",
+          "expr": "histogram_quantile(\n  0.99,\n  sum by (le)(\n    rate(\n      nginx_ingress_controller_request_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n)",
           "interval": "",
           "legendFormat": ".99",
           "refId": "A"
         }
       ],
       "thresholds": [],
-      "timeFrom": null,
       "timeRegions": [],
-      "timeShift": null,
-      "title": "Total request handling time",
+      "title": "Request Latency Percentiles",
       "tooltip": {
         "shared": true,
-        "sort": 0,
+        "sort": 2,
         "value_type": "individual"
       },
       "type": "graph",
       "xaxis": {
-        "buckets": null,
         "mode": "time",
-        "name": null,
         "show": true,
         "values": []
       },
       "yaxes": [
         {
           "format": "s",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         },
         {
           "format": "short",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         }
       ],
       "yaxis": {
-        "align": false,
-        "alignLevel": null
+        "align": false
       }
     },
     {
@@ -156,8 +163,16 @@
       "bars": false,
       "dashLength": 10,
       "dashes": false,
-      "datasource": "${DS_PROMETHEUS}",
+      "datasource": {
+        "uid": "${DS_PROMETHEUS}"
+      },
       "description": "The time spent on receiving the response from the upstream server",
+      "fieldConfig": {
+        "defaults": {
+          "links": []
+        },
+        "overrides": []
+      },
       "fill": 1,
       "fillGradient": 0,
       "gridPos": {
@@ -181,9 +196,10 @@
       "linewidth": 1,
       "nullPointMode": "null",
       "options": {
-        "dataLinks": []
+        "alertThreshold": true
       },
       "percentage": false,
+      "pluginVersion": "8.3.4",
       "pointradius": 2,
       "points": false,
       "renderer": "flot",
@@ -193,7 +209,7 @@
       "steppedLine": false,
       "targets": [
         {
-          "expr": "histogram_quantile(\n  0.5,\n  sum by (le)(\n    rate(\n      nginx_ingress_controller_response_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[1m]\n    )\n  )\n)",
+          "expr": "histogram_quantile(\n  0.5,\n  sum by (le)(\n    rate(\n      nginx_ingress_controller_response_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n)",
           "instant": false,
           "interval": "",
           "intervalFactor": 1,
@@ -201,57 +217,46 @@
           "refId": "D"
         },
         {
-          "expr": "histogram_quantile(\n  0.95,\n  sum by (le)(\n    rate(\n    nginx_ingress_controller_response_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[1m]\n    )\n  )\n)",
+          "expr": "histogram_quantile(\n  0.95,\n  sum by (le)(\n    rate(\n    nginx_ingress_controller_response_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n)",
           "interval": "",
           "legendFormat": ".95",
           "refId": "B"
         },
         {
-          "expr": "histogram_quantile(\n  0.99,\n  sum by (le)(\n    rate(\n      nginx_ingress_controller_response_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[1m]\n    )\n  )\n)",
+          "expr": "histogram_quantile(\n  0.99,\n  sum by (le)(\n    rate(\n      nginx_ingress_controller_response_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n)",
           "interval": "",
           "legendFormat": ".99",
           "refId": "A"
         }
       ],
       "thresholds": [],
-      "timeFrom": null,
       "timeRegions": [],
-      "timeShift": null,
-      "title": "Upstream response time",
+      "title": "Upstream Response Latency Percentiles",
       "tooltip": {
         "shared": true,
-        "sort": 0,
+        "sort": 2,
         "value_type": "individual"
       },
       "type": "graph",
       "xaxis": {
-        "buckets": null,
         "mode": "time",
-        "name": null,
         "show": true,
         "values": []
       },
       "yaxes": [
         {
           "format": "s",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         },
         {
           "format": "short",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         }
       ],
       "yaxis": {
-        "align": false,
-        "alignLevel": null
+        "align": false
       }
     },
     {
@@ -259,7 +264,15 @@
       "bars": false,
       "dashLength": 10,
       "dashes": false,
-      "datasource": "${DS_PROMETHEUS}",
+      "datasource": {
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "links": []
+        },
+        "overrides": []
+      },
       "fill": 1,
       "fillGradient": 0,
       "gridPos": {
@@ -285,9 +298,10 @@
       "linewidth": 1,
       "nullPointMode": "null",
       "options": {
-        "dataLinks": []
+        "alertThreshold": true
       },
       "percentage": false,
+      "pluginVersion": "8.3.4",
       "pointradius": 2,
       "points": false,
       "renderer": "flot",
@@ -297,52 +311,41 @@
       "steppedLine": false,
       "targets": [
         {
-          "expr": "  sum by (path)(\n    rate(\n      nginx_ingress_controller_request_duration_seconds_count{\n        ingress =~ \"$ingress\"\n      }[1m]\n    )\n  )\n",
+          "expr": "  sum by (method, host, path)(\n    rate(\n      nginx_ingress_controller_request_duration_seconds_count{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n",
           "interval": "",
           "intervalFactor": 1,
-          "legendFormat": "{{ path }}",
+          "legendFormat": "{{ method }} {{ host }}{{path }}",
           "refId": "A"
         }
       ],
       "thresholds": [],
-      "timeFrom": null,
       "timeRegions": [],
-      "timeShift": null,
-      "title": "Request volume by Path",
+      "title": "Request Rate by Method and Path",
       "tooltip": {
         "shared": true,
-        "sort": 0,
+        "sort": 2,
         "value_type": "individual"
       },
       "type": "graph",
       "xaxis": {
-        "buckets": null,
         "mode": "time",
-        "name": null,
         "show": true,
         "values": []
       },
       "yaxes": [
         {
           "format": "reqps",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         },
         {
           "format": "short",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         }
       ],
       "yaxis": {
-        "align": false,
-        "alignLevel": null
+        "align": false
       }
     },
     {
@@ -350,8 +353,16 @@
       "bars": false,
       "dashLength": 10,
       "dashes": false,
-      "datasource": "${DS_PROMETHEUS}",
+      "datasource": {
+        "uid": "${DS_PROMETHEUS}"
+      },
       "description": "For each path observed, its median upstream response time",
+      "fieldConfig": {
+        "defaults": {
+          "links": []
+        },
+        "overrides": []
+      },
       "fill": 1,
       "fillGradient": 0,
       "gridPos": {
@@ -377,9 +388,10 @@
       "linewidth": 1,
       "nullPointMode": "null",
       "options": {
-        "dataLinks": []
+        "alertThreshold": true
       },
       "percentage": false,
+      "pluginVersion": "8.3.4",
       "pointradius": 2,
       "points": false,
       "renderer": "flot",
@@ -389,52 +401,41 @@
       "steppedLine": false,
       "targets": [
         {
-          "expr": "histogram_quantile(\n  .5,\n  sum by (le, path)(\n    rate(\n      nginx_ingress_controller_response_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[1m]\n    )\n  )\n)",
+          "expr": "histogram_quantile(\n  .5,\n  sum by (le, method, host, path)(\n    rate(\n      nginx_ingress_controller_response_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n)",
           "interval": "",
           "intervalFactor": 1,
-          "legendFormat": "{{ path }}",
+          "legendFormat": "{{ method }} {{ host }}{{path }}",
           "refId": "A"
         }
       ],
       "thresholds": [],
-      "timeFrom": null,
       "timeRegions": [],
-      "timeShift": null,
-      "title": "Median upstream response time by Path",
+      "title": "Median Upstream Response Time by Method and Path",
       "tooltip": {
         "shared": true,
-        "sort": 0,
+        "sort": 2,
         "value_type": "individual"
       },
       "type": "graph",
       "xaxis": {
-        "buckets": null,
         "mode": "time",
-        "name": null,
         "show": true,
         "values": []
       },
       "yaxes": [
         {
           "format": "s",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         },
         {
           "format": "short",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         }
       ],
       "yaxis": {
-        "align": false,
-        "alignLevel": null
+        "align": false
       }
     },
     {
@@ -442,8 +443,16 @@
       "bars": false,
       "dashLength": 10,
       "dashes": false,
-      "datasource": "${DS_PROMETHEUS}",
+      "datasource": {
+        "uid": "${DS_PROMETHEUS}"
+      },
       "description": "Percentage of 4xx and 5xx responses among all responses.",
+      "fieldConfig": {
+        "defaults": {
+          "links": []
+        },
+        "overrides": []
+      },
       "fill": 1,
       "fillGradient": 0,
       "gridPos": {
@@ -469,9 +478,10 @@
       "linewidth": 1,
       "nullPointMode": "null as zero",
       "options": {
-        "dataLinks": []
+        "alertThreshold": true
       },
       "percentage": false,
+      "pluginVersion": "8.3.4",
       "pointradius": 2,
       "points": false,
       "renderer": "flot",
@@ -481,52 +491,41 @@
       "steppedLine": false,
       "targets": [
         {
-          "expr": "sum by (path) (rate(nginx_ingress_controller_request_duration_seconds_count{\n  ingress =~ \"$ingress\",\n  status =~ \"[4-5].*\"\n}[1m])) / sum by (path) (rate(nginx_ingress_controller_request_duration_seconds_count{\n  ingress =~ \"$ingress\",\n}[1m]))",
+          "expr": "sum by (method, host, path) (rate(nginx_ingress_controller_request_duration_seconds_count{\n  ingress =~ \"$ingress\",\n  status =~ \"[4-5].*\"\n}[5m])) / sum by (method, host, path) (rate(nginx_ingress_controller_request_duration_seconds_count{\n  ingress =~ \"$ingress\",\n}[5m]))",
           "interval": "",
           "intervalFactor": 1,
-          "legendFormat": "{{ path }}",
+          "legendFormat": "{{ method }} {{ host }}{{path }}",
           "refId": "A"
         }
       ],
       "thresholds": [],
-      "timeFrom": null,
       "timeRegions": [],
-      "timeShift": null,
-      "title": "Response error rate by Path",
+      "title": "Response Error Rate by Method and Path",
       "tooltip": {
         "shared": true,
-        "sort": 0,
+        "sort": 2,
         "value_type": "individual"
       },
       "type": "graph",
       "xaxis": {
-        "buckets": null,
         "mode": "time",
-        "name": null,
         "show": true,
         "values": []
       },
       "yaxes": [
         {
           "format": "percentunit",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         },
         {
           "format": "short",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         }
       ],
       "yaxis": {
-        "align": false,
-        "alignLevel": null
+        "align": false
       }
     },
     {
@@ -534,8 +533,16 @@
       "bars": false,
       "dashLength": 10,
       "dashes": false,
-      "datasource": "${DS_PROMETHEUS}",
+      "datasource": {
+        "uid": "${DS_PROMETHEUS}"
+      },
       "description": "For each path observed, the sum of upstream request time",
+      "fieldConfig": {
+        "defaults": {
+          "links": []
+        },
+        "overrides": []
+      },
       "fill": 1,
       "fillGradient": 0,
       "gridPos": {
@@ -561,9 +568,10 @@
       "linewidth": 1,
       "nullPointMode": "null",
       "options": {
-        "dataLinks": []
+        "alertThreshold": true
       },
       "percentage": false,
+      "pluginVersion": "8.3.4",
       "pointradius": 2,
       "points": false,
       "renderer": "flot",
@@ -573,52 +581,41 @@
       "steppedLine": false,
       "targets": [
         {
-          "expr": "sum by (path) (rate(nginx_ingress_controller_response_duration_seconds_sum{ingress =~ \"$ingress\"}[1m]))",
+          "expr": "sum by (method, host, path) (rate(nginx_ingress_controller_response_duration_seconds_sum{ingress =~ \"$ingress\"}[5m]))",
           "interval": "",
           "intervalFactor": 1,
-          "legendFormat": "{{ path }}",
+          "legendFormat": "{{ method }} {{ host }}{{path }}",
           "refId": "A"
         }
       ],
       "thresholds": [],
-      "timeFrom": null,
       "timeRegions": [],
-      "timeShift": null,
-      "title": "Upstream time consumed by Path",
+      "title": "Upstream Response Time by Method and Path",
       "tooltip": {
         "shared": true,
-        "sort": 0,
+        "sort": 2,
         "value_type": "individual"
       },
       "type": "graph",
       "xaxis": {
-        "buckets": null,
         "mode": "time",
-        "name": null,
         "show": true,
         "values": []
       },
       "yaxes": [
         {
           "format": "s",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         },
         {
           "format": "short",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         }
       ],
       "yaxis": {
-        "align": false,
-        "alignLevel": null
+        "align": false
       }
     },
     {
@@ -626,7 +623,15 @@
       "bars": false,
       "dashLength": 10,
       "dashes": false,
-      "datasource": "${DS_PROMETHEUS}",
+      "datasource": {
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "links": []
+        },
+        "overrides": []
+      },
       "fill": 1,
       "fillGradient": 0,
       "gridPos": {
@@ -652,9 +657,10 @@
       "linewidth": 1,
       "nullPointMode": "null",
       "options": {
-        "dataLinks": []
+        "alertThreshold": true
       },
       "percentage": false,
+      "pluginVersion": "8.3.4",
       "pointradius": 2,
       "points": false,
       "renderer": "flot",
@@ -664,52 +670,41 @@
       "steppedLine": false,
       "targets": [
         {
-          "expr": "  sum (\n    rate(\n      nginx_ingress_controller_request_duration_seconds_count{\n        ingress =~ \"$ingress\",\n        status =~\"[4-5].*\",\n      }[1m]\n    )\n  ) by(path, status)\n",
+          "expr": "  sum (\n    rate(\n      nginx_ingress_controller_request_duration_seconds_count{\n        ingress =~ \"$ingress\",\n        status =~\"[4-5].*\",\n      }[5m]\n    )\n  ) by(method, host, path, status)\n",
           "interval": "",
           "intervalFactor": 1,
-          "legendFormat": "{{ path }} {{ status }}",
+          "legendFormat": "{{ method }} {{ host }}{{path }} {{ status }}",
           "refId": "A"
         }
       ],
       "thresholds": [],
-      "timeFrom": null,
       "timeRegions": [],
-      "timeShift": null,
-      "title": "Response error volume by Path",
+      "title": "Response Error Rate by Method and Path",
       "tooltip": {
         "shared": true,
-        "sort": 0,
+        "sort": 2,
         "value_type": "individual"
       },
       "type": "graph",
       "xaxis": {
-        "buckets": null,
         "mode": "time",
-        "name": null,
         "show": true,
         "values": []
       },
       "yaxes": [
         {
           "format": "reqps",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         },
         {
           "format": "short",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         }
       ],
       "yaxis": {
-        "align": false,
-        "alignLevel": null
+        "align": false
       }
     },
     {
@@ -717,7 +712,15 @@
       "bars": false,
       "dashLength": 10,
       "dashes": false,
-      "datasource": "${DS_PROMETHEUS}",
+      "datasource": {
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "links": []
+        },
+        "overrides": []
+      },
       "fill": 1,
       "fillGradient": 0,
       "gridPos": {
@@ -743,9 +746,10 @@
       "linewidth": 1,
       "nullPointMode": "null",
       "options": {
-        "dataLinks": []
+        "alertThreshold": true
       },
       "percentage": false,
+      "pluginVersion": "8.3.4",
       "pointradius": 2,
       "points": false,
       "renderer": "flot",
@@ -755,60 +759,49 @@
       "steppedLine": false,
       "targets": [
         {
-          "expr": "sum (\n  rate (\n      nginx_ingress_controller_response_size_sum {\n        ingress =~ \"$ingress\",\n      }[1m]\n  )\n)  by (path) / sum (\n  rate(\n      nginx_ingress_controller_response_size_count {\n        ingress =~ \"$ingress\",\n      }[1m]\n  )\n) by (path)\n",
+          "expr": "sum (\n  rate (\n      nginx_ingress_controller_response_size_sum {\n        ingress =~ \"$ingress\",\n      }[5m]\n  )\n)  by (method, host, path) / sum (\n  rate(\n      nginx_ingress_controller_response_size_count {\n        ingress =~ \"$ingress\",\n      }[5m]\n  )\n) by (method, host, path)\n",
           "hide": false,
           "instant": false,
           "interval": "",
           "intervalFactor": 1,
-          "legendFormat": "{{ path }}",
+          "legendFormat": "{{ method }} {{ host }}{{path }}",
           "refId": "D"
         },
         {
-          "expr": "    sum (rate(nginx_ingress_controller_response_size_bucket{\n        ingress =~ \"$ingress\",\n    }[1m])) by (le)\n",
+          "expr": "    sum (rate(nginx_ingress_controller_response_size_bucket{\n        ingress =~ \"$ingress\",\n    }[5m])) by (le)\n",
           "hide": true,
           "legendFormat": "{{le}}",
           "refId": "A"
         }
       ],
       "thresholds": [],
-      "timeFrom": null,
       "timeRegions": [],
-      "timeShift": null,
-      "title": "Average response size by Path",
+      "title": "Average Response Size by Method and Path",
       "tooltip": {
         "shared": true,
-        "sort": 0,
+        "sort": 2,
         "value_type": "individual"
       },
       "type": "graph",
       "xaxis": {
-        "buckets": null,
         "mode": "time",
-        "name": null,
         "show": true,
         "values": []
       },
       "yaxes": [
         {
           "format": "decbytes",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         },
         {
           "format": "short",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         }
       ],
       "yaxis": {
-        "align": false,
-        "alignLevel": null
+        "align": false
       }
     },
     {
@@ -816,7 +809,15 @@
       "bars": false,
       "dashLength": 10,
       "dashes": false,
-      "datasource": "${DS_PROMETHEUS}",
+      "datasource": {
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "links": []
+        },
+        "overrides": []
+      },
       "fill": 1,
       "fillGradient": 0,
       "gridPos": {
@@ -840,9 +841,10 @@
       "linewidth": 1,
       "nullPointMode": "null",
       "options": {
-        "dataLinks": []
+        "alertThreshold": true
       },
       "percentage": false,
+      "pluginVersion": "8.3.4",
       "pointradius": 2,
       "points": false,
       "renderer": "flot",
@@ -852,7 +854,7 @@
       "steppedLine": false,
       "targets": [
         {
-          "expr": "sum (\n  rate(\n      nginx_ingress_controller_ingress_upstream_latency_seconds_sum {\n        ingress =~ \"$ingress\",\n      }[1m]\n)) / sum (\n  rate(\n      nginx_ingress_controller_ingress_upstream_latency_seconds_count {\n        ingress =~ \"$ingress\",\n      }[1m]\n  )\n)\n",
+          "expr": "sum (\n  rate(\n      nginx_ingress_controller_ingress_upstream_latency_seconds_sum {\n        ingress =~ \"$ingress\",\n      }[5m]\n)) / sum (\n  rate(\n      nginx_ingress_controller_ingress_upstream_latency_seconds_count {\n        ingress =~ \"$ingress\",\n      }[5m]\n  )\n)\n",
           "hide": false,
           "instant": false,
           "interval": "",
@@ -862,49 +864,38 @@
         }
       ],
       "thresholds": [],
-      "timeFrom": null,
       "timeRegions": [],
-      "timeShift": null,
-      "title": "Upstream service latency",
+      "title": "Upstream Service Latency",
       "tooltip": {
         "shared": true,
-        "sort": 0,
+        "sort": 2,
         "value_type": "individual"
       },
       "type": "graph",
       "xaxis": {
-        "buckets": null,
         "mode": "time",
-        "name": null,
         "show": true,
         "values": []
       },
       "yaxes": [
         {
           "format": "s",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         },
         {
           "format": "short",
-          "label": null,
           "logBase": 1,
-          "max": null,
-          "min": null,
           "show": true
         }
       ],
       "yaxis": {
-        "align": false,
-        "alignLevel": null
+        "align": false
       }
     }
   ],
   "refresh": "30s",
-  "schemaVersion": 22,
+  "schemaVersion": 34,
   "style": "dark",
   "tags": [
     "nginx"
@@ -912,19 +903,29 @@
   "templating": {
     "list": [
       {
+        "current": {
+          "selected": false,
+          "text": "Prometheus",
+          "value": "Prometheus"
+        },
         "hide": 0,
+        "includeAll": false,
         "label": "datasource",
+        "multi": false,
         "name": "DS_PROMETHEUS",
         "options": [],
         "query": "prometheus",
         "refresh": 1,
         "regex": "",
+        "skipUrlSync": false,
         "type": "datasource"
       },
       {
         "allValue": ".*",
         "current": {},
-        "datasource": "${DS_PROMETHEUS}",
+        "datasource": {
+          "uid": "${DS_PROMETHEUS}"
+        },
         "definition": "label_values(nginx_ingress_controller_requests, ingress) ",
         "hide": 0,
         "includeAll": true,
@@ -932,13 +933,15 @@
         "multi": false,
         "name": "ingress",
         "options": [],
-        "query": "label_values(nginx_ingress_controller_requests, ingress) ",
+        "query": {
+          "query": "label_values(nginx_ingress_controller_requests, ingress) ",
+          "refId": "Prometheus-ingress-Variable-Query"
+        },
         "refresh": 1,
         "regex": "",
         "skipUrlSync": false,
         "sort": 2,
         "tagValuesQuery": "",
-        "tags": [],
         "tagsQuery": "",
         "type": "query",
         "useTags": false
@@ -977,5 +980,6 @@
   "timezone": "browser",
   "title": "Request Handling Performance",
   "uid": "4GFbkOsZk",
-  "version": 1
+  "version": 1,
+  "weekStart": ""
 }

From 1a8c70d1d9572a5e9491b9c4deab39e1b1812f64 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Tue, 12 Apr 2022 18:42:46 -0300
Subject: [PATCH 0144/1641] Prepare v1.2.0-beta.0 release (#8464)

---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 99a4aef0c..031636768 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.1.3
+v1.2.0-beta.0

From e86e7eebf551d85b8ac1d0b91a87d4810d89fcf6 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Thu, 14 Apr 2022 11:04:47 +0800
Subject: [PATCH 0145/1641] chore: v1.2.0-beta.0 release (#8465)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 Changelog.md                     | 29 +++++++++++++++++++++++++++++
 charts/ingress-nginx/Chart.yaml  | 19 ++++++++++++-------
 charts/ingress-nginx/README.md   |  7 ++++---
 charts/ingress-nginx/values.yaml |  6 +++---
 4 files changed, 48 insertions(+), 13 deletions(-)

diff --git a/Changelog.md b/Changelog.md
index 0ef69197d..8921ee6c4 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -1,5 +1,34 @@
 # Changelog
 
+### 1.2.0-beta.0
+
+**Image:**
+- k8s.gcr.io/ingress-nginx/controller:v1.2.0-beta.0@sha256:92115f5062568ebbcd450cd2cf9bffdef8df9fc61e7d5868ba8a7c9d773e0961
+- k8s.gcr.io/ingress-nginx/controller-chroot:v1.2.0-beta.0@sha256:0082f0f547b147a30ad85a5d6d2ceb3edbf0848b2008ed754365b6678bdea9a5
+
+This release introduces Jail/chroot nginx process inside controller container for the first time
+
+_Changes:_
+
+- [8417](https://github.com/kubernetes/ingress-nginx/pull/8417) force helm release to artifact hub
+- [8421](https://github.com/kubernetes/ingress-nginx/pull/8421) fix change log changes list
+- [8405](https://github.com/kubernetes/ingress-nginx/pull/8405) kubectl-plugin code overview info
+- [8399](https://github.com/kubernetes/ingress-nginx/pull/8399) Darwin arm64
+- [8443](https://github.com/kubernetes/ingress-nginx/pull/8443) Add dependency review enforcement
+- [8426](https://github.com/kubernetes/ingress-nginx/pull/8426) Bump github.com/prometheus/common from 0.32.1 to 0.33.0
+- [8444](https://github.com/kubernetes/ingress-nginx/pull/8444) replace deprecated topology key in example with current one
+- [8447](https://github.com/kubernetes/ingress-nginx/pull/8447) typo fixing
+- [8446](https://github.com/kubernetes/ingress-nginx/pull/8446) Fix suggested annotation-value-word-blocklist
+- [8219](https://github.com/kubernetes/ingress-nginx/pull/8219) Add keepalive support for auth requests
+- [8337](https://github.com/kubernetes/ingress-nginx/pull/8337) Jail/chroot nginx process inside controller container
+- [8454](https://github.com/kubernetes/ingress-nginx/pull/8454) Update index.md
+- [8455](https://github.com/kubernetes/ingress-nginx/pull/8455) Update dependencies
+- [8456](https://github.com/kubernetes/ingress-nginx/pull/8456) Implement object deep inspector
+- [8325](https://github.com/kubernetes/ingress-nginx/pull/8325) Fix for buggy ingress sync with retries
+- [8322](https://github.com/kubernetes/ingress-nginx/pull/8322) Improve req handling dashboard
+- [8464](https://github.com/kubernetes/ingress-nginx/pull/8464) Prepare v1.2.0-beta.0 release
+
+
 ### 1.1.3
 
 **Image:**
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index bf9006e58..fdd9af270 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,8 +2,8 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.0.19
-appVersion: 1.1.3
+version: 4.1.0-beta.0
+appVersion: 1.2.0-beta.0
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
@@ -22,11 +22,16 @@ kubeVersion: ">=1.19.0-0"
 annotations:
   # Use this annotation to indicate that this chart version is a pre-release.
   # https://artifacthub.io/docs/topics/annotations/helm/
-  artifacthub.io/prerelease: "false"
+  artifacthub.io/prerelease: "true"
   # List of changes for the release in artifacthub.io
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
-    - "#8307 Nginx v1.19.10"
-    - "#8386 Alpine 3.14.4"
-    - "#8339 Patch OpenSSL CVE-2022-0778"
-    - "#8321 Vulnerability CVE-2022-23308 for libxml2"
+    - "#8426	Bump github.com/prometheus/common from 0.32.1 to 0.33.0"
+    - "#8444	replace deprecated topology key in example with current one"
+    - "#8446	Fix suggested annotation-value-word-blocklist"
+    - "#8219    Add keepalive support for auth requests"
+    - "#8337	Jail/chroot nginx process inside controller container"
+    - "#8455	Update dependencies"
+    - "#8456	Implement object deep inspector"
+    - "#8325	Fix for buggy ingress sync with retries"
+    - "#8322	Improve req handling dashboard"
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index c6887521c..d34943edd 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.0.19](https://img.shields.io/badge/Version-4.0.19-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.1.3](https://img.shields.io/badge/AppVersion-1.1.3-informational?style=flat-square)
+![Version: 4.1.0-beta.0](https://img.shields.io/badge/Version-4.1.0--beta.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.0-beta.0](https://img.shields.io/badge/AppVersion-1.2.0--beta.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -307,12 +307,13 @@ Kubernetes: `>=1.19.0-0`
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2"` |  |
+| controller.image.digest | string | `"sha256:92115f5062568ebbcd450cd2cf9bffdef8df9fc61e7d5868ba8a7c9d773e0961"` |  |
+| controller.image.digestChroot | string | `"sha256:0082f0f547b147a30ad85a5d6d2ceb3edbf0848b2008ed754365b6678bdea9a5"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"k8s.gcr.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.1.3"` |  |
+| controller.image.tag | string | `"v1.2.0-beta.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 500b2bb53..d3d2ef693 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -23,9 +23,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.1.3"
-    digest: sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
-    # digestChroot: "" # TODO: Fill when we have it
+    tag: "v1.2.0-beta.0"
+    digest: sha256:92115f5062568ebbcd450cd2cf9bffdef8df9fc61e7d5868ba8a7c9d773e0961
+    digestChroot: sha256:0082f0f547b147a30ad85a5d6d2ceb3edbf0848b2008ed754365b6678bdea9a5
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101

From db4aeea723dcb4d8c21d8426f4e21e5f52eec2f1 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Filip=20Havl=C3=AD=C4=8Dek?= <filip.havlicek@livesport.eu>
Date: Thu, 14 Apr 2022 05:06:48 +0200
Subject: [PATCH 0146/1641] Fallback to ngx.var.scheme for redirectScheme with
 use-forward-headers when X-Forwarded-Proto is empty (#8468)

---
 rootfs/etc/nginx/template/nginx.tmpl | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index eaaf60c65..b845988ad 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -591,7 +591,12 @@ http {
             end
 
             {{ if $cfg.UseForwardedHeaders }}
-            local redirectScheme = ngx.var.http_x_forwarded_proto
+            local redirectScheme
+            if not ngx.var.http_x_forwarded_proto then
+                redirectScheme = ngx.var.scheme
+            else
+                redirectScheme = ngx.var.http_x_forwarded_proto
+            end
             {{ else }}
             local redirectScheme = ngx.var.scheme
             {{ end }}

From d4b9b486e680fab8d78a078f24c96a3f378124f6 Mon Sep 17 00:00:00 2001
From: sskserk <78915702+sskserk@users.noreply.github.com>
Date: Fri, 15 Apr 2022 13:09:10 +0200
Subject: [PATCH 0147/1641] Upstream keepalive time (#8319)

* nginx 1.19.10 keepalive_time parameter

* nginx v1.19.10 base image

* keepalive_time documentation

* base image

* restore base image

* e2e test

* replace default value in test
---
 .../user-guide/nginx-configuration/configmap.md | 17 +++++++++++++----
 internal/ingress/controller/config/config.go    |  5 +++++
 rootfs/etc/nginx/template/nginx.tmpl            |  4 ++--
 test/e2e/settings/keep-alive.go                 |  9 +++++++++
 4 files changed, 29 insertions(+), 6 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 27ef647ef..6cec6f02f 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -111,6 +111,7 @@ The following table shows a configuration option's name, type, and the default v
 |[variables-hash-bucket-size](#variables-hash-bucket-size)|int|128|
 |[variables-hash-max-size](#variables-hash-max-size)|int|2048|
 |[upstream-keepalive-connections](#upstream-keepalive-connections)|int|320|
+|[upstream-keepalive-time](#upstream-keepalive-time)|string|"1h"|
 |[upstream-keepalive-timeout](#upstream-keepalive-timeout)|int|60|
 |[upstream-keepalive-requests](#upstream-keepalive-requests)|int|10000|
 |[limit-conn-zone-variable](#limit-conn-zone-variable)|string|"$binary_remote_addr"|
@@ -223,13 +224,13 @@ Enables the return of the header Server from the backend instead of the generic
 
 Enables Ingress to parse and add *-snippet annotations/directives created by the user. _**default:**_ `true`
 
-Warning: We recommend enabling this option only if you TRUST users with permission to create Ingress objects, as this 
+Warning: We recommend enabling this option only if you TRUST users with permission to create Ingress objects, as this
 may allow a user to add restricted configurations to the final nginx.conf file
 
 ## annotation-value-word-blocklist
 
-Contains a comma-separated value of chars/words that are well known of being used to abuse Ingress configuration 
-and must be blocked. Related to [CVE-2021-25742](https://github.com/kubernetes/ingress-nginx/issues/7837) 
+Contains a comma-separated value of chars/words that are well known of being used to abuse Ingress configuration
+and must be blocked. Related to [CVE-2021-25742](https://github.com/kubernetes/ingress-nginx/issues/7837)
 
 When an annotation is detected with a value that matches one of the blocked bad words, the whole Ingress won't be configured.
 
@@ -769,6 +770,14 @@ _References:_
 [https://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive](https://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive)
 
 
+## upstream-keepalive-time
+
+Sets the maximum time during which requests can be processed through one keepalive connection.
+ _**default:**_ "1h"
+
+_References:_
+[http://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive_time](http://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive_time)
+
 ## upstream-keepalive-timeout
 
 Sets a timeout during which an idle keepalive connection to an upstream server will stay open.
@@ -1258,7 +1267,7 @@ Configure `memcached` client for [Global Rate Limiting](https://github.com/kuber
 * `global-rate-limit-memcached-host`: IP/FQDN of memcached server to use. Required to enable Global Rate Limiting.
 * `global-rate-limit-memcached-port`: port of memcached server to use. Defaults default memcached port of `11211`.
 * `global-rate-limit-memcached-connect-timeout`: configure timeout for connect, send and receive operations. Unit is millisecond. Defaults to 50ms.
-* `global-rate-limit-memcached-max-idle-timeout`: configure timeout for cleaning idle connections. Unit is millisecond. Defaults to 50ms. 
+* `global-rate-limit-memcached-max-idle-timeout`: configure timeout for cleaning idle connections. Unit is millisecond. Defaults to 50ms.
 * `global-rate-limit-memcached-pool-size`: configure number of max connections to keep alive. Make sure your `memcached` server can handle
 `global-rate-limit-memcached-pool-size * worker-processes * <number of ingress-nginx replicas>` simultaneous connections.
 
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 4afb3e9f5..f0dfdc191 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -468,6 +468,10 @@ type Configuration struct {
 	// http://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive
 	UpstreamKeepaliveConnections int `json:"upstream-keepalive-connections,omitempty"`
 
+	// Sets the maximum time during which requests can be processed through one keepalive connection
+	// https://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive_time
+	UpstreamKeepaliveTime string `json:"upstream-keepalive-time,omitempty"`
+
 	// Sets a timeout during which an idle keepalive connection to an upstream server will stay open.
 	// http://nginx.org/en/docs/http/ngx_http_upstream_module.html#keepalive_timeout
 	UpstreamKeepaliveTimeout int `json:"upstream-keepalive-timeout,omitempty"`
@@ -892,6 +896,7 @@ func NewDefault() Configuration {
 			ServiceUpstream:          false,
 		},
 		UpstreamKeepaliveConnections:           320,
+		UpstreamKeepaliveTime:                  "1h",
 		UpstreamKeepaliveTimeout:               60,
 		UpstreamKeepaliveRequests:              10000,
 		LimitConnZoneVariable:                  defaultLimitConnZoneVariable,
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index b845988ad..1ad8458c5 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -156,7 +156,7 @@ http {
     {{ else }}
     modsecurity_rules_file /etc/nginx/modsecurity/modsecurity.conf;
     {{ end }}
-    
+
     {{ if $all.Cfg.EnableOWASPCoreRules }}
     modsecurity_rules_file /etc/nginx/owasp-modsecurity-crs/nginx-modsecurity.conf;
     {{ end }}
@@ -508,7 +508,7 @@ http {
 
         {{ if (gt $cfg.UpstreamKeepaliveConnections 0) }}
         keepalive {{ $cfg.UpstreamKeepaliveConnections }};
-
+        keepalive_time {{ $cfg.UpstreamKeepaliveTime }};
         keepalive_timeout  {{ $cfg.UpstreamKeepaliveTimeout }}s;
         keepalive_requests {{ $cfg.UpstreamKeepaliveRequests }};
         {{ end }}
diff --git a/test/e2e/settings/keep-alive.go b/test/e2e/settings/keep-alive.go
index 5a2b5189e..6ef09b78c 100644
--- a/test/e2e/settings/keep-alive.go
+++ b/test/e2e/settings/keep-alive.go
@@ -74,6 +74,15 @@ var _ = framework.DescribeSetting("keep-alive keep-alive-requests", func() {
 			})
 		})
 
+		ginkgo.It("should set keepalive time to upstream server", func() {
+			f.UpdateNginxConfigMapData("upstream-keepalive-time", "75s")
+
+			f.WaitForNginxConfiguration(func(server string) bool {
+				match, _ := regexp.MatchString(`upstream\supstream_balancer\s\{[\s\S]*keepalive_time\s*75s;`, server)
+				return match
+			})
+		})
+
 		ginkgo.It("should set the request count to upstream server through one keep alive connection", func() {
 			f.UpdateNginxConfigMapData("upstream-keepalive-requests", "200")
 

From 81c2afd975a6f9a9847184472286044d7d5296f6 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Fri, 15 Apr 2022 16:53:12 -0300
Subject: [PATCH 0148/1641] update base images and protobuf gomod (#8478)

---
 go.mod                                                      | 2 +-
 go.sum                                                      | 3 ++-
 images/custom-error-pages/rootfs/go.mod                     | 4 ++--
 images/custom-error-pages/rootfs/go.sum                     | 6 ++++--
 images/nginx/rootfs/Dockerfile                              | 4 ++--
 images/opentelemetry/rootfs/Dockerfile                      | 4 ++--
 rootfs/Dockerfile.chroot                                    | 2 +-
 test/e2e-image/Dockerfile                                   | 2 +-
 test/e2e-image/namespace-overlays/admission/values.yaml     | 1 +
 .../namespace-overlays/custom-health-check-path/values.yaml | 1 +
 .../namespace-overlays/forwarded-port-headers/values.yaml   | 1 +
 .../namespace-overlays/namespace-selector/values.yaml       | 1 +
 test/e2e/wait-for-nginx.sh                                  | 1 +
 13 files changed, 20 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index 62a71d20a..0a4befb3e 100644
--- a/go.mod
+++ b/go.mod
@@ -128,7 +128,7 @@ require (
 	golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2 // indirect
-	google.golang.org/protobuf v1.27.1 // indirect
+	google.golang.org/protobuf v1.28.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 // indirect
diff --git a/go.sum b/go.sum
index 9e12fbaed..29455a435 100644
--- a/go.sum
+++ b/go.sum
@@ -1078,8 +1078,9 @@ google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGj
 google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.27.1 h1:SnqbnDw1V7RiZcXPx5MEeqPv2s79L9i7BJUlG/+RurQ=
 google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
+google.golang.org/protobuf v1.28.0 h1:w43yiav+6bVFTBQFZX0r7ipe9JQ1QsbMgHwbBziscLw=
+google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 3040c5791..dec3b7bbb 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -7,11 +7,11 @@ require github.com/prometheus/client_golang v1.11.0
 require (
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/cespare/xxhash/v2 v2.1.1 // indirect
-	github.com/golang/protobuf v1.4.3 // indirect
+	github.com/golang/protobuf v1.5.0 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.1 // indirect
 	github.com/prometheus/client_model v0.2.0 // indirect
 	github.com/prometheus/common v0.26.0 // indirect
 	github.com/prometheus/procfs v0.6.0 // indirect
 	golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40 // indirect
-	google.golang.org/protobuf v1.26.0-rc.1 // indirect
+	google.golang.org/protobuf v1.28.0 // indirect
 )
diff --git a/images/custom-error-pages/rootfs/go.sum b/images/custom-error-pages/rootfs/go.sum
index 6a42e5c54..87cd96b26 100644
--- a/images/custom-error-pages/rootfs/go.sum
+++ b/images/custom-error-pages/rootfs/go.sum
@@ -29,8 +29,9 @@ github.com/golang/protobuf v1.4.0-rc.2/go.mod h1:LlEzMj4AhA7rCAGe4KMBDvJI+AwstrU
 github.com/golang/protobuf v1.4.0-rc.4.0.20200313231945-b860323f09d0/go.mod h1:WU3c8KckQ9AFe+yFwt9sWVRKCVIyN9cPHBJSNnbL67w=
 github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvqG2KuDX0=
 github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
-github.com/golang/protobuf v1.4.3 h1:JjCZWpVbqXDqFVmTfYWEVTMIYrL/NPdPSCHPJ0T/raM=
 github.com/golang/protobuf v1.4.3/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
+github.com/golang/protobuf v1.5.0 h1:LUVKkCeviFUMKqHa4tXIIij/lbhnMbP7Fn5wKdKkRh4=
+github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
@@ -126,8 +127,9 @@ google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQ
 google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miEFZTKqfCUM6K7xSMQL9OKL/b6hQv+e19PK+JZNE=
 google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo=
 google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
-google.golang.org/protobuf v1.26.0-rc.1 h1:7QnIQpGRHE5RnLKnESfDoxm2dTapTZua5a0kS0A+VXQ=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
+google.golang.org/protobuf v1.28.0 h1:w43yiav+6bVFTBQFZX0r7ipe9JQ1QsbMgHwbBziscLw=
+google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index ccf70f143..75c63cff1 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.14.4 as builder
+FROM alpine:3.14.6 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.14.4
+FROM alpine:3.14.6
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index 84f5a3e7c..ebf288c56 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.14.4 as builder
+FROM alpine:3.14.6 as builder
 
 COPY . /
 
@@ -22,7 +22,7 @@ RUN apk update \
 	&& apk add -U bash \
 	&& /build.sh
 
-FROM busybox:latest 
+FROM alpine:3.14.6 
 
 COPY --from=builder init_module.sh /usr/local/bin/init_module.sh
 COPY --from=builder /etc/nginx/modules /etc/nginx/modules
diff --git a/rootfs/Dockerfile.chroot b/rootfs/Dockerfile.chroot
index 53f8e3622..7055f06fc 100644
--- a/rootfs/Dockerfile.chroot
+++ b/rootfs/Dockerfile.chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.14.2
+FROM alpine:3.14.6
 
 ARG TARGETARCH
 ARG VERSION
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 002a002cd..c8a07f294 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,6 +1,6 @@
 FROM k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220331-controller-v1.1.2-31-gf1cb2b73c@sha256:baa326f5c726d65be828852943a259c1f0572883590b9081b7e8fa982d64d96e AS BASE
 
-FROM alpine:3.14.4
+FROM alpine:3.14.6
 
 RUN apk add -U --no-cache \
   ca-certificates \
diff --git a/test/e2e-image/namespace-overlays/admission/values.yaml b/test/e2e-image/namespace-overlays/admission/values.yaml
index 1f0367671..d423217db 100644
--- a/test/e2e-image/namespace-overlays/admission/values.yaml
+++ b/test/e2e-image/namespace-overlays/admission/values.yaml
@@ -6,6 +6,7 @@ controller:
     chroot: true
     tag: 1.0.0-dev
     digest:
+    digestChroot:
   containerPort:
     http: "1080"
     https: "1443"
diff --git a/test/e2e-image/namespace-overlays/custom-health-check-path/values.yaml b/test/e2e-image/namespace-overlays/custom-health-check-path/values.yaml
index 7507d60db..4c6bef855 100644
--- a/test/e2e-image/namespace-overlays/custom-health-check-path/values.yaml
+++ b/test/e2e-image/namespace-overlays/custom-health-check-path/values.yaml
@@ -6,6 +6,7 @@ controller:
     chroot: true
     tag: 1.0.0-dev
     digest:
+    digestChroot:
   extraArgs:
     healthz-port: "9090"
     # e2e tests do not require information about ingress status
diff --git a/test/e2e-image/namespace-overlays/forwarded-port-headers/values.yaml b/test/e2e-image/namespace-overlays/forwarded-port-headers/values.yaml
index e0b8003d2..68b4a074c 100644
--- a/test/e2e-image/namespace-overlays/forwarded-port-headers/values.yaml
+++ b/test/e2e-image/namespace-overlays/forwarded-port-headers/values.yaml
@@ -6,6 +6,7 @@ controller:
     chroot: true
     tag: 1.0.0-dev
     digest:
+    digestChroot:
   containerPort:
     http: "1080"
     https: "1443"
diff --git a/test/e2e-image/namespace-overlays/namespace-selector/values.yaml b/test/e2e-image/namespace-overlays/namespace-selector/values.yaml
index 06252da6f..2c8957f66 100644
--- a/test/e2e-image/namespace-overlays/namespace-selector/values.yaml
+++ b/test/e2e-image/namespace-overlays/namespace-selector/values.yaml
@@ -6,6 +6,7 @@ controller:
     chroot: true
     tag: 1.0.0-dev
     digest:
+    digestChroot:
   containerPort:
     http: "1080"
     https: "1443"
diff --git a/test/e2e/wait-for-nginx.sh b/test/e2e/wait-for-nginx.sh
index ed2e04426..190f71e6d 100755
--- a/test/e2e/wait-for-nginx.sh
+++ b/test/e2e/wait-for-nginx.sh
@@ -62,6 +62,7 @@ controller:
     chroot: true
     tag: 1.0.0-dev
     digest:
+    digestChroot:
   scope:
     enabled: true
   config:

From f9372aa4955eb608bd0d0899455bc5a5653e35bb Mon Sep 17 00:00:00 2001
From: Chris Shino <47957189+chrisshino@users.noreply.github.com>
Date: Fri, 15 Apr 2022 15:59:10 -0400
Subject: [PATCH 0149/1641] added new auth-tls-match-cn annotation (#8434)

* added new auth-tls-match-cn annotation

* added few more tests
---
 .../nginx-configuration/annotations.md        |  2 +
 internal/ingress/annotations/authtls/main.go  |  8 ++
 .../ingress/annotations/authtls/main_test.go  | 11 +++
 rootfs/etc/nginx/template/nginx.tmpl          |  8 ++
 test/e2e/annotations/authtls.go               | 87 +++++++++++++++++++
 5 files changed, 116 insertions(+)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 8958ccfee..6309601b2 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -28,6 +28,7 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/auth-tls-verify-client](#client-certificate-authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-tls-error-page](#client-certificate-authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-tls-pass-certificate-to-upstream](#client-certificate-authentication)|"true" or "false"|
+|[nginx.ingress.kubernetes.io/auth-tls-match-cn](#client-certificate-authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-url](#external-authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-cache-key](#external-authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-cache-duration](#external-authentication)|string|
@@ -264,6 +265,7 @@ You can further customize client certificate authentication and behavior with th
     * `optional_no_ca`: Do optional client certificate validation, but do not fail the request when the client certificate is not signed by the CAs from `auth-tls-secret`. Certificate verification result is sent to the upstream service.
 * `nginx.ingress.kubernetes.io/auth-tls-error-page`: The URL/Page that user should be redirected in case of a Certificate Authentication Error
 * `nginx.ingress.kubernetes.io/auth-tls-pass-certificate-to-upstream`: Indicates if the received certificates should be passed or not to the upstream server in the header `ssl-client-cert`. Possible values are "true" or "false" (default).
+* `nginx.ingress.kubernetes.io/auth-tls-match-cn`: Adds a sanity check for the CN of the client certificate that is sent over using a string / regex starting with "CN=", example: `"CN=myvalidclient"`. If the certificate CN sent during mTLS does not match your string / regex it will fail with status code 403. Another way of using this is by adding multiple options in your regex, example: `"CN=(option1|option2|myvalidclient)"`. In this case, as long as one of the options in the brackets matches the certificate CN then you will receive a 200 status code. 
 
 The following headers are sent to the upstream service according to the `auth-tls-*` annotations:
 
diff --git a/internal/ingress/annotations/authtls/main.go b/internal/ingress/annotations/authtls/main.go
index cbe014c4a..2efd6d176 100644
--- a/internal/ingress/annotations/authtls/main.go
+++ b/internal/ingress/annotations/authtls/main.go
@@ -18,6 +18,7 @@ package authtls
 
 import (
 	"fmt"
+
 	networking "k8s.io/api/networking/v1"
 
 	"regexp"
@@ -35,6 +36,7 @@ const (
 
 var (
 	authVerifyClientRegex = regexp.MustCompile(`on|off|optional|optional_no_ca`)
+	commonNameRegex       = regexp.MustCompile(`CN=`)
 )
 
 // Config contains the AuthSSLCert used for mutual authentication
@@ -45,6 +47,7 @@ type Config struct {
 	ValidationDepth    int    `json:"validationDepth"`
 	ErrorPage          string `json:"errorPage"`
 	PassCertToUpstream bool   `json:"passCertToUpstream"`
+	MatchCN            string `json:"matchCN"`
 	AuthTLSError       string
 }
 
@@ -127,5 +130,10 @@ func (a authTLS) Parse(ing *networking.Ingress) (interface{}, error) {
 		config.PassCertToUpstream = false
 	}
 
+	config.MatchCN, err = parser.GetStringAnnotation("auth-tls-match-cn", ing)
+	if err != nil || !commonNameRegex.MatchString(config.MatchCN) {
+		config.MatchCN = ""
+	}
+
 	return config, nil
 }
diff --git a/internal/ingress/annotations/authtls/main_test.go b/internal/ingress/annotations/authtls/main_test.go
index f7649fe1c..569f3865b 100644
--- a/internal/ingress/annotations/authtls/main_test.go
+++ b/internal/ingress/annotations/authtls/main_test.go
@@ -128,11 +128,15 @@ func TestAnnotations(t *testing.T) {
 	if u.PassCertToUpstream != false {
 		t.Errorf("expected %v but got %v", false, u.PassCertToUpstream)
 	}
+	if u.MatchCN != "" {
+		t.Errorf("expected empty string, but got %v", u.MatchCN)
+	}
 
 	data[parser.GetAnnotationWithPrefix("auth-tls-verify-client")] = "off"
 	data[parser.GetAnnotationWithPrefix("auth-tls-verify-depth")] = "2"
 	data[parser.GetAnnotationWithPrefix("auth-tls-error-page")] = "ok.com/error"
 	data[parser.GetAnnotationWithPrefix("auth-tls-pass-certificate-to-upstream")] = "true"
+	data[parser.GetAnnotationWithPrefix("auth-tls-match-cn")] = "CN=hello-app"
 
 	ing.SetAnnotations(data)
 
@@ -161,6 +165,9 @@ func TestAnnotations(t *testing.T) {
 	if u.PassCertToUpstream != true {
 		t.Errorf("expected %v but got %v", true, u.PassCertToUpstream)
 	}
+	if u.MatchCN != "CN=hello-app" {
+		t.Errorf("expected %v but got %v", "CN=hello-app", u.MatchCN)
+	}
 }
 
 func TestInvalidAnnotations(t *testing.T) {
@@ -195,6 +202,7 @@ func TestInvalidAnnotations(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix("auth-tls-verify-client")] = "w00t"
 	data[parser.GetAnnotationWithPrefix("auth-tls-verify-depth")] = "abcd"
 	data[parser.GetAnnotationWithPrefix("auth-tls-pass-certificate-to-upstream")] = "nahh"
+	data[parser.GetAnnotationWithPrefix("auth-tls-match-cn")] = "<script>nope</script>"
 	ing.SetAnnotations(data)
 
 	i, err := NewParser(fakeSecret).Parse(ing)
@@ -215,6 +223,9 @@ func TestInvalidAnnotations(t *testing.T) {
 	if u.PassCertToUpstream != false {
 		t.Errorf("expected %v but got %v", false, u.PassCertToUpstream)
 	}
+	if u.MatchCN != "" {
+		t.Errorf("expected empty string but got %v", u.MatchCN)
+	}
 
 }
 
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 1ad8458c5..a181dd22a 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -946,6 +946,14 @@ stream {
 
         set $proxy_upstream_name "-";
 
+        {{ if not ( empty $server.CertificateAuth.MatchCN ) }}
+        {{ if gt (len $server.CertificateAuth.MatchCN) 0 }}  
+        if ( $ssl_client_s_dn !~ {{ $server.CertificateAuth.MatchCN }} ) {
+            return 403 "client certificate unauthorized";
+        }
+        {{ end }}
+        {{ end }}
+
         {{ if eq $server.Hostname "_" }}
         ssl_reject_handshake {{ if $all.Cfg.SSLRejectHandshake }}on{{ else }}off{{ end }};
         {{ end }}
diff --git a/test/e2e/annotations/authtls.go b/test/e2e/annotations/authtls.go
index 790165475..dbf4f2a76 100644
--- a/test/e2e/annotations/authtls.go
+++ b/test/e2e/annotations/authtls.go
@@ -262,6 +262,93 @@ var _ = framework.DescribeAnnotation("auth-tls-*", func() {
 			Status(http.StatusOK)
 
 	})
+
+	ginkgo.It("should return 403 using auth-tls-match-cn with no matching CN from client", func() {
+		host := "authtls.foo.com"
+		nameSpace := f.Namespace
+
+		clientConfig, err := framework.CreateIngressMASecret(
+			f.KubeClientSet,
+			host,
+			host,
+			nameSpace)
+		assert.Nil(ginkgo.GinkgoT(), err)
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/auth-tls-secret":        nameSpace + "/" + host,
+			"nginx.ingress.kubernetes.io/auth-tls-verify-client": "on",
+			"nginx.ingress.kubernetes.io/auth-tls-match-cn":      "CN=notgonnamatch",
+		}
+
+		f.EnsureIngress(framework.NewSingleIngressWithTLS(host, "/", host, []string{host}, nameSpace, framework.EchoService, 80, annotations))
+
+		assertSslClientCertificateConfig(f, host, "on", "1")
+
+		f.HTTPTestClientWithTLSConfig(clientConfig).
+			GET("/").
+			WithURL(f.GetURL(framework.HTTPS)).
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusForbidden)
+	})
+
+	ginkgo.It("should return 200 using auth-tls-match-cn with matching CN from client", func() {
+		host := "authtls.foo.com"
+		nameSpace := f.Namespace
+
+		clientConfig, err := framework.CreateIngressMASecret(
+			f.KubeClientSet,
+			host,
+			host,
+			nameSpace)
+		assert.Nil(ginkgo.GinkgoT(), err)
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/auth-tls-secret":        nameSpace + "/" + host,
+			"nginx.ingress.kubernetes.io/auth-tls-verify-client": "on",
+			"nginx.ingress.kubernetes.io/auth-tls-match-cn":      "CN=authtls",
+		}
+
+		f.EnsureIngress(framework.NewSingleIngressWithTLS(host, "/", host, []string{host}, nameSpace, framework.EchoService, 80, annotations))
+
+		assertSslClientCertificateConfig(f, host, "on", "1")
+
+		f.HTTPTestClientWithTLSConfig(clientConfig).
+			GET("/").
+			WithURL(f.GetURL(framework.HTTPS)).
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+	})
+
+	ginkgo.It("should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client", func() {
+		host := "authtls.foo.com"
+		nameSpace := f.Namespace
+
+		clientConfig, err := framework.CreateIngressMASecret(
+			f.KubeClientSet,
+			host,
+			host,
+			nameSpace)
+		assert.Nil(ginkgo.GinkgoT(), err)
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/auth-tls-secret":        nameSpace + "/" + host,
+			"nginx.ingress.kubernetes.io/auth-tls-verify-client": "on",
+			"nginx.ingress.kubernetes.io/auth-tls-match-cn":      "CN=(itwillmatch|withthenextoption|authtls)",
+		}
+
+		f.EnsureIngress(framework.NewSingleIngressWithTLS(host, "/", host, []string{host}, nameSpace, framework.EchoService, 80, annotations))
+
+		assertSslClientCertificateConfig(f, host, "on", "1")
+
+		f.HTTPTestClientWithTLSConfig(clientConfig).
+			GET("/").
+			WithURL(f.GetURL(framework.HTTPS)).
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+	})
 })
 
 func assertSslClientCertificateConfig(f *framework.Framework, host string, verifyClient string, verifyDepth string) {

From 2e1a4790bb09232dc135d92b6633680bbbacb862 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sat, 16 Apr 2022 10:07:10 +0530
Subject: [PATCH 0150/1641] changed nginx base img tag to img built with
 alpine3.14.6 (#8479)

---
 Makefile                                                        | 2 +-
 .../customization/custom-errors/custom-default-backend.yaml     | 2 +-
 images/echo/Makefile                                            | 2 +-
 images/nginx/README.md                                          | 2 +-
 images/nginx/rc.yaml                                            | 2 +-
 images/test-runner/Makefile                                     | 2 +-
 test/e2e/framework/deployment.go                                | 2 +-
 7 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/Makefile b/Makefile
index 58a3e95c5..935035e27 100644
--- a/Makefile
+++ b/Makefile
@@ -55,7 +55,7 @@ endif
 
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
-BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:5402d35663917ccbbf77ff48a22b8c6f77097f48@sha256:ec8a104df307f5c6d68157b7ac8e5e1e2c2f0ea07ddf25bb1c6c43c67e351180
+BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:81c2afd975a6f9a9847184472286044d7d5296f6@sha256:a71ac64dd8cfd68341ba47dbdc4d8c2cb91325fce669875193ea0319118201b5
 
 GOARCH=$(ARCH)
 
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.yaml b/docs/examples/customization/custom-errors/custom-default-backend.yaml
index 4b40d36e7..70dc91681 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.yaml
@@ -36,7 +36,7 @@ spec:
     spec:
       containers:
       - name: nginx-error-server
-        image: k8s.gcr.io/ingress-nginx/nginx-errors:0.48.1
+        image: k8s.gcr.io/ingress-nginx/nginx-errors:0.49.0
         ports:
         - containerPort: 8080
         # Setting the environment variable DEBUG we can see the headers sent 
diff --git a/images/echo/Makefile b/images/echo/Makefile
index 01d532731..e4f3d7861 100644
--- a/images/echo/Makefile
+++ b/images/echo/Makefile
@@ -36,7 +36,7 @@ build: ensure-buildx
 		--platform=${PLATFORMS} $(OUTPUT) \
 		--progress=$(PROGRESS) \
 		--pull \
-		--build-arg BASE_IMAGE=k8s.gcr.io/ingress-nginx/nginx:5402d35663917ccbbf77ff48a22b8c6f77097f48@sha256:ec8a104df307f5c6d68157b7ac8e5e1e2c2f0ea07ddf25bb1c6c43c67e351180 \
+		--build-arg BASE_IMAGE=k8s.gcr.io/ingress-nginx/nginx:81c2afd975a6f9a9847184472286044d7d5296f6@sha256:a71ac64dd8cfd68341ba47dbdc4d8c2cb91325fce669875193ea0319118201b5 \
 		--build-arg LUAROCKS_VERSION=3.8.0 \
 		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
 		-t $(IMAGE):$(TAG) rootfs
diff --git a/images/nginx/README.md b/images/nginx/README.md
index 8bd1469dd..58323cdd0 100644
--- a/images/nginx/README.md
+++ b/images/nginx/README.md
@@ -20,6 +20,6 @@ This image provides a default configuration file with no backend servers.
 _Using docker_
 
 ```console
-docker run -v /some/nginx.conf:/etc/nginx/nginx.conf:ro k8s.gcr.io/ingress-nginx/nginx:5402d35663917ccbbf77ff48a22b8c6f77097f48@sha256:ec8a104df307f5c6d68157b7ac8e5e1e2c2f0ea07ddf25bb1c6c43c67e351180
+docker run -v /some/nginx.conf:/etc/nginx/nginx.conf:ro k8s.gcr.io/ingress-nginx/nginx:81c2afd975a6f9a9847184472286044d7d5296f6@sha256:a71ac64dd8cfd68341ba47dbdc4d8c2cb91325fce669875193ea0319118201b5
 ```
 
diff --git a/images/nginx/rc.yaml b/images/nginx/rc.yaml
index cf9c59d15..43dbff1a6 100644
--- a/images/nginx/rc.yaml
+++ b/images/nginx/rc.yaml
@@ -38,7 +38,7 @@ spec:
     spec:
       containers:
         - name: nginx
-          image: k8s.gcr.io/ingress-nginx/nginx:5402d35663917ccbbf77ff48a22b8c6f77097f48@sha256:ec8a104df307f5c6d68157b7ac8e5e1e2c2f0ea07ddf25bb1c6c43c67e351180
+          image: k8s.gcr.io/ingress-nginx/nginx:81c2afd975a6f9a9847184472286044d7d5296f6@sha256:a71ac64dd8cfd68341ba47dbdc4d8c2cb91325fce669875193ea0319118201b5
           ports:
             - containerPort: 80
             - containerPort: 443
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 038d689b7..e6e047e6c 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -23,7 +23,7 @@ REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-runner
 
-NGINX_BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:5402d35663917ccbbf77ff48a22b8c6f77097f48@sha256:ec8a104df307f5c6d68157b7ac8e5e1e2c2f0ea07ddf25bb1c6c43c67e351180
+NGINX_BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:81c2afd975a6f9a9847184472286044d7d5296f6@sha256:a71ac64dd8cfd68341ba47dbdc4d8c2cb91325fce669875193ea0319118201b5
 
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index ae243255f..4338252ff 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -38,7 +38,7 @@ const SlowEchoService = "slow-echo"
 const HTTPBinService = "httpbin"
 
 // NginxBaseImage use for testing
-const NginxBaseImage = "k8s.gcr.io/ingress-nginx/nginx:5402d35663917ccbbf77ff48a22b8c6f77097f48@sha256:ec8a104df307f5c6d68157b7ac8e5e1e2c2f0ea07ddf25bb1c6c43c67e351180"
+const NginxBaseImage = "k8s.gcr.io/ingress-nginx/nginx:81c2afd975a6f9a9847184472286044d7d5296f6@sha256:a71ac64dd8cfd68341ba47dbdc4d8c2cb91325fce669875193ea0319118201b5"
 
 type deploymentOptions struct {
 	namespace string

From 40b6e61c3aae466d85b54d35046be5f1b8d15a82 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sat, 16 Apr 2022 19:07:10 +0530
Subject: [PATCH 0151/1641] change tag to v120beta1 (#8480)

---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 031636768..ef7975154 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.2.0-beta.0
+v1.2.0-beta.1

From 3598114d4e50c2aebde911a421a2576cb0455557 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sat, 16 Apr 2022 12:52:18 -0300
Subject: [PATCH 0152/1641] Fix log creation in chroot script (#8481)

---
 rootfs/chroot.sh | 1 -
 1 file changed, 1 deletion(-)

diff --git a/rootfs/chroot.sh b/rootfs/chroot.sh
index c2ae3d2fa..f0591d062 100755
--- a/rootfs/chroot.sh
+++ b/rootfs/chroot.sh
@@ -43,7 +43,6 @@ done
 mkdir -p  /chroot/lib /chroot/proc /chroot/usr /chroot/bin /chroot/dev /chroot/run 
 cp /etc/passwd /etc/group /chroot/etc/
 cp -a /usr/* /chroot/usr/
-mv /var/log/nginx /chroot/var/log/
 cp -a /etc/nginx/* /chroot/etc/nginx/
 cp /lib/ld-musl-* /lib/libcrypto* /lib/libssl* /lib/libz* /chroot/lib/
 mknod -m 0666 /chroot/dev/null c 1 3

From ef0ec5f05239609ea8a9a2dda49d96f6ece5189b Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 17 Apr 2022 17:20:41 -0300
Subject: [PATCH 0153/1641] Release chart v1.2.0-beta.1 (#8484)

---
 charts/ingress-nginx/Chart.yaml  | 10 +++++++---
 charts/ingress-nginx/README.md   |  8 ++++----
 charts/ingress-nginx/values.yaml |  6 +++---
 3 files changed, 14 insertions(+), 10 deletions(-)

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index fdd9af270..fbcf06cd5 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,8 +2,8 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.1.0-beta.0
-appVersion: 1.2.0-beta.0
+version: 4.1.0-beta.1
+appVersion: 1.2.0-beta.1
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
@@ -26,10 +26,14 @@ annotations:
   # List of changes for the release in artifacthub.io
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
+    - "Image and libraries updated"
+    - "#8319  Upstream keepalive time"
+    - "#8434  added new auth-tls-match-cn annotation"
+    - "#8481  Fix log creation in chroot script"
     - "#8426	Bump github.com/prometheus/common from 0.32.1 to 0.33.0"
     - "#8444	replace deprecated topology key in example with current one"
     - "#8446	Fix suggested annotation-value-word-blocklist"
-    - "#8219    Add keepalive support for auth requests"
+    - "#8219  Add keepalive support for auth requests"
     - "#8337	Jail/chroot nginx process inside controller container"
     - "#8455	Update dependencies"
     - "#8456	Implement object deep inspector"
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index d34943edd..b0e9b40cb 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.1.0-beta.0](https://img.shields.io/badge/Version-4.1.0--beta.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.0-beta.0](https://img.shields.io/badge/AppVersion-1.2.0--beta.0-informational?style=flat-square)
+![Version: 4.1.0-beta.1](https://img.shields.io/badge/Version-4.1.0--beta.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.0-beta.1](https://img.shields.io/badge/AppVersion-1.2.0--beta.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -307,13 +307,13 @@ Kubernetes: `>=1.19.0-0`
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:92115f5062568ebbcd450cd2cf9bffdef8df9fc61e7d5868ba8a7c9d773e0961"` |  |
-| controller.image.digestChroot | string | `"sha256:0082f0f547b147a30ad85a5d6d2ceb3edbf0848b2008ed754365b6678bdea9a5"` |  |
+| controller.image.digest | string | `"sha256:7059739637c30865f74cae403fffa55c2cb6d9779cd15654480dd0e4f850d536"` |  |
+| controller.image.digestChroot | string | `"sha256:5344d8367295be743703f19eea137e7a3253efc2d0ec8aee131b85d3258f9780"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"k8s.gcr.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.2.0-beta.0"` |  |
+| controller.image.tag | string | `"v1.2.0-beta.1"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index d3d2ef693..674e1f4c9 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -23,9 +23,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.2.0-beta.0"
-    digest: sha256:92115f5062568ebbcd450cd2cf9bffdef8df9fc61e7d5868ba8a7c9d773e0961
-    digestChroot: sha256:0082f0f547b147a30ad85a5d6d2ceb3edbf0848b2008ed754365b6678bdea9a5
+    tag: "v1.2.0-beta.1"
+    digest: sha256:7059739637c30865f74cae403fffa55c2cb6d9779cd15654480dd0e4f850d536
+    digestChroot: sha256:5344d8367295be743703f19eea137e7a3253efc2d0ec8aee131b85d3258f9780
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101

From aa813972cbc290e44e57de6718a6ca910a7b5b25 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 17 Apr 2022 19:26:41 -0300
Subject: [PATCH 0154/1641] Promote Jintao to maintainer (#8485)

---
 OWNERS_ALIASES | 1 +
 1 file changed, 1 insertion(+)

diff --git a/OWNERS_ALIASES b/OWNERS_ALIASES
index 286a0d998..04b495b6b 100644
--- a/OWNERS_ALIASES
+++ b/OWNERS_ALIASES
@@ -15,6 +15,7 @@ aliases:
   - ElvinEfendi
   - rikatz
   - strongjz
+  - tao12345666333
 
   ingress-nginx-reviewers:
   - ElvinEfendi

From a2514768cd282c41f39ab06bda17efefc4bd233a Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 20 Apr 2022 23:55:43 +0530
Subject: [PATCH 0155/1641] changed tag to v1.2.0 (#8490)

---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index ef7975154..79127d85a 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.2.0-beta.1
+v1.2.0

From 072da9a6651fdbc1e1b2edc611be2dd5c8ca98be Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 21 Apr 2022 03:40:57 +0530
Subject: [PATCH 0156/1641] bump helm helm-docs kustomize to fix failing ci
 (#8492)

---
 .github/workflows/ci.yaml | 2 +-
 hack/.tool-versions       | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 69972eb51..e82d55134 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -146,7 +146,7 @@ jobs:
 
       - name: Run helm-docs
         run: |
-          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.6.0
+          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.8.1
           ./helm-docs --chart-search-root=${GITHUB_WORKSPACE}/charts
           DIFF=$(git diff ${GITHUB_WORKSPACE}/charts/ingress-nginx/README.md)
           if [ ! -z "$DIFF" ]; then
diff --git a/hack/.tool-versions b/hack/.tool-versions
index 5baa8790a..4bd118c7b 100644
--- a/hack/.tool-versions
+++ b/hack/.tool-versions
@@ -1,2 +1,2 @@
-kustomize 4.1.3
-helm 3.7.1
+kustomize 4.5.4
+helm 3.8.2

From 6d9a39eda7b180f27b34726d7a7a96d73808ce75 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 22 Apr 2022 08:06:13 +0530
Subject: [PATCH 0157/1641] changes for release v1.2.0 (#8491)

---
 Changelog.md                                  | 35 ++++++++
 README.md                                     |  1 +
 RELEASE.md                                    | 24 ++++--
 charts/ingress-nginx/CHANGELOG.md             | 81 +++++++++++--------
 charts/ingress-nginx/Chart.yaml               | 32 ++++----
 charts/ingress-nginx/README.md                | 14 ++--
 charts/ingress-nginx/values.yaml              | 14 ++--
 deploy/static/provider/aws/1.19/deploy.yaml   | 42 +++++-----
 deploy/static/provider/aws/1.20/deploy.yaml   | 42 +++++-----
 deploy/static/provider/aws/1.21/deploy.yaml   | 42 +++++-----
 deploy/static/provider/aws/1.22/deploy.yaml   | 42 +++++-----
 deploy/static/provider/aws/1.23/deploy.yaml   | 42 +++++-----
 deploy/static/provider/aws/deploy.yaml        | 42 +++++-----
 .../nlb-with-tls-termination/1.19/deploy.yaml | 42 +++++-----
 .../nlb-with-tls-termination/1.20/deploy.yaml | 42 +++++-----
 .../nlb-with-tls-termination/1.21/deploy.yaml | 42 +++++-----
 .../nlb-with-tls-termination/1.22/deploy.yaml | 42 +++++-----
 .../nlb-with-tls-termination/1.23/deploy.yaml | 42 +++++-----
 .../aws/nlb-with-tls-termination/deploy.yaml  | 42 +++++-----
 .../provider/baremetal/1.19/deploy.yaml       | 42 +++++-----
 .../provider/baremetal/1.20/deploy.yaml       | 42 +++++-----
 .../provider/baremetal/1.21/deploy.yaml       | 42 +++++-----
 .../provider/baremetal/1.22/deploy.yaml       | 42 +++++-----
 .../provider/baremetal/1.23/deploy.yaml       | 42 +++++-----
 deploy/static/provider/baremetal/deploy.yaml  | 42 +++++-----
 deploy/static/provider/cloud/1.19/deploy.yaml | 42 +++++-----
 deploy/static/provider/cloud/1.20/deploy.yaml | 42 +++++-----
 deploy/static/provider/cloud/1.21/deploy.yaml | 42 +++++-----
 deploy/static/provider/cloud/1.22/deploy.yaml | 42 +++++-----
 deploy/static/provider/cloud/1.23/deploy.yaml | 42 +++++-----
 deploy/static/provider/cloud/deploy.yaml      | 42 +++++-----
 deploy/static/provider/do/1.19/deploy.yaml    | 42 +++++-----
 deploy/static/provider/do/1.20/deploy.yaml    | 42 +++++-----
 deploy/static/provider/do/1.21/deploy.yaml    | 42 +++++-----
 deploy/static/provider/do/1.22/deploy.yaml    | 42 +++++-----
 deploy/static/provider/do/1.23/deploy.yaml    | 42 +++++-----
 deploy/static/provider/do/deploy.yaml         | 42 +++++-----
 .../static/provider/exoscale/1.19/deploy.yaml | 42 +++++-----
 .../static/provider/exoscale/1.20/deploy.yaml | 42 +++++-----
 .../static/provider/exoscale/1.21/deploy.yaml | 42 +++++-----
 .../static/provider/exoscale/1.22/deploy.yaml | 42 +++++-----
 .../static/provider/exoscale/1.23/deploy.yaml | 42 +++++-----
 deploy/static/provider/exoscale/deploy.yaml   | 42 +++++-----
 deploy/static/provider/kind/1.19/deploy.yaml  | 42 +++++-----
 deploy/static/provider/kind/1.20/deploy.yaml  | 42 +++++-----
 deploy/static/provider/kind/1.21/deploy.yaml  | 42 +++++-----
 deploy/static/provider/kind/1.22/deploy.yaml  | 42 +++++-----
 deploy/static/provider/kind/1.23/deploy.yaml  | 42 +++++-----
 deploy/static/provider/kind/deploy.yaml       | 42 +++++-----
 deploy/static/provider/scw/1.19/deploy.yaml   | 42 +++++-----
 deploy/static/provider/scw/1.20/deploy.yaml   | 42 +++++-----
 deploy/static/provider/scw/1.21/deploy.yaml   | 42 +++++-----
 deploy/static/provider/scw/1.22/deploy.yaml   | 42 +++++-----
 deploy/static/provider/scw/1.23/deploy.yaml   | 42 +++++-----
 deploy/static/provider/scw/deploy.yaml        | 42 +++++-----
 docs/deploy/index.md                          | 20 ++---
 images/httpbin/rootfs/Dockerfile              |  2 +-
 test/e2e-image/Dockerfile                     |  2 +-
 58 files changed, 1154 insertions(+), 1087 deletions(-)

diff --git a/Changelog.md b/Changelog.md
index 8921ee6c4..687ae51f7 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -1,5 +1,40 @@
 # Changelog
 
+### 1.2.0
+
+Image: 
+- k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+- k8s.gcr.io/ingress-nginx/controller-chroot:v1.2.0@sha256:fb17f1700b77d4fcc52ca6f83ffc2821861ae887dbb87149cf5cbc52bea425e5
+
+This minor version release, introduces 2 breaking changes. For the first time, an option to jail/chroot the nginx process, inside the controller container, is being introduced.. This provides an additional layer of security, for sensitive information like K8S serviceaccounts. This release also brings a special new feature of deep inspection into objects. The inspection is a walk through of all the spec, checking for possible attempts to escape configs. Currently such an inspection only occurs for `networking.Ingress`.  Additionally there are fixes for the recently announced CVEs on busybox & ssl_client. And there is a fix to a recently introduced redirection related bug, that was setting the protocol on URLs to "nil".
+
+_Changes:_
+
+- [8481](https://github.com/kubernetes/ingress-nginx/pull/8481) Fix log creation in chroot script
+- [8479](https://github.com/kubernetes/ingress-nginx/pull/8479) changed nginx base img tag to img built with alpine3.14.6
+- [8478](https://github.com/kubernetes/ingress-nginx/pull/8478) update base images and protobuf gomod
+- [8468](https://github.com/kubernetes/ingress-nginx/pull/8468) Fallback to ngx.var.scheme for redirectScheme with use-forward-headers when X-Forwarded-Proto is empty
+- [8456](https://github.com/kubernetes/ingress-nginx/pull/8456) Implement object deep inspector
+- [8455](https://github.com/kubernetes/ingress-nginx/pull/8455) Update dependencies
+- [8454](https://github.com/kubernetes/ingress-nginx/pull/8454) Update index.md
+- [8447](https://github.com/kubernetes/ingress-nginx/pull/8447) typo fixing
+- [8446](https://github.com/kubernetes/ingress-nginx/pull/8446) Fix suggested annotation-value-word-blocklist
+- [8444](https://github.com/kubernetes/ingress-nginx/pull/8444) replace deprecated topology key in example with current one
+- [8443](https://github.com/kubernetes/ingress-nginx/pull/8443) Add dependency review enforcement
+- [8434](https://github.com/kubernetes/ingress-nginx/pull/8434) added new auth-tls-match-cn annotation
+- [8426](https://github.com/kubernetes/ingress-nginx/pull/8426) Bump github.com/prometheus/common from 0.32.1 to 0.33.0
+- [8417](https://github.com/kubernetes/ingress-nginx/pull/8417) force helm release to artifact hub
+- [8405](https://github.com/kubernetes/ingress-nginx/pull/8405) kubectl-plugin code overview info
+- [8399](https://github.com/kubernetes/ingress-nginx/pull/8399) Darwin arm64
+- [8443](https://github.com/kubernetes/ingress-nginx/pull/8443) Add dependency review enforcement
+- [8444](https://github.com/kubernetes/ingress-nginx/pull/8444) replace deprecated topology key in example with current one
+- [8446](https://github.com/kubernetes/ingress-nginx/pull/8446) Fix suggested annotation-value-word-blocklist
+- [8219](https://github.com/kubernetes/ingress-nginx/pull/8219) Add keepalive support for auth requests
+- [8455](https://github.com/kubernetes/ingress-nginx/pull/8455) Update dependencies
+- [8456](https://github.com/kubernetes/ingress-nginx/pull/8456) Implement object deep inspector
+- [8325](https://github.com/kubernetes/ingress-nginx/pull/8325) Fix for buggy ingress sync with retries
+- [8322](https://github.com/kubernetes/ingress-nginx/pull/8322) Improve req handling dashboard
+
 ### 1.2.0-beta.0
 
 **Image:**
diff --git a/README.md b/README.md
index c653e4c70..8ce3222a9 100644
--- a/README.md
+++ b/README.md
@@ -31,6 +31,7 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 
 | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
+| v1.2.0                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.6         | 1.19.10†      |
 | v1.1.3                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.4         | 1.19.10†      |
 | v1.1.2                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       |
 | v1.1.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       |
diff --git a/RELEASE.md b/RELEASE.md
index f954199a2..2d8e141aa 100644
--- a/RELEASE.md
+++ b/RELEASE.md
@@ -173,10 +173,10 @@ Promoting the images basically means that images, that were pushed to staging co
           - Run the below command and save the output to a txt file
 
             ```
-            gh pr list -s merged -L 38 -B main | cut -f1,2 > ~/tmp/prlist.txt
+            gh pr list -s merged -L 38 -B main | cut -f1,2 | tee ~/Downloads/prlist.txt
             ```
             - The -L 38 was used for 2 reasons.
-              - Default number of results is 30 and there were more than 30 PRs merged while releasing v1.1.1.
+              - Default number of results is 30 and there were more than 30 PRs merged while releasing v1.1.1. If you see the current/soon-to-be-old changelog, you can look at the most recent PR number that has been accounted for already, and start from after that last accounted for PR.
               -  The other reason to use -L 38 was to ommit the 39th, the 40th and the 41st line in the resulting list. These were non-relevant PRs.
             - If you save the output of above command to a file called prlist.txt. It looks somewhat like this ;
 
@@ -190,8 +190,8 @@ Promoting the images basically means that images, that were pushed to staging co
               8115    chart/ghaction: set the correct permission to have access to push a release 
               ....
               ```
-              You can delete the lines, that refer to PRs of the release process itself. We only need to list the feature/bugfix PRs.
-          - Now you use some easy automation in bash/python/other, to get the PR-List that can be used in the changelog. For example, its possible to use a bash scripty way, seen below, to convert those plaintext PR numbers into clickable links. 
+              You can delete the lines, that refer to PRs of the release process itself. We only need to list the feature/bugfix PRs. You can also delete the lines that are housekeeping or not really worth mentioning in the changelog.
+          -  you use some easy automation in bash/python/other, to get the PR-List that can be used in the changelog. For example, its possible to use a bash scripty way, seen below, to convert those plaintext PR numbers into clickable links. 
 
             ```
             #!/usr/bin/bash
@@ -204,11 +204,25 @@ Promoting the images basically means that images, that were pushed to staging co
               echo "[$pr_num](https://github.com/kubernetes/ingress-nginx/pull/$pr_num) $pr_title"
             done <$file
 
+            ```
+          - There was a parsing issue and path issue on MacOS, so above scrpt had to be modified and MacOS monterey compatible script is below ;
+
+            ```
+            #!/bin/bash
+
+            file="$1"
+
+            while read -r line; do
+              pr_num=`echo "$line" | cut -f1`
+              pr_title=`echo "$line" | cut -f2`
+              echo \""[$pr_num](https://github.com/kubernetes/ingress-nginx/pull/$pr_num) $pr_title"\"
+            done <$file
+
             ```
           - If you saved the bash script content above, in a file like `$HOME/bin/prlist_to_changelog.sh`, then you could execute a command like this to get your prlist in a text file called changelog_content.txt;`
 
           ```
-          prlist_to_changelog.sh prlist.txt > /tmp/changelog_content.txt`
+          prlist_to_changelog.sh ~/Downloads/prlist.txt | tee ~/Downloads//changelog_content.txt`
           ```
 
 ### d. Edit the values.yaml and run helm-docs
diff --git a/charts/ingress-nginx/CHANGELOG.md b/charts/ingress-nginx/CHANGELOG.md
index f3f44c336..8282972d4 100644
--- a/charts/ingress-nginx/CHANGELOG.md
+++ b/charts/ingress-nginx/CHANGELOG.md
@@ -2,39 +2,56 @@
 
 This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
 
+### 4.1.0
+
+- "[8481](https://github.com/kubernetes/ingress-nginx/pull/8481) Fix log creation in chroot script"
+- "[8479](https://github.com/kubernetes/ingress-nginx/pull/8479) changed nginx base img tag to img built with alpine3.14.6"
+- "[8478](https://github.com/kubernetes/ingress-nginx/pull/8478) update base images and protobuf gomod"
+- "[8468](https://github.com/kubernetes/ingress-nginx/pull/8468) Fallback to ngx.var.scheme for redirectScheme with use-forward-headers when X-Forwarded-Proto is empty"
+- "[8456](https://github.com/kubernetes/ingress-nginx/pull/8456) Implement object deep inspector"
+- "[8455](https://github.com/kubernetes/ingress-nginx/pull/8455) Update dependencies"
+- "[8454](https://github.com/kubernetes/ingress-nginx/pull/8454) Update index.md"
+- "[8447](https://github.com/kubernetes/ingress-nginx/pull/8447) typo fixing"
+- "[8446](https://github.com/kubernetes/ingress-nginx/pull/8446) Fix suggested annotation-value-word-blocklist"
+- "[8444](https://github.com/kubernetes/ingress-nginx/pull/8444) replace deprecated topology key in example with current one"
+- "[8443](https://github.com/kubernetes/ingress-nginx/pull/8443) Add dependency review enforcement"
+- "[8434](https://github.com/kubernetes/ingress-nginx/pull/8434) added new auth-tls-match-cn annotation"
+- "[8426](https://github.com/kubernetes/ingress-nginx/pull/8426) Bump github.com/prometheus/common from 0.32.1 to 0.33.0"
+
 ### 4.0.18
-"[8291](https://github.com/kubernetes/ingress-nginx/pull/8291) remove git tag env from cloud build"
-"[8286](https://github.com/kubernetes/ingress-nginx/pull/8286) Fix OpenTelemetry sidecar image build"
-"[8277](https://github.com/kubernetes/ingress-nginx/pull/8277) Add OpenSSF Best practices badge"
-"[8273](https://github.com/kubernetes/ingress-nginx/pull/8273) Issue#8241"
-"[8267](https://github.com/kubernetes/ingress-nginx/pull/8267) Add fsGroup value to admission-webhooks/job-patch charts"
-"[8262](https://github.com/kubernetes/ingress-nginx/pull/8262) Updated confusing error"
-"[8256](https://github.com/kubernetes/ingress-nginx/pull/8256) fix: deny locations with invalid auth-url annotation"
-"[8253](https://github.com/kubernetes/ingress-nginx/pull/8253) Add a certificate info metric"
-"[8236](https://github.com/kubernetes/ingress-nginx/pull/8236) webhook: remove useless code."
-"[8227](https://github.com/kubernetes/ingress-nginx/pull/8227) Update libraries in webhook image"
-"[8225](https://github.com/kubernetes/ingress-nginx/pull/8225) fix inconsistent-label-cardinality for prometheus metrics: nginx_ingress_controller_requests"
-"[8221](https://github.com/kubernetes/ingress-nginx/pull/8221) Do not validate ingresses with unknown ingress class in admission webhook endpoint"
-"[8210](https://github.com/kubernetes/ingress-nginx/pull/8210) Bump github.com/prometheus/client_golang from 1.11.0 to 1.12.1"
-"[8209](https://github.com/kubernetes/ingress-nginx/pull/8209) Bump google.golang.org/grpc from 1.43.0 to 1.44.0"
-"[8204](https://github.com/kubernetes/ingress-nginx/pull/8204) Add Artifact Hub lint"
-"[8203](https://github.com/kubernetes/ingress-nginx/pull/8203) Fix Indentation of example and link to cert-manager tutorial"
-"[8201](https://github.com/kubernetes/ingress-nginx/pull/8201) feat(metrics): add path and method labels to requests countera"
-"[8199](https://github.com/kubernetes/ingress-nginx/pull/8199) use functional options to reduce number of methods creating an EchoDeployment"
-"[8196](https://github.com/kubernetes/ingress-nginx/pull/8196) docs: fix inconsistent controller annotation"
-"[8191](https://github.com/kubernetes/ingress-nginx/pull/8191) Using Go install for misspell"
-"[8186](https://github.com/kubernetes/ingress-nginx/pull/8186) prometheus+grafana using servicemonitor"
-"[8185](https://github.com/kubernetes/ingress-nginx/pull/8185) Append elements on match, instead of removing for cors-annotations"
-"[8179](https://github.com/kubernetes/ingress-nginx/pull/8179) Bump github.com/opencontainers/runc from 1.0.3 to 1.1.0"
-"[8173](https://github.com/kubernetes/ingress-nginx/pull/8173) Adding annotations to the controller service account"
-"[8163](https://github.com/kubernetes/ingress-nginx/pull/8163) Update the $req_id placeholder description"
-"[8162](https://github.com/kubernetes/ingress-nginx/pull/8162) Versioned static manifests"
-"[8159](https://github.com/kubernetes/ingress-nginx/pull/8159) Adding some geoip variables and default values"
-"[8155](https://github.com/kubernetes/ingress-nginx/pull/8155) #7271 feat: avoid-pdb-creation-when-default-backend-disabled-and-replicas-gt-1"
-"[8151](https://github.com/kubernetes/ingress-nginx/pull/8151) Automatically generate helm docs"
-"[8143](https://github.com/kubernetes/ingress-nginx/pull/8143) Allow to configure delay before controller exits"
-"[8136](https://github.com/kubernetes/ingress-nginx/pull/8136) add ingressClass option to helm chart - back compatibility with ingress.class annotations"
-"[8126](https://github.com/kubernetes/ingress-nginx/pull/8126) Example for JWT"
+
+- "[8291](https://github.com/kubernetes/ingress-nginx/pull/8291) remove git tag env from cloud build"
+- "[8286](https://github.com/kubernetes/ingress-nginx/pull/8286) Fix OpenTelemetry sidecar image build"
+- "[8277](https://github.com/kubernetes/ingress-nginx/pull/8277) Add OpenSSF Best practices badge"
+- "[8273](https://github.com/kubernetes/ingress-nginx/pull/8273) Issue#8241"
+- "[8267](https://github.com/kubernetes/ingress-nginx/pull/8267) Add fsGroup value to admission-webhooks/job-patch charts"
+- "[8262](https://github.com/kubernetes/ingress-nginx/pull/8262) Updated confusing error"
+- "[8256](https://github.com/kubernetes/ingress-nginx/pull/8256) fix: deny locations with invalid auth-url annotation"
+- "[8253](https://github.com/kubernetes/ingress-nginx/pull/8253) Add a certificate info metric"
+- "[8236](https://github.com/kubernetes/ingress-nginx/pull/8236) webhook: remove useless code."
+- "[8227](https://github.com/kubernetes/ingress-nginx/pull/8227) Update libraries in webhook image"
+- "[8225](https://github.com/kubernetes/ingress-nginx/pull/8225) fix inconsistent-label-cardinality for prometheus metrics: nginx_ingress_controller_requests"
+- "[8221](https://github.com/kubernetes/ingress-nginx/pull/8221) Do not validate ingresses with unknown ingress class in admission webhook endpoint"
+- "[8210](https://github.com/kubernetes/ingress-nginx/pull/8210) Bump github.com/prometheus/client_golang from 1.11.0 to 1.12.1"
+- "[8209](https://github.com/kubernetes/ingress-nginx/pull/8209) Bump google.golang.org/grpc from 1.43.0 to 1.44.0"
+- "[8204](https://github.com/kubernetes/ingress-nginx/pull/8204) Add Artifact Hub lint"
+- "[8203](https://github.com/kubernetes/ingress-nginx/pull/8203) Fix Indentation of example and link to cert-manager tutorial"
+- "[8201](https://github.com/kubernetes/ingress-nginx/pull/8201) feat(metrics): add path and method labels to requests countera"
+- "[8199](https://github.com/kubernetes/ingress-nginx/pull/8199) use functional options to reduce number of methods creating an EchoDeployment"
+- "[8196](https://github.com/kubernetes/ingress-nginx/pull/8196) docs: fix inconsistent controller annotation"
+- "[8191](https://github.com/kubernetes/ingress-nginx/pull/8191) Using Go install for misspell"
+- "[8186](https://github.com/kubernetes/ingress-nginx/pull/8186) prometheus+grafana using servicemonitor"
+- "[8185](https://github.com/kubernetes/ingress-nginx/pull/8185) Append elements on match, instead of removing for cors-annotations"
+- "[8179](https://github.com/kubernetes/ingress-nginx/pull/8179) Bump github.com/opencontainers/runc from 1.0.3 to 1.1.0"
+- "[8173](https://github.com/kubernetes/ingress-nginx/pull/8173) Adding annotations to the controller service account"
+- "[8163](https://github.com/kubernetes/ingress-nginx/pull/8163) Update the $req_id placeholder description"
+- "[8162](https://github.com/kubernetes/ingress-nginx/pull/8162) Versioned static manifests"
+- "[8159](https://github.com/kubernetes/ingress-nginx/pull/8159) Adding some geoip variables and default values"
+- "[8155](https://github.com/kubernetes/ingress-nginx/pull/8155) #7271 feat: avoid-pdb-creation-when-default-backend-disabled-and-replicas-gt-1"
+- "[8151](https://github.com/kubernetes/ingress-nginx/pull/8151) Automatically generate helm docs"
+- "[8143](https://github.com/kubernetes/ingress-nginx/pull/8143) Allow to configure delay before controller exits"
+- "[8136](https://github.com/kubernetes/ingress-nginx/pull/8136) add ingressClass option to helm chart - back compatibility with ingress.class annotations"
+- "[8126](https://github.com/kubernetes/ingress-nginx/pull/8126) Example for JWT"
 
 
 ### 4.0.15
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index fbcf06cd5..2c76500dd 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,8 +2,8 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.1.0-beta.1
-appVersion: 1.2.0-beta.1
+version: 4.1.0
+appVersion: 1.2.0
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
@@ -22,20 +22,20 @@ kubeVersion: ">=1.19.0-0"
 annotations:
   # Use this annotation to indicate that this chart version is a pre-release.
   # https://artifacthub.io/docs/topics/annotations/helm/
-  artifacthub.io/prerelease: "true"
+  artifacthub.io/prerelease: "false"
   # List of changes for the release in artifacthub.io
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
-    - "Image and libraries updated"
-    - "#8319  Upstream keepalive time"
-    - "#8434  added new auth-tls-match-cn annotation"
-    - "#8481  Fix log creation in chroot script"
-    - "#8426	Bump github.com/prometheus/common from 0.32.1 to 0.33.0"
-    - "#8444	replace deprecated topology key in example with current one"
-    - "#8446	Fix suggested annotation-value-word-blocklist"
-    - "#8219  Add keepalive support for auth requests"
-    - "#8337	Jail/chroot nginx process inside controller container"
-    - "#8455	Update dependencies"
-    - "#8456	Implement object deep inspector"
-    - "#8325	Fix for buggy ingress sync with retries"
-    - "#8322	Improve req handling dashboard"
+    - "[8481](https://github.com/kubernetes/ingress-nginx/pull/8481) Fix log creation in chroot script"
+    - "[8479](https://github.com/kubernetes/ingress-nginx/pull/8479) changed nginx base img tag to img built with alpine3.14.6"
+    - "[8478](https://github.com/kubernetes/ingress-nginx/pull/8478) update base images and protobuf gomod"
+    - "[8468](https://github.com/kubernetes/ingress-nginx/pull/8468) Fallback to ngx.var.scheme for redirectScheme with use-forward-headers when X-Forwarded-Proto is empty"
+    - "[8456](https://github.com/kubernetes/ingress-nginx/pull/8456) Implement object deep inspector"
+    - "[8455](https://github.com/kubernetes/ingress-nginx/pull/8455) Update dependencies"
+    - "[8454](https://github.com/kubernetes/ingress-nginx/pull/8454) Update index.md"
+    - "[8447](https://github.com/kubernetes/ingress-nginx/pull/8447) typo fixing"
+    - "[8446](https://github.com/kubernetes/ingress-nginx/pull/8446) Fix suggested annotation-value-word-blocklist"
+    - "[8444](https://github.com/kubernetes/ingress-nginx/pull/8444) replace deprecated topology key in example with current one"
+    - "[8443](https://github.com/kubernetes/ingress-nginx/pull/8443) Add dependency review enforcement"
+    - "[8434](https://github.com/kubernetes/ingress-nginx/pull/8434) added new auth-tls-match-cn annotation"
+    - "[8426](https://github.com/kubernetes/ingress-nginx/pull/8426) Bump github.com/prometheus/common from 0.32.1 to 0.33.0"
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index b0e9b40cb..b0aef6678 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.1.0-beta.1](https://img.shields.io/badge/Version-4.1.0--beta.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.0-beta.1](https://img.shields.io/badge/AppVersion-1.2.0--beta.1-informational?style=flat-square)
+![Version: 4.1.0](https://img.shields.io/badge/Version-4.1.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.0](https://img.shields.io/badge/AppVersion-1.2.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -307,13 +307,13 @@ Kubernetes: `>=1.19.0-0`
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:7059739637c30865f74cae403fffa55c2cb6d9779cd15654480dd0e4f850d536"` |  |
-| controller.image.digestChroot | string | `"sha256:5344d8367295be743703f19eea137e7a3253efc2d0ec8aee131b85d3258f9780"` |  |
+| controller.image.digest | string | `"sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185"` |  |
+| controller.image.digestChroot | string | `"sha256:fb17f1700b77d4fcc52ca6f83ffc2821861ae887dbb87149cf5cbc52bea425e5"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"k8s.gcr.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.2.0-beta.1"` |  |
+| controller.image.tag | string | `"v1.2.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
@@ -411,7 +411,7 @@ Kubernetes: `>=1.19.0-0`
 | controller.service.targetPorts.http | string | `"http"` |  |
 | controller.service.targetPorts.https | string | `"https"` |  |
 | controller.service.type | string | `"LoadBalancer"` |  |
-| controller.shareProcessNamespace | bool | `false` |  This can be used for example to signal log rotation using `kill -USR1` from a sidecar. |
+| controller.shareProcessNamespace | bool | `false` |  |
 | controller.sysctls | object | `{}` | See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls |
 | controller.tcp.annotations | object | `{}` | Annotations to be added to the tcp config configmap |
 | controller.tcp.configMapNamespace | string | `""` | Allows customization of the tcp-services-configmap; defaults to $(POD_NAMESPACE) |
@@ -484,6 +484,6 @@ Kubernetes: `>=1.19.0-0`
 | serviceAccount.automountServiceAccountToken | bool | `true` |  |
 | serviceAccount.create | bool | `true` |  |
 | serviceAccount.name | string | `""` |  |
-| tcp | object | `{}` | TCP service key:value pairs |
-| udp | object | `{}` | UDP service key:value pairs |
+| tcp | object | `{}` | TCP service key-value pairs |
+| udp | object | `{}` | UDP service key-value pairs |
 
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 674e1f4c9..e6e21e1ad 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -23,9 +23,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.2.0-beta.1"
-    digest: sha256:7059739637c30865f74cae403fffa55c2cb6d9779cd15654480dd0e4f850d536
-    digestChroot: sha256:5344d8367295be743703f19eea137e7a3253efc2d0ec8aee131b85d3258f9780
+    tag: "v1.2.0"
+    digest: sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+    digestChroot: sha256:fb17f1700b77d4fcc52ca6f83ffc2821861ae887dbb87149cf5cbc52bea425e5
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
@@ -578,8 +578,8 @@ controller:
 
   extraModules: []
   ## Modules, which are mounted into the core nginx image
-  # - name: opentelemetry:v20220331-controller-v1.1.2-36-g7517b7ecf@sha256:e3f635474b5da24ccd0ea6b078fb190dae68b8b4a44b52bea19ec2561f0102ec
-  #   image: k8s.gcr.io/ingress-nginx/opentelemetry:
+  # - name: opentelemetry
+  #   image: k8s.gcr.io/ingress-nginx/opentelemetry:v20220415-controller-v1.2.0-beta.0-2-g81c2afd97@sha256:ce61e2cf0b347dffebb2dcbf57c33891d2217c1bad9c0959c878e5be671ef941
   #
   # The image must contain a `/usr/local/bin/init_module.sh` executable, which
   # will be executed as initContainers, to move its config files within the
@@ -908,13 +908,13 @@ serviceAccount:
 imagePullSecrets: []
 # - name: secretName
 
-# -- TCP service key:value pairs
+# -- TCP service key-value pairs
 ## Ref: https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/exposing-tcp-udp-services.md
 ##
 tcp: {}
 #  8080: "default/example-tcp-svc:9000"
 
-# -- UDP service key:value pairs
+# -- UDP service key-value pairs
 ## Ref: https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/exposing-tcp-udp-services.md
 ##
 udp: {}
diff --git a/deploy/static/provider/aws/1.19/deploy.yaml b/deploy/static/provider/aws/1.19/deploy.yaml
index 30d40e77b..2418f570a 100644
--- a/deploy/static/provider/aws/1.19/deploy.yaml
+++ b/deploy/static/provider/aws/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +321,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -371,7 +371,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -483,7 +483,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -494,7 +494,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -579,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -592,7 +592,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.20/deploy.yaml b/deploy/static/provider/aws/1.20/deploy.yaml
index 0afe26fa2..ec3da5e2a 100644
--- a/deploy/static/provider/aws/1.20/deploy.yaml
+++ b/deploy/static/provider/aws/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +321,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -351,7 +351,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -374,7 +374,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -414,7 +414,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -486,7 +486,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -497,7 +497,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -533,7 +533,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -544,7 +544,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -582,7 +582,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -595,7 +595,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.21/deploy.yaml b/deploy/static/provider/aws/1.21/deploy.yaml
index b73d21f8f..d60a4231d 100644
--- a/deploy/static/provider/aws/1.21/deploy.yaml
+++ b/deploy/static/provider/aws/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +321,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -354,7 +354,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -489,7 +489,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -500,7 +500,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -536,7 +536,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -547,7 +547,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -585,7 +585,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -598,7 +598,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.22/deploy.yaml b/deploy/static/provider/aws/1.22/deploy.yaml
index b73d21f8f..d60a4231d 100644
--- a/deploy/static/provider/aws/1.22/deploy.yaml
+++ b/deploy/static/provider/aws/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +321,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -354,7 +354,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -489,7 +489,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -500,7 +500,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -536,7 +536,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -547,7 +547,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -585,7 +585,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -598,7 +598,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.23/deploy.yaml b/deploy/static/provider/aws/1.23/deploy.yaml
index b73d21f8f..d60a4231d 100644
--- a/deploy/static/provider/aws/1.23/deploy.yaml
+++ b/deploy/static/provider/aws/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +321,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -354,7 +354,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -489,7 +489,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -500,7 +500,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -536,7 +536,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -547,7 +547,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -585,7 +585,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -598,7 +598,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 0afe26fa2..ec3da5e2a 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +321,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -351,7 +351,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -374,7 +374,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -414,7 +414,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -486,7 +486,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -497,7 +497,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -533,7 +533,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -544,7 +544,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -582,7 +582,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -595,7 +595,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
index e2232bd6e..fd51f29f3 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +312,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -358,7 +358,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -380,7 +380,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -420,7 +420,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -495,7 +495,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -506,7 +506,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +542,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -553,7 +553,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -604,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
index 07be32ffe..befb2856f 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +312,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -360,7 +360,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -383,7 +383,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -498,7 +498,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -509,7 +509,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -545,7 +545,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -556,7 +556,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -607,7 +607,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
index d86ddc4fd..59f098d43 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +312,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -363,7 +363,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -426,7 +426,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -501,7 +501,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -512,7 +512,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +548,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -559,7 +559,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
index d86ddc4fd..59f098d43 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +312,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -363,7 +363,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -426,7 +426,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -501,7 +501,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -512,7 +512,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +548,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -559,7 +559,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
index d86ddc4fd..59f098d43 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +312,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -363,7 +363,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -426,7 +426,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -501,7 +501,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -512,7 +512,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +548,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -559,7 +559,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 07be32ffe..befb2856f 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +312,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -360,7 +360,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -383,7 +383,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -498,7 +498,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -509,7 +509,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -545,7 +545,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -556,7 +556,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -607,7 +607,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.19/deploy.yaml b/deploy/static/provider/baremetal/1.19/deploy.yaml
index 49c11b1bd..34e59b0e8 100644
--- a/deploy/static/provider/baremetal/1.19/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -366,7 +366,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -477,7 +477,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -488,7 +488,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -573,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -586,7 +586,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.20/deploy.yaml b/deploy/static/provider/baremetal/1.20/deploy.yaml
index aa9898d99..c15db447e 100644
--- a/deploy/static/provider/baremetal/1.20/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -346,7 +346,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -369,7 +369,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -408,7 +408,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -480,7 +480,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -491,7 +491,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -527,7 +527,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -538,7 +538,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -576,7 +576,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -589,7 +589,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.21/deploy.yaml b/deploy/static/provider/baremetal/1.21/deploy.yaml
index c101d538b..fc13865cb 100644
--- a/deploy/static/provider/baremetal/1.21/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -483,7 +483,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -494,7 +494,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -579,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -592,7 +592,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.22/deploy.yaml b/deploy/static/provider/baremetal/1.22/deploy.yaml
index c101d538b..fc13865cb 100644
--- a/deploy/static/provider/baremetal/1.22/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -483,7 +483,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -494,7 +494,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -579,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -592,7 +592,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.23/deploy.yaml b/deploy/static/provider/baremetal/1.23/deploy.yaml
index c101d538b..fc13865cb 100644
--- a/deploy/static/provider/baremetal/1.23/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -483,7 +483,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -494,7 +494,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -579,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -592,7 +592,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index aa9898d99..c15db447e 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -346,7 +346,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -369,7 +369,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -408,7 +408,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -480,7 +480,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -491,7 +491,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -527,7 +527,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -538,7 +538,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -576,7 +576,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -589,7 +589,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.19/deploy.yaml b/deploy/static/provider/cloud/1.19/deploy.yaml
index f6000c6a6..a495871bc 100644
--- a/deploy/static/provider/cloud/1.19/deploy.yaml
+++ b/deploy/static/provider/cloud/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -345,7 +345,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -367,7 +367,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -407,7 +407,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -479,7 +479,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -490,7 +490,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -526,7 +526,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -537,7 +537,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -575,7 +575,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -588,7 +588,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.20/deploy.yaml b/deploy/static/provider/cloud/1.20/deploy.yaml
index d87b1331d..da818cd3a 100644
--- a/deploy/static/provider/cloud/1.20/deploy.yaml
+++ b/deploy/static/provider/cloud/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -347,7 +347,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -370,7 +370,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -410,7 +410,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -482,7 +482,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -493,7 +493,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -529,7 +529,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -540,7 +540,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -578,7 +578,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.21/deploy.yaml b/deploy/static/provider/cloud/1.21/deploy.yaml
index a1f096f6b..f1f62d478 100644
--- a/deploy/static/provider/cloud/1.21/deploy.yaml
+++ b/deploy/static/provider/cloud/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +485,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +496,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.22/deploy.yaml b/deploy/static/provider/cloud/1.22/deploy.yaml
index a1f096f6b..f1f62d478 100644
--- a/deploy/static/provider/cloud/1.22/deploy.yaml
+++ b/deploy/static/provider/cloud/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +485,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +496,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.23/deploy.yaml b/deploy/static/provider/cloud/1.23/deploy.yaml
index a1f096f6b..f1f62d478 100644
--- a/deploy/static/provider/cloud/1.23/deploy.yaml
+++ b/deploy/static/provider/cloud/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +485,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +496,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index d87b1331d..da818cd3a 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -347,7 +347,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -370,7 +370,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -410,7 +410,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -482,7 +482,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -493,7 +493,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -529,7 +529,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -540,7 +540,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -578,7 +578,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.19/deploy.yaml b/deploy/static/provider/do/1.19/deploy.yaml
index e746a93db..3bfe98c0b 100644
--- a/deploy/static/provider/do/1.19/deploy.yaml
+++ b/deploy/static/provider/do/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -348,7 +348,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -370,7 +370,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -410,7 +410,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -482,7 +482,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -493,7 +493,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -529,7 +529,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -540,7 +540,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -578,7 +578,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.20/deploy.yaml b/deploy/static/provider/do/1.20/deploy.yaml
index 815e70374..a1782f46e 100644
--- a/deploy/static/provider/do/1.20/deploy.yaml
+++ b/deploy/static/provider/do/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +485,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +496,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.21/deploy.yaml b/deploy/static/provider/do/1.21/deploy.yaml
index df2dce367..8c03f618e 100644
--- a/deploy/static/provider/do/1.21/deploy.yaml
+++ b/deploy/static/provider/do/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +488,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +499,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.22/deploy.yaml b/deploy/static/provider/do/1.22/deploy.yaml
index df2dce367..8c03f618e 100644
--- a/deploy/static/provider/do/1.22/deploy.yaml
+++ b/deploy/static/provider/do/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +488,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +499,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.23/deploy.yaml b/deploy/static/provider/do/1.23/deploy.yaml
index df2dce367..8c03f618e 100644
--- a/deploy/static/provider/do/1.23/deploy.yaml
+++ b/deploy/static/provider/do/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +488,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +499,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 815e70374..a1782f46e 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +485,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +496,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.19/deploy.yaml b/deploy/static/provider/exoscale/1.19/deploy.yaml
index 61e084249..6163bae12 100644
--- a/deploy/static/provider/exoscale/1.19/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -355,7 +355,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -489,7 +489,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -500,7 +500,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -536,7 +536,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -547,7 +547,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -585,7 +585,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -598,7 +598,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.20/deploy.yaml b/deploy/static/provider/exoscale/1.20/deploy.yaml
index e3712ce33..92c83ab31 100644
--- a/deploy/static/provider/exoscale/1.20/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -357,7 +357,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -380,7 +380,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -420,7 +420,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -492,7 +492,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -503,7 +503,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -539,7 +539,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -550,7 +550,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -588,7 +588,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -601,7 +601,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.21/deploy.yaml b/deploy/static/provider/exoscale/1.21/deploy.yaml
index 7c214d0f0..0c754baf1 100644
--- a/deploy/static/provider/exoscale/1.21/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -360,7 +360,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -383,7 +383,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -495,7 +495,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -506,7 +506,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +542,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -553,7 +553,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -604,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.22/deploy.yaml b/deploy/static/provider/exoscale/1.22/deploy.yaml
index 7c214d0f0..0c754baf1 100644
--- a/deploy/static/provider/exoscale/1.22/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -360,7 +360,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -383,7 +383,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -495,7 +495,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -506,7 +506,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +542,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -553,7 +553,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -604,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.23/deploy.yaml b/deploy/static/provider/exoscale/1.23/deploy.yaml
index 7c214d0f0..0c754baf1 100644
--- a/deploy/static/provider/exoscale/1.23/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -360,7 +360,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -383,7 +383,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -495,7 +495,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -506,7 +506,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +542,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -553,7 +553,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -604,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index e3712ce33..92c83ab31 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -357,7 +357,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -380,7 +380,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -420,7 +420,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -492,7 +492,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -503,7 +503,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -539,7 +539,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -550,7 +550,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -588,7 +588,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -601,7 +601,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.19/deploy.yaml b/deploy/static/provider/kind/1.19/deploy.yaml
index 8122b831c..c61bcf9cd 100644
--- a/deploy/static/provider/kind/1.19/deploy.yaml
+++ b/deploy/static/provider/kind/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -366,7 +366,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -490,7 +490,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -501,7 +501,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -537,7 +537,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -548,7 +548,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -586,7 +586,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -599,7 +599,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.20/deploy.yaml b/deploy/static/provider/kind/1.20/deploy.yaml
index 934c81a01..cda06a589 100644
--- a/deploy/static/provider/kind/1.20/deploy.yaml
+++ b/deploy/static/provider/kind/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -346,7 +346,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -369,7 +369,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -414,7 +414,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -493,7 +493,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -504,7 +504,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -540,7 +540,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -551,7 +551,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -589,7 +589,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -602,7 +602,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.21/deploy.yaml b/deploy/static/provider/kind/1.21/deploy.yaml
index 6d3e5ba7a..b3fac9bea 100644
--- a/deploy/static/provider/kind/1.21/deploy.yaml
+++ b/deploy/static/provider/kind/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -496,7 +496,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -507,7 +507,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -543,7 +543,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -554,7 +554,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -592,7 +592,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -605,7 +605,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.22/deploy.yaml b/deploy/static/provider/kind/1.22/deploy.yaml
index 6d3e5ba7a..b3fac9bea 100644
--- a/deploy/static/provider/kind/1.22/deploy.yaml
+++ b/deploy/static/provider/kind/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -496,7 +496,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -507,7 +507,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -543,7 +543,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -554,7 +554,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -592,7 +592,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -605,7 +605,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.23/deploy.yaml b/deploy/static/provider/kind/1.23/deploy.yaml
index 6d3e5ba7a..b3fac9bea 100644
--- a/deploy/static/provider/kind/1.23/deploy.yaml
+++ b/deploy/static/provider/kind/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -496,7 +496,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -507,7 +507,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -543,7 +543,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -554,7 +554,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -592,7 +592,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -605,7 +605,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 934c81a01..cda06a589 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -346,7 +346,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -369,7 +369,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -414,7 +414,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -493,7 +493,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -504,7 +504,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -540,7 +540,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -551,7 +551,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -589,7 +589,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -602,7 +602,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.19/deploy.yaml b/deploy/static/provider/scw/1.19/deploy.yaml
index d8dc86368..f7721046b 100644
--- a/deploy/static/provider/scw/1.19/deploy.yaml
+++ b/deploy/static/provider/scw/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -348,7 +348,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -370,7 +370,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -410,7 +410,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -482,7 +482,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -493,7 +493,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -529,7 +529,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -540,7 +540,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -578,7 +578,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.20/deploy.yaml b/deploy/static/provider/scw/1.20/deploy.yaml
index 19bfb55a8..45f9f37ec 100644
--- a/deploy/static/provider/scw/1.20/deploy.yaml
+++ b/deploy/static/provider/scw/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +485,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +496,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.21/deploy.yaml b/deploy/static/provider/scw/1.21/deploy.yaml
index 25a56f11a..a7b7b9f3f 100644
--- a/deploy/static/provider/scw/1.21/deploy.yaml
+++ b/deploy/static/provider/scw/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +488,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +499,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.22/deploy.yaml b/deploy/static/provider/scw/1.22/deploy.yaml
index 25a56f11a..a7b7b9f3f 100644
--- a/deploy/static/provider/scw/1.22/deploy.yaml
+++ b/deploy/static/provider/scw/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +488,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +499,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.23/deploy.yaml b/deploy/static/provider/scw/1.23/deploy.yaml
index 25a56f11a..a7b7b9f3f 100644
--- a/deploy/static/provider/scw/1.23/deploy.yaml
+++ b/deploy/static/provider/scw/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +488,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +499,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 19bfb55a8..45f9f37ec 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +485,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +496,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.1.3
+        app.kubernetes.io/version: 1.2.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.1.3
+    app.kubernetes.io/version: 1.2.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index b78675ff4..283513ac7 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -51,7 +51,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -186,17 +186,17 @@ In AWS we use a Network load balancer (NLB) to expose the NGINX Ingress controll
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
 
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -238,7 +238,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -252,7 +252,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regards to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -260,13 +260,13 @@ More information with regards to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/do/deploy.yaml
 ```
 
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -280,7 +280,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A [complete list of available annotations for Oracle Cloud Infrastructure](https://github.com/oracle/oci-cloud-controller-manager/blob/master/docs/load-balancer-annotations.md) can be found in the [OCI Cloud Controller Manager](https://github.com/oracle/oci-cloud-controller-manager) documentation.
@@ -292,7 +292,7 @@ This section is applicable to Kubernetes clusters deployed on bare metal servers
 For quick testing, you can use a [NodePort](https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport). This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.1.3/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range), see [bare-metal considerations](./baremetal.md).
diff --git a/images/httpbin/rootfs/Dockerfile b/images/httpbin/rootfs/Dockerfile
index 9ef9ccc2b..113aaaa0d 100644
--- a/images/httpbin/rootfs/Dockerfile
+++ b/images/httpbin/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.13
+FROM alpine:3.14.6
 
 ENV LC_ALL=C.UTF-8
 ENV LANG=C.UTF-8
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index c8a07f294..15f8392a7 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,4 +1,4 @@
-FROM k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220331-controller-v1.1.2-31-gf1cb2b73c@sha256:baa326f5c726d65be828852943a259c1f0572883590b9081b7e8fa982d64d96e AS BASE
+FROM k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220416-controller-v1.2.0-beta.0-4-g2e1a4790b@sha256:4468eb8cc9aa0ec3971ddf3811efe363e6f8e9082e95b567a5c27d91f89fb1e3   AS BASE
 
 FROM alpine:3.14.6
 

From 4cc0099eeefe7d0bfdf2e8db5955e78c229948d6 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 1 May 2022 17:13:24 -0300
Subject: [PATCH 0158/1641] Remove dind in ci tests (#8529)

---
 build/run-in-docker.sh | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 315756269..ee6c49a04 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -62,10 +62,7 @@ else
   PLATFORM_FLAG=
 fi
 
-if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
-  /bin/bash -c "${FLAGS}"
-else
-  docker run                                            \
+docker run                                            \
     ${PLATFORM_FLAG} ${PLATFORM}                        \
     --tty                                               \
     --rm                                                \
@@ -81,4 +78,3 @@ else
     -w "/go/src/${PKG}"                                 \
     -u $(id -u ${USER}):$(id -g ${USER})                \
     ${E2E_IMAGE} /bin/bash -c "${FLAGS}"
-fi

From 5d8b0bf428b9cf03c9489e08e7938aebc82f2747 Mon Sep 17 00:00:00 2001
From: FrodeI <FrodeI@users.noreply.github.com>
Date: Sun, 1 May 2022 22:41:15 +0200
Subject: [PATCH 0159/1641] Add documentation for
 controller.service.loadBalancerIP in Helm chart (#8522)

---
 charts/ingress-nginx/README.md   | 1 +
 charts/ingress-nginx/values.yaml | 3 ++-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index b0aef6678..a78d4d907 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -401,6 +401,7 @@ Kubernetes: `>=1.19.0-0`
 | controller.service.ipFamilies | list | `["IPv4"]` | List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. |
 | controller.service.ipFamilyPolicy | string | `"SingleStack"` | Represents the dual-stack-ness requested or required by this Service. Possible values are SingleStack, PreferDualStack or RequireDualStack. The ipFamilies and clusterIPs fields depend on the value of this field. |
 | controller.service.labels | object | `{}` |  |
+| controller.service.loadBalancerIP | string | `""` | Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer |
 | controller.service.loadBalancerSourceRanges | list | `[]` |  |
 | controller.service.nodePorts.http | string | `""` |  |
 | controller.service.nodePorts.https | string | `""` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index e6e21e1ad..1a45f734a 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -460,7 +460,8 @@ controller:
     ##
     externalIPs: []
 
-    # loadBalancerIP: ""
+    # -- Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
+    loadBalancerIP: ""
     loadBalancerSourceRanges: []
 
     enableHttp: true

From 8d2c439fa84f5f74e275180265e9c5d14c5c9915 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 1 May 2022 14:07:14 -0700
Subject: [PATCH 0160/1641] Bump k8s.io/component-base from 0.23.5 to 0.23.6
 (#8508)

Bumps [k8s.io/component-base](https://github.com/kubernetes/component-base) from 0.23.5 to 0.23.6.
- [Release notes](https://github.com/kubernetes/component-base/releases)
- [Commits](https://github.com/kubernetes/component-base/compare/v0.23.5...v0.23.6)

---
updated-dependencies:
- dependency-name: k8s.io/component-base
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 12 ++++++++----
 2 files changed, 12 insertions(+), 8 deletions(-)

diff --git a/go.mod b/go.mod
index 0a4befb3e..d08c29b30 100644
--- a/go.mod
+++ b/go.mod
@@ -30,14 +30,14 @@ require (
 	google.golang.org/grpc v1.44.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.23.5
+	k8s.io/api v0.23.6
 	k8s.io/apiextensions-apiserver v0.23.5
-	k8s.io/apimachinery v0.23.5
+	k8s.io/apimachinery v0.23.6
 	k8s.io/apiserver v0.23.5
 	k8s.io/cli-runtime v0.23.5
-	k8s.io/client-go v0.23.5
+	k8s.io/client-go v0.23.6
 	k8s.io/code-generator v0.23.5
-	k8s.io/component-base v0.23.5
+	k8s.io/component-base v0.23.6
 	k8s.io/klog/v2 v2.60.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.11.2
diff --git a/go.sum b/go.sum
index 29455a435..25f3912f0 100644
--- a/go.sum
+++ b/go.sum
@@ -1128,22 +1128,26 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.23.5 h1:zno3LUiMubxD/V1Zw3ijyKO3wxrhbUF1Ck+VjBvfaoA=
 k8s.io/api v0.23.5/go.mod h1:Na4XuKng8PXJ2JsploYYrivXrINeTaycCGcYgF91Xm8=
+k8s.io/api v0.23.6 h1:yOK34wbYECH4RsJbQ9sfkFK3O7f/DUHRlzFehkqZyVw=
+k8s.io/api v0.23.6/go.mod h1:1kFaYxGCFHYp3qd6a85DAj/yW8aVD6XLZMqJclkoi9g=
 k8s.io/apiextensions-apiserver v0.23.5 h1:5SKzdXyvIJKu+zbfPc3kCbWpbxi+O+zdmAJBm26UJqI=
 k8s.io/apiextensions-apiserver v0.23.5/go.mod h1:ntcPWNXS8ZPKN+zTXuzYMeg731CP0heCTl6gYBxLcuQ=
-k8s.io/apimachinery v0.23.5 h1:Va7dwhp8wgkUPWsEXk6XglXWU4IKYLKNlv8VkX7SDM0=
 k8s.io/apimachinery v0.23.5/go.mod h1:BEuFMMBaIbcOqVIJqNZJXGFTP4W6AycEpb5+m/97hrM=
+k8s.io/apimachinery v0.23.6 h1:RH1UweWJkWNTlFx0D8uxOpaU1tjIOvVVWV/bu5b3/NQ=
+k8s.io/apimachinery v0.23.6/go.mod h1:BEuFMMBaIbcOqVIJqNZJXGFTP4W6AycEpb5+m/97hrM=
 k8s.io/apiserver v0.23.5 h1:2Ly8oUjz5cnZRn1YwYr+aFgDZzUmEVL9RscXbnIeDSE=
 k8s.io/apiserver v0.23.5/go.mod h1:7wvMtGJ42VRxzgVI7jkbKvMbuCbVbgsWFT7RyXiRNTw=
 k8s.io/cli-runtime v0.23.5 h1:Z7XUpGoJZYZB2uNjQfJjMbyDKyVkoBGye62Ap0sWQHY=
 k8s.io/cli-runtime v0.23.5/go.mod h1:oY6QDF2qo9xndSq32tqcmRp2UyXssdGrLfjAVymgbx4=
-k8s.io/client-go v0.23.5 h1:zUXHmEuqx0RY4+CsnkOn5l0GU+skkRXKGJrhmE2SLd8=
 k8s.io/client-go v0.23.5/go.mod h1:flkeinTO1CirYgzMPRWxUCnV0G4Fbu2vLhYCObnt/r4=
+k8s.io/client-go v0.23.6 h1:7h4SctDVQAQbkHQnR4Kzi7EyUyvla5G1pFWf4+Od7hQ=
+k8s.io/client-go v0.23.6/go.mod h1:Umt5icFOMLV/+qbtZ3PR0D+JA6lvvb3syzodv4irpK4=
 k8s.io/code-generator v0.23.5 h1:xn3a6J5pUL49AoH6SPrOFtnB5cvdMl76f/bEY176R3c=
 k8s.io/code-generator v0.23.5/go.mod h1:S0Q1JVA+kSzTI1oUvbKAxZY/DYbA/ZUb4Uknog12ETk=
-k8s.io/component-base v0.23.5 h1:8qgP5R6jG1BBSXmRYW+dsmitIrpk8F/fPEvgDenMCCE=
 k8s.io/component-base v0.23.5/go.mod h1:c5Nq44KZyt1aLl0IpHX82fhsn84Sb0jjzwjpcA42bY0=
+k8s.io/component-base v0.23.6 h1:8dhVZ4VrRcNdV2EGjl8tj8YOHwX6ysgCGMJ2Oyy0NW8=
+k8s.io/component-base v0.23.6/go.mod h1:FGMPeMrjYu0UZBSAFcfloVDplj9IvU+uRMTOdE23Fj0=
 k8s.io/gengo v0.0.0-20200413195148-3a45101e95ac/go.mod h1:ezvh/TsK7cY6rbqRK0oQQ8IAqLxYwwyPxAX1Pzy0ii0=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c h1:GohjlNKauSai7gN4wsJkeZ3WAJx4Sh+oT/b5IYn5suA=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=

From 8f72f5abdfb02beccd7dda744d05b0d7ccbc09a5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 1 May 2022 14:09:13 -0700
Subject: [PATCH 0161/1641] Bump google.golang.org/grpc from 1.44.0 to 1.46.0
 (#8509)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.44.0 to 1.46.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.44.0...v1.46.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/go.mod b/go.mod
index d08c29b30..63f7f9979 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5
 	golang.org/x/net v0.0.0-20220225172249-27dd8689420f
-	google.golang.org/grpc v1.44.0
+	google.golang.org/grpc v1.46.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.23.6
diff --git a/go.sum b/go.sum
index 25f3912f0..29f604ea1 100644
--- a/go.sum
+++ b/go.sum
@@ -112,8 +112,8 @@ github.com/cncf/udpa/go v0.0.0-20200629203442-efcf912fb354/go.mod h1:WmhPx2Nbnht
 github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
 github.com/cncf/udpa/go v0.0.0-20210930031921-04548b0d99d4/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
 github.com/cncf/xds/go v0.0.0-20210312221358-fbca930ec8ed/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20210805033703-aa0b78936158/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20211001041855-01bcc9b48dfe/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cockroachdb/datadriven v0.0.0-20200714090401-bf6692d28da5/go.mod h1:h6jFvWxBdQXxjopDMZyH2UVceIRfR84bdzbkoKrsWNo=
 github.com/cockroachdb/errors v1.2.4/go.mod h1:rQD95gz6FARkaKkQXUksEje/d9a6wBJoCr5oaCLELYA=
@@ -160,7 +160,7 @@ github.com/envoyproxy/go-control-plane v0.9.7/go.mod h1:cwu0lG7PUMfa9snN8LXBig5y
 github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
 github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
 github.com/envoyproxy/go-control-plane v0.9.9-0.20210512163311-63b5d3c536b0/go.mod h1:hliV/p42l8fGbc6Y9bQ70uLwIvmJyVE5k4iMKlh8wCQ=
-github.com/envoyproxy/go-control-plane v0.9.10-0.20210907150352-cf90f659a021/go.mod h1:AFq3mo9L8Lqqiid3OhADV3RfLJnjiw63cSpi+fDTRC0=
+github.com/envoyproxy/go-control-plane v0.10.2-0.20220325020618-49ff273808a1/go.mod h1:KJwIaB5Mv44NWtYuAOFCVOjcI94vtpEz2JU/D2v6IjE=
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
 github.com/evanphx/json-patch v0.5.2/go.mod h1:ZWS5hhDbVDyob71nXKNL0+PWn6ToqBHMikGIFbs31qQ=
 github.com/evanphx/json-patch v4.11.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
@@ -1064,8 +1064,8 @@ google.golang.org/grpc v1.36.1/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAG
 google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/grpc v1.38.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
-google.golang.org/grpc v1.44.0 h1:weqSxi/TMs1SqFRMHCtBgXRs8k3X39QIDEZ0pRcttUg=
-google.golang.org/grpc v1.44.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU=
+google.golang.org/grpc v1.46.0 h1:oCjezcn6g6A75TGoKYBPgKmVBLexhYLM6MebdrPApP8=
+google.golang.org/grpc v1.46.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=

From dfc9a9aa33c1ca4b9c0a6213e1f15939d487b138 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 1 May 2022 14:11:13 -0700
Subject: [PATCH 0162/1641] Bump github.com/mitchellh/mapstructure from 1.4.3
 to 1.5.0 (#8510)

Bumps [github.com/mitchellh/mapstructure](https://github.com/mitchellh/mapstructure) from 1.4.3 to 1.5.0.
- [Release notes](https://github.com/mitchellh/mapstructure/releases)
- [Changelog](https://github.com/mitchellh/mapstructure/blob/main/CHANGELOG.md)
- [Commits](https://github.com/mitchellh/mapstructure/compare/v1.4.3...v1.5.0)

---
updated-dependencies:
- dependency-name: github.com/mitchellh/mapstructure
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 63f7f9979..271d51cc6 100644
--- a/go.mod
+++ b/go.mod
@@ -12,7 +12,7 @@ require (
 	github.com/kylelemons/godebug v1.1.0
 	github.com/mitchellh/go-ps v1.0.0
 	github.com/mitchellh/hashstructure v1.1.0
-	github.com/mitchellh/mapstructure v1.4.3
+	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20180404114147-54bdd96e6a52
 	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo v1.16.5
diff --git a/go.sum b/go.sum
index 29f604ea1..1fea72482 100644
--- a/go.sum
+++ b/go.sum
@@ -425,8 +425,8 @@ github.com/mitchellh/iochan v1.0.0/go.mod h1:JwYml1nuB7xOzsp52dPpHFffvOCDupsG0Qu
 github.com/mitchellh/mapstructure v0.0.0-20160808181253-ca63d7c062ee/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
 github.com/mitchellh/mapstructure v1.1.2/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
 github.com/mitchellh/mapstructure v1.4.1/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo=
-github.com/mitchellh/mapstructure v1.4.3 h1:OVowDSCllw/YjdLkam3/sm7wEtOy59d8ndGgCcyj8cs=
-github.com/mitchellh/mapstructure v1.4.3/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo=
+github.com/mitchellh/mapstructure v1.5.0 h1:jeMsZIYE/09sWLaz43PL7Gy6RuMjD2eJVyuac5Z2hdY=
+github.com/mitchellh/mapstructure v1.5.0/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo=
 github.com/mmarkdown/mmark v2.0.40+incompatible h1:vMeUeDzBK3H+/mU0oMVfMuhSXJlIA+DE/DMPQNAj5C4=
 github.com/mmarkdown/mmark v2.0.40+incompatible/go.mod h1:Uvmoz7tvsWpr7bMVxIpqZPyN3FbOtzDmnsJDFp7ltJs=
 github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=

From 31178ef2c30dc2424ce69eff43d07875e834bb96 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 1 May 2022 14:13:13 -0700
Subject: [PATCH 0163/1641] Bump github.com/fsnotify/fsnotify from 1.5.1 to
 1.5.3 (#8511)

Bumps [github.com/fsnotify/fsnotify](https://github.com/fsnotify/fsnotify) from 1.5.1 to 1.5.3.
- [Release notes](https://github.com/fsnotify/fsnotify/releases)
- [Changelog](https://github.com/fsnotify/fsnotify/blob/main/CHANGELOG.md)
- [Commits](https://github.com/fsnotify/fsnotify/compare/v1.5.1...v1.5.3)

---
updated-dependencies:
- dependency-name: github.com/fsnotify/fsnotify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 3 ++-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/go.mod b/go.mod
index 271d51cc6..fd7979d16 100644
--- a/go.mod
+++ b/go.mod
@@ -5,7 +5,7 @@ go 1.17
 require (
 	github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a
 	github.com/eapache/channels v1.1.0
-	github.com/fsnotify/fsnotify v1.5.1
+	github.com/fsnotify/fsnotify v1.5.3
 	github.com/gavv/httpexpect/v2 v2.3.1
 	github.com/imdario/mergo v0.3.12
 	github.com/json-iterator/go v1.1.12
diff --git a/go.sum b/go.sum
index 1fea72482..8a4e04ab7 100644
--- a/go.sum
+++ b/go.sum
@@ -178,8 +178,9 @@ github.com/form3tech-oss/jwt-go v3.2.3+incompatible/go.mod h1:pbq4aXjuKjdthFRnoD
 github.com/frankban/quicktest v1.11.3/go.mod h1:wRf/ReqHper53s+kmmSZizM8NamnL3IM0I9ntUbOk+k=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
-github.com/fsnotify/fsnotify v1.5.1 h1:mZcQUHVQUQWoPXXtuf9yuEXKudkV2sx1E06UadKWpgI=
 github.com/fsnotify/fsnotify v1.5.1/go.mod h1:T3375wBYaZdLLcVNkcVbzGHY7f1l/uK5T5Ai1i3InKU=
+github.com/fsnotify/fsnotify v1.5.3 h1:vNFpj2z7YIbwh2bw7x35sqYpp2wfuq+pivKbWG09B8c=
+github.com/fsnotify/fsnotify v1.5.3/go.mod h1:T3375wBYaZdLLcVNkcVbzGHY7f1l/uK5T5Ai1i3InKU=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b h1:074/xhloHUBOpTZwlIzQ28rbPY8pNJvzY7Gcx5KnNOk=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
 github.com/gavv/httpexpect/v2 v2.3.1 h1:sGLlKMn8AuHS9ztK9Sb7AJ7OxIL8v2PcLdyxfKt1Fo4=

From 6a86b864d4851b36b4bdbbfe48a3396a951de113 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 1 May 2022 14:15:13 -0700
Subject: [PATCH 0164/1641] Bump github.com/prometheus/common from 0.33.0 to
 0.34.0 (#8512)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.33.0 to 0.34.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.33.0...v0.34.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index fd7979d16..29091112d 100644
--- a/go.mod
+++ b/go.mod
@@ -20,7 +20,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.12.1
 	github.com/prometheus/client_model v0.2.0
-	github.com/prometheus/common v0.33.0
+	github.com/prometheus/common v0.34.0
 	github.com/spf13/cobra v1.4.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.7.1
diff --git a/go.sum b/go.sum
index 8a4e04ab7..3dc978c9e 100644
--- a/go.sum
+++ b/go.sum
@@ -516,8 +516,8 @@ github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9
 github.com/prometheus/common v0.28.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/common v0.32.1/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.33.0 h1:rHgav/0a6+uYgGdNt3jwz8FNSesO/Hsang3O0T9A5SE=
-github.com/prometheus/common v0.33.0/go.mod h1:gB3sOl7P0TvJabZpLY5uQMpUqRCPPCyRLCZYc7JZTNE=
+github.com/prometheus/common v0.34.0 h1:RBmGO9d/FVjqHT0yUGQwBJhkwKV+wPCn7KGpvfab0uE=
+github.com/prometheus/common v0.34.0/go.mod h1:gB3sOl7P0TvJabZpLY5uQMpUqRCPPCyRLCZYc7JZTNE=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.0-20190507164030-5867b95ac084/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=

From cbc288ab647b56e5d7c251ab0d72fdb52650b4f2 Mon Sep 17 00:00:00 2001
From: Daniel Schepers <schepedw@gmail.com>
Date: Mon, 2 May 2022 21:11:55 -0500
Subject: [PATCH 0165/1641] Update README.md (#8537)

---
 docs/examples/customization/configuration-snippets/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/examples/customization/configuration-snippets/README.md b/docs/examples/customization/configuration-snippets/README.md
index 5ef230ff1..33e7c4bf0 100644
--- a/docs/examples/customization/configuration-snippets/README.md
+++ b/docs/examples/customization/configuration-snippets/README.md
@@ -2,7 +2,7 @@
 
 ## Ingress
 
-The Ingress in [this example](ingress.yaml) adds a custom header to Nginx configuration that only applies to that specific Ingress. If you want to add headers that apply globally to all Ingresses, please have a look at [an example of specifying customer headers](../custom-headers/README.md).
+The Ingress in [this example](ingress.yaml) adds a custom header to Nginx configuration that only applies to that specific Ingress. If you want to add headers that apply globally to all Ingresses, please have a look at [an example of specifying custom headers](../custom-headers/README.md).
 
 ```console
 kubectl apply -f ingress.yaml

From 5a7d053c6f0c26a912a32baac3c6b183c585fe1a Mon Sep 17 00:00:00 2001
From: Josh Soref <2119212+jsoref@users.noreply.github.com>
Date: Wed, 4 May 2022 07:45:53 -0400
Subject: [PATCH 0166/1641] Document nginx 1.19.7 deprecations pulled in by
 ingress-nginx 1.1.3  (#8532)

* Document nginx 1.19.7 deprecations pulled in by ingress-nginx 1.1.3

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

* Document ingress-nginx 1.1.3/1.3.0 removals

Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>

Co-authored-by: Josh Soref <jsoref@users.noreply.github.com>
---
 Changelog.md                                     | 6 ++++++
 docs/user-guide/nginx-configuration/configmap.md | 9 +++++++++
 2 files changed, 15 insertions(+)

diff --git a/Changelog.md b/Changelog.md
index 687ae51f7..b1c94f12f 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -75,6 +75,12 @@ Patches [OpenSSL CVE-2022-0778](https://github.com/kubernetes/ingress-nginx/issu
 
 Patches [Libxml2 CVE-2022-23308](https://github.com/kubernetes/ingress-nginx/issues/8321)
 
+_Breaking Changes:_
+
+- https://github.com/nginx/nginx/commit/d18e066d650bff39f1705d3038804873584007af Deprecated http2_recv_timeout in favor of client_header_timeout (client-header-timeout)
+- https://github.com/nginx/nginx/commit/51fea093e4374dbd857dc437ff9588060ef56471 Deprecated http2_max_field_size (http2-max-field-size) and http2_max_header_size (http2-max-header-size) in favor of large_client_header_buffers (large-client-header-buffers)
+- https://github.com/nginx/nginx/commit/49ab3312448495f0ee8e00143a29624dde46ef5c Deprecated http2_idle_timeout and http2_max_requests (http2-max-requests) in favor of keepalive_timeout (upstream-keepalive-timeout?) and keepalive_requests (upstream-keepalive-requests?) respectively
+
 _Changes:_
 
 - [8415](https://github.com/kubernetes/ingress-nginx/pull/8415) base img update for e2e-test-runner & opentelemetry
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 6cec6f02f..57d79d536 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -371,6 +371,9 @@ _References:_
 
 ## http2-max-field-size
 
+!!! warning
+    This feature was deprecated in 1.1.3 and will be removed in 1.3.0. Use [large-client-header-buffers](#large-client-header-buffers) instead.
+
 Limits the maximum size of an HPACK-compressed request header field.
 
 _References:_
@@ -378,6 +381,9 @@ _References:_
 
 ## http2-max-header-size
 
+!!! warning
+    This feature was deprecated in 1.1.3 and will be removed in 1.3.0. Use [large-client-header-buffers](#large-client-header-buffers) instead.
+
 Limits the maximum size of the entire request header list after HPACK decompression.
 
 _References:_
@@ -385,6 +391,9 @@ _References:_
 
 ## http2-max-requests
 
+!!! warning
+    This feature was deprecated in 1.1.3 and will be removed in 1.3.0. Use [upstream-keepalive-requests](#upstream-keepalive-requests) instead.
+
 Sets the maximum number of requests (including push requests) that can be served through one HTTP/2 connection, after which the next client request will lead to connection closing and the need of establishing a new connection.
 
 _References:_

From a5a59f18e58abb0f930cb04cabf3775138ae95c0 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 4 May 2022 08:57:51 -0300
Subject: [PATCH 0167/1641] Revert "Remove dind in ci tests (#8529)" (#8547)

This reverts commit 4cc0099eeefe7d0bfdf2e8db5955e78c229948d6.
---
 build/run-in-docker.sh | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index ee6c49a04..315756269 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -62,7 +62,10 @@ else
   PLATFORM_FLAG=
 fi
 
-docker run                                            \
+if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
+  /bin/bash -c "${FLAGS}"
+else
+  docker run                                            \
     ${PLATFORM_FLAG} ${PLATFORM}                        \
     --tty                                               \
     --rm                                                \
@@ -78,3 +81,4 @@ docker run                                            \
     -w "/go/src/${PKG}"                                 \
     -u $(id -u ${USER}):$(id -g ${USER})                \
     ${E2E_IMAGE} /bin/bash -c "${FLAGS}"
+fi

From 9c288ee2c21c6473266c64c0dd123bb617da94a5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 4 May 2022 05:05:51 -0700
Subject: [PATCH 0168/1641] Bump github.com/fsnotify/fsnotify from 1.5.3 to
 1.5.4 (#8533)

Bumps [github.com/fsnotify/fsnotify](https://github.com/fsnotify/fsnotify) from 1.5.3 to 1.5.4.
- [Release notes](https://github.com/fsnotify/fsnotify/releases)
- [Changelog](https://github.com/fsnotify/fsnotify/blob/main/CHANGELOG.md)
- [Commits](https://github.com/fsnotify/fsnotify/compare/v1.5.3...v1.5.4)

---
updated-dependencies:
- dependency-name: github.com/fsnotify/fsnotify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 7 ++++---
 2 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/go.mod b/go.mod
index 29091112d..b13ed1cc6 100644
--- a/go.mod
+++ b/go.mod
@@ -5,7 +5,7 @@ go 1.17
 require (
 	github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a
 	github.com/eapache/channels v1.1.0
-	github.com/fsnotify/fsnotify v1.5.3
+	github.com/fsnotify/fsnotify v1.5.4
 	github.com/gavv/httpexpect/v2 v2.3.1
 	github.com/imdario/mergo v0.3.12
 	github.com/json-iterator/go v1.1.12
@@ -120,7 +120,7 @@ require (
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.4.2 // indirect
 	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
-	golang.org/x/sys v0.0.0-20220114195835-da31bd327af9 // indirect
+	golang.org/x/sys v0.0.0-20220412211240-33da011f77ad // indirect
 	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
 	golang.org/x/text v0.3.7 // indirect
 	golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
diff --git a/go.sum b/go.sum
index 3dc978c9e..c0e977ba5 100644
--- a/go.sum
+++ b/go.sum
@@ -179,8 +179,8 @@ github.com/frankban/quicktest v1.11.3/go.mod h1:wRf/ReqHper53s+kmmSZizM8NamnL3IM
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
 github.com/fsnotify/fsnotify v1.5.1/go.mod h1:T3375wBYaZdLLcVNkcVbzGHY7f1l/uK5T5Ai1i3InKU=
-github.com/fsnotify/fsnotify v1.5.3 h1:vNFpj2z7YIbwh2bw7x35sqYpp2wfuq+pivKbWG09B8c=
-github.com/fsnotify/fsnotify v1.5.3/go.mod h1:T3375wBYaZdLLcVNkcVbzGHY7f1l/uK5T5Ai1i3InKU=
+github.com/fsnotify/fsnotify v1.5.4 h1:jRbGcIw6P2Meqdwuo0H1p6JVLbL5DHKAKlYndzMwVZI=
+github.com/fsnotify/fsnotify v1.5.4/go.mod h1:OVB6XrOHzAwXMpEM7uPOzcehqUV2UqJxmVXmkdnm1bU=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b h1:074/xhloHUBOpTZwlIzQ28rbPY8pNJvzY7Gcx5KnNOk=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
 github.com/gavv/httpexpect/v2 v2.3.1 h1:sGLlKMn8AuHS9ztK9Sb7AJ7OxIL8v2PcLdyxfKt1Fo4=
@@ -877,8 +877,9 @@ golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211029165221-6e7872819dc8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220114195835-da31bd327af9 h1:XfKQ4OlFl8okEOr5UvAqFRVj8pY/4yfcXrddB8qAbU0=
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220412211240-33da011f77ad h1:ntjMns5wyP/fN65tdBD4g8J5w8n015+iIIs9rtjXkY0=
+golang.org/x/sys v0.0.0-20220412211240-33da011f77ad/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 h1:JGgROgKl9N8DuW20oFS5gxc+lE67/N3FcwmBPMe7ArY=

From 32306381606c249b86cb2d5015c79f994251dad8 Mon Sep 17 00:00:00 2001
From: kszafran <k.p.szafranski@gmail.com>
Date: Wed, 4 May 2022 14:11:51 +0200
Subject: [PATCH 0169/1641] Update default allowed CORS headers (#8459)

X-CustomHeader looks more like an example than a header we would want to
accept in production. Added Range as a useful header that enables
operations on resources that can be fetched in chunks.
---
 docs/user-guide/nginx-configuration/annotations.md | 2 +-
 internal/ingress/annotations/annotations_test.go   | 2 +-
 internal/ingress/annotations/cors/main.go          | 2 +-
 test/e2e/annotations/cors.go                       | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 6309601b2..3a70ba14c 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -351,7 +351,7 @@ CORS can be controlled with the following annotations:
 
     This is a multi-valued field, separated by ',' and accepts letters, numbers, _ and -.
 
-    - Default: `DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization`
+    - Default: `DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization`
     - Example: `nginx.ingress.kubernetes.io/cors-allow-headers: "X-Forwarded-For, X-app123-XPTO"`
 
 * `nginx.ingress.kubernetes.io/cors-expose-headers`: Controls which headers are exposed to response.
diff --git a/internal/ingress/annotations/annotations_test.go b/internal/ingress/annotations/annotations_test.go
index a253355a2..d792801bc 100644
--- a/internal/ingress/annotations/annotations_test.go
+++ b/internal/ingress/annotations/annotations_test.go
@@ -39,7 +39,7 @@ var (
 	annotationCorsExposeHeaders      = parser.GetAnnotationWithPrefix("cors-expose-headers")
 	annotationCorsAllowCredentials   = parser.GetAnnotationWithPrefix("cors-allow-credentials")
 	defaultCorsMethods               = "GET, PUT, POST, DELETE, PATCH, OPTIONS"
-	defaultCorsHeaders               = "DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization"
+	defaultCorsHeaders               = "DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization"
 	annotationAffinityCookieName     = parser.GetAnnotationWithPrefix("session-cookie-name")
 	annotationUpstreamHashBy         = parser.GetAnnotationWithPrefix("upstream-hash-by")
 	annotationCustomHTTPErrors       = parser.GetAnnotationWithPrefix("custom-http-errors")
diff --git a/internal/ingress/annotations/cors/main.go b/internal/ingress/annotations/cors/main.go
index de5b8c279..3888f2909 100644
--- a/internal/ingress/annotations/cors/main.go
+++ b/internal/ingress/annotations/cors/main.go
@@ -30,7 +30,7 @@ import (
 const (
 	// Default values
 	defaultCorsMethods = "GET, PUT, POST, DELETE, PATCH, OPTIONS"
-	defaultCorsHeaders = "DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization"
+	defaultCorsHeaders = "DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization"
 	defaultCorsMaxAge  = 1728000
 )
 
diff --git a/test/e2e/annotations/cors.go b/test/e2e/annotations/cors.go
index c249b3877..f88459bce 100644
--- a/test/e2e/annotations/cors.go
+++ b/test/e2e/annotations/cors.go
@@ -45,7 +45,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 			func(server string) bool {
 				return strings.Contains(server, "more_set_headers 'Access-Control-Allow-Methods: GET, PUT, POST, DELETE, PATCH, OPTIONS';") &&
 					strings.Contains(server, "more_set_headers 'Access-Control-Allow-Origin: $http_origin';") &&
-					strings.Contains(server, "more_set_headers 'Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization';") &&
+					strings.Contains(server, "more_set_headers 'Access-Control-Allow-Headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization';") &&
 					strings.Contains(server, "more_set_headers 'Access-Control-Max-Age: 1728000';") &&
 					strings.Contains(server, "more_set_headers 'Access-Control-Allow-Credentials: true';") &&
 					strings.Contains(server, "set $http_origin *;") &&

From ee50e38b44b83278bac455f9d1e1f9d07d4ec97c Mon Sep 17 00:00:00 2001
From: Florian Michel <52607335+flo-mic@users.noreply.github.com>
Date: Wed, 4 May 2022 17:29:51 +0200
Subject: [PATCH 0170/1641] disable modsecurity on error page (#8202)

* disable modsecurity on error page

* fix modsecurity error pages test

* fix variable in nginx template

* disable modsecurity on all internal locations

* fix pipeline checks for gofmt

Signed-off-by: Florian Michel <florianmichel@hotmail.de>
---
 .../ingress/controller/template/template.go   | 16 ++++++++-------
 rootfs/etc/nginx/template/nginx.tmpl          | 20 +++++++++++++++++--
 2 files changed, 27 insertions(+), 9 deletions(-)

diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index f24aea0c4..73bc344c0 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -1277,15 +1277,17 @@ func proxySetHeader(loc interface{}) string {
 
 // buildCustomErrorDeps is a utility function returning a struct wrapper with
 // the data required to build the 'CUSTOM_ERRORS' template
-func buildCustomErrorDeps(upstreamName string, errorCodes []int, enableMetrics bool) interface{} {
+func buildCustomErrorDeps(upstreamName string, errorCodes []int, enableMetrics bool, modsecurityEnabled bool) interface{} {
 	return struct {
-		UpstreamName  string
-		ErrorCodes    []int
-		EnableMetrics bool
+		UpstreamName       string
+		ErrorCodes         []int
+		EnableMetrics      bool
+		ModsecurityEnabled bool
 	}{
-		UpstreamName:  upstreamName,
-		ErrorCodes:    errorCodes,
-		EnableMetrics: enableMetrics,
+		UpstreamName:       upstreamName,
+		ErrorCodes:         errorCodes,
+		EnableMetrics:      enableMetrics,
+		ModsecurityEnabled: modsecurityEnabled,
 	}
 }
 
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index a181dd22a..ed7d3cc08 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -656,7 +656,7 @@ http {
         {{ $cfg.ServerSnippet }}
         {{ end }}
 
-        {{ template "CUSTOM_ERRORS" (buildCustomErrorDeps "upstream-default-backend" $cfg.CustomHTTPErrors $all.EnableMetrics) }}
+        {{ template "CUSTOM_ERRORS" (buildCustomErrorDeps "upstream-default-backend" $cfg.CustomHTTPErrors $all.EnableMetrics $cfg.EnableModsecurity) }}
     }
     ## end server {{ $server.Hostname }}
 
@@ -872,11 +872,17 @@ stream {
 {{/* definition of templates to avoid repetitions */}}
 {{ define "CUSTOM_ERRORS" }}
         {{ $enableMetrics := .EnableMetrics }}
+        {{ $modsecurityEnabled := .ModsecurityEnabled }}
         {{ $upstreamName := .UpstreamName }}
         {{ range $errCode := .ErrorCodes }}
         location @custom_{{ $upstreamName }}_{{ $errCode }} {
             internal;
 
+            # Ensure that modsecurity will not run on custom error pages or they might be blocked
+            {{ if $modsecurityEnabled }}
+            modsecurity off;
+            {{ end }}
+
             proxy_intercept_errors off;
 
             proxy_set_header       X-Code             {{ $errCode }};
@@ -1015,7 +1021,7 @@ stream {
         {{ end }}
 
         {{ range $errorLocation := (buildCustomErrorLocationsPerServer $server) }}
-        {{ template "CUSTOM_ERRORS" (buildCustomErrorDeps $errorLocation.UpstreamName $errorLocation.Codes $all.EnableMetrics) }}
+        {{ template "CUSTOM_ERRORS" (buildCustomErrorDeps $errorLocation.UpstreamName $errorLocation.Codes $all.EnableMetrics $all.Cfg.EnableModsecurity) }}
         {{ end }}
 
         {{ buildMirrorLocations $server.Locations }}
@@ -1048,6 +1054,11 @@ stream {
             opentracing_propagate_context;
             {{ end }}
 
+            # Ensure that modsecurity will not run on an internal location as this is not accessible from outside
+            {{ if $all.Cfg.EnableModsecurity }}
+            modsecurity off;
+            {{ end }}
+
             {{ if $externalAuth.AuthCacheKey }}
             set $tmp_cache_key '{{ $server.Hostname }}{{ $authPath }}{{ $externalAuth.AuthCacheKey }}';
             set $cache_key '';
@@ -1158,6 +1169,11 @@ stream {
 
             add_header Set-Cookie $auth_cookie;
 
+            # Ensure that modsecurity will not run on an internal location as this is not accessible from outside
+            {{ if $all.Cfg.EnableModsecurity }}
+            modsecurity off;
+            {{ end }}
+
             return 302 {{ buildAuthSignURL $externalAuth.SigninURL $externalAuth.SigninURLRedirectParam }};
         }
         {{ end }}

From 67e430cb3abf387a2be80c00abe46808e007e254 Mon Sep 17 00:00:00 2001
From: Alexey Miasoedov <alexey.miasoedov@gmail.com>
Date: Thu, 5 May 2022 01:56:20 +0300
Subject: [PATCH 0171/1641] fix typo (#8550)

---
 docs/user-guide/multiple-ingress.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/multiple-ingress.md b/docs/user-guide/multiple-ingress.md
index 246e38b52..4825b8458 100644
--- a/docs/user-guide/multiple-ingress.md
+++ b/docs/user-guide/multiple-ingress.md
@@ -11,7 +11,7 @@ If all ingress controllers respect IngressClasses (e.g. multiple instances of in
 First, ensure the `--controller-class=` and `--ingress-class` are set to something different on each ingress controller:
 
 ```yaml
-# ingress-nginx Deployment/Statfulset
+# ingress-nginx Deployment/Statefulset
 spec:
   template:
      spec:

From f10bcd552b261b6aad5e897c80ed1a2692bb8fd7 Mon Sep 17 00:00:00 2001
From: kevin Pichardie <k.pichardie@gmail.com>
Date: Thu, 5 May 2022 10:44:20 +0200
Subject: [PATCH 0172/1641] Replace release v0.50.0 for v0.51.0 on readme
 (#8543)

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 8ce3222a9..0af81cb58 100644
--- a/README.md
+++ b/README.md
@@ -42,7 +42,7 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 | v1.0.2                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
 | v1.0.1                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
 | v1.0.0                | 1.22, 1.21, 1.20, 1.19       | 3.13.5         | 1.20.1        |
-| v0.50.0               | 1.21, 1.20, 1.19             | 3.14.2         | 1.19.9†       |
+| v0.51.0               | 1.21, 1.20, 1.19             | 3.14.4         | 1.19.10†       |
 | v0.49.3               | 1.21, 1.20, 1.19             | 3.14.2         | 1.19.9†       |
 | v0.49.2               | 1.21, 1.20, 1.19             | 3.14.2         | 1.19.9†       |
 | v0.49.1               | 1.21, 1.20, 1.19             | 3.14.2         | 1.19.9†       |

From ec1b01092ef2c2ff36fe296c91c45d9b2d394bbd Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 6 May 2022 16:39:05 +0530
Subject: [PATCH 0173/1641] added debug commands (#8553)

---
 test/e2e/run.sh | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/test/e2e/run.sh b/test/e2e/run.sh
index 1aa41e1c6..00ea73299 100755
--- a/test/e2e/run.sh
+++ b/test/e2e/run.sh
@@ -78,7 +78,10 @@ if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
 
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image image-chroot
+  echo "[dev-env] .. done building controller images"
+  echo "[dev-env] now building e2e-image.."
   make -C ${DIR}/../e2e-image image
+  echo "[dev-env] ..done building e2e-image"
 fi
 
 # Preload images used in e2e tests

From 730b7408ca5d247a31e50aaf479f081dd66949b9 Mon Sep 17 00:00:00 2001
From: serge-r <serge-r@users.noreply.github.com>
Date: Sun, 8 May 2022 07:39:17 +0700
Subject: [PATCH 0174/1641] Add header Host into mirror annotations (#8178)

---
 .../nginx-configuration/annotations.md        |  8 +++++
 internal/ingress/annotations/mirror/main.go   | 20 ++++++++++-
 .../ingress/annotations/mirror/main_test.go   | 33 +++++++++++++++++++
 .../ingress/controller/template/template.go   |  3 +-
 4 files changed, 62 insertions(+), 2 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 3a70ba14c..2a019ea27 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -131,6 +131,7 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/modsecurity-snippet](#modsecurity)|string|
 |[nginx.ingress.kubernetes.io/mirror-request-body](#mirror)|string|
 |[nginx.ingress.kubernetes.io/mirror-target](#mirror)|string|
+|[nginx.ingress.kubernetes.io/mirror-host](#mirror)|string|
 
 ### Canary
 
@@ -941,6 +942,13 @@ By default the request-body is sent to the mirror backend, but can be turned off
 nginx.ingress.kubernetes.io/mirror-request-body: "off"
 ```
 
+Also by default header Host for mirrored requests will be set the same as a host part of uri in the "mirror-target" annotation. You can override it by "mirror-host" annotation:
+
+```yaml
+nginx.ingress.kubernetes.io/mirror-target: https://1.2.3.4/$request_uri
+nginx.ingress.kubernetes.io/mirror-host: "test.env.com"
+```
+
 **Note:** The mirror directive will be applied to all paths within the ingress resource.
 
 The request sent to the mirror is linked to the original request. If you have a slow mirror backend, then the original request will throttle.
diff --git a/internal/ingress/annotations/mirror/main.go b/internal/ingress/annotations/mirror/main.go
index e11d4b4fb..cd54a9826 100644
--- a/internal/ingress/annotations/mirror/main.go
+++ b/internal/ingress/annotations/mirror/main.go
@@ -18,9 +18,9 @@ package mirror
 
 import (
 	"fmt"
+	"strings"
 
 	networking "k8s.io/api/networking/v1"
-
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
@@ -30,6 +30,7 @@ type Config struct {
 	Source      string `json:"source"`
 	RequestBody string `json:"requestBody"`
 	Target      string `json:"target"`
+	Host        string `json:"host"`
 }
 
 // Equal tests for equality between two Configuration types
@@ -54,6 +55,10 @@ func (m1 *Config) Equal(m2 *Config) bool {
 		return false
 	}
 
+	if m1.Host != m2.Host {
+		return false
+	}
+
 	return true
 }
 
@@ -85,5 +90,18 @@ func (a mirror) Parse(ing *networking.Ingress) (interface{}, error) {
 		config.Source = ""
 	}
 
+	config.Host, err = parser.GetStringAnnotation("mirror-host", ing)
+	if err != nil {
+		if config.Target != "" {
+			url, err := parser.StringToURL(config.Target)
+			if err != nil {
+				config.Host = ""
+			} else {
+				hostname := strings.Split(url.Hostname(), "$")
+				config.Host = hostname[0]
+			}
+		}
+	}
+
 	return config, nil
 }
diff --git a/internal/ingress/annotations/mirror/main_test.go b/internal/ingress/annotations/mirror/main_test.go
index af7ed1b1f..f744ab552 100644
--- a/internal/ingress/annotations/mirror/main_test.go
+++ b/internal/ingress/annotations/mirror/main_test.go
@@ -30,6 +30,7 @@ import (
 func TestParse(t *testing.T) {
 	requestBody := parser.GetAnnotationWithPrefix("mirror-request-body")
 	backendURL := parser.GetAnnotationWithPrefix("mirror-target")
+	host := parser.GetAnnotationWithPrefix("mirror-host")
 
 	ap := NewParser(&resolver.Mock{})
 	if ap == nil {
@@ -45,11 +46,43 @@ func TestParse(t *testing.T) {
 			Source:      ngxURI,
 			RequestBody: "on",
 			Target:      "https://test.env.com/$request_uri",
+			Host:        "test.env.com",
 		}},
 		{map[string]string{requestBody: "off"}, &Config{
 			Source:      "",
 			RequestBody: "off",
 			Target:      "",
+			Host:        "",
+		}},
+		{map[string]string{host: "test.env.com", backendURL: "http://some.test.env.com/$someparam"}, &Config{
+			Source:      ngxURI,
+			RequestBody: "on",
+			Target:      "http://some.test.env.com/$someparam",
+			Host:        "test.env.com",
+		}},
+		{map[string]string{backendURL: "IamNotAURL"}, &Config{
+			Source:      ngxURI,
+			RequestBody: "on",
+			Target:      "IamNotAURL",
+			Host:        "",
+		}},
+		{map[string]string{backendURL: "http://some.test.env.com:2121/$someparam=1&$someotherparam=2"}, &Config{
+			Source:      ngxURI,
+			RequestBody: "on",
+			Target:      "http://some.test.env.com:2121/$someparam=1&$someotherparam=2",
+			Host:        "some.test.env.com",
+		}},
+		{map[string]string{backendURL: "http://some.test.env.com", host: "someInvalidParm.%^&*()_=!@#'\""}, &Config{
+			Source:      ngxURI,
+			RequestBody: "on",
+			Target:      "http://some.test.env.com",
+			Host:        "someInvalidParm.%^&*()_=!@#'\"",
+		}},
+		{map[string]string{backendURL: "http://some.test.env.com", host: "_sbrubles-i\"@xpto:12345"}, &Config{
+			Source:      ngxURI,
+			RequestBody: "on",
+			Target:      "http://some.test.env.com",
+			Host:        "_sbrubles-i\"@xpto:12345",
 		}},
 	}
 
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 73bc344c0..a331c196a 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -1667,10 +1667,11 @@ func buildMirrorLocations(locs []*ingress.Location) string {
 		mapped.Insert(loc.Mirror.Source)
 		buffer.WriteString(fmt.Sprintf(`location = %v {
 internal;
+proxy_set_header Host %v;
 proxy_pass %v;
 }
 
-`, loc.Mirror.Source, loc.Mirror.Target))
+`, loc.Mirror.Source, loc.Mirror.Host, loc.Mirror.Target))
 	}
 
 	return buffer.String()

From 415305d47b2de9f37e1cf49e3797a96706b172dc Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sun, 8 May 2022 16:57:18 +0530
Subject: [PATCH 0175/1641] added debug to trace testgrid fail & suppressed
 breaking warning for kubectl version (#8561)

---
 build/dev-env.sh        | 2 +-
 test/e2e-image/Makefile | 5 ++++-
 2 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/build/dev-env.sh b/build/dev-env.sh
index d98f0bfbd..b2e504b15 100755
--- a/build/dev-env.sh
+++ b/build/dev-env.sh
@@ -51,7 +51,7 @@ if [[ ${HELM_VERSION} < "v3.0.0" ]]; then
   exit 1
 fi
 
-KUBE_CLIENT_VERSION=$(kubectl version --client --short | awk '{print $3}' | cut -d. -f2) || true
+KUBE_CLIENT_VERSION=$(kubectl version --client --short 2>/dev/null | grep Client | awk '{print $3}' | cut -d. -f2) || true
 if [[ ${KUBE_CLIENT_VERSION} -lt 14 ]]; then
   echo "Please update kubectl to 1.15 or higher"
   exit 1
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index f35c5db5b..0e28e091c 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -2,7 +2,10 @@
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
 
 image:
+	echo "..entered Makefile in /test/e2e-image"
+	echo "..calling Make target <<e2e-test-binar>>y in /Makefile from inside /test/e2e-image/Makefile"
 	make -C $(DIR)/../../ e2e-test-binary
+	echo "..done building e2e-test-binary from /test/e2e-image/Makefile"
 
 	cp $(DIR)/../e2e/e2e.test .
 	cp $(DIR)/../e2e/wait-for-nginx.sh .
@@ -19,4 +22,4 @@ clean:
 	docker rmi -f nginx-ingress-controller:e2e || true
 
 
-.PHONY: image clean
\ No newline at end of file
+.PHONY: image clean

From b9410c86f7960288ec9c45acc074633e231c1bfd Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Mon, 9 May 2022 15:45:19 +0530
Subject: [PATCH 0176/1641] added debug to docker-in-docker.sh (#8562)

---
 build/run-in-docker.sh | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 315756269..d74da7476 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -62,9 +62,17 @@ else
   PLATFORM_FLAG=
 fi
 
+env && hostname && uname -a
+echo "DIND_ENABLED=$DOCKER_IN_DOCKER_ENABLED"
+echo "FLAGS=$FLAGS"
+echo "PLATFORM=$PLATFORM"
+echo "PLATFORM_FLAG=$PLATFORM_FLAG"
+
 if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
+  echo "..reached DIND check TRUE block, inside run-in-docker.sh. Checking environ"
   /bin/bash -c "${FLAGS}"
 else
+  echo "..reached DIND check ELSE block, inside run-in-docker.sh. Checking environ"
   docker run                                            \
     ${PLATFORM_FLAG} ${PLATFORM}                        \
     --tty                                               \

From 7402d51a020dbe9352cd57c698487f1e1d058db2 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Mon, 9 May 2022 23:29:19 +0530
Subject: [PATCH 0177/1641] added step to install ginkgo if DIND environ
 (#8566)

---
 build/run-in-docker.sh | 1 +
 1 file changed, 1 insertion(+)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index d74da7476..d63bb656c 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -70,6 +70,7 @@ echo "PLATFORM_FLAG=$PLATFORM_FLAG"
 
 if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh. Checking environ"
+  go get github.com/onsi/ginkgo/ginkgo@v1.16.4
   /bin/bash -c "${FLAGS}"
 else
   echo "..reached DIND check ELSE block, inside run-in-docker.sh. Checking environ"

From fc58e92b3951bd313a36eba227933bb4e931cfbd Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Tue, 10 May 2022 14:19:43 +0530
Subject: [PATCH 0178/1641] replaced go get ginkgo with go install ginkgo for
 DIND environ (#8569)

---
 build/run-in-docker.sh  | 21 ++++++++++++++-------
 test/e2e-image/Makefile |  2 +-
 2 files changed, 15 insertions(+), 8 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index d63bb656c..4adb7b3e1 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -62,18 +62,25 @@ else
   PLATFORM_FLAG=
 fi
 
-env && hostname && uname -a
+echo "..printing env & other vars to stdout"
+echo "HOSTNAME=`hostname`"
+uname -a
+env
 echo "DIND_ENABLED=$DOCKER_IN_DOCKER_ENABLED"
-echo "FLAGS=$FLAGS"
-echo "PLATFORM=$PLATFORM"
-echo "PLATFORM_FLAG=$PLATFORM_FLAG"
+echo "done..printing env & other vars to stdout"
 
 if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
-  echo "..reached DIND check TRUE block, inside run-in-docker.sh. Checking environ"
-  go get github.com/onsi/ginkgo/ginkgo@v1.16.4
+  echo "..reached DIND check TRUE block, inside run-in-docker.sh"
+  echo "FLAGS=$FLAGS"
+  go env
+  set -x
+  go install -mod=mod github.com/onsi/ginkgo/ginkgo@v1.16.4 
+  find / -type f -name ginkgo 2>/dev/null
+  which ginkgo
   /bin/bash -c "${FLAGS}"
+  set +x
 else
-  echo "..reached DIND check ELSE block, inside run-in-docker.sh. Checking environ"
+  echo "..reached DIND check ELSE block, inside run-in-docker.sh"
   docker run                                            \
     ${PLATFORM_FLAG} ${PLATFORM}                        \
     --tty                                               \
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 0e28e091c..3a012a2df 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -3,7 +3,7 @@ DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
-	echo "..calling Make target <<e2e-test-binar>>y in /Makefile from inside /test/e2e-image/Makefile"
+	echo "..calling Make target <<e2e-test-binary>> in /Makefile from inside /test/e2e-image/Makefile"
 	make -C $(DIR)/../../ e2e-test-binary
 	echo "..done building e2e-test-binary from /test/e2e-image/Makefile"
 

From 61fcca3a3a7c719d8d49c06cc3330431a255b51c Mon Sep 17 00:00:00 2001
From: Pavel Selivanov <52830945+pauljamm@users.noreply.github.com>
Date: Tue, 10 May 2022 19:13:43 +0300
Subject: [PATCH 0179/1641] Add portNamePreffix Helm chart parameter (#8458)

Allow user to set custom preffix for TCP and UDP ports
---
 charts/ingress-nginx/Chart.yaml                |  2 +-
 charts/ingress-nginx/README.md                 |  3 ++-
 ...aemonset-tcp-udp-portNamePrefix-values.yaml | 18 ++++++++++++++++++
 ...ployment-tcp-udp-portNamePrefix-values.yaml | 17 +++++++++++++++++
 .../templates/controller-daemonset.yaml        |  4 ++--
 .../templates/controller-deployment.yaml       |  4 ++--
 .../templates/controller-service-internal.yaml |  8 ++++----
 .../templates/controller-service.yaml          |  8 ++++----
 charts/ingress-nginx/values.yaml               |  4 ++++
 9 files changed, 54 insertions(+), 14 deletions(-)
 create mode 100644 charts/ingress-nginx/ci/daemonset-tcp-udp-portNamePrefix-values.yaml
 create mode 100644 charts/ingress-nginx/ci/deployment-tcp-udp-portNamePrefix-values.yaml

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 2c76500dd..10a5fbc30 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.1.0
+version: 4.1.1
 appVersion: 1.2.0
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index a78d4d907..7b0b8f819 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.1.0](https://img.shields.io/badge/Version-4.1.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.0](https://img.shields.io/badge/AppVersion-1.2.0-informational?style=flat-square)
+![Version: 4.1.1](https://img.shields.io/badge/Version-4.1.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.0](https://img.shields.io/badge/AppVersion-1.2.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -478,6 +478,7 @@ Kubernetes: `>=1.19.0-0`
 | dhParam | string | `nil` | A base64-encoded Diffie-Hellman parameter. This can be generated with: `openssl dhparam 4096 2> /dev/null | base64` |
 | imagePullSecrets | list | `[]` | Optional array of imagePullSecrets containing private registry credentials |
 | podSecurityPolicy.enabled | bool | `false` |  |
+| portNamePrefix | string | `""` | Prefix for TCP and UDP ports names in ingress controller service |
 | rbac.create | bool | `true` |  |
 | rbac.scope | bool | `false` |  |
 | revisionHistoryLimit | int | `10` | Rollback limit |
diff --git a/charts/ingress-nginx/ci/daemonset-tcp-udp-portNamePrefix-values.yaml b/charts/ingress-nginx/ci/daemonset-tcp-udp-portNamePrefix-values.yaml
new file mode 100644
index 000000000..90b0f57a5
--- /dev/null
+++ b/charts/ingress-nginx/ci/daemonset-tcp-udp-portNamePrefix-values.yaml
@@ -0,0 +1,18 @@
+controller:
+  kind: DaemonSet
+  image:
+    repository: ingress-controller/controller
+    tag: 1.0.0-dev
+    digest: null
+  admissionWebhooks:
+    enabled: false
+  service:
+    type: ClusterIP
+
+tcp:
+  9000: "default/test:8080"
+
+udp:
+  9001: "default/test:8080"
+
+portNamePrefix: "port"
diff --git a/charts/ingress-nginx/ci/deployment-tcp-udp-portNamePrefix-values.yaml b/charts/ingress-nginx/ci/deployment-tcp-udp-portNamePrefix-values.yaml
new file mode 100644
index 000000000..56323c5ee
--- /dev/null
+++ b/charts/ingress-nginx/ci/deployment-tcp-udp-portNamePrefix-values.yaml
@@ -0,0 +1,17 @@
+controller:
+  image:
+    repository: ingress-controller/controller
+    tag: 1.0.0-dev
+    digest: null
+  admissionWebhooks:
+    enabled: false
+  service:
+    type: ClusterIP
+
+tcp:
+  9000: "default/test:8080"
+
+udp:
+  9001: "default/test:8080"
+
+portNamePrefix: "port"
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 4d7361597..99882d1a8 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -131,7 +131,7 @@ spec:
               protocol: TCP
           {{- end }}
           {{- range $key, $value := .Values.tcp }}
-            - name: {{ $key }}-tcp
+            - name: {{ if $.Values.portNamePrefix }}{{ $.Values.portNamePrefix }}-{{ end }}{{ $key }}-tcp
               containerPort: {{ $key }}
               protocol: TCP
               {{- if $.Values.controller.hostPort.enabled }}
@@ -139,7 +139,7 @@ spec:
               {{- end }}
           {{- end }}
           {{- range $key, $value := .Values.udp }}
-            - name: {{ $key }}-udp
+            - name: {{ if $.Values.portNamePrefix }}{{ $.Values.portNamePrefix }}-{{ end }}{{ $key }}-udp
               containerPort: {{ $key }}
               protocol: UDP
               {{- if $.Values.controller.hostPort.enabled }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index e72e7dbad..5b781f8de 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -128,7 +128,7 @@ spec:
               protocol: TCP
           {{- end }}
           {{- range $key, $value := .Values.tcp }}
-            - name: {{ $key }}-tcp
+            - name: {{ if $.Values.portNamePrefix }}{{ $.Values.portNamePrefix }}-{{ end }}{{ $key }}-tcp
               containerPort: {{ $key }}
               protocol: TCP
               {{- if $.Values.controller.hostPort.enabled }}
@@ -136,7 +136,7 @@ spec:
               {{- end }}
           {{- end }}
           {{- range $key, $value := .Values.udp }}
-            - name: {{ $key }}-udp
+            - name: {{ if $.Values.portNamePrefix }}{{ $.Values.portNamePrefix }}-{{ end }}{{ $key }}-udp
               containerPort: {{ $key }}
               protocol: UDP
               {{- if $.Values.controller.hostPort.enabled }}
diff --git a/charts/ingress-nginx/templates/controller-service-internal.yaml b/charts/ingress-nginx/templates/controller-service-internal.yaml
index 599449836..aae3e155e 100644
--- a/charts/ingress-nginx/templates/controller-service-internal.yaml
+++ b/charts/ingress-nginx/templates/controller-service-internal.yaml
@@ -52,10 +52,10 @@ spec:
     {{- end }}
   {{- end }}
   {{- range $key, $value := .Values.tcp }}
-    - name: {{ $key }}-tcp
+    - name: {{ if $.Values.portNamePrefix }}{{ $.Values.portNamePrefix }}-{{ end }}{{ $key }}-tcp
       port: {{ $key }}
       protocol: TCP
-      targetPort: {{ $key }}-tcp
+      targetPort: {{ if $.Values.portNamePrefix }}{{ $.Values.portNamePrefix }}-{{ end }}{{ $key }}-tcp
     {{- if $.Values.controller.service.nodePorts.tcp }}
     {{- if index $.Values.controller.service.nodePorts.tcp $key }}
       nodePort: {{ index $.Values.controller.service.nodePorts.tcp $key }}
@@ -63,10 +63,10 @@ spec:
     {{- end }}
   {{- end }}
   {{- range $key, $value := .Values.udp }}
-    - name: {{ $key }}-udp
+    - name: {{ if $.Values.portNamePrefix }}{{ $.Values.portNamePrefix }}-{{ end }}{{ $key }}-udp
       port: {{ $key }}
       protocol: UDP
-      targetPort: {{ $key }}-udp
+      targetPort: {{ if $.Values.portNamePrefix }}{{ $.Values.portNamePrefix }}-{{ end }}{{ $key }}-udp
     {{- if $.Values.controller.service.nodePorts.udp }}
     {{- if index $.Values.controller.service.nodePorts.udp $key }}
       nodePort: {{ index $.Values.controller.service.nodePorts.udp $key }}
diff --git a/charts/ingress-nginx/templates/controller-service.yaml b/charts/ingress-nginx/templates/controller-service.yaml
index 0f47f131c..2b28196de 100644
--- a/charts/ingress-nginx/templates/controller-service.yaml
+++ b/charts/ingress-nginx/templates/controller-service.yaml
@@ -74,10 +74,10 @@ spec:
     {{- end }}
   {{- end }}
   {{- range $key, $value := .Values.tcp }}
-    - name: {{ $key }}-tcp
+    - name: {{ if $.Values.portNamePrefix }}{{ $.Values.portNamePrefix }}-{{ end }}{{ $key }}-tcp
       port: {{ $key }}
       protocol: TCP
-      targetPort: {{ $key }}-tcp
+      targetPort: {{ if $.Values.portNamePrefix }}{{ $.Values.portNamePrefix }}-{{ end }}{{ $key }}-tcp
     {{- if $.Values.controller.service.nodePorts.tcp }}
     {{- if index $.Values.controller.service.nodePorts.tcp $key }}
       nodePort: {{ index $.Values.controller.service.nodePorts.tcp $key }}
@@ -85,10 +85,10 @@ spec:
     {{- end }}
   {{- end }}
   {{- range $key, $value := .Values.udp }}
-    - name: {{ $key }}-udp
+    - name: {{ if $.Values.portNamePrefix }}{{ $.Values.portNamePrefix }}-{{ end }}{{ $key }}-udp
       port: {{ $key }}
       protocol: UDP
-      targetPort: {{ $key }}-udp
+      targetPort: {{ if $.Values.portNamePrefix }}{{ $.Values.portNamePrefix }}-{{ end }}{{ $key }}-udp
     {{- if $.Values.controller.service.nodePorts.udp }}
     {{- if index $.Values.controller.service.nodePorts.udp $key }}
       nodePort: {{ index $.Values.controller.service.nodePorts.udp $key }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 1a45f734a..f52f71d8e 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -921,6 +921,10 @@ tcp: {}
 udp: {}
 #  53: "kube-system/kube-dns:53"
 
+# -- Prefix for TCP and UDP ports names in ingress controller service
+## Some cloud providers, like Yandex Cloud may have a requirements for a port name regex to support cloud load balancer integration
+portNamePrefix: ""
+
 # -- (string) A base64-encoded Diffie-Hellman parameter.
 # This can be generated with: `openssl dhparam 4096 2> /dev/null | base64`
 ## Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param

From 24b8e32b088bec15e1f40deab8fefc8bd1b6c2da Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 12 May 2022 00:15:03 +0530
Subject: [PATCH 0180/1641] bumped go version to 1.18.1 (#8578)

---
 .github/workflows/ci.yaml                     | 10 ++---
 go.mod                                        |  2 +-
 images/custom-error-pages/rootfs/Dockerfile   |  2 +-
 images/custom-error-pages/rootfs/go.mod       |  2 +-
 .../rootfs/Dockerfile                         |  4 +-
 images/ext-auth-example-authsvc/rootfs/go.mod |  9 ++---
 images/kube-webhook-certgen/rootfs/Dockerfile |  2 +-
 images/kube-webhook-certgen/rootfs/go.mod     | 38 ++++++++++++++++++-
 images/test-runner/Makefile                   |  2 +-
 9 files changed, 52 insertions(+), 19 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index e82d55134..cf8ec20f2 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -69,11 +69,11 @@ jobs:
       - name: Checkout
         uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
 
-      - name: Set up Go 1.17
+      - name: Set up Go 1.18
         id: go
         uses: actions/setup-go@bfdd3570ce990073878bf10f6b2d79082de49492 # v2
         with:
-          go-version: '1.17.6'
+          go-version: '1.18.2'
 
       - name: Set up Docker Buildx
         id: buildx
@@ -133,7 +133,7 @@ jobs:
       - name: Setup Go
         uses: actions/setup-go@bfdd3570ce990073878bf10f6b2d79082de49492 # v2
         with:
-          go-version: '1.17.6'
+          go-version: '1.18.2'
 
       - name: cache
         uses: actions/download-artifact@f023be2c48cc18debc3bacd34cb396e0295e2869 # v2
@@ -403,12 +403,12 @@ jobs:
           version: v0.11.1
           image: kindest/node:v1.21.1
 
-      - name: Set up Go 1.17
+      - name: Set up Go 1.18
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
         uses: actions/setup-go@bfdd3570ce990073878bf10f6b2d79082de49492 # v2
         with:
-          go-version: '1.17.6'
+          go-version: '1.18.2'
 
       - name: kube-webhook-certgen image build
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
diff --git a/go.mod b/go.mod
index b13ed1cc6..514eb4f3e 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx
 
-go 1.17
+go 1.18
 
 require (
 	github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a
diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index cdceb032b..d53228201 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.17-alpine as builder
+FROM golang:1.18.2-alpine as builder
 RUN apk add git
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/custom-error-pages
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index dec3b7bbb..05bd45400 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.17
+go 1.18
 
 require github.com/prometheus/client_golang v1.11.0
 
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index ee2737286..9a52919be 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.17.6-alpine3.15 as builder
+FROM golang:1.18.2-alpine3.15 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
@@ -7,4 +7,4 @@ RUN CGO_ENABLED=0 GOOS=linux go build -o authsvc authsvc.go
 FROM gcr.io/distroless/base-debian11
 COPY --from=builder /authsvc/authsvc /
 EXPOSE 8080
-ENTRYPOINT ["/authsvc"]
\ No newline at end of file
+ENTRYPOINT ["/authsvc"]
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index 72f2a1049..052d17d6f 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,8 +1,7 @@
 module example.com/authsvc
 
-go 1.17
+go 1.18
 
-require (
-	github.com/google/uuid v1.1.2 // indirect
-	k8s.io/apimachinery v0.23.1 // indirect
-)
+require k8s.io/apimachinery v0.23.1
+
+require github.com/google/uuid v1.1.2 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/Dockerfile b/images/kube-webhook-certgen/rootfs/Dockerfile
index f9020fa41..4a60ed2ea 100644
--- a/images/kube-webhook-certgen/rootfs/Dockerfile
+++ b/images/kube-webhook-certgen/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM --platform=$BUILDPLATFORM golang:1.16 as builder
+FROM --platform=$BUILDPLATFORM golang:1.18.2 as builder
 ARG BUILDPLATFORM
 ARG TARGETARCH
 
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index edd74bea3..3858ae566 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,14 +1,48 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.16
+go 1.18
 
 require (
 	github.com/onrik/logrus v0.9.0
 	github.com/sirupsen/logrus v1.8.1
 	github.com/spf13/cobra v1.1.3
-	github.com/tidwall/gjson v1.14.0 // indirect
 	k8s.io/api v0.22.6
 	k8s.io/apimachinery v0.22.6
 	k8s.io/client-go v0.22.6
 	k8s.io/kube-aggregator v0.22.6
 )
+
+require (
+	github.com/davecgh/go-spew v1.1.1 // indirect
+	github.com/evanphx/json-patch v4.11.0+incompatible // indirect
+	github.com/go-logr/logr v0.4.0 // indirect
+	github.com/gogo/protobuf v1.3.2 // indirect
+	github.com/golang/protobuf v1.5.2 // indirect
+	github.com/google/go-cmp v0.5.5 // indirect
+	github.com/google/gofuzz v1.1.0 // indirect
+	github.com/googleapis/gnostic v0.5.5 // indirect
+	github.com/imdario/mergo v0.3.5 // indirect
+	github.com/inconshreveable/mousetrap v1.0.0 // indirect
+	github.com/json-iterator/go v1.1.11 // indirect
+	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
+	github.com/modern-go/reflect2 v1.0.1 // indirect
+	github.com/pkg/errors v0.9.1 // indirect
+	github.com/spf13/pflag v1.0.5 // indirect
+	github.com/tidwall/gjson v1.14.0 // indirect
+	golang.org/x/net v0.0.0-20211209124913-491a49abca63 // indirect
+	golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d // indirect
+	golang.org/x/sys v0.0.0-20210616094352-59db8d763f22 // indirect
+	golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d // indirect
+	golang.org/x/text v0.3.6 // indirect
+	golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
+	google.golang.org/appengine v1.6.5 // indirect
+	google.golang.org/protobuf v1.26.0 // indirect
+	gopkg.in/inf.v0 v0.9.1 // indirect
+	gopkg.in/yaml.v2 v2.4.0 // indirect
+	gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b // indirect
+	k8s.io/klog/v2 v2.9.0 // indirect
+	k8s.io/kube-openapi v0.0.0-20211109043538-20434351676c // indirect
+	k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a // indirect
+	sigs.k8s.io/structured-merge-diff/v4 v4.2.1 // indirect
+	sigs.k8s.io/yaml v1.2.0 // indirect
+)
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index e6e047e6c..8ebffc5bb 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -39,7 +39,7 @@ build: ensure-buildx
 		--progress=$(PROGRESS) \
 		--pull \
 		--build-arg BASE_IMAGE=$(NGINX_BASE_IMAGE) \
-		--build-arg GOLANG_VERSION=1.17.6 \
+		--build-arg GOLANG_VERSION=1.18.2 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.21.3 \
 		--build-arg RESTY_CLI_VERSION=0.27 \

From b0d198252fb74127eecc54f09100ad0a9ad3adce Mon Sep 17 00:00:00 2001
From: James Lakin <james@jameslakin.co.uk>
Date: Fri, 13 May 2022 17:03:49 +0100
Subject: [PATCH 0181/1641] docs: Comment out TODO heading on the deployment
 page (#8583)

---
 docs/deploy/index.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 283513ac7..0a33c19cd 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -28,7 +28,7 @@ On most Kubernetes clusters, the ingress controller will work without requiring
   - ... [Bare-metal](#bare-metal-clusters)
 - [Miscellaneous](#miscellaneous)
 
-## TODO : We have subdirectories for kubernetes versions now because of a PR https://github.com/kubernetes/ingress-nginx/pull/8162 . You can see this here https://github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud . We need to add documentation here that is clear and unambiguous in guiding users to pick the deployment manifest under a subdirectory, based on the K8S version being used. But until the explicit clear docs land here, users are recommended to feel free to use those subdirectories and get the manifest(s) related to their K8S version.
+<!-- TODO: We have subdirectories for kubernetes versions now because of a PR https://github.com/kubernetes/ingress-nginx/pull/8162 . You can see this here https://github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud . We need to add documentation here that is clear and unambiguous in guiding users to pick the deployment manifest under a subdirectory, based on the K8S version being used. But until the explicit clear docs land here, users are recommended to feel free to use those subdirectories and get the manifest(s) related to their K8S version. -->
 
 ## Quick start
 

From 24925ccd2b5eb118e7d29faeba0746d9725609f0 Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Sat, 14 May 2022 15:41:17 +0200
Subject: [PATCH 0182/1641] Opentelemetry module build (#8585)

* nginx opentelemetry modules

* revert sha check
---
 images/opentelemetry/rootfs/CMakeLists.txt |  95 +++++++++
 images/opentelemetry/rootfs/Dockerfile     |  29 ++-
 images/opentelemetry/rootfs/build.sh       | 223 +++++++++++++++------
 3 files changed, 284 insertions(+), 63 deletions(-)
 create mode 100644 images/opentelemetry/rootfs/CMakeLists.txt

diff --git a/images/opentelemetry/rootfs/CMakeLists.txt b/images/opentelemetry/rootfs/CMakeLists.txt
new file mode 100644
index 000000000..7278016a0
--- /dev/null
+++ b/images/opentelemetry/rootfs/CMakeLists.txt
@@ -0,0 +1,95 @@
+#!/bin/bash
+
+# Copyright 2021 The Kubernetes Authors.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+cmake_minimum_required(VERSION 3.11 FATAL_ERROR)
+
+project(
+  dependencies
+  LANGUAGES CXX
+  VERSION 0.0.1)
+
+set(CMAKE_CXX_STANDARD 11)
+set(CMAKE_CXX_EXTENSIONS OFF)
+set(CMAKE_CXX_STANDARD_REQUIRED ON)
+set(CMAKE_CXX_FLAGS "-O2")
+
+set(CMAKE_BUILD_TYPE
+    Release
+    CACHE STRING "Build type" FORCE)
+
+include(GNUInstallDirs)
+
+set(CMAKE_ARCHIVE_OUTPUT_DIRECTORY
+    ${PROJECT_BINARY_DIR}/${CMAKE_INSTALL_LIBDIR})
+set(CMAKE_LIBRARY_OUTPUT_DIRECTORY
+    ${PROJECT_BINARY_DIR}/${CMAKE_INSTALL_LIBDIR})
+set(CMAKE_RUNTIME_OUTPUT_DIRECTORY
+    ${PROJECT_BINARY_DIR}/${CMAKE_INSTALL_BINDIR})
+
+set(INSTALL_LIBDIR
+    ${CMAKE_INSTALL_LIBDIR}
+    CACHE PATH "directory for libraries")
+set(INSTALL_BINDIR
+    ${CMAKE_INSTALL_BINDIR}
+    CACHE PATH "directory for executables")
+set(INSTALL_INCLUDEDIR
+    ${CMAKE_INSTALL_INCLUDEDIR}
+    CACHE PATH "directory for header files")
+
+set(DEF_INSTALL_CMAKEDIR share/cmake/${PROJECT_NAME})
+set(INSTALL_CMAKEDIR
+    ${DEF_INSTALL_CMAKEDIR}
+    CACHE PATH "directory for CMake files")
+
+set_property(DIRECTORY PROPERTY EP_BASE ${CMAKE_BINARY_DIR}/subs)
+
+set(STAGED_INSTALL_PREFIX ${CMAKE_BINARY_DIR}/stage)
+message(STATUS "${PROJECT_NAME} staged install: ${STAGED_INSTALL_PREFIX}")
+
+find_package(OpenSSL REQUIRED)
+message("OpenSSL include dir: ${OPENSSL_INCLUDE_DIR}")
+message("OpenSSL libraries: ${OPENSSL_LIBRARIES}")
+
+set(GRPC_GIT_TAG
+    "v1.45.2"
+    CACHE STRING "gRPC version")
+
+include(ExternalProject)
+ExternalProject_Add(
+  gRPC
+  GIT_REPOSITORY https://github.com/grpc/grpc.git
+  GIT_TAG ${GRPC_GIT_TAG}
+  GIT_SHALLOW 1
+  UPDATE_COMMAND ""
+  CMAKE_ARGS -DCMAKE_INSTALL_PREFIX=${STAGED_INSTALL_PREFIX}
+             -DCMAKE_BUILD_TYPE=${CMAKE_BUILD_TYPE}
+             -DCMAKE_CXX_COMPILER=${CMAKE_CXX_COMPILER}
+             -DgRPC_SSL_PROVIDER=package
+             -DOPENSSL_ROOT_DIR=OpenSSL
+             -DgRPC_BUILD_TESTS=OFF
+             -DBUILD_SHARED_LIBS=ON
+             -DgRPC_INSTALL=ON
+  CMAKE_CACHE_ARGS -DCMAKE_CXX_FLAGS:STRING=${CMAKE_CXX_FLAGS}
+  TEST_AFTER_INSTALL 0
+  DOWNLOAD_NO_PROGRESS 1
+  LOG_CONFIGURE 1
+  LOG_BUILD 0
+  LOG_INSTALL 1)
+
+install(
+  DIRECTORY ${STAGED_INSTALL_PREFIX}/
+  DESTINATION .
+  USE_SOURCE_PERMISSIONS)
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index ebf288c56..ae6ddacbd 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,16 +13,33 @@
 # limitations under the License.
 
 
-FROM alpine:3.14.6 as builder
+FROM alpine:3.14.6 as base
 
-COPY . /
+RUN mkdir -p /opt/third_party/install
+COPY . /opt/third_party/
 
+# install build tools
 RUN apk update \
 	&& apk upgrade \
 	&& apk add -U bash \
-	&& /build.sh
+	&& bash /opt/third_party/build.sh -p
 
-FROM alpine:3.14.6 
+# install gRPC
+FROM base as grpc
+RUN bash /opt/third_party/build.sh -g v1.43.2
 
-COPY --from=builder init_module.sh /usr/local/bin/init_module.sh
-COPY --from=builder /etc/nginx/modules /etc/nginx/modules
+# install OpenTelemetry-cpp
+FROM base as otel-cpp
+COPY --from=grpc /opt/third_party/install/ /usr
+RUN bash /opt/third_party/build.sh -o v1.3.0
+
+# install otel_ngx_module.so
+FROM base as nginx
+COPY --from=grpc /opt/third_party/install/ /usr
+COPY --from=otel-cpp /opt/third_party/install/ /usr
+RUN bash /opt/third_party/build.sh -n
+
+FROM alpine:3.14.6
+COPY --from=base /opt/third_party/init_module.sh /usr/local/bin/init_module.sh
+COPY --from=nginx /etc/nginx/modules /etc/nginx/modules
+COPY --from=nginx /opt/third_party/install/lib /usr/lib
diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
index 67d1e67b2..1146e20dd 100755
--- a/images/opentelemetry/rootfs/build.sh
+++ b/images/opentelemetry/rootfs/build.sh
@@ -18,15 +18,12 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
-export NGINX_VERSION=1.19.10
-
+export GRPC_GIT_TAG=${GRPC_GIT_TAG:="v1.43.2"}
 # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp/compare/v1.2.0...main
-export OPENTELEMETRY_CPP_VERSION=1.2.0
-
-# Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/2656a4...main
-export OPENTELEMETRY_CONTRIB_COMMIT=2656a4072e257b6794da86ddd1b773b49f5517b3
-
-export BUILD_PATH=/tmp/build
+export OPENTELEMETRY_CPP_VERSION=${OPENTELEMETRY_CPP_VERSION:="1.2.0"}
+export INSTAL_DIR=/opt/third_party/install
+# improve compilation times
+CORES=$(($(grep -c ^processor /proc/cpuinfo) - 1))
 
 rm -rf \
    /var/cache/debconf/* \
@@ -35,15 +32,80 @@ rm -rf \
    /tmp/* \
    /var/tmp/*
 
-
-mkdir -p /etc/nginx
+export BUILD_PATH=/tmp/build
 mkdir --verbose -p "$BUILD_PATH"
-cd "$BUILD_PATH"
 
-apk add \
-  curl \
-  git \
-  build-base
+Help()
+{
+   # Display Help
+   echo "Add description of the script functions here."
+   echo
+   echo "Syntax: scriptTemplate [-h|g|o|n|p|]"
+   echo "options:"
+   echo "h     Print Help."
+   echo "g     gRPC git tag"
+   echo "o     OpenTelemetry git tag"
+   echo "n     install nginx"
+   echo "p     prepare"
+   echo
+}
+
+prepare()
+{
+  apk add \
+    linux-headers \
+    openssl \
+    curl-dev \
+    openssl-dev \
+    gtest-dev \
+    c-ares-dev \
+    pcre-dev \
+    curl \
+    git \
+    build-base
+}
+
+install_grpc()
+{
+  mkdir -p $BUILD_PATH/grpc
+  cd ${BUILD_PATH}/grpc
+  cmake -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
+    -DGRPC_GIT_TAG=${GRPC_GIT_TAG} /opt/third_party \
+    -DgRPC_BUILD_GRPC_NODE_PLUGIN=OFF \
+    -DgRPC_BUILD_GRPC_OBJECTIVE_C_PLUGIN=OFF \
+    -DgRPC_BUILD_GRPC_PHP_PLUGIN=OFF \
+    -DgRPC_BUILD_GRPC_PHP_PLUGIN=OFF \
+    -DgRPC_BUILD_GRPC_PYTHON_PLUGIN=OFF \
+    -DgRPC_BUILD_GRPC_RUBY_PLUGIN=OFF
+  cmake --build . -j ${CORES} --target all install
+}
+
+install_otel()
+{
+  cd ${BUILD_PATH}
+  export LD_LIBRARY_PATH="${LD_LIBRARY_PATH:+LD_LIBRARY_PATH:}${INSTAL_DIR}/lib:/usr/local"
+  export PATH="${PATH}:${INSTAL_DIR}/bin"
+  git clone --recurse-submodules -j ${CORES} --depth=1 -b \
+    ${OPENTELEMETRY_CPP_VERSION} https://github.com/open-telemetry/opentelemetry-cpp.git opentelemetry-cpp-${OPENTELEMETRY_CPP_VERSION}
+  cd "opentelemetry-cpp-${OPENTELEMETRY_CPP_VERSION}"
+  mkdir -p .build
+  cd .build
+
+  cmake -DCMAKE_BUILD_TYPE=Release \
+        -DCMAKE_POSITION_INDEPENDENT_CODE=TRUE  \
+        -DWITH_ZIPKIN=OFF \
+        -DWITH_JAEGER=OFF \
+        -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
+        -DBUILD_TESTING=OFF \
+        -DBUILD_SHARED_LIBS=ON \
+        -DWITH_OTLP=ON \
+        -DWITH_OTLP_GRPC=ON \
+        -DWITH_EXAMPLES=OFF \
+        -DWITH_ABSEIL=ON \
+        -DWITH_OTLP_HTTP=OFF \
+        ..
+  cmake --build . -j ${CORES} --target install
+}
 
 get_src()
 {
@@ -59,53 +121,100 @@ get_src()
   rm -rf "$f"
 }
 
+install_nginx()
+{
+  export NGINX_VERSION=1.19.10
 
-get_src e8d0290ff561986ad7cd6c33307e12e11b137186c4403a6a5ccdb4914c082d88 \
-        "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
+  # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/2656a4...main
+  export OPENTELEMETRY_CONTRIB_COMMIT=6467ec2e4d67b08b44580b7eb7a298786f4eef91
 
-get_src 360cdcbd1a235ec62119cc53956b2d31b6ff5f41d44415be53acc544709d58b8 \
-        "https://github.com/open-telemetry/opentelemetry-cpp-contrib/archive/$OPENTELEMETRY_CONTRIB_COMMIT.tar.gz"
+  mkdir -p /etc/nginx
+  cd "$BUILD_PATH"
 
-# improve compilation times
-CORES=$(($(grep -c ^processor /proc/cpuinfo) - 1))
+  get_src 360cdcbd1a235ec62119cc53956b2d31b6ff5f41d44415be53acc544709d58b8 \
+          "https://github.com/open-telemetry/opentelemetry-cpp-contrib/archive/$OPENTELEMETRY_CONTRIB_COMMIT.tar.gz"
 
-export MAKEFLAGS=-j${CORES}
+  cd ${BUILD_PATH}/opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}/instrumentation/nginx
+  mkdir -p build
+  cd build
+  cmake -DCMAKE_BUILD_TYPE=Release \
+    -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
+    -DBUILD_SHARED_LIBS=ON \
+    -DNGINX_VERSION=${NGINX_VERSION} \
+    ..
+  cmake --build . -j ${CORES} --target install
 
-apk add \
-  protobuf-dev \
-  grpc \
-  grpc-dev \
-  gtest-dev \
-  c-ares-dev \
-  pcre-dev
+  mkdir -p /etc/nginx/modules
+  cp ${INSTAL_DIR}/otel_ngx_module.so /etc/nginx/modules/otel_ngx_module.so
 
-cd $BUILD_PATH
-git clone --recursive https://github.com/open-telemetry/opentelemetry-cpp opentelemetry-cpp-$OPENTELEMETRY_CPP_VERSION
-cd "opentelemetry-cpp-$OPENTELEMETRY_CPP_VERSION"
-git checkout v$OPENTELEMETRY_CPP_VERSION
-mkdir .build
-cd .build
+  mkdir -p ${INSTAL_DIR}/lib
+  cp /usr/lib/libopentelemetry_exporter_otlp_grpc.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libopentelemetry_otlp_recordable.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libprotobuf.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libopentelemetry_trace.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libopentelemetry_resources.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libopentelemetry_common.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libstdc++.so* ${INSTAL_DIR}/lib
 
-cmake -DCMAKE_BUILD_TYPE=Release \
-      -DBUILD_TESTING=OFF \
-      -DWITH_EXAMPLES=OFF \
-      -DCMAKE_POSITION_INDEPENDENT_CODE=ON \
-      -DWITH_OTLP=ON \
-      -DWITH_OTLP_HTTP=OFF \
-      ..
-make
-make install
+  cp /usr/lib/libgrpc.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libgcc_s.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libgrpc++.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_bad_variant_access.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_synchronization.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_raw_hash_set.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_hash.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_statusor.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libgpr.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libupb.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_status.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_time.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_strings.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_stacktrace.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_symbolize.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_malloc_internal.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_base.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_spinlock_wait.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_raw_logging_internal.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libre2.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libaddress_sorting.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_cord.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_bad_optional_access.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_str_format_internal.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_throw_delegate.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_time_zone.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_city.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_low_level_hash.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_cordz_info.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_int128.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_strings_internal.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_debugging_internal.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_cord_internal.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_cordz_functions.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_cordz_handle.so* ${INSTAL_DIR}/lib
+  cp /usr/lib/libabsl_exponential_biased.so* ${INSTAL_DIR}/lib
+}
 
-# build nginx
-cd "$BUILD_PATH/nginx-$NGINX_VERSION"
-./configure \
-  --prefix=/usr/local/nginx \
-  --with-compat \
-  --add-dynamic-module=$BUILD_PATH/opentelemetry-cpp-contrib-$OPENTELEMETRY_CONTRIB_COMMIT/instrumentation/nginx
-
-make modules
-mkdir -p /etc/nginx/modules
-cp objs/otel_ngx_module.so /etc/nginx/modules/otel_ngx_module.so
-
-# remove .a files
-find /usr/local -name "*.a" -print | xargs /bin/rm
+while getopts ":hpng:o:" option; do
+   case $option in
+    h) # display Help
+         Help
+         exit;;
+    g) # install gRPC with git tag
+        GRPC_GIT_TAG=${OPTARG}
+        install_grpc
+        exit;;
+    o) # install OpenTelemetry tag
+        OPENTELEMETRY_CPP_VERSION=${OPTARG}
+        install_otel
+        exit;;
+    p) # prepare
+        prepare
+        exit;;
+    n) # install nginx
+        install_nginx
+        exit;;
+    \?)
+        Help
+        exit;;
+   esac
+done

From 2d2ec558ae0445f5aa826f1224587d6bab752ac9 Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Mon, 16 May 2022 15:20:18 +0200
Subject: [PATCH 0183/1641] fix opentelemetry-cpp-contrib sha256 (#8588)

---
 images/opentelemetry/rootfs/build.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
index 1146e20dd..43808ed2c 100755
--- a/images/opentelemetry/rootfs/build.sh
+++ b/images/opentelemetry/rootfs/build.sh
@@ -131,7 +131,7 @@ install_nginx()
   mkdir -p /etc/nginx
   cd "$BUILD_PATH"
 
-  get_src 360cdcbd1a235ec62119cc53956b2d31b6ff5f41d44415be53acc544709d58b8 \
+  get_src 0528e793a97f942868616449d49326160f9cb67b2253fb2c4864603ac6ab09a9 \
           "https://github.com/open-telemetry/opentelemetry-cpp-contrib/archive/$OPENTELEMETRY_CONTRIB_COMMIT.tar.gz"
 
   cd ${BUILD_PATH}/opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}/instrumentation/nginx

From df3db8df529dd8b34e40ca8efa84e7a7de8b56b3 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 16 May 2022 06:22:18 -0700
Subject: [PATCH 0184/1641] Bump google.golang.org/grpc from 1.46.0 to 1.46.2
 (#8592)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.46.0 to 1.46.2.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.46.0...v1.46.2)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  2 +-
 go.sum | 18 ++----------------
 2 files changed, 3 insertions(+), 17 deletions(-)

diff --git a/go.mod b/go.mod
index 514eb4f3e..4024d446b 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5
 	golang.org/x/net v0.0.0-20220225172249-27dd8689420f
-	google.golang.org/grpc v1.46.0
+	google.golang.org/grpc v1.46.2
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.23.6
diff --git a/go.sum b/go.sum
index c0e977ba5..42ea730c5 100644
--- a/go.sum
+++ b/go.sum
@@ -96,7 +96,6 @@ github.com/blang/semver v3.5.1+incompatible/go.mod h1:kRBLl5iJ+tD4TcOOxsy/0fnweb
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
 github.com/certifi/gocertifi v0.0.0-20191021191039-0944d244cd40/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
 github.com/certifi/gocertifi v0.0.0-20200922220541-2c3bb06c6054/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
-github.com/cespare/xxhash v1.1.0 h1:a6HrQnmkObjyL+Gs60czilIUGqrzKutQD6XZog3p+ko=
 github.com/cespare/xxhash v1.1.0/go.mod h1:XrSqR1VqqWfGrhpAt58auRo0WTKS1nRRg3ghfAqPWnc=
 github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
 github.com/cespare/xxhash/v2 v2.1.2 h1:YRXhKfTDauu4ajMg1TPgFO5jnlC2HCbmLXMcTG5cbYE=
@@ -125,7 +124,6 @@ github.com/coreos/etcd v3.3.13+incompatible/go.mod h1:uF7uidLiAD3TWHmW31ZFd/JWoc
 github.com/coreos/go-oidc v2.1.0+incompatible/go.mod h1:CgnwVTmzoESiwO9qyAFEMiHoZ1nMCKZlZ9V6mm3/LKc=
 github.com/coreos/go-semver v0.2.0/go.mod h1:nnelYz7RCh+5ahJtPPxZlU+153eP4D4r3EedlOD2RNk=
 github.com/coreos/go-semver v0.3.0/go.mod h1:nnelYz7RCh+5ahJtPPxZlU+153eP4D4r3EedlOD2RNk=
-github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e h1:Wf6HqHfScWJN9/ZjdUKyjop4mf3Qdd+1TvvltAvM3m8=
 github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e/go.mod h1:F5haX7vjVVG0kc13fIWeqUViNPyEJxv/OmvnBo0Yme4=
 github.com/coreos/go-systemd/v22 v22.3.2 h1:D9/bQk5vlXQFZ6Kwuu6zaiXJ9oTPe68++AzAJc1DzSI=
 github.com/coreos/go-systemd/v22 v22.3.2/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
@@ -162,7 +160,6 @@ github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.m
 github.com/envoyproxy/go-control-plane v0.9.9-0.20210512163311-63b5d3c536b0/go.mod h1:hliV/p42l8fGbc6Y9bQ70uLwIvmJyVE5k4iMKlh8wCQ=
 github.com/envoyproxy/go-control-plane v0.10.2-0.20220325020618-49ff273808a1/go.mod h1:KJwIaB5Mv44NWtYuAOFCVOjcI94vtpEz2JU/D2v6IjE=
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
-github.com/evanphx/json-patch v0.5.2/go.mod h1:ZWS5hhDbVDyob71nXKNL0+PWn6ToqBHMikGIFbs31qQ=
 github.com/evanphx/json-patch v4.11.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/evanphx/json-patch v4.12.0+incompatible h1:4onqiflcdA9EOZ4RxV643DvftH5pOlLGNtQ5lPWQu84=
 github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
@@ -178,7 +175,6 @@ github.com/form3tech-oss/jwt-go v3.2.3+incompatible/go.mod h1:pbq4aXjuKjdthFRnoD
 github.com/frankban/quicktest v1.11.3/go.mod h1:wRf/ReqHper53s+kmmSZizM8NamnL3IM0I9ntUbOk+k=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
-github.com/fsnotify/fsnotify v1.5.1/go.mod h1:T3375wBYaZdLLcVNkcVbzGHY7f1l/uK5T5Ai1i3InKU=
 github.com/fsnotify/fsnotify v1.5.4 h1:jRbGcIw6P2Meqdwuo0H1p6JVLbL5DHKAKlYndzMwVZI=
 github.com/fsnotify/fsnotify v1.5.4/go.mod h1:OVB6XrOHzAwXMpEM7uPOzcehqUV2UqJxmVXmkdnm1bU=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b h1:074/xhloHUBOpTZwlIzQ28rbPY8pNJvzY7Gcx5KnNOk=
@@ -355,7 +351,6 @@ github.com/imkira/go-interpol v1.0.0 h1:HrmLyvOLJyjR0YofMw8QGdCIuYOs4TJUBDNU5sJC
 github.com/imkira/go-interpol v1.0.0/go.mod h1:z0h2/2T3XF8kyEPpRgJ3kmNv+C43p+I/CoI+jC3w2iA=
 github.com/inconshreveable/mousetrap v1.0.0 h1:Z8tu5sraLXCXIcARxBp/8cbvlwVa7Z1NHg9XEKhtSvM=
 github.com/inconshreveable/mousetrap v1.0.0/go.mod h1:PxqpIevigyE2G7u3NXJIT2ANytuPF1OarO4DADm73n8=
-github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
 github.com/jonboulle/clockwork v0.1.0/go.mod h1:Ii8DK3G1RaLaWxj9trq07+26W01tbo22gdxWY5EU2bo=
 github.com/jonboulle/clockwork v0.2.2/go.mod h1:Pkfl5aHPm1nk2H9h0bjmnJD/BcgbGXUBGnn1kMkgxc8=
 github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
@@ -466,7 +461,6 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.10.1/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
-github.com/onsi/ginkgo v1.16.4/go.mod h1:dX+/inL/fNMqNlz0e9LfyB9TswhZpCVdJM/Z6Vvnwo0=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
 github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
@@ -474,7 +468,6 @@ github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1Cpa
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.17.0 h1:9Luw4uT5HTjHTN8+aNcSThgH1vdXnmdJ8xIfZ4wyTRE=
-github.com/onsi/gomega v1.17.0/go.mod h1:HnhC7FXeEQY45zxNK3PPoIUhzk/80Xly9PcubAlGdZY=
 github.com/opencontainers/runc v1.1.1 h1:PJ9DSs2sVwE0iVr++pAHE6QkS9tzcVWozlPifdwMgrU=
 github.com/opencontainers/runc v1.1.1/go.mod h1:Tj1hFw6eFWp/o33uxGf5yF2BX5yz2Z6iptFpuvbbKqc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
@@ -662,8 +655,6 @@ go.uber.org/atomic v1.4.0/go.mod h1:gD2HeocX3+yG+ygLZcrzQJaqmWj9AIm7n08wl/qW/PE=
 go.uber.org/atomic v1.7.0 h1:ADUqmZGgLDDfbSL9ZmPxKTybcoEYHgpYfELNoN+7hsw=
 go.uber.org/atomic v1.7.0/go.mod h1:fEN4uk6kAWBTFdckzkM89CLk9XfWZrxpCo0nPH17wJc=
 go.uber.org/goleak v1.1.10/go.mod h1:8a7PlsEVH3e/a/GLqe5IIrQx6GzcnRmZEufDUTk4A7A=
-go.uber.org/goleak v1.1.11-0.20210813005559-691160354723/go.mod h1:cwTWslyiVhfpKIDGSZEM2HlOvcqm+tG4zioyIeLoqMQ=
-go.uber.org/goleak v1.1.12/go.mod h1:cwTWslyiVhfpKIDGSZEM2HlOvcqm+tG4zioyIeLoqMQ=
 go.uber.org/multierr v1.1.0/go.mod h1:wR5kodmAFQ0UK8QlbwjlSNy0Z68gJhDJUG5sjR94q/0=
 go.uber.org/multierr v1.6.0 h1:y6IPFStTAIT5Ytl7/XYmHvzXQ7S3g/IeZW9hyZ5thw4=
 go.uber.org/multierr v1.6.0/go.mod h1:cdWPpRnG4AhwMwsgIHip0KRBQjJy5kYEpYjJxpXp9iU=
@@ -671,7 +662,6 @@ go.uber.org/zap v1.10.0/go.mod h1:vwi/ZaCAaUcBkycHslxD9B2zi4UTXhF60s6SWpuDF0Q=
 go.uber.org/zap v1.17.0/go.mod h1:MXVU+bhUf/A7Xi2HNOnopQOrmycQ5Ih87HtOu4q5SSo=
 go.uber.org/zap v1.19.0/go.mod h1:xg/QME4nWcxGxrpdeYfq7UvYrLh66cuVKdrbD1XF/NI=
 go.uber.org/zap v1.19.1 h1:ue41HOKd1vGURxrmeKIgELGb3jPW9DMUDGtsinblHwI=
-go.uber.org/zap v1.19.1/go.mod h1:j3DNczoxDZroyBnOT1L/Q79cfUMGZxlv/9dzN7SM1rI=
 golang.org/dl v0.0.0-20190829154251-82a15e2f2ead/go.mod h1:IUMfjQLJQd4UTqG1Z90tenwKoCX93Gn3MAQJMOSBsDQ=
 golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20181029021203-45a5f77698d3/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
@@ -767,7 +757,6 @@ golang.org/x/net v0.0.0-20210119194325-5f4716e94777/go.mod h1:m0MpNAwzfU5UDzcl9v
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210316092652-d523dce5a7f4/go.mod h1:RBQZq4jEuRlivfhVLdyRGr576XBO4/greRjx4P4O3yc=
 golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
-golang.org/x/net v0.0.0-20210428140749-89ef3d95e781/go.mod h1:OJAsFXCWl8Ukc7SiCT/9KSuxbyM7479/AVlXFRxuMCk=
 golang.org/x/net v0.0.0-20210510120150-4163338589ed/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210805182204-aaa1db679c0d/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
@@ -869,12 +858,10 @@ golang.org/x/sys v0.0.0-20210514084401-e8d321eab015/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210630005230-0f9fa26af87c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210809222454-d867a43fc93e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210831042530-f4d43177bf5e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210906170528-6f6e22806c34/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20211029165221-6e7872819dc8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
@@ -966,7 +953,6 @@ golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8T
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 h1:go1bK/D/BFZV2I8cIQd1NKEZ+0owSTG1fDTci4IqFcE=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 gomodules.xyz/jsonpatch/v2 v2.2.0 h1:4pT439QV83L+G9FkcCriY6EkpcK6r6bK+A5FBUMI7qY=
-gomodules.xyz/jsonpatch/v2 v2.2.0/go.mod h1:WXp+iVDkoLQqPudfQ9GBlwB2eZ5DKOnjQZCYdOS8GPY=
 google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
 google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M=
 google.golang.org/api v0.8.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
@@ -1066,8 +1052,8 @@ google.golang.org/grpc v1.36.1/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAG
 google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/grpc v1.38.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
-google.golang.org/grpc v1.46.0 h1:oCjezcn6g6A75TGoKYBPgKmVBLexhYLM6MebdrPApP8=
-google.golang.org/grpc v1.46.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
+google.golang.org/grpc v1.46.2 h1:u+MLGgVf7vRdjEYZ8wDFhAVNmhkbJ5hmrA1LMWK1CAQ=
+google.golang.org/grpc v1.46.2/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=

From 6d4ba5f2603082031eb9b3c4391cefa591a6c85e Mon Sep 17 00:00:00 2001
From: SaurabhGarg1 <s.garg1@outlook.com>
Date: Mon, 16 May 2022 16:24:17 +0300
Subject: [PATCH 0185/1641] This PR address #8408 (#8586)

It adds description to the `Ingress Percentile Response Times and Transfer Rates` view, so that user knows that this latency data is independant of dashboard time range.

This PR also adds two new panel about the latency, where one shows latency as a timeseries graph and other shows heatmap of the latency distribution.
---
 deploy/grafana/dashboards/nginx.json | 191 ++++++++++++++++++++++++++-
 1 file changed, 190 insertions(+), 1 deletion(-)

diff --git a/deploy/grafana/dashboards/nginx.json b/deploy/grafana/dashboards/nginx.json
index a2c277047..718d41a83 100644
--- a/deploy/grafana/dashboards/nginx.json
+++ b/deploy/grafana/dashboards/nginx.json
@@ -1016,6 +1016,7 @@
     {
       "columns": [],
       "datasource": "${DS_PROMETHEUS}",
+      "description": "This data is real time, independent of dashboard time range",
       "fontSize": "100%",
       "gridPos": {
         "h": 8,
@@ -1233,6 +1234,194 @@
       "transparent": false,
       "type": "table"
     },
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "P1809F7CD0C75ACF3"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 0,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "auto",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "s"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 7,
+        "w": 12,
+        "x": 0,
+        "y": 24
+      },
+      "hideTimeOverride": false,
+      "id": 91,
+      "links": [],
+      "options": {
+        "legend": {
+          "calcs": [],
+          "displayMode": "list",
+          "placement": "bottom"
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "none"
+        }
+      },
+      "pluginVersion": "8.3.4",
+      "repeatDirection": "h",
+      "targets": [
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "P1809F7CD0C75ACF3"
+          },
+          "exemplar": true,
+          "expr": "histogram_quantile(0.80, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le))",
+          "format": "time_series",
+          "hide": false,
+          "instant": false,
+          "interval": "",
+          "intervalFactor": 1,
+          "legendFormat": "P80",
+          "refId": "C"
+        },
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "P1809F7CD0C75ACF3"
+          },
+          "exemplar": true,
+          "expr": "histogram_quantile(0.90, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le))",
+          "format": "time_series",
+          "hide": false,
+          "instant": false,
+          "interval": "",
+          "intervalFactor": 1,
+          "legendFormat": "P90",
+          "refId": "D"
+        },
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "P1809F7CD0C75ACF3"
+          },
+          "editorMode": "code",
+          "exemplar": true,
+          "expr": "histogram_quantile(0.99, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le))",
+          "format": "time_series",
+          "hide": false,
+          "instant": false,
+          "interval": "",
+          "intervalFactor": 1,
+          "legendFormat": "P99",
+          "refId": "E"
+        }
+      ],
+      "title": "Ingress Percentile Response Times",
+      "type": "timeseries"
+    },
+    {
+      "cards": {},
+      "color": {
+        "cardColor": "#b4ff00",
+        "colorScale": "sqrt",
+        "colorScheme": "interpolateWarm",
+        "exponent": 0.5,
+        "mode": "spectrum"
+      },
+      "dataFormat": "tsbuckets",
+      "datasource": {
+        "type": "prometheus",
+        "uid": "P1809F7CD0C75ACF3"
+      },
+      "description": "",
+      "gridPos": {
+        "h": 7,
+        "w": 12,
+        "x": 12,
+        "y": 24
+      },
+      "heatmap": {},
+      "hideZeroBuckets": false,
+      "highlightCards": true,
+      "id": 89,
+      "legend": {
+        "show": true
+      },
+      "reverseYBuckets": false,
+      "targets": [
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "P1809F7CD0C75ACF3"
+          },
+          "exemplar": true,
+          "expr": "sum(increase(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le)",
+          "format": "heatmap",
+          "interval": "",
+          "legendFormat": "{{le}}",
+          "refId": "A"
+        }
+      ],
+      "title": "Ingress Request Latency Heatmap",
+      "tooltip": {
+        "show": true,
+        "showHistogram": true
+      },
+      "type": "heatmap",
+      "xAxis": {
+        "show": true
+      },
+      "yAxis": {
+        "format": "s",
+        "logBase": 1,
+        "show": true
+      },
+      "yBucketBound": "auto"
+    },
     {
       "columns": [
         {
@@ -1246,7 +1435,7 @@
         "h": 8,
         "w": 24,
         "x": 0,
-        "y": 24
+        "y": 31
       },
       "height": "1024",
       "id": 85,

From 72b2f98edbba1195fe8e9da13aee6eb0a6924ae2 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 16 May 2022 06:26:17 -0700
Subject: [PATCH 0186/1641] Bump github.com/prometheus/client_golang from
 1.12.1 to 1.12.2 (#8591)

Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.12.1 to 1.12.2.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.12.1...v1.12.2)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 3 ++-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/go.mod b/go.mod
index 4024d446b..769bfde47 100644
--- a/go.mod
+++ b/go.mod
@@ -18,7 +18,7 @@ require (
 	github.com/onsi/ginkgo v1.16.5
 	github.com/opencontainers/runc v1.1.1
 	github.com/pmezard/go-difflib v1.0.0
-	github.com/prometheus/client_golang v1.12.1
+	github.com/prometheus/client_golang v1.12.2
 	github.com/prometheus/client_model v0.2.0
 	github.com/prometheus/common v0.34.0
 	github.com/spf13/cobra v1.4.0
diff --git a/go.sum b/go.sum
index 42ea730c5..6536747fe 100644
--- a/go.sum
+++ b/go.sum
@@ -494,8 +494,9 @@ github.com/prometheus/client_golang v0.9.3/go.mod h1:/TN21ttK/J9q6uSwhBd54HahCDf
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
-github.com/prometheus/client_golang v1.12.1 h1:ZiaPsmm9uiBeaSMRznKsCDNtPCS0T3JVDGF+06gjBzk=
 github.com/prometheus/client_golang v1.12.1/go.mod h1:3Z9XVyYiZYEO+YQWt3RD2R3jrbd179Rt297l4aS6nDY=
+github.com/prometheus/client_golang v1.12.2 h1:51L9cDoUHVrXx4zWYlcLQIZ+d+VXHgqnYKkIuq4g/34=
+github.com/prometheus/client_golang v1.12.2/go.mod h1:3Z9XVyYiZYEO+YQWt3RD2R3jrbd179Rt297l4aS6nDY=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=

From 6c3a237d7d44a94c80e4d7cf314b10df5607690d Mon Sep 17 00:00:00 2001
From: Mac Chaffee <me@macchaffee.com>
Date: Mon, 16 May 2022 09:30:18 -0400
Subject: [PATCH 0187/1641] Add CAP_SYS_CHROOT to DS/PSP when needed (#8587)

Signed-off-by: Mac Chaffee <me@macchaffee.com>
---
 charts/ingress-nginx/templates/controller-daemonset.yaml | 9 +--------
 charts/ingress-nginx/templates/controller-psp.yaml       | 3 +++
 2 files changed, 4 insertions(+), 8 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 99882d1a8..2dca8e5c1 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -82,14 +82,7 @@ spec:
         {{- end }}
           args:
             {{- include "ingress-nginx.params" . | nindent 12 }}
-          securityContext:
-            capabilities:
-                drop:
-                - ALL
-                add:
-                - NET_BIND_SERVICE
-            runAsUser: {{ .Values.controller.image.runAsUser }}
-            allowPrivilegeEscalation: {{ .Values.controller.image.allowPrivilegeEscalation }}
+          securityContext: {{ include "controller.containerSecurityContext" . | nindent 12 }}
           env:
             - name: POD_NAME
               valueFrom:
diff --git a/charts/ingress-nginx/templates/controller-psp.yaml b/charts/ingress-nginx/templates/controller-psp.yaml
index a859594d1..fe34408c8 100644
--- a/charts/ingress-nginx/templates/controller-psp.yaml
+++ b/charts/ingress-nginx/templates/controller-psp.yaml
@@ -12,6 +12,9 @@ metadata:
 spec:
   allowedCapabilities:
     - NET_BIND_SERVICE
+  {{- if .Values.controller.image.chroot }}
+    - SYS_CHROOT
+  {{- end }}
 {{- if .Values.controller.sysctls }}
   allowedUnsafeSysctls:
   {{- range $sysctl, $value := .Values.controller.sysctls }}

From 93af9f726ad4f6eb33a14cd864ffb2655c8045cc Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 17 May 2022 04:40:27 -0700
Subject: [PATCH 0188/1641] Bump github.com/opencontainers/runc from 1.1.1 to
 1.1.2 (#8593)

Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.1 to 1.1.2.
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/v1.1.2/CHANGELOG.md)
- [Commits](https://github.com/opencontainers/runc/compare/v1.1.1...v1.1.2)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 769bfde47..8547d6970 100644
--- a/go.mod
+++ b/go.mod
@@ -16,7 +16,7 @@ require (
 	github.com/moul/pb v0.0.0-20180404114147-54bdd96e6a52
 	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo v1.16.5
-	github.com/opencontainers/runc v1.1.1
+	github.com/opencontainers/runc v1.1.2
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.12.2
 	github.com/prometheus/client_model v0.2.0
diff --git a/go.sum b/go.sum
index 6536747fe..6dca2bc83 100644
--- a/go.sum
+++ b/go.sum
@@ -468,8 +468,8 @@ github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1Cpa
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.17.0 h1:9Luw4uT5HTjHTN8+aNcSThgH1vdXnmdJ8xIfZ4wyTRE=
-github.com/opencontainers/runc v1.1.1 h1:PJ9DSs2sVwE0iVr++pAHE6QkS9tzcVWozlPifdwMgrU=
-github.com/opencontainers/runc v1.1.1/go.mod h1:Tj1hFw6eFWp/o33uxGf5yF2BX5yz2Z6iptFpuvbbKqc=
+github.com/opencontainers/runc v1.1.2 h1:2VSZwLx5k/BfsBxMMipG/LYUnmqOD/BPkIVgQUcTlLw=
+github.com/opencontainers/runc v1.1.2/go.mod h1:Tj1hFw6eFWp/o33uxGf5yF2BX5yz2Z6iptFpuvbbKqc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=

From 2c27e66cc792f389186642a08406dc803c46ae4f Mon Sep 17 00:00:00 2001
From: Maksim Nabokikh <maksim.nabokikh@flant.com>
Date: Fri, 20 May 2022 02:27:53 +0400
Subject: [PATCH 0189/1641] feat: always set auth cookie (#8213)

* feat: always set auth cookie

Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>

* feat: Add annotation to always set auth cookie

* Add annotation
* Add global configmap key
* Provide unit tests and e2e tests
* Fix e2e documentation autogen script

Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>

* Regenerate e2e tests

Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
---
 RELEASE.md                                    |   1 +
 docs/e2e-tests.md                             | 737 ++++++------------
 .../nginx-configuration/annotations.md        |   2 +
 .../nginx-configuration/configmap.md          |   5 +
 hack/generate-e2e-suite-doc.sh                |  11 +-
 internal/ingress/annotations/authreq/main.go  |   8 +
 .../ingress/annotations/authreq/main_test.go  |  35 +-
 internal/ingress/controller/config/config.go  |   3 +-
 .../ingress/controller/template/configmap.go  |  11 +
 .../controller/template/configmap_test.go     |  28 +
 rootfs/etc/nginx/template/nginx.tmpl          |   6 +-
 test/e2e/annotations/auth.go                  |  90 ++-
 test/e2e/settings/global_external_auth.go     | 101 ++-
 13 files changed, 501 insertions(+), 537 deletions(-)

diff --git a/RELEASE.md b/RELEASE.md
index 2d8e141aa..0dfdb8681 100644
--- a/RELEASE.md
+++ b/RELEASE.md
@@ -270,6 +270,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
 - Update the version in [docs/deploy/index.md](docs/deploy/index.md)
 - Update Supported versions in the Support Versions table in the README.md
+- Execute the script to update e2e docs [hack/generate-e2e-suite-doc.sh](https://github.com/kubernetes/ingress-nginx/blob/main/hack/generate-e2e-suite-doc.sh)
 
 ### h. Edit stable.txt
 
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index fa8158887..d5aa6cc16 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -1,405 +1,36 @@
-
+<!---
+This file is autogenerated!
+Do not try to edit it manually.
+-->
 
 # e2e test suite for [Ingress NGINX Controller](https://github.com/kubernetes/ingress-nginx/tree/main/)
 
 
 
-### [[Default Backend] change default settings](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L31)
-
-- [should apply the annotation to the default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L39)
-
-### [[Default Backend]](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L29)
-
-- [should return 404 sending requests when only a default backend is running](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L32)
-- [enables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L89)
-- [disables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L106)
-
-### [[Default Backend] custom service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L33)
-
-- [uses custom default backend that returns 200 as status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L36)
-
-### [[Default Backend] SSL](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L26)
-
-- [should return a self generated SSL certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L29)
-
-### [[TCP] tcp-services](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L37)
-
-- [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L40)
-- [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L98)
-
-### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L39)
-
-- [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L46)
-- [should return status code 503 when authentication is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L65)
-- [should return status code 401 when authentication is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L89)
-- [should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L116)
-- [should return status code 200 when authentication is configured and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L144)
-- [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L171)
-- [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L199)
-- [proxy_set_header My-Custom-Header 42;](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L238)
-- [proxy_set_header My-Custom-Header 42;](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L256)
-- [proxy_set_header 'My-Custom-Header' '42';](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L273)
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L294)
-- [retains cookie set by external authentication server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L316)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L413)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L422)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L433)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L490)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L499)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L510)
-- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L584)
-- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L604)
-- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L632)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L661)
-
-### [affinitymode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L31)
-
-- [Balanced affinity mode should balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L34)
-- [Check persistent affinity mode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L64)
-
-### [proxy-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L28)
-
-- [should set proxy_redirect to off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L36)
-- [should set proxy_redirect to default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L52)
-- [should set proxy_redirect to hello.com goodbye.com](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L68)
-- [should set proxy client-max-body-size to 8m](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L85)
-- [should not set proxy client-max-body-size to incorrect value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L100)
-- [should set valid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L115)
-- [should not set invalid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L136)
-- [should turn on proxy-buffering](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L157)
-- [should turn off proxy-request-buffering](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L179)
-- [should build proxy next upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L194)
-- [should setup proxy cookies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L215)
-- [should change the default proxy HTTP version](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L233)
-
-### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L35)
-
-- [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L42)
-- [should change cookie name on ingress definition change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L64)
-- [should set the path to /something on the generated cookie](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L99)
-- [does not set the path to / on the generated cookie if there's more than one rule referring to the same backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L121)
-- [should set cookie with expires](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L182)
-- [should work with use-regex annotation and session-cookie-path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L213)
-- [should warn user when use-regex is true and session-cookie-path is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L237)
-- [should not set affinity across all server locations when using separate ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L263)
-- [should set sticky cookie without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L295)
-- [should work with server-alias annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L315)
-
-### [mirror-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L28)
-
-- [should set mirror-target to http://localhost/mirror](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L36)
-- [should set mirror-target to https://test.env.com/$request_uri](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L51)
-- [should disable mirror-request-body](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L67)
-
-### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L35)
-
-- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L47)
-- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L79)
-- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L106)
-- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L160)
-- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L205)
-- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L249)
-- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L306)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L361)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L415)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L479)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L521)
-- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L555)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L593)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L632)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L687)
-- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L743)
-- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L771)
-- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L795)
-
-### [limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L29)
-
-- [Check limit-rate annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L37)
-
-### [force-ssl-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L27)
-
-- [should redirect to https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L34)
-
-### [http2-push-preload](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L27)
-
-- [enable the http2-push-preload directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L34)
-
-### [proxy-ssl-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L30)
-
-- [should set valid proxy-ssl-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L37)
-- [should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L64)
-- [should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L94)
-- [should set valid proxy-ssl-secret, proxy-ssl-protocols](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L122)
-- [proxy-ssl-location-only flag should change the nginx config server part](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L150)
-
-### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L27)
-
-- [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L34)
-- [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L52)
-- [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L73)
-- [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L90)
-- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L109)
-- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L131)
-- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L152)
-- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L186)
-
-### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L38)
-
-- [should use grpc_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L41)
-- [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L66)
-- [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L124)
-
-### [cors-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L28)
-
-- [should enable cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L35)
-- [should set cors methods to only allow POST, GET](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L60)
-- [should set cors max-age](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L76)
-- [should disable cors allow credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L92)
-- [should allow origin for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L108)
-- [should allow headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L124)
-- [should expose headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L140)
-
-### [influxdb-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/influxdb.go#L39)
-
-- [should send the request metric to the influxdb server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/influxdb.go#L48)
-
-### [Annotation - limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L31)
-
-- [should limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L38)
-
-### [client-body-buffer-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L28)
-
-- [should set client_body_buffer_size to 1000](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L35)
-- [should set client_body_buffer_size to 1K](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L51)
-- [should set client_body_buffer_size to 1k](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L67)
-- [should set client_body_buffer_size to 1m](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L83)
-- [should set client_body_buffer_size to 1M](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L99)
-- [should not set client_body_buffer_size to invalid 1b](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L115)
-
-### [default-backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L29)
-
-- [should use a custom default backend as upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L37)
-
-### [connection-proxy-header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L29)
-
-- [set connection header to keep-alive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L36)
-
-### [upstream-vhost](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L27)
-
-- [set host to upstreamvhost.bar.com](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L34)
-
-### [custom-http-errors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L34)
-
-- [configures Nginx correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L41)
-
-### [disable-access-log disable-http-access-log disable-stream-access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L27)
-
-- [disable-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L34)
-- [disable-http-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L46)
-
-### [server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L27)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L34)
-
-### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L30)
-
-- [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L37)
-- [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L66)
-- [should use ~* location modifier if regex annotation is present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L111)
-- [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L158)
-- [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L190)
-
-### [app-root](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L28)
-
-- [should redirect to /foo](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L35)
-
-### [whitelist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L26)
-
-- [should set valid ip whitelist range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L33)
-
-### [enable-access-log enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L27)
-
-- [set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L34)
-- [set rewrite_log on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L49)
-
-### [x-forwarded-prefix](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L28)
-
-- [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L35)
-- [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L57)
-
-### [configuration-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L27)
-
-- [ in all locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L34)
-
-### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L31)
-
-- [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L38)
-- [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L55)
-- [should add fastcgi_param in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L72)
-- [should return OK for service with backend protocol FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L105)
-
-### [from-to-www-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L31)
-
-- [should redirect from www HTTP to HTTP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L38)
-- [should redirect from www HTTPS to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L64)
-
-### [permanent-redirect permanent-redirect-code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L30)
-
-- [should respond with a standard redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L33)
-- [should respond with a custom redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L61)
-
-### [upstream-hash-by-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L76)
-
-- [should connect to the same pod](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L83)
-- [should connect to the same subset of pods](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L92)
-
-### [annotation-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L30)
-
-- [generates correct configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L38)
-
-### [backend-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L27)
-
-- [should set backend protocol to https:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L34)
-- [should set backend protocol to grpc:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L49)
-- [should set backend protocol to grpcs:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L64)
-- [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L79)
-- [should set backend protocol to '' and use ajp_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L94)
-
-### [satisfy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L35)
-
-- [should configure satisfy directive correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L42)
-- [should allow multiple auth with satisfy any](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L84)
-
-### [server-alias](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L29)
-
-- [should return status code 200 for host 'foo' and 404 for 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L36)
-- [should return status code 200 for host 'foo' and 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L62)
-- [should return status code 200 for hosts defined in two ingresses, different path with one alias](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L87)
-
-### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L27)
-
-- [should change ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L34)
-
-### [auth-tls-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L30)
-
-- [should set valid auth-tls-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L37)
-- [should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L73)
-- [should set valid auth-tls-secret, pass certificate to upstream, and error page](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L103)
-- [should validate auth-tls-verify-client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L153)
-
-### [[Status] status update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L38)
-
-- [should update status field after client-go reconnection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L43)
-
-### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L29)
-
-- [should list the backend servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L37)
-- [should get information for a specific backend server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L56)
-- [should produce valid JSON for /dbg general](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L85)
-
-### [[Memory Leak] Dynamic Certificates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L35)
-
-- [should not leak memory from ingress SSL certificates or configuration updates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L42)
-
-### [[Ingress] [PathType] mix Exact and Prefix paths](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L30)
-
-- [should choose the correct location](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L39)
-
-### [[Ingress] definition without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L32)
-
-- [should set ingress details variables for ingresses without a host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L35)
-- [should set ingress details variables for ingresses with host without IngressRuleValue, only Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L56)
-
-### [single ingress - multiple hosts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L31)
-
-- [should set the correct $service_name NGINX variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L39)
-
-### [[Ingress] [PathType] exact](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L30)
-
-- [should choose exact location for /exact](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L37)
-
-### [[Ingress] [PathType] prefix checks](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L28)
-
-- [should return 404 when prefix /aaa does not match request /aaaccc](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L35)
-
-### [[Security] request smuggling](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L32)
-
-- [should not return body content from error_page](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L39)
-
-### [[SSL] [Flag] default-ssl-certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L33)
-
-- [uses default ssl certificate for catch-all ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L64)
-- [uses default ssl certificate for host based ingress when configured certificate does not match host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L80)
-
-### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L30)
-
-- [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L40)
-- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L78)
-
-### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L26)
-
-- [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L31)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L39)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L51)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L63)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L75)
-
-### [[Lua] lua-shared-dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L26)
-
-- [configures lua shared dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L29)
-
-### [server-tokens](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L30)
-
-- [should not exists Server header in the response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L38)
-- [should exists Server header in the response when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L50)
-
-### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L36)
-
-- [should respect port passed by the PROXY Protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L46)
-- [should respect proto passed by the PROXY Protocol server port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L79)
-- [should enable PROXY Protocol for HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L112)
-- [should enable PROXY Protocol for TCP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L155)
-
-### [[Flag] custom HTTP and HTTPS ports](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L32)
-
-- [should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L48)
-- [should set X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L70)
-- [should set the X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L100)
-
-### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L34)
-
-- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L55)
-- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L69)
-- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L83)
-
-### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L28)
-
-- [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L36)
-- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L57)
-
-### [proxy-connect-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L28)
-
-- [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L36)
-- [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L52)
+### [Geoip2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L37)
+
+- [should include geoip2 line in config when enabled and db file exists](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L46)
+- [should only allow requests from specific countries](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L70)
+
+### [[Security] global-auth-url](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L34)
+
+- [should return status code 401 when request any protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L85)
+- [should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L102)
+- [should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L126)
+- [should still return status code 200 after auth backend is deleted using cache](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L155)
+- [should proxy_method method when global-auth-method is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L197)
+- [should add custom error page when global-auth-signin url is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L210)
+- [should add auth headers when global-auth-response-headers is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L223)
+- [should set request-redirect when global-auth-request-redirect is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L237)
+- [should set snippet when global external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L250)
+- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L326)
+- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L337)
+- [user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L348)
 
 ### [[Security] Pod Security Policies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L40)
 
 - [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L43)
 
-### [Geoip2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L29)
-
-- [should only allow requests from specific countries](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L38)
-
-### [[Security] Pod Security Policies with volumes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L36)
-
-- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L39)
-
-### [enable-multi-accept](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L27)
-
-- [should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L31)
-- [should be enabled when set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L39)
-- [should be disabled when set to false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L49)
-
 ### [log-format-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L28)
 
 - [should disable the log-format-escape-json by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L40)
@@ -408,93 +39,47 @@
 - [log-format-escape-json enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L66)
 - [log-format-escape-json disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L89)
 
-### [[Flag] ingress-class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L39)
+### [server-tokens](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L29)
 
-- [should ignore Ingress with class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L91)
-- [should ignore Ingress with no class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L143)
-- [should delete Ingress when class is removed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L177)
-- [check scenarios for IngressClass and ingress.class annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L216)
+- [should not exists Server header in the response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L38)
+- [should exists Server header in the response when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L50)
+
+### [proxy-connect-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L28)
+
+- [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L36)
+- [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L52)
 
 ### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L28)
 
 - [Add ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L31)
 
-### [proxy-next-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L28)
+### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L36)
 
-- [should build proxy next upstream using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L36)
-
-### [[Security] global-auth-url](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L32)
-
-- [should return status code 401 when request any protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L83)
-- [should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L100)
-- [should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L124)
-- [should still return status code 200 after auth backend is deleted using cache ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L153)
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L195)
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L208)
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L221)
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L235)
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L248)
-
-### [[Security] block-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L28)
-
-- [should block CIDRs defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L38)
-- [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L55)
-- [should block Referers defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L88)
+- [should respect port passed by the PROXY Protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L46)
+- [should respect proto passed by the PROXY Protocol server port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L79)
+- [should enable PROXY Protocol for HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L112)
+- [should enable PROXY Protocol for TCP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L155)
 
 ### [plugins](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L28)
 
 - [should exist a x-hello-world header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L35)
 
-### [Configmap - limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L28)
+### [configmap server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L28)
 
-- [Check limit-rate config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L36)
+- [should add value of server-snippet setting to all ingress config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L35)
+- [should add global server-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L92)
 
-### [Configure OpenTracing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L47)
+### [[Flag] disable-catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L33)
 
-- [should not exists opentracing directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L57)
-- [should exists opentracing directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L70)
-- [should not exists opentracing_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L84)
-- [should exists opentracing_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L99)
-- [should not exists opentracing_location_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L114)
-- [should exists opentracing_location_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L129)
-- [should enable opentracing using zipkin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L144)
-- [should enable opentracing using jaeger](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L156)
-- [should enable opentracing using jaeger with sampler host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L168)
-- [should propagate the w3c header when configured with jaeger](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L181)
-- [should enable opentracing using datadog](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L225)
+- [should ignore catch all Ingress with backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L50)
+- [should ignore catch all Ingress with backend and rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L69)
+- [should delete Ingress updated to catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L81)
+- [should allow Ingress with rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L123)
 
-### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L30)
+### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L30)
 
-- [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L40)
-- [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L90)
-
-### [proxy-send-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L28)
-
-- [should set valid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L36)
-- [should not set invalid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L52)
-
-### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L28)
-
-- [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L31)
-
-### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L30)
-
-- [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L38)
-
-### [add-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L30)
-
-- [Add a custom header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L40)
-- [Add multiple custom headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L65)
-
-### [hash size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L27)
-
-- [should set server_names_hash_bucket_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L40)
-- [should set server_names_hash_max_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L48)
-- [should set proxy-headers-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L60)
-- [should set proxy-headers-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L68)
-- [should set variables-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L80)
-- [should set variables-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L88)
-- [should set vmap-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L100)
+- [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L40)
+- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L78)
 
 ### [keep-alive keep-alive-requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L28)
 
@@ -504,16 +89,130 @@
 - [should set keep alive connection timeout to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L68)
 - [should set the request count to upstream server through one keep alive connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L77)
 
-### [[Flag] disable-catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L34)
+### [enable-multi-accept](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L27)
 
-- [should ignore catch all Ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L51)
-- [should delete Ingress updated to catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L70)
-- [should allow Ingress with both a default backend and rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L108)
+- [should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L31)
+- [should be enabled when set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L39)
+- [should be disabled when set to false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L49)
+
+### [[Flag] watch namespace selector](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L30)
+
+- [should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L70)
+
+### [[Flag] disable-service-external-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L34)
+
+- [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L51)
+
+### [Configure OpenTracing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L48)
+
+- [should not exists opentracing directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L58)
+- [should exists opentracing directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L71)
+- [should include opentracing_trust_incoming_span off directive when disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L85)
+- [should not exists opentracing_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L100)
+- [should exists opentracing_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L115)
+- [should not exists opentracing_location_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L130)
+- [should exists opentracing_location_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L145)
+- [should enable opentracing using zipkin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L160)
+- [should enable opentracing using jaeger](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L172)
+- [should enable opentracing using jaeger with sampler host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L184)
+- [should propagate the w3c header when configured with jaeger](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L197)
+- [should enable opentracing using jaeger with an HTTP endpoint](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L228)
+- [should enable opentracing using datadog](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L241)
+
+### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
+
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
+
+### [Configmap - limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L28)
+
+- [Check limit-rate config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L36)
+
+### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L26)
+
+- [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L31)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L41)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L53)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L66)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L79)
+
+### [global-options](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L28)
+
+- [should have worker_rlimit_nofile option](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L31)
+- [should have worker_rlimit_nofile option and be independent on amount of worker processes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L38)
+
+### [[Flag] ingress-class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L39)
+
+- [should ignore Ingress with a different class annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L68)
+- [should ignore Ingress with different controller class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L104)
+- [should accept both Ingresses with default IngressClassName and IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L132)
+- [should ignore Ingress without IngressClass configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L164)
+- [should delete Ingress when class is removed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L192)
+- [should serve Ingress when class is added](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L257)
+- [should serve Ingress when class is updated between annotation and ingressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L323)
+- [should ignore Ingress with no class and accept the correctly configured Ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L413)
+- [should watch Ingress with no class and ignore ingress with a different class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L482)
+- [should watch Ingress that uses the class name even if spec is different](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L539)
+- [should watch Ingress with correct annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L631)
+- [should ignore Ingress with only IngressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L652)
+
+### [reuse-port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L27)
+
+- [reuse port should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L38)
+- [reuse port should be disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L44)
+- [reuse port should be enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L52)
+
+### [proxy-send-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L28)
+
+- [should set valid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L36)
+- [should not set invalid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L52)
+
+### [[SSL] [Flag] default-ssl-certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L33)
+
+- [uses default ssl certificate for catch-all ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L64)
+- [uses default ssl certificate for host based ingress when configured certificate does not match host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L80)
+
+### [brotli](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L30)
+
+- [ condition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L39)
+
+### [[Security] Pod Security Policies with volumes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L36)
+
+- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L39)
+
+### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L28)
+
+- [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L36)
+- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L57)
+
+### [[Security] block-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L28)
+
+- [should block CIDRs defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L38)
+- [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L55)
+- [should block Referers defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L88)
+
+### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L30)
+
+- [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L38)
+
+### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L28)
+
+- [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L31)
 
 ### [main-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L27)
 
 - [should add value of main-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L31)
 
+### [[Lua] lua-shared-dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L26)
+
+- [configures lua shared dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L29)
+
+### [Bad annotation values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L29)
+
+- [[BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L36)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L67)
+- [[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L102)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L133)
+
 ### [[SSL] TLS protocols, ciphers and headers)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L31)
 
 - [setting cipher suite](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L65)
@@ -525,15 +224,6 @@
 - [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L209)
 - [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L227)
 
-### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
-
-- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
-
-### [proxy-read-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L28)
-
-- [should set valid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L36)
-- [should not set invalid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L52)
-
 ### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
 
 - [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
@@ -542,33 +232,88 @@
 
 - [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
 
-### [reuse-port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L27)
+### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L34)
 
-- [reuse port should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L38)
-- [reuse port should be disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L44)
-- [reuse port should be enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L52)
+- [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L41)
 
-### [[Shutdown] Graceful shutdown with pending request](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L28)
+### [proxy-read-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L28)
 
-- [should let slow requests finish before shutting down](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L36)
+- [should set valid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L36)
+- [should not set invalid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L52)
 
-### [[Shutdown] ingress controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L33)
+### [proxy-next-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L28)
 
-- [should shutdown in less than 60 secons without pending connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L43)
-- [should shutdown after waiting 60 seconds for pending connections to be closed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L64)
-- [should shutdown after waiting 150 seconds for pending connections to be closed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L109)
+- [should build proxy next upstream using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L36)
 
-### [[Service] backend status code 503](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L32)
+### [hash size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L27)
 
-- [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L35)
-- [should return 503 when all backend service endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L53)
+- [should set server_names_hash_bucket_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L40)
+- [should set server_names_hash_max_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L48)
+- [should set proxy-headers-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L60)
+- [should set proxy-headers-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L68)
+- [should set variables-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L80)
+- [should set variables-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L88)
+- [should set vmap-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L100)
 
-### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L37)
+### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
 
-- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L40)
-- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L73)
-- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L107)
-- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L148)
-- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L179)
-- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L221)
-- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L252)
+- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L54)
+- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
+- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
+
+### [[Flag] custom HTTP and HTTPS ports](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L32)
+
+- [should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L48)
+- [should set X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L70)
+- [should set the X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L100)
+
+### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L30)
+
+- [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L40)
+- [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L92)
+
+### [add-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L30)
+
+- [Add a custom header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L40)
+- [Add multiple custom headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L65)
+
+### [[Load Balancer] round-robin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L31)
+
+- [should evenly distribute requests with round-robin (default algorithm)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L39)
+
+### [[Load Balancer] EWMA](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L31)
+
+- [does not fail requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L42)
+
+### [[Load Balancer] load-balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L28)
+
+- [should apply the configmap load-balance setting](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L35)
+
+### [[SSL] redirect to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L29)
+
+- [should redirect from HTTP to HTTPS when secret is missing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L36)
+
+### [[SSL] secret update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L33)
+
+- [should not appear references to secret updates not used in ingress rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L40)
+- [should return the fake SSL certificate if the secret is invalid](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L82)
+
+### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L58)
+
+- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L61)
+- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L94)
+- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L128)
+- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L152)
+- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L183)
+- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L216)
+- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L247)
+- [should sync ingress on external name service addition/deletion](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L310)
+
+### [[Service] Nil Service Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L31)
+
+- [should return 404 when backend service is nil](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L38)
+
+### [[Service] backend status code 503](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L33)
+
+- [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L36)
+- [should return 503 when all backend service endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L54)
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 2a019ea27..0c65bd0c8 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -488,6 +488,8 @@ Additionally it is possible to set:
   `<Cache_Key>` this enables caching for auth requests. specify a lookup key for auth responses. e.g. `$remote_user$http_authorization`. Each server and location has it's own keyspace. Hence a cached response is only valid on a per-server and per-location basis.
 * `nginx.ingress.kubernetes.io/auth-cache-duration`:
   `<Cache_duration>` to specify a caching time for auth responses based on their response codes, e.g. `200 202 30m`. See [proxy_cache_valid](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cache_valid) for details. You may specify multiple, comma-separated values: `200 202 10m, 401 5m`. defaults to `200 202 401 5m`.
+* `nginx.ingress.kubernetes.io/auth-always-set-cookie`:
+  `<Boolean_Flag>` to set a cookie returned by auth request. By default, the cookie will be set only if an upstream reports with the code 200, 201, 204, 206, 301, 302, 303, 304, 307, or 308.
 * `nginx.ingress.kubernetes.io/auth-snippet`:
   `<Auth_Snippet>` to specify a custom snippet to use with external authentication, e.g.
 
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 57d79d536..6b6414218 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -1226,6 +1226,11 @@ Enables caching for global auth requests. Specify a lookup key for auth response
 
 Set a caching time for auth responses based on their response codes, e.g. `200 202 30m`. See [proxy_cache_valid](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cache_valid) for details. You may specify multiple, comma-separated values: `200 202 10m, 401 5m`. defaults to `200 202 401 5m`.
 
+## global-auth-always-set-cookie
+
+Always set a cookie returned by auth request. By default, the cookie will be set only if an upstream reports with the code 200, 201, 204, 206, 301, 302, 303, 304, 307, or 308.
+_**default:**_ false
+
 ## no-auth-locations
 
 A comma-separated list of locations that should not get authenticated.
diff --git a/hack/generate-e2e-suite-doc.sh b/hack/generate-e2e-suite-doc.sh
index c5545945e..2265bb079 100755
--- a/hack/generate-e2e-suite-doc.sh
+++ b/hack/generate-e2e-suite-doc.sh
@@ -25,9 +25,12 @@ set -o pipefail
 URL="https://github.com/kubernetes/ingress-nginx/tree/main/"
 DIR=$(cd $(dirname "${BASH_SOURCE}")/.. && pwd -P)
 
-echo "
+echo "<!---
+This file is autogenerated!
+Do not try to edit it manually.
+-->
 
-# e2e test suite for [NGINX Ingress Controller]($URL)
+# e2e test suite for [Ingress NGINX Controller]($URL)
 
 "
 
@@ -37,7 +40,7 @@ for FILE in `find $DIR/test/e2e -name "*.go"`;do
     # line number
     DESCRIBE_LINE=$(echo $DESCRIBE | cut -f1 -d ':')
     # clean describe, extracting the string
-    DESCRIBE=$(echo $DESCRIBE | sed -En 's/.*"(.*)".*/\1/p')
+    DESCRIBE=$(echo $DESCRIBE | sed -En 's/.*("|`)(.*)("|`).*/\2/p')
 
     FILE_URL=$(echo $FILE | sed "s|${DIR}/|${URL}|g")
     echo "
@@ -48,7 +51,7 @@ for FILE in `find $DIR/test/e2e -name "*.go"`;do
     ITS=$(cat $FILE | grep -n -oP 'It\(.*')
     while IFS= read -r line; do
         IT_LINE=$(echo $line | cut -f1 -d ':')
-        IT=$(echo $line | sed -En 's/.*"(.*)".*/\1/p')
+        IT=$(echo $line | sed -En 's/.*("|`)(.*)("|`).*/\2/p')
         echo "- [$IT]($FILE_URL#L$IT_LINE)"
     done <<< "$ITS"
 done
diff --git a/internal/ingress/annotations/authreq/main.go b/internal/ingress/annotations/authreq/main.go
index 5dd1126fa..b5dc4c70b 100644
--- a/internal/ingress/annotations/authreq/main.go
+++ b/internal/ingress/annotations/authreq/main.go
@@ -48,6 +48,7 @@ type Config struct {
 	KeepaliveRequests      int               `json:"keepaliveRequests"`
 	KeepaliveTimeout       int               `json:"keepaliveTimeout"`
 	ProxySetHeaders        map[string]string `json:"proxySetHeaders,omitempty"`
+	AlwaysSetCookie        bool              `json:"alwaysSetCookie,omitempty"`
 }
 
 // DefaultCacheDuration is the fallback value if no cache duration is provided
@@ -112,6 +113,10 @@ func (e1 *Config) Equal(e2 *Config) bool {
 		return false
 	}
 
+	if e1.AlwaysSetCookie != e2.AlwaysSetCookie {
+		return false
+	}
+
 	return sets.StringElementsMatch(e1.AuthCacheDuration, e2.AuthCacheDuration)
 }
 
@@ -297,6 +302,8 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	requestRedirect, _ := parser.GetStringAnnotation("auth-request-redirect", ing)
 
+	alwaysSetCookie, _ := parser.GetBoolAnnotation("auth-always-set-cookie", ing)
+
 	return &Config{
 		URL:                    urlString,
 		Host:                   authURL.Hostname(),
@@ -312,6 +319,7 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 		KeepaliveRequests:      keepaliveRequests,
 		KeepaliveTimeout:       keepaliveTimeout,
 		ProxySetHeaders:        proxySetHeaders,
+		AlwaysSetCookie:        alwaysSetCookie,
 	}, nil
 }
 
diff --git a/internal/ingress/annotations/authreq/main_test.go b/internal/ingress/annotations/authreq/main_test.go
index eac1870e5..e1325235b 100644
--- a/internal/ingress/annotations/authreq/main_test.go
+++ b/internal/ingress/annotations/authreq/main_test.go
@@ -71,6 +71,13 @@ func buildIngress() *networking.Ingress {
 	}
 }
 
+func boolToString(v bool) string {
+	if v {
+		return "true"
+	}
+	return "false"
+}
+
 func TestAnnotations(t *testing.T) {
 	ing := buildIngress()
 
@@ -86,19 +93,20 @@ func TestAnnotations(t *testing.T) {
 		requestRedirect        string
 		authSnippet            string
 		authCacheKey           string
+		authAlwaysSetCookie    bool
 		expErr                 bool
 	}{
-		{"empty", "", "", "", "", "", "", "", true},
-		{"no scheme", "bar", "bar", "", "", "", "", "", true},
-		{"invalid host", "http://", "http://", "", "", "", "", "", true},
-		{"invalid host (multiple dots)", "http://foo..bar.com", "http://foo..bar.com", "", "", "", "", "", true},
-		{"valid URL", "http://bar.foo.com/external-auth", "http://bar.foo.com/external-auth", "", "", "", "", "", false},
-		{"valid URL - send body", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "POST", "", "", "", false},
-		{"valid URL - send body", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "GET", "", "", "", false},
-		{"valid URL - request redirect", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "GET", "http://foo.com/redirect-me", "", "", false},
-		{"auth snippet", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "", "", "proxy_set_header My-Custom-Header 42;", "", false},
-		{"auth cache ", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "", "", "", "$foo$bar", false},
-		{"redirect param", "http://bar.foo.com/external-auth", "http://bar.foo.com/external-auth", "origUrl", "", "", "", "", false},
+		{"empty", "", "", "", "", "", "", "", false, true},
+		{"no scheme", "bar", "bar", "", "", "", "", "", false, true},
+		{"invalid host", "http://", "http://", "", "", "", "", "", false, true},
+		{"invalid host (multiple dots)", "http://foo..bar.com", "http://foo..bar.com", "", "", "", "", "", false, true},
+		{"valid URL", "http://bar.foo.com/external-auth", "http://bar.foo.com/external-auth", "", "", "", "", "", false, false},
+		{"valid URL - send body", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "POST", "", "", "", false, false},
+		{"valid URL - send body", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "GET", "", "", "", false, false},
+		{"valid URL - request redirect", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "GET", "http://foo.com/redirect-me", "", "", false, false},
+		{"auth snippet", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "", "", "proxy_set_header My-Custom-Header 42;", "", false, false},
+		{"auth cache ", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "", "", "", "$foo$bar", false, false},
+		{"redirect param", "http://bar.foo.com/external-auth", "http://bar.foo.com/external-auth", "origUrl", "", "", "", "", true, false},
 	}
 
 	for _, test := range tests {
@@ -109,6 +117,7 @@ func TestAnnotations(t *testing.T) {
 		data[parser.GetAnnotationWithPrefix("auth-request-redirect")] = test.requestRedirect
 		data[parser.GetAnnotationWithPrefix("auth-snippet")] = test.authSnippet
 		data[parser.GetAnnotationWithPrefix("auth-cache-key")] = test.authCacheKey
+		data[parser.GetAnnotationWithPrefix("auth-always-set-cookie")] = boolToString(test.authAlwaysSetCookie)
 
 		i, err := NewParser(&resolver.Mock{}).Parse(ing)
 		if test.expErr {
@@ -146,6 +155,10 @@ func TestAnnotations(t *testing.T) {
 		if u.AuthCacheKey != test.authCacheKey {
 			t.Errorf("%v: expected \"%v\" but \"%v\" was returned", test.title, test.authCacheKey, u.AuthCacheKey)
 		}
+
+		if u.AlwaysSetCookie != test.authAlwaysSetCookie {
+			t.Errorf("%v: expected \"%v\" but \"%v\" was returned", test.title, test.authAlwaysSetCookie, u.AlwaysSetCookie)
+		}
 	}
 }
 
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index f0dfdc191..a1f35e9fa 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -782,7 +782,7 @@ func NewDefault() Configuration {
 	defNginxStatusIpv4Whitelist = append(defNginxStatusIpv4Whitelist, "127.0.0.1")
 	defNginxStatusIpv6Whitelist = append(defNginxStatusIpv6Whitelist, "::1")
 	defProxyDeadlineDuration := time.Duration(5) * time.Second
-	defGlobalExternalAuth := GlobalExternalAuth{"", "", "", "", "", append(defResponseHeaders, ""), "", "", "", []string{}, map[string]string{}}
+	defGlobalExternalAuth := GlobalExternalAuth{"", "", "", "", "", append(defResponseHeaders, ""), "", "", "", []string{}, map[string]string{}, false}
 
 	cfg := Configuration{
 
@@ -995,4 +995,5 @@ type GlobalExternalAuth struct {
 	AuthCacheKey           string            `json:"authCacheKey"`
 	AuthCacheDuration      []string          `json:"authCacheDuration"`
 	ProxySetHeaders        map[string]string `json:"proxySetHeaders,omitempty"`
+	AlwaysSetCookie        bool              `json:"alwaysSetCookie,omitempty"`
 }
diff --git a/internal/ingress/controller/template/configmap.go b/internal/ingress/controller/template/configmap.go
index 4f3aca444..382cb0367 100644
--- a/internal/ingress/controller/template/configmap.go
+++ b/internal/ingress/controller/template/configmap.go
@@ -62,6 +62,7 @@ const (
 	globalAuthSnippet             = "global-auth-snippet"
 	globalAuthCacheKey            = "global-auth-cache-key"
 	globalAuthCacheDuration       = "global-auth-cache-duration"
+	globalAuthAlwaysSetCookie     = "global-auth-always-set-cookie"
 	luaSharedDictsKey             = "lua-shared-dicts"
 	plugins                       = "plugins"
 )
@@ -315,6 +316,16 @@ func ReadConfig(src map[string]string) config.Configuration {
 		to.GlobalExternalAuth.AuthCacheDuration = cacheDurations
 	}
 
+	if val, ok := conf[globalAuthAlwaysSetCookie]; ok {
+		delete(conf, globalAuthAlwaysSetCookie)
+
+		alwaysSetCookie, err := strconv.ParseBool(val)
+		if err != nil {
+			klog.Warningf("Global auth location denied - %s", fmt.Errorf("cannot convert %s to bool: %v", globalAuthAlwaysSetCookie, err))
+		}
+		to.GlobalExternalAuth.AlwaysSetCookie = alwaysSetCookie
+	}
+
 	// Verify that the configured timeout is parsable as a duration. if not, set the default value
 	if val, ok := conf[proxyHeaderTimeout]; ok {
 		delete(conf, proxyHeaderTimeout)
diff --git a/internal/ingress/controller/template/configmap_test.go b/internal/ingress/controller/template/configmap_test.go
index 1f6ce2fe6..b30e836ee 100644
--- a/internal/ingress/controller/template/configmap_test.go
+++ b/internal/ingress/controller/template/configmap_test.go
@@ -229,6 +229,34 @@ func TestGlobalExternalAuthSigninParsing(t *testing.T) {
 	}
 }
 
+func TestGlobalExternalAlwaysSetCookie(t *testing.T) {
+	testCases := map[string]struct {
+		alwaysSetCookie string
+		result          bool
+	}{
+		"true": {
+			alwaysSetCookie: "true",
+			result:          true,
+		},
+		"false": {
+			alwaysSetCookie: "false",
+		},
+		"set empty": {
+			alwaysSetCookie: "",
+		},
+		"error": {
+			alwaysSetCookie: "error string",
+		},
+	}
+
+	for n, tc := range testCases {
+		cfg := ReadConfig(map[string]string{"global-auth-always-set-cookie": tc.alwaysSetCookie})
+		if cfg.GlobalExternalAuth.AlwaysSetCookie != tc.result {
+			t.Errorf("Testing %v. Expected \"%v\" but \"%v\" was returned", n, tc.result, cfg.GlobalExternalAuth.AlwaysSetCookie)
+		}
+	}
+}
+
 func TestGlobalExternalAuthSigninRedirectParamParsing(t *testing.T) {
 	testCases := map[string]struct {
 		param  string
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index ed7d3cc08..bd0880c77 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -778,7 +778,7 @@ stream {
     access_log {{ or $cfg.StreamAccessLogPath $cfg.AccessLogPath }} log_stream {{ $cfg.AccessLogParams }};
     {{ end }}
 
-   
+
     error_log  {{ $cfg.ErrorLogPath }} {{ $cfg.ErrorLogLevel }};
     {{ if $cfg.EnableRealIp }}
     {{ range $trusted_ip := $cfg.ProxyRealIPCIDR }}
@@ -1292,7 +1292,11 @@ stream {
             {{ else }}
             auth_request        {{ $authPath }};
             auth_request_set    $auth_cookie $upstream_http_set_cookie;
+            {{ if $externalAuth.AlwaysSetCookie }}
+            add_header          Set-Cookie $auth_cookie always;
+            {{ else }}
             add_header          Set-Cookie $auth_cookie;
+            {{ end }}
             {{- range $line := buildAuthResponseHeaders $proxySetHeader $externalAuth.ResponseHeaders false }}
             {{ $line }}
             {{- end }}
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index 0ea97d3ef..d0ca5cf12 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -313,9 +313,12 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 			})
 	})
 
-	ginkgo.It("retains cookie set by external authentication server", func() {
+	ginkgo.Context("cookie set by external authentication server", func() {
 		host := "auth-check-cookies"
 
+		var annotations map[string]string
+		var ing1, ing2 *networking.Ingress
+
 		cfg := `#
 events {
 	worker_connections  1024;
@@ -342,40 +345,81 @@ http {
 		location / {
 			return 200;
 		}
+
+		location /error {
+			return 503;
+		}
 	}
 }
 `
+		ginkgo.BeforeEach(func() {
+			f.NGINXWithConfigDeployment("http-cookie-with-error", cfg)
 
-		f.NGINXWithConfigDeployment(framework.HTTPBinService, cfg)
+			e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), "http-cookie-with-error", metav1.GetOptions{})
+			assert.Nil(ginkgo.GinkgoT(), err)
 
-		e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBinService, metav1.GetOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err)
+			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
+			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
 
-		assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
-		assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
+			httpbinIP := e.Subsets[0].Addresses[0].IP
 
-		httpbinIP := e.Subsets[0].Addresses[0].IP
+			annotations = map[string]string{
+				"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/cookies/set/alma/armud", httpbinIP),
+				"nginx.ingress.kubernetes.io/auth-signin": "http://$host/auth/start",
+			}
 
-		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/cookies/set/alma/armud", httpbinIP),
-			"nginx.ingress.kubernetes.io/auth-signin": "http://$host/auth/start",
-		}
+			ing1 = framework.NewSingleIngress(host, "/", host, f.Namespace, "http-cookie-with-error", 80, annotations)
+			f.EnsureIngress(ing1)
 
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
-		f.EnsureIngress(ing)
+			ing2 = framework.NewSingleIngress(host+"-error", "/error", host, f.Namespace, "http-cookie-with-error", 80, annotations)
+			f.EnsureIngress(ing2)
+
+			f.WaitForNginxServer(host, func(server string) bool {
+				return strings.Contains(server, "server_name "+host)
+			})
 
-		f.WaitForNginxServer(host, func(server string) bool {
-			return strings.Contains(server, "server_name auth")
 		})
 
-		f.HTTPTestClient().
-			GET("/").
-			WithHeader("Host", host).
-			WithQuery("a", "b").
-			WithQuery("c", "d").
-			Expect().
-			Status(http.StatusOK).
-			Header("Set-Cookie").Contains("alma=armud")
+		ginkgo.It("user retains cookie by default", func() {
+			f.HTTPTestClient().
+				GET("/").
+				WithHeader("Host", host).
+				WithQuery("a", "b").
+				WithQuery("c", "d").
+				Expect().
+				Status(http.StatusOK).
+				Header("Set-Cookie").Contains("alma=armud")
+		})
+
+		ginkgo.It("user does not retain cookie if upstream returns error status code", func() {
+			f.HTTPTestClient().
+				GET("/error").
+				WithHeader("Host", host).
+				WithQuery("a", "b").
+				WithQuery("c", "d").
+				Expect().
+				Status(http.StatusServiceUnavailable).
+				Header("Set-Cookie").Contains("")
+		})
+
+		ginkgo.It("user with annotated ingress retains cookie if upstream returns error status code", func() {
+			annotations["nginx.ingress.kubernetes.io/auth-always-set-cookie"] = "true"
+			f.UpdateIngress(ing1)
+			f.UpdateIngress(ing2)
+
+			f.WaitForNginxServer(host, func(server string) bool {
+				return strings.Contains(server, "server_name "+host)
+			})
+
+			f.HTTPTestClient().
+				GET("/error").
+				WithHeader("Host", host).
+				WithQuery("a", "b").
+				WithQuery("c", "d").
+				Expect().
+				Status(http.StatusServiceUnavailable).
+				Header("Set-Cookie").Contains("alma=armud")
+		})
 	})
 
 	ginkgo.Context("when external authentication is configured", func() {
diff --git a/test/e2e/settings/global_external_auth.go b/test/e2e/settings/global_external_auth.go
index 1e5bf4301..d514080a0 100644
--- a/test/e2e/settings/global_external_auth.go
+++ b/test/e2e/settings/global_external_auth.go
@@ -17,6 +17,7 @@ limitations under the License.
 package settings
 
 import (
+	"context"
 	"fmt"
 	"net/http"
 	"regexp"
@@ -24,6 +25,7 @@ import (
 
 	"github.com/onsi/ginkgo"
 	"github.com/stretchr/testify/assert"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/ingress-nginx/test/e2e/framework"
@@ -150,7 +152,7 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 				Status(http.StatusOK)
 		})
 
-		ginkgo.It("should still return status code 200 after auth backend is deleted using cache ", func() {
+		ginkgo.It("should still return status code 200 after auth backend is deleted using cache", func() {
 
 			globalExternalAuthCacheKeySetting := "global-auth-cache-key"
 			globalExternalAuthCacheKey := "foo"
@@ -259,4 +261,101 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 
 	})
 
+	ginkgo.Context("cookie set by external authentication server", func() {
+		host := "global-external-auth-check-cookies"
+		var ing1, ing2 *networking.Ingress
+
+		cfg := `#
+events {
+	worker_connections  1024;
+	multi_accept on;
+}
+
+http {
+	default_type 'text/plain';
+	client_max_body_size 0;
+
+	server {
+		access_log on;
+		access_log /dev/stdout;
+
+		listen 80;
+
+		location ~ ^/cookies/set/(?<key>.*)/(?<value>.*) {
+			content_by_lua_block {
+				ngx.header['Set-Cookie'] = {ngx.var.key.."="..ngx.var.value}
+				ngx.say("OK")
+			}
+		}
+
+		location / {
+			return 200;
+		}
+
+		location /error {
+			return 503;
+		}
+	}
+}
+`
+		ginkgo.BeforeEach(func() {
+			f.NGINXWithConfigDeployment("http-cookie-with-error", cfg)
+
+			e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), "http-cookie-with-error", metav1.GetOptions{})
+			assert.Nil(ginkgo.GinkgoT(), err)
+
+			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
+			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
+
+			httpbinIP := e.Subsets[0].Addresses[0].IP
+
+			f.UpdateNginxConfigMapData(globalExternalAuthURLSetting, fmt.Sprintf("http://%s/cookies/set/alma/armud", httpbinIP))
+
+			ing1 = framework.NewSingleIngress(host, "/", host, f.Namespace, "http-cookie-with-error", 80, nil)
+			f.EnsureIngress(ing1)
+
+			ing2 = framework.NewSingleIngress(host+"-error", "/error", host, f.Namespace, "http-cookie-with-error", 80, nil)
+			f.EnsureIngress(ing2)
+
+			f.WaitForNginxServer(host, func(server string) bool {
+				return strings.Contains(server, "server_name "+host)
+			})
+
+		})
+
+		ginkgo.It("user retains cookie by default", func() {
+			f.HTTPTestClient().
+				GET("/").
+				WithHeader("Host", host).
+				WithQuery("a", "b").
+				WithQuery("c", "d").
+				Expect().
+				Status(http.StatusOK).
+				Header("Set-Cookie").Contains("alma=armud")
+		})
+
+		ginkgo.It("user does not retain cookie if upstream returns error status code", func() {
+			f.HTTPTestClient().
+				GET("/error").
+				WithHeader("Host", host).
+				WithQuery("a", "b").
+				WithQuery("c", "d").
+				Expect().
+				Status(http.StatusServiceUnavailable).
+				Header("Set-Cookie").Contains("")
+		})
+
+		ginkgo.It("user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code", func() {
+			f.UpdateNginxConfigMapData("global-auth-always-set-cookie", "true")
+
+			f.HTTPTestClient().
+				GET("/error").
+				WithHeader("Host", host).
+				WithQuery("a", "b").
+				WithQuery("c", "d").
+				Expect().
+				Status(http.StatusServiceUnavailable).
+				Header("Set-Cookie").Contains("alma=armud")
+		})
+	})
 })

From ba3fb460dfe3f5bd49e5b7ca8188ceb0b3faa54d Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Fri, 20 May 2022 01:03:53 +0200
Subject: [PATCH 0190/1641] opentelemetry use git instead of curl (#8606)

---
 images/opentelemetry/rootfs/build.sh | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
index 43808ed2c..91298274d 100755
--- a/images/opentelemetry/rootfs/build.sh
+++ b/images/opentelemetry/rootfs/build.sh
@@ -115,7 +115,7 @@ get_src()
 
   echo "Downloading $url"
 
-  curl -sSL "$url" -o "$f"
+  curl -sSL --fail-with-body "$url" -o "$f"
   echo "$hash  $f" | sha256sum -c - || exit 10
   tar xzf "$f"
   rm -rf "$f"
@@ -131,9 +131,14 @@ install_nginx()
   mkdir -p /etc/nginx
   cd "$BUILD_PATH"
 
-  get_src 0528e793a97f942868616449d49326160f9cb67b2253fb2c4864603ac6ab09a9 \
-          "https://github.com/open-telemetry/opentelemetry-cpp-contrib/archive/$OPENTELEMETRY_CONTRIB_COMMIT.tar.gz"
+  # TODO fix curl
+  # get_src 0528e793a97f942868616449d49326160f9cb67b2253fb2c4864603ac6ab09a9 \
+  #         "https://github.com/open-telemetry/opentelemetry-cpp-contrib/archive/$OPENTELEMETRY_CONTRIB_COMMIT.tar.gz"
 
+  git clone https://github.com/open-telemetry/opentelemetry-cpp-contrib.git \
+    opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}
+  cd ${BUILD_PATH}/opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}
+  git reset --hard ${OPENTELEMETRY_CONTRIB_COMMIT}
   cd ${BUILD_PATH}/opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}/instrumentation/nginx
   mkdir -p build
   cd build

From 0240dd3fba0ddd6a306135004fc0d9e2e017f330 Mon Sep 17 00:00:00 2001
From: Patrik Wehrli <patrik.wehrli@gmail.com>
Date: Sat, 21 May 2022 11:52:00 +0200
Subject: [PATCH 0191/1641] Add new control-plane toleration for kind 1.24
 (#8609)

---
 deploy/static/provider/kind/1.19/deploy.yaml      | 3 +++
 deploy/static/provider/kind/1.20/deploy.yaml      | 3 +++
 deploy/static/provider/kind/1.21/deploy.yaml      | 3 +++
 deploy/static/provider/kind/1.22/deploy.yaml      | 3 +++
 deploy/static/provider/kind/1.23/deploy.yaml      | 3 +++
 deploy/static/provider/kind/deploy.yaml           | 3 +++
 hack/manifest-templates/provider/kind/values.yaml | 3 +++
 7 files changed, 21 insertions(+)

diff --git a/deploy/static/provider/kind/1.19/deploy.yaml b/deploy/static/provider/kind/1.19/deploy.yaml
index c61bcf9cd..ed44b79af 100644
--- a/deploy/static/provider/kind/1.19/deploy.yaml
+++ b/deploy/static/provider/kind/1.19/deploy.yaml
@@ -477,6 +477,9 @@ spec:
       - effect: NoSchedule
         key: node-role.kubernetes.io/master
         operator: Equal
+      - effect: NoSchedule
+        key: node-role.kubernetes.io/control-plane
+        operator: Equal
       volumes:
       - name: webhook-cert
         secret:
diff --git a/deploy/static/provider/kind/1.20/deploy.yaml b/deploy/static/provider/kind/1.20/deploy.yaml
index cda06a589..60fb24d4a 100644
--- a/deploy/static/provider/kind/1.20/deploy.yaml
+++ b/deploy/static/provider/kind/1.20/deploy.yaml
@@ -480,6 +480,9 @@ spec:
       - effect: NoSchedule
         key: node-role.kubernetes.io/master
         operator: Equal
+      - effect: NoSchedule
+        key: node-role.kubernetes.io/control-plane
+        operator: Equal
       volumes:
       - name: webhook-cert
         secret:
diff --git a/deploy/static/provider/kind/1.21/deploy.yaml b/deploy/static/provider/kind/1.21/deploy.yaml
index b3fac9bea..049796359 100644
--- a/deploy/static/provider/kind/1.21/deploy.yaml
+++ b/deploy/static/provider/kind/1.21/deploy.yaml
@@ -483,6 +483,9 @@ spec:
       - effect: NoSchedule
         key: node-role.kubernetes.io/master
         operator: Equal
+      - effect: NoSchedule
+        key: node-role.kubernetes.io/control-plane
+        operator: Equal
       volumes:
       - name: webhook-cert
         secret:
diff --git a/deploy/static/provider/kind/1.22/deploy.yaml b/deploy/static/provider/kind/1.22/deploy.yaml
index b3fac9bea..049796359 100644
--- a/deploy/static/provider/kind/1.22/deploy.yaml
+++ b/deploy/static/provider/kind/1.22/deploy.yaml
@@ -483,6 +483,9 @@ spec:
       - effect: NoSchedule
         key: node-role.kubernetes.io/master
         operator: Equal
+      - effect: NoSchedule
+        key: node-role.kubernetes.io/control-plane
+        operator: Equal
       volumes:
       - name: webhook-cert
         secret:
diff --git a/deploy/static/provider/kind/1.23/deploy.yaml b/deploy/static/provider/kind/1.23/deploy.yaml
index b3fac9bea..049796359 100644
--- a/deploy/static/provider/kind/1.23/deploy.yaml
+++ b/deploy/static/provider/kind/1.23/deploy.yaml
@@ -483,6 +483,9 @@ spec:
       - effect: NoSchedule
         key: node-role.kubernetes.io/master
         operator: Equal
+      - effect: NoSchedule
+        key: node-role.kubernetes.io/control-plane
+        operator: Equal
       volumes:
       - name: webhook-cert
         secret:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index cda06a589..60fb24d4a 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -480,6 +480,9 @@ spec:
       - effect: NoSchedule
         key: node-role.kubernetes.io/master
         operator: Equal
+      - effect: NoSchedule
+        key: node-role.kubernetes.io/control-plane
+        operator: Equal
       volumes:
       - name: webhook-cert
         secret:
diff --git a/hack/manifest-templates/provider/kind/values.yaml b/hack/manifest-templates/provider/kind/values.yaml
index f327c351e..ed636f372 100644
--- a/hack/manifest-templates/provider/kind/values.yaml
+++ b/hack/manifest-templates/provider/kind/values.yaml
@@ -17,6 +17,9 @@ controller:
     - key: "node-role.kubernetes.io/master"
       operator: "Equal"
       effect: "NoSchedule"
+    - key: "node-role.kubernetes.io/control-plane"
+      operator: "Equal"
+      effect: "NoSchedule"
 
   publishService:
     enabled: false

From 4da96ea26a72bf2cdb94d5809a4c9686dccee8ab Mon Sep 17 00:00:00 2001
From: Filip Petkovski <filip.petkovsky@gmail.com>
Date: Sat, 21 May 2022 20:18:00 +0200
Subject: [PATCH 0192/1641] Implement reporting status classes in metrics
 (#8548)

This commit introduces a backwards compatible command line option
--report-status-classes which will enable reporting response status classes
(2xx, 3xx..) instead of status codes in exported metrics.
---
 cmd/nginx/flags.go                            |  4 ++
 cmd/nginx/main.go                             |  2 +-
 docs/user-guide/cli-arguments.md              |  1 +
 internal/ingress/controller/controller.go     |  7 ++-
 internal/ingress/metric/collectors/socket.go  | 12 +++-
 .../ingress/metric/collectors/socket_test.go  | 57 ++++++++++++++++---
 internal/ingress/metric/main.go               |  4 +-
 7 files changed, 71 insertions(+), 16 deletions(-)

diff --git a/cmd/nginx/flags.go b/cmd/nginx/flags.go
index 337a1f827..9a00b58b0 100644
--- a/cmd/nginx/flags.go
+++ b/cmd/nginx/flags.go
@@ -163,6 +163,9 @@ Requires the update-status parameter.`)
 			`Enables the collection of NGINX metrics`)
 		metricsPerHost = flags.Bool("metrics-per-host", true,
 			`Export metrics per-host`)
+		reportStatusClasses = flags.Bool("report-status-classes", false,
+			`Use status classes (2xx, 3xx, 4xx and 5xx) instead of status codes in metrics`)
+
 		timeBuckets         = flags.Float64Slice("time-buckets", prometheus.DefBuckets, "Set of buckets which will be used for prometheus histogram metrics such as RequestTime, ResponseTime")
 		lengthBuckets       = flags.Float64Slice("length-buckets", prometheus.LinearBuckets(10, 10, 10), "Set of buckets which will be used for prometheus histogram metrics such as RequestLength, ResponseLength")
 		sizeBuckets         = flags.Float64Slice("size-buckets", prometheus.ExponentialBuckets(10, 10, 7), "Set of buckets which will be used for prometheus histogram metrics such as BytesSent")
@@ -313,6 +316,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		EnableMetrics:               *enableMetrics,
 		MetricsPerHost:              *metricsPerHost,
 		MetricsBuckets:              histogramBuckets,
+		ReportStatusClasses:         *reportStatusClasses,
 		MonitorMaxBatchSize:         *monitorMaxBatchSize,
 		DisableServiceExternalName:  *disableServiceExternalName,
 		EnableSSLPassthrough:        *enableSSLPassthrough,
diff --git a/cmd/nginx/main.go b/cmd/nginx/main.go
index b8378d290..d5d6d91e7 100644
--- a/cmd/nginx/main.go
+++ b/cmd/nginx/main.go
@@ -133,7 +133,7 @@ func main() {
 
 	mc := metric.NewDummyCollector()
 	if conf.EnableMetrics {
-		mc, err = metric.NewCollector(conf.MetricsPerHost, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets)
+		mc, err = metric.NewCollector(conf.MetricsPerHost, conf.ReportStatusClasses, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets)
 		if err != nil {
 			klog.Fatalf("Error creating prometheus collector:  %v", err)
 		}
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index f2b0f7a82..ae7c5b3ba 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -47,6 +47,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--publish-service`                | Service fronting the Ingress controller. Takes the form "namespace/name". When used together with update-status, the controller mirrors the address of this service's endpoints to the load-balancer status of all Ingress objects it satisfies. |
 | `--publish-status-address`         | Customized address (or addresses, separated by comma) to set as the load-balancer status of Ingress objects this controller satisfies. Requires the update-status parameter. |
 | `--report-node-internal-ip-address`| Set the load-balancer status of Ingress objects to internal Node addresses instead of external. Requires the update-status parameter. |
+| `--report-status-classes`          | If true, report status classes in metrics (2xx, 3xx, 4xx and 5xx) instead of full status codes. (default false) |
 | `--skip_headers`                   | If true, avoid header prefixes in the log messages |
 | `--skip_log_headers`               | If true, avoid headers when opening log files |
 | `--ssl-passthrough-proxy-port`     | Port to use internally for SSL Passthrough. (default 442) |
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index f43c72d92..44385f175 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -97,9 +97,10 @@ type Configuration struct {
 
 	EnableProfiling bool
 
-	EnableMetrics  bool
-	MetricsPerHost bool
-	MetricsBuckets *collectors.HistogramBuckets
+	EnableMetrics       bool
+	MetricsPerHost      bool
+	MetricsBuckets      *collectors.HistogramBuckets
+	ReportStatusClasses bool
 
 	FakeCertificate *ingress.SSLCert
 
diff --git a/internal/ingress/metric/collectors/socket.go b/internal/ingress/metric/collectors/socket.go
index ea4775583..26aebbaef 100644
--- a/internal/ingress/metric/collectors/socket.go
+++ b/internal/ingress/metric/collectors/socket.go
@@ -85,7 +85,8 @@ type SocketCollector struct {
 
 	hosts sets.String
 
-	metricsPerHost bool
+	metricsPerHost      bool
+	reportStatusClasses bool
 
 	buckets HistogramBuckets
 }
@@ -110,7 +111,7 @@ var defObjectives = map[float64]float64{0.5: 0.05, 0.9: 0.01, 0.99: 0.001}
 
 // NewSocketCollector creates a new SocketCollector instance using
 // the ingress watch namespace and class used by the controller
-func NewSocketCollector(pod, namespace, class string, metricsPerHost bool, buckets HistogramBuckets) (*SocketCollector, error) {
+func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStatusClasses bool, buckets HistogramBuckets) (*SocketCollector, error) {
 	socket := "/tmp/nginx/prometheus-nginx.socket"
 	// unix sockets must be unlink()ed before being used
 	_ = syscall.Unlink(socket)
@@ -139,7 +140,8 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost bool, bucke
 	sc := &SocketCollector{
 		listener: listener,
 
-		metricsPerHost: metricsPerHost,
+		metricsPerHost:      metricsPerHost,
+		reportStatusClasses: reportStatusClasses,
 
 		responseTime: prometheus.NewHistogramVec(
 			prometheus.HistogramOpts{
@@ -249,6 +251,10 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 			continue
 		}
 
+		if sc.reportStatusClasses && len(stats.Status) > 0 {
+			stats.Status = fmt.Sprintf("%cxx", stats.Status[0])
+		}
+
 		// Note these must match the order in requestTags at the top
 		requestLabels := prometheus.Labels{
 			"status":    stats.Status,
diff --git a/internal/ingress/metric/collectors/socket_test.go b/internal/ingress/metric/collectors/socket_test.go
index 8542d273c..11af7c06d 100644
--- a/internal/ingress/metric/collectors/socket_test.go
+++ b/internal/ingress/metric/collectors/socket_test.go
@@ -80,12 +80,13 @@ func TestCollector(t *testing.T) {
 	}
 
 	cases := []struct {
-		name            string
-		data            []string
-		metrics         []string
-		wantBefore      string
-		removeIngresses []string
-		wantAfter       string
+		name             string
+		data             []string
+		metrics          []string
+		useStatusClasses bool
+		wantBefore       string
+		removeIngresses  []string
+		wantAfter        string
 	}{
 		{
 			name: "invalid metric object should not increase prometheus metrics",
@@ -371,13 +372,55 @@ func TestCollector(t *testing.T) {
 			wantAfter: `
 			`,
 		},
+		{
+			name: "valid metric object with status classes should update prometheus metrics",
+			data: []string{`[{
+				"host":"testshop.com",
+				"status":"200",
+				"bytesSent":150.0,
+				"method":"GET",
+				"path":"/admin",
+				"requestLength":300.0,
+				"requestTime":60.0,
+				"upstreamName":"test-upstream",
+				"upstreamIP":"1.1.1.1:8080",
+				"upstreamResponseTime":200,
+				"upstreamStatus":"220",
+				"namespace":"test-app-production",
+				"ingress":"web-yml",
+				"service":"test-app",
+				"canary":""
+			}]`},
+			metrics:          []string{"nginx_ingress_controller_response_duration_seconds"},
+			useStatusClasses: true,
+			wantBefore: `
+				# HELP nginx_ingress_controller_response_duration_seconds The time spent on receiving the response from the upstream server
+				# TYPE nginx_ingress_controller_response_duration_seconds histogram
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.005"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.01"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.025"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.05"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.1"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.25"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.5"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="1"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="2.5"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="5"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="10"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="+Inf"} 1
+				nginx_ingress_controller_response_duration_seconds_sum{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx"} 200
+				nginx_ingress_controller_response_duration_seconds_count{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx"} 1
+			`,
+			wantAfter: `
+			`,
+		},
 	}
 
 	for _, c := range cases {
 		t.Run(c.name, func(t *testing.T) {
 			registry := prometheus.NewPedanticRegistry()
 
-			sc, err := NewSocketCollector("pod", "default", "ingress", true, buckets)
+			sc, err := NewSocketCollector("pod", "default", "ingress", true, c.useStatusClasses, buckets)
 			if err != nil {
 				t.Errorf("%v: unexpected error creating new SocketCollector: %v", c.name, err)
 			}
diff --git a/internal/ingress/metric/main.go b/internal/ingress/metric/main.go
index 97a8ca7d4..a0aea1e71 100644
--- a/internal/ingress/metric/main.go
+++ b/internal/ingress/metric/main.go
@@ -69,7 +69,7 @@ type collector struct {
 }
 
 // NewCollector creates a new metric collector the for ingress controller
-func NewCollector(metricsPerHost bool, registry *prometheus.Registry, ingressclass string, buckets collectors.HistogramBuckets) (Collector, error) {
+func NewCollector(metricsPerHost, reportStatusClasses bool, registry *prometheus.Registry, ingressclass string, buckets collectors.HistogramBuckets) (Collector, error) {
 	podNamespace := os.Getenv("POD_NAMESPACE")
 	if podNamespace == "" {
 		podNamespace = "default"
@@ -87,7 +87,7 @@ func NewCollector(metricsPerHost bool, registry *prometheus.Registry, ingresscla
 		return nil, err
 	}
 
-	s, err := collectors.NewSocketCollector(podName, podNamespace, ingressclass, metricsPerHost, buckets)
+	s, err := collectors.NewSocketCollector(podName, podNamespace, ingressclass, metricsPerHost, reportStatusClasses, buckets)
 	if err != nil {
 		return nil, err
 	}

From e0b2db057f29f6f50bc46a6364c4e451c7c103a3 Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Mon, 23 May 2022 11:10:02 +0200
Subject: [PATCH 0193/1641] move so files under /etc/nginx/modules (#8612)

---
 images/opentelemetry/rootfs/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index ae6ddacbd..91832fa55 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -42,4 +42,4 @@ RUN bash /opt/third_party/build.sh -n
 FROM alpine:3.14.6
 COPY --from=base /opt/third_party/init_module.sh /usr/local/bin/init_module.sh
 COPY --from=nginx /etc/nginx/modules /etc/nginx/modules
-COPY --from=nginx /opt/third_party/install/lib /usr/lib
+COPY --from=nginx /opt/third_party/install/lib /etc/nginx/modules

From 869e18b264748357fa5b788d0a8e887412c5a704 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Renan=20Gon=C3=A7alves?= <renan.saddam@gmail.com>
Date: Mon, 23 May 2022 14:50:03 +0200
Subject: [PATCH 0194/1641] Avoid race conditions by copying the list before
 sorting (#8573)

When creating several ingresses at the same time a race condition can
happen by modifying a variable deep in another object. When this race
condition is triggered the generated nginx configuration is broken:

```
nginx: [emerg] invalid parameter "8.8.8.8/32,8" in /tmp/nginx-cfg4027854160:671
nginx: configuration file /tmp/nginx-cfg4027854160 test failed
```

Once it happens, the controller won't ever be able to generate the
configuration again. Thus the only option is to restart the process.

There is not really a good way to reproduce this issue. It happens quite
sporadically every 2 or 3 days. However, after this fix has been
applied, we haven't seen it happen after about 4 weeks.

Co-authored-by: Ruud van der Weijde <ruudvanderweijde@gmail.com>
---
 internal/ingress/annotations/ipwhitelist/main.go | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/internal/ingress/annotations/ipwhitelist/main.go b/internal/ingress/annotations/ipwhitelist/main.go
index 77c2b6cc0..38610ade6 100644
--- a/internal/ingress/annotations/ipwhitelist/main.go
+++ b/internal/ingress/annotations/ipwhitelist/main.go
@@ -62,18 +62,21 @@ func NewParser(r resolver.Resolver) parser.IngressAnnotation {
 // e.g. `18.0.0.0/8,56.0.0.0/8`
 func (a ipwhitelist) Parse(ing *networking.Ingress) (interface{}, error) {
 	defBackend := a.r.GetDefaultBackend()
-	sort.Strings(defBackend.WhitelistSourceRange)
+
+	defaultWhitelistSourceRange := make([]string, len(defBackend.WhitelistSourceRange))
+	copy(defaultWhitelistSourceRange, defBackend.WhitelistSourceRange)
+	sort.Strings(defaultWhitelistSourceRange)
 
 	val, err := parser.GetStringAnnotation("whitelist-source-range", ing)
 	// A missing annotation is not a problem, just use the default
 	if err == ing_errors.ErrMissingAnnotations {
-		return &SourceRange{CIDR: defBackend.WhitelistSourceRange}, nil
+		return &SourceRange{CIDR: defaultWhitelistSourceRange}, nil
 	}
 
 	values := strings.Split(val, ",")
 	ipnets, ips, err := net.ParseIPNets(values...)
 	if err != nil && len(ips) == 0 {
-		return &SourceRange{CIDR: defBackend.WhitelistSourceRange}, ing_errors.LocationDenied{
+		return &SourceRange{CIDR: defaultWhitelistSourceRange}, ing_errors.LocationDenied{
 			Reason: fmt.Errorf("the annotation does not contain a valid IP address or network: %w", err),
 		}
 	}

From 6ea466bd21ddf73c5adf5ce22ed450c6fc28b52c Mon Sep 17 00:00:00 2001
From: Mac Chaffee <me@macchaffee.com>
Date: Mon, 23 May 2022 20:05:10 -0400
Subject: [PATCH 0195/1641] Bump chart version to 4.1.2 (#8607)

Signed-off-by: Mac Chaffee <me@macchaffee.com>
---
 charts/ingress-nginx/CHANGELOG.md | 10 ++++++++--
 charts/ingress-nginx/Chart.yaml   | 18 ++++--------------
 charts/ingress-nginx/README.md    |  2 +-
 3 files changed, 13 insertions(+), 17 deletions(-)

diff --git a/charts/ingress-nginx/CHANGELOG.md b/charts/ingress-nginx/CHANGELOG.md
index 8282972d4..201a4f044 100644
--- a/charts/ingress-nginx/CHANGELOG.md
+++ b/charts/ingress-nginx/CHANGELOG.md
@@ -2,6 +2,12 @@
 
 This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
 
+### 4.1.2
+
+- "[8587](https://github.com/kubernetes/ingress-nginx/pull/8587) Add CAP_SYS_CHROOT to DS/PSP when needed"
+- "[8458](https://github.com/kubernetes/ingress-nginx/pull/8458) Add portNamePreffix Helm chart parameter"
+- "[8522](https://github.com/kubernetes/ingress-nginx/pull/8522) Add documentation for controller.service.loadBalancerIP in Helm chart"
+
 ### 4.1.0
 
 - "[8481](https://github.com/kubernetes/ingress-nginx/pull/8481) Fix log creation in chroot script"
@@ -136,11 +142,11 @@ This file documents all notable changes to [ingress-nginx](https://github.com/ku
 
 - [7707] https://github.com/kubernetes/ingress-nginx/pull/7707 Release v1.0.2 of ingress-nginx
 
-### 4.0.2 
+### 4.0.2
 
 - [7681] https://github.com/kubernetes/ingress-nginx/pull/7681 Release v1.0.1 of ingress-nginx
 
-### 4.0.1 
+### 4.0.1
 
 - [7535] https://github.com/kubernetes/ingress-nginx/pull/7535 Release v1.0.0 ingress-nginx
 
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 10a5fbc30..ec90082b4 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.1.1
+version: 4.1.2
 appVersion: 1.2.0
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
@@ -26,16 +26,6 @@ annotations:
   # List of changes for the release in artifacthub.io
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
-    - "[8481](https://github.com/kubernetes/ingress-nginx/pull/8481) Fix log creation in chroot script"
-    - "[8479](https://github.com/kubernetes/ingress-nginx/pull/8479) changed nginx base img tag to img built with alpine3.14.6"
-    - "[8478](https://github.com/kubernetes/ingress-nginx/pull/8478) update base images and protobuf gomod"
-    - "[8468](https://github.com/kubernetes/ingress-nginx/pull/8468) Fallback to ngx.var.scheme for redirectScheme with use-forward-headers when X-Forwarded-Proto is empty"
-    - "[8456](https://github.com/kubernetes/ingress-nginx/pull/8456) Implement object deep inspector"
-    - "[8455](https://github.com/kubernetes/ingress-nginx/pull/8455) Update dependencies"
-    - "[8454](https://github.com/kubernetes/ingress-nginx/pull/8454) Update index.md"
-    - "[8447](https://github.com/kubernetes/ingress-nginx/pull/8447) typo fixing"
-    - "[8446](https://github.com/kubernetes/ingress-nginx/pull/8446) Fix suggested annotation-value-word-blocklist"
-    - "[8444](https://github.com/kubernetes/ingress-nginx/pull/8444) replace deprecated topology key in example with current one"
-    - "[8443](https://github.com/kubernetes/ingress-nginx/pull/8443) Add dependency review enforcement"
-    - "[8434](https://github.com/kubernetes/ingress-nginx/pull/8434) added new auth-tls-match-cn annotation"
-    - "[8426](https://github.com/kubernetes/ingress-nginx/pull/8426) Bump github.com/prometheus/common from 0.32.1 to 0.33.0"
+    - "[8587](https://github.com/kubernetes/ingress-nginx/pull/8587) Add CAP_SYS_CHROOT to DS/PSP when needed"
+    - "[8458](https://github.com/kubernetes/ingress-nginx/pull/8458) Add portNamePreffix Helm chart parameter"
+    - "[8522](https://github.com/kubernetes/ingress-nginx/pull/8522) Add documentation for controller.service.loadBalancerIP in Helm chart"
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 7b0b8f819..c3a814a3e 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.1.1](https://img.shields.io/badge/Version-4.1.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.0](https://img.shields.io/badge/AppVersion-1.2.0-informational?style=flat-square)
+![Version: 4.1.2](https://img.shields.io/badge/Version-4.1.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.0](https://img.shields.io/badge/AppVersion-1.2.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 

From cd6f88af3f976a180ed966dadf273473ae768dfa Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Tue, 24 May 2022 04:13:10 +0100
Subject: [PATCH 0196/1641] Add patch to remove root and alias directives
 (#8624)

---
 .../rootfs/patches/drop-alias-root.patch      | 144 ++++++++++++++++++
 1 file changed, 144 insertions(+)
 create mode 100644 images/nginx/rootfs/patches/drop-alias-root.patch

diff --git a/images/nginx/rootfs/patches/drop-alias-root.patch b/images/nginx/rootfs/patches/drop-alias-root.patch
new file mode 100644
index 000000000..a92e08bd0
--- /dev/null
+++ b/images/nginx/rootfs/patches/drop-alias-root.patch
@@ -0,0 +1,144 @@
+:100644 100644 c7463dcd 00000000 M	src/http/ngx_http_core_module.c
+diff --git a/src/http/ngx_http_core_module.c b/src/http/ngx_http_core_module.c
+index c7463dcd..e2e45931 100644
+--- a/src/http/ngx_http_core_module.c
++++ b/src/http/ngx_http_core_module.c
+@@ -55,7 +55,6 @@ static char *ngx_http_core_listen(ngx_conf_t *cf, ngx_command_t *cmd,
+     void *conf);
+ static char *ngx_http_core_server_name(ngx_conf_t *cf, ngx_command_t *cmd,
+     void *conf);
+-static char *ngx_http_core_root(ngx_conf_t *cf, ngx_command_t *cmd, void *conf);
+ static char *ngx_http_core_limit_except(ngx_conf_t *cf, ngx_command_t *cmd,
+     void *conf);
+ static char *ngx_http_core_set_aio(ngx_conf_t *cf, ngx_command_t *cmd,
+@@ -323,21 +322,6 @@ static ngx_command_t  ngx_http_core_commands[] = {
+       offsetof(ngx_http_core_loc_conf_t, default_type),
+       NULL },
+ 
+-    { ngx_string("root"),
+-      NGX_HTTP_MAIN_CONF|NGX_HTTP_SRV_CONF|NGX_HTTP_LOC_CONF|NGX_HTTP_LIF_CONF
+-                        |NGX_CONF_TAKE1,
+-      ngx_http_core_root,
+-      NGX_HTTP_LOC_CONF_OFFSET,
+-      0,
+-      NULL },
+-
+-    { ngx_string("alias"),
+-      NGX_HTTP_LOC_CONF|NGX_CONF_TAKE1,
+-      ngx_http_core_root,
+-      NGX_HTTP_LOC_CONF_OFFSET,
+-      0,
+-      NULL },
+-
+     { ngx_string("limit_except"),
+       NGX_HTTP_LOC_CONF|NGX_CONF_BLOCK|NGX_CONF_1MORE,
+       ngx_http_core_limit_except,
+@@ -4312,108 +4296,6 @@ ngx_http_core_server_name(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
+ }
+ 
+ 
+-static char *
+-ngx_http_core_root(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
+-{
+-    ngx_http_core_loc_conf_t *clcf = conf;
+-
+-    ngx_str_t                  *value;
+-    ngx_int_t                   alias;
+-    ngx_uint_t                  n;
+-    ngx_http_script_compile_t   sc;
+-
+-    alias = (cmd->name.len == sizeof("alias") - 1) ? 1 : 0;
+-
+-    if (clcf->root.data) {
+-
+-        if ((clcf->alias != 0) == alias) {
+-            return "is duplicate";
+-        }
+-
+-        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
+-                           "\"%V\" directive is duplicate, "
+-                           "\"%s\" directive was specified earlier",
+-                           &cmd->name, clcf->alias ? "alias" : "root");
+-
+-        return NGX_CONF_ERROR;
+-    }
+-
+-    if (clcf->named && alias) {
+-        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
+-                           "the \"alias\" directive cannot be used "
+-                           "inside the named location");
+-
+-        return NGX_CONF_ERROR;
+-    }
+-
+-    value = cf->args->elts;
+-
+-    if (ngx_strstr(value[1].data, "$document_root")
+-        || ngx_strstr(value[1].data, "${document_root}"))
+-    {
+-        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
+-                           "the $document_root variable cannot be used "
+-                           "in the \"%V\" directive",
+-                           &cmd->name);
+-
+-        return NGX_CONF_ERROR;
+-    }
+-
+-    if (ngx_strstr(value[1].data, "$realpath_root")
+-        || ngx_strstr(value[1].data, "${realpath_root}"))
+-    {
+-        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
+-                           "the $realpath_root variable cannot be used "
+-                           "in the \"%V\" directive",
+-                           &cmd->name);
+-
+-        return NGX_CONF_ERROR;
+-    }
+-
+-    clcf->alias = alias ? clcf->name.len : 0;
+-    clcf->root = value[1];
+-
+-    if (!alias && clcf->root.len > 0
+-        && clcf->root.data[clcf->root.len - 1] == '/')
+-    {
+-        clcf->root.len--;
+-    }
+-
+-    if (clcf->root.data[0] != '$') {
+-        if (ngx_conf_full_name(cf->cycle, &clcf->root, 0) != NGX_OK) {
+-            return NGX_CONF_ERROR;
+-        }
+-    }
+-
+-    n = ngx_http_script_variables_count(&clcf->root);
+-
+-    ngx_memzero(&sc, sizeof(ngx_http_script_compile_t));
+-    sc.variables = n;
+-
+-#if (NGX_PCRE)
+-    if (alias && clcf->regex) {
+-        clcf->alias = NGX_MAX_SIZE_T_VALUE;
+-        n = 1;
+-    }
+-#endif
+-
+-    if (n) {
+-        sc.cf = cf;
+-        sc.source = &clcf->root;
+-        sc.lengths = &clcf->root_lengths;
+-        sc.values = &clcf->root_values;
+-        sc.complete_lengths = 1;
+-        sc.complete_values = 1;
+-
+-        if (ngx_http_script_compile(&sc) != NGX_OK) {
+-            return NGX_CONF_ERROR;
+-        }
+-    }
+-
+-    return NGX_CONF_OK;
+-}
+-
+-
+ static ngx_http_method_name_t  ngx_methods_names[] = {
+     { (u_char *) "GET",       (uint32_t) ~NGX_HTTP_GET },
+     { (u_char *) "HEAD",      (uint32_t) ~NGX_HTTP_HEAD },

From ac60ed85ab70bfeb09b43d853741dd34d910d22a Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Tue, 24 May 2022 14:10:06 +0100
Subject: [PATCH 0197/1641] Bump nginx image to version without core directives
 (#8625)

---
 Makefile                         | 2 +-
 images/echo/Makefile             | 2 +-
 images/nginx/README.md           | 2 +-
 images/nginx/rc.yaml             | 2 +-
 images/test-runner/Makefile      | 2 +-
 test/e2e/framework/deployment.go | 2 +-
 6 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/Makefile b/Makefile
index 935035e27..e8d0761aa 100644
--- a/Makefile
+++ b/Makefile
@@ -55,7 +55,7 @@ endif
 
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
-BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:81c2afd975a6f9a9847184472286044d7d5296f6@sha256:a71ac64dd8cfd68341ba47dbdc4d8c2cb91325fce669875193ea0319118201b5
+BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
 
 GOARCH=$(ARCH)
 
diff --git a/images/echo/Makefile b/images/echo/Makefile
index e4f3d7861..3b3c40471 100644
--- a/images/echo/Makefile
+++ b/images/echo/Makefile
@@ -36,7 +36,7 @@ build: ensure-buildx
 		--platform=${PLATFORMS} $(OUTPUT) \
 		--progress=$(PROGRESS) \
 		--pull \
-		--build-arg BASE_IMAGE=k8s.gcr.io/ingress-nginx/nginx:81c2afd975a6f9a9847184472286044d7d5296f6@sha256:a71ac64dd8cfd68341ba47dbdc4d8c2cb91325fce669875193ea0319118201b5 \
+		--build-arg BASE_IMAGE=k8s.gcr.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41 \
 		--build-arg LUAROCKS_VERSION=3.8.0 \
 		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
 		-t $(IMAGE):$(TAG) rootfs
diff --git a/images/nginx/README.md b/images/nginx/README.md
index 58323cdd0..50ad00134 100644
--- a/images/nginx/README.md
+++ b/images/nginx/README.md
@@ -20,6 +20,6 @@ This image provides a default configuration file with no backend servers.
 _Using docker_
 
 ```console
-docker run -v /some/nginx.conf:/etc/nginx/nginx.conf:ro k8s.gcr.io/ingress-nginx/nginx:81c2afd975a6f9a9847184472286044d7d5296f6@sha256:a71ac64dd8cfd68341ba47dbdc4d8c2cb91325fce669875193ea0319118201b5
+docker run -v /some/nginx.conf:/etc/nginx/nginx.conf:ro k8s.gcr.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
 ```
 
diff --git a/images/nginx/rc.yaml b/images/nginx/rc.yaml
index 43dbff1a6..532e22505 100644
--- a/images/nginx/rc.yaml
+++ b/images/nginx/rc.yaml
@@ -38,7 +38,7 @@ spec:
     spec:
       containers:
         - name: nginx
-          image: k8s.gcr.io/ingress-nginx/nginx:81c2afd975a6f9a9847184472286044d7d5296f6@sha256:a71ac64dd8cfd68341ba47dbdc4d8c2cb91325fce669875193ea0319118201b5
+          image: k8s.gcr.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
           ports:
             - containerPort: 80
             - containerPort: 443
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 8ebffc5bb..b636a0b9c 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -23,7 +23,7 @@ REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-runner
 
-NGINX_BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:81c2afd975a6f9a9847184472286044d7d5296f6@sha256:a71ac64dd8cfd68341ba47dbdc4d8c2cb91325fce669875193ea0319118201b5
+NGINX_BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
 
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 4338252ff..ae30f2cc1 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -38,7 +38,7 @@ const SlowEchoService = "slow-echo"
 const HTTPBinService = "httpbin"
 
 // NginxBaseImage use for testing
-const NginxBaseImage = "k8s.gcr.io/ingress-nginx/nginx:81c2afd975a6f9a9847184472286044d7d5296f6@sha256:a71ac64dd8cfd68341ba47dbdc4d8c2cb91325fce669875193ea0319118201b5"
+const NginxBaseImage = "k8s.gcr.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41"
 
 type deploymentOptions struct {
 	namespace string

From 8963ed17ee36f398505c0c6ac18cabdd8c279d75 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Tue, 24 May 2022 17:58:47 +0100
Subject: [PATCH 0198/1641] Change image build to go install (#8630)

---
 images/test-runner/rootfs/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index e58cf47ad..f18ac148c 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -49,7 +49,7 @@ ENV PATH $GOPATH/bin:/usr/local/go/bin:$PATH
 
 RUN mkdir -p "$GOPATH/src" "$GOPATH/bin" && chmod -R 777 "$GOPATH"
 
-RUN go get github.com/onsi/ginkgo/ginkgo golang.org/x/lint/golint
+RUN go install github.com/onsi/ginkgo/ginkgo@v1.16.5  && go install golang.org/x/lint/golint@latest
 
 ARG RESTY_CLI_VERSION
 ARG RESTY_CLI_SHA

From ac3bbaf068d099e438444fbfa1b3bd1c31a6a183 Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Tue, 24 May 2022 19:15:26 +0200
Subject: [PATCH 0199/1641] update LD_LIBRARY_PATH for OpenTelemetry use
 (#8628)

---
 images/nginx/rootfs/Dockerfile | 1 +
 1 file changed, 1 insertion(+)

diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 75c63cff1..2d1d12178 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -24,6 +24,7 @@ RUN apk update \
 FROM alpine:3.14.6
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
+ENV LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/modules_mount/etc/nginx/modules
 
 ENV LUA_PATH="/usr/local/share/luajit-2.1.0-beta3/?.lua;/usr/local/share/lua/5.1/?.lua;/usr/local/lib/lua/?.lua;;"
 ENV LUA_CPATH="/usr/local/lib/lua/?/?.so;/usr/local/lib/lua/?.so;;"

From d20a8268b5958c36e1e02502947088359a227a95 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Tue, 24 May 2022 20:21:24 +0100
Subject: [PATCH 0200/1641] Bump testrunner image (#8631)

---
 build/run-in-docker.sh    | 2 +-
 test/e2e-image/Dockerfile | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 4adb7b3e1..355f490db 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -37,7 +37,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220331-controller-v1.1.2-31-gf1cb2b73c@sha256:baa326f5c726d65be828852943a259c1f0572883590b9081b7e8fa982d64d96e}
+E2E_IMAGE=${E2E_IMAGE:-k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220524-g8963ed17e@sha256:4fbcbeebd4c24587699b027ad0f0aa7cd9d76b58177a3b50c228bae8141bcf95}
 
 DOCKER_OPTS=${DOCKER_OPTS:-}
 DOCKER_IN_DOCKER_ENABLED=${DOCKER_IN_DOCKER_ENABLED:-}
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 15f8392a7..d126a6a95 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,4 +1,4 @@
-FROM k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220416-controller-v1.2.0-beta.0-4-g2e1a4790b@sha256:4468eb8cc9aa0ec3971ddf3811efe363e6f8e9082e95b567a5c27d91f89fb1e3   AS BASE
+FROM k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220524-g8963ed17e@sha256:4fbcbeebd4c24587699b027ad0f0aa7cd9d76b58177a3b50c228bae8141bcf95 AS BASE
 
 FROM alpine:3.14.6
 

From b98133db5c036a017f709e6224bb56aae9025072 Mon Sep 17 00:00:00 2001
From: Roman Baumer <rba@users.noreply.github.com>
Date: Tue, 24 May 2022 23:45:23 +0200
Subject: [PATCH 0201/1641] move creation of dev devices in /chroot/dev from
 build image to run image, means from chroot.sh to Docherfile.chroot as the
 docker COPY command seems to make ordinary files from /dev/* (#8619)

---
 rootfs/Dockerfile.chroot | 9 ++++++++-
 rootfs/chroot.sh         | 7 -------
 2 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/rootfs/Dockerfile.chroot b/rootfs/Dockerfile.chroot
index 7055f06fc..5ea3ce835 100644
--- a/rootfs/Dockerfile.chroot
+++ b/rootfs/Dockerfile.chroot
@@ -100,7 +100,14 @@ RUN  ln -sf /chroot/etc/nginx /etc/nginx \
   && touch /chroot/var/log/nginx/access.log \
   && chown www-data:www-data /chroot/var/log/nginx/access.log \
   && echo "" > /chroot/etc/resolv.conf \
-  && chown -R www-data.www-data /chroot/var/log/nginx /chroot/etc/resolv.conf
+  && chown -R www-data.www-data /chroot/var/log/nginx /chroot/etc/resolv.conf \
+  && mknod -m 0666 /chroot/dev/null c 1 3 \
+  && mknod -m 0666 /chroot/dev/random c 1 8 \
+  && mknod -m 0666 /chroot/dev/urandom c 1 9 \
+  && mknod -m 0666 /chroot/dev/full c 1 7 \
+  && mknod -m 0666 /chroot/dev/ptmx c 5 2 \
+  && mknod -m 0666 /chroot/dev/zero c 1 5 \
+  && mknod -m 0666 /chroot/dev/tty c 5 0
 
 USER www-data
 
diff --git a/rootfs/chroot.sh b/rootfs/chroot.sh
index f0591d062..9f3cbd804 100755
--- a/rootfs/chroot.sh
+++ b/rootfs/chroot.sh
@@ -45,10 +45,3 @@ cp /etc/passwd /etc/group /chroot/etc/
 cp -a /usr/* /chroot/usr/
 cp -a /etc/nginx/* /chroot/etc/nginx/
 cp /lib/ld-musl-* /lib/libcrypto* /lib/libssl* /lib/libz* /chroot/lib/
-mknod -m 0666 /chroot/dev/null c 1 3
-mknod -m 0666 /chroot/dev/random c 1 8
-mknod -m 0666 /chroot/dev/urandom c 1 9
-mknod -m 0666 /chroot/dev/full c 1 7
-mknod -m 0666 /chroot/dev/ptmx c 5 2
-mknod -m 0666 /chroot/dev/zero c 1 5
-mknod -m 0666 /chroot/dev/tty c 5 0

From 4dfb3f2e9a2d8dcd3fc22b049817f9cf08cb8057 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Thu, 26 May 2022 01:49:22 +0100
Subject: [PATCH 0202/1641] Fix tls1.0 test (#8632)

* Fix tls1.0 test

* fix algorithm
---
 test/e2e/settings/tls.go | 22 ----------------------
 1 file changed, 22 deletions(-)

diff --git a/test/e2e/settings/tls.go b/test/e2e/settings/tls.go
index b3026aa8c..739e44490 100644
--- a/test/e2e/settings/tls.go
+++ b/test/e2e/settings/tls.go
@@ -84,28 +84,6 @@ var _ = framework.DescribeSetting("[SSL] TLS protocols, ciphers and headers)", f
 			assert.Equal(ginkgo.GinkgoT(), int(resp.TLS.Version), tls.VersionTLS12)
 			assert.Equal(ginkgo.GinkgoT(), resp.TLS.CipherSuite, tls.TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384)
 		})
-		ginkgo.It("enforcing TLS v1.0", func() {
-			f.SetNginxConfigMapData(map[string]string{
-				sslCiphers:   testCiphers,
-				sslProtocols: "TLSv1",
-			})
-
-			f.WaitForNginxConfiguration(
-				func(cfg string) bool {
-					return strings.Contains(cfg, "ssl_protocols TLSv1;")
-				})
-
-			resp := f.HTTPTestClientWithTLSConfig(tlsConfig).
-				GET("/").
-				WithURL(f.GetURL(framework.HTTPS)).
-				WithHeader("Host", host).
-				Expect().
-				Status(http.StatusOK).
-				Raw()
-
-			assert.Equal(ginkgo.GinkgoT(), int(resp.TLS.Version), tls.VersionTLS10)
-			assert.Equal(ginkgo.GinkgoT(), resp.TLS.CipherSuite, tls.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA)
-		})
 	})
 
 	ginkgo.Context("should configure HSTS policy header", func() {

From bd1eb048b7e828d62bc92c3ecaeb8288efa91365 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Thu, 26 May 2022 14:23:24 +0100
Subject: [PATCH 0203/1641] Improve path rule (#8623)

* Improve path rule

* Add nginx configuration tests

* Revert framework changes

* Add test to patched directives

* Fix root conf test

* Add comment in new function
---
 internal/ingress/inspector/rules.go      |   4 +-
 internal/ingress/inspector/rules_test.go |   5 +
 test/e2e/e2e.go                          |   1 +
 test/e2e/framework/deployment.go         |  16 ++-
 test/e2e/framework/framework.go          |  71 +++++++++---
 test/e2e/nginx/nginx.go                  | 132 +++++++++++++++++++++++
 6 files changed, 210 insertions(+), 19 deletions(-)
 create mode 100644 test/e2e/nginx/nginx.go

diff --git a/internal/ingress/inspector/rules.go b/internal/ingress/inspector/rules.go
index 9c9ade0f2..ab573b7fe 100644
--- a/internal/ingress/inspector/rules.go
+++ b/internal/ingress/inspector/rules.go
@@ -22,8 +22,8 @@ import (
 )
 
 var (
-	invalidAliasDirective = regexp.MustCompile(`\s*alias\s*.*;`)
-	invalidRootDirective  = regexp.MustCompile(`\s*root\s*.*;`)
+	invalidAliasDirective = regexp.MustCompile(`(?s)\s*alias\s*.*;`)
+	invalidRootDirective  = regexp.MustCompile(`(?s)\s*root\s*.*;`)
 	invalidEtcDir         = regexp.MustCompile(`/etc/(passwd|shadow|group|nginx|ingress-controller)`)
 	invalidSecretsDir     = regexp.MustCompile(`/var/run/secrets`)
 	invalidByLuaDirective = regexp.MustCompile(`.*_by_lua.*`)
diff --git a/internal/ingress/inspector/rules_test.go b/internal/ingress/inspector/rules_test.go
index 3c8f9f47b..6ed6dbe87 100644
--- a/internal/ingress/inspector/rules_test.go
+++ b/internal/ingress/inspector/rules_test.go
@@ -35,6 +35,11 @@ func TestCheckRegex(t *testing.T) {
 			wantErr: true,
 			value:   "   alias    blabla/lala ;",
 		},
+		{
+			name:    "must refuse invalid alias with line break",
+			wantErr: true,
+			value:   "alias #\n/lalala/1/;",
+		},
 		{
 			name:    "must refuse invalid attempt to call /etc",
 			wantErr: true,
diff --git a/test/e2e/e2e.go b/test/e2e/e2e.go
index c0829f5ee..f96d06833 100644
--- a/test/e2e/e2e.go
+++ b/test/e2e/e2e.go
@@ -40,6 +40,7 @@ import (
 	_ "k8s.io/ingress-nginx/test/e2e/leaks"
 	_ "k8s.io/ingress-nginx/test/e2e/loadbalance"
 	_ "k8s.io/ingress-nginx/test/e2e/lua"
+	_ "k8s.io/ingress-nginx/test/e2e/nginx"
 	_ "k8s.io/ingress-nginx/test/e2e/security"
 	_ "k8s.io/ingress-nginx/test/e2e/servicebackend"
 	_ "k8s.io/ingress-nginx/test/e2e/settings"
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index ae30f2cc1..4f34a22ab 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -150,8 +150,9 @@ http {
 	f.NGINXWithConfigDeployment(SlowEchoService, cfg)
 }
 
-// NGINXWithConfigDeployment creates an NGINX deployment using a configmap containing the nginx.conf configuration
-func (f *Framework) NGINXWithConfigDeployment(name string, cfg string) {
+// NGINXDeployment creates a new simple NGINX Deployment using NGINX base image
+// and passing the desired configuration
+func (f *Framework) NGINXDeployment(name string, cfg string, waitendpoint bool) {
 	cfgMap := map[string]string{
 		"nginx.conf": cfg,
 	}
@@ -213,8 +214,15 @@ func (f *Framework) NGINXWithConfigDeployment(name string, cfg string) {
 
 	f.EnsureService(service)
 
-	err = WaitForEndpoints(f.KubeClientSet, DefaultTimeout, name, f.Namespace, 1)
-	assert.Nil(ginkgo.GinkgoT(), err, "waiting for endpoints to become ready")
+	if waitendpoint {
+		err = WaitForEndpoints(f.KubeClientSet, DefaultTimeout, name, f.Namespace, 1)
+		assert.Nil(ginkgo.GinkgoT(), err, "waiting for endpoints to become ready")
+	}
+}
+
+// NGINXWithConfigDeployment creates an NGINX deployment using a configmap containing the nginx.conf configuration
+func (f *Framework) NGINXWithConfigDeployment(name string, cfg string) {
+	f.NGINXDeployment(name, cfg, true)
 }
 
 // NewGRPCBinDeployment creates a new deployment of the
diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index f0463bd0d..cd18a9738 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -88,8 +88,22 @@ func NewDefaultFramework(baseName string) *Framework {
 	return f
 }
 
-// BeforeEach gets a client and makes a namespace.
-func (f *Framework) BeforeEach() {
+// NewSimpleFramework makes a new framework that allows the usage of a namespace
+// for arbitraty tests.
+func NewSimpleFramework(baseName string) *Framework {
+	defer ginkgo.GinkgoRecover()
+
+	f := &Framework{
+		BaseName: baseName,
+	}
+
+	ginkgo.BeforeEach(f.CreateEnvironment)
+	ginkgo.AfterEach(f.DestroyEnvironment)
+
+	return f
+}
+
+func (f *Framework) CreateEnvironment() {
 	var err error
 
 	if f.KubeClientSet == nil {
@@ -107,6 +121,21 @@ func (f *Framework) BeforeEach() {
 
 	f.Namespace, err = CreateKubeNamespace(f.BaseName, f.KubeClientSet)
 	assert.Nil(ginkgo.GinkgoT(), err, "creating namespace")
+}
+
+func (f *Framework) DestroyEnvironment() {
+	go func() {
+		defer ginkgo.GinkgoRecover()
+		err := DeleteKubeNamespace(f.KubeClientSet, f.Namespace)
+		assert.Nil(ginkgo.GinkgoT(), err, "deleting namespace %v", f.Namespace)
+	}()
+}
+
+// BeforeEach gets a client and makes a namespace.
+func (f *Framework) BeforeEach() {
+	var err error
+
+	f.CreateEnvironment()
 
 	f.IngressClass, err = CreateIngressClass(f.Namespace, f.KubeClientSet)
 	assert.Nil(ginkgo.GinkgoT(), err, "creating IngressClass")
@@ -122,13 +151,7 @@ func (f *Framework) BeforeEach() {
 
 // AfterEach deletes the namespace, after reading its events.
 func (f *Framework) AfterEach() {
-	defer func(kubeClient kubernetes.Interface, ns string) {
-		go func() {
-			defer ginkgo.GinkgoRecover()
-			err := DeleteKubeNamespace(kubeClient, ns)
-			assert.Nil(ginkgo.GinkgoT(), err, "deleting namespace %v", f.Namespace)
-		}()
-	}(f.KubeClientSet, f.Namespace)
+	defer f.DestroyEnvironment()
 
 	defer func(kubeClient kubernetes.Interface, ingressclass string) {
 		go func() {
@@ -425,26 +448,35 @@ func (f *Framework) DeleteNGINXPod(grace int64) {
 	assert.Nil(ginkgo.GinkgoT(), err, "while waiting for ingress nginx pod to come up again")
 }
 
+// HTTPDumbTestClient returns a new httpexpect client without BaseURL.
+func (f *Framework) HTTPDumbTestClient() *httpexpect.Expect {
+	return f.newTestClient(nil, false)
+}
+
 // HTTPTestClient returns a new httpexpect client for end-to-end HTTP testing.
 func (f *Framework) HTTPTestClient() *httpexpect.Expect {
-	return f.newTestClient(nil)
+	return f.newTestClient(nil, true)
 }
 
 // HTTPTestClientWithTLSConfig returns a new httpexpect client for end-to-end
 // HTTP testing with a custom TLS configuration.
 func (f *Framework) HTTPTestClientWithTLSConfig(config *tls.Config) *httpexpect.Expect {
-	return f.newTestClient(config)
+	return f.newTestClient(config, true)
 }
 
-func (f *Framework) newTestClient(config *tls.Config) *httpexpect.Expect {
+func (f *Framework) newTestClient(config *tls.Config, setIngressURL bool) *httpexpect.Expect {
 	if config == nil {
 		config = &tls.Config{
 			InsecureSkipVerify: true,
 		}
 	}
+	var baseURL string
+	if setIngressURL {
+		baseURL = f.GetURL(HTTP)
+	}
 
 	return httpexpect.WithConfig(httpexpect.Config{
-		BaseURL: f.GetURL(HTTP),
+		BaseURL: baseURL,
 		Client: &http.Client{
 			Transport: &http.Transport{
 				TLSClientConfig: config,
@@ -485,6 +517,19 @@ func (f *Framework) WaitForNginxListening(port int) {
 	assert.Nil(ginkgo.GinkgoT(), err, "waiting for ingress controller pod listening on port 80")
 }
 
+// WaitForPod waits for a specific Pod to be ready, using a label selector
+func (f *Framework) WaitForPod(selector string, timeout time.Duration, shouldFail bool) {
+	err := waitForPodsReady(f.KubeClientSet, timeout, 1, f.Namespace, metav1.ListOptions{
+		LabelSelector: selector,
+	})
+
+	if shouldFail {
+		assert.NotNil(ginkgo.GinkgoT(), err, "waiting for pods to be ready")
+	} else {
+		assert.Nil(ginkgo.GinkgoT(), err, "waiting for pods to be ready")
+	}
+}
+
 // UpdateDeployment runs the given updateFunc on the deployment and waits for it to be updated
 func UpdateDeployment(kubeClientSet kubernetes.Interface, namespace string, name string, replicas int, updateFunc func(d *appsv1.Deployment) error) error {
 	deployment, err := kubeClientSet.AppsV1().Deployments(namespace).Get(context.TODO(), name, metav1.GetOptions{})
diff --git a/test/e2e/nginx/nginx.go b/test/e2e/nginx/nginx.go
new file mode 100644
index 000000000..74a6d64be
--- /dev/null
+++ b/test/e2e/nginx/nginx.go
@@ -0,0 +1,132 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package nginx
+
+import (
+	"fmt"
+	"net/http"
+	"time"
+
+	"github.com/onsi/ginkgo"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var (
+	cfgOK = `#
+	events {
+		worker_connections  1024;
+		multi_accept on;
+	}
+	
+	http {
+		default_type 'text/plain';
+		client_max_body_size 0;
+	
+		server {
+			access_log on;
+			access_log /dev/stdout;
+	
+			listen 80;
+	
+			location / {
+				content_by_lua_block {
+					ngx.print("ok")
+				}
+			}
+		}
+	}
+	`
+
+	cfgAlias = `#
+	events {
+		worker_connections  1024;
+		multi_accept on;
+	}
+	
+	http {
+		default_type 'text/plain';
+		client_max_body_size 0;
+	
+		server {
+			access_log on;
+			access_log /dev/stdout;
+	
+			listen 80;
+	
+			location / {
+				alias /www/html;
+			}
+		}
+	}
+	`
+
+	cfgRoot = `#
+	events {
+		worker_connections  1024;
+		multi_accept on;
+	}
+	
+	http {
+		default_type 'text/plain';
+		client_max_body_size 0;
+		root /srv/www;
+		server {
+			access_log on;
+			access_log /dev/stdout;
+	
+			listen 80;
+	
+		}
+	}
+	`
+)
+
+var _ = framework.DescribeSetting("nginx-configuration", func() {
+	f := framework.NewSimpleFramework("nginxconfiguration")
+
+	ginkgo.It("start nginx with default configuration", func() {
+
+		f.NGINXWithConfigDeployment("default-nginx", cfgOK)
+		f.WaitForPod("app=default-nginx", 60*time.Second, false)
+		framework.Sleep(5 * time.Second)
+
+		f.HTTPDumbTestClient().
+			GET("/").
+			WithURL(fmt.Sprintf("http://default-nginx.%s", f.Namespace)).
+			Expect().
+			Status(http.StatusOK).Body().Contains("ok")
+	})
+
+	ginkgo.It("fails when using alias directive", func() {
+
+		f.NGINXDeployment("alias-nginx", cfgAlias, false)
+		// This should fail with a crashloopback because our NGINX does not have
+		// alias directive!
+		f.WaitForPod("app=alias-nginx", 60*time.Second, true)
+
+	})
+
+	ginkgo.It("fails when using root directive", func() {
+
+		f.NGINXDeployment("root-nginx", cfgRoot, false)
+		// This should fail with a crashloopback because our NGINX does not have
+		// root directive!
+		f.WaitForPod("app=root-nginx", 60*time.Second, true)
+
+	})
+})

From 227a1eb4d315489d49adaacab19da9ad8f12818a Mon Sep 17 00:00:00 2001
From: Patrick O'Brien <poblahblahblah@users.noreply.github.com>
Date: Thu, 26 May 2022 23:33:56 +0000
Subject: [PATCH 0204/1641] Fix small typo in GRPC README (#8639)

---
 docs/examples/grpc/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/examples/grpc/README.md b/docs/examples/grpc/README.md
index 2d1929b66..cf4597fcd 100644
--- a/docs/examples/grpc/README.md
+++ b/docs/examples/grpc/README.md
@@ -86,7 +86,7 @@ This example demonstrates how to route traffic to a gRPC service through the Ing
 
 ### Step 3: Create the Kubernetes `Ingress` resource for the gRPC app
 
-- Use the following example manifest of a ingress resource to create a ingress for your grpc app. If required, edit it to match your app's details like name, namespace, service, secret etc. Make sure you have the required SSL-Certificate, existing in your Kubernetes cluster in the same namespace where the gRPC app is. The certificate must be available as a kubernetes secret resource, of type "kubernete.io/tls" https://kubernetes.io/docs/concepts/configuration/secret/#tls-secrets. This is because we are terminating TLS on the ingress.
+- Use the following example manifest of a ingress resource to create a ingress for your grpc app. If required, edit it to match your app's details like name, namespace, service, secret etc. Make sure you have the required SSL-Certificate, existing in your Kubernetes cluster in the same namespace where the gRPC app is. The certificate must be available as a kubernetes secret resource, of type "kubernetes.io/tls" https://kubernetes.io/docs/concepts/configuration/secret/#tls-secrets. This is because we are terminating TLS on the ingress.
 
   ```
   cat <<EOF | kubectl apply -f -

From 34106550658adf6013e03e41ffa0d8e3a260b5e7 Mon Sep 17 00:00:00 2001
From: Sara Saei <77292120+ssaei@users.noreply.github.com>
Date: Mon, 30 May 2022 00:14:51 +0430
Subject: [PATCH 0205/1641] update nginx otel LD_LIBRARY_PATH (#8641)

---
 images/nginx/rootfs/Dockerfile | 1 -
 rootfs/Dockerfile              | 2 ++
 rootfs/Dockerfile.chroot       | 1 +
 3 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 2d1d12178..75c63cff1 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -24,7 +24,6 @@ RUN apk update \
 FROM alpine:3.14.6
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
-ENV LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/modules_mount/etc/nginx/modules
 
 ENV LUA_PATH="/usr/local/share/luajit-2.1.0-beta3/?.lua;/usr/local/share/lua/5.1/?.lua;/usr/local/lib/lua/?.lua;;"
 ENV LUA_CPATH="/usr/local/lib/lua/?/?.so;/usr/local/lib/lua/?.so;;"
diff --git a/rootfs/Dockerfile b/rootfs/Dockerfile
index 1eab94c58..0bf9a0304 100644
--- a/rootfs/Dockerfile
+++ b/rootfs/Dockerfile
@@ -31,6 +31,8 @@ LABEL org.opencontainers.image.revision="${COMMIT_SHA}"
 
 LABEL build_id="${BUILD_ID}"
 
+ENV LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/modules_mount/etc/nginx/modules/modules
+
 WORKDIR  /etc/nginx
 
 RUN apk update \
diff --git a/rootfs/Dockerfile.chroot b/rootfs/Dockerfile.chroot
index 5ea3ce835..04adccf8a 100644
--- a/rootfs/Dockerfile.chroot
+++ b/rootfs/Dockerfile.chroot
@@ -44,6 +44,7 @@ LABEL build_id="${BUILD_ID}"
 ENV LUA_PATH="/usr/local/share/luajit-2.1.0-beta3/?.lua;/usr/local/share/lua/5.1/?.lua;/usr/local/lib/lua/?.lua;;"
 ENV LUA_CPATH="/usr/local/lib/lua/?/?.so;/usr/local/lib/lua/?.so;;"
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
+ENV LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/modules_mount/etc/nginx/modules/modules
 
 RUN apk update \
   && apk upgrade \

From 08848d69e0c83992c89da18e70ea708752f21d7a Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 29 May 2022 22:00:51 +0100
Subject: [PATCH 0206/1641] Start release of v1.2.1 (#8645)

---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 79127d85a..6a5e98a74 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.2.0
+v1.2.1

From c32f9a43279425920c41ba2e54dfcb1a54c0daf7 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Tue, 31 May 2022 21:26:53 +0800
Subject: [PATCH 0207/1641] chore: release v1.2.1 (#8646)

* chore: release v1.2.1

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* chore: generate static yaml

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 Changelog.md                                  |  21 +
 charts/ingress-nginx/Chart.yaml               |  15 +-
 charts/ingress-nginx/README.md                |   8 +-
 charts/ingress-nginx/values.yaml              |   6 +-
 deploy/static/provider/aws/1.19/deploy.yaml   |  42 +-
 deploy/static/provider/aws/1.20/deploy.yaml   |  42 +-
 deploy/static/provider/aws/1.21/deploy.yaml   |  42 +-
 deploy/static/provider/aws/1.22/deploy.yaml   |  42 +-
 deploy/static/provider/aws/1.23/deploy.yaml   |  42 +-
 deploy/static/provider/aws/deploy.yaml        | 663 ++++++++++++++++-
 .../nlb-with-tls-termination/1.19/deploy.yaml |  42 +-
 .../nlb-with-tls-termination/1.20/deploy.yaml |  42 +-
 .../nlb-with-tls-termination/1.21/deploy.yaml |  42 +-
 .../nlb-with-tls-termination/1.22/deploy.yaml |  42 +-
 .../nlb-with-tls-termination/1.23/deploy.yaml |  42 +-
 .../aws/nlb-with-tls-termination/deploy.yaml  | 675 +++++++++++++++++-
 .../provider/baremetal/1.19/deploy.yaml       |  42 +-
 .../provider/baremetal/1.20/deploy.yaml       |  42 +-
 .../provider/baremetal/1.21/deploy.yaml       |  42 +-
 .../provider/baremetal/1.22/deploy.yaml       |  42 +-
 .../provider/baremetal/1.23/deploy.yaml       |  42 +-
 deploy/static/provider/baremetal/deploy.yaml  | 657 ++++++++++++++++-
 deploy/static/provider/cloud/1.19/deploy.yaml |  42 +-
 deploy/static/provider/cloud/1.20/deploy.yaml |  42 +-
 deploy/static/provider/cloud/1.21/deploy.yaml |  42 +-
 deploy/static/provider/cloud/1.22/deploy.yaml |  42 +-
 deploy/static/provider/cloud/1.23/deploy.yaml |  42 +-
 deploy/static/provider/cloud/deploy.yaml      | 659 ++++++++++++++++-
 deploy/static/provider/do/1.19/deploy.yaml    |  42 +-
 deploy/static/provider/do/1.20/deploy.yaml    |  42 +-
 deploy/static/provider/do/1.21/deploy.yaml    |  42 +-
 deploy/static/provider/do/1.22/deploy.yaml    |  42 +-
 deploy/static/provider/do/1.23/deploy.yaml    |  42 +-
 deploy/static/provider/do/deploy.yaml         | 663 ++++++++++++++++-
 .../static/provider/exoscale/1.19/deploy.yaml |  42 +-
 .../static/provider/exoscale/1.20/deploy.yaml |  42 +-
 .../static/provider/exoscale/1.21/deploy.yaml |  42 +-
 .../static/provider/exoscale/1.22/deploy.yaml |  42 +-
 .../static/provider/exoscale/1.23/deploy.yaml |  42 +-
 deploy/static/provider/exoscale/deploy.yaml   | 669 ++++++++++++++++-
 deploy/static/provider/kind/1.19/deploy.yaml  |  42 +-
 deploy/static/provider/kind/1.20/deploy.yaml  |  42 +-
 deploy/static/provider/kind/1.21/deploy.yaml  |  42 +-
 deploy/static/provider/kind/1.22/deploy.yaml  |  42 +-
 deploy/static/provider/kind/1.23/deploy.yaml  |  42 +-
 deploy/static/provider/kind/deploy.yaml       | 673 ++++++++++++++++-
 deploy/static/provider/scw/1.19/deploy.yaml   |  42 +-
 deploy/static/provider/scw/1.20/deploy.yaml   |  42 +-
 deploy/static/provider/scw/1.21/deploy.yaml   |  42 +-
 deploy/static/provider/scw/1.22/deploy.yaml   |  42 +-
 deploy/static/provider/scw/1.23/deploy.yaml   |  42 +-
 deploy/static/provider/scw/deploy.yaml        | 662 ++++++++++++++++-
 52 files changed, 6031 insertions(+), 1020 deletions(-)

diff --git a/Changelog.md b/Changelog.md
index b1c94f12f..494a0226b 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -1,5 +1,26 @@
 # Changelog
 
+### 1.2.1
+
+Image:
+- k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+- k8s.gcr.io/ingress-nginx/controller-chroot:v1.2.1@sha256:d301551cf62bc3fb75c69fa56f7aa1d9e87b5079333adaf38afe84d9b7439355
+
+This release removes the root and alias directives in NGINX, this can avoid some potential security attacks.
+
+_Changes:_
+
+- [8459](https://github.com/kubernetes/ingress-nginx/pull/8459) Update default allowed CORS headers
+- [8202](https://github.com/kubernetes/ingress-nginx/pull/8202) disable modsecurity on error page
+- [8178](https://github.com/kubernetes/ingress-nginx/pull/8178) Add header Host into mirror annotations
+- [8458](https://github.com/kubernetes/ingress-nginx/pull/8458) Add portNamePreffix Helm chart parameter
+- [8587](https://github.com/kubernetes/ingress-nginx/pull/8587) Add CAP_SYS_CHROOT to DS/PSP when needed
+- [8213](https://github.com/kubernetes/ingress-nginx/pull/8213) feat: always set auth cookie
+- [8548](https://github.com/kubernetes/ingress-nginx/pull/8548) Implement reporting status classes in metrics
+- [8612](https://github.com/kubernetes/ingress-nginx/pull/8612) move so files under /etc/nginx/modules
+- [8624](https://github.com/kubernetes/ingress-nginx/pull/8624) Add patch to remove root and alias directives
+- [8623](https://github.com/kubernetes/ingress-nginx/pull/8623) Improve path rule
+
 ### 1.2.0
 
 Image: 
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index ec90082b4..695d1f395 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,8 +2,8 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.1.2
-appVersion: 1.2.0
+version: 4.1.3
+appVersion: 1.2.1
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
@@ -26,6 +26,11 @@ annotations:
   # List of changes for the release in artifacthub.io
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
-    - "[8587](https://github.com/kubernetes/ingress-nginx/pull/8587) Add CAP_SYS_CHROOT to DS/PSP when needed"
-    - "[8458](https://github.com/kubernetes/ingress-nginx/pull/8458) Add portNamePreffix Helm chart parameter"
-    - "[8522](https://github.com/kubernetes/ingress-nginx/pull/8522) Add documentation for controller.service.loadBalancerIP in Helm chart"
+    - "[8459](https://github.com/kubernetes/ingress-nginx/pull/8459) Update default allowed CORS headers"
+    - "[8202](https://github.com/kubernetes/ingress-nginx/pull/8202) disable modsecurity on error page"
+    - "[8178](https://github.com/kubernetes/ingress-nginx/pull/8178) Add header Host into mirror annotations"
+    - "[8213](https://github.com/kubernetes/ingress-nginx/pull/8213) feat: always set auth cookie"
+    - "[8548](https://github.com/kubernetes/ingress-nginx/pull/8548) Implement reporting status classes in metrics"
+    - "[8612](https://github.com/kubernetes/ingress-nginx/pull/8612) move so files under /etc/nginx/modules"
+    - "[8624](https://github.com/kubernetes/ingress-nginx/pull/8624) Add patch to remove root and alias directives"
+    - "[8623](https://github.com/kubernetes/ingress-nginx/pull/8623) Improve path rule"
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index c3a814a3e..5d45c095f 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.1.2](https://img.shields.io/badge/Version-4.1.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.0](https://img.shields.io/badge/AppVersion-1.2.0-informational?style=flat-square)
+![Version: 4.1.3](https://img.shields.io/badge/Version-4.1.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.1](https://img.shields.io/badge/AppVersion-1.2.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -307,13 +307,13 @@ Kubernetes: `>=1.19.0-0`
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185"` |  |
-| controller.image.digestChroot | string | `"sha256:fb17f1700b77d4fcc52ca6f83ffc2821861ae887dbb87149cf5cbc52bea425e5"` |  |
+| controller.image.digest | string | `"sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8"` |  |
+| controller.image.digestChroot | string | `"sha256:d301551cf62bc3fb75c69fa56f7aa1d9e87b5079333adaf38afe84d9b7439355"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"k8s.gcr.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.2.0"` |  |
+| controller.image.tag | string | `"v1.2.1"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index f52f71d8e..d204b2583 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -23,9 +23,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.2.0"
-    digest: sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
-    digestChroot: sha256:fb17f1700b77d4fcc52ca6f83ffc2821861ae887dbb87149cf5cbc52bea425e5
+    tag: "v1.2.1"
+    digest: sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+    digestChroot: sha256:d301551cf62bc3fb75c69fa56f7aa1d9e87b5079333adaf38afe84d9b7439355
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
diff --git a/deploy/static/provider/aws/1.19/deploy.yaml b/deploy/static/provider/aws/1.19/deploy.yaml
index 2418f570a..fb7624911 100644
--- a/deploy/static/provider/aws/1.19/deploy.yaml
+++ b/deploy/static/provider/aws/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +321,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -371,7 +371,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -483,7 +483,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -494,7 +494,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -579,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -592,7 +592,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.20/deploy.yaml b/deploy/static/provider/aws/1.20/deploy.yaml
index ec3da5e2a..b743df75c 100644
--- a/deploy/static/provider/aws/1.20/deploy.yaml
+++ b/deploy/static/provider/aws/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +321,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -351,7 +351,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -374,7 +374,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -414,7 +414,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -486,7 +486,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -497,7 +497,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -533,7 +533,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -544,7 +544,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -582,7 +582,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -595,7 +595,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.21/deploy.yaml b/deploy/static/provider/aws/1.21/deploy.yaml
index d60a4231d..bc8e5d1b7 100644
--- a/deploy/static/provider/aws/1.21/deploy.yaml
+++ b/deploy/static/provider/aws/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +321,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -354,7 +354,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -489,7 +489,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -500,7 +500,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -536,7 +536,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -547,7 +547,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -585,7 +585,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -598,7 +598,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.22/deploy.yaml b/deploy/static/provider/aws/1.22/deploy.yaml
index d60a4231d..bc8e5d1b7 100644
--- a/deploy/static/provider/aws/1.22/deploy.yaml
+++ b/deploy/static/provider/aws/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +321,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -354,7 +354,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -489,7 +489,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -500,7 +500,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -536,7 +536,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -547,7 +547,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -585,7 +585,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -598,7 +598,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.23/deploy.yaml b/deploy/static/provider/aws/1.23/deploy.yaml
index d60a4231d..bc8e5d1b7 100644
--- a/deploy/static/provider/aws/1.23/deploy.yaml
+++ b/deploy/static/provider/aws/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +321,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -354,7 +354,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -489,7 +489,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -500,7 +500,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -536,7 +536,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -547,7 +547,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -585,7 +585,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -598,7 +598,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index ec3da5e2a..e04e7831f 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -1,621 +1,1242 @@
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Namespace
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resourceNames:
+#GENERATED FOR K8S 1.20
   - ingress-controller-leader
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 data:
+#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
+#GENERATED FOR K8S 1.20
 kind: ConfigMap
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   annotations:
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-type: nlb
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   externalTrafficPolicy: Local
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: http
+#GENERATED FOR K8S 1.20
     name: http
+#GENERATED FOR K8S 1.20
     port: 80
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: http
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: https
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: LoadBalancer
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https-webhook
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     targetPort: webhook
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: ClusterIP
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
+#GENERATED FOR K8S 1.20
 kind: Deployment
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   minReadySeconds: 0
+#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     matchLabels:
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
+#GENERATED FOR K8S 1.20
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
+#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
+#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
+#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
+#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAME
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
+#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+#GENERATED FOR K8S 1.20
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         lifecycle:
+#GENERATED FOR K8S 1.20
           preStop:
+#GENERATED FOR K8S 1.20
             exec:
+#GENERATED FOR K8S 1.20
               command:
+#GENERATED FOR K8S 1.20
               - /wait-shutdown
+#GENERATED FOR K8S 1.20
         livenessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 5
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         name: controller
+#GENERATED FOR K8S 1.20
         ports:
+#GENERATED FOR K8S 1.20
         - containerPort: 80
+#GENERATED FOR K8S 1.20
           name: http
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 443
+#GENERATED FOR K8S 1.20
           name: https
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 8443
+#GENERATED FOR K8S 1.20
           name: webhook
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         readinessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 3
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         resources:
+#GENERATED FOR K8S 1.20
           requests:
+#GENERATED FOR K8S 1.20
             cpu: 100m
+#GENERATED FOR K8S 1.20
             memory: 90Mi
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
+#GENERATED FOR K8S 1.20
           capabilities:
+#GENERATED FOR K8S 1.20
             add:
+#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
+#GENERATED FOR K8S 1.20
             drop:
+#GENERATED FOR K8S 1.20
             - ALL
+#GENERATED FOR K8S 1.20
           runAsUser: 101
+#GENERATED FOR K8S 1.20
         volumeMounts:
+#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
+#GENERATED FOR K8S 1.20
           name: webhook-cert
+#GENERATED FOR K8S 1.20
           readOnly: true
+#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
+#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 300
+#GENERATED FOR K8S 1.20
       volumes:
+#GENERATED FOR K8S 1.20
       - name: webhook-cert
+#GENERATED FOR K8S 1.20
         secret:
+#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - create
+#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: create
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - patch
+#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --patch-mutating=false
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: patch
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: IngressClass
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 webhooks:
+#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
+#GENERATED FOR K8S 1.20
   - v1
+#GENERATED FOR K8S 1.20
   clientConfig:
+#GENERATED FOR K8S 1.20
     service:
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
+#GENERATED FOR K8S 1.20
   failurePolicy: Fail
+#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
+#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
+#GENERATED FOR K8S 1.20
   rules:
+#GENERATED FOR K8S 1.20
   - apiGroups:
+#GENERATED FOR K8S 1.20
     - networking.k8s.io
+#GENERATED FOR K8S 1.20
     apiVersions:
+#GENERATED FOR K8S 1.20
     - v1
+#GENERATED FOR K8S 1.20
     operations:
+#GENERATED FOR K8S 1.20
     - CREATE
+#GENERATED FOR K8S 1.20
     - UPDATE
+#GENERATED FOR K8S 1.20
     resources:
+#GENERATED FOR K8S 1.20
     - ingresses
+#GENERATED FOR K8S 1.20
   sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
index fd51f29f3..41fb24404 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +312,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -358,7 +358,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -380,7 +380,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -420,7 +420,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -495,7 +495,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -506,7 +506,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +542,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -553,7 +553,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -604,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
index befb2856f..69691dc68 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +312,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -360,7 +360,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -383,7 +383,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -498,7 +498,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -509,7 +509,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -545,7 +545,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -556,7 +556,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -607,7 +607,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
index 59f098d43..06b7ba878 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +312,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -363,7 +363,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -426,7 +426,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -501,7 +501,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -512,7 +512,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +548,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -559,7 +559,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
index 59f098d43..06b7ba878 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +312,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -363,7 +363,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -426,7 +426,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -501,7 +501,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -512,7 +512,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +548,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -559,7 +559,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
index 59f098d43..06b7ba878 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +312,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -363,7 +363,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -426,7 +426,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -501,7 +501,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -512,7 +512,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +548,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -559,7 +559,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index befb2856f..539ff6b42 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -1,633 +1,1266 @@
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Namespace
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resourceNames:
+#GENERATED FOR K8S 1.20
   - ingress-controller-leader
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 data:
+#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
+#GENERATED FOR K8S 1.20
   http-snippet: |
+#GENERATED FOR K8S 1.20
     server {
+#GENERATED FOR K8S 1.20
       listen 2443;
+#GENERATED FOR K8S 1.20
       return 308 https://$host$request_uri;
+#GENERATED FOR K8S 1.20
     }
+#GENERATED FOR K8S 1.20
   proxy-real-ip-cidr: XXX.XXX.XXX/XX
+#GENERATED FOR K8S 1.20
   use-forwarded-headers: "true"
+#GENERATED FOR K8S 1.20
 kind: ConfigMap
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   annotations:
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-type: nlb
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   externalTrafficPolicy: Local
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: http
+#GENERATED FOR K8S 1.20
     name: http
+#GENERATED FOR K8S 1.20
     port: 80
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: tohttps
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: http
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: LoadBalancer
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https-webhook
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     targetPort: webhook
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: ClusterIP
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
+#GENERATED FOR K8S 1.20
 kind: Deployment
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   minReadySeconds: 0
+#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     matchLabels:
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
+#GENERATED FOR K8S 1.20
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
+#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
+#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
+#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
+#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAME
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
+#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+#GENERATED FOR K8S 1.20
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         lifecycle:
+#GENERATED FOR K8S 1.20
           preStop:
+#GENERATED FOR K8S 1.20
             exec:
+#GENERATED FOR K8S 1.20
               command:
+#GENERATED FOR K8S 1.20
               - /wait-shutdown
+#GENERATED FOR K8S 1.20
         livenessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 5
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         name: controller
+#GENERATED FOR K8S 1.20
         ports:
+#GENERATED FOR K8S 1.20
         - containerPort: 80
+#GENERATED FOR K8S 1.20
           name: http
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 80
+#GENERATED FOR K8S 1.20
           name: https
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 2443
+#GENERATED FOR K8S 1.20
           name: tohttps
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 8443
+#GENERATED FOR K8S 1.20
           name: webhook
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         readinessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 3
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         resources:
+#GENERATED FOR K8S 1.20
           requests:
+#GENERATED FOR K8S 1.20
             cpu: 100m
+#GENERATED FOR K8S 1.20
             memory: 90Mi
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
+#GENERATED FOR K8S 1.20
           capabilities:
+#GENERATED FOR K8S 1.20
             add:
+#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
+#GENERATED FOR K8S 1.20
             drop:
+#GENERATED FOR K8S 1.20
             - ALL
+#GENERATED FOR K8S 1.20
           runAsUser: 101
+#GENERATED FOR K8S 1.20
         volumeMounts:
+#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
+#GENERATED FOR K8S 1.20
           name: webhook-cert
+#GENERATED FOR K8S 1.20
           readOnly: true
+#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
+#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 300
+#GENERATED FOR K8S 1.20
       volumes:
+#GENERATED FOR K8S 1.20
       - name: webhook-cert
+#GENERATED FOR K8S 1.20
         secret:
+#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - create
+#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: create
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - patch
+#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --patch-mutating=false
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: patch
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: IngressClass
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 webhooks:
+#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
+#GENERATED FOR K8S 1.20
   - v1
+#GENERATED FOR K8S 1.20
   clientConfig:
+#GENERATED FOR K8S 1.20
     service:
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
+#GENERATED FOR K8S 1.20
   failurePolicy: Fail
+#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
+#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
+#GENERATED FOR K8S 1.20
   rules:
+#GENERATED FOR K8S 1.20
   - apiGroups:
+#GENERATED FOR K8S 1.20
     - networking.k8s.io
+#GENERATED FOR K8S 1.20
     apiVersions:
+#GENERATED FOR K8S 1.20
     - v1
+#GENERATED FOR K8S 1.20
     operations:
+#GENERATED FOR K8S 1.20
     - CREATE
+#GENERATED FOR K8S 1.20
     - UPDATE
+#GENERATED FOR K8S 1.20
     resources:
+#GENERATED FOR K8S 1.20
     - ingresses
+#GENERATED FOR K8S 1.20
   sideEffects: None
diff --git a/deploy/static/provider/baremetal/1.19/deploy.yaml b/deploy/static/provider/baremetal/1.19/deploy.yaml
index 34e59b0e8..1f6a394d9 100644
--- a/deploy/static/provider/baremetal/1.19/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -366,7 +366,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -477,7 +477,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -488,7 +488,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -573,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -586,7 +586,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.20/deploy.yaml b/deploy/static/provider/baremetal/1.20/deploy.yaml
index c15db447e..c2120f08d 100644
--- a/deploy/static/provider/baremetal/1.20/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -346,7 +346,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -369,7 +369,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -408,7 +408,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -480,7 +480,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -491,7 +491,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -527,7 +527,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -538,7 +538,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -576,7 +576,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -589,7 +589,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.21/deploy.yaml b/deploy/static/provider/baremetal/1.21/deploy.yaml
index fc13865cb..c0b077e79 100644
--- a/deploy/static/provider/baremetal/1.21/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -483,7 +483,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -494,7 +494,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -579,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -592,7 +592,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.22/deploy.yaml b/deploy/static/provider/baremetal/1.22/deploy.yaml
index fc13865cb..c0b077e79 100644
--- a/deploy/static/provider/baremetal/1.22/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -483,7 +483,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -494,7 +494,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -579,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -592,7 +592,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.23/deploy.yaml b/deploy/static/provider/baremetal/1.23/deploy.yaml
index fc13865cb..c0b077e79 100644
--- a/deploy/static/provider/baremetal/1.23/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -483,7 +483,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -494,7 +494,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -579,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -592,7 +592,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index c15db447e..adcdeccc0 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -1,615 +1,1230 @@
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Namespace
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resourceNames:
+#GENERATED FOR K8S 1.20
   - ingress-controller-leader
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 data:
+#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
+#GENERATED FOR K8S 1.20
 kind: ConfigMap
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: http
+#GENERATED FOR K8S 1.20
     name: http
+#GENERATED FOR K8S 1.20
     port: 80
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: http
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: https
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: NodePort
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https-webhook
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     targetPort: webhook
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: ClusterIP
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
+#GENERATED FOR K8S 1.20
 kind: Deployment
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   minReadySeconds: 0
+#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     matchLabels:
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
+#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
+#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
+#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
+#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
+#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAME
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
+#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+#GENERATED FOR K8S 1.20
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         lifecycle:
+#GENERATED FOR K8S 1.20
           preStop:
+#GENERATED FOR K8S 1.20
             exec:
+#GENERATED FOR K8S 1.20
               command:
+#GENERATED FOR K8S 1.20
               - /wait-shutdown
+#GENERATED FOR K8S 1.20
         livenessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 5
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         name: controller
+#GENERATED FOR K8S 1.20
         ports:
+#GENERATED FOR K8S 1.20
         - containerPort: 80
+#GENERATED FOR K8S 1.20
           name: http
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 443
+#GENERATED FOR K8S 1.20
           name: https
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 8443
+#GENERATED FOR K8S 1.20
           name: webhook
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         readinessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 3
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         resources:
+#GENERATED FOR K8S 1.20
           requests:
+#GENERATED FOR K8S 1.20
             cpu: 100m
+#GENERATED FOR K8S 1.20
             memory: 90Mi
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
+#GENERATED FOR K8S 1.20
           capabilities:
+#GENERATED FOR K8S 1.20
             add:
+#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
+#GENERATED FOR K8S 1.20
             drop:
+#GENERATED FOR K8S 1.20
             - ALL
+#GENERATED FOR K8S 1.20
           runAsUser: 101
+#GENERATED FOR K8S 1.20
         volumeMounts:
+#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
+#GENERATED FOR K8S 1.20
           name: webhook-cert
+#GENERATED FOR K8S 1.20
           readOnly: true
+#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
+#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 300
+#GENERATED FOR K8S 1.20
       volumes:
+#GENERATED FOR K8S 1.20
       - name: webhook-cert
+#GENERATED FOR K8S 1.20
         secret:
+#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - create
+#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: create
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - patch
+#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --patch-mutating=false
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: patch
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: IngressClass
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 webhooks:
+#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
+#GENERATED FOR K8S 1.20
   - v1
+#GENERATED FOR K8S 1.20
   clientConfig:
+#GENERATED FOR K8S 1.20
     service:
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
+#GENERATED FOR K8S 1.20
   failurePolicy: Fail
+#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
+#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
+#GENERATED FOR K8S 1.20
   rules:
+#GENERATED FOR K8S 1.20
   - apiGroups:
+#GENERATED FOR K8S 1.20
     - networking.k8s.io
+#GENERATED FOR K8S 1.20
     apiVersions:
+#GENERATED FOR K8S 1.20
     - v1
+#GENERATED FOR K8S 1.20
     operations:
+#GENERATED FOR K8S 1.20
     - CREATE
+#GENERATED FOR K8S 1.20
     - UPDATE
+#GENERATED FOR K8S 1.20
     resources:
+#GENERATED FOR K8S 1.20
     - ingresses
+#GENERATED FOR K8S 1.20
   sideEffects: None
diff --git a/deploy/static/provider/cloud/1.19/deploy.yaml b/deploy/static/provider/cloud/1.19/deploy.yaml
index a495871bc..534b773fa 100644
--- a/deploy/static/provider/cloud/1.19/deploy.yaml
+++ b/deploy/static/provider/cloud/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -345,7 +345,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -367,7 +367,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -407,7 +407,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -479,7 +479,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -490,7 +490,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -526,7 +526,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -537,7 +537,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -575,7 +575,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -588,7 +588,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.20/deploy.yaml b/deploy/static/provider/cloud/1.20/deploy.yaml
index da818cd3a..1302adb77 100644
--- a/deploy/static/provider/cloud/1.20/deploy.yaml
+++ b/deploy/static/provider/cloud/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -347,7 +347,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -370,7 +370,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -410,7 +410,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -482,7 +482,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -493,7 +493,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -529,7 +529,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -540,7 +540,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -578,7 +578,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.21/deploy.yaml b/deploy/static/provider/cloud/1.21/deploy.yaml
index f1f62d478..c6391037e 100644
--- a/deploy/static/provider/cloud/1.21/deploy.yaml
+++ b/deploy/static/provider/cloud/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +485,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +496,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.22/deploy.yaml b/deploy/static/provider/cloud/1.22/deploy.yaml
index f1f62d478..c6391037e 100644
--- a/deploy/static/provider/cloud/1.22/deploy.yaml
+++ b/deploy/static/provider/cloud/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +485,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +496,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.23/deploy.yaml b/deploy/static/provider/cloud/1.23/deploy.yaml
index f1f62d478..c6391037e 100644
--- a/deploy/static/provider/cloud/1.23/deploy.yaml
+++ b/deploy/static/provider/cloud/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +485,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +496,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index da818cd3a..eb2cfd99b 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -1,617 +1,1234 @@
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Namespace
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resourceNames:
+#GENERATED FOR K8S 1.20
   - ingress-controller-leader
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 data:
+#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
+#GENERATED FOR K8S 1.20
 kind: ConfigMap
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   externalTrafficPolicy: Local
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: http
+#GENERATED FOR K8S 1.20
     name: http
+#GENERATED FOR K8S 1.20
     port: 80
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: http
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: https
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: LoadBalancer
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https-webhook
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     targetPort: webhook
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: ClusterIP
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
+#GENERATED FOR K8S 1.20
 kind: Deployment
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   minReadySeconds: 0
+#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     matchLabels:
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
+#GENERATED FOR K8S 1.20
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
+#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
+#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
+#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
+#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAME
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
+#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+#GENERATED FOR K8S 1.20
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         lifecycle:
+#GENERATED FOR K8S 1.20
           preStop:
+#GENERATED FOR K8S 1.20
             exec:
+#GENERATED FOR K8S 1.20
               command:
+#GENERATED FOR K8S 1.20
               - /wait-shutdown
+#GENERATED FOR K8S 1.20
         livenessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 5
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         name: controller
+#GENERATED FOR K8S 1.20
         ports:
+#GENERATED FOR K8S 1.20
         - containerPort: 80
+#GENERATED FOR K8S 1.20
           name: http
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 443
+#GENERATED FOR K8S 1.20
           name: https
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 8443
+#GENERATED FOR K8S 1.20
           name: webhook
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         readinessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 3
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         resources:
+#GENERATED FOR K8S 1.20
           requests:
+#GENERATED FOR K8S 1.20
             cpu: 100m
+#GENERATED FOR K8S 1.20
             memory: 90Mi
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
+#GENERATED FOR K8S 1.20
           capabilities:
+#GENERATED FOR K8S 1.20
             add:
+#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
+#GENERATED FOR K8S 1.20
             drop:
+#GENERATED FOR K8S 1.20
             - ALL
+#GENERATED FOR K8S 1.20
           runAsUser: 101
+#GENERATED FOR K8S 1.20
         volumeMounts:
+#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
+#GENERATED FOR K8S 1.20
           name: webhook-cert
+#GENERATED FOR K8S 1.20
           readOnly: true
+#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
+#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 300
+#GENERATED FOR K8S 1.20
       volumes:
+#GENERATED FOR K8S 1.20
       - name: webhook-cert
+#GENERATED FOR K8S 1.20
         secret:
+#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - create
+#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: create
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - patch
+#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --patch-mutating=false
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: patch
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: IngressClass
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 webhooks:
+#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
+#GENERATED FOR K8S 1.20
   - v1
+#GENERATED FOR K8S 1.20
   clientConfig:
+#GENERATED FOR K8S 1.20
     service:
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
+#GENERATED FOR K8S 1.20
   failurePolicy: Fail
+#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
+#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
+#GENERATED FOR K8S 1.20
   rules:
+#GENERATED FOR K8S 1.20
   - apiGroups:
+#GENERATED FOR K8S 1.20
     - networking.k8s.io
+#GENERATED FOR K8S 1.20
     apiVersions:
+#GENERATED FOR K8S 1.20
     - v1
+#GENERATED FOR K8S 1.20
     operations:
+#GENERATED FOR K8S 1.20
     - CREATE
+#GENERATED FOR K8S 1.20
     - UPDATE
+#GENERATED FOR K8S 1.20
     resources:
+#GENERATED FOR K8S 1.20
     - ingresses
+#GENERATED FOR K8S 1.20
   sideEffects: None
diff --git a/deploy/static/provider/do/1.19/deploy.yaml b/deploy/static/provider/do/1.19/deploy.yaml
index 3bfe98c0b..c2bb8f546 100644
--- a/deploy/static/provider/do/1.19/deploy.yaml
+++ b/deploy/static/provider/do/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -348,7 +348,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -370,7 +370,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -410,7 +410,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -482,7 +482,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -493,7 +493,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -529,7 +529,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -540,7 +540,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -578,7 +578,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.20/deploy.yaml b/deploy/static/provider/do/1.20/deploy.yaml
index a1782f46e..96392fa8c 100644
--- a/deploy/static/provider/do/1.20/deploy.yaml
+++ b/deploy/static/provider/do/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +485,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +496,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.21/deploy.yaml b/deploy/static/provider/do/1.21/deploy.yaml
index 8c03f618e..43c05ad97 100644
--- a/deploy/static/provider/do/1.21/deploy.yaml
+++ b/deploy/static/provider/do/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +488,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +499,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.22/deploy.yaml b/deploy/static/provider/do/1.22/deploy.yaml
index 8c03f618e..43c05ad97 100644
--- a/deploy/static/provider/do/1.22/deploy.yaml
+++ b/deploy/static/provider/do/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +488,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +499,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.23/deploy.yaml b/deploy/static/provider/do/1.23/deploy.yaml
index 8c03f618e..43c05ad97 100644
--- a/deploy/static/provider/do/1.23/deploy.yaml
+++ b/deploy/static/provider/do/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +488,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +499,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index a1782f46e..e331fab0a 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -1,621 +1,1242 @@
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Namespace
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resourceNames:
+#GENERATED FOR K8S 1.20
   - ingress-controller-leader
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 data:
+#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
+#GENERATED FOR K8S 1.20
   use-proxy-protocol: "true"
+#GENERATED FOR K8S 1.20
 kind: ConfigMap
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   annotations:
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   externalTrafficPolicy: Local
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: http
+#GENERATED FOR K8S 1.20
     name: http
+#GENERATED FOR K8S 1.20
     port: 80
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: http
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: https
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: LoadBalancer
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https-webhook
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     targetPort: webhook
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: ClusterIP
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
+#GENERATED FOR K8S 1.20
 kind: Deployment
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   minReadySeconds: 0
+#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     matchLabels:
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
+#GENERATED FOR K8S 1.20
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
+#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
+#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
+#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
+#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAME
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
+#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+#GENERATED FOR K8S 1.20
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         lifecycle:
+#GENERATED FOR K8S 1.20
           preStop:
+#GENERATED FOR K8S 1.20
             exec:
+#GENERATED FOR K8S 1.20
               command:
+#GENERATED FOR K8S 1.20
               - /wait-shutdown
+#GENERATED FOR K8S 1.20
         livenessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 5
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         name: controller
+#GENERATED FOR K8S 1.20
         ports:
+#GENERATED FOR K8S 1.20
         - containerPort: 80
+#GENERATED FOR K8S 1.20
           name: http
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 443
+#GENERATED FOR K8S 1.20
           name: https
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 8443
+#GENERATED FOR K8S 1.20
           name: webhook
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         readinessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 3
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         resources:
+#GENERATED FOR K8S 1.20
           requests:
+#GENERATED FOR K8S 1.20
             cpu: 100m
+#GENERATED FOR K8S 1.20
             memory: 90Mi
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
+#GENERATED FOR K8S 1.20
           capabilities:
+#GENERATED FOR K8S 1.20
             add:
+#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
+#GENERATED FOR K8S 1.20
             drop:
+#GENERATED FOR K8S 1.20
             - ALL
+#GENERATED FOR K8S 1.20
           runAsUser: 101
+#GENERATED FOR K8S 1.20
         volumeMounts:
+#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
+#GENERATED FOR K8S 1.20
           name: webhook-cert
+#GENERATED FOR K8S 1.20
           readOnly: true
+#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
+#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 300
+#GENERATED FOR K8S 1.20
       volumes:
+#GENERATED FOR K8S 1.20
       - name: webhook-cert
+#GENERATED FOR K8S 1.20
         secret:
+#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - create
+#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: create
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - patch
+#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --patch-mutating=false
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: patch
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: IngressClass
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 webhooks:
+#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
+#GENERATED FOR K8S 1.20
   - v1
+#GENERATED FOR K8S 1.20
   clientConfig:
+#GENERATED FOR K8S 1.20
     service:
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
+#GENERATED FOR K8S 1.20
   failurePolicy: Fail
+#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
+#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
+#GENERATED FOR K8S 1.20
   rules:
+#GENERATED FOR K8S 1.20
   - apiGroups:
+#GENERATED FOR K8S 1.20
     - networking.k8s.io
+#GENERATED FOR K8S 1.20
     apiVersions:
+#GENERATED FOR K8S 1.20
     - v1
+#GENERATED FOR K8S 1.20
     operations:
+#GENERATED FOR K8S 1.20
     - CREATE
+#GENERATED FOR K8S 1.20
     - UPDATE
+#GENERATED FOR K8S 1.20
     resources:
+#GENERATED FOR K8S 1.20
     - ingresses
+#GENERATED FOR K8S 1.20
   sideEffects: None
+#GENERATED FOR K8S 1.20
   timeoutSeconds: 29
diff --git a/deploy/static/provider/exoscale/1.19/deploy.yaml b/deploy/static/provider/exoscale/1.19/deploy.yaml
index 6163bae12..e7df3b575 100644
--- a/deploy/static/provider/exoscale/1.19/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -355,7 +355,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -489,7 +489,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -500,7 +500,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -536,7 +536,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -547,7 +547,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -585,7 +585,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -598,7 +598,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.20/deploy.yaml b/deploy/static/provider/exoscale/1.20/deploy.yaml
index 92c83ab31..5c0f8a806 100644
--- a/deploy/static/provider/exoscale/1.20/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -357,7 +357,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -380,7 +380,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -420,7 +420,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -492,7 +492,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -503,7 +503,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -539,7 +539,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -550,7 +550,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -588,7 +588,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -601,7 +601,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.21/deploy.yaml b/deploy/static/provider/exoscale/1.21/deploy.yaml
index 0c754baf1..bd1e5b769 100644
--- a/deploy/static/provider/exoscale/1.21/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -360,7 +360,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -383,7 +383,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -495,7 +495,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -506,7 +506,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +542,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -553,7 +553,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -604,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.22/deploy.yaml b/deploy/static/provider/exoscale/1.22/deploy.yaml
index 0c754baf1..bd1e5b769 100644
--- a/deploy/static/provider/exoscale/1.22/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -360,7 +360,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -383,7 +383,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -495,7 +495,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -506,7 +506,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +542,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -553,7 +553,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -604,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.23/deploy.yaml b/deploy/static/provider/exoscale/1.23/deploy.yaml
index 0c754baf1..bd1e5b769 100644
--- a/deploy/static/provider/exoscale/1.23/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -360,7 +360,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -383,7 +383,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -495,7 +495,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -506,7 +506,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +542,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -553,7 +553,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -604,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 92c83ab31..b5a1feb2d 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -1,627 +1,1254 @@
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Namespace
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resourceNames:
+#GENERATED FOR K8S 1.20
   - ingress-controller-leader
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 data:
+#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
+#GENERATED FOR K8S 1.20
 kind: ConfigMap
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   annotations:
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
+#GENERATED FOR K8S 1.20
       load balancer
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-name: nginx-ingress-controller
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: 3s
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: /
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: source-hash
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   externalTrafficPolicy: Local
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: http
+#GENERATED FOR K8S 1.20
     name: http
+#GENERATED FOR K8S 1.20
     port: 80
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: http
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: https
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: LoadBalancer
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https-webhook
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     targetPort: webhook
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: ClusterIP
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
+#GENERATED FOR K8S 1.20
 kind: DaemonSet
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   minReadySeconds: 0
+#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     matchLabels:
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
+#GENERATED FOR K8S 1.20
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
+#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
+#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
+#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
+#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAME
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
+#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+#GENERATED FOR K8S 1.20
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         lifecycle:
+#GENERATED FOR K8S 1.20
           preStop:
+#GENERATED FOR K8S 1.20
             exec:
+#GENERATED FOR K8S 1.20
               command:
+#GENERATED FOR K8S 1.20
               - /wait-shutdown
+#GENERATED FOR K8S 1.20
         livenessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 5
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         name: controller
+#GENERATED FOR K8S 1.20
         ports:
+#GENERATED FOR K8S 1.20
         - containerPort: 80
+#GENERATED FOR K8S 1.20
           name: http
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 443
+#GENERATED FOR K8S 1.20
           name: https
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 8443
+#GENERATED FOR K8S 1.20
           name: webhook
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         readinessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 3
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         resources:
+#GENERATED FOR K8S 1.20
           requests:
+#GENERATED FOR K8S 1.20
             cpu: 100m
+#GENERATED FOR K8S 1.20
             memory: 90Mi
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
+#GENERATED FOR K8S 1.20
           capabilities:
+#GENERATED FOR K8S 1.20
             add:
+#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
+#GENERATED FOR K8S 1.20
             drop:
+#GENERATED FOR K8S 1.20
             - ALL
+#GENERATED FOR K8S 1.20
           runAsUser: 101
+#GENERATED FOR K8S 1.20
         volumeMounts:
+#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
+#GENERATED FOR K8S 1.20
           name: webhook-cert
+#GENERATED FOR K8S 1.20
           readOnly: true
+#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
+#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 300
+#GENERATED FOR K8S 1.20
       volumes:
+#GENERATED FOR K8S 1.20
       - name: webhook-cert
+#GENERATED FOR K8S 1.20
         secret:
+#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - create
+#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: create
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - patch
+#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --patch-mutating=false
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: patch
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: IngressClass
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 webhooks:
+#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
+#GENERATED FOR K8S 1.20
   - v1
+#GENERATED FOR K8S 1.20
   clientConfig:
+#GENERATED FOR K8S 1.20
     service:
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
+#GENERATED FOR K8S 1.20
   failurePolicy: Fail
+#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
+#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
+#GENERATED FOR K8S 1.20
   rules:
+#GENERATED FOR K8S 1.20
   - apiGroups:
+#GENERATED FOR K8S 1.20
     - networking.k8s.io
+#GENERATED FOR K8S 1.20
     apiVersions:
+#GENERATED FOR K8S 1.20
     - v1
+#GENERATED FOR K8S 1.20
     operations:
+#GENERATED FOR K8S 1.20
     - CREATE
+#GENERATED FOR K8S 1.20
     - UPDATE
+#GENERATED FOR K8S 1.20
     resources:
+#GENERATED FOR K8S 1.20
     - ingresses
+#GENERATED FOR K8S 1.20
   sideEffects: None
diff --git a/deploy/static/provider/kind/1.19/deploy.yaml b/deploy/static/provider/kind/1.19/deploy.yaml
index ed44b79af..a3fba5c2e 100644
--- a/deploy/static/provider/kind/1.19/deploy.yaml
+++ b/deploy/static/provider/kind/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -366,7 +366,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -493,7 +493,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -504,7 +504,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -540,7 +540,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -551,7 +551,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -589,7 +589,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -602,7 +602,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.20/deploy.yaml b/deploy/static/provider/kind/1.20/deploy.yaml
index 60fb24d4a..cec547011 100644
--- a/deploy/static/provider/kind/1.20/deploy.yaml
+++ b/deploy/static/provider/kind/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -346,7 +346,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -369,7 +369,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -414,7 +414,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -496,7 +496,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -507,7 +507,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -543,7 +543,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -554,7 +554,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -592,7 +592,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -605,7 +605,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.21/deploy.yaml b/deploy/static/provider/kind/1.21/deploy.yaml
index 049796359..d388c4548 100644
--- a/deploy/static/provider/kind/1.21/deploy.yaml
+++ b/deploy/static/provider/kind/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -499,7 +499,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -510,7 +510,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -546,7 +546,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -557,7 +557,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -595,7 +595,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -608,7 +608,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.22/deploy.yaml b/deploy/static/provider/kind/1.22/deploy.yaml
index 049796359..d388c4548 100644
--- a/deploy/static/provider/kind/1.22/deploy.yaml
+++ b/deploy/static/provider/kind/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -499,7 +499,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -510,7 +510,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -546,7 +546,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -557,7 +557,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -595,7 +595,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -608,7 +608,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.23/deploy.yaml b/deploy/static/provider/kind/1.23/deploy.yaml
index 049796359..d388c4548 100644
--- a/deploy/static/provider/kind/1.23/deploy.yaml
+++ b/deploy/static/provider/kind/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +305,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +317,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -499,7 +499,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -510,7 +510,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -546,7 +546,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -557,7 +557,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -595,7 +595,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -608,7 +608,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 60fb24d4a..712af7117 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -1,631 +1,1262 @@
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Namespace
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resourceNames:
+#GENERATED FOR K8S 1.20
   - ingress-controller-leader
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 data:
+#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
+#GENERATED FOR K8S 1.20
 kind: ConfigMap
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: http
+#GENERATED FOR K8S 1.20
     name: http
+#GENERATED FOR K8S 1.20
     port: 80
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: http
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: https
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: NodePort
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https-webhook
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     targetPort: webhook
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: ClusterIP
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
+#GENERATED FOR K8S 1.20
 kind: Deployment
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   minReadySeconds: 0
+#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     matchLabels:
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   strategy:
+#GENERATED FOR K8S 1.20
     rollingUpdate:
+#GENERATED FOR K8S 1.20
       maxUnavailable: 1
+#GENERATED FOR K8S 1.20
     type: RollingUpdate
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
+#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
+#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
+#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
+#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
+#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
+#GENERATED FOR K8S 1.20
         - --watch-ingress-without-class=true
+#GENERATED FOR K8S 1.20
         - --publish-status-address=localhost
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAME
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
+#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+#GENERATED FOR K8S 1.20
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         lifecycle:
+#GENERATED FOR K8S 1.20
           preStop:
+#GENERATED FOR K8S 1.20
             exec:
+#GENERATED FOR K8S 1.20
               command:
+#GENERATED FOR K8S 1.20
               - /wait-shutdown
+#GENERATED FOR K8S 1.20
         livenessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 5
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         name: controller
+#GENERATED FOR K8S 1.20
         ports:
+#GENERATED FOR K8S 1.20
         - containerPort: 80
+#GENERATED FOR K8S 1.20
           hostPort: 80
+#GENERATED FOR K8S 1.20
           name: http
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 443
+#GENERATED FOR K8S 1.20
           hostPort: 443
+#GENERATED FOR K8S 1.20
           name: https
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 8443
+#GENERATED FOR K8S 1.20
           name: webhook
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         readinessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 3
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         resources:
+#GENERATED FOR K8S 1.20
           requests:
+#GENERATED FOR K8S 1.20
             cpu: 100m
+#GENERATED FOR K8S 1.20
             memory: 90Mi
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
+#GENERATED FOR K8S 1.20
           capabilities:
+#GENERATED FOR K8S 1.20
             add:
+#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
+#GENERATED FOR K8S 1.20
             drop:
+#GENERATED FOR K8S 1.20
             - ALL
+#GENERATED FOR K8S 1.20
           runAsUser: 101
+#GENERATED FOR K8S 1.20
         volumeMounts:
+#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
+#GENERATED FOR K8S 1.20
           name: webhook-cert
+#GENERATED FOR K8S 1.20
           readOnly: true
+#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         ingress-ready: "true"
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
+#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 0
+#GENERATED FOR K8S 1.20
       tolerations:
+#GENERATED FOR K8S 1.20
       - effect: NoSchedule
+#GENERATED FOR K8S 1.20
         key: node-role.kubernetes.io/master
+#GENERATED FOR K8S 1.20
         operator: Equal
+#GENERATED FOR K8S 1.20
       - effect: NoSchedule
+#GENERATED FOR K8S 1.20
         key: node-role.kubernetes.io/control-plane
+#GENERATED FOR K8S 1.20
         operator: Equal
+#GENERATED FOR K8S 1.20
       volumes:
+#GENERATED FOR K8S 1.20
       - name: webhook-cert
+#GENERATED FOR K8S 1.20
         secret:
+#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - create
+#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: create
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - patch
+#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --patch-mutating=false
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: patch
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: IngressClass
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 webhooks:
+#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
+#GENERATED FOR K8S 1.20
   - v1
+#GENERATED FOR K8S 1.20
   clientConfig:
+#GENERATED FOR K8S 1.20
     service:
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
+#GENERATED FOR K8S 1.20
   failurePolicy: Fail
+#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
+#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
+#GENERATED FOR K8S 1.20
   rules:
+#GENERATED FOR K8S 1.20
   - apiGroups:
+#GENERATED FOR K8S 1.20
     - networking.k8s.io
+#GENERATED FOR K8S 1.20
     apiVersions:
+#GENERATED FOR K8S 1.20
     - v1
+#GENERATED FOR K8S 1.20
     operations:
+#GENERATED FOR K8S 1.20
     - CREATE
+#GENERATED FOR K8S 1.20
     - UPDATE
+#GENERATED FOR K8S 1.20
     resources:
+#GENERATED FOR K8S 1.20
     - ingresses
+#GENERATED FOR K8S 1.20
   sideEffects: None
diff --git a/deploy/static/provider/scw/1.19/deploy.yaml b/deploy/static/provider/scw/1.19/deploy.yaml
index f7721046b..89ee9725b 100644
--- a/deploy/static/provider/scw/1.19/deploy.yaml
+++ b/deploy/static/provider/scw/1.19/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -348,7 +348,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -370,7 +370,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -410,7 +410,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -482,7 +482,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -493,7 +493,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -529,7 +529,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -540,7 +540,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -578,7 +578,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -591,7 +591,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.20/deploy.yaml b/deploy/static/provider/scw/1.20/deploy.yaml
index 45f9f37ec..0b1aaa326 100644
--- a/deploy/static/provider/scw/1.20/deploy.yaml
+++ b/deploy/static/provider/scw/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +485,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +496,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +594,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.21/deploy.yaml b/deploy/static/provider/scw/1.21/deploy.yaml
index a7b7b9f3f..58894fa1c 100644
--- a/deploy/static/provider/scw/1.21/deploy.yaml
+++ b/deploy/static/provider/scw/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +488,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +499,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.22/deploy.yaml b/deploy/static/provider/scw/1.22/deploy.yaml
index a7b7b9f3f..58894fa1c 100644
--- a/deploy/static/provider/scw/1.22/deploy.yaml
+++ b/deploy/static/provider/scw/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +488,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +499,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.23/deploy.yaml b/deploy/static/provider/scw/1.23/deploy.yaml
index a7b7b9f3f..58894fa1c 100644
--- a/deploy/static/provider/scw/1.23/deploy.yaml
+++ b/deploy/static/provider/scw/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -121,7 +121,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +140,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -207,7 +207,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +226,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +246,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +265,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +320,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +488,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +499,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+        app.kubernetes.io/version: 1.2.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +597,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+    app.kubernetes.io/version: 1.2.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 45f9f37ec..6c4eaad28 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -1,620 +1,1240 @@
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Namespace
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: ServiceAccount
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resourceNames:
+#GENERATED FOR K8S 1.20
   - ingress-controller-leader
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: Role
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - configmaps
+#GENERATED FOR K8S 1.20
   - endpoints
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   - pods
+#GENERATED FOR K8S 1.20
   - secrets
+#GENERATED FOR K8S 1.20
   - namespaces
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - nodes
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - services
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - ""
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - events
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - create
+#GENERATED FOR K8S 1.20
   - patch
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingresses/status
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - networking.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - ingressclasses
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - list
+#GENERATED FOR K8S 1.20
   - watch
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRole
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 rules:
+#GENERATED FOR K8S 1.20
 - apiGroups:
+#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
+#GENERATED FOR K8S 1.20
   resources:
+#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
+#GENERATED FOR K8S 1.20
   verbs:
+#GENERATED FOR K8S 1.20
   - get
+#GENERATED FOR K8S 1.20
   - update
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: RoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: Role
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 roleRef:
+#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
+#GENERATED FOR K8S 1.20
   kind: ClusterRole
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 subjects:
+#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 data:
+#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
+#GENERATED FOR K8S 1.20
   use-proxy-protocol: "true"
+#GENERATED FOR K8S 1.20
 kind: ConfigMap
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   annotations:
+#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   externalTrafficPolicy: Local
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: http
+#GENERATED FOR K8S 1.20
     name: http
+#GENERATED FOR K8S 1.20
     port: 80
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: http
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     protocol: TCP
+#GENERATED FOR K8S 1.20
     targetPort: https
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: LoadBalancer
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: v1
+#GENERATED FOR K8S 1.20
 kind: Service
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   ports:
+#GENERATED FOR K8S 1.20
   - appProtocol: https
+#GENERATED FOR K8S 1.20
     name: https-webhook
+#GENERATED FOR K8S 1.20
     port: 443
+#GENERATED FOR K8S 1.20
     targetPort: webhook
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   type: ClusterIP
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
+#GENERATED FOR K8S 1.20
 kind: Deployment
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   minReadySeconds: 0
+#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
+#GENERATED FOR K8S 1.20
   selector:
+#GENERATED FOR K8S 1.20
     matchLabels:
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
+#GENERATED FOR K8S 1.20
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
+#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
+#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
+#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
+#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAME
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
+#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
+#GENERATED FOR K8S 1.20
+        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         lifecycle:
+#GENERATED FOR K8S 1.20
           preStop:
+#GENERATED FOR K8S 1.20
             exec:
+#GENERATED FOR K8S 1.20
               command:
+#GENERATED FOR K8S 1.20
               - /wait-shutdown
+#GENERATED FOR K8S 1.20
         livenessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 5
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         name: controller
+#GENERATED FOR K8S 1.20
         ports:
+#GENERATED FOR K8S 1.20
         - containerPort: 80
+#GENERATED FOR K8S 1.20
           name: http
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 443
+#GENERATED FOR K8S 1.20
           name: https
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         - containerPort: 8443
+#GENERATED FOR K8S 1.20
           name: webhook
+#GENERATED FOR K8S 1.20
           protocol: TCP
+#GENERATED FOR K8S 1.20
         readinessProbe:
+#GENERATED FOR K8S 1.20
           failureThreshold: 3
+#GENERATED FOR K8S 1.20
           httpGet:
+#GENERATED FOR K8S 1.20
             path: /healthz
+#GENERATED FOR K8S 1.20
             port: 10254
+#GENERATED FOR K8S 1.20
             scheme: HTTP
+#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
+#GENERATED FOR K8S 1.20
           periodSeconds: 10
+#GENERATED FOR K8S 1.20
           successThreshold: 1
+#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
+#GENERATED FOR K8S 1.20
         resources:
+#GENERATED FOR K8S 1.20
           requests:
+#GENERATED FOR K8S 1.20
             cpu: 100m
+#GENERATED FOR K8S 1.20
             memory: 90Mi
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
+#GENERATED FOR K8S 1.20
           capabilities:
+#GENERATED FOR K8S 1.20
             add:
+#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
+#GENERATED FOR K8S 1.20
             drop:
+#GENERATED FOR K8S 1.20
             - ALL
+#GENERATED FOR K8S 1.20
           runAsUser: 101
+#GENERATED FOR K8S 1.20
         volumeMounts:
+#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
+#GENERATED FOR K8S 1.20
           name: webhook-cert
+#GENERATED FOR K8S 1.20
           readOnly: true
+#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
+#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 300
+#GENERATED FOR K8S 1.20
       volumes:
+#GENERATED FOR K8S 1.20
       - name: webhook-cert
+#GENERATED FOR K8S 1.20
         secret:
+#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - create
+#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: create
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
+#GENERATED FOR K8S 1.20
 kind: Job
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   template:
+#GENERATED FOR K8S 1.20
     metadata:
+#GENERATED FOR K8S 1.20
       labels:
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+        app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
+#GENERATED FOR K8S 1.20
     spec:
+#GENERATED FOR K8S 1.20
       containers:
+#GENERATED FOR K8S 1.20
       - args:
+#GENERATED FOR K8S 1.20
         - patch
+#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
+#GENERATED FOR K8S 1.20
         - --patch-mutating=false
+#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
+#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
+#GENERATED FOR K8S 1.20
         env:
+#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
+#GENERATED FOR K8S 1.20
           valueFrom:
+#GENERATED FOR K8S 1.20
             fieldRef:
+#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
+#GENERATED FOR K8S 1.20
         image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+#GENERATED FOR K8S 1.20
         imagePullPolicy: IfNotPresent
+#GENERATED FOR K8S 1.20
         name: patch
+#GENERATED FOR K8S 1.20
         securityContext:
+#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
+#GENERATED FOR K8S 1.20
       nodeSelector:
+#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
+#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
+#GENERATED FOR K8S 1.20
       securityContext:
+#GENERATED FOR K8S 1.20
         fsGroup: 2000
+#GENERATED FOR K8S 1.20
         runAsNonRoot: true
+#GENERATED FOR K8S 1.20
         runAsUser: 2000
+#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: IngressClass
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: nginx
+#GENERATED FOR K8S 1.20
 spec:
+#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
+#GENERATED FOR K8S 1.20
 ---
+#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
+#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
+#GENERATED FOR K8S 1.20
 metadata:
+#GENERATED FOR K8S 1.20
   labels:
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
+#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.0
+#GENERATED FOR K8S 1.20
+    app.kubernetes.io/version: 1.2.1
+#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
+#GENERATED FOR K8S 1.20
 webhooks:
+#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
+#GENERATED FOR K8S 1.20
   - v1
+#GENERATED FOR K8S 1.20
   clientConfig:
+#GENERATED FOR K8S 1.20
     service:
+#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
+#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
+#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
+#GENERATED FOR K8S 1.20
   failurePolicy: Fail
+#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
+#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
+#GENERATED FOR K8S 1.20
   rules:
+#GENERATED FOR K8S 1.20
   - apiGroups:
+#GENERATED FOR K8S 1.20
     - networking.k8s.io
+#GENERATED FOR K8S 1.20
     apiVersions:
+#GENERATED FOR K8S 1.20
     - v1
+#GENERATED FOR K8S 1.20
     operations:
+#GENERATED FOR K8S 1.20
     - CREATE
+#GENERATED FOR K8S 1.20
     - UPDATE
+#GENERATED FOR K8S 1.20
     resources:
+#GENERATED FOR K8S 1.20
     - ingresses
+#GENERATED FOR K8S 1.20
   sideEffects: None

From 6caa99f4641b0d07d348180f7fb459588dee9ca1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 31 May 2022 06:28:53 -0700
Subject: [PATCH 0208/1641] Bump github.com/imdario/mergo from 0.3.12 to 0.3.13
 (#8649)

Bumps [github.com/imdario/mergo](https://github.com/imdario/mergo) from 0.3.12 to 0.3.13.
- [Release notes](https://github.com/imdario/mergo/releases)
- [Commits](https://github.com/imdario/mergo/compare/0.3.12...v0.3.13)

---
updated-dependencies:
- dependency-name: github.com/imdario/mergo
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 7 ++++---
 2 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/go.mod b/go.mod
index 8547d6970..982bc9a9b 100644
--- a/go.mod
+++ b/go.mod
@@ -7,7 +7,7 @@ require (
 	github.com/eapache/channels v1.1.0
 	github.com/fsnotify/fsnotify v1.5.4
 	github.com/gavv/httpexpect/v2 v2.3.1
-	github.com/imdario/mergo v0.3.12
+	github.com/imdario/mergo v0.3.13
 	github.com/json-iterator/go v1.1.12
 	github.com/kylelemons/godebug v1.1.0
 	github.com/mitchellh/go-ps v1.0.0
@@ -133,7 +133,7 @@ require (
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
-	gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b // indirect
+	gopkg.in/yaml.v3 v3.0.0 // indirect
 	k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c // indirect
 	k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65 // indirect
 	k8s.io/utils v0.0.0-20211116205334-6203023598ed // indirect
diff --git a/go.sum b/go.sum
index 6dca2bc83..88049aa1e 100644
--- a/go.sum
+++ b/go.sum
@@ -345,8 +345,8 @@ github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpO
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/imdario/mergo v0.3.5/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
-github.com/imdario/mergo v0.3.12 h1:b6R2BslTbIEToALKP7LxUvijTsNI9TAe80pLWN2g/HU=
-github.com/imdario/mergo v0.3.12/go.mod h1:jmQim1M+e3UYxmgPu/WyfjB3N3VflVyUjjjwH0dnCYA=
+github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
+github.com/imdario/mergo v0.3.13/go.mod h1:4lJ1jqUDcsbIECGy0RUJAXNIhg+6ocWgb1ALK2O4oXg=
 github.com/imkira/go-interpol v1.0.0 h1:HrmLyvOLJyjR0YofMw8QGdCIuYOs4TJUBDNU5sJC09E=
 github.com/imkira/go-interpol v1.0.0/go.mod h1:z0h2/2T3XF8kyEPpRgJ3kmNv+C43p+I/CoI+jC3w2iA=
 github.com/inconshreveable/mousetrap v1.0.0 h1:Z8tu5sraLXCXIcARxBp/8cbvlwVa7Z1NHg9XEKhtSvM=
@@ -1106,8 +1106,9 @@ gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
 gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.0-20200615113413-eeeca48fe776/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b h1:h8qDotaEPuJATrMmW04NCwg7v22aHH28wwpauUhK9Oo=
 gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.0 h1:hjy8E9ON/egN1tAYqKb61G10WtihqetD4sz2H+8nIeA=
+gopkg.in/yaml.v3 v3.0.0/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gotest.tools/v3 v3.0.2/go.mod h1:3SzNCllyD9/Y+b5r9JIKQ474KzkZyqLqEfYqMsX94Bk=
 gotest.tools/v3 v3.0.3/go.mod h1:Z7Lb0S5l+klDB31fvDQX8ss/FlKDxtlFlw3Oa8Ymbl8=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=

From f6ceaadcbaa2bb3a66c241682d08b682ea289a02 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 31 May 2022 18:27:23 -0400
Subject: [PATCH 0209/1641] Update supported version readme (#8654)

bump versions to 1.2.1
---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index 0af81cb58..e55b4aff4 100644
--- a/README.md
+++ b/README.md
@@ -31,6 +31,7 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 
 | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
+| v1.2.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.6         | 1.19.10†      |
 | v1.2.0                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.6         | 1.19.10†      |
 | v1.1.3                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.4         | 1.19.10†      |
 | v1.1.2                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       |

From 4a6d15a5a2a07a4421c37cec56e5d8773d81e763 Mon Sep 17 00:00:00 2001
From: Abhishek Agarwal <abhishek.agarwal@mayadata.io>
Date: Wed, 1 Jun 2022 16:27:02 +0530
Subject: [PATCH 0210/1641] update ci kind version to v0.14.0 (#8656)

* update ci kind version to v0.14.0

Signed-off-by: Abhishek Agarwal <abhishek.agarwal@mayadata.io>

* updated the ci strategy matrix k8s versions

Signed-off-by: Abhishek Agarwal <abhishek.agarwal@mayadata.io>
---
 .github/workflows/ci.yaml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index cf8ec20f2..c8e50035b 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -171,7 +171,7 @@ jobs:
         id: kind
         uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 # v0.5.0
         with:
-          version: v0.11.1
+          version: v0.14.0
           image: kindest/node:v1.21.1
 
       - uses: geekyeggo/delete-artifact@a6ab43859c960a8b74cbc6291f362c7fb51829ba # v1
@@ -204,7 +204,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.19.11, v1.20.7, v1.21.2, v1.22.0, v1.23.0]
+        k8s: [v1.19.11, v1.20.7, v1.21.2, v1.22.9, v1.23.6, v1.24.0]
 
     steps:
 
@@ -262,7 +262,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.21.10, v1.22.7, v1.23.4]
+        k8s: [v1.21.10, v1.22.9, v1.23.6, v1.24.0]
 
     steps:
 

From d29a2383507427abdc56302165c618bf2da7580b Mon Sep 17 00:00:00 2001
From: guylil <24384486+guylil@users.noreply.github.com>
Date: Fri, 3 Jun 2022 12:44:19 +0300
Subject: [PATCH 0211/1641] Update index.md (#8616)

typo change.. I think...
It didn't work for me without the " "
---
 docs/deploy/index.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 0a33c19cd..fad8338c6 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -93,7 +93,7 @@ Then create an ingress resource. The following example uses an host that maps to
 
 ```console
 kubectl create ingress demo-localhost --class=nginx \
-  --rule=demo.localdev.me/*=demo:80
+  --rule="demo.localdev.me/*=demo:80"
 ```
 
 Now, forward a local port to the ingress controller:

From fb2f00bae5c444b742f42e05eddf80a36dd6b7f8 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Tue, 7 Jun 2022 21:32:56 +0530
Subject: [PATCH 0212/1641] bumped kind version to 0.14.0 (#8677)

---
 .github/workflows/ci.yaml | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index c8e50035b..046b3bc2c 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -169,10 +169,10 @@ jobs:
 
       - name: Create Kubernetes cluster
         id: kind
-        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 # v0.5.0
+        uses: engineerd/setup-kind@v0.5.0
         with:
           version: v0.14.0
-          image: kindest/node:v1.21.1
+          image: kindest/node:v1.21.12
 
       - uses: geekyeggo/delete-artifact@a6ab43859c960a8b74cbc6291f362c7fb51829ba # v1
         with:
@@ -218,9 +218,9 @@ jobs:
 
       - name: Create Kubernetes ${{ matrix.k8s }} cluster
         id: kind
-        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 # v0.5.0
+        uses: engineerd/setup-kind@v0.5.0
         with:
-          version: v0.11.1
+          version: v0.14.0
           config: test/e2e/kind.yaml
           image: kindest/node:${{ matrix.k8s }}
 
@@ -278,7 +278,7 @@ jobs:
         id: kind
         uses: engineerd/setup-kind@v0.5.0
         with:
-          version: v0.12.0
+          version: v0.14.0
           config: test/e2e/kind.yaml
           image: kindest/node:${{ matrix.k8s }}
 
@@ -398,10 +398,10 @@ jobs:
       - name: Create Kubernetes cluster
         id: kind
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 # v0.5.0
+        uses: engineerd/setup-kind@v0.5.0
         with:
-          version: v0.11.1
-          image: kindest/node:v1.21.1
+          version: v0.14.0
+          image: kindest/node:v1.21.12
 
       - name: Set up Go 1.18
         id: go

From 2fc8a62d1a19708c2d13df74f8798aa5a58a5d43 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 9 Jun 2022 22:33:42 +0530
Subject: [PATCH 0213/1641] removed unavailable flag (#8681)

---
 .github/workflows/ci.yaml | 4 ++--
 test/e2e/kind.yaml        | 1 -
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 046b3bc2c..68a90848f 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -204,7 +204,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.19.11, v1.20.7, v1.21.2, v1.22.9, v1.23.6, v1.24.0]
+        k8s: [v1.19.11, v1.20.7, v1.21.2, v1.22.9, v1.23.6]
 
     steps:
 
@@ -262,7 +262,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.21.10, v1.22.9, v1.23.6, v1.24.0]
+        k8s: [v1.21.10, v1.22.9, v1.23.6]
 
     steps:
 
diff --git a/test/e2e/kind.yaml b/test/e2e/kind.yaml
index 6fddba4e2..97dc7082d 100644
--- a/test/e2e/kind.yaml
+++ b/test/e2e/kind.yaml
@@ -13,4 +13,3 @@ kubeadmConfigPatches:
     extraArgs:
       namespace-sync-period: 10s
       concurrent-deployment-syncs: "30"
-      deployment-controller-sync-period: 10s

From 0005c080da149ab9cc1d5a1a060259415fc09cab Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 10 Jun 2022 16:21:47 +0530
Subject: [PATCH 0214/1641] moved whathappend to top (#8684)

---
 .github/ISSUE_TEMPLATE/bug_report.md | 21 ++++++++++++---------
 1 file changed, 12 insertions(+), 9 deletions(-)

diff --git a/.github/ISSUE_TEMPLATE/bug_report.md b/.github/ISSUE_TEMPLATE/bug_report.md
index 9f8fd83ba..469e00834 100644
--- a/.github/ISSUE_TEMPLATE/bug_report.md
+++ b/.github/ISSUE_TEMPLATE/bug_report.md
@@ -10,7 +10,8 @@ assignees: ''
 <!--
 
 Welcome to ingress-nginx!  For a smooth issue process, try to answer the following questions.
-Don't worry if they're not all applicable; just try to include what you can :-)
+Don't worry if they're not all applicable; just try to include what you can :-).
+More info helps better understanding of the issue (needless to say).
 
 If you need to include code snippets or logs, please put them in fenced code
 blocks.  If they're super-long, please use the details tag like
@@ -27,6 +28,15 @@ This questions are the first thing we need to know to understand the context.
 
 -->
 
+**What happened**:
+
+<!-- (please include exact error messages if you can) -->
+
+**What you expected to happen**:
+
+<!-- What do you think went wrong? -->
+
+
 **NGINX Ingress controller version** (exec into the pod and run nginx-ingress-controller --version.):
 <!--
 POD_NAMESPACE=ingress-nginx
@@ -71,15 +81,8 @@ kubectl exec -it $POD_NAME -n $POD_NAMESPACE -- /nginx-ingress-controller --vers
     - `kubectl describe ...` of any custom configmap(s) created and in use
     - Any other related information that may help
 
-**What happened**:
 
-<!-- (please include exact error messages if you can) -->
-
-**What you expected to happen**:
-
-<!-- What do you think went wrong? -->
-
-**How to reproduce it**:
+**How to reproduce this issue**:
 <!---
 
 As minimally and precisely as possible. Keep in mind we do not have access to your cluster or application.

From 2852e2998cbfb8c89f1b3d61de8ed03e0a1d0134 Mon Sep 17 00:00:00 2001
From: zou rui <xiaorui.zou@gmail.com>
Date: Fri, 10 Jun 2022 19:01:46 +0800
Subject: [PATCH 0215/1641] feat: support enbale nginx debug_connection (#8637)

---
 .../nginx-configuration/configmap.md          |  8 ++++++++
 internal/ingress/controller/config/config.go  |  6 ++++++
 .../ingress/controller/template/configmap.go  | 20 +++++++++++++++++++
 .../controller/template/configmap_test.go     |  2 ++
 rootfs/etc/nginx/template/nginx.tmpl          |  3 +++
 5 files changed, 39 insertions(+)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 6b6414218..270dd1c62 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -211,6 +211,7 @@ The following table shows a configuration option's name, type, and the default v
 |[global-rate-limit-status-code](#global-rate-limit)|int|429|
 |[service-upstream](#service-upstream)|bool|"false"|
 |[ssl-reject-handshake](#ssl-reject-handshake)|bool|"false"|
+|[debug-connections](#debug-connections)|[]string|"127.0.0.1,1.1.1.1/24"|
 
 ## add-headers
 
@@ -1300,3 +1301,10 @@ _**default:**_ "false"
 
 _References:_
 [https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_reject_handshake](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_reject_handshake)
+
+## debug-connections
+Enables debugging log for selected client connections.
+_**default:**_ ""
+
+_References:_
+[http://nginx.org/en/docs/ngx_core_module.html#debug_connection](http://nginx.org/en/docs/ngx_core_module.html#debug_connection)
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index a1f35e9fa..07f9d957a 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -768,6 +768,11 @@ type Configuration struct {
 	// GlobalRateLimitStatucCode determines the HTTP status code to return
 	// when limit is exceeding during global rate limiting.
 	GlobalRateLimitStatucCode int `json:"global-rate-limit-status-code"`
+
+	// DebugConnections Enables debugging log for selected client connections
+	// http://nginx.org/en/docs/ngx_core_module.html#debug_connection
+	// Default: ""
+	DebugConnections []string `json:"debug-connections"`
 }
 
 // NewDefault returns the default nginx configuration
@@ -932,6 +937,7 @@ func NewDefault() Configuration {
 		GlobalRateLimitMemcachedMaxIdleTimeout: 10000,
 		GlobalRateLimitMemcachedPoolSize:       50,
 		GlobalRateLimitStatucCode:              429,
+		DebugConnections:                       []string{},
 	}
 
 	if klog.V(5).Enabled() {
diff --git a/internal/ingress/controller/template/configmap.go b/internal/ingress/controller/template/configmap.go
index 382cb0367..bcd985f7f 100644
--- a/internal/ingress/controller/template/configmap.go
+++ b/internal/ingress/controller/template/configmap.go
@@ -65,6 +65,7 @@ const (
 	globalAuthAlwaysSetCookie     = "global-auth-always-set-cookie"
 	luaSharedDictsKey             = "lua-shared-dicts"
 	plugins                       = "plugins"
+	debugConnections              = "debug-connections"
 )
 
 var (
@@ -111,6 +112,7 @@ func ReadConfig(src map[string]string) config.Configuration {
 	blockRefererList := make([]string, 0)
 	responseHeaders := make([]string, 0)
 	luaSharedDicts := make(map[string]int)
+	debugConnectionsList := make([]string, 0)
 
 	//parse lua shared dict values
 	if val, ok := conf[luaSharedDictsKey]; ok {
@@ -373,6 +375,24 @@ func ReadConfig(src map[string]string) config.Configuration {
 		delete(conf, plugins)
 	}
 
+	if val, ok := conf[debugConnections]; ok {
+		delete(conf, debugConnections)
+		for _, i := range splitAndTrimSpace(val, ",") {
+			validIp := net.ParseIP(i)
+			if validIp != nil {
+				debugConnectionsList = append(debugConnectionsList, i)
+			} else {
+				_, _, err := net.ParseCIDR(i)
+				if err == nil {
+					debugConnectionsList = append(debugConnectionsList, i)
+				} else {
+					klog.Warningf("%v is not a valid IP or CIDR address", i)
+				}
+			}
+		}
+		to.DebugConnections = debugConnectionsList
+	}
+
 	to.CustomHTTPErrors = filterErrors(errors)
 	to.SkipAccessLogURLs = skipUrls
 	to.WhitelistSourceRange = whiteList
diff --git a/internal/ingress/controller/template/configmap_test.go b/internal/ingress/controller/template/configmap_test.go
index b30e836ee..be3ffb0ce 100644
--- a/internal/ingress/controller/template/configmap_test.go
+++ b/internal/ingress/controller/template/configmap_test.go
@@ -75,6 +75,7 @@ func TestMergeConfigMapToStruct(t *testing.T) {
 		"proxy-add-original-uri-header": "false",
 		"disable-ipv6-dns":              "true",
 		"default-type":                  "text/plain",
+		"debug-connections":             "127.0.0.1,1.1.1.1/24,::1",
 	}
 	def := config.NewDefault()
 	def.CustomHTTPErrors = []int{300, 400}
@@ -99,6 +100,7 @@ func TestMergeConfigMapToStruct(t *testing.T) {
 	def.LuaSharedDicts = defaultLuaSharedDicts
 	def.DisableIpv6DNS = true
 	def.DefaultType = "text/plain"
+	def.DebugConnections = []string{"127.0.0.1", "1.1.1.1/24", "::1"}
 
 	hash, err := hashstructure.Hash(def, &hashstructure.HashOptions{
 		TagName: "json",
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index bd0880c77..561278b6f 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -58,6 +58,9 @@ events {
     multi_accept        {{ if $cfg.EnableMultiAccept }}on{{ else }}off{{ end }};
     worker_connections  {{ $cfg.MaxWorkerConnections }};
     use                 epoll;
+    {{ range $index , $v := $cfg.DebugConnections }}
+    debug_connection    {{ $v }};
+    {{ end }}
 }
 
 http {

From 96b6228a6b65a85e421b8a348a149e99181664d1 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 10 Jun 2022 16:31:52 +0530
Subject: [PATCH 0216/1641] changed k8s.gcr.io to registry.k8s.io (#8667)

---
 Makefile                                      |   2 +-
 RELEASE.md                                    |   6 +-
 build/run-in-docker.sh                        |   2 +-
 charts/ingress-nginx/Chart.yaml               |   2 +-
 charts/ingress-nginx/README.md                |   8 +-
 charts/ingress-nginx/values.yaml              |   8 +-
 deploy/static/provider/aws/1.19/deploy.yaml   |   6 +-
 deploy/static/provider/aws/1.20/deploy.yaml   |   6 +-
 deploy/static/provider/aws/1.21/deploy.yaml   |   6 +-
 deploy/static/provider/aws/1.22/deploy.yaml   |   6 +-
 deploy/static/provider/aws/1.23/deploy.yaml   |   6 +-
 deploy/static/provider/aws/deploy.yaml        | 627 +----------------
 .../nlb-with-tls-termination/1.19/deploy.yaml |   6 +-
 .../nlb-with-tls-termination/1.20/deploy.yaml |   6 +-
 .../nlb-with-tls-termination/1.21/deploy.yaml |   6 +-
 .../nlb-with-tls-termination/1.22/deploy.yaml |   6 +-
 .../nlb-with-tls-termination/1.23/deploy.yaml |   6 +-
 .../aws/nlb-with-tls-termination/deploy.yaml  | 639 +-----------------
 .../provider/baremetal/1.19/deploy.yaml       |   6 +-
 .../provider/baremetal/1.20/deploy.yaml       |   6 +-
 .../provider/baremetal/1.21/deploy.yaml       |   6 +-
 .../provider/baremetal/1.22/deploy.yaml       |   6 +-
 .../provider/baremetal/1.23/deploy.yaml       |   6 +-
 deploy/static/provider/baremetal/deploy.yaml  | 621 +----------------
 deploy/static/provider/cloud/1.19/deploy.yaml |   6 +-
 deploy/static/provider/cloud/1.20/deploy.yaml |   6 +-
 deploy/static/provider/cloud/1.21/deploy.yaml |   6 +-
 deploy/static/provider/cloud/1.22/deploy.yaml |   6 +-
 deploy/static/provider/cloud/1.23/deploy.yaml |   6 +-
 deploy/static/provider/cloud/deploy.yaml      | 623 +----------------
 deploy/static/provider/do/1.19/deploy.yaml    |   6 +-
 deploy/static/provider/do/1.20/deploy.yaml    |   6 +-
 deploy/static/provider/do/1.21/deploy.yaml    |   6 +-
 deploy/static/provider/do/1.22/deploy.yaml    |   6 +-
 deploy/static/provider/do/1.23/deploy.yaml    |   6 +-
 deploy/static/provider/do/deploy.yaml         | 627 +----------------
 .../static/provider/exoscale/1.19/deploy.yaml |   6 +-
 .../static/provider/exoscale/1.20/deploy.yaml |   6 +-
 .../static/provider/exoscale/1.21/deploy.yaml |   6 +-
 .../static/provider/exoscale/1.22/deploy.yaml |   6 +-
 .../static/provider/exoscale/1.23/deploy.yaml |   6 +-
 deploy/static/provider/exoscale/deploy.yaml   | 633 +----------------
 deploy/static/provider/kind/1.19/deploy.yaml  |   6 +-
 deploy/static/provider/kind/1.20/deploy.yaml  |   6 +-
 deploy/static/provider/kind/1.21/deploy.yaml  |   6 +-
 deploy/static/provider/kind/1.22/deploy.yaml  |   6 +-
 deploy/static/provider/kind/1.23/deploy.yaml  |   6 +-
 deploy/static/provider/kind/deploy.yaml       | 637 +----------------
 deploy/static/provider/scw/1.19/deploy.yaml   |   6 +-
 deploy/static/provider/scw/1.20/deploy.yaml   |   6 +-
 deploy/static/provider/scw/1.21/deploy.yaml   |   6 +-
 deploy/static/provider/scw/1.22/deploy.yaml   |   6 +-
 deploy/static/provider/scw/1.23/deploy.yaml   |   6 +-
 deploy/static/provider/scw/deploy.yaml        | 626 +----------------
 docs/deploy/upgrade.md                        |   4 +-
 docs/examples/chashsubset/deployment.yaml     |   2 +-
 .../custom-default-backend.helm.values.yaml   |   2 +-
 .../custom-errors/custom-default-backend.yaml |   2 +-
 docs/examples/http-svc.yaml                   |   2 +-
 docs/examples/multi-tls/multi-tls.yaml        |   2 +-
 .../static-ip/nginx-ingress-controller.yaml   |   2 +-
 docs/troubleshooting.md                       |   2 +-
 .../third-party-addons/opentracing.md         |   2 +-
 images/echo/Makefile                          |   2 +-
 images/nginx/README.md                        |   2 +-
 images/nginx/rc.yaml                          |   2 +-
 images/test-runner/Makefile                   |   2 +-
 images/test-runner/rootfs/Dockerfile          |   2 +-
 test/e2e-image/Dockerfile                     |   2 +-
 test/e2e/annotations/canary.go                |   2 +-
 test/e2e/framework/deployment.go              |   6 +-
 test/e2e/framework/fastcgi_helloserver.go     |   2 +-
 test/e2e/settings/ocsp/ocsp.go                |   2 +-
 73 files changed, 180 insertions(+), 5165 deletions(-)

diff --git a/Makefile b/Makefile
index e8d0761aa..71dd8dd06 100644
--- a/Makefile
+++ b/Makefile
@@ -55,7 +55,7 @@ endif
 
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
-BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
+BASE_IMAGE ?= registry.k8s.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
 
 GOARCH=$(ARCH)
 
diff --git a/RELEASE.md b/RELEASE.md
index 0dfdb8681..97ea661f8 100644
--- a/RELEASE.md
+++ b/RELEASE.md
@@ -109,11 +109,11 @@ Promoting the images basically means that images, that were pushed to staging co
 
 - Create a branch in your fork, named as the issue number for this release
 
-- In the related branch, of your fork, edit the file /k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml.
+- In the related branch, of your fork, edit the file /registry.k8s.io/images/k8s-staging-ingress-nginx/images.yaml.
 
 - For making it easier, you can edit your branch directly in the browser. But be careful about making any mistake.
 
-- Insert the sha(s) & the tag(s), in a new line, in this file [Project kubernetes/k8s.io Ingress-Nginx-Controller Images](https://github.com/kubernetes/k8s.io/blob/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml)  Look at this [example PR and the diff](https://github.com/kubernetes/k8s.io/pull/2536) to see how it was done before
+- Insert the sha(s) & the tag(s), in a new line, in this file [Project kubernetes/k8s.io Ingress-Nginx-Controller Images](https://github.com/kubernetes/k8s.io/blob/main/registry.k8s.io/images/k8s-staging-ingress-nginx/images.yaml)  Look at this [example PR and the diff](https://github.com/kubernetes/k8s.io/pull/2536) to see how it was done before
 
 - Save and commit
 
@@ -261,7 +261,7 @@ Promoting the images basically means that images, that were pushed to staging co
   - the "Description"
   - the "PRs list"
 - Look at the previous content to understand what the 3 components look like.
-- You can easily get the "Image" from a yaml manifest but be sure to look at a manifest in your git clone now and not the upstream on github. This is because, if you are following this documentation, then you generated manifests with new updated digest for the image, in step 4e above. You also most likely promoted the new image in a step above. Look at the previous release section in Changelog.md. The format looks like `k8s.gcr.io/ingress-nginx/controller:.......`. One example of a yaml file to look at is /deploy/static/provider/baremetal/deploy.yaml (in your git clone branch and not on the upstream).
+- You can easily get the "Image" from a yaml manifest but be sure to look at a manifest in your git clone now and not the upstream on github. This is because, if you are following this documentation, then you generated manifests with new updated digest for the image, in step 4e above. You also most likely promoted the new image in a step above. Look at the previous release section in Changelog.md. The format looks like `registry.k8s.io/ingress-nginx/controller:.......`. One example of a yaml file to look at is /deploy/static/provider/baremetal/deploy.yaml (in your git clone branch and not on the upstream).
 - Next, you need to have a good overview of the changes introduced in this release and based on that you write a description. Look at previous descriptions. Ask the ingress-nginx-dev channel if required.
 - And then you need to add a list of the PRs merged, since the previous release.
 - One process to generate this list of PRs is already described above in step 4c. So if you are following this document, then you have done this already and very likely have retained the file containing the list of PRs, in the format that is needed.
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 355f490db..2254a73a5 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -37,7 +37,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220524-g8963ed17e@sha256:4fbcbeebd4c24587699b027ad0f0aa7cd9d76b58177a3b50c228bae8141bcf95}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20220524-g8963ed17e@sha256:4fbcbeebd4c24587699b027ad0f0aa7cd9d76b58177a3b50c228bae8141bcf95}
 
 DOCKER_OPTS=${DOCKER_OPTS:-}
 DOCKER_IN_DOCKER_ENABLED=${DOCKER_IN_DOCKER_ENABLED:-}
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 695d1f395..0f2d3b37a 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.1.3
+version: 4.1.4
 appVersion: 1.2.1
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 5d45c095f..c513f8135 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.1.3](https://img.shields.io/badge/Version-4.1.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.1](https://img.shields.io/badge/AppVersion-1.2.1-informational?style=flat-square)
+![Version: 4.1.4](https://img.shields.io/badge/Version-4.1.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.1](https://img.shields.io/badge/AppVersion-1.2.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -254,7 +254,7 @@ Kubernetes: `>=1.19.0-0`
 | controller.admissionWebhooks.patch.image.digest | string | `"sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
-| controller.admissionWebhooks.patch.image.registry | string | `"k8s.gcr.io"` |  |
+| controller.admissionWebhooks.patch.image.registry | string | `"registry.k8s.io"` |  |
 | controller.admissionWebhooks.patch.image.tag | string | `"v1.1.1"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
@@ -311,7 +311,7 @@ Kubernetes: `>=1.19.0-0`
 | controller.image.digestChroot | string | `"sha256:d301551cf62bc3fb75c69fa56f7aa1d9e87b5079333adaf38afe84d9b7439355"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
-| controller.image.registry | string | `"k8s.gcr.io"` |  |
+| controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
 | controller.image.tag | string | `"v1.2.1"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
@@ -441,7 +441,7 @@ Kubernetes: `>=1.19.0-0`
 | defaultBackend.image.image | string | `"defaultbackend-amd64"` |  |
 | defaultBackend.image.pullPolicy | string | `"IfNotPresent"` |  |
 | defaultBackend.image.readOnlyRootFilesystem | bool | `true` |  |
-| defaultBackend.image.registry | string | `"k8s.gcr.io"` |  |
+| defaultBackend.image.registry | string | `"registry.k8s.io"` |  |
 | defaultBackend.image.runAsNonRoot | bool | `true` |  |
 | defaultBackend.image.runAsUser | int | `65534` |  |
 | defaultBackend.image.tag | string | `"1.5"` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index d204b2583..695f23b06 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -18,7 +18,7 @@ controller:
   image:
     ## Keep false as default for now!
     chroot: false
-    registry: k8s.gcr.io
+    registry: registry.k8s.io
     image: ingress-nginx/controller
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
@@ -580,7 +580,7 @@ controller:
   extraModules: []
   ## Modules, which are mounted into the core nginx image
   # - name: opentelemetry
-  #   image: k8s.gcr.io/ingress-nginx/opentelemetry:v20220415-controller-v1.2.0-beta.0-2-g81c2afd97@sha256:ce61e2cf0b347dffebb2dcbf57c33891d2217c1bad9c0959c878e5be671ef941
+  #   image: registry.k8s.io/ingress-nginx/opentelemetry:v20220415-controller-v1.2.0-beta.0-2-g81c2afd97@sha256:ce61e2cf0b347dffebb2dcbf57c33891d2217c1bad9c0959c878e5be671ef941
   #
   # The image must contain a `/usr/local/bin/init_module.sh` executable, which
   # will be executed as initContainers, to move its config files within the
@@ -631,7 +631,7 @@ controller:
     patch:
       enabled: true
       image:
-        registry: k8s.gcr.io
+        registry: registry.k8s.io
         image: ingress-nginx/kube-webhook-certgen
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
@@ -758,7 +758,7 @@ defaultBackend:
 
   name: defaultbackend
   image:
-    registry: k8s.gcr.io
+    registry: registry.k8s.io
     image: defaultbackend-amd64
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
diff --git a/deploy/static/provider/aws/1.19/deploy.yaml b/deploy/static/provider/aws/1.19/deploy.yaml
index fb7624911..daf20ebd6 100644
--- a/deploy/static/provider/aws/1.19/deploy.yaml
+++ b/deploy/static/provider/aws/1.19/deploy.yaml
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -508,7 +508,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -557,7 +557,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/1.20/deploy.yaml b/deploy/static/provider/aws/1.20/deploy.yaml
index b743df75c..6fae0ae8b 100644
--- a/deploy/static/provider/aws/1.20/deploy.yaml
+++ b/deploy/static/provider/aws/1.20/deploy.yaml
@@ -414,7 +414,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -511,7 +511,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -560,7 +560,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/1.21/deploy.yaml b/deploy/static/provider/aws/1.21/deploy.yaml
index bc8e5d1b7..f78b0e3d3 100644
--- a/deploy/static/provider/aws/1.21/deploy.yaml
+++ b/deploy/static/provider/aws/1.21/deploy.yaml
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -514,7 +514,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -563,7 +563,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/1.22/deploy.yaml b/deploy/static/provider/aws/1.22/deploy.yaml
index bc8e5d1b7..f78b0e3d3 100644
--- a/deploy/static/provider/aws/1.22/deploy.yaml
+++ b/deploy/static/provider/aws/1.22/deploy.yaml
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -514,7 +514,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -563,7 +563,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/1.23/deploy.yaml b/deploy/static/provider/aws/1.23/deploy.yaml
index bc8e5d1b7..f78b0e3d3 100644
--- a/deploy/static/provider/aws/1.23/deploy.yaml
+++ b/deploy/static/provider/aws/1.23/deploy.yaml
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -514,7 +514,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -563,7 +563,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index e04e7831f..6fae0ae8b 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -1,1242 +1,621 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Namespace
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resourceNames:
-#GENERATED FOR K8S 1.20
   - ingress-controller-leader
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 data:
-#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
-#GENERATED FOR K8S 1.20
 kind: ConfigMap
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   annotations:
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-type: nlb
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   externalTrafficPolicy: Local
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: http
-#GENERATED FOR K8S 1.20
     name: http
-#GENERATED FOR K8S 1.20
     port: 80
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: http
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: https
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: LoadBalancer
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https-webhook
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     targetPort: webhook
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: ClusterIP
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
-#GENERATED FOR K8S 1.20
 kind: Deployment
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   minReadySeconds: 0
-#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     matchLabels:
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
-#GENERATED FOR K8S 1.20
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
-#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
-#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
-#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
-#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAME
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
-#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         lifecycle:
-#GENERATED FOR K8S 1.20
           preStop:
-#GENERATED FOR K8S 1.20
             exec:
-#GENERATED FOR K8S 1.20
               command:
-#GENERATED FOR K8S 1.20
               - /wait-shutdown
-#GENERATED FOR K8S 1.20
         livenessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 5
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         name: controller
-#GENERATED FOR K8S 1.20
         ports:
-#GENERATED FOR K8S 1.20
         - containerPort: 80
-#GENERATED FOR K8S 1.20
           name: http
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 443
-#GENERATED FOR K8S 1.20
           name: https
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 8443
-#GENERATED FOR K8S 1.20
           name: webhook
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         readinessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 3
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         resources:
-#GENERATED FOR K8S 1.20
           requests:
-#GENERATED FOR K8S 1.20
             cpu: 100m
-#GENERATED FOR K8S 1.20
             memory: 90Mi
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
-#GENERATED FOR K8S 1.20
           capabilities:
-#GENERATED FOR K8S 1.20
             add:
-#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
-#GENERATED FOR K8S 1.20
             drop:
-#GENERATED FOR K8S 1.20
             - ALL
-#GENERATED FOR K8S 1.20
           runAsUser: 101
-#GENERATED FOR K8S 1.20
         volumeMounts:
-#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
-#GENERATED FOR K8S 1.20
           name: webhook-cert
-#GENERATED FOR K8S 1.20
           readOnly: true
-#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
-#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 300
-#GENERATED FOR K8S 1.20
       volumes:
-#GENERATED FOR K8S 1.20
       - name: webhook-cert
-#GENERATED FOR K8S 1.20
         secret:
-#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - create
-#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: create
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - patch
-#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --patch-mutating=false
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: patch
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: IngressClass
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 webhooks:
-#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
-#GENERATED FOR K8S 1.20
   - v1
-#GENERATED FOR K8S 1.20
   clientConfig:
-#GENERATED FOR K8S 1.20
     service:
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
-#GENERATED FOR K8S 1.20
   failurePolicy: Fail
-#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
-#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
-#GENERATED FOR K8S 1.20
   rules:
-#GENERATED FOR K8S 1.20
   - apiGroups:
-#GENERATED FOR K8S 1.20
     - networking.k8s.io
-#GENERATED FOR K8S 1.20
     apiVersions:
-#GENERATED FOR K8S 1.20
     - v1
-#GENERATED FOR K8S 1.20
     operations:
-#GENERATED FOR K8S 1.20
     - CREATE
-#GENERATED FOR K8S 1.20
     - UPDATE
-#GENERATED FOR K8S 1.20
     resources:
-#GENERATED FOR K8S 1.20
     - ingresses
-#GENERATED FOR K8S 1.20
   sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
index 41fb24404..4a49884a7 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
@@ -420,7 +420,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -520,7 +520,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -569,7 +569,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
index 69691dc68..ec286b9df 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
@@ -423,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -572,7 +572,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
index 06b7ba878..1c6c702db 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
@@ -426,7 +426,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,7 +526,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -575,7 +575,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
index 06b7ba878..1c6c702db 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
@@ -426,7 +426,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,7 +526,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -575,7 +575,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
index 06b7ba878..1c6c702db 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
@@ -426,7 +426,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,7 +526,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -575,7 +575,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 539ff6b42..ec286b9df 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -1,1266 +1,633 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Namespace
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resourceNames:
-#GENERATED FOR K8S 1.20
   - ingress-controller-leader
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 data:
-#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
-#GENERATED FOR K8S 1.20
   http-snippet: |
-#GENERATED FOR K8S 1.20
     server {
-#GENERATED FOR K8S 1.20
       listen 2443;
-#GENERATED FOR K8S 1.20
       return 308 https://$host$request_uri;
-#GENERATED FOR K8S 1.20
     }
-#GENERATED FOR K8S 1.20
   proxy-real-ip-cidr: XXX.XXX.XXX/XX
-#GENERATED FOR K8S 1.20
   use-forwarded-headers: "true"
-#GENERATED FOR K8S 1.20
 kind: ConfigMap
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   annotations:
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/aws-load-balancer-type: nlb
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   externalTrafficPolicy: Local
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: http
-#GENERATED FOR K8S 1.20
     name: http
-#GENERATED FOR K8S 1.20
     port: 80
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: tohttps
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: http
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: LoadBalancer
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https-webhook
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     targetPort: webhook
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: ClusterIP
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
-#GENERATED FOR K8S 1.20
 kind: Deployment
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   minReadySeconds: 0
-#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     matchLabels:
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
-#GENERATED FOR K8S 1.20
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
-#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
-#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
-#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
-#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAME
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
-#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         lifecycle:
-#GENERATED FOR K8S 1.20
           preStop:
-#GENERATED FOR K8S 1.20
             exec:
-#GENERATED FOR K8S 1.20
               command:
-#GENERATED FOR K8S 1.20
               - /wait-shutdown
-#GENERATED FOR K8S 1.20
         livenessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 5
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         name: controller
-#GENERATED FOR K8S 1.20
         ports:
-#GENERATED FOR K8S 1.20
         - containerPort: 80
-#GENERATED FOR K8S 1.20
           name: http
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 80
-#GENERATED FOR K8S 1.20
           name: https
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 2443
-#GENERATED FOR K8S 1.20
           name: tohttps
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 8443
-#GENERATED FOR K8S 1.20
           name: webhook
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         readinessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 3
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         resources:
-#GENERATED FOR K8S 1.20
           requests:
-#GENERATED FOR K8S 1.20
             cpu: 100m
-#GENERATED FOR K8S 1.20
             memory: 90Mi
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
-#GENERATED FOR K8S 1.20
           capabilities:
-#GENERATED FOR K8S 1.20
             add:
-#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
-#GENERATED FOR K8S 1.20
             drop:
-#GENERATED FOR K8S 1.20
             - ALL
-#GENERATED FOR K8S 1.20
           runAsUser: 101
-#GENERATED FOR K8S 1.20
         volumeMounts:
-#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
-#GENERATED FOR K8S 1.20
           name: webhook-cert
-#GENERATED FOR K8S 1.20
           readOnly: true
-#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
-#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 300
-#GENERATED FOR K8S 1.20
       volumes:
-#GENERATED FOR K8S 1.20
       - name: webhook-cert
-#GENERATED FOR K8S 1.20
         secret:
-#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - create
-#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: create
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - patch
-#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --patch-mutating=false
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: patch
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: IngressClass
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 webhooks:
-#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
-#GENERATED FOR K8S 1.20
   - v1
-#GENERATED FOR K8S 1.20
   clientConfig:
-#GENERATED FOR K8S 1.20
     service:
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
-#GENERATED FOR K8S 1.20
   failurePolicy: Fail
-#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
-#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
-#GENERATED FOR K8S 1.20
   rules:
-#GENERATED FOR K8S 1.20
   - apiGroups:
-#GENERATED FOR K8S 1.20
     - networking.k8s.io
-#GENERATED FOR K8S 1.20
     apiVersions:
-#GENERATED FOR K8S 1.20
     - v1
-#GENERATED FOR K8S 1.20
     operations:
-#GENERATED FOR K8S 1.20
     - CREATE
-#GENERATED FOR K8S 1.20
     - UPDATE
-#GENERATED FOR K8S 1.20
     resources:
-#GENERATED FOR K8S 1.20
     - ingresses
-#GENERATED FOR K8S 1.20
   sideEffects: None
diff --git a/deploy/static/provider/baremetal/1.19/deploy.yaml b/deploy/static/provider/baremetal/1.19/deploy.yaml
index 1f6a394d9..eab63a107 100644
--- a/deploy/static/provider/baremetal/1.19/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.19/deploy.yaml
@@ -405,7 +405,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -502,7 +502,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -551,7 +551,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/baremetal/1.20/deploy.yaml b/deploy/static/provider/baremetal/1.20/deploy.yaml
index c2120f08d..f53f5c199 100644
--- a/deploy/static/provider/baremetal/1.20/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.20/deploy.yaml
@@ -408,7 +408,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -505,7 +505,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -554,7 +554,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/baremetal/1.21/deploy.yaml b/deploy/static/provider/baremetal/1.21/deploy.yaml
index c0b077e79..904063e64 100644
--- a/deploy/static/provider/baremetal/1.21/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.21/deploy.yaml
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -508,7 +508,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -557,7 +557,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/baremetal/1.22/deploy.yaml b/deploy/static/provider/baremetal/1.22/deploy.yaml
index c0b077e79..904063e64 100644
--- a/deploy/static/provider/baremetal/1.22/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.22/deploy.yaml
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -508,7 +508,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -557,7 +557,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/baremetal/1.23/deploy.yaml b/deploy/static/provider/baremetal/1.23/deploy.yaml
index c0b077e79..904063e64 100644
--- a/deploy/static/provider/baremetal/1.23/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.23/deploy.yaml
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -508,7 +508,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -557,7 +557,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index adcdeccc0..f53f5c199 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -1,1230 +1,615 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Namespace
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resourceNames:
-#GENERATED FOR K8S 1.20
   - ingress-controller-leader
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 data:
-#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
-#GENERATED FOR K8S 1.20
 kind: ConfigMap
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: http
-#GENERATED FOR K8S 1.20
     name: http
-#GENERATED FOR K8S 1.20
     port: 80
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: http
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: https
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: NodePort
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https-webhook
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     targetPort: webhook
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: ClusterIP
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
-#GENERATED FOR K8S 1.20
 kind: Deployment
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   minReadySeconds: 0
-#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     matchLabels:
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
-#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
-#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
-#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
-#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
-#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAME
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
-#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         lifecycle:
-#GENERATED FOR K8S 1.20
           preStop:
-#GENERATED FOR K8S 1.20
             exec:
-#GENERATED FOR K8S 1.20
               command:
-#GENERATED FOR K8S 1.20
               - /wait-shutdown
-#GENERATED FOR K8S 1.20
         livenessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 5
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         name: controller
-#GENERATED FOR K8S 1.20
         ports:
-#GENERATED FOR K8S 1.20
         - containerPort: 80
-#GENERATED FOR K8S 1.20
           name: http
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 443
-#GENERATED FOR K8S 1.20
           name: https
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 8443
-#GENERATED FOR K8S 1.20
           name: webhook
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         readinessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 3
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         resources:
-#GENERATED FOR K8S 1.20
           requests:
-#GENERATED FOR K8S 1.20
             cpu: 100m
-#GENERATED FOR K8S 1.20
             memory: 90Mi
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
-#GENERATED FOR K8S 1.20
           capabilities:
-#GENERATED FOR K8S 1.20
             add:
-#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
-#GENERATED FOR K8S 1.20
             drop:
-#GENERATED FOR K8S 1.20
             - ALL
-#GENERATED FOR K8S 1.20
           runAsUser: 101
-#GENERATED FOR K8S 1.20
         volumeMounts:
-#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
-#GENERATED FOR K8S 1.20
           name: webhook-cert
-#GENERATED FOR K8S 1.20
           readOnly: true
-#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
-#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 300
-#GENERATED FOR K8S 1.20
       volumes:
-#GENERATED FOR K8S 1.20
       - name: webhook-cert
-#GENERATED FOR K8S 1.20
         secret:
-#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - create
-#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: create
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - patch
-#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --patch-mutating=false
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: patch
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: IngressClass
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 webhooks:
-#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
-#GENERATED FOR K8S 1.20
   - v1
-#GENERATED FOR K8S 1.20
   clientConfig:
-#GENERATED FOR K8S 1.20
     service:
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
-#GENERATED FOR K8S 1.20
   failurePolicy: Fail
-#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
-#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
-#GENERATED FOR K8S 1.20
   rules:
-#GENERATED FOR K8S 1.20
   - apiGroups:
-#GENERATED FOR K8S 1.20
     - networking.k8s.io
-#GENERATED FOR K8S 1.20
     apiVersions:
-#GENERATED FOR K8S 1.20
     - v1
-#GENERATED FOR K8S 1.20
     operations:
-#GENERATED FOR K8S 1.20
     - CREATE
-#GENERATED FOR K8S 1.20
     - UPDATE
-#GENERATED FOR K8S 1.20
     resources:
-#GENERATED FOR K8S 1.20
     - ingresses
-#GENERATED FOR K8S 1.20
   sideEffects: None
diff --git a/deploy/static/provider/cloud/1.19/deploy.yaml b/deploy/static/provider/cloud/1.19/deploy.yaml
index 534b773fa..ff517ba27 100644
--- a/deploy/static/provider/cloud/1.19/deploy.yaml
+++ b/deploy/static/provider/cloud/1.19/deploy.yaml
@@ -407,7 +407,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -504,7 +504,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -553,7 +553,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/cloud/1.20/deploy.yaml b/deploy/static/provider/cloud/1.20/deploy.yaml
index 1302adb77..2fa3fc858 100644
--- a/deploy/static/provider/cloud/1.20/deploy.yaml
+++ b/deploy/static/provider/cloud/1.20/deploy.yaml
@@ -410,7 +410,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -507,7 +507,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -556,7 +556,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/cloud/1.21/deploy.yaml b/deploy/static/provider/cloud/1.21/deploy.yaml
index c6391037e..6cc44e56e 100644
--- a/deploy/static/provider/cloud/1.21/deploy.yaml
+++ b/deploy/static/provider/cloud/1.21/deploy.yaml
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -510,7 +510,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -559,7 +559,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/cloud/1.22/deploy.yaml b/deploy/static/provider/cloud/1.22/deploy.yaml
index c6391037e..6cc44e56e 100644
--- a/deploy/static/provider/cloud/1.22/deploy.yaml
+++ b/deploy/static/provider/cloud/1.22/deploy.yaml
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -510,7 +510,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -559,7 +559,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/cloud/1.23/deploy.yaml b/deploy/static/provider/cloud/1.23/deploy.yaml
index c6391037e..6cc44e56e 100644
--- a/deploy/static/provider/cloud/1.23/deploy.yaml
+++ b/deploy/static/provider/cloud/1.23/deploy.yaml
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -510,7 +510,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -559,7 +559,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index eb2cfd99b..2fa3fc858 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -1,1234 +1,617 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Namespace
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resourceNames:
-#GENERATED FOR K8S 1.20
   - ingress-controller-leader
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 data:
-#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
-#GENERATED FOR K8S 1.20
 kind: ConfigMap
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   externalTrafficPolicy: Local
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: http
-#GENERATED FOR K8S 1.20
     name: http
-#GENERATED FOR K8S 1.20
     port: 80
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: http
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: https
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: LoadBalancer
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https-webhook
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     targetPort: webhook
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: ClusterIP
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
-#GENERATED FOR K8S 1.20
 kind: Deployment
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   minReadySeconds: 0
-#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     matchLabels:
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
-#GENERATED FOR K8S 1.20
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
-#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
-#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
-#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
-#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAME
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
-#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         lifecycle:
-#GENERATED FOR K8S 1.20
           preStop:
-#GENERATED FOR K8S 1.20
             exec:
-#GENERATED FOR K8S 1.20
               command:
-#GENERATED FOR K8S 1.20
               - /wait-shutdown
-#GENERATED FOR K8S 1.20
         livenessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 5
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         name: controller
-#GENERATED FOR K8S 1.20
         ports:
-#GENERATED FOR K8S 1.20
         - containerPort: 80
-#GENERATED FOR K8S 1.20
           name: http
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 443
-#GENERATED FOR K8S 1.20
           name: https
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 8443
-#GENERATED FOR K8S 1.20
           name: webhook
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         readinessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 3
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         resources:
-#GENERATED FOR K8S 1.20
           requests:
-#GENERATED FOR K8S 1.20
             cpu: 100m
-#GENERATED FOR K8S 1.20
             memory: 90Mi
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
-#GENERATED FOR K8S 1.20
           capabilities:
-#GENERATED FOR K8S 1.20
             add:
-#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
-#GENERATED FOR K8S 1.20
             drop:
-#GENERATED FOR K8S 1.20
             - ALL
-#GENERATED FOR K8S 1.20
           runAsUser: 101
-#GENERATED FOR K8S 1.20
         volumeMounts:
-#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
-#GENERATED FOR K8S 1.20
           name: webhook-cert
-#GENERATED FOR K8S 1.20
           readOnly: true
-#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
-#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 300
-#GENERATED FOR K8S 1.20
       volumes:
-#GENERATED FOR K8S 1.20
       - name: webhook-cert
-#GENERATED FOR K8S 1.20
         secret:
-#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - create
-#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: create
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - patch
-#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --patch-mutating=false
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: patch
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: IngressClass
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 webhooks:
-#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
-#GENERATED FOR K8S 1.20
   - v1
-#GENERATED FOR K8S 1.20
   clientConfig:
-#GENERATED FOR K8S 1.20
     service:
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
-#GENERATED FOR K8S 1.20
   failurePolicy: Fail
-#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
-#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
-#GENERATED FOR K8S 1.20
   rules:
-#GENERATED FOR K8S 1.20
   - apiGroups:
-#GENERATED FOR K8S 1.20
     - networking.k8s.io
-#GENERATED FOR K8S 1.20
     apiVersions:
-#GENERATED FOR K8S 1.20
     - v1
-#GENERATED FOR K8S 1.20
     operations:
-#GENERATED FOR K8S 1.20
     - CREATE
-#GENERATED FOR K8S 1.20
     - UPDATE
-#GENERATED FOR K8S 1.20
     resources:
-#GENERATED FOR K8S 1.20
     - ingresses
-#GENERATED FOR K8S 1.20
   sideEffects: None
diff --git a/deploy/static/provider/do/1.19/deploy.yaml b/deploy/static/provider/do/1.19/deploy.yaml
index c2bb8f546..19cd50261 100644
--- a/deploy/static/provider/do/1.19/deploy.yaml
+++ b/deploy/static/provider/do/1.19/deploy.yaml
@@ -410,7 +410,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -507,7 +507,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -556,7 +556,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/do/1.20/deploy.yaml b/deploy/static/provider/do/1.20/deploy.yaml
index 96392fa8c..58a025a84 100644
--- a/deploy/static/provider/do/1.20/deploy.yaml
+++ b/deploy/static/provider/do/1.20/deploy.yaml
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -510,7 +510,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -559,7 +559,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/do/1.21/deploy.yaml b/deploy/static/provider/do/1.21/deploy.yaml
index 43c05ad97..664473a53 100644
--- a/deploy/static/provider/do/1.21/deploy.yaml
+++ b/deploy/static/provider/do/1.21/deploy.yaml
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -513,7 +513,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -562,7 +562,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/do/1.22/deploy.yaml b/deploy/static/provider/do/1.22/deploy.yaml
index 43c05ad97..664473a53 100644
--- a/deploy/static/provider/do/1.22/deploy.yaml
+++ b/deploy/static/provider/do/1.22/deploy.yaml
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -513,7 +513,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -562,7 +562,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/do/1.23/deploy.yaml b/deploy/static/provider/do/1.23/deploy.yaml
index 43c05ad97..664473a53 100644
--- a/deploy/static/provider/do/1.23/deploy.yaml
+++ b/deploy/static/provider/do/1.23/deploy.yaml
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -513,7 +513,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -562,7 +562,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index e331fab0a..58a025a84 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -1,1242 +1,621 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Namespace
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resourceNames:
-#GENERATED FOR K8S 1.20
   - ingress-controller-leader
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 data:
-#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
-#GENERATED FOR K8S 1.20
   use-proxy-protocol: "true"
-#GENERATED FOR K8S 1.20
 kind: ConfigMap
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   annotations:
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   externalTrafficPolicy: Local
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: http
-#GENERATED FOR K8S 1.20
     name: http
-#GENERATED FOR K8S 1.20
     port: 80
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: http
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: https
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: LoadBalancer
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https-webhook
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     targetPort: webhook
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: ClusterIP
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
-#GENERATED FOR K8S 1.20
 kind: Deployment
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   minReadySeconds: 0
-#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     matchLabels:
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
-#GENERATED FOR K8S 1.20
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
-#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
-#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
-#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
-#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAME
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
-#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         lifecycle:
-#GENERATED FOR K8S 1.20
           preStop:
-#GENERATED FOR K8S 1.20
             exec:
-#GENERATED FOR K8S 1.20
               command:
-#GENERATED FOR K8S 1.20
               - /wait-shutdown
-#GENERATED FOR K8S 1.20
         livenessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 5
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         name: controller
-#GENERATED FOR K8S 1.20
         ports:
-#GENERATED FOR K8S 1.20
         - containerPort: 80
-#GENERATED FOR K8S 1.20
           name: http
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 443
-#GENERATED FOR K8S 1.20
           name: https
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 8443
-#GENERATED FOR K8S 1.20
           name: webhook
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         readinessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 3
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         resources:
-#GENERATED FOR K8S 1.20
           requests:
-#GENERATED FOR K8S 1.20
             cpu: 100m
-#GENERATED FOR K8S 1.20
             memory: 90Mi
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
-#GENERATED FOR K8S 1.20
           capabilities:
-#GENERATED FOR K8S 1.20
             add:
-#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
-#GENERATED FOR K8S 1.20
             drop:
-#GENERATED FOR K8S 1.20
             - ALL
-#GENERATED FOR K8S 1.20
           runAsUser: 101
-#GENERATED FOR K8S 1.20
         volumeMounts:
-#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
-#GENERATED FOR K8S 1.20
           name: webhook-cert
-#GENERATED FOR K8S 1.20
           readOnly: true
-#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
-#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 300
-#GENERATED FOR K8S 1.20
       volumes:
-#GENERATED FOR K8S 1.20
       - name: webhook-cert
-#GENERATED FOR K8S 1.20
         secret:
-#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - create
-#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: create
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - patch
-#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --patch-mutating=false
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: patch
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: IngressClass
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 webhooks:
-#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
-#GENERATED FOR K8S 1.20
   - v1
-#GENERATED FOR K8S 1.20
   clientConfig:
-#GENERATED FOR K8S 1.20
     service:
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
-#GENERATED FOR K8S 1.20
   failurePolicy: Fail
-#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
-#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
-#GENERATED FOR K8S 1.20
   rules:
-#GENERATED FOR K8S 1.20
   - apiGroups:
-#GENERATED FOR K8S 1.20
     - networking.k8s.io
-#GENERATED FOR K8S 1.20
     apiVersions:
-#GENERATED FOR K8S 1.20
     - v1
-#GENERATED FOR K8S 1.20
     operations:
-#GENERATED FOR K8S 1.20
     - CREATE
-#GENERATED FOR K8S 1.20
     - UPDATE
-#GENERATED FOR K8S 1.20
     resources:
-#GENERATED FOR K8S 1.20
     - ingresses
-#GENERATED FOR K8S 1.20
   sideEffects: None
-#GENERATED FOR K8S 1.20
   timeoutSeconds: 29
diff --git a/deploy/static/provider/exoscale/1.19/deploy.yaml b/deploy/static/provider/exoscale/1.19/deploy.yaml
index e7df3b575..42e8c47c9 100644
--- a/deploy/static/provider/exoscale/1.19/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.19/deploy.yaml
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -514,7 +514,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -563,7 +563,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/exoscale/1.20/deploy.yaml b/deploy/static/provider/exoscale/1.20/deploy.yaml
index 5c0f8a806..7e29aefa9 100644
--- a/deploy/static/provider/exoscale/1.20/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.20/deploy.yaml
@@ -420,7 +420,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -566,7 +566,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/exoscale/1.21/deploy.yaml b/deploy/static/provider/exoscale/1.21/deploy.yaml
index bd1e5b769..06bddab91 100644
--- a/deploy/static/provider/exoscale/1.21/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.21/deploy.yaml
@@ -423,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -520,7 +520,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -569,7 +569,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/exoscale/1.22/deploy.yaml b/deploy/static/provider/exoscale/1.22/deploy.yaml
index bd1e5b769..06bddab91 100644
--- a/deploy/static/provider/exoscale/1.22/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.22/deploy.yaml
@@ -423,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -520,7 +520,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -569,7 +569,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/exoscale/1.23/deploy.yaml b/deploy/static/provider/exoscale/1.23/deploy.yaml
index bd1e5b769..06bddab91 100644
--- a/deploy/static/provider/exoscale/1.23/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.23/deploy.yaml
@@ -423,7 +423,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -520,7 +520,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -569,7 +569,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index b5a1feb2d..7e29aefa9 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -1,1254 +1,627 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Namespace
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resourceNames:
-#GENERATED FOR K8S 1.20
   - ingress-controller-leader
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 data:
-#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
-#GENERATED FOR K8S 1.20
 kind: ConfigMap
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   annotations:
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
-#GENERATED FOR K8S 1.20
       load balancer
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-name: nginx-ingress-controller
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: 3s
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: /
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: source-hash
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   externalTrafficPolicy: Local
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: http
-#GENERATED FOR K8S 1.20
     name: http
-#GENERATED FOR K8S 1.20
     port: 80
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: http
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: https
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: LoadBalancer
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https-webhook
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     targetPort: webhook
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: ClusterIP
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
-#GENERATED FOR K8S 1.20
 kind: DaemonSet
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   minReadySeconds: 0
-#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     matchLabels:
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
-#GENERATED FOR K8S 1.20
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
-#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
-#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
-#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
-#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAME
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
-#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         lifecycle:
-#GENERATED FOR K8S 1.20
           preStop:
-#GENERATED FOR K8S 1.20
             exec:
-#GENERATED FOR K8S 1.20
               command:
-#GENERATED FOR K8S 1.20
               - /wait-shutdown
-#GENERATED FOR K8S 1.20
         livenessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 5
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         name: controller
-#GENERATED FOR K8S 1.20
         ports:
-#GENERATED FOR K8S 1.20
         - containerPort: 80
-#GENERATED FOR K8S 1.20
           name: http
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 443
-#GENERATED FOR K8S 1.20
           name: https
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 8443
-#GENERATED FOR K8S 1.20
           name: webhook
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         readinessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 3
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         resources:
-#GENERATED FOR K8S 1.20
           requests:
-#GENERATED FOR K8S 1.20
             cpu: 100m
-#GENERATED FOR K8S 1.20
             memory: 90Mi
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
-#GENERATED FOR K8S 1.20
           capabilities:
-#GENERATED FOR K8S 1.20
             add:
-#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
-#GENERATED FOR K8S 1.20
             drop:
-#GENERATED FOR K8S 1.20
             - ALL
-#GENERATED FOR K8S 1.20
           runAsUser: 101
-#GENERATED FOR K8S 1.20
         volumeMounts:
-#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
-#GENERATED FOR K8S 1.20
           name: webhook-cert
-#GENERATED FOR K8S 1.20
           readOnly: true
-#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
-#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 300
-#GENERATED FOR K8S 1.20
       volumes:
-#GENERATED FOR K8S 1.20
       - name: webhook-cert
-#GENERATED FOR K8S 1.20
         secret:
-#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - create
-#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: create
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - patch
-#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --patch-mutating=false
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: patch
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: IngressClass
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 webhooks:
-#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
-#GENERATED FOR K8S 1.20
   - v1
-#GENERATED FOR K8S 1.20
   clientConfig:
-#GENERATED FOR K8S 1.20
     service:
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
-#GENERATED FOR K8S 1.20
   failurePolicy: Fail
-#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
-#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
-#GENERATED FOR K8S 1.20
   rules:
-#GENERATED FOR K8S 1.20
   - apiGroups:
-#GENERATED FOR K8S 1.20
     - networking.k8s.io
-#GENERATED FOR K8S 1.20
     apiVersions:
-#GENERATED FOR K8S 1.20
     - v1
-#GENERATED FOR K8S 1.20
     operations:
-#GENERATED FOR K8S 1.20
     - CREATE
-#GENERATED FOR K8S 1.20
     - UPDATE
-#GENERATED FOR K8S 1.20
     resources:
-#GENERATED FOR K8S 1.20
     - ingresses
-#GENERATED FOR K8S 1.20
   sideEffects: None
diff --git a/deploy/static/provider/kind/1.19/deploy.yaml b/deploy/static/provider/kind/1.19/deploy.yaml
index a3fba5c2e..f5f931771 100644
--- a/deploy/static/provider/kind/1.19/deploy.yaml
+++ b/deploy/static/provider/kind/1.19/deploy.yaml
@@ -411,7 +411,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -567,7 +567,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/kind/1.20/deploy.yaml b/deploy/static/provider/kind/1.20/deploy.yaml
index cec547011..63f8dff33 100644
--- a/deploy/static/provider/kind/1.20/deploy.yaml
+++ b/deploy/static/provider/kind/1.20/deploy.yaml
@@ -414,7 +414,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,7 +521,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -570,7 +570,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/kind/1.21/deploy.yaml b/deploy/static/provider/kind/1.21/deploy.yaml
index d388c4548..e48d32dc6 100644
--- a/deploy/static/provider/kind/1.21/deploy.yaml
+++ b/deploy/static/provider/kind/1.21/deploy.yaml
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -573,7 +573,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/kind/1.22/deploy.yaml b/deploy/static/provider/kind/1.22/deploy.yaml
index d388c4548..e48d32dc6 100644
--- a/deploy/static/provider/kind/1.22/deploy.yaml
+++ b/deploy/static/provider/kind/1.22/deploy.yaml
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -573,7 +573,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/kind/1.23/deploy.yaml b/deploy/static/provider/kind/1.23/deploy.yaml
index d388c4548..e48d32dc6 100644
--- a/deploy/static/provider/kind/1.23/deploy.yaml
+++ b/deploy/static/provider/kind/1.23/deploy.yaml
@@ -417,7 +417,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -573,7 +573,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 712af7117..63f8dff33 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -1,1262 +1,631 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Namespace
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resourceNames:
-#GENERATED FOR K8S 1.20
   - ingress-controller-leader
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 data:
-#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
-#GENERATED FOR K8S 1.20
 kind: ConfigMap
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: http
-#GENERATED FOR K8S 1.20
     name: http
-#GENERATED FOR K8S 1.20
     port: 80
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: http
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: https
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: NodePort
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https-webhook
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     targetPort: webhook
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: ClusterIP
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
-#GENERATED FOR K8S 1.20
 kind: Deployment
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   minReadySeconds: 0
-#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     matchLabels:
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   strategy:
-#GENERATED FOR K8S 1.20
     rollingUpdate:
-#GENERATED FOR K8S 1.20
       maxUnavailable: 1
-#GENERATED FOR K8S 1.20
     type: RollingUpdate
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
-#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
-#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
-#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
-#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
-#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
-#GENERATED FOR K8S 1.20
         - --watch-ingress-without-class=true
-#GENERATED FOR K8S 1.20
         - --publish-status-address=localhost
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAME
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
-#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         lifecycle:
-#GENERATED FOR K8S 1.20
           preStop:
-#GENERATED FOR K8S 1.20
             exec:
-#GENERATED FOR K8S 1.20
               command:
-#GENERATED FOR K8S 1.20
               - /wait-shutdown
-#GENERATED FOR K8S 1.20
         livenessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 5
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         name: controller
-#GENERATED FOR K8S 1.20
         ports:
-#GENERATED FOR K8S 1.20
         - containerPort: 80
-#GENERATED FOR K8S 1.20
           hostPort: 80
-#GENERATED FOR K8S 1.20
           name: http
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 443
-#GENERATED FOR K8S 1.20
           hostPort: 443
-#GENERATED FOR K8S 1.20
           name: https
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 8443
-#GENERATED FOR K8S 1.20
           name: webhook
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         readinessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 3
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         resources:
-#GENERATED FOR K8S 1.20
           requests:
-#GENERATED FOR K8S 1.20
             cpu: 100m
-#GENERATED FOR K8S 1.20
             memory: 90Mi
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
-#GENERATED FOR K8S 1.20
           capabilities:
-#GENERATED FOR K8S 1.20
             add:
-#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
-#GENERATED FOR K8S 1.20
             drop:
-#GENERATED FOR K8S 1.20
             - ALL
-#GENERATED FOR K8S 1.20
           runAsUser: 101
-#GENERATED FOR K8S 1.20
         volumeMounts:
-#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
-#GENERATED FOR K8S 1.20
           name: webhook-cert
-#GENERATED FOR K8S 1.20
           readOnly: true
-#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         ingress-ready: "true"
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
-#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 0
-#GENERATED FOR K8S 1.20
       tolerations:
-#GENERATED FOR K8S 1.20
       - effect: NoSchedule
-#GENERATED FOR K8S 1.20
         key: node-role.kubernetes.io/master
-#GENERATED FOR K8S 1.20
         operator: Equal
-#GENERATED FOR K8S 1.20
       - effect: NoSchedule
-#GENERATED FOR K8S 1.20
         key: node-role.kubernetes.io/control-plane
-#GENERATED FOR K8S 1.20
         operator: Equal
-#GENERATED FOR K8S 1.20
       volumes:
-#GENERATED FOR K8S 1.20
       - name: webhook-cert
-#GENERATED FOR K8S 1.20
         secret:
-#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - create
-#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: create
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - patch
-#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --patch-mutating=false
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: patch
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: IngressClass
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 webhooks:
-#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
-#GENERATED FOR K8S 1.20
   - v1
-#GENERATED FOR K8S 1.20
   clientConfig:
-#GENERATED FOR K8S 1.20
     service:
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
-#GENERATED FOR K8S 1.20
   failurePolicy: Fail
-#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
-#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
-#GENERATED FOR K8S 1.20
   rules:
-#GENERATED FOR K8S 1.20
   - apiGroups:
-#GENERATED FOR K8S 1.20
     - networking.k8s.io
-#GENERATED FOR K8S 1.20
     apiVersions:
-#GENERATED FOR K8S 1.20
     - v1
-#GENERATED FOR K8S 1.20
     operations:
-#GENERATED FOR K8S 1.20
     - CREATE
-#GENERATED FOR K8S 1.20
     - UPDATE
-#GENERATED FOR K8S 1.20
     resources:
-#GENERATED FOR K8S 1.20
     - ingresses
-#GENERATED FOR K8S 1.20
   sideEffects: None
diff --git a/deploy/static/provider/scw/1.19/deploy.yaml b/deploy/static/provider/scw/1.19/deploy.yaml
index 89ee9725b..d801ce4da 100644
--- a/deploy/static/provider/scw/1.19/deploy.yaml
+++ b/deploy/static/provider/scw/1.19/deploy.yaml
@@ -410,7 +410,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -507,7 +507,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -556,7 +556,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/scw/1.20/deploy.yaml b/deploy/static/provider/scw/1.20/deploy.yaml
index 0b1aaa326..f69ba79c7 100644
--- a/deploy/static/provider/scw/1.20/deploy.yaml
+++ b/deploy/static/provider/scw/1.20/deploy.yaml
@@ -413,7 +413,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -510,7 +510,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -559,7 +559,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/scw/1.21/deploy.yaml b/deploy/static/provider/scw/1.21/deploy.yaml
index 58894fa1c..5a81c2d0b 100644
--- a/deploy/static/provider/scw/1.21/deploy.yaml
+++ b/deploy/static/provider/scw/1.21/deploy.yaml
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -513,7 +513,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -562,7 +562,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/scw/1.22/deploy.yaml b/deploy/static/provider/scw/1.22/deploy.yaml
index 58894fa1c..5a81c2d0b 100644
--- a/deploy/static/provider/scw/1.22/deploy.yaml
+++ b/deploy/static/provider/scw/1.22/deploy.yaml
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -513,7 +513,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -562,7 +562,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/scw/1.23/deploy.yaml b/deploy/static/provider/scw/1.23/deploy.yaml
index 58894fa1c..5a81c2d0b 100644
--- a/deploy/static/provider/scw/1.23/deploy.yaml
+++ b/deploy/static/provider/scw/1.23/deploy.yaml
@@ -416,7 +416,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -513,7 +513,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -562,7 +562,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 6c4eaad28..f69ba79c7 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -1,1240 +1,620 @@
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Namespace
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 automountServiceAccountToken: true
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: ServiceAccount
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resourceNames:
-#GENERATED FOR K8S 1.20
   - ingress-controller-leader
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: Role
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - configmaps
-#GENERATED FOR K8S 1.20
   - endpoints
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   - pods
-#GENERATED FOR K8S 1.20
   - secrets
-#GENERATED FOR K8S 1.20
   - namespaces
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - nodes
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - services
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - ""
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - events
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - create
-#GENERATED FOR K8S 1.20
   - patch
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingresses/status
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - networking.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - ingressclasses
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - list
-#GENERATED FOR K8S 1.20
   - watch
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRole
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 rules:
-#GENERATED FOR K8S 1.20
 - apiGroups:
-#GENERATED FOR K8S 1.20
   - admissionregistration.k8s.io
-#GENERATED FOR K8S 1.20
   resources:
-#GENERATED FOR K8S 1.20
   - validatingwebhookconfigurations
-#GENERATED FOR K8S 1.20
   verbs:
-#GENERATED FOR K8S 1.20
   - get
-#GENERATED FOR K8S 1.20
   - update
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: RoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: Role
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: rbac.authorization.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ClusterRoleBinding
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 roleRef:
-#GENERATED FOR K8S 1.20
   apiGroup: rbac.authorization.k8s.io
-#GENERATED FOR K8S 1.20
   kind: ClusterRole
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 subjects:
-#GENERATED FOR K8S 1.20
 - kind: ServiceAccount
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 data:
-#GENERATED FOR K8S 1.20
   allow-snippet-annotations: "true"
-#GENERATED FOR K8S 1.20
   use-proxy-protocol: "true"
-#GENERATED FOR K8S 1.20
 kind: ConfigMap
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   annotations:
-#GENERATED FOR K8S 1.20
     service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   externalTrafficPolicy: Local
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: http
-#GENERATED FOR K8S 1.20
     name: http
-#GENERATED FOR K8S 1.20
     port: 80
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: http
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     protocol: TCP
-#GENERATED FOR K8S 1.20
     targetPort: https
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: LoadBalancer
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: v1
-#GENERATED FOR K8S 1.20
 kind: Service
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   ports:
-#GENERATED FOR K8S 1.20
   - appProtocol: https
-#GENERATED FOR K8S 1.20
     name: https-webhook
-#GENERATED FOR K8S 1.20
     port: 443
-#GENERATED FOR K8S 1.20
     targetPort: webhook
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   type: ClusterIP
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: apps/v1
-#GENERATED FOR K8S 1.20
 kind: Deployment
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-controller
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   minReadySeconds: 0
-#GENERATED FOR K8S 1.20
   revisionHistoryLimit: 10
-#GENERATED FOR K8S 1.20
   selector:
-#GENERATED FOR K8S 1.20
     matchLabels:
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
       app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - /nginx-ingress-controller
-#GENERATED FOR K8S 1.20
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-#GENERATED FOR K8S 1.20
         - --election-id=ingress-controller-leader
-#GENERATED FOR K8S 1.20
         - --controller-class=k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
         - --ingress-class=nginx
-#GENERATED FOR K8S 1.20
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-#GENERATED FOR K8S 1.20
         - --validating-webhook=:8443
-#GENERATED FOR K8S 1.20
         - --validating-webhook-certificate=/usr/local/certificates/cert
-#GENERATED FOR K8S 1.20
         - --validating-webhook-key=/usr/local/certificates/key
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAME
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.name
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
         - name: LD_PRELOAD
-#GENERATED FOR K8S 1.20
           value: /usr/local/lib/libmimalloc.so
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         lifecycle:
-#GENERATED FOR K8S 1.20
           preStop:
-#GENERATED FOR K8S 1.20
             exec:
-#GENERATED FOR K8S 1.20
               command:
-#GENERATED FOR K8S 1.20
               - /wait-shutdown
-#GENERATED FOR K8S 1.20
         livenessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 5
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         name: controller
-#GENERATED FOR K8S 1.20
         ports:
-#GENERATED FOR K8S 1.20
         - containerPort: 80
-#GENERATED FOR K8S 1.20
           name: http
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 443
-#GENERATED FOR K8S 1.20
           name: https
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         - containerPort: 8443
-#GENERATED FOR K8S 1.20
           name: webhook
-#GENERATED FOR K8S 1.20
           protocol: TCP
-#GENERATED FOR K8S 1.20
         readinessProbe:
-#GENERATED FOR K8S 1.20
           failureThreshold: 3
-#GENERATED FOR K8S 1.20
           httpGet:
-#GENERATED FOR K8S 1.20
             path: /healthz
-#GENERATED FOR K8S 1.20
             port: 10254
-#GENERATED FOR K8S 1.20
             scheme: HTTP
-#GENERATED FOR K8S 1.20
           initialDelaySeconds: 10
-#GENERATED FOR K8S 1.20
           periodSeconds: 10
-#GENERATED FOR K8S 1.20
           successThreshold: 1
-#GENERATED FOR K8S 1.20
           timeoutSeconds: 1
-#GENERATED FOR K8S 1.20
         resources:
-#GENERATED FOR K8S 1.20
           requests:
-#GENERATED FOR K8S 1.20
             cpu: 100m
-#GENERATED FOR K8S 1.20
             memory: 90Mi
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: true
-#GENERATED FOR K8S 1.20
           capabilities:
-#GENERATED FOR K8S 1.20
             add:
-#GENERATED FOR K8S 1.20
             - NET_BIND_SERVICE
-#GENERATED FOR K8S 1.20
             drop:
-#GENERATED FOR K8S 1.20
             - ALL
-#GENERATED FOR K8S 1.20
           runAsUser: 101
-#GENERATED FOR K8S 1.20
         volumeMounts:
-#GENERATED FOR K8S 1.20
         - mountPath: /usr/local/certificates/
-#GENERATED FOR K8S 1.20
           name: webhook-cert
-#GENERATED FOR K8S 1.20
           readOnly: true
-#GENERATED FOR K8S 1.20
       dnsPolicy: ClusterFirst
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx
-#GENERATED FOR K8S 1.20
       terminationGracePeriodSeconds: 300
-#GENERATED FOR K8S 1.20
       volumes:
-#GENERATED FOR K8S 1.20
       - name: webhook-cert
-#GENERATED FOR K8S 1.20
         secret:
-#GENERATED FOR K8S 1.20
           secretName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-create
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - create
-#GENERATED FOR K8S 1.20
         - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: create
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: batch/v1
-#GENERATED FOR K8S 1.20
 kind: Job
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
   namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   template:
-#GENERATED FOR K8S 1.20
     metadata:
-#GENERATED FOR K8S 1.20
       labels:
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
         app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-admission-patch
-#GENERATED FOR K8S 1.20
     spec:
-#GENERATED FOR K8S 1.20
       containers:
-#GENERATED FOR K8S 1.20
       - args:
-#GENERATED FOR K8S 1.20
         - patch
-#GENERATED FOR K8S 1.20
         - --webhook-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --namespace=$(POD_NAMESPACE)
-#GENERATED FOR K8S 1.20
         - --patch-mutating=false
-#GENERATED FOR K8S 1.20
         - --secret-name=ingress-nginx-admission
-#GENERATED FOR K8S 1.20
         - --patch-failure-policy=Fail
-#GENERATED FOR K8S 1.20
         env:
-#GENERATED FOR K8S 1.20
         - name: POD_NAMESPACE
-#GENERATED FOR K8S 1.20
           valueFrom:
-#GENERATED FOR K8S 1.20
             fieldRef:
-#GENERATED FOR K8S 1.20
               fieldPath: metadata.namespace
-#GENERATED FOR K8S 1.20
-        image: k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
-#GENERATED FOR K8S 1.20
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
         imagePullPolicy: IfNotPresent
-#GENERATED FOR K8S 1.20
         name: patch
-#GENERATED FOR K8S 1.20
         securityContext:
-#GENERATED FOR K8S 1.20
           allowPrivilegeEscalation: false
-#GENERATED FOR K8S 1.20
       nodeSelector:
-#GENERATED FOR K8S 1.20
         kubernetes.io/os: linux
-#GENERATED FOR K8S 1.20
       restartPolicy: OnFailure
-#GENERATED FOR K8S 1.20
       securityContext:
-#GENERATED FOR K8S 1.20
         fsGroup: 2000
-#GENERATED FOR K8S 1.20
         runAsNonRoot: true
-#GENERATED FOR K8S 1.20
         runAsUser: 2000
-#GENERATED FOR K8S 1.20
       serviceAccountName: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: networking.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: IngressClass
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: controller
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: nginx
-#GENERATED FOR K8S 1.20
 spec:
-#GENERATED FOR K8S 1.20
   controller: k8s.io/ingress-nginx
-#GENERATED FOR K8S 1.20
 ---
-#GENERATED FOR K8S 1.20
 apiVersion: admissionregistration.k8s.io/v1
-#GENERATED FOR K8S 1.20
 kind: ValidatingWebhookConfiguration
-#GENERATED FOR K8S 1.20
 metadata:
-#GENERATED FOR K8S 1.20
   labels:
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/component: admission-webhook
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/instance: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/name: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/part-of: ingress-nginx
-#GENERATED FOR K8S 1.20
     app.kubernetes.io/version: 1.2.1
-#GENERATED FOR K8S 1.20
   name: ingress-nginx-admission
-#GENERATED FOR K8S 1.20
 webhooks:
-#GENERATED FOR K8S 1.20
 - admissionReviewVersions:
-#GENERATED FOR K8S 1.20
   - v1
-#GENERATED FOR K8S 1.20
   clientConfig:
-#GENERATED FOR K8S 1.20
     service:
-#GENERATED FOR K8S 1.20
       name: ingress-nginx-controller-admission
-#GENERATED FOR K8S 1.20
       namespace: ingress-nginx
-#GENERATED FOR K8S 1.20
       path: /networking/v1/ingresses
-#GENERATED FOR K8S 1.20
   failurePolicy: Fail
-#GENERATED FOR K8S 1.20
   matchPolicy: Equivalent
-#GENERATED FOR K8S 1.20
   name: validate.nginx.ingress.kubernetes.io
-#GENERATED FOR K8S 1.20
   rules:
-#GENERATED FOR K8S 1.20
   - apiGroups:
-#GENERATED FOR K8S 1.20
     - networking.k8s.io
-#GENERATED FOR K8S 1.20
     apiVersions:
-#GENERATED FOR K8S 1.20
     - v1
-#GENERATED FOR K8S 1.20
     operations:
-#GENERATED FOR K8S 1.20
     - CREATE
-#GENERATED FOR K8S 1.20
     - UPDATE
-#GENERATED FOR K8S 1.20
     resources:
-#GENERATED FOR K8S 1.20
     - ingresses
-#GENERATED FOR K8S 1.20
   sideEffects: None
diff --git a/docs/deploy/upgrade.md b/docs/deploy/upgrade.md
index 3b29a689b..e16992612 100644
--- a/docs/deploy/upgrade.md
+++ b/docs/deploy/upgrade.md
@@ -24,7 +24,7 @@ spec:
     spec:
       containers:
         - name: ingress-nginx-controller
-          image: k8s.gcr.io/ingress-nginx/controller:v1.0.4@sha256:545cff00370f28363dad31e3b59a94ba377854d3a11f18988f5f9e56841ef9ef
+          image: registry.k8s.io/ingress-nginx/controller:v1.0.4@sha256:545cff00370f28363dad31e3b59a94ba377854d3a11f18988f5f9e56841ef9ef
           args: ...
 ```
 
@@ -33,7 +33,7 @@ The easiest way to do this is e.g. (do note you may need to change the name para
 
 ```
 kubectl set image deployment/ingress-nginx-controller \
-  controller=k8s.gcr.io/ingress-nginx/controller:v1.0.5@sha256:55a1fcda5b7657c372515fe402c3e39ad93aa59f6e4378e82acd99912fe6028d \
+  controller=registry.k8s.io/ingress-nginx/controller:v1.0.5@sha256:55a1fcda5b7657c372515fe402c3e39ad93aa59f6e4378e82acd99912fe6028d \
   -n ingress-nginx
 ```
 
diff --git a/docs/examples/chashsubset/deployment.yaml b/docs/examples/chashsubset/deployment.yaml
index 0ac13fcce..7eb7613ba 100644
--- a/docs/examples/chashsubset/deployment.yaml
+++ b/docs/examples/chashsubset/deployment.yaml
@@ -17,7 +17,7 @@ spec:
     spec:
       containers:
         - name: nginxhello
-          image: k8s.gcr.io/e2e-test-images/echoserver:2.3
+          image: registry.k8s.io/e2e-test-images/echoserver:2.3
           ports:
             - containerPort: 8080
           env:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
index fc00707ce..52ddb24a9 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
@@ -3,7 +3,7 @@ controller:
 defaultBackend:
   enabled: true
   image:
-    registry: k8s.gcr.io
+    registry: registry.k8s.io
     image: ingress-nginx/nginx-errors
     tag: "0.48.1"
   extraVolumes:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.yaml b/docs/examples/customization/custom-errors/custom-default-backend.yaml
index 70dc91681..fb4f899a0 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.yaml
@@ -36,7 +36,7 @@ spec:
     spec:
       containers:
       - name: nginx-error-server
-        image: k8s.gcr.io/ingress-nginx/nginx-errors:0.49.0
+        image: registry.k8s.io/ingress-nginx/nginx-errors:0.49.0
         ports:
         - containerPort: 8080
         # Setting the environment variable DEBUG we can see the headers sent 
diff --git a/docs/examples/http-svc.yaml b/docs/examples/http-svc.yaml
index 4e8426897..46815fa5d 100644
--- a/docs/examples/http-svc.yaml
+++ b/docs/examples/http-svc.yaml
@@ -14,7 +14,7 @@ spec:
     spec:
       containers:
       - name: http-svc
-        image: k8s.gcr.io/e2e-test-images/echoserver:2.3
+        image: registry.k8s.io/e2e-test-images/echoserver:2.3
         ports:
         - containerPort: 8080
         env:
diff --git a/docs/examples/multi-tls/multi-tls.yaml b/docs/examples/multi-tls/multi-tls.yaml
index 167e48ae0..d52971326 100644
--- a/docs/examples/multi-tls/multi-tls.yaml
+++ b/docs/examples/multi-tls/multi-tls.yaml
@@ -70,7 +70,7 @@ spec:
     spec:
       containers:
       - name: http-svc
-        image: k8s.gcr.io/e2e-test-images/echoserver:2.3
+        image: registry.k8s.io/e2e-test-images/echoserver:2.3
         ports:
         - containerPort: 8080
         env:
diff --git a/docs/examples/static-ip/nginx-ingress-controller.yaml b/docs/examples/static-ip/nginx-ingress-controller.yaml
index 61c3a8f7f..cf7759e1c 100644
--- a/docs/examples/static-ip/nginx-ingress-controller.yaml
+++ b/docs/examples/static-ip/nginx-ingress-controller.yaml
@@ -24,7 +24,7 @@ spec:
       # hostNetwork: true
       terminationGracePeriodSeconds: 60
       containers:
-      - image: k8s.gcr.io/ingress-nginx/controller:v1.0.5
+      - image: registry.k8s.io/ingress-nginx/controller:v1.0.5
         name: controller
         readinessProbe:
           httpGet:
diff --git a/docs/troubleshooting.md b/docs/troubleshooting.md
index 415bd3b96..1e2e57c49 100644
--- a/docs/troubleshooting.md
+++ b/docs/troubleshooting.md
@@ -256,7 +256,7 @@ Note: The below is based on the nginx [documentation](https://docs.nginx.com/ngi
     ```console
     $ docker ps | grep ingress-nginx-controller
     CONTAINER ID        IMAGE               COMMAND             CREATED             STATUS              PORTS               NAMES
-    d9e1d243156a        k8s.gcr.io/ingress-nginx/controller   "/usr/bin/dumb-init …"   19 minutes ago      Up 19 minutes                                                                            k8s_ingress-nginx-controller_ingress-nginx-controller-67956bf89d-mqxzt_kube-system_079f31ec-aa37-11e8-ad39-080027a227db_0
+    d9e1d243156a        registry.k8s.io/ingress-nginx/controller   "/usr/bin/dumb-init …"   19 minutes ago      Up 19 minutes                                                                            k8s_ingress-nginx-controller_ingress-nginx-controller-67956bf89d-mqxzt_kube-system_079f31ec-aa37-11e8-ad39-080027a227db_0
     ```
 
 3. Exec into the container
diff --git a/docs/user-guide/third-party-addons/opentracing.md b/docs/user-guide/third-party-addons/opentracing.md
index 468be24f7..6ed0f195e 100644
--- a/docs/user-guide/third-party-addons/opentracing.md
+++ b/docs/user-guide/third-party-addons/opentracing.md
@@ -173,7 +173,7 @@ In the Zipkin interface we can see the details:
 3. Apply a basic Service and Ingress Resource:
     ```
     # Create Echoheaders Deployment
-    $ kubectl run echoheaders --image=k8s.gcr.io/echoserver:1.4 --replicas=1 --port=8080
+    $ kubectl run echoheaders --image=registry.k8s.io/echoserver:1.4 --replicas=1 --port=8080
 
     # Expose as a Cluster-IP
     $ kubectl expose deployment echoheaders --port=80 --target-port=8080 --name=echoheaders-x
diff --git a/images/echo/Makefile b/images/echo/Makefile
index 3b3c40471..fb53283f7 100644
--- a/images/echo/Makefile
+++ b/images/echo/Makefile
@@ -36,7 +36,7 @@ build: ensure-buildx
 		--platform=${PLATFORMS} $(OUTPUT) \
 		--progress=$(PROGRESS) \
 		--pull \
-		--build-arg BASE_IMAGE=k8s.gcr.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41 \
+		--build-arg BASE_IMAGE=registry.k8s.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41 \
 		--build-arg LUAROCKS_VERSION=3.8.0 \
 		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
 		-t $(IMAGE):$(TAG) rootfs
diff --git a/images/nginx/README.md b/images/nginx/README.md
index 50ad00134..5966a4fa1 100644
--- a/images/nginx/README.md
+++ b/images/nginx/README.md
@@ -20,6 +20,6 @@ This image provides a default configuration file with no backend servers.
 _Using docker_
 
 ```console
-docker run -v /some/nginx.conf:/etc/nginx/nginx.conf:ro k8s.gcr.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
+docker run -v /some/nginx.conf:/etc/nginx/nginx.conf:ro registry.k8s.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
 ```
 
diff --git a/images/nginx/rc.yaml b/images/nginx/rc.yaml
index 532e22505..632e62cdc 100644
--- a/images/nginx/rc.yaml
+++ b/images/nginx/rc.yaml
@@ -38,7 +38,7 @@ spec:
     spec:
       containers:
         - name: nginx
-          image: k8s.gcr.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
+          image: registry.k8s.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
           ports:
             - containerPort: 80
             - containerPort: 443
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index b636a0b9c..1275c7589 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -23,7 +23,7 @@ REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-runner
 
-NGINX_BASE_IMAGE ?= k8s.gcr.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
+NGINX_BASE_IMAGE ?= registry.k8s.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
 
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index f18ac148c..f7a46b180 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -17,7 +17,7 @@ ARG GOLANG_VERSION
 ARG ETCD_VERSION
 
 FROM golang:${GOLANG_VERSION}-alpine as GO
-FROM k8s.gcr.io/etcd:${ETCD_VERSION} as etcd
+FROM registry.k8s.io/etcd:${ETCD_VERSION} as etcd
 
 FROM ${BASE_IMAGE}
 
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index d126a6a95..ff6e9684a 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,4 +1,4 @@
-FROM k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220524-g8963ed17e@sha256:4fbcbeebd4c24587699b027ad0f0aa7cd9d76b58177a3b50c228bae8141bcf95 AS BASE
+FROM registry.k8s.io/ingress-nginx/e2e-test-runner:v20220524-g8963ed17e@sha256:4fbcbeebd4c24587699b027ad0f0aa7cd9d76b58177a3b50c228bae8141bcf95 AS BASE
 
 FROM alpine:3.14.6
 
diff --git a/test/e2e/annotations/canary.go b/test/e2e/annotations/canary.go
index 99d164f98..b62ba5a70 100644
--- a/test/e2e/annotations/canary.go
+++ b/test/e2e/annotations/canary.go
@@ -145,7 +145,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				ginkgo.By("returning a 200 status when the canary deployment has 0 replicas and a request is sent to the mainline ingress")
 
 				f.NewEchoDeployment()
-				f.NewDeployment(canaryService, "k8s.gcr.io/e2e-test-images/echoserver:2.3", 8080, 0)
+				f.NewDeployment(canaryService, "registry.k8s.io/e2e-test-images/echoserver:2.3", 8080, 0)
 
 				resp, _, errs = gorequest.New().
 					Get(f.GetURL(framework.HTTP)).
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 4f34a22ab..228c35434 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -38,7 +38,7 @@ const SlowEchoService = "slow-echo"
 const HTTPBinService = "httpbin"
 
 // NginxBaseImage use for testing
-const NginxBaseImage = "k8s.gcr.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41"
+const NginxBaseImage = "registry.k8s.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41"
 
 type deploymentOptions struct {
 	namespace string
@@ -78,7 +78,7 @@ func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
 		o(options)
 	}
 
-	deployment := newDeployment(options.name, options.namespace, "k8s.gcr.io/ingress-nginx/e2e-test-echo@sha256:131ece0637b29231470cfaa04690c2966a2e0b147d3c9df080a0857b78982410", 80, int32(options.replicas),
+	deployment := newDeployment(options.name, options.namespace, "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:131ece0637b29231470cfaa04690c2966a2e0b147d3c9df080a0857b78982410", 80, int32(options.replicas),
 		nil,
 		[]corev1.VolumeMount{},
 		[]corev1.Volume{},
@@ -385,7 +385,7 @@ func newDeployment(name, namespace, image string, port int32, replicas int32, co
 
 // NewHttpbinDeployment creates a new single replica deployment of the httpbin image in a particular namespace.
 func (f *Framework) NewHttpbinDeployment() {
-	f.NewDeployment(HTTPBinService, "k8s.gcr.io/ingress-nginx/e2e-test-httpbin@sha256:c6372ef57a775b95f18e19d4c735a9819f2e7bb4641e5e3f27287d831dfeb7e8", 80, 1)
+	f.NewDeployment(HTTPBinService, "registry.k8s.io/ingress-nginx/e2e-test-httpbin@sha256:c6372ef57a775b95f18e19d4c735a9819f2e7bb4641e5e3f27287d831dfeb7e8", 80, 1)
 }
 
 // NewDeployment creates a new deployment in a particular namespace.
diff --git a/test/e2e/framework/fastcgi_helloserver.go b/test/e2e/framework/fastcgi_helloserver.go
index 75a8d098a..c757ba86f 100644
--- a/test/e2e/framework/fastcgi_helloserver.go
+++ b/test/e2e/framework/fastcgi_helloserver.go
@@ -58,7 +58,7 @@ func (f *Framework) NewNewFastCGIHelloServerDeploymentWithReplicas(replicas int3
 					Containers: []corev1.Container{
 						{
 							Name:  "fastcgi-helloserver",
-							Image: "k8s.gcr.io/ingress-nginx/e2e-test-fastcgi-helloserver@sha256:723b8187e1768d199b93fd939c37c1ce9427dcbca72ec6415f4d890bca637fcc",
+							Image: "registry.k8s.io/ingress-nginx/e2e-test-fastcgi-helloserver@sha256:723b8187e1768d199b93fd939c37c1ce9427dcbca72ec6415f4d890bca637fcc",
 							Env:   []corev1.EnvVar{},
 							Ports: []corev1.ContainerPort{
 								{
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index 161815aed..3e9852082 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -292,7 +292,7 @@ func ocspserveDeployment(namespace string) (*appsv1.Deployment, *corev1.Service)
 						Containers: []corev1.Container{
 							{
 								Name:  name,
-								Image: "k8s.gcr.io/ingress-nginx/e2e-test-cfssl@sha256:be2f69024f7b7053f35b86677de16bdaa5d3ff0f81b17581ef0b0c6804188b03",
+								Image: "registry.k8s.io/ingress-nginx/e2e-test-cfssl@sha256:be2f69024f7b7053f35b86677de16bdaa5d3ff0f81b17581ef0b0c6804188b03",
 								Command: []string{
 									"/bin/bash",
 									"-c",

From 75fe8d9b983270dda059570720d751a152a95c40 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 15 Jun 2022 08:15:17 -0700
Subject: [PATCH 0217/1641] Bump github.com/opencontainers/runc from 1.1.2 to
 1.1.3 (#8688)

Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.2 to 1.1.3.
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/v1.1.3/CHANGELOG.md)
- [Commits](https://github.com/opencontainers/runc/compare/v1.1.2...v1.1.3)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/go.mod b/go.mod
index 982bc9a9b..b187b2071 100644
--- a/go.mod
+++ b/go.mod
@@ -16,7 +16,7 @@ require (
 	github.com/moul/pb v0.0.0-20180404114147-54bdd96e6a52
 	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo v1.16.5
-	github.com/opencontainers/runc v1.1.2
+	github.com/opencontainers/runc v1.1.3
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.12.2
 	github.com/prometheus/client_model v0.2.0
diff --git a/go.sum b/go.sum
index 88049aa1e..54d90fef8 100644
--- a/go.sum
+++ b/go.sum
@@ -468,8 +468,8 @@ github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1Cpa
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.17.0 h1:9Luw4uT5HTjHTN8+aNcSThgH1vdXnmdJ8xIfZ4wyTRE=
-github.com/opencontainers/runc v1.1.2 h1:2VSZwLx5k/BfsBxMMipG/LYUnmqOD/BPkIVgQUcTlLw=
-github.com/opencontainers/runc v1.1.2/go.mod h1:Tj1hFw6eFWp/o33uxGf5yF2BX5yz2Z6iptFpuvbbKqc=
+github.com/opencontainers/runc v1.1.3 h1:vIXrkId+0/J2Ymu2m7VjGvbSlAId9XNRPhn2p4b+d8w=
+github.com/opencontainers/runc v1.1.3/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
@@ -533,7 +533,7 @@ github.com/ryanuber/columnize v0.0.0-20160712163229-9b3edd62028f/go.mod h1:sm1tb
 github.com/savsgio/gotils v0.0.0-20210617111740-97865ed5a873 h1:N3Af8f13ooDKcIhsmFT7Z05CStZWu4C7Md0uDEy4q6o=
 github.com/savsgio/gotils v0.0.0-20210617111740-97865ed5a873/go.mod h1:dmPawKuiAeG/aFYVs2i+Dyosoo7FNcm+Pi8iK6ZUrX8=
 github.com/sean-/seed v0.0.0-20170313163322-e2103e2c3529/go.mod h1:DxrIzT+xaE7yg65j358z/aeFdxmN0P9QXhEzd20vsDc=
-github.com/seccomp/libseccomp-golang v0.9.2-0.20210429002308-3879420cc921/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
+github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
 github.com/sergi/go-diff v1.0.0/go.mod h1:0CfEIISq7TuYL3j771MWULgwwjU+GofnZX9QAmXWZgo=
 github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
 github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=

From 902c9dbee838c4b23658f6dc00b52084abe07903 Mon Sep 17 00:00:00 2001
From: Naveen <172697+naveensrinivasan@users.noreply.github.com>
Date: Wed, 15 Jun 2022 10:37:17 -0500
Subject: [PATCH 0218/1641] Updated dependabot to include github actions
 (#8335)

- Updated dependabot to include github actions.
---
 .github/dependabot.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 61634d5a4..404ed62e1 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -5,3 +5,7 @@ updates:
     directory: "/"
     schedule:
       interval: "weekly"
+  - package-ecosystem: "github-actions"
+    directory: "/"
+    schedule:
+        interval: "weekly"

From f5d3ab450538a02d26436f7c7ce508324b88db87 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 15 Jun 2022 13:19:30 -0400
Subject: [PATCH 0219/1641] fix the gosec test and a make target for it

---
 Makefile                             | 4 ++++
 cmd/nginx/main.go                    | 6 ++++--
 internal/ingress/controller/nginx.go | 8 +++++---
 3 files changed, 13 insertions(+), 5 deletions(-)

diff --git a/Makefile b/Makefile
index 71dd8dd06..14b7d8c24 100644
--- a/Makefile
+++ b/Makefile
@@ -75,6 +75,10 @@ image: clean-image ## Build image for a particular arch.
 		--build-arg BUILD_ID="$(BUILD_ID)" \
 		-t $(REGISTRY)/controller:$(TAG) rootfs
 
+.PHONY: gosec
+gosec:
+	docker run --mount type=bind,source="$(pwd)"/,target=/source securego/gosec:2.11.0 -exclude=G109,G601,G104,G204,G304,G306,G307 -tests=false -exclude-dir=test -exclude-dir=images/  -exclude-dir=docs/ /source/...
+
 .PHONY: image-chroot
 image-chroot: clean-chroot-image ## Build image for a particular arch.
 	echo "Building docker image ($(ARCH))..."
diff --git a/cmd/nginx/main.go b/cmd/nginx/main.go
index d5d6d91e7..ff5f0c365 100644
--- a/cmd/nginx/main.go
+++ b/cmd/nginx/main.go
@@ -327,8 +327,10 @@ func registerProfiler() {
 	mux.HandleFunc("/debug/pprof/trace", pprof.Trace)
 
 	server := &http.Server{
-		Addr:    fmt.Sprintf("127.0.0.1:%v", nginx.ProfilerPort),
-		Handler: mux,
+		Addr: fmt.Sprintf("127.0.0.1:%v", nginx.ProfilerPort),
+		//G112 (CWE-400): Potential Slowloris Attack
+		ReadHeaderTimeout: 10 * time.Second,
+		Handler:           mux,
 	}
 	klog.Fatal(server.ListenAndServe())
 }
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 7ff772a96..9c8e5265c 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -110,9 +110,11 @@ func NewNGINXController(config *Configuration, mc metric.Collector) *NGINXContro
 
 	if n.cfg.ValidationWebhook != "" {
 		n.validationWebhookServer = &http.Server{
-			Addr:      config.ValidationWebhook,
-			Handler:   adm_controller.NewAdmissionControllerServer(&adm_controller.IngressAdmission{Checker: n}),
-			TLSConfig: ssl.NewTLSListener(n.cfg.ValidationWebhookCertPath, n.cfg.ValidationWebhookKeyPath).TLSConfig(),
+			Addr: config.ValidationWebhook,
+			//G112 (CWE-400): Potential Slowloris Attack
+			ReadHeaderTimeout: 10 * time.Second,
+			Handler:           adm_controller.NewAdmissionControllerServer(&adm_controller.IngressAdmission{Checker: n}),
+			TLSConfig:         ssl.NewTLSListener(n.cfg.ValidationWebhookCertPath, n.cfg.ValidationWebhookKeyPath).TLSConfig(),
 			// disable http/2
 			// https://github.com/kubernetes/kubernetes/issues/80313
 			// https://github.com/kubernetes/ingress-nginx/issues/6323#issuecomment-737239159

From 72705c21aa72c97db5483112b6dd7d93403af992 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 15 Jun 2022 14:15:27 -0400
Subject: [PATCH 0220/1641] need the workspace

---
 Makefile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Makefile b/Makefile
index 14b7d8c24..99730b4c0 100644
--- a/Makefile
+++ b/Makefile
@@ -77,7 +77,7 @@ image: clean-image ## Build image for a particular arch.
 
 .PHONY: gosec
 gosec:
-	docker run --mount type=bind,source="$(pwd)"/,target=/source securego/gosec:2.11.0 -exclude=G109,G601,G104,G204,G304,G306,G307 -tests=false -exclude-dir=test -exclude-dir=images/  -exclude-dir=docs/ /source/...
+	docker run --rm -it -w /source/ -v "$(pwd)"/:/source securego/gosec:2.11.0 -exclude=G109,G601,G104,G204,G304,G306,G307 -tests=false -exclude-dir=test -exclude-dir=images/  -exclude-dir=docs/ /source/...
 
 .PHONY: image-chroot
 image-chroot: clean-chroot-image ## Build image for a particular arch.

From 667a49afd31951d6d4e15deb194ac978cbbfb504 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 15 Jun 2022 12:07:18 -0700
Subject: [PATCH 0221/1641] Bump crazy-max/ghaction-docker-buildx from 1.6.2 to
 3.3.1 (#8694)

Bumps [crazy-max/ghaction-docker-buildx](https://github.com/crazy-max/ghaction-docker-buildx) from 1.6.2 to 3.3.1.
- [Release notes](https://github.com/crazy-max/ghaction-docker-buildx/releases)
- [Changelog](https://github.com/crazy-max/ghaction-docker-buildx/blob/master/CHANGELOG.md)
- [Commits](https://github.com/crazy-max/ghaction-docker-buildx/compare/e01797ad2ea9a981005ad58c99afa8d842e3d3eb...126d331dc69f4a1aa02452e374835e6a5d565613)

---
updated-dependencies:
- dependency-name: crazy-max/ghaction-docker-buildx
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 68a90848f..bb731f1d8 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -77,7 +77,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: crazy-max/ghaction-docker-buildx@e01797ad2ea9a981005ad58c99afa8d842e3d3eb # v1
+        uses: crazy-max/ghaction-docker-buildx@126d331dc69f4a1aa02452e374835e6a5d565613 # v1
         with:
           buildx-version: latest
           qemu-version: latest

From 3db47847eab5f8c65456ea0044ed9fedf7588e3d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 15 Jun 2022 12:09:18 -0700
Subject: [PATCH 0222/1641] Bump actions/download-artifact from 2 to 3 (#8695)

Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 2 to 3.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/v2...fb598a63ae348fa914e94cd0ff38f362e927b741)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index bb731f1d8..23f8c46cb 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -136,7 +136,7 @@ jobs:
           go-version: '1.18.2'
 
       - name: cache
-        uses: actions/download-artifact@f023be2c48cc18debc3bacd34cb396e0295e2869 # v2
+        uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741 # v2
         with:
           name: docker.tar.gz
 
@@ -212,7 +212,7 @@ jobs:
         uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
 
       - name: cache
-        uses: actions/download-artifact@f023be2c48cc18debc3bacd34cb396e0295e2869 # v2
+        uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741 # v2
         with:
           name: docker.tar.gz
 
@@ -270,7 +270,7 @@ jobs:
         uses: actions/checkout@v2
 
       - name: cache
-        uses: actions/download-artifact@v2
+        uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741
         with:
           name: docker.tar.gz
 

From ada8c1dde1e00b38c832ba0515d10ec0f6cba023 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 15 Jun 2022 12:23:18 -0700
Subject: [PATCH 0223/1641] Bump google.golang.org/grpc from 1.46.2 to 1.47.0
 (#8669)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.46.2 to 1.47.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.46.2...v1.47.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index b187b2071..7ac0aeddb 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5
 	golang.org/x/net v0.0.0-20220225172249-27dd8689420f
-	google.golang.org/grpc v1.46.2
+	google.golang.org/grpc v1.47.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.23.6
diff --git a/go.sum b/go.sum
index 54d90fef8..4606c28b8 100644
--- a/go.sum
+++ b/go.sum
@@ -1053,8 +1053,8 @@ google.golang.org/grpc v1.36.1/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAG
 google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/grpc v1.38.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
-google.golang.org/grpc v1.46.2 h1:u+MLGgVf7vRdjEYZ8wDFhAVNmhkbJ5hmrA1LMWK1CAQ=
-google.golang.org/grpc v1.46.2/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
+google.golang.org/grpc v1.47.0 h1:9n77onPX5F3qfFCqjy9dhn8PbNQsIKeVU04J9G7umt8=
+google.golang.org/grpc v1.47.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=

From bb83708b836b6a2e876503b7aa0a7d557f20b31e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 15 Jun 2022 13:51:11 -0700
Subject: [PATCH 0224/1641] Bump actions/upload-artifact from 2.3.1 to 3.1.0
 (#8698)

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2.3.1 to 3.1.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/82c141cc518b40d92cc801eee768e7aafc9c2fa2...3cea5372237819ed00197afe530f5a7ea3e805c8)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 23f8c46cb..b1ae2ab75 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -111,7 +111,7 @@ jobs:
             | pigz > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@82c141cc518b40d92cc801eee768e7aafc9c2fa2 # v2
+        uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # v2
         with:
           name: docker.tar.gz
           path: docker.tar.gz

From 2e1b8907584a8d368fcdc735d45b85e2c8dc7118 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 15 Jun 2022 13:55:11 -0700
Subject: [PATCH 0225/1641] Bump actions/setup-go from 2.2.0 to 3.2.0 (#8697)

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 2.2.0 to 3.2.0.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/bfdd3570ce990073878bf10f6b2d79082de49492...b22fbbc2921299758641fab08929b4ac52b32923)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index b1ae2ab75..534c7af00 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -71,7 +71,7 @@ jobs:
 
       - name: Set up Go 1.18
         id: go
-        uses: actions/setup-go@bfdd3570ce990073878bf10f6b2d79082de49492 # v2
+        uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v2
         with:
           go-version: '1.18.2'
 
@@ -131,7 +131,7 @@ jobs:
         uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
 
       - name: Setup Go
-        uses: actions/setup-go@bfdd3570ce990073878bf10f6b2d79082de49492 # v2
+        uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v2
         with:
           go-version: '1.18.2'
 
@@ -406,7 +406,7 @@ jobs:
       - name: Set up Go 1.18
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: actions/setup-go@bfdd3570ce990073878bf10f6b2d79082de49492 # v2
+        uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v2
         with:
           go-version: '1.18.2'
 

From a09fc7aa27632f590ffd1261d504a851c48281b3 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 15 Jun 2022 13:57:10 -0700
Subject: [PATCH 0226/1641] Bump github.com/stretchr/testify from 1.7.1 to
 1.7.2 (#8670)

Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.1 to 1.7.2.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.7.1...v1.7.2)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 7 ++++---
 2 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/go.mod b/go.mod
index 7ac0aeddb..77ce5e882 100644
--- a/go.mod
+++ b/go.mod
@@ -23,7 +23,7 @@ require (
 	github.com/prometheus/common v0.34.0
 	github.com/spf13/cobra v1.4.0
 	github.com/spf13/pflag v1.0.5
-	github.com/stretchr/testify v1.7.1
+	github.com/stretchr/testify v1.7.2
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5
 	golang.org/x/net v0.0.0-20220225172249-27dd8689420f
@@ -133,7 +133,7 @@ require (
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
-	gopkg.in/yaml.v3 v3.0.0 // indirect
+	gopkg.in/yaml.v3 v3.0.1 // indirect
 	k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c // indirect
 	k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65 // indirect
 	k8s.io/utils v0.0.0-20211116205334-6203023598ed // indirect
diff --git a/go.sum b/go.sum
index 4606c28b8..6bdf63d68 100644
--- a/go.sum
+++ b/go.sum
@@ -580,8 +580,8 @@ github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81P
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.7.1 h1:5TQK59W5E3v0r2duFAb7P95B6hEeOyEnHRa8MjYSMTY=
-github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.7.2 h1:4jaiDzPyXQvSd7D0EjG45355tLlV3VOECpq10pLC+8s=
+github.com/stretchr/testify v1.7.2/go.mod h1:R6va5+xMeoiuVRoj+gSkQ7d3FALtqAAGI1FQKckRals=
 github.com/subosito/gotenv v1.2.0/go.mod h1:N0PQaV/YGNqwC0u51sEeR/aUtSLEXKX9iv69rRypqCw=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
@@ -1107,8 +1107,9 @@ gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.0-20200615113413-eeeca48fe776/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-gopkg.in/yaml.v3 v3.0.0 h1:hjy8E9ON/egN1tAYqKb61G10WtihqetD4sz2H+8nIeA=
 gopkg.in/yaml.v3 v3.0.0/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
+gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gotest.tools/v3 v3.0.2/go.mod h1:3SzNCllyD9/Y+b5r9JIKQ474KzkZyqLqEfYqMsX94Bk=
 gotest.tools/v3 v3.0.3/go.mod h1:Z7Lb0S5l+klDB31fvDQX8ss/FlKDxtlFlw3Oa8Ymbl8=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=

From 6e4ccf20256a2edd3d3688e45955740132050318 Mon Sep 17 00:00:00 2001
From: Stefan Lasiewski <slasiewski@lbl.gov>
Date: Wed, 15 Jun 2022 14:33:11 -0700
Subject: [PATCH 0227/1641] Fix several typos (#8701)

* Fix minor typo - "Kubernetess"

* Fix more typos

* Fix typo: double "the"
---
 README.md     | 2 +-
 docs/index.md | 9 ++++-----
 2 files changed, 5 insertions(+), 6 deletions(-)

diff --git a/README.md b/README.md
index e55b4aff4..19a1c2f15 100644
--- a/README.md
+++ b/README.md
@@ -68,7 +68,7 @@ Thanks for taking the time to join our community and start contributing!
   
   - Submit github issues for any feature enhancements, bugs or documentation problems. Please make sure to read the [Issue Reporting Checklist](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md#issue-reporting-guidelines) before opening an issue. Issues not conforming to the guidelines **may be closed immediately**.
 
-- **Support**: Join the the [#ingress-nginx-users](https://kubernetes.slack.com/messages/CANQGM8BA/) channel inside the [Kubernetes Slack](http://slack.kubernetes.io/) to ask questions or get support from the maintainers and other users.
+- **Support**: Join the [#ingress-nginx-users](https://kubernetes.slack.com/messages/CANQGM8BA/) channel inside the [Kubernetes Slack](http://slack.kubernetes.io/) to ask questions or get support from the maintainers and other users.
   
   - The [github issues](https://github.com/kubernetes/ingress-nginx/issues) in the repository are **exclusively** for bug reports and feature requests.
 
diff --git a/docs/index.md b/docs/index.md
index 63afaa66d..91661cba3 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -13,7 +13,7 @@ See [Deployment](./deploy/) for a whirlwind tour that will get you started.
 
 # FAQ - Migration to apiVersion `networking.k8s.io/v1`
 
-If you are using Ingress objects in your cluster (running Kubernetes older than v1.22), and you plan to upgrade to Kubernetess v1.22, this section is relevant to you.
+If you are using Ingress objects in your cluster (running Kubernetes older than v1.22), and you plan to upgrade to Kubernetes v1.22, this section is relevant to you.
 
 - Please read this [official blog on deprecated Ingress API versions](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/) 
 
@@ -21,8 +21,7 @@ If you are using Ingress objects in your cluster (running Kubernetes older than
 
 ## What is an IngressClass and why is it important for users of Ingress-NGINX controller now ?
 
-IngressClass is a Kubernetes resource. See the description below.
-Its important because until now, a default install of the Ingress-NGINX controller did not require any IngressClass object. From version 1.0.0 of the Ingress-NGINX Controller, an IngressClass object is required.
+IngressClass is a Kubernetes resource. See the description below. It's important because until now, a default install of the Ingress-NGINX controller did not require any IngressClass object. From version 1.0.0 of the Ingress-NGINX Controller, an IngressClass object is required.
 
 On clusters with more than one instance of the Ingress-NGINX controller, all instances of the controllers must be aware of which Ingress objects they serve. The `ingressClassName` field of an Ingress is the way to let the controller know about that. 
 
@@ -195,14 +194,14 @@ Then, when you create an Ingress object with its `ingressClassName` set to `ingr
 Bear in mind that, if you start Ingress-Nginx B with the command line argument `--watch-ingress-without-class=true`, then it will serve:
 
 1. Ingresses without any `ingressClassName` set
-2. Ingresses where the the deprecated annotation (`kubernetes.io/ingress.class`) matches the value set in the command line argument `--ingress-class`
+2. Ingresses where the deprecated annotation (`kubernetes.io/ingress.class`) matches the value set in the command line argument `--ingress-class`
 3. Ingresses that refer to any IngressClass that has the same `spec.controller` as configured in `--controller-class`
 
 If you start Ingress-Nginx B with the command line argument `--watch-ingress-without-class=true` and you run Ingress-Nginx A with the command line argument `--watch-ingress-without-class=false` then this is a supported configuration. If you have two Ingress-NGINX controllers for the same cluster, both running with `--watch-ingress-without-class=true` then there is likely to be a conflict.
 
 ## I am seeing this error message in the logs of the Ingress-NGINX controller: "ingress class annotation is not equal to the expected by Ingress Controller". Why ?
 
-- It is highly likely that you will also see the name of the ingress resource in the same error message. This error messsage has been observed on use the deprecated annotation (`kubernetes.io/ingress.class`) in a Ingress resource manifest. It is recommended to use the `.spec.ingressClassName` field of the Ingress resource, to specify the name of the IngressClass of the Ingress you are defining.
+- It is highly likely that you will also see the name of the ingress resource in the same error message. This error message has been observed on use the deprecated annotation (`kubernetes.io/ingress.class`) in a Ingress resource manifest. It is recommended to use the `.spec.ingressClassName` field of the Ingress resource, to specify the name of the IngressClass of the Ingress you are defining.
 
 ## How to easily install multiple instances of the ingress-NGINX controller in the same cluster ?
 - Create a new namespace

From 1a24bc26a17b8278b4bf3cc0dfd4d7744f17846e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 15 Jun 2022 15:17:10 -0700
Subject: [PATCH 0228/1641] Bump actions/dependency-review-action from 1 to 2
 (#8703)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 1 to 2.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index f2605b7a7..a25de591b 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@v3
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@v1
+        uses: actions/dependency-review-action@v2

From 6bc4ed15eb72e61a3aa8724634624ecf3a224d56 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 20 Jun 2022 16:03:02 -0500
Subject: [PATCH 0229/1641] Create Openssf scorecard

---
 .github/workflows/scorecards.yml | 62 ++++++++++++++++++++++++++++++++
 1 file changed, 62 insertions(+)
 create mode 100644 .github/workflows/scorecards.yml

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
new file mode 100644
index 000000000..8192dc19a
--- /dev/null
+++ b/.github/workflows/scorecards.yml
@@ -0,0 +1,62 @@
+name: Scorecards supply-chain security
+on:
+  # Only the default branch is supported.
+  branch_protection_rule:
+  schedule:
+    - cron: '20 11 * * 5'
+  push:
+    branches: [ "main" ]
+
+# Declare default permissions as read only.
+permissions: read-all
+
+jobs:
+  analysis:
+    name: Scorecards analysis
+    runs-on: ubuntu-latest
+    permissions:
+      # Needed to upload the results to code-scanning dashboard.
+      security-events: write
+      # Used to receive a badge. (Upcoming feature)
+      id-token: write
+      # Needs for private repositories.
+      contents: read
+      actions: read
+    
+    steps:
+      - name: "Checkout code"
+        uses: actions/checkout@a12a3943b4bdde767164f792f33f40b04645d846 # v3.0.0
+        with:
+          persist-credentials: false
+
+      - name: "Run analysis"
+        uses: ossf/scorecard-action@3e15ea8318eee9b333819ec77a36aca8d39df13e # v1.1.1
+        with:
+          results_file: results.sarif
+          results_format: sarif
+          # (Optional) Read-only PAT token. Uncomment the `repo_token` line below if:
+          # - you want to enable the Branch-Protection check on a *public* repository, or
+          # - you are installing Scorecards on a *private* repository
+          # To create the PAT, follow the steps in https://github.com/ossf/scorecard-action#authentication-with-pat.
+          # repo_token: ${{ secrets.SCORECARD_READ_TOKEN }}
+
+          # Publish the results for public repositories to enable scorecard badges. For more details, see
+          # https://github.com/ossf/scorecard-action#publishing-results. 
+          # For private repositories, `publish_results` will automatically be set to `false`, regardless 
+          # of the value entered here.
+          publish_results: true
+
+      # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
+      # format to the repository Actions tab.
+      - name: "Upload artifact"
+        uses: actions/upload-artifact@6673cd052c4cd6fcf4b4e6e60ea986c889389535 # v3.0.0
+        with:
+          name: SARIF file
+          path: results.sarif
+          retention-days: 5
+      
+      # Upload the results to GitHub's code scanning dashboard.
+      - name: "Upload to code-scanning"
+        uses: github/codeql-action/upload-sarif@5f532563584d71fdef14ee64d17bafb34f751ce5 # v1.0.26
+        with:
+          sarif_file: results.sarif

From c262fc616e173fee053d3087889ba313767f4673 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Jun 2022 15:39:42 -0700
Subject: [PATCH 0230/1641] Bump github.com/prometheus/common from 0.34.0 to
 0.35.0 (#8708)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.34.0 to 0.35.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.34.0...v0.35.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 77ce5e882..4827e2b26 100644
--- a/go.mod
+++ b/go.mod
@@ -20,7 +20,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.12.2
 	github.com/prometheus/client_model v0.2.0
-	github.com/prometheus/common v0.34.0
+	github.com/prometheus/common v0.35.0
 	github.com/spf13/cobra v1.4.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.7.2
diff --git a/go.sum b/go.sum
index 6bdf63d68..9b69b1c95 100644
--- a/go.sum
+++ b/go.sum
@@ -510,8 +510,8 @@ github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9
 github.com/prometheus/common v0.28.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/common v0.32.1/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.34.0 h1:RBmGO9d/FVjqHT0yUGQwBJhkwKV+wPCn7KGpvfab0uE=
-github.com/prometheus/common v0.34.0/go.mod h1:gB3sOl7P0TvJabZpLY5uQMpUqRCPPCyRLCZYc7JZTNE=
+github.com/prometheus/common v0.35.0 h1:Eyr+Pw2VymWejHqCugNaQXkAi6KayVNxaHeu6khmFBE=
+github.com/prometheus/common v0.35.0/go.mod h1:phzohg0JFMnBEFGxTDbfu3QyL5GI8gTQJFhYO5B3mfA=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.0-20190507164030-5867b95ac084/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=

From 7806159b386bf34b3ef0d8f130e66ad0247903af Mon Sep 17 00:00:00 2001
From: Eric84626 <97266539+Eric84626@users.noreply.github.com>
Date: Tue, 21 Jun 2022 22:16:26 +0800
Subject: [PATCH 0231/1641] support extraEnvs for job resources in helm chart
 (#8545)

* support extraEnvs for job resources in helm chart

Signed-off-by: Li, Eric <Xiannan.li@fmr.com>

* Update helm doc

* Update helm doc

* Updated helm doc - add controller.admissionWebhooks.extraEnvs

* Added some test data for webhook controller.admissionWebhooks.extraEnvs

* added new line at the end of deployment-webhook-extraEnvs-values.yaml

* Fixed helm chart test issue
---
 charts/ingress-nginx/README.md                       |  1 +
 .../ci/deployment-webhook-extraEnvs-values.yaml      | 12 ++++++++++++
 .../job-patch/job-createSecret.yaml                  |  3 +++
 .../job-patch/job-patchWebhook.yaml                  |  3 +++
 charts/ingress-nginx/values.yaml                     |  8 ++++++++
 5 files changed, 27 insertions(+)
 create mode 100644 charts/ingress-nginx/ci/deployment-webhook-extraEnvs-values.yaml

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index c513f8135..5f59b8771 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -244,6 +244,7 @@ Kubernetes: `>=1.19.0-0`
 | controller.admissionWebhooks.createSecretJob.resources | object | `{}` |  |
 | controller.admissionWebhooks.enabled | bool | `true` |  |
 | controller.admissionWebhooks.existingPsp | string | `""` | Use an existing PSP instead of creating one |
+| controller.admissionWebhooks.extraEnvs | list | `[]` | Additional environment variables to set |
 | controller.admissionWebhooks.failurePolicy | string | `"Fail"` |  |
 | controller.admissionWebhooks.key | string | `"/usr/local/certificates/key"` |  |
 | controller.admissionWebhooks.labels | object | `{}` | Labels to be added to admission webhooks |
diff --git a/charts/ingress-nginx/ci/deployment-webhook-extraEnvs-values.yaml b/charts/ingress-nginx/ci/deployment-webhook-extraEnvs-values.yaml
new file mode 100644
index 000000000..95487b071
--- /dev/null
+++ b/charts/ingress-nginx/ci/deployment-webhook-extraEnvs-values.yaml
@@ -0,0 +1,12 @@
+controller:
+  service:
+    type: ClusterIP
+  admissionWebhooks:
+    enabled: true
+    extraEnvs:
+      - name: FOO
+        value: foo
+      - name: TEST
+        value: test
+    patch:
+      enabled: true
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
index f20e247f9..72c17eae4 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
@@ -56,6 +56,9 @@ spec:
               valueFrom:
                 fieldRef:
                   fieldPath: metadata.namespace
+          {{- if .Values.controller.admissionWebhooks.extraEnvs }}
+            {{- toYaml .Values.controller.admissionWebhooks.extraEnvs | nindent 12 }}
+          {{- end }}
           securityContext:
             allowPrivilegeEscalation: false
           {{- if .Values.controller.admissionWebhooks.createSecretJob.resources }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
index 8583685fa..3a1637a64 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
@@ -58,6 +58,9 @@ spec:
               valueFrom:
                 fieldRef:
                   fieldPath: metadata.namespace
+          {{- if .Values.controller.admissionWebhooks.extraEnvs }}
+            {{- toYaml .Values.controller.admissionWebhooks.extraEnvs | nindent 12 }}
+          {{- end }}
           securityContext:
             allowPrivilegeEscalation: false
           {{- if .Values.controller.admissionWebhooks.patchWebhookJob.resources }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 695f23b06..485e434b2 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -594,6 +594,14 @@ controller:
     ## These annotations will be added to the ValidatingWebhookConfiguration and
     ## the Jobs Spec of the admission webhooks.
     enabled: true
+    # -- Additional environment variables to set
+    extraEnvs: []
+    # extraEnvs:
+    #   - name: FOO
+    #     valueFrom:
+    #       secretKeyRef:
+    #         key: FOO
+    #         name: secret-resource
     failurePolicy: Fail
     # timeoutSeconds: 10
     port: 8443

From f85c3866d8135d698fe6a2753b1ed17d89a9efa0 Mon Sep 17 00:00:00 2001
From: Dmitry Bashkatov <dbashkatov@gmail.com>
Date: Wed, 22 Jun 2022 22:59:43 +0300
Subject: [PATCH 0232/1641] add new summary metric: ingress_header_seconds
 (#8726)

---
 internal/ingress/metric/collectors/socket.go | 27 +++++++++++++++++++-
 rootfs/etc/nginx/lua/monitor.lua             |  1 +
 rootfs/etc/nginx/lua/test/monitor_test.lua   |  9 ++++---
 3 files changed, 33 insertions(+), 4 deletions(-)

diff --git a/internal/ingress/metric/collectors/socket.go b/internal/ingress/metric/collectors/socket.go
index 26aebbaef..3b87c0ad1 100644
--- a/internal/ingress/metric/collectors/socket.go
+++ b/internal/ingress/metric/collectors/socket.go
@@ -31,6 +31,7 @@ import (
 
 type upstream struct {
 	Latency        float64 `json:"upstreamLatency"`
+	HeaderTime     float64 `json:"upstreamHeaderTime"`
 	ResponseLength float64 `json:"upstreamResponseLength"`
 	ResponseTime   float64 `json:"upstreamResponseTime"`
 	//Status         string  `json:"upstreamStatus"`
@@ -73,7 +74,8 @@ type SocketCollector struct {
 	responseTime   *prometheus.HistogramVec
 	responseLength *prometheus.HistogramVec
 
-	upstreamLatency *prometheus.SummaryVec
+	upstreamHeaderTime *prometheus.SummaryVec
+	upstreamLatency    *prometheus.SummaryVec
 
 	bytesSent *prometheus.HistogramVec
 
@@ -206,6 +208,17 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 			requestTags,
 		),
 
+		upstreamHeaderTime: prometheus.NewSummaryVec(
+			prometheus.SummaryOpts{
+				Name:        "ingress_upstream_header_seconds",
+				Help:        "The time spent on receiving first header from the upstream server",
+				Namespace:   PrometheusNamespace,
+				ConstLabels: constLabels,
+				Objectives:  defObjectives,
+			},
+			[]string{"ingress", "namespace", "service", "canary"},
+		),
+
 		upstreamLatency: prometheus.NewSummaryVec(
 			prometheus.SummaryOpts{
 				Name:        "ingress_upstream_latency_seconds",
@@ -228,6 +241,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 
 		prometheus.BuildFQName(PrometheusNamespace, "", "bytes_sent"): sc.bytesSent,
 
+		prometheus.BuildFQName(PrometheusNamespace, "", "ingress_upstream_header_seconds"):  sc.upstreamHeaderTime,
 		prometheus.BuildFQName(PrometheusNamespace, "", "ingress_upstream_latency_seconds"): sc.upstreamLatency,
 	}
 
@@ -303,6 +317,15 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 			}
 		}
 
+		if stats.HeaderTime != -1 {
+			headerTimeMetric, err := sc.upstreamHeaderTime.GetMetricWith(latencyLabels)
+			if err != nil {
+				klog.ErrorS(err, "Error fetching header time metric")
+			} else {
+				headerTimeMetric.Observe(stats.HeaderTime)
+			}
+		}
+
 		if stats.RequestTime != -1 {
 			requestTimeMetric, err := sc.requestTime.GetMetricWith(requestLabels)
 			if err != nil {
@@ -443,6 +466,7 @@ func (sc SocketCollector) Describe(ch chan<- *prometheus.Desc) {
 	sc.requests.Describe(ch)
 
 	sc.upstreamLatency.Describe(ch)
+	sc.upstreamHeaderTime.Describe(ch)
 
 	sc.responseTime.Describe(ch)
 	sc.responseLength.Describe(ch)
@@ -458,6 +482,7 @@ func (sc SocketCollector) Collect(ch chan<- prometheus.Metric) {
 	sc.requests.Collect(ch)
 
 	sc.upstreamLatency.Collect(ch)
+	sc.upstreamHeaderTime.Collect(ch)
 
 	sc.responseTime.Collect(ch)
 	sc.responseLength.Collect(ch)
diff --git a/rootfs/etc/nginx/lua/monitor.lua b/rootfs/etc/nginx/lua/monitor.lua
index 8b0e18596..a42f26fbf 100644
--- a/rootfs/etc/nginx/lua/monitor.lua
+++ b/rootfs/etc/nginx/lua/monitor.lua
@@ -47,6 +47,7 @@ local function metrics()
     responseLength = tonumber(ngx.var.bytes_sent) or -1,
 
     upstreamLatency = tonumber(ngx.var.upstream_connect_time) or -1,
+    upstreamHeaderTime = tonumber(ngx.var.upstream_header_time) or -1,
     upstreamResponseTime = tonumber(ngx.var.upstream_response_time) or -1,
     upstreamResponseLength = tonumber(ngx.var.upstream_response_length) or -1,
     --upstreamStatus = ngx.var.upstream_status or "-",
diff --git a/rootfs/etc/nginx/lua/test/monitor_test.lua b/rootfs/etc/nginx/lua/test/monitor_test.lua
index e75018adf..99e4697f0 100644
--- a/rootfs/etc/nginx/lua/test/monitor_test.lua
+++ b/rootfs/etc/nginx/lua/test/monitor_test.lua
@@ -93,7 +93,8 @@ describe("Monitor", function()
 
         upstream_addr = "10.10.0.1",
         upstream_connect_time = "0.01",
-        upstream_response_time = "0.02",
+        upstream_header_time = "0.02",
+        upstream_response_time = "0.03",
         upstream_response_length = "456",
         upstream_status = "200",
       }
@@ -125,7 +126,8 @@ describe("Monitor", function()
           responseLength = 512,
 
           upstreamLatency = 0.01,
-          upstreamResponseTime = 0.02,
+          upstreamHeaderTime = 0.02,
+          upstreamResponseTime = 0.03,
           upstreamResponseLength = 456,
         },
         {
@@ -143,7 +145,8 @@ describe("Monitor", function()
           responseLength = 512,
 
           upstreamLatency = 0.01,
-          upstreamResponseTime = 0.02,
+          upstreamHeaderTime = 0.02,
+          upstreamResponseTime = 0.03,
           upstreamResponseLength = 456,
         },
       })

From 0ff500c23f34e939305de709cb6d47da34b66611 Mon Sep 17 00:00:00 2001
From: Daniel Schulze <Llyd@gmx.net>
Date: Thu, 23 Jun 2022 17:29:42 +0200
Subject: [PATCH 0233/1641] Working OpenTelemetry sidecar (base nginx image)
 (#8719)

* Delete entrypoint script and add sidecar lib path

* make otel libs path otel specific

* add description

* remove library path adaption from nginx base image
---
 images/nginx/rootfs/Dockerfile    |  6 +-----
 images/nginx/rootfs/entrypoint.sh | 27 ---------------------------
 2 files changed, 1 insertion(+), 32 deletions(-)
 delete mode 100755 images/nginx/rootfs/entrypoint.sh

diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 75c63cff1..2371acd82 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -31,10 +31,8 @@ ENV LUA_CPATH="/usr/local/lib/lua/?/?.so;/usr/local/lib/lua/?.so;;"
 COPY --from=builder /usr/local /usr/local
 COPY --from=builder /opt /opt
 COPY --from=builder /etc/nginx /etc/nginx
-COPY --from=builder entrypoint.sh /usr/local/entrypoint.sh
 
-RUN chmod +x /usr/local/entrypoint.sh \
-  && apk update \
+RUN apk update \
   && apk upgrade \
   && apk add -U --no-cache \
   bash \
@@ -73,6 +71,4 @@ RUN chmod +x /usr/local/entrypoint.sh \
 
 EXPOSE 80 443
 
-ENTRYPOINT ["/usr/local/entrypoint.sh"]
-
 CMD ["nginx", "-g", "daemon off;"]
diff --git a/images/nginx/rootfs/entrypoint.sh b/images/nginx/rootfs/entrypoint.sh
deleted file mode 100755
index 9479831f1..000000000
--- a/images/nginx/rootfs/entrypoint.sh
+++ /dev/null
@@ -1,27 +0,0 @@
-#!/bin/bash
-
-# Copyright 2022 The Kubernetes Authors.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-set -o errexit
-set -o nounset
-set -o pipefail
-
-if [ -d "/modules_mount/etc/nginx/modules" ]; then
-	for dir in /modules_mount/etc/nginx/modules/*; do
-		cp "$dir"/* "/etc/nginx/modules/$(basename "$dir")"
-	done
-fi
-
-exec "$@"

From bb1f9deafd254daf73039d01cb11a7753c0315ff Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 23 Jun 2022 21:11:42 +0530
Subject: [PATCH 0234/1641] developing k6 perftest (#8581)

---
 .github/workflows/perftest.yaml | 67 ++++++++++++++++++++++++++
 build/dev-env.sh                |  2 +-
 test/k6/README.md               | 83 +++++++++++++++++++++++++++++++++
 test/k6/loadtest.js             | 49 +++++++++++++++++++
 test/k6/smoketest.js            | 64 +++++++++++++++++++++++++
 5 files changed, 264 insertions(+), 1 deletion(-)
 create mode 100644 .github/workflows/perftest.yaml
 create mode 100644 test/k6/README.md
 create mode 100644 test/k6/loadtest.js
 create mode 100644 test/k6/smoketest.js

diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
new file mode 100644
index 000000000..370b37d87
--- /dev/null
+++ b/.github/workflows/perftest.yaml
@@ -0,0 +1,67 @@
+name: Performance Test
+on: 
+  workflow_dispatch:
+    inputs:
+      logLevel:
+        description: 'Log level'     
+        required: true
+        default: 'warning'
+      tags:
+        description: 'K6 Load Test'  
+
+jobs:
+  k6_test_run:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v1
+ 
+      - name: Install K6
+        run: |
+          wget https://github.com/grafana/k6/releases/download/v0.38.2/k6-v0.38.2-linux-amd64.tar.gz
+          tar -xvf k6-v0.38.2-linux-amd64.tar.gz k6-v0.38.2-linux-amd64/k6
+          mv k6-v0.38.2-linux-amd64/k6 .
+          ./k6
+
+      - name: Make dev-env
+        run: |
+          mkdir $HOME/.kube
+          make dev-env
+          podName=`kubectl -n ingress-nginx get po | grep -i controller | awk '{print $1}'`
+          if [[ -z ${podName} ]] ; then 
+            sleep 5
+          fi
+          kubectl wait pod -n ingress-nginx --for condition=Ready $podName
+          kubectl get all -A
+
+      - name: Deploy workload
+        run: |
+          kubectl create deploy k6 --image kennethreitz/httpbin --port 80 && \
+            kubectl expose deploy k6 --port 80 && \
+            kubectl create ing k6 --class nginx \
+            --rule test.ingress-nginx-controller.ga/*=k6:80
+          podName=`kubectl get po | grep -i k6 | awk '{print $1}'`
+          if [[ -z ${podName} ]] ; then 
+            sleep 5
+          fi
+          kubectl wait pod --for condition=Ready $podName
+          kubectl get all,secrets,ing
+
+      - name: Tune OS
+        run : |
+          sudo sysctl -A 2>/dev/null | egrep -i "local_port_range|tw_reuse|tcp_timestamps"
+          sudo sh -c "ulimit"
+          sudo sysctl -w net.ipv4.ip_local_port_range="1024 65535"
+          sudo sysctl -w net.ipv4.tcp_tw_reuse=1
+          sudo sysctl -w net.ipv4.tcp_timestamps=1
+          sudo sh -c "ulimit "
+
+      - name: Run smoke test
+        run: |
+          vmstat -at 5 | tee vmstat_report &
+          #./k6 login cloud -t $K6_TOKEN
+          #./k6 run -o cloud ./smoketest.js
+          ./k6 run test/k6/smoketest.js
+          pkill vmstat
+          cat vmstat_report
diff --git a/build/dev-env.sh b/build/dev-env.sh
index b2e504b15..c0c99526b 100755
--- a/build/dev-env.sh
+++ b/build/dev-env.sh
@@ -61,7 +61,7 @@ echo "[dev-env] building image"
 make build image
 docker tag "${REGISTRY}/controller:${TAG}" "${DEV_IMAGE}"
 
-export K8S_VERSION=${K8S_VERSION:-v1.21.1@sha256:69860bda5563ac81e3c0057d654b5253219618a22ec3a346306239bba8cfa1a6}
+export K8S_VERSION=${K8S_VERSION:-v1.21.12@sha256:f316b33dd88f8196379f38feb80545ef3ed44d9197dca1bfd48bcb1583210207}
 
 KIND_CLUSTER_NAME="ingress-nginx-dev"
 
diff --git a/test/k6/README.md b/test/k6/README.md
new file mode 100644
index 000000000..81169d3f6
--- /dev/null
+++ b/test/k6/README.md
@@ -0,0 +1,83 @@
+# Performance testing ingress-nginx-controller in GithubAction-CI
+This README will evolve as the development of testing occurs.
+
+## INFORMATION
+### 1. No CPU/Memory for stress
+- Github-Actions job runner is a 2core 7Gig VM so that limits what/how we test https://docs.github.com/en/actions/using-github-hosted-runners/about-github-hosted-runners
+
+  <img width="863" alt="image" src="https://user-images.githubusercontent.com/5085914/169713673-7daa56ed-dffe-4c49-8600-4e9a01754d37.png">
+  
+  - Need to eventually get our own beefy runner, with enough cpu/memory to handle stress level load
+
+### 2. Scale is work-in-progress
+- We are grateful to have got a free account on K6.io, as part of their OSS Program. But it is limited to 600 tests per year.
+
+### 3. No Testplans
+- Testplan discussion and coding is needed for more practical real-world testing reports
+
+## DESCRIPTION
+ 
+### What
+- An issue was created for performance tests, for the ingress-nginx-controller builds, https://github.com/kubernetes/ingress-nginx/issues/8033 .
+
+### How
+- A step by step guide to using https://k6.io with GithubActions is here https://k6.io/blog/load-testing-using-github-actions/
+
+  - The link above contains sample code
+    <img width="901" alt="image" src="https://user-images.githubusercontent.com/5085914/169714798-6ff62542-a591-4379-8f50-7678b6024936.png">
+
+
+  - Copy sample test code from website and edit to taste
+   <img width="646" alt="image" src="https://user-images.githubusercontent.com/5085914/169714937-1f6f2a86-36c0-4826-8e28-5e450d461353.png">
+
+  - The CI launches a ubuntu environment and uses `make dev-env` to create a kind cluster. The popular https://httpbin.org api docker image is used to create a workload
+ 
+    <img width="646" alt="image" src="https://user-images.githubusercontent.com/5085914/169714872-613ffd6a-36b5-4317-81fe-c39765a76649.png">
+
+  - We don't want the test to block CI so this syntax from Github-Actions creates a button to run the test
+    <img width="257" alt="image" src="https://user-images.githubusercontent.com/5085914/169715159-e7fbeada-fcb4-4c25-a65f-8be8547b7c19.png">
+
+  - The button looks like this (the `Run Workflow` dropdown at bottom right of screenshot)
+    <img width="1385" alt="image" src="https://user-images.githubusercontent.com/5085914/169715301-0752c5ed-9f84-4560-9a5e-c872c32041de.png">
+
+    <img width="1380" alt="image" src="https://user-images.githubusercontent.com/5085914/169715321-8e76ee6b-2a85-4ed2-ba4e-9d8410518c42.png">
+
+
+### fqdn
+- Obtained a freenom domain `ingress-nginx-controller.ga` 
+
+  - The test uses a fqdn `test.ingress-nginx-controller.ga`
+
+  - The K6 api has configuration options for dns resolution of (above mentioned fqdn) to localhost/loopback/127.0.0.1 (`make dev-env` cluster)
+    <img width="445" alt="image" src="https://user-images.githubusercontent.com/5085914/169716036-213d43c1-4801-4b4f-aee6-1c11c7812e6d.png">
+
+  - Will need to discuss and decide on fqdn, as it relates to tls secret
+
+### tls
+- Procured a letsencrypt wildcard certificate for `*.ingress-nginx-controller.ga`
+
+  - base64 encoded hash of the cert + key is stored in the `Github Project Settings Secrets` as a variable
+
+  - The `GithubActions secrets` variables are decoded in the CI to create the TLS secret
+
+    <img width="1250" alt="image" src="https://user-images.githubusercontent.com/5085914/169716088-030b9f6f-cdb1-470b-b10c-ea4a0fb8199f.png">
+
+
+### Visualization
+- Plan is to run tests locally on a kind cluster, in the CI pipeline, but push results to K6-cloud
+
+  - Pushing and visualization on K6 cloud is as simple as executing `k6 run -o cloud test.js`
+
+  - Currently there is a personal account in trial period (50 tests or 1 year limit) bing used
+
+  - Pushing test-results from K6 tests on laptop, to K6-cloud personal trial account on K6-Cloud, to see what the graphs look like
+
+    <img width="954" alt="image" src="https://user-images.githubusercontent.com/5085914/169713896-2cc3b775-38d9-43c6-8792-2a43329a8cfb.png">
+
+    <img width="950" alt="image" src="https://user-images.githubusercontent.com/5085914/169713941-1671426d-9356-4c50-956b-b4003df4aa78.png">
+
+  - The cli result looks like this
+    <img width="835" alt="image" src="https://user-images.githubusercontent.com/5085914/169715209-68aa116a-020b-4f2d-8c8e-ec2c5f68b7b0.png">
+
+- Before merging the PR, the testing is being done on personal Github project with exact same code as this PR here https://github.com/longwuyuan/k6-loadtest-example/runs/6545706269?check_suite_focus=true
+
diff --git a/test/k6/loadtest.js b/test/k6/loadtest.js
new file mode 100644
index 000000000..2396948fc
--- /dev/null
+++ b/test/k6/loadtest.js
@@ -0,0 +1,49 @@
+// This is a loadtest under development
+// Test here is spec'd to have 100virtual-users
+// Other specs currently similar to smoktest
+// But loadtest needs testplan that likely uses auth & data-transfer
+
+import http from 'k6/http';
+import { sleep } from 'k6';
+
+export const options = {
+  hosts: {
+    'test.ingress-nginx-controller.ga:80': '127.0.0.1:80',
+    'test.ingress-nginx-controller.ga:443': '127.0.0.1:443',
+  },
+  duration: '1m',
+  vus: 100,
+  thresholds: {
+    http_req_failed: ['rate<0.01'], // http errors should be less than 1%
+    http_req_duration: ['p(95)<500'], // 95 percent of response times must be below 500ms
+    http_req_duration: ['p(99)<1500'], // 99 percent of response times must be below 1500ms
+  },
+};
+
+export default function () {
+  const params = {
+    headers: {'host': 'test.ingress-nginx-controller.ga'},
+  };
+  const req1 = {
+  	method: 'GET',
+  	url: 'http://test.ingress-nginx-controller.ga/ip',
+  };
+  const req2 = {
+  	method: 'GET',
+  	url: 'http://test.ingress-nginx-controller.ga/image/svg',
+  };
+  const req3 = {
+  	params: {
+  	  headers: {
+        'Content-Type': 'application/x-www-form-urlencoded' 
+      },
+  	},
+  	method: 'POST',
+  	url: 'https://test.ingress-nginx-controller.ga/post',
+  	body: {
+  	  hello: 'world!',
+  	},
+  };
+  const res = http.batch([req1, req2, req3], params);
+  sleep(1);
+}
diff --git a/test/k6/smoketest.js b/test/k6/smoketest.js
new file mode 100644
index 000000000..b5ab577a9
--- /dev/null
+++ b/test/k6/smoketest.js
@@ -0,0 +1,64 @@
+// smotest.js edited after copy/pasting from https://k6.io docs
+// Using this like loadtest because of limited cpu/memory/other
+
+import http from 'k6/http';
+import { sleep } from 'k6';
+
+export const options = {
+  // testbed created with "make dev-env" requires this name resolution
+  // this does not set the host header
+  hosts: {
+    'test.ingress-nginx-controller.ga:80': '127.0.0.1:80',
+    'test.ingress-nginx-controller.ga:443': '127.0.0.1:443',
+  },
+  // below 3 lines documented at https://k6.io
+  duration: '1m',
+  vus: 50,
+  thresholds: {
+    http_req_failed: ['rate<0.01'], // http errors should be less than 1%
+    http_req_duration: ['p(95)<500'], // 95 percent of response times must be below 500ms
+    http_req_duration: ['p(99)<1500'], // 99 percent of response times must be below 1500ms
+  },
+};
+
+export default function () {
+  // docs of k6 say this is how to adds host header
+  // needed as ingress is created with this host value
+  const params = {
+    headers: {'host': 'test.ingress-nginx-controller.ga'},
+  };
+  // httpbin.org documents these requests
+  const req1 = {
+  	method: 'GET',
+  	url: 'http://test.ingress-nginx-controller.ga/ip',
+  };
+  const req2 = {
+  	method: 'GET',
+  	url: 'http://test.ingress-nginx-controller.ga/image/svg',
+  };
+  const req3 = {
+	params: {
+	  headers: {
+	    'Content-Type': 'application/json' 
+      },
+	},
+  	method: 'POST',
+  	url: 'https://test.ingress-nginx-controller.ga/post',
+  	body: {
+  	  'key1': 'Hello World!',
+  	},
+  };
+  const req4 = {
+    method: 'GET',
+    url: 'https://test.ingress-nginx-controller.ga/basic-auth/admin/admin',
+    params: {
+      headers: {
+        'accept': 'application/jsom',
+      }
+    }
+  }
+  for(let i=0; i<20; i++){
+    const res = http.batch([req0, req1, req2, req3, req4], params);
+    sleep(1);
+  }
+}

From 0f30cb04e43fdf3674a8366f99039fe1d85fc6d9 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 23 Jun 2022 18:55:20 -0500
Subject: [PATCH 0235/1641] Ci pin deps (#8720)

* pinning deps for CI

* update all the actions and pin them

* missed one

* update helm to another action

* typo on step

* typo on step

* Update .github/workflows/ci.yaml

Co-authored-by: Jintao Zhang <tao12345666333@163.com>

Co-authored-by: Jintao Zhang <tao12345666333@163.com>
---
 .github/workflows/ci.yaml        |  68 ++++++++--------
 .github/workflows/depreview.yaml |   4 +-
 .github/workflows/docs.yaml      |   9 ++-
 .github/workflows/helm.yaml      |   9 ++-
 .github/workflows/perftest.yaml  |   3 +
 .github/workflows/release.txt    | 128 -------------------------------
 6 files changed, 50 insertions(+), 171 deletions(-)
 delete mode 100644 .github/workflows/release.txt

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 534c7af00..c200ef1be 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -26,9 +26,9 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
 
-      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2
+      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -49,7 +49,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
 
       - name: Run Gosec Security Scanner
         uses: securego/gosec@b99b5f7838e43a4104354ad92a6a1774302ee1f9 # master
@@ -67,20 +67,22 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
 
       - name: Set up Go 1.18
         id: go
-        uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v2
+        uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v3.2.0
         with:
           go-version: '1.18.2'
 
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@8b122486cedac8393e77aa9734c3528886e4a1a8 #v2.0.0
+
       - name: Set up Docker Buildx
         id: buildx
-        uses: crazy-max/ghaction-docker-buildx@126d331dc69f4a1aa02452e374835e6a5d565613 # v1
+        uses: docker/setup-buildx-action@dc7b9719a96d48369863986a06765841d7ea23f6 # v2.0.0
         with:
-          buildx-version: latest
-          qemu-version: latest
+          version: latest
 
       - name: Available platforms
         run: echo ${{ steps.buildx.outputs.platforms }}
@@ -111,7 +113,7 @@ jobs:
             | pigz > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # v2
+        uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # v3.1.0
         with:
           name: docker.tar.gz
           path: docker.tar.gz
@@ -128,15 +130,15 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
 
       - name: Setup Go
-        uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v2
+        uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v3.2.0
         with:
           go-version: '1.18.2'
 
       - name: cache
-        uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741 # v2
+        uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741 # v3
         with:
           name: docker.tar.gz
 
@@ -146,7 +148,7 @@ jobs:
 
       - name: Run helm-docs
         run: |
-          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.8.1
+          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@e91c4c3337d3bf3fdad8de1763999a5c3325567f  # v1.8.1
           ./helm-docs --chart-search-root=${GITHUB_WORKSPACE}/charts
           DIFF=$(git diff ${GITHUB_WORKSPACE}/charts/ingress-nginx/README.md)
           if [ ! -z "$DIFF" ]; then
@@ -169,7 +171,7 @@ jobs:
 
       - name: Create Kubernetes cluster
         id: kind
-        uses: engineerd/setup-kind@v0.5.0
+        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
         with:
           version: v0.14.0
           image: kindest/node:v1.21.12
@@ -209,7 +211,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
 
       - name: cache
         uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741 # v2
@@ -218,7 +220,7 @@ jobs:
 
       - name: Create Kubernetes ${{ matrix.k8s }} cluster
         id: kind
-        uses: engineerd/setup-kind@v0.5.0
+        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
         with:
           version: v0.14.0
           config: test/e2e/kind.yaml
@@ -230,12 +232,10 @@ jobs:
           failOnError: false
 
       - name: Prepare cluster for testing
+        uses: azure/setup-helm@217bf70cbd2e930ba2e81ba7e1de2f7faecc42ba #v2.1
+        with:
+          version: 'v3.8.0'
         id: local-path
-        run: |
-          kubectl version
-          echo
-          echo "installing helm 3..."
-          curl -sSL https://raw.githubusercontent.com/helm/helm/master/scripts/get-helm-3 | bash
 
       - name: Load images from cache
         run: |
@@ -267,7 +267,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@v2
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
 
       - name: cache
         uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741
@@ -276,24 +276,22 @@ jobs:
 
       - name: Create Kubernetes ${{ matrix.k8s }} cluster
         id: kind
-        uses: engineerd/setup-kind@v0.5.0
+        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
         with:
           version: v0.14.0
           config: test/e2e/kind.yaml
           image: kindest/node:${{ matrix.k8s }}
 
-      - uses: geekyeggo/delete-artifact@v1
+      - uses: geekyeggo/delete-artifact@a6ab43859c960a8b74cbc6291f362c7fb51829ba
         with:
           name: docker.tar.gz
           failOnError: false
 
       - name: Prepare cluster for testing
+        uses: azure/setup-helm@217bf70cbd2e930ba2e81ba7e1de2f7faecc42ba #v2.1
+        with:
+          version: 'v3.8.0'
         id: local-path
-        run: |
-          kubectl version
-          echo
-          echo "installing helm 3..."
-          curl -sSL https://raw.githubusercontent.com/helm/helm/master/scripts/get-helm-3 | bash
 
       - name: Load images from cache
         run: |
@@ -319,9 +317,9 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
 
-      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2
+      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
         id: filter-images
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -385,9 +383,9 @@ jobs:
       PLATFORMS: linux/amd64
     steps:
       - name: Checkout
-        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
 
-      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2
+      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
         id: filter-images
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -398,7 +396,7 @@ jobs:
       - name: Create Kubernetes cluster
         id: kind
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: engineerd/setup-kind@v0.5.0
+        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
         with:
           version: v0.14.0
           image: kindest/node:v1.21.12
@@ -406,7 +404,7 @@ jobs:
       - name: Set up Go 1.18
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v2
+        uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v3.2.0
         with:
           go-version: '1.18.2'
 
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index a25de591b..0f84fd837 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@v3
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b #v3.0.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@v2
+        uses: actions/dependency-review-action@1c59cdf2a9c7f29c90e8da32237eb04b81bad9f0 #v2.0.2
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index df398b3f1..834859aa0 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -5,6 +5,9 @@ on:
     branches:
       - main
 
+permissions:
+  contents: read
+
 jobs:
 
   changes:
@@ -21,9 +24,9 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b #v3.0.2
 
-      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2
+      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -46,7 +49,7 @@ jobs:
     steps:
 
       - name: Checkout master
-        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b #v3.0.2
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index c20716065..49ef6acd4 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -6,6 +6,9 @@ on:
       - main
       - legacy
 
+permissions:
+  contents: read
+
 jobs:
 
   changes:
@@ -22,9 +25,9 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
 
-      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2
+      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -49,7 +52,7 @@ jobs:
     steps:
 
       - name: Checkout master
-        uses: actions/checkout@629c2de402a417ea7690ca6ce3f33229e27606a5 # v2
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 370b37d87..aeda0425e 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -9,6 +9,9 @@ on:
       tags:
         description: 'K6 Load Test'  
 
+permissions:
+  contents: read
+
 jobs:
   k6_test_run:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/release.txt b/.github/workflows/release.txt
deleted file mode 100644
index 18039311e..000000000
--- a/.github/workflows/release.txt
+++ /dev/null
@@ -1,128 +0,0 @@
-name: Release
-
-on:
-  watch:
-    types: [started]
-
-jobs:
-  release:
-    runs-on: ubuntu-latest
-    if: github.actor == 'aledbf'
-    steps:
-      - name: Checkout master
-        uses: actions/checkout@v2
-
-      - name: Set up Go 1.14
-        uses: actions/setup-go@master
-        with:
-          go-version: 1.14
-
-      - name: Build krew plugin
-        shell: bash
-        run: |
-          export PATH=${PATH}:`go env GOPATH`/bin
-          make build-plugin
-
-#      - name: Build and publish images
-#        shell: bash
-#        run: |
-#          cat <<EOF | > build/images/nginx/aws.tfvars
-#          access_key = "${{ secrets.AWS_ACCESS_KEY }}"
-#          secret_key = "${{ secrets.AWS_ACCESS_SECRET_KEY }}"
-#          EOF
-#
-#          cat <<EOF | > build/images/nginx/env.tfvars
-#          docker_username="${{ secrets.DOCKER_USERNAME }}"
-#          docker_password="${{ secrets.DOCKER_PASSWORD }}"
-#          EOF
-#
-#          ./build/build-ingress-controller.sh
-
-      - name: Create env variables
-        shell: bash
-        run: |
-          # $(cat cmd/plugin/release/ingress-nginx.yaml)
-          echo "::set-env name=RELEASE_VERSION::$(make show-version)"
-          echo "::set-env name=RELEASE_CHANGELOG::##CHANGELOG##"
-
-      - name: Create release
-        id: create_release
-        uses: actions/create-release@v1
-        if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags/controller')
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-        with:
-          tag_name: controller-${{ env.RELEASE_VERSION }}
-          release_name: "NGINX: ${{ env.RELEASE_VERSION }}"
-          body: |
-            **Image:** `quay.io/kubernetes-ingress-controller/nginx-ingress-controller:${{ env.RELEASE_VERSION }}`
-
-            ${{ env.RELEASE_CHANGELOG }}
-
-            Complete changelog [here](https://github.com/kubernetes/ingress-nginx/blob/master/Changelog.md)
-
-          draft: false
-          prerelease: false
-
-      - name: Upload krew plugin Darwin
-        uses: actions/upload-release-asset@v1
-        if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags/controller')
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-        with:
-          upload_url: ${{ steps.create_release.outputs.upload_url }}
-          asset_path: cmd/plugin/release/kubectl-ingress_nginx-darwin-amd64.tar.gz
-          asset_name: kubectl-ingress_nginx-darwin-amd64.tar.gz
-          asset_content_type: application/tar+gzip
-
-      - name: Upload krew plugin Linux
-        uses: actions/upload-release-asset@v1
-        if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags/controller')
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-        with:
-          upload_url: ${{ steps.create_release.outputs.upload_url }}
-          asset_path: cmd/plugin/release/kubectl-ingress_nginx-linux-amd64.tar.gz
-          asset_name: kubectl-ingress_nginx-linux-amd64.tar.gz
-          asset_content_type: application/tar+gzip
-
-      - name: Upload krew plugin Windows
-        uses: actions/upload-release-asset@v1
-        if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags/controller')
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-        with:
-          upload_url: ${{ steps.create_release.outputs.upload_url }}
-          asset_path: cmd/plugin/release/kubectl-ingress_nginx-windows-amd64.tar.gz
-          asset_name: kubectl-ingress_nginx-windows-amd64.tar.gz
-          asset_content_type: application/tar+gzip
-
-      - name: Upload krew plugin
-        uses: actions/upload-release-asset@v1
-        if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags/controller')
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-        with:
-          upload_url: ${{ steps.create_release.outputs.upload_url }}
-          asset_path: cmd/plugin/release/ingress-nginx.yaml
-          asset_name: ingress-nginx.yaml
-          asset_content_type: text/x-yaml
-
-      - name: Create KREW_PLUGIN_BODY_PR env variable
-        shell: bash
-        run: |
-          echo "::set-env name=KREW_PLUGIN_BODY_PR::$(cat cmd/plugin/release/ingress-nginx.yaml)"
-
-#      - name: Open PR for new release of Krew Plugin
-#        uses: gha-utilities/init-pull-request@v0.1.2
-#        env:
-#          GITHUB_REPOSITORY: maintainer/repo-name
-#        with:
-#          verbose: true
-#          draft: false
-#          pull_request_token: ${{ secrets.GITHUB_TOKEN }}
-#          head: ingress-nginx:krew
-#          base: krew
-#          title: 'Update ingress-nginx krew plugin to ${{ env.RELEASE_VERSION }}'
-#          body: |
-#            ${{ env.KREW_PLUGIN_BODY_PR }}

From 55e93464dbd95c5ee59627ca1e2e16d155317e48 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 24 Jun 2022 11:01:20 +0530
Subject: [PATCH 0236/1641] set ld-musl-path (#8736)

---
 rootfs/Dockerfile        | 9 ++++++---
 rootfs/Dockerfile.chroot | 7 +++++--
 2 files changed, 11 insertions(+), 5 deletions(-)

diff --git a/rootfs/Dockerfile b/rootfs/Dockerfile
index 0bf9a0304..48c57a74e 100644
--- a/rootfs/Dockerfile
+++ b/rootfs/Dockerfile
@@ -31,8 +31,6 @@ LABEL org.opencontainers.image.revision="${COMMIT_SHA}"
 
 LABEL build_id="${BUILD_ID}"
 
-ENV LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/modules_mount/etc/nginx/modules/modules
-
 WORKDIR  /etc/nginx
 
 RUN apk update \
@@ -61,7 +59,12 @@ RUN bash -xeu -c ' \
   for dir in "${writeDirs[@]}"; do \
     mkdir -p ${dir}; \
     chown -R www-data.www-data ${dir}; \
-  done'
+  done' \
+  # LD_LIBRARY_PATH does not work so below is needed for  opentelemetry/other modules
+  # Put libs of newer modules under `/modules_mount/<other>/lib` and add that path below
+  # Could get complicated arch specific paths become a need
+  && echo "/lib:/usr/lib:/usr/local/lib:/modules_mount/otel/lib" > /etc/ld-musl-x86_64.path
+  
 
 RUN apk add --no-cache libcap \
   && setcap    cap_net_bind_service=+ep /nginx-ingress-controller \
diff --git a/rootfs/Dockerfile.chroot b/rootfs/Dockerfile.chroot
index 04adccf8a..10a335679 100644
--- a/rootfs/Dockerfile.chroot
+++ b/rootfs/Dockerfile.chroot
@@ -44,7 +44,6 @@ LABEL build_id="${BUILD_ID}"
 ENV LUA_PATH="/usr/local/share/luajit-2.1.0-beta3/?.lua;/usr/local/share/lua/5.1/?.lua;/usr/local/lib/lua/?.lua;;"
 ENV LUA_CPATH="/usr/local/lib/lua/?/?.so;/usr/local/lib/lua/?.so;;"
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
-ENV LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/modules_mount/etc/nginx/modules/modules
 
 RUN apk update \
   && apk upgrade \
@@ -81,7 +80,11 @@ RUN bash -xeu -c ' \
   for dir in "${writeDirs[@]}"; do \
     mkdir -p ${dir}; \
     chown -R www-data.www-data ${dir}; \
-  done'
+  done' \
+  # LD_LIBRARY_PATH does not work so below is needed for  opentelemetry/other modules
+  # Put libs of newer modules under `/modules_mount/<other>/lib` and add that path below
+  # Could get complicated arch specific paths become a need
+  && echo "/lib:/usr/lib:/usr/local/lib:/modules_mount/otel/lib" > /etc/ld-musl-x86_64.path
 
 RUN apk add --no-cache libcap \
   && setcap    cap_sys_chroot,cap_net_bind_service=+ep /nginx-ingress-controller \

From 3348cd71e00ad67e51edc7c45a4b25df4b9d24d0 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 24 Jun 2022 22:14:57 +0530
Subject: [PATCH 0237/1641] updated baseimage sha (#8737)

---
 Makefile                         | 2 +-
 images/echo/Makefile             | 2 +-
 images/nginx/README.md           | 2 +-
 images/nginx/rc.yaml             | 2 +-
 images/test-runner/Makefile      | 2 +-
 test/e2e/framework/deployment.go | 2 +-
 6 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/Makefile b/Makefile
index 99730b4c0..7b74f2e60 100644
--- a/Makefile
+++ b/Makefile
@@ -55,7 +55,7 @@ endif
 
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
-BASE_IMAGE ?= registry.k8s.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
+BASE_IMAGE ?= registry.k8s.io/ingress-nginx/nginx:0ff500c23f34e939305de709cb6d47da34b66611@sha256:15f91034a03550dfab6ec50a7be4abbb683d087e234ad7fef5adedef54e46a5a
 
 GOARCH=$(ARCH)
 
diff --git a/images/echo/Makefile b/images/echo/Makefile
index fb53283f7..66b3af7eb 100644
--- a/images/echo/Makefile
+++ b/images/echo/Makefile
@@ -36,7 +36,7 @@ build: ensure-buildx
 		--platform=${PLATFORMS} $(OUTPUT) \
 		--progress=$(PROGRESS) \
 		--pull \
-		--build-arg BASE_IMAGE=registry.k8s.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41 \
+		--build-arg BASE_IMAGE=registry.k8s.io/ingress-nginx/nginx:0ff500c23f34e939305de709cb6d47da34b66611@sha256:15f91034a03550dfab6ec50a7be4abbb683d087e234ad7fef5adedef54e46a5a \
 		--build-arg LUAROCKS_VERSION=3.8.0 \
 		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
 		-t $(IMAGE):$(TAG) rootfs
diff --git a/images/nginx/README.md b/images/nginx/README.md
index 5966a4fa1..a7e327700 100644
--- a/images/nginx/README.md
+++ b/images/nginx/README.md
@@ -20,6 +20,6 @@ This image provides a default configuration file with no backend servers.
 _Using docker_
 
 ```console
-docker run -v /some/nginx.conf:/etc/nginx/nginx.conf:ro registry.k8s.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
+docker run -v /some/nginx.conf:/etc/nginx/nginx.conf:ro registry.k8s.io/ingress-nginx/nginx:0ff500c23f34e939305de709cb6d47da34b66611@sha256:15f91034a03550dfab6ec50a7be4abbb683d087e234ad7fef5adedef54e46a5a
 ```
 
diff --git a/images/nginx/rc.yaml b/images/nginx/rc.yaml
index 632e62cdc..2936cf14b 100644
--- a/images/nginx/rc.yaml
+++ b/images/nginx/rc.yaml
@@ -38,7 +38,7 @@ spec:
     spec:
       containers:
         - name: nginx
-          image: registry.k8s.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
+          image: registry.k8s.io/ingress-nginx/nginx:0ff500c23f34e939305de709cb6d47da34b66611@sha256:15f91034a03550dfab6ec50a7be4abbb683d087e234ad7fef5adedef54e46a5a
           ports:
             - containerPort: 80
             - containerPort: 443
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 1275c7589..e6547f2fe 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -23,7 +23,7 @@ REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-runner
 
-NGINX_BASE_IMAGE ?= registry.k8s.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41
+NGINX_BASE_IMAGE ?= registry.k8s.io/ingress-nginx/nginx:0ff500c23f34e939305de709cb6d47da34b66611@sha256:15f91034a03550dfab6ec50a7be4abbb683d087e234ad7fef5adedef54e46a5a
 
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 228c35434..1ffa8db92 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -38,7 +38,7 @@ const SlowEchoService = "slow-echo"
 const HTTPBinService = "httpbin"
 
 // NginxBaseImage use for testing
-const NginxBaseImage = "registry.k8s.io/ingress-nginx/nginx:cd6f88af3f976a180ed966dadf273473ae768dfa@sha256:18f91105e4099941d2efee71a8ec52c6ef7702d5f7e8214b7cb5f25cc10a0b41"
+const NginxBaseImage = "registry.k8s.io/ingress-nginx/nginx:0ff500c23f34e939305de709cb6d47da34b66611@sha256:15f91034a03550dfab6ec50a7be4abbb683d087e234ad7fef5adedef54e46a5a"
 
 type deploymentOptions struct {
 	namespace string

From e1a070180269ca3f3663e50f190e01cd38f2236f Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sun, 26 Jun 2022 20:18:59 +0530
Subject: [PATCH 0238/1641] change sha e2etestrunner and echoserver (#8740)

---
 build/run-in-docker.sh           | 2 +-
 test/e2e-image/Dockerfile        | 2 +-
 test/e2e/framework/deployment.go | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 2254a73a5..db8a32993 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -37,7 +37,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20220524-g8963ed17e@sha256:4fbcbeebd4c24587699b027ad0f0aa7cd9d76b58177a3b50c228bae8141bcf95}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20220624-g3348cd71e@sha256:2a34e322b7ff89abdfa0b6202f903bf5618578b699ff609a3ddabac0aae239c8}
 
 DOCKER_OPTS=${DOCKER_OPTS:-}
 DOCKER_IN_DOCKER_ENABLED=${DOCKER_IN_DOCKER_ENABLED:-}
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index ff6e9684a..78d839342 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,4 +1,4 @@
-FROM registry.k8s.io/ingress-nginx/e2e-test-runner:v20220524-g8963ed17e@sha256:4fbcbeebd4c24587699b027ad0f0aa7cd9d76b58177a3b50c228bae8141bcf95 AS BASE
+FROM registry.k8s.io/ingress-nginx/e2e-test-runner:v20220624-g3348cd71e@sha256:2a34e322b7ff89abdfa0b6202f903bf5618578b699ff609a3ddabac0aae239c8 AS BASE
 
 FROM alpine:3.14.6
 
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 1ffa8db92..3007d7d3a 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -78,7 +78,7 @@ func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
 		o(options)
 	}
 
-	deployment := newDeployment(options.name, options.namespace, "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:131ece0637b29231470cfaa04690c2966a2e0b147d3c9df080a0857b78982410", 80, int32(options.replicas),
+	deployment := newDeployment(options.name, options.namespace, "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:05948cf43aa41050943b2c887adcc2f7630893b391c1201e99a6c12ed06ba51b", 80, int32(options.replicas),
 		nil,
 		[]corev1.VolumeMount{},
 		[]corev1.Volume{},

From 9baaae1d4e827c5bc1ff233d35c63be6f63399a2 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 27 Jun 2022 04:46:59 -0700
Subject: [PATCH 0239/1641] Bump github.com/stretchr/testify from 1.7.2 to
 1.7.5 (#8751)

Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.2 to 1.7.5.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.7.2...v1.7.5)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 8 +++++---
 2 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/go.mod b/go.mod
index 4827e2b26..ee56c9c83 100644
--- a/go.mod
+++ b/go.mod
@@ -23,7 +23,7 @@ require (
 	github.com/prometheus/common v0.35.0
 	github.com/spf13/cobra v1.4.0
 	github.com/spf13/pflag v1.0.5
-	github.com/stretchr/testify v1.7.2
+	github.com/stretchr/testify v1.7.5
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5
 	golang.org/x/net v0.0.0-20220225172249-27dd8689420f
diff --git a/go.sum b/go.sum
index 9b69b1c95..5d9a1d000 100644
--- a/go.sum
+++ b/go.sum
@@ -571,8 +571,9 @@ github.com/spf13/viper v1.8.1/go.mod h1:o0Pch8wJ9BVSWGQMbra6iw0oQ5oktSIBaujf1rJH
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/objx v0.2.0 h1:Hbg2NidpLE8veEBkEZTL3CvlkUIVzuU9jDplZO54c48=
 github.com/stretchr/objx v0.2.0/go.mod h1:qt09Ya8vawLte6SNmTgCsAVtYtaKzEcn8ATUoHMkEqE=
+github.com/stretchr/objx v0.4.0 h1:M2gUjqZET1qApGOWNSnZ49BAIMX4F/1plDv3+l31EJ4=
+github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
 github.com/stretchr/testify v1.1.3/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
@@ -580,8 +581,9 @@ github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81P
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.7.2 h1:4jaiDzPyXQvSd7D0EjG45355tLlV3VOECpq10pLC+8s=
-github.com/stretchr/testify v1.7.2/go.mod h1:R6va5+xMeoiuVRoj+gSkQ7d3FALtqAAGI1FQKckRals=
+github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.7.5 h1:s5PTfem8p8EbKQOctVV53k6jCJt3UX4IEJzwh+C324Q=
+github.com/stretchr/testify v1.7.5/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/subosito/gotenv v1.2.0/go.mod h1:N0PQaV/YGNqwC0u51sEeR/aUtSLEXKX9iv69rRypqCw=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=

From 9dd1029920b6f7e55b2146be8e16434f6868a777 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 30 Jun 2022 11:18:06 +0530
Subject: [PATCH 0240/1641] updated URLs (#8767)

---
 docs/deploy/index.md | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index fad8338c6..250c4261e 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -51,7 +51,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -186,17 +186,17 @@ In AWS we use a Network load balancer (NLB) to expose the NGINX Ingress controll
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
 
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -238,7 +238,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -252,7 +252,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regards to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -260,13 +260,13 @@ More information with regards to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/do/deploy.yaml
 ```
 
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -280,7 +280,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A [complete list of available annotations for Oracle Cloud Infrastructure](https://github.com/oracle/oci-cloud-controller-manager/blob/master/docs/load-balancer-annotations.md) can be found in the [OCI Cloud Controller Manager](https://github.com/oracle/oci-cloud-controller-manager) documentation.
@@ -292,7 +292,7 @@ This section is applicable to Kubernetes clusters deployed on bare metal servers
 For quick testing, you can use a [NodePort](https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport). This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.0/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range), see [bare-metal considerations](./baremetal.md).

From 6ec425087fb5ea5ff39c7737561c223e66b18728 Mon Sep 17 00:00:00 2001
From: Pearl Dsilva <pearl1594@gmail.com>
Date: Fri, 1 Jul 2022 16:15:22 +0530
Subject: [PATCH 0241/1641] Fix typos and add links to developer guide (#8769)

---
 docs/developer-guide/code-overview.md | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/docs/developer-guide/code-overview.md b/docs/developer-guide/code-overview.md
index 7531daf92..d503cfb8c 100644
--- a/docs/developer-guide/code-overview.md
+++ b/docs/developer-guide/code-overview.md
@@ -11,7 +11,9 @@ This part of the code is responsible for the main logic of Ingress NGINX. It con
 
 ### Core Sync Logics:
 
-Ingress-nginx has an internal model of the ingresses, secrets and endpoints in a given cluster. It maintains two copy of that (1) currently running configuration model and (2) the one generated in response to some changes in the cluster. 
+Ingress-nginx has an internal model of the ingresses, secrets and endpoints in a given cluster. It maintains two copies of that:
+1. currently running configuration model
+1. the one generated in response to some changes in the cluster
 
 The sync logic diffs the two models and if there's a change it tries to converge the running configuration to the new one. 
 
@@ -25,9 +27,7 @@ The following parts of the code can be found:
 
 ### Entrypoint
 
-Is the `main` package, responsible for starting ingress-nginx program.
-
-It can be found in [cmd/nginx](https://github.com/kubernetes/ingress-nginx/tree/main/cmd/nginx) directory.
+The `main` package is responsible for starting ingress-nginx program, which can be found in [cmd/nginx](https://github.com/kubernetes/ingress-nginx/tree/main/cmd/nginx) directory.
 
 ### Version
 
@@ -35,7 +35,7 @@ Is the package of the code responsible for adding `version` subcommand, and can
 
 ### Internal code
 
-This part of the code contains the internal logics that compose Ingress NGINX Controller, and it's split in:
+This part of the code contains the internal logics that compose Ingress NGINX Controller, and it's split into:
 
 #### Admission Controller
 
@@ -54,13 +54,13 @@ This code can be found in [internal/file](https://github.com/kubernetes/ingress-
 
 Contains all the logics from NGINX Ingress Controller, with some examples being:
 
-* Expected Golang structures that will be used in templates and other parts of the codes - [internal/ingress/types.go](https://github.com/kubernetes/ingress-nginx/blob/main/internal/ingress/types.go).
+* Expected Golang structures that will be used in templates and other parts of the code - [internal/ingress/types.go](https://github.com/kubernetes/ingress-nginx/blob/main/internal/ingress/types.go).
 * supported annotations and its parsing logics - [internal/ingress/annotations](https://github.com/kubernetes/ingress-nginx/tree/main/internal/ingress/annotations).
 * reconciliation loops and logics - [internal/ingress/controller](https://github.com/kubernetes/ingress-nginx/tree/main/internal/ingress/controller)
-* Defaults - define the default struct.
+* defaults - define the default struct - [internal/ingress/defaults](https://github.com/kubernetes/ingress-nginx/tree/main/internal/ingress/defaults).
 * Error interface and types implementation - [internal/ingress/errors](https://github.com/kubernetes/ingress-nginx/tree/main/internal/ingress/errors)
 * Metrics collectors for Prometheus exporting - [internal/ingress/metric](https://github.com/kubernetes/ingress-nginx/tree/main/internal/ingress/metric).
-* Resolver - Extracts information from a controller.
+* Resolver - Extracts information from a controller - [internal/ingress/resolver](https://github.com/kubernetes/ingress-nginx/tree/main/internal/ingress/resolver).
 * Ingress Object status publisher - [internal/ingress/status](https://github.com/kubernetes/ingress-nginx/tree/main/internal/ingress/status).
 
 And other parts of the code that will be written in this document in a future.

From ed93b707121c83d547208202659dbeeac240bfda Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Sun, 3 Jul 2022 02:37:24 +0800
Subject: [PATCH 0242/1641] Bump github/codeql-action from 1.0.26 to 2.1.14
 (#8765)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 8192dc19a..d7f212fd0 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@5f532563584d71fdef14ee64d17bafb34f751ce5 # v1.0.26
+        uses: github/codeql-action/upload-sarif@41a4ada31ba866a7f1196b9602703a89edd69e22 # v2.1.14
         with:
           sarif_file: results.sarif

From 7b1547e4254b3d4b6641ca8c8372dbae585ff101 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 2 Jul 2022 11:41:24 -0700
Subject: [PATCH 0243/1641] Bump github.com/spf13/cobra from 1.4.0 to 1.5.0
 (#8752)

Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.4.0 to 1.5.0.
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](https://github.com/spf13/cobra/compare/v1.4.0...v1.5.0)

---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/go.mod b/go.mod
index ee56c9c83..19a27a20f 100644
--- a/go.mod
+++ b/go.mod
@@ -21,7 +21,7 @@ require (
 	github.com/prometheus/client_golang v1.12.2
 	github.com/prometheus/client_model v0.2.0
 	github.com/prometheus/common v0.35.0
-	github.com/spf13/cobra v1.4.0
+	github.com/spf13/cobra v1.5.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.7.5
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
diff --git a/go.sum b/go.sum
index 5d9a1d000..f0c9dfb17 100644
--- a/go.sum
+++ b/go.sum
@@ -130,7 +130,7 @@ github.com/coreos/go-systemd/v22 v22.3.2/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSV
 github.com/coreos/pkg v0.0.0-20180928190104-399ea9e2e55f/go.mod h1:E3G3o1h8I7cfcXa63jLwjI0eiQQMgzzUDFVpN/nH/eA=
 github.com/cpuguy83/go-md2man/v2 v2.0.0-20190314233015-f79a8a8ca69d/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
 github.com/cpuguy83/go-md2man/v2 v2.0.0/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
-github.com/cpuguy83/go-md2man/v2 v2.0.1/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
+github.com/cpuguy83/go-md2man/v2 v2.0.2/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/creack/pty v1.1.11/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/cyphar/filepath-securejoin v0.2.3 h1:YX6ebbZCZP7VkM3scTTokDgBL2TY741X51MTk3ycuNI=
@@ -557,8 +557,8 @@ github.com/spf13/cast v1.3.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkU
 github.com/spf13/cobra v1.0.0/go.mod h1:/6GTrnGXV9HjY+aR4k0oJ5tcvakLuG6EuKReYlHNrgE=
 github.com/spf13/cobra v1.1.3/go.mod h1:pGADOWyqRD/YMrPZigI/zbliZ2wVD/23d+is3pSWzOo=
 github.com/spf13/cobra v1.2.1/go.mod h1:ExllRjgxM/piMAM+3tAZvg8fsklGAf3tPfi+i8t68Nk=
-github.com/spf13/cobra v1.4.0 h1:y+wJpx64xcgO1V+RcnwW0LEHxTKRi2ZDPSBjWnrg88Q=
-github.com/spf13/cobra v1.4.0/go.mod h1:Wo4iy3BUC+X2Fybo0PDqwJIv3dNRiZLHQymsfxlB84g=
+github.com/spf13/cobra v1.5.0 h1:X+jTBEBqF0bHN+9cSMgmfuvv2VHJ9ezmFNf9Y/XstYU=
+github.com/spf13/cobra v1.5.0/go.mod h1:dWXEIy2H428czQCjInthrTRUg7yKbok+2Qi/yBIJoUM=
 github.com/spf13/jwalterweatherman v1.0.0/go.mod h1:cQK4TGJAtQXfYWX+Ddv3mKDzgVb68N+wFjFa4jdeBTo=
 github.com/spf13/jwalterweatherman v1.1.0/go.mod h1:aNWZUN0dPAAO/Ljvb5BEdw96iTZ0EXowPYD95IqWIGo=
 github.com/spf13/pflag v0.0.0-20170130214245-9ff6c6923cff/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=

From fda73c983edc25f496434e8d726e510bb4a43a05 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 2 Jul 2022 14:35:26 -0700
Subject: [PATCH 0244/1641] Bump github/codeql-action from 2.1.14 to 2.1.15
 (#8773)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.14 to 2.1.15.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/41a4ada31ba866a7f1196b9602703a89edd69e22...3f62b754e23e0dd60f91b744033e1dc1654c0ec6)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index d7f212fd0..8a682482a 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@41a4ada31ba866a7f1196b9602703a89edd69e22 # v2.1.14
+        uses: github/codeql-action/upload-sarif@3f62b754e23e0dd60f91b744033e1dc1654c0ec6 # v2.1.14
         with:
           sarif_file: results.sarif

From 0f3c1f7be2a5ad5caa465e43b865274d7bda706a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 2 Jul 2022 14:41:24 -0700
Subject: [PATCH 0245/1641] Bump ossf/scorecard-action from 1.1.1 to 1.1.2
 (#8772)

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 1.1.1 to 1.1.2.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](https://github.com/ossf/scorecard-action/compare/3e15ea8318eee9b333819ec77a36aca8d39df13e...ce330fde6b1a5c9c75b417e7efc510b822a35564)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 8a682482a..5a9aa0b4f 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -30,7 +30,7 @@ jobs:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@3e15ea8318eee9b333819ec77a36aca8d39df13e # v1.1.1
+        uses: ossf/scorecard-action@ce330fde6b1a5c9c75b417e7efc510b822a35564 # v1.1.1
         with:
           results_file: results.sarif
           results_format: sarif

From 653f1e8a9bf7351e7a1b9c0c243b88317abfa387 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sun, 3 Jul 2022 03:13:24 +0530
Subject: [PATCH 0246/1641] fix bullet md format (#8771)

---
 docs/developer-guide/code-overview.md | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/docs/developer-guide/code-overview.md b/docs/developer-guide/code-overview.md
index d503cfb8c..c55fb69f9 100644
--- a/docs/developer-guide/code-overview.md
+++ b/docs/developer-guide/code-overview.md
@@ -12,8 +12,9 @@ This part of the code is responsible for the main logic of Ingress NGINX. It con
 ### Core Sync Logics:
 
 Ingress-nginx has an internal model of the ingresses, secrets and endpoints in a given cluster. It maintains two copies of that:
-1. currently running configuration model
-1. the one generated in response to some changes in the cluster
+
+1. One copy is the currently running configuration model
+2. Second copy is the one generated in response to some changes in the cluster
 
 The sync logic diffs the two models and if there's a change it tries to converge the running configuration to the new one. 
 

From d193c32a701b13e319700708815b29dce6017b5e Mon Sep 17 00:00:00 2001
From: Luc <luc.juggery@gmail.com>
Date: Sat, 2 Jul 2022 23:55:24 +0200
Subject: [PATCH 0247/1641] Update deploy.yaml (#8365)

* Update deploy.yaml

Removed the *service.beta.kubernetes.io/exoscale-loadbalancer-name* annotation so it uses service UID by default.
It thus removes the current limitation that prevent the installation of several ingress nginx controllers on different clusters belonging to the same organization.

* Removing default loadbalancer name
---
 deploy/static/provider/exoscale/deploy.yaml           | 1 -
 hack/manifest-templates/provider/exoscale/values.yaml | 1 -
 2 files changed, 2 deletions(-)

diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 7e29aefa9..6c2342b66 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -315,7 +315,6 @@ metadata:
   annotations:
     service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
       load balancer
-    service.beta.kubernetes.io/exoscale-loadbalancer-name: nginx-ingress-controller
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
diff --git a/hack/manifest-templates/provider/exoscale/values.yaml b/hack/manifest-templates/provider/exoscale/values.yaml
index 76863f013..17458cac9 100644
--- a/hack/manifest-templates/provider/exoscale/values.yaml
+++ b/hack/manifest-templates/provider/exoscale/values.yaml
@@ -5,7 +5,6 @@ controller:
     type: LoadBalancer
     externalTrafficPolicy: Local
     annotations:
-      service.beta.kubernetes.io/exoscale-loadbalancer-name: "nginx-ingress-controller"
       service.beta.kubernetes.io/exoscale-loadbalancer-description: "NGINX Ingress Controller load balancer"
       service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: "source-hash"
       service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: "http"

From 23cc9006903932bd71018fff01968a8d8bcb8eaa Mon Sep 17 00:00:00 2001
From: Taylor Monacelli <taylormonacelli@gmail.com>
Date: Sun, 3 Jul 2022 10:35:21 -0700
Subject: [PATCH 0248/1641] Update docs to make it easier for noobs to follow
 step by step (#8738)

* Change helm release name in docs

Following step by step instructions in readme I ran into error:
Error: release: not found

And realized the commandline was differnent from description.  Let
change description to match commandline?

* Fix verb tense in docs
---
 docs/user-guide/monitoring.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index 048607cd5..c59e976e7 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -18,7 +18,7 @@ This tutorial will show you how to install [Prometheus](https://prometheus.io/)
   2. controller.podAnnotations."prometheus.io/scrape"="true"
   3. controller.podAnnotations."prometheus.io/port"="10254"
 
-  - The easiest way to configure the controller for metrics is via helm upgrade. Assuming you have installed the ingress-nginx controller as a helm release named ingress-controller, then you can simply type the command show below :
+  - The easiest way to configure the controller for metrics is via helm upgrade. Assuming you have installed the ingress-nginx controller as a helm release named ingress-nginx, then you can simply type the command shown below :
   ```
   helm upgrade ingress-nginx ingress-nginx \
   --repo https://kubernetes.github.io/ingress-nginx \
@@ -29,7 +29,7 @@ This tutorial will show you how to install [Prometheus](https://prometheus.io/)
   ```
   - You can validate that the controller is configured for metrics by looking at the values of the installed release, like this:
   ```
-  helm get values ingress-controller --namespace ingress-nginx
+  helm get values ingress-nginx --namespace ingress-nginx
   ```
   - You should be able to see the values shown below:
   ```

From 7b832da8697b1e287533a76f687fc240a277cb65 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Sun, 3 Jul 2022 13:49:21 -0400
Subject: [PATCH 0249/1641] Remove stable (#8775)

* update stable.txt

* remove stable.txt since kind doesnt need it
---
 stable.txt | 1 -
 1 file changed, 1 deletion(-)
 delete mode 100644 stable.txt

diff --git a/stable.txt b/stable.txt
deleted file mode 100644
index 3e5a2f306..000000000
--- a/stable.txt
+++ /dev/null
@@ -1 +0,0 @@
-controller-v1.1.3
\ No newline at end of file

From fb3b2882c25caa96384c49bdb8e501e7364ddd99 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Mon, 4 Jul 2022 18:17:23 +0800
Subject: [PATCH 0250/1641] chore: remove stable.txt from release process
 (#8778)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 RELEASE.md | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/RELEASE.md b/RELEASE.md
index 97ea661f8..8fbc0932f 100644
--- a/RELEASE.md
+++ b/RELEASE.md
@@ -272,12 +272,8 @@ Promoting the images basically means that images, that were pushed to staging co
 - Update Supported versions in the Support Versions table in the README.md
 - Execute the script to update e2e docs [hack/generate-e2e-suite-doc.sh](https://github.com/kubernetes/ingress-nginx/blob/main/hack/generate-e2e-suite-doc.sh)
 
-### h. Edit stable.txt
+### h. Update README.md
 
-- Edit the [stable.txt](stable.txt) file(if applicable), in the root of the repo, to reflect the release to be created
-- Criteria is a release that has been GA for a while but reported issues are not bugs but mostly /kind support or feature
-
-### i. Update README.md
 - Update the table in README.md in the root of the projet to reflect the support matrix. Add the new release version and details in there.
 
 ## 5. RELEASE new version

From 193b461fb763832f0e0dcf2eab0e6794ef797ec8 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 4 Jul 2022 11:19:23 -0700
Subject: [PATCH 0251/1641] Bump github.com/stretchr/testify from 1.7.5 to
 1.8.0 (#8781)

Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.7.5 to 1.8.0.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.7.5...v1.8.0)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 19a27a20f..0fb419511 100644
--- a/go.mod
+++ b/go.mod
@@ -23,7 +23,7 @@ require (
 	github.com/prometheus/common v0.35.0
 	github.com/spf13/cobra v1.5.0
 	github.com/spf13/pflag v1.0.5
-	github.com/stretchr/testify v1.7.5
+	github.com/stretchr/testify v1.8.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5
 	golang.org/x/net v0.0.0-20220225172249-27dd8689420f
diff --git a/go.sum b/go.sum
index f0c9dfb17..fe46d98a5 100644
--- a/go.sum
+++ b/go.sum
@@ -582,8 +582,8 @@ github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.7.5 h1:s5PTfem8p8EbKQOctVV53k6jCJt3UX4IEJzwh+C324Q=
-github.com/stretchr/testify v1.7.5/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
+github.com/stretchr/testify v1.8.0 h1:pSgiaMZlXftHpm5L7V1+rVB+AZJydKsMxsQBIJw4PKk=
+github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/subosito/gotenv v1.2.0/go.mod h1:N0PQaV/YGNqwC0u51sEeR/aUtSLEXKX9iv69rRypqCw=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=

From 596712b34f32b857bb95b72f90444070ff1b0753 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 6 Jul 2022 12:32:49 +0530
Subject: [PATCH 0252/1641] added announcement (#8750)

---
 .github/ISSUE_TEMPLATE/feature_request.md | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/.github/ISSUE_TEMPLATE/feature_request.md b/.github/ISSUE_TEMPLATE/feature_request.md
index b4041a579..73df4d20b 100644
--- a/.github/ISSUE_TEMPLATE/feature_request.md
+++ b/.github/ISSUE_TEMPLATE/feature_request.md
@@ -8,14 +8,14 @@ assignees: ''
 ---
 
 <!--
+With the situation in place today, we think (and decided) that it's time to temporarily pause accepting new features and focus on fixing and stabilizing Ingress NGINX. We understand that some people may need to merge a trivial new feature. Still, we are asking the community to understand that maintaining the project at this pace is becoming hard for the project maintainers. We understand that you waited too long with your PR in the queue, and we are sorry! But it's hard for us as well to keep the project stable.
 
-Welcome to ingress-nginx!  For a smooth feature request process, try to
-answer the following questions. Don't worry if they're not all applicable; just
-try to include what you can :-)
+More details are available here https://youtu.be/UBt4N82ymOE and here   https://kubernetes.slack.com/archives/CANQGM8BA/p1656020331133589. 
+The announcement in the dev mailing list is here https://groups.google.com/a/kubernetes.io/g/dev/c/rxtrKvT_Q8E
+
+Thank you,
+Ingress-Nginx maintainer
 
-If you need to include code snippets or logs, please put them in fenced code
-blocks.  If they're super-long, please use the details tag like
-<details><summary>super-long log</summary> lots of stuff </details>
 
 -->
 
@@ -30,4 +30,4 @@ blocks.  If they're super-long, please use the details tag like
 <!-- 
 /kind documentation
 /remove-kind feature
--->
\ No newline at end of file
+-->

From 8baac4214a1c5e712676b0328c992682ae033d4b Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 8 Jul 2022 19:27:46 +0530
Subject: [PATCH 0253/1641] changed to alpine-v3.16 (#8793)

---
 docs/examples/customization/sysctl/patch.json | 4 ++--
 images/cfssl/rootfs/Dockerfile                | 2 +-
 images/httpbin/rootfs/Dockerfile              | 2 +-
 images/nginx/rootfs/Dockerfile                | 4 ++--
 images/opentelemetry/rootfs/Dockerfile        | 4 ++--
 rootfs/Dockerfile.chroot                      | 2 +-
 test/e2e-image/Dockerfile                     | 2 +-
 7 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/docs/examples/customization/sysctl/patch.json b/docs/examples/customization/sysctl/patch.json
index d0cf1f9ae..683b4ec6b 100644
--- a/docs/examples/customization/sysctl/patch.json
+++ b/docs/examples/customization/sysctl/patch.json
@@ -4,7 +4,7 @@
 			"spec": {
 				"initContainers": [{
 					"name": "sysctl",
-					"image": "alpine:3.13",
+					"image": "alpine:3.16.0",
 					"securityContext": {
 						"privileged": true
 					},
@@ -13,4 +13,4 @@
 			}
 		}
 	}
-}
\ No newline at end of file
+}
diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index f12a1c776..bfe19cfd9 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.13
+FROM alpine:3.16.0
 
 RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
 RUN apk add --no-cache \
diff --git a/images/httpbin/rootfs/Dockerfile b/images/httpbin/rootfs/Dockerfile
index 113aaaa0d..5ee58d69c 100644
--- a/images/httpbin/rootfs/Dockerfile
+++ b/images/httpbin/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.14.6
+FROM alpine:3.16.0
 
 ENV LC_ALL=C.UTF-8
 ENV LANG=C.UTF-8
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 2371acd82..fd3dfe5ba 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.14.6 as builder
+FROM alpine:3.16.0 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.14.6
+FROM alpine:3.16.0
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index 91832fa55..18fea3d51 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.14.6 as base
+FROM alpine:3.16.0 as base
 
 RUN mkdir -p /opt/third_party/install
 COPY . /opt/third_party/
@@ -39,7 +39,7 @@ COPY --from=grpc /opt/third_party/install/ /usr
 COPY --from=otel-cpp /opt/third_party/install/ /usr
 RUN bash /opt/third_party/build.sh -n
 
-FROM alpine:3.14.6
+FROM alpine:3.16.0
 COPY --from=base /opt/third_party/init_module.sh /usr/local/bin/init_module.sh
 COPY --from=nginx /etc/nginx/modules /etc/nginx/modules
 COPY --from=nginx /opt/third_party/install/lib /etc/nginx/modules
diff --git a/rootfs/Dockerfile.chroot b/rootfs/Dockerfile.chroot
index 10a335679..69d2a0f71 100644
--- a/rootfs/Dockerfile.chroot
+++ b/rootfs/Dockerfile.chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.14.6
+FROM alpine:3.16.0
 
 ARG TARGETARCH
 ARG VERSION
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 78d839342..ab6b674af 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,6 +1,6 @@
 FROM registry.k8s.io/ingress-nginx/e2e-test-runner:v20220624-g3348cd71e@sha256:2a34e322b7ff89abdfa0b6202f903bf5618578b699ff609a3ddabac0aae239c8 AS BASE
 
-FROM alpine:3.14.6
+FROM alpine:3.16.0
 
 RUN apk add -U --no-cache \
   ca-certificates \

From e1a16f6e74ef43cdfd59de75b3394d6b20ef7645 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 8 Jul 2022 12:27:47 -0400
Subject: [PATCH 0254/1641] Update nginx base image in one place (#8400)

* update files to use one base image file

Signed-off-by: James Strong <strong.james.e@gmail.com>

* add chart test as well

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update e2e-test image building

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update e2e base image arg

Signed-off-by: James Strong <strong.james.e@gmail.com>

* add current e2e so test run

Signed-off-by: James Strong <strong.james.e@gmail.com>

* working on fixing build

* getting dev-env and make release to work

* test

* i think buildx is working on mac

* updates

* why docker for mac and linux cli differ

* fix target arch

* fix target arch

* fix loag issue

* fix issue

* update the chroot docker file

* fix docker base build

* mac is the issue

* env not getting to the e2e deployment.go file

* fix pull issue

* fix pull issue

* move test scripts into test folder

* clean up ci

* updates for PR

* remove unnesscary var
---
 .codecov.yml                                  |  8 --
 .github/workflows/ci.yaml                     |  5 ++
 Makefile                                      | 85 ++++++++++++-------
 NGINX_BASE                                    |  1 +
 build/build.sh                                | 22 +++--
 build/run-e2e-suite.sh                        |  4 +
 build/run-in-docker.sh                        | 20 +++--
 images/echo/Makefile                          |  3 +-
 images/nginx/README.md                        |  4 +-
 images/test-runner/Makefile                   |  2 +-
 rootfs/Dockerfile                             |  8 +-
 .../{Dockerfile.chroot => Dockerfile-chroot}  |  8 +-
 test/e2e-image/Dockerfile                     |  3 +-
 test/e2e-image/Makefile                       |  2 +
 test/e2e/framework/deployment.go              | 20 +++--
 test/e2e/run-chart-test.sh                    |  7 ++
 test/e2e/run.sh                               |  6 ++
 {build => test}/test-lua.sh                   |  0
 {build => test}/test.sh                       |  0
 19 files changed, 138 insertions(+), 70 deletions(-)
 delete mode 100644 .codecov.yml
 create mode 100644 NGINX_BASE
 rename rootfs/{Dockerfile.chroot => Dockerfile-chroot} (95%)
 rename {build => test}/test-lua.sh (100%)
 rename {build => test}/test.sh (100%)

diff --git a/.codecov.yml b/.codecov.yml
deleted file mode 100644
index f91e5c1fe..000000000
--- a/.codecov.yml
+++ /dev/null
@@ -1,8 +0,0 @@
-coverage:
-  status:
-    project:
-      default:
-        target: 40%
-        threshold: null
-    patch: false
-    changes: false
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index c200ef1be..dd9fd0328 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -44,6 +44,7 @@ jobs:
               - 'charts/ingress-nginx/Chart.yaml'
               - 'charts/ingress-nginx/**/*'
 
+
   security:
     runs-on: ubuntu-latest
     steps:
@@ -195,6 +196,7 @@ jobs:
           kind get kubeconfig > $HOME/.kube/kind-config-kind
           make kind-e2e-chart-tests
 
+
   kubernetes:
     name: Kubernetes
     runs-on: ubuntu-latest
@@ -251,6 +253,7 @@ jobs:
           kind get kubeconfig > $HOME/.kube/kind-config-kind
           make kind-e2e-test
 
+
   kubernetes-chroot:
     name: Kubernetes chroot
     runs-on: ubuntu-latest
@@ -308,6 +311,7 @@ jobs:
           kind get kubeconfig > $HOME/.kube/kind-config-kind
           make kind-e2e-test
 
+
   test-image-build:
     permissions:
       contents: read  # for dorny/paths-filter to fetch a list of changed files
@@ -374,6 +378,7 @@ jobs:
         run: |
           cd images/ext-auth-example-authsvc && make build
 
+
   test-image:
     permissions:
       contents: read  # for dorny/paths-filter to fetch a list of changed files
diff --git a/Makefile b/Makefile
index 7b74f2e60..7994ac377 100644
--- a/Makefile
+++ b/Makefile
@@ -53,9 +53,16 @@ ifneq ($(PLATFORM),)
 	PLATFORM_FLAG="--platform"
 endif
 
+MAC_OS = $(shell uname -s)
+ifeq ($(MAC_OS), Darwin)
+	MAC_DOCKER_FLAGS="--load"
+else
+	MAC_DOCKER_FLAGS=
+endif
+
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
-BASE_IMAGE ?= registry.k8s.io/ingress-nginx/nginx:0ff500c23f34e939305de709cb6d47da34b66611@sha256:15f91034a03550dfab6ec50a7be4abbb683d087e234ad7fef5adedef54e46a5a
+BASE_IMAGE ?= $(shell cat NGINX_BASE)
 
 GOARCH=$(ARCH)
 
@@ -65,12 +72,14 @@ help:  ## Display this help
 .PHONY: image
 image: clean-image ## Build image for a particular arch.
 	echo "Building docker image ($(ARCH))..."
-	@docker build \
+	docker build \
 		${PLATFORM_FLAG} ${PLATFORM} \
 		--no-cache \
+		$(MAC_DOCKER_FLAGS) \
+		--pull \
 		--build-arg BASE_IMAGE="$(BASE_IMAGE)" \
 		--build-arg VERSION="$(TAG)" \
-		--build-arg TARGETARCH="$(ARCH)" \
+		--build-arg TARGET_ARCH="$(ARCH)" \
 		--build-arg COMMIT_SHA="$(COMMIT_SHA)" \
 		--build-arg BUILD_ID="$(BUILD_ID)" \
 		-t $(REGISTRY)/controller:$(TAG) rootfs
@@ -82,14 +91,16 @@ gosec:
 .PHONY: image-chroot
 image-chroot: clean-chroot-image ## Build image for a particular arch.
 	echo "Building docker image ($(ARCH))..."
-	@docker build \
+	docker build \
 		--no-cache \
+		$(MAC_DOCKER_FLAGS) \
+		--pull \
 		--build-arg BASE_IMAGE="$(BASE_IMAGE)" \
 		--build-arg VERSION="$(TAG)" \
-		--build-arg TARGETARCH="$(ARCH)" \
+		--build-arg TARGET_ARCH="$(ARCH)" \
 		--build-arg COMMIT_SHA="$(COMMIT_SHA)" \
 		--build-arg BUILD_ID="$(BUILD_ID)" \
-		-t $(REGISTRY)/controller-chroot:$(TAG) rootfs -f rootfs/Dockerfile.chroot
+		-t $(REGISTRY)/controller-chroot:$(TAG) rootfs -f rootfs/Dockerfile-chroot
 
 .PHONY: clean-image
 clean-image: ## Removes local image
@@ -105,64 +116,82 @@ clean-chroot-image: ## Removes local image
 
 .PHONY: build
 build:  ## Build ingress controller, debug tool and pre-stop hook.
-	@build/run-in-docker.sh \
+	build/run-in-docker.sh \
+		MAC_OS=$(MAC_OS) \
 		PKG=$(PKG) \
 		ARCH=$(ARCH) \
 		COMMIT_SHA=$(COMMIT_SHA) \
 		REPO_INFO=$(REPO_INFO) \
 		TAG=$(TAG) \
-		GOBUILD_FLAGS=$(GOBUILD_FLAGS) \
 		build/build.sh
 
+
 .PHONY: build-plugin
 build-plugin:  ## Build ingress-nginx krew plugin.
 	@build/run-in-docker.sh \
 		PKG=$(PKG) \
+		MAC_OS=$(MAC_OS) \
 		ARCH=$(ARCH) \
 		COMMIT_SHA=$(COMMIT_SHA) \
 		REPO_INFO=$(REPO_INFO) \
 		TAG=$(TAG) \
-		GOBUILD_FLAGS=$(GOBUILD_FLAGS) \
 		build/build-plugin.sh
 
+
 .PHONY: clean
 clean: ## Remove .gocache directory.
 	rm -rf bin/ .gocache/ .cache/
 
+
 .PHONY: static-check
 static-check: ## Run verification script for boilerplate, codegen, gofmt, golint, lualint and chart-lint.
 	@build/run-in-docker.sh \
 		hack/verify-all.sh
 
+###############################
+# Tests for ingress-nginx
+###############################
+
 .PHONY: test
 test:  ## Run go unit tests.
 	@build/run-in-docker.sh \
 		PKG=$(PKG) \
+		MAC_OS=$(MAC_OS) \
 		ARCH=$(ARCH) \
 		COMMIT_SHA=$(COMMIT_SHA) \
 		REPO_INFO=$(REPO_INFO) \
 		TAG=$(TAG) \
-		GOBUILD_FLAGS=$(GOBUILD_FLAGS) \
-		build/test.sh
+		test/test.sh
 
 .PHONY: lua-test
 lua-test: ## Run lua unit tests.
 	@build/run-in-docker.sh \
 		BUSTED_ARGS=$(BUSTED_ARGS) \
-		build/test-lua.sh
+		MAC_OS=$(MAC_OS) \
+		test/test-lua.sh
 
 .PHONY: e2e-test
 e2e-test:  ## Run e2e tests (expects access to a working Kubernetes cluster).
 	@build/run-e2e-suite.sh
 
+.PHONY: kind-e2e-test
+kind-e2e-test:  ## Run e2e tests using kind.
+	@test/e2e/run.sh
+
+.PHONY: kind-e2e-chart-tests
+kind-e2e-chart-tests: ## Run helm chart e2e tests
+	@test/e2e/run-chart-test.sh
+
 .PHONY: e2e-test-binary
 e2e-test-binary:  ## Build binary for e2e tests.
 	@build/run-in-docker.sh \
+		MAC_OS=$(MAC_OS) \
 		ginkgo build ./test/e2e
 
 .PHONY: print-e2e-suite
 print-e2e-suite: e2e-test-binary ## Prints information about the suite of e2e tests.
 	@build/run-in-docker.sh \
+		MAC_OS=$(MAC_OS) \
 		hack/print-e2e-suite.sh
 
 .PHONY: vet
@@ -185,6 +214,8 @@ dev-env:  ## Starts a local Kubernetes cluster using kind, building and deployin
 dev-env-stop: ## Deletes local Kubernetes cluster created by kind.
 	@kind delete cluster --name ingress-nginx-dev
 
+
+
 .PHONY: live-docs
 live-docs: ## Build and launch a local copy of the documentation website in http://localhost:8000
 	@docker build ${PLATFORM_FLAG} ${PLATFORM} -t ingress-nginx-docs .github/actions/mkdocs
@@ -202,14 +233,6 @@ misspell:  ## Check for spelling errors.
 		-error \
 		cmd/* internal/* deploy/* docs/* design/* test/* README.md
 
-.PHONY: kind-e2e-test
-kind-e2e-test:  ## Run e2e tests using kind.
-	@test/e2e/run.sh
-
-.PHONY: kind-e2e-chart-tests
-kind-e2e-chart-tests: ## Run helm chart e2e tests
-	@test/e2e/run-chart-test.sh
-
 .PHONY: run-ingress-controller
 run-ingress-controller: ## Run the ingress controller locally using a kubectl proxy connection.
 	@build/run-ingress-controller.sh
@@ -223,35 +246,35 @@ show-version:
 	echo -n $(TAG)
 
 PLATFORMS ?= amd64 arm arm64 s390x
-
-EMPTY :=
-SPACE := $(EMPTY) $(EMPTY)
-COMMA := ,
+BUILDX_PLATFORMS ?= linux/amd64,linux/arm,linux/arm64,linux/s390x
 
 .PHONY: release # Build a multi-arch docker image
 release: ensure-buildx clean
 	echo "Building binaries..."
 	$(foreach PLATFORM,$(PLATFORMS), echo -n "$(PLATFORM)..."; ARCH=$(PLATFORM) make build;)
 
-	echo "Building and pushing ingress-nginx image..."
-	@docker buildx build \
+	echo "Building and pushing ingress-nginx image...$(BUILDX_PLATFORMS)"
+
+	docker buildx build \
 		--no-cache \
 		--push \
+		--pull \
 		--progress plain \
-		--platform $(subst $(SPACE),$(COMMA),$(PLATFORMS)) \
+		--platform $(BUILDX_PLATFORMS) \
 		--build-arg BASE_IMAGE="$(BASE_IMAGE)" \
 		--build-arg VERSION="$(TAG)" \
 		--build-arg COMMIT_SHA="$(COMMIT_SHA)" \
 		--build-arg BUILD_ID="$(BUILD_ID)" \
 		-t $(REGISTRY)/controller:$(TAG) rootfs
-	
-	@docker buildx build \
+
+	docker buildx build \
 		--no-cache \
 		--push \
+		--pull \
 		--progress plain \
-		--platform $(subst $(SPACE),$(COMMA),$(PLATFORMS)) \
+		--platform $(BUILDX_PLATFORMS)  \
 		--build-arg BASE_IMAGE="$(BASE_IMAGE)" \
 		--build-arg VERSION="$(TAG)" \
 		--build-arg COMMIT_SHA="$(COMMIT_SHA)" \
 		--build-arg BUILD_ID="$(BUILD_ID)" \
-		-t $(REGISTRY)/controller-chroot:$(TAG) rootfs -f rootfs/Dockerfile.chroot
+		-t $(REGISTRY)/controller-chroot:$(TAG) rootfs -f rootfs/Dockerfile-chroot
diff --git a/NGINX_BASE b/NGINX_BASE
new file mode 100644
index 000000000..a882c352d
--- /dev/null
+++ b/NGINX_BASE
@@ -0,0 +1 @@
+registry.k8s.io/ingress-nginx/nginx:0ff500c23f34e939305de709cb6d47da34b66611@sha256:15f91034a03550dfab6ec50a7be4abbb683d087e234ad7fef5adedef54e46a5a
\ No newline at end of file
diff --git a/build/build.sh b/build/build.sh
index a865fe927..210a8e10f 100755
--- a/build/build.sh
+++ b/build/build.sh
@@ -14,8 +14,11 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
+GO_BUILD_CMD="go build"
+
 if [ -n "$DEBUG" ]; then
 	set -x
+	GO_BUILD_CMD="go build -v"
 fi
 
 set -o errexit
@@ -31,39 +34,40 @@ mandatory=(
   TAG
 )
 
-missing=false
 for var in "${mandatory[@]}"; do
   if [[ -z "${!var:-}" ]]; then
     echo "Environment variable $var must be set"
-    missing=true
+    exit 1
   fi
 done
 
-if [ "$missing" = true ]; then
-  exit 1
-fi
-
 export CGO_ENABLED=0
 export GOARCH=${ARCH}
 
 TARGETS_DIR="rootfs/bin/${ARCH}"
 echo "Building targets for ${ARCH}, generated targets in ${TARGETS_DIR} directory."
 
-go build \
+echo "Building ${PKG}/cmd/nginx"
+
+${GO_BUILD_CMD} \
   -trimpath -ldflags="-buildid= -w -s \
     -X ${PKG}/version.RELEASE=${TAG} \
     -X ${PKG}/version.COMMIT=${COMMIT_SHA} \
     -X ${PKG}/version.REPO=${REPO_INFO}" \
   -o "${TARGETS_DIR}/nginx-ingress-controller" "${PKG}/cmd/nginx"
 
-go build \
+echo "Building ${PKG}/cmd/dbg"
+
+${GO_BUILD_CMD} \
   -trimpath -ldflags="-buildid= -w -s \
     -X ${PKG}/version.RELEASE=${TAG} \
     -X ${PKG}/version.COMMIT=${COMMIT_SHA} \
     -X ${PKG}/version.REPO=${REPO_INFO}" \
   -o "${TARGETS_DIR}/dbg" "${PKG}/cmd/dbg"
 
-go build \
+echo "Building ${PKG}/cmd/waitshutdown"
+
+${GO_BUILD_CMD} \
   -trimpath -ldflags="-buildid= -w -s \
     -X ${PKG}/version.RELEASE=${TAG} \
     -X ${PKG}/version.COMMIT=${COMMIT_SHA} \
diff --git a/build/run-e2e-suite.sh b/build/run-e2e-suite.sh
index 27f17bed5..d23a504e6 100755
--- a/build/run-e2e-suite.sh
+++ b/build/run-e2e-suite.sh
@@ -51,6 +51,9 @@ trap cleanup EXIT
 E2E_CHECK_LEAKS=${E2E_CHECK_LEAKS:-}
 FOCUS=${FOCUS:-.*}
 
+BASEDIR=$(dirname "$0")
+NGINX_BASE_IMAGE=$(cat $BASEDIR/../NGINX_BASE)
+
 export E2E_CHECK_LEAKS
 export FOCUS
 
@@ -76,6 +79,7 @@ kubectl run --rm \
   --env="E2E_NODES=${E2E_NODES}" \
   --env="FOCUS=${FOCUS}" \
   --env="E2E_CHECK_LEAKS=${E2E_CHECK_LEAKS}" \
+  --env="NGINX_BASE_IMAGE=${NGINX_BASE_IMAGE}" \
   --overrides='{ "apiVersion": "v1", "spec":{"serviceAccountName": "ingress-nginx-e2e"}}' \
   e2e --image=nginx-ingress-controller:e2e
 
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index db8a32993..8f04a9920 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -14,7 +14,8 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-if [ -n "$DEBUG" ]; then
+DEBUG=${DEBUG:-"false"}
+if [ "$DEBUG" == "true" ]; then
   set -x
 fi
 
@@ -62,6 +63,14 @@ else
   PLATFORM_FLAG=
 fi
 
+USER=${USER:-nobody}
+
+if [[ ${MAC_OS} == "Darwin" ]]; then
+	MAC_DOCKER_FLAGS=""
+else
+	MAC_DOCKER_FLAGS="-u $(id -u ${USER}):$(id -g ${USER})" #idk why mac/git fails on the gobuild if these are presented to dockerrun.sh script
+fi
+
 echo "..printing env & other vars to stdout"
 echo "HOSTNAME=`hostname`"
 uname -a
@@ -74,20 +83,21 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "FLAGS=$FLAGS"
   go env
   set -x
-  go install -mod=mod github.com/onsi/ginkgo/ginkgo@v1.16.4 
+  go install -mod=mod github.com/onsi/ginkgo/ginkgo@v1.16.4
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
   set +x
 else
-  echo "..reached DIND check ELSE block, inside run-in-docker.sh"
+  echo "Reached DIND check ELSE block, inside run-in-docker.sh"
   docker run                                            \
     ${PLATFORM_FLAG} ${PLATFORM}                        \
     --tty                                               \
     --rm                                                \
     ${DOCKER_OPTS}                                      \
+    -e DEBUG=${DEBUG}                                   \
     -e GOCACHE="/go/src/${PKG}/.cache"                  \
-    -e GOMODCACHE="/go/src/${PKG}/.modcache"                  \
+    -e GOMODCACHE="/go/src/${PKG}/.modcache"            \
     -e DOCKER_IN_DOCKER_ENABLED="true"                  \
     -v "${HOME}/.kube:${HOME}/.kube"                    \
     -v "${KUBE_ROOT}:/go/src/${PKG}"                    \
@@ -95,6 +105,6 @@ else
     -v "/var/run/docker.sock:/var/run/docker.sock"      \
     -v "${INGRESS_VOLUME}:/etc/ingress-controller/"     \
     -w "/go/src/${PKG}"                                 \
-    -u $(id -u ${USER}):$(id -g ${USER})                \
+    ${MAC_DOCKER_FLAGS}                                 \
     ${E2E_IMAGE} /bin/bash -c "${FLAGS}"
 fi
diff --git a/images/echo/Makefile b/images/echo/Makefile
index 66b3af7eb..500704e81 100644
--- a/images/echo/Makefile
+++ b/images/echo/Makefile
@@ -26,6 +26,7 @@ IMAGE = $(REGISTRY)/e2e-test-echo
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled
 
+BASE_IMAGE = $(shell cat $(DIR)/../../NGINX_BASE)
 # build with buildx
 PLATFORMS?=linux/amd64
 OUTPUT=
@@ -36,7 +37,7 @@ build: ensure-buildx
 		--platform=${PLATFORMS} $(OUTPUT) \
 		--progress=$(PROGRESS) \
 		--pull \
-		--build-arg BASE_IMAGE=registry.k8s.io/ingress-nginx/nginx:0ff500c23f34e939305de709cb6d47da34b66611@sha256:15f91034a03550dfab6ec50a7be4abbb683d087e234ad7fef5adedef54e46a5a \
+		--build-arg BASE_IMAGE=${BASE_IMAGE} \
 		--build-arg LUAROCKS_VERSION=3.8.0 \
 		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
 		-t $(IMAGE):$(TAG) rootfs
diff --git a/images/nginx/README.md b/images/nginx/README.md
index a7e327700..da6994fb5 100644
--- a/images/nginx/README.md
+++ b/images/nginx/README.md
@@ -19,7 +19,9 @@ This image provides a default configuration file with no backend servers.
 
 _Using docker_
 
+NGINX base image we use is defined in NGINX_BASE file at the root of the project 
+
 ```console
-docker run -v /some/nginx.conf:/etc/nginx/nginx.conf:ro registry.k8s.io/ingress-nginx/nginx:0ff500c23f34e939305de709cb6d47da34b66611@sha256:15f91034a03550dfab6ec50a7be4abbb683d087e234ad7fef5adedef54e46a5a
+docker run -v /some/nginx.conf:/etc/nginx/nginx.conf:ro $(cat ../../NGINX_BASE)
 ```
 
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index e6547f2fe..ecd4e5f58 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -23,7 +23,7 @@ REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-runner
 
-NGINX_BASE_IMAGE ?= registry.k8s.io/ingress-nginx/nginx:0ff500c23f34e939305de709cb6d47da34b66611@sha256:15f91034a03550dfab6ec50a7be4abbb683d087e234ad7fef5adedef54e46a5a
+NGINX_BASE_IMAGE ?= $(shell cat $DIR/../../NGINX_BASE)
 
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/rootfs/Dockerfile b/rootfs/Dockerfile
index 48c57a74e..c3dc04905 100644
--- a/rootfs/Dockerfile
+++ b/rootfs/Dockerfile
@@ -16,7 +16,7 @@ ARG BASE_IMAGE
 
 FROM ${BASE_IMAGE}
 
-ARG TARGETARCH
+ARG TARGET_ARCH
 ARG VERSION
 ARG COMMIT_SHA
 ARG BUILD_ID=UNSET
@@ -41,9 +41,9 @@ RUN apk update \
 
 COPY --chown=www-data:www-data etc /etc
 
-COPY --chown=www-data:www-data bin/${TARGETARCH}/dbg /
-COPY --chown=www-data:www-data bin/${TARGETARCH}/nginx-ingress-controller /
-COPY --chown=www-data:www-data bin/${TARGETARCH}/wait-shutdown /
+COPY --chown=www-data:www-data bin/${TARGET_ARCH}/dbg /
+COPY --chown=www-data:www-data bin/${TARGET_ARCH}/nginx-ingress-controller /
+COPY --chown=www-data:www-data bin/${TARGET_ARCH}/wait-shutdown /
 
 # Fix permission during the build to avoid issues at runtime
 # with volumes (custom templates)
diff --git a/rootfs/Dockerfile.chroot b/rootfs/Dockerfile-chroot
similarity index 95%
rename from rootfs/Dockerfile.chroot
rename to rootfs/Dockerfile-chroot
index 69d2a0f71..2de47a71e 100644
--- a/rootfs/Dockerfile.chroot
+++ b/rootfs/Dockerfile-chroot
@@ -25,7 +25,7 @@ RUN apk update \
 
 FROM alpine:3.16.0
 
-ARG TARGETARCH
+ARG TARGET_ARCH
 ARG VERSION
 ARG COMMIT_SHA
 ARG BUILD_ID=UNSET
@@ -64,9 +64,9 @@ COPY --from=chroot /chroot /chroot
 
 COPY --chown=www-data:www-data etc /chroot/etc
 
-COPY --chown=www-data:www-data bin/${TARGETARCH}/dbg /
-COPY --chown=www-data:www-data bin/${TARGETARCH}/nginx-ingress-controller /
-COPY --chown=www-data:www-data bin/${TARGETARCH}/wait-shutdown /
+COPY --chown=www-data:www-data bin/${TARGET_ARCH}/dbg /
+COPY --chown=www-data:www-data bin/${TARGET_ARCH}/nginx-ingress-controller /
+COPY --chown=www-data:www-data bin/${TARGET_ARCH}/wait-shutdown /
 COPY --chown=www-data:www-data nginx-chroot-wrapper.sh /usr/bin/nginx
 
 WORKDIR /chroot/etc/nginx
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index ab6b674af..e29c7524b 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,4 +1,5 @@
-FROM registry.k8s.io/ingress-nginx/e2e-test-runner:v20220624-g3348cd71e@sha256:2a34e322b7ff89abdfa0b6202f903bf5618578b699ff609a3ddabac0aae239c8 AS BASE
+ARG E2E_BASE_IMAGE
+FROM ${E2E_BASE_IMAGE} AS BASE
 
 FROM alpine:3.16.0
 
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 3a012a2df..2973c5dad 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,5 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
+E2E_BASE_IMAGE="k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220110-gfd820db46@sha256:273f7d9b1b2297cd96b4d51600e45d932186a1cc79d00d179dfb43654112fe8f"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
@@ -15,6 +16,7 @@ image:
 	cp -R $(DIR)/../../test/e2e/settings/ocsp/* .
 
 	docker build \
+		--build-arg E2E_BASE_IMAGE=$(E2E_BASE_IMAGE) \
 		--tag nginx-ingress-controller:e2e .
 
 clean:
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 3007d7d3a..f5da9ebe8 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -18,6 +18,8 @@ package framework
 
 import (
 	"context"
+	"errors"
+	"os"
 	"time"
 
 	"github.com/onsi/ginkgo"
@@ -37,13 +39,11 @@ const SlowEchoService = "slow-echo"
 // HTTPBinService name of the deployment for the httpbin app
 const HTTPBinService = "httpbin"
 
-// NginxBaseImage use for testing
-const NginxBaseImage = "registry.k8s.io/ingress-nginx/nginx:0ff500c23f34e939305de709cb6d47da34b66611@sha256:15f91034a03550dfab6ec50a7be4abbb683d087e234ad7fef5adedef54e46a5a"
-
 type deploymentOptions struct {
 	namespace string
 	name      string
 	replicas  int
+	image     string
 }
 
 // WithDeploymentNamespace allows configuring the deployment's namespace
@@ -67,7 +67,7 @@ func WithDeploymentReplicas(r int) func(*deploymentOptions) {
 	}
 }
 
-// NewEchoDeployment creates a new single replica deployment of the echoserver image in a particular namespace
+// NewEchoDeployment creates a new single replica deployment of the echo server image in a particular namespace
 func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
 	options := &deploymentOptions{
 		namespace: f.Namespace,
@@ -150,6 +150,16 @@ http {
 	f.NGINXWithConfigDeployment(SlowEchoService, cfg)
 }
 
+func (f *Framework) GetNginxBaseImage() string {
+	nginxBaseImage := os.Getenv("NGINX_BASE_IMAGE")
+
+	if nginxBaseImage == "" {
+		assert.NotEmpty(ginkgo.GinkgoT(), errors.New("NGINX_BASE_IMAGE not defined"), "NGINX_BASE_IMAGE not defined")
+	}
+
+	return nginxBaseImage
+}
+
 // NGINXDeployment creates a new simple NGINX Deployment using NGINX base image
 // and passing the desired configuration
 func (f *Framework) NGINXDeployment(name string, cfg string, waitendpoint bool) {
@@ -166,7 +176,7 @@ func (f *Framework) NGINXDeployment(name string, cfg string, waitendpoint bool)
 	}, metav1.CreateOptions{})
 	assert.Nil(ginkgo.GinkgoT(), err, "creating configmap")
 
-	deployment := newDeployment(name, f.Namespace, NginxBaseImage, 80, 1,
+	deployment := newDeployment(name, f.Namespace, f.GetNginxBaseImage(), 80, 1,
 		nil,
 		[]corev1.VolumeMount{
 			{
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 0e618244c..49ec146a7 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -50,6 +50,13 @@ export TAG=1.0.0-dev
 export ARCH=${ARCH:-amd64}
 export REGISTRY=ingress-controller
 
+BASEDIR=$(dirname "$0")
+NGINX_BASE_IMAGE=$(cat $BASEDIR/../../NGINX_BASE)
+
+echo "Running e2e with nginx base image ${NGINX_BASE_IMAGE}"
+
+export NGINX_BASE_IMAGE=$NGINX_BASE_IMAGE
+
 export KUBECONFIG="${KUBECONFIG:-$HOME/.kube/kind-config-$KIND_CLUSTER_NAME}"
 
 if [ "${SKIP_CLUSTER_CREATION:-false}" = "false" ]; then
diff --git a/test/e2e/run.sh b/test/e2e/run.sh
index 00ea73299..6edc18848 100755
--- a/test/e2e/run.sh
+++ b/test/e2e/run.sh
@@ -51,6 +51,12 @@ export TAG=1.0.0-dev
 export ARCH=${ARCH:-amd64}
 export REGISTRY=ingress-controller
 
+NGINX_BASE_IMAGE=$(cat $DIR/../../NGINX_BASE)
+
+echo "Running e2e with nginx base image ${NGINX_BASE_IMAGE}"
+
+export NGINX_BASE_IMAGE=$NGINX_BASE_IMAGE
+
 export DOCKER_CLI_EXPERIMENTAL=enabled
 
 export KUBECONFIG="${KUBECONFIG:-$HOME/.kube/kind-config-$KIND_CLUSTER_NAME}"
diff --git a/build/test-lua.sh b/test/test-lua.sh
similarity index 100%
rename from build/test-lua.sh
rename to test/test-lua.sh
diff --git a/build/test.sh b/test/test.sh
similarity index 100%
rename from build/test.sh
rename to test/test.sh

From cf4dca8e43ad87e95d3a2fd4d708f3eb8c35de97 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Sat, 9 Jul 2022 20:37:46 +0800
Subject: [PATCH 0255/1641] feat: migrate leaderelection lock to leases (#8733)

* feat: migrate leaderelection lock to leases

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* Update RBAC

Co-authored-by: Shafeeque E S <shafeeque.e.s@sap.com>
---
 .../ingress-nginx/templates/clusterrole.yaml  |  7 ++++++
 .../templates/controller-role.yaml            | 15 ++++++++++++
 internal/ingress/controller/status.go         | 24 ++++++++++++++-----
 3 files changed, 40 insertions(+), 6 deletions(-)

diff --git a/charts/ingress-nginx/templates/clusterrole.yaml b/charts/ingress-nginx/templates/clusterrole.yaml
index c093f048a..0e725ec06 100644
--- a/charts/ingress-nginx/templates/clusterrole.yaml
+++ b/charts/ingress-nginx/templates/clusterrole.yaml
@@ -29,6 +29,13 @@ rules:
     verbs:
       - list
       - watch
+  - apiGroups:
+      - coordination.k8s.io
+    resources:
+      - leases
+    verbs:
+      - list
+      - watch
 {{- if and .Values.controller.scope.enabled .Values.controller.scope.namespace }}
   - apiGroups:
       - ""
diff --git a/charts/ingress-nginx/templates/controller-role.yaml b/charts/ingress-nginx/templates/controller-role.yaml
index 47bbc32d0..8e5f8a0d7 100644
--- a/charts/ingress-nginx/templates/controller-role.yaml
+++ b/charts/ingress-nginx/templates/controller-role.yaml
@@ -73,6 +73,21 @@ rules:
       - configmaps
     verbs:
       - create
+  - apiGroups:
+      - coordination.k8s.io
+    resources:
+      - leases
+    resourceNames:
+      - {{ .Values.controller.electionID }}
+    verbs:
+      - get
+      - update
+  - apiGroups:
+      - coordination.k8s.io
+    resources:
+      - leases
+    verbs:
+      - create
   - apiGroups:
       - ""
     resources:
diff --git a/internal/ingress/controller/status.go b/internal/ingress/controller/status.go
index 7b90594a9..a56a6b831 100644
--- a/internal/ingress/controller/status.go
+++ b/internal/ingress/controller/status.go
@@ -93,12 +93,24 @@ func setupLeaderElection(config *leaderElectionConfig) {
 		Host:      hostname,
 	})
 
-	lock := resourcelock.ConfigMapLock{
-		ConfigMapMeta: metav1.ObjectMeta{Namespace: k8s.IngressPodDetails.Namespace, Name: config.ElectionID},
-		Client:        config.Client.CoreV1(),
-		LockConfig: resourcelock.ResourceLockConfig{
-			Identity:      k8s.IngressPodDetails.Name,
-			EventRecorder: recorder,
+	objectMeta := metav1.ObjectMeta{Namespace: k8s.IngressPodDetails.Namespace, Name: config.ElectionID}
+	resourceLockConfig := resourcelock.ResourceLockConfig{
+		Identity:      k8s.IngressPodDetails.Name,
+		EventRecorder: recorder,
+	}
+
+	// TODO: If we upgrade client-go to v0.24 then we can only use LeaseLock.
+	// MultiLock is used for lock's migration
+	lock := resourcelock.MultiLock{
+		Primary: &resourcelock.ConfigMapLock{
+			ConfigMapMeta: objectMeta,
+			Client:        config.Client.CoreV1(),
+			LockConfig:    resourceLockConfig,
+		},
+		Secondary: &resourcelock.LeaseLock{
+			LeaseMeta:  objectMeta,
+			Client:     config.Client.CoordinationV1(),
+			LockConfig: resourceLockConfig,
 		},
 	}
 

From 60b714336e81ee8089a3e989b0df40d1730b87e6 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Sun, 10 Jul 2022 02:41:46 +0800
Subject: [PATCH 0256/1641] fix: add MAC_OS variable for static-check (#8796)

---
 Makefile | 1 +
 1 file changed, 1 insertion(+)

diff --git a/Makefile b/Makefile
index 7994ac377..f2d486c9c 100644
--- a/Makefile
+++ b/Makefile
@@ -146,6 +146,7 @@ clean: ## Remove .gocache directory.
 .PHONY: static-check
 static-check: ## Run verification script for boilerplate, codegen, gofmt, golint, lualint and chart-lint.
 	@build/run-in-docker.sh \
+	    MAC_OS=$(MAC_OS) \
 		hack/verify-all.sh
 
 ###############################

From 9325819345b7b160198e29a7601d34d6a8e9d02a Mon Sep 17 00:00:00 2001
From: Steven Bambling <smbambling@gmail.com>
Date: Sun, 10 Jul 2022 17:05:47 -0400
Subject: [PATCH 0257/1641] Add condition for monitoring.coreos.com/v1 API
 (#8770)

---
 charts/ingress-nginx/templates/controller-prometheusrules.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/templates/controller-prometheusrules.yaml b/charts/ingress-nginx/templates/controller-prometheusrules.yaml
index ca5427523..78b5362e8 100644
--- a/charts/ingress-nginx/templates/controller-prometheusrules.yaml
+++ b/charts/ingress-nginx/templates/controller-prometheusrules.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.metrics.enabled .Values.controller.metrics.prometheusRule.enabled -}}
+{{- if and ( .Values.controller.metrics.enabled ) ( .Values.controller.metrics.prometheusRule.enabled ) ( .Capabilities.APIVersions.Has "monitoring.coreos.com/v1" ) -}}
 apiVersion: monitoring.coreos.com/v1
 kind: PrometheusRule
 metadata:

From 8f6c2e6b2e654cb6fdd8d3c0b5bb2ffe8da627f2 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 10 Jul 2022 22:35:47 -0300
Subject: [PATCH 0258/1641] Add v1.24.0 to test matrix (#8798)

---
 .github/workflows/ci.yaml       |  4 ++--
 build/run-e2e-suite.sh          | 15 ++++++++++-----
 build/run-in-docker.sh          |  1 +
 go.mod                          |  8 ++++----
 go.sum                          | 15 +++++++++++----
 hack/generate-deploy-scripts.sh |  2 +-
 6 files changed, 29 insertions(+), 16 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index dd9fd0328..c42a2ac7c 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -208,7 +208,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.19.11, v1.20.7, v1.21.2, v1.22.9, v1.23.6]
+        k8s: [v1.21.2, v1.22.9, v1.23.6, v1.24.0]
 
     steps:
 
@@ -265,7 +265,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.21.10, v1.22.9, v1.23.6]
+        k8s: [v1.21.10, v1.22.9, v1.23.6, v1.24.0]
 
     steps:
 
diff --git a/build/run-e2e-suite.sh b/build/run-e2e-suite.sh
index d23a504e6..15eacc355 100755
--- a/build/run-e2e-suite.sh
+++ b/build/run-e2e-suite.sh
@@ -65,11 +65,16 @@ kubectl create clusterrolebinding permissive-binding \
   --user=kubelet \
   --serviceaccount=default:ingress-nginx-e2e || true
 
-echo -e "${BGREEN}Waiting service account...${NC}"; \
-until kubectl get secret | grep -q -e ^ingress-nginx-e2e-token; do \
-  echo -e "waiting for api token"; \
-  sleep 3; \
-done
+
+VER=$(kubectl version  --client=false -o json |jq '.serverVersion.minor |tonumber')
+if [ $VER -lt 24 ]; then
+  echo -e "${BGREEN}Waiting service account...${NC}"; \
+  until kubectl get secret | grep -q -e ^ingress-nginx-e2e-token; do \
+    echo -e "waiting for api token"; \
+    sleep 3; \
+  done
+fi
+
 
 echo -e "Starting the e2e test pod"
 
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 8f04a9920..d2cfe9552 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -65,6 +65,7 @@ fi
 
 USER=${USER:-nobody}
 
+MAC_OS="${MAC_OS:-}"
 if [[ ${MAC_OS} == "Darwin" ]]; then
 	MAC_DOCKER_FLAGS=""
 else
diff --git a/go.mod b/go.mod
index 0fb419511..917fc100c 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5
+	golang.org/x/crypto v0.0.0-20220214200702-86341886e292
 	golang.org/x/net v0.0.0-20220225172249-27dd8689420f
 	google.golang.org/grpc v1.47.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -56,7 +56,7 @@ require (
 	github.com/PuerkitoBio/purell v1.1.1 // indirect
 	github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 // indirect
 	github.com/ajg/form v1.5.1 // indirect
-	github.com/andybalholm/brotli v1.0.2 // indirect
+	github.com/andybalholm/brotli v1.0.4 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/blang/semver v3.5.1+incompatible // indirect
 	github.com/cespare/xxhash/v2 v2.1.2 // indirect
@@ -91,7 +91,7 @@ require (
 	github.com/imkira/go-interpol v1.0.0 // indirect
 	github.com/inconshreveable/mousetrap v1.0.0 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
-	github.com/klauspost/compress v1.12.2 // indirect
+	github.com/klauspost/compress v1.15.7 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 // indirect
@@ -109,7 +109,7 @@ require (
 	github.com/sergi/go-diff v1.1.0 // indirect
 	github.com/sirupsen/logrus v1.8.1 // indirect
 	github.com/valyala/bytebufferpool v1.0.0 // indirect
-	github.com/valyala/fasthttp v1.27.0 // indirect
+	github.com/valyala/fasthttp v1.38.0 // indirect
 	github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f // indirect
 	github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415 // indirect
 	github.com/xeipuuv/gojsonschema v1.1.0 // indirect
diff --git a/go.sum b/go.sum
index fe46d98a5..fac6db75e 100644
--- a/go.sum
+++ b/go.sum
@@ -71,8 +71,9 @@ github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuy
 github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190717042225-c3de453c63f4/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d/go.mod h1:rBZYJk541a8SKzHPHnH3zbiI+7dagKZ0cgpgrD7Fyho=
-github.com/andybalholm/brotli v1.0.2 h1:JKnhI/XQ75uFBTiuzXpzFrUriDPiZjlOSzh6wXogP0E=
 github.com/andybalholm/brotli v1.0.2/go.mod h1:loMXtMfwqflxFJPmdbJO0a3KNoPuLBgiu3qAvBg8x/Y=
+github.com/andybalholm/brotli v1.0.4 h1:V7DdXeJtZscaqfNuAdSRuRFzuiKlHSC/Zh3zl9qY3JY=
+github.com/andybalholm/brotli v1.0.4/go.mod h1:fO7iG3H7G2nSZ7m0zPUDn85XEX2GTukHGRSepvi9Eig=
 github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
 github.com/antlr/antlr4/runtime/Go/antlr v0.0.0-20210826220005-b48c857c3a0e/go.mod h1:F7bn7fEU90QkQ3tnmaTx3LTKLEDqnwWODIYppRQ5hnY=
 github.com/armon/circbuf v0.0.0-20150827004946-bbbad097214e/go.mod h1:3U/XgcO3hCbHZ8TKRvWD2dDTCfh9M9ya+I9JpbB7O8o=
@@ -371,8 +372,10 @@ github.com/kisielk/errcheck v1.1.0/go.mod h1:EZBBE59ingxPouuu3KfxchcWSUPOHkagtvW
 github.com/kisielk/errcheck v1.2.0/go.mod h1:/BMXB+zMLi60iA8Vv6Ksmxu/1UDYcXs4uQLJ+jE2L00=
 github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8=
 github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
-github.com/klauspost/compress v1.12.2 h1:2KCfW3I9M7nSc5wOqXAlW2v2U6v+w6cbjvbfp+OykW8=
 github.com/klauspost/compress v1.12.2/go.mod h1:8dP1Hq4DHOhN9w426knH3Rhby4rFm6D8eO+e+Dq5Gzg=
+github.com/klauspost/compress v1.15.0/go.mod h1:/3/Vjq9QcHkK5uEr5lBEmyoZ1iFhe47etQ6QUkpK6sk=
+github.com/klauspost/compress v1.15.7 h1:7cgTQxJCU/vy+oP/E3B9RGbQTgbiVzIJWIKOLoAsPok=
+github.com/klauspost/compress v1.15.7/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU=
 github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
 github.com/konsorten/go-windows-terminal-sequences v1.0.3/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
 github.com/kr/fs v0.1.0/go.mod h1:FFnZGqtBN9Gxj7eW1uZ42v5BccTP0vu6NEaFoC2HwRg=
@@ -593,8 +596,9 @@ github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgC
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
 github.com/valyala/bytebufferpool v1.0.0 h1:GqA5TC/0021Y/b9FG4Oi9Mr3q7XYx6KllzawFIhcdPw=
 github.com/valyala/bytebufferpool v1.0.0/go.mod h1:6bBcMArwyJ5K/AmCkWv1jt77kVWyCJ6HpOuEn7z0Csc=
-github.com/valyala/fasthttp v1.27.0 h1:gDefRDL9aqSiwXV6aRW8aSBPs82y4KizSzHrBLf4NDI=
 github.com/valyala/fasthttp v1.27.0/go.mod h1:cmWIqlu99AO/RKcp1HWaViTqc57FswJOfYYdPJBl8BA=
+github.com/valyala/fasthttp v1.38.0 h1:yTjSSNjuDi2PPvXY2836bIwLmiTS2T4T9p1coQshpco=
+github.com/valyala/fasthttp v1.38.0/go.mod h1:t/G+3rLek+CyY9bnIE+YlMRddxVAAGjhxndDB4i4C0I=
 github.com/valyala/tcplisten v1.0.0/go.mod h1:T0xQ8SeCZGxckz9qRXTfG43PvQ/mcWh7FwZEA7Ioqkc=
 github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
 github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
@@ -677,8 +681,9 @@ golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPh
 golang.org/x/crypto v0.0.0-20201002170205-7f63de1d35b0/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210513164829-c07d793c2f9a/go.mod h1:P+XmwS30IXTQdn5tA2iutPOUgjI07+tq3H3K9MVA1s8=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.0.0-20210817164053-32db794688a5 h1:HWj/xjIHfjYU5nVXpTM0s39J9CbLn7Cc5a7IC5rwsMQ=
 golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/crypto v0.0.0-20220214200702-86341886e292 h1:f+lwQ+GtmgoY+A2YaQxlSOnDjXcQ7ZRLWOHbC6HtRqE=
+golang.org/x/crypto v0.0.0-20220214200702-86341886e292/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -764,6 +769,7 @@ golang.org/x/net v0.0.0-20210510120150-4163338589ed/go.mod h1:9nx3DQGgdP8bBQD5qx
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210805182204-aaa1db679c0d/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210825183410-e898025ed96a/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
 golang.org/x/net v0.0.0-20220225172249-27dd8689420f h1:oA4XRj0qtSt8Yo1Zms0CUlsT3KG69V2UGQWPBxujDmc=
@@ -868,6 +874,7 @@ golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220227234510-4e6760a101f9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220412211240-33da011f77ad h1:ntjMns5wyP/fN65tdBD4g8J5w8n015+iIIs9rtjXkY0=
 golang.org/x/sys v0.0.0-20220412211240-33da011f77ad/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
diff --git a/hack/generate-deploy-scripts.sh b/hack/generate-deploy-scripts.sh
index 598e60fc4..c85f21705 100755
--- a/hack/generate-deploy-scripts.sh
+++ b/hack/generate-deploy-scripts.sh
@@ -26,7 +26,7 @@ set -o pipefail
 # with enough docs updates, this could be removed
 # see     # DEFAULT VERSION HANDLING
 K8S_DEFAULT_VERSION=1.20
-K8S_TARGET_VERSIONS=("1.19" "1.20" "1.21" "1.22" "1.23")
+K8S_TARGET_VERSIONS=("1.20" "1.21" "1.22" "1.23" "1.24")
 
 DIR=$(cd $(dirname "${BASH_SOURCE}")/.. && pwd -P)
 

From 97c45faedec7d6425afa1cdd636df10b0b50682f Mon Sep 17 00:00:00 2001
From: Kevin Scholz <kevin@scholz.io>
Date: Mon, 11 Jul 2022 03:59:47 +0200
Subject: [PATCH 0259/1641] Fix example Helm chart values to enable custom http
 errors (#8558)

---
 .../custom-errors/custom-default-backend.helm.values.yaml      | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
index 52ddb24a9..2cf866c11 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
@@ -1,5 +1,6 @@
 controller:
-  custom-http-errors: "404,503"
+  config:
+    custom-http-errors: "404,503"
 defaultBackend:
   enabled: true
   image:

From 23b0735eb19e19d2019e0d734ed34c02d2c6c11b Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Mon, 11 Jul 2022 11:29:48 +0530
Subject: [PATCH 0260/1641] bumped to alpine3.16 (#8803)

---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index a882c352d..cab849353 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:0ff500c23f34e939305de709cb6d47da34b66611@sha256:15f91034a03550dfab6ec50a7be4abbb683d087e234ad7fef5adedef54e46a5a
\ No newline at end of file
+registry.k8s.io/ingress-nginx/nginx:e1a16f6e74ef43cdfd59de75b3394d6b20ef7645@sha256:283c8c6132ebaeb155c927ea6e8ae0cd834a4a05d4807eceafa1b6e44d875911

From caac91ce662f0fac188bc466874172c037eeabcb Mon Sep 17 00:00:00 2001
From: Jintao Zhang <tao12345666333@163.com>
Date: Mon, 11 Jul 2022 16:13:50 +0800
Subject: [PATCH 0261/1641] chore: start v1.3.0 release process (#8802)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 6a5e98a74..8b3a0227b 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.2.1
+v1.3.0
\ No newline at end of file

From 771ce1c6dd0ccf07c744fdcf90ed34957a6a0a00 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Mon, 11 Jul 2022 09:00:08 -0300
Subject: [PATCH 0262/1641] revert arch var name (#8808)

---
 Makefile                 | 4 ++--
 TAG                      | 2 +-
 rootfs/Dockerfile        | 8 ++++----
 rootfs/Dockerfile-chroot | 8 ++++----
 4 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/Makefile b/Makefile
index f2d486c9c..bafddeef2 100644
--- a/Makefile
+++ b/Makefile
@@ -79,7 +79,7 @@ image: clean-image ## Build image for a particular arch.
 		--pull \
 		--build-arg BASE_IMAGE="$(BASE_IMAGE)" \
 		--build-arg VERSION="$(TAG)" \
-		--build-arg TARGET_ARCH="$(ARCH)" \
+		--build-arg TARGETARCH="$(ARCH)" \
 		--build-arg COMMIT_SHA="$(COMMIT_SHA)" \
 		--build-arg BUILD_ID="$(BUILD_ID)" \
 		-t $(REGISTRY)/controller:$(TAG) rootfs
@@ -97,7 +97,7 @@ image-chroot: clean-chroot-image ## Build image for a particular arch.
 		--pull \
 		--build-arg BASE_IMAGE="$(BASE_IMAGE)" \
 		--build-arg VERSION="$(TAG)" \
-		--build-arg TARGET_ARCH="$(ARCH)" \
+		--build-arg TARGETARCH="$(ARCH)" \
 		--build-arg COMMIT_SHA="$(COMMIT_SHA)" \
 		--build-arg BUILD_ID="$(BUILD_ID)" \
 		-t $(REGISTRY)/controller-chroot:$(TAG) rootfs -f rootfs/Dockerfile-chroot
diff --git a/TAG b/TAG
index 8b3a0227b..50ace7512 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.3.0
\ No newline at end of file
+v1.3.0-beta.0
\ No newline at end of file
diff --git a/rootfs/Dockerfile b/rootfs/Dockerfile
index c3dc04905..48c57a74e 100644
--- a/rootfs/Dockerfile
+++ b/rootfs/Dockerfile
@@ -16,7 +16,7 @@ ARG BASE_IMAGE
 
 FROM ${BASE_IMAGE}
 
-ARG TARGET_ARCH
+ARG TARGETARCH
 ARG VERSION
 ARG COMMIT_SHA
 ARG BUILD_ID=UNSET
@@ -41,9 +41,9 @@ RUN apk update \
 
 COPY --chown=www-data:www-data etc /etc
 
-COPY --chown=www-data:www-data bin/${TARGET_ARCH}/dbg /
-COPY --chown=www-data:www-data bin/${TARGET_ARCH}/nginx-ingress-controller /
-COPY --chown=www-data:www-data bin/${TARGET_ARCH}/wait-shutdown /
+COPY --chown=www-data:www-data bin/${TARGETARCH}/dbg /
+COPY --chown=www-data:www-data bin/${TARGETARCH}/nginx-ingress-controller /
+COPY --chown=www-data:www-data bin/${TARGETARCH}/wait-shutdown /
 
 # Fix permission during the build to avoid issues at runtime
 # with volumes (custom templates)
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index 2de47a71e..69d2a0f71 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -25,7 +25,7 @@ RUN apk update \
 
 FROM alpine:3.16.0
 
-ARG TARGET_ARCH
+ARG TARGETARCH
 ARG VERSION
 ARG COMMIT_SHA
 ARG BUILD_ID=UNSET
@@ -64,9 +64,9 @@ COPY --from=chroot /chroot /chroot
 
 COPY --chown=www-data:www-data etc /chroot/etc
 
-COPY --chown=www-data:www-data bin/${TARGET_ARCH}/dbg /
-COPY --chown=www-data:www-data bin/${TARGET_ARCH}/nginx-ingress-controller /
-COPY --chown=www-data:www-data bin/${TARGET_ARCH}/wait-shutdown /
+COPY --chown=www-data:www-data bin/${TARGETARCH}/dbg /
+COPY --chown=www-data:www-data bin/${TARGETARCH}/nginx-ingress-controller /
+COPY --chown=www-data:www-data bin/${TARGETARCH}/wait-shutdown /
 COPY --chown=www-data:www-data nginx-chroot-wrapper.sh /usr/bin/nginx
 
 WORKDIR /chroot/etc/nginx

From c41440f235dab68082d2062dd9308618bd0ddcae Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 Jul 2022 07:03:50 -0700
Subject: [PATCH 0263/1641] Bump k8s.io/klog/v2 from 2.60.1 to 2.70.1 (#8805)

Bumps [k8s.io/klog/v2](https://github.com/kubernetes/klog) from 2.60.1 to 2.70.1.
- [Release notes](https://github.com/kubernetes/klog/releases)
- [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes/klog/compare/v2.60.1...v2.70.1)

---
updated-dependencies:
- dependency-name: k8s.io/klog/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 917fc100c..b8460ceda 100644
--- a/go.mod
+++ b/go.mod
@@ -38,7 +38,7 @@ require (
 	k8s.io/client-go v0.23.6
 	k8s.io/code-generator v0.23.5
 	k8s.io/component-base v0.23.6
-	k8s.io/klog/v2 v2.60.1
+	k8s.io/klog/v2 v2.70.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.11.2
 	sigs.k8s.io/mdtoc v1.1.0
diff --git a/go.sum b/go.sum
index fac6db75e..36c270e5e 100644
--- a/go.sum
+++ b/go.sum
@@ -1154,8 +1154,8 @@ k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAE
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
 k8s.io/klog/v2 v2.30.0/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
-k8s.io/klog/v2 v2.60.1 h1:VW25q3bZx9uE3vvdL6M8ezOX79vA2Aq1nEWLqNQclHc=
-k8s.io/klog/v2 v2.60.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/klog/v2 v2.70.1 h1:7aaoSdahviPmR+XkS7FyxlkkXs6tHISSG03RxleQAVQ=
+k8s.io/klog/v2 v2.70.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/kube-openapi v0.0.0-20210421082810-95288971da7e/go.mod h1:vHXdDvt9+2spS2Rx9ql3I8tycm3H9FDfdUoIuKCefvw=
 k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65 h1:E3J9oCLlaobFUqsjG9DfKbP2BmgwBL2p7pn0A3dG9W4=
 k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65/go.mod h1:sX9MT8g7NVZM5lVL/j8QyCCJe8YSMW30QvGZWaCIDIk=

From 2b7b74854d90ad9b4b96a5011b9e8b67d20bfb8f Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Mon, 11 Jul 2022 11:22:21 -0300
Subject: [PATCH 0264/1641] Prepare for v1.3.0 (#8810)

---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 50ace7512..18fa8e74f 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.3.0-beta.0
\ No newline at end of file
+v1.3.0

From e222b74b9e1055e34259eab0281974af77281df6 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Tue, 12 Jul 2022 10:30:50 -0300
Subject: [PATCH 0265/1641] Release v1.3.0 (#8811)

* Release v1.3.0

* Update charts/ingress-nginx/CHANGELOG.md

Co-authored-by: Jintao Zhang <tao12345666333@163.com>

* Update charts/ingress-nginx/README.md

* Update Changelog.md

Co-authored-by: Jintao Zhang <tao12345666333@163.com>

Co-authored-by: James Strong <strong.james.e@gmail.com>
Co-authored-by: Jintao Zhang <tao12345666333@163.com>
---
 Changelog.md                                  | 54 +++++++++++++
 README.md                                     |  2 +-
 charts/ingress-nginx/CHANGELOG.md             | 42 ++++++++++
 charts/ingress-nginx/Chart.yaml               | 52 ++++++++++---
 charts/ingress-nginx/README.md                | 12 +--
 charts/ingress-nginx/values.yaml              |  7 +-
 deploy/static/provider/aws/1.20/deploy.yaml   | 64 ++++++++++-----
 deploy/static/provider/aws/1.21/deploy.yaml   | 64 ++++++++++-----
 deploy/static/provider/aws/1.22/deploy.yaml   | 64 ++++++++++-----
 deploy/static/provider/aws/1.23/deploy.yaml   | 64 ++++++++++-----
 .../provider/aws/{1.19 => 1.24}/deploy.yaml   | 76 ++++++++++++------
 .../aws/{1.19 => 1.24}/kustomization.yaml     |  0
 deploy/static/provider/aws/deploy.yaml        | 64 ++++++++++-----
 .../nlb-with-tls-termination/1.20/deploy.yaml | 64 ++++++++++-----
 .../nlb-with-tls-termination/1.21/deploy.yaml | 64 ++++++++++-----
 .../nlb-with-tls-termination/1.22/deploy.yaml | 64 ++++++++++-----
 .../nlb-with-tls-termination/1.23/deploy.yaml | 64 ++++++++++-----
 .../{1.19 => 1.24}/deploy.yaml                | 76 ++++++++++++------
 .../{1.19 => 1.24}/kustomization.yaml         |  0
 .../aws/nlb-with-tls-termination/deploy.yaml  | 64 ++++++++++-----
 .../provider/baremetal/1.20/deploy.yaml       | 64 ++++++++++-----
 .../provider/baremetal/1.21/deploy.yaml       | 64 ++++++++++-----
 .../provider/baremetal/1.22/deploy.yaml       | 64 ++++++++++-----
 .../provider/baremetal/1.23/deploy.yaml       | 64 ++++++++++-----
 .../baremetal/{1.19 => 1.24}/deploy.yaml      | 76 ++++++++++++------
 .../{1.19 => 1.24}/kustomization.yaml         |  0
 deploy/static/provider/baremetal/deploy.yaml  | 64 ++++++++++-----
 deploy/static/provider/cloud/1.20/deploy.yaml | 64 ++++++++++-----
 deploy/static/provider/cloud/1.21/deploy.yaml | 64 ++++++++++-----
 deploy/static/provider/cloud/1.22/deploy.yaml | 64 ++++++++++-----
 deploy/static/provider/cloud/1.23/deploy.yaml | 64 ++++++++++-----
 .../provider/cloud/{1.19 => 1.24}/deploy.yaml | 76 ++++++++++++------
 .../cloud/{1.19 => 1.24}/kustomization.yaml   |  0
 deploy/static/provider/cloud/deploy.yaml      | 64 ++++++++++-----
 deploy/static/provider/do/1.20/deploy.yaml    | 64 ++++++++++-----
 deploy/static/provider/do/1.21/deploy.yaml    | 64 ++++++++++-----
 deploy/static/provider/do/1.22/deploy.yaml    | 64 ++++++++++-----
 deploy/static/provider/do/1.23/deploy.yaml    | 64 ++++++++++-----
 .../provider/do/{1.19 => 1.24}/deploy.yaml    | 76 ++++++++++++------
 .../do/{1.19 => 1.24}/kustomization.yaml      |  0
 deploy/static/provider/do/deploy.yaml         | 64 ++++++++++-----
 .../static/provider/exoscale/1.20/deploy.yaml | 65 ++++++++++------
 .../static/provider/exoscale/1.21/deploy.yaml | 65 ++++++++++------
 .../static/provider/exoscale/1.22/deploy.yaml | 65 ++++++++++------
 .../static/provider/exoscale/1.23/deploy.yaml | 65 ++++++++++------
 .../exoscale/{1.19 => 1.24}/deploy.yaml       | 77 +++++++++++++------
 .../{1.19 => 1.24}/kustomization.yaml         |  0
 deploy/static/provider/exoscale/deploy.yaml   | 64 ++++++++++-----
 deploy/static/provider/kind/1.20/deploy.yaml  | 64 ++++++++++-----
 deploy/static/provider/kind/1.21/deploy.yaml  | 64 ++++++++++-----
 deploy/static/provider/kind/1.22/deploy.yaml  | 64 ++++++++++-----
 deploy/static/provider/kind/1.23/deploy.yaml  | 64 ++++++++++-----
 .../provider/kind/{1.19 => 1.24}/deploy.yaml  | 76 ++++++++++++------
 .../kind/{1.19 => 1.24}/kustomization.yaml    |  0
 deploy/static/provider/kind/deploy.yaml       | 64 ++++++++++-----
 deploy/static/provider/scw/1.20/deploy.yaml   | 64 ++++++++++-----
 deploy/static/provider/scw/1.21/deploy.yaml   | 64 ++++++++++-----
 deploy/static/provider/scw/1.22/deploy.yaml   | 64 ++++++++++-----
 deploy/static/provider/scw/1.23/deploy.yaml   | 64 ++++++++++-----
 .../provider/scw/{1.19 => 1.24}/deploy.yaml   | 76 ++++++++++++------
 .../scw/{1.19 => 1.24}/kustomization.yaml     |  0
 deploy/static/provider/scw/deploy.yaml        | 64 ++++++++++-----
 docs/deploy/index.md                          | 20 ++---
 63 files changed, 2294 insertions(+), 1068 deletions(-)
 rename deploy/static/provider/aws/{1.19 => 1.24}/deploy.yaml (91%)
 rename deploy/static/provider/aws/{1.19 => 1.24}/kustomization.yaml (100%)
 rename deploy/static/provider/aws/nlb-with-tls-termination/{1.19 => 1.24}/deploy.yaml (91%)
 rename deploy/static/provider/aws/nlb-with-tls-termination/{1.19 => 1.24}/kustomization.yaml (100%)
 rename deploy/static/provider/baremetal/{1.19 => 1.24}/deploy.yaml (91%)
 rename deploy/static/provider/baremetal/{1.19 => 1.24}/kustomization.yaml (100%)
 rename deploy/static/provider/cloud/{1.19 => 1.24}/deploy.yaml (91%)
 rename deploy/static/provider/cloud/{1.19 => 1.24}/kustomization.yaml (100%)
 rename deploy/static/provider/do/{1.19 => 1.24}/deploy.yaml (91%)
 rename deploy/static/provider/do/{1.19 => 1.24}/kustomization.yaml (100%)
 rename deploy/static/provider/exoscale/{1.19 => 1.24}/deploy.yaml (91%)
 rename deploy/static/provider/exoscale/{1.19 => 1.24}/kustomization.yaml (100%)
 rename deploy/static/provider/kind/{1.19 => 1.24}/deploy.yaml (91%)
 rename deploy/static/provider/kind/{1.19 => 1.24}/kustomization.yaml (100%)
 rename deploy/static/provider/scw/{1.19 => 1.24}/deploy.yaml (91%)
 rename deploy/static/provider/scw/{1.19 => 1.24}/kustomization.yaml (100%)

diff --git a/Changelog.md b/Changelog.md
index 494a0226b..d4a6bbcd1 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -1,5 +1,59 @@
 # Changelog
 
+### 1.3.0
+
+Image: 
+- registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
+- registry.k8s.io/ingress-nginx/controller-chroot:v1.3.0@sha256:0fcb91216a22aae43b374fc2e6a03b8afe9e8c78cbf07a09d75636dc4ea3c191
+
+_IMPORTANT CHANGES:_ 
+* This release removes support for Kubernetes v1.19.0
+* This release adds support for Kubernetes v1.24.0
+* Starting with this release, we will need permissions on the `coordination.k8s.io/leases` resource for leaderelection lock
+
+_KNOWN ISSUES:_
+* This release reports a false positive on go-restful library that will be fixed with Kubernetes v1.25 release - Issue #8745
+
+_Changes:_
+- "[8810](https://github.com/kubernetes/ingress-nginx/pull/8810) Prepare for v1.3.0"
+- "[8808](https://github.com/kubernetes/ingress-nginx/pull/8808) revert arch var name"
+- "[8805](https://github.com/kubernetes/ingress-nginx/pull/8805) Bump k8s.io/klog/v2 from 2.60.1 to 2.70.1"
+- "[8803](https://github.com/kubernetes/ingress-nginx/pull/8803) Update to nginx base with alpine v3.16"
+- "[8802](https://github.com/kubernetes/ingress-nginx/pull/8802) chore: start v1.3.0 release process"
+- "[8798](https://github.com/kubernetes/ingress-nginx/pull/8798) Add v1.24.0 to test matrix"
+- "[8796](https://github.com/kubernetes/ingress-nginx/pull/8796) fix: add MAC_OS variable for static-check"
+- "[8793](https://github.com/kubernetes/ingress-nginx/pull/8793) changed to alpine-v3.16"
+- "[8781](https://github.com/kubernetes/ingress-nginx/pull/8781) Bump github.com/stretchr/testify from 1.7.5 to 1.8.0"
+- "[8778](https://github.com/kubernetes/ingress-nginx/pull/8778) chore: remove stable.txt from release process"
+- "[8775](https://github.com/kubernetes/ingress-nginx/pull/8775) Remove stable"
+- "[8773](https://github.com/kubernetes/ingress-nginx/pull/8773) Bump github/codeql-action from 2.1.14 to 2.1.15"
+- "[8772](https://github.com/kubernetes/ingress-nginx/pull/8772) Bump ossf/scorecard-action from 1.1.1 to 1.1.2"
+- "[8771](https://github.com/kubernetes/ingress-nginx/pull/8771) fix bullet md format"
+- "[8770](https://github.com/kubernetes/ingress-nginx/pull/8770) Add condition for monitoring.coreos.com/v1 API"
+- "[8769](https://github.com/kubernetes/ingress-nginx/pull/8769) Fix typos and add links to developer guide"
+- "[8767](https://github.com/kubernetes/ingress-nginx/pull/8767) change v1.2.0 to v1.2.1 in deploy doc URLs"
+- "[8765](https://github.com/kubernetes/ingress-nginx/pull/8765) Bump github/codeql-action from 1.0.26 to 2.1.14"
+- "[8752](https://github.com/kubernetes/ingress-nginx/pull/8752) Bump github.com/spf13/cobra from 1.4.0 to 1.5.0"
+- "[8751](https://github.com/kubernetes/ingress-nginx/pull/8751) Bump github.com/stretchr/testify from 1.7.2 to 1.7.5"
+- "[8750](https://github.com/kubernetes/ingress-nginx/pull/8750) added announcement"
+- "[8740](https://github.com/kubernetes/ingress-nginx/pull/8740) change sha e2etestrunner and echoserver"
+- "[8738](https://github.com/kubernetes/ingress-nginx/pull/8738) Update docs to make it easier for noobs to follow step by step"
+- "[8737](https://github.com/kubernetes/ingress-nginx/pull/8737) updated baseimage sha"
+- "[8736](https://github.com/kubernetes/ingress-nginx/pull/8736) set ld-musl-path"
+- "[8733](https://github.com/kubernetes/ingress-nginx/pull/8733) feat: migrate leaderelection lock to leases"
+- "[8726](https://github.com/kubernetes/ingress-nginx/pull/8726) prometheus metric: upstream_latency_seconds"
+- "[8720](https://github.com/kubernetes/ingress-nginx/pull/8720) Ci pin deps"
+- "[8719](https://github.com/kubernetes/ingress-nginx/pull/8719) Working OpenTelemetry sidecar (base nginx image)"
+- "[8714](https://github.com/kubernetes/ingress-nginx/pull/8714) Create Openssf scorecard"
+- "[8708](https://github.com/kubernetes/ingress-nginx/pull/8708) Bump github.com/prometheus/common from 0.34.0 to 0.35.0"
+- "[8703](https://github.com/kubernetes/ingress-nginx/pull/8703) Bump actions/dependency-review-action from 1 to 2"
+- "[8701](https://github.com/kubernetes/ingress-nginx/pull/8701) Fix several typos"
+- "[8699](https://github.com/kubernetes/ingress-nginx/pull/8699) fix the gosec test and a make target for it"
+- "[8698](https://github.com/kubernetes/ingress-nginx/pull/8698) Bump actions/upload-artifact from 2.3.1 to 3.1.0"
+- "[8697](https://github.com/kubernetes/ingress-nginx/pull/8697) Bump actions/setup-go from 2.2.0 to 3.2.0"
+- "[8695](https://github.com/kubernetes/ingress-nginx/pull/8695) Bump actions/download-artifact from 2 to 3"
+- "[8694](https://github.com/kubernetes/ingress-nginx/pull/8694) Bump crazy-max/ghaction-docker-buildx from 1.6.2 to 3.3.1"
+
 ### 1.2.1
 
 Image:
diff --git a/README.md b/README.md
index 19a1c2f15..c8bdcdf86 100644
--- a/README.md
+++ b/README.md
@@ -31,8 +31,8 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 
 | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
+| v1.3.0                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.0         | 1.19.10†      |
 | v1.2.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.6         | 1.19.10†      |
-| v1.2.0                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.6         | 1.19.10†      |
 | v1.1.3                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.4         | 1.19.10†      |
 | v1.1.2                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       |
 | v1.1.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       |
diff --git a/charts/ingress-nginx/CHANGELOG.md b/charts/ingress-nginx/CHANGELOG.md
index 201a4f044..bedb9f720 100644
--- a/charts/ingress-nginx/CHANGELOG.md
+++ b/charts/ingress-nginx/CHANGELOG.md
@@ -2,6 +2,48 @@
 
 This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
 
+### 4.2.0
+
+- Support for Kubernetes v1.19.0 was removed
+- "[8810](https://github.com/kubernetes/ingress-nginx/pull/8810) Prepare for v1.3.0"
+- "[8808](https://github.com/kubernetes/ingress-nginx/pull/8808) revert arch var name"
+- "[8805](https://github.com/kubernetes/ingress-nginx/pull/8805) Bump k8s.io/klog/v2 from 2.60.1 to 2.70.1"
+- "[8803](https://github.com/kubernetes/ingress-nginx/pull/8803) Update to nginx base with alpine v3.16"
+- "[8802](https://github.com/kubernetes/ingress-nginx/pull/8802) chore: start v1.3.0 release process"
+- "[8798](https://github.com/kubernetes/ingress-nginx/pull/8798) Add v1.24.0 to test matrix"
+- "[8796](https://github.com/kubernetes/ingress-nginx/pull/8796) fix: add MAC_OS variable for static-check"
+- "[8793](https://github.com/kubernetes/ingress-nginx/pull/8793) changed to alpine-v3.16"
+- "[8781](https://github.com/kubernetes/ingress-nginx/pull/8781) Bump github.com/stretchr/testify from 1.7.5 to 1.8.0"
+- "[8778](https://github.com/kubernetes/ingress-nginx/pull/8778) chore: remove stable.txt from release process"
+- "[8775](https://github.com/kubernetes/ingress-nginx/pull/8775) Remove stable"
+- "[8773](https://github.com/kubernetes/ingress-nginx/pull/8773) Bump github/codeql-action from 2.1.14 to 2.1.15"
+- "[8772](https://github.com/kubernetes/ingress-nginx/pull/8772) Bump ossf/scorecard-action from 1.1.1 to 1.1.2"
+- "[8771](https://github.com/kubernetes/ingress-nginx/pull/8771) fix bullet md format"
+- "[8770](https://github.com/kubernetes/ingress-nginx/pull/8770) Add condition for monitoring.coreos.com/v1 API"
+- "[8769](https://github.com/kubernetes/ingress-nginx/pull/8769) Fix typos and add links to developer guide"
+- "[8767](https://github.com/kubernetes/ingress-nginx/pull/8767) change v1.2.0 to v1.2.1 in deploy doc URLs"
+- "[8765](https://github.com/kubernetes/ingress-nginx/pull/8765) Bump github/codeql-action from 1.0.26 to 2.1.14"
+- "[8752](https://github.com/kubernetes/ingress-nginx/pull/8752) Bump github.com/spf13/cobra from 1.4.0 to 1.5.0"
+- "[8751](https://github.com/kubernetes/ingress-nginx/pull/8751) Bump github.com/stretchr/testify from 1.7.2 to 1.7.5"
+- "[8750](https://github.com/kubernetes/ingress-nginx/pull/8750) added announcement"
+- "[8740](https://github.com/kubernetes/ingress-nginx/pull/8740) change sha e2etestrunner and echoserver"
+- "[8738](https://github.com/kubernetes/ingress-nginx/pull/8738) Update docs to make it easier for noobs to follow step by step"
+- "[8737](https://github.com/kubernetes/ingress-nginx/pull/8737) updated baseimage sha"
+- "[8736](https://github.com/kubernetes/ingress-nginx/pull/8736) set ld-musl-path"
+- "[8733](https://github.com/kubernetes/ingress-nginx/pull/8733) feat: migrate leaderelection lock to leases"
+- "[8726](https://github.com/kubernetes/ingress-nginx/pull/8726) prometheus metric: upstream_latency_seconds"
+- "[8720](https://github.com/kubernetes/ingress-nginx/pull/8720) Ci pin deps"
+- "[8719](https://github.com/kubernetes/ingress-nginx/pull/8719) Working OpenTelemetry sidecar (base nginx image)"
+- "[8714](https://github.com/kubernetes/ingress-nginx/pull/8714) Create Openssf scorecard"
+- "[8708](https://github.com/kubernetes/ingress-nginx/pull/8708) Bump github.com/prometheus/common from 0.34.0 to 0.35.0"
+- "[8703](https://github.com/kubernetes/ingress-nginx/pull/8703) Bump actions/dependency-review-action from 1 to 2"
+- "[8701](https://github.com/kubernetes/ingress-nginx/pull/8701) Fix several typos"
+- "[8699](https://github.com/kubernetes/ingress-nginx/pull/8699) fix the gosec test and a make target for it"
+- "[8698](https://github.com/kubernetes/ingress-nginx/pull/8698) Bump actions/upload-artifact from 2.3.1 to 3.1.0"
+- "[8697](https://github.com/kubernetes/ingress-nginx/pull/8697) Bump actions/setup-go from 2.2.0 to 3.2.0"
+- "[8695](https://github.com/kubernetes/ingress-nginx/pull/8695) Bump actions/download-artifact from 2 to 3"
+- "[8694](https://github.com/kubernetes/ingress-nginx/pull/8694) Bump crazy-max/ghaction-docker-buildx from 1.6.2 to 3.3.1"
+
 ### 4.1.2
 
 - "[8587](https://github.com/kubernetes/ingress-nginx/pull/8587) Add CAP_SYS_CHROOT to DS/PSP when needed"
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 0f2d3b37a..d30f94fe8 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,8 +2,8 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.1.4
-appVersion: 1.2.1
+version: 4.2.0
+appVersion: 1.3.0
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
@@ -18,7 +18,7 @@ maintainers:
   - name: strongjz
   - name: tao12345666333
 engine: gotpl
-kubeVersion: ">=1.19.0-0"
+kubeVersion: ">=1.20.0-0"
 annotations:
   # Use this annotation to indicate that this chart version is a pre-release.
   # https://artifacthub.io/docs/topics/annotations/helm/
@@ -26,11 +26,41 @@ annotations:
   # List of changes for the release in artifacthub.io
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
-    - "[8459](https://github.com/kubernetes/ingress-nginx/pull/8459) Update default allowed CORS headers"
-    - "[8202](https://github.com/kubernetes/ingress-nginx/pull/8202) disable modsecurity on error page"
-    - "[8178](https://github.com/kubernetes/ingress-nginx/pull/8178) Add header Host into mirror annotations"
-    - "[8213](https://github.com/kubernetes/ingress-nginx/pull/8213) feat: always set auth cookie"
-    - "[8548](https://github.com/kubernetes/ingress-nginx/pull/8548) Implement reporting status classes in metrics"
-    - "[8612](https://github.com/kubernetes/ingress-nginx/pull/8612) move so files under /etc/nginx/modules"
-    - "[8624](https://github.com/kubernetes/ingress-nginx/pull/8624) Add patch to remove root and alias directives"
-    - "[8623](https://github.com/kubernetes/ingress-nginx/pull/8623) Improve path rule"
+    - "[8810](https://github.com/kubernetes/ingress-nginx/pull/8810) Prepare for v1.3.0"
+    - "[8808](https://github.com/kubernetes/ingress-nginx/pull/8808) revert arch var name"
+    - "[8805](https://github.com/kubernetes/ingress-nginx/pull/8805) Bump k8s.io/klog/v2 from 2.60.1 to 2.70.1"
+    - "[8803](https://github.com/kubernetes/ingress-nginx/pull/8803) Update to nginx base with alpine v3.16"
+    - "[8802](https://github.com/kubernetes/ingress-nginx/pull/8802) chore: start v1.3.0 release process"
+    - "[8798](https://github.com/kubernetes/ingress-nginx/pull/8798) Add v1.24.0 to test matrix"
+    - "[8796](https://github.com/kubernetes/ingress-nginx/pull/8796) fix: add MAC_OS variable for static-check"
+    - "[8793](https://github.com/kubernetes/ingress-nginx/pull/8793) changed to alpine-v3.16"
+    - "[8781](https://github.com/kubernetes/ingress-nginx/pull/8781) Bump github.com/stretchr/testify from 1.7.5 to 1.8.0"
+    - "[8778](https://github.com/kubernetes/ingress-nginx/pull/8778) chore: remove stable.txt from release process"
+    - "[8775](https://github.com/kubernetes/ingress-nginx/pull/8775) Remove stable"
+    - "[8773](https://github.com/kubernetes/ingress-nginx/pull/8773) Bump github/codeql-action from 2.1.14 to 2.1.15"
+    - "[8772](https://github.com/kubernetes/ingress-nginx/pull/8772) Bump ossf/scorecard-action from 1.1.1 to 1.1.2"
+    - "[8771](https://github.com/kubernetes/ingress-nginx/pull/8771) fix bullet md format"
+    - "[8770](https://github.com/kubernetes/ingress-nginx/pull/8770) Add condition for monitoring.coreos.com/v1 API"
+    - "[8769](https://github.com/kubernetes/ingress-nginx/pull/8769) Fix typos and add links to developer guide"
+    - "[8767](https://github.com/kubernetes/ingress-nginx/pull/8767) change v1.2.0 to v1.2.1 in deploy doc URLs"
+    - "[8765](https://github.com/kubernetes/ingress-nginx/pull/8765) Bump github/codeql-action from 1.0.26 to 2.1.14"
+    - "[8752](https://github.com/kubernetes/ingress-nginx/pull/8752) Bump github.com/spf13/cobra from 1.4.0 to 1.5.0"
+    - "[8751](https://github.com/kubernetes/ingress-nginx/pull/8751) Bump github.com/stretchr/testify from 1.7.2 to 1.7.5"
+    - "[8750](https://github.com/kubernetes/ingress-nginx/pull/8750) added announcement"
+    - "[8740](https://github.com/kubernetes/ingress-nginx/pull/8740) change sha e2etestrunner and echoserver"
+    - "[8738](https://github.com/kubernetes/ingress-nginx/pull/8738) Update docs to make it easier for noobs to follow step by step"
+    - "[8737](https://github.com/kubernetes/ingress-nginx/pull/8737) updated baseimage sha"
+    - "[8736](https://github.com/kubernetes/ingress-nginx/pull/8736) set ld-musl-path"
+    - "[8733](https://github.com/kubernetes/ingress-nginx/pull/8733) feat: migrate leaderelection lock to leases"
+    - "[8726](https://github.com/kubernetes/ingress-nginx/pull/8726) prometheus metric: upstream_latency_seconds"
+    - "[8720](https://github.com/kubernetes/ingress-nginx/pull/8720) Ci pin deps"
+    - "[8719](https://github.com/kubernetes/ingress-nginx/pull/8719) Working OpenTelemetry sidecar (base nginx image)"
+    - "[8714](https://github.com/kubernetes/ingress-nginx/pull/8714) Create Openssf scorecard"
+    - "[8708](https://github.com/kubernetes/ingress-nginx/pull/8708) Bump github.com/prometheus/common from 0.34.0 to 0.35.0"
+    - "[8703](https://github.com/kubernetes/ingress-nginx/pull/8703) Bump actions/dependency-review-action from 1 to 2"
+    - "[8701](https://github.com/kubernetes/ingress-nginx/pull/8701) Fix several typos"
+    - "[8699](https://github.com/kubernetes/ingress-nginx/pull/8699) fix the gosec test and a make target for it"
+    - "[8698](https://github.com/kubernetes/ingress-nginx/pull/8698) Bump actions/upload-artifact from 2.3.1 to 3.1.0"
+    - "[8697](https://github.com/kubernetes/ingress-nginx/pull/8697) Bump actions/setup-go from 2.2.0 to 3.2.0"
+    - "[8695](https://github.com/kubernetes/ingress-nginx/pull/8695) Bump actions/download-artifact from 2 to 3"
+    - "[8694](https://github.com/kubernetes/ingress-nginx/pull/8694) Bump crazy-max/ghaction-docker-buildx from 1.6.2 to 3.3.1"
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 5f59b8771..942cf0467 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.1.4](https://img.shields.io/badge/Version-4.1.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.2.1](https://img.shields.io/badge/AppVersion-1.2.1-informational?style=flat-square)
+![Version: 4.2.0](https://img.shields.io/badge/Version-4.2.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.3.0](https://img.shields.io/badge/AppVersion-1.3.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -231,7 +231,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 
 ## Requirements
 
-Kubernetes: `>=1.19.0-0`
+Kubernetes: `>=1.20.0-0`
 
 ## Values
 
@@ -245,7 +245,7 @@ Kubernetes: `>=1.19.0-0`
 | controller.admissionWebhooks.enabled | bool | `true` |  |
 | controller.admissionWebhooks.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | controller.admissionWebhooks.extraEnvs | list | `[]` | Additional environment variables to set |
-| controller.admissionWebhooks.failurePolicy | string | `"Fail"` |  |
+| controller.admissionWebhooks.failurePolicy | string | `"Fail"` | Admission Webhook failure policy to use |
 | controller.admissionWebhooks.key | string | `"/usr/local/certificates/key"` |  |
 | controller.admissionWebhooks.labels | object | `{}` | Labels to be added to admission webhooks |
 | controller.admissionWebhooks.namespaceSelector | object | `{}` |  |
@@ -308,13 +308,13 @@ Kubernetes: `>=1.19.0-0`
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8"` |  |
-| controller.image.digestChroot | string | `"sha256:d301551cf62bc3fb75c69fa56f7aa1d9e87b5079333adaf38afe84d9b7439355"` |  |
+| controller.image.digest | string | `"sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5"` |  |
+| controller.image.digestChroot | string | `"sha256:0fcb91216a22aae43b374fc2e6a03b8afe9e8c78cbf07a09d75636dc4ea3c191"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.2.1"` |  |
+| controller.image.tag | string | `"v1.3.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 485e434b2..cddc2c742 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -23,9 +23,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.2.1"
-    digest: sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
-    digestChroot: sha256:d301551cf62bc3fb75c69fa56f7aa1d9e87b5079333adaf38afe84d9b7439355
+    tag: "v1.3.0"
+    digest: sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
+    digestChroot: sha256:0fcb91216a22aae43b374fc2e6a03b8afe9e8c78cbf07a09d75636dc4ea3c191
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
@@ -602,6 +602,7 @@ controller:
     #       secretKeyRef:
     #         key: FOO
     #         name: secret-resource
+    # -- Admission Webhook failure policy to use
     failurePolicy: Fail
     # timeoutSeconds: 10
     port: 8443
diff --git a/deploy/static/provider/aws/1.20/deploy.yaml b/deploy/static/provider/aws/1.20/deploy.yaml
index 6fae0ae8b..dac9dcc5f 100644
--- a/deploy/static/provider/aws/1.20/deploy.yaml
+++ b/deploy/static/provider/aws/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -351,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -374,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -414,7 +436,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -486,7 +508,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -497,7 +519,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -533,7 +555,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -544,7 +566,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -582,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -595,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.21/deploy.yaml b/deploy/static/provider/aws/1.21/deploy.yaml
index f78b0e3d3..b681014f8 100644
--- a/deploy/static/provider/aws/1.21/deploy.yaml
+++ b/deploy/static/provider/aws/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -354,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -377,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -489,7 +511,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -500,7 +522,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -536,7 +558,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -547,7 +569,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -585,7 +607,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -598,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.22/deploy.yaml b/deploy/static/provider/aws/1.22/deploy.yaml
index f78b0e3d3..b681014f8 100644
--- a/deploy/static/provider/aws/1.22/deploy.yaml
+++ b/deploy/static/provider/aws/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -354,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -377,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -489,7 +511,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -500,7 +522,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -536,7 +558,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -547,7 +569,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -585,7 +607,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -598,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.23/deploy.yaml b/deploy/static/provider/aws/1.23/deploy.yaml
index f78b0e3d3..b681014f8 100644
--- a/deploy/static/provider/aws/1.23/deploy.yaml
+++ b/deploy/static/provider/aws/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -354,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -377,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -489,7 +511,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -500,7 +522,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -536,7 +558,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -547,7 +569,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -585,7 +607,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -598,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.19/deploy.yaml b/deploy/static/provider/aws/1.24/deploy.yaml
similarity index 91%
rename from deploy/static/provider/aws/1.19/deploy.yaml
rename to deploy/static/provider/aws/1.24/deploy.yaml
index daf20ebd6..b681014f8 100644
--- a/deploy/static/provider/aws/1.19/deploy.yaml
+++ b/deploy/static/provider/aws/1.24/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,17 +343,22 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-  - name: http
+  - appProtocol: http
+    name: http
     port: 80
     protocol: TCP
     targetPort: http
-  - name: https
+  - appProtocol: https
+    name: https
     port: 443
     protocol: TCP
     targetPort: https
@@ -349,12 +376,13 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
   ports:
-  - name: https-webhook
+  - appProtocol: https
+    name: https-webhook
     port: 443
     targetPort: webhook
   selector:
@@ -371,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -483,7 +511,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -494,7 +522,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -530,7 +558,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -541,7 +569,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -579,7 +607,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -592,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/1.19/kustomization.yaml b/deploy/static/provider/aws/1.24/kustomization.yaml
similarity index 100%
rename from deploy/static/provider/aws/1.19/kustomization.yaml
rename to deploy/static/provider/aws/1.24/kustomization.yaml
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 6fae0ae8b..dac9dcc5f 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -321,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -351,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -374,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -414,7 +436,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -486,7 +508,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -497,7 +519,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -533,7 +555,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -544,7 +566,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -582,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -595,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
index ec286b9df..90ad0c5d8 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +334,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +352,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -360,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -383,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -498,7 +520,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -509,7 +531,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -545,7 +567,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -556,7 +578,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -594,7 +616,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -607,7 +629,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
index 1c6c702db..668494a97 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +334,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +352,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -363,7 +385,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -386,7 +408,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -426,7 +448,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -501,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -512,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -559,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -597,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -610,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
index 1c6c702db..668494a97 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +334,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +352,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -363,7 +385,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -386,7 +408,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -426,7 +448,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -501,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -512,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -559,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -597,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -610,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
index 1c6c702db..668494a97 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +334,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +352,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -363,7 +385,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -386,7 +408,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -426,7 +448,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -501,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -512,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -559,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -597,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -610,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.24/deploy.yaml
similarity index 91%
rename from deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
rename to deploy/static/provider/aws/nlb-with-tls-termination/1.24/deploy.yaml
index 4a49884a7..668494a97 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.24/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +334,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,17 +352,22 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-  - name: http
+  - appProtocol: http
+    name: http
     port: 80
     protocol: TCP
     targetPort: tohttps
-  - name: https
+  - appProtocol: https
+    name: https
     port: 443
     protocol: TCP
     targetPort: http
@@ -358,12 +385,13 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
   ports:
-  - name: https-webhook
+  - appProtocol: https
+    name: https-webhook
     port: 443
     targetPort: webhook
   selector:
@@ -380,7 +408,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -420,7 +448,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -495,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -506,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -553,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -604,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.19/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.24/kustomization.yaml
similarity index 100%
rename from deploy/static/provider/aws/nlb-with-tls-termination/1.19/kustomization.yaml
rename to deploy/static/provider/aws/nlb-with-tls-termination/1.24/kustomization.yaml
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index ec286b9df..90ad0c5d8 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -312,7 +334,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -330,7 +352,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -360,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -383,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -498,7 +520,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -509,7 +531,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -545,7 +567,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -556,7 +578,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -594,7 +616,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -607,7 +629,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.20/deploy.yaml b/deploy/static/provider/baremetal/1.20/deploy.yaml
index f53f5c199..bd28be30a 100644
--- a/deploy/static/provider/baremetal/1.20/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -346,7 +368,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -369,7 +391,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -408,7 +430,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -480,7 +502,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -491,7 +513,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -527,7 +549,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -538,7 +560,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -576,7 +598,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -589,7 +611,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.21/deploy.yaml b/deploy/static/provider/baremetal/1.21/deploy.yaml
index 904063e64..d754ed501 100644
--- a/deploy/static/provider/baremetal/1.21/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +371,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +394,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +433,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -483,7 +505,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -494,7 +516,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -530,7 +552,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -541,7 +563,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -579,7 +601,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -592,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.22/deploy.yaml b/deploy/static/provider/baremetal/1.22/deploy.yaml
index 904063e64..d754ed501 100644
--- a/deploy/static/provider/baremetal/1.22/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +371,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +394,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +433,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -483,7 +505,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -494,7 +516,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -530,7 +552,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -541,7 +563,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -579,7 +601,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -592,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.23/deploy.yaml b/deploy/static/provider/baremetal/1.23/deploy.yaml
index 904063e64..d754ed501 100644
--- a/deploy/static/provider/baremetal/1.23/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +371,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +394,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +433,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -483,7 +505,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -494,7 +516,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -530,7 +552,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -541,7 +563,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -579,7 +601,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -592,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.19/deploy.yaml b/deploy/static/provider/baremetal/1.24/deploy.yaml
similarity index 91%
rename from deploy/static/provider/baremetal/1.19/deploy.yaml
rename to deploy/static/provider/baremetal/1.24/deploy.yaml
index eab63a107..d754ed501 100644
--- a/deploy/static/provider/baremetal/1.19/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.24/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,16 +339,21 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-  - name: http
+  - appProtocol: http
+    name: http
     port: 80
     protocol: TCP
     targetPort: http
-  - name: https
+  - appProtocol: https
+    name: https
     port: 443
     protocol: TCP
     targetPort: https
@@ -344,12 +371,13 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
   ports:
-  - name: https-webhook
+  - appProtocol: https
+    name: https-webhook
     port: 443
     targetPort: webhook
   selector:
@@ -366,7 +394,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -405,7 +433,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -477,7 +505,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -488,7 +516,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -524,7 +552,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -535,7 +563,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -573,7 +601,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -586,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/1.19/kustomization.yaml b/deploy/static/provider/baremetal/1.24/kustomization.yaml
similarity index 100%
rename from deploy/static/provider/baremetal/1.19/kustomization.yaml
rename to deploy/static/provider/baremetal/1.24/kustomization.yaml
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index f53f5c199..bd28be30a 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -346,7 +368,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -369,7 +391,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -408,7 +430,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -480,7 +502,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -491,7 +513,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -527,7 +549,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -538,7 +560,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -576,7 +598,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -589,7 +611,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.20/deploy.yaml b/deploy/static/provider/cloud/1.20/deploy.yaml
index 2fa3fc858..460ab898c 100644
--- a/deploy/static/provider/cloud/1.20/deploy.yaml
+++ b/deploy/static/provider/cloud/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -347,7 +369,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -370,7 +392,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -410,7 +432,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -482,7 +504,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -493,7 +515,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -529,7 +551,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -540,7 +562,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -578,7 +600,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -591,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.21/deploy.yaml b/deploy/static/provider/cloud/1.21/deploy.yaml
index 6cc44e56e..418556f55 100644
--- a/deploy/static/provider/cloud/1.21/deploy.yaml
+++ b/deploy/static/provider/cloud/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +435,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +507,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +518,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +554,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +565,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +603,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +616,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.22/deploy.yaml b/deploy/static/provider/cloud/1.22/deploy.yaml
index 6cc44e56e..418556f55 100644
--- a/deploy/static/provider/cloud/1.22/deploy.yaml
+++ b/deploy/static/provider/cloud/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +435,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +507,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +518,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +554,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +565,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +603,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +616,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.23/deploy.yaml b/deploy/static/provider/cloud/1.23/deploy.yaml
index 6cc44e56e..418556f55 100644
--- a/deploy/static/provider/cloud/1.23/deploy.yaml
+++ b/deploy/static/provider/cloud/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +435,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +507,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +518,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +554,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +565,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +603,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +616,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.19/deploy.yaml b/deploy/static/provider/cloud/1.24/deploy.yaml
similarity index 91%
rename from deploy/static/provider/cloud/1.19/deploy.yaml
rename to deploy/static/provider/cloud/1.24/deploy.yaml
index ff517ba27..418556f55 100644
--- a/deploy/static/provider/cloud/1.19/deploy.yaml
+++ b/deploy/static/provider/cloud/1.24/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,17 +339,22 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-  - name: http
+  - appProtocol: http
+    name: http
     port: 80
     protocol: TCP
     targetPort: http
-  - name: https
+  - appProtocol: https
+    name: https
     port: 443
     protocol: TCP
     targetPort: https
@@ -345,12 +372,13 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
   ports:
-  - name: https-webhook
+  - appProtocol: https
+    name: https-webhook
     port: 443
     targetPort: webhook
   selector:
@@ -367,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -407,7 +435,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -479,7 +507,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -490,7 +518,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -526,7 +554,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -537,7 +565,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -575,7 +603,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -588,7 +616,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/1.19/kustomization.yaml b/deploy/static/provider/cloud/1.24/kustomization.yaml
similarity index 100%
rename from deploy/static/provider/cloud/1.19/kustomization.yaml
rename to deploy/static/provider/cloud/1.24/kustomization.yaml
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 2fa3fc858..460ab898c 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -347,7 +369,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -370,7 +392,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -410,7 +432,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -482,7 +504,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -493,7 +515,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -529,7 +551,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -540,7 +562,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -578,7 +600,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -591,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.20/deploy.yaml b/deploy/static/provider/do/1.20/deploy.yaml
index 58a025a84..1008a916d 100644
--- a/deploy/static/provider/do/1.20/deploy.yaml
+++ b/deploy/static/provider/do/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +342,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +435,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +507,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +518,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +554,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +565,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +603,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +616,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.21/deploy.yaml b/deploy/static/provider/do/1.21/deploy.yaml
index 664473a53..808fe8ad3 100644
--- a/deploy/static/provider/do/1.21/deploy.yaml
+++ b/deploy/static/provider/do/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +342,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +375,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +398,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +438,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +510,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +521,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +557,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +568,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +606,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.22/deploy.yaml b/deploy/static/provider/do/1.22/deploy.yaml
index 664473a53..808fe8ad3 100644
--- a/deploy/static/provider/do/1.22/deploy.yaml
+++ b/deploy/static/provider/do/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +342,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +375,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +398,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +438,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +510,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +521,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +557,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +568,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +606,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.23/deploy.yaml b/deploy/static/provider/do/1.23/deploy.yaml
index 664473a53..808fe8ad3 100644
--- a/deploy/static/provider/do/1.23/deploy.yaml
+++ b/deploy/static/provider/do/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +342,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +375,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +398,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +438,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +510,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +521,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +557,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +568,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +606,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.19/deploy.yaml b/deploy/static/provider/do/1.24/deploy.yaml
similarity index 91%
rename from deploy/static/provider/do/1.19/deploy.yaml
rename to deploy/static/provider/do/1.24/deploy.yaml
index 19cd50261..808fe8ad3 100644
--- a/deploy/static/provider/do/1.19/deploy.yaml
+++ b/deploy/static/provider/do/1.24/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,17 +342,22 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-  - name: http
+  - appProtocol: http
+    name: http
     port: 80
     protocol: TCP
     targetPort: http
-  - name: https
+  - appProtocol: https
+    name: https
     port: 443
     protocol: TCP
     targetPort: https
@@ -348,12 +375,13 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
   ports:
-  - name: https-webhook
+  - appProtocol: https
+    name: https-webhook
     port: 443
     targetPort: webhook
   selector:
@@ -370,7 +398,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -410,7 +438,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -482,7 +510,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -493,7 +521,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -529,7 +557,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -540,7 +568,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -578,7 +606,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -591,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/1.19/kustomization.yaml b/deploy/static/provider/do/1.24/kustomization.yaml
similarity index 100%
rename from deploy/static/provider/do/1.19/kustomization.yaml
rename to deploy/static/provider/do/1.24/kustomization.yaml
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 58a025a84..1008a916d 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +342,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +435,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +507,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +518,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +554,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +565,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +603,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +616,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.20/deploy.yaml b/deploy/static/provider/exoscale/1.20/deploy.yaml
index 7e29aefa9..090677552 100644
--- a/deploy/static/provider/exoscale/1.20/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -315,7 +337,6 @@ metadata:
   annotations:
     service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
       load balancer
-    service.beta.kubernetes.io/exoscale-loadbalancer-name: nginx-ingress-controller
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
@@ -327,7 +348,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -357,7 +378,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -380,7 +401,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -420,7 +441,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -492,7 +513,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -503,7 +524,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -539,7 +560,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -550,7 +571,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -588,7 +609,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -601,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.21/deploy.yaml b/deploy/static/provider/exoscale/1.21/deploy.yaml
index 06bddab91..df8c8e114 100644
--- a/deploy/static/provider/exoscale/1.21/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -315,7 +337,6 @@ metadata:
   annotations:
     service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
       load balancer
-    service.beta.kubernetes.io/exoscale-loadbalancer-name: nginx-ingress-controller
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
@@ -327,7 +348,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -360,7 +381,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -383,7 +404,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +444,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -495,7 +516,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -506,7 +527,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +563,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -553,7 +574,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,7 +612,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -604,7 +625,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.22/deploy.yaml b/deploy/static/provider/exoscale/1.22/deploy.yaml
index 06bddab91..df8c8e114 100644
--- a/deploy/static/provider/exoscale/1.22/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -315,7 +337,6 @@ metadata:
   annotations:
     service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
       load balancer
-    service.beta.kubernetes.io/exoscale-loadbalancer-name: nginx-ingress-controller
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
@@ -327,7 +348,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -360,7 +381,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -383,7 +404,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +444,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -495,7 +516,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -506,7 +527,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +563,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -553,7 +574,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,7 +612,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -604,7 +625,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.23/deploy.yaml b/deploy/static/provider/exoscale/1.23/deploy.yaml
index 06bddab91..df8c8e114 100644
--- a/deploy/static/provider/exoscale/1.23/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -315,7 +337,6 @@ metadata:
   annotations:
     service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
       load balancer
-    service.beta.kubernetes.io/exoscale-loadbalancer-name: nginx-ingress-controller
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
@@ -327,7 +348,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -360,7 +381,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -383,7 +404,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +444,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -495,7 +516,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -506,7 +527,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +563,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -553,7 +574,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,7 +612,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -604,7 +625,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.19/deploy.yaml b/deploy/static/provider/exoscale/1.24/deploy.yaml
similarity index 91%
rename from deploy/static/provider/exoscale/1.19/deploy.yaml
rename to deploy/static/provider/exoscale/1.24/deploy.yaml
index 42e8c47c9..df8c8e114 100644
--- a/deploy/static/provider/exoscale/1.19/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.24/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -315,7 +337,6 @@ metadata:
   annotations:
     service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
       load balancer
-    service.beta.kubernetes.io/exoscale-loadbalancer-name: nginx-ingress-controller
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
     service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
@@ -327,17 +348,22 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-  - name: http
+  - appProtocol: http
+    name: http
     port: 80
     protocol: TCP
     targetPort: http
-  - name: https
+  - appProtocol: https
+    name: https
     port: 443
     protocol: TCP
     targetPort: https
@@ -355,12 +381,13 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
   ports:
-  - name: https-webhook
+  - appProtocol: https
+    name: https-webhook
     port: 443
     targetPort: webhook
   selector:
@@ -377,7 +404,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +444,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -489,7 +516,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -500,7 +527,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -536,7 +563,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -547,7 +574,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -585,7 +612,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -598,7 +625,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/1.19/kustomization.yaml b/deploy/static/provider/exoscale/1.24/kustomization.yaml
similarity index 100%
rename from deploy/static/provider/exoscale/1.19/kustomization.yaml
rename to deploy/static/provider/exoscale/1.24/kustomization.yaml
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 6c2342b66..090677552 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -326,7 +348,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -356,7 +378,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -379,7 +401,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -419,7 +441,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -491,7 +513,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -502,7 +524,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -538,7 +560,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -549,7 +571,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -587,7 +609,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -600,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.20/deploy.yaml b/deploy/static/provider/kind/1.20/deploy.yaml
index 63f8dff33..c0a36a9ba 100644
--- a/deploy/static/provider/kind/1.20/deploy.yaml
+++ b/deploy/static/provider/kind/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -346,7 +368,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -369,7 +391,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -414,7 +436,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -496,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -507,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -543,7 +565,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -554,7 +576,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -592,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -605,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.21/deploy.yaml b/deploy/static/provider/kind/1.21/deploy.yaml
index e48d32dc6..872334ee8 100644
--- a/deploy/static/provider/kind/1.21/deploy.yaml
+++ b/deploy/static/provider/kind/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +371,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +394,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -499,7 +521,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -510,7 +532,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -546,7 +568,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -557,7 +579,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -595,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -608,7 +630,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.22/deploy.yaml b/deploy/static/provider/kind/1.22/deploy.yaml
index e48d32dc6..872334ee8 100644
--- a/deploy/static/provider/kind/1.22/deploy.yaml
+++ b/deploy/static/provider/kind/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +371,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +394,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -499,7 +521,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -510,7 +532,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -546,7 +568,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -557,7 +579,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -595,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -608,7 +630,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.23/deploy.yaml b/deploy/static/provider/kind/1.23/deploy.yaml
index e48d32dc6..872334ee8 100644
--- a/deploy/static/provider/kind/1.23/deploy.yaml
+++ b/deploy/static/provider/kind/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -349,7 +371,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -372,7 +394,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -499,7 +521,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -510,7 +532,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -546,7 +568,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -557,7 +579,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -595,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -608,7 +630,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.19/deploy.yaml b/deploy/static/provider/kind/1.24/deploy.yaml
similarity index 91%
rename from deploy/static/provider/kind/1.19/deploy.yaml
rename to deploy/static/provider/kind/1.24/deploy.yaml
index f5f931771..872334ee8 100644
--- a/deploy/static/provider/kind/1.19/deploy.yaml
+++ b/deploy/static/provider/kind/1.24/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,16 +339,21 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-  - name: http
+  - appProtocol: http
+    name: http
     port: 80
     protocol: TCP
     targetPort: http
-  - name: https
+  - appProtocol: https
+    name: https
     port: 443
     protocol: TCP
     targetPort: https
@@ -344,12 +371,13 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
   ports:
-  - name: https-webhook
+  - appProtocol: https
+    name: https-webhook
     port: 443
     targetPort: webhook
   selector:
@@ -366,7 +394,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -411,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -493,7 +521,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -504,7 +532,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -540,7 +568,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -551,7 +579,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -589,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -602,7 +630,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/1.19/kustomization.yaml b/deploy/static/provider/kind/1.24/kustomization.yaml
similarity index 100%
rename from deploy/static/provider/kind/1.19/kustomization.yaml
rename to deploy/static/provider/kind/1.24/kustomization.yaml
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 63f8dff33..c0a36a9ba 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -305,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -317,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -346,7 +368,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -369,7 +391,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -414,7 +436,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -496,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -507,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -543,7 +565,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -554,7 +576,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -592,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -605,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.20/deploy.yaml b/deploy/static/provider/scw/1.20/deploy.yaml
index f69ba79c7..935d6f665 100644
--- a/deploy/static/provider/scw/1.20/deploy.yaml
+++ b/deploy/static/provider/scw/1.20/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +342,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +435,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +507,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +518,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +554,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +565,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +603,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +616,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.21/deploy.yaml b/deploy/static/provider/scw/1.21/deploy.yaml
index 5a81c2d0b..fbfab1db6 100644
--- a/deploy/static/provider/scw/1.21/deploy.yaml
+++ b/deploy/static/provider/scw/1.21/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +342,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +375,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +398,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +438,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +510,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +521,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +557,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +568,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +606,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.22/deploy.yaml b/deploy/static/provider/scw/1.22/deploy.yaml
index 5a81c2d0b..fbfab1db6 100644
--- a/deploy/static/provider/scw/1.22/deploy.yaml
+++ b/deploy/static/provider/scw/1.22/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +342,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +375,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +398,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +438,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +510,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +521,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +557,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +568,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +606,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.23/deploy.yaml b/deploy/static/provider/scw/1.23/deploy.yaml
index 5a81c2d0b..fbfab1db6 100644
--- a/deploy/static/provider/scw/1.23/deploy.yaml
+++ b/deploy/static/provider/scw/1.23/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +342,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -353,7 +375,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -376,7 +398,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,7 +438,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,7 +510,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -499,7 +521,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +557,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -546,7 +568,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +606,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -597,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.19/deploy.yaml b/deploy/static/provider/scw/1.24/deploy.yaml
similarity index 91%
rename from deploy/static/provider/scw/1.19/deploy.yaml
rename to deploy/static/provider/scw/1.24/deploy.yaml
index d801ce4da..fbfab1db6 100644
--- a/deploy/static/provider/scw/1.19/deploy.yaml
+++ b/deploy/static/provider/scw/1.24/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,17 +342,22 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
-  - name: http
+  - appProtocol: http
+    name: http
     port: 80
     protocol: TCP
     targetPort: http
-  - name: https
+  - appProtocol: https
+    name: https
     port: 443
     protocol: TCP
     targetPort: https
@@ -348,12 +375,13 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
   ports:
-  - name: https-webhook
+  - appProtocol: https
+    name: https-webhook
     port: 443
     targetPort: webhook
   selector:
@@ -370,7 +398,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -410,7 +438,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -482,7 +510,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -493,7 +521,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -529,7 +557,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -540,7 +568,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -578,7 +606,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -591,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/1.19/kustomization.yaml b/deploy/static/provider/scw/1.24/kustomization.yaml
similarity index 100%
rename from deploy/static/provider/scw/1.19/kustomization.yaml
rename to deploy/static/provider/scw/1.24/kustomization.yaml
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index f69ba79c7..935d6f665 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -105,6 +105,21 @@ rules:
   - configmaps
   verbs:
   - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-controller-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
 - apiGroups:
   - ""
   resources:
@@ -121,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -140,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -155,6 +170,13 @@ rules:
   verbs:
   - list
   - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
 - apiGroups:
   - ""
   resources:
@@ -207,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -226,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -246,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -265,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -284,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -320,7 +342,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -350,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -373,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +435,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.2.1@sha256:5516d103a9c2ecc4f026efbd4b40662ce22dc1f824fb129ed121460aaa5c47f8
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,7 +507,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -496,7 +518,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +554,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -543,7 +565,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.2.1
+        app.kubernetes.io/version: 1.3.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +603,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -594,7 +616,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.2.1
+    app.kubernetes.io/version: 1.3.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 250c4261e..00ee6a9f5 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -51,7 +51,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -186,17 +186,17 @@ In AWS we use a Network load balancer (NLB) to expose the NGINX Ingress controll
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
 
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -238,7 +238,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -252,7 +252,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regards to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -260,13 +260,13 @@ More information with regards to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/do/deploy.yaml
 ```
 
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -280,7 +280,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A [complete list of available annotations for Oracle Cloud Infrastructure](https://github.com/oracle/oci-cloud-controller-manager/blob/master/docs/load-balancer-annotations.md) can be found in the [OCI Cloud Controller Manager](https://github.com/oracle/oci-cloud-controller-manager) documentation.
@@ -292,7 +292,7 @@ This section is applicable to Kubernetes clusters deployed on bare metal servers
 For quick testing, you can use a [NodePort](https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport). This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.2.1/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range), see [bare-metal considerations](./baremetal.md).

From 64efad8415258d4dbd0a6b8466e282a489195fe8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Miguel=20Mart=C3=ADnez?= <mtnezm@linux.com>
Date: Wed, 13 Jul 2022 02:41:37 +0200
Subject: [PATCH 0266/1641] Fixed typo (#8817)

---
 docs/user-guide/nginx-configuration/annotations.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 0c65bd0c8..199d156be 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -329,7 +329,7 @@ nginx.ingress.kubernetes.io/custom-http-errors: "404,415"
 
 ### Default Backend
 
-This annotation is of the form `nginx.ingress.kubernetes.io/default-backend: <svc name>` to specify a custom default backend.  This `<svc name>` is a reference to a service inside of the same namespace in which you are applying this annotation. This annotation overrides the global default backend. In case the service has [multiple ports](https://kubernetes.io/docs/concepts/services-networking/service/#multi-port-services), the first one is the one which will received the backend traffic. 
+This annotation is of the form `nginx.ingress.kubernetes.io/default-backend: <svc name>` to specify a custom default backend.  This `<svc name>` is a reference to a service inside of the same namespace in which you are applying this annotation. This annotation overrides the global default backend. In case the service has [multiple ports](https://kubernetes.io/docs/concepts/services-networking/service/#multi-port-services), the first one is the one which will receive the backend traffic. 
 
 This service will be used to handle the response when the configured service in the Ingress rule does not have any active endpoints. It will also be used to handle the error responses if both this annotation and the [custom-http-errors annotation](#custom-http-errors) are set.
 

From 2843bb264f5d31b2ed2514c300c65c33aca2557a Mon Sep 17 00:00:00 2001
From: Philipp B <mail@philipp-born.eu>
Date: Wed, 13 Jul 2022 11:53:37 +0200
Subject: [PATCH 0267/1641] fix(docs): describe MetalLB configuration via CRDs
 rather than configMap (#8821)

Signed-off-by: Philipp Born <mail@philipp-born.eu>
---
 docs/deploy/baremetal.md | 31 +++++++++++++++++++------------
 1 file changed, 19 insertions(+), 12 deletions(-)

diff --git a/docs/deploy/baremetal.md b/docs/deploy/baremetal.md
index b54c7f61e..55288c322 100644
--- a/docs/deploy/baremetal.md
+++ b/docs/deploy/baremetal.md
@@ -33,7 +33,7 @@ MetalLB can be deployed either with a simple Kubernetes manifest or with Helm. T
 was deployed following the [Installation][metallb-install] instructions.
 
 MetalLB requires a pool of IP addresses in order to be able to take ownership of the `ingress-nginx` Service. This pool
-can be defined in a ConfigMap named `config` located in the same namespace as the MetalLB controller. This pool of IPs **must** be dedicated to MetalLB's use, you can't reuse the Kubernetes node IPs or IPs handed out by a DHCP server.
+can be defined through `IPAddressPool` objects in the same namespace as the MetalLB controller. This pool of IPs **must** be dedicated to MetalLB's use, you can't reuse the Kubernetes node IPs or IPs handed out by a DHCP server.
 
 !!! example
     Given the following 3-node Kubernetes cluster (the external IP is added as an example, in most bare-metal
@@ -47,22 +47,29 @@ can be defined in a ConfigMap named `config` located in the same namespace as th
     host-3   Ready    node     203.0.113.3
     ```
 
-    After creating the following ConfigMap, MetalLB takes ownership of one of the IP addresses in the pool and updates
+    After creating the following objects, MetalLB takes ownership of one of the IP addresses in the pool and updates
     the *loadBalancer* IP field of the `ingress-nginx` Service accordingly.
 
     ```yaml
-    apiVersion: v1
-    kind: ConfigMap
+    ---
+    apiVersion: metallb.io/v1beta1
+    kind: IPAddressPool
     metadata:
+      name: default
       namespace: metallb-system
-      name: config
-    data:
-      config: |
-        address-pools:
-        - name: default
-          protocol: layer2
-          addresses:
-          - 203.0.113.10-203.0.113.15
+    spec:
+      addresses:
+      - 203.0.113.10-203.0.113.15
+      autoAssign: true
+    ---
+    apiVersion: metallb.io/v1beta1
+    kind: L2Advertisement
+    metadata:
+      name: default
+      namespace: metallb-system
+    spec:
+      ipAddressPools:
+      - default
     ```
 
     ```console

From 0049796682e509fc4c6a89931f093855fe54d014 Mon Sep 17 00:00:00 2001
From: Guilhem Lettron <guilhem@barpilot.io>
Date: Sun, 17 Jul 2022 21:13:20 +0200
Subject: [PATCH 0268/1641] feat: update mimalloc to 1.7.6 (#8827)

Signed-off-by: Guilhem Lettron <guilhem@barpilot.io>
---
 images/nginx/rootfs/build.sh | 12 +++++++-----
 1 file changed, 7 insertions(+), 5 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 2ee308d68..c23ed8681 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -127,6 +127,9 @@ export LUA_RESTY_IPMATCHER_VERSION=211e0d2eb8bbb558b79368f89948a0bafdc23654
 # Check for recent changes: https://github.com/ElvinEfendi/lua-resty-global-throttle/compare/v0.2.0...main
 export LUA_RESTY_GLOBAL_THROTTLE_VERSION=0.2.0
 
+# Check for recent changes:  https://github.com/microsoft/mimalloc/compare/v1.7.6...master
+export MIMALOC_VERSION=1.7.6
+
 export BUILD_PATH=/tmp/build
 
 ARCH=$(uname -m)
@@ -320,6 +323,9 @@ get_src b8dbd502751140993a852381bcd8e98a402454596bd91838c1e51268d42db261 \
 get_src 0fb790e394510e73fdba1492e576aaec0b8ee9ef08e3e821ce253a07719cf7ea \
         "https://github.com/ElvinEfendi/lua-resty-global-throttle/archive/v$LUA_RESTY_GLOBAL_THROTTLE_VERSION.tar.gz"
 
+get_src d74f86ada2329016068bc5a243268f1f555edd620b6a7d6ce89295e7d6cf18da \
+        "https://github.com/microsoft/mimalloc/archive/refs/tags/v${MIMALOC_VERSION}.tar.gz"
+
 # improve compilation times
 CORES=$(($(grep -c ^processor /proc/cpuinfo) - 1))
 
@@ -713,11 +719,7 @@ INST_LUADIR=/usr/local/lib/lua make install
 cd "$BUILD_PATH/lua-resty-global-throttle-$LUA_RESTY_GLOBAL_THROTTLE_VERSION"
 make install
 
-# mimalloc
-cd "$BUILD_PATH"
-git clone --depth=1 -b v1.6.7 https://github.com/microsoft/mimalloc
-cd mimalloc
-
+cd "$BUILD_PATH/mimalloc-$MIMALOC_VERSION"
 mkdir -p out/release
 cd out/release
 

From 1ebb68983d4a7c6e35d103ce4ce50d0cb1c45f3d Mon Sep 17 00:00:00 2001
From: Lien Li <lilien1010@gmail.com>
Date: Mon, 18 Jul 2022 13:19:20 +0800
Subject: [PATCH 0269/1641] Migrate ginkgo to v2 in e2e-test-runner (#8830)

---
 images/test-runner/rootfs/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index f7a46b180..790bf1248 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -49,7 +49,7 @@ ENV PATH $GOPATH/bin:/usr/local/go/bin:$PATH
 
 RUN mkdir -p "$GOPATH/src" "$GOPATH/bin" && chmod -R 777 "$GOPATH"
 
-RUN go install github.com/onsi/ginkgo/ginkgo@v1.16.5  && go install golang.org/x/lint/golint@latest
+RUN go install github.com/onsi/ginkgo/v2/ginkgo@v2.1.4  && go install golang.org/x/lint/golint@latest
 
 ARG RESTY_CLI_VERSION
 ARG RESTY_CLI_SHA

From cdd69d03ab2c0c4f389c7d02dec5af9e744b6ca6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 18 Jul 2022 05:37:15 -0700
Subject: [PATCH 0270/1641] Bump actions/setup-go from 3.2.0 to 3.2.1 (#8835)

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3.2.0 to 3.2.1.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/b22fbbc2921299758641fab08929b4ac52b32923...84cbf8094393cdc5fe1fe1671ff2647332956b1a)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index c42a2ac7c..2ca339184 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -72,7 +72,7 @@ jobs:
 
       - name: Set up Go 1.18
         id: go
-        uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v3.2.0
+        uses: actions/setup-go@84cbf8094393cdc5fe1fe1671ff2647332956b1a # v3.2.0
         with:
           go-version: '1.18.2'
 
@@ -134,7 +134,7 @@ jobs:
         uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
 
       - name: Setup Go
-        uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v3.2.0
+        uses: actions/setup-go@84cbf8094393cdc5fe1fe1671ff2647332956b1a # v3.2.0
         with:
           go-version: '1.18.2'
 
@@ -409,7 +409,7 @@ jobs:
       - name: Set up Go 1.18
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v3.2.0
+        uses: actions/setup-go@84cbf8094393cdc5fe1fe1671ff2647332956b1a # v3.2.0
         with:
           go-version: '1.18.2'
 

From c3d43315b000fe63800556e8d30585027c834f83 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 18 Jul 2022 05:39:16 -0700
Subject: [PATCH 0271/1641] Bump actions/dependency-review-action from 2.0.2 to
 2.0.4 (#8836)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 2.0.2 to 2.0.4.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/1c59cdf2a9c7f29c90e8da32237eb04b81bad9f0...94145f3150bfabdc97540cbd5f7e926306ea7744)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 0f84fd837..9f32403c5 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b #v3.0.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@1c59cdf2a9c7f29c90e8da32237eb04b81bad9f0 #v2.0.2
+        uses: actions/dependency-review-action@94145f3150bfabdc97540cbd5f7e926306ea7744 #v2.0.2

From 047aa1841032a2f948f1a9f7a69785f1f1f10632 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 18 Jul 2022 07:03:15 -0700
Subject: [PATCH 0272/1641] Bump github.com/prometheus/common from 0.35.0 to
 0.37.0 (#8832)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.35.0 to 0.37.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.35.0...v0.37.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index b8460ceda..c85ddd1d1 100644
--- a/go.mod
+++ b/go.mod
@@ -20,7 +20,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.12.2
 	github.com/prometheus/client_model v0.2.0
-	github.com/prometheus/common v0.35.0
+	github.com/prometheus/common v0.37.0
 	github.com/spf13/cobra v1.5.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.0
diff --git a/go.sum b/go.sum
index 36c270e5e..077b48b98 100644
--- a/go.sum
+++ b/go.sum
@@ -513,8 +513,8 @@ github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9
 github.com/prometheus/common v0.28.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/common v0.32.1/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.35.0 h1:Eyr+Pw2VymWejHqCugNaQXkAi6KayVNxaHeu6khmFBE=
-github.com/prometheus/common v0.35.0/go.mod h1:phzohg0JFMnBEFGxTDbfu3QyL5GI8gTQJFhYO5B3mfA=
+github.com/prometheus/common v0.37.0 h1:ccBbHCgIiT9uSoFY0vX8H3zsNR5eLt17/RQLUvn8pXE=
+github.com/prometheus/common v0.37.0/go.mod h1:phzohg0JFMnBEFGxTDbfu3QyL5GI8gTQJFhYO5B3mfA=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.0-20190507164030-5867b95ac084/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=

From 476be7757f2e917302b1104da422b5d7b08f387a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 18 Jul 2022 07:05:15 -0700
Subject: [PATCH 0273/1641] Bump github/codeql-action from 2.1.15 to 2.1.16
 (#8837)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.15 to 2.1.16.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/3f62b754e23e0dd60f91b744033e1dc1654c0ec6...3e7e3b32d0fb8283594bb0a76cc60a00918b0969)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 5a9aa0b4f..f8bc053c9 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@3f62b754e23e0dd60f91b744033e1dc1654c0ec6 # v2.1.14
+        uses: github/codeql-action/upload-sarif@3e7e3b32d0fb8283594bb0a76cc60a00918b0969 # v2.1.14
         with:
           sarif_file: results.sarif

From 20596f7f7d465ab248b56823eed2de123c252d7f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 18 Jul 2022 07:07:15 -0700
Subject: [PATCH 0274/1641] Bump google.golang.org/grpc from 1.47.0 to 1.48.0
 (#8833)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.47.0 to 1.48.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.47.0...v1.48.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index c85ddd1d1..c72359736 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20220214200702-86341886e292
 	golang.org/x/net v0.0.0-20220225172249-27dd8689420f
-	google.golang.org/grpc v1.47.0
+	google.golang.org/grpc v1.48.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.23.6
diff --git a/go.sum b/go.sum
index 077b48b98..34bd73d10 100644
--- a/go.sum
+++ b/go.sum
@@ -1062,8 +1062,8 @@ google.golang.org/grpc v1.36.1/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAG
 google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/grpc v1.38.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
-google.golang.org/grpc v1.47.0 h1:9n77onPX5F3qfFCqjy9dhn8PbNQsIKeVU04J9G7umt8=
-google.golang.org/grpc v1.47.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
+google.golang.org/grpc v1.48.0 h1:rQOsyJ/8+ufEDJd/Gdsz7HG220Mh9HAhFHRGnIjda0w=
+google.golang.org/grpc v1.48.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=

From e55e8488daa27634484ed295d4de021a023fb0a0 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Wed, 20 Jul 2022 01:56:08 +0800
Subject: [PATCH 0275/1641] fix: test-runner Makefile (#8840)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 images/test-runner/Makefile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index ecd4e5f58..85569a083 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -23,7 +23,7 @@ REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-runner
 
-NGINX_BASE_IMAGE ?= $(shell cat $DIR/../../NGINX_BASE)
+NGINX_BASE_IMAGE ?= $(shell cat $(DIR)/../../NGINX_BASE)
 
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled

From ac3c338e7e0f8d858ce6c1e4c22ee4ccdb0624e0 Mon Sep 17 00:00:00 2001
From: inosato <48383032+inosato@users.noreply.github.com>
Date: Thu, 21 Jul 2022 00:46:36 +0900
Subject: [PATCH 0276/1641] FIx typo x_forwarded_for (#8838)

---
 docs/user-guide/nginx-configuration/configmap.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 270dd1c62..e5af31cb5 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -479,7 +479,7 @@ Example for json output:
 
 ```json
 
-log-format-upstream: '{"time": "$time_iso8601", "remote_addr": "$proxy_protocol_addr", "x_forward_for": "$proxy_add_x_forwarded_for", "request_id": "$req_id",
+log-format-upstream: '{"time": "$time_iso8601", "remote_addr": "$proxy_protocol_addr", "x_forwarded_for": "$proxy_add_x_forwarded_for", "request_id": "$req_id",
   "remote_user": "$remote_user", "bytes_sent": $bytes_sent, "request_time": $request_time, "status": $status, "vhost": "$host", "request_proto": "$server_protocol",
   "path": "$uri", "request_query": "$args", "request_length": $request_length, "duration": $request_time,"method": "$request_method", "http_referrer": "$http_referer",
   "http_user_agent": "$http_user_agent" }'

From 8f9df544eaf1be64c2f279336640bc80e811dfd0 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 20 Jul 2022 21:40:36 +0530
Subject: [PATCH 0277/1641] bumped kubectl to v1.24.0 (#8807)

---
 build/dev-env.sh            | 12 ++++++------
 images/test-runner/Makefile |  4 ++--
 2 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/build/dev-env.sh b/build/dev-env.sh
index c0c99526b..68b683350 100755
--- a/build/dev-env.sh
+++ b/build/dev-env.sh
@@ -36,7 +36,7 @@ if ! command -v kind &> /dev/null; then
 fi
 
 if ! command -v kubectl &> /dev/null; then
-  echo "Please install kubectl 1.15 or higher"
+  echo "Please install kubectl 1.24.0 or higher"
   exit 1
 fi
 
@@ -46,14 +46,14 @@ if ! command -v helm &> /dev/null; then
 fi
 
 HELM_VERSION=$(helm version 2>&1 | grep -oE 'v[0-9]+\.[0-9]+\.[0-9]+') || true
-if [[ ${HELM_VERSION} < "v3.0.0" ]]; then
-  echo "Please upgrade helm to v3.0.0 or higher"
+if [[ ${HELM_VERSION} < "v3.9.0" ]]; then
+  echo "Please upgrade helm to v3.9.0 or higher"
   exit 1
 fi
 
 KUBE_CLIENT_VERSION=$(kubectl version --client --short 2>/dev/null | grep Client | awk '{print $3}' | cut -d. -f2) || true
-if [[ ${KUBE_CLIENT_VERSION} -lt 14 ]]; then
-  echo "Please update kubectl to 1.15 or higher"
+if [[ ${KUBE_CLIENT_VERSION} -lt 24 ]]; then
+  echo "Please update kubectl to 1.24.2 or higher"
   exit 1
 fi
 
@@ -61,7 +61,7 @@ echo "[dev-env] building image"
 make build image
 docker tag "${REGISTRY}/controller:${TAG}" "${DEV_IMAGE}"
 
-export K8S_VERSION=${K8S_VERSION:-v1.21.12@sha256:f316b33dd88f8196379f38feb80545ef3ed44d9197dca1bfd48bcb1583210207}
+export K8S_VERSION=${K8S_VERSION:-v1.24.2@sha256:1f0cee2282f43150b52dc7933183ed96abdcfc8d293f30ec07082495874876f1}
 
 KIND_CLUSTER_NAME="ingress-nginx-dev"
 
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 85569a083..0f2b72bad 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -41,7 +41,7 @@ build: ensure-buildx
 		--build-arg BASE_IMAGE=$(NGINX_BASE_IMAGE) \
 		--build-arg GOLANG_VERSION=1.18.2 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
-		--build-arg K8S_RELEASE=v1.21.3 \
+		--build-arg K8S_RELEASE=v1.24.2 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
 		--build-arg RESTY_CLI_SHA=e5f4f3128af49ba5c4d039d0554e5ae91bbe05866f60eccfa96d3653274bff90 \
 		--build-arg LUAROCKS_VERSION=3.8.0 \
@@ -49,7 +49,7 @@ build: ensure-buildx
 		--build-arg CHART_TESTING_VERSION=3.0.0 \
 		--build-arg YAML_LINT_VERSION=1.13.0 \
 		--build-arg YAMALE_VERSION=1.8.0 \
-		--build-arg HELM_VERSION=v3.4.2 \
+		--build-arg HELM_VERSION=v3.9.0 \
 		-t $(IMAGE):$(TAG) rootfs
 
 # push the cross built image

From 4c6a7ee158ae1b964c64918d1cbd78a37a573b20 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 20 Jul 2022 15:53:44 -0300
Subject: [PATCH 0278/1641] Decouple shared functions between controllers
 (#8829)

* Decouple shared functions between controllers

* Apply suggestions from code review

Co-authored-by: Jintao Zhang <tao12345666333@163.com>

* Fix package names and fmt

Co-authored-by: Jintao Zhang <tao12345666333@163.com>
---
 cmd/dataplane/main.go                         | 101 +++++++++++++++++
 cmd/nginx/main.go                             | 103 +++---------------
 cmd/nginx/main_test.go                        |   8 +-
 internal/ingress/annotations/auth/main.go     |   2 +-
 internal/ingress/controller/checker_test.go   |   2 +-
 internal/ingress/controller/config/config.go  |   2 +-
 .../ingress/controller/controller_test.go     |   4 +-
 internal/ingress/controller/nginx.go          |   5 +-
 .../ingress/controller/store/backend_ssl.go   |   8 +-
 internal/ingress/controller/store/store.go    |   7 +-
 .../ingress/controller/template/configmap.go  |   2 +-
 internal/net/dns/dns_test.go                  |   2 +-
 internal/net/ssl/ssl.go                       |   7 +-
 internal/net/ssl/ssl_test.go                  |   2 +-
 internal/watch/file_watcher_test.go           |   2 +-
 {cmd/nginx => pkg/flags}/flags.go             |  17 ++-
 {cmd/nginx => pkg/flags}/flags_test.go        |  34 ++----
 pkg/metrics/handler.go                        |  87 +++++++++++++++
 {internal => pkg/util}/file/file.go           |   0
 {internal => pkg/util}/file/file_test.go      |   0
 {internal => pkg/util}/file/filesystem.go     |   0
 {internal => pkg/util}/file/structure.go      |   0
 pkg/util/process/controller.go                |  24 ++++
 pkg/util/process/sigterm.go                   |  49 +++++++++
 pkg/util/process/sigterm_test.go              |  79 ++++++++++++++
 {internal => pkg/util}/runtime/cpu_linux.go   |   0
 .../util}/runtime/cpu_notlinux.go             |   0
 27 files changed, 413 insertions(+), 134 deletions(-)
 create mode 100644 cmd/dataplane/main.go
 rename {cmd/nginx => pkg/flags}/flags.go (96%)
 rename {cmd/nginx => pkg/flags}/flags_test.go (76%)
 create mode 100644 pkg/metrics/handler.go
 rename {internal => pkg/util}/file/file.go (100%)
 rename {internal => pkg/util}/file/file_test.go (100%)
 rename {internal => pkg/util}/file/filesystem.go (100%)
 rename {internal => pkg/util}/file/structure.go (100%)
 create mode 100644 pkg/util/process/controller.go
 create mode 100644 pkg/util/process/sigterm.go
 create mode 100644 pkg/util/process/sigterm_test.go
 rename {internal => pkg/util}/runtime/cpu_linux.go (100%)
 rename {internal => pkg/util}/runtime/cpu_notlinux.go (100%)

diff --git a/cmd/dataplane/main.go b/cmd/dataplane/main.go
new file mode 100644
index 000000000..8ea59a412
--- /dev/null
+++ b/cmd/dataplane/main.go
@@ -0,0 +1,101 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package main
+
+import (
+	"fmt"
+	"math/rand" // #nosec
+	"net/http"
+	"os"
+	"time"
+
+	"github.com/prometheus/client_golang/prometheus"
+	"github.com/prometheus/client_golang/prometheus/collectors"
+
+	"k8s.io/klog/v2"
+
+	"k8s.io/ingress-nginx/internal/ingress/controller"
+	"k8s.io/ingress-nginx/internal/ingress/metric"
+	"k8s.io/ingress-nginx/internal/nginx"
+	ingressflags "k8s.io/ingress-nginx/pkg/flags"
+	"k8s.io/ingress-nginx/pkg/metrics"
+	"k8s.io/ingress-nginx/pkg/util/file"
+	"k8s.io/ingress-nginx/pkg/util/process"
+	"k8s.io/ingress-nginx/version"
+)
+
+func main() {
+	klog.InitFlags(nil)
+
+	rand.Seed(time.Now().UnixNano())
+
+	fmt.Println(version.String())
+	var err error
+	showVersion, conf, err := ingressflags.ParseFlags()
+	if showVersion {
+		os.Exit(0)
+	}
+
+	if err != nil {
+		klog.Fatal(err)
+	}
+
+	err = file.CreateRequiredDirectories()
+	if err != nil {
+		klog.Fatal(err)
+	}
+
+	reg := prometheus.NewRegistry()
+
+	reg.MustRegister(collectors.NewGoCollector())
+	reg.MustRegister(collectors.NewProcessCollector(collectors.ProcessCollectorOpts{
+		PidFn:        func() (int, error) { return os.Getpid(), nil },
+		ReportErrors: true,
+	}))
+
+	mc := metric.NewDummyCollector()
+	if conf.EnableMetrics {
+		// TODO: Ingress class is not a part of dataplane anymore
+		mc, err = metric.NewCollector(conf.MetricsPerHost, conf.ReportStatusClasses, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets)
+		if err != nil {
+			klog.Fatalf("Error creating prometheus collector:  %v", err)
+		}
+	}
+	// Pass the ValidationWebhook status to determine if we need to start the collector
+	// for the admissionWebhook
+	// TODO: Dataplane does not contain validation webhook so the MetricCollector should not receive
+	// this as an argument
+	mc.Start(conf.ValidationWebhook)
+
+	if conf.EnableProfiling {
+		// TODO: Turn Profiler address configurable via flags
+		go metrics.RegisterProfiler("127.0.0.1", nginx.ProfilerPort)
+	}
+
+	ngx := controller.NewNGINXController(conf, mc)
+
+	mux := http.NewServeMux()
+	metrics.RegisterHealthz(nginx.HealthPath, mux)
+	metrics.RegisterMetrics(reg, mux)
+
+	go metrics.StartHTTPServer(conf.HealthCheckHost, conf.ListenPorts.Health, mux)
+	go ngx.Start()
+
+	process.HandleSigterm(ngx, conf.PostShutdownGracePeriod, func(code int) {
+		os.Exit(code)
+	})
+}
diff --git a/cmd/nginx/main.go b/cmd/nginx/main.go
index ff5f0c365..c585ed95e 100644
--- a/cmd/nginx/main.go
+++ b/cmd/nginx/main.go
@@ -21,34 +21,34 @@ import (
 	"fmt"
 	"math/rand" // #nosec
 	"net/http"
-	"net/http/pprof"
 	"os"
-	"os/signal"
 	"path/filepath"
 	"runtime"
-	"syscall"
 	"time"
 
 	"github.com/prometheus/client_golang/prometheus"
-	"github.com/prometheus/client_golang/prometheus/promhttp"
+	"github.com/prometheus/client_golang/prometheus/collectors"
 	"k8s.io/apimachinery/pkg/api/errors"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/util/wait"
 	discovery "k8s.io/apimachinery/pkg/version"
-	"k8s.io/apiserver/pkg/server/healthz"
 	"k8s.io/client-go/kubernetes"
 	"k8s.io/client-go/rest"
 	"k8s.io/client-go/tools/clientcmd"
 	certutil "k8s.io/client-go/util/cert"
 	"k8s.io/klog/v2"
 
-	"k8s.io/ingress-nginx/internal/file"
 	"k8s.io/ingress-nginx/internal/ingress/controller"
 	"k8s.io/ingress-nginx/internal/ingress/metric"
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/internal/net/ssl"
 	"k8s.io/ingress-nginx/internal/nginx"
+	"k8s.io/ingress-nginx/pkg/util/file"
 	"k8s.io/ingress-nginx/version"
+
+	ingressflags "k8s.io/ingress-nginx/pkg/flags"
+	"k8s.io/ingress-nginx/pkg/metrics"
+	"k8s.io/ingress-nginx/pkg/util/process"
 )
 
 func main() {
@@ -58,7 +58,7 @@ func main() {
 
 	fmt.Println(version.String())
 
-	showVersion, conf, err := parseFlags()
+	showVersion, conf, err := ingressflags.ParseFlags()
 	if showVersion {
 		os.Exit(0)
 	}
@@ -125,8 +125,8 @@ func main() {
 
 	reg := prometheus.NewRegistry()
 
-	reg.MustRegister(prometheus.NewGoCollector())
-	reg.MustRegister(prometheus.NewProcessCollector(prometheus.ProcessCollectorOpts{
+	reg.MustRegister(collectors.NewGoCollector())
+	reg.MustRegister(collectors.NewProcessCollector(collectors.ProcessCollectorOpts{
 		PidFn:        func() (int, error) { return os.Getpid(), nil },
 		ReportErrors: true,
 	}))
@@ -143,14 +143,14 @@ func main() {
 	mc.Start(conf.ValidationWebhook)
 
 	if conf.EnableProfiling {
-		go registerProfiler()
+		go metrics.RegisterProfiler("127.0.0.1", nginx.ProfilerPort)
 	}
 
 	ngx := controller.NewNGINXController(conf, mc)
 
 	mux := http.NewServeMux()
-	registerHealthz(nginx.HealthPath, ngx, mux)
-	registerMetrics(reg, mux)
+	metrics.RegisterHealthz(nginx.HealthPath, mux, ngx)
+	metrics.RegisterMetrics(reg, mux)
 
 	_, errExists := os.Stat("/chroot")
 	if errExists == nil {
@@ -159,35 +159,14 @@ func main() {
 
 	}
 
-	go startHTTPServer(conf.HealthCheckHost, conf.ListenPorts.Health, mux)
+	go metrics.StartHTTPServer(conf.HealthCheckHost, conf.ListenPorts.Health, mux)
 	go ngx.Start()
 
-	handleSigterm(ngx, conf.PostShutdownGracePeriod, func(code int) {
+	process.HandleSigterm(ngx, conf.PostShutdownGracePeriod, func(code int) {
 		os.Exit(code)
 	})
 }
 
-type exiter func(code int)
-
-func handleSigterm(ngx *controller.NGINXController, delay int, exit exiter) {
-	signalChan := make(chan os.Signal, 1)
-	signal.Notify(signalChan, syscall.SIGTERM)
-	<-signalChan
-	klog.InfoS("Received SIGTERM, shutting down")
-
-	exitCode := 0
-	if err := ngx.Stop(); err != nil {
-		klog.Warningf("Error during shutdown: %v", err)
-		exitCode = 1
-	}
-
-	klog.Infof("Handled quit, delaying controller exit for %d seconds", delay)
-	time.Sleep(time.Duration(delay) * time.Second)
-
-	klog.InfoS("Exiting", "code", exitCode)
-	exit(exitCode)
-}
-
 // createApiserverClient creates a new Kubernetes REST client. apiserverHost is
 // the URL of the API server in the format protocol://address:port/pathPrefix,
 // kubeConfig is the location of a kubeconfig file. If defined, the kubeconfig
@@ -293,60 +272,6 @@ func handleFatalInitError(err error) {
 		err)
 }
 
-func registerHealthz(healthPath string, ic *controller.NGINXController, mux *http.ServeMux) {
-	// expose health check endpoint (/healthz)
-	healthz.InstallPathHandler(mux,
-		healthPath,
-		healthz.PingHealthz,
-		ic,
-	)
-}
-
-func registerMetrics(reg *prometheus.Registry, mux *http.ServeMux) {
-	mux.Handle(
-		"/metrics",
-		promhttp.InstrumentMetricHandler(
-			reg,
-			promhttp.HandlerFor(reg, promhttp.HandlerOpts{}),
-		),
-	)
-}
-
-func registerProfiler() {
-	mux := http.NewServeMux()
-
-	mux.HandleFunc("/debug/pprof/", pprof.Index)
-	mux.HandleFunc("/debug/pprof/heap", pprof.Index)
-	mux.HandleFunc("/debug/pprof/mutex", pprof.Index)
-	mux.HandleFunc("/debug/pprof/goroutine", pprof.Index)
-	mux.HandleFunc("/debug/pprof/threadcreate", pprof.Index)
-	mux.HandleFunc("/debug/pprof/block", pprof.Index)
-	mux.HandleFunc("/debug/pprof/cmdline", pprof.Cmdline)
-	mux.HandleFunc("/debug/pprof/profile", pprof.Profile)
-	mux.HandleFunc("/debug/pprof/symbol", pprof.Symbol)
-	mux.HandleFunc("/debug/pprof/trace", pprof.Trace)
-
-	server := &http.Server{
-		Addr: fmt.Sprintf("127.0.0.1:%v", nginx.ProfilerPort),
-		//G112 (CWE-400): Potential Slowloris Attack
-		ReadHeaderTimeout: 10 * time.Second,
-		Handler:           mux,
-	}
-	klog.Fatal(server.ListenAndServe())
-}
-
-func startHTTPServer(host string, port int, mux *http.ServeMux) {
-	server := &http.Server{
-		Addr:              fmt.Sprintf("%s:%v", host, port),
-		Handler:           mux,
-		ReadTimeout:       10 * time.Second,
-		ReadHeaderTimeout: 10 * time.Second,
-		WriteTimeout:      300 * time.Second,
-		IdleTimeout:       120 * time.Second,
-	}
-	klog.Fatal(server.ListenAndServe())
-}
-
 func checkService(key string, kubeClient *kubernetes.Clientset) error {
 	ns, name, err := k8s.ParseNameNS(key)
 	if err != nil {
diff --git a/cmd/nginx/main_test.go b/cmd/nginx/main_test.go
index 2a29953ad..f57c02c5e 100644
--- a/cmd/nginx/main_test.go
+++ b/cmd/nginx/main_test.go
@@ -33,6 +33,8 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/controller"
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/internal/nginx"
+	ingressflags "k8s.io/ingress-nginx/pkg/flags"
+	"k8s.io/ingress-nginx/pkg/util/process"
 )
 
 func TestCreateApiserverClient(t *testing.T) {
@@ -83,7 +85,7 @@ func TestHandleSigterm(t *testing.T) {
 		t.Fatalf("error creating pod %v: %v", pod, err)
 	}
 
-	resetForTesting(func() { t.Fatal("bad parse") })
+	ingressflags.ResetForTesting(func() { t.Fatal("bad parse") })
 
 	os.Setenv("POD_NAME", podName)
 	os.Setenv("POD_NAMESPACE", namespace)
@@ -97,7 +99,7 @@ func TestHandleSigterm(t *testing.T) {
 	}()
 
 	os.Args = []string{"cmd", "--default-backend-service", "ingress-nginx/default-backend-http", "--http-port", "0", "--https-port", "0"}
-	_, conf, err := parseFlags()
+	_, conf, err := ingressflags.ParseFlags()
 	if err != nil {
 		t.Errorf("Unexpected error creating NGINX controller: %v", err)
 	}
@@ -105,7 +107,7 @@ func TestHandleSigterm(t *testing.T) {
 
 	ngx := controller.NewNGINXController(conf, nil)
 
-	go handleSigterm(ngx, 10, func(code int) {
+	go process.HandleSigterm(ngx, 10, func(code int) {
 		if code != 1 {
 			t.Errorf("Expected exit code 1 but %d received", code)
 		}
diff --git a/internal/ingress/annotations/auth/main.go b/internal/ingress/annotations/auth/main.go
index e05988365..58486c6e8 100644
--- a/internal/ingress/annotations/auth/main.go
+++ b/internal/ingress/annotations/auth/main.go
@@ -26,10 +26,10 @@ import (
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/client-go/tools/cache"
 
-	"k8s.io/ingress-nginx/internal/file"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
+	"k8s.io/ingress-nginx/pkg/util/file"
 )
 
 var (
diff --git a/internal/ingress/controller/checker_test.go b/internal/ingress/controller/checker_test.go
index fd712b6a8..5d9fb1baf 100644
--- a/internal/ingress/controller/checker_test.go
+++ b/internal/ingress/controller/checker_test.go
@@ -26,9 +26,9 @@ import (
 
 	"k8s.io/apiserver/pkg/server/healthz"
 
-	"k8s.io/ingress-nginx/internal/file"
 	ngx_config "k8s.io/ingress-nginx/internal/ingress/controller/config"
 	"k8s.io/ingress-nginx/internal/nginx"
+	"k8s.io/ingress-nginx/pkg/util/file"
 )
 
 func TestNginxCheck(t *testing.T) {
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 07f9d957a..dfc90c385 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -26,7 +26,7 @@ import (
 
 	"k8s.io/ingress-nginx/internal/ingress"
 	"k8s.io/ingress-nginx/internal/ingress/defaults"
-	"k8s.io/ingress-nginx/internal/runtime"
+	"k8s.io/ingress-nginx/pkg/util/runtime"
 )
 
 var (
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index 398e18830..0e8ae9d62 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -39,8 +39,8 @@ import (
 	"k8s.io/apimachinery/pkg/labels"
 	"k8s.io/client-go/kubernetes/fake"
 
-	"k8s.io/ingress-nginx/internal/file"
 	"k8s.io/ingress-nginx/internal/ingress"
+
 	"k8s.io/ingress-nginx/internal/ingress/annotations"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/canary"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipwhitelist"
@@ -56,6 +56,8 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/internal/net/ssl"
+
+	"k8s.io/ingress-nginx/pkg/util/file"
 )
 
 type fakeIngressStore struct {
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 9c8e5265c..41ec0445a 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -44,10 +44,8 @@ import (
 	v1core "k8s.io/client-go/kubernetes/typed/core/v1"
 	"k8s.io/client-go/tools/record"
 	"k8s.io/client-go/util/flowcontrol"
-	"k8s.io/klog/v2"
 
 	adm_controller "k8s.io/ingress-nginx/internal/admission/controller"
-	"k8s.io/ingress-nginx/internal/file"
 	"k8s.io/ingress-nginx/internal/ingress"
 	ngx_config "k8s.io/ingress-nginx/internal/ingress/controller/config"
 	"k8s.io/ingress-nginx/internal/ingress/controller/process"
@@ -61,6 +59,9 @@ import (
 	"k8s.io/ingress-nginx/internal/nginx"
 	"k8s.io/ingress-nginx/internal/task"
 	"k8s.io/ingress-nginx/internal/watch"
+
+	"k8s.io/ingress-nginx/pkg/util/file"
+	klog "k8s.io/klog/v2"
 )
 
 const (
diff --git a/internal/ingress/controller/store/backend_ssl.go b/internal/ingress/controller/store/backend_ssl.go
index 19283d2fd..96164b95e 100644
--- a/internal/ingress/controller/store/backend_ssl.go
+++ b/internal/ingress/controller/store/backend_ssl.go
@@ -20,15 +20,17 @@ import (
 	"fmt"
 	"strings"
 
-	"k8s.io/klog/v2"
-
 	apiv1 "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
-	"k8s.io/ingress-nginx/internal/file"
 	"k8s.io/ingress-nginx/internal/ingress"
+
+	klog "k8s.io/klog/v2"
+
 	"k8s.io/ingress-nginx/internal/net/ssl"
+
+	"k8s.io/ingress-nginx/pkg/util/file"
 )
 
 // syncSecret synchronizes the content of a TLS Secret (certificate(s), secret
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index d29636b03..72300a4de 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -43,9 +43,11 @@ import (
 	"k8s.io/client-go/tools/cache"
 	"k8s.io/client-go/tools/record"
 	"k8s.io/ingress-nginx/internal/ingress/inspector"
-	"k8s.io/klog/v2"
 
-	"k8s.io/ingress-nginx/internal/file"
+	"k8s.io/ingress-nginx/internal/nginx"
+	"k8s.io/ingress-nginx/pkg/util/file"
+	klog "k8s.io/klog/v2"
+
 	"k8s.io/ingress-nginx/internal/ingress"
 	"k8s.io/ingress-nginx/internal/ingress/annotations"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
@@ -56,7 +58,6 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 	"k8s.io/ingress-nginx/internal/k8s"
-	"k8s.io/ingress-nginx/internal/nginx"
 )
 
 // IngressFilterFunc decides if an Ingress should be omitted or not
diff --git a/internal/ingress/controller/template/configmap.go b/internal/ingress/controller/template/configmap.go
index bcd985f7f..35a0e4536 100644
--- a/internal/ingress/controller/template/configmap.go
+++ b/internal/ingress/controller/template/configmap.go
@@ -34,7 +34,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/controller/config"
 	ing_net "k8s.io/ingress-nginx/internal/net"
-	"k8s.io/ingress-nginx/internal/runtime"
+	"k8s.io/ingress-nginx/pkg/util/runtime"
 )
 
 const (
diff --git a/internal/net/dns/dns_test.go b/internal/net/dns/dns_test.go
index 2b21e81e7..708e3c6df 100644
--- a/internal/net/dns/dns_test.go
+++ b/internal/net/dns/dns_test.go
@@ -21,7 +21,7 @@ import (
 	"os"
 	"testing"
 
-	"k8s.io/ingress-nginx/internal/file"
+	"k8s.io/ingress-nginx/pkg/util/file"
 )
 
 func TestGetDNSServers(t *testing.T) {
diff --git a/internal/net/ssl/ssl.go b/internal/net/ssl/ssl.go
index bb99e2e8a..339724095 100644
--- a/internal/net/ssl/ssl.go
+++ b/internal/net/ssl/ssl.go
@@ -39,11 +39,14 @@ import (
 
 	"github.com/zakjan/cert-chain-resolver/certUtil"
 	"k8s.io/apimachinery/pkg/util/sets"
-	"k8s.io/ingress-nginx/internal/file"
+
 	"k8s.io/ingress-nginx/internal/ingress"
+
 	ngx_config "k8s.io/ingress-nginx/internal/ingress/controller/config"
 	"k8s.io/ingress-nginx/internal/watch"
-	"k8s.io/klog/v2"
+
+	"k8s.io/ingress-nginx/pkg/util/file"
+	klog "k8s.io/klog/v2"
 )
 
 // FakeSSLCertificateUID defines the default UID to use for the fake SSL
diff --git a/internal/net/ssl/ssl_test.go b/internal/net/ssl/ssl_test.go
index 0b972d21c..e251d01d1 100644
--- a/internal/net/ssl/ssl_test.go
+++ b/internal/net/ssl/ssl_test.go
@@ -39,7 +39,7 @@ import (
 	"time"
 
 	certutil "k8s.io/client-go/util/cert"
-	"k8s.io/ingress-nginx/internal/file"
+	"k8s.io/ingress-nginx/pkg/util/file"
 )
 
 // generateRSACerts generates a self signed certificate using a self generated ca
diff --git a/internal/watch/file_watcher_test.go b/internal/watch/file_watcher_test.go
index d97d6b9ae..e1f5ed30d 100644
--- a/internal/watch/file_watcher_test.go
+++ b/internal/watch/file_watcher_test.go
@@ -23,7 +23,7 @@ import (
 	"testing"
 	"time"
 
-	"k8s.io/ingress-nginx/internal/file"
+	"k8s.io/ingress-nginx/pkg/util/file"
 )
 
 func prepareTimeout() chan bool {
diff --git a/cmd/nginx/flags.go b/pkg/flags/flags.go
similarity index 96%
rename from cmd/nginx/flags.go
rename to pkg/flags/flags.go
index 9a00b58b0..f7c1771e8 100644
--- a/cmd/nginx/flags.go
+++ b/pkg/flags/flags.go
@@ -14,7 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
-package main
+package flags
 
 import (
 	"flag"
@@ -37,7 +37,11 @@ import (
 	klog "k8s.io/klog/v2"
 )
 
-func parseFlags() (bool, *controller.Configuration, error) {
+// TODO: We should split the flags functions between common for all programs
+// and specific for each component (like webhook, controller and configurer)
+// ParseFlags generates a configuration for Ingress Controller based on the flags
+// provided by users
+func ParseFlags() (bool, *controller.Configuration, error) {
 	var (
 		flags = pflag.NewFlagSet("", pflag.ExitOnError)
 
@@ -379,3 +383,12 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 
 	return false, config, err
 }
+
+// ResetForTesting clears all flag state and sets the usage function as directed.
+// After calling resetForTesting, parse errors in flag handling will not
+// exit the program.
+// Extracted from https://github.com/golang/go/blob/master/src/flag/export_test.go
+func ResetForTesting(usage func()) {
+	flag.CommandLine = flag.NewFlagSet(os.Args[0], flag.ContinueOnError)
+	flag.Usage = usage
+}
diff --git a/cmd/nginx/flags_test.go b/pkg/flags/flags_test.go
similarity index 76%
rename from cmd/nginx/flags_test.go
rename to pkg/flags/flags_test.go
index b25fa7557..2a33d73dd 100644
--- a/cmd/nginx/flags_test.go
+++ b/pkg/flags/flags_test.go
@@ -14,32 +14,22 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
-package main
+package flags
 
 import (
-	"flag"
 	"os"
 	"testing"
 )
 
-// resetForTesting clears all flag state and sets the usage function as directed.
-// After calling resetForTesting, parse errors in flag handling will not
-// exit the program.
-// Extracted from https://github.com/golang/go/blob/master/src/flag/export_test.go
-func resetForTesting(usage func()) {
-	flag.CommandLine = flag.NewFlagSet(os.Args[0], flag.ContinueOnError)
-	flag.Usage = usage
-}
-
 func TestNoMandatoryFlag(t *testing.T) {
-	_, _, err := parseFlags()
+	_, _, err := ParseFlags()
 	if err != nil {
 		t.Fatalf("Expected no error but got: %s", err)
 	}
 }
 
 func TestDefaults(t *testing.T) {
-	resetForTesting(func() { t.Fatal("Parsing failed") })
+	ResetForTesting(func() { t.Fatal("Parsing failed") })
 
 	oldArgs := os.Args
 	defer func() { os.Args = oldArgs }()
@@ -49,7 +39,7 @@ func TestDefaults(t *testing.T) {
 		"--https-port", "0",
 	}
 
-	showVersion, conf, err := parseFlags()
+	showVersion, conf, err := ParseFlags()
 	if err != nil {
 		t.Fatalf("Unexpected error parsing default flags: %v", err)
 	}
@@ -68,52 +58,52 @@ func TestSetupSSLProxy(t *testing.T) {
 }
 
 func TestFlagConflict(t *testing.T) {
-	resetForTesting(func() { t.Fatal("Parsing failed") })
+	ResetForTesting(func() { t.Fatal("Parsing failed") })
 
 	oldArgs := os.Args
 	defer func() { os.Args = oldArgs }()
 	os.Args = []string{"cmd", "--publish-service", "namespace/test", "--http-port", "0", "--https-port", "0", "--publish-status-address", "1.1.1.1"}
 
-	_, _, err := parseFlags()
+	_, _, err := ParseFlags()
 	if err == nil {
 		t.Fatalf("Expected an error parsing flags but none returned")
 	}
 }
 
 func TestMaxmindEdition(t *testing.T) {
-	resetForTesting(func() { t.Fatal("Parsing failed") })
+	ResetForTesting(func() { t.Fatal("Parsing failed") })
 
 	oldArgs := os.Args
 	defer func() { os.Args = oldArgs }()
 	os.Args = []string{"cmd", "--publish-service", "namespace/test", "--http-port", "0", "--https-port", "0", "--maxmind-license-key", "0000000", "--maxmind-edition-ids", "GeoLite2-City, TestCheck"}
 
-	_, _, err := parseFlags()
+	_, _, err := ParseFlags()
 	if err == nil {
 		t.Fatalf("Expected an error parsing flags but none returned")
 	}
 }
 
 func TestMaxmindMirror(t *testing.T) {
-	resetForTesting(func() { t.Fatal("Parsing failed") })
+	ResetForTesting(func() { t.Fatal("Parsing failed") })
 
 	oldArgs := os.Args
 	defer func() { os.Args = oldArgs }()
 	os.Args = []string{"cmd", "--publish-service", "namespace/test", "--http-port", "0", "--https-port", "0", "--maxmind-mirror", "http://geoip.local", "--maxmind-license-key", "0000000", "--maxmind-edition-ids", "GeoLite2-City, TestCheck"}
 
-	_, _, err := parseFlags()
+	_, _, err := ParseFlags()
 	if err == nil {
 		t.Fatalf("Expected an error parsing flags but none returned")
 	}
 }
 
 func TestMaxmindRetryDownload(t *testing.T) {
-	resetForTesting(func() { t.Fatal("Parsing failed") })
+	ResetForTesting(func() { t.Fatal("Parsing failed") })
 
 	oldArgs := os.Args
 	defer func() { os.Args = oldArgs }()
 	os.Args = []string{"cmd", "--publish-service", "namespace/test", "--http-port", "0", "--https-port", "0", "--maxmind-mirror", "http://127.0.0.1", "--maxmind-license-key", "0000000", "--maxmind-edition-ids", "GeoLite2-City", "--maxmind-retries-timeout", "1s", "--maxmind-retries-count", "3"}
 
-	_, _, err := parseFlags()
+	_, _, err := ParseFlags()
 	if err == nil {
 		t.Fatalf("Expected an error parsing flags but none returned")
 	}
diff --git a/pkg/metrics/handler.go b/pkg/metrics/handler.go
new file mode 100644
index 000000000..c37c1760c
--- /dev/null
+++ b/pkg/metrics/handler.go
@@ -0,0 +1,87 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package metrics
+
+import (
+	"fmt"
+	"net/http"
+	"net/http/pprof"
+	"time"
+
+	"github.com/prometheus/client_golang/prometheus"
+	"github.com/prometheus/client_golang/prometheus/promhttp"
+	"k8s.io/apiserver/pkg/server/healthz"
+	klog "k8s.io/klog/v2"
+)
+
+func RegisterHealthz(healthPath string, mux *http.ServeMux, checks ...healthz.HealthChecker) {
+
+	healthCheck := []healthz.HealthChecker{healthz.PingHealthz}
+	if len(checks) > 0 {
+		healthCheck = append(healthCheck, checks...)
+	}
+	// expose health check endpoint (/healthz)
+	healthz.InstallPathHandler(mux,
+		healthPath,
+		healthCheck...,
+	)
+}
+
+func RegisterMetrics(reg *prometheus.Registry, mux *http.ServeMux) {
+	mux.Handle(
+		"/metrics",
+		promhttp.InstrumentMetricHandler(
+			reg,
+			promhttp.HandlerFor(reg, promhttp.HandlerOpts{}),
+		),
+	)
+}
+
+func RegisterProfiler(host string, port int) {
+	mux := http.NewServeMux()
+
+	mux.HandleFunc("/debug/pprof/", pprof.Index)
+	mux.HandleFunc("/debug/pprof/heap", pprof.Index)
+	mux.HandleFunc("/debug/pprof/mutex", pprof.Index)
+	mux.HandleFunc("/debug/pprof/goroutine", pprof.Index)
+	mux.HandleFunc("/debug/pprof/threadcreate", pprof.Index)
+	mux.HandleFunc("/debug/pprof/block", pprof.Index)
+	mux.HandleFunc("/debug/pprof/cmdline", pprof.Cmdline)
+	mux.HandleFunc("/debug/pprof/profile", pprof.Profile)
+	mux.HandleFunc("/debug/pprof/symbol", pprof.Symbol)
+	mux.HandleFunc("/debug/pprof/trace", pprof.Trace)
+
+	server := &http.Server{
+		Addr: fmt.Sprintf("%s:%d", host, port),
+		//G112 (CWE-400): Potential Slowloris Attack
+		ReadHeaderTimeout: 10 * time.Second,
+		Handler:           mux,
+	}
+	klog.Fatal(server.ListenAndServe())
+}
+
+func StartHTTPServer(host string, port int, mux *http.ServeMux) {
+	server := &http.Server{
+		Addr:              fmt.Sprintf("%s:%v", host, port),
+		Handler:           mux,
+		ReadTimeout:       10 * time.Second,
+		ReadHeaderTimeout: 10 * time.Second,
+		WriteTimeout:      300 * time.Second,
+		IdleTimeout:       120 * time.Second,
+	}
+	klog.Fatal(server.ListenAndServe())
+}
diff --git a/internal/file/file.go b/pkg/util/file/file.go
similarity index 100%
rename from internal/file/file.go
rename to pkg/util/file/file.go
diff --git a/internal/file/file_test.go b/pkg/util/file/file_test.go
similarity index 100%
rename from internal/file/file_test.go
rename to pkg/util/file/file_test.go
diff --git a/internal/file/filesystem.go b/pkg/util/file/filesystem.go
similarity index 100%
rename from internal/file/filesystem.go
rename to pkg/util/file/filesystem.go
diff --git a/internal/file/structure.go b/pkg/util/file/structure.go
similarity index 100%
rename from internal/file/structure.go
rename to pkg/util/file/structure.go
diff --git a/pkg/util/process/controller.go b/pkg/util/process/controller.go
new file mode 100644
index 000000000..ae9bc9356
--- /dev/null
+++ b/pkg/util/process/controller.go
@@ -0,0 +1,24 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package process
+
+// ProcessController defines a common interface for a process to be controlled,
+// like the configurer, the webhook or the proper ingress controller
+type ProcessController interface {
+	Start()
+	Stop() error
+}
diff --git a/pkg/util/process/sigterm.go b/pkg/util/process/sigterm.go
new file mode 100644
index 000000000..77c0ad58c
--- /dev/null
+++ b/pkg/util/process/sigterm.go
@@ -0,0 +1,49 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package process
+
+import (
+	"os"
+	"os/signal"
+	"syscall"
+	"time"
+
+	klog "k8s.io/klog/v2"
+)
+
+type exiter func(code int)
+
+// HandleSigterm receives a ProcessController interface and deals with
+// the graceful shutdown
+func HandleSigterm(ngx ProcessController, delay int, exit exiter) {
+	signalChan := make(chan os.Signal, 1)
+	signal.Notify(signalChan, syscall.SIGTERM)
+	<-signalChan
+	klog.InfoS("Received SIGTERM, shutting down")
+
+	exitCode := 0
+	if err := ngx.Stop(); err != nil {
+		klog.Warningf("Error during shutdown: %v", err)
+		exitCode = 1
+	}
+
+	klog.Infof("Handled quit, delaying controller exit for %d seconds", delay)
+	time.Sleep(time.Duration(delay) * time.Second)
+
+	klog.InfoS("Exiting", "code", exitCode)
+	exit(exitCode)
+}
diff --git a/pkg/util/process/sigterm_test.go b/pkg/util/process/sigterm_test.go
new file mode 100644
index 000000000..2c2a6ee91
--- /dev/null
+++ b/pkg/util/process/sigterm_test.go
@@ -0,0 +1,79 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package process
+
+import (
+	"fmt"
+	"syscall"
+	"testing"
+	"time"
+)
+
+type FakeProcess struct {
+	shouldError bool
+	exitCode    int
+}
+
+func (f *FakeProcess) Start() {
+}
+
+func (f *FakeProcess) Stop() error {
+	if f.shouldError {
+		return fmt.Errorf("error")
+	}
+	return nil
+}
+
+func (f *FakeProcess) exiterFunc(code int) {
+	f.exitCode = code
+}
+
+func sendDelayedSignal(delay time.Duration) {
+	time.Sleep(delay * time.Second)
+	syscall.Kill(syscall.Getpid(), syscall.SIGTERM)
+}
+
+func TestHandleSigterm(t *testing.T) {
+	tests := []struct {
+		name        string
+		shouldError bool
+		delay       int
+	}{
+		{
+			name:        "should exit without error",
+			shouldError: false,
+		},
+		{
+			name:        "should exit with error",
+			shouldError: true,
+			delay:       2,
+		},
+	}
+	for _, tt := range tests {
+		process := &FakeProcess{shouldError: tt.shouldError}
+		t.Run(tt.name, func(t *testing.T) {
+			go sendDelayedSignal(2) // Send a signal after 2 seconds
+			HandleSigterm(process, tt.delay, process.exiterFunc)
+		})
+		if tt.shouldError && process.exitCode != 1 {
+			t.Errorf("wrong return, should be 1 and returned %d", process.exitCode)
+		}
+		if !tt.shouldError && process.exitCode != 0 {
+			t.Errorf("wrong return, should be 0 and returned %d", process.exitCode)
+		}
+	}
+}
diff --git a/internal/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
similarity index 100%
rename from internal/runtime/cpu_linux.go
rename to pkg/util/runtime/cpu_linux.go
diff --git a/internal/runtime/cpu_notlinux.go b/pkg/util/runtime/cpu_notlinux.go
similarity index 100%
rename from internal/runtime/cpu_notlinux.go
rename to pkg/util/runtime/cpu_notlinux.go

From 0cc43d5e5295a769fa6e9428004a70378b632e9b Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 21 Jul 2022 06:27:44 +0530
Subject: [PATCH 0279/1641] added fixes for make dev-env (#8804)

---
 Makefile               | 3 ++-
 build/build.sh         | 1 +
 build/run-in-docker.sh | 2 ++
 3 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/Makefile b/Makefile
index bafddeef2..5ba8e8ed5 100644
--- a/Makefile
+++ b/Makefile
@@ -54,8 +54,9 @@ ifneq ($(PLATFORM),)
 endif
 
 MAC_OS = $(shell uname -s)
+
 ifeq ($(MAC_OS), Darwin)
-	MAC_DOCKER_FLAGS="--load"
+	MAC_DOCKER_FLAGS=
 else
 	MAC_DOCKER_FLAGS=
 endif
diff --git a/build/build.sh b/build/build.sh
index 210a8e10f..3b51d665e 100755
--- a/build/build.sh
+++ b/build/build.sh
@@ -49,6 +49,7 @@ echo "Building targets for ${ARCH}, generated targets in ${TARGETS_DIR} director
 
 echo "Building ${PKG}/cmd/nginx"
 
+git config --add safe.directory /go/src/k8s.io/ingress-nginx
 ${GO_BUILD_CMD} \
   -trimpath -ldflags="-buildid= -w -s \
     -X ${PKG}/version.RELEASE=${TAG} \
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index d2cfe9552..3cb1f8ef5 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -65,12 +65,14 @@ fi
 
 USER=${USER:-nobody}
 
+MAC_OS="`uname -s`"
 MAC_OS="${MAC_OS:-}"
 if [[ ${MAC_OS} == "Darwin" ]]; then
 	MAC_DOCKER_FLAGS=""
 else
 	MAC_DOCKER_FLAGS="-u $(id -u ${USER}):$(id -g ${USER})" #idk why mac/git fails on the gobuild if these are presented to dockerrun.sh script
 fi
+echo "MAC_OS = ${MAC_OS}, MAC_OS_FLAGS = ${MAC_DOCKER_FLAGS}"
 
 echo "..printing env & other vars to stdout"
 echo "HOSTNAME=`hostname`"

From 7304086202ec94f08a4ae8ef3426478d9a9478a5 Mon Sep 17 00:00:00 2001
From: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>
Date: Wed, 20 Jul 2022 18:15:03 -0300
Subject: [PATCH 0280/1641] Move util to specific package location

---
 internal/ingress/annotations/authreq/main.go           | 2 +-
 internal/ingress/annotations/globalratelimit/main.go   | 2 +-
 internal/ingress/annotations/ipwhitelist/main.go       | 2 +-
 internal/ingress/annotations/ratelimit/main.go         | 2 +-
 internal/ingress/controller/nginx.go                   | 5 ++---
 internal/ingress/types_equals.go                       | 2 +-
 internal/net/ssl/ssl.go                                | 7 +++----
 {internal/watch => pkg/util/file}/file_watcher.go      | 2 +-
 {internal/watch => pkg/util/file}/file_watcher_test.go | 6 ++----
 {internal => pkg/util}/sets/match.go                   | 0
 {internal => pkg/util}/sets/match_test.go              | 0
 11 files changed, 13 insertions(+), 17 deletions(-)
 rename {internal/watch => pkg/util/file}/file_watcher.go (99%)
 rename {internal/watch => pkg/util/file}/file_watcher_test.go (96%)
 rename {internal => pkg/util}/sets/match.go (100%)
 rename {internal => pkg/util}/sets/match_test.go (100%)

diff --git a/internal/ingress/annotations/authreq/main.go b/internal/ingress/annotations/authreq/main.go
index b5dc4c70b..b607f5482 100644
--- a/internal/ingress/annotations/authreq/main.go
+++ b/internal/ingress/annotations/authreq/main.go
@@ -28,7 +28,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
-	"k8s.io/ingress-nginx/internal/sets"
+	"k8s.io/ingress-nginx/pkg/util/sets"
 )
 
 // Config returns external authentication configuration for an Ingress rule
diff --git a/internal/ingress/annotations/globalratelimit/main.go b/internal/ingress/annotations/globalratelimit/main.go
index c5763d0cb..ea9fc4678 100644
--- a/internal/ingress/annotations/globalratelimit/main.go
+++ b/internal/ingress/annotations/globalratelimit/main.go
@@ -27,7 +27,7 @@ import (
 	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 	"k8s.io/ingress-nginx/internal/net"
-	"k8s.io/ingress-nginx/internal/sets"
+	"k8s.io/ingress-nginx/pkg/util/sets"
 )
 
 const defaultKey = "$remote_addr"
diff --git a/internal/ingress/annotations/ipwhitelist/main.go b/internal/ingress/annotations/ipwhitelist/main.go
index 38610ade6..63c049fef 100644
--- a/internal/ingress/annotations/ipwhitelist/main.go
+++ b/internal/ingress/annotations/ipwhitelist/main.go
@@ -27,7 +27,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
-	"k8s.io/ingress-nginx/internal/sets"
+	"k8s.io/ingress-nginx/pkg/util/sets"
 )
 
 // SourceRange returns the CIDR
diff --git a/internal/ingress/annotations/ratelimit/main.go b/internal/ingress/annotations/ratelimit/main.go
index 4011c2542..84a5f10f0 100644
--- a/internal/ingress/annotations/ratelimit/main.go
+++ b/internal/ingress/annotations/ratelimit/main.go
@@ -26,7 +26,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 	"k8s.io/ingress-nginx/internal/net"
-	"k8s.io/ingress-nginx/internal/sets"
+	"k8s.io/ingress-nginx/pkg/util/sets"
 )
 
 const (
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 41ec0445a..9c56b3322 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -58,7 +58,6 @@ import (
 	"k8s.io/ingress-nginx/internal/net/ssl"
 	"k8s.io/ingress-nginx/internal/nginx"
 	"k8s.io/ingress-nginx/internal/task"
-	"k8s.io/ingress-nginx/internal/watch"
 
 	"k8s.io/ingress-nginx/pkg/util/file"
 	klog "k8s.io/klog/v2"
@@ -172,7 +171,7 @@ func NewNGINXController(config *Configuration, mc metric.Collector) *NGINXContro
 
 	n.t = ngxTpl
 
-	_, err = watch.NewFileWatcher(nginx.TemplatePath, onTemplateChange)
+	_, err = file.NewFileWatcher(nginx.TemplatePath, onTemplateChange)
 	if err != nil {
 		klog.Fatalf("Error creating file watcher for %v: %v", nginx.TemplatePath, err)
 	}
@@ -196,7 +195,7 @@ func NewNGINXController(config *Configuration, mc metric.Collector) *NGINXContro
 	}
 
 	for _, f := range filesToWatch {
-		_, err = watch.NewFileWatcher(f, func() {
+		_, err = file.NewFileWatcher(f, func() {
 			klog.InfoS("File changed detected. Reloading NGINX", "path", f)
 			n.syncQueue.EnqueueTask(task.GetDummyObject("file-change"))
 		})
diff --git a/internal/ingress/types_equals.go b/internal/ingress/types_equals.go
index 3e39940a3..1ba80d07e 100644
--- a/internal/ingress/types_equals.go
+++ b/internal/ingress/types_equals.go
@@ -17,7 +17,7 @@ limitations under the License.
 package ingress
 
 import (
-	"k8s.io/ingress-nginx/internal/sets"
+	"k8s.io/ingress-nginx/pkg/util/sets"
 )
 
 // Equal tests for equality between two Configuration types
diff --git a/internal/net/ssl/ssl.go b/internal/net/ssl/ssl.go
index 339724095..bdbdb2e06 100644
--- a/internal/net/ssl/ssl.go
+++ b/internal/net/ssl/ssl.go
@@ -43,9 +43,8 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress"
 
 	ngx_config "k8s.io/ingress-nginx/internal/ingress/controller/config"
-	"k8s.io/ingress-nginx/internal/watch"
-
 	"k8s.io/ingress-nginx/pkg/util/file"
+
 	klog "k8s.io/klog/v2"
 )
 
@@ -509,8 +508,8 @@ func NewTLSListener(certificate, key string) *TLSListener {
 
 	l.load()
 
-	_, _ = watch.NewFileWatcher(certificate, l.load)
-	_, _ = watch.NewFileWatcher(key, l.load)
+	_, _ = file.NewFileWatcher(certificate, l.load)
+	_, _ = file.NewFileWatcher(key, l.load)
 
 	return &l
 }
diff --git a/internal/watch/file_watcher.go b/pkg/util/file/file_watcher.go
similarity index 99%
rename from internal/watch/file_watcher.go
rename to pkg/util/file/file_watcher.go
index b393045b2..eeb7b5721 100644
--- a/internal/watch/file_watcher.go
+++ b/pkg/util/file/file_watcher.go
@@ -14,7 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
-package watch
+package file
 
 import (
 	"log"
diff --git a/internal/watch/file_watcher_test.go b/pkg/util/file/file_watcher_test.go
similarity index 96%
rename from internal/watch/file_watcher_test.go
rename to pkg/util/file/file_watcher_test.go
index e1f5ed30d..316cb6f1e 100644
--- a/internal/watch/file_watcher_test.go
+++ b/pkg/util/file/file_watcher_test.go
@@ -14,7 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
-package watch
+package file
 
 import (
 	"os"
@@ -22,8 +22,6 @@ import (
 	"path/filepath"
 	"testing"
 	"time"
-
-	"k8s.io/ingress-nginx/pkg/util/file"
 )
 
 func prepareTimeout() chan bool {
@@ -61,7 +59,7 @@ func TestFileWatcher(t *testing.T) {
 		t.Fatalf("expected no events before writing a file")
 	case <-timeoutChan:
 	}
-	os.WriteFile(f.Name(), []byte{}, file.ReadWriteByUser)
+	os.WriteFile(f.Name(), []byte{}, ReadWriteByUser)
 	select {
 	case <-events:
 	case <-timeoutChan:
diff --git a/internal/sets/match.go b/pkg/util/sets/match.go
similarity index 100%
rename from internal/sets/match.go
rename to pkg/util/sets/match.go
diff --git a/internal/sets/match_test.go b/pkg/util/sets/match_test.go
similarity index 100%
rename from internal/sets/match_test.go
rename to pkg/util/sets/match_test.go

From 32d06d4b3bc8ff0c7829698d87ec1bd4fe4b7c8b Mon Sep 17 00:00:00 2001
From: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>
Date: Wed, 20 Jul 2022 18:43:39 -0300
Subject: [PATCH 0281/1641] Move TCPProxy to pkg

---
 internal/ingress/controller/nginx.go                | 13 +++++++------
 .../ingress/controller => pkg/tcpproxy}/tcp.go      |  2 +-
 2 files changed, 8 insertions(+), 7 deletions(-)
 rename {internal/ingress/controller => pkg/tcpproxy}/tcp.go (99%)

diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 9c56b3322..05b3393f1 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -44,6 +44,7 @@ import (
 	v1core "k8s.io/client-go/kubernetes/typed/core/v1"
 	"k8s.io/client-go/tools/record"
 	"k8s.io/client-go/util/flowcontrol"
+	"k8s.io/ingress-nginx/pkg/tcpproxy"
 
 	adm_controller "k8s.io/ingress-nginx/internal/admission/controller"
 	"k8s.io/ingress-nginx/internal/ingress"
@@ -101,7 +102,7 @@ func NewNGINXController(config *Configuration, mc metric.Collector) *NGINXContro
 
 		runningConfig: new(ingress.Configuration),
 
-		Proxy: &TCPProxy{},
+		Proxy: &tcpproxy.TCPProxy{},
 
 		metricCollector: mc,
 
@@ -241,7 +242,7 @@ type NGINXController struct {
 
 	isShuttingDown bool
 
-	Proxy *TCPProxy
+	Proxy *tcpproxy.TCPProxy
 
 	store store.Storer
 
@@ -439,7 +440,7 @@ func (n NGINXController) DefaultEndpoint() ingress.Endpoint {
 func (n NGINXController) generateTemplate(cfg ngx_config.Configuration, ingressCfg ingress.Configuration) ([]byte, error) {
 
 	if n.cfg.EnableSSLPassthrough {
-		servers := []*TCPServer{}
+		servers := []*tcpproxy.TCPServer{}
 		for _, pb := range ingressCfg.PassthroughBackends {
 			svc := pb.Service
 			if svc == nil {
@@ -464,7 +465,7 @@ func (n NGINXController) generateTemplate(cfg ngx_config.Configuration, ingressC
 			}
 
 			// TODO: Allow PassthroughBackends to specify they support proxy-protocol
-			servers = append(servers, &TCPServer{
+			servers = append(servers, &tcpproxy.TCPServer{
 				Hostname:      pb.Hostname,
 				IP:            svc.Spec.ClusterIP,
 				Port:          port,
@@ -751,8 +752,8 @@ func (n *NGINXController) setupSSLProxy() {
 	proxyPort := n.cfg.ListenPorts.SSLProxy
 
 	klog.InfoS("Starting TLS proxy for SSL Passthrough")
-	n.Proxy = &TCPProxy{
-		Default: &TCPServer{
+	n.Proxy = &tcpproxy.TCPProxy{
+		Default: &tcpproxy.TCPServer{
 			Hostname:      "localhost",
 			IP:            "127.0.0.1",
 			Port:          proxyPort,
diff --git a/internal/ingress/controller/tcp.go b/pkg/tcpproxy/tcp.go
similarity index 99%
rename from internal/ingress/controller/tcp.go
rename to pkg/tcpproxy/tcp.go
index eedecc71a..7bbff80b4 100644
--- a/internal/ingress/controller/tcp.go
+++ b/pkg/tcpproxy/tcp.go
@@ -14,7 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
-package controller
+package tcpproxy
 
 import (
 	"fmt"

From c86d50ecef07367197dec8891ae65aacb2b7bc88 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Thu, 21 Jul 2022 21:32:48 -0300
Subject: [PATCH 0282/1641] Move APIs to be used by both controller and
 configurer (#8854)

---
 hack/update-codegen.sh                                  | 2 +-
 internal/ingress/controller/config/config.go            | 2 +-
 internal/ingress/controller/controller.go               | 2 +-
 internal/ingress/controller/controller_test.go          | 2 +-
 internal/ingress/controller/endpoints.go                | 2 +-
 internal/ingress/controller/endpoints_test.go           | 2 +-
 internal/ingress/controller/location.go                 | 2 +-
 internal/ingress/controller/nginx.go                    | 2 +-
 internal/ingress/controller/nginx_test.go               | 2 +-
 internal/ingress/controller/store/backend_ssl.go        | 2 +-
 internal/ingress/controller/store/ingress.go            | 2 +-
 internal/ingress/controller/store/ingress_annotation.go | 2 +-
 internal/ingress/controller/store/local_secret.go       | 2 +-
 internal/ingress/controller/store/store.go              | 2 +-
 internal/ingress/controller/store/store_test.go         | 2 +-
 internal/ingress/controller/template/template.go        | 2 +-
 internal/ingress/controller/template/template_test.go   | 2 +-
 internal/ingress/controller/util.go                     | 2 +-
 internal/ingress/metric/collectors/controller.go        | 2 +-
 internal/ingress/metric/collectors/controller_test.go   | 2 +-
 internal/ingress/metric/dummy.go                        | 2 +-
 internal/ingress/metric/main.go                         | 2 +-
 internal/ingress/status/status.go                       | 2 +-
 internal/ingress/status/status_test.go                  | 2 +-
 internal/net/ssl/ssl.go                                 | 2 +-
 {internal => pkg/apis}/ingress/sslcert.go               | 0
 {internal => pkg/apis}/ingress/types.go                 | 9 ++-------
 {internal => pkg/apis}/ingress/types_equals.go          | 0
 {internal => pkg/apis}/ingress/types_equals_test.go     | 6 +++---
 {internal => pkg/apis}/ingress/zz_generated.deepcopy.go | 0
 30 files changed, 30 insertions(+), 35 deletions(-)
 rename {internal => pkg/apis}/ingress/sslcert.go (100%)
 rename {internal => pkg/apis}/ingress/types.go (98%)
 rename {internal => pkg/apis}/ingress/types_equals.go (100%)
 rename {internal => pkg/apis}/ingress/types_equals_test.go (96%)
 rename {internal => pkg/apis}/ingress/zz_generated.deepcopy.go (100%)

diff --git a/hack/update-codegen.sh b/hack/update-codegen.sh
index 9023a3a1a..fadc67633 100755
--- a/hack/update-codegen.sh
+++ b/hack/update-codegen.sh
@@ -38,7 +38,7 @@ chmod +x ${CODEGEN_PKG}/generate-groups.sh
 #  nginxingress:v1alpha1 \
 #  --output-base "$(dirname ${BASH_SOURCE})/../../.."
 ${CODEGEN_PKG}/generate-groups.sh "deepcopy" \
-  k8s.io/ingress-nginx/internal k8s.io/ingress-nginx/internal \
+  k8s.io/ingress-nginx/internal k8s.io/ingress-nginx/pkg/apis \
   .:ingress \
   --output-base "$(dirname ${BASH_SOURCE})/../../.." \
   --go-header-file ${SCRIPT_ROOT}/hack/boilerplate/boilerplate.generated.go.txt
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index dfc90c385..4ee2df965 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -24,8 +24,8 @@ import (
 
 	apiv1 "k8s.io/api/core/v1"
 
-	"k8s.io/ingress-nginx/internal/ingress"
 	"k8s.io/ingress-nginx/internal/ingress/defaults"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 	"k8s.io/ingress-nginx/pkg/util/runtime"
 )
 
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 44385f175..d0f85bb01 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -32,7 +32,6 @@ import (
 	"k8s.io/apimachinery/pkg/util/sets"
 	"k8s.io/apimachinery/pkg/util/wait"
 	clientset "k8s.io/client-go/kubernetes"
-	"k8s.io/ingress-nginx/internal/ingress"
 	"k8s.io/ingress-nginx/internal/ingress/annotations"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/log"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
@@ -45,6 +44,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/metric/collectors"
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/internal/nginx"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 	"k8s.io/klog/v2"
 )
 
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index 0e8ae9d62..f875632e0 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -39,7 +39,7 @@ import (
 	"k8s.io/apimachinery/pkg/labels"
 	"k8s.io/client-go/kubernetes/fake"
 
-	"k8s.io/ingress-nginx/internal/ingress"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/canary"
diff --git a/internal/ingress/controller/endpoints.go b/internal/ingress/controller/endpoints.go
index 26d7f298e..5615fadea 100644
--- a/internal/ingress/controller/endpoints.go
+++ b/internal/ingress/controller/endpoints.go
@@ -29,8 +29,8 @@ import (
 
 	corev1 "k8s.io/api/core/v1"
 
-	"k8s.io/ingress-nginx/internal/ingress"
 	"k8s.io/ingress-nginx/internal/k8s"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 // getEndpoints returns a list of Endpoint structs for a given service/target port combination.
diff --git a/internal/ingress/controller/endpoints_test.go b/internal/ingress/controller/endpoints_test.go
index 83c8e1837..f38ffabe7 100644
--- a/internal/ingress/controller/endpoints_test.go
+++ b/internal/ingress/controller/endpoints_test.go
@@ -22,7 +22,7 @@ import (
 
 	corev1 "k8s.io/api/core/v1"
 	"k8s.io/apimachinery/pkg/util/intstr"
-	"k8s.io/ingress-nginx/internal/ingress"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 func TestGetEndpoints(t *testing.T) {
diff --git a/internal/ingress/controller/location.go b/internal/ingress/controller/location.go
index d40e88960..9776f8c87 100644
--- a/internal/ingress/controller/location.go
+++ b/internal/ingress/controller/location.go
@@ -21,7 +21,7 @@ import (
 	"strings"
 
 	networking "k8s.io/api/networking/v1"
-	"k8s.io/ingress-nginx/internal/ingress"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 var (
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 05b3393f1..d0f4abe27 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -47,7 +47,6 @@ import (
 	"k8s.io/ingress-nginx/pkg/tcpproxy"
 
 	adm_controller "k8s.io/ingress-nginx/internal/admission/controller"
-	"k8s.io/ingress-nginx/internal/ingress"
 	ngx_config "k8s.io/ingress-nginx/internal/ingress/controller/config"
 	"k8s.io/ingress-nginx/internal/ingress/controller/process"
 	"k8s.io/ingress-nginx/internal/ingress/controller/store"
@@ -59,6 +58,7 @@ import (
 	"k8s.io/ingress-nginx/internal/net/ssl"
 	"k8s.io/ingress-nginx/internal/nginx"
 	"k8s.io/ingress-nginx/internal/task"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 
 	"k8s.io/ingress-nginx/pkg/util/file"
 	klog "k8s.io/klog/v2"
diff --git a/internal/ingress/controller/nginx_test.go b/internal/ingress/controller/nginx_test.go
index d168efffd..c2c71b797 100644
--- a/internal/ingress/controller/nginx_test.go
+++ b/internal/ingress/controller/nginx_test.go
@@ -32,8 +32,8 @@ import (
 	apiv1 "k8s.io/api/core/v1"
 	"k8s.io/apimachinery/pkg/util/wait"
 
-	"k8s.io/ingress-nginx/internal/ingress"
 	"k8s.io/ingress-nginx/internal/nginx"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 func TestIsDynamicConfigurationEnough(t *testing.T) {
diff --git a/internal/ingress/controller/store/backend_ssl.go b/internal/ingress/controller/store/backend_ssl.go
index 96164b95e..6f0fcf189 100644
--- a/internal/ingress/controller/store/backend_ssl.go
+++ b/internal/ingress/controller/store/backend_ssl.go
@@ -24,7 +24,7 @@ import (
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
-	"k8s.io/ingress-nginx/internal/ingress"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 
 	klog "k8s.io/klog/v2"
 
diff --git a/internal/ingress/controller/store/ingress.go b/internal/ingress/controller/store/ingress.go
index 1d8ccb342..d05b2624b 100644
--- a/internal/ingress/controller/store/ingress.go
+++ b/internal/ingress/controller/store/ingress.go
@@ -19,7 +19,7 @@ package store
 import (
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/client-go/tools/cache"
-	"k8s.io/ingress-nginx/internal/ingress"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 // IngressLister makes a Store that lists Ingress.
diff --git a/internal/ingress/controller/store/ingress_annotation.go b/internal/ingress/controller/store/ingress_annotation.go
index c9c596d1e..b70ceb1c6 100644
--- a/internal/ingress/controller/store/ingress_annotation.go
+++ b/internal/ingress/controller/store/ingress_annotation.go
@@ -18,7 +18,7 @@ package store
 
 import (
 	"k8s.io/client-go/tools/cache"
-	"k8s.io/ingress-nginx/internal/ingress"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 // IngressWithAnnotationsLister makes a Store that lists Ingress rules with annotations already parsed
diff --git a/internal/ingress/controller/store/local_secret.go b/internal/ingress/controller/store/local_secret.go
index ee3ced398..8b26e7a53 100644
--- a/internal/ingress/controller/store/local_secret.go
+++ b/internal/ingress/controller/store/local_secret.go
@@ -21,7 +21,7 @@ import (
 
 	"k8s.io/client-go/tools/cache"
 
-	"k8s.io/ingress-nginx/internal/ingress"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 // SSLCertTracker holds a store of referenced Secrets in Ingress rules
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 72300a4de..239fbaaf5 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -48,7 +48,6 @@ import (
 	"k8s.io/ingress-nginx/pkg/util/file"
 	klog "k8s.io/klog/v2"
 
-	"k8s.io/ingress-nginx/internal/ingress"
 	"k8s.io/ingress-nginx/internal/ingress/annotations"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	ngx_config "k8s.io/ingress-nginx/internal/ingress/controller/config"
@@ -58,6 +57,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 	"k8s.io/ingress-nginx/internal/k8s"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 // IngressFilterFunc decides if an Ingress should be omitted or not
diff --git a/internal/ingress/controller/store/store_test.go b/internal/ingress/controller/store/store_test.go
index 4868f792f..9b8947f9c 100644
--- a/internal/ingress/controller/store/store_test.go
+++ b/internal/ingress/controller/store/store_test.go
@@ -36,9 +36,9 @@ import (
 	"k8s.io/client-go/tools/cache"
 	"sigs.k8s.io/controller-runtime/pkg/envtest"
 
-	"k8s.io/ingress-nginx/internal/ingress"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/controller/ingressclass"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index a331c196a..8d4cb6e75 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -40,12 +40,12 @@ import (
 	"k8s.io/apimachinery/pkg/util/sets"
 	"k8s.io/klog/v2"
 
-	"k8s.io/ingress-nginx/internal/ingress"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/influxdb"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/controller/config"
 	ing_net "k8s.io/ingress-nginx/internal/net"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 const (
diff --git a/internal/ingress/controller/template/template_test.go b/internal/ingress/controller/template/template_test.go
index a741919ed..cb1ebd1b7 100644
--- a/internal/ingress/controller/template/template_test.go
+++ b/internal/ingress/controller/template/template_test.go
@@ -34,7 +34,6 @@ import (
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
-	"k8s.io/ingress-nginx/internal/ingress"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/authreq"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/influxdb"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/modsecurity"
@@ -43,6 +42,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/rewrite"
 	"k8s.io/ingress-nginx/internal/ingress/controller/config"
 	"k8s.io/ingress-nginx/internal/nginx"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 func init() {
diff --git a/internal/ingress/controller/util.go b/internal/ingress/controller/util.go
index a8232ed0e..6562dd17c 100644
--- a/internal/ingress/controller/util.go
+++ b/internal/ingress/controller/util.go
@@ -28,7 +28,7 @@ import (
 	api "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/apimachinery/pkg/util/intstr"
-	"k8s.io/ingress-nginx/internal/ingress"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 	klog "k8s.io/klog/v2"
 )
 
diff --git a/internal/ingress/metric/collectors/controller.go b/internal/ingress/metric/collectors/controller.go
index e4e2655c8..5822f0d57 100644
--- a/internal/ingress/metric/collectors/controller.go
+++ b/internal/ingress/metric/collectors/controller.go
@@ -22,7 +22,7 @@ import (
 
 	"github.com/prometheus/client_golang/prometheus"
 	"k8s.io/apimachinery/pkg/util/sets"
-	"k8s.io/ingress-nginx/internal/ingress"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 	"k8s.io/ingress-nginx/version"
 	"k8s.io/klog/v2"
 )
diff --git a/internal/ingress/metric/collectors/controller_test.go b/internal/ingress/metric/collectors/controller_test.go
index bc9f21c60..ef80bc96a 100644
--- a/internal/ingress/metric/collectors/controller_test.go
+++ b/internal/ingress/metric/collectors/controller_test.go
@@ -24,7 +24,7 @@ import (
 	"time"
 
 	"github.com/prometheus/client_golang/prometheus"
-	"k8s.io/ingress-nginx/internal/ingress"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 func TestControllerCounters(t *testing.T) {
diff --git a/internal/ingress/metric/dummy.go b/internal/ingress/metric/dummy.go
index 8360dc87d..4a6366b84 100644
--- a/internal/ingress/metric/dummy.go
+++ b/internal/ingress/metric/dummy.go
@@ -18,7 +18,7 @@ package metric
 
 import (
 	"k8s.io/apimachinery/pkg/util/sets"
-	"k8s.io/ingress-nginx/internal/ingress"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 // NewDummyCollector returns a dummy metric collector
diff --git a/internal/ingress/metric/main.go b/internal/ingress/metric/main.go
index a0aea1e71..b3323c7fe 100644
--- a/internal/ingress/metric/main.go
+++ b/internal/ingress/metric/main.go
@@ -25,8 +25,8 @@ import (
 	"k8s.io/klog/v2"
 
 	"k8s.io/apimachinery/pkg/util/sets"
-	"k8s.io/ingress-nginx/internal/ingress"
 	"k8s.io/ingress-nginx/internal/ingress/metric/collectors"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 // Collector defines the interface for a metric collector
diff --git a/internal/ingress/status/status.go b/internal/ingress/status/status.go
index bf79701fc..2e53682a0 100644
--- a/internal/ingress/status/status.go
+++ b/internal/ingress/status/status.go
@@ -34,9 +34,9 @@ import (
 	"k8s.io/apimachinery/pkg/util/wait"
 	clientset "k8s.io/client-go/kubernetes"
 
-	"k8s.io/ingress-nginx/internal/ingress"
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/internal/task"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 // UpdateInterval defines the time interval, in seconds, in
diff --git a/internal/ingress/status/status_test.go b/internal/ingress/status/status_test.go
index fefca5ff2..d4ef09e7c 100644
--- a/internal/ingress/status/status_test.go
+++ b/internal/ingress/status/status_test.go
@@ -28,10 +28,10 @@ import (
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	testclient "k8s.io/client-go/kubernetes/fake"
 
-	"k8s.io/ingress-nginx/internal/ingress"
 	"k8s.io/ingress-nginx/internal/ingress/controller/ingressclass"
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/internal/task"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 func buildLoadBalancerIngressByIP() []apiv1.LoadBalancerIngress {
diff --git a/internal/net/ssl/ssl.go b/internal/net/ssl/ssl.go
index bdbdb2e06..05ec10bc5 100644
--- a/internal/net/ssl/ssl.go
+++ b/internal/net/ssl/ssl.go
@@ -40,7 +40,7 @@ import (
 	"github.com/zakjan/cert-chain-resolver/certUtil"
 	"k8s.io/apimachinery/pkg/util/sets"
 
-	"k8s.io/ingress-nginx/internal/ingress"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
 
 	ngx_config "k8s.io/ingress-nginx/internal/ingress/controller/config"
 	"k8s.io/ingress-nginx/pkg/util/file"
diff --git a/internal/ingress/sslcert.go b/pkg/apis/ingress/sslcert.go
similarity index 100%
rename from internal/ingress/sslcert.go
rename to pkg/apis/ingress/sslcert.go
diff --git a/internal/ingress/types.go b/pkg/apis/ingress/types.go
similarity index 98%
rename from internal/ingress/types.go
rename to pkg/apis/ingress/types.go
index db4f37f99..8460ee684 100644
--- a/internal/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -42,13 +42,8 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/rewrite"
 )
 
-var (
-	// DefaultSSLDirectory defines the location where the SSL certificates will be generated
-	// This directory contains all the SSL certificates that are specified in Ingress rules.
-	// The name of each file is <namespace>-<secret name>.pem. The content is the concatenated
-	// certificate and key.
-	DefaultSSLDirectory = "/ingress-controller/ssl"
-)
+// TODO: The API shouldn't be importing structs from annotation code. Instead we probably want a conversion from internal
+// to API object, or see how much effort is to move the structs of annotations to become an "API'ish" as well
 
 // Configuration holds the definition of all the parts required to describe all
 // ingresses reachable by the ingress controller (using a filter by namespace)
diff --git a/internal/ingress/types_equals.go b/pkg/apis/ingress/types_equals.go
similarity index 100%
rename from internal/ingress/types_equals.go
rename to pkg/apis/ingress/types_equals.go
diff --git a/internal/ingress/types_equals_test.go b/pkg/apis/ingress/types_equals_test.go
similarity index 96%
rename from internal/ingress/types_equals_test.go
rename to pkg/apis/ingress/types_equals_test.go
index 8119d26c7..78d29d46c 100644
--- a/internal/ingress/types_equals_test.go
+++ b/pkg/apis/ingress/types_equals_test.go
@@ -25,19 +25,19 @@ import (
 )
 
 func TestEqualConfiguration(t *testing.T) {
-	ap, _ := filepath.Abs("../../test/manifests/configuration-a.json")
+	ap, _ := filepath.Abs("../../../test/manifests/configuration-a.json")
 	a, err := readJSON(ap)
 	if err != nil {
 		t.Errorf("unexpected error reading JSON file: %v", err)
 	}
 
-	bp, _ := filepath.Abs("../../test/manifests/configuration-b.json")
+	bp, _ := filepath.Abs("../../../test/manifests/configuration-b.json")
 	b, err := readJSON(bp)
 	if err != nil {
 		t.Errorf("unexpected error reading JSON file: %v", err)
 	}
 
-	cp, _ := filepath.Abs("../../test/manifests/configuration-c.json")
+	cp, _ := filepath.Abs("../../../test/manifests/configuration-c.json")
 	c, err := readJSON(cp)
 	if err != nil {
 		t.Errorf("unexpected error reading JSON file: %v", err)
diff --git a/internal/ingress/zz_generated.deepcopy.go b/pkg/apis/ingress/zz_generated.deepcopy.go
similarity index 100%
rename from internal/ingress/zz_generated.deepcopy.go
rename to pkg/apis/ingress/zz_generated.deepcopy.go

From a581a7bebc1f4ff028f1e57dca0ce95abef78c62 Mon Sep 17 00:00:00 2001
From: "qilong.qiu" <qilong.qiu@daocloud.io>
Date: Fri, 22 Jul 2022 19:21:38 +0800
Subject: [PATCH 0283/1641] Add docs on Election ID to Multiple Ingress
 Controller guide (#8855)

---
 docs/index.md                       | 10 ++++++++++
 docs/user-guide/multiple-ingress.md |  4 +++-
 2 files changed, 13 insertions(+), 1 deletion(-)

diff --git a/docs/index.md b/docs/index.md
index 91661cba3..5687bf5d3 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -228,3 +228,13 @@ If you start Ingress-Nginx B with the command line argument `--watch-ingress-wit
   --set controller.ingressClassByName=true
   ```
 - If you need to install yet another instance, then repeat the procedure to create a new namespace, change the values such as names & namespaces (for example from "-2" to "-3"), or anything else that meets your needs.
+- If you need to install all instances in the same namespace, then you need to specify a different **election id**, like this:
+  ```
+  helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
+  --namespace kube-system \
+  --set controller.electionID=nginx-two-leader \
+  --set controller.ingressClassResource.name=nginx-two \
+  --set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
+  --set controller.ingressClassResource.enabled=true \
+  --set controller.ingressClassByName=true
+  ```
\ No newline at end of file
diff --git a/docs/user-guide/multiple-ingress.md b/docs/user-guide/multiple-ingress.md
index 4825b8458..35e0e45dc 100644
--- a/docs/user-guide/multiple-ingress.md
+++ b/docs/user-guide/multiple-ingress.md
@@ -8,7 +8,7 @@ To fix this problem, use [IngressClasses](https://kubernetes.io/docs/concepts/se
 
 If all ingress controllers respect IngressClasses (e.g. multiple instances of ingress-nginx v1.0), you can deploy two Ingress controllers by granting them control over two different IngressClasses, then selecting one of the two IngressClasses with `ingressClassName`.
 
-First, ensure the `--controller-class=` and `--ingress-class` are set to something different on each ingress controller:
+First, ensure the `--controller-class=` and `--ingress-class` are set to something different on each ingress controller, If your additional ingress controller is to be installed in a namespace, where there is/are one/more-than-one ingress-nginx-controller(s) already installed, then you need to specify a different unique `--election-id` for the new instance of the controller.
 
 ```yaml
 # ingress-nginx Deployment/Statefulset
@@ -19,6 +19,7 @@ spec:
          - name: ingress-nginx-internal-controller
            args:
              - /nginx-ingress-controller
+             - '--election-id=ingress-controller-leader'
              - '--controller-class=k8s.io/internal-ingress-nginx'
              - '--ingress-class=k8s.io/internal-nginx'
             ...
@@ -53,6 +54,7 @@ or if installing with Helm:
 
 ```yaml
 controller:
+  electionID: ingress-controller-leader
   ingressClassResource:
     name: internal-nginx  # default: nginx
     enabled: true

From f0ff7e841de204a5d95a931a979cecfee273c914 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sat, 23 Jul 2022 19:54:57 +0530
Subject: [PATCH 0284/1641] bump to alpine-3.16.1 (#8858)

---
 docs/examples/customization/sysctl/patch.json | 2 +-
 images/cfssl/rootfs/Dockerfile                | 2 +-
 images/httpbin/rootfs/Dockerfile              | 2 +-
 images/nginx/rootfs/Dockerfile                | 4 ++--
 images/opentelemetry/rootfs/Dockerfile        | 4 ++--
 rootfs/Dockerfile-chroot                      | 2 +-
 test/e2e-image/Dockerfile                     | 2 +-
 7 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/docs/examples/customization/sysctl/patch.json b/docs/examples/customization/sysctl/patch.json
index 683b4ec6b..319ccf4f8 100644
--- a/docs/examples/customization/sysctl/patch.json
+++ b/docs/examples/customization/sysctl/patch.json
@@ -4,7 +4,7 @@
 			"spec": {
 				"initContainers": [{
 					"name": "sysctl",
-					"image": "alpine:3.16.0",
+					"image": "alpine:3.16.1",
 					"securityContext": {
 						"privileged": true
 					},
diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index bfe19cfd9..59a89d92c 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.16.0
+FROM alpine:3.16.1
 
 RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
 RUN apk add --no-cache \
diff --git a/images/httpbin/rootfs/Dockerfile b/images/httpbin/rootfs/Dockerfile
index 5ee58d69c..016ab913f 100644
--- a/images/httpbin/rootfs/Dockerfile
+++ b/images/httpbin/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.16.0
+FROM alpine:3.16.1
 
 ENV LC_ALL=C.UTF-8
 ENV LANG=C.UTF-8
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index fd3dfe5ba..a93a58f8f 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.16.0 as builder
+FROM alpine:3.16.1 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.16.0
+FROM alpine:3.16.1
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index 18fea3d51..ccab2223d 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.16.0 as base
+FROM alpine:3.16.1 as base
 
 RUN mkdir -p /opt/third_party/install
 COPY . /opt/third_party/
@@ -39,7 +39,7 @@ COPY --from=grpc /opt/third_party/install/ /usr
 COPY --from=otel-cpp /opt/third_party/install/ /usr
 RUN bash /opt/third_party/build.sh -n
 
-FROM alpine:3.16.0
+FROM alpine:3.16.1
 COPY --from=base /opt/third_party/init_module.sh /usr/local/bin/init_module.sh
 COPY --from=nginx /etc/nginx/modules /etc/nginx/modules
 COPY --from=nginx /opt/third_party/install/lib /etc/nginx/modules
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index 69d2a0f71..de2fd6da0 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.16.0
+FROM alpine:3.16.1
 
 ARG TARGETARCH
 ARG VERSION
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index e29c7524b..d88338d65 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,7 +1,7 @@
 ARG E2E_BASE_IMAGE
 FROM ${E2E_BASE_IMAGE} AS BASE
 
-FROM alpine:3.16.0
+FROM alpine:3.16.1
 
 RUN apk add -U --no-cache \
   ca-certificates \

From 18ee046b432502aedfed9321f0a9b50bfc009a67 Mon Sep 17 00:00:00 2001
From: David Goffredo <dmgoffredo@gmail.com>
Date: Sat, 23 Jul 2022 14:02:57 -0400
Subject: [PATCH 0285/1641] update dd-opentracing-cpp version in nginx build
 script (#8848)

* update dd-opentracing-cpp version in nginx build script

* idiomatic placement of "v" prefix in Datadog plugin version tag
---
 images/nginx/rootfs/build.sh | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index c23ed8681..f3efb3663 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -53,8 +53,8 @@ export JAEGER_VERSION=0.7.0
 # Check for recent changes: https://github.com/msgpack/msgpack-c/compare/cpp-3.3.0...master
 export MSGPACK_VERSION=3.3.0
 
-# Check for recent changes: https://github.com/DataDog/dd-opentracing-cpp/compare/v1.3.0...master
-export DATADOG_CPP_VERSION=af53c523787cca108ae9f458ea5c962e48187a36
+# Check for recent changes: https://github.com/DataDog/dd-opentracing-cpp/compare/v1.3.2...master
+export DATADOG_CPP_VERSION=1.3.2
 
 # Check for recent changes: https://github.com/SpiderLabs/ModSecurity-nginx/compare/v1.0.2...master
 export MODSECURITY_VERSION=1.0.2
@@ -264,8 +264,8 @@ get_src 1ee6dad809a5bb22efb45e6dac767f7ce544ad652d353a93d7f26b605f69fe3f \
         "https://github.com/openresty/luajit2/archive/v$LUAJIT_VERSION.tar.gz"
 fi
 
-get_src f29393f2cd9288105a0029a6a324fe1f7558a9e7e852d59a6355f7581bb90e30 \
-        "https://github.com/DataDog/dd-opentracing-cpp/archive/$DATADOG_CPP_VERSION.tar.gz"
+get_src 586f92166018cc27080d34e17c59d68219b85af745edf3cc9fe41403fc9b4ac6 \
+        "https://github.com/DataDog/dd-opentracing-cpp/archive/v$DATADOG_CPP_VERSION.tar.gz"
 
 get_src 1af5a5632dc8b00ae103d51b7bf225de3a7f0df82f5c6a401996c080106e600e \
         "https://github.com/influxdata/nginx-influxdb-module/archive/$NGINX_INFLUXDB_VERSION.tar.gz"

From c5766dc011965f22fac2f4437e86d0fd9960a50c Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sun, 24 Jul 2022 07:24:57 +0530
Subject: [PATCH 0286/1641] changed baseimage sha & bumped ginkgo to 2.1.4 in
 test (#8860)

---
 NGINX_BASE                 | 2 +-
 build/run-in-docker.sh     | 2 +-
 images/nginx/rc.yaml       | 2 +-
 test/e2e/run-chart-test.sh | 2 +-
 test/e2e/run.sh            | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index cab849353..c3407a5a5 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:e1a16f6e74ef43cdfd59de75b3394d6b20ef7645@sha256:283c8c6132ebaeb155c927ea6e8ae0cd834a4a05d4807eceafa1b6e44d875911
+registry.k8s.io/ingress-nginx/nginx:18ee046b432502aedfed9321f0a9b50bfc009a67@sha256:b555a13dcc9165157a61b2279ed7f309e406c3267c93472cb6967215eacf4ab3
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 3cb1f8ef5..7fdc20699 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -86,7 +86,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "FLAGS=$FLAGS"
   go env
   set -x
-  go install -mod=mod github.com/onsi/ginkgo/ginkgo@v1.16.4
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.1.4
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/images/nginx/rc.yaml b/images/nginx/rc.yaml
index 2936cf14b..f5c281842 100644
--- a/images/nginx/rc.yaml
+++ b/images/nginx/rc.yaml
@@ -38,7 +38,7 @@ spec:
     spec:
       containers:
         - name: nginx
-          image: registry.k8s.io/ingress-nginx/nginx:0ff500c23f34e939305de709cb6d47da34b66611@sha256:15f91034a03550dfab6ec50a7be4abbb683d087e234ad7fef5adedef54e46a5a
+          image: registry.k8s.io/ingress-nginx/nginx:18ee046b432502aedfed9321f0a9b50bfc009a67@sha256:b555a13dcc9165157a61b2279ed7f309e406c3267c93472cb6967215eacf4ab3
           ports:
             - containerPort: 80
             - containerPort: 443
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 49ec146a7..2af8aa1d3 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go get github.com/onsi/ginkgo/ginkgo@v1.16.4
+    go get github.com/onsi/ginkgo/v2/ginkgo@v2.1.4
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run.sh b/test/e2e/run.sh
index 6edc18848..6b1cabb4c 100755
--- a/test/e2e/run.sh
+++ b/test/e2e/run.sh
@@ -79,7 +79,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go get github.com/onsi/ginkgo/ginkgo@v1.16.4
+    go get github.com/onsi/ginkgo/v2/ginkgo@v2.1.4
   fi
 
   echo "[dev-env] building image"

From 1c03a886619243af2f7abfc0dd14f1a4adb5f2fd Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sun, 24 Jul 2022 21:30:57 +0530
Subject: [PATCH 0287/1641] update baseimage after bump of opentracing-cpp
 (#8861)

---
 NGINX_BASE           | 2 +-
 images/nginx/rc.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index c3407a5a5..f0d8b2fd8 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:18ee046b432502aedfed9321f0a9b50bfc009a67@sha256:b555a13dcc9165157a61b2279ed7f309e406c3267c93472cb6967215eacf4ab3
+registry.k8s.io/ingress-nginx/nginx:c5766dc011965f22fac2f4437e86d0fd9960a50c@sha256:94ff9b435a5f3f4570bbdaed4a3a523f63a54ce2ad6b132b5640bae2af5d9d90
diff --git a/images/nginx/rc.yaml b/images/nginx/rc.yaml
index f5c281842..bcf2b0274 100644
--- a/images/nginx/rc.yaml
+++ b/images/nginx/rc.yaml
@@ -38,7 +38,7 @@ spec:
     spec:
       containers:
         - name: nginx
-          image: registry.k8s.io/ingress-nginx/nginx:18ee046b432502aedfed9321f0a9b50bfc009a67@sha256:b555a13dcc9165157a61b2279ed7f309e406c3267c93472cb6967215eacf4ab3
+          image: registry.k8s.io/ingress-nginx/nginx:c5766dc011965f22fac2f4437e86d0fd9960a50c@sha256:94ff9b435a5f3f4570bbdaed4a3a523f63a54ce2ad6b132b5640bae2af5d9d90
           ports:
             - containerPort: 80
             - containerPort: 443

From 423008b75282616413b743321d60d3a9557a570e Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Sun, 24 Jul 2022 23:56:24 +0800
Subject: [PATCH 0288/1641] fix: test-runner prow build

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 images/test-runner/Makefile | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 0f2b72bad..c102f914e 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -23,7 +23,7 @@ REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-runner
 
-NGINX_BASE_IMAGE ?= $(shell cat $(DIR)/../../NGINX_BASE)
+NGINX_BASE_IMAGE ?= $(shell cat $(DIR)/../../NGINX_BASE || echo "/home/prow/go/src/github.com/kubernetes/ingress-nginx/NGINX_BASE")
 
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled
@@ -34,6 +34,8 @@ OUTPUT=
 PROGRESS=plain
 
 build: ensure-buildx
+	echo $(NGINX_BASE_IMAGE)
+	pwd
 	docker buildx build \
 		--platform=${PLATFORMS} $(OUTPUT) \
 		--progress=$(PROGRESS) \

From f9dcc13a0e0aa81fbf85da26cfb3104287257ac4 Mon Sep 17 00:00:00 2001
From: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Date: Sun, 24 Jul 2022 19:10:56 +0300
Subject: [PATCH 0289/1641] fix: make use of sed portable for BSD and GNU
 (#8859)

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
---
 hack/generate-deploy-scripts.sh | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/hack/generate-deploy-scripts.sh b/hack/generate-deploy-scripts.sh
index c85f21705..7b4f304ad 100755
--- a/hack/generate-deploy-scripts.sh
+++ b/hack/generate-deploy-scripts.sh
@@ -55,11 +55,11 @@ do
       --namespace ingress-nginx \
       --kube-version ${K8S_VERSION} \
       > $MANIFEST
-    sed -i '' '/app.kubernetes.io\/managed-by: Helm/d' $MANIFEST
-    sed -i '' '/helm.sh/d' $MANIFEST
+    sed -i.bak '/app.kubernetes.io\/managed-by: Helm/d' $MANIFEST
+    sed -i.bak '/helm.sh/d' $MANIFEST
 
     kustomize --load-restrictor=LoadRestrictionsNone build . > ${OUTPUT_DIR}/deploy.yaml
-    rm $MANIFEST
+    rm $MANIFEST $MANIFEST.bak
     cd ~-
     # automatically generate the (unsupported) kustomization.yaml for each target
     sed "s_{TARGET}_${TARGET}_" $TEMPLATE_DIR/static-kustomization-template.yaml > ${OUTPUT_DIR}/kustomization.yaml
@@ -68,7 +68,7 @@ do
     if [[ ${K8S_VERSION} = ${K8S_DEFAULT_VERSION} ]]
     then
       cp ${OUTPUT_DIR}/*.yaml ${OUTPUT_DIR}/../
-      sed -i "s/^/#GENERATED FOR K8S ${K8S_VERSION}\n/" ${OUTPUT_DIR}/../deploy.yaml
+      sed -i.bak "s/^/#GENERATED FOR K8S ${K8S_VERSION}\n/" ${OUTPUT_DIR}/../deploy.yaml && rm ${OUTPUT_DIR}/../deploy.yaml.bak
     fi
   done
 done

From 92f81e7449fa5bce5777b2aba924373984fb8530 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Mon, 25 Jul 2022 00:22:57 +0800
Subject: [PATCH 0290/1641] fix: test-runner prow build (#8864)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 images/test-runner/Makefile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index c102f914e..aa63287b4 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -23,7 +23,7 @@ REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-runner
 
-NGINX_BASE_IMAGE ?= $(shell cat $(DIR)/../../NGINX_BASE || echo "/home/prow/go/src/github.com/kubernetes/ingress-nginx/NGINX_BASE")
+NGINX_BASE_IMAGE ?= $(shell cat $(DIR)/../../NGINX_BASE || cat "/home/prow/go/src/github.com/kubernetes/ingress-nginx/NGINX_BASE")
 
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled

From d2fbd38cd16abf92c8d06149a2b8eebe1e8b4554 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Mon, 25 Jul 2022 09:40:58 +0800
Subject: [PATCH 0291/1641] Revert "fix: test-runner prow build" (#8865)

This reverts commit 423008b75282616413b743321d60d3a9557a570e.
---
 images/test-runner/Makefile | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index aa63287b4..0f2b72bad 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -23,7 +23,7 @@ REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-runner
 
-NGINX_BASE_IMAGE ?= $(shell cat $(DIR)/../../NGINX_BASE || cat "/home/prow/go/src/github.com/kubernetes/ingress-nginx/NGINX_BASE")
+NGINX_BASE_IMAGE ?= $(shell cat $(DIR)/../../NGINX_BASE)
 
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled
@@ -34,8 +34,6 @@ OUTPUT=
 PROGRESS=plain
 
 build: ensure-buildx
-	echo $(NGINX_BASE_IMAGE)
-	pwd
 	docker buildx build \
 		--platform=${PLATFORMS} $(OUTPUT) \
 		--progress=$(PROGRESS) \

From 000d1b27755cc39fb48a95162fb0f68f11119ac2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Adri=C3=A1n=20T=C3=B3th?= <adricko28@gmail.com>
Date: Tue, 26 Jul 2022 21:57:10 +0200
Subject: [PATCH 0292/1641] version (commit sha) bump for dependency
 github.com/moul/pb due to dependency licence (#8841)

---
 go.mod | 2 +-
 go.sum | 2 ++
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/go.mod b/go.mod
index c72359736..748678dbf 100644
--- a/go.mod
+++ b/go.mod
@@ -13,7 +13,7 @@ require (
 	github.com/mitchellh/go-ps v1.0.0
 	github.com/mitchellh/hashstructure v1.1.0
 	github.com/mitchellh/mapstructure v1.5.0
-	github.com/moul/pb v0.0.0-20180404114147-54bdd96e6a52
+	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo v1.16.5
 	github.com/opencontainers/runc v1.1.3
diff --git a/go.sum b/go.sum
index 34bd73d10..951da0363 100644
--- a/go.sum
+++ b/go.sum
@@ -443,6 +443,8 @@ github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00 h1:n6/
 github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00/go.mod h1:Pm3mSP3c5uWn86xMLZ5Sa7JB9GsEZySvHYXCTK4E9q4=
 github.com/moul/pb v0.0.0-20180404114147-54bdd96e6a52 h1:8zDEa5yAIWYBHSDpPbSgGIBL/SvPSE9/FlB3aQ54d/A=
 github.com/moul/pb v0.0.0-20180404114147-54bdd96e6a52/go.mod h1:jE2HT8eoucYyUPBFJMreiVlC3KPHkDMtN8wn+ef7Y64=
+github.com/moul/pb v0.0.0-20220425114252-bca18df4138c h1:1STmblv9zmHLDpru4dbnf1PNL6wrrZNf7yBH+SfQU+s=
+github.com/moul/pb v0.0.0-20220425114252-bca18df4138c/go.mod h1:jE2HT8eoucYyUPBFJMreiVlC3KPHkDMtN8wn+ef7Y64=
 github.com/mrunalp/fileutils v0.5.0/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
 github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=

From fe116d62cb4018d5d85847c45050b7d46286d4bc Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Wed, 27 Jul 2022 04:01:10 +0800
Subject: [PATCH 0293/1641] fix: change cloudbuild configuration (#8869)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 images/test-runner/cloudbuild.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/cloudbuild.yaml b/images/test-runner/cloudbuild.yaml
index 253b99799..b1f32d6a2 100644
--- a/images/test-runner/cloudbuild.yaml
+++ b/images/test-runner/cloudbuild.yaml
@@ -16,7 +16,7 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && make push
+      && cd images/test-runner && make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"

From 91e61745567234ab1fa0f7f1c2b114377fff0585 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 26 Jul 2022 16:13:10 -0400
Subject: [PATCH 0294/1641] Update gce docs (#8866)

* update GCE doc with proxy protocol and some fixes

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update gke docs

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 Makefile             |   7 ++-
 docs/deploy/index.md | 134 ++++++++++++++++++++++++++++++-------------
 2 files changed, 100 insertions(+), 41 deletions(-)

diff --git a/Makefile b/Makefile
index 5ba8e8ed5..fcbf79816 100644
--- a/Makefile
+++ b/Makefile
@@ -56,7 +56,7 @@ endif
 MAC_OS = $(shell uname -s)
 
 ifeq ($(MAC_OS), Darwin)
-	MAC_DOCKER_FLAGS=
+	MAC_DOCKER_FLAGS="--load"
 else
 	MAC_DOCKER_FLAGS=
 endif
@@ -220,7 +220,10 @@ dev-env-stop: ## Deletes local Kubernetes cluster created by kind.
 
 .PHONY: live-docs
 live-docs: ## Build and launch a local copy of the documentation website in http://localhost:8000
-	@docker build ${PLATFORM_FLAG} ${PLATFORM} -t ingress-nginx-docs .github/actions/mkdocs
+	@docker build ${PLATFORM_FLAG} ${PLATFORM} \
+                  		--no-cache \
+                  		$(MAC_DOCKER_FLAGS) \
+                  		 -t ingress-nginx-docs .github/actions/mkdocs
 	@docker run ${PLATFORM_FLAG} ${PLATFORM} --rm -it \
 		-p 8000:8000 \
 		-v ${PWD}:/docs \
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 00ee6a9f5..502e46dda 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -6,11 +6,15 @@ There are multiple ways to install the NGINX ingress controller:
 - with `kubectl apply`, using YAML manifests;
 - with specific addons (e.g. for [minikube](#minikube) or [MicroK8s](#microk8s)).
 
-On most Kubernetes clusters, the ingress controller will work without requiring any extra configuration. If you want to get started as fast as possible, you can check the [quick start](#quick-start) instructions. However, in many environments, you can improve the performance or get better logs by enabling extra features. we recommend that you check the [environment-specific instructions](#environment-specific-instructions) for details about optimizing the ingress controller for your particular environment or cloud provider.
+On most Kubernetes clusters, the ingress controller will work without requiring any extra configuration. If you want to 
+get started as fast as possible, you can check the [quick start](#quick-start) instructions. However, in many 
+environments, you can improve the performance or get better logs by enabling extra features. we recommend that you 
+check the [environment-specific instructions](#environment-specific-instructions) for details about optimizing the 
+ingress controller for your particular environment or cloud provider.
 
 ## Contents
 
-<!-- Quick tip: run `grep '^##' index.md` to check that the table of contents is up to date. -->
+<!-- Quick tip: run `grep '^##' index.md` to check that the table of contents is up-to-date. -->
 
 - [Quick start](#quick-start)
 
@@ -28,7 +32,12 @@ On most Kubernetes clusters, the ingress controller will work without requiring
   - ... [Bare-metal](#bare-metal-clusters)
 - [Miscellaneous](#miscellaneous)
 
-<!-- TODO: We have subdirectories for kubernetes versions now because of a PR https://github.com/kubernetes/ingress-nginx/pull/8162 . You can see this here https://github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud . We need to add documentation here that is clear and unambiguous in guiding users to pick the deployment manifest under a subdirectory, based on the K8S version being used. But until the explicit clear docs land here, users are recommended to feel free to use those subdirectories and get the manifest(s) related to their K8S version. -->
+<!-- TODO: We have subdirectories for kubernetes versions now because of a PR 
+https://github.com/kubernetes/ingress-nginx/pull/8162 . You can see this here 
+https://github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud . 
+We need to add documentation here that is clear and unambiguous in guiding users to pick the deployment manifest 
+under a subdirectory, based on the K8S version being used. But until the explicit clear docs land here, users are 
+free to use those subdirectories and get the manifest(s) related to their K8S version. -->
 
 ## Quick start
 
@@ -55,13 +64,14 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 ```
 
 !!! info
-    The YAML manifest in the command above was generated with `helm template`, so you will end up with almost the same resources as if you had used Helm to install the controller.
+    The YAML manifest in the command above was generated with `helm template`, so you will end up with almost the same 
+    resources as if you had used Helm to install the controller.
 
 !!! attention
   If you are running an old version of Kubernetes (1.18 or earlier), please read
   [this paragraph](#running-on-Kubernetes-versions-older-than-1.19) for specific instructions.
   Because of api deprecations, the default manifest may not work on your cluster.
-  Specific manifests for supported Kubernetes versions are available within a subfolder of each provider.
+  Specific manifests for supported Kubernetes versions are available within a sub-folder of each provider.
 
 ### Pre-flight check
 
@@ -71,7 +81,8 @@ A few pods should start in the `ingress-nginx` namespace:
 kubectl get pods --namespace=ingress-nginx
 ```
 
-After a while, they should all be running. The following command will wait for the ingress controller pod to be up, running, and ready:
+After a while, they should all be running. The following command will wait for the ingress controller pod to be up, 
+running, and ready:
 
 ```console
 kubectl wait --namespace ingress-nginx \
@@ -89,7 +100,7 @@ kubectl create deployment demo --image=httpd --port=80
 kubectl expose deployment demo
 ```
 
-Then create an ingress resource. The following example uses an host that maps to `localhost`:
+Then create an ingress resource. The following example uses a host that maps to `localhost`:
 
 ```console
 kubectl create ingress demo-localhost --class=nginx \
@@ -106,7 +117,8 @@ At this point, if you access http://demo.localdev.me:8080/, you should see an HT
 
 ### Online testing
 
-If your Kubernetes cluster is a "real" cluster that supports services of type `LoadBalancer`, it will have allocated an external IP address or FQDN to the ingress controller.
+If your Kubernetes cluster is a "real" cluster that supports services of type `LoadBalancer`, it will have allocated an 
+external IP address or FQDN to the ingress controller.
 
 You can see that IP address or FQDN with the following command:
 
@@ -114,9 +126,11 @@ You can see that IP address or FQDN with the following command:
 kubectl get service ingress-nginx-controller --namespace=ingress-nginx
 ```
 
-It will be the `EXTERNAL-IP` field. If that field shows `<pending>`, this means that your Kubernetes cluster wasn't able to provision the load balancer (generally, this is because it doesn't support services of type `LoadBalancer`).
+It will be the `EXTERNAL-IP` field. If that field shows `<pending>`, this means that your Kubernetes cluster wasn't 
+able to provision the load balancer (generally, this is because it doesn't support services of type `LoadBalancer`).
 
-Once you have the external IP address (or FQDN), set up a DNS record pointing to it. Then you can create an ingress resource. The following example assumes that you have set up a DNS record for `www.demo.io`:
+Once you have the external IP address (or FQDN), set up a DNS record pointing to it. Then you can create an ingress 
+resource. The following example assumes that you have set up a DNS record for `www.demo.io`:
 
 ```console
 kubectl create ingress demo --class=nginx \
@@ -130,7 +144,8 @@ kubectl create ingress demo --class=nginx \
 ```
 
 
-You should then be able to see the "It works!" page when you connect to http://www.demo.io/. Congratulations, you are serving a public web site hosted on a Kubernetes cluster! 🎉
+You should then be able to see the "It works!" page when you connect to http://www.demo.io/. Congratulations, 
+you are serving a public website hosted on a Kubernetes cluster! 🎉
 
 ## Environment-specific instructions
 
@@ -161,27 +176,41 @@ Kubernetes is available in Docker Desktop:
 - Mac, from [version 18.06.0-ce](https://docs.docker.com/docker-for-mac/release-notes/#stable-releases-of-2018)
 - Windows, from [version 18.06.0-ce](https://docs.docker.com/docker-for-windows/release-notes/#docker-community-edition-18060-ce-win70-2018-07-25)
 
-First, make sure that Kubernetes is enabled in the Docker settings. The command `kubectl get nodes` should show a single node called `docker-desktop`.
+First, make sure that Kubernetes is enabled in the Docker settings. The command `kubectl get nodes` should show a 
+single node called `docker-desktop`.
 
 The ingress controller can be installed on Docker Desktop using the default [quick start](#quick-start) instructions.
 
-On most systems, if you don't have any other service of type `LoadBalancer` bound to port 80, the ingress controller will be assigned the `EXTERNAL-IP` of `localhost`, which means that it will be reachable on localhost:80. If that doesn't work, you might have to fall back to the `kubectl port-forward` method described in the [local testing section](#local-testing).
+On most systems, if you don't have any other service of type `LoadBalancer` bound to port 80, the ingress controller 
+will be assigned the `EXTERNAL-IP` of `localhost`, which means that it will be reachable on localhost:80. If that 
+doesn't work, you might have to fall back to the `kubectl port-forward` method described in the 
+[local testing section](#local-testing).
 
 ### Cloud deployments
 
-If the load balancers of your cloud provider do active healthchecks on their backends (most do), you can change the `externalTrafficPolicy` of the ingress controller Service to `Local` (instead of the default `Cluster`) to save an extra hop in some cases. If you're installing with Helm, this can be done by adding `--set controller.service.externalTrafficPolicy=Local` to the `helm install` or `helm upgrade` command.
+If the load balancers of your cloud provider do active healthchecks on their backends (most do), you can change the 
+`externalTrafficPolicy` of the ingress controller Service to `Local` (instead of the default `Cluster`) to save an 
+extra hop in some cases. If you're installing with Helm, this can be done by adding 
+`--set controller.service.externalTrafficPolicy=Local` to the `helm install` or `helm upgrade` command.
 
-Furthermore, if the load balancers of your cloud provider support the PROXY protocol, you can enable it, and it will let the ingress controller see the real IP address of the clients. Otherwise, it will generally see the IP address of the upstream load balancer. This must be done both in the ingress controller (with e.g. `--set controller.config.use-proxy-protocol=true`) and in the cloud provider's load balancer configuration to function correctly.
+Furthermore, if the load balancers of your cloud provider support the PROXY protocol, you can enable it, and it will 
+let the ingress controller see the real IP address of the clients. Otherwise, it will generally see the IP address of 
+the upstream load balancer. This must be done both in the ingress controller 
+(with e.g. `--set controller.config.use-proxy-protocol=true`) and in the cloud provider's load balancer configuration 
+to function correctly.
 
-In the following sections, we provide YAML manifests that enable these options when possible, using the specific options of various cloud providers.
+In the following sections, we provide YAML manifests that enable these options when possible, using the specific 
+options of various cloud providers.
 
 #### AWS
 
-In AWS we use a Network load balancer (NLB) to expose the NGINX Ingress controller behind a Service of `Type=LoadBalancer`.
+In AWS, we use a Network load balancer (NLB) to expose the NGINX Ingress controller behind a Service of `Type=LoadBalancer`.
 
 !!! info
     The provided templates illustrate the setup for legacy in-tree service load balancer for AWS NLB.
-    AWS provides the documentation on how to use [Network load balancing on Amazon EKS](https://docs.aws.amazon.com/eks/latest/userguide/network-load-balancing.html) with [AWS Load Balancer Controller](https://github.com/kubernetes-sigs/aws-load-balancer-controller).
+    AWS provides the documentation on how to use 
+    [Network load balancing on Amazon EKS](https://docs.aws.amazon.com/eks/latest/userguide/network-load-balancing.html) 
+    with [AWS Load Balancer Controller](https://github.com/kubernetes-sigs/aws-load-balancer-controller).
 
 ##### Network Load Balancer (NLB)
 
@@ -191,7 +220,8 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 
 ##### TLS termination in AWS Load Balancer (NLB)
 
-By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. This section explains how to do that on AWS using an NLB.
+By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
+This section explains how to do that on AWS using an NLB.
 
 1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
@@ -216,13 +246,17 @@ By default, TLS is terminated in the ingress controller. But it is also possible
 
 ##### NLB Idle Timeouts
 
-Idle timeout value for TCP flows is 350 seconds and [cannot be modified](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/network-load-balancers.html#connection-idle-timeout).
+Idle timeout value for TCP flows is 350 seconds and 
+[cannot be modified](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/network-load-balancers.html#connection-idle-timeout).
 
-For this reason, you need to ensure the [keepalive_timeout](https://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_timeout) value is configured less than 350 seconds to work as expected.
+For this reason, you need to ensure the 
+[keepalive_timeout](https://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_timeout) 
+value is configured less than 350 seconds to work as expected.
 
-By default NGINX `keepalive_timeout` is set to `75s`.
+By default, NGINX `keepalive_timeout` is set to `75s`.
 
-More information with regards to timeouts can be found in the [official AWS documentation](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/network-load-balancers.html#connection-idle-timeout)
+More information with regard to timeouts can be found in the 
+[official AWS documentation](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/network-load-balancers.html#connection-idle-timeout)
 
 #### GCE-GKE
 
@@ -242,12 +276,15 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 ```
 
 !!! warning
-    For private clusters, you will need to either add an additional firewall rule that allows master nodes access to port `8443/tcp` on worker nodes, or change the existing rule that allows access to ports `80/tcp`, `443/tcp` and `10254/tcp` to also allow access to port `8443/tcp`.
+    For private clusters, you will need to either add a firewall rule that allows master nodes access to 
+    port `8443/tcp` on worker nodes, or change the existing rule that allows access to port `80/tcp`, `443/tcp` and 
+    `10254/tcp` to also allow access to port `8443/tcp`. More information can be found in the 
+    [Official GCP Documentation](https://cloud.google.com/load-balancing/docs/tcp/setting-up-tcp#config-hc-firewall).
 
-    See the [GKE documentation](https://cloud.google.com/kubernetes-engine/docs/how-to/private-clusters#add_firewall_rules) on adding rules and the [Kubernetes issue](https://github.com/kubernetes/kubernetes/issues/79739) for more detail.
+    See the [GKE documentation](https://cloud.google.com/kubernetes-engine/docs/how-to/private-clusters#add_firewall_rules) 
+    on adding rules and the [Kubernetes issue](https://github.com/kubernetes/kubernetes/issues/79739) for more detail.
 
-!!! warning
-    Proxy protocol is not supported in GCE/GKE.
+Proxy-protocol is supported in GCE check the [Official Documentations on how to enable.](https://cloud.google.com/load-balancing/docs/tcp/setting-up-tcp#proxy-protocol)
 
 #### Azure
 
@@ -255,7 +292,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
-More information with regards to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
+More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
 
 #### Digital Ocean
 
@@ -275,7 +312,8 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/deploy/static/provider/exoscale/deploy.yaml
 ```
 
-The full list of annotations supported by Exoscale is available in the Exoscale Cloud Controller Manager [documentation](https://github.com/exoscale/exoscale-cloud-controller-manager/blob/master/docs/service-loadbalancer.md).
+The full list of annotations supported by Exoscale is available in the Exoscale Cloud Controller Manager 
+[documentation](https://github.com/exoscale/exoscale-cloud-controller-manager/blob/master/docs/service-loadbalancer.md).
 
 #### Oracle Cloud Infrastructure
 
@@ -283,19 +321,25 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
-A [complete list of available annotations for Oracle Cloud Infrastructure](https://github.com/oracle/oci-cloud-controller-manager/blob/master/docs/load-balancer-annotations.md) can be found in the [OCI Cloud Controller Manager](https://github.com/oracle/oci-cloud-controller-manager) documentation.
+A 
+[complete list of available annotations for Oracle Cloud Infrastructure](https://github.com/oracle/oci-cloud-controller-manager/blob/master/docs/load-balancer-annotations.md) 
+can be found in the [OCI Cloud Controller Manager](https://github.com/oracle/oci-cloud-controller-manager) documentation.
 
 ### Bare metal clusters
 
-This section is applicable to Kubernetes clusters deployed on bare metal servers, as well as "raw" VMs where Kubernetes was installed manually, using generic Linux distros (like CentOS, Ubuntu...)
+This section is applicable to Kubernetes clusters deployed on bare metal servers, as well as "raw" VMs where Kubernetes 
+was installed manually, using generic Linux distros (like CentOS, Ubuntu...)
 
-For quick testing, you can use a [NodePort](https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport). This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
+For quick testing, you can use a 
+[NodePort](https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport). 
+This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
 kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/baremetal/deploy.yaml
 ```
 
-For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range), see [bare-metal considerations](./baremetal.md).
+For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),
+see [bare-metal considerations](./baremetal.md).
 
 ## Miscellaneous
 
@@ -311,14 +355,21 @@ kubectl exec $POD_NAME -n $POD_NAMESPACE -- /nginx-ingress-controller --version
 
 ### Scope
 
-By default, the controller watches Ingress objects from all namespaces. If you want to change this behavior, use the flag `--watch-namespace` or check the Helm chart value `controller.scope` to limit the controller to a single namespace.
+By default, the controller watches Ingress objects from all namespaces. If you want to change this behavior, 
+use the flag `--watch-namespace` or check the Helm chart value `controller.scope` to limit the controller to a single 
+namespace.
 
-See also [“How to easily install multiple instances of the Ingress NGINX controller in the same cluster”](https://kubernetes.github.io/ingress-nginx/#how-to-easily-install-multiple-instances-of-the-ingress-nginx-controller-in-the-same-cluster) for more details.
+See also 
+[“How to easily install multiple instances of the Ingress NGINX controller in the same cluster”](https://kubernetes.github.io/ingress-nginx/#how-to-easily-install-multiple-instances-of-the-ingress-nginx-controller-in-the-same-cluster) 
+for more details.
 
 ### Webhook network access
 
 !!! warning
-    The controller uses an [admission webhook](https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/) to validate Ingress definitions. Make sure that you don't have [Network policies](https://kubernetes.io/docs/concepts/services-networking/network-policies/) or additional firewalls preventing connections from the API server to the `ingress-nginx-controller-admission` service.
+    The controller uses an [admission webhook](https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/)
+    to validate Ingress definitions. Make sure that you don't have 
+    [Network policies](https://kubernetes.io/docs/concepts/services-networking/network-policies/) 
+    or additional firewalls preventing connections from the API server to the `ingress-nginx-controller-admission` service.
 
 ### Certificate generation
 
@@ -338,7 +389,8 @@ You can wait until it is ready to run the next command:
 
 ### Running on Kubernetes versions older than 1.19
 
-Ingress resources evolved over time. They started with `apiVersion: extensions/v1beta1`, then moved to `apiVersion: networking.k8s.io/v1beta1` and more recently to `apiVersion: networking.k8s.io/v1`.
+Ingress resources evolved over time. They started with `apiVersion: extensions/v1beta1`, 
+then moved to `apiVersion: networking.k8s.io/v1beta1` and more recently to `apiVersion: networking.k8s.io/v1`.
 
 Here is how these Ingress versions are supported in Kubernetes:
 - before Kubernetes 1.19, only `v1beta1` Ingress resources are supported
@@ -349,6 +401,10 @@ And here is how these Ingress versions are supported in NGINX Ingress Controller
 - before version 1.0, only `v1beta1` Ingress resources are supported
 - in version 1.0 and above, only `v1` Ingress resources are
 
-As a result, if you're running Kubernetes 1.19 or later, you should be able to use the latest version of the NGINX Ingress Controller; but if you're using an old version of Kubernetes (1.18 or earlier) you will have to use version 0.X of the NGINX Ingress Controller (e.g. version 0.49).
+As a result, if you're running Kubernetes 1.19 or later, you should be able to use the latest version of the NGINX 
+Ingress Controller; but if you're using an old version of Kubernetes (1.18 or earlier) you will have to use version 0.X 
+of the NGINX Ingress Controller (e.g. version 0.49).
 
-The Helm chart of the NGINX Ingress Controller switched to version 1 in version 4 of the chart. In other words, if you're running Kubernetes 1.19 or earlier, you should use version 3.X of the chart (this can be done by adding `--version='<4'` to the `helm install` command).
+The Helm chart of the NGINX Ingress Controller switched to version 1 in version 4 of the chart. In other words, if 
+you're running Kubernetes 1.19 or earlier, you should use version 3.X of the chart (this can be done by adding 
+`--version='<4'` to the `helm install` command).

From f0490cbfbf29a7a05caaac29998dde56173ac2bb Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Wed, 27 Jul 2022 05:43:11 +0800
Subject: [PATCH 0295/1641] fix: change all cloudbuild jobs configuration
 (#8870)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 images/cfssl/cloudbuild.yaml                    | 2 +-
 images/custom-error-pages/cloudbuild.yaml       | 2 +-
 images/echo/cloudbuild.yaml                     | 2 +-
 images/ext-auth-example-authsvc/cloudbuild.yaml | 2 +-
 images/fastcgi-helloserver/cloudbuild.yaml      | 2 +-
 images/go-grpc-greeter-server/cloudbuild.yaml   | 2 +-
 images/httpbin/cloudbuild.yaml                  | 2 +-
 images/kube-webhook-certgen/cloudbuild.yaml     | 2 +-
 images/nginx/cloudbuild.yaml                    | 2 +-
 images/opentelemetry/cloudbuild.yaml            | 2 +-
 10 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/images/cfssl/cloudbuild.yaml b/images/cfssl/cloudbuild.yaml
index a71001c89..5fb9e0c96 100644
--- a/images/cfssl/cloudbuild.yaml
+++ b/images/cfssl/cloudbuild.yaml
@@ -16,7 +16,7 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && make push
+      && cd images/cfssl && make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"
diff --git a/images/custom-error-pages/cloudbuild.yaml b/images/custom-error-pages/cloudbuild.yaml
index 45cff0021..8c96d289c 100644
--- a/images/custom-error-pages/cloudbuild.yaml
+++ b/images/custom-error-pages/cloudbuild.yaml
@@ -16,7 +16,7 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && make push
+      && cd images/custom-error-pages && make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"
diff --git a/images/echo/cloudbuild.yaml b/images/echo/cloudbuild.yaml
index 2f773cebc..8349b5a7f 100644
--- a/images/echo/cloudbuild.yaml
+++ b/images/echo/cloudbuild.yaml
@@ -16,7 +16,7 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && make push
+      && cd images/echo && make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"
diff --git a/images/ext-auth-example-authsvc/cloudbuild.yaml b/images/ext-auth-example-authsvc/cloudbuild.yaml
index b92b9c877..fbd5d7b63 100644
--- a/images/ext-auth-example-authsvc/cloudbuild.yaml
+++ b/images/ext-auth-example-authsvc/cloudbuild.yaml
@@ -18,7 +18,7 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && make push
+      && cd images/ext-auth-example-authsvc && make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index a71001c89..37df1d168 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -16,7 +16,7 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && make push
+      && cd images/fastcgi-helloserver && make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"
diff --git a/images/go-grpc-greeter-server/cloudbuild.yaml b/images/go-grpc-greeter-server/cloudbuild.yaml
index b92b9c877..f4d6cc6d4 100644
--- a/images/go-grpc-greeter-server/cloudbuild.yaml
+++ b/images/go-grpc-greeter-server/cloudbuild.yaml
@@ -18,7 +18,7 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && make push
+      && cd images/go-grpc-greeter-server && make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"
diff --git a/images/httpbin/cloudbuild.yaml b/images/httpbin/cloudbuild.yaml
index b92b9c877..03f269b6e 100644
--- a/images/httpbin/cloudbuild.yaml
+++ b/images/httpbin/cloudbuild.yaml
@@ -18,7 +18,7 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && make push
+      && cd images/httpbin && make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"
diff --git a/images/kube-webhook-certgen/cloudbuild.yaml b/images/kube-webhook-certgen/cloudbuild.yaml
index d1eb9fe6e..127dee6eb 100644
--- a/images/kube-webhook-certgen/cloudbuild.yaml
+++ b/images/kube-webhook-certgen/cloudbuild.yaml
@@ -31,7 +31,7 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && make push
+      && cd images/kube-webhook-certgen && make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "main"
diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index 3e3d13579..fb9a51225 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -16,7 +16,7 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && make push
+      && cd images/nginx && make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"
diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
index 5a4e1b3c0..e2aa5a2b2 100644
--- a/images/opentelemetry/cloudbuild.yaml
+++ b/images/opentelemetry/cloudbuild.yaml
@@ -18,7 +18,7 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && make push
+      && cd images/opentelemetry && make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "main"

From 5e6093cf59628004f2948674eb1fc5dc0d560dff Mon Sep 17 00:00:00 2001
From: Markus Engel <m_engel@cs.uni-kl.de>
Date: Thu, 28 Jul 2022 12:23:10 +0200
Subject: [PATCH 0296/1641] add X-Forwarded-For in custom error template
 (#7892)

---
 rootfs/etc/nginx/template/nginx.tmpl | 1 +
 1 file changed, 1 insertion(+)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 561278b6f..a04f71f0e 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -896,6 +896,7 @@ stream {
             proxy_set_header       X-Service-Name     $service_name;
             proxy_set_header       X-Service-Port     $service_port;
             proxy_set_header       X-Request-ID       $req_id;
+            proxy_set_header       X-Forwarded-For    $remote_addr;
             proxy_set_header       Host               $best_http_host;
 
             set $proxy_upstream_name {{ $upstreamName | quote }};

From 5b0cc8edca15e951b4c234fc1bec4a15e36a81b6 Mon Sep 17 00:00:00 2001
From: Lien Li <liling@apache.org>
Date: Mon, 1 Aug 2022 00:16:28 +0800
Subject: [PATCH 0297/1641] migrate ginkgo to v2 (#8826)

* Migrate ginkgo to v2

* Update test/e2e/annotations/ipwhitelist.go

Co-authored-by: Jintao Zhang <tao12345666333@163.com>

* Update test/e2e/annotations/modsecurity/modsecurity.go

Co-authored-by: Jintao Zhang <tao12345666333@163.com>

* Update test/e2e/settings/access_log.go

Co-authored-by: Jintao Zhang <tao12345666333@163.com>

* remove unnecessary blank line

* re-order packages

* less change

Co-authored-by: Jintao Zhang <tao12345666333@163.com>
---
 go.mod                                            |  8 +++-----
 go.sum                                            | 15 +++++++--------
 test/e2e-image/Makefile                           |  2 +-
 test/e2e/admission/admission.go                   |  2 +-
 test/e2e/annotations/affinity.go                  |  2 +-
 test/e2e/annotations/affinitymode.go              |  2 +-
 test/e2e/annotations/alias.go                     |  2 +-
 test/e2e/annotations/approot.go                   |  2 +-
 test/e2e/annotations/auth.go                      |  2 +-
 test/e2e/annotations/authtls.go                   |  2 +-
 test/e2e/annotations/backendprotocol.go           |  2 +-
 test/e2e/annotations/canary.go                    |  2 +-
 test/e2e/annotations/clientbodybuffersize.go      |  2 +-
 test/e2e/annotations/connection.go                |  2 +-
 test/e2e/annotations/cors.go                      |  2 +-
 test/e2e/annotations/customhttperrors.go          |  2 +-
 test/e2e/annotations/default_backend.go           |  2 +-
 test/e2e/annotations/disableaccesslog.go          |  4 ++--
 test/e2e/annotations/fastcgi.go                   |  2 +-
 test/e2e/annotations/forcesslredirect.go          |  2 +-
 test/e2e/annotations/fromtowwwredirect.go         |  2 +-
 test/e2e/annotations/globalratelimit.go           |  2 +-
 test/e2e/annotations/grpc.go                      |  2 +-
 test/e2e/annotations/http2pushpreload.go          |  2 +-
 test/e2e/annotations/influxdb.go                  |  2 +-
 test/e2e/annotations/ipwhitelist.go               |  3 ++-
 test/e2e/annotations/limitconnections.go          |  2 +-
 test/e2e/annotations/limitrate.go                 |  2 +-
 test/e2e/annotations/log.go                       |  2 +-
 test/e2e/annotations/mirror.go                    |  2 +-
 test/e2e/annotations/modsecurity/modsecurity.go   |  3 ++-
 test/e2e/annotations/preservetrailingslash.go     |  2 +-
 test/e2e/annotations/proxy.go                     |  2 +-
 test/e2e/annotations/proxyssl.go                  |  2 +-
 test/e2e/annotations/redirect.go                  |  2 +-
 test/e2e/annotations/rewrite.go                   |  2 +-
 test/e2e/annotations/satisfy.go                   |  2 +-
 test/e2e/annotations/serversnippet.go             |  2 +-
 test/e2e/annotations/serviceupstream.go           |  2 +-
 test/e2e/annotations/snippet.go                   |  2 +-
 test/e2e/annotations/sslciphers.go                |  2 +-
 test/e2e/annotations/streamsnippet.go             |  8 ++++----
 test/e2e/annotations/upstreamhashby.go            |  2 +-
 test/e2e/annotations/upstreamvhost.go             |  2 +-
 test/e2e/annotations/xforwardedprefix.go          |  2 +-
 test/e2e/dbg/main.go                              |  2 +-
 test/e2e/defaultbackend/custom_default_backend.go |  2 +-
 test/e2e/defaultbackend/default_backend.go        |  2 +-
 test/e2e/defaultbackend/ssl.go                    |  2 +-
 test/e2e/defaultbackend/with_hosts.go             |  2 +-
 test/e2e/e2e.go                                   |  5 ++---
 test/e2e/framework/deployment.go                  |  2 +-
 test/e2e/framework/fastcgi_helloserver.go         |  2 +-
 test/e2e/framework/framework.go                   |  8 ++++----
 test/e2e/framework/grpc_fortune_teller.go         |  2 +-
 test/e2e/framework/influxdb.go                    |  2 +-
 test/e2e/framework/k8s.go                         |  2 +-
 test/e2e/framework/ssl.go                         |  2 +-
 test/e2e/framework/test_context.go                |  4 ----
 test/e2e/framework/util.go                        |  2 +-
 test/e2e/gracefulshutdown/grace_period.go         |  2 +-
 test/e2e/gracefulshutdown/shutdown.go             |  2 +-
 test/e2e/gracefulshutdown/slow_requests.go        |  2 +-
 test/e2e/ingress/deep_inspection.go               |  2 +-
 test/e2e/ingress/multiple_rules.go                |  2 +-
 test/e2e/ingress/pathtype_exact.go                |  2 +-
 test/e2e/ingress/pathtype_mixed.go                |  2 +-
 test/e2e/ingress/pathtype_prefix.go               |  2 +-
 test/e2e/ingress/without_host.go                  |  2 +-
 test/e2e/leaks/lua_ssl.go                         |  2 +-
 test/e2e/loadbalance/configmap.go                 |  2 +-
 test/e2e/loadbalance/ewma.go                      |  2 +-
 test/e2e/loadbalance/round_robin.go               |  2 +-
 test/e2e/lua/dynamic_certificates.go              |  2 +-
 test/e2e/lua/dynamic_configuration.go             |  2 +-
 test/e2e/nginx/nginx.go                           |  2 +-
 test/e2e/security/request_smuggling.go            |  2 +-
 test/e2e/servicebackend/service_backend.go        |  2 +-
 test/e2e/servicebackend/service_externalname.go   |  2 +-
 test/e2e/servicebackend/service_nil_backend.go    |  2 +-
 test/e2e/settings/access_log.go                   |  3 ++-
 test/e2e/settings/badannotationvalues.go          |  2 +-
 test/e2e/settings/brotli.go                       |  2 +-
 test/e2e/settings/configmap_change.go             |  2 +-
 test/e2e/settings/custom_header.go                |  2 +-
 test/e2e/settings/default_ssl_certificate.go      |  2 +-
 test/e2e/settings/disable_catch_all.go            |  2 +-
 .../e2e/settings/disable_service_external_name.go |  2 +-
 test/e2e/settings/enable_real_ip.go               |  2 +-
 test/e2e/settings/forwarded_headers.go            |  2 +-
 test/e2e/settings/geoip2.go                       |  2 +-
 test/e2e/settings/global_access_block.go          |  2 +-
 test/e2e/settings/global_external_auth.go         |  2 +-
 test/e2e/settings/global_options.go               |  2 +-
 test/e2e/settings/globalratelimit.go              |  2 +-
 test/e2e/settings/hash-size.go                    |  2 +-
 test/e2e/settings/ingress_class.go                |  2 +-
 test/e2e/settings/keep-alive.go                   |  2 +-
 test/e2e/settings/limit_rate.go                   |  2 +-
 test/e2e/settings/listen_nondefault_ports.go      |  2 +-
 test/e2e/settings/log-format.go                   |  2 +-
 test/e2e/settings/lua_shared_dicts.go             |  2 +-
 test/e2e/settings/main_snippet.go                 |  2 +-
 .../settings/modsecurity/modsecurity_snippet.go   |  2 +-
 test/e2e/settings/multi_accept.go                 |  2 +-
 test/e2e/settings/namespace_selector.go           |  2 +-
 test/e2e/settings/no_auth_locations.go            |  2 +-
 test/e2e/settings/no_tls_redirect_locations.go    |  2 +-
 test/e2e/settings/ocsp/ocsp.go                    |  2 +-
 test/e2e/settings/opentracing.go                  |  2 +-
 test/e2e/settings/plugins.go                      |  2 +-
 test/e2e/settings/pod_security_policy.go          |  2 +-
 test/e2e/settings/pod_security_policy_volumes.go  |  2 +-
 test/e2e/settings/proxy_connect_timeout.go        |  2 +-
 test/e2e/settings/proxy_host.go                   |  2 +-
 test/e2e/settings/proxy_next_upstream.go          |  2 +-
 test/e2e/settings/proxy_protocol.go               |  2 +-
 test/e2e/settings/proxy_read_timeout.go           |  2 +-
 test/e2e/settings/proxy_send_timeout.go           |  2 +-
 test/e2e/settings/reuse-port.go                   |  2 +-
 test/e2e/settings/server_snippet.go               |  2 +-
 test/e2e/settings/server_tokens.go                |  2 +-
 test/e2e/settings/ssl_ciphers.go                  |  2 +-
 test/e2e/settings/stream_snippet.go               | 11 ++++++-----
 test/e2e/settings/tls.go                          |  2 +-
 test/e2e/ssl/http_redirect.go                     |  2 +-
 test/e2e/ssl/secret_update.go                     |  2 +-
 test/e2e/status/update.go                         |  2 +-
 test/e2e/tcpudp/tcp.go                            |  2 +-
 129 files changed, 152 insertions(+), 156 deletions(-)

diff --git a/go.mod b/go.mod
index 748678dbf..b6b164b09 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo v1.16.5
+	github.com/onsi/ginkgo/v2 v2.1.4
 	github.com/opencontainers/runc v1.1.3
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.12.2
@@ -101,7 +101,6 @@ require (
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00 // indirect
 	github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 // indirect
-	github.com/nxadm/tail v1.4.8 // indirect
 	github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
@@ -118,20 +117,19 @@ require (
 	github.com/yudai/gojsondiff v1.0.0 // indirect
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
-	golang.org/x/mod v0.4.2 // indirect
+	golang.org/x/mod v0.6.0-dev.0.20220106191415-9b9b3d81d5e3 // indirect
 	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
 	golang.org/x/sys v0.0.0-20220412211240-33da011f77ad // indirect
 	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
 	golang.org/x/text v0.3.7 // indirect
 	golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
-	golang.org/x/tools v0.1.6-0.20210820212750-d4cc65f0b2ff // indirect
+	golang.org/x/tools v0.1.10 // indirect
 	golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2 // indirect
 	google.golang.org/protobuf v1.28.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
-	gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 	k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c // indirect
diff --git a/go.sum b/go.sum
index 951da0363..1d2446f1d 100644
--- a/go.sum
+++ b/go.sum
@@ -214,7 +214,6 @@ github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh
 github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5Fng=
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
-github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/godbus/dbus/v5 v5.0.6 h1:mkgN1ofwASrYnJ5W6U/BxG15eXXXjirgZc7CLqkcaro=
 github.com/godbus/dbus/v5 v5.0.6/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
@@ -459,7 +458,6 @@ github.com/ncabatoff/process-exporter v0.7.10/go.mod h1:DHZRZjqxw9LCOpLlX0DjBuyn
 github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
 github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
-github.com/nxadm/tail v1.4.8/go.mod h1:+ncqLTQzXmGhMZNUePPaPqPvBxHAIsmXswZKocGu+AU=
 github.com/oklog/ulid v1.3.1/go.mod h1:CirwcVhetQ6Lv90oh/F+FBtV6XMibvdAFo93nm5qn4U=
 github.com/onsi/ginkgo v0.0.0-20170829012221-11459a886d9c/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
@@ -467,12 +465,13 @@ github.com/onsi/ginkgo v1.10.1/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
-github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
+github.com/onsi/ginkgo/v2 v2.1.4 h1:GNapqRSid3zijZ9H77KrgVG4/8KqiyRsxcSxe+7ApXY=
+github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
 github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
 github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.17.0 h1:9Luw4uT5HTjHTN8+aNcSThgH1vdXnmdJ8xIfZ4wyTRE=
+github.com/onsi/gomega v1.19.0 h1:4ieX6qQjPP/BfC3mpsAtIGGlxTWPeA3Inl/7DtXw1tw=
 github.com/opencontainers/runc v1.1.3 h1:vIXrkId+0/J2Ymu2m7VjGvbSlAId9XNRPhn2p4b+d8w=
 github.com/opencontainers/runc v1.1.3/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
@@ -720,8 +719,9 @@ golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.4.2 h1:Gz96sIWK3OalVv/I/qNygP42zyoKp3xptRVCWRFEBvo=
 golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.6.0-dev.0.20220106191415-9b9b3d81d5e3 h1:kQgndtyPBW/JIYERgdxfwMYh3AVStj88WQTlNDi2a+o=
+golang.org/x/mod v0.6.0-dev.0.20220106191415-9b9b3d81d5e3/go.mod h1:3p9vT2HGsQu2K1YbXdKPJLVgG5VJdoTa1poYQBtP1AY=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -854,7 +854,6 @@ golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201201145000-ef89a241ccb3/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210104204734-6f8348627aad/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210112080510-489259a85091/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210119212857-b64e53b001e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210220050731-9a76102bfb43/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -951,14 +950,14 @@ golang.org/x/tools v0.0.0-20200904185747-39188db58858/go.mod h1:Cj7w3i3Rnn0Xh82u
 golang.org/x/tools v0.0.0-20201110124207-079ba7bd75cd/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20201201161351-ac6f37ff4c2a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20201208233053-a543418bbed2/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210105154028-b0ab187a4818/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.1.0/go.mod h1:xkSsbof2nBLbhDlRMhhhyNLN/zl3eTqcnHD5viDpcZ0=
 golang.org/x/tools v0.1.2/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.1.6-0.20210820212750-d4cc65f0b2ff h1:VX/uD7MK0AHXGiScH3fsieUQUcpmRERPDYtqZdJnA+Q=
 golang.org/x/tools v0.1.6-0.20210820212750-d4cc65f0b2ff/go.mod h1:YD9qOF0M9xpSpdWTBbzEl5e/RnCefISl8E5Noe10jFM=
+golang.org/x/tools v0.1.10 h1:QjFRCZxdOhBJ/UNgnBZLbNV13DlbnK0quyivTnXJM20=
+golang.org/x/tools v0.1.10/go.mod h1:Uh6Zz+xoGYZom868N8YTex3t7RhtHDBrE8Gzo9bV56E=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 2973c5dad..9a81e06cc 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE="k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220110-gfd820db46@sha256:273f7d9b1b2297cd96b4d51600e45d932186a1cc79d00d179dfb43654112fe8f"
+E2E_BASE_IMAGE="k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220726-controller-v1.3.0-29-gfe116d62c@sha256:0a199f7b8d4e84026b08c989d9058f3c9b7936af4e2487a6be1ff9077b684d0c"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/admission/admission.go b/test/e2e/admission/admission.go
index c03a10ecc..bde98fddf 100644
--- a/test/e2e/admission/admission.go
+++ b/test/e2e/admission/admission.go
@@ -24,7 +24,7 @@ import (
 	"os/exec"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	apierrors "k8s.io/apimachinery/pkg/api/errors"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/annotations/affinity.go b/test/e2e/annotations/affinity.go
index 4ca567e4c..6a0a0bf48 100644
--- a/test/e2e/annotations/affinity.go
+++ b/test/e2e/annotations/affinity.go
@@ -24,7 +24,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/annotations/affinitymode.go b/test/e2e/annotations/affinitymode.go
index 6d22ea59f..2b40155d0 100644
--- a/test/e2e/annotations/affinitymode.go
+++ b/test/e2e/annotations/affinitymode.go
@@ -22,7 +22,7 @@ import (
 	"reflect"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/annotations/alias.go b/test/e2e/annotations/alias.go
index 6b11a9c07..de829507d 100644
--- a/test/e2e/annotations/alias.go
+++ b/test/e2e/annotations/alias.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/approot.go b/test/e2e/annotations/approot.go
index a73c60253..485b4d277 100644
--- a/test/e2e/annotations/approot.go
+++ b/test/e2e/annotations/approot.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index d0ca5cf12..7da2ef7d9 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -26,7 +26,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	corev1 "k8s.io/api/core/v1"
diff --git a/test/e2e/annotations/authtls.go b/test/e2e/annotations/authtls.go
index dbf4f2a76..e96835aa0 100644
--- a/test/e2e/annotations/authtls.go
+++ b/test/e2e/annotations/authtls.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/backendprotocol.go b/test/e2e/annotations/backendprotocol.go
index a215cbe83..bccb03afb 100644
--- a/test/e2e/annotations/backendprotocol.go
+++ b/test/e2e/annotations/backendprotocol.go
@@ -19,7 +19,7 @@ package annotations
 import (
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/canary.go b/test/e2e/annotations/canary.go
index b62ba5a70..893a4dc8b 100644
--- a/test/e2e/annotations/canary.go
+++ b/test/e2e/annotations/canary.go
@@ -23,7 +23,7 @@ import (
 	"regexp"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/annotations/clientbodybuffersize.go b/test/e2e/annotations/clientbodybuffersize.go
index 7a4ce977f..4ea1943bd 100644
--- a/test/e2e/annotations/clientbodybuffersize.go
+++ b/test/e2e/annotations/clientbodybuffersize.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
diff --git a/test/e2e/annotations/connection.go b/test/e2e/annotations/connection.go
index a3d13702d..9cfcbacd0 100644
--- a/test/e2e/annotations/connection.go
+++ b/test/e2e/annotations/connection.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/cors.go b/test/e2e/annotations/cors.go
index f88459bce..f53bd8e9e 100644
--- a/test/e2e/annotations/cors.go
+++ b/test/e2e/annotations/cors.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/customhttperrors.go b/test/e2e/annotations/customhttperrors.go
index 7256b93fa..3862f817b 100644
--- a/test/e2e/annotations/customhttperrors.go
+++ b/test/e2e/annotations/customhttperrors.go
@@ -20,7 +20,7 @@ import (
 	"fmt"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	networking "k8s.io/api/networking/v1"
 
diff --git a/test/e2e/annotations/default_backend.go b/test/e2e/annotations/default_backend.go
index 15a3505af..53c98a307 100644
--- a/test/e2e/annotations/default_backend.go
+++ b/test/e2e/annotations/default_backend.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/disableaccesslog.go b/test/e2e/annotations/disableaccesslog.go
index 1824af27c..4d152b45d 100644
--- a/test/e2e/annotations/disableaccesslog.go
+++ b/test/e2e/annotations/disableaccesslog.go
@@ -17,12 +17,12 @@ limitations under the License.
 package annotations
 
 import (
+	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
-	"net/http"
 )
 
 var _ = framework.DescribeAnnotation("disable-access-log disable-http-access-log disable-stream-access-log", func() {
diff --git a/test/e2e/annotations/fastcgi.go b/test/e2e/annotations/fastcgi.go
index f1f6d3ac1..0dc6ae4a4 100644
--- a/test/e2e/annotations/fastcgi.go
+++ b/test/e2e/annotations/fastcgi.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	corev1 "k8s.io/api/core/v1"
 
diff --git a/test/e2e/annotations/forcesslredirect.go b/test/e2e/annotations/forcesslredirect.go
index 8fa2e8f60..4f5316971 100644
--- a/test/e2e/annotations/forcesslredirect.go
+++ b/test/e2e/annotations/forcesslredirect.go
@@ -19,7 +19,7 @@ package annotations
 import (
 	"net/http"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/fromtowwwredirect.go b/test/e2e/annotations/fromtowwwredirect.go
index 4fb1763b2..9201bedb7 100644
--- a/test/e2e/annotations/fromtowwwredirect.go
+++ b/test/e2e/annotations/fromtowwwredirect.go
@@ -22,7 +22,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/annotations/globalratelimit.go b/test/e2e/annotations/globalratelimit.go
index ca9302892..2efcc3558 100644
--- a/test/e2e/annotations/globalratelimit.go
+++ b/test/e2e/annotations/globalratelimit.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/annotations/grpc.go b/test/e2e/annotations/grpc.go
index 9da6fdc15..dfe8141ee 100644
--- a/test/e2e/annotations/grpc.go
+++ b/test/e2e/annotations/grpc.go
@@ -22,7 +22,7 @@ import (
 	"strings"
 
 	pb "github.com/moul/pb/grpcbin/go-grpc"
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	"golang.org/x/net/context"
 	"google.golang.org/grpc"
diff --git a/test/e2e/annotations/http2pushpreload.go b/test/e2e/annotations/http2pushpreload.go
index 400b77587..b15d2df17 100644
--- a/test/e2e/annotations/http2pushpreload.go
+++ b/test/e2e/annotations/http2pushpreload.go
@@ -19,7 +19,7 @@ package annotations
 import (
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/influxdb.go b/test/e2e/annotations/influxdb.go
index 09c831f6f..7a52730cf 100644
--- a/test/e2e/annotations/influxdb.go
+++ b/test/e2e/annotations/influxdb.go
@@ -26,7 +26,7 @@ import (
 	"time"
 
 	jsoniter "github.com/json-iterator/go"
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	corev1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/annotations/ipwhitelist.go b/test/e2e/annotations/ipwhitelist.go
index 66e4de3f5..71f026c7f 100644
--- a/test/e2e/annotations/ipwhitelist.go
+++ b/test/e2e/annotations/ipwhitelist.go
@@ -19,7 +19,8 @@ package annotations
 import (
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
+
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
diff --git a/test/e2e/annotations/limitconnections.go b/test/e2e/annotations/limitconnections.go
index 2274c574c..7d00b6df0 100644
--- a/test/e2e/annotations/limitconnections.go
+++ b/test/e2e/annotations/limitconnections.go
@@ -22,7 +22,7 @@ import (
 	"strings"
 	"sync"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/annotations/limitrate.go b/test/e2e/annotations/limitrate.go
index 8c0b06ea9..21e76dc8d 100644
--- a/test/e2e/annotations/limitrate.go
+++ b/test/e2e/annotations/limitrate.go
@@ -21,7 +21,7 @@ import (
 	"strconv"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/log.go b/test/e2e/annotations/log.go
index 65dc9af57..2279729a2 100644
--- a/test/e2e/annotations/log.go
+++ b/test/e2e/annotations/log.go
@@ -19,7 +19,7 @@ package annotations
 import (
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/mirror.go b/test/e2e/annotations/mirror.go
index e904cca1c..ad178a947 100644
--- a/test/e2e/annotations/mirror.go
+++ b/test/e2e/annotations/mirror.go
@@ -20,7 +20,7 @@ import (
 	"fmt"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/modsecurity/modsecurity.go b/test/e2e/annotations/modsecurity/modsecurity.go
index 4de85818d..62c9bc843 100644
--- a/test/e2e/annotations/modsecurity/modsecurity.go
+++ b/test/e2e/annotations/modsecurity/modsecurity.go
@@ -20,7 +20,8 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
+
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
diff --git a/test/e2e/annotations/preservetrailingslash.go b/test/e2e/annotations/preservetrailingslash.go
index f9129c77e..7e27b25fa 100644
--- a/test/e2e/annotations/preservetrailingslash.go
+++ b/test/e2e/annotations/preservetrailingslash.go
@@ -19,7 +19,7 @@ package annotations
 import (
 	"net/http"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/proxy.go b/test/e2e/annotations/proxy.go
index 1c749b4dd..c0c89eb43 100644
--- a/test/e2e/annotations/proxy.go
+++ b/test/e2e/annotations/proxy.go
@@ -20,7 +20,7 @@ import (
 	"fmt"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/proxyssl.go b/test/e2e/annotations/proxyssl.go
index 3672a4d81..7f14c3393 100644
--- a/test/e2e/annotations/proxyssl.go
+++ b/test/e2e/annotations/proxyssl.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/annotations/redirect.go b/test/e2e/annotations/redirect.go
index 84c219b71..633e2eb0b 100644
--- a/test/e2e/annotations/redirect.go
+++ b/test/e2e/annotations/redirect.go
@@ -22,7 +22,7 @@ import (
 	"strconv"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/rewrite.go b/test/e2e/annotations/rewrite.go
index 667df920f..79738b984 100644
--- a/test/e2e/annotations/rewrite.go
+++ b/test/e2e/annotations/rewrite.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/annotations/satisfy.go b/test/e2e/annotations/satisfy.go
index 8c0f88d2f..e75464a9d 100644
--- a/test/e2e/annotations/satisfy.go
+++ b/test/e2e/annotations/satisfy.go
@@ -23,7 +23,7 @@ import (
 	"net/url"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	networking "k8s.io/api/networking/v1"
diff --git a/test/e2e/annotations/serversnippet.go b/test/e2e/annotations/serversnippet.go
index adba23fee..df1383bdb 100644
--- a/test/e2e/annotations/serversnippet.go
+++ b/test/e2e/annotations/serversnippet.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/serviceupstream.go b/test/e2e/annotations/serviceupstream.go
index c0bf37603..94ad6d346 100644
--- a/test/e2e/annotations/serviceupstream.go
+++ b/test/e2e/annotations/serviceupstream.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/annotations/snippet.go b/test/e2e/annotations/snippet.go
index be0e9ccf9..367708302 100644
--- a/test/e2e/annotations/snippet.go
+++ b/test/e2e/annotations/snippet.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/sslciphers.go b/test/e2e/annotations/sslciphers.go
index a619bf3bc..58010421d 100644
--- a/test/e2e/annotations/sslciphers.go
+++ b/test/e2e/annotations/sslciphers.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/streamsnippet.go b/test/e2e/annotations/streamsnippet.go
index cc9aca715..b5df50975 100644
--- a/test/e2e/annotations/streamsnippet.go
+++ b/test/e2e/annotations/streamsnippet.go
@@ -19,14 +19,14 @@ package annotations
 import (
 	"context"
 	"fmt"
+	"net/http"
+	"strings"
+
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	corev1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/util/intstr"
-	"net/http"
-	"strings"
-
-	"github.com/onsi/ginkgo"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/upstreamhashby.go b/test/e2e/annotations/upstreamhashby.go
index c4732a18d..023a094aa 100644
--- a/test/e2e/annotations/upstreamhashby.go
+++ b/test/e2e/annotations/upstreamhashby.go
@@ -22,7 +22,7 @@ import (
 	"regexp"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/apimachinery/pkg/util/wait"
diff --git a/test/e2e/annotations/upstreamvhost.go b/test/e2e/annotations/upstreamvhost.go
index a0e84726e..e091e7c9f 100644
--- a/test/e2e/annotations/upstreamvhost.go
+++ b/test/e2e/annotations/upstreamvhost.go
@@ -19,7 +19,7 @@ package annotations
 import (
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/annotations/xforwardedprefix.go b/test/e2e/annotations/xforwardedprefix.go
index 6ae0d93c8..35f2eb426 100644
--- a/test/e2e/annotations/xforwardedprefix.go
+++ b/test/e2e/annotations/xforwardedprefix.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/dbg/main.go b/test/e2e/dbg/main.go
index 2e50ef6af..2df57469d 100644
--- a/test/e2e/dbg/main.go
+++ b/test/e2e/dbg/main.go
@@ -20,7 +20,7 @@ import (
 	"encoding/json"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/defaultbackend/custom_default_backend.go b/test/e2e/defaultbackend/custom_default_backend.go
index f7f40ad8d..1e30b9269 100644
--- a/test/e2e/defaultbackend/custom_default_backend.go
+++ b/test/e2e/defaultbackend/custom_default_backend.go
@@ -22,7 +22,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/defaultbackend/default_backend.go b/test/e2e/defaultbackend/default_backend.go
index 853c04ae8..e418e4687 100644
--- a/test/e2e/defaultbackend/default_backend.go
+++ b/test/e2e/defaultbackend/default_backend.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 
 	"github.com/gavv/httpexpect/v2"
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/defaultbackend/ssl.go b/test/e2e/defaultbackend/ssl.go
index f453dd2d3..9f44e2e56 100644
--- a/test/e2e/defaultbackend/ssl.go
+++ b/test/e2e/defaultbackend/ssl.go
@@ -17,7 +17,7 @@ limitations under the License.
 package defaultbackend
 
 import (
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/defaultbackend/with_hosts.go b/test/e2e/defaultbackend/with_hosts.go
index c59b5807b..c9a2c12a7 100644
--- a/test/e2e/defaultbackend/with_hosts.go
+++ b/test/e2e/defaultbackend/with_hosts.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/e2e.go b/test/e2e/e2e.go
index f96d06833..c7010b977 100644
--- a/test/e2e/e2e.go
+++ b/test/e2e/e2e.go
@@ -20,8 +20,7 @@ import (
 	"os"
 	"testing"
 
-	"github.com/onsi/ginkgo"
-	"github.com/onsi/ginkgo/config"
+	"github.com/onsi/ginkgo/v2"
 	"k8s.io/component-base/logs"
 
 	// required
@@ -62,6 +61,6 @@ func RunE2ETests(t *testing.T) {
 		framework.Logf("Using kubectl path '%s'", framework.KubectlPath)
 	}
 
-	framework.Logf("Starting e2e run %q on Ginkgo node %d", framework.RunID, config.GinkgoConfig.ParallelNode)
+	framework.Logf("Starting e2e run %q on Ginkgo node %d", framework.RunID, ginkgo.GinkgoParallelProcess())
 	ginkgo.RunSpecs(t, "nginx-ingress-controller e2e suite")
 }
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index f5da9ebe8..a87800e0a 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -22,7 +22,7 @@ import (
 	"os"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	corev1 "k8s.io/api/core/v1"
diff --git a/test/e2e/framework/fastcgi_helloserver.go b/test/e2e/framework/fastcgi_helloserver.go
index c757ba86f..c3e89c7f5 100644
--- a/test/e2e/framework/fastcgi_helloserver.go
+++ b/test/e2e/framework/fastcgi_helloserver.go
@@ -17,7 +17,7 @@ limitations under the License.
 package framework
 
 import (
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	corev1 "k8s.io/api/core/v1"
diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index cd18a9738..ff47ffa51 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -23,7 +23,7 @@ import (
 	"time"
 
 	"github.com/gavv/httpexpect/v2"
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	corev1 "k8s.io/api/core/v1"
@@ -161,7 +161,7 @@ func (f *Framework) AfterEach() {
 		}()
 	}(f.KubeClientSet, f.IngressClass)
 
-	if !ginkgo.CurrentGinkgoTestDescription().Failed {
+	if !ginkgo.CurrentSpecReport().Failed() {
 		return
 	}
 
@@ -210,8 +210,8 @@ func DescribeSetting(text string, body func()) bool {
 }
 
 // MemoryLeakIt is wrapper function for ginkgo It.  Adds "[MemoryLeak]" tag and makes static analysis easier.
-func MemoryLeakIt(text string, body interface{}, timeout ...float64) bool {
-	return ginkgo.It(text+" [MemoryLeak]", body, timeout...)
+func MemoryLeakIt(text string, body interface{}) bool {
+	return ginkgo.It(text+" [MemoryLeak]", body)
 }
 
 // GetNginxIP returns the number of TCP port where NGINX is running
diff --git a/test/e2e/framework/grpc_fortune_teller.go b/test/e2e/framework/grpc_fortune_teller.go
index 012121761..02ff3aae2 100644
--- a/test/e2e/framework/grpc_fortune_teller.go
+++ b/test/e2e/framework/grpc_fortune_teller.go
@@ -17,7 +17,7 @@ limitations under the License.
 package framework
 
 import (
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	corev1 "k8s.io/api/core/v1"
diff --git a/test/e2e/framework/influxdb.go b/test/e2e/framework/influxdb.go
index 6721913d6..c3c0e3421 100644
--- a/test/e2e/framework/influxdb.go
+++ b/test/e2e/framework/influxdb.go
@@ -17,7 +17,7 @@ limitations under the License.
 package framework
 
 import (
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	corev1 "k8s.io/api/core/v1"
diff --git a/test/e2e/framework/k8s.go b/test/e2e/framework/k8s.go
index 7f434beb8..ef9c522d6 100644
--- a/test/e2e/framework/k8s.go
+++ b/test/e2e/framework/k8s.go
@@ -22,7 +22,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	api "k8s.io/api/core/v1"
diff --git a/test/e2e/framework/ssl.go b/test/e2e/framework/ssl.go
index 1eea2be2b..52ceffc57 100644
--- a/test/e2e/framework/ssl.go
+++ b/test/e2e/framework/ssl.go
@@ -33,7 +33,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	v1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/framework/test_context.go b/test/e2e/framework/test_context.go
index 0a79c894f..be4cd6e5e 100644
--- a/test/e2e/framework/test_context.go
+++ b/test/e2e/framework/test_context.go
@@ -18,8 +18,6 @@ package framework
 
 import (
 	"flag"
-
-	"github.com/onsi/ginkgo/config"
 )
 
 // TestContextType describes the client context to use in communications with the Kubernetes API.
@@ -34,8 +32,6 @@ var TestContext TestContextType
 
 // registerCommonFlags registers flags common to all e2e test suites.
 func registerCommonFlags() {
-	config.GinkgoConfig.EmitSpecProgress = true
-
 	flag.StringVar(&TestContext.KubeHost, "kubernetes-host", "http://127.0.0.1:8080", "The kubernetes host, or apiserver, to connect to")
 	//flag.StringVar(&TestContext.KubeConfig, "kubernetes-config", os.Getenv(clientcmd.RecommendedConfigPathEnvVar), "Path to config containing embedded authinfo for kubernetes. Default value is from environment variable "+clientcmd.RecommendedConfigPathEnvVar)
 	flag.StringVar(&TestContext.KubeContext, "kubernetes-context", "", "config context to use for kubernetes. If unset, will use value from 'current-context'")
diff --git a/test/e2e/framework/util.go b/test/e2e/framework/util.go
index af2545b89..8f50dac98 100644
--- a/test/e2e/framework/util.go
+++ b/test/e2e/framework/util.go
@@ -22,7 +22,7 @@ import (
 	"os"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	corev1 "k8s.io/api/core/v1"
 	networkingv1 "k8s.io/api/networking/v1"
 	rbacv1 "k8s.io/api/rbac/v1"
diff --git a/test/e2e/gracefulshutdown/grace_period.go b/test/e2e/gracefulshutdown/grace_period.go
index 95c3729a1..12e2f3d67 100644
--- a/test/e2e/gracefulshutdown/grace_period.go
+++ b/test/e2e/gracefulshutdown/grace_period.go
@@ -22,7 +22,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/gracefulshutdown/shutdown.go b/test/e2e/gracefulshutdown/shutdown.go
index 5282d1a11..604143da8 100644
--- a/test/e2e/gracefulshutdown/shutdown.go
+++ b/test/e2e/gracefulshutdown/shutdown.go
@@ -21,7 +21,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/gracefulshutdown/slow_requests.go b/test/e2e/gracefulshutdown/slow_requests.go
index 605e4d869..57578923c 100644
--- a/test/e2e/gracefulshutdown/slow_requests.go
+++ b/test/e2e/gracefulshutdown/slow_requests.go
@@ -17,7 +17,7 @@ limitations under the License.
 package gracefulshutdown
 
 import (
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/ingress/deep_inspection.go b/test/e2e/ingress/deep_inspection.go
index 0a4c3c539..8869665fb 100644
--- a/test/e2e/ingress/deep_inspection.go
+++ b/test/e2e/ingress/deep_inspection.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
diff --git a/test/e2e/ingress/multiple_rules.go b/test/e2e/ingress/multiple_rules.go
index 07f5c1427..c08f36374 100644
--- a/test/e2e/ingress/multiple_rules.go
+++ b/test/e2e/ingress/multiple_rules.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	networking "k8s.io/api/networking/v1"
 
diff --git a/test/e2e/ingress/pathtype_exact.go b/test/e2e/ingress/pathtype_exact.go
index 38df19fcc..ae2902e9f 100644
--- a/test/e2e/ingress/pathtype_exact.go
+++ b/test/e2e/ingress/pathtype_exact.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	networking "k8s.io/api/networking/v1"
 
diff --git a/test/e2e/ingress/pathtype_mixed.go b/test/e2e/ingress/pathtype_mixed.go
index cf2172bd1..dd183bbb4 100644
--- a/test/e2e/ingress/pathtype_mixed.go
+++ b/test/e2e/ingress/pathtype_mixed.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	networking "k8s.io/api/networking/v1"
diff --git a/test/e2e/ingress/pathtype_prefix.go b/test/e2e/ingress/pathtype_prefix.go
index c2c7b0f8d..fa664ce27 100644
--- a/test/e2e/ingress/pathtype_prefix.go
+++ b/test/e2e/ingress/pathtype_prefix.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/ingress/without_host.go b/test/e2e/ingress/without_host.go
index c0c2d3b12..6ec7f5bd5 100644
--- a/test/e2e/ingress/without_host.go
+++ b/test/e2e/ingress/without_host.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
diff --git a/test/e2e/leaks/lua_ssl.go b/test/e2e/leaks/lua_ssl.go
index 8756a973d..8ebd05ccb 100644
--- a/test/e2e/leaks/lua_ssl.go
+++ b/test/e2e/leaks/lua_ssl.go
@@ -24,7 +24,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	pool "gopkg.in/go-playground/pool.v3"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/loadbalance/configmap.go b/test/e2e/loadbalance/configmap.go
index ea1ead4fe..8cd47286b 100644
--- a/test/e2e/loadbalance/configmap.go
+++ b/test/e2e/loadbalance/configmap.go
@@ -19,7 +19,7 @@ package loadbalance
 import (
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/loadbalance/ewma.go b/test/e2e/loadbalance/ewma.go
index 15289f372..e2750a09a 100644
--- a/test/e2e/loadbalance/ewma.go
+++ b/test/e2e/loadbalance/ewma.go
@@ -22,7 +22,7 @@ import (
 	"regexp"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/loadbalance/round_robin.go b/test/e2e/loadbalance/round_robin.go
index bc74ba9fb..2d0582e9a 100644
--- a/test/e2e/loadbalance/round_robin.go
+++ b/test/e2e/loadbalance/round_robin.go
@@ -22,7 +22,7 @@ import (
 	"regexp"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/lua/dynamic_certificates.go b/test/e2e/lua/dynamic_certificates.go
index f5585995e..0160cc9e7 100644
--- a/test/e2e/lua/dynamic_certificates.go
+++ b/test/e2e/lua/dynamic_certificates.go
@@ -23,7 +23,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	dto "github.com/prometheus/client_model/go"
 	"github.com/prometheus/common/expfmt"
 	"github.com/prometheus/common/model"
diff --git a/test/e2e/lua/dynamic_configuration.go b/test/e2e/lua/dynamic_configuration.go
index b382e52cc..8e9804545 100644
--- a/test/e2e/lua/dynamic_configuration.go
+++ b/test/e2e/lua/dynamic_configuration.go
@@ -24,7 +24,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/nginx/nginx.go b/test/e2e/nginx/nginx.go
index 74a6d64be..cd14a931c 100644
--- a/test/e2e/nginx/nginx.go
+++ b/test/e2e/nginx/nginx.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/security/request_smuggling.go b/test/e2e/security/request_smuggling.go
index 94ee53c64..9891480dc 100644
--- a/test/e2e/security/request_smuggling.go
+++ b/test/e2e/security/request_smuggling.go
@@ -23,7 +23,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/servicebackend/service_backend.go b/test/e2e/servicebackend/service_backend.go
index 0467e434e..44f3d36a5 100644
--- a/test/e2e/servicebackend/service_backend.go
+++ b/test/e2e/servicebackend/service_backend.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	corev1 "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/servicebackend/service_externalname.go b/test/e2e/servicebackend/service_externalname.go
index d2a921cd3..30c4f6ba0 100644
--- a/test/e2e/servicebackend/service_externalname.go
+++ b/test/e2e/servicebackend/service_externalname.go
@@ -23,7 +23,7 @@ import (
 	"strings"
 
 	"github.com/gavv/httpexpect/v2"
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	corev1 "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
diff --git a/test/e2e/servicebackend/service_nil_backend.go b/test/e2e/servicebackend/service_nil_backend.go
index 864f94fbe..c44601c88 100644
--- a/test/e2e/servicebackend/service_nil_backend.go
+++ b/test/e2e/servicebackend/service_nil_backend.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	corev1 "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/settings/access_log.go b/test/e2e/settings/access_log.go
index 0e50205e5..7c7e2b9e3 100644
--- a/test/e2e/settings/access_log.go
+++ b/test/e2e/settings/access_log.go
@@ -19,7 +19,8 @@ package settings
 import (
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
+
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
diff --git a/test/e2e/settings/badannotationvalues.go b/test/e2e/settings/badannotationvalues.go
index cae6605cc..b4b6def4a 100644
--- a/test/e2e/settings/badannotationvalues.go
+++ b/test/e2e/settings/badannotationvalues.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/brotli.go b/test/e2e/settings/brotli.go
index 52092ee83..a07eb6c09 100644
--- a/test/e2e/settings/brotli.go
+++ b/test/e2e/settings/brotli.go
@@ -22,7 +22,7 @@ import (
 	"strconv"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/configmap_change.go b/test/e2e/settings/configmap_change.go
index 084be1ba7..be3ab0b11 100644
--- a/test/e2e/settings/configmap_change.go
+++ b/test/e2e/settings/configmap_change.go
@@ -20,7 +20,7 @@ import (
 	"regexp"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/settings/custom_header.go b/test/e2e/settings/custom_header.go
index f907e74a5..8341f7ef0 100644
--- a/test/e2e/settings/custom_header.go
+++ b/test/e2e/settings/custom_header.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/settings/default_ssl_certificate.go b/test/e2e/settings/default_ssl_certificate.go
index eede8ef75..ea97d4895 100644
--- a/test/e2e/settings/default_ssl_certificate.go
+++ b/test/e2e/settings/default_ssl_certificate.go
@@ -22,7 +22,7 @@ import (
 	"fmt"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/settings/disable_catch_all.go b/test/e2e/settings/disable_catch_all.go
index dce772f9a..0d1a14493 100644
--- a/test/e2e/settings/disable_catch_all.go
+++ b/test/e2e/settings/disable_catch_all.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	networking "k8s.io/api/networking/v1"
diff --git a/test/e2e/settings/disable_service_external_name.go b/test/e2e/settings/disable_service_external_name.go
index d8da89d4a..03c8020b6 100644
--- a/test/e2e/settings/disable_service_external_name.go
+++ b/test/e2e/settings/disable_service_external_name.go
@@ -22,7 +22,7 @@ import (
 	"strings"
 
 	"github.com/gavv/httpexpect/v2"
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	corev1 "k8s.io/api/core/v1"
diff --git a/test/e2e/settings/enable_real_ip.go b/test/e2e/settings/enable_real_ip.go
index 027f4c1f8..9be2e52d9 100644
--- a/test/e2e/settings/enable_real_ip.go
+++ b/test/e2e/settings/enable_real_ip.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/settings/forwarded_headers.go b/test/e2e/settings/forwarded_headers.go
index b010a1c75..b929e683b 100644
--- a/test/e2e/settings/forwarded_headers.go
+++ b/test/e2e/settings/forwarded_headers.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/settings/geoip2.go b/test/e2e/settings/geoip2.go
index cec35f459..9b2ca8624 100644
--- a/test/e2e/settings/geoip2.go
+++ b/test/e2e/settings/geoip2.go
@@ -24,7 +24,7 @@ import (
 
 	"net/http"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	appsv1 "k8s.io/api/apps/v1"
diff --git a/test/e2e/settings/global_access_block.go b/test/e2e/settings/global_access_block.go
index 5268590b9..4d8a2b8e3 100644
--- a/test/e2e/settings/global_access_block.go
+++ b/test/e2e/settings/global_access_block.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/global_external_auth.go b/test/e2e/settings/global_external_auth.go
index d514080a0..c70b5a9b1 100644
--- a/test/e2e/settings/global_external_auth.go
+++ b/test/e2e/settings/global_external_auth.go
@@ -23,7 +23,7 @@ import (
 	"regexp"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
diff --git a/test/e2e/settings/global_options.go b/test/e2e/settings/global_options.go
index ef0487cc5..117860d59 100644
--- a/test/e2e/settings/global_options.go
+++ b/test/e2e/settings/global_options.go
@@ -21,7 +21,7 @@ import (
 	"strings"
 	"syscall"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
diff --git a/test/e2e/settings/globalratelimit.go b/test/e2e/settings/globalratelimit.go
index 409cd5d9c..e266350ad 100644
--- a/test/e2e/settings/globalratelimit.go
+++ b/test/e2e/settings/globalratelimit.go
@@ -22,7 +22,7 @@ import (
 	"strconv"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/hash-size.go b/test/e2e/settings/hash-size.go
index 42c9241bb..6e3e0480c 100644
--- a/test/e2e/settings/hash-size.go
+++ b/test/e2e/settings/hash-size.go
@@ -19,7 +19,7 @@ package settings
 import (
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/ingress_class.go b/test/e2e/settings/ingress_class.go
index 2372d209b..232045f3a 100644
--- a/test/e2e/settings/ingress_class.go
+++ b/test/e2e/settings/ingress_class.go
@@ -23,7 +23,7 @@ import (
 	"strings"
 	"sync"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	networkingv1 "k8s.io/api/networking/v1"
diff --git a/test/e2e/settings/keep-alive.go b/test/e2e/settings/keep-alive.go
index 6ef09b78c..510a90125 100644
--- a/test/e2e/settings/keep-alive.go
+++ b/test/e2e/settings/keep-alive.go
@@ -21,7 +21,7 @@ import (
 	"regexp"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
diff --git a/test/e2e/settings/limit_rate.go b/test/e2e/settings/limit_rate.go
index d51408335..9d79dc358 100644
--- a/test/e2e/settings/limit_rate.go
+++ b/test/e2e/settings/limit_rate.go
@@ -20,7 +20,7 @@ import (
 	"fmt"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/listen_nondefault_ports.go b/test/e2e/settings/listen_nondefault_ports.go
index 28e0b86e9..61a128040 100644
--- a/test/e2e/settings/listen_nondefault_ports.go
+++ b/test/e2e/settings/listen_nondefault_ports.go
@@ -22,7 +22,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
diff --git a/test/e2e/settings/log-format.go b/test/e2e/settings/log-format.go
index aaa5d0430..b43fce874 100644
--- a/test/e2e/settings/log-format.go
+++ b/test/e2e/settings/log-format.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/lua_shared_dicts.go b/test/e2e/settings/lua_shared_dicts.go
index 8c5ea1d33..53f999c94 100644
--- a/test/e2e/settings/lua_shared_dicts.go
+++ b/test/e2e/settings/lua_shared_dicts.go
@@ -19,7 +19,7 @@ package settings
 import (
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
diff --git a/test/e2e/settings/main_snippet.go b/test/e2e/settings/main_snippet.go
index 18027f199..ff14bab9d 100644
--- a/test/e2e/settings/main_snippet.go
+++ b/test/e2e/settings/main_snippet.go
@@ -19,7 +19,7 @@ package settings
 import (
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/modsecurity/modsecurity_snippet.go b/test/e2e/settings/modsecurity/modsecurity_snippet.go
index f912db984..2dd92ced2 100644
--- a/test/e2e/settings/modsecurity/modsecurity_snippet.go
+++ b/test/e2e/settings/modsecurity/modsecurity_snippet.go
@@ -19,7 +19,7 @@ package modsecurity
 import (
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/multi_accept.go b/test/e2e/settings/multi_accept.go
index a6b4ffd5b..211c168aa 100644
--- a/test/e2e/settings/multi_accept.go
+++ b/test/e2e/settings/multi_accept.go
@@ -19,7 +19,7 @@ package settings
 import (
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/namespace_selector.go b/test/e2e/settings/namespace_selector.go
index 7c07a841d..a23514dca 100644
--- a/test/e2e/settings/namespace_selector.go
+++ b/test/e2e/settings/namespace_selector.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/settings/no_auth_locations.go b/test/e2e/settings/no_auth_locations.go
index 2d32b05d6..70ec3be8f 100644
--- a/test/e2e/settings/no_auth_locations.go
+++ b/test/e2e/settings/no_auth_locations.go
@@ -22,7 +22,7 @@ import (
 	"os/exec"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	corev1 "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
diff --git a/test/e2e/settings/no_tls_redirect_locations.go b/test/e2e/settings/no_tls_redirect_locations.go
index 64c9de516..2fca545ff 100644
--- a/test/e2e/settings/no_tls_redirect_locations.go
+++ b/test/e2e/settings/no_tls_redirect_locations.go
@@ -20,7 +20,7 @@ import (
 	"fmt"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index 3e9852082..af84babe9 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -28,7 +28,7 @@ import (
 	"strings"
 	"syscall"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	"golang.org/x/crypto/ocsp"
 	appsv1 "k8s.io/api/apps/v1"
diff --git a/test/e2e/settings/opentracing.go b/test/e2e/settings/opentracing.go
index 3ac16be78..aee01ea60 100644
--- a/test/e2e/settings/opentracing.go
+++ b/test/e2e/settings/opentracing.go
@@ -22,7 +22,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/settings/plugins.go b/test/e2e/settings/plugins.go
index 1af04e9d2..659acd42c 100644
--- a/test/e2e/settings/plugins.go
+++ b/test/e2e/settings/plugins.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
diff --git a/test/e2e/settings/pod_security_policy.go b/test/e2e/settings/pod_security_policy.go
index 75c7698d0..0e0300829 100644
--- a/test/e2e/settings/pod_security_policy.go
+++ b/test/e2e/settings/pod_security_policy.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	corev1 "k8s.io/api/core/v1"
diff --git a/test/e2e/settings/pod_security_policy_volumes.go b/test/e2e/settings/pod_security_policy_volumes.go
index 384f8c46c..8af74ea60 100644
--- a/test/e2e/settings/pod_security_policy_volumes.go
+++ b/test/e2e/settings/pod_security_policy_volumes.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	appsv1 "k8s.io/api/apps/v1"
diff --git a/test/e2e/settings/proxy_connect_timeout.go b/test/e2e/settings/proxy_connect_timeout.go
index 8d2fd5fda..1290775a5 100644
--- a/test/e2e/settings/proxy_connect_timeout.go
+++ b/test/e2e/settings/proxy_connect_timeout.go
@@ -20,7 +20,7 @@ import (
 	"fmt"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/proxy_host.go b/test/e2e/settings/proxy_host.go
index de72f9d5b..8f564414a 100644
--- a/test/e2e/settings/proxy_host.go
+++ b/test/e2e/settings/proxy_host.go
@@ -21,7 +21,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
diff --git a/test/e2e/settings/proxy_next_upstream.go b/test/e2e/settings/proxy_next_upstream.go
index bc17cd0c7..b59d5edb7 100644
--- a/test/e2e/settings/proxy_next_upstream.go
+++ b/test/e2e/settings/proxy_next_upstream.go
@@ -20,7 +20,7 @@ import (
 	"fmt"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/proxy_protocol.go b/test/e2e/settings/proxy_protocol.go
index 3b551d1d8..8b0e56fe4 100644
--- a/test/e2e/settings/proxy_protocol.go
+++ b/test/e2e/settings/proxy_protocol.go
@@ -24,7 +24,7 @@ import (
 	"net"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	corev1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/settings/proxy_read_timeout.go b/test/e2e/settings/proxy_read_timeout.go
index 41171e2c6..c84956cc9 100644
--- a/test/e2e/settings/proxy_read_timeout.go
+++ b/test/e2e/settings/proxy_read_timeout.go
@@ -20,7 +20,7 @@ import (
 	"fmt"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/proxy_send_timeout.go b/test/e2e/settings/proxy_send_timeout.go
index 031f4361f..886642bc0 100644
--- a/test/e2e/settings/proxy_send_timeout.go
+++ b/test/e2e/settings/proxy_send_timeout.go
@@ -20,7 +20,7 @@ import (
 	"fmt"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/reuse-port.go b/test/e2e/settings/reuse-port.go
index b8b2c5611..29d52c4f1 100644
--- a/test/e2e/settings/reuse-port.go
+++ b/test/e2e/settings/reuse-port.go
@@ -19,7 +19,7 @@ package settings
 import (
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/server_snippet.go b/test/e2e/settings/server_snippet.go
index b9e172717..1577c927c 100644
--- a/test/e2e/settings/server_snippet.go
+++ b/test/e2e/settings/server_snippet.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/server_tokens.go b/test/e2e/settings/server_tokens.go
index e84639b08..015554f07 100644
--- a/test/e2e/settings/server_tokens.go
+++ b/test/e2e/settings/server_tokens.go
@@ -19,7 +19,7 @@ package settings
 import (
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/settings/ssl_ciphers.go b/test/e2e/settings/ssl_ciphers.go
index 9aa4b8e14..241dfc92b 100644
--- a/test/e2e/settings/ssl_ciphers.go
+++ b/test/e2e/settings/ssl_ciphers.go
@@ -20,7 +20,7 @@ import (
 	"fmt"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/stream_snippet.go b/test/e2e/settings/stream_snippet.go
index 90f928c23..e1552afd3 100644
--- a/test/e2e/settings/stream_snippet.go
+++ b/test/e2e/settings/stream_snippet.go
@@ -19,14 +19,15 @@ package settings
 import (
 	"context"
 	"fmt"
-	"github.com/stretchr/testify/assert"
-	corev1 "k8s.io/api/core/v1"
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-	"k8s.io/apimachinery/pkg/util/intstr"
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
+
+	corev1 "k8s.io/api/core/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/util/intstr"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
diff --git a/test/e2e/settings/tls.go b/test/e2e/settings/tls.go
index 739e44490..a249f8bad 100644
--- a/test/e2e/settings/tls.go
+++ b/test/e2e/settings/tls.go
@@ -22,7 +22,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/ssl/http_redirect.go b/test/e2e/ssl/http_redirect.go
index 5968397cb..982dd4f6c 100644
--- a/test/e2e/ssl/http_redirect.go
+++ b/test/e2e/ssl/http_redirect.go
@@ -20,7 +20,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
diff --git a/test/e2e/ssl/secret_update.go b/test/e2e/ssl/secret_update.go
index 05c73b9b8..77e64c6b2 100644
--- a/test/e2e/ssl/secret_update.go
+++ b/test/e2e/ssl/secret_update.go
@@ -23,7 +23,7 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	v1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
diff --git a/test/e2e/status/update.go b/test/e2e/status/update.go
index 43d61b0e9..b512520f4 100644
--- a/test/e2e/status/update.go
+++ b/test/e2e/status/update.go
@@ -24,7 +24,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
 	appsv1 "k8s.io/api/apps/v1"
diff --git a/test/e2e/tcpudp/tcp.go b/test/e2e/tcpudp/tcp.go
index 553cb46d3..b62134a03 100644
--- a/test/e2e/tcpudp/tcp.go
+++ b/test/e2e/tcpudp/tcp.go
@@ -24,7 +24,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/onsi/ginkgo"
+	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	corev1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"

From 00ee51f09ede6d8b5e36a29380c756dd25d91fbd Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Mon, 1 Aug 2022 13:28:29 +0530
Subject: [PATCH 0298/1641] update to baseiamge built after CI changes (#8892)

---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index f0d8b2fd8..71016de7a 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:c5766dc011965f22fac2f4437e86d0fd9960a50c@sha256:94ff9b435a5f3f4570bbdaed4a3a523f63a54ce2ad6b132b5640bae2af5d9d90
+registry.k8s.io/ingress-nginx/nginx:f0490cbfbf29a7a05caaac29998dde56173ac2bb@sha256:f0d8d32a20f8c1a7c98b504a03b162931d93edd60ecc2c745917a32e9e3e92ad

From 72a01bbe6e7c7fd12741d01fe2a5dd2231b3a3d6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 1 Aug 2022 05:52:29 -0700
Subject: [PATCH 0299/1641] Bump github/codeql-action from 2.1.16 to 2.1.17
 (#8894)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.16 to 2.1.17.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/3e7e3b32d0fb8283594bb0a76cc60a00918b0969...0c670bbf0414f39666df6ce8e718ec5662c21e03)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index f8bc053c9..f7e9eeae5 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@3e7e3b32d0fb8283594bb0a76cc60a00918b0969 # v2.1.14
+        uses: github/codeql-action/upload-sarif@0c670bbf0414f39666df6ce8e718ec5662c21e03 # v2.1.14
         with:
           sarif_file: results.sarif

From 4077f7e6826e10f7b9ee72b3060b3ea9eae2a54a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Aug 2022 06:58:20 -0700
Subject: [PATCH 0300/1641] Bump github/codeql-action from 2.1.17 to 2.1.18
 (#8914)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.17 to 2.1.18.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/0c670bbf0414f39666df6ce8e718ec5662c21e03...2ca79b6fa8d3ec278944088b4aa5f46912db5d63)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index f7e9eeae5..26271c309 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@0c670bbf0414f39666df6ce8e718ec5662c21e03 # v2.1.14
+        uses: github/codeql-action/upload-sarif@2ca79b6fa8d3ec278944088b4aa5f46912db5d63 # v2.1.14
         with:
           sarif_file: results.sarif

From 534bcfb1935c0c598faad1f4362505b2a339236a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Aug 2022 07:06:19 -0700
Subject: [PATCH 0301/1641] Bump github.com/prometheus/client_golang from
 1.12.2 to 1.13.0 (#8913)

Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.12.2 to 1.13.0.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.12.2...v1.13.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 10 +++++-----
 go.sum | 19 ++++++++++---------
 2 files changed, 15 insertions(+), 14 deletions(-)

diff --git a/go.mod b/go.mod
index b6b164b09..0dcd77946 100644
--- a/go.mod
+++ b/go.mod
@@ -18,7 +18,7 @@ require (
 	github.com/onsi/ginkgo/v2 v2.1.4
 	github.com/opencontainers/runc v1.1.3
 	github.com/pmezard/go-difflib v1.0.0
-	github.com/prometheus/client_golang v1.12.2
+	github.com/prometheus/client_golang v1.13.0
 	github.com/prometheus/client_model v0.2.0
 	github.com/prometheus/common v0.37.0
 	github.com/spf13/cobra v1.5.0
@@ -80,7 +80,7 @@ require (
 	github.com/golang/protobuf v1.5.2 // indirect
 	github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7 // indirect
 	github.com/google/btree v1.0.1 // indirect
-	github.com/google/go-cmp v0.5.6 // indirect
+	github.com/google/go-cmp v0.5.8 // indirect
 	github.com/google/go-querystring v1.0.0 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
@@ -104,7 +104,7 @@ require (
 	github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
-	github.com/prometheus/procfs v0.7.3 // indirect
+	github.com/prometheus/procfs v0.8.0 // indirect
 	github.com/sergi/go-diff v1.1.0 // indirect
 	github.com/sirupsen/logrus v1.8.1 // indirect
 	github.com/valyala/bytebufferpool v1.0.0 // indirect
@@ -119,7 +119,7 @@ require (
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.6.0-dev.0.20220106191415-9b9b3d81d5e3 // indirect
 	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
-	golang.org/x/sys v0.0.0-20220412211240-33da011f77ad // indirect
+	golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a // indirect
 	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
 	golang.org/x/text v0.3.7 // indirect
 	golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
@@ -127,7 +127,7 @@ require (
 	golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2 // indirect
-	google.golang.org/protobuf v1.28.0 // indirect
+	google.golang.org/protobuf v1.28.1 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
diff --git a/go.sum b/go.sum
index 1d2446f1d..4e81b0cd7 100644
--- a/go.sum
+++ b/go.sum
@@ -276,8 +276,9 @@ github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/
 github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.4/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.6 h1:BKbKCqvP6I+rmFHt06ZmyQtvB8xAkWdhFyr0ZUNZcxQ=
 github.com/google/go-cmp v0.5.6/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.5.8 h1:e6P7q2lk1O+qJJb4BtCQXlK8vWEO8V1ZeuEdJNOqZyg=
+github.com/google/go-cmp v0.5.8/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/go-querystring v1.0.0 h1:Xkwi/a1rcvNg1PPYe5vI8GbeBY/jrVuDX5ASuANWTrk=
 github.com/google/go-querystring v1.0.0/go.mod h1:odCYkC5MyYFN7vkCjXpyrEuKhc/BUO6wN/zVPAxq5ck=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
@@ -440,8 +441,6 @@ github.com/modern-go/reflect2 v1.0.2 h1:xBagoLtFs94CBntxluKeaWgTMpvLxC4ur3nMaC9G
 github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
 github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00 h1:n6/2gBQ3RWajuToeY6ZtZTIKv2v7ThUy5KKusIT0yc0=
 github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00/go.mod h1:Pm3mSP3c5uWn86xMLZ5Sa7JB9GsEZySvHYXCTK4E9q4=
-github.com/moul/pb v0.0.0-20180404114147-54bdd96e6a52 h1:8zDEa5yAIWYBHSDpPbSgGIBL/SvPSE9/FlB3aQ54d/A=
-github.com/moul/pb v0.0.0-20180404114147-54bdd96e6a52/go.mod h1:jE2HT8eoucYyUPBFJMreiVlC3KPHkDMtN8wn+ef7Y64=
 github.com/moul/pb v0.0.0-20220425114252-bca18df4138c h1:1STmblv9zmHLDpru4dbnf1PNL6wrrZNf7yBH+SfQU+s=
 github.com/moul/pb v0.0.0-20220425114252-bca18df4138c/go.mod h1:jE2HT8eoucYyUPBFJMreiVlC3KPHkDMtN8wn+ef7Y64=
 github.com/mrunalp/fileutils v0.5.0/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
@@ -499,8 +498,8 @@ github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5Fsn
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
 github.com/prometheus/client_golang v1.12.1/go.mod h1:3Z9XVyYiZYEO+YQWt3RD2R3jrbd179Rt297l4aS6nDY=
-github.com/prometheus/client_golang v1.12.2 h1:51L9cDoUHVrXx4zWYlcLQIZ+d+VXHgqnYKkIuq4g/34=
-github.com/prometheus/client_golang v1.12.2/go.mod h1:3Z9XVyYiZYEO+YQWt3RD2R3jrbd179Rt297l4aS6nDY=
+github.com/prometheus/client_golang v1.13.0 h1:b71QUfeo5M8gq2+evJdTPfZhYMAU0uKPkyPJ7TPsloU=
+github.com/prometheus/client_golang v1.13.0/go.mod h1:vTeo+zgvILHsnnj/39Ou/1fPN5nJFOEMgftOUOmlvYQ=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
@@ -522,8 +521,9 @@ github.com/prometheus/procfs v0.0.0-20190507164030-5867b95ac084/go.mod h1:TjEm7z
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
 github.com/prometheus/procfs v0.1.3/go.mod h1:lV6e/gmhEcM9IjHGsFOCxxuZ+z1YqCvr4OA4YeYWdaU=
 github.com/prometheus/procfs v0.6.0/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
-github.com/prometheus/procfs v0.7.3 h1:4jVXhlkAyzOScmCkXBTOLRLTz8EeU+eyjrwB/EPq0VU=
 github.com/prometheus/procfs v0.7.3/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
+github.com/prometheus/procfs v0.8.0 h1:ODq8ZFEaYeCaZOJlZZdJA2AbQR98dSHSM1KW/You5mo=
+github.com/prometheus/procfs v0.8.0/go.mod h1:z7EfXMXOkbkqb9IINtpCn86r/to3BnA0uaxHdg830/4=
 github.com/prometheus/tsdb v0.7.1/go.mod h1:qhTCs0VvXwvX/y3TZrWD7rabWM+ijKTux40TwIPHuXU=
 github.com/rogpeppe/fastuuid v0.0.0-20150106093220-6724a57986af/go.mod h1:XWv6SoW27p1b0cqNHllgS5HIMJraePCO15w5zCzIWYg=
 github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ=
@@ -876,8 +876,9 @@ golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220227234510-4e6760a101f9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220412211240-33da011f77ad h1:ntjMns5wyP/fN65tdBD4g8J5w8n015+iIIs9rtjXkY0=
 golang.org/x/sys v0.0.0-20220412211240-33da011f77ad/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a h1:dGzPydgVsqGcTRVwiLJ1jVbufYwmzD3LfVPLKsKg+0k=
+golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 h1:JGgROgKl9N8DuW20oFS5gxc+lE67/N3FcwmBPMe7ArY=
@@ -1078,8 +1079,8 @@ google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlba
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
 google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.28.0 h1:w43yiav+6bVFTBQFZX0r7ipe9JQ1QsbMgHwbBziscLw=
-google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.28.1 h1:d0NfwRgPtno5B1Wa6L2DAG+KivqkdutMf1UhdNx175w=
+google.golang.org/protobuf v1.28.1/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=

From 0f61d9d0dca7a915fe23a4b3d52838816dc840e5 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Tue, 9 Aug 2022 00:10:19 +0530
Subject: [PATCH 0302/1641] updated to new images built today (#8896)

---
 charts/ingress-nginx/CHANGELOG.md             |  5 +++
 charts/ingress-nginx/Chart.yaml               | 41 +------------------
 charts/ingress-nginx/README.md                |  6 +--
 charts/ingress-nginx/values.yaml              |  6 +--
 deploy/static/provider/aws/1.20/deploy.yaml   |  4 +-
 deploy/static/provider/aws/1.21/deploy.yaml   |  4 +-
 deploy/static/provider/aws/1.22/deploy.yaml   |  4 +-
 deploy/static/provider/aws/1.23/deploy.yaml   |  4 +-
 deploy/static/provider/aws/1.24/deploy.yaml   |  4 +-
 deploy/static/provider/aws/deploy.yaml        |  4 +-
 .../nlb-with-tls-termination/1.20/deploy.yaml |  4 +-
 .../nlb-with-tls-termination/1.21/deploy.yaml |  4 +-
 .../nlb-with-tls-termination/1.22/deploy.yaml |  4 +-
 .../nlb-with-tls-termination/1.23/deploy.yaml |  4 +-
 .../nlb-with-tls-termination/1.24/deploy.yaml |  4 +-
 .../aws/nlb-with-tls-termination/deploy.yaml  |  4 +-
 .../provider/baremetal/1.20/deploy.yaml       |  4 +-
 .../provider/baremetal/1.21/deploy.yaml       |  4 +-
 .../provider/baremetal/1.22/deploy.yaml       |  4 +-
 .../provider/baremetal/1.23/deploy.yaml       |  4 +-
 .../provider/baremetal/1.24/deploy.yaml       |  4 +-
 deploy/static/provider/baremetal/deploy.yaml  |  4 +-
 deploy/static/provider/cloud/1.20/deploy.yaml |  4 +-
 deploy/static/provider/cloud/1.21/deploy.yaml |  4 +-
 deploy/static/provider/cloud/1.22/deploy.yaml |  4 +-
 deploy/static/provider/cloud/1.23/deploy.yaml |  4 +-
 deploy/static/provider/cloud/1.24/deploy.yaml |  4 +-
 deploy/static/provider/cloud/deploy.yaml      |  4 +-
 deploy/static/provider/do/1.20/deploy.yaml    |  4 +-
 deploy/static/provider/do/1.21/deploy.yaml    |  4 +-
 deploy/static/provider/do/1.22/deploy.yaml    |  4 +-
 deploy/static/provider/do/1.23/deploy.yaml    |  4 +-
 deploy/static/provider/do/1.24/deploy.yaml    |  4 +-
 deploy/static/provider/do/deploy.yaml         |  4 +-
 .../static/provider/exoscale/1.20/deploy.yaml |  4 +-
 .../static/provider/exoscale/1.21/deploy.yaml |  4 +-
 .../static/provider/exoscale/1.22/deploy.yaml |  4 +-
 .../static/provider/exoscale/1.23/deploy.yaml |  4 +-
 .../static/provider/exoscale/1.24/deploy.yaml |  4 +-
 deploy/static/provider/exoscale/deploy.yaml   |  4 +-
 deploy/static/provider/kind/1.20/deploy.yaml  |  4 +-
 deploy/static/provider/kind/1.21/deploy.yaml  |  4 +-
 deploy/static/provider/kind/1.22/deploy.yaml  |  4 +-
 deploy/static/provider/kind/1.23/deploy.yaml  |  4 +-
 deploy/static/provider/kind/1.24/deploy.yaml  |  4 +-
 deploy/static/provider/kind/deploy.yaml       |  4 +-
 deploy/static/provider/scw/1.20/deploy.yaml   |  4 +-
 deploy/static/provider/scw/1.21/deploy.yaml   |  4 +-
 deploy/static/provider/scw/1.22/deploy.yaml   |  4 +-
 deploy/static/provider/scw/1.23/deploy.yaml   |  4 +-
 deploy/static/provider/scw/1.24/deploy.yaml   |  4 +-
 deploy/static/provider/scw/deploy.yaml        |  4 +-
 .../custom-default-backend.helm.values.yaml   |  2 +-
 .../custom-errors/custom-default-backend.yaml |  2 +-
 test/e2e-image/Makefile                       |  2 +-
 test/e2e/framework/deployment.go              |  2 +-
 test/e2e/settings/ocsp/ocsp.go                |  2 +-
 57 files changed, 114 insertions(+), 146 deletions(-)

diff --git a/charts/ingress-nginx/CHANGELOG.md b/charts/ingress-nginx/CHANGELOG.md
index bedb9f720..27a52e83a 100644
--- a/charts/ingress-nginx/CHANGELOG.md
+++ b/charts/ingress-nginx/CHANGELOG.md
@@ -2,6 +2,11 @@
 
 This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
 
+### 4.2.1
+
+- The sha of kube-webhook-certgen image & the opentelemetry image, in values file, was changed to new images built on alpine-v3.16.1
+- "[8896](https://github.com/kubernetes/ingress-nginx/pull/8896) updated to new images built today"
+
 ### 4.2.0
 
 - Support for Kubernetes v1.19.0 was removed
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index d30f94fe8..0b5fa4dd1 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.2.0
+version: 4.2.1
 appVersion: 1.3.0
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
@@ -26,41 +26,4 @@ annotations:
   # List of changes for the release in artifacthub.io
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
-    - "[8810](https://github.com/kubernetes/ingress-nginx/pull/8810) Prepare for v1.3.0"
-    - "[8808](https://github.com/kubernetes/ingress-nginx/pull/8808) revert arch var name"
-    - "[8805](https://github.com/kubernetes/ingress-nginx/pull/8805) Bump k8s.io/klog/v2 from 2.60.1 to 2.70.1"
-    - "[8803](https://github.com/kubernetes/ingress-nginx/pull/8803) Update to nginx base with alpine v3.16"
-    - "[8802](https://github.com/kubernetes/ingress-nginx/pull/8802) chore: start v1.3.0 release process"
-    - "[8798](https://github.com/kubernetes/ingress-nginx/pull/8798) Add v1.24.0 to test matrix"
-    - "[8796](https://github.com/kubernetes/ingress-nginx/pull/8796) fix: add MAC_OS variable for static-check"
-    - "[8793](https://github.com/kubernetes/ingress-nginx/pull/8793) changed to alpine-v3.16"
-    - "[8781](https://github.com/kubernetes/ingress-nginx/pull/8781) Bump github.com/stretchr/testify from 1.7.5 to 1.8.0"
-    - "[8778](https://github.com/kubernetes/ingress-nginx/pull/8778) chore: remove stable.txt from release process"
-    - "[8775](https://github.com/kubernetes/ingress-nginx/pull/8775) Remove stable"
-    - "[8773](https://github.com/kubernetes/ingress-nginx/pull/8773) Bump github/codeql-action from 2.1.14 to 2.1.15"
-    - "[8772](https://github.com/kubernetes/ingress-nginx/pull/8772) Bump ossf/scorecard-action from 1.1.1 to 1.1.2"
-    - "[8771](https://github.com/kubernetes/ingress-nginx/pull/8771) fix bullet md format"
-    - "[8770](https://github.com/kubernetes/ingress-nginx/pull/8770) Add condition for monitoring.coreos.com/v1 API"
-    - "[8769](https://github.com/kubernetes/ingress-nginx/pull/8769) Fix typos and add links to developer guide"
-    - "[8767](https://github.com/kubernetes/ingress-nginx/pull/8767) change v1.2.0 to v1.2.1 in deploy doc URLs"
-    - "[8765](https://github.com/kubernetes/ingress-nginx/pull/8765) Bump github/codeql-action from 1.0.26 to 2.1.14"
-    - "[8752](https://github.com/kubernetes/ingress-nginx/pull/8752) Bump github.com/spf13/cobra from 1.4.0 to 1.5.0"
-    - "[8751](https://github.com/kubernetes/ingress-nginx/pull/8751) Bump github.com/stretchr/testify from 1.7.2 to 1.7.5"
-    - "[8750](https://github.com/kubernetes/ingress-nginx/pull/8750) added announcement"
-    - "[8740](https://github.com/kubernetes/ingress-nginx/pull/8740) change sha e2etestrunner and echoserver"
-    - "[8738](https://github.com/kubernetes/ingress-nginx/pull/8738) Update docs to make it easier for noobs to follow step by step"
-    - "[8737](https://github.com/kubernetes/ingress-nginx/pull/8737) updated baseimage sha"
-    - "[8736](https://github.com/kubernetes/ingress-nginx/pull/8736) set ld-musl-path"
-    - "[8733](https://github.com/kubernetes/ingress-nginx/pull/8733) feat: migrate leaderelection lock to leases"
-    - "[8726](https://github.com/kubernetes/ingress-nginx/pull/8726) prometheus metric: upstream_latency_seconds"
-    - "[8720](https://github.com/kubernetes/ingress-nginx/pull/8720) Ci pin deps"
-    - "[8719](https://github.com/kubernetes/ingress-nginx/pull/8719) Working OpenTelemetry sidecar (base nginx image)"
-    - "[8714](https://github.com/kubernetes/ingress-nginx/pull/8714) Create Openssf scorecard"
-    - "[8708](https://github.com/kubernetes/ingress-nginx/pull/8708) Bump github.com/prometheus/common from 0.34.0 to 0.35.0"
-    - "[8703](https://github.com/kubernetes/ingress-nginx/pull/8703) Bump actions/dependency-review-action from 1 to 2"
-    - "[8701](https://github.com/kubernetes/ingress-nginx/pull/8701) Fix several typos"
-    - "[8699](https://github.com/kubernetes/ingress-nginx/pull/8699) fix the gosec test and a make target for it"
-    - "[8698](https://github.com/kubernetes/ingress-nginx/pull/8698) Bump actions/upload-artifact from 2.3.1 to 3.1.0"
-    - "[8697](https://github.com/kubernetes/ingress-nginx/pull/8697) Bump actions/setup-go from 2.2.0 to 3.2.0"
-    - "[8695](https://github.com/kubernetes/ingress-nginx/pull/8695) Bump actions/download-artifact from 2 to 3"
-    - "[8694](https://github.com/kubernetes/ingress-nginx/pull/8694) Bump crazy-max/ghaction-docker-buildx from 1.6.2 to 3.3.1"
+    - "[8896](https://github.com/kubernetes/ingress-nginx/pull/8896) updated to new images built today"
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 942cf0467..212b4f324 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.2.0](https://img.shields.io/badge/Version-4.2.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.3.0](https://img.shields.io/badge/AppVersion-1.3.0-informational?style=flat-square)
+![Version: 4.2.1](https://img.shields.io/badge/Version-4.2.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.3.0](https://img.shields.io/badge/AppVersion-1.3.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -252,11 +252,11 @@ Kubernetes: `>=1.20.0-0`
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
 | controller.admissionWebhooks.patch.fsGroup | int | `2000` |  |
-| controller.admissionWebhooks.patch.image.digest | string | `"sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660"` |  |
+| controller.admissionWebhooks.patch.image.digest | string | `"sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.admissionWebhooks.patch.image.registry | string | `"registry.k8s.io"` |  |
-| controller.admissionWebhooks.patch.image.tag | string | `"v1.1.1"` |  |
+| controller.admissionWebhooks.patch.image.tag | string | `"v1.3.0"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
 | controller.admissionWebhooks.patch.podAnnotations | object | `{}` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index cddc2c742..fed3a5b05 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -580,7 +580,7 @@ controller:
   extraModules: []
   ## Modules, which are mounted into the core nginx image
   # - name: opentelemetry
-  #   image: registry.k8s.io/ingress-nginx/opentelemetry:v20220415-controller-v1.2.0-beta.0-2-g81c2afd97@sha256:ce61e2cf0b347dffebb2dcbf57c33891d2217c1bad9c0959c878e5be671ef941
+  #   image: registry.k8s.io/ingress-nginx/opentelemetry:v20220801-g00ee51f09@sha256:482562feba02ad178411efc284f8eb803a185e3ea5588b6111ccbc20b816b427
   #
   # The image must contain a `/usr/local/bin/init_module.sh` executable, which
   # will be executed as initContainers, to move its config files within the
@@ -645,8 +645,8 @@ controller:
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
         ## repository:
-        tag: v1.1.1
-        digest: sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        tag: v1.3.0
+        digest: sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         pullPolicy: IfNotPresent
       # -- Provide a priority class name to the webhook patching job
       ##
diff --git a/deploy/static/provider/aws/1.20/deploy.yaml b/deploy/static/provider/aws/1.20/deploy.yaml
index dac9dcc5f..0c826fbe4 100644
--- a/deploy/static/provider/aws/1.20/deploy.yaml
+++ b/deploy/static/provider/aws/1.20/deploy.yaml
@@ -533,7 +533,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -582,7 +582,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/1.21/deploy.yaml b/deploy/static/provider/aws/1.21/deploy.yaml
index b681014f8..300ca7b01 100644
--- a/deploy/static/provider/aws/1.21/deploy.yaml
+++ b/deploy/static/provider/aws/1.21/deploy.yaml
@@ -536,7 +536,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -585,7 +585,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/1.22/deploy.yaml b/deploy/static/provider/aws/1.22/deploy.yaml
index b681014f8..300ca7b01 100644
--- a/deploy/static/provider/aws/1.22/deploy.yaml
+++ b/deploy/static/provider/aws/1.22/deploy.yaml
@@ -536,7 +536,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -585,7 +585,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/1.23/deploy.yaml b/deploy/static/provider/aws/1.23/deploy.yaml
index b681014f8..300ca7b01 100644
--- a/deploy/static/provider/aws/1.23/deploy.yaml
+++ b/deploy/static/provider/aws/1.23/deploy.yaml
@@ -536,7 +536,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -585,7 +585,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/1.24/deploy.yaml b/deploy/static/provider/aws/1.24/deploy.yaml
index b681014f8..300ca7b01 100644
--- a/deploy/static/provider/aws/1.24/deploy.yaml
+++ b/deploy/static/provider/aws/1.24/deploy.yaml
@@ -536,7 +536,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -585,7 +585,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index dac9dcc5f..0c826fbe4 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -533,7 +533,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -582,7 +582,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
index 90ad0c5d8..0c84b2141 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
@@ -545,7 +545,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -594,7 +594,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
index 668494a97..7e7ce8f22 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
@@ -548,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -597,7 +597,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
index 668494a97..7e7ce8f22 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
@@ -548,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -597,7 +597,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
index 668494a97..7e7ce8f22 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
@@ -548,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -597,7 +597,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.24/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.24/deploy.yaml
index 668494a97..7e7ce8f22 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.24/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/1.24/deploy.yaml
@@ -548,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -597,7 +597,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 90ad0c5d8..0c84b2141 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -545,7 +545,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -594,7 +594,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/baremetal/1.20/deploy.yaml b/deploy/static/provider/baremetal/1.20/deploy.yaml
index bd28be30a..4867382fd 100644
--- a/deploy/static/provider/baremetal/1.20/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.20/deploy.yaml
@@ -527,7 +527,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -576,7 +576,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/baremetal/1.21/deploy.yaml b/deploy/static/provider/baremetal/1.21/deploy.yaml
index d754ed501..e23e4b7f3 100644
--- a/deploy/static/provider/baremetal/1.21/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.21/deploy.yaml
@@ -530,7 +530,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -579,7 +579,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/baremetal/1.22/deploy.yaml b/deploy/static/provider/baremetal/1.22/deploy.yaml
index d754ed501..e23e4b7f3 100644
--- a/deploy/static/provider/baremetal/1.22/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.22/deploy.yaml
@@ -530,7 +530,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -579,7 +579,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/baremetal/1.23/deploy.yaml b/deploy/static/provider/baremetal/1.23/deploy.yaml
index d754ed501..e23e4b7f3 100644
--- a/deploy/static/provider/baremetal/1.23/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.23/deploy.yaml
@@ -530,7 +530,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -579,7 +579,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/baremetal/1.24/deploy.yaml b/deploy/static/provider/baremetal/1.24/deploy.yaml
index d754ed501..e23e4b7f3 100644
--- a/deploy/static/provider/baremetal/1.24/deploy.yaml
+++ b/deploy/static/provider/baremetal/1.24/deploy.yaml
@@ -530,7 +530,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -579,7 +579,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index bd28be30a..4867382fd 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -527,7 +527,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -576,7 +576,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/cloud/1.20/deploy.yaml b/deploy/static/provider/cloud/1.20/deploy.yaml
index 460ab898c..583e113ca 100644
--- a/deploy/static/provider/cloud/1.20/deploy.yaml
+++ b/deploy/static/provider/cloud/1.20/deploy.yaml
@@ -529,7 +529,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -578,7 +578,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/cloud/1.21/deploy.yaml b/deploy/static/provider/cloud/1.21/deploy.yaml
index 418556f55..77407e8a9 100644
--- a/deploy/static/provider/cloud/1.21/deploy.yaml
+++ b/deploy/static/provider/cloud/1.21/deploy.yaml
@@ -532,7 +532,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -581,7 +581,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/cloud/1.22/deploy.yaml b/deploy/static/provider/cloud/1.22/deploy.yaml
index 418556f55..77407e8a9 100644
--- a/deploy/static/provider/cloud/1.22/deploy.yaml
+++ b/deploy/static/provider/cloud/1.22/deploy.yaml
@@ -532,7 +532,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -581,7 +581,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/cloud/1.23/deploy.yaml b/deploy/static/provider/cloud/1.23/deploy.yaml
index 418556f55..77407e8a9 100644
--- a/deploy/static/provider/cloud/1.23/deploy.yaml
+++ b/deploy/static/provider/cloud/1.23/deploy.yaml
@@ -532,7 +532,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -581,7 +581,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/cloud/1.24/deploy.yaml b/deploy/static/provider/cloud/1.24/deploy.yaml
index 418556f55..77407e8a9 100644
--- a/deploy/static/provider/cloud/1.24/deploy.yaml
+++ b/deploy/static/provider/cloud/1.24/deploy.yaml
@@ -532,7 +532,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -581,7 +581,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 460ab898c..583e113ca 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -529,7 +529,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -578,7 +578,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/do/1.20/deploy.yaml b/deploy/static/provider/do/1.20/deploy.yaml
index 1008a916d..290f57345 100644
--- a/deploy/static/provider/do/1.20/deploy.yaml
+++ b/deploy/static/provider/do/1.20/deploy.yaml
@@ -532,7 +532,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -581,7 +581,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/do/1.21/deploy.yaml b/deploy/static/provider/do/1.21/deploy.yaml
index 808fe8ad3..e35d1d7ca 100644
--- a/deploy/static/provider/do/1.21/deploy.yaml
+++ b/deploy/static/provider/do/1.21/deploy.yaml
@@ -535,7 +535,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -584,7 +584,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/do/1.22/deploy.yaml b/deploy/static/provider/do/1.22/deploy.yaml
index 808fe8ad3..e35d1d7ca 100644
--- a/deploy/static/provider/do/1.22/deploy.yaml
+++ b/deploy/static/provider/do/1.22/deploy.yaml
@@ -535,7 +535,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -584,7 +584,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/do/1.23/deploy.yaml b/deploy/static/provider/do/1.23/deploy.yaml
index 808fe8ad3..e35d1d7ca 100644
--- a/deploy/static/provider/do/1.23/deploy.yaml
+++ b/deploy/static/provider/do/1.23/deploy.yaml
@@ -535,7 +535,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -584,7 +584,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/do/1.24/deploy.yaml b/deploy/static/provider/do/1.24/deploy.yaml
index 808fe8ad3..e35d1d7ca 100644
--- a/deploy/static/provider/do/1.24/deploy.yaml
+++ b/deploy/static/provider/do/1.24/deploy.yaml
@@ -535,7 +535,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -584,7 +584,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 1008a916d..290f57345 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -532,7 +532,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -581,7 +581,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/exoscale/1.20/deploy.yaml b/deploy/static/provider/exoscale/1.20/deploy.yaml
index 090677552..4b35cf267 100644
--- a/deploy/static/provider/exoscale/1.20/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.20/deploy.yaml
@@ -538,7 +538,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -587,7 +587,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/exoscale/1.21/deploy.yaml b/deploy/static/provider/exoscale/1.21/deploy.yaml
index df8c8e114..fe9a2de7f 100644
--- a/deploy/static/provider/exoscale/1.21/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.21/deploy.yaml
@@ -541,7 +541,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -590,7 +590,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/exoscale/1.22/deploy.yaml b/deploy/static/provider/exoscale/1.22/deploy.yaml
index df8c8e114..fe9a2de7f 100644
--- a/deploy/static/provider/exoscale/1.22/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.22/deploy.yaml
@@ -541,7 +541,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -590,7 +590,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/exoscale/1.23/deploy.yaml b/deploy/static/provider/exoscale/1.23/deploy.yaml
index df8c8e114..fe9a2de7f 100644
--- a/deploy/static/provider/exoscale/1.23/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.23/deploy.yaml
@@ -541,7 +541,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -590,7 +590,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/exoscale/1.24/deploy.yaml b/deploy/static/provider/exoscale/1.24/deploy.yaml
index df8c8e114..fe9a2de7f 100644
--- a/deploy/static/provider/exoscale/1.24/deploy.yaml
+++ b/deploy/static/provider/exoscale/1.24/deploy.yaml
@@ -541,7 +541,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -590,7 +590,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 090677552..4b35cf267 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -538,7 +538,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -587,7 +587,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/kind/1.20/deploy.yaml b/deploy/static/provider/kind/1.20/deploy.yaml
index c0a36a9ba..0a8c6ba1c 100644
--- a/deploy/static/provider/kind/1.20/deploy.yaml
+++ b/deploy/static/provider/kind/1.20/deploy.yaml
@@ -543,7 +543,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -592,7 +592,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/kind/1.21/deploy.yaml b/deploy/static/provider/kind/1.21/deploy.yaml
index 872334ee8..5ddb9c166 100644
--- a/deploy/static/provider/kind/1.21/deploy.yaml
+++ b/deploy/static/provider/kind/1.21/deploy.yaml
@@ -546,7 +546,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -595,7 +595,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/kind/1.22/deploy.yaml b/deploy/static/provider/kind/1.22/deploy.yaml
index 872334ee8..5ddb9c166 100644
--- a/deploy/static/provider/kind/1.22/deploy.yaml
+++ b/deploy/static/provider/kind/1.22/deploy.yaml
@@ -546,7 +546,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -595,7 +595,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/kind/1.23/deploy.yaml b/deploy/static/provider/kind/1.23/deploy.yaml
index 872334ee8..5ddb9c166 100644
--- a/deploy/static/provider/kind/1.23/deploy.yaml
+++ b/deploy/static/provider/kind/1.23/deploy.yaml
@@ -546,7 +546,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -595,7 +595,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/kind/1.24/deploy.yaml b/deploy/static/provider/kind/1.24/deploy.yaml
index 872334ee8..5ddb9c166 100644
--- a/deploy/static/provider/kind/1.24/deploy.yaml
+++ b/deploy/static/provider/kind/1.24/deploy.yaml
@@ -546,7 +546,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -595,7 +595,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index c0a36a9ba..0a8c6ba1c 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -543,7 +543,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -592,7 +592,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/scw/1.20/deploy.yaml b/deploy/static/provider/scw/1.20/deploy.yaml
index 935d6f665..558caa6e7 100644
--- a/deploy/static/provider/scw/1.20/deploy.yaml
+++ b/deploy/static/provider/scw/1.20/deploy.yaml
@@ -532,7 +532,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -581,7 +581,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/scw/1.21/deploy.yaml b/deploy/static/provider/scw/1.21/deploy.yaml
index fbfab1db6..2dba2dc51 100644
--- a/deploy/static/provider/scw/1.21/deploy.yaml
+++ b/deploy/static/provider/scw/1.21/deploy.yaml
@@ -535,7 +535,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -584,7 +584,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/scw/1.22/deploy.yaml b/deploy/static/provider/scw/1.22/deploy.yaml
index fbfab1db6..2dba2dc51 100644
--- a/deploy/static/provider/scw/1.22/deploy.yaml
+++ b/deploy/static/provider/scw/1.22/deploy.yaml
@@ -535,7 +535,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -584,7 +584,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/scw/1.23/deploy.yaml b/deploy/static/provider/scw/1.23/deploy.yaml
index fbfab1db6..2dba2dc51 100644
--- a/deploy/static/provider/scw/1.23/deploy.yaml
+++ b/deploy/static/provider/scw/1.23/deploy.yaml
@@ -535,7 +535,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -584,7 +584,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/scw/1.24/deploy.yaml b/deploy/static/provider/scw/1.24/deploy.yaml
index fbfab1db6..2dba2dc51 100644
--- a/deploy/static/provider/scw/1.24/deploy.yaml
+++ b/deploy/static/provider/scw/1.24/deploy.yaml
@@ -535,7 +535,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -584,7 +584,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 935d6f665..558caa6e7 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -532,7 +532,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -581,7 +581,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1@sha256:64d8c73dca984af206adf9d6d7e46aa550362b1d7a01f3a0a91b20cc67868660
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
index 2cf866c11..3d93935e4 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
@@ -6,7 +6,7 @@ defaultBackend:
   image:
     registry: registry.k8s.io
     image: ingress-nginx/nginx-errors
-    tag: "0.48.1"
+    tag: "1.3.0"
   extraVolumes:
   - name: custom-error-pages
     configMap:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.yaml b/docs/examples/customization/custom-errors/custom-default-backend.yaml
index fb4f899a0..318e318f5 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.yaml
@@ -36,7 +36,7 @@ spec:
     spec:
       containers:
       - name: nginx-error-server
-        image: registry.k8s.io/ingress-nginx/nginx-errors:0.49.0
+        image: registry.k8s.io/ingress-nginx/nginx-errors:1.3.0
         ports:
         - containerPort: 8080
         # Setting the environment variable DEBUG we can see the headers sent 
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 9a81e06cc..a9c6db7c5 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE="k8s.gcr.io/ingress-nginx/e2e-test-runner:v20220726-controller-v1.3.0-29-gfe116d62c@sha256:0a199f7b8d4e84026b08c989d9058f3c9b7936af4e2487a6be1ff9077b684d0c"
+E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20220801-g00ee51f09@sha256:795923c427f6dda855338c654448b4348fb845db152fbcad9cd8d186385d01c4"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index a87800e0a..7d79f1bff 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -78,7 +78,7 @@ func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
 		o(options)
 	}
 
-	deployment := newDeployment(options.name, options.namespace, "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:05948cf43aa41050943b2c887adcc2f7630893b391c1201e99a6c12ed06ba51b", 80, int32(options.replicas),
+	deployment := newDeployment(options.name, options.namespace, "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:f45fb156e1488ae29aa5e98d2faf8731c79bc5a19c2f39a3c4069566ba629a78", 80, int32(options.replicas),
 		nil,
 		[]corev1.VolumeMount{},
 		[]corev1.Volume{},
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index af84babe9..83eeab46e 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -292,7 +292,7 @@ func ocspserveDeployment(namespace string) (*appsv1.Deployment, *corev1.Service)
 						Containers: []corev1.Container{
 							{
 								Name:  name,
-								Image: "registry.k8s.io/ingress-nginx/e2e-test-cfssl@sha256:be2f69024f7b7053f35b86677de16bdaa5d3ff0f81b17581ef0b0c6804188b03",
+								Image: "registry.k8s.io/ingress-nginx/e2e-test-cfssl@sha256:c0bd134f1c7190079180e6d4fa2ba64c049961a49b96db20aa39fabc896d26d5",
 								Command: []string{
 									"/bin/bash",
 									"-c",

From 13639b5ad7fea7c46e67dfd384af6c3c04b03c2c Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 1 Aug 2022 09:05:26 -0400
Subject: [PATCH 0303/1641] add scanning to CI

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/vulnerability-scans.yaml | 82 ++++++++++++++++++++++
 1 file changed, 82 insertions(+)
 create mode 100644 .github/workflows/vulnerability-scans.yaml

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
new file mode 100644
index 000000000..f7130b980
--- /dev/null
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -0,0 +1,82 @@
+# This workflow uses actions that are not certified by GitHub.
+# They are provided by a third-party and are governed by
+# separate terms of service, privacy policy, and support
+# documentation.
+
+name: Vulnerability Scan
+
+on:
+  workflow_dispatch:
+  release:
+  push:
+    branches: [ "main" ]
+  pull_request:
+    # The branches below must be a subset of the branches above
+    branches: [ "main" ]
+  schedule:
+    - cron: '00 9 * * 1'
+
+permissions:
+  contents: read
+
+jobs:
+
+  version:
+    runs-on: ubuntu-latest
+    outputs:
+      versions: ${{ steps.version.outputs.TAGS }}
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
+        with:
+          fetch-depth: 0
+
+      - name: Latest Tag
+        id: version
+        shell: bash
+        run: |
+          readarray -t TAGS_ARRAY <<<"$(git tag --list 'controller-v*.*.*' --sort=-version:refname | grep -v 'beta\|alpha')"
+          echo "${TAGS_ARRAY[0]},${TAGS_ARRAY[1]},${TAGS_ARRAY[2]}"
+          TAGS_JSON="[\"${TAGS_ARRAY[0]}\",\"${TAGS_ARRAY[1]}\",\"${TAGS_ARRAY[2]}\"]"
+          echo "${TAGS_JSON}"
+          echo "::set-output name=TAGS::${TAGS_JSON}"
+
+  scan:
+    runs-on: ubuntu-latest
+    needs:     version
+    strategy:
+      matrix:
+        versions: ${{ fromJSON(needs.version.outputs.versions) }}
+    steps:
+
+    - shell: bash
+      id: test
+      run: echo "Scanning registry.k8s.io/ingress-nginx/controller@${{ matrix.versions }}"
+
+    - name: Scan image with AquaSec/Trivy
+      id: scan
+      if: inputs.RUN_TRIVY == 'true'
+      uses: aquasecurity/trivy-action@0105373003c89c494a3f436bd5efc57f3ac1ca20 #v0.5.1
+      with:
+        image-ref: registry.k8s.io/ingress-nginx/controller@${{ matrix.versions }}
+        format: 'sarif'
+        output: trivy-results-${{ matrix.versions }}.sarif
+        exit-code: 0
+        vuln-type: 'os,library'
+        severity: 'CRITICAL,HIGH,MEDIUM,LOW,UNKNOWN'
+
+    # This step checks out a copy of your repository.
+    - name: Upload SARIF file
+      uses: github/codeql-action/upload-sarif@0c670bbf0414f39666df6ce8e718ec5662c21e03
+      with:
+        # Path to SARIF file relative to the root of the repository
+        sarif_file: trivy-results-${{ matrix.versions }}.sarif
+
+    - name: Image Vulnerability scan output
+      env:
+        TRIVY_COUNT: ${{ steps.trivy-scan.outputs.TRIVY_COUNT }}
+      run: |
+        echo "Image Vulnerability scan output" >> $GITHUB_STEP_SUMMARY
+        echo "Image ID: registry.k8s.io/ingress-nginx/controller@${{ matrix.versions }}" >> $GITHUB_STEP_SUMMARY
+        echo "" >> $GITHUB_STEP_SUMMARY
+        echo "Trivy Count: $TRIVY_COUNT" >> $GITHUB_STEP_SUMMARY

From 069ac3a0d64f44b3206f2a3745c6a518284a1153 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 8 Aug 2022 15:40:06 -0700
Subject: [PATCH 0304/1641] remove var

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/vulnerability-scans.yaml | 1 -
 1 file changed, 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index f7130b980..3bba363da 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -55,7 +55,6 @@ jobs:
 
     - name: Scan image with AquaSec/Trivy
       id: scan
-      if: inputs.RUN_TRIVY == 'true'
       uses: aquasecurity/trivy-action@0105373003c89c494a3f436bd5efc57f3ac1ca20 #v0.5.1
       with:
         image-ref: registry.k8s.io/ingress-nginx/controller@${{ matrix.versions }}

From 932320cf44ee4fba253f041f70083eaca558a9d2 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 8 Aug 2022 16:01:27 -0700
Subject: [PATCH 0305/1641] need short tags

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/vulnerability-scans.yaml | 14 +++++++++++---
 1 file changed, 11 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 3bba363da..ee4a5b145 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -36,8 +36,16 @@ jobs:
         shell: bash
         run: |
           readarray -t TAGS_ARRAY <<<"$(git tag --list 'controller-v*.*.*' --sort=-version:refname | grep -v 'beta\|alpha')"
-          echo "${TAGS_ARRAY[0]},${TAGS_ARRAY[1]},${TAGS_ARRAY[2]}"
-          TAGS_JSON="[\"${TAGS_ARRAY[0]}\",\"${TAGS_ARRAY[1]}\",\"${TAGS_ARRAY[2]}\"]"
+          FULL_TAGS=(${TAGS_ARRAY[0]} ${TAGS_ARRAY[1]} ${TAGS_ARRAY[2]})
+          SHORT_TAGS=()
+          for i in ${FULL_TAGS[@]}
+          do
+            echo "tag: $i"
+            short=$(echo "$i" | cut -d - -f 2)
+            SHORT_TAGS+=($short)
+          done
+          echo "${SHORT_TAGS[0]},${SHORT_TAGS[1]},${SHORT_TAGS[2]}"
+          TAGS_JSON="[\"${SHORT_TAGS[0]}\",\"${SHORT_TAGS[1]}\",\"${SHORT_TAGS[2]}\"]"
           echo "${TAGS_JSON}"
           echo "::set-output name=TAGS::${TAGS_JSON}"
 
@@ -57,7 +65,7 @@ jobs:
       id: scan
       uses: aquasecurity/trivy-action@0105373003c89c494a3f436bd5efc57f3ac1ca20 #v0.5.1
       with:
-        image-ref: registry.k8s.io/ingress-nginx/controller@${{ matrix.versions }}
+        image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
         format: 'sarif'
         output: trivy-results-${{ matrix.versions }}.sarif
         exit-code: 0

From ebb83086540f35c453dd53ee8ac95a00a883df91 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 8 Aug 2022 16:17:24 -0700
Subject: [PATCH 0306/1641] it seems sarif upload needs git information

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/vulnerability-scans.yaml | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index ee4a5b145..8e588a6d6 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -72,6 +72,9 @@ jobs:
         vuln-type: 'os,library'
         severity: 'CRITICAL,HIGH,MEDIUM,LOW,UNKNOWN'
 
+    - name: Checkout code
+      uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
+
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
       uses: github/codeql-action/upload-sarif@0c670bbf0414f39666df6ce8e718ec5662c21e03
@@ -79,10 +82,11 @@ jobs:
         # Path to SARIF file relative to the root of the repository
         sarif_file: trivy-results-${{ matrix.versions }}.sarif
 
-    - name: Image Vulnerability scan output
-      env:
-        TRIVY_COUNT: ${{ steps.trivy-scan.outputs.TRIVY_COUNT }}
+    - name: Vulz Count
+      shell: bash
       run: |
+        TRIVY_COUNT=$(cat trivy-results-${{ matrix.versions }}.sarif | jq '.runs[0].results | length')
+        echo "TRIVY_COUNT: $TRIVY_COUNT"
         echo "Image Vulnerability scan output" >> $GITHUB_STEP_SUMMARY
         echo "Image ID: registry.k8s.io/ingress-nginx/controller@${{ matrix.versions }}" >> $GITHUB_STEP_SUMMARY
         echo "" >> $GITHUB_STEP_SUMMARY

From 9162fe0aa82996ca0e4988833c0d3d5626123e03 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 8 Aug 2022 16:39:32 -0700
Subject: [PATCH 0307/1641] fix permissions

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/vulnerability-scans.yaml | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 8e588a6d6..2f3374265 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -18,9 +18,9 @@ on:
 
 permissions:
   contents: read
+  security-events: write
 
 jobs:
-
   version:
     runs-on: ubuntu-latest
     outputs:
@@ -56,7 +56,6 @@ jobs:
       matrix:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
-
     - shell: bash
       id: test
       run: echo "Scanning registry.k8s.io/ingress-nginx/controller@${{ matrix.versions }}"

From e55a84e8a031fe665e2aecac57ac4668b7debf21 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 8 Aug 2022 16:40:30 -0700
Subject: [PATCH 0308/1641] testing output of sarif file

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/vulnerability-scans.yaml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 2f3374265..bcf6921a5 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -71,6 +71,10 @@ jobs:
         vuln-type: 'os,library'
         severity: 'CRITICAL,HIGH,MEDIUM,LOW,UNKNOWN'
 
+    - name: Output Sarif File
+      shell: bash
+      run: cat trivy-results-${{ matrix.versions }}.sarif
+
     - name: Checkout code
       uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
 

From 1d2fa93856ac89ffeee621ec0b8228cb49b93396 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 8 Aug 2022 17:04:59 -0700
Subject: [PATCH 0309/1641] sarif upload issues

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/vulnerability-scans.yaml | 15 ++++++++-------
 1 file changed, 8 insertions(+), 7 deletions(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index bcf6921a5..3321e1851 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -56,6 +56,9 @@ jobs:
       matrix:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
+    - name: Checkout code
+      uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
+
     - shell: bash
       id: test
       run: echo "Scanning registry.k8s.io/ingress-nginx/controller@${{ matrix.versions }}"
@@ -66,29 +69,27 @@ jobs:
       with:
         image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
         format: 'sarif'
-        output: trivy-results-${{ matrix.versions }}.sarif
+        output: ${{ github.workspace }}/trivy-results-${{ matrix.versions }}.sarif
         exit-code: 0
         vuln-type: 'os,library'
         severity: 'CRITICAL,HIGH,MEDIUM,LOW,UNKNOWN'
 
     - name: Output Sarif File
       shell: bash
-      run: cat trivy-results-${{ matrix.versions }}.sarif
-
-    - name: Checkout code
-      uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
+      run: cat ${{ github.workspace }}/trivy-results-${{ matrix.versions }}.sarif
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
       uses: github/codeql-action/upload-sarif@0c670bbf0414f39666df6ce8e718ec5662c21e03
       with:
+        token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository
-        sarif_file: trivy-results-${{ matrix.versions }}.sarif
+        sarif_file: ${{ github.workspace }}/trivy-results-${{ matrix.versions }}.sarif
 
     - name: Vulz Count
       shell: bash
       run: |
-        TRIVY_COUNT=$(cat trivy-results-${{ matrix.versions }}.sarif | jq '.runs[0].results | length')
+        TRIVY_COUNT=$(cat ${{ github.workspace }}/trivy-results-${{ matrix.versions }}.sarif | jq '.runs[0].results | length')
         echo "TRIVY_COUNT: $TRIVY_COUNT"
         echo "Image Vulnerability scan output" >> $GITHUB_STEP_SUMMARY
         echo "Image ID: registry.k8s.io/ingress-nginx/controller@${{ matrix.versions }}" >> $GITHUB_STEP_SUMMARY

From 0c343c8a7778d7a588bfc07aff62786bb58dd97f Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 8 Aug 2022 17:08:21 -0700
Subject: [PATCH 0310/1641] stesting pathing

---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 3321e1851..811063bb5 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -69,7 +69,7 @@ jobs:
       with:
         image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
         format: 'sarif'
-        output: ${{ github.workspace }}/trivy-results-${{ matrix.versions }}.sarif
+        output: trivy-results-${{ matrix.versions }}.sarif
         exit-code: 0
         vuln-type: 'os,library'
         severity: 'CRITICAL,HIGH,MEDIUM,LOW,UNKNOWN'

From ead3c2bc95c6852b97139d2d80bff1c4a9c565a5 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 8 Aug 2022 17:14:13 -0700
Subject: [PATCH 0311/1641] remove on pushes

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/vulnerability-scans.yaml | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 811063bb5..82cc99888 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -8,11 +8,6 @@ name: Vulnerability Scan
 on:
   workflow_dispatch:
   release:
-  push:
-    branches: [ "main" ]
-  pull_request:
-    # The branches below must be a subset of the branches above
-    branches: [ "main" ]
   schedule:
     - cron: '00 9 * * 1'
 

From c85765a015ea6709d161eccd42ef6134981c04b4 Mon Sep 17 00:00:00 2001
From: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Date: Tue, 9 Aug 2022 20:30:37 +0300
Subject: [PATCH 0312/1641] Improve `hack/generate-deploy-scripts.sh` to no
 longer generate versioned manifests (#8877)

* feat: no longer generate versioned manifests

Updates the script to no longer generate multiple versioned deploy manifests.
The script will only generate the manifests for one given version of
Kubernetes.

See: https://github.com/kubernetes/ingress-nginx/issues/8824

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>

* fix: delete unnecessary versioned deploy manifests

See: https://github.com/kubernetes/ingress-nginx/issues/8824

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
---
 deploy/static/provider/aws/1.20/deploy.yaml   | 643 -----------------
 .../provider/aws/1.20/kustomization.yaml      |  11 -
 deploy/static/provider/aws/1.21/deploy.yaml   | 646 -----------------
 .../provider/aws/1.21/kustomization.yaml      |  11 -
 deploy/static/provider/aws/1.22/deploy.yaml   | 646 -----------------
 .../provider/aws/1.22/kustomization.yaml      |  11 -
 deploy/static/provider/aws/1.23/deploy.yaml   | 646 -----------------
 .../provider/aws/1.23/kustomization.yaml      |  11 -
 deploy/static/provider/aws/1.24/deploy.yaml   | 646 -----------------
 .../provider/aws/1.24/kustomization.yaml      |  11 -
 deploy/static/provider/aws/deploy.yaml        |   3 +
 .../nlb-with-tls-termination/1.20/deploy.yaml | 655 -----------------
 .../1.20/kustomization.yaml                   |  11 -
 .../nlb-with-tls-termination/1.21/deploy.yaml | 658 ------------------
 .../1.21/kustomization.yaml                   |  11 -
 .../nlb-with-tls-termination/1.22/deploy.yaml | 658 ------------------
 .../1.22/kustomization.yaml                   |  11 -
 .../nlb-with-tls-termination/1.23/deploy.yaml | 658 ------------------
 .../1.23/kustomization.yaml                   |  11 -
 .../nlb-with-tls-termination/1.24/deploy.yaml | 658 ------------------
 .../1.24/kustomization.yaml                   |  11 -
 .../aws/nlb-with-tls-termination/deploy.yaml  |   3 +
 .../provider/baremetal/1.20/deploy.yaml       | 637 -----------------
 .../baremetal/1.20/kustomization.yaml         |  11 -
 .../provider/baremetal/1.21/deploy.yaml       | 640 -----------------
 .../baremetal/1.21/kustomization.yaml         |  11 -
 .../provider/baremetal/1.22/deploy.yaml       | 640 -----------------
 .../baremetal/1.22/kustomization.yaml         |  11 -
 .../provider/baremetal/1.23/deploy.yaml       | 640 -----------------
 .../baremetal/1.23/kustomization.yaml         |  11 -
 .../provider/baremetal/1.24/deploy.yaml       | 640 -----------------
 .../baremetal/1.24/kustomization.yaml         |  11 -
 deploy/static/provider/baremetal/deploy.yaml  |   3 +
 deploy/static/provider/cloud/1.20/deploy.yaml | 639 -----------------
 .../provider/cloud/1.20/kustomization.yaml    |  11 -
 deploy/static/provider/cloud/1.21/deploy.yaml | 642 -----------------
 .../provider/cloud/1.21/kustomization.yaml    |  11 -
 deploy/static/provider/cloud/1.22/deploy.yaml | 642 -----------------
 .../provider/cloud/1.22/kustomization.yaml    |  11 -
 deploy/static/provider/cloud/1.23/deploy.yaml | 642 -----------------
 .../provider/cloud/1.23/kustomization.yaml    |  11 -
 deploy/static/provider/cloud/1.24/deploy.yaml | 642 -----------------
 .../provider/cloud/1.24/kustomization.yaml    |  11 -
 deploy/static/provider/cloud/deploy.yaml      |   3 +
 deploy/static/provider/do/1.20/deploy.yaml    | 643 -----------------
 .../provider/do/1.20/kustomization.yaml       |  11 -
 deploy/static/provider/do/1.21/deploy.yaml    | 646 -----------------
 .../provider/do/1.21/kustomization.yaml       |  11 -
 deploy/static/provider/do/1.22/deploy.yaml    | 646 -----------------
 .../provider/do/1.22/kustomization.yaml       |  11 -
 deploy/static/provider/do/1.23/deploy.yaml    | 646 -----------------
 .../provider/do/1.23/kustomization.yaml       |  11 -
 deploy/static/provider/do/1.24/deploy.yaml    | 646 -----------------
 .../provider/do/1.24/kustomization.yaml       |  11 -
 deploy/static/provider/do/deploy.yaml         |   3 +
 .../static/provider/exoscale/1.20/deploy.yaml | 648 -----------------
 .../provider/exoscale/1.20/kustomization.yaml |  11 -
 .../static/provider/exoscale/1.21/deploy.yaml | 651 -----------------
 .../provider/exoscale/1.21/kustomization.yaml |  11 -
 .../static/provider/exoscale/1.22/deploy.yaml | 651 -----------------
 .../provider/exoscale/1.22/kustomization.yaml |  11 -
 .../static/provider/exoscale/1.23/deploy.yaml | 651 -----------------
 .../provider/exoscale/1.23/kustomization.yaml |  11 -
 .../static/provider/exoscale/1.24/deploy.yaml | 651 -----------------
 .../provider/exoscale/1.24/kustomization.yaml |  11 -
 deploy/static/provider/exoscale/deploy.yaml   |   3 +
 deploy/static/provider/kind/1.20/deploy.yaml  | 653 -----------------
 .../provider/kind/1.20/kustomization.yaml     |  11 -
 deploy/static/provider/kind/1.21/deploy.yaml  | 656 -----------------
 .../provider/kind/1.21/kustomization.yaml     |  11 -
 deploy/static/provider/kind/1.22/deploy.yaml  | 656 -----------------
 .../provider/kind/1.22/kustomization.yaml     |  11 -
 deploy/static/provider/kind/1.23/deploy.yaml  | 656 -----------------
 .../provider/kind/1.23/kustomization.yaml     |  11 -
 deploy/static/provider/kind/1.24/deploy.yaml  | 656 -----------------
 .../provider/kind/1.24/kustomization.yaml     |  11 -
 deploy/static/provider/kind/deploy.yaml       |   3 +
 deploy/static/provider/scw/1.20/deploy.yaml   | 642 -----------------
 .../provider/scw/1.20/kustomization.yaml      |  11 -
 deploy/static/provider/scw/1.21/deploy.yaml   | 645 -----------------
 .../provider/scw/1.21/kustomization.yaml      |  11 -
 deploy/static/provider/scw/1.22/deploy.yaml   | 645 -----------------
 .../provider/scw/1.22/kustomization.yaml      |  11 -
 deploy/static/provider/scw/1.23/deploy.yaml   | 645 -----------------
 .../provider/scw/1.23/kustomization.yaml      |  11 -
 deploy/static/provider/scw/1.24/deploy.yaml   | 645 -----------------
 .../provider/scw/1.24/kustomization.yaml      |  11 -
 deploy/static/provider/scw/deploy.yaml        |   3 +
 hack/generate-deploy-scripts.sh               |  57 +-
 89 files changed, 45 insertions(+), 26372 deletions(-)
 delete mode 100644 deploy/static/provider/aws/1.20/deploy.yaml
 delete mode 100644 deploy/static/provider/aws/1.20/kustomization.yaml
 delete mode 100644 deploy/static/provider/aws/1.21/deploy.yaml
 delete mode 100644 deploy/static/provider/aws/1.21/kustomization.yaml
 delete mode 100644 deploy/static/provider/aws/1.22/deploy.yaml
 delete mode 100644 deploy/static/provider/aws/1.22/kustomization.yaml
 delete mode 100644 deploy/static/provider/aws/1.23/deploy.yaml
 delete mode 100644 deploy/static/provider/aws/1.23/kustomization.yaml
 delete mode 100644 deploy/static/provider/aws/1.24/deploy.yaml
 delete mode 100644 deploy/static/provider/aws/1.24/kustomization.yaml
 delete mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
 delete mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.20/kustomization.yaml
 delete mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
 delete mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.21/kustomization.yaml
 delete mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
 delete mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.22/kustomization.yaml
 delete mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
 delete mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.23/kustomization.yaml
 delete mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.24/deploy.yaml
 delete mode 100644 deploy/static/provider/aws/nlb-with-tls-termination/1.24/kustomization.yaml
 delete mode 100644 deploy/static/provider/baremetal/1.20/deploy.yaml
 delete mode 100644 deploy/static/provider/baremetal/1.20/kustomization.yaml
 delete mode 100644 deploy/static/provider/baremetal/1.21/deploy.yaml
 delete mode 100644 deploy/static/provider/baremetal/1.21/kustomization.yaml
 delete mode 100644 deploy/static/provider/baremetal/1.22/deploy.yaml
 delete mode 100644 deploy/static/provider/baremetal/1.22/kustomization.yaml
 delete mode 100644 deploy/static/provider/baremetal/1.23/deploy.yaml
 delete mode 100644 deploy/static/provider/baremetal/1.23/kustomization.yaml
 delete mode 100644 deploy/static/provider/baremetal/1.24/deploy.yaml
 delete mode 100644 deploy/static/provider/baremetal/1.24/kustomization.yaml
 delete mode 100644 deploy/static/provider/cloud/1.20/deploy.yaml
 delete mode 100644 deploy/static/provider/cloud/1.20/kustomization.yaml
 delete mode 100644 deploy/static/provider/cloud/1.21/deploy.yaml
 delete mode 100644 deploy/static/provider/cloud/1.21/kustomization.yaml
 delete mode 100644 deploy/static/provider/cloud/1.22/deploy.yaml
 delete mode 100644 deploy/static/provider/cloud/1.22/kustomization.yaml
 delete mode 100644 deploy/static/provider/cloud/1.23/deploy.yaml
 delete mode 100644 deploy/static/provider/cloud/1.23/kustomization.yaml
 delete mode 100644 deploy/static/provider/cloud/1.24/deploy.yaml
 delete mode 100644 deploy/static/provider/cloud/1.24/kustomization.yaml
 delete mode 100644 deploy/static/provider/do/1.20/deploy.yaml
 delete mode 100644 deploy/static/provider/do/1.20/kustomization.yaml
 delete mode 100644 deploy/static/provider/do/1.21/deploy.yaml
 delete mode 100644 deploy/static/provider/do/1.21/kustomization.yaml
 delete mode 100644 deploy/static/provider/do/1.22/deploy.yaml
 delete mode 100644 deploy/static/provider/do/1.22/kustomization.yaml
 delete mode 100644 deploy/static/provider/do/1.23/deploy.yaml
 delete mode 100644 deploy/static/provider/do/1.23/kustomization.yaml
 delete mode 100644 deploy/static/provider/do/1.24/deploy.yaml
 delete mode 100644 deploy/static/provider/do/1.24/kustomization.yaml
 delete mode 100644 deploy/static/provider/exoscale/1.20/deploy.yaml
 delete mode 100644 deploy/static/provider/exoscale/1.20/kustomization.yaml
 delete mode 100644 deploy/static/provider/exoscale/1.21/deploy.yaml
 delete mode 100644 deploy/static/provider/exoscale/1.21/kustomization.yaml
 delete mode 100644 deploy/static/provider/exoscale/1.22/deploy.yaml
 delete mode 100644 deploy/static/provider/exoscale/1.22/kustomization.yaml
 delete mode 100644 deploy/static/provider/exoscale/1.23/deploy.yaml
 delete mode 100644 deploy/static/provider/exoscale/1.23/kustomization.yaml
 delete mode 100644 deploy/static/provider/exoscale/1.24/deploy.yaml
 delete mode 100644 deploy/static/provider/exoscale/1.24/kustomization.yaml
 delete mode 100644 deploy/static/provider/kind/1.20/deploy.yaml
 delete mode 100644 deploy/static/provider/kind/1.20/kustomization.yaml
 delete mode 100644 deploy/static/provider/kind/1.21/deploy.yaml
 delete mode 100644 deploy/static/provider/kind/1.21/kustomization.yaml
 delete mode 100644 deploy/static/provider/kind/1.22/deploy.yaml
 delete mode 100644 deploy/static/provider/kind/1.22/kustomization.yaml
 delete mode 100644 deploy/static/provider/kind/1.23/deploy.yaml
 delete mode 100644 deploy/static/provider/kind/1.23/kustomization.yaml
 delete mode 100644 deploy/static/provider/kind/1.24/deploy.yaml
 delete mode 100644 deploy/static/provider/kind/1.24/kustomization.yaml
 delete mode 100644 deploy/static/provider/scw/1.20/deploy.yaml
 delete mode 100644 deploy/static/provider/scw/1.20/kustomization.yaml
 delete mode 100644 deploy/static/provider/scw/1.21/deploy.yaml
 delete mode 100644 deploy/static/provider/scw/1.21/kustomization.yaml
 delete mode 100644 deploy/static/provider/scw/1.22/deploy.yaml
 delete mode 100644 deploy/static/provider/scw/1.22/kustomization.yaml
 delete mode 100644 deploy/static/provider/scw/1.23/deploy.yaml
 delete mode 100644 deploy/static/provider/scw/1.23/kustomization.yaml
 delete mode 100644 deploy/static/provider/scw/1.24/deploy.yaml
 delete mode 100644 deploy/static/provider/scw/1.24/kustomization.yaml

diff --git a/deploy/static/provider/aws/1.20/deploy.yaml b/deploy/static/provider/aws/1.20/deploy.yaml
deleted file mode 100644
index 0c826fbe4..000000000
--- a/deploy/static/provider/aws/1.20/deploy.yaml
+++ /dev/null
@@ -1,643 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
-    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-    service.beta.kubernetes.io/aws-load-balancer-type: nlb
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/aws/1.20/kustomization.yaml b/deploy/static/provider/aws/1.20/kustomization.yaml
deleted file mode 100644
index 18c6bb6a3..000000000
--- a/deploy/static/provider/aws/1.20/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/aws/1.21/deploy.yaml b/deploy/static/provider/aws/1.21/deploy.yaml
deleted file mode 100644
index 300ca7b01..000000000
--- a/deploy/static/provider/aws/1.21/deploy.yaml
+++ /dev/null
@@ -1,646 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
-    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-    service.beta.kubernetes.io/aws-load-balancer-type: nlb
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/aws/1.21/kustomization.yaml b/deploy/static/provider/aws/1.21/kustomization.yaml
deleted file mode 100644
index 18c6bb6a3..000000000
--- a/deploy/static/provider/aws/1.21/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/aws/1.22/deploy.yaml b/deploy/static/provider/aws/1.22/deploy.yaml
deleted file mode 100644
index 300ca7b01..000000000
--- a/deploy/static/provider/aws/1.22/deploy.yaml
+++ /dev/null
@@ -1,646 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
-    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-    service.beta.kubernetes.io/aws-load-balancer-type: nlb
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/aws/1.22/kustomization.yaml b/deploy/static/provider/aws/1.22/kustomization.yaml
deleted file mode 100644
index 18c6bb6a3..000000000
--- a/deploy/static/provider/aws/1.22/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/aws/1.23/deploy.yaml b/deploy/static/provider/aws/1.23/deploy.yaml
deleted file mode 100644
index 300ca7b01..000000000
--- a/deploy/static/provider/aws/1.23/deploy.yaml
+++ /dev/null
@@ -1,646 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
-    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-    service.beta.kubernetes.io/aws-load-balancer-type: nlb
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/aws/1.23/kustomization.yaml b/deploy/static/provider/aws/1.23/kustomization.yaml
deleted file mode 100644
index 18c6bb6a3..000000000
--- a/deploy/static/provider/aws/1.23/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/aws/1.24/deploy.yaml b/deploy/static/provider/aws/1.24/deploy.yaml
deleted file mode 100644
index 300ca7b01..000000000
--- a/deploy/static/provider/aws/1.24/deploy.yaml
+++ /dev/null
@@ -1,646 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
-    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-    service.beta.kubernetes.io/aws-load-balancer-type: nlb
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/aws/1.24/kustomization.yaml b/deploy/static/provider/aws/1.24/kustomization.yaml
deleted file mode 100644
index 18c6bb6a3..000000000
--- a/deploy/static/provider/aws/1.24/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 0c826fbe4..300ca7b01 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -348,6 +348,9 @@ metadata:
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
deleted file mode 100644
index 0c84b2141..000000000
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/deploy.yaml
+++ /dev/null
@@ -1,655 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  http-snippet: |
-    server {
-      listen 2443;
-      return 308 https://$host$request_uri;
-    }
-  proxy-real-ip-cidr: XXX.XXX.XXX/XX
-  use-forwarded-headers: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
-    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-    service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX
-    service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
-    service.beta.kubernetes.io/aws-load-balancer-type: nlb
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: tohttps
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: http
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 80
-          name: https
-          protocol: TCP
-        - containerPort: 2443
-          name: tohttps
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.20/kustomization.yaml
deleted file mode 100644
index 51c1513c9..000000000
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.20/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws/nlb-with-tls-termination
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
deleted file mode 100644
index 7e7ce8f22..000000000
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/deploy.yaml
+++ /dev/null
@@ -1,658 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  http-snippet: |
-    server {
-      listen 2443;
-      return 308 https://$host$request_uri;
-    }
-  proxy-real-ip-cidr: XXX.XXX.XXX/XX
-  use-forwarded-headers: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
-    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-    service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX
-    service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
-    service.beta.kubernetes.io/aws-load-balancer-type: nlb
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: tohttps
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: http
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 80
-          name: https
-          protocol: TCP
-        - containerPort: 2443
-          name: tohttps
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.21/kustomization.yaml
deleted file mode 100644
index 51c1513c9..000000000
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.21/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws/nlb-with-tls-termination
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
deleted file mode 100644
index 7e7ce8f22..000000000
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/deploy.yaml
+++ /dev/null
@@ -1,658 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  http-snippet: |
-    server {
-      listen 2443;
-      return 308 https://$host$request_uri;
-    }
-  proxy-real-ip-cidr: XXX.XXX.XXX/XX
-  use-forwarded-headers: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
-    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-    service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX
-    service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
-    service.beta.kubernetes.io/aws-load-balancer-type: nlb
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: tohttps
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: http
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 80
-          name: https
-          protocol: TCP
-        - containerPort: 2443
-          name: tohttps
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.22/kustomization.yaml
deleted file mode 100644
index 51c1513c9..000000000
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.22/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws/nlb-with-tls-termination
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
deleted file mode 100644
index 7e7ce8f22..000000000
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/deploy.yaml
+++ /dev/null
@@ -1,658 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  http-snippet: |
-    server {
-      listen 2443;
-      return 308 https://$host$request_uri;
-    }
-  proxy-real-ip-cidr: XXX.XXX.XXX/XX
-  use-forwarded-headers: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
-    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-    service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX
-    service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
-    service.beta.kubernetes.io/aws-load-balancer-type: nlb
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: tohttps
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: http
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 80
-          name: https
-          protocol: TCP
-        - containerPort: 2443
-          name: tohttps
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.23/kustomization.yaml
deleted file mode 100644
index 51c1513c9..000000000
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.23/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws/nlb-with-tls-termination
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.24/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.24/deploy.yaml
deleted file mode 100644
index 7e7ce8f22..000000000
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.24/deploy.yaml
+++ /dev/null
@@ -1,658 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  http-snippet: |
-    server {
-      listen 2443;
-      return 308 https://$host$request_uri;
-    }
-  proxy-real-ip-cidr: XXX.XXX.XXX/XX
-  use-forwarded-headers: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: "60"
-    service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-    service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX
-    service.beta.kubernetes.io/aws-load-balancer-ssl-ports: https
-    service.beta.kubernetes.io/aws-load-balancer-type: nlb
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: tohttps
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: http
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 80
-          name: https
-          protocol: TCP
-        - containerPort: 2443
-          name: tohttps
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/1.24/kustomization.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/1.24/kustomization.yaml
deleted file mode 100644
index 51c1513c9..000000000
--- a/deploy/static/provider/aws/nlb-with-tls-termination/1.24/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws/nlb-with-tls-termination
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 0c84b2141..7e7ce8f22 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -357,6 +357,9 @@ metadata:
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
diff --git a/deploy/static/provider/baremetal/1.20/deploy.yaml b/deploy/static/provider/baremetal/1.20/deploy.yaml
deleted file mode 100644
index 4867382fd..000000000
--- a/deploy/static/provider/baremetal/1.20/deploy.yaml
+++ /dev/null
@@ -1,637 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: NodePort
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/baremetal/1.20/kustomization.yaml b/deploy/static/provider/baremetal/1.20/kustomization.yaml
deleted file mode 100644
index d585f85c6..000000000
--- a/deploy/static/provider/baremetal/1.20/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/baremetal
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/baremetal/1.21/deploy.yaml b/deploy/static/provider/baremetal/1.21/deploy.yaml
deleted file mode 100644
index e23e4b7f3..000000000
--- a/deploy/static/provider/baremetal/1.21/deploy.yaml
+++ /dev/null
@@ -1,640 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: NodePort
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/baremetal/1.21/kustomization.yaml b/deploy/static/provider/baremetal/1.21/kustomization.yaml
deleted file mode 100644
index d585f85c6..000000000
--- a/deploy/static/provider/baremetal/1.21/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/baremetal
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/baremetal/1.22/deploy.yaml b/deploy/static/provider/baremetal/1.22/deploy.yaml
deleted file mode 100644
index e23e4b7f3..000000000
--- a/deploy/static/provider/baremetal/1.22/deploy.yaml
+++ /dev/null
@@ -1,640 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: NodePort
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/baremetal/1.22/kustomization.yaml b/deploy/static/provider/baremetal/1.22/kustomization.yaml
deleted file mode 100644
index d585f85c6..000000000
--- a/deploy/static/provider/baremetal/1.22/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/baremetal
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/baremetal/1.23/deploy.yaml b/deploy/static/provider/baremetal/1.23/deploy.yaml
deleted file mode 100644
index e23e4b7f3..000000000
--- a/deploy/static/provider/baremetal/1.23/deploy.yaml
+++ /dev/null
@@ -1,640 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: NodePort
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/baremetal/1.23/kustomization.yaml b/deploy/static/provider/baremetal/1.23/kustomization.yaml
deleted file mode 100644
index d585f85c6..000000000
--- a/deploy/static/provider/baremetal/1.23/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/baremetal
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/baremetal/1.24/deploy.yaml b/deploy/static/provider/baremetal/1.24/deploy.yaml
deleted file mode 100644
index e23e4b7f3..000000000
--- a/deploy/static/provider/baremetal/1.24/deploy.yaml
+++ /dev/null
@@ -1,640 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: NodePort
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/baremetal/1.24/kustomization.yaml b/deploy/static/provider/baremetal/1.24/kustomization.yaml
deleted file mode 100644
index d585f85c6..000000000
--- a/deploy/static/provider/baremetal/1.24/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/baremetal
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 4867382fd..e23e4b7f3 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -343,6 +343,9 @@ metadata:
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
diff --git a/deploy/static/provider/cloud/1.20/deploy.yaml b/deploy/static/provider/cloud/1.20/deploy.yaml
deleted file mode 100644
index 583e113ca..000000000
--- a/deploy/static/provider/cloud/1.20/deploy.yaml
+++ /dev/null
@@ -1,639 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/cloud/1.20/kustomization.yaml b/deploy/static/provider/cloud/1.20/kustomization.yaml
deleted file mode 100644
index d477ec405..000000000
--- a/deploy/static/provider/cloud/1.20/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/cloud/1.21/deploy.yaml b/deploy/static/provider/cloud/1.21/deploy.yaml
deleted file mode 100644
index 77407e8a9..000000000
--- a/deploy/static/provider/cloud/1.21/deploy.yaml
+++ /dev/null
@@ -1,642 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/cloud/1.21/kustomization.yaml b/deploy/static/provider/cloud/1.21/kustomization.yaml
deleted file mode 100644
index d477ec405..000000000
--- a/deploy/static/provider/cloud/1.21/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/cloud/1.22/deploy.yaml b/deploy/static/provider/cloud/1.22/deploy.yaml
deleted file mode 100644
index 77407e8a9..000000000
--- a/deploy/static/provider/cloud/1.22/deploy.yaml
+++ /dev/null
@@ -1,642 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/cloud/1.22/kustomization.yaml b/deploy/static/provider/cloud/1.22/kustomization.yaml
deleted file mode 100644
index d477ec405..000000000
--- a/deploy/static/provider/cloud/1.22/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/cloud/1.23/deploy.yaml b/deploy/static/provider/cloud/1.23/deploy.yaml
deleted file mode 100644
index 77407e8a9..000000000
--- a/deploy/static/provider/cloud/1.23/deploy.yaml
+++ /dev/null
@@ -1,642 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/cloud/1.23/kustomization.yaml b/deploy/static/provider/cloud/1.23/kustomization.yaml
deleted file mode 100644
index d477ec405..000000000
--- a/deploy/static/provider/cloud/1.23/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/cloud/1.24/deploy.yaml b/deploy/static/provider/cloud/1.24/deploy.yaml
deleted file mode 100644
index 77407e8a9..000000000
--- a/deploy/static/provider/cloud/1.24/deploy.yaml
+++ /dev/null
@@ -1,642 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/cloud/1.24/kustomization.yaml b/deploy/static/provider/cloud/1.24/kustomization.yaml
deleted file mode 100644
index d477ec405..000000000
--- a/deploy/static/provider/cloud/1.24/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 583e113ca..77407e8a9 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -344,6 +344,9 @@ metadata:
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
diff --git a/deploy/static/provider/do/1.20/deploy.yaml b/deploy/static/provider/do/1.20/deploy.yaml
deleted file mode 100644
index 290f57345..000000000
--- a/deploy/static/provider/do/1.20/deploy.yaml
+++ /dev/null
@@ -1,643 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  use-proxy-protocol: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
-  timeoutSeconds: 29
diff --git a/deploy/static/provider/do/1.20/kustomization.yaml b/deploy/static/provider/do/1.20/kustomization.yaml
deleted file mode 100644
index f20d445c7..000000000
--- a/deploy/static/provider/do/1.20/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/do
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/do/1.21/deploy.yaml b/deploy/static/provider/do/1.21/deploy.yaml
deleted file mode 100644
index e35d1d7ca..000000000
--- a/deploy/static/provider/do/1.21/deploy.yaml
+++ /dev/null
@@ -1,646 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  use-proxy-protocol: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
-  timeoutSeconds: 29
diff --git a/deploy/static/provider/do/1.21/kustomization.yaml b/deploy/static/provider/do/1.21/kustomization.yaml
deleted file mode 100644
index f20d445c7..000000000
--- a/deploy/static/provider/do/1.21/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/do
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/do/1.22/deploy.yaml b/deploy/static/provider/do/1.22/deploy.yaml
deleted file mode 100644
index e35d1d7ca..000000000
--- a/deploy/static/provider/do/1.22/deploy.yaml
+++ /dev/null
@@ -1,646 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  use-proxy-protocol: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
-  timeoutSeconds: 29
diff --git a/deploy/static/provider/do/1.22/kustomization.yaml b/deploy/static/provider/do/1.22/kustomization.yaml
deleted file mode 100644
index f20d445c7..000000000
--- a/deploy/static/provider/do/1.22/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/do
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/do/1.23/deploy.yaml b/deploy/static/provider/do/1.23/deploy.yaml
deleted file mode 100644
index e35d1d7ca..000000000
--- a/deploy/static/provider/do/1.23/deploy.yaml
+++ /dev/null
@@ -1,646 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  use-proxy-protocol: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
-  timeoutSeconds: 29
diff --git a/deploy/static/provider/do/1.23/kustomization.yaml b/deploy/static/provider/do/1.23/kustomization.yaml
deleted file mode 100644
index f20d445c7..000000000
--- a/deploy/static/provider/do/1.23/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/do
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/do/1.24/deploy.yaml b/deploy/static/provider/do/1.24/deploy.yaml
deleted file mode 100644
index e35d1d7ca..000000000
--- a/deploy/static/provider/do/1.24/deploy.yaml
+++ /dev/null
@@ -1,646 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  use-proxy-protocol: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
-  timeoutSeconds: 29
diff --git a/deploy/static/provider/do/1.24/kustomization.yaml b/deploy/static/provider/do/1.24/kustomization.yaml
deleted file mode 100644
index f20d445c7..000000000
--- a/deploy/static/provider/do/1.24/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/do
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 290f57345..e35d1d7ca 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -347,6 +347,9 @@ metadata:
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
diff --git a/deploy/static/provider/exoscale/1.20/deploy.yaml b/deploy/static/provider/exoscale/1.20/deploy.yaml
deleted file mode 100644
index 4b35cf267..000000000
--- a/deploy/static/provider/exoscale/1.20/deploy.yaml
+++ /dev/null
@@ -1,648 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
-      load balancer
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: 3s
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: /
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: source-hash
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: DaemonSet
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/exoscale/1.20/kustomization.yaml b/deploy/static/provider/exoscale/1.20/kustomization.yaml
deleted file mode 100644
index e79016cf3..000000000
--- a/deploy/static/provider/exoscale/1.20/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/exoscale
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/exoscale/1.21/deploy.yaml b/deploy/static/provider/exoscale/1.21/deploy.yaml
deleted file mode 100644
index fe9a2de7f..000000000
--- a/deploy/static/provider/exoscale/1.21/deploy.yaml
+++ /dev/null
@@ -1,651 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
-      load balancer
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: 3s
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: /
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: source-hash
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: DaemonSet
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/exoscale/1.21/kustomization.yaml b/deploy/static/provider/exoscale/1.21/kustomization.yaml
deleted file mode 100644
index e79016cf3..000000000
--- a/deploy/static/provider/exoscale/1.21/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/exoscale
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/exoscale/1.22/deploy.yaml b/deploy/static/provider/exoscale/1.22/deploy.yaml
deleted file mode 100644
index fe9a2de7f..000000000
--- a/deploy/static/provider/exoscale/1.22/deploy.yaml
+++ /dev/null
@@ -1,651 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
-      load balancer
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: 3s
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: /
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: source-hash
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: DaemonSet
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/exoscale/1.22/kustomization.yaml b/deploy/static/provider/exoscale/1.22/kustomization.yaml
deleted file mode 100644
index e79016cf3..000000000
--- a/deploy/static/provider/exoscale/1.22/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/exoscale
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/exoscale/1.23/deploy.yaml b/deploy/static/provider/exoscale/1.23/deploy.yaml
deleted file mode 100644
index fe9a2de7f..000000000
--- a/deploy/static/provider/exoscale/1.23/deploy.yaml
+++ /dev/null
@@ -1,651 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
-      load balancer
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: 3s
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: /
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: source-hash
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: DaemonSet
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/exoscale/1.23/kustomization.yaml b/deploy/static/provider/exoscale/1.23/kustomization.yaml
deleted file mode 100644
index e79016cf3..000000000
--- a/deploy/static/provider/exoscale/1.23/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/exoscale
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/exoscale/1.24/deploy.yaml b/deploy/static/provider/exoscale/1.24/deploy.yaml
deleted file mode 100644
index fe9a2de7f..000000000
--- a/deploy/static/provider/exoscale/1.24/deploy.yaml
+++ /dev/null
@@ -1,651 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/exoscale-loadbalancer-description: NGINX Ingress Controller
-      load balancer
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-interval: 10s
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-mode: http
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-retries: "1"
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-timeout: 3s
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-healthcheck-uri: /
-    service.beta.kubernetes.io/exoscale-loadbalancer-service-strategy: source-hash
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: DaemonSet
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/exoscale/1.24/kustomization.yaml b/deploy/static/provider/exoscale/1.24/kustomization.yaml
deleted file mode 100644
index e79016cf3..000000000
--- a/deploy/static/provider/exoscale/1.24/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/exoscale
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 4b35cf267..fe9a2de7f 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -353,6 +353,9 @@ metadata:
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
diff --git a/deploy/static/provider/kind/1.20/deploy.yaml b/deploy/static/provider/kind/1.20/deploy.yaml
deleted file mode 100644
index 0a8c6ba1c..000000000
--- a/deploy/static/provider/kind/1.20/deploy.yaml
+++ /dev/null
@@ -1,653 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: NodePort
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  strategy:
-    rollingUpdate:
-      maxUnavailable: 1
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        - --watch-ingress-without-class=true
-        - --publish-status-address=localhost
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          hostPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          hostPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        ingress-ready: "true"
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 0
-      tolerations:
-      - effect: NoSchedule
-        key: node-role.kubernetes.io/master
-        operator: Equal
-      - effect: NoSchedule
-        key: node-role.kubernetes.io/control-plane
-        operator: Equal
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/kind/1.20/kustomization.yaml b/deploy/static/provider/kind/1.20/kustomization.yaml
deleted file mode 100644
index bd605a188..000000000
--- a/deploy/static/provider/kind/1.20/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/kind
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/kind/1.21/deploy.yaml b/deploy/static/provider/kind/1.21/deploy.yaml
deleted file mode 100644
index 5ddb9c166..000000000
--- a/deploy/static/provider/kind/1.21/deploy.yaml
+++ /dev/null
@@ -1,656 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: NodePort
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  strategy:
-    rollingUpdate:
-      maxUnavailable: 1
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        - --watch-ingress-without-class=true
-        - --publish-status-address=localhost
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          hostPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          hostPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        ingress-ready: "true"
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 0
-      tolerations:
-      - effect: NoSchedule
-        key: node-role.kubernetes.io/master
-        operator: Equal
-      - effect: NoSchedule
-        key: node-role.kubernetes.io/control-plane
-        operator: Equal
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/kind/1.21/kustomization.yaml b/deploy/static/provider/kind/1.21/kustomization.yaml
deleted file mode 100644
index bd605a188..000000000
--- a/deploy/static/provider/kind/1.21/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/kind
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/kind/1.22/deploy.yaml b/deploy/static/provider/kind/1.22/deploy.yaml
deleted file mode 100644
index 5ddb9c166..000000000
--- a/deploy/static/provider/kind/1.22/deploy.yaml
+++ /dev/null
@@ -1,656 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: NodePort
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  strategy:
-    rollingUpdate:
-      maxUnavailable: 1
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        - --watch-ingress-without-class=true
-        - --publish-status-address=localhost
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          hostPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          hostPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        ingress-ready: "true"
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 0
-      tolerations:
-      - effect: NoSchedule
-        key: node-role.kubernetes.io/master
-        operator: Equal
-      - effect: NoSchedule
-        key: node-role.kubernetes.io/control-plane
-        operator: Equal
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/kind/1.22/kustomization.yaml b/deploy/static/provider/kind/1.22/kustomization.yaml
deleted file mode 100644
index bd605a188..000000000
--- a/deploy/static/provider/kind/1.22/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/kind
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/kind/1.23/deploy.yaml b/deploy/static/provider/kind/1.23/deploy.yaml
deleted file mode 100644
index 5ddb9c166..000000000
--- a/deploy/static/provider/kind/1.23/deploy.yaml
+++ /dev/null
@@ -1,656 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: NodePort
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  strategy:
-    rollingUpdate:
-      maxUnavailable: 1
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        - --watch-ingress-without-class=true
-        - --publish-status-address=localhost
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          hostPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          hostPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        ingress-ready: "true"
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 0
-      tolerations:
-      - effect: NoSchedule
-        key: node-role.kubernetes.io/master
-        operator: Equal
-      - effect: NoSchedule
-        key: node-role.kubernetes.io/control-plane
-        operator: Equal
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/kind/1.23/kustomization.yaml b/deploy/static/provider/kind/1.23/kustomization.yaml
deleted file mode 100644
index bd605a188..000000000
--- a/deploy/static/provider/kind/1.23/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/kind
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/kind/1.24/deploy.yaml b/deploy/static/provider/kind/1.24/deploy.yaml
deleted file mode 100644
index 5ddb9c166..000000000
--- a/deploy/static/provider/kind/1.24/deploy.yaml
+++ /dev/null
@@ -1,656 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: NodePort
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  strategy:
-    rollingUpdate:
-      maxUnavailable: 1
-    type: RollingUpdate
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        - --watch-ingress-without-class=true
-        - --publish-status-address=localhost
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          hostPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          hostPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        ingress-ready: "true"
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 0
-      tolerations:
-      - effect: NoSchedule
-        key: node-role.kubernetes.io/master
-        operator: Equal
-      - effect: NoSchedule
-        key: node-role.kubernetes.io/control-plane
-        operator: Equal
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/kind/1.24/kustomization.yaml b/deploy/static/provider/kind/1.24/kustomization.yaml
deleted file mode 100644
index bd605a188..000000000
--- a/deploy/static/provider/kind/1.24/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/kind
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 0a8c6ba1c..5ddb9c166 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -343,6 +343,9 @@ metadata:
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
diff --git a/deploy/static/provider/scw/1.20/deploy.yaml b/deploy/static/provider/scw/1.20/deploy.yaml
deleted file mode 100644
index 558caa6e7..000000000
--- a/deploy/static/provider/scw/1.20/deploy.yaml
+++ /dev/null
@@ -1,642 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  use-proxy-protocol: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/scw/1.20/kustomization.yaml b/deploy/static/provider/scw/1.20/kustomization.yaml
deleted file mode 100644
index d8535dbde..000000000
--- a/deploy/static/provider/scw/1.20/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/scw
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/scw/1.21/deploy.yaml b/deploy/static/provider/scw/1.21/deploy.yaml
deleted file mode 100644
index 2dba2dc51..000000000
--- a/deploy/static/provider/scw/1.21/deploy.yaml
+++ /dev/null
@@ -1,645 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  use-proxy-protocol: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/scw/1.21/kustomization.yaml b/deploy/static/provider/scw/1.21/kustomization.yaml
deleted file mode 100644
index d8535dbde..000000000
--- a/deploy/static/provider/scw/1.21/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/scw
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/scw/1.22/deploy.yaml b/deploy/static/provider/scw/1.22/deploy.yaml
deleted file mode 100644
index 2dba2dc51..000000000
--- a/deploy/static/provider/scw/1.22/deploy.yaml
+++ /dev/null
@@ -1,645 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  use-proxy-protocol: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/scw/1.22/kustomization.yaml b/deploy/static/provider/scw/1.22/kustomization.yaml
deleted file mode 100644
index d8535dbde..000000000
--- a/deploy/static/provider/scw/1.22/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/scw
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/scw/1.23/deploy.yaml b/deploy/static/provider/scw/1.23/deploy.yaml
deleted file mode 100644
index 2dba2dc51..000000000
--- a/deploy/static/provider/scw/1.23/deploy.yaml
+++ /dev/null
@@ -1,645 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  use-proxy-protocol: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/scw/1.23/kustomization.yaml b/deploy/static/provider/scw/1.23/kustomization.yaml
deleted file mode 100644
index d8535dbde..000000000
--- a/deploy/static/provider/scw/1.23/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/scw
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/scw/1.24/deploy.yaml b/deploy/static/provider/scw/1.24/deploy.yaml
deleted file mode 100644
index 2dba2dc51..000000000
--- a/deploy/static/provider/scw/1.24/deploy.yaml
+++ /dev/null
@@ -1,645 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-controller-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  use-proxy-protocol: "true"
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/scw-loadbalancer-proxy-protocol-v2: "true"
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/scw/1.24/kustomization.yaml b/deploy/static/provider/scw/1.24/kustomization.yaml
deleted file mode 100644
index d8535dbde..000000000
--- a/deploy/static/provider/scw/1.24/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/scw
-# ```
-
-resources:
-  - deploy.yaml
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 558caa6e7..2dba2dc51 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -347,6 +347,9 @@ metadata:
   namespace: ingress-nginx
 spec:
   externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
   ports:
   - appProtocol: http
     name: http
diff --git a/hack/generate-deploy-scripts.sh b/hack/generate-deploy-scripts.sh
index 7b4f304ad..6e22b8d88 100755
--- a/hack/generate-deploy-scripts.sh
+++ b/hack/generate-deploy-scripts.sh
@@ -22,11 +22,7 @@ fi
 set -o nounset
 set -o pipefail
 
-# for backwards compatibility, the default version of 1.20 is copied to the root of the variant
-# with enough docs updates, this could be removed
-# see     # DEFAULT VERSION HANDLING
-K8S_DEFAULT_VERSION=1.20
-K8S_TARGET_VERSIONS=("1.20" "1.21" "1.22" "1.23" "1.24")
+K8S_VERSION="1.22"
 
 DIR=$(cd $(dirname "${BASH_SOURCE}")/.. && pwd -P)
 
@@ -35,40 +31,29 @@ rm -rf ${DIR}/deploy/static/provider/*
 
 TEMPLATE_DIR="${DIR}/hack/manifest-templates"
 
-# each helm values file `values.yaml` under `hack/manifest-templates/provider` will be generated as provider/<provider>[/variant][/kube-version]/deploy.yaml
+# each helm values file `values.yaml` under `hack/manifest-templates/provider` will be generated as provider/<provider>[/variant]/deploy.yaml
 # TARGET is provider/<provider>[/variant]
 TARGETS=$(dirname $(cd $DIR/hack/manifest-templates/ && find . -type f -name "values.yaml" ) | cut -d'/' -f2-)
-for K8S_VERSION in "${K8S_TARGET_VERSIONS[@]}"
+for TARGET in ${TARGETS}
 do
-  for TARGET in ${TARGETS}
-  do
-    echo "Running ${K8S_VERSION} for target ${TARGET}"
-    TARGET_DIR="${TEMPLATE_DIR}/${TARGET}"
-    MANIFEST="${TEMPLATE_DIR}/common/manifest.yaml" # intermediate manifest
-    OUTPUT_DIR="${DIR}/deploy/static/${TARGET}/${K8S_VERSION}"
-    echo $OUTPUT_DIR
+  TARGET_DIR="${TEMPLATE_DIR}/${TARGET}"
+  MANIFEST="${TEMPLATE_DIR}/common/manifest.yaml" # intermediate manifest
+  OUTPUT_DIR="${DIR}/deploy/static/${TARGET}"
+  echo $OUTPUT_DIR
 
-    mkdir -p ${OUTPUT_DIR}
-    cd ${TARGET_DIR}
-    helm template ingress-nginx ${DIR}/charts/ingress-nginx \
-      --values values.yaml \
-      --namespace ingress-nginx \
-      --kube-version ${K8S_VERSION} \
-      > $MANIFEST
-    sed -i.bak '/app.kubernetes.io\/managed-by: Helm/d' $MANIFEST
-    sed -i.bak '/helm.sh/d' $MANIFEST
+  mkdir -p ${OUTPUT_DIR}
+  cd ${TARGET_DIR}
+  helm template ingress-nginx ${DIR}/charts/ingress-nginx \
+    --values values.yaml \
+    --namespace ingress-nginx \
+    --kube-version ${K8S_VERSION} \
+    > $MANIFEST
+  sed -i.bak '/app.kubernetes.io\/managed-by: Helm/d' $MANIFEST
+  sed -i.bak '/helm.sh/d' $MANIFEST
 
-    kustomize --load-restrictor=LoadRestrictionsNone build . > ${OUTPUT_DIR}/deploy.yaml
-    rm $MANIFEST $MANIFEST.bak
-    cd ~-
-    # automatically generate the (unsupported) kustomization.yaml for each target
-    sed "s_{TARGET}_${TARGET}_" $TEMPLATE_DIR/static-kustomization-template.yaml > ${OUTPUT_DIR}/kustomization.yaml
-
-    # DEFAULT VERSION HANDLING
-    if [[ ${K8S_VERSION} = ${K8S_DEFAULT_VERSION} ]]
-    then
-      cp ${OUTPUT_DIR}/*.yaml ${OUTPUT_DIR}/../
-      sed -i.bak "s/^/#GENERATED FOR K8S ${K8S_VERSION}\n/" ${OUTPUT_DIR}/../deploy.yaml && rm ${OUTPUT_DIR}/../deploy.yaml.bak
-    fi
-  done
+  kustomize --load-restrictor=LoadRestrictionsNone build . > ${OUTPUT_DIR}/deploy.yaml
+  rm $MANIFEST $MANIFEST.bak
+  cd ~-
+  # automatically generate the (unsupported) kustomization.yaml for each target
+  sed "s_{TARGET}_${TARGET}_" $TEMPLATE_DIR/static-kustomization-template.yaml > ${OUTPUT_DIR}/kustomization.yaml
 done

From 1dc9d9883347cf9552630785b89872a2ab754ef3 Mon Sep 17 00:00:00 2001
From: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Date: Fri, 12 Aug 2022 07:22:43 +0300
Subject: [PATCH 0313/1641] Reimplement kubectl plugin release workflow (#8812)

* Feat: reimplement kubectl plugin release system

This commit does the following changes:
- Add GitHub Actions pipeline for releasing the plugin
- Removes the build/build-plugin.sh and replaces this with GoReleaser
- Adds the use of krew-release-bot for automatically updating the krew
  release
- Removes the make target for build/build-plugin.sh

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>

* Fix: pin github actions stages with commit sha

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
---
 .github/workflows/plugin.yaml      | 37 +++++++++++++
 .goreleaser.yaml                   | 29 +++++++++++
 Makefile                           | 12 -----
 build/build-plugin.sh              | 84 ------------------------------
 cmd/plugin/ingress-nginx.yaml.tmpl | 51 ------------------
 cmd/plugin/krew.yaml               | 41 +++++++++++++++
 6 files changed, 107 insertions(+), 147 deletions(-)
 create mode 100644 .github/workflows/plugin.yaml
 create mode 100644 .goreleaser.yaml
 delete mode 100755 build/build-plugin.sh
 delete mode 100644 cmd/plugin/ingress-nginx.yaml.tmpl
 create mode 100644 cmd/plugin/krew.yaml

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
new file mode 100644
index 000000000..efc9a6f06
--- /dev/null
+++ b/.github/workflows/plugin.yaml
@@ -0,0 +1,37 @@
+name: kubectl plugin
+
+on:
+  push:
+    branches:
+      - "main"
+    paths:
+      - "cmd/plugin/**"
+    tags:
+      - "v*"
+
+jobs:
+  release-plugin:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
+        with:
+          fetch-depth: 0
+
+      - name: Set up Go
+        uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v3.2.0
+        with:
+          go-version: 1.18
+
+      - name: Run GoReleaser
+        uses: goreleaser/goreleaser-action@68acf3b1adf004ac9c2f0a4259e85c5f66e99bef # v3.0.0
+        with:
+          version: latest
+          args: release --rm-dist
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Update new version in krew-index
+        uses: rajatjindal/krew-release-bot@92da038bbf995803124a8e50ebd438b2f37bbbb0 # v0.0.43
+        with:
+          krew_template_file: cmd/plugin/krew.yaml
diff --git a/.goreleaser.yaml b/.goreleaser.yaml
new file mode 100644
index 000000000..a0ef6eb3d
--- /dev/null
+++ b/.goreleaser.yaml
@@ -0,0 +1,29 @@
+project_name: ingress-nginx
+release:
+  github:
+    owner: kubernetes
+    name: ingress-nginx
+builds:
+  - id: ingress-nginx
+    goos:
+    - darwin
+    - linux
+    - windows
+    goarch:
+    - arm64
+    - amd64
+    env:
+    - CGO_ENABLED=0
+    - GO111MODULE=on
+    main: cmd/plugin/main.go
+    binary: kubectl-ingress-nginx
+    ldflags: |
+      -s -w
+      -X k8s.io/ingress-nginx/version.COMMIT={{ .Commit }}
+      -X k8s.io/ingress-nginx/version.RELEASE={{ .Tag }}
+archives:
+  - id: ingress-nginx
+    builds:
+    - ingress-nginx
+    name_template: "kubectl-{{ .ProjectName }}_{{ .Os }}_{{ .Arch }}"
+    format: tar.gz
diff --git a/Makefile b/Makefile
index fcbf79816..7a62d6f61 100644
--- a/Makefile
+++ b/Makefile
@@ -127,18 +127,6 @@ build:  ## Build ingress controller, debug tool and pre-stop hook.
 		build/build.sh
 
 
-.PHONY: build-plugin
-build-plugin:  ## Build ingress-nginx krew plugin.
-	@build/run-in-docker.sh \
-		PKG=$(PKG) \
-		MAC_OS=$(MAC_OS) \
-		ARCH=$(ARCH) \
-		COMMIT_SHA=$(COMMIT_SHA) \
-		REPO_INFO=$(REPO_INFO) \
-		TAG=$(TAG) \
-		build/build-plugin.sh
-
-
 .PHONY: clean
 clean: ## Remove .gocache directory.
 	rm -rf bin/ .gocache/ .cache/
diff --git a/build/build-plugin.sh b/build/build-plugin.sh
deleted file mode 100755
index a3ed34bf2..000000000
--- a/build/build-plugin.sh
+++ /dev/null
@@ -1,84 +0,0 @@
-#!/bin/bash
-
-# Copyright 2018 The Kubernetes Authors.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-if [ -n "$DEBUG" ]; then
-	set -x
-fi
-
-set -o errexit
-set -o nounset
-set -o pipefail
-
-declare -a mandatory
-mandatory=(
-  PKG
-  ARCH
-  COMMIT_SHA
-  REPO_INFO
-  TAG
-)
-
-missing=false
-for var in "${mandatory[@]}"; do
-  if [[ -z "${!var:-}" ]]; then
-    echo "Environment variable $var must be set"
-    missing=true
-  fi
-done
-
-if [ "$missing" = true ]; then
-  exit 1
-fi
-
-export CGO_ENABLED=0
-
-release=cmd/plugin/release
-
-function build_for_arch(){
-  os=$1
-  arch=$2
-  extension=$3
-
-  echo "> building targets for ${os}-${arch}"
-
-  env GOOS="${os}" GOARCH="${arch}" go build \
-    ${GOBUILD_FLAGS} \
-    -trimpath -ldflags="-buildid= -w -s \
-      -X ${PKG}/version.RELEASE=${TAG} \
-      -X ${PKG}/version.COMMIT=${COMMIT_SHA} \
-      -X ${PKG}/version.REPO=${REPO_INFO}" \
-    -o "${release}/kubectl-ingress_nginx${extension}" "${PKG}/cmd/plugin"
-
-    cp LICENSE ${release}
-    tar -C "${release}" -zcvf "${release}/kubectl-ingress_nginx-${os}-${arch}.tar.gz" "kubectl-ingress_nginx${extension}" LICENSE
-    rm "${release}/kubectl-ingress_nginx${extension}"
-    hash=$(sha256sum "${release}/kubectl-ingress_nginx-${os}-${arch}.tar.gz" | awk '{ print $1 }')
-    sed -i "s/%%%shasum_${os}_${arch}%%%/${hash}/g" "${release}/ingress-nginx.yaml"
-}
-
-rm -rf "${release}"
-mkdir "${release}"
-
-cp cmd/plugin/ingress-nginx.yaml.tmpl "${release}/ingress-nginx.yaml"
-
-sed -i "s/%%%tag%%%/${TAG}/g" ${release}/ingress-nginx.yaml
-
-echo "Generated targets in ${release} directory."
-
-build_for_arch darwin amd64 ''
-build_for_arch darwin arm64 ''
-build_for_arch linux amd64 ''
-build_for_arch windows amd64 '.exe'
diff --git a/cmd/plugin/ingress-nginx.yaml.tmpl b/cmd/plugin/ingress-nginx.yaml.tmpl
deleted file mode 100644
index 9fce2d92d..000000000
--- a/cmd/plugin/ingress-nginx.yaml.tmpl
+++ /dev/null
@@ -1,51 +0,0 @@
-apiVersion: krew.googlecontainertools.github.com/v1alpha2
-kind: Plugin
-metadata:
-  name: ingress-nginx
-spec:
-  shortDescription: Interact with ingress-nginx
-  description: |
-    The official kubectl plugin for ingress-nginx.
-  version: %%%tag%%%
-  homepage: https://kubernetes.github.io/ingress-nginx/kubectl-plugin/
-  platforms:
-  - uri: https://github.com/kubernetes/ingress-nginx/releases/download/nginx-%%%tag%%%/kubectl-ingress_nginx-darwin-arm64.tar.gz
-    sha256: %%%shasum_darwin_arm64%%%
-    files:
-    - from: "*"
-      to: "."
-    bin: "./kubectl-ingress_nginx"
-    selector:
-      matchLabels:
-        os: darwin
-        arch: arm64
-  - uri: https://github.com/kubernetes/ingress-nginx/releases/download/nginx-%%%tag%%%/kubectl-ingress_nginx-darwin-amd64.tar.gz
-    sha256: %%%shasum_darwin_amd64%%%
-    files:
-    - from: "*"
-      to: "."
-    bin: "./kubectl-ingress_nginx"
-    selector:
-      matchLabels:
-        os: darwin
-        arch: amd64
-  - uri: https://github.com/kubernetes/ingress-nginx/releases/download/nginx-%%%tag%%%/kubectl-ingress_nginx-linux-amd64.tar.gz
-    sha256: %%%shasum_linux_amd64%%%
-    files:
-    - from: "*"
-      to: "."
-    bin: "./kubectl-ingress_nginx"
-    selector:
-      matchLabels:
-        os: linux
-        arch: amd64
-  - uri: https://github.com/kubernetes/ingress-nginx/releases/download/nginx-%%%tag%%%/kubectl-ingress_nginx-windows-amd64.tar.gz
-    sha256: %%%shasum_windows_amd64%%%
-    files:
-    - from: "*"
-      to: "."
-    bin: "./kubectl-ingress_nginx.exe"
-    selector:
-      matchLabels:
-        os: windows
-        arch: amd64
diff --git a/cmd/plugin/krew.yaml b/cmd/plugin/krew.yaml
new file mode 100644
index 000000000..e68b09f9a
--- /dev/null
+++ b/cmd/plugin/krew.yaml
@@ -0,0 +1,41 @@
+apiVersion: krew.googlecontainertools.github.com/v1alpha2
+kind: Plugin
+metadata:
+  name: ingress-nginx
+spec:
+  shortDescription: Interact with ingress-nginx
+  description: |
+    The official kubectl plugin for ingress-nginx.
+  version: {{ .TagName }}
+  homepage: https://kubernetes.github.io/ingress-nginx/kubectl-plugin/
+  platforms:
+  - selector:
+      matchLabels:
+        os: darwin
+        arch: arm64
+    {{addURIAndSha "https://github.com/kubernetes/ingress-nginx/releases/download/{{ .TagName }}/kubectl-ingress-nginx_darwin_arm64.tar.gz" .TagName }}
+    bin: kubectl-ingress-nginx
+  - selector:
+      matchLabels:
+        os: darwin
+        arch: amd64
+    {{addURIAndSha "https://github.com/kubernetes/ingress-nginx/releases/download/{{ .TagName }}/kubectl-ingress-nginx_darwin_amd64.tar.gz" .TagName }}
+    bin: kubectl-ingress-nginx
+    selector:
+      matchLabels:
+        os: linux
+        arch: amd64
+    {{addURIAndSha "https://github.com/kubernetes/ingress-nginx/releases/download/{{ .TagName }}/kubectl-ingress-nginx_linux_amd64.tar.gz" .TagName }}
+    bin: kubectl-ingress-nginx
+  - selector:
+      matchLabels:
+        os: linux
+        arch: arm64
+    {{addURIAndSha "https://github.com/kubernetes/ingress-nginx/releases/download/{{ .TagName }}/kubectl-ingress-nginx_linux_arm64.tar.gz" .TagName }}
+    bin: kubectl-ingress-nginx
+  - selector:
+      matchLabels:
+        os: windows
+        arch: amd64
+    {{addURIAndSha "https://github.com/kubernetes/ingress-nginx/releases/download/{{ .TagName }}/kubectl-ingress-nginx_windows_amd64.tar.gz" .TagName }}
+    bin: kubectl-ingress-nginx.exe

From 9fdbef829c327b95a3c6d6816a301df41bda997f Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 18 Aug 2022 18:24:36 +0530
Subject: [PATCH 0314/1641] bump alpine to v3.16.2 (#8934)

---
 docs/examples/customization/sysctl/patch.json | 2 +-
 images/cfssl/rootfs/Dockerfile                | 2 +-
 images/httpbin/rootfs/Dockerfile              | 2 +-
 images/nginx/rootfs/Dockerfile                | 4 ++--
 images/opentelemetry/rootfs/Dockerfile        | 4 ++--
 rootfs/Dockerfile-chroot                      | 2 +-
 test/e2e-image/Dockerfile                     | 2 +-
 7 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/docs/examples/customization/sysctl/patch.json b/docs/examples/customization/sysctl/patch.json
index 319ccf4f8..75d613295 100644
--- a/docs/examples/customization/sysctl/patch.json
+++ b/docs/examples/customization/sysctl/patch.json
@@ -4,7 +4,7 @@
 			"spec": {
 				"initContainers": [{
 					"name": "sysctl",
-					"image": "alpine:3.16.1",
+					"image": "alpine:3.16.2",
 					"securityContext": {
 						"privileged": true
 					},
diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index 59a89d92c..b6dfa567f 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.16.1
+FROM alpine:3.16.2
 
 RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
 RUN apk add --no-cache \
diff --git a/images/httpbin/rootfs/Dockerfile b/images/httpbin/rootfs/Dockerfile
index 016ab913f..da9cd0145 100644
--- a/images/httpbin/rootfs/Dockerfile
+++ b/images/httpbin/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.16.1
+FROM alpine:3.16.2
 
 ENV LC_ALL=C.UTF-8
 ENV LANG=C.UTF-8
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index a93a58f8f..6168ee5d8 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.16.1 as builder
+FROM alpine:3.16.2 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.16.1
+FROM alpine:3.16.2
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index ccab2223d..f8fb37811 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.16.1 as base
+FROM alpine:3.16.2 as base
 
 RUN mkdir -p /opt/third_party/install
 COPY . /opt/third_party/
@@ -39,7 +39,7 @@ COPY --from=grpc /opt/third_party/install/ /usr
 COPY --from=otel-cpp /opt/third_party/install/ /usr
 RUN bash /opt/third_party/build.sh -n
 
-FROM alpine:3.16.1
+FROM alpine:3.16.2
 COPY --from=base /opt/third_party/init_module.sh /usr/local/bin/init_module.sh
 COPY --from=nginx /etc/nginx/modules /etc/nginx/modules
 COPY --from=nginx /opt/third_party/install/lib /etc/nginx/modules
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index de2fd6da0..64b222890 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.16.1
+FROM alpine:3.16.2
 
 ARG TARGETARCH
 ARG VERSION
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index d88338d65..ab4ba5026 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,7 +1,7 @@
 ARG E2E_BASE_IMAGE
 FROM ${E2E_BASE_IMAGE} AS BASE
 
-FROM alpine:3.16.1
+FROM alpine:3.16.2
 
 RUN apk add -U --no-cache \
   ca-certificates \

From a98c637872f8cfd878f66bf024f392d98e5ca729 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 19 Aug 2022 08:00:09 +0530
Subject: [PATCH 0315/1641] bump baseimage alpine to v3.16.2 for zlib CVE fix
 (#8939)

---
 NGINX_BASE                     | 2 +-
 test/e2e/settings/ocsp/ocsp.go | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index 71016de7a..bc477308f 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:f0490cbfbf29a7a05caaac29998dde56173ac2bb@sha256:f0d8d32a20f8c1a7c98b504a03b162931d93edd60ecc2c745917a32e9e3e92ad
+registry.k8s.io/ingress-nginx/nginx:9fdbef829c327b95a3c6d6816a301df41bda997f@sha256:46c27294e467f46d0006ad1eb5fd3f7005eb3cbd00dd43be2ed9b02edfc6e828
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index 83eeab46e..ea137aeb1 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -292,7 +292,7 @@ func ocspserveDeployment(namespace string) (*appsv1.Deployment, *corev1.Service)
 						Containers: []corev1.Container{
 							{
 								Name:  name,
-								Image: "registry.k8s.io/ingress-nginx/e2e-test-cfssl@sha256:c0bd134f1c7190079180e6d4fa2ba64c049961a49b96db20aa39fabc896d26d5",
+								Image: "registry.k8s.io/ingress-nginx/e2e-test-cfssl@sha256:c1b273763048944dd7d22d37adfc65be4fa6a5f6068204292573c6cdc5ea3457",
 								Command: []string{
 									"/bin/bash",
 									"-c",

From 4508493dfe7fb06206109a0a9dcc6025cc335273 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 21 Aug 2022 18:21:51 -0300
Subject: [PATCH 0316/1641] Clean old code and move helper functions (#8946)

---
 internal/ingress/controller/controller.go |  94 +--------
 internal/ingress/controller/nginx.go      |  88 +-------
 internal/ingress/controller/nginx_test.go | 112 -----------
 internal/k8s/main.go                      |   3 -
 pkg/util/ingress/ingress.go               | 233 ++++++++++++++++++++++
 pkg/util/ingress/ingress_test.go          | 132 ++++++++++++
 test/e2e/framework/framework.go           |   4 -
 7 files changed, 374 insertions(+), 292 deletions(-)
 create mode 100644 pkg/util/ingress/ingress.go
 create mode 100644 pkg/util/ingress/ingress_test.go

diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index d0f85bb01..bba932d16 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -45,6 +45,7 @@ import (
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/internal/nginx"
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
+	utilingress "k8s.io/ingress-nginx/pkg/util/ingress"
 	"k8s.io/klog/v2"
 )
 
@@ -163,7 +164,7 @@ func (n *NGINXController) syncIngress(interface{}) error {
 
 	n.metricCollector.SetHosts(hosts)
 
-	if !n.IsDynamicConfigurationEnough(pcfg) {
+	if !utilingress.IsDynamicConfigurationEnough(pcfg, n.runningConfig) {
 		klog.InfoS("Configuration changes detected, backend reload required")
 
 		hash, _ := hashstructure.Hash(pcfg, &hashstructure.HashOptions{
@@ -223,9 +224,9 @@ func (n *NGINXController) syncIngress(interface{}) error {
 		return err
 	}
 
-	ri := getRemovedIngresses(n.runningConfig, pcfg)
-	re := getRemovedHosts(n.runningConfig, pcfg)
-	rc := getRemovedCertificateSerialNumbers(n.runningConfig, pcfg)
+	ri := utilingress.GetRemovedIngresses(n.runningConfig, pcfg)
+	re := utilingress.GetRemovedHosts(n.runningConfig, pcfg)
+	rc := utilingress.GetRemovedCertificateSerialNumbers(n.runningConfig, pcfg)
 	n.metricCollector.RemoveMetrics(ri, re, rc)
 
 	n.runningConfig = pcfg
@@ -1623,91 +1624,6 @@ func extractTLSSecretName(host string, ing *ingress.Ingress,
 	return ""
 }
 
-// getRemovedHosts returns a list of the hostnames
-// that are not associated anymore to the NGINX configuration.
-func getRemovedHosts(rucfg, newcfg *ingress.Configuration) []string {
-	old := sets.NewString()
-	new := sets.NewString()
-
-	for _, s := range rucfg.Servers {
-		if !old.Has(s.Hostname) {
-			old.Insert(s.Hostname)
-		}
-	}
-
-	for _, s := range newcfg.Servers {
-		if !new.Has(s.Hostname) {
-			new.Insert(s.Hostname)
-		}
-	}
-
-	return old.Difference(new).List()
-}
-
-func getRemovedCertificateSerialNumbers(rucfg, newcfg *ingress.Configuration) []string {
-	oldCertificates := sets.NewString()
-	newCertificates := sets.NewString()
-
-	for _, server := range rucfg.Servers {
-		if server.SSLCert == nil {
-			continue
-		}
-		identifier := server.SSLCert.Identifier()
-		if identifier != "" {
-			if !oldCertificates.Has(identifier) {
-				oldCertificates.Insert(identifier)
-			}
-		}
-	}
-
-	for _, server := range newcfg.Servers {
-		if server.SSLCert == nil {
-			continue
-		}
-		identifier := server.SSLCert.Identifier()
-		if identifier != "" {
-			if !newCertificates.Has(identifier) {
-				newCertificates.Insert(identifier)
-			}
-		}
-	}
-
-	return oldCertificates.Difference(newCertificates).List()
-}
-
-func getRemovedIngresses(rucfg, newcfg *ingress.Configuration) []string {
-	oldIngresses := sets.NewString()
-	newIngresses := sets.NewString()
-
-	for _, server := range rucfg.Servers {
-		for _, location := range server.Locations {
-			if location.Ingress == nil {
-				continue
-			}
-
-			ingKey := k8s.MetaNamespaceKey(location.Ingress)
-			if !oldIngresses.Has(ingKey) {
-				oldIngresses.Insert(ingKey)
-			}
-		}
-	}
-
-	for _, server := range newcfg.Servers {
-		for _, location := range server.Locations {
-			if location.Ingress == nil {
-				continue
-			}
-
-			ingKey := k8s.MetaNamespaceKey(location.Ingress)
-			if !newIngresses.Has(ingKey) {
-				newIngresses.Insert(ingKey)
-			}
-		}
-	}
-
-	return oldIngresses.Difference(newIngresses).List()
-}
-
 // checks conditions for whether or not an upstream should be created for a custom default backend
 func shouldCreateUpstreamForLocationDefaultBackend(upstream *ingress.Backend, location *ingress.Location) bool {
 	return (upstream.Name == location.Backend) &&
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index d0f4abe27..4b543ea2f 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -39,7 +39,6 @@ import (
 	"github.com/eapache/channels"
 	apiv1 "k8s.io/api/core/v1"
 	"k8s.io/apimachinery/pkg/util/intstr"
-	"k8s.io/apimachinery/pkg/util/sets"
 	"k8s.io/client-go/kubernetes/scheme"
 	v1core "k8s.io/client-go/kubernetes/typed/core/v1"
 	"k8s.io/client-go/tools/record"
@@ -61,6 +60,8 @@ import (
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 
 	"k8s.io/ingress-nginx/pkg/util/file"
+	utilingress "k8s.io/ingress-nginx/pkg/util/ingress"
+
 	klog "k8s.io/klog/v2"
 )
 
@@ -601,10 +602,9 @@ func (n NGINXController) generateTemplate(cfg ngx_config.Configuration, ingressC
 		IsIPV6Enabled:            n.isIPV6Enabled && !cfg.DisableIpv6,
 		NginxStatusIpv4Whitelist: cfg.NginxStatusIpv4Whitelist,
 		NginxStatusIpv6Whitelist: cfg.NginxStatusIpv6Whitelist,
-		RedirectServers:          buildRedirects(ingressCfg.Servers),
+		RedirectServers:          utilingress.BuildRedirects(ingressCfg.Servers),
 		IsSSLPassthroughEnabled:  n.cfg.EnableSSLPassthrough,
 		ListenPorts:              n.cfg.ListenPorts,
-		PublishService:           n.GetPublishService(),
 		EnableMetrics:            n.cfg.EnableMetrics,
 		MaxmindEditionFiles:      n.cfg.MaxmindEditionFiles,
 		HealthzURI:               nginx.HealthPath,
@@ -832,24 +832,6 @@ func clearL4serviceEndpoints(config *ingress.Configuration) {
 	config.UDPEndpoints = clearedUDPL4Services
 }
 
-// IsDynamicConfigurationEnough returns whether a Configuration can be
-// dynamically applied, without reloading the backend.
-func (n *NGINXController) IsDynamicConfigurationEnough(pcfg *ingress.Configuration) bool {
-	copyOfRunningConfig := *n.runningConfig
-	copyOfPcfg := *pcfg
-
-	copyOfRunningConfig.Backends = []*ingress.Backend{}
-	copyOfPcfg.Backends = []*ingress.Backend{}
-
-	clearL4serviceEndpoints(&copyOfRunningConfig)
-	clearL4serviceEndpoints(&copyOfPcfg)
-
-	clearCertificates(&copyOfRunningConfig)
-	clearCertificates(&copyOfPcfg)
-
-	return copyOfRunningConfig.Equal(&copyOfPcfg)
-}
-
 // configureDynamically encodes new Backends in JSON format and POSTs the
 // payload to an internal HTTP endpoint handled by Lua.
 func (n *NGINXController) configureDynamically(pcfg *ingress.Configuration) error {
@@ -1019,7 +1001,7 @@ func configureCertificates(rawServers []*ingress.Server) error {
 		}
 	}
 
-	redirects := buildRedirects(rawServers)
+	redirects := utilingress.BuildRedirects(rawServers)
 	for _, redirect := range redirects {
 		configure(redirect.From, redirect.SSLCert)
 	}
@@ -1139,65 +1121,3 @@ func cleanTempNginxCfg() error {
 
 	return nil
 }
-
-type redirect struct {
-	From    string
-	To      string
-	SSLCert *ingress.SSLCert
-}
-
-func buildRedirects(servers []*ingress.Server) []*redirect {
-	names := sets.String{}
-	redirectServers := make([]*redirect, 0)
-
-	for _, srv := range servers {
-		if !srv.RedirectFromToWWW {
-			continue
-		}
-
-		to := srv.Hostname
-
-		var from string
-		if strings.HasPrefix(to, "www.") {
-			from = strings.TrimPrefix(to, "www.")
-		} else {
-			from = fmt.Sprintf("www.%v", to)
-		}
-
-		if names.Has(to) {
-			continue
-		}
-
-		klog.V(3).InfoS("Creating redirect", "from", from, "to", to)
-		found := false
-		for _, esrv := range servers {
-			if esrv.Hostname == from {
-				found = true
-				break
-			}
-		}
-
-		if found {
-			klog.Warningf("Already exists an Ingress with %q hostname. Skipping creation of redirection from %q to %q.", from, from, to)
-			continue
-		}
-
-		r := &redirect{
-			From: from,
-			To:   to,
-		}
-
-		if srv.SSLCert != nil {
-			if ssl.IsValidHostname(from, srv.SSLCert.CN) {
-				r.SSLCert = srv.SSLCert
-			} else {
-				klog.Warningf("the server %v has SSL configured but the SSL certificate does not contains a CN for %v. Redirects will not work for HTTPS to HTTPS", from, to)
-			}
-		}
-
-		redirectServers = append(redirectServers, r)
-		names.Insert(to)
-	}
-
-	return redirectServers
-}
diff --git a/internal/ingress/controller/nginx_test.go b/internal/ingress/controller/nginx_test.go
index c2c71b797..4d3155194 100644
--- a/internal/ingress/controller/nginx_test.go
+++ b/internal/ingress/controller/nginx_test.go
@@ -36,118 +36,6 @@ import (
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
-func TestIsDynamicConfigurationEnough(t *testing.T) {
-	backends := []*ingress.Backend{{
-		Name: "fakenamespace-myapp-80",
-		Endpoints: []ingress.Endpoint{
-			{
-				Address: "10.0.0.1",
-				Port:    "8080",
-			},
-			{
-				Address: "10.0.0.2",
-				Port:    "8080",
-			},
-		},
-	}}
-
-	servers := []*ingress.Server{{
-		Hostname: "myapp.fake",
-		Locations: []*ingress.Location{
-			{
-				Path:    "/",
-				Backend: "fakenamespace-myapp-80",
-			},
-		},
-		SSLCert: &ingress.SSLCert{
-			PemCertKey: "fake-certificate",
-		},
-	}}
-
-	commonConfig := &ingress.Configuration{
-		Backends: backends,
-		Servers:  servers,
-	}
-
-	n := &NGINXController{
-		runningConfig: &ingress.Configuration{
-			Backends: backends,
-			Servers:  servers,
-		},
-		cfg: &Configuration{},
-	}
-
-	newConfig := commonConfig
-	if !n.IsDynamicConfigurationEnough(newConfig) {
-		t.Errorf("When new config is same as the running config it should be deemed as dynamically configurable")
-	}
-
-	newConfig = &ingress.Configuration{
-		Backends: []*ingress.Backend{{Name: "another-backend-8081"}},
-		Servers:  []*ingress.Server{{Hostname: "myapp1.fake"}},
-	}
-	if n.IsDynamicConfigurationEnough(newConfig) {
-		t.Errorf("Expected to not be dynamically configurable when there's more than just backends change")
-	}
-
-	newConfig = &ingress.Configuration{
-		Backends: []*ingress.Backend{{Name: "a-backend-8080"}},
-		Servers:  servers,
-	}
-
-	if !n.IsDynamicConfigurationEnough(newConfig) {
-		t.Errorf("Expected to be dynamically configurable when only backends change")
-	}
-
-	newServers := []*ingress.Server{{
-		Hostname: "myapp1.fake",
-		Locations: []*ingress.Location{
-			{
-				Path:    "/",
-				Backend: "fakenamespace-myapp-80",
-			},
-		},
-		SSLCert: &ingress.SSLCert{
-			PemCertKey: "fake-certificate",
-		},
-	}}
-
-	newConfig = &ingress.Configuration{
-		Backends: backends,
-		Servers:  newServers,
-	}
-	if n.IsDynamicConfigurationEnough(newConfig) {
-		t.Errorf("Expected to not be dynamically configurable when dynamic certificates is enabled and a non-certificate field in servers is updated")
-	}
-
-	newServers[0].Hostname = "myapp.fake"
-	newServers[0].SSLCert.PemCertKey = "new-fake-certificate"
-
-	newConfig = &ingress.Configuration{
-		Backends: backends,
-		Servers:  newServers,
-	}
-	if !n.IsDynamicConfigurationEnough(newConfig) {
-		t.Errorf("Expected to be dynamically configurable when only SSLCert changes")
-	}
-
-	newConfig = &ingress.Configuration{
-		Backends: []*ingress.Backend{{Name: "a-backend-8080"}},
-		Servers:  newServers,
-	}
-	if !n.IsDynamicConfigurationEnough(newConfig) {
-		t.Errorf("Expected to be dynamically configurable when backend and SSLCert changes")
-	}
-
-	if !n.runningConfig.Equal(commonConfig) {
-		t.Errorf("Expected running config to not change")
-	}
-
-	if !newConfig.Equal(&ingress.Configuration{Backends: []*ingress.Backend{{Name: "a-backend-8080"}}, Servers: newServers}) {
-		t.Errorf("Expected new config to not change")
-	}
-}
-
 func TestConfigureDynamically(t *testing.T) {
 	listener, err := tryListen("tcp", fmt.Sprintf(":%v", nginx.StatusPort))
 	if err != nil {
diff --git a/internal/k8s/main.go b/internal/k8s/main.go
index 1487e892a..5332631a7 100644
--- a/internal/k8s/main.go
+++ b/internal/k8s/main.go
@@ -121,9 +121,6 @@ func MetaNamespaceKey(obj interface{}) string {
 	return key
 }
 
-// IsIngressV1Ready indicates if the running Kubernetes version is at least v1.19.0
-var IsIngressV1Ready bool
-
 // IngressNGINXController defines the valid value of IngressClass
 // Controller field for ingress-nginx
 const IngressNGINXController = "k8s.io/ingress-nginx"
diff --git a/pkg/util/ingress/ingress.go b/pkg/util/ingress/ingress.go
new file mode 100644
index 000000000..7df2cc114
--- /dev/null
+++ b/pkg/util/ingress/ingress.go
@@ -0,0 +1,233 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package ingress
+
+import (
+	"fmt"
+	"strings"
+
+	"k8s.io/apimachinery/pkg/util/sets"
+	"k8s.io/ingress-nginx/internal/k8s"
+	"k8s.io/ingress-nginx/internal/net/ssl"
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
+	"k8s.io/klog/v2"
+)
+
+func GetRemovedHosts(rucfg, newcfg *ingress.Configuration) []string {
+	oldSet := sets.NewString()
+	newSet := sets.NewString()
+
+	for _, s := range rucfg.Servers {
+		if !oldSet.Has(s.Hostname) {
+			oldSet.Insert(s.Hostname)
+		}
+	}
+
+	for _, s := range newcfg.Servers {
+		if !newSet.Has(s.Hostname) {
+			newSet.Insert(s.Hostname)
+		}
+	}
+
+	return oldSet.Difference(newSet).List()
+}
+
+// GetRemovedCertificateSerialNumber extracts the difference of certificates between two configurations
+func GetRemovedCertificateSerialNumbers(rucfg, newcfg *ingress.Configuration) []string {
+	oldCertificates := sets.NewString()
+	newCertificates := sets.NewString()
+
+	for _, server := range rucfg.Servers {
+		if server.SSLCert == nil {
+			continue
+		}
+		identifier := server.SSLCert.Identifier()
+		if identifier != "" {
+			if !oldCertificates.Has(identifier) {
+				oldCertificates.Insert(identifier)
+			}
+		}
+	}
+
+	for _, server := range newcfg.Servers {
+		if server.SSLCert == nil {
+			continue
+		}
+		identifier := server.SSLCert.Identifier()
+		if identifier != "" {
+			if !newCertificates.Has(identifier) {
+				newCertificates.Insert(identifier)
+			}
+		}
+	}
+
+	return oldCertificates.Difference(newCertificates).List()
+}
+
+// GetRemovedIngresses extracts the difference of ingresses between two configurations
+func GetRemovedIngresses(rucfg, newcfg *ingress.Configuration) []string {
+	oldIngresses := sets.NewString()
+	newIngresses := sets.NewString()
+
+	for _, server := range rucfg.Servers {
+		for _, location := range server.Locations {
+			if location.Ingress == nil {
+				continue
+			}
+
+			ingKey := k8s.MetaNamespaceKey(location.Ingress)
+			if !oldIngresses.Has(ingKey) {
+				oldIngresses.Insert(ingKey)
+			}
+		}
+	}
+
+	for _, server := range newcfg.Servers {
+		for _, location := range server.Locations {
+			if location.Ingress == nil {
+				continue
+			}
+
+			ingKey := k8s.MetaNamespaceKey(location.Ingress)
+			if !newIngresses.Has(ingKey) {
+				newIngresses.Insert(ingKey)
+			}
+		}
+	}
+
+	return oldIngresses.Difference(newIngresses).List()
+}
+
+// IsDynamicConfigurationEnough returns whether a Configuration can be
+// dynamically applied, without reloading the backend.
+func IsDynamicConfigurationEnough(newcfg *ingress.Configuration, oldcfg *ingress.Configuration) bool {
+	copyOfRunningConfig := *oldcfg
+	copyOfPcfg := *newcfg
+
+	copyOfRunningConfig.Backends = []*ingress.Backend{}
+	copyOfPcfg.Backends = []*ingress.Backend{}
+
+	clearL4serviceEndpoints(&copyOfRunningConfig)
+	clearL4serviceEndpoints(&copyOfPcfg)
+
+	clearCertificates(&copyOfRunningConfig)
+	clearCertificates(&copyOfPcfg)
+
+	return copyOfRunningConfig.Equal(&copyOfPcfg)
+}
+
+// clearL4serviceEndpoints is a helper function to clear endpoints from the ingress configuration since they should be ignored when
+// checking if the new configuration changes can be applied dynamically.
+func clearL4serviceEndpoints(config *ingress.Configuration) {
+	var clearedTCPL4Services []ingress.L4Service
+	var clearedUDPL4Services []ingress.L4Service
+	for _, service := range config.TCPEndpoints {
+		copyofService := ingress.L4Service{
+			Port:      service.Port,
+			Backend:   service.Backend,
+			Endpoints: []ingress.Endpoint{},
+			Service:   nil,
+		}
+		clearedTCPL4Services = append(clearedTCPL4Services, copyofService)
+	}
+	for _, service := range config.UDPEndpoints {
+		copyofService := ingress.L4Service{
+			Port:      service.Port,
+			Backend:   service.Backend,
+			Endpoints: []ingress.Endpoint{},
+			Service:   nil,
+		}
+		clearedUDPL4Services = append(clearedUDPL4Services, copyofService)
+	}
+	config.TCPEndpoints = clearedTCPL4Services
+	config.UDPEndpoints = clearedUDPL4Services
+}
+
+// clearCertificates is a helper function to clear Certificates from the ingress configuration since they should be ignored when
+// checking if the new configuration changes can be applied dynamically if dynamic certificates is on
+func clearCertificates(config *ingress.Configuration) {
+	var clearedServers []*ingress.Server
+	for _, server := range config.Servers {
+		copyOfServer := *server
+		copyOfServer.SSLCert = nil
+		clearedServers = append(clearedServers, &copyOfServer)
+	}
+	config.Servers = clearedServers
+}
+
+type redirect struct {
+	From    string
+	To      string
+	SSLCert *ingress.SSLCert
+}
+
+// BuildRedirects build the redirects of servers based on configurations and certificates
+func BuildRedirects(servers []*ingress.Server) []*redirect {
+	names := sets.String{}
+	redirectServers := make([]*redirect, 0)
+
+	for _, srv := range servers {
+		if !srv.RedirectFromToWWW {
+			continue
+		}
+
+		to := srv.Hostname
+
+		var from string
+		if strings.HasPrefix(to, "www.") {
+			from = strings.TrimPrefix(to, "www.")
+		} else {
+			from = fmt.Sprintf("www.%v", to)
+		}
+
+		if names.Has(to) {
+			continue
+		}
+
+		klog.V(3).InfoS("Creating redirect", "from", from, "to", to)
+		found := false
+		for _, esrv := range servers {
+			if esrv.Hostname == from {
+				found = true
+				break
+			}
+		}
+
+		if found {
+			klog.Warningf("Already exists an Ingress with %q hostname. Skipping creation of redirection from %q to %q.", from, from, to)
+			continue
+		}
+
+		r := &redirect{
+			From: from,
+			To:   to,
+		}
+
+		if srv.SSLCert != nil {
+			if ssl.IsValidHostname(from, srv.SSLCert.CN) {
+				r.SSLCert = srv.SSLCert
+			} else {
+				klog.Warningf("the server %v has SSL configured but the SSL certificate does not contains a CN for %v. Redirects will not work for HTTPS to HTTPS", from, to)
+			}
+		}
+
+		redirectServers = append(redirectServers, r)
+		names.Insert(to)
+	}
+
+	return redirectServers
+}
diff --git a/pkg/util/ingress/ingress_test.go b/pkg/util/ingress/ingress_test.go
new file mode 100644
index 000000000..24597fb6e
--- /dev/null
+++ b/pkg/util/ingress/ingress_test.go
@@ -0,0 +1,132 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package ingress
+
+import (
+	"testing"
+
+	"k8s.io/ingress-nginx/pkg/apis/ingress"
+)
+
+func TestIsDynamicConfigurationEnough(t *testing.T) {
+	backends := []*ingress.Backend{{
+		Name: "fakenamespace-myapp-80",
+		Endpoints: []ingress.Endpoint{
+			{
+				Address: "10.0.0.1",
+				Port:    "8080",
+			},
+			{
+				Address: "10.0.0.2",
+				Port:    "8080",
+			},
+		},
+	}}
+
+	servers := []*ingress.Server{{
+		Hostname: "myapp.fake",
+		Locations: []*ingress.Location{
+			{
+				Path:    "/",
+				Backend: "fakenamespace-myapp-80",
+			},
+		},
+		SSLCert: &ingress.SSLCert{
+			PemCertKey: "fake-certificate",
+		},
+	}}
+
+	commonConfig := &ingress.Configuration{
+		Backends: backends,
+		Servers:  servers,
+	}
+
+	runningConfig := &ingress.Configuration{
+		Backends: backends,
+		Servers:  servers,
+	}
+
+	newConfig := commonConfig
+	if !IsDynamicConfigurationEnough(newConfig, runningConfig) {
+		t.Errorf("When new config is same as the running config it should be deemed as dynamically configurable")
+	}
+
+	newConfig = &ingress.Configuration{
+		Backends: []*ingress.Backend{{Name: "another-backend-8081"}},
+		Servers:  []*ingress.Server{{Hostname: "myapp1.fake"}},
+	}
+	if IsDynamicConfigurationEnough(newConfig, runningConfig) {
+		t.Errorf("Expected to not be dynamically configurable when there's more than just backends change")
+	}
+
+	newConfig = &ingress.Configuration{
+		Backends: []*ingress.Backend{{Name: "a-backend-8080"}},
+		Servers:  servers,
+	}
+
+	if !IsDynamicConfigurationEnough(newConfig, runningConfig) {
+		t.Errorf("Expected to be dynamically configurable when only backends change")
+	}
+
+	newServers := []*ingress.Server{{
+		Hostname: "myapp1.fake",
+		Locations: []*ingress.Location{
+			{
+				Path:    "/",
+				Backend: "fakenamespace-myapp-80",
+			},
+		},
+		SSLCert: &ingress.SSLCert{
+			PemCertKey: "fake-certificate",
+		},
+	}}
+
+	newConfig = &ingress.Configuration{
+		Backends: backends,
+		Servers:  newServers,
+	}
+	if IsDynamicConfigurationEnough(newConfig, runningConfig) {
+		t.Errorf("Expected to not be dynamically configurable when dynamic certificates is enabled and a non-certificate field in servers is updated")
+	}
+
+	newServers[0].Hostname = "myapp.fake"
+	newServers[0].SSLCert.PemCertKey = "new-fake-certificate"
+
+	newConfig = &ingress.Configuration{
+		Backends: backends,
+		Servers:  newServers,
+	}
+	if !IsDynamicConfigurationEnough(newConfig, runningConfig) {
+		t.Errorf("Expected to be dynamically configurable when only SSLCert changes")
+	}
+
+	newConfig = &ingress.Configuration{
+		Backends: []*ingress.Backend{{Name: "a-backend-8080"}},
+		Servers:  newServers,
+	}
+	if !IsDynamicConfigurationEnough(newConfig, runningConfig) {
+		t.Errorf("Expected to be dynamically configurable when backend and SSLCert changes")
+	}
+
+	if !runningConfig.Equal(commonConfig) {
+		t.Errorf("Expected running config to not change")
+	}
+
+	if !newConfig.Equal(&ingress.Configuration{Backends: []*ingress.Backend{{Name: "a-backend-8080"}}, Servers: newServers}) {
+		t.Errorf("Expected new config to not change")
+	}
+}
diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index ff47ffa51..0f01ae3cb 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -38,7 +38,6 @@ import (
 	"k8s.io/client-go/kubernetes/scheme"
 	"k8s.io/client-go/rest"
 	restclient "k8s.io/client-go/rest"
-	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/klog/v2"
 )
 
@@ -60,8 +59,6 @@ var (
 type Framework struct {
 	BaseName string
 
-	IsIngressV1Ready bool
-
 	// A Kubernetes and Service Catalog client
 	KubeClientSet          kubernetes.Interface
 	KubeConfig             *restclient.Config
@@ -116,7 +113,6 @@ func (f *Framework) CreateEnvironment() {
 		f.KubeClientSet, err = kubernetes.NewForConfig(f.KubeConfig)
 		assert.Nil(ginkgo.GinkgoT(), err, "creating a kubernetes client")
 
-		f.IsIngressV1Ready = k8s.NetworkingIngressAvailable(f.KubeClientSet)
 	}
 
 	f.Namespace, err = CreateKubeNamespace(f.BaseName, f.KubeClientSet)

From 3a450e04689fa472ac9161afef46895639bfb8f3 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Mon, 22 Aug 2022 23:54:29 +0530
Subject: [PATCH 0317/1641] updated testrunner and testecho images (#8948)

---
 build/run-in-docker.sh                                          | 2 +-
 .../customization/external-auth-headers/echo-service.yaml       | 2 +-
 test/e2e-image/Makefile                                         | 2 +-
 test/e2e/framework/deployment.go                                | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 7fdc20699..3a1d5a5fa 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -38,7 +38,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20220624-g3348cd71e@sha256:2a34e322b7ff89abdfa0b6202f903bf5618578b699ff609a3ddabac0aae239c8}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20220819-ga98c63787@sha256:608ef1c1e5783e4a0c4fe57d8f85aa30eb0a3d25e5b1492197e8a95382d5e09d}
 
 DOCKER_OPTS=${DOCKER_OPTS:-}
 DOCKER_IN_DOCKER_ENABLED=${DOCKER_IN_DOCKER_ENABLED:-}
diff --git a/docs/examples/customization/external-auth-headers/echo-service.yaml b/docs/examples/customization/external-auth-headers/echo-service.yaml
index 636aaded1..0fe37be56 100644
--- a/docs/examples/customization/external-auth-headers/echo-service.yaml
+++ b/docs/examples/customization/external-auth-headers/echo-service.yaml
@@ -18,7 +18,7 @@ spec:
       terminationGracePeriodSeconds: 60
       containers:
       - name: echo-service
-        image: gcr.io/k8s-staging-ingress-nginx/e2e-test-echo:v1.0.0
+        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v20220819-ga98c63787@sha256:778ac6d1188c8de8ecabeddd3c37b72c8adc8c712bad2bd7a81fb23a3514934c
         ports:
         - containerPort: 8080
         resources:
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index a9c6db7c5..47eb1521d 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20220801-g00ee51f09@sha256:795923c427f6dda855338c654448b4348fb845db152fbcad9cd8d186385d01c4"
+E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20220819-ga98c63787@sha256:608ef1c1e5783e4a0c4fe57d8f85aa30eb0a3d25e5b1492197e8a95382d5e09d"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 7d79f1bff..b37060af1 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -78,7 +78,7 @@ func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
 		o(options)
 	}
 
-	deployment := newDeployment(options.name, options.namespace, "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:f45fb156e1488ae29aa5e98d2faf8731c79bc5a19c2f39a3c4069566ba629a78", 80, int32(options.replicas),
+	deployment := newDeployment(options.name, options.namespace, "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:778ac6d1188c8de8ecabeddd3c37b72c8adc8c712bad2bd7a81fb23a3514934c", 80, int32(options.replicas),
 		nil,
 		[]corev1.VolumeMount{},
 		[]corev1.Volume{},

From cecd085ef73d20bf9962e036a1c87cdf72d9327e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Aug 2022 15:20:10 -0700
Subject: [PATCH 0318/1641] Bump github/codeql-action from 2.1.18 to 2.1.19
 (#8950)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.18 to 2.1.19.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v2.1.18...f5d217be74900c6ac8fbbe53f3c10376ba4e64da)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 26271c309..3c7d81687 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@2ca79b6fa8d3ec278944088b4aa5f46912db5d63 # v2.1.14
+        uses: github/codeql-action/upload-sarif@f5d217be74900c6ac8fbbe53f3c10376ba4e64da # v2.1.14
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 82cc99888..284c1def4 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@0c670bbf0414f39666df6ce8e718ec5662c21e03
+      uses: github/codeql-action/upload-sarif@f5d217be74900c6ac8fbbe53f3c10376ba4e64da
       with:
         token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository

From 2e3eb675a899808c11887acc72c795fba21419a1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Aug 2022 15:22:09 -0700
Subject: [PATCH 0319/1641] Bump geekyeggo/delete-artifact (#8951)

Bumps [geekyeggo/delete-artifact](https://github.com/geekyeggo/delete-artifact) from a6ab43859c960a8b74cbc6291f362c7fb51829ba to 1. This release includes the previously tagged commit.
- [Release notes](https://github.com/geekyeggo/delete-artifact/releases)
- [Commits](https://github.com/geekyeggo/delete-artifact/compare/a6ab43859c960a8b74cbc6291f362c7fb51829ba...b73cb986740e466292a536d0e32e2666c56fdeb3)

---
updated-dependencies:
- dependency-name: geekyeggo/delete-artifact
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 2ca339184..2e73dbbb6 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -177,7 +177,7 @@ jobs:
           version: v0.14.0
           image: kindest/node:v1.21.12
 
-      - uses: geekyeggo/delete-artifact@a6ab43859c960a8b74cbc6291f362c7fb51829ba # v1
+      - uses: geekyeggo/delete-artifact@b73cb986740e466292a536d0e32e2666c56fdeb3 # v1
         with:
           name: docker.tar.gz
           failOnError: false
@@ -228,7 +228,7 @@ jobs:
           config: test/e2e/kind.yaml
           image: kindest/node:${{ matrix.k8s }}
 
-      - uses: geekyeggo/delete-artifact@a6ab43859c960a8b74cbc6291f362c7fb51829ba # v1
+      - uses: geekyeggo/delete-artifact@b73cb986740e466292a536d0e32e2666c56fdeb3 # v1
         with:
           name: docker.tar.gz
           failOnError: false
@@ -285,7 +285,7 @@ jobs:
           config: test/e2e/kind.yaml
           image: kindest/node:${{ matrix.k8s }}
 
-      - uses: geekyeggo/delete-artifact@a6ab43859c960a8b74cbc6291f362c7fb51829ba
+      - uses: geekyeggo/delete-artifact@b73cb986740e466292a536d0e32e2666c56fdeb3
         with:
           name: docker.tar.gz
           failOnError: false

From 21fab45e9d3ac1609290c53a52748ecaa638b6e6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Aug 2022 15:24:09 -0700
Subject: [PATCH 0320/1641] Bump securego/gosec (#8952)

Bumps [securego/gosec](https://github.com/securego/gosec) from b99b5f7838e43a4104354ad92a6a1774302ee1f9 to 2.13.1. This release includes the previously tagged commit.
- [Release notes](https://github.com/securego/gosec/releases)
- [Changelog](https://github.com/securego/gosec/blob/master/.goreleaser.yml)
- [Commits](https://github.com/securego/gosec/compare/b99b5f7838e43a4104354ad92a6a1774302ee1f9...19fa856badad483cae700ee1213dd7f1a933d6d3)

---
updated-dependencies:
- dependency-name: securego/gosec
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 2e73dbbb6..011aa3a5a 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -53,7 +53,7 @@ jobs:
         uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
 
       - name: Run Gosec Security Scanner
-        uses: securego/gosec@b99b5f7838e43a4104354ad92a6a1774302ee1f9 # master
+        uses: securego/gosec@19fa856badad483cae700ee1213dd7f1a933d6d3 # master
         with:
           # G601 for zz_generated.deepcopy.go
           # G306 TODO: Expect WriteFile permissions to be 0600 or less

From c3fb817985dc0db0ed9b71833c103cc5fb0d2a83 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Aug 2022 15:26:09 -0700
Subject: [PATCH 0321/1641] Bump aquasecurity/trivy-action from 0.5.1 to 0.7.1
 (#8953)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.5.1 to 0.7.1.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0105373003c89c494a3f436bd5efc57f3ac1ca20...d63413b0a4a4482237085319f7f4a1ce99a8f2ac)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 284c1def4..633829630 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
     - name: Scan image with AquaSec/Trivy
       id: scan
-      uses: aquasecurity/trivy-action@0105373003c89c494a3f436bd5efc57f3ac1ca20 #v0.5.1
+      uses: aquasecurity/trivy-action@d63413b0a4a4482237085319f7f4a1ce99a8f2ac #v0.5.1
       with:
         image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
         format: 'sarif'

From d7373c91407b11e0b3e4d56c2d37b76afbb72661 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Aug 2022 15:28:08 -0700
Subject: [PATCH 0322/1641] Bump actions/dependency-review-action from 2.0.4 to
 2.1.0 (#8954)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 2.0.4 to 2.1.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/94145f3150bfabdc97540cbd5f7e926306ea7744...23d1ffffb6fa5401173051ec21eba8c35242733f)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 9f32403c5..b16d44681 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b #v3.0.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@94145f3150bfabdc97540cbd5f7e926306ea7744 #v2.0.2
+        uses: actions/dependency-review-action@23d1ffffb6fa5401173051ec21eba8c35242733f #v2.0.2

From c1b3a5065bf64a441a475ad59fc5eaace4e907e7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Aug 2022 15:30:09 -0700
Subject: [PATCH 0323/1641] Bump azure/setup-helm from 2.1 to 3.3 (#8956)

Bumps [azure/setup-helm](https://github.com/azure/setup-helm) from 2.1 to 3.3.
- [Release notes](https://github.com/azure/setup-helm/releases)
- [Commits](https://github.com/azure/setup-helm/compare/217bf70cbd2e930ba2e81ba7e1de2f7faecc42ba...b5b231a831f96336bbfeccc1329990f0005c5bb1)

---
updated-dependencies:
- dependency-name: azure/setup-helm
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 011aa3a5a..d4f9fb4d3 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -234,7 +234,7 @@ jobs:
           failOnError: false
 
       - name: Prepare cluster for testing
-        uses: azure/setup-helm@217bf70cbd2e930ba2e81ba7e1de2f7faecc42ba #v2.1
+        uses: azure/setup-helm@b5b231a831f96336bbfeccc1329990f0005c5bb1 #v2.1
         with:
           version: 'v3.8.0'
         id: local-path
@@ -291,7 +291,7 @@ jobs:
           failOnError: false
 
       - name: Prepare cluster for testing
-        uses: azure/setup-helm@217bf70cbd2e930ba2e81ba7e1de2f7faecc42ba #v2.1
+        uses: azure/setup-helm@b5b231a831f96336bbfeccc1329990f0005c5bb1 #v2.1
         with:
           version: 'v3.8.0'
         id: local-path

From 363a7f7fb23797792628c8064ad910603b47dc35 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Aug 2022 15:32:09 -0700
Subject: [PATCH 0324/1641] Bump github/codeql-action from 2.1.19 to 2.1.20
 (#8957)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.19 to 2.1.20.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/f5d217be74900c6ac8fbbe53f3c10376ba4e64da...7fee4ca032ac341c12486c4c06822c5221c76533)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 3c7d81687..b045c3fc9 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@f5d217be74900c6ac8fbbe53f3c10376ba4e64da # v2.1.14
+        uses: github/codeql-action/upload-sarif@7fee4ca032ac341c12486c4c06822c5221c76533 # v2.1.14
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 633829630..ce1840a0a 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@f5d217be74900c6ac8fbbe53f3c10376ba4e64da
+      uses: github/codeql-action/upload-sarif@7fee4ca032ac341c12486c4c06822c5221c76533
       with:
         token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository

From fe09f6d096d3acac25721e29aab0cad25b0b110c Mon Sep 17 00:00:00 2001
From: Christian <zeeZ@users.noreply.github.com>
Date: Tue, 23 Aug 2022 00:38:09 +0200
Subject: [PATCH 0325/1641] Don't error log when no OCSP responder URL exists
 (#8881)

---
 rootfs/etc/nginx/lua/certificate.lua | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/rootfs/etc/nginx/lua/certificate.lua b/rootfs/etc/nginx/lua/certificate.lua
index 630462fab..48c8d7134 100644
--- a/rootfs/etc/nginx/lua/certificate.lua
+++ b/rootfs/etc/nginx/lua/certificate.lua
@@ -120,10 +120,14 @@ end
 -- While this has no functional implications, it generates extra load on OCSP servers.
 local function fetch_and_cache_ocsp_response(uid, der_cert)
   local url, err = ocsp.get_ocsp_responder_from_der_chain(der_cert)
-  if not url then
+  if not url and err then
     ngx.log(ngx.ERR, "could not extract OCSP responder URL: ", err)
     return
   end
+  if not url and not err then
+    ngx.log(ngx.DEBUG, "no OCSP responder URL returned")
+    return
+  end
 
   local request
   request, err = ocsp.create_ocsp_request(der_cert)

From 730174f73d8c1c581788f65bac8510c298d6ccd0 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Tue, 23 Aug 2022 06:38:16 +0800
Subject: [PATCH 0326/1641] feat: using LeaseLock for election (#8921)

We removed the use of configmap as an election lock, so we will use the
Lease API to complete the election.

Before this, we used `MultiLock` to facilitate smooth migration of
existing users of ingress-nginx from configmap to LeaseLock.

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 .../templates/controller-role.yaml            | 15 ---------------
 internal/ingress/controller/status.go         | 19 +++++--------------
 test/e2e/status/update.go                     |  6 +++---
 3 files changed, 8 insertions(+), 32 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-role.yaml b/charts/ingress-nginx/templates/controller-role.yaml
index 8e5f8a0d7..7a10adb52 100644
--- a/charts/ingress-nginx/templates/controller-role.yaml
+++ b/charts/ingress-nginx/templates/controller-role.yaml
@@ -58,21 +58,6 @@ rules:
       - get
       - list
       - watch
-  - apiGroups:
-      - ""
-    resources:
-      - configmaps
-    resourceNames:
-      - {{ .Values.controller.electionID }}
-    verbs:
-      - get
-      - update
-  - apiGroups:
-      - ""
-    resources:
-      - configmaps
-    verbs:
-      - create
   - apiGroups:
       - coordination.k8s.io
     resources:
diff --git a/internal/ingress/controller/status.go b/internal/ingress/controller/status.go
index a56a6b831..3b0a41ab8 100644
--- a/internal/ingress/controller/status.go
+++ b/internal/ingress/controller/status.go
@@ -99,25 +99,16 @@ func setupLeaderElection(config *leaderElectionConfig) {
 		EventRecorder: recorder,
 	}
 
-	// TODO: If we upgrade client-go to v0.24 then we can only use LeaseLock.
-	// MultiLock is used for lock's migration
-	lock := resourcelock.MultiLock{
-		Primary: &resourcelock.ConfigMapLock{
-			ConfigMapMeta: objectMeta,
-			Client:        config.Client.CoreV1(),
-			LockConfig:    resourceLockConfig,
-		},
-		Secondary: &resourcelock.LeaseLock{
-			LeaseMeta:  objectMeta,
-			Client:     config.Client.CoordinationV1(),
-			LockConfig: resourceLockConfig,
-		},
+	lock := &resourcelock.LeaseLock{
+		LeaseMeta:  objectMeta,
+		Client:     config.Client.CoordinationV1(),
+		LockConfig: resourceLockConfig,
 	}
 
 	ttl := 30 * time.Second
 
 	elector, err := leaderelection.NewLeaderElector(leaderelection.LeaderElectionConfig{
-		Lock:          &lock,
+		Lock:          lock,
 		LeaseDuration: ttl,
 		RenewDeadline: ttl / 2,
 		RetryPeriod:   ttl / 4,
diff --git a/test/e2e/status/update.go b/test/e2e/status/update.go
index b512520f4..c9c6ef333 100644
--- a/test/e2e/status/update.go
+++ b/test/e2e/status/update.go
@@ -92,10 +92,10 @@ var _ = framework.IngressNginxDescribe("[Status] status update", func() {
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error cleaning Ingress status")
 		framework.Sleep(10 * time.Second)
 
-		err = f.KubeClientSet.CoreV1().
-			ConfigMaps(f.Namespace).
+		err = f.KubeClientSet.CoordinationV1().
+			Leases(f.Namespace).
 			Delete(context.TODO(), "ingress-controller-leader", metav1.DeleteOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error deleting leader election configmap")
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error deleting leader election lease")
 
 		_, cmd, err = f.KubectlProxy(port)
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error starting kubectl proxy")

From 1791b62e453846696dc28d65ce082998c6cd09d2 Mon Sep 17 00:00:00 2001
From: Mangirdas Judeikis <mangirdas@judeikis.lt>
Date: Tue, 23 Aug 2022 02:08:09 +0300
Subject: [PATCH 0327/1641] Add NetworkPolicy support (#8928)

* Add NetworkPolicy support

* add doc for np
---
 charts/ingress-nginx/README.md                |  1 +
 .../controller-wehbooks-networkpolicy.yaml    | 19 +++++++++++++++++++
 charts/ingress-nginx/values.yaml              |  1 +
 3 files changed, 21 insertions(+)
 create mode 100644 charts/ingress-nginx/templates/controller-wehbooks-networkpolicy.yaml

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 212b4f324..d18b3d571 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -249,6 +249,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.admissionWebhooks.key | string | `"/usr/local/certificates/key"` |  |
 | controller.admissionWebhooks.labels | object | `{}` | Labels to be added to admission webhooks |
 | controller.admissionWebhooks.namespaceSelector | object | `{}` |  |
+| controller.admissionWebhooks.networkPolicyEnabled | bool | `false` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
 | controller.admissionWebhooks.patch.fsGroup | int | `2000` |  |
diff --git a/charts/ingress-nginx/templates/controller-wehbooks-networkpolicy.yaml b/charts/ingress-nginx/templates/controller-wehbooks-networkpolicy.yaml
new file mode 100644
index 000000000..f74c2fbf3
--- /dev/null
+++ b/charts/ingress-nginx/templates/controller-wehbooks-networkpolicy.yaml
@@ -0,0 +1,19 @@
+{{- if .Values.controller.admissionWebhooks.enabled }}
+{{- if .Values.controller.admissionWebhooks.networkPolicyEnabled }}
+
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: {{ include "ingress-nginx.fullname" . }}-webhooks-allow
+  namespace: {{ .Release.Namespace }}
+spec:
+  ingress:
+  - {}
+  podSelector:
+    matchLabels:
+      app.kubernetes.io/name: {{ include "ingress-nginx.name" . }}
+  policyTypes:
+    - Ingress
+
+{{- end }}
+{{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index fed3a5b05..76e3355fe 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -615,6 +615,7 @@ controller:
 
     # -- Use an existing PSP instead of creating one
     existingPsp: ""
+    networkPolicyEnabled: false
 
     service:
       annotations: {}

From cad575e923a6e7eaae7c0cb5c8d536732517ea54 Mon Sep 17 00:00:00 2001
From: omichels <omichels@users.noreply.github.com>
Date: Tue, 23 Aug 2022 01:12:09 +0200
Subject: [PATCH 0328/1641] securityContext in admission-webhook now
 configurable e.g. to set seccompProfiles (#8930)

* Make securityContext in admission-webhook more configurable e.g. to set seccompProfiles

Signed-off-by: Oliver Michels <oliver.michels@aldi-sued.com>

* Make securityContext in admission-webhook more configurable e.g. to set seccompProfiles

Signed-off-by: Oliver Michels <oliver.michels@aldi-sued.com>

* Make securityContext in admission-webhook more configurable e.g. to set seccompProfiles

Signed-off-by: Oliver Michels <oliver.michels@aldi-sued.com>

* Make securityContext in admission-webhook more configurable e.g. to set seccompProfiles

Signed-off-by: Oliver Michels <oliver.michels@aldi-sued.com>

Signed-off-by: Oliver Michels <oliver.michels@aldi-sued.com>
---
 charts/ingress-nginx/Chart.yaml                            | 2 +-
 charts/ingress-nginx/README.md                             | 7 ++++---
 .../admission-webhooks/job-patch/job-createSecret.yaml     | 6 +++---
 .../admission-webhooks/job-patch/job-patchWebhook.yaml     | 6 +++---
 charts/ingress-nginx/values.yaml                           | 7 +++++--
 5 files changed, 16 insertions(+), 12 deletions(-)

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 0b5fa4dd1..36df7a3bf 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.2.1
+version: 4.2.2
 appVersion: 1.3.0
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index d18b3d571..a73b71a99 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.2.1](https://img.shields.io/badge/Version-4.2.1-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.3.0](https://img.shields.io/badge/AppVersion-1.3.0-informational?style=flat-square)
+![Version: 4.2.2](https://img.shields.io/badge/Version-4.2.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.3.0](https://img.shields.io/badge/AppVersion-1.3.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -252,7 +252,6 @@ Kubernetes: `>=1.20.0-0`
 | controller.admissionWebhooks.networkPolicyEnabled | bool | `false` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
-| controller.admissionWebhooks.patch.fsGroup | int | `2000` |  |
 | controller.admissionWebhooks.patch.image.digest | string | `"sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
@@ -262,7 +261,9 @@ Kubernetes: `>=1.20.0-0`
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
 | controller.admissionWebhooks.patch.podAnnotations | object | `{}` |  |
 | controller.admissionWebhooks.patch.priorityClassName | string | `""` | Provide a priority class name to the webhook patching job |
-| controller.admissionWebhooks.patch.runAsUser | int | `2000` |  |
+| controller.admissionWebhooks.patch.securityContext.fsGroup | int | `2000` |  |
+| controller.admissionWebhooks.patch.securityContext.runAsNonRoot | bool | `true` |  |
+| controller.admissionWebhooks.patch.securityContext.runAsUser | int | `2000` |  |
 | controller.admissionWebhooks.patch.tolerations | list | `[]` |  |
 | controller.admissionWebhooks.patchWebhookJob.resources | object | `{}` |  |
 | controller.admissionWebhooks.port | int | `8443` |  |
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
index 72c17eae4..7558e0b1a 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
@@ -72,8 +72,8 @@ spec:
     {{- if .Values.controller.admissionWebhooks.patch.tolerations }}
       tolerations: {{ toYaml .Values.controller.admissionWebhooks.patch.tolerations | nindent 8 }}
     {{- end }}
+      {{- if .Values.controller.admissionWebhooks.patch.securityContext }}
       securityContext:
-        runAsNonRoot: true
-        runAsUser: {{ .Values.controller.admissionWebhooks.patch.runAsUser }}
-        fsGroup: {{ .Values.controller.admissionWebhooks.patch.fsGroup }}
+        {{- toYaml .Values.controller.admissionWebhooks.patch.securityContext | nindent 8 }}
+      {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
index 3a1637a64..05282150b 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
@@ -74,8 +74,8 @@ spec:
     {{- if .Values.controller.admissionWebhooks.patch.tolerations }}
       tolerations: {{ toYaml .Values.controller.admissionWebhooks.patch.tolerations | nindent 8 }}
     {{- end }}
+      {{- if .Values.controller.admissionWebhooks.patch.securityContext }}
       securityContext:
-        runAsNonRoot: true
-        runAsUser: {{ .Values.controller.admissionWebhooks.patch.runAsUser }}
-        fsGroup: {{ .Values.controller.admissionWebhooks.patch.fsGroup }}
+        {{- toYaml .Values.controller.admissionWebhooks.patch.securityContext | nindent 8 }}
+      {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 76e3355fe..1889e4901 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -658,8 +658,11 @@ controller:
       tolerations: []
       # -- Labels to be added to patch job resources
       labels: {}
-      runAsUser: 2000
-      fsGroup: 2000
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+        fsGroup: 2000
+
 
   metrics:
     port: 10254

From 63edd3befd1ec70d9d252efee565befa41487870 Mon Sep 17 00:00:00 2001
From: Edvin N <edvin.norling@gmail.com>
Date: Tue, 23 Aug 2022 01:14:09 +0200
Subject: [PATCH 0329/1641] Document internal-logger-address cli arg (#8873)

Signed-off-by: Edvin Norling <edvin.norling@xenit.se>

Signed-off-by: Edvin Norling <edvin.norling@xenit.se>
---
 docs/user-guide/cli-arguments.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index ae7c5b3ba..0b710958d 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -30,6 +30,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--https-port`                     | Port to use for servicing HTTPS traffic. (default 443) |
 | `--ingress-class`                  | Name of the ingress class this controller satisfies. The class of an Ingress object is set using the field IngressClassName in Kubernetes clusters version v1.18.0 or higher or the annotation "kubernetes.io/ingress.class" (deprecated). If this parameter is not set, or set to the default value of "nginx", it will handle ingresses with either an empty or "nginx" class name. |
 | `--ingress-class-by-name`          | Define if Ingress Controller should watch for Ingress Class by Name together with Controller Class. (default false) |
+| `--internal-logger-address`        | Define the internal logger address to use when chroot images is used. (default 127.0.0.1:11514) |
 | `--kubeconfig`                     | Path to a kubeconfig file containing authorization and API server information. |
 | `--log_backtrace_at`               | when logging hits line file:N, emit a stack trace (default :0) |
 | `--log_dir`                        | If non-empty, write log files in this directory |

From adeb84aa38cbccb8dde471ab222b799b7cc439d3 Mon Sep 17 00:00:00 2001
From: Anders Swanson <91502735+anders-swanson@users.noreply.github.com>
Date: Mon, 22 Aug 2022 16:20:09 -0700
Subject: [PATCH 0330/1641] Metrics port name (Helm) (#8665)

---
 charts/ingress-nginx/templates/controller-daemonset.yaml      | 2 +-
 charts/ingress-nginx/templates/controller-deployment.yaml     | 2 +-
 .../ingress-nginx/templates/controller-service-metrics.yaml   | 4 ++--
 charts/ingress-nginx/templates/controller-servicemonitor.yaml | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 2dca8e5c1..80c268f7c 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -114,7 +114,7 @@ spec:
               {{- end }}
           {{- end }}
           {{- if .Values.controller.metrics.enabled }}
-            - name: metrics
+            - name: http-metrics
               containerPort: {{ .Values.controller.metrics.port }}
               protocol: TCP
           {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 5b781f8de..5ad186794 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -118,7 +118,7 @@ spec:
               {{- end }}
           {{- end }}
           {{- if .Values.controller.metrics.enabled }}
-            - name: metrics
+            - name: http-metrics
               containerPort: {{ .Values.controller.metrics.port }}
               protocol: TCP
           {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-service-metrics.yaml b/charts/ingress-nginx/templates/controller-service-metrics.yaml
index 0aaf41473..1c1d5bddb 100644
--- a/charts/ingress-nginx/templates/controller-service-metrics.yaml
+++ b/charts/ingress-nginx/templates/controller-service-metrics.yaml
@@ -31,10 +31,10 @@ spec:
   externalTrafficPolicy: {{ .Values.controller.metrics.service.externalTrafficPolicy }}
 {{- end }}
   ports:
-    - name: metrics
+    - name: http-metrics
       port: {{ .Values.controller.metrics.service.servicePort }}
       protocol: TCP
-      targetPort: metrics
+      targetPort: http-metrics
     {{- $setNodePorts := (or (eq .Values.controller.metrics.service.type "NodePort") (eq .Values.controller.metrics.service.type "LoadBalancer")) }}
     {{- if (and $setNodePorts (not (empty .Values.controller.metrics.service.nodePort))) }}
       nodePort: {{ .Values.controller.metrics.service.nodePort }}
diff --git a/charts/ingress-nginx/templates/controller-servicemonitor.yaml b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
index 4dbc6da9f..973d36b3e 100644
--- a/charts/ingress-nginx/templates/controller-servicemonitor.yaml
+++ b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
@@ -14,7 +14,7 @@ metadata:
   {{- end }}
 spec:
   endpoints:
-    - port: metrics
+    - port: http-metrics
       interval: {{ .Values.controller.metrics.serviceMonitor.scrapeInterval }}
     {{- if .Values.controller.metrics.serviceMonitor.honorLabels }}
       honorLabels: true

From d5893d4a2e0eb9cf16ad1a5c9e93d19c347e6110 Mon Sep 17 00:00:00 2001
From: Zadkiel Aharonian <zadkiel.aharonian@gmail.com>
Date: Tue, 23 Aug 2022 01:20:16 +0200
Subject: [PATCH 0331/1641] fix(controller): typo in catch-all CheckIngress
 error message (#8905)

---
 internal/ingress/controller/controller.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index bba932d16..ab03e5b27 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -265,7 +265,7 @@ func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
 	}
 
 	if n.cfg.DisableCatchAll && ing.Spec.DefaultBackend != nil {
-		return fmt.Errorf("This deployment is trying to create a catch-all ingress while DisableCatchAll flag is set to true. Remove '.spec.backend' or set DisableCatchAll flag to false.")
+		return fmt.Errorf("This deployment is trying to create a catch-all ingress while DisableCatchAll flag is set to true. Remove '.spec.defaultBackend' or set DisableCatchAll flag to false.")
 	}
 	startRender := time.Now().UnixNano() / 1000000
 	cfg := n.store.GetBackendConfiguration()

From 69318355b167b2cd4eb6a9c90c1fc793200e982c Mon Sep 17 00:00:00 2001
From: Harpreet singh <harry.singh1064@gmail.com>
Date: Tue, 23 Aug 2022 07:26:23 +0800
Subject: [PATCH 0332/1641] Fix defaultServer backend update for Ingress with
 defaultBackend. (#8825)

---
 internal/ingress/controller/controller.go | 10 ++++------
 test/e2e/ingress/without_host.go          |  8 ++++++++
 2 files changed, 12 insertions(+), 6 deletions(-)

diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index ab03e5b27..5287034c6 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -1208,17 +1208,15 @@ func (n *NGINXController) createServers(data []*ingress.Ingress,
 				// use backend specified in Ingress as the default backend for all its rules
 				un = backendUpstream.Name
 
-				// special "catch all" case, Ingress with a backend but no rule
 				defLoc := servers[defServerName].Locations[0]
-				defLoc.Backend = backendUpstream.Name
-				defLoc.Service = backendUpstream.Service
-				defLoc.Ingress = ing
-
 				if defLoc.IsDefBackend && len(ing.Spec.Rules) == 0 {
 					klog.V(2).Infof("Ingress %q defines a backend but no rule. Using it to configure the catch-all server %q", ingKey, defServerName)
 
 					defLoc.IsDefBackend = false
-
+					// special "catch all" case, Ingress with a backend but no rule
+					defLoc.Backend = backendUpstream.Name
+					defLoc.Service = backendUpstream.Service
+					defLoc.Ingress = ing
 					// TODO: Redirect and rewrite can affect the catch all behavior, skip for now
 					originalRedirect := defLoc.Redirect
 					originalRewrite := defLoc.Rewrite
diff --git a/test/e2e/ingress/without_host.go b/test/e2e/ingress/without_host.go
index 6ec7f5bd5..38f89beda 100644
--- a/test/e2e/ingress/without_host.go
+++ b/test/e2e/ingress/without_host.go
@@ -93,5 +93,13 @@ var _ = framework.IngressNginxDescribe("[Ingress] definition without host", func
 			WithHeader("Host", "only-backend").
 			Expect().
 			Status(http.StatusOK)
+		// Following assertion added with respect to issue https://github.com/kubernetes/ingress-nginx/issues/8823
+		// This check ensure that ingress having defaultBackend with rules should only be added as default backend
+		// for the host mentioned in rule. It should not affect the default catch-all server_name _ block.
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", "only-backend-doesnotexist").
+			Expect().
+			Status(http.StatusNotFound)
 	})
 })

From 45f71d5a164b622e66c54839c6d5e14412a9fc1d Mon Sep 17 00:00:00 2001
From: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Date: Tue, 23 Aug 2022 02:30:28 +0300
Subject: [PATCH 0333/1641] make keep-alive docs more explicit #8927 (#8944)

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
---
 docs/user-guide/nginx-configuration/configmap.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index e5af31cb5..cd25095b0 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -431,7 +431,7 @@ Enables or disables the preload attribute in the HSTS feature (when it is enable
 
 ## keep-alive
 
-Sets the time during which a keep-alive client connection will stay open on the server side. The zero value disables keep-alive client connections.
+Sets the time, in seconds, during which a keep-alive client connection will stay open on the server side. The zero value disables keep-alive client connections.
 
 _References:_
 [https://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_timeout](https://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_timeout)

From ffcf13c09b62c9691aaac77a32e21fdef36575e1 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Tue, 23 Aug 2022 15:29:24 +0800
Subject: [PATCH 0334/1641] revert changes to configmap resource permissions
 (#8959)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 build/run-in-docker.sh                        |  2 +-
 charts/ingress-nginx/Chart.yaml               |  3 ++-
 charts/ingress-nginx/README.md                |  2 +-
 .../templates/controller-role.yaml            | 20 +++++++++++++++++++
 4 files changed, 24 insertions(+), 3 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 3a1d5a5fa..7fdc20699 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -38,7 +38,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20220819-ga98c63787@sha256:608ef1c1e5783e4a0c4fe57d8f85aa30eb0a3d25e5b1492197e8a95382d5e09d}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20220624-g3348cd71e@sha256:2a34e322b7ff89abdfa0b6202f903bf5618578b699ff609a3ddabac0aae239c8}
 
 DOCKER_OPTS=${DOCKER_OPTS:-}
 DOCKER_IN_DOCKER_ENABLED=${DOCKER_IN_DOCKER_ENABLED:-}
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 36df7a3bf..8b7f8ca16 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.2.2
+version: 4.2.3
 appVersion: 1.3.0
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
@@ -27,3 +27,4 @@ annotations:
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
     - "[8896](https://github.com/kubernetes/ingress-nginx/pull/8896) updated to new images built today"
+    - "fix permissions about configmap"
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index a73b71a99..8357cab56 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.2.2](https://img.shields.io/badge/Version-4.2.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.3.0](https://img.shields.io/badge/AppVersion-1.3.0-informational?style=flat-square)
+![Version: 4.2.3](https://img.shields.io/badge/Version-4.2.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.3.0](https://img.shields.io/badge/AppVersion-1.3.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
diff --git a/charts/ingress-nginx/templates/controller-role.yaml b/charts/ingress-nginx/templates/controller-role.yaml
index 7a10adb52..330be8c86 100644
--- a/charts/ingress-nginx/templates/controller-role.yaml
+++ b/charts/ingress-nginx/templates/controller-role.yaml
@@ -58,6 +58,26 @@ rules:
       - get
       - list
       - watch
+  # TODO(Jintao Zhang)
+  # Once we release a new version of the controller,
+  # we will be able to remove the configmap related permissions
+  # We have used the Lease API for selection
+  # ref: https://github.com/kubernetes/ingress-nginx/pull/8921
+  - apiGroups:
+      - ""
+    resources:
+      - configmaps
+    resourceNames:
+      - {{ .Values.controller.electionID }}
+    verbs:
+      - get
+      - update
+  - apiGroups:
+      - ""
+    resources:
+      - configmaps
+    verbs:
+      - create
   - apiGroups:
       - coordination.k8s.io
     resources:

From e19026fe4eeafcc5ab16c5f73a05de43604b1491 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Tue, 23 Aug 2022 16:05:23 +0800
Subject: [PATCH 0335/1641] upgrade yamale and yamllint version (#8960)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 images/test-runner/Makefile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 0f2b72bad..7cd0d6251 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -47,8 +47,8 @@ build: ensure-buildx
 		--build-arg LUAROCKS_VERSION=3.8.0 \
 		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
 		--build-arg CHART_TESTING_VERSION=3.0.0 \
-		--build-arg YAML_LINT_VERSION=1.13.0 \
-		--build-arg YAMALE_VERSION=1.8.0 \
+		--build-arg YAML_LINT_VERSION=1.27.1 \
+		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=v3.9.0 \
 		-t $(IMAGE):$(TAG) rootfs
 

From 511f7cd55fb2776927f74c21784798edc56b7d49 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 24 Aug 2022 14:28:25 +0530
Subject: [PATCH 0336/1641] updated to testrunnerimage with updated yamle
 yamllint (#8967)

---
 build/run-in-docker.sh  | 2 +-
 test/e2e-image/Makefile | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 7fdc20699..77e7b7a38 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -38,7 +38,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20220624-g3348cd71e@sha256:2a34e322b7ff89abdfa0b6202f903bf5618578b699ff609a3ddabac0aae239c8}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20220823-ge19026fe4@sha256:038fc60379b6ce9a0134c2ff9134edccad1f8ecbd9c6ebed9660711d05b0ed95}
 
 DOCKER_OPTS=${DOCKER_OPTS:-}
 DOCKER_IN_DOCKER_ENABLED=${DOCKER_IN_DOCKER_ENABLED:-}
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 47eb1521d..f04307f81 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20220819-ga98c63787@sha256:608ef1c1e5783e4a0c4fe57d8f85aa30eb0a3d25e5b1492197e8a95382d5e09d"
+E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20220823-ge19026fe4@sha256:038fc60379b6ce9a0134c2ff9134edccad1f8ecbd9c6ebed9660711d05b0ed95"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"

From f6d04d3e3bb3db11641644962c1a5317cacf6cd8 Mon Sep 17 00:00:00 2001
From: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Date: Wed, 24 Aug 2022 14:54:03 +0300
Subject: [PATCH 0337/1641] fix: bump k8s dependencies to fix go-restful CVE
 (#8969)

[1] https://nvd.nist.gov/vuln/detail/CVE-2022-1996
[2] https://github.com/kubernetes/ingress-nginx/issues/8745

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
---
 go.mod |  46 +++++++++---------
 go.sum | 145 +++++++++++++++++++++++++++++++++++++++------------------
 2 files changed, 123 insertions(+), 68 deletions(-)

diff --git a/go.mod b/go.mod
index 0dcd77946..ce9ddea9e 100644
--- a/go.mod
+++ b/go.mod
@@ -25,17 +25,17 @@ require (
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.0.0-20220214200702-86341886e292
-	golang.org/x/net v0.0.0-20220225172249-27dd8689420f
+	golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
+	golang.org/x/net v0.0.0-20220722155237-a158d28d115b
 	google.golang.org/grpc v1.48.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.23.6
+	k8s.io/api v0.25.0
 	k8s.io/apiextensions-apiserver v0.23.5
-	k8s.io/apimachinery v0.23.6
+	k8s.io/apimachinery v0.25.0
 	k8s.io/apiserver v0.23.5
-	k8s.io/cli-runtime v0.23.5
-	k8s.io/client-go v0.23.6
+	k8s.io/cli-runtime v0.25.0
+	k8s.io/client-go v0.25.0
 	k8s.io/code-generator v0.23.5
 	k8s.io/component-base v0.23.6
 	k8s.io/klog/v2 v2.70.1
@@ -45,10 +45,10 @@ require (
 )
 
 require (
-	cloud.google.com/go v0.81.0 // indirect
+	cloud.google.com/go v0.97.0 // indirect
 	github.com/Azure/go-autorest v14.2.0+incompatible // indirect
-	github.com/Azure/go-autorest/autorest v0.11.18 // indirect
-	github.com/Azure/go-autorest/autorest/adal v0.9.13 // indirect
+	github.com/Azure/go-autorest/autorest v0.11.27 // indirect
+	github.com/Azure/go-autorest/autorest/adal v0.9.20 // indirect
 	github.com/Azure/go-autorest/autorest/date v0.3.0 // indirect
 	github.com/Azure/go-autorest/logger v0.2.1 // indirect
 	github.com/Azure/go-autorest/tracing v0.6.0 // indirect
@@ -65,27 +65,28 @@ require (
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/eapache/queue v1.1.0 // indirect
 	github.com/emicklei/go-restful v2.9.5+incompatible // indirect
+	github.com/emicklei/go-restful/v3 v3.8.0 // indirect
 	github.com/evanphx/json-patch v4.12.0+incompatible // indirect
 	github.com/fatih/structs v1.0.0 // indirect
-	github.com/form3tech-oss/jwt-go v3.2.3+incompatible // indirect
 	github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b // indirect
 	github.com/go-errors/errors v1.0.1 // indirect
-	github.com/go-logr/logr v1.2.0 // indirect
+	github.com/go-logr/logr v1.2.3 // indirect
 	github.com/go-openapi/jsonpointer v0.19.5 // indirect
 	github.com/go-openapi/jsonreference v0.19.5 // indirect
 	github.com/go-openapi/swag v0.19.14 // indirect
 	github.com/godbus/dbus/v5 v5.0.6 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
+	github.com/golang-jwt/jwt/v4 v4.2.0 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
 	github.com/golang/protobuf v1.5.2 // indirect
 	github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7 // indirect
 	github.com/google/btree v1.0.1 // indirect
+	github.com/google/gnostic v0.5.7-v3refs // indirect
 	github.com/google/go-cmp v0.5.8 // indirect
 	github.com/google/go-querystring v1.0.0 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.2.0 // indirect
-	github.com/googleapis/gnostic v0.5.5 // indirect
 	github.com/gorilla/websocket v1.4.2 // indirect
 	github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 // indirect
 	github.com/imkira/go-interpol v1.0.0 // indirect
@@ -100,6 +101,7 @@ require (
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00 // indirect
+	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
 	github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 // indirect
 	github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
@@ -112,33 +114,33 @@ require (
 	github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f // indirect
 	github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415 // indirect
 	github.com/xeipuuv/gojsonschema v1.1.0 // indirect
-	github.com/xlab/treeprint v0.0.0-20181112141820-a009c3971eca // indirect
+	github.com/xlab/treeprint v1.1.0 // indirect
 	github.com/yalp/jsonpath v0.0.0-20180802001716-5cc68e5049a0 // indirect
 	github.com/yudai/gojsondiff v1.0.0 // indirect
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.6.0-dev.0.20220106191415-9b9b3d81d5e3 // indirect
 	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
-	golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a // indirect
+	golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f // indirect
 	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
 	golang.org/x/text v0.3.7 // indirect
-	golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
+	golang.org/x/time v0.0.0-20220210224613-90d013bbcef8 // indirect
 	golang.org/x/tools v0.1.10 // indirect
 	golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2 // indirect
+	google.golang.org/genproto v0.0.0-20210924002016-3dee208752a0 // indirect
 	google.golang.org/protobuf v1.28.1 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 	k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c // indirect
-	k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65 // indirect
-	k8s.io/utils v0.0.0-20211116205334-6203023598ed // indirect
+	k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1 // indirect
+	k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed // indirect
 	moul.io/http2curl v1.0.1-0.20190925090545-5cd742060b0e // indirect
-	sigs.k8s.io/json v0.0.0-20211020170558-c049b76a60c6 // indirect
-	sigs.k8s.io/kustomize/api v0.10.1 // indirect
-	sigs.k8s.io/kustomize/kyaml v0.13.0 // indirect
-	sigs.k8s.io/structured-merge-diff/v4 v4.2.1 // indirect
+	sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 // indirect
+	sigs.k8s.io/kustomize/api v0.12.1 // indirect
+	sigs.k8s.io/kustomize/kyaml v0.13.9 // indirect
+	sigs.k8s.io/structured-merge-diff/v4 v4.2.3 // indirect
 	sigs.k8s.io/yaml v1.3.0 // indirect
 )
diff --git a/go.sum b/go.sum
index 4e81b0cd7..fc2d61415 100644
--- a/go.sum
+++ b/go.sum
@@ -17,8 +17,15 @@ cloud.google.com/go v0.72.0/go.mod h1:M+5Vjvlc2wnp6tjzE102Dw08nGShTscUx2nZMufOKP
 cloud.google.com/go v0.74.0/go.mod h1:VV1xSbzvo+9QJOxLDaJfTjx5e+MePCpCWwvftOeQmWk=
 cloud.google.com/go v0.78.0/go.mod h1:QjdrLG0uq+YwhjoVOLsS1t7TW8fs36kLs4XO5R5ECHg=
 cloud.google.com/go v0.79.0/go.mod h1:3bzgcEeQlzbuEAYu4mrWhKqWjmpprinYgKJLgKHnbb8=
-cloud.google.com/go v0.81.0 h1:at8Tk2zUz63cLPR0JPWm5vp77pEZmzxEQBEfRKn1VV8=
 cloud.google.com/go v0.81.0/go.mod h1:mk/AM35KwGk/Nm2YSeZbxXdrNK3KZOYHmLkOqC2V6E0=
+cloud.google.com/go v0.83.0/go.mod h1:Z7MJUsANfY0pYPdw0lbnivPx4/vhy/e2FEkSkF7vAVY=
+cloud.google.com/go v0.84.0/go.mod h1:RazrYuxIK6Kb7YrzzhPoLmCVzl7Sup4NrbKPg8KHSUM=
+cloud.google.com/go v0.87.0/go.mod h1:TpDYlFy7vuLzZMMZ+B6iRiELaY7z/gJPaqbMx6mlWcY=
+cloud.google.com/go v0.90.0/go.mod h1:kRX0mNRHe0e2rC6oNakvwQqzyDmg57xJ+SZU1eT2aDQ=
+cloud.google.com/go v0.93.3/go.mod h1:8utlLll2EF5XMAV15woO4lSbWQlk8rer9aLOfLh7+YI=
+cloud.google.com/go v0.94.1/go.mod h1:qAlAugsXlC+JWO+Bke5vCtc9ONxjQT3drlTTnAplMW4=
+cloud.google.com/go v0.97.0 h1:3DXvAyifywvq64LfkKaMOmkWPS1CikIQdMe2lY9vxU8=
+cloud.google.com/go v0.97.0/go.mod h1:GF7l59pYBVlXQIBLx3a761cZ41F9bBH3JUlihCt2Udc=
 cloud.google.com/go/bigquery v1.0.1/go.mod h1:i/xbL2UlR5RvWAURpBYZTtm/cXjCha9lbfbpx4poX+o=
 cloud.google.com/go/bigquery v1.3.0/go.mod h1:PjpwJnslEMmckchkHFfq+HTD2DmtT67aNFKH1/VBDHE=
 cloud.google.com/go/bigquery v1.4.0/go.mod h1:S8dzgnTigyfTmLBfrtrhyYhwRxG72rYxvftPBK2Dvzc=
@@ -42,14 +49,18 @@ github.com/Azure/go-ansiterm v0.0.0-20210608223527-2377c96fe795/go.mod h1:LmzpDX
 github.com/Azure/go-ansiterm v0.0.0-20210617225240-d185dfc1b5a1/go.mod h1:xomTg63KZ2rFqZQzSB4Vz2SUXa1BpHTVz9L5PTmPC4E=
 github.com/Azure/go-autorest v14.2.0+incompatible h1:V5VMDjClD3GiElqLWO7mz2MxNAK/vTfRHdAubSIPRgs=
 github.com/Azure/go-autorest v14.2.0+incompatible/go.mod h1:r+4oMnoxhatjLLJ6zxSWATqVooLgysK6ZNox3g/xq24=
-github.com/Azure/go-autorest/autorest v0.11.18 h1:90Y4srNYrwOtAgVo3ndrQkTYn6kf1Eg/AjTFJ8Is2aM=
 github.com/Azure/go-autorest/autorest v0.11.18/go.mod h1:dSiJPy22c3u0OtOKDNttNgqpNFY/GeWa7GH/Pz56QRA=
-github.com/Azure/go-autorest/autorest/adal v0.9.13 h1:Mp5hbtOePIzM8pJVRa3YLrWWmZtoxRXqUEzCfJt3+/Q=
+github.com/Azure/go-autorest/autorest v0.11.27 h1:F3R3q42aWytozkV8ihzcgMO4OA4cuqr3bNlsEuF6//A=
+github.com/Azure/go-autorest/autorest v0.11.27/go.mod h1:7l8ybrIdUmGqZMTD0sRtAr8NvbHjfofbf8RSP2q7w7U=
 github.com/Azure/go-autorest/autorest/adal v0.9.13/go.mod h1:W/MM4U6nLxnIskrw4UwWzlHfGjwUS50aOsc/I3yuU8M=
+github.com/Azure/go-autorest/autorest/adal v0.9.18/go.mod h1:XVVeme+LZwABT8K5Lc3hA4nAe8LDBVle26gTrguhhPQ=
+github.com/Azure/go-autorest/autorest/adal v0.9.20 h1:gJ3E98kMpFB1MFqQCvA1yFab8vthOeD4VlFRQULxahg=
+github.com/Azure/go-autorest/autorest/adal v0.9.20/go.mod h1:XVVeme+LZwABT8K5Lc3hA4nAe8LDBVle26gTrguhhPQ=
 github.com/Azure/go-autorest/autorest/date v0.3.0 h1:7gUk1U5M/CQbp9WoqinNzJar+8KY+LPI6wiWrP/myHw=
 github.com/Azure/go-autorest/autorest/date v0.3.0/go.mod h1:BI0uouVdmngYNUzGWeSYnokU+TrmwEsOqdt8Y6sso74=
-github.com/Azure/go-autorest/autorest/mocks v0.4.1 h1:K0laFcLE6VLTOwNgSxaGbUcLPuGXlNkbVvq4cW4nIHk=
 github.com/Azure/go-autorest/autorest/mocks v0.4.1/go.mod h1:LTp+uSrOhSkaKrUy935gNZuuIPPVsHlr9DSOxSayd+k=
+github.com/Azure/go-autorest/autorest/mocks v0.4.2 h1:PGN4EDXnuQbojHbU0UWoNvmu9AGVwYHG9/fkDYhtAfw=
+github.com/Azure/go-autorest/autorest/mocks v0.4.2/go.mod h1:Vy7OitM9Kei0i1Oj+LvyAWMXJHeKH1MVlzFugfVrmyU=
 github.com/Azure/go-autorest/logger v0.2.1 h1:IG7i4p/mDa2Ce4TRyAO8IHnVhAVF3RFU+ZtXWSmf4Tg=
 github.com/Azure/go-autorest/logger v0.2.1/go.mod h1:T9E3cAhj2VqvPOtCYAvby9aBXkZmbF5NWuPV8+WeEW8=
 github.com/Azure/go-autorest/tracing v0.6.0 h1:TYi4+3m5t6K48TGI9AUdb+IzbnSxvnvUMfuitfgcfuo=
@@ -77,7 +88,6 @@ github.com/andybalholm/brotli v1.0.4/go.mod h1:fO7iG3H7G2nSZ7m0zPUDn85XEX2GTukHG
 github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
 github.com/antlr/antlr4/runtime/Go/antlr v0.0.0-20210826220005-b48c857c3a0e/go.mod h1:F7bn7fEU90QkQ3tnmaTx3LTKLEDqnwWODIYppRQ5hnY=
 github.com/armon/circbuf v0.0.0-20150827004946-bbbad097214e/go.mod h1:3U/XgcO3hCbHZ8TKRvWD2dDTCfh9M9ya+I9JpbB7O8o=
-github.com/armon/consul-api v0.0.0-20180202201655-eb2c6b5be1b6/go.mod h1:grANhF5doyWs3UAsr3K4I6qtAmlQcZDesFNEHPZAzj8=
 github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da/go.mod h1:Q73ZrmVTwzkszR9V5SSuryQ31EELlFMUz1kKyl939pY=
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a h1:AP/vsCIvJZ129pdm9Ek7bH7yutN3hByqsMoNrWAxRQc=
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a/go.mod h1:QmP9hvJ91BbJmGVGSbutW19IC0Q9phDCLGaomwTJbgU=
@@ -120,10 +130,8 @@ github.com/cockroachdb/errors v1.2.4/go.mod h1:rQD95gz6FARkaKkQXUksEje/d9a6wBJoC
 github.com/cockroachdb/logtags v0.0.0-20190617123548-eb05cc24525f/go.mod h1:i/u985jwjWRlyHXQbwatDASoW0RMlZ/3i9yJHE2xLkI=
 github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
 github.com/coreos/bbolt v1.3.2/go.mod h1:iRUV2dpdMOn7Bo10OQBFzIJO9kkE559Wcmn+qkEiiKk=
-github.com/coreos/etcd v3.3.10+incompatible/go.mod h1:uF7uidLiAD3TWHmW31ZFd/JWoc32PjwdhPthX9715RE=
 github.com/coreos/etcd v3.3.13+incompatible/go.mod h1:uF7uidLiAD3TWHmW31ZFd/JWoc32PjwdhPthX9715RE=
 github.com/coreos/go-oidc v2.1.0+incompatible/go.mod h1:CgnwVTmzoESiwO9qyAFEMiHoZ1nMCKZlZ9V6mm3/LKc=
-github.com/coreos/go-semver v0.2.0/go.mod h1:nnelYz7RCh+5ahJtPPxZlU+153eP4D4r3EedlOD2RNk=
 github.com/coreos/go-semver v0.3.0/go.mod h1:nnelYz7RCh+5ahJtPPxZlU+153eP4D4r3EedlOD2RNk=
 github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e/go.mod h1:F5haX7vjVVG0kc13fIWeqUViNPyEJxv/OmvnBo0Yme4=
 github.com/coreos/go-systemd/v22 v22.3.2 h1:D9/bQk5vlXQFZ6Kwuu6zaiXJ9oTPe68++AzAJc1DzSI=
@@ -152,6 +160,8 @@ github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153/go.mod h1:/Zj4wYkg
 github.com/emicklei/go-restful v0.0.0-20170410110728-ff4f55a20633/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
 github.com/emicklei/go-restful v2.9.5+incompatible h1:spTtZBk5DYEvbxMVutUuTyh1Ao2r4iyvLdACqsl/Ljk=
 github.com/emicklei/go-restful v2.9.5+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
+github.com/emicklei/go-restful/v3 v3.8.0 h1:eCZ8ulSerjdAiaNpF7GxXIE7ZCMo1moN1qX+S609eVw=
+github.com/emicklei/go-restful/v3 v3.8.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=
@@ -161,7 +171,6 @@ github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.m
 github.com/envoyproxy/go-control-plane v0.9.9-0.20210512163311-63b5d3c536b0/go.mod h1:hliV/p42l8fGbc6Y9bQ70uLwIvmJyVE5k4iMKlh8wCQ=
 github.com/envoyproxy/go-control-plane v0.10.2-0.20220325020618-49ff273808a1/go.mod h1:KJwIaB5Mv44NWtYuAOFCVOjcI94vtpEz2JU/D2v6IjE=
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
-github.com/evanphx/json-patch v4.11.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/evanphx/json-patch v4.12.0+incompatible h1:4onqiflcdA9EOZ4RxV643DvftH5pOlLGNtQ5lPWQu84=
 github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/fasthttp/websocket v1.4.3-rc.6 h1:omHqsl8j+KXpmzRjF8bmzOSYJ8GnS0E3efi1wYT+niY=
@@ -171,7 +180,6 @@ github.com/fatih/structs v1.0.0 h1:BrX964Rv5uQ3wwS+KRUAJCBBw5PQmgJfJ6v4yly5QwU=
 github.com/fatih/structs v1.0.0/go.mod h1:9NiDSp5zOcgEDl+j00MP/WkGVPOlPRLejGD8Ga6PJ7M=
 github.com/felixge/httpsnoop v1.0.1/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
 github.com/form3tech-oss/jwt-go v3.2.2+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
-github.com/form3tech-oss/jwt-go v3.2.3+incompatible h1:7ZaBxOI7TMoYBfyA3cQHErNNyAWIKUMIwqxEtgHOs5c=
 github.com/form3tech-oss/jwt-go v3.2.3+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
 github.com/frankban/quicktest v1.11.3/go.mod h1:wRf/ReqHper53s+kmmSZizM8NamnL3IM0I9ntUbOk+k=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
@@ -200,8 +208,9 @@ github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG
 github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
 github.com/go-logr/logr v0.1.0/go.mod h1:ixOQHD9gLJUVQQ2ZOR7zLEifBX6tGkNJF4QyIY7sIas=
 github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
-github.com/go-logr/logr v1.2.0 h1:QK40JKJyMdUDz+h+xvCsru/bJhvG0UxvePV0ufL/AcE=
 github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
+github.com/go-logr/logr v1.2.3 h1:2DntVwHkVopvECVRSlL5PSo9eG+cAkDCuckLubN+rq0=
+github.com/go-logr/logr v1.2.3/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/zapr v1.2.0 h1:n4JnPI1T3Qq1SFEi/F8rwLrZERp2bso19PJZDB9dayk=
 github.com/go-logr/zapr v1.2.0/go.mod h1:Qa4Bsj2Vb+FAVeAKsLD8RLQ+YRJB8YDmOAKxaBQf7Ro=
 github.com/go-openapi/jsonpointer v0.19.3/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
@@ -222,6 +231,9 @@ github.com/gogo/protobuf v1.2.1/go.mod h1:hp+jE20tsWTFYpLwKvXlhS1hjn+gTNwPg2I6zV
 github.com/gogo/protobuf v1.3.1/go.mod h1:SlYgWuQ5SjCEi6WLHjHCa1yvBfUnHcTbrrZtXPKa29o=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
+github.com/golang-jwt/jwt/v4 v4.0.0/go.mod h1:/xlHOz8bRuivTWchD4jCa+NbatV+wEUSzwAxVc6locg=
+github.com/golang-jwt/jwt/v4 v4.2.0 h1:besgBTC8w8HjP6NzQdxwKH9Z5oQMZ24ThTrHp3cZ8eU=
+github.com/golang-jwt/jwt/v4 v4.2.0/go.mod h1:/xlHOz8bRuivTWchD4jCa+NbatV+wEUSzwAxVc6locg=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
 github.com/golang/glog v1.0.0/go.mod h1:EWib/APOK0SL3dFbYqvxE3UYd8E6s1ouQ7iEp/0LWV4=
 github.com/golang/groupcache v0.0.0-20190129154638-5b532d6fd5ef/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
@@ -238,6 +250,7 @@ github.com/golang/mock v1.4.1/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt
 github.com/golang/mock v1.4.3/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
 github.com/golang/mock v1.4.4/go.mod h1:l3mdAwkq5BuhzHwde/uurv3sEJeZMXNpwsxVWU71h+4=
 github.com/golang/mock v1.5.0/go.mod h1:CWnOUgYIOo4TcNZ0wHX3YZCqsaM1I1Jvs6v3mP3KVu8=
+github.com/golang/mock v1.6.0/go.mod h1:p6yTPP+5HYm5mzsMV8JkE6ZKdX+/wYM6Hr+LicevLPs=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
@@ -265,6 +278,8 @@ github.com/google/btree v1.0.1 h1:gK4Kx5IaGY9CD5sPJ36FHiBJ6ZXl0kilRiiCj+jdYp4=
 github.com/google/btree v1.0.1/go.mod h1:xXMiIv4Fb/0kKde4SpL7qlzvu5cMJDRkFDxJfI9uaxA=
 github.com/google/cel-go v0.9.0/go.mod h1:U7ayypeSkw23szu4GaQTPJGx66c20mx8JklMSxrmI1w=
 github.com/google/cel-spec v0.6.0/go.mod h1:Nwjgxy5CbjlPrtCWjeDjUyKMl8w41YBYGjsyDdqk0xA=
+github.com/google/gnostic v0.5.7-v3refs h1:FhTMOKj2VhjpouxvWJAV1TL304uMlb9zcDqkl6cEI54=
+github.com/google/gnostic v0.5.7-v3refs/go.mod h1:73MKFl6jIHelAJNaBGFzt3SPtZULs9dYrGFt8OiIsHQ=
 github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
@@ -287,6 +302,7 @@ github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/
 github.com/google/martian v2.1.0+incompatible/go.mod h1:9I4somxYTbIHy5NJKHRl3wXiIaQGbYVAs8BPL6v8lEs=
 github.com/google/martian/v3 v3.0.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
 github.com/google/martian/v3 v3.1.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
+github.com/google/martian/v3 v3.2.1/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
 github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20191218002539-d4f498aebedc/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
@@ -298,21 +314,22 @@ github.com/google/pprof v0.0.0-20201023163331-3e6fc7fc9c4c/go.mod h1:kpwsk12EmLe
 github.com/google/pprof v0.0.0-20201203190320-1bf35d6f28c2/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210122040257-d980be63207e/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210226084205-cbba55b83ad5/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210601050228-01bbb1931b22/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210609004039-a478d1d731e9/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
-github.com/google/uuid v1.1.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.2.0 h1:qJYtXnJRWmpe7m/3XlyhrsLrEURqHRM2kxzoxXqyUDs=
 github.com/google/uuid v1.2.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
+github.com/googleapis/gax-go/v2 v2.1.0/go.mod h1:Q3nei7sK6ybPYH7twZdmQpAd1MKb7pfu6SK+H1/DsU0=
 github.com/googleapis/gnostic v0.5.1/go.mod h1:6U4PtQXGIEt/Z3h5MAT7FNofLnw9vXk2cUuW7uA/OeU=
-github.com/googleapis/gnostic v0.5.5 h1:9fHAtK0uDfpveeqqo1hkEZJcFvYXAiCN3UutL8F9xHw=
 github.com/googleapis/gnostic v0.5.5/go.mod h1:7+EbHbldMins07ALC74bsA81Ovc97DwqyJO1AENw9kA=
 github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY=
 github.com/gorilla/mux v1.8.0/go.mod h1:DVbg23sWSpFRCP0SfiEN6jmj59UnW/n46BH5rLB71So=
-github.com/gorilla/websocket v1.4.0/go.mod h1:E7qHFY5m1UJ88s3WnNqhKjPHQ0heANvMoAMk2YaljkQ=
 github.com/gorilla/websocket v1.4.2 h1:+/TMaTYc4QFitKJxsQ7Yye35DkWvkdLcvGKqM+x0Ufc=
 github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 h1:pdN6V1QBWetyv/0+wjACpqVH+eVULgEjkurDLq3goeM=
@@ -393,12 +410,10 @@ github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
-github.com/magiconair/properties v1.8.0/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ=
 github.com/magiconair/properties v1.8.1/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ=
 github.com/magiconair/properties v1.8.5/go.mod h1:y3VJvCyxH9uVvJTWEGAELF3aiYNyPKd5NZ3oSwXrF60=
 github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
-github.com/mailru/easyjson v0.7.0/go.mod h1:KAzv3t3aY1NaHWoQz1+4F1ccyAH66Jk7yos7ldAVICs=
 github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA=
 github.com/mailru/easyjson v0.7.6/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
 github.com/mattn/go-colorable v0.0.9/go.mod h1:9vuHe8Xs5qXnSaW/c/ABM9alt+Vo+STaOChaDxuIBZU=
@@ -445,6 +460,7 @@ github.com/moul/pb v0.0.0-20220425114252-bca18df4138c h1:1STmblv9zmHLDpru4dbnf1P
 github.com/moul/pb v0.0.0-20220425114252-bca18df4138c/go.mod h1:jE2HT8eoucYyUPBFJMreiVlC3KPHkDMtN8wn+ef7Y64=
 github.com/mrunalp/fileutils v0.5.0/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
 github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
+github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq1c1nUAm88MOHcQC9l5mIlSMApZMrHA=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/mwitkow/go-conntrack v0.0.0-20161129095857-cc309e4a2223/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
 github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
@@ -558,24 +574,20 @@ github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTd
 github.com/spf13/afero v1.6.0/go.mod h1:Ai8FlHk4v/PARR026UzYexafAt9roJ7LcLMAmO6Z93I=
 github.com/spf13/cast v1.3.0/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
 github.com/spf13/cast v1.3.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
-github.com/spf13/cobra v1.0.0/go.mod h1:/6GTrnGXV9HjY+aR4k0oJ5tcvakLuG6EuKReYlHNrgE=
 github.com/spf13/cobra v1.1.3/go.mod h1:pGADOWyqRD/YMrPZigI/zbliZ2wVD/23d+is3pSWzOo=
 github.com/spf13/cobra v1.2.1/go.mod h1:ExllRjgxM/piMAM+3tAZvg8fsklGAf3tPfi+i8t68Nk=
 github.com/spf13/cobra v1.5.0 h1:X+jTBEBqF0bHN+9cSMgmfuvv2VHJ9ezmFNf9Y/XstYU=
 github.com/spf13/cobra v1.5.0/go.mod h1:dWXEIy2H428czQCjInthrTRUg7yKbok+2Qi/yBIJoUM=
 github.com/spf13/jwalterweatherman v1.0.0/go.mod h1:cQK4TGJAtQXfYWX+Ddv3mKDzgVb68N+wFjFa4jdeBTo=
 github.com/spf13/jwalterweatherman v1.1.0/go.mod h1:aNWZUN0dPAAO/Ljvb5BEdw96iTZ0EXowPYD95IqWIGo=
-github.com/spf13/pflag v0.0.0-20170130214245-9ff6c6923cff/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
 github.com/spf13/pflag v1.0.3/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
-github.com/spf13/viper v1.4.0/go.mod h1:PTJ7Z/lr49W6bUbkmS1V3by4uWynFiR9p7+dSq/yZzE=
 github.com/spf13/viper v1.7.0/go.mod h1:8WkrPz2fc9jxqZNCJI/76HCieCp4Q8HaLFoCha5qpdg=
 github.com/spf13/viper v1.8.1/go.mod h1:o0Pch8wJ9BVSWGQMbra6iw0oQ5oktSIBaujf1rJH9Ns=
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/objx v0.2.0/go.mod h1:qt09Ya8vawLte6SNmTgCsAVtYtaKzEcn8ATUoHMkEqE=
 github.com/stretchr/objx v0.4.0 h1:M2gUjqZET1qApGOWNSnZ49BAIMX4F/1plDv3+l31EJ4=
 github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
 github.com/stretchr/testify v1.1.3/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
@@ -592,7 +604,6 @@ github.com/subosito/gotenv v1.2.0/go.mod h1:N0PQaV/YGNqwC0u51sEeR/aUtSLEXKX9iv69
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20201229170055-e5319fda7802/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
-github.com/ugorji/go v1.1.4/go.mod h1:uQMGLiO92mf5W77hV/PUCpI3pbzQx3CRekS0kk+RGrc=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
 github.com/valyala/bytebufferpool v1.0.0 h1:GqA5TC/0021Y/b9FG4Oi9Mr3q7XYx6KllzawFIhcdPw=
@@ -610,9 +621,8 @@ github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415/go.mod h1:
 github.com/xeipuuv/gojsonschema v1.1.0 h1:ngVtJC9TY/lg0AA/1k48FYhBrhRoFlEmWzsehpNAaZg=
 github.com/xeipuuv/gojsonschema v1.1.0/go.mod h1:5yf86TLmAcydyeJq5YvxkGPE2fm/u4myDekKRoLuqhs=
 github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
-github.com/xlab/treeprint v0.0.0-20181112141820-a009c3971eca h1:1CFlNzQhALwjS9mBAUkycX616GzgsuYUOCHA5+HSlXI=
-github.com/xlab/treeprint v0.0.0-20181112141820-a009c3971eca/go.mod h1:ce1O1j6UtZfjr22oyGxGLbauSBp2YVXpARAosm7dHBg=
-github.com/xordataexchange/crypt v0.0.3-0.20170626215501-b2862e3d0a77/go.mod h1:aYKd//L2LvnjZzWKhF00oedf4jCCReLcmhLdhm1A27Q=
+github.com/xlab/treeprint v1.1.0 h1:G/1DjNkPpfZCFt9CSh6b5/nY4VimlbHF3Rh4obvtzDk=
+github.com/xlab/treeprint v1.1.0/go.mod h1:gj5Gd3gPdKtR1ikdDK6fnFLdmIS0X30kTTuNd/WEJu0=
 github.com/yalp/jsonpath v0.0.0-20180802001716-5cc68e5049a0 h1:6fRhSjgLCkTD3JnJxvaJ4Sj+TYblw757bqYgZaOq5ZY=
 github.com/yalp/jsonpath v0.0.0-20180802001716-5cc68e5049a0/go.mod h1:/LWChgwKmvncFJFHJ7Gvn9wZArjbV5/FppcK2fKk/tI=
 github.com/yudai/gojsondiff v1.0.0 h1:27cbfqXLVEJ1o8I6v3y9lg8Ydm53EKqHXAOMxEGlCOA=
@@ -683,8 +693,11 @@ golang.org/x/crypto v0.0.0-20201002170205-7f63de1d35b0/go.mod h1:LzIPMQfyMNhhGPh
 golang.org/x/crypto v0.0.0-20210513164829-c07d793c2f9a/go.mod h1:P+XmwS30IXTQdn5tA2iutPOUgjI07+tq3H3K9MVA1s8=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.0.0-20220214200702-86341886e292 h1:f+lwQ+GtmgoY+A2YaQxlSOnDjXcQ7ZRLWOHbC6HtRqE=
+golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/crypto v0.0.0-20211215153901-e495a2d5b3d3/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.0.0-20220214200702-86341886e292/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
+golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd h1:XcWmESyNjXJMLahc3mqVQJcgSTDxFxhETVlfk9uGc38=
+golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -735,7 +748,6 @@ golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190501004415-9ce7a6920f09/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190522155817-f3200d17e092/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
 golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
 golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
@@ -767,6 +779,7 @@ golang.org/x/net v0.0.0-20210119194325-5f4716e94777/go.mod h1:m0MpNAwzfU5UDzcl9v
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210316092652-d523dce5a7f4/go.mod h1:RBQZq4jEuRlivfhVLdyRGr576XBO4/greRjx4P4O3yc=
 golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
+golang.org/x/net v0.0.0-20210503060351-7fd8e65b6420/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210510120150-4163338589ed/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210805182204-aaa1db679c0d/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
@@ -774,8 +787,9 @@ golang.org/x/net v0.0.0-20210825183410-e898025ed96a/go.mod h1:9nx3DQGgdP8bBQD5qx
 golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
-golang.org/x/net v0.0.0-20220225172249-27dd8689420f h1:oA4XRj0qtSt8Yo1Zms0CUlsT3KG69V2UGQWPBxujDmc=
 golang.org/x/net v0.0.0-20220225172249-27dd8689420f/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
+golang.org/x/net v0.0.0-20220722155237-a158d28d115b h1:PxfKdU9lEEDYjdIzOtC4qFWgkU2rGHdKlKowJSMN9h0=
+golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -789,6 +803,8 @@ golang.org/x/oauth2 v0.0.0-20210220000619-9bb904979d93/go.mod h1:KelEdhl1UZF7XfJ
 golang.org/x/oauth2 v0.0.0-20210313182246-cd4f82c27b84/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210402161424-2e8d93401602/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210628180205-a41e5a781914/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b h1:clP8eMhB30EHdc0bd2Twtq6kgU7yl5ub2cQLSdrv1Dg=
 golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
@@ -866,19 +882,24 @@ golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210514084401-e8d321eab015/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210603125802-9665404d3644/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210630005230-0f9fa26af87c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210806184541-e5e7981a1069/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210809222454-d867a43fc93e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210823070655-63515b42dcdf/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210831042530-f4d43177bf5e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210906170528-6f6e22806c34/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210908233432-aa78b53d3365/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220227234510-4e6760a101f9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220412211240-33da011f77ad/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a h1:dGzPydgVsqGcTRVwiLJ1jVbufYwmzD3LfVPLKsKg+0k=
-golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f h1:v4INt8xihDGvnrfjMDVXGxw9wrfxYyCjk0KbXjhR55s=
+golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 h1:JGgROgKl9N8DuW20oFS5gxc+lE67/N3FcwmBPMe7ArY=
@@ -897,8 +918,9 @@ golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxb
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20210220033141-f8bda1e9f3ba/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac h1:7zkz7BUtwNFFqcowJ+RIgu2MaV/MapERkDIy+mwPyjs=
 golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
+golang.org/x/time v0.0.0-20220210224613-90d013bbcef8 h1:vVKdlvoWBphwdxWKrFZEuM0kGgGLxUOYcY4U/2Vjg44=
+golang.org/x/time v0.0.0-20220210224613-90d013bbcef8/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/tools v0.0.0-20180221164845-07fd8470d635/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20181030221726-6c7e314b6563/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
@@ -954,7 +976,10 @@ golang.org/x/tools v0.0.0-20201208233053-a543418bbed2/go.mod h1:emZCQorbCU4vsT4f
 golang.org/x/tools v0.0.0-20210105154028-b0ab187a4818/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.1.0/go.mod h1:xkSsbof2nBLbhDlRMhhhyNLN/zl3eTqcnHD5viDpcZ0=
+golang.org/x/tools v0.1.1/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.2/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.3/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.4/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.6-0.20210820212750-d4cc65f0b2ff/go.mod h1:YD9qOF0M9xpSpdWTBbzEl5e/RnCefISl8E5Noe10jFM=
 golang.org/x/tools v0.1.10 h1:QjFRCZxdOhBJ/UNgnBZLbNV13DlbnK0quyivTnXJM20=
@@ -987,6 +1012,13 @@ google.golang.org/api v0.40.0/go.mod h1:fYKFpnQN0DsDSKRVRcQSDQNtqWPfM9i+zNPxepjR
 google.golang.org/api v0.41.0/go.mod h1:RkxM5lITDfTzmyKFPt+wGrCJbVfniCr2ool8kTBzRTU=
 google.golang.org/api v0.43.0/go.mod h1:nQsDGjRXMo4lvh5hP0TKqF244gqhGcr/YSIykhUk/94=
 google.golang.org/api v0.44.0/go.mod h1:EBOGZqzyhtvMDoxwS97ctnh0zUmYY6CxqXsc1AvkYD8=
+google.golang.org/api v0.47.0/go.mod h1:Wbvgpq1HddcWVtzsVLyfLp8lDg6AA241LmgIL59tHXo=
+google.golang.org/api v0.48.0/go.mod h1:71Pr1vy+TAZRPkPs/xlCf5SsU8WjuAWv1Pfjbtukyy4=
+google.golang.org/api v0.50.0/go.mod h1:4bNT5pAuq5ji4SRZm+5QIkjny9JAyVD/3gaSihNefaw=
+google.golang.org/api v0.51.0/go.mod h1:t4HdrdoNgyN5cbEfm7Lum0lcLDLiise1F8qDKX00sOU=
+google.golang.org/api v0.54.0/go.mod h1:7C4bFFOvVDGXjfDTAsgGwDgAxRDeQ4X8NvUedIt6z3k=
+google.golang.org/api v0.55.0/go.mod h1:38yMfeP1kfjsl8isn0tliTjIb1rJXcQi4UXlbqivdVE=
+google.golang.org/api v0.57.0/go.mod h1:dVPlbZyBo2/OjBpmvNdpn2GRm6rPy75jyU7bmhdrMgI=
 google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
 google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
@@ -1038,12 +1070,24 @@ google.golang.org/genproto v0.0.0-20210303154014-9728d6b83eeb/go.mod h1:FWY/as6D
 google.golang.org/genproto v0.0.0-20210310155132-4ce2db91004e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20210319143718-93e7006c17a6/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20210402141018-6c239bbf2bb1/go.mod h1:9lPAdzaEmUacj36I+k7YKbEc5CXzPIeORRgDAUOu28A=
+google.golang.org/genproto v0.0.0-20210513213006-bf773b8c8384/go.mod h1:P3QM42oQyzQSnHPnZ/vqoCdDmzH28fzWByN9asMeM8A=
 google.golang.org/genproto v0.0.0-20210602131652-f16073e35f0c/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
-google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2 h1:NHN4wOCScVzKhPenJ2dt+BTs3X/XkBVI/Rh4iDt55T8=
+google.golang.org/genproto v0.0.0-20210604141403-392c879c8b08/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
+google.golang.org/genproto v0.0.0-20210608205507-b6d2f5bf0d7d/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
+google.golang.org/genproto v0.0.0-20210624195500-8bfb893ecb84/go.mod h1:SzzZ/N+nwJDaO1kznhnlzqS8ocJICar6hYhVyhi++24=
+google.golang.org/genproto v0.0.0-20210713002101-d411969a0d9a/go.mod h1:AxrInvYm1dci+enl5hChSFPOmmUF1+uAa/UsgNRWd7k=
+google.golang.org/genproto v0.0.0-20210716133855-ce7ef5c701ea/go.mod h1:AxrInvYm1dci+enl5hChSFPOmmUF1+uAa/UsgNRWd7k=
+google.golang.org/genproto v0.0.0-20210728212813-7823e685a01f/go.mod h1:ob2IJxKrgPT52GcgX759i1sleT07tiKowYBGbczaW48=
+google.golang.org/genproto v0.0.0-20210805201207-89edb61ffb67/go.mod h1:ob2IJxKrgPT52GcgX759i1sleT07tiKowYBGbczaW48=
+google.golang.org/genproto v0.0.0-20210813162853-db860fec028c/go.mod h1:cFeNkxwySK631ADgubI+/XFU/xp8FD5KIVV4rj8UC5w=
+google.golang.org/genproto v0.0.0-20210821163610-241b8fcbd6c8/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210828152312-66f60bf46e71/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
 google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210903162649-d08c68adba83/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210924002016-3dee208752a0 h1:5Tbluzus3QxoAJx4IefGt1W0HQZW4nuMrVk684jI74Q=
+google.golang.org/genproto v0.0.0-20210924002016-3dee208752a0/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
-google.golang.org/grpc v1.21.0/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
 google.golang.org/grpc v1.23.0/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg=
 google.golang.org/grpc v1.25.1/go.mod h1:c3i+UQWmh7LiEpx4sFZnkU36qjEYZ0imhYfXVyQciAY=
@@ -1062,10 +1106,14 @@ google.golang.org/grpc v1.35.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAG
 google.golang.org/grpc v1.36.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
 google.golang.org/grpc v1.36.1/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
 google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
+google.golang.org/grpc v1.37.1/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/grpc v1.38.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
+google.golang.org/grpc v1.39.0/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
+google.golang.org/grpc v1.39.1/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
 google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
 google.golang.org/grpc v1.48.0 h1:rQOsyJ/8+ufEDJd/Gdsz7HG220Mh9HAhFHRGnIjda0w=
 google.golang.org/grpc v1.48.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
+google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
@@ -1131,26 +1179,28 @@ honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 k8s.io/api v0.23.5/go.mod h1:Na4XuKng8PXJ2JsploYYrivXrINeTaycCGcYgF91Xm8=
-k8s.io/api v0.23.6 h1:yOK34wbYECH4RsJbQ9sfkFK3O7f/DUHRlzFehkqZyVw=
 k8s.io/api v0.23.6/go.mod h1:1kFaYxGCFHYp3qd6a85DAj/yW8aVD6XLZMqJclkoi9g=
+k8s.io/api v0.25.0 h1:H+Q4ma2U/ww0iGB78ijZx6DRByPz6/733jIuFpX70e0=
+k8s.io/api v0.25.0/go.mod h1:ttceV1GyV1i1rnmvzT3BST08N6nGt+dudGrquzVQWPk=
 k8s.io/apiextensions-apiserver v0.23.5 h1:5SKzdXyvIJKu+zbfPc3kCbWpbxi+O+zdmAJBm26UJqI=
 k8s.io/apiextensions-apiserver v0.23.5/go.mod h1:ntcPWNXS8ZPKN+zTXuzYMeg731CP0heCTl6gYBxLcuQ=
 k8s.io/apimachinery v0.23.5/go.mod h1:BEuFMMBaIbcOqVIJqNZJXGFTP4W6AycEpb5+m/97hrM=
-k8s.io/apimachinery v0.23.6 h1:RH1UweWJkWNTlFx0D8uxOpaU1tjIOvVVWV/bu5b3/NQ=
 k8s.io/apimachinery v0.23.6/go.mod h1:BEuFMMBaIbcOqVIJqNZJXGFTP4W6AycEpb5+m/97hrM=
+k8s.io/apimachinery v0.25.0 h1:MlP0r6+3XbkUG2itd6vp3oxbtdQLQI94fD5gCS+gnoU=
+k8s.io/apimachinery v0.25.0/go.mod h1:qMx9eAk0sZQGsXGu86fab8tZdffHbwUfsvzqKn4mfB0=
 k8s.io/apiserver v0.23.5 h1:2Ly8oUjz5cnZRn1YwYr+aFgDZzUmEVL9RscXbnIeDSE=
 k8s.io/apiserver v0.23.5/go.mod h1:7wvMtGJ42VRxzgVI7jkbKvMbuCbVbgsWFT7RyXiRNTw=
-k8s.io/cli-runtime v0.23.5 h1:Z7XUpGoJZYZB2uNjQfJjMbyDKyVkoBGye62Ap0sWQHY=
-k8s.io/cli-runtime v0.23.5/go.mod h1:oY6QDF2qo9xndSq32tqcmRp2UyXssdGrLfjAVymgbx4=
+k8s.io/cli-runtime v0.25.0 h1:XBnTc2Fi+w818jcJGzhiJKQuXl8479sZ4FhtV5hVJ1Q=
+k8s.io/cli-runtime v0.25.0/go.mod h1:bHOI5ZZInRHhbq12OdUiYZQN8ml8aKZLwQgt9QlLINw=
 k8s.io/client-go v0.23.5/go.mod h1:flkeinTO1CirYgzMPRWxUCnV0G4Fbu2vLhYCObnt/r4=
-k8s.io/client-go v0.23.6 h1:7h4SctDVQAQbkHQnR4Kzi7EyUyvla5G1pFWf4+Od7hQ=
 k8s.io/client-go v0.23.6/go.mod h1:Umt5icFOMLV/+qbtZ3PR0D+JA6lvvb3syzodv4irpK4=
+k8s.io/client-go v0.25.0 h1:CVWIaCETLMBNiTUta3d5nzRbXvY5Hy9Dpl+VvREpu5E=
+k8s.io/client-go v0.25.0/go.mod h1:lxykvypVfKilxhTklov0wz1FoaUZ8X4EwbhS6rpRfN8=
 k8s.io/code-generator v0.23.5 h1:xn3a6J5pUL49AoH6SPrOFtnB5cvdMl76f/bEY176R3c=
 k8s.io/code-generator v0.23.5/go.mod h1:S0Q1JVA+kSzTI1oUvbKAxZY/DYbA/ZUb4Uknog12ETk=
 k8s.io/component-base v0.23.5/go.mod h1:c5Nq44KZyt1aLl0IpHX82fhsn84Sb0jjzwjpcA42bY0=
 k8s.io/component-base v0.23.6 h1:8dhVZ4VrRcNdV2EGjl8tj8YOHwX6ysgCGMJ2Oyy0NW8=
 k8s.io/component-base v0.23.6/go.mod h1:FGMPeMrjYu0UZBSAFcfloVDplj9IvU+uRMTOdE23Fj0=
-k8s.io/gengo v0.0.0-20200413195148-3a45101e95ac/go.mod h1:ezvh/TsK7cY6rbqRK0oQQ8IAqLxYwwyPxAX1Pzy0ii0=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c h1:GohjlNKauSai7gN4wsJkeZ3WAJx4Sh+oT/b5IYn5suA=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
@@ -1158,12 +1208,13 @@ k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
 k8s.io/klog/v2 v2.30.0/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/klog/v2 v2.70.1 h1:7aaoSdahviPmR+XkS7FyxlkkXs6tHISSG03RxleQAVQ=
 k8s.io/klog/v2 v2.70.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
-k8s.io/kube-openapi v0.0.0-20210421082810-95288971da7e/go.mod h1:vHXdDvt9+2spS2Rx9ql3I8tycm3H9FDfdUoIuKCefvw=
-k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65 h1:E3J9oCLlaobFUqsjG9DfKbP2BmgwBL2p7pn0A3dG9W4=
 k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65/go.mod h1:sX9MT8g7NVZM5lVL/j8QyCCJe8YSMW30QvGZWaCIDIk=
+k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1 h1:MQ8BAZPZlWk3S9K4a9NCkIFQtZShWqoha7snGixVgEA=
+k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1/go.mod h1:C/N6wCaBHeBHkHUesQOQy2/MZqGgMAFPqGsGQLdbZBU=
 k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
-k8s.io/utils v0.0.0-20211116205334-6203023598ed h1:ck1fRPWPJWsMd8ZRFsWc6mh/zHp5fZ/shhbrgPUxDAE=
 k8s.io/utils v0.0.0-20211116205334-6203023598ed/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed h1:jAne/RjBTyawwAy0utX5eqigAwz/lQhTmy+Hr/Cpue4=
+k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
 moul.io/http2curl v1.0.1-0.20190925090545-5cd742060b0e h1:C7q+e9M5nggAvWfVg9Nl66kebKeuJlP3FD58V4RR5wo=
 moul.io/http2curl v1.0.1-0.20190925090545-5cd742060b0e/go.mod h1:nejbQVfXh96n9dSF6cH3Jsk/QI1Z2oEL7sSI2ifXFNA=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
@@ -1174,17 +1225,19 @@ rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
 sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.30/go.mod h1:fEO7lRTdivWO2qYVCVG7dEADOMo/MLDCVr8So2g88Uw=
 sigs.k8s.io/controller-runtime v0.11.2 h1:H5GTxQl0Mc9UjRJhORusqfJCIjBO8UtUxGggCwL1rLA=
 sigs.k8s.io/controller-runtime v0.11.2/go.mod h1:P6QCzrEjLaZGqHsfd+os7JQ+WFZhvB8MRFsn4dWF7O4=
-sigs.k8s.io/json v0.0.0-20211020170558-c049b76a60c6 h1:fD1pz4yfdADVNfFmcP2aBEtudwUQ1AlLnRBALr33v3s=
 sigs.k8s.io/json v0.0.0-20211020170558-c049b76a60c6/go.mod h1:p4QtZmO4uMYipTQNzagwnNoseA6OxSUutVw05NhYDRs=
-sigs.k8s.io/kustomize/api v0.10.1 h1:KgU7hfYoscuqag84kxtzKdEC3mKMb99DPI3a0eaV1d0=
-sigs.k8s.io/kustomize/api v0.10.1/go.mod h1:2FigT1QN6xKdcnGS2Ppp1uIWrtWN28Ms8A3OZUZhwr8=
-sigs.k8s.io/kustomize/kyaml v0.13.0 h1:9c+ETyNfSrVhxvphs+K2dzT3dh5oVPPEqPOE/cUpScY=
-sigs.k8s.io/kustomize/kyaml v0.13.0/go.mod h1:FTJxEZ86ScK184NpGSAQcfEqee0nul8oLCK30D47m4E=
+sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 h1:iXTIw73aPyC+oRdyqqvVJuloN1p0AC/kzH07hu3NE+k=
+sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
+sigs.k8s.io/kustomize/api v0.12.1 h1:7YM7gW3kYBwtKvoY216ZzY+8hM+lV53LUayghNRJ0vM=
+sigs.k8s.io/kustomize/api v0.12.1/go.mod h1:y3JUhimkZkR6sbLNwfJHxvo1TCLwuwm14sCYnkH6S1s=
+sigs.k8s.io/kustomize/kyaml v0.13.9 h1:Qz53EAaFFANyNgyOEJbT/yoIHygK40/ZcvU3rgry2Tk=
+sigs.k8s.io/kustomize/kyaml v0.13.9/go.mod h1:QsRbD0/KcU+wdk0/L0fIp2KLnohkVzs6fQ85/nOXac4=
 sigs.k8s.io/mdtoc v1.1.0 h1:q3YtqYzmC2e0hgLXRIOm7/QLuPux1CX3ZHCwlbABxZo=
 sigs.k8s.io/mdtoc v1.1.0/go.mod h1:QZLVEdHH2iNIR4uHAZyvFRtjloHgVItk8lo/mzCtq3w=
 sigs.k8s.io/structured-merge-diff/v4 v4.0.2/go.mod h1:bJZC9H9iH24zzfZ/41RGcq60oK1F7G282QMXDPYydCw=
-sigs.k8s.io/structured-merge-diff/v4 v4.2.1 h1:bKCqE9GvQ5tiVHn5rfn1r+yao3aLQEaLzkkmAkf+A6Y=
 sigs.k8s.io/structured-merge-diff/v4 v4.2.1/go.mod h1:j/nl6xW8vLS49O8YvXW1ocPhZawJtm+Yrr7PPRQ0Vg4=
+sigs.k8s.io/structured-merge-diff/v4 v4.2.3 h1:PRbqxJClWWYMNV1dhaG4NsibJbArud9kFxnAMREiWFE=
+sigs.k8s.io/structured-merge-diff/v4 v4.2.3/go.mod h1:qjx8mGObPmV2aSZepjQjbmb2ihdVs8cGKBraizNC69E=
 sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=
 sigs.k8s.io/yaml v1.3.0 h1:a2VclLzOGrwOHDiV8EfBGhvjHvP46CtW5j6POvhYGGo=
 sigs.k8s.io/yaml v1.3.0/go.mod h1:GeOyir5tyXNByN85N/dRIT9es5UQNerPYEKK56eTBm8=

From f34769b543153631ad84e70c8eca8c80ae590f20 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 24 Aug 2022 19:42:04 +0530
Subject: [PATCH 0338/1641] added note on digitalocean annotations (#8966)

---
 docs/deploy/index.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 502e46dda..d5bd5c90d 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -299,6 +299,8 @@ More information with regard to Azure annotations for ingress controller can be
 ```console
 kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/do/deploy.yaml
 ```
+- By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
+
 
 #### Scaleway
 

From a171d3f0f2bde9a7658bf9ef0fed50033eb446bf Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 24 Aug 2022 22:20:05 -0400
Subject: [PATCH 0339/1641] adding cve finding and adding release-notes to PR
 template (#8916)

* adding cve finding and adding release-notes to PR template

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update cve report with verbiage around open CVEs and not disclosures

Signed-off-by: James Strong <strong.james.e@gmail.com>

* fix then assignees

Signed-off-by: James Strong <strong.james.e@gmail.com>

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/ISSUE_TEMPLATE/cve_report.md      | 20 +++++++++++++
 .github/ISSUE_TEMPLATE/feature_request.md |  2 --
 .github/PULL_REQUEST_TEMPLATE.md          | 36 ++++++++++++++++++++++-
 3 files changed, 55 insertions(+), 3 deletions(-)
 create mode 100644 .github/ISSUE_TEMPLATE/cve_report.md

diff --git a/.github/ISSUE_TEMPLATE/cve_report.md b/.github/ISSUE_TEMPLATE/cve_report.md
new file mode 100644
index 000000000..b5ecf7ecf
--- /dev/null
+++ b/.github/ISSUE_TEMPLATE/cve_report.md
@@ -0,0 +1,20 @@
+---
+name: CVE Finding Report
+about: CVE reporting for ingress-nginx
+title: ''
+labels: kind/bug
+assignees:
+    - strongjz
+    - rikatz
+---
+
+<!-- if you found something that impacts directly ingress-nginx and 
+is not a public CVE yet, please reach out security@kubernetes.io" -->
+
+<!-- What scanner and version reported the CVE? -->
+
+<!-- What CVE was reported in the scanner findings? -->
+
+<!-- What versions of the controller did you test with?  -->
+
+<!-- Please provider other details that will help us determine the severity of the issue -->
diff --git a/.github/ISSUE_TEMPLATE/feature_request.md b/.github/ISSUE_TEMPLATE/feature_request.md
index 73df4d20b..0e892d626 100644
--- a/.github/ISSUE_TEMPLATE/feature_request.md
+++ b/.github/ISSUE_TEMPLATE/feature_request.md
@@ -15,8 +15,6 @@ The announcement in the dev mailing list is here https://groups.google.com/a/kub
 
 Thank you,
 Ingress-Nginx maintainer
-
-
 -->
 
 <!-- What do you want to happen? -->
diff --git a/.github/PULL_REQUEST_TEMPLATE.md b/.github/PULL_REQUEST_TEMPLATE.md
index 9bc455303..a14cc7004 100644
--- a/.github/PULL_REQUEST_TEMPLATE.md
+++ b/.github/PULL_REQUEST_TEMPLATE.md
@@ -9,6 +9,7 @@
 <!--- What types of changes does your code introduce? Put an `x` in all the boxes that apply: -->
 - [ ] Bug fix (non-breaking change which fixes an issue)
 - [ ] New feature (non-breaking change which adds functionality)
+- [ ] CVE Report (Scanner found CVE and adding report)
 - [ ] Breaking change (fix or feature that would cause existing functionality to change)
 - [ ] Documentation only
 
@@ -30,5 +31,38 @@ fixes #
 - [ ] My change requires a change to the documentation.
 - [ ] I have updated the documentation accordingly.
 - [ ] I've read the [CONTRIBUTION](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md) guide
-- [ ] I have added tests to cover my changes.
+- [ ] I have added unit and/or e2e tests to cover my changes.
 - [ ] All new and existing tests passed.
+- [ ] Added Release Notes.
+
+## Does my pull request need a release note?
+Any user-visible or operator-visible change qualifies for a release note. This could be a:
+
+- CLI change
+- API change
+- UI change
+- configuration schema change
+- behavioral change
+- change in non-functional attributes such as efficiency or availability, availability of a new platform
+- a warning about a deprecation
+- fix of a previous Known Issue
+- fix of a vulnerability (CVE)
+
+No release notes are required for changes to the following:
+
+- Tests
+- Build infrastructure
+- Fixes for unreleased bugs
+
+For more tips on writing good release notes, check out the [Release Notes Handbook](https://github.com/kubernetes/sig-release/tree/master/release-team/role-handbooks/release-notes)
+
+<!--
+If no, just write "NONE" in the release-note block below.
+If yes, a release note is required:
+Enter your extended release note in the block below. If the PR requires additional action from users switching to the new release, include the string "action required".
+
+For more information on release notes see: https://git.k8s.io/community/contributors/guide/release-notes.md
+-->
+```release-note
+PLACE RELEASE NOTES HERE 
+```

From 9b298987466ec8e38426f56f609ac0c559b80772 Mon Sep 17 00:00:00 2001
From: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Date: Fri, 26 Aug 2022 14:36:25 +0300
Subject: [PATCH 0340/1641] Update apiserver to 0.25 to remove v2 go-restful
 (#8976)

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
---
 go.mod | 14 ++++++--------
 go.sum | 30 +++++++++++++++---------------
 2 files changed, 21 insertions(+), 23 deletions(-)

diff --git a/go.mod b/go.mod
index ce9ddea9e..68162fe5f 100644
--- a/go.mod
+++ b/go.mod
@@ -33,11 +33,11 @@ require (
 	k8s.io/api v0.25.0
 	k8s.io/apiextensions-apiserver v0.23.5
 	k8s.io/apimachinery v0.25.0
-	k8s.io/apiserver v0.23.5
+	k8s.io/apiserver v0.25.0
 	k8s.io/cli-runtime v0.25.0
 	k8s.io/client-go v0.25.0
 	k8s.io/code-generator v0.23.5
-	k8s.io/component-base v0.23.6
+	k8s.io/component-base v0.25.0
 	k8s.io/klog/v2 v2.70.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.11.2
@@ -58,13 +58,12 @@ require (
 	github.com/ajg/form v1.5.1 // indirect
 	github.com/andybalholm/brotli v1.0.4 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
-	github.com/blang/semver v3.5.1+incompatible // indirect
+	github.com/blang/semver/v4 v4.0.0 // indirect
 	github.com/cespare/xxhash/v2 v2.1.2 // indirect
 	github.com/coreos/go-systemd/v22 v22.3.2 // indirect
 	github.com/cyphar/filepath-securejoin v0.2.3 // indirect
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/eapache/queue v1.1.0 // indirect
-	github.com/emicklei/go-restful v2.9.5+incompatible // indirect
 	github.com/emicklei/go-restful/v3 v3.8.0 // indirect
 	github.com/evanphx/json-patch v4.12.0+incompatible // indirect
 	github.com/fatih/structs v1.0.0 // indirect
@@ -119,16 +118,15 @@ require (
 	github.com/yudai/gojsondiff v1.0.0 // indirect
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
-	golang.org/x/mod v0.6.0-dev.0.20220106191415-9b9b3d81d5e3 // indirect
+	golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4 // indirect
 	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
 	golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f // indirect
 	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
 	golang.org/x/text v0.3.7 // indirect
 	golang.org/x/time v0.0.0-20220210224613-90d013bbcef8 // indirect
-	golang.org/x/tools v0.1.10 // indirect
-	golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 // indirect
+	golang.org/x/tools v0.1.12 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/genproto v0.0.0-20210924002016-3dee208752a0 // indirect
+	google.golang.org/genproto v0.0.0-20220502173005-c8bf987b8c21 // indirect
 	google.golang.org/protobuf v1.28.1 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index fc2d61415..b9dcee78f 100644
--- a/go.sum
+++ b/go.sum
@@ -102,8 +102,9 @@ github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6r
 github.com/bgentry/speakeasy v0.1.0/go.mod h1:+zsyZBPWlz7T6j88CTgSN5bM796AkVf0kBD4zp0CCIs=
 github.com/bketelsen/crypt v0.0.3-0.20200106085610-5cbc8cc4026c/go.mod h1:MKsuJmJgSg28kpZDP6UIiPt0e0Oz0kqKNGyRaWEPv84=
 github.com/bketelsen/crypt v0.0.4/go.mod h1:aI6NrJ0pMGgvZKL1iVgXLnfIFJtfV+bKCoqOes/6LfM=
-github.com/blang/semver v3.5.1+incompatible h1:cQNTCjp13qL8KC3Nbxr/y2Bqb63oX6wdnnjpJbkM4JQ=
 github.com/blang/semver v3.5.1+incompatible/go.mod h1:kRBLl5iJ+tD4TcOOxsy/0fnwebNt5EWlYSAyrTnjyyk=
+github.com/blang/semver/v4 v4.0.0 h1:1PFHFE6yCCTv8C1TeyNNarDzntLi7wMI5i/pzqYIsAM=
+github.com/blang/semver/v4 v4.0.0/go.mod h1:IbckMUScFkM3pff0VJDNKRiT6TG/YpiHIM2yvyW5YoQ=
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
 github.com/certifi/gocertifi v0.0.0-20191021191039-0944d244cd40/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
 github.com/certifi/gocertifi v0.0.0-20200922220541-2c3bb06c6054/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
@@ -158,7 +159,6 @@ github.com/eapache/queue v1.1.0 h1:YOEu7KNc61ntiQlcEeUIoDTJ2o8mQznoNvUhiigpIqc=
 github.com/eapache/queue v1.1.0/go.mod h1:6eCeP0CKFpHLu8blIFXhExK/dRa7WDZfr6jVFPTqq+I=
 github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153/go.mod h1:/Zj4wYkgs4iZTTu3o/KG3Itv/qCCa8VVMlb3i9OVuzc=
 github.com/emicklei/go-restful v0.0.0-20170410110728-ff4f55a20633/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
-github.com/emicklei/go-restful v2.9.5+incompatible h1:spTtZBk5DYEvbxMVutUuTyh1Ao2r4iyvLdACqsl/Ljk=
 github.com/emicklei/go-restful v2.9.5+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
 github.com/emicklei/go-restful/v3 v3.8.0 h1:eCZ8ulSerjdAiaNpF7GxXIE7ZCMo1moN1qX+S609eVw=
 github.com/emicklei/go-restful/v3 v3.8.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
@@ -211,8 +211,8 @@ github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTg
 github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/logr v1.2.3 h1:2DntVwHkVopvECVRSlL5PSo9eG+cAkDCuckLubN+rq0=
 github.com/go-logr/logr v1.2.3/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
-github.com/go-logr/zapr v1.2.0 h1:n4JnPI1T3Qq1SFEi/F8rwLrZERp2bso19PJZDB9dayk=
 github.com/go-logr/zapr v1.2.0/go.mod h1:Qa4Bsj2Vb+FAVeAKsLD8RLQ+YRJB8YDmOAKxaBQf7Ro=
+github.com/go-logr/zapr v1.2.3 h1:a9vnzlIBPQBBkeaR9IuMUfmVOrQlkoC4YfPoFkX3T7A=
 github.com/go-openapi/jsonpointer v0.19.3/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
 github.com/go-openapi/jsonpointer v0.19.5 h1:gZr+CIYByUqjcgeLXnQu2gHYQC9o73G2XUeOFYEICuY=
 github.com/go-openapi/jsonpointer v0.19.5/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
@@ -733,8 +733,8 @@ golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.6.0-dev.0.20220106191415-9b9b3d81d5e3 h1:kQgndtyPBW/JIYERgdxfwMYh3AVStj88WQTlNDi2a+o=
-golang.org/x/mod v0.6.0-dev.0.20220106191415-9b9b3d81d5e3/go.mod h1:3p9vT2HGsQu2K1YbXdKPJLVgG5VJdoTa1poYQBtP1AY=
+golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4 h1:6zppjxzCulZykYSLyVDYbneBfbaBIQPYMevg0bEwv2s=
+golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -982,12 +982,11 @@ golang.org/x/tools v0.1.3/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.4/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.6-0.20210820212750-d4cc65f0b2ff/go.mod h1:YD9qOF0M9xpSpdWTBbzEl5e/RnCefISl8E5Noe10jFM=
-golang.org/x/tools v0.1.10 h1:QjFRCZxdOhBJ/UNgnBZLbNV13DlbnK0quyivTnXJM20=
-golang.org/x/tools v0.1.10/go.mod h1:Uh6Zz+xoGYZom868N8YTex3t7RhtHDBrE8Gzo9bV56E=
+golang.org/x/tools v0.1.12 h1:VveCTK38A2rkS8ZqFY25HIDFscX5X9OoEhJd3quQmXU=
+golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 h1:go1bK/D/BFZV2I8cIQd1NKEZ+0owSTG1fDTci4IqFcE=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 gomodules.xyz/jsonpatch/v2 v2.2.0 h1:4pT439QV83L+G9FkcCriY6EkpcK6r6bK+A5FBUMI7qY=
 google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
@@ -1084,8 +1083,9 @@ google.golang.org/genproto v0.0.0-20210821163610-241b8fcbd6c8/go.mod h1:eFjDcFEc
 google.golang.org/genproto v0.0.0-20210828152312-66f60bf46e71/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
 google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
 google.golang.org/genproto v0.0.0-20210903162649-d08c68adba83/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
-google.golang.org/genproto v0.0.0-20210924002016-3dee208752a0 h1:5Tbluzus3QxoAJx4IefGt1W0HQZW4nuMrVk684jI74Q=
 google.golang.org/genproto v0.0.0-20210924002016-3dee208752a0/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20220502173005-c8bf987b8c21 h1:hrbNEivu7Zn1pxvHk6MBrq9iE22woVILTHqexqBxe6I=
+google.golang.org/genproto v0.0.0-20220502173005-c8bf987b8c21/go.mod h1:RAyBrSAP7Fh3Nc84ghnVLDPuV51xc9agzmm4Ph6i0Q4=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -1111,6 +1111,7 @@ google.golang.org/grpc v1.38.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQ
 google.golang.org/grpc v1.39.0/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
 google.golang.org/grpc v1.39.1/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
 google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
+google.golang.org/grpc v1.46.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
 google.golang.org/grpc v1.48.0 h1:rQOsyJ/8+ufEDJd/Gdsz7HG220Mh9HAhFHRGnIjda0w=
 google.golang.org/grpc v1.48.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
 google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
@@ -1127,6 +1128,7 @@ google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlba
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
 google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
+google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 google.golang.org/protobuf v1.28.1 h1:d0NfwRgPtno5B1Wa6L2DAG+KivqkdutMf1UhdNx175w=
 google.golang.org/protobuf v1.28.1/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
@@ -1179,28 +1181,26 @@ honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 k8s.io/api v0.23.5/go.mod h1:Na4XuKng8PXJ2JsploYYrivXrINeTaycCGcYgF91Xm8=
-k8s.io/api v0.23.6/go.mod h1:1kFaYxGCFHYp3qd6a85DAj/yW8aVD6XLZMqJclkoi9g=
 k8s.io/api v0.25.0 h1:H+Q4ma2U/ww0iGB78ijZx6DRByPz6/733jIuFpX70e0=
 k8s.io/api v0.25.0/go.mod h1:ttceV1GyV1i1rnmvzT3BST08N6nGt+dudGrquzVQWPk=
 k8s.io/apiextensions-apiserver v0.23.5 h1:5SKzdXyvIJKu+zbfPc3kCbWpbxi+O+zdmAJBm26UJqI=
 k8s.io/apiextensions-apiserver v0.23.5/go.mod h1:ntcPWNXS8ZPKN+zTXuzYMeg731CP0heCTl6gYBxLcuQ=
 k8s.io/apimachinery v0.23.5/go.mod h1:BEuFMMBaIbcOqVIJqNZJXGFTP4W6AycEpb5+m/97hrM=
-k8s.io/apimachinery v0.23.6/go.mod h1:BEuFMMBaIbcOqVIJqNZJXGFTP4W6AycEpb5+m/97hrM=
 k8s.io/apimachinery v0.25.0 h1:MlP0r6+3XbkUG2itd6vp3oxbtdQLQI94fD5gCS+gnoU=
 k8s.io/apimachinery v0.25.0/go.mod h1:qMx9eAk0sZQGsXGu86fab8tZdffHbwUfsvzqKn4mfB0=
-k8s.io/apiserver v0.23.5 h1:2Ly8oUjz5cnZRn1YwYr+aFgDZzUmEVL9RscXbnIeDSE=
 k8s.io/apiserver v0.23.5/go.mod h1:7wvMtGJ42VRxzgVI7jkbKvMbuCbVbgsWFT7RyXiRNTw=
+k8s.io/apiserver v0.25.0 h1:8kl2ifbNffD440MyvHtPaIz1mw4mGKVgWqM0nL+oyu4=
+k8s.io/apiserver v0.25.0/go.mod h1:BKwsE+PTC+aZK+6OJQDPr0v6uS91/HWxX7evElAH6xo=
 k8s.io/cli-runtime v0.25.0 h1:XBnTc2Fi+w818jcJGzhiJKQuXl8479sZ4FhtV5hVJ1Q=
 k8s.io/cli-runtime v0.25.0/go.mod h1:bHOI5ZZInRHhbq12OdUiYZQN8ml8aKZLwQgt9QlLINw=
 k8s.io/client-go v0.23.5/go.mod h1:flkeinTO1CirYgzMPRWxUCnV0G4Fbu2vLhYCObnt/r4=
-k8s.io/client-go v0.23.6/go.mod h1:Umt5icFOMLV/+qbtZ3PR0D+JA6lvvb3syzodv4irpK4=
 k8s.io/client-go v0.25.0 h1:CVWIaCETLMBNiTUta3d5nzRbXvY5Hy9Dpl+VvREpu5E=
 k8s.io/client-go v0.25.0/go.mod h1:lxykvypVfKilxhTklov0wz1FoaUZ8X4EwbhS6rpRfN8=
 k8s.io/code-generator v0.23.5 h1:xn3a6J5pUL49AoH6SPrOFtnB5cvdMl76f/bEY176R3c=
 k8s.io/code-generator v0.23.5/go.mod h1:S0Q1JVA+kSzTI1oUvbKAxZY/DYbA/ZUb4Uknog12ETk=
 k8s.io/component-base v0.23.5/go.mod h1:c5Nq44KZyt1aLl0IpHX82fhsn84Sb0jjzwjpcA42bY0=
-k8s.io/component-base v0.23.6 h1:8dhVZ4VrRcNdV2EGjl8tj8YOHwX6ysgCGMJ2Oyy0NW8=
-k8s.io/component-base v0.23.6/go.mod h1:FGMPeMrjYu0UZBSAFcfloVDplj9IvU+uRMTOdE23Fj0=
+k8s.io/component-base v0.25.0 h1:haVKlLkPCFZhkcqB6WCvpVxftrg6+FK5x1ZuaIDaQ5Y=
+k8s.io/component-base v0.25.0/go.mod h1:F2Sumv9CnbBlqrpdf7rKZTmmd2meJq0HizeyY/yAFxk=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c h1:GohjlNKauSai7gN4wsJkeZ3WAJx4Sh+oT/b5IYn5suA=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=

From 26bc6e4e502de26af6471e06625c9e3f733fd917 Mon Sep 17 00:00:00 2001
From: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Date: Fri, 26 Aug 2022 19:22:25 +0300
Subject: [PATCH 0341/1641] bump Golang to 1.19 #8932 (#8970)

* fix: convert to LF line endings

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>

* Pin exact Go bugfix versions for CI jobs

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>

* Bump go.mod and Dockerfiles to Go 1.19.0

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>

Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
---
 .github/workflows/ci.yaml                     | 10 ++--
 .github/workflows/plugin.yaml                 |  2 +-
 go.mod                                        |  2 +-
 images/custom-error-pages/rootfs/Dockerfile   |  2 +-
 images/custom-error-pages/rootfs/go.mod       |  2 +-
 .../rootfs/Dockerfile                         |  2 +-
 images/ext-auth-example-authsvc/rootfs/go.mod |  2 +-
 images/kube-webhook-certgen/rootfs/Dockerfile | 58 +++++++++----------
 images/kube-webhook-certgen/rootfs/go.mod     |  2 +-
 images/test-runner/Makefile                   |  2 +-
 10 files changed, 42 insertions(+), 42 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index d4f9fb4d3..3c4626166 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -70,11 +70,11 @@ jobs:
       - name: Checkout
         uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
 
-      - name: Set up Go 1.18
+      - name: Set up Go 1.19.0
         id: go
         uses: actions/setup-go@84cbf8094393cdc5fe1fe1671ff2647332956b1a # v3.2.0
         with:
-          go-version: '1.18.2'
+          go-version: '1.19.0'
 
       - name: Set up QEMU
         uses: docker/setup-qemu-action@8b122486cedac8393e77aa9734c3528886e4a1a8 #v2.0.0
@@ -136,7 +136,7 @@ jobs:
       - name: Setup Go
         uses: actions/setup-go@84cbf8094393cdc5fe1fe1671ff2647332956b1a # v3.2.0
         with:
-          go-version: '1.18.2'
+          go-version: '1.19.0'
 
       - name: cache
         uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741 # v3
@@ -406,12 +406,12 @@ jobs:
           version: v0.14.0
           image: kindest/node:v1.21.12
 
-      - name: Set up Go 1.18
+      - name: Set up Go 1.19.0
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
         uses: actions/setup-go@84cbf8094393cdc5fe1fe1671ff2647332956b1a # v3.2.0
         with:
-          go-version: '1.18.2'
+          go-version: '1.19.0'
 
       - name: kube-webhook-certgen image build
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index efc9a6f06..a8af1af9e 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -21,7 +21,7 @@ jobs:
       - name: Set up Go
         uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v3.2.0
         with:
-          go-version: 1.18
+          go-version: 1.19.0
 
       - name: Run GoReleaser
         uses: goreleaser/goreleaser-action@68acf3b1adf004ac9c2f0a4259e85c5f66e99bef # v3.0.0
diff --git a/go.mod b/go.mod
index 68162fe5f..1fb3c67a2 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx
 
-go 1.18
+go 1.19
 
 require (
 	github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a
diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index d53228201..513354279 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.18.2-alpine as builder
+FROM golang:1.19.0-alpine as builder
 RUN apk add git
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/custom-error-pages
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 05bd45400..b39db8b20 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.18
+go 1.19
 
 require github.com/prometheus/client_golang v1.11.0
 
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index 9a52919be..2eb010379 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.18.2-alpine3.15 as builder
+FROM golang:1.19.0-alpine3.16 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index 052d17d6f..0be630b8b 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,6 +1,6 @@
 module example.com/authsvc
 
-go 1.18
+go 1.19
 
 require k8s.io/apimachinery v0.23.1
 
diff --git a/images/kube-webhook-certgen/rootfs/Dockerfile b/images/kube-webhook-certgen/rootfs/Dockerfile
index 4a60ed2ea..1ed714b56 100644
--- a/images/kube-webhook-certgen/rootfs/Dockerfile
+++ b/images/kube-webhook-certgen/rootfs/Dockerfile
@@ -1,29 +1,29 @@
-# Copyright 2021 The Kubernetes Authors. All rights reserved.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-FROM --platform=$BUILDPLATFORM golang:1.18.2 as builder
-ARG BUILDPLATFORM
-ARG TARGETARCH
-
-WORKDIR /workspace
-COPY . .
-RUN CGO_ENABLED=0 GOOS=linux GOARCH=${TARGETARCH} go build -a -o kube-webhook-certgen main.go
-
-FROM --platform=$BUILDPLATFORM gcr.io/distroless/static:nonroot
-ARG BUILDPLATFORM
-ARG TARGETARCH
-WORKDIR /
-COPY --from=builder /workspace/kube-webhook-certgen /kube-webhook-certgen
-USER 65532:65532
-ENTRYPOINT ["/kube-webhook-certgen"]
+# Copyright 2021 The Kubernetes Authors. All rights reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+FROM --platform=$BUILDPLATFORM golang:1.19.0 as builder
+ARG BUILDPLATFORM
+ARG TARGETARCH
+
+WORKDIR /workspace
+COPY . .
+RUN CGO_ENABLED=0 GOOS=linux GOARCH=${TARGETARCH} go build -a -o kube-webhook-certgen main.go
+
+FROM --platform=$BUILDPLATFORM gcr.io/distroless/static:nonroot
+ARG BUILDPLATFORM
+ARG TARGETARCH
+WORKDIR /
+COPY --from=builder /workspace/kube-webhook-certgen /kube-webhook-certgen
+USER 65532:65532
+ENTRYPOINT ["/kube-webhook-certgen"]
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 3858ae566..5ac181823 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,6 +1,6 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.18
+go 1.19
 
 require (
 	github.com/onrik/logrus v0.9.0
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 7cd0d6251..4350deb91 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -39,7 +39,7 @@ build: ensure-buildx
 		--progress=$(PROGRESS) \
 		--pull \
 		--build-arg BASE_IMAGE=$(NGINX_BASE_IMAGE) \
-		--build-arg GOLANG_VERSION=1.18.2 \
+		--build-arg GOLANG_VERSION=1.19.0 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.24.2 \
 		--build-arg RESTY_CLI_VERSION=0.27 \

From c6b70ec349cc68a627cdd1f71dd6038ce2a0580f Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sun, 28 Aug 2022 08:34:37 +0530
Subject: [PATCH 0342/1641] fixed deprecated ginkgo flags (#8984)

---
 test/e2e-image/e2e.sh | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/test/e2e-image/e2e.sh b/test/e2e-image/e2e.sh
index 3a06871cc..24e52bcde 100755
--- a/test/e2e-image/e2e.sh
+++ b/test/e2e-image/e2e.sh
@@ -19,17 +19,17 @@ set -e
 NC='\e[0m'
 BGREEN='\e[32m'
 
-SLOW_E2E_THRESHOLD=${SLOW_E2E_THRESHOLD:-5}
+SLOW_E2E_THRESHOLD=${SLOW_E2E_THRESHOLD:-"5s"}
 FOCUS=${FOCUS:-.*}
 E2E_NODES=${E2E_NODES:-5}
 E2E_CHECK_LEAKS=${E2E_CHECK_LEAKS:-""}
 
 ginkgo_args=(
-  "-randomizeAllSpecs"
-  "-flakeAttempts=2"
-  "-failFast"
+  "-randomize-all"
+  "-flake-attempts=2"
+  "-fail-fast"
   "-progress"
-  "-slowSpecThreshold=${SLOW_E2E_THRESHOLD}"
+  "-slow-spec-threshold=${SLOW_E2E_THRESHOLD}"
   "-succinct"
   "-timeout=75m"
 )

From 629cc1439c43f8c8ee21c7a43aed07dcf4b72b07 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 28 Aug 2022 07:24:36 -0700
Subject: [PATCH 0343/1641] Bump actions/setup-go from 3.2.1 to 3.3.0 (#8981)

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3.2.1 to 3.3.0.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v3.2.1...268d8c0ca0432bb2cf416faae41297df9d262d7f)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml     | 6 +++---
 .github/workflows/plugin.yaml | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 3c4626166..86ba9af4d 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -72,7 +72,7 @@ jobs:
 
       - name: Set up Go 1.19.0
         id: go
-        uses: actions/setup-go@84cbf8094393cdc5fe1fe1671ff2647332956b1a # v3.2.0
+        uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
         with:
           go-version: '1.19.0'
 
@@ -134,7 +134,7 @@ jobs:
         uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
 
       - name: Setup Go
-        uses: actions/setup-go@84cbf8094393cdc5fe1fe1671ff2647332956b1a # v3.2.0
+        uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
         with:
           go-version: '1.19.0'
 
@@ -409,7 +409,7 @@ jobs:
       - name: Set up Go 1.19.0
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: actions/setup-go@84cbf8094393cdc5fe1fe1671ff2647332956b1a # v3.2.0
+        uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
         with:
           go-version: '1.19.0'
 
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index a8af1af9e..2f45f70b3 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -19,7 +19,7 @@ jobs:
           fetch-depth: 0
 
       - name: Set up Go
-        uses: actions/setup-go@b22fbbc2921299758641fab08929b4ac52b32923 # v3.2.0
+        uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
         with:
           go-version: 1.19.0
 

From 2819c0fdf84337b66b444b1e824d3734afef1e4d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 29 Aug 2022 08:24:38 -0700
Subject: [PATCH 0344/1641] Bump github.com/opencontainers/runc from 1.1.3 to
 1.1.4 (#8992)

Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.3 to 1.1.4.
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/v1.1.4/CHANGELOG.md)
- [Commits](https://github.com/opencontainers/runc/compare/v1.1.3...v1.1.4)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 1fb3c67a2..b9024bab5 100644
--- a/go.mod
+++ b/go.mod
@@ -16,7 +16,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo/v2 v2.1.4
-	github.com/opencontainers/runc v1.1.3
+	github.com/opencontainers/runc v1.1.4
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.13.0
 	github.com/prometheus/client_model v0.2.0
diff --git a/go.sum b/go.sum
index b9dcee78f..18e365ba7 100644
--- a/go.sum
+++ b/go.sum
@@ -487,8 +487,8 @@ github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1Cpa
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.19.0 h1:4ieX6qQjPP/BfC3mpsAtIGGlxTWPeA3Inl/7DtXw1tw=
-github.com/opencontainers/runc v1.1.3 h1:vIXrkId+0/J2Ymu2m7VjGvbSlAId9XNRPhn2p4b+d8w=
-github.com/opencontainers/runc v1.1.3/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
+github.com/opencontainers/runc v1.1.4 h1:nRCz/8sKg6K6jgYAFLDlXzPeITBZJyX28DBVhWD+5dg=
+github.com/opencontainers/runc v1.1.4/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=

From 75cf26e15c496b6932942fd54d89a4ebf36ec67b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 29 Aug 2022 08:36:37 -0700
Subject: [PATCH 0345/1641] Bump goreleaser/goreleaser-action from 3.0.0 to
 3.1.0 (#8986)

Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/68acf3b1adf004ac9c2f0a4259e85c5f66e99bef...ff11ca24a9b39f2d36796d1fbd7a4e39c182630a)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/plugin.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 2f45f70b3..86a64a797 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -24,7 +24,7 @@ jobs:
           go-version: 1.19.0
 
       - name: Run GoReleaser
-        uses: goreleaser/goreleaser-action@68acf3b1adf004ac9c2f0a4259e85c5f66e99bef # v3.0.0
+        uses: goreleaser/goreleaser-action@ff11ca24a9b39f2d36796d1fbd7a4e39c182630a # v3.0.0
         with:
           version: latest
           args: release --rm-dist

From b490eb9a4c1e44b27062db55ecb0550ae081cb12 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 30 Aug 2022 06:07:01 -0700
Subject: [PATCH 0346/1641] Bump github/codeql-action from 2.1.20 to 2.1.21
 (#8982)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.20 to 2.1.21.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/7fee4ca032ac341c12486c4c06822c5221c76533...c7f292ea4f542c473194b33813ccd4c207a6c725)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index b045c3fc9..d9f3a5792 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@7fee4ca032ac341c12486c4c06822c5221c76533 # v2.1.14
+        uses: github/codeql-action/upload-sarif@c7f292ea4f542c473194b33813ccd4c207a6c725 # v2.1.14
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index ce1840a0a..a4b454d90 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@7fee4ca032ac341c12486c4c06822c5221c76533
+      uses: github/codeql-action/upload-sarif@c7f292ea4f542c473194b33813ccd4c207a6c725
       with:
         token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository

From 542cfb764b3c96d9fc42648c980a6e1a99e86517 Mon Sep 17 00:00:00 2001
From: Alex <93376818+sashashura@users.noreply.github.com>
Date: Thu, 1 Sep 2022 14:33:06 +0100
Subject: [PATCH 0347/1641] Update plugin.yaml (#9001)

Signed-off-by: sashashura <93376818+sashashura@users.noreply.github.com>

Signed-off-by: sashashura <93376818+sashashura@users.noreply.github.com>
---
 .github/workflows/plugin.yaml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 86a64a797..1d5ee2787 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -9,6 +9,9 @@ on:
     tags:
       - "v*"
 
+permissions:
+  contents: write # for goreleaser/goreleaser-action
+
 jobs:
   release-plugin:
     runs-on: ubuntu-latest

From 9f4c44398a9fe65b75b5f73377717571f1688acf Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 1 Sep 2022 13:33:45 +0000
Subject: [PATCH 0348/1641] Bump github/codeql-action from 2.1.21 to 2.1.22

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.21 to 2.1.22.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/c7f292ea4f542c473194b33813ccd4c207a6c725...b398f525a5587552e573b247ac661067fafa920b)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index d9f3a5792..20961611c 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@c7f292ea4f542c473194b33813ccd4c207a6c725 # v2.1.14
+        uses: github/codeql-action/upload-sarif@b398f525a5587552e573b247ac661067fafa920b # v2.1.14
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index a4b454d90..945c7a935 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@c7f292ea4f542c473194b33813ccd4c207a6c725
+      uses: github/codeql-action/upload-sarif@b398f525a5587552e573b247ac661067fafa920b
       with:
         token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository

From 7791d2b449ea00338c545a9a5e99e347bd6e72e9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 2 Sep 2022 10:52:06 -0700
Subject: [PATCH 0349/1641] Bump google.golang.org/grpc from 1.48.0 to 1.49.0
 (#8991)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.48.0 to 1.49.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.48.0...v1.49.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index b9024bab5..c22d330c4 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
 	golang.org/x/net v0.0.0-20220722155237-a158d28d115b
-	google.golang.org/grpc v1.48.0
+	google.golang.org/grpc v1.49.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.25.0
diff --git a/go.sum b/go.sum
index 18e365ba7..0fc0f1b2f 100644
--- a/go.sum
+++ b/go.sum
@@ -1112,8 +1112,8 @@ google.golang.org/grpc v1.39.0/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnD
 google.golang.org/grpc v1.39.1/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
 google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
 google.golang.org/grpc v1.46.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
-google.golang.org/grpc v1.48.0 h1:rQOsyJ/8+ufEDJd/Gdsz7HG220Mh9HAhFHRGnIjda0w=
-google.golang.org/grpc v1.48.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
+google.golang.org/grpc v1.49.0 h1:WTLtQzmQori5FUH25Pq4WT22oCsv8USpQ+F6rqtsmxw=
+google.golang.org/grpc v1.49.0/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI=
 google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=

From ce3afda3207dac4d66a5666278dd77355a43670e Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 2 Sep 2022 13:55:31 -0400
Subject: [PATCH 0350/1641] start 1.3.1 release

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 18fa8e74f..757407982 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.3.0
+v1.3.1

From 6a83cddb0367a70754d96336f4dd7d96398fb25d Mon Sep 17 00:00:00 2001
From: sreelakshminarayananm
 <111572162+sreelakshminarayananm@users.noreply.github.com>
Date: Fri, 2 Sep 2022 23:30:07 +0530
Subject: [PATCH 0351/1641] issue:8739 fix doc issue (#9006)

Signed-off-by: sreelakshminarayananm <sreelakshminarayanan.muthuraj@fmr.com>

Signed-off-by: sreelakshminarayananm <sreelakshminarayanan.muthuraj@fmr.com>
---
 docs/deploy/baremetal.md | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/docs/deploy/baremetal.md b/docs/deploy/baremetal.md
index 55288c322..7d8076147 100644
--- a/docs/deploy/baremetal.md
+++ b/docs/deploy/baremetal.md
@@ -30,7 +30,8 @@ the traffic for the `ingress-nginx` Service IP. See [Traffic policies][metallb-t
     yourself by reading the official documentation thoroughly.
 
 MetalLB can be deployed either with a simple Kubernetes manifest or with Helm. The rest of this example assumes MetalLB
-was deployed following the [Installation][metallb-install] instructions.
+was deployed following the [Installation][metallb-install] instructions, and that the NGINX Ingress controller was installed 
+using the steps described in the [quickstart section of the installation guide][install-quickstart].
 
 MetalLB requires a pool of IP addresses in order to be able to take ownership of the `ingress-nginx` Service. This pool
 can be defined through `IPAddressPool` objects in the same namespace as the MetalLB controller. This pool of IPs **must** be dedicated to MetalLB's use, you can't reuse the Kubernetes node IPs or IPs handed out by a DHCP server.
@@ -257,6 +258,7 @@ for generating redirect URLs that take into account the URL used by external cli
     ```
 
 [install-baremetal]: ./index.md#bare-metal
+[install-quickstart]: ./index.md#quick-start
 [nodeport-def]: https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport
 [nodeport-nat]: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-type-nodeport
 [pod-assign]: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/

From 96dc9401d4e5afec6aa989e37ec5591783531737 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 2 Sep 2022 14:48:35 -0400
Subject: [PATCH 0352/1641] Fix cloud build git error  (#9012)

* testing the fix

Signed-off-by: James Strong <strong.james.e@gmail.com>

* revert 1.3.1 while we fix the build

Signed-off-by: James Strong <strong.james.e@gmail.com>

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG            | 2 +-
 build/build.sh | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/TAG b/TAG
index 757407982..18fa8e74f 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.3.1
+v1.3.0
diff --git a/build/build.sh b/build/build.sh
index 3b51d665e..88d53d654 100755
--- a/build/build.sh
+++ b/build/build.sh
@@ -49,7 +49,8 @@ echo "Building targets for ${ARCH}, generated targets in ${TARGETS_DIR} director
 
 echo "Building ${PKG}/cmd/nginx"
 
-git config --add safe.directory /go/src/k8s.io/ingress-nginx
+git config --global --add safe.directory /go/src/k8s.io/ingress-nginx
+
 ${GO_BUILD_CMD} \
   -trimpath -ldflags="-buildid= -w -s \
     -X ${PKG}/version.RELEASE=${TAG} \
@@ -74,4 +75,3 @@ ${GO_BUILD_CMD} \
     -X ${PKG}/version.COMMIT=${COMMIT_SHA} \
     -X ${PKG}/version.REPO=${REPO_INFO}" \
   -o "${TARGETS_DIR}/wait-shutdown" "${PKG}/cmd/waitshutdown"
-

From 92534fa2ae799b502882c8684db13a25cde68155 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 2 Sep 2022 14:58:46 -0400
Subject: [PATCH 0353/1641] 1.3.1 for real (#9013)

Signed-off-by: James Strong <strong.james.e@gmail.com>

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 18fa8e74f..757407982 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.3.0
+v1.3.1

From bfd44ab83e022cc977c39b747505e77f92171fd2 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 4 Sep 2022 20:22:36 -0300
Subject: [PATCH 0354/1641] Add v1.25 test and reduce amount of e2e tests
 (#9018)

---
 .github/workflows/ci.yaml                       | 16 ++++++++--------
 build/build.sh                                  |  2 +-
 rootfs/chroot.sh                                |  1 +
 test/e2e/settings/pod_security_policy.go        | 17 ++++++++++++++++-
 .../e2e/settings/pod_security_policy_volumes.go | 17 ++++++++++++++++-
 5 files changed, 42 insertions(+), 11 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 86ba9af4d..d469ae959 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -174,8 +174,8 @@ jobs:
         id: kind
         uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
         with:
-          version: v0.14.0
-          image: kindest/node:v1.21.12
+          version: v0.15.0
+          image: kindest/node:v1.25.0
 
       - uses: geekyeggo/delete-artifact@b73cb986740e466292a536d0e32e2666c56fdeb3 # v1
         with:
@@ -208,7 +208,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.21.2, v1.22.9, v1.23.6, v1.24.0]
+        k8s: [v1.23.10, v1.24.4, v1.25.0]
 
     steps:
 
@@ -224,7 +224,7 @@ jobs:
         id: kind
         uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
         with:
-          version: v0.14.0
+          version: v0.15.0
           config: test/e2e/kind.yaml
           image: kindest/node:${{ matrix.k8s }}
 
@@ -265,7 +265,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.21.10, v1.22.9, v1.23.6, v1.24.0]
+        k8s: [v1.24.4, v1.25.0]
 
     steps:
 
@@ -281,7 +281,7 @@ jobs:
         id: kind
         uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
         with:
-          version: v0.14.0
+          version: v0.15.0
           config: test/e2e/kind.yaml
           image: kindest/node:${{ matrix.k8s }}
 
@@ -403,8 +403,8 @@ jobs:
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
         uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
         with:
-          version: v0.14.0
-          image: kindest/node:v1.21.12
+          version: v0.15.0
+          image: kindest/node:v1.25.0
 
       - name: Set up Go 1.19.0
         id: go
diff --git a/build/build.sh b/build/build.sh
index 88d53d654..c0372bc25 100755
--- a/build/build.sh
+++ b/build/build.sh
@@ -49,7 +49,7 @@ echo "Building targets for ${ARCH}, generated targets in ${TARGETS_DIR} director
 
 echo "Building ${PKG}/cmd/nginx"
 
-git config --global --add safe.directory /go/src/k8s.io/ingress-nginx
+git config --add safe.directory /go/src/k8s.io/ingress-nginx
 
 ${GO_BUILD_CMD} \
   -trimpath -ldflags="-buildid= -w -s \
diff --git a/rootfs/chroot.sh b/rootfs/chroot.sh
index 9f3cbd804..3f64aa63f 100755
--- a/rootfs/chroot.sh
+++ b/rootfs/chroot.sh
@@ -40,6 +40,7 @@ for dir in "${writeDirs[@]}"; do
   chown -R www-data.www-data ${dir};
 done
 
+
 mkdir -p  /chroot/lib /chroot/proc /chroot/usr /chroot/bin /chroot/dev /chroot/run 
 cp /etc/passwd /etc/group /chroot/etc/
 cp -a /usr/* /chroot/usr/
diff --git a/test/e2e/settings/pod_security_policy.go b/test/e2e/settings/pod_security_policy.go
index 0e0300829..b21fb870e 100644
--- a/test/e2e/settings/pod_security_policy.go
+++ b/test/e2e/settings/pod_security_policy.go
@@ -19,6 +19,7 @@ package settings
 import (
 	"context"
 	"net/http"
+	"strconv"
 	"strings"
 
 	"github.com/onsi/ginkgo/v2"
@@ -41,8 +42,22 @@ var _ = framework.IngressNginxDescribe("[Security] Pod Security Policies", func(
 	f := framework.NewDefaultFramework("pod-security-policies")
 
 	ginkgo.It("should be running with a Pod Security Policy", func() {
+		k8sversion, err := f.KubeClientSet.Discovery().ServerVersion()
+		if err != nil {
+			assert.Nil(ginkgo.GinkgoT(), err, "getting version")
+		}
+
+		numversion, err := strconv.Atoi(k8sversion.Minor)
+		if err != nil {
+			assert.Nil(ginkgo.GinkgoT(), err, "converting version")
+		}
+
+		if numversion > 24 {
+			ginkgo.Skip("PSP not supported in this version")
+		}
+
 		psp := createPodSecurityPolicy()
-		_, err := f.KubeClientSet.PolicyV1beta1().PodSecurityPolicies().Create(context.TODO(), psp, metav1.CreateOptions{})
+		_, err = f.KubeClientSet.PolicyV1beta1().PodSecurityPolicies().Create(context.TODO(), psp, metav1.CreateOptions{})
 		if !k8sErrors.IsAlreadyExists(err) {
 			assert.Nil(ginkgo.GinkgoT(), err, "creating Pod Security Policy")
 		}
diff --git a/test/e2e/settings/pod_security_policy_volumes.go b/test/e2e/settings/pod_security_policy_volumes.go
index 8af74ea60..dd4df3bd9 100644
--- a/test/e2e/settings/pod_security_policy_volumes.go
+++ b/test/e2e/settings/pod_security_policy_volumes.go
@@ -19,6 +19,7 @@ package settings
 import (
 	"context"
 	"net/http"
+	"strconv"
 	"strings"
 
 	"github.com/onsi/ginkgo/v2"
@@ -37,8 +38,22 @@ var _ = framework.IngressNginxDescribe("[Security] Pod Security Policies with vo
 	f := framework.NewDefaultFramework("pod-security-policies-volumes")
 
 	ginkgo.It("should be running with a Pod Security Policy", func() {
+
+		k8sversion, err := f.KubeClientSet.Discovery().ServerVersion()
+		if err != nil {
+			assert.Nil(ginkgo.GinkgoT(), err, "getting version")
+		}
+
+		numversion, err := strconv.Atoi(k8sversion.Minor)
+		if err != nil {
+			assert.Nil(ginkgo.GinkgoT(), err, "converting version")
+		}
+
+		if numversion > 24 {
+			ginkgo.Skip("PSP not supported in this version")
+		}
 		psp := createPodSecurityPolicy()
-		_, err := f.KubeClientSet.PolicyV1beta1().PodSecurityPolicies().Create(context.TODO(), psp, metav1.CreateOptions{})
+		_, err = f.KubeClientSet.PolicyV1beta1().PodSecurityPolicies().Create(context.TODO(), psp, metav1.CreateOptions{})
 		if !k8sErrors.IsAlreadyExists(err) {
 			assert.Nil(ginkgo.GinkgoT(), err, "creating Pod Security Policy")
 		}

From 79a311d3be07e039382cac49f16509e126dc2e87 Mon Sep 17 00:00:00 2001
From: "qilong.qiu" <qilong.qiu@daocloud.io>
Date: Mon, 5 Sep 2022 09:28:36 +0800
Subject: [PATCH 0355/1641] Bump chart testing from 3.0.0 to 3.7.0 (#9000)

---
 images/test-runner/Makefile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 4350deb91..ad888e5c7 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -46,7 +46,7 @@ build: ensure-buildx
 		--build-arg RESTY_CLI_SHA=e5f4f3128af49ba5c4d039d0554e5ae91bbe05866f60eccfa96d3653274bff90 \
 		--build-arg LUAROCKS_VERSION=3.8.0 \
 		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
-		--build-arg CHART_TESTING_VERSION=3.0.0 \
+		--build-arg CHART_TESTING_VERSION=3.7.0 \
 		--build-arg YAML_LINT_VERSION=1.27.1 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=v3.9.0 \

From 12c9f009310b8885ea5568ed2feb3508abada01e Mon Sep 17 00:00:00 2001
From: Amim Knabben <amim.knabben@gmail.com>
Date: Mon, 5 Sep 2022 08:02:36 -0300
Subject: [PATCH 0356/1641] Adding a simpler interface for the HTTP request
 library. (#8862)

---
 go.mod                                        |  20 +-
 go.sum                                        |  56 +---
 test/e2e/annotations/affinitymode.go          |   4 +-
 test/e2e/defaultbackend/default_backend.go    |  11 +-
 test/e2e/framework/framework.go               |  41 +--
 test/e2e/framework/httpexpect/README.md       |   1 +
 test/e2e/framework/httpexpect/array.go        |  36 +++
 test/e2e/framework/httpexpect/chain.go        |  54 ++++
 test/e2e/framework/httpexpect/cookie.go       |  29 ++
 test/e2e/framework/httpexpect/match.go        |  37 +++
 test/e2e/framework/httpexpect/object.go       | 111 +++++++
 test/e2e/framework/httpexpect/reporter.go     |  48 +++
 test/e2e/framework/httpexpect/request.go      | 176 +++++++++++
 test/e2e/framework/httpexpect/response.go     | 273 ++++++++++++++++++
 test/e2e/framework/httpexpect/string.go       | 120 ++++++++
 test/e2e/framework/httpexpect/value.go        |  33 +++
 .../servicebackend/service_externalname.go    |   3 +-
 .../settings/disable_service_external_name.go |   3 +-
 18 files changed, 954 insertions(+), 102 deletions(-)
 create mode 100644 test/e2e/framework/httpexpect/README.md
 create mode 100644 test/e2e/framework/httpexpect/array.go
 create mode 100644 test/e2e/framework/httpexpect/chain.go
 create mode 100644 test/e2e/framework/httpexpect/cookie.go
 create mode 100644 test/e2e/framework/httpexpect/match.go
 create mode 100644 test/e2e/framework/httpexpect/object.go
 create mode 100644 test/e2e/framework/httpexpect/reporter.go
 create mode 100644 test/e2e/framework/httpexpect/request.go
 create mode 100644 test/e2e/framework/httpexpect/response.go
 create mode 100644 test/e2e/framework/httpexpect/string.go
 create mode 100644 test/e2e/framework/httpexpect/value.go

diff --git a/go.mod b/go.mod
index c22d330c4..2c220232e 100644
--- a/go.mod
+++ b/go.mod
@@ -6,7 +6,6 @@ require (
 	github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a
 	github.com/eapache/channels v1.1.0
 	github.com/fsnotify/fsnotify v1.5.4
-	github.com/gavv/httpexpect/v2 v2.3.1
 	github.com/imdario/mergo v0.3.13
 	github.com/json-iterator/go v1.1.12
 	github.com/kylelemons/godebug v1.1.0
@@ -24,6 +23,7 @@ require (
 	github.com/spf13/cobra v1.5.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.0
+	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
 	golang.org/x/net v0.0.0-20220722155237-a158d28d115b
@@ -55,8 +55,6 @@ require (
 	github.com/BurntSushi/toml v0.3.1 // indirect
 	github.com/PuerkitoBio/purell v1.1.1 // indirect
 	github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 // indirect
-	github.com/ajg/form v1.5.1 // indirect
-	github.com/andybalholm/brotli v1.0.4 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/blang/semver/v4 v4.0.0 // indirect
 	github.com/cespare/xxhash/v2 v2.1.2 // indirect
@@ -66,13 +64,13 @@ require (
 	github.com/eapache/queue v1.1.0 // indirect
 	github.com/emicklei/go-restful/v3 v3.8.0 // indirect
 	github.com/evanphx/json-patch v4.12.0+incompatible // indirect
-	github.com/fatih/structs v1.0.0 // indirect
 	github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b // indirect
 	github.com/go-errors/errors v1.0.1 // indirect
 	github.com/go-logr/logr v1.2.3 // indirect
 	github.com/go-openapi/jsonpointer v0.19.5 // indirect
 	github.com/go-openapi/jsonreference v0.19.5 // indirect
 	github.com/go-openapi/swag v0.19.14 // indirect
+	github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0 // indirect
 	github.com/godbus/dbus/v5 v5.0.6 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang-jwt/jwt/v4 v4.2.0 // indirect
@@ -82,16 +80,13 @@ require (
 	github.com/google/btree v1.0.1 // indirect
 	github.com/google/gnostic v0.5.7-v3refs // indirect
 	github.com/google/go-cmp v0.5.8 // indirect
-	github.com/google/go-querystring v1.0.0 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
+	github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.2.0 // indirect
-	github.com/gorilla/websocket v1.4.2 // indirect
 	github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 // indirect
-	github.com/imkira/go-interpol v1.0.0 // indirect
 	github.com/inconshreveable/mousetrap v1.0.0 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
-	github.com/klauspost/compress v1.15.7 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 // indirect
@@ -108,15 +103,9 @@ require (
 	github.com/prometheus/procfs v0.8.0 // indirect
 	github.com/sergi/go-diff v1.1.0 // indirect
 	github.com/sirupsen/logrus v1.8.1 // indirect
-	github.com/valyala/bytebufferpool v1.0.0 // indirect
-	github.com/valyala/fasthttp v1.38.0 // indirect
-	github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f // indirect
-	github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415 // indirect
-	github.com/xeipuuv/gojsonschema v1.1.0 // indirect
 	github.com/xlab/treeprint v1.1.0 // indirect
-	github.com/yalp/jsonpath v0.0.0-20180802001716-5cc68e5049a0 // indirect
-	github.com/yudai/gojsondiff v1.0.0 // indirect
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
+	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4 // indirect
 	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
@@ -135,7 +124,6 @@ require (
 	k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c // indirect
 	k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1 // indirect
 	k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed // indirect
-	moul.io/http2curl v1.0.1-0.20190925090545-5cd742060b0e // indirect
 	sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 // indirect
 	sigs.k8s.io/kustomize/api v0.12.1 // indirect
 	sigs.k8s.io/kustomize/kyaml v0.13.9 // indirect
diff --git a/go.sum b/go.sum
index 0fc0f1b2f..92f966d6f 100644
--- a/go.sum
+++ b/go.sum
@@ -75,16 +75,11 @@ github.com/PuerkitoBio/purell v1.1.1 h1:WEQqlqaGbrPkxLJWfBwQmfEAE1Z7ONdDLqrN38tN
 github.com/PuerkitoBio/purell v1.1.1/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
 github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 h1:d+Bc7a5rLufV/sSk/8dngufqelfh6jnri85riMAaF/M=
 github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578/go.mod h1:uGdkoq3SwY9Y+13GIhn11/XLaGBb4BfwItxLd5jeuXE=
-github.com/ajg/form v1.5.1 h1:t9c7v8JUKu/XxOGBU0yjNpaMloxGEJhUkqFRq0ibGeU=
-github.com/ajg/form v1.5.1/go.mod h1:uL1WgH+h2mgNtvBq0339dVnzXdBETtL2LeUXaIv25UY=
 github.com/alecthomas/template v0.0.0-20160405071501-a0175ee3bccc/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
 github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
 github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190717042225-c3de453c63f4/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d/go.mod h1:rBZYJk541a8SKzHPHnH3zbiI+7dagKZ0cgpgrD7Fyho=
-github.com/andybalholm/brotli v1.0.2/go.mod h1:loMXtMfwqflxFJPmdbJO0a3KNoPuLBgiu3qAvBg8x/Y=
-github.com/andybalholm/brotli v1.0.4 h1:V7DdXeJtZscaqfNuAdSRuRFzuiKlHSC/Zh3zl9qY3JY=
-github.com/andybalholm/brotli v1.0.4/go.mod h1:fO7iG3H7G2nSZ7m0zPUDn85XEX2GTukHGRSepvi9Eig=
 github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
 github.com/antlr/antlr4/runtime/Go/antlr v0.0.0-20210826220005-b48c857c3a0e/go.mod h1:F7bn7fEU90QkQ3tnmaTx3LTKLEDqnwWODIYppRQ5hnY=
 github.com/armon/circbuf v0.0.0-20150827004946-bbbad097214e/go.mod h1:3U/XgcO3hCbHZ8TKRvWD2dDTCfh9M9ya+I9JpbB7O8o=
@@ -173,11 +168,7 @@ github.com/envoyproxy/go-control-plane v0.10.2-0.20220325020618-49ff273808a1/go.
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
 github.com/evanphx/json-patch v4.12.0+incompatible h1:4onqiflcdA9EOZ4RxV643DvftH5pOlLGNtQ5lPWQu84=
 github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
-github.com/fasthttp/websocket v1.4.3-rc.6 h1:omHqsl8j+KXpmzRjF8bmzOSYJ8GnS0E3efi1wYT+niY=
-github.com/fasthttp/websocket v1.4.3-rc.6/go.mod h1:43W9OM2T8FeXpCWMsBd9Cb7nE2CACNqNvCqQCoty/Lc=
 github.com/fatih/color v1.7.0/go.mod h1:Zm6kSWBoL9eyXnKyktHP6abPY2pDugNf5KwzbycvMj4=
-github.com/fatih/structs v1.0.0 h1:BrX964Rv5uQ3wwS+KRUAJCBBw5PQmgJfJ6v4yly5QwU=
-github.com/fatih/structs v1.0.0/go.mod h1:9NiDSp5zOcgEDl+j00MP/WkGVPOlPRLejGD8Ga6PJ7M=
 github.com/felixge/httpsnoop v1.0.1/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
 github.com/form3tech-oss/jwt-go v3.2.2+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
 github.com/form3tech-oss/jwt-go v3.2.3+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
@@ -188,8 +179,6 @@ github.com/fsnotify/fsnotify v1.5.4 h1:jRbGcIw6P2Meqdwuo0H1p6JVLbL5DHKAKlYndzMwV
 github.com/fsnotify/fsnotify v1.5.4/go.mod h1:OVB6XrOHzAwXMpEM7uPOzcehqUV2UqJxmVXmkdnm1bU=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b h1:074/xhloHUBOpTZwlIzQ28rbPY8pNJvzY7Gcx5KnNOk=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
-github.com/gavv/httpexpect/v2 v2.3.1 h1:sGLlKMn8AuHS9ztK9Sb7AJ7OxIL8v2PcLdyxfKt1Fo4=
-github.com/gavv/httpexpect/v2 v2.3.1/go.mod h1:yOE8m/aqFYQDNrgprMeXgq4YynfN9h1NgcE1+1suV64=
 github.com/getkin/kin-openapi v0.76.0/go.mod h1:660oXbgy5JFMKreazJaQTw7o+X00qeSyhcnluiMv+Xg=
 github.com/getsentry/raven-go v0.2.0/go.mod h1:KungGk8q33+aIAZUIVWZDr2OfAEBsO49PX4NzFV5kcQ=
 github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
@@ -223,6 +212,8 @@ github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh
 github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5Fng=
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
+github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0 h1:p104kn46Q8WdvHunIJ9dAyjPVtrBPhSr3KT2yUst43I=
+github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/godbus/dbus/v5 v5.0.6 h1:mkgN1ofwASrYnJ5W6U/BxG15eXXXjirgZc7CLqkcaro=
 github.com/godbus/dbus/v5 v5.0.6/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
@@ -294,8 +285,6 @@ github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/
 github.com/google/go-cmp v0.5.6/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.8 h1:e6P7q2lk1O+qJJb4BtCQXlK8vWEO8V1ZeuEdJNOqZyg=
 github.com/google/go-cmp v0.5.8/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
-github.com/google/go-querystring v1.0.0 h1:Xkwi/a1rcvNg1PPYe5vI8GbeBY/jrVuDX5ASuANWTrk=
-github.com/google/go-querystring v1.0.0/go.mod h1:odCYkC5MyYFN7vkCjXpyrEuKhc/BUO6wN/zVPAxq5ck=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.1.0 h1:Hsa8mG0dQ46ij8Sl2AYJDUv1oA9/d6Vk+3LG99Oe02g=
 github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
@@ -316,6 +305,7 @@ github.com/google/pprof v0.0.0-20210122040257-d980be63207e/go.mod h1:kpwsk12EmLe
 github.com/google/pprof v0.0.0-20210226084205-cbba55b83ad5/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210601050228-01bbb1931b22/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210609004039-a478d1d731e9/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1 h1:K6RDEckDVWvDI9JAJYCmNdQXq6neHJOYx3V6jnqNEec=
 github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
@@ -330,7 +320,6 @@ github.com/googleapis/gnostic v0.5.1/go.mod h1:6U4PtQXGIEt/Z3h5MAT7FNofLnw9vXk2c
 github.com/googleapis/gnostic v0.5.5/go.mod h1:7+EbHbldMins07ALC74bsA81Ovc97DwqyJO1AENw9kA=
 github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY=
 github.com/gorilla/mux v1.8.0/go.mod h1:DVbg23sWSpFRCP0SfiEN6jmj59UnW/n46BH5rLB71So=
-github.com/gorilla/websocket v1.4.2 h1:+/TMaTYc4QFitKJxsQ7Yye35DkWvkdLcvGKqM+x0Ufc=
 github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 h1:pdN6V1QBWetyv/0+wjACpqVH+eVULgEjkurDLq3goeM=
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
@@ -365,8 +354,6 @@ github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:
 github.com/imdario/mergo v0.3.5/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
 github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
 github.com/imdario/mergo v0.3.13/go.mod h1:4lJ1jqUDcsbIECGy0RUJAXNIhg+6ocWgb1ALK2O4oXg=
-github.com/imkira/go-interpol v1.0.0 h1:HrmLyvOLJyjR0YofMw8QGdCIuYOs4TJUBDNU5sJC09E=
-github.com/imkira/go-interpol v1.0.0/go.mod h1:z0h2/2T3XF8kyEPpRgJ3kmNv+C43p+I/CoI+jC3w2iA=
 github.com/inconshreveable/mousetrap v1.0.0 h1:Z8tu5sraLXCXIcARxBp/8cbvlwVa7Z1NHg9XEKhtSvM=
 github.com/inconshreveable/mousetrap v1.0.0/go.mod h1:PxqpIevigyE2G7u3NXJIT2ANytuPF1OarO4DADm73n8=
 github.com/jonboulle/clockwork v0.1.0/go.mod h1:Ii8DK3G1RaLaWxj9trq07+26W01tbo22gdxWY5EU2bo=
@@ -384,15 +371,10 @@ github.com/jstemmer/go-junit-report v0.9.1/go.mod h1:Brl9GWCQeLvo8nXZwPNNblvFj/X
 github.com/jtolds/gls v4.20.0+incompatible/go.mod h1:QJZ7F/aHp+rZTRtaJ1ow/lLfFfVYBRgL+9YlvaHOwJU=
 github.com/julienschmidt/httprouter v1.2.0/go.mod h1:SYymIcj16QtmaHHD7aYtjjsJG7VTCxuUUipMqKk8s4w=
 github.com/julienschmidt/httprouter v1.3.0/go.mod h1:JR6WtHb+2LUe8TCKY3cZOxFyyO8IZAc4RVcycCCAKdM=
-github.com/k0kubun/colorstring v0.0.0-20150214042306-9440f1994b88/go.mod h1:3w7q1U84EfirKl04SVQ/s7nPm1ZPhiXd34z40TNz36k=
 github.com/kisielk/errcheck v1.1.0/go.mod h1:EZBBE59ingxPouuu3KfxchcWSUPOHkagtvWXihfKN4Q=
 github.com/kisielk/errcheck v1.2.0/go.mod h1:/BMXB+zMLi60iA8Vv6Ksmxu/1UDYcXs4uQLJ+jE2L00=
 github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8=
 github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
-github.com/klauspost/compress v1.12.2/go.mod h1:8dP1Hq4DHOhN9w426knH3Rhby4rFm6D8eO+e+Dq5Gzg=
-github.com/klauspost/compress v1.15.0/go.mod h1:/3/Vjq9QcHkK5uEr5lBEmyoZ1iFhe47etQ6QUkpK6sk=
-github.com/klauspost/compress v1.15.7 h1:7cgTQxJCU/vy+oP/E3B9RGbQTgbiVzIJWIKOLoAsPok=
-github.com/klauspost/compress v1.15.7/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU=
 github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
 github.com/konsorten/go-windows-terminal-sequences v1.0.3/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
 github.com/kr/fs v0.1.0/go.mod h1:FFnZGqtBN9Gxj7eW1uZ42v5BccTP0vu6NEaFoC2HwRg=
@@ -416,12 +398,10 @@ github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN
 github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA=
 github.com/mailru/easyjson v0.7.6/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
+github.com/mattn/go-colorable v0.0.9 h1:UVL0vNpWh04HeJXV0KLcaT7r06gOH2l4OW6ddYRUIY4=
 github.com/mattn/go-colorable v0.0.9/go.mod h1:9vuHe8Xs5qXnSaW/c/ABM9alt+Vo+STaOChaDxuIBZU=
-github.com/mattn/go-colorable v0.1.2 h1:/bC9yWikZXAL9uJdulbSfyVNIR3n3trXl+v8+1sx8mU=
-github.com/mattn/go-colorable v0.1.2/go.mod h1:U0ppj6V5qS13XJ6of8GYAs25YV2eR4EVcfRqFIhoBtE=
+github.com/mattn/go-isatty v0.0.3 h1:ns/ykhmWi7G9O+8a448SecJU3nSMBXJfqQkl0upE1jI=
 github.com/mattn/go-isatty v0.0.3/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNxMWT7Zi4=
-github.com/mattn/go-isatty v0.0.8 h1:HLtExJ+uU2HOZ+wI0Tt5DtUDrx8yhUqDcp7fYERX4CE=
-github.com/mattn/go-isatty v0.0.8/go.mod h1:Iq45c/XA43vh69/j3iqttzPXn0bhXyGjM0Hdxcsrc5s=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
 github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 h1:I0XW9+e1XWDxdcEniV4rQAIOPUGDq67JSCiRCgGCZLI=
 github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
@@ -476,14 +456,12 @@ github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
 github.com/oklog/ulid v1.3.1/go.mod h1:CirwcVhetQ6Lv90oh/F+FBtV6XMibvdAFo93nm5qn4U=
 github.com/onsi/ginkgo v0.0.0-20170829012221-11459a886d9c/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
-github.com/onsi/ginkgo v1.10.1/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo/v2 v2.1.4 h1:GNapqRSid3zijZ9H77KrgVG4/8KqiyRsxcSxe+7ApXY=
 github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
 github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
-github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.19.0 h1:4ieX6qQjPP/BfC3mpsAtIGGlxTWPeA3Inl/7DtXw1tw=
@@ -550,11 +528,8 @@ github.com/rogpeppe/go-internal v1.8.0/go.mod h1:WmiCO8CzOY8rg0OYDC4/i/2WRWAB6po
 github.com/russross/blackfriday/v2 v2.0.1/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/ryanuber/columnize v0.0.0-20160712163229-9b3edd62028f/go.mod h1:sm1tb6uqfes/u+d4ooFouqFdy9/2g9QGwK3SQygK0Ts=
-github.com/savsgio/gotils v0.0.0-20210617111740-97865ed5a873 h1:N3Af8f13ooDKcIhsmFT7Z05CStZWu4C7Md0uDEy4q6o=
-github.com/savsgio/gotils v0.0.0-20210617111740-97865ed5a873/go.mod h1:dmPawKuiAeG/aFYVs2i+Dyosoo7FNcm+Pi8iK6ZUrX8=
 github.com/sean-/seed v0.0.0-20170313163322-e2103e2c3529/go.mod h1:DxrIzT+xaE7yg65j358z/aeFdxmN0P9QXhEzd20vsDc=
 github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
-github.com/sergi/go-diff v1.0.0/go.mod h1:0CfEIISq7TuYL3j771MWULgwwjU+GofnZX9QAmXWZgo=
 github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
 github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=
 github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
@@ -606,25 +581,11 @@ github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1
 github.com/tmc/grpc-websocket-proxy v0.0.0-20201229170055-e5319fda7802/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
-github.com/valyala/bytebufferpool v1.0.0 h1:GqA5TC/0021Y/b9FG4Oi9Mr3q7XYx6KllzawFIhcdPw=
-github.com/valyala/bytebufferpool v1.0.0/go.mod h1:6bBcMArwyJ5K/AmCkWv1jt77kVWyCJ6HpOuEn7z0Csc=
-github.com/valyala/fasthttp v1.27.0/go.mod h1:cmWIqlu99AO/RKcp1HWaViTqc57FswJOfYYdPJBl8BA=
-github.com/valyala/fasthttp v1.38.0 h1:yTjSSNjuDi2PPvXY2836bIwLmiTS2T4T9p1coQshpco=
-github.com/valyala/fasthttp v1.38.0/go.mod h1:t/G+3rLek+CyY9bnIE+YlMRddxVAAGjhxndDB4i4C0I=
-github.com/valyala/tcplisten v1.0.0/go.mod h1:T0xQ8SeCZGxckz9qRXTfG43PvQ/mcWh7FwZEA7Ioqkc=
 github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
 github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
-github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f h1:J9EGpcZtP0E/raorCMxlFGSTBrsSlaDGf3jU/qvAE2c=
-github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f/go.mod h1:N2zxlSyiKSe5eX1tZViRH5QA0qijqEDrYZiPEAiq3wU=
-github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415 h1:EzJWgHovont7NscjpAxXsDA8S8BMYve8Y5+7cuRE7R0=
-github.com/xeipuuv/gojsonreference v0.0.0-20180127040603-bd5ef7bd5415/go.mod h1:GwrjFmJcFw6At/Gs6z4yjiIwzuJ1/+UwLxMQDVQXShQ=
-github.com/xeipuuv/gojsonschema v1.1.0 h1:ngVtJC9TY/lg0AA/1k48FYhBrhRoFlEmWzsehpNAaZg=
-github.com/xeipuuv/gojsonschema v1.1.0/go.mod h1:5yf86TLmAcydyeJq5YvxkGPE2fm/u4myDekKRoLuqhs=
 github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
 github.com/xlab/treeprint v1.1.0 h1:G/1DjNkPpfZCFt9CSh6b5/nY4VimlbHF3Rh4obvtzDk=
 github.com/xlab/treeprint v1.1.0/go.mod h1:gj5Gd3gPdKtR1ikdDK6fnFLdmIS0X30kTTuNd/WEJu0=
-github.com/yalp/jsonpath v0.0.0-20180802001716-5cc68e5049a0 h1:6fRhSjgLCkTD3JnJxvaJ4Sj+TYblw757bqYgZaOq5ZY=
-github.com/yalp/jsonpath v0.0.0-20180802001716-5cc68e5049a0/go.mod h1:/LWChgwKmvncFJFHJ7Gvn9wZArjbV5/FppcK2fKk/tI=
 github.com/yudai/gojsondiff v1.0.0 h1:27cbfqXLVEJ1o8I6v3y9lg8Ydm53EKqHXAOMxEGlCOA=
 github.com/yudai/gojsondiff v1.0.0/go.mod h1:AY32+k2cwILAkW1fbgxQ5mUmMiZFgLIV+FBNExI05xg=
 github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 h1:BHyfKlQyqbsFN5p3IfnEUduWvb9is428/nNb5L3U01M=
@@ -690,12 +651,10 @@ golang.org/x/crypto v0.0.0-20190820162420-60c769a6c586/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20201002170205-7f63de1d35b0/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.0.0-20210513164829-c07d793c2f9a/go.mod h1:P+XmwS30IXTQdn5tA2iutPOUgjI07+tq3H3K9MVA1s8=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20211215153901-e495a2d5b3d3/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
-golang.org/x/crypto v0.0.0-20220214200702-86341886e292/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd h1:XcWmESyNjXJMLahc3mqVQJcgSTDxFxhETVlfk9uGc38=
 golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
@@ -780,7 +739,6 @@ golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v
 golang.org/x/net v0.0.0-20210316092652-d523dce5a7f4/go.mod h1:RBQZq4jEuRlivfhVLdyRGr576XBO4/greRjx4P4O3yc=
 golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
 golang.org/x/net v0.0.0-20210503060351-7fd8e65b6420/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20210510120150-4163338589ed/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210805182204-aaa1db679c0d/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210825183410-e898025ed96a/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
@@ -827,7 +785,6 @@ golang.org/x/sys v0.0.0-20181026203630-95b1ffbd15a5/go.mod h1:STP8DvDyc/dI5b8T5h
 golang.org/x/sys v0.0.0-20181107165924-66b7b1311ac8/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20181116152217-5ac8a444bdc5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20190222072716-a9d3bda3a223/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190312061237-fead79001313/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190422165155-953cdadca894/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -896,7 +853,6 @@ golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220227234510-4e6760a101f9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220412211240-33da011f77ad/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f h1:v4INt8xihDGvnrfjMDVXGxw9wrfxYyCjk0KbXjhR55s=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
@@ -1215,8 +1171,6 @@ k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/
 k8s.io/utils v0.0.0-20211116205334-6203023598ed/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
 k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed h1:jAne/RjBTyawwAy0utX5eqigAwz/lQhTmy+Hr/Cpue4=
 k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
-moul.io/http2curl v1.0.1-0.20190925090545-5cd742060b0e h1:C7q+e9M5nggAvWfVg9Nl66kebKeuJlP3FD58V4RR5wo=
-moul.io/http2curl v1.0.1-0.20190925090545-5cd742060b0e/go.mod h1:nejbQVfXh96n9dSF6cH3Jsk/QI1Z2oEL7sSI2ifXFNA=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
diff --git a/test/e2e/annotations/affinitymode.go b/test/e2e/annotations/affinitymode.go
index 2b40155d0..cce2b004d 100644
--- a/test/e2e/annotations/affinitymode.go
+++ b/test/e2e/annotations/affinitymode.go
@@ -42,7 +42,7 @@ var _ = framework.DescribeAnnotation("affinitymode", func() {
 		host := "affinity-mode-balance.com"
 		annotations := make(map[string]string)
 		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
-		annotations["ginx.ingress.kubernetes.io/session-cookie-name"] = "hello-cookie"
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "hello-cookie"
 		annotations["nginx.ingress.kubernetes.io/session-cookie-expires"] = "172800"
 		annotations["nginx.ingress.kubernetes.io/session-cookie-max-age"] = "172800"
 		annotations["nginx.ingress.kubernetes.io/ssl-redirect"] = "false"
@@ -75,7 +75,7 @@ var _ = framework.DescribeAnnotation("affinitymode", func() {
 		host := "affinity-mode-persistent.com"
 		annotations := make(map[string]string)
 		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
-		annotations["ginx.ingress.kubernetes.io/session-cookie-name"] = "hello-cookie"
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "hello-cookie"
 		annotations["nginx.ingress.kubernetes.io/session-cookie-expires"] = "172800"
 		annotations["nginx.ingress.kubernetes.io/session-cookie-max-age"] = "172800"
 		annotations["nginx.ingress.kubernetes.io/ssl-redirect"] = "false"
diff --git a/test/e2e/defaultbackend/default_backend.go b/test/e2e/defaultbackend/default_backend.go
index e418e4687..e589024b4 100644
--- a/test/e2e/defaultbackend/default_backend.go
+++ b/test/e2e/defaultbackend/default_backend.go
@@ -19,7 +19,8 @@ package defaultbackend
 import (
 	"net/http"
 
-	"github.com/gavv/httpexpect/v2"
+	"k8s.io/ingress-nginx/test/e2e/framework/httpexpect"
+
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
@@ -64,15 +65,13 @@ var _ = framework.IngressNginxDescribe("[Default Backend]", func() {
 		for _, test := range testCases {
 			ginkgo.By(test.Name)
 
-			var req *httpexpect.Request
+			var req *httpexpect.HTTPRequest
 
 			switch test.Scheme {
 			case framework.HTTP:
-				req = f.HTTPTestClient().Request(test.Method, test.Path)
-				req.WithURL(f.GetURL(framework.HTTP) + test.Path)
+				req = f.HTTPTestClient().DoRequest(test.Method, test.Path).WithURL(f.GetURL(framework.HTTP) + test.Path)
 			case framework.HTTPS:
-				req = f.HTTPTestClient().Request(test.Method, test.Path)
-				req.WithURL(f.GetURL(framework.HTTPS) + test.Path)
+				req = f.HTTPTestClient().DoRequest(test.Method, test.Path).WithURL(f.GetURL(framework.HTTPS) + test.Path)
 			default:
 				ginkgo.Fail("Unexpected request scheme")
 			}
diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index 0f01ae3cb..4946c13b2 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -22,7 +22,8 @@ import (
 	"strings"
 	"time"
 
-	"github.com/gavv/httpexpect/v2"
+	"k8s.io/ingress-nginx/test/e2e/framework/httpexpect"
+
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
@@ -445,22 +446,22 @@ func (f *Framework) DeleteNGINXPod(grace int64) {
 }
 
 // HTTPDumbTestClient returns a new httpexpect client without BaseURL.
-func (f *Framework) HTTPDumbTestClient() *httpexpect.Expect {
-	return f.newTestClient(nil, false)
+func (f *Framework) HTTPDumbTestClient() *httpexpect.HTTPRequest {
+	return f.newHTTPTestClient(nil, false)
 }
 
-// HTTPTestClient returns a new httpexpect client for end-to-end HTTP testing.
-func (f *Framework) HTTPTestClient() *httpexpect.Expect {
-	return f.newTestClient(nil, true)
+// HTTPTestClient returns a new HTTPRequest client for end-to-end HTTP testing.
+func (f *Framework) HTTPTestClient() *httpexpect.HTTPRequest {
+	return f.newHTTPTestClient(nil, true)
 }
 
 // HTTPTestClientWithTLSConfig returns a new httpexpect client for end-to-end
 // HTTP testing with a custom TLS configuration.
-func (f *Framework) HTTPTestClientWithTLSConfig(config *tls.Config) *httpexpect.Expect {
-	return f.newTestClient(config, true)
+func (f *Framework) HTTPTestClientWithTLSConfig(config *tls.Config) *httpexpect.HTTPRequest {
+	return f.newHTTPTestClient(config, true)
 }
 
-func (f *Framework) newTestClient(config *tls.Config, setIngressURL bool) *httpexpect.Expect {
+func (f *Framework) newHTTPTestClient(config *tls.Config, setIngressURL bool) *httpexpect.HTTPRequest {
 	if config == nil {
 		config = &tls.Config{
 			InsecureSkipVerify: true,
@@ -471,24 +472,14 @@ func (f *Framework) newTestClient(config *tls.Config, setIngressURL bool) *httpe
 		baseURL = f.GetURL(HTTP)
 	}
 
-	return httpexpect.WithConfig(httpexpect.Config{
-		BaseURL: baseURL,
-		Client: &http.Client{
-			Transport: &http.Transport{
-				TLSClientConfig: config,
-			},
-			CheckRedirect: func(req *http.Request, via []*http.Request) error {
-				return http.ErrUseLastResponse
-			},
+	return httpexpect.NewRequest(baseURL, &http.Client{
+		Transport: &http.Transport{
+			TLSClientConfig: config,
 		},
-		Reporter: httpexpect.NewAssertReporter(
-			httpexpect.NewAssertReporter(ginkgo.GinkgoT()),
-		),
-		Printers: []httpexpect.Printer{
-			// TODO: enable conditionally?
-			// httpexpect.NewDebugPrinter(ginkgo.GinkgoT(), false),
+		CheckRedirect: func(req *http.Request, via []*http.Request) error {
+			return http.ErrUseLastResponse
 		},
-	})
+	}, httpexpect.NewAssertReporter())
 }
 
 // WaitForNginxListening waits until NGINX starts accepting connections on a port
diff --git a/test/e2e/framework/httpexpect/README.md b/test/e2e/framework/httpexpect/README.md
new file mode 100644
index 000000000..73cfd9dbb
--- /dev/null
+++ b/test/e2e/framework/httpexpect/README.md
@@ -0,0 +1 @@
+This module is based in the deprecated library `github.com/gavv/httpexpect`, and contains slightly adaptations.
diff --git a/test/e2e/framework/httpexpect/array.go b/test/e2e/framework/httpexpect/array.go
new file mode 100644
index 000000000..432982f4a
--- /dev/null
+++ b/test/e2e/framework/httpexpect/array.go
@@ -0,0 +1,36 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package httpexpect
+
+// Array provides methods to inspect attached []interface{} object
+// (Go representation of JSON array).
+type Array struct {
+	chain chain
+	value []interface{}
+}
+
+// Iter returns a new slice of Values attached to array elements.
+func (a *Array) Iter() []Value {
+	if a.chain.failed() {
+		return []Value{}
+	}
+	ret := []Value{}
+	for n := range a.value {
+		ret = append(ret, Value{a.chain, a.value[n]})
+	}
+	return ret
+}
diff --git a/test/e2e/framework/httpexpect/chain.go b/test/e2e/framework/httpexpect/chain.go
new file mode 100644
index 000000000..79956fb33
--- /dev/null
+++ b/test/e2e/framework/httpexpect/chain.go
@@ -0,0 +1,54 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package httpexpect
+
+type chain struct {
+	reporter Reporter
+	failbit  bool
+}
+
+func makeChain(reporter Reporter) chain {
+	return chain{reporter, false}
+}
+
+func (c *chain) failed() bool {
+	return c.failbit
+}
+
+func (c *chain) fail(message string, args ...interface{}) {
+	if c.failbit {
+		return
+	}
+	c.failbit = true
+	c.reporter.Errorf(message, args...)
+}
+
+func (c *chain) reset() {
+	c.failbit = false
+}
+
+func (c *chain) assertFailed(r Reporter) {
+	if !c.failbit {
+		r.Errorf("expected chain is failed, but it's ok")
+	}
+}
+
+func (c *chain) assertOK(r Reporter) {
+	if c.failbit {
+		r.Errorf("expected chain is ok, but it's failed")
+	}
+}
diff --git a/test/e2e/framework/httpexpect/cookie.go b/test/e2e/framework/httpexpect/cookie.go
new file mode 100644
index 000000000..1cd57a6cc
--- /dev/null
+++ b/test/e2e/framework/httpexpect/cookie.go
@@ -0,0 +1,29 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package httpexpect
+
+import "net/http"
+
+// Cookie provides methods to inspect attached http.Cookie value.
+type Cookie struct {
+	chain chain
+	value *http.Cookie
+}
+
+func (c *Cookie) Raw() *http.Cookie {
+	return c.value
+}
diff --git a/test/e2e/framework/httpexpect/match.go b/test/e2e/framework/httpexpect/match.go
new file mode 100644
index 000000000..b031510c4
--- /dev/null
+++ b/test/e2e/framework/httpexpect/match.go
@@ -0,0 +1,37 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package httpexpect
+
+// Match provides methods to inspect attached regexp match results.
+type Match struct {
+	chain      chain
+	submatches []string
+	names      map[string]int
+}
+
+func makeMatch(chain chain, submatches []string, names []string) *Match {
+	if submatches == nil {
+		submatches = []string{}
+	}
+	namemap := map[string]int{}
+	for n, name := range names {
+		if name != "" {
+			namemap[name] = n
+		}
+	}
+	return &Match{chain, submatches, namemap}
+}
diff --git a/test/e2e/framework/httpexpect/object.go b/test/e2e/framework/httpexpect/object.go
new file mode 100644
index 000000000..f7c27faaf
--- /dev/null
+++ b/test/e2e/framework/httpexpect/object.go
@@ -0,0 +1,111 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package httpexpect
+
+import (
+	"reflect"
+
+	"github.com/yudai/gojsondiff"
+	"github.com/yudai/gojsondiff/formatter"
+)
+
+// Object provides methods to inspect attached map[string]interface{} object
+// (Go representation of JSON object).
+type Object struct {
+	chain chain
+	value map[string]interface{}
+}
+
+func (o *Object) ValueEqual(key string, value interface{}) *Object {
+	if !o.containsKey(key) {
+		o.chain.fail("\nexpected object containing key '%s', but got:\n%s",
+			key, dumpValue(o.value))
+		return o
+	}
+	expected, ok := canonValue(&o.chain, value)
+	if !ok {
+		return o
+	}
+	if !reflect.DeepEqual(expected, o.value[key]) {
+		o.chain.fail("\nexpected value for key '%s' equal to:\n%s\n\nbut got:\n%s\n\ndiff:\n%s",
+			key,
+			dumpValue(expected),
+			dumpValue(o.value[key]),
+			diffValues(expected, o.value[key]))
+	}
+	return o
+}
+
+func (o *Object) ContainsKey(key string) *Object {
+	if !o.containsKey(key) {
+		o.chain.fail("\nexpected object containing key '%s', but got:\n%s",
+			key,
+			dumpValue(o.value))
+	}
+	return o
+}
+
+func (o *Object) NotContainsKey(key string) *Object {
+	if o.containsKey(key) {
+		o.chain.fail("\nexpected object not containing key '%s', but got:\n%s",
+			key, dumpValue(o.value))
+	}
+	return o
+}
+
+func (o *Object) containsKey(key string) bool {
+	for k := range o.value {
+		if k == key {
+			return true
+		}
+	}
+	return false
+}
+
+func diffValues(expected, actual interface{}) string {
+	differ := gojsondiff.New()
+
+	var diff gojsondiff.Diff
+
+	if ve, ok := expected.(map[string]interface{}); ok {
+		if va, ok := actual.(map[string]interface{}); ok {
+			diff = differ.CompareObjects(ve, va)
+		} else {
+			return " (unavailable)"
+		}
+	} else if ve, ok := expected.([]interface{}); ok {
+		if va, ok := actual.([]interface{}); ok {
+			diff = differ.CompareArrays(ve, va)
+		} else {
+			return " (unavailable)"
+		}
+	} else {
+		return " (unavailable)"
+	}
+
+	config := formatter.AsciiFormatterConfig{
+		ShowArrayIndex: true,
+	}
+	f := formatter.NewAsciiFormatter(expected, config)
+
+	str, err := f.Format(diff)
+	if err != nil {
+		return " (unavailable)"
+	}
+
+	return "--- expected\n+++ actual\n" + str
+}
diff --git a/test/e2e/framework/httpexpect/reporter.go b/test/e2e/framework/httpexpect/reporter.go
new file mode 100644
index 000000000..e80234590
--- /dev/null
+++ b/test/e2e/framework/httpexpect/reporter.go
@@ -0,0 +1,48 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package httpexpect
+
+import (
+	"fmt"
+
+	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
+)
+
+// Reporter is used to report failures.
+// testing.TB, AssertReporter, and RequireReporter implement this interface.
+type Reporter interface {
+	// Errorf reports failure.
+	// Allowed to return normally or terminate test using t.FailNow().
+	Errorf(message string, args ...interface{})
+}
+
+// AssertReporter implements Reporter interface using `testify/assert'
+// package. Failures are non-fatal with this reporter.
+type AssertReporter struct {
+	backend *assert.Assertions
+}
+
+// NewAssertReporter returns a new AssertReporter object.
+func NewAssertReporter() *AssertReporter {
+	return &AssertReporter{assert.New(ginkgo.GinkgoT())}
+}
+
+// Errorf implements Reporter.Errorf.
+func (r *AssertReporter) Errorf(message string, args ...interface{}) {
+	r.backend.Fail(fmt.Sprintf(message, args...))
+}
diff --git a/test/e2e/framework/httpexpect/request.go b/test/e2e/framework/httpexpect/request.go
new file mode 100644
index 000000000..335e3931e
--- /dev/null
+++ b/test/e2e/framework/httpexpect/request.go
@@ -0,0 +1,176 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package httpexpect
+
+import (
+	"fmt"
+	"io"
+	"net/http"
+	"net/url"
+	"path"
+)
+
+type HTTPRequest struct {
+	chain        chain
+	reporter     Reporter
+	baseURL      string
+	client       *http.Client
+	query        url.Values
+	Request      *http.Request
+	HTTPResponse *HTTPResponse
+}
+
+// NewRequest returns an HTTPRequest object.
+func NewRequest(baseURL string, client *http.Client, reporter Reporter) *HTTPRequest {
+	response := NewResponse(reporter)
+	return &HTTPRequest{
+		baseURL:      baseURL,
+		client:       client,
+		reporter:     reporter,
+		chain:        makeChain(reporter),
+		HTTPResponse: response,
+	}
+}
+
+// GET creates a new HTTP request with GET method.
+func (h *HTTPRequest) GET(rpath string) *HTTPRequest {
+	if h.chain.failed() {
+		return h
+	}
+	return h.DoRequest("GET", rpath)
+}
+
+// DoRequest creates a new HTTP request object.
+func (h *HTTPRequest) DoRequest(method, rpath string) *HTTPRequest {
+	uri, err := url.Parse(h.baseURL)
+	if err != nil {
+		h.chain.fail(err.Error())
+	}
+
+	var request *http.Request
+	uri.Path = path.Join(uri.Path, rpath)
+	if request, err = http.NewRequest(method, uri.String(), nil); err != nil {
+		h.chain.fail(err.Error())
+	}
+
+	h.Request = request
+	return h
+}
+
+// Expect executes the request and returns an HTTP response.
+func (h *HTTPRequest) Expect() *HTTPResponse {
+	if h.query != nil {
+		h.Request.URL.RawQuery = h.query.Encode()
+	}
+
+	response, err := h.client.Do(h.Request)
+	if err != nil {
+		h.chain.fail(err.Error())
+	}
+
+	h.HTTPResponse.Response = response // set the HTTP response
+
+	var content []byte
+	if content, err = getContent(response); err != nil {
+		h.chain.fail(err.Error())
+	}
+	// set content and cookies from HTTPResponse
+	h.HTTPResponse.content = content
+	h.HTTPResponse.cookies = h.HTTPResponse.Response.Cookies()
+	return h.HTTPResponse
+}
+
+// WithURL sets the request URL appending paths when already exist.
+func (h *HTTPRequest) WithURL(urlStr string) *HTTPRequest {
+	if h.chain.failed() {
+		return h
+	}
+	if u, err := url.Parse(urlStr); err != nil {
+		h.chain.fail(err.Error())
+	} else {
+		u.Path = path.Join(h.Request.URL.Path, u.Path)
+		h.Request.URL = u
+	}
+	return h
+}
+
+// WithHeader adds given header to request.
+func (h *HTTPRequest) WithHeader(key, value string) *HTTPRequest {
+	if h.chain.failed() {
+		return h
+	}
+	switch http.CanonicalHeaderKey(key) {
+	case "Host":
+		h.Request.Host = value
+	default:
+		h.Request.Header.Add(key, value)
+	}
+	return h
+}
+
+// WithCookies adds given cookies to request.
+func (h *HTTPRequest) WithCookies(cookies map[string]string) *HTTPRequest {
+	if h.chain.failed() {
+		return h
+	}
+	for k, v := range cookies {
+		h.WithCookie(k, v)
+	}
+	return h
+}
+
+// WithCookie adds given single cookie to request.
+func (h *HTTPRequest) WithCookie(k, v string) *HTTPRequest {
+	if h.chain.failed() {
+		return h
+	}
+	h.Request.AddCookie(&http.Cookie{Name: k, Value: v})
+	return h
+}
+
+// WithBasicAuth sets the request's Authorization header to use HTTP
+// Basic Authentication with the provided username and password.
+//
+// With HTTP Basic Authentication the provided username and password
+// are not encrypted.
+func (h *HTTPRequest) WithBasicAuth(username, password string) *HTTPRequest {
+	if h.chain.failed() {
+		return h
+	}
+	h.Request.SetBasicAuth(username, password)
+	return h
+}
+
+// WithQuery adds query parameter to request URL.
+func (h *HTTPRequest) WithQuery(key string, value interface{}) *HTTPRequest {
+	if h.chain.failed() {
+		return h
+	}
+	if h.query == nil {
+		h.query = make(url.Values)
+	}
+	h.query.Add(key, fmt.Sprint(value))
+	return h
+}
+
+// getContent returns the content from the body response.
+func getContent(resp *http.Response) ([]byte, error) {
+	if resp.Body == nil {
+		return []byte{}, nil
+	}
+	return io.ReadAll(resp.Body)
+}
diff --git a/test/e2e/framework/httpexpect/response.go b/test/e2e/framework/httpexpect/response.go
new file mode 100644
index 000000000..1c7624752
--- /dev/null
+++ b/test/e2e/framework/httpexpect/response.go
@@ -0,0 +1,273 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package httpexpect
+
+import (
+	"encoding/json"
+	"fmt"
+	"mime"
+	"net/http"
+	"reflect"
+	"strconv"
+	"strings"
+)
+
+// StatusRange is enum for response status ranges.
+type StatusRange int
+
+const (
+	// Status1xx defines "Informational" status codes.
+	Status1xx StatusRange = 100
+
+	// Status2xx defines "Success" status codes.
+	Status2xx StatusRange = 200
+
+	// Status3xx defines "Redirection" status codes.
+	Status3xx StatusRange = 300
+
+	// Status4xx defines "Client Error" status codes.
+	Status4xx StatusRange = 400
+
+	// Status5xx defines "Server Error" status codes.
+	Status5xx StatusRange = 500
+)
+
+type HTTPResponse struct {
+	chain    chain
+	content  []byte
+	cookies  []*http.Cookie
+	Response *http.Response
+}
+
+// NewResponse returns an empty HTTPResponse object.
+func NewResponse(reporter Reporter) *HTTPResponse {
+	return &HTTPResponse{
+		chain: makeChain(reporter),
+	}
+}
+
+// Body returns the body of the response.
+func (r *HTTPResponse) Body() *String {
+	return &String{value: string(r.content)}
+}
+
+// Raw returns the raw http response.
+func (r *HTTPResponse) Raw() *http.Response {
+	return r.Response
+}
+
+// Status compare the actual http response with the expected one raising and error
+// if they don't match.
+func (r *HTTPResponse) Status(status int) *HTTPResponse {
+	if r.chain.failed() {
+		return r
+	}
+	r.checkEqual("status", statusCodeText(status), statusCodeText(r.Response.StatusCode))
+	return r
+}
+
+// ContentEncoding succeeds if response has exactly given Content-Encoding
+func (r *HTTPResponse) ContentEncoding(encoding ...string) *HTTPResponse {
+	if r.chain.failed() {
+		return r
+	}
+	r.checkEqual("\"Content-Encoding\" header", encoding, r.Response.Header["Content-Encoding"])
+	return r
+}
+
+// ContentType succeeds if response contains Content-Type header with given
+// media type and charset.
+func (r *HTTPResponse) ContentType(mediaType string, charset ...string) *HTTPResponse {
+	r.checkContentType(mediaType, charset...)
+	return r
+}
+
+// Cookies returns a new Array object with all cookie names set by this response.
+// Returned Array contains a String value for every cookie name.
+func (r *HTTPResponse) Cookies() *Array {
+	if r.chain.failed() {
+		return &Array{r.chain, nil}
+	}
+	names := []interface{}{}
+	for _, c := range r.cookies {
+		names = append(names, c.Name)
+	}
+	return &Array{r.chain, names}
+}
+
+// Cookie returns a new Cookie object that may be used to inspect given cookie
+// set by this response.
+func (r *HTTPResponse) Cookie(name string) *Cookie {
+	if r.chain.failed() {
+		return &Cookie{r.chain, nil}
+	}
+	names := []string{}
+	for _, c := range r.cookies {
+		if c.Name == name {
+			return &Cookie{r.chain, c}
+		}
+		names = append(names, c.Name)
+	}
+	r.chain.fail("\nexpected response with cookie:\n %q\n\nbut got only cookies:\n%s", name, dumpValue(names))
+	return &Cookie{r.chain, nil}
+}
+
+// Headers returns a new Object that may be used to inspect header map.
+func (r *HTTPResponse) Headers() *Object {
+	var value map[string]interface{}
+	if !r.chain.failed() {
+		value, _ = canonMap(&r.chain, r.Response.Header)
+	}
+	return &Object{r.chain, value}
+}
+
+// Header returns a new String object that may be used to inspect given header.
+func (r *HTTPResponse) Header(header string) *String {
+	return &String{chain: r.chain, value: r.Response.Header.Get(header)}
+}
+
+func canonMap(chain *chain, in interface{}) (map[string]interface{}, bool) {
+	var out map[string]interface{}
+	data, ok := canonValue(chain, in)
+	if ok {
+		out, ok = data.(map[string]interface{})
+		if !ok {
+			chain.fail("expected map, got %v", out)
+		}
+	}
+	return out, ok
+}
+
+func canonValue(chain *chain, in interface{}) (interface{}, bool) {
+	b, err := json.Marshal(in)
+	if err != nil {
+		chain.fail(err.Error())
+		return nil, false
+	}
+
+	var out interface{}
+	if err := json.Unmarshal(b, &out); err != nil {
+		chain.fail(err.Error())
+		return nil, false
+	}
+
+	return out, true
+}
+
+// StatusRange succeeds if response status belongs to given range.
+func (r *HTTPResponse) StatusRange(rn StatusRange) *HTTPResponse {
+	if r.chain.failed() {
+		return r
+	}
+	status := statusCodeText(r.Response.StatusCode)
+
+	actual := statusRangeText(r.Response.StatusCode)
+	expected := statusRangeText(int(rn))
+
+	if actual == "" || actual != expected {
+		if actual == "" {
+			r.chain.fail("\nexpected status from range:\n %q\n\nbut got:\n %q",
+				expected, status)
+		} else {
+			r.chain.fail("\nexpected status from range:\n %q\n\nbut got:\n %q (%q)",
+				expected, actual, status)
+		}
+	}
+	return r
+}
+
+func statusCodeText(code int) string {
+	if s := http.StatusText(code); s != "" {
+		return strconv.Itoa(code) + " " + s
+	}
+	return strconv.Itoa(code)
+}
+
+func statusRangeText(code int) string {
+	switch {
+	case code >= 100 && code < 200:
+		return "1xx Informational"
+	case code >= 200 && code < 300:
+		return "2xx Success"
+	case code >= 300 && code < 400:
+		return "3xx Redirection"
+	case code >= 400 && code < 500:
+		return "4xx Client Error"
+	case code >= 500 && code < 600:
+		return "5xx Server Error"
+	default:
+		return ""
+	}
+}
+
+func (r *HTTPResponse) checkContentType(expectedType string, expectedCharset ...string) bool {
+	if r.chain.failed() {
+		return false
+	}
+
+	contentType := r.Response.Header.Get("Content-Type")
+
+	if expectedType == "" && len(expectedCharset) == 0 {
+		if contentType == "" {
+			return true
+		}
+	}
+
+	mediaType, params, err := mime.ParseMediaType(contentType)
+	if err != nil {
+		r.chain.fail("\ngot invalid \"Content-Type\" header %q", contentType)
+		return false
+	}
+
+	if mediaType != expectedType {
+		r.chain.fail("\nexpected \"Content-Type\" header with %q media type,"+
+			"\nbut got %q", expectedType, mediaType)
+		return false
+	}
+
+	charset := params["charset"]
+
+	if len(expectedCharset) == 0 {
+		if charset != "" && !strings.EqualFold(charset, "utf-8") {
+			r.chain.fail("\nexpected \"Content-Type\" header with \"utf-8\" or empty charset,"+
+				"\nbut got %q", charset)
+			return false
+		}
+	} else {
+		if !strings.EqualFold(charset, expectedCharset[0]) {
+			r.chain.fail("\nexpected \"Content-Type\" header with %q charset,"+
+				"\nbut got %q", expectedCharset[0], charset)
+			return false
+		}
+	}
+	return true
+}
+
+func (r *HTTPResponse) checkEqual(what string, expected, actual interface{}) {
+	if !reflect.DeepEqual(expected, actual) {
+		r.chain.fail("\nexpected %s equal to:\n%s\n\nbut got:\n%s",
+			what, dumpValue(expected), dumpValue(actual))
+	}
+}
+
+func dumpValue(value interface{}) string {
+	b, err := json.MarshalIndent(value, " ", "  ")
+	if err != nil {
+		return " " + fmt.Sprintf("%#v", value)
+	}
+	return " " + string(b)
+}
diff --git a/test/e2e/framework/httpexpect/string.go b/test/e2e/framework/httpexpect/string.go
new file mode 100644
index 000000000..be2ab0f04
--- /dev/null
+++ b/test/e2e/framework/httpexpect/string.go
@@ -0,0 +1,120 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package httpexpect
+
+import (
+	"regexp"
+	"strings"
+)
+
+// String provides methods to inspect attached string value
+// (Go representation of JSON string).
+type String struct {
+	chain chain
+	value string
+}
+
+// Raw returns underlying value attached to String.
+// This is the value originally passed to NewString.
+func (s *String) Raw() string {
+	return s.value
+}
+
+// Empty succeeds if string is empty.
+func (s *String) Empty() *String {
+	return s.Equal("")
+}
+
+// NotEmpty succeeds if string is non-empty.
+func (s *String) NotEmpty() *String {
+	return s.NotEqual("")
+}
+
+// Equal succeeds if string is equal to given Go string.
+func (s *String) Equal(value string) *String {
+	if !(s.value == value) {
+		s.chain.fail("\nexpected string equal to:\n %q\n\nbut got:\n %q", value, s.value)
+	}
+	return s
+}
+
+// NotEqual succeeds if string is not equal to given Go string.
+func (s *String) NotEqual(value string) *String {
+	if !(s.value != value) {
+		s.chain.fail("\nexpected string not equal to:\n %q", value)
+	}
+	return s
+}
+
+// Contains succeeds if string contains given Go string as a substring.
+func (s *String) Contains(value string) *String {
+	if !strings.Contains(s.value, value) {
+		s.chain.fail(
+			"\nexpected string containing substring:\n %q\n\nbut got:\n %q",
+			value, s.value)
+	}
+	return s
+}
+
+// NotContains succeeds if string doesn't contain Go string as a substring.
+func (s *String) NotContains(value string) *String {
+	if strings.Contains(s.value, value) {
+		s.chain.fail("\nexpected string not containing substring:\n %q\n\nbut got:\n %q", value, s.value)
+	}
+	return s
+}
+
+// ContainsFold succeeds if string contains given Go string as a substring after
+// applying Unicode case-folding (so it's a case-insensitive match).
+func (s *String) ContainsFold(value string) *String {
+	if !strings.Contains(strings.ToLower(s.value), strings.ToLower(value)) {
+		s.chain.fail("\nexpected string containing substring (case-insensitive):\n %q"+"\n\nbut got:\n %q", value, s.value)
+	}
+	return s
+}
+
+// NotContainsFold succeeds if string doesn't contain given Go string as a substring
+// after applying Unicode case-folding (so it's a case-insensitive match).
+//
+// Example:
+//
+//	str := NewString(t, "Hello")
+//	str.NotContainsFold("BYE")
+func (s *String) NotContainsFold(value string) *String {
+	if strings.Contains(strings.ToLower(s.value), strings.ToLower(value)) {
+		s.chain.fail("\nexpected string not containing substring (case-insensitive):\n %q"+"\n\nbut got:\n %q", value, s.value)
+	}
+	return s
+}
+
+// Match matches the string with given regexp and returns a new Match object
+// with found submatches.
+func (s *String) Match(re string) *Match {
+	r, err := regexp.Compile(re)
+	if err != nil {
+		s.chain.fail(err.Error())
+		return makeMatch(s.chain, nil, nil)
+	}
+
+	m := r.FindStringSubmatch(s.value)
+	if m == nil {
+		s.chain.fail("\nexpected string matching regexp:\n `%s`\n\nbut got:\n %q", re, s.value)
+		return makeMatch(s.chain, nil, nil)
+	}
+
+	return makeMatch(s.chain, m, r.SubexpNames())
+}
diff --git a/test/e2e/framework/httpexpect/value.go b/test/e2e/framework/httpexpect/value.go
new file mode 100644
index 000000000..fd59091b1
--- /dev/null
+++ b/test/e2e/framework/httpexpect/value.go
@@ -0,0 +1,33 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package httpexpect
+
+// Value provides methods to inspect attached interface{} object
+// (Go representation of arbitrary JSON value) and cast it to
+// concrete type.
+type Value struct {
+	chain chain
+	value interface{}
+}
+
+func (v *Value) String() *String {
+	data, ok := v.value.(string)
+	if !ok {
+		v.chain.fail("\nexpected string value, but got:\n%s", dumpValue(v.value))
+	}
+	return &String{v.chain, data}
+}
diff --git a/test/e2e/servicebackend/service_externalname.go b/test/e2e/servicebackend/service_externalname.go
index 30c4f6ba0..0d121c671 100644
--- a/test/e2e/servicebackend/service_externalname.go
+++ b/test/e2e/servicebackend/service_externalname.go
@@ -22,7 +22,8 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/gavv/httpexpect/v2"
+	"k8s.io/ingress-nginx/test/e2e/framework/httpexpect"
+
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	corev1 "k8s.io/api/core/v1"
diff --git a/test/e2e/settings/disable_service_external_name.go b/test/e2e/settings/disable_service_external_name.go
index 03c8020b6..a24cfebde 100644
--- a/test/e2e/settings/disable_service_external_name.go
+++ b/test/e2e/settings/disable_service_external_name.go
@@ -21,7 +21,8 @@ import (
 	"net/http"
 	"strings"
 
-	"github.com/gavv/httpexpect/v2"
+	"k8s.io/ingress-nginx/test/e2e/framework/httpexpect"
+
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"

From db3cdc04e40c5fab51c010902eac2522572e9a3c Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 5 Sep 2022 07:28:36 -0400
Subject: [PATCH 0357/1641] release 1.3.1 (#9014)

* release 1.3.1

Signed-off-by: James Strong <strong.james.e@gmail.com>

* fix readme

Signed-off-by: James Strong <strong.james.e@gmail.com>

* fix readme

Signed-off-by: James Strong <strong.james.e@gmail.com>

* fix readme

Signed-off-by: James Strong <strong.james.e@gmail.com>

* Fix chart linter

* Fix helm docs

* Fix helm docs

* fix helm docs

* Add warning about lease change

* Disable PSP in v1.25

* rollback cluster in helmchart to psp tests

Signed-off-by: James Strong <strong.james.e@gmail.com>
Co-authored-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>
---
 .github/workflows/ci.yaml                     |  4 +-
 Changelog.md                                  | 77 +++++++++++++++++++
 README.md                                     | 14 ++--
 RELEASE.md                                    |  4 +-
 build/build.sh                                |  2 +
 charts/ingress-nginx/Chart.yaml               |  4 +-
 charts/ingress-nginx/README.md                | 64 +++++++--------
 .../templates/controller-psp.yaml             |  2 +
 .../templates/default-backend-psp.yaml        |  2 +
 deploy/static/provider/aws/deploy.yaml        | 42 +++++-----
 .../aws/nlb-with-tls-termination/deploy.yaml  | 42 +++++-----
 deploy/static/provider/baremetal/deploy.yaml  | 42 +++++-----
 deploy/static/provider/cloud/deploy.yaml      | 42 +++++-----
 deploy/static/provider/do/deploy.yaml         | 42 +++++-----
 deploy/static/provider/exoscale/deploy.yaml   | 42 +++++-----
 deploy/static/provider/kind/deploy.yaml       | 42 +++++-----
 deploy/static/provider/scw/deploy.yaml        | 42 +++++-----
 docs/deploy/index.md                          | 20 ++---
 hack/verify-chart-lint.sh                     |  5 +-
 19 files changed, 309 insertions(+), 225 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index d469ae959..54a935917 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -149,7 +149,7 @@ jobs:
 
       - name: Run helm-docs
         run: |
-          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@e91c4c3337d3bf3fdad8de1763999a5c3325567f  # v1.8.1
+          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.11.0
           ./helm-docs --chart-search-root=${GITHUB_WORKSPACE}/charts
           DIFF=$(git diff ${GITHUB_WORKSPACE}/charts/ingress-nginx/README.md)
           if [ ! -z "$DIFF" ]; then
@@ -175,7 +175,7 @@ jobs:
         uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
         with:
           version: v0.15.0
-          image: kindest/node:v1.25.0
+          image: kindest/node:v1.24.4
 
       - uses: geekyeggo/delete-artifact@b73cb986740e466292a536d0e32e2666c56fdeb3 # v1
         with:
diff --git a/Changelog.md b/Changelog.md
index d4a6bbcd1..c05911b9f 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -1,5 +1,82 @@
 # Changelog
 
+### 1.3.1
+
+Please fill out our 2022 Ingress-Nginx User Survey and let us know what you want to see in future releases.
+
+https://www.surveymonkey.com/r/ingressngx2022
+
+In v1.3.1 leader elections will be done entirely using the Lease API and no longer using configmaps. 
+v1.3.0 is a safe transition version, using v1.3.0 can automatically complete the merging of election locks, and then you can safely upgrade to v1.3.1.
+
+Also, *important note*, with the Release of Kubernetes v1.25 we are dropping support for the legacy branches, 
+please upgrade to a v1.0.0 and above branch
+
+## Image:
+- registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
+- registry.k8s.io/ingress-nginx/controller-chroot:v1.3.1@sha256:a8466b19c621bd550b1645e27a004a5cc85009c858a9ab19490216735ac432b1
+
+
+## What's Changed
+
+_IMPORTANT CHANGES:_
+- Update to golang 1.19
+- Started migration for Data and Control Plane splits
+- Upgrade to Alpine 3.16.2
+- New kubectl plugin release workflow
+- New CVE findings template
+
+All other Changes
+- [9006](https://github.com/kubernetes/ingress-nginx/pull/9006) issue:8739 fix doc issue
+- [9003](https://github.com/kubernetes/ingress-nginx/pull/9003) Bump github/codeql-action from 2.1.21 to 2.1.22
+- [9001](https://github.com/kubernetes/ingress-nginx/pull/9001) GitHub Workflows security hardening
+- [8992](https://github.com/kubernetes/ingress-nginx/pull/8992) Bump github.com/opencontainers/runc from 1.1.3 to 1.1.4
+- [8991](https://github.com/kubernetes/ingress-nginx/pull/8991) Bump google.golang.org/grpc from 1.48.0 to 1.49.0
+- [8986](https://github.com/kubernetes/ingress-nginx/pull/8986) Bump goreleaser/goreleaser-action from 3.0.0 to 3.1.0
+- [8984](https://github.com/kubernetes/ingress-nginx/pull/8984) fixed deprecated ginkgo flags
+- [8982](https://github.com/kubernetes/ingress-nginx/pull/8982) Bump github/codeql-action from 2.1.20 to 2.1.21
+- [8981](https://github.com/kubernetes/ingress-nginx/pull/8981) Bump actions/setup-go from 3.2.1 to 3.3.0
+- [8976](https://github.com/kubernetes/ingress-nginx/pull/8976) Update apiserver to 0.25 to remove v2 go-restful
+- [8970](https://github.com/kubernetes/ingress-nginx/pull/8970) bump Golang to 1.19 #8932
+- [8969](https://github.com/kubernetes/ingress-nginx/pull/8969) fix: go-restful CVE #8745
+- [8967](https://github.com/kubernetes/ingress-nginx/pull/8967) updated to testrunnerimage with updated yamale yamllint
+- [8966](https://github.com/kubernetes/ingress-nginx/pull/8966) added note on digitalocean annotations
+- [8960](https://github.com/kubernetes/ingress-nginx/pull/8960) upgrade yamale and yamllint version
+- [8959](https://github.com/kubernetes/ingress-nginx/pull/8959) revert changes to configmap resource permissions
+- [8957](https://github.com/kubernetes/ingress-nginx/pull/8957) Bump github/codeql-action from 2.1.19 to 2.1.20
+- [8956](https://github.com/kubernetes/ingress-nginx/pull/8956) Bump azure/setup-helm from 2.1 to 3.3
+- [8954](https://github.com/kubernetes/ingress-nginx/pull/8954) Bump actions/dependency-review-action from 2.0.4 to 2.1.0
+- [8953](https://github.com/kubernetes/ingress-nginx/pull/8953) Bump aquasecurity/trivy-action from 0.5.1 to 0.7.1
+- [8952](https://github.com/kubernetes/ingress-nginx/pull/8952) Bump securego/gosec from b99b5f7838e43a4104354ad92a6a1774302ee1f9 to 2.13.1
+- [8951](https://github.com/kubernetes/ingress-nginx/pull/8951) Bump geekyeggo/delete-artifact from a6ab43859c960a8b74cbc6291f362c7fb51829ba to 1
+- [8950](https://github.com/kubernetes/ingress-nginx/pull/8950) Bump github/codeql-action from 2.1.18 to 2.1.19
+- [8948](https://github.com/kubernetes/ingress-nginx/pull/8948) updated testrunner and testecho images
+- [8946](https://github.com/kubernetes/ingress-nginx/pull/8946) Clean old code and move helper functions
+- [8944](https://github.com/kubernetes/ingress-nginx/pull/8944) Make keep-alive documentation more explicit for clarity
+- [8939](https://github.com/kubernetes/ingress-nginx/pull/8939) bump baseimage alpine to v3.16.2 for zlib CVE fix
+
+## New Contributors
+* @mtnezm made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8817
+* @tamcore made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8821
+* @guilhem made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8827
+* @lilien1010 made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8830
+* @qilongqiu made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8855
+* @dgoffredo made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8848
+* @Volatus made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8859
+* @europ made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8841
+* @mrksngl made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/7892
+* @omichels made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8895
+* @zeeZ made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8881
+* @mjudeikis made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8928
+* @NissesSenap made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8873
+* @anders-swanson made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8665
+* @aslafy-z made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8905
+* @harry1064 made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8825
+* @sashashura made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9001
+* @sreelakshminarayananm made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9006
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.3.0...controller-v1.3.1
+
 ### 1.3.0
 
 Image: 
diff --git a/README.md b/README.md
index c8bdcdf86..fce3fbb84 100644
--- a/README.md
+++ b/README.md
@@ -7,6 +7,10 @@
 [![GitHub stars](https://img.shields.io/badge/contributions-welcome-orange.svg)](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md)
 [![FOSSA Status](https://app.fossa.io/api/projects/git%2Bgithub.com%2Fkubernetes%2Fingress-nginx.svg?type=shield)](https://app.fossa.io/projects/git%2Bgithub.com%2Fkubernetes%2Fingress-nginx?ref=badge_shield)
 
+Please fill out our 2022 Ingress-Nginx User Survey and let us know what you want to see in future releases.
+
+https://www.surveymonkey.com/r/ingressngx2022
+
 ## Overview
 
 ingress-nginx is an Ingress controller for Kubernetes using [NGINX](https://www.nginx.org/) as a reverse proxy and load balancer.
@@ -31,6 +35,7 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 
 | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
+| v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      |
 | v1.3.0                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.0         | 1.19.10†      |
 | v1.2.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.6         | 1.19.10†      |
 | v1.1.3                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.4         | 1.19.10†      |
@@ -43,12 +48,7 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 | v1.0.2                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
 | v1.0.1                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
 | v1.0.0                | 1.22, 1.21, 1.20, 1.19       | 3.13.5         | 1.20.1        |
-| v0.51.0               | 1.21, 1.20, 1.19             | 3.14.4         | 1.19.10†       |
-| v0.49.3               | 1.21, 1.20, 1.19             | 3.14.2         | 1.19.9†       |
-| v0.49.2               | 1.21, 1.20, 1.19             | 3.14.2         | 1.19.9†       |
-| v0.49.1               | 1.21, 1.20, 1.19             | 3.14.2         | 1.19.9†       |
-| v0.49.0               | 1.21, 1.20, 1.19             | 3.13.5         | 1.20.1        |
-| v0.48.1               | 1.21, 1.20, 1.19             | 3.13.5         | 1.20.1        |
+
 
 † _This build is [patched against CVE-2021-23017](https://github.com/openresty/openresty/commit/4b5ec7edd78616f544abc194308e0cf4b788725b#diff-42ef841dc27fe0b5aa2d06bd31308bb63a59cdcddcbcddd917248349d22020a3)._
 
@@ -70,7 +70,7 @@ Thanks for taking the time to join our community and start contributing!
 
 - **Support**: Join the [#ingress-nginx-users](https://kubernetes.slack.com/messages/CANQGM8BA/) channel inside the [Kubernetes Slack](http://slack.kubernetes.io/) to ask questions or get support from the maintainers and other users.
   
-  - The [github issues](https://github.com/kubernetes/ingress-nginx/issues) in the repository are **exclusively** for bug reports and feature requests.
+  - The [GitHub issues](https://github.com/kubernetes/ingress-nginx/issues) in the repository are **exclusively** for bug reports and feature requests.
 
 - **Discuss**: Tweet using the `#IngressNginx` hashtag.
 
diff --git a/RELEASE.md b/RELEASE.md
index 8fbc0932f..210277942 100644
--- a/RELEASE.md
+++ b/RELEASE.md
@@ -173,7 +173,7 @@ Promoting the images basically means that images, that were pushed to staging co
           - Run the below command and save the output to a txt file
 
             ```
-            gh pr list -s merged -L 38 -B main | cut -f1,2 | tee ~/Downloads/prlist.txt
+            gh pr list -R kubernetes/ingress-nginx -s merged -L 38 -B main | cut -f1,2 | tee ~/Downloads/prlist.txt
             ```
             - The -L 38 was used for 2 reasons.
               - Default number of results is 30 and there were more than 30 PRs merged while releasing v1.1.1. If you see the current/soon-to-be-old changelog, you can look at the most recent PR number that has been accounted for already, and start from after that last accounted for PR.
@@ -222,7 +222,7 @@ Promoting the images basically means that images, that were pushed to staging co
           - If you saved the bash script content above, in a file like `$HOME/bin/prlist_to_changelog.sh`, then you could execute a command like this to get your prlist in a text file called changelog_content.txt;`
 
           ```
-          prlist_to_changelog.sh ~/Downloads/prlist.txt | tee ~/Downloads//changelog_content.txt`
+          prlist_to_changelog.sh ~/Downloads/prlist.txt | tee ~/Downloads//changelog_content.txt
           ```
 
 ### d. Edit the values.yaml and run helm-docs
diff --git a/build/build.sh b/build/build.sh
index c0372bc25..42bec820b 100755
--- a/build/build.sh
+++ b/build/build.sh
@@ -49,7 +49,9 @@ echo "Building targets for ${ARCH}, generated targets in ${TARGETS_DIR} director
 
 echo "Building ${PKG}/cmd/nginx"
 
+pushd /go/src/k8s.io/ingress-nginx
 git config --add safe.directory /go/src/k8s.io/ingress-nginx
+popd
 
 ${GO_BUILD_CMD} \
   -trimpath -ldflags="-buildid= -w -s \
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 8b7f8ca16..178f7f722 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,8 +2,8 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.2.3
-appVersion: 1.3.0
+version: 4.2.4
+appVersion: 1.3.1
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 8357cab56..17743881c 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.2.3](https://img.shields.io/badge/Version-4.2.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.3.0](https://img.shields.io/badge/AppVersion-1.3.0-informational?style=flat-square)
+![Version: 4.2.4](https://img.shields.io/badge/Version-4.2.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.3.1](https://img.shields.io/badge/AppVersion-1.3.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -260,7 +260,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
 | controller.admissionWebhooks.patch.podAnnotations | object | `{}` |  |
-| controller.admissionWebhooks.patch.priorityClassName | string | `""` | Provide a priority class name to the webhook patching job |
+| controller.admissionWebhooks.patch.priorityClassName | string | `""` | Provide a priority class name to the webhook patching job # |
 | controller.admissionWebhooks.patch.securityContext.fsGroup | int | `2000` |  |
 | controller.admissionWebhooks.patch.securityContext.runAsNonRoot | bool | `true` |  |
 | controller.admissionWebhooks.patch.securityContext.runAsUser | int | `2000` |  |
@@ -272,9 +272,9 @@ Kubernetes: `>=1.20.0-0`
 | controller.admissionWebhooks.service.loadBalancerSourceRanges | list | `[]` |  |
 | controller.admissionWebhooks.service.servicePort | int | `443` |  |
 | controller.admissionWebhooks.service.type | string | `"ClusterIP"` |  |
-| controller.affinity | object | `{}` | Affinity and anti-affinity rules for server scheduling to nodes |
+| controller.affinity | object | `{}` | Affinity and anti-affinity rules for server scheduling to nodes # Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity # |
 | controller.allowSnippetAnnotations | bool | `true` | This configuration defines if Ingress Controller should allow users to set their own *-snippet annotations, otherwise this is forbidden / dropped when users add those annotations. Global snippets in ConfigMap are still respected |
-| controller.annotations | object | `{}` | Annotations to be added to the controller Deployment or DaemonSet |
+| controller.annotations | object | `{}` | Annotations to be added to the controller Deployment or DaemonSet # |
 | controller.autoscaling.behavior | object | `{}` |  |
 | controller.autoscaling.enabled | bool | `false` |  |
 | controller.autoscaling.maxReplicas | int | `11` |  |
@@ -292,7 +292,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.dnsConfig | object | `{}` | Optionally customize the pod dnsConfig. |
 | controller.dnsPolicy | string | `"ClusterFirst"` | Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'. By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller to keep resolving names inside the k8s network, use ClusterFirstWithHostNet. |
 | controller.electionID | string | `"ingress-controller-leader"` | Election ID to use for status update |
-| controller.enableMimalloc | bool | `true` | Enable mimalloc as a drop-in replacement for malloc. |
+| controller.enableMimalloc | bool | `true` | Enable mimalloc as a drop-in replacement for malloc. # ref: https://github.com/microsoft/mimalloc # |
 | controller.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | controller.extraArgs | object | `{}` | Additional command line arguments to pass to nginx-ingress-controller E.g. to specify the default SSL certificate you can use |
 | controller.extraContainers | list | `[]` | Additional containers to be added to the controller pod. See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example. |
@@ -335,8 +335,8 @@ Kubernetes: `>=1.20.0-0`
 | controller.keda.scaledObject.annotations | object | `{}` |  |
 | controller.keda.triggers | list | `[]` |  |
 | controller.kind | string | `"Deployment"` | Use a `DaemonSet` or `Deployment` |
-| controller.labels | object | `{}` | Labels to be added to the controller Deployment or DaemonSet and other resources that do not have option to specify labels |
-| controller.lifecycle | object | `{"preStop":{"exec":{"command":["/wait-shutdown"]}}}` | Improve connection draining when ingress controller pod is deleted using a lifecycle hook: With this new hook, we increased the default terminationGracePeriodSeconds from 30 seconds to 300, allowing the draining of connections up to five minutes. If the active connections end before that, the pod will terminate gracefully at that time. To effectively take advantage of this feature, the Configmap feature worker-shutdown-timeout new value is 240s instead of 10s. |
+| controller.labels | object | `{}` | Labels to be added to the controller Deployment or DaemonSet and other resources that do not have option to specify labels # |
+| controller.lifecycle | object | `{"preStop":{"exec":{"command":["/wait-shutdown"]}}}` | Improve connection draining when ingress controller pod is deleted using a lifecycle hook: With this new hook, we increased the default terminationGracePeriodSeconds from 30 seconds to 300, allowing the draining of connections up to five minutes. If the active connections end before that, the pod will terminate gracefully at that time. To effectively take advantage of this feature, the Configmap feature worker-shutdown-timeout new value is 240s instead of 10s. # |
 | controller.livenessProbe.failureThreshold | int | `5` |  |
 | controller.livenessProbe.httpGet.path | string | `"/healthz"` |  |
 | controller.livenessProbe.httpGet.port | int | `10254` |  |
@@ -345,14 +345,14 @@ Kubernetes: `>=1.20.0-0`
 | controller.livenessProbe.periodSeconds | int | `10` |  |
 | controller.livenessProbe.successThreshold | int | `1` |  |
 | controller.livenessProbe.timeoutSeconds | int | `1` |  |
-| controller.maxmindLicenseKey | string | `""` | Maxmind license key to download GeoLite2 Databases. |
+| controller.maxmindLicenseKey | string | `""` | Maxmind license key to download GeoLite2 Databases. # https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases |
 | controller.metrics.enabled | bool | `false` |  |
 | controller.metrics.port | int | `10254` |  |
 | controller.metrics.prometheusRule.additionalLabels | object | `{}` |  |
 | controller.metrics.prometheusRule.enabled | bool | `false` |  |
 | controller.metrics.prometheusRule.rules | list | `[]` |  |
 | controller.metrics.service.annotations | object | `{}` |  |
-| controller.metrics.service.externalIPs | list | `[]` | List of IP addresses at which the stats-exporter service is available |
+| controller.metrics.service.externalIPs | list | `[]` | List of IP addresses at which the stats-exporter service is available # Ref: https://kubernetes.io/docs/user-guide/services/#external-ips # |
 | controller.metrics.service.loadBalancerSourceRanges | list | `[]` |  |
 | controller.metrics.service.servicePort | int | `10254` |  |
 | controller.metrics.service.type | string | `"ClusterIP"` |  |
@@ -365,10 +365,10 @@ Kubernetes: `>=1.20.0-0`
 | controller.metrics.serviceMonitor.scrapeInterval | string | `"30s"` |  |
 | controller.metrics.serviceMonitor.targetLabels | list | `[]` |  |
 | controller.minAvailable | int | `1` |  |
-| controller.minReadySeconds | int | `0` | `minReadySeconds` to avoid killing pods before we are ready |
+| controller.minReadySeconds | int | `0` | `minReadySeconds` to avoid killing pods before we are ready # |
 | controller.name | string | `"controller"` |  |
-| controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment |
-| controller.podAnnotations | object | `{}` | Annotations to be added to controller pods |
+| controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment # Ref: https://kubernetes.io/docs/user-guide/node-selection/ # |
+| controller.podAnnotations | object | `{}` | Annotations to be added to controller pods # |
 | controller.podLabels | object | `{}` | Labels to add to the pod container metadata |
 | controller.podSecurityContext | object | `{}` | Security Context policies for controller pods |
 | controller.priorityClassName | string | `""` |  |
@@ -392,17 +392,17 @@ Kubernetes: `>=1.20.0-0`
 | controller.scope.namespace | string | `""` | Namespace to limit the controller to; defaults to $(POD_NAMESPACE) |
 | controller.scope.namespaceSelector | string | `""` | When scope.enabled == false, instead of watching all namespaces, we watching namespaces whose labels only match with namespaceSelector. Format like foo=bar. Defaults to empty, means watching all namespaces. |
 | controller.service.annotations | object | `{}` |  |
-| controller.service.appProtocol | bool | `true` | If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http It allows choosing the protocol for each backend specified in the Kubernetes service. See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244 Will be ignored for Kubernetes versions older than 1.20 |
+| controller.service.appProtocol | bool | `true` | If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http It allows choosing the protocol for each backend specified in the Kubernetes service. See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244 Will be ignored for Kubernetes versions older than 1.20 # |
 | controller.service.enableHttp | bool | `true` |  |
 | controller.service.enableHttps | bool | `true` |  |
 | controller.service.enabled | bool | `true` |  |
 | controller.service.external.enabled | bool | `true` |  |
-| controller.service.externalIPs | list | `[]` | List of IP addresses at which the controller services are available |
+| controller.service.externalIPs | list | `[]` | List of IP addresses at which the controller services are available # Ref: https://kubernetes.io/docs/user-guide/services/#external-ips # |
 | controller.service.internal.annotations | object | `{}` | Annotations are mandatory for the load balancer to come up. Varies with the cloud service. |
 | controller.service.internal.enabled | bool | `false` | Enables an additional internal load balancer (besides the external one). |
 | controller.service.internal.loadBalancerSourceRanges | list | `[]` | Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0. |
-| controller.service.ipFamilies | list | `["IPv4"]` | List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. |
-| controller.service.ipFamilyPolicy | string | `"SingleStack"` | Represents the dual-stack-ness requested or required by this Service. Possible values are SingleStack, PreferDualStack or RequireDualStack. The ipFamilies and clusterIPs fields depend on the value of this field. |
+| controller.service.ipFamilies | list | `["IPv4"]` | List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/ |
+| controller.service.ipFamilyPolicy | string | `"SingleStack"` | Represents the dual-stack-ness requested or required by this Service. Possible values are SingleStack, PreferDualStack or RequireDualStack. The ipFamilies and clusterIPs fields depend on the value of this field. # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/ |
 | controller.service.labels | object | `{}` |  |
 | controller.service.loadBalancerIP | string | `""` | Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer |
 | controller.service.loadBalancerSourceRanges | list | `[]` |  |
@@ -419,12 +419,12 @@ Kubernetes: `>=1.20.0-0`
 | controller.sysctls | object | `{}` | See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls |
 | controller.tcp.annotations | object | `{}` | Annotations to be added to the tcp config configmap |
 | controller.tcp.configMapNamespace | string | `""` | Allows customization of the tcp-services-configmap; defaults to $(POD_NAMESPACE) |
-| controller.terminationGracePeriodSeconds | int | `300` | `terminationGracePeriodSeconds` to avoid killing pods before we are ready |
-| controller.tolerations | list | `[]` | Node tolerations for server scheduling to nodes with taints |
-| controller.topologySpreadConstraints | list | `[]` | Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in. |
+| controller.terminationGracePeriodSeconds | int | `300` | `terminationGracePeriodSeconds` to avoid killing pods before we are ready # wait up to five minutes for the drain of connections # |
+| controller.tolerations | list | `[]` | Node tolerations for server scheduling to nodes with taints # Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/ # |
+| controller.topologySpreadConstraints | list | `[]` | Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in. # Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/ # |
 | controller.udp.annotations | object | `{}` | Annotations to be added to the udp config configmap |
 | controller.udp.configMapNamespace | string | `""` | Allows customization of the udp-services-configmap; defaults to $(POD_NAMESPACE) |
-| controller.updateStrategy | object | `{}` | The update strategy to apply to the Deployment or DaemonSet |
+| controller.updateStrategy | object | `{}` | The update strategy to apply to the Deployment or DaemonSet # |
 | controller.watchIngressWithoutClass | bool | `false` | Process Ingress objects without ingressClass annotation/ingressClassName field Overrides value for --watch-ingress-without-class flag of the controller binary Defaults to false |
 | defaultBackend.affinity | object | `{}` |  |
 | defaultBackend.autoscaling.annotations | object | `{}` |  |
@@ -433,7 +433,7 @@ Kubernetes: `>=1.20.0-0`
 | defaultBackend.autoscaling.minReplicas | int | `1` |  |
 | defaultBackend.autoscaling.targetCPUUtilizationPercentage | int | `50` |  |
 | defaultBackend.autoscaling.targetMemoryUtilizationPercentage | int | `50` |  |
-| defaultBackend.containerSecurityContext | object | `{}` | Security Context policies for controller main container. See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls |
+| defaultBackend.containerSecurityContext | object | `{}` | Security Context policies for controller main container. See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls # |
 | defaultBackend.enabled | bool | `false` |  |
 | defaultBackend.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | defaultBackend.extraArgs | object | `{}` |  |
@@ -456,10 +456,10 @@ Kubernetes: `>=1.20.0-0`
 | defaultBackend.livenessProbe.timeoutSeconds | int | `5` |  |
 | defaultBackend.minAvailable | int | `1` |  |
 | defaultBackend.name | string | `"defaultbackend"` |  |
-| defaultBackend.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for default backend pod assignment |
-| defaultBackend.podAnnotations | object | `{}` | Annotations to be added to default backend pods |
+| defaultBackend.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for default backend pod assignment # Ref: https://kubernetes.io/docs/user-guide/node-selection/ # |
+| defaultBackend.podAnnotations | object | `{}` | Annotations to be added to default backend pods # |
 | defaultBackend.podLabels | object | `{}` | Labels to add to the pod container metadata |
-| defaultBackend.podSecurityContext | object | `{}` | Security Context policies for controller pods See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls |
+| defaultBackend.podSecurityContext | object | `{}` | Security Context policies for controller pods See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls # |
 | defaultBackend.port | int | `8080` |  |
 | defaultBackend.priorityClassName | string | `""` |  |
 | defaultBackend.readinessProbe.failureThreshold | int | `6` |  |
@@ -470,25 +470,25 @@ Kubernetes: `>=1.20.0-0`
 | defaultBackend.replicaCount | int | `1` |  |
 | defaultBackend.resources | object | `{}` |  |
 | defaultBackend.service.annotations | object | `{}` |  |
-| defaultBackend.service.externalIPs | list | `[]` | List of IP addresses at which the default backend service is available |
+| defaultBackend.service.externalIPs | list | `[]` | List of IP addresses at which the default backend service is available # Ref: https://kubernetes.io/docs/user-guide/services/#external-ips # |
 | defaultBackend.service.loadBalancerSourceRanges | list | `[]` |  |
 | defaultBackend.service.servicePort | int | `80` |  |
 | defaultBackend.service.type | string | `"ClusterIP"` |  |
 | defaultBackend.serviceAccount.automountServiceAccountToken | bool | `true` |  |
 | defaultBackend.serviceAccount.create | bool | `true` |  |
 | defaultBackend.serviceAccount.name | string | `""` |  |
-| defaultBackend.tolerations | list | `[]` | Node tolerations for server scheduling to nodes with taints |
-| dhParam | string | `nil` | A base64-encoded Diffie-Hellman parameter. This can be generated with: `openssl dhparam 4096 2> /dev/null | base64` |
-| imagePullSecrets | list | `[]` | Optional array of imagePullSecrets containing private registry credentials |
+| defaultBackend.tolerations | list | `[]` | Node tolerations for server scheduling to nodes with taints # Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/ # |
+| dhParam | string | `nil` | A base64-encoded Diffie-Hellman parameter. This can be generated with: `openssl dhparam 4096 2> /dev/null | base64` # Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param |
+| imagePullSecrets | list | `[]` | Optional array of imagePullSecrets containing private registry credentials # Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ |
 | podSecurityPolicy.enabled | bool | `false` |  |
-| portNamePrefix | string | `""` | Prefix for TCP and UDP ports names in ingress controller service |
+| portNamePrefix | string | `""` | Prefix for TCP and UDP ports names in ingress controller service # Some cloud providers, like Yandex Cloud may have a requirements for a port name regex to support cloud load balancer integration |
 | rbac.create | bool | `true` |  |
 | rbac.scope | bool | `false` |  |
-| revisionHistoryLimit | int | `10` | Rollback limit |
+| revisionHistoryLimit | int | `10` | Rollback limit # |
 | serviceAccount.annotations | object | `{}` | Annotations for the controller service account |
 | serviceAccount.automountServiceAccountToken | bool | `true` |  |
 | serviceAccount.create | bool | `true` |  |
 | serviceAccount.name | string | `""` |  |
-| tcp | object | `{}` | TCP service key-value pairs |
-| udp | object | `{}` | UDP service key-value pairs |
+| tcp | object | `{}` | TCP service key-value pairs # Ref: https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/exposing-tcp-udp-services.md # |
+| udp | object | `{}` | UDP service key-value pairs # Ref: https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/exposing-tcp-udp-services.md # |
 
diff --git a/charts/ingress-nginx/templates/controller-psp.yaml b/charts/ingress-nginx/templates/controller-psp.yaml
index fe34408c8..2e0499ce9 100644
--- a/charts/ingress-nginx/templates/controller-psp.yaml
+++ b/charts/ingress-nginx/templates/controller-psp.yaml
@@ -1,3 +1,4 @@
+{{- if (semverCompare "<1.25.0-0" .Capabilities.KubeVersion.Version) }}
 {{- if and .Values.podSecurityPolicy.enabled (empty .Values.controller.existingPsp) -}}
 apiVersion: policy/v1beta1
 kind: PodSecurityPolicy
@@ -90,3 +91,4 @@ spec:
   seLinux:
     rule: 'RunAsAny'
 {{- end }}
+{{- end }}
diff --git a/charts/ingress-nginx/templates/default-backend-psp.yaml b/charts/ingress-nginx/templates/default-backend-psp.yaml
index 42061c5d3..c144c8fbf 100644
--- a/charts/ingress-nginx/templates/default-backend-psp.yaml
+++ b/charts/ingress-nginx/templates/default-backend-psp.yaml
@@ -1,3 +1,4 @@
+{{- if (semverCompare "<1.25.0-0" .Capabilities.KubeVersion.Version) }}
 {{- if and .Values.podSecurityPolicy.enabled .Values.defaultBackend.enabled (empty .Values.defaultBackend.existingPsp) -}}
 apiVersion: policy/v1beta1
 kind: PodSecurityPolicy
@@ -34,3 +35,4 @@ spec:
   - secret
   - downwardAPI
 {{- end }}
+{{- end }}
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 300ca7b01..cca1474d2 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -136,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -229,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -439,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -511,7 +511,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -522,7 +522,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -558,7 +558,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -569,7 +569,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -607,7 +607,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -620,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 7e7ce8f22..20f2c665a 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -136,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -229,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -334,7 +334,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,7 +352,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -385,7 +385,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -408,7 +408,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -448,7 +448,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -570,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -619,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -632,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index e23e4b7f3..f2f3d4ac9 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -136,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -229,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -339,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -371,7 +371,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -394,7 +394,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -433,7 +433,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -505,7 +505,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -516,7 +516,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -552,7 +552,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -563,7 +563,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -601,7 +601,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -614,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 77407e8a9..d7ba531c2 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -136,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -229,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -339,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -435,7 +435,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -507,7 +507,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -518,7 +518,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -554,7 +554,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -565,7 +565,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -603,7 +603,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -616,7 +616,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index e35d1d7ca..f24648b5e 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -136,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -229,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -342,7 +342,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -375,7 +375,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -398,7 +398,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -438,7 +438,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -510,7 +510,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -521,7 +521,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -557,7 +557,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -568,7 +568,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -606,7 +606,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -619,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index fe9a2de7f..856fbfa8d 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -136,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -229,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -348,7 +348,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -381,7 +381,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -404,7 +404,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -444,7 +444,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -516,7 +516,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -527,7 +527,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -563,7 +563,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -574,7 +574,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -612,7 +612,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -625,7 +625,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 5ddb9c166..5291d2d33 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -136,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -229,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -327,7 +327,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -339,7 +339,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -371,7 +371,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -394,7 +394,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -439,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,7 +521,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -532,7 +532,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -568,7 +568,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -579,7 +579,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -617,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -630,7 +630,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 2dba2dc51..a43df9de4 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -136,7 +136,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +155,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -229,7 +229,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +248,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +268,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +287,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +306,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -342,7 +342,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -375,7 +375,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -398,7 +398,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -438,7 +438,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
+        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -510,7 +510,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -521,7 +521,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -557,7 +557,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -568,7 +568,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.0
+        app.kubernetes.io/version: 1.3.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -606,7 +606,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -619,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.0
+    app.kubernetes.io/version: 1.3.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index d5bd5c90d..d95ca9a33 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -60,7 +60,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -215,7 +215,7 @@ In AWS, we use a Network load balancer (NLB) to expose the NGINX Ingress control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -223,10 +223,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -272,7 +272,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -289,7 +289,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -297,7 +297,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -305,7 +305,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -320,7 +320,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -337,7 +337,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),
diff --git a/hack/verify-chart-lint.sh b/hack/verify-chart-lint.sh
index c18caaba2..2d59dadce 100755
--- a/hack/verify-chart-lint.sh
+++ b/hack/verify-chart-lint.sh
@@ -19,5 +19,6 @@ set -o nounset
 set -o pipefail
 
 KUBE_ROOT="$( cd "$(dirname "$0")../" >/dev/null 2>&1 ; pwd -P )"
-
-ct lint --charts ${KUBE_ROOT}/charts/ingress-nginx --validate-maintainers=false
+# TODO: This is a temporary workaround while we don't update Helm Chart test
+curl https://raw.githubusercontent.com/helm/chart-testing/v3.7.0/etc/chart_schema.yaml -o /tmp/chart_schema.yaml
+ct lint --charts ${KUBE_ROOT}/charts/ingress-nginx --validate-maintainers=false --chart-yaml-schema=/tmp/chart_schema.yaml

From 9a42ded8bac9630a55e20e29d47db4af3ce904e6 Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Mon, 5 Sep 2022 20:16:36 +0200
Subject: [PATCH 0358/1641] fix LD_LIBRARY_PATH (#9017)

---
 images/opentelemetry/rootfs/init_module.sh | 2 +-
 rootfs/Dockerfile                          | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/opentelemetry/rootfs/init_module.sh b/images/opentelemetry/rootfs/init_module.sh
index bac5e64aa..029233f7b 100755
--- a/images/opentelemetry/rootfs/init_module.sh
+++ b/images/opentelemetry/rootfs/init_module.sh
@@ -19,4 +19,4 @@ set -o nounset
 set -o pipefail
 
 mkdir -p /modules_mount/etc/nginx/modules
-cp -R /etc/nginx/modules /modules_mount/etc/nginx/modules
+cp -R /etc/nginx/modules/* /modules_mount/etc/nginx/modules/otel
diff --git a/rootfs/Dockerfile b/rootfs/Dockerfile
index 48c57a74e..75cf3fc65 100644
--- a/rootfs/Dockerfile
+++ b/rootfs/Dockerfile
@@ -63,7 +63,7 @@ RUN bash -xeu -c ' \
   # LD_LIBRARY_PATH does not work so below is needed for  opentelemetry/other modules
   # Put libs of newer modules under `/modules_mount/<other>/lib` and add that path below
   # Could get complicated arch specific paths become a need
-  && echo "/lib:/usr/lib:/usr/local/lib:/modules_mount/otel/lib" > /etc/ld-musl-x86_64.path
+  && echo "/lib:/usr/lib:/usr/local/lib:/modules_mount/etc/nginx/modules/otel" > /etc/ld-musl-x86_64.path
   
 
 RUN apk add --no-cache libcap \

From e079486d4dc40387389adbaed7ec9b80d897d810 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 5 Sep 2022 22:10:56 -0400
Subject: [PATCH 0359/1641] updates for fixing 1.3.1 release (#9023)

* updates for fixing 1.3.1 release

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update chart readmea

Signed-off-by: James Strong <strong.james.e@gmail.com>

* updating chart

Signed-off-by: James Strong <strong.james.e@gmail.com>

* supdate wording of legacy drop

* supgraded helm docs

* one more time

Signed-off-by: James Strong <strong.james.e@gmail.com>

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 Changelog.md                     | 3 ++-
 charts/ingress-nginx/Chart.yaml  | 3 +--
 charts/ingress-nginx/README.md   | 8 ++++----
 charts/ingress-nginx/values.yaml | 6 +++---
 4 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/Changelog.md b/Changelog.md
index c05911b9f..bcbcfee04 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -10,7 +10,8 @@ In v1.3.1 leader elections will be done entirely using the Lease API and no long
 v1.3.0 is a safe transition version, using v1.3.0 can automatically complete the merging of election locks, and then you can safely upgrade to v1.3.1.
 
 Also, *important note*, with the Release of Kubernetes v1.25 we are dropping support for the legacy branches, 
-please upgrade to a v1.0.0 and above branch
+Also, *important note*, with the release of Kubernetes v1.25, we are dropping support for the legacy edition, 
+that means all version <1.0.0 of the ingress-nginx-controller.
 
 ## Image:
 - registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 178f7f722..08dcdb6ed 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.2.4
+version: 4.2.5
 appVersion: 1.3.1
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
@@ -12,7 +12,6 @@ keywords:
   - nginx
 sources:
   - https://github.com/kubernetes/ingress-nginx
-type: application
 maintainers:
   - name: rikatz
   - name: strongjz
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 17743881c..4e6a696c6 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.2.4](https://img.shields.io/badge/Version-4.2.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.3.1](https://img.shields.io/badge/AppVersion-1.3.1-informational?style=flat-square)
+![Version: 4.2.5](https://img.shields.io/badge/Version-4.2.5-informational?style=flat-square) ![AppVersion: 1.3.1](https://img.shields.io/badge/AppVersion-1.3.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -310,13 +310,13 @@ Kubernetes: `>=1.20.0-0`
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5"` |  |
-| controller.image.digestChroot | string | `"sha256:0fcb91216a22aae43b374fc2e6a03b8afe9e8c78cbf07a09d75636dc4ea3c191"` |  |
+| controller.image.digest | string | `"sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974"` |  |
+| controller.image.digestChroot | string | `"sha256:a8466b19c621bd550b1645e27a004a5cc85009c858a9ab19490216735ac432b1"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.3.0"` |  |
+| controller.image.tag | string | `"v1.3.1"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 1889e4901..9ec174f7e 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -23,9 +23,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.3.0"
-    digest: sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
-    digestChroot: sha256:0fcb91216a22aae43b374fc2e6a03b8afe9e8c78cbf07a09d75636dc4ea3c191
+    tag: "v1.3.1"
+    digest: sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
+    digestChroot: sha256:a8466b19c621bd550b1645e27a004a5cc85009c858a9ab19490216735ac432b1
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101

From 037e0194fa8280fe0515d1909e28780b838c18ec Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 6 Sep 2022 06:32:54 -0700
Subject: [PATCH 0360/1641] Bump k8s.io/klog/v2 from 2.70.1 to 2.80.0 (#9021)

Bumps [k8s.io/klog/v2](https://github.com/kubernetes/klog) from 2.70.1 to 2.80.0.
- [Release notes](https://github.com/kubernetes/klog/releases)
- [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes/klog/compare/v2.70.1...v2.80.0)

---
updated-dependencies:
- dependency-name: k8s.io/klog/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 +---
 go.sum | 7 ++-----
 2 files changed, 3 insertions(+), 8 deletions(-)

diff --git a/go.mod b/go.mod
index 2c220232e..272a529fa 100644
--- a/go.mod
+++ b/go.mod
@@ -38,7 +38,7 @@ require (
 	k8s.io/client-go v0.25.0
 	k8s.io/code-generator v0.23.5
 	k8s.io/component-base v0.25.0
-	k8s.io/klog/v2 v2.70.1
+	k8s.io/klog/v2 v2.80.0
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.11.2
 	sigs.k8s.io/mdtoc v1.1.0
@@ -70,7 +70,6 @@ require (
 	github.com/go-openapi/jsonpointer v0.19.5 // indirect
 	github.com/go-openapi/jsonreference v0.19.5 // indirect
 	github.com/go-openapi/swag v0.19.14 // indirect
-	github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0 // indirect
 	github.com/godbus/dbus/v5 v5.0.6 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang-jwt/jwt/v4 v4.2.0 // indirect
@@ -81,7 +80,6 @@ require (
 	github.com/google/gnostic v0.5.7-v3refs // indirect
 	github.com/google/go-cmp v0.5.8 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
-	github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.2.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 // indirect
diff --git a/go.sum b/go.sum
index 92f966d6f..ec3712740 100644
--- a/go.sum
+++ b/go.sum
@@ -212,8 +212,6 @@ github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh
 github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5Fng=
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
-github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0 h1:p104kn46Q8WdvHunIJ9dAyjPVtrBPhSr3KT2yUst43I=
-github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/godbus/dbus/v5 v5.0.6 h1:mkgN1ofwASrYnJ5W6U/BxG15eXXXjirgZc7CLqkcaro=
 github.com/godbus/dbus/v5 v5.0.6/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
@@ -305,7 +303,6 @@ github.com/google/pprof v0.0.0-20210122040257-d980be63207e/go.mod h1:kpwsk12EmLe
 github.com/google/pprof v0.0.0-20210226084205-cbba55b83ad5/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210601050228-01bbb1931b22/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210609004039-a478d1d731e9/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1 h1:K6RDEckDVWvDI9JAJYCmNdQXq6neHJOYx3V6jnqNEec=
 github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
@@ -1162,8 +1159,8 @@ k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAE
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
 k8s.io/klog/v2 v2.30.0/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
-k8s.io/klog/v2 v2.70.1 h1:7aaoSdahviPmR+XkS7FyxlkkXs6tHISSG03RxleQAVQ=
-k8s.io/klog/v2 v2.70.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/klog/v2 v2.80.0 h1:lyJt0TWMPaGoODa8B8bUuxgHS3W/m/bNr2cca3brA/g=
+k8s.io/klog/v2 v2.80.0/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65/go.mod h1:sX9MT8g7NVZM5lVL/j8QyCCJe8YSMW30QvGZWaCIDIk=
 k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1 h1:MQ8BAZPZlWk3S9K4a9NCkIFQtZShWqoha7snGixVgEA=
 k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1/go.mod h1:C/N6wCaBHeBHkHUesQOQy2/MZqGgMAFPqGsGQLdbZBU=

From f02003457974b223e56e23955dfa42773841a158 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 6 Sep 2022 06:34:55 -0700
Subject: [PATCH 0361/1641] Bump github.com/onsi/ginkgo/v2 from 2.1.4 to 2.1.6
 (#9022)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.1.4 to 2.1.6.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.1.4...v2.1.6)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/go.mod b/go.mod
index 272a529fa..1f3259c47 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.1.4
+	github.com/onsi/ginkgo/v2 v2.1.6
 	github.com/opencontainers/runc v1.1.4
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.13.0
diff --git a/go.sum b/go.sum
index ec3712740..fd830d995 100644
--- a/go.sum
+++ b/go.sum
@@ -456,12 +456,12 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
-github.com/onsi/ginkgo/v2 v2.1.4 h1:GNapqRSid3zijZ9H77KrgVG4/8KqiyRsxcSxe+7ApXY=
-github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
+github.com/onsi/ginkgo/v2 v2.1.6 h1:Fx2POJZfKRQcM1pH49qSZiYeu319wji004qX+GDovrU=
+github.com/onsi/ginkgo/v2 v2.1.6/go.mod h1:MEH45j8TBi6u9BMogfbp0stKC5cdGjumZj5Y7AG4VIk=
 github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.19.0 h1:4ieX6qQjPP/BfC3mpsAtIGGlxTWPeA3Inl/7DtXw1tw=
+github.com/onsi/gomega v1.20.1 h1:PA/3qinGoukvymdIDV8pii6tiZgC8kbmJO6Z5+b002Q=
 github.com/opencontainers/runc v1.1.4 h1:nRCz/8sKg6K6jgYAFLDlXzPeITBZJyX28DBVhWD+5dg=
 github.com/opencontainers/runc v1.1.4/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=

From 981ce38a7f0455bee35d692af237089ce5a42220 Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Wed, 7 Sep 2022 01:34:23 +0200
Subject: [PATCH 0362/1641] fix otel init_module (#9028)

---
 images/opentelemetry/rootfs/init_module.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/opentelemetry/rootfs/init_module.sh b/images/opentelemetry/rootfs/init_module.sh
index 029233f7b..5a675aa2b 100755
--- a/images/opentelemetry/rootfs/init_module.sh
+++ b/images/opentelemetry/rootfs/init_module.sh
@@ -18,5 +18,5 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
-mkdir -p /modules_mount/etc/nginx/modules
+mkdir -p /modules_mount/etc/nginx/modules/otel
 cp -R /etc/nginx/modules/* /modules_mount/etc/nginx/modules/otel

From b212b5a8b4cf0bdf089406774b8bf4ac34bb992c Mon Sep 17 00:00:00 2001
From: gunamata <59538726+gunamata@users.noreply.github.com>
Date: Fri, 9 Sep 2022 18:53:23 +0000
Subject: [PATCH 0363/1641] Added instructions for Rancher Desktop (#9035)

Signed-off-by: Gunasekhar Matamalam <gunasekhar.matamalam@suse.com>

Signed-off-by: Gunasekhar Matamalam <gunasekhar.matamalam@suse.com>
---
 docs/deploy/index.md | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index d95ca9a33..5a0b6bfb8 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -20,6 +20,7 @@ ingress controller for your particular environment or cloud provider.
 
 - [Environment-specific instructions](#environment-specific-instructions)
   - ... [Docker Desktop](#docker-desktop)
+  - ... [Rancher Desktop](#rancher-desktop)
   - ... [minikube](#minikube)
   - ... [MicroK8s](#microk8s)
   - ... [AWS](#aws)
@@ -186,6 +187,14 @@ will be assigned the `EXTERNAL-IP` of `localhost`, which means that it will be r
 doesn't work, you might have to fall back to the `kubectl port-forward` method described in the 
 [local testing section](#local-testing).
 
+#### Rancher Desktop
+
+Rancher Desktop provides Kubernetes and Container Management on the desktop. Kubernetes is enabled by default in Rancher Desktop. 
+
+Rancher Desktop uses K3s under the hood, which in turn uses Traefik as the default ingress controller for the Kubernetes cluster. To use NGINX ingress controller in place of the default Traefik, disable Traefik from Preference > Kubernetes menu.
+
+Once traefik is disabled, the NGINX ingress controller can be installed on Rancher Desktop using the default [quick start](#quick-start) instructions. Follow the instructions described in the [local testing section](#local-testing) to try a sample.
+
 ### Cloud deployments
 
 If the load balancers of your cloud provider do active healthchecks on their backends (most do), you can change the 

From 6ef73175818918b8506d89b94369f8965b9fde34 Mon Sep 17 00:00:00 2001
From: Anders Swanson <91502735+anders-swanson@users.noreply.github.com>
Date: Mon, 12 Sep 2022 07:28:44 -0700
Subject: [PATCH 0364/1641] Revert "Metrics port name (Helm) (#8665)"

This reverts commit adeb84aa38cbccb8dde471ab222b799b7cc439d3.
---
 charts/ingress-nginx/templates/controller-daemonset.yaml      | 2 +-
 charts/ingress-nginx/templates/controller-deployment.yaml     | 2 +-
 .../ingress-nginx/templates/controller-service-metrics.yaml   | 4 ++--
 charts/ingress-nginx/templates/controller-servicemonitor.yaml | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 80c268f7c..2dca8e5c1 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -114,7 +114,7 @@ spec:
               {{- end }}
           {{- end }}
           {{- if .Values.controller.metrics.enabled }}
-            - name: http-metrics
+            - name: metrics
               containerPort: {{ .Values.controller.metrics.port }}
               protocol: TCP
           {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 5ad186794..5b781f8de 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -118,7 +118,7 @@ spec:
               {{- end }}
           {{- end }}
           {{- if .Values.controller.metrics.enabled }}
-            - name: http-metrics
+            - name: metrics
               containerPort: {{ .Values.controller.metrics.port }}
               protocol: TCP
           {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-service-metrics.yaml b/charts/ingress-nginx/templates/controller-service-metrics.yaml
index 1c1d5bddb..0aaf41473 100644
--- a/charts/ingress-nginx/templates/controller-service-metrics.yaml
+++ b/charts/ingress-nginx/templates/controller-service-metrics.yaml
@@ -31,10 +31,10 @@ spec:
   externalTrafficPolicy: {{ .Values.controller.metrics.service.externalTrafficPolicy }}
 {{- end }}
   ports:
-    - name: http-metrics
+    - name: metrics
       port: {{ .Values.controller.metrics.service.servicePort }}
       protocol: TCP
-      targetPort: http-metrics
+      targetPort: metrics
     {{- $setNodePorts := (or (eq .Values.controller.metrics.service.type "NodePort") (eq .Values.controller.metrics.service.type "LoadBalancer")) }}
     {{- if (and $setNodePorts (not (empty .Values.controller.metrics.service.nodePort))) }}
       nodePort: {{ .Values.controller.metrics.service.nodePort }}
diff --git a/charts/ingress-nginx/templates/controller-servicemonitor.yaml b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
index 973d36b3e..4dbc6da9f 100644
--- a/charts/ingress-nginx/templates/controller-servicemonitor.yaml
+++ b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
@@ -14,7 +14,7 @@ metadata:
   {{- end }}
 spec:
   endpoints:
-    - port: http-metrics
+    - port: metrics
       interval: {{ .Values.controller.metrics.serviceMonitor.scrapeInterval }}
     {{- if .Values.controller.metrics.serviceMonitor.honorLabels }}
       honorLabels: true

From e7c793f65dc2faa7611d0e43dccfd8e24c483245 Mon Sep 17 00:00:00 2001
From: Anders Swanson <anders.swanson@oracle.com>
Date: Mon, 12 Sep 2022 12:34:40 -0700
Subject: [PATCH 0365/1641] parameterize port name

---
 charts/ingress-nginx/templates/controller-daemonset.yaml      | 2 +-
 charts/ingress-nginx/templates/controller-deployment.yaml     | 2 +-
 .../ingress-nginx/templates/controller-service-metrics.yaml   | 4 ++--
 charts/ingress-nginx/templates/controller-servicemonitor.yaml | 2 +-
 charts/ingress-nginx/values.yaml                              | 1 +
 5 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 2dca8e5c1..805d2f209 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -114,7 +114,7 @@ spec:
               {{- end }}
           {{- end }}
           {{- if .Values.controller.metrics.enabled }}
-            - name: metrics
+            - name: {{ .Values.controller.metrics.portName }}
               containerPort: {{ .Values.controller.metrics.port }}
               protocol: TCP
           {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 5b781f8de..4fd6561bd 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -118,7 +118,7 @@ spec:
               {{- end }}
           {{- end }}
           {{- if .Values.controller.metrics.enabled }}
-            - name: metrics
+            - name: {{ .Values.controller.metrics.portName }}
               containerPort: {{ .Values.controller.metrics.port }}
               protocol: TCP
           {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-service-metrics.yaml b/charts/ingress-nginx/templates/controller-service-metrics.yaml
index 0aaf41473..b178401c9 100644
--- a/charts/ingress-nginx/templates/controller-service-metrics.yaml
+++ b/charts/ingress-nginx/templates/controller-service-metrics.yaml
@@ -31,10 +31,10 @@ spec:
   externalTrafficPolicy: {{ .Values.controller.metrics.service.externalTrafficPolicy }}
 {{- end }}
   ports:
-    - name: metrics
+    - name: {{ .Values.controller.metrics.portName }}
       port: {{ .Values.controller.metrics.service.servicePort }}
       protocol: TCP
-      targetPort: metrics
+      targetPort: {{ .Values.controller.metrics.portName }}
     {{- $setNodePorts := (or (eq .Values.controller.metrics.service.type "NodePort") (eq .Values.controller.metrics.service.type "LoadBalancer")) }}
     {{- if (and $setNodePorts (not (empty .Values.controller.metrics.service.nodePort))) }}
       nodePort: {{ .Values.controller.metrics.service.nodePort }}
diff --git a/charts/ingress-nginx/templates/controller-servicemonitor.yaml b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
index 4dbc6da9f..8ab16f0b2 100644
--- a/charts/ingress-nginx/templates/controller-servicemonitor.yaml
+++ b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
@@ -14,7 +14,7 @@ metadata:
   {{- end }}
 spec:
   endpoints:
-    - port: metrics
+    - port: {{ .Values.controller.metrics.portName }}
       interval: {{ .Values.controller.metrics.serviceMonitor.scrapeInterval }}
     {{- if .Values.controller.metrics.serviceMonitor.honorLabels }}
       honorLabels: true
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 9ec174f7e..e65b61608 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -666,6 +666,7 @@ controller:
 
   metrics:
     port: 10254
+    portName: metrics
     # if this port is changed, change healthz-port: in extraArgs: accordingly
     enabled: false
 

From 4bb3b3877c8aed73af963a82c678c80afa669809 Mon Sep 17 00:00:00 2001
From: Anders Swanson <anders.swanson@oracle.com>
Date: Mon, 12 Sep 2022 12:45:54 -0700
Subject: [PATCH 0366/1641] Document new values key

---
 charts/ingress-nginx/README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 4e6a696c6..62ddfe2ca 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -348,6 +348,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.maxmindLicenseKey | string | `""` | Maxmind license key to download GeoLite2 Databases. # https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases |
 | controller.metrics.enabled | bool | `false` |  |
 | controller.metrics.port | int | `10254` |  |
+| controller.metrics.portName | string | `metrics` | Port name for metrics service |
 | controller.metrics.prometheusRule.additionalLabels | object | `{}` |  |
 | controller.metrics.prometheusRule.enabled | bool | `false` |  |
 | controller.metrics.prometheusRule.rules | list | `[]` |  |

From adb7a9d6ccf85c034aed9b0acc00c8218942e80f Mon Sep 17 00:00:00 2001
From: Anders Swanson <anders.swanson@oracle.com>
Date: Mon, 12 Sep 2022 13:03:54 -0700
Subject: [PATCH 0367/1641] Fix for Docs check

---
 charts/ingress-nginx/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 62ddfe2ca..53f887a25 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -348,7 +348,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.maxmindLicenseKey | string | `""` | Maxmind license key to download GeoLite2 Databases. # https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases |
 | controller.metrics.enabled | bool | `false` |  |
 | controller.metrics.port | int | `10254` |  |
-| controller.metrics.portName | string | `metrics` | Port name for metrics service |
+| controller.metrics.portName | string | `"metrics"` |  |
 | controller.metrics.prometheusRule.additionalLabels | object | `{}` |  |
 | controller.metrics.prometheusRule.enabled | bool | `false` |  |
 | controller.metrics.prometheusRule.rules | list | `[]` |  |

From ec4c53f0f32bcfdfd6b5de4b412f5082ea244041 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 15 Sep 2022 06:41:28 -0700
Subject: [PATCH 0368/1641] Bump ossf/scorecard-action from 1.1.2 to 2.0.2
 (#9044)

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 1.1.2 to 2.0.2.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](https://github.com/ossf/scorecard-action/compare/ce330fde6b1a5c9c75b417e7efc510b822a35564...68bf5b3327e4fd443d2add8ab122280547b4a16d)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 20961611c..dcb8fc55b 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -30,7 +30,7 @@ jobs:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@ce330fde6b1a5c9c75b417e7efc510b822a35564 # v1.1.1
+        uses: ossf/scorecard-action@68bf5b3327e4fd443d2add8ab122280547b4a16d # v1.1.1
         with:
           results_file: results.sarif
           results_format: sarif

From 0b8dc59eaf6cd385584ede2ca28df9b9db58fbb5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 15 Sep 2022 06:43:24 -0700
Subject: [PATCH 0369/1641] Bump actions/upload-artifact from 3.0.0 to 3.1.0
 (#9045)

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v3...3cea5372237819ed00197afe530f5a7ea3e805c8)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index dcb8fc55b..8d3900b0b 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -49,7 +49,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@6673cd052c4cd6fcf4b4e6e60ea986c889389535 # v3.0.0
+        uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # v3.0.0
         with:
           name: SARIF file
           path: results.sarif

From f352f1f70b2aa2c21fa88efb8af05120d854ff81 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 15 Sep 2022 07:17:24 -0700
Subject: [PATCH 0370/1641] Bump k8s.io/klog/v2 from 2.80.0 to 2.80.1 (#9043)

Bumps [k8s.io/klog/v2](https://github.com/kubernetes/klog) from 2.80.0 to 2.80.1.
- [Release notes](https://github.com/kubernetes/klog/releases)
- [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes/klog/compare/v2.80.0...v2.80.1)

---
updated-dependencies:
- dependency-name: k8s.io/klog/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 1f3259c47..521b58fce 100644
--- a/go.mod
+++ b/go.mod
@@ -38,7 +38,7 @@ require (
 	k8s.io/client-go v0.25.0
 	k8s.io/code-generator v0.23.5
 	k8s.io/component-base v0.25.0
-	k8s.io/klog/v2 v2.80.0
+	k8s.io/klog/v2 v2.80.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.11.2
 	sigs.k8s.io/mdtoc v1.1.0
diff --git a/go.sum b/go.sum
index fd830d995..5a5411fae 100644
--- a/go.sum
+++ b/go.sum
@@ -1159,8 +1159,8 @@ k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAE
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
 k8s.io/klog/v2 v2.30.0/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
-k8s.io/klog/v2 v2.80.0 h1:lyJt0TWMPaGoODa8B8bUuxgHS3W/m/bNr2cca3brA/g=
-k8s.io/klog/v2 v2.80.0/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/klog/v2 v2.80.1 h1:atnLQ121W371wYYFawwYx1aEY2eUfs4l3J72wtgAwV4=
+k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65/go.mod h1:sX9MT8g7NVZM5lVL/j8QyCCJe8YSMW30QvGZWaCIDIk=
 k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1 h1:MQ8BAZPZlWk3S9K4a9NCkIFQtZShWqoha7snGixVgEA=
 k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1/go.mod h1:C/N6wCaBHeBHkHUesQOQy2/MZqGgMAFPqGsGQLdbZBU=

From 1ce0b55f62208b6c4c1c1b3f41560a714d772b95 Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Thu, 15 Sep 2022 21:37:34 +0200
Subject: [PATCH 0371/1641] update OpenTelemetry image (#9036)

* update OpenTelemetry image

* use promoted image
---
 charts/ingress-nginx/values.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 9ec174f7e..9c34e7f6f 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -580,7 +580,7 @@ controller:
   extraModules: []
   ## Modules, which are mounted into the core nginx image
   # - name: opentelemetry
-  #   image: registry.k8s.io/ingress-nginx/opentelemetry:v20220801-g00ee51f09@sha256:482562feba02ad178411efc284f8eb803a185e3ea5588b6111ccbc20b816b427
+  #   image: registry.k8s.io/ingress-nginx/opentelemetry:v20220906-g981ce38a7@sha256:aa079daa7efd93aa830e26483a49a6343354518360929494bad1d0ad3303142e
   #
   # The image must contain a `/usr/local/bin/init_module.sh` executable, which
   # will be executed as initContainers, to move its config files within the

From e68ab4f39522854dd74f971965db767e6a981e34 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 15 Sep 2022 21:45:17 -0700
Subject: [PATCH 0372/1641] Bump github/codeql-action from 2.1.22 to 2.1.23
 (#9052)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.22 to 2.1.23.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/b398f525a5587552e573b247ac661067fafa920b...6a38b7d4a1af70deb1b561eb77db2b5e5a6a1e69)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 8d3900b0b..2974012a8 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@b398f525a5587552e573b247ac661067fafa920b # v2.1.14
+        uses: github/codeql-action/upload-sarif@6a38b7d4a1af70deb1b561eb77db2b5e5a6a1e69 # v2.1.14
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 945c7a935..f47c5d626 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@b398f525a5587552e573b247ac661067fafa920b
+      uses: github/codeql-action/upload-sarif@6a38b7d4a1af70deb1b561eb77db2b5e5a6a1e69
       with:
         token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository

From ca1e8b6d9ec26d2298ed4e3554d84d827f888e8f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 15 Sep 2022 21:47:16 -0700
Subject: [PATCH 0373/1641] Bump ossf/scorecard-action from 2.0.2 to 2.0.3
 (#9053)

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.0.2 to 2.0.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](https://github.com/ossf/scorecard-action/compare/68bf5b3327e4fd443d2add8ab122280547b4a16d...865b4092859256271290c77adbd10a43f4779972)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 2974012a8..62dafe1f3 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -30,7 +30,7 @@ jobs:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@68bf5b3327e4fd443d2add8ab122280547b4a16d # v1.1.1
+        uses: ossf/scorecard-action@865b4092859256271290c77adbd10a43f4779972 # v1.1.1
         with:
           results_file: results.sarif
           results_format: sarif

From d32f8c343922b8ddb2a1a55eac9633a288c3f405 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 16 Sep 2022 18:45:18 +0530
Subject: [PATCH 0374/1641] bump go to v1.19.1 (#9057)

---
 .github/workflows/ci.yaml                         | 10 +++++-----
 .github/workflows/plugin.yaml                     |  2 +-
 images/custom-error-pages/rootfs/Dockerfile       |  2 +-
 images/ext-auth-example-authsvc/rootfs/Dockerfile |  2 +-
 images/kube-webhook-certgen/rootfs/Dockerfile     |  2 +-
 images/test-runner/Makefile                       |  2 +-
 6 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 54a935917..9d7941ab5 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -70,11 +70,11 @@ jobs:
       - name: Checkout
         uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
 
-      - name: Set up Go 1.19.0
+      - name: Set up Go 1.19.1
         id: go
         uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
         with:
-          go-version: '1.19.0'
+          go-version: '1.19.1'
 
       - name: Set up QEMU
         uses: docker/setup-qemu-action@8b122486cedac8393e77aa9734c3528886e4a1a8 #v2.0.0
@@ -136,7 +136,7 @@ jobs:
       - name: Setup Go
         uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
         with:
-          go-version: '1.19.0'
+          go-version: '1.19.1'
 
       - name: cache
         uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741 # v3
@@ -406,12 +406,12 @@ jobs:
           version: v0.15.0
           image: kindest/node:v1.25.0
 
-      - name: Set up Go 1.19.0
+      - name: Set up Go 1.19.1
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
         uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
         with:
-          go-version: '1.19.0'
+          go-version: '1.19.1'
 
       - name: kube-webhook-certgen image build
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 1d5ee2787..319055b62 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -24,7 +24,7 @@ jobs:
       - name: Set up Go
         uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
         with:
-          go-version: 1.19.0
+          go-version: 1.19.1
 
       - name: Run GoReleaser
         uses: goreleaser/goreleaser-action@ff11ca24a9b39f2d36796d1fbd7a4e39c182630a # v3.0.0
diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index 513354279..768b1e9df 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.19.0-alpine as builder
+FROM golang:1.19.1-alpine as builder
 RUN apk add git
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/custom-error-pages
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index 2eb010379..c2387d90a 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.19.0-alpine3.16 as builder
+FROM golang:1.19.1-alpine3.16 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/kube-webhook-certgen/rootfs/Dockerfile b/images/kube-webhook-certgen/rootfs/Dockerfile
index 1ed714b56..b8e4ef8b1 100644
--- a/images/kube-webhook-certgen/rootfs/Dockerfile
+++ b/images/kube-webhook-certgen/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM --platform=$BUILDPLATFORM golang:1.19.0 as builder
+FROM --platform=$BUILDPLATFORM golang:1.19.1 as builder
 ARG BUILDPLATFORM
 ARG TARGETARCH
 
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index ad888e5c7..32e09ca23 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -39,7 +39,7 @@ build: ensure-buildx
 		--progress=$(PROGRESS) \
 		--pull \
 		--build-arg BASE_IMAGE=$(NGINX_BASE_IMAGE) \
-		--build-arg GOLANG_VERSION=1.19.0 \
+		--build-arg GOLANG_VERSION=1.19.1 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.24.2 \
 		--build-arg RESTY_CLI_VERSION=0.27 \

From b1edb3e141c2acc3ca941245207a8e93e50a199f Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sat, 17 Sep 2022 04:06:49 +0530
Subject: [PATCH 0375/1641] updated testrunner image sha after bump to go1191
 (#9058)

---
 build/run-in-docker.sh                                          | 2 +-
 .../custom-errors/custom-default-backend.helm.values.yaml       | 2 +-
 .../customization/custom-errors/custom-default-backend.yaml     | 2 +-
 test/e2e-image/Makefile                                         | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 77e7b7a38..35ea27819 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -38,7 +38,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20220823-ge19026fe4@sha256:038fc60379b6ce9a0134c2ff9134edccad1f8ecbd9c6ebed9660711d05b0ed95}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20220916-gd32f8c343@sha256:f3f26f1e2aef8b2013b731f041fd69bcd950d3118eecf4429551848f47305c0f}
 
 DOCKER_OPTS=${DOCKER_OPTS:-}
 DOCKER_IN_DOCKER_ENABLED=${DOCKER_IN_DOCKER_ENABLED:-}
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
index 3d93935e4..670208559 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
@@ -6,7 +6,7 @@ defaultBackend:
   image:
     registry: registry.k8s.io
     image: ingress-nginx/nginx-errors
-    tag: "1.3.0"
+    tag: "v20220916-gd32f8c343@sha256:09c421ac743bace19ab77979b82186941c5125c95e62cdb40bdf41293b5c275c"
   extraVolumes:
   - name: custom-error-pages
     configMap:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.yaml b/docs/examples/customization/custom-errors/custom-default-backend.yaml
index 318e318f5..072beab3b 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.yaml
@@ -36,7 +36,7 @@ spec:
     spec:
       containers:
       - name: nginx-error-server
-        image: registry.k8s.io/ingress-nginx/nginx-errors:1.3.0
+        image: registry.k8s.io/ingress-nginx/nginx-errors:v20220916-gd32f8c343@sha256:09c421ac743bace19ab77979b82186941c5125c95e62cdb40bdf41293b5c275c
         ports:
         - containerPort: 8080
         # Setting the environment variable DEBUG we can see the headers sent 
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index f04307f81..d0ed88972 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20220823-ge19026fe4@sha256:038fc60379b6ce9a0134c2ff9134edccad1f8ecbd9c6ebed9660711d05b0ed95"
+E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20220916-gd32f8c343@sha256:f3f26f1e2aef8b2013b731f041fd69bcd950d3118eecf4429551848f47305c0f"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"

From b088ee2d7edcc06630563cd7618a413e83331091 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 19 Sep 2022 06:11:23 -0700
Subject: [PATCH 0376/1641] Bump github/codeql-action from 2.1.23 to 2.1.24
 (#9066)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.23 to 2.1.24.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/6a38b7d4a1af70deb1b561eb77db2b5e5a6a1e69...904260d7d935dff982205cbdb42025ce30b7a34f)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 62dafe1f3..84cc87e1d 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@6a38b7d4a1af70deb1b561eb77db2b5e5a6a1e69 # v2.1.14
+        uses: github/codeql-action/upload-sarif@904260d7d935dff982205cbdb42025ce30b7a34f # v2.1.14
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index f47c5d626..8377b3ad0 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@6a38b7d4a1af70deb1b561eb77db2b5e5a6a1e69
+      uses: github/codeql-action/upload-sarif@904260d7d935dff982205cbdb42025ce30b7a34f
       with:
         token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository

From a559f75e38214b2c9d6d291304db25528f24b6f7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 19 Sep 2022 06:13:23 -0700
Subject: [PATCH 0377/1641] Bump github.com/onsi/ginkgo/v2 from 2.1.6 to 2.2.0
 (#9064)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.1.6 to 2.2.0.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.1.6...v2.2.0)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 521b58fce..bfcba276d 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.1.6
+	github.com/onsi/ginkgo/v2 v2.2.0
 	github.com/opencontainers/runc v1.1.4
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.13.0
diff --git a/go.sum b/go.sum
index 5a5411fae..0cc37681c 100644
--- a/go.sum
+++ b/go.sum
@@ -456,8 +456,8 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
-github.com/onsi/ginkgo/v2 v2.1.6 h1:Fx2POJZfKRQcM1pH49qSZiYeu319wji004qX+GDovrU=
-github.com/onsi/ginkgo/v2 v2.1.6/go.mod h1:MEH45j8TBi6u9BMogfbp0stKC5cdGjumZj5Y7AG4VIk=
+github.com/onsi/ginkgo/v2 v2.2.0 h1:3ZNA3L1c5FYDFTTxbFeVGGD8jYvjYauHD30YgLxVsNI=
+github.com/onsi/ginkgo/v2 v2.2.0/go.mod h1:MEH45j8TBi6u9BMogfbp0stKC5cdGjumZj5Y7AG4VIk=
 github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=

From 3ce1f43fc60cf0bcbd43493c2186cc93308046f6 Mon Sep 17 00:00:00 2001
From: "Leon(@mediocreDevops)" <leon9923@gmail.com>
Date: Mon, 19 Sep 2022 18:45:23 +0530
Subject: [PATCH 0378/1641] Tips for new contributors (#8924)

This commit adds tips for new contributors along with references and
examples

Signed-off-by: afro-coder <leon9923@gmail.com>
Co-authored-by: Tanisha Banik <26tanishabanik@gmail.com>

Signed-off-by: afro-coder <leon9923@gmail.com>
Co-authored-by: Tanisha Banik <26tanishabanik@gmail.com>
---
 CONTRIBUTING.md    |  11 +-
 NEW_CONTRIBUTOR.md | 850 +++++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 857 insertions(+), 4 deletions(-)
 create mode 100644 NEW_CONTRIBUTOR.md

diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
index e73f49fcd..a11435aef 100644
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -2,7 +2,7 @@
 
 Read the following guide if you're interested in contributing to Ingress. [Make Ingress-Nginx Work for you, and the Community](https://youtu.be/GDm-7BlmPPg) from KubeCon Europe 2018 is a great video to get you started!!
 
-Note that this guide refers to contributing to actual sources of the repository. If you interested in contributing through issue triaging, have a look at [this guide](./ISSUE_TRIAGE.md). 
+Note that this guide refers to contributing to actual sources of the repository. If you interested in contributing through issue triaging, have a look at [this guide](./ISSUE_TRIAGE.md).
 
 ## Contributor License Agreements
 
@@ -19,7 +19,7 @@ Follow either of the two links above to access the appropriate CLA and instructi
 
 ## Finding Issues That Need Help
 
-If you're new to the project and want to help, but don't know where to start, we have a semi-curated list of issues that should not need deep knowledge of the system. [Have a look and see if anything sounds interesting](https://github.com/kubernetes/ingress-nginx/issues?utf8=%E2%9C%93&q=is%3Aopen%20is%3Aissue%20label%3A%22help+wanted%22). 
+If you're new to the project and want to help, but don't know where to start, we have a semi-curated list of issues that should not need deep knowledge of the system. [Have a look and see if anything sounds interesting](https://github.com/kubernetes/ingress-nginx/issues?utf8=%E2%9C%93&q=is%3Aopen%20is%3Aissue%20label%3A%22help+wanted%22).
 
 Alternatively, search for the label [`triage-accepted`](https://github.com/kubernetes/ingress-nginx/issues?q=is%3Aopen+is%3Aissue+label%3Atriage%2Faccepted+) if you have some experience with ingress-nginx. Note, that it could make sense to grab issues with higher priority first.
 
@@ -34,9 +34,9 @@ All changes must be code reviewed. Coding conventions and standards are explaine
 
 ### Merge Approval
 
-Ingress Nginx collaborators may add "/lgtm" (Looks Good To Me) to indicate that a PR is acceptable. Any change requires at least one LGTM.  No pull requests can be merged until at least one Ingress Nginx collaborator signs off with an LGTM. Adding the "/lgtm" comment result in the prow bot adding the `lgtm` label. Note that a pull request still needs an `approve` label from one of the owners. 
+Ingress Nginx collaborators may add "/lgtm" (Looks Good To Me) to indicate that a PR is acceptable. Any change requires at least one LGTM.  No pull requests can be merged until at least one Ingress Nginx collaborator signs off with an LGTM. Adding the "/lgtm" comment result in the prow bot adding the `lgtm` label. Note that a pull request still needs an `approve` label from one of the owners.
 
-Reviewers or members who want to become reviewers according to the [k8s membership ladder](https://github.com/kubernetes/community/blob/master/community-membership.md), could actively search for [pull requests that need a review](https://github.com/kubernetes/ingress-nginx/pulls?q=is%3Aopen+is%3Apr+label%3Atriage%2Faccepted). 
+Reviewers or members who want to become reviewers according to the [k8s membership ladder](https://github.com/kubernetes/community/blob/master/community-membership.md), could actively search for [pull requests that need a review](https://github.com/kubernetes/ingress-nginx/pulls?q=is%3Aopen+is%3Apr+label%3Atriage%2Faccepted).
 
 ## Support Channels
 
@@ -47,3 +47,6 @@ Whether you are a user or contributor, official support channels include:
 - Post: [Kubernetes Forum](https://discuss.kubernetes.io)
 
 Before opening a new issue or submitting a new pull request, it's helpful to search the project - it's likely that another user has already reported the issue you're facing, or it's a known issue that we're already aware of.
+
+## New Contributor Tips
+If you're a new contributor, you can follow the [New Contributor Tips guide](NEW_CONTRIBUTOR.md)
diff --git a/NEW_CONTRIBUTOR.md b/NEW_CONTRIBUTOR.md
new file mode 100644
index 000000000..816d05778
--- /dev/null
+++ b/NEW_CONTRIBUTOR.md
@@ -0,0 +1,850 @@
+## New Contributor Tips
+
+Welcome to the Ingress Nginx new contributor tips.
+This guide briefly outlines the necessary knowledge & tools, required to start working on Ingress-NGINX Issues.
+
+### Prerequisites
+- Basic understanding of linux
+- Familiarity with the command line on linux
+- OSI Model(Links below)
+
+### Introduction
+It all starts with the OSI model...
+> The Open Systems Interconnection (OSI) model describes seven layers that computer systems use to communicate over a network. It was the first standard model for network communications, adopted by all major computer and telecommunication companies
+
+![Describes the 7 Layers of the OSI Model](https://i.imgur.com/qF0KjBq.png)
+
+#### Reading material for OSI Model
+[OSI Model CertificationKits](https://www.certificationkits.com/cisco-certification/cisco-ccna-640-802-exam-certification-guide/cisco-ccna-the-osi-model/)
+
+### Approaching the problem
+
+
+Not everybody knows everything. But the factors that help are a love/passion for this to begin. But to move forward, its the approach and not the knowledge that sustains prolonged joy, while working on issues. If the approach is simple and powered by good-wishes-for-community, then info & tools are forthcoming and easy.
+
+Here we take a bird's eye-view of the hops in the network plumbing, that a packet takes, from source to destination, when we run `curl`, from a laptop to a nginx webserver process, running in a container, inside a pod, inside a Kubernetes cluster, created using `kind` or `minikube` or any other cluster-management tool.
+
+### [Kind](https://kind.sigs.k8s.io/) cluster example on a Linux Host
+
+#### TL;DR
+The destination of the packet from the curl command, is looked up, in the `routing table`. Based on the route, the the packet first travels to the virtual bridge `172.18.0.1` interface, created by docker, when we created the kind cluster on a laptop. Next the packet is forwarded to `172.18.0.2`(See below on how we got this IP address), within the kind cluster. The `kube-proxy` container creates iptables rules that make sure the packet goes to the correct pod ip in this case `10.244.0.5`
+
+Command:
+```
+# docker ps
+CONTAINER ID   IMAGE                  COMMAND                  CREATED       STATUS          PORTS                       NAMES
+230e7246a32c   kindest/node:v1.24.1   "/usr/local/bin/entr…"   2 weeks ago   Up 54 seconds   127.0.0.1:38143->6443/tcp   kind-control-plane
+
+# docker inspect kind-control-plane -f '{{ .NetworkSettings.Networks.kind.IPAddress }}'
+172.18.0.2
+
+```
+
+
+
+If this part is confusing, you would first need to understand what a [bridge](https://tldp.org/HOWTO/BRIDGE-STP-HOWTO/what-is-a-bridge.html) is and what [docker network](https://docs.docker.com/network/) is.
+
+
+
+#### The journey of a curl packet.
+Let's begin with creating a [Kind](https://kind.sigs.k8s.io/docs/user/quick-start/) Cluster on your laptop
+```
+# kind create cluster
+```
+This will create a cluster called `kind`, to view the clusters type
+```
+# kind get clusters                                                                                                                              
+kind
+```
+Kind ships with `kubectl`, so we can use that to communicate with our clusters.
+```
+# kubectl get no -o wide                                                                                                                             
+NAME                 STATUS   ROLES           AGE     VERSION   INTERNAL-IP   EXTERNAL-IP   OS-IMAGE       KERNEL-VERSION    CONTAINER-RUNTIME
+kind-control-plane   Ready    control-plane   5d23h   v1.24.1   172.18.0.2    <none>        Ubuntu 21.10   5.18.12-arch1-1   containerd://1.6.4
+```
+Kind creates  a cluster using docker container as nodes, it does this using [containerd](https://containerd.io/) within the docker container.
+The concept of Docker in Docker is very important here.
+
+To start with simply create a nginx deployment using `kubectl`.
+```
+# kubectl create deployment nginx --image nginx:alpine --port=80
+deployment.apps/nginx created
+```
+Then we expose this as a NodePort Service.
+```
+# kubectl expose deployment/nginx --type=NodePort
+service/nginx-new exposed
+```
+Command: Now we can see that the service has been exposed.
+```
+# kubectl get svc -o wide
+NAME           TYPE        CLUSTER-IP      EXTERNAL-IP   PORT(S)        AGE     SELECTOR
+nginx          NodePort    10.96.176.241   <none>        80:32329/TCP   4d8h    app=nginx
+```
+Output Relevance: From the above output, we can see that our nginx pod is being exposed as the `NodePort` service type, and now we can curl the Node IP `172.18.0.2` with the exposed port `32329`
+
+Command: The pod has an IP as shown below
+```
+# kubectl get po -o wide                                                                                                                            
+NAME                               READY   STATUS    RESTARTS      AGE     IP            NODE                 NOMINATED NODE   READINESS GATES
+nginx-6c8b449b8f-pdvdk             1/1     Running   1 (32h ago)   4d8h    10.244.0.5    kind-control-plane   <none>           <none>
+```
+
+Command: We can use `curl` on the laptop to view the nginx container that is running on port `32329`.
+
+```
+# curl  172.18.0.2:32329
+
+<!DOCTYPE html>
+<html>
+<head>
+<title>Welcome to nginx!</title>
+<style>
+html { color-scheme: light dark; }
+body { width: 35em; margin: 0 auto;
+font-family: Tahoma, Verdana, Arial, sans-serif; }
+</style>
+</head>
+<body>
+<h1>Welcome to nginx!</h1>
+<p>If you see this page, the nginx web server is successfully installed and
+working. Further configuration is required.</p>
+
+<p>For online documentation and support please refer to
+<a href="http://nginx.org/">nginx.org</a>.<br/>
+Commercial support is available at
+<a href="http://nginx.com/">nginx.com</a>.</p>
+
+<p><em>Thank you for using nginx.</em></p>
+</body>
+</html>
+```
+Now, we can check the ip interfaces as well subnets for our system is connected to:
+
+```
+$ ifconfig
+ethbr0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
+        inet 192.168.31.9  netmask 255.255.255.0  broadcast 192.168.31.255
+        inet6 fe80::7530:9ae5:3e8d:e45a  prefixlen 64  scopeid 0x20<link>
+        ether 2e:90:b3:e8:52:5b  txqueuelen 1000  (Ethernet)
+        RX packets 31220566  bytes 44930589084 (41.8 GiB)
+        RX errors 0  dropped 0  overruns 0  frame 0
+        TX packets 18104006  bytes 1757183680 (1.6 GiB)
+        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
+
+br-2fffe5cd5d9e: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
+        inet 172.18.0.1  netmask 255.255.0.0  broadcast 172.18.255.255
+        inet6 fc00:f853:ccd:e793::1  prefixlen 64  scopeid 0x0<global>
+        inet6 fe80::42:12ff:fed3:8fb0  prefixlen 64  scopeid 0x20<link>
+        inet6 fe80::1  prefixlen 64  scopeid 0x20<link>
+        ether 02:42:12:d3:8f:b0  txqueuelen 0  (Ethernet)
+        RX packets 3547  bytes 414792 (405.0 KiB)
+        RX errors 0  dropped 0  overruns 0  frame 0
+        TX packets 6267  bytes 8189931 (7.8 MiB)
+        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
+docker0: flags=4099<UP,BROADCAST,MULTICAST>  mtu 1500
+        inet 172.17.0.1  netmask 255.255.0.0  broadcast 172.17.255.255
+        inet6 fe80::42:a2ff:fe09:5edb  prefixlen 64  scopeid 0x20<link>
+        ether 02:42:a2:09:5e:db  txqueuelen 0  (Ethernet)
+        RX packets 14  bytes 2143 (2.0 KiB)
+        RX errors 0  dropped 0  overruns 0  frame 0
+        TX packets 40  bytes 6406 (6.2 KiB)
+        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
+```
+From the above output we can see that, there are two bridges connected to our systems network interface,one is the docker default bridge`docker0` and the other created by kind
+`br-2fffe5cd5d9e`.
+
+Since kind creates nodes as containers, this is easily accessible via `docker ps`.
+```
+$ docker ps
+
+CONTAINER ID   IMAGE                  COMMAND                  CREATED      STATUS        PORTS                       NAMES
+230e7246a32c   kindest/node:v1.24.1   "/usr/local/bin/entr…"   6 days ago   Up 33 hours   127.0.0.1:38143->6443/tcp   kind-control-plane
+```
+If we do a docker `exec` we can enter the container, we can also see the network interfaces within the container.
+```
+# docker exec -it 230e7246a32c bash
+
+# root@kind-control-plane:/# ip a
+1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
+    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
+    inet 127.0.0.1/8 scope host lo
+       valid_lft forever preferred_lft forever
+    inet6 ::1/128 scope host
+       valid_lft forever preferred_lft forever
+2: vethdb0d1da1@if2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
+    link/ether a2:a1:ce:08:d2:39 brd ff:ff:ff:ff:ff:ff link-netns cni-ddc25710-030a-cc05-c600-5a183fae01f7
+    inet 10.244.0.1/32 scope global vethdb0d1da1
+       valid_lft forever preferred_lft forever
+3: veth4d76603f@if2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
+    link/ether 9a:9b:6b:3e:d1:53 brd ff:ff:ff:ff:ff:ff link-netns cni-f2270000-8fc8-6f89-e56b-4759ae10a084
+    inet 10.244.0.1/32 scope global veth4d76603f
+       valid_lft forever preferred_lft forever
+4: vethcc2586d6@if2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
+    link/ether 52:f9:20:63:62:a2 brd ff:ff:ff:ff:ff:ff link-netns cni-97e337cd-1322-c1fa-7523-789af94f397f
+    inet 10.244.0.1/32 scope global vethcc2586d6
+       valid_lft forever preferred_lft forever
+5: veth783189a9@if2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
+    link/ether ba:e1:55:1f:6f:12 brd ff:ff:ff:ff:ff:ff link-netns cni-90849001-668a-03d2-7d9e-192de79ccc59
+    inet 10.244.0.1/32 scope global veth783189a9
+       valid_lft forever preferred_lft forever
+6: veth79c98c12@if2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
+    link/ether 22:05:55:c7:86:e9 brd ff:ff:ff:ff:ff:ff link-netns cni-734dfac9-9f70-ab33-265b-21569d90312a
+    inet 10.244.0.1/32 scope global veth79c98c12
+       valid_lft forever preferred_lft forever
+7: veth5b221c83@if2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
+    link/ether 92:3f:04:54:72:5a brd ff:ff:ff:ff:ff:ff link-netns cni-d8f6666b-1cfb-ef08-4bf8-237a7fc32da2
+    inet 10.244.0.1/32 scope global veth5b221c83
+       valid_lft forever preferred_lft forever
+8: vethad630fb8@if2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
+    link/ether 32:78:ec:f6:01:ea brd ff:ff:ff:ff:ff:ff link-netns cni-6cb3c179-cb17-3b81-2051-27231c44a3c4
+    inet 10.244.0.1/32 scope global vethad630fb8
+       valid_lft forever preferred_lft forever
+9: veth573a629b@if2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
+    link/ether e2:57:f8:c9:bc:94 brd ff:ff:ff:ff:ff:ff link-netns cni-d2dbb903-8310-57b4-7ba4-9f353dbc79dc
+    inet 10.244.0.1/32 scope global veth573a629b
+       valid_lft forever preferred_lft forever
+10: eth0@if11: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
+    link/ether 02:42:ac:12:00:02 brd ff:ff:ff:ff:ff:ff link-netnsid 0
+    inet 172.18.0.2/16 brd 172.18.255.255 scope global eth0
+       valid_lft forever preferred_lft forever
+    inet6 fc00:f853:ccd:e793::2/64 scope global nodad
+       valid_lft forever preferred_lft forever
+    inet6 fe80::42:acff:fe12:2/64 scope link
+       valid_lft forever preferred_lft forever
+11: vethd7368e27@if2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
+    link/ether 8a:74:ec:f6:d6:c9 brd ff:ff:ff:ff:ff:ff link-netns cni-7c7eb9cd-bbb1-65b0-0480-b8f1265f2f36
+    inet 10.244.0.1/32 scope global vethd7368e27
+       valid_lft forever preferred_lft forever
+12: veth7cadbf2b@if2: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default
+    link/ether 12:48:10:b7:b8:f5 brd ff:ff:ff:ff:ff:ff link-netns cni-b39e37b5-1bc8-626a-a553-a0be2f94a117
+    inet 10.244.0.1/32 scope global veth7cadbf2b
+       valid_lft forever preferred_lft forever
+
+```
+When we run `curl  172.18.0.2:32329` on the laptop it first needs to figure out where `172.18.0.2`, to do this it refers to the host routing table.
+```
+sudo netstat -rn                                                                                                                           main 
+Kernel IP routing table
+Destination     Gateway         Genmask         Flags   MSS Window  irtt Iface
+0.0.0.0         192.168.31.1    0.0.0.0         UG        0 0          0 ethbr0
+172.17.0.0      0.0.0.0         255.255.0.0     U         0 0          0 docker0
+172.18.0.0      0.0.0.0         255.255.0.0     U         0 0          0 br-2fffe5cd5d9e
+172.19.0.0      0.0.0.0         255.255.0.0     U         0 0          0 br-be5b544733a3
+192.168.31.0    0.0.0.0         255.255.255.0   U         0 0          0 ethbr0
+192.168.31.0    0.0.0.0         255.255.255.0   U         0 0          0 ethbr0
+192.168.39.0    0.0.0.0         255.255.255.0   U         0 0          0 virbr2
+192.168.122.0   0.0.0.0         255.255.255.0   U         0 0          0 virbr0
+```
+Output Relevance: From the above output, you can see that the `iface`(Interface) for `172.18.0.0` is `br-2fffe5cd5d9e`, which means traffic that needs to go to `172.18.0.0` will go through `br-2fffe5cd5d9e` which is created by docker for the kind container (this is the node in case of kind cluster).
+
+Now we need to understand how the packet travels from the container interface to the pod with IP `10.244.0.5`. The component that handles this is called kube-proxy
+
+So what exactly is [kube-proxy](https://kubernetes.io/docs/concepts/overview/components/#kube-proxy):
+> Kube-Proxy is a network proxy that runs on each node in your cluster, implementing part of the Kubernetes Service concept.
+kube-proxy maintains network rules on nodes. These network rules allow network communication to your Pods from network sessions inside or outside of your cluster
+
+So, as we can see that kube proxy handles the network rules required to aid the communication to the pods, we will look at the [iptables](https://linux.die.net/man/8/iptables)
+> `iptables` is a command line interface used to set up and maintain tables for the Netfilter firewall for IPv4, included in the Linux kernel. The firewall matches packets with rules defined in these tables and then takes the specified action on a possible match. Tables is the name for a set of chains
+
+Command:
+```
+# iptables -t nat -L PREROUTING -n
+Chain PREROUTING (policy ACCEPT)
+target     prot opt source               destination
+KUBE-SERVICES  all  --  0.0.0.0/0            0.0.0.0/0            /* kubernetes service portals */
+DOCKER_OUTPUT  all  --  0.0.0.0/0            172.18.0.1
+CNI-HOSTPORT-DNAT  all  --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type LOCAL
+```
+
+```
+# iptables-save | grep PREROUTING
+-A PREROUTING -m comment --comment "kubernetes service portals" -j KUBE-SERVICES
+```
+Output Relevance:
+> -A: append new iptable rule
+> -j: jump to the target
+> KUBE-SERVICES: target
+
+> The above output appends a new rule for PREROUTING which every network packet will go through first as they try to access any kubernetes service
+
+
+What is `PREROUTING` in iptables?
+>PREROUTING: This chain is used to make any routing related decisions before (PRE) sending any packets
+
+To dig in further we need to go to the target, `KUBE-SERVICES` for our nginx service.
+```
+# iptables -t nat -L KUBE-SERVICES -n| grep nginx
+KUBE-SVC-2CMXP7HKUVJN7L6M  tcp  --  0.0.0.0/0            10.96.176.241        /* default/nginx cluster IP */ tcp dpt:80
+```
+Command:
+```
+# iptables -t nat -L KUBE-SVC-2CMXP7HKUVJN7L6M -n
+Chain KUBE-SVC-2CMXP7HKUVJN7L6M (2 references)
+target     prot opt source               destination
+KUBE-MARK-MASQ  tcp  -- !10.244.0.0/16        10.96.176.241        /* default/nginx cluster IP */ tcp dpt:80
+KUBE-SEP-4IEO3WJHPKXV3AOH  all  --  0.0.0.0/0            0.0.0.0/0            /* default/nginx -> 10.244.0.5:80 */
+
+# iptables -t nat -L KUBE-MARK-MASQ -n
+Chain KUBE-MARK-MASQ (31 references)
+target     prot opt source               destination
+MARK       all  --  0.0.0.0/0            0.0.0.0/0            MARK or 0x4000
+
+# iptables -t nat -L KUBE-SEP-4IEO3WJHPKXV3AOH -n
+Chain KUBE-SEP-4IEO3WJHPKXV3AOH (1 references)
+target     prot opt source               destination
+KUBE-MARK-MASQ  all  --  10.244.0.5           0.0.0.0/0            /* default/nginx */
+DNAT       tcp  --  0.0.0.0/0            0.0.0.0/0            /* default/nginx */ tcp to:10.244.0.5:80
+```
+
+
+```
+iptables-save | grep 10.96.176.241
+
+-A KUBE-SERVICES -d 10.96.176.241/32 -p tcp -m comment --comment "default/nginx cluster IP" -m tcp --dport 80 -j KUBE-SVC-2CMXP7HKUVJN7L6M
+-A KUBE-SVC-2CMXP7HKUVJN7L6M ! -s 10.244.0.0/16 -d 10.96.176.241/32 -p tcp -m comment --comment "default/nginx cluster IP" -m tcp --dport 80 -j KUBE-MARK-MASQ
+```
+
+As you can see the rules added by `kube-proxy` helps the packet reach to the destination service.
+
+### Minikube KVM VM Example on Linux
+
+#### TL;DR
+Now we look at the curl packet journey on minikube. The `routing table` is looked up to know the destination of the curl packet. The packet then first travels to the virtual bridge `192.168.39.1`, created by minikube kvm2 driver, when we created the minikube cluster, on a linux laptop. Then this packet is forwarded to `192.168.39.57`, within the minikube VM. We have docker containers running in the VM. Among them, the `kube-proxy` container creates iptables rules that make sure the packet goes to the correct pod ip, in this case `172.17.0.4`.
+
+
+To begin with the minikube example, we first need to create a minikube cluster on a linux laptop. In this example I'll be using the `kvm2` driver option for `minikube start` command, as default.
+
+```
+minikube start
+😄  minikube v1.26.0 on Arch "rolling"
+🆕  Kubernetes 1.24.2 is now available. If you would like to upgrade, specify: --kubernetes-version=v1.24.2
+✨  Using the kvm2 driver based on existing profile
+👍  Starting control plane node minikube in cluster minikube
+🏃  Updating the running kvm2 "minikube" VM ...
+🐳  Preparing Kubernetes v1.23.3 on Docker 20.10.12 ...
+    ▪ kubelet.housekeeping-interval=5m
+🔎  Verifying Kubernetes components...
+    ▪ Using image k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1
+    ▪ Using image k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1
+    ▪ Using image k8s.gcr.io/ingress-nginx/controller:v1.2.1
+    ▪ Using image gcr.io/k8s-minikube/storage-provisioner:v5
+🔎  Verifying ingress addon...
+🌟  Enabled addons: ingress, storage-provisioner, default-storageclass
+🏄  Done! kubectl is now configured to use "minikube" cluster and "default" namespace by default
+```
+**Note**: The KVM driver provides a lot of options on customizing the cluster, however that is currently beyond the scope of this guide.
+
+Next we will get the Node IP.
+```
+$ kubectl get no -o wide                                                                                                                   
+NAME       STATUS   ROLES                  AGE   VERSION   INTERNAL-IP     EXTERNAL-IP   OS-IMAGE              KERNEL-VERSION   CONTAINER-RUNTIME
+minikube   Ready    control-plane,master   25d   v1.23.3   192.168.39.57   <none>        Buildroot 2021.02.4   4.19.202         docker://20.10.12
+```
+Minikube creates a Virtual Machine using the KVM2 driver(Other drivers such as Virtualbox do exist see `minikube start --help` for more information ), you should be able to see this with the following output(You may have to use sudo to get this output)
+
+```
+$ virsh --connect qemu:///system list
+ Id   Name       State
+--------------------------
+ 1    minikube   running
+
+ or
+
+ $ sudo virsh list
+ Id   Name       State
+--------------------------
+ 1    minikube   running
+
+```
+
+Moving on, simply create a nginx deployment using `kubectl`.
+```
+# kubectl create deployment nginx --image nginx:alpine --port=80
+deployment.apps/nginx created
+```
+Then we expose this as a NodePort Service.
+```
+# kubectl expose deployment/nginx --type=NodePort
+service/nginx-new exposed
+```
+Command: Now we can see that the service has been exposed.
+```
+# kubectl get svc -o wide                                                                                                                            main 
+NAME             TYPE        CLUSTER-IP   EXTERNAL-IP   PORT(S)        AGE   SELECTOR
+kubernetes       ClusterIP   10.96.0.1    <none>        443/TCP        25d   <none>
+nginx-minikube   NodePort    10.97.44.4   <none>        80:32007/TCP   45h   app=nginx-minikube
+```
+Output Relevance: From the above output, we can see that our nginx pod is being exposed as the `NodePort` service type, and now we can curl the Node IP `192.168.39.57` with the exposed port `32007`
+
+Command: The pod has an IP as shown below
+```
+# kubectl get po -o wide
+NAME                              READY   STATUS    RESTARTS      AGE   IP           NODE       NOMINATED NODE   READINESS GATES
+nginx-minikube-7546f79bd8-x88bt   1/1     Running   3 (43m ago)   45h   172.17.0.4   minikube   <none>           <none>
+
+```
+
+Command: We can use `curl` on the laptop to view the nginx container that is running on port `32007`.
+```
+curl  192.168.39.57:32007
+<!DOCTYPE html>
+<html>
+<head>
+<title>Welcome to nginx!</title>
+<style>
+html { color-scheme: light dark; }
+body { width: 35em; margin: 0 auto;
+font-family: Tahoma, Verdana, Arial, sans-serif; }
+</style>
+</head>
+<body>
+<h1>Welcome to nginx!</h1>
+<p>If you see this page, the nginx web server is successfully installed and
+working. Further configuration is required.</p>
+
+<p>For online documentation and support please refer to
+<a href="http://nginx.org/">nginx.org</a>.<br/>
+Commercial support is available at
+<a href="http://nginx.com/">nginx.com</a>.</p>
+
+<p><em>Thank you for using nginx.</em></p>
+</body>
+</html>
+```
+
+So, how does this packet travel, lets dive in.
+We can check the ip interfaces as well subnets for our system is connected to:
+```
+$ ifconfig
+virbr2: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
+        inet 192.168.39.1  netmask 255.255.255.0  broadcast 192.168.39.255
+        ether 52:54:00:19:29:93  txqueuelen 1000  (Ethernet)
+        RX packets 5132  bytes 1777099 (1.6 MiB)
+        RX errors 0  dropped 0  overruns 0  frame 0
+        TX packets 6113  bytes 998530 (975.1 KiB)
+        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
+
+virbr0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
+        inet 192.168.122.1  netmask 255.255.255.0  broadcast 192.168.122.255
+        ether 52:54:00:48:ee:35  txqueuelen 1000  (Ethernet)
+        RX packets 23648  bytes 1265196 (1.2 MiB)
+        RX errors 0  dropped 0  overruns 0  frame 0
+        TX packets 40751  bytes 60265308 (57.4 MiB)
+        TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0
+```
+Output Relevance: From the above output you can see there are two Virtual Bridges created by minikube when we created the cluster on the network. Here, `virbr0` is the default NAT network bridge while `virbr2` is a isolated network bridge on which the pods run.
+
+Minikube creates a Virtual Machine, to enter the virtual machine we can simple do:
+```
+# minikube ssh
+```
+
+The interfaces within the Virtual Machine are as follows.
+```
+docker0   Link encap:Ethernet  HWaddr 02:42:03:24:26:78
+          inet addr:172.17.0.1  Bcast:172.17.255.255  Mask:255.255.0.0
+          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
+          RX packets:31478 errors:0 dropped:0 overruns:0 frame:0
+          TX packets:36704 errors:0 dropped:0 overruns:0 carrier:0
+          collisions:0 txqueuelen:0
+          RX bytes:3264056 (3.1 MiB)  TX bytes:14061883 (13.4 MiB)
+
+eth0      Link encap:Ethernet  HWaddr 52:54:00:C9:3A:73
+          inet addr:192.168.39.57  Bcast:192.168.39.255  Mask:255.255.255.0
+          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
+          RX packets:8245 errors:0 dropped:9 overruns:0 frame:0
+          TX packets:3876 errors:0 dropped:0 overruns:0 carrier:0
+          collisions:0 txqueuelen:1000
+          RX bytes:812006 (792.9 KiB)  TX bytes:1044724 (1020.2 KiB)
+
+eth1      Link encap:Ethernet  HWaddr 52:54:00:7B:37:79
+          inet addr:192.168.122.35  Bcast:192.168.122.255  Mask:255.255.255.0
+          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
+          RX packets:4459 errors:0 dropped:9 overruns:0 frame:0
+          TX packets:201 errors:0 dropped:0 overruns:0 carrier:0
+          collisions:0 txqueuelen:1000
+          RX bytes:298528 (291.5 KiB)  TX bytes:25813 (25.2 KiB)
+
+lo        Link encap:Local Loopback
+          inet addr:127.0.0.1  Mask:255.0.0.0
+          UP LOOPBACK RUNNING  MTU:65536  Metric:1
+          RX packets:946772 errors:0 dropped:0 overruns:0 frame:0
+          TX packets:946772 errors:0 dropped:0 overruns:0 carrier:0
+          collisions:0 txqueuelen:1000
+          RX bytes:213465460 (203.5 MiB)  TX bytes:213465460 (203.5 MiB)
+
+vetha4f1dc5 Link encap:Ethernet  HWaddr 3E:1C:FE:C9:75:86
+          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
+          RX packets:10 errors:0 dropped:0 overruns:0 frame:0
+          TX packets:16 errors:0 dropped:0 overruns:0 carrier:0
+          collisions:0 txqueuelen:0
+          RX bytes:1413 (1.3 KiB)  TX bytes:955 (955.0 B)
+
+vethbf35613 Link encap:Ethernet  HWaddr BA:31:7D:AE:2A:BF
+          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
+          RX packets:3526 errors:0 dropped:0 overruns:0 frame:0
+          TX packets:3934 errors:0 dropped:0 overruns:0 carrier:0
+          collisions:0 txqueuelen:0
+          RX bytes:342408 (334.3 KiB)  TX bytes:380193 (371.2 KiB)
+
+vethe092a51 Link encap:Ethernet  HWaddr 8A:37:D3:D9:D9:0E
+          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
+          RX packets:9603 errors:0 dropped:0 overruns:0 frame:0
+          TX packets:11151 errors:0 dropped:0 overruns:0 carrier:0
+          collisions:0 txqueuelen:0
+          RX bytes:1199235 (1.1 MiB)  TX bytes:5449408 (5.1 MiB)
+```
+Output Relevance: Here we have the Virtual Ethernet and we have docker bridges too since docker runs within the Virtual Machine.
+
+When we do a `curl` to `192.168.39.57:32007` on the laptop the packet first goes to the route table
+```
+Destination     Gateway         Genmask         Flags   MSS Window  irtt Iface
+0.0.0.0         192.168.31.1    0.0.0.0         UG        0 0          0 ethbr0
+172.17.0.0      0.0.0.0         255.255.0.0     U         0 0          0 docker0
+172.18.0.0      0.0.0.0         255.255.0.0     U         0 0          0 br-2fffe5cd5d9e
+172.19.0.0      0.0.0.0         255.255.0.0     U         0 0          0 br-be5b544733a3
+192.168.31.0    0.0.0.0         255.255.255.0   U         0 0          0 ethbr0
+192.168.31.0    0.0.0.0         255.255.255.0   U         0 0          0 ethbr0
+192.168.39.0    0.0.0.0         255.255.255.0   U         0 0          0 virbr2
+192.168.122.0   0.0.0.0         255.255.255.0   U         0 0          0 virbr0
+```
+Output Relevance: As you can see multiple routes are defined here, of which our Virtual Machine Node IP(192.168.39.57) is also shown in the table, so the packet now knows where it has to go.
+
+With that clear we now know how the packet goes from the laptop to the virtual bridge and then enters the Virtual Machine.
+
+Inside the virtual machine, [kube-proxy](https://kubernetes.io/docs/concepts/overview/components/#kube-proxy) handles the routing using iptables.
+
+So what exactly is [kube-proxy](https://kubernetes.io/docs/concepts/overview/components/#kube-proxy)(For those who skipped the kind example):
+> Kube-Proxy is a network proxy that runs on each node in your cluster, implementing part of the Kubernetes Service concept.
+kube-proxy maintains network rules on nodes. These network rules allow network communication to your Pods from network sessions inside or outside of your cluster
+
+So, as we can see that kube proxy handles the network rules required to aid the communication to the pods, we will look at the [iptables](https://linux.die.net/man/8/iptables)
+> `iptables` is a command line interface used to set up and maintain tables for the Netfilter firewall for IPv4, included in the Linux kernel. The firewall matches packets with rules defined in these tables and then takes the specified action on a possible match. Tables is the name for a set of chains
+
+Command:
+
+```
+# minikube ssh                                                                                                                                      
+                         _             _
+            _         _ ( )           ( )
+  ___ ___  (_)  ___  (_)| |/')  _   _ | |_      __
+/' _ ` _ `\| |/' _ `\| || , <  ( ) ( )| '_`\  /'__`\
+| ( ) ( ) || || ( ) || || |\`\ | (_) || |_) )(  ___/
+(_) (_) (_)(_)(_) (_)(_)(_) (_)`\___/'(_,__/'`\____)
+
+$ sudo iptables -t nat -L PREROUTING -n
+Chain PREROUTING (policy ACCEPT)
+target     prot opt source               destination
+KUBE-SERVICES  all  --  0.0.0.0/0            0.0.0.0/0            /* kubernetes service portals */
+DOCKER     all  --  0.0.0.0/0            0.0.0.0/0            ADDRTYPE match dst-type LOCAL
+
+$ iptables-save | grep PREROUTING
+-A PREROUTING -m comment --comment "kubernetes service portals" -j KUBE-SERVICES
+
+```
+
+Output Relevance:
+> -A: append new iptable rule
+> -j: jump to the target
+> KUBE-SERVICES: target
+
+> The above output appends a new rule for PREROUTING which every network packet will go through first as they try to access any kubernetes service
+
+
+What is `PREROUTING` in iptables?
+>PREROUTING: This chain is used to make any routing related decisions before (PRE) sending any packets
+
+To dig in further we need to go to the target, `KUBE-SERVICES` for our nginx service.
+```
+# iptables -t nat -L KUBE-SERVICES -n| grep nginx
+KUBE-SVC-NRDCJV6H42SDXARP  tcp  --  0.0.0.0/0            10.97.44.4           /* default/nginx-minikube cluster IP */ tcp dpt:80
+```
+Command:
+```
+$ sudo iptables -t nat -L| grep KUBE-SVC-NRDCJV6H42SDXARP
+KUBE-SVC-NRDCJV6H42SDXARP  tcp  --  0.0.0.0/0            0.0.0.0/0            /* default/nginx-minikube */ tcp dpt:32007
+KUBE-SVC-NRDCJV6H42SDXARP  tcp  --  0.0.0.0/0            10.97.44.4           /* default/nginx-minikube cluster IP */ tcp dpt:80
+
+$ sudo iptables -t nat -L KUBE-MARK-MASQ -n
+Chain KUBE-MARK-MASQ (19 references)
+target     prot opt source               destination
+MARK       all  --  0.0.0.0/0            0.0.0.0/0            MARK or 0x4000
+
+sudo iptables-save | grep 172.17.0.4
+-A KUBE-SEP-AHQQ7ZFXMEBNX76B -s 172.17.0.4/32 -m comment --comment "default/nginx-minikube" -j KUBE-MARK-MASQ
+-A KUBE-SEP-AHQQ7ZFXMEBNX76B -p tcp -m comment --comment "default/nginx-minikube" -m tcp -j DNAT --to-destination 172.17.0.4:80
+```
+As you can see the rules added by kube-proxy helps the packet reach to the destination service.
+
+
+### Connection termination
+Connection termination is a type of event that occurs when there are load balancers present, the information for this is quite scarce, however I've found the following article, [IBM - Network Termination](https://www.ibm.com/docs/en/sva/9.0.4?topic=balancer-network-termination) that describes what it means by connection termination between clients(laptop) and server(load balancer) and the various other services.
+
+### Different types of connection errors.
+The following article on [TCP/IP errors](https://www.ibm.com/docs/en/db2/11.1?topic=message-tcpip-errors) has a list of the important tcp timeout errors that we need to know.
+
+
+| Common TCP/IP errors | Meaning |
+| -------- | -------- |
+| Resource temporarily unavailable.| Self-explanatory.     |
+| No space is left on a device or system table.|The disk partition is full|
+|No route to the host is available.|The routing table doesn't know where to route the packet.|
+|Connection was reset by the partner.|This usually means the packet was dropped as soon as it reached the server can be due to a firewall.|
+|The connection was timed out.|This indicates the firewall blocking your connection or the connection took too long.|
+
+## OSI Model Layer 7 (Application Layer)
+
+[What is layer 7?](https://www.cloudflare.com/learning/ddos/what-is-layer-7/)
+#### Summary
+Layer 7 refers to the seventh and topmost layer of the Open Systems Interconnect (OSI) Model known as the application layer. This is the highest layer which supports end-user processes and applications. Layer 7 identifies the communicating parties and the quality of service between them, considers privacy and user authentication, as well as identifies any constraints on the data syntax. This layer is wholly application-specific.
+
+
+## Setting up Ingress-Nginx Controller
+
+Since we are doing this on our local laptop, we are going to use the following tools:
+- [Minikube using KVM driver](https://minikube.sigs.k8s.io/docs/start/) - The host is linux-based in our example
+- [Metallb](https://metallb.universe.tf/) - Baremetal load-balancer.
+- [KVM](https://www.linux-kvm.org/page/Main_Page) / [Oracle VirtualBox](https://www.virtualbox.org/wiki/Downloads) / [VMWare](https://www.vmware.com/in/products/workstation-pro.html)
+
+
+### So let's begin with Metallb and Ingress-Nginx setup.
+
+For setting up metallb, we are going to follow the below steps:
+
+ - To begin the installation, we will execute:
+```
+minikube start
+```
+- To install Metallb, one can install it using the [manifest](https://metallb.universe.tf/installation/#installation-by-manifest) or by using [helm](https://metallb.universe.tf/installation/#installation-with-helm), for now we will use the Manifest method:
+```
+kubectl apply -f https://raw.githubusercontent.com/metallb/metallb/v0.13.4/config/manifests/metallb-native.yaml
+```
+
+- We need to now configure Metallb, we are using [Layer 2 configuration](https://metallb.universe.tf/configuration/#announce-the-service-ips), let's head over to the [Metallb Configuration](https://metallb.universe.tf/configuration/) website, here you will see how to setup metallb.
+>Layer 2 mode does not require the IPs to be bound to the network interfaces of your worker nodes. It works by responding to ARP requests on your local network directly, to give the machine’s MAC address to clients.
+In order to advertise the IP coming from an IPAddressPool, an L2Advertisement instance must be associated to the IPAddressPool.
+-  We have modified the IP address pool so that our loadbalancer knows which subnet to choose an IP from.Since we have only one minikube IP we need to modify the code given in the documentation.
+Save this as `metallb-config.yaml`:
+```
+apiVersion: metallb.io/v1beta1
+kind: IPAddressPool
+metadata:
+  name: first-pool
+  namespace: metallb-system
+spec:
+  addresses:
+  # The configuration website show's you this
+
+  #- 192.168.10.0/24
+  #- 192.168.9.1-192.168.9.5
+  #- fc00:f853:0ccd:e799::/124
+
+  # We are going to change this to `minikube ip` as such
+  - 192.168.39.57/32
+```
+Now deploy it using `kubectl`
+```
+kubectl apply -f metallb-config.yaml
+```
+- Now that metallb is setup, let's install [ingress-nginx](https://kubernetes.github.io/ingress-nginx/deploy/#quick-start) on the laptop.
+Note: We are using the install by manifest option from the Installation manual
+```
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.0/deploy/static/provider/cloud/deploy.yaml
+```
+or one can also install it using the minikube addons:
+```
+minikube addons enable ingress
+```
+ - Once your Ingress-Nginx controller is created you can run the following commands to see the output of the setup done.
+```
+kubectl get pods -n ingress-nginx
+NAME                                        READY   STATUS      RESTARTS   AGE
+ingress-nginx-admission-create-65bld        0/1     Completed   0          14m
+ingress-nginx-admission-patch-rwq4x         0/1     Completed   0          14m
+ingress-nginx-controller-6dc865cd86-7c5zd   1/1     Running     0          14m
+```
+The Ingress controller creates a Service with the type LoadBalancer and metallb provides the IP address.
+
+```
+kubectl -n ingress-nginx get svc
+
+NAME                                 TYPE           CLUSTER-IP      EXTERNAL-IP      PORT(S)                      AGE
+ingress-nginx-controller             LoadBalancer   10.108.154.53   192.168.39.223   80:30367/TCP,443:31491/TCP   4d15h
+ingress-nginx-controller-admission   ClusterIP      10.98.54.3      <none>           443/TCP                      4d15h
+```
+
+#### Creating an Ingress
+
+We will deploy a `httpd` service in a `httpd` namespace and create a ingress for it.
+
+First, let's create a namespace.
+```
+kubectl create namespace httpd
+```
+
+Next we will create a deployment
+```
+kubectl create deployment httpd -n httpd --image=httpd:alpine
+```
+
+Now, In order to create a service, let's expose this deployment
+```
+kubectl expose deployment -n httpd httpd --port 80
+```
+Let's check the `pod` that is created
+
+```
+kubectl get po -n httpd
+NAME                    READY   STATUS    RESTARTS   AGE
+httpd-fb7fcdc77-w287c   1/1     Running   0          64s
+```
+
+Let's list the services in the `httpd` namespace
+```
+kubectl get svc -n httpd
+NAME    TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)   AGE
+httpd   ClusterIP   10.104.111.0   <none>        80/TCP    13s
+```
+
+Once we have this we can now create a n ingress using the following
+```
+kubectl -n httpd create ingress httpd --class nginx --rule httpd.dev.leonnunes.com/"*"=httpd:80
+```
+The above output, creates an ingress, for us with the rule to match the service if the host is `httpd.dev.leonnunes.com`. The class here is retrieved from the below command.
+
+To list the `ingressclasses` use
+```
+kubectl get ingressclasses
+NAME    CONTROLLER             PARAMETERS   AGE
+nginx   k8s.io/ingress-nginx   <none>       6h49m
+```
+
+The following command shows the ingress created
+```
+$ kubectl get ingress -A -o wide
+
+NAMESPACE   NAME    CLASS   HOSTS                     ADDRESS          PORTS   AGE
+httpd       httpd   nginx   httpd.dev.leonnunes.com   192.168.39.223   80      11d
+```
+
+To test if the rule works we can now do
+```
+$ minikube ip
+192.168.39.223
+
+$ curl --resolve httpd.dev.leonnunes.com:80:192.168.39.223 httpd.dev.leonnunes.com
+<html><body><h1>It works!</h1></body></html>
+
+or
+
+curl -H "Host: httpd.dev.leonnunes.com" 192.168.39.223
+```
+
+#### Example of Information found on layer 7
+We have setup `Ingress-Nginx`, using `nginx` as a class and `httpd` for this example.
+
+In order to display the info on Layer - 7, we have extracted the Layer 7 information from a simple `curl` request, and then using `tcpdump` command within the `httpd` pod we extracted the network packets and opened it using the `Wireshark` utility.
+
+Below given is the output that is important:
+```bash
+Frame 4: 391 bytes on wire (3128 bits), 391 bytes captured (3128 bits)
+Linux cooked capture v2
+Internet Protocol Version 4, Src: 172.17.0.4, Dst: 172.17.0.3
+Transmission Control Protocol, Src Port: 49074, Dst Port: 80, Seq: 1, Ack: 1, Len: 319
+Hypertext Transfer Protocol
+    GET / HTTP/1.1\r\n
+    Host: httpd.dev.leonnunes.com\r\n
+    X-Request-ID: 6e1a790412a0d1615dc0231358dc9c8b\r\n
+    X-Real-IP: 172.17.0.1\r\n
+    X-Forwarded-For: 172.17.0.1\r\n
+    X-Forwarded-Host: httpd.dev.leonnunes.com\r\n
+    X-Forwarded-Port: 80\r\n
+    X-Forwarded-Proto: http\r\n
+    X-Forwarded-Scheme: http\r\n
+    X-Scheme: http\r\n
+    User-Agent: curl/7.84.0\r\n
+    Accept: */*\r\n
+    \r\n
+    [Full request URI: http://httpd.dev.leonnunes.com/]
+    [HTTP request 1/1]
+    [Response in frame: 6]
+
+```
+The above output shows the information that the `httpd` pod recieves. The `curl` command sends the host header, `Host: httpd.dev.leonnunes.com`, to the nginx controller, that then matches the rule and sends the information to the right controller
+
+The following output shows what is sent via the laptop.
+```
+curl --resolve httpd.dev.leonnunes.com:80:192.168.39.57 -H "Host: httpd.dev.leonnunes.com" 192.168.39.57 -vL
+* Added httpd.dev.leonnunes.com:80:192.168.39.57 to DNS cache
+*   Trying 192.168.39.57:80...
+* Connected to 192.168.39.57 (192.168.39.57) port 80 (#0)
+> GET / HTTP/1.1
+> Host: httpd.dev.leonnunes.com
+> User-Agent: curl/7.84.0
+> Accept: */*
+>
+* Mark bundle as not supporting multiuse
+< HTTP/1.1 200 OK
+< Date: Mon, 22 Aug 2022 16:05:27 GMT
+< Content-Type: text/html
+< Content-Length: 45
+< Connection: keep-alive
+< Last-Modified: Mon, 11 Jun 2007 18:53:14 GMT
+< ETag: "2d-432a5e4a73a80"
+< Accept-Ranges: bytes
+<
+<html><body><h1>It works!</h1></body></html>
+* Connection #0 to host 192.168.39.57 left intact
+```
+As you can see from the above output there are several headers added to the curl output after it reaches the `httpd` pod, these headers are added by the Ingress Nginx Controller.
+
+
+### References
+#### Basics of Networking
+   - https://www.cisco.com/en/US/docs/security/vpn5000/manager/reference/guide/appA.html
+   - http://web.stanford.edu/class/cs101/
+   - https://www.geeksforgeeks.org/basics-computer-networking/
+   - Subnetting
+     - https://www.computernetworkingnotes.com/ccna-study-guide/subnetting-tutorial-subnetting-explained-with-examples.html
+
+#### Video Links
+   - https://www.youtube.com/playlist?list=PLhfrWIlLOoKPc2RecyiM_A9nf3fUU3e6g
+   - https://www.youtube.com/watch?v=S7MNX_UD7vY&list=PLIhvC56v63IJVXv0GJcl9vO5Z6znCVb1P
+
+### Topics to read about
+   - Docker in Docker
+   - [Docker/Containers](https://www.oreilly.com/library/view/docker-deep-dive/9781800565135/)
+   - Containers
+
+### Basics of Kubernetes
+#### Reading Material
+- https://nubenetes.com/kubernetes-tutorials/
+- https://kubernetes.io/docs/concepts/
+#### Video Material
+- [Techworld with Nana 101](https://www.youtube.com/playlist?list=PLy7NrYWoggjziYQIDorlXjTvvwweTYoNC)
+- [Jeff Geerling Kubernetes 101](https://www.youtube.com/watch?v=IcslsH7OoYo&list=PL2_OBreMn7FoYmfx27iSwocotjiikS5BD)
+
+#### Hands-On Kubernetes
+- https://kube.academy/
+- https://www.civo.com/academy
+
+### Networking in Kubernetes
+- [Kubernetes Networking 101](https://youtu.be/CYnwBIpvSlM?t=284)
+- [CNCF Kubernetes 101](https://www.youtube.com/watch?v=cUGXu2tiZMc)
+
+### Tools/Commands to help with troubleshooting.
+- [mtr](https://www.redhat.com/sysadmin/linux-mtr-command) - Tracing the packet from the source to destination
+- [tcpdump](https://linuxconfig.org/how-to-use-tcpdump-command-on-linux) - Monitor packets
+- [wireshark](https://www.lifewire.com/wireshark-tutorial-4143298) - Read/Sniff packets
+- [nslookup](https://phoenixnap.com/kb/nslookup-command) - Lookup Nameservers
+- [netstat](https://www.lifewire.com/netstat-command-2618098) - List network details
+- [curl](https://linuxhandbook.com/curl-command-examples/) - Curl a website from the command line
+- [ifconfig](https://www.tecmint.com/ifconfig-command-examples/)/[ip](https://www.geeksforgeeks.org/ip-command-in-linux-with-examples/) - Show ip address configuration
+- [dig](https://www.geeksforgeeks.org/dig-command-in-linux-with-examples/) - Query Nameservers
+- [ipcalc](https://www.linux.com/topic/networking/how-calculate-network-addresses-ipcalc/) - Calculate IP addresses
+- Advanced Tools for troubleshooting
+    - [Netshoot](https://github.com/nicolaka/netshoot) - Troubleshoot Networks
+- Cluster Creation tools
+    - [kind](https://kind.sigs.k8s.io/docs/user/quick-start/)
+    - [minikube](https://minikube.sigs.k8s.io/docs/start/)

From fd9d0abb2c311f0549d85a755fe5de7ceda7ee3b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 19 Sep 2022 06:17:22 -0700
Subject: [PATCH 0379/1641] Bump k8s.io/component-base from 0.25.0 to 0.25.1
 (#9065)

Bumps [k8s.io/component-base](https://github.com/kubernetes/component-base) from 0.25.0 to 0.25.1.
- [Release notes](https://github.com/kubernetes/component-base/releases)
- [Commits](https://github.com/kubernetes/component-base/compare/v0.25.0...v0.25.1)

---
updated-dependencies:
- dependency-name: k8s.io/component-base
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index bfcba276d..ca896babd 100644
--- a/go.mod
+++ b/go.mod
@@ -30,14 +30,14 @@ require (
 	google.golang.org/grpc v1.49.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.25.0
+	k8s.io/api v0.25.1
 	k8s.io/apiextensions-apiserver v0.23.5
-	k8s.io/apimachinery v0.25.0
+	k8s.io/apimachinery v0.25.1
 	k8s.io/apiserver v0.25.0
 	k8s.io/cli-runtime v0.25.0
-	k8s.io/client-go v0.25.0
+	k8s.io/client-go v0.25.1
 	k8s.io/code-generator v0.23.5
-	k8s.io/component-base v0.25.0
+	k8s.io/component-base v0.25.1
 	k8s.io/klog/v2 v2.80.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.11.2
diff --git a/go.sum b/go.sum
index 0cc37681c..8127cfbf4 100644
--- a/go.sum
+++ b/go.sum
@@ -1134,26 +1134,26 @@ honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 k8s.io/api v0.23.5/go.mod h1:Na4XuKng8PXJ2JsploYYrivXrINeTaycCGcYgF91Xm8=
-k8s.io/api v0.25.0 h1:H+Q4ma2U/ww0iGB78ijZx6DRByPz6/733jIuFpX70e0=
-k8s.io/api v0.25.0/go.mod h1:ttceV1GyV1i1rnmvzT3BST08N6nGt+dudGrquzVQWPk=
+k8s.io/api v0.25.1 h1:yL7du50yc93k17nH/Xe9jujAYrcDkI/i5DL1jPz4E3M=
+k8s.io/api v0.25.1/go.mod h1:hh4itDvrWSJsmeUc28rIFNri8MatNAAxJjKcQmhX6TU=
 k8s.io/apiextensions-apiserver v0.23.5 h1:5SKzdXyvIJKu+zbfPc3kCbWpbxi+O+zdmAJBm26UJqI=
 k8s.io/apiextensions-apiserver v0.23.5/go.mod h1:ntcPWNXS8ZPKN+zTXuzYMeg731CP0heCTl6gYBxLcuQ=
 k8s.io/apimachinery v0.23.5/go.mod h1:BEuFMMBaIbcOqVIJqNZJXGFTP4W6AycEpb5+m/97hrM=
-k8s.io/apimachinery v0.25.0 h1:MlP0r6+3XbkUG2itd6vp3oxbtdQLQI94fD5gCS+gnoU=
-k8s.io/apimachinery v0.25.0/go.mod h1:qMx9eAk0sZQGsXGu86fab8tZdffHbwUfsvzqKn4mfB0=
+k8s.io/apimachinery v0.25.1 h1:t0XrnmCEHVgJlR2arwO8Awp9ylluDic706WePaYCBTI=
+k8s.io/apimachinery v0.25.1/go.mod h1:hqqA1X0bsgsxI6dXsJ4HnNTBOmJNxyPp8dw3u2fSHwA=
 k8s.io/apiserver v0.23.5/go.mod h1:7wvMtGJ42VRxzgVI7jkbKvMbuCbVbgsWFT7RyXiRNTw=
 k8s.io/apiserver v0.25.0 h1:8kl2ifbNffD440MyvHtPaIz1mw4mGKVgWqM0nL+oyu4=
 k8s.io/apiserver v0.25.0/go.mod h1:BKwsE+PTC+aZK+6OJQDPr0v6uS91/HWxX7evElAH6xo=
 k8s.io/cli-runtime v0.25.0 h1:XBnTc2Fi+w818jcJGzhiJKQuXl8479sZ4FhtV5hVJ1Q=
 k8s.io/cli-runtime v0.25.0/go.mod h1:bHOI5ZZInRHhbq12OdUiYZQN8ml8aKZLwQgt9QlLINw=
 k8s.io/client-go v0.23.5/go.mod h1:flkeinTO1CirYgzMPRWxUCnV0G4Fbu2vLhYCObnt/r4=
-k8s.io/client-go v0.25.0 h1:CVWIaCETLMBNiTUta3d5nzRbXvY5Hy9Dpl+VvREpu5E=
-k8s.io/client-go v0.25.0/go.mod h1:lxykvypVfKilxhTklov0wz1FoaUZ8X4EwbhS6rpRfN8=
+k8s.io/client-go v0.25.1 h1:uFj4AJKtE1/ckcSKz8IhgAuZTdRXZDKev8g387ndD58=
+k8s.io/client-go v0.25.1/go.mod h1:rdFWTLV/uj2C74zGbQzOsmXPUtMAjSf7ajil4iJUNKo=
 k8s.io/code-generator v0.23.5 h1:xn3a6J5pUL49AoH6SPrOFtnB5cvdMl76f/bEY176R3c=
 k8s.io/code-generator v0.23.5/go.mod h1:S0Q1JVA+kSzTI1oUvbKAxZY/DYbA/ZUb4Uknog12ETk=
 k8s.io/component-base v0.23.5/go.mod h1:c5Nq44KZyt1aLl0IpHX82fhsn84Sb0jjzwjpcA42bY0=
-k8s.io/component-base v0.25.0 h1:haVKlLkPCFZhkcqB6WCvpVxftrg6+FK5x1ZuaIDaQ5Y=
-k8s.io/component-base v0.25.0/go.mod h1:F2Sumv9CnbBlqrpdf7rKZTmmd2meJq0HizeyY/yAFxk=
+k8s.io/component-base v0.25.1 h1:Wmj33QwddVwsJFJWmXlf24Nu8do2bGHLabXHrKz7Org=
+k8s.io/component-base v0.25.1/go.mod h1:j78+TFdsKM8RXHfM88oeAdZu2v9qMZdQZOfg0LGW+q4=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c h1:GohjlNKauSai7gN4wsJkeZ3WAJx4Sh+oT/b5IYn5suA=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=

From 0f5bf530ae677a2f389d6f06de27b6a5cf910621 Mon Sep 17 00:00:00 2001
From: Kir Shatrov <shatrov@me.com>
Date: Tue, 20 Sep 2022 07:03:21 -0400
Subject: [PATCH 0380/1641] Add missing space to error message (#9069)

---
 rootfs/etc/nginx/lua/balancer.lua | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rootfs/etc/nginx/lua/balancer.lua b/rootfs/etc/nginx/lua/balancer.lua
index 2c6a83ae9..00104c89d 100644
--- a/rootfs/etc/nginx/lua/balancer.lua
+++ b/rootfs/etc/nginx/lua/balancer.lua
@@ -64,7 +64,7 @@ local function get_implementation(backend)
 
   local implementation = IMPLEMENTATIONS[name]
   if not implementation then
-    ngx.log(ngx.WARN, backend["load-balance"], "is not supported, ",
+    ngx.log(ngx.WARN, backend["load-balance"], " is not supported, ",
             "falling back to ", DEFAULT_LB_ALG)
     implementation = IMPLEMENTATIONS[DEFAULT_LB_ALG]
   end

From 3579ed04870c77979ec5bf18f4cd00c8763615a1 Mon Sep 17 00:00:00 2001
From: Tomas Hulata <tombo@sysart.tech>
Date: Fri, 23 Sep 2022 21:38:04 +0200
Subject: [PATCH 0381/1641] feat: switch from endpoints to endpointslices
 (#8890)

* endpointslices

Signed-off-by: tombokombo <tombo@sysart.tech>

* cleanup

Signed-off-by: tombokombo <tombo@sysart.tech>

* fix rbac

Signed-off-by: tombokombo <tombo@sysart.tech>

* fix comments

Signed-off-by: tombokombo <tombo@sysart.tech>

* cleanup store, add store tests

Signed-off-by: tombokombo <tombo@sysart.tech>

* fix copyright date

Signed-off-by: tombokombo <tombo@sysart.tech>

Signed-off-by: tombokombo <tombo@sysart.tech>
---
 .../ingress-nginx/templates/clusterrole.yaml  |   8 +
 .../templates/controller-role.yaml            |   8 +
 internal/ingress/controller/controller.go     |  13 +-
 .../ingress/controller/controller_test.go     |   3 +-
 .../{endpoints.go => endpointslices.go}       |  96 +++--
 ...dpoints_test.go => endpointslices_test.go} | 396 ++++++++++++------
 internal/ingress/controller/store/endpoint.go |  39 --
 .../ingress/controller/store/endpoint_test.go |  66 ---
 .../ingress/controller/store/endpointslice.go |  55 +++
 .../controller/store/endpointslice_test.go    |  94 +++++
 internal/ingress/controller/store/store.go    |  43 +-
 11 files changed, 520 insertions(+), 301 deletions(-)
 rename internal/ingress/controller/{endpoints.go => endpointslices.go} (55%)
 rename internal/ingress/controller/{endpoints_test.go => endpointslices_test.go} (50%)
 delete mode 100644 internal/ingress/controller/store/endpoint.go
 delete mode 100644 internal/ingress/controller/store/endpoint_test.go
 create mode 100644 internal/ingress/controller/store/endpointslice.go
 create mode 100644 internal/ingress/controller/store/endpointslice_test.go

diff --git a/charts/ingress-nginx/templates/clusterrole.yaml b/charts/ingress-nginx/templates/clusterrole.yaml
index 0e725ec06..51bc5002c 100644
--- a/charts/ingress-nginx/templates/clusterrole.yaml
+++ b/charts/ingress-nginx/templates/clusterrole.yaml
@@ -89,6 +89,14 @@ rules:
       - get
       - list
       - watch
+  - apiGroups:
+      - discovery.k8s.io
+    resources:
+      - endpointslices
+    verbs:
+      - list
+      - watch
+      - get
 {{- end }}
 
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-role.yaml b/charts/ingress-nginx/templates/controller-role.yaml
index 330be8c86..d6da92ec9 100644
--- a/charts/ingress-nginx/templates/controller-role.yaml
+++ b/charts/ingress-nginx/templates/controller-role.yaml
@@ -100,6 +100,14 @@ rules:
     verbs:
       - create
       - patch
+  - apiGroups:
+      - discovery.k8s.io
+    resources:
+      - endpointslices
+    verbs:
+      - list
+      - watch
+      - get
 {{- if .Values.podSecurityPolicy.enabled }}
   - apiGroups:      [{{ template "podSecurityPolicy.apiGroup" . }}]
     resources:      ['podsecuritypolicies']
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 5287034c6..84da5eb30 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -434,7 +434,7 @@ func (n *NGINXController) getStreamServices(configmapName string, proto apiv1.Pr
 				sp := svc.Spec.Ports[i]
 				if sp.Name == svcPort {
 					if sp.Protocol == proto {
-						endps = getEndpoints(svc, &sp, proto, n.store.GetServiceEndpoints)
+						endps = getEndpointsFromSlices(svc, &sp, proto, n.store.GetServiceEndpointsSlices)
 						break
 					}
 				}
@@ -445,7 +445,7 @@ func (n *NGINXController) getStreamServices(configmapName string, proto apiv1.Pr
 				sp := svc.Spec.Ports[i]
 				if sp.Port == int32(targetPort) {
 					if sp.Protocol == proto {
-						endps = getEndpoints(svc, &sp, proto, n.store.GetServiceEndpoints)
+						endps = getEndpointsFromSlices(svc, &sp, proto, n.store.GetServiceEndpointsSlices)
 						break
 					}
 				}
@@ -497,7 +497,7 @@ func (n *NGINXController) getDefaultUpstream() *ingress.Backend {
 		return upstream
 	}
 
-	endps := getEndpoints(svc, &svc.Spec.Ports[0], apiv1.ProtocolTCP, n.store.GetServiceEndpoints)
+	endps := getEndpointsFromSlices(svc, &svc.Spec.Ports[0], apiv1.ProtocolTCP, n.store.GetServiceEndpointsSlices)
 	if len(endps) == 0 {
 		klog.Warningf("Service %q does not have any active Endpoint", svcKey)
 		endps = []ingress.Endpoint{n.DefaultEndpoint()}
@@ -824,7 +824,7 @@ func (n *NGINXController) getBackendServers(ingresses []*ingress.Ingress) ([]*in
 				}
 
 				sp := location.DefaultBackend.Spec.Ports[0]
-				endps := getEndpoints(location.DefaultBackend, &sp, apiv1.ProtocolTCP, n.store.GetServiceEndpoints)
+				endps := getEndpointsFromSlices(location.DefaultBackend, &sp, apiv1.ProtocolTCP, n.store.GetServiceEndpointsSlices)
 				// custom backend is valid only if contains at least one endpoint
 				if len(endps) > 0 {
 					name := fmt.Sprintf("custom-default-backend-%v-%v", location.DefaultBackend.GetNamespace(), location.DefaultBackend.GetName())
@@ -1082,7 +1082,6 @@ func (n *NGINXController) serviceEndpoints(svcKey, backendPort string) ([]ingres
 	}
 
 	klog.V(3).Infof("Obtaining ports information for Service %q", svcKey)
-
 	// Ingress with an ExternalName Service and no port defined for that Service
 	if svc.Spec.Type == apiv1.ServiceTypeExternalName {
 		if n.cfg.DisableServiceExternalName {
@@ -1090,7 +1089,7 @@ func (n *NGINXController) serviceEndpoints(svcKey, backendPort string) ([]ingres
 			return upstreams, nil
 		}
 		servicePort := externalNamePorts(backendPort, svc)
-		endps := getEndpoints(svc, servicePort, apiv1.ProtocolTCP, n.store.GetServiceEndpoints)
+		endps := getEndpointsFromSlices(svc, servicePort, apiv1.ProtocolTCP, n.store.GetServiceEndpointsSlices)
 		if len(endps) == 0 {
 			klog.Warningf("Service %q does not have any active Endpoint.", svcKey)
 			return upstreams, nil
@@ -1107,7 +1106,7 @@ func (n *NGINXController) serviceEndpoints(svcKey, backendPort string) ([]ingres
 			servicePort.TargetPort.String() == backendPort ||
 			servicePort.Name == backendPort {
 
-			endps := getEndpoints(svc, &servicePort, apiv1.ProtocolTCP, n.store.GetServiceEndpoints)
+			endps := getEndpointsFromSlices(svc, &servicePort, apiv1.ProtocolTCP, n.store.GetServiceEndpointsSlices)
 			if len(endps) == 0 {
 				klog.Warningf("Service %q does not have any active Endpoint.", svcKey)
 			}
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index f875632e0..da9f10e45 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -34,6 +34,7 @@ import (
 	"github.com/eapache/channels"
 	corev1 "k8s.io/api/core/v1"
 	v1 "k8s.io/api/core/v1"
+	discoveryv1 "k8s.io/api/discovery/v1"
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/labels"
@@ -85,7 +86,7 @@ func (fakeIngressStore) GetService(key string) (*corev1.Service, error) {
 	return nil, fmt.Errorf("test error")
 }
 
-func (fakeIngressStore) GetServiceEndpoints(key string) (*corev1.Endpoints, error) {
+func (fakeIngressStore) GetServiceEndpointsSlices(key string) ([]*discoveryv1.EndpointSlice, error) {
 	return nil, fmt.Errorf("test error")
 }
 
diff --git a/internal/ingress/controller/endpoints.go b/internal/ingress/controller/endpointslices.go
similarity index 55%
rename from internal/ingress/controller/endpoints.go
rename to internal/ingress/controller/endpointslices.go
index 5615fadea..efd2a6afa 100644
--- a/internal/ingress/controller/endpoints.go
+++ b/internal/ingress/controller/endpointslices.go
@@ -28,14 +28,15 @@ import (
 	"k8s.io/klog/v2"
 
 	corev1 "k8s.io/api/core/v1"
+	discoveryv1 "k8s.io/api/discovery/v1"
 
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
 // getEndpoints returns a list of Endpoint structs for a given service/target port combination.
-func getEndpoints(s *corev1.Service, port *corev1.ServicePort, proto corev1.Protocol,
-	getServiceEndpoints func(string) (*corev1.Endpoints, error)) []ingress.Endpoint {
+func getEndpointsFromSlices(s *corev1.Service, port *corev1.ServicePort, proto corev1.Protocol,
+	getServiceEndpointsSlices func(string) ([]*discoveryv1.EndpointSlice, error)) []ingress.Endpoint {
 
 	upsServers := []ingress.Endpoint{}
 
@@ -74,54 +75,63 @@ func getEndpoints(s *corev1.Service, port *corev1.ServicePort, proto corev1.Prot
 		})
 	}
 
-	klog.V(3).Infof("Getting Endpoints for Service %q and port %v", svcKey, port.String())
-	ep, err := getServiceEndpoints(svcKey)
+	klog.V(3).Infof("Getting Endpoints from endpointSlices for Service %q and port %v", svcKey, port.String())
+	epss, err := getServiceEndpointsSlices(svcKey)
 	if err != nil {
 		klog.Warningf("Error obtaining Endpoints for Service %q: %v", svcKey, err)
 		return upsServers
 	}
-
-	for _, ss := range ep.Subsets {
-		matchedPortNameFound := false
-		for i, epPort := range ss.Ports {
-
-			if !reflect.DeepEqual(epPort.Protocol, proto) {
-				continue
-			}
-
-			var targetPort int32
-
-			if port.Name == "" {
-				// port.Name is optional if there is only one port
-				targetPort = epPort.Port
-				matchedPortNameFound = true
-			} else if port.Name == epPort.Name {
-				targetPort = epPort.Port
-				matchedPortNameFound = true
-			}
-
-			if i == len(ss.Ports)-1 && !matchedPortNameFound && port.TargetPort.Type == intstr.Int {
-				// use service target port if it's a number and no port name matched
-				// https://github.com/kubernetes/ingress-nginx/issues/7390
-				targetPort = port.TargetPort.IntVal
-			}
-
-			if targetPort <= 0 {
-				continue
-			}
-
-			for _, epAddress := range ss.Addresses {
-				ep := net.JoinHostPort(epAddress.IP, strconv.Itoa(int(targetPort)))
-				if _, exists := processedUpstreamServers[ep]; exists {
+	// loop over all endpointSlices generated for service
+	for _, eps := range epss {
+		var ports []int32
+		if len(eps.Ports) == 0 {
+			// When ports is empty, it indicates that there are no defined ports, using svc targePort <- this could be wrong
+			klog.V(3).Infof("No ports found on endpointSlice, using service TargetPort %v for Service %q", port.String(), svcKey)
+			ports = append(ports, port.TargetPort.IntVal)
+		} else {
+			for _, epPort := range eps.Ports {
+				if !reflect.DeepEqual(*epPort.Protocol, proto) {
 					continue
 				}
-				ups := ingress.Endpoint{
-					Address: epAddress.IP,
-					Port:    fmt.Sprintf("%v", targetPort),
-					Target:  epAddress.TargetRef,
+				var targetPort int32 = 0
+				if port.Name == "" {
+					// port.Name is optional if there is only one port
+					targetPort = *epPort.Port
+				} else if port.Name == *epPort.Name {
+					targetPort = *epPort.Port
+				}
+				if targetPort == 0 && port.TargetPort.Type == intstr.Int {
+					// use service target port if it's a number and no port name matched
+					// https://github.com/kubernetes/ingress-nginx/issues/7390
+					targetPort = port.TargetPort.IntVal
+				}
+				if targetPort == 0 {
+					continue
+				}
+				ports = append(ports, targetPort)
+			}
+		}
+		for _, ep := range eps.Endpoints {
+			if !(*ep.Conditions.Ready) {
+				continue
+			}
+
+			// ep.Hints
+
+			for _, epPort := range ports {
+				for _, epAddress := range ep.Addresses {
+					hostPort := net.JoinHostPort(epAddress, strconv.Itoa(int(epPort)))
+					if _, exists := processedUpstreamServers[hostPort]; exists {
+						continue
+					}
+					ups := ingress.Endpoint{
+						Address: epAddress,
+						Port:    fmt.Sprintf("%v", epPort),
+						Target:  ep.TargetRef,
+					}
+					upsServers = append(upsServers, ups)
+					processedUpstreamServers[hostPort] = struct{}{}
 				}
-				upsServers = append(upsServers, ups)
-				processedUpstreamServers[ep] = struct{}{}
 			}
 		}
 	}
diff --git a/internal/ingress/controller/endpoints_test.go b/internal/ingress/controller/endpointslices_test.go
similarity index 50%
rename from internal/ingress/controller/endpoints_test.go
rename to internal/ingress/controller/endpointslices_test.go
index f38ffabe7..e404c4949 100644
--- a/internal/ingress/controller/endpoints_test.go
+++ b/internal/ingress/controller/endpointslices_test.go
@@ -21,17 +21,19 @@ import (
 	"testing"
 
 	corev1 "k8s.io/api/core/v1"
+	discoveryv1 "k8s.io/api/discovery/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/util/intstr"
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
-func TestGetEndpoints(t *testing.T) {
+func TestGetEndpointsFromSlices(t *testing.T) {
 	tests := []struct {
 		name   string
 		svc    *corev1.Service
 		port   *corev1.ServicePort
 		proto  corev1.Protocol
-		fn     func(string) (*corev1.Endpoints, error)
+		fn     func(string) ([]*discoveryv1.EndpointSlice, error)
 		result []ingress.Endpoint
 	}{
 		{
@@ -39,7 +41,7 @@ func TestGetEndpoints(t *testing.T) {
 			nil,
 			nil,
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return nil, nil
 			},
 			[]ingress.Endpoint{},
@@ -49,7 +51,7 @@ func TestGetEndpoints(t *testing.T) {
 			&corev1.Service{},
 			nil,
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return nil, nil
 			},
 			[]ingress.Endpoint{},
@@ -59,8 +61,8 @@ func TestGetEndpoints(t *testing.T) {
 			&corev1.Service{},
 			&corev1.ServicePort{Name: "default"},
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
-				return &corev1.Endpoints{}, nil
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{}, nil
 			},
 			[]ingress.Endpoint{},
 		},
@@ -73,8 +75,8 @@ func TestGetEndpoints(t *testing.T) {
 			},
 			&corev1.ServicePort{Name: "default"},
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
-				return &corev1.Endpoints{}, nil
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{}, nil
 			},
 			[]ingress.Endpoint{},
 		},
@@ -97,8 +99,8 @@ func TestGetEndpoints(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
-				return &corev1.Endpoints{}, nil
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{}, nil
 			},
 			[]ingress.Endpoint{},
 		},
@@ -121,8 +123,8 @@ func TestGetEndpoints(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
-				return &corev1.Endpoints{}, nil
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{}, nil
 			},
 			[]ingress.Endpoint{},
 		},
@@ -145,8 +147,8 @@ func TestGetEndpoints(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
-				return &corev1.Endpoints{}, nil
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{}, nil
 			},
 			[]ingress.Endpoint{
 				{
@@ -174,8 +176,8 @@ func TestGetEndpoints(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
-				return &corev1.Endpoints{}, nil
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{}, nil
 			},
 			[]ingress.Endpoint{
 				{
@@ -203,8 +205,8 @@ func TestGetEndpoints(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
-				return &corev1.Endpoints{}, nil
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{}, nil
 			},
 			[]ingress.Endpoint{},
 		},
@@ -227,7 +229,7 @@ func TestGetEndpoints(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return nil, fmt.Errorf("unexpected error")
 			},
 			[]ingress.Endpoint{},
@@ -251,25 +253,27 @@ func TestGetEndpoints(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
-				nodeName := "dummy"
-				return &corev1.Endpoints{
-					Subsets: []corev1.EndpointSubset{
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{{
+					ObjectMeta: metav1.ObjectMeta{
+						Labels: map[string]string{discoveryv1.LabelServiceName: "default"},
+					},
+					Endpoints: []discoveryv1.Endpoint{
 						{
-							Addresses: []corev1.EndpointAddress{
-								{
-									IP:       "1.1.1.1",
-									NodeName: &nodeName,
-								},
-							},
-							Ports: []corev1.EndpointPort{
-								{
-									Protocol: corev1.ProtocolUDP,
-								},
+							Addresses: []string{"1.1.1.1"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{true}[0],
 							},
 						},
 					},
-				}, nil
+					Ports: []discoveryv1.EndpointPort{
+						{
+							Name:     &[]string{""}[0],
+							Port:     &[]int32{80}[0],
+							Protocol: &[]corev1.Protocol{corev1.ProtocolUDP}[0],
+						},
+					},
+				}}, nil
 			},
 			[]ingress.Endpoint{},
 		},
@@ -292,30 +296,32 @@ func TestGetEndpoints(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
-				nodeName := "dummy"
-				return &corev1.Endpoints{
-					Subsets: []corev1.EndpointSubset{
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{{
+					ObjectMeta: metav1.ObjectMeta{
+						Labels: map[string]string{discoveryv1.LabelServiceName: "default"},
+					},
+					Endpoints: []discoveryv1.Endpoint{
 						{
-							NotReadyAddresses: []corev1.EndpointAddress{
-								{
-									IP:       "1.1.1.1",
-									NodeName: &nodeName,
-								},
-							},
-							Ports: []corev1.EndpointPort{
-								{
-									Protocol: corev1.ProtocolUDP,
-								},
+							Addresses: []string{"1.1.1.1"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{false}[0],
 							},
 						},
 					},
-				}, nil
+					Ports: []discoveryv1.EndpointPort{
+						{
+							Name:     &[]string{""}[0],
+							Port:     &[]int32{80}[0],
+							Protocol: &[]corev1.Protocol{corev1.ProtocolTCP}[0],
+						},
+					},
+				}}, nil
 			},
 			[]ingress.Endpoint{},
 		},
 		{
-			"should return no endpoint when the name of the port name do not match any port in the endpoint Subsets and TargetPort is string",
+			"should return no endpoint when the name of the port name do not match any port in the endpointPort and TargetPort is string",
 			&corev1.Service{
 				Spec: corev1.ServiceSpec{
 					Type:      corev1.ServiceTypeClusterIP,
@@ -333,32 +339,32 @@ func TestGetEndpoints(t *testing.T) {
 				TargetPort: intstr.FromString("port-1"),
 			},
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
-				nodeName := "dummy"
-				return &corev1.Endpoints{
-					Subsets: []corev1.EndpointSubset{
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{{
+					ObjectMeta: metav1.ObjectMeta{
+						Labels: map[string]string{discoveryv1.LabelServiceName: "default"},
+					},
+					Endpoints: []discoveryv1.Endpoint{
 						{
-							Addresses: []corev1.EndpointAddress{
-								{
-									IP:       "1.1.1.1",
-									NodeName: &nodeName,
-								},
-							},
-							Ports: []corev1.EndpointPort{
-								{
-									Protocol: corev1.ProtocolTCP,
-									Port:     int32(80),
-									Name:     "another-name",
-								},
+							Addresses: []string{"1.1.1.1"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{true}[0],
 							},
 						},
 					},
-				}, nil
+					Ports: []discoveryv1.EndpointPort{
+						{
+							Protocol: &[]corev1.Protocol{corev1.ProtocolTCP}[0],
+							Port:     &[]int32{80}[0],
+							Name:     &[]string{"another-name"}[0],
+						},
+					},
+				}}, nil
 			},
 			[]ingress.Endpoint{},
 		},
 		{
-			"should return one endpoint when the name of the port name do not match any port in the endpoint Subsets and TargetPort is int",
+			"should return one endpoint when the name of the port name do not match any port in the endpointPort and TargetPort is int",
 			&corev1.Service{
 				Spec: corev1.ServiceSpec{
 					Type:      corev1.ServiceTypeClusterIP,
@@ -376,27 +382,27 @@ func TestGetEndpoints(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
-				nodeName := "dummy"
-				return &corev1.Endpoints{
-					Subsets: []corev1.EndpointSubset{
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{{
+					ObjectMeta: metav1.ObjectMeta{
+						Labels: map[string]string{discoveryv1.LabelServiceName: "default"},
+					},
+					Endpoints: []discoveryv1.Endpoint{
 						{
-							Addresses: []corev1.EndpointAddress{
-								{
-									IP:       "1.1.1.1",
-									NodeName: &nodeName,
-								},
-							},
-							Ports: []corev1.EndpointPort{
-								{
-									Protocol: corev1.ProtocolTCP,
-									Port:     int32(80),
-									Name:     "another-name",
-								},
+							Addresses: []string{"1.1.1.1"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{true}[0],
 							},
 						},
 					},
-				}, nil
+					Ports: []discoveryv1.EndpointPort{
+						{
+							Protocol: &[]corev1.Protocol{corev1.ProtocolTCP}[0],
+							Port:     &[]int32{80}[0],
+							Name:     &[]string{"another-name"}[0],
+						},
+					},
+				}}, nil
 			},
 			[]ingress.Endpoint{
 				{
@@ -406,7 +412,7 @@ func TestGetEndpoints(t *testing.T) {
 			},
 		},
 		{
-			"should return one endpoint when the name of the port name match a port in the endpoint Subsets",
+			"should return one endpoint when the name of the port name match a port in the endpointPort",
 			&corev1.Service{
 				Spec: corev1.ServiceSpec{
 					Type:      corev1.ServiceTypeClusterIP,
@@ -424,25 +430,169 @@ func TestGetEndpoints(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
-				nodeName := "dummy"
-				return &corev1.Endpoints{
-					Subsets: []corev1.EndpointSubset{
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{{
+					ObjectMeta: metav1.ObjectMeta{
+						Labels: map[string]string{discoveryv1.LabelServiceName: "default"},
+					},
+					Endpoints: []discoveryv1.Endpoint{
 						{
-							Addresses: []corev1.EndpointAddress{
-								{
-									IP:       "1.1.1.1",
-									NodeName: &nodeName,
+							Addresses: []string{"1.1.1.1"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{true}[0],
+							},
+						},
+					},
+					Ports: []discoveryv1.EndpointPort{
+						{
+							Protocol: &[]corev1.Protocol{corev1.ProtocolTCP}[0],
+							Port:     &[]int32{80}[0],
+							Name:     &[]string{"default"}[0],
+						},
+					},
+				}}, nil
+			},
+			[]ingress.Endpoint{
+				{
+					Address: "1.1.1.1",
+					Port:    "80",
+				},
+			},
+		},
+		{
+			"should return two endpoints when the name of the port name match a port in the endpointPort",
+			&corev1.Service{
+				Spec: corev1.ServiceSpec{
+					Type:      corev1.ServiceTypeClusterIP,
+					ClusterIP: "1.1.1.1",
+					Ports: []corev1.ServicePort{
+						{
+							Name:       "default",
+							TargetPort: intstr.FromInt(80),
+						},
+					},
+				},
+			},
+			&corev1.ServicePort{
+				Name:       "default",
+				TargetPort: intstr.FromString("port-1"),
+			},
+			corev1.ProtocolTCP,
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{
+					{
+						ObjectMeta: metav1.ObjectMeta{
+							Labels: map[string]string{discoveryv1.LabelServiceName: "default"},
+						},
+						Endpoints: []discoveryv1.Endpoint{
+							{
+								Addresses: []string{"1.1.1.1"},
+								Conditions: discoveryv1.EndpointConditions{
+									Ready: &[]bool{true}[0],
 								},
 							},
-							Ports: []corev1.EndpointPort{
-								{
-									Protocol: corev1.ProtocolTCP,
-									Port:     int32(80),
-									Name:     "default",
+						},
+						Ports: []discoveryv1.EndpointPort{
+							{
+								Protocol: &[]corev1.Protocol{corev1.ProtocolTCP}[0],
+								Port:     &[]int32{80}[0],
+								Name:     &[]string{"default"}[0],
+							},
+						},
+					},
+					{
+						ObjectMeta: metav1.ObjectMeta{
+							Labels: map[string]string{discoveryv1.LabelServiceName: "default"},
+						},
+						Endpoints: []discoveryv1.Endpoint{
+							{
+								Addresses: []string{"2.2.2.2"},
+								Conditions: discoveryv1.EndpointConditions{
+									Ready: &[]bool{true}[0],
 								},
 							},
 						},
+						Ports: []discoveryv1.EndpointPort{
+							{
+								Protocol: &[]corev1.Protocol{corev1.ProtocolTCP}[0],
+								Port:     &[]int32{80}[0],
+								Name:     &[]string{"default"}[0],
+							},
+						},
+					},
+				}, nil
+			},
+			[]ingress.Endpoint{
+				{
+					Address: "1.1.1.1",
+					Port:    "80",
+				},
+				{
+					Address: "2.2.2.2",
+					Port:    "80",
+				},
+			},
+		},
+		{
+			"should return one endpoints when the name of the port name match a port in the endpointPort",
+			&corev1.Service{
+				Spec: corev1.ServiceSpec{
+					Type:      corev1.ServiceTypeClusterIP,
+					ClusterIP: "1.1.1.1",
+					Ports: []corev1.ServicePort{
+						{
+							Name:       "default",
+							TargetPort: intstr.FromInt(80),
+						},
+					},
+				},
+			},
+			&corev1.ServicePort{
+				Name:       "port-1",
+				TargetPort: intstr.FromString("port-1"),
+			},
+			corev1.ProtocolTCP,
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{
+					{
+						ObjectMeta: metav1.ObjectMeta{
+							Labels: map[string]string{discoveryv1.LabelServiceName: "default"},
+						},
+						Endpoints: []discoveryv1.Endpoint{
+							{
+								Addresses: []string{"1.1.1.1"},
+								Conditions: discoveryv1.EndpointConditions{
+									Ready: &[]bool{true}[0],
+								},
+							},
+						},
+						Ports: []discoveryv1.EndpointPort{
+							{
+								Protocol: &[]corev1.Protocol{corev1.ProtocolTCP}[0],
+								Port:     &[]int32{80}[0],
+								Name:     &[]string{"port-1"}[0],
+							},
+						},
+					},
+					{
+						ObjectMeta: metav1.ObjectMeta{
+							Labels: map[string]string{discoveryv1.LabelServiceName: "default"},
+						},
+						Endpoints: []discoveryv1.Endpoint{
+							{
+								Addresses: []string{"2.2.2.2"},
+								Conditions: discoveryv1.EndpointConditions{
+									Ready: &[]bool{true}[0],
+								},
+							},
+						},
+						Ports: []discoveryv1.EndpointPort{
+							{
+								Protocol: &[]corev1.Protocol{corev1.ProtocolTCP}[0],
+								Port:     &[]int32{80}[0],
+								Name:     &[]string{"another-name"}[0],
+							},
+						},
 					},
 				}, nil
 			},
@@ -454,7 +604,7 @@ func TestGetEndpoints(t *testing.T) {
 			},
 		},
 		{
-			"should return one endpoint when the name of the port name match more than one port in the endpoint Subsets",
+			"should return one endpoint when the name of the port name match more than one port in the endpointPort",
 			&corev1.Service{
 				Spec: corev1.ServiceSpec{
 					Type:      corev1.ServiceTypeClusterIP,
@@ -472,32 +622,32 @@ func TestGetEndpoints(t *testing.T) {
 				TargetPort: intstr.FromString("port-1"),
 			},
 			corev1.ProtocolTCP,
-			func(string) (*corev1.Endpoints, error) {
-				nodeName := "dummy"
-				return &corev1.Endpoints{
-					Subsets: []corev1.EndpointSubset{
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{{
+					ObjectMeta: metav1.ObjectMeta{
+						Labels: map[string]string{discoveryv1.LabelServiceName: "default"},
+					},
+					Endpoints: []discoveryv1.Endpoint{
 						{
-							Addresses: []corev1.EndpointAddress{
-								{
-									IP:       "1.1.1.1",
-									NodeName: &nodeName,
-								},
-							},
-							Ports: []corev1.EndpointPort{
-								{
-									Name:     "port-1",
-									Protocol: corev1.ProtocolTCP,
-									Port:     80,
-								},
-								{
-									Name:     "port-1",
-									Protocol: corev1.ProtocolTCP,
-									Port:     80,
-								},
+							Addresses: []string{"1.1.1.1"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{true}[0],
 							},
 						},
 					},
-				}, nil
+					Ports: []discoveryv1.EndpointPort{
+						{
+							Protocol: &[]corev1.Protocol{corev1.ProtocolTCP}[0],
+							Port:     &[]int32{80}[0],
+							Name:     &[]string{"port-1"}[0],
+						},
+						{
+							Protocol: &[]corev1.Protocol{corev1.ProtocolTCP}[0],
+							Port:     &[]int32{80}[0],
+							Name:     &[]string{"port-2"}[0],
+						},
+					},
+				}}, nil
 			},
 			[]ingress.Endpoint{
 				{
@@ -510,7 +660,7 @@ func TestGetEndpoints(t *testing.T) {
 
 	for _, testCase := range tests {
 		t.Run(testCase.name, func(t *testing.T) {
-			result := getEndpoints(testCase.svc, testCase.port, testCase.proto, testCase.fn)
+			result := getEndpointsFromSlices(testCase.svc, testCase.port, testCase.proto, testCase.fn)
 			if len(testCase.result) != len(result) {
 				t.Errorf("Expected %d Endpoints but got %d", len(testCase.result), len(result))
 			}
diff --git a/internal/ingress/controller/store/endpoint.go b/internal/ingress/controller/store/endpoint.go
deleted file mode 100644
index ff6fbd715..000000000
--- a/internal/ingress/controller/store/endpoint.go
+++ /dev/null
@@ -1,39 +0,0 @@
-/*
-Copyright 2015 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package store
-
-import (
-	apiv1 "k8s.io/api/core/v1"
-	"k8s.io/client-go/tools/cache"
-)
-
-// EndpointLister makes a Store that lists Endpoints.
-type EndpointLister struct {
-	cache.Store
-}
-
-// ByKey returns the Endpoints of the Service matching key in the local Endpoint Store.
-func (s *EndpointLister) ByKey(key string) (*apiv1.Endpoints, error) {
-	eps, exists, err := s.GetByKey(key)
-	if err != nil {
-		return nil, err
-	}
-	if !exists {
-		return nil, NotExistsError(key)
-	}
-	return eps.(*apiv1.Endpoints), nil
-}
diff --git a/internal/ingress/controller/store/endpoint_test.go b/internal/ingress/controller/store/endpoint_test.go
deleted file mode 100644
index 6c8ae40e2..000000000
--- a/internal/ingress/controller/store/endpoint_test.go
+++ /dev/null
@@ -1,66 +0,0 @@
-/*
-Copyright 2017 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package store
-
-import (
-	apiv1 "k8s.io/api/core/v1"
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-	"k8s.io/client-go/tools/cache"
-	"testing"
-)
-
-func newEndpointLister(t *testing.T) *EndpointLister {
-	t.Helper()
-
-	return &EndpointLister{Store: cache.NewStore(cache.MetaNamespaceKeyFunc)}
-}
-
-func TestEndpointLister(t *testing.T) {
-	t.Run("the key does not exist", func(t *testing.T) {
-		el := newEndpointLister(t)
-
-		key := "namespace/endpoint"
-		_, err := el.ByKey(key)
-
-		if err == nil {
-			t.Error("expected an error but nothing has been returned")
-		}
-
-		if _, ok := err.(NotExistsError); !ok {
-			t.Errorf("expected NotExistsError, got %v", err)
-		}
-	})
-
-	t.Run("the key exists", func(t *testing.T) {
-		el := newEndpointLister(t)
-
-		key := "namespace/endpoint"
-		endpoint := &apiv1.Endpoints{ObjectMeta: metav1.ObjectMeta{Namespace: "namespace", Name: "endpoint"}}
-
-		el.Add(endpoint)
-
-		e, err := el.ByKey(key)
-
-		if err != nil {
-			t.Errorf("unexpeted error %v", err)
-		}
-
-		if e != endpoint {
-			t.Errorf("expected %v, error, got %v", e, endpoint)
-		}
-	})
-}
diff --git a/internal/ingress/controller/store/endpointslice.go b/internal/ingress/controller/store/endpointslice.go
new file mode 100644
index 000000000..fdd7374e9
--- /dev/null
+++ b/internal/ingress/controller/store/endpointslice.go
@@ -0,0 +1,55 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package store
+
+import (
+	"fmt"
+	"strings"
+
+	discoveryv1 "k8s.io/api/discovery/v1"
+	"k8s.io/client-go/tools/cache"
+)
+
+// EndpointSliceLister makes a Store that lists Endpoints.
+type EndpointSliceLister struct {
+	cache.Store
+}
+
+// MatchByKey returns the EndpointsSlices of the Service matching key in the local Endpoint Store.
+func (s *EndpointSliceLister) MatchByKey(key string) ([]*discoveryv1.EndpointSlice, error) {
+	var eps []*discoveryv1.EndpointSlice
+	// filter endpointSlices owned by svc
+	for _, listKey := range s.ListKeys() {
+		if !strings.HasPrefix(listKey, key) {
+			continue
+		}
+		epss, exists, err := s.GetByKey(listKey)
+		if exists && err == nil {
+			// check for svc owner label
+			if svcName, ok := epss.(*discoveryv1.EndpointSlice).ObjectMeta.GetLabels()[discoveryv1.LabelServiceName]; ok {
+				namespace := epss.(*discoveryv1.EndpointSlice).ObjectMeta.GetNamespace()
+				if key == fmt.Sprintf("%s/%s", namespace, svcName) {
+					eps = append(eps, epss.(*discoveryv1.EndpointSlice))
+				}
+			}
+		}
+	}
+	if len(eps) == 0 {
+		return nil, NotExistsError(key)
+	}
+	return eps, nil
+}
diff --git a/internal/ingress/controller/store/endpointslice_test.go b/internal/ingress/controller/store/endpointslice_test.go
new file mode 100644
index 000000000..fdc51c0e4
--- /dev/null
+++ b/internal/ingress/controller/store/endpointslice_test.go
@@ -0,0 +1,94 @@
+/*
+Copyright 2017 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package store
+
+import (
+	"testing"
+
+	discoveryv1 "k8s.io/api/discovery/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/client-go/tools/cache"
+)
+
+func newEndpointSliceLister(t *testing.T) *EndpointSliceLister {
+	t.Helper()
+
+	return &EndpointSliceLister{Store: cache.NewStore(cache.MetaNamespaceKeyFunc)}
+}
+
+func TestEndpointSliceLister(t *testing.T) {
+	t.Run("the key does not exist", func(t *testing.T) {
+		el := newEndpointSliceLister(t)
+
+		key := "namespace/svcname"
+		_, err := el.MatchByKey(key)
+
+		if err == nil {
+			t.Error("expected an error but nothing has been returned")
+		}
+
+		if _, ok := err.(NotExistsError); !ok {
+			t.Errorf("expected NotExistsError, got %v", err)
+		}
+	})
+	t.Run("the key exists", func(t *testing.T) {
+		el := newEndpointSliceLister(t)
+
+		key := "namespace/svcname"
+		endpointSlice := &discoveryv1.EndpointSlice{
+			ObjectMeta: metav1.ObjectMeta{
+				Namespace: "namespace",
+				Name:      "anothername-foo",
+				Labels: map[string]string{
+					discoveryv1.LabelServiceName: "svcname",
+				},
+			},
+		}
+		el.Add(endpointSlice)
+		endpointSlice = &discoveryv1.EndpointSlice{
+			ObjectMeta: metav1.ObjectMeta{
+				Namespace: "namespace",
+				Name:      "svcname-bar",
+				Labels: map[string]string{
+					discoveryv1.LabelServiceName: "othersvc",
+				},
+			},
+		}
+		el.Add(endpointSlice)
+		endpointSlice = &discoveryv1.EndpointSlice{
+			ObjectMeta: metav1.ObjectMeta{
+				Namespace: "namespace",
+				Name:      "svcname-buz",
+				Labels: map[string]string{
+					discoveryv1.LabelServiceName: "svcname",
+				},
+			},
+		}
+		el.Add(endpointSlice)
+		eps, err := el.MatchByKey(key)
+
+		if err != nil {
+			t.Errorf("unexpeted error %v", err)
+		}
+		if err == nil && len(eps) != 1 {
+			t.Errorf("expected one slice %v, error, got %d slices", endpointSlice, len(eps))
+		}
+		if len(eps) > 0 && eps[0].GetName() != endpointSlice.GetName() {
+			t.Errorf("expected %v, error, got %v", endpointSlice.GetName(), eps[0].GetName())
+		}
+	})
+}
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 239fbaaf5..7913eb0de 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -29,6 +29,7 @@ import (
 
 	"github.com/eapache/channels"
 	corev1 "k8s.io/api/core/v1"
+	discoveryv1 "k8s.io/api/discovery/v1"
 	networkingv1 "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/fields"
@@ -78,8 +79,8 @@ type Storer interface {
 	// GetService returns the Service matching key.
 	GetService(key string) (*corev1.Service, error)
 
-	// GetServiceEndpoints returns the Endpoints of a Service matching key.
-	GetServiceEndpoints(key string) (*corev1.Endpoints, error)
+	// GetServiceEndpointsSlices returns the EndpointSlices of a Service matching key.
+	GetServiceEndpointsSlices(key string) ([]*discoveryv1.EndpointSlice, error)
 
 	// ListIngresses returns a list of all Ingresses in the store.
 	ListIngresses() []*ingress.Ingress
@@ -127,13 +128,13 @@ type Event struct {
 
 // Informer defines the required SharedIndexInformers that interact with the API server.
 type Informer struct {
-	Ingress      cache.SharedIndexInformer
-	IngressClass cache.SharedIndexInformer
-	Endpoint     cache.SharedIndexInformer
-	Service      cache.SharedIndexInformer
-	Secret       cache.SharedIndexInformer
-	ConfigMap    cache.SharedIndexInformer
-	Namespace    cache.SharedIndexInformer
+	Ingress       cache.SharedIndexInformer
+	IngressClass  cache.SharedIndexInformer
+	EndpointSlice cache.SharedIndexInformer
+	Service       cache.SharedIndexInformer
+	Secret        cache.SharedIndexInformer
+	ConfigMap     cache.SharedIndexInformer
+	Namespace     cache.SharedIndexInformer
 }
 
 // Lister contains object listers (stores).
@@ -141,7 +142,7 @@ type Lister struct {
 	Ingress               IngressLister
 	IngressClass          IngressClassLister
 	Service               ServiceLister
-	Endpoint              EndpointLister
+	EndpointSlice         EndpointSliceLister
 	Secret                SecretLister
 	ConfigMap             ConfigMapLister
 	Namespace             NamespaceLister
@@ -159,7 +160,7 @@ func (e NotExistsError) Error() string {
 // Run initiates the synchronization of the informers against the API server.
 func (i *Informer) Run(stopCh chan struct{}) {
 	go i.Secret.Run(stopCh)
-	go i.Endpoint.Run(stopCh)
+	go i.EndpointSlice.Run(stopCh)
 	if i.IngressClass != nil {
 		go i.IngressClass.Run(stopCh)
 	}
@@ -169,7 +170,6 @@ func (i *Informer) Run(stopCh chan struct{}) {
 	// wait for all involved caches to be synced before processing items
 	// from the queue
 	if !cache.WaitForCacheSync(stopCh,
-		i.Endpoint.HasSynced,
 		i.Service.HasSynced,
 		i.Secret.HasSynced,
 		i.ConfigMap.HasSynced,
@@ -330,8 +330,8 @@ func New(
 		store.listers.IngressClass.Store = cache.NewStore(cache.MetaNamespaceKeyFunc)
 	}
 
-	store.informers.Endpoint = infFactory.Core().V1().Endpoints().Informer()
-	store.listers.Endpoint.Store = store.informers.Endpoint.GetStore()
+	store.informers.EndpointSlice = infFactory.Discovery().V1().EndpointSlices().Informer()
+	store.listers.EndpointSlice.Store = store.informers.EndpointSlice.GetStore()
 
 	store.informers.Secret = infFactorySecrets.Core().V1().Secrets().Informer()
 	store.listers.Secret.Store = store.informers.Secret.GetStore()
@@ -673,7 +673,7 @@ func New(
 		},
 	}
 
-	epEventHandler := cache.ResourceEventHandlerFuncs{
+	epsEventHandler := cache.ResourceEventHandlerFuncs{
 		AddFunc: func(obj interface{}) {
 			updateCh.In() <- Event{
 				Type: CreateEvent,
@@ -687,9 +687,9 @@ func New(
 			}
 		},
 		UpdateFunc: func(old, cur interface{}) {
-			oep := old.(*corev1.Endpoints)
-			cep := cur.(*corev1.Endpoints)
-			if !reflect.DeepEqual(cep.Subsets, oep.Subsets) {
+			oeps := old.(*discoveryv1.EndpointSlice)
+			ceps := cur.(*discoveryv1.EndpointSlice)
+			if !reflect.DeepEqual(ceps.Endpoints, oeps.Endpoints) {
 				updateCh.In() <- Event{
 					Type: UpdateEvent,
 					Obj:  cur,
@@ -796,7 +796,7 @@ func New(
 	if !icConfig.IgnoreIngressClass {
 		store.informers.IngressClass.AddEventHandler(ingressClassEventHandler)
 	}
-	store.informers.Endpoint.AddEventHandler(epEventHandler)
+	store.informers.EndpointSlice.AddEventHandler(epsEventHandler)
 	store.informers.Secret.AddEventHandler(secrEventHandler)
 	store.informers.ConfigMap.AddEventHandler(cmEventHandler)
 	store.informers.Service.AddEventHandler(serviceHandler)
@@ -1044,9 +1044,8 @@ func (s *k8sStore) GetConfigMap(key string) (*corev1.ConfigMap, error) {
 	return s.listers.ConfigMap.ByKey(key)
 }
 
-// GetServiceEndpoints returns the Endpoints of a Service matching key.
-func (s *k8sStore) GetServiceEndpoints(key string) (*corev1.Endpoints, error) {
-	return s.listers.Endpoint.ByKey(key)
+func (s *k8sStore) GetServiceEndpointsSlices(key string) ([]*discoveryv1.EndpointSlice, error) {
+	return s.listers.EndpointSlice.MatchByKey(key)
 }
 
 // GetAuthCertificate is used by the auth-tls annotations to get a cert from a secret

From 67f7d3da63ba723c2d5f8f2d1dacd40a72a248c2 Mon Sep 17 00:00:00 2001
From: Wilmar den Ouden <wilmardo@users.noreply.github.com>
Date: Sat, 24 Sep 2022 13:38:05 +0200
Subject: [PATCH 0382/1641] fix: do not apply job-patch psp on Kubernetes 1.25
 and newer (#9074)

* fix: do not apply job-patch psp on Kubernetes 1.25 and newer

Signed-off-by: wilmarguida <w.denouden@guida.nl>

* fix: bump kubernetes version for helm chart CI to 1.25.0

Signed-off-by: wilmarguida <w.denouden@guida.nl>

Signed-off-by: wilmarguida <w.denouden@guida.nl>
---
 .github/workflows/ci.yaml                                       | 2 +-
 .../templates/admission-webhooks/job-patch/psp.yaml             | 2 ++
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 9d7941ab5..fc106b495 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -175,7 +175,7 @@ jobs:
         uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
         with:
           version: v0.15.0
-          image: kindest/node:v1.24.4
+          image: kindest/node:v1.25.0
 
       - uses: geekyeggo/delete-artifact@b73cb986740e466292a536d0e32e2666c56fdeb3 # v1
         with:
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml
index 70edde334..e19c95572 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml
@@ -1,3 +1,4 @@
+{{- if (semverCompare "<1.25.0-0" .Capabilities.KubeVersion.Version) }}
 {{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled .Values.podSecurityPolicy.enabled (empty .Values.controller.admissionWebhooks.existingPsp) -}}
 apiVersion: policy/v1beta1
 kind: PodSecurityPolicy
@@ -37,3 +38,4 @@ spec:
   - secret
   - downwardAPI
 {{- end }}
+{{- end }}

From 2af4fec0552064e4462437faa291cfd5e69193f7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 24 Sep 2022 08:02:04 -0700
Subject: [PATCH 0383/1641] Bump github/codeql-action from 2.1.24 to 2.1.25
 (#9083)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.24 to 2.1.25.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/904260d7d935dff982205cbdb42025ce30b7a34f...86f3159a697a097a813ad9bfa0002412d97690a4)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 84cc87e1d..e903a2783 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@904260d7d935dff982205cbdb42025ce30b7a34f # v2.1.14
+        uses: github/codeql-action/upload-sarif@86f3159a697a097a813ad9bfa0002412d97690a4 # v2.1.14
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 8377b3ad0..0ef654160 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@904260d7d935dff982205cbdb42025ce30b7a34f
+      uses: github/codeql-action/upload-sarif@86f3159a697a097a813ad9bfa0002412d97690a4
       with:
         token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository

From f192ffe302f060c4357fe8d05c78dc8e77356a97 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 24 Sep 2022 08:04:03 -0700
Subject: [PATCH 0384/1641] Bump actions/dependency-review-action from 2.1.0 to
 2.4.0 (#9085)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 2.1.0 to 2.4.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/23d1ffffb6fa5401173051ec21eba8c35242733f...375c5370086bfff256c37f8beec0f437e2e72ae1)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index b16d44681..d69c1a0c8 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b #v3.0.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@23d1ffffb6fa5401173051ec21eba8c35242733f #v2.0.2
+        uses: actions/dependency-review-action@375c5370086bfff256c37f8beec0f437e2e72ae1 #v2.0.2

From cd151e3db8bd4f884511d229c2134e89f3c22a98 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 24 Sep 2022 17:48:04 -0700
Subject: [PATCH 0385/1641] Bump actions/checkout from 1 to 3 (#9084)

Bumps [actions/checkout](https://github.com/actions/checkout) from 1 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v1...2541b1294d2704b0964813337f33b291d3f8596b)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/perftest.yaml  | 2 +-
 .github/workflows/scorecards.yml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index aeda0425e..d498a216a 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -18,7 +18,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@v1
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
  
       - name: Install K6
         run: |
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index e903a2783..2e13deea0 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -25,7 +25,7 @@ jobs:
     
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@a12a3943b4bdde767164f792f33f40b04645d846 # v3.0.0
+        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.0
         with:
           persist-credentials: false
 

From 855bcbce344c5472dacde7ba01276f53366dbb43 Mon Sep 17 00:00:00 2001
From: Nicolas Julian <33948000+nicolasjulian@users.noreply.github.com>
Date: Tue, 27 Sep 2022 20:59:51 +0700
Subject: [PATCH 0386/1641] Update Version ModSecurity and Coreruleset (#9086)

This is related to some new bugs that found in LiveHackingEvent 1337up0522. The latest coreruleset need *ModSecurity version 2.9.6 or 3.0.8*

- https://terjanq.medium.com/waf-bypasses-via-0days-d4ef1f212ec
- https://coreruleset.org/20220920/crs-version-3-3-4-and-3-2-3/
- https://coreruleset.org/20220919/crs-version-3-3-3-and-3-2-2-covering-several-cves/
- https://github.com/coreruleset/coreruleset/releases/tag/v3.3.4
---
 images/nginx/rootfs/build.sh | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index f3efb3663..75d765e78 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -60,10 +60,10 @@ export DATADOG_CPP_VERSION=1.3.2
 export MODSECURITY_VERSION=1.0.2
 
 # Check for recent changes: https://github.com/SpiderLabs/ModSecurity/compare/v3.0.5...v3/master
-export MODSECURITY_LIB_VERSION=v3.0.5
+export MODSECURITY_LIB_VERSION=v3.0.8
 
 # Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.2...v3.3/master
-export OWASP_MODSECURITY_CRS_VERSION=v3.3.2
+export OWASP_MODSECURITY_CRS_VERSION=v3.3.4
 
 # Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.20...master
 export LUA_NGX_VERSION=b721656a9127255003b696b42ccc871c7ec18d59
@@ -548,6 +548,7 @@ Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-912-DOS-PROTECTION.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-913-SCANNER-DETECTION.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-921-PROTOCOL-ATTACK.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-922-MULTIPART-ATTACK.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-931-APPLICATION-ATTACK-RFI.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf

From a3da90f9f5b6eac6b519c241521c99a04669967c Mon Sep 17 00:00:00 2001
From: "Leon(@mediocreDevops)" <leon9923@gmail.com>
Date: Wed, 28 Sep 2022 19:52:35 +0530
Subject: [PATCH 0387/1641] Added a Link to the New Contributors Tips (#9072)

This adds a link to the new contributor tips
in the developer guide present on the docs page

Signed-off-by: afro-coder <leon9923@gmail.com>

Signed-off-by: afro-coder <leon9923@gmail.com>
---
 docs/developer-guide/getting-started.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/docs/developer-guide/getting-started.md b/docs/developer-guide/getting-started.md
index 8d500f147..fbf251790 100644
--- a/docs/developer-guide/getting-started.md
+++ b/docs/developer-guide/getting-started.md
@@ -88,3 +88,6 @@ and then publish such version with
 ```console
 docker push $REGISTRY/controller:$TAG
 ```
+
+### New Contributor Tips
+New contributors can refer to the [new contributor tips](https://github.com/kubernetes/ingress-nginx/blob/main/NEW_CONTRIBUTOR.md) which will be updated with examples and tips.

From 077c0414aa9a36df6ad57735203df382010e666f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 28 Sep 2022 07:24:36 -0700
Subject: [PATCH 0388/1641] Bump k8s.io/component-base from 0.25.1 to 0.25.2
 (#9089)

Bumps [k8s.io/component-base](https://github.com/kubernetes/component-base) from 0.25.1 to 0.25.2.
- [Release notes](https://github.com/kubernetes/component-base/releases)
- [Commits](https://github.com/kubernetes/component-base/compare/v0.25.1...v0.25.2)

---
updated-dependencies:
- dependency-name: k8s.io/component-base
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index ca896babd..471e7749e 100644
--- a/go.mod
+++ b/go.mod
@@ -30,14 +30,14 @@ require (
 	google.golang.org/grpc v1.49.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.25.1
+	k8s.io/api v0.25.2
 	k8s.io/apiextensions-apiserver v0.23.5
-	k8s.io/apimachinery v0.25.1
+	k8s.io/apimachinery v0.25.2
 	k8s.io/apiserver v0.25.0
 	k8s.io/cli-runtime v0.25.0
-	k8s.io/client-go v0.25.1
+	k8s.io/client-go v0.25.2
 	k8s.io/code-generator v0.23.5
-	k8s.io/component-base v0.25.1
+	k8s.io/component-base v0.25.2
 	k8s.io/klog/v2 v2.80.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.11.2
diff --git a/go.sum b/go.sum
index 8127cfbf4..65fb4ee78 100644
--- a/go.sum
+++ b/go.sum
@@ -1134,26 +1134,26 @@ honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 k8s.io/api v0.23.5/go.mod h1:Na4XuKng8PXJ2JsploYYrivXrINeTaycCGcYgF91Xm8=
-k8s.io/api v0.25.1 h1:yL7du50yc93k17nH/Xe9jujAYrcDkI/i5DL1jPz4E3M=
-k8s.io/api v0.25.1/go.mod h1:hh4itDvrWSJsmeUc28rIFNri8MatNAAxJjKcQmhX6TU=
+k8s.io/api v0.25.2 h1:v6G8RyFcwf0HR5jQGIAYlvtRNrxMJQG1xJzaSeVnIS8=
+k8s.io/api v0.25.2/go.mod h1:qP1Rn4sCVFwx/xIhe+we2cwBLTXNcheRyYXwajonhy0=
 k8s.io/apiextensions-apiserver v0.23.5 h1:5SKzdXyvIJKu+zbfPc3kCbWpbxi+O+zdmAJBm26UJqI=
 k8s.io/apiextensions-apiserver v0.23.5/go.mod h1:ntcPWNXS8ZPKN+zTXuzYMeg731CP0heCTl6gYBxLcuQ=
 k8s.io/apimachinery v0.23.5/go.mod h1:BEuFMMBaIbcOqVIJqNZJXGFTP4W6AycEpb5+m/97hrM=
-k8s.io/apimachinery v0.25.1 h1:t0XrnmCEHVgJlR2arwO8Awp9ylluDic706WePaYCBTI=
-k8s.io/apimachinery v0.25.1/go.mod h1:hqqA1X0bsgsxI6dXsJ4HnNTBOmJNxyPp8dw3u2fSHwA=
+k8s.io/apimachinery v0.25.2 h1:WbxfAjCx+AeN8Ilp9joWnyJ6xu9OMeS/fsfjK/5zaQs=
+k8s.io/apimachinery v0.25.2/go.mod h1:hqqA1X0bsgsxI6dXsJ4HnNTBOmJNxyPp8dw3u2fSHwA=
 k8s.io/apiserver v0.23.5/go.mod h1:7wvMtGJ42VRxzgVI7jkbKvMbuCbVbgsWFT7RyXiRNTw=
 k8s.io/apiserver v0.25.0 h1:8kl2ifbNffD440MyvHtPaIz1mw4mGKVgWqM0nL+oyu4=
 k8s.io/apiserver v0.25.0/go.mod h1:BKwsE+PTC+aZK+6OJQDPr0v6uS91/HWxX7evElAH6xo=
 k8s.io/cli-runtime v0.25.0 h1:XBnTc2Fi+w818jcJGzhiJKQuXl8479sZ4FhtV5hVJ1Q=
 k8s.io/cli-runtime v0.25.0/go.mod h1:bHOI5ZZInRHhbq12OdUiYZQN8ml8aKZLwQgt9QlLINw=
 k8s.io/client-go v0.23.5/go.mod h1:flkeinTO1CirYgzMPRWxUCnV0G4Fbu2vLhYCObnt/r4=
-k8s.io/client-go v0.25.1 h1:uFj4AJKtE1/ckcSKz8IhgAuZTdRXZDKev8g387ndD58=
-k8s.io/client-go v0.25.1/go.mod h1:rdFWTLV/uj2C74zGbQzOsmXPUtMAjSf7ajil4iJUNKo=
+k8s.io/client-go v0.25.2 h1:SUPp9p5CwM0yXGQrwYurw9LWz+YtMwhWd0GqOsSiefo=
+k8s.io/client-go v0.25.2/go.mod h1:i7cNU7N+yGQmJkewcRD2+Vuj4iz7b30kI8OcL3horQ4=
 k8s.io/code-generator v0.23.5 h1:xn3a6J5pUL49AoH6SPrOFtnB5cvdMl76f/bEY176R3c=
 k8s.io/code-generator v0.23.5/go.mod h1:S0Q1JVA+kSzTI1oUvbKAxZY/DYbA/ZUb4Uknog12ETk=
 k8s.io/component-base v0.23.5/go.mod h1:c5Nq44KZyt1aLl0IpHX82fhsn84Sb0jjzwjpcA42bY0=
-k8s.io/component-base v0.25.1 h1:Wmj33QwddVwsJFJWmXlf24Nu8do2bGHLabXHrKz7Org=
-k8s.io/component-base v0.25.1/go.mod h1:j78+TFdsKM8RXHfM88oeAdZu2v9qMZdQZOfg0LGW+q4=
+k8s.io/component-base v0.25.2 h1:Nve/ZyHLUBHz1rqwkjXm/Re6IniNa5k7KgzxZpTfSQY=
+k8s.io/component-base v0.25.2/go.mod h1:90W21YMr+Yjg7MX+DohmZLzjsBtaxQDDwaX4YxDkl60=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c h1:GohjlNKauSai7gN4wsJkeZ3WAJx4Sh+oT/b5IYn5suA=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=

From 26fe69cb47295f6677576fa8585afa98d72536e2 Mon Sep 17 00:00:00 2001
From: Matthias Neugebauer <mtneug@mailbox.org>
Date: Wed, 28 Sep 2022 16:28:37 +0200
Subject: [PATCH 0389/1641] Add annotation for setting sticky cookie domain
 (#9088)

This adds the new annotation `nginx.ingress.kubernetes.io/session-cookie-domain`
for setting the cookie `Domain` attribute of the sticky cookie.

Signed-off-by: Matthias Neugebauer <mtneug@mailbox.org>

Signed-off-by: Matthias Neugebauer <mtneug@mailbox.org>
---
 docs/examples/affinity/cookie/README.md       |  1 +
 .../nginx-configuration/annotations.md        |  3 ++
 .../annotations/sessionaffinity/main.go       | 10 +++++
 .../annotations/sessionaffinity/main_test.go  |  5 +++
 internal/ingress/controller/controller.go     |  1 +
 pkg/apis/ingress/types.go                     |  1 +
 pkg/apis/ingress/types_equals.go              |  5 ++-
 rootfs/etc/nginx/lua/balancer/sticky.lua      |  4 ++
 test/e2e/annotations/affinity.go              | 45 +++++++++++++++++++
 9 files changed, 74 insertions(+), 1 deletion(-)

diff --git a/docs/examples/affinity/cookie/README.md b/docs/examples/affinity/cookie/README.md
index 891f828a2..1920d132b 100644
--- a/docs/examples/affinity/cookie/README.md
+++ b/docs/examples/affinity/cookie/README.md
@@ -14,6 +14,7 @@ Session affinity can be configured using the following annotations:
 |nginx.ingress.kubernetes.io/session-cookie-name|Name of the cookie that will be created|string (defaults to `INGRESSCOOKIE`)|
 |nginx.ingress.kubernetes.io/session-cookie-secure|Set the cookie as secure regardless the protocol of the incoming request|`"true"` or `"false"`|
 |nginx.ingress.kubernetes.io/session-cookie-path|Path that will be set on the cookie (required if your [Ingress paths][ingress-paths] use regular expressions)|string (defaults to the currently [matched path][ingress-paths])|
+|nginx.ingress.kubernetes.io/session-cookie-domain|Domain that will be set on the cookie|string|
 |nginx.ingress.kubernetes.io/session-cookie-samesite|`SameSite` attribute to apply to the cookie|Browser accepted values are `None`, `Lax`, and `Strict`|
 |nginx.ingress.kubernetes.io/session-cookie-conditional-samesite-none|Will omit `SameSite=None` attribute for older browsers which reject the more-recently defined `SameSite=None` value|`"true"` or `"false"`
 |nginx.ingress.kubernetes.io/session-cookie-max-age|Time until the cookie expires, corresponds to the `Max-Age` cookie directive|number of seconds|
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 199d156be..131320bf7 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -98,6 +98,7 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/service-upstream](#service-upstream)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/session-cookie-name](#cookie-affinity)|string|
 |[nginx.ingress.kubernetes.io/session-cookie-path](#cookie-affinity)|string|
+|[nginx.ingress.kubernetes.io/session-cookie-domain](#cookie-affinity)|string|
 |[nginx.ingress.kubernetes.io/session-cookie-change-on-failure](#cookie-affinity)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/session-cookie-samesite](#cookie-affinity)|string|
 |[nginx.ingress.kubernetes.io/session-cookie-conditional-samesite-none](#cookie-affinity)|"true" or "false"|
@@ -189,6 +190,8 @@ If you use the ``cookie`` affinity type you can also specify the name of the coo
 
 The NGINX annotation `nginx.ingress.kubernetes.io/session-cookie-path` defines the path that will be set on the cookie. This is optional unless the annotation `nginx.ingress.kubernetes.io/use-regex` is set to true; Session cookie paths do not support regex.
 
+Use `nginx.ingress.kubernetes.io/session-cookie-domain` to set the `Domain` attribute of the sticky cookie.
+
 Use `nginx.ingress.kubernetes.io/session-cookie-samesite` to apply a `SameSite` attribute to the sticky cookie. Browser accepted values are `None`, `Lax`, and `Strict`. Some browsers reject cookies with `SameSite=None`, including those created before the `SameSite=None` specification (e.g. Chrome 5X). Other browsers mistakenly treat `SameSite=None` cookies as `SameSite=Strict` (e.g. Safari running on OSX 14). To omit `SameSite=None` from browsers with these incompatibilities, add the annotation `nginx.ingress.kubernetes.io/session-cookie-conditional-samesite-none: "true"`.
 
 ### Authentication
diff --git a/internal/ingress/annotations/sessionaffinity/main.go b/internal/ingress/annotations/sessionaffinity/main.go
index 9c4d1d2bc..98a0d64f8 100644
--- a/internal/ingress/annotations/sessionaffinity/main.go
+++ b/internal/ingress/annotations/sessionaffinity/main.go
@@ -52,6 +52,9 @@ const (
 	// This is used to control the cookie path when use-regex is set to true
 	annotationAffinityCookiePath = "session-cookie-path"
 
+	// This is used to control the cookie Domain
+	annotationAffinityCookieDomain = "session-cookie-domain"
+
 	// This is used to control the SameSite attribute of the cookie
 	annotationAffinityCookieSameSite = "session-cookie-samesite"
 
@@ -87,6 +90,8 @@ type Cookie struct {
 	MaxAge string `json:"maxage"`
 	// The path that a cookie will be set on
 	Path string `json:"path"`
+	// The domain that a cookie will be set on
+	Domain string `json:"domain"`
 	// Flag that allows cookie regeneration on request failure
 	ChangeOnFailure bool `json:"changeonfailure"`
 	// Secure flag to be set
@@ -127,6 +132,11 @@ func (a affinity) cookieAffinityParse(ing *networking.Ingress) *Cookie {
 		klog.V(3).InfoS("Invalid or no annotation value found. Ignoring", "ingress", klog.KObj(ing), "annotation", annotationAffinityCookiePath)
 	}
 
+	cookie.Domain, err = parser.GetStringAnnotation(annotationAffinityCookieDomain, ing)
+	if err != nil {
+		klog.V(3).InfoS("Invalid or no annotation value found. Ignoring", "ingress", klog.KObj(ing), "annotation", annotationAffinityCookieDomain)
+	}
+
 	cookie.SameSite, err = parser.GetStringAnnotation(annotationAffinityCookieSameSite, ing)
 	if err != nil {
 		klog.V(3).InfoS("Invalid or no annotation value found. Ignoring", "ingress", klog.KObj(ing), "annotation", annotationAffinityCookieSameSite)
diff --git a/internal/ingress/annotations/sessionaffinity/main_test.go b/internal/ingress/annotations/sessionaffinity/main_test.go
index 65d11ac2d..cffe57fec 100644
--- a/internal/ingress/annotations/sessionaffinity/main_test.go
+++ b/internal/ingress/annotations/sessionaffinity/main_test.go
@@ -78,6 +78,7 @@ func TestIngressAffinityCookieConfig(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix(annotationAffinityCookieExpires)] = "4500"
 	data[parser.GetAnnotationWithPrefix(annotationAffinityCookieMaxAge)] = "3000"
 	data[parser.GetAnnotationWithPrefix(annotationAffinityCookiePath)] = "/foo"
+	data[parser.GetAnnotationWithPrefix(annotationAffinityCookieDomain)] = "foo.bar"
 	data[parser.GetAnnotationWithPrefix(annotationAffinityCookieChangeOnFailure)] = "true"
 	data[parser.GetAnnotationWithPrefix(annotationAffinityCookieSecure)] = "true"
 	ing.SetAnnotations(data)
@@ -112,6 +113,10 @@ func TestIngressAffinityCookieConfig(t *testing.T) {
 		t.Errorf("expected /foo as session-cookie-path but returned %v", nginxAffinity.Cookie.Path)
 	}
 
+	if nginxAffinity.Cookie.Domain != "foo.bar" {
+		t.Errorf("expected foo.bar as session-cookie-domain but returned %v", nginxAffinity.Cookie.Domain)
+	}
+
 	if !nginxAffinity.Cookie.ChangeOnFailure {
 		t.Errorf("expected change of failure parameter set to true but returned %v", nginxAffinity.Cookie.ChangeOnFailure)
 	}
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 84da5eb30..f60f7a053 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -767,6 +767,7 @@ func (n *NGINXController) getBackendServers(ingresses []*ingress.Ingress) ([]*in
 					ups.SessionAffinity.CookieSessionAffinity.MaxAge = anns.SessionAffinity.Cookie.MaxAge
 					ups.SessionAffinity.CookieSessionAffinity.Secure = anns.SessionAffinity.Cookie.Secure
 					ups.SessionAffinity.CookieSessionAffinity.Path = cookiePath
+					ups.SessionAffinity.CookieSessionAffinity.Domain = anns.SessionAffinity.Cookie.Domain
 					ups.SessionAffinity.CookieSessionAffinity.SameSite = anns.SessionAffinity.Cookie.SameSite
 					ups.SessionAffinity.CookieSessionAffinity.ConditionalSameSiteNone = anns.SessionAffinity.Cookie.ConditionalSameSiteNone
 					ups.SessionAffinity.CookieSessionAffinity.ChangeOnFailure = anns.SessionAffinity.Cookie.ChangeOnFailure
diff --git a/pkg/apis/ingress/types.go b/pkg/apis/ingress/types.go
index 8460ee684..7c1c825b7 100644
--- a/pkg/apis/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -159,6 +159,7 @@ type CookieSessionAffinity struct {
 	Locations               map[string][]string `json:"locations,omitempty"`
 	Secure                  bool                `json:"secure,omitempty"`
 	Path                    string              `json:"path,omitempty"`
+	Domain                  string              `json:"domain,omitempty"`
 	SameSite                string              `json:"samesite,omitempty"`
 	ConditionalSameSiteNone bool                `json:"conditional_samesite_none,omitempty"`
 	ChangeOnFailure         bool                `json:"change_on_failure,omitempty"`
diff --git a/pkg/apis/ingress/types_equals.go b/pkg/apis/ingress/types_equals.go
index 1ba80d07e..a954a253b 100644
--- a/pkg/apis/ingress/types_equals.go
+++ b/pkg/apis/ingress/types_equals.go
@@ -173,6 +173,9 @@ func (csa1 *CookieSessionAffinity) Equal(csa2 *CookieSessionAffinity) bool {
 	if csa1.Path != csa2.Path {
 		return false
 	}
+	if csa1.Domain != csa2.Domain {
+		return false
+	}
 	if csa1.Expires != csa2.Expires {
 		return false
 	}
@@ -192,7 +195,7 @@ func (csa1 *CookieSessionAffinity) Equal(csa2 *CookieSessionAffinity) bool {
 	return true
 }
 
-//Equal checks the equality between UpstreamByConfig types
+// Equal checks the equality between UpstreamByConfig types
 func (u1 *UpstreamHashByConfig) Equal(u2 *UpstreamHashByConfig) bool {
 	if u1 == u2 {
 		return true
diff --git a/rootfs/etc/nginx/lua/balancer/sticky.lua b/rootfs/etc/nginx/lua/balancer/sticky.lua
index 3440d86bd..9d0a54116 100644
--- a/rootfs/etc/nginx/lua/balancer/sticky.lua
+++ b/rootfs/etc/nginx/lua/balancer/sticky.lua
@@ -110,6 +110,10 @@ function _M.set_cookie(self, value)
     cookie_data.max_age = tonumber(self.cookie_session_affinity.maxage)
   end
 
+  if self.cookie_session_affinity.domain and self.cookie_session_affinity.domain ~= "" then
+    cookie_data.domain = self.cookie_session_affinity.domain
+  end
+
   local ok
   ok, err = cookie:set(cookie_data)
   if not ok then
diff --git a/test/e2e/annotations/affinity.go b/test/e2e/annotations/affinity.go
index 6a0a0bf48..3e1e9e969 100644
--- a/test/e2e/annotations/affinity.go
+++ b/test/e2e/annotations/affinity.go
@@ -222,6 +222,51 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 			Header("Set-Cookie").Contains(fmt.Sprintf("Expires=%s", expected)).Contains("Max-Age=259200")
 	})
 
+	ginkgo.It("should set cookie with domain", func() {
+		host := "cookiedomain.foo.com"
+		annotations := make(map[string]string)
+		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "DomainCookie"
+		annotations["nginx.ingress.kubernetes.io/session-cookie-domain"] = "foo.bar"
+
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
+			})
+
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK).
+			Header("Set-Cookie").Contains("Domain=foo.bar")
+	})
+
+	ginkgo.It("should not set cookie without domain annotation", func() {
+		host := "cookienodomain.foo.com"
+		annotations := make(map[string]string)
+		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "NoDomainCookie"
+
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
+			})
+
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK).
+			Header("Set-Cookie").NotContains("; Domain")
+	})
+
 	ginkgo.It("should work with use-regex annotation and session-cookie-path", func() {
 		host := "useregex.foo.com"
 		annotations := make(map[string]string)

From 261ce42517c3f35c302177eb9acc4f355c4736df Mon Sep 17 00:00:00 2001
From: Tomas Hulata <tombo@sysart.tech>
Date: Wed, 28 Sep 2022 16:34:36 +0200
Subject: [PATCH 0390/1641] plugin - endpoints to slices (#9081)

Signed-off-by: tombokombo <tombo@sysart.tech>

Signed-off-by: tombokombo <tombo@sysart.tech>
---
 cmd/plugin/request/request.go | 87 +++++++++++++++++++----------------
 1 file changed, 47 insertions(+), 40 deletions(-)

diff --git a/cmd/plugin/request/request.go b/cmd/plugin/request/request.go
index cae90e9d2..fd47564a9 100644
--- a/cmd/plugin/request/request.go
+++ b/cmd/plugin/request/request.go
@@ -22,11 +22,13 @@ import (
 
 	appsv1 "k8s.io/api/apps/v1"
 	apiv1 "k8s.io/api/core/v1"
+	discoveryv1 "k8s.io/api/discovery/v1"
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/cli-runtime/pkg/genericclioptions"
 	appsv1client "k8s.io/client-go/kubernetes/typed/apps/v1"
 	corev1 "k8s.io/client-go/kubernetes/typed/core/v1"
+	discoveryv1client "k8s.io/client-go/kubernetes/typed/discovery/v1"
 	typednetworking "k8s.io/client-go/kubernetes/typed/networking/v1"
 
 	"k8s.io/ingress-nginx/cmd/plugin/util"
@@ -129,55 +131,61 @@ func GetIngressDefinitions(flags *genericclioptions.ConfigFlags, namespace strin
 	return pods.Items, nil
 }
 
-// GetNumEndpoints counts the number of endpoints for the service with the given name
+// GetNumEndpoints counts the number of endpointslices adresses for the service with the given name
 func GetNumEndpoints(flags *genericclioptions.ConfigFlags, namespace string, serviceName string) (*int, error) {
-	endpoints, err := GetEndpointsByName(flags, namespace, serviceName)
+	epss, err := GetEndpointSlicesByName(flags, namespace, serviceName)
 	if err != nil {
 		return nil, err
 	}
 
-	if endpoints == nil {
+	if len(epss) == 0 {
 		return nil, nil
 	}
 
 	ret := 0
-	for _, subset := range endpoints.Subsets {
-		ret += len(subset.Addresses)
+	for _, eps := range epss {
+		for _, ep := range eps.Endpoints {
+			ret += len(ep.Addresses)
+		}
 	}
 	return &ret, nil
 }
 
-// GetEndpointsByName returns the endpoints for the service with the given name
-func GetEndpointsByName(flags *genericclioptions.ConfigFlags, namespace string, name string) (*apiv1.Endpoints, error) {
-	allEndpoints, err := getEndpoints(flags, namespace)
+// GetEndpointSlicesByName returns the endpointSlices for the service with the given name
+func GetEndpointSlicesByName(flags *genericclioptions.ConfigFlags, namespace string, name string) ([]discoveryv1.EndpointSlice, error) {
+	allEndpointsSlices, err := getEndpointSlices(flags, namespace)
 	if err != nil {
 		return nil, err
 	}
-
-	for _, endpoints := range allEndpoints {
-		if endpoints.Name == name {
-			return &endpoints, nil
+	var eps []discoveryv1.EndpointSlice
+	for _, slice := range allEndpointsSlices {
+		if svcName, ok := slice.ObjectMeta.GetLabels()[discoveryv1.LabelServiceName]; ok {
+			if svcName == name {
+				eps = append(eps, slice)
+			}
 		}
 	}
 
-	return nil, nil
+	return eps, nil
 }
 
-var endpointsCache = make(map[string]*[]apiv1.Endpoints)
+var endpointSlicesCache = make(map[string]*[]discoveryv1.EndpointSlice)
+
+func getEndpointSlices(flags *genericclioptions.ConfigFlags, namespace string) ([]discoveryv1.EndpointSlice, error) {
+	cachedEndpointSlices, ok := endpointSlicesCache[namespace]
 
-func getEndpoints(flags *genericclioptions.ConfigFlags, namespace string) ([]apiv1.Endpoints, error) {
-	cachedEndpoints, ok := endpointsCache[namespace]
 	if ok {
-		return *cachedEndpoints, nil
+		return *cachedEndpointSlices, nil
 	}
 
 	if namespace != "" {
-		tryAllNamespacesEndpointsCache(flags)
+		tryAllNamespacesEndpointSlicesCache(flags)
 	}
 
-	cachedEndpoints = tryFilteringEndpointsFromAllNamespacesCache(flags, namespace)
-	if cachedEndpoints != nil {
-		return *cachedEndpoints, nil
+	cachedEndpointSlices = tryFilteringEndpointSlicesFromAllNamespacesCache(flags, namespace)
+
+	if cachedEndpointSlices != nil {
+		return *cachedEndpointSlices, nil
 	}
 
 	rawConfig, err := flags.ToRESTConfig()
@@ -185,42 +193,41 @@ func getEndpoints(flags *genericclioptions.ConfigFlags, namespace string) ([]api
 		return nil, err
 	}
 
-	api, err := corev1.NewForConfig(rawConfig)
+	api, err := discoveryv1client.NewForConfig(rawConfig)
 	if err != nil {
 		return nil, err
 	}
-
-	endpointsList, err := api.Endpoints(namespace).List(context.TODO(), metav1.ListOptions{})
+	endpointSlicesList, err := api.EndpointSlices(namespace).List(context.TODO(), metav1.ListOptions{})
 	if err != nil {
 		return nil, err
 	}
-	endpoints := endpointsList.Items
+	endpointSlices := endpointSlicesList.Items
 
-	endpointsCache[namespace] = &endpoints
-	return endpoints, nil
+	endpointSlicesCache[namespace] = &endpointSlices
+	return endpointSlices, nil
 }
 
-func tryAllNamespacesEndpointsCache(flags *genericclioptions.ConfigFlags) {
-	_, ok := endpointsCache[""]
+func tryAllNamespacesEndpointSlicesCache(flags *genericclioptions.ConfigFlags) {
+	_, ok := endpointSlicesCache[""]
 	if !ok {
-		_, err := getEndpoints(flags, "")
+		_, err := getEndpointSlices(flags, "")
 		if err != nil {
-			endpointsCache[""] = nil
+			endpointSlicesCache[""] = nil
 		}
 	}
 }
 
-func tryFilteringEndpointsFromAllNamespacesCache(flags *genericclioptions.ConfigFlags, namespace string) *[]apiv1.Endpoints {
-	allEndpoints := endpointsCache[""]
-	if allEndpoints != nil {
-		endpoints := make([]apiv1.Endpoints, 0)
-		for _, thisEndpoints := range *allEndpoints {
-			if thisEndpoints.Namespace == namespace {
-				endpoints = append(endpoints, thisEndpoints)
+func tryFilteringEndpointSlicesFromAllNamespacesCache(flags *genericclioptions.ConfigFlags, namespace string) *[]discoveryv1.EndpointSlice {
+	allEndpointSlices := endpointSlicesCache[""]
+	if allEndpointSlices != nil {
+		endpointSlices := make([]discoveryv1.EndpointSlice, 0)
+		for _, slice := range *allEndpointSlices {
+			if slice.Namespace == namespace {
+				endpointSlices = append(endpointSlices, slice)
 			}
 		}
-		endpointsCache[namespace] = &endpoints
-		return &endpoints
+		endpointSlicesCache[namespace] = &endpointSlices
+		return &endpointSlices
 	}
 	return nil
 }

From 1a078af307d3cb52e3ad4c17e6a26bf4ef82581b Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Wed, 28 Sep 2022 23:02:30 +0200
Subject: [PATCH 0391/1641] fix chroot module mount path (#9090)

---
 charts/ingress-nginx/templates/controller-deployment.yaml | 4 ++++
 rootfs/Dockerfile-chroot                                  | 6 +++++-
 2 files changed, 9 insertions(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 5ad186794..c193f776c 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -147,7 +147,11 @@ spec:
           volumeMounts:
           {{- if .Values.controller.extraModules }}
             - name: modules
+            {{ if .Values.controller.image.chroot }}
+              mountPath: /chroot/modules_mount
+            {{ else }}
               mountPath: /modules_mount
+            {{ end }}
           {{- end }}
           {{- if .Values.controller.customTemplate.configMapName }}
             - mountPath: /etc/nginx/template
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index 64b222890..4805909d5 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -84,7 +84,7 @@ RUN bash -xeu -c ' \
   # LD_LIBRARY_PATH does not work so below is needed for  opentelemetry/other modules
   # Put libs of newer modules under `/modules_mount/<other>/lib` and add that path below
   # Could get complicated arch specific paths become a need
-  && echo "/lib:/usr/lib:/usr/local/lib:/modules_mount/otel/lib" > /etc/ld-musl-x86_64.path
+  && echo "/lib:/usr/lib:/usr/local/lib:/modules_mount/etc/nginx/modules/otel" > /chroot/etc/ld-musl-x86_64.path
 
 RUN apk add --no-cache libcap \
   && setcap    cap_sys_chroot,cap_net_bind_service=+ep /nginx-ingress-controller \
@@ -113,6 +113,10 @@ RUN  ln -sf /chroot/etc/nginx /etc/nginx \
   && mknod -m 0666 /chroot/dev/zero c 1 5 \
   && mknod -m 0666 /chroot/dev/tty c 5 0
 
+RUN mkdir -p /chroot/modules_mount \
+  && mkdir -p modules_mount \
+  && ln -s /modules_mount /chroot/modules_mount
+
 USER www-data
 
 EXPOSE 80 443

From 61be730b910fff455d0c117f7a511097924f8fd6 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 29 Sep 2022 21:12:54 +0530
Subject: [PATCH 0392/1641] kubewebhookcertgen sha change after go1191 (#9059)

---
 charts/ingress-nginx/README.md   | 4 ++--
 charts/ingress-nginx/values.yaml | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 4e6a696c6..d689e3d5f 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -252,11 +252,11 @@ Kubernetes: `>=1.20.0-0`
 | controller.admissionWebhooks.networkPolicyEnabled | bool | `false` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
-| controller.admissionWebhooks.patch.image.digest | string | `"sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47"` |  |
+| controller.admissionWebhooks.patch.image.digest | string | `"sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.admissionWebhooks.patch.image.registry | string | `"registry.k8s.io"` |  |
-| controller.admissionWebhooks.patch.image.tag | string | `"v1.3.0"` |  |
+| controller.admissionWebhooks.patch.image.tag | string | `"v20220916-gd32f8c343"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
 | controller.admissionWebhooks.patch.podAnnotations | object | `{}` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 9c34e7f6f..301635701 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -646,8 +646,8 @@ controller:
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
         ## repository:
-        tag: v1.3.0
-        digest: sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        tag: v20220916-gd32f8c343
+        digest: sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         pullPolicy: IfNotPresent
       # -- Provide a priority class name to the webhook patching job
       ##

From 0b04270517bfa9402d72319812022d3b3f692178 Mon Sep 17 00:00:00 2001
From: Wilmar den Ouden <wilmardo@users.noreply.github.com>
Date: Thu, 29 Sep 2022 19:40:39 +0200
Subject: [PATCH 0393/1641] expand CI testing for all stable versions of
 Kubernetes (#9078)

* ci: setup version matrix for the helm chart e2e

Signed-off-by: wilmarguida <w.denouden@guida.nl>

* ci: sync all k8s version on CI steps

Signed-off-by: wilmarguida <w.denouden@guida.nl>

* ci: bump all k8s version to latest stable

Signed-off-by: wilmarguida <w.denouden@guida.nl>

Signed-off-by: wilmarguida <w.denouden@guida.nl>
---
 .github/workflows/ci.yaml | 14 +++++++++-----
 1 file changed, 9 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index fc106b495..46e44817c 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -128,6 +128,10 @@ jobs:
     if: |
       (needs.changes.outputs.charts == 'true')
 
+    strategy:
+      matrix:
+        k8s: [v1.23.12, v1.24.6, v1.25.2]
+
     steps:
 
       - name: Checkout
@@ -170,12 +174,12 @@ jobs:
           sudo mkdir -p $HOME/.kube
           sudo chmod -R 777 $HOME/.kube
 
-      - name: Create Kubernetes cluster
+      - name: Create Kubernetes ${{ matrix.k8s }} cluster
         id: kind
         uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
         with:
           version: v0.15.0
-          image: kindest/node:v1.25.0
+          image: kindest/node:${{ matrix.k8s }}
 
       - uses: geekyeggo/delete-artifact@b73cb986740e466292a536d0e32e2666c56fdeb3 # v1
         with:
@@ -208,7 +212,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.23.10, v1.24.4, v1.25.0]
+        k8s: [v1.23.12, v1.24.6, v1.25.2]
 
     steps:
 
@@ -265,7 +269,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.4, v1.25.0]
+        k8s: [v1.23.12, v1.24.6, v1.25.2]
 
     steps:
 
@@ -404,7 +408,7 @@ jobs:
         uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
         with:
           version: v0.15.0
-          image: kindest/node:v1.25.0
+          image: kindest/node:v1.25.2
 
       - name: Set up Go 1.19.1
         id: go

From 7cb91ef9c1b2d281567bb78d56aa704f8c793035 Mon Sep 17 00:00:00 2001
From: Nate Campbell <nathanxcampbell@gmail.com>
Date: Fri, 30 Sep 2022 11:00:29 -0400
Subject: [PATCH 0394/1641] Support none keyword in log-format escape (#8692)

* Support none keyword in log-format escape


## What this PR does / why we need it:
ingress-nginx does not support disabling escaping of special characters in the nginx log. This PR exposes the setting to support that functionality.

## Types of changes
- [ ] Bug fix (non-breaking change which fixes an issue)
- [x] New feature (non-breaking change which adds functionality)
- [ ] Breaking change (fix or feature that would cause existing functionality to change)
- [ ] Documentation only

## Which issue/s this PR fixes
<!--
(optional, in `fixes #<issue number>` format, will close that issue when PR gets merged):

fixes #
-->

## How Has This Been Tested?
Followed the [getting-started](https://github.com/kubernetes/ingress-nginx/blob/96b6228a6b65a85e421b8a348a149e99181664d1/docs/developer-guide/getting-started.md) guide. Used ppa:longsleep/golang-backports on WSL Ubuntu to establish a golang-1.18 environment with latest docker and recommended kind. Built the dev-env successfully; had issues with make test, but they are entirely unrelated to anything I touched. Ultimate test was
```
FOCUS=log-format make kind-e2e-test
...
Ginkgo ran 1 suite in 6m29.7437865s
Test Suite Passed
```

## Checklist:
<!--- Go over all the following points, and put an `x` in all the boxes that apply. -->
<!--- If you're unsure about any of these, don't hesitate to ask. We're here to help! -->
- [x] My change requires a change to the documentation.
- [x] I have updated the documentation accordingly.
- [x] I've read the [CONTRIBUTION](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md) guide
- [x] I have added tests to cover my changes.
- [x] All new and existing tests passed.

I did not update docs/e2e-tests.md.

* gofmt -s ./internal/ingress/controller/config/config.go
---
 .../nginx-configuration/configmap.md          |  5 ++
 internal/ingress/controller/config/config.go  |  4 ++
 rootfs/etc/nginx/template/nginx.tmpl          |  2 +-
 test/e2e/settings/log-format.go               | 55 ++++++++++++++++---
 4 files changed, 57 insertions(+), 9 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index cd25095b0..c985d7373 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -64,6 +64,7 @@ The following table shows a configuration option's name, type, and the default v
 |[keep-alive](#keep-alive)|int|75|
 |[keep-alive-requests](#keep-alive-requests)|int|100|
 |[large-client-header-buffers](#large-client-header-buffers)|string|"4 8k"|
+|[log-format-escape-none](#log-format-escape-none)|bool|"false"|
 |[log-format-escape-json](#log-format-escape-json)|bool|"false"|
 |[log-format-upstream](#log-format-upstream)|string|`$remote_addr - $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" $request_length $request_time [$proxy_upstream_name] [$proxy_alternative_upstream_name] $upstream_addr $upstream_response_length $upstream_response_time $upstream_status $req_id`|
 |[log-format-stream](#log-format-stream)|string|`[$remote_addr] [$time_local] $protocol $status $bytes_sent $bytes_received $session_time`|
@@ -468,6 +469,10 @@ Sets the maximum number and size of buffers used for reading large client reques
 _References:_
 [https://nginx.org/en/docs/http/ngx_http_core_module.html#large_client_header_buffers](https://nginx.org/en/docs/http/ngx_http_core_module.html#large_client_header_buffers)
 
+## log-format-escape-none
+
+Sets if the escape parameter is disabled entirely for character escaping in variables ("true") or controlled by log-format-escape-json ("false") Sets the nginx [log format](https://nginx.org/en/docs/http/ngx_http_log_module.html#log_format).
+
 ## log-format-escape-json
 
 Sets if the escape parameter allows JSON ("true") or default characters escaping in variables ("false") Sets the nginx [log format](https://nginx.org/en/docs/http/ngx_http_log_module.html#log_format).
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 4ee2df965..8bf71b774 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -263,6 +263,10 @@ type Configuration struct {
 	// Default: 4 8k
 	LargeClientHeaderBuffers string `json:"large-client-header-buffers"`
 
+	// Disable all escaping
+	// http://nginx.org/en/docs/http/ngx_http_log_module.html#log_format
+	LogFormatEscapeNone bool `json:"log-format-escape-none,omitempty"`
+
 	// Enable json escaping
 	// http://nginx.org/en/docs/http/ngx_http_log_module.html#log_format
 	LogFormatEscapeJSON bool `json:"log-format-escape-json,omitempty"`
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index a04f71f0e..c315e4ee9 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -361,7 +361,7 @@ http {
     # $ingress_name
     # $service_name
     # $service_port
-    log_format upstreaminfo {{ if $cfg.LogFormatEscapeJSON }}escape=json {{ end }}'{{ $cfg.LogFormatUpstream }}';
+    log_format upstreaminfo {{ if $cfg.LogFormatEscapeNone }}escape=none {{ else if $cfg.LogFormatEscapeJSON }}escape=json {{ end }}'{{ $cfg.LogFormatUpstream }}';
 
     {{/* map urls that should not appear in access.log */}}
     {{/* http://nginx.org/en/docs/http/ngx_http_log_module.html#access_log */}}
diff --git a/test/e2e/settings/log-format.go b/test/e2e/settings/log-format.go
index b43fce874..24877818d 100644
--- a/test/e2e/settings/log-format.go
+++ b/test/e2e/settings/log-format.go
@@ -35,12 +35,12 @@ var _ = framework.DescribeSetting("log-format-*", func() {
 		f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil))
 	})
 
-	ginkgo.Context("Check log-format-escape-json", func() {
+	ginkgo.Context("Check log-format-escape-json and log-format-escape-none", func() {
 
-		ginkgo.It("should disable the log-format-escape-json by default", func() {
+		ginkgo.It("should not configure log-format escape by default", func() {
 			f.WaitForNginxConfiguration(
 				func(cfg string) bool {
-					return !strings.Contains(cfg, "log_format upstreaminfo escape=json")
+					return !strings.Contains(cfg, "log_format upstreaminfo escape")
 				})
 		})
 
@@ -59,9 +59,25 @@ var _ = framework.DescribeSetting("log-format-*", func() {
 					return !strings.Contains(cfg, "log_format upstreaminfo escape=json")
 				})
 		})
+
+		ginkgo.It("should enable the log-format-escape-none", func() {
+			f.UpdateNginxConfigMapData("log-format-escape-none", "true")
+			f.WaitForNginxConfiguration(
+				func(cfg string) bool {
+					return strings.Contains(cfg, "log_format upstreaminfo escape=none")
+				})
+		})
+
+		ginkgo.It("should disable the log-format-escape-none", func() {
+			f.UpdateNginxConfigMapData("log-format-escape-none", "false")
+			f.WaitForNginxConfiguration(
+				func(cfg string) bool {
+					return !strings.Contains(cfg, "log_format upstreaminfo escape=none")
+				})
+		})
 	})
 
-	ginkgo.Context("Check log-format-upstream with log-format-escape-json", func() {
+	ginkgo.Context("Check log-format-upstream with log-format-escape-json and log-format-escape-none", func() {
 
 		ginkgo.It("log-format-escape-json enabled", func() {
 			f.SetNginxConfigMapData(map[string]string{
@@ -86,7 +102,7 @@ var _ = framework.DescribeSetting("log-format-*", func() {
 			assert.Contains(ginkgo.GinkgoT(), logs, `{"my_header1":"Here is \"header1\" with json escape", "my_header2":""}`)
 		})
 
-		ginkgo.It("log-format-escape-json disabled", func() {
+		ginkgo.It("log-format default escape", func() {
 			f.SetNginxConfigMapData(map[string]string{
 				"log-format-escape-json": "false",
 				"log-format-upstream":    "\"{\"my_header3\":\"$http_header3\", \"my_header4\":\"$http_header4\"}\"",
@@ -94,19 +110,42 @@ var _ = framework.DescribeSetting("log-format-*", func() {
 
 			f.WaitForNginxConfiguration(
 				func(cfg string) bool {
-					return !strings.Contains(cfg, "log_format upstreaminfo escape=json")
+					return !strings.Contains(cfg, "log_format upstreaminfo escape")
 				})
 
 			f.HTTPTestClient().
 				GET("/").
 				WithHeader("Host", host).
-				WithHeader("header3", `Here is "header3" with json escape`).
+				WithHeader("header3", `Here is "header3" with default escape`).
 				Expect().
 				Status(http.StatusOK)
 
 			logs, err := f.NginxLogs()
 			assert.Nil(ginkgo.GinkgoT(), err, "obtaining nginx logs")
-			assert.Contains(ginkgo.GinkgoT(), logs, `{"my_header3":"Here is \x22header3\x22 with json escape", "my_header4":"-"}`)
+			assert.Contains(ginkgo.GinkgoT(), logs, `{"my_header3":"Here is \x22header3\x22 with default escape", "my_header4":"-"}`)
+		})
+
+		ginkgo.It("log-format-escape-none enabled", func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"log-format-escape-none": "true",
+				"log-format-upstream":    "\"{\"my_header5\":\"$http_header5\", \"my_header6\":\"$http_header6\"}\"",
+			})
+
+			f.WaitForNginxConfiguration(
+				func(cfg string) bool {
+					return strings.Contains(cfg, "log_format upstreaminfo escape=none")
+				})
+
+			f.HTTPTestClient().
+				GET("/").
+				WithHeader("Host", host).
+				WithHeader("header5", `Here is "header5" with none escape`).
+				Expect().
+				Status(http.StatusOK)
+
+			logs, err := f.NginxLogs()
+			assert.Nil(ginkgo.GinkgoT(), err, "obtaining nginx logs")
+			assert.Contains(ginkgo.GinkgoT(), logs, `{"my_header5":"Here is "header5" with none escape", "my_header6":""}`)
 		})
 	})
 })

From e6ff97fbbe4efc39ec673a3ecda734a9a0e880b7 Mon Sep 17 00:00:00 2001
From: Dmitry Bashkatov <dbashkatov@gmail.com>
Date: Fri, 30 Sep 2022 18:00:36 +0300
Subject: [PATCH 0395/1641] Consistent prometheus metric names and
 documentation (#8728)

* clean prometheus metrics

- add new histogram metrics with consistent names
- deprecate summary metrics with inconsistent names

* update prometheus metrics tests

* remove ingress_upstream_header_seconds metric

It hasn't been released so it is safe. Use header_duration_seconds metric.

* add documentation on prometheus metrics
---
 docs/user-guide/cli-arguments.md              |   3 +
 docs/user-guide/monitoring.md                 | 197 +++++++++++++++---
 internal/ingress/metric/collectors/socket.go  | 129 ++++++------
 .../ingress/metric/collectors/socket_test.go  |  94 +++++++--
 4 files changed, 321 insertions(+), 102 deletions(-)

diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index 0b710958d..9d7bd9fc6 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -32,6 +32,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--ingress-class-by-name`          | Define if Ingress Controller should watch for Ingress Class by Name together with Controller Class. (default false) |
 | `--internal-logger-address`        | Define the internal logger address to use when chroot images is used. (default 127.0.0.1:11514) |
 | `--kubeconfig`                     | Path to a kubeconfig file containing authorization and API server information. |
+| `--length-buckets`                 | Set of buckets which will be used for prometheus histogram metrics such as RequestLength, ResponseLength. (default `[10, 20, 30, 40, 50, 60, 70, 80, 90, 100]`) |
 | `--log_backtrace_at`               | when logging hits line file:N, emit a stack trace (default :0) |
 | `--log_dir`                        | If non-empty, write log files in this directory |
 | `--log_file`                       | If non-empty, use this log file |
@@ -52,6 +53,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--skip_headers`                   | If true, avoid header prefixes in the log messages |
 | `--skip_log_headers`               | If true, avoid headers when opening log files |
 | `--ssl-passthrough-proxy-port`     | Port to use internally for SSL Passthrough. (default 442) |
+| `--size-buckets`                   | Set of buckets which will be used for prometheus histogram metrics such as BytesSent. (default `[10, 100, 1000, 10000, 100000, 1e+06, 1e+07]`) |
 | `--status-port`                    | Port to use for the lua HTTP endpoint configuration. (default 10246) |
 | `--status-update-interval`         | Time interval in seconds in which the status should check if an update is required. Default is 60 seconds (default 60) |
 | `--stderrthreshold`                | logs at or above this threshold go to stderr (default 2) |
@@ -59,6 +61,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--sync-period`                    | Period at which the controller forces the repopulation of its local object stores. Disabled by default. |
 | `--sync-rate-limit`                | Define the sync frequency upper limit (default 0.3) |
 | `--tcp-services-configmap`         | Name of the ConfigMap containing the definition of the TCP services to expose. The key in the map indicates the external port to be used. The value is a reference to a Service in the form "namespace/name:port", where "port" can either be a port number or name. TCP ports 80 and 443 are reserved by the controller for servicing HTTP traffic. |
+| `--time-buckets`                   | Set of buckets which will be used for prometheus histogram metrics such as RequestTime, ResponseTime. (default `[0.005, 0.01, 0.025, 0.05, 0.1, 0.25, 0.5, 1, 2.5, 5, 10]`) |
 | `--udp-services-configmap`         | Name of the ConfigMap containing the definition of the UDP services to expose. The key in the map indicates the external port to be used. The value is a reference to a Service in the form "namespace/name:port", where "port" can either be a port name or number. |
 | `--update-status`                  | Update the load-balancer status of Ingress objects this controller satisfies. Requires setting the publish-service parameter to a valid Service reference. (default true) |
 | `--update-status-on-shutdown`      | Update the load-balancer status of Ingress objects when the controller shuts down. Requires the update-status parameter. (default true) |
diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index c59e976e7..5c53213ea 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -1,9 +1,11 @@
-# Prometheus and Grafana installation
-Two different methods to install and configure Prometheus and Grafana are described in this doc. 
-- Prometheus and Grafana installation using Pod Annotations. This installs Prometheus and Grafana in the same namespace as NGINX Ingress
-- Prometheus and Grafana installation using Service Monitors. This installs Prometheus and Grafana in two different namespaces. This is the preferred method, and helm charts supports this by default. 
+# Monitoring
+
+Two different methods to install and configure Prometheus and Grafana are described in this doc.
+* Prometheus and Grafana installation using Pod Annotations. This installs Prometheus and Grafana in the same namespace as NGINX Ingress
+* Prometheus and Grafana installation using Service Monitors. This installs Prometheus and Grafana in two different namespaces. This is the preferred method, and helm charts supports this by default.
+
+## Prometheus and Grafana installation using Pod Annotations
 
-## PROMETHEUS AND GRAFANA INSTALLATION USING POD ANNOTATIONS
 This tutorial will show you how to install [Prometheus](https://prometheus.io/) and [Grafana](https://grafana.com/) for scraping the metrics of the NGINX Ingress controller.
 
 !!! important
@@ -168,7 +170,7 @@ According to the above example, this URL will be http://10.192.0.3:31086
   - By default request metrics are labeled with the hostname. When you have a wildcard domain ingress, then there will be no metrics for that ingress (to prevent the metrics from exploding in cardinality). To get metrics in this case you need to run the ingress controller with `--metrics-per-host=false` (you will lose labeling by hostname, but still have labeling by ingress).
 
 ### Grafana dashboard using ingress resource
-  - If you want to expose the dashboard for grafana using a ingress resource, then you can : 
+  - If you want to expose the dashboard for grafana using a ingress resource, then you can :
     - change the service type of the prometheus-server service and the grafana service to "ClusterIP" like this :
     ```
     kubectl -n ingress-nginx edit svc grafana
@@ -179,18 +181,18 @@ According to the above example, this URL will be http://10.192.0.3:31086
     - create a ingress resource with backend as "grafana" and port as "3000"
   - Similarly, you can edit the service "prometheus-server" and add a ingress resource.
 
-## PROMETHEUS AND GRAFANA INSTALLATION USING SERVICE MONITORS
-This document assumes you're using helm and using the kube-prometheus-stack package to install Prometheus and Grafana. 
+## Prometheus and Grafana installation using Service Monitors
+This document assumes you're using helm and using the kube-prometheus-stack package to install Prometheus and Grafana.
 
 ### Verify NGINX Ingress controller is installed
 
 - The NGINX Ingress controller should already be deployed according to the deployment instructions [here](../deploy/index.md).
 
-- To check if Ingress controller is deployed, 
+- To check if Ingress controller is deployed,
   ```
-  kubectl get pods -n ingress-nginx 
+  kubectl get pods -n ingress-nginx
   ```
-- The result should look something like: 
+- The result should look something like:
   ```
   NAME                                        READY   STATUS    RESTARTS   AGE
   ingress-nginx-controller-7c489dc7b7-ccrf6   1/1     Running   0          19h
@@ -205,8 +207,8 @@ This document assumes you're using helm and using the kube-prometheus-stack pack
   ```
   ```
   NAME         	NAMESPACE    	REVISION	UPDATED                             	STATUS  	CHART                       	APP VERSION
-  ingress-nginx	ingress-nginx	10      	2022-01-20 18:08:55.267373 -0800 PST	deployed	ingress-nginx-4.0.16        	1.1.1      
-  prometheus   	prometheus   	1       	2022-01-20 16:07:25.086828 -0800 PST	deployed	kube-prometheus-stack-30.1.0	0.53.1  
+  ingress-nginx	ingress-nginx	10      	2022-01-20 18:08:55.267373 -0800 PST	deployed	ingress-nginx-4.0.16        	1.1.1
+  prometheus   	prometheus   	1       	2022-01-20 16:07:25.086828 -0800 PST	deployed	kube-prometheus-stack-30.1.0	0.53.1
   ```
 - Notice that prometheus is installed in a differenet namespace than ingress-nginx
 
@@ -218,9 +220,9 @@ This document assumes you're using helm and using the kube-prometheus-stack pack
   ```
   controller.metrics.enabled=true
   controller.metrics.serviceMonitor.enabled=true
-  controller.metrics.serviceMonitor.additionalLabels.release="prometheus" 
+  controller.metrics.serviceMonitor.additionalLabels.release="prometheus"
   ```
-- The easiest way of doing this is to helm upgrade 
+- The easiest way of doing this is to helm upgrade
   ```
   helm upgrade ingress-nginx ingress-nginx/ingress-nginx \
   --namespace ingress-nginx \
@@ -248,7 +250,7 @@ This document assumes you're using helm and using the kube-prometheus-stack pack
 - Since Prometheus is running in a different namespace and not in the ingress-nginx namespace, it would not be able to discover ServiceMonitors in other namespaces when installed. Reconfigure your kube-prometheus-stack Helm installation to set `serviceMonitorSelectorNilUsesHelmValues` flag to false. By default, Prometheus only discovers PodMonitors within its own namespace. This should be disabled by setting `podMonitorSelectorNilUsesHelmValues` to false
 - The configurations required are:
   ```
-  prometheus.prometheusSpec.podMonitorSelectorNilUsesHelmValues=false 
+  prometheus.prometheusSpec.podMonitorSelectorNilUsesHelmValues=false
   prometheus.prometheusSpec.serviceMonitorSelectorNilUsesHelmValues=false
   ```
 - The easiest way of doing this is to use `helm upgrade ...`
@@ -271,12 +273,12 @@ This document assumes you're using helm and using the kube-prometheus-stack pack
   ```
 
 ### Connect and view Prometheus dashboard
-- Port forward to Prometheus service. Find out the name of the prometheus service by using the following command: 
+- Port forward to Prometheus service. Find out the name of the prometheus service by using the following command:
   ```
   kubectl get svc -n prometheus
   ```
 
-  The result of this command would look like: 
+  The result of this command would look like:
   ```
   NAME                                      TYPE        CLUSTER-IP       EXTERNAL-IP   PORT(S)                      AGE
   alertmanager-operated                     ClusterIP   None             <none>        9093/TCP,9094/TCP,9094/UDP   7h46m
@@ -292,22 +294,22 @@ This document assumes you're using helm and using the kube-prometheus-stack pack
   ```
   kubectl port-forward svc/prometheus-kube-prometheus-prometheus -n prometheus 9090:9090
   ```
-  When you run the above command, you should see something like: 
+  When you run the above command, you should see something like:
   ```
   Forwarding from 127.0.0.1:9090 -> 9090
   Forwarding from [::1]:9090 -> 9090
   ```
 - Open your browser and visit the following URL http://localhost:{port-forwarded-port} according to the above example it would be, http://localhost:9090
-  
+
   ![Prometheus Dashboard](../images/prometheus-dashboard1.png)
 
-### Connect and view Grafana dashboard 
-- Port forward to Grafana service. Find out the name of the Grafana service by using the following command: 
+### Connect and view Grafana dashboard
+- Port forward to Grafana service. Find out the name of the Grafana service by using the following command:
   ```
   kubectl get svc -n prometheus
   ```
 
-  The result of this command would look like: 
+  The result of this command would look like:
   ```
   NAME                                      TYPE        CLUSTER-IP       EXTERNAL-IP   PORT(S)                      AGE
   alertmanager-operated                     ClusterIP   None             <none>        9093/TCP,9094/TCP,9094/UDP   7h46m
@@ -323,7 +325,7 @@ This document assumes you're using helm and using the kube-prometheus-stack pack
   ```
   kubectl port-forward svc/prometheus-grafana  3000:80 -n prometheus
   ```
-  When you run the above command, you should see something like: 
+  When you run the above command, you should see something like:
   ```
   Forwarding from 127.0.0.1:3000 -> 3000
   Forwarding from [::1]:3000 -> 3000
@@ -345,4 +347,149 @@ This document assumes you're using helm and using the kube-prometheus-stack pack
   - Click "Import"
 
   ![Grafana Dashboard](../images/grafana-dashboard1.png)
- 
+
+
+## Exposed metrics
+
+Prometheus metrics are exposed on port 10254.
+
+### Request metrics
+
+* `nginx_ingress_controller_request_duration_seconds` Histogram
+
+  The request processing time in milliseconds (affected by client speed)
+
+  nginx var: `request_time`
+
+* `nginx_ingress_controller_response_duration_seconds` Histogram
+
+  The time spent on receiving the response from the upstream server (affected by client speed)
+
+  nginx var: `upstream_response_time`
+
+* `nginx_ingress_controller_header_duration_seconds` Histogram
+
+  The time spent on receiving first header from the upstream server
+
+  nginx var: `upstream_header_time`
+
+* `nginx_ingress_controller_connect_duration_seconds` Histogram
+
+  The time spent on establishing a connection with the upstream server
+
+  nginx var: `upstream_connect_time`
+
+* `nginx_ingress_controller_response_size` Histogram
+
+  The response length (including request line, header, and request body)
+
+  nginx var: `bytes_sent`
+
+* `nginx_ingress_controller_request_size` Histogram
+
+  The request length (including request line, header, and request body)
+
+  nginx var: `request_length`
+
+* `nginx_ingress_controller_requests` Counter
+
+  The total number of client requests
+
+* `nginx_ingress_controller_bytes_sent` Histogram
+
+  The number of bytes sent to a client. **Deprecated**, use `nginx_ingress_controller_response_size`
+
+  nginx var: `bytes_sent`
+
+* `nginx_ingress_controller_ingress_upstream_latency_seconds` Summary
+
+  Upstream service latency per Ingress. **Deprecated**, use `nginx_ingress_controller_connect_duration_seconds`
+
+  nginx var: `upstream_connect_time`
+
+```
+# HELP nginx_ingress_controller_bytes_sent The number of bytes sent to a client. DEPRECATED! Use nginx_ingress_controller_response_size
+# TYPE nginx_ingress_controller_bytes_sent histogram
+# HELP nginx_ingress_controller_connect_duration_seconds The time spent on establishing a connection with the upstream server
+# TYPE nginx_ingress_controller_connect_duration_seconds nginx_ingress_controller_connect_duration_seconds
+* HELP nginx_ingress_controller_header_duration_seconds The time spent on receiving first header from the upstream server
+# TYPE nginx_ingress_controller_header_duration_seconds histogram
+# HELP nginx_ingress_controller_ingress_upstream_latency_seconds Upstream service latency per Ingress DEPRECATED! Use nginx_ingress_controller_connect_duration_seconds
+# TYPE nginx_ingress_controller_ingress_upstream_latency_seconds summary
+# HELP nginx_ingress_controller_request_duration_seconds The request processing time in milliseconds
+# TYPE nginx_ingress_controller_request_duration_seconds histogram
+# HELP nginx_ingress_controller_request_size The request length (including request line, header, and request body)
+# TYPE nginx_ingress_controller_request_size histogram
+# HELP nginx_ingress_controller_requests The total number of client requests.
+# TYPE nginx_ingress_controller_requests counter
+# HELP nginx_ingress_controller_response_duration_seconds The time spent on receiving the response from the upstream server
+# TYPE nginx_ingress_controller_response_duration_seconds histogram
+# HELP nginx_ingress_controller_response_size The response length (including request line, header, and request body)
+# TYPE nginx_ingress_controller_response_size histogram
+```
+
+
+### Nginx process metrics
+```
+# HELP nginx_ingress_controller_nginx_process_connections current number of client connections with state {active, reading, writing, waiting}
+# TYPE nginx_ingress_controller_nginx_process_connections gauge
+# HELP nginx_ingress_controller_nginx_process_connections_total total number of connections with state {accepted, handled}
+# TYPE nginx_ingress_controller_nginx_process_connections_total counter
+# HELP nginx_ingress_controller_nginx_process_cpu_seconds_total Cpu usage in seconds
+# TYPE nginx_ingress_controller_nginx_process_cpu_seconds_total counter
+# HELP nginx_ingress_controller_nginx_process_num_procs number of processes
+# TYPE nginx_ingress_controller_nginx_process_num_procs gauge
+# HELP nginx_ingress_controller_nginx_process_oldest_start_time_seconds start time in seconds since 1970/01/01
+# TYPE nginx_ingress_controller_nginx_process_oldest_start_time_seconds gauge
+# HELP nginx_ingress_controller_nginx_process_read_bytes_total number of bytes read
+# TYPE nginx_ingress_controller_nginx_process_read_bytes_total counter
+# HELP nginx_ingress_controller_nginx_process_requests_total total number of client requests
+# TYPE nginx_ingress_controller_nginx_process_requests_total counter
+# HELP nginx_ingress_controller_nginx_process_resident_memory_bytes number of bytes of memory in use
+# TYPE nginx_ingress_controller_nginx_process_resident_memory_bytes gauge
+# HELP nginx_ingress_controller_nginx_process_virtual_memory_bytes number of bytes of memory in use
+# TYPE nginx_ingress_controller_nginx_process_virtual_memory_bytes gauge
+# HELP nginx_ingress_controller_nginx_process_write_bytes_total number of bytes written
+# TYPE nginx_ingress_controller_nginx_process_write_bytes_total counter
+```
+
+### Controller metrics
+```
+# HELP nginx_ingress_controller_build_info A metric with a constant '1' labeled with information about the build.
+# TYPE nginx_ingress_controller_build_info gauge
+# HELP nginx_ingress_controller_check_success Cumulative number of Ingress controller syntax check operations
+# TYPE nginx_ingress_controller_check_success counter
+# HELP nginx_ingress_controller_config_hash Running configuration hash actually running
+# TYPE nginx_ingress_controller_config_hash gauge
+# HELP nginx_ingress_controller_config_last_reload_successful Whether the last configuration reload attempt was successful
+# TYPE nginx_ingress_controller_config_last_reload_successful gauge
+# HELP nginx_ingress_controller_config_last_reload_successful_timestamp_seconds Timestamp of the last successful configuration reload.
+# TYPE nginx_ingress_controller_config_last_reload_successful_timestamp_seconds gauge
+# HELP nginx_ingress_controller_ssl_certificate_info Hold all labels associated to a certificate
+# TYPE nginx_ingress_controller_ssl_certificate_info gauge
+# HELP nginx_ingress_controller_success Cumulative number of Ingress controller reload operations
+# TYPE nginx_ingress_controller_success counter
+```
+
+### Admission metrics
+```
+# HELP nginx_ingress_controller_admission_config_size The size of the tested configuration
+# TYPE nginx_ingress_controller_admission_config_size gauge
+# HELP nginx_ingress_controller_admission_render_duration The processing duration of ingresses rendering by the admission controller (float seconds)
+# TYPE nginx_ingress_controller_admission_render_duration gauge
+# HELP nginx_ingress_controller_admission_render_ingresses The length of ingresses rendered by the admission controller
+# TYPE nginx_ingress_controller_admission_render_ingresses gauge
+# HELP nginx_ingress_controller_admission_roundtrip_duration The complete duration of the admission controller at the time to process a new event (float seconds)
+# TYPE nginx_ingress_controller_admission_roundtrip_duration gauge
+# HELP nginx_ingress_controller_admission_tested_duration The processing duration of the admission controller tests (float seconds)
+# TYPE nginx_ingress_controller_admission_tested_duration gauge
+# HELP nginx_ingress_controller_admission_tested_ingresses The length of ingresses processed by the admission controller
+# TYPE nginx_ingress_controller_admission_tested_ingresses gauge
+```
+
+### Histogram buckets
+
+You can configure buckets for histogram metrics using these command line options (here are their default values):
+* `--time-buckets=[0.005, 0.01, 0.025, 0.05, 0.1, 0.25, 0.5, 1, 2.5, 5, 10]`
+* `--length-buckets=[10, 20, 30, 40, 50, 60, 70, 80, 90, 100]`
+* `--size-buckets=[10, 100, 1000, 10000, 100000, 1e+06, 1e+07]`
diff --git a/internal/ingress/metric/collectors/socket.go b/internal/ingress/metric/collectors/socket.go
index 3b87c0ad1..9c0376cd3 100644
--- a/internal/ingress/metric/collectors/socket.go
+++ b/internal/ingress/metric/collectors/socket.go
@@ -29,14 +29,6 @@ import (
 	"k8s.io/klog/v2"
 )
 
-type upstream struct {
-	Latency        float64 `json:"upstreamLatency"`
-	HeaderTime     float64 `json:"upstreamHeaderTime"`
-	ResponseLength float64 `json:"upstreamResponseLength"`
-	ResponseTime   float64 `json:"upstreamResponseTime"`
-	//Status         string  `json:"upstreamStatus"`
-}
-
 type socketData struct {
 	Host   string `json:"host"`
 	Status string `json:"status"`
@@ -48,7 +40,11 @@ type socketData struct {
 	RequestLength float64 `json:"requestLength"`
 	RequestTime   float64 `json:"requestTime"`
 
-	upstream
+	Latency      float64 `json:"upstreamLatency"`
+	HeaderTime   float64 `json:"upstreamHeaderTime"`
+	ResponseTime float64 `json:"upstreamResponseTime"`
+	//ResponseLength float64 `json:"upstreamResponseLength"`
+	//Status         string  `json:"upstreamStatus"`
 
 	Namespace string `json:"namespace"`
 	Ingress   string `json:"ingress"`
@@ -68,16 +64,15 @@ type HistogramBuckets struct {
 type SocketCollector struct {
 	prometheus.Collector
 
-	requestTime   *prometheus.HistogramVec
-	requestLength *prometheus.HistogramVec
+	upstreamLatency *prometheus.SummaryVec // TODO: DEPRECATED, remove
+	connectTime     *prometheus.HistogramVec
+	headerTime      *prometheus.HistogramVec
+	requestTime     *prometheus.HistogramVec
+	responseTime    *prometheus.HistogramVec
 
-	responseTime   *prometheus.HistogramVec
+	requestLength  *prometheus.HistogramVec
 	responseLength *prometheus.HistogramVec
-
-	upstreamHeaderTime *prometheus.SummaryVec
-	upstreamLatency    *prometheus.SummaryVec
-
-	bytesSent *prometheus.HistogramVec
+	bytesSent      *prometheus.HistogramVec // TODO: DEPRECATED, remove
 
 	requests *prometheus.CounterVec
 
@@ -89,8 +84,6 @@ type SocketCollector struct {
 
 	metricsPerHost      bool
 	reportStatusClasses bool
-
-	buckets HistogramBuckets
 }
 
 var (
@@ -145,6 +138,26 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 		metricsPerHost:      metricsPerHost,
 		reportStatusClasses: reportStatusClasses,
 
+		connectTime: prometheus.NewHistogramVec(
+			prometheus.HistogramOpts{
+				Name:        "connect_duration_seconds",
+				Help:        "The time spent on establishing a connection with the upstream server",
+				Namespace:   PrometheusNamespace,
+				ConstLabels: constLabels,
+				Buckets:     buckets.TimeBuckets,
+			},
+			requestTags,
+		),
+		headerTime: prometheus.NewHistogramVec(
+			prometheus.HistogramOpts{
+				Name:        "header_duration_seconds",
+				Help:        "The time spent on receiving first header from the upstream server",
+				Namespace:   PrometheusNamespace,
+				ConstLabels: constLabels,
+				Buckets:     buckets.TimeBuckets,
+			},
+			requestTags,
+		),
 		responseTime: prometheus.NewHistogramVec(
 			prometheus.HistogramOpts{
 				Name:        "response_duration_seconds",
@@ -155,17 +168,6 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 			},
 			requestTags,
 		),
-		responseLength: prometheus.NewHistogramVec(
-			prometheus.HistogramOpts{
-				Name:        "response_size",
-				Help:        "The response length (including request line, header, and request body)",
-				Namespace:   PrometheusNamespace,
-				ConstLabels: constLabels,
-				Buckets:     buckets.LengthBuckets,
-			},
-			requestTags,
-		),
-
 		requestTime: prometheus.NewHistogramVec(
 			prometheus.HistogramOpts{
 				Name:        "request_duration_seconds",
@@ -176,6 +178,17 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 			},
 			requestTags,
 		),
+
+		responseLength: prometheus.NewHistogramVec(
+			prometheus.HistogramOpts{
+				Name:        "response_size",
+				Help:        "The response length (including request line, header, and request body)",
+				Namespace:   PrometheusNamespace,
+				ConstLabels: constLabels,
+				Buckets:     buckets.LengthBuckets,
+			},
+			requestTags,
+		),
 		requestLength: prometheus.NewHistogramVec(
 			prometheus.HistogramOpts{
 				Name:        "request_size",
@@ -190,7 +203,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 		requests: prometheus.NewCounterVec(
 			prometheus.CounterOpts{
 				Name:        "requests",
-				Help:        "The total number of client requests.",
+				Help:        "The total number of client requests",
 				Namespace:   PrometheusNamespace,
 				ConstLabels: constLabels,
 			},
@@ -200,7 +213,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 		bytesSent: prometheus.NewHistogramVec(
 			prometheus.HistogramOpts{
 				Name:        "bytes_sent",
-				Help:        "The number of bytes sent to a client",
+				Help:        "DEPRECATED The number of bytes sent to a client",
 				Namespace:   PrometheusNamespace,
 				Buckets:     buckets.SizeBuckets,
 				ConstLabels: constLabels,
@@ -208,21 +221,10 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 			requestTags,
 		),
 
-		upstreamHeaderTime: prometheus.NewSummaryVec(
-			prometheus.SummaryOpts{
-				Name:        "ingress_upstream_header_seconds",
-				Help:        "The time spent on receiving first header from the upstream server",
-				Namespace:   PrometheusNamespace,
-				ConstLabels: constLabels,
-				Objectives:  defObjectives,
-			},
-			[]string{"ingress", "namespace", "service", "canary"},
-		),
-
 		upstreamLatency: prometheus.NewSummaryVec(
 			prometheus.SummaryOpts{
 				Name:        "ingress_upstream_latency_seconds",
-				Help:        "Upstream service latency per Ingress",
+				Help:        "DEPRECATED Upstream service latency per Ingress",
 				Namespace:   PrometheusNamespace,
 				ConstLabels: constLabels,
 				Objectives:  defObjectives,
@@ -232,16 +234,18 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 	}
 
 	sc.metricMapping = map[string]interface{}{
-		prometheus.BuildFQName(PrometheusNamespace, "", "requests"):                 sc.requests,
-		prometheus.BuildFQName(PrometheusNamespace, "", "request_duration_seconds"): sc.requestTime,
-		prometheus.BuildFQName(PrometheusNamespace, "", "request_size"):             sc.requestLength,
+		prometheus.BuildFQName(PrometheusNamespace, "", "requests"): sc.requests,
 
+		prometheus.BuildFQName(PrometheusNamespace, "", "connect_duration_seconds"):  sc.connectTime,
+		prometheus.BuildFQName(PrometheusNamespace, "", "header_duration_seconds"):   sc.headerTime,
 		prometheus.BuildFQName(PrometheusNamespace, "", "response_duration_seconds"): sc.responseTime,
-		prometheus.BuildFQName(PrometheusNamespace, "", "response_size"):             sc.responseLength,
+		prometheus.BuildFQName(PrometheusNamespace, "", "request_duration_seconds"):  sc.requestTime,
+
+		prometheus.BuildFQName(PrometheusNamespace, "", "request_size"):  sc.requestLength,
+		prometheus.BuildFQName(PrometheusNamespace, "", "response_size"): sc.responseLength,
 
 		prometheus.BuildFQName(PrometheusNamespace, "", "bytes_sent"): sc.bytesSent,
 
-		prometheus.BuildFQName(PrometheusNamespace, "", "ingress_upstream_header_seconds"):  sc.upstreamHeaderTime,
 		prometheus.BuildFQName(PrometheusNamespace, "", "ingress_upstream_latency_seconds"): sc.upstreamLatency,
 	}
 
@@ -309,6 +313,13 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 		}
 
 		if stats.Latency != -1 {
+			connectTimeMetric, err := sc.connectTime.GetMetricWith(requestLabels)
+			if err != nil {
+				klog.ErrorS(err, "Error fetching connect time metric")
+			} else {
+				connectTimeMetric.Observe(stats.Latency)
+			}
+
 			latencyMetric, err := sc.upstreamLatency.GetMetricWith(latencyLabels)
 			if err != nil {
 				klog.ErrorS(err, "Error fetching latency metric")
@@ -318,7 +329,7 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 		}
 
 		if stats.HeaderTime != -1 {
-			headerTimeMetric, err := sc.upstreamHeaderTime.GetMetricWith(latencyLabels)
+			headerTimeMetric, err := sc.headerTime.GetMetricWith(requestLabels)
 			if err != nil {
 				klog.ErrorS(err, "Error fetching header time metric")
 			} else {
@@ -460,32 +471,34 @@ func (sc *SocketCollector) RemoveMetrics(ingresses []string, registry prometheus
 
 // Describe implements prometheus.Collector
 func (sc SocketCollector) Describe(ch chan<- *prometheus.Desc) {
+	sc.connectTime.Describe(ch)
+	sc.headerTime.Describe(ch)
+	sc.responseTime.Describe(ch)
 	sc.requestTime.Describe(ch)
+
 	sc.requestLength.Describe(ch)
+	sc.responseLength.Describe(ch)
 
 	sc.requests.Describe(ch)
 
 	sc.upstreamLatency.Describe(ch)
-	sc.upstreamHeaderTime.Describe(ch)
-
-	sc.responseTime.Describe(ch)
-	sc.responseLength.Describe(ch)
 
 	sc.bytesSent.Describe(ch)
 }
 
 // Collect implements the prometheus.Collector interface.
 func (sc SocketCollector) Collect(ch chan<- prometheus.Metric) {
+	sc.connectTime.Collect(ch)
+	sc.headerTime.Collect(ch)
+	sc.responseTime.Collect(ch)
 	sc.requestTime.Collect(ch)
+
 	sc.requestLength.Collect(ch)
+	sc.responseLength.Collect(ch)
 
 	sc.requests.Collect(ch)
 
 	sc.upstreamLatency.Collect(ch)
-	sc.upstreamHeaderTime.Collect(ch)
-
-	sc.responseTime.Collect(ch)
-	sc.responseLength.Collect(ch)
 
 	sc.bytesSent.Collect(ch)
 }
diff --git a/internal/ingress/metric/collectors/socket_test.go b/internal/ingress/metric/collectors/socket_test.go
index 11af7c06d..f175828cc 100644
--- a/internal/ingress/metric/collectors/socket_test.go
+++ b/internal/ingress/metric/collectors/socket_test.go
@@ -98,6 +98,8 @@ func TestCollector(t *testing.T) {
 				"path":"/admin",
 				"requestLength":300.0,
 				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
 				"upstreamName":"test-upstream",
 				"upstreamIP":"1.1.1.1:8080",
 				"upstreamResponseTime":200,
@@ -122,6 +124,8 @@ func TestCollector(t *testing.T) {
 				"path":"/admin",
 				"requestLength":300.0,
 				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
 				"upstreamName":"test-upstream",
 				"upstreamIP":"1.1.1.1:8080",
 				"upstreamResponseTime":200,
@@ -131,24 +135,60 @@ func TestCollector(t *testing.T) {
 				"service":"test-app",
 				"canary":""
 			}]`},
-			metrics: []string{"nginx_ingress_controller_response_duration_seconds"},
+			metrics: []string{
+				"nginx_ingress_controller_connect_duration_seconds",
+				"nginx_ingress_controller_header_duration_seconds",
+				"nginx_ingress_controller_response_duration_seconds",
+			},
 			wantBefore: `
-				# HELP nginx_ingress_controller_response_duration_seconds The time spent on receiving the response from the upstream server
-				# TYPE nginx_ingress_controller_response_duration_seconds histogram
-				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.005"} 0
-				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.01"} 0
-				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.025"} 0
-				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.05"} 0
-				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.1"} 0
-				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.25"} 0
-				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.5"} 0
-				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="1"} 0
-				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="2.5"} 0
-				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="5"} 0
-				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="10"} 0
-				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="+Inf"} 1
-				nginx_ingress_controller_response_duration_seconds_sum{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200"} 200
-				nginx_ingress_controller_response_duration_seconds_count{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200"} 1
+			# HELP nginx_ingress_controller_connect_duration_seconds The time spent on establishing a connection with the upstream server
+			# TYPE nginx_ingress_controller_connect_duration_seconds histogram
+			nginx_ingress_controller_connect_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.005"} 0
+			nginx_ingress_controller_connect_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.01"} 0
+			nginx_ingress_controller_connect_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.025"} 0
+			nginx_ingress_controller_connect_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.05"} 0
+			nginx_ingress_controller_connect_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.1"} 0
+			nginx_ingress_controller_connect_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.25"} 0
+			nginx_ingress_controller_connect_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.5"} 0
+			nginx_ingress_controller_connect_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="1"} 1
+			nginx_ingress_controller_connect_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="2.5"} 1
+			nginx_ingress_controller_connect_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="5"} 1
+			nginx_ingress_controller_connect_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="10"} 1
+			nginx_ingress_controller_connect_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="+Inf"} 1
+			nginx_ingress_controller_connect_duration_seconds_sum{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200"} 1
+			nginx_ingress_controller_connect_duration_seconds_count{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200"} 1
+			# HELP nginx_ingress_controller_header_duration_seconds The time spent on receiving first header from the upstream server
+			# TYPE nginx_ingress_controller_header_duration_seconds histogram
+			nginx_ingress_controller_header_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.005"} 0
+			nginx_ingress_controller_header_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.01"} 0
+			nginx_ingress_controller_header_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.025"} 0
+			nginx_ingress_controller_header_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.05"} 0
+			nginx_ingress_controller_header_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.1"} 0
+			nginx_ingress_controller_header_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.25"} 0
+			nginx_ingress_controller_header_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.5"} 0
+			nginx_ingress_controller_header_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="1"} 0
+			nginx_ingress_controller_header_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="2.5"} 0
+			nginx_ingress_controller_header_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="5"} 1
+			nginx_ingress_controller_header_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="10"} 1
+			nginx_ingress_controller_header_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="+Inf"} 1
+			nginx_ingress_controller_header_duration_seconds_sum{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200"} 5
+			nginx_ingress_controller_header_duration_seconds_count{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200"} 1
+			# HELP nginx_ingress_controller_response_duration_seconds The time spent on receiving the response from the upstream server
+			# TYPE nginx_ingress_controller_response_duration_seconds histogram
+			nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.005"} 0
+			nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.01"} 0
+			nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.025"} 0
+			nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.05"} 0
+			nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.1"} 0
+			nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.25"} 0
+			nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="0.5"} 0
+			nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="1"} 0
+			nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="2.5"} 0
+			nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="5"} 0
+			nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="10"} 0
+			nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200",le="+Inf"} 1
+			nginx_ingress_controller_response_duration_seconds_sum{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200"} 200
+			nginx_ingress_controller_response_duration_seconds_count{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200"} 1
 			`,
 			removeIngresses: []string{"test-app-production/web-yml"},
 			wantAfter: `
@@ -164,6 +204,8 @@ func TestCollector(t *testing.T) {
 				"path":"/admin",
 				"requestLength":300.0,
 				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
 				"upstreamName":"test-upstream",
 				"upstreamIP":"1.1.1.1:8080",
 				"upstreamResponseTime":200,
@@ -175,7 +217,7 @@ func TestCollector(t *testing.T) {
 			}]`},
 			metrics: []string{"nginx_ingress_controller_requests"},
 			wantBefore: `
-				# HELP nginx_ingress_controller_requests The total number of client requests.
+				# HELP nginx_ingress_controller_requests The total number of client requests
 				# TYPE nginx_ingress_controller_requests counter
 				nginx_ingress_controller_requests{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="200"} 1
 			`,
@@ -193,6 +235,8 @@ func TestCollector(t *testing.T) {
 				"path":"/admin",
 				"requestLength":300.0,
 				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
 				"upstreamName":"test-upstream",
 				"upstreamIP":"1.1.1.1:8080",
 				"upstreamResponseTime":200,
@@ -236,6 +280,8 @@ func TestCollector(t *testing.T) {
 				"path":"/admin",
 				"requestLength":300.0,
 				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
 				"upstreamName":"test-upstream",
 				"upstreamIP":"1.1.1.1:8080",
 				"upstreamResponseTime":200,
@@ -252,6 +298,8 @@ func TestCollector(t *testing.T) {
 				"path":"/admin",
 				"requestLength":300.0,
 				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
 				"upstreamName":"test-upstream",
 				"upstreamIP":"1.1.1.1:8080",
 				"upstreamResponseTime":200,
@@ -268,6 +316,8 @@ func TestCollector(t *testing.T) {
 				"path":"/admin",
 				"requestLength":300.0,
 				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
 				"upstreamName":"test-upstream",
 				"upstreamIP":"1.1.1.1:8080",
 				"upstreamResponseTime":200,
@@ -308,7 +358,7 @@ func TestCollector(t *testing.T) {
 				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml-qa",method="GET",namespace="test-app-qa",path="/admin",service="test-app-qa",status="200",le="10"} 0
 				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml-qa",method="GET",namespace="test-app-qa",path="/admin",service="test-app-qa",status="200",le="+Inf"} 2
 				nginx_ingress_controller_response_duration_seconds_sum{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml-qa",method="GET",namespace="test-app-qa",path="/admin",service="test-app-qa",status="200"} 400
-				nginx_ingress_controller_response_duration_seconds_count{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml-qa",method="GET",namespace="test-app-qa",path="/admin",service="test-app-qa",status="200"} 2			
+				nginx_ingress_controller_response_duration_seconds_count{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml-qa",method="GET",namespace="test-app-qa",path="/admin",service="test-app-qa",status="200"} 2
 			`,
 		},
 
@@ -323,6 +373,8 @@ func TestCollector(t *testing.T) {
 				"path":"/admin",
 				"requestLength":300.0,
 				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
 				"upstreamName":"test-upstream",
 				"upstreamIP":"1.1.1.1:8080",
 				"upstreamResponseTime":200,
@@ -340,6 +392,8 @@ func TestCollector(t *testing.T) {
 				"path":"/admin",
 				"requestLength":300.0,
 				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
 				"upstreamName":"test-upstream",
 				"upstreamIP":"1.1.1.1:8080",
 				"upstreamResponseTime":100,
@@ -382,6 +436,8 @@ func TestCollector(t *testing.T) {
 				"path":"/admin",
 				"requestLength":300.0,
 				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
 				"upstreamName":"test-upstream",
 				"upstreamIP":"1.1.1.1:8080",
 				"upstreamResponseTime":200,

From dacb8da0588f687b9d16a1779f90c6adc6f40e83 Mon Sep 17 00:00:00 2001
From: Matt Lauber <github@mklauber.com>
Date: Fri, 30 Sep 2022 11:06:29 -0400
Subject: [PATCH 0396/1641] Fix yaml formatting error with multiple annotations
 (#9104)

When using multiple values for the `serviceAccount.annotations` values, the first line ends up indented 2 further than the following lines, resulting in a invalid yaml
---
 charts/ingress-nginx/templates/controller-serviceaccount.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/templates/controller-serviceaccount.yaml b/charts/ingress-nginx/templates/controller-serviceaccount.yaml
index 824b2a124..e31819f7c 100644
--- a/charts/ingress-nginx/templates/controller-serviceaccount.yaml
+++ b/charts/ingress-nginx/templates/controller-serviceaccount.yaml
@@ -12,7 +12,7 @@ metadata:
   namespace: {{ .Release.Namespace }}
   {{- if .Values.serviceAccount.annotations }}
   annotations:
-  {{ toYaml .Values.serviceAccount.annotations | indent 4 }}
+  {{- toYaml .Values.serviceAccount.annotations | indent 4 }}
   {{- end }}
 automountServiceAccountToken: {{ .Values.serviceAccount.automountServiceAccountToken }}
 {{- end }}

From 8d7286c77ecc97284388020aabac6956cdf4b75a Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 30 Sep 2022 11:57:36 -0400
Subject: [PATCH 0397/1641] tag 1.4.0 to start release

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 757407982..0d0c52f84 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.3.1
+v1.4.0

From 3dd08bf2ee5fe658347101957507b0ba48aa34d5 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 30 Sep 2022 12:58:12 -0400
Subject: [PATCH 0398/1641] remove vcs build and resolve git issues

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG            |  2 +-
 build/build.sh | 25 ++++++++++++-------------
 2 files changed, 13 insertions(+), 14 deletions(-)

diff --git a/TAG b/TAG
index 0d0c52f84..757407982 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.4.0
+v1.3.1
diff --git a/build/build.sh b/build/build.sh
index 42bec820b..f2f1ec2eb 100755
--- a/build/build.sh
+++ b/build/build.sh
@@ -49,31 +49,30 @@ echo "Building targets for ${ARCH}, generated targets in ${TARGETS_DIR} director
 
 echo "Building ${PKG}/cmd/nginx"
 
-pushd /go/src/k8s.io/ingress-nginx
-git config --add safe.directory /go/src/k8s.io/ingress-nginx
-popd
-
 ${GO_BUILD_CMD} \
   -trimpath -ldflags="-buildid= -w -s \
-    -X ${PKG}/version.RELEASE=${TAG} \
-    -X ${PKG}/version.COMMIT=${COMMIT_SHA} \
-    -X ${PKG}/version.REPO=${REPO_INFO}" \
+  -X ${PKG}/version.RELEASE=${TAG} \
+  -X ${PKG}/version.COMMIT=${COMMIT_SHA} \
+  -X ${PKG}/version.REPO=${REPO_INFO}" \
+  -buildvcs=false \
   -o "${TARGETS_DIR}/nginx-ingress-controller" "${PKG}/cmd/nginx"
 
 echo "Building ${PKG}/cmd/dbg"
 
 ${GO_BUILD_CMD} \
   -trimpath -ldflags="-buildid= -w -s \
-    -X ${PKG}/version.RELEASE=${TAG} \
-    -X ${PKG}/version.COMMIT=${COMMIT_SHA} \
-    -X ${PKG}/version.REPO=${REPO_INFO}" \
+  -X ${PKG}/version.RELEASE=${TAG} \
+  -X ${PKG}/version.COMMIT=${COMMIT_SHA} \
+  -X ${PKG}/version.REPO=${REPO_INFO}" \
+  -buildvcs=false \
   -o "${TARGETS_DIR}/dbg" "${PKG}/cmd/dbg"
 
 echo "Building ${PKG}/cmd/waitshutdown"
 
 ${GO_BUILD_CMD} \
   -trimpath -ldflags="-buildid= -w -s \
-    -X ${PKG}/version.RELEASE=${TAG} \
-    -X ${PKG}/version.COMMIT=${COMMIT_SHA} \
-    -X ${PKG}/version.REPO=${REPO_INFO}" \
+  -X ${PKG}/version.RELEASE=${TAG} \
+  -X ${PKG}/version.COMMIT=${COMMIT_SHA} \
+  -X ${PKG}/version.REPO=${REPO_INFO}" \
+  -buildvcs=false \
   -o "${TARGETS_DIR}/wait-shutdown" "${PKG}/cmd/waitshutdown"

From 4c24fa29f65e4cd94ac1fe3f3d0bc245db8d84a7 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 30 Sep 2022 13:14:54 -0400
Subject: [PATCH 0399/1641] update tag to start build

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 757407982..0d0c52f84 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.3.1
+v1.4.0

From 5fb3b974afb1cf12fd6e67c6db4c23499087d270 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sat, 1 Oct 2022 22:14:13 +0530
Subject: [PATCH 0400/1641] fixed broken helm version comparision (#9113)

---
 build/dev-env.sh | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/build/dev-env.sh b/build/dev-env.sh
index 68b683350..ae6860726 100755
--- a/build/dev-env.sh
+++ b/build/dev-env.sh
@@ -45,9 +45,10 @@ if ! command -v helm &> /dev/null; then
   exit 1
 fi
 
-HELM_VERSION=$(helm version 2>&1 | grep -oE 'v[0-9]+\.[0-9]+\.[0-9]+') || true
-if [[ ${HELM_VERSION} < "v3.9.0" ]]; then
-  echo "Please upgrade helm to v3.9.0 or higher"
+HELM_VERSION=$(helm version 2>&1 | cut -f1 -d"," | grep -oE '[0-9]+\.[0-9]+\.[0-9]+') || true
+echo $HELM_VERSION
+if [[ ${HELM_VERSION} -lt 3.10.0 ]]; then
+  echo "Please upgrade helm to v3.10.0 or higher"
   exit 1
 fi
 

From c4a50ebaa64b975660e25e74faeaee5957f9ec5e Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Sun, 2 Oct 2022 18:40:46 -0400
Subject: [PATCH 0401/1641] update for 1.4.0 release

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/ci.yaml                     |   2 +-
 Changelog.md                                  | 111 +++++++++++++++++-
 README.md                                     |  10 +-
 charts/ingress-nginx/CHANGELOG.md             |   8 ++
 charts/ingress-nginx/Chart.yaml               |  10 +-
 charts/ingress-nginx/README.md                |   8 +-
 charts/ingress-nginx/values.yaml              |   6 +-
 deploy/static/provider/aws/deploy.yaml        |  62 ++++++----
 .../aws/nlb-with-tls-termination/deploy.yaml  |  62 ++++++----
 deploy/static/provider/baremetal/deploy.yaml  |  62 ++++++----
 deploy/static/provider/cloud/deploy.yaml      |  62 ++++++----
 deploy/static/provider/do/deploy.yaml         |  62 ++++++----
 deploy/static/provider/exoscale/deploy.yaml   |  62 ++++++----
 deploy/static/provider/kind/deploy.yaml       |  62 ++++++----
 deploy/static/provider/scw/deploy.yaml        |  62 ++++++----
 docs/deploy/index.md                          |  20 ++--
 16 files changed, 458 insertions(+), 213 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 46e44817c..07948ef78 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -130,7 +130,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.23.12, v1.24.6, v1.25.2]
+        k8s: [v1.22.15, v1.23.12, v1.24.6, v1.25.2]
 
     steps:
 
diff --git a/Changelog.md b/Changelog.md
index bcbcfee04..4fda4aee4 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -1,11 +1,114 @@
 # Changelog
 
+
+###  1.4.0
+
+### Community Updates
+
+We will discuss the results of our Community Survey, progress on the stabilization project, and ideas going
+forward with the project at 
+[Kubecon NA 2022 in Detroit](https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/). Come join us 
+and let us hear what you'd like to see in the future for ingress-nginx.
+
+https://kccncna2022.sched.com/event/18lgl?iframe=no
+
+[**Kubernetes Registry change notice**](https://twitter.com/BenTheElder/status/1575898507235323904)
+The [@kubernetesio](https://twitter.com/kubernetesio) container image host http://k8s.gcr.io is 
+*actually* getting redirected to the community controlled http://registry.k8s.io starting with a small portion of 
+traffic on October 3rd.
+
+If you notice any issues, *please* ping [Ben Elder](https://twitter.com/BenTheElder), 
+[@thockin](https://twitter.com/thockin), [@ameukam](https://twitter.com/ameukam),or report issues in slack to
+[sig-k8s-infra slack channel](https://kubernetes.slack.com/archives/CCK68P2Q2).
+
+### What's Changed
+
+* 1.4.0 updates ingress-nginx to use Endpointslices instead of Endpoints. Thank you, @tombokombo, for your work in
+[8890](https://github.com/kubernetes/ingress-nginx/pull/8890)
+* Update to Prometheus metric names, more information [available here]( https://github.com/kubernetes/ingress-nginx/pull/8728
+)
+* Deprecated Kubernetes versions 1.20-1.21, Added support for, 1.25, currently supported versions v1.23, v1.24, v1.25  
+
+ADDED
+* `_request_duration_seconds` Histogram
+* `_connect_duration_seconds` Histogram
+* `_header_duration_seconds` Histogram
+* `_response_duration_seconds` Histogram
+
+Updated
+* `_response_size` Histogram
+* `_request_size` Histogram
+* `_requests` Counter
+
+DEPRECATED
+* `_bytes_sent` Histogram
+* _ingress_upstream_latency_seconds` Summary
+
+REMOVED
+* `ingress_upstream_header_seconds`  Summary
+
+Also upgraded to golang 1.19.1
+
+
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.4.0@sha256:b67e889f1db8692de7e41d4d9aef8de56645bf048261f31fa7f8bfc6ea2222a0
+
+
+### All Changes:
+
+* [9104](https://github.com/kubernetes/ingress-nginx/pull/9104) Fix yaml formatting error with multiple annotations
+* [9090](https://github.com/kubernetes/ingress-nginx/pull/9090) fix chroot module mount path
+* [9088](https://github.com/kubernetes/ingress-nginx/pull/9088) Add annotation for setting sticky cookie domain
+* [9086](https://github.com/kubernetes/ingress-nginx/pull/9086) Update Version ModSecurity and Coreruleset
+* [9081](https://github.com/kubernetes/ingress-nginx/pull/9081) plugin - endpoints to slices
+* [9078](https://github.com/kubernetes/ingress-nginx/pull/9078) expand CI testing for all stable versions of Kubernetes
+* [9074](https://github.com/kubernetes/ingress-nginx/pull/9074) fix: do not apply job-patch psp on Kubernetes 1.25 and newer
+* [9072](https://github.com/kubernetes/ingress-nginx/pull/9072) Added a Link to the New Contributors Tips
+* [9069](https://github.com/kubernetes/ingress-nginx/pull/9069) Add missing space to error message
+* [9059](https://github.com/kubernetes/ingress-nginx/pull/9059) kubewebhookcertgen sha change after go1191
+* [9058](https://github.com/kubernetes/ingress-nginx/pull/9058) updated testrunner image sha after bump to go1191
+* [9046](https://github.com/kubernetes/ingress-nginx/pull/9046) Parameterize metrics port name
+* [9036](https://github.com/kubernetes/ingress-nginx/pull/9036) update OpenTelemetry image
+* [9035](https://github.com/kubernetes/ingress-nginx/pull/9035) Added instructions for Rancher Desktop
+* [9028](https://github.com/kubernetes/ingress-nginx/pull/9028) fix otel init_module
+* [9023](https://github.com/kubernetes/ingress-nginx/pull/9023) updates for fixing 1.3.1 release
+* [9018](https://github.com/kubernetes/ingress-nginx/pull/9018) Add v1.25 test and reduce amount of e2e tests
+* [9017](https://github.com/kubernetes/ingress-nginx/pull/9017) fix LD_LIBRARY_PATH for opentelemetry
+
+### Dependencies updates:
+
+* [9085](https://github.com/kubernetes/ingress-nginx/pull/9085) Bump actions/dependency-review-action from 2.1.0 to 2.4.0
+* [9084](https://github.com/kubernetes/ingress-nginx/pull/9084) Bump actions/checkout from 1 to 3
+* [9083](https://github.com/kubernetes/ingress-nginx/pull/9083) Bump github/codeql-action from 2.1.24 to 2.1.25
+* [9089](https://github.com/kubernetes/ingress-nginx/pull/9089) Bump k8s.io/component-base from 0.25.1 to 0.25.2
+* [9066](https://github.com/kubernetes/ingress-nginx/pull/9066) Bump github/codeql-action from 2.1.23 to 2.1.24
+* [9065](https://github.com/kubernetes/ingress-nginx/pull/9065) Bump k8s.io/component-base from 0.25.0 to 0.25.1
+* [9064](https://github.com/kubernetes/ingress-nginx/pull/9064) Bump github.com/onsi/ginkgo/v2 from 2.1.6 to 2.2.0
+* [9057](https://github.com/kubernetes/ingress-nginx/pull/9057) bump go to v1.19.1
+* [9053](https://github.com/kubernetes/ingress-nginx/pull/9053) Bump ossf/scorecard-action from 2.0.2 to 2.0.3
+* [9052](https://github.com/kubernetes/ingress-nginx/pull/9052) Bump github/codeql-action from 2.1.22 to 2.1.23
+* [9045](https://github.com/kubernetes/ingress-nginx/pull/9045) Bump actions/upload-artifact from 3.0.0 to 3.1.0
+* [9044](https://github.com/kubernetes/ingress-nginx/pull/9044) Bump ossf/scorecard-action from 1.1.2 to 2.0.2
+* [9043](https://github.com/kubernetes/ingress-nginx/pull/9043) Bump k8s.io/klog/v2 from 2.80.0 to 2.80.1
+* [9022](https://github.com/kubernetes/ingress-nginx/pull/9022) Bump github.com/onsi/ginkgo/v2 from 2.1.4 to 2.1.6
+* [9021](https://github.com/kubernetes/ingress-nginx/pull/9021) Bump k8s.io/klog/v2 from 2.70.1 to 2.80.0
+
+## New Contributors
+* @gunamata made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9035
+* @afro-coder made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8924
+* @wilmardo made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9074
+* @nicolasjulian made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9086
+* @mtneug made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9088
+* @knbnnate made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/8692
+* @mklauber made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9104
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.3.1...controller-v1.4.0
+
 ### 1.3.1
 
-Please fill out our 2022 Ingress-Nginx User Survey and let us know what you want to see in future releases.
-
-https://www.surveymonkey.com/r/ingressngx2022
-
 In v1.3.1 leader elections will be done entirely using the Lease API and no longer using configmaps. 
 v1.3.0 is a safe transition version, using v1.3.0 can automatically complete the merging of election locks, and then you can safely upgrade to v1.3.1.
 
diff --git a/README.md b/README.md
index fce3fbb84..4cf990559 100644
--- a/README.md
+++ b/README.md
@@ -5,11 +5,14 @@
 [![GitHub license](https://img.shields.io/github/license/kubernetes/ingress-nginx.svg)](https://github.com/kubernetes/ingress-nginx/blob/main/LICENSE)
 [![GitHub stars](https://img.shields.io/github/stars/kubernetes/ingress-nginx.svg)](https://github.com/kubernetes/ingress-nginx/stargazers)
 [![GitHub stars](https://img.shields.io/badge/contributions-welcome-orange.svg)](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md)
-[![FOSSA Status](https://app.fossa.io/api/projects/git%2Bgithub.com%2Fkubernetes%2Fingress-nginx.svg?type=shield)](https://app.fossa.io/projects/git%2Bgithub.com%2Fkubernetes%2Fingress-nginx?ref=badge_shield)
 
-Please fill out our 2022 Ingress-Nginx User Survey and let us know what you want to see in future releases.
+### Community Update
 
-https://www.surveymonkey.com/r/ingressngx2022
+We will discuss the results of our Community Survey, progress on the stabilization project, and ideas going
+forward with the project at [Kubecon NA 2022 in Detroit](https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/). Come join us and let us hear what you'd like to see in the
+future for ingress-nginx.
+
+https://kccncna2022.sched.com/event/18lgl?iframe=no
 
 ## Overview
 
@@ -35,6 +38,7 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 
 | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
+| v1.4.0                | 1.25, 1.24, 1.23             | 3.16.2         | 1.19.10†      |
 | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      |
 | v1.3.0                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.0         | 1.19.10†      |
 | v1.2.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.6         | 1.19.10†      |
diff --git a/charts/ingress-nginx/CHANGELOG.md b/charts/ingress-nginx/CHANGELOG.md
index 27a52e83a..3c3404ffd 100644
--- a/charts/ingress-nginx/CHANGELOG.md
+++ b/charts/ingress-nginx/CHANGELOG.md
@@ -2,6 +2,14 @@
 
 This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
 
+### 4.3.0 
+- Support for Kubernetes v.1.25.0 was added and support for endpoint slices
+- Support for Kubernetes v1.20.0 was removed
+- [8890](https://github.com/kubernetes/ingress-nginx/pull/8890) migrate to endpointslices
+- [9059](https://github.com/kubernetes/ingress-nginx/pull/9059) kubewebhookcertgen sha change after go1191
+- [9046](https://github.com/kubernetes/ingress-nginx/pull/9046) Parameterize metrics port name
+- [9104](https://github.com/kubernetes/ingress-nginx/pull/9104) Fix yaml formatting error with multiple annotations
+
 ### 4.2.1
 
 - The sha of kube-webhook-certgen image & the opentelemetry image, in values file, was changed to new images built on alpine-v3.16.1
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 08dcdb6ed..9cf62ecf9 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,8 +2,8 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.2.5
-appVersion: 1.3.1
+version: 4.3.0
+appVersion: 1.4.0
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
@@ -25,5 +25,7 @@ annotations:
   # List of changes for the release in artifacthub.io
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
-    - "[8896](https://github.com/kubernetes/ingress-nginx/pull/8896) updated to new images built today"
-    - "fix permissions about configmap"
+    - "[8890](https://github.com/kubernetes/ingress-nginx/pull/8890) migrate to endpointslices"
+    - "[9059](https://github.com/kubernetes/ingress-nginx/pull/9059) kubewebhookcertgen sha change after go1191"
+    - "[9046](https://github.com/kubernetes/ingress-nginx/pull/9046) Parameterize metrics port name"
+    - "[9104](https://github.com/kubernetes/ingress-nginx/pull/9104) Fix yaml formatting error with multiple annotations"
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index c9ee6e447..36490474a 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.2.5](https://img.shields.io/badge/Version-4.2.5-informational?style=flat-square) ![AppVersion: 1.3.1](https://img.shields.io/badge/AppVersion-1.3.1-informational?style=flat-square)
+![Version: 4.3.0](https://img.shields.io/badge/Version-4.3.0-informational?style=flat-square) ![AppVersion: 1.4.0](https://img.shields.io/badge/AppVersion-1.4.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -310,13 +310,13 @@ Kubernetes: `>=1.20.0-0`
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974"` |  |
-| controller.image.digestChroot | string | `"sha256:a8466b19c621bd550b1645e27a004a5cc85009c858a9ab19490216735ac432b1"` |  |
+| controller.image.digest | string | `"sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143"` |  |
+| controller.image.digestChroot | string | `"sha256:b67e889f1db8692de7e41d4d9aef8de56645bf048261f31fa7f8bfc6ea2222a0"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.3.1"` |  |
+| controller.image.tag | string | `"v1.4.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 76d03fd72..a5f6dc776 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -23,9 +23,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.3.1"
-    digest: sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
-    digestChroot: sha256:a8466b19c621bd550b1645e27a004a5cc85009c858a9ab19490216735ac432b1
+    tag: "v1.4.0"
+    digest: sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
+    digestChroot: sha256:b67e889f1db8692de7e41d4d9aef8de56645bf048261f31fa7f8bfc6ea2222a0
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index cca1474d2..5c656bfae 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -127,6 +127,14 @@ rules:
   verbs:
   - create
   - patch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
@@ -136,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -220,6 +228,14 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
@@ -229,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -327,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +359,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +392,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +415,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -439,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
+        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -511,7 +527,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -522,7 +538,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -536,7 +552,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -558,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -569,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -585,7 +601,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -607,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -620,7 +636,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 20f2c665a..91886150d 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -127,6 +127,14 @@ rules:
   verbs:
   - create
   - patch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
@@ -136,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -220,6 +228,14 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
@@ -229,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -334,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -352,7 +368,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -385,7 +401,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -408,7 +424,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -448,7 +464,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
+        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +539,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +550,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +564,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -570,7 +586,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,7 +597,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -597,7 +613,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -619,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -632,7 +648,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index f2f3d4ac9..bb9ce026c 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -127,6 +127,14 @@ rules:
   verbs:
   - create
   - patch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
@@ -136,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -220,6 +228,14 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
@@ -229,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -327,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -339,7 +355,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -371,7 +387,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -394,7 +410,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -433,7 +449,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
+        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -505,7 +521,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -516,7 +532,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -530,7 +546,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -552,7 +568,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -563,7 +579,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -579,7 +595,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -601,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -614,7 +630,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index d7ba531c2..372c71909 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -127,6 +127,14 @@ rules:
   verbs:
   - create
   - patch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
@@ -136,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -220,6 +228,14 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
@@ -229,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -327,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -339,7 +355,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +388,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +411,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -435,7 +451,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
+        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -507,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -518,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -532,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -554,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -565,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -581,7 +597,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -603,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -616,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index f24648b5e..c7da768ff 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -127,6 +127,14 @@ rules:
   verbs:
   - create
   - patch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
@@ -136,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -220,6 +228,14 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
@@ -229,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -342,7 +358,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -375,7 +391,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -398,7 +414,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -438,7 +454,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
+        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -510,7 +526,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -521,7 +537,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +551,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -557,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -568,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +600,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -606,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -619,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 856fbfa8d..dfb0e8f7d 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -127,6 +127,14 @@ rules:
   verbs:
   - create
   - patch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
@@ -136,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -220,6 +228,14 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
@@ -229,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -327,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -348,7 +364,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -381,7 +397,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -404,7 +420,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -444,7 +460,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
+        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -516,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -527,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -541,7 +557,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -563,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -574,7 +590,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -590,7 +606,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -612,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -625,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 5291d2d33..cde5ece76 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -127,6 +127,14 @@ rules:
   verbs:
   - create
   - patch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
@@ -136,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -220,6 +228,14 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
@@ -229,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -327,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -339,7 +355,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -371,7 +387,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -394,7 +410,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -439,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
+        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,7 +537,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -532,7 +548,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -546,7 +562,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -568,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -579,7 +595,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -595,7 +611,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -617,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -630,7 +646,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index a43df9de4..25880d180 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -127,6 +127,14 @@ rules:
   verbs:
   - create
   - patch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
@@ -136,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -155,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -220,6 +228,14 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
@@ -229,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -248,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -268,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -287,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -306,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -342,7 +358,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -375,7 +391,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -398,7 +414,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -438,7 +454,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.3.1@sha256:54f7fe2c6c5a9db9a0ebf1131797109bb7a4d91f56b9b362bde2abd237dd1974
+        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -510,7 +526,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -521,7 +537,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +551,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -557,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -568,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.3.1
+        app.kubernetes.io/version: 1.4.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +600,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -606,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -619,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.3.1
+    app.kubernetes.io/version: 1.4.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 5a0b6bfb8..167c700b8 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -61,7 +61,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -224,7 +224,7 @@ In AWS, we use a Network load balancer (NLB) to expose the NGINX Ingress control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -232,10 +232,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -281,7 +281,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -298,7 +298,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -306,7 +306,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -314,7 +314,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -329,7 +329,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -346,7 +346,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.3.1/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),

From fd23ca75a62400c142b53b11c775cea9022c734e Mon Sep 17 00:00:00 2001
From: yutachaos <18604471+yutachaos@users.noreply.github.com>
Date: Tue, 4 Oct 2022 02:42:15 +0900
Subject: [PATCH 0402/1641] Fixed to supported versions (#9117)

---
 Changelog.md | 2 +-
 README.md    | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/Changelog.md b/Changelog.md
index 4fda4aee4..34b49e28a 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -27,7 +27,7 @@ If you notice any issues, *please* ping [Ben Elder](https://twitter.com/BenTheEl
 [8890](https://github.com/kubernetes/ingress-nginx/pull/8890)
 * Update to Prometheus metric names, more information [available here]( https://github.com/kubernetes/ingress-nginx/pull/8728
 )
-* Deprecated Kubernetes versions 1.20-1.21, Added support for, 1.25, currently supported versions v1.23, v1.24, v1.25  
+* Deprecated Kubernetes versions 1.20-1.21, Added support for, 1.25, currently supported versions v1.22, v1.23, v1.24, v1.25  
 
 ADDED
 * `_request_duration_seconds` Histogram
diff --git a/README.md b/README.md
index 4cf990559..1af0a6000 100644
--- a/README.md
+++ b/README.md
@@ -38,7 +38,7 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 
 | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
-| v1.4.0                | 1.25, 1.24, 1.23             | 3.16.2         | 1.19.10†      |
+| v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      |
 | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      |
 | v1.3.0                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.0         | 1.19.10†      |
 | v1.2.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.6         | 1.19.10†      |

From fd7281c70396637640d32932d13e8956a39f0ca2 Mon Sep 17 00:00:00 2001
From: "Leon(@mediocreDevops)" <leon9923@gmail.com>
Date: Tue, 4 Oct 2022 14:36:15 +0530
Subject: [PATCH 0403/1641] Updated incorrect version number in the
 Installation Guide (#9120)

Fixes the incorrect version v.1.4.0 to v1.4.0

Signed-off-by: afro-coder <leon9923@gmail.com>

Signed-off-by: afro-coder <leon9923@gmail.com>
---
 docs/deploy/index.md | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 167c700b8..eed695ac9 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -61,7 +61,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -224,7 +224,7 @@ In AWS, we use a Network load balancer (NLB) to expose the NGINX Ingress control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -232,10 +232,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -281,7 +281,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -298,7 +298,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -306,7 +306,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -314,7 +314,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -329,7 +329,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -346,7 +346,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v.1.4.0/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),

From 172d30239e8eef73b2db85be5ae5990300bed13a Mon Sep 17 00:00:00 2001
From: "Leon(@mediocreDevops)" <8469842+afro-coder@users.noreply.github.com>
Date: Tue, 4 Oct 2022 16:12:15 +0530
Subject: [PATCH 0404/1641] Updated the Developer guide with New Contributor
 information (#9114)

Added more clarity to the docs with regards to the getting-started page
for developers.

Signed-off-by: afro-coder <leon9923@gmail.com>

Signed-off-by: afro-coder <leon9923@gmail.com>
---
 docs/developer-guide/getting-started.md | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

diff --git a/docs/developer-guide/getting-started.md b/docs/developer-guide/getting-started.md
index fbf251790..9f4be8fcc 100644
--- a/docs/developer-guide/getting-started.md
+++ b/docs/developer-guide/getting-started.md
@@ -1,7 +1,15 @@
-# Developing for NGINX Ingress Controller
+ Developing for NGINX Ingress Controller
 
 This document explains how to get started with developing for NGINX Ingress controller.
 
+For the really new contributors, who want to contribute to the INGRESS-NGINX project, but need help with understanding some basic concepts,
+that are needed to work with the Kubernetes ingress resource, here is a link to the [New Contributors Guide](https://github.com/kubernetes/ingress-nginx/blob/main/NEW_CONTRIBUTOR.md).
+This guide contains tips on how a http/https request travels, from a browser or a curl command,
+to the webserver process running inside a container, in a pod, in a Kubernetes cluster, but enters the cluster via a ingress resource.
+For those who are familiar with those basic networking concepts like routing of a packet with regards to a
+http request, termination of connection, reverseproxy etc. etc., you can skip this and move on to the sections below.
+(or read it anyways just for context and also provide feedbacks if any)
+
 ## Prerequisites
 
 Install [Go 1.14](https://golang.org/dl/) or later.
@@ -88,6 +96,3 @@ and then publish such version with
 ```console
 docker push $REGISTRY/controller:$TAG
 ```
-
-### New Contributor Tips
-New contributors can refer to the [new contributor tips](https://github.com/kubernetes/ingress-nginx/blob/main/NEW_CONTRIBUTOR.md) which will be updated with examples and tips.

From 2645b5c0e4a44223106ef998c8455ec4a9225c0c Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Tue, 4 Oct 2022 12:06:16 -0300
Subject: [PATCH 0405/1641] Remove deprecated net dependency (#9110)

---
 TAG                          | 2 +-
 go.mod                       | 2 +-
 test/e2e/annotations/grpc.go | 3 ++-
 3 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/TAG b/TAG
index 0d0c52f84..97a3c26fd 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.4.0
+v1.4.0-old
diff --git a/go.mod b/go.mod
index 471e7749e..01efaba68 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,6 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
-	golang.org/x/net v0.0.0-20220722155237-a158d28d115b
 	google.golang.org/grpc v1.49.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -106,6 +105,7 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4 // indirect
+	golang.org/x/net v0.0.0-20220722155237-a158d28d115b // indirect
 	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
 	golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f // indirect
 	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
diff --git a/test/e2e/annotations/grpc.go b/test/e2e/annotations/grpc.go
index dfe8141ee..39349e701 100644
--- a/test/e2e/annotations/grpc.go
+++ b/test/e2e/annotations/grpc.go
@@ -21,10 +21,11 @@ import (
 	"fmt"
 	"strings"
 
+	"context"
+
 	pb "github.com/moul/pb/grpcbin/go-grpc"
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
-	"golang.org/x/net/context"
 	"google.golang.org/grpc"
 	"google.golang.org/grpc/credentials"
 	"google.golang.org/grpc/metadata"

From 2cc2ec85fc03e6c48820cf81a27cac8b4d202a10 Mon Sep 17 00:00:00 2001
From: yutachaos <18604471+yutachaos@users.noreply.github.com>
Date: Wed, 5 Oct 2022 01:18:16 +0900
Subject: [PATCH 0406/1641] Fixed docs helm-docs version (#9121)

---
 RELEASE.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/RELEASE.md b/RELEASE.md
index 210277942..589b9ee7f 100644
--- a/RELEASE.md
+++ b/RELEASE.md
@@ -233,7 +233,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
   - [helm-docs](https://github.com/norwoodj/helm-docs) is a tool that generates the README.md for a helm-chart automatically. In the CI pipeline workflow of github actions (/.github/workflows/ci.yaml), you can see how helm-docs is used. But the CI pipeline is not designed to make commits back into the project. So we need to run helm-docs manually, and check in the resulting autogenerated README.md at the path /charts/ingress-nginx/README.md 
     ```
-          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.6.0
+          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.11.0
           ./helm-docs --chart-search-root=${GITHUB_WORKSPACE}/charts
           git diff --exit-code
           rm -f ./helm-docs

From 00f86f7f342730ee27fbdb651fd874a2962f4120 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 4 Oct 2022 14:08:17 -0400
Subject: [PATCH 0407/1641] update x/net to remove vul CVE-2022-27664 (#9109)

Signed-off-by: James Strong <strong.james.e@gmail.com>

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/ci.yaml       | 1 +
 .github/workflows/perftest.yaml | 9 +++++----
 TAG                             | 2 +-
 go.mod                          | 4 ++--
 go.sum                          | 8 ++++----
 5 files changed, 13 insertions(+), 11 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 07948ef78..45e1cd981 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -165,6 +165,7 @@ jobs:
       - name: Run Artifact Hub lint
         run: |
           wget https://github.com/artifacthub/hub/releases/download/v1.5.0/ah_1.5.0_linux_amd64.tar.gz
+          echo 'ad0e44c6ea058ab6b85dbf582e88bad9fdbc64ded0d1dd4edbac65133e5c87da *ah_1.5.0_linux_amd64.tar.gz' | shasum -c
           tar -xzvf ah_1.5.0_linux_amd64.tar.gz ah
           ./ah lint -p charts/ingress-nginx || exit 1
           rm -f ./ah ./ah_1.5.0_linux_amd64.tar.gz
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index d498a216a..3d848ecfe 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -1,13 +1,13 @@
 name: Performance Test
-on: 
+on:
   workflow_dispatch:
     inputs:
       logLevel:
-        description: 'Log level'     
+        description: 'Log level'
         required: true
         default: 'warning'
       tags:
-        description: 'K6 Load Test'  
+        description: 'K6 Load Test'
 
 permissions:
   contents: read
@@ -19,10 +19,11 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
- 
+
       - name: Install K6
         run: |
           wget https://github.com/grafana/k6/releases/download/v0.38.2/k6-v0.38.2-linux-amd64.tar.gz
+          echo '7c9e5a26aaa2c638c042f6dfda7416161b8d2e0d4cb930721a38083b8be109ab *k6-v0.38.2-linux-amd64.tar.gz' | shasum -c
           tar -xvf k6-v0.38.2-linux-amd64.tar.gz k6-v0.38.2-linux-amd64/k6
           mv k6-v0.38.2-linux-amd64/k6 .
           ./k6
diff --git a/TAG b/TAG
index 97a3c26fd..a5b25f766 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.4.0-old
+v1.4.0q
diff --git a/go.mod b/go.mod
index 01efaba68..8430764e5 100644
--- a/go.mod
+++ b/go.mod
@@ -105,9 +105,9 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4 // indirect
-	golang.org/x/net v0.0.0-20220722155237-a158d28d115b // indirect
+	golang.org/x/net v0.0.0-20220906165146-f3363e06e74c // indirect
 	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
-	golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f // indirect
+	golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10 // indirect
 	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
 	golang.org/x/text v0.3.7 // indirect
 	golang.org/x/time v0.0.0-20220210224613-90d013bbcef8 // indirect
diff --git a/go.sum b/go.sum
index 65fb4ee78..fb6d6741e 100644
--- a/go.sum
+++ b/go.sum
@@ -743,8 +743,8 @@ golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qx
 golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
 golang.org/x/net v0.0.0-20220225172249-27dd8689420f/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
-golang.org/x/net v0.0.0-20220722155237-a158d28d115b h1:PxfKdU9lEEDYjdIzOtC4qFWgkU2rGHdKlKowJSMN9h0=
-golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
+golang.org/x/net v0.0.0-20220906165146-f3363e06e74c h1:yKufUcDwucU5urd+50/Opbt4AYpqthk7wHpHok8f1lo=
+golang.org/x/net v0.0.0-20220906165146-f3363e06e74c/go.mod h1:YDH+HFinaLZZlnHAfSS6ZXJJ9M9t4Dl22yv3iI2vPwk=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -851,8 +851,8 @@ golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220412211240-33da011f77ad/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f h1:v4INt8xihDGvnrfjMDVXGxw9wrfxYyCjk0KbXjhR55s=
-golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10 h1:WIoqL4EROvwiPdUtaip4VcDdpZ4kha7wBWZrbVKCIZg=
+golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 h1:JGgROgKl9N8DuW20oFS5gxc+lE67/N3FcwmBPMe7ArY=

From c211aa83d3fee9d1d9e3b631cbecb7035b8fefa8 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 5 Oct 2022 09:01:32 -0600
Subject: [PATCH 0408/1641] fix wrong tag

---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index a5b25f766..0d0c52f84 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.4.0q
+v1.4.0

From 83aa9e472fa7dbca1b371db117b2a582d55ac6d3 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 5 Oct 2022 18:14:05 +0200
Subject: [PATCH 0409/1641] Rename controller-wehbooks-networkpolicy.yaml ->
 controller-webhooks-networkpolicy.yaml. (#9123)

---
 ...-networkpolicy.yaml => controller-webhooks-networkpolicy.yaml} | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 rename charts/ingress-nginx/templates/{controller-wehbooks-networkpolicy.yaml => controller-webhooks-networkpolicy.yaml} (100%)

diff --git a/charts/ingress-nginx/templates/controller-wehbooks-networkpolicy.yaml b/charts/ingress-nginx/templates/controller-webhooks-networkpolicy.yaml
similarity index 100%
rename from charts/ingress-nginx/templates/controller-wehbooks-networkpolicy.yaml
rename to charts/ingress-nginx/templates/controller-webhooks-networkpolicy.yaml

From 796cdf734e880a34b921f0d6c69994e67b5320bf Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 10 Oct 2022 06:23:22 -0700
Subject: [PATCH 0410/1641] Bump helm/chart-releaser-action from 1.4.0 to 1.4.1
 (#9136)

Bumps [helm/chart-releaser-action](https://github.com/helm/chart-releaser-action) from 1.4.0 to 1.4.1.
- [Release notes](https://github.com/helm/chart-releaser-action/releases)
- [Commits](https://github.com/helm/chart-releaser-action/compare/v1.4.0...v1.4.1)

---
updated-dependencies:
- dependency-name: helm/chart-releaser-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/helm.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 49ef6acd4..0be3841da 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -64,7 +64,7 @@ jobs:
           git config --global user.email "$GITHUB_ACTOR@users.noreply.github.com"
       
       - name: Helm Chart Releaser
-        uses: helm/chart-releaser-action@v1.4.0
+        uses: helm/chart-releaser-action@v1.4.1
         env:
           CR_SKIP_EXISTING: "false"
           CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"

From aaa336f207f3b830dfc2cdc49b01fecc19bf4b87 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 10 Oct 2022 06:25:23 -0700
Subject: [PATCH 0411/1641] Bump github/codeql-action from 2.1.25 to 2.1.27
 (#9137)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.25 to 2.1.27.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/86f3159a697a097a813ad9bfa0002412d97690a4...807578363a7869ca324a79039e6db9c843e0e100)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 2e13deea0..5a93a5d49 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@86f3159a697a097a813ad9bfa0002412d97690a4 # v2.1.14
+        uses: github/codeql-action/upload-sarif@807578363a7869ca324a79039e6db9c843e0e100 # v2.1.14
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 0ef654160..130391a8a 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@86f3159a697a097a813ad9bfa0002412d97690a4
+      uses: github/codeql-action/upload-sarif@807578363a7869ca324a79039e6db9c843e0e100
       with:
         token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository

From 3f40eb02cd470bae572abe090b0aebaf5363cadc Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 10 Oct 2022 06:31:21 -0700
Subject: [PATCH 0412/1641] Bump ossf/scorecard-action from 2.0.3 to 2.0.4
 (#9138)

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.0.3 to 2.0.4.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](https://github.com/ossf/scorecard-action/compare/865b4092859256271290c77adbd10a43f4779972...e363bfca00e752f91de7b7d2a77340e2e523cb18)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 5a93a5d49..d57f7c99d 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -30,7 +30,7 @@ jobs:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@865b4092859256271290c77adbd10a43f4779972 # v1.1.1
+        uses: ossf/scorecard-action@e363bfca00e752f91de7b7d2a77340e2e523cb18 # v1.1.1
         with:
           results_file: results.sarif
           results_format: sarif

From c42b68eeadc57d2e8ec9e8daee4d4920ead6c181 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 12 Oct 2022 12:33:01 -0700
Subject: [PATCH 0413/1641] Bump google.golang.org/grpc from 1.49.0 to 1.50.0
 (#9134)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.49.0 to 1.50.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.49.0...v1.50.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 8430764e5..378ef56e8 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
-	google.golang.org/grpc v1.49.0
+	google.golang.org/grpc v1.50.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.25.2
diff --git a/go.sum b/go.sum
index fb6d6741e..ada03d47a 100644
--- a/go.sum
+++ b/go.sum
@@ -1065,8 +1065,8 @@ google.golang.org/grpc v1.39.0/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnD
 google.golang.org/grpc v1.39.1/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
 google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
 google.golang.org/grpc v1.46.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
-google.golang.org/grpc v1.49.0 h1:WTLtQzmQori5FUH25Pq4WT22oCsv8USpQ+F6rqtsmxw=
-google.golang.org/grpc v1.49.0/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI=
+google.golang.org/grpc v1.50.0 h1:fPVVDxY9w++VjTZsYvXWqEf9Rqar/e+9zYfxKK+W+YU=
+google.golang.org/grpc v1.50.0/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI=
 google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=

From ea254fbcb15b9614961074cba63b52a5d6d06f03 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 12 Oct 2022 12:35:02 -0700
Subject: [PATCH 0414/1641] Bump actions/checkout from 3.0.2 to 3.1.0 (#9135)

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.0.2 to 3.1.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/2541b1294d2704b0964813337f33b291d3f8596b...93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 16 ++++++++--------
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  2 +-
 .github/workflows/vulnerability-scans.yaml |  4 ++--
 8 files changed, 18 insertions(+), 18 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 45e1cd981..8b29a85d6 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -26,7 +26,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
       - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
         id: filter
@@ -50,7 +50,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
       - name: Run Gosec Security Scanner
         uses: securego/gosec@19fa856badad483cae700ee1213dd7f1a933d6d3 # master
@@ -68,7 +68,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
       - name: Set up Go 1.19.1
         id: go
@@ -135,7 +135,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
       - name: Setup Go
         uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
@@ -218,7 +218,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
       - name: cache
         uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741 # v2
@@ -275,7 +275,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
       - name: cache
         uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741
@@ -326,7 +326,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
       - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
         id: filter-images
@@ -393,7 +393,7 @@ jobs:
       PLATFORMS: linux/amd64
     steps:
       - name: Checkout
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
       - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
         id: filter-images
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index d69c1a0c8..1809c531c 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b #v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3.0.2
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@375c5370086bfff256c37f8beec0f437e2e72ae1 #v2.0.2
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 834859aa0..cb183577a 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -24,7 +24,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b #v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3.0.2
 
       - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
         id: filter
@@ -49,7 +49,7 @@ jobs:
     steps:
 
       - name: Checkout master
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b #v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3.0.2
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 0be3841da..abfdda1c8 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -25,7 +25,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
       - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
         id: filter
@@ -52,7 +52,7 @@ jobs:
     steps:
 
       - name: Checkout master
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 3d848ecfe..a9206d9ef 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -18,7 +18,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 319055b62..42b7f043b 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -17,7 +17,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index d57f7c99d..c06db13ca 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -25,7 +25,7 @@ jobs:
     
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.0
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.0
         with:
           persist-credentials: false
 
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 130391a8a..0cfdb6375 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
     - name: Checkout code
-      uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b
+      uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8
 
     - shell: bash
       id: test

From 93df796767929ffd9dce2b8e65de376e9e0ab90e Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 12 Oct 2022 15:39:00 -0400
Subject: [PATCH 0415/1641] upgrade to golang 1.19.2 (#9124)

* upgrade to golang 1.19.2

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update e2e testing to 1.25 kind

Signed-off-by: James Strong <strong.james.e@gmail.com>

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/ci.yaml                     | 10 ++++----
 .github/workflows/plugin.yaml                 |  2 +-
 Makefile                                      | 10 --------
 build/dev-env.sh                              | 25 +++----------------
 build/kind.yaml                               | 18 +++++++++++++
 build/run-in-docker.sh                        | 10 --------
 .../rootfs/Dockerfile                         |  2 +-
 images/kube-webhook-certgen/rootfs/Dockerfile |  2 +-
 images/test-runner/Makefile                   |  2 +-
 test/e2e/run.sh                               |  2 +-
 10 files changed, 31 insertions(+), 52 deletions(-)
 create mode 100644 build/kind.yaml

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 8b29a85d6..8e8eb6631 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -70,11 +70,11 @@ jobs:
       - name: Checkout
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
-      - name: Set up Go 1.19.1
+      - name: Set up Go 1.19.2
         id: go
         uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
         with:
-          go-version: '1.19.1'
+          go-version: '1.19.2'
 
       - name: Set up QEMU
         uses: docker/setup-qemu-action@8b122486cedac8393e77aa9734c3528886e4a1a8 #v2.0.0
@@ -140,7 +140,7 @@ jobs:
       - name: Setup Go
         uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
         with:
-          go-version: '1.19.1'
+          go-version: '1.19.2'
 
       - name: cache
         uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741 # v3
@@ -411,12 +411,12 @@ jobs:
           version: v0.15.0
           image: kindest/node:v1.25.2
 
-      - name: Set up Go 1.19.1
+      - name: Set up Go 1.19.2
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
         uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
         with:
-          go-version: '1.19.1'
+          go-version: '1.19.2'
 
       - name: kube-webhook-certgen image build
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 42b7f043b..ff11b713c 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -24,7 +24,7 @@ jobs:
       - name: Set up Go
         uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
         with:
-          go-version: 1.19.1
+          go-version: 1.19.2
 
       - name: Run GoReleaser
         uses: goreleaser/goreleaser-action@ff11ca24a9b39f2d36796d1fbd7a4e39c182630a # v3.0.0
diff --git a/Makefile b/Makefile
index 7a62d6f61..8204a2087 100644
--- a/Makefile
+++ b/Makefile
@@ -53,14 +53,6 @@ ifneq ($(PLATFORM),)
 	PLATFORM_FLAG="--platform"
 endif
 
-MAC_OS = $(shell uname -s)
-
-ifeq ($(MAC_OS), Darwin)
-	MAC_DOCKER_FLAGS="--load"
-else
-	MAC_DOCKER_FLAGS=
-endif
-
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
 BASE_IMAGE ?= $(shell cat NGINX_BASE)
@@ -76,7 +68,6 @@ image: clean-image ## Build image for a particular arch.
 	docker build \
 		${PLATFORM_FLAG} ${PLATFORM} \
 		--no-cache \
-		$(MAC_DOCKER_FLAGS) \
 		--pull \
 		--build-arg BASE_IMAGE="$(BASE_IMAGE)" \
 		--build-arg VERSION="$(TAG)" \
@@ -94,7 +85,6 @@ image-chroot: clean-chroot-image ## Build image for a particular arch.
 	echo "Building docker image ($(ARCH))..."
 	docker build \
 		--no-cache \
-		$(MAC_DOCKER_FLAGS) \
 		--pull \
 		--build-arg BASE_IMAGE="$(BASE_IMAGE)" \
 		--build-arg VERSION="$(TAG)" \
diff --git a/build/dev-env.sh b/build/dev-env.sh
index ae6860726..09609367a 100755
--- a/build/dev-env.sh
+++ b/build/dev-env.sh
@@ -62,32 +62,13 @@ echo "[dev-env] building image"
 make build image
 docker tag "${REGISTRY}/controller:${TAG}" "${DEV_IMAGE}"
 
-export K8S_VERSION=${K8S_VERSION:-v1.24.2@sha256:1f0cee2282f43150b52dc7933183ed96abdcfc8d293f30ec07082495874876f1}
+export K8S_VERSION=${K8S_VERSION:-v1.25.2@sha256:9be91e9e9cdf116809841fc77ebdb8845443c4c72fe5218f3ae9eb57fdb4bace}
 
 KIND_CLUSTER_NAME="ingress-nginx-dev"
 
 if ! kind get clusters -q | grep -q ${KIND_CLUSTER_NAME}; then
-echo "[dev-env] creating Kubernetes cluster with kind"
-cat <<EOF | kind create cluster --name ${KIND_CLUSTER_NAME} --image "kindest/node:${K8S_VERSION}" --config=-
-kind: Cluster
-apiVersion: kind.x-k8s.io/v1alpha4
-nodes:
-- role: control-plane
-  kubeadmConfigPatches:
-  - |
-    kind: InitConfiguration
-    nodeRegistration:
-      kubeletExtraArgs:
-        node-labels: "ingress-ready=true"
-        authorization-mode: "AlwaysAllow"
-  extraPortMappings:
-  - containerPort: 80
-    hostPort: 80
-    protocol: TCP
-  - containerPort: 443
-    hostPort: 443
-    protocol: TCP
-EOF
+  echo "[dev-env] creating Kubernetes cluster with kind"
+  kind create cluster --name ${KIND_CLUSTER_NAME} --image "kindest/node:${K8S_VERSION}" --config ${DIR}/kind.yaml
 else
   echo "[dev-env] using existing Kubernetes kind cluster"
 fi
diff --git a/build/kind.yaml b/build/kind.yaml
new file mode 100644
index 000000000..d6302a000
--- /dev/null
+++ b/build/kind.yaml
@@ -0,0 +1,18 @@
+kind: Cluster
+apiVersion: kind.x-k8s.io/v1alpha4
+nodes:
+  - role: control-plane
+    kubeadmConfigPatches:
+      - |
+        kind: InitConfiguration
+        nodeRegistration:
+          kubeletExtraArgs:
+            node-labels: "ingress-ready=true"
+            authorization-mode: "AlwaysAllow"
+    extraPortMappings:
+      - containerPort: 80
+        hostPort: 80
+        protocol: TCP
+      - containerPort: 443
+        hostPort: 443
+        protocol: TCP
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 35ea27819..21d3f2548 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -65,15 +65,6 @@ fi
 
 USER=${USER:-nobody}
 
-MAC_OS="`uname -s`"
-MAC_OS="${MAC_OS:-}"
-if [[ ${MAC_OS} == "Darwin" ]]; then
-	MAC_DOCKER_FLAGS=""
-else
-	MAC_DOCKER_FLAGS="-u $(id -u ${USER}):$(id -g ${USER})" #idk why mac/git fails on the gobuild if these are presented to dockerrun.sh script
-fi
-echo "MAC_OS = ${MAC_OS}, MAC_OS_FLAGS = ${MAC_DOCKER_FLAGS}"
-
 echo "..printing env & other vars to stdout"
 echo "HOSTNAME=`hostname`"
 uname -a
@@ -108,6 +99,5 @@ else
     -v "/var/run/docker.sock:/var/run/docker.sock"      \
     -v "${INGRESS_VOLUME}:/etc/ingress-controller/"     \
     -w "/go/src/${PKG}"                                 \
-    ${MAC_DOCKER_FLAGS}                                 \
     ${E2E_IMAGE} /bin/bash -c "${FLAGS}"
 fi
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index c2387d90a..012b1880f 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.19.1-alpine3.16 as builder
+FROM golang:1.19.2-alpine3.16 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/kube-webhook-certgen/rootfs/Dockerfile b/images/kube-webhook-certgen/rootfs/Dockerfile
index b8e4ef8b1..c45a64dae 100644
--- a/images/kube-webhook-certgen/rootfs/Dockerfile
+++ b/images/kube-webhook-certgen/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM --platform=$BUILDPLATFORM golang:1.19.1 as builder
+FROM --platform=$BUILDPLATFORM golang:1.19.2 as builder
 ARG BUILDPLATFORM
 ARG TARGETARCH
 
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 32e09ca23..38ca5f2b3 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -39,7 +39,7 @@ build: ensure-buildx
 		--progress=$(PROGRESS) \
 		--pull \
 		--build-arg BASE_IMAGE=$(NGINX_BASE_IMAGE) \
-		--build-arg GOLANG_VERSION=1.19.1 \
+		--build-arg GOLANG_VERSION=1.19.2 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.24.2 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
diff --git a/test/e2e/run.sh b/test/e2e/run.sh
index 6b1cabb4c..0fc6fdb5e 100755
--- a/test/e2e/run.sh
+++ b/test/e2e/run.sh
@@ -64,7 +64,7 @@ export KUBECONFIG="${KUBECONFIG:-$HOME/.kube/kind-config-$KIND_CLUSTER_NAME}"
 if [ "${SKIP_CLUSTER_CREATION:-false}" = "false" ]; then
   echo "[dev-env] creating Kubernetes cluster with kind"
 
-  export K8S_VERSION=${K8S_VERSION:-v1.21.10@sha256:84709f09756ba4f863769bdcabe5edafc2ada72d3c8c44d6515fc581b66b029c}
+  export K8S_VERSION=${K8S_VERSION:-v1.25.2@sha256:9be91e9e9cdf116809841fc77ebdb8845443c4c72fe5218f3ae9eb57fdb4bace}
 
   kind create cluster \
     --verbosity=${KIND_LOG_LEVEL} \

From c9faac2222b5d510d040d08fca20854035eb0585 Mon Sep 17 00:00:00 2001
From: LR1990 <52204121+loveRhythm1990@users.noreply.github.com>
Date: Thu, 13 Oct 2022 03:45:02 +0800
Subject: [PATCH 0416/1641] fix e2e resource leak when ginkgo exit before clear
 resource (#9103)

---
 test/e2e/framework/framework.go | 16 ++++++----------
 1 file changed, 6 insertions(+), 10 deletions(-)

diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index 4946c13b2..662cd0879 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -121,11 +121,9 @@ func (f *Framework) CreateEnvironment() {
 }
 
 func (f *Framework) DestroyEnvironment() {
-	go func() {
-		defer ginkgo.GinkgoRecover()
-		err := DeleteKubeNamespace(f.KubeClientSet, f.Namespace)
-		assert.Nil(ginkgo.GinkgoT(), err, "deleting namespace %v", f.Namespace)
-	}()
+	defer ginkgo.GinkgoRecover()
+	err := DeleteKubeNamespace(f.KubeClientSet, f.Namespace)
+	assert.Nil(ginkgo.GinkgoT(), err, "deleting namespace %v", f.Namespace)
 }
 
 // BeforeEach gets a client and makes a namespace.
@@ -151,11 +149,9 @@ func (f *Framework) AfterEach() {
 	defer f.DestroyEnvironment()
 
 	defer func(kubeClient kubernetes.Interface, ingressclass string) {
-		go func() {
-			defer ginkgo.GinkgoRecover()
-			err := deleteIngressClass(kubeClient, ingressclass)
-			assert.Nil(ginkgo.GinkgoT(), err, "deleting IngressClass")
-		}()
+		defer ginkgo.GinkgoRecover()
+		err := deleteIngressClass(kubeClient, ingressclass)
+		assert.Nil(ginkgo.GinkgoT(), err, "deleting IngressClass")
 	}(f.KubeClientSet, f.IngressClass)
 
 	if !ginkgo.CurrentSpecReport().Failed() {

From 6aac00648b6353d25e455594c525d07cf6d80960 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Johannes=20W=C3=BCrbach?= <johannes.wuerbach@googlemail.com>
Date: Thu, 13 Oct 2022 00:41:04 +0200
Subject: [PATCH 0417/1641] fix: handle 401 and 403 by external auth (#9131)

---
 rootfs/etc/nginx/template/nginx.tmpl | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index c315e4ee9..92d2c9706 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -957,7 +957,7 @@ stream {
         set $proxy_upstream_name "-";
 
         {{ if not ( empty $server.CertificateAuth.MatchCN ) }}
-        {{ if gt (len $server.CertificateAuth.MatchCN) 0 }}  
+        {{ if gt (len $server.CertificateAuth.MatchCN) 0 }}
         if ( $ssl_client_s_dn !~ {{ $server.CertificateAuth.MatchCN }} ) {
             return 403 "client certificate unauthorized";
         }
@@ -1288,7 +1288,7 @@ stream {
                     {{- end }}
                     return
                 end
-                if res.status == ngx.HTTP_FORBIDDEN then
+                if res.status == ngx.HTTP_UNAUTHORIZED or res.status == ngx.HTTP_FORBIDDEN then
                     ngx.exit(res.status)
                 end
                 ngx.exit(ngx.HTTP_INTERNAL_SERVER_ERROR)

From e53d19ceb695f880d4886effc2444abf1e04ff41 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 12 Oct 2022 20:31:03 -0300
Subject: [PATCH 0418/1641] Move bowei to emeritus owner (#9150)

---
 OWNERS         | 1 +
 OWNERS_ALIASES | 1 -
 2 files changed, 1 insertion(+), 1 deletion(-)

diff --git a/OWNERS b/OWNERS
index 20082fb1f..71f3328f1 100644
--- a/OWNERS
+++ b/OWNERS
@@ -8,3 +8,4 @@ reviewers:
 
 emeritus_approvers:
 - aledbf  # 2020-04-02
+- bowei # 2022-10-12
diff --git a/OWNERS_ALIASES b/OWNERS_ALIASES
index 04b495b6b..49806abdb 100644
--- a/OWNERS_ALIASES
+++ b/OWNERS_ALIASES
@@ -7,7 +7,6 @@ aliases:
   - thockin
 
   ingress-nginx-admins:
-  - bowei
   - rikatz
   - strongjz
 

From 499dbf57af5d0d7eb2fdb298cc89b5f4bf179854 Mon Sep 17 00:00:00 2001
From: Tomas Hulata <tombo@sysart.tech>
Date: Thu, 13 Oct 2022 02:11:00 +0200
Subject: [PATCH 0419/1641] fix ports (#9149)

---
 internal/ingress/controller/endpointslices.go | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/internal/ingress/controller/endpointslices.go b/internal/ingress/controller/endpointslices.go
index efd2a6afa..5a24c3880 100644
--- a/internal/ingress/controller/endpointslices.go
+++ b/internal/ingress/controller/endpointslices.go
@@ -84,8 +84,8 @@ func getEndpointsFromSlices(s *corev1.Service, port *corev1.ServicePort, proto c
 	// loop over all endpointSlices generated for service
 	for _, eps := range epss {
 		var ports []int32
-		if len(eps.Ports) == 0 {
-			// When ports is empty, it indicates that there are no defined ports, using svc targePort <- this could be wrong
+		if len(eps.Ports) == 0 && port.TargetPort.Type == intstr.Int {
+			// When ports is empty, it indicates that there are no defined ports, using svc targePort if it's a number
 			klog.V(3).Infof("No ports found on endpointSlice, using service TargetPort %v for Service %q", port.String(), svcKey)
 			ports = append(ports, port.TargetPort.IntVal)
 		} else {

From 249780737c862a7cf690058511ee7126ddd0d788 Mon Sep 17 00:00:00 2001
From: FutureMatt <43476243+FutureMatt@users.noreply.github.com>
Date: Thu, 13 Oct 2022 15:37:01 +0100
Subject: [PATCH 0420/1641] #7652 - Updated Helm chart to use the fullname for
 the electionID if not specified. (#9133)

* Automatically generate electionID from the fullname or use the set value.

* Updated the chart readme to include the new empty default.

* Rebuilt the Helm readme with helm-docs.
---
 charts/ingress-nginx/README.md                      |  2 +-
 charts/ingress-nginx/templates/_helpers.tpl         | 10 ++++++++++
 charts/ingress-nginx/templates/_params.tpl          |  2 +-
 charts/ingress-nginx/templates/controller-role.yaml |  4 ++--
 charts/ingress-nginx/values.yaml                    |  4 ++--
 5 files changed, 16 insertions(+), 6 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 36490474a..06db4d991 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -291,7 +291,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.customTemplate.configMapName | string | `""` |  |
 | controller.dnsConfig | object | `{}` | Optionally customize the pod dnsConfig. |
 | controller.dnsPolicy | string | `"ClusterFirst"` | Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'. By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller to keep resolving names inside the k8s network, use ClusterFirstWithHostNet. |
-| controller.electionID | string | `"ingress-controller-leader"` | Election ID to use for status update |
+| controller.electionID | string | `""` | Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader' |
 | controller.enableMimalloc | bool | `true` | Enable mimalloc as a drop-in replacement for malloc. # ref: https://github.com/microsoft/mimalloc # |
 | controller.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | controller.extraArgs | object | `{}` | Additional command line arguments to pass to nginx-ingress-controller E.g. to specify the default SSL certificate you can use |
diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index e69de0c41..790a19350 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -85,6 +85,16 @@ We truncate at 63 chars because some Kubernetes name fields are limited to this
 {{- printf "%s-%s" (include "ingress-nginx.fullname" .) .Values.controller.name | trunc 63 | trimSuffix "-" -}}
 {{- end -}}
 
+{{/*
+Construct a unique electionID.
+Users can provide an override for an explicit electionID if they want via `.Values.controller.electionID`
+*/}}
+{{- define "ingress-nginx.controller.electionID" -}}
+{{- $defElectionID := printf "%s-leader" (include "ingress-nginx.fullname" .) -}}
+{{- $electionID := default $defElectionID .Values.controller.electionID -}}
+{{- print $electionID -}}
+{{- end -}}
+
 {{/*
 Construct the path for the publish-service.
 
diff --git a/charts/ingress-nginx/templates/_params.tpl b/charts/ingress-nginx/templates/_params.tpl
index 305ce0dd2..66c581fa6 100644
--- a/charts/ingress-nginx/templates/_params.tpl
+++ b/charts/ingress-nginx/templates/_params.tpl
@@ -10,7 +10,7 @@
 - --publish-service={{ template "ingress-nginx.controller.publishServicePath" . }}-internal
 {{- end }}
 {{- end }}
-- --election-id={{ .Values.controller.electionID }}
+- --election-id={{ include "ingress-nginx.controller.electionID" . }}
 - --controller-class={{ .Values.controller.ingressClassResource.controllerValue }}
 {{- if .Values.controller.ingressClass }}
 - --ingress-class={{ .Values.controller.ingressClass }}
diff --git a/charts/ingress-nginx/templates/controller-role.yaml b/charts/ingress-nginx/templates/controller-role.yaml
index d6da92ec9..395c88e10 100644
--- a/charts/ingress-nginx/templates/controller-role.yaml
+++ b/charts/ingress-nginx/templates/controller-role.yaml
@@ -68,7 +68,7 @@ rules:
     resources:
       - configmaps
     resourceNames:
-      - {{ .Values.controller.electionID }}
+      - {{ include "ingress-nginx.controller.electionID" . }}
     verbs:
       - get
       - update
@@ -83,7 +83,7 @@ rules:
     resources:
       - leases
     resourceNames:
-      - {{ .Values.controller.electionID }}
+      - {{ include "ingress-nginx.controller.electionID" . }}
     verbs:
       - get
       - update
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index a5f6dc776..622244a11 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -99,8 +99,8 @@ controller:
       # -- 'hostPort' https port
       https: 443
 
-  # -- Election ID to use for status update
-  electionID: ingress-controller-leader
+  # -- Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader'
+  electionID: ""
 
   ## This section refers to the creation of the IngressClass resource
   ## IngressClass resources are supported since k8s >= 1.18 and required since k8s >= 1.19

From f89bd6d3288a0a76851ff947ab1f0eb4fadcea77 Mon Sep 17 00:00:00 2001
From: Sanghamitra-PERSONAL
 <78498010+Sanghamitra-PERSONAL@users.noreply.github.com>
Date: Thu, 13 Oct 2022 22:01:05 +0200
Subject: [PATCH 0421/1641] Documentation added for  implemented redirection in
 the proxy to ensure image pulling (#9098)

* Documentation added for redirection in the proxy to ensure image pulling

* Update troubleshooting.md

* Update troubleshooting.md

* Update troubleshooting.md
---
 docs/troubleshooting.md | 49 +++++++++++++++++++++++++++++++++++++++++
 1 file changed, 49 insertions(+)

diff --git a/docs/troubleshooting.md b/docs/troubleshooting.md
index 1e2e57c49..f2f5da47b 100644
--- a/docs/troubleshooting.md
+++ b/docs/troubleshooting.md
@@ -316,3 +316,52 @@ Note: The below is based on the nginx [documentation](https://docs.nginx.com/ngi
     ```console
     cat nginx_conf.txt
     ```
+    
+## Image related issues faced on Nginx 4.2.5 or other versions (Helm chart versions) 
+
+1. Incase you face below error while installing Nginx using helm chart (either by helm commands or helm_release terraform provider ) 
+```
+Warning  Failed     5m5s (x4 over 6m34s)   kubelet            Failed to pull image "registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.3.0@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47": rpc error: code = Unknown desc = failed to pull and unpack image "registry.k8s.io/ingress-nginx/kube-webhook-certgen@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47": failed to resolve reference "registry.k8s.io/ingress-nginx/kube-webhook-certgen@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47": failed to do request: Head "https://eu.gcr.io/v2/k8s-artifacts-prod/ingress-nginx/kube-webhook-certgen/manifests/sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47": EOF
+```
+   Then please follow the below steps.
+
+2. During troubleshooting you can also execute the below commands to test the connectivities from you local machines and repositories  details
+
+      a. curl registry.k8s.io/ingress-nginx/kube-webhook-certgen@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47 > /dev/null
+      ```
+      (⎈ |myprompt)➜  ~ curl registry.k8s.io/ingress-nginx/kube-webhook-certgen@sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47 > /dev/null
+                          % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
+                                                          Dload  Upload   Total   Spent    Left  Speed
+                          0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0
+       (⎈ |myprompt)➜  ~
+      ```
+      b. curl -I https://eu.gcr.io/v2/k8s-artifacts-prod/ingress-nginx/kube-webhook-certgen/manifests/sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+      ```
+      (⎈ |myprompt)➜  ~ curl -I https://eu.gcr.io/v2/k8s-artifacts-prod/ingress-nginx/kube-webhook-certgen/manifests/sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+                                          HTTP/2 200
+                                          docker-distribution-api-version: registry/2.0
+                                          content-type: application/vnd.docker.distribution.manifest.list.v2+json
+                                          docker-content-digest: sha256:549e71a6ca248c5abd51cdb73dbc3083df62cf92ed5e6147c780e30f7e007a47
+                                          content-length: 1384
+                                          date: Wed, 28 Sep 2022 16:46:28 GMT
+                                          server: Docker Registry
+                                          x-xss-protection: 0
+                                          x-frame-options: SAMEORIGIN
+                                          alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
+
+        (⎈ |myprompt)➜  ~
+      ```
+   Redirection in the proxy is implemented to ensure the pulling of the images.
+
+3. This is the solution recommended to whitelist the below image repositories : 
+     ```
+     *.appspot.com    
+     *.k8s.io        
+     *.pkg.dev
+     *.gcr.io
+     
+     ```
+     More details about the above repos : 
+     a. *.k8s.io -> To ensure you can pull any images from registry.k8s.io
+     b. *.gcr.io -> GCP services are used for image hosting. This is part of the domains suggested by GCP to allow and ensure users can pull images from their container registry services.
+     c. *.appspot.com -> This a Google domain. part of the domain used for GCR.

From 739e85ce7cf2dbc13b710036a5c3fc465425c6e2 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 14 Oct 2022 00:10:46 -0400
Subject: [PATCH 0422/1641] updating runner with golang 1.19.2 (#9158)

Signed-off-by: James Strong <strong.james.e@gmail.com>

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 build/run-in-docker.sh  | 2 +-
 test/e2e-image/Makefile | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 21d3f2548..b0377f455 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -38,7 +38,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20220916-gd32f8c343@sha256:f3f26f1e2aef8b2013b731f041fd69bcd950d3118eecf4429551848f47305c0f}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20221012-controller-v1.4.0-14-g93df79676@sha256:9ab6a412b0ea6ae77abc80309608976ec15141e146fa91ef4352400cb9051086}
 
 DOCKER_OPTS=${DOCKER_OPTS:-}
 DOCKER_IN_DOCKER_ENABLED=${DOCKER_IN_DOCKER_ENABLED:-}
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index d0ed88972..ce46b93ab 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20220916-gd32f8c343@sha256:f3f26f1e2aef8b2013b731f041fd69bcd950d3118eecf4429551848f47305c0f"
+E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20221012-controller-v1.4.0-14-g93df79676@sha256:9ab6a412b0ea6ae77abc80309608976ec15141e146fa91ef4352400cb9051086"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"

From a3bed7ae4c02a2821e1aa811ed3ede71a35ddb5d Mon Sep 17 00:00:00 2001
From: Aurelie Vache <scraly@gmail.com>
Date: Mon, 17 Oct 2022 17:39:07 +0200
Subject: [PATCH 0423/1641] feat: add ovhcloud (#9171)

---
 docs/deploy/index.md | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index eed695ac9..4cefb7c48 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -30,6 +30,7 @@ ingress controller for your particular environment or cloud provider.
   - ... [Scaleway](#scaleway)
   - ... [Exoscale](#exoscale)
   - ... [Oracle Cloud Infrastructure](#oracle-cloud-infrastructure)
+  - ... [OVHcloud](#ovhcloud)
   - ... [Bare-metal](#bare-metal-clusters)
 - [Miscellaneous](#miscellaneous)
 
@@ -336,6 +337,16 @@ A
 [complete list of available annotations for Oracle Cloud Infrastructure](https://github.com/oracle/oci-cloud-controller-manager/blob/master/docs/load-balancer-annotations.md) 
 can be found in the [OCI Cloud Controller Manager](https://github.com/oracle/oci-cloud-controller-manager) documentation.
 
+### OVHcloud
+
+```console
+helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx
+helm repo update
+helm -n ingress-nginx install ingress-nginx ingress-nginx/ingress-nginx --create-namespace
+```
+
+You can find the [complete tutorial](https://docs.ovh.com/gb/en/kubernetes/installing-nginx-ingress/).
+
 ### Bare metal clusters
 
 This section is applicable to Kubernetes clusters deployed on bare metal servers, as well as "raw" VMs where Kubernetes 

From 5e0932a88518e8160431738c98ba7f08e01e6352 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 17 Oct 2022 17:47:08 +0200
Subject: [PATCH 0424/1641] GitHub Templates: Remove trailing whitespaces.
 (#9172)

---
 .github/ISSUE_TEMPLATE/cve_report.md | 2 +-
 .github/PULL_REQUEST_TEMPLATE.md     | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/ISSUE_TEMPLATE/cve_report.md b/.github/ISSUE_TEMPLATE/cve_report.md
index b5ecf7ecf..11789d479 100644
--- a/.github/ISSUE_TEMPLATE/cve_report.md
+++ b/.github/ISSUE_TEMPLATE/cve_report.md
@@ -8,7 +8,7 @@ assignees:
     - rikatz
 ---
 
-<!-- if you found something that impacts directly ingress-nginx and 
+<!-- if you found something that impacts directly ingress-nginx and
 is not a public CVE yet, please reach out security@kubernetes.io" -->
 
 <!-- What scanner and version reported the CVE? -->
diff --git a/.github/PULL_REQUEST_TEMPLATE.md b/.github/PULL_REQUEST_TEMPLATE.md
index a14cc7004..e3781887a 100644
--- a/.github/PULL_REQUEST_TEMPLATE.md
+++ b/.github/PULL_REQUEST_TEMPLATE.md
@@ -64,5 +64,5 @@ Enter your extended release note in the block below. If the PR requires addition
 For more information on release notes see: https://git.k8s.io/community/contributors/guide/release-notes.md
 -->
 ```release-note
-PLACE RELEASE NOTES HERE 
+PLACE RELEASE NOTES HERE
 ```

From 2740ab2de7f333b2df9a7f5eaa97c510a0bd45da Mon Sep 17 00:00:00 2001
From: cskinfill <craig.skinfill@gmail.com>
Date: Tue, 18 Oct 2022 08:41:20 -0400
Subject: [PATCH 0425/1641] Update CHANGELOG.md (#9147)

---
 charts/ingress-nginx/CHANGELOG.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/CHANGELOG.md b/charts/ingress-nginx/CHANGELOG.md
index 3c3404ffd..2ec24733e 100644
--- a/charts/ingress-nginx/CHANGELOG.md
+++ b/charts/ingress-nginx/CHANGELOG.md
@@ -4,7 +4,7 @@ This file documents all notable changes to [ingress-nginx](https://github.com/ku
 
 ### 4.3.0 
 - Support for Kubernetes v.1.25.0 was added and support for endpoint slices
-- Support for Kubernetes v1.20.0 was removed
+- Support for Kubernetes v1.20.0 and v1.21.0 was removed
 - [8890](https://github.com/kubernetes/ingress-nginx/pull/8890) migrate to endpointslices
 - [9059](https://github.com/kubernetes/ingress-nginx/pull/9059) kubewebhookcertgen sha change after go1191
 - [9046](https://github.com/kubernetes/ingress-nginx/pull/9046) Parameterize metrics port name

From 3ddbba3fde1717e0324ef3f17310dff17613385e Mon Sep 17 00:00:00 2001
From: jrhunger <jrhunger@users.noreply.github.com>
Date: Tue, 18 Oct 2022 10:17:20 -0400
Subject: [PATCH 0426/1641] add troubleshooting for port listen issues (#9185)

---
 docs/troubleshooting.md | 114 ++++++++++++++++++++++++++++++++++++++++
 1 file changed, 114 insertions(+)

diff --git a/docs/troubleshooting.md b/docs/troubleshooting.md
index f2f5da47b..4b9820200 100644
--- a/docs/troubleshooting.md
+++ b/docs/troubleshooting.md
@@ -365,3 +365,117 @@ Warning  Failed     5m5s (x4 over 6m34s)   kubelet            Failed to pull ima
      a. *.k8s.io -> To ensure you can pull any images from registry.k8s.io
      b. *.gcr.io -> GCP services are used for image hosting. This is part of the domains suggested by GCP to allow and ensure users can pull images from their container registry services.
      c. *.appspot.com -> This a Google domain. part of the domain used for GCR.
+
+## Unable to listen on port (80/443)
+One possible reason for this error is lack of permission to bind to the port.  Ports 80, 443, and any other port < 1024 are Linux privileged ports which historically could only be bound by root.  The ingress-nginx-controller uses the CAP_NET_BIND_SERVICE [linux capability](https://man7.org/linux/man-pages/man7/capabilities.7.html) to allow binding these ports as a normal user (www-data / 101).  This involves two components:
+1. In the image, the /nginx-ingress-controller file has the cap_net_bind_service capability added (e.g. via [setcap](https://man7.org/linux/man-pages/man8/setcap.8.html)) 
+2. The NET_BIND_SERVICE capability is added to the container in the containerSecurityContext of the deployment.
+
+If encountering this on one/some node(s) and not on others, try to purge and pull a fresh copy of the image to the affected node(s), in case there has been corruption of the underlying layers to lose the capability on the executable.
+
+### Create a test pod
+The /nginx-ingress-controller process exits/crashes when encountering this error, making it difficult to troubleshoot what is happening inside the container.  To get around this, start an equivalent container running "sleep 3600", and exec into it for further troubleshooting.  For example:
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: ingress-nginx-sleep
+  namespace: default
+  labels:
+    app: nginx
+spec:
+  containers:
+    - name: nginx
+      image: ##_CONTROLLER_IMAGE_##
+      resources:
+        requests:
+          memory: "512Mi"
+          cpu: "500m"
+        limits:
+          memory: "1Gi"
+          cpu: "1"
+      command: ["sleep"]
+      args: ["3600"]
+      ports:
+      - containerPort: 80
+        name: http
+        protocol: TCP
+      - containerPort: 443
+        name: https
+        protocol: TCP
+      securityContext:
+        allowPrivilegeEscalation: true
+        capabilities:
+          add:
+          - NET_BIND_SERVICE
+          drop:
+          - ALL
+        runAsUser: 101
+  restartPolicy: Never
+  nodeSelector:
+    kubernetes.io/hostname: ##_NODE_NAME_##
+  tolerations:
+  - key: "node.kubernetes.io/unschedulable"
+    operator: "Exists"
+    effect: NoSchedule
+```
+* update the namespace if applicable/desired
+* replace `##_NODE_NAME_##` with the problematic node (or remove nodeSelector section if problem is not confined to one node)
+* replace `##_CONTROLLER_IMAGE_##` with the same image as in use by your ingress-nginx deployment
+* confirm the securityContext section matches what is in place for ingress-nginx-controller pods in your cluster
+
+Apply the YAML and open a shell into the pod.
+Try to manually run the controller process:
+```console
+$ /nginx-ingress-controller
+```
+You should get the same error as from the ingress controller pod logs.
+
+Confirm the capabilities are properly surfacing into the pod:
+```console
+$ grep CapBnd /proc/1/status
+CapBnd: 0000000000000400
+```
+The above value has only net_bind_service enabled (per security context in YAML which adds that and drops all). If you get a different value, then you can decode it on another linux box (capsh not available in this container) like below, and then figure out why specified capabilities are not propagating into the pod/container.
+```console
+$ capsh --decode=0000000000000400
+0x0000000000000400=cap_net_bind_service
+```
+
+## Create a test pod as root
+(Note, this may be restricted by PodSecurityPolicy, PodSecurityAdmission/Standards, OPA Gatekeeper, etc. in which case you will need to do the appropriate workaround for testing, e.g. deploy in a new namespace without the restrictions.)
+To test further you may want to install additional utilities, etc.  Modify the pod yaml by:
+* changing runAsUser from 101 to 0
+* removing the "drop..ALL" section from the capabilities.
+
+Some things to try after shelling into this container:
+
+Try running the controller as the www-data (101) user:
+```console
+$ chmod 4755 /nginx-ingress-controller
+$ /nginx-ingress-controller
+```
+Examine the errors to see if there is still an issue listening on the port or if it passed that and moved on to other expected errors due to running out of context.
+
+Install the libcap package and check capabilities on the file:
+```console
+$ apk add libcap
+(1/1) Installing libcap (2.50-r0)
+Executing busybox-1.33.1-r7.trigger
+OK: 26 MiB in 41 packages
+$ getcap /nginx-ingress-controller
+/nginx-ingress-controller cap_net_bind_service=ep
+```
+(if missing, see above about purging image on the server and re-pulling)
+
+Strace the executable to see what system calls are being executed when it fails:
+```console
+$ apk add strace
+(1/1) Installing strace (5.12-r0)
+Executing busybox-1.33.1-r7.trigger
+OK: 28 MiB in 42 packages
+$ strace /nginx-ingress-controller
+execve("/nginx-ingress-controller", ["/nginx-ingress-controller"], 0x7ffeb9eb3240 /* 131 vars */) = 0
+arch_prctl(ARCH_SET_FS, 0x29ea690)      = 0
+...
+```

From 82e454318c979feb8fec7d9247a6d13dba3201db Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 18 Oct 2022 07:19:20 -0700
Subject: [PATCH 0427/1641] Bump docker/setup-buildx-action from 2.0.0 to 2.1.0
 (#9180)

Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.0.0 to 2.1.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/dc7b9719a96d48369863986a06765841d7ea23f6...95cb08cb2672c73d4ffd2f422e6d11953d2a9c70)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 8e8eb6631..0031e6f19 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -81,7 +81,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@dc7b9719a96d48369863986a06765841d7ea23f6 # v2.0.0
+        uses: docker/setup-buildx-action@95cb08cb2672c73d4ffd2f422e6d11953d2a9c70 # v2.0.0
         with:
           version: latest
 

From 92d75201af6acbc4d8b6a90c7a313824570beafa Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 18 Oct 2022 07:21:19 -0700
Subject: [PATCH 0428/1641] Bump dorny/paths-filter from 2.10.2 to 2.11.1
 (#9183)

Bumps [dorny/paths-filter](https://github.com/dorny/paths-filter) from 2.10.2 to 2.11.1.
- [Release notes](https://github.com/dorny/paths-filter/releases)
- [Changelog](https://github.com/dorny/paths-filter/blob/master/CHANGELOG.md)
- [Commits](https://github.com/dorny/paths-filter/compare/b2feaf19c27470162a626bd6fa8438ae5b263721...4512585405083f25c027a35db413c2b3b9006d50)

---
updated-dependencies:
- dependency-name: dorny/paths-filter
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml   | 6 +++---
 .github/workflows/docs.yaml | 2 +-
 .github/workflows/helm.yaml | 2 +-
 3 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 0031e6f19..32ced69fc 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -28,7 +28,7 @@ jobs:
       - name: Checkout
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
-      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
+      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -328,7 +328,7 @@ jobs:
       - name: Checkout
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
-      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
+      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
         id: filter-images
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -395,7 +395,7 @@ jobs:
       - name: Checkout
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
-      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
+      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
         id: filter-images
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index cb183577a..f02f0a17e 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -26,7 +26,7 @@ jobs:
       - name: Checkout
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3.0.2
 
-      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
+      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index abfdda1c8..4dadc9349 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -27,7 +27,7 @@ jobs:
       - name: Checkout
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
-      - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 # v2.10.2
+      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}

From c7fef553c0e128e3a263858aace82f1f17db9e88 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 19 Oct 2022 10:59:20 -0400
Subject: [PATCH 0429/1641] start 1.4.1 release

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 0d0c52f84..66d62a800 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.4.0
+v1.4.1

From 533a79590eb81010e97868bcb73a54bf8c4f0097 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 19 Oct 2022 10:31:07 -0700
Subject: [PATCH 0430/1641] Bump github.com/spf13/cobra from 1.5.0 to 1.6.0
 (#9173)

Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.5.0 to 1.6.0.
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](https://github.com/spf13/cobra/compare/v1.5.0...v1.6.0)

---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 7 ++++---
 2 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/go.mod b/go.mod
index 378ef56e8..78f133077 100644
--- a/go.mod
+++ b/go.mod
@@ -20,7 +20,7 @@ require (
 	github.com/prometheus/client_golang v1.13.0
 	github.com/prometheus/client_model v0.2.0
 	github.com/prometheus/common v0.37.0
-	github.com/spf13/cobra v1.5.0
+	github.com/spf13/cobra v1.6.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.0
 	github.com/yudai/gojsondiff v1.0.0
@@ -82,7 +82,7 @@ require (
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.2.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 // indirect
-	github.com/inconshreveable/mousetrap v1.0.0 // indirect
+	github.com/inconshreveable/mousetrap v1.0.1 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
diff --git a/go.sum b/go.sum
index ada03d47a..8bb651b85 100644
--- a/go.sum
+++ b/go.sum
@@ -351,8 +351,9 @@ github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:
 github.com/imdario/mergo v0.3.5/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
 github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
 github.com/imdario/mergo v0.3.13/go.mod h1:4lJ1jqUDcsbIECGy0RUJAXNIhg+6ocWgb1ALK2O4oXg=
-github.com/inconshreveable/mousetrap v1.0.0 h1:Z8tu5sraLXCXIcARxBp/8cbvlwVa7Z1NHg9XEKhtSvM=
 github.com/inconshreveable/mousetrap v1.0.0/go.mod h1:PxqpIevigyE2G7u3NXJIT2ANytuPF1OarO4DADm73n8=
+github.com/inconshreveable/mousetrap v1.0.1 h1:U3uMjPSQEBMNp1lFxmllqCPM6P5u/Xq7Pgzkat/bFNc=
+github.com/inconshreveable/mousetrap v1.0.1/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/jonboulle/clockwork v0.1.0/go.mod h1:Ii8DK3G1RaLaWxj9trq07+26W01tbo22gdxWY5EU2bo=
 github.com/jonboulle/clockwork v0.2.2/go.mod h1:Pkfl5aHPm1nk2H9h0bjmnJD/BcgbGXUBGnn1kMkgxc8=
 github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
@@ -548,8 +549,8 @@ github.com/spf13/cast v1.3.0/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkU
 github.com/spf13/cast v1.3.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
 github.com/spf13/cobra v1.1.3/go.mod h1:pGADOWyqRD/YMrPZigI/zbliZ2wVD/23d+is3pSWzOo=
 github.com/spf13/cobra v1.2.1/go.mod h1:ExllRjgxM/piMAM+3tAZvg8fsklGAf3tPfi+i8t68Nk=
-github.com/spf13/cobra v1.5.0 h1:X+jTBEBqF0bHN+9cSMgmfuvv2VHJ9ezmFNf9Y/XstYU=
-github.com/spf13/cobra v1.5.0/go.mod h1:dWXEIy2H428czQCjInthrTRUg7yKbok+2Qi/yBIJoUM=
+github.com/spf13/cobra v1.6.0 h1:42a0n6jwCot1pUmomAp4T7DeMD+20LFv4Q54pxLf2LI=
+github.com/spf13/cobra v1.6.0/go.mod h1:IOw/AERYS7UzyrGinqmz6HLUo219MORXGxhbaJUqzrY=
 github.com/spf13/jwalterweatherman v1.0.0/go.mod h1:cQK4TGJAtQXfYWX+Ddv3mKDzgVb68N+wFjFa4jdeBTo=
 github.com/spf13/jwalterweatherman v1.1.0/go.mod h1:aNWZUN0dPAAO/Ljvb5BEdw96iTZ0EXowPYD95IqWIGo=
 github.com/spf13/pflag v1.0.3/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=

From 8234954b7df1a3b39dd1f7d657ccb56afefa6a18 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 19 Oct 2022 10:33:02 -0700
Subject: [PATCH 0431/1641] Bump google.golang.org/grpc from 1.50.0 to 1.50.1
 (#9174)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.50.0 to 1.50.1.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.50.0...v1.50.1)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 78f133077..f7ce612ac 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
-	google.golang.org/grpc v1.50.0
+	google.golang.org/grpc v1.50.1
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.25.2
diff --git a/go.sum b/go.sum
index 8bb651b85..3e0f1c972 100644
--- a/go.sum
+++ b/go.sum
@@ -1066,8 +1066,8 @@ google.golang.org/grpc v1.39.0/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnD
 google.golang.org/grpc v1.39.1/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
 google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
 google.golang.org/grpc v1.46.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
-google.golang.org/grpc v1.50.0 h1:fPVVDxY9w++VjTZsYvXWqEf9Rqar/e+9zYfxKK+W+YU=
-google.golang.org/grpc v1.50.0/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI=
+google.golang.org/grpc v1.50.1 h1:DS/BukOZWp8s6p4Dt/tOaJaTQyPyOoCcrjroHuCeLzY=
+google.golang.org/grpc v1.50.1/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI=
 google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=

From 7dd4a6eb0045e616fdc4e488d2ecb0ff2236a1dc Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 19 Oct 2022 10:35:04 -0700
Subject: [PATCH 0432/1641] Bump k8s.io/component-base from 0.25.2 to 0.25.3
 (#9175)

Bumps [k8s.io/component-base](https://github.com/kubernetes/component-base) from 0.25.2 to 0.25.3.
- [Release notes](https://github.com/kubernetes/component-base/releases)
- [Commits](https://github.com/kubernetes/component-base/compare/v0.25.2...v0.25.3)

---
updated-dependencies:
- dependency-name: k8s.io/component-base
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index f7ce612ac..912f65e0f 100644
--- a/go.mod
+++ b/go.mod
@@ -29,14 +29,14 @@ require (
 	google.golang.org/grpc v1.50.1
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.25.2
+	k8s.io/api v0.25.3
 	k8s.io/apiextensions-apiserver v0.23.5
-	k8s.io/apimachinery v0.25.2
+	k8s.io/apimachinery v0.25.3
 	k8s.io/apiserver v0.25.0
 	k8s.io/cli-runtime v0.25.0
-	k8s.io/client-go v0.25.2
+	k8s.io/client-go v0.25.3
 	k8s.io/code-generator v0.23.5
-	k8s.io/component-base v0.25.2
+	k8s.io/component-base v0.25.3
 	k8s.io/klog/v2 v2.80.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.11.2
diff --git a/go.sum b/go.sum
index 3e0f1c972..5e1e1a335 100644
--- a/go.sum
+++ b/go.sum
@@ -1135,26 +1135,26 @@ honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 k8s.io/api v0.23.5/go.mod h1:Na4XuKng8PXJ2JsploYYrivXrINeTaycCGcYgF91Xm8=
-k8s.io/api v0.25.2 h1:v6G8RyFcwf0HR5jQGIAYlvtRNrxMJQG1xJzaSeVnIS8=
-k8s.io/api v0.25.2/go.mod h1:qP1Rn4sCVFwx/xIhe+we2cwBLTXNcheRyYXwajonhy0=
+k8s.io/api v0.25.3 h1:Q1v5UFfYe87vi5H7NU0p4RXC26PPMT8KOpr1TLQbCMQ=
+k8s.io/api v0.25.3/go.mod h1:o42gKscFrEVjHdQnyRenACrMtbuJsVdP+WVjqejfzmI=
 k8s.io/apiextensions-apiserver v0.23.5 h1:5SKzdXyvIJKu+zbfPc3kCbWpbxi+O+zdmAJBm26UJqI=
 k8s.io/apiextensions-apiserver v0.23.5/go.mod h1:ntcPWNXS8ZPKN+zTXuzYMeg731CP0heCTl6gYBxLcuQ=
 k8s.io/apimachinery v0.23.5/go.mod h1:BEuFMMBaIbcOqVIJqNZJXGFTP4W6AycEpb5+m/97hrM=
-k8s.io/apimachinery v0.25.2 h1:WbxfAjCx+AeN8Ilp9joWnyJ6xu9OMeS/fsfjK/5zaQs=
-k8s.io/apimachinery v0.25.2/go.mod h1:hqqA1X0bsgsxI6dXsJ4HnNTBOmJNxyPp8dw3u2fSHwA=
+k8s.io/apimachinery v0.25.3 h1:7o9ium4uyUOM76t6aunP0nZuex7gDf8VGwkR5RcJnQc=
+k8s.io/apimachinery v0.25.3/go.mod h1:jaF9C/iPNM1FuLl7Zuy5b9v+n35HGSh6AQ4HYRkCqwo=
 k8s.io/apiserver v0.23.5/go.mod h1:7wvMtGJ42VRxzgVI7jkbKvMbuCbVbgsWFT7RyXiRNTw=
 k8s.io/apiserver v0.25.0 h1:8kl2ifbNffD440MyvHtPaIz1mw4mGKVgWqM0nL+oyu4=
 k8s.io/apiserver v0.25.0/go.mod h1:BKwsE+PTC+aZK+6OJQDPr0v6uS91/HWxX7evElAH6xo=
 k8s.io/cli-runtime v0.25.0 h1:XBnTc2Fi+w818jcJGzhiJKQuXl8479sZ4FhtV5hVJ1Q=
 k8s.io/cli-runtime v0.25.0/go.mod h1:bHOI5ZZInRHhbq12OdUiYZQN8ml8aKZLwQgt9QlLINw=
 k8s.io/client-go v0.23.5/go.mod h1:flkeinTO1CirYgzMPRWxUCnV0G4Fbu2vLhYCObnt/r4=
-k8s.io/client-go v0.25.2 h1:SUPp9p5CwM0yXGQrwYurw9LWz+YtMwhWd0GqOsSiefo=
-k8s.io/client-go v0.25.2/go.mod h1:i7cNU7N+yGQmJkewcRD2+Vuj4iz7b30kI8OcL3horQ4=
+k8s.io/client-go v0.25.3 h1:oB4Dyl8d6UbfDHD8Bv8evKylzs3BXzzufLiO27xuPs0=
+k8s.io/client-go v0.25.3/go.mod h1:t39LPczAIMwycjcXkVc+CB+PZV69jQuNx4um5ORDjQA=
 k8s.io/code-generator v0.23.5 h1:xn3a6J5pUL49AoH6SPrOFtnB5cvdMl76f/bEY176R3c=
 k8s.io/code-generator v0.23.5/go.mod h1:S0Q1JVA+kSzTI1oUvbKAxZY/DYbA/ZUb4Uknog12ETk=
 k8s.io/component-base v0.23.5/go.mod h1:c5Nq44KZyt1aLl0IpHX82fhsn84Sb0jjzwjpcA42bY0=
-k8s.io/component-base v0.25.2 h1:Nve/ZyHLUBHz1rqwkjXm/Re6IniNa5k7KgzxZpTfSQY=
-k8s.io/component-base v0.25.2/go.mod h1:90W21YMr+Yjg7MX+DohmZLzjsBtaxQDDwaX4YxDkl60=
+k8s.io/component-base v0.25.3 h1:UrsxciGdrCY03ULT1h/S/gXFCOPnLhUVwSyx+hM/zq4=
+k8s.io/component-base v0.25.3/go.mod h1:WYoS8L+IlTZgU7rhAl5Ctpw0WdMxDfCC5dkxcEFa/TI=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c h1:GohjlNKauSai7gN4wsJkeZ3WAJx4Sh+oT/b5IYn5suA=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=

From 9f1e0fddad42887fa5c9f0ede833e75e85a93b0d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 19 Oct 2022 10:37:02 -0700
Subject: [PATCH 0433/1641] Bump github.com/fsnotify/fsnotify from 1.5.4 to
 1.6.0 (#9176)

Bumps [github.com/fsnotify/fsnotify](https://github.com/fsnotify/fsnotify) from 1.5.4 to 1.6.0.
- [Release notes](https://github.com/fsnotify/fsnotify/releases)
- [Changelog](https://github.com/fsnotify/fsnotify/blob/main/CHANGELOG.md)
- [Commits](https://github.com/fsnotify/fsnotify/compare/v1.5.4...v1.6.0)

---
updated-dependencies:
- dependency-name: github.com/fsnotify/fsnotify
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 9 ++++-----
 2 files changed, 6 insertions(+), 7 deletions(-)

diff --git a/go.mod b/go.mod
index 912f65e0f..c4bfc8062 100644
--- a/go.mod
+++ b/go.mod
@@ -5,7 +5,7 @@ go 1.19
 require (
 	github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a
 	github.com/eapache/channels v1.1.0
-	github.com/fsnotify/fsnotify v1.5.4
+	github.com/fsnotify/fsnotify v1.6.0
 	github.com/imdario/mergo v0.3.13
 	github.com/json-iterator/go v1.1.12
 	github.com/kylelemons/godebug v1.1.0
@@ -107,7 +107,7 @@ require (
 	golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4 // indirect
 	golang.org/x/net v0.0.0-20220906165146-f3363e06e74c // indirect
 	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
-	golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10 // indirect
+	golang.org/x/sys v0.0.0-20220908164124-27713097b956 // indirect
 	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
 	golang.org/x/text v0.3.7 // indirect
 	golang.org/x/time v0.0.0-20220210224613-90d013bbcef8 // indirect
diff --git a/go.sum b/go.sum
index 5e1e1a335..8c60778dc 100644
--- a/go.sum
+++ b/go.sum
@@ -175,8 +175,8 @@ github.com/form3tech-oss/jwt-go v3.2.3+incompatible/go.mod h1:pbq4aXjuKjdthFRnoD
 github.com/frankban/quicktest v1.11.3/go.mod h1:wRf/ReqHper53s+kmmSZizM8NamnL3IM0I9ntUbOk+k=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
-github.com/fsnotify/fsnotify v1.5.4 h1:jRbGcIw6P2Meqdwuo0H1p6JVLbL5DHKAKlYndzMwVZI=
-github.com/fsnotify/fsnotify v1.5.4/go.mod h1:OVB6XrOHzAwXMpEM7uPOzcehqUV2UqJxmVXmkdnm1bU=
+github.com/fsnotify/fsnotify v1.6.0 h1:n+5WquG0fcWoWp6xPWfHdbskMCQaFnG6PfBrh1Ky4HY=
+github.com/fsnotify/fsnotify v1.6.0/go.mod h1:sl3t1tCWJFWoRz9R8WJCbQihKKwmorjAbSClcnxKAGw=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b h1:074/xhloHUBOpTZwlIzQ28rbPY8pNJvzY7Gcx5KnNOk=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
 github.com/getkin/kin-openapi v0.76.0/go.mod h1:660oXbgy5JFMKreazJaQTw7o+X00qeSyhcnluiMv+Xg=
@@ -851,9 +851,8 @@ golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220412211240-33da011f77ad/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10 h1:WIoqL4EROvwiPdUtaip4VcDdpZ4kha7wBWZrbVKCIZg=
-golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220908164124-27713097b956 h1:XeJjHH1KiLpKGb6lvMiksZ9l0fVUh+AmGcm0nOMEBOY=
+golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 h1:JGgROgKl9N8DuW20oFS5gxc+lE67/N3FcwmBPMe7ArY=

From c18cb467aafdcd9cf27c7bf18962a986b9d81737 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 19 Oct 2022 10:39:03 -0700
Subject: [PATCH 0434/1641] Bump github.com/onsi/ginkgo/v2 from 2.2.0 to 2.3.1
 (#9177)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.2.0 to 2.3.1.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.2.0...v2.3.1)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/go.mod b/go.mod
index c4bfc8062..c4b4d2de2 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.2.0
+	github.com/onsi/ginkgo/v2 v2.3.1
 	github.com/opencontainers/runc v1.1.4
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.13.0
diff --git a/go.sum b/go.sum
index 8c60778dc..c5b331a8f 100644
--- a/go.sum
+++ b/go.sum
@@ -457,12 +457,12 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
-github.com/onsi/ginkgo/v2 v2.2.0 h1:3ZNA3L1c5FYDFTTxbFeVGGD8jYvjYauHD30YgLxVsNI=
-github.com/onsi/ginkgo/v2 v2.2.0/go.mod h1:MEH45j8TBi6u9BMogfbp0stKC5cdGjumZj5Y7AG4VIk=
+github.com/onsi/ginkgo/v2 v2.3.1 h1:8SbseP7qM32WcvE6VaN6vfXxv698izmsJ1UQX9ve7T8=
+github.com/onsi/ginkgo/v2 v2.3.1/go.mod h1:Sv4yQXwG5VmF7tm3Q5Z+RWUpPo24LF1mpnz2crUb8Ys=
 github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.20.1 h1:PA/3qinGoukvymdIDV8pii6tiZgC8kbmJO6Z5+b002Q=
+github.com/onsi/gomega v1.22.0 h1:AIg2/OntwkBiCg5Tt1ayyiF1ArFrWFoCSMtMi/wdApk=
 github.com/opencontainers/runc v1.1.4 h1:nRCz/8sKg6K6jgYAFLDlXzPeITBZJyX28DBVhWD+5dg=
 github.com/opencontainers/runc v1.1.4/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=

From 2ebb6b9c7377f308b948206c87203be8ef0a90c1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 19 Oct 2022 10:41:01 -0700
Subject: [PATCH 0435/1641] Bump geekyeggo/delete-artifact from 1.0.0 to 2.0.0
 (#9178)

Bumps [geekyeggo/delete-artifact](https://github.com/geekyeggo/delete-artifact) from 1.0.0 to 2.0.0.
- [Release notes](https://github.com/geekyeggo/delete-artifact/releases)
- [Commits](https://github.com/geekyeggo/delete-artifact/compare/b73cb986740e466292a536d0e32e2666c56fdeb3...54ab544f12cdb7b71613a16a2b5a37a9ade990af)

---
updated-dependencies:
- dependency-name: geekyeggo/delete-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 32ced69fc..9cc4bdd9b 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -182,7 +182,7 @@ jobs:
           version: v0.15.0
           image: kindest/node:${{ matrix.k8s }}
 
-      - uses: geekyeggo/delete-artifact@b73cb986740e466292a536d0e32e2666c56fdeb3 # v1
+      - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af # v1
         with:
           name: docker.tar.gz
           failOnError: false
@@ -233,7 +233,7 @@ jobs:
           config: test/e2e/kind.yaml
           image: kindest/node:${{ matrix.k8s }}
 
-      - uses: geekyeggo/delete-artifact@b73cb986740e466292a536d0e32e2666c56fdeb3 # v1
+      - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af # v1
         with:
           name: docker.tar.gz
           failOnError: false
@@ -290,7 +290,7 @@ jobs:
           config: test/e2e/kind.yaml
           image: kindest/node:${{ matrix.k8s }}
 
-      - uses: geekyeggo/delete-artifact@b73cb986740e466292a536d0e32e2666c56fdeb3
+      - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af
         with:
           name: docker.tar.gz
           failOnError: false

From 98505a2c198654a541e0edd2617fcb81c1b80e65 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 19 Oct 2022 10:43:02 -0700
Subject: [PATCH 0436/1641] Bump actions/dependency-review-action from 2.4.0 to
 2.5.0 (#9179)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 2.4.0 to 2.5.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/375c5370086bfff256c37f8beec0f437e2e72ae1...fd675ced9c17f1393071e1a2e685ab527e585a0c)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 1809c531c..18ab95a6a 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3.0.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@375c5370086bfff256c37f8beec0f437e2e72ae1 #v2.0.2
+        uses: actions/dependency-review-action@fd675ced9c17f1393071e1a2e685ab527e585a0c #v2.0.2

From 8a83748d0f34b5c7f40b8f483073d1173a338fd1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 19 Oct 2022 10:45:02 -0700
Subject: [PATCH 0437/1641] Bump docker/setup-qemu-action from 2.0.0 to 2.1.0
 (#9181)

Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 2.0.0 to 2.1.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](https://github.com/docker/setup-qemu-action/compare/8b122486cedac8393e77aa9734c3528886e4a1a8...e81a89b1732b9c48d79cd809d8d81d79c4647a18)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 9cc4bdd9b..49746e9a0 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -77,7 +77,7 @@ jobs:
           go-version: '1.19.2'
 
       - name: Set up QEMU
-        uses: docker/setup-qemu-action@8b122486cedac8393e77aa9734c3528886e4a1a8 #v2.0.0
+        uses: docker/setup-qemu-action@e81a89b1732b9c48d79cd809d8d81d79c4647a18 #v2.0.0
 
       - name: Set up Docker Buildx
         id: buildx

From 5f2a79495a65c57106d8fab00bc95a029c3a8aab Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 19 Oct 2022 10:47:02 -0700
Subject: [PATCH 0438/1641] Bump securego/gosec from 2.13.1 to 2.14.0 (#9182)

Bumps [securego/gosec](https://github.com/securego/gosec) from 2.13.1 to 2.14.0.
- [Release notes](https://github.com/securego/gosec/releases)
- [Changelog](https://github.com/securego/gosec/blob/master/.goreleaser.yml)
- [Commits](https://github.com/securego/gosec/compare/19fa856badad483cae700ee1213dd7f1a933d6d3...1af1d5bb49259b62e45c505db397dd2ada5d74f8)

---
updated-dependencies:
- dependency-name: securego/gosec
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 49746e9a0..93caa3b4c 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -53,7 +53,7 @@ jobs:
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
       - name: Run Gosec Security Scanner
-        uses: securego/gosec@19fa856badad483cae700ee1213dd7f1a933d6d3 # master
+        uses: securego/gosec@1af1d5bb49259b62e45c505db397dd2ada5d74f8 # master
         with:
           # G601 for zz_generated.deepcopy.go
           # G306 TODO: Expect WriteFile permissions to be 0600 or less

From 84614b99c3ce5c7cbbe0cf0ae12c466e73f123a8 Mon Sep 17 00:00:00 2001
From: Kir Shatrov <shatrov@me.com>
Date: Thu, 20 Oct 2022 22:57:25 +0300
Subject: [PATCH 0439/1641] Implement parseFloat for annotations (#9195)

---
 internal/ingress/annotations/parser/main.go   | 22 ++++++++++
 .../ingress/annotations/parser/main_test.go   | 41 +++++++++++++++++++
 2 files changed, 63 insertions(+)

diff --git a/internal/ingress/annotations/parser/main.go b/internal/ingress/annotations/parser/main.go
index b39e409b9..107a278b0 100644
--- a/internal/ingress/annotations/parser/main.go
+++ b/internal/ingress/annotations/parser/main.go
@@ -80,6 +80,18 @@ func (a ingAnnotations) parseInt(name string) (int, error) {
 	return 0, errors.ErrMissingAnnotations
 }
 
+func (a ingAnnotations) parseFloat32(name string) (float32, error) {
+	val, ok := a[name]
+	if ok {
+		i, err := strconv.ParseFloat(val, 32)
+		if err != nil {
+			return 0, errors.NewInvalidAnnotationContent(name, val)
+		}
+		return float32(i), nil
+	}
+	return 0, errors.ErrMissingAnnotations
+}
+
 func checkAnnotation(name string, ing *networking.Ingress) error {
 	if ing == nil || len(ing.GetAnnotations()) == 0 {
 		return errors.ErrMissingAnnotations
@@ -122,6 +134,16 @@ func GetIntAnnotation(name string, ing *networking.Ingress) (int, error) {
 	return ingAnnotations(ing.GetAnnotations()).parseInt(v)
 }
 
+// GetFloatAnnotation extracts a float32 from an Ingress annotation
+func GetFloatAnnotation(name string, ing *networking.Ingress) (float32, error) {
+	v := GetAnnotationWithPrefix(name)
+	err := checkAnnotation(v, ing)
+	if err != nil {
+		return 0, err
+	}
+	return ingAnnotations(ing.GetAnnotations()).parseFloat32(v)
+}
+
 // GetAnnotationWithPrefix returns the prefix of ingress annotations
 func GetAnnotationWithPrefix(suffix string) string {
 	return fmt.Sprintf("%v/%v", AnnotationsPrefix, suffix)
diff --git a/internal/ingress/annotations/parser/main_test.go b/internal/ingress/annotations/parser/main_test.go
index 7b01a1230..318e024d3 100644
--- a/internal/ingress/annotations/parser/main_test.go
+++ b/internal/ingress/annotations/parser/main_test.go
@@ -130,6 +130,47 @@ rewrite (?i)/arcgis/services/Utilities/Geometry/GeometryServer(.*)$ /arcgis/serv
 	}
 }
 
+func TestGetFloatAnnotation(t *testing.T) {
+	ing := buildIngress()
+
+	_, err := GetFloatAnnotation("", nil)
+	if err == nil {
+		t.Errorf("expected error but retuned nil")
+	}
+
+	tests := []struct {
+		name   string
+		field  string
+		value  string
+		exp    float32
+		expErr bool
+	}{
+		{"valid - A", "string", "1.5", 1.5, false},
+		{"valid - B", "string", "2", 2, false},
+		{"valid - C", "string", "100.0", 100, false},
+	}
+
+	data := map[string]string{}
+	ing.SetAnnotations(data)
+
+	for _, test := range tests {
+		data[GetAnnotationWithPrefix(test.field)] = test.value
+
+		s, err := GetFloatAnnotation(test.field, ing)
+		if test.expErr {
+			if err == nil {
+				t.Errorf("%v: expected error but retuned nil", test.name)
+			}
+			continue
+		}
+		if s != test.exp {
+			t.Errorf("%v: expected \"%v\" but \"%v\" was returned", test.name, test.exp, s)
+		}
+
+		delete(data, test.field)
+	}
+}
+
 func TestGetIntAnnotation(t *testing.T) {
 	ing := buildIngress()
 

From f2ed5d17f672abf2dcda53811e0272357c0d02d4 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Oct 2022 05:10:26 -0700
Subject: [PATCH 0440/1641] Bump github.com/onsi/ginkgo/v2 from 2.3.1 to 2.4.0
 (#9201)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.3.1 to 2.4.0.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.3.1...v2.4.0)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 16 ++++++++--------
 go.sum | 31 +++++++++++++++++--------------
 2 files changed, 25 insertions(+), 22 deletions(-)

diff --git a/go.mod b/go.mod
index c4b4d2de2..b320fe44b 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.3.1
+	github.com/onsi/ginkgo/v2 v2.4.0
 	github.com/opencontainers/runc v1.1.4
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.13.0
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd
+	golang.org/x/crypto v0.1.0
 	google.golang.org/grpc v1.50.1
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -104,14 +104,14 @@ require (
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
-	golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4 // indirect
-	golang.org/x/net v0.0.0-20220906165146-f3363e06e74c // indirect
+	golang.org/x/mod v0.6.0 // indirect
+	golang.org/x/net v0.1.0 // indirect
 	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
-	golang.org/x/sys v0.0.0-20220908164124-27713097b956 // indirect
-	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
-	golang.org/x/text v0.3.7 // indirect
+	golang.org/x/sys v0.1.0 // indirect
+	golang.org/x/term v0.1.0 // indirect
+	golang.org/x/text v0.4.0 // indirect
 	golang.org/x/time v0.0.0-20220210224613-90d013bbcef8 // indirect
-	golang.org/x/tools v0.1.12 // indirect
+	golang.org/x/tools v0.2.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto v0.0.0-20220502173005-c8bf987b8c21 // indirect
 	google.golang.org/protobuf v1.28.1 // indirect
diff --git a/go.sum b/go.sum
index c5b331a8f..9ce9078e4 100644
--- a/go.sum
+++ b/go.sum
@@ -457,12 +457,12 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
-github.com/onsi/ginkgo/v2 v2.3.1 h1:8SbseP7qM32WcvE6VaN6vfXxv698izmsJ1UQX9ve7T8=
-github.com/onsi/ginkgo/v2 v2.3.1/go.mod h1:Sv4yQXwG5VmF7tm3Q5Z+RWUpPo24LF1mpnz2crUb8Ys=
+github.com/onsi/ginkgo/v2 v2.4.0 h1:+Ig9nvqgS5OBSACXNk15PLdp0U9XPYROt9CFzVdFGIs=
+github.com/onsi/ginkgo/v2 v2.4.0/go.mod h1:iHkDK1fKGcBoEHT5W7YBq4RFWaQulw+caOMkAt4OrFo=
 github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.22.0 h1:AIg2/OntwkBiCg5Tt1ayyiF1ArFrWFoCSMtMi/wdApk=
+github.com/onsi/gomega v1.22.1 h1:pY8O4lBfsHKZHM/6nrxkhVPUznOlIu3quZcKP/M20KI=
 github.com/opencontainers/runc v1.1.4 h1:nRCz/8sKg6K6jgYAFLDlXzPeITBZJyX28DBVhWD+5dg=
 github.com/opencontainers/runc v1.1.4/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
@@ -653,8 +653,8 @@ golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5y
 golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20211215153901-e495a2d5b3d3/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
-golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd h1:XcWmESyNjXJMLahc3mqVQJcgSTDxFxhETVlfk9uGc38=
-golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
+golang.org/x/crypto v0.1.0 h1:MDRAIl0xIo9Io2xV565hzXHw3zVseKrJKodhohM5CjU=
+golang.org/x/crypto v0.1.0/go.mod h1:RecgLatLF4+eUMCP1PoPZQb+cVrJcOPbHkTkbkB9sbw=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -690,8 +690,8 @@ golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4 h1:6zppjxzCulZykYSLyVDYbneBfbaBIQPYMevg0bEwv2s=
-golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
+golang.org/x/mod v0.6.0 h1:b9gGHsz9/HhJ3HF5DHQytPpuwocVTChQJK3AvoLRD5I=
+golang.org/x/mod v0.6.0/go.mod h1:4mET923SAdbXp2ki8ey+zGs1SLqsuM2Y0uvdZR/fUNI=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -744,8 +744,8 @@ golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qx
 golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
 golang.org/x/net v0.0.0-20220225172249-27dd8689420f/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
-golang.org/x/net v0.0.0-20220906165146-f3363e06e74c h1:yKufUcDwucU5urd+50/Opbt4AYpqthk7wHpHok8f1lo=
-golang.org/x/net v0.0.0-20220906165146-f3363e06e74c/go.mod h1:YDH+HFinaLZZlnHAfSS6ZXJJ9M9t4Dl22yv3iI2vPwk=
+golang.org/x/net v0.1.0 h1:hZ/3BUoy5aId7sCpA/Tc5lt8DkFgdVS2onTpJsZ/fl0=
+golang.org/x/net v0.1.0/go.mod h1:Cx3nUiGt4eDBEyega/BKRp+/AlGL8hYe7U9odMt2Cco=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -851,12 +851,14 @@ golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220908164124-27713097b956 h1:XeJjHH1KiLpKGb6lvMiksZ9l0fVUh+AmGcm0nOMEBOY=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.1.0 h1:kunALQeHf1/185U1i0GOB/fy1IPRDDpuoOOqRReG57U=
+golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 h1:JGgROgKl9N8DuW20oFS5gxc+lE67/N3FcwmBPMe7ArY=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
+golang.org/x/term v0.1.0 h1:g6Z6vPFA9dYBAF7DWcH6sCcOntplXsDKcliusYijMlw=
+golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -865,8 +867,9 @@ golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.7 h1:olpwvP2KacW1ZWvsR7uQhoyTYvKAupfQrRGBFM352Gk=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
+golang.org/x/text v0.4.0 h1:BrVqGRd7+k1DiOgtnFvAkoQEWQvBc25ouMJM6429SFg=
+golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
@@ -935,8 +938,8 @@ golang.org/x/tools v0.1.3/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.4/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.6-0.20210820212750-d4cc65f0b2ff/go.mod h1:YD9qOF0M9xpSpdWTBbzEl5e/RnCefISl8E5Noe10jFM=
-golang.org/x/tools v0.1.12 h1:VveCTK38A2rkS8ZqFY25HIDFscX5X9OoEhJd3quQmXU=
-golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
+golang.org/x/tools v0.2.0 h1:G6AHpWxTMGY1KyEYoAQ5WTtIekUUvDNjan3ugu60JvE=
+golang.org/x/tools v0.2.0/go.mod h1:y4OqIKeOV/fWJetJ8bXPU1sEVniLMIyDAZWeHdV+NTA=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=

From 68bcb3761cfeefb33fa5b6ffa5fff6ffb03eb41b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Oct 2022 13:08:24 -0700
Subject: [PATCH 0441/1641] Bump goreleaser/goreleaser-action from 3.1.0 to
 3.2.0 (#9208)

Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/ff11ca24a9b39f2d36796d1fbd7a4e39c182630a...b508e2e3ef3b19d4e4146d4f8fb3ba9db644a757)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/plugin.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index ff11b713c..0e4b2671d 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -27,7 +27,7 @@ jobs:
           go-version: 1.19.2
 
       - name: Run GoReleaser
-        uses: goreleaser/goreleaser-action@ff11ca24a9b39f2d36796d1fbd7a4e39c182630a # v3.0.0
+        uses: goreleaser/goreleaser-action@b508e2e3ef3b19d4e4146d4f8fb3ba9db644a757 # v3.0.0
         with:
           version: latest
           args: release --rm-dist

From a500a1ec8f5e18b3acdb775a54d9d8c6dece355a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Oct 2022 13:18:35 -0700
Subject: [PATCH 0442/1641] Bump github.com/stretchr/testify from 1.8.0 to
 1.8.1 (#9202)

Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.0 to 1.8.1.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.8.0...v1.8.1)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 6 ++++--
 2 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index b320fe44b..3ed69f652 100644
--- a/go.mod
+++ b/go.mod
@@ -22,7 +22,7 @@ require (
 	github.com/prometheus/common v0.37.0
 	github.com/spf13/cobra v1.6.0
 	github.com/spf13/pflag v1.0.5
-	github.com/stretchr/testify v1.8.0
+	github.com/stretchr/testify v1.8.1
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.1.0
diff --git a/go.sum b/go.sum
index 9ce9078e4..1468b7617 100644
--- a/go.sum
+++ b/go.sum
@@ -561,8 +561,9 @@ github.com/spf13/viper v1.8.1/go.mod h1:o0Pch8wJ9BVSWGQMbra6iw0oQ5oktSIBaujf1rJH
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/objx v0.4.0 h1:M2gUjqZET1qApGOWNSnZ49BAIMX4F/1plDv3+l31EJ4=
 github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
+github.com/stretchr/objx v0.5.0 h1:1zr/of2m5FGMsad5YfcqgdqdWrIhu+EBEJRhR1U7z/c=
+github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
 github.com/stretchr/testify v1.1.3/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
@@ -571,8 +572,9 @@ github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.8.0 h1:pSgiaMZlXftHpm5L7V1+rVB+AZJydKsMxsQBIJw4PKk=
 github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
+github.com/stretchr/testify v1.8.1 h1:w7B6lhMri9wdJUVmEZPGGhZzrYTPvgJArz7wNPgYKsk=
+github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/subosito/gotenv v1.2.0/go.mod h1:N0PQaV/YGNqwC0u51sEeR/aUtSLEXKX9iv69rRypqCw=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=

From f4cefedc9339b152865fd03e75f88bf05c7a6f59 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Oct 2022 13:20:35 -0700
Subject: [PATCH 0443/1641] Bump ossf/scorecard-action from 2.0.4 to 2.0.6
 (#9203)

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.0.4 to 2.0.6.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](https://github.com/ossf/scorecard-action/compare/e363bfca00e752f91de7b7d2a77340e2e523cb18...99c53751e09b9529366343771cc321ec74e9bd3d)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index c06db13ca..9fbc0480a 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -30,7 +30,7 @@ jobs:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@e363bfca00e752f91de7b7d2a77340e2e523cb18 # v1.1.1
+        uses: ossf/scorecard-action@99c53751e09b9529366343771cc321ec74e9bd3d # v1.1.1
         with:
           results_file: results.sarif
           results_format: sarif

From 951d8196e555eb4f0701ff871e9ed25c146a0e20 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Oct 2022 13:22:34 -0700
Subject: [PATCH 0444/1641] Bump docker/setup-buildx-action from 2.1.0 to 2.2.1
 (#9204)

Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.1.0 to 2.2.1.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/95cb08cb2672c73d4ffd2f422e6d11953d2a9c70...8c0edbc76e98fa90f69d9a2c020dcb50019dc325)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 93caa3b4c..56569b5d8 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -81,7 +81,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@95cb08cb2672c73d4ffd2f422e6d11953d2a9c70 # v2.0.0
+        uses: docker/setup-buildx-action@8c0edbc76e98fa90f69d9a2c020dcb50019dc325 # v2.0.0
         with:
           version: latest
 

From 60dc84476b0be8810128b9f756d4de52f0f4d7ff Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Oct 2022 13:24:34 -0700
Subject: [PATCH 0445/1641] Bump actions/setup-go from 3.3.0 to 3.3.1 (#9205)

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3.3.0 to 3.3.1.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/268d8c0ca0432bb2cf416faae41297df9d262d7f...c4a742cab115ed795e34d4513e2cf7d472deb55f)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml     | 6 +++---
 .github/workflows/plugin.yaml | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 56569b5d8..a85165efd 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -72,7 +72,7 @@ jobs:
 
       - name: Set up Go 1.19.2
         id: go
-        uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
+        uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f # v3.2.0
         with:
           go-version: '1.19.2'
 
@@ -138,7 +138,7 @@ jobs:
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
       - name: Setup Go
-        uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
+        uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f # v3.2.0
         with:
           go-version: '1.19.2'
 
@@ -414,7 +414,7 @@ jobs:
       - name: Set up Go 1.19.2
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
+        uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f # v3.2.0
         with:
           go-version: '1.19.2'
 
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 0e4b2671d..5da461528 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -22,7 +22,7 @@ jobs:
           fetch-depth: 0
 
       - name: Set up Go
-        uses: actions/setup-go@268d8c0ca0432bb2cf416faae41297df9d262d7f # v3.2.0
+        uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f # v3.2.0
         with:
           go-version: 1.19.2
 

From f7c757c90b1b51522570089362cf9fab45875720 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Oct 2022 13:26:36 -0700
Subject: [PATCH 0446/1641] Bump github/codeql-action from 2.1.27 to 2.1.28
 (#9206)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.27 to 2.1.28.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/807578363a7869ca324a79039e6db9c843e0e100...cc7986c02bac29104a72998e67239bb5ee2ee110)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 9fbc0480a..762634db0 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@807578363a7869ca324a79039e6db9c843e0e100 # v2.1.14
+        uses: github/codeql-action/upload-sarif@cc7986c02bac29104a72998e67239bb5ee2ee110 # v2.1.14
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 0cfdb6375..34c4f1901 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@807578363a7869ca324a79039e6db9c843e0e100
+      uses: github/codeql-action/upload-sarif@cc7986c02bac29104a72998e67239bb5ee2ee110
       with:
         token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository

From 9216b7b0991b6c5f89c73c401a1cc4d471d4a314 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Oct 2022 13:28:35 -0700
Subject: [PATCH 0447/1641] Bump actions/download-artifact from 3.0.0 to 3.0.1
 (#9207)

Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/fb598a63ae348fa914e94cd0ff38f362e927b741...9782bd6a9848b53b110e712e20e42d89988822b7)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index a85165efd..25cc509f0 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -143,7 +143,7 @@ jobs:
           go-version: '1.19.2'
 
       - name: cache
-        uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741 # v3
+        uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7 # v3
         with:
           name: docker.tar.gz
 
@@ -221,7 +221,7 @@ jobs:
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
       - name: cache
-        uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741 # v2
+        uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7 # v2
         with:
           name: docker.tar.gz
 
@@ -278,7 +278,7 @@ jobs:
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
       - name: cache
-        uses: actions/download-artifact@fb598a63ae348fa914e94cd0ff38f362e927b741
+        uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7
         with:
           name: docker.tar.gz
 

From 397003d7ccfee5d9f74d8c1a6378caa40b53d448 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 25 Oct 2022 07:10:36 -0700
Subject: [PATCH 0448/1641] Bump github.com/prometheus/client_model from 0.2.0
 to 0.3.0 (#9200)

Bumps [github.com/prometheus/client_model](https://github.com/prometheus/client_model) from 0.2.0 to 0.3.0.
- [Release notes](https://github.com/prometheus/client_model/releases)
- [Commits](https://github.com/prometheus/client_model/compare/v0.2.0...v0.3.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_model
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 3 ++-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/go.mod b/go.mod
index 3ed69f652..a1b307b36 100644
--- a/go.mod
+++ b/go.mod
@@ -18,7 +18,7 @@ require (
 	github.com/opencontainers/runc v1.1.4
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.13.0
-	github.com/prometheus/client_model v0.2.0
+	github.com/prometheus/client_model v0.3.0
 	github.com/prometheus/common v0.37.0
 	github.com/spf13/cobra v1.6.0
 	github.com/spf13/pflag v1.0.5
diff --git a/go.sum b/go.sum
index 1468b7617..529555a3a 100644
--- a/go.sum
+++ b/go.sum
@@ -495,8 +495,9 @@ github.com/prometheus/client_golang v1.13.0/go.mod h1:vTeo+zgvILHsnnj/39Ou/1fPN5
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/client_model v0.2.0 h1:uq5h0d+GuxiXLJLNABMgp2qUWDPiLvgCzz2dUR+/W/M=
 github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
+github.com/prometheus/client_model v0.3.0 h1:UBgGFHqYdG/TPFD1B1ogZywDqEkwp3fBMvqdiQ7Xew4=
+github.com/prometheus/client_model v0.3.0/go.mod h1:LDGWKZIo7rky3hgvBe+caln+Dr3dPggB5dvjtD7w9+w=
 github.com/prometheus/common v0.0.0-20181113130724-41aa239b4cce/go.mod h1:daVV7qP5qjZbuso7PdcryaAu0sAZbrN9i7WWcTMWvro=
 github.com/prometheus/common v0.4.0/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=

From a383cfc55100aae3894629bea224472c578909c0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Thomas=20G=C3=BCttler?= <info@thomas-guettler.de>
Date: Tue, 25 Oct 2022 16:14:36 +0200
Subject: [PATCH 0449/1641] fix typo in docs. (#9167)

---
 docs/deploy/index.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 4cefb7c48..1ae4f22de 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -8,7 +8,7 @@ There are multiple ways to install the NGINX ingress controller:
 
 On most Kubernetes clusters, the ingress controller will work without requiring any extra configuration. If you want to 
 get started as fast as possible, you can check the [quick start](#quick-start) instructions. However, in many 
-environments, you can improve the performance or get better logs by enabling extra features. we recommend that you 
+environments, you can improve the performance or get better logs by enabling extra features. We recommend that you 
 check the [environment-specific instructions](#environment-specific-instructions) for details about optimizing the 
 ingress controller for your particular environment or cloud provider.
 

From ac1a3363bde234252e750845d4a9547dad997e84 Mon Sep 17 00:00:00 2001
From: Youssef Bel Mekki <38552193+ybelMekk@users.noreply.github.com>
Date: Tue, 25 Oct 2022 23:14:36 +0200
Subject: [PATCH 0450/1641] add:(admission-webhooks) ability to set
 securityContext for job-containers createSecret and patchWebhook (#9186)

Signed-off-by: ybelMekk <youssef.bel.mekki@nav.no>

Signed-off-by: ybelMekk <youssef.bel.mekki@nav.no>
---
 charts/ingress-nginx/README.md                               | 2 ++
 .../admission-webhooks/job-patch/job-createSecret.yaml       | 5 +++--
 .../admission-webhooks/job-patch/job-patchWebhook.yaml       | 5 +++--
 charts/ingress-nginx/values.yaml                             | 4 ++++
 4 files changed, 12 insertions(+), 4 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 06db4d991..6ce41792e 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -242,6 +242,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.admissionWebhooks.annotations | object | `{}` |  |
 | controller.admissionWebhooks.certificate | string | `"/usr/local/certificates/cert"` |  |
 | controller.admissionWebhooks.createSecretJob.resources | object | `{}` |  |
+| controller.admissionWebhooks.createSecretJob.securityContext.allowPrivilegeEscalation | bool | `false` |  |
 | controller.admissionWebhooks.enabled | bool | `true` |  |
 | controller.admissionWebhooks.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | controller.admissionWebhooks.extraEnvs | list | `[]` | Additional environment variables to set |
@@ -266,6 +267,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.admissionWebhooks.patch.securityContext.runAsUser | int | `2000` |  |
 | controller.admissionWebhooks.patch.tolerations | list | `[]` |  |
 | controller.admissionWebhooks.patchWebhookJob.resources | object | `{}` |  |
+| controller.admissionWebhooks.patchWebhookJob.securityContext.allowPrivilegeEscalation | bool | `false` |  |
 | controller.admissionWebhooks.port | int | `8443` |  |
 | controller.admissionWebhooks.service.annotations | object | `{}` |  |
 | controller.admissionWebhooks.service.externalIPs | list | `[]` |  |
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
index 7558e0b1a..de78f45bd 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
@@ -59,8 +59,9 @@ spec:
           {{- if .Values.controller.admissionWebhooks.extraEnvs }}
             {{- toYaml .Values.controller.admissionWebhooks.extraEnvs | nindent 12 }}
           {{- end }}
-          securityContext:
-            allowPrivilegeEscalation: false
+          {{- if .Values.controller.admissionWebhooks.createSecretJob.securityContext }}
+          securityContext: {{ toYaml .Values.controller.admissionWebhooks.createSecretJob.securityContext | nindent 12 }}
+          {{- end }}
           {{- if .Values.controller.admissionWebhooks.createSecretJob.resources }}
           resources: {{ toYaml .Values.controller.admissionWebhooks.createSecretJob.resources | nindent 12 }}
           {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
index 05282150b..b670aa05a 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
@@ -61,8 +61,9 @@ spec:
           {{- if .Values.controller.admissionWebhooks.extraEnvs }}
             {{- toYaml .Values.controller.admissionWebhooks.extraEnvs | nindent 12 }}
           {{- end }}
-          securityContext:
-            allowPrivilegeEscalation: false
+          {{- if .Values.controller.admissionWebhooks.patchWebhookJob.securityContext }}
+          securityContext: {{ toYaml .Values.controller.admissionWebhooks.patchWebhookJob.securityContext | nindent 12 }}
+          {{- end }}
           {{- if .Values.controller.admissionWebhooks.patchWebhookJob.resources }}
           resources: {{ toYaml .Values.controller.admissionWebhooks.patchWebhookJob.resources | nindent 12 }}
           {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 622244a11..9092a5de9 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -627,6 +627,8 @@ controller:
       type: ClusterIP
 
     createSecretJob:
+      securityContext:
+        allowPrivilegeEscalation: false
       resources: {}
         # limits:
         #   cpu: 10m
@@ -636,6 +638,8 @@ controller:
         #   memory: 20Mi
 
     patchWebhookJob:
+      securityContext:
+        allowPrivilegeEscalation: false
       resources: {}
 
     patch:

From 2488fb00649f36cc0c6d0eadbb3d38dccd12f7be Mon Sep 17 00:00:00 2001
From: Jaen <github-primary@jaens.dev>
Date: Tue, 25 Oct 2022 15:06:35 -0700
Subject: [PATCH 0451/1641] Fix Markdown header level (#9210)

Cloud providers use level 4 headers.
---
 docs/deploy/index.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 1ae4f22de..3f99c7a44 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -337,7 +337,7 @@ A
 [complete list of available annotations for Oracle Cloud Infrastructure](https://github.com/oracle/oci-cloud-controller-manager/blob/master/docs/load-balancer-annotations.md) 
 can be found in the [OCI Cloud Controller Manager](https://github.com/oracle/oci-cloud-controller-manager) documentation.
 
-### OVHcloud
+#### OVHcloud
 
 ```console
 helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx

From bf8362cb500b413d04d04b1312df1914b4b193f8 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Sat, 29 Oct 2022 07:40:39 +0800
Subject: [PATCH 0452/1641] chore: bump NGINX version v1.21.4 (#8889)

* chore: bump NGINX version v1.21.4

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* chore: bump all others

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* apply all patches

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* fix files hash

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* fix ajp module

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 images/nginx/rootfs/build.sh                  | 78 ++++++++++---------
 .../patches/nginx-1.19.9-no_Werror.patch      | 36 ---------
 ...> nginx-1.21.4-balancer_status_code.patch} |  0
 ... => nginx-1.21.4-cache_manager_exit.patch} |  0
 ... nginx-1.21.4-delayed_posted_events.patch} |  0
 ...patch => nginx-1.21.4-hash_overflow.patch} |  0
 ...ginx-1.21.4-init_cycle_pool_release.patch} | 24 +++---
 ...> nginx-1.21.4-larger_max_error_str.patch} |  4 +-
 .../patches/nginx-1.21.4-no_Werror.patch      | 36 +++++++++
 ...> nginx-1.21.4-proxy_host_port_vars.patch} |  4 +-
 ... nginx-1.21.4-resolver_conf_parsing.patch} |  0
 ...x-1.21.4-reuseport_close_unused_fds.patch} |  0
 ...1.21.4-single_process_graceful_exit.patch} |  0
 ...atch => nginx-1.21.4-socket_cloexec.patch} |  0
 ...h => nginx-1.21.4-ssl_cert_cb_yield.patch} |  0
 ...h => nginx-1.21.4-ssl_sess_cb_yield.patch} |  0
 ...tream_proxy_get_next_upstream_tries.patch} |  0
 ...x-1.21.4-stream_ssl_preread_no_skip.patch} |  0
 ...=> nginx-1.21.4-upstream_pipelining.patch} |  0
 ...ginx-1.21.4-upstream_timeout_fields.patch} |  0
 .../rootfs/patches/patch.2021.resolver.txt    | 23 ------
 21 files changed, 92 insertions(+), 113 deletions(-)
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.19.9-no_Werror.patch
 rename images/nginx/rootfs/patches/{nginx-1.19.9-balancer_status_code.patch => nginx-1.21.4-balancer_status_code.patch} (100%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-cache_manager_exit.patch => nginx-1.21.4-cache_manager_exit.patch} (100%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-delayed_posted_events.patch => nginx-1.21.4-delayed_posted_events.patch} (100%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-hash_overflow.patch => nginx-1.21.4-hash_overflow.patch} (100%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-init_cycle_pool_release.patch => nginx-1.21.4-init_cycle_pool_release.patch} (65%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-larger_max_error_str.patch => nginx-1.21.4-larger_max_error_str.patch} (62%)
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch
 rename images/nginx/rootfs/patches/{nginx-1.19.9-proxy_host_port_vars.patch => nginx-1.21.4-proxy_host_port_vars.patch} (87%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-resolver_conf_parsing.patch => nginx-1.21.4-resolver_conf_parsing.patch} (100%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-reuseport_close_unused_fds.patch => nginx-1.21.4-reuseport_close_unused_fds.patch} (100%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-single_process_graceful_exit.patch => nginx-1.21.4-single_process_graceful_exit.patch} (100%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-socket_cloexec.patch => nginx-1.21.4-socket_cloexec.patch} (100%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-ssl_cert_cb_yield.patch => nginx-1.21.4-ssl_cert_cb_yield.patch} (100%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-ssl_sess_cb_yield.patch => nginx-1.21.4-ssl_sess_cb_yield.patch} (100%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-stream_proxy_get_next_upstream_tries.patch => nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch} (100%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-stream_ssl_preread_no_skip.patch => nginx-1.21.4-stream_ssl_preread_no_skip.patch} (100%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-upstream_pipelining.patch => nginx-1.21.4-upstream_pipelining.patch} (100%)
 rename images/nginx/rootfs/patches/{nginx-1.19.9-upstream_timeout_fields.patch => nginx-1.21.4-upstream_timeout_fields.patch} (100%)
 delete mode 100644 images/nginx/rootfs/patches/patch.2021.resolver.txt

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 75d765e78..cfea7b7c8 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -18,13 +18,13 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
-export NGINX_VERSION=1.19.10
+export NGINX_VERSION=1.21.4
 
 # Check for recent changes: https://github.com/vision5/ngx_devel_kit/compare/v0.3.1...master
 export NDK_VERSION=0.3.1
 
-# Check for recent changes: https://github.com/openresty/set-misc-nginx-module/compare/v0.32...master
-export SETMISC_VERSION=0.32
+# Check for recent changes: https://github.com/openresty/set-misc-nginx-module/compare/v0.33...master
+export SETMISC_VERSION=0.33
 
 # Check for recent changes: https://github.com/openresty/headers-more-nginx-module/compare/v0.33...master
 export MORE_HEADERS_VERSION=0.33
@@ -65,28 +65,30 @@ export MODSECURITY_LIB_VERSION=v3.0.8
 # Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.2...v3.3/master
 export OWASP_MODSECURITY_CRS_VERSION=v3.3.4
 
-# Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.20...master
-export LUA_NGX_VERSION=b721656a9127255003b696b42ccc871c7ec18d59
+# Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.21...master
+export LUA_NGX_VERSION=0.10.21
 
-# Check for recent changes: https://github.com/openresty/stream-lua-nginx-module/compare/v0.0.10...master
-export LUA_STREAM_NGX_VERSION=74f8c8bca5b95cecbf42d4e1a465bc08cd075a9b
+# Check for recent changes: https://github.com/openresty/stream-lua-nginx-module/compare/v0.0.11...master
+export LUA_STREAM_NGX_VERSION=0.0.11
 
-# Check for recent changes: https://github.com/openresty/lua-upstream-nginx-module/compare/v0.07...master
+# Check for recent changes: https://github.com/openresty/lua-upstream-nginx-module/compare/8aa93ead98ba2060d4efd594ae33a35d153589bf...master
 export LUA_UPSTREAM_VERSION=8aa93ead98ba2060d4efd594ae33a35d153589bf
 
-# Check for recent changes: https://github.com/openresty/lua-cjson/compare/2.1.0.8...openresty:master
-export LUA_CJSON_VERSION=4b350c531de3d71008c77ae94e59275b8371b4dc
+# Check for recent changes: https://github.com/openresty/lua-cjson/compare/2.1.0.10...openresty:master
+export LUA_CJSON_VERSION=2.1.0.10
 
 export NGINX_INFLUXDB_VERSION=5b09391cb7b9a889687c0aa67964c06a2d933e8b
 
 # Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/3.3...master
 export GEOIP2_VERSION=a26c6beed77e81553686852dceb6c7fdacc5970d
 
-# Check for recent changes: https://github.com/yaoweibin/nginx_ajp_module/compare/v0.3.0...master
-export NGINX_AJP_VERSION=a964a0bcc6a9f2bfb82a13752d7794a36319ffac
+# Check for recent changes: https://github.com/msva/nginx_ajp_module/compare/fcbb2ccca4901d317ecd7a9dabb3fec9378ff40f...master
+# This is a fork from https://github.com/yaoweibin/nginx_ajp_module
+# Since it has not been updated and is not compatible with NGINX 1.21
+export NGINX_AJP_VERSION=fcbb2ccca4901d317ecd7a9dabb3fec9378ff40f
 
-# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20210510...v2.1-agentzh
-export LUAJIT_VERSION=2.1-20210510
+# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20220411...v2.1-agentzh
+export LUAJIT_VERSION=2.1-20220411
 
 # Check for recent changes: https://github.com/openresty/lua-resty-balancer/compare/v0.04...master
 export LUA_RESTY_BALANCER=0.04
@@ -94,8 +96,8 @@ export LUA_RESTY_BALANCER=0.04
 # Check for recent changes: https://github.com/openresty/lua-resty-lrucache/compare/v0.11...master
 export LUA_RESTY_CACHE=0.11
 
-# Check for recent changes: https://github.com/openresty/lua-resty-core/compare/v0.1.22...master
-export LUA_RESTY_CORE=0.1.22
+# Check for recent changes: https://github.com/openresty/lua-resty-core/compare/v0.1.23...master
+export LUA_RESTY_CORE=0.1.23
 
 # Check for recent changes: https://github.com/cloudflare/lua-resty-cookie/compare/v0.1.0...master
 export LUA_RESTY_COOKIE_VERSION=303e32e512defced053a6484bc0745cf9dc0d39e
@@ -112,17 +114,17 @@ export LUA_RESTY_LOCK=0.08
 # Check for recent changes: https://github.com/openresty/lua-resty-upload/compare/v0.10...master
 export LUA_RESTY_UPLOAD_VERSION=0.10
 
-# Check for recent changes: https://github.com/openresty/lua-resty-string/compare/v0.14...master
-export LUA_RESTY_STRING_VERSION=9ace36f2dde09451c377c839117ade45eb02d460
+# Check for recent changes: https://github.com/openresty/lua-resty-string/compare/v0.15...master
+export LUA_RESTY_STRING_VERSION=0.15
 
 # Check for recent changes: https://github.com/openresty/lua-resty-memcached/compare/v0.16...master
 export LUA_RESTY_MEMCACHED_VERSION=0.16
 
-# Check for recent changes: https://github.com/openresty/lua-resty-redis/compare/v0.29...master
-export LUA_RESTY_REDIS_VERSION=0.29
+# Check for recent changes: https://github.com/openresty/lua-resty-redis/compare/v0.30...master
+export LUA_RESTY_REDIS_VERSION=0.30
 
-# Check for recent changes: https://github.com/api7/lua-resty-ipmatcher/compare/v0.6...master
-export LUA_RESTY_IPMATCHER_VERSION=211e0d2eb8bbb558b79368f89948a0bafdc23654
+# Check for recent changes: https://github.com/api7/lua-resty-ipmatcher/compare/v0.6.1...master
+export LUA_RESTY_IPMATCHER_VERSION=0.6.1
 
 # Check for recent changes: https://github.com/ElvinEfendi/lua-resty-global-throttle/compare/v0.2.0...main
 export LUA_RESTY_GLOBAL_THROTTLE_VERSION=0.2.0
@@ -200,13 +202,13 @@ mkdir --verbose -p "$BUILD_PATH"
 cd "$BUILD_PATH"
 
 # download, verify and extract the source files
-get_src e8d0290ff561986ad7cd6c33307e12e11b137186c4403a6a5ccdb4914c082d88 \
+get_src d1f72f474e71bcaaf465dcc7e6f7b6a4705e4b1ed95c581af31df697551f3bfe \
         "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
 
 get_src 0e971105e210d272a497567fa2e2c256f4e39b845a5ba80d373e26ba1abfbd85 \
         "https://github.com/simpl/ngx_devel_kit/archive/v$NDK_VERSION.tar.gz"
 
-get_src f1ad2459c4ee6a61771aa84f77871f4bfe42943a4aa4c30c62ba3f981f52c201 \
+get_src cd5e2cc834bcfa30149e7511f2b5a2183baf0b70dc091af717a89a64e44a2985 \
         "https://github.com/openresty/set-misc-nginx-module/archive/v$SETMISC_VERSION.tar.gz"
 
 get_src a3dcbab117a9c103bc1ea5200fc00a7b7d2af97ff7fd525f16f8ac2632e30fbf \
@@ -245,11 +247,11 @@ get_src 7d5f3439c8df56046d0564b5857fd8a30296ab1bd6df0f048aed7afb56a0a4c2 \
 get_src 99c47c75c159795c9faf76bbb9fa58e5a50b75286c86565ffcec8514b1c74bf9 \
         "https://github.com/openresty/stream-lua-nginx-module/archive/v$LUA_STREAM_NGX_VERSION.tar.gz"
 else
-get_src 085a9fb2bf9c4466977595a5fe5156d76f3a2d9a2a81be3cacaff2021773393e \
-        "https://github.com/openresty/lua-nginx-module/archive/$LUA_NGX_VERSION.tar.gz"
+get_src 9db756000578efaecb43bea4fc6cf631aaa80988d86ffe5d3afeb9927895ffad \
+        "https://github.com/openresty/lua-nginx-module/archive/v$LUA_NGX_VERSION.tar.gz"
 
-get_src ba38c9f8e4265836ba7f2ac559ddf140693ff2f5ae33ab1e384f51f3992151ab \
-        "https://github.com/openresty/stream-lua-nginx-module/archive/$LUA_STREAM_NGX_VERSION.tar.gz"
+get_src c7924f28cb014a99636e747ea907724dd55f60e180cb92cde6e8ed48d2278f27 \
+        "https://github.com/openresty/stream-lua-nginx-module/archive/v$LUA_STREAM_NGX_VERSION.tar.gz"
 
 fi
 
@@ -260,7 +262,7 @@ if [[ ${ARCH} == "s390x" ]]; then
 get_src 266ed1abb70a9806d97cb958537a44b67db6afb33d3b32292a2d68a2acedea75 \
         "https://github.com/openresty/luajit2/archive/$LUAJIT_VERSION.tar.gz"
 else
-get_src 1ee6dad809a5bb22efb45e6dac767f7ce544ad652d353a93d7f26b605f69fe3f \
+get_src d3f2c870f8f88477b01726b32accab30f6e5d57ae59c5ec87374ff73d0794316 \
         "https://github.com/openresty/luajit2/archive/v$LUAJIT_VERSION.tar.gz"
 fi
 
@@ -273,14 +275,14 @@ get_src 1af5a5632dc8b00ae103d51b7bf225de3a7f0df82f5c6a401996c080106e600e \
 get_src 4c1933434572226942c65b2f2b26c8a536ab76aa771a3c7f6c2629faa764976b \
         "https://github.com/leev/ngx_http_geoip2_module/archive/$GEOIP2_VERSION.tar.gz"
 
-get_src 94d1512bf0e5e6ffa4eca0489db1279d51f45386fffcb8a1d2d9f7fe93518465 \
-        "https://github.com/yaoweibin/nginx_ajp_module/archive/$NGINX_AJP_VERSION.tar.gz"
+get_src 778fcca851bd69dabfb382dc827d2ee07662f7eca36b5e66e67d5512bad75ef8 \
+        "https://github.com/msva/nginx_ajp_module/archive/$NGINX_AJP_VERSION.tar.gz"
 
 get_src 5d16e623d17d4f42cc64ea9cfb69ca960d313e12f5d828f785dd227cc483fcbd \
         "https://github.com/openresty/lua-resty-upload/archive/v$LUA_RESTY_UPLOAD_VERSION.tar.gz"
 
-get_src 462c6b38792bab4ca8212bdfd3f2e38f6883bb45c8fb8a03474ea813e0fab853 \
-        "https://github.com/openresty/lua-resty-string/archive/$LUA_RESTY_STRING_VERSION.tar.gz"
+get_src bdbf271003d95aa91cab0a92f24dca129e99b33f79c13ebfcdbbcbb558129491 \
+        "https://github.com/openresty/lua-resty-string/archive/v$LUA_RESTY_STRING_VERSION.tar.gz"
 
 get_src 16d72ed133f0c6df376a327386c3ef4e9406cf51003a700737c3805770ade7c5 \
         "https://github.com/openresty/lua-resty-balancer/archive/v$LUA_RESTY_BALANCER.tar.gz"
@@ -289,11 +291,11 @@ if [[ ${ARCH} == "s390x" ]]; then
 get_src 8f5f76d2689a3f6b0782f0a009c56a65e4c7a4382be86422c9b3549fe95b0dc4 \
         "https://github.com/openresty/lua-resty-core/archive/v$LUA_RESTY_CORE.tar.gz"
 else
-get_src 4d971f711fad48c097070457c128ca36053835d8a3ba25a937e9991547d55d4d \
+get_src efd6b51520429e64b1bcc10f477d370ebed1631c190f7e4dc270d959a743ad7d \
         "https://github.com/openresty/lua-resty-core/archive/v$LUA_RESTY_CORE.tar.gz"
 fi
 
-get_src 8d602af2669fb386931760916a39f6c9034f2363c4965f215042c086b8215238 \
+get_src 0c551d6898f89f876e48730f9b55790d0ba07d5bc0aa6c76153277f63c19489f \
         "https://github.com/openresty/lua-cjson/archive/$LUA_CJSON_VERSION.tar.gz"
 
 get_src 5ed48c36231e2622b001308622d46a0077525ac2f751e8cc0c9905914254baa4 \
@@ -314,11 +316,11 @@ get_src 9fcb6db95bc37b6fce77d3b3dc740d593f9d90dce0369b405eb04844d56ac43f \
 get_src 42893da0e3de4ec180c9bf02f82608d78787290a70c5644b538f29d243147396 \
         "https://github.com/openresty/lua-resty-memcached/archive/v$LUA_RESTY_MEMCACHED_VERSION.tar.gz"
 
-get_src 3f602af507aacd1f7aaeddfe7b77627fcde095fe9f115cb9d6ad8de2a52520e1 \
+get_src c15aed1a01c88a3a6387d9af67a957dff670357f5fdb4ee182beb44635eef3f1 \
         "https://github.com/openresty/lua-resty-redis/archive/v$LUA_RESTY_REDIS_VERSION.tar.gz"
 
-get_src b8dbd502751140993a852381bcd8e98a402454596bd91838c1e51268d42db261 \
-        "https://github.com/api7/lua-resty-ipmatcher/archive/$LUA_RESTY_IPMATCHER_VERSION.tar.gz"
+get_src efb767487ea3f6031577b9b224467ddbda2ad51a41c5867a47582d4ad85d609e \
+        "https://github.com/api7/lua-resty-ipmatcher/archive/v$LUA_RESTY_IPMATCHER_VERSION.tar.gz"
 
 get_src 0fb790e394510e73fdba1492e576aaec0b8ee9ef08e3e821ce253a07719cf7ea \
         "https://github.com/ElvinEfendi/lua-resty-global-throttle/archive/v$LUA_RESTY_GLOBAL_THROTTLE_VERSION.tar.gz"
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-no_Werror.patch b/images/nginx/rootfs/patches/nginx-1.19.9-no_Werror.patch
deleted file mode 100644
index 7bb0ac902..000000000
--- a/images/nginx/rootfs/patches/nginx-1.19.9-no_Werror.patch
+++ /dev/null
@@ -1,36 +0,0 @@
-diff -urp nginx-1.19.9/auto/cc/clang nginx-1.19.9-patched/auto/cc/clang
---- nginx-1.19.9/auto/cc/clang	2014-03-04 03:39:24.000000000 -0800
-+++ nginx-1.19.9-patched/auto/cc/clang	2014-03-13 20:54:26.241413360 -0700
-@@ -89,7 +89,7 @@ CFLAGS="$CFLAGS -Wconditional-uninitiali
- CFLAGS="$CFLAGS -Wno-unused-parameter"
- 
- # stop on warning
--CFLAGS="$CFLAGS -Werror"
-+#CFLAGS="$CFLAGS -Werror"
- 
- # debug
- CFLAGS="$CFLAGS -g"
-diff -urp nginx-1.19.9/auto/cc/gcc nginx-1.19.9-patched/auto/cc/gcc
---- nginx-1.19.9/auto/cc/gcc	2014-03-04 03:39:24.000000000 -0800
-+++ nginx-1.19.9-patched/auto/cc/gcc	2014-03-13 20:54:13.301355329 -0700
-@@ -168,7 +168,7 @@ esac
- 
- 
- # stop on warning
--CFLAGS="$CFLAGS -Werror"
-+#CFLAGS="$CFLAGS -Werror"
- 
- # debug
- CFLAGS="$CFLAGS -g"
-diff -urp nginx-1.19.9/auto/cc/icc nginx-1.19.9-patched/auto/cc/icc
---- nginx-1.19.9/auto/cc/icc	2014-03-04 03:39:24.000000000 -0800
-+++ nginx-1.19.9-patched/auto/cc/icc	2014-03-13 20:54:13.301355329 -0700
-@@ -115,7 +115,7 @@ case "$NGX_ICC_VER" in
- esac
- 
- # stop on warning
--CFLAGS="$CFLAGS -Werror"
-+#CFLAGS="$CFLAGS -Werror"
- 
- # debug
- CFLAGS="$CFLAGS -g"
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-balancer_status_code.patch b/images/nginx/rootfs/patches/nginx-1.21.4-balancer_status_code.patch
similarity index 100%
rename from images/nginx/rootfs/patches/nginx-1.19.9-balancer_status_code.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-balancer_status_code.patch
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-cache_manager_exit.patch b/images/nginx/rootfs/patches/nginx-1.21.4-cache_manager_exit.patch
similarity index 100%
rename from images/nginx/rootfs/patches/nginx-1.19.9-cache_manager_exit.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-cache_manager_exit.patch
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-delayed_posted_events.patch b/images/nginx/rootfs/patches/nginx-1.21.4-delayed_posted_events.patch
similarity index 100%
rename from images/nginx/rootfs/patches/nginx-1.19.9-delayed_posted_events.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-delayed_posted_events.patch
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-hash_overflow.patch b/images/nginx/rootfs/patches/nginx-1.21.4-hash_overflow.patch
similarity index 100%
rename from images/nginx/rootfs/patches/nginx-1.19.9-hash_overflow.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-hash_overflow.patch
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-init_cycle_pool_release.patch b/images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch
similarity index 65%
rename from images/nginx/rootfs/patches/nginx-1.19.9-init_cycle_pool_release.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch
index aa2df4660..9cfa4f7cb 100644
--- a/images/nginx/rootfs/patches/nginx-1.19.9-init_cycle_pool_release.patch
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch
@@ -1,6 +1,6 @@
-diff -rup nginx-1.19.9/src/core/nginx.c nginx-1.19.9-patched/src/core/nginx.c
---- nginx-1.19.9/src/core/nginx.c	2017-12-17 00:00:38.136470108 -0800
-+++ nginx-1.19.9-patched/src/core/nginx.c	2017-12-16 23:59:51.680958322 -0800
+diff -rup nginx-1.21.4/src/core/nginx.c nginx-1.21.4-patched/src/core/nginx.c
+--- nginx-1.21.4/src/core/nginx.c	2017-12-17 00:00:38.136470108 -0800
++++ nginx-1.21.4-patched/src/core/nginx.c	2017-12-16 23:59:51.680958322 -0800
 @@ -186,6 +186,7 @@ static u_char      *ngx_prefix;
  static u_char      *ngx_conf_file;
  static u_char      *ngx_conf_params;
@@ -18,9 +18,9 @@ diff -rup nginx-1.19.9/src/core/nginx.c nginx-1.19.9-patched/src/core/nginx.c
      if (ngx_save_argv(&init_cycle, argc, argv) != NGX_OK) {
          return 1;
      }
-diff -rup nginx-1.19.9/src/core/ngx_core.h nginx-1.19.9-patched/src/core/ngx_core.h
---- nginx-1.19.9/src/core/ngx_core.h	2017-10-10 08:22:51.000000000 -0700
-+++ nginx-1.19.9-patched/src/core/ngx_core.h	2017-12-16 23:59:51.679958370 -0800
+diff -rup nginx-1.21.4/src/core/ngx_core.h nginx-1.21.4-patched/src/core/ngx_core.h
+--- nginx-1.21.4/src/core/ngx_core.h	2017-10-10 08:22:51.000000000 -0700
++++ nginx-1.21.4-patched/src/core/ngx_core.h	2017-12-16 23:59:51.679958370 -0800
 @@ -108,4 +108,6 @@ void ngx_cpuinfo(void);
  #define NGX_DISABLE_SYMLINKS_NOTOWNER   2
  #endif
@@ -28,9 +28,9 @@ diff -rup nginx-1.19.9/src/core/ngx_core.h nginx-1.19.9-patched/src/core/ngx_cor
 +extern ngx_pool_t        *saved_init_cycle_pool;
 +
  #endif /* _NGX_CORE_H_INCLUDED_ */
-diff -rup nginx-1.19.9/src/core/ngx_cycle.c nginx-1.19.9-patched/src/core/ngx_cycle.c
---- nginx-1.19.9/src/core/ngx_cycle.c	2017-10-10 08:22:51.000000000 -0700
-+++ nginx-1.19.9-patched/src/core/ngx_cycle.c	2017-12-16 23:59:51.678958419 -0800
+diff -rup nginx-1.21.4/src/core/ngx_cycle.c nginx-1.21.4-patched/src/core/ngx_cycle.c
+--- nginx-1.21.4/src/core/ngx_cycle.c	2017-10-10 08:22:51.000000000 -0700
++++ nginx-1.21.4-patched/src/core/ngx_cycle.c	2017-12-16 23:59:51.678958419 -0800
 @@ -748,6 +748,10 @@ old_shm_zone_done:
  
      if (ngx_process == NGX_PROCESS_MASTER || ngx_is_init_cycle(old_cycle)) {
@@ -42,9 +42,9 @@ diff -rup nginx-1.19.9/src/core/ngx_cycle.c nginx-1.19.9-patched/src/core/ngx_cy
          ngx_destroy_pool(old_cycle->pool);
          cycle->old_cycle = NULL;
  
-diff -rup nginx-1.19.9/src/os/unix/ngx_process_cycle.c nginx-1.19.9-patched/src/os/unix/ngx_process_cycle.c
---- nginx-1.19.9/src/os/unix/ngx_process_cycle.c	2017-12-17 00:00:38.142469762 -0800
-+++ nginx-1.19.9-patched/src/os/unix/ngx_process_cycle.c	2017-12-16 23:59:51.691957791 -0800
+diff -rup nginx-1.21.4/src/os/unix/ngx_process_cycle.c nginx-1.21.4-patched/src/os/unix/ngx_process_cycle.c
+--- nginx-1.21.4/src/os/unix/ngx_process_cycle.c	2017-12-17 00:00:38.142469762 -0800
++++ nginx-1.21.4-patched/src/os/unix/ngx_process_cycle.c	2017-12-16 23:59:51.691957791 -0800
 @@ -687,6 +692,11 @@ ngx_master_process_exit(ngx_cycle_t *cyc
      ngx_exit_cycle.files_n = ngx_cycle->files_n;
      ngx_cycle = &ngx_exit_cycle;
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-larger_max_error_str.patch b/images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch
similarity index 62%
rename from images/nginx/rootfs/patches/nginx-1.19.9-larger_max_error_str.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch
index 0628d3abb..c89032c9f 100644
--- a/images/nginx/rootfs/patches/nginx-1.19.9-larger_max_error_str.patch
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch
@@ -1,5 +1,5 @@
---- nginx-1.19.9/src/core/ngx_log.h	2013-10-08 05:07:14.000000000 -0700
-+++ nginx-1.19.9-patched/src/core/ngx_log.h	2013-12-05 20:35:35.996236720 -0800
+--- nginx-1.21.4/src/core/ngx_log.h	2013-10-08 05:07:14.000000000 -0700
++++ nginx-1.21.4-patched/src/core/ngx_log.h	2013-12-05 20:35:35.996236720 -0800
 @@ -64,7 +64,9 @@ struct ngx_log_s {
  };
  
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch b/images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch
new file mode 100644
index 000000000..f4d6fd0e5
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch
@@ -0,0 +1,36 @@
+diff -urp nginx-1.21.4/auto/cc/clang nginx-1.21.4-patched/auto/cc/clang
+--- nginx-1.21.4/auto/cc/clang	2014-03-04 03:39:24.000000000 -0800
++++ nginx-1.21.4-patched/auto/cc/clang	2014-03-13 20:54:26.241413360 -0700
+@@ -89,7 +89,7 @@ CFLAGS="$CFLAGS -Wconditional-uninitiali
+ CFLAGS="$CFLAGS -Wno-unused-parameter"
+ 
+ # stop on warning
+-CFLAGS="$CFLAGS -Werror"
++#CFLAGS="$CFLAGS -Werror"
+ 
+ # debug
+ CFLAGS="$CFLAGS -g"
+diff -urp nginx-1.21.4/auto/cc/gcc nginx-1.21.4-patched/auto/cc/gcc
+--- nginx-1.21.4/auto/cc/gcc	2014-03-04 03:39:24.000000000 -0800
++++ nginx-1.21.4-patched/auto/cc/gcc	2014-03-13 20:54:13.301355329 -0700
+@@ -168,7 +168,7 @@ esac
+ 
+ 
+ # stop on warning
+-CFLAGS="$CFLAGS -Werror"
++#CFLAGS="$CFLAGS -Werror"
+ 
+ # debug
+ CFLAGS="$CFLAGS -g"
+diff -urp nginx-1.21.4/auto/cc/icc nginx-1.21.4-patched/auto/cc/icc
+--- nginx-1.21.4/auto/cc/icc	2014-03-04 03:39:24.000000000 -0800
++++ nginx-1.21.4-patched/auto/cc/icc	2014-03-13 20:54:13.301355329 -0700
+@@ -115,7 +115,7 @@ case "$NGX_ICC_VER" in
+ esac
+ 
+ # stop on warning
+-CFLAGS="$CFLAGS -Werror"
++#CFLAGS="$CFLAGS -Werror"
+ 
+ # debug
+ CFLAGS="$CFLAGS -g"
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-proxy_host_port_vars.patch b/images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch
similarity index 87%
rename from images/nginx/rootfs/patches/nginx-1.19.9-proxy_host_port_vars.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch
index 25282bda3..01cebd65a 100644
--- a/images/nginx/rootfs/patches/nginx-1.19.9-proxy_host_port_vars.patch
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch
@@ -1,5 +1,5 @@
---- nginx-1.19.9/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
-+++ nginx-1.19.9-patched/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
+--- nginx-1.21.4/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
++++ nginx-1.21.4-patched/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
 @@ -793,13 +793,13 @@ static ngx_keyval_t  ngx_http_proxy_cach
  static ngx_http_variable_t  ngx_http_proxy_vars[] = {
  
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-resolver_conf_parsing.patch b/images/nginx/rootfs/patches/nginx-1.21.4-resolver_conf_parsing.patch
similarity index 100%
rename from images/nginx/rootfs/patches/nginx-1.19.9-resolver_conf_parsing.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-resolver_conf_parsing.patch
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-reuseport_close_unused_fds.patch b/images/nginx/rootfs/patches/nginx-1.21.4-reuseport_close_unused_fds.patch
similarity index 100%
rename from images/nginx/rootfs/patches/nginx-1.19.9-reuseport_close_unused_fds.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-reuseport_close_unused_fds.patch
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-single_process_graceful_exit.patch b/images/nginx/rootfs/patches/nginx-1.21.4-single_process_graceful_exit.patch
similarity index 100%
rename from images/nginx/rootfs/patches/nginx-1.19.9-single_process_graceful_exit.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-single_process_graceful_exit.patch
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-socket_cloexec.patch b/images/nginx/rootfs/patches/nginx-1.21.4-socket_cloexec.patch
similarity index 100%
rename from images/nginx/rootfs/patches/nginx-1.19.9-socket_cloexec.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-socket_cloexec.patch
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-ssl_cert_cb_yield.patch b/images/nginx/rootfs/patches/nginx-1.21.4-ssl_cert_cb_yield.patch
similarity index 100%
rename from images/nginx/rootfs/patches/nginx-1.19.9-ssl_cert_cb_yield.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-ssl_cert_cb_yield.patch
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-ssl_sess_cb_yield.patch b/images/nginx/rootfs/patches/nginx-1.21.4-ssl_sess_cb_yield.patch
similarity index 100%
rename from images/nginx/rootfs/patches/nginx-1.19.9-ssl_sess_cb_yield.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-ssl_sess_cb_yield.patch
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-stream_proxy_get_next_upstream_tries.patch b/images/nginx/rootfs/patches/nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch
similarity index 100%
rename from images/nginx/rootfs/patches/nginx-1.19.9-stream_proxy_get_next_upstream_tries.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-stream_ssl_preread_no_skip.patch b/images/nginx/rootfs/patches/nginx-1.21.4-stream_ssl_preread_no_skip.patch
similarity index 100%
rename from images/nginx/rootfs/patches/nginx-1.19.9-stream_ssl_preread_no_skip.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-stream_ssl_preread_no_skip.patch
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-upstream_pipelining.patch b/images/nginx/rootfs/patches/nginx-1.21.4-upstream_pipelining.patch
similarity index 100%
rename from images/nginx/rootfs/patches/nginx-1.19.9-upstream_pipelining.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-upstream_pipelining.patch
diff --git a/images/nginx/rootfs/patches/nginx-1.19.9-upstream_timeout_fields.patch b/images/nginx/rootfs/patches/nginx-1.21.4-upstream_timeout_fields.patch
similarity index 100%
rename from images/nginx/rootfs/patches/nginx-1.19.9-upstream_timeout_fields.patch
rename to images/nginx/rootfs/patches/nginx-1.21.4-upstream_timeout_fields.patch
diff --git a/images/nginx/rootfs/patches/patch.2021.resolver.txt b/images/nginx/rootfs/patches/patch.2021.resolver.txt
deleted file mode 100644
index 6c895e61c..000000000
--- a/images/nginx/rootfs/patches/patch.2021.resolver.txt
+++ /dev/null
@@ -1,23 +0,0 @@
-diff --git src/core/ngx_resolver.c src/core/ngx_resolver.c
---- src/core/ngx_resolver.c
-+++ src/core/ngx_resolver.c
-@@ -4008,15 +4008,15 @@ done:
-             n = *src++;
- 
-         } else {
-+            if (dst != name->data) {
-+                *dst++ = '.';
-+            }
-+
-             ngx_strlow(dst, src, n);
-             dst += n;
-             src += n;
- 
-             n = *src++;
--
--            if (n != 0) {
--                *dst++ = '.';
--            }
-         }
- 
-         if (n == 0) {

From 0b5e0685112e4537ee20a0bdbba451e9f6158aa3 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Mon, 31 Oct 2022 22:10:45 +0800
Subject: [PATCH 0453/1641] chore: update NGINX to 1.21.6 (#9231)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 images/nginx/rootfs/build.sh | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index cfea7b7c8..5a6394fd9 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -18,7 +18,7 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
-export NGINX_VERSION=1.21.4
+export NGINX_VERSION=1.21.6
 
 # Check for recent changes: https://github.com/vision5/ngx_devel_kit/compare/v0.3.1...master
 export NDK_VERSION=0.3.1
@@ -202,7 +202,7 @@ mkdir --verbose -p "$BUILD_PATH"
 cd "$BUILD_PATH"
 
 # download, verify and extract the source files
-get_src d1f72f474e71bcaaf465dcc7e6f7b6a4705e4b1ed95c581af31df697551f3bfe \
+get_src 66dc7081488811e9f925719e34d1b4504c2801c81dee2920e5452a86b11405ae \
         "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
 
 get_src 0e971105e210d272a497567fa2e2c256f4e39b845a5ba80d373e26ba1abfbd85 \

From 8c698778a3c0a14a3c2579a451cb5aede294d8c7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 31 Oct 2022 09:24:45 -0700
Subject: [PATCH 0454/1641] Bump actions/dependency-review-action from 2.5.0 to
 2.5.1 (#9237)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 2.5.0 to 2.5.1.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/fd675ced9c17f1393071e1a2e685ab527e585a0c...0efb1d1d84fc9633afcdaad14c485cbbc90ef46c)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 18ab95a6a..85c91d664 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3.0.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@fd675ced9c17f1393071e1a2e685ab527e585a0c #v2.0.2
+        uses: actions/dependency-review-action@0efb1d1d84fc9633afcdaad14c485cbbc90ef46c #v2.0.2

From 709e984ff673664996fd67b12ec195bdbfa3896c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 4 Nov 2022 09:52:15 -0700
Subject: [PATCH 0455/1641] Bump github/codeql-action from 2.1.28 to 2.1.29
 (#9236)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.28 to 2.1.29.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/cc7986c02bac29104a72998e67239bb5ee2ee110...ec3cf9c605b848da5f1e41e8452719eb1ccfb9a6)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 762634db0..90fb2d3d4 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@cc7986c02bac29104a72998e67239bb5ee2ee110 # v2.1.14
+        uses: github/codeql-action/upload-sarif@ec3cf9c605b848da5f1e41e8452719eb1ccfb9a6 # v2.1.14
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 34c4f1901..004370a90 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@cc7986c02bac29104a72998e67239bb5ee2ee110
+      uses: github/codeql-action/upload-sarif@ec3cf9c605b848da5f1e41e8452719eb1ccfb9a6
       with:
         token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository

From 12c60288ffc829f22ba23ea53bbb9660e91fd85d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 4 Nov 2022 09:54:14 -0700
Subject: [PATCH 0456/1641] Bump github.com/spf13/cobra from 1.6.0 to 1.6.1
 (#9233)

Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.6.0 to 1.6.1.
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](https://github.com/spf13/cobra/compare/v1.6.0...v1.6.1)

---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index a1b307b36..58c4c58de 100644
--- a/go.mod
+++ b/go.mod
@@ -20,7 +20,7 @@ require (
 	github.com/prometheus/client_golang v1.13.0
 	github.com/prometheus/client_model v0.3.0
 	github.com/prometheus/common v0.37.0
-	github.com/spf13/cobra v1.6.0
+	github.com/spf13/cobra v1.6.1
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.1
 	github.com/yudai/gojsondiff v1.0.0
diff --git a/go.sum b/go.sum
index 529555a3a..30d65e6b4 100644
--- a/go.sum
+++ b/go.sum
@@ -550,8 +550,8 @@ github.com/spf13/cast v1.3.0/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkU
 github.com/spf13/cast v1.3.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
 github.com/spf13/cobra v1.1.3/go.mod h1:pGADOWyqRD/YMrPZigI/zbliZ2wVD/23d+is3pSWzOo=
 github.com/spf13/cobra v1.2.1/go.mod h1:ExllRjgxM/piMAM+3tAZvg8fsklGAf3tPfi+i8t68Nk=
-github.com/spf13/cobra v1.6.0 h1:42a0n6jwCot1pUmomAp4T7DeMD+20LFv4Q54pxLf2LI=
-github.com/spf13/cobra v1.6.0/go.mod h1:IOw/AERYS7UzyrGinqmz6HLUo219MORXGxhbaJUqzrY=
+github.com/spf13/cobra v1.6.1 h1:o94oiPyS4KD1mPy2fmcYYHHfCxLqYjJOhGsCHFZtEzA=
+github.com/spf13/cobra v1.6.1/go.mod h1:IOw/AERYS7UzyrGinqmz6HLUo219MORXGxhbaJUqzrY=
 github.com/spf13/jwalterweatherman v1.0.0/go.mod h1:cQK4TGJAtQXfYWX+Ddv3mKDzgVb68N+wFjFa4jdeBTo=
 github.com/spf13/jwalterweatherman v1.1.0/go.mod h1:aNWZUN0dPAAO/Ljvb5BEdw96iTZ0EXowPYD95IqWIGo=
 github.com/spf13/pflag v1.0.3/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=

From cf4fb7d8120b770abac78d28d90971266fa83449 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 4 Nov 2022 09:56:14 -0700
Subject: [PATCH 0457/1641] Bump actions/upload-artifact from 3.1.0 to 3.1.1
 (#9234)

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/3cea5372237819ed00197afe530f5a7ea3e805c8...83fd05a356d7e2593de66fc9913b3002723633cb)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml        | 2 +-
 .github/workflows/scorecards.yml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 25cc509f0..7c61d2e4a 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -114,7 +114,7 @@ jobs:
             | pigz > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # v3.1.0
+        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # v3.1.1
         with:
           name: docker.tar.gz
           path: docker.tar.gz
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 90fb2d3d4..fae11715f 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -49,7 +49,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # v3.0.0
+        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # v3.0.0
         with:
           name: SARIF file
           path: results.sarif

From 3c32413e30703383ddf32bbe9a1e531d4169e6d4 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 4 Nov 2022 09:58:14 -0700
Subject: [PATCH 0458/1641] Bump azure/setup-helm from 3.3 to 3.4 (#9235)

Bumps [azure/setup-helm](https://github.com/azure/setup-helm) from 3.3 to 3.4.
- [Release notes](https://github.com/azure/setup-helm/releases)
- [Commits](https://github.com/azure/setup-helm/compare/b5b231a831f96336bbfeccc1329990f0005c5bb1...f382f75448129b3be48f8121b9857be18d815a82)

---
updated-dependencies:
- dependency-name: azure/setup-helm
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 7c61d2e4a..3410b326b 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -239,7 +239,7 @@ jobs:
           failOnError: false
 
       - name: Prepare cluster for testing
-        uses: azure/setup-helm@b5b231a831f96336bbfeccc1329990f0005c5bb1 #v2.1
+        uses: azure/setup-helm@f382f75448129b3be48f8121b9857be18d815a82 #v2.1
         with:
           version: 'v3.8.0'
         id: local-path
@@ -296,7 +296,7 @@ jobs:
           failOnError: false
 
       - name: Prepare cluster for testing
-        uses: azure/setup-helm@b5b231a831f96336bbfeccc1329990f0005c5bb1 #v2.1
+        uses: azure/setup-helm@f382f75448129b3be48f8121b9857be18d815a82 #v2.1
         with:
           version: 'v3.8.0'
         id: local-path

From 490ecffc5242be8c54f8735d4af4d4ccad39acb7 Mon Sep 17 00:00:00 2001
From: Tomas Hulata <tombo@sysart.tech>
Date: Sat, 5 Nov 2022 22:22:15 +0100
Subject: [PATCH 0459/1641] fix svc long name (#9245)

Signed-off-by: tombokombo <tombo@sysart.tech>

Signed-off-by: tombokombo <tombo@sysart.tech>
---
 .../ingress/controller/store/endpointslice.go | 15 ++++-
 .../controller/store/endpointslice_test.go    | 39 +++++++++++++
 test/e2e/e2e.go                               |  1 +
 test/e2e/endpointslices/longname.go           | 55 +++++++++++++++++++
 test/e2e/framework/deployment.go              |  6 ++
 5 files changed, 115 insertions(+), 1 deletion(-)
 create mode 100644 test/e2e/endpointslices/longname.go

diff --git a/internal/ingress/controller/store/endpointslice.go b/internal/ingress/controller/store/endpointslice.go
index fdd7374e9..78d088695 100644
--- a/internal/ingress/controller/store/endpointslice.go
+++ b/internal/ingress/controller/store/endpointslice.go
@@ -21,6 +21,7 @@ import (
 	"strings"
 
 	discoveryv1 "k8s.io/api/discovery/v1"
+	apiNames "k8s.io/apiserver/pkg/storage/names"
 	"k8s.io/client-go/tools/cache"
 )
 
@@ -32,9 +33,21 @@ type EndpointSliceLister struct {
 // MatchByKey returns the EndpointsSlices of the Service matching key in the local Endpoint Store.
 func (s *EndpointSliceLister) MatchByKey(key string) ([]*discoveryv1.EndpointSlice, error) {
 	var eps []*discoveryv1.EndpointSlice
+	keyNsLen := strings.Index(key, "/")
+	if keyNsLen < -1 {
+		keyNsLen = 0
+	} else {
+		// count '/' char
+		keyNsLen += 1
+	}
 	// filter endpointSlices owned by svc
 	for _, listKey := range s.ListKeys() {
-		if !strings.HasPrefix(listKey, key) {
+		if len(key) < (apiNames.MaxGeneratedNameLength+keyNsLen) && !strings.HasPrefix(listKey, key) {
+			continue
+		}
+		// generated endpointslices names has truncated svc name as prefix when svc name is too long, we compare only non truncated part
+		// https://github.com/kubernetes/ingress-nginx/issues/9240
+		if len(key) >= (apiNames.MaxGeneratedNameLength+keyNsLen) && !strings.HasPrefix(listKey, key[:apiNames.MaxGeneratedNameLength+keyNsLen-1]) {
 			continue
 		}
 		epss, exists, err := s.GetByKey(listKey)
diff --git a/internal/ingress/controller/store/endpointslice_test.go b/internal/ingress/controller/store/endpointslice_test.go
index fdc51c0e4..e12a98c2f 100644
--- a/internal/ingress/controller/store/endpointslice_test.go
+++ b/internal/ingress/controller/store/endpointslice_test.go
@@ -17,6 +17,7 @@ limitations under the License.
 package store
 
 import (
+	"fmt"
 	"testing"
 
 	discoveryv1 "k8s.io/api/discovery/v1"
@@ -91,4 +92,42 @@ func TestEndpointSliceLister(t *testing.T) {
 			t.Errorf("expected %v, error, got %v", endpointSlice.GetName(), eps[0].GetName())
 		}
 	})
+	t.Run("svc long name", func(t *testing.T) {
+		el := newEndpointSliceLister(t)
+		ns := "namespace"
+		ns2 := "another-ns"
+		svcName := "test-backend-http-test-http-test-http-test-http-test-http-truncated"
+		svcName2 := "another-long-svc-name-for-test-inhttp-test-http-test-http-truncated"
+		key := fmt.Sprintf("%s/%s", ns, svcName)
+		endpointSlice := &discoveryv1.EndpointSlice{
+			ObjectMeta: metav1.ObjectMeta{
+				Namespace: ns,
+				Name:      "test-backend-http-test-http-test-http-test-http-test-http-bar88",
+				Labels: map[string]string{
+					discoveryv1.LabelServiceName: svcName,
+				},
+			},
+		}
+		el.Add(endpointSlice)
+		endpointSlice2 := &discoveryv1.EndpointSlice{
+			ObjectMeta: metav1.ObjectMeta{
+				Namespace: ns2,
+				Name:      "another-long-svc-name-for-test-inhttp-test-http-test-http-bar88",
+				Labels: map[string]string{
+					discoveryv1.LabelServiceName: svcName2,
+				},
+			},
+		}
+		el.Add(endpointSlice2)
+		eps, err := el.MatchByKey(key)
+		if err != nil {
+			t.Errorf("unexpeted error %v", err)
+		}
+		if len(eps) != 1 {
+			t.Errorf("expected one slice %v, error, got %d slices", endpointSlice, len(eps))
+		}
+		if len(eps) == 1 && eps[0].Labels[discoveryv1.LabelServiceName] != svcName {
+			t.Errorf("expected slice %v, error, got %v slices", endpointSlice, eps[0])
+		}
+	})
 }
diff --git a/test/e2e/e2e.go b/test/e2e/e2e.go
index c7010b977..57b047230 100644
--- a/test/e2e/e2e.go
+++ b/test/e2e/e2e.go
@@ -34,6 +34,7 @@ import (
 	_ "k8s.io/ingress-nginx/test/e2e/annotations/modsecurity"
 	_ "k8s.io/ingress-nginx/test/e2e/dbg"
 	_ "k8s.io/ingress-nginx/test/e2e/defaultbackend"
+	_ "k8s.io/ingress-nginx/test/e2e/endpointslices"
 	_ "k8s.io/ingress-nginx/test/e2e/gracefulshutdown"
 	_ "k8s.io/ingress-nginx/test/e2e/ingress"
 	_ "k8s.io/ingress-nginx/test/e2e/leaks"
diff --git a/test/e2e/endpointslices/longname.go b/test/e2e/endpointslices/longname.go
new file mode 100644
index 000000000..0adb66767
--- /dev/null
+++ b/test/e2e/endpointslices/longname.go
@@ -0,0 +1,55 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package endpointslices
+
+import (
+	"fmt"
+	"net/http"
+	"strings"
+
+	"github.com/onsi/ginkgo/v2"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.IngressNginxDescribe("[Endpointslices] long service name", func() {
+	f := framework.NewDefaultFramework("endpointslices")
+	host := "longsvcname.foo.com"
+	name := "long-name-foobar-foobar-foobar-foobar-foobar-bar-foo-bar-foobuz"
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment(framework.WithName(name))
+	})
+
+	ginkgo.It("should return 200 when service name has max allowed number of characters 63", func() {
+
+		annotations := make(map[string]string)
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, name, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host, func(server string) bool {
+			return strings.Contains(server, fmt.Sprintf("server_name %s", host))
+		})
+
+		ginkgo.By("checking if the service is reached")
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+	})
+})
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index b37060af1..cb6ef9acc 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -67,6 +67,12 @@ func WithDeploymentReplicas(r int) func(*deploymentOptions) {
 	}
 }
 
+func WithName(n string) func(*deploymentOptions) {
+	return func(o *deploymentOptions) {
+		o.name = n
+	}
+}
+
 // NewEchoDeployment creates a new single replica deployment of the echo server image in a particular namespace
 func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
 	options := &deploymentOptions{

From 4bd7e176d81a8a055aeddf678626cce99190b96e Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Sun, 6 Nov 2022 18:36:16 -0500
Subject: [PATCH 0460/1641] update base image of nginx to 1.21.6 (#9257)

* add workflow dispatch and update nginx base

Signed-off-by: James Strong <strong.james.e@gmail.com>

* e2e were failing, added a go mod tidy

Signed-off-by: James Strong <strong.james.e@gmail.com>

* e2e were failing, added a go mod tidy

Signed-off-by: James Strong <strong.james.e@gmail.com>

* push mod and sum from main

Signed-off-by: James Strong <strong.james.e@gmail.com>

* Update NGINX_BASE

Co-authored-by: Jintao Zhang <tao12345666333@163.com>

Signed-off-by: James Strong <strong.james.e@gmail.com>
Co-authored-by: Jintao Zhang <tao12345666333@163.com>
---
 .github/workflows/ci.yaml | 15 ++++++++++++---
 NGINX_BASE                |  2 +-
 2 files changed, 13 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 3410b326b..695799991 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -9,6 +9,13 @@ on:
     branches:
       - main
 
+  workflow_dispatch:
+    inputs:
+      run_e2e:
+        description: 'Force e2e to run'
+        required: true
+        type: boolean
+
 permissions:
   contents: read
 
@@ -40,9 +47,11 @@ jobs:
               - 'rootfs/**/*'
               - 'TAG'
               - 'test/e2e/**/*'
+              - 'NGINX_BASE'
             charts:
               - 'charts/ingress-nginx/Chart.yaml'
               - 'charts/ingress-nginx/**/*'
+              - 'NGINX_BASE'
 
 
   security:
@@ -126,7 +135,7 @@ jobs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.charts == 'true')
+      (needs.changes.outputs.charts == 'true') || ${{ inputs.run_e2e }} 
 
     strategy:
       matrix:
@@ -209,7 +218,7 @@ jobs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.go == 'true')
+      (needs.changes.outputs.go == 'true') || ${{ inputs.run_e2e }} 
 
     strategy:
       matrix:
@@ -266,7 +275,7 @@ jobs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.go == 'true')
+      (needs.changes.outputs.go == 'true') || ${{ inputs.run_e2e }} 
 
     strategy:
       matrix:
diff --git a/NGINX_BASE b/NGINX_BASE
index bc477308f..45654c627 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:9fdbef829c327b95a3c6d6816a301df41bda997f@sha256:46c27294e467f46d0006ad1eb5fd3f7005eb3cbd00dd43be2ed9b02edfc6e828
+registry.k8s.io/ingress-nginx/nginx:0b5e0685112e4537ee20a0bdbba451e9f6158aa3@sha256:3f5e28bb248d5170e77b77fc2a1a385724aeff41a0b34b5afad7dd9cf93de000

From 5a42ec4f35ae6d62b240f61ceb075459aaece16e Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Tue, 8 Nov 2022 00:44:17 +0100
Subject: [PATCH 0461/1641] Fix CVE-2022-32149 (#9258)

* Fix CVE-2022-32149

* fix CI
---
 go.sum                                        |  9 ---------
 images/ext-auth-example-authsvc/rootfs/go.sum |  7 +------
 images/kube-webhook-certgen/rootfs/go.mod     |  4 ++--
 images/kube-webhook-certgen/rootfs/go.sum     | 13 ++++---------
 4 files changed, 7 insertions(+), 26 deletions(-)

diff --git a/go.sum b/go.sum
index 30d65e6b4..caed22265 100644
--- a/go.sum
+++ b/go.sum
@@ -862,15 +862,6 @@ golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b/go.mod h1:jbD1KX2456YbFQfuX
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.1.0 h1:g6Z6vPFA9dYBAF7DWcH6sCcOntplXsDKcliusYijMlw=
 golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
-golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/text v0.4.0 h1:BrVqGRd7+k1DiOgtnFvAkoQEWQvBc25ouMJM6429SFg=
 golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
diff --git a/images/ext-auth-example-authsvc/rootfs/go.sum b/images/ext-auth-example-authsvc/rootfs/go.sum
index 6e3fab295..045452c23 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.sum
+++ b/images/ext-auth-example-authsvc/rootfs/go.sum
@@ -141,12 +141,7 @@ golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210831042530-f4d43177bf5e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
-golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
+golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 5ac181823..22c4424ea 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -31,9 +31,9 @@ require (
 	github.com/tidwall/gjson v1.14.0 // indirect
 	golang.org/x/net v0.0.0-20211209124913-491a49abca63 // indirect
 	golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d // indirect
-	golang.org/x/sys v0.0.0-20210616094352-59db8d763f22 // indirect
+	golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f // indirect
 	golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d // indirect
-	golang.org/x/text v0.3.6 // indirect
+	golang.org/x/text v0.4.0 // indirect
 	golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
 	google.golang.org/appengine v1.6.5 // indirect
 	google.golang.org/protobuf v1.26.0 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 5889d4e49..13ce4b641 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -543,20 +543,15 @@ golang.org/x/sys v0.0.0-20210403161142-5e06dd20ab57/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210616094352-59db8d763f22 h1:RqytpXGR1iVNX7psjB3ff8y7sNFinVFvkx1c8SjBkio=
 golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f h1:v4INt8xihDGvnrfjMDVXGxw9wrfxYyCjk0KbXjhR55s=
+golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d h1:SZxvLBoTP5yHO3Frd4z4vrF+DBX9vMVanchswa69toE=
 golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
-golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.6 h1:aRYxNxv6iGQlyVaZmk6ZgYEDa+Jg18DxebPSrd6bg1M=
-golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.4.0 h1:BrVqGRd7+k1DiOgtnFvAkoQEWQvBc25ouMJM6429SFg=
+golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=

From 90a9d6457536158b433719ff4a9a7ed5b4356c06 Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Tue, 8 Nov 2022 00:46:17 +0100
Subject: [PATCH 0462/1641] Fix CVE-2022-1996 (#9244)

* CVE-2022-1996

* clean

* fix

* fix
---
 go.mod                                    | 2 +-
 go.sum                                    | 6 +++---
 images/kube-webhook-certgen/rootfs/go.sum | 2 +-
 3 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/go.mod b/go.mod
index 58c4c58de..103a74005 100644
--- a/go.mod
+++ b/go.mod
@@ -61,7 +61,7 @@ require (
 	github.com/cyphar/filepath-securejoin v0.2.3 // indirect
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/eapache/queue v1.1.0 // indirect
-	github.com/emicklei/go-restful/v3 v3.8.0 // indirect
+	github.com/emicklei/go-restful/v3 v3.9.0 // indirect
 	github.com/evanphx/json-patch v4.12.0+incompatible // indirect
 	github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b // indirect
 	github.com/go-errors/errors v1.0.1 // indirect
diff --git a/go.sum b/go.sum
index caed22265..010a929d0 100644
--- a/go.sum
+++ b/go.sum
@@ -154,9 +154,9 @@ github.com/eapache/queue v1.1.0 h1:YOEu7KNc61ntiQlcEeUIoDTJ2o8mQznoNvUhiigpIqc=
 github.com/eapache/queue v1.1.0/go.mod h1:6eCeP0CKFpHLu8blIFXhExK/dRa7WDZfr6jVFPTqq+I=
 github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153/go.mod h1:/Zj4wYkgs4iZTTu3o/KG3Itv/qCCa8VVMlb3i9OVuzc=
 github.com/emicklei/go-restful v0.0.0-20170410110728-ff4f55a20633/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
-github.com/emicklei/go-restful v2.9.5+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
-github.com/emicklei/go-restful/v3 v3.8.0 h1:eCZ8ulSerjdAiaNpF7GxXIE7ZCMo1moN1qX+S609eVw=
-github.com/emicklei/go-restful/v3 v3.8.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
+github.com/emicklei/go-restful v2.16.0+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
+github.com/emicklei/go-restful/v3 v3.9.0 h1:XwGDlfxEnQZzuopoqxwSEllNcCOM9DhhFyhFIIGKwxE=
+github.com/emicklei/go-restful/v3 v3.9.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 13ce4b641..61f5a8b34 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -88,7 +88,7 @@ github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815/go.mod h1:WwZ+bS3
 github.com/dustin/go-humanize v1.0.0/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25KnS6fMYU6eOk=
 github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153/go.mod h1:/Zj4wYkgs4iZTTu3o/KG3Itv/qCCa8VVMlb3i9OVuzc=
 github.com/emicklei/go-restful v0.0.0-20170410110728-ff4f55a20633/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
-github.com/emicklei/go-restful v2.9.5+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
+github.com/emicklei/go-restful v2.16.0+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=

From 5cba77c2f9d1a6a53c21df8ec4840e36c6eea414 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 7 Nov 2022 15:48:16 -0800
Subject: [PATCH 0463/1641] Bump github.com/prometheus/client_golang from
 1.13.0 to 1.13.1 (#9262)

Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.13.0 to 1.13.1.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/v1.13.1/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.13.0...v1.13.1)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 103a74005..f5bc85af1 100644
--- a/go.mod
+++ b/go.mod
@@ -17,7 +17,7 @@ require (
 	github.com/onsi/ginkgo/v2 v2.4.0
 	github.com/opencontainers/runc v1.1.4
 	github.com/pmezard/go-difflib v1.0.0
-	github.com/prometheus/client_golang v1.13.0
+	github.com/prometheus/client_golang v1.13.1
 	github.com/prometheus/client_model v0.3.0
 	github.com/prometheus/common v0.37.0
 	github.com/spf13/cobra v1.6.1
diff --git a/go.sum b/go.sum
index 010a929d0..4059a3604 100644
--- a/go.sum
+++ b/go.sum
@@ -490,8 +490,8 @@ github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5Fsn
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
 github.com/prometheus/client_golang v1.12.1/go.mod h1:3Z9XVyYiZYEO+YQWt3RD2R3jrbd179Rt297l4aS6nDY=
-github.com/prometheus/client_golang v1.13.0 h1:b71QUfeo5M8gq2+evJdTPfZhYMAU0uKPkyPJ7TPsloU=
-github.com/prometheus/client_golang v1.13.0/go.mod h1:vTeo+zgvILHsnnj/39Ou/1fPN5nJFOEMgftOUOmlvYQ=
+github.com/prometheus/client_golang v1.13.1 h1:3gMjIY2+/hzmqhtUC/aQNYldJA6DtH3CgQvwS+02K1c=
+github.com/prometheus/client_golang v1.13.1/go.mod h1:vTeo+zgvILHsnnj/39Ou/1fPN5nJFOEMgftOUOmlvYQ=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=

From 6b22d5a7444ae83caba8404cd1c687f3ecffc507 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 7 Nov 2022 15:50:16 -0800
Subject: [PATCH 0464/1641] Bump github/codeql-action from 2.1.29 to 2.1.31
 (#9263)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.29 to 2.1.31.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/ec3cf9c605b848da5f1e41e8452719eb1ccfb9a6...c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index fae11715f..7e936c08b 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@ec3cf9c605b848da5f1e41e8452719eb1ccfb9a6 # v2.1.14
+        uses: github/codeql-action/upload-sarif@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898 # v2.1.14
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 004370a90..f33a550dd 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@ec3cf9c605b848da5f1e41e8452719eb1ccfb9a6
+      uses: github/codeql-action/upload-sarif@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898
       with:
         token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository

From 644f05dd755fe595fb9ca7dcf4d5609b2dd3e99c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 7 Nov 2022 15:52:16 -0800
Subject: [PATCH 0465/1641] Bump aquasecurity/trivy-action from 0.7.1 to 0.8.0
 (#9264)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.7.1 to 0.8.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/d63413b0a4a4482237085319f7f4a1ce99a8f2ac...9ab158e8597f3b310480b9a69402b419bc03dbd5)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index f33a550dd..6cb1dada7 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
     - name: Scan image with AquaSec/Trivy
       id: scan
-      uses: aquasecurity/trivy-action@d63413b0a4a4482237085319f7f4a1ce99a8f2ac #v0.5.1
+      uses: aquasecurity/trivy-action@9ab158e8597f3b310480b9a69402b419bc03dbd5 #v0.5.1
       with:
         image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
         format: 'sarif'

From ae3c2464d6571ccbca7ec59b598e711127d97789 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 8 Nov 2022 00:00:34 +0000
Subject: [PATCH 0466/1641] Bump sigs.k8s.io/controller-runtime from 0.11.2 to
 0.13.1

Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) from 0.11.2 to 0.13.1.
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases)
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/master/RELEASE.md)
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.11.2...v0.13.1)

---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-runtime
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 go.mod |  12 ++-
 go.sum | 286 ++++++---------------------------------------------------
 2 files changed, 35 insertions(+), 263 deletions(-)

diff --git a/go.mod b/go.mod
index f5bc85af1..3be4325f6 100644
--- a/go.mod
+++ b/go.mod
@@ -30,16 +30,16 @@ require (
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.25.3
-	k8s.io/apiextensions-apiserver v0.23.5
+	k8s.io/apiextensions-apiserver v0.25.0
 	k8s.io/apimachinery v0.25.3
 	k8s.io/apiserver v0.25.0
 	k8s.io/cli-runtime v0.25.0
 	k8s.io/client-go v0.25.3
-	k8s.io/code-generator v0.23.5
+	k8s.io/code-generator v0.25.0
 	k8s.io/component-base v0.25.3
 	k8s.io/klog/v2 v2.80.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.11.2
+	sigs.k8s.io/controller-runtime v0.13.1
 	sigs.k8s.io/mdtoc v1.1.0
 )
 
@@ -63,6 +63,7 @@ require (
 	github.com/eapache/queue v1.1.0 // indirect
 	github.com/emicklei/go-restful/v3 v3.9.0 // indirect
 	github.com/evanphx/json-patch v4.12.0+incompatible // indirect
+	github.com/evanphx/json-patch/v5 v5.6.0 // indirect
 	github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b // indirect
 	github.com/go-errors/errors v1.0.1 // indirect
 	github.com/go-logr/logr v1.2.3 // indirect
@@ -86,6 +87,7 @@ require (
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
+	github.com/mattn/go-colorable v0.1.13 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 // indirect
 	github.com/mmarkdown/mmark v2.0.40+incompatible // indirect
 	github.com/moby/sys/mountinfo v0.5.0 // indirect
@@ -110,7 +112,7 @@ require (
 	golang.org/x/sys v0.1.0 // indirect
 	golang.org/x/term v0.1.0 // indirect
 	golang.org/x/text v0.4.0 // indirect
-	golang.org/x/time v0.0.0-20220210224613-90d013bbcef8 // indirect
+	golang.org/x/time v0.0.0-20220609170525-579cf78fd858 // indirect
 	golang.org/x/tools v0.2.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto v0.0.0-20220502173005-c8bf987b8c21 // indirect
@@ -119,7 +121,7 @@ require (
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
-	k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c // indirect
+	k8s.io/gengo v0.0.0-20211129171323-c02415ce4185 // indirect
 	k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1 // indirect
 	k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed // indirect
 	sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 // indirect
diff --git a/go.sum b/go.sum
index 4059a3604..322c6b4aa 100644
--- a/go.sum
+++ b/go.sum
@@ -34,7 +34,6 @@ cloud.google.com/go/bigquery v1.7.0/go.mod h1://okPTzCYNXSlb24MZs83e2Do+h+VXtc4g
 cloud.google.com/go/bigquery v1.8.0/go.mod h1:J5hqkt3O0uAFnINi6JXValWIb1v0goeZM77hZzJN/fQ=
 cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE=
 cloud.google.com/go/datastore v1.1.0/go.mod h1:umbIZjpQpHh4hmRpGhH4tLFup+FVzqBi1b3c64qFpCk=
-cloud.google.com/go/firestore v1.1.0/go.mod h1:ulACoGHTpvq5r8rxGJ4ddJZBZqakUQqClKRT5SZwBmk=
 cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I=
 cloud.google.com/go/pubsub v1.1.0/go.mod h1:EwwdRX2sKPjnvnqCa270oGRyludottCI76h+R3AArQw=
 cloud.google.com/go/pubsub v1.2.0/go.mod h1:jhfEVHT8odbXTkndysNHCcx0awwzvfOlguIAii9o8iA=
@@ -45,14 +44,10 @@ cloud.google.com/go/storage v1.6.0/go.mod h1:N7U0C8pVQ/+NIKOBQyamJIeKQKkZ+mxpohl
 cloud.google.com/go/storage v1.8.0/go.mod h1:Wv1Oy7z6Yz3DshWRJFhqM/UCfaWIRTdp0RXyy7KQOVs=
 cloud.google.com/go/storage v1.10.0/go.mod h1:FLPqc6j+Ki4BU591ie1oL6qBQGu2Bl/tZ9ullr3+Kg0=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
-github.com/Azure/go-ansiterm v0.0.0-20210608223527-2377c96fe795/go.mod h1:LmzpDX56iTiv29bbRTIsUNlaFfuhWRQBWjQdVyAevI8=
-github.com/Azure/go-ansiterm v0.0.0-20210617225240-d185dfc1b5a1/go.mod h1:xomTg63KZ2rFqZQzSB4Vz2SUXa1BpHTVz9L5PTmPC4E=
 github.com/Azure/go-autorest v14.2.0+incompatible h1:V5VMDjClD3GiElqLWO7mz2MxNAK/vTfRHdAubSIPRgs=
 github.com/Azure/go-autorest v14.2.0+incompatible/go.mod h1:r+4oMnoxhatjLLJ6zxSWATqVooLgysK6ZNox3g/xq24=
-github.com/Azure/go-autorest/autorest v0.11.18/go.mod h1:dSiJPy22c3u0OtOKDNttNgqpNFY/GeWa7GH/Pz56QRA=
 github.com/Azure/go-autorest/autorest v0.11.27 h1:F3R3q42aWytozkV8ihzcgMO4OA4cuqr3bNlsEuF6//A=
 github.com/Azure/go-autorest/autorest v0.11.27/go.mod h1:7l8ybrIdUmGqZMTD0sRtAr8NvbHjfofbf8RSP2q7w7U=
-github.com/Azure/go-autorest/autorest/adal v0.9.13/go.mod h1:W/MM4U6nLxnIskrw4UwWzlHfGjwUS50aOsc/I3yuU8M=
 github.com/Azure/go-autorest/autorest/adal v0.9.18/go.mod h1:XVVeme+LZwABT8K5Lc3hA4nAe8LDBVle26gTrguhhPQ=
 github.com/Azure/go-autorest/autorest/adal v0.9.20 h1:gJ3E98kMpFB1MFqQCvA1yFab8vthOeD4VlFRQULxahg=
 github.com/Azure/go-autorest/autorest/adal v0.9.20/go.mod h1:XVVeme+LZwABT8K5Lc3hA4nAe8LDBVle26gTrguhhPQ=
@@ -68,8 +63,6 @@ github.com/Azure/go-autorest/tracing v0.6.0/go.mod h1:+vhtPC754Xsa23ID7GlGsrdKBp
 github.com/BurntSushi/toml v0.3.1 h1:WXkYYl6Yr3qBf1K79EBnL4mak0OimBfB0XUf9Vl28OQ=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
-github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
-github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
 github.com/OneOfOne/xxhash v1.2.2/go.mod h1:HSdplMjZKSmBqAxg5vPj2TmRDmfkzw+cTzAElWljhcU=
 github.com/PuerkitoBio/purell v1.1.1 h1:WEQqlqaGbrPkxLJWfBwQmfEAE1Z7ONdDLqrN38tNFfI=
 github.com/PuerkitoBio/purell v1.1.1/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
@@ -81,28 +74,15 @@ github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRF
 github.com/alecthomas/units v0.0.0-20190717042225-c3de453c63f4/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d/go.mod h1:rBZYJk541a8SKzHPHnH3zbiI+7dagKZ0cgpgrD7Fyho=
 github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
-github.com/antlr/antlr4/runtime/Go/antlr v0.0.0-20210826220005-b48c857c3a0e/go.mod h1:F7bn7fEU90QkQ3tnmaTx3LTKLEDqnwWODIYppRQ5hnY=
-github.com/armon/circbuf v0.0.0-20150827004946-bbbad097214e/go.mod h1:3U/XgcO3hCbHZ8TKRvWD2dDTCfh9M9ya+I9JpbB7O8o=
-github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da/go.mod h1:Q73ZrmVTwzkszR9V5SSuryQ31EELlFMUz1kKyl939pY=
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a h1:AP/vsCIvJZ129pdm9Ek7bH7yutN3hByqsMoNrWAxRQc=
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a/go.mod h1:QmP9hvJ91BbJmGVGSbutW19IC0Q9phDCLGaomwTJbgU=
-github.com/armon/go-radix v0.0.0-20180808171621-7fddfc383310/go.mod h1:ufUuZ+zHj4x4TnLV4JWEpy2hxWSpsRywHrMgIH9cCH8=
-github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
-github.com/benbjohnson/clock v1.0.3/go.mod h1:bGMdMPoPVvcYyt1gHDf4J2KE153Yf9BuiUKYMaxlTDM=
-github.com/benbjohnson/clock v1.1.0/go.mod h1:J11/hYXuz8f4ySSvYwY0FKfm+ezbsZBKZxNJlLklBHA=
 github.com/beorn7/perks v0.0.0-20180321164747-3a771d992973/go.mod h1:Dwedo/Wpr24TaqPxmxbtue+5NUziq4I4S80YR8gNf3Q=
 github.com/beorn7/perks v1.0.0/go.mod h1:KWe93zE9D1o94FZ5RNwFwVgaQK1VOXiVxmqh+CedLV8=
 github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM=
 github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6rlkpw=
-github.com/bgentry/speakeasy v0.1.0/go.mod h1:+zsyZBPWlz7T6j88CTgSN5bM796AkVf0kBD4zp0CCIs=
-github.com/bketelsen/crypt v0.0.3-0.20200106085610-5cbc8cc4026c/go.mod h1:MKsuJmJgSg28kpZDP6UIiPt0e0Oz0kqKNGyRaWEPv84=
-github.com/bketelsen/crypt v0.0.4/go.mod h1:aI6NrJ0pMGgvZKL1iVgXLnfIFJtfV+bKCoqOes/6LfM=
-github.com/blang/semver v3.5.1+incompatible/go.mod h1:kRBLl5iJ+tD4TcOOxsy/0fnwebNt5EWlYSAyrTnjyyk=
 github.com/blang/semver/v4 v4.0.0 h1:1PFHFE6yCCTv8C1TeyNNarDzntLi7wMI5i/pzqYIsAM=
 github.com/blang/semver/v4 v4.0.0/go.mod h1:IbckMUScFkM3pff0VJDNKRiT6TG/YpiHIM2yvyW5YoQ=
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
-github.com/certifi/gocertifi v0.0.0-20191021191039-0944d244cd40/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
-github.com/certifi/gocertifi v0.0.0-20200922220541-2c3bb06c6054/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
 github.com/cespare/xxhash v1.1.0/go.mod h1:XrSqR1VqqWfGrhpAt58auRo0WTKS1nRRg3ghfAqPWnc=
 github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
 github.com/cespare/xxhash/v2 v2.1.2 h1:YRXhKfTDauu4ajMg1TPgFO5jnlC2HCbmLXMcTG5cbYE=
@@ -121,40 +101,23 @@ github.com/cncf/xds/go v0.0.0-20210312221358-fbca930ec8ed/go.mod h1:eXthEFrGJvWH
 github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20211001041855-01bcc9b48dfe/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cockroachdb/datadriven v0.0.0-20200714090401-bf6692d28da5/go.mod h1:h6jFvWxBdQXxjopDMZyH2UVceIRfR84bdzbkoKrsWNo=
-github.com/cockroachdb/errors v1.2.4/go.mod h1:rQD95gz6FARkaKkQXUksEje/d9a6wBJoCr5oaCLELYA=
-github.com/cockroachdb/logtags v0.0.0-20190617123548-eb05cc24525f/go.mod h1:i/u985jwjWRlyHXQbwatDASoW0RMlZ/3i9yJHE2xLkI=
 github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
-github.com/coreos/bbolt v1.3.2/go.mod h1:iRUV2dpdMOn7Bo10OQBFzIJO9kkE559Wcmn+qkEiiKk=
-github.com/coreos/etcd v3.3.13+incompatible/go.mod h1:uF7uidLiAD3TWHmW31ZFd/JWoc32PjwdhPthX9715RE=
-github.com/coreos/go-oidc v2.1.0+incompatible/go.mod h1:CgnwVTmzoESiwO9qyAFEMiHoZ1nMCKZlZ9V6mm3/LKc=
-github.com/coreos/go-semver v0.3.0/go.mod h1:nnelYz7RCh+5ahJtPPxZlU+153eP4D4r3EedlOD2RNk=
-github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e/go.mod h1:F5haX7vjVVG0kc13fIWeqUViNPyEJxv/OmvnBo0Yme4=
 github.com/coreos/go-systemd/v22 v22.3.2 h1:D9/bQk5vlXQFZ6Kwuu6zaiXJ9oTPe68++AzAJc1DzSI=
 github.com/coreos/go-systemd/v22 v22.3.2/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
-github.com/coreos/pkg v0.0.0-20180928190104-399ea9e2e55f/go.mod h1:E3G3o1h8I7cfcXa63jLwjI0eiQQMgzzUDFVpN/nH/eA=
 github.com/cpuguy83/go-md2man/v2 v2.0.0-20190314233015-f79a8a8ca69d/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
-github.com/cpuguy83/go-md2man/v2 v2.0.0/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
 github.com/cpuguy83/go-md2man/v2 v2.0.2/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
-github.com/creack/pty v1.1.11/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/cyphar/filepath-securejoin v0.2.3 h1:YX6ebbZCZP7VkM3scTTokDgBL2TY741X51MTk3ycuNI=
 github.com/cyphar/filepath-securejoin v0.2.3/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/dgrijalva/jwt-go v3.2.0+incompatible/go.mod h1:E3ru+11k8xSBh+hMPgOLZmtrrCbhqsmaPHjLKYnJCaQ=
-github.com/dgryski/go-sip13 v0.0.0-20181026042036-e10d5fee7954/go.mod h1:vAd38F8PWV+bWy6jNmig1y/TA+kYO4g3RSRF0IAv0no=
 github.com/docker/go-units v0.4.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
 github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815/go.mod h1:WwZ+bS3ebgob9U8Nd0kOddGdZWjyMGR8Wziv+TBNwSE=
-github.com/dustin/go-humanize v1.0.0/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25KnS6fMYU6eOk=
 github.com/eapache/channels v1.1.0 h1:F1taHcn7/F0i8DYqKXJnyhJcVpp2kgFcNePxXtnyu4k=
 github.com/eapache/channels v1.1.0/go.mod h1:jMm2qB5Ubtg9zLd+inMZd2/NUvXgzmWXsDaLyQIGfH0=
 github.com/eapache/queue v1.1.0 h1:YOEu7KNc61ntiQlcEeUIoDTJ2o8mQznoNvUhiigpIqc=
 github.com/eapache/queue v1.1.0/go.mod h1:6eCeP0CKFpHLu8blIFXhExK/dRa7WDZfr6jVFPTqq+I=
-github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153/go.mod h1:/Zj4wYkgs4iZTTu3o/KG3Itv/qCCa8VVMlb3i9OVuzc=
-github.com/emicklei/go-restful v0.0.0-20170410110728-ff4f55a20633/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
-github.com/emicklei/go-restful v2.16.0+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
 github.com/emicklei/go-restful/v3 v3.9.0 h1:XwGDlfxEnQZzuopoqxwSEllNcCOM9DhhFyhFIIGKwxE=
 github.com/emicklei/go-restful/v3 v3.9.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
@@ -168,19 +131,13 @@ github.com/envoyproxy/go-control-plane v0.10.2-0.20220325020618-49ff273808a1/go.
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
 github.com/evanphx/json-patch v4.12.0+incompatible h1:4onqiflcdA9EOZ4RxV643DvftH5pOlLGNtQ5lPWQu84=
 github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
-github.com/fatih/color v1.7.0/go.mod h1:Zm6kSWBoL9eyXnKyktHP6abPY2pDugNf5KwzbycvMj4=
-github.com/felixge/httpsnoop v1.0.1/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
-github.com/form3tech-oss/jwt-go v3.2.2+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
-github.com/form3tech-oss/jwt-go v3.2.3+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
+github.com/evanphx/json-patch/v5 v5.6.0 h1:b91NhWfaz02IuVxO9faSllyAtNXHMPkC5J8sJCLunww=
+github.com/evanphx/json-patch/v5 v5.6.0/go.mod h1:G79N1coSVB93tBe7j6PhzjmR3/2VvlbKOFpnXhI9Bw4=
 github.com/frankban/quicktest v1.11.3/go.mod h1:wRf/ReqHper53s+kmmSZizM8NamnL3IM0I9ntUbOk+k=
-github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
-github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
 github.com/fsnotify/fsnotify v1.6.0 h1:n+5WquG0fcWoWp6xPWfHdbskMCQaFnG6PfBrh1Ky4HY=
 github.com/fsnotify/fsnotify v1.6.0/go.mod h1:sl3t1tCWJFWoRz9R8WJCbQihKKwmorjAbSClcnxKAGw=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b h1:074/xhloHUBOpTZwlIzQ28rbPY8pNJvzY7Gcx5KnNOk=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
-github.com/getkin/kin-openapi v0.76.0/go.mod h1:660oXbgy5JFMKreazJaQTw7o+X00qeSyhcnluiMv+Xg=
-github.com/getsentry/raven-go v0.2.0/go.mod h1:KungGk8q33+aIAZUIVWZDr2OfAEBsO49PX4NzFV5kcQ=
 github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
 github.com/go-errors/errors v1.0.1 h1:LUHzmkK3GUKUrL/1gfBUxAHzcev3apQlezX/+O7ma6w=
 github.com/go-errors/errors v1.0.1/go.mod h1:f4zRHt4oKfwPJE5k8C9vpYG+aDHdBFUsgrm6/TyX73Q=
@@ -200,12 +157,10 @@ github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTg
 github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/logr v1.2.3 h1:2DntVwHkVopvECVRSlL5PSo9eG+cAkDCuckLubN+rq0=
 github.com/go-logr/logr v1.2.3/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
-github.com/go-logr/zapr v1.2.0/go.mod h1:Qa4Bsj2Vb+FAVeAKsLD8RLQ+YRJB8YDmOAKxaBQf7Ro=
 github.com/go-logr/zapr v1.2.3 h1:a9vnzlIBPQBBkeaR9IuMUfmVOrQlkoC4YfPoFkX3T7A=
 github.com/go-openapi/jsonpointer v0.19.3/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
 github.com/go-openapi/jsonpointer v0.19.5 h1:gZr+CIYByUqjcgeLXnQu2gHYQC9o73G2XUeOFYEICuY=
 github.com/go-openapi/jsonpointer v0.19.5/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
-github.com/go-openapi/jsonreference v0.19.3/go.mod h1:rjx6GuL8TTa9VaixXglHmQmIL98+wF9xc8zWvFonSJ8=
 github.com/go-openapi/jsonreference v0.19.5 h1:1WJP/wi4OjB4iV8KVbH73rQaoialJrqv8gitZLxGLtM=
 github.com/go-openapi/jsonreference v0.19.5/go.mod h1:RdybgQwPxbL4UEjuAruzK1x3nE69AqPYEJeo/TWfEeg=
 github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh66Z9tfKk=
@@ -216,16 +171,12 @@ github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5x
 github.com/godbus/dbus/v5 v5.0.6 h1:mkgN1ofwASrYnJ5W6U/BxG15eXXXjirgZc7CLqkcaro=
 github.com/godbus/dbus/v5 v5.0.6/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
-github.com/gogo/protobuf v1.2.1/go.mod h1:hp+jE20tsWTFYpLwKvXlhS1hjn+gTNwPg2I6zVXpSg4=
-github.com/gogo/protobuf v1.3.1/go.mod h1:SlYgWuQ5SjCEi6WLHjHCa1yvBfUnHcTbrrZtXPKa29o=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
 github.com/golang-jwt/jwt/v4 v4.0.0/go.mod h1:/xlHOz8bRuivTWchD4jCa+NbatV+wEUSzwAxVc6locg=
 github.com/golang-jwt/jwt/v4 v4.2.0 h1:besgBTC8w8HjP6NzQdxwKH9Z5oQMZ24ThTrHp3cZ8eU=
 github.com/golang-jwt/jwt/v4 v4.2.0/go.mod h1:/xlHOz8bRuivTWchD4jCa+NbatV+wEUSzwAxVc6locg=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
-github.com/golang/glog v1.0.0/go.mod h1:EWib/APOK0SL3dFbYqvxE3UYd8E6s1ouQ7iEp/0LWV4=
-github.com/golang/groupcache v0.0.0-20190129154638-5b532d6fd5ef/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20190702054246-869f871628b6/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20191227052852-215e87163ea7/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20200121045136-8c9f03a8e57e/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
@@ -265,8 +216,6 @@ github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Z
 github.com/google/btree v1.0.0/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/btree v1.0.1 h1:gK4Kx5IaGY9CD5sPJ36FHiBJ6ZXl0kilRiiCj+jdYp4=
 github.com/google/btree v1.0.1/go.mod h1:xXMiIv4Fb/0kKde4SpL7qlzvu5cMJDRkFDxJfI9uaxA=
-github.com/google/cel-go v0.9.0/go.mod h1:U7ayypeSkw23szu4GaQTPJGx66c20mx8JklMSxrmI1w=
-github.com/google/cel-spec v0.6.0/go.mod h1:Nwjgxy5CbjlPrtCWjeDjUyKMl8w41YBYGjsyDdqk0xA=
 github.com/google/gnostic v0.5.7-v3refs h1:FhTMOKj2VhjpouxvWJAV1TL304uMlb9zcDqkl6cEI54=
 github.com/google/gnostic v0.5.7-v3refs/go.mod h1:73MKFl6jIHelAJNaBGFzt3SPtZULs9dYrGFt8OiIsHQ=
 github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
@@ -313,49 +262,18 @@ github.com/google/uuid v1.2.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
 github.com/googleapis/gax-go/v2 v2.1.0/go.mod h1:Q3nei7sK6ybPYH7twZdmQpAd1MKb7pfu6SK+H1/DsU0=
-github.com/googleapis/gnostic v0.5.1/go.mod h1:6U4PtQXGIEt/Z3h5MAT7FNofLnw9vXk2cUuW7uA/OeU=
-github.com/googleapis/gnostic v0.5.5/go.mod h1:7+EbHbldMins07ALC74bsA81Ovc97DwqyJO1AENw9kA=
-github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY=
-github.com/gorilla/mux v1.8.0/go.mod h1:DVbg23sWSpFRCP0SfiEN6jmj59UnW/n46BH5rLB71So=
-github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 h1:pdN6V1QBWetyv/0+wjACpqVH+eVULgEjkurDLq3goeM=
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
-github.com/grpc-ecosystem/go-grpc-middleware v1.0.0/go.mod h1:FiyG127CGDf3tlThmgyCl78X/SZQqEOJBCDaAfeWzPs=
-github.com/grpc-ecosystem/go-grpc-middleware v1.3.0/go.mod h1:z0ButlSOZa5vEBq9m2m2hlwIgKw+rp3sdCBRoJY+30Y=
-github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgfV/d3M/q6VIi02HzZEHgUlZvzk=
-github.com/grpc-ecosystem/grpc-gateway v1.9.0/go.mod h1:vNeuVxBJEsws4ogUvrchl83t/GYV9WGTSLVdBhOQFDY=
 github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
-github.com/hashicorp/consul/api v1.1.0/go.mod h1:VmuI/Lkw1nC05EYQWNKwWGbkg+FbDBtguAZLlVdkD9Q=
-github.com/hashicorp/consul/sdk v0.1.1/go.mod h1:VKf9jXwCTEY1QZP2MOLRhb5i/I/ssyNV1vwHyQBF0x8=
-github.com/hashicorp/errwrap v1.0.0/go.mod h1:YH+1FKiLXxHSkmPseP+kNlulaMuP3n2brvKWEqk/Jc4=
-github.com/hashicorp/go-cleanhttp v0.5.1/go.mod h1:JpRdi6/HCYpAwUzNwuwqhbovhLtngrth3wmdIIUrZ80=
-github.com/hashicorp/go-immutable-radix v1.0.0/go.mod h1:0y9vanUI8NX6FsYoO3zeMjhV/C5i9g4Q3DwcSNZ4P60=
-github.com/hashicorp/go-msgpack v0.5.3/go.mod h1:ahLV/dePpqEmjfWmKiqvPkv/twdG7iPBM1vqhUKIvfM=
-github.com/hashicorp/go-multierror v1.0.0/go.mod h1:dHtQlpGsu+cZNNAkkCN/P3hoUDHhCYQXV3UM06sGGrk=
-github.com/hashicorp/go-rootcerts v1.0.0/go.mod h1:K6zTfqpRlCUIjkwsN4Z+hiSfzSTQa6eBIzfwKfwNnHU=
-github.com/hashicorp/go-sockaddr v1.0.0/go.mod h1:7Xibr9yA9JjQq1JpNB2Vw7kxv8xerXegt+ozgdvDeDU=
-github.com/hashicorp/go-syslog v1.0.0/go.mod h1:qPfqrKkXGihmCqbJM2mZgkZGvKG1dFdvsLplgctolz4=
-github.com/hashicorp/go-uuid v1.0.0/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/bN7x4byOro=
-github.com/hashicorp/go-uuid v1.0.1/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/bN7x4byOro=
-github.com/hashicorp/go.net v0.0.1/go.mod h1:hjKkEWcCURg++eb33jQU7oqQcI9XDCnUzHA0oac0k90=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
-github.com/hashicorp/hcl v1.0.0/go.mod h1:E5yfLk+7swimpb2L/Alb/PJmXilQ/rhwaUYs4T20WEQ=
-github.com/hashicorp/logutils v1.0.0/go.mod h1:QIAnNjmIWmVIIkWDTG1z5v++HQmx9WQRO+LraFDTW64=
-github.com/hashicorp/mdns v1.0.0/go.mod h1:tL+uN++7HEJ6SQLQ2/p+z2pH24WQKWjBPkE0mNTz8vQ=
-github.com/hashicorp/memberlist v0.1.3/go.mod h1:ajVTdAv/9Im8oMAAj5G31PhhMCZJV2pPBoIllUwCN7I=
-github.com/hashicorp/serf v0.8.2/go.mod h1:6hOLApaqBFA1NXqRQAsxw9QxuDEvNxSQRwA/JwenrHc=
-github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
-github.com/imdario/mergo v0.3.5/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
 github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
 github.com/imdario/mergo v0.3.13/go.mod h1:4lJ1jqUDcsbIECGy0RUJAXNIhg+6ocWgb1ALK2O4oXg=
-github.com/inconshreveable/mousetrap v1.0.0/go.mod h1:PxqpIevigyE2G7u3NXJIT2ANytuPF1OarO4DADm73n8=
 github.com/inconshreveable/mousetrap v1.0.1 h1:U3uMjPSQEBMNp1lFxmllqCPM6P5u/Xq7Pgzkat/bFNc=
 github.com/inconshreveable/mousetrap v1.0.1/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
-github.com/jonboulle/clockwork v0.1.0/go.mod h1:Ii8DK3G1RaLaWxj9trq07+26W01tbo22gdxWY5EU2bo=
-github.com/jonboulle/clockwork v0.2.2/go.mod h1:Pkfl5aHPm1nk2H9h0bjmnJD/BcgbGXUBGnn1kMkgxc8=
+github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
 github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
 github.com/jpillora/backoff v1.0.0/go.mod h1:J/6gKK9jxlEcS3zixgDgUAsiuZ7yrSoa/FX5e0EB2j4=
@@ -366,16 +284,12 @@ github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnr
 github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
 github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024/go.mod h1:6v2b51hI/fHJwM22ozAgKL4VKDeJcHhJFhtBdhmNjmU=
 github.com/jstemmer/go-junit-report v0.9.1/go.mod h1:Brl9GWCQeLvo8nXZwPNNblvFj/XSXhF0NWZEnDohbsk=
-github.com/jtolds/gls v4.20.0+incompatible/go.mod h1:QJZ7F/aHp+rZTRtaJ1ow/lLfFfVYBRgL+9YlvaHOwJU=
 github.com/julienschmidt/httprouter v1.2.0/go.mod h1:SYymIcj16QtmaHHD7aYtjjsJG7VTCxuUUipMqKk8s4w=
 github.com/julienschmidt/httprouter v1.3.0/go.mod h1:JR6WtHb+2LUe8TCKY3cZOxFyyO8IZAc4RVcycCCAKdM=
-github.com/kisielk/errcheck v1.1.0/go.mod h1:EZBBE59ingxPouuu3KfxchcWSUPOHkagtvWXihfKN4Q=
-github.com/kisielk/errcheck v1.2.0/go.mod h1:/BMXB+zMLi60iA8Vv6Ksmxu/1UDYcXs4uQLJ+jE2L00=
 github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8=
 github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
 github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
 github.com/konsorten/go-windows-terminal-sequences v1.0.3/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
-github.com/kr/fs v0.1.0/go.mod h1:FFnZGqtBN9Gxj7eW1uZ42v5BccTP0vu6NEaFoC2HwRg=
 github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515/go.mod h1:+0opPa2QZZtGFBFZlji/RkVcI2GknAs/DXo4wKdlNEc=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
 github.com/kr/pretty v0.2.0/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
@@ -390,41 +304,27 @@ github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
-github.com/magiconair/properties v1.8.1/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ=
-github.com/magiconair/properties v1.8.5/go.mod h1:y3VJvCyxH9uVvJTWEGAELF3aiYNyPKd5NZ3oSwXrF60=
 github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA=
 github.com/mailru/easyjson v0.7.6/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
-github.com/mattn/go-colorable v0.0.9 h1:UVL0vNpWh04HeJXV0KLcaT7r06gOH2l4OW6ddYRUIY4=
-github.com/mattn/go-colorable v0.0.9/go.mod h1:9vuHe8Xs5qXnSaW/c/ABM9alt+Vo+STaOChaDxuIBZU=
-github.com/mattn/go-isatty v0.0.3 h1:ns/ykhmWi7G9O+8a448SecJU3nSMBXJfqQkl0upE1jI=
-github.com/mattn/go-isatty v0.0.3/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNxMWT7Zi4=
+github.com/mattn/go-colorable v0.1.13 h1:fFA4WZxdEF4tXPZVKMLwD8oUnCTTo08duU7wxecdEvA=
+github.com/mattn/go-colorable v0.1.13/go.mod h1:7S9/ev0klgBDR4GtXTXX8a3vIGJpMovkB8vQcUbaXHg=
+github.com/mattn/go-isatty v0.0.16 h1:bq3VjFmv/sOjHtdEhmkEV4x1AJtvUvOJ2PFAZ5+peKQ=
+github.com/mattn/go-isatty v0.0.16/go.mod h1:kYGgaQfpe5nmfYZH+SKPsOc2e4SrIfOl2e/yFXSvRLM=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
 github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 h1:I0XW9+e1XWDxdcEniV4rQAIOPUGDq67JSCiRCgGCZLI=
 github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
-github.com/miekg/dns v1.0.14/go.mod h1:W1PPwlIAgtquWBMBEV9nkV9Cazfe8ScdGz/Lj7v3Nrg=
-github.com/mitchellh/cli v1.0.0/go.mod h1:hNIlj7HEI86fIcpObd7a0FcrxTWetlwJDGcceTlRvqc=
-github.com/mitchellh/go-homedir v1.0.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0=
-github.com/mitchellh/go-homedir v1.1.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0=
 github.com/mitchellh/go-ps v1.0.0 h1:i6ampVEEF4wQFF+bkYfwYgY+F/uYJDktmvLPf7qIgjc=
 github.com/mitchellh/go-ps v1.0.0/go.mod h1:J4lOc8z8yJs6vUwklHw2XEIiT4z4C40KtWVN3nvg8Pg=
-github.com/mitchellh/go-testing-interface v1.0.0/go.mod h1:kRemZodwjscx+RGhAo8eIhFbs2+BFgRtFPeD/KE+zxI=
-github.com/mitchellh/gox v0.4.0/go.mod h1:Sd9lOJ0+aimLBi73mGofS1ycjY8lL3uZM3JPS42BGNg=
 github.com/mitchellh/hashstructure v1.1.0 h1:P6P1hdjqAAknpY/M1CGipelZgp+4y9ja9kmUZPXP+H0=
 github.com/mitchellh/hashstructure v1.1.0/go.mod h1:xUDAozZz0Wmdiufv0uyhnHkUTN6/6d8ulp4AwfLKrmA=
-github.com/mitchellh/iochan v1.0.0/go.mod h1:JwYml1nuB7xOzsp52dPpHFffvOCDupsG0QubkSMEySY=
-github.com/mitchellh/mapstructure v0.0.0-20160808181253-ca63d7c062ee/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
-github.com/mitchellh/mapstructure v1.1.2/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
-github.com/mitchellh/mapstructure v1.4.1/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo=
 github.com/mitchellh/mapstructure v1.5.0 h1:jeMsZIYE/09sWLaz43PL7Gy6RuMjD2eJVyuac5Z2hdY=
 github.com/mitchellh/mapstructure v1.5.0/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo=
 github.com/mmarkdown/mmark v2.0.40+incompatible h1:vMeUeDzBK3H+/mU0oMVfMuhSXJlIA+DE/DMPQNAj5C4=
 github.com/mmarkdown/mmark v2.0.40+incompatible/go.mod h1:Uvmoz7tvsWpr7bMVxIpqZPyN3FbOtzDmnsJDFp7ltJs=
-github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
 github.com/moby/sys/mountinfo v0.5.0 h1:2Ks8/r6lopsxWi9m58nlwjaeSzUX9iiL1vj5qB/9ObI=
 github.com/moby/sys/mountinfo v0.5.0/go.mod h1:3bMD3Rg+zkqx8MRYPi7Pyb0Ie97QEBmdxbhnCLlSvSU=
-github.com/moby/term v0.0.0-20210610120745-9d4ed1856297/go.mod h1:vgPCkQMyxTZ7IDy8SXRufE172gr8+K/JE/7hHFxHW3A=
 github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w8PVh93nsPXa1VrQ6jlwL5oN8l14QlcNfg=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
@@ -437,41 +337,26 @@ github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00/go.mod
 github.com/moul/pb v0.0.0-20220425114252-bca18df4138c h1:1STmblv9zmHLDpru4dbnf1PNL6wrrZNf7yBH+SfQU+s=
 github.com/moul/pb v0.0.0-20220425114252-bca18df4138c/go.mod h1:jE2HT8eoucYyUPBFJMreiVlC3KPHkDMtN8wn+ef7Y64=
 github.com/mrunalp/fileutils v0.5.0/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
-github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq1c1nUAm88MOHcQC9l5mIlSMApZMrHA=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/mwitkow/go-conntrack v0.0.0-20161129095857-cc309e4a2223/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
 github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
-github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
 github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65/go.mod h1:Tx6UMSMyIsjLG/VU/F6xA1+0XI+/f9o1dGJnf1l+bPg=
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 h1:t4WWQ9I797y7QUgeEjeXnVb+oYuEDQc6gLvrZJTYo94=
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833/go.mod h1:0CznHmXSjMEqs5Tezj/w2emQoM41wzYM9KpDKUHPYag=
 github.com/ncabatoff/process-exporter v0.7.10 h1:+Ere7+3se6QqP54gg7aBRagWcL8bq3u5zNi/GRSWeKQ=
 github.com/ncabatoff/process-exporter v0.7.10/go.mod h1:DHZRZjqxw9LCOpLlX0DjBuyn6d5plh41Jv6Tmttj7Ek=
 github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
-github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
-github.com/oklog/ulid v1.3.1/go.mod h1:CirwcVhetQ6Lv90oh/F+FBtV6XMibvdAFo93nm5qn4U=
-github.com/onsi/ginkgo v0.0.0-20170829012221-11459a886d9c/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
-github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
-github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
-github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo/v2 v2.4.0 h1:+Ig9nvqgS5OBSACXNk15PLdp0U9XPYROt9CFzVdFGIs=
 github.com/onsi/ginkgo/v2 v2.4.0/go.mod h1:iHkDK1fKGcBoEHT5W7YBq4RFWaQulw+caOMkAt4OrFo=
-github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
-github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
-github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.22.1 h1:pY8O4lBfsHKZHM/6nrxkhVPUznOlIu3quZcKP/M20KI=
 github.com/opencontainers/runc v1.1.4 h1:nRCz/8sKg6K6jgYAFLDlXzPeITBZJyX28DBVhWD+5dg=
 github.com/opencontainers/runc v1.1.4/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
-github.com/opentracing/opentracing-go v1.1.0/go.mod h1:UkNAQd3GIcIGf0SeVgPpRdFStlNbqXla1AfSYxPUl2o=
-github.com/pascaldekloe/goe v0.0.0-20180627143212-57f6aae5913c/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
-github.com/pelletier/go-toml v1.2.0/go.mod h1:5z9KED0ma1S8pY6P1sdut58dfprrGBbd/94hg7ilaic=
-github.com/pelletier/go-toml v1.9.3/go.mod h1:u1nR/EPcESfeI/szUZKdtJ0xRNbUoANCkoOuaOx1Y+c=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
 github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
@@ -479,13 +364,9 @@ github.com/pkg/errors v0.8.0/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINE
 github.com/pkg/errors v0.8.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
-github.com/pkg/sftp v1.10.1/go.mod h1:lYOWFsE0bwd1+KfKJaKeuokY15vzFx25BLbzYYoAxZI=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/posener/complete v1.1.1/go.mod h1:em0nMJCgc9GFtwrmVmEMR/ZL6WyhyjMBndrE9hABlRI=
-github.com/pquerna/cachecontrol v0.0.0-20171018203845-0dec1b30a021/go.mod h1:prYjPmNq4d1NPVmpShWobRqXY3q7Vp+80DqgxxUrUIA=
 github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXPKyh/dDVn+NZz0KFw=
-github.com/prometheus/client_golang v0.9.3/go.mod h1:/TN21ttK/J9q6uSwhBd54HahCDft0ttaMvbicHlPoso=
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
@@ -498,27 +379,21 @@ github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:
 github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.3.0 h1:UBgGFHqYdG/TPFD1B1ogZywDqEkwp3fBMvqdiQ7Xew4=
 github.com/prometheus/client_model v0.3.0/go.mod h1:LDGWKZIo7rky3hgvBe+caln+Dr3dPggB5dvjtD7w9+w=
-github.com/prometheus/common v0.0.0-20181113130724-41aa239b4cce/go.mod h1:daVV7qP5qjZbuso7PdcryaAu0sAZbrN9i7WWcTMWvro=
-github.com/prometheus/common v0.4.0/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
-github.com/prometheus/common v0.28.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/common v0.32.1/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
 github.com/prometheus/common v0.37.0 h1:ccBbHCgIiT9uSoFY0vX8H3zsNR5eLt17/RQLUvn8pXE=
 github.com/prometheus/common v0.37.0/go.mod h1:phzohg0JFMnBEFGxTDbfu3QyL5GI8gTQJFhYO5B3mfA=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
-github.com/prometheus/procfs v0.0.0-20190507164030-5867b95ac084/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
 github.com/prometheus/procfs v0.1.3/go.mod h1:lV6e/gmhEcM9IjHGsFOCxxuZ+z1YqCvr4OA4YeYWdaU=
 github.com/prometheus/procfs v0.6.0/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
 github.com/prometheus/procfs v0.7.3/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
 github.com/prometheus/procfs v0.8.0 h1:ODq8ZFEaYeCaZOJlZZdJA2AbQR98dSHSM1KW/You5mo=
 github.com/prometheus/procfs v0.8.0/go.mod h1:z7EfXMXOkbkqb9IINtpCn86r/to3BnA0uaxHdg830/4=
-github.com/prometheus/tsdb v0.7.1/go.mod h1:qhTCs0VvXwvX/y3TZrWD7rabWM+ijKTux40TwIPHuXU=
-github.com/rogpeppe/fastuuid v0.0.0-20150106093220-6724a57986af/go.mod h1:XWv6SoW27p1b0cqNHllgS5HIMJraePCO15w5zCzIWYg=
 github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
 github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTEfhy4qGm1nDQc=
@@ -526,8 +401,6 @@ github.com/rogpeppe/go-internal v1.8.0 h1:FCbCCtXNOY3UtUuHUYaghJg4y7Fd14rXifAYUA
 github.com/rogpeppe/go-internal v1.8.0/go.mod h1:WmiCO8CzOY8rg0OYDC4/i/2WRWAB6poM+XZ2dLUbcbE=
 github.com/russross/blackfriday/v2 v2.0.1/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
-github.com/ryanuber/columnize v0.0.0-20160712163229-9b3edd62028f/go.mod h1:sm1tb6uqfes/u+d4ooFouqFdy9/2g9QGwK3SQygK0Ts=
-github.com/sean-/seed v0.0.0-20170313163322-e2103e2c3529/go.mod h1:DxrIzT+xaE7yg65j358z/aeFdxmN0P9QXhEzd20vsDc=
 github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
 github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
 github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=
@@ -535,30 +408,14 @@ github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeV
 github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
 github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE=
 github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
-github.com/sirupsen/logrus v1.7.0/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
 github.com/sirupsen/logrus v1.8.1 h1:dJKuHgqk1NNQlqoA6BTlM1Wf9DOH3NBjQyu0h9+AZZE=
 github.com/sirupsen/logrus v1.8.1/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
-github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d/go.mod h1:OnSkiWE9lh6wB0YB77sQom3nweQdgAjqCqsofrRNTgc=
-github.com/smartystreets/goconvey v1.6.4/go.mod h1:syvi0/a8iFYH4r/RixwvyeAJjdLS9QV7WQ/tjFTllLA=
-github.com/soheilhy/cmux v0.1.4/go.mod h1:IM3LyeVVIOuxMH7sFAkER9+bJ4dT7Ms6E4xg4kGIyLM=
-github.com/soheilhy/cmux v0.1.5/go.mod h1:T7TcVDs9LWfQgPlPsdngu6I6QIoyIFZDDC6sNE1GqG0=
 github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
-github.com/spf13/afero v1.1.2/go.mod h1:j4pytiNVoe2o6bmDsKpLACNPDBIoEAkihy7loJ1B0CQ=
 github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
-github.com/spf13/afero v1.6.0/go.mod h1:Ai8FlHk4v/PARR026UzYexafAt9roJ7LcLMAmO6Z93I=
-github.com/spf13/cast v1.3.0/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
-github.com/spf13/cast v1.3.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
-github.com/spf13/cobra v1.1.3/go.mod h1:pGADOWyqRD/YMrPZigI/zbliZ2wVD/23d+is3pSWzOo=
-github.com/spf13/cobra v1.2.1/go.mod h1:ExllRjgxM/piMAM+3tAZvg8fsklGAf3tPfi+i8t68Nk=
 github.com/spf13/cobra v1.6.1 h1:o94oiPyS4KD1mPy2fmcYYHHfCxLqYjJOhGsCHFZtEzA=
 github.com/spf13/cobra v1.6.1/go.mod h1:IOw/AERYS7UzyrGinqmz6HLUo219MORXGxhbaJUqzrY=
-github.com/spf13/jwalterweatherman v1.0.0/go.mod h1:cQK4TGJAtQXfYWX+Ddv3mKDzgVb68N+wFjFa4jdeBTo=
-github.com/spf13/jwalterweatherman v1.1.0/go.mod h1:aNWZUN0dPAAO/Ljvb5BEdw96iTZ0EXowPYD95IqWIGo=
-github.com/spf13/pflag v1.0.3/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
-github.com/spf13/viper v1.7.0/go.mod h1:8WkrPz2fc9jxqZNCJI/76HCieCp4Q8HaLFoCha5qpdg=
-github.com/spf13/viper v1.8.1/go.mod h1:o0Pch8wJ9BVSWGQMbra6iw0oQ5oktSIBaujf1rJH9Ns=
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
@@ -576,15 +433,11 @@ github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/
 github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/stretchr/testify v1.8.1 h1:w7B6lhMri9wdJUVmEZPGGhZzrYTPvgJArz7wNPgYKsk=
 github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
-github.com/subosito/gotenv v1.2.0/go.mod h1:N0PQaV/YGNqwC0u51sEeR/aUtSLEXKX9iv69rRypqCw=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
-github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
-github.com/tmc/grpc-websocket-proxy v0.0.0-20201229170055-e5319fda7802/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
 github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
 github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
-github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
 github.com/xlab/treeprint v1.1.0 h1:G/1DjNkPpfZCFt9CSh6b5/nY4VimlbHF3Rh4obvtzDk=
 github.com/xlab/treeprint v1.1.0/go.mod h1:gj5Gd3gPdKtR1ikdDK6fnFLdmIS0X30kTTuNd/WEJu0=
 github.com/yudai/gojsondiff v1.0.0 h1:27cbfqXLVEJ1o8I6v3y9lg8Ydm53EKqHXAOMxEGlCOA=
@@ -598,18 +451,8 @@ github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9de
 github.com/yuin/goldmark v1.1.32/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.3.5/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
-github.com/yuin/goldmark v1.4.0/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
 github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a h1:CbXWHAnmrtTKgX+yMVVANuRJP8ld88ELbAYAYnBdLJ4=
 github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a/go.mod h1:/Hzu8ych2oXCs1iNI+MeASyFzWTncQ6nlu/wgqbqC2A=
-go.etcd.io/bbolt v1.3.2/go.mod h1:IbVyRI1SCnLcuJnV2u8VeU0CEYM7e686BmAb1XKL+uU=
-go.etcd.io/bbolt v1.3.6/go.mod h1:qXsaaIqmgQH0T+OPdb99Bf+PKfBBQVAdyD6TY9G8XM4=
-go.etcd.io/etcd/api/v3 v3.5.0/go.mod h1:cbVKeC6lCfl7j/8jBhAK6aIYO9XOjdptoxU/nLQcPvs=
-go.etcd.io/etcd/client/pkg/v3 v3.5.0/go.mod h1:IJHfcCEKxYu1Os13ZdwCwIUTUVGYTSAM3YSwc9/Ac1g=
-go.etcd.io/etcd/client/v2 v2.305.0/go.mod h1:h9puh54ZTgAKtEbut2oe9P4L/oqKCVB6xsXlzd7alYQ=
-go.etcd.io/etcd/client/v3 v3.5.0/go.mod h1:AIKXXVX/DQXtfTEqBryiLTUXwON+GuvO6Z7lLS/oTh0=
-go.etcd.io/etcd/pkg/v3 v3.5.0/go.mod h1:UzJGatBQ1lXChBkQF0AuAtkRQMYnHubxAEYIrC3MSsE=
-go.etcd.io/etcd/raft/v3 v3.5.0/go.mod h1:UFOHSIvO/nKwd4lhkwabrTD3cqW5yVyYYf/KlD00Szc=
-go.etcd.io/etcd/server/v3 v3.5.0/go.mod h1:3Ah5ruV+M+7RZr0+Y/5mNLwC+eQlni+mQmOVdCRJoS4=
 go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
 go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8=
 go.opencensus.io v0.22.2/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
@@ -617,43 +460,20 @@ go.opencensus.io v0.22.3/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
 go.opencensus.io v0.22.4/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
 go.opencensus.io v0.22.5/go.mod h1:5pWMHQbX5EPX2/62yrJeAkowc+lfs/XD7Uxpq3pI6kk=
 go.opencensus.io v0.23.0/go.mod h1:XItmlyltB5F7CS4xOC1DcqMoFqwtC6OG2xF7mCv7P7E=
-go.opentelemetry.io/contrib v0.20.0/go.mod h1:G/EtFaa6qaN7+LxqfIAT3GiZa7Wv5DTBUzl5H4LY0Kc=
-go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.20.0/go.mod h1:oVGt1LRbBOBq1A5BQLlUg9UaU/54aiHw8cgjV3aWZ/E=
-go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.20.0/go.mod h1:2AboqHi0CiIZU0qwhtUfCYD1GeUzvvIXWNkhDt7ZMG4=
-go.opentelemetry.io/otel v0.20.0/go.mod h1:Y3ugLH2oa81t5QO+Lty+zXf8zC9L26ax4Nzoxm/dooo=
-go.opentelemetry.io/otel/exporters/otlp v0.20.0/go.mod h1:YIieizyaN77rtLJra0buKiNBOm9XQfkPEKBeuhoMwAM=
-go.opentelemetry.io/otel/metric v0.20.0/go.mod h1:598I5tYlH1vzBjn+BTuhzTCSb/9debfNp6R3s7Pr1eU=
-go.opentelemetry.io/otel/oteltest v0.20.0/go.mod h1:L7bgKf9ZB7qCwT9Up7i9/pn0PWIa9FqQ2IQ8LoxiGnw=
-go.opentelemetry.io/otel/sdk v0.20.0/go.mod h1:g/IcepuwNsoiX5Byy2nNV0ySUF1em498m7hBWC279Yc=
-go.opentelemetry.io/otel/sdk/export/metric v0.20.0/go.mod h1:h7RBNMsDJ5pmI1zExLi+bJK+Dr8NQCh0qGhm1KDnNlE=
-go.opentelemetry.io/otel/sdk/metric v0.20.0/go.mod h1:knxiS8Xd4E/N+ZqKmUPf3gTTZ4/0TjTXukfxjzSTpHE=
-go.opentelemetry.io/otel/trace v0.20.0/go.mod h1:6GjCW8zgDjwGHGa6GkyeB8+/5vjT16gUEi0Nf1iBdgw=
 go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI=
 go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 h1:+FNtrFTmVw0YZGpBGX56XDee331t6JAXeK2bcyhLOOc=
 go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5/go.mod h1:nmDLcffg48OtT/PSW0Hg7FvpRQsQh5OSqIylirxKC7o=
-go.uber.org/atomic v1.4.0/go.mod h1:gD2HeocX3+yG+ygLZcrzQJaqmWj9AIm7n08wl/qW/PE=
 go.uber.org/atomic v1.7.0 h1:ADUqmZGgLDDfbSL9ZmPxKTybcoEYHgpYfELNoN+7hsw=
-go.uber.org/atomic v1.7.0/go.mod h1:fEN4uk6kAWBTFdckzkM89CLk9XfWZrxpCo0nPH17wJc=
-go.uber.org/goleak v1.1.10/go.mod h1:8a7PlsEVH3e/a/GLqe5IIrQx6GzcnRmZEufDUTk4A7A=
-go.uber.org/multierr v1.1.0/go.mod h1:wR5kodmAFQ0UK8QlbwjlSNy0Z68gJhDJUG5sjR94q/0=
 go.uber.org/multierr v1.6.0 h1:y6IPFStTAIT5Ytl7/XYmHvzXQ7S3g/IeZW9hyZ5thw4=
-go.uber.org/multierr v1.6.0/go.mod h1:cdWPpRnG4AhwMwsgIHip0KRBQjJy5kYEpYjJxpXp9iU=
-go.uber.org/zap v1.10.0/go.mod h1:vwi/ZaCAaUcBkycHslxD9B2zi4UTXhF60s6SWpuDF0Q=
-go.uber.org/zap v1.17.0/go.mod h1:MXVU+bhUf/A7Xi2HNOnopQOrmycQ5Ih87HtOu4q5SSo=
-go.uber.org/zap v1.19.0/go.mod h1:xg/QME4nWcxGxrpdeYfq7UvYrLh66cuVKdrbD1XF/NI=
-go.uber.org/zap v1.19.1 h1:ue41HOKd1vGURxrmeKIgELGb3jPW9DMUDGtsinblHwI=
+go.uber.org/zap v1.21.0 h1:WefMeulhovoZ2sYXz7st6K0sLj7bBhpiFaud4r4zST8=
 golang.org/dl v0.0.0-20190829154251-82a15e2f2ead/go.mod h1:IUMfjQLJQd4UTqG1Z90tenwKoCX93Gn3MAQJMOSBsDQ=
 golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
-golang.org/x/crypto v0.0.0-20181029021203-45a5f77698d3/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20190510104115-cbcb75029529/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
-golang.org/x/crypto v0.0.0-20190820162420-60c769a6c586/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.0.0-20201002170205-7f63de1d35b0/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20211215153901-e495a2d5b3d3/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.1.0 h1:MDRAIl0xIo9Io2xV565hzXHw3zVseKrJKodhohM5CjU=
@@ -697,11 +517,7 @@ golang.org/x/mod v0.6.0 h1:b9gGHsz9/HhJ3HF5DHQytPpuwocVTChQJK3AvoLRD5I=
 golang.org/x/mod v0.6.0/go.mod h1:4mET923SAdbXp2ki8ey+zGs1SLqsuM2Y0uvdZR/fUNI=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181023162649-9b4f9f5ad519/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181201002055-351d144fa1fc/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181220203305-927f97764cc3/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
@@ -724,7 +540,6 @@ golang.org/x/net v0.0.0-20200324143707-d3edc9973b7e/go.mod h1:qpuaurCH72eLCgpAm/
 golang.org/x/net v0.0.0-20200501053045-e0ff5e5a1de5/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200506145744-7e3656a0809f/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200513185701-a91f0712d120/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200520182314-0ba52f642ac2/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20200707034311-ab3426394381/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
@@ -732,7 +547,6 @@ golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81R
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20201031054903-ff519b6c9102/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201202161906-c7110b5ffcbb/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20201209123823-ac852fbbde11/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210119194325-5f4716e94777/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
@@ -741,10 +555,7 @@ golang.org/x/net v0.0.0-20210316092652-d523dce5a7f4/go.mod h1:RBQZq4jEuRlivfhVLd
 golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
 golang.org/x/net v0.0.0-20210503060351-7fd8e65b6420/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20210805182204-aaa1db679c0d/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20210825183410-e898025ed96a/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
 golang.org/x/net v0.0.0-20220225172249-27dd8689420f/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
 golang.org/x/net v0.1.0 h1:hZ/3BUoy5aId7sCpA/Tc5lt8DkFgdVS2onTpJsZ/fl0=
@@ -760,7 +571,6 @@ golang.org/x/oauth2 v0.0.0-20201208152858-08078c50e5b5/go.mod h1:KelEdhl1UZF7XfJ
 golang.org/x/oauth2 v0.0.0-20210218202405-ba52d332ba99/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210220000619-9bb904979d93/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210313182246-cd4f82c27b84/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210402161424-2e8d93401602/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210628180205-a41e5a781914/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
@@ -778,12 +588,8 @@ golang.org/x/sync v0.0.0-20200625203802-6e8e738ad208/go.mod h1:RxMgew5VJxzue5/jJ
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201207232520-09787c993a3a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20210220032951-036812b2e83c/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sys v0.0.0-20180823144017-11551d06cbcc/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20181026203630-95b1ffbd15a5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20181107165924-66b7b1311ac8/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20181116152217-5ac8a444bdc5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190312061237-fead79001313/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -795,13 +601,10 @@ golang.org/x/sys v0.0.0-20190606165138-5da285871e9c/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20190606203320-7fc4e5ec1444/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190726091711-fc99dfbffb4e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191001151750-bb3f8db39f24/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191002063906-3421d5a6bb1c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191026070338-33540a1f6037/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191115151921-52ab43148777/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191228213918-04cbcbbfeed8/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200106162015-b016eb3dc98e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -816,14 +619,11 @@ golang.org/x/sys v0.0.0-20200331124033-c3d80250170d/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200501052902-10377860bb8e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200511232937-7e40ca221e25/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200515095857-1151b9dac4a9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200519105757-fe76b779f299/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200523222454-059865788121/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200615200032-f1bc736245b1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200803210538-64077c9b5642/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200831180312-196b9ba8737a/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200905004654-be1d3432aa8f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200923182605-d9f96fdee20d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201201145000-ef89a241ccb3/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -835,7 +635,6 @@ golang.org/x/sys v0.0.0-20210305230114-8fe3ee5dd75b/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210315160823-c6e025ad8005/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210320140829-1e4c9ba3b0c4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210330210617-4fbd30eecc44/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210403161142-5e06dd20ab57/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210514084401-e8d321eab015/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
@@ -845,53 +644,52 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210630005230-0f9fa26af87c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210806184541-e5e7981a1069/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210809222454-d867a43fc93e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210823070655-63515b42dcdf/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210831042530-f4d43177bf5e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210906170528-6f6e22806c34/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210908233432-aa78b53d3365/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.1.0 h1:kunALQeHf1/185U1i0GOB/fy1IPRDDpuoOOqRReG57U=
 golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.0.0-20210615171337-6886f2dfbf5b/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.1.0 h1:g6Z6vPFA9dYBAF7DWcH6sCcOntplXsDKcliusYijMlw=
 golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
+golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
+golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
+golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
+golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
+golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/text v0.4.0 h1:BrVqGRd7+k1DiOgtnFvAkoQEWQvBc25ouMJM6429SFg=
 golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20210220033141-f8bda1e9f3ba/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20220210224613-90d013bbcef8 h1:vVKdlvoWBphwdxWKrFZEuM0kGgGLxUOYcY4U/2Vjg44=
-golang.org/x/time v0.0.0-20220210224613-90d013bbcef8/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/tools v0.0.0-20180221164845-07fd8470d635/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
+golang.org/x/time v0.0.0-20220609170525-579cf78fd858 h1:Dpdu/EMxGMFgq0CeYMh4fazTD2vtlZRYE7wyynxJb9U=
+golang.org/x/time v0.0.0-20220609170525-579cf78fd858/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
-golang.org/x/tools v0.0.0-20181030221726-6c7e314b6563/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
 golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190312151545-0bb0c0a6e846/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190312170243-e65039ee4138/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
-golang.org/x/tools v0.0.0-20190328211700-ab21143f2384/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190425150028-36563e24a262/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20190506145303-2d16b83fe98c/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20190524140312-2c0ae7006135/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20190606124116-d0a3d012864b/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190621195816-6e04913cbbac/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
-golang.org/x/tools v0.0.0-20190624222133-a101b041ded4/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190628153133-6cdbf07be9d0/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190816200558-6889da9d5479/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20190911174233-4f2ddba30aff/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191012152004-8de300cfc20a/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191108193012-7d206e10da11/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191112195655-aa38f8e97acc/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191113191852-77e3bb0ad9e7/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191115202509-3a792d9c32b2/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
@@ -931,7 +729,6 @@ golang.org/x/tools v0.1.2/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.3/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.4/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
 golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.1.6-0.20210820212750-d4cc65f0b2ff/go.mod h1:YD9qOF0M9xpSpdWTBbzEl5e/RnCefISl8E5Noe10jFM=
 golang.org/x/tools v0.2.0 h1:G6AHpWxTMGY1KyEYoAQ5WTtIekUUvDNjan3ugu60JvE=
 golang.org/x/tools v0.2.0/go.mod h1:y4OqIKeOV/fWJetJ8bXPU1sEVniLMIyDAZWeHdV+NTA=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
@@ -960,7 +757,6 @@ google.golang.org/api v0.36.0/go.mod h1:+z5ficQTmoYpPn8LCUNVpK5I7hwkpjbcgqA7I34q
 google.golang.org/api v0.40.0/go.mod h1:fYKFpnQN0DsDSKRVRcQSDQNtqWPfM9i+zNPxepjRCQ8=
 google.golang.org/api v0.41.0/go.mod h1:RkxM5lITDfTzmyKFPt+wGrCJbVfniCr2ool8kTBzRTU=
 google.golang.org/api v0.43.0/go.mod h1:nQsDGjRXMo4lvh5hP0TKqF244gqhGcr/YSIykhUk/94=
-google.golang.org/api v0.44.0/go.mod h1:EBOGZqzyhtvMDoxwS97ctnh0zUmYY6CxqXsc1AvkYD8=
 google.golang.org/api v0.47.0/go.mod h1:Wbvgpq1HddcWVtzsVLyfLp8lDg6AA241LmgIL59tHXo=
 google.golang.org/api v0.48.0/go.mod h1:71Pr1vy+TAZRPkPs/xlCf5SsU8WjuAWv1Pfjbtukyy4=
 google.golang.org/api v0.50.0/go.mod h1:4bNT5pAuq5ji4SRZm+5QIkjny9JAyVD/3gaSihNefaw=
@@ -997,7 +793,6 @@ google.golang.org/genproto v0.0.0-20200228133532-8c2c7df3a383/go.mod h1:55QSHmfG
 google.golang.org/genproto v0.0.0-20200305110556-506484158171/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200312145019-da6875a35672/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200331122359-1ee6d9798940/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200423170343-7949de9c1215/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200430143042-b979b6f78d84/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200511104702-f5ebc3bea380/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200513103714-09dca8ec2884/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
@@ -1009,7 +804,6 @@ google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6D
 google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200904004341-0bd0a958aa1d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201102152239-715cce707fb0/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201109203340-2640f1f9cdfb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201201144952-b05cb90ed32e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201210142538-e3217bee35cc/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
@@ -1089,23 +883,15 @@ gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
 gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
-gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
 gopkg.in/go-playground/assert.v1 v1.2.1 h1:xoYuJVE7KT85PYWrN730RguIQO0ePzVRfFMXadIrXTM=
 gopkg.in/go-playground/assert.v1 v1.2.1/go.mod h1:9RXL0bg/zibRAgZUYszZSwO/z8Y/a8bDuhia5mkpMnE=
 gopkg.in/go-playground/pool.v3 v3.1.1 h1:4Qcj91IsYTpIeRhe/eo6Fz+w6uKWPEghx8vHFTYMfhw=
 gopkg.in/go-playground/pool.v3 v3.1.1/go.mod h1:pUAGBximS/hccTTSzEop6wvvQhVa3QPDFFW+8REdutg=
 gopkg.in/inf.v0 v0.9.1 h1:73M5CoZyi3ZLMOyDlQh031Cx6N9NDJ2Vvfl76EDAgDc=
 gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
-gopkg.in/ini.v1 v1.51.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
-gopkg.in/ini.v1 v1.62.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
 gopkg.in/mcuadros/go-syslog.v2 v2.3.0 h1:kcsiS+WsTKyIEPABJBJtoG0KkOS6yzvJ+/eZlhD79kk=
 gopkg.in/mcuadros/go-syslog.v2 v2.3.0/go.mod h1:l5LPIyOOyIdQquNg+oU6Z3524YwrcqEm0aKH+5zpt2U=
-gopkg.in/natefinch/lumberjack.v2 v2.0.0/go.mod h1:l0ndWWf7gzL7RNwBG7wST/UCcT4T24xpD6X8LsfU/+k=
-gopkg.in/resty.v1 v1.12.0/go.mod h1:mDo4pnntr5jdWRML875a/NmxYqAlA73dVijT2AXvQQo=
-gopkg.in/square/go-jose.v2 v2.2.2/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
-gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
-gopkg.in/yaml.v2 v2.0.0-20170812160011-eb3733d160e7/go.mod h1:JAlM8MvJe8wmxCU4Bli9HhUf9+ttbYbLASfIpnQbh74=
 gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.3/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
@@ -1117,12 +903,9 @@ gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
 gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.0-20200615113413-eeeca48fe776/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.0/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-gotest.tools/v3 v3.0.2/go.mod h1:3SzNCllyD9/Y+b5r9JIKQ474KzkZyqLqEfYqMsX94Bk=
-gotest.tools/v3 v3.0.3/go.mod h1:Z7Lb0S5l+klDB31fvDQX8ss/FlKDxtlFlw3Oa8Ymbl8=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190106161140-3f1c8253044a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190418001031-e561f6794a2a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
@@ -1130,39 +913,30 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.23.5/go.mod h1:Na4XuKng8PXJ2JsploYYrivXrINeTaycCGcYgF91Xm8=
 k8s.io/api v0.25.3 h1:Q1v5UFfYe87vi5H7NU0p4RXC26PPMT8KOpr1TLQbCMQ=
 k8s.io/api v0.25.3/go.mod h1:o42gKscFrEVjHdQnyRenACrMtbuJsVdP+WVjqejfzmI=
-k8s.io/apiextensions-apiserver v0.23.5 h1:5SKzdXyvIJKu+zbfPc3kCbWpbxi+O+zdmAJBm26UJqI=
-k8s.io/apiextensions-apiserver v0.23.5/go.mod h1:ntcPWNXS8ZPKN+zTXuzYMeg731CP0heCTl6gYBxLcuQ=
-k8s.io/apimachinery v0.23.5/go.mod h1:BEuFMMBaIbcOqVIJqNZJXGFTP4W6AycEpb5+m/97hrM=
+k8s.io/apiextensions-apiserver v0.25.0 h1:CJ9zlyXAbq0FIW8CD7HHyozCMBpDSiH7EdrSTCZcZFY=
+k8s.io/apiextensions-apiserver v0.25.0/go.mod h1:3pAjZiN4zw7R8aZC5gR0y3/vCkGlAjCazcg1me8iB/E=
 k8s.io/apimachinery v0.25.3 h1:7o9ium4uyUOM76t6aunP0nZuex7gDf8VGwkR5RcJnQc=
 k8s.io/apimachinery v0.25.3/go.mod h1:jaF9C/iPNM1FuLl7Zuy5b9v+n35HGSh6AQ4HYRkCqwo=
-k8s.io/apiserver v0.23.5/go.mod h1:7wvMtGJ42VRxzgVI7jkbKvMbuCbVbgsWFT7RyXiRNTw=
 k8s.io/apiserver v0.25.0 h1:8kl2ifbNffD440MyvHtPaIz1mw4mGKVgWqM0nL+oyu4=
 k8s.io/apiserver v0.25.0/go.mod h1:BKwsE+PTC+aZK+6OJQDPr0v6uS91/HWxX7evElAH6xo=
 k8s.io/cli-runtime v0.25.0 h1:XBnTc2Fi+w818jcJGzhiJKQuXl8479sZ4FhtV5hVJ1Q=
 k8s.io/cli-runtime v0.25.0/go.mod h1:bHOI5ZZInRHhbq12OdUiYZQN8ml8aKZLwQgt9QlLINw=
-k8s.io/client-go v0.23.5/go.mod h1:flkeinTO1CirYgzMPRWxUCnV0G4Fbu2vLhYCObnt/r4=
 k8s.io/client-go v0.25.3 h1:oB4Dyl8d6UbfDHD8Bv8evKylzs3BXzzufLiO27xuPs0=
 k8s.io/client-go v0.25.3/go.mod h1:t39LPczAIMwycjcXkVc+CB+PZV69jQuNx4um5ORDjQA=
-k8s.io/code-generator v0.23.5 h1:xn3a6J5pUL49AoH6SPrOFtnB5cvdMl76f/bEY176R3c=
-k8s.io/code-generator v0.23.5/go.mod h1:S0Q1JVA+kSzTI1oUvbKAxZY/DYbA/ZUb4Uknog12ETk=
-k8s.io/component-base v0.23.5/go.mod h1:c5Nq44KZyt1aLl0IpHX82fhsn84Sb0jjzwjpcA42bY0=
+k8s.io/code-generator v0.25.0 h1:QP8fJuXu882ztf6dsqJsso/Btm94pMd68TAZC1rE6KI=
+k8s.io/code-generator v0.25.0/go.mod h1:B6jZgI3DvDFAualltPitbYMQ74NjaCFxum3YeKZZ+3w=
 k8s.io/component-base v0.25.3 h1:UrsxciGdrCY03ULT1h/S/gXFCOPnLhUVwSyx+hM/zq4=
 k8s.io/component-base v0.25.3/go.mod h1:WYoS8L+IlTZgU7rhAl5Ctpw0WdMxDfCC5dkxcEFa/TI=
-k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c h1:GohjlNKauSai7gN4wsJkeZ3WAJx4Sh+oT/b5IYn5suA=
-k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
+k8s.io/gengo v0.0.0-20211129171323-c02415ce4185 h1:TT1WdmqqXareKxZ/oNXEUSwKlLiHzPMyB0t8BaFeBYI=
+k8s.io/gengo v0.0.0-20211129171323-c02415ce4185/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
-k8s.io/klog/v2 v2.30.0/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/klog/v2 v2.80.1 h1:atnLQ121W371wYYFawwYx1aEY2eUfs4l3J72wtgAwV4=
 k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
-k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65/go.mod h1:sX9MT8g7NVZM5lVL/j8QyCCJe8YSMW30QvGZWaCIDIk=
 k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1 h1:MQ8BAZPZlWk3S9K4a9NCkIFQtZShWqoha7snGixVgEA=
 k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1/go.mod h1:C/N6wCaBHeBHkHUesQOQy2/MZqGgMAFPqGsGQLdbZBU=
-k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
-k8s.io/utils v0.0.0-20211116205334-6203023598ed/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
 k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed h1:jAne/RjBTyawwAy0utX5eqigAwz/lQhTmy+Hr/Cpue4=
 k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
@@ -1170,10 +944,8 @@ pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.30/go.mod h1:fEO7lRTdivWO2qYVCVG7dEADOMo/MLDCVr8So2g88Uw=
-sigs.k8s.io/controller-runtime v0.11.2 h1:H5GTxQl0Mc9UjRJhORusqfJCIjBO8UtUxGggCwL1rLA=
-sigs.k8s.io/controller-runtime v0.11.2/go.mod h1:P6QCzrEjLaZGqHsfd+os7JQ+WFZhvB8MRFsn4dWF7O4=
-sigs.k8s.io/json v0.0.0-20211020170558-c049b76a60c6/go.mod h1:p4QtZmO4uMYipTQNzagwnNoseA6OxSUutVw05NhYDRs=
+sigs.k8s.io/controller-runtime v0.13.1 h1:tUsRCSJVM1QQOOeViGeX3GMT3dQF1eePPw6sEE3xSlg=
+sigs.k8s.io/controller-runtime v0.13.1/go.mod h1:Zbz+el8Yg31jubvAEyglRZGdLAjplZl+PgtYNI6WNTI=
 sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 h1:iXTIw73aPyC+oRdyqqvVJuloN1p0AC/kzH07hu3NE+k=
 sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/kustomize/api v0.12.1 h1:7YM7gW3kYBwtKvoY216ZzY+8hM+lV53LUayghNRJ0vM=
@@ -1182,8 +954,6 @@ sigs.k8s.io/kustomize/kyaml v0.13.9 h1:Qz53EAaFFANyNgyOEJbT/yoIHygK40/ZcvU3rgry2
 sigs.k8s.io/kustomize/kyaml v0.13.9/go.mod h1:QsRbD0/KcU+wdk0/L0fIp2KLnohkVzs6fQ85/nOXac4=
 sigs.k8s.io/mdtoc v1.1.0 h1:q3YtqYzmC2e0hgLXRIOm7/QLuPux1CX3ZHCwlbABxZo=
 sigs.k8s.io/mdtoc v1.1.0/go.mod h1:QZLVEdHH2iNIR4uHAZyvFRtjloHgVItk8lo/mzCtq3w=
-sigs.k8s.io/structured-merge-diff/v4 v4.0.2/go.mod h1:bJZC9H9iH24zzfZ/41RGcq60oK1F7G282QMXDPYydCw=
-sigs.k8s.io/structured-merge-diff/v4 v4.2.1/go.mod h1:j/nl6xW8vLS49O8YvXW1ocPhZawJtm+Yrr7PPRQ0Vg4=
 sigs.k8s.io/structured-merge-diff/v4 v4.2.3 h1:PRbqxJClWWYMNV1dhaG4NsibJbArud9kFxnAMREiWFE=
 sigs.k8s.io/structured-merge-diff/v4 v4.2.3/go.mod h1:qjx8mGObPmV2aSZepjQjbmb2ihdVs8cGKBraizNC69E=
 sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=

From 4d4358f6739af655edbdbcbe9aa6cd3ef33792f6 Mon Sep 17 00:00:00 2001
From: Njegos Railic <railic.njegos@gmail.com>
Date: Tue, 8 Nov 2022 15:44:25 +0100
Subject: [PATCH 0467/1641] Adding support for disabling liveness and readiness
 probes in the Helm chart (#9238)

---
 charts/ingress-nginx/templates/controller-daemonset.yaml  | 4 ++++
 charts/ingress-nginx/templates/controller-deployment.yaml | 4 ++++
 2 files changed, 8 insertions(+)

diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 805d2f209..4163e255c 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -102,8 +102,12 @@ spec:
           {{- if .Values.controller.startupProbe }}
           startupProbe: {{ toYaml .Values.controller.startupProbe | nindent 12 }}
           {{- end }}
+          {{- if .Values.controller.livenessProbe }}
           livenessProbe: {{ toYaml .Values.controller.livenessProbe | nindent 12 }}
+          {{- end }}
+          {{- if .Values.controller.readinessProbe }}
           readinessProbe: {{ toYaml .Values.controller.readinessProbe | nindent 12 }}
+          {{- end }}
           ports:
           {{- range $key, $value := .Values.controller.containerPort }}
             - name: {{ $key }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index fcbdab80d..dfe4cae92 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -106,8 +106,12 @@ spec:
           {{- if .Values.controller.startupProbe }}
           startupProbe: {{ toYaml .Values.controller.startupProbe | nindent 12 }}
           {{- end }}
+          {{- if .Values.controller.livenessProbe }}
           livenessProbe: {{ toYaml .Values.controller.livenessProbe | nindent 12 }}
+          {{- end }}
+          {{- if .Values.controller.readinessProbe }}
           readinessProbe: {{ toYaml .Values.controller.readinessProbe | nindent 12 }}
+          {{- end }}
           ports:
           {{- range $key, $value := .Values.controller.containerPort }}
             - name: {{ $key }}

From e03f8cc0360495530dd70889ce30e56ec6f06e52 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 8 Nov 2022 10:24:58 -0500
Subject: [PATCH 0468/1641] start 1.5.0 release

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 66d62a800..2e7bd9108 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.4.1
+v1.5.0

From 894937993107e1dbe6e1b28bd916b06790a07d3c Mon Sep 17 00:00:00 2001
From: Oblivion <ehsan.sadroid@gmail.com>
Date: Tue, 8 Nov 2022 16:46:53 +0000
Subject: [PATCH 0469/1641] fix CVE-2022-27664

---
 go.sum                                        | 43 ------------------
 images/ext-auth-example-authsvc/rootfs/go.sum | 14 +-----
 images/kube-webhook-certgen/rootfs/go.mod     |  6 +--
 images/kube-webhook-certgen/rootfs/go.sum     | 45 +++----------------
 4 files changed, 11 insertions(+), 97 deletions(-)

diff --git a/go.sum b/go.sum
index 322c6b4aa..e212f2972 100644
--- a/go.sum
+++ b/go.sum
@@ -515,49 +515,6 @@ golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.6.0 h1:b9gGHsz9/HhJ3HF5DHQytPpuwocVTChQJK3AvoLRD5I=
 golang.org/x/mod v0.6.0/go.mod h1:4mET923SAdbXp2ki8ey+zGs1SLqsuM2Y0uvdZR/fUNI=
-golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190501004415-9ce7a6920f09/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
-golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190628185345-da137c7871d7/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190724013045-ca1201d0de80/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200114155413-6afb5195e5aa/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200202094626-16171245cfb2/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200222125558-5a598a2470a0/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200301022130-244492dfa37a/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200324143707-d3edc9973b7e/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200501053045-e0ff5e5a1de5/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200506145744-7e3656a0809f/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200513185701-a91f0712d120/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200520182314-0ba52f642ac2/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
-golang.org/x/net v0.0.0-20200707034311-ab3426394381/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
-golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
-golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201031054903-ff519b6c9102/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201209123823-ac852fbbde11/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20210119194325-5f4716e94777/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20210316092652-d523dce5a7f4/go.mod h1:RBQZq4jEuRlivfhVLdyRGr576XBO4/greRjx4P4O3yc=
-golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
-golang.org/x/net v0.0.0-20210503060351-7fd8e65b6420/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
-golang.org/x/net v0.0.0-20220225172249-27dd8689420f/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
 golang.org/x/net v0.1.0 h1:hZ/3BUoy5aId7sCpA/Tc5lt8DkFgdVS2onTpJsZ/fl0=
 golang.org/x/net v0.1.0/go.mod h1:Cx3nUiGt4eDBEyega/BKRp+/AlGL8hYe7U9odMt2Cco=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
diff --git a/images/ext-auth-example-authsvc/rootfs/go.sum b/images/ext-auth-example-authsvc/rootfs/go.sum
index 045452c23..2ca056fae 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.sum
+++ b/images/ext-auth-example-authsvc/rootfs/go.sum
@@ -105,19 +105,7 @@ golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3/go.mod h1:6SW0HCj/g11FgYtHl
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
-golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.1.0/go.mod h1:Cx3nUiGt4eDBEyega/BKRp+/AlGL8hYe7U9odMt2Cco=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 22c4424ea..5e2e98f54 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -29,10 +29,10 @@ require (
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
 	github.com/tidwall/gjson v1.14.0 // indirect
-	golang.org/x/net v0.0.0-20211209124913-491a49abca63 // indirect
+	golang.org/x/net v0.1.0 // indirect
 	golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d // indirect
-	golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f // indirect
-	golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d // indirect
+	golang.org/x/sys v0.1.0 // indirect
+	golang.org/x/term v0.1.0 // indirect
 	golang.org/x/text v0.4.0 // indirect
 	golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
 	google.golang.org/appengine v1.6.5 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 61f5a8b34..a05f65b19 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -451,39 +451,8 @@ golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzB
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181023162649-9b4f9f5ad519/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181201002055-351d144fa1fc/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181220203305-927f97764cc3/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190501004415-9ce7a6920f09/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
-golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190724013045-ca1201d0de80/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200114155413-6afb5195e5aa/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200202094626-16171245cfb2/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200222125558-5a598a2470a0/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200301022130-244492dfa37a/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200324143707-d3edc9973b7e/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
-golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
-golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201202161906-c7110b5ffcbb/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
-golang.org/x/net v0.0.0-20211209124913-491a49abca63 h1:iocB37TsdFuN6IBRZ+ry36wrkoV51/tl5vOWqkcPGvY=
-golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.1.0 h1:hZ/3BUoy5aId7sCpA/Tc5lt8DkFgdVS2onTpJsZ/fl0=
+golang.org/x/net v0.1.0/go.mod h1:Cx3nUiGt4eDBEyega/BKRp+/AlGL8hYe7U9odMt2Cco=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -535,21 +504,21 @@ golang.org/x/sys v0.0.0-20200615200032-f1bc736245b1/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200831180312-196b9ba8737a/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200923182605-d9f96fdee20d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210330210617-4fbd30eecc44/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210403161142-5e06dd20ab57/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f h1:v4INt8xihDGvnrfjMDVXGxw9wrfxYyCjk0KbXjhR55s=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.1.0 h1:kunALQeHf1/185U1i0GOB/fy1IPRDDpuoOOqRReG57U=
+golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d h1:SZxvLBoTP5yHO3Frd4z4vrF+DBX9vMVanchswa69toE=
 golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
+golang.org/x/term v0.1.0 h1:g6Z6vPFA9dYBAF7DWcH6sCcOntplXsDKcliusYijMlw=
+golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/text v0.4.0 h1:BrVqGRd7+k1DiOgtnFvAkoQEWQvBc25ouMJM6429SFg=
 golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=

From 3bca5e9c19bedfef2365a9214bd0c1675d53a725 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 8 Nov 2022 15:48:44 -0500
Subject: [PATCH 0470/1641] missed CVE-2022-27664 #9273 in 1.5.0 build

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 2e7bd9108..53b5bbb12 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.5.0
+v1.5.1

From 63dbbdbb3a099417f411fbd1d684fa2a287c96cd Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 9 Nov 2022 20:08:54 -0500
Subject: [PATCH 0471/1641] udate readme, charts and static deploys for release
 1.5.1 (#9280)

Signed-off-by: James Strong <strong.james.e@gmail.com>

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/ci.yaml                     |  6 +-
 Changelog.md                                  | 96 ++++++++++++++++++-
 README.md                                     | 46 ++++-----
 charts/ingress-nginx/CHANGELOG.md             |  7 ++
 charts/ingress-nginx/Chart.yaml               | 12 +--
 charts/ingress-nginx/README.md                |  8 +-
 charts/ingress-nginx/values.yaml              |  6 +-
 deploy/static/provider/aws/deploy.yaml        | 48 +++++-----
 .../aws/nlb-with-tls-termination/deploy.yaml  | 48 +++++-----
 deploy/static/provider/baremetal/deploy.yaml  | 48 +++++-----
 deploy/static/provider/cloud/deploy.yaml      | 48 +++++-----
 deploy/static/provider/do/deploy.yaml         | 48 +++++-----
 deploy/static/provider/exoscale/deploy.yaml   | 48 +++++-----
 deploy/static/provider/kind/deploy.yaml       | 48 +++++-----
 deploy/static/provider/scw/deploy.yaml        | 48 +++++-----
 docs/deploy/index.md                          | 20 ++--
 16 files changed, 342 insertions(+), 243 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 695799991..6f0c4aee2 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -139,7 +139,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.22.15, v1.23.12, v1.24.6, v1.25.2]
+        k8s: [v1.23.13, v1.24.7, v1.25.3]
 
     steps:
 
@@ -222,7 +222,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.23.12, v1.24.6, v1.25.2]
+        k8s: [v1.23.13, v1.24.7, v1.25.3]
 
     steps:
 
@@ -279,7 +279,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.23.12, v1.24.6, v1.25.2]
+        k8s: [v1.23.13, v1.24.7, v1.25.3]
 
     steps:
 
diff --git a/Changelog.md b/Changelog.md
index 34b49e28a..a7b62be50 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -1,5 +1,99 @@
 # Changelog
 
+### 1.5.1 
+
+* Upgrade NGINX to 1.21.6
+* Upgrade Golang 1.19.2
+* Fix Service Name length Bug [9245](https://github.com/kubernetes/ingress-nginx/pull/9245)
+* CVE fixes CVE-2022-32149, CVE-2022-27664, CVE-2022-1996
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.5.1@sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529bad0d178fb36147345
+
+### All Changes:
+
+* chore Fixed to Support Versions table by @yutachaos in https://github.com/kubernetes/ingress-nginx/pull/9117
+* Updated incorrect version number in the Installation Guide by @afro-coder in https://github.com/kubernetes/ingress-nginx/pull/9120
+* Updated the Developer guide with New Contributor information by @afro-coder in https://github.com/kubernetes/ingress-nginx/pull/9114
+* Remove deprecated net dependency by @rikatz in https://github.com/kubernetes/ingress-nginx/pull/9110
+* Fixed docs helm-docs version by @yutachaos in https://github.com/kubernetes/ingress-nginx/pull/9121
+* Fix CVE 2022 27664 by @strongjz in https://github.com/kubernetes/ingress-nginx/pull/9109
+* upgrade to golang 1.19.2 by @strongjz in https://github.com/kubernetes/ingress-nginx/pull/9124
+* fix e2e resource leak when ginkgo exit before clear resource by @loveRhythm1990 in https://github.com/kubernetes/ingress-nginx/pull/9103
+* fix: handle 401 and 403 by external auth by @johanneswuerbach in https://github.com/kubernetes/ingress-nginx/pull/9131
+* Move bowei to emeritus owner by @rikatz in https://github.com/kubernetes/ingress-nginx/pull/9150
+* fix null ports by @tombokombo in https://github.com/kubernetes/ingress-nginx/pull/9149
+* Documentation added for  implemented redirection in the proxy to ensure image pulling by @Sanghamitra-PERSONAL in https://github.com/kubernetes/ingress-nginx/pull/9098
+* updating runner with golang 1.19.2 by @strongjz in https://github.com/kubernetes/ingress-nginx/pull/9158
+* Add install command for OVHcloud by @scraly in https://github.com/kubernetes/ingress-nginx/pull/9171
+* GitHub Templates: Remove trailing whitespaces. by @Gacko in https://github.com/kubernetes/ingress-nginx/pull/9172
+* Update helm chart changelog to show that kubernetes v1.21.x is no longer supported by @cskinfill in https://github.com/kubernetes/ingress-nginx/pull/9147
+* Add section to troubleshooting docs for failure to listen on port by @jrhunger in https://github.com/kubernetes/ingress-nginx/pull/9185
+* Implement parseFloat for annotations by @kirs in https://github.com/kubernetes/ingress-nginx/pull/9195
+* fix typo in docs. by @guettli in https://github.com/kubernetes/ingress-nginx/pull/9167
+* add:(admission-webhooks) ability to set securityContext by @ybelMekk in https://github.com/kubernetes/ingress-nginx/pull/9186
+* Fix Markdown header level by @jaens in https://github.com/kubernetes/ingress-nginx/pull/9210
+* chore: bump NGINX version v1.21.4 by @tao12345666333 in https://github.com/kubernetes/ingress-nginx/pull/8889
+* chore: update NGINX to 1.21.6 by @tao12345666333 in https://github.com/kubernetes/ingress-nginx/pull/9231
+* fix svc long name by @tombokombo in https://github.com/kubernetes/ingress-nginx/pull/9245
+* update base image of nginx to 1.21.6 by @strongjz in https://github.com/kubernetes/ingress-nginx/pull/9257
+* Fix CVE-2022-32149 by @esigo in https://github.com/kubernetes/ingress-nginx/pull/9258
+* Fix CVE-2022-1996 by @esigo in https://github.com/kubernetes/ingress-nginx/pull/9244
+* Adding support for disabling liveness and readiness probes to the Helm chart by @njegosrailic in https://github.com/kubernetes/ingress-nginx/pull/9238
+* fix CVE-2022-27664 by @esigo in https://github.com/kubernetes/ingress-nginx/pull/9273
+* Add CVE-2022-27664 #9273 in latest release  by @strongjz in https://github.com/kubernetes/ingress-nginx/pull/9275
+
+### Dependencies updates:
+
+* Bump docker/setup-buildx-action from 2.0.0 to 2.1.0 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9180
+* Bump dorny/paths-filter from 2.10.2 to 2.11.1 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9183
+* Bump helm/chart-releaser-action from 1.4.0 to 1.4.1 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9136
+* Bump github/codeql-action from 2.1.25 to 2.1.27 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9137
+* Bump ossf/scorecard-action from 2.0.3 to 2.0.4 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9138
+* Bump google.golang.org/grpc from 1.49.0 to 1.50.0 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9134
+* Bump actions/checkout from 3.0.2 to 3.1.0 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9135
+* Bump actions/dependency-review-action from 2.5.0 to 2.5.1 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9237
+* Bump github/codeql-action from 2.1.28 to 2.1.29 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9236
+* Bump github.com/spf13/cobra from 1.6.0 to 1.6.1 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9233
+* Bump actions/upload-artifact from 3.1.0 to 3.1.1 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9234
+* Bump azure/setup-helm from 3.3 to 3.4 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9235
+* Bump github.com/onsi/ginkgo/v2 from 2.3.1 to 2.4.0 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9201
+* Bump goreleaser/goreleaser-action from 3.1.0 to 3.2.0 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9208
+* Bump github.com/stretchr/testify from 1.8.0 to 1.8.1 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9202
+* Bump ossf/scorecard-action from 2.0.4 to 2.0.6 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9203
+* Bump docker/setup-buildx-action from 2.1.0 to 2.2.1 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9204
+* Bump actions/setup-go from 3.3.0 to 3.3.1 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9205
+* Bump github/codeql-action from 2.1.27 to 2.1.28 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9206
+* Bump actions/download-artifact from 3.0.0 to 3.0.1 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9207
+* Bump github.com/prometheus/client_model from 0.2.0 to 0.3.0 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9200
+* Bump github.com/spf13/cobra from 1.5.0 to 1.6.0 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9173
+* Bump google.golang.org/grpc from 1.50.0 to 1.50.1 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9174
+* Bump k8s.io/component-base from 0.25.2 to 0.25.3 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9175
+* Bump github.com/fsnotify/fsnotify from 1.5.4 to 1.6.0 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9176
+* Bump github.com/onsi/ginkgo/v2 from 2.2.0 to 2.3.1 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9177
+* Bump geekyeggo/delete-artifact from 1.0.0 to 2.0.0 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9178
+* Bump actions/dependency-review-action from 2.4.0 to 2.5.0 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9179
+* Bump docker/setup-qemu-action from 2.0.0 to 2.1.0 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9181
+* Bump securego/gosec from 2.13.1 to 2.14.0 by @dependabot in https://github.com/kubernetes/ingress-nginx/pull/9182
+
+
+## New Contributors
+* @yutachaos made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9117
+* @Gacko made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9123
+* @loveRhythm1990 made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9103
+* @johanneswuerbach made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9131
+* @FutureMatt made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9133
+* @Sanghamitra-PERSONAL made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9098
+* @scraly made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9171
+* @cskinfill made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9147
+* @jrhunger made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9185
+* @guettli made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9167
+* @ybelMekk made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9186
+* @jaens made their first contribution in https://github.com/kubernetes/ingress-nginx/pull/9210
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.4.0...controller-v1.5.1
 
 ###  1.4.0
 
@@ -49,8 +143,6 @@ REMOVED
 
 Also upgraded to golang 1.19.1
 
-
-
 Images:
 
 * registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
diff --git a/README.md b/README.md
index 1af0a6000..f8c020b68 100644
--- a/README.md
+++ b/README.md
@@ -6,17 +6,11 @@
 [![GitHub stars](https://img.shields.io/github/stars/kubernetes/ingress-nginx.svg)](https://github.com/kubernetes/ingress-nginx/stargazers)
 [![GitHub stars](https://img.shields.io/badge/contributions-welcome-orange.svg)](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md)
 
-### Community Update
-
-We will discuss the results of our Community Survey, progress on the stabilization project, and ideas going
-forward with the project at [Kubecon NA 2022 in Detroit](https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/). Come join us and let us hear what you'd like to see in the
-future for ingress-nginx.
-
-https://kccncna2022.sched.com/event/18lgl?iframe=no
 
 ## Overview
 
-ingress-nginx is an Ingress controller for Kubernetes using [NGINX](https://www.nginx.org/) as a reverse proxy and load balancer.
+ingress-nginx is an Ingress controller for Kubernetes using [NGINX](https://www.nginx.org/) as a reverse proxy and load 
+balancer.
 
 [Learn more about Ingress on the main Kubernetes documentation site](https://kubernetes.io/docs/concepts/services-networking/ingress/).
 
@@ -26,18 +20,25 @@ See the [Getting Started](https://kubernetes.github.io/ingress-nginx/deploy/) do
 
 ## Troubleshooting
 
-If you encounter issues, review the [troubleshooting docs](docs/troubleshooting.md), [file an issue](https://github.com/kubernetes/ingress-nginx/issues), or talk to us on the [#ingress-nginx channel](https://kubernetes.slack.com/messages/ingress-nginx) on the Kubernetes Slack server.
+If you encounter issues, review the [troubleshooting docs](docs/troubleshooting.md), 
+[file an issue](https://github.com/kubernetes/ingress-nginx/issues), or talk to us on the 
+[#ingress-nginx channel](https://kubernetes.slack.com/messages/ingress-nginx) on the Kubernetes Slack server.
 
 ## Changelog
 
 See [the list of releases](https://github.com/kubernetes/ingress-nginx/releases) to find out about feature changes.
 For detailed changes for each release; please check the [Changelog.md](Changelog.md) file.
-For detailed changes on the `ingress-nginx` helm chart, please check the following [CHANGELOG.md](charts/ingress-nginx/CHANGELOG.md) file.
+For detailed changes on the `ingress-nginx` helm chart, please check the following 
+[CHANGELOG.md](charts/ingress-nginx/CHANGELOG.md) file.
 
-### Support Versions table 
+### Supported Versions table 
+
+Supported versions for the ingress-nginx project mean that we have completed E2E tests, and they are passing for
+the versions listed. Ingress-Nginx versions may work on older versions but the project does not make that guarantee. 
 
 | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
+| v1.5.1                | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        |
 | v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      |
 | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      |
 | v1.3.0                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.0         | 1.19.10†      |
@@ -54,29 +55,28 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 | v1.0.0                | 1.22, 1.21, 1.20, 1.19       | 3.13.5         | 1.20.1        |
 
 
-† _This build is [patched against CVE-2021-23017](https://github.com/openresty/openresty/commit/4b5ec7edd78616f544abc194308e0cf4b788725b#diff-42ef841dc27fe0b5aa2d06bd31308bb63a59cdcddcbcddd917248349d22020a3)._
+† _This build is 
+[patched against CVE-2021-23017](https://github.com/openresty/openresty/commit/4b5ec7edd78616f544abc194308e0cf4b788725b#diff-42ef841dc27fe0b5aa2d06bd31308bb63a59cdcddcbcddd917248349d22020a3)._
 
-See [this article](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/) if you want upgrade to the stable Ingress API. 
+See [this article](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/) if you want upgrade to the stable 
+Ingress API. 
 
 ## Get Involved
 
 Thanks for taking the time to join our community and start contributing!
 
-- This project adheres to the [Kubernetes Community Code of Conduct](https://git.k8s.io/community/code-of-conduct.md). By participating in this project, you agree to abide by its terms.
+- This project adheres to the [Kubernetes Community Code of Conduct](https://git.k8s.io/community/code-of-conduct.md). 
+  By participating in this project, you agree to abide by its terms.
 
 - **Contributing**: Contributions of all kind are welcome!
   
-  - Read [`CONTRIBUTING.md`](CONTRIBUTING.md) for information about setting up your environment, the workflow that we expect, and instructions on the developer certificate of origin that we require.
-
+  - Read [`CONTRIBUTING.md`](CONTRIBUTING.md) for information about setting up your environment, the workflow that we 
+    expect, and instructions on the developer certificate of origin that we require.
   - Join our Kubernetes Slack channel for developer discussion : [#ingress-nginx-dev](https://kubernetes.slack.com/archives/C021E147ZA4).
-  
-  - Submit github issues for any feature enhancements, bugs or documentation problems. Please make sure to read the [Issue Reporting Checklist](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md#issue-reporting-guidelines) before opening an issue. Issues not conforming to the guidelines **may be closed immediately**.
-
-- **Support**: Join the [#ingress-nginx-users](https://kubernetes.slack.com/messages/CANQGM8BA/) channel inside the [Kubernetes Slack](http://slack.kubernetes.io/) to ask questions or get support from the maintainers and other users.
-  
+  - Submit GitHub issues for any feature enhancements, bugs or documentation problems. Please make sure to read the [Issue Reporting Checklist](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md#issue-reporting-guidelines) before opening an issue. Issues not conforming to the guidelines **may be closed immediately**.
+  - **Support**: Join the [#ingress-nginx-users](https://kubernetes.slack.com/messages/CANQGM8BA/) channel inside the [Kubernetes Slack](http://slack.kubernetes.io/) to ask questions or get support from the maintainers and other users.
   - The [GitHub issues](https://github.com/kubernetes/ingress-nginx/issues) in the repository are **exclusively** for bug reports and feature requests.
-
-- **Discuss**: Tweet using the `#IngressNginx` hashtag.
+  - **Discuss**: Tweet using the `#IngressNginx` hashtag.
 
 ## License
 
diff --git a/charts/ingress-nginx/CHANGELOG.md b/charts/ingress-nginx/CHANGELOG.md
index 2ec24733e..1b7adb25b 100644
--- a/charts/ingress-nginx/CHANGELOG.md
+++ b/charts/ingress-nginx/CHANGELOG.md
@@ -2,6 +2,13 @@
 
 This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
 
+### 4.4.0
+
+* Adding support for disabling liveness and readiness probes to the Helm chart by @njegosrailic in https://github.com/kubernetes/ingress-nginx/pull/9238
+* add:(admission-webhooks) ability to set securityContext by @ybelMekk in https://github.com/kubernetes/ingress-nginx/pull/9186
+* #7652 - Updated Helm chart to use the fullname for the electionID if not specified. by @FutureMatt in https://github.com/kubernetes/ingress-nginx/pull/9133
+* Rename controller-wehbooks-networkpolicy.yaml. by @Gacko in https://github.com/kubernetes/ingress-nginx/pull/9123
+
 ### 4.3.0 
 - Support for Kubernetes v.1.25.0 was added and support for endpoint slices
 - Support for Kubernetes v1.20.0 and v1.21.0 was removed
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 9cf62ecf9..461601f59 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,8 +2,8 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.3.0
-appVersion: 1.4.0
+version: 4.4.0
+appVersion: 1.5.1
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
@@ -25,7 +25,7 @@ annotations:
   # List of changes for the release in artifacthub.io
   # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
   artifacthub.io/changes: |
-    - "[8890](https://github.com/kubernetes/ingress-nginx/pull/8890) migrate to endpointslices"
-    - "[9059](https://github.com/kubernetes/ingress-nginx/pull/9059) kubewebhookcertgen sha change after go1191"
-    - "[9046](https://github.com/kubernetes/ingress-nginx/pull/9046) Parameterize metrics port name"
-    - "[9104](https://github.com/kubernetes/ingress-nginx/pull/9104) Fix yaml formatting error with multiple annotations"
+    - Adding support for disabling liveness and readiness probes to the Helm chart
+    - add:(admission-webhooks) ability to set securityContext
+    - Updated Helm chart to use the fullname for the electionID if not specified
+    - Rename controller-wehbooks-networkpolicy.yaml
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 6ce41792e..bf4dcc8cd 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.3.0](https://img.shields.io/badge/Version-4.3.0-informational?style=flat-square) ![AppVersion: 1.4.0](https://img.shields.io/badge/AppVersion-1.4.0-informational?style=flat-square)
+![Version: 4.4.0](https://img.shields.io/badge/Version-4.4.0-informational?style=flat-square) ![AppVersion: 1.5.1](https://img.shields.io/badge/AppVersion-1.5.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -312,13 +312,13 @@ Kubernetes: `>=1.20.0-0`
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143"` |  |
-| controller.image.digestChroot | string | `"sha256:b67e889f1db8692de7e41d4d9aef8de56645bf048261f31fa7f8bfc6ea2222a0"` |  |
+| controller.image.digest | string | `"sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629"` |  |
+| controller.image.digestChroot | string | `"sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529bad0d178fb36147345"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.4.0"` |  |
+| controller.image.tag | string | `"v1.5.1"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 9092a5de9..6304f2637 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -23,9 +23,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.4.0"
-    digest: sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
-    digestChroot: sha256:b67e889f1db8692de7e41d4d9aef8de56645bf048261f31fa7f8bfc6ea2222a0
+    tag: "v1.5.1"
+    digest: sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+    digestChroot: sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529bad0d178fb36147345
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 5c656bfae..fbdf9486a 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -93,7 +93,7 @@ rules:
 - apiGroups:
   - ""
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - configmaps
   verbs:
@@ -108,7 +108,7 @@ rules:
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - leases
   verbs:
@@ -144,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -359,7 +359,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -392,7 +392,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,7 +415,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -437,7 +437,7 @@ spec:
       - args:
         - /nginx-ingress-controller
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
+        - --election-id=ingress-nginx-leader
         - --controller-class=k8s.io/ingress-nginx
         - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
@@ -455,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -527,7 +527,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -538,7 +538,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -574,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -623,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -636,7 +636,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 91886150d..73ec24286 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -93,7 +93,7 @@ rules:
 - apiGroups:
   - ""
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - configmaps
   verbs:
@@ -108,7 +108,7 @@ rules:
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - leases
   verbs:
@@ -144,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -368,7 +368,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -401,7 +401,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -424,7 +424,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -446,7 +446,7 @@ spec:
       - args:
         - /nginx-ingress-controller
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
+        - --election-id=ingress-nginx-leader
         - --controller-class=k8s.io/ingress-nginx
         - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
@@ -464,7 +464,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -539,7 +539,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -550,7 +550,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -586,7 +586,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -597,7 +597,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -635,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -648,7 +648,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index bb9ce026c..9e6e905bb 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -93,7 +93,7 @@ rules:
 - apiGroups:
   - ""
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - configmaps
   verbs:
@@ -108,7 +108,7 @@ rules:
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - leases
   verbs:
@@ -144,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,7 +355,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -387,7 +387,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -410,7 +410,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -431,7 +431,7 @@ spec:
       containers:
       - args:
         - /nginx-ingress-controller
-        - --election-id=ingress-controller-leader
+        - --election-id=ingress-nginx-leader
         - --controller-class=k8s.io/ingress-nginx
         - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
@@ -449,7 +449,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,7 +521,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -532,7 +532,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -568,7 +568,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -579,7 +579,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -617,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -630,7 +630,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 372c71909..dd986a55d 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -93,7 +93,7 @@ rules:
 - apiGroups:
   - ""
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - configmaps
   verbs:
@@ -108,7 +108,7 @@ rules:
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - leases
   verbs:
@@ -144,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,7 +355,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -388,7 +388,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -411,7 +411,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -433,7 +433,7 @@ spec:
       - args:
         - /nginx-ingress-controller
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
+        - --election-id=ingress-nginx-leader
         - --controller-class=k8s.io/ingress-nginx
         - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
@@ -451,7 +451,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -570,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -619,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -632,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index c7da768ff..64e0366b4 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -93,7 +93,7 @@ rules:
 - apiGroups:
   - ""
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - configmaps
   verbs:
@@ -108,7 +108,7 @@ rules:
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - leases
   verbs:
@@ -144,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -358,7 +358,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,7 +391,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -414,7 +414,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -436,7 +436,7 @@ spec:
       - args:
         - /nginx-ingress-controller
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
+        - --election-id=ingress-nginx-leader
         - --controller-class=k8s.io/ingress-nginx
         - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
@@ -454,7 +454,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,7 +526,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -537,7 +537,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -573,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -622,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index dfb0e8f7d..d6a40aed9 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -93,7 +93,7 @@ rules:
 - apiGroups:
   - ""
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - configmaps
   verbs:
@@ -108,7 +108,7 @@ rules:
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - leases
   verbs:
@@ -144,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -364,7 +364,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -397,7 +397,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -420,7 +420,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -442,7 +442,7 @@ spec:
       - args:
         - /nginx-ingress-controller
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
+        - --election-id=ingress-nginx-leader
         - --controller-class=k8s.io/ingress-nginx
         - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
@@ -460,7 +460,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -532,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -543,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -579,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -590,7 +590,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -628,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -641,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index cde5ece76..62ead9e34 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -93,7 +93,7 @@ rules:
 - apiGroups:
   - ""
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - configmaps
   verbs:
@@ -108,7 +108,7 @@ rules:
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - leases
   verbs:
@@ -144,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,7 +355,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -387,7 +387,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -410,7 +410,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -435,7 +435,7 @@ spec:
       containers:
       - args:
         - /nginx-ingress-controller
-        - --election-id=ingress-controller-leader
+        - --election-id=ingress-nginx-leader
         - --controller-class=k8s.io/ingress-nginx
         - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
@@ -455,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -537,7 +537,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -548,7 +548,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -584,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -595,7 +595,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -633,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -646,7 +646,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 25880d180..d52f01489 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -93,7 +93,7 @@ rules:
 - apiGroups:
   - ""
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - configmaps
   verbs:
@@ -108,7 +108,7 @@ rules:
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
-  - ingress-controller-leader
+  - ingress-nginx-leader
   resources:
   - leases
   verbs:
@@ -144,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -358,7 +358,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,7 +391,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -414,7 +414,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -436,7 +436,7 @@ spec:
       - args:
         - /nginx-ingress-controller
         - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-controller-leader
+        - --election-id=ingress-nginx-leader
         - --controller-class=k8s.io/ingress-nginx
         - --ingress-class=nginx
         - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
@@ -454,7 +454,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.4.0@sha256:34ee929b111ffc7aa426ffd409af44da48e5a0eea1eb2207994d9e0c0882d143
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,7 +526,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -537,7 +537,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -573,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.4.0
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -622,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.4.0
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 3f99c7a44..29495b5c0 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -62,7 +62,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -225,7 +225,7 @@ In AWS, we use a Network load balancer (NLB) to expose the NGINX Ingress control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -233,10 +233,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -282,7 +282,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -299,7 +299,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -307,7 +307,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -315,7 +315,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -330,7 +330,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -357,7 +357,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.4.0/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),

From 726d7e6239807c4cde0b6c51fe24de256b43c18e Mon Sep 17 00:00:00 2001
From: pellmont <dev+github@ppo2.ch>
Date: Thu, 10 Nov 2022 11:38:54 +0100
Subject: [PATCH 0472/1641] add containerSecurityContext to extraModules init
 containers (kubernetes#9016) (#9242)

---
 charts/ingress-nginx/README.md                       |  2 +-
 ...-extra-modules-default-container-sec-context.yaml | 12 ++++++++++++
 ...extra-modules-specific-container-sec-context.yaml | 12 ++++++++++++
 .../templates/controller-daemonset.yaml              |  6 ++++++
 .../templates/controller-deployment.yaml             |  3 +++
 charts/ingress-nginx/values.yaml                     |  4 +++-
 6 files changed, 37 insertions(+), 2 deletions(-)
 create mode 100644 charts/ingress-nginx/ci/deployment-extra-modules-default-container-sec-context.yaml
 create mode 100644 charts/ingress-nginx/ci/deployment-extra-modules-specific-container-sec-context.yaml

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index bf4dcc8cd..f34615399 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -300,7 +300,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.extraContainers | list | `[]` | Additional containers to be added to the controller pod. See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example. |
 | controller.extraEnvs | list | `[]` | Additional environment variables to set |
 | controller.extraInitContainers | list | `[]` | Containers, which are run before the app containers are started. |
-| controller.extraModules | list | `[]` |  |
+| controller.extraModules | list | `[]` | Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module |
 | controller.extraVolumeMounts | list | `[]` | Additional volumeMounts to the controller main container. |
 | controller.extraVolumes | list | `[]` | Additional volumes to the controller pod. |
 | controller.healthCheckHost | string | `""` | Address to bind the health check endpoint. It is better to set this option to the internal node address if the ingress nginx controller is running in the `hostNetwork: true` mode. |
diff --git a/charts/ingress-nginx/ci/deployment-extra-modules-default-container-sec-context.yaml b/charts/ingress-nginx/ci/deployment-extra-modules-default-container-sec-context.yaml
new file mode 100644
index 000000000..2310c344e
--- /dev/null
+++ b/charts/ingress-nginx/ci/deployment-extra-modules-default-container-sec-context.yaml
@@ -0,0 +1,12 @@
+controller:
+  image:
+    repository: ingress-controller/controller
+    tag: 1.0.0-dev
+    digest: null
+  service:
+    type: ClusterIP
+  containerSecurityContext:
+    allowPrivilegeEscalation: false
+  extraModules:
+    - name: opentelemetry
+      image: busybox
diff --git a/charts/ingress-nginx/ci/deployment-extra-modules-specific-container-sec-context.yaml b/charts/ingress-nginx/ci/deployment-extra-modules-specific-container-sec-context.yaml
new file mode 100644
index 000000000..bd2f011cc
--- /dev/null
+++ b/charts/ingress-nginx/ci/deployment-extra-modules-specific-container-sec-context.yaml
@@ -0,0 +1,12 @@
+controller:
+  image:
+    repository: ingress-controller/controller
+    tag: 1.0.0-dev
+    digest: null
+  service:
+    type: ClusterIP
+  extraModules:
+    - name: opentelemetry
+      image: busybox
+      containerSecurityContext:
+        allowPrivilegeEscalation: false
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 4163e255c..802730331 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -181,6 +181,12 @@ spec:
           - name: {{ .Name }}
             image: {{ .Image }}
             command: ['sh', '-c', '/usr/local/bin/init_module.sh']
+            {{- if (or $.Values.controller.containerSecurityContext .containerSecurityContext) }}
+            securityContext: {{ .containerSecurityContext | default $.Values.controller.containerSecurityContext | toYaml | nindent 14 }}
+            {{- end }}
+            volumeMounts:
+              - name: modules
+                mountPath: /modules_mount
         {{- end }}
       {{- end }}
     {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index dfe4cae92..9dac747ea 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -187,6 +187,9 @@ spec:
           - name: {{ .name }}
             image: {{ .image }}
             command: ['sh', '-c', '/usr/local/bin/init_module.sh']
+            {{- if (or $.Values.controller.containerSecurityContext .containerSecurityContext) }}
+            securityContext: {{ .containerSecurityContext | default $.Values.controller.containerSecurityContext | toYaml | nindent 14 }}
+            {{- end }}
             volumeMounts:
               - name: modules
                 mountPath: /modules_mount
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 6304f2637..dc9980d14 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -577,10 +577,12 @@ controller:
   #   image: busybox
   #   command: ['sh', '-c', 'until nslookup myservice; do echo waiting for myservice; sleep 2; done;']
 
+  # -- Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module
   extraModules: []
-  ## Modules, which are mounted into the core nginx image
   # - name: opentelemetry
   #   image: registry.k8s.io/ingress-nginx/opentelemetry:v20220906-g981ce38a7@sha256:aa079daa7efd93aa830e26483a49a6343354518360929494bad1d0ad3303142e
+  #   containerSecurityContext:
+  #     allowPrivilegeEscalation: false
   #
   # The image must contain a `/usr/local/bin/init_module.sh` executable, which
   # will be executed as initContainers, to move its config files within the

From 170af7be88ccbcd3a13f67811ab728d056377a26 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Thu, 10 Nov 2022 12:20:54 +0100
Subject: [PATCH 0473/1641] PDB: Add `maxUnavailable`. (#9278)

---
 charts/ingress-nginx/README.md                                | 2 +-
 .../templates/controller-poddisruptionbudget.yaml             | 4 ++++
 charts/ingress-nginx/values.yaml                              | 3 +++
 3 files changed, 8 insertions(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index f34615399..f4486ac91 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -367,7 +367,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.metrics.serviceMonitor.relabelings | list | `[]` |  |
 | controller.metrics.serviceMonitor.scrapeInterval | string | `"30s"` |  |
 | controller.metrics.serviceMonitor.targetLabels | list | `[]` |  |
-| controller.minAvailable | int | `1` |  |
+| controller.minAvailable | int | `1` | Define either 'minAvailable' or 'maxUnavailable', never both. |
 | controller.minReadySeconds | int | `0` | `minReadySeconds` to avoid killing pods before we are ready # |
 | controller.name | string | `"controller"` |  |
 | controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment # Ref: https://kubernetes.io/docs/user-guide/node-selection/ # |
diff --git a/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml b/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
index 8dfbe9891..899d3cc5d 100644
--- a/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
+++ b/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
@@ -15,5 +15,9 @@ spec:
     matchLabels:
       {{- include "ingress-nginx.selectorLabels" . | nindent 6 }}
       app.kubernetes.io/component: controller
+  {{- if .Values.controller.minAvailable }}
   minAvailable: {{ .Values.controller.minAvailable }}
+  {{- else if .Values.controller.maxUnavailable }}
+  maxUnavailable: {{ .Values.controller.maxUnavailable }}
+  {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index dc9980d14..c71fd2080 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -345,7 +345,10 @@ controller:
 
   replicaCount: 1
 
+  # -- Define either 'minAvailable' or 'maxUnavailable', never both.
   minAvailable: 1
+  # -- Define either 'minAvailable' or 'maxUnavailable', never both.
+  # maxUnavailable: 1
 
   ## Define requests resources to avoid probe issues due to CPU utilization in busy nodes
   ## ref: https://github.com/kubernetes/ingress-nginx/issues/4735#issuecomment-551204903

From 69a811dde9368f0464c1e050648a979a67fad3e8 Mon Sep 17 00:00:00 2001
From: Michael Wittig <948604+Sh4kE@users.noreply.github.com>
Date: Thu, 10 Nov 2022 14:48:56 +0100
Subject: [PATCH 0474/1641] fix broken annotation yaml (#9243)

---
 charts/ingress-nginx/templates/controller-serviceaccount.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/templates/controller-serviceaccount.yaml b/charts/ingress-nginx/templates/controller-serviceaccount.yaml
index e31819f7c..e6e776d09 100644
--- a/charts/ingress-nginx/templates/controller-serviceaccount.yaml
+++ b/charts/ingress-nginx/templates/controller-serviceaccount.yaml
@@ -12,7 +12,7 @@ metadata:
   namespace: {{ .Release.Namespace }}
   {{- if .Values.serviceAccount.annotations }}
   annotations:
-  {{- toYaml .Values.serviceAccount.annotations | indent 4 }}
+  {{- toYaml .Values.serviceAccount.annotations | nindent 4 }}
   {{- end }}
 automountServiceAccountToken: {{ .Values.serviceAccount.automountServiceAccountToken }}
 {{- end }}

From 3db3c19685a6f74859a95859ff75ca87890752c5 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 11 Nov 2022 10:00:10 -0500
Subject: [PATCH 0475/1641] run helm release on main only and when the
 chart/value changes only (#9290)

Signed-off-by: James Strong <strong.james.e@gmail.com>

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/helm.yaml | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 4dadc9349..33e06bbdc 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -4,7 +4,6 @@ on:
   push:
     branches:
       - main
-      - legacy
 
 permissions:
   contents: read
@@ -34,7 +33,7 @@ jobs:
           filters: |
             charts:
               - 'charts/ingress-nginx/Chart.yaml'
-              - 'charts/ingress-nginx/**/*'
+              - 'charts/ingress-nginx/values.yaml'
 
   chart:
     name: Release Chart
@@ -52,7 +51,7 @@ jobs:
     steps:
 
       - name: Checkout master
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
+        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
@@ -64,10 +63,10 @@ jobs:
           git config --global user.email "$GITHUB_ACTOR@users.noreply.github.com"
       
       - name: Helm Chart Releaser
-        uses: helm/chart-releaser-action@v1.4.1
+        uses: helm/chart-releaser-action@98bccfd32b0f76149d188912ac8e45ddd3f8695f #v1.4.1
         env:
           CR_SKIP_EXISTING: "false"
           CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
           CR_RELEASE_NAME_TEMPLATE: "helm-chart-{{ .Version }}"
         with:
-          charts_dir: charts
+          charts_dir: charts
\ No newline at end of file

From f08369cdc6d69e5fd8f88644843c884683ae9f49 Mon Sep 17 00:00:00 2001
From: Joseph Richardson <49208786+JoeHCQ1@users.noreply.github.com>
Date: Sun, 13 Nov 2022 14:29:56 -0500
Subject: [PATCH 0476/1641] Fixed indentation in commented-out autoscaling
 (#9225)

---
 charts/ingress-nginx/values.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index c71fd2080..35f922f6b 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -372,7 +372,7 @@ controller:
     behavior: {}
       # scaleDown:
       #   stabilizationWindowSeconds: 300
-      #  policies:
+      #   policies:
       #   - type: Pods
       #     value: 1
       #     periodSeconds: 180

From a66ee73c5adb005fc4626d2bc750e7fe7f1125ff Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Mon, 14 Nov 2022 20:50:43 +0100
Subject: [PATCH 0477/1641] OpenTelemetry static linking (#9286)

* static otel lib

* clean

* nginx 1.21
---
 images/opentelemetry/rootfs/CMakeLists.txt |  2 +-
 images/opentelemetry/rootfs/Dockerfile     |  2 +-
 images/opentelemetry/rootfs/build.sh       | 48 +---------------------
 3 files changed, 4 insertions(+), 48 deletions(-)

diff --git a/images/opentelemetry/rootfs/CMakeLists.txt b/images/opentelemetry/rootfs/CMakeLists.txt
index 7278016a0..e4abc7346 100644
--- a/images/opentelemetry/rootfs/CMakeLists.txt
+++ b/images/opentelemetry/rootfs/CMakeLists.txt
@@ -80,7 +80,7 @@ ExternalProject_Add(
              -DgRPC_SSL_PROVIDER=package
              -DOPENSSL_ROOT_DIR=OpenSSL
              -DgRPC_BUILD_TESTS=OFF
-             -DBUILD_SHARED_LIBS=ON
+             -DBUILD_SHARED_LIBS=OFF
              -DgRPC_INSTALL=ON
   CMAKE_CACHE_ARGS -DCMAKE_CXX_FLAGS:STRING=${CMAKE_CXX_FLAGS}
   TEST_AFTER_INSTALL 0
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index f8fb37811..3c137dbe2 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -39,7 +39,7 @@ COPY --from=grpc /opt/third_party/install/ /usr
 COPY --from=otel-cpp /opt/third_party/install/ /usr
 RUN bash /opt/third_party/build.sh -n
 
-FROM alpine:3.16.2
+FROM alpine:3.16.2 as final
 COPY --from=base /opt/third_party/init_module.sh /usr/local/bin/init_module.sh
 COPY --from=nginx /etc/nginx/modules /etc/nginx/modules
 COPY --from=nginx /opt/third_party/install/lib /etc/nginx/modules
diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
index 91298274d..19914932c 100755
--- a/images/opentelemetry/rootfs/build.sh
+++ b/images/opentelemetry/rootfs/build.sh
@@ -97,7 +97,7 @@ install_otel()
         -DWITH_JAEGER=OFF \
         -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
         -DBUILD_TESTING=OFF \
-        -DBUILD_SHARED_LIBS=ON \
+        -DBUILD_SHARED_LIBS=OFF \
         -DWITH_OTLP=ON \
         -DWITH_OTLP_GRPC=ON \
         -DWITH_EXAMPLES=OFF \
@@ -123,7 +123,7 @@ get_src()
 
 install_nginx()
 {
-  export NGINX_VERSION=1.19.10
+  export NGINX_VERSION=1.21.6
 
   # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/2656a4...main
   export OPENTELEMETRY_CONTRIB_COMMIT=6467ec2e4d67b08b44580b7eb7a298786f4eef91
@@ -153,50 +153,6 @@ install_nginx()
   cp ${INSTAL_DIR}/otel_ngx_module.so /etc/nginx/modules/otel_ngx_module.so
 
   mkdir -p ${INSTAL_DIR}/lib
-  cp /usr/lib/libopentelemetry_exporter_otlp_grpc.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libopentelemetry_otlp_recordable.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libprotobuf.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libopentelemetry_trace.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libopentelemetry_resources.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libopentelemetry_common.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libstdc++.so* ${INSTAL_DIR}/lib
-
-  cp /usr/lib/libgrpc.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libgcc_s.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libgrpc++.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_bad_variant_access.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_synchronization.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_raw_hash_set.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_hash.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_statusor.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libgpr.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libupb.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_status.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_time.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_strings.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_stacktrace.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_symbolize.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_malloc_internal.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_base.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_spinlock_wait.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_raw_logging_internal.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libre2.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libaddress_sorting.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_cord.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_bad_optional_access.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_str_format_internal.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_throw_delegate.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_time_zone.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_city.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_low_level_hash.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_cordz_info.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_int128.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_strings_internal.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_debugging_internal.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_cord_internal.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_cordz_functions.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_cordz_handle.so* ${INSTAL_DIR}/lib
-  cp /usr/lib/libabsl_exponential_biased.so* ${INSTAL_DIR}/lib
 }
 
 while getopts ":hpng:o:" option; do

From f6af3b460a262bc75278ea17e15f2c16ac69b7f3 Mon Sep 17 00:00:00 2001
From: Gabriel Gosselin <12598930+toutougabi@users.noreply.github.com>
Date: Mon, 14 Nov 2022 21:58:41 -0500
Subject: [PATCH 0478/1641] Missing controller.ingressClass (#9304)

The missing controller.ingressClass would set the deployment to the default class but the controller.ingressClassResource.name would set the creation of a new IngressClass object.

For now this needs to be done twice, could be a fix in the chart later on.
---
 docs/index.md | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/docs/index.md b/docs/index.md
index 5687bf5d3..fded1b2bc 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -223,6 +223,7 @@ If you start Ingress-Nginx B with the command line argument `--watch-ingress-wit
   helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
   --namespace ingress-nginx-2 \
   --set controller.ingressClassResource.name=nginx-two \
+  --set controller.ingressClass=nginx-two \
   --set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
   --set controller.ingressClassResource.enabled=true \
   --set controller.ingressClassByName=true
@@ -234,7 +235,9 @@ If you start Ingress-Nginx B with the command line argument `--watch-ingress-wit
   --namespace kube-system \
   --set controller.electionID=nginx-two-leader \
   --set controller.ingressClassResource.name=nginx-two \
+  --set controller.ingressClass=nginx-two \
   --set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
   --set controller.ingressClassResource.enabled=true \
   --set controller.ingressClassByName=true
-  ```
\ No newline at end of file
+  ```
+  - Note, controller.ingressClassResource.name and controller.ingressClass have to be set with the value of the new class as the first is to create the IngressClass object and the other is to modify the deployment of the actuall ingress controller pod.

From 1930b1467d93238bbcd96daac8e3863a91e58747 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Tue, 15 Nov 2022 18:34:42 +0530
Subject: [PATCH 0479/1641] added SAN to cert create command (#9295)

---
 docs/user-guide/tls.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/tls.md b/docs/user-guide/tls.md
index 3d5234c0c..11338981b 100644
--- a/docs/user-guide/tls.md
+++ b/docs/user-guide/tls.md
@@ -10,7 +10,7 @@ Anytime we reference a TLS secret, we mean a PEM-encoded X.509, RSA (2048) secre
 You can generate a self-signed certificate and private key with:
 
 ```bash
-$ openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout ${KEY_FILE} -out ${CERT_FILE} -subj "/CN=${HOST}/O=${HOST}"
+$ openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout ${KEY_FILE} -out ${CERT_FILE} -subj "/CN=${HOST}/O=${HOST}" -addext "subjectAltName = DNS:${HOST}"
 ```
 
 Then create the secret in the cluster via:

From 2422f16c3afc4fa3d6b408126336a1c115daa326 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 15 Nov 2022 14:22:48 -0800
Subject: [PATCH 0480/1641] Bump k8s.io/component-base from 0.25.3 to 0.25.4
 (#9300)

Bumps [k8s.io/component-base](https://github.com/kubernetes/component-base) from 0.25.3 to 0.25.4.
- [Release notes](https://github.com/kubernetes/component-base/releases)
- [Commits](https://github.com/kubernetes/component-base/compare/v0.25.3...v0.25.4)

---
updated-dependencies:
- dependency-name: k8s.io/component-base
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 59 ++++++++++++++++++++++++++++++++++++++++++++++++++--------
 2 files changed, 55 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index 3be4325f6..7bcc6b487 100644
--- a/go.mod
+++ b/go.mod
@@ -29,14 +29,14 @@ require (
 	google.golang.org/grpc v1.50.1
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.25.3
+	k8s.io/api v0.25.4
 	k8s.io/apiextensions-apiserver v0.25.0
-	k8s.io/apimachinery v0.25.3
+	k8s.io/apimachinery v0.25.4
 	k8s.io/apiserver v0.25.0
 	k8s.io/cli-runtime v0.25.0
-	k8s.io/client-go v0.25.3
+	k8s.io/client-go v0.25.4
 	k8s.io/code-generator v0.25.0
-	k8s.io/component-base v0.25.3
+	k8s.io/component-base v0.25.4
 	k8s.io/klog/v2 v2.80.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.13.1
diff --git a/go.sum b/go.sum
index e212f2972..9067276db 100644
--- a/go.sum
+++ b/go.sum
@@ -515,6 +515,49 @@ golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.6.0 h1:b9gGHsz9/HhJ3HF5DHQytPpuwocVTChQJK3AvoLRD5I=
 golang.org/x/mod v0.6.0/go.mod h1:4mET923SAdbXp2ki8ey+zGs1SLqsuM2Y0uvdZR/fUNI=
+golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
+golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
+golang.org/x/net v0.0.0-20190501004415-9ce7a6920f09/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
+golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
+golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
+golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20190628185345-da137c7871d7/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20190724013045-ca1201d0de80/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200114155413-6afb5195e5aa/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200202094626-16171245cfb2/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200222125558-5a598a2470a0/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200301022130-244492dfa37a/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200324143707-d3edc9973b7e/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20200501053045-e0ff5e5a1de5/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20200506145744-7e3656a0809f/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20200513185701-a91f0712d120/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20200520182314-0ba52f642ac2/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
+golang.org/x/net v0.0.0-20200707034311-ab3426394381/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
+golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
+golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20201031054903-ff519b6c9102/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20201209123823-ac852fbbde11/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
+golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
+golang.org/x/net v0.0.0-20210119194325-5f4716e94777/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
+golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
+golang.org/x/net v0.0.0-20210316092652-d523dce5a7f4/go.mod h1:RBQZq4jEuRlivfhVLdyRGr576XBO4/greRjx4P4O3yc=
+golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
+golang.org/x/net v0.0.0-20210503060351-7fd8e65b6420/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
+golang.org/x/net v0.0.0-20220225172249-27dd8689420f/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
 golang.org/x/net v0.1.0 h1:hZ/3BUoy5aId7sCpA/Tc5lt8DkFgdVS2onTpJsZ/fl0=
 golang.org/x/net v0.1.0/go.mod h1:Cx3nUiGt4eDBEyega/BKRp+/AlGL8hYe7U9odMt2Cco=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
@@ -870,22 +913,22 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.25.3 h1:Q1v5UFfYe87vi5H7NU0p4RXC26PPMT8KOpr1TLQbCMQ=
-k8s.io/api v0.25.3/go.mod h1:o42gKscFrEVjHdQnyRenACrMtbuJsVdP+WVjqejfzmI=
+k8s.io/api v0.25.4 h1:3YO8J4RtmG7elEgaWMb4HgmpS2CfY1QlaOz9nwB+ZSs=
+k8s.io/api v0.25.4/go.mod h1:IG2+RzyPQLllQxnhzD8KQNEu4c4YvyDTpSMztf4A0OQ=
 k8s.io/apiextensions-apiserver v0.25.0 h1:CJ9zlyXAbq0FIW8CD7HHyozCMBpDSiH7EdrSTCZcZFY=
 k8s.io/apiextensions-apiserver v0.25.0/go.mod h1:3pAjZiN4zw7R8aZC5gR0y3/vCkGlAjCazcg1me8iB/E=
-k8s.io/apimachinery v0.25.3 h1:7o9ium4uyUOM76t6aunP0nZuex7gDf8VGwkR5RcJnQc=
-k8s.io/apimachinery v0.25.3/go.mod h1:jaF9C/iPNM1FuLl7Zuy5b9v+n35HGSh6AQ4HYRkCqwo=
+k8s.io/apimachinery v0.25.4 h1:CtXsuaitMESSu339tfhVXhQrPET+EiWnIY1rcurKnAc=
+k8s.io/apimachinery v0.25.4/go.mod h1:jaF9C/iPNM1FuLl7Zuy5b9v+n35HGSh6AQ4HYRkCqwo=
 k8s.io/apiserver v0.25.0 h1:8kl2ifbNffD440MyvHtPaIz1mw4mGKVgWqM0nL+oyu4=
 k8s.io/apiserver v0.25.0/go.mod h1:BKwsE+PTC+aZK+6OJQDPr0v6uS91/HWxX7evElAH6xo=
 k8s.io/cli-runtime v0.25.0 h1:XBnTc2Fi+w818jcJGzhiJKQuXl8479sZ4FhtV5hVJ1Q=
 k8s.io/cli-runtime v0.25.0/go.mod h1:bHOI5ZZInRHhbq12OdUiYZQN8ml8aKZLwQgt9QlLINw=
-k8s.io/client-go v0.25.3 h1:oB4Dyl8d6UbfDHD8Bv8evKylzs3BXzzufLiO27xuPs0=
-k8s.io/client-go v0.25.3/go.mod h1:t39LPczAIMwycjcXkVc+CB+PZV69jQuNx4um5ORDjQA=
+k8s.io/client-go v0.25.4 h1:3RNRDffAkNU56M/a7gUfXaEzdhZlYhoW8dgViGy5fn8=
+k8s.io/client-go v0.25.4/go.mod h1:8trHCAC83XKY0wsBIpbirZU4NTUpbuhc2JnI7OruGZw=
 k8s.io/code-generator v0.25.0 h1:QP8fJuXu882ztf6dsqJsso/Btm94pMd68TAZC1rE6KI=
 k8s.io/code-generator v0.25.0/go.mod h1:B6jZgI3DvDFAualltPitbYMQ74NjaCFxum3YeKZZ+3w=
-k8s.io/component-base v0.25.3 h1:UrsxciGdrCY03ULT1h/S/gXFCOPnLhUVwSyx+hM/zq4=
-k8s.io/component-base v0.25.3/go.mod h1:WYoS8L+IlTZgU7rhAl5Ctpw0WdMxDfCC5dkxcEFa/TI=
+k8s.io/component-base v0.25.4 h1:n1bjg9Yt+G1C0WnIDJmg2fo6wbEU1UGMRiQSjmj7hNQ=
+k8s.io/component-base v0.25.4/go.mod h1:nnZJU8OP13PJEm6/p5V2ztgX2oyteIaAGKGMYb2L2cY=
 k8s.io/gengo v0.0.0-20211129171323-c02415ce4185 h1:TT1WdmqqXareKxZ/oNXEUSwKlLiHzPMyB0t8BaFeBYI=
 k8s.io/gengo v0.0.0-20211129171323-c02415ce4185/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=

From b6c6305523ae65114dabeca347fba7ab68e1c789 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 15 Nov 2022 14:24:47 -0800
Subject: [PATCH 0481/1641] Bump actions/dependency-review-action from 2.5.1 to
 3.0.0 (#9301)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 2.5.1 to 3.0.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/0efb1d1d84fc9633afcdaad14c485cbbc90ef46c...30d582111533d59ab793fd9f971817241654f3ec)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 85c91d664..39125cde4 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3.0.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@0efb1d1d84fc9633afcdaad14c485cbbc90ef46c #v2.0.2
+        uses: actions/dependency-review-action@30d582111533d59ab793fd9f971817241654f3ec #v2.0.2

From c1413e6079b0e642dcc923642b0df1c5baa29df9 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Thu, 17 Nov 2022 09:24:40 -0300
Subject: [PATCH 0482/1641] Validate ingress path fields  (#9309)

* Validate characters in path fields

* Add e2e tests for path validation

* Fix review comments
---
 internal/ingress/controller/store/store.go |   5 +
 pkg/util/ingress/ingress.go                |  25 ++++
 pkg/util/ingress/ingress_test.go           |  85 +++++++++++++
 test/e2e/security/invalid_paths.go         | 134 +++++++++++++++++++++
 4 files changed, 249 insertions(+)
 create mode 100644 test/e2e/security/invalid_paths.go

diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 7913eb0de..7f493bd8a 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -59,6 +59,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
+	ingressutils "k8s.io/ingress-nginx/pkg/util/ingress"
 )
 
 // IngressFilterFunc decides if an Ingress should be omitted or not
@@ -861,6 +862,10 @@ func (s *k8sStore) syncIngress(ing *networkingv1.Ingress) {
 			if path.Path == "" {
 				copyIng.Spec.Rules[ri].HTTP.Paths[pi].Path = "/"
 			}
+			if !ingressutils.IsSafePath(copyIng, path.Path) {
+				klog.Warningf("ingress %s contains invalid path %s", key, path.Path)
+				return
+			}
 		}
 	}
 
diff --git a/pkg/util/ingress/ingress.go b/pkg/util/ingress/ingress.go
index 7df2cc114..5fb3ee7b9 100644
--- a/pkg/util/ingress/ingress.go
+++ b/pkg/util/ingress/ingress.go
@@ -18,15 +18,30 @@ package ingress
 
 import (
 	"fmt"
+	"regexp"
 	"strings"
 
+	networkingv1 "k8s.io/api/networking/v1"
 	"k8s.io/apimachinery/pkg/util/sets"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/internal/net/ssl"
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 	"k8s.io/klog/v2"
 )
 
+const (
+	alphaNumericChars = `\-\.\_\~a-zA-Z0-9/`
+	regexEnabledChars = `\^\$\[\]\(\)\{\}\*\+`
+)
+
+var (
+	// pathAlphaNumeric is a regex validation of something like "^/[a-zA-Z]+$" on path
+	pathAlphaNumeric = regexp.MustCompile("^/[" + alphaNumericChars + "]*$").MatchString
+	// pathRegexEnabled is a regex validation of paths that may contain regex.
+	pathRegexEnabled = regexp.MustCompile("^/[" + alphaNumericChars + regexEnabledChars + "]*$").MatchString
+)
+
 func GetRemovedHosts(rucfg, newcfg *ingress.Configuration) []string {
 	oldSet := sets.NewString()
 	newSet := sets.NewString()
@@ -231,3 +246,13 @@ func BuildRedirects(servers []*ingress.Server) []*redirect {
 
 	return redirectServers
 }
+
+// IsSafePath verifies if the path used in ingress object contains only valid characters.
+// It will behave differently if regex is enabled or not
+func IsSafePath(copyIng *networkingv1.Ingress, path string) bool {
+	isRegex, _ := parser.GetBoolAnnotation("use-regex", copyIng)
+	if isRegex {
+		return pathRegexEnabled(path)
+	}
+	return pathAlphaNumeric(path)
+}
diff --git a/pkg/util/ingress/ingress_test.go b/pkg/util/ingress/ingress_test.go
index 24597fb6e..d829a57f1 100644
--- a/pkg/util/ingress/ingress_test.go
+++ b/pkg/util/ingress/ingress_test.go
@@ -17,8 +17,13 @@ limitations under the License.
 package ingress
 
 import (
+	"fmt"
 	"testing"
 
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+
+	networkingv1 "k8s.io/api/networking/v1"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
@@ -130,3 +135,83 @@ func TestIsDynamicConfigurationEnough(t *testing.T) {
 		t.Errorf("Expected new config to not change")
 	}
 }
+
+func generateDumbIngressforPathTest(regexEnabled bool) *networkingv1.Ingress {
+	var annotations = make(map[string]string)
+	regexAnnotation := fmt.Sprintf("%s/use-regex", parser.AnnotationsPrefix)
+	if regexEnabled {
+		annotations[regexAnnotation] = "true"
+	}
+	return &networkingv1.Ingress{
+		ObjectMeta: metav1.ObjectMeta{
+			Name:        "dumb",
+			Namespace:   "default",
+			Annotations: annotations,
+		},
+	}
+}
+
+func TestIsSafePath(t *testing.T) {
+	tests := []struct {
+		name    string
+		copyIng *networkingv1.Ingress
+		path    string
+		want    bool
+	}{
+		{
+			name:    "should accept valid path with regex disabled",
+			want:    true,
+			copyIng: generateDumbIngressforPathTest(false),
+			path:    "/xpto/~user/t-e_st.exe",
+		},
+		{
+			name:    "should accept valid path / with regex disabled",
+			want:    true,
+			copyIng: generateDumbIngressforPathTest(false),
+			path:    "/",
+		},
+		{
+			name:    "should reject invalid path with invalid chars",
+			want:    false,
+			copyIng: generateDumbIngressforPathTest(false),
+			path:    "/foo/bar/;xpto",
+		},
+		{
+			name:    "should reject regex path when regex is disabled",
+			want:    false,
+			copyIng: generateDumbIngressforPathTest(false),
+			path:    "/foo/bar/(.+)",
+		},
+		{
+			name:    "should accept valid path / with regex enabled",
+			want:    true,
+			copyIng: generateDumbIngressforPathTest(true),
+			path:    "/",
+		},
+		{
+			name:    "should accept regex path when regex is enabled",
+			want:    true,
+			copyIng: generateDumbIngressforPathTest(true),
+			path:    "/foo/bar/(.+)",
+		},
+		{
+			name:    "should reject regex path when regex is enabled but the path is invalid",
+			want:    false,
+			copyIng: generateDumbIngressforPathTest(true),
+			path:    "/foo/bar/;xpto",
+		},
+		{
+			name:    "should reject regex path when regex is enabled but the path is invalid",
+			want:    false,
+			copyIng: generateDumbIngressforPathTest(true),
+			path:    ";xpto",
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			if got := IsSafePath(tt.copyIng, tt.path); got != tt.want {
+				t.Errorf("IsSafePath() = %v, want %v", got, tt.want)
+			}
+		})
+	}
+}
diff --git a/test/e2e/security/invalid_paths.go b/test/e2e/security/invalid_paths.go
new file mode 100644
index 000000000..d75aefc2c
--- /dev/null
+++ b/test/e2e/security/invalid_paths.go
@@ -0,0 +1,134 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package security
+
+import (
+	"fmt"
+	"net/http"
+	"strings"
+
+	"github.com/onsi/ginkgo/v2"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+const (
+	validPath   = "/xpto/~user/t-e_st.exe"
+	invalidPath = "/foo/bar/;xpto"
+	regexPath   = "/foo/bar/(.+)"
+	host        = "securitytest.com"
+)
+
+var (
+	annotationRegex = map[string]string{
+		"nginx.ingress.kubernetes.io/use-regex": "true",
+	}
+)
+
+var _ = framework.IngressNginxDescribe("[Security] validate path fields", func() {
+	f := framework.NewDefaultFramework("validate-path")
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment()
+	})
+
+	ginkgo.It("should accept an ingress with valid path", func() {
+
+		ing := framework.NewSingleIngress(host, validPath, host, f.Namespace, framework.EchoService, 80, nil)
+
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
+			})
+
+		f.HTTPTestClient().
+			GET(validPath).
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+	})
+
+	ginkgo.It("should drop an ingress with invalid path", func() {
+
+		ing := framework.NewSingleIngress(host, invalidPath, host, f.Namespace, framework.EchoService, 80, nil)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return !strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
+			})
+
+		f.HTTPTestClient().
+			GET(invalidPath).
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+	})
+
+	ginkgo.It("should drop an ingress with regex path and regex disabled", func() {
+
+		ing := framework.NewSingleIngress(host, regexPath, host, f.Namespace, framework.EchoService, 80, nil)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return !strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
+			})
+
+		f.HTTPTestClient().
+			GET("/foo/bar/lalala").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+	})
+
+	ginkgo.It("should accept an ingress with regex path and regex enabled", func() {
+
+		ing := framework.NewSingleIngress(host, regexPath, host, f.Namespace, framework.EchoService, 80, annotationRegex)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
+			})
+
+		f.HTTPTestClient().
+			GET("/foo/bar/lalala").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+	})
+
+	ginkgo.It("should reject an ingress with invalid path and regex enabled", func() {
+
+		ing := framework.NewSingleIngress(host, invalidPath, host, f.Namespace, framework.EchoService, 80, annotationRegex)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return !strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
+			})
+
+		f.HTTPTestClient().
+			GET(invalidPath).
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+	})
+})

From 8f134abb89abae628965ff8458f461c6c4cc84f9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 21 Nov 2022 04:22:31 -0800
Subject: [PATCH 0483/1641] Bump github.com/onsi/ginkgo/v2 from 2.4.0 to 2.5.1
 (#9317)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.4.0 to 2.5.1.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.4.0...v2.5.1)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 14 +++++++-------
 2 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/go.mod b/go.mod
index 7bcc6b487..6dc0fceb9 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.4.0
+	github.com/onsi/ginkgo/v2 v2.5.1
 	github.com/opencontainers/runc v1.1.4
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.13.1
@@ -78,7 +78,7 @@ require (
 	github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7 // indirect
 	github.com/google/btree v1.0.1 // indirect
 	github.com/google/gnostic v0.5.7-v3refs // indirect
-	github.com/google/go-cmp v0.5.8 // indirect
+	github.com/google/go-cmp v0.5.9 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.2.0 // indirect
@@ -109,7 +109,7 @@ require (
 	golang.org/x/mod v0.6.0 // indirect
 	golang.org/x/net v0.1.0 // indirect
 	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
-	golang.org/x/sys v0.1.0 // indirect
+	golang.org/x/sys v0.2.0 // indirect
 	golang.org/x/term v0.1.0 // indirect
 	golang.org/x/text v0.4.0 // indirect
 	golang.org/x/time v0.0.0-20220609170525-579cf78fd858 // indirect
diff --git a/go.sum b/go.sum
index 9067276db..2fbdb9db8 100644
--- a/go.sum
+++ b/go.sum
@@ -230,8 +230,8 @@ github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/
 github.com/google/go-cmp v0.5.4/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.6/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.8 h1:e6P7q2lk1O+qJJb4BtCQXlK8vWEO8V1ZeuEdJNOqZyg=
-github.com/google/go-cmp v0.5.8/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
+github.com/google/go-cmp v0.5.9 h1:O2Tfq5qg4qc4AmwVlvv0oLiVAGB7enBSJ2x2DqQFi38=
+github.com/google/go-cmp v0.5.9/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.1.0 h1:Hsa8mG0dQ46ij8Sl2AYJDUv1oA9/d6Vk+3LG99Oe02g=
 github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
@@ -349,9 +349,9 @@ github.com/ncabatoff/process-exporter v0.7.10/go.mod h1:DHZRZjqxw9LCOpLlX0DjBuyn
 github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
-github.com/onsi/ginkgo/v2 v2.4.0 h1:+Ig9nvqgS5OBSACXNk15PLdp0U9XPYROt9CFzVdFGIs=
-github.com/onsi/ginkgo/v2 v2.4.0/go.mod h1:iHkDK1fKGcBoEHT5W7YBq4RFWaQulw+caOMkAt4OrFo=
-github.com/onsi/gomega v1.22.1 h1:pY8O4lBfsHKZHM/6nrxkhVPUznOlIu3quZcKP/M20KI=
+github.com/onsi/ginkgo/v2 v2.5.1 h1:auzK7OI497k6x4OvWq+TKAcpcSAlod0doAH72oIN0Jw=
+github.com/onsi/ginkgo/v2 v2.5.1/go.mod h1:63DOGlLAH8+REH8jUGdL3YpCpu7JODesutUjdENfUAc=
+github.com/onsi/gomega v1.24.0 h1:+0glovB9Jd6z3VR+ScSwQqXVTIfJcGA9UBM8yzQxhqg=
 github.com/opencontainers/runc v1.1.4 h1:nRCz/8sKg6K6jgYAFLDlXzPeITBZJyX28DBVhWD+5dg=
 github.com/opencontainers/runc v1.1.4/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
@@ -653,8 +653,8 @@ golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.1.0 h1:kunALQeHf1/185U1i0GOB/fy1IPRDDpuoOOqRReG57U=
-golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.2.0 h1:ljd4t30dBnAvMZaQCevtY0xLLD0A+bRZXbgLMLU1F/A=
+golang.org/x/sys v0.2.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.1.0 h1:g6Z6vPFA9dYBAF7DWcH6sCcOntplXsDKcliusYijMlw=

From 4027efaefa97d4f495833662cd71d4f5e9c9c922 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 21 Nov 2022 13:12:13 -0800
Subject: [PATCH 0484/1641] Bump golang.org/x/crypto from 0.1.0 to 0.3.0
 (#9318)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.1.0 to 0.3.0.
- [Release notes](https://github.com/golang/crypto/releases)
- [Commits](https://github.com/golang/crypto/compare/v0.1.0...v0.3.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 6dc0fceb9..6d6bc2eff 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.1
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.1.0
+	golang.org/x/crypto v0.3.0
 	google.golang.org/grpc v1.50.1
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -107,10 +107,10 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.6.0 // indirect
-	golang.org/x/net v0.1.0 // indirect
+	golang.org/x/net v0.2.0 // indirect
 	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
 	golang.org/x/sys v0.2.0 // indirect
-	golang.org/x/term v0.1.0 // indirect
+	golang.org/x/term v0.2.0 // indirect
 	golang.org/x/text v0.4.0 // indirect
 	golang.org/x/time v0.0.0-20220609170525-579cf78fd858 // indirect
 	golang.org/x/tools v0.2.0 // indirect
diff --git a/go.sum b/go.sum
index 2fbdb9db8..3eb74db73 100644
--- a/go.sum
+++ b/go.sum
@@ -476,8 +476,8 @@ golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPh
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20211215153901-e495a2d5b3d3/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
-golang.org/x/crypto v0.1.0 h1:MDRAIl0xIo9Io2xV565hzXHw3zVseKrJKodhohM5CjU=
-golang.org/x/crypto v0.1.0/go.mod h1:RecgLatLF4+eUMCP1PoPZQb+cVrJcOPbHkTkbkB9sbw=
+golang.org/x/crypto v0.3.0 h1:a06MkbcxBrEFc0w0QIZWXrH/9cCX6KJyWbBOIwAn+7A=
+golang.org/x/crypto v0.3.0/go.mod h1:hebNnKkNXi2UzZN1eVRvBB7co0a+JxK6XbPiWVs/3J4=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -558,8 +558,8 @@ golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qx
 golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
 golang.org/x/net v0.0.0-20220225172249-27dd8689420f/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
-golang.org/x/net v0.1.0 h1:hZ/3BUoy5aId7sCpA/Tc5lt8DkFgdVS2onTpJsZ/fl0=
-golang.org/x/net v0.1.0/go.mod h1:Cx3nUiGt4eDBEyega/BKRp+/AlGL8hYe7U9odMt2Cco=
+golang.org/x/net v0.2.0 h1:sZfSu1wtKLGlWI4ZZayP0ck9Y73K1ynO6gqzTdBVdPU=
+golang.org/x/net v0.2.0/go.mod h1:KqCZLdyyvdV855qA2rE3GC2aiw5xGR5TEjj8smXukLY=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -657,8 +657,8 @@ golang.org/x/sys v0.2.0 h1:ljd4t30dBnAvMZaQCevtY0xLLD0A+bRZXbgLMLU1F/A=
 golang.org/x/sys v0.2.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/term v0.1.0 h1:g6Z6vPFA9dYBAF7DWcH6sCcOntplXsDKcliusYijMlw=
-golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
+golang.org/x/term v0.2.0 h1:z85xZCsEl7bi/KwbNADeBYoOP0++7W1ipu+aGnpwzRM=
+golang.org/x/term v0.2.0/go.mod h1:TVmDHMZPmdnySmBfhjOoOdhjzdE1h4u1VwSiw2l1Nuc=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=

From d24c97c63e4fd47e0b979256d510ba96ea479f1f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 21 Nov 2022 13:14:12 -0800
Subject: [PATCH 0485/1641] Bump actions/dependency-review-action from 3.0.0 to
 3.0.1 (#9319)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/30d582111533d59ab793fd9f971817241654f3ec...11310527b429536e263dc6cc47873e608189ba21)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 39125cde4..5350d6e57 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3.0.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@30d582111533d59ab793fd9f971817241654f3ec #v2.0.2
+        uses: actions/dependency-review-action@11310527b429536e263dc6cc47873e608189ba21 #v2.0.2

From 7b53347984154d1ea713fbf4a671a172ed79dfac Mon Sep 17 00:00:00 2001
From: caption <101684156+chncaption@users.noreply.github.com>
Date: Tue, 22 Nov 2022 05:18:17 +0800
Subject: [PATCH 0486/1641] update gopkg.in/yaml.v3
 v3.0.0-20210107192922-496545a6307b to 3.0.0 (#9277)

---
 images/kube-webhook-certgen/rootfs/go.mod |  2 +-
 images/kube-webhook-certgen/rootfs/go.sum | 45 +++++++++++++++++++++++
 2 files changed, 46 insertions(+), 1 deletion(-)

diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 5e2e98f54..b98adf58b 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -39,7 +39,7 @@ require (
 	google.golang.org/protobuf v1.26.0 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
-	gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b // indirect
+	gopkg.in/yaml.v3 v3.0.0 // indirect
 	k8s.io/klog/v2 v2.9.0 // indirect
 	k8s.io/kube-openapi v0.0.0-20211109043538-20434351676c // indirect
 	k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index a05f65b19..0270e3297 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -88,6 +88,7 @@ github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815/go.mod h1:WwZ+bS3
 github.com/dustin/go-humanize v1.0.0/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25KnS6fMYU6eOk=
 github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153/go.mod h1:/Zj4wYkgs4iZTTu3o/KG3Itv/qCCa8VVMlb3i9OVuzc=
 github.com/emicklei/go-restful v0.0.0-20170410110728-ff4f55a20633/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
+github.com/emicklei/go-restful v2.9.5+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
 github.com/emicklei/go-restful v2.16.0+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
@@ -451,6 +452,38 @@ golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzB
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20181023162649-9b4f9f5ad519/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20181201002055-351d144fa1fc/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20181220203305-927f97764cc3/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
+golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
+golang.org/x/net v0.0.0-20190501004415-9ce7a6920f09/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
+golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
+golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
+golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20190724013045-ca1201d0de80/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200114155413-6afb5195e5aa/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200202094626-16171245cfb2/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200222125558-5a598a2470a0/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200301022130-244492dfa37a/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200324143707-d3edc9973b7e/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
+golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
+golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20201202161906-c7110b5ffcbb/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
+golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.1.0 h1:hZ/3BUoy5aId7sCpA/Tc5lt8DkFgdVS2onTpJsZ/fl0=
 golang.org/x/net v0.1.0/go.mod h1:Cx3nUiGt4eDBEyega/BKRp+/AlGL8hYe7U9odMt2Cco=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
@@ -504,9 +537,12 @@ golang.org/x/sys v0.0.0-20200615200032-f1bc736245b1/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200831180312-196b9ba8737a/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200923182605-d9f96fdee20d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210330210617-4fbd30eecc44/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210403161142-5e06dd20ab57/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
@@ -519,6 +555,13 @@ golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9sn
 golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.1.0 h1:g6Z6vPFA9dYBAF7DWcH6sCcOntplXsDKcliusYijMlw=
 golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
+golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
+golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
+golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
+golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
+golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.4.0 h1:BrVqGRd7+k1DiOgtnFvAkoQEWQvBc25ouMJM6429SFg=
 golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
@@ -667,6 +710,8 @@ gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C
 gopkg.in/yaml.v3 v3.0.0-20200615113413-eeeca48fe776/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b h1:h8qDotaEPuJATrMmW04NCwg7v22aHH28wwpauUhK9Oo=
 gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.0 h1:hjy8E9ON/egN1tAYqKb61G10WtihqetD4sz2H+8nIeA=
+gopkg.in/yaml.v3 v3.0.0/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gotest.tools/v3 v3.0.2/go.mod h1:3SzNCllyD9/Y+b5r9JIKQ474KzkZyqLqEfYqMsX94Bk=
 gotest.tools/v3 v3.0.3/go.mod h1:Z7Lb0S5l+klDB31fvDQX8ss/FlKDxtlFlw3Oa8Ymbl8=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=

From c07f8a573bbfb929b7d85ab069bbc705e5739a76 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 21 Nov 2022 13:20:13 -0800
Subject: [PATCH 0487/1641] Bump github.com/prometheus/client_golang from
 1.13.1 to 1.14.0 (#9298)

Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.13.1 to 1.14.0.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.13.1...v1.14.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 6d6bc2eff..91bda5845 100644
--- a/go.mod
+++ b/go.mod
@@ -17,7 +17,7 @@ require (
 	github.com/onsi/ginkgo/v2 v2.5.1
 	github.com/opencontainers/runc v1.1.4
 	github.com/pmezard/go-difflib v1.0.0
-	github.com/prometheus/client_golang v1.13.1
+	github.com/prometheus/client_golang v1.14.0
 	github.com/prometheus/client_model v0.3.0
 	github.com/prometheus/common v0.37.0
 	github.com/spf13/cobra v1.6.1
diff --git a/go.sum b/go.sum
index 3eb74db73..f53cec3a6 100644
--- a/go.sum
+++ b/go.sum
@@ -371,8 +371,8 @@ github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5Fsn
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
 github.com/prometheus/client_golang v1.12.1/go.mod h1:3Z9XVyYiZYEO+YQWt3RD2R3jrbd179Rt297l4aS6nDY=
-github.com/prometheus/client_golang v1.13.1 h1:3gMjIY2+/hzmqhtUC/aQNYldJA6DtH3CgQvwS+02K1c=
-github.com/prometheus/client_golang v1.13.1/go.mod h1:vTeo+zgvILHsnnj/39Ou/1fPN5nJFOEMgftOUOmlvYQ=
+github.com/prometheus/client_golang v1.14.0 h1:nJdhIvne2eSX/XRAFV9PcvFFRbrjbcTUj0VP62TMhnw=
+github.com/prometheus/client_golang v1.14.0/go.mod h1:8vpkKitgIVNcqrRBWh1C4TIUQgYNtG/XQE4E/Zae36Y=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=

From 02cfcff81e86b571fe9431af558a5a0cce99960d Mon Sep 17 00:00:00 2001
From: Michael Weibel <307427+mweibel@users.noreply.github.com>
Date: Tue, 22 Nov 2022 05:56:15 -0800
Subject: [PATCH 0488/1641] remove hardcoded datasource from grafana dashboard
 (#9284)

---
 deploy/grafana/dashboards/nginx.json | 26 ++------------------------
 1 file changed, 2 insertions(+), 24 deletions(-)

diff --git a/deploy/grafana/dashboards/nginx.json b/deploy/grafana/dashboards/nginx.json
index 718d41a83..85f93c9eb 100644
--- a/deploy/grafana/dashboards/nginx.json
+++ b/deploy/grafana/dashboards/nginx.json
@@ -1235,10 +1235,7 @@
       "type": "table"
     },
     {
-      "datasource": {
-        "type": "prometheus",
-        "uid": "P1809F7CD0C75ACF3"
-      },
+      "datasource": "${DS_PROMETHEUS}",
       "fieldConfig": {
         "defaults": {
           "color": {
@@ -1314,10 +1311,6 @@
       "repeatDirection": "h",
       "targets": [
         {
-          "datasource": {
-            "type": "prometheus",
-            "uid": "P1809F7CD0C75ACF3"
-          },
           "exemplar": true,
           "expr": "histogram_quantile(0.80, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le))",
           "format": "time_series",
@@ -1329,10 +1322,6 @@
           "refId": "C"
         },
         {
-          "datasource": {
-            "type": "prometheus",
-            "uid": "P1809F7CD0C75ACF3"
-          },
           "exemplar": true,
           "expr": "histogram_quantile(0.90, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le))",
           "format": "time_series",
@@ -1344,10 +1333,6 @@
           "refId": "D"
         },
         {
-          "datasource": {
-            "type": "prometheus",
-            "uid": "P1809F7CD0C75ACF3"
-          },
           "editorMode": "code",
           "exemplar": true,
           "expr": "histogram_quantile(0.99, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le))",
@@ -1373,10 +1358,7 @@
         "mode": "spectrum"
       },
       "dataFormat": "tsbuckets",
-      "datasource": {
-        "type": "prometheus",
-        "uid": "P1809F7CD0C75ACF3"
-      },
+      "datasource": "${DS_PROMETHEUS}",
       "description": "",
       "gridPos": {
         "h": 7,
@@ -1394,10 +1376,6 @@
       "reverseYBuckets": false,
       "targets": [
         {
-          "datasource": {
-            "type": "prometheus",
-            "uid": "P1809F7CD0C75ACF3"
-          },
           "exemplar": true,
           "expr": "sum(increase(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le)",
           "format": "heatmap",

From b34f6ef324ad038de4e235706f84f7075a8c836b Mon Sep 17 00:00:00 2001
From: aimuz <mr.imuz@gmail.com>
Date: Thu, 24 Nov 2022 09:38:03 +0800
Subject: [PATCH 0489/1641] remove the configmap related permissions (#9310)

ref: https://github.com/kubernetes/ingress-nginx/pull/8921
We have used the Lease API for selection

Signed-off-by: aimuz <mr.imuz@gmail.com>

Signed-off-by: aimuz <mr.imuz@gmail.com>
---
 .../templates/controller-role.yaml            | 20 -------------------
 1 file changed, 20 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-role.yaml b/charts/ingress-nginx/templates/controller-role.yaml
index 395c88e10..d1aa9aac7 100644
--- a/charts/ingress-nginx/templates/controller-role.yaml
+++ b/charts/ingress-nginx/templates/controller-role.yaml
@@ -58,26 +58,6 @@ rules:
       - get
       - list
       - watch
-  # TODO(Jintao Zhang)
-  # Once we release a new version of the controller,
-  # we will be able to remove the configmap related permissions
-  # We have used the Lease API for selection
-  # ref: https://github.com/kubernetes/ingress-nginx/pull/8921
-  - apiGroups:
-      - ""
-    resources:
-      - configmaps
-    resourceNames:
-      - {{ include "ingress-nginx.controller.electionID" . }}
-    verbs:
-      - get
-      - update
-  - apiGroups:
-      - ""
-    resources:
-      - configmaps
-    verbs:
-      - create
   - apiGroups:
       - coordination.k8s.io
     resources:

From 1e08519a733b50134eae37f300f96b58bdb616e5 Mon Sep 17 00:00:00 2001
From: LongWuYuan <longwuyuan@gmail.com>
Date: Fri, 25 Nov 2022 06:09:11 +0530
Subject: [PATCH 0490/1641] fixed multiple ginkgo versions

---
 build/run-in-docker.sh               | 2 +-
 images/test-runner/rootfs/Dockerfile | 2 +-
 test/e2e/run-chart-test.sh           | 2 +-
 test/e2e/run.sh                      | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index b0377f455..64dad1cf9 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -77,7 +77,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "FLAGS=$FLAGS"
   go env
   set -x
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.1.4
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.5.1
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 790bf1248..199997536 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -49,7 +49,7 @@ ENV PATH $GOPATH/bin:/usr/local/go/bin:$PATH
 
 RUN mkdir -p "$GOPATH/src" "$GOPATH/bin" && chmod -R 777 "$GOPATH"
 
-RUN go install github.com/onsi/ginkgo/v2/ginkgo@v2.1.4  && go install golang.org/x/lint/golint@latest
+RUN go install github.com/onsi/ginkgo/v2/ginkgo@v2.5.1  && go install golang.org/x/lint/golint@latest
 
 ARG RESTY_CLI_VERSION
 ARG RESTY_CLI_SHA
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 2af8aa1d3..fdb3121d8 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go get github.com/onsi/ginkgo/v2/ginkgo@v2.1.4
+    go get github.com/onsi/ginkgo/v2/ginkgo@v2.5.1
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run.sh b/test/e2e/run.sh
index 0fc6fdb5e..4cd95267f 100755
--- a/test/e2e/run.sh
+++ b/test/e2e/run.sh
@@ -79,7 +79,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go get github.com/onsi/ginkgo/v2/ginkgo@v2.1.4
+    go get github.com/onsi/ginkgo/v2/ginkgo@v2.5.1
   fi
 
   echo "[dev-env] building image"

From 9d562c47abe8475fc62528140352b7e802ef6bbe Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 25 Nov 2022 14:58:06 +0530
Subject: [PATCH 0491/1641] create nsswitch-conf if missing (#9339)

---
 images/test-runner/rootfs/Dockerfile | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 199997536..30e7e1ab2 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -21,7 +21,13 @@ FROM registry.k8s.io/etcd:${ETCD_VERSION} as etcd
 
 FROM ${BASE_IMAGE}
 
-RUN [ ! -e /etc/nsswitch.conf ] && echo 'hosts: files dns' > /etc/nsswitch.conf
+RUN set -eux; \
+	if [ -e /etc/nsswitch.conf ]; then \
+		grep '^hosts: files dns' /etc/nsswitch.conf; \
+	else \
+		echo 'hosts: files dns' > /etc/nsswitch.conf; \
+	fi
+
 
 COPY --from=GO   /usr/local/go /usr/local/go
 COPY --from=etcd /usr/local/bin/etcd /usr/local/bin/etcd

From b338cb391754125b7884196d7b8d4b55dbad14d8 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sat, 26 Nov 2022 08:46:04 +0530
Subject: [PATCH 0492/1641] bumped ginkgo to v2.5.1 in testrunner (#9340)

---
 build/run-in-docker.sh  | 2 +-
 test/e2e-image/Makefile | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 64dad1cf9..cb8ad18f0 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -38,7 +38,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20221012-controller-v1.4.0-14-g93df79676@sha256:9ab6a412b0ea6ae77abc80309608976ec15141e146fa91ef4352400cb9051086}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20221125-controller-v1.5.1-21-g9d562c47a@sha256:50c5469f08b664e928a3035ac94a2348955b669d7ac33809abc674c8fd6c19c1}
 
 DOCKER_OPTS=${DOCKER_OPTS:-}
 DOCKER_IN_DOCKER_ENABLED=${DOCKER_IN_DOCKER_ENABLED:-}
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index ce46b93ab..64094ec34 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20221012-controller-v1.4.0-14-g93df79676@sha256:9ab6a412b0ea6ae77abc80309608976ec15141e146fa91ef4352400cb9051086"
+E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20221125-controller-v1.5.1-21-g9d562c47a@sha256:50c5469f08b664e928a3035ac94a2348955b669d7ac33809abc674c8fd6c19c1"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"

From 3437cab8ca40c929812df10fd94eb20eda240c46 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Herv=C3=A9?= <dud225@users.noreply.github.com>
Date: Wed, 30 Nov 2022 16:44:55 +0100
Subject: [PATCH 0493/1641] Fix typos found by codespell (#9353)

```
$ codespell
./README.md:178: informations ==> information
./README.md.gotmpl:177: informations ==> information
./CHANGELOG.md:132: comparision ==> comparison
./CHANGELOG.md:142: executible ==> executable
./CHANGELOG.md:159: defaul ==> default
```
---
 charts/ingress-nginx/CHANGELOG.md     | 6 +++---
 charts/ingress-nginx/README.md        | 2 +-
 charts/ingress-nginx/README.md.gotmpl | 2 +-
 3 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/charts/ingress-nginx/CHANGELOG.md b/charts/ingress-nginx/CHANGELOG.md
index 1b7adb25b..7d81ac1bd 100644
--- a/charts/ingress-nginx/CHANGELOG.md
+++ b/charts/ingress-nginx/CHANGELOG.md
@@ -129,7 +129,7 @@ This file documents all notable changes to [ingress-nginx](https://github.com/ku
 - [8118] https://github.com/kubernetes/ingress-nginx/pull/8118    Remove deprecated libraries, update other libs
 - [8117] https://github.com/kubernetes/ingress-nginx/pull/8117    Fix codegen errors
 - [8115] https://github.com/kubernetes/ingress-nginx/pull/8115    chart/ghaction: set the correct permission to have access to push a release
-- [8098] https://github.com/kubernetes/ingress-nginx/pull/8098    generating SHA for CA only certs in backend_ssl.go + comparision of P…
+- [8098] https://github.com/kubernetes/ingress-nginx/pull/8098    generating SHA for CA only certs in backend_ssl.go + comparison of P…
 - [8088] https://github.com/kubernetes/ingress-nginx/pull/8088    Fix Edit this page link to use main branch
 - [8072] https://github.com/kubernetes/ingress-nginx/pull/8072    Expose GeoIP2 Continent code as variable
 - [8061] https://github.com/kubernetes/ingress-nginx/pull/8061    docs(charts): using helm-docs for chart
@@ -139,7 +139,7 @@ This file documents all notable changes to [ingress-nginx](https://github.com/ku
 - [8046] https://github.com/kubernetes/ingress-nginx/pull/8046    Report expired certificates (#8045)
 - [8044] https://github.com/kubernetes/ingress-nginx/pull/8044    remove G109 check till gosec resolves issues
 - [8042] https://github.com/kubernetes/ingress-nginx/pull/8042    docs_multiple_instances_one_cluster_ticket_7543
-- [8041] https://github.com/kubernetes/ingress-nginx/pull/8041    docs: fix typo'd executible name
+- [8041] https://github.com/kubernetes/ingress-nginx/pull/8041    docs: fix typo'd executable name
 - [8035] https://github.com/kubernetes/ingress-nginx/pull/8035    Comment busy owners
 - [8029] https://github.com/kubernetes/ingress-nginx/pull/8029    Add stream-snippet as a ConfigMap and Annotation option
 - [8023] https://github.com/kubernetes/ingress-nginx/pull/8023    fix nginx compilation flags
@@ -156,7 +156,7 @@ This file documents all notable changes to [ingress-nginx](https://github.com/ku
 - [7996] https://github.com/kubernetes/ingress-nginx/pull/7996    doc: improvement
 - [7983] https://github.com/kubernetes/ingress-nginx/pull/7983    Fix a couple of misspellings in the annotations documentation.
 - [7979] https://github.com/kubernetes/ingress-nginx/pull/7979    allow set annotations for admission Jobs
-- [7977] https://github.com/kubernetes/ingress-nginx/pull/7977    Add ssl_reject_handshake to defaul server
+- [7977] https://github.com/kubernetes/ingress-nginx/pull/7977    Add ssl_reject_handshake to default server
 - [7975] https://github.com/kubernetes/ingress-nginx/pull/7975    add legacy version update v0.50.0 to main changelog
 - [7972] https://github.com/kubernetes/ingress-nginx/pull/7972    updated service upstream definition
 
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index f4486ac91..5922884cd 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -175,7 +175,7 @@ controller:
     internal:
       enabled: true
       annotations:
-        # Create internal LB. More informations: https://cloud.google.com/kubernetes-engine/docs/how-to/internal-load-balancing
+        # Create internal LB. More information: https://cloud.google.com/kubernetes-engine/docs/how-to/internal-load-balancing
         # For GKE versions 1.17 and later
         networking.gke.io/load-balancer-type: "Internal"
         # For earlier versions
diff --git a/charts/ingress-nginx/README.md.gotmpl b/charts/ingress-nginx/README.md.gotmpl
index 895996111..9a7d7bdfd 100644
--- a/charts/ingress-nginx/README.md.gotmpl
+++ b/charts/ingress-nginx/README.md.gotmpl
@@ -174,7 +174,7 @@ controller:
     internal:
       enabled: true
       annotations:
-        # Create internal LB. More informations: https://cloud.google.com/kubernetes-engine/docs/how-to/internal-load-balancing
+        # Create internal LB. More information: https://cloud.google.com/kubernetes-engine/docs/how-to/internal-load-balancing
         # For GKE versions 1.17 and later
         networking.gke.io/load-balancer-type: "Internal"
         # For earlier versions

From c234d1f10b846f7e7a7028f58a14f89b1245c01d Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sat, 3 Dec 2022 07:13:53 +0530
Subject: [PATCH 0494/1641] added ginkgo junit reports (#9350)

---
 build/run-e2e-suite.sh | 35 +++++++++++++++++++++++++++++++++++
 test/e2e-image/e2e.sh  | 16 ++++++++++++++++
 2 files changed, 51 insertions(+)

diff --git a/build/run-e2e-suite.sh b/build/run-e2e-suite.sh
index 15eacc355..ebbac9145 100755
--- a/build/run-e2e-suite.sh
+++ b/build/run-e2e-suite.sh
@@ -88,3 +88,38 @@ kubectl run --rm \
   --overrides='{ "apiVersion": "v1", "spec":{"serviceAccountName": "ingress-nginx-e2e"}}' \
   e2e --image=nginx-ingress-controller:e2e
 
+# Get the junit-reports stored in the configMaps created during e2etests
+echo "Getting the report files out now.."
+reportsDir="test/junitreports"
+reportFileName="report-e2e-test-suite"
+[ ! -e ${reportsDir} ] && mkdir $reportsDir
+cd $reportsDir
+
+# TODO: Seeking Rikatz help here to extract in a loop. Tried things like below without success
+#for cmName in `k get cm -l junitreport=true -o json | jq  '.items[].binaryData | keys[]' | tr '\"' ' '`
+#do
+#
+# kubectl get cm -l junitreport=true -o json | jq -r  '[.items[].binaryData | to_entries[] | {"key": .key, "value": .value  }] | from_entries'
+#
+
+# Below lines successfully extract the report but they are one line per report.
+# We only have 3 ginkgo reports so its ok for now
+# But still, ideally this should be a loop as talked about in comments a few lines above
+kubectl get cm $reportFileName.xml.gz -o "jsonpath={.binaryData['report-e2e-test-suite\.xml\.gz']}" > $reportFileName.xml.gz.base64
+kubectl get cm $reportFileName-serial.xml.gz -o "jsonpath={.binaryData['report-e2e-test-suite-serial\.xml\.gz']}" > $reportFileName-serial.xml.gz.base64
+
+cat $reportFileName.xml.gz.base64 | base64 -d > $reportFileName.xml.gz
+cat $reportFileName-serial.xml.gz.base64 | base64 -d > $reportFileName-serial.xml.gz
+
+gzip -d $reportFileName.xml.gz
+gzip -d $reportFileName-serial.xml.gz
+
+rm *.base64
+cd ../..
+
+# TODO Temporary: if condition to check if the memleak cm exists and only then try the extract for the memleak report
+#
+#kubectl get cm $reportFileName-serial  -o "jsonpath={.data['report-e2e-test-suite-memleak\.xml\.gz']}" > $reportFileName-memleak.base64
+#cat $reportFileName-memleak.base64 | base64 -d > $reportFileName-memleak.xml.gz
+#gzip -d $reportFileName-memleak.xml.gz
+echo "done getting the reports files out.."
diff --git a/test/e2e-image/e2e.sh b/test/e2e-image/e2e.sh
index 24e52bcde..150d2d06e 100755
--- a/test/e2e-image/e2e.sh
+++ b/test/e2e-image/e2e.sh
@@ -34,23 +34,39 @@ ginkgo_args=(
   "-timeout=75m"
 )
 
+# Variable for the prefix of report filenames
+reportFileNamePrefix="report-e2e-test-suite"
+
 echo -e "${BGREEN}Running e2e test suite (FOCUS=${FOCUS})...${NC}"
 ginkgo "${ginkgo_args[@]}"               \
   -focus="${FOCUS}"                  \
   -skip="\[Serial\]|\[MemoryLeak\]"  \
   -nodes="${E2E_NODES}" \
+  --junit-report=$reportFileNamePrefix.xml \
   /e2e.test
+# Create configMap out of a compressed report file for extraction later
 
 echo -e "${BGREEN}Running e2e test suite with tests that require serial execution...${NC}"
 ginkgo "${ginkgo_args[@]}"   \
   -focus="\[Serial\]"    \
   -skip="\[MemoryLeak\]" \
+  --junit-report=$reportFileNamePrefix-serial.xml \
   /e2e.test
+# Create configMap out of a compressed report file for extraction later
 
 if [[ ${E2E_CHECK_LEAKS} != "" ]]; then
   echo -e "${BGREEN}Running e2e test suite with tests that check for memory leaks...${NC}"
   ginkgo "${ginkgo_args[@]}"    \
     -focus="\[MemoryLeak\]" \
     -skip="\[Serial\]" \
+    --junit-report=$reportFileNamePrefix-memleak.xml \
     /e2e.test
+# Create configMap out of a compressed report file for extraction later
 fi
+
+for rFile in `ls $reportFileNamePrefix*` 
+do
+  gzip -k $rFile
+  kubectl create cm $rFile.gz --from-file $rFile.gz
+  kubectl label cm $rFile.gz junitreport=true
+done

From 5aa49dc66d7e74adbbc34bcecbafc7cb08625e94 Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Sat, 3 Dec 2022 10:43:54 +0530
Subject: [PATCH 0495/1641] removed deprecation messsage for ingressClass
 annotation (#9357)

* removed deprecation messsage for ingressClass annotation

* modified: docs/user-guide/multiple-ingress.md

* modified: docs/user-guide/multiple-ingress.md

* modified: docs/user-guide/multiple-ingress.md
---
 docs/user-guide/multiple-ingress.md | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/docs/user-guide/multiple-ingress.md b/docs/user-guide/multiple-ingress.md
index 35e0e45dc..179041727 100644
--- a/docs/user-guide/multiple-ingress.md
+++ b/docs/user-guide/multiple-ingress.md
@@ -2,7 +2,9 @@
 
 By default, deploying multiple Ingress controllers (e.g., `ingress-nginx` & `gce`) will result in all controllers simultaneously racing to update Ingress status fields in confusing ways.
 
-To fix this problem, use [IngressClasses](https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class). The `kubernetes.io/ingress.class` annotation  is deprecated from kubernetes v1.22+.
+To fix this problem, use [IngressClasses](https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class). The `kubernetes.io/ingress.class` annotation is not being preferred or suggested to use as it can be deprecated in future. Better to use the field `ingress.spec.ingressClassName`.
+But, when user has deployed with `scope.enabled`, then the ingress class resource field is not used.
+
 
 ## Using IngressClasses
 

From 8a5eaa63a93ee247b63b9cf6e3892abacd352d0c Mon Sep 17 00:00:00 2001
From: Tatu Pesonen <tatu@narigon.dev>
Date: Sat, 3 Dec 2022 12:28:58 +0200
Subject: [PATCH 0496/1641] fix(typo): pluralize provider (#9346)

---
 docs/user-guide/basic-usage.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/basic-usage.md b/docs/user-guide/basic-usage.md
index 2142121d2..aee0c0fd3 100644
--- a/docs/user-guide/basic-usage.md
+++ b/docs/user-guide/basic-usage.md
@@ -1,6 +1,6 @@
 #  Basic usage - host based routing
 
-ingress-nginx can be used for many use cases, inside various cloud provider and supports a lot of configurations. In this section you can find a common usage scenario where a single load balancer powered by ingress-nginx will route traffic to 2 different HTTP backend services based on the host name.
+ingress-nginx can be used for many use cases, inside various cloud providers and supports a lot of configurations. In this section you can find a common usage scenario where a single load balancer powered by ingress-nginx will route traffic to 2 different HTTP backend services based on the host name.
 
 First of all follow the instructions to install ingress-nginx. Then imagine that you need to expose 2 HTTP services already installed, `myServiceA`, `myServiceB`, and configured as `type: ClusterIP`. 
 

From 27ffeeb18f73bbde1b66866e796714308cebf1f4 Mon Sep 17 00:00:00 2001
From: Sjouke de Vries <sjoukedevries@live.nl>
Date: Sun, 4 Dec 2022 20:35:56 +0100
Subject: [PATCH 0497/1641] fix(hpa): deprecated api version, bump to v2
 (#9348)

* fix(hpa): deprecated api version, bump to v2

* chore(hpa): abstract hpa apiVersion to helm value

* feat(hpa): add controller.autoscaling.apiVersion docs in README

* docs(hpa): quotes around apiVersion string type

* chore(hpa): run helm-docs in repo

* chore(hpa): remove local helm-docs module install and output

* docs(helm): add hpa controller.autoscaling.apiVersion description

* docs(hpa): remove autoscaling.apiVersion description as it fails ci
---
 charts/ingress-nginx/README.md                     | 1 +
 charts/ingress-nginx/templates/controller-hpa.yaml | 2 +-
 charts/ingress-nginx/values.yaml                   | 1 +
 3 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 5922884cd..5ddd046ea 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -277,6 +277,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.affinity | object | `{}` | Affinity and anti-affinity rules for server scheduling to nodes # Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity # |
 | controller.allowSnippetAnnotations | bool | `true` | This configuration defines if Ingress Controller should allow users to set their own *-snippet annotations, otherwise this is forbidden / dropped when users add those annotations. Global snippets in ConfigMap are still respected |
 | controller.annotations | object | `{}` | Annotations to be added to the controller Deployment or DaemonSet # |
+| controller.autoscaling.apiVersion | string | `"autoscaling/v2"` |  |
 | controller.autoscaling.behavior | object | `{}` |  |
 | controller.autoscaling.enabled | bool | `false` |  |
 | controller.autoscaling.maxReplicas | int | `11` |  |
diff --git a/charts/ingress-nginx/templates/controller-hpa.yaml b/charts/ingress-nginx/templates/controller-hpa.yaml
index e0979f14b..d1e78bdfc 100644
--- a/charts/ingress-nginx/templates/controller-hpa.yaml
+++ b/charts/ingress-nginx/templates/controller-hpa.yaml
@@ -1,7 +1,7 @@
 {{- if and .Values.controller.autoscaling.enabled (or (eq .Values.controller.kind "Deployment") (eq .Values.controller.kind "Both")) -}}
 {{- if not .Values.controller.keda.enabled }}
 
-apiVersion: autoscaling/v2beta2
+apiVersion: {{ .Values.controller.autoscaling.apiVersion }}
 kind: HorizontalPodAutoscaler
 metadata:
   annotations:
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 35f922f6b..f80095c56 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -364,6 +364,7 @@ controller:
 
   # Mutually exclusive with keda autoscaling
   autoscaling:
+    apiVersion: autoscaling/v2
     enabled: false
     minReplicas: 1
     maxReplicas: 11

From 49bd5dd7633a56bf5f9a65ca2e35b56e9567d3f5 Mon Sep 17 00:00:00 2001
From: Adam Hukalowicz <procinger@users.noreply.github.com>
Date: Sun, 4 Dec 2022 20:39:54 +0100
Subject: [PATCH 0498/1641] ModSecurity dependencies update to avoid Memory
 Leaks (#9330)

* Update ModSecurity to latest head

* modsecurity version pinned
---
 images/nginx/rootfs/build.sh | 13 +++++++------
 1 file changed, 7 insertions(+), 6 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 5a6394fd9..6d8937a22 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -56,11 +56,11 @@ export MSGPACK_VERSION=3.3.0
 # Check for recent changes: https://github.com/DataDog/dd-opentracing-cpp/compare/v1.3.2...master
 export DATADOG_CPP_VERSION=1.3.2
 
-# Check for recent changes: https://github.com/SpiderLabs/ModSecurity-nginx/compare/v1.0.2...master
-export MODSECURITY_VERSION=1.0.2
+# Check for recent changes: https://github.com/SpiderLabs/ModSecurity-nginx/compare/v1.0.3...master
+export MODSECURITY_VERSION=1.0.3
 
-# Check for recent changes: https://github.com/SpiderLabs/ModSecurity/compare/v3.0.5...v3/master
-export MODSECURITY_LIB_VERSION=v3.0.8
+# Check for recent changes: https://github.com/SpiderLabs/ModSecurity/compare/v3.0.8...v3/master
+export MODSECURITY_LIB_VERSION=e9a7ba4a60be48f761e0328c6dfcc668d70e35a0
 
 # Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.2...v3.3/master
 export OWASP_MODSECURITY_CRS_VERSION=v3.3.4
@@ -229,7 +229,7 @@ get_src cbe625cba85291712253db5bc3870d60c709acfad9a8af5a302673d3d201e3ea \
 get_src 71de3d0658935db7ccea20e006b35e58ddc7e4c18878b9523f2addc2371e9270 \
         "https://github.com/rnburn/zipkin-cpp-opentracing/archive/$ZIPKIN_CPP_VERSION.tar.gz"
 
-get_src f8d3ff15520df736c5e20e91d5852ec27e0874566c2afce7dcb979e2298d6980 \
+get_src 32a42256616cc674dca24c8654397390adff15b888b77eb74e0687f023c8751b \
         "https://github.com/SpiderLabs/ModSecurity-nginx/archive/v$MODSECURITY_VERSION.tar.gz"
 
 get_src 43e6a9fcb146ad871515f0d0873947e5d497a1c9c60c58cb102a97b47208b7c3 \
@@ -495,8 +495,9 @@ make install
 
 # build modsecurity library
 cd "$BUILD_PATH"
-git clone --depth=1 -b $MODSECURITY_LIB_VERSION https://github.com/SpiderLabs/ModSecurity
+git clone -n https://github.com/SpiderLabs/ModSecurity
 cd ModSecurity/
+git checkout $MODSECURITY_LIB_VERSION
 git submodule init
 git submodule update
 

From 15c4078032d5a5a40ef3b5436261dc21a568c56b Mon Sep 17 00:00:00 2001
From: aimuz <mr.imuz@gmail.com>
Date: Mon, 5 Dec 2022 03:49:54 +0800
Subject: [PATCH 0499/1641] Enable profiler-address to be configured (#9311)

Signed-off-by: aimuz <mr.imuz@gmail.com>

Signed-off-by: aimuz <mr.imuz@gmail.com>
---
 cmd/dataplane/main.go  | 3 +--
 cmd/nginx/main.go      | 2 +-
 internal/nginx/main.go | 3 +++
 pkg/flags/flags.go     | 5 ++++-
 4 files changed, 9 insertions(+), 4 deletions(-)

diff --git a/cmd/dataplane/main.go b/cmd/dataplane/main.go
index 8ea59a412..0ab978429 100644
--- a/cmd/dataplane/main.go
+++ b/cmd/dataplane/main.go
@@ -82,8 +82,7 @@ func main() {
 	mc.Start(conf.ValidationWebhook)
 
 	if conf.EnableProfiling {
-		// TODO: Turn Profiler address configurable via flags
-		go metrics.RegisterProfiler("127.0.0.1", nginx.ProfilerPort)
+		go metrics.RegisterProfiler(nginx.ProfilerAddress, nginx.ProfilerPort)
 	}
 
 	ngx := controller.NewNGINXController(conf, mc)
diff --git a/cmd/nginx/main.go b/cmd/nginx/main.go
index c585ed95e..9f0973ec9 100644
--- a/cmd/nginx/main.go
+++ b/cmd/nginx/main.go
@@ -143,7 +143,7 @@ func main() {
 	mc.Start(conf.ValidationWebhook)
 
 	if conf.EnableProfiling {
-		go metrics.RegisterProfiler("127.0.0.1", nginx.ProfilerPort)
+		go metrics.RegisterProfiler(nginx.ProfilerAddress, nginx.ProfilerPort)
 	}
 
 	ngx := controller.NewNGINXController(conf, mc)
diff --git a/internal/nginx/main.go b/internal/nginx/main.go
index 88d2ee877..ae319fe1f 100644
--- a/internal/nginx/main.go
+++ b/internal/nginx/main.go
@@ -36,6 +36,9 @@ import (
 // ProfilerPort port used by the ingress controller to expose the Go Profiler when it is enabled.
 var ProfilerPort = 10245
 
+// ProfilerAddress IP address used by the ingress controller to expose the Go Profiler when it is enabled.
+var ProfilerAddress = "127.0.0.1"
+
 // TemplatePath path of the NGINX template
 var TemplatePath = "/etc/nginx/template/nginx.tmpl"
 
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index f7c1771e8..877000a7d 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -19,6 +19,7 @@ package flags
 import (
 	"flag"
 	"fmt"
+	"net"
 	"os"
 	"time"
 
@@ -201,7 +202,8 @@ Takes the form "<host>:port". If not provided, no admission controller is starte
 
 		internalLoggerAddress = flags.String("internal-logger-address", "127.0.0.1:11514", "Address to be used when binding internal syslogger")
 
-		profilerPort = flags.Int("profiler-port", 10245, "Port to use for expose the ingress controller Go profiler when it is enabled.")
+		profilerPort    = flags.Int("profiler-port", 10245, "Port to use for expose the ingress controller Go profiler when it is enabled.")
+		profilerAddress = flags.IP("profiler-address", net.ParseIP("127.0.0.1"), "IP address used by the ingress controller to expose the Go Profiler when it is enabled.")
 
 		statusUpdateInterval = flags.Int("status-update-interval", status.UpdateInterval, "Time interval in seconds in which the status should check if an update is required. Default is 60 seconds")
 
@@ -275,6 +277,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 	nginx.StatusPort = *statusPort
 	nginx.StreamPort = *streamPort
 	nginx.ProfilerPort = *profilerPort
+	nginx.ProfilerAddress = profilerAddress.String()
 
 	if *enableSSLPassthrough && !ing_net.IsPortAvailable(*sslProxyPort) {
 		return false, nil, fmt.Errorf("port %v is already in use. Please check the flag --ssl-passthrough-proxy-port", *sslProxyPort)

From dbb765a321644deb66a61dd84f0024d61bc9c845 Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Mon, 5 Dec 2022 01:20:01 +0530
Subject: [PATCH 0500/1641] resolved ginkgo deprecation message (#9365)

---
 go.mod                |  9 ++++++++-
 go.sum                | 18 ++++++++++++++++++
 test/e2e-image/e2e.sh |  7 ++++---
 3 files changed, 30 insertions(+), 4 deletions(-)

diff --git a/go.mod b/go.mod
index 91bda5845..074cca487 100644
--- a/go.mod
+++ b/go.mod
@@ -51,9 +51,10 @@ require (
 	github.com/Azure/go-autorest/autorest/date v0.3.0 // indirect
 	github.com/Azure/go-autorest/logger v0.2.1 // indirect
 	github.com/Azure/go-autorest/tracing v0.6.0 // indirect
-	github.com/BurntSushi/toml v0.3.1 // indirect
+	github.com/BurntSushi/toml v1.0.0 // indirect
 	github.com/PuerkitoBio/purell v1.1.1 // indirect
 	github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 // indirect
+	github.com/alessio/shellescape v1.4.1 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/blang/semver/v4 v4.0.0 // indirect
 	github.com/cespare/xxhash/v2 v2.1.2 // indirect
@@ -70,6 +71,7 @@ require (
 	github.com/go-openapi/jsonpointer v0.19.5 // indirect
 	github.com/go-openapi/jsonreference v0.19.5 // indirect
 	github.com/go-openapi/swag v0.19.14 // indirect
+	github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0 // indirect
 	github.com/godbus/dbus/v5 v5.0.6 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang-jwt/jwt/v4 v4.2.0 // indirect
@@ -80,6 +82,8 @@ require (
 	github.com/google/gnostic v0.5.7-v3refs // indirect
 	github.com/google/go-cmp v0.5.9 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
+	github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1 // indirect
+	github.com/google/safetext v0.0.0-20220905092116-b49f7bc46da2 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.2.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 // indirect
@@ -88,6 +92,7 @@ require (
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
 	github.com/mattn/go-colorable v0.1.13 // indirect
+	github.com/mattn/go-isatty v0.0.16 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 // indirect
 	github.com/mmarkdown/mmark v2.0.40+incompatible // indirect
 	github.com/moby/sys/mountinfo v0.5.0 // indirect
@@ -97,6 +102,7 @@ require (
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
 	github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 // indirect
 	github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 // indirect
+	github.com/pelletier/go-toml v1.9.4 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/prometheus/procfs v0.8.0 // indirect
@@ -125,6 +131,7 @@ require (
 	k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1 // indirect
 	k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed // indirect
 	sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 // indirect
+	sigs.k8s.io/kind v0.17.0 // indirect
 	sigs.k8s.io/kustomize/api v0.12.1 // indirect
 	sigs.k8s.io/kustomize/kyaml v0.13.9 // indirect
 	sigs.k8s.io/structured-merge-diff/v4 v4.2.3 // indirect
diff --git a/go.sum b/go.sum
index f53cec3a6..564a127bb 100644
--- a/go.sum
+++ b/go.sum
@@ -62,6 +62,8 @@ github.com/Azure/go-autorest/tracing v0.6.0 h1:TYi4+3m5t6K48TGI9AUdb+IzbnSxvnvUM
 github.com/Azure/go-autorest/tracing v0.6.0/go.mod h1:+vhtPC754Xsa23ID7GlGsrdKBpUA79WCAKPPZVC2DeU=
 github.com/BurntSushi/toml v0.3.1 h1:WXkYYl6Yr3qBf1K79EBnL4mak0OimBfB0XUf9Vl28OQ=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
+github.com/BurntSushi/toml v1.0.0 h1:dtDWrepsVPfW9H/4y7dDgFc2MBUSeJhlaDtK13CxFlU=
+github.com/BurntSushi/toml v1.0.0/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
 github.com/OneOfOne/xxhash v1.2.2/go.mod h1:HSdplMjZKSmBqAxg5vPj2TmRDmfkzw+cTzAElWljhcU=
 github.com/PuerkitoBio/purell v1.1.1 h1:WEQqlqaGbrPkxLJWfBwQmfEAE1Z7ONdDLqrN38tNFfI=
@@ -73,6 +75,8 @@ github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuy
 github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190717042225-c3de453c63f4/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d/go.mod h1:rBZYJk541a8SKzHPHnH3zbiI+7dagKZ0cgpgrD7Fyho=
+github.com/alessio/shellescape v1.4.1 h1:V7yhSDDn8LP4lc4jS8pFkt0zCnzVJlG5JXy9BVKJUX0=
+github.com/alessio/shellescape v1.4.1/go.mod h1:PZAiSCk0LJaZkiCSkPv8qIobYglO3FPpyFjDCtHLS30=
 github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a h1:AP/vsCIvJZ129pdm9Ek7bH7yutN3hByqsMoNrWAxRQc=
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a/go.mod h1:QmP9hvJ91BbJmGVGSbutW19IC0Q9phDCLGaomwTJbgU=
@@ -105,6 +109,7 @@ github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkX
 github.com/coreos/go-systemd/v22 v22.3.2 h1:D9/bQk5vlXQFZ6Kwuu6zaiXJ9oTPe68++AzAJc1DzSI=
 github.com/coreos/go-systemd/v22 v22.3.2/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
 github.com/cpuguy83/go-md2man/v2 v2.0.0-20190314233015-f79a8a8ca69d/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
+github.com/cpuguy83/go-md2man/v2 v2.0.1/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/cpuguy83/go-md2man/v2 v2.0.2/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/cyphar/filepath-securejoin v0.2.3 h1:YX6ebbZCZP7VkM3scTTokDgBL2TY741X51MTk3ycuNI=
@@ -167,6 +172,8 @@ github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh
 github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5Fng=
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
+github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0 h1:p104kn46Q8WdvHunIJ9dAyjPVtrBPhSr3KT2yUst43I=
+github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/godbus/dbus/v5 v5.0.6 h1:mkgN1ofwASrYnJ5W6U/BxG15eXXXjirgZc7CLqkcaro=
 github.com/godbus/dbus/v5 v5.0.6/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
@@ -252,8 +259,11 @@ github.com/google/pprof v0.0.0-20210122040257-d980be63207e/go.mod h1:kpwsk12EmLe
 github.com/google/pprof v0.0.0-20210226084205-cbba55b83ad5/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210601050228-01bbb1931b22/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210609004039-a478d1d731e9/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1 h1:K6RDEckDVWvDI9JAJYCmNdQXq6neHJOYx3V6jnqNEec=
 github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
+github.com/google/safetext v0.0.0-20220905092116-b49f7bc46da2 h1:SJ+NtwL6QaZ21U+IrK7d0gGgpjGGvd2kz+FzTHVzdqI=
+github.com/google/safetext v0.0.0-20220905092116-b49f7bc46da2/go.mod h1:Tv1PlzqC9t8wNnpPdctvtSUOPUUg4SHeE6vR1Ir2hmg=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
 github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
@@ -271,6 +281,7 @@ github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
 github.com/imdario/mergo v0.3.13/go.mod h1:4lJ1jqUDcsbIECGy0RUJAXNIhg+6ocWgb1ALK2O4oXg=
+github.com/inconshreveable/mousetrap v1.0.0/go.mod h1:PxqpIevigyE2G7u3NXJIT2ANytuPF1OarO4DADm73n8=
 github.com/inconshreveable/mousetrap v1.0.1 h1:U3uMjPSQEBMNp1lFxmllqCPM6P5u/Xq7Pgzkat/bFNc=
 github.com/inconshreveable/mousetrap v1.0.1/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
@@ -310,6 +321,7 @@ github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA
 github.com/mailru/easyjson v0.7.6/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
 github.com/mattn/go-colorable v0.1.13 h1:fFA4WZxdEF4tXPZVKMLwD8oUnCTTo08duU7wxecdEvA=
 github.com/mattn/go-colorable v0.1.13/go.mod h1:7S9/ev0klgBDR4GtXTXX8a3vIGJpMovkB8vQcUbaXHg=
+github.com/mattn/go-isatty v0.0.14/go.mod h1:7GGIvUiUoEMVVmxf/4nioHXj79iQHKdU27kJ6hsGG94=
 github.com/mattn/go-isatty v0.0.16 h1:bq3VjFmv/sOjHtdEhmkEV4x1AJtvUvOJ2PFAZ5+peKQ=
 github.com/mattn/go-isatty v0.0.16/go.mod h1:kYGgaQfpe5nmfYZH+SKPsOc2e4SrIfOl2e/yFXSvRLM=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
@@ -357,6 +369,8 @@ github.com/opencontainers/runc v1.1.4/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJ
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
+github.com/pelletier/go-toml v1.9.4 h1:tjENF6MfZAg8e4ZmZTeWaWiT2vXtsoO6+iuOjFhECwM=
+github.com/pelletier/go-toml v1.9.4/go.mod h1:u1nR/EPcESfeI/szUZKdtJ0xRNbUoANCkoOuaOx1Y+c=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
 github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
@@ -412,6 +426,7 @@ github.com/sirupsen/logrus v1.8.1 h1:dJKuHgqk1NNQlqoA6BTlM1Wf9DOH3NBjQyu0h9+AZZE
 github.com/sirupsen/logrus v1.8.1/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
 github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
 github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
+github.com/spf13/cobra v1.4.0/go.mod h1:Wo4iy3BUC+X2Fybo0PDqwJIv3dNRiZLHQymsfxlB84g=
 github.com/spf13/cobra v1.6.1 h1:o94oiPyS4KD1mPy2fmcYYHHfCxLqYjJOhGsCHFZtEzA=
 github.com/spf13/cobra v1.6.1/go.mod h1:IOw/AERYS7UzyrGinqmz6HLUo219MORXGxhbaJUqzrY=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
@@ -880,6 +895,7 @@ gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20200902074654-038fdea0a05b/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
 gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
@@ -948,6 +964,8 @@ sigs.k8s.io/controller-runtime v0.13.1 h1:tUsRCSJVM1QQOOeViGeX3GMT3dQF1eePPw6sEE
 sigs.k8s.io/controller-runtime v0.13.1/go.mod h1:Zbz+el8Yg31jubvAEyglRZGdLAjplZl+PgtYNI6WNTI=
 sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 h1:iXTIw73aPyC+oRdyqqvVJuloN1p0AC/kzH07hu3NE+k=
 sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
+sigs.k8s.io/kind v0.17.0 h1:CScmGz/wX66puA06Gj8OZb76Wmk7JIjgWf5JDvY7msM=
+sigs.k8s.io/kind v0.17.0/go.mod h1:Qqp8AiwOlMZmJWs37Hgs31xcbiYXjtXlRBSftcnZXQk=
 sigs.k8s.io/kustomize/api v0.12.1 h1:7YM7gW3kYBwtKvoY216ZzY+8hM+lV53LUayghNRJ0vM=
 sigs.k8s.io/kustomize/api v0.12.1/go.mod h1:y3JUhimkZkR6sbLNwfJHxvo1TCLwuwm14sCYnkH6S1s=
 sigs.k8s.io/kustomize/kyaml v0.13.9 h1:Qz53EAaFFANyNgyOEJbT/yoIHygK40/ZcvU3rgry2Tk=
diff --git a/test/e2e-image/e2e.sh b/test/e2e-image/e2e.sh
index 150d2d06e..7b4d56f10 100755
--- a/test/e2e-image/e2e.sh
+++ b/test/e2e-image/e2e.sh
@@ -19,7 +19,7 @@ set -e
 NC='\e[0m'
 BGREEN='\e[32m'
 
-SLOW_E2E_THRESHOLD=${SLOW_E2E_THRESHOLD:-"5s"}
+#SLOW_E2E_THRESHOLD=${SLOW_E2E_THRESHOLD:-"5s"}
 FOCUS=${FOCUS:-.*}
 E2E_NODES=${E2E_NODES:-5}
 E2E_CHECK_LEAKS=${E2E_CHECK_LEAKS:-""}
@@ -28,8 +28,9 @@ ginkgo_args=(
   "-randomize-all"
   "-flake-attempts=2"
   "-fail-fast"
-  "-progress"
-  "-slow-spec-threshold=${SLOW_E2E_THRESHOLD}"
+  "--show-node-events"
+  "--poll-progress-after=180s"
+#  "-slow-spec-threshold=${SLOW_E2E_THRESHOLD}"
   "-succinct"
   "-timeout=75m"
 )

From f71f109b8d497e368dafa2b69f3424e2452e6a9a Mon Sep 17 00:00:00 2001
From: "Justin Wood (Callek)" <callek@gmail.com>
Date: Sun, 4 Dec 2022 14:51:55 -0500
Subject: [PATCH 0501/1641] Fix styling in canary annotation docs. (#9259)

Before this change, it appears on the website as:
> A weight of means implies all requests will be sent to the alternative service specified in the Ingress. `<weight-total>` defaults to 100, and can be increased via `nginx.ingress.kubernetes.io/canary-weight-total`.

Where there is the term `weight-total` as a pure html tag in the space.  This fixes it to actually display it as text in the prose.
---
 docs/user-guide/nginx-configuration/annotations.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 131320bf7..49e252589 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -146,7 +146,7 @@ In some cases, you may want to "canary" a new set of changes by sending a small
 
 * `nginx.ingress.kubernetes.io/canary-by-cookie`: The cookie to use for notifying the Ingress to route the request to the service specified in the Canary Ingress. When the cookie value is set to `always`, it will be routed to the canary. When the cookie is set to `never`, it will never be routed to the canary. For any other value, the cookie will be ignored and the request compared against the other canary rules by precedence.
 
-* `nginx.ingress.kubernetes.io/canary-weight`: The integer based (0 - <weight-total>) percent of random requests that should be routed to the service specified in the canary Ingress. A weight of 0 implies that no requests will be sent to the service in the Canary ingress by this canary rule. A weight of <weight-total> means implies all requests will be sent to the alternative service specified in the Ingress. `<weight-total>` defaults to 100, and can be increased via `nginx.ingress.kubernetes.io/canary-weight-total`.
+* `nginx.ingress.kubernetes.io/canary-weight`: The integer based (0 - <weight-total>) percent of random requests that should be routed to the service specified in the canary Ingress. A weight of 0 implies that no requests will be sent to the service in the Canary ingress by this canary rule. A weight of `<weight-total>` means implies all requests will be sent to the alternative service specified in the Ingress. `<weight-total>` defaults to 100, and can be increased via `nginx.ingress.kubernetes.io/canary-weight-total`.
 
 * `nginx.ingress.kubernetes.io/canary-weight-total`: The total weight of traffic. If unspecified, it defaults to 100.
 

From 785458ccebfe5ee13d150f25fde0335ee20a408f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 4 Dec 2022 13:09:56 -0800
Subject: [PATCH 0502/1641] Bump google.golang.org/grpc from 1.50.1 to 1.51.0
 (#9316)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.50.1 to 1.51.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.50.1...v1.51.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 074cca487..eab2f9d01 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.3.0
-	google.golang.org/grpc v1.50.1
+	google.golang.org/grpc v1.51.0
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.25.4
diff --git a/go.sum b/go.sum
index 564a127bb..21890aa7a 100644
--- a/go.sum
+++ b/go.sum
@@ -871,8 +871,8 @@ google.golang.org/grpc v1.39.0/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnD
 google.golang.org/grpc v1.39.1/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
 google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
 google.golang.org/grpc v1.46.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
-google.golang.org/grpc v1.50.1 h1:DS/BukOZWp8s6p4Dt/tOaJaTQyPyOoCcrjroHuCeLzY=
-google.golang.org/grpc v1.50.1/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI=
+google.golang.org/grpc v1.51.0 h1:E1eGv1FTqoLIdnBCZufiSHgKjlqG6fKFf6pPWtMTh8U=
+google.golang.org/grpc v1.51.0/go.mod h1:wgNDFcnuBGmxLKI/qn4T+m5BtEBYXJPvibbUPsAIPww=
 google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=

From 3aa53aaf5b210dd937598928e172ef1478e90e69 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Johannes=20W=C3=BCrbach?= <johannes.wuerbach@googlemail.com>
Date: Mon, 5 Dec 2022 02:49:01 +0100
Subject: [PATCH 0503/1641] fix: missing CORS headers when auth fails (#9251)

---
 rootfs/etc/nginx/template/nginx.tmpl |  8 ++++----
 test/e2e/annotations/auth.go         | 28 ++++++++++++++++++++++++++++
 2 files changed, 32 insertions(+), 4 deletions(-)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 92d2c9706..3ace12bc3 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -1268,6 +1268,10 @@ stream {
             deny all;
             {{ end }}
 
+            {{ if $location.CorsConfig.CorsEnabled }}
+            {{ template "CORS" $location }}
+            {{ end }}
+
             {{ if not (isLocationInLocationList $location $all.Cfg.NoAuthLocations) }}
             {{ if $authPath }}
             # this location requires authentication
@@ -1329,10 +1333,6 @@ stream {
             {{ range $limit := $limits }}
             {{ $limit }}{{ end }}
 
-            {{ if $location.CorsConfig.CorsEnabled }}
-            {{ template "CORS" $location }}
-            {{ end }}
-
             {{ buildInfluxDB $location.InfluxDB }}
 
             {{ if isValidByteSize $location.Proxy.BodySize true }}
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index 7da2ef7d9..1f0f4c3b2 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -141,6 +141,34 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 			Body().Contains("401 Authorization Required")
 	})
 
+	ginkgo.It("should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured", func() {
+		host := "auth"
+
+		s := f.EnsureSecret(buildSecret("foo", "bar", "test", f.Namespace))
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/auth-type":   "basic",
+			"nginx.ingress.kubernetes.io/auth-secret": s.Name,
+			"nginx.ingress.kubernetes.io/auth-realm":  "test auth",
+			"nginx.ingress.kubernetes.io/enable-cors": "true",
+		}
+
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, "server_name auth")
+			})
+
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusUnauthorized).
+			Header("Access-Control-Allow-Origin").Equal("*")
+	})
+
 	ginkgo.It("should return status code 200 when authentication is configured and Authorization header is sent", func() {
 		host := "auth"
 

From 3474c33e15d809ba401b38891a2ed3c4080b751e Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Mon, 5 Dec 2022 09:55:02 +0100
Subject: [PATCH 0504/1641] update OpenTelemetry image (#9308)

* update OpenTelemetry image

* review comment

* helm-docs

* clean
---
 charts/ingress-nginx/README.md                |  3 +++
 charts/ingress-nginx/templates/_helpers.tpl   | 17 +++++++++++++
 .../templates/controller-deployment.yaml      | 25 ++++++++-----------
 charts/ingress-nginx/values.yaml              |  8 ++++--
 4 files changed, 37 insertions(+), 16 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 5ddd046ea..36c98984c 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -372,6 +372,9 @@ Kubernetes: `>=1.20.0-0`
 | controller.minReadySeconds | int | `0` | `minReadySeconds` to avoid killing pods before we are ready # |
 | controller.name | string | `"controller"` |  |
 | controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment # Ref: https://kubernetes.io/docs/user-guide/node-selection/ # |
+| controller.opentelemetry.containerSecurityContext.allowPrivilegeEscalation | bool | `false` |  |
+| controller.opentelemetry.enabled | bool | `false` |  |
+| controller.opentelemetry.image | string | `"registry.k8s.io/ingress-nginx/opentelemetry:v20221114-controller-v1.5.1-6-ga66ee73c5@sha256:41076fd9fb4255677c1a3da1ac3fc41477f06eba3c7ebf37ffc8f734dad51d7c"` |  |
 | controller.podAnnotations | object | `{}` | Annotations to be added to controller pods # |
 | controller.podLabels | object | `{}` | Labels to add to the pod container metadata |
 | controller.podSecurityContext | object | `{}` | Security Context policies for controller pods |
diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index 790a19350..7db5b2ca8 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -193,3 +193,20 @@ IngressClass parameters.
 {{ toYaml .Values.controller.ingressClassResource.parameters | indent 4}}
   {{ end }}
 {{- end -}}
+
+{{/*
+Extra modules.
+*/}}
+{{- define "extraModules" -}}
+
+- name: {{ .name }}
+  image: {{ .image }}
+  command: ['sh', '-c', '/usr/local/bin/init_module.sh']
+  {{- if (.containerSecurityContext) }}
+  securityContext: {{ .containerSecurityContext | toYaml | nindent 4 }}
+  {{- end }}
+  volumeMounts:
+    - name: {{ toYaml "modules"}}
+      mountPath: {{ toYaml "/modules_mount"}}
+
+{{- end -}}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 9dac747ea..5cd3c1901 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -147,9 +147,9 @@ spec:
               hostPort: {{ $key }}
               {{- end }}
           {{- end }}
-        {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraModules) }}
+        {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
           volumeMounts:
-          {{- if .Values.controller.extraModules }}
+          {{- if (or .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
             - name: modules
             {{ if .Values.controller.image.chroot }}
               mountPath: /chroot/modules_mount
@@ -177,24 +177,21 @@ spec:
       {{- if .Values.controller.extraContainers }}
         {{ toYaml .Values.controller.extraContainers | nindent 8 }}
       {{- end }}
-    {{- if (or .Values.controller.extraInitContainers .Values.controller.extraModules) }}
+    {{- if (or .Values.controller.extraInitContainers .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
       initContainers:
       {{- if .Values.controller.extraInitContainers }}
         {{ toYaml .Values.controller.extraInitContainers | nindent 8 }}
       {{- end }}
       {{- if .Values.controller.extraModules }}
         {{- range .Values.controller.extraModules }}
-          - name: {{ .name }}
-            image: {{ .image }}
-            command: ['sh', '-c', '/usr/local/bin/init_module.sh']
-            {{- if (or $.Values.controller.containerSecurityContext .containerSecurityContext) }}
-            securityContext: {{ .containerSecurityContext | default $.Values.controller.containerSecurityContext | toYaml | nindent 14 }}
-            {{- end }}
-            volumeMounts:
-              - name: modules
-                mountPath: /modules_mount
+          {{ $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
+          {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext | nindent 8) }}
         {{- end }}
       {{- end }}
+      {{- if .Values.controller.opentelemetry.enabled}}
+          {{ $otelContainerSecurityContext := $.Values.controller.opentelemetry.containerSecurityContext | default $.Values.controller.containerSecurityContext }}
+          {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext) | nindent 8}}
+      {{- end}}
     {{- end }}
     {{- if .Values.controller.hostNetwork }}
       hostNetwork: {{ .Values.controller.hostNetwork }}
@@ -213,9 +210,9 @@ spec:
     {{- end }}
       serviceAccountName: {{ template "ingress-nginx.serviceAccountName" . }}
       terminationGracePeriodSeconds: {{ .Values.controller.terminationGracePeriodSeconds }}
-    {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraVolumes .Values.controller.extraModules) }}
+    {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraVolumes .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
       volumes:
-      {{- if .Values.controller.extraModules }}
+      {{- if (or .Values.controller.extraModules .Values.controller.opentelemetry.enabled)}}
         - name: modules
           emptyDir: {}
       {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index f80095c56..6dc28c08d 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -583,8 +583,6 @@ controller:
 
   # -- Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module
   extraModules: []
-  # - name: opentelemetry
-  #   image: registry.k8s.io/ingress-nginx/opentelemetry:v20220906-g981ce38a7@sha256:aa079daa7efd93aa830e26483a49a6343354518360929494bad1d0ad3303142e
   #   containerSecurityContext:
   #     allowPrivilegeEscalation: false
   #
@@ -592,6 +590,12 @@ controller:
   # will be executed as initContainers, to move its config files within the
   # mounted volume.
 
+  opentelemetry:
+    enabled: false
+    image: registry.k8s.io/ingress-nginx/opentelemetry:v20221114-controller-v1.5.1-6-ga66ee73c5@sha256:41076fd9fb4255677c1a3da1ac3fc41477f06eba3c7ebf37ffc8f734dad51d7c
+    containerSecurityContext:
+      allowPrivilegeEscalation: false
+
   admissionWebhooks:
     annotations: {}
     # ignore-check.kube-linter.io/no-read-only-rootfs: "This deployment needs write access to root filesystem".

From acf6f0a20265229586fc9e3de02b321b36972b2a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 5 Dec 2022 14:33:03 -0800
Subject: [PATCH 0505/1641] Bump github/codeql-action from 2.1.31 to 2.1.35
 (#9369)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.31 to 2.1.35.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898...b2a92eb56d8cb930006a1c6ed86b0782dd8a4297)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 7e936c08b..7b0dac782 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898 # v2.1.14
+        uses: github/codeql-action/upload-sarif@b2a92eb56d8cb930006a1c6ed86b0782dd8a4297 # v2.1.14
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 6cb1dada7..bb9b2fbf0 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898
+      uses: github/codeql-action/upload-sarif@b2a92eb56d8cb930006a1c6ed86b0782dd8a4297
       with:
         token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository

From f3f6554405649de787a3577e5ed445fe3c4ea4aa Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 5 Dec 2022 14:35:03 -0800
Subject: [PATCH 0506/1641] Bump actions/setup-go from 3.3.1 to 3.4.0 (#9370)

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3.3.1 to 3.4.0.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/c4a742cab115ed795e34d4513e2cf7d472deb55f...d0a58c1c4d2b25278816e339b944508c875f3613)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml     | 6 +++---
 .github/workflows/plugin.yaml | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 6f0c4aee2..f26a99aac 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -81,7 +81,7 @@ jobs:
 
       - name: Set up Go 1.19.2
         id: go
-        uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f # v3.2.0
+        uses: actions/setup-go@d0a58c1c4d2b25278816e339b944508c875f3613 # v3.2.0
         with:
           go-version: '1.19.2'
 
@@ -147,7 +147,7 @@ jobs:
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
       - name: Setup Go
-        uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f # v3.2.0
+        uses: actions/setup-go@d0a58c1c4d2b25278816e339b944508c875f3613 # v3.2.0
         with:
           go-version: '1.19.2'
 
@@ -423,7 +423,7 @@ jobs:
       - name: Set up Go 1.19.2
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f # v3.2.0
+        uses: actions/setup-go@d0a58c1c4d2b25278816e339b944508c875f3613 # v3.2.0
         with:
           go-version: '1.19.2'
 
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 5da461528..398d0075b 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -22,7 +22,7 @@ jobs:
           fetch-depth: 0
 
       - name: Set up Go
-        uses: actions/setup-go@c4a742cab115ed795e34d4513e2cf7d472deb55f # v3.2.0
+        uses: actions/setup-go@d0a58c1c4d2b25278816e339b944508c875f3613 # v3.2.0
         with:
           go-version: 1.19.2
 

From f9cce5a4ed7ef372a18bc826e395ff5660b7a444 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Tomek=20=C5=9Awi=C4=99cicki?= <tomislater@gmail.com>
Date: Tue, 6 Dec 2022 16:26:38 +0100
Subject: [PATCH 0507/1641] [user-guide configmap] fix doc for
 global-auth-snippet (#9372)

---
 docs/user-guide/nginx-configuration/configmap.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index c985d7373..f5d22d11c 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -1221,7 +1221,7 @@ _**default:**_ ""
 ## global-auth-snippet
 
 Sets a custom snippet to use with external authentication. Applied to all the locations.
-Similar to the Ingress rule annotation `nginx.ingress.kubernetes.io/auth-request-redirect`.
+Similar to the Ingress rule annotation `nginx.ingress.kubernetes.io/auth-snippet`.
 _**default:**_ ""
 
 ## global-auth-cache-key

From ad4655a568f907ef85c43c264f2db487401b1ea2 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 7 Dec 2022 08:54:37 +0530
Subject: [PATCH 0508/1641] integrated junit-reports with ghactions (#9361)

---
 .github/workflows/ci.yaml            |  6 ++++++
 .github/workflows/junit-reports.yaml | 16 ++++++++++++++++
 build/run-e2e-suite.sh               |  1 +
 3 files changed, 23 insertions(+)
 create mode 100644 .github/workflows/junit-reports.yaml

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index f26a99aac..494477b81 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -267,6 +267,12 @@ jobs:
           kind get kubeconfig > $HOME/.kube/kind-config-kind
           make kind-e2e-test
 
+      - name: Uplaod e2e junit-reports
+        uses: actions/upload-artifact@v2
+        if: success() || failure()
+        with:
+          name: e2e-test-reports
+          path: 'test/junitreports/report*.xml'
 
   kubernetes-chroot:
     name: Kubernetes chroot
diff --git a/.github/workflows/junit-reports.yaml b/.github/workflows/junit-reports.yaml
new file mode 100644
index 000000000..21f2674a1
--- /dev/null
+++ b/.github/workflows/junit-reports.yaml
@@ -0,0 +1,16 @@
+name: 'E2E Test Report'
+on:
+  workflow_run:
+    workflows: ['CI']                     # runs after CI workflow
+    types:
+      - completed
+jobs:
+  report:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: dorny/test-reporter@v1
+      with:
+        artifact: e2e-test-reports
+        name: JEST Tests                  # Name of the check run which will be created
+        path: 'report*.xml'                     # Path to test results (inside artifact .zip)
+        reporter: jest-junit              # Format of test results
diff --git a/build/run-e2e-suite.sh b/build/run-e2e-suite.sh
index ebbac9145..ae38b5fcc 100755
--- a/build/run-e2e-suite.sh
+++ b/build/run-e2e-suite.sh
@@ -99,6 +99,7 @@ cd $reportsDir
 #for cmName in `k get cm -l junitreport=true -o json | jq  '.items[].binaryData | keys[]' | tr '\"' ' '`
 #do
 #
+#
 # kubectl get cm -l junitreport=true -o json | jq -r  '[.items[].binaryData | to_entries[] | {"key": .key, "value": .value  }] | from_entries'
 #
 

From d7674e43230274a485ff90054383083ea4280ef8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jan-Otto=20Kr=C3=B6pke?= <github@jkroepke.de>
Date: Wed, 7 Dec 2022 13:16:38 +0100
Subject: [PATCH 0509/1641] feat(helm): Optionally use cert-manager instead
 admission patch (#9279)

---
 charts/ingress-nginx/README.md                | 18 ++++++
 charts/ingress-nginx/README.md.gotmpl         | 15 +++++
 ...ler-admission-tls-cert-manager-values.yaml |  6 ++
 .../admission-webhooks/cert-manager.yaml      | 63 +++++++++++++++++++
 .../job-patch/clusterrole.yaml                |  2 +-
 .../job-patch/clusterrolebinding.yaml         |  2 +-
 .../job-patch/job-createSecret.yaml           |  2 +-
 .../job-patch/job-patchWebhook.yaml           |  2 +-
 .../admission-webhooks/job-patch/role.yaml    |  2 +-
 .../job-patch/rolebinding.yaml                |  2 +-
 .../job-patch/serviceaccount.yaml             |  2 +-
 .../validating-webhook.yaml                   |  7 ++-
 .../templates/controller-daemonset.yaml       |  7 +++
 .../templates/controller-deployment.yaml      |  7 +++
 charts/ingress-nginx/values.yaml              | 11 ++++
 test/e2e/run-chart-test.sh                    |  8 ++-
 16 files changed, 147 insertions(+), 9 deletions(-)
 create mode 100644 charts/ingress-nginx/ci/controller-admission-tls-cert-manager-values.yaml
 create mode 100644 charts/ingress-nginx/templates/admission-webhooks/cert-manager.yaml

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 36c98984c..0e2800d94 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -217,6 +217,21 @@ With nginx-ingress-controller version 0.25+, the nginx ingress controller pod ex
 
 With nginx-ingress-controller in 0.25.* work only with kubernetes 1.14+, 0.26 fix [this issue](https://github.com/kubernetes/ingress-nginx/pull/4521)
 
+#### How the Chart Configures the Hooks
+A validating and configuration requires the endpoint to which the request is sent to use TLS. It is possible to set up custom certificates to do this, but in most cases, a self-signed certificate is enough. The setup of this component requires some more complex orchestration when using helm. The steps are created to be idempotent and to allow turning the feature on and off without running into helm quirks.
+
+1. A pre-install hook provisions a certificate into the same namespace using a format compatible with provisioning using end user certificates. If the certificate already exists, the hook exits.
+2. The ingress nginx controller pod is configured to use a TLS proxy container, which will load that certificate.
+3. Validating and Mutating webhook configurations are created in the cluster.
+4. A post-install hook reads the CA from the secret created by step 1 and patches the Validating and Mutating webhook configurations. This process will allow a custom CA provisioned by some other process to also be patched into the webhook configurations. The chosen failure policy is also patched into the webhook configurations
+
+#### Alternatives
+It should be possible to use [cert-manager/cert-manager](https://github.com/cert-manager/cert-manager) if a more complete solution is required.
+
+You can enable automatic self-signed TLS certificate provisioning via cert-manager by setting the `controller.admissionWebhooks.certManager.enable` value to true.
+
+Please ensure that cert-manager is correctly installed and configured.
+
 ### Helm Error When Upgrading: spec.clusterIP: Invalid value: ""
 
 If you are upgrading this chart from a version between 0.31.0 and 1.2.2 then you may get an error like this:
@@ -240,6 +255,9 @@ Kubernetes: `>=1.20.0-0`
 | commonLabels | object | `{}` |  |
 | controller.addHeaders | object | `{}` | Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers |
 | controller.admissionWebhooks.annotations | object | `{}` |  |
+| controller.admissionWebhooks.certManager.admissionCert.duration | string | `""` |  |
+| controller.admissionWebhooks.certManager.enabled | bool | `false` |  |
+| controller.admissionWebhooks.certManager.rootCert.duration | string | `""` |  |
 | controller.admissionWebhooks.certificate | string | `"/usr/local/certificates/cert"` |  |
 | controller.admissionWebhooks.createSecretJob.resources | object | `{}` |  |
 | controller.admissionWebhooks.createSecretJob.securityContext.allowPrivilegeEscalation | bool | `false` |  |
diff --git a/charts/ingress-nginx/README.md.gotmpl b/charts/ingress-nginx/README.md.gotmpl
index 9a7d7bdfd..78e4f38d4 100644
--- a/charts/ingress-nginx/README.md.gotmpl
+++ b/charts/ingress-nginx/README.md.gotmpl
@@ -216,6 +216,21 @@ With nginx-ingress-controller version 0.25+, the nginx ingress controller pod ex
 
 With nginx-ingress-controller in 0.25.* work only with kubernetes 1.14+, 0.26 fix [this issue](https://github.com/kubernetes/ingress-nginx/pull/4521)
 
+#### How the Chart Configures the Hooks
+A validating and configuration requires the endpoint to which the request is sent to use TLS. It is possible to set up custom certificates to do this, but in most cases, a self-signed certificate is enough. The setup of this component requires some more complex orchestration when using helm. The steps are created to be idempotent and to allow turning the feature on and off without running into helm quirks.
+
+1. A pre-install hook provisions a certificate into the same namespace using a format compatible with provisioning using end user certificates. If the certificate already exists, the hook exits.
+2. The ingress nginx controller pod is configured to use a TLS proxy container, which will load that certificate.
+3. Validating and Mutating webhook configurations are created in the cluster.
+4. A post-install hook reads the CA from the secret created by step 1 and patches the Validating and Mutating webhook configurations. This process will allow a custom CA provisioned by some other process to also be patched into the webhook configurations. The chosen failure policy is also patched into the webhook configurations
+
+#### Alternatives
+It should be possible to use [cert-manager/cert-manager](https://github.com/cert-manager/cert-manager) if a more complete solution is required.
+
+You can enable automatic self-signed TLS certificate provisioning via cert-manager by setting the `controller.admissionWebhooks.certManager.enable` value to true.
+
+Please ensure that cert-manager is correctly installed and configured.
+
 ### Helm Error When Upgrading: spec.clusterIP: Invalid value: ""
 
 If you are upgrading this chart from a version between 0.31.0 and 1.2.2 then you may get an error like this:
diff --git a/charts/ingress-nginx/ci/controller-admission-tls-cert-manager-values.yaml b/charts/ingress-nginx/ci/controller-admission-tls-cert-manager-values.yaml
new file mode 100644
index 000000000..a13241cd4
--- /dev/null
+++ b/charts/ingress-nginx/ci/controller-admission-tls-cert-manager-values.yaml
@@ -0,0 +1,6 @@
+controller:
+  admissionWebhooks:
+    certManager:
+      enabled: true
+  service:
+    type: ClusterIP
diff --git a/charts/ingress-nginx/templates/admission-webhooks/cert-manager.yaml b/charts/ingress-nginx/templates/admission-webhooks/cert-manager.yaml
new file mode 100644
index 000000000..55fab471c
--- /dev/null
+++ b/charts/ingress-nginx/templates/admission-webhooks/cert-manager.yaml
@@ -0,0 +1,63 @@
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.certManager.enabled -}}
+{{- if not .Values.controller.admissionWebhooks.certManager.issuerRef -}}
+# Create a selfsigned Issuer, in order to create a root CA certificate for
+# signing webhook serving certificates
+apiVersion: cert-manager.io/v1
+kind: Issuer
+metadata:
+  name: {{ include "ingress-nginx.fullname" . }}-self-signed-issuer
+  namespace: {{ .Release.Namespace }}
+spec:
+  selfSigned: {}
+---
+# Generate a CA Certificate used to sign certificates for the webhook
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: {{ include "ingress-nginx.fullname" . }}-root-cert
+  namespace: {{ .Release.Namespace }}
+spec:
+  secretName: {{ include "ingress-nginx.fullname" . }}-root-cert
+  duration: {{ .Values.controller.admissionWebhooks.certManager.rootCert.duration | default "43800h0m0s" | quote }}
+  issuerRef:
+    name: {{ include "ingress-nginx.fullname" . }}-self-signed-issuer
+  commonName: "ca.webhook.ingress-nginx"
+  isCA: true
+  subject:
+    organizations:
+      - ingress-nginx
+---
+# Create an Issuer that uses the above generated CA certificate to issue certs
+apiVersion: cert-manager.io/v1
+kind: Issuer
+metadata:
+  name: {{ include "ingress-nginx.fullname" . }}-root-issuer
+  namespace: {{ .Release.Namespace }}
+spec:
+  ca:
+    secretName: {{ include "ingress-nginx.fullname" . }}-root-cert
+{{- end }}
+---
+# generate a server certificate for the apiservices to use
+apiVersion: cert-manager.io/v1
+kind: Certificate
+metadata:
+  name: {{ include "ingress-nginx.fullname" . }}-admission
+  namespace: {{ .Release.Namespace }}
+spec:
+  secretName: {{ include "ingress-nginx.fullname" . }}-admission
+  duration: {{ .Values.controller.admissionWebhooks.certManager.admissionCert.duration | default "8760h0m0s" | quote }}
+  issuerRef:
+    {{- if .Values.controller.admissionWebhooks.certManager.issuerRef }}
+    {{- toYaml .Values.controller.admissionWebhooks.certManager.issuerRef | nindent 4 }}
+    {{- else }}
+    name: {{ include "ingress-nginx.fullname" . }}-root-issuer
+    {{- end }}
+  dnsNames:
+    - {{ include "ingress-nginx.controller.fullname" . }}-admission
+    - {{ include "ingress-nginx.controller.fullname" . }}-admission.{{ .Release.Namespace }}
+    - {{ include "ingress-nginx.controller.fullname" . }}-admission.{{ .Release.Namespace }}.svc
+  subject:
+    organizations:
+      - ingress-nginx-admission
+{{- end -}}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
index 5659a1f10..f9ec70974 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled -}}
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
index abf17fb9f..002abd43b 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled -}}
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
index de78f45bd..d93433ecd 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled -}}
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
 apiVersion: batch/v1
 kind: Job
 metadata:
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
index b670aa05a..0fa3ff9a2 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled -}}
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
 apiVersion: batch/v1
 kind: Job
 metadata:
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
index 795bac6b9..2aab6f4b1 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled -}}
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
index 698c5c864..60c3f4ff0 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled -}}
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
index eae475118..00be54ec5 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled -}}
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
 apiVersion: v1
 kind: ServiceAccount
 metadata:
diff --git a/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
index 8caffcb03..f27244dc9 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
@@ -4,8 +4,13 @@
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
+  annotations:
+  {{- if .Values.controller.admissionWebhooks.certManager.enabled }}
+    certmanager.k8s.io/inject-ca-from: {{ printf "%s/%s-admission" .Release.Namespace (include "ingress-nginx.fullname" .) | quote }}
+    cert-manager.io/inject-ca-from: {{ printf "%s/%s-admission" .Release.Namespace (include "ingress-nginx.fullname" .) | quote }}
+  {{- end }}
   {{- if .Values.controller.admissionWebhooks.annotations }}
-  annotations: {{ toYaml .Values.controller.admissionWebhooks.annotations | nindent 4 }}
+    {{- toYaml .Values.controller.admissionWebhooks.annotations | nindent 4 }}
   {{- end }}
   labels:
     {{- include "ingress-nginx.labels" . | nindent 4 }}
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 802730331..e6721566b 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -225,6 +225,13 @@ spec:
         - name: webhook-cert
           secret:
             secretName: {{ include "ingress-nginx.fullname" . }}-admission
+        {{- if .Values.controller.admissionWebhooks.certManager.enabled }}
+            items:
+              - key: tls.crt
+                path: cert
+              - key: tls.key
+                path: key
+        {{- end }}
       {{- end }}
       {{- if .Values.controller.extraVolumes }}
         {{ toYaml .Values.controller.extraVolumes | nindent 8 }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 5cd3c1901..9f1cf70db 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -228,6 +228,13 @@ spec:
         - name: webhook-cert
           secret:
             secretName: {{ include "ingress-nginx.fullname" . }}-admission
+        {{- if .Values.controller.admissionWebhooks.certManager.enabled }}
+            items:
+              - key: tls.crt
+                path: cert
+              - key: tls.key
+                path: key
+        {{- end }}
       {{- end }}
       {{- if .Values.controller.extraVolumes }}
         {{ toYaml .Values.controller.extraVolumes | nindent 8 }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 6dc28c08d..161f974fe 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -677,6 +677,17 @@ controller:
         runAsUser: 2000
         fsGroup: 2000
 
+    # Use certmanager to generate webhook certs
+    certManager:
+      enabled: false
+      # self-signed root certificate
+      rootCert:
+        duration: ""  # default to be 5y
+      admissionCert:
+        duration: ""  # default to be 1y
+      # issuerRef:
+      #   name: "issuer"
+      #   kind: "ClusterIssuer"
 
   metrics:
     port: 10254
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index fdb3121d8..b2e54993f 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -83,13 +83,19 @@ if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
 fi
-  
+
 
 KIND_WORKERS=$(kind get nodes --name="${KIND_CLUSTER_NAME}" | awk '{printf (NR>1?",":"") $1}')
 echo "[dev-env] copying docker images to cluster..."
 
 kind load docker-image --name="${KIND_CLUSTER_NAME}" --nodes=${KIND_WORKERS} ${REGISTRY}/controller:${TAG}
 
+if [ "${SKIP_CERT_MANAGER_CREATION:-false}" = "false" ]; then
+  echo "[dev-env] apply cert-manager ..."
+  kubectl apply --wait -f https://github.com/cert-manager/cert-manager/releases/download/v1.10.0/cert-manager.yaml
+  sleep 10
+fi
+
 echo "[dev-env] running helm chart e2e tests..."
 # Uses a custom chart-testing image to avoid timeouts waiting for namespace deletion.
 # The changes can be found here: https://github.com/aledbf/chart-testing/commit/41fe0ae0733d0c9a538099fb3cec522e888e3d82

From 59d80f05bc6a363576c2b3c4707d768f1b7b8f66 Mon Sep 17 00:00:00 2001
From: Thomas Milox <thomasmilox@gmail.com>
Date: Thu, 8 Dec 2022 01:10:22 +0100
Subject: [PATCH 0510/1641] doc: update NEW_CONTRIBUTOR.md (#9381)

Add a reference to docker-mac-net-connect for macOS users experiencing ingress not being exposed

Signed-off-by: TommyStarK <thomasmilox@gmail.com>

Signed-off-by: TommyStarK <thomasmilox@gmail.com>
---
 NEW_CONTRIBUTOR.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/NEW_CONTRIBUTOR.md b/NEW_CONTRIBUTOR.md
index 816d05778..e89c1ba88 100644
--- a/NEW_CONTRIBUTOR.md
+++ b/NEW_CONTRIBUTOR.md
@@ -848,3 +848,5 @@ As you can see from the above output there are several headers added to the curl
 - Cluster Creation tools
     - [kind](https://kind.sigs.k8s.io/docs/user/quick-start/)
     - [minikube](https://minikube.sigs.k8s.io/docs/start/)
+- MacOS users
+	- [docker-mac-net-connect](https://github.com/chipmk/docker-mac-net-connect) - See this [issue](https://github.com/kubernetes/minikube/issues/7332)

From 2cb3ce5db68c4d3f1022068527e55c1018dccf9d Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 8 Dec 2022 10:52:24 -0500
Subject: [PATCH 0511/1641] added action for issues to project (#9386)

Signed-off-by: James Strong <james.strong@chainguard.dev>

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 .github/workflows/project.yml | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 .github/workflows/project.yml

diff --git a/.github/workflows/project.yml b/.github/workflows/project.yml
new file mode 100644
index 000000000..9baa09bf2
--- /dev/null
+++ b/.github/workflows/project.yml
@@ -0,0 +1,19 @@
+name: Adds all issues
+
+on:
+  issues:
+    types:
+      - opened
+
+jobs:
+  add-to-project:
+    name: Add issue to project
+    runs-on: ubuntu-latest
+    permissions:
+      repository-projects: write
+      issues: write 
+    steps:
+      - uses: actions/add-to-project@960fbad431afda394cfcf8743445e741acd19e85 #v0.4.0
+        with:
+          project-url: https://github.com/orgs/kubernetes/projects/104
+          github-token: ${{ secrets.PROJECT_WRITER }}

From 7e7d0e86992cf2fcda76ccdd2a1c28e16d14704f Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 11 Dec 2022 21:33:19 -0300
Subject: [PATCH 0512/1641] Add reporter for all tests (#9395)

---
 .github/workflows/ci.yaml            | 16 +++++++++++++---
 .github/workflows/junit-reports.yaml |  4 ++--
 2 files changed, 15 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 494477b81..0f21ccc4e 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -13,7 +13,7 @@ on:
     inputs:
       run_e2e:
         description: 'Force e2e to run'
-        required: true
+        required: false
         type: boolean
 
 permissions:
@@ -73,6 +73,9 @@ jobs:
     name: Build
     runs-on: ubuntu-latest
     needs: changes
+    if: |
+      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.charts == 'true') || ${{ inputs.run_e2e }} 
+
 
     steps:
 
@@ -268,10 +271,10 @@ jobs:
           make kind-e2e-test
 
       - name: Uplaod e2e junit-reports
-        uses: actions/upload-artifact@v2
+        uses: actions/upload-artifact@v3
         if: success() || failure()
         with:
-          name: e2e-test-reports
+          name: e2e-test-reports-${{ matrix.k8s }}
           path: 'test/junitreports/report*.xml'
 
   kubernetes-chroot:
@@ -330,6 +333,13 @@ jobs:
         run: |
           kind get kubeconfig > $HOME/.kube/kind-config-kind
           make kind-e2e-test
+      
+      - name: Uplaod e2e junit-reports
+        uses: actions/upload-artifact@v3
+        if: success() || failure()
+        with:
+          name: e2e-test-reports-chroot-${{ matrix.k8s }}
+          path: 'test/junitreports/report*.xml'
 
 
   test-image-build:
diff --git a/.github/workflows/junit-reports.yaml b/.github/workflows/junit-reports.yaml
index 21f2674a1..f02e68466 100644
--- a/.github/workflows/junit-reports.yaml
+++ b/.github/workflows/junit-reports.yaml
@@ -10,7 +10,7 @@ jobs:
     steps:
     - uses: dorny/test-reporter@v1
       with:
-        artifact: e2e-test-reports
-        name: JEST Tests                  # Name of the check run which will be created
+        artifact: /e2e-test-reports-(.*)/
+        name: JEST Tests $1                 # Name of the check run which will be created
         path: 'report*.xml'                     # Path to test results (inside artifact .zip)
         reporter: jest-junit              # Format of test results

From 8736b3b9a76ef9d499f5cd69886aa85b4c927248 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Mon, 12 Dec 2022 22:05:37 +0800
Subject: [PATCH 0513/1641] ci: remove setup-kind step (#9401)

kind is already installed by default in the current GitHub Action
environment.

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 .github/workflows/ci.yaml | 26 ++++++++------------------
 1 file changed, 8 insertions(+), 18 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 0f21ccc4e..69ff30f65 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -189,10 +189,8 @@ jobs:
 
       - name: Create Kubernetes ${{ matrix.k8s }} cluster
         id: kind
-        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
-        with:
-          version: v0.15.0
-          image: kindest/node:${{ matrix.k8s }}
+        run: |
+          kind create cluster --image=kindest/node:${{ matrix.k8s }}
 
       - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af # v1
         with:
@@ -239,11 +237,8 @@ jobs:
 
       - name: Create Kubernetes ${{ matrix.k8s }} cluster
         id: kind
-        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
-        with:
-          version: v0.15.0
-          config: test/e2e/kind.yaml
-          image: kindest/node:${{ matrix.k8s }}
+        run: |
+          kind create cluster --image=kindest/node:${{ matrix.k8s }} --config test/e2e/kind.yaml
 
       - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af # v1
         with:
@@ -302,11 +297,8 @@ jobs:
 
       - name: Create Kubernetes ${{ matrix.k8s }} cluster
         id: kind
-        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
-        with:
-          version: v0.15.0
-          config: test/e2e/kind.yaml
-          image: kindest/node:${{ matrix.k8s }}
+        run: |
+          kind create cluster --image=kindest/node:${{ matrix.k8s }} --config test/e2e/kind.yaml
 
       - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af
         with:
@@ -431,10 +423,8 @@ jobs:
       - name: Create Kubernetes cluster
         id: kind
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: engineerd/setup-kind@aa272fe2a7309878ffc2a81c56cfe3ef108ae7d0 #v0.5.0
-        with:
-          version: v0.15.0
-          image: kindest/node:v1.25.2
+        run: |
+          kind create cluster --image=kindest/node:${{ matrix.k8s }}
 
       - name: Set up Go 1.19.2
         id: go

From 4f528fc70a3bfcc2aff1614234891b27aebc1608 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Tue, 13 Dec 2022 00:45:34 +0800
Subject: [PATCH 0514/1641] ci: remove setup-helm step (#9404)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 .github/workflows/ci.yaml | 12 ------------
 1 file changed, 12 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 69ff30f65..cb575ace6 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -245,12 +245,6 @@ jobs:
           name: docker.tar.gz
           failOnError: false
 
-      - name: Prepare cluster for testing
-        uses: azure/setup-helm@f382f75448129b3be48f8121b9857be18d815a82 #v2.1
-        with:
-          version: 'v3.8.0'
-        id: local-path
-
       - name: Load images from cache
         run: |
           echo "loading docker images..."
@@ -305,12 +299,6 @@ jobs:
           name: docker.tar.gz
           failOnError: false
 
-      - name: Prepare cluster for testing
-        uses: azure/setup-helm@f382f75448129b3be48f8121b9857be18d815a82 #v2.1
-        with:
-          version: 'v3.8.0'
-        id: local-path
-
       - name: Load images from cache
         run: |
           echo "loading docker images..."

From b93b277e5a0d3928b770da86921fb5c4c7c2c8b4 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 12 Dec 2022 19:07:33 -0800
Subject: [PATCH 0515/1641] Bump github/codeql-action from 2.1.35 to 2.1.36
 (#9400)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.35 to 2.1.36.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/b2a92eb56d8cb930006a1c6ed86b0782dd8a4297...a669cc5936cc5e1b6a362ec1ff9e410dc570d190)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 7b0dac782..a9c36481b 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@b2a92eb56d8cb930006a1c6ed86b0782dd8a4297 # v2.1.14
+        uses: github/codeql-action/upload-sarif@a669cc5936cc5e1b6a362ec1ff9e410dc570d190 # v2.1.14
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index bb9b2fbf0..af46c2bcc 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@b2a92eb56d8cb930006a1c6ed86b0782dd8a4297
+      uses: github/codeql-action/upload-sarif@a669cc5936cc5e1b6a362ec1ff9e410dc570d190
       with:
         token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository

From 651b8468210dee3a81e074be2cf938a7152839e6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 17 Dec 2022 02:29:42 -0800
Subject: [PATCH 0516/1641] Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0
 (#9398)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.5.1 to 2.6.0.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.5.1...v2.6.0)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  9 +--------
 go.sum | 21 ++-------------------
 2 files changed, 3 insertions(+), 27 deletions(-)

diff --git a/go.mod b/go.mod
index eab2f9d01..90f11e285 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.5.1
+	github.com/onsi/ginkgo/v2 v2.6.0
 	github.com/opencontainers/runc v1.1.4
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.14.0
@@ -54,7 +54,6 @@ require (
 	github.com/BurntSushi/toml v1.0.0 // indirect
 	github.com/PuerkitoBio/purell v1.1.1 // indirect
 	github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 // indirect
-	github.com/alessio/shellescape v1.4.1 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/blang/semver/v4 v4.0.0 // indirect
 	github.com/cespare/xxhash/v2 v2.1.2 // indirect
@@ -71,7 +70,6 @@ require (
 	github.com/go-openapi/jsonpointer v0.19.5 // indirect
 	github.com/go-openapi/jsonreference v0.19.5 // indirect
 	github.com/go-openapi/swag v0.19.14 // indirect
-	github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0 // indirect
 	github.com/godbus/dbus/v5 v5.0.6 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang-jwt/jwt/v4 v4.2.0 // indirect
@@ -82,8 +80,6 @@ require (
 	github.com/google/gnostic v0.5.7-v3refs // indirect
 	github.com/google/go-cmp v0.5.9 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
-	github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1 // indirect
-	github.com/google/safetext v0.0.0-20220905092116-b49f7bc46da2 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.2.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 // indirect
@@ -92,7 +88,6 @@ require (
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
 	github.com/mattn/go-colorable v0.1.13 // indirect
-	github.com/mattn/go-isatty v0.0.16 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 // indirect
 	github.com/mmarkdown/mmark v2.0.40+incompatible // indirect
 	github.com/moby/sys/mountinfo v0.5.0 // indirect
@@ -102,7 +97,6 @@ require (
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
 	github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 // indirect
 	github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 // indirect
-	github.com/pelletier/go-toml v1.9.4 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/prometheus/procfs v0.8.0 // indirect
@@ -131,7 +125,6 @@ require (
 	k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1 // indirect
 	k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed // indirect
 	sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 // indirect
-	sigs.k8s.io/kind v0.17.0 // indirect
 	sigs.k8s.io/kustomize/api v0.12.1 // indirect
 	sigs.k8s.io/kustomize/kyaml v0.13.9 // indirect
 	sigs.k8s.io/structured-merge-diff/v4 v4.2.3 // indirect
diff --git a/go.sum b/go.sum
index 21890aa7a..9a608ff9d 100644
--- a/go.sum
+++ b/go.sum
@@ -60,7 +60,6 @@ github.com/Azure/go-autorest/logger v0.2.1 h1:IG7i4p/mDa2Ce4TRyAO8IHnVhAVF3RFU+Z
 github.com/Azure/go-autorest/logger v0.2.1/go.mod h1:T9E3cAhj2VqvPOtCYAvby9aBXkZmbF5NWuPV8+WeEW8=
 github.com/Azure/go-autorest/tracing v0.6.0 h1:TYi4+3m5t6K48TGI9AUdb+IzbnSxvnvUMfuitfgcfuo=
 github.com/Azure/go-autorest/tracing v0.6.0/go.mod h1:+vhtPC754Xsa23ID7GlGsrdKBpUA79WCAKPPZVC2DeU=
-github.com/BurntSushi/toml v0.3.1 h1:WXkYYl6Yr3qBf1K79EBnL4mak0OimBfB0XUf9Vl28OQ=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/toml v1.0.0 h1:dtDWrepsVPfW9H/4y7dDgFc2MBUSeJhlaDtK13CxFlU=
 github.com/BurntSushi/toml v1.0.0/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
@@ -75,8 +74,6 @@ github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuy
 github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190717042225-c3de453c63f4/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d/go.mod h1:rBZYJk541a8SKzHPHnH3zbiI+7dagKZ0cgpgrD7Fyho=
-github.com/alessio/shellescape v1.4.1 h1:V7yhSDDn8LP4lc4jS8pFkt0zCnzVJlG5JXy9BVKJUX0=
-github.com/alessio/shellescape v1.4.1/go.mod h1:PZAiSCk0LJaZkiCSkPv8qIobYglO3FPpyFjDCtHLS30=
 github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a h1:AP/vsCIvJZ129pdm9Ek7bH7yutN3hByqsMoNrWAxRQc=
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a/go.mod h1:QmP9hvJ91BbJmGVGSbutW19IC0Q9phDCLGaomwTJbgU=
@@ -109,7 +106,6 @@ github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkX
 github.com/coreos/go-systemd/v22 v22.3.2 h1:D9/bQk5vlXQFZ6Kwuu6zaiXJ9oTPe68++AzAJc1DzSI=
 github.com/coreos/go-systemd/v22 v22.3.2/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
 github.com/cpuguy83/go-md2man/v2 v2.0.0-20190314233015-f79a8a8ca69d/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
-github.com/cpuguy83/go-md2man/v2 v2.0.1/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/cpuguy83/go-md2man/v2 v2.0.2/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/cyphar/filepath-securejoin v0.2.3 h1:YX6ebbZCZP7VkM3scTTokDgBL2TY741X51MTk3ycuNI=
@@ -172,8 +168,6 @@ github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh
 github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5Fng=
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
-github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0 h1:p104kn46Q8WdvHunIJ9dAyjPVtrBPhSr3KT2yUst43I=
-github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/godbus/dbus/v5 v5.0.6 h1:mkgN1ofwASrYnJ5W6U/BxG15eXXXjirgZc7CLqkcaro=
 github.com/godbus/dbus/v5 v5.0.6/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
@@ -259,11 +253,8 @@ github.com/google/pprof v0.0.0-20210122040257-d980be63207e/go.mod h1:kpwsk12EmLe
 github.com/google/pprof v0.0.0-20210226084205-cbba55b83ad5/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210601050228-01bbb1931b22/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210609004039-a478d1d731e9/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1 h1:K6RDEckDVWvDI9JAJYCmNdQXq6neHJOYx3V6jnqNEec=
 github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
-github.com/google/safetext v0.0.0-20220905092116-b49f7bc46da2 h1:SJ+NtwL6QaZ21U+IrK7d0gGgpjGGvd2kz+FzTHVzdqI=
-github.com/google/safetext v0.0.0-20220905092116-b49f7bc46da2/go.mod h1:Tv1PlzqC9t8wNnpPdctvtSUOPUUg4SHeE6vR1Ir2hmg=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
 github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
@@ -281,7 +272,6 @@ github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
 github.com/imdario/mergo v0.3.13/go.mod h1:4lJ1jqUDcsbIECGy0RUJAXNIhg+6ocWgb1ALK2O4oXg=
-github.com/inconshreveable/mousetrap v1.0.0/go.mod h1:PxqpIevigyE2G7u3NXJIT2ANytuPF1OarO4DADm73n8=
 github.com/inconshreveable/mousetrap v1.0.1 h1:U3uMjPSQEBMNp1lFxmllqCPM6P5u/Xq7Pgzkat/bFNc=
 github.com/inconshreveable/mousetrap v1.0.1/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
@@ -321,7 +311,6 @@ github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA
 github.com/mailru/easyjson v0.7.6/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
 github.com/mattn/go-colorable v0.1.13 h1:fFA4WZxdEF4tXPZVKMLwD8oUnCTTo08duU7wxecdEvA=
 github.com/mattn/go-colorable v0.1.13/go.mod h1:7S9/ev0klgBDR4GtXTXX8a3vIGJpMovkB8vQcUbaXHg=
-github.com/mattn/go-isatty v0.0.14/go.mod h1:7GGIvUiUoEMVVmxf/4nioHXj79iQHKdU27kJ6hsGG94=
 github.com/mattn/go-isatty v0.0.16 h1:bq3VjFmv/sOjHtdEhmkEV4x1AJtvUvOJ2PFAZ5+peKQ=
 github.com/mattn/go-isatty v0.0.16/go.mod h1:kYGgaQfpe5nmfYZH+SKPsOc2e4SrIfOl2e/yFXSvRLM=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
@@ -361,16 +350,14 @@ github.com/ncabatoff/process-exporter v0.7.10/go.mod h1:DHZRZjqxw9LCOpLlX0DjBuyn
 github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
-github.com/onsi/ginkgo/v2 v2.5.1 h1:auzK7OI497k6x4OvWq+TKAcpcSAlod0doAH72oIN0Jw=
-github.com/onsi/ginkgo/v2 v2.5.1/go.mod h1:63DOGlLAH8+REH8jUGdL3YpCpu7JODesutUjdENfUAc=
+github.com/onsi/ginkgo/v2 v2.6.0 h1:9t9b9vRUbFq3C4qKFCGkVuq/fIHji802N1nrtkh1mNc=
+github.com/onsi/ginkgo/v2 v2.6.0/go.mod h1:63DOGlLAH8+REH8jUGdL3YpCpu7JODesutUjdENfUAc=
 github.com/onsi/gomega v1.24.0 h1:+0glovB9Jd6z3VR+ScSwQqXVTIfJcGA9UBM8yzQxhqg=
 github.com/opencontainers/runc v1.1.4 h1:nRCz/8sKg6K6jgYAFLDlXzPeITBZJyX28DBVhWD+5dg=
 github.com/opencontainers/runc v1.1.4/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
-github.com/pelletier/go-toml v1.9.4 h1:tjENF6MfZAg8e4ZmZTeWaWiT2vXtsoO6+iuOjFhECwM=
-github.com/pelletier/go-toml v1.9.4/go.mod h1:u1nR/EPcESfeI/szUZKdtJ0xRNbUoANCkoOuaOx1Y+c=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
 github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
@@ -426,7 +413,6 @@ github.com/sirupsen/logrus v1.8.1 h1:dJKuHgqk1NNQlqoA6BTlM1Wf9DOH3NBjQyu0h9+AZZE
 github.com/sirupsen/logrus v1.8.1/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
 github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
 github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
-github.com/spf13/cobra v1.4.0/go.mod h1:Wo4iy3BUC+X2Fybo0PDqwJIv3dNRiZLHQymsfxlB84g=
 github.com/spf13/cobra v1.6.1 h1:o94oiPyS4KD1mPy2fmcYYHHfCxLqYjJOhGsCHFZtEzA=
 github.com/spf13/cobra v1.6.1/go.mod h1:IOw/AERYS7UzyrGinqmz6HLUo219MORXGxhbaJUqzrY=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
@@ -895,7 +881,6 @@ gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20200902074654-038fdea0a05b/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
 gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
@@ -964,8 +949,6 @@ sigs.k8s.io/controller-runtime v0.13.1 h1:tUsRCSJVM1QQOOeViGeX3GMT3dQF1eePPw6sEE
 sigs.k8s.io/controller-runtime v0.13.1/go.mod h1:Zbz+el8Yg31jubvAEyglRZGdLAjplZl+PgtYNI6WNTI=
 sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 h1:iXTIw73aPyC+oRdyqqvVJuloN1p0AC/kzH07hu3NE+k=
 sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
-sigs.k8s.io/kind v0.17.0 h1:CScmGz/wX66puA06Gj8OZb76Wmk7JIjgWf5JDvY7msM=
-sigs.k8s.io/kind v0.17.0/go.mod h1:Qqp8AiwOlMZmJWs37Hgs31xcbiYXjtXlRBSftcnZXQk=
 sigs.k8s.io/kustomize/api v0.12.1 h1:7YM7gW3kYBwtKvoY216ZzY+8hM+lV53LUayghNRJ0vM=
 sigs.k8s.io/kustomize/api v0.12.1/go.mod h1:y3JUhimkZkR6sbLNwfJHxvo1TCLwuwm14sCYnkH6S1s=
 sigs.k8s.io/kustomize/kyaml v0.13.9 h1:Qz53EAaFFANyNgyOEJbT/yoIHygK40/ZcvU3rgry2Tk=

From a0dbbd2fb15080bb7aca03a23de72855c77cd8a7 Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Sat, 17 Dec 2022 17:07:41 +0530
Subject: [PATCH 0517/1641] Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0
 (#9408)

Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0

Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0
---
 build/run-in-docker.sh               | 2 +-
 images/test-runner/rootfs/Dockerfile | 2 +-
 test/e2e/run-chart-test.sh           | 2 +-
 test/e2e/run.sh                      | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index cb8ad18f0..c566bc8a0 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -77,7 +77,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "FLAGS=$FLAGS"
   go env
   set -x
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.5.1
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.6.0
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 30e7e1ab2..aa7c56c39 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -55,7 +55,7 @@ ENV PATH $GOPATH/bin:/usr/local/go/bin:$PATH
 
 RUN mkdir -p "$GOPATH/src" "$GOPATH/bin" && chmod -R 777 "$GOPATH"
 
-RUN go install github.com/onsi/ginkgo/v2/ginkgo@v2.5.1  && go install golang.org/x/lint/golint@latest
+RUN go install github.com/onsi/ginkgo/v2/ginkgo@v2.6.0  && go install golang.org/x/lint/golint@latest
 
 ARG RESTY_CLI_VERSION
 ARG RESTY_CLI_SHA
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index b2e54993f..606215f17 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go get github.com/onsi/ginkgo/v2/ginkgo@v2.5.1
+    go get github.com/onsi/ginkgo/v2/ginkgo@v2.6.0
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run.sh b/test/e2e/run.sh
index 4cd95267f..9ca490baa 100755
--- a/test/e2e/run.sh
+++ b/test/e2e/run.sh
@@ -79,7 +79,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go get github.com/onsi/ginkgo/v2/ginkgo@v2.5.1
+    go get github.com/onsi/ginkgo/v2/ginkgo@v2.6.0
   fi
 
   echo "[dev-env] building image"

From 17d8266a2ac923fb86183e534cef015e717d0128 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 17 Dec 2022 06:01:42 -0800
Subject: [PATCH 0518/1641] Bump github.com/prometheus/common from 0.37.0 to
 0.39.0 (#9416)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.37.0 to 0.39.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.37.0...v0.39.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 14 +++++++-------
 go.sum | 38 ++++++++++++++------------------------
 2 files changed, 21 insertions(+), 31 deletions(-)

diff --git a/go.mod b/go.mod
index 90f11e285..db2e85f74 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.14.0
 	github.com/prometheus/client_model v0.3.0
-	github.com/prometheus/common v0.37.0
+	github.com/prometheus/common v0.39.0
 	github.com/spf13/cobra v1.6.1
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.1
@@ -88,7 +88,7 @@ require (
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
 	github.com/mattn/go-colorable v0.1.13 // indirect
-	github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 // indirect
+	github.com/matttproud/golang_protobuf_extensions v1.0.4 // indirect
 	github.com/mmarkdown/mmark v2.0.40+incompatible // indirect
 	github.com/moby/sys/mountinfo v0.5.0 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
@@ -107,11 +107,11 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.6.0 // indirect
-	golang.org/x/net v0.2.0 // indirect
-	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
-	golang.org/x/sys v0.2.0 // indirect
-	golang.org/x/term v0.2.0 // indirect
-	golang.org/x/text v0.4.0 // indirect
+	golang.org/x/net v0.4.0 // indirect
+	golang.org/x/oauth2 v0.3.0 // indirect
+	golang.org/x/sys v0.3.0 // indirect
+	golang.org/x/term v0.3.0 // indirect
+	golang.org/x/text v0.5.0 // indirect
 	golang.org/x/time v0.0.0-20220609170525-579cf78fd858 // indirect
 	golang.org/x/tools v0.2.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
diff --git a/go.sum b/go.sum
index 9a608ff9d..644cb2e86 100644
--- a/go.sum
+++ b/go.sum
@@ -148,11 +148,9 @@ github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4/go.mod h1:tQ2
 github.com/go-kit/kit v0.8.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
 github.com/go-kit/kit v0.9.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
 github.com/go-kit/log v0.1.0/go.mod h1:zbhenjAZHb184qTLMA9ZjW7ThYL0H2mk7Q6pNt4vbaY=
-github.com/go-kit/log v0.2.0/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0=
 github.com/go-logfmt/logfmt v0.3.0/go.mod h1:Qt1PoO58o5twSAckw1HlFXLmHsOX5/0LbT9GBnD5lWE=
 github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V4qmtdjCk=
 github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A=
-github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
 github.com/go-logr/logr v0.1.0/go.mod h1:ixOQHD9gLJUVQQ2ZOR7zLEifBX6tGkNJF4QyIY7sIas=
 github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
 github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
@@ -314,8 +312,8 @@ github.com/mattn/go-colorable v0.1.13/go.mod h1:7S9/ev0klgBDR4GtXTXX8a3vIGJpMovk
 github.com/mattn/go-isatty v0.0.16 h1:bq3VjFmv/sOjHtdEhmkEV4x1AJtvUvOJ2PFAZ5+peKQ=
 github.com/mattn/go-isatty v0.0.16/go.mod h1:kYGgaQfpe5nmfYZH+SKPsOc2e4SrIfOl2e/yFXSvRLM=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
-github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 h1:I0XW9+e1XWDxdcEniV4rQAIOPUGDq67JSCiRCgGCZLI=
-github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
+github.com/matttproud/golang_protobuf_extensions v1.0.4 h1:mmDVorXM7PCGKw94cs5zkfA9PSy5pEvNWRP0ET0TIVo=
+github.com/matttproud/golang_protobuf_extensions v1.0.4/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
 github.com/mitchellh/go-ps v1.0.0 h1:i6ampVEEF4wQFF+bkYfwYgY+F/uYJDktmvLPf7qIgjc=
 github.com/mitchellh/go-ps v1.0.0/go.mod h1:J4lOc8z8yJs6vUwklHw2XEIiT4z4C40KtWVN3nvg8Pg=
 github.com/mitchellh/hashstructure v1.1.0 h1:P6P1hdjqAAknpY/M1CGipelZgp+4y9ja9kmUZPXP+H0=
@@ -371,7 +369,6 @@ github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXP
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
-github.com/prometheus/client_golang v1.12.1/go.mod h1:3Z9XVyYiZYEO+YQWt3RD2R3jrbd179Rt297l4aS6nDY=
 github.com/prometheus/client_golang v1.14.0 h1:nJdhIvne2eSX/XRAFV9PcvFFRbrjbcTUj0VP62TMhnw=
 github.com/prometheus/client_golang v1.14.0/go.mod h1:8vpkKitgIVNcqrRBWh1C4TIUQgYNtG/XQE4E/Zae36Y=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
@@ -384,9 +381,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.32.1/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.37.0 h1:ccBbHCgIiT9uSoFY0vX8H3zsNR5eLt17/RQLUvn8pXE=
-github.com/prometheus/common v0.37.0/go.mod h1:phzohg0JFMnBEFGxTDbfu3QyL5GI8gTQJFhYO5B3mfA=
+github.com/prometheus/common v0.39.0 h1:oOyhkDq05hPZKItWVBkJ6g6AtGxi+fy7F4JvUV8uhsI=
+github.com/prometheus/common v0.39.0/go.mod h1:6XBZ7lYdLCbkAVhwRsWTZn+IN5AB9F/NXd5w0BbEX0Y=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
@@ -557,10 +553,8 @@ golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96b
 golang.org/x/net v0.0.0-20210503060351-7fd8e65b6420/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
-golang.org/x/net v0.0.0-20220225172249-27dd8689420f/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
-golang.org/x/net v0.2.0 h1:sZfSu1wtKLGlWI4ZZayP0ck9Y73K1ynO6gqzTdBVdPU=
-golang.org/x/net v0.2.0/go.mod h1:KqCZLdyyvdV855qA2rE3GC2aiw5xGR5TEjj8smXukLY=
+golang.org/x/net v0.4.0 h1:Q5QPcMlvfxFTAPV0+07Xz/MpK9NTXu2VDUuy0FeMfaU=
+golang.org/x/net v0.4.0/go.mod h1:MBQ8lrhLObU/6UmLb4fmbmk5OcyYmqtbGd/9yIeKjEE=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -576,8 +570,8 @@ golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ
 golang.org/x/oauth2 v0.0.0-20210628180205-a41e5a781914/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b h1:clP8eMhB30EHdc0bd2Twtq6kgU7yl5ub2cQLSdrv1Dg=
-golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
+golang.org/x/oauth2 v0.3.0 h1:6l90koy8/LaBLmLu8jpHeHexzMwEita0zFfYlggy2F8=
+golang.org/x/oauth2 v0.3.0/go.mod h1:rQrIauxkUhJ6CuwEXwymO2/eh4xz2ZWF1nBkcxS+tGk=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -650,16 +644,13 @@ golang.org/x/sys v0.0.0-20210906170528-6f6e22806c34/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20210908233432-aa78b53d3365/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.2.0 h1:ljd4t30dBnAvMZaQCevtY0xLLD0A+bRZXbgLMLU1F/A=
-golang.org/x/sys v0.2.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.3.0 h1:w8ZOecv6NaNa/zC8944JTU3vz4u6Lagfk4RPQxv92NQ=
+golang.org/x/sys v0.3.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/term v0.2.0 h1:z85xZCsEl7bi/KwbNADeBYoOP0++7W1ipu+aGnpwzRM=
-golang.org/x/term v0.2.0/go.mod h1:TVmDHMZPmdnySmBfhjOoOdhjzdE1h4u1VwSiw2l1Nuc=
+golang.org/x/term v0.3.0 h1:qoo4akIqOcDME5bhc/NgxUdovd6BSS2uMsVjB56q1xI=
+golang.org/x/term v0.3.0/go.mod h1:q750SLmJuPmVoN1blW3UFBPREJfb1KmY3vwxfr+nFDA=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -668,9 +659,8 @@ golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
-golang.org/x/text v0.4.0 h1:BrVqGRd7+k1DiOgtnFvAkoQEWQvBc25ouMJM6429SFg=
-golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.5.0 h1:OLmvp0KP+FVG99Ct/qFiL/Fhk4zp4QQnZ7b2U+5piUM=
+golang.org/x/text v0.5.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=

From e3e0d9c1f487cf00c02a2a0ca579f4aff9698e59 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Sun, 18 Dec 2022 20:07:43 -0500
Subject: [PATCH 0519/1641] start upgrade to golang 1.19.4 and alpine 3.17.0
 (#9417)

* start upgrade to 1.19.4

Signed-off-by: James Strong <james.strong@chainguard.dev>

* add matrix to image test-image

Signed-off-by: James Strong <james.strong@chainguard.dev>

* update to alpine 3.17

Signed-off-by: James Strong <james.strong@chainguard.dev>

* remove need for curl

Signed-off-by: James Strong <james.strong@chainguard.dev>

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 .github/workflows/ci.yaml                     | 17 ++--
 .github/workflows/plugin.yaml                 |  2 +-
 docs/examples/customization/sysctl/patch.json |  2 +-
 images/cfssl/rootfs/Dockerfile                |  2 +-
 images/custom-error-pages/rootfs/Dockerfile   |  2 +-
 .../rootfs/Dockerfile                         |  2 +-
 images/fastcgi-helloserver/rootfs/Dockerfile  |  2 +-
 .../go-grpc-greeter-server/rootfs/Dockerfile  |  6 +-
 images/go-grpc-greeter-server/rootfs/main.go  | 78 +++++++++++++++++++
 images/httpbin/rootfs/Dockerfile              |  2 +-
 images/kube-webhook-certgen/rootfs/Dockerfile |  2 +-
 images/nginx/rootfs/Dockerfile                |  2 +-
 images/opentelemetry/rootfs/Dockerfile        |  2 +-
 images/test-runner/Makefile                   |  2 +-
 images/test-runner/rootfs/Dockerfile          |  2 +-
 rootfs/Dockerfile-chroot                      |  2 +-
 16 files changed, 106 insertions(+), 21 deletions(-)
 create mode 100644 images/go-grpc-greeter-server/rootfs/main.go

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index cb575ace6..ea46f8cef 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -82,11 +82,11 @@ jobs:
       - name: Checkout
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
 
-      - name: Set up Go 1.19.2
+      - name: Set up Go 1.19.4
         id: go
         uses: actions/setup-go@d0a58c1c4d2b25278816e339b944508c875f3613 # v3.2.0
         with:
-          go-version: '1.19.2'
+          go-version: '1.19.4'
 
       - name: Set up QEMU
         uses: docker/setup-qemu-action@e81a89b1732b9c48d79cd809d8d81d79c4647a18 #v2.0.0
@@ -152,7 +152,7 @@ jobs:
       - name: Setup Go
         uses: actions/setup-go@d0a58c1c4d2b25278816e339b944508c875f3613 # v3.2.0
         with:
-          go-version: '1.19.2'
+          go-version: '1.19.4'
 
       - name: cache
         uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7 # v3
@@ -393,9 +393,16 @@ jobs:
     permissions:
       contents: read  # for dorny/paths-filter to fetch a list of changed files
       pull-requests: read  # for dorny/paths-filter to read pull requests
+
     runs-on: ubuntu-latest
+
     env:
       PLATFORMS: linux/amd64
+
+    strategy:
+      matrix:
+        k8s: [ v1.23.13, v1.24.7, v1.25.3 ]
+
     steps:
       - name: Checkout
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
@@ -414,12 +421,12 @@ jobs:
         run: |
           kind create cluster --image=kindest/node:${{ matrix.k8s }}
 
-      - name: Set up Go 1.19.2
+      - name: Set up Go 1.19.4
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
         uses: actions/setup-go@d0a58c1c4d2b25278816e339b944508c875f3613 # v3.2.0
         with:
-          go-version: '1.19.2'
+          go-version: '1.19.4'
 
       - name: kube-webhook-certgen image build
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 398d0075b..a1ad05d25 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -24,7 +24,7 @@ jobs:
       - name: Set up Go
         uses: actions/setup-go@d0a58c1c4d2b25278816e339b944508c875f3613 # v3.2.0
         with:
-          go-version: 1.19.2
+          go-version: 1.19.4
 
       - name: Run GoReleaser
         uses: goreleaser/goreleaser-action@b508e2e3ef3b19d4e4146d4f8fb3ba9db644a757 # v3.0.0
diff --git a/docs/examples/customization/sysctl/patch.json b/docs/examples/customization/sysctl/patch.json
index 75d613295..3f736197b 100644
--- a/docs/examples/customization/sysctl/patch.json
+++ b/docs/examples/customization/sysctl/patch.json
@@ -4,7 +4,7 @@
 			"spec": {
 				"initContainers": [{
 					"name": "sysctl",
-					"image": "alpine:3.16.2",
+					"image": "alpine:3.17.0",
 					"securityContext": {
 						"privileged": true
 					},
diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index b6dfa567f..f9370c210 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.16.2
+FROM alpine:3.17.0
 
 RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
 RUN apk add --no-cache \
diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index 768b1e9df..ef825dec1 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.19.1-alpine as builder
+FROM golang:1.19.4-alpine3.17 as builder
 RUN apk add git
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/custom-error-pages
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index 012b1880f..d54df8ab9 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.19.2-alpine3.16 as builder
+FROM golang:1.19.4-alpine3.17 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
index f572410e7..0213baf87 100755
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.14-alpine as builder
+FROM golang:1.19.4-alpine3.17 as builder
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
 
diff --git a/images/go-grpc-greeter-server/rootfs/Dockerfile b/images/go-grpc-greeter-server/rootfs/Dockerfile
index 8db118349..547842512 100644
--- a/images/go-grpc-greeter-server/rootfs/Dockerfile
+++ b/images/go-grpc-greeter-server/rootfs/Dockerfile
@@ -1,9 +1,9 @@
-FROM golang:buster as build
+FROM golang:1.19.4-alpine3.17 as build
 
 WORKDIR /go/src/greeter-server
 
-RUN curl -o main.go https://raw.githubusercontent.com/grpc/grpc-go/91e0aeb192456225adf27966d04ada4cf8599915/examples/features/reflection/server/main.go && \
-  go mod init greeter-server && \
+COPY main.go .
+RUN go mod init greeter-server && \
   go mod tidy && \
   go build -o /greeter-server main.go
 
diff --git a/images/go-grpc-greeter-server/rootfs/main.go b/images/go-grpc-greeter-server/rootfs/main.go
new file mode 100644
index 000000000..569273dfd
--- /dev/null
+++ b/images/go-grpc-greeter-server/rootfs/main.go
@@ -0,0 +1,78 @@
+/*
+ *
+ * Copyright 2019 gRPC authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ */
+
+// Binary server is an example server.
+package main
+
+import (
+	"context"
+	"flag"
+	"fmt"
+	"log"
+	"net"
+
+	"google.golang.org/grpc"
+	"google.golang.org/grpc/reflection"
+
+	ecpb "google.golang.org/grpc/examples/features/proto/echo"
+	hwpb "google.golang.org/grpc/examples/helloworld/helloworld"
+)
+
+var port = flag.Int("port", 50051, "the port to serve on")
+
+// hwServer is used to implement helloworld.GreeterServer.
+type hwServer struct {
+	hwpb.UnimplementedGreeterServer
+}
+
+// SayHello implements helloworld.GreeterServer
+func (s *hwServer) SayHello(ctx context.Context, in *hwpb.HelloRequest) (*hwpb.HelloReply, error) {
+	return &hwpb.HelloReply{Message: "Hello " + in.Name}, nil
+}
+
+type ecServer struct {
+	ecpb.UnimplementedEchoServer
+}
+
+func (s *ecServer) UnaryEcho(ctx context.Context, req *ecpb.EchoRequest) (*ecpb.EchoResponse, error) {
+	return &ecpb.EchoResponse{Message: req.Message}, nil
+}
+
+func main() {
+	flag.Parse()
+	lis, err := net.Listen("tcp", fmt.Sprintf(":%d", *port))
+	if err != nil {
+		log.Fatalf("failed to listen: %v", err)
+	}
+	fmt.Printf("server listening at %v\n", lis.Addr())
+
+	s := grpc.NewServer()
+
+	// Register Greeter on the server.
+	hwpb.RegisterGreeterServer(s, &hwServer{})
+
+	// Register RouteGuide on the same server.
+	ecpb.RegisterEchoServer(s, &ecServer{})
+
+	// Register reflection service on gRPC server.
+	reflection.Register(s)
+
+	if err := s.Serve(lis); err != nil {
+		log.Fatalf("failed to serve: %v", err)
+	}
+}
diff --git a/images/httpbin/rootfs/Dockerfile b/images/httpbin/rootfs/Dockerfile
index da9cd0145..1a9b55ba5 100644
--- a/images/httpbin/rootfs/Dockerfile
+++ b/images/httpbin/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.16.2
+FROM alpine:3.17.0
 
 ENV LC_ALL=C.UTF-8
 ENV LANG=C.UTF-8
diff --git a/images/kube-webhook-certgen/rootfs/Dockerfile b/images/kube-webhook-certgen/rootfs/Dockerfile
index c45a64dae..32847fd39 100644
--- a/images/kube-webhook-certgen/rootfs/Dockerfile
+++ b/images/kube-webhook-certgen/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM --platform=$BUILDPLATFORM golang:1.19.2 as builder
+FROM --platform=$BUILDPLATFORM golang:1.19.4 as builder
 ARG BUILDPLATFORM
 ARG TARGETARCH
 
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 6168ee5d8..89bd652b0 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.16.2 as builder
+FROM alpine:3.17.0 as builder
 
 COPY . /
 
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index 3c137dbe2..8951a3806 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.16.2 as base
+FROM alpine:3.17.0 as base
 
 RUN mkdir -p /opt/third_party/install
 COPY . /opt/third_party/
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 38ca5f2b3..4d71b8ad5 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -39,7 +39,7 @@ build: ensure-buildx
 		--progress=$(PROGRESS) \
 		--pull \
 		--build-arg BASE_IMAGE=$(NGINX_BASE_IMAGE) \
-		--build-arg GOLANG_VERSION=1.19.2 \
+		--build-arg GOLANG_VERSION=1.19.4 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.24.2 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index aa7c56c39..f471e81cc 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -16,7 +16,7 @@ ARG BASE_IMAGE
 ARG GOLANG_VERSION
 ARG ETCD_VERSION
 
-FROM golang:${GOLANG_VERSION}-alpine as GO
+FROM golang:${GOLANG_VERSION}-alpine3.17 as GO
 FROM registry.k8s.io/etcd:${ETCD_VERSION} as etcd
 
 FROM ${BASE_IMAGE}
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index 4805909d5..bdb9be60b 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.16.2
+FROM alpine:3.17.0
 
 ARG TARGETARCH
 ARG VERSION

From 690969ba5f8d48514326aebce701862eb0d01603 Mon Sep 17 00:00:00 2001
From: James Strong <james.strong@chainguard.dev>
Date: Tue, 20 Dec 2022 09:22:51 -0500
Subject: [PATCH 0520/1641] patch otel docker file

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 images/opentelemetry/rootfs/Dockerfile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index 8951a3806..7746edbf1 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -21,7 +21,7 @@ COPY . /opt/third_party/
 # install build tools
 RUN apk update \
 	&& apk upgrade \
-	&& apk add -U bash \
+	&& apk add -U bash cmake \
 	&& bash /opt/third_party/build.sh -p
 
 # install gRPC
@@ -39,7 +39,7 @@ COPY --from=grpc /opt/third_party/install/ /usr
 COPY --from=otel-cpp /opt/third_party/install/ /usr
 RUN bash /opt/third_party/build.sh -n
 
-FROM alpine:3.16.2 as final
+FROM alpine:3.17.0 as final
 COPY --from=base /opt/third_party/init_module.sh /usr/local/bin/init_module.sh
 COPY --from=nginx /etc/nginx/modules /etc/nginx/modules
 COPY --from=nginx /opt/third_party/install/lib /etc/nginx/modules

From 58948acd3dc4729e7da5ac91c97799614e257a2a Mon Sep 17 00:00:00 2001
From: James Strong <james.strong@chainguard.dev>
Date: Tue, 20 Dec 2022 09:41:32 -0500
Subject: [PATCH 0521/1641] gcloud build is timing out

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 images/fastcgi-helloserver/cloudbuild.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index 37df1d168..cb4ac2e94 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -1,4 +1,4 @@
-timeout: 600s
+timeout: 1800s
 options:
   substitution_option: ALLOW_LOOSE
 steps:

From 6070c8be0105bf72a44012d3774b0874a4bba4c9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 20 Dec 2022 07:35:45 -0800
Subject: [PATCH 0522/1641] Bump ossf/scorecard-action from 2.0.6 to 2.1.0
 (#9422)

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.0.6 to 2.1.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](https://github.com/ossf/scorecard-action/compare/99c53751e09b9529366343771cc321ec74e9bd3d...937ffa90d79c7d720498178154ad4c7ba1e4ad8c)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index a9c36481b..b5bce044e 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -30,7 +30,7 @@ jobs:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@99c53751e09b9529366343771cc321ec74e9bd3d # v1.1.1
+        uses: ossf/scorecard-action@937ffa90d79c7d720498178154ad4c7ba1e4ad8c # v1.1.1
         with:
           results_file: results.sarif
           results_format: sarif

From 07db4997b3029b4d08f6b5966ad8d214001e54ae Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 20 Dec 2022 07:37:45 -0800
Subject: [PATCH 0523/1641] Bump actions/dependency-review-action from 3.0.1 to
 3.0.2 (#9424)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/11310527b429536e263dc6cc47873e608189ba21...0ff3da6f81b812d4ec3cf37a04e2308c7a723730)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 5350d6e57..835eb5e9b 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3.0.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@11310527b429536e263dc6cc47873e608189ba21 #v2.0.2
+        uses: actions/dependency-review-action@0ff3da6f81b812d4ec3cf37a04e2308c7a723730 #v2.0.2

From bd283b6609bafd59a979db0e888b02c7d3dc068c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 20 Dec 2022 07:39:44 -0800
Subject: [PATCH 0524/1641] Bump goreleaser/goreleaser-action from 3.2.0 to
 4.1.0 (#9426)

Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 3.2.0 to 4.1.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/b508e2e3ef3b19d4e4146d4f8fb3ba9db644a757...8f67e590f2d095516493f017008adc464e63adb1)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/plugin.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index a1ad05d25..ea53c7f79 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -27,7 +27,7 @@ jobs:
           go-version: 1.19.4
 
       - name: Run GoReleaser
-        uses: goreleaser/goreleaser-action@b508e2e3ef3b19d4e4146d4f8fb3ba9db644a757 # v3.0.0
+        uses: goreleaser/goreleaser-action@8f67e590f2d095516493f017008adc464e63adb1 # v3.0.0
         with:
           version: latest
           args: release --rm-dist

From 87146d6d93f3aff7d5b70c184b133bc783695f95 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 20 Dec 2022 09:33:43 -0800
Subject: [PATCH 0525/1641] Bump actions/checkout from 3.1.0 to 3.2.0 (#9425)

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.1.0 to 3.2.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8...755da8c3cf115ac066823e79a1e1788f8940201b)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 16 ++++++++--------
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  2 +-
 .github/workflows/vulnerability-scans.yaml |  4 ++--
 8 files changed, 18 insertions(+), 18 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index ea46f8cef..74bca7a72 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -33,7 +33,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
         id: filter
@@ -59,7 +59,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
 
       - name: Run Gosec Security Scanner
         uses: securego/gosec@1af1d5bb49259b62e45c505db397dd2ada5d74f8 # master
@@ -80,7 +80,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
 
       - name: Set up Go 1.19.4
         id: go
@@ -147,7 +147,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
 
       - name: Setup Go
         uses: actions/setup-go@d0a58c1c4d2b25278816e339b944508c875f3613 # v3.2.0
@@ -228,7 +228,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
 
       - name: cache
         uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7 # v2
@@ -282,7 +282,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
 
       - name: cache
         uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7
@@ -331,7 +331,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
         id: filter-images
@@ -405,7 +405,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
         id: filter-images
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 835eb5e9b..5a22ea5ff 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b #v3.0.2
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@0ff3da6f81b812d4ec3cf37a04e2308c7a723730 #v2.0.2
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index f02f0a17e..879f90d85 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -24,7 +24,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b #v3.0.2
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
         id: filter
@@ -49,7 +49,7 @@ jobs:
     steps:
 
       - name: Checkout master
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 #v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b #v3.0.2
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 33e06bbdc..0e9f74b50 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -24,7 +24,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
         id: filter
@@ -51,7 +51,7 @@ jobs:
     steps:
 
       - name: Checkout master
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index a9206d9ef..7205b0c08 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -18,7 +18,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index ea53c7f79..c8fca8cca 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -17,7 +17,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index b5bce044e..53f8f25ff 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -25,7 +25,7 @@ jobs:
     
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8 # v3.0.0
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.0
         with:
           persist-credentials: false
 
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index af46c2bcc..b23c5aa5f 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
     - name: Checkout code
-      uses: actions/checkout@93ea575cb5d8a053eaa0ac8fa3b40d7e05a33cc8
+      uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b
 
     - shell: bash
       id: test

From 787ea74b6beffeb14f20cbf3a0d95c315ee3d8e3 Mon Sep 17 00:00:00 2001
From: my-git9 <xin.li@daocloud.io>
Date: Wed, 21 Dec 2022 01:39:46 +0800
Subject: [PATCH 0526/1641] cleanup: remove ioutil for new go version (#9427)

Signed-off-by: xin.li <xin.li@daocloud.io>

Signed-off-by: xin.li <xin.li@daocloud.io>
---
 images/kube-webhook-certgen/rootfs/pkg/certs/certs_test.go | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/kube-webhook-certgen/rootfs/pkg/certs/certs_test.go b/images/kube-webhook-certgen/rootfs/pkg/certs/certs_test.go
index b4d95b9b2..fa8383cbb 100644
--- a/images/kube-webhook-certgen/rootfs/pkg/certs/certs_test.go
+++ b/images/kube-webhook-certgen/rootfs/pkg/certs/certs_test.go
@@ -5,7 +5,7 @@ import (
 	"crypto/tls"
 	"crypto/x509"
 	"fmt"
-	"io/ioutil"
+	"io"
 	"net/http"
 	"net/http/httptest"
 	"testing"
@@ -49,7 +49,7 @@ func TestCertificateCreation(t *testing.T) {
 		t.Errorf("Response code was %v; want 200", res.StatusCode)
 	}
 
-	body, err := ioutil.ReadAll(res.Body)
+	body, err := io.ReadAll(res.Body)
 	if err != nil {
 		t.Fatal(err)
 	}

From 7ef5e1ab8b230721626bf9f3dccb94bae951c81b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 20 Dec 2022 11:15:19 -0800
Subject: [PATCH 0527/1641] Bump github/codeql-action from 2.1.36 to 2.1.37
 (#9423)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.1.36 to 2.1.37.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/a669cc5936cc5e1b6a362ec1ff9e410dc570d190...959cbb7472c4d4ad70cdfe6f4976053fe48ab394)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 53f8f25ff..cb2aabf95 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -57,6 +57,6 @@ jobs:
       
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@a669cc5936cc5e1b6a362ec1ff9e410dc570d190 # v2.1.14
+        uses: github/codeql-action/upload-sarif@959cbb7472c4d4ad70cdfe6f4976053fe48ab394 # v2.1.14
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index b23c5aa5f..9eaebd865 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
     # This step checks out a copy of your repository.
     - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@a669cc5936cc5e1b6a362ec1ff9e410dc570d190
+      uses: github/codeql-action/upload-sarif@959cbb7472c4d4ad70cdfe6f4976053fe48ab394
       with:
         token: ${{ github.token }}
         # Path to SARIF file relative to the root of the repository

From cd80cb6907b1b3f1871e3b3a634bda5159658684 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 20 Dec 2022 11:21:19 -0800
Subject: [PATCH 0528/1641] Bump github.com/onsi/ginkgo/v2 from 2.6.0 to 2.6.1
 (#9421)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.6.0 to 2.6.1.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.6.0...v2.6.1)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  14 +++--
 go.sum | 190 ++++++---------------------------------------------------
 2 files changed, 26 insertions(+), 178 deletions(-)

diff --git a/go.mod b/go.mod
index db2e85f74..3c88a910b 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.6.0
+	github.com/onsi/ginkgo/v2 v2.6.1
 	github.com/opencontainers/runc v1.1.4
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.14.0
@@ -27,6 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.3.0
 	google.golang.org/grpc v1.51.0
+	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.25.4
@@ -44,7 +45,8 @@ require (
 )
 
 require (
-	cloud.google.com/go v0.97.0 // indirect
+	cloud.google.com/go/compute v1.12.1 // indirect
+	cloud.google.com/go/compute/metadata v0.2.1 // indirect
 	github.com/Azure/go-autorest v14.2.0+incompatible // indirect
 	github.com/Azure/go-autorest/autorest v0.11.27 // indirect
 	github.com/Azure/go-autorest/autorest/adal v0.9.20 // indirect
@@ -81,7 +83,7 @@ require (
 	github.com/google/go-cmp v0.5.9 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
-	github.com/google/uuid v1.2.0 // indirect
+	github.com/google/uuid v1.3.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 // indirect
 	github.com/inconshreveable/mousetrap v1.0.1 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
@@ -106,16 +108,16 @@ require (
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
-	golang.org/x/mod v0.6.0 // indirect
+	golang.org/x/mod v0.7.0 // indirect
 	golang.org/x/net v0.4.0 // indirect
 	golang.org/x/oauth2 v0.3.0 // indirect
 	golang.org/x/sys v0.3.0 // indirect
 	golang.org/x/term v0.3.0 // indirect
 	golang.org/x/text v0.5.0 // indirect
 	golang.org/x/time v0.0.0-20220609170525-579cf78fd858 // indirect
-	golang.org/x/tools v0.2.0 // indirect
+	golang.org/x/tools v0.4.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/genproto v0.0.0-20220502173005-c8bf987b8c21 // indirect
+	google.golang.org/genproto v0.0.0-20221118155620-16455021b5e6 // indirect
 	google.golang.org/protobuf v1.28.1 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index 644cb2e86..8362b75ba 100644
--- a/go.sum
+++ b/go.sum
@@ -13,25 +13,16 @@ cloud.google.com/go v0.56.0/go.mod h1:jr7tqZxxKOVYizybht9+26Z/gUq7tiRzu+ACVAMbKV
 cloud.google.com/go v0.57.0/go.mod h1:oXiQ6Rzq3RAkkY7N6t3TcE6jE+CIBBbA36lwQ1JyzZs=
 cloud.google.com/go v0.62.0/go.mod h1:jmCYTdRCQuc1PHIIJ/maLInMho30T/Y0M4hTdTShOYc=
 cloud.google.com/go v0.65.0/go.mod h1:O5N8zS7uWy9vkA9vayVHs65eM1ubvY4h553ofrNHObY=
-cloud.google.com/go v0.72.0/go.mod h1:M+5Vjvlc2wnp6tjzE102Dw08nGShTscUx2nZMufOKPI=
-cloud.google.com/go v0.74.0/go.mod h1:VV1xSbzvo+9QJOxLDaJfTjx5e+MePCpCWwvftOeQmWk=
-cloud.google.com/go v0.78.0/go.mod h1:QjdrLG0uq+YwhjoVOLsS1t7TW8fs36kLs4XO5R5ECHg=
-cloud.google.com/go v0.79.0/go.mod h1:3bzgcEeQlzbuEAYu4mrWhKqWjmpprinYgKJLgKHnbb8=
-cloud.google.com/go v0.81.0/go.mod h1:mk/AM35KwGk/Nm2YSeZbxXdrNK3KZOYHmLkOqC2V6E0=
-cloud.google.com/go v0.83.0/go.mod h1:Z7MJUsANfY0pYPdw0lbnivPx4/vhy/e2FEkSkF7vAVY=
-cloud.google.com/go v0.84.0/go.mod h1:RazrYuxIK6Kb7YrzzhPoLmCVzl7Sup4NrbKPg8KHSUM=
-cloud.google.com/go v0.87.0/go.mod h1:TpDYlFy7vuLzZMMZ+B6iRiELaY7z/gJPaqbMx6mlWcY=
-cloud.google.com/go v0.90.0/go.mod h1:kRX0mNRHe0e2rC6oNakvwQqzyDmg57xJ+SZU1eT2aDQ=
-cloud.google.com/go v0.93.3/go.mod h1:8utlLll2EF5XMAV15woO4lSbWQlk8rer9aLOfLh7+YI=
-cloud.google.com/go v0.94.1/go.mod h1:qAlAugsXlC+JWO+Bke5vCtc9ONxjQT3drlTTnAplMW4=
-cloud.google.com/go v0.97.0 h1:3DXvAyifywvq64LfkKaMOmkWPS1CikIQdMe2lY9vxU8=
-cloud.google.com/go v0.97.0/go.mod h1:GF7l59pYBVlXQIBLx3a761cZ41F9bBH3JUlihCt2Udc=
 cloud.google.com/go/bigquery v1.0.1/go.mod h1:i/xbL2UlR5RvWAURpBYZTtm/cXjCha9lbfbpx4poX+o=
 cloud.google.com/go/bigquery v1.3.0/go.mod h1:PjpwJnslEMmckchkHFfq+HTD2DmtT67aNFKH1/VBDHE=
 cloud.google.com/go/bigquery v1.4.0/go.mod h1:S8dzgnTigyfTmLBfrtrhyYhwRxG72rYxvftPBK2Dvzc=
 cloud.google.com/go/bigquery v1.5.0/go.mod h1:snEHRnqQbz117VIFhE8bmtwIDY80NLUZUMb4Nv6dBIg=
 cloud.google.com/go/bigquery v1.7.0/go.mod h1://okPTzCYNXSlb24MZs83e2Do+h+VXtc4gLoIoXIAPc=
 cloud.google.com/go/bigquery v1.8.0/go.mod h1:J5hqkt3O0uAFnINi6JXValWIb1v0goeZM77hZzJN/fQ=
+cloud.google.com/go/compute v1.12.1 h1:gKVJMEyqV5c/UnpzjjQbo3Rjvvqpr9B1DFSbJC4OXr0=
+cloud.google.com/go/compute v1.12.1/go.mod h1:e8yNOBcBONZU1vJKCvCoDw/4JQsA0dpM4x/6PIIOocU=
+cloud.google.com/go/compute/metadata v0.2.1 h1:efOwf5ymceDhK6PKMnnrTHP4pppY5L22mle96M1yP48=
+cloud.google.com/go/compute/metadata v0.2.1/go.mod h1:jgHgmJd2RKBGzXqF5LR2EZMGxBkeanZ9wwa75XHJgOM=
 cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE=
 cloud.google.com/go/datastore v1.1.0/go.mod h1:umbIZjpQpHh4hmRpGhH4tLFup+FVzqBi1b3c64qFpCk=
 cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I=
@@ -64,7 +55,6 @@ github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03
 github.com/BurntSushi/toml v1.0.0 h1:dtDWrepsVPfW9H/4y7dDgFc2MBUSeJhlaDtK13CxFlU=
 github.com/BurntSushi/toml v1.0.0/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
-github.com/OneOfOne/xxhash v1.2.2/go.mod h1:HSdplMjZKSmBqAxg5vPj2TmRDmfkzw+cTzAElWljhcU=
 github.com/PuerkitoBio/purell v1.1.1 h1:WEQqlqaGbrPkxLJWfBwQmfEAE1Z7ONdDLqrN38tNFfI=
 github.com/PuerkitoBio/purell v1.1.1/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
 github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 h1:d+Bc7a5rLufV/sSk/8dngufqelfh6jnri85riMAaF/M=
@@ -74,7 +64,6 @@ github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuy
 github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190717042225-c3de453c63f4/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d/go.mod h1:rBZYJk541a8SKzHPHnH3zbiI+7dagKZ0cgpgrD7Fyho=
-github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a h1:AP/vsCIvJZ129pdm9Ek7bH7yutN3hByqsMoNrWAxRQc=
 github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a/go.mod h1:QmP9hvJ91BbJmGVGSbutW19IC0Q9phDCLGaomwTJbgU=
 github.com/beorn7/perks v0.0.0-20180321164747-3a771d992973/go.mod h1:Dwedo/Wpr24TaqPxmxbtue+5NUziq4I4S80YR8gNf3Q=
@@ -84,7 +73,6 @@ github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6r
 github.com/blang/semver/v4 v4.0.0 h1:1PFHFE6yCCTv8C1TeyNNarDzntLi7wMI5i/pzqYIsAM=
 github.com/blang/semver/v4 v4.0.0/go.mod h1:IbckMUScFkM3pff0VJDNKRiT6TG/YpiHIM2yvyW5YoQ=
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
-github.com/cespare/xxhash v1.1.0/go.mod h1:XrSqR1VqqWfGrhpAt58auRo0WTKS1nRRg3ghfAqPWnc=
 github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
 github.com/cespare/xxhash/v2 v2.1.2 h1:YRXhKfTDauu4ajMg1TPgFO5jnlC2HCbmLXMcTG5cbYE=
 github.com/cespare/xxhash/v2 v2.1.2/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
@@ -95,13 +83,6 @@ github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMn
 github.com/cilium/ebpf v0.7.0/go.mod h1:/oI2+1shJiTGAMgl6/RgJr36Eo1jzrRcAWbcXO2usCA=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
 github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc=
-github.com/cncf/udpa/go v0.0.0-20200629203442-efcf912fb354/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
-github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
-github.com/cncf/udpa/go v0.0.0-20210930031921-04548b0d99d4/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
-github.com/cncf/xds/go v0.0.0-20210312221358-fbca930ec8ed/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20211001041855-01bcc9b48dfe/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
 github.com/coreos/go-systemd/v22 v22.3.2 h1:D9/bQk5vlXQFZ6Kwuu6zaiXJ9oTPe68++AzAJc1DzSI=
 github.com/coreos/go-systemd/v22 v22.3.2/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
@@ -124,11 +105,6 @@ github.com/emicklei/go-restful/v3 v3.9.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=
-github.com/envoyproxy/go-control-plane v0.9.7/go.mod h1:cwu0lG7PUMfa9snN8LXBig5ynNVH9qI8YYLbd1fK2po=
-github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
-github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
-github.com/envoyproxy/go-control-plane v0.9.9-0.20210512163311-63b5d3c536b0/go.mod h1:hliV/p42l8fGbc6Y9bQ70uLwIvmJyVE5k4iMKlh8wCQ=
-github.com/envoyproxy/go-control-plane v0.10.2-0.20220325020618-49ff273808a1/go.mod h1:KJwIaB5Mv44NWtYuAOFCVOjcI94vtpEz2JU/D2v6IjE=
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
 github.com/evanphx/json-patch v4.12.0+incompatible h1:4onqiflcdA9EOZ4RxV643DvftH5pOlLGNtQ5lPWQu84=
 github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
@@ -139,7 +115,6 @@ github.com/fsnotify/fsnotify v1.6.0 h1:n+5WquG0fcWoWp6xPWfHdbskMCQaFnG6PfBrh1Ky4
 github.com/fsnotify/fsnotify v1.6.0/go.mod h1:sl3t1tCWJFWoRz9R8WJCbQihKKwmorjAbSClcnxKAGw=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b h1:074/xhloHUBOpTZwlIzQ28rbPY8pNJvzY7Gcx5KnNOk=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
-github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
 github.com/go-errors/errors v1.0.1 h1:LUHzmkK3GUKUrL/1gfBUxAHzcev3apQlezX/+O7ma6w=
 github.com/go-errors/errors v1.0.1/go.mod h1:f4zRHt4oKfwPJE5k8C9vpYG+aDHdBFUsgrm6/TyX73Q=
 github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1/go.mod h1:vR7hzQXu2zJy9AVAgeJqvqgH9Q5CA+iKCZ2gyEVpxRU=
@@ -188,8 +163,6 @@ github.com/golang/mock v1.4.0/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt
 github.com/golang/mock v1.4.1/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
 github.com/golang/mock v1.4.3/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
 github.com/golang/mock v1.4.4/go.mod h1:l3mdAwkq5BuhzHwde/uurv3sEJeZMXNpwsxVWU71h+4=
-github.com/golang/mock v1.5.0/go.mod h1:CWnOUgYIOo4TcNZ0wHX3YZCqsaM1I1Jvs6v3mP3KVu8=
-github.com/golang/mock v1.6.0/go.mod h1:p6yTPP+5HYm5mzsMV8JkE6ZKdX+/wYM6Hr+LicevLPs=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
@@ -205,10 +178,8 @@ github.com/golang/protobuf v1.4.1/go.mod h1:U8fpvMrcmy5pZrNK1lt4xCsGvpyWQ/VVv6QD
 github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.4.3/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
-github.com/golang/protobuf v1.5.1/go.mod h1:DopwsBzvsk0Fs44TXzsVbJyPhcCPeIwnvohx4u74HPM=
 github.com/golang/protobuf v1.5.2 h1:ROPKBNFfQgOUMifHyP+KYbvpjbdoFNs+aK7DXlji0Tw=
 github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
-github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7 h1:oKYOfNR7Hp6XpZ4JqolL5u642Js5Z0n7psPVl+S5heo=
 github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7/go.mod h1:aii0r/K0ZnHv7G0KF7xy1v0A7s2Ljrb5byB7MO5p6TU=
 github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
@@ -224,8 +195,6 @@ github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/
 github.com/google/go-cmp v0.4.1/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.1/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.4/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.6/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
@@ -236,8 +205,6 @@ github.com/google/gofuzz v1.1.0 h1:Hsa8mG0dQ46ij8Sl2AYJDUv1oA9/d6Vk+3LG99Oe02g=
 github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/martian v2.1.0+incompatible/go.mod h1:9I4somxYTbIHy5NJKHRl3wXiIaQGbYVAs8BPL6v8lEs=
 github.com/google/martian/v3 v3.0.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
-github.com/google/martian/v3 v3.1.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
-github.com/google/martian/v3 v3.2.1/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
 github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20191218002539-d4f498aebedc/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
@@ -245,29 +212,18 @@ github.com/google/pprof v0.0.0-20200212024743-f11f1df84d12/go.mod h1:ZgVRPoUq/hf
 github.com/google/pprof v0.0.0-20200229191704-1ebb73c60ed3/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200430221834-fc25d7d30c6d/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200708004538-1a94d8640e99/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20201023163331-3e6fc7fc9c4c/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20201203190320-1bf35d6f28c2/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210122040257-d980be63207e/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210226084205-cbba55b83ad5/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210601050228-01bbb1931b22/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210609004039-a478d1d731e9/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
-github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-github.com/google/uuid v1.2.0 h1:qJYtXnJRWmpe7m/3XlyhrsLrEURqHRM2kxzoxXqyUDs=
-github.com/google/uuid v1.2.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/google/uuid v1.3.0 h1:t6JiXgmwXMjEs8VusXIJk2BXHsn+wx8BZdTaoZ5fu7I=
+github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
-github.com/googleapis/gax-go/v2 v2.1.0/go.mod h1:Q3nei7sK6ybPYH7twZdmQpAd1MKb7pfu6SK+H1/DsU0=
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 h1:pdN6V1QBWetyv/0+wjACpqVH+eVULgEjkurDLq3goeM=
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
-github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
-github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
 github.com/imdario/mergo v0.3.13/go.mod h1:4lJ1jqUDcsbIECGy0RUJAXNIhg+6ocWgb1ALK2O4oXg=
 github.com/inconshreveable/mousetrap v1.0.1 h1:U3uMjPSQEBMNp1lFxmllqCPM6P5u/Xq7Pgzkat/bFNc=
@@ -348,9 +304,9 @@ github.com/ncabatoff/process-exporter v0.7.10/go.mod h1:DHZRZjqxw9LCOpLlX0DjBuyn
 github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
-github.com/onsi/ginkgo/v2 v2.6.0 h1:9t9b9vRUbFq3C4qKFCGkVuq/fIHji802N1nrtkh1mNc=
-github.com/onsi/ginkgo/v2 v2.6.0/go.mod h1:63DOGlLAH8+REH8jUGdL3YpCpu7JODesutUjdENfUAc=
-github.com/onsi/gomega v1.24.0 h1:+0glovB9Jd6z3VR+ScSwQqXVTIfJcGA9UBM8yzQxhqg=
+github.com/onsi/ginkgo/v2 v2.6.1 h1:1xQPCjcqYw/J5LchOcp4/2q/jzJFjiAOc25chhnDw+Q=
+github.com/onsi/ginkgo/v2 v2.6.1/go.mod h1:yjiuMwPokqY1XauOgju45q3sJt6VzQ/Fict1LFVcsAo=
+github.com/onsi/gomega v1.24.1 h1:KORJXNNTzJXzu4ScJWssJfJMnJ+2QJqhoQSRwNlze9E=
 github.com/opencontainers/runc v1.1.4 h1:nRCz/8sKg6K6jgYAFLDlXzPeITBZJyX28DBVhWD+5dg=
 github.com/opencontainers/runc v1.1.4/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
@@ -391,7 +347,6 @@ github.com/prometheus/procfs v0.6.0/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1
 github.com/prometheus/procfs v0.7.3/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
 github.com/prometheus/procfs v0.8.0 h1:ODq8ZFEaYeCaZOJlZZdJA2AbQR98dSHSM1KW/You5mo=
 github.com/prometheus/procfs v0.8.0/go.mod h1:z7EfXMXOkbkqb9IINtpCn86r/to3BnA0uaxHdg830/4=
-github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
 github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTEfhy4qGm1nDQc=
 github.com/rogpeppe/go-internal v1.8.0 h1:FCbCCtXNOY3UtUuHUYaghJg4y7Fd14rXifAYUAtL9R8=
@@ -407,7 +362,6 @@ github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6Mwd
 github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
 github.com/sirupsen/logrus v1.8.1 h1:dJKuHgqk1NNQlqoA6BTlM1Wf9DOH3NBjQyu0h9+AZZE=
 github.com/sirupsen/logrus v1.8.1/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
-github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
 github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
 github.com/spf13/cobra v1.6.1 h1:o94oiPyS4KD1mPy2fmcYYHHfCxLqYjJOhGsCHFZtEzA=
 github.com/spf13/cobra v1.6.1/go.mod h1:IOw/AERYS7UzyrGinqmz6HLUo219MORXGxhbaJUqzrY=
@@ -447,7 +401,6 @@ github.com/yuin/goldmark v1.1.25/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9de
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.1.32/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
-github.com/yuin/goldmark v1.3.5/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
 github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a h1:CbXWHAnmrtTKgX+yMVVANuRJP8ld88ELbAYAYnBdLJ4=
 github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a/go.mod h1:/Hzu8ych2oXCs1iNI+MeASyFzWTncQ6nlu/wgqbqC2A=
 go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
@@ -455,9 +408,6 @@ go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8=
 go.opencensus.io v0.22.2/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
 go.opencensus.io v0.22.3/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
 go.opencensus.io v0.22.4/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
-go.opencensus.io v0.22.5/go.mod h1:5pWMHQbX5EPX2/62yrJeAkowc+lfs/XD7Uxpq3pI6kk=
-go.opencensus.io v0.23.0/go.mod h1:XItmlyltB5F7CS4xOC1DcqMoFqwtC6OG2xF7mCv7P7E=
-go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI=
 go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 h1:+FNtrFTmVw0YZGpBGX56XDee331t6JAXeK2bcyhLOOc=
 go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5/go.mod h1:nmDLcffg48OtT/PSW0Hg7FvpRQsQh5OSqIylirxKC7o=
 go.uber.org/atomic v1.7.0 h1:ADUqmZGgLDDfbSL9ZmPxKTybcoEYHgpYfELNoN+7hsw=
@@ -497,8 +447,6 @@ golang.org/x/lint v0.0.0-20190930215403-16217165b5de/go.mod h1:6SW0HCj/g11FgYtHl
 golang.org/x/lint v0.0.0-20191125180803-fdd1cda4f05f/go.mod h1:5qLYkcX4OjUUV8bRuDixDT3tpyyb+LUpUlRWLxfhWrs=
 golang.org/x/lint v0.0.0-20200130185559-910be7a94367/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
 golang.org/x/lint v0.0.0-20200302205851-738671d3881b/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
-golang.org/x/lint v0.0.0-20201208152925-83fdc39ff7b5/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
-golang.org/x/lint v0.0.0-20210508222113-6edffad5e616/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
 golang.org/x/mobile v0.0.0-20190312151609-d3739f865fa6/go.mod h1:z+o9i4GpDbdi3rU15maQ/Ox0txvL9dWGYEHz965HBQE=
 golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028/go.mod h1:E/iHnbuqvinMTCcRqshq8CkpyQDoeVncDDYHnLhea+o=
 golang.org/x/mod v0.0.0-20190513183733-4bf6d317e70e/go.mod h1:mXi4GBBbnImb6dmsKGUJ2LatrhH/nqhxcFungHvyanc=
@@ -507,11 +455,8 @@ golang.org/x/mod v0.1.1-0.20191105210325-c90efee705ee/go.mod h1:QqPTAvyqsEbceGzB
 golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.4.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.6.0 h1:b9gGHsz9/HhJ3HF5DHQytPpuwocVTChQJK3AvoLRD5I=
-golang.org/x/mod v0.6.0/go.mod h1:4mET923SAdbXp2ki8ey+zGs1SLqsuM2Y0uvdZR/fUNI=
+golang.org/x/mod v0.7.0 h1:LapD9S96VoQRhi/GrNTqeBJFrUjs5UHCAtTlgwA5oZA=
+golang.org/x/mod v0.7.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -542,15 +487,8 @@ golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81R
 golang.org/x/net v0.0.0-20200707034311-ab3426394381/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201031054903-ff519b6c9102/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201209123823-ac852fbbde11/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20210119194325-5f4716e94777/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20210316092652-d523dce5a7f4/go.mod h1:RBQZq4jEuRlivfhVLdyRGr576XBO4/greRjx4P4O3yc=
-golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
-golang.org/x/net v0.0.0-20210503060351-7fd8e65b6420/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.4.0 h1:Q5QPcMlvfxFTAPV0+07Xz/MpK9NTXu2VDUuy0FeMfaU=
@@ -560,16 +498,7 @@ golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4Iltr
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
-golang.org/x/oauth2 v0.0.0-20200902213428-5d25da1a8d43/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20201109201403-9fd604954f58/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20201208152858-08078c50e5b5/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210218202405-ba52d332ba99/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210220000619-9bb904979d93/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210313182246-cd4f82c27b84/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210628180205-a41e5a781914/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.3.0 h1:6l90koy8/LaBLmLu8jpHeHexzMwEita0zFfYlggy2F8=
 golang.org/x/oauth2 v0.3.0/go.mod h1:rQrIauxkUhJ6CuwEXwymO2/eh4xz2ZWF1nBkcxS+tGk=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -582,7 +511,7 @@ golang.org/x/sync v0.0.0-20200317015054-43a5402ce75a/go.mod h1:RxMgew5VJxzue5/jJ
 golang.org/x/sync v0.0.0-20200625203802-6e8e738ad208/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201207232520-09787c993a3a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20210220032951-036812b2e83c/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.1.0 h1:wsuoTGHzEhffawBOhz5CYhcrV4IdKZbEyZjBMuTp12o=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20181116152217-5ac8a444bdc5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
@@ -618,30 +547,13 @@ golang.org/x/sys v0.0.0-20200523222454-059865788121/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200615200032-f1bc736245b1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200803210538-64077c9b5642/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200905004654-be1d3432aa8f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20201201145000-ef89a241ccb3/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210104204734-6f8348627aad/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210119212857-b64e53b001e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210220050731-9a76102bfb43/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210305230114-8fe3ee5dd75b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210315160823-c6e025ad8005/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210320140829-1e4c9ba3b0c4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210330210617-4fbd30eecc44/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210514084401-e8d321eab015/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210603125802-9665404d3644/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210630005230-0f9fa26af87c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210806184541-e5e7981a1069/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210823070655-63515b42dcdf/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210906170528-6f6e22806c34/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210908233432-aa78b53d3365/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
@@ -656,8 +568,6 @@ golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.5.0 h1:OLmvp0KP+FVG99Ct/qFiL/Fhk4zp4QQnZ7b2U+5piUM=
 golang.org/x/text v0.5.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
@@ -708,20 +618,9 @@ golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roY
 golang.org/x/tools v0.0.0-20200729194436-6467de6f59a7/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
 golang.org/x/tools v0.0.0-20200804011535-6c149bb5ef0d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
 golang.org/x/tools v0.0.0-20200825202427-b303f430e36d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
-golang.org/x/tools v0.0.0-20200904185747-39188db58858/go.mod h1:Cj7w3i3Rnn0Xh82ur9kSqwfTHTeVxaDqrfMjpcNT6bE=
-golang.org/x/tools v0.0.0-20201110124207-079ba7bd75cd/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20201201161351-ac6f37ff4c2a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20201208233053-a543418bbed2/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20210105154028-b0ab187a4818/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.1.0/go.mod h1:xkSsbof2nBLbhDlRMhhhyNLN/zl3eTqcnHD5viDpcZ0=
-golang.org/x/tools v0.1.1/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.1.2/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.1.3/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.1.4/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.2.0 h1:G6AHpWxTMGY1KyEYoAQ5WTtIekUUvDNjan3ugu60JvE=
-golang.org/x/tools v0.2.0/go.mod h1:y4OqIKeOV/fWJetJ8bXPU1sEVniLMIyDAZWeHdV+NTA=
+golang.org/x/tools v0.4.0 h1:7mTAgkunk3fr4GAloyyCasadO6h9zSsQZbwvcaIciV4=
+golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
@@ -743,18 +642,6 @@ google.golang.org/api v0.24.0/go.mod h1:lIXQywCXRcnZPGlsd8NbLnOjtAoL6em04bJ9+z0M
 google.golang.org/api v0.28.0/go.mod h1:lIXQywCXRcnZPGlsd8NbLnOjtAoL6em04bJ9+z0MncE=
 google.golang.org/api v0.29.0/go.mod h1:Lcubydp8VUV7KeIHD9z2Bys/sm/vGKnG1UHuDBSrHWM=
 google.golang.org/api v0.30.0/go.mod h1:QGmEvQ87FHZNiUVJkT14jQNYJ4ZJjdRF23ZXz5138Fc=
-google.golang.org/api v0.35.0/go.mod h1:/XrVsuzM0rZmrsbjJutiuftIzeuTQcEeaYcSk/mQ1dg=
-google.golang.org/api v0.36.0/go.mod h1:+z5ficQTmoYpPn8LCUNVpK5I7hwkpjbcgqA7I34qYtE=
-google.golang.org/api v0.40.0/go.mod h1:fYKFpnQN0DsDSKRVRcQSDQNtqWPfM9i+zNPxepjRCQ8=
-google.golang.org/api v0.41.0/go.mod h1:RkxM5lITDfTzmyKFPt+wGrCJbVfniCr2ool8kTBzRTU=
-google.golang.org/api v0.43.0/go.mod h1:nQsDGjRXMo4lvh5hP0TKqF244gqhGcr/YSIykhUk/94=
-google.golang.org/api v0.47.0/go.mod h1:Wbvgpq1HddcWVtzsVLyfLp8lDg6AA241LmgIL59tHXo=
-google.golang.org/api v0.48.0/go.mod h1:71Pr1vy+TAZRPkPs/xlCf5SsU8WjuAWv1Pfjbtukyy4=
-google.golang.org/api v0.50.0/go.mod h1:4bNT5pAuq5ji4SRZm+5QIkjny9JAyVD/3gaSihNefaw=
-google.golang.org/api v0.51.0/go.mod h1:t4HdrdoNgyN5cbEfm7Lum0lcLDLiise1F8qDKX00sOU=
-google.golang.org/api v0.54.0/go.mod h1:7C4bFFOvVDGXjfDTAsgGwDgAxRDeQ4X8NvUedIt6z3k=
-google.golang.org/api v0.55.0/go.mod h1:38yMfeP1kfjsl8isn0tliTjIb1rJXcQi4UXlbqivdVE=
-google.golang.org/api v0.57.0/go.mod h1:dVPlbZyBo2/OjBpmvNdpn2GRm6rPy75jyU7bmhdrMgI=
 google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
 google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
@@ -786,41 +673,15 @@ google.golang.org/genproto v0.0.0-20200312145019-da6875a35672/go.mod h1:55QSHmfG
 google.golang.org/genproto v0.0.0-20200331122359-1ee6d9798940/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200430143042-b979b6f78d84/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200511104702-f5ebc3bea380/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200513103714-09dca8ec2884/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200515170657-fc4c6c6a6587/go.mod h1:YsZOwe1myG/8QRHRsmBRE1LrgQY60beZKjly0O1fX9U=
 google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013/go.mod h1:NbSheEEYHJ7i3ixzK3sjbqSGDJWnxyFXZblF3eUsNvo=
 google.golang.org/genproto v0.0.0-20200618031413-b414f8b61790/go.mod h1:jDfRM7FcilCzHH/e9qn6dsT145K34l5v+OpcnNgKAAA=
 google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20200904004341-0bd0a958aa1d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201109203340-2640f1f9cdfb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201201144952-b05cb90ed32e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201210142538-e3217bee35cc/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201214200347-8c77b98c765d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210222152913-aa3ee6e6a81c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210303154014-9728d6b83eeb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210310155132-4ce2db91004e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210319143718-93e7006c17a6/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210402141018-6c239bbf2bb1/go.mod h1:9lPAdzaEmUacj36I+k7YKbEc5CXzPIeORRgDAUOu28A=
-google.golang.org/genproto v0.0.0-20210513213006-bf773b8c8384/go.mod h1:P3QM42oQyzQSnHPnZ/vqoCdDmzH28fzWByN9asMeM8A=
-google.golang.org/genproto v0.0.0-20210602131652-f16073e35f0c/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
-google.golang.org/genproto v0.0.0-20210604141403-392c879c8b08/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
-google.golang.org/genproto v0.0.0-20210608205507-b6d2f5bf0d7d/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
-google.golang.org/genproto v0.0.0-20210624195500-8bfb893ecb84/go.mod h1:SzzZ/N+nwJDaO1kznhnlzqS8ocJICar6hYhVyhi++24=
-google.golang.org/genproto v0.0.0-20210713002101-d411969a0d9a/go.mod h1:AxrInvYm1dci+enl5hChSFPOmmUF1+uAa/UsgNRWd7k=
-google.golang.org/genproto v0.0.0-20210716133855-ce7ef5c701ea/go.mod h1:AxrInvYm1dci+enl5hChSFPOmmUF1+uAa/UsgNRWd7k=
-google.golang.org/genproto v0.0.0-20210728212813-7823e685a01f/go.mod h1:ob2IJxKrgPT52GcgX759i1sleT07tiKowYBGbczaW48=
-google.golang.org/genproto v0.0.0-20210805201207-89edb61ffb67/go.mod h1:ob2IJxKrgPT52GcgX759i1sleT07tiKowYBGbczaW48=
-google.golang.org/genproto v0.0.0-20210813162853-db860fec028c/go.mod h1:cFeNkxwySK631ADgubI+/XFU/xp8FD5KIVV4rj8UC5w=
-google.golang.org/genproto v0.0.0-20210821163610-241b8fcbd6c8/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
-google.golang.org/genproto v0.0.0-20210828152312-66f60bf46e71/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
-google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
-google.golang.org/genproto v0.0.0-20210903162649-d08c68adba83/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
-google.golang.org/genproto v0.0.0-20210924002016-3dee208752a0/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20220502173005-c8bf987b8c21 h1:hrbNEivu7Zn1pxvHk6MBrq9iE22woVILTHqexqBxe6I=
-google.golang.org/genproto v0.0.0-20220502173005-c8bf987b8c21/go.mod h1:RAyBrSAP7Fh3Nc84ghnVLDPuV51xc9agzmm4Ph6i0Q4=
+google.golang.org/genproto v0.0.0-20221118155620-16455021b5e6 h1:a2S6M0+660BgMNl++4JPlcAO/CjkqYItDEZwkoDQK7c=
+google.golang.org/genproto v0.0.0-20221118155620-16455021b5e6/go.mod h1:rZS5c/ZVYMaOGBfO68GWtjOw/eLaZM1X6iVtgjZ+EWg=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -833,23 +694,10 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.31.1/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.33.1/go.mod h1:fr5YgcSWrqhRRxogOsw7RzIpsmvOZ6IcH4kBYTpR3n0=
-google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
-google.golang.org/grpc v1.34.0/go.mod h1:WotjhfgOW/POjDeRt8vscBtXq+2VjORFy659qA51WJ8=
-google.golang.org/grpc v1.35.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
-google.golang.org/grpc v1.36.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
-google.golang.org/grpc v1.36.1/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
-google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
-google.golang.org/grpc v1.37.1/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
-google.golang.org/grpc v1.38.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
-google.golang.org/grpc v1.39.0/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
-google.golang.org/grpc v1.39.1/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
-google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
-google.golang.org/grpc v1.46.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
 google.golang.org/grpc v1.51.0 h1:E1eGv1FTqoLIdnBCZufiSHgKjlqG6fKFf6pPWtMTh8U=
 google.golang.org/grpc v1.51.0/go.mod h1:wgNDFcnuBGmxLKI/qn4T+m5BtEBYXJPvibbUPsAIPww=
-google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
+google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
+google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
@@ -863,7 +711,6 @@ google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlba
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
 google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 google.golang.org/protobuf v1.28.1 h1:d0NfwRgPtno5B1Wa6L2DAG+KivqkdutMf1UhdNx175w=
 google.golang.org/protobuf v1.28.1/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
@@ -885,7 +732,6 @@ gopkg.in/mcuadros/go-syslog.v2 v2.3.0/go.mod h1:l5LPIyOOyIdQquNg+oU6Z3524YwrcqEm
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
 gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.3/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.5/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=

From c648595cd73a2d605cd7d9575b72b367755c7ec8 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 20 Dec 2022 22:55:25 -0500
Subject: [PATCH 0529/1641] update the nginx run container for alpine:3.17.0
 (#9430)

Signed-off-by: James Strong <james.strong@chainguard.dev>

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 images/nginx/rootfs/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 89bd652b0..a9b01ff82 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.16.2
+FROM alpine:3.17.0
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 

From 6ffaef32ab4337943ab8fb0630652eb7f8102cbe Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Wed, 21 Dec 2022 14:13:25 +0530
Subject: [PATCH 0530/1641] Bump github.com/onsi/ginkgo/v2 from 2.6.0 to 2.6.1
 (#9432)

---
 build/run-in-docker.sh               | 2 +-
 images/test-runner/rootfs/Dockerfile | 2 +-
 test/e2e/run-chart-test.sh           | 2 +-
 test/e2e/run.sh                      | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index c566bc8a0..c00453481 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -77,7 +77,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "FLAGS=$FLAGS"
   go env
   set -x
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.6.0
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.6.1
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index f471e81cc..1e8bc3643 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -55,7 +55,7 @@ ENV PATH $GOPATH/bin:/usr/local/go/bin:$PATH
 
 RUN mkdir -p "$GOPATH/src" "$GOPATH/bin" && chmod -R 777 "$GOPATH"
 
-RUN go install github.com/onsi/ginkgo/v2/ginkgo@v2.6.0  && go install golang.org/x/lint/golint@latest
+RUN go install github.com/onsi/ginkgo/v2/ginkgo@v2.6.1  && go install golang.org/x/lint/golint@latest
 
 ARG RESTY_CLI_VERSION
 ARG RESTY_CLI_SHA
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 606215f17..e501ca6fe 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go get github.com/onsi/ginkgo/v2/ginkgo@v2.6.0
+    go get github.com/onsi/ginkgo/v2/ginkgo@v2.6.1
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run.sh b/test/e2e/run.sh
index 9ca490baa..17dad6c39 100755
--- a/test/e2e/run.sh
+++ b/test/e2e/run.sh
@@ -79,7 +79,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go get github.com/onsi/ginkgo/v2/ginkgo@v2.6.0
+    go get github.com/onsi/ginkgo/v2/ginkgo@v2.6.1
   fi
 
   echo "[dev-env] building image"

From a667c93adeb9c4a7b8c50ee4c43e229a86e7e415 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 21 Dec 2022 00:49:26 -0800
Subject: [PATCH 0531/1641] Bump golang.org/x/crypto from 0.3.0 to 0.4.0
 (#9397)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.3.0 to 0.4.0.
- [Release notes](https://github.com/golang/crypto/releases)
- [Commits](https://github.com/golang/crypto/compare/v0.3.0...v0.4.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 3c88a910b..b074e7c10 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.1
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.3.0
+	golang.org/x/crypto v0.4.0
 	google.golang.org/grpc v1.51.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
diff --git a/go.sum b/go.sum
index 8362b75ba..684ae5beb 100644
--- a/go.sum
+++ b/go.sum
@@ -423,8 +423,8 @@ golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPh
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20211215153901-e495a2d5b3d3/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
-golang.org/x/crypto v0.3.0 h1:a06MkbcxBrEFc0w0QIZWXrH/9cCX6KJyWbBOIwAn+7A=
-golang.org/x/crypto v0.3.0/go.mod h1:hebNnKkNXi2UzZN1eVRvBB7co0a+JxK6XbPiWVs/3J4=
+golang.org/x/crypto v0.4.0 h1:UVQgzMY87xqpKNgb+kDsll2Igd33HszWHFLmpaRMq/8=
+golang.org/x/crypto v0.4.0/go.mod h1:3quD/ATkf6oY+rnes5c3ExXTbLc8mueNue5/DoinL80=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=

From 6ed6a76200595a7c6843322c60491fef2c86a864 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Wed, 21 Dec 2022 09:51:26 +0100
Subject: [PATCH 0532/1641] HPA: Add `controller.autoscaling.annotations` to
 `values.yaml`. (#9253)

This value is already in use, but hasn't been added to `values.yaml`.
---
 charts/ingress-nginx/README.md   | 1 +
 charts/ingress-nginx/values.yaml | 1 +
 2 files changed, 2 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 0e2800d94..af71493fe 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -295,6 +295,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.affinity | object | `{}` | Affinity and anti-affinity rules for server scheduling to nodes # Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity # |
 | controller.allowSnippetAnnotations | bool | `true` | This configuration defines if Ingress Controller should allow users to set their own *-snippet annotations, otherwise this is forbidden / dropped when users add those annotations. Global snippets in ConfigMap are still respected |
 | controller.annotations | object | `{}` | Annotations to be added to the controller Deployment or DaemonSet # |
+| controller.autoscaling.annotations | object | `{}` |  |
 | controller.autoscaling.apiVersion | string | `"autoscaling/v2"` |  |
 | controller.autoscaling.behavior | object | `{}` |  |
 | controller.autoscaling.enabled | bool | `false` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 161f974fe..b7089addb 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -366,6 +366,7 @@ controller:
   autoscaling:
     apiVersion: autoscaling/v2
     enabled: false
+    annotations: {}
     minReplicas: 1
     maxReplicas: 11
     targetCPUUtilizationPercentage: 50

From f685c9b379de340814d2e4014cca85431d717b41 Mon Sep 17 00:00:00 2001
From: James Strong <james.strong@chainguard.dev>
Date: Wed, 21 Dec 2022 12:36:20 -0500
Subject: [PATCH 0533/1641] force rebuild for curl cve

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 images/nginx/rootfs/build.sh | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 6d8937a22..8023575c0 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -177,7 +177,8 @@ apk add \
   mercurial \
   alpine-sdk \
   findutils \
-  curl ca-certificates \
+  curl \
+  ca-certificates \
   patch \
   libaio-dev \
   openssl \

From bb60e02e960340c382f0bcd4b21292fb06f80602 Mon Sep 17 00:00:00 2001
From: Carlos Tadeu Panato Junior <ctadeu@gmail.com>
Date: Thu, 22 Dec 2022 16:37:26 +0100
Subject: [PATCH 0534/1641] CI updates (#9440)

* add labels to dependabot prs

Signed-off-by: cpanato <ctadeu@gmail.com>

* sync hashes and versions dependabot can update the version comment now

Signed-off-by: cpanato <ctadeu@gmail.com>

Signed-off-by: cpanato <ctadeu@gmail.com>
---
 .github/dependabot.yml                     | 10 ++-
 .github/workflows/ci.yaml                  | 81 +++++++++++-----------
 .github/workflows/depreview.yaml           |  4 +-
 .github/workflows/docs.yaml                | 10 ++-
 .github/workflows/helm.yaml                | 14 ++--
 .github/workflows/junit-reports.yaml       | 13 ++--
 .github/workflows/perftest.yaml            |  7 +-
 .github/workflows/plugin.yaml              |  9 +--
 .github/workflows/project.yml              |  4 +-
 .github/workflows/scorecards.yml           | 20 +++---
 .github/workflows/vulnerability-scans.yaml | 72 +++++++++----------
 11 files changed, 125 insertions(+), 119 deletions(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 404ed62e1..28a5e5580 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -5,7 +5,15 @@ updates:
     directory: "/"
     schedule:
       interval: "weekly"
+    labels:
+      - "area/dependency"
+      - "release-note-none"
+      - "ok-to-test"
   - package-ecosystem: "github-actions"
     directory: "/"
     schedule:
-        interval: "weekly"
+      interval: "weekly"
+    labels:
+      - "area/dependency"
+      - "release-note-none"
+      - "ok-to-test"
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 74bca7a72..d1a9936b5 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -33,9 +33,9 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
-      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
+      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -59,10 +59,10 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
       - name: Run Gosec Security Scanner
-        uses: securego/gosec@1af1d5bb49259b62e45c505db397dd2ada5d74f8 # master
+        uses: securego/gosec@1af1d5bb49259b62e45c505db397dd2ada5d74f8 # v2.14.0
         with:
           # G601 for zz_generated.deepcopy.go
           # G306 TODO: Expect WriteFile permissions to be 0600 or less
@@ -74,26 +74,25 @@ jobs:
     runs-on: ubuntu-latest
     needs: changes
     if: |
-      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.charts == 'true') || ${{ inputs.run_e2e }} 
-
+      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.charts == 'true') || ${{ inputs.run_e2e }}
 
     steps:
-
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
-      - name: Set up Go 1.19.4
+      - name: Set up Go
         id: go
-        uses: actions/setup-go@d0a58c1c4d2b25278816e339b944508c875f3613 # v3.2.0
+        uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
         with:
-          go-version: '1.19.4'
+          go-version: '1.19'
+          check-latest: true
 
       - name: Set up QEMU
-        uses: docker/setup-qemu-action@e81a89b1732b9c48d79cd809d8d81d79c4647a18 #v2.0.0
+        uses: docker/setup-qemu-action@e81a89b1732b9c48d79cd809d8d81d79c4647a18 # v2.1.0
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@8c0edbc76e98fa90f69d9a2c020dcb50019dc325 # v2.0.0
+        uses: docker/setup-buildx-action@8c0edbc76e98fa90f69d9a2c020dcb50019dc325 # v2.2.1
         with:
           version: latest
 
@@ -104,7 +103,7 @@ jobs:
         run: |
           sudo apt-get -qq update || true
           sudo apt-get install -y pigz
-          curl -LO https://storage.googleapis.com/kubernetes-release/release/v1.17.0/bin/linux/amd64/kubectl
+          curl -LO https://storage.googleapis.com/kubernetes-release/release/v1.25.5/bin/linux/amd64/kubectl
           chmod +x ./kubectl
           sudo mv ./kubectl /usr/local/bin/kubectl
 
@@ -138,24 +137,24 @@ jobs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.charts == 'true') || ${{ inputs.run_e2e }} 
+      (needs.changes.outputs.charts == 'true') || ${{ inputs.run_e2e }}
 
     strategy:
       matrix:
         k8s: [v1.23.13, v1.24.7, v1.25.3]
 
     steps:
-
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
       - name: Setup Go
-        uses: actions/setup-go@d0a58c1c4d2b25278816e339b944508c875f3613 # v3.2.0
+        uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
         with:
-          go-version: '1.19.4'
+          go-version: '1.19'
+          check-latest: true
 
       - name: cache
-        uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7 # v3
+        uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7 # v3.0.1
         with:
           name: docker.tar.gz
 
@@ -192,7 +191,7 @@ jobs:
         run: |
           kind create cluster --image=kindest/node:${{ matrix.k8s }}
 
-      - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af # v1
+      - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af # v2.0.0
         with:
           name: docker.tar.gz
           failOnError: false
@@ -211,7 +210,6 @@ jobs:
           kind get kubeconfig > $HOME/.kube/kind-config-kind
           make kind-e2e-chart-tests
 
-
   kubernetes:
     name: Kubernetes
     runs-on: ubuntu-latest
@@ -219,19 +217,18 @@ jobs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.go == 'true') || ${{ inputs.run_e2e }} 
+      (needs.changes.outputs.go == 'true') || ${{ inputs.run_e2e }}
 
     strategy:
       matrix:
         k8s: [v1.23.13, v1.24.7, v1.25.3]
 
     steps:
-
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
       - name: cache
-        uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7 # v2
+        uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7 # v3.0.1
         with:
           name: docker.tar.gz
 
@@ -240,7 +237,7 @@ jobs:
         run: |
           kind create cluster --image=kindest/node:${{ matrix.k8s }} --config test/e2e/kind.yaml
 
-      - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af # v1
+      - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af # v2.0.0
         with:
           name: docker.tar.gz
           failOnError: false
@@ -260,7 +257,7 @@ jobs:
           make kind-e2e-test
 
       - name: Uplaod e2e junit-reports
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # v3.1.1
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ matrix.k8s }}
@@ -273,7 +270,7 @@ jobs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.go == 'true') || ${{ inputs.run_e2e }} 
+      (needs.changes.outputs.go == 'true') || ${{ inputs.run_e2e }}
 
     strategy:
       matrix:
@@ -282,10 +279,10 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
       - name: cache
-        uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7
+        uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7 # v3.0.1
         with:
           name: docker.tar.gz
 
@@ -294,7 +291,7 @@ jobs:
         run: |
           kind create cluster --image=kindest/node:${{ matrix.k8s }} --config test/e2e/kind.yaml
 
-      - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af
+      - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af # v2.0.0
         with:
           name: docker.tar.gz
           failOnError: false
@@ -313,9 +310,9 @@ jobs:
         run: |
           kind get kubeconfig > $HOME/.kube/kind-config-kind
           make kind-e2e-test
-      
+
       - name: Uplaod e2e junit-reports
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # v3.1.1
         if: success() || failure()
         with:
           name: e2e-test-reports-chroot-${{ matrix.k8s }}
@@ -331,9 +328,9 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
-      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
+      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -388,7 +385,6 @@ jobs:
         run: |
           cd images/ext-auth-example-authsvc && make build
 
-
   test-image:
     permissions:
       contents: read  # for dorny/paths-filter to fetch a list of changed files
@@ -405,9 +401,9 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
-      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
+      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -421,12 +417,13 @@ jobs:
         run: |
           kind create cluster --image=kindest/node:${{ matrix.k8s }}
 
-      - name: Set up Go 1.19.4
+      - name: Set up Go
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: actions/setup-go@d0a58c1c4d2b25278816e339b944508c875f3613 # v3.2.0
+        uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
         with:
-          go-version: '1.19.4'
+          go-version: '1.19'
+          check-latest: true
 
       - name: kube-webhook-certgen image build
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 5a22ea5ff..758e4b95f 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b #v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@0ff3da6f81b812d4ec3cf37a04e2308c7a723730 #v2.0.2
+        uses: actions/dependency-review-action@0ff3da6f81b812d4ec3cf37a04e2308c7a723730 # v3.0.2
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 879f90d85..241921ecf 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -22,11 +22,10 @@ jobs:
       charts: ${{ steps.filter.outputs.charts }}
 
     steps:
-
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b #v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
-      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
+      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -47,11 +46,10 @@ jobs:
       contents: write # needed to write releases
 
     steps:
-
       - name: Checkout master
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b #v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
         env:
-          PERSONAL_TOKEN: "${{ secrets.GITHUB_TOKEN }}" 
+          PERSONAL_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 0e9f74b50..5d96507a1 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -22,11 +22,10 @@ jobs:
       charts: ${{ steps.filter.outputs.charts }}
 
     steps:
-
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
-      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.10.2
+      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -49,9 +48,8 @@ jobs:
       (needs.changes.outputs.charts == 'true')
 
     steps:
-
       - name: Checkout master
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
@@ -61,12 +59,12 @@ jobs:
         run: |
           git config --global user.name "$GITHUB_ACTOR"
           git config --global user.email "$GITHUB_ACTOR@users.noreply.github.com"
-      
+
       - name: Helm Chart Releaser
-        uses: helm/chart-releaser-action@98bccfd32b0f76149d188912ac8e45ddd3f8695f #v1.4.1
+        uses: helm/chart-releaser-action@98bccfd32b0f76149d188912ac8e45ddd3f8695f # v1.4.1
         env:
           CR_SKIP_EXISTING: "false"
           CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
           CR_RELEASE_NAME_TEMPLATE: "helm-chart-{{ .Version }}"
         with:
-          charts_dir: charts
\ No newline at end of file
+          charts_dir: charts
diff --git a/.github/workflows/junit-reports.yaml b/.github/workflows/junit-reports.yaml
index f02e68466..eb25bbeca 100644
--- a/.github/workflows/junit-reports.yaml
+++ b/.github/workflows/junit-reports.yaml
@@ -1,4 +1,5 @@
 name: 'E2E Test Report'
+
 on:
   workflow_run:
     workflows: ['CI']                     # runs after CI workflow
@@ -8,9 +9,9 @@ jobs:
   report:
     runs-on: ubuntu-latest
     steps:
-    - uses: dorny/test-reporter@v1
-      with:
-        artifact: /e2e-test-reports-(.*)/
-        name: JEST Tests $1                 # Name of the check run which will be created
-        path: 'report*.xml'                     # Path to test results (inside artifact .zip)
-        reporter: jest-junit              # Format of test results
+      - uses: dorny/test-reporter@c9b3d0e2bd2a4e96aaf424dbaa31c46b42318226 # v1.6.0
+        with:
+          artifact: /e2e-test-reports-(.*)/
+          name: JEST Tests $1               # Name of the check run which will be created
+          path: 'report*.xml'               # Path to test results (inside artifact .zip)
+          reporter: jest-junit              # Format of test results
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 7205b0c08..89dfdfad6 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -1,4 +1,5 @@
 name: Performance Test
+
 on:
   workflow_dispatch:
     inputs:
@@ -18,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
       - name: Install K6
         run: |
@@ -33,7 +34,7 @@ jobs:
           mkdir $HOME/.kube
           make dev-env
           podName=`kubectl -n ingress-nginx get po | grep -i controller | awk '{print $1}'`
-          if [[ -z ${podName} ]] ; then 
+          if [[ -z ${podName} ]] ; then
             sleep 5
           fi
           kubectl wait pod -n ingress-nginx --for condition=Ready $podName
@@ -46,7 +47,7 @@ jobs:
             kubectl create ing k6 --class nginx \
             --rule test.ingress-nginx-controller.ga/*=k6:80
           podName=`kubectl get po | grep -i k6 | awk '{print $1}'`
-          if [[ -z ${podName} ]] ; then 
+          if [[ -z ${podName} ]] ; then
             sleep 5
           fi
           kubectl wait pod --for condition=Ready $podName
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index c8fca8cca..779cd1da8 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -17,17 +17,18 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.2
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
         with:
           fetch-depth: 0
 
       - name: Set up Go
-        uses: actions/setup-go@d0a58c1c4d2b25278816e339b944508c875f3613 # v3.2.0
+        uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
         with:
-          go-version: 1.19.4
+          go-version: 1.19
+          check-latest: true
 
       - name: Run GoReleaser
-        uses: goreleaser/goreleaser-action@8f67e590f2d095516493f017008adc464e63adb1 # v3.0.0
+        uses: goreleaser/goreleaser-action@8f67e590f2d095516493f017008adc464e63adb1 # v4.1.0
         with:
           version: latest
           args: release --rm-dist
diff --git a/.github/workflows/project.yml b/.github/workflows/project.yml
index 9baa09bf2..d75435712 100644
--- a/.github/workflows/project.yml
+++ b/.github/workflows/project.yml
@@ -11,9 +11,9 @@ jobs:
     runs-on: ubuntu-latest
     permissions:
       repository-projects: write
-      issues: write 
+      issues: write
     steps:
-      - uses: actions/add-to-project@960fbad431afda394cfcf8743445e741acd19e85 #v0.4.0
+      - uses: actions/add-to-project@960fbad431afda394cfcf8743445e741acd19e85 # v0.4.0
         with:
           project-url: https://github.com/orgs/kubernetes/projects/104
           github-token: ${{ secrets.PROJECT_WRITER }}
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index cb2aabf95..6af70e691 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -1,11 +1,13 @@
 name: Scorecards supply-chain security
+
 on:
   # Only the default branch is supported.
   branch_protection_rule:
   schedule:
     - cron: '20 11 * * 5'
   push:
-    branches: [ "main" ]
+    branches:
+      - "main"
 
 # Declare default permissions as read only.
 permissions: read-all
@@ -22,15 +24,15 @@ jobs:
       # Needs for private repositories.
       contents: read
       actions: read
-    
+
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.0.0
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
         with:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@937ffa90d79c7d720498178154ad4c7ba1e4ad8c # v1.1.1
+        uses: ossf/scorecard-action@e38b1902ae4f44df626f11ba0734b14fb91f8f86 # v2.1.2
         with:
           results_file: results.sarif
           results_format: sarif
@@ -41,22 +43,22 @@ jobs:
           # repo_token: ${{ secrets.SCORECARD_READ_TOKEN }}
 
           # Publish the results for public repositories to enable scorecard badges. For more details, see
-          # https://github.com/ossf/scorecard-action#publishing-results. 
-          # For private repositories, `publish_results` will automatically be set to `false`, regardless 
+          # https://github.com/ossf/scorecard-action#publishing-results.
+          # For private repositories, `publish_results` will automatically be set to `false`, regardless
           # of the value entered here.
           publish_results: true
 
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # v3.0.0
+        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # v3.1.1
         with:
           name: SARIF file
           path: results.sarif
           retention-days: 5
-      
+
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@959cbb7472c4d4ad70cdfe6f4976053fe48ab394 # v2.1.14
+        uses: github/codeql-action/upload-sarif@896079047b4bb059ba6f150a5d87d47dde99e6e5 # v2.1.37
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 9eaebd865..67fad3187 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
         with:
           fetch-depth: 0
 
@@ -46,47 +46,47 @@ jobs:
 
   scan:
     runs-on: ubuntu-latest
-    needs:     version
+    needs: version
     strategy:
       matrix:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
-    - name: Checkout code
-      uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b
+      - name: Checkout code
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
-    - shell: bash
-      id: test
-      run: echo "Scanning registry.k8s.io/ingress-nginx/controller@${{ matrix.versions }}"
+      - shell: bash
+        id: test
+        run: echo "Scanning registry.k8s.io/ingress-nginx/controller@${{ matrix.versions }}"
 
-    - name: Scan image with AquaSec/Trivy
-      id: scan
-      uses: aquasecurity/trivy-action@9ab158e8597f3b310480b9a69402b419bc03dbd5 #v0.5.1
-      with:
-        image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
-        format: 'sarif'
-        output: trivy-results-${{ matrix.versions }}.sarif
-        exit-code: 0
-        vuln-type: 'os,library'
-        severity: 'CRITICAL,HIGH,MEDIUM,LOW,UNKNOWN'
+      - name: Scan image with AquaSec/Trivy
+        id: scan
+        uses: aquasecurity/trivy-action@9ab158e8597f3b310480b9a69402b419bc03dbd5 # v0.8.0
+        with:
+          image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
+          format: 'sarif'
+          output: trivy-results-${{ matrix.versions }}.sarif
+          exit-code: 0
+          vuln-type: 'os,library'
+          severity: 'CRITICAL,HIGH,MEDIUM,LOW,UNKNOWN'
 
-    - name: Output Sarif File
-      shell: bash
-      run: cat ${{ github.workspace }}/trivy-results-${{ matrix.versions }}.sarif
+      - name: Output Sarif File
+        shell: bash
+        run: cat ${{ github.workspace }}/trivy-results-${{ matrix.versions }}.sarif
 
-    # This step checks out a copy of your repository.
-    - name: Upload SARIF file
-      uses: github/codeql-action/upload-sarif@959cbb7472c4d4ad70cdfe6f4976053fe48ab394
-      with:
-        token: ${{ github.token }}
-        # Path to SARIF file relative to the root of the repository
-        sarif_file: ${{ github.workspace }}/trivy-results-${{ matrix.versions }}.sarif
+      # This step checks out a copy of your repository.
+      - name: Upload SARIF file
+        uses: github/codeql-action/upload-sarif@896079047b4bb059ba6f150a5d87d47dde99e6e5 # v2.1.37
+        with:
+          token: ${{ github.token }}
+          # Path to SARIF file relative to the root of the repository
+          sarif_file: ${{ github.workspace }}/trivy-results-${{ matrix.versions }}.sarif
 
-    - name: Vulz Count
-      shell: bash
-      run: |
-        TRIVY_COUNT=$(cat ${{ github.workspace }}/trivy-results-${{ matrix.versions }}.sarif | jq '.runs[0].results | length')
-        echo "TRIVY_COUNT: $TRIVY_COUNT"
-        echo "Image Vulnerability scan output" >> $GITHUB_STEP_SUMMARY
-        echo "Image ID: registry.k8s.io/ingress-nginx/controller@${{ matrix.versions }}" >> $GITHUB_STEP_SUMMARY
-        echo "" >> $GITHUB_STEP_SUMMARY
-        echo "Trivy Count: $TRIVY_COUNT" >> $GITHUB_STEP_SUMMARY
+      - name: Vulz Count
+        shell: bash
+        run: |
+          TRIVY_COUNT=$(cat ${{ github.workspace }}/trivy-results-${{ matrix.versions }}.sarif | jq '.runs[0].results | length')
+          echo "TRIVY_COUNT: $TRIVY_COUNT"
+          echo "Image Vulnerability scan output" >> $GITHUB_STEP_SUMMARY
+          echo "Image ID: registry.k8s.io/ingress-nginx/controller@${{ matrix.versions }}" >> $GITHUB_STEP_SUMMARY
+          echo "" >> $GITHUB_STEP_SUMMARY
+          echo "Trivy Count: $TRIVY_COUNT" >> $GITHUB_STEP_SUMMARY

From 7206f488abf4c54c33dc3e7bd03dfe17d2f2259d Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Thu, 22 Dec 2022 23:49:26 +0530
Subject: [PATCH 0535/1641] avoid builds and tests for non-code changes (#9392)

* avoid builds and tests for non-code changes

* dummy test for workflow
---
 .github/workflows/ci.yaml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index d1a9936b5..596a26b31 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -4,10 +4,16 @@ on:
   pull_request:
     branches:
       - "*"
+    paths-ignore:
+      - 'docs/**'
+      - 'deploy/**'
 
   push:
     branches:
       - main
+    paths-ignore:
+      - 'docs/**'
+      - 'deploy/**'
 
   workflow_dispatch:
     inputs:

From 30d6f7e14043dafba40f078e9f2d8cb4e4f97c51 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 23 Dec 2022 22:27:25 -0500
Subject: [PATCH 0536/1641] test the new e2e test images (#9444)

Signed-off-by: James Strong <james.strong@chainguard.dev>

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 build/run-in-docker.sh  | 2 +-
 test/e2e-image/Makefile | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index c00453481..511c5475f 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -38,7 +38,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20221125-controller-v1.5.1-21-g9d562c47a@sha256:50c5469f08b664e928a3035ac94a2348955b669d7ac33809abc674c8fd6c19c1}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20221221-controller-v1.5.1-62-g6ffaef32a@sha256:8f025472964cd15ae2d379503aba150565a8d78eb36b41ddfc5f1e3b1ca81a8e}
 
 DOCKER_OPTS=${DOCKER_OPTS:-}
 DOCKER_IN_DOCKER_ENABLED=${DOCKER_IN_DOCKER_ENABLED:-}
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 64094ec34..f89bf6bf2 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20221125-controller-v1.5.1-21-g9d562c47a@sha256:50c5469f08b664e928a3035ac94a2348955b669d7ac33809abc674c8fd6c19c1"
+E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20221221-controller-v1.5.1-62-g6ffaef32a@sha256:8f025472964cd15ae2d379503aba150565a8d78eb36b41ddfc5f1e3b1ca81a8e"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"

From c50a9e99bc594d10f9c3a49abab223b8839deecb Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Sat, 24 Dec 2022 09:17:27 -0500
Subject: [PATCH 0537/1641] upgrade nginx base image (#9436)

* upgrade nginx base and e2e base

Signed-off-by: James Strong <james.strong@chainguard.dev>

* upgrade e2e base

Signed-off-by: James Strong <james.strong@chainguard.dev>

* update new build

Signed-off-by: James Strong <james.strong@chainguard.dev>

* update to latest e2e base

Signed-off-by: James Strong <james.strong@chainguard.dev>

* remove e2e update

Signed-off-by: James Strong <james.strong@chainguard.dev>

* remove e2e update

Signed-off-by: James Strong <james.strong@chainguard.dev>

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index 45654c627..72093c593 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:0b5e0685112e4537ee20a0bdbba451e9f6158aa3@sha256:3f5e28bb248d5170e77b77fc2a1a385724aeff41a0b34b5afad7dd9cf93de000
+registry.k8s.io/ingress-nginx/nginx:21aa7f55a3325c1c26de0dfb62ede4c0a809a994@sha256:da6b877ed96dada46ed6e379051c2dd461dd5d329af7a7531820ad3e16197e20
\ No newline at end of file

From 336f25230beecdc4c9d06f448368a1cf51b1beac Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Sat, 24 Dec 2022 14:23:26 -0500
Subject: [PATCH 0538/1641] start release 1.5.2 (#9445)

* start release 1.5.2

Signed-off-by: James Strong <james.strong@chainguard.dev>

* upgrade kind clusters and add 1.26

Signed-off-by: James Strong <james.strong@chainguard.dev>

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 .github/workflows/ci.yaml | 8 ++++----
 TAG                       | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 596a26b31..d064fa6a2 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -147,7 +147,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.23.13, v1.24.7, v1.25.3]
+        k8s: [v1.23.13, v1.24.7, v1.25.3, v1.26.0]
 
     steps:
       - name: Checkout
@@ -227,7 +227,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.23.13, v1.24.7, v1.25.3]
+        k8s: [v1.23.13, v1.24.7, v1.25.3, v1.26.0]
 
     steps:
       - name: Checkout
@@ -280,7 +280,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.23.13, v1.24.7, v1.25.3]
+        k8s: [v1.23.13, v1.24.7, v1.25.3, v1.26.0]
 
     steps:
 
@@ -403,7 +403,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [ v1.23.13, v1.24.7, v1.25.3 ]
+        k8s: [v1.23.13, v1.24.7, v1.25.3, v1.26.0]
 
     steps:
       - name: Checkout
diff --git a/TAG b/TAG
index 53b5bbb12..a503124bd 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.5.1
+v1.5.2

From 26507e0fa4d545d1aaa8b9ba5754ba96f47161d6 Mon Sep 17 00:00:00 2001
From: James Strong <james.strong@chainguard.dev>
Date: Sat, 24 Dec 2022 15:51:50 -0500
Subject: [PATCH 0539/1641] with chroot now it can take longer than 30 mins

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 cloudbuild.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/cloudbuild.yaml b/cloudbuild.yaml
index a9d4a214c..d3f1eed62 100644
--- a/cloudbuild.yaml
+++ b/cloudbuild.yaml
@@ -1,6 +1,6 @@
 # See https://cloud.google.com/cloud-build/docs/build-config
 
-timeout: 1800s
+timeout: 18000s
 options:
   substitution_option: ALLOW_LOOSE
 steps:

From d2ba8e6b6bc137bf9628b2d57cb3967716bde773 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 26 Dec 2022 16:16:40 -0500
Subject: [PATCH 0540/1641] Reset tag to restart 1.5.2 release

gcloud timed out on the 1.5.2 build, so we need to restart the release process, so reverting the tag.
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index a503124bd..53b5bbb12 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.5.2
+v1.5.1

From 69b3e7e8c110a91b84fff3155b9c807fa9138adc Mon Sep 17 00:00:00 2001
From: Aleksandr Lebedev <49903054+alebsys@users.noreply.github.com>
Date: Tue, 27 Dec 2022 04:23:26 +0700
Subject: [PATCH 0541/1641] Update command line arguments documentation (#9224)

* update cli-arguents.md with latest version flags.go

* correct punctuation in pkg/flag/flags.go
---
 docs/user-guide/cli-arguments.md | 51 ++++++++++++++------------------
 pkg/flags/flags.go               | 32 ++++++++++----------
 2 files changed, 39 insertions(+), 44 deletions(-)

diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index 9d7bd9fc6..ab483b1cd 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -6,22 +6,23 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 
 | Argument | Description |
 |----------|-------------|
-| `--add_dir_header`                 | If true, adds the file directory to the header |
-| `--alsologtostderr`                | log to standard error as well as files |
 | `--annotations-prefix`             | Prefix of the Ingress annotations specific to the NGINX controller. (default "nginx.ingress.kubernetes.io") |
 | `--apiserver-host`                 | Address of the Kubernetes API server. Takes the form "protocol://address:port". If not specified, it is assumed the program runs inside a Kubernetes cluster and local discovery is attempted. |
 | `--certificate-authority`          | Path to a cert file for the certificate authority. This certificate is used only when the flag --apiserver-host is specified. |
 | `--configmap`                      | Name of the ConfigMap containing custom global configurations for the controller. |
+| `--controller-class`                      | Ingress Class Controller value this Ingress satisfies. The class of an Ingress object is set using the field IngressClassName in Kubernetes clusters version v1.19.0 or higher. The .spec.controller value of the IngressClass referenced in an Ingress Object should be the same value specified here to make this object be watched. |
 | `--deep-inspect`                   | Enables ingress object security deep inspector. (default true) |
 | `--default-backend-service`        | Service used to serve HTTP requests not matching any known server name (catch-all). Takes the form "namespace/name". The controller configures NGINX to forward requests to the first port of this Service. |
 | `--default-server-port`            | Port to use for exposing the default server (catch-all). (default 8181) |
 | `--default-ssl-certificate`        | Secret containing a SSL certificate to be used by the default HTTPS server (catch-all). Takes the form "namespace/name". |
-| `--disable-catch-all`              | Disable support for catch-all Ingresses |
-| `--disable-full-test` | Disable full test of all merged ingresses at the admission stage and tests the template of the ingress being created or updated  (full test of all ingresses is enabled by default) |
+| `--disable-catch-all`              | Disable support for catch-all Ingresses. (default false) |
+| `--disable-full-test` | Disable full test of all merged ingresses at the admission stage and tests the template of the ingress being created or updated  (full test of all ingresses is enabled by default). |
+| `--disable-svc-external-name` | Disable support for Services of type ExternalName. (default false) |
+| `--dynamic-configuration-retries` | Number of times to retry failed dynamic configuration before failing to sync an ingress. (default 15) |
 | `--election-id`                    | Election id to use for Ingress status updates. (default "ingress-controller-leader") |
-| `--enable-metrics`                 | Enables the collection of NGINX metrics (default true) |
-| `--enable-ssl-chain-completion`    | Autocomplete SSL certificate chains with missing intermediate CA certificates. Certificates uploaded to Kubernetes must have the "Authority Information Access" X.509 v3 extension for this to succeed. |
-| `--enable-ssl-passthrough`         | Enable SSL Passthrough. |
+| `--enable-metrics`                 | Enables the collection of NGINX metrics. (default true) |
+| `--enable-ssl-chain-completion`    | Autocomplete SSL certificate chains with missing intermediate CA certificates. Certificates uploaded to Kubernetes must have the "Authority Information Access" X.509 v3 extension for this to succeed. (default false)|
+| `--enable-ssl-passthrough`         | Enable SSL Passthrough. (default false) |
 | `--health-check-path`              | URL path of the health check endpoint. Configured inside the NGINX status server. All requests received on the port defined by the healthz-port parameter are forwarded internally to this path. (default "/healthz") |
 | `--health-check-timeout`           | Time limit, in seconds, for a probe to health-check-path to succeed. (default 10) |
 | `--healthz-port`                   | Port to use for the healthz endpoint. (default 10254) |
@@ -29,48 +30,42 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--http-port`                      | Port to use for servicing HTTP traffic. (default 80) |
 | `--https-port`                     | Port to use for servicing HTTPS traffic. (default 443) |
 | `--ingress-class`                  | Name of the ingress class this controller satisfies. The class of an Ingress object is set using the field IngressClassName in Kubernetes clusters version v1.18.0 or higher or the annotation "kubernetes.io/ingress.class" (deprecated). If this parameter is not set, or set to the default value of "nginx", it will handle ingresses with either an empty or "nginx" class name. |
-| `--ingress-class-by-name`          | Define if Ingress Controller should watch for Ingress Class by Name together with Controller Class. (default false) |
-| `--internal-logger-address`        | Define the internal logger address to use when chroot images is used. (default 127.0.0.1:11514) |
+| `--ingress-class-by-name`          | Define if Ingress Controller should watch for Ingress Class by Name together with Controller Class. (default false). |
+| `--internal-logger-address`        | Address to be used when binding internal syslogger. (default 127.0.0.1:11514) |
 | `--kubeconfig`                     | Path to a kubeconfig file containing authorization and API server information. |
-| `--length-buckets`                 | Set of buckets which will be used for prometheus histogram metrics such as RequestLength, ResponseLength. (default `[10, 20, 30, 40, 50, 60, 70, 80, 90, 100]`) |
-| `--log_backtrace_at`               | when logging hits line file:N, emit a stack trace (default :0) |
-| `--log_dir`                        | If non-empty, write log files in this directory |
-| `--log_file`                       | If non-empty, use this log file |
-| `--log_file_max_size`              | Defines the maximum size a log file can grow to. Unit is megabytes. If the value is 0, the maximum file size is unlimited. (default 1800) |
-| `--logtostderr`                    | log to standard error instead of files (default true) |
+| `--length-buckets`                     | Set of buckets which will be used for prometheus histogram metrics such as RequestLength, ResponseLength. (default `[10, 20, 30, 40, 50, 60, 70, 80, 90, 100]`) |
 | `--maxmind-edition-ids`            | Maxmind edition ids to download GeoLite2 Databases. (default "GeoLite2-City,GeoLite2-ASN") |
 | `--maxmind-retries-timeout`        | Maxmind downloading delay between 1st and 2nd attempt, 0s - do not retry to download if something went wrong. (default 0s) |
 | `--maxmind-retries-count`          | Number of attempts to download the GeoIP DB. (default 1) |
-| `--maxmind-license-key`            | Maxmind license key to download GeoLite2 Databases. https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases |
-| `--metrics-per-host`               | Export metrics per-host (default true) |
+| `--maxmind-license-key`            | Maxmind license key to download GeoLite2 Databases. https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases . |
+| `--maxmind-mirror`            | Maxmind mirror url (example: http://geoip.local/databases. |
+| `--metrics-per-host`               | Export metrics per-host. (default true) |
+| `--monitor-max-batch-size`               | Max batch size of NGINX metrics. (default 10000)|
 | `--post-shutdown-grace-period`     | Additional delay in seconds before controller container exits. (default 10) |
 | `--profiler-port`                  | Port to use for expose the ingress controller Go profiler when it is enabled. (default 10245) |
-| `--profiling`                      | Enable profiling via web interface host:port/debug/pprof/ (default true) |
+| `--profiling`                      | Enable profiling via web interface host:port/debug/pprof/ . (default true) |
 | `--publish-service`                | Service fronting the Ingress controller. Takes the form "namespace/name". When used together with update-status, the controller mirrors the address of this service's endpoints to the load-balancer status of all Ingress objects it satisfies. |
 | `--publish-status-address`         | Customized address (or addresses, separated by comma) to set as the load-balancer status of Ingress objects this controller satisfies. Requires the update-status parameter. |
-| `--report-node-internal-ip-address`| Set the load-balancer status of Ingress objects to internal Node addresses instead of external. Requires the update-status parameter. |
+| `--report-node-internal-ip-address`| Set the load-balancer status of Ingress objects to internal Node addresses instead of external. Requires the update-status parameter. (default false) |
 | `--report-status-classes`          | If true, report status classes in metrics (2xx, 3xx, 4xx and 5xx) instead of full status codes. (default false) |
-| `--skip_headers`                   | If true, avoid header prefixes in the log messages |
-| `--skip_log_headers`               | If true, avoid headers when opening log files |
 | `--ssl-passthrough-proxy-port`     | Port to use internally for SSL Passthrough. (default 442) |
-| `--size-buckets`                   | Set of buckets which will be used for prometheus histogram metrics such as BytesSent. (default `[10, 100, 1000, 10000, 100000, 1e+06, 1e+07]`) |
 | `--status-port`                    | Port to use for the lua HTTP endpoint configuration. (default 10246) |
-| `--status-update-interval`         | Time interval in seconds in which the status should check if an update is required. Default is 60 seconds (default 60) |
-| `--stderrthreshold`                | logs at or above this threshold go to stderr (default 2) |
+| `--status-update-interval`         | Time interval in seconds in which the status should check if an update is required. Default is 60 seconds. (default 60) |
 | `--stream-port`                    | Port to use for the lua TCP/UDP endpoint configuration. (default 10247) |
 | `--sync-period`                    | Period at which the controller forces the repopulation of its local object stores. Disabled by default. |
-| `--sync-rate-limit`                | Define the sync frequency upper limit (default 0.3) |
+| `--sync-rate-limit`                | Define the sync frequency upper limit. (default 0.3) |
 | `--tcp-services-configmap`         | Name of the ConfigMap containing the definition of the TCP services to expose. The key in the map indicates the external port to be used. The value is a reference to a Service in the form "namespace/name:port", where "port" can either be a port number or name. TCP ports 80 and 443 are reserved by the controller for servicing HTTP traffic. |
-| `--time-buckets`                   | Set of buckets which will be used for prometheus histogram metrics such as RequestTime, ResponseTime. (default `[0.005, 0.01, 0.025, 0.05, 0.1, 0.25, 0.5, 1, 2.5, 5, 10]`) |
+| `--time-buckets`         | Set of buckets which will be used for prometheus histogram metrics such as RequestTime, ResponseTime. (default `[0.005, 0.01, 0.025, 0.05, 0.1, 0.25, 0.5, 1, 2.5, 5, 10]`) |
 | `--udp-services-configmap`         | Name of the ConfigMap containing the definition of the UDP services to expose. The key in the map indicates the external port to be used. The value is a reference to a Service in the form "namespace/name:port", where "port" can either be a port name or number. |
 | `--update-status`                  | Update the load-balancer status of Ingress objects this controller satisfies. Requires setting the publish-service parameter to a valid Service reference. (default true) |
 | `--update-status-on-shutdown`      | Update the load-balancer status of Ingress objects when the controller shuts down. Requires the update-status parameter. (default true) |
-| `--shutdown-grace-period`          | Seconds to wait after receiving the shutdown signal, before stopping the nginx process. |
+| `--shutdown-grace-period`          | Seconds to wait after receiving the shutdown signal, before stopping the nginx process. (default 0) |
+| `--size-buckets`          | Set of buckets which will be used for prometheus histogram metrics such as BytesSent. (default `[10, 100, 1000, 10000, 100000, 1e+06, 1e+07]`) |
 | `-v, --v Level`                    | number for the log level verbosity |
 | `--validating-webhook`             | The address to start an admission controller on to validate incoming ingresses. Takes the form "<host>:port". If not provided, no admission controller is started. |
 | `--validating-webhook-certificate` | The path of the validating webhook certificate PEM. |
 | `--validating-webhook-key`         | The path of the validating webhook key PEM. |
 | `--version`                        | Show release information about the NGINX Ingress controller and exit. |
-| `--vmodule`                        | comma-separated list of pattern=N settings for file-filtered logging |
+| `--watch-ingress-without-class`                        | Define if Ingress Controller should also watch for Ingresses without an IngressClass or the annotation specified. (default false) |
 | `--watch-namespace`                | Namespace the controller watches for updates to Kubernetes objects. This includes Ingresses, Services and all configuration resources. All namespaces are watched if this parameter is left empty. |
 | `--watch-namespace-selector`       | The controller will watch namespaces whose labels match the given selector. This flag only takes effective when `--watch-namespace` is empty. |
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index 877000a7d..65b5fbcdc 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -74,10 +74,10 @@ The class of an Ingress object is set using the field IngressClassName in Kubern
 referenced in an Ingress Object should be the same value specified here to make this object be watched.`)
 
 		watchWithoutClass = flags.Bool("watch-ingress-without-class", false,
-			`Define if Ingress Controller should also watch for Ingresses without an IngressClass or the annotation specified`)
+			`Define if Ingress Controller should also watch for Ingresses without an IngressClass or the annotation specified.`)
 
 		ingressClassByName = flags.Bool("ingress-class-by-name", false,
-			`Define if Ingress Controller should watch for Ingress Class by Name together with Controller Class`)
+			`Define if Ingress Controller should watch for Ingress Class by Name together with Controller Class.`)
 
 		configMap = flags.String("configmap", "",
 			`Name of the ConfigMap containing custom global configurations for the controller.`)
@@ -112,7 +112,7 @@ namespaces are watched if this parameter is left empty.`)
 			`Selector selects namespaces the controller watches for updates to Kubernetes objects.`)
 
 		profiling = flags.Bool("profiling", true,
-			`Enable profiling via web interface host:port/debug/pprof/`)
+			`Enable profiling via web interface host:port/debug/pprof/ .`)
 
 		defSSLCertificate = flags.String("default-ssl-certificate", "",
 			`Secret containing a SSL certificate to be used by the default HTTPS server (catch-all).
@@ -147,7 +147,7 @@ Requires the update-status parameter.`)
 			`Enable SSL Passthrough.`)
 
 		disableServiceExternalName = flags.Bool("disable-svc-external-name", false,
-			`Disable support for Services of type ExternalName`)
+			`Disable support for Services of type ExternalName.`)
 
 		annotationsPrefix = flags.String("annotations-prefix", parser.DefaultAnnotationsPrefix,
 			`Prefix of the Ingress annotations specific to the NGINX controller.`)
@@ -165,16 +165,16 @@ extension for this to succeed.`)
 Requires the update-status parameter.`)
 
 		enableMetrics = flags.Bool("enable-metrics", true,
-			`Enables the collection of NGINX metrics`)
+			`Enables the collection of NGINX metrics.`)
 		metricsPerHost = flags.Bool("metrics-per-host", true,
-			`Export metrics per-host`)
+			`Export metrics per-host.`)
 		reportStatusClasses = flags.Bool("report-status-classes", false,
-			`Use status classes (2xx, 3xx, 4xx and 5xx) instead of status codes in metrics`)
+			`Use status classes (2xx, 3xx, 4xx and 5xx) instead of status codes in metrics.`)
 
-		timeBuckets         = flags.Float64Slice("time-buckets", prometheus.DefBuckets, "Set of buckets which will be used for prometheus histogram metrics such as RequestTime, ResponseTime")
-		lengthBuckets       = flags.Float64Slice("length-buckets", prometheus.LinearBuckets(10, 10, 10), "Set of buckets which will be used for prometheus histogram metrics such as RequestLength, ResponseLength")
-		sizeBuckets         = flags.Float64Slice("size-buckets", prometheus.ExponentialBuckets(10, 10, 7), "Set of buckets which will be used for prometheus histogram metrics such as BytesSent")
-		monitorMaxBatchSize = flags.Int("monitor-max-batch-size", 10000, "Max batch size of NGINX metrics")
+		timeBuckets         = flags.Float64Slice("time-buckets", prometheus.DefBuckets, "Set of buckets which will be used for prometheus histogram metrics such as RequestTime, ResponseTime.")
+		lengthBuckets       = flags.Float64Slice("length-buckets", prometheus.LinearBuckets(10, 10, 10), "Set of buckets which will be used for prometheus histogram metrics such as RequestLength, ResponseLength.")
+		sizeBuckets         = flags.Float64Slice("size-buckets", prometheus.ExponentialBuckets(10, 10, 7), "Set of buckets which will be used for prometheus histogram metrics such as BytesSent.")
+		monitorMaxBatchSize = flags.Int("monitor-max-batch-size", 10000, "Max batch size of NGINX metrics.")
 
 		httpPort  = flags.Int("http-port", 80, `Port to use for servicing HTTP traffic.`)
 		httpsPort = flags.Int("https-port", 443, `Port to use for servicing HTTPS traffic.`)
@@ -185,7 +185,7 @@ Requires the update-status parameter.`)
 		healthzHost   = flags.String("healthz-host", "", "Address to bind the healthz endpoint.")
 
 		disableCatchAll = flags.Bool("disable-catch-all", false,
-			`Disable support for catch-all Ingresses`)
+			`Disable support for catch-all Ingresses.`)
 
 		validationWebhook = flags.String("validating-webhook", "",
 			`The address to start an admission controller on to validate incoming ingresses.
@@ -195,12 +195,12 @@ Takes the form "<host>:port". If not provided, no admission controller is starte
 		validationWebhookKey = flags.String("validating-webhook-key", "",
 			`The path of the validating webhook key PEM.`)
 		disableFullValidationTest = flags.Bool("disable-full-test", false,
-			`Disable full test of all merged ingresses at the admission stage and tests the template of the ingress being created or updated  (full test of all ingresses is enabled by default)`)
+			`Disable full test of all merged ingresses at the admission stage and tests the template of the ingress being created or updated  (full test of all ingresses is enabled by default).`)
 
 		statusPort = flags.Int("status-port", 10246, `Port to use for the lua HTTP endpoint configuration.`)
 		streamPort = flags.Int("stream-port", 10247, "Port to use for the lua TCP/UDP endpoint configuration.")
 
-		internalLoggerAddress = flags.String("internal-logger-address", "127.0.0.1:11514", "Address to be used when binding internal syslogger")
+		internalLoggerAddress = flags.String("internal-logger-address", "127.0.0.1:11514", "Address to be used when binding internal syslogger.")
 
 		profilerPort    = flags.Int("profiler-port", 10245, "Port to use for expose the ingress controller Go profiler when it is enabled.")
 		profilerAddress = flags.IP("profiler-address", net.ParseIP("127.0.0.1"), "IP address used by the ingress controller to expose the Go Profiler when it is enabled.")
@@ -216,9 +216,9 @@ Takes the form "<host>:port". If not provided, no admission controller is starte
 		dynamicConfigurationRetries = flags.Int("dynamic-configuration-retries", 15, "Number of times to retry failed dynamic configuration before failing to sync an ingress.")
 	)
 
-	flags.StringVar(&nginx.MaxmindMirror, "maxmind-mirror", "", `Maxmind mirror url (example: http://geoip.local/databases`)
+	flags.StringVar(&nginx.MaxmindMirror, "maxmind-mirror", "", `Maxmind mirror url (example: http://geoip.local/databases.`)
 	flags.StringVar(&nginx.MaxmindLicenseKey, "maxmind-license-key", "", `Maxmind license key to download GeoLite2 Databases.
-https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases`)
+https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases .`)
 	flags.StringVar(&nginx.MaxmindEditionIDs, "maxmind-edition-ids", "GeoLite2-City,GeoLite2-ASN", `Maxmind edition ids to download GeoLite2 Databases.`)
 	flags.IntVar(&nginx.MaxmindRetriesCount, "maxmind-retries-count", 1, "Number of attempts to download the GeoIP DB.")
 	flags.DurationVar(&nginx.MaxmindRetriesTimeout, "maxmind-retries-timeout", time.Second*0, "Maxmind downloading delay between 1st and 2nd attempt, 0s - do not retry to download if something went wrong.")

From e0733c7fd0520ec8d7f351ca49b09199d35d35df Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 26 Dec 2022 17:17:27 -0500
Subject: [PATCH 0542/1641] restart 1.5.2 release process (#9450)

---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 53b5bbb12..a503124bd 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.5.1
+v1.5.2

From a8f4f2987103092fb12feb865861368d92da2d35 Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Wed, 28 Dec 2022 23:43:29 +0530
Subject: [PATCH 0543/1641] updated the link in RELEASE.md file (#9456)

---
 RELEASE.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/RELEASE.md b/RELEASE.md
index 589b9ee7f..ca0faa4e1 100644
--- a/RELEASE.md
+++ b/RELEASE.md
@@ -89,7 +89,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
   - The sha is also visible here https://console.cloud.google.com/gcr/images/k8s-staging-ingress-nginx/global/controller
 
-  - The sha is also visible [here]((https://prow.k8s.io/?repo=kubernetes%2Fingress-nginx&job=post-*)), after cloud build is finished. Click on the respective job, go to `Artifacts` section in the UI, then again `artifacts` in the directory browser. In the `build.log` at the very bottom you see something like this:
+  - The sha is also visible [here](https://prow.k8s.io/?repo=kubernetes%2Fingress-nginx&job=post-*), after cloud build is finished. Click on the respective job, go to `Artifacts` section in the UI, then again `artifacts` in the directory browser. In the `build.log` at the very bottom you see something like this:
 
   ```
   ...
@@ -113,7 +113,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
 - For making it easier, you can edit your branch directly in the browser. But be careful about making any mistake.
 
-- Insert the sha(s) & the tag(s), in a new line, in this file [Project kubernetes/k8s.io Ingress-Nginx-Controller Images](https://github.com/kubernetes/k8s.io/blob/main/registry.k8s.io/images/k8s-staging-ingress-nginx/images.yaml)  Look at this [example PR and the diff](https://github.com/kubernetes/k8s.io/pull/2536) to see how it was done before
+- Insert the sha(s) & the tag(s), in a new line, in this file [Project kubernetes/k8s.io Ingress-Nginx-Controller Images](https://github.com/kubernetes/k8s.io/blob/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml)  Look at this [example PR and the diff](https://github.com/kubernetes/k8s.io/pull/2536) to see how it was done before
 
 - Save and commit
 

From fe2bf5cbdf614fe40348c7b2484ead52a7216f5a Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 28 Dec 2022 17:59:27 -0300
Subject: [PATCH 0544/1641] Add sslpassthrough tests (#9457)

---
 build/build.sh                           |   8 +-
 build/run-in-docker.sh                   |  16 +--
 pkg/tcpproxy/tcp.go                      |   8 +-
 test/e2e/framework/deployment.go         |  33 +++--
 test/e2e/framework/httpexpect/request.go |  29 ++++
 test/e2e/settings/ssl_passthrough.go     | 165 +++++++++++++++++++++++
 6 files changed, 231 insertions(+), 28 deletions(-)
 create mode 100644 test/e2e/settings/ssl_passthrough.go

diff --git a/build/build.sh b/build/build.sh
index f2f1ec2eb..1ae505d91 100755
--- a/build/build.sh
+++ b/build/build.sh
@@ -16,10 +16,10 @@
 
 GO_BUILD_CMD="go build"
 
-if [ -n "$DEBUG" ]; then
-	set -x
-	GO_BUILD_CMD="go build -v"
-fi
+#if [ -n "$DEBUG" ]; then
+#	set -x
+#	GO_BUILD_CMD="go build -v"
+#fi
 
 set -o errexit
 set -o nounset
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 511c5475f..d41464e2e 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -65,23 +65,21 @@ fi
 
 USER=${USER:-nobody}
 
-echo "..printing env & other vars to stdout"
-echo "HOSTNAME=`hostname`"
-uname -a
-env
-echo "DIND_ENABLED=$DOCKER_IN_DOCKER_ENABLED"
-echo "done..printing env & other vars to stdout"
+#echo "..printing env & other vars to stdout"
+#echo "HOSTNAME=`hostname`"
+#uname -a
+#env
+#echo "DIND_ENABLED=$DOCKER_IN_DOCKER_ENABLED"
+#echo "done..printing env & other vars to stdout"
 
 if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
-  go env
-  set -x
+  #go env
   go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.6.1
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
-  set +x
 else
   echo "Reached DIND check ELSE block, inside run-in-docker.sh"
   docker run                                            \
diff --git a/pkg/tcpproxy/tcp.go b/pkg/tcpproxy/tcp.go
index 7bbff80b4..4c34e1f7b 100644
--- a/pkg/tcpproxy/tcp.go
+++ b/pkg/tcpproxy/tcp.go
@@ -80,6 +80,7 @@ func (p *TCPProxy) Handle(conn net.Conn) {
 	}
 
 	hostPort := net.JoinHostPort(proxy.IP, fmt.Sprintf("%v", proxy.Port))
+	klog.V(4).InfoS("passing to", "hostport", hostPort)
 	clientConn, err := net.Dial("tcp", hostPort)
 	if err != nil {
 		klog.V(4).ErrorS(err, "error dialing proxy", "ip", proxy.IP, "port", proxy.Port, "hostname", proxy.Hostname)
@@ -99,7 +100,7 @@ func (p *TCPProxy) Handle(conn net.Conn) {
 		}
 		proxyProtocolHeader := fmt.Sprintf("PROXY %s %s %s %d %d\r\n", protocol, remoteAddr.IP.String(), localAddr.IP.String(), remoteAddr.Port, localAddr.Port)
 		klog.V(4).InfoS("Writing Proxy Protocol", "header", proxyProtocolHeader)
-		_, err = fmt.Fprintf(clientConn, proxyProtocolHeader)
+		_, err = fmt.Fprint(clientConn, proxyProtocolHeader)
 	}
 	if err != nil {
 		klog.ErrorS(err, "Error writing Proxy Protocol header")
@@ -126,8 +127,5 @@ func pipe(client, server net.Conn) {
 	go doCopy(server, client, cancel)
 	go doCopy(client, server, cancel)
 
-	select {
-	case <-cancel:
-		return
-	}
+	<-cancel
 }
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index cb6ef9acc..3cfe8f360 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -85,9 +85,10 @@ func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
 	}
 
 	deployment := newDeployment(options.name, options.namespace, "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:778ac6d1188c8de8ecabeddd3c37b72c8adc8c712bad2bd7a81fb23a3514934c", 80, int32(options.replicas),
-		nil,
+		nil, nil, nil,
 		[]corev1.VolumeMount{},
 		[]corev1.Volume{},
+		true,
 	)
 
 	f.EnsureDeployment(deployment)
@@ -183,7 +184,7 @@ func (f *Framework) NGINXDeployment(name string, cfg string, waitendpoint bool)
 	assert.Nil(ginkgo.GinkgoT(), err, "creating configmap")
 
 	deployment := newDeployment(name, f.Namespace, f.GetNginxBaseImage(), 80, 1,
-		nil,
+		nil, nil, nil,
 		[]corev1.VolumeMount{
 			{
 				Name:      name,
@@ -203,7 +204,7 @@ func (f *Framework) NGINXDeployment(name string, cfg string, waitendpoint bool)
 					},
 				},
 			},
-		},
+		}, true,
 	)
 
 	f.EnsureDeployment(deployment)
@@ -334,8 +335,8 @@ func (f *Framework) NewGRPCBinDeployment() {
 	assert.Nil(ginkgo.GinkgoT(), err, "waiting for endpoints to become ready")
 }
 
-func newDeployment(name, namespace, image string, port int32, replicas int32, command []string,
-	volumeMounts []corev1.VolumeMount, volumes []corev1.Volume) *appsv1.Deployment {
+func newDeployment(name, namespace, image string, port int32, replicas int32, command []string, args []string, env []corev1.EnvVar,
+	volumeMounts []corev1.VolumeMount, volumes []corev1.Volume, setProbe bool) *appsv1.Deployment {
 	probe := &corev1.Probe{
 		InitialDelaySeconds: 2,
 		PeriodSeconds:       1,
@@ -381,9 +382,7 @@ func newDeployment(name, namespace, image string, port int32, replicas int32, co
 									ContainerPort: port,
 								},
 							},
-							ReadinessProbe: probe,
-							LivenessProbe:  probe,
-							VolumeMounts:   volumeMounts,
+							VolumeMounts: volumeMounts,
 						},
 					},
 					Volumes: volumes,
@@ -392,10 +391,20 @@ func newDeployment(name, namespace, image string, port int32, replicas int32, co
 		},
 	}
 
+	if setProbe {
+		d.Spec.Template.Spec.Containers[0].ReadinessProbe = probe
+		d.Spec.Template.Spec.Containers[0].LivenessProbe = probe
+	}
 	if len(command) > 0 {
 		d.Spec.Template.Spec.Containers[0].Command = command
 	}
 
+	if len(args) > 0 {
+		d.Spec.Template.Spec.Containers[0].Args = args
+	}
+	if len(env) > 0 {
+		d.Spec.Template.Spec.Containers[0].Env = env
+	}
 	return d
 }
 
@@ -404,9 +413,13 @@ func (f *Framework) NewHttpbinDeployment() {
 	f.NewDeployment(HTTPBinService, "registry.k8s.io/ingress-nginx/e2e-test-httpbin@sha256:c6372ef57a775b95f18e19d4c735a9819f2e7bb4641e5e3f27287d831dfeb7e8", 80, 1)
 }
 
-// NewDeployment creates a new deployment in a particular namespace.
 func (f *Framework) NewDeployment(name, image string, port int32, replicas int32) {
-	deployment := newDeployment(name, f.Namespace, image, port, replicas, nil, nil, nil)
+	f.NewDeploymentWithOpts(name, image, port, replicas, nil, nil, nil, nil, nil, true)
+}
+
+// NewDeployment creates a new deployment in a particular namespace.
+func (f *Framework) NewDeploymentWithOpts(name, image string, port int32, replicas int32, command []string, args []string, env []corev1.EnvVar, volumeMounts []corev1.VolumeMount, volumes []corev1.Volume, setProbe bool) {
+	deployment := newDeployment(name, f.Namespace, image, port, replicas, command, args, env, volumeMounts, volumes, setProbe)
 
 	f.EnsureDeployment(deployment)
 
diff --git a/test/e2e/framework/httpexpect/request.go b/test/e2e/framework/httpexpect/request.go
index 335e3931e..d8edb42ce 100644
--- a/test/e2e/framework/httpexpect/request.go
+++ b/test/e2e/framework/httpexpect/request.go
@@ -17,8 +17,10 @@ limitations under the License.
 package httpexpect
 
 import (
+	"context"
 	"fmt"
 	"io"
+	"net"
 	"net/http"
 	"net/url"
 	"path"
@@ -71,6 +73,33 @@ func (h *HTTPRequest) DoRequest(method, rpath string) *HTTPRequest {
 	return h
 }
 
+// ForceResolve forces the test resolver to point to a specific endpoint
+func (h *HTTPRequest) ForceResolve(ip string, port uint16) *HTTPRequest {
+	addr := net.ParseIP(ip)
+	if addr == nil {
+		h.chain.fail(fmt.Sprintf("invalid ip address: %s", ip))
+		return h
+	}
+	dialer := &net.Dialer{
+		Timeout:   h.client.Timeout,
+		KeepAlive: h.client.Timeout,
+		DualStack: true,
+	}
+	resolveAddr := fmt.Sprintf("%s:%d", ip, int(port))
+
+	oldTransport, ok := h.client.Transport.(*http.Transport)
+	if !ok {
+		h.chain.fail("invalid old transport address")
+		return h
+	}
+	newTransport := oldTransport.Clone()
+	newTransport.DialContext = func(ctx context.Context, network, addr string) (net.Conn, error) {
+		return dialer.DialContext(ctx, network, resolveAddr)
+	}
+	h.client.Transport = newTransport
+	return h
+}
+
 // Expect executes the request and returns an HTTP response.
 func (h *HTTPRequest) Expect() *HTTPResponse {
 	if h.query != nil {
diff --git a/test/e2e/settings/ssl_passthrough.go b/test/e2e/settings/ssl_passthrough.go
new file mode 100644
index 000000000..77a3c990e
--- /dev/null
+++ b/test/e2e/settings/ssl_passthrough.go
@@ -0,0 +1,165 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package settings
+
+import (
+	"context"
+	"crypto/tls"
+	"fmt"
+	"net/http"
+	"strings"
+
+	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
+	appsv1 "k8s.io/api/apps/v1"
+	corev1 "k8s.io/api/core/v1"
+
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.IngressNginxDescribe("[Flag] enable-ssl-passthrough", func() {
+	f := framework.NewDefaultFramework("ssl-passthrough")
+
+	ginkgo.BeforeEach(func() {
+		err := f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
+			args := deployment.Spec.Template.Spec.Containers[0].Args
+			args = append(args, "--enable-ssl-passthrough")
+			deployment.Spec.Template.Spec.Containers[0].Args = args
+			_, err := f.KubeClientSet.AppsV1().Deployments(f.Namespace).Update(context.TODO(), deployment, metav1.UpdateOptions{})
+			return err
+		})
+		assert.Nil(ginkgo.GinkgoT(), err, "updating ingress controller deployment flags")
+
+		f.WaitForNginxServer("_",
+			func(server string) bool {
+				return strings.Contains(server, "listen 442")
+			})
+	})
+
+	ginkgo.Describe("With enable-ssl-passthrough enabled", func() {
+		ginkgo.It("should enable ssl-passthrough-proxy-port on a different port", func() {
+
+			err := f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
+				args := deployment.Spec.Template.Spec.Containers[0].Args
+				args = append(args, "--ssl-passthrough-proxy-port=1442")
+				deployment.Spec.Template.Spec.Containers[0].Args = args
+				_, err := f.KubeClientSet.AppsV1().Deployments(f.Namespace).Update(context.TODO(), deployment, metav1.UpdateOptions{})
+				return err
+			})
+			assert.Nil(ginkgo.GinkgoT(), err, "updating ingress controller deployment flags")
+
+			f.WaitForNginxServer("_",
+				func(server string) bool {
+					return strings.Contains(server, "listen 1442")
+				})
+
+			f.HTTPTestClient().
+				GET("/").
+				WithHeader("Host", "something").
+				Expect().
+				Status(http.StatusNotFound)
+		})
+
+		ginkgo.It("should pass unknown traffic to default backend and handle known traffic", func() {
+
+			host := "testpassthrough.com"
+			echoName := "echopass"
+
+			/* Even with enable-ssl-passthrough enabled, only annotated ingresses may receive the trafic */
+			annotations := map[string]string{
+				"nginx.ingress.kubernetes.io/ssl-passthrough": "true",
+			}
+
+			ingressDef := framework.NewSingleIngressWithTLS(host, "/", host, []string{host}, f.Namespace, echoName, 80, annotations)
+			tlsConfig, err := framework.CreateIngressTLSSecret(f.KubeClientSet,
+				ingressDef.Spec.TLS[0].Hosts,
+				ingressDef.Spec.TLS[0].SecretName,
+				ingressDef.Namespace)
+
+			volumeMount := []corev1.VolumeMount{
+				{
+					Name:      "certs",
+					ReadOnly:  true,
+					MountPath: "/certs",
+				},
+			}
+			volume := []corev1.Volume{
+				{
+					Name: "certs",
+					VolumeSource: corev1.VolumeSource{
+						Secret: &corev1.SecretVolumeSource{
+							SecretName: ingressDef.Spec.TLS[0].SecretName,
+						},
+					},
+				},
+			}
+			envs := []corev1.EnvVar{
+				{
+					Name:  "HTTPBUN_SSL_CERT",
+					Value: "/certs/tls.crt",
+				},
+				{
+					Name:  "HTTPBUN_SSL_KEY",
+					Value: "/certs/tls.key",
+				},
+			}
+			f.NewDeploymentWithOpts("echopass", "ghcr.io/sharat87/httpbun:latest", 80, 1, nil, nil, envs, volumeMount, volume, false)
+
+			f.EnsureIngress(ingressDef)
+
+			assert.Nil(ginkgo.GinkgoT(), err)
+			framework.WaitForTLS(f.GetURL(framework.HTTPS), tlsConfig)
+
+			f.WaitForNginxServer(host,
+				func(server string) bool {
+					return strings.Contains(server, "listen 442")
+				})
+
+			/* This one should not receive traffic as it does not contain passthrough annotation */
+			hostBad := "noannotationnopassthrough.com"
+			ingBad := f.EnsureIngress(framework.NewSingleIngressWithTLS(hostBad, "/", hostBad, []string{hostBad}, f.Namespace, echoName, 80, nil))
+			tlsConfigBad, err := framework.CreateIngressTLSSecret(f.KubeClientSet,
+				ingBad.Spec.TLS[0].Hosts,
+				ingBad.Spec.TLS[0].SecretName,
+				ingBad.Namespace)
+			assert.Nil(ginkgo.GinkgoT(), err)
+			framework.WaitForTLS(f.GetURL(framework.HTTPS), tlsConfigBad)
+
+			f.WaitForNginxServer(hostBad,
+				func(server string) bool {
+					return strings.Contains(server, "listen 442")
+				})
+
+			f.HTTPTestClientWithTLSConfig(&tls.Config{ServerName: host, InsecureSkipVerify: true}).
+				GET("/").
+				WithURL(fmt.Sprintf("https://%s:443", host)).
+				ForceResolve(f.GetNginxIP(), 443).
+				Expect().
+				Status(http.StatusOK)
+
+			f.HTTPTestClientWithTLSConfig(&tls.Config{ServerName: hostBad, InsecureSkipVerify: true}).
+				GET("/").
+				WithURL(fmt.Sprintf("https://%s:443", hostBad)).
+				ForceResolve(f.GetNginxIP(), 443).
+				Expect().
+				Status(http.StatusNotFound)
+
+		})
+	})
+})

From 2db8552a870c673f72b6d537006d4387195d398b Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 29 Dec 2022 16:35:32 -0500
Subject: [PATCH 0545/1641] Automated Release Controller 1.5.2 (#9455)

Signed-off-by: James Strong <james.strong@chainguard.dev>

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 Changelog.md                                  |    2 +
 README.md                                     |    1 +
 changelog/Changelog-1.5.2.md                  |   79 +
 charts/ingress-nginx/Chart.yaml               |   47 +-
 charts/ingress-nginx/README.md                |    8 +-
 charts/ingress-nginx/changelog.md.gotmpl      |    9 +
 .../changelog/Changelog-1.5.2.md              |   12 +
 charts/ingress-nginx/values.yaml              | 1593 ++++++++---------
 deploy/static/provider/aws/deploy.yaml        |   57 +-
 .../aws/nlb-with-tls-termination/deploy.yaml  |   57 +-
 deploy/static/provider/baremetal/deploy.yaml  |   57 +-
 deploy/static/provider/cloud/deploy.yaml      |   57 +-
 deploy/static/provider/do/deploy.yaml         |   57 +-
 deploy/static/provider/exoscale/deploy.yaml   |   57 +-
 deploy/static/provider/kind/deploy.yaml       |   57 +-
 deploy/static/provider/scw/deploy.yaml        |   57 +-
 docs/deploy/index.md                          |   20 +-
 docs/e2e-tests.md                             |  974 +++++++---
 hack/generate-e2e-suite-doc.sh                |    6 +-
 19 files changed, 1822 insertions(+), 1385 deletions(-)
 create mode 100644 changelog/Changelog-1.5.2.md
 create mode 100644 charts/ingress-nginx/changelog.md.gotmpl
 create mode 100644 charts/ingress-nginx/changelog/Changelog-1.5.2.md

diff --git a/Changelog.md b/Changelog.md
index a7b62be50..400c187f7 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -1,5 +1,7 @@
 # Changelog
 
+All New change are in [Changelog](./changelog)
+
 ### 1.5.1 
 
 * Upgrade NGINX to 1.21.6
diff --git a/README.md b/README.md
index f8c020b68..73baa8fd2 100644
--- a/README.md
+++ b/README.md
@@ -38,6 +38,7 @@ the versions listed. Ingress-Nginx versions may work on older versions but the p
 
 | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
+| v1.5.2                | 1.26, 1.25, 1.24, 1.23       | 3.17.2         | 1.21.6        |
 | v1.5.1                | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        |
 | v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      |
 | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      |
diff --git a/changelog/Changelog-1.5.2.md b/changelog/Changelog-1.5.2.md
new file mode 100644
index 000000000..8b6779e47
--- /dev/null
+++ b/changelog/Changelog-1.5.2.md
@@ -0,0 +1,79 @@
+# Changelog
+
+### 1.5.2
+Images:
+
+ * registry.k8s.io/controller:controller-v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
+ * registry.k8s.io/controller-chroot:controller-v1.5.2@sha256:84613555694f2c59a8b2551126d226c9aa648544ebf0cde1e0df942f7dbce42b
+ 
+### All Changes:
+
+* restart 1.5.2 release process (#9450)
+* Update command line arguments documentation (#9224)
+* start release 1.5.2 (#9445)
+* upgrade nginx base image (#9436)
+* test the new e2e test images (#9444)
+* avoid builds and tests for non-code changes (#9392)
+* CI updates (#9440)
+* HPA: Add `controller.autoscaling.annotations` to `values.yaml`. (#9253)
+* update the nginx run container for alpine:3.17.0 (#9430)
+* cleanup: remove ioutil for new go version (#9427)
+* start upgrade to golang 1.19.4 and alpine 3.17.0 (#9417)
+* ci: remove setup-helm step (#9404)
+* ci: remove setup-kind step (#9401)
+* Add reporter for all tests (#9395)
+* added action for issues to project (#9386)
+* doc: update NEW_CONTRIBUTOR.md (#9381)
+* feat(helm): Optionally use cert-manager instead admission patch (#9279)
+* integrated junit-reports with ghactions (#9361)
+* [user-guide configmap] fix doc for global-auth-snippet (#9372)
+* update OpenTelemetry image (#9308)
+* fix: missing CORS headers when auth fails (#9251)
+* Fix styling in canary annotation docs. (#9259)
+* resolved ginkgo deprecation message (#9365)
+* Enable profiler-address to be configured (#9311)
+* ModSecurity dependencies update to avoid Memory Leaks (#9330)
+* fix(hpa): deprecated api version, bump to v2 (#9348)
+* fix(typo): pluralize provider (#9346)
+* removed deprecation messsage for ingressClass annotation (#9357)
+* added ginkgo junit reports (#9350)
+* Fix typos found by codespell (#9353)
+* bumped ginkgo to v2.5.1 in testrunner (#9340)
+* create nsswitch-conf if missing (#9339)
+* remove the configmap related permissions (#9310)
+* remove hardcoded datasource from grafana dashboard (#9284)
+* update gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b to 3.0.0 (#9277)
+* Validate ingress path fields  (#9309)
+* added SAN to cert create command (#9295)
+* Missing controller.ingressClass (#9304)
+* OpenTelemetry static linking (#9286)
+* Fixed indentation in commented-out autoscaling (#9225)
+* run helm release on main only and when the chart/value changes only (#9290)
+* fix broken annotation yaml (#9243)
+* PDB: Add `maxUnavailable`. (#9278)
+* add containerSecurityContext to extraModules init containers (kubernetes#9016) (#9242)
+
+### Dependencies updates: 
+* Bump golang.org/x/crypto from 0.3.0 to 0.4.0 (#9397)
+* Bump github.com/onsi/ginkgo/v2 from 2.6.0 to 2.6.1 (#9432)
+* Bump github.com/onsi/ginkgo/v2 from 2.6.0 to 2.6.1 (#9421)
+* Bump github/codeql-action from 2.1.36 to 2.1.37 (#9423)
+* Bump actions/checkout from 3.1.0 to 3.2.0 (#9425)
+* Bump goreleaser/goreleaser-action from 3.2.0 to 4.1.0 (#9426)
+* Bump actions/dependency-review-action from 3.0.1 to 3.0.2 (#9424)
+* Bump ossf/scorecard-action from 2.0.6 to 2.1.0 (#9422)
+* Bump github.com/prometheus/common from 0.37.0 to 0.39.0 (#9416)
+* Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0 (#9408)
+* Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0 (#9398)
+* Bump github/codeql-action from 2.1.35 to 2.1.36 (#9400)
+* Bump actions/setup-go from 3.3.1 to 3.4.0 (#9370)
+* Bump github/codeql-action from 2.1.31 to 2.1.35 (#9369)
+* Bump google.golang.org/grpc from 1.50.1 to 1.51.0 (#9316)
+* Bump github.com/prometheus/client_golang from 1.13.1 to 1.14.0 (#9298)
+* Bump actions/dependency-review-action from 3.0.0 to 3.0.1 (#9319)
+* Bump golang.org/x/crypto from 0.1.0 to 0.3.0 (#9318)
+* Bump github.com/onsi/ginkgo/v2 from 2.4.0 to 2.5.1 (#9317)
+* Bump actions/dependency-review-action from 2.5.1 to 3.0.0 (#9301)
+* Bump k8s.io/component-base from 0.25.3 to 0.25.4 (#9300)
+ 
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.5.1...controller-controller-v1.5.2
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 461601f59..11ab03634 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,31 +1,26 @@
+annotations:
+  artifacthub.io/changes: |
+     - "ci: remove setup-helm step (#9404)"
+     - "feat(helm): Optionally use cert-manager instead admission patch (#9279)"
+     - "run helm release on main only and when the chart/value changes only (#9290)"
+     - "Update Ingress-Nginx version controller-v1.5.2"
+  artifacthub.io/prerelease: "false"
 apiVersion: v2
-name: ingress-nginx
-# When the version is modified, make sure the artifacthub.io/changes list is updated
-# Also update CHANGELOG.md
-version: 4.4.0
-appVersion: 1.5.1
+appVersion: 1.5.2
+description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
+  load balancer
+engine: gotpl
 home: https://github.com/kubernetes/ingress-nginx
-description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
 keywords:
-  - ingress
-  - nginx
-sources:
-  - https://github.com/kubernetes/ingress-nginx
+- ingress
+- nginx
+kubeVersion: '>=1.20.0-0'
 maintainers:
-  - name: rikatz
-  - name: strongjz
-  - name: tao12345666333
-engine: gotpl
-kubeVersion: ">=1.20.0-0"
-annotations:
-  # Use this annotation to indicate that this chart version is a pre-release.
-  # https://artifacthub.io/docs/topics/annotations/helm/
-  artifacthub.io/prerelease: "false"
-  # List of changes for the release in artifacthub.io
-  # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
-  artifacthub.io/changes: |
-    - Adding support for disabling liveness and readiness probes to the Helm chart
-    - add:(admission-webhooks) ability to set securityContext
-    - Updated Helm chart to use the fullname for the electionID if not specified
-    - Rename controller-wehbooks-networkpolicy.yaml
+- name: rikatz
+- name: strongjz
+- name: tao12345666333
+name: ingress-nginx
+sources:
+- https://github.com/kubernetes/ingress-nginx
+version: 4.4.1
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index af71493fe..4daff76c6 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.4.0](https://img.shields.io/badge/Version-4.4.0-informational?style=flat-square) ![AppVersion: 1.5.1](https://img.shields.io/badge/AppVersion-1.5.1-informational?style=flat-square)
+![Version: 4.4.1](https://img.shields.io/badge/Version-4.4.1-informational?style=flat-square) ![AppVersion: 1.5.2](https://img.shields.io/badge/AppVersion-1.5.2-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -332,13 +332,13 @@ Kubernetes: `>=1.20.0-0`
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629"` |  |
-| controller.image.digestChroot | string | `"sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529bad0d178fb36147345"` |  |
+| controller.image.digest | string | `"sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655"` |  |
+| controller.image.digestChroot | string | `"sha256:84613555694f2c59a8b2551126d226c9aa648544ebf0cde1e0df942f7dbce42b"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.5.1"` |  |
+| controller.image.tag | string | `"v1.5.2"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog.md.gotmpl b/charts/ingress-nginx/changelog.md.gotmpl
new file mode 100644
index 000000000..de9885670
--- /dev/null
+++ b/charts/ingress-nginx/changelog.md.gotmpl
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### {{  .NewHelmChartVersion }}
+{{ with .HelmUpdates }}
+{{ range . }}* {{ . }}
+{{ end }}{{ end }}
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-{{ .PreviousHelmChartVersion }}...helm-chart-{{ .NewHelmChartVersion }}
diff --git a/charts/ingress-nginx/changelog/Changelog-1.5.2.md b/charts/ingress-nginx/changelog/Changelog-1.5.2.md
new file mode 100644
index 000000000..5e0563858
--- /dev/null
+++ b/charts/ingress-nginx/changelog/Changelog-1.5.2.md
@@ -0,0 +1,12 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.4.1
+
+* ci: remove setup-helm step (#9404)
+* feat(helm): Optionally use cert-manager instead admission patch (#9279)
+* run helm release on main only and when the chart/value changes only (#9290)
+* Update Ingress-Nginx version controller-v1.5.2
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.4.1...helm-chart-4.4.1
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index b7089addb..e5f8922a0 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -14,222 +14,190 @@ commonLabels: {}
 # myLabel: aakkmd
 
 controller:
-  name: controller
-  image:
-    ## Keep false as default for now!
-    chroot: false
-    registry: registry.k8s.io
-    image: ingress-nginx/controller
-    ## for backwards compatibility consider setting the full image url via the repository value below
-    ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-    ## repository:
-    tag: "v1.5.1"
-    digest: sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
-    digestChroot: sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529bad0d178fb36147345
-    pullPolicy: IfNotPresent
-    # www-data -> uid 101
-    runAsUser: 101
-    allowPrivilegeEscalation: true
+    name: controller
+    image:
+        ## Keep false as default for now!
+        chroot: false
+        registry: registry.k8s.io
+        image: ingress-nginx/controller
+        ## for backwards compatibility consider setting the full image url via the repository value below
+        ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+        ## repository:
+        tag: "v1.5.2"
+        digest: sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
+        digestChroot: sha256:84613555694f2c59a8b2551126d226c9aa648544ebf0cde1e0df942f7dbce42b
+        pullPolicy: IfNotPresent
+        # www-data -> uid 101
+        runAsUser: 101
+        allowPrivilegeEscalation: true
+    # -- Use an existing PSP instead of creating one
+    existingPsp: ""
+    # -- Configures the controller container name
+    containerName: controller
+    # -- Configures the ports that the nginx-controller listens on
+    containerPort:
+        http: 80
+        https: 443
+    # -- Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/
+    config: {}
+    # -- Annotations to be added to the controller config configuration configmap.
+    configAnnotations: {}
+    # -- Will add custom headers before sending traffic to backends according to https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/custom-headers
+    proxySetHeaders: {}
+    # -- Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers
+    addHeaders: {}
+    # -- Optionally customize the pod dnsConfig.
+    dnsConfig: {}
+    # -- Optionally customize the pod hostname.
+    hostname: {}
+    # -- Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'.
+    # By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller
+    # to keep resolving names inside the k8s network, use ClusterFirstWithHostNet.
+    dnsPolicy: ClusterFirst
+    # -- Bare-metal considerations via the host network https://kubernetes.github.io/ingress-nginx/deploy/baremetal/#via-the-host-network
+    # Ingress status was blank because there is no Service exposing the NGINX Ingress controller in a configuration using the host network, the default --publish-service flag used in standard cloud setups does not apply
+    reportNodeInternalIp: false
+    # -- Process Ingress objects without ingressClass annotation/ingressClassName field
+    # Overrides value for --watch-ingress-without-class flag of the controller binary
+    # Defaults to false
+    watchIngressWithoutClass: false
+    # -- Process IngressClass per name (additionally as per spec.controller).
+    ingressClassByName: false
+    # -- This configuration defines if Ingress Controller should allow users to set
+    # their own *-snippet annotations, otherwise this is forbidden / dropped
+    # when users add those annotations.
+    # Global snippets in ConfigMap are still respected
+    allowSnippetAnnotations: true
+    # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
+    # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
+    # is merged
+    hostNetwork: false
+    ## Use host ports 80 and 443
+    ## Disabled by default
+    hostPort:
+        # -- Enable 'hostPort' or not
+        enabled: false
+        ports:
+            # -- 'hostPort' http port
+            http: 80
+            # -- 'hostPort' https port
+            https: 443
+    # -- Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader'
+    electionID: ""
+    ## This section refers to the creation of the IngressClass resource
+    ## IngressClass resources are supported since k8s >= 1.18 and required since k8s >= 1.19
+    ingressClassResource:
+        # -- Name of the ingressClass
+        name: nginx
+        # -- Is this ingressClass enabled or not
+        enabled: true
+        # -- Is this the default ingressClass for the cluster
+        default: false
+        # -- Controller-value of the controller that is processing this ingressClass
+        controllerValue: "k8s.io/ingress-nginx"
+        # -- Parameters is a link to a custom resource containing additional
+        # configuration for the controller. This is optional if the controller
+        # does not require extra parameters.
+        parameters: {}
+    # -- For backwards compatibility with ingress.class annotation, use ingressClass.
+    # Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation
+    ingressClass: nginx
+    # -- Labels to add to the pod container metadata
+    podLabels: {}
+    #  key: value
 
-  # -- Use an existing PSP instead of creating one
-  existingPsp: ""
+    # -- Security Context policies for controller pods
+    podSecurityContext: {}
+    # -- See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls
+    sysctls: {}
+    # sysctls:
+    #   "net.core.somaxconn": "8192"
 
-  # -- Configures the controller container name
-  containerName: controller
-
-  # -- Configures the ports that the nginx-controller listens on
-  containerPort:
-    http: 80
-    https: 443
-
-  # -- Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/
-  config: {}
-
-  # -- Annotations to be added to the controller config configuration configmap.
-  configAnnotations: {}
-
-  # -- Will add custom headers before sending traffic to backends according to https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/custom-headers
-  proxySetHeaders: {}
-
-  # -- Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers
-  addHeaders: {}
-
-  # -- Optionally customize the pod dnsConfig.
-  dnsConfig: {}
-
-  # -- Optionally customize the pod hostname.
-  hostname: {}
-
-  # -- Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'.
-  # By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller
-  # to keep resolving names inside the k8s network, use ClusterFirstWithHostNet.
-  dnsPolicy: ClusterFirst
-
-  # -- Bare-metal considerations via the host network https://kubernetes.github.io/ingress-nginx/deploy/baremetal/#via-the-host-network
-  # Ingress status was blank because there is no Service exposing the NGINX Ingress controller in a configuration using the host network, the default --publish-service flag used in standard cloud setups does not apply
-  reportNodeInternalIp: false
-
-  # -- Process Ingress objects without ingressClass annotation/ingressClassName field
-  # Overrides value for --watch-ingress-without-class flag of the controller binary
-  # Defaults to false
-  watchIngressWithoutClass: false
-
-  # -- Process IngressClass per name (additionally as per spec.controller).
-  ingressClassByName: false
-
-  # -- This configuration defines if Ingress Controller should allow users to set
-  # their own *-snippet annotations, otherwise this is forbidden / dropped
-  # when users add those annotations.
-  # Global snippets in ConfigMap are still respected
-  allowSnippetAnnotations: true
-
-  # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
-  # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
-  # is merged
-  hostNetwork: false
-
-  ## Use host ports 80 and 443
-  ## Disabled by default
-  hostPort:
-    # -- Enable 'hostPort' or not
-    enabled: false
-    ports:
-      # -- 'hostPort' http port
-      http: 80
-      # -- 'hostPort' https port
-      https: 443
-
-  # -- Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader'
-  electionID: ""
-
-  ## This section refers to the creation of the IngressClass resource
-  ## IngressClass resources are supported since k8s >= 1.18 and required since k8s >= 1.19
-  ingressClassResource:
-    # -- Name of the ingressClass
-    name: nginx
-    # -- Is this ingressClass enabled or not
-    enabled: true
-    # -- Is this the default ingressClass for the cluster
-    default: false
-    # -- Controller-value of the controller that is processing this ingressClass
-    controllerValue: "k8s.io/ingress-nginx"
-
-    # -- Parameters is a link to a custom resource containing additional
-    # configuration for the controller. This is optional if the controller
-    # does not require extra parameters.
-    parameters: {}
-
-  # -- For backwards compatibility with ingress.class annotation, use ingressClass.
-  # Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation
-  ingressClass: nginx
-
-  # -- Labels to add to the pod container metadata
-  podLabels: {}
-  #  key: value
-
-  # -- Security Context policies for controller pods
-  podSecurityContext: {}
-
-  # -- See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls
-  sysctls: {}
-  # sysctls:
-  #   "net.core.somaxconn": "8192"
-
-  # -- Allows customization of the source of the IP address or FQDN to report
-  # in the ingress status field. By default, it reads the information provided
-  # by the service. If disable, the status field reports the IP address of the
-  # node or nodes where an ingress controller pod is running.
-  publishService:
-    # -- Enable 'publishService' or not
-    enabled: true
-    # -- Allows overriding of the publish service to bind to
-    # Must be <namespace>/<service_name>
-    pathOverride: ""
-
-  # Limit the scope of the controller to a specific namespace
-  scope:
-    # -- Enable 'scope' or not
-    enabled: false
-    # -- Namespace to limit the controller to; defaults to $(POD_NAMESPACE)
-    namespace: ""
-    # -- When scope.enabled == false, instead of watching all namespaces, we watching namespaces whose labels
-    # only match with namespaceSelector. Format like foo=bar. Defaults to empty, means watching all namespaces.
-    namespaceSelector: ""
-
-  # -- Allows customization of the configmap / nginx-configmap namespace; defaults to $(POD_NAMESPACE)
-  configMapNamespace: ""
-
-  tcp:
-    # -- Allows customization of the tcp-services-configmap; defaults to $(POD_NAMESPACE)
+    # -- Allows customization of the source of the IP address or FQDN to report
+    # in the ingress status field. By default, it reads the information provided
+    # by the service. If disable, the status field reports the IP address of the
+    # node or nodes where an ingress controller pod is running.
+    publishService:
+        # -- Enable 'publishService' or not
+        enabled: true
+        # -- Allows overriding of the publish service to bind to
+        # Must be <namespace>/<service_name>
+        pathOverride: ""
+    # Limit the scope of the controller to a specific namespace
+    scope:
+        # -- Enable 'scope' or not
+        enabled: false
+        # -- Namespace to limit the controller to; defaults to $(POD_NAMESPACE)
+        namespace: ""
+        # -- When scope.enabled == false, instead of watching all namespaces, we watching namespaces whose labels
+        # only match with namespaceSelector. Format like foo=bar. Defaults to empty, means watching all namespaces.
+        namespaceSelector: ""
+    # -- Allows customization of the configmap / nginx-configmap namespace; defaults to $(POD_NAMESPACE)
     configMapNamespace: ""
-    # -- Annotations to be added to the tcp config configmap
+    tcp:
+        # -- Allows customization of the tcp-services-configmap; defaults to $(POD_NAMESPACE)
+        configMapNamespace: ""
+        # -- Annotations to be added to the tcp config configmap
+        annotations: {}
+    udp:
+        # -- Allows customization of the udp-services-configmap; defaults to $(POD_NAMESPACE)
+        configMapNamespace: ""
+        # -- Annotations to be added to the udp config configmap
+        annotations: {}
+    # -- Maxmind license key to download GeoLite2 Databases.
+    ## https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases
+    maxmindLicenseKey: ""
+    # -- Additional command line arguments to pass to nginx-ingress-controller
+    # E.g. to specify the default SSL certificate you can use
+    extraArgs: {}
+    ## extraArgs:
+    ##   default-ssl-certificate: "<namespace>/<secret_name>"
+
+    # -- Additional environment variables to set
+    extraEnvs: []
+    # extraEnvs:
+    #   - name: FOO
+    #     valueFrom:
+    #       secretKeyRef:
+    #         key: FOO
+    #         name: secret-resource
+
+    # -- Use a `DaemonSet` or `Deployment`
+    kind: Deployment
+    # -- Annotations to be added to the controller Deployment or DaemonSet
+    ##
     annotations: {}
+    #  keel.sh/pollSchedule: "@every 60m"
 
-  udp:
-    # -- Allows customization of the udp-services-configmap; defaults to $(POD_NAMESPACE)
-    configMapNamespace: ""
-    # -- Annotations to be added to the udp config configmap
-    annotations: {}
+    # -- Labels to be added to the controller Deployment or DaemonSet and other resources that do not have option to specify labels
+    ##
+    labels: {}
+    #  keel.sh/policy: patch
+    #  keel.sh/trigger: poll
 
-  # -- Maxmind license key to download GeoLite2 Databases.
-  ## https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases
-  maxmindLicenseKey: ""
+    # -- The update strategy to apply to the Deployment or DaemonSet
+    ##
+    updateStrategy: {}
+    #  rollingUpdate:
+    #    maxUnavailable: 1
+    #  type: RollingUpdate
 
-  # -- Additional command line arguments to pass to nginx-ingress-controller
-  # E.g. to specify the default SSL certificate you can use
-  extraArgs: {}
-  ## extraArgs:
-  ##   default-ssl-certificate: "<namespace>/<secret_name>"
+    # -- `minReadySeconds` to avoid killing pods before we are ready
+    ##
+    minReadySeconds: 0
+    # -- Node tolerations for server scheduling to nodes with taints
+    ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
+    ##
+    tolerations: []
+    #  - key: "key"
+    #    operator: "Equal|Exists"
+    #    value: "value"
+    #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
 
-  # -- Additional environment variables to set
-  extraEnvs: []
-  # extraEnvs:
-  #   - name: FOO
-  #     valueFrom:
-  #       secretKeyRef:
-  #         key: FOO
-  #         name: secret-resource
-
-  # -- Use a `DaemonSet` or `Deployment`
-  kind: Deployment
-
-  # -- Annotations to be added to the controller Deployment or DaemonSet
-  ##
-  annotations: {}
-  #  keel.sh/pollSchedule: "@every 60m"
-
-  # -- Labels to be added to the controller Deployment or DaemonSet and other resources that do not have option to specify labels
-  ##
-  labels: {}
-  #  keel.sh/policy: patch
-  #  keel.sh/trigger: poll
-
-
-  # -- The update strategy to apply to the Deployment or DaemonSet
-  ##
-  updateStrategy: {}
-  #  rollingUpdate:
-  #    maxUnavailable: 1
-  #  type: RollingUpdate
-
-  # -- `minReadySeconds` to avoid killing pods before we are ready
-  ##
-  minReadySeconds: 0
-
-
-  # -- Node tolerations for server scheduling to nodes with taints
-  ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
-  ##
-  tolerations: []
-  #  - key: "key"
-  #    operator: "Equal|Exists"
-  #    value: "value"
-  #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
-
-  # -- Affinity and anti-affinity rules for server scheduling to nodes
-  ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
-  ##
-  affinity: {}
+    # -- Affinity and anti-affinity rules for server scheduling to nodes
+    ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+    ##
+    affinity: {}
     # # An example of preferred pod anti-affinity, weight is in the range 1-100
     # podAntiAffinity:
     #   preferredDuringSchedulingIgnoredDuringExecution:
@@ -270,10 +238,10 @@ controller:
     #         - controller
     #     topologyKey: "kubernetes.io/hostname"
 
-  # -- Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
-  ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
-  ##
-  topologySpreadConstraints: []
+    # -- Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
+    ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
+    ##
+    topologySpreadConstraints: []
     # - maxSkew: 1
     #   topologyKey: topology.kubernetes.io/zone
     #   whenUnsatisfiable: DoNotSchedule
@@ -281,669 +249,605 @@ controller:
     #     matchLabels:
     #       app.kubernetes.io/instance: ingress-nginx-internal
 
-  # -- `terminationGracePeriodSeconds` to avoid killing pods before we are ready
-  ## wait up to five minutes for the drain of connections
-  ##
-  terminationGracePeriodSeconds: 300
-
-  # -- Node labels for controller pod assignment
-  ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
-  ##
-  nodeSelector:
-    kubernetes.io/os: linux
-
-  ## Liveness and readiness probe values
-  ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#container-probes
-  ##
-  ## startupProbe:
-  ##   httpGet:
-  ##     # should match container.healthCheckPath
-  ##     path: "/healthz"
-  ##     port: 10254
-  ##     scheme: HTTP
-  ##   initialDelaySeconds: 5
-  ##   periodSeconds: 5
-  ##   timeoutSeconds: 2
-  ##   successThreshold: 1
-  ##   failureThreshold: 5
-  livenessProbe:
-    httpGet:
-      # should match container.healthCheckPath
-      path: "/healthz"
-      port: 10254
-      scheme: HTTP
-    initialDelaySeconds: 10
-    periodSeconds: 10
-    timeoutSeconds: 1
-    successThreshold: 1
-    failureThreshold: 5
-  readinessProbe:
-    httpGet:
-      # should match container.healthCheckPath
-      path: "/healthz"
-      port: 10254
-      scheme: HTTP
-    initialDelaySeconds: 10
-    periodSeconds: 10
-    timeoutSeconds: 1
-    successThreshold: 1
-    failureThreshold: 3
-
-
-  # -- Path of the health check endpoint. All requests received on the port defined by
-  # the healthz-port parameter are forwarded internally to this path.
-  healthCheckPath: "/healthz"
-
-  # -- Address to bind the health check endpoint.
-  # It is better to set this option to the internal node address
-  # if the ingress nginx controller is running in the `hostNetwork: true` mode.
-  healthCheckHost: ""
-
-  # -- Annotations to be added to controller pods
-  ##
-  podAnnotations: {}
-
-  replicaCount: 1
-
-  # -- Define either 'minAvailable' or 'maxUnavailable', never both.
-  minAvailable: 1
-  # -- Define either 'minAvailable' or 'maxUnavailable', never both.
-  # maxUnavailable: 1
-
-  ## Define requests resources to avoid probe issues due to CPU utilization in busy nodes
-  ## ref: https://github.com/kubernetes/ingress-nginx/issues/4735#issuecomment-551204903
-  ## Ideally, there should be no limits.
-  ## https://engineering.indeedblog.com/blog/2019/12/cpu-throttling-regression-fix/
-  resources:
-  ##  limits:
-  ##    cpu: 100m
-  ##    memory: 90Mi
-    requests:
-      cpu: 100m
-      memory: 90Mi
-
-  # Mutually exclusive with keda autoscaling
-  autoscaling:
-    apiVersion: autoscaling/v2
-    enabled: false
-    annotations: {}
-    minReplicas: 1
-    maxReplicas: 11
-    targetCPUUtilizationPercentage: 50
-    targetMemoryUtilizationPercentage: 50
-    behavior: {}
-      # scaleDown:
-      #   stabilizationWindowSeconds: 300
-      #   policies:
-      #   - type: Pods
-      #     value: 1
-      #     periodSeconds: 180
-      # scaleUp:
-      #   stabilizationWindowSeconds: 300
-      #   policies:
-      #   - type: Pods
-      #     value: 2
-      #     periodSeconds: 60
-
-  autoscalingTemplate: []
-  # Custom or additional autoscaling metrics
-  # ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/#support-for-custom-metrics
-  # - type: Pods
-  #   pods:
-  #     metric:
-  #       name: nginx_ingress_controller_nginx_process_requests_total
-  #     target:
-  #       type: AverageValue
-  #       averageValue: 10000m
-
-  # Mutually exclusive with hpa autoscaling
-  keda:
-    apiVersion: "keda.sh/v1alpha1"
-    ## apiVersion changes with keda 1.x vs 2.x
-    ## 2.x = keda.sh/v1alpha1
-    ## 1.x = keda.k8s.io/v1alpha1
-    enabled: false
-    minReplicas: 1
-    maxReplicas: 11
-    pollingInterval: 30
-    cooldownPeriod: 300
-    restoreToOriginalReplicaCount: false
-    scaledObject:
-      annotations: {}
-      # Custom annotations for ScaledObject resource
-      #  annotations:
-      # key: value
-    triggers: []
- #     - type: prometheus
- #       metadata:
- #         serverAddress: http://<prometheus-host>:9090
- #         metricName: http_requests_total
- #         threshold: '100'
- #         query: sum(rate(http_requests_total{deployment="my-deployment"}[2m]))
-
-    behavior: {}
- #     scaleDown:
- #       stabilizationWindowSeconds: 300
- #       policies:
- #       - type: Pods
- #         value: 1
- #         periodSeconds: 180
- #     scaleUp:
- #       stabilizationWindowSeconds: 300
- #       policies:
- #       - type: Pods
- #         value: 2
- #         periodSeconds: 60
-
-  # -- Enable mimalloc as a drop-in replacement for malloc.
-  ## ref: https://github.com/microsoft/mimalloc
-  ##
-  enableMimalloc: true
-
-  ## Override NGINX template
-  customTemplate:
-    configMapName: ""
-    configMapKey: ""
-
-  service:
-    enabled: true
-
-    # -- If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were
-    # using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http
-    # It allows choosing the protocol for each backend specified in the Kubernetes service.
-    # See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244
-    # Will be ignored for Kubernetes versions older than 1.20
+    # -- `terminationGracePeriodSeconds` to avoid killing pods before we are ready
+    ## wait up to five minutes for the drain of connections
     ##
-    appProtocol: true
-
-    annotations: {}
-    labels: {}
-    # clusterIP: ""
-
-    # -- List of IP addresses at which the controller services are available
-    ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+    terminationGracePeriodSeconds: 300
+    # -- Node labels for controller pod assignment
+    ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
     ##
-    externalIPs: []
-
-    # -- Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
-    loadBalancerIP: ""
-    loadBalancerSourceRanges: []
-
-    enableHttp: true
-    enableHttps: true
-
-    ## Set external traffic policy to: "Local" to preserve source IP on providers supporting it.
-    ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
-    # externalTrafficPolicy: ""
-
-    ## Must be either "None" or "ClientIP" if set. Kubernetes will default to "None".
-    ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
-    # sessionAffinity: ""
-
-    ## Specifies the health check node port (numeric port number) for the service. If healthCheckNodePort isn’t specified,
-    ## the service controller allocates a port from your cluster’s NodePort range.
-    ## Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
-    # healthCheckNodePort: 0
-
-    # -- Represents the dual-stack-ness requested or required by this Service. Possible values are
-    # SingleStack, PreferDualStack or RequireDualStack.
-    # The ipFamilies and clusterIPs fields depend on the value of this field.
-    ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
-    ipFamilyPolicy: "SingleStack"
-
-    # -- List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically
-    # based on cluster configuration and the ipFamilyPolicy field.
-    ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
-    ipFamilies:
-      - IPv4
-
-    ports:
-      http: 80
-      https: 443
-
-    targetPorts:
-      http: http
-      https: https
-
-    type: LoadBalancer
-
-    ## type: NodePort
-    ## nodePorts:
-    ##   http: 32080
-    ##   https: 32443
-    ##   tcp:
-    ##     8080: 32808
-    nodePorts:
-      http: ""
-      https: ""
-      tcp: {}
-      udp: {}
-
-    external:
-      enabled: true
-
-    internal:
-      # -- Enables an additional internal load balancer (besides the external one).
-      enabled: false
-      # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service.
-      annotations: {}
-
-      # loadBalancerIP: ""
-
-      # -- Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.
-      loadBalancerSourceRanges: []
-
-      ## Set external traffic policy to: "Local" to preserve source IP on
-      ## providers supporting it
-      ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
-      # externalTrafficPolicy: ""
-
-  # shareProcessNamespace enables process namespace sharing within the pod.
-  # This can be used for example to signal log rotation using `kill -USR1` from a sidecar.
-  shareProcessNamespace: false
-
-  # -- Additional containers to be added to the controller pod.
-  # See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example.
-  extraContainers: []
-  #  - name: my-sidecar
-  #    image: nginx:latest
-  #  - name: lemonldap-ng-controller
-  #    image: lemonldapng/lemonldap-ng-controller:0.2.0
-  #    args:
-  #      - /lemonldap-ng-controller
-  #      - --alsologtostderr
-  #      - --configmap=$(POD_NAMESPACE)/lemonldap-ng-configuration
-  #    env:
-  #      - name: POD_NAME
-  #        valueFrom:
-  #          fieldRef:
-  #            fieldPath: metadata.name
-  #      - name: POD_NAMESPACE
-  #        valueFrom:
-  #          fieldRef:
-  #            fieldPath: metadata.namespace
-  #    volumeMounts:
-  #    - name: copy-portal-skins
-  #      mountPath: /srv/var/lib/lemonldap-ng/portal/skins
-
-  # -- Additional volumeMounts to the controller main container.
-  extraVolumeMounts: []
-  #  - name: copy-portal-skins
-  #   mountPath: /var/lib/lemonldap-ng/portal/skins
-
-  # -- Additional volumes to the controller pod.
-  extraVolumes: []
-  #  - name: copy-portal-skins
-  #    emptyDir: {}
-
-  # -- Containers, which are run before the app containers are started.
-  extraInitContainers: []
-  # - name: init-myservice
-  #   image: busybox
-  #   command: ['sh', '-c', 'until nslookup myservice; do echo waiting for myservice; sleep 2; done;']
-
-  # -- Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module
-  extraModules: []
-  #   containerSecurityContext:
-  #     allowPrivilegeEscalation: false
-  #
-  # The image must contain a `/usr/local/bin/init_module.sh` executable, which
-  # will be executed as initContainers, to move its config files within the
-  # mounted volume.
-
-  opentelemetry:
-    enabled: false
-    image: registry.k8s.io/ingress-nginx/opentelemetry:v20221114-controller-v1.5.1-6-ga66ee73c5@sha256:41076fd9fb4255677c1a3da1ac3fc41477f06eba3c7ebf37ffc8f734dad51d7c
-    containerSecurityContext:
-      allowPrivilegeEscalation: false
-
-  admissionWebhooks:
-    annotations: {}
-    # ignore-check.kube-linter.io/no-read-only-rootfs: "This deployment needs write access to root filesystem".
-
-    ## Additional annotations to the admission webhooks.
-    ## These annotations will be added to the ValidatingWebhookConfiguration and
-    ## the Jobs Spec of the admission webhooks.
-    enabled: true
-    # -- Additional environment variables to set
-    extraEnvs: []
-    # extraEnvs:
-    #   - name: FOO
-    #     valueFrom:
-    #       secretKeyRef:
-    #         key: FOO
-    #         name: secret-resource
-    # -- Admission Webhook failure policy to use
-    failurePolicy: Fail
-    # timeoutSeconds: 10
-    port: 8443
-    certificate: "/usr/local/certificates/cert"
-    key: "/usr/local/certificates/key"
-    namespaceSelector: {}
-    objectSelector: {}
-    # -- Labels to be added to admission webhooks
-    labels: {}
-
-    # -- Use an existing PSP instead of creating one
-    existingPsp: ""
-    networkPolicyEnabled: false
-
-    service:
-      annotations: {}
-      # clusterIP: ""
-      externalIPs: []
-      # loadBalancerIP: ""
-      loadBalancerSourceRanges: []
-      servicePort: 443
-      type: ClusterIP
-
-    createSecretJob:
-      securityContext:
-        allowPrivilegeEscalation: false
-      resources: {}
-        # limits:
-        #   cpu: 10m
-        #   memory: 20Mi
-        # requests:
-        #   cpu: 10m
-        #   memory: 20Mi
-
-    patchWebhookJob:
-      securityContext:
-        allowPrivilegeEscalation: false
-      resources: {}
-
-    patch:
-      enabled: true
-      image:
-        registry: registry.k8s.io
-        image: ingress-nginx/kube-webhook-certgen
-        ## for backwards compatibility consider setting the full image url via the repository value below
-        ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-        ## repository:
-        tag: v20220916-gd32f8c343
-        digest: sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
-        pullPolicy: IfNotPresent
-      # -- Provide a priority class name to the webhook patching job
-      ##
-      priorityClassName: ""
-      podAnnotations: {}
-      nodeSelector:
+    nodeSelector:
         kubernetes.io/os: linux
-      tolerations: []
-      # -- Labels to be added to patch job resources
-      labels: {}
-      securityContext:
-        runAsNonRoot: true
-        runAsUser: 2000
-        fsGroup: 2000
+    ## Liveness and readiness probe values
+    ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#container-probes
+    ##
+    ## startupProbe:
+    ##   httpGet:
+    ##     # should match container.healthCheckPath
+    ##     path: "/healthz"
+    ##     port: 10254
+    ##     scheme: HTTP
+    ##   initialDelaySeconds: 5
+    ##   periodSeconds: 5
+    ##   timeoutSeconds: 2
+    ##   successThreshold: 1
+    ##   failureThreshold: 5
+    livenessProbe:
+        httpGet:
+            # should match container.healthCheckPath
+            path: "/healthz"
+            port: 10254
+            scheme: HTTP
+        initialDelaySeconds: 10
+        periodSeconds: 10
+        timeoutSeconds: 1
+        successThreshold: 1
+        failureThreshold: 5
+    readinessProbe:
+        httpGet:
+            # should match container.healthCheckPath
+            path: "/healthz"
+            port: 10254
+            scheme: HTTP
+        initialDelaySeconds: 10
+        periodSeconds: 10
+        timeoutSeconds: 1
+        successThreshold: 1
+        failureThreshold: 3
+    # -- Path of the health check endpoint. All requests received on the port defined by
+    # the healthz-port parameter are forwarded internally to this path.
+    healthCheckPath: "/healthz"
+    # -- Address to bind the health check endpoint.
+    # It is better to set this option to the internal node address
+    # if the ingress nginx controller is running in the `hostNetwork: true` mode.
+    healthCheckHost: ""
+    # -- Annotations to be added to controller pods
+    ##
+    podAnnotations: {}
+    replicaCount: 1
+    # -- Define either 'minAvailable' or 'maxUnavailable', never both.
+    minAvailable: 1
+    # -- Define either 'minAvailable' or 'maxUnavailable', never both.
+    # maxUnavailable: 1
 
-    # Use certmanager to generate webhook certs
-    certManager:
-      enabled: false
-      # self-signed root certificate
-      rootCert:
-        duration: ""  # default to be 5y
-      admissionCert:
-        duration: ""  # default to be 1y
-      # issuerRef:
-      #   name: "issuer"
-      #   kind: "ClusterIssuer"
+    ## Define requests resources to avoid probe issues due to CPU utilization in busy nodes
+    ## ref: https://github.com/kubernetes/ingress-nginx/issues/4735#issuecomment-551204903
+    ## Ideally, there should be no limits.
+    ## https://engineering.indeedblog.com/blog/2019/12/cpu-throttling-regression-fix/
+    resources:
+        ##  limits:
+        ##    cpu: 100m
+        ##    memory: 90Mi
+        requests:
+            cpu: 100m
+            memory: 90Mi
+    # Mutually exclusive with keda autoscaling
+    autoscaling:
+        apiVersion: autoscaling/v2
+        enabled: false
+        annotations: {}
+        minReplicas: 1
+        maxReplicas: 11
+        targetCPUUtilizationPercentage: 50
+        targetMemoryUtilizationPercentage: 50
+        behavior: {}
+        # scaleDown:
+        #   stabilizationWindowSeconds: 300
+        #   policies:
+        #   - type: Pods
+        #     value: 1
+        #     periodSeconds: 180
+        # scaleUp:
+        #   stabilizationWindowSeconds: 300
+        #   policies:
+        #   - type: Pods
+        #     value: 2
+        #     periodSeconds: 60
+    autoscalingTemplate: []
+    # Custom or additional autoscaling metrics
+    # ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/#support-for-custom-metrics
+    # - type: Pods
+    #   pods:
+    #     metric:
+    #       name: nginx_ingress_controller_nginx_process_requests_total
+    #     target:
+    #       type: AverageValue
+    #       averageValue: 10000m
 
-  metrics:
-    port: 10254
-    portName: metrics
-    # if this port is changed, change healthz-port: in extraArgs: accordingly
-    enabled: false
+    # Mutually exclusive with hpa autoscaling
+    keda:
+        apiVersion: "keda.sh/v1alpha1"
+        ## apiVersion changes with keda 1.x vs 2.x
+        ## 2.x = keda.sh/v1alpha1
+        ## 1.x = keda.k8s.io/v1alpha1
+        enabled: false
+        minReplicas: 1
+        maxReplicas: 11
+        pollingInterval: 30
+        cooldownPeriod: 300
+        restoreToOriginalReplicaCount: false
+        scaledObject:
+            annotations: {}
+            # Custom annotations for ScaledObject resource
+            #  annotations:
+            # key: value
+        triggers: []
+        #     - type: prometheus
+        #       metadata:
+        #         serverAddress: http://<prometheus-host>:9090
+        #         metricName: http_requests_total
+        #         threshold: '100'
+        #         query: sum(rate(http_requests_total{deployment="my-deployment"}[2m]))
 
+        behavior: {}
+    #     scaleDown:
+    #       stabilizationWindowSeconds: 300
+    #       policies:
+    #       - type: Pods
+    #         value: 1
+    #         periodSeconds: 180
+    #     scaleUp:
+    #       stabilizationWindowSeconds: 300
+    #       policies:
+    #       - type: Pods
+    #         value: 2
+    #         periodSeconds: 60
+
+    # -- Enable mimalloc as a drop-in replacement for malloc.
+    ## ref: https://github.com/microsoft/mimalloc
+    ##
+    enableMimalloc: true
+    ## Override NGINX template
+    customTemplate:
+        configMapName: ""
+        configMapKey: ""
     service:
-      annotations: {}
-      # prometheus.io/scrape: "true"
-      # prometheus.io/port: "10254"
+        enabled: true
+        # -- If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were
+        # using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http
+        # It allows choosing the protocol for each backend specified in the Kubernetes service.
+        # See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244
+        # Will be ignored for Kubernetes versions older than 1.20
+        ##
+        appProtocol: true
+        annotations: {}
+        labels: {}
+        # clusterIP: ""
 
-      # clusterIP: ""
+        # -- List of IP addresses at which the controller services are available
+        ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+        ##
+        externalIPs: []
+        # -- Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
+        loadBalancerIP: ""
+        loadBalancerSourceRanges: []
+        enableHttp: true
+        enableHttps: true
+        ## Set external traffic policy to: "Local" to preserve source IP on providers supporting it.
+        ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
+        # externalTrafficPolicy: ""
 
-      # -- List of IP addresses at which the stats-exporter service is available
-      ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
-      ##
-      externalIPs: []
+        ## Must be either "None" or "ClientIP" if set. Kubernetes will default to "None".
+        ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
+        # sessionAffinity: ""
 
-      # loadBalancerIP: ""
-      loadBalancerSourceRanges: []
-      servicePort: 10254
-      type: ClusterIP
-      # externalTrafficPolicy: ""
-      # nodePort: ""
+        ## Specifies the health check node port (numeric port number) for the service. If healthCheckNodePort isn’t specified,
+        ## the service controller allocates a port from your cluster’s NodePort range.
+        ## Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
+        # healthCheckNodePort: 0
 
-    serviceMonitor:
-      enabled: false
-      additionalLabels: {}
-      ## The label to use to retrieve the job name from.
-      ## jobLabel: "app.kubernetes.io/name"
-      namespace: ""
-      namespaceSelector: {}
-      ## Default: scrape .Release.Namespace only
-      ## To scrape all, use the following:
-      ## namespaceSelector:
-      ##   any: true
-      scrapeInterval: 30s
-      # honorLabels: true
-      targetLabels: []
-      relabelings: []
-      metricRelabelings: []
+        # -- Represents the dual-stack-ness requested or required by this Service. Possible values are
+        # SingleStack, PreferDualStack or RequireDualStack.
+        # The ipFamilies and clusterIPs fields depend on the value of this field.
+        ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
+        ipFamilyPolicy: "SingleStack"
+        # -- List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically
+        # based on cluster configuration and the ipFamilyPolicy field.
+        ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
+        ipFamilies:
+            - IPv4
+        ports:
+            http: 80
+            https: 443
+        targetPorts:
+            http: http
+            https: https
+        type: LoadBalancer
+        ## type: NodePort
+        ## nodePorts:
+        ##   http: 32080
+        ##   https: 32443
+        ##   tcp:
+        ##     8080: 32808
+        nodePorts:
+            http: ""
+            https: ""
+            tcp: {}
+            udp: {}
+        external:
+            enabled: true
+        internal:
+            # -- Enables an additional internal load balancer (besides the external one).
+            enabled: false
+            # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service.
+            annotations: {}
+            # loadBalancerIP: ""
 
-    prometheusRule:
-      enabled: false
-      additionalLabels: {}
-      # namespace: ""
-      rules: []
-        # # These are just examples rules, please adapt them to your needs
-        # - alert: NGINXConfigFailed
-        #   expr: count(nginx_ingress_controller_config_last_reload_successful == 0) > 0
-        #   for: 1s
-        #   labels:
-        #     severity: critical
-        #   annotations:
-        #     description: bad ingress config - nginx config test failed
-        #     summary: uninstall the latest ingress changes to allow config reloads to resume
-        # - alert: NGINXCertificateExpiry
-        #   expr: (avg(nginx_ingress_controller_ssl_expire_time_seconds) by (host) - time()) < 604800
-        #   for: 1s
-        #   labels:
-        #     severity: critical
-        #   annotations:
-        #     description: ssl certificate(s) will expire in less then a week
-        #     summary: renew expiring certificates to avoid downtime
-        # - alert: NGINXTooMany500s
-        #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"5.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
-        #   for: 1m
-        #   labels:
-        #     severity: warning
-        #   annotations:
-        #     description: Too many 5XXs
-        #     summary: More than 5% of all requests returned 5XX, this requires your attention
-        # - alert: NGINXTooMany400s
-        #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"4.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
-        #   for: 1m
-        #   labels:
-        #     severity: warning
-        #   annotations:
-        #     description: Too many 4XXs
-        #     summary: More than 5% of all requests returned 4XX, this requires your attention
+            # -- Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.
+            loadBalancerSourceRanges: []
+            ## Set external traffic policy to: "Local" to preserve source IP on
+            ## providers supporting it
+            ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
+            # externalTrafficPolicy: ""
+    # shareProcessNamespace enables process namespace sharing within the pod.
+    # This can be used for example to signal log rotation using `kill -USR1` from a sidecar.
+    shareProcessNamespace: false
+    # -- Additional containers to be added to the controller pod.
+    # See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example.
+    extraContainers: []
+    #  - name: my-sidecar
+    #    image: nginx:latest
+    #  - name: lemonldap-ng-controller
+    #    image: lemonldapng/lemonldap-ng-controller:0.2.0
+    #    args:
+    #      - /lemonldap-ng-controller
+    #      - --alsologtostderr
+    #      - --configmap=$(POD_NAMESPACE)/lemonldap-ng-configuration
+    #    env:
+    #      - name: POD_NAME
+    #        valueFrom:
+    #          fieldRef:
+    #            fieldPath: metadata.name
+    #      - name: POD_NAMESPACE
+    #        valueFrom:
+    #          fieldRef:
+    #            fieldPath: metadata.namespace
+    #    volumeMounts:
+    #    - name: copy-portal-skins
+    #      mountPath: /srv/var/lib/lemonldap-ng/portal/skins
 
-  # -- Improve connection draining when ingress controller pod is deleted using a lifecycle hook:
-  # With this new hook, we increased the default terminationGracePeriodSeconds from 30 seconds
-  # to 300, allowing the draining of connections up to five minutes.
-  # If the active connections end before that, the pod will terminate gracefully at that time.
-  # To effectively take advantage of this feature, the Configmap feature
-  # worker-shutdown-timeout new value is 240s instead of 10s.
-  ##
-  lifecycle:
-    preStop:
-      exec:
-        command:
-          - /wait-shutdown
+    # -- Additional volumeMounts to the controller main container.
+    extraVolumeMounts: []
+    #  - name: copy-portal-skins
+    #   mountPath: /var/lib/lemonldap-ng/portal/skins
 
-  priorityClassName: ""
+    # -- Additional volumes to the controller pod.
+    extraVolumes: []
+    #  - name: copy-portal-skins
+    #    emptyDir: {}
 
+    # -- Containers, which are run before the app containers are started.
+    extraInitContainers: []
+    # - name: init-myservice
+    #   image: busybox
+    #   command: ['sh', '-c', 'until nslookup myservice; do echo waiting for myservice; sleep 2; done;']
+
+    # -- Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module
+    extraModules: []
+    #   containerSecurityContext:
+    #     allowPrivilegeEscalation: false
+    #
+    # The image must contain a `/usr/local/bin/init_module.sh` executable, which
+    # will be executed as initContainers, to move its config files within the
+    # mounted volume.
+
+    opentelemetry:
+        enabled: false
+        image: registry.k8s.io/ingress-nginx/opentelemetry:v20221114-controller-v1.5.1-6-ga66ee73c5@sha256:41076fd9fb4255677c1a3da1ac3fc41477f06eba3c7ebf37ffc8f734dad51d7c
+        containerSecurityContext:
+            allowPrivilegeEscalation: false
+    admissionWebhooks:
+        annotations: {}
+        # ignore-check.kube-linter.io/no-read-only-rootfs: "This deployment needs write access to root filesystem".
+
+        ## Additional annotations to the admission webhooks.
+        ## These annotations will be added to the ValidatingWebhookConfiguration and
+        ## the Jobs Spec of the admission webhooks.
+        enabled: true
+        # -- Additional environment variables to set
+        extraEnvs: []
+        # extraEnvs:
+        #   - name: FOO
+        #     valueFrom:
+        #       secretKeyRef:
+        #         key: FOO
+        #         name: secret-resource
+        # -- Admission Webhook failure policy to use
+        failurePolicy: Fail
+        # timeoutSeconds: 10
+        port: 8443
+        certificate: "/usr/local/certificates/cert"
+        key: "/usr/local/certificates/key"
+        namespaceSelector: {}
+        objectSelector: {}
+        # -- Labels to be added to admission webhooks
+        labels: {}
+        # -- Use an existing PSP instead of creating one
+        existingPsp: ""
+        networkPolicyEnabled: false
+        service:
+            annotations: {}
+            # clusterIP: ""
+            externalIPs: []
+            # loadBalancerIP: ""
+            loadBalancerSourceRanges: []
+            servicePort: 443
+            type: ClusterIP
+        createSecretJob:
+            securityContext:
+                allowPrivilegeEscalation: false
+            resources: {}
+            # limits:
+            #   cpu: 10m
+            #   memory: 20Mi
+            # requests:
+            #   cpu: 10m
+            #   memory: 20Mi
+        patchWebhookJob:
+            securityContext:
+                allowPrivilegeEscalation: false
+            resources: {}
+        patch:
+            enabled: true
+            image:
+                registry: registry.k8s.io
+                image: ingress-nginx/kube-webhook-certgen
+                ## for backwards compatibility consider setting the full image url via the repository value below
+                ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+                ## repository:
+                tag: v20220916-gd32f8c343
+                digest: sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+                pullPolicy: IfNotPresent
+            # -- Provide a priority class name to the webhook patching job
+            ##
+            priorityClassName: ""
+            podAnnotations: {}
+            nodeSelector:
+                kubernetes.io/os: linux
+            tolerations: []
+            # -- Labels to be added to patch job resources
+            labels: {}
+            securityContext:
+                runAsNonRoot: true
+                runAsUser: 2000
+                fsGroup: 2000
+        # Use certmanager to generate webhook certs
+        certManager:
+            enabled: false
+            # self-signed root certificate
+            rootCert:
+                # default to be 5y
+                duration: ""
+            admissionCert:
+                # default to be 1y
+                duration: ""
+                # issuerRef:
+                #   name: "issuer"
+                #   kind: "ClusterIssuer"
+    metrics:
+        port: 10254
+        portName: metrics
+        # if this port is changed, change healthz-port: in extraArgs: accordingly
+        enabled: false
+        service:
+            annotations: {}
+            # prometheus.io/scrape: "true"
+            # prometheus.io/port: "10254"
+
+            # clusterIP: ""
+
+            # -- List of IP addresses at which the stats-exporter service is available
+            ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+            ##
+            externalIPs: []
+            # loadBalancerIP: ""
+            loadBalancerSourceRanges: []
+            servicePort: 10254
+            type: ClusterIP
+            # externalTrafficPolicy: ""
+            # nodePort: ""
+        serviceMonitor:
+            enabled: false
+            additionalLabels: {}
+            ## The label to use to retrieve the job name from.
+            ## jobLabel: "app.kubernetes.io/name"
+            namespace: ""
+            namespaceSelector: {}
+            ## Default: scrape .Release.Namespace only
+            ## To scrape all, use the following:
+            ## namespaceSelector:
+            ##   any: true
+            scrapeInterval: 30s
+            # honorLabels: true
+            targetLabels: []
+            relabelings: []
+            metricRelabelings: []
+        prometheusRule:
+            enabled: false
+            additionalLabels: {}
+            # namespace: ""
+            rules: []
+            # # These are just examples rules, please adapt them to your needs
+            # - alert: NGINXConfigFailed
+            #   expr: count(nginx_ingress_controller_config_last_reload_successful == 0) > 0
+            #   for: 1s
+            #   labels:
+            #     severity: critical
+            #   annotations:
+            #     description: bad ingress config - nginx config test failed
+            #     summary: uninstall the latest ingress changes to allow config reloads to resume
+            # - alert: NGINXCertificateExpiry
+            #   expr: (avg(nginx_ingress_controller_ssl_expire_time_seconds) by (host) - time()) < 604800
+            #   for: 1s
+            #   labels:
+            #     severity: critical
+            #   annotations:
+            #     description: ssl certificate(s) will expire in less then a week
+            #     summary: renew expiring certificates to avoid downtime
+            # - alert: NGINXTooMany500s
+            #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"5.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
+            #   for: 1m
+            #   labels:
+            #     severity: warning
+            #   annotations:
+            #     description: Too many 5XXs
+            #     summary: More than 5% of all requests returned 5XX, this requires your attention
+            # - alert: NGINXTooMany400s
+            #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"4.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
+            #   for: 1m
+            #   labels:
+            #     severity: warning
+            #   annotations:
+            #     description: Too many 4XXs
+            #     summary: More than 5% of all requests returned 4XX, this requires your attention
+    # -- Improve connection draining when ingress controller pod is deleted using a lifecycle hook:
+    # With this new hook, we increased the default terminationGracePeriodSeconds from 30 seconds
+    # to 300, allowing the draining of connections up to five minutes.
+    # If the active connections end before that, the pod will terminate gracefully at that time.
+    # To effectively take advantage of this feature, the Configmap feature
+    # worker-shutdown-timeout new value is 240s instead of 10s.
+    ##
+    lifecycle:
+        preStop:
+            exec:
+                command:
+                    - /wait-shutdown
+    priorityClassName: ""
 # -- Rollback limit
 ##
 revisionHistoryLimit: 10
-
 ## Default 404 backend
 ##
 defaultBackend:
-  ##
-  enabled: false
-
-  name: defaultbackend
-  image:
-    registry: registry.k8s.io
-    image: defaultbackend-amd64
-    ## for backwards compatibility consider setting the full image url via the repository value below
-    ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-    ## repository:
-    tag: "1.5"
-    pullPolicy: IfNotPresent
-    # nobody user -> uid 65534
-    runAsUser: 65534
-    runAsNonRoot: true
-    readOnlyRootFilesystem: true
-    allowPrivilegeEscalation: false
-
-  # -- Use an existing PSP instead of creating one
-  existingPsp: ""
-
-  extraArgs: {}
-
-  serviceAccount:
-    create: true
-    name: ""
-    automountServiceAccountToken: true
-  # -- Additional environment variables to set for defaultBackend pods
-  extraEnvs: []
-
-  port: 8080
-
-  ## Readiness and liveness probes for default backend
-  ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/
-  ##
-  livenessProbe:
-    failureThreshold: 3
-    initialDelaySeconds: 30
-    periodSeconds: 10
-    successThreshold: 1
-    timeoutSeconds: 5
-  readinessProbe:
-    failureThreshold: 6
-    initialDelaySeconds: 0
-    periodSeconds: 5
-    successThreshold: 1
-    timeoutSeconds: 5
-
-  # -- Node tolerations for server scheduling to nodes with taints
-  ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
-  ##
-  tolerations: []
-  #  - key: "key"
-  #    operator: "Equal|Exists"
-  #    value: "value"
-  #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
-
-  affinity: {}
-
-  # -- Security Context policies for controller pods
-  # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
-  # notes on enabling and using sysctls
-  ##
-  podSecurityContext: {}
-
-  # -- Security Context policies for controller main container.
-  # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
-  # notes on enabling and using sysctls
-  ##
-  containerSecurityContext: {}
-
-  # -- Labels to add to the pod container metadata
-  podLabels: {}
-  #  key: value
-
-  # -- Node labels for default backend pod assignment
-  ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
-  ##
-  nodeSelector:
-    kubernetes.io/os: linux
-
-  # -- Annotations to be added to default backend pods
-  ##
-  podAnnotations: {}
-
-  replicaCount: 1
-
-  minAvailable: 1
-
-  resources: {}
-  # limits:
-  #   cpu: 10m
-  #   memory: 20Mi
-  # requests:
-  #   cpu: 10m
-  #   memory: 20Mi
-
-  extraVolumeMounts: []
-  ## Additional volumeMounts to the default backend container.
-  #  - name: copy-portal-skins
-  #   mountPath: /var/lib/lemonldap-ng/portal/skins
-
-  extraVolumes: []
-  ## Additional volumes to the default backend pod.
-  #  - name: copy-portal-skins
-  #    emptyDir: {}
-
-  autoscaling:
-    annotations: {}
-    enabled: false
-    minReplicas: 1
-    maxReplicas: 2
-    targetCPUUtilizationPercentage: 50
-    targetMemoryUtilizationPercentage: 50
-
-  service:
-    annotations: {}
-
-    # clusterIP: ""
-
-    # -- List of IP addresses at which the default backend service is available
-    ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
     ##
-    externalIPs: []
+    enabled: false
+    name: defaultbackend
+    image:
+        registry: registry.k8s.io
+        image: defaultbackend-amd64
+        ## for backwards compatibility consider setting the full image url via the repository value below
+        ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+        ## repository:
+        tag: "1.5"
+        pullPolicy: IfNotPresent
+        # nobody user -> uid 65534
+        runAsUser: 65534
+        runAsNonRoot: true
+        readOnlyRootFilesystem: true
+        allowPrivilegeEscalation: false
+    # -- Use an existing PSP instead of creating one
+    existingPsp: ""
+    extraArgs: {}
+    serviceAccount:
+        create: true
+        name: ""
+        automountServiceAccountToken: true
+    # -- Additional environment variables to set for defaultBackend pods
+    extraEnvs: []
+    port: 8080
+    ## Readiness and liveness probes for default backend
+    ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/
+    ##
+    livenessProbe:
+        failureThreshold: 3
+        initialDelaySeconds: 30
+        periodSeconds: 10
+        successThreshold: 1
+        timeoutSeconds: 5
+    readinessProbe:
+        failureThreshold: 6
+        initialDelaySeconds: 0
+        periodSeconds: 5
+        successThreshold: 1
+        timeoutSeconds: 5
+    # -- Node tolerations for server scheduling to nodes with taints
+    ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
+    ##
+    tolerations: []
+    #  - key: "key"
+    #    operator: "Equal|Exists"
+    #    value: "value"
+    #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
 
-    # loadBalancerIP: ""
-    loadBalancerSourceRanges: []
-    servicePort: 80
-    type: ClusterIP
+    affinity: {}
+    # -- Security Context policies for controller pods
+    # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
+    # notes on enabling and using sysctls
+    ##
+    podSecurityContext: {}
+    # -- Security Context policies for controller main container.
+    # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
+    # notes on enabling and using sysctls
+    ##
+    containerSecurityContext: {}
+    # -- Labels to add to the pod container metadata
+    podLabels: {}
+    #  key: value
 
-  priorityClassName: ""
-  # -- Labels to be added to the default backend resources
-  labels: {}
+    # -- Node labels for default backend pod assignment
+    ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
+    ##
+    nodeSelector:
+        kubernetes.io/os: linux
+    # -- Annotations to be added to default backend pods
+    ##
+    podAnnotations: {}
+    replicaCount: 1
+    minAvailable: 1
+    resources: {}
+    # limits:
+    #   cpu: 10m
+    #   memory: 20Mi
+    # requests:
+    #   cpu: 10m
+    #   memory: 20Mi
 
+    extraVolumeMounts: []
+    ## Additional volumeMounts to the default backend container.
+    #  - name: copy-portal-skins
+    #   mountPath: /var/lib/lemonldap-ng/portal/skins
+
+    extraVolumes: []
+    ## Additional volumes to the default backend pod.
+    #  - name: copy-portal-skins
+    #    emptyDir: {}
+
+    autoscaling:
+        annotations: {}
+        enabled: false
+        minReplicas: 1
+        maxReplicas: 2
+        targetCPUUtilizationPercentage: 50
+        targetMemoryUtilizationPercentage: 50
+    service:
+        annotations: {}
+        # clusterIP: ""
+
+        # -- List of IP addresses at which the default backend service is available
+        ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+        ##
+        externalIPs: []
+        # loadBalancerIP: ""
+        loadBalancerSourceRanges: []
+        servicePort: 80
+        type: ClusterIP
+    priorityClassName: ""
+    # -- Labels to be added to the default backend resources
+    labels: {}
 ## Enable RBAC as per https://github.com/kubernetes/ingress-nginx/blob/main/docs/deploy/rbac.md and https://github.com/kubernetes/ingress-nginx/issues/266
 rbac:
-  create: true
-  scope: false
-
+    create: true
+    scope: false
 ## If true, create & use Pod Security Policy resources
 ## https://kubernetes.io/docs/concepts/policy/pod-security-policy/
 podSecurityPolicy:
-  enabled: false
-
+    enabled: false
 serviceAccount:
-  create: true
-  name: ""
-  automountServiceAccountToken: true
-  # -- Annotations for the controller service account
-  annotations: {}
-
+    create: true
+    name: ""
+    automountServiceAccountToken: true
+    # -- Annotations for the controller service account
+    annotations: {}
 # -- Optional array of imagePullSecrets containing private registry credentials
 ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
 imagePullSecrets: []
@@ -964,7 +868,6 @@ udp: {}
 # -- Prefix for TCP and UDP ports names in ingress controller service
 ## Some cloud providers, like Yandex Cloud may have a requirements for a port name regex to support cloud load balancer integration
 portNamePrefix: ""
-
 # -- (string) A base64-encoded Diffie-Hellman parameter.
 # This can be generated with: `openssl dhparam 4096 2> /dev/null | base64`
 ## Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index fbdf9486a..54d315b50 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -359,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -392,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -455,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -527,7 +512,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -538,7 +523,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -574,7 +559,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +570,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -623,7 +608,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -636,7 +621,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 73ec24286..819de9079 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -350,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -368,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -401,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -424,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -464,7 +449,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -539,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -550,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -586,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -597,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -635,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -648,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 9e6e905bb..73aec6dc9 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -387,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -410,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -449,7 +434,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,7 +506,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -532,7 +517,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -568,7 +553,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -579,7 +564,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -617,7 +602,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -630,7 +615,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index dd986a55d..19455ed27 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -388,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -411,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -451,7 +436,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +508,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +519,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -570,7 +555,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,7 +566,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -619,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -632,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 64e0366b4..3c4a022c3 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -344,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -358,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -414,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -454,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,7 +511,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -537,7 +522,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -573,7 +558,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +569,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -622,7 +607,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index d6a40aed9..084fcd897 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -364,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -397,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -420,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -460,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -532,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -543,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -579,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -590,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -628,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -641,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 62ead9e34..355ca8054 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -387,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -410,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -455,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -537,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -548,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -584,7 +569,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -595,7 +580,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -633,7 +618,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -646,7 +631,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index d52f01489..ff8b820b3 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -344,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -358,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -414,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -454,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,7 +511,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -537,7 +522,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -573,7 +558,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +569,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.5.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -622,7 +607,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.5.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 29495b5c0..71a27b15f 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -62,7 +62,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -225,7 +225,7 @@ In AWS, we use a Network load balancer (NLB) to expose the NGINX Ingress control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -233,10 +233,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -282,7 +282,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -299,7 +299,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -307,7 +307,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -315,7 +315,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -330,7 +330,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -357,7 +357,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index d5aa6cc16..f943a96a6 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -7,11 +7,651 @@ Do not try to edit it manually.
 
 
 
+### [[Serial] admission controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L35)
+
+- [reject ingress with global-rate-limit annotations when memcached is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L48)
+- [should not allow overlaps of host and paths without canary annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L75)
+- [should allow overlaps of host and paths with canary annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L92)
+- [should block ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L113)
+- [should return an error if there is an error validating the ingress definition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L130)
+- [should return an error if there is an invalid value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L141)
+- [should return an error if there is a forbidden value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L155)
+- [should not return an error if the Ingress V1 definition is valid with Ingress Class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L169)
+- [should not return an error if the Ingress V1 definition is valid with IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L185)
+- [should return an error if the Ingress V1 definition contains invalid annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L201)
+- [should not return an error for an invalid Ingress when it has unknown class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L212)
+
+### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L35)
+
+- [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L42)
+- [should change cookie name on ingress definition change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L64)
+- [should set the path to /something on the generated cookie](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L99)
+- [does not set the path to / on the generated cookie if there's more than one rule referring to the same backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L121)
+- [should set cookie with expires](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L194)
+- [should set cookie with domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L225)
+- [should not set cookie without domain annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L248)
+- [should work with use-regex annotation and session-cookie-path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L270)
+- [should warn user when use-regex is true and session-cookie-path is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L294)
+- [should not set affinity across all server locations when using separate ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L320)
+- [should set sticky cookie without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L352)
+- [should work with server-alias annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L372)
+- [should set secure in cookie with provided true annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L412)
+- [should not set secure in cookie with provided false annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L435)
+- [should set secure in cookie with provided false annotation on https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L458)
+
+### [affinitymode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L31)
+
+- [Balanced affinity mode should balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L34)
+- [Check persistent affinity mode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L67)
+
+### [server-alias](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L29)
+
+- [should return status code 200 for host 'foo' and 404 for 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L36)
+- [should return status code 200 for host 'foo' and 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L62)
+- [should return status code 200 for hosts defined in two ingresses, different path with one alias](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L87)
+
+### [app-root](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L28)
+
+- [should redirect to /foo](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L35)
+
+### [auth-tls-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L29)
+
+- [should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L36)
+- [should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L84)
+- [should 302 redirect to error page instead of 400 when auth-tls-error-page is set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L114)
+- [should pass URL-encoded certificate to upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L161)
+- [should validate auth-tls-verify-client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L206)
+- [should return 403 using auth-tls-match-cn with no matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L266)
+- [should return 200 using auth-tls-match-cn with matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L295)
+- [should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L324)
+
+### [backend-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L27)
+
+- [should set backend protocol to https:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L34)
+- [should set backend protocol to $scheme:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L49)
+- [should set backend protocol to grpc:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L64)
+- [should set backend protocol to grpcs:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L79)
+- [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L94)
+- [should set backend protocol to '' and use ajp_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L109)
+
+### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
+
+- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L48)
+- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L80)
+- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L107)
+- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L161)
+- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L206)
+- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L250)
+- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L307)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L372)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L426)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L490)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L532)
+- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L566)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L604)
+- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L643)
+- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L705)
+- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L743)
+- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L775)
+- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L808)
+- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L836)
+- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L864)
+- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L888)
+- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L916)
+- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L973)
+- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1031)
+
+### [client-body-buffer-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L28)
+
+- [should set client_body_buffer_size to 1000](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L35)
+- [should set client_body_buffer_size to 1K](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L57)
+- [should set client_body_buffer_size to 1k](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L79)
+- [should set client_body_buffer_size to 1m](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L101)
+- [should set client_body_buffer_size to 1M](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L123)
+- [should not set client_body_buffer_size to invalid 1b](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L145)
+
+### [connection-proxy-header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L29)
+
+- [set connection header to keep-alive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L36)
+
+### [cors-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L28)
+
+- [should enable cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L35)
+- [should set cors methods to only allow POST, GET](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L62)
+- [should set cors max-age](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L78)
+- [should disable cors allow credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L94)
+- [should allow origin for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L110)
+- [should allow headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L137)
+- [should expose headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L153)
+- [should allow - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L169)
+- [should not allow - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L196)
+- [should allow correct origins - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L216)
+- [should not break functionality](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L267)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L291)
+- [should not break functionality with extra domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L314)
+- [should not match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L338)
+- [should allow - single origin with required port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L358)
+- [should not allow - single origin with port and origin without port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L386)
+- [should not allow - single origin without port and origin with required port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L405)
+- [should allow - matching origin with wildcard origin (2 subdomains)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L425)
+- [should not allow - unmatching origin with wildcard origin (2 subdomains)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L468)
+- [should allow - matching origin+port with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L488)
+- [should not allow - portless origin with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L515)
+- [should allow correct origins - missing subdomain + origin with wildcard origin and correct origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L535)
+- [should allow - missing origins (should allow all origins)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L571)
+
+### [custom-http-errors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L34)
+
+- [configures Nginx correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L41)
+
+### [default-backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L29)
+
+- [should use a custom default backend as upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L37)
+
+### [disable-access-log disable-http-access-log disable-stream-access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L28)
+
+- [disable-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L35)
+- [disable-http-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L53)
+- [disable-stream-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L71)
+
+### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L31)
+
+- [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L38)
+- [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L55)
+- [should add fastcgi_param in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L72)
+- [should return OK for service with backend protocol FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L105)
+
+### [force-ssl-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L27)
+
+- [should redirect to https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L34)
+
+### [from-to-www-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L31)
+
+- [should redirect from www HTTP to HTTP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L38)
+- [should redirect from www HTTPS to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L64)
+
+### [annotation-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L30)
+
+- [generates correct configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L38)
+
+### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L40)
+
+- [should use grpc_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L43)
+- [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L68)
+- [authorization metadata should be overwritten by external auth response headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L126)
+- [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L199)
+
+### [http2-push-preload](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L27)
+
+- [enable the http2-push-preload directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L34)
+
+### [influxdb-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/influxdb.go#L39)
+
+- [should send the request metric to the influxdb server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/influxdb.go#L48)
+
+### [whitelist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L27)
+
+- [should set valid ip whitelist range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L34)
+
+### [Annotation - limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L31)
+
+- [should limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L38)
+
+### [limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L29)
+
+- [Check limit-rate annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L37)
+
+### [enable-access-log enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L27)
+
+- [set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L34)
+- [set rewrite_log on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L49)
+
+### [mirror-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L28)
+
+- [should set mirror-target to http://localhost/mirror](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L36)
+- [should set mirror-target to https://test.env.com/$request_uri](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L51)
+- [should disable mirror-request-body](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L67)
+
+### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L28)
+
+- [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L35)
+- [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L53)
+- [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L74)
+- [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L91)
+- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L110)
+- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L132)
+- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L153)
+- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L189)
+- [should enable modsecurity when enable-owasp-modsecurity-crs is set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L225)
+- [should enable modsecurity through the config map](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L264)
+- [should enable modsecurity through the config map but ignore snippet as disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L305)
+- [should disable default modsecurity conf setting when modsecurity-snippet is specified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L347)
+
+### [preserve-trailing-slash](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L27)
+
+- [should allow preservation of trailing slashes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L34)
+
+### [proxy-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L28)
+
+- [should set proxy_redirect to off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L36)
+- [should set proxy_redirect to default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L52)
+- [should set proxy_redirect to hello.com goodbye.com](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L68)
+- [should set proxy client-max-body-size to 8m](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L85)
+- [should not set proxy client-max-body-size to incorrect value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L100)
+- [should set valid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L115)
+- [should not set invalid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L136)
+- [should turn on proxy-buffering](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L157)
+- [should turn off proxy-request-buffering](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L179)
+- [should build proxy next upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L194)
+- [should setup proxy cookies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L215)
+- [should change the default proxy HTTP version](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L233)
+
+### [proxy-ssl-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L30)
+
+- [should set valid proxy-ssl-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L37)
+- [should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L64)
+- [should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L94)
+- [should set valid proxy-ssl-secret, proxy-ssl-protocols](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L122)
+- [proxy-ssl-location-only flag should change the nginx config server part](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L150)
+
+### [permanent-redirect permanent-redirect-code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L30)
+
+- [should respond with a standard redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L33)
+- [should respond with a custom redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L61)
+
+### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L30)
+
+- [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L37)
+- [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L66)
+- [should use ~* location modifier if regex annotation is present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L111)
+- [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L158)
+- [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L190)
+
+### [satisfy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L35)
+
+- [should configure satisfy directive correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L42)
+- [should allow multiple auth with satisfy any](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L84)
+
+### [server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L28)
+
+- [add valid directives to server via server snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L35)
+- [drops server snippet if disabled by the administrator](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L61)
+
+### [service-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L32)
+
+- [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L41)
+- [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L70)
+- [should not use the Service Cluster IP and Port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L99)
+
+### [configuration-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L28)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L35)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L58)
+
+### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L28)
+
+- [should change ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L35)
+
+### [stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L34)
+
+- [should add value of stream-snippet to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L41)
+- [should add stream-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L85)
+
+### [upstream-hash-by-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L76)
+
+- [should connect to the same pod](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L83)
+- [should connect to the same subset of pods](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L92)
+
+### [upstream-vhost](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L27)
+
+- [set host to upstreamvhost.bar.com](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L34)
+
+### [x-forwarded-prefix](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L28)
+
+- [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L35)
+- [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L57)
+
+### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L39)
+
+- [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L46)
+- [should return status code 503 when authentication is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L65)
+- [should return status code 401 when authentication is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L89)
+- [should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L116)
+- [should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L144)
+- [should return status code 200 when authentication is configured and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L172)
+- [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L199)
+- [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L227)
+- [ when external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L266)
+- [ when external auth is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L284)
+- [ when auth-headers are set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L301)
+- [should set cache_key when external auth cache is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L322)
+- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L411)
+- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L422)
+- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L433)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L485)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L494)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L505)
+- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L529)
+- [should not create additional upstream block when auth-keepalive is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L552)
+- [should not create additional upstream block when host part of auth-url contains a variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L570)
+- [should not create additional upstream block when auth-keepalive is negative](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L590)
+- [should not create additional upstream block when auth-keepalive is set with HTTP/2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L609)
+- [should create additional upstream block when auth-keepalive is set with HTTP/1.x](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L623)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L678)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L687)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L698)
+- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L772)
+- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L792)
+- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L820)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L849)
+- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L879)
+- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L887)
+
+### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L29)
+
+- [should list the backend servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L37)
+- [should get information for a specific backend server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L56)
+- [should produce valid JSON for /dbg general](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L85)
+
+### [[Default Backend] custom service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L33)
+
+- [uses custom default backend that returns 200 as status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L36)
+
+### [[Default Backend]](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L30)
+
+- [should return 404 sending requests when only a default backend is running](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L33)
+- [enables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L88)
+- [disables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L105)
+
+### [[Default Backend] SSL](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L26)
+
+- [should return a self generated SSL certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L29)
+
+### [[Default Backend] change default settings](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L30)
+
+- [should apply the annotation to the default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L38)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
+
+### [[Endpointslices] long service name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L29)
+
+- [should return 200 when service name has max allowed number of characters 63](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L38)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
+
+### [[Setting] ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L190)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L206)
+- [ [MemoryLeak]](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L207)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/chain.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/chain.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/cookie.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/cookie.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/match.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/match.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/object.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/object.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/reporter.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/reporter.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/response.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/response.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/string.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/string.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/value.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/value.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/influxdb.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/influxdb.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/test_context.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/test_context.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
+
+### [[Shutdown] Grace period shutdown](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L32)
+
+- [/healthz should return status code 500 during shutdown grace period](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L35)
+
+### [[Shutdown] ingress controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L30)
+
+- [should shutdown in less than 60 secons without pending connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L40)
+- [should shutdown after waiting 60 seconds for pending connections to be closed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L61)
+- [should shutdown after waiting 150 seconds for pending connections to be closed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L106)
+
+### [[Shutdown] Graceful shutdown with pending request](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L25)
+
+- [should let slow requests finish before shutting down](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L33)
+
+### [[Ingress] DeepInspection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L27)
+
+- [should drop whole ingress if one path matches invalid regex](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L34)
+
+### [single ingress - multiple hosts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L30)
+
+- [should set the correct $service_name NGINX variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L38)
+
+### [[Ingress] [PathType] exact](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L30)
+
+- [should choose exact location for /exact](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L37)
+
+### [[Ingress] [PathType] mix Exact and Prefix paths](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L30)
+
+- [should choose the correct location](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L39)
+
+### [[Ingress] [PathType] prefix checks](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L28)
+
+- [should return 404 when prefix /aaa does not match request /aaaccc](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L35)
+
+### [[Ingress] definition without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L31)
+
+- [should set ingress details variables for ingresses without a host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L34)
+- [should set ingress details variables for ingresses with host without IngressRuleValue, only Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L55)
+
+### [[Memory Leak] Dynamic Certificates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L35)
+
+- [should not leak memory from ingress SSL certificates or configuration updates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L42)
+
+### [[Load Balancer] load-balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L28)
+
+- [should apply the configmap load-balance setting](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L35)
+
+### [[Load Balancer] EWMA](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L31)
+
+- [does not fail requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L42)
+
+### [[Load Balancer] round-robin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L31)
+
+- [should evenly distribute requests with round-robin (default algorithm)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L39)
+
+### [[Lua] dynamic certificates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L37)
+
+- [picks up the certificate when we add TLS spec to existing ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L45)
+- [picks up the previously missing secret for a given ingress without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L70)
+- [supports requests with domain with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L145)
+- [picks up the updated certificate without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L149)
+- [falls back to using default certificate when secret gets deleted without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L185)
+- [picks up a non-certificate only change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L218)
+- [removes HTTPS configuration when we delete TLS spec](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L233)
+
+### [[Lua] dynamic configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L42)
+
+- [configures balancer Lua middleware correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L50)
+- [handles endpoints only changes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L62)
+- [handles endpoints only changes (down scaling of replicas)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L87)
+- [handles endpoints only changes consistently (down scaling of replicas vs. empty service)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L125)
+- [handles an annotation change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L171)
+
+### [nginx-configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L99)
+
+- [start nginx with default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L102)
+- [fails when using alias directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L115)
+- [fails when using root directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L124)
+
+### [[Security] request smuggling](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L32)
+
+- [should not return body content from error_page](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L39)
+
+### [[Security] validate path fields](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L42)
+
+- [should accept an ingress with valid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L49)
+- [should drop an ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L67)
+- [should drop an ingress with regex path and regex disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L84)
+- [should accept an ingress with regex path and regex enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L101)
+- [should reject an ingress with invalid path and regex enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L118)
+
+### [[Service] backend status code 503](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L33)
+
+- [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L36)
+- [should return 503 when all backend service endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L54)
+
+### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L59)
+
+- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L62)
+- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L95)
+- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L129)
+- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L153)
+- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L184)
+- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L217)
+- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L248)
+- [should sync ingress on external name service addition/deletion](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L311)
+
+### [[Service] Nil Service Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L31)
+
+- [should return 404 when backend service is nil](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L38)
+
+### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L27)
+
+- [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L32)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L42)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L54)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L67)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L80)
+
+### [Bad annotation values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L29)
+
+- [[BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L36)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L67)
+- [[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L102)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L133)
+
+### [brotli](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L30)
+
+- [ condition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L39)
+
+### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
+
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
+
+### [add-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L30)
+
+- [Add a custom header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L40)
+- [Add multiple custom headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L65)
+
+### [[SSL] [Flag] default-ssl-certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L33)
+
+- [uses default ssl certificate for catch-all ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L64)
+- [uses default ssl certificate for host based ingress when configured certificate does not match host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L80)
+
+### [[Flag] disable-catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L33)
+
+- [should ignore catch all Ingress with backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L50)
+- [should ignore catch all Ingress with backend and rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L69)
+- [should delete Ingress updated to catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L81)
+- [should allow Ingress with rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L123)
+
+### [[Flag] disable-service-external-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L35)
+
+- [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L52)
+
+### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L30)
+
+- [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L40)
+- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L78)
+
+### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L30)
+
+- [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L40)
+- [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L92)
+
 ### [Geoip2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L37)
 
 - [should include geoip2 line in config when enabled and db file exists](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L46)
 - [should only allow requests from specific countries](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L70)
 
+### [[Security] block-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L28)
+
+- [should block CIDRs defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L38)
+- [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L55)
+- [should block Referers defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L88)
+
 ### [[Security] global-auth-url](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L34)
 
 - [should return status code 401 when request any protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L85)
@@ -27,59 +667,39 @@ Do not try to edit it manually.
 - [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L337)
 - [user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L348)
 
-### [[Security] Pod Security Policies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L40)
+### [global-options](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L28)
 
-- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L43)
+- [should have worker_rlimit_nofile option](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L31)
+- [should have worker_rlimit_nofile option and be independent on amount of worker processes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L38)
 
-### [log-format-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L28)
+### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L30)
 
-- [should disable the log-format-escape-json by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L40)
-- [should enable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L47)
-- [should disable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L55)
-- [log-format-escape-json enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L66)
-- [log-format-escape-json disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L89)
+- [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L38)
 
-### [server-tokens](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L29)
+### [hash size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L27)
 
-- [should not exists Server header in the response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L38)
-- [should exists Server header in the response when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L50)
+- [should set server_names_hash_bucket_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L40)
+- [should set server_names_hash_max_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L48)
+- [should set proxy-headers-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L60)
+- [should set proxy-headers-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L68)
+- [should set variables-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L80)
+- [should set variables-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L88)
+- [should set vmap-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L100)
 
-### [proxy-connect-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L28)
+### [[Flag] ingress-class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L39)
 
-- [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L36)
-- [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L52)
-
-### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L28)
-
-- [Add ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L31)
-
-### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L36)
-
-- [should respect port passed by the PROXY Protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L46)
-- [should respect proto passed by the PROXY Protocol server port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L79)
-- [should enable PROXY Protocol for HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L112)
-- [should enable PROXY Protocol for TCP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L155)
-
-### [plugins](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L28)
-
-- [should exist a x-hello-world header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L35)
-
-### [configmap server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L28)
-
-- [should add value of server-snippet setting to all ingress config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L35)
-- [should add global server-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L92)
-
-### [[Flag] disable-catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L33)
-
-- [should ignore catch all Ingress with backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L50)
-- [should ignore catch all Ingress with backend and rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L69)
-- [should delete Ingress updated to catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L81)
-- [should allow Ingress with rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L123)
-
-### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L30)
-
-- [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L40)
-- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L78)
+- [should ignore Ingress with a different class annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L68)
+- [should ignore Ingress with different controller class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L104)
+- [should accept both Ingresses with default IngressClassName and IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L132)
+- [should ignore Ingress without IngressClass configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L164)
+- [should delete Ingress when class is removed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L192)
+- [should serve Ingress when class is added](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L257)
+- [should serve Ingress when class is updated between annotation and ingressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L323)
+- [should ignore Ingress with no class and accept the correctly configured Ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L413)
+- [should watch Ingress with no class and ignore ingress with a different class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L482)
+- [should watch Ingress that uses the class name even if spec is different](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L539)
+- [should watch Ingress with correct annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L631)
+- [should ignore Ingress with only IngressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L652)
 
 ### [keep-alive keep-alive-requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L28)
 
@@ -87,7 +707,41 @@ Do not try to edit it manually.
 - [should set keepalive_requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L48)
 - [should set keepalive connection to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L59)
 - [should set keep alive connection timeout to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L68)
-- [should set the request count to upstream server through one keep alive connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L77)
+- [should set keepalive time to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L77)
+- [should set the request count to upstream server through one keep alive connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L86)
+
+### [Configmap - limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L28)
+
+- [Check limit-rate config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L36)
+
+### [[Flag] custom HTTP and HTTPS ports](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L32)
+
+- [should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L48)
+- [should set X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L70)
+- [should set the X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L100)
+
+### [log-format-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L28)
+
+- [should not configure log-format escape by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L40)
+- [should enable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L47)
+- [should disable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L55)
+- [should enable the log-format-escape-none](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L63)
+- [should disable the log-format-escape-none](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L71)
+- [log-format-escape-json enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L82)
+- [log-format default escape](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L105)
+- [log-format-escape-none enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L128)
+
+### [[Lua] lua-shared-dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L26)
+
+- [configures lua shared dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L29)
+
+### [main-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L27)
+
+- [should add value of main-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L31)
+
+### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
+
+- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
 
 ### [enable-multi-accept](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L27)
 
@@ -99,9 +753,19 @@ Do not try to edit it manually.
 
 - [should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L70)
 
-### [[Flag] disable-service-external-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L34)
+### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
 
-- [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L51)
+- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L54)
+- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
+- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
+
+### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L28)
+
+- [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L31)
+
+### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
+
+- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
 
 ### [Configure OpenTracing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L48)
 
@@ -119,41 +783,48 @@ Do not try to edit it manually.
 - [should enable opentracing using jaeger with an HTTP endpoint](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L228)
 - [should enable opentracing using datadog](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L241)
 
-### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
+### [plugins](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L28)
 
-- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
+- [should exist a x-hello-world header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L35)
 
-### [Configmap - limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L28)
+### [[Security] Pod Security Policies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L41)
 
-- [Check limit-rate config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L36)
+- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L44)
 
-### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L26)
+### [[Security] Pod Security Policies with volumes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L37)
 
-- [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L31)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L41)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L53)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L66)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L79)
+- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L40)
 
-### [global-options](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L28)
+### [proxy-connect-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L28)
 
-- [should have worker_rlimit_nofile option](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L31)
-- [should have worker_rlimit_nofile option and be independent on amount of worker processes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L38)
+- [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L36)
+- [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L52)
 
-### [[Flag] ingress-class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L39)
+### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L28)
 
-- [should ignore Ingress with a different class annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L68)
-- [should ignore Ingress with different controller class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L104)
-- [should accept both Ingresses with default IngressClassName and IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L132)
-- [should ignore Ingress without IngressClass configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L164)
-- [should delete Ingress when class is removed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L192)
-- [should serve Ingress when class is added](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L257)
-- [should serve Ingress when class is updated between annotation and ingressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L323)
-- [should ignore Ingress with no class and accept the correctly configured Ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L413)
-- [should watch Ingress with no class and ignore ingress with a different class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L482)
-- [should watch Ingress that uses the class name even if spec is different](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L539)
-- [should watch Ingress with correct annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L631)
-- [should ignore Ingress with only IngressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L652)
+- [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L36)
+- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L57)
+
+### [proxy-next-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L28)
+
+- [should build proxy next upstream using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L36)
+
+### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L36)
+
+- [should respect port passed by the PROXY Protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L46)
+- [should respect proto passed by the PROXY Protocol server port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L79)
+- [should enable PROXY Protocol for HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L112)
+- [should enable PROXY Protocol for TCP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L155)
+
+### [proxy-read-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L28)
+
+- [should set valid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L36)
+- [should not set invalid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L52)
+
+### [proxy-send-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L28)
+
+- [should set valid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L36)
+- [should not set invalid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L52)
 
 ### [reuse-port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L27)
 
@@ -161,133 +832,33 @@ Do not try to edit it manually.
 - [reuse port should be disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L44)
 - [reuse port should be enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L52)
 
-### [proxy-send-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L28)
+### [configmap server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L28)
 
-- [should set valid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L36)
-- [should not set invalid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L52)
+- [should add value of server-snippet setting to all ingress config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L35)
+- [should add global server-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L92)
 
-### [[SSL] [Flag] default-ssl-certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L33)
+### [server-tokens](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L29)
 
-- [uses default ssl certificate for catch-all ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L64)
-- [uses default ssl certificate for host based ingress when configured certificate does not match host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L80)
+- [should not exists Server header in the response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L38)
+- [should exists Server header in the response when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L50)
 
-### [brotli](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L30)
+### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L28)
 
-- [ condition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L39)
+- [Add ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L31)
 
-### [[Security] Pod Security Policies with volumes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L36)
+### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L35)
 
-- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L39)
-
-### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L28)
-
-- [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L36)
-- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L57)
-
-### [[Security] block-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L28)
-
-- [should block CIDRs defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L38)
-- [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L55)
-- [should block Referers defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L88)
-
-### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L30)
-
-- [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L38)
-
-### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L28)
-
-- [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L31)
-
-### [main-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L27)
-
-- [should add value of main-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L31)
-
-### [[Lua] lua-shared-dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L26)
-
-- [configures lua shared dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L29)
-
-### [Bad annotation values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L29)
-
-- [[BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L36)
-- [[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L67)
-- [[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L102)
-- [[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L133)
+- [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L42)
 
 ### [[SSL] TLS protocols, ciphers and headers)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L31)
 
 - [setting cipher suite](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L65)
-- [enforcing TLS v1.0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L87)
-- [setting max-age parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L133)
-- [setting includeSubDomains parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L149)
-- [setting preload parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L168)
-- [overriding what's set from the upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L188)
-- [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L209)
-- [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L227)
-
-### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
-
-- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
-
-### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
-
-- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
-
-### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L34)
-
-- [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L41)
-
-### [proxy-read-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L28)
-
-- [should set valid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L36)
-- [should not set invalid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L52)
-
-### [proxy-next-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L28)
-
-- [should build proxy next upstream using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L36)
-
-### [hash size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L27)
-
-- [should set server_names_hash_bucket_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L40)
-- [should set server_names_hash_max_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L48)
-- [should set proxy-headers-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L60)
-- [should set proxy-headers-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L68)
-- [should set variables-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L80)
-- [should set variables-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L88)
-- [should set vmap-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L100)
-
-### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
-
-- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L54)
-- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
-- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
-
-### [[Flag] custom HTTP and HTTPS ports](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L32)
-
-- [should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L48)
-- [should set X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L70)
-- [should set the X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L100)
-
-### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L30)
-
-- [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L40)
-- [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L92)
-
-### [add-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L30)
-
-- [Add a custom header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L40)
-- [Add multiple custom headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L65)
-
-### [[Load Balancer] round-robin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L31)
-
-- [should evenly distribute requests with round-robin (default algorithm)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L39)
-
-### [[Load Balancer] EWMA](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L31)
-
-- [does not fail requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L42)
-
-### [[Load Balancer] load-balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L28)
-
-- [should apply the configmap load-balance setting](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L35)
+- [setting max-age parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L111)
+- [setting includeSubDomains parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L127)
+- [setting preload parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L146)
+- [overriding what's set from the upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L166)
+- [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L187)
+- [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L205)
 
 ### [[SSL] redirect to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L29)
 
@@ -298,22 +869,11 @@ Do not try to edit it manually.
 - [should not appear references to secret updates not used in ingress rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L40)
 - [should return the fake SSL certificate if the secret is invalid](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L82)
 
-### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L58)
+### [[Status] status update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L38)
 
-- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L61)
-- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L94)
-- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L128)
-- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L152)
-- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L183)
-- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L216)
-- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L247)
-- [should sync ingress on external name service addition/deletion](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L310)
+- [should update status field after client-go reconnection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L43)
 
-### [[Service] Nil Service Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L31)
+### [[TCP] tcp-services](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L37)
 
-- [should return 404 when backend service is nil](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L38)
-
-### [[Service] backend status code 503](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L33)
-
-- [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L36)
-- [should return 503 when all backend service endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L54)
+- [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L40)
+- [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L98)
\ No newline at end of file
diff --git a/hack/generate-e2e-suite-doc.sh b/hack/generate-e2e-suite-doc.sh
index 2265bb079..a4ccc8fc2 100755
--- a/hack/generate-e2e-suite-doc.sh
+++ b/hack/generate-e2e-suite-doc.sh
@@ -18,10 +18,6 @@ if [ -n "$DEBUG" ]; then
 	set -x
 fi
 
-set -o errexit
-set -o nounset
-set -o pipefail
-
 URL="https://github.com/kubernetes/ingress-nginx/tree/main/"
 DIR=$(cd $(dirname "${BASH_SOURCE}")/.. && pwd -P)
 
@@ -34,7 +30,7 @@ Do not try to edit it manually.
 
 "
 
-for FILE in `find $DIR/test/e2e -name "*.go"`;do
+for FILE in $(find $DIR/test/e2e -name "*.go");do
     # describe definition
     DESCRIBE=$(cat $FILE | grep -n -oP 'Describe.*')
     # line number

From 3916f7b8b72ce5da7e3ba2377adfb1d06d4bcae8 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Thu, 29 Dec 2022 19:09:29 -0300
Subject: [PATCH 0546/1641] move tests to gh actions (#9461)

---
 .github/workflows/ci.yaml                     | 57 +++++++++++++++++++
 Makefile                                      |  1 +
 internal/ingress/annotations/authreq/main.go  |  3 +-
 .../ingress/controller/template/template.go   | 11 ++--
 internal/ingress/resolver/mock.go             |  3 +-
 pkg/util/runtime/cpu_linux.go                 |  3 +-
 rootfs/chroot.sh                              |  1 -
 test/e2e/framework/util.go                    |  4 +-
 8 files changed, 72 insertions(+), 11 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index d064fa6a2..61f5970db 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -75,6 +75,63 @@ jobs:
           # G307 TODO: Deferring unsafe method "Close"
           args: -exclude=G109,G601,G104,G204,G304,G306,G307 -tests=false -exclude-dir=test -exclude-dir=images/  -exclude-dir=docs/ ./...
 
+  lint:
+    runs-on: ubuntu-latest
+    needs: changes
+    if: |
+      (needs.changes.outputs.go == 'true')
+    steps:
+      - name: Checkout
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+      
+      - name: Set up Go
+        id: go
+        uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
+        with:
+          go-version: '1.19'
+          check-latest: true
+
+      - name: Run Lint
+        run: ./hack/verify-golint.sh
+
+  gofmt:
+    runs-on: ubuntu-latest
+    needs: changes
+    if: |
+      (needs.changes.outputs.go == 'true')
+    steps:
+      - name: Checkout
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+      
+      - name: Set up Go
+        id: go
+        uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
+        with:
+          go-version: '1.19'
+          check-latest: true
+
+      - name: Run go-fmt
+        run: ./hack/verify-gofmt.sh
+
+  test-go:
+    runs-on: ubuntu-latest
+    needs: changes
+    if: |
+      (needs.changes.outputs.go == 'true')
+    steps:
+      - name: Checkout
+        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+      
+      - name: Set up Go
+        id: go
+        uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
+        with:
+          go-version: '1.19'
+          check-latest: true
+
+      - name: Run test
+        run: make test
+
   build:
     name: Build
     runs-on: ubuntu-latest
diff --git a/Makefile b/Makefile
index 8204a2087..5099b4645 100644
--- a/Makefile
+++ b/Makefile
@@ -141,6 +141,7 @@ test:  ## Run go unit tests.
 		COMMIT_SHA=$(COMMIT_SHA) \
 		REPO_INFO=$(REPO_INFO) \
 		TAG=$(TAG) \
+		GOFLAGS="-buildvcs=false" \
 		test/test.sh
 
 .PHONY: lua-test
diff --git a/internal/ingress/annotations/authreq/main.go b/internal/ingress/annotations/authreq/main.go
index b607f5482..6a8a4611a 100644
--- a/internal/ingress/annotations/authreq/main.go
+++ b/internal/ingress/annotations/authreq/main.go
@@ -149,7 +149,8 @@ func ValidHeader(header string) bool {
 // ValidCacheDuration checks if the provided string is a valid cache duration
 // spec: [code ...] [time ...];
 // with: code is an http status code
-//       time must match the time regex and may appear multiple times, e.g. `1h 30m`
+//
+//	time must match the time regex and may appear multiple times, e.g. `1h 30m`
 func ValidCacheDuration(duration string) bool {
 	elements := strings.Split(duration, " ")
 	seenDuration := false
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 8d4cb6e75..315262150 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -75,8 +75,8 @@ type Template struct {
 	bp *BufferPool
 }
 
-//NewTemplate returns a new Template instance or an
-//error if the specified template file contains errors
+// NewTemplate returns a new Template instance or an
+// error if the specified template file contains errors
 func NewTemplate(file string) (*Template, error) {
 	data, err := os.ReadFile(file)
 	if err != nil {
@@ -287,9 +287,10 @@ var (
 // escapeLiteralDollar will replace the $ character with ${literal_dollar}
 // which is made to work via the following configuration in the http section of
 // the template:
-// geo $literal_dollar {
-//     default "$";
-// }
+//
+//	geo $literal_dollar {
+//	    default "$";
+//	}
 func escapeLiteralDollar(input interface{}) string {
 	inputStr, ok := input.(string)
 	if !ok {
diff --git a/internal/ingress/resolver/mock.go b/internal/ingress/resolver/mock.go
index 556262b42..62c5c6db9 100644
--- a/internal/ingress/resolver/mock.go
+++ b/internal/ingress/resolver/mock.go
@@ -41,7 +41,8 @@ func (m Mock) GetSecret(string) (*apiv1.Secret, error) {
 
 // GetAuthCertificate resolves a given secret name into an SSL certificate.
 // The secret must contain 3 keys named:
-//   ca.crt: contains the certificate chain used for authentication
+//
+//	ca.crt: contains the certificate chain used for authentication
 func (m Mock) GetAuthCertificate(string) (*AuthSSLCert, error) {
 	return nil, nil
 }
diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index e7513d619..cfc49d924 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -33,7 +33,8 @@ import (
 // NumCPU returns the number of logical CPUs usable by the current process.
 // If CPU cgroups limits are configured, use cfs_quota_us / cfs_period_us
 // as formula
-//  https://www.kernel.org/doc/Documentation/scheduler/sched-bwc.txt
+//
+//	https://www.kernel.org/doc/Documentation/scheduler/sched-bwc.txt
 func NumCPU() int {
 	cpus := runtime.NumCPU()
 
diff --git a/rootfs/chroot.sh b/rootfs/chroot.sh
index 3f64aa63f..9f3cbd804 100755
--- a/rootfs/chroot.sh
+++ b/rootfs/chroot.sh
@@ -40,7 +40,6 @@ for dir in "${writeDirs[@]}"; do
   chown -R www-data.www-data ${dir};
 done
 
-
 mkdir -p  /chroot/lib /chroot/proc /chroot/usr /chroot/bin /chroot/dev /chroot/run 
 cp /etc/passwd /etc/group /chroot/etc/
 cp -a /usr/* /chroot/usr/
diff --git a/test/e2e/framework/util.go b/test/e2e/framework/util.go
index 8f50dac98..90f15eb1b 100644
--- a/test/e2e/framework/util.go
+++ b/test/e2e/framework/util.go
@@ -189,7 +189,7 @@ func CreateIngressClass(namespace string, c kubernetes.Interface) (string, error
 	return ic.Name, nil
 }
 
-//deleteIngressClass deletes an IngressClass and its related ClusterRole* objects
+// deleteIngressClass deletes an IngressClass and its related ClusterRole* objects
 func deleteIngressClass(c kubernetes.Interface, ingressclass string) error {
 	var err error
 	grace := int64(0)
@@ -215,7 +215,7 @@ func deleteIngressClass(c kubernetes.Interface, ingressclass string) error {
 	return nil
 }
 
-//GetIngressClassName returns the default IngressClassName given a namespace
+// GetIngressClassName returns the default IngressClassName given a namespace
 func GetIngressClassName(namespace string) *string {
 	icname := fmt.Sprintf("ic-%s", namespace)
 	return &icname

From 8b5a25fa141dff2d7f6bb8eecc07ee66a1f1a210 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 29 Dec 2022 18:59:07 -0500
Subject: [PATCH 0547/1641] fix change images (#9463)

Signed-off-by: James Strong <james.strong@chainguard.dev>

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 changelog/Changelog-1.5.2.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/changelog/Changelog-1.5.2.md b/changelog/Changelog-1.5.2.md
index 8b6779e47..8b2617924 100644
--- a/changelog/Changelog-1.5.2.md
+++ b/changelog/Changelog-1.5.2.md
@@ -3,8 +3,8 @@
 ### 1.5.2
 Images:
 
- * registry.k8s.io/controller:controller-v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
- * registry.k8s.io/controller-chroot:controller-v1.5.2@sha256:84613555694f2c59a8b2551126d226c9aa648544ebf0cde1e0df942f7dbce42b
+ * registry.k8s.io/ingress-nginx/controller:controller-v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
+ * registry.k8s.io/ingress-nginx/controller-chroot:controller-v1.5.2@sha256:84613555694f2c59a8b2551126d226c9aa648544ebf0cde1e0df942f7dbce42b
  
 ### All Changes:
 

From 11e21bf3e72277740639d20416b83971d99846e1 Mon Sep 17 00:00:00 2001
From: James Strong <james.strong@chainguard.dev>
Date: Thu, 29 Dec 2022 19:55:27 -0500
Subject: [PATCH 0548/1641] rollback tag

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index a503124bd..c9b3c015f 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.5.2
+v1.5.1
\ No newline at end of file

From 6f9c65abf4a18e4c32bea1d2006efcb2c9896871 Mon Sep 17 00:00:00 2001
From: James Strong <james.strong@chainguard.dev>
Date: Thu, 29 Dec 2022 19:58:15 -0500
Subject: [PATCH 0549/1641] revert 1.5.2

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 charts/ingress-nginx/Chart.yaml               |   47 +-
 charts/ingress-nginx/README.md                |    8 +-
 .../changelog/Changelog-1.5.2.md              |   12 -
 charts/ingress-nginx/values.yaml              | 1607 +++++++++--------
 deploy/static/provider/aws/deploy.yaml        |   57 +-
 .../aws/nlb-with-tls-termination/deploy.yaml  |   57 +-
 deploy/static/provider/baremetal/deploy.yaml  |   57 +-
 deploy/static/provider/cloud/deploy.yaml      |   57 +-
 deploy/static/provider/do/deploy.yaml         |   57 +-
 deploy/static/provider/exoscale/deploy.yaml   |   57 +-
 deploy/static/provider/kind/deploy.yaml       |   57 +-
 deploy/static/provider/scw/deploy.yaml        |   57 +-
 docs/deploy/index.md                          |   20 +-
 docs/e2e-tests.md                             |  974 +++-------
 14 files changed, 1387 insertions(+), 1737 deletions(-)
 delete mode 100644 charts/ingress-nginx/changelog/Changelog-1.5.2.md

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 11ab03634..461601f59 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,26 +1,31 @@
-annotations:
-  artifacthub.io/changes: |
-     - "ci: remove setup-helm step (#9404)"
-     - "feat(helm): Optionally use cert-manager instead admission patch (#9279)"
-     - "run helm release on main only and when the chart/value changes only (#9290)"
-     - "Update Ingress-Nginx version controller-v1.5.2"
-  artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.5.2
-description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
-  load balancer
-engine: gotpl
+name: ingress-nginx
+# When the version is modified, make sure the artifacthub.io/changes list is updated
+# Also update CHANGELOG.md
+version: 4.4.0
+appVersion: 1.5.1
 home: https://github.com/kubernetes/ingress-nginx
+description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
 keywords:
-- ingress
-- nginx
-kubeVersion: '>=1.20.0-0'
-maintainers:
-- name: rikatz
-- name: strongjz
-- name: tao12345666333
-name: ingress-nginx
+  - ingress
+  - nginx
 sources:
-- https://github.com/kubernetes/ingress-nginx
-version: 4.4.1
+  - https://github.com/kubernetes/ingress-nginx
+maintainers:
+  - name: rikatz
+  - name: strongjz
+  - name: tao12345666333
+engine: gotpl
+kubeVersion: ">=1.20.0-0"
+annotations:
+  # Use this annotation to indicate that this chart version is a pre-release.
+  # https://artifacthub.io/docs/topics/annotations/helm/
+  artifacthub.io/prerelease: "false"
+  # List of changes for the release in artifacthub.io
+  # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
+  artifacthub.io/changes: |
+    - Adding support for disabling liveness and readiness probes to the Helm chart
+    - add:(admission-webhooks) ability to set securityContext
+    - Updated Helm chart to use the fullname for the electionID if not specified
+    - Rename controller-wehbooks-networkpolicy.yaml
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 4daff76c6..af71493fe 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.4.1](https://img.shields.io/badge/Version-4.4.1-informational?style=flat-square) ![AppVersion: 1.5.2](https://img.shields.io/badge/AppVersion-1.5.2-informational?style=flat-square)
+![Version: 4.4.0](https://img.shields.io/badge/Version-4.4.0-informational?style=flat-square) ![AppVersion: 1.5.1](https://img.shields.io/badge/AppVersion-1.5.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -332,13 +332,13 @@ Kubernetes: `>=1.20.0-0`
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655"` |  |
-| controller.image.digestChroot | string | `"sha256:84613555694f2c59a8b2551126d226c9aa648544ebf0cde1e0df942f7dbce42b"` |  |
+| controller.image.digest | string | `"sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629"` |  |
+| controller.image.digestChroot | string | `"sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529bad0d178fb36147345"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.5.2"` |  |
+| controller.image.tag | string | `"v1.5.1"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/Changelog-1.5.2.md b/charts/ingress-nginx/changelog/Changelog-1.5.2.md
deleted file mode 100644
index 5e0563858..000000000
--- a/charts/ingress-nginx/changelog/Changelog-1.5.2.md
+++ /dev/null
@@ -1,12 +0,0 @@
-# Changelog
-
-This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
-
-### 4.4.1
-
-* ci: remove setup-helm step (#9404)
-* feat(helm): Optionally use cert-manager instead admission patch (#9279)
-* run helm release on main only and when the chart/value changes only (#9290)
-* Update Ingress-Nginx version controller-v1.5.2
-
-**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.4.1...helm-chart-4.4.1
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index e5f8922a0..b7089addb 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -14,190 +14,222 @@ commonLabels: {}
 # myLabel: aakkmd
 
 controller:
-    name: controller
-    image:
-        ## Keep false as default for now!
-        chroot: false
-        registry: registry.k8s.io
-        image: ingress-nginx/controller
-        ## for backwards compatibility consider setting the full image url via the repository value below
-        ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-        ## repository:
-        tag: "v1.5.2"
-        digest: sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
-        digestChroot: sha256:84613555694f2c59a8b2551126d226c9aa648544ebf0cde1e0df942f7dbce42b
-        pullPolicy: IfNotPresent
-        # www-data -> uid 101
-        runAsUser: 101
-        allowPrivilegeEscalation: true
-    # -- Use an existing PSP instead of creating one
-    existingPsp: ""
-    # -- Configures the controller container name
-    containerName: controller
-    # -- Configures the ports that the nginx-controller listens on
-    containerPort:
-        http: 80
-        https: 443
-    # -- Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/
-    config: {}
-    # -- Annotations to be added to the controller config configuration configmap.
-    configAnnotations: {}
-    # -- Will add custom headers before sending traffic to backends according to https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/custom-headers
-    proxySetHeaders: {}
-    # -- Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers
-    addHeaders: {}
-    # -- Optionally customize the pod dnsConfig.
-    dnsConfig: {}
-    # -- Optionally customize the pod hostname.
-    hostname: {}
-    # -- Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'.
-    # By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller
-    # to keep resolving names inside the k8s network, use ClusterFirstWithHostNet.
-    dnsPolicy: ClusterFirst
-    # -- Bare-metal considerations via the host network https://kubernetes.github.io/ingress-nginx/deploy/baremetal/#via-the-host-network
-    # Ingress status was blank because there is no Service exposing the NGINX Ingress controller in a configuration using the host network, the default --publish-service flag used in standard cloud setups does not apply
-    reportNodeInternalIp: false
-    # -- Process Ingress objects without ingressClass annotation/ingressClassName field
-    # Overrides value for --watch-ingress-without-class flag of the controller binary
-    # Defaults to false
-    watchIngressWithoutClass: false
-    # -- Process IngressClass per name (additionally as per spec.controller).
-    ingressClassByName: false
-    # -- This configuration defines if Ingress Controller should allow users to set
-    # their own *-snippet annotations, otherwise this is forbidden / dropped
-    # when users add those annotations.
-    # Global snippets in ConfigMap are still respected
-    allowSnippetAnnotations: true
-    # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
-    # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
-    # is merged
-    hostNetwork: false
-    ## Use host ports 80 and 443
-    ## Disabled by default
-    hostPort:
-        # -- Enable 'hostPort' or not
-        enabled: false
-        ports:
-            # -- 'hostPort' http port
-            http: 80
-            # -- 'hostPort' https port
-            https: 443
-    # -- Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader'
-    electionID: ""
-    ## This section refers to the creation of the IngressClass resource
-    ## IngressClass resources are supported since k8s >= 1.18 and required since k8s >= 1.19
-    ingressClassResource:
-        # -- Name of the ingressClass
-        name: nginx
-        # -- Is this ingressClass enabled or not
-        enabled: true
-        # -- Is this the default ingressClass for the cluster
-        default: false
-        # -- Controller-value of the controller that is processing this ingressClass
-        controllerValue: "k8s.io/ingress-nginx"
-        # -- Parameters is a link to a custom resource containing additional
-        # configuration for the controller. This is optional if the controller
-        # does not require extra parameters.
-        parameters: {}
-    # -- For backwards compatibility with ingress.class annotation, use ingressClass.
-    # Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation
-    ingressClass: nginx
-    # -- Labels to add to the pod container metadata
-    podLabels: {}
-    #  key: value
+  name: controller
+  image:
+    ## Keep false as default for now!
+    chroot: false
+    registry: registry.k8s.io
+    image: ingress-nginx/controller
+    ## for backwards compatibility consider setting the full image url via the repository value below
+    ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+    ## repository:
+    tag: "v1.5.1"
+    digest: sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+    digestChroot: sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529bad0d178fb36147345
+    pullPolicy: IfNotPresent
+    # www-data -> uid 101
+    runAsUser: 101
+    allowPrivilegeEscalation: true
 
-    # -- Security Context policies for controller pods
-    podSecurityContext: {}
-    # -- See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls
-    sysctls: {}
-    # sysctls:
-    #   "net.core.somaxconn": "8192"
+  # -- Use an existing PSP instead of creating one
+  existingPsp: ""
 
-    # -- Allows customization of the source of the IP address or FQDN to report
-    # in the ingress status field. By default, it reads the information provided
-    # by the service. If disable, the status field reports the IP address of the
-    # node or nodes where an ingress controller pod is running.
-    publishService:
-        # -- Enable 'publishService' or not
-        enabled: true
-        # -- Allows overriding of the publish service to bind to
-        # Must be <namespace>/<service_name>
-        pathOverride: ""
-    # Limit the scope of the controller to a specific namespace
-    scope:
-        # -- Enable 'scope' or not
-        enabled: false
-        # -- Namespace to limit the controller to; defaults to $(POD_NAMESPACE)
-        namespace: ""
-        # -- When scope.enabled == false, instead of watching all namespaces, we watching namespaces whose labels
-        # only match with namespaceSelector. Format like foo=bar. Defaults to empty, means watching all namespaces.
-        namespaceSelector: ""
-    # -- Allows customization of the configmap / nginx-configmap namespace; defaults to $(POD_NAMESPACE)
+  # -- Configures the controller container name
+  containerName: controller
+
+  # -- Configures the ports that the nginx-controller listens on
+  containerPort:
+    http: 80
+    https: 443
+
+  # -- Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/
+  config: {}
+
+  # -- Annotations to be added to the controller config configuration configmap.
+  configAnnotations: {}
+
+  # -- Will add custom headers before sending traffic to backends according to https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/custom-headers
+  proxySetHeaders: {}
+
+  # -- Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers
+  addHeaders: {}
+
+  # -- Optionally customize the pod dnsConfig.
+  dnsConfig: {}
+
+  # -- Optionally customize the pod hostname.
+  hostname: {}
+
+  # -- Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'.
+  # By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller
+  # to keep resolving names inside the k8s network, use ClusterFirstWithHostNet.
+  dnsPolicy: ClusterFirst
+
+  # -- Bare-metal considerations via the host network https://kubernetes.github.io/ingress-nginx/deploy/baremetal/#via-the-host-network
+  # Ingress status was blank because there is no Service exposing the NGINX Ingress controller in a configuration using the host network, the default --publish-service flag used in standard cloud setups does not apply
+  reportNodeInternalIp: false
+
+  # -- Process Ingress objects without ingressClass annotation/ingressClassName field
+  # Overrides value for --watch-ingress-without-class flag of the controller binary
+  # Defaults to false
+  watchIngressWithoutClass: false
+
+  # -- Process IngressClass per name (additionally as per spec.controller).
+  ingressClassByName: false
+
+  # -- This configuration defines if Ingress Controller should allow users to set
+  # their own *-snippet annotations, otherwise this is forbidden / dropped
+  # when users add those annotations.
+  # Global snippets in ConfigMap are still respected
+  allowSnippetAnnotations: true
+
+  # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
+  # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
+  # is merged
+  hostNetwork: false
+
+  ## Use host ports 80 and 443
+  ## Disabled by default
+  hostPort:
+    # -- Enable 'hostPort' or not
+    enabled: false
+    ports:
+      # -- 'hostPort' http port
+      http: 80
+      # -- 'hostPort' https port
+      https: 443
+
+  # -- Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader'
+  electionID: ""
+
+  ## This section refers to the creation of the IngressClass resource
+  ## IngressClass resources are supported since k8s >= 1.18 and required since k8s >= 1.19
+  ingressClassResource:
+    # -- Name of the ingressClass
+    name: nginx
+    # -- Is this ingressClass enabled or not
+    enabled: true
+    # -- Is this the default ingressClass for the cluster
+    default: false
+    # -- Controller-value of the controller that is processing this ingressClass
+    controllerValue: "k8s.io/ingress-nginx"
+
+    # -- Parameters is a link to a custom resource containing additional
+    # configuration for the controller. This is optional if the controller
+    # does not require extra parameters.
+    parameters: {}
+
+  # -- For backwards compatibility with ingress.class annotation, use ingressClass.
+  # Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation
+  ingressClass: nginx
+
+  # -- Labels to add to the pod container metadata
+  podLabels: {}
+  #  key: value
+
+  # -- Security Context policies for controller pods
+  podSecurityContext: {}
+
+  # -- See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls
+  sysctls: {}
+  # sysctls:
+  #   "net.core.somaxconn": "8192"
+
+  # -- Allows customization of the source of the IP address or FQDN to report
+  # in the ingress status field. By default, it reads the information provided
+  # by the service. If disable, the status field reports the IP address of the
+  # node or nodes where an ingress controller pod is running.
+  publishService:
+    # -- Enable 'publishService' or not
+    enabled: true
+    # -- Allows overriding of the publish service to bind to
+    # Must be <namespace>/<service_name>
+    pathOverride: ""
+
+  # Limit the scope of the controller to a specific namespace
+  scope:
+    # -- Enable 'scope' or not
+    enabled: false
+    # -- Namespace to limit the controller to; defaults to $(POD_NAMESPACE)
+    namespace: ""
+    # -- When scope.enabled == false, instead of watching all namespaces, we watching namespaces whose labels
+    # only match with namespaceSelector. Format like foo=bar. Defaults to empty, means watching all namespaces.
+    namespaceSelector: ""
+
+  # -- Allows customization of the configmap / nginx-configmap namespace; defaults to $(POD_NAMESPACE)
+  configMapNamespace: ""
+
+  tcp:
+    # -- Allows customization of the tcp-services-configmap; defaults to $(POD_NAMESPACE)
     configMapNamespace: ""
-    tcp:
-        # -- Allows customization of the tcp-services-configmap; defaults to $(POD_NAMESPACE)
-        configMapNamespace: ""
-        # -- Annotations to be added to the tcp config configmap
-        annotations: {}
-    udp:
-        # -- Allows customization of the udp-services-configmap; defaults to $(POD_NAMESPACE)
-        configMapNamespace: ""
-        # -- Annotations to be added to the udp config configmap
-        annotations: {}
-    # -- Maxmind license key to download GeoLite2 Databases.
-    ## https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases
-    maxmindLicenseKey: ""
-    # -- Additional command line arguments to pass to nginx-ingress-controller
-    # E.g. to specify the default SSL certificate you can use
-    extraArgs: {}
-    ## extraArgs:
-    ##   default-ssl-certificate: "<namespace>/<secret_name>"
-
-    # -- Additional environment variables to set
-    extraEnvs: []
-    # extraEnvs:
-    #   - name: FOO
-    #     valueFrom:
-    #       secretKeyRef:
-    #         key: FOO
-    #         name: secret-resource
-
-    # -- Use a `DaemonSet` or `Deployment`
-    kind: Deployment
-    # -- Annotations to be added to the controller Deployment or DaemonSet
-    ##
+    # -- Annotations to be added to the tcp config configmap
     annotations: {}
-    #  keel.sh/pollSchedule: "@every 60m"
 
-    # -- Labels to be added to the controller Deployment or DaemonSet and other resources that do not have option to specify labels
-    ##
-    labels: {}
-    #  keel.sh/policy: patch
-    #  keel.sh/trigger: poll
+  udp:
+    # -- Allows customization of the udp-services-configmap; defaults to $(POD_NAMESPACE)
+    configMapNamespace: ""
+    # -- Annotations to be added to the udp config configmap
+    annotations: {}
 
-    # -- The update strategy to apply to the Deployment or DaemonSet
-    ##
-    updateStrategy: {}
-    #  rollingUpdate:
-    #    maxUnavailable: 1
-    #  type: RollingUpdate
+  # -- Maxmind license key to download GeoLite2 Databases.
+  ## https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases
+  maxmindLicenseKey: ""
 
-    # -- `minReadySeconds` to avoid killing pods before we are ready
-    ##
-    minReadySeconds: 0
-    # -- Node tolerations for server scheduling to nodes with taints
-    ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
-    ##
-    tolerations: []
-    #  - key: "key"
-    #    operator: "Equal|Exists"
-    #    value: "value"
-    #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
+  # -- Additional command line arguments to pass to nginx-ingress-controller
+  # E.g. to specify the default SSL certificate you can use
+  extraArgs: {}
+  ## extraArgs:
+  ##   default-ssl-certificate: "<namespace>/<secret_name>"
 
-    # -- Affinity and anti-affinity rules for server scheduling to nodes
-    ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
-    ##
-    affinity: {}
+  # -- Additional environment variables to set
+  extraEnvs: []
+  # extraEnvs:
+  #   - name: FOO
+  #     valueFrom:
+  #       secretKeyRef:
+  #         key: FOO
+  #         name: secret-resource
+
+  # -- Use a `DaemonSet` or `Deployment`
+  kind: Deployment
+
+  # -- Annotations to be added to the controller Deployment or DaemonSet
+  ##
+  annotations: {}
+  #  keel.sh/pollSchedule: "@every 60m"
+
+  # -- Labels to be added to the controller Deployment or DaemonSet and other resources that do not have option to specify labels
+  ##
+  labels: {}
+  #  keel.sh/policy: patch
+  #  keel.sh/trigger: poll
+
+
+  # -- The update strategy to apply to the Deployment or DaemonSet
+  ##
+  updateStrategy: {}
+  #  rollingUpdate:
+  #    maxUnavailable: 1
+  #  type: RollingUpdate
+
+  # -- `minReadySeconds` to avoid killing pods before we are ready
+  ##
+  minReadySeconds: 0
+
+
+  # -- Node tolerations for server scheduling to nodes with taints
+  ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
+  ##
+  tolerations: []
+  #  - key: "key"
+  #    operator: "Equal|Exists"
+  #    value: "value"
+  #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
+
+  # -- Affinity and anti-affinity rules for server scheduling to nodes
+  ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+  ##
+  affinity: {}
     # # An example of preferred pod anti-affinity, weight is in the range 1-100
     # podAntiAffinity:
     #   preferredDuringSchedulingIgnoredDuringExecution:
@@ -238,10 +270,10 @@ controller:
     #         - controller
     #     topologyKey: "kubernetes.io/hostname"
 
-    # -- Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
-    ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
-    ##
-    topologySpreadConstraints: []
+  # -- Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
+  ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
+  ##
+  topologySpreadConstraints: []
     # - maxSkew: 1
     #   topologyKey: topology.kubernetes.io/zone
     #   whenUnsatisfiable: DoNotSchedule
@@ -249,605 +281,669 @@ controller:
     #     matchLabels:
     #       app.kubernetes.io/instance: ingress-nginx-internal
 
-    # -- `terminationGracePeriodSeconds` to avoid killing pods before we are ready
-    ## wait up to five minutes for the drain of connections
-    ##
-    terminationGracePeriodSeconds: 300
-    # -- Node labels for controller pod assignment
-    ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
-    ##
-    nodeSelector:
-        kubernetes.io/os: linux
-    ## Liveness and readiness probe values
-    ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#container-probes
-    ##
-    ## startupProbe:
-    ##   httpGet:
-    ##     # should match container.healthCheckPath
-    ##     path: "/healthz"
-    ##     port: 10254
-    ##     scheme: HTTP
-    ##   initialDelaySeconds: 5
-    ##   periodSeconds: 5
-    ##   timeoutSeconds: 2
-    ##   successThreshold: 1
-    ##   failureThreshold: 5
-    livenessProbe:
-        httpGet:
-            # should match container.healthCheckPath
-            path: "/healthz"
-            port: 10254
-            scheme: HTTP
-        initialDelaySeconds: 10
-        periodSeconds: 10
-        timeoutSeconds: 1
-        successThreshold: 1
-        failureThreshold: 5
-    readinessProbe:
-        httpGet:
-            # should match container.healthCheckPath
-            path: "/healthz"
-            port: 10254
-            scheme: HTTP
-        initialDelaySeconds: 10
-        periodSeconds: 10
-        timeoutSeconds: 1
-        successThreshold: 1
-        failureThreshold: 3
-    # -- Path of the health check endpoint. All requests received on the port defined by
-    # the healthz-port parameter are forwarded internally to this path.
-    healthCheckPath: "/healthz"
-    # -- Address to bind the health check endpoint.
-    # It is better to set this option to the internal node address
-    # if the ingress nginx controller is running in the `hostNetwork: true` mode.
-    healthCheckHost: ""
-    # -- Annotations to be added to controller pods
-    ##
-    podAnnotations: {}
-    replicaCount: 1
-    # -- Define either 'minAvailable' or 'maxUnavailable', never both.
-    minAvailable: 1
-    # -- Define either 'minAvailable' or 'maxUnavailable', never both.
-    # maxUnavailable: 1
+  # -- `terminationGracePeriodSeconds` to avoid killing pods before we are ready
+  ## wait up to five minutes for the drain of connections
+  ##
+  terminationGracePeriodSeconds: 300
 
-    ## Define requests resources to avoid probe issues due to CPU utilization in busy nodes
-    ## ref: https://github.com/kubernetes/ingress-nginx/issues/4735#issuecomment-551204903
-    ## Ideally, there should be no limits.
-    ## https://engineering.indeedblog.com/blog/2019/12/cpu-throttling-regression-fix/
-    resources:
-        ##  limits:
-        ##    cpu: 100m
-        ##    memory: 90Mi
-        requests:
-            cpu: 100m
-            memory: 90Mi
-    # Mutually exclusive with keda autoscaling
-    autoscaling:
-        apiVersion: autoscaling/v2
-        enabled: false
-        annotations: {}
-        minReplicas: 1
-        maxReplicas: 11
-        targetCPUUtilizationPercentage: 50
-        targetMemoryUtilizationPercentage: 50
-        behavior: {}
-        # scaleDown:
-        #   stabilizationWindowSeconds: 300
-        #   policies:
-        #   - type: Pods
-        #     value: 1
-        #     periodSeconds: 180
-        # scaleUp:
-        #   stabilizationWindowSeconds: 300
-        #   policies:
-        #   - type: Pods
-        #     value: 2
-        #     periodSeconds: 60
-    autoscalingTemplate: []
-    # Custom or additional autoscaling metrics
-    # ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/#support-for-custom-metrics
-    # - type: Pods
-    #   pods:
-    #     metric:
-    #       name: nginx_ingress_controller_nginx_process_requests_total
-    #     target:
-    #       type: AverageValue
-    #       averageValue: 10000m
+  # -- Node labels for controller pod assignment
+  ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
+  ##
+  nodeSelector:
+    kubernetes.io/os: linux
 
-    # Mutually exclusive with hpa autoscaling
-    keda:
-        apiVersion: "keda.sh/v1alpha1"
-        ## apiVersion changes with keda 1.x vs 2.x
-        ## 2.x = keda.sh/v1alpha1
-        ## 1.x = keda.k8s.io/v1alpha1
-        enabled: false
-        minReplicas: 1
-        maxReplicas: 11
-        pollingInterval: 30
-        cooldownPeriod: 300
-        restoreToOriginalReplicaCount: false
-        scaledObject:
-            annotations: {}
-            # Custom annotations for ScaledObject resource
-            #  annotations:
-            # key: value
-        triggers: []
-        #     - type: prometheus
-        #       metadata:
-        #         serverAddress: http://<prometheus-host>:9090
-        #         metricName: http_requests_total
-        #         threshold: '100'
-        #         query: sum(rate(http_requests_total{deployment="my-deployment"}[2m]))
+  ## Liveness and readiness probe values
+  ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#container-probes
+  ##
+  ## startupProbe:
+  ##   httpGet:
+  ##     # should match container.healthCheckPath
+  ##     path: "/healthz"
+  ##     port: 10254
+  ##     scheme: HTTP
+  ##   initialDelaySeconds: 5
+  ##   periodSeconds: 5
+  ##   timeoutSeconds: 2
+  ##   successThreshold: 1
+  ##   failureThreshold: 5
+  livenessProbe:
+    httpGet:
+      # should match container.healthCheckPath
+      path: "/healthz"
+      port: 10254
+      scheme: HTTP
+    initialDelaySeconds: 10
+    periodSeconds: 10
+    timeoutSeconds: 1
+    successThreshold: 1
+    failureThreshold: 5
+  readinessProbe:
+    httpGet:
+      # should match container.healthCheckPath
+      path: "/healthz"
+      port: 10254
+      scheme: HTTP
+    initialDelaySeconds: 10
+    periodSeconds: 10
+    timeoutSeconds: 1
+    successThreshold: 1
+    failureThreshold: 3
 
-        behavior: {}
-    #     scaleDown:
-    #       stabilizationWindowSeconds: 300
-    #       policies:
-    #       - type: Pods
-    #         value: 1
-    #         periodSeconds: 180
-    #     scaleUp:
-    #       stabilizationWindowSeconds: 300
-    #       policies:
-    #       - type: Pods
-    #         value: 2
-    #         periodSeconds: 60
 
-    # -- Enable mimalloc as a drop-in replacement for malloc.
-    ## ref: https://github.com/microsoft/mimalloc
-    ##
-    enableMimalloc: true
-    ## Override NGINX template
-    customTemplate:
-        configMapName: ""
-        configMapKey: ""
-    service:
-        enabled: true
-        # -- If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were
-        # using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http
-        # It allows choosing the protocol for each backend specified in the Kubernetes service.
-        # See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244
-        # Will be ignored for Kubernetes versions older than 1.20
-        ##
-        appProtocol: true
-        annotations: {}
-        labels: {}
-        # clusterIP: ""
+  # -- Path of the health check endpoint. All requests received on the port defined by
+  # the healthz-port parameter are forwarded internally to this path.
+  healthCheckPath: "/healthz"
 
-        # -- List of IP addresses at which the controller services are available
-        ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
-        ##
-        externalIPs: []
-        # -- Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
-        loadBalancerIP: ""
-        loadBalancerSourceRanges: []
-        enableHttp: true
-        enableHttps: true
-        ## Set external traffic policy to: "Local" to preserve source IP on providers supporting it.
-        ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
-        # externalTrafficPolicy: ""
+  # -- Address to bind the health check endpoint.
+  # It is better to set this option to the internal node address
+  # if the ingress nginx controller is running in the `hostNetwork: true` mode.
+  healthCheckHost: ""
 
-        ## Must be either "None" or "ClientIP" if set. Kubernetes will default to "None".
-        ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
-        # sessionAffinity: ""
+  # -- Annotations to be added to controller pods
+  ##
+  podAnnotations: {}
 
-        ## Specifies the health check node port (numeric port number) for the service. If healthCheckNodePort isn’t specified,
-        ## the service controller allocates a port from your cluster’s NodePort range.
-        ## Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
-        # healthCheckNodePort: 0
+  replicaCount: 1
 
-        # -- Represents the dual-stack-ness requested or required by this Service. Possible values are
-        # SingleStack, PreferDualStack or RequireDualStack.
-        # The ipFamilies and clusterIPs fields depend on the value of this field.
-        ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
-        ipFamilyPolicy: "SingleStack"
-        # -- List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically
-        # based on cluster configuration and the ipFamilyPolicy field.
-        ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
-        ipFamilies:
-            - IPv4
-        ports:
-            http: 80
-            https: 443
-        targetPorts:
-            http: http
-            https: https
-        type: LoadBalancer
-        ## type: NodePort
-        ## nodePorts:
-        ##   http: 32080
-        ##   https: 32443
-        ##   tcp:
-        ##     8080: 32808
-        nodePorts:
-            http: ""
-            https: ""
-            tcp: {}
-            udp: {}
-        external:
-            enabled: true
-        internal:
-            # -- Enables an additional internal load balancer (besides the external one).
-            enabled: false
-            # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service.
-            annotations: {}
-            # loadBalancerIP: ""
+  # -- Define either 'minAvailable' or 'maxUnavailable', never both.
+  minAvailable: 1
+  # -- Define either 'minAvailable' or 'maxUnavailable', never both.
+  # maxUnavailable: 1
 
-            # -- Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.
-            loadBalancerSourceRanges: []
-            ## Set external traffic policy to: "Local" to preserve source IP on
-            ## providers supporting it
-            ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
-            # externalTrafficPolicy: ""
-    # shareProcessNamespace enables process namespace sharing within the pod.
-    # This can be used for example to signal log rotation using `kill -USR1` from a sidecar.
-    shareProcessNamespace: false
-    # -- Additional containers to be added to the controller pod.
-    # See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example.
-    extraContainers: []
-    #  - name: my-sidecar
-    #    image: nginx:latest
-    #  - name: lemonldap-ng-controller
-    #    image: lemonldapng/lemonldap-ng-controller:0.2.0
-    #    args:
-    #      - /lemonldap-ng-controller
-    #      - --alsologtostderr
-    #      - --configmap=$(POD_NAMESPACE)/lemonldap-ng-configuration
-    #    env:
-    #      - name: POD_NAME
-    #        valueFrom:
-    #          fieldRef:
-    #            fieldPath: metadata.name
-    #      - name: POD_NAMESPACE
-    #        valueFrom:
-    #          fieldRef:
-    #            fieldPath: metadata.namespace
-    #    volumeMounts:
-    #    - name: copy-portal-skins
-    #      mountPath: /srv/var/lib/lemonldap-ng/portal/skins
+  ## Define requests resources to avoid probe issues due to CPU utilization in busy nodes
+  ## ref: https://github.com/kubernetes/ingress-nginx/issues/4735#issuecomment-551204903
+  ## Ideally, there should be no limits.
+  ## https://engineering.indeedblog.com/blog/2019/12/cpu-throttling-regression-fix/
+  resources:
+  ##  limits:
+  ##    cpu: 100m
+  ##    memory: 90Mi
+    requests:
+      cpu: 100m
+      memory: 90Mi
 
-    # -- Additional volumeMounts to the controller main container.
-    extraVolumeMounts: []
-    #  - name: copy-portal-skins
-    #   mountPath: /var/lib/lemonldap-ng/portal/skins
-
-    # -- Additional volumes to the controller pod.
-    extraVolumes: []
-    #  - name: copy-portal-skins
-    #    emptyDir: {}
-
-    # -- Containers, which are run before the app containers are started.
-    extraInitContainers: []
-    # - name: init-myservice
-    #   image: busybox
-    #   command: ['sh', '-c', 'until nslookup myservice; do echo waiting for myservice; sleep 2; done;']
-
-    # -- Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module
-    extraModules: []
-    #   containerSecurityContext:
-    #     allowPrivilegeEscalation: false
-    #
-    # The image must contain a `/usr/local/bin/init_module.sh` executable, which
-    # will be executed as initContainers, to move its config files within the
-    # mounted volume.
-
-    opentelemetry:
-        enabled: false
-        image: registry.k8s.io/ingress-nginx/opentelemetry:v20221114-controller-v1.5.1-6-ga66ee73c5@sha256:41076fd9fb4255677c1a3da1ac3fc41477f06eba3c7ebf37ffc8f734dad51d7c
-        containerSecurityContext:
-            allowPrivilegeEscalation: false
-    admissionWebhooks:
-        annotations: {}
-        # ignore-check.kube-linter.io/no-read-only-rootfs: "This deployment needs write access to root filesystem".
-
-        ## Additional annotations to the admission webhooks.
-        ## These annotations will be added to the ValidatingWebhookConfiguration and
-        ## the Jobs Spec of the admission webhooks.
-        enabled: true
-        # -- Additional environment variables to set
-        extraEnvs: []
-        # extraEnvs:
-        #   - name: FOO
-        #     valueFrom:
-        #       secretKeyRef:
-        #         key: FOO
-        #         name: secret-resource
-        # -- Admission Webhook failure policy to use
-        failurePolicy: Fail
-        # timeoutSeconds: 10
-        port: 8443
-        certificate: "/usr/local/certificates/cert"
-        key: "/usr/local/certificates/key"
-        namespaceSelector: {}
-        objectSelector: {}
-        # -- Labels to be added to admission webhooks
-        labels: {}
-        # -- Use an existing PSP instead of creating one
-        existingPsp: ""
-        networkPolicyEnabled: false
-        service:
-            annotations: {}
-            # clusterIP: ""
-            externalIPs: []
-            # loadBalancerIP: ""
-            loadBalancerSourceRanges: []
-            servicePort: 443
-            type: ClusterIP
-        createSecretJob:
-            securityContext:
-                allowPrivilegeEscalation: false
-            resources: {}
-            # limits:
-            #   cpu: 10m
-            #   memory: 20Mi
-            # requests:
-            #   cpu: 10m
-            #   memory: 20Mi
-        patchWebhookJob:
-            securityContext:
-                allowPrivilegeEscalation: false
-            resources: {}
-        patch:
-            enabled: true
-            image:
-                registry: registry.k8s.io
-                image: ingress-nginx/kube-webhook-certgen
-                ## for backwards compatibility consider setting the full image url via the repository value below
-                ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-                ## repository:
-                tag: v20220916-gd32f8c343
-                digest: sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
-                pullPolicy: IfNotPresent
-            # -- Provide a priority class name to the webhook patching job
-            ##
-            priorityClassName: ""
-            podAnnotations: {}
-            nodeSelector:
-                kubernetes.io/os: linux
-            tolerations: []
-            # -- Labels to be added to patch job resources
-            labels: {}
-            securityContext:
-                runAsNonRoot: true
-                runAsUser: 2000
-                fsGroup: 2000
-        # Use certmanager to generate webhook certs
-        certManager:
-            enabled: false
-            # self-signed root certificate
-            rootCert:
-                # default to be 5y
-                duration: ""
-            admissionCert:
-                # default to be 1y
-                duration: ""
-                # issuerRef:
-                #   name: "issuer"
-                #   kind: "ClusterIssuer"
-    metrics:
-        port: 10254
-        portName: metrics
-        # if this port is changed, change healthz-port: in extraArgs: accordingly
-        enabled: false
-        service:
-            annotations: {}
-            # prometheus.io/scrape: "true"
-            # prometheus.io/port: "10254"
-
-            # clusterIP: ""
-
-            # -- List of IP addresses at which the stats-exporter service is available
-            ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
-            ##
-            externalIPs: []
-            # loadBalancerIP: ""
-            loadBalancerSourceRanges: []
-            servicePort: 10254
-            type: ClusterIP
-            # externalTrafficPolicy: ""
-            # nodePort: ""
-        serviceMonitor:
-            enabled: false
-            additionalLabels: {}
-            ## The label to use to retrieve the job name from.
-            ## jobLabel: "app.kubernetes.io/name"
-            namespace: ""
-            namespaceSelector: {}
-            ## Default: scrape .Release.Namespace only
-            ## To scrape all, use the following:
-            ## namespaceSelector:
-            ##   any: true
-            scrapeInterval: 30s
-            # honorLabels: true
-            targetLabels: []
-            relabelings: []
-            metricRelabelings: []
-        prometheusRule:
-            enabled: false
-            additionalLabels: {}
-            # namespace: ""
-            rules: []
-            # # These are just examples rules, please adapt them to your needs
-            # - alert: NGINXConfigFailed
-            #   expr: count(nginx_ingress_controller_config_last_reload_successful == 0) > 0
-            #   for: 1s
-            #   labels:
-            #     severity: critical
-            #   annotations:
-            #     description: bad ingress config - nginx config test failed
-            #     summary: uninstall the latest ingress changes to allow config reloads to resume
-            # - alert: NGINXCertificateExpiry
-            #   expr: (avg(nginx_ingress_controller_ssl_expire_time_seconds) by (host) - time()) < 604800
-            #   for: 1s
-            #   labels:
-            #     severity: critical
-            #   annotations:
-            #     description: ssl certificate(s) will expire in less then a week
-            #     summary: renew expiring certificates to avoid downtime
-            # - alert: NGINXTooMany500s
-            #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"5.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
-            #   for: 1m
-            #   labels:
-            #     severity: warning
-            #   annotations:
-            #     description: Too many 5XXs
-            #     summary: More than 5% of all requests returned 5XX, this requires your attention
-            # - alert: NGINXTooMany400s
-            #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"4.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
-            #   for: 1m
-            #   labels:
-            #     severity: warning
-            #   annotations:
-            #     description: Too many 4XXs
-            #     summary: More than 5% of all requests returned 4XX, this requires your attention
-    # -- Improve connection draining when ingress controller pod is deleted using a lifecycle hook:
-    # With this new hook, we increased the default terminationGracePeriodSeconds from 30 seconds
-    # to 300, allowing the draining of connections up to five minutes.
-    # If the active connections end before that, the pod will terminate gracefully at that time.
-    # To effectively take advantage of this feature, the Configmap feature
-    # worker-shutdown-timeout new value is 240s instead of 10s.
-    ##
-    lifecycle:
-        preStop:
-            exec:
-                command:
-                    - /wait-shutdown
-    priorityClassName: ""
-# -- Rollback limit
-##
-revisionHistoryLimit: 10
-## Default 404 backend
-##
-defaultBackend:
-    ##
+  # Mutually exclusive with keda autoscaling
+  autoscaling:
+    apiVersion: autoscaling/v2
     enabled: false
-    name: defaultbackend
-    image:
+    annotations: {}
+    minReplicas: 1
+    maxReplicas: 11
+    targetCPUUtilizationPercentage: 50
+    targetMemoryUtilizationPercentage: 50
+    behavior: {}
+      # scaleDown:
+      #   stabilizationWindowSeconds: 300
+      #   policies:
+      #   - type: Pods
+      #     value: 1
+      #     periodSeconds: 180
+      # scaleUp:
+      #   stabilizationWindowSeconds: 300
+      #   policies:
+      #   - type: Pods
+      #     value: 2
+      #     periodSeconds: 60
+
+  autoscalingTemplate: []
+  # Custom or additional autoscaling metrics
+  # ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/#support-for-custom-metrics
+  # - type: Pods
+  #   pods:
+  #     metric:
+  #       name: nginx_ingress_controller_nginx_process_requests_total
+  #     target:
+  #       type: AverageValue
+  #       averageValue: 10000m
+
+  # Mutually exclusive with hpa autoscaling
+  keda:
+    apiVersion: "keda.sh/v1alpha1"
+    ## apiVersion changes with keda 1.x vs 2.x
+    ## 2.x = keda.sh/v1alpha1
+    ## 1.x = keda.k8s.io/v1alpha1
+    enabled: false
+    minReplicas: 1
+    maxReplicas: 11
+    pollingInterval: 30
+    cooldownPeriod: 300
+    restoreToOriginalReplicaCount: false
+    scaledObject:
+      annotations: {}
+      # Custom annotations for ScaledObject resource
+      #  annotations:
+      # key: value
+    triggers: []
+ #     - type: prometheus
+ #       metadata:
+ #         serverAddress: http://<prometheus-host>:9090
+ #         metricName: http_requests_total
+ #         threshold: '100'
+ #         query: sum(rate(http_requests_total{deployment="my-deployment"}[2m]))
+
+    behavior: {}
+ #     scaleDown:
+ #       stabilizationWindowSeconds: 300
+ #       policies:
+ #       - type: Pods
+ #         value: 1
+ #         periodSeconds: 180
+ #     scaleUp:
+ #       stabilizationWindowSeconds: 300
+ #       policies:
+ #       - type: Pods
+ #         value: 2
+ #         periodSeconds: 60
+
+  # -- Enable mimalloc as a drop-in replacement for malloc.
+  ## ref: https://github.com/microsoft/mimalloc
+  ##
+  enableMimalloc: true
+
+  ## Override NGINX template
+  customTemplate:
+    configMapName: ""
+    configMapKey: ""
+
+  service:
+    enabled: true
+
+    # -- If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were
+    # using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http
+    # It allows choosing the protocol for each backend specified in the Kubernetes service.
+    # See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244
+    # Will be ignored for Kubernetes versions older than 1.20
+    ##
+    appProtocol: true
+
+    annotations: {}
+    labels: {}
+    # clusterIP: ""
+
+    # -- List of IP addresses at which the controller services are available
+    ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+    ##
+    externalIPs: []
+
+    # -- Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
+    loadBalancerIP: ""
+    loadBalancerSourceRanges: []
+
+    enableHttp: true
+    enableHttps: true
+
+    ## Set external traffic policy to: "Local" to preserve source IP on providers supporting it.
+    ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
+    # externalTrafficPolicy: ""
+
+    ## Must be either "None" or "ClientIP" if set. Kubernetes will default to "None".
+    ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
+    # sessionAffinity: ""
+
+    ## Specifies the health check node port (numeric port number) for the service. If healthCheckNodePort isn’t specified,
+    ## the service controller allocates a port from your cluster’s NodePort range.
+    ## Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
+    # healthCheckNodePort: 0
+
+    # -- Represents the dual-stack-ness requested or required by this Service. Possible values are
+    # SingleStack, PreferDualStack or RequireDualStack.
+    # The ipFamilies and clusterIPs fields depend on the value of this field.
+    ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
+    ipFamilyPolicy: "SingleStack"
+
+    # -- List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically
+    # based on cluster configuration and the ipFamilyPolicy field.
+    ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
+    ipFamilies:
+      - IPv4
+
+    ports:
+      http: 80
+      https: 443
+
+    targetPorts:
+      http: http
+      https: https
+
+    type: LoadBalancer
+
+    ## type: NodePort
+    ## nodePorts:
+    ##   http: 32080
+    ##   https: 32443
+    ##   tcp:
+    ##     8080: 32808
+    nodePorts:
+      http: ""
+      https: ""
+      tcp: {}
+      udp: {}
+
+    external:
+      enabled: true
+
+    internal:
+      # -- Enables an additional internal load balancer (besides the external one).
+      enabled: false
+      # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service.
+      annotations: {}
+
+      # loadBalancerIP: ""
+
+      # -- Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.
+      loadBalancerSourceRanges: []
+
+      ## Set external traffic policy to: "Local" to preserve source IP on
+      ## providers supporting it
+      ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
+      # externalTrafficPolicy: ""
+
+  # shareProcessNamespace enables process namespace sharing within the pod.
+  # This can be used for example to signal log rotation using `kill -USR1` from a sidecar.
+  shareProcessNamespace: false
+
+  # -- Additional containers to be added to the controller pod.
+  # See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example.
+  extraContainers: []
+  #  - name: my-sidecar
+  #    image: nginx:latest
+  #  - name: lemonldap-ng-controller
+  #    image: lemonldapng/lemonldap-ng-controller:0.2.0
+  #    args:
+  #      - /lemonldap-ng-controller
+  #      - --alsologtostderr
+  #      - --configmap=$(POD_NAMESPACE)/lemonldap-ng-configuration
+  #    env:
+  #      - name: POD_NAME
+  #        valueFrom:
+  #          fieldRef:
+  #            fieldPath: metadata.name
+  #      - name: POD_NAMESPACE
+  #        valueFrom:
+  #          fieldRef:
+  #            fieldPath: metadata.namespace
+  #    volumeMounts:
+  #    - name: copy-portal-skins
+  #      mountPath: /srv/var/lib/lemonldap-ng/portal/skins
+
+  # -- Additional volumeMounts to the controller main container.
+  extraVolumeMounts: []
+  #  - name: copy-portal-skins
+  #   mountPath: /var/lib/lemonldap-ng/portal/skins
+
+  # -- Additional volumes to the controller pod.
+  extraVolumes: []
+  #  - name: copy-portal-skins
+  #    emptyDir: {}
+
+  # -- Containers, which are run before the app containers are started.
+  extraInitContainers: []
+  # - name: init-myservice
+  #   image: busybox
+  #   command: ['sh', '-c', 'until nslookup myservice; do echo waiting for myservice; sleep 2; done;']
+
+  # -- Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module
+  extraModules: []
+  #   containerSecurityContext:
+  #     allowPrivilegeEscalation: false
+  #
+  # The image must contain a `/usr/local/bin/init_module.sh` executable, which
+  # will be executed as initContainers, to move its config files within the
+  # mounted volume.
+
+  opentelemetry:
+    enabled: false
+    image: registry.k8s.io/ingress-nginx/opentelemetry:v20221114-controller-v1.5.1-6-ga66ee73c5@sha256:41076fd9fb4255677c1a3da1ac3fc41477f06eba3c7ebf37ffc8f734dad51d7c
+    containerSecurityContext:
+      allowPrivilegeEscalation: false
+
+  admissionWebhooks:
+    annotations: {}
+    # ignore-check.kube-linter.io/no-read-only-rootfs: "This deployment needs write access to root filesystem".
+
+    ## Additional annotations to the admission webhooks.
+    ## These annotations will be added to the ValidatingWebhookConfiguration and
+    ## the Jobs Spec of the admission webhooks.
+    enabled: true
+    # -- Additional environment variables to set
+    extraEnvs: []
+    # extraEnvs:
+    #   - name: FOO
+    #     valueFrom:
+    #       secretKeyRef:
+    #         key: FOO
+    #         name: secret-resource
+    # -- Admission Webhook failure policy to use
+    failurePolicy: Fail
+    # timeoutSeconds: 10
+    port: 8443
+    certificate: "/usr/local/certificates/cert"
+    key: "/usr/local/certificates/key"
+    namespaceSelector: {}
+    objectSelector: {}
+    # -- Labels to be added to admission webhooks
+    labels: {}
+
+    # -- Use an existing PSP instead of creating one
+    existingPsp: ""
+    networkPolicyEnabled: false
+
+    service:
+      annotations: {}
+      # clusterIP: ""
+      externalIPs: []
+      # loadBalancerIP: ""
+      loadBalancerSourceRanges: []
+      servicePort: 443
+      type: ClusterIP
+
+    createSecretJob:
+      securityContext:
+        allowPrivilegeEscalation: false
+      resources: {}
+        # limits:
+        #   cpu: 10m
+        #   memory: 20Mi
+        # requests:
+        #   cpu: 10m
+        #   memory: 20Mi
+
+    patchWebhookJob:
+      securityContext:
+        allowPrivilegeEscalation: false
+      resources: {}
+
+    patch:
+      enabled: true
+      image:
         registry: registry.k8s.io
-        image: defaultbackend-amd64
+        image: ingress-nginx/kube-webhook-certgen
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
         ## repository:
-        tag: "1.5"
+        tag: v20220916-gd32f8c343
+        digest: sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
         pullPolicy: IfNotPresent
-        # nobody user -> uid 65534
-        runAsUser: 65534
-        runAsNonRoot: true
-        readOnlyRootFilesystem: true
-        allowPrivilegeEscalation: false
-    # -- Use an existing PSP instead of creating one
-    existingPsp: ""
-    extraArgs: {}
-    serviceAccount:
-        create: true
-        name: ""
-        automountServiceAccountToken: true
-    # -- Additional environment variables to set for defaultBackend pods
-    extraEnvs: []
-    port: 8080
-    ## Readiness and liveness probes for default backend
-    ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/
-    ##
-    livenessProbe:
-        failureThreshold: 3
-        initialDelaySeconds: 30
-        periodSeconds: 10
-        successThreshold: 1
-        timeoutSeconds: 5
-    readinessProbe:
-        failureThreshold: 6
-        initialDelaySeconds: 0
-        periodSeconds: 5
-        successThreshold: 1
-        timeoutSeconds: 5
-    # -- Node tolerations for server scheduling to nodes with taints
-    ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
-    ##
-    tolerations: []
-    #  - key: "key"
-    #    operator: "Equal|Exists"
-    #    value: "value"
-    #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
-
-    affinity: {}
-    # -- Security Context policies for controller pods
-    # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
-    # notes on enabling and using sysctls
-    ##
-    podSecurityContext: {}
-    # -- Security Context policies for controller main container.
-    # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
-    # notes on enabling and using sysctls
-    ##
-    containerSecurityContext: {}
-    # -- Labels to add to the pod container metadata
-    podLabels: {}
-    #  key: value
-
-    # -- Node labels for default backend pod assignment
-    ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
-    ##
-    nodeSelector:
+      # -- Provide a priority class name to the webhook patching job
+      ##
+      priorityClassName: ""
+      podAnnotations: {}
+      nodeSelector:
         kubernetes.io/os: linux
-    # -- Annotations to be added to default backend pods
-    ##
-    podAnnotations: {}
-    replicaCount: 1
-    minAvailable: 1
-    resources: {}
-    # limits:
-    #   cpu: 10m
-    #   memory: 20Mi
-    # requests:
-    #   cpu: 10m
-    #   memory: 20Mi
+      tolerations: []
+      # -- Labels to be added to patch job resources
+      labels: {}
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+        fsGroup: 2000
 
-    extraVolumeMounts: []
-    ## Additional volumeMounts to the default backend container.
-    #  - name: copy-portal-skins
-    #   mountPath: /var/lib/lemonldap-ng/portal/skins
+    # Use certmanager to generate webhook certs
+    certManager:
+      enabled: false
+      # self-signed root certificate
+      rootCert:
+        duration: ""  # default to be 5y
+      admissionCert:
+        duration: ""  # default to be 1y
+      # issuerRef:
+      #   name: "issuer"
+      #   kind: "ClusterIssuer"
 
-    extraVolumes: []
-    ## Additional volumes to the default backend pod.
-    #  - name: copy-portal-skins
-    #    emptyDir: {}
-
-    autoscaling:
-        annotations: {}
-        enabled: false
-        minReplicas: 1
-        maxReplicas: 2
-        targetCPUUtilizationPercentage: 50
-        targetMemoryUtilizationPercentage: 50
-    service:
-        annotations: {}
-        # clusterIP: ""
-
-        # -- List of IP addresses at which the default backend service is available
-        ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
-        ##
-        externalIPs: []
-        # loadBalancerIP: ""
-        loadBalancerSourceRanges: []
-        servicePort: 80
-        type: ClusterIP
-    priorityClassName: ""
-    # -- Labels to be added to the default backend resources
-    labels: {}
-## Enable RBAC as per https://github.com/kubernetes/ingress-nginx/blob/main/docs/deploy/rbac.md and https://github.com/kubernetes/ingress-nginx/issues/266
-rbac:
-    create: true
-    scope: false
-## If true, create & use Pod Security Policy resources
-## https://kubernetes.io/docs/concepts/policy/pod-security-policy/
-podSecurityPolicy:
+  metrics:
+    port: 10254
+    portName: metrics
+    # if this port is changed, change healthz-port: in extraArgs: accordingly
     enabled: false
-serviceAccount:
+
+    service:
+      annotations: {}
+      # prometheus.io/scrape: "true"
+      # prometheus.io/port: "10254"
+
+      # clusterIP: ""
+
+      # -- List of IP addresses at which the stats-exporter service is available
+      ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+      ##
+      externalIPs: []
+
+      # loadBalancerIP: ""
+      loadBalancerSourceRanges: []
+      servicePort: 10254
+      type: ClusterIP
+      # externalTrafficPolicy: ""
+      # nodePort: ""
+
+    serviceMonitor:
+      enabled: false
+      additionalLabels: {}
+      ## The label to use to retrieve the job name from.
+      ## jobLabel: "app.kubernetes.io/name"
+      namespace: ""
+      namespaceSelector: {}
+      ## Default: scrape .Release.Namespace only
+      ## To scrape all, use the following:
+      ## namespaceSelector:
+      ##   any: true
+      scrapeInterval: 30s
+      # honorLabels: true
+      targetLabels: []
+      relabelings: []
+      metricRelabelings: []
+
+    prometheusRule:
+      enabled: false
+      additionalLabels: {}
+      # namespace: ""
+      rules: []
+        # # These are just examples rules, please adapt them to your needs
+        # - alert: NGINXConfigFailed
+        #   expr: count(nginx_ingress_controller_config_last_reload_successful == 0) > 0
+        #   for: 1s
+        #   labels:
+        #     severity: critical
+        #   annotations:
+        #     description: bad ingress config - nginx config test failed
+        #     summary: uninstall the latest ingress changes to allow config reloads to resume
+        # - alert: NGINXCertificateExpiry
+        #   expr: (avg(nginx_ingress_controller_ssl_expire_time_seconds) by (host) - time()) < 604800
+        #   for: 1s
+        #   labels:
+        #     severity: critical
+        #   annotations:
+        #     description: ssl certificate(s) will expire in less then a week
+        #     summary: renew expiring certificates to avoid downtime
+        # - alert: NGINXTooMany500s
+        #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"5.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
+        #   for: 1m
+        #   labels:
+        #     severity: warning
+        #   annotations:
+        #     description: Too many 5XXs
+        #     summary: More than 5% of all requests returned 5XX, this requires your attention
+        # - alert: NGINXTooMany400s
+        #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"4.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
+        #   for: 1m
+        #   labels:
+        #     severity: warning
+        #   annotations:
+        #     description: Too many 4XXs
+        #     summary: More than 5% of all requests returned 4XX, this requires your attention
+
+  # -- Improve connection draining when ingress controller pod is deleted using a lifecycle hook:
+  # With this new hook, we increased the default terminationGracePeriodSeconds from 30 seconds
+  # to 300, allowing the draining of connections up to five minutes.
+  # If the active connections end before that, the pod will terminate gracefully at that time.
+  # To effectively take advantage of this feature, the Configmap feature
+  # worker-shutdown-timeout new value is 240s instead of 10s.
+  ##
+  lifecycle:
+    preStop:
+      exec:
+        command:
+          - /wait-shutdown
+
+  priorityClassName: ""
+
+# -- Rollback limit
+##
+revisionHistoryLimit: 10
+
+## Default 404 backend
+##
+defaultBackend:
+  ##
+  enabled: false
+
+  name: defaultbackend
+  image:
+    registry: registry.k8s.io
+    image: defaultbackend-amd64
+    ## for backwards compatibility consider setting the full image url via the repository value below
+    ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+    ## repository:
+    tag: "1.5"
+    pullPolicy: IfNotPresent
+    # nobody user -> uid 65534
+    runAsUser: 65534
+    runAsNonRoot: true
+    readOnlyRootFilesystem: true
+    allowPrivilegeEscalation: false
+
+  # -- Use an existing PSP instead of creating one
+  existingPsp: ""
+
+  extraArgs: {}
+
+  serviceAccount:
     create: true
     name: ""
     automountServiceAccountToken: true
-    # -- Annotations for the controller service account
+  # -- Additional environment variables to set for defaultBackend pods
+  extraEnvs: []
+
+  port: 8080
+
+  ## Readiness and liveness probes for default backend
+  ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/
+  ##
+  livenessProbe:
+    failureThreshold: 3
+    initialDelaySeconds: 30
+    periodSeconds: 10
+    successThreshold: 1
+    timeoutSeconds: 5
+  readinessProbe:
+    failureThreshold: 6
+    initialDelaySeconds: 0
+    periodSeconds: 5
+    successThreshold: 1
+    timeoutSeconds: 5
+
+  # -- Node tolerations for server scheduling to nodes with taints
+  ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
+  ##
+  tolerations: []
+  #  - key: "key"
+  #    operator: "Equal|Exists"
+  #    value: "value"
+  #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
+
+  affinity: {}
+
+  # -- Security Context policies for controller pods
+  # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
+  # notes on enabling and using sysctls
+  ##
+  podSecurityContext: {}
+
+  # -- Security Context policies for controller main container.
+  # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
+  # notes on enabling and using sysctls
+  ##
+  containerSecurityContext: {}
+
+  # -- Labels to add to the pod container metadata
+  podLabels: {}
+  #  key: value
+
+  # -- Node labels for default backend pod assignment
+  ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
+  ##
+  nodeSelector:
+    kubernetes.io/os: linux
+
+  # -- Annotations to be added to default backend pods
+  ##
+  podAnnotations: {}
+
+  replicaCount: 1
+
+  minAvailable: 1
+
+  resources: {}
+  # limits:
+  #   cpu: 10m
+  #   memory: 20Mi
+  # requests:
+  #   cpu: 10m
+  #   memory: 20Mi
+
+  extraVolumeMounts: []
+  ## Additional volumeMounts to the default backend container.
+  #  - name: copy-portal-skins
+  #   mountPath: /var/lib/lemonldap-ng/portal/skins
+
+  extraVolumes: []
+  ## Additional volumes to the default backend pod.
+  #  - name: copy-portal-skins
+  #    emptyDir: {}
+
+  autoscaling:
     annotations: {}
+    enabled: false
+    minReplicas: 1
+    maxReplicas: 2
+    targetCPUUtilizationPercentage: 50
+    targetMemoryUtilizationPercentage: 50
+
+  service:
+    annotations: {}
+
+    # clusterIP: ""
+
+    # -- List of IP addresses at which the default backend service is available
+    ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+    ##
+    externalIPs: []
+
+    # loadBalancerIP: ""
+    loadBalancerSourceRanges: []
+    servicePort: 80
+    type: ClusterIP
+
+  priorityClassName: ""
+  # -- Labels to be added to the default backend resources
+  labels: {}
+
+## Enable RBAC as per https://github.com/kubernetes/ingress-nginx/blob/main/docs/deploy/rbac.md and https://github.com/kubernetes/ingress-nginx/issues/266
+rbac:
+  create: true
+  scope: false
+
+## If true, create & use Pod Security Policy resources
+## https://kubernetes.io/docs/concepts/policy/pod-security-policy/
+podSecurityPolicy:
+  enabled: false
+
+serviceAccount:
+  create: true
+  name: ""
+  automountServiceAccountToken: true
+  # -- Annotations for the controller service account
+  annotations: {}
+
 # -- Optional array of imagePullSecrets containing private registry credentials
 ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
 imagePullSecrets: []
@@ -868,6 +964,7 @@ udp: {}
 # -- Prefix for TCP and UDP ports names in ingress controller service
 ## Some cloud providers, like Yandex Cloud may have a requirements for a port name regex to support cloud load balancer integration
 portNamePrefix: ""
+
 # -- (string) A base64-encoded Diffie-Hellman parameter.
 # This can be generated with: `openssl dhparam 4096 2> /dev/null | base64`
 ## Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 54d315b50..fbdf9486a 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,6 +90,21 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-nginx-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -129,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +359,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +392,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +415,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -440,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -512,7 +527,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -523,7 +538,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -559,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -570,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -608,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -621,7 +636,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 819de9079..73ec24286 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,6 +90,21 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-nginx-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -129,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +368,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +401,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +424,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -449,7 +464,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +539,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +550,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,7 +586,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +597,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -620,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -633,7 +648,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 73aec6dc9..9e6e905bb 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,6 +90,21 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-nginx-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -129,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +355,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +387,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +410,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -434,7 +449,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -506,7 +521,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -517,7 +532,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -553,7 +568,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -564,7 +579,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -602,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -615,7 +630,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 19455ed27..dd986a55d 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,6 +90,21 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-nginx-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -129,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +355,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +388,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +411,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -436,7 +451,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -508,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -519,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -555,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -566,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -604,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -617,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 3c4a022c3..64e0366b4 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,6 +90,21 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-nginx-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -129,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +358,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +391,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +414,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -439,7 +454,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -511,7 +526,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -522,7 +537,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -558,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -569,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -607,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -620,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 084fcd897..d6a40aed9 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,6 +90,21 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-nginx-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -129,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +364,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +397,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +420,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -445,7 +460,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +532,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +543,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -564,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +590,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -613,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -626,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 355ca8054..62ead9e34 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,6 +90,21 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-nginx-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -129,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +355,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +387,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +410,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -440,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -522,7 +537,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -533,7 +548,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -569,7 +584,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -580,7 +595,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -618,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -631,7 +646,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index ff8b820b3..d52f01489 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,6 +90,21 @@ rules:
   - get
   - list
   - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-nginx-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -129,7 +144,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +163,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +245,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +264,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +284,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +303,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +322,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +358,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +391,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +414,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -439,7 +454,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -511,7 +526,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -522,7 +537,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -558,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -569,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.2
+        app.kubernetes.io/version: 1.5.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -607,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -620,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.2
+    app.kubernetes.io/version: 1.5.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 71a27b15f..29495b5c0 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -62,7 +62,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -225,7 +225,7 @@ In AWS, we use a Network load balancer (NLB) to expose the NGINX Ingress control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -233,10 +233,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -282,7 +282,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -299,7 +299,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -307,7 +307,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -315,7 +315,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -330,7 +330,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -357,7 +357,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.2/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index f943a96a6..d5aa6cc16 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -7,651 +7,11 @@ Do not try to edit it manually.
 
 
 
-### [[Serial] admission controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L35)
-
-- [reject ingress with global-rate-limit annotations when memcached is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L48)
-- [should not allow overlaps of host and paths without canary annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L75)
-- [should allow overlaps of host and paths with canary annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L92)
-- [should block ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L113)
-- [should return an error if there is an error validating the ingress definition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L130)
-- [should return an error if there is an invalid value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L141)
-- [should return an error if there is a forbidden value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L155)
-- [should not return an error if the Ingress V1 definition is valid with Ingress Class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L169)
-- [should not return an error if the Ingress V1 definition is valid with IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L185)
-- [should return an error if the Ingress V1 definition contains invalid annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L201)
-- [should not return an error for an invalid Ingress when it has unknown class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L212)
-
-### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L35)
-
-- [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L42)
-- [should change cookie name on ingress definition change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L64)
-- [should set the path to /something on the generated cookie](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L99)
-- [does not set the path to / on the generated cookie if there's more than one rule referring to the same backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L121)
-- [should set cookie with expires](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L194)
-- [should set cookie with domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L225)
-- [should not set cookie without domain annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L248)
-- [should work with use-regex annotation and session-cookie-path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L270)
-- [should warn user when use-regex is true and session-cookie-path is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L294)
-- [should not set affinity across all server locations when using separate ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L320)
-- [should set sticky cookie without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L352)
-- [should work with server-alias annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L372)
-- [should set secure in cookie with provided true annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L412)
-- [should not set secure in cookie with provided false annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L435)
-- [should set secure in cookie with provided false annotation on https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L458)
-
-### [affinitymode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L31)
-
-- [Balanced affinity mode should balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L34)
-- [Check persistent affinity mode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L67)
-
-### [server-alias](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L29)
-
-- [should return status code 200 for host 'foo' and 404 for 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L36)
-- [should return status code 200 for host 'foo' and 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L62)
-- [should return status code 200 for hosts defined in two ingresses, different path with one alias](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L87)
-
-### [app-root](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L28)
-
-- [should redirect to /foo](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L35)
-
-### [auth-tls-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L29)
-
-- [should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L36)
-- [should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L84)
-- [should 302 redirect to error page instead of 400 when auth-tls-error-page is set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L114)
-- [should pass URL-encoded certificate to upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L161)
-- [should validate auth-tls-verify-client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L206)
-- [should return 403 using auth-tls-match-cn with no matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L266)
-- [should return 200 using auth-tls-match-cn with matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L295)
-- [should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L324)
-
-### [backend-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L27)
-
-- [should set backend protocol to https:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L34)
-- [should set backend protocol to $scheme:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L49)
-- [should set backend protocol to grpc:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L64)
-- [should set backend protocol to grpcs:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L79)
-- [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L94)
-- [should set backend protocol to '' and use ajp_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L109)
-
-### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
-
-- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L48)
-- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L80)
-- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L107)
-- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L161)
-- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L206)
-- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L250)
-- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L307)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L372)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L426)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L490)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L532)
-- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L566)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L604)
-- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L643)
-- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L705)
-- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L743)
-- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L775)
-- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L808)
-- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L836)
-- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L864)
-- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L888)
-- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L916)
-- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L973)
-- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1031)
-
-### [client-body-buffer-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L28)
-
-- [should set client_body_buffer_size to 1000](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L35)
-- [should set client_body_buffer_size to 1K](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L57)
-- [should set client_body_buffer_size to 1k](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L79)
-- [should set client_body_buffer_size to 1m](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L101)
-- [should set client_body_buffer_size to 1M](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L123)
-- [should not set client_body_buffer_size to invalid 1b](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L145)
-
-### [connection-proxy-header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L29)
-
-- [set connection header to keep-alive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L36)
-
-### [cors-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L28)
-
-- [should enable cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L35)
-- [should set cors methods to only allow POST, GET](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L62)
-- [should set cors max-age](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L78)
-- [should disable cors allow credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L94)
-- [should allow origin for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L110)
-- [should allow headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L137)
-- [should expose headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L153)
-- [should allow - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L169)
-- [should not allow - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L196)
-- [should allow correct origins - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L216)
-- [should not break functionality](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L267)
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L291)
-- [should not break functionality with extra domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L314)
-- [should not match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L338)
-- [should allow - single origin with required port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L358)
-- [should not allow - single origin with port and origin without port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L386)
-- [should not allow - single origin without port and origin with required port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L405)
-- [should allow - matching origin with wildcard origin (2 subdomains)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L425)
-- [should not allow - unmatching origin with wildcard origin (2 subdomains)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L468)
-- [should allow - matching origin+port with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L488)
-- [should not allow - portless origin with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L515)
-- [should allow correct origins - missing subdomain + origin with wildcard origin and correct origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L535)
-- [should allow - missing origins (should allow all origins)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L571)
-
-### [custom-http-errors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L34)
-
-- [configures Nginx correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L41)
-
-### [default-backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L29)
-
-- [should use a custom default backend as upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L37)
-
-### [disable-access-log disable-http-access-log disable-stream-access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L28)
-
-- [disable-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L35)
-- [disable-http-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L53)
-- [disable-stream-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L71)
-
-### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L31)
-
-- [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L38)
-- [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L55)
-- [should add fastcgi_param in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L72)
-- [should return OK for service with backend protocol FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L105)
-
-### [force-ssl-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L27)
-
-- [should redirect to https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L34)
-
-### [from-to-www-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L31)
-
-- [should redirect from www HTTP to HTTP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L38)
-- [should redirect from www HTTPS to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L64)
-
-### [annotation-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L30)
-
-- [generates correct configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L38)
-
-### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L40)
-
-- [should use grpc_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L43)
-- [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L68)
-- [authorization metadata should be overwritten by external auth response headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L126)
-- [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L199)
-
-### [http2-push-preload](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L27)
-
-- [enable the http2-push-preload directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L34)
-
-### [influxdb-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/influxdb.go#L39)
-
-- [should send the request metric to the influxdb server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/influxdb.go#L48)
-
-### [whitelist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L27)
-
-- [should set valid ip whitelist range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L34)
-
-### [Annotation - limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L31)
-
-- [should limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L38)
-
-### [limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L29)
-
-- [Check limit-rate annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L37)
-
-### [enable-access-log enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L27)
-
-- [set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L34)
-- [set rewrite_log on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L49)
-
-### [mirror-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L28)
-
-- [should set mirror-target to http://localhost/mirror](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L36)
-- [should set mirror-target to https://test.env.com/$request_uri](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L51)
-- [should disable mirror-request-body](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L67)
-
-### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L28)
-
-- [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L35)
-- [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L53)
-- [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L74)
-- [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L91)
-- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L110)
-- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L132)
-- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L153)
-- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L189)
-- [should enable modsecurity when enable-owasp-modsecurity-crs is set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L225)
-- [should enable modsecurity through the config map](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L264)
-- [should enable modsecurity through the config map but ignore snippet as disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L305)
-- [should disable default modsecurity conf setting when modsecurity-snippet is specified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L347)
-
-### [preserve-trailing-slash](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L27)
-
-- [should allow preservation of trailing slashes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L34)
-
-### [proxy-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L28)
-
-- [should set proxy_redirect to off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L36)
-- [should set proxy_redirect to default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L52)
-- [should set proxy_redirect to hello.com goodbye.com](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L68)
-- [should set proxy client-max-body-size to 8m](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L85)
-- [should not set proxy client-max-body-size to incorrect value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L100)
-- [should set valid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L115)
-- [should not set invalid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L136)
-- [should turn on proxy-buffering](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L157)
-- [should turn off proxy-request-buffering](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L179)
-- [should build proxy next upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L194)
-- [should setup proxy cookies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L215)
-- [should change the default proxy HTTP version](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L233)
-
-### [proxy-ssl-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L30)
-
-- [should set valid proxy-ssl-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L37)
-- [should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L64)
-- [should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L94)
-- [should set valid proxy-ssl-secret, proxy-ssl-protocols](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L122)
-- [proxy-ssl-location-only flag should change the nginx config server part](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L150)
-
-### [permanent-redirect permanent-redirect-code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L30)
-
-- [should respond with a standard redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L33)
-- [should respond with a custom redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L61)
-
-### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L30)
-
-- [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L37)
-- [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L66)
-- [should use ~* location modifier if regex annotation is present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L111)
-- [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L158)
-- [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L190)
-
-### [satisfy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L35)
-
-- [should configure satisfy directive correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L42)
-- [should allow multiple auth with satisfy any](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L84)
-
-### [server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L28)
-
-- [add valid directives to server via server snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L35)
-- [drops server snippet if disabled by the administrator](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L61)
-
-### [service-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L32)
-
-- [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L41)
-- [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L70)
-- [should not use the Service Cluster IP and Port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L99)
-
-### [configuration-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L28)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L35)
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L58)
-
-### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L28)
-
-- [should change ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L35)
-
-### [stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L34)
-
-- [should add value of stream-snippet to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L41)
-- [should add stream-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L85)
-
-### [upstream-hash-by-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L76)
-
-- [should connect to the same pod](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L83)
-- [should connect to the same subset of pods](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L92)
-
-### [upstream-vhost](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L27)
-
-- [set host to upstreamvhost.bar.com](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L34)
-
-### [x-forwarded-prefix](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L28)
-
-- [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L35)
-- [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L57)
-
-### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L39)
-
-- [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L46)
-- [should return status code 503 when authentication is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L65)
-- [should return status code 401 when authentication is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L89)
-- [should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L116)
-- [should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L144)
-- [should return status code 200 when authentication is configured and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L172)
-- [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L199)
-- [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L227)
-- [ when external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L266)
-- [ when external auth is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L284)
-- [ when auth-headers are set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L301)
-- [should set cache_key when external auth cache is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L322)
-- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L411)
-- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L422)
-- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L433)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L485)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L494)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L505)
-- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L529)
-- [should not create additional upstream block when auth-keepalive is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L552)
-- [should not create additional upstream block when host part of auth-url contains a variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L570)
-- [should not create additional upstream block when auth-keepalive is negative](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L590)
-- [should not create additional upstream block when auth-keepalive is set with HTTP/2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L609)
-- [should create additional upstream block when auth-keepalive is set with HTTP/1.x](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L623)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L678)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L687)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L698)
-- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L772)
-- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L792)
-- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L820)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L849)
-- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L879)
-- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L887)
-
-### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L29)
-
-- [should list the backend servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L37)
-- [should get information for a specific backend server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L56)
-- [should produce valid JSON for /dbg general](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L85)
-
-### [[Default Backend] custom service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L33)
-
-- [uses custom default backend that returns 200 as status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L36)
-
-### [[Default Backend]](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L30)
-
-- [should return 404 sending requests when only a default backend is running](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L33)
-- [enables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L88)
-- [disables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L105)
-
-### [[Default Backend] SSL](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L26)
-
-- [should return a self generated SSL certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L29)
-
-### [[Default Backend] change default settings](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L30)
-
-- [should apply the annotation to the default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L38)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
-
-### [[Endpointslices] long service name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L29)
-
-- [should return 200 when service name has max allowed number of characters 63](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L38)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
-
-### [[Setting] ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L190)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L206)
-- [ [MemoryLeak]](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L207)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/chain.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/chain.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/cookie.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/cookie.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/match.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/match.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/object.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/object.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/reporter.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/reporter.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/response.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/response.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/string.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/string.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/value.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/value.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/influxdb.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/influxdb.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/test_context.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/test_context.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
-
-### [[Shutdown] Grace period shutdown](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L32)
-
-- [/healthz should return status code 500 during shutdown grace period](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L35)
-
-### [[Shutdown] ingress controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L30)
-
-- [should shutdown in less than 60 secons without pending connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L40)
-- [should shutdown after waiting 60 seconds for pending connections to be closed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L61)
-- [should shutdown after waiting 150 seconds for pending connections to be closed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L106)
-
-### [[Shutdown] Graceful shutdown with pending request](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L25)
-
-- [should let slow requests finish before shutting down](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L33)
-
-### [[Ingress] DeepInspection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L27)
-
-- [should drop whole ingress if one path matches invalid regex](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L34)
-
-### [single ingress - multiple hosts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L30)
-
-- [should set the correct $service_name NGINX variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L38)
-
-### [[Ingress] [PathType] exact](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L30)
-
-- [should choose exact location for /exact](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L37)
-
-### [[Ingress] [PathType] mix Exact and Prefix paths](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L30)
-
-- [should choose the correct location](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L39)
-
-### [[Ingress] [PathType] prefix checks](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L28)
-
-- [should return 404 when prefix /aaa does not match request /aaaccc](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L35)
-
-### [[Ingress] definition without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L31)
-
-- [should set ingress details variables for ingresses without a host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L34)
-- [should set ingress details variables for ingresses with host without IngressRuleValue, only Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L55)
-
-### [[Memory Leak] Dynamic Certificates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L35)
-
-- [should not leak memory from ingress SSL certificates or configuration updates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L42)
-
-### [[Load Balancer] load-balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L28)
-
-- [should apply the configmap load-balance setting](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L35)
-
-### [[Load Balancer] EWMA](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L31)
-
-- [does not fail requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L42)
-
-### [[Load Balancer] round-robin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L31)
-
-- [should evenly distribute requests with round-robin (default algorithm)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L39)
-
-### [[Lua] dynamic certificates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L37)
-
-- [picks up the certificate when we add TLS spec to existing ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L45)
-- [picks up the previously missing secret for a given ingress without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L70)
-- [supports requests with domain with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L145)
-- [picks up the updated certificate without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L149)
-- [falls back to using default certificate when secret gets deleted without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L185)
-- [picks up a non-certificate only change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L218)
-- [removes HTTPS configuration when we delete TLS spec](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L233)
-
-### [[Lua] dynamic configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L42)
-
-- [configures balancer Lua middleware correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L50)
-- [handles endpoints only changes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L62)
-- [handles endpoints only changes (down scaling of replicas)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L87)
-- [handles endpoints only changes consistently (down scaling of replicas vs. empty service)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L125)
-- [handles an annotation change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L171)
-
-### [nginx-configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L99)
-
-- [start nginx with default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L102)
-- [fails when using alias directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L115)
-- [fails when using root directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L124)
-
-### [[Security] request smuggling](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L32)
-
-- [should not return body content from error_page](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L39)
-
-### [[Security] validate path fields](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L42)
-
-- [should accept an ingress with valid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L49)
-- [should drop an ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L67)
-- [should drop an ingress with regex path and regex disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L84)
-- [should accept an ingress with regex path and regex enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L101)
-- [should reject an ingress with invalid path and regex enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L118)
-
-### [[Service] backend status code 503](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L33)
-
-- [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L36)
-- [should return 503 when all backend service endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L54)
-
-### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L59)
-
-- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L62)
-- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L95)
-- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L129)
-- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L153)
-- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L184)
-- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L217)
-- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L248)
-- [should sync ingress on external name service addition/deletion](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L311)
-
-### [[Service] Nil Service Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L31)
-
-- [should return 404 when backend service is nil](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L38)
-
-### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L27)
-
-- [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L32)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L42)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L54)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L67)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L80)
-
-### [Bad annotation values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L29)
-
-- [[BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L36)
-- [[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L67)
-- [[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L102)
-- [[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L133)
-
-### [brotli](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L30)
-
-- [ condition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L39)
-
-### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
-
-- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
-
-### [add-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L30)
-
-- [Add a custom header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L40)
-- [Add multiple custom headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L65)
-
-### [[SSL] [Flag] default-ssl-certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L33)
-
-- [uses default ssl certificate for catch-all ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L64)
-- [uses default ssl certificate for host based ingress when configured certificate does not match host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L80)
-
-### [[Flag] disable-catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L33)
-
-- [should ignore catch all Ingress with backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L50)
-- [should ignore catch all Ingress with backend and rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L69)
-- [should delete Ingress updated to catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L81)
-- [should allow Ingress with rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L123)
-
-### [[Flag] disable-service-external-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L35)
-
-- [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L52)
-
-### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L30)
-
-- [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L40)
-- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L78)
-
-### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L30)
-
-- [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L40)
-- [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L92)
-
 ### [Geoip2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L37)
 
 - [should include geoip2 line in config when enabled and db file exists](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L46)
 - [should only allow requests from specific countries](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L70)
 
-### [[Security] block-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L28)
-
-- [should block CIDRs defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L38)
-- [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L55)
-- [should block Referers defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L88)
-
 ### [[Security] global-auth-url](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L34)
 
 - [should return status code 401 when request any protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L85)
@@ -667,39 +27,59 @@ Do not try to edit it manually.
 - [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L337)
 - [user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L348)
 
-### [global-options](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L28)
+### [[Security] Pod Security Policies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L40)
 
-- [should have worker_rlimit_nofile option](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L31)
-- [should have worker_rlimit_nofile option and be independent on amount of worker processes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L38)
+- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L43)
 
-### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L30)
+### [log-format-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L28)
 
-- [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L38)
+- [should disable the log-format-escape-json by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L40)
+- [should enable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L47)
+- [should disable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L55)
+- [log-format-escape-json enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L66)
+- [log-format-escape-json disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L89)
 
-### [hash size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L27)
+### [server-tokens](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L29)
 
-- [should set server_names_hash_bucket_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L40)
-- [should set server_names_hash_max_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L48)
-- [should set proxy-headers-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L60)
-- [should set proxy-headers-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L68)
-- [should set variables-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L80)
-- [should set variables-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L88)
-- [should set vmap-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L100)
+- [should not exists Server header in the response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L38)
+- [should exists Server header in the response when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L50)
 
-### [[Flag] ingress-class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L39)
+### [proxy-connect-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L28)
 
-- [should ignore Ingress with a different class annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L68)
-- [should ignore Ingress with different controller class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L104)
-- [should accept both Ingresses with default IngressClassName and IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L132)
-- [should ignore Ingress without IngressClass configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L164)
-- [should delete Ingress when class is removed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L192)
-- [should serve Ingress when class is added](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L257)
-- [should serve Ingress when class is updated between annotation and ingressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L323)
-- [should ignore Ingress with no class and accept the correctly configured Ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L413)
-- [should watch Ingress with no class and ignore ingress with a different class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L482)
-- [should watch Ingress that uses the class name even if spec is different](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L539)
-- [should watch Ingress with correct annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L631)
-- [should ignore Ingress with only IngressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L652)
+- [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L36)
+- [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L52)
+
+### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L28)
+
+- [Add ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L31)
+
+### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L36)
+
+- [should respect port passed by the PROXY Protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L46)
+- [should respect proto passed by the PROXY Protocol server port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L79)
+- [should enable PROXY Protocol for HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L112)
+- [should enable PROXY Protocol for TCP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L155)
+
+### [plugins](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L28)
+
+- [should exist a x-hello-world header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L35)
+
+### [configmap server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L28)
+
+- [should add value of server-snippet setting to all ingress config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L35)
+- [should add global server-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L92)
+
+### [[Flag] disable-catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L33)
+
+- [should ignore catch all Ingress with backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L50)
+- [should ignore catch all Ingress with backend and rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L69)
+- [should delete Ingress updated to catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L81)
+- [should allow Ingress with rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L123)
+
+### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L30)
+
+- [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L40)
+- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L78)
 
 ### [keep-alive keep-alive-requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L28)
 
@@ -707,41 +87,7 @@ Do not try to edit it manually.
 - [should set keepalive_requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L48)
 - [should set keepalive connection to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L59)
 - [should set keep alive connection timeout to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L68)
-- [should set keepalive time to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L77)
-- [should set the request count to upstream server through one keep alive connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L86)
-
-### [Configmap - limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L28)
-
-- [Check limit-rate config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L36)
-
-### [[Flag] custom HTTP and HTTPS ports](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L32)
-
-- [should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L48)
-- [should set X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L70)
-- [should set the X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L100)
-
-### [log-format-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L28)
-
-- [should not configure log-format escape by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L40)
-- [should enable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L47)
-- [should disable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L55)
-- [should enable the log-format-escape-none](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L63)
-- [should disable the log-format-escape-none](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L71)
-- [log-format-escape-json enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L82)
-- [log-format default escape](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L105)
-- [log-format-escape-none enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L128)
-
-### [[Lua] lua-shared-dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L26)
-
-- [configures lua shared dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L29)
-
-### [main-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L27)
-
-- [should add value of main-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L31)
-
-### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
-
-- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
+- [should set the request count to upstream server through one keep alive connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L77)
 
 ### [enable-multi-accept](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L27)
 
@@ -753,19 +99,9 @@ Do not try to edit it manually.
 
 - [should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L70)
 
-### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
+### [[Flag] disable-service-external-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L34)
 
-- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L54)
-- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
-- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
-
-### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L28)
-
-- [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L31)
-
-### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
-
-- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
+- [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L51)
 
 ### [Configure OpenTracing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L48)
 
@@ -783,48 +119,41 @@ Do not try to edit it manually.
 - [should enable opentracing using jaeger with an HTTP endpoint](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L228)
 - [should enable opentracing using datadog](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L241)
 
-### [plugins](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L28)
+### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
 
-- [should exist a x-hello-world header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L35)
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
 
-### [[Security] Pod Security Policies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L41)
+### [Configmap - limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L28)
 
-- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L44)
+- [Check limit-rate config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L36)
 
-### [[Security] Pod Security Policies with volumes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L37)
+### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L26)
 
-- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L40)
+- [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L31)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L41)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L53)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L66)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L79)
 
-### [proxy-connect-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L28)
+### [global-options](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L28)
 
-- [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L36)
-- [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L52)
+- [should have worker_rlimit_nofile option](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L31)
+- [should have worker_rlimit_nofile option and be independent on amount of worker processes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L38)
 
-### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L28)
+### [[Flag] ingress-class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L39)
 
-- [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L36)
-- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L57)
-
-### [proxy-next-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L28)
-
-- [should build proxy next upstream using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L36)
-
-### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L36)
-
-- [should respect port passed by the PROXY Protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L46)
-- [should respect proto passed by the PROXY Protocol server port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L79)
-- [should enable PROXY Protocol for HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L112)
-- [should enable PROXY Protocol for TCP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L155)
-
-### [proxy-read-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L28)
-
-- [should set valid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L36)
-- [should not set invalid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L52)
-
-### [proxy-send-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L28)
-
-- [should set valid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L36)
-- [should not set invalid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L52)
+- [should ignore Ingress with a different class annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L68)
+- [should ignore Ingress with different controller class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L104)
+- [should accept both Ingresses with default IngressClassName and IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L132)
+- [should ignore Ingress without IngressClass configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L164)
+- [should delete Ingress when class is removed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L192)
+- [should serve Ingress when class is added](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L257)
+- [should serve Ingress when class is updated between annotation and ingressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L323)
+- [should ignore Ingress with no class and accept the correctly configured Ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L413)
+- [should watch Ingress with no class and ignore ingress with a different class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L482)
+- [should watch Ingress that uses the class name even if spec is different](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L539)
+- [should watch Ingress with correct annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L631)
+- [should ignore Ingress with only IngressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L652)
 
 ### [reuse-port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L27)
 
@@ -832,33 +161,133 @@ Do not try to edit it manually.
 - [reuse port should be disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L44)
 - [reuse port should be enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L52)
 
-### [configmap server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L28)
+### [proxy-send-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L28)
 
-- [should add value of server-snippet setting to all ingress config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L35)
-- [should add global server-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L92)
+- [should set valid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L36)
+- [should not set invalid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L52)
 
-### [server-tokens](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L29)
+### [[SSL] [Flag] default-ssl-certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L33)
 
-- [should not exists Server header in the response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L38)
-- [should exists Server header in the response when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L50)
+- [uses default ssl certificate for catch-all ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L64)
+- [uses default ssl certificate for host based ingress when configured certificate does not match host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L80)
 
-### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L28)
+### [brotli](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L30)
 
-- [Add ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L31)
+- [ condition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L39)
 
-### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L35)
+### [[Security] Pod Security Policies with volumes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L36)
 
-- [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L42)
+- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L39)
+
+### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L28)
+
+- [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L36)
+- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L57)
+
+### [[Security] block-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L28)
+
+- [should block CIDRs defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L38)
+- [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L55)
+- [should block Referers defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L88)
+
+### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L30)
+
+- [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L38)
+
+### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L28)
+
+- [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L31)
+
+### [main-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L27)
+
+- [should add value of main-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L31)
+
+### [[Lua] lua-shared-dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L26)
+
+- [configures lua shared dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L29)
+
+### [Bad annotation values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L29)
+
+- [[BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L36)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L67)
+- [[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L102)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L133)
 
 ### [[SSL] TLS protocols, ciphers and headers)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L31)
 
 - [setting cipher suite](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L65)
-- [setting max-age parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L111)
-- [setting includeSubDomains parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L127)
-- [setting preload parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L146)
-- [overriding what's set from the upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L166)
-- [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L187)
-- [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L205)
+- [enforcing TLS v1.0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L87)
+- [setting max-age parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L133)
+- [setting includeSubDomains parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L149)
+- [setting preload parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L168)
+- [overriding what's set from the upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L188)
+- [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L209)
+- [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L227)
+
+### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
+
+- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
+
+### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
+
+- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
+
+### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L34)
+
+- [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L41)
+
+### [proxy-read-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L28)
+
+- [should set valid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L36)
+- [should not set invalid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L52)
+
+### [proxy-next-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L28)
+
+- [should build proxy next upstream using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L36)
+
+### [hash size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L27)
+
+- [should set server_names_hash_bucket_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L40)
+- [should set server_names_hash_max_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L48)
+- [should set proxy-headers-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L60)
+- [should set proxy-headers-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L68)
+- [should set variables-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L80)
+- [should set variables-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L88)
+- [should set vmap-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L100)
+
+### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
+
+- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L54)
+- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
+- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
+
+### [[Flag] custom HTTP and HTTPS ports](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L32)
+
+- [should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L48)
+- [should set X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L70)
+- [should set the X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L100)
+
+### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L30)
+
+- [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L40)
+- [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L92)
+
+### [add-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L30)
+
+- [Add a custom header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L40)
+- [Add multiple custom headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L65)
+
+### [[Load Balancer] round-robin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L31)
+
+- [should evenly distribute requests with round-robin (default algorithm)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L39)
+
+### [[Load Balancer] EWMA](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L31)
+
+- [does not fail requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L42)
+
+### [[Load Balancer] load-balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L28)
+
+- [should apply the configmap load-balance setting](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L35)
 
 ### [[SSL] redirect to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L29)
 
@@ -869,11 +298,22 @@ Do not try to edit it manually.
 - [should not appear references to secret updates not used in ingress rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L40)
 - [should return the fake SSL certificate if the secret is invalid](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L82)
 
-### [[Status] status update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L38)
+### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L58)
 
-- [should update status field after client-go reconnection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L43)
+- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L61)
+- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L94)
+- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L128)
+- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L152)
+- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L183)
+- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L216)
+- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L247)
+- [should sync ingress on external name service addition/deletion](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L310)
 
-### [[TCP] tcp-services](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L37)
+### [[Service] Nil Service Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L31)
 
-- [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L40)
-- [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L98)
\ No newline at end of file
+- [should return 404 when backend service is nil](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L38)
+
+### [[Service] backend status code 503](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L33)
+
+- [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L36)
+- [should return 503 when all backend service endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L54)

From a6badc438f33b5d7d2fff5f3444c0364af76a42d Mon Sep 17 00:00:00 2001
From: James Strong <james.strong@chainguard.dev>
Date: Thu, 29 Dec 2022 20:02:55 -0500
Subject: [PATCH 0550/1641] roll helm chart forward

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 charts/ingress-nginx/Chart.yaml | 2 +-
 charts/ingress-nginx/README.md  | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 461601f59..2a15960f7 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: ingress-nginx
 # When the version is modified, make sure the artifacthub.io/changes list is updated
 # Also update CHANGELOG.md
-version: 4.4.0
+version: 4.4.2
 appVersion: 1.5.1
 home: https://github.com/kubernetes/ingress-nginx
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index af71493fe..e4ef9ec1b 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.4.0](https://img.shields.io/badge/Version-4.4.0-informational?style=flat-square) ![AppVersion: 1.5.1](https://img.shields.io/badge/AppVersion-1.5.1-informational?style=flat-square)
+![Version: 4.4.2](https://img.shields.io/badge/Version-4.4.2-informational?style=flat-square) ![AppVersion: 1.5.1](https://img.shields.io/badge/AppVersion-1.5.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 

From 5bfd3e2a674a0b6e36282df3d48077c9ed5bd8c8 Mon Sep 17 00:00:00 2001
From: Kir Shatrov <shatrov@me.com>
Date: Fri, 6 Jan 2023 18:07:58 +0300
Subject: [PATCH 0551/1641] Optional podman support (#9294)

---
 .gitignore             |  1 +
 build/run-in-docker.sh | 45 ++++++++++++++++++++++--------------------
 2 files changed, 25 insertions(+), 21 deletions(-)

diff --git a/.gitignore b/.gitignore
index 0943c3b1a..2c0accad7 100644
--- a/.gitignore
+++ b/.gitignore
@@ -59,3 +59,4 @@ images/fastcgi-helloserver/rootfs/fastcgi-helloserver
 cmd/plugin/release/ingress-nginx.yaml
 cmd/plugin/release/*.tar.gz
 cmd/plugin/release/LICENSE
+tmp/
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index d41464e2e..44ca2d5f7 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -19,20 +19,26 @@ if [ "$DEBUG" == "true" ]; then
   set -x
 fi
 
+RUNTIME=${RUNTIME:-"docker"}
+
 set -o errexit
 set -o nounset
 set -o pipefail
 
 # temporal directory for the /etc/ingress-controller directory
-INGRESS_VOLUME=$(mktemp -d)
+if [[ "$OSTYPE" == darwin* ]] && [[ "$RUNTIME" == podman ]]; then
+  mkdir -p "tmp"
+  INGRESS_VOLUME=$(pwd)/$(mktemp -d tmp/XXXXXX)
+else
+  INGRESS_VOLUME=$(mktemp -d)
+  if [[ "$OSTYPE" == darwin* ]]; then
+    INGRESS_VOLUME=/private$INGRESS_VOLUME
+  fi
+fi
 
 # make sure directory for SSL cert storage exists under ingress volume
 mkdir "${INGRESS_VOLUME}/ssl"
 
-if [[ "$OSTYPE" == darwin* ]]; then
-  INGRESS_VOLUME=/private$INGRESS_VOLUME
-fi
-
 function cleanup {
   rm -rf "${INGRESS_VOLUME}"
 }
@@ -40,6 +46,11 @@ trap cleanup EXIT
 
 E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20221221-controller-v1.5.1-62-g6ffaef32a@sha256:8f025472964cd15ae2d379503aba150565a8d78eb36b41ddfc5f1e3b1ca81a8e}
 
+if [[ "$RUNTIME" == podman ]]; then
+  # Podman does not support both tag and digest
+  E2E_IMAGE=$(echo $E2E_IMAGE | awk -F "@sha" '{print $1}')
+fi
+
 DOCKER_OPTS=${DOCKER_OPTS:-}
 DOCKER_IN_DOCKER_ENABLED=${DOCKER_IN_DOCKER_ENABLED:-}
 
@@ -82,20 +93,12 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   /bin/bash -c "${FLAGS}"
 else
   echo "Reached DIND check ELSE block, inside run-in-docker.sh"
-  docker run                                            \
-    ${PLATFORM_FLAG} ${PLATFORM}                        \
-    --tty                                               \
-    --rm                                                \
-    ${DOCKER_OPTS}                                      \
-    -e DEBUG=${DEBUG}                                   \
-    -e GOCACHE="/go/src/${PKG}/.cache"                  \
-    -e GOMODCACHE="/go/src/${PKG}/.modcache"            \
-    -e DOCKER_IN_DOCKER_ENABLED="true"                  \
-    -v "${HOME}/.kube:${HOME}/.kube"                    \
-    -v "${KUBE_ROOT}:/go/src/${PKG}"                    \
-    -v "${KUBE_ROOT}/bin/${ARCH}:/go/bin/linux_${ARCH}" \
-    -v "/var/run/docker.sock:/var/run/docker.sock"      \
-    -v "${INGRESS_VOLUME}:/etc/ingress-controller/"     \
-    -w "/go/src/${PKG}"                                 \
-    ${E2E_IMAGE} /bin/bash -c "${FLAGS}"
+
+  args="${PLATFORM_FLAG} ${PLATFORM} --tty --rm ${DOCKER_OPTS} -e DEBUG=${DEBUG} -e GOCACHE="/go/src/${PKG}/.cache" -e GOMODCACHE="/go/src/${PKG}/.modcache" -e DOCKER_IN_DOCKER_ENABLED="true" -v "${HOME}/.kube:${HOME}/.kube" -v "${KUBE_ROOT}:/go/src/${PKG}" -v "${KUBE_ROOT}/bin/${ARCH}:/go/bin/linux_${ARCH}" -v "${INGRESS_VOLUME}:/etc/ingress-controller/" -w "/go/src/${PKG}""
+
+  if [[ "$RUNTIME" == "docker" ]]; then
+    args="$args -v /var/run/docker.sock:/var/run/docker.sock"
+  fi
+
+  ${RUNTIME} run $args ${E2E_IMAGE} /bin/bash -c "${FLAGS}"
 fi

From 96b3d216550e8aa538a730fa112a40e8f75aec95 Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Sun, 8 Jan 2023 00:37:27 +0100
Subject: [PATCH 0552/1641] bump OpenTelemetry (#9489)

---
 images/opentelemetry/rootfs/CMakeLists.txt | 2 +-
 images/opentelemetry/rootfs/Dockerfile     | 4 ++--
 images/opentelemetry/rootfs/build.sh       | 6 +++---
 3 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/images/opentelemetry/rootfs/CMakeLists.txt b/images/opentelemetry/rootfs/CMakeLists.txt
index e4abc7346..ef90b5805 100644
--- a/images/opentelemetry/rootfs/CMakeLists.txt
+++ b/images/opentelemetry/rootfs/CMakeLists.txt
@@ -21,7 +21,7 @@ project(
   LANGUAGES CXX
   VERSION 0.0.1)
 
-set(CMAKE_CXX_STANDARD 11)
+set(CMAKE_CXX_STANDARD 17)
 set(CMAKE_CXX_EXTENSIONS OFF)
 set(CMAKE_CXX_STANDARD_REQUIRED ON)
 set(CMAKE_CXX_FLAGS "-O2")
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index 7746edbf1..aa4e219af 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -26,12 +26,12 @@ RUN apk update \
 
 # install gRPC
 FROM base as grpc
-RUN bash /opt/third_party/build.sh -g v1.43.2
+RUN bash /opt/third_party/build.sh -g v1.49.2
 
 # install OpenTelemetry-cpp
 FROM base as otel-cpp
 COPY --from=grpc /opt/third_party/install/ /usr
-RUN bash /opt/third_party/build.sh -o v1.3.0
+RUN bash /opt/third_party/build.sh -o v1.8.1
 
 # install otel_ngx_module.so
 FROM base as nginx
diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
index 19914932c..6ad4601c6 100755
--- a/images/opentelemetry/rootfs/build.sh
+++ b/images/opentelemetry/rootfs/build.sh
@@ -100,9 +100,9 @@ install_otel()
         -DBUILD_SHARED_LIBS=OFF \
         -DWITH_OTLP=ON \
         -DWITH_OTLP_GRPC=ON \
-        -DWITH_EXAMPLES=OFF \
-        -DWITH_ABSEIL=ON \
         -DWITH_OTLP_HTTP=OFF \
+        -DWITH_ABSEIL=OFF \
+        -DWITH_EXAMPLES=OFF \
         ..
   cmake --build . -j ${CORES} --target install
 }
@@ -126,7 +126,7 @@ install_nginx()
   export NGINX_VERSION=1.21.6
 
   # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/2656a4...main
-  export OPENTELEMETRY_CONTRIB_COMMIT=6467ec2e4d67b08b44580b7eb7a298786f4eef91
+  export OPENTELEMETRY_CONTRIB_COMMIT=1ec94c82095bab61f06c7393b6f3272469d285af
 
   mkdir -p /etc/nginx
   cd "$BUILD_PATH"

From 490e872b4ab779b811d4828502309971c348f6ba Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Sun, 8 Jan 2023 22:21:28 +0100
Subject: [PATCH 0553/1641] update OpenTelemetry image (#9491)

* update OpenTelemetry image

* helm-doc
---
 charts/ingress-nginx/README.md   | 2 +-
 charts/ingress-nginx/values.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index e4ef9ec1b..57f4ea072 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -393,7 +393,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment # Ref: https://kubernetes.io/docs/user-guide/node-selection/ # |
 | controller.opentelemetry.containerSecurityContext.allowPrivilegeEscalation | bool | `false` |  |
 | controller.opentelemetry.enabled | bool | `false` |  |
-| controller.opentelemetry.image | string | `"registry.k8s.io/ingress-nginx/opentelemetry:v20221114-controller-v1.5.1-6-ga66ee73c5@sha256:41076fd9fb4255677c1a3da1ac3fc41477f06eba3c7ebf37ffc8f734dad51d7c"` |  |
+| controller.opentelemetry.image | string | `"registry.k8s.io/ingress-nginx/opentelemetry:v20230107-helm-chart-4.4.2-2-g96b3d2165@sha256:331b9bebd6acfcd2d3048abbdd86555f5be76b7e3d0b5af4300b04235c6056c9"` |  |
 | controller.podAnnotations | object | `{}` | Annotations to be added to controller pods # |
 | controller.podLabels | object | `{}` | Labels to add to the pod container metadata |
 | controller.podSecurityContext | object | `{}` | Security Context policies for controller pods |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index b7089addb..26252ac29 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -593,7 +593,7 @@ controller:
 
   opentelemetry:
     enabled: false
-    image: registry.k8s.io/ingress-nginx/opentelemetry:v20221114-controller-v1.5.1-6-ga66ee73c5@sha256:41076fd9fb4255677c1a3da1ac3fc41477f06eba3c7ebf37ffc8f734dad51d7c
+    image: registry.k8s.io/ingress-nginx/opentelemetry:v20230107-helm-chart-4.4.2-2-g96b3d2165@sha256:331b9bebd6acfcd2d3048abbdd86555f5be76b7e3d0b5af4300b04235c6056c9
     containerSecurityContext:
       allowPrivilegeEscalation: false
 

From 5b0403314c61e8f28a5a5c6b30c5fa36c7b34114 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Sun, 8 Jan 2023 22:59:28 +0100
Subject: [PATCH 0554/1641] Admission Webhooks/Job: Add `NetworkPolicy`.
 (#9218)

---
 .../job-patch/clusterrolebinding.yaml         |  2 +-
 .../job-patch/networkpolicy.yaml              | 26 +++++++++++++++++++
 .../admission-webhooks/job-patch/role.yaml    |  2 +-
 3 files changed, 28 insertions(+), 2 deletions(-)
 create mode 100644 charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml

diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
index 002abd43b..871953261 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
@@ -2,7 +2,7 @@
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  name:  {{ include "ingress-nginx.fullname" . }}-admission
+  name: {{ include "ingress-nginx.fullname" . }}-admission
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
     "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml
new file mode 100644
index 000000000..08b32257c
--- /dev/null
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml
@@ -0,0 +1,26 @@
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.networkPolicyEnabled }}
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: {{ include "ingress-nginx.fullname" . }}-admission
+  namespace: {{ .Release.Namespace }}
+  annotations:
+    "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
+    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
+  labels:
+    {{- include "ingress-nginx.labels" . | nindent 4 }}
+    app.kubernetes.io/component: admission-webhook
+    {{- with .Values.controller.admissionWebhooks.patch.labels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+spec:
+  podSelector:
+    matchLabels:
+      {{- include "ingress-nginx.labels" . | nindent 6 }}
+      app.kubernetes.io/component: admission-webhook
+  policyTypes:
+  - Ingress
+  - Egress
+  egress:
+  - {}
+{{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
index 2aab6f4b1..ea7c20818 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
@@ -2,7 +2,7 @@
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  name:  {{ include "ingress-nginx.fullname" . }}-admission
+  name: {{ include "ingress-nginx.fullname" . }}-admission
   namespace: {{ .Release.Namespace }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade

From f82e29a7302d1219c30726588c8e3aa0409fcfe2 Mon Sep 17 00:00:00 2001
From: Carlos Tadeu Panato Junior <ctadeu@gmail.com>
Date: Sun, 8 Jan 2023 23:25:27 +0100
Subject: [PATCH 0555/1641] add github actions stale bot (#9439)

Signed-off-by: cpanato <ctadeu@gmail.com>

Signed-off-by: cpanato <ctadeu@gmail.com>
---
 .github/workflows/stale.yaml | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)
 create mode 100644 .github/workflows/stale.yaml

diff --git a/.github/workflows/stale.yaml b/.github/workflows/stale.yaml
new file mode 100644
index 000000000..736585e05
--- /dev/null
+++ b/.github/workflows/stale.yaml
@@ -0,0 +1,24 @@
+name: 'Stale Issues and PRs'
+
+on:
+  schedule:
+    - cron: '30 1 * * *'
+
+jobs:
+  stale:
+    runs-on: ubuntu-latest
+
+    permissions:
+      issues: write
+      pull-requests: write
+
+    steps:
+      - uses: actions/stale@6f05e4244c9a0b2ed3401882b05d701dd0a7289b # v7.0.0
+        with:
+          stale-issue-message: 'This is stale, but we won't close it automatically, just bare in mind the maintainers may be busy with other tasks and will reach your issue ASAP. If you have any question or request to prioritize this, please reach `#ingress-nginx-dev` on Kubernetes Slack.'
+          stale-pr-message: 'This is stale, but we won't close it automatically, just bare in mind the maintainers may be busy with other tasks and will reach your issue ASAP. If you have any question or request to prioritize this, please reach `#ingress-nginx-dev` on Kubernetes Slack.'
+          stale-issue-label: lifecycle/frozen
+          stale-pr-label: lifecycle/frozen
+          days-before-issue-stale: 30
+          days-before-pr-stale: 45
+          days-before-close: -1  # dont not close issues/prs

From 0b34a037ce41efacbbb1fe13ea0fea617452458b Mon Sep 17 00:00:00 2001
From: Naseem Ullah <24660299+naseemkullah@users.noreply.github.com>
Date: Sun, 8 Jan 2023 17:27:28 -0500
Subject: [PATCH 0556/1641] Update monitoring.md (#9269)

---
 docs/user-guide/monitoring.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index 5c53213ea..cc9fb91ec 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -357,7 +357,7 @@ Prometheus metrics are exposed on port 10254.
 
 * `nginx_ingress_controller_request_duration_seconds` Histogram
 
-  The request processing time in milliseconds (affected by client speed)
+  The request processing time in seconds (affected by client speed)
 
   nginx var: `request_time`
 

From 9926f1d642335b57c05b79ce00e5e55904cca6e4 Mon Sep 17 00:00:00 2001
From: Julien Pellet <pelletj@gmail.com>
Date: Sun, 8 Jan 2023 17:29:27 -0500
Subject: [PATCH 0557/1641] Fix indentation on serviceAccount annotation
 (#9129)


From bbf7c79f96d54e3815c28c0e4ca54334a902925d Mon Sep 17 00:00:00 2001
From: yutachaos <18604471+yutachaos@users.noreply.github.com>
Date: Mon, 9 Jan 2023 07:37:27 +0900
Subject: [PATCH 0558/1641] Add update updateStrategy and minReadySeconds for
 defaultBackend (#8506)

* Add update updateStrategy and minReadySeconds for defaultBackend

* Bump chart

* Fixed docs helm-docs version
---
 charts/ingress-nginx/README.md                        |  2 ++
 .../templates/default-backend-deployment.yaml         |  5 +++++
 charts/ingress-nginx/values.yaml                      | 11 +++++++++++
 3 files changed, 18 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 57f4ea072..00d85156e 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -481,6 +481,7 @@ Kubernetes: `>=1.20.0-0`
 | defaultBackend.livenessProbe.successThreshold | int | `1` |  |
 | defaultBackend.livenessProbe.timeoutSeconds | int | `5` |  |
 | defaultBackend.minAvailable | int | `1` |  |
+| defaultBackend.minReadySeconds | int | `0` | `minReadySeconds` to avoid killing pods before we are ready # |
 | defaultBackend.name | string | `"defaultbackend"` |  |
 | defaultBackend.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for default backend pod assignment # Ref: https://kubernetes.io/docs/user-guide/node-selection/ # |
 | defaultBackend.podAnnotations | object | `{}` | Annotations to be added to default backend pods # |
@@ -504,6 +505,7 @@ Kubernetes: `>=1.20.0-0`
 | defaultBackend.serviceAccount.create | bool | `true` |  |
 | defaultBackend.serviceAccount.name | string | `""` |  |
 | defaultBackend.tolerations | list | `[]` | Node tolerations for server scheduling to nodes with taints # Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/ # |
+| defaultBackend.updateStrategy | object | `{}` | The update strategy to apply to the Deployment or DaemonSet # |
 | dhParam | string | `nil` | A base64-encoded Diffie-Hellman parameter. This can be generated with: `openssl dhparam 4096 2> /dev/null | base64` # Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param |
 | imagePullSecrets | list | `[]` | Optional array of imagePullSecrets containing private registry credentials # Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ |
 | podSecurityPolicy.enabled | bool | `false` |  |
diff --git a/charts/ingress-nginx/templates/default-backend-deployment.yaml b/charts/ingress-nginx/templates/default-backend-deployment.yaml
index fd3e96e9e..87aced49d 100644
--- a/charts/ingress-nginx/templates/default-backend-deployment.yaml
+++ b/charts/ingress-nginx/templates/default-backend-deployment.yaml
@@ -19,6 +19,11 @@ spec:
   replicas: {{ .Values.defaultBackend.replicaCount }}
 {{- end }}
   revisionHistoryLimit: {{ .Values.revisionHistoryLimit }}
+  {{- if .Values.defaultBackend.updateStrategy }}
+  strategy:
+    {{ toYaml .Values.defaultBackend.updateStrategy | nindent 4 }}
+  {{- end }}
+  minReadySeconds: {{ .Values.defaultBackend.minReadySeconds }}
   template:
     metadata:
     {{- if .Values.defaultBackend.podAnnotations }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 26252ac29..a7fab0fe9 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -841,6 +841,17 @@ defaultBackend:
     successThreshold: 1
     timeoutSeconds: 5
 
+  # -- The update strategy to apply to the Deployment or DaemonSet
+  ##
+  updateStrategy: {}
+  #  rollingUpdate:
+  #    maxUnavailable: 1
+  #  type: RollingUpdate
+
+  # -- `minReadySeconds` to avoid killing pods before we are ready
+  ##
+  minReadySeconds: 0
+
   # -- Node tolerations for server scheduling to nodes with taints
   ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
   ##

From 8ed3a27e255aef5616de631986f8cbfc1b882a5a Mon Sep 17 00:00:00 2001
From: Phil Nichol <35630607+philnichol@users.noreply.github.com>
Date: Sun, 8 Jan 2023 22:43:28 +0000
Subject: [PATCH 0559/1641] Adding ipdenylist annotation (#8795)

* feat: Add support for IP Deny List

* fixed gomod

* Update package

* go mod tidy

* Revert "go mod tidy"

This reverts commit e6a837e1e76d72115e8727a33d2f4c1cd7249f1f.

* update ginko version

* Updates e2e tests

* fix test typo
---
 .../nginx-configuration/annotations.md        |   12 +
 .../nginx-configuration/configmap.md          |    6 +
 internal/ingress/annotations/annotations.go   |    3 +
 .../ingress/annotations/ipdenylist/main.go    |   95 +
 .../annotations/ipdenylist/main_test.go       |  216 ++
 internal/ingress/controller/config/config.go  |    1 +
 internal/ingress/controller/controller.go     |    1 +
 .../ingress/controller/template/configmap.go  |    8 +
 .../controller/template/configmap_test.go     |    2 +
 internal/ingress/defaults/main.go             |    4 +
 pkg/apis/ingress/types.go                     |    6 +
 pkg/apis/ingress/types_equals.go              |    3 +
 rootfs/etc/nginx/template/nginx.tmpl          |    4 +
 test/data/config.json                         | 3060 +++++++++++++++++
 test/e2e/annotations/ipdenylist.go            |  147 +
 15 files changed, 3568 insertions(+)
 create mode 100644 internal/ingress/annotations/ipdenylist/main.go
 create mode 100644 internal/ingress/annotations/ipdenylist/main_test.go
 create mode 100644 test/e2e/annotations/ipdenylist.go

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 49e252589..8cc6f4c16 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -109,6 +109,7 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/x-forwarded-prefix](#x-forwarded-prefix-header)|string|
 |[nginx.ingress.kubernetes.io/load-balance](#custom-nginx-load-balancing)|string|
 |[nginx.ingress.kubernetes.io/upstream-vhost](#custom-nginx-upstream-vhost)|string|
+|[nginx.ingress.kubernetes.io/denylist-source-range](#denylist-source-range)|CIDR|
 |[nginx.ingress.kubernetes.io/whitelist-source-range](#whitelist-source-range)|CIDR|
 |[nginx.ingress.kubernetes.io/proxy-buffering](#proxy-buffering)|string|
 |[nginx.ingress.kubernetes.io/proxy-buffers-number](#proxy-buffers-number)|number|
@@ -638,6 +639,17 @@ To enable this feature use the annotation `nginx.ingress.kubernetes.io/from-to-w
 !!! attention
     For HTTPS to HTTPS redirects is mandatory the SSL Certificate defined in the Secret, located in the TLS section of Ingress, contains both FQDN in the common name of the certificate.
 
+### Denylist source range
+
+You can specify blocked client IP source ranges through the `nginx.ingress.kubernetes.io/denylist-source-range` annotation.
+The value is a comma separated list of [CIDRs](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing), e.g.  `10.0.0.0/24,172.10.0.1`.
+
+To configure this setting globally for all Ingress rules, the `denylist-source-range` value may be set in the [NGINX ConfigMap](./configmap.md#denylist-source-range).
+
+!!! note
+    Adding an annotation to an Ingress rule overrides any global restriction.
+
+
 ### Whitelist source range
 
 You can specify allowed client IP source ranges through the `nginx.ingress.kubernetes.io/whitelist-source-range` annotation.
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index f5d22d11c..77cee0507 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -176,6 +176,7 @@ The following table shows a configuration option's name, type, and the default v
 |[proxy-request-buffering](#proxy-request-buffering)|string|"on"|
 |[ssl-redirect](#ssl-redirect)|bool|"true"|
 |[force-ssl-redirect](#force-ssl-redirect)|bool|"false"|
+|[denylist-source-range](#denylist-source-range)|[]string|[]string{}|
 |[whitelist-source-range](#whitelist-source-range)|[]string|[]string{}|
 |[skip-access-log-urls](#skip-access-log-urls)|[]string|[]string{}|
 |[limit-rate](#limit-rate)|int|0|
@@ -1096,6 +1097,11 @@ _**default:**_ "true"
 Sets the global value of redirects (308) to HTTPS if the server has a default TLS certificate (defined in extra-args).
 _**default:**_ "false"
 
+## denylist-source-range
+
+Sets the default denylisted IPs for each `server` block. This can be overwritten by an annotation on an Ingress rule.
+See [ngx_http_access_module](https://nginx.org/en/docs/http/ngx_http_access_module.html).
+
 ## whitelist-source-range
 
 Sets the default whitelisted IPs for each `server` block. This can be overwritten by an annotation on an Ingress rule.
diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index fe7400ac7..14415a4f7 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -44,6 +44,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/globalratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/http2pushpreload"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/influxdb"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/ipdenylist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipwhitelist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/loadbalancing"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/log"
@@ -110,6 +111,7 @@ type Ingress struct {
 	LoadBalancing      string
 	UpstreamVhost      string
 	Whitelist          ipwhitelist.SourceRange
+	Denylist           ipdenylist.SourceRange
 	XForwardedPrefix   string
 	SSLCipher          sslcipher.Config
 	Logs               log.Config
@@ -160,6 +162,7 @@ func NewAnnotationExtractor(cfg resolver.Resolver) Extractor {
 			"LoadBalancing":        loadbalancing.NewParser(cfg),
 			"UpstreamVhost":        upstreamvhost.NewParser(cfg),
 			"Whitelist":            ipwhitelist.NewParser(cfg),
+			"Denylist":             ipdenylist.NewParser(cfg),
 			"XForwardedPrefix":     xforwardedprefix.NewParser(cfg),
 			"SSLCipher":            sslcipher.NewParser(cfg),
 			"Logs":                 log.NewParser(cfg),
diff --git a/internal/ingress/annotations/ipdenylist/main.go b/internal/ingress/annotations/ipdenylist/main.go
new file mode 100644
index 000000000..f6a0e10f1
--- /dev/null
+++ b/internal/ingress/annotations/ipdenylist/main.go
@@ -0,0 +1,95 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package ipdenylist
+
+import (
+	"fmt"
+	"sort"
+	"strings"
+
+	networking "k8s.io/api/networking/v1"
+	"k8s.io/ingress-nginx/internal/net"
+
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
+	"k8s.io/ingress-nginx/internal/ingress/resolver"
+	"k8s.io/ingress-nginx/pkg/util/sets"
+)
+
+// SourceRange returns the CIDR
+type SourceRange struct {
+	CIDR []string `json:"cidr,omitempty"`
+}
+
+// Equal tests for equality between two SourceRange types
+func (sr1 *SourceRange) Equal(sr2 *SourceRange) bool {
+	if sr1 == sr2 {
+		return true
+	}
+	if sr1 == nil || sr2 == nil {
+		return false
+	}
+
+	return sets.StringElementsMatch(sr1.CIDR, sr2.CIDR)
+}
+
+type ipdenylist struct {
+	r resolver.Resolver
+}
+
+// NewParser creates a new denylist annotation parser
+func NewParser(r resolver.Resolver) parser.IngressAnnotation {
+	return ipdenylist{r}
+}
+
+// ParseAnnotations parses the annotations contained in the ingress
+// rule used to limit access to certain client addresses or networks.
+// Multiple ranges can specified using commas as separator
+// e.g. `18.0.0.0/8,56.0.0.0/8`
+func (a ipdenylist) Parse(ing *networking.Ingress) (interface{}, error) {
+	defBackend := a.r.GetDefaultBackend()
+
+	defaultDenylistSourceRange := make([]string, len(defBackend.DenylistSourceRange))
+	copy(defaultDenylistSourceRange, defBackend.DenylistSourceRange)
+	sort.Strings(defaultDenylistSourceRange)
+
+	val, err := parser.GetStringAnnotation("denylist-source-range", ing)
+	// A missing annotation is not a problem, just use the default
+	if err == ing_errors.ErrMissingAnnotations {
+		return &SourceRange{CIDR: defaultDenylistSourceRange}, nil
+	}
+
+	values := strings.Split(val, ",")
+	ipnets, ips, err := net.ParseIPNets(values...)
+	if err != nil && len(ips) == 0 {
+		return &SourceRange{CIDR: defaultDenylistSourceRange}, ing_errors.LocationDenied{
+			Reason: fmt.Errorf("the annotation does not contain a valid IP address or network: %w", err),
+		}
+	}
+
+	cidrs := []string{}
+	for k := range ipnets {
+		cidrs = append(cidrs, k)
+	}
+	for k := range ips {
+		cidrs = append(cidrs, k)
+	}
+
+	sort.Strings(cidrs)
+
+	return &SourceRange{cidrs}, nil
+}
diff --git a/internal/ingress/annotations/ipdenylist/main_test.go b/internal/ingress/annotations/ipdenylist/main_test.go
new file mode 100644
index 000000000..eb69aa520
--- /dev/null
+++ b/internal/ingress/annotations/ipdenylist/main_test.go
@@ -0,0 +1,216 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package ipdenylist
+
+import (
+	"testing"
+
+	api "k8s.io/api/core/v1"
+	networking "k8s.io/api/networking/v1"
+	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/defaults"
+	"k8s.io/ingress-nginx/internal/ingress/resolver"
+)
+
+func buildIngress() *networking.Ingress {
+	defaultBackend := networking.IngressBackend{
+		Service: &networking.IngressServiceBackend{
+			Name: "default-backend",
+			Port: networking.ServiceBackendPort{
+				Number: 80,
+			},
+		},
+	}
+
+	return &networking.Ingress{
+		ObjectMeta: meta_v1.ObjectMeta{
+			Name:      "foo",
+			Namespace: api.NamespaceDefault,
+		},
+		Spec: networking.IngressSpec{
+			DefaultBackend: &networking.IngressBackend{
+				Service: &networking.IngressServiceBackend{
+					Name: "default-backend",
+					Port: networking.ServiceBackendPort{
+						Number: 80,
+					},
+				},
+			},
+			Rules: []networking.IngressRule{
+				{
+					Host: "foo.bar.com",
+					IngressRuleValue: networking.IngressRuleValue{
+						HTTP: &networking.HTTPIngressRuleValue{
+							Paths: []networking.HTTPIngressPath{
+								{
+									Path:    "/foo",
+									Backend: defaultBackend,
+								},
+							},
+						},
+					},
+				},
+			},
+		},
+	}
+}
+
+func TestParseAnnotations(t *testing.T) {
+	ing := buildIngress()
+	tests := map[string]struct {
+		net        string
+		expectCidr []string
+		expectErr  bool
+		errOut     string
+	}{
+		"test parse a valid net": {
+			net:        "10.0.0.0/24",
+			expectCidr: []string{"10.0.0.0/24"},
+			expectErr:  false,
+		},
+		"test parse a invalid net": {
+			net:       "ww",
+			expectErr: true,
+			errOut:    "the annotation does not contain a valid IP address or network: invalid CIDR address: ww",
+		},
+		"test parse a empty net": {
+			net:       "",
+			expectErr: true,
+			errOut:    "the annotation does not contain a valid IP address or network: invalid CIDR address: ",
+		},
+		"test parse a malicious escaped string": {
+			net:       `10.0.0.0/8"rm /tmp",11.0.0.0/8`,
+			expectErr: true,
+			errOut:    `the annotation does not contain a valid IP address or network: invalid CIDR address: 10.0.0.0/8"rm /tmp"`,
+		},
+		"test parse multiple valid cidr": {
+			net:        "2.2.2.2/32,1.1.1.1/32,3.3.3.0/24",
+			expectCidr: []string{"1.1.1.1/32", "2.2.2.2/32", "3.3.3.0/24"},
+			expectErr:  false,
+		},
+	}
+
+	for testName, test := range tests {
+		data := map[string]string{}
+		data[parser.GetAnnotationWithPrefix("denylist-source-range")] = test.net
+		ing.SetAnnotations(data)
+		p := NewParser(&resolver.Mock{})
+		i, err := p.Parse(ing)
+		if err != nil && !test.expectErr {
+			t.Errorf("%v:unexpected error: %v", testName, err)
+		}
+		if test.expectErr {
+			if err.Error() != test.errOut {
+				t.Errorf("%v:expected error: %v but %v return", testName, test.errOut, err.Error())
+			}
+		}
+		if !test.expectErr {
+			sr, ok := i.(*SourceRange)
+			if !ok {
+				t.Errorf("%v:expected a SourceRange type", testName)
+			}
+			if !strsEquals(sr.CIDR, test.expectCidr) {
+				t.Errorf("%v:expected %v CIDR but %v returned", testName, test.expectCidr, sr.CIDR)
+			}
+		}
+	}
+}
+
+type mockBackend struct {
+	resolver.Mock
+}
+
+// GetDefaultBackend returns the backend that must be used as default
+func (m mockBackend) GetDefaultBackend() defaults.Backend {
+	return defaults.Backend{
+		DenylistSourceRange: []string{"4.4.4.0/24", "1.2.3.4/32"},
+	}
+}
+
+// Test that when we have a denylist set on the Backend that is used when we
+// don't have the annotation
+func TestParseAnnotationsWithDefaultConfig(t *testing.T) {
+	ing := buildIngress()
+
+	mockBackend := mockBackend{}
+
+	tests := map[string]struct {
+		net        string
+		expectCidr []string
+		expectErr  bool
+		errOut     string
+	}{
+		"test parse a valid net": {
+			net:        "10.0.0.0/24",
+			expectCidr: []string{"10.0.0.0/24"},
+			expectErr:  false,
+		},
+		"test parse a invalid net": {
+			net:       "ww",
+			expectErr: true,
+			errOut:    "the annotation does not contain a valid IP address or network: invalid CIDR address: ww",
+		},
+		"test parse a empty net": {
+			net:       "",
+			expectErr: true,
+			errOut:    "the annotation does not contain a valid IP address or network: invalid CIDR address: ",
+		},
+		"test parse multiple valid cidr": {
+			net:        "2.2.2.2/32,1.1.1.1/32,3.3.3.0/24",
+			expectCidr: []string{"1.1.1.1/32", "2.2.2.2/32", "3.3.3.0/24"},
+			expectErr:  false,
+		},
+	}
+
+	for testName, test := range tests {
+		data := map[string]string{}
+		data[parser.GetAnnotationWithPrefix("denylist-source-range")] = test.net
+		ing.SetAnnotations(data)
+		p := NewParser(mockBackend)
+		i, err := p.Parse(ing)
+		if err != nil && !test.expectErr {
+			t.Errorf("%v:unexpected error: %v", testName, err)
+		}
+		if test.expectErr {
+			if err.Error() != test.errOut {
+				t.Errorf("%v:expected error: %v but %v return", testName, test.errOut, err.Error())
+			}
+		}
+		if !test.expectErr {
+			sr, ok := i.(*SourceRange)
+			if !ok {
+				t.Errorf("%v:expected a SourceRange type", testName)
+			}
+			if !strsEquals(sr.CIDR, test.expectCidr) {
+				t.Errorf("%v:expected %v CIDR but %v returned", testName, test.expectCidr, sr.CIDR)
+			}
+		}
+	}
+}
+
+func strsEquals(a, b []string) bool {
+	if len(a) != len(b) {
+		return false
+	}
+	for i, v := range a {
+		if v != b[i] {
+			return false
+		}
+	}
+	return true
+}
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 8bf71b774..f064dad53 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -895,6 +895,7 @@ func NewDefault() Configuration {
 			PreserveTrailingSlash:    false,
 			SSLRedirect:              true,
 			CustomHTTPErrors:         []int{},
+			DenylistSourceRange:      []string{},
 			WhitelistSourceRange:     []string{},
 			SkipAccessLogURLs:        []string{},
 			LimitRate:                0,
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index f60f7a053..8eee56647 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -1412,6 +1412,7 @@ func locationApplyAnnotations(loc *ingress.Location, anns *annotations.Ingress)
 	loc.Redirect = anns.Redirect
 	loc.Rewrite = anns.Rewrite
 	loc.UpstreamVhost = anns.UpstreamVhost
+	loc.Denylist = anns.Denylist
 	loc.Whitelist = anns.Whitelist
 	loc.Denied = anns.Denied
 	loc.XForwardedPrefix = anns.XForwardedPrefix
diff --git a/internal/ingress/controller/template/configmap.go b/internal/ingress/controller/template/configmap.go
index 35a0e4536..61e8e4998 100644
--- a/internal/ingress/controller/template/configmap.go
+++ b/internal/ingress/controller/template/configmap.go
@@ -41,6 +41,7 @@ const (
 	customHTTPErrors              = "custom-http-errors"
 	skipAccessLogUrls             = "skip-access-log-urls"
 	whitelistSourceRange          = "whitelist-source-range"
+	denylistSourceRange           = "denylist-source-range"
 	proxyRealIPCIDR               = "proxy-real-ip-cidr"
 	bindAddress                   = "bind-address"
 	httpRedirectCode              = "http-redirect-code"
@@ -100,6 +101,7 @@ func ReadConfig(src map[string]string) config.Configuration {
 	to := config.NewDefault()
 	errors := make([]int, 0)
 	skipUrls := make([]string, 0)
+	denyList := make([]string, 0)
 	whiteList := make([]string, 0)
 	proxyList := make([]string, 0)
 	hideHeadersList := make([]string, 0)
@@ -169,6 +171,11 @@ func ReadConfig(src map[string]string) config.Configuration {
 		skipUrls = splitAndTrimSpace(val, ",")
 	}
 
+	if val, ok := conf[denylistSourceRange]; ok {
+		delete(conf, denylistSourceRange)
+		denyList = append(denyList, splitAndTrimSpace(val, ",")...)
+	}
+
 	if val, ok := conf[whitelistSourceRange]; ok {
 		delete(conf, whitelistSourceRange)
 		whiteList = append(whiteList, splitAndTrimSpace(val, ",")...)
@@ -395,6 +402,7 @@ func ReadConfig(src map[string]string) config.Configuration {
 
 	to.CustomHTTPErrors = filterErrors(errors)
 	to.SkipAccessLogURLs = skipUrls
+	to.DenylistSourceRange = denyList
 	to.WhitelistSourceRange = whiteList
 	to.ProxyRealIPCIDR = proxyList
 	to.BindAddressIpv4 = bindAddressIpv4List
diff --git a/internal/ingress/controller/template/configmap_test.go b/internal/ingress/controller/template/configmap_test.go
index be3ffb0ce..c662e0bc7 100644
--- a/internal/ingress/controller/template/configmap_test.go
+++ b/internal/ingress/controller/template/configmap_test.go
@@ -149,6 +149,7 @@ func TestMergeConfigMapToStruct(t *testing.T) {
 
 	def = config.NewDefault()
 	def.LuaSharedDicts = defaultLuaSharedDicts
+	def.DenylistSourceRange = []string{"2.2.2.2/32"}
 	def.WhitelistSourceRange = []string{"1.1.1.1/32"}
 	def.DisableIpv6DNS = true
 
@@ -161,6 +162,7 @@ func TestMergeConfigMapToStruct(t *testing.T) {
 	def.Checksum = fmt.Sprintf("%v", hash)
 
 	to = ReadConfig(map[string]string{
+		"denylist-source-range":  "2.2.2.2/32",
 		"whitelist-source-range": "1.1.1.1/32",
 		"disable-ipv6-dns":       "true",
 	})
diff --git a/internal/ingress/defaults/main.go b/internal/ingress/defaults/main.go
index bc9734257..0aab2ff47 100644
--- a/internal/ingress/defaults/main.go
+++ b/internal/ingress/defaults/main.go
@@ -139,6 +139,10 @@ type Backend struct {
 	// http://nginx.org/en/docs/http/ngx_http_access_module.html
 	WhitelistSourceRange []string `json:"whitelist-source-range"`
 
+	// DenylistSourceRange allows limiting access to certain client addresses
+	// http://nginx.org/en/docs/http/ngx_http_access_module.html
+	DenylistSourceRange []string `json:"denylist-source-range"`
+
 	// Limits the rate of response transmission to a client.
 	// The rate is specified in bytes per second. The zero value disables rate limiting.
 	// The limit is set per a request, and so if a client simultaneously opens two connections,
diff --git a/pkg/apis/ingress/types.go b/pkg/apis/ingress/types.go
index 7c1c825b7..9395683ec 100644
--- a/pkg/apis/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -30,6 +30,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/fastcgi"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/globalratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/influxdb"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/ipdenylist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipwhitelist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/log"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/mirror"
@@ -222,6 +223,7 @@ type Server struct {
 // In some cases when more than one annotations is defined a particular order in the execution
 // is required.
 // The chain in the execution order of annotations should be:
+// - Denylist
 // - Whitelist
 // - RateLimit
 // - BasicDigestAuth
@@ -292,6 +294,10 @@ type Location struct {
 	// Rewrite describes the redirection this location.
 	// +optional
 	Rewrite rewrite.Config `json:"rewrite,omitempty"`
+	// Denylist indicates only connections from certain client
+	// addresses or networks are allowed.
+	// +optional
+	Denylist ipdenylist.SourceRange `json:"denylist,omitempty"`
 	// Whitelist indicates only connections from certain client
 	// addresses or networks are allowed.
 	// +optional
diff --git a/pkg/apis/ingress/types_equals.go b/pkg/apis/ingress/types_equals.go
index a954a253b..0941e0956 100644
--- a/pkg/apis/ingress/types_equals.go
+++ b/pkg/apis/ingress/types_equals.go
@@ -401,6 +401,9 @@ func (l1 *Location) Equal(l2 *Location) bool {
 	if !(&l1.Rewrite).Equal(&l2.Rewrite) {
 		return false
 	}
+	if !(&l1.Denylist).Equal(&l2.Denylist) {
+		return false
+	}
 	if !(&l1.Whitelist).Equal(&l2.Whitelist) {
 		return false
 	}
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 3ace12bc3..02c5637f0 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -1262,6 +1262,10 @@ stream {
             {{ buildModSecurityForLocation $all.Cfg $location }}
 
             {{ if isLocationAllowed $location }}
+            {{ if gt (len $location.Denylist.CIDR) 0 }}
+            {{ range $ip := $location.Denylist.CIDR }}
+            deny {{ $ip }};{{ end }}
+            {{ end }}
             {{ if gt (len $location.Whitelist.CIDR) 0 }}
             {{ range $ip := $location.Whitelist.CIDR }}
             allow {{ $ip }};{{ end }}
diff --git a/test/data/config.json b/test/data/config.json
index b506399bd..5d8a88cbe 100644
--- a/test/data/config.json
+++ b/test/data/config.json
@@ -100,6 +100,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": true
 			},
+			"denylist": {
+				"cidr": ["1.1.1.1"]
+			},
 			"whitelist": {
 				"cidr": ["1.1.1.1"]
 			},
@@ -150,6 +153,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": ["1.1.1.1"]
+			},
 			"whitelist": {
 				"cidr": ["1.1.1.1"]
 			},
@@ -206,6 +212,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -256,6 +265,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -306,6 +318,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": null
+			},
 			"whitelist": {
 				"cidr": null
 			},
@@ -362,6 +377,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": null
+			},
 			"whitelist": {
 				"cidr": null
 			},
@@ -418,6 +436,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": true
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -474,6 +495,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -530,6 +554,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -586,6 +613,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -642,6 +672,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -698,6 +731,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -754,6 +790,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -810,6 +849,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -866,6 +908,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -922,6 +967,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -978,6 +1026,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1034,6 +1085,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1090,6 +1144,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1146,6 +1203,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1202,6 +1262,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1258,6 +1321,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1314,6 +1380,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1370,6 +1439,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1426,6 +1498,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1482,6 +1557,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1538,6 +1616,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1594,6 +1675,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1650,6 +1734,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1706,6 +1793,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1762,6 +1852,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1818,6 +1911,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1874,6 +1970,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1930,6 +2029,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -1986,6 +2088,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2042,6 +2147,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2098,6 +2206,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2154,6 +2265,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2210,6 +2324,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2266,6 +2383,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2322,6 +2442,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2378,6 +2501,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2434,6 +2560,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2490,6 +2619,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2546,6 +2678,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2602,6 +2737,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2658,6 +2796,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2714,6 +2855,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2770,6 +2914,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2826,6 +2973,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2882,6 +3032,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2938,6 +3091,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -2994,6 +3150,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3050,6 +3209,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3106,6 +3268,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3162,6 +3327,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3218,6 +3386,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3274,6 +3445,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3330,6 +3504,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3386,6 +3563,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3442,6 +3622,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3498,6 +3681,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3554,6 +3740,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3610,6 +3799,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3666,6 +3858,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3722,6 +3917,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3778,6 +3976,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3834,6 +4035,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3890,6 +4094,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -3946,6 +4153,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4002,6 +4212,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4058,6 +4271,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4114,6 +4330,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4170,6 +4389,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4226,6 +4448,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4282,6 +4507,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4338,6 +4566,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4394,6 +4625,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4450,6 +4684,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4506,6 +4743,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4562,6 +4802,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4618,6 +4861,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4674,6 +4920,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4730,6 +4979,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4786,6 +5038,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4842,6 +5097,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4898,6 +5156,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -4954,6 +5215,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5010,6 +5274,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5066,6 +5333,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5122,6 +5392,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5178,6 +5451,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5234,6 +5510,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5290,6 +5569,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5346,6 +5628,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5402,6 +5687,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5458,6 +5746,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5514,6 +5805,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5570,6 +5864,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5626,6 +5923,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5682,6 +5982,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5738,6 +6041,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5794,6 +6100,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5850,6 +6159,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5906,6 +6218,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -5962,6 +6277,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6018,6 +6336,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6074,6 +6395,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6130,6 +6454,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6186,6 +6513,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6242,6 +6572,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6298,6 +6631,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6354,6 +6690,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6410,6 +6749,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6466,6 +6808,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6522,6 +6867,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6578,6 +6926,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6634,6 +6985,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6690,6 +7044,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6746,6 +7103,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6802,6 +7162,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6858,6 +7221,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6914,6 +7280,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -6970,6 +7339,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7026,6 +7398,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7082,6 +7457,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7138,6 +7516,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7194,6 +7575,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7250,6 +7634,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7306,6 +7693,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7362,6 +7752,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7418,6 +7811,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7474,6 +7870,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7530,6 +7929,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7586,6 +7988,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7642,6 +8047,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7698,6 +8106,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7754,6 +8165,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7810,6 +8224,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7866,6 +8283,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7922,6 +8342,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -7978,6 +8401,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8034,6 +8460,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8090,6 +8519,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8146,6 +8578,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8202,6 +8637,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8258,6 +8696,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8314,6 +8755,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8370,6 +8814,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8426,6 +8873,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8482,6 +8932,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8538,6 +8991,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8594,6 +9050,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8650,6 +9109,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8706,6 +9168,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8762,6 +9227,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8818,6 +9286,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8874,6 +9345,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8930,6 +9404,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -8986,6 +9463,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9042,6 +9522,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9098,6 +9581,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9154,6 +9640,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9210,6 +9699,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9266,6 +9758,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9322,6 +9817,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9378,6 +9876,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9434,6 +9935,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9490,6 +9994,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9546,6 +10053,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9602,6 +10112,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9658,6 +10171,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9714,6 +10230,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9770,6 +10289,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9826,6 +10348,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9882,6 +10407,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9938,6 +10466,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -9994,6 +10525,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10050,6 +10584,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10106,6 +10643,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10162,6 +10702,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10218,6 +10761,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10274,6 +10820,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10330,6 +10879,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10386,6 +10938,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10442,6 +10997,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10498,6 +11056,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10554,6 +11115,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10610,6 +11174,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10666,6 +11233,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10722,6 +11292,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10778,6 +11351,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10834,6 +11410,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10890,6 +11469,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -10946,6 +11528,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11002,6 +11587,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11058,6 +11646,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11114,6 +11705,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11170,6 +11764,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11226,6 +11823,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11282,6 +11882,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11338,6 +11941,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11394,6 +12000,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11450,6 +12059,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11506,6 +12118,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11562,6 +12177,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11618,6 +12236,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11674,6 +12295,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11730,6 +12354,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11786,6 +12413,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11842,6 +12472,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11898,6 +12531,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -11954,6 +12590,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12010,6 +12649,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12066,6 +12708,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12122,6 +12767,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12178,6 +12826,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12234,6 +12885,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12290,6 +12944,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12346,6 +13003,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12402,6 +13062,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12458,6 +13121,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12514,6 +13180,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12570,6 +13239,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12626,6 +13298,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12682,6 +13357,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12738,6 +13416,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12794,6 +13475,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12850,6 +13534,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12906,6 +13593,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -12962,6 +13652,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13018,6 +13711,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13074,6 +13770,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13130,6 +13829,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13186,6 +13888,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13242,6 +13947,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13298,6 +14006,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13354,6 +14065,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13410,6 +14124,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13466,6 +14183,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13522,6 +14242,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13578,6 +14301,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13634,6 +14360,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13690,6 +14419,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13746,6 +14478,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13802,6 +14537,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13858,6 +14596,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13914,6 +14655,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -13970,6 +14714,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14026,6 +14773,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14082,6 +14832,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14138,6 +14891,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14194,6 +14950,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14250,6 +15009,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14306,6 +15068,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14362,6 +15127,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14418,6 +15186,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14474,6 +15245,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14530,6 +15304,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14586,6 +15363,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14642,6 +15422,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14698,6 +15481,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14754,6 +15540,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14810,6 +15599,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14866,6 +15658,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14922,6 +15717,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -14978,6 +15776,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15034,6 +15835,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15090,6 +15894,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15146,6 +15953,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15202,6 +16012,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15258,6 +16071,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15314,6 +16130,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15370,6 +16189,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15426,6 +16248,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15482,6 +16307,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15538,6 +16366,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15594,6 +16425,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15650,6 +16484,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15706,6 +16543,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15762,6 +16602,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15818,6 +16661,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15874,6 +16720,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15930,6 +16779,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -15986,6 +16838,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16042,6 +16897,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16098,6 +16956,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16154,6 +17015,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16210,6 +17074,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16266,6 +17133,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16322,6 +17192,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16378,6 +17251,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16434,6 +17310,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16490,6 +17369,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16546,6 +17428,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16602,6 +17487,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16658,6 +17546,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16714,6 +17605,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16770,6 +17664,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16826,6 +17723,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16882,6 +17782,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16938,6 +17841,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -16994,6 +17900,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17050,6 +17959,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17106,6 +18018,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17162,6 +18077,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17218,6 +18136,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17274,6 +18195,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17330,6 +18254,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17386,6 +18313,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17442,6 +18372,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17498,6 +18431,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17554,6 +18490,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17610,6 +18549,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17666,6 +18608,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17722,6 +18667,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17778,6 +18726,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17834,6 +18785,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17890,6 +18844,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -17946,6 +18903,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18002,6 +18962,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18058,6 +19021,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18114,6 +19080,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18170,6 +19139,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18226,6 +19198,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18282,6 +19257,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18338,6 +19316,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18394,6 +19375,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18450,6 +19434,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18506,6 +19493,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18562,6 +19552,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18618,6 +19611,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18674,6 +19670,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18730,6 +19729,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18786,6 +19788,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18842,6 +19847,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18898,6 +19906,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -18954,6 +19965,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19010,6 +20024,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19066,6 +20083,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19122,6 +20142,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19178,6 +20201,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19234,6 +20260,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19290,6 +20319,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19346,6 +20378,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19402,6 +20437,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19458,6 +20496,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19514,6 +20555,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19570,6 +20614,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19626,6 +20673,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19682,6 +20732,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19738,6 +20791,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19794,6 +20850,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19850,6 +20909,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19906,6 +20968,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -19962,6 +21027,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20018,6 +21086,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20074,6 +21145,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20130,6 +21204,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20186,6 +21263,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20242,6 +21322,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20298,6 +21381,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20354,6 +21440,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20410,6 +21499,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20466,6 +21558,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20522,6 +21617,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20578,6 +21676,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20634,6 +21735,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20690,6 +21794,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20746,6 +21853,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20802,6 +21912,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20858,6 +21971,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20914,6 +22030,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -20970,6 +22089,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21026,6 +22148,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21082,6 +22207,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21138,6 +22266,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21194,6 +22325,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21250,6 +22384,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21306,6 +22443,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21362,6 +22502,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21418,6 +22561,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21474,6 +22620,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21530,6 +22679,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21586,6 +22738,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21642,6 +22797,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21698,6 +22856,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21754,6 +22915,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21810,6 +22974,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21866,6 +23033,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21922,6 +23092,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -21978,6 +23151,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22034,6 +23210,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22090,6 +23269,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22146,6 +23328,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22202,6 +23387,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22258,6 +23446,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22314,6 +23505,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22370,6 +23564,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22426,6 +23623,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22482,6 +23682,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22538,6 +23741,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22594,6 +23800,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22650,6 +23859,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22706,6 +23918,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22762,6 +23977,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22818,6 +24036,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22874,6 +24095,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22930,6 +24154,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -22986,6 +24213,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23042,6 +24272,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23098,6 +24331,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23154,6 +24390,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23210,6 +24449,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23266,6 +24508,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23322,6 +24567,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23378,6 +24626,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23434,6 +24685,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23490,6 +24744,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23546,6 +24803,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23602,6 +24862,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23658,6 +24921,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23714,6 +24980,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23770,6 +25039,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23826,6 +25098,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23882,6 +25157,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23938,6 +25216,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -23994,6 +25275,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24050,6 +25334,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24106,6 +25393,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24162,6 +25452,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24218,6 +25511,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24274,6 +25570,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24330,6 +25629,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24386,6 +25688,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24442,6 +25747,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24498,6 +25806,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24554,6 +25865,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24610,6 +25924,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24666,6 +25983,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24722,6 +26042,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24778,6 +26101,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24834,6 +26160,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24890,6 +26219,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -24946,6 +26278,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25002,6 +26337,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25058,6 +26396,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25114,6 +26455,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25170,6 +26514,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25226,6 +26573,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25282,6 +26632,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25338,6 +26691,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25394,6 +26750,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25450,6 +26809,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25506,6 +26868,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25562,6 +26927,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25618,6 +26986,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25674,6 +27045,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25730,6 +27104,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25786,6 +27163,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25842,6 +27222,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25898,6 +27281,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -25954,6 +27340,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26010,6 +27399,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26066,6 +27458,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26122,6 +27517,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26178,6 +27576,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26234,6 +27635,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26290,6 +27694,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26346,6 +27753,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26402,6 +27812,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26458,6 +27871,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26514,6 +27930,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26570,6 +27989,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26626,6 +28048,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26682,6 +28107,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26738,6 +28166,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26794,6 +28225,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26850,6 +28284,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26906,6 +28343,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -26962,6 +28402,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27018,6 +28461,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27074,6 +28520,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27130,6 +28579,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27186,6 +28638,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27242,6 +28697,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27298,6 +28756,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27354,6 +28815,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27410,6 +28874,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27466,6 +28933,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27522,6 +28992,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27578,6 +29051,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27634,6 +29110,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27690,6 +29169,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27746,6 +29228,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27802,6 +29287,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27858,6 +29346,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27914,6 +29405,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -27970,6 +29464,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28026,6 +29523,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28082,6 +29582,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28138,6 +29641,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28194,6 +29700,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28250,6 +29759,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28306,6 +29818,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28362,6 +29877,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28418,6 +29936,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28474,6 +29995,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28530,6 +30054,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28586,6 +30113,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28642,6 +30172,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28698,6 +30231,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28754,6 +30290,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28810,6 +30349,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28866,6 +30408,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28922,6 +30467,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -28978,6 +30526,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29034,6 +30585,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29090,6 +30644,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29146,6 +30703,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29202,6 +30762,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29258,6 +30821,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29314,6 +30880,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29370,6 +30939,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29426,6 +30998,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29482,6 +31057,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29538,6 +31116,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29594,6 +31175,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29650,6 +31234,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29706,6 +31293,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29762,6 +31352,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29818,6 +31411,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29874,6 +31470,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29930,6 +31529,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -29986,6 +31588,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30042,6 +31647,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30098,6 +31706,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30154,6 +31765,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30210,6 +31824,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30266,6 +31883,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30322,6 +31942,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30378,6 +32001,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30434,6 +32060,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30490,6 +32119,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30546,6 +32178,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30602,6 +32237,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30658,6 +32296,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30714,6 +32355,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30770,6 +32414,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30826,6 +32473,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30882,6 +32532,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30938,6 +32591,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -30994,6 +32650,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31050,6 +32709,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31106,6 +32768,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31162,6 +32827,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31218,6 +32886,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31274,6 +32945,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31330,6 +33004,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31386,6 +33063,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31442,6 +33122,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31498,6 +33181,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31554,6 +33240,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31610,6 +33299,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31666,6 +33358,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31722,6 +33417,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31778,6 +33476,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31834,6 +33535,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31890,6 +33594,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -31946,6 +33653,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32002,6 +33712,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32058,6 +33771,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32114,6 +33830,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32170,6 +33889,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32226,6 +33948,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32282,6 +34007,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32338,6 +34066,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32394,6 +34125,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32450,6 +34184,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32506,6 +34243,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32562,6 +34302,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32618,6 +34361,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32674,6 +34420,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32730,6 +34479,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32786,6 +34538,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32842,6 +34597,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32898,6 +34656,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -32954,6 +34715,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33010,6 +34774,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33066,6 +34833,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33122,6 +34892,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33178,6 +34951,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33234,6 +35010,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33290,6 +35069,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33346,6 +35128,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33402,6 +35187,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33458,6 +35246,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33514,6 +35305,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33570,6 +35364,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33626,6 +35423,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33682,6 +35482,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33738,6 +35541,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33794,6 +35600,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33850,6 +35659,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33906,6 +35718,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -33962,6 +35777,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34018,6 +35836,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34074,6 +35895,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34130,6 +35954,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34186,6 +36013,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34242,6 +36072,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34298,6 +36131,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34354,6 +36190,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34410,6 +36249,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34466,6 +36308,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34522,6 +36367,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34578,6 +36426,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34634,6 +36485,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34690,6 +36544,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34746,6 +36603,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34802,6 +36662,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34858,6 +36721,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34914,6 +36780,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -34970,6 +36839,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35026,6 +36898,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35082,6 +36957,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35138,6 +37016,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35194,6 +37075,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35250,6 +37134,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35306,6 +37193,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35362,6 +37252,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35418,6 +37311,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35474,6 +37370,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35530,6 +37429,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35586,6 +37488,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35642,6 +37547,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35698,6 +37606,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35754,6 +37665,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35810,6 +37724,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35866,6 +37783,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35922,6 +37842,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -35978,6 +37901,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36034,6 +37960,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36090,6 +38019,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36146,6 +38078,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36202,6 +38137,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36258,6 +38196,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36314,6 +38255,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36370,6 +38314,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36426,6 +38373,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36482,6 +38432,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36538,6 +38491,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36594,6 +38550,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36650,6 +38609,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36706,6 +38668,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36762,6 +38727,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36818,6 +38786,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36874,6 +38845,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36930,6 +38904,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -36986,6 +38963,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37042,6 +39022,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37098,6 +39081,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37154,6 +39140,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37210,6 +39199,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37266,6 +39258,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37322,6 +39317,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37378,6 +39376,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37434,6 +39435,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37490,6 +39494,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37546,6 +39553,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37602,6 +39612,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37658,6 +39671,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37714,6 +39730,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37770,6 +39789,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37826,6 +39848,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37882,6 +39907,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37938,6 +39966,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -37994,6 +40025,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38050,6 +40084,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38106,6 +40143,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38162,6 +40202,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38218,6 +40261,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38274,6 +40320,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38330,6 +40379,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38386,6 +40438,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38442,6 +40497,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38498,6 +40556,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38554,6 +40615,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38610,6 +40674,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38666,6 +40733,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38722,6 +40792,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38778,6 +40851,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38834,6 +40910,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38890,6 +40969,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -38946,6 +41028,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39002,6 +41087,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39058,6 +41146,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39114,6 +41205,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39170,6 +41264,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39226,6 +41323,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39282,6 +41382,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39338,6 +41441,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39394,6 +41500,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39450,6 +41559,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39506,6 +41618,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39562,6 +41677,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39618,6 +41736,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39674,6 +41795,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39730,6 +41854,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39786,6 +41913,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39842,6 +41972,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39898,6 +42031,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -39954,6 +42090,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40010,6 +42149,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40066,6 +42208,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40122,6 +42267,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40178,6 +42326,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40234,6 +42385,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40290,6 +42444,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40346,6 +42503,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40402,6 +42562,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40458,6 +42621,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40514,6 +42680,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40570,6 +42739,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40626,6 +42798,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40682,6 +42857,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40738,6 +42916,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40794,6 +42975,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40850,6 +43034,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40906,6 +43093,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -40962,6 +43152,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41018,6 +43211,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41074,6 +43270,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41130,6 +43329,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41186,6 +43388,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41242,6 +43447,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41298,6 +43506,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41354,6 +43565,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41410,6 +43624,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41466,6 +43683,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41522,6 +43742,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41578,6 +43801,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41634,6 +43860,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41690,6 +43919,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41746,6 +43978,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41802,6 +44037,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41858,6 +44096,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41914,6 +44155,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -41970,6 +44214,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42026,6 +44273,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42082,6 +44332,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42138,6 +44391,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42194,6 +44450,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42250,6 +44509,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42306,6 +44568,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42362,6 +44627,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42418,6 +44686,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42474,6 +44745,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42530,6 +44804,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42586,6 +44863,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42642,6 +44922,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42698,6 +44981,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42754,6 +45040,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42810,6 +45099,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42866,6 +45158,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42922,6 +45217,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -42978,6 +45276,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43034,6 +45335,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43090,6 +45394,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43146,6 +45453,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43202,6 +45512,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43258,6 +45571,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43314,6 +45630,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43370,6 +45689,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43426,6 +45748,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43482,6 +45807,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43538,6 +45866,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43594,6 +45925,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43650,6 +45984,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43706,6 +46043,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43762,6 +46102,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43818,6 +46161,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43874,6 +46220,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43930,6 +46279,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -43986,6 +46338,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44042,6 +46397,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44098,6 +46456,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44154,6 +46515,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44210,6 +46574,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44266,6 +46633,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44322,6 +46692,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44378,6 +46751,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44434,6 +46810,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44490,6 +46869,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44546,6 +46928,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44602,6 +46987,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44658,6 +47046,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44714,6 +47105,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44770,6 +47164,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44826,6 +47223,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44882,6 +47282,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44938,6 +47341,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -44994,6 +47400,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45050,6 +47459,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45106,6 +47518,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45162,6 +47577,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45218,6 +47636,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45274,6 +47695,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45330,6 +47754,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45386,6 +47813,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45442,6 +47872,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45498,6 +47931,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45554,6 +47990,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45610,6 +48049,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45666,6 +48108,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45722,6 +48167,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45778,6 +48226,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45834,6 +48285,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45890,6 +48344,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -45946,6 +48403,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46002,6 +48462,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46058,6 +48521,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46114,6 +48580,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46170,6 +48639,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46226,6 +48698,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46282,6 +48757,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46338,6 +48816,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46394,6 +48875,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46450,6 +48934,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46506,6 +48993,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46562,6 +49052,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46618,6 +49111,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46674,6 +49170,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46730,6 +49229,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46786,6 +49288,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46842,6 +49347,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46898,6 +49406,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -46954,6 +49465,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47010,6 +49524,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47066,6 +49583,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47122,6 +49642,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47178,6 +49701,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47234,6 +49760,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47290,6 +49819,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47346,6 +49878,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47402,6 +49937,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47458,6 +49996,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47514,6 +50055,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47570,6 +50114,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47626,6 +50173,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47682,6 +50232,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47738,6 +50291,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47794,6 +50350,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47850,6 +50409,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47906,6 +50468,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -47962,6 +50527,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48018,6 +50586,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48074,6 +50645,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48130,6 +50704,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48186,6 +50763,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48242,6 +50822,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48298,6 +50881,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48354,6 +50940,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48410,6 +50999,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48466,6 +51058,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48522,6 +51117,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48578,6 +51176,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48634,6 +51235,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48690,6 +51294,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48746,6 +51353,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48802,6 +51412,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48858,6 +51471,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48914,6 +51530,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -48970,6 +51589,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49026,6 +51648,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49082,6 +51707,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49138,6 +51766,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49194,6 +51825,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49250,6 +51884,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49306,6 +51943,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49362,6 +52002,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49418,6 +52061,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49474,6 +52120,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49530,6 +52179,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49586,6 +52238,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49642,6 +52297,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49698,6 +52356,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49754,6 +52415,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49810,6 +52474,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49866,6 +52533,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49922,6 +52592,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -49978,6 +52651,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50034,6 +52710,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50090,6 +52769,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50146,6 +52828,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": true
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50202,6 +52887,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50258,6 +52946,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50314,6 +53005,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50370,6 +53064,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50426,6 +53123,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50482,6 +53182,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50538,6 +53241,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50594,6 +53300,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50650,6 +53359,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50706,6 +53418,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50762,6 +53477,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50818,6 +53536,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50874,6 +53595,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50930,6 +53654,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -50986,6 +53713,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51042,6 +53772,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51098,6 +53831,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51154,6 +53890,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51210,6 +53949,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51266,6 +54008,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51322,6 +54067,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51378,6 +54126,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51434,6 +54185,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51490,6 +54244,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51546,6 +54303,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51602,6 +54362,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51658,6 +54421,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51714,6 +54480,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51770,6 +54539,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51826,6 +54598,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51882,6 +54657,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51938,6 +54716,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -51994,6 +54775,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52050,6 +54834,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52106,6 +54893,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52162,6 +54952,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52218,6 +55011,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52274,6 +55070,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52330,6 +55129,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52386,6 +55188,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52442,6 +55247,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52498,6 +55306,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52554,6 +55365,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52610,6 +55424,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52666,6 +55483,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52722,6 +55542,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52778,6 +55601,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52834,6 +55660,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52890,6 +55719,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -52946,6 +55778,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53002,6 +55837,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53058,6 +55896,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53114,6 +55955,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53170,6 +56014,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53226,6 +56073,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53282,6 +56132,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53338,6 +56191,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53394,6 +56250,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53450,6 +56309,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53506,6 +56368,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53562,6 +56427,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53618,6 +56486,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53674,6 +56545,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53730,6 +56604,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53786,6 +56663,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53842,6 +56722,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53898,6 +56781,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -53954,6 +56840,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54010,6 +56899,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54066,6 +56958,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54122,6 +57017,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54178,6 +57076,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54234,6 +57135,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54290,6 +57194,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54346,6 +57253,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54402,6 +57312,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54458,6 +57371,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54514,6 +57430,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54570,6 +57489,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54626,6 +57548,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54682,6 +57607,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54738,6 +57666,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54794,6 +57725,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54850,6 +57784,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54906,6 +57843,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -54962,6 +57902,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55018,6 +57961,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55074,6 +58020,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55130,6 +58079,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55186,6 +58138,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55242,6 +58197,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55298,6 +58256,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55354,6 +58315,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55410,6 +58374,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55466,6 +58433,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55522,6 +58492,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55578,6 +58551,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55634,6 +58610,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55690,6 +58669,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55746,6 +58728,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55802,6 +58787,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55858,6 +58846,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55914,6 +58905,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -55970,6 +58964,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56026,6 +59023,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": true
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56082,6 +59082,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56138,6 +59141,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56194,6 +59200,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56250,6 +59259,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56306,6 +59318,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": true
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56362,6 +59377,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": true
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56418,6 +59436,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56468,6 +59489,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56524,6 +59548,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": true
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56580,6 +59607,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56636,6 +59666,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": true
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56692,6 +59725,9 @@
 				"addBaseUrl": true,
 				"sslRedirect": true
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56742,6 +59778,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": null
 			},
@@ -56798,6 +59837,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": true
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56854,6 +59896,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -56904,6 +59949,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": null
 			},
@@ -56960,6 +60008,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": true
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -57010,6 +60061,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": null
 			},
@@ -57066,6 +60120,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": true
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
@@ -57122,6 +60179,9 @@
 				"addBaseUrl": false,
 				"sslRedirect": false
 			},
+			"denylist": {
+				"cidr": []
+			},
 			"whitelist": {
 				"cidr": []
 			},
diff --git a/test/e2e/annotations/ipdenylist.go b/test/e2e/annotations/ipdenylist.go
new file mode 100644
index 000000000..9c1d45cf5
--- /dev/null
+++ b/test/e2e/annotations/ipdenylist.go
@@ -0,0 +1,147 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package annotations
+
+import (
+	"net/http"
+	"strings"
+
+	"github.com/onsi/ginkgo/v2"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.DescribeAnnotation("denylist-source-range", func() {
+	f := framework.NewDefaultFramework("ipdenylist")
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment()
+	})
+
+	ginkgo.It("only deny explicitly denied IPs, allow all others", func() {
+		host := "ipdenylist.foo.com"
+		namespace := f.Namespace
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/denylist-source-range": "18.0.0.0/8, 56.0.0.1",
+		}
+
+		ing := framework.NewSingleIngress(host, "/", host, namespace, framework.EchoService, 80, annotations)
+
+		// Temporarily trust forwarded headers so we can test IP based access control
+		f.UpdateNginxConfigMapData("use-forwarded-headers", "true")
+		defer func() {
+			// Return to the original value
+			f.UpdateNginxConfigMapData("use-forwarded-headers", "false")
+		}()
+
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, "deny 18.0.0.0/8;") &&
+					strings.Contains(server, "deny 56.0.0.1;") &&
+					!strings.Contains(server, "deny all;")
+			})
+
+		ginkgo.By("sending request from an explicitly denied IP range")
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			WithHeader("X-Forwarded-For", "18.0.0.1").
+			Expect().
+			Status(http.StatusForbidden)
+
+		ginkgo.By("sending request from an explicitly denied IP address")
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			WithHeader("X-Forwarded-For", "56.0.0.1").
+			Expect().
+			Status(http.StatusForbidden)
+
+		ginkgo.By("sending request from an implicitly allowed IP range")
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			WithHeader("X-Forwarded-For", "56.0.0.2").
+			Expect().
+			Status(http.StatusOK)
+	})
+
+	ginkgo.It("only allow explicitly allowed IPs, deny all others", func() {
+		host := "ipdenylist.foo.com"
+		namespace := f.Namespace
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/denylist-source-range":  "18.1.0.0/16, 56.0.0.0/8",
+			"nginx.ingress.kubernetes.io/whitelist-source-range": "18.0.0.0/8, 55.0.0.0/8",
+		}
+
+		ing := framework.NewSingleIngress(host, "/", host, namespace, framework.EchoService, 80, annotations)
+
+		// Temporarily trust forwarded headers so we can test IP based access control
+		f.UpdateNginxConfigMapData("use-forwarded-headers", "true")
+		defer func() {
+			// Return to the original value
+			f.UpdateNginxConfigMapData("use-forwarded-headers", "false")
+		}()
+
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, "deny 18.1.0.0/16;") &&
+					strings.Contains(server, "deny 56.0.0.0/8;") &&
+					strings.Contains(server, "allow 18.0.0.0/8;") &&
+					strings.Contains(server, "allow 55.0.0.0/8;") &&
+					strings.Contains(server, "deny all;")
+			})
+
+		ginkgo.By("sending request from an explicitly denied IP range")
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			WithHeader("X-Forwarded-For", "18.1.0.1").
+			Expect().
+			Status(http.StatusForbidden)
+
+		ginkgo.By("sending request from an implicitly denied IP")
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			WithHeader("X-Forwarded-For", "10.10.10.10").
+			Expect().
+			Status(http.StatusForbidden)
+
+		ginkgo.By("sending request from an explicitly allowed IP range")
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			WithHeader("X-Forwarded-For", "18.4.0.1").
+			Expect().
+			Status(http.StatusOK)
+
+		ginkgo.By("sending request from an explicitly allowed IP range")
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			WithHeader("X-Forwarded-For", "55.55.55.55").
+			Expect().
+			Status(http.StatusOK)
+	})
+})

From 424cc8671b1c6df1db08283179d113fbaa5b2213 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Johannes=20W=C3=BCrbach?= <johannes.wuerbach@googlemail.com>
Date: Sun, 8 Jan 2023 23:49:27 +0100
Subject: [PATCH 0560/1641] fix: disable auth access logs (#9049)

---
 rootfs/etc/nginx/template/nginx.tmpl | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 02c5637f0..cde7b2b87 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -1058,6 +1058,8 @@ stream {
             opentracing_propagate_context;
             {{ end }}
 
+            access_log off;
+
             # Ensure that modsecurity will not run on an internal location as this is not accessible from outside
             {{ if $all.Cfg.EnableModsecurity }}
             modsecurity off;

From 275d5e15e7024af34fa864c2bdbcbf404efea6f6 Mon Sep 17 00:00:00 2001
From: Jack Ivanov <17044561+jackivanov@users.noreply.github.com>
Date: Mon, 9 Jan 2023 14:01:29 +0300
Subject: [PATCH 0561/1641] Add buildResolvers to the stream module (#9184)

---
 rootfs/etc/nginx/template/nginx.tmpl | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index cde7b2b87..fc48de912 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -736,6 +736,8 @@ stream {
     lua_package_path "/etc/nginx/lua/?.lua;/etc/nginx/lua/vendor/?.lua;;";
 
     lua_shared_dict tcp_udp_configuration_data 5M;
+    
+    {{ buildResolvers $cfg.Resolver $cfg.DisableIpv6DNS }}
 
     init_by_lua_block {
         collectgarbage("collect")

From 54dd88a5d1c1ae432e132b5f96ead24ce3b3314b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Jan 2023 06:09:32 -0800
Subject: [PATCH 0562/1641] Bump golang.org/x/crypto from 0.4.0 to 0.5.0
 (#9494)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.4.0 to 0.5.0.
- [Release notes](https://github.com/golang/crypto/releases)
- [Commits](https://github.com/golang/crypto/compare/v0.4.0...v0.5.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 10 +++++-----
 go.sum | 20 ++++++++++----------
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/go.mod b/go.mod
index b074e7c10..2daf8e667 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.1
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.4.0
+	golang.org/x/crypto v0.5.0
 	google.golang.org/grpc v1.51.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -109,11 +109,11 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.7.0 // indirect
-	golang.org/x/net v0.4.0 // indirect
+	golang.org/x/net v0.5.0 // indirect
 	golang.org/x/oauth2 v0.3.0 // indirect
-	golang.org/x/sys v0.3.0 // indirect
-	golang.org/x/term v0.3.0 // indirect
-	golang.org/x/text v0.5.0 // indirect
+	golang.org/x/sys v0.4.0 // indirect
+	golang.org/x/term v0.4.0 // indirect
+	golang.org/x/text v0.6.0 // indirect
 	golang.org/x/time v0.0.0-20220609170525-579cf78fd858 // indirect
 	golang.org/x/tools v0.4.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
diff --git a/go.sum b/go.sum
index 684ae5beb..84a8bb106 100644
--- a/go.sum
+++ b/go.sum
@@ -423,8 +423,8 @@ golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPh
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20211215153901-e495a2d5b3d3/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
-golang.org/x/crypto v0.4.0 h1:UVQgzMY87xqpKNgb+kDsll2Igd33HszWHFLmpaRMq/8=
-golang.org/x/crypto v0.4.0/go.mod h1:3quD/ATkf6oY+rnes5c3ExXTbLc8mueNue5/DoinL80=
+golang.org/x/crypto v0.5.0 h1:U/0M97KRkSFvyD/3FSmdP5W5swImpNgle/EHFhOsQPE=
+golang.org/x/crypto v0.5.0/go.mod h1:NK/OQwhpMQP3MwtdjgLlYHnH9ebylxKWv3e0fK+mkQU=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -491,8 +491,8 @@ golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.4.0 h1:Q5QPcMlvfxFTAPV0+07Xz/MpK9NTXu2VDUuy0FeMfaU=
-golang.org/x/net v0.4.0/go.mod h1:MBQ8lrhLObU/6UmLb4fmbmk5OcyYmqtbGd/9yIeKjEE=
+golang.org/x/net v0.5.0 h1:GyT4nK/YDHSqa1c4753ouYCDajOYKTja9Xb/OHtgvSw=
+golang.org/x/net v0.5.0/go.mod h1:DivGGAXEgPSlEBzxGzZI+ZLohi+xUj054jfeKui00ws=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -558,19 +558,19 @@ golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.3.0 h1:w8ZOecv6NaNa/zC8944JTU3vz4u6Lagfk4RPQxv92NQ=
-golang.org/x/sys v0.3.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.4.0 h1:Zr2JFtRQNX3BCZ8YtxRE9hNJYC8J6I1MVbMg6owUp18=
+golang.org/x/sys v0.4.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.3.0 h1:qoo4akIqOcDME5bhc/NgxUdovd6BSS2uMsVjB56q1xI=
-golang.org/x/term v0.3.0/go.mod h1:q750SLmJuPmVoN1blW3UFBPREJfb1KmY3vwxfr+nFDA=
+golang.org/x/term v0.4.0 h1:O7UWfv5+A2qiuulQk30kVinPoMtoIPeVaKLEgLpVkvg=
+golang.org/x/term v0.4.0/go.mod h1:9P2UbLfCdcvo3p/nzKvsmas4TnlujnuoV9hGgYzW1lQ=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.5.0 h1:OLmvp0KP+FVG99Ct/qFiL/Fhk4zp4QQnZ7b2U+5piUM=
-golang.org/x/text v0.5.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.6.0 h1:3XmdazWV+ubf7QgHSTWeykHOci5oeekaGJBLkrkaw4k=
+golang.org/x/text v0.6.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=

From e7bee5308e84269d13b58352aeae3a6f27ea6e52 Mon Sep 17 00:00:00 2001
From: Marcus Noble <AverageMarcus@users.noreply.github.com>
Date: Mon, 9 Jan 2023 14:37:31 +0000
Subject: [PATCH 0563/1641] added option to disable sync event creation (#8528)

* added option to disable event creation

Signed-off-by: Marcus Noble <github@marcusnoble.co.uk>

* Re-trigger github workflows

Signed-off-by: Marcus Noble <github@marcusnoble.co.uk>

Signed-off-by: Marcus Noble <github@marcusnoble.co.uk>
---
 docs/user-guide/cli-arguments.md              |   1 +
 internal/ingress/controller/controller.go     |   2 +
 .../ingress/controller/controller_test.go     |   4 +-
 internal/ingress/controller/nginx.go          |   3 +-
 internal/ingress/controller/store/store.go    |  11 +-
 .../ingress/controller/store/store_test.go    |  33 ++++--
 pkg/flags/flags.go                            |   3 +
 test/e2e/settings/disable_sync_events.go      | 107 ++++++++++++++++++
 8 files changed, 147 insertions(+), 17 deletions(-)
 create mode 100644 test/e2e/settings/disable_sync_events.go

diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index ab483b1cd..4379d0b34 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -18,6 +18,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--disable-catch-all`              | Disable support for catch-all Ingresses. (default false) |
 | `--disable-full-test` | Disable full test of all merged ingresses at the admission stage and tests the template of the ingress being created or updated  (full test of all ingresses is enabled by default). |
 | `--disable-svc-external-name` | Disable support for Services of type ExternalName. (default false) |
+| `--disable-sync-events` | Disables the creation of 'Sync' Event resources, but still logs them |
 | `--dynamic-configuration-retries` | Number of times to retry failed dynamic configuration before failing to sync an ingress. (default 15) |
 | `--election-id`                    | Election id to use for Ingress status updates. (default "ingress-controller-leader") |
 | `--enable-metrics`                 | Enables the collection of NGINX metrics. (default true) |
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 8eee56647..010eba162 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -129,6 +129,8 @@ type Configuration struct {
 	DeepInspector         bool
 
 	DynamicConfigurationRetries int
+
+	DisableSyncEvents bool
 }
 
 // GetPublishService returns the Service used to set the load-balancer status of Ingresses.
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index da9f10e45..796012cd3 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -2404,6 +2404,7 @@ func newNGINXController(t *testing.T) *NGINXController {
 			Controller:      "k8s.io/ingress-nginx",
 			AnnotationValue: "nginx",
 		},
+		false,
 	)
 
 	sslCert := ssl.GetFakeSSLCert()
@@ -2468,7 +2469,8 @@ func newDynamicNginxController(t *testing.T, setConfigMap func(string) *v1.Confi
 		&ingressclass.IngressClassConfiguration{
 			Controller:      "k8s.io/ingress-nginx",
 			AnnotationValue: "nginx",
-		})
+		},
+		false)
 
 	sslCert := ssl.GetFakeSSLCert()
 	config := &Configuration{
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 4b543ea2f..5575009ea 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -136,7 +136,8 @@ func NewNGINXController(config *Configuration, mc metric.Collector) *NGINXContro
 		n.updateCh,
 		config.DisableCatchAll,
 		config.DeepInspector,
-		config.IngressClassConfiguration)
+		config.IngressClassConfiguration,
+		config.DisableSyncEvents)
 
 	n.syncQueue = task.NewTaskQueue(n.syncIngress)
 
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 7f493bd8a..13af28137 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -251,7 +251,8 @@ func New(
 	updateCh *channels.RingChannel,
 	disableCatchAll bool,
 	deepInspector bool,
-	icConfig *ingressclass.IngressClassConfiguration) Storer {
+	icConfig *ingressclass.IngressClassConfiguration,
+	disableSyncEvents bool) Storer {
 
 	store := &k8sStore{
 		informers:             &Informer{},
@@ -267,9 +268,11 @@ func New(
 
 	eventBroadcaster := record.NewBroadcaster()
 	eventBroadcaster.StartLogging(klog.Infof)
-	eventBroadcaster.StartRecordingToSink(&clientcorev1.EventSinkImpl{
-		Interface: client.CoreV1().Events(namespace),
-	})
+	if !disableSyncEvents {
+		eventBroadcaster.StartRecordingToSink(&clientcorev1.EventSinkImpl{
+			Interface: client.CoreV1().Events(namespace),
+		})
+	}
 	recorder := eventBroadcaster.NewRecorder(scheme.Scheme, corev1.EventSource{
 		Component: "nginx-ingress-controller",
 	})
diff --git a/internal/ingress/controller/store/store_test.go b/internal/ingress/controller/store/store_test.go
index 9b8947f9c..9fe6e37bb 100644
--- a/internal/ingress/controller/store/store_test.go
+++ b/internal/ingress/controller/store/store_test.go
@@ -125,7 +125,8 @@ func TestStore(t *testing.T) {
 			updateCh,
 			false,
 			true,
-			DefaultClassConfig)
+			DefaultClassConfig,
+			false)
 
 		storer.Run(stopCh)
 
@@ -206,7 +207,8 @@ func TestStore(t *testing.T) {
 			updateCh,
 			false,
 			true,
-			DefaultClassConfig)
+			DefaultClassConfig,
+			false)
 
 		storer.Run(stopCh)
 		ic := createIngressClass(clientSet, t, "not-k8s.io/not-ingress-nginx")
@@ -310,7 +312,8 @@ func TestStore(t *testing.T) {
 			updateCh,
 			false,
 			true,
-			DefaultClassConfig)
+			DefaultClassConfig,
+			false)
 
 		storer.Run(stopCh)
 		validSpec := commonIngressSpec
@@ -426,7 +429,8 @@ func TestStore(t *testing.T) {
 			updateCh,
 			false,
 			true,
-			ingressClassconfig)
+			ingressClassconfig,
+			false)
 
 		storer.Run(stopCh)
 
@@ -556,7 +560,8 @@ func TestStore(t *testing.T) {
 			updateCh,
 			false,
 			true,
-			ingressClassconfig)
+			ingressClassconfig,
+			false)
 
 		storer.Run(stopCh)
 		validSpec := commonIngressSpec
@@ -656,7 +661,8 @@ func TestStore(t *testing.T) {
 			updateCh,
 			false,
 			true,
-			DefaultClassConfig)
+			DefaultClassConfig,
+			false)
 
 		storer.Run(stopCh)
 
@@ -750,7 +756,8 @@ func TestStore(t *testing.T) {
 			updateCh,
 			false,
 			true,
-			DefaultClassConfig)
+			DefaultClassConfig,
+			false)
 
 		storer.Run(stopCh)
 		invalidSpec := commonIngressSpec
@@ -836,7 +843,8 @@ func TestStore(t *testing.T) {
 			updateCh,
 			false,
 			true,
-			DefaultClassConfig)
+			DefaultClassConfig,
+			false)
 
 		storer.Run(stopCh)
 
@@ -932,7 +940,8 @@ func TestStore(t *testing.T) {
 			updateCh,
 			false,
 			true,
-			DefaultClassConfig)
+			DefaultClassConfig,
+			false)
 
 		storer.Run(stopCh)
 
@@ -1056,7 +1065,8 @@ func TestStore(t *testing.T) {
 			updateCh,
 			false,
 			true,
-			DefaultClassConfig)
+			DefaultClassConfig,
+			false)
 
 		storer.Run(stopCh)
 
@@ -1177,7 +1187,8 @@ func TestStore(t *testing.T) {
 			updateCh,
 			false,
 			true,
-			DefaultClassConfig)
+			DefaultClassConfig,
+			false)
 
 		storer.Run(stopCh)
 
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index 65b5fbcdc..6e183289c 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -214,6 +214,8 @@ Takes the form "<host>:port". If not provided, no admission controller is starte
 		deepInspector = flags.Bool("deep-inspect", true, "Enables ingress object security deep inspector")
 
 		dynamicConfigurationRetries = flags.Int("dynamic-configuration-retries", 15, "Number of times to retry failed dynamic configuration before failing to sync an ingress.")
+
+		disableSyncEvents = flags.Bool("disable-sync-events", false, "Disables the creation of 'Sync' event resources")
 	)
 
 	flags.StringVar(&nginx.MaxmindMirror, "maxmind-mirror", "", `Maxmind mirror url (example: http://geoip.local/databases.`)
@@ -364,6 +366,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		ValidationWebhookCertPath: *validationWebhookCert,
 		ValidationWebhookKeyPath:  *validationWebhookKey,
 		InternalLoggerAddress:     *internalLoggerAddress,
+		DisableSyncEvents:         *disableSyncEvents,
 	}
 
 	if *apiserverHost != "" {
diff --git a/test/e2e/settings/disable_sync_events.go b/test/e2e/settings/disable_sync_events.go
new file mode 100644
index 000000000..7d1298087
--- /dev/null
+++ b/test/e2e/settings/disable_sync_events.go
@@ -0,0 +1,107 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package settings
+
+import (
+	"context"
+	"fmt"
+	"strings"
+
+	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
+	appsv1 "k8s.io/api/apps/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.IngressNginxDescribe("[Flag] disable-sync-events", func() {
+	f := framework.NewDefaultFramework("disable-sync-events")
+
+	ginkgo.It("should create sync events (default)", func() {
+		host := "sync-events-default"
+		f.NewEchoDeployment(framework.WithDeploymentReplicas(1))
+
+		ing := framework.NewSingleIngressWithIngressClass(host, "/", host, f.Namespace, framework.EchoService, f.IngressClass, 80, nil)
+		ing = f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, fmt.Sprintf("server_name %v", host))
+			})
+
+		events, err := f.KubeClientSet.CoreV1().Events(ing.Namespace).List(context.TODO(), metav1.ListOptions{FieldSelector: "reason=Sync,involvedObject.name=" + host})
+		assert.Nil(ginkgo.GinkgoT(), err, "listing events")
+
+		assert.NotEmpty(ginkgo.GinkgoT(), events.Items, "got events")
+	})
+
+	ginkgo.It("should create sync events", func() {
+		host := "disable-sync-events-false"
+		f.NewEchoDeployment(framework.WithDeploymentReplicas(1))
+
+		err := f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
+			args := deployment.Spec.Template.Spec.Containers[0].Args
+			args = append(args, "--disable-sync-events=false")
+			deployment.Spec.Template.Spec.Containers[0].Args = args
+			_, err := f.KubeClientSet.AppsV1().Deployments(f.Namespace).Update(context.TODO(), deployment, metav1.UpdateOptions{})
+			return err
+		})
+		assert.Nil(ginkgo.GinkgoT(), err, "updating ingress controller deployment flags")
+
+		ing := framework.NewSingleIngressWithIngressClass(host, "/", host, f.Namespace, framework.EchoService, f.IngressClass, 80, nil)
+		ing = f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, fmt.Sprintf("server_name %v", host))
+			})
+
+		events, err := f.KubeClientSet.CoreV1().Events(ing.Namespace).List(context.TODO(), metav1.ListOptions{FieldSelector: "reason=Sync,involvedObject.name=" + host})
+		assert.Nil(ginkgo.GinkgoT(), err, "listing events")
+
+		assert.NotEmpty(ginkgo.GinkgoT(), events.Items, "got events")
+	})
+
+	ginkgo.It("should not create sync events", func() {
+		host := "disable-sync-events-true"
+		f.NewEchoDeployment(framework.WithDeploymentReplicas(1))
+
+		err := f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
+			args := deployment.Spec.Template.Spec.Containers[0].Args
+			args = append(args, "--disable-sync-events=true")
+			deployment.Spec.Template.Spec.Containers[0].Args = args
+			_, err := f.KubeClientSet.AppsV1().Deployments(f.Namespace).Update(context.TODO(), deployment, metav1.UpdateOptions{})
+			return err
+		})
+		assert.Nil(ginkgo.GinkgoT(), err, "updating ingress controller deployment flags")
+
+		ing := framework.NewSingleIngressWithIngressClass(host, "/", host, f.Namespace, framework.EchoService, f.IngressClass, 80, nil)
+		ing = f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, fmt.Sprintf("server_name %v", host))
+			})
+
+		events, err := f.KubeClientSet.CoreV1().Events(ing.Namespace).List(context.TODO(), metav1.ListOptions{FieldSelector: "reason=Sync,involvedObject.name=" + host})
+		assert.Nil(ginkgo.GinkgoT(), err, "listing events")
+
+		assert.Empty(ginkgo.GinkgoT(), events.Items, "got events")
+	})
+
+})

From 54e2739282a4d878a65d61c1bf797337164f0eed Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jo=C3=A3o=20Henri?= <joao.henri.cr@gmail.com>
Date: Tue, 10 Jan 2023 12:47:26 -0300
Subject: [PATCH 0564/1641] Remove nonexistent load flag from docker build
 commands (#9122)

---
 Makefile | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/Makefile b/Makefile
index 5099b4645..0ce3e3cef 100644
--- a/Makefile
+++ b/Makefile
@@ -201,7 +201,6 @@ dev-env-stop: ## Deletes local Kubernetes cluster created by kind.
 live-docs: ## Build and launch a local copy of the documentation website in http://localhost:8000
 	@docker build ${PLATFORM_FLAG} ${PLATFORM} \
                   		--no-cache \
-                  		$(MAC_DOCKER_FLAGS) \
                   		 -t ingress-nginx-docs .github/actions/mkdocs
 	@docker run ${PLATFORM_FLAG} ${PLATFORM} --rm -it \
 		-p 8000:8000 \
@@ -241,6 +240,7 @@ release: ensure-buildx clean
 
 	docker buildx build \
 		--no-cache \
+		$(MAC_DOCKER_FLAGS) \
 		--push \
 		--pull \
 		--progress plain \
@@ -253,6 +253,7 @@ release: ensure-buildx clean
 
 	docker buildx build \
 		--no-cache \
+		$(MAC_DOCKER_FLAGS) \
 		--push \
 		--pull \
 		--progress plain \

From ada114315eeeb141111a9fa540e1ed521e647b88 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 10 Jan 2023 11:20:21 -0500
Subject: [PATCH 0565/1641] Remove 1.5.2 from readme (#9498)

---
 README.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/README.md b/README.md
index 73baa8fd2..f8c020b68 100644
--- a/README.md
+++ b/README.md
@@ -38,7 +38,6 @@ the versions listed. Ingress-Nginx versions may work on older versions but the p
 
 | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
-| v1.5.2                | 1.26, 1.25, 1.24, 1.23       | 3.17.2         | 1.21.6        |
 | v1.5.1                | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        |
 | v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      |
 | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      |

From 5b2a9475dc2260dc15561fd117dc221b892464da Mon Sep 17 00:00:00 2001
From: Tomas Hulata <tombo@sysart.tech>
Date: Mon, 16 Jan 2023 03:46:50 +0100
Subject: [PATCH 0566/1641] feat: support topology aware hints (#9165)

* support topology aware hints

Signed-off-by: tombokombo <tombo@sysart.tech>

* add flag to enable topology and fixes

Signed-off-by: tombokombo <tombo@sysart.tech>

* update readme

Signed-off-by: tombokombo <tombo@sysart.tech>

* add e2e test

Signed-off-by: tombokombo <tombo@sysart.tech>

* isolate topology test

Signed-off-by: tombokombo <tombo@sysart.tech>

* gofmt fix

Signed-off-by: tombokombo <tombo@sysart.tech>

Signed-off-by: tombokombo <tombo@sysart.tech>
---
 charts/ingress-nginx/README.md                |   1 +
 charts/ingress-nginx/templates/_params.tpl    |   3 +
 charts/ingress-nginx/values.yaml              |   4 +
 docs/user-guide/cli-arguments.md              |   1 +
 internal/ingress/controller/controller.go     |  55 +++-
 internal/ingress/controller/endpointslices.go |  31 ++-
 .../ingress/controller/endpointslices_test.go | 261 +++++++++++++++++-
 internal/k8s/main.go                          |  20 ++
 pkg/flags/flags.go                            |   3 +
 test/e2e-image/e2e.sh                         |  12 +-
 .../namespace-overlays/topology/values.yaml   |  51 ++++
 test/e2e/endpointslices/topology.go           | 112 ++++++++
 test/e2e/framework/deployment.go              |  22 +-
 test/e2e/kind.yaml                            |   6 +
 14 files changed, 564 insertions(+), 18 deletions(-)
 create mode 100644 test/e2e-image/namespace-overlays/topology/values.yaml
 create mode 100644 test/e2e/endpointslices/topology.go

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 00d85156e..817059af2 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -315,6 +315,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.dnsPolicy | string | `"ClusterFirst"` | Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'. By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller to keep resolving names inside the k8s network, use ClusterFirstWithHostNet. |
 | controller.electionID | string | `""` | Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader' |
 | controller.enableMimalloc | bool | `true` | Enable mimalloc as a drop-in replacement for malloc. # ref: https://github.com/microsoft/mimalloc # |
+| controller.enableTopologyAwareRouting | bool | `false` | This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-aware-hints="auto" Defaults to false |
 | controller.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | controller.extraArgs | object | `{}` | Additional command line arguments to pass to nginx-ingress-controller E.g. to specify the default SSL certificate you can use |
 | controller.extraContainers | list | `[]` | Additional containers to be added to the controller pod. See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example. |
diff --git a/charts/ingress-nginx/templates/_params.tpl b/charts/ingress-nginx/templates/_params.tpl
index 66c581fa6..a1aef01ae 100644
--- a/charts/ingress-nginx/templates/_params.tpl
+++ b/charts/ingress-nginx/templates/_params.tpl
@@ -51,6 +51,9 @@
 {{- if .Values.controller.watchIngressWithoutClass }}
 - --watch-ingress-without-class=true
 {{- end }}
+{{- if .Values.controller.enableTopologyAwareRouting }}
+- --enable-topology-aware-routing=true
+{{- end }}
 {{- range $key, $value := .Values.controller.extraArgs }}
 {{- /* Accept keys without values or with false as value */}}
 {{- if eq ($value | quote | len) 2 }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index a7fab0fe9..a6df47694 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -77,6 +77,10 @@ controller:
   # -- Process IngressClass per name (additionally as per spec.controller).
   ingressClassByName: false
 
+  # -- This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-aware-hints="auto"
+  # Defaults to false
+  enableTopologyAwareRouting: false
+
   # -- This configuration defines if Ingress Controller should allow users to set
   # their own *-snippet annotations, otherwise this is forbidden / dropped
   # when users add those annotations.
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index 4379d0b34..febc6f762 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -24,6 +24,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--enable-metrics`                 | Enables the collection of NGINX metrics. (default true) |
 | `--enable-ssl-chain-completion`    | Autocomplete SSL certificate chains with missing intermediate CA certificates. Certificates uploaded to Kubernetes must have the "Authority Information Access" X.509 v3 extension for this to succeed. (default false)|
 | `--enable-ssl-passthrough`         | Enable SSL Passthrough. (default false) |
+| `--enable-topology-aware-routing`  | Enable topology aware hints feature, needs service object annotation service.kubernetes.io/topology-aware-hints sets to auto. (default false) |
 | `--health-check-path`              | URL path of the health check endpoint. Configured inside the NGINX status server. All requests received on the port defined by the healthz-port parameter are forwarded internally to this path. (default "/healthz") |
 | `--health-check-timeout`           | Time limit, in seconds, for a probe to health-check-path to succeed. (default 10) |
 | `--healthz-port`                   | Port to use for the healthz endpoint. (default 10254) |
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 010eba162..8bacb3025 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -53,6 +53,7 @@ const (
 	defUpstreamName = "upstream-default-backend"
 	defServerName   = "_"
 	rootLocation    = "/"
+	emptyZone       = ""
 )
 
 // Configuration contains all the settings required by an Ingress controller
@@ -131,6 +132,21 @@ type Configuration struct {
 	DynamicConfigurationRetries int
 
 	DisableSyncEvents bool
+
+	EnableTopologyAwareRouting bool
+}
+
+func getIngressPodZone(svc *apiv1.Service) string {
+	svcKey := k8s.MetaNamespaceKey(svc)
+	if svcZoneAnnotation, ok := svc.ObjectMeta.GetAnnotations()[apiv1.AnnotationTopologyAwareHints]; ok {
+		if strings.ToLower(svcZoneAnnotation) == "auto" {
+			if foundZone, ok := k8s.IngressNodeDetails.GetLabels()[apiv1.LabelTopologyZone]; ok {
+				klog.V(3).Infof("Svc has topology aware annotation enabled, try to use zone %q where controller pod is running for Service %q ", foundZone, svcKey)
+				return foundZone
+			}
+		}
+	}
+	return emptyZone
 }
 
 // GetPublishService returns the Service used to set the load-balancer status of Ingresses.
@@ -429,6 +445,13 @@ func (n *NGINXController) getStreamServices(configmapName string, proto apiv1.Pr
 		var endps []ingress.Endpoint
 		/* #nosec */
 		targetPort, err := strconv.Atoi(svcPort) // #nosec
+		var zone string
+		if n.cfg.EnableTopologyAwareRouting {
+			zone = getIngressPodZone(svc)
+		} else {
+			zone = emptyZone
+		}
+
 		if err != nil {
 			// not a port number, fall back to using port name
 			klog.V(3).Infof("Searching Endpoints with %v port name %q for Service %q", proto, svcPort, nsName)
@@ -436,7 +459,7 @@ func (n *NGINXController) getStreamServices(configmapName string, proto apiv1.Pr
 				sp := svc.Spec.Ports[i]
 				if sp.Name == svcPort {
 					if sp.Protocol == proto {
-						endps = getEndpointsFromSlices(svc, &sp, proto, n.store.GetServiceEndpointsSlices)
+						endps = getEndpointsFromSlices(svc, &sp, proto, zone, n.store.GetServiceEndpointsSlices)
 						break
 					}
 				}
@@ -447,7 +470,7 @@ func (n *NGINXController) getStreamServices(configmapName string, proto apiv1.Pr
 				sp := svc.Spec.Ports[i]
 				if sp.Port == int32(targetPort) {
 					if sp.Protocol == proto {
-						endps = getEndpointsFromSlices(svc, &sp, proto, n.store.GetServiceEndpointsSlices)
+						endps = getEndpointsFromSlices(svc, &sp, proto, zone, n.store.GetServiceEndpointsSlices)
 						break
 					}
 				}
@@ -498,8 +521,13 @@ func (n *NGINXController) getDefaultUpstream() *ingress.Backend {
 		upstream.Endpoints = append(upstream.Endpoints, n.DefaultEndpoint())
 		return upstream
 	}
-
-	endps := getEndpointsFromSlices(svc, &svc.Spec.Ports[0], apiv1.ProtocolTCP, n.store.GetServiceEndpointsSlices)
+	var zone string
+	if n.cfg.EnableTopologyAwareRouting {
+		zone = getIngressPodZone(svc)
+	} else {
+		zone = emptyZone
+	}
+	endps := getEndpointsFromSlices(svc, &svc.Spec.Ports[0], apiv1.ProtocolTCP, zone, n.store.GetServiceEndpointsSlices)
 	if len(endps) == 0 {
 		klog.Warningf("Service %q does not have any active Endpoint", svcKey)
 		endps = []ingress.Endpoint{n.DefaultEndpoint()}
@@ -827,7 +855,13 @@ func (n *NGINXController) getBackendServers(ingresses []*ingress.Ingress) ([]*in
 				}
 
 				sp := location.DefaultBackend.Spec.Ports[0]
-				endps := getEndpointsFromSlices(location.DefaultBackend, &sp, apiv1.ProtocolTCP, n.store.GetServiceEndpointsSlices)
+				var zone string
+				if n.cfg.EnableTopologyAwareRouting {
+					zone = getIngressPodZone(location.DefaultBackend)
+				} else {
+					zone = emptyZone
+				}
+				endps := getEndpointsFromSlices(location.DefaultBackend, &sp, apiv1.ProtocolTCP, zone, n.store.GetServiceEndpointsSlices)
 				// custom backend is valid only if contains at least one endpoint
 				if len(endps) > 0 {
 					name := fmt.Sprintf("custom-default-backend-%v-%v", location.DefaultBackend.GetNamespace(), location.DefaultBackend.GetName())
@@ -1083,7 +1117,12 @@ func (n *NGINXController) serviceEndpoints(svcKey, backendPort string) ([]ingres
 	if err != nil {
 		return upstreams, err
 	}
-
+	var zone string
+	if n.cfg.EnableTopologyAwareRouting {
+		zone = getIngressPodZone(svc)
+	} else {
+		zone = emptyZone
+	}
 	klog.V(3).Infof("Obtaining ports information for Service %q", svcKey)
 	// Ingress with an ExternalName Service and no port defined for that Service
 	if svc.Spec.Type == apiv1.ServiceTypeExternalName {
@@ -1092,7 +1131,7 @@ func (n *NGINXController) serviceEndpoints(svcKey, backendPort string) ([]ingres
 			return upstreams, nil
 		}
 		servicePort := externalNamePorts(backendPort, svc)
-		endps := getEndpointsFromSlices(svc, servicePort, apiv1.ProtocolTCP, n.store.GetServiceEndpointsSlices)
+		endps := getEndpointsFromSlices(svc, servicePort, apiv1.ProtocolTCP, zone, n.store.GetServiceEndpointsSlices)
 		if len(endps) == 0 {
 			klog.Warningf("Service %q does not have any active Endpoint.", svcKey)
 			return upstreams, nil
@@ -1109,7 +1148,7 @@ func (n *NGINXController) serviceEndpoints(svcKey, backendPort string) ([]ingres
 			servicePort.TargetPort.String() == backendPort ||
 			servicePort.Name == backendPort {
 
-			endps := getEndpointsFromSlices(svc, &servicePort, apiv1.ProtocolTCP, n.store.GetServiceEndpointsSlices)
+			endps := getEndpointsFromSlices(svc, &servicePort, apiv1.ProtocolTCP, zone, n.store.GetServiceEndpointsSlices)
 			if len(endps) == 0 {
 				klog.Warningf("Service %q does not have any active Endpoint.", svcKey)
 			}
diff --git a/internal/ingress/controller/endpointslices.go b/internal/ingress/controller/endpointslices.go
index 5a24c3880..34d5266dd 100644
--- a/internal/ingress/controller/endpointslices.go
+++ b/internal/ingress/controller/endpointslices.go
@@ -35,7 +35,7 @@ import (
 )
 
 // getEndpoints returns a list of Endpoint structs for a given service/target port combination.
-func getEndpointsFromSlices(s *corev1.Service, port *corev1.ServicePort, proto corev1.Protocol,
+func getEndpointsFromSlices(s *corev1.Service, port *corev1.ServicePort, proto corev1.Protocol, zoneForHints string,
 	getServiceEndpointsSlices func(string) ([]*discoveryv1.EndpointSlice, error)) []ingress.Endpoint {
 
 	upsServers := []ingress.Endpoint{}
@@ -49,6 +49,7 @@ func getEndpointsFromSlices(s *corev1.Service, port *corev1.ServicePort, proto c
 	processedUpstreamServers := make(map[string]struct{})
 
 	svcKey := k8s.MetaNamespaceKey(s)
+	var useTopologyHints bool
 
 	// ExternalName services
 	if s.Spec.Type == corev1.ServiceTypeExternalName {
@@ -111,12 +112,38 @@ func getEndpointsFromSlices(s *corev1.Service, port *corev1.ServicePort, proto c
 				ports = append(ports, targetPort)
 			}
 		}
+		useTopologyHints = false
+		if zoneForHints != emptyZone {
+			useTopologyHints = true
+			// check if all endpointslices has zone hints
+			for _, ep := range eps.Endpoints {
+				if ep.Hints == nil || len(ep.Hints.ForZones) == 0 {
+					useTopologyHints = false
+					break
+				}
+			}
+			if useTopologyHints {
+				klog.V(3).Infof("All endpoint slices has zone hint, using zone %q for Service %q", zoneForHints, svcKey)
+			}
+		}
+
 		for _, ep := range eps.Endpoints {
 			if !(*ep.Conditions.Ready) {
 				continue
 			}
+			epHasZone := false
+			if useTopologyHints {
+				for _, epzone := range ep.Hints.ForZones {
+					if epzone.Name == zoneForHints {
+						epHasZone = true
+						break
+					}
+				}
+			}
 
-			// ep.Hints
+			if useTopologyHints && !epHasZone {
+				continue
+			}
 
 			for _, epPort := range ports {
 				for _, epAddress := range ep.Addresses {
diff --git a/internal/ingress/controller/endpointslices_test.go b/internal/ingress/controller/endpointslices_test.go
index e404c4949..b61e9a4f3 100644
--- a/internal/ingress/controller/endpointslices_test.go
+++ b/internal/ingress/controller/endpointslices_test.go
@@ -33,6 +33,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 		svc    *corev1.Service
 		port   *corev1.ServicePort
 		proto  corev1.Protocol
+		zone   string
 		fn     func(string) ([]*discoveryv1.EndpointSlice, error)
 		result []ingress.Endpoint
 	}{
@@ -41,6 +42,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 			nil,
 			nil,
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return nil, nil
 			},
@@ -51,6 +53,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 			&corev1.Service{},
 			nil,
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return nil, nil
 			},
@@ -61,6 +64,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 			&corev1.Service{},
 			&corev1.ServicePort{Name: "default"},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{}, nil
 			},
@@ -75,6 +79,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 			},
 			&corev1.ServicePort{Name: "default"},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{}, nil
 			},
@@ -99,6 +104,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{}, nil
 			},
@@ -123,6 +129,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{}, nil
 			},
@@ -147,6 +154,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{}, nil
 			},
@@ -176,6 +184,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{}, nil
 			},
@@ -205,6 +214,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{}, nil
 			},
@@ -229,6 +239,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return nil, fmt.Errorf("unexpected error")
 			},
@@ -253,6 +264,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{{
 					ObjectMeta: metav1.ObjectMeta{
@@ -296,6 +308,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{{
 					ObjectMeta: metav1.ObjectMeta{
@@ -339,6 +352,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				TargetPort: intstr.FromString("port-1"),
 			},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{{
 					ObjectMeta: metav1.ObjectMeta{
@@ -382,6 +396,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{{
 					ObjectMeta: metav1.ObjectMeta{
@@ -430,6 +445,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				TargetPort: intstr.FromInt(80),
 			},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{{
 					ObjectMeta: metav1.ObjectMeta{
@@ -478,6 +494,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				TargetPort: intstr.FromString("port-1"),
 			},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{
 					{
@@ -552,6 +569,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				TargetPort: intstr.FromString("port-1"),
 			},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{
 					{
@@ -622,6 +640,7 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				TargetPort: intstr.FromString("port-1"),
 			},
 			corev1.ProtocolTCP,
+			"",
 			func(string) ([]*discoveryv1.EndpointSlice, error) {
 				return []*discoveryv1.EndpointSlice{{
 					ObjectMeta: metav1.ObjectMeta{
@@ -656,11 +675,251 @@ func TestGetEndpointsFromSlices(t *testing.T) {
 				},
 			},
 		},
+		{
+			"should return one endpoint which belongs to zone",
+			&corev1.Service{
+				Spec: corev1.ServiceSpec{
+					Type:      corev1.ServiceTypeClusterIP,
+					ClusterIP: "1.1.1.1",
+					Ports: []corev1.ServicePort{
+						{
+							Name:       "default",
+							TargetPort: intstr.FromString("port-1"),
+						},
+					},
+				},
+			},
+			&corev1.ServicePort{
+				Name:       "port-1",
+				TargetPort: intstr.FromString("port-1"),
+			},
+			corev1.ProtocolTCP,
+			"eu-west-1b",
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{{
+					ObjectMeta: metav1.ObjectMeta{
+						Labels: map[string]string{discoveryv1.LabelServiceName: "default"},
+					},
+					Endpoints: []discoveryv1.Endpoint{
+						{
+							Addresses: []string{"1.1.1.1"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{true}[0],
+							},
+							Hints: &[]discoveryv1.EndpointHints{{
+								ForZones: []discoveryv1.ForZone{{
+									Name: "eu-west-1b",
+								}},
+							}}[0],
+						},
+						{
+							Addresses: []string{"1.1.1.2"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{true}[0],
+							},
+							Hints: &[]discoveryv1.EndpointHints{{
+								ForZones: []discoveryv1.ForZone{{
+									Name: "eu-west-1a",
+								}},
+							}}[0],
+						},
+						{
+							Addresses: []string{"1.1.1.3"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{true}[0],
+							},
+							Hints: &[]discoveryv1.EndpointHints{{
+								ForZones: []discoveryv1.ForZone{{
+									Name: "eu-west-1c",
+								}},
+							}}[0],
+						},
+					},
+					Ports: []discoveryv1.EndpointPort{
+						{
+							Protocol: &[]corev1.Protocol{corev1.ProtocolTCP}[0],
+							Port:     &[]int32{80}[0],
+							Name:     &[]string{"port-1"}[0],
+						},
+					},
+				}}, nil
+			},
+			[]ingress.Endpoint{
+				{
+					Address: "1.1.1.1",
+					Port:    "80",
+				},
+			},
+		},
+		{
+			"should return all endpoints because one is missing zone hint",
+			&corev1.Service{
+				Spec: corev1.ServiceSpec{
+					Type:      corev1.ServiceTypeClusterIP,
+					ClusterIP: "1.1.1.1",
+					Ports: []corev1.ServicePort{
+						{
+							Name:       "default",
+							TargetPort: intstr.FromString("port-1"),
+						},
+					},
+				},
+			},
+			&corev1.ServicePort{
+				Name:       "port-1",
+				TargetPort: intstr.FromString("port-1"),
+			},
+			corev1.ProtocolTCP,
+			"eu-west-1b",
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{{
+					ObjectMeta: metav1.ObjectMeta{
+						Labels: map[string]string{discoveryv1.LabelServiceName: "default"},
+					},
+					Endpoints: []discoveryv1.Endpoint{
+						{
+							Addresses: []string{"1.1.1.1"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{true}[0],
+							},
+							Hints: &[]discoveryv1.EndpointHints{{
+								ForZones: []discoveryv1.ForZone{{
+									Name: "eu-west-1b",
+								}},
+							}}[0],
+						},
+						{
+							Addresses: []string{"1.1.1.2"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{true}[0],
+							},
+							Hints: &[]discoveryv1.EndpointHints{{
+								ForZones: []discoveryv1.ForZone{{
+									Name: "eu-west-1b",
+								}},
+							}}[0],
+						},
+						{
+							Addresses: []string{"1.1.1.3"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{true}[0],
+							},
+							Hints: &[]discoveryv1.EndpointHints{{}}[0],
+						},
+					},
+					Ports: []discoveryv1.EndpointPort{
+						{
+							Protocol: &[]corev1.Protocol{corev1.ProtocolTCP}[0],
+							Port:     &[]int32{80}[0],
+							Name:     &[]string{"port-1"}[0],
+						},
+					},
+				}}, nil
+			},
+			[]ingress.Endpoint{
+				{
+					Address: "1.1.1.1",
+					Port:    "80",
+				},
+				{
+					Address: "1.1.1.2",
+					Port:    "80",
+				},
+				{
+					Address: "1.1.1.3",
+					Port:    "80",
+				},
+			},
+		},
+		{
+			"should return all endpoints because no zone from controller node",
+			&corev1.Service{
+				Spec: corev1.ServiceSpec{
+					Type:      corev1.ServiceTypeClusterIP,
+					ClusterIP: "1.1.1.1",
+					Ports: []corev1.ServicePort{
+						{
+							Name:       "default",
+							TargetPort: intstr.FromString("port-1"),
+						},
+					},
+				},
+			},
+			&corev1.ServicePort{
+				Name:       "port-1",
+				TargetPort: intstr.FromString("port-1"),
+			},
+			corev1.ProtocolTCP,
+			"",
+			func(string) ([]*discoveryv1.EndpointSlice, error) {
+				return []*discoveryv1.EndpointSlice{{
+					ObjectMeta: metav1.ObjectMeta{
+						Labels: map[string]string{discoveryv1.LabelServiceName: "default"},
+					},
+					Endpoints: []discoveryv1.Endpoint{
+						{
+							Addresses: []string{"1.1.1.1"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{true}[0],
+							},
+							Hints: &[]discoveryv1.EndpointHints{{
+								ForZones: []discoveryv1.ForZone{{
+									Name: "eu-west-1a",
+								}},
+							}}[0],
+						},
+						{
+							Addresses: []string{"1.1.1.2"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{true}[0],
+							},
+							Hints: &[]discoveryv1.EndpointHints{{
+								ForZones: []discoveryv1.ForZone{{
+									Name: "eu-west-1b",
+								}},
+							}}[0],
+						},
+						{
+							Addresses: []string{"1.1.1.3"},
+							Conditions: discoveryv1.EndpointConditions{
+								Ready: &[]bool{true}[0],
+							},
+							Hints: &[]discoveryv1.EndpointHints{{
+								ForZones: []discoveryv1.ForZone{{
+									Name: "eu-west-1c",
+								}},
+							}}[0],
+						},
+					},
+					Ports: []discoveryv1.EndpointPort{
+						{
+							Protocol: &[]corev1.Protocol{corev1.ProtocolTCP}[0],
+							Port:     &[]int32{80}[0],
+							Name:     &[]string{"port-1"}[0],
+						},
+					},
+				}}, nil
+			},
+			[]ingress.Endpoint{
+				{
+					Address: "1.1.1.1",
+					Port:    "80",
+				},
+				{
+					Address: "1.1.1.2",
+					Port:    "80",
+				},
+				{
+					Address: "1.1.1.3",
+					Port:    "80",
+				},
+			},
+		},
 	}
 
 	for _, testCase := range tests {
 		t.Run(testCase.name, func(t *testing.T) {
-			result := getEndpointsFromSlices(testCase.svc, testCase.port, testCase.proto, testCase.fn)
+			result := getEndpointsFromSlices(testCase.svc, testCase.port, testCase.proto, testCase.zone, testCase.fn)
 			if len(testCase.result) != len(result) {
 				t.Errorf("Expected %d Endpoints but got %d", len(testCase.result), len(result))
 			}
diff --git a/internal/k8s/main.go b/internal/k8s/main.go
index 5332631a7..e0d2a1660 100644
--- a/internal/k8s/main.go
+++ b/internal/k8s/main.go
@@ -78,6 +78,8 @@ func GetNodeIPOrName(kubeClient clientset.Interface, name string, useInternalIP
 var (
 	// IngressPodDetails hold information about the ingress-nginx pod
 	IngressPodDetails *PodInfo
+	// IngressNodeDetails old information about the node running ingress-nginx pod
+	IngressNodeDetails *NodeInfo
 )
 
 // PodInfo contains runtime information about the pod running the Ingres controller
@@ -87,6 +89,12 @@ type PodInfo struct {
 	metav1.ObjectMeta
 }
 
+// NodeInfo contains runtime information about the node pod running the Ingres controller, eg. zone where pod is running
+type NodeInfo struct {
+	metav1.TypeMeta
+	metav1.ObjectMeta
+}
+
 // GetIngressPod load the ingress-nginx pod
 func GetIngressPod(kubeClient clientset.Interface) error {
 	podName := os.Getenv("POD_NAME")
@@ -108,6 +116,18 @@ func GetIngressPod(kubeClient clientset.Interface) error {
 	pod.ObjectMeta.DeepCopyInto(&IngressPodDetails.ObjectMeta)
 	IngressPodDetails.SetLabels(pod.GetLabels())
 
+	IngressNodeDetails = &NodeInfo{
+		TypeMeta: metav1.TypeMeta{APIVersion: "v1", Kind: "Node"},
+	}
+	// Try to get node info/labels to determine topology zone where pod is running
+	node, err := kubeClient.CoreV1().Nodes().Get(context.TODO(), pod.Spec.NodeName, metav1.GetOptions{})
+	if err != nil {
+		klog.Warningf("Unable to get NODE information: %v", err)
+	} else {
+		node.ObjectMeta.DeepCopyInto(&IngressNodeDetails.ObjectMeta)
+		IngressNodeDetails.SetLabels(node.GetLabels())
+	}
+
 	return nil
 }
 
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index 6e183289c..911ab775c 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -216,6 +216,8 @@ Takes the form "<host>:port". If not provided, no admission controller is starte
 		dynamicConfigurationRetries = flags.Int("dynamic-configuration-retries", 15, "Number of times to retry failed dynamic configuration before failing to sync an ingress.")
 
 		disableSyncEvents = flags.Bool("disable-sync-events", false, "Disables the creation of 'Sync' event resources")
+
+		enableTopologyAwareRouting = flags.Bool("enable-topology-aware-routing", false, "Enable topology aware hints feature, needs service object annotation service.kubernetes.io/topology-aware-hints sets to auto.")
 	)
 
 	flags.StringVar(&nginx.MaxmindMirror, "maxmind-mirror", "", `Maxmind mirror url (example: http://geoip.local/databases.`)
@@ -348,6 +350,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		SyncRateLimit:               *syncRateLimit,
 		HealthCheckHost:             *healthzHost,
 		DynamicConfigurationRetries: *dynamicConfigurationRetries,
+		EnableTopologyAwareRouting:  *enableTopologyAwareRouting,
 		ListenPorts: &ngx_config.ListenPorts{
 			Default:  *defServerPort,
 			Health:   *healthzPort,
diff --git a/test/e2e-image/e2e.sh b/test/e2e-image/e2e.sh
index 7b4d56f10..ed13926fb 100755
--- a/test/e2e-image/e2e.sh
+++ b/test/e2e-image/e2e.sh
@@ -41,12 +41,22 @@ reportFileNamePrefix="report-e2e-test-suite"
 echo -e "${BGREEN}Running e2e test suite (FOCUS=${FOCUS})...${NC}"
 ginkgo "${ginkgo_args[@]}"               \
   -focus="${FOCUS}"                  \
-  -skip="\[Serial\]|\[MemoryLeak\]"  \
+  -skip="\[Serial\]|\[MemoryLeak\]|\[TopologyHints\]"  \
   -nodes="${E2E_NODES}" \
   --junit-report=$reportFileNamePrefix.xml \
   /e2e.test
 # Create configMap out of a compressed report file for extraction later
 
+# Must be isolated, there is a collision if multiple helms tries to install same clusterRole at same time
+echo -e "${BGREEN}Running e2e test for topology aware hints...${NC}"
+ginkgo "${ginkgo_args[@]}" \
+  -focus="\[TopologyHints\]" \
+  -skip="\[Serial\]|\[MemoryLeak\]]" \
+  -nodes="${E2E_NODES}" \
+  --junit-report=$reportFileNamePrefix-topology.xml \
+  /e2e.test
+# Create configMap out of a compressed report file for extraction later
+
 echo -e "${BGREEN}Running e2e test suite with tests that require serial execution...${NC}"
 ginkgo "${ginkgo_args[@]}"   \
   -focus="\[Serial\]"    \
diff --git a/test/e2e-image/namespace-overlays/topology/values.yaml b/test/e2e-image/namespace-overlays/topology/values.yaml
new file mode 100644
index 000000000..28b1cad19
--- /dev/null
+++ b/test/e2e-image/namespace-overlays/topology/values.yaml
@@ -0,0 +1,51 @@
+# TODO: remove the need to use fullnameOverride
+fullnameOverride: nginx-ingress
+controller:
+  image:
+    repository: ingress-controller/controller
+    chroot: true
+    tag: 1.0.0-dev
+    digest:
+    digestChroot:
+  scope:
+    enabled: false
+  config:
+    worker-processes: "1"
+  readinessProbe:
+    initialDelaySeconds: 3
+    periodSeconds: 1
+  livenessProbe:
+    initialDelaySeconds: 3
+    periodSeconds: 1
+  service:
+    type: NodePort
+  electionID: ingress-controller-leader
+  ingressClassResource:
+    # We will create and remove each IC/ClusterRole/ClusterRoleBinding per test so there's no conflict
+    enabled: false
+  extraArgs:
+    tcp-services-configmap: $NAMESPACE/tcp-services
+    # e2e tests do not require information about ingress status
+    update-status: "false"
+  terminationGracePeriodSeconds: 1
+  admissionWebhooks:
+    enabled: false
+
+  enableTopologyAwareRouting: true
+
+  # ulimit -c unlimited
+  # mkdir -p /tmp/coredump
+  # chmod a+rwx /tmp/coredump
+  # echo "/tmp/coredump/core.%e.%p.%h.%t" > /proc/sys/kernel/core_pattern
+  extraVolumeMounts:
+    - name: coredump
+      mountPath: /tmp/coredump
+
+  extraVolumes:
+    - name: coredump
+      hostPath:
+        path: /tmp/coredump
+
+rbac:
+  create: true
+  scope: false
diff --git a/test/e2e/endpointslices/topology.go b/test/e2e/endpointslices/topology.go
new file mode 100644
index 000000000..ce913e966
--- /dev/null
+++ b/test/e2e/endpointslices/topology.go
@@ -0,0 +1,112 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package endpointslices
+
+import (
+	"context"
+	"encoding/json"
+	"fmt"
+	"net/http"
+	"os/exec"
+	"strings"
+
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+
+	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
+
+	"k8s.io/ingress-nginx/internal/nginx"
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.IngressNginxDescribe("[TopologyHints] topology aware routing", func() {
+	f := framework.NewDefaultFramework("topology")
+	host := "topology-svc.foo.com"
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment(framework.WithDeploymentReplicas(2), framework.WithSvcTopologyAnnotations())
+	})
+
+	ginkgo.AfterEach(func() {
+		// we need to uninstall chart because of clusterRole which is not destroyed with namespace
+		err := uninstallChart(f)
+		assert.Nil(ginkgo.GinkgoT(), err, "uninstalling helm chart")
+	})
+
+	ginkgo.It("should return 200 when service has topology hints", func() {
+
+		annotations := make(map[string]string)
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host, func(server string) bool {
+			return strings.Contains(server, fmt.Sprintf("server_name %s", host))
+		})
+
+		ginkgo.By("checking if the service is reached")
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+
+		slices, err := f.KubeClientSet.DiscoveryV1().EndpointSlices(f.Namespace).List(context.TODO(), metav1.ListOptions{
+			LabelSelector: "kubernetes.io/service-name=echo",
+			Limit:         1,
+		})
+		assert.Nil(ginkgo.GinkgoT(), err)
+
+		// check if we have hints, really depends on k8s endpoint slice controller
+		gotHints := true
+		for _, ep := range slices.Items[0].Endpoints {
+			if ep.Hints == nil || len(ep.Hints.ForZones) == 0 {
+				gotHints = false
+				break
+			}
+		}
+
+		curlCmd := fmt.Sprintf("curl --fail --silent http://localhost:%v/configuration/backends", nginx.StatusPort)
+		status, err := f.ExecIngressPod(curlCmd)
+		assert.Nil(ginkgo.GinkgoT(), err)
+		var backends []map[string]interface{}
+		json.Unmarshal([]byte(status), &backends)
+		gotBackends := 0
+		for _, bck := range backends {
+			if strings.Contains(bck["name"].(string), "topology") {
+				gotBackends = len(bck["endpoints"].([]interface{}))
+			}
+		}
+
+		if gotHints {
+			//we have 2 replics, if there is just one backend it means that we are routing according slices hints to same zone as controller is
+			assert.Equal(ginkgo.GinkgoT(), 1, gotBackends)
+		} else {
+			// two replicas should have two endpoints without topology hints
+			assert.Equal(ginkgo.GinkgoT(), 2, gotBackends)
+		}
+	})
+})
+
+func uninstallChart(f *framework.Framework) error {
+	cmd := exec.Command("helm", "uninstall", "--namespace", f.Namespace, "nginx-ingress")
+	_, err := cmd.CombinedOutput()
+	if err != nil {
+		return fmt.Errorf("unexpected error uninstalling ingress-nginx release: %v", err)
+	}
+
+	return nil
+}
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 3cfe8f360..8115fd12e 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -40,10 +40,10 @@ const SlowEchoService = "slow-echo"
 const HTTPBinService = "httpbin"
 
 type deploymentOptions struct {
-	namespace string
-	name      string
-	replicas  int
-	image     string
+	namespace      string
+	name           string
+	replicas       int
+	svcAnnotations map[string]string
 }
 
 // WithDeploymentNamespace allows configuring the deployment's namespace
@@ -53,6 +53,15 @@ func WithDeploymentNamespace(n string) func(*deploymentOptions) {
 	}
 }
 
+// WithSvcTopologyAnnotations create svc with topology aware hints sets to auto
+func WithSvcTopologyAnnotations() func(*deploymentOptions) {
+	return func(o *deploymentOptions) {
+		o.svcAnnotations = map[string]string{
+			"service.kubernetes.io/topology-aware-hints": "auto",
+		}
+	}
+}
+
 // WithDeploymentName allows configuring the deployment's names
 func WithDeploymentName(n string) func(*deploymentOptions) {
 	return func(o *deploymentOptions) {
@@ -95,8 +104,9 @@ func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
 
 	service := &corev1.Service{
 		ObjectMeta: metav1.ObjectMeta{
-			Name:      options.name,
-			Namespace: options.namespace,
+			Name:        options.name,
+			Namespace:   options.namespace,
+			Annotations: options.svcAnnotations,
 		},
 		Spec: corev1.ServiceSpec{
 			Ports: []corev1.ServicePort{
diff --git a/test/e2e/kind.yaml b/test/e2e/kind.yaml
index 97dc7082d..07a56dae8 100644
--- a/test/e2e/kind.yaml
+++ b/test/e2e/kind.yaml
@@ -2,8 +2,14 @@ kind: Cluster
 apiVersion: kind.x-k8s.io/v1alpha4
 nodes:
 - role: control-plane
+  labels:
+    topology.kubernetes.io/zone: zone-1
 - role: worker
+  labels:
+    topology.kubernetes.io/zone: zone-1
 - role: worker
+  labels:
+    topology.kubernetes.io/zone: zone-2
 kubeadmConfigPatches:
 - |
   kind: ClusterConfiguration

From 1a65027e4c2051ef2df8afee4b06021d8dde26bb Mon Sep 17 00:00:00 2001
From: lythandas <90504445+lythandas@users.noreply.github.com>
Date: Mon, 16 Jan 2023 03:52:50 +0100
Subject: [PATCH 0567/1641] Change default value of enable-brotli (#9500)

---
 docs/user-guide/nginx-configuration/configmap.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 77cee0507..5c0b79510 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -693,7 +693,8 @@ _**default:**_ false
 ## enable-brotli
 
 Enables or disables compression of HTTP responses using the ["brotli" module](https://github.com/google/ngx_brotli).
-The default mime type list to compress is: `application/xml+rss application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/plain text/x-component`. _**default:**_ is disabled
+The default mime type list to compress is: `application/xml+rss application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/plain text/x-component`. 
+_**default:**_ false
 
 > __Note:__ Brotli does not works in Safari < 11. For more information see [https://caniuse.com/#feat=brotli](https://caniuse.com/#feat=brotli)
 

From dbe88c55a353c01e6748f0eadbc5a8e8108ffc74 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Libor=20Ry=C5=A1av=C3=BD?= <liry@users.noreply.github.com>
Date: Mon, 16 Jan 2023 13:18:51 +0100
Subject: [PATCH 0568/1641] Sanitise request metrics in monitoring docs (#9384)

Also add more detailed description to `nginx_ingress_controller_request_duration_seconds`
and `nginx_ingress_controller_response_duration_seconds` based on NGINX docs.
Also reformat the list so the descriptions are under the corresponding list item.
---
 docs/user-guide/monitoring.md | 52 ++++++++++++-----------------------
 1 file changed, 18 insertions(+), 34 deletions(-)

diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index cc9fb91ec..058c261ab 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -355,56 +355,40 @@ Prometheus metrics are exposed on port 10254.
 
 ### Request metrics
 
-* `nginx_ingress_controller_request_duration_seconds` Histogram
-
-  The request processing time in seconds (affected by client speed)
-
+* `nginx_ingress_controller_request_duration_seconds` Histogram\
+  The request processing (time elapsed between the first bytes were read from the client and the log write after the last bytes were sent to the client) time in seconds (affected by client speed).\
   nginx var: `request_time`
 
-* `nginx_ingress_controller_response_duration_seconds` Histogram
-
-  The time spent on receiving the response from the upstream server (affected by client speed)
-
+* `nginx_ingress_controller_response_duration_seconds` Histogram\
+  The time spent on receiving the response from the upstream server in seconds (affected by client speed when the response is bigger than proxy buffers).\
+  Note: can be up to several millis bigger than the `nginx_ingress_controller_request_duration_seconds` because of the different measuring method.
   nginx var: `upstream_response_time`
 
-* `nginx_ingress_controller_header_duration_seconds` Histogram
-
-  The time spent on receiving first header from the upstream server
-
+* `nginx_ingress_controller_header_duration_seconds` Histogram\
+  The time spent on receiving first header from the upstream server\
   nginx var: `upstream_header_time`
 
-* `nginx_ingress_controller_connect_duration_seconds` Histogram
-
-  The time spent on establishing a connection with the upstream server
-
+* `nginx_ingress_controller_connect_duration_seconds` Histogram\
+  The time spent on establishing a connection with the upstream server\
   nginx var: `upstream_connect_time`
 
-* `nginx_ingress_controller_response_size` Histogram
-
-  The response length (including request line, header, and request body)
-
+* `nginx_ingress_controller_response_size` Histogram\
+  The response length (including request line, header, and request body)\
   nginx var: `bytes_sent`
 
-* `nginx_ingress_controller_request_size` Histogram
-
-  The request length (including request line, header, and request body)
-
+* `nginx_ingress_controller_request_size` Histogram\
+  The request length (including request line, header, and request body)\
   nginx var: `request_length`
 
-* `nginx_ingress_controller_requests` Counter
-
+* `nginx_ingress_controller_requests` Counter\
   The total number of client requests
 
-* `nginx_ingress_controller_bytes_sent` Histogram
-
-  The number of bytes sent to a client. **Deprecated**, use `nginx_ingress_controller_response_size`
-
+* `nginx_ingress_controller_bytes_sent` Histogram\
+  The number of bytes sent to a client. **Deprecated**, use `nginx_ingress_controller_response_size`\
   nginx var: `bytes_sent`
 
-* `nginx_ingress_controller_ingress_upstream_latency_seconds` Summary
-
-  Upstream service latency per Ingress. **Deprecated**, use `nginx_ingress_controller_connect_duration_seconds`
-
+* `nginx_ingress_controller_ingress_upstream_latency_seconds` Summary\
+  Upstream service latency per Ingress. **Deprecated**, use `nginx_ingress_controller_connect_duration_seconds`\
   nginx var: `upstream_connect_time`
 
 ```

From 39b5ce844b4966a4f449b77f928759900eb261ec Mon Sep 17 00:00:00 2001
From: Makhonin Alexey <60808275+alex123012@users.noreply.github.com>
Date: Mon, 16 Jan 2023 16:22:51 +0400
Subject: [PATCH 0569/1641] Add new prometheus metric for orphaned ingress
 (#8230)

* Add new metric for orhaned ingress

* Fix const labels

* Fix after rebase
---
 internal/ingress/controller/controller.go     | 18 +++++++---
 .../ingress/controller/controller_test.go     |  7 ++--
 .../ingress/metric/collectors/controller.go   | 33 +++++++++++++++++++
 internal/ingress/metric/dummy.go              |  6 ++++
 internal/ingress/metric/main.go               | 10 ++++++
 5 files changed, 67 insertions(+), 7 deletions(-)

diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 8bacb3025..dab507cdf 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -50,10 +50,12 @@ import (
 )
 
 const (
-	defUpstreamName = "upstream-default-backend"
-	defServerName   = "_"
-	rootLocation    = "/"
-	emptyZone       = ""
+	defUpstreamName             = "upstream-default-backend"
+	defServerName               = "_"
+	rootLocation                = "/"
+	emptyZone                   = ""
+	orphanMetricLabelNoService  = "no-service"
+	orphanMetricLabelNoEndpoint = "no-endpoint"
 )
 
 // Configuration contains all the settings required by an Ingress controller
@@ -1052,8 +1054,16 @@ func (n *NGINXController) createUpstreams(data []*ingress.Ingress, du *ingress.B
 					endp, err := n.serviceEndpoints(svcKey, port.String())
 					if err != nil {
 						klog.Warningf("Error obtaining Endpoints for Service %q: %v", svcKey, err)
+						n.metricCollector.IncOrphanIngress(ing.Namespace, ing.Name, orphanMetricLabelNoService)
 						continue
 					}
+					n.metricCollector.DecOrphanIngress(ing.Namespace, ing.Name, orphanMetricLabelNoService)
+
+					if len(endp) == 0 {
+						n.metricCollector.IncOrphanIngress(ing.Namespace, ing.Name, orphanMetricLabelNoEndpoint)
+					} else {
+						n.metricCollector.DecOrphanIngress(ing.Namespace, ing.Name, orphanMetricLabelNoEndpoint)
+					}
 					upstreams[name].Endpoints = endp
 				}
 
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index 796012cd3..8cca10385 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -2481,8 +2481,9 @@ func newDynamicNginxController(t *testing.T, setConfigMap func(string) *v1.Confi
 	}
 
 	return &NGINXController{
-		store:   storer,
-		cfg:     config,
-		command: NewNginxCommand(),
+		store:           storer,
+		cfg:             config,
+		command:         NewNginxCommand(),
+		metricCollector: metric.DummyCollector{},
 	}
 }
diff --git a/internal/ingress/metric/collectors/controller.go b/internal/ingress/metric/collectors/controller.go
index 5822f0d57..3a65a1a99 100644
--- a/internal/ingress/metric/collectors/controller.go
+++ b/internal/ingress/metric/collectors/controller.go
@@ -32,6 +32,7 @@ var (
 	ingressOperation = []string{"controller_namespace", "controller_class", "controller_pod", "namespace", "ingress"}
 	sslLabelHost     = []string{"namespace", "class", "host", "secret_name"}
 	sslInfoLabels    = []string{"namespace", "class", "host", "secret_name", "identifier", "issuer_organization", "issuer_common_name", "serial_number", "public_key_algorithm"}
+	orphanityLabels  = []string{"controller_namespace", "controller_class", "controller_pod", "namespace", "ingress", "type"}
 )
 
 // Controller defines base metrics about the ingress controller
@@ -48,6 +49,7 @@ type Controller struct {
 	checkIngressOperationErrors *prometheus.CounterVec
 	sslExpireTime               *prometheus.GaugeVec
 	sslInfo                     *prometheus.GaugeVec
+	OrphanIngress               *prometheus.GaugeVec
 
 	constLabels prometheus.Labels
 	labels      prometheus.Labels
@@ -171,6 +173,15 @@ func NewController(pod, namespace, class string) *Controller {
 			},
 			[]string{"name"},
 		),
+		OrphanIngress: prometheus.NewGaugeVec(
+			prometheus.GaugeOpts{
+				Namespace: PrometheusNamespace,
+				Name:      "orphan_ingress",
+				Help: `Gauge reporting status of ingress orphanity, 1 indicates orphaned ingress.
+			'namespace' is the string used to identify namespace of ingress, 'ingress' for ingress name and 'type' for 'no-service' or 'no-endpoint' of orphanity`,
+			},
+			orphanityLabels,
+		),
 	}
 
 	return cm
@@ -214,6 +225,26 @@ func (cm *Controller) IncCheckErrorCount(namespace, name string) {
 	cm.checkIngressOperationErrors.MustCurryWith(cm.constLabels).With(labels).Inc()
 }
 
+// IncOrphanIngress sets the the orphaned ingress gauge to one
+func (cm *Controller) IncOrphanIngress(namespace string, name string, orphanityType string) {
+	labels := prometheus.Labels{
+		"namespace": namespace,
+		"ingress":   name,
+		"type":      orphanityType,
+	}
+	cm.OrphanIngress.MustCurryWith(cm.constLabels).With(labels).Set(1.0)
+}
+
+// DecOrphanIngress sets the the orphaned ingress gauge to zero (all services has their endpoints)
+func (cm *Controller) DecOrphanIngress(namespace string, name string, orphanityType string) {
+	labels := prometheus.Labels{
+		"namespace": namespace,
+		"ingress":   name,
+		"type":      orphanityType,
+	}
+	cm.OrphanIngress.MustCurryWith(cm.constLabels).With(labels).Set(0.0)
+}
+
 // ConfigSuccess set a boolean flag according to the output of the controller configuration reload
 func (cm *Controller) ConfigSuccess(hash uint64, success bool) {
 	if success {
@@ -242,6 +273,7 @@ func (cm Controller) Describe(ch chan<- *prometheus.Desc) {
 	cm.sslInfo.Describe(ch)
 	cm.leaderElection.Describe(ch)
 	cm.buildInfo.Describe(ch)
+	cm.OrphanIngress.Describe(ch)
 }
 
 // Collect implements the prometheus.Collector interface.
@@ -257,6 +289,7 @@ func (cm Controller) Collect(ch chan<- prometheus.Metric) {
 	cm.sslInfo.Collect(ch)
 	cm.leaderElection.Collect(ch)
 	cm.buildInfo.Collect(ch)
+	cm.OrphanIngress.Collect(ch)
 }
 
 // SetSSLExpireTime sets the expiration time of SSL Certificates
diff --git a/internal/ingress/metric/dummy.go b/internal/ingress/metric/dummy.go
index 4a6366b84..e34b5ecbd 100644
--- a/internal/ingress/metric/dummy.go
+++ b/internal/ingress/metric/dummy.go
@@ -41,6 +41,12 @@ func (dc DummyCollector) IncReloadCount() {}
 // IncReloadErrorCount ...
 func (dc DummyCollector) IncReloadErrorCount() {}
 
+// IncOrphanIngress ...
+func (dc DummyCollector) IncOrphanIngress(string, string, string) {}
+
+// DecOrphanIngress ...
+func (dc DummyCollector) DecOrphanIngress(string, string, string) {}
+
 // IncCheckCount ...
 func (dc DummyCollector) IncCheckCount(string, string) {}
 
diff --git a/internal/ingress/metric/main.go b/internal/ingress/metric/main.go
index b3323c7fe..892c8e8db 100644
--- a/internal/ingress/metric/main.go
+++ b/internal/ingress/metric/main.go
@@ -43,6 +43,8 @@ type Collector interface {
 
 	IncCheckCount(string, string)
 	IncCheckErrorCount(string, string)
+	IncOrphanIngress(string, string, string)
+	DecOrphanIngress(string, string, string)
 
 	RemoveMetrics(ingresses, endpoints, certificates []string)
 
@@ -181,6 +183,14 @@ func (c *collector) SetSSLInfo(servers []*ingress.Server) {
 	c.ingressController.SetSSLInfo(servers)
 }
 
+func (c *collector) IncOrphanIngress(namespace string, name string, orphanityType string) {
+	c.ingressController.IncOrphanIngress(namespace, name, orphanityType)
+}
+
+func (c *collector) DecOrphanIngress(namespace string, name string, orphanityType string) {
+	c.ingressController.DecOrphanIngress(namespace, name, orphanityType)
+}
+
 func (c *collector) SetHosts(hosts sets.String) {
 	c.socket.SetHosts(hosts)
 }

From a2c9b8833b482cdbf484c80bd8c8d169d2899cb5 Mon Sep 17 00:00:00 2001
From: Makhonin Alexey <60808275+alex123012@users.noreply.github.com>
Date: Mon, 16 Jan 2023 20:26:38 +0400
Subject: [PATCH 0570/1641] Add docs about orphan_ingress metric (#9514)

---
 docs/user-guide/monitoring.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index 058c261ab..807d91afc 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -453,6 +453,8 @@ Prometheus metrics are exposed on port 10254.
 # TYPE nginx_ingress_controller_ssl_certificate_info gauge
 # HELP nginx_ingress_controller_success Cumulative number of Ingress controller reload operations
 # TYPE nginx_ingress_controller_success counter
+# HELP nginx_ingress_controller_orphan_ingress Gauge reporting status of ingress orphanity, 1 indicates orphaned ingress. 'namespace' is the string used to identify namespace of ingress, 'ingress' for ingress name and 'type' for 'no-service' or 'no-endpoint' of orphanity
+# TYPE nginx_ingress_controller_orphan_ingress gauge
 ```
 
 ### Admission metrics

From a069617ef88a9a33b8cbd2f4d92a4c2574dac818 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Mon, 16 Jan 2023 17:38:50 +0100
Subject: [PATCH 0571/1641] Values: Add missing
 `controller.metrics.service.labels`. (#9501)

---
 charts/ingress-nginx/README.md   | 1 +
 charts/ingress-nginx/values.yaml | 2 ++
 2 files changed, 3 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 817059af2..65236e08c 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -377,6 +377,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.metrics.prometheusRule.rules | list | `[]` |  |
 | controller.metrics.service.annotations | object | `{}` |  |
 | controller.metrics.service.externalIPs | list | `[]` | List of IP addresses at which the stats-exporter service is available # Ref: https://kubernetes.io/docs/user-guide/services/#external-ips # |
+| controller.metrics.service.labels | object | `{}` | Labels to be added to the metrics service resource |
 | controller.metrics.service.loadBalancerSourceRanges | list | `[]` |  |
 | controller.metrics.service.servicePort | int | `10254` |  |
 | controller.metrics.service.type | string | `"ClusterIP"` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index a6df47694..215ce509d 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -704,6 +704,8 @@ controller:
       annotations: {}
       # prometheus.io/scrape: "true"
       # prometheus.io/port: "10254"
+      # -- Labels to be added to the metrics service resource
+      labels: {}
 
       # clusterIP: ""
 

From e6dcd6845e3dc2e314a676cad7107fe75225def0 Mon Sep 17 00:00:00 2001
From: Samuel Vaillant <samuel.vllnt@gmail.com>
Date: Tue, 17 Jan 2023 02:08:32 +0100
Subject: [PATCH 0572/1641] feat(configmap): expose gzip-disable (#9505)

* docs(configmap): add link for gzip-min-length

* feat(configmap): expose gzip-disable

* test(e2e): cover gzip settings

* docs(configmap): simplify description with NGINX link

* refactor(configmap): simplify condition
---
 .../nginx-configuration/configmap.md          |  6 ++
 internal/ingress/controller/config/config.go  |  6 +-
 .../controller/template/configmap_test.go     |  2 +
 rootfs/etc/nginx/template/nginx.tmpl          |  3 +
 test/e2e/settings/gzip.go                     | 99 +++++++++++++++++++
 5 files changed, 115 insertions(+), 1 deletion(-)
 create mode 100644 test/e2e/settings/gzip.go

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 5c0b79510..2a3369044 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -103,7 +103,9 @@ The following table shows a configuration option's name, type, and the default v
 |[brotli-min-length](#brotli-min-length)|int|20|
 |[brotli-types](#brotli-types)|string|"application/xml+rss application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"|
 |[use-http2](#use-http2)|bool|"true"|
+|[gzip-disable](#gzip-disable)|string|""|
 |[gzip-level](#gzip-level)|int|1|
+|[gzip-min-length](#gzip-min-length)|int|256|
 |[gzip-types](#gzip-types)|string|"application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"|
 |[worker-processes](#worker-processes)|string|`<Number of CPUs>`|
 |[worker-cpu-affinity](#worker-cpu-affinity)|string|""|
@@ -715,6 +717,10 @@ _**default:**_ `application/xml+rss application/atom+xml application/javascript
 
 Enables or disables [HTTP/2](https://nginx.org/en/docs/http/ngx_http_v2_module.html) support in secure connections.
 
+## gzip-disable
+
+Disables [gzipping](http://nginx.org/en/docs/http/ngx_http_gzip_module.html#gzip_disable) of responses for requests with "User-Agent" header fields matching any of the specified regular expressions.
+
 ## gzip-level
 
 Sets the gzip Compression Level that will be used. _**default:**_ 1
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index f064dad53..a4a4c5a0b 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -438,6 +438,11 @@ type Configuration struct {
 	// Default: true
 	UseHTTP2 bool `json:"use-http2,omitempty"`
 
+	// Disables gzipping of responses for requests with "User-Agent" header fields matching any of
+	// the specified regular expressions.
+	// http://nginx.org/en/docs/http/ngx_http_gzip_module.html#gzip_disable
+	GzipDisable string `json:"gzip-disable,omitempty"`
+
 	// gzip Compression Level that will be used
 	GzipLevel int `json:"gzip-level,omitempty"`
 
@@ -794,7 +799,6 @@ func NewDefault() Configuration {
 	defGlobalExternalAuth := GlobalExternalAuth{"", "", "", "", "", append(defResponseHeaders, ""), "", "", "", []string{}, map[string]string{}, false}
 
 	cfg := Configuration{
-
 		AllowSnippetAnnotations:          true,
 		AllowBackendServerHeader:         false,
 		AnnotationValueWordBlocklist:     "",
diff --git a/internal/ingress/controller/template/configmap_test.go b/internal/ingress/controller/template/configmap_test.go
index c662e0bc7..ebe55d192 100644
--- a/internal/ingress/controller/template/configmap_test.go
+++ b/internal/ingress/controller/template/configmap_test.go
@@ -64,6 +64,7 @@ func TestMergeConfigMapToStruct(t *testing.T) {
 		"access-log-path":               "/var/log/test/access.log",
 		"error-log-path":                "/var/log/test/error.log",
 		"use-gzip":                      "false",
+		"gzip-disable":                  "msie6",
 		"gzip-level":                    "9",
 		"gzip-min-length":               "1024",
 		"gzip-types":                    "text/html",
@@ -87,6 +88,7 @@ func TestMergeConfigMapToStruct(t *testing.T) {
 	def.ProxyReadTimeout = 1
 	def.ProxySendTimeout = 2
 	def.UseProxyProtocol = true
+	def.GzipDisable = "msie6"
 	def.GzipLevel = 9
 	def.GzipMinLength = 1024
 	def.GzipTypes = "text/html"
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index fc48de912..911cf75ea 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -336,6 +336,9 @@ http {
     {{ if $cfg.UseGzip }}
     gzip on;
     gzip_comp_level {{ $cfg.GzipLevel }};
+    {{- if $cfg.GzipDisable }}
+    gzip_disable "{{ $cfg.GzipDisable }}";
+    {{- end }}
     gzip_http_version 1.1;
     gzip_min_length {{ $cfg.GzipMinLength}};
     gzip_types {{ $cfg.GzipTypes }};
diff --git a/test/e2e/settings/gzip.go b/test/e2e/settings/gzip.go
new file mode 100644
index 000000000..68e80d3a0
--- /dev/null
+++ b/test/e2e/settings/gzip.go
@@ -0,0 +1,99 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package settings
+
+import (
+	"fmt"
+	"strings"
+
+	"github.com/onsi/ginkgo/v2"
+
+	"k8s.io/ingress-nginx/internal/ingress/controller/config"
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.DescribeSetting("gzip", func() {
+	f := framework.NewDefaultFramework("gzip")
+
+	ginkgo.It("should be disabled by default", func() {
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return !strings.Contains(cfg, "gzip on;")
+			})
+	})
+
+	ginkgo.It("should be enabled with default settings", func() {
+		f.UpdateNginxConfigMapData("use-gzip", "true")
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				defaultCfg := config.NewDefault()
+				return strings.Contains(cfg, "gzip on;") &&
+					strings.Contains(cfg, fmt.Sprintf("gzip_comp_level %d;", defaultCfg.GzipLevel)) &&
+					!strings.Contains(cfg, "gzip_disable") &&
+					strings.Contains(cfg, "gzip_http_version 1.1;") &&
+					strings.Contains(cfg, fmt.Sprintf("gzip_min_length %d;", defaultCfg.GzipMinLength)) &&
+					strings.Contains(cfg, fmt.Sprintf("gzip_types %s;", defaultCfg.GzipTypes)) &&
+					strings.Contains(cfg, "gzip_proxied any;") &&
+					strings.Contains(cfg, "gzip_vary on;")
+			})
+	})
+
+	ginkgo.It("should set gzip_comp_level to 4", func() {
+		f.UpdateNginxConfigMapData("use-gzip", "true")
+		f.UpdateNginxConfigMapData("gzip-level", "4")
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return strings.Contains(cfg, "gzip on;") &&
+					strings.Contains(cfg, "gzip_comp_level 4;")
+			})
+	})
+
+	ginkgo.It("should set gzip_disable to msie6", func() {
+		f.UpdateNginxConfigMapData("use-gzip", "true")
+		f.UpdateNginxConfigMapData("gzip-disable", "msie6")
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return strings.Contains(cfg, "gzip on;") &&
+					strings.Contains(cfg, `gzip_disable "msie6";`)
+			})
+	})
+
+	ginkgo.It("should set gzip_min_length to 100", func() {
+		f.UpdateNginxConfigMapData("use-gzip", "true")
+		f.UpdateNginxConfigMapData("gzip-min-length", "100")
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return strings.Contains(cfg, "gzip on;") &&
+					strings.Contains(cfg, "gzip_min_length 100;")
+			})
+	})
+
+	ginkgo.It("should set gzip_types to application/javascript", func() {
+		f.UpdateNginxConfigMapData("use-gzip", "true")
+		f.UpdateNginxConfigMapData("gzip-types", "application/javascript")
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return strings.Contains(cfg, "gzip on;") &&
+					strings.Contains(cfg, "gzip_types application/javascript;")
+			})
+	})
+})

From da98c744b95e1d36d24f77454b3a76ad29b53702 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Mon, 16 Jan 2023 23:51:23 -0300
Subject: [PATCH 0573/1641] Implement pathType validation (#9511)

---
 charts/ingress-nginx/README.md                |   1 +
 .../templates/controller-configmap.yaml       |   1 +
 charts/ingress-nginx/values.yaml              |   5 +
 .../nginx-configuration/configmap.md          |  23 +++
 internal/ingress/controller/config/config.go  |  13 ++
 internal/ingress/controller/controller.go     |   4 +
 .../ingress/controller/controller_test.go     |  91 +++++++++
 internal/ingress/controller/store/store.go    |   9 +-
 internal/k8s/main.go                          |   3 -
 pkg/util/ingress/ingress.go                   |  60 ++++--
 pkg/util/ingress/ingress_test.go              | 188 +++++++++++++-----
 test/e2e/admission/admission.go               |  34 ++++
 test/e2e/annotations/affinity.go              |   6 +
 test/e2e/annotations/rewrite.go               |   8 +
 test/e2e/security/invalid_paths.go            | 134 -------------
 15 files changed, 373 insertions(+), 207 deletions(-)
 delete mode 100644 test/e2e/security/invalid_paths.go

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 65236e08c..174a8870d 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -311,6 +311,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.containerPort | object | `{"http":80,"https":443}` | Configures the ports that the nginx-controller listens on |
 | controller.customTemplate.configMapKey | string | `""` |  |
 | controller.customTemplate.configMapName | string | `""` |  |
+| controller.disablePathTypeValidation | bool | `false` | This configuration defines if Ingress Controller should validate pathType. If this is true, special characters will be allowed on paths of any pathType. If false, special characters are only allowed on paths with pathType = ImplementationSpecific |
 | controller.dnsConfig | object | `{}` | Optionally customize the pod dnsConfig. |
 | controller.dnsPolicy | string | `"ClusterFirst"` | Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'. By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller to keep resolving names inside the k8s network, use ClusterFirstWithHostNet. |
 | controller.electionID | string | `""` | Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader' |
diff --git a/charts/ingress-nginx/templates/controller-configmap.yaml b/charts/ingress-nginx/templates/controller-configmap.yaml
index f28b26e1e..ffd003ee8 100644
--- a/charts/ingress-nginx/templates/controller-configmap.yaml
+++ b/charts/ingress-nginx/templates/controller-configmap.yaml
@@ -14,6 +14,7 @@ metadata:
   namespace: {{ .Release.Namespace }}
 data:
   allow-snippet-annotations: "{{ .Values.controller.allowSnippetAnnotations }}"
+  disable-pathtype-validation: "{{ .Values.controller.disablePathTypeValidation }}"
 {{- if .Values.controller.addHeaders }}
   add-headers: {{ .Release.Namespace }}/{{ include "ingress-nginx.fullname" . }}-custom-add-headers
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 215ce509d..072493ccc 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -87,6 +87,11 @@ controller:
   # Global snippets in ConfigMap are still respected
   allowSnippetAnnotations: true
 
+  # -- This configuration defines if Ingress Controller should validate pathType.
+  # If this is true, special characters will be allowed on paths of any pathType. If
+  # false, special characters are only allowed on paths with pathType = ImplementationSpecific
+  disablePathTypeValidation: false
+
   # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
   # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
   # is merged
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 2a3369044..849d6968a 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -216,6 +216,8 @@ The following table shows a configuration option's name, type, and the default v
 |[service-upstream](#service-upstream)|bool|"false"|
 |[ssl-reject-handshake](#ssl-reject-handshake)|bool|"false"|
 |[debug-connections](#debug-connections)|[]string|"127.0.0.1,1.1.1.1/24"|
+|[disable-pathtype-validation](#disable-pathtype-validation)|bool|"false"|
+|[path-additional-allowed-chars](#path-additional-allowed-chars)|string|"^%$[](){}*+?"|
 
 ## add-headers
 
@@ -1326,3 +1328,24 @@ _**default:**_ ""
 
 _References:_
 [http://nginx.org/en/docs/ngx_core_module.html#debug_connection](http://nginx.org/en/docs/ngx_core_module.html#debug_connection)
+
+## disable-pathtype-validation
+Ingress Controller validates the pathType, and only allows special characters on "path" if pathType is
+ImplementationSpecific. 
+
+The only characters allowed on ingresses with pathType not ImplementationSpecific 
+will be 0-9, a-z, A-Z, "-", ".", "_", "~", "/".
+
+If the validation is disabled, the [#path-additional-allowed-chars](#path-additional-allowed-chars) will
+be allowed on any pathType.
+
+This behavior can be disabled, so special characters are accepted regardless of pathType
+_**default:**_ "false"
+
+## path-additional-allowed-chars
+When validating path on Ingress resources, defines the additional set of special characters that
+will be allowed.
+
+See also [#disable-pathtype-validation](#disable-pathtype-validation).
+
+_**default:**_ "^%$[](){}*+?|"
\ No newline at end of file
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index a4a4c5a0b..b246ef9cf 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -782,6 +782,17 @@ type Configuration struct {
 	// http://nginx.org/en/docs/ngx_core_module.html#debug_connection
 	// Default: ""
 	DebugConnections []string `json:"debug-connections"`
+
+	// DisablePathTypeValidation allows the admin to disable the pathType validation.
+	// If PathTypeValidation is enabled, the Controller will only allow alphanumeric
+	// characters on path (0-9, a-z, A-Z, "-", ".", "_", "~", "/")
+	DisablePathTypeValidation bool `json:"disable-pathtype-validation"`
+
+	// PathAdditionalAllowedChars allows the admin to specify what are the additional
+	// characters allowed in case of pathType=ImplementationSpecific.
+	// Case disable-pathtype-validation=true, this characters will be allowed on any path.
+	// Defaults to: "^%$[](){}*+?"
+	PathAdditionalAllowedChars string `json:"path-additional-allowed-chars"`
 }
 
 // NewDefault returns the default nginx configuration
@@ -817,6 +828,8 @@ func NewDefault() Configuration {
 		ClientHeaderTimeout:              60,
 		ClientBodyBufferSize:             "8k",
 		ClientBodyTimeout:                60,
+		DisablePathTypeValidation:        false,
+		PathAdditionalAllowedChars:       "^%$[](){}*+?|",
 		EnableUnderscoresInHeaders:       false,
 		ErrorLogLevel:                    errorLevel,
 		UseForwardedHeaders:              false,
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index dab507cdf..5b22fd17a 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -325,6 +325,10 @@ func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
 
 	k8s.SetDefaultNGINXPathType(ing)
 
+	if err := utilingress.ValidateIngressPath(ing, cfg.DisablePathTypeValidation, cfg.PathAdditionalAllowedChars); err != nil {
+		return fmt.Errorf("ingress contains invalid characters: %s", err)
+	}
+
 	allIngresses := n.store.ListIngresses()
 
 	filter := func(toCheck *ingress.Ingress) bool {
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index 8cca10385..d91760552 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -201,6 +201,97 @@ func TestCheckIngress(t *testing.T) {
 			},
 		},
 	}
+
+	t.Run("when validating pathType", func(t *testing.T) {
+		t.Run("When ingress contains invalid path and pathType validation is not disabled", func(t *testing.T) {
+			nginx.store = fakeIngressStore{
+				ingresses: []*ingress.Ingress{},
+				configuration: ngx_config.Configuration{
+					DisablePathTypeValidation: false,
+				},
+			}
+			nginx.command = testNginxTestCommand{
+				t:        t,
+				err:      nil,
+				expected: "",
+			}
+			nginx.cfg.IngressClassConfiguration = &ingressclass.IngressClassConfiguration{
+				WatchWithoutClass: true,
+			}
+			ingPath := &networking.Ingress{
+				ObjectMeta: metav1.ObjectMeta{
+					Name:      "test-ingress1",
+					Namespace: "user-namespace1",
+					Annotations: map[string]string{
+						"kubernetes.io/ingress.class": "nginx",
+					},
+				},
+				Spec: networking.IngressSpec{
+					Rules: []networking.IngressRule{
+						{
+							Host: "example.com",
+							IngressRuleValue: networking.IngressRuleValue{
+								HTTP: &networking.HTTPIngressRuleValue{
+									Paths: []networking.HTTPIngressPath{
+										{
+											Path:     "/xpto/(a+)",
+											PathType: &pathTypePrefix,
+										},
+									},
+								},
+							},
+						},
+					},
+				},
+			}
+
+			if nginx.CheckIngress(ingPath) == nil {
+				t.Errorf("invalid path on pathTypePrefix and validation enabled should return an error")
+			}
+		})
+		t.Run("When ingress contains invalid path and pathType validation is disabled", func(t *testing.T) {
+			nginx.store = fakeIngressStore{
+				ingresses: []*ingress.Ingress{},
+				configuration: ngx_config.Configuration{
+					DisablePathTypeValidation:  true,
+					PathAdditionalAllowedChars: "^%$[](){}*+?|",
+				},
+			}
+			nginx.command = testNginxTestCommand{
+				t:        t,
+				err:      nil,
+				expected: "_,example.com",
+			}
+
+			ingPath := &networking.Ingress{
+				ObjectMeta: metav1.ObjectMeta{
+					Name:      "test-ingress2",
+					Namespace: "user-namespace2",
+				},
+				Spec: networking.IngressSpec{
+					Rules: []networking.IngressRule{
+						{
+							Host: "example.com",
+							IngressRuleValue: networking.IngressRuleValue{
+								HTTP: &networking.HTTPIngressRuleValue{
+									Paths: []networking.HTTPIngressPath{
+										{
+											Path:     "/example(/|$)(.*)",
+											PathType: &pathTypePrefix,
+										},
+									},
+								},
+							},
+						},
+					},
+				},
+			}
+
+			if nginx.CheckIngress(ingPath) != nil {
+				t.Errorf("invalid path on pathTypePrefix and validation disabled should not return an error: %s", nginx.CheckIngress(ingPath))
+			}
+		})
+	})
 	t.Run("when the class is the nginx one", func(t *testing.T) {
 		ing.ObjectMeta.Annotations["kubernetes.io/ingress.class"] = "nginx"
 		nginx.command = testNginxTestCommand{
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 13af28137..1006858e8 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -846,6 +846,11 @@ func (s *k8sStore) syncIngress(ing *networkingv1.Ingress) {
 	copyIng := &networkingv1.Ingress{}
 	ing.ObjectMeta.DeepCopyInto(&copyIng.ObjectMeta)
 
+	if err := ingressutils.ValidateIngressPath(ing, s.backendConfig.DisablePathTypeValidation, s.backendConfig.PathAdditionalAllowedChars); err != nil {
+		klog.Errorf("ingress %s contains invalid path and will be skipped: %s", key, err)
+		return
+	}
+
 	if s.backendConfig.AnnotationValueWordBlocklist != "" {
 		if err := checkBadAnnotationValue(copyIng.Annotations, s.backendConfig.AnnotationValueWordBlocklist); err != nil {
 			klog.Warningf("skipping ingress %s: %s", key, err)
@@ -865,10 +870,6 @@ func (s *k8sStore) syncIngress(ing *networkingv1.Ingress) {
 			if path.Path == "" {
 				copyIng.Spec.Rules[ri].HTTP.Paths[pi].Path = "/"
 			}
-			if !ingressutils.IsSafePath(copyIng, path.Path) {
-				klog.Warningf("ingress %s contains invalid path %s", key, path.Path)
-				return
-			}
 		}
 	}
 
diff --git a/internal/k8s/main.go b/internal/k8s/main.go
index e0d2a1660..6973b6cb7 100644
--- a/internal/k8s/main.go
+++ b/internal/k8s/main.go
@@ -180,9 +180,6 @@ func SetDefaultNGINXPathType(ing *networkingv1.Ingress) {
 				p.PathType = &defaultPathType
 			}
 
-			if *p.PathType == networkingv1.PathTypeImplementationSpecific {
-				p.PathType = &defaultPathType
-			}
 		}
 	}
 }
diff --git a/pkg/util/ingress/ingress.go b/pkg/util/ingress/ingress.go
index 5fb3ee7b9..e16518251 100644
--- a/pkg/util/ingress/ingress.go
+++ b/pkg/util/ingress/ingress.go
@@ -23,7 +23,6 @@ import (
 
 	networkingv1 "k8s.io/api/networking/v1"
 	"k8s.io/apimachinery/pkg/util/sets"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/internal/net/ssl"
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
@@ -31,15 +30,15 @@ import (
 )
 
 const (
-	alphaNumericChars = `\-\.\_\~a-zA-Z0-9/`
-	regexEnabledChars = `\^\$\[\]\(\)\{\}\*\+`
+	alphaNumericChars = `A-Za-z0-9\-\.\_\~\/` // This is the default allowed set on paths
 )
 
 var (
-	// pathAlphaNumeric is a regex validation of something like "^/[a-zA-Z]+$" on path
-	pathAlphaNumeric = regexp.MustCompile("^/[" + alphaNumericChars + "]*$").MatchString
-	// pathRegexEnabled is a regex validation of paths that may contain regex.
-	pathRegexEnabled = regexp.MustCompile("^/[" + alphaNumericChars + regexEnabledChars + "]*$").MatchString
+	// pathAlphaNumeric is a regex validation that allows only (0-9, a-z, A-Z, "-", ".", "_", "~", "/")
+	pathAlphaNumericRegex = regexp.MustCompile("^[" + alphaNumericChars + "]*$").MatchString
+
+	// default path type is Prefix to not break existing definitions
+	defaultPathType = networkingv1.PathTypePrefix
 )
 
 func GetRemovedHosts(rucfg, newcfg *ingress.Configuration) []string {
@@ -247,12 +246,45 @@ func BuildRedirects(servers []*ingress.Server) []*redirect {
 	return redirectServers
 }
 
-// IsSafePath verifies if the path used in ingress object contains only valid characters.
-// It will behave differently if regex is enabled or not
-func IsSafePath(copyIng *networkingv1.Ingress, path string) bool {
-	isRegex, _ := parser.GetBoolAnnotation("use-regex", copyIng)
-	if isRegex {
-		return pathRegexEnabled(path)
+func ValidateIngressPath(copyIng *networkingv1.Ingress, disablePathTypeValidation bool, additionalChars string) error {
+
+	if copyIng == nil {
+		return nil
 	}
-	return pathAlphaNumeric(path)
+
+	escapedAdditionalChars := regexp.QuoteMeta(additionalChars)
+	regexPath, err := regexp.Compile("^[" + alphaNumericChars + escapedAdditionalChars + "]*$")
+	if err != nil {
+		return fmt.Errorf("ingress has misconfigured validation regex on configmap: %s - %w", additionalChars, err)
+	}
+
+	for _, rule := range copyIng.Spec.Rules {
+		if rule.HTTP == nil {
+			continue
+		}
+		if err := checkPath(rule.HTTP.Paths, disablePathTypeValidation, regexPath); err != nil {
+			return fmt.Errorf("error validating ingressPath: %w", err)
+		}
+	}
+	return nil
+}
+
+func checkPath(paths []networkingv1.HTTPIngressPath, disablePathTypeValidation bool, regexSpecificChars *regexp.Regexp) error {
+	for _, path := range paths {
+		if path.PathType == nil {
+			path.PathType = &defaultPathType
+		}
+
+		if disablePathTypeValidation || *path.PathType == networkingv1.PathTypeImplementationSpecific {
+			if !regexSpecificChars.MatchString(path.Path) {
+				return fmt.Errorf("path %s of type %s contains invalid characters", path.Path, *path.PathType)
+			}
+			continue
+		}
+
+		if !pathAlphaNumericRegex(path.Path) {
+			return fmt.Errorf("path %s of type %s contains invalid characters", path.Path, *path.PathType)
+		}
+	}
+	return nil
 }
diff --git a/pkg/util/ingress/ingress_test.go b/pkg/util/ingress/ingress_test.go
index d829a57f1..a79da6b6f 100644
--- a/pkg/util/ingress/ingress_test.go
+++ b/pkg/util/ingress/ingress_test.go
@@ -17,13 +17,10 @@ limitations under the License.
 package ingress
 
 import (
-	"fmt"
 	"testing"
 
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-
 	networkingv1 "k8s.io/api/networking/v1"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
@@ -136,81 +133,168 @@ func TestIsDynamicConfigurationEnough(t *testing.T) {
 	}
 }
 
-func generateDumbIngressforPathTest(regexEnabled bool) *networkingv1.Ingress {
-	var annotations = make(map[string]string)
-	regexAnnotation := fmt.Sprintf("%s/use-regex", parser.AnnotationsPrefix)
-	if regexEnabled {
-		annotations[regexAnnotation] = "true"
-	}
+func generateDumbIngressforPathTest(pathType *networkingv1.PathType, path string) *networkingv1.Ingress {
 	return &networkingv1.Ingress{
 		ObjectMeta: metav1.ObjectMeta{
-			Name:        "dumb",
-			Namespace:   "default",
-			Annotations: annotations,
+			Name:      "dumb",
+			Namespace: "default",
+		},
+		Spec: networkingv1.IngressSpec{
+			Rules: []networkingv1.IngressRule{
+				{
+					Host: "test.com",
+					IngressRuleValue: networkingv1.IngressRuleValue{
+						HTTP: &networkingv1.HTTPIngressRuleValue{
+							Paths: []networkingv1.HTTPIngressPath{
+								{
+									PathType: pathType,
+									Path:     path,
+								},
+							},
+						},
+					},
+				},
+			},
 		},
 	}
 }
 
-func TestIsSafePath(t *testing.T) {
+func generateComplexIngress(ing *networkingv1.Ingress) *networkingv1.Ingress {
+
+	oldRules := ing.Spec.DeepCopy().Rules
+	ing.Spec.Rules = []networkingv1.IngressRule{
+		{
+			Host: "test1.com",
+			IngressRuleValue: networkingv1.IngressRuleValue{
+				HTTP: &networkingv1.HTTPIngressRuleValue{
+					Paths: []networkingv1.HTTPIngressPath{
+						{
+							PathType: &pathTypeExact,
+							Path:     "/xpto",
+						},
+					},
+				},
+			},
+		},
+		{
+			Host: "test2.com",
+			IngressRuleValue: networkingv1.IngressRuleValue{
+				HTTP: &networkingv1.HTTPIngressRuleValue{
+					Paths: []networkingv1.HTTPIngressPath{
+						{
+							PathType: &pathTypeExact,
+							Path:     "/someotherpath",
+						},
+						{
+							PathType: &pathTypePrefix,
+							Path:     "/someprefix/~xpto/lala123",
+						},
+					},
+				},
+			},
+		},
+	}
+	// we want to invert the order to test better :)
+	ing.Spec.Rules = append(ing.Spec.Rules, oldRules...)
+
+	return ing
+}
+
+var (
+	pathTypeExact        = networkingv1.PathTypeExact
+	pathTypePrefix       = networkingv1.PathTypePrefix
+	pathTypeImplSpecific = networkingv1.PathTypeImplementationSpecific
+)
+
+const (
+	defaultAdditionalChars = "^%$[](){}*+?"
+)
+
+func TestValidateIngressPath(t *testing.T) {
 	tests := []struct {
-		name    string
-		copyIng *networkingv1.Ingress
-		path    string
-		want    bool
+		name                      string
+		copyIng                   *networkingv1.Ingress
+		disablePathTypeValidation bool
+		additionalChars           string
+		wantErr                   bool
 	}{
 		{
-			name:    "should accept valid path with regex disabled",
-			want:    true,
-			copyIng: generateDumbIngressforPathTest(false),
-			path:    "/xpto/~user/t-e_st.exe",
+			name:    "should return nil when ingress = nil",
+			wantErr: false,
+			copyIng: nil,
 		},
 		{
-			name:    "should accept valid path / with regex disabled",
-			want:    true,
-			copyIng: generateDumbIngressforPathTest(false),
-			path:    "/",
+			name:    "should accept valid path on pathType Exact",
+			wantErr: false,
+			copyIng: generateDumbIngressforPathTest(&pathTypeExact, "/xpto/~user9/t-e_st.exe"),
 		},
 		{
-			name:    "should reject invalid path with invalid chars",
-			want:    false,
-			copyIng: generateDumbIngressforPathTest(false),
-			path:    "/foo/bar/;xpto",
+			name:    "should accept valid path on pathType Prefix",
+			wantErr: false,
+			copyIng: generateDumbIngressforPathTest(&pathTypePrefix, "/xpto/~user9/t-e_st.exe"),
 		},
 		{
-			name:    "should reject regex path when regex is disabled",
-			want:    false,
-			copyIng: generateDumbIngressforPathTest(false),
-			path:    "/foo/bar/(.+)",
+			name:    "should accept valid simple path on pathType Impl Specific",
+			wantErr: false,
+			copyIng: generateDumbIngressforPathTest(&pathTypeImplSpecific, "/xpto/~user9/t-e_st.exe"),
 		},
 		{
-			name:    "should accept valid path / with regex enabled",
-			want:    true,
-			copyIng: generateDumbIngressforPathTest(true),
-			path:    "/",
+			name:    "should accept valid path on pathType nil",
+			wantErr: false,
+			copyIng: generateDumbIngressforPathTest(nil, "/xpto/~user/t-e_st.exe"),
 		},
 		{
-			name:    "should accept regex path when regex is enabled",
-			want:    true,
-			copyIng: generateDumbIngressforPathTest(true),
-			path:    "/foo/bar/(.+)",
+			name:    "should accept empty path",
+			wantErr: false,
+			copyIng: generateDumbIngressforPathTest(&pathTypePrefix, ""),
 		},
 		{
-			name:    "should reject regex path when regex is enabled but the path is invalid",
-			want:    false,
-			copyIng: generateDumbIngressforPathTest(true),
-			path:    "/foo/bar/;xpto",
+			name:            "should deny path with bad characters and pathType not implementationSpecific",
+			wantErr:         true,
+			additionalChars: defaultAdditionalChars,
+			copyIng:         generateDumbIngressforPathTest(&pathTypeExact, "/foo/bar/(.+)"),
 		},
 		{
-			name:    "should reject regex path when regex is enabled but the path is invalid",
-			want:    false,
-			copyIng: generateDumbIngressforPathTest(true),
-			path:    ";xpto",
+			name:            "should accept path with regex characters and pathType implementationSpecific",
+			wantErr:         false,
+			additionalChars: defaultAdditionalChars,
+			copyIng:         generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.+)"),
+		},
+		{
+			name:                      "should accept path with regex characters and pathType exact, but pathType validation disabled",
+			wantErr:                   false,
+			additionalChars:           defaultAdditionalChars,
+			disablePathTypeValidation: true,
+			copyIng:                   generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.+)"),
+		},
+		{
+			name:                      "should reject path when the allowed additional set does not match",
+			wantErr:                   true,
+			additionalChars:           "().?",
+			disablePathTypeValidation: false,
+			copyIng:                   generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.+)"),
+		},
+		{
+			name:            "should accept path when the allowed additional set does match",
+			wantErr:         false,
+			additionalChars: "().?",
+			copyIng:         generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.?)"),
+		},
+		{
+			name:    "should block if at least one path is bad",
+			wantErr: true,
+			copyIng: generateComplexIngress(generateDumbIngressforPathTest(&pathTypeExact, "/foo/bar/(.?)")),
+		},
+		{
+			name:    "should block if at least one path is bad",
+			wantErr: true,
+			copyIng: generateComplexIngress(generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.?)")),
 		},
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
-			if got := IsSafePath(tt.copyIng, tt.path); got != tt.want {
-				t.Errorf("IsSafePath() = %v, want %v", got, tt.want)
+			if err := ValidateIngressPath(tt.copyIng, tt.disablePathTypeValidation, tt.additionalChars); (err != nil) != tt.wantErr {
+				t.Errorf("ValidateIngressPath() error = %v, wantErr %v", err, tt.wantErr)
 			}
 		})
 	}
diff --git a/test/e2e/admission/admission.go b/test/e2e/admission/admission.go
index bde98fddf..5c037a0c5 100644
--- a/test/e2e/admission/admission.go
+++ b/test/e2e/admission/admission.go
@@ -30,6 +30,14 @@ import (
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
+
+	networkingv1 "k8s.io/api/networking/v1"
+)
+
+var (
+	pathExact        = networkingv1.PathTypeExact
+	pathPrefix       = networkingv1.PathTypePrefix
+	pathImplSpecific = networkingv1.PathTypeImplementationSpecific
 )
 
 var _ = framework.IngressNginxDescribe("[Serial] admission controller", func() {
@@ -152,6 +160,32 @@ var _ = framework.IngressNginxDescribe("[Serial] admission controller", func() {
 		assert.NotNil(ginkgo.GinkgoT(), err, "creating an ingress with invalid annotation value should return an error")
 	})
 
+	ginkgo.It("should reject ingress with bad characters and pathType != ImplementationSpecific", func() {
+		host := "admission-test"
+
+		firstIngress := framework.NewSingleIngress("first-ingress", "/xpto*", host, f.Namespace, framework.EchoService, 80, nil)
+		firstIngress.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathPrefix
+		_, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), firstIngress, metav1.CreateOptions{})
+		assert.NotNil(ginkgo.GinkgoT(), err, "creating an ingress with invalid path value should return an error")
+
+		secondIngress := framework.NewSingleIngress("second-ingress", "/abc123*", host, f.Namespace, framework.EchoService, 80, nil)
+		secondIngress.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathImplSpecific
+		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), secondIngress, metav1.CreateOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "creating an ingress with regex on path and pathType ImplementationSpecific should not return an error")
+
+	})
+
+	ginkgo.It("should not validate characters on ingress when validation of pathType is disabled", func() {
+		host := "admission-test"
+
+		f.UpdateNginxConfigMapData("disable-pathtype-validation", "true")
+
+		firstIngress := framework.NewSingleIngress("first-ingress", "/xpto*", host, f.Namespace, framework.EchoService, 80, nil)
+		firstIngress.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathPrefix
+		_, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), firstIngress, metav1.CreateOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "creating an ingress with regex chars on path and pathType validation disabled should be accepted")
+	})
+
 	ginkgo.It("should return an error if there is a forbidden value in some annotation", func() {
 		host := "admission-test"
 
diff --git a/test/e2e/annotations/affinity.go b/test/e2e/annotations/affinity.go
index 3e1e9e969..31e8905d1 100644
--- a/test/e2e/annotations/affinity.go
+++ b/test/e2e/annotations/affinity.go
@@ -35,6 +35,8 @@ import (
 var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	f := framework.NewDefaultFramework("affinity")
 
+	pathImpl := networking.PathTypeImplementationSpecific
+
 	ginkgo.BeforeEach(func() {
 		f.NewEchoDeployment(framework.WithDeploymentReplicas(2))
 	})
@@ -276,6 +278,8 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 		annotations["nginx.ingress.kubernetes.io/session-cookie-path"] = "/foo/bar"
 
 		ing := framework.NewSingleIngress(host, "/foo/.*", host, f.Namespace, framework.EchoService, 80, annotations)
+		ing.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathImpl
+
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -299,6 +303,8 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 		annotations["nginx.ingress.kubernetes.io/use-regex"] = "true"
 
 		ing := framework.NewSingleIngress(host, "/foo/.*", host, f.Namespace, framework.EchoService, 80, annotations)
+		ing.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathImpl
+
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
diff --git a/test/e2e/annotations/rewrite.go b/test/e2e/annotations/rewrite.go
index 79738b984..0c426a8df 100644
--- a/test/e2e/annotations/rewrite.go
+++ b/test/e2e/annotations/rewrite.go
@@ -24,12 +24,15 @@ import (
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
+	networking "k8s.io/api/networking/v1"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
 var _ = framework.DescribeAnnotation("rewrite-target use-regex enable-rewrite-log", func() {
 	f := framework.NewDefaultFramework("rewrite")
 
+	pathImpl := networking.PathTypeImplementationSpecific
+
 	ginkgo.BeforeEach(func() {
 		f.NewEchoDeployment()
 	})
@@ -126,6 +129,7 @@ var _ = framework.DescribeAnnotation("rewrite-target use-regex enable-rewrite-lo
 			"nginx.ingress.kubernetes.io/rewrite-target": "/new/backend",
 		}
 		ing = framework.NewSingleIngress("regex", "/foo.+", host, f.Namespace, framework.EchoService, 80, annotations)
+		ing.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathImpl
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -168,6 +172,8 @@ var _ = framework.DescribeAnnotation("rewrite-target use-regex enable-rewrite-lo
 			"nginx.ingress.kubernetes.io/rewrite-target": "/new/backend",
 		}
 		ing = framework.NewSingleIngress("regex", "/foo/bar/[a-z]{3}", host, f.Namespace, framework.EchoService, 80, annotations)
+		ing.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathImpl
+
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -196,6 +202,8 @@ var _ = framework.DescribeAnnotation("rewrite-target use-regex enable-rewrite-lo
 			"nginx.ingress.kubernetes.io/rewrite-target": "/new/backend/$1",
 		}
 		ing := framework.NewSingleIngress("regex", "/foo/bar/(.+)", host, f.Namespace, framework.EchoService, 80, annotations)
+		ing.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathImpl
+
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
diff --git a/test/e2e/security/invalid_paths.go b/test/e2e/security/invalid_paths.go
deleted file mode 100644
index d75aefc2c..000000000
--- a/test/e2e/security/invalid_paths.go
+++ /dev/null
@@ -1,134 +0,0 @@
-/*
-Copyright 2022 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package security
-
-import (
-	"fmt"
-	"net/http"
-	"strings"
-
-	"github.com/onsi/ginkgo/v2"
-
-	"k8s.io/ingress-nginx/test/e2e/framework"
-)
-
-const (
-	validPath   = "/xpto/~user/t-e_st.exe"
-	invalidPath = "/foo/bar/;xpto"
-	regexPath   = "/foo/bar/(.+)"
-	host        = "securitytest.com"
-)
-
-var (
-	annotationRegex = map[string]string{
-		"nginx.ingress.kubernetes.io/use-regex": "true",
-	}
-)
-
-var _ = framework.IngressNginxDescribe("[Security] validate path fields", func() {
-	f := framework.NewDefaultFramework("validate-path")
-
-	ginkgo.BeforeEach(func() {
-		f.NewEchoDeployment()
-	})
-
-	ginkgo.It("should accept an ingress with valid path", func() {
-
-		ing := framework.NewSingleIngress(host, validPath, host, f.Namespace, framework.EchoService, 80, nil)
-
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
-			})
-
-		f.HTTPTestClient().
-			GET(validPath).
-			WithHeader("Host", host).
-			Expect().
-			Status(http.StatusOK)
-	})
-
-	ginkgo.It("should drop an ingress with invalid path", func() {
-
-		ing := framework.NewSingleIngress(host, invalidPath, host, f.Namespace, framework.EchoService, 80, nil)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return !strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
-			})
-
-		f.HTTPTestClient().
-			GET(invalidPath).
-			WithHeader("Host", host).
-			Expect().
-			Status(http.StatusNotFound)
-	})
-
-	ginkgo.It("should drop an ingress with regex path and regex disabled", func() {
-
-		ing := framework.NewSingleIngress(host, regexPath, host, f.Namespace, framework.EchoService, 80, nil)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return !strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
-			})
-
-		f.HTTPTestClient().
-			GET("/foo/bar/lalala").
-			WithHeader("Host", host).
-			Expect().
-			Status(http.StatusNotFound)
-	})
-
-	ginkgo.It("should accept an ingress with regex path and regex enabled", func() {
-
-		ing := framework.NewSingleIngress(host, regexPath, host, f.Namespace, framework.EchoService, 80, annotationRegex)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
-			})
-
-		f.HTTPTestClient().
-			GET("/foo/bar/lalala").
-			WithHeader("Host", host).
-			Expect().
-			Status(http.StatusOK)
-	})
-
-	ginkgo.It("should reject an ingress with invalid path and regex enabled", func() {
-
-		ing := framework.NewSingleIngress(host, invalidPath, host, f.Namespace, framework.EchoService, 80, annotationRegex)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return !strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
-			})
-
-		f.HTTPTestClient().
-			GET(invalidPath).
-			WithHeader("Host", host).
-			Expect().
-			Status(http.StatusNotFound)
-	})
-})

From fe2e713f424a01b2261d79f461cd0f71e0e38047 Mon Sep 17 00:00:00 2001
From: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Date: Wed, 18 Jan 2023 15:10:34 +0200
Subject: [PATCH 0574/1641] Bump `client-go` to remove dependence on
 go-autorest dependency (#9488)

* deps: bump k8s dependencies to remove go-autorest

* fix: update use of apiv1.LoadBalancerIngress

Due to changes in the Kubernetes API, we needed to switch to using
v1.IngressLoadBalancerIngress instead of apiv1.LoadBalancerIngress. The
struct is otherwise identical despite the name change.

* fix ingress status test cases

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Co-authored-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 go.mod                                 | 35 ++++-----
 go.sum                                 | 83 +++++++--------------
 internal/ingress/status/status.go      | 45 ++++++------
 internal/ingress/status/status_test.go | 99 +++++++++++++-------------
 test/e2e/status/update.go              |  8 +--
 5 files changed, 114 insertions(+), 156 deletions(-)

diff --git a/go.mod b/go.mod
index 2daf8e667..780cac648 100644
--- a/go.mod
+++ b/go.mod
@@ -30,14 +30,14 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.25.4
-	k8s.io/apiextensions-apiserver v0.25.0
-	k8s.io/apimachinery v0.25.4
-	k8s.io/apiserver v0.25.0
-	k8s.io/cli-runtime v0.25.0
-	k8s.io/client-go v0.25.4
-	k8s.io/code-generator v0.25.0
-	k8s.io/component-base v0.25.4
+	k8s.io/api v0.26.0
+	k8s.io/apiextensions-apiserver v0.26.0
+	k8s.io/apimachinery v0.26.0
+	k8s.io/apiserver v0.26.0
+	k8s.io/cli-runtime v0.26.0
+	k8s.io/client-go v0.26.0
+	k8s.io/code-generator v0.26.0
+	k8s.io/component-base v0.26.0
 	k8s.io/klog/v2 v2.80.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.13.1
@@ -45,17 +45,7 @@ require (
 )
 
 require (
-	cloud.google.com/go/compute v1.12.1 // indirect
-	cloud.google.com/go/compute/metadata v0.2.1 // indirect
-	github.com/Azure/go-autorest v14.2.0+incompatible // indirect
-	github.com/Azure/go-autorest/autorest v0.11.27 // indirect
-	github.com/Azure/go-autorest/autorest/adal v0.9.20 // indirect
-	github.com/Azure/go-autorest/autorest/date v0.3.0 // indirect
-	github.com/Azure/go-autorest/logger v0.2.1 // indirect
-	github.com/Azure/go-autorest/tracing v0.6.0 // indirect
 	github.com/BurntSushi/toml v1.0.0 // indirect
-	github.com/PuerkitoBio/purell v1.1.1 // indirect
-	github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/blang/semver/v4 v4.0.0 // indirect
 	github.com/cespare/xxhash/v2 v2.1.2 // indirect
@@ -70,11 +60,10 @@ require (
 	github.com/go-errors/errors v1.0.1 // indirect
 	github.com/go-logr/logr v1.2.3 // indirect
 	github.com/go-openapi/jsonpointer v0.19.5 // indirect
-	github.com/go-openapi/jsonreference v0.19.5 // indirect
+	github.com/go-openapi/jsonreference v0.20.0 // indirect
 	github.com/go-openapi/swag v0.19.14 // indirect
 	github.com/godbus/dbus/v5 v5.0.6 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
-	github.com/golang-jwt/jwt/v4 v4.2.0 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
 	github.com/golang/protobuf v1.5.2 // indirect
 	github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7 // indirect
@@ -123,9 +112,9 @@ require (
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
-	k8s.io/gengo v0.0.0-20211129171323-c02415ce4185 // indirect
-	k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1 // indirect
-	k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed // indirect
+	k8s.io/gengo v0.0.0-20220902162205-c0856e24416d // indirect
+	k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 // indirect
+	k8s.io/utils v0.0.0-20221107191617-1a15be271d1d // indirect
 	sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 // indirect
 	sigs.k8s.io/kustomize/api v0.12.1 // indirect
 	sigs.k8s.io/kustomize/kyaml v0.13.9 // indirect
diff --git a/go.sum b/go.sum
index 84a8bb106..f03756bab 100644
--- a/go.sum
+++ b/go.sum
@@ -19,10 +19,6 @@ cloud.google.com/go/bigquery v1.4.0/go.mod h1:S8dzgnTigyfTmLBfrtrhyYhwRxG72rYxvf
 cloud.google.com/go/bigquery v1.5.0/go.mod h1:snEHRnqQbz117VIFhE8bmtwIDY80NLUZUMb4Nv6dBIg=
 cloud.google.com/go/bigquery v1.7.0/go.mod h1://okPTzCYNXSlb24MZs83e2Do+h+VXtc4gLoIoXIAPc=
 cloud.google.com/go/bigquery v1.8.0/go.mod h1:J5hqkt3O0uAFnINi6JXValWIb1v0goeZM77hZzJN/fQ=
-cloud.google.com/go/compute v1.12.1 h1:gKVJMEyqV5c/UnpzjjQbo3Rjvvqpr9B1DFSbJC4OXr0=
-cloud.google.com/go/compute v1.12.1/go.mod h1:e8yNOBcBONZU1vJKCvCoDw/4JQsA0dpM4x/6PIIOocU=
-cloud.google.com/go/compute/metadata v0.2.1 h1:efOwf5ymceDhK6PKMnnrTHP4pppY5L22mle96M1yP48=
-cloud.google.com/go/compute/metadata v0.2.1/go.mod h1:jgHgmJd2RKBGzXqF5LR2EZMGxBkeanZ9wwa75XHJgOM=
 cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE=
 cloud.google.com/go/datastore v1.1.0/go.mod h1:umbIZjpQpHh4hmRpGhH4tLFup+FVzqBi1b3c64qFpCk=
 cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I=
@@ -35,30 +31,10 @@ cloud.google.com/go/storage v1.6.0/go.mod h1:N7U0C8pVQ/+NIKOBQyamJIeKQKkZ+mxpohl
 cloud.google.com/go/storage v1.8.0/go.mod h1:Wv1Oy7z6Yz3DshWRJFhqM/UCfaWIRTdp0RXyy7KQOVs=
 cloud.google.com/go/storage v1.10.0/go.mod h1:FLPqc6j+Ki4BU591ie1oL6qBQGu2Bl/tZ9ullr3+Kg0=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
-github.com/Azure/go-autorest v14.2.0+incompatible h1:V5VMDjClD3GiElqLWO7mz2MxNAK/vTfRHdAubSIPRgs=
-github.com/Azure/go-autorest v14.2.0+incompatible/go.mod h1:r+4oMnoxhatjLLJ6zxSWATqVooLgysK6ZNox3g/xq24=
-github.com/Azure/go-autorest/autorest v0.11.27 h1:F3R3q42aWytozkV8ihzcgMO4OA4cuqr3bNlsEuF6//A=
-github.com/Azure/go-autorest/autorest v0.11.27/go.mod h1:7l8ybrIdUmGqZMTD0sRtAr8NvbHjfofbf8RSP2q7w7U=
-github.com/Azure/go-autorest/autorest/adal v0.9.18/go.mod h1:XVVeme+LZwABT8K5Lc3hA4nAe8LDBVle26gTrguhhPQ=
-github.com/Azure/go-autorest/autorest/adal v0.9.20 h1:gJ3E98kMpFB1MFqQCvA1yFab8vthOeD4VlFRQULxahg=
-github.com/Azure/go-autorest/autorest/adal v0.9.20/go.mod h1:XVVeme+LZwABT8K5Lc3hA4nAe8LDBVle26gTrguhhPQ=
-github.com/Azure/go-autorest/autorest/date v0.3.0 h1:7gUk1U5M/CQbp9WoqinNzJar+8KY+LPI6wiWrP/myHw=
-github.com/Azure/go-autorest/autorest/date v0.3.0/go.mod h1:BI0uouVdmngYNUzGWeSYnokU+TrmwEsOqdt8Y6sso74=
-github.com/Azure/go-autorest/autorest/mocks v0.4.1/go.mod h1:LTp+uSrOhSkaKrUy935gNZuuIPPVsHlr9DSOxSayd+k=
-github.com/Azure/go-autorest/autorest/mocks v0.4.2 h1:PGN4EDXnuQbojHbU0UWoNvmu9AGVwYHG9/fkDYhtAfw=
-github.com/Azure/go-autorest/autorest/mocks v0.4.2/go.mod h1:Vy7OitM9Kei0i1Oj+LvyAWMXJHeKH1MVlzFugfVrmyU=
-github.com/Azure/go-autorest/logger v0.2.1 h1:IG7i4p/mDa2Ce4TRyAO8IHnVhAVF3RFU+ZtXWSmf4Tg=
-github.com/Azure/go-autorest/logger v0.2.1/go.mod h1:T9E3cAhj2VqvPOtCYAvby9aBXkZmbF5NWuPV8+WeEW8=
-github.com/Azure/go-autorest/tracing v0.6.0 h1:TYi4+3m5t6K48TGI9AUdb+IzbnSxvnvUMfuitfgcfuo=
-github.com/Azure/go-autorest/tracing v0.6.0/go.mod h1:+vhtPC754Xsa23ID7GlGsrdKBpUA79WCAKPPZVC2DeU=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/toml v1.0.0 h1:dtDWrepsVPfW9H/4y7dDgFc2MBUSeJhlaDtK13CxFlU=
 github.com/BurntSushi/toml v1.0.0/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
-github.com/PuerkitoBio/purell v1.1.1 h1:WEQqlqaGbrPkxLJWfBwQmfEAE1Z7ONdDLqrN38tNFfI=
-github.com/PuerkitoBio/purell v1.1.1/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
-github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 h1:d+Bc7a5rLufV/sSk/8dngufqelfh6jnri85riMAaF/M=
-github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578/go.mod h1:uGdkoq3SwY9Y+13GIhn11/XLaGBb4BfwItxLd5jeuXE=
 github.com/alecthomas/template v0.0.0-20160405071501-a0175ee3bccc/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
 github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
 github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
@@ -126,7 +102,6 @@ github.com/go-kit/log v0.1.0/go.mod h1:zbhenjAZHb184qTLMA9ZjW7ThYL0H2mk7Q6pNt4vb
 github.com/go-logfmt/logfmt v0.3.0/go.mod h1:Qt1PoO58o5twSAckw1HlFXLmHsOX5/0LbT9GBnD5lWE=
 github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V4qmtdjCk=
 github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A=
-github.com/go-logr/logr v0.1.0/go.mod h1:ixOQHD9gLJUVQQ2ZOR7zLEifBX6tGkNJF4QyIY7sIas=
 github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
 github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/logr v1.2.3 h1:2DntVwHkVopvECVRSlL5PSo9eG+cAkDCuckLubN+rq0=
@@ -135,8 +110,8 @@ github.com/go-logr/zapr v1.2.3 h1:a9vnzlIBPQBBkeaR9IuMUfmVOrQlkoC4YfPoFkX3T7A=
 github.com/go-openapi/jsonpointer v0.19.3/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
 github.com/go-openapi/jsonpointer v0.19.5 h1:gZr+CIYByUqjcgeLXnQu2gHYQC9o73G2XUeOFYEICuY=
 github.com/go-openapi/jsonpointer v0.19.5/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
-github.com/go-openapi/jsonreference v0.19.5 h1:1WJP/wi4OjB4iV8KVbH73rQaoialJrqv8gitZLxGLtM=
-github.com/go-openapi/jsonreference v0.19.5/go.mod h1:RdybgQwPxbL4UEjuAruzK1x3nE69AqPYEJeo/TWfEeg=
+github.com/go-openapi/jsonreference v0.20.0 h1:MYlu0sBgChmCfJxxUKZ8g1cPWFOB37YSZqewK7OKeyA=
+github.com/go-openapi/jsonreference v0.20.0/go.mod h1:Ag74Ico3lPc+zR+qjn4XBUmXymS4zJbYVCZmcgkasdo=
 github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh66Z9tfKk=
 github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5Fng=
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
@@ -147,9 +122,6 @@ github.com/godbus/dbus/v5 v5.0.6/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5x
 github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
-github.com/golang-jwt/jwt/v4 v4.0.0/go.mod h1:/xlHOz8bRuivTWchD4jCa+NbatV+wEUSzwAxVc6locg=
-github.com/golang-jwt/jwt/v4 v4.2.0 h1:besgBTC8w8HjP6NzQdxwKH9Z5oQMZ24ThTrHp3cZ8eU=
-github.com/golang-jwt/jwt/v4 v4.2.0/go.mod h1:/xlHOz8bRuivTWchD4jCa+NbatV+wEUSzwAxVc6locg=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
 github.com/golang/groupcache v0.0.0-20190702054246-869f871628b6/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20191227052852-215e87163ea7/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
@@ -362,7 +334,6 @@ github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6Mwd
 github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
 github.com/sirupsen/logrus v1.8.1 h1:dJKuHgqk1NNQlqoA6BTlM1Wf9DOH3NBjQyu0h9+AZZE=
 github.com/sirupsen/logrus v1.8.1/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
-github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
 github.com/spf13/cobra v1.6.1 h1:o94oiPyS4KD1mPy2fmcYYHHfCxLqYjJOhGsCHFZtEzA=
 github.com/spf13/cobra v1.6.1/go.mod h1:IOw/AERYS7UzyrGinqmz6HLUo219MORXGxhbaJUqzrY=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
@@ -421,8 +392,6 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.0.0-20211215153901-e495a2d5b3d3/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.5.0 h1:U/0M97KRkSFvyD/3FSmdP5W5swImpNgle/EHFhOsQPE=
 golang.org/x/crypto v0.5.0/go.mod h1:NK/OQwhpMQP3MwtdjgLlYHnH9ebylxKWv3e0fK+mkQU=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
@@ -471,7 +440,6 @@ golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190628185345-da137c7871d7/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190724013045-ca1201d0de80/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200114155413-6afb5195e5aa/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200202094626-16171245cfb2/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
@@ -490,7 +458,6 @@ golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.5.0 h1:GyT4nK/YDHSqa1c4753ouYCDajOYKTja9Xb/OHtgvSw=
 golang.org/x/net v0.5.0/go.mod h1:DivGGAXEgPSlEBzxGzZI+ZLohi+xUj054jfeKui00ws=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
@@ -511,7 +478,6 @@ golang.org/x/sync v0.0.0-20200317015054-43a5402ce75a/go.mod h1:RxMgew5VJxzue5/jJ
 golang.org/x/sync v0.0.0-20200625203802-6e8e738ad208/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201207232520-09787c993a3a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.1.0 h1:wsuoTGHzEhffawBOhz5CYhcrV4IdKZbEyZjBMuTp12o=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20181116152217-5ac8a444bdc5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
@@ -750,32 +716,31 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.25.4 h1:3YO8J4RtmG7elEgaWMb4HgmpS2CfY1QlaOz9nwB+ZSs=
-k8s.io/api v0.25.4/go.mod h1:IG2+RzyPQLllQxnhzD8KQNEu4c4YvyDTpSMztf4A0OQ=
-k8s.io/apiextensions-apiserver v0.25.0 h1:CJ9zlyXAbq0FIW8CD7HHyozCMBpDSiH7EdrSTCZcZFY=
-k8s.io/apiextensions-apiserver v0.25.0/go.mod h1:3pAjZiN4zw7R8aZC5gR0y3/vCkGlAjCazcg1me8iB/E=
-k8s.io/apimachinery v0.25.4 h1:CtXsuaitMESSu339tfhVXhQrPET+EiWnIY1rcurKnAc=
-k8s.io/apimachinery v0.25.4/go.mod h1:jaF9C/iPNM1FuLl7Zuy5b9v+n35HGSh6AQ4HYRkCqwo=
-k8s.io/apiserver v0.25.0 h1:8kl2ifbNffD440MyvHtPaIz1mw4mGKVgWqM0nL+oyu4=
-k8s.io/apiserver v0.25.0/go.mod h1:BKwsE+PTC+aZK+6OJQDPr0v6uS91/HWxX7evElAH6xo=
-k8s.io/cli-runtime v0.25.0 h1:XBnTc2Fi+w818jcJGzhiJKQuXl8479sZ4FhtV5hVJ1Q=
-k8s.io/cli-runtime v0.25.0/go.mod h1:bHOI5ZZInRHhbq12OdUiYZQN8ml8aKZLwQgt9QlLINw=
-k8s.io/client-go v0.25.4 h1:3RNRDffAkNU56M/a7gUfXaEzdhZlYhoW8dgViGy5fn8=
-k8s.io/client-go v0.25.4/go.mod h1:8trHCAC83XKY0wsBIpbirZU4NTUpbuhc2JnI7OruGZw=
-k8s.io/code-generator v0.25.0 h1:QP8fJuXu882ztf6dsqJsso/Btm94pMd68TAZC1rE6KI=
-k8s.io/code-generator v0.25.0/go.mod h1:B6jZgI3DvDFAualltPitbYMQ74NjaCFxum3YeKZZ+3w=
-k8s.io/component-base v0.25.4 h1:n1bjg9Yt+G1C0WnIDJmg2fo6wbEU1UGMRiQSjmj7hNQ=
-k8s.io/component-base v0.25.4/go.mod h1:nnZJU8OP13PJEm6/p5V2ztgX2oyteIaAGKGMYb2L2cY=
-k8s.io/gengo v0.0.0-20211129171323-c02415ce4185 h1:TT1WdmqqXareKxZ/oNXEUSwKlLiHzPMyB0t8BaFeBYI=
-k8s.io/gengo v0.0.0-20211129171323-c02415ce4185/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
-k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
+k8s.io/api v0.26.0 h1:IpPlZnxBpV1xl7TGk/X6lFtpgjgntCg8PJ+qrPHAC7I=
+k8s.io/api v0.26.0/go.mod h1:k6HDTaIFC8yn1i6pSClSqIwLABIcLV9l5Q4EcngKnQg=
+k8s.io/apiextensions-apiserver v0.26.0 h1:Gy93Xo1eg2ZIkNX/8vy5xviVSxwQulsnUdQ00nEdpDo=
+k8s.io/apiextensions-apiserver v0.26.0/go.mod h1:7ez0LTiyW5nq3vADtK6C3kMESxadD51Bh6uz3JOlqWQ=
+k8s.io/apimachinery v0.26.0 h1:1feANjElT7MvPqp0JT6F3Ss6TWDwmcjLypwoPpEf7zg=
+k8s.io/apimachinery v0.26.0/go.mod h1:tnPmbONNJ7ByJNz9+n9kMjNP8ON+1qoAIIC70lztu74=
+k8s.io/apiserver v0.26.0 h1:q+LqIK5EZwdznGZb8bq0+a+vCqdeEEe4Ux3zsOjbc4o=
+k8s.io/apiserver v0.26.0/go.mod h1:aWhlLD+mU+xRo+zhkvP/gFNbShI4wBDHS33o0+JGI84=
+k8s.io/cli-runtime v0.26.0 h1:aQHa1SyUhpqxAw1fY21x2z2OS5RLtMJOCj7tN4oq8mw=
+k8s.io/cli-runtime v0.26.0/go.mod h1:o+4KmwHzO/UK0wepE1qpRk6l3o60/txUZ1fEXWGIKTY=
+k8s.io/client-go v0.26.0 h1:lT1D3OfO+wIi9UFolCrifbjUUgu7CpLca0AD8ghRLI8=
+k8s.io/client-go v0.26.0/go.mod h1:I2Sh57A79EQsDmn7F7ASpmru1cceh3ocVT9KlX2jEZg=
+k8s.io/code-generator v0.26.0 h1:ZDY+7Gic9p/lACgD1G72gQg2CvNGeAYZTPIncv+iALM=
+k8s.io/code-generator v0.26.0/go.mod h1:OMoJ5Dqx1wgaQzKgc+ZWaZPfGjdRq/Y3WubFrZmeI3I=
+k8s.io/component-base v0.26.0 h1:0IkChOCohtDHttmKuz+EP3j3+qKmV55rM9gIFTXA7Vs=
+k8s.io/component-base v0.26.0/go.mod h1:lqHwlfV1/haa14F/Z5Zizk5QmzaVf23nQzCwVOQpfC8=
+k8s.io/gengo v0.0.0-20220902162205-c0856e24416d h1:U9tB195lKdzwqicbJvyJeOXV7Klv+wNAWENRnXEGi08=
+k8s.io/gengo v0.0.0-20220902162205-c0856e24416d/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
 k8s.io/klog/v2 v2.80.1 h1:atnLQ121W371wYYFawwYx1aEY2eUfs4l3J72wtgAwV4=
 k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
-k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1 h1:MQ8BAZPZlWk3S9K4a9NCkIFQtZShWqoha7snGixVgEA=
-k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1/go.mod h1:C/N6wCaBHeBHkHUesQOQy2/MZqGgMAFPqGsGQLdbZBU=
-k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed h1:jAne/RjBTyawwAy0utX5eqigAwz/lQhTmy+Hr/Cpue4=
-k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 h1:+70TFaan3hfJzs+7VK2o+OGxg8HsuBr/5f6tVAjDu6E=
+k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280/go.mod h1:+Axhij7bCpeqhklhUTe3xmOn6bWxolyZEeyaFpjGtl4=
+k8s.io/utils v0.0.0-20221107191617-1a15be271d1d h1:0Smp/HP1OH4Rvhe+4B8nWGERtlqAGSftbSbbmm45oFs=
+k8s.io/utils v0.0.0-20221107191617-1a15be271d1d/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
diff --git a/internal/ingress/status/status.go b/internal/ingress/status/status.go
index 2e53682a0..eac1f6cb0 100644
--- a/internal/ingress/status/status.go
+++ b/internal/ingress/status/status.go
@@ -19,6 +19,7 @@ package status
 import (
 	"context"
 	"fmt"
+	v1 "k8s.io/api/networking/v1"
 	"net"
 	"regexp"
 	"sort"
@@ -128,7 +129,7 @@ func (s statusSync) Shutdown() {
 	}
 
 	klog.InfoS("removing value from ingress status", "address", addrs)
-	s.updateStatus([]apiv1.LoadBalancerIngress{})
+	s.updateStatus([]v1.IngressLoadBalancerIngress{})
 }
 
 func (s *statusSync) sync(key interface{}) error {
@@ -160,21 +161,21 @@ func NewStatusSyncer(config Config) Syncer {
 	return st
 }
 
-func nameOrIPToLoadBalancerIngress(nameOrIP string) apiv1.LoadBalancerIngress {
+func nameOrIPToLoadBalancerIngress(nameOrIP string) v1.IngressLoadBalancerIngress {
 	if net.ParseIP(nameOrIP) != nil {
-		return apiv1.LoadBalancerIngress{IP: nameOrIP}
+		return v1.IngressLoadBalancerIngress{IP: nameOrIP}
 	}
 
-	return apiv1.LoadBalancerIngress{Hostname: nameOrIP}
+	return v1.IngressLoadBalancerIngress{Hostname: nameOrIP}
 }
 
 // runningAddresses returns a list of IP addresses and/or FQDN where the
 // ingress controller is currently running
-func (s *statusSync) runningAddresses() ([]apiv1.LoadBalancerIngress, error) {
+func (s *statusSync) runningAddresses() ([]v1.IngressLoadBalancerIngress, error) {
 	if s.PublishStatusAddress != "" {
 		re := regexp.MustCompile(`,\s*`)
 		multipleAddrs := re.Split(s.PublishStatusAddress, -1)
-		addrs := make([]apiv1.LoadBalancerIngress, len(multipleAddrs))
+		addrs := make([]v1.IngressLoadBalancerIngress, len(multipleAddrs))
 		for i, addr := range multipleAddrs {
 			addrs[i] = nameOrIPToLoadBalancerIngress(addr)
 		}
@@ -193,7 +194,7 @@ func (s *statusSync) runningAddresses() ([]apiv1.LoadBalancerIngress, error) {
 		return nil, err
 	}
 
-	addrs := make([]apiv1.LoadBalancerIngress, 0)
+	addrs := make([]v1.IngressLoadBalancerIngress, 0)
 	for i := range pods.Items {
 		pod := pods.Items[i]
 		// only Running pods are valid
@@ -250,7 +251,7 @@ func (s *statusSync) isRunningMultiplePods() bool {
 
 // standardizeLoadBalancerIngresses sorts the list of loadbalancer by
 // IP
-func standardizeLoadBalancerIngresses(lbi []apiv1.LoadBalancerIngress) []apiv1.LoadBalancerIngress {
+func standardizeLoadBalancerIngresses(lbi []v1.IngressLoadBalancerIngress) []v1.IngressLoadBalancerIngress {
 	sort.SliceStable(lbi, func(a, b int) bool {
 		return lbi[a].IP < lbi[b].IP
 	})
@@ -259,7 +260,7 @@ func standardizeLoadBalancerIngresses(lbi []apiv1.LoadBalancerIngress) []apiv1.L
 }
 
 // updateStatus changes the status information of Ingress rules
-func (s *statusSync) updateStatus(newIngressPoint []apiv1.LoadBalancerIngress) {
+func (s *statusSync) updateStatus(newIngressPoint []v1.IngressLoadBalancerIngress) {
 	ings := s.IngressLister.ListIngresses()
 
 	p := pool.NewLimited(10)
@@ -283,7 +284,7 @@ func (s *statusSync) updateStatus(newIngressPoint []apiv1.LoadBalancerIngress) {
 	batch.WaitAll()
 }
 
-func runUpdate(ing *ingress.Ingress, status []apiv1.LoadBalancerIngress,
+func runUpdate(ing *ingress.Ingress, status []v1.IngressLoadBalancerIngress,
 	client clientset.Interface) pool.WorkFunc {
 	return func(wu pool.WorkUnit) (interface{}, error) {
 		if wu.IsCancelled() {
@@ -307,7 +308,7 @@ func runUpdate(ing *ingress.Ingress, status []apiv1.LoadBalancerIngress,
 	}
 }
 
-func lessLoadBalancerIngress(addrs []apiv1.LoadBalancerIngress) func(int, int) bool {
+func lessLoadBalancerIngress(addrs []v1.IngressLoadBalancerIngress) func(int, int) bool {
 	return func(a, b int) bool {
 		switch strings.Compare(addrs[a].Hostname, addrs[b].Hostname) {
 		case -1:
@@ -319,7 +320,7 @@ func lessLoadBalancerIngress(addrs []apiv1.LoadBalancerIngress) func(int, int) b
 	}
 }
 
-func ingressSliceEqual(lhs, rhs []apiv1.LoadBalancerIngress) bool {
+func ingressSliceEqual(lhs, rhs []v1.IngressLoadBalancerIngress) bool {
 	if len(lhs) != len(rhs) {
 		return false
 	}
@@ -336,7 +337,7 @@ func ingressSliceEqual(lhs, rhs []apiv1.LoadBalancerIngress) bool {
 	return true
 }
 
-func statusAddressFromService(service string, kubeClient clientset.Interface) ([]apiv1.LoadBalancerIngress, error) {
+func statusAddressFromService(service string, kubeClient clientset.Interface) ([]v1.IngressLoadBalancerIngress, error) {
 	ns, name, _ := k8s.ParseNameNS(service)
 	svc, err := kubeClient.CoreV1().Services(ns).Get(context.TODO(), name, metav1.GetOptions{})
 	if err != nil {
@@ -345,28 +346,28 @@ func statusAddressFromService(service string, kubeClient clientset.Interface) ([
 
 	switch svc.Spec.Type {
 	case apiv1.ServiceTypeExternalName:
-		return []apiv1.LoadBalancerIngress{{
+		return []v1.IngressLoadBalancerIngress{{
 			Hostname: svc.Spec.ExternalName,
 		}}, nil
 	case apiv1.ServiceTypeClusterIP:
-		return []apiv1.LoadBalancerIngress{{
+		return []v1.IngressLoadBalancerIngress{{
 			IP: svc.Spec.ClusterIP,
 		}}, nil
 	case apiv1.ServiceTypeNodePort:
 		if svc.Spec.ExternalIPs == nil {
-			return []apiv1.LoadBalancerIngress{{
+			return []v1.IngressLoadBalancerIngress{{
 				IP: svc.Spec.ClusterIP,
 			}}, nil
 		}
-		addrs := make([]apiv1.LoadBalancerIngress, len(svc.Spec.ExternalIPs))
+		addrs := make([]v1.IngressLoadBalancerIngress, len(svc.Spec.ExternalIPs))
 		for i, ip := range svc.Spec.ExternalIPs {
-			addrs[i] = apiv1.LoadBalancerIngress{IP: ip}
+			addrs[i] = v1.IngressLoadBalancerIngress{IP: ip}
 		}
 		return addrs, nil
 	case apiv1.ServiceTypeLoadBalancer:
-		addrs := make([]apiv1.LoadBalancerIngress, len(svc.Status.LoadBalancer.Ingress))
+		addrs := make([]v1.IngressLoadBalancerIngress, len(svc.Status.LoadBalancer.Ingress))
 		for i, ingress := range svc.Status.LoadBalancer.Ingress {
-			addrs[i] = apiv1.LoadBalancerIngress{}
+			addrs[i] = v1.IngressLoadBalancerIngress{}
 			if ingress.Hostname != "" {
 				addrs[i].Hostname = ingress.Hostname
 			}
@@ -376,7 +377,7 @@ func statusAddressFromService(service string, kubeClient clientset.Interface) ([
 		}
 		for _, ip := range svc.Spec.ExternalIPs {
 			if !stringInIngresses(ip, addrs) {
-				addrs = append(addrs, apiv1.LoadBalancerIngress{IP: ip})
+				addrs = append(addrs, v1.IngressLoadBalancerIngress{IP: ip})
 			}
 		}
 		return addrs, nil
@@ -386,7 +387,7 @@ func statusAddressFromService(service string, kubeClient clientset.Interface) ([
 }
 
 // stringInSlice returns true if s is in list
-func stringInIngresses(s string, list []apiv1.LoadBalancerIngress) bool {
+func stringInIngresses(s string, list []v1.IngressLoadBalancerIngress) bool {
 	for _, v := range list {
 		if v.IP == s || v.Hostname == s {
 			return true
diff --git a/internal/ingress/status/status_test.go b/internal/ingress/status/status_test.go
index d4ef09e7c..3dd56f37d 100644
--- a/internal/ingress/status/status_test.go
+++ b/internal/ingress/status/status_test.go
@@ -34,8 +34,8 @@ import (
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
-func buildLoadBalancerIngressByIP() []apiv1.LoadBalancerIngress {
-	return []apiv1.LoadBalancerIngress{
+func buildLoadBalancerIngressByIP() []networking.IngressLoadBalancerIngress {
+	return []networking.IngressLoadBalancerIngress{
 		{
 			IP:       "10.0.0.1",
 			Hostname: "foo1",
@@ -123,17 +123,20 @@ func buildSimpleClientSet() *testclient.Clientset {
 			},
 		}},
 		&apiv1.ServiceList{Items: []apiv1.Service{
-			{
-				ObjectMeta: metav1.ObjectMeta{
-					Name:      "foo",
-					Namespace: apiv1.NamespaceDefault,
-				},
-				Status: apiv1.ServiceStatus{
-					LoadBalancer: apiv1.LoadBalancerStatus{
-						Ingress: buildLoadBalancerIngressByIP(),
-					},
-				},
-			},
+			// This is commented out as the ServiceStatus.LoadBalancer field expects a LoadBalancerStatus object
+			// which is incompatible with the current Ingress struct which expects a IngressLoadBalancerStatus object
+			// TODO: update this service when the ServiceStatus struct gets updated
+			//{
+			//	ObjectMeta: metav1.ObjectMeta{
+			//		Name:      "foo",
+			//		Namespace: apiv1.NamespaceDefault,
+			//	},
+			//	Status: apiv1.ServiceStatus{
+			//		LoadBalancer: apiv1.LoadBalancerStatus{
+			//			Ingress: buildLoadBalancerIngressByIP(),
+			//		},
+			//	},
+			//},
 			{
 				ObjectMeta: metav1.ObjectMeta{
 					Name:      "foo_non_exist",
@@ -199,8 +202,8 @@ func buildExtensionsIngresses() []networking.Ingress {
 				Namespace: apiv1.NamespaceDefault,
 			},
 			Status: networking.IngressStatus{
-				LoadBalancer: apiv1.LoadBalancerStatus{
-					Ingress: []apiv1.LoadBalancerIngress{
+				LoadBalancer: networking.IngressLoadBalancerStatus{
+					Ingress: []networking.IngressLoadBalancerIngress{
 						{
 							IP:       "10.0.0.1",
 							Hostname: "foo1",
@@ -218,8 +221,8 @@ func buildExtensionsIngresses() []networking.Ingress {
 				},
 			},
 			Status: networking.IngressStatus{
-				LoadBalancer: apiv1.LoadBalancerStatus{
-					Ingress: []apiv1.LoadBalancerIngress{
+				LoadBalancer: networking.IngressLoadBalancerStatus{
+					Ingress: []networking.IngressLoadBalancerIngress{
 						{
 							IP:       "0.0.0.0",
 							Hostname: "foo.bar.com",
@@ -234,8 +237,8 @@ func buildExtensionsIngresses() []networking.Ingress {
 				Namespace: apiv1.NamespaceDefault,
 			},
 			Status: networking.IngressStatus{
-				LoadBalancer: apiv1.LoadBalancerStatus{
-					Ingress: []apiv1.LoadBalancerIngress{},
+				LoadBalancer: networking.IngressLoadBalancerStatus{
+					Ingress: []networking.IngressLoadBalancerIngress{},
 				},
 			},
 		},
@@ -261,7 +264,7 @@ func (til *testIngressLister) ListIngresses() []*ingress.Ingress {
 				Namespace: apiv1.NamespaceDefault,
 			},
 			Status: networking.IngressStatus{
-				LoadBalancer: apiv1.LoadBalancerStatus{
+				LoadBalancer: networking.IngressLoadBalancerStatus{
 					Ingress: buildLoadBalancerIngressByIP(),
 				},
 			},
@@ -325,7 +328,7 @@ func TestStatusActions(t *testing.T) {
 	fk.sync("just-test")
 	// PublishService is empty, so the running address is: ["11.0.0.2"]
 	// after updated, the ingress's ip should only be "11.0.0.2"
-	newIPs := []apiv1.LoadBalancerIngress{{
+	newIPs := []networking.IngressLoadBalancerIngress{{
 		IP: "11.0.0.2",
 	}}
 	fooIngress1, err1 := fk.Client.NetworkingV1().Ingresses(apiv1.NamespaceDefault).Get(context.TODO(), "foo_ingress_1", metav1.GetOptions{})
@@ -342,7 +345,7 @@ func TestStatusActions(t *testing.T) {
 	// execute shutdown
 	fk.Shutdown()
 	// ingress should be empty
-	newIPs2 := []apiv1.LoadBalancerIngress{}
+	var newIPs2 []networking.IngressLoadBalancerIngress
 	fooIngress2, err2 := fk.Client.NetworkingV1().Ingresses(apiv1.NamespaceDefault).Get(context.TODO(), "foo_ingress_1", metav1.GetOptions{})
 	if err2 != nil {
 		t.Fatalf("unexpected error")
@@ -382,7 +385,7 @@ func TestKeyfunc(t *testing.T) {
 func TestRunningAddressesWithPublishService(t *testing.T) {
 	testCases := map[string]struct {
 		fakeClient  *testclient.Clientset
-		expected    []apiv1.LoadBalancerIngress
+		expected    []networking.IngressLoadBalancerIngress
 		errExpected bool
 	}{
 		"service type ClusterIP": {
@@ -416,7 +419,7 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 				},
 				},
 			),
-			[]apiv1.LoadBalancerIngress{
+			[]networking.IngressLoadBalancerIngress{
 				{IP: "1.1.1.1"},
 			},
 			false,
@@ -437,7 +440,7 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 				},
 				},
 			),
-			[]apiv1.LoadBalancerIngress{
+			[]networking.IngressLoadBalancerIngress{
 				{IP: "1.1.1.1"},
 			},
 			false,
@@ -458,7 +461,7 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 				},
 				},
 			),
-			[]apiv1.LoadBalancerIngress{
+			[]networking.IngressLoadBalancerIngress{
 				{Hostname: "foo.bar"},
 			},
 			false,
@@ -495,7 +498,7 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 				},
 				},
 			),
-			[]apiv1.LoadBalancerIngress{
+			[]networking.IngressLoadBalancerIngress{
 				{IP: "10.0.0.1"},
 				{Hostname: "foo"},
 				{
@@ -530,7 +533,7 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 				},
 				},
 			),
-			[]apiv1.LoadBalancerIngress{
+			[]networking.IngressLoadBalancerIngress{
 				{IP: "10.0.0.1"},
 			},
 			false,
@@ -568,7 +571,7 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 			}
 
 			if ra == nil {
-				t.Fatalf("returned nil but expected valid []apiv1.LoadBalancerIngress")
+				t.Fatalf("returned nil but expected valid []networking.IngressLoadBalancerIngress")
 			}
 
 			if !reflect.DeepEqual(tc.expected, ra) {
@@ -584,7 +587,7 @@ func TestRunningAddressesWithPods(t *testing.T) {
 
 	r, _ := fk.runningAddresses()
 	if r == nil {
-		t.Fatalf("returned nil but expected valid []apiv1.LoadBalancerIngress")
+		t.Fatalf("returned nil but expected valid []networking.IngressLoadBalancerIngress")
 	}
 	rl := len(r)
 	if len(r) != 1 {
@@ -592,7 +595,7 @@ func TestRunningAddressesWithPods(t *testing.T) {
 	}
 	rv := r[0]
 	if rv.IP != "11.0.0.2" {
-		t.Errorf("returned %v but expected %v", rv, apiv1.LoadBalancerIngress{IP: "11.0.0.2"})
+		t.Errorf("returned %v but expected %v", rv, networking.IngressLoadBalancerIngress{IP: "11.0.0.2"})
 	}
 }
 
@@ -602,7 +605,7 @@ func TestRunningAddressesWithPublishStatusAddress(t *testing.T) {
 
 	ra, _ := fk.runningAddresses()
 	if ra == nil {
-		t.Fatalf("returned nil but expected valid []apiv1.LoadBalancerIngress")
+		t.Fatalf("returned nil but expected valid []networking.IngressLoadBalancerIngress")
 	}
 	rl := len(ra)
 	if len(ra) != 1 {
@@ -610,7 +613,7 @@ func TestRunningAddressesWithPublishStatusAddress(t *testing.T) {
 	}
 	rv := ra[0]
 	if rv.IP != "127.0.0.1" {
-		t.Errorf("returned %v but expected %v", rv, apiv1.LoadBalancerIngress{IP: "127.0.0.1"})
+		t.Errorf("returned %v but expected %v", rv, networking.IngressLoadBalancerIngress{IP: "127.0.0.1"})
 	}
 }
 
@@ -620,7 +623,7 @@ func TestRunningAddressesWithPublishStatusAddresses(t *testing.T) {
 
 	ra, _ := fk.runningAddresses()
 	if ra == nil {
-		t.Fatalf("returned nil but expected valid []apiv1.LoadBalancerIngress")
+		t.Fatalf("returned nil but expected valid []networking.IngressLoadBalancerIngress")
 	}
 	rl := len(ra)
 	if len(ra) != 2 {
@@ -629,10 +632,10 @@ func TestRunningAddressesWithPublishStatusAddresses(t *testing.T) {
 	rv := ra[0]
 	rv2 := ra[1]
 	if rv.IP != "127.0.0.1" {
-		t.Errorf("returned %v but expected %v", rv, apiv1.LoadBalancerIngress{IP: "127.0.0.1"})
+		t.Errorf("returned %v but expected %v", rv, networking.IngressLoadBalancerIngress{IP: "127.0.0.1"})
 	}
 	if rv2.IP != "1.1.1.1" {
-		t.Errorf("returned %v but expected %v", rv2, apiv1.LoadBalancerIngress{IP: "1.1.1.1"})
+		t.Errorf("returned %v but expected %v", rv2, networking.IngressLoadBalancerIngress{IP: "1.1.1.1"})
 	}
 }
 
@@ -642,7 +645,7 @@ func TestRunningAddressesWithPublishStatusAddressesAndSpaces(t *testing.T) {
 
 	ra, _ := fk.runningAddresses()
 	if ra == nil {
-		t.Fatalf("returned nil but expected valid []apiv1.LoadBalancerIngresst")
+		t.Fatalf("returned nil but expected valid []networking.IngressLoadBalancerIngresst")
 	}
 	rl := len(ra)
 	if len(ra) != 2 {
@@ -651,15 +654,15 @@ func TestRunningAddressesWithPublishStatusAddressesAndSpaces(t *testing.T) {
 	rv := ra[0]
 	rv2 := ra[1]
 	if rv.IP != "127.0.0.1" {
-		t.Errorf("returned %v but expected %v", rv, apiv1.LoadBalancerIngress{IP: "127.0.0.1"})
+		t.Errorf("returned %v but expected %v", rv, networking.IngressLoadBalancerIngress{IP: "127.0.0.1"})
 	}
 	if rv2.IP != "1.1.1.1" {
-		t.Errorf("returned %v but expected %v", rv2, apiv1.LoadBalancerIngress{IP: "1.1.1.1"})
+		t.Errorf("returned %v but expected %v", rv2, networking.IngressLoadBalancerIngress{IP: "1.1.1.1"})
 	}
 }
 
 func TestStandardizeLoadBalancerIngresses(t *testing.T) {
-	fkEndpoints := []apiv1.LoadBalancerIngress{
+	fkEndpoints := []networking.IngressLoadBalancerIngress{
 		{IP: "2001:db8::68"},
 		{IP: "10.0.0.1"},
 		{Hostname: "opensource-k8s-ingress"},
@@ -668,7 +671,7 @@ func TestStandardizeLoadBalancerIngresses(t *testing.T) {
 	r := standardizeLoadBalancerIngresses(fkEndpoints)
 
 	if r == nil {
-		t.Fatalf("returned nil but expected a valid []apiv1.LoadBalancerIngress")
+		t.Fatalf("returned nil but expected a valid []networking.IngressLoadBalancerIngress")
 	}
 	rl := len(r)
 	if rl != 3 {
@@ -676,21 +679,21 @@ func TestStandardizeLoadBalancerIngresses(t *testing.T) {
 	}
 	re1 := r[0]
 	if re1.Hostname != "opensource-k8s-ingress" {
-		t.Fatalf("returned %v but expected %v", re1, apiv1.LoadBalancerIngress{Hostname: "opensource-k8s-ingress"})
+		t.Fatalf("returned %v but expected %v", re1, networking.IngressLoadBalancerIngress{Hostname: "opensource-k8s-ingress"})
 	}
 	re2 := r[1]
 	if re2.IP != "10.0.0.1" {
-		t.Fatalf("returned %v but expected %v", re2, apiv1.LoadBalancerIngress{IP: "10.0.0.1"})
+		t.Fatalf("returned %v but expected %v", re2, networking.IngressLoadBalancerIngress{IP: "10.0.0.1"})
 	}
 	re3 := r[2]
 	if re3.IP != "2001:db8::68" {
-		t.Fatalf("returned %v but expected %v", re3, apiv1.LoadBalancerIngress{IP: "2001:db8::68"})
+		t.Fatalf("returned %v but expected %v", re3, networking.IngressLoadBalancerIngress{IP: "2001:db8::68"})
 	}
 }
 
 func TestIngressSliceEqual(t *testing.T) {
 	fk1 := buildLoadBalancerIngressByIP()
-	fk2 := append(buildLoadBalancerIngressByIP(), apiv1.LoadBalancerIngress{
+	fk2 := append(buildLoadBalancerIngressByIP(), networking.IngressLoadBalancerIngress{
 		IP:       "10.0.0.5",
 		Hostname: "foo5",
 	})
@@ -700,8 +703,8 @@ func TestIngressSliceEqual(t *testing.T) {
 	fk4[2].IP = "11.0.0.3"
 
 	fooTests := []struct {
-		lhs []apiv1.LoadBalancerIngress
-		rhs []apiv1.LoadBalancerIngress
+		lhs []networking.IngressLoadBalancerIngress
+		rhs []networking.IngressLoadBalancerIngress
 		er  bool
 	}{
 		{fk1, fk1, true},
@@ -710,7 +713,7 @@ func TestIngressSliceEqual(t *testing.T) {
 		{fk4, fk1, false},
 		{fk1, nil, false},
 		{nil, nil, true},
-		{[]apiv1.LoadBalancerIngress{}, []apiv1.LoadBalancerIngress{}, true},
+		{[]networking.IngressLoadBalancerIngress{}, []networking.IngressLoadBalancerIngress{}, true},
 	}
 
 	for _, fooTest := range fooTests {
diff --git a/test/e2e/status/update.go b/test/e2e/status/update.go
index c9c6ef333..8bedc4d4e 100644
--- a/test/e2e/status/update.go
+++ b/test/e2e/status/update.go
@@ -19,6 +19,7 @@ package settings
 import (
 	"context"
 	"fmt"
+	v1 "k8s.io/api/networking/v1"
 	"log"
 	"net"
 	"strings"
@@ -28,7 +29,6 @@ import (
 	"github.com/stretchr/testify/assert"
 
 	appsv1 "k8s.io/api/apps/v1"
-	apiv1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/util/wait"
 
@@ -87,7 +87,7 @@ var _ = framework.IngressNginxDescribe("[Status] status update", func() {
 		ing, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Get(context.TODO(), host, metav1.GetOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error getting %s/%v Ingress", f.Namespace, host)
 
-		ing.Status.LoadBalancer.Ingress = []apiv1.LoadBalancerIngress{}
+		ing.Status.LoadBalancer.Ingress = []v1.IngressLoadBalancerIngress{}
 		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).UpdateStatus(context.TODO(), ing, metav1.UpdateOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error cleaning Ingress status")
 		framework.Sleep(10 * time.Second)
@@ -121,9 +121,9 @@ var _ = framework.IngressNginxDescribe("[Status] status update", func() {
 			return true, nil
 		})
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error waiting for ingress status")
-		assert.Equal(ginkgo.GinkgoT(), ing.Status.LoadBalancer.Ingress, ([]apiv1.LoadBalancerIngress{
+		assert.Equal(ginkgo.GinkgoT(), ing.Status.LoadBalancer.Ingress, []v1.IngressLoadBalancerIngress{
 			{IP: "1.1.0.0"},
-		}))
+		})
 	})
 })
 

From ea0db8de77dffc0f21d8324fa79180855422e27c Mon Sep 17 00:00:00 2001
From: Christian Schaefer <chrisse.s@gmail.com>
Date: Wed, 18 Jan 2023 14:22:35 +0100
Subject: [PATCH 0575/1641] Align default value for keepalive_request with
 NGINX default (#9518)

* Align default value for keepalive_request with NGINX default

* Align default value for keepalive_request with NGINX default
---
 docs/user-guide/nginx-configuration/configmap.md | 4 ++--
 internal/ingress/controller/config/config.go     | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 849d6968a..baefa7c72 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -62,7 +62,7 @@ The following table shows a configuration option's name, type, and the default v
 |[hsts-max-age](#hsts-max-age)|string|"15724800"|
 |[hsts-preload](#hsts-preload)|bool|"false"|
 |[keep-alive](#keep-alive)|int|75|
-|[keep-alive-requests](#keep-alive-requests)|int|100|
+|[keep-alive-requests](#keep-alive-requests)|int|1000|
 |[large-client-header-buffers](#large-client-header-buffers)|string|"4 8k"|
 |[log-format-escape-none](#log-format-escape-none)|bool|"false"|
 |[log-format-escape-json](#log-format-escape-json)|bool|"false"|
@@ -1348,4 +1348,4 @@ will be allowed.
 
 See also [#disable-pathtype-validation](#disable-pathtype-validation).
 
-_**default:**_ "^%$[](){}*+?|"
\ No newline at end of file
+_**default:**_ "^%$[](){}*+?|"
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index b246ef9cf..8be92167d 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -852,7 +852,7 @@ func NewDefault() Configuration {
 		GzipMinLength:                    256,
 		GzipTypes:                        gzipTypes,
 		KeepAlive:                        75,
-		KeepAliveRequests:                100,
+		KeepAliveRequests:                1000,
 		LargeClientHeaderBuffers:         "4 8k",
 		LogFormatEscapeJSON:              false,
 		LogFormatStream:                  logFormatStream,

From e846c30e47ffd4bc2290ed4b9ed5d4fb8dd09a4c Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 13 Jan 2023 08:54:28 -0500
Subject: [PATCH 0576/1641] start 1.6.0 release

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index c9b3c015f..05f629f1b 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.5.1
\ No newline at end of file
+v1.6.0
\ No newline at end of file

From 101ab06010f80990009c212d7cb5c187e6502648 Mon Sep 17 00:00:00 2001
From: Zadkiel Aharonian <hello@zadkiel.fr>
Date: Thu, 19 Jan 2023 15:36:38 +0100
Subject: [PATCH 0577/1641] fix(grafana-dashboard): remove hardcoded namespace
 references (#9523)

---
 deploy/grafana/dashboards/nginx.json | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/deploy/grafana/dashboards/nginx.json b/deploy/grafana/dashboards/nginx.json
index 85f93c9eb..3c3205b4a 100644
--- a/deploy/grafana/dashboards/nginx.json
+++ b/deploy/grafana/dashboards/nginx.json
@@ -1312,7 +1312,7 @@
       "targets": [
         {
           "exemplar": true,
-          "expr": "histogram_quantile(0.80, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le))",
+          "expr": "histogram_quantile(0.80, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le))",
           "format": "time_series",
           "hide": false,
           "instant": false,
@@ -1323,7 +1323,7 @@
         },
         {
           "exemplar": true,
-          "expr": "histogram_quantile(0.90, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le))",
+          "expr": "histogram_quantile(0.90, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le))",
           "format": "time_series",
           "hide": false,
           "instant": false,
@@ -1335,7 +1335,7 @@
         {
           "editorMode": "code",
           "exemplar": true,
-          "expr": "histogram_quantile(0.99, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le))",
+          "expr": "histogram_quantile(0.99, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le))",
           "format": "time_series",
           "hide": false,
           "instant": false,
@@ -1377,7 +1377,7 @@
       "targets": [
         {
           "exemplar": true,
-          "expr": "sum(increase(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le)",
+          "expr": "sum(increase(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le)",
           "format": "heatmap",
           "interval": "",
           "legendFormat": "{{le}}",

From 8c4cd879e33f966a80c06032955f2cd1d3a2f59b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 19 Jan 2023 06:48:35 -0800
Subject: [PATCH 0578/1641] Bump google.golang.org/grpc from 1.51.0 to 1.52.0
 (#9512)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.51.0 to 1.52.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.51.0...v1.52.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 780cac648..2412ad6db 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.5.0
-	google.golang.org/grpc v1.51.0
+	google.golang.org/grpc v1.52.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index f03756bab..6dc3d7f54 100644
--- a/go.sum
+++ b/go.sum
@@ -660,8 +660,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.51.0 h1:E1eGv1FTqoLIdnBCZufiSHgKjlqG6fKFf6pPWtMTh8U=
-google.golang.org/grpc v1.51.0/go.mod h1:wgNDFcnuBGmxLKI/qn4T+m5BtEBYXJPvibbUPsAIPww=
+google.golang.org/grpc v1.52.0 h1:kd48UiU7EHsV4rnLyOJRuP/Il/UHE7gdDAQ+SZI7nZk=
+google.golang.org/grpc v1.52.0/go.mod h1:pu6fVzoFb+NBYNAvQL08ic+lvB2IojljRYuun5vorUY=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From d1af3b5ccaf2ff3cde0f3b3fcdb27c2f45fc0516 Mon Sep 17 00:00:00 2001
From: Harpreet singh <harry.singh1064@gmail.com>
Date: Thu, 19 Jan 2023 22:58:36 +0800
Subject: [PATCH 0579/1641] Add CORS template check inside location for
 externalAuth.SignURL (#8814)

* Add CORS template check inside location for externalAuth.SignURL

* Add testcase for CORS header for auth-signin redirect with CORS enabled.
---
 rootfs/etc/nginx/template/nginx.tmpl |  4 +++
 test/e2e/annotations/auth.go         | 45 ++++++++++++++++++++++++++++
 2 files changed, 49 insertions(+)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 911cf75ea..958397dd5 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -1180,6 +1180,10 @@ stream {
 
             add_header Set-Cookie $auth_cookie;
 
+            {{ if $location.CorsConfig.CorsEnabled }}
+            {{ template "CORS" $location }}
+            {{ end }}
+
             # Ensure that modsecurity will not run on an internal location as this is not accessible from outside
             {{ if $all.Cfg.EnableModsecurity }}
             modsecurity off;
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index 1f0f4c3b2..e26fcbd46 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -720,6 +720,51 @@ http {
 		})
 	})
 
+	ginkgo.Context("when external authentication is configured along with CORS enabled", func() {
+		host := "auth"
+		var annotations map[string]string
+		var ing *networking.Ingress
+
+		ginkgo.BeforeEach(func() {
+			f.NewHttpbinDeployment()
+
+			var httpbinIP string
+
+			err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBinService, f.Namespace, 1)
+			assert.Nil(ginkgo.GinkgoT(), err)
+
+			e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBinService, metav1.GetOptions{})
+			assert.Nil(ginkgo.GinkgoT(), err)
+
+			httpbinIP = e.Subsets[0].Addresses[0].IP
+
+			annotations = map[string]string{
+				"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", httpbinIP),
+				"nginx.ingress.kubernetes.io/auth-signin": "http://$host/auth/start",
+				"nginx.ingress.kubernetes.io/enable-cors": "true",
+			}
+
+			ing = framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+			f.EnsureIngress(ing)
+
+			f.WaitForNginxServer(host, func(server string) bool {
+				return strings.Contains(server, "server_name auth")
+			})
+		})
+
+		ginkgo.It("should redirect to signin url when not signed in along With CORS headers in response", func() {
+			f.HTTPTestClient().
+				GET("/").
+				WithHeader("Host", host).
+				WithQuery("a", "b").
+				WithQuery("c", "d").
+				Expect().
+				Status(http.StatusFound).
+				Header("Access-Control-Allow-Origin").Equal(fmt.Sprintf("*"))
+
+		})
+	})
+
 	ginkgo.Context("when external authentication with caching is configured", func() {
 		thisHost := "auth"
 		thatHost := "different"

From ef5bf06c61b12e78e0e3168a3bc7fd4222fb5db0 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 9 Nov 2022 16:05:42 -0500
Subject: [PATCH 0580/1641] testing auto change

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 hack/changelog.sh | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
 create mode 100755 hack/changelog.sh

diff --git a/hack/changelog.sh b/hack/changelog.sh
new file mode 100755
index 000000000..6ecd9f890
--- /dev/null
+++ b/hack/changelog.sh
@@ -0,0 +1,15 @@
+#!/usr/bin/env bash
+
+set -o errexit
+set -o nounset
+set -o pipefail
+
+declare -a mandatory
+mandatory=(
+  LINES
+  RELEASE
+)
+
+gh pr list -R kubernetes/ingress-nginx -s merged -L ${LINES} -B main | cut -f1,2 | awk '{ printf "* [%s](https://github.com/kubernetes/ingress-nginx/pull/%s) %s\n",$1,$1, substr($0,6)}'
+
+

From 2a9e420bf7977a75515825a6338d2975a6b6a1fc Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 11 Nov 2022 09:23:19 -0500
Subject: [PATCH 0581/1641] Add mage files for changelog

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 Changelog.md.gotmpl                           |  15 +
 RELEASE.md => MANUAL_RELEASE.md               |  10 +-
 NEW_RELEASE_PROCESS.md                        |   9 +
 TAG                                           |   2 +-
 changelog/Changelog-1.5.2.md                  |  36 ++
 charts/ingress-nginx/changelog/.gitkeep       |   0
 .../changelog/Changelog-1.5.2.md              |  12 +
 go.mod                                        |   1 +
 go.sum                                        |   2 +
 hack/changelog.sh                             |  15 -
 ingress-nginx.yaml                            |  68 ++
 magefiles/common.go                           |  66 ++
 magefiles/docker.go                           |   3 +
 magefiles/go.go                               |  15 +
 magefiles/go.mod                              |  32 +
 magefiles/go.sum                              | 105 +++
 magefiles/helm.go                             | 608 ++++++++++++++++++
 magefiles/mage.go                             |  13 +
 magefiles/release.go                          | 526 +++++++++++++++
 magefiles/tags.go                             | 130 ++++
 magefiles/yaml.go                             |   3 +
 21 files changed, 1650 insertions(+), 21 deletions(-)
 create mode 100644 Changelog.md.gotmpl
 rename RELEASE.md => MANUAL_RELEASE.md (96%)
 create mode 100644 NEW_RELEASE_PROCESS.md
 create mode 100644 charts/ingress-nginx/changelog/.gitkeep
 create mode 100644 charts/ingress-nginx/changelog/Changelog-1.5.2.md
 delete mode 100755 hack/changelog.sh
 create mode 100644 ingress-nginx.yaml
 create mode 100644 magefiles/common.go
 create mode 100644 magefiles/docker.go
 create mode 100644 magefiles/go.go
 create mode 100644 magefiles/go.mod
 create mode 100644 magefiles/go.sum
 create mode 100644 magefiles/helm.go
 create mode 100644 magefiles/mage.go
 create mode 100644 magefiles/release.go
 create mode 100644 magefiles/tags.go
 create mode 100644 magefiles/yaml.go

diff --git a/Changelog.md.gotmpl b/Changelog.md.gotmpl
new file mode 100644
index 000000000..d35df8ade
--- /dev/null
+++ b/Changelog.md.gotmpl
@@ -0,0 +1,15 @@
+# Changelog
+
+### {{  .Version }}
+Images:
+{{ with .ControllerImages }}
+{{ range . }} * {{ .Registry }}/{{ .Name }}:{{ .Tag}}@{{ .Digest }}
+{{ end }} {{ end }}
+### All Changes:
+{{ with .Updates }}
+{{ range . }}* {{ . }}
+{{ end }}{{ end }}
+### Dependencies updates: {{ with .DepUpdates }}
+{{ range . }}* {{ . }}
+{{ end }} {{ end }}
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-{{ .PreviousControllerVersion }}...controller-{{ .NewControllerVersion }}
diff --git a/RELEASE.md b/MANUAL_RELEASE.md
similarity index 96%
rename from RELEASE.md
rename to MANUAL_RELEASE.md
index ca0faa4e1..d7144b85d 100644
--- a/RELEASE.md
+++ b/MANUAL_RELEASE.md
@@ -103,7 +103,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
 - Fork that other project (if you don't have a fork already).
 
-- Other project to fork  [Github repo kubernetes/k8s.io](http://github.com/kubernetes/k8s.io)
+- Other project to fork  [GitHub repo kubernetes/k8s.io](http://github.com/kubernetes/k8s.io)
 
 - Fetch --all and rebase to upstream if already forked.
 
@@ -111,7 +111,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
 - In the related branch, of your fork, edit the file /registry.k8s.io/images/k8s-staging-ingress-nginx/images.yaml.
 
-- For making it easier, you can edit your branch directly in the browser. But be careful about making any mistake.
+- For making, it easier, you can edit your branch directly in the browser. But be careful about making any mistake.
 
 - Insert the sha(s) & the tag(s), in a new line, in this file [Project kubernetes/k8s.io Ingress-Nginx-Controller Images](https://github.com/kubernetes/k8s.io/blob/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml)  Look at this [example PR and the diff](https://github.com/kubernetes/k8s.io/pull/2536) to see how it was done before
 
@@ -132,7 +132,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
 - Make sure to get the tag and sha of the promoted image from the step before, either from cloudbuild or from [here](https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/ingress-nginx/controller).
 
-- This involves editing of several different files. So carefully follow the steps below and double check all changes with diff/grep etc., repeatedly. Mistakes here impact endusers.
+- This involves editing of several files. So carefully follow the steps below and double check all changes with diff/grep etc., repeatedly. Mistakes here impact endusers.
 
 ### a. Make sure your git workspace is ready
 
@@ -160,7 +160,7 @@ Promoting the images basically means that images, that were pushed to staging co
   - [TAG](https://github.com/kubernetes/ingress-nginx/blob/main/TAG#L1)
 
 ### c. Edit the helm Chart
-  - Change the below mentioned [Fields in Chart.yaml](https://github.com/kubernetes/ingress-nginx/blob/main/charts/ingress-nginx/Chart.yaml)
+  - Change the below-mentioned [Fields in Chart.yaml](https://github.com/kubernetes/ingress-nginx/blob/main/charts/ingress-nginx/Chart.yaml)
     - version
     - appVersion
     - kubeVersion (**ONLY if applicable**)
@@ -168,7 +168,7 @@ Promoting the images basically means that images, that were pushed to staging co
       - artifacthub.io/prerelease: "true"
       - artifacthub.io/changes: |
         - Replace this line and other lines under this annotation with the Changelog. One process to generate the Changelog is described below
-          - Install and configure github cli as per the docs of gh-cli  https://cli.github.com/,
+          - Install and configure GitHub cli as per the docs of gh-cli  https://cli.github.com/,
           - Change dir to your clone, of your fork, of the ingress-nginx project
           - Run the below command and save the output to a txt file
 
diff --git a/NEW_RELEASE_PROCESS.md b/NEW_RELEASE_PROCESS.md
new file mode 100644
index 000000000..cdb683abf
--- /dev/null
+++ b/NEW_RELEASE_PROCESS.md
@@ -0,0 +1,9 @@
+# Semi-Automated Release Process 
+
+1. Update TAG
+2. Cloud Build 
+3. k8s.io PR 
+4. git pull origin main 
+5. git checkout -b $RELEASE_VERSION 
+6. mage release:newrelease $RELEASE_VERSION 
+7. Wait for PR
\ No newline at end of file
diff --git a/TAG b/TAG
index 05f629f1b..b7c0a9b1d 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.6.0
\ No newline at end of file
+v1.6.0
diff --git a/changelog/Changelog-1.5.2.md b/changelog/Changelog-1.5.2.md
index 8b2617924..ed8532374 100644
--- a/changelog/Changelog-1.5.2.md
+++ b/changelog/Changelog-1.5.2.md
@@ -3,6 +3,7 @@
 ### 1.5.2
 Images:
 
+<<<<<<< HEAD
  * registry.k8s.io/ingress-nginx/controller:controller-v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
  * registry.k8s.io/ingress-nginx/controller-chroot:controller-v1.5.2@sha256:84613555694f2c59a8b2551126d226c9aa648544ebf0cde1e0df942f7dbce42b
  
@@ -19,6 +20,24 @@ Images:
 * update the nginx run container for alpine:3.17.0 (#9430)
 * cleanup: remove ioutil for new go version (#9427)
 * start upgrade to golang 1.19.4 and alpine 3.17.0 (#9417)
+=======
+ * registry.k8s.io/controller:controller-v1.5.2@sha256:c1c091b88a6c936a83bd7g098v62f60a87868d12452529bad0d178fb36143346
+ * registry.k8s.io/controller-chroot:controller-v1.5.2@sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529b350d178fb36147345
+ 
+### All Changes:
+
+<<<<<<< HEAD
+>>>>>>> f4164ae0b (THE CHANGELOG WORKS)
+=======
+* upgrade nginx base image (#9436)
+* test the new e2e test images (#9444)
+* avoid builds and tests for non-code changes (#9392)
+* CI updates (#9440)
+* HPA: Add `controller.autoscaling.annotations` to `values.yaml`. (#9253)
+* update the nginx run container for alpine:3.17.0 (#9430)
+* cleanup: remove ioutil for new go version (#9427)
+* start upgrade to golang 1.19.4 and alpine 3.17.0 (#9417)
+>>>>>>> 9ecab7d85 (e2e doc updates work now)
 * ci: remove setup-helm step (#9404)
 * ci: remove setup-kind step (#9401)
 * Add reporter for all tests (#9395)
@@ -54,6 +73,10 @@ Images:
 * add containerSecurityContext to extraModules init containers (kubernetes#9016) (#9242)
 
 ### Dependencies updates: 
+<<<<<<< HEAD
+<<<<<<< HEAD
+=======
+>>>>>>> 9ecab7d85 (e2e doc updates work now)
 * Bump golang.org/x/crypto from 0.3.0 to 0.4.0 (#9397)
 * Bump github.com/onsi/ginkgo/v2 from 2.6.0 to 2.6.1 (#9432)
 * Bump github.com/onsi/ginkgo/v2 from 2.6.0 to 2.6.1 (#9421)
@@ -62,6 +85,11 @@ Images:
 * Bump goreleaser/goreleaser-action from 3.2.0 to 4.1.0 (#9426)
 * Bump actions/dependency-review-action from 3.0.1 to 3.0.2 (#9424)
 * Bump ossf/scorecard-action from 2.0.6 to 2.1.0 (#9422)
+<<<<<<< HEAD
+=======
+>>>>>>> f4164ae0b (THE CHANGELOG WORKS)
+=======
+>>>>>>> 9ecab7d85 (e2e doc updates work now)
 * Bump github.com/prometheus/common from 0.37.0 to 0.39.0 (#9416)
 * Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0 (#9408)
 * Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0 (#9398)
@@ -76,4 +104,12 @@ Images:
 * Bump actions/dependency-review-action from 2.5.1 to 3.0.0 (#9301)
 * Bump k8s.io/component-base from 0.25.3 to 0.25.4 (#9300)
  
+<<<<<<< HEAD
+<<<<<<< HEAD
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.5.1...controller-controller-v1.5.2
+=======
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.5.2...controller-controller-v1.5.1
+>>>>>>> f4164ae0b (THE CHANGELOG WORKS)
+=======
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.5.1...controller-controller-v1.5.2
+>>>>>>> 9ecab7d85 (e2e doc updates work now)
diff --git a/charts/ingress-nginx/changelog/.gitkeep b/charts/ingress-nginx/changelog/.gitkeep
new file mode 100644
index 000000000..e69de29bb
diff --git a/charts/ingress-nginx/changelog/Changelog-1.5.2.md b/charts/ingress-nginx/changelog/Changelog-1.5.2.md
new file mode 100644
index 000000000..5e0563858
--- /dev/null
+++ b/charts/ingress-nginx/changelog/Changelog-1.5.2.md
@@ -0,0 +1,12 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.4.1
+
+* ci: remove setup-helm step (#9404)
+* feat(helm): Optionally use cert-manager instead admission patch (#9279)
+* run helm release on main only and when the chart/value changes only (#9290)
+* Update Ingress-Nginx version controller-v1.5.2
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.4.1...helm-chart-4.4.1
diff --git a/go.mod b/go.mod
index 780cac648..c69a122ab 100644
--- a/go.mod
+++ b/go.mod
@@ -77,6 +77,7 @@ require (
 	github.com/inconshreveable/mousetrap v1.0.1 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
+	github.com/magefile/mage v1.14.0 // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
 	github.com/mattn/go-colorable v0.1.13 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.4 // indirect
diff --git a/go.sum b/go.sum
index f03756bab..05f07c5f3 100644
--- a/go.sum
+++ b/go.sum
@@ -231,6 +231,8 @@ github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
+github.com/magefile/mage v1.14.0 h1:6QDX3g6z1YvJ4olPhT1wksUcSa/V0a1B+pJb73fBjyo=
+github.com/magefile/mage v1.14.0/go.mod h1:z5UZb/iS3GoOSn0JgWuiw7dxlurVYTu+/jHXqQg881A=
 github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA=
diff --git a/hack/changelog.sh b/hack/changelog.sh
deleted file mode 100755
index 6ecd9f890..000000000
--- a/hack/changelog.sh
+++ /dev/null
@@ -1,15 +0,0 @@
-#!/usr/bin/env bash
-
-set -o errexit
-set -o nounset
-set -o pipefail
-
-declare -a mandatory
-mandatory=(
-  LINES
-  RELEASE
-)
-
-gh pr list -R kubernetes/ingress-nginx -s merged -L ${LINES} -B main | cut -f1,2 | awk '{ printf "* [%s](https://github.com/kubernetes/ingress-nginx/pull/%s) %s\n",$1,$1, substr($0,6)}'
-
-
diff --git a/ingress-nginx.yaml b/ingress-nginx.yaml
new file mode 100644
index 000000000..be66255e0
--- /dev/null
+++ b/ingress-nginx.yaml
@@ -0,0 +1,68 @@
+CURRENT_VERSION: "v1.5.1"
+GOLANG_VERSION: "1.19.2"
+GIT_TAG: "controller-v1.5.1"
+NGINX_BASE_IMAGE: "registry.k8s.io/ingress-nginx/nginx:0b5e0685112e4537ee20a0bdbba451e9f6158aa3@sha256:3f5e28bb248d5170e77b77fc2a1a385724aeff41a0b34b5afad7dd9cf93de000"
+NGINX_VERSION: "1.21.6"
+VERSION_TABLE:
+  - "v1.5.1":
+    - Alpine: "3.16.2"
+    - Kubernetes: ["1.25","1.24","1.23"]
+    - NGINX: "1.21.6"
+    - CONTROLLER_IMAGE: "registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629"
+    - CHROOT_CONTROLLER_IMAGE: "registry.k8s.io/ingress-nginx/controller-chroot:v1.5.1@sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529bad0d178fb36147345"
+  - "v1.4.0":
+      - Alpine: "3.16.2"
+      - Kubernetes: [  "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.3.1":
+      - Alpine: "3.16.2"
+      - Kubernetes: [  "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.3.0":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.2.1":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.1.3":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.1.2":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.1.1":
+      - Alpine: "3.16.2"
+      - Kubernetes: [  "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.1.0":
+      - Alpine: "3.16.2"
+      - Kubernetes: [  "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.0.5":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.0.4":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.0.3":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.0.2":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.0.1":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.0.0":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
diff --git a/magefiles/common.go b/magefiles/common.go
new file mode 100644
index 000000000..ae2fed0c4
--- /dev/null
+++ b/magefiles/common.go
@@ -0,0 +1,66 @@
+//go:build mage
+
+package main
+
+import (
+	"fmt"
+	"os"
+	"strings"
+	"time"
+)
+
+var DEBUG bool
+
+func init() {
+	DEBUG = false
+	debugENV := os.Getenv("MAGE_DEBUG")
+	if debugENV == "true" {
+		DEBUG = true
+	}
+}
+
+// CheckArgs should be used to ensure the right command line arguments are
+// passed before executing an example.
+func CheckArgs(arg ...string) {
+	if len(os.Args) < len(arg)+1 {
+		ErrorF("Usage: %s %s", os.Args[0], strings.Join(arg, " "))
+		os.Exit(1)
+	}
+}
+
+// CheckIfError should be used to naively panics if an error is not nil.
+func CheckIfError(err error, format string, args ...interface{}) {
+	if err == nil {
+		return
+	}
+
+	fmt.Printf("\x1b[31;1m%s ERROR %s %s\x1b[0m\n", timeStamp(), fmt.Sprintf(format, args...), err)
+	os.Exit(1)
+}
+
+// Info should be used to describe the example commands that are about to run.
+func Info(format string, args ...interface{}) {
+	fmt.Printf("\x1b[34;1m%s INFO: %s\x1b[0m\n", timeStamp(), fmt.Sprintf(format, args...))
+}
+
+func timeStamp() string {
+	t := time.Now()
+	return t.Format(time.RFC3339)
+}
+
+// Warning should be used to display a warning
+func Warning(format string, args ...interface{}) {
+	fmt.Printf("\x1b[36;1m%s WARNING: %s\x1b[0m\n", timeStamp(), fmt.Sprintf(format, args...))
+}
+
+// Info should be used to describe the example commands that are about to run.
+func Debug(format string, args ...interface{}) {
+	if DEBUG {
+		fmt.Printf("\x1b[34;1m%s DEBUG: %s\x1b[0m\n", timeStamp(), fmt.Sprintf(format, args...))
+	}
+}
+
+// Info should be used to describe the example commands that are about to run.
+func ErrorF(format string, args ...interface{}) {
+	fmt.Printf("\x1b[31;1m%s ERROR: %s\x1b[0m\n", timeStamp(), fmt.Sprintf(format, args...))
+}
diff --git a/magefiles/docker.go b/magefiles/docker.go
new file mode 100644
index 000000000..7353508f3
--- /dev/null
+++ b/magefiles/docker.go
@@ -0,0 +1,3 @@
+//go:build mage
+
+package main
diff --git a/magefiles/go.go b/magefiles/go.go
new file mode 100644
index 000000000..352b8fb1e
--- /dev/null
+++ b/magefiles/go.go
@@ -0,0 +1,15 @@
+//go:build mage
+
+package main
+
+//import (
+//	"github.com/magefile/mage/mg"
+//	"github.com/mysteriumnetwork/go-ci/commands"
+//)
+//
+//type Go mg.Namespace
+//
+//// Checks for issues with go imports
+//func (Go) CheckGoImports() error {
+//	return commands.GoImports("./...")
+//}
diff --git a/magefiles/go.mod b/magefiles/go.mod
new file mode 100644
index 000000000..31c11a061
--- /dev/null
+++ b/magefiles/go.mod
@@ -0,0 +1,32 @@
+module github.com/kubernetes/ingress-nginx/magefiles
+
+go 1.19
+
+require (
+	github.com/blang/semver/v4 v4.0.0
+	github.com/google/go-github/v48 v48.2.0
+	github.com/helm/helm v2.17.0+incompatible
+	github.com/magefile/mage v1.14.0
+	github.com/vmware-labs/yaml-jsonpath v0.3.2
+	golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be
+	gopkg.in/yaml.v3 v3.0.1
+)
+
+require (
+	github.com/BurntSushi/toml v1.2.1 // indirect
+	github.com/Masterminds/semver v1.5.0 // indirect
+	github.com/cyphar/filepath-securejoin v0.2.3 // indirect
+	github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960 // indirect
+	github.com/ghodss/yaml v1.0.0 // indirect
+	github.com/gobwas/glob v0.2.3 // indirect
+	github.com/golang/protobuf v1.5.2 // indirect
+	github.com/google/go-querystring v1.1.0 // indirect
+	github.com/stretchr/testify v1.8.1 // indirect
+	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5 // indirect
+	golang.org/x/net v0.0.0-20220722155237-a158d28d115b // indirect
+	google.golang.org/appengine v1.6.7 // indirect
+	google.golang.org/protobuf v1.28.0 // indirect
+	gopkg.in/yaml.v2 v2.4.0 // indirect
+	k8s.io/apimachinery v0.25.4 // indirect
+	k8s.io/helm v2.17.0+incompatible // indirect
+)
diff --git a/magefiles/go.sum b/magefiles/go.sum
new file mode 100644
index 000000000..38a4235f6
--- /dev/null
+++ b/magefiles/go.sum
@@ -0,0 +1,105 @@
+github.com/BurntSushi/toml v1.2.1 h1:9F2/+DoOYIOksmaJFPw1tGFy1eDnIJXg+UHjuD8lTak=
+github.com/BurntSushi/toml v1.2.1/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
+github.com/Masterminds/semver v1.5.0 h1:H65muMkzWKEuNDnfl9d70GUjFniHKHRbFPGBuZ3QEww=
+github.com/Masterminds/semver v1.5.0/go.mod h1:MB6lktGJrhw8PrUyiEoblNEGEQ+RzHPF078ddwwvV3Y=
+github.com/blang/semver/v4 v4.0.0 h1:1PFHFE6yCCTv8C1TeyNNarDzntLi7wMI5i/pzqYIsAM=
+github.com/blang/semver/v4 v4.0.0/go.mod h1:IbckMUScFkM3pff0VJDNKRiT6TG/YpiHIM2yvyW5YoQ=
+github.com/cyphar/filepath-securejoin v0.2.3 h1:YX6ebbZCZP7VkM3scTTokDgBL2TY741X51MTk3ycuNI=
+github.com/cyphar/filepath-securejoin v0.2.3/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
+github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
+github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960 h1:aRd8M7HJVZOqn/vhOzrGcQH0lNAMkqMn+pXUYkatmcA=
+github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960/go.mod h1:9HQzr9D/0PGwMEbC3d5AB7oi67+h4TsQqItC1GVYG58=
+github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
+github.com/ghodss/yaml v1.0.0 h1:wQHKEahhL6wmXdzwWG11gIVCkOv05bNOh+Rxn0yngAk=
+github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
+github.com/gobwas/glob v0.2.3 h1:A4xDbljILXROh+kObIiy5kIaPYD8e96x1tgBhUI5J+Y=
+github.com/gobwas/glob v0.2.3/go.mod h1:d3Ez4x06l9bZtSvzIay5+Yzi0fmZzPgnTbPcKjJAkT8=
+github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
+github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
+github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
+github.com/golang/protobuf v1.5.2 h1:ROPKBNFfQgOUMifHyP+KYbvpjbdoFNs+aK7DXlji0Tw=
+github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
+github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.5.9 h1:O2Tfq5qg4qc4AmwVlvv0oLiVAGB7enBSJ2x2DqQFi38=
+github.com/google/go-github/v48 v48.2.0 h1:68puzySE6WqUY9KWmpOsDEQfDZsso98rT6pZcz9HqcE=
+github.com/google/go-github/v48 v48.2.0/go.mod h1:dDlehKBDo850ZPvCTK0sEqTCVWcrGl2LcDiajkYi89Y=
+github.com/google/go-querystring v1.1.0 h1:AnCroh3fv4ZBgVIf1Iwtovgjaw/GiKJo8M8yD/fhyJ8=
+github.com/google/go-querystring v1.1.0/go.mod h1:Kcdr2DB4koayq7X8pmAG4sNG59So17icRSOU623lUBU=
+github.com/helm/helm v2.17.0+incompatible h1:0iy95yMXrfWpwaoOA9XRP+cTvitTrq+LcJV9DvR5n1Y=
+github.com/helm/helm v2.17.0+incompatible/go.mod h1:ahXhuvluW4YnSL6W6hDVetZsVK8Pv4BP8OwKli7aMqo=
+github.com/hpcloud/tail v1.0.0 h1:nfCOvKYfkgYP8hkirhJocXT2+zOD8yUNjXaWfTlyFKI=
+github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
+github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
+github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
+github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
+github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
+github.com/magefile/mage v1.14.0 h1:6QDX3g6z1YvJ4olPhT1wksUcSa/V0a1B+pJb73fBjyo=
+github.com/magefile/mage v1.14.0/go.mod h1:z5UZb/iS3GoOSn0JgWuiw7dxlurVYTu+/jHXqQg881A=
+github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e h1:fD57ERR4JtEqsWbfPhv4DMiApHyliiK5xCTNVSPiaAs=
+github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
+github.com/onsi/ginkgo v1.10.2 h1:uqH7bpe+ERSiDa34FDOF7RikN6RzXgduUF8yarlZp94=
+github.com/onsi/ginkgo v1.10.2/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
+github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
+github.com/onsi/gomega v1.20.1 h1:PA/3qinGoukvymdIDV8pii6tiZgC8kbmJO6Z5+b002Q=
+github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
+github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
+github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=
+github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
+github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
+github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
+github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
+github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
+github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
+github.com/stretchr/testify v1.8.1 h1:w7B6lhMri9wdJUVmEZPGGhZzrYTPvgJArz7wNPgYKsk=
+github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
+github.com/vmware-labs/yaml-jsonpath v0.3.2 h1:/5QKeCBGdsInyDCyVNLbXyilb61MXGi9NP674f9Hobk=
+github.com/vmware-labs/yaml-jsonpath v0.3.2/go.mod h1:U6whw1z03QyqgWdgXxvVnQ90zN1BWz5V+51Ewf8k+rQ=
+golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
+golang.org/x/crypto v0.0.0-20210817164053-32db794688a5 h1:HWj/xjIHfjYU5nVXpTM0s39J9CbLn7Cc5a7IC5rwsMQ=
+golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
+golang.org/x/net v0.0.0-20220722155237-a158d28d115b h1:PxfKdU9lEEDYjdIzOtC4qFWgkU2rGHdKlKowJSMN9h0=
+golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
+golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be h1:vEDujvNQGv4jgYKudGeI/+DAX4Jffq6hpD55MmoEvKs=
+golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
+golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
+golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
+golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a h1:dGzPydgVsqGcTRVwiLJ1jVbufYwmzD3LfVPLKsKg+0k=
+golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
+golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
+golang.org/x/text v0.3.7 h1:olpwvP2KacW1ZWvsR7uQhoyTYvKAupfQrRGBFM352Gk=
+golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
+golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
+google.golang.org/appengine v1.6.7 h1:FZR1q0exgwxzPzp/aF+VccGrSfxfPpkBqjIIEq3ru6c=
+google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
+google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
+google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
+google.golang.org/protobuf v1.28.0 h1:w43yiav+6bVFTBQFZX0r7ipe9JQ1QsbMgHwbBziscLw=
+google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f h1:BLraFXnmrev5lT+xlilqcH8XK9/i0At2xKjWk4p6zsU=
+gopkg.in/fsnotify.v1 v1.4.7 h1:xOHLXZwVvI9hhs+cLKq5+I5onOuwQLhQwiu63xxlHs4=
+gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
+gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
+gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
+gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
+gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
+gopkg.in/yaml.v3 v3.0.0-20191026110619-0b21df46bc1d/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
+gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+k8s.io/apimachinery v0.25.4 h1:CtXsuaitMESSu339tfhVXhQrPET+EiWnIY1rcurKnAc=
+k8s.io/apimachinery v0.25.4/go.mod h1:jaF9C/iPNM1FuLl7Zuy5b9v+n35HGSh6AQ4HYRkCqwo=
+k8s.io/helm v2.17.0+incompatible h1:Bpn6o1wKLYqKM3+Osh8e+1/K2g/GsQJ4F4yNF2+deao=
+k8s.io/helm v2.17.0+incompatible/go.mod h1:LZzlS4LQBHfciFOurYBFkCMTaZ0D1l+p0teMg7TSULI=
diff --git a/magefiles/helm.go b/magefiles/helm.go
new file mode 100644
index 000000000..87966dea0
--- /dev/null
+++ b/magefiles/helm.go
@@ -0,0 +1,608 @@
+//go:build mage
+
+package main
+
+import (
+	"fmt"
+	semver "github.com/blang/semver/v4"
+	"github.com/helm/helm/pkg/chartutil"
+	"github.com/magefile/mage/mg"
+	"github.com/magefile/mage/sh"
+	yamlpath "github.com/vmware-labs/yaml-jsonpath/pkg/yamlpath"
+	"gopkg.in/yaml.v3"
+	"os"
+	"strings"
+)
+
+const HelmChartPath = "charts/ingress-nginx/Chart.yaml"
+const HelmChartValues = "charts/ingress-nginx/values.yaml"
+
+type Helm mg.Namespace
+
+// UpdateAppVersion Updates the Helm App Version of Ingress Nginx Controller
+func (Helm) UpdateAppVersion() {
+	updateAppVersion()
+}
+
+func updateAppVersion() {
+
+}
+
+// UpdateVersion Update Helm Version of the Chart
+func (Helm) UpdateVersion(version string) {
+	updateVersion(version)
+}
+
+func currentChartVersion() string {
+	chart, err := chartutil.LoadChartfile(HelmChartPath)
+	CheckIfError(err, "HELM Could not Load Chart")
+	return chart.Version
+}
+
+func currentChartAppVersion() string {
+	chart, err := chartutil.LoadChartfile(HelmChartPath)
+	CheckIfError(err, "HELM Could not Load Chart")
+	return chart.AppVersion
+}
+
+func updateVersion(version string) {
+	Info("HELM Reading File %v", HelmChartPath)
+
+	chart, err := chartutil.LoadChartfile(HelmChartPath)
+	CheckIfError(err, "HELM Could not Load Chart")
+
+	//Get the current tag
+	//appVersionV, err := getIngressNGINXVersion()
+	//CheckIfError(err, "HELM Issue Retrieving the Current Ingress Nginx Version")
+
+	//remove the v from TAG
+	appVersion := version
+
+	Info("HELM Ingress-Nginx App Version: %s Chart AppVersion: %s", appVersion, chart.AppVersion)
+	if appVersion == chart.AppVersion {
+		Warning("HELM Ingress NGINX Version didnt change Ingress-Nginx App Version: %s Chart AppVersion: %s", appVersion, chart.AppVersion)
+		return
+	}
+
+	//Update the helm chart
+	chart.AppVersion = appVersion
+	cTag, err := semver.Make(chart.Version)
+	CheckIfError(err, "HELM Creating Chart Version: %v", err)
+
+	if err = cTag.IncrementPatch(); err != nil {
+		ErrorF("HELM Incrementing Chart Version: %v", err)
+		os.Exit(1)
+	}
+	chart.Version = cTag.String()
+	Debug("HELM Updated Chart Version: %v", chart.Version)
+
+	err = chartutil.SaveChartfile(HelmChartPath, chart)
+	CheckIfError(err, "HELM Saving new Chart")
+}
+
+func updateChartReleaseNotes(releasesNotes []string) {
+	Info("HELM Updating the Chart Release notes")
+	chart, err := chartutil.LoadChartfile(HelmChartPath)
+	CheckIfError(err, "HELM Could not Load Chart to update release notes %s", HelmChartPath)
+	var releaseNoteString string
+	for i := range releasesNotes {
+		releaseNoteString = fmt.Sprintf("%s - %s\n", releaseNoteString, releasesNotes[i])
+	}
+	Info("HLEM Release note string %s", releaseNoteString)
+	chart.Annotations["artifacthub.io/changes"] = releaseNoteString
+	err = chartutil.SaveChartfile(HelmChartPath, chart)
+	CheckIfError(err, "HELM Saving updated release notes for Chart")
+}
+
+func UpdateChartChangelog() {
+
+}
+
+// UpdateAppVersion Updates the Helm App Version of Ingress Nginx Controller
+func (Helm) UpdateChartValue(key, value string) {
+	updateChartValue(key, value)
+}
+
+func updateChartValue(key, value string) {
+	Info("HELM Updating Chart %s %s:%s", HelmChartValues, key, value)
+
+	//read current values.yaml
+	data, err := os.ReadFile(HelmChartValues)
+	CheckIfError(err, "HELM Could not Load Helm Chart Values files %s", HelmChartValues)
+
+	//var valuesStruct IngressChartValue
+	var n yaml.Node
+	CheckIfError(yaml.Unmarshal(data, &n), "HELM Could not Unmarshal %s", HelmChartValues)
+
+	//update value
+	//keyParse := parsePath(key)
+	p, err := yamlpath.NewPath(key)
+	CheckIfError(err, "HELM cannot create path")
+
+	q, err := p.Find(&n)
+	CheckIfError(err, "HELM unexpected error finding path")
+
+	for _, i := range q {
+		Info("HELM Found %s at %s", i.Value, key)
+		i.Value = value
+		Info("HELM Updated %s at %s", i.Value, key)
+	}
+
+	//// write to file
+	newValueFile, err := yaml.Marshal(&n)
+	CheckIfError(err, "HELM Could not Marshal new Values file")
+	err = os.WriteFile(HelmChartValues, newValueFile, 0644)
+	CheckIfError(err, "HELM Could not write new Values file to %s", HelmChartValues)
+
+	Info("HELM Ingress Nginx Helm Chart update %s %s", key, value)
+}
+
+func runHelmDocs() error {
+	err := installHelmDocs()
+	if err != nil {
+		return err
+	}
+	err = sh.RunV("helm-docs", "--chart-search-root=${PWD}/charts")
+	if err != nil {
+		return err
+	}
+	return nil
+}
+
+func installHelmDocs() error {
+	Info("HELM Install HelmDocs")
+	var g0 = sh.RunCmd("go")
+
+	err := g0("install", "github.com/norwoodj/helm-docs/cmd/helm-docs@v1.11.0")
+	if err != nil {
+		return err
+	}
+	return nil
+}
+func parsePath(key string) []string { return strings.Split(key, ".") }
+
+func updateHelmDocs() {
+
+}
+
+type IngressChartValue struct {
+	CommonLabels struct {
+	} `yaml:"commonLabels"`
+	Controller struct {
+		Name  string `yaml:"name"`
+		Image struct {
+			Chroot                   bool   `yaml:"chroot"`
+			Registry                 string `yaml:"registry"`
+			Image                    string `yaml:"image"`
+			Tag                      string `yaml:"tag"`
+			Digest                   string `yaml:"digest"`
+			DigestChroot             string `yaml:"digestChroot"`
+			PullPolicy               string `yaml:"pullPolicy"`
+			RunAsUser                int    `yaml:"runAsUser"`
+			AllowPrivilegeEscalation bool   `yaml:"allowPrivilegeEscalation"`
+		} `yaml:"image"`
+		ExistingPsp   string `yaml:"existingPsp"`
+		ContainerName string `yaml:"containerName"`
+		ContainerPort struct {
+			HTTP  int `yaml:"http"`
+			HTTPS int `yaml:"https"`
+		} `yaml:"containerPort"`
+		Config struct {
+		} `yaml:"config"`
+		ConfigAnnotations struct {
+		} `yaml:"configAnnotations"`
+		ProxySetHeaders struct {
+		} `yaml:"proxySetHeaders"`
+		AddHeaders struct {
+		} `yaml:"addHeaders"`
+		DNSConfig struct {
+		} `yaml:"dnsConfig"`
+		Hostname struct {
+		} `yaml:"hostname"`
+		DNSPolicy                string `yaml:"dnsPolicy"`
+		ReportNodeInternalIP     bool   `yaml:"reportNodeInternalIp"`
+		WatchIngressWithoutClass bool   `yaml:"watchIngressWithoutClass"`
+		IngressClassByName       bool   `yaml:"ingressClassByName"`
+		AllowSnippetAnnotations  bool   `yaml:"allowSnippetAnnotations"`
+		HostNetwork              bool   `yaml:"hostNetwork"`
+		HostPort                 struct {
+			Enabled bool `yaml:"enabled"`
+			Ports   struct {
+				HTTP  int `yaml:"http"`
+				HTTPS int `yaml:"https"`
+			} `yaml:"ports"`
+		} `yaml:"hostPort"`
+		ElectionID           string `yaml:"electionID"`
+		IngressClassResource struct {
+			Name            string `yaml:"name"`
+			Enabled         bool   `yaml:"enabled"`
+			Default         bool   `yaml:"default"`
+			ControllerValue string `yaml:"controllerValue"`
+			Parameters      struct {
+			} `yaml:"parameters"`
+		} `yaml:"ingressClassResource"`
+		IngressClass string `yaml:"ingressClass"`
+		PodLabels    struct {
+		} `yaml:"podLabels"`
+		PodSecurityContext struct {
+		} `yaml:"podSecurityContext"`
+		Sysctls struct {
+		} `yaml:"sysctls"`
+		PublishService struct {
+			Enabled      bool   `yaml:"enabled"`
+			PathOverride string `yaml:"pathOverride"`
+		} `yaml:"publishService"`
+		Scope struct {
+			Enabled           bool   `yaml:"enabled"`
+			Namespace         string `yaml:"namespace"`
+			NamespaceSelector string `yaml:"namespaceSelector"`
+		} `yaml:"scope"`
+		ConfigMapNamespace string `yaml:"configMapNamespace"`
+		TCP                struct {
+			ConfigMapNamespace string `yaml:"configMapNamespace"`
+			Annotations        struct {
+			} `yaml:"annotations"`
+		} `yaml:"tcp"`
+		UDP struct {
+			ConfigMapNamespace string `yaml:"configMapNamespace"`
+			Annotations        struct {
+			} `yaml:"annotations"`
+		} `yaml:"udp"`
+		MaxmindLicenseKey string `yaml:"maxmindLicenseKey"`
+		ExtraArgs         struct {
+		} `yaml:"extraArgs"`
+		ExtraEnvs   []interface{} `yaml:"extraEnvs"`
+		Kind        string        `yaml:"kind"`
+		Annotations struct {
+		} `yaml:"annotations"`
+		Labels struct {
+		} `yaml:"labels"`
+		UpdateStrategy struct {
+		} `yaml:"updateStrategy"`
+		MinReadySeconds int           `yaml:"minReadySeconds"`
+		Tolerations     []interface{} `yaml:"tolerations"`
+		Affinity        struct {
+		} `yaml:"affinity"`
+		TopologySpreadConstraints     []interface{} `yaml:"topologySpreadConstraints"`
+		TerminationGracePeriodSeconds int           `yaml:"terminationGracePeriodSeconds"`
+		NodeSelector                  struct {
+			KubernetesIoOs string `yaml:"kubernetes.io/os"`
+		} `yaml:"nodeSelector"`
+		LivenessProbe struct {
+			HTTPGet struct {
+				Path   string `yaml:"path"`
+				Port   int    `yaml:"port"`
+				Scheme string `yaml:"scheme"`
+			} `yaml:"httpGet"`
+			InitialDelaySeconds int `yaml:"initialDelaySeconds"`
+			PeriodSeconds       int `yaml:"periodSeconds"`
+			TimeoutSeconds      int `yaml:"timeoutSeconds"`
+			SuccessThreshold    int `yaml:"successThreshold"`
+			FailureThreshold    int `yaml:"failureThreshold"`
+		} `yaml:"livenessProbe"`
+		ReadinessProbe struct {
+			HTTPGet struct {
+				Path   string `yaml:"path"`
+				Port   int    `yaml:"port"`
+				Scheme string `yaml:"scheme"`
+			} `yaml:"httpGet"`
+			InitialDelaySeconds int `yaml:"initialDelaySeconds"`
+			PeriodSeconds       int `yaml:"periodSeconds"`
+			TimeoutSeconds      int `yaml:"timeoutSeconds"`
+			SuccessThreshold    int `yaml:"successThreshold"`
+			FailureThreshold    int `yaml:"failureThreshold"`
+		} `yaml:"readinessProbe"`
+		HealthCheckPath string `yaml:"healthCheckPath"`
+		HealthCheckHost string `yaml:"healthCheckHost"`
+		PodAnnotations  struct {
+		} `yaml:"podAnnotations"`
+		ReplicaCount int `yaml:"replicaCount"`
+		MinAvailable int `yaml:"minAvailable"`
+		Resources    struct {
+			Requests struct {
+				CPU    string `yaml:"cpu"`
+				Memory string `yaml:"memory"`
+			} `yaml:"requests"`
+		} `yaml:"resources"`
+		Autoscaling struct {
+			APIVersion  string `yaml:"apiVersion"`
+			Enabled     bool   `yaml:"enabled"`
+			Annotations struct {
+			} `yaml:"annotations"`
+			MinReplicas                       int `yaml:"minReplicas"`
+			MaxReplicas                       int `yaml:"maxReplicas"`
+			TargetCPUUtilizationPercentage    int `yaml:"targetCPUUtilizationPercentage"`
+			TargetMemoryUtilizationPercentage int `yaml:"targetMemoryUtilizationPercentage"`
+			Behavior                          struct {
+			} `yaml:"behavior"`
+		} `yaml:"autoscaling"`
+		AutoscalingTemplate []interface{} `yaml:"autoscalingTemplate"`
+		Keda                struct {
+			APIVersion                    string `yaml:"apiVersion"`
+			Enabled                       bool   `yaml:"enabled"`
+			MinReplicas                   int    `yaml:"minReplicas"`
+			MaxReplicas                   int    `yaml:"maxReplicas"`
+			PollingInterval               int    `yaml:"pollingInterval"`
+			CooldownPeriod                int    `yaml:"cooldownPeriod"`
+			RestoreToOriginalReplicaCount bool   `yaml:"restoreToOriginalReplicaCount"`
+			ScaledObject                  struct {
+				Annotations struct {
+				} `yaml:"annotations"`
+			} `yaml:"scaledObject"`
+			Triggers []interface{} `yaml:"triggers"`
+			Behavior struct {
+			} `yaml:"behavior"`
+		} `yaml:"keda"`
+		EnableMimalloc bool `yaml:"enableMimalloc"`
+		CustomTemplate struct {
+			ConfigMapName string `yaml:"configMapName"`
+			ConfigMapKey  string `yaml:"configMapKey"`
+		} `yaml:"customTemplate"`
+		Service struct {
+			Enabled     bool `yaml:"enabled"`
+			AppProtocol bool `yaml:"appProtocol"`
+			Annotations struct {
+			} `yaml:"annotations"`
+			Labels struct {
+			} `yaml:"labels"`
+			ExternalIPs              []interface{} `yaml:"externalIPs"`
+			LoadBalancerIP           string        `yaml:"loadBalancerIP"`
+			LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
+			EnableHTTP               bool          `yaml:"enableHttp"`
+			EnableHTTPS              bool          `yaml:"enableHttps"`
+			IPFamilyPolicy           string        `yaml:"ipFamilyPolicy"`
+			IPFamilies               []string      `yaml:"ipFamilies"`
+			Ports                    struct {
+				HTTP  int `yaml:"http"`
+				HTTPS int `yaml:"https"`
+			} `yaml:"ports"`
+			TargetPorts struct {
+				HTTP  string `yaml:"http"`
+				HTTPS string `yaml:"https"`
+			} `yaml:"targetPorts"`
+			Type      string `yaml:"type"`
+			NodePorts struct {
+				HTTP  string `yaml:"http"`
+				HTTPS string `yaml:"https"`
+				TCP   struct {
+				} `yaml:"tcp"`
+				UDP struct {
+				} `yaml:"udp"`
+			} `yaml:"nodePorts"`
+			External struct {
+				Enabled bool `yaml:"enabled"`
+			} `yaml:"external"`
+			Internal struct {
+				Enabled     bool `yaml:"enabled"`
+				Annotations struct {
+				} `yaml:"annotations"`
+				LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
+			} `yaml:"internal"`
+		} `yaml:"service"`
+		ShareProcessNamespace bool          `yaml:"shareProcessNamespace"`
+		ExtraContainers       []interface{} `yaml:"extraContainers"`
+		ExtraVolumeMounts     []interface{} `yaml:"extraVolumeMounts"`
+		ExtraVolumes          []interface{} `yaml:"extraVolumes"`
+		ExtraInitContainers   []interface{} `yaml:"extraInitContainers"`
+		ExtraModules          []interface{} `yaml:"extraModules"`
+		Opentelemetry         struct {
+			Enabled                  bool   `yaml:"enabled"`
+			Image                    string `yaml:"image"`
+			ContainerSecurityContext struct {
+				AllowPrivilegeEscalation bool `yaml:"allowPrivilegeEscalation"`
+			} `yaml:"containerSecurityContext"`
+		} `yaml:"opentelemetry"`
+		AdmissionWebhooks struct {
+			Annotations struct {
+			} `yaml:"annotations"`
+			Enabled           bool          `yaml:"enabled"`
+			ExtraEnvs         []interface{} `yaml:"extraEnvs"`
+			FailurePolicy     string        `yaml:"failurePolicy"`
+			Port              int           `yaml:"port"`
+			Certificate       string        `yaml:"certificate"`
+			Key               string        `yaml:"key"`
+			NamespaceSelector struct {
+			} `yaml:"namespaceSelector"`
+			ObjectSelector struct {
+			} `yaml:"objectSelector"`
+			Labels struct {
+			} `yaml:"labels"`
+			ExistingPsp          string `yaml:"existingPsp"`
+			NetworkPolicyEnabled bool   `yaml:"networkPolicyEnabled"`
+			Service              struct {
+				Annotations struct {
+				} `yaml:"annotations"`
+				ExternalIPs              []interface{} `yaml:"externalIPs"`
+				LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
+				ServicePort              int           `yaml:"servicePort"`
+				Type                     string        `yaml:"type"`
+			} `yaml:"service"`
+			CreateSecretJob struct {
+				SecurityContext struct {
+					AllowPrivilegeEscalation bool `yaml:"allowPrivilegeEscalation"`
+				} `yaml:"securityContext"`
+				Resources struct {
+				} `yaml:"resources"`
+			} `yaml:"createSecretJob"`
+			PatchWebhookJob struct {
+				SecurityContext struct {
+					AllowPrivilegeEscalation bool `yaml:"allowPrivilegeEscalation"`
+				} `yaml:"securityContext"`
+				Resources struct {
+				} `yaml:"resources"`
+			} `yaml:"patchWebhookJob"`
+			Patch struct {
+				Enabled bool `yaml:"enabled"`
+				Image   struct {
+					Registry   string `yaml:"registry"`
+					Image      string `yaml:"image"`
+					Tag        string `yaml:"tag"`
+					Digest     string `yaml:"digest"`
+					PullPolicy string `yaml:"pullPolicy"`
+				} `yaml:"image"`
+				PriorityClassName string `yaml:"priorityClassName"`
+				PodAnnotations    struct {
+				} `yaml:"podAnnotations"`
+				NodeSelector struct {
+					KubernetesIoOs string `yaml:"kubernetes.io/os"`
+				} `yaml:"nodeSelector"`
+				Tolerations []interface{} `yaml:"tolerations"`
+				Labels      struct {
+				} `yaml:"labels"`
+				SecurityContext struct {
+					RunAsNonRoot bool `yaml:"runAsNonRoot"`
+					RunAsUser    int  `yaml:"runAsUser"`
+					FsGroup      int  `yaml:"fsGroup"`
+				} `yaml:"securityContext"`
+			} `yaml:"patch"`
+			CertManager struct {
+				Enabled  bool `yaml:"enabled"`
+				RootCert struct {
+					Duration string `yaml:"duration"`
+				} `yaml:"rootCert"`
+				AdmissionCert struct {
+					Duration string `yaml:"duration"`
+				} `yaml:"admissionCert"`
+			} `yaml:"certManager"`
+		} `yaml:"admissionWebhooks"`
+		Metrics struct {
+			Port     int    `yaml:"port"`
+			PortName string `yaml:"portName"`
+			Enabled  bool   `yaml:"enabled"`
+			Service  struct {
+				Annotations struct {
+				} `yaml:"annotations"`
+				ExternalIPs              []interface{} `yaml:"externalIPs"`
+				LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
+				ServicePort              int           `yaml:"servicePort"`
+				Type                     string        `yaml:"type"`
+			} `yaml:"service"`
+			ServiceMonitor struct {
+				Enabled          bool `yaml:"enabled"`
+				AdditionalLabels struct {
+				} `yaml:"additionalLabels"`
+				Namespace         string `yaml:"namespace"`
+				NamespaceSelector struct {
+				} `yaml:"namespaceSelector"`
+				ScrapeInterval    string        `yaml:"scrapeInterval"`
+				TargetLabels      []interface{} `yaml:"targetLabels"`
+				Relabelings       []interface{} `yaml:"relabelings"`
+				MetricRelabelings []interface{} `yaml:"metricRelabelings"`
+			} `yaml:"serviceMonitor"`
+			PrometheusRule struct {
+				Enabled          bool `yaml:"enabled"`
+				AdditionalLabels struct {
+				} `yaml:"additionalLabels"`
+				Rules []interface{} `yaml:"rules"`
+			} `yaml:"prometheusRule"`
+		} `yaml:"metrics"`
+		Lifecycle struct {
+			PreStop struct {
+				Exec struct {
+					Command []string `yaml:"command"`
+				} `yaml:"exec"`
+			} `yaml:"preStop"`
+		} `yaml:"lifecycle"`
+		PriorityClassName string `yaml:"priorityClassName"`
+	} `yaml:"controller"`
+	RevisionHistoryLimit int `yaml:"revisionHistoryLimit"`
+	DefaultBackend       struct {
+		Enabled bool   `yaml:"enabled"`
+		Name    string `yaml:"name"`
+		Image   struct {
+			Registry                 string `yaml:"registry"`
+			Image                    string `yaml:"image"`
+			Tag                      string `yaml:"tag"`
+			PullPolicy               string `yaml:"pullPolicy"`
+			RunAsUser                int    `yaml:"runAsUser"`
+			RunAsNonRoot             bool   `yaml:"runAsNonRoot"`
+			ReadOnlyRootFilesystem   bool   `yaml:"readOnlyRootFilesystem"`
+			AllowPrivilegeEscalation bool   `yaml:"allowPrivilegeEscalation"`
+		} `yaml:"image"`
+		ExistingPsp string `yaml:"existingPsp"`
+		ExtraArgs   struct {
+		} `yaml:"extraArgs"`
+		ServiceAccount struct {
+			Create                       bool   `yaml:"create"`
+			Name                         string `yaml:"name"`
+			AutomountServiceAccountToken bool   `yaml:"automountServiceAccountToken"`
+		} `yaml:"serviceAccount"`
+		ExtraEnvs     []interface{} `yaml:"extraEnvs"`
+		Port          int           `yaml:"port"`
+		LivenessProbe struct {
+			FailureThreshold    int `yaml:"failureThreshold"`
+			InitialDelaySeconds int `yaml:"initialDelaySeconds"`
+			PeriodSeconds       int `yaml:"periodSeconds"`
+			SuccessThreshold    int `yaml:"successThreshold"`
+			TimeoutSeconds      int `yaml:"timeoutSeconds"`
+		} `yaml:"livenessProbe"`
+		ReadinessProbe struct {
+			FailureThreshold    int `yaml:"failureThreshold"`
+			InitialDelaySeconds int `yaml:"initialDelaySeconds"`
+			PeriodSeconds       int `yaml:"periodSeconds"`
+			SuccessThreshold    int `yaml:"successThreshold"`
+			TimeoutSeconds      int `yaml:"timeoutSeconds"`
+		} `yaml:"readinessProbe"`
+		Tolerations []interface{} `yaml:"tolerations"`
+		Affinity    struct {
+		} `yaml:"affinity"`
+		PodSecurityContext struct {
+		} `yaml:"podSecurityContext"`
+		ContainerSecurityContext struct {
+		} `yaml:"containerSecurityContext"`
+		PodLabels struct {
+		} `yaml:"podLabels"`
+		NodeSelector struct {
+			KubernetesIoOs string `yaml:"kubernetes.io/os"`
+		} `yaml:"nodeSelector"`
+		PodAnnotations struct {
+		} `yaml:"podAnnotations"`
+		ReplicaCount int `yaml:"replicaCount"`
+		MinAvailable int `yaml:"minAvailable"`
+		Resources    struct {
+		} `yaml:"resources"`
+		ExtraVolumeMounts []interface{} `yaml:"extraVolumeMounts"`
+		ExtraVolumes      []interface{} `yaml:"extraVolumes"`
+		Autoscaling       struct {
+			Annotations struct {
+			} `yaml:"annotations"`
+			Enabled                           bool `yaml:"enabled"`
+			MinReplicas                       int  `yaml:"minReplicas"`
+			MaxReplicas                       int  `yaml:"maxReplicas"`
+			TargetCPUUtilizationPercentage    int  `yaml:"targetCPUUtilizationPercentage"`
+			TargetMemoryUtilizationPercentage int  `yaml:"targetMemoryUtilizationPercentage"`
+		} `yaml:"autoscaling"`
+		Service struct {
+			Annotations struct {
+			} `yaml:"annotations"`
+			ExternalIPs              []interface{} `yaml:"externalIPs"`
+			LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
+			ServicePort              int           `yaml:"servicePort"`
+			Type                     string        `yaml:"type"`
+		} `yaml:"service"`
+		PriorityClassName string `yaml:"priorityClassName"`
+		Labels            struct {
+		} `yaml:"labels"`
+	} `yaml:"defaultBackend"`
+	Rbac struct {
+		Create bool `yaml:"create"`
+		Scope  bool `yaml:"scope"`
+	} `yaml:"rbac"`
+	PodSecurityPolicy struct {
+		Enabled bool `yaml:"enabled"`
+	} `yaml:"podSecurityPolicy"`
+	ServiceAccount struct {
+		Create                       bool   `yaml:"create"`
+		Name                         string `yaml:"name"`
+		AutomountServiceAccountToken bool   `yaml:"automountServiceAccountToken"`
+		Annotations                  struct {
+		} `yaml:"annotations"`
+	} `yaml:"serviceAccount"`
+	ImagePullSecrets []interface{} `yaml:"imagePullSecrets"`
+	TCP              struct {
+	} `yaml:"tcp"`
+	UDP struct {
+	} `yaml:"udp"`
+	PortNamePrefix string      `yaml:"portNamePrefix"`
+	DhParam        interface{} `yaml:"dhParam"`
+}
diff --git a/magefiles/mage.go b/magefiles/mage.go
new file mode 100644
index 000000000..97ab4712a
--- /dev/null
+++ b/magefiles/mage.go
@@ -0,0 +1,13 @@
+//go:build ignore
+// +build ignore
+
+package main
+
+import (
+	"github.com/magefile/mage/mage"
+	"os"
+)
+
+func main() {
+	os.Exit(mage.Main())
+}
diff --git a/magefiles/release.go b/magefiles/release.go
new file mode 100644
index 000000000..a48a9dbd0
--- /dev/null
+++ b/magefiles/release.go
@@ -0,0 +1,526 @@
+//go:build mage
+
+package main
+
+import (
+	"context"
+	"errors"
+	"fmt"
+	"github.com/google/go-github/v48/github"
+	"github.com/magefile/mage/mg"
+	"github.com/magefile/mage/sh"
+	"golang.org/x/oauth2"
+	"gopkg.in/yaml.v3"
+	"io"
+	"net"
+	"net/http"
+	"os"
+	"text/template"
+
+	"regexp"
+	"strings"
+	"time"
+)
+
+type Release mg.Namespace
+
+var INGRESS_ORG = "strongjz"             // the owner so we can test from forks
+var INGRESS_REPO = "ingress-nginx"       // the repo to pull from
+var RELEASE_BRANCH = "main"              //we only release from main
+var GITHUB_TOKEN string                  // the Google/gogithub lib needs an PAT to access the GitHub API
+var K8S_IO_ORG = "strongjz"              //the owner or organization for the k8s.io repo
+var K8S_IO_REPO = "k8s.io"               //the repo that holds the images yaml for production promotion
+var INGRESS_REGISTRY = "registry.k8s.io" //Container registry for storage Ingress-nginx images
+
+// ingress-nginx releases start with a TAG then a cloudbuild, then a promotion through a PR, this the location of that PR
+// var IMAGES_YAML = "https://raw.githubusercontent.com/kubernetes/k8s.io/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml"
+var IMAGES_YAML = "https://raw.githubusercontent.com/strongjz/k8s.io/testing/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml"
+
+var ctx = context.Background() // Context used for GitHub Client
+
+const CHANGELOG = "Changelog.md" //Name of the changelog
+
+func init() {
+	GITHUB_TOKEN = os.Getenv("GITHUB_TOKEN")
+}
+
+// PromoteImage Creates PR into the k8s.io repo for promotion of ingress from staging to production
+func (Release) PromoteImage(version, sha string) {
+
+}
+
+// Release Create a new release of ingress nginx controller
+func (Release) NewRelease(version string) {
+	//newRelease := Release{}
+
+	//update ingress-nginx version
+	//This is the step that kicks all the release process
+	//it is already done, so it kicks off the gcloud build of the controller images
+	//mg.Deps(mg.F(Tag.BumpNginx, version))
+
+	tag, err := getIngressNGINXVersion()
+	CheckIfError(err, "RELEASE Retrieving the current Ingress Nginx Version")
+
+	Info("RELEASE Checking Current Version %s to New Version %s", tag, version)
+	//if the version were upgrading does not match the TAG file, lets update the TAG file
+	if tag != version {
+		Warning("RELEASE Ingress Nginx TAG %s and new version %s do not match", tag, version)
+		mg.Deps(mg.F(Tag.BumpNginx, fmt.Sprintf("v%s", version)))
+	}
+
+	//update git controller tag controller-v$version
+	mg.Deps(mg.F(Tag.NewControllerTag, version))
+
+	//make release notes
+	releaseNotes, err := makeReleaseNotes(version)
+	CheckIfError(err, "RELEASE Creating Release Notes for version %s", version)
+	Info("RELEASE Release Notes %s completed", releaseNotes.Version)
+
+	//update chart values.yaml new controller tag and image digest
+	releaseNotes.PreviousHelmChartVersion = currentChartVersion()
+
+	//controller tag
+	updateChartValue("controller.image.tag", fmt.Sprintf("v%s", releaseNotes.Version))
+	//controller digest
+	if releaseNotes.ControllerImages[0].Name == "controller" {
+		updateChartValue("controller.image.digest", releaseNotes.ControllerImages[0].Digest)
+	}
+	//controller chroot digest
+	if releaseNotes.ControllerImages[1].Name == "controller-chroot" {
+		updateChartValue("controller.image.digestChroot", releaseNotes.ControllerImages[1].Digest)
+	}
+
+	//update helm chart app version
+	mg.Deps(mg.F(Helm.UpdateVersion, version))
+
+	releaseNotes.NewHelmChartVersion = currentChartVersion()
+
+	//update helm chart release notes
+	updateChartReleaseNotes(releaseNotes.HelmUpdates)
+
+	//Run helm docs update
+	CheckIfError(runHelmDocs(), "Error Updating Helm Docs ")
+
+	releaseNotes.helmTemplate()
+
+	//update static manifest
+	CheckIfError(updateStaticManifest(), "Error Updating Static manifests")
+
+	////update e2e docs TODO
+	updateE2EDocs()
+
+	//update documentation with ingress-nginx version
+	CheckIfError(updateIndexMD(releaseNotes.PreviousControllerVersion, releaseNotes.NewControllerVersion), "Error Updating %s", INDEX_DOCS)
+
+	//git commit TODO
+
+	//make Pull Request TODO
+
+	//make release TODO
+	//mg.Deps(mg.F(Release.CreateRelease, version))
+}
+
+const INDEX_DOCS = "docs/deploy/index.md"
+
+func updateIndexMD(old, new string) error {
+	Info("Updating Deploy docs with new version")
+	data, err := os.ReadFile(INDEX_DOCS)
+	CheckIfError(err, "Could not read INDEX_DOCS file %s", INDEX_DOCS)
+	datString := string(data)
+	datString = strings.Replace(datString, old, new, -1)
+	err = os.WriteFile(INDEX_DOCS, []byte(datString), 644)
+	if err != nil {
+		ErrorF("Could not write new %s %s", INDEX_DOCS, err)
+		return err
+	}
+	return nil
+}
+
+func updateE2EDocs() {
+	//hack/generate-deploy-scripts.sh
+	updates, err := sh.Output("./hack/generate-e2e-suite-doc.sh")
+	CheckIfError(err, "Could not run update hack script")
+	err = os.WriteFile("docs/e2e-tests.md", []byte(updates), 644)
+	CheckIfError(err, "Could not write new e2e test file ")
+}
+
+func installKustomize() error {
+	Info("Install Kustomize")
+	var g0 = sh.RunCmd("go")
+
+	// somewhere in your main code
+	err := g0("install", "sigs.k8s.io/kustomize/kustomize/v4@v4.5.4")
+	if err != nil {
+		return err
+	}
+	return nil
+}
+
+func updateStaticManifest() error {
+	CheckIfError(installKustomize(), "error installing kustomize")
+
+	//hack/generate-deploy-scripts.sh
+	err := sh.RunV("./hack/generate-deploy-scripts.sh")
+	if err != nil {
+		return err
+	}
+	return nil
+}
+
+//// CreateRelease Creates a new GitHub Release
+//func (Release) CreateRelease(name string) {
+//	releaser, err := gh_release.NewReleaser(INGRESS_ORG, INGRESS_REPO, GITHUB_TOKEN)
+//	CheckIfError(err, "GitHub Release Client error")
+//	newRelease, err := releaser.Create(fmt.Sprintf("controller-%s", name))
+//	CheckIfError(err, "Create release error")
+//	Info("New Release: Tag %v, ID: %v", newRelease.TagName, newRelease.ID)
+//}
+
+type ControllerImage struct {
+	Tag      string
+	Digest   string
+	Registry string
+	Name     string
+}
+
+type IngressRelease struct {
+	ControllerVersion string
+	ControllerImage   ControllerImage
+	ReleaseNote       ReleaseNote
+	Release           *github.RepositoryRelease
+}
+
+type ReleaseNote struct {
+	Version                   string
+	NewControllerVersion      string
+	PreviousControllerVersion string
+	ControllerImages          []ControllerImage
+	DepUpdates                []string
+	Updates                   []string
+	HelmUpdates               []string
+	NewHelmChartVersion       string
+	PreviousHelmChartVersion  string
+}
+
+// Returns a GitHub client ready for use
+func githubClient() *github.Client {
+	ts := oauth2.StaticTokenSource(
+		&oauth2.Token{AccessToken: GITHUB_TOKEN},
+	)
+	oauthClient := oauth2.NewClient(ctx, ts)
+	return github.NewClient(oauthClient)
+}
+
+// LatestCommitLogs Retrieves the commit log between the latest two controller versions.
+func (Release) LatestCommitLogs() {
+	commitLog := commitsBetweenTags()
+	for i, s := range commitLog {
+		Info("#%v Version %v", i, s)
+	}
+}
+
+func commitsBetweenTags() []string {
+	tags := getAllControllerTags()
+	Info("Getting Commits between %v and %v", tags[0], tags[1])
+	commitLog, err := git("log", "--full-history", "--pretty", "--oneline", fmt.Sprintf("%v..%v", tags[1], tags[0]))
+
+	if commitLog == "" {
+		Warning("All Controller Tags is empty")
+	}
+	CheckIfError(err, "Retrieving Commit log")
+	return strings.Split(commitLog, "\n")
+}
+
+// Generate Release Notes
+func (Release) ReleaseNotes(newVersion string) error {
+	notes, err := makeReleaseNotes(newVersion)
+	CheckIfError(err, "Creating Release Notes for version %s", newVersion)
+	Info("Release Notes %s completed", notes.Version)
+	return nil
+}
+
+func makeReleaseNotes(newVersion string) (*ReleaseNote, error) {
+	var newReleaseNotes = ReleaseNote{}
+
+	newReleaseNotes.Version = newVersion
+	allControllerTags := getAllControllerTags()
+
+	//new version
+	newReleaseNotes.NewControllerVersion = allControllerTags[0]
+	newControllerVersion := fmt.Sprintf("controller-v%s", newVersion)
+
+	//the newControllerVersion should match the latest tag
+	if newControllerVersion != allControllerTags[0] {
+		return nil, errors.New(fmt.Sprintf("Generating release new version %s didnt match the current latest tag %s", newControllerVersion, allControllerTags[0]))
+	}
+	//previous version
+	newReleaseNotes.PreviousControllerVersion = allControllerTags[1]
+
+	Info("New Version: %s Old Version: %s", newReleaseNotes.NewControllerVersion, newReleaseNotes.PreviousControllerVersion)
+
+	commits := commitsBetweenTags()
+
+	//dependency_updates
+	//all_updates
+	var allUpdates []string
+	var depUpdates []string
+	var helmUpdates []string
+	prRegex := regexp.MustCompile("\\(#\\d+\\)")
+	depBot := regexp.MustCompile("^(\\w){1,10} Bump ")
+	helmRegex := regexp.MustCompile("helm|chart")
+	for i, s := range commits {
+		//matches on PR
+		if prRegex.Match([]byte(s)) {
+			//matches a dependant bot update
+			if depBot.Match([]byte(s)) { //
+				Debug("#%v DEPENDABOT %v", i, s)
+				u := strings.SplitN(s, " ", 2)
+				depUpdates = append(depUpdates, u[1])
+			} else { // add it to the all updates slice
+				Debug("#%v ALL UPDATES %v", i, s)
+				u := strings.SplitN(s, " ", 2)
+				allUpdates = append(allUpdates, u[1])
+
+				//helm chart updates
+				if helmRegex.Match([]byte(s)) {
+					u := strings.SplitN(s, " ", 2)
+					helmUpdates = append(helmUpdates, u[1])
+				}
+			}
+
+		}
+	}
+	helmUpdates = append(helmUpdates, fmt.Sprintf("Update Ingress-Nginx version %s", newReleaseNotes.NewControllerVersion))
+
+	newReleaseNotes.Updates = allUpdates
+	newReleaseNotes.DepUpdates = depUpdates
+	newReleaseNotes.HelmUpdates = helmUpdates
+
+	//controller_image_digests
+	imagesYaml, err := downloadFile(IMAGES_YAML)
+	if err != nil {
+		ErrorF("Could not download file %s : %s", IMAGES_YAML, err)
+		return nil, err
+	}
+	Debug("%s", imagesYaml)
+
+	data := ImageYamls{}
+
+	err = yaml.Unmarshal([]byte(imagesYaml), &data)
+	if err != nil {
+		ErrorF("Could not unmarshal images yaml %s", err)
+		return nil, err
+	}
+
+	//controller
+	controllerDigest := findImageDigest(data, "controller", newVersion)
+	if len(controllerDigest) == 0 {
+		ErrorF("Controller Digest could not be found")
+		return nil, errors.New("Controller digest could not be found")
+	}
+
+	controllerChrootDigest := findImageDigest(data, "controller-chroot", newVersion)
+	if len(controllerChrootDigest) == 0 {
+		ErrorF("Controller Chroot Digest could not be found")
+		return nil, errors.New("Controller Chroot digest could not be found")
+	}
+
+	Debug("Latest Controller Digest %v", controllerDigest)
+	Debug("Latest Controller Chroot Digest %v", controllerChrootDigest)
+	c1 := ControllerImage{
+		Digest:   controllerDigest,
+		Registry: INGRESS_REGISTRY,
+		Name:     "controller",
+		Tag:      newReleaseNotes.NewControllerVersion,
+	}
+	c2 := ControllerImage{
+		Digest:   controllerChrootDigest,
+		Registry: INGRESS_REGISTRY,
+		Name:     "controller-chroot",
+		Tag:      newReleaseNotes.NewControllerVersion,
+	}
+	newReleaseNotes.ControllerImages = append(newReleaseNotes.ControllerImages, c1)
+	newReleaseNotes.ControllerImages = append(newReleaseNotes.ControllerImages, c2)
+	Debug("New Release Controller Images %s %s", newReleaseNotes.ControllerImages[0].Digest, newReleaseNotes.ControllerImages[1].Digest)
+
+	if DEBUG {
+		newReleaseNotes.printRelease()
+	}
+
+	//write it all out to the changelog file
+	newReleaseNotes.template()
+
+	return &newReleaseNotes, nil
+}
+
+func (i ControllerImage) print() string {
+	return fmt.Sprintf("%s/%s:%s@%s", i.Registry, i.Name, i.Tag, i.Digest)
+}
+
+func (r ReleaseNote) template() {
+	// Files are provided as a slice of strings.
+	changelogTemplate, err := os.ReadFile("Changelog.md.gotmpl")
+	if err != nil {
+		ErrorF("Could not read changelog template file %s", err)
+	}
+	Debug("ChangeLog Templates %s", string(changelogTemplate))
+	t := template.Must(template.New("changelog").Parse(string(changelogTemplate)))
+	// create a new file
+	file, err := os.Create(fmt.Sprintf("changelog/Changelog-%s.md", r.Version))
+	if err != nil {
+		ErrorF("Could not create changelog file %s", err)
+	}
+	defer file.Close()
+
+	err = t.Execute(file, r)
+	if err != nil {
+		ErrorF("executing template:", err)
+	}
+}
+
+func (r ReleaseNote) helmTemplate() {
+	// Files are provided as a slice of strings.
+	changelogTemplate, err := os.ReadFile("charts/ingress-nginx/changelog.md.gotmpl")
+	if err != nil {
+		ErrorF("Could not read changelog template file %s", err)
+	}
+	Debug("ChangeLog Templates %s", string(changelogTemplate))
+	t := template.Must(template.New("changelog").Parse(string(changelogTemplate)))
+	// create a new file
+	file, err := os.Create(fmt.Sprintf("charts/ingress-nginx/changelog/Changelog-%s.md", r.Version))
+	if err != nil {
+		ErrorF("Could not create changelog file %s", err)
+	}
+	defer file.Close()
+
+	err = t.Execute(file, r)
+	if err != nil {
+		ErrorF("executing template:", err)
+	}
+}
+
+func (r ReleaseNote) printRelease() {
+	Info("Release Version: %v", r.NewControllerVersion)
+	Info("Previous Version: %v", r.PreviousControllerVersion)
+	Info("Controller Image: %v", r.ControllerImages[0].print())
+	Info("Controller Chroot Image: %v", r.ControllerImages[1].print())
+	for i := range r.Updates {
+		Info("Update #%v - %v", i, r.Updates[i])
+	}
+	for j := range r.DepUpdates {
+		Info("Dependabot Update #%v - %v", j, r.DepUpdates[j])
+	}
+}
+
+type ImageYamls []ImageElement
+
+type ImageElement struct {
+	Name string              `json:"name"`
+	Dmap map[string][]string `json:"dmap"`
+}
+
+func findImageDigest(yaml ImageYamls, image, version string) string {
+	version = fmt.Sprintf("v%s", version)
+	Info("Searching Digest for %s:%s", image, version)
+	for i := range yaml {
+		if yaml[i].Name == image {
+			for k, v := range yaml[i].Dmap {
+				if v[0] == version {
+					return k
+				}
+			}
+			return ""
+		}
+	}
+	return ""
+}
+
+func downloadFile(url string) (string, error) {
+	client := &http.Client{
+		Transport: &http.Transport{
+			DialContext: (&net.Dialer{
+				Timeout:   5 * time.Second,
+				KeepAlive: 5 * time.Second,
+			}).DialContext,
+			TLSHandshakeTimeout:   5 * time.Second,
+			ResponseHeaderTimeout: 5 * time.Second,
+			ExpectContinueTimeout: 1 * time.Second,
+			MaxIdleConnsPerHost:   -1,
+		},
+	}
+	resp, err := client.Get(url)
+	if err != nil {
+		return "", nil
+	}
+	defer resp.Body.Close()
+
+	if resp.StatusCode != http.StatusOK {
+		return "", errors.New(fmt.Sprintf("Could not retrieve file, response from server %s for file %s", resp.StatusCode, url))
+	}
+	bodyBytes, err := io.ReadAll(resp.Body)
+	if err != nil {
+		return "", nil
+	}
+	return string(bodyBytes), nil
+}
+
+// Latest returns latest Github Release
+func (Release) Latest() error {
+	r, _, err := latestRelease()
+	if err != nil {
+		ErrorF("Latest Release error %s", err)
+		return err
+	}
+	Info("Latest Release %v", r.String())
+	return nil
+}
+
+func (Release) ReleaseByTag(tag string) error {
+	r, _, err := releaseByTag(tag)
+	if err != nil {
+		ErrorF("Release retrieve tag error %s", tag, err)
+		return err
+	}
+
+	Info("Latest Release %v", r.String())
+
+	return nil
+}
+
+func releaseByTag(tag string) (*github.RepositoryRelease, *github.Response, error) {
+	ghClient := githubClient()
+	return ghClient.Repositories.GetReleaseByTag(ctx, INGRESS_ORG, INGRESS_REPO, tag)
+}
+
+func latestRelease() (*github.RepositoryRelease, *github.Response, error) {
+	ghClient := githubClient()
+	return ghClient.Repositories.GetLatestRelease(ctx, INGRESS_ORG, INGRESS_REPO)
+}
+
+// Copy Test function to copy a release
+func (Release) Copy() error {
+	ghClient := githubClient()
+	kRelease, _, err := ghClient.Repositories.GetLatestRelease(ctx, "kubernetes", "ingress-nginx")
+	if err != nil {
+		ErrorF("Get Release from kubernetes %s", err)
+		return err
+	}
+
+	sRelease := &github.RepositoryRelease{
+		TagName:                kRelease.TagName,
+		Name:                   kRelease.Name,
+		Body:                   kRelease.Body,
+		Draft:                  kRelease.Draft,
+		Prerelease:             kRelease.GenerateReleaseNotes,
+		DiscussionCategoryName: kRelease.DiscussionCategoryName,
+		GenerateReleaseNotes:   kRelease.GenerateReleaseNotes,
+	}
+
+	sRelease, _, err = ghClient.Repositories.CreateRelease(ctx, "strongjz", "ingress-nginx", sRelease)
+	if err != nil {
+		ErrorF("Creating Strongjz release %s", err)
+		return err
+	}
+	Info("Copied over Kubernetes Release %v to Strongjz %v", &kRelease.Name, &sRelease.Name)
+	return nil
+}
diff --git a/magefiles/tags.go b/magefiles/tags.go
new file mode 100644
index 000000000..858677ba5
--- /dev/null
+++ b/magefiles/tags.go
@@ -0,0 +1,130 @@
+//go:build mage
+
+package main
+
+import (
+	"fmt"
+	semver "github.com/blang/semver/v4"
+	"github.com/magefile/mage/mg"
+	"github.com/magefile/mage/sh"
+	"os"
+	"strings"
+)
+
+type Tag mg.Namespace
+
+var git = sh.OutCmd("git")
+
+// Nginx returns the ingress-nginx current version
+func (Tag) Nginx() {
+	tag, err := getIngressNGINXVersion()
+	CheckIfError(err, "")
+	fmt.Printf("%v", tag)
+}
+
+func getIngressNGINXVersion() (string, error) {
+	dat, err := os.ReadFile("TAG")
+	CheckIfError(err, "Could not read TAG file")
+	datString := string(dat)
+	//remove newline
+	datString = strings.Replace(datString, "\n", "", -1)
+	return datString, nil
+}
+
+func checkSemVer(currentVersion, newVersion string) bool {
+	Info("Checking Sem Ver between current %s and new %s", currentVersion, newVersion)
+	cVersion, err := semver.Make(currentVersion[1:])
+	if err != nil {
+		ErrorF("TAG Error Current Tag %v Making Semver : %v", currentVersion[1:], err)
+		return false
+	}
+	nVersion, err := semver.Make(newVersion)
+	if err != nil {
+		ErrorF("TAG %v Error Making Semver %v \n", newVersion, err)
+		return false
+	}
+
+	err = nVersion.Validate()
+	if err != nil {
+		ErrorF("TAG %v not a valid Semver %v \n", newVersion, err)
+		return false
+	}
+
+	//The result will be
+	//0 if newVersion == currentVersion
+	//-1 if newVersion < currentVersion
+	//+1 if newVersion > currentVersion.
+	Info("TAG Comparing Old %s to New %s", cVersion.String(), nVersion.String())
+	comp := nVersion.Compare(cVersion)
+	if comp <= 0 {
+		Warning("SemVer:%v is not an update\n", newVersion)
+		return false
+	}
+	return true
+}
+
+// BumpNginx will update the nginx TAG
+func (Tag) BumpNginx(newTag string) {
+	Info("TAG BumpNginx version %v", newTag)
+	currentTag, err := getIngressNGINXVersion()
+	CheckIfError(err, "Getting Ingress-nginx Version")
+	bump(currentTag, newTag)
+}
+
+func bump(currentTag, newTag string) {
+	//check if semver is valid
+	if !checkSemVer(currentTag, newTag) {
+		ErrorF("ERROR: Semver is not valid %v", newTag)
+		os.Exit(1)
+	}
+
+	Info("Updating Tag %v to %v", currentTag, newTag)
+	err := os.WriteFile("TAG", []byte(newTag), 0666)
+	CheckIfError(err, "Error Writing New Tag File")
+}
+
+// Git Returns the latest git tag
+func (Tag) Git() {
+	tag, err := getGitTag()
+	CheckIfError(err, "Retrieving Git Tag")
+	Info("Git tag: %v", tag)
+}
+
+func getGitTag() (string, error) {
+	return git("describe", "--tags", "--match", "controller-v*", "--abbrev=0")
+}
+
+// ControllerTag Creates a new Git Tag for the ingress controller
+func (Tag) NewControllerTag(version string) {
+	Info("Create Ingress Nginx Controller Tag v%s", version)
+	tag, err := controllerTag(version)
+	CheckIfError(err, "Creating git tag")
+	Debug("Git Tag: %s", tag)
+}
+
+func controllerTag(version string) (string, error) {
+	return git("tag", "-a", "-m", fmt.Sprintf("-m \"Automated Controller release %v\"", version), fmt.Sprintf("controller-v%s", version))
+}
+
+func (Tag) AllControllerTags() {
+	tags := getAllControllerTags()
+	for i, s := range tags {
+		Info("#%v Version %v", i, s)
+	}
+}
+
+func getAllControllerTags() []string {
+	allControllerTags, err := git("tag", "-l", "--sort=-v:refname", "controller-v*")
+	CheckIfError(err, "Retrieving git tags")
+	if !sh.CmdRan(err) {
+		Warning("Issue Running Command")
+	}
+	if allControllerTags == "" {
+		Warning("All Controller Tags is empty")
+	}
+	Debug("Controller Tags: %v", allControllerTags)
+
+	temp := strings.Split(allControllerTags, "\n")
+	Debug("There are %v controller tags", len(temp))
+	return temp
+}
diff --git a/magefiles/yaml.go b/magefiles/yaml.go
new file mode 100644
index 000000000..7353508f3
--- /dev/null
+++ b/magefiles/yaml.go
@@ -0,0 +1,3 @@
+//go:build mage
+
+package main

From f77eccb141c8b281e917b5989198185db2a94331 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 17 Jan 2023 14:13:50 -0500
Subject: [PATCH 0582/1641] change format

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 magefiles/common.go  | 14 ++++++++++++++
 magefiles/docker.go  | 14 ++++++++++++++
 magefiles/go.go      | 14 ++++++++++++++
 magefiles/helm.go    | 14 ++++++++++++++
 magefiles/mage.go    | 14 ++++++++++++++
 magefiles/release.go | 14 ++++++++++++++
 magefiles/tags.go    | 14 ++++++++++++++
 magefiles/yaml.go    | 14 ++++++++++++++
 8 files changed, 112 insertions(+)

diff --git a/magefiles/common.go b/magefiles/common.go
index ae2fed0c4..772e5527c 100644
--- a/magefiles/common.go
+++ b/magefiles/common.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build mage
 
 package main
diff --git a/magefiles/docker.go b/magefiles/docker.go
index 7353508f3..443722de1 100644
--- a/magefiles/docker.go
+++ b/magefiles/docker.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build mage
 
 package main
diff --git a/magefiles/go.go b/magefiles/go.go
index 352b8fb1e..9ef4d9fdc 100644
--- a/magefiles/go.go
+++ b/magefiles/go.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build mage
 
 package main
diff --git a/magefiles/helm.go b/magefiles/helm.go
index 87966dea0..2ac2fc573 100644
--- a/magefiles/helm.go
+++ b/magefiles/helm.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build mage
 
 package main
diff --git a/magefiles/mage.go b/magefiles/mage.go
index 97ab4712a..c6d4a2587 100644
--- a/magefiles/mage.go
+++ b/magefiles/mage.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build ignore
 // +build ignore
 
diff --git a/magefiles/release.go b/magefiles/release.go
index a48a9dbd0..714c24334 100644
--- a/magefiles/release.go
+++ b/magefiles/release.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build mage
 
 package main
diff --git a/magefiles/tags.go b/magefiles/tags.go
index 858677ba5..b8dc86f88 100644
--- a/magefiles/tags.go
+++ b/magefiles/tags.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build mage
 
 package main
diff --git a/magefiles/yaml.go b/magefiles/yaml.go
index 7353508f3..443722de1 100644
--- a/magefiles/yaml.go
+++ b/magefiles/yaml.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build mage
 
 package main

From a4fd7c80960270c5567e62427d01e6bafdcda640 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 17 Jan 2023 14:22:38 -0500
Subject: [PATCH 0583/1641] fixed boiler plate lint

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 magefiles/common.go  | 30 ++++++++++++++++--------------
 magefiles/docker.go  | 30 ++++++++++++++++--------------
 magefiles/go.go      | 30 ++++++++++++++++--------------
 magefiles/helm.go    | 30 ++++++++++++++++--------------
 magefiles/mage.go    | 30 ++++++++++++++++--------------
 magefiles/release.go | 30 ++++++++++++++++--------------
 magefiles/tags.go    | 30 ++++++++++++++++--------------
 magefiles/yaml.go    | 30 ++++++++++++++++--------------
 8 files changed, 128 insertions(+), 112 deletions(-)

diff --git a/magefiles/common.go b/magefiles/common.go
index 772e5527c..c5c33f989 100644
--- a/magefiles/common.go
+++ b/magefiles/common.go
@@ -1,19 +1,21 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build mage
 
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (
diff --git a/magefiles/docker.go b/magefiles/docker.go
index 443722de1..d7c7f588e 100644
--- a/magefiles/docker.go
+++ b/magefiles/docker.go
@@ -1,17 +1,19 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build mage
 
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
diff --git a/magefiles/go.go b/magefiles/go.go
index 9ef4d9fdc..2385b089e 100644
--- a/magefiles/go.go
+++ b/magefiles/go.go
@@ -1,19 +1,21 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build mage
 
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 //import (
diff --git a/magefiles/helm.go b/magefiles/helm.go
index 2ac2fc573..f9bf09cb5 100644
--- a/magefiles/helm.go
+++ b/magefiles/helm.go
@@ -1,19 +1,21 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build mage
 
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (
diff --git a/magefiles/mage.go b/magefiles/mage.go
index c6d4a2587..605d687a9 100644
--- a/magefiles/mage.go
+++ b/magefiles/mage.go
@@ -1,20 +1,22 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build ignore
 // +build ignore
 
+/*
+Copyright 2021 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (
diff --git a/magefiles/release.go b/magefiles/release.go
index 714c24334..cbc4d51de 100644
--- a/magefiles/release.go
+++ b/magefiles/release.go
@@ -1,19 +1,21 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build mage
 
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (
diff --git a/magefiles/tags.go b/magefiles/tags.go
index b8dc86f88..02bbbcb37 100644
--- a/magefiles/tags.go
+++ b/magefiles/tags.go
@@ -1,19 +1,21 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build mage
 
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (
diff --git a/magefiles/yaml.go b/magefiles/yaml.go
index 443722de1..d7c7f588e 100644
--- a/magefiles/yaml.go
+++ b/magefiles/yaml.go
@@ -1,17 +1,19 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build mage
 
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main

From 9d4b81ca2ad27f26bbbc1d5d586f970b5d04443e Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 18 Jan 2023 15:54:44 -0500
Subject: [PATCH 0584/1641] update docs, and production urls

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 magefiles/helm.go    |   2 +-
 magefiles/release.go | 112 ++++++++++++++++++++++---------------------
 2 files changed, 59 insertions(+), 55 deletions(-)

diff --git a/magefiles/helm.go b/magefiles/helm.go
index f9bf09cb5..a57c46813 100644
--- a/magefiles/helm.go
+++ b/magefiles/helm.go
@@ -104,7 +104,7 @@ func updateChartReleaseNotes(releasesNotes []string) {
 	for i := range releasesNotes {
 		releaseNoteString = fmt.Sprintf("%s - %s\n", releaseNoteString, releasesNotes[i])
 	}
-	Info("HLEM Release note string %s", releaseNoteString)
+	Info("HELM Release note string %s", releaseNoteString)
 	chart.Annotations["artifacthub.io/changes"] = releaseNoteString
 	err = chartutil.SaveChartfile(HelmChartPath, chart)
 	CheckIfError(err, "HELM Saving updated release notes for Chart")
diff --git a/magefiles/release.go b/magefiles/release.go
index cbc4d51de..3340a99ff 100644
--- a/magefiles/release.go
+++ b/magefiles/release.go
@@ -40,22 +40,61 @@ import (
 
 type Release mg.Namespace
 
-var INGRESS_ORG = "strongjz"             // the owner so we can test from forks
-var INGRESS_REPO = "ingress-nginx"       // the repo to pull from
-var RELEASE_BRANCH = "main"              //we only release from main
-var GITHUB_TOKEN string                  // the Google/gogithub lib needs an PAT to access the GitHub API
-var K8S_IO_ORG = "strongjz"              //the owner or organization for the k8s.io repo
-var K8S_IO_REPO = "k8s.io"               //the repo that holds the images yaml for production promotion
-var INGRESS_REGISTRY = "registry.k8s.io" //Container registry for storage Ingress-nginx images
+var INGRESS_ORG = "kubernetes"                                              // the owner so we can test from forks
+var INGRESS_REPO = "ingress-nginx"                                          // the repo to pull from
+var RELEASE_BRANCH = "main"                                                 //we only release from main
+var GITHUB_TOKEN string                                                     // the Google/gogithub lib needs an PAT to access the GitHub API
+var K8S_IO_ORG = "kubernetes"                                               //the owner or organization for the k8s.io repo
+var K8S_IO_REPO = "k8s.io"                                                  //the repo that holds the images yaml for production promotion
+var INGRESS_REGISTRY = "registry.k8s.io"                                    //Container registry for storage Ingress-nginx images
+var KUSTOMIZE_INSTALL_VERSION = "sigs.k8s.io/kustomize/kustomize/v4@v4.5.4" //static deploys needs kustomize to generate the template
 
 // ingress-nginx releases start with a TAG then a cloudbuild, then a promotion through a PR, this the location of that PR
-// var IMAGES_YAML = "https://raw.githubusercontent.com/kubernetes/k8s.io/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml"
-var IMAGES_YAML = "https://raw.githubusercontent.com/strongjz/k8s.io/testing/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml"
-
+var IMAGES_YAML = "https://raw.githubusercontent.com/kubernetes/k8s.io/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml"
 var ctx = context.Background() // Context used for GitHub Client
 
-const CHANGELOG = "Changelog.md" //Name of the changelog
+const INDEX_DOCS = "docs/deploy/index.md" //index.md has a version of the controller and needs to updated
+const CHANGELOG = "Changelog.md"          //Name of the changelog
 
+//ControllerImage - struct with info about controllers
+type ControllerImage struct {
+	Tag      string
+	Digest   string
+	Registry string
+	Name     string
+}
+
+//IngressRelease All the information about an ingress-nginx release that gets updated
+type IngressRelease struct {
+	ControllerVersion string
+	ControllerImage   ControllerImage
+	ReleaseNote       ReleaseNote
+	Release           *github.RepositoryRelease
+}
+
+//ReleaseNote - All the pieces of information/documents that get updated during a release
+type ReleaseNote struct {
+	Version                   string
+	NewControllerVersion      string
+	PreviousControllerVersion string
+	ControllerImages          []ControllerImage
+	DepUpdates                []string
+	Updates                   []string
+	HelmUpdates               []string
+	NewHelmChartVersion       string
+	PreviousHelmChartVersion  string
+}
+
+//IMAGES_YAML returns this data structure
+type ImageYamls []ImageElement
+
+//ImageElement - a specific image and it's data structure the dmap is a list of shas and container versions
+type ImageElement struct {
+	Name string              `json:"name"`
+	Dmap map[string][]string `json:"dmap"`
+}
+
+//init will set the GitHub token from the committers/releasers env var
 func init() {
 	GITHUB_TOKEN = os.Getenv("GITHUB_TOKEN")
 }
@@ -79,7 +118,7 @@ func (Release) NewRelease(version string) {
 
 	Info("RELEASE Checking Current Version %s to New Version %s", tag, version)
 	//if the version were upgrading does not match the TAG file, lets update the TAG file
-	if tag != version {
+	if tag[1:] != version {
 		Warning("RELEASE Ingress Nginx TAG %s and new version %s do not match", tag, version)
 		mg.Deps(mg.F(Tag.BumpNginx, fmt.Sprintf("v%s", version)))
 	}
@@ -122,22 +161,20 @@ func (Release) NewRelease(version string) {
 	//update static manifest
 	CheckIfError(updateStaticManifest(), "Error Updating Static manifests")
 
-	////update e2e docs TODO
+	////update e2e docs
 	updateE2EDocs()
 
 	//update documentation with ingress-nginx version
 	CheckIfError(updateIndexMD(releaseNotes.PreviousControllerVersion, releaseNotes.NewControllerVersion), "Error Updating %s", INDEX_DOCS)
 
+	//keeping these manual for now
 	//git commit TODO
-
 	//make Pull Request TODO
-
 	//make release TODO
 	//mg.Deps(mg.F(Release.CreateRelease, version))
 }
 
-const INDEX_DOCS = "docs/deploy/index.md"
-
+// the index.md doc needs the controller version updated
 func updateIndexMD(old, new string) error {
 	Info("Updating Deploy docs with new version")
 	data, err := os.ReadFile(INDEX_DOCS)
@@ -152,29 +189,29 @@ func updateIndexMD(old, new string) error {
 	return nil
 }
 
+//runs the hack/generate-deploy-scripts.sh
 func updateE2EDocs() {
-	//hack/generate-deploy-scripts.sh
 	updates, err := sh.Output("./hack/generate-e2e-suite-doc.sh")
 	CheckIfError(err, "Could not run update hack script")
 	err = os.WriteFile("docs/e2e-tests.md", []byte(updates), 644)
 	CheckIfError(err, "Could not write new e2e test file ")
 }
 
+//The static deploy scripts use kustomize to generate them, this function ensures kustomize is installed
 func installKustomize() error {
 	Info("Install Kustomize")
 	var g0 = sh.RunCmd("go")
-
 	// somewhere in your main code
-	err := g0("install", "sigs.k8s.io/kustomize/kustomize/v4@v4.5.4")
+	err := g0("install", KUSTOMIZE_INSTALL_VERSION)
 	if err != nil {
 		return err
 	}
 	return nil
 }
 
+//
 func updateStaticManifest() error {
 	CheckIfError(installKustomize(), "error installing kustomize")
-
 	//hack/generate-deploy-scripts.sh
 	err := sh.RunV("./hack/generate-deploy-scripts.sh")
 	if err != nil {
@@ -192,32 +229,6 @@ func updateStaticManifest() error {
 //	Info("New Release: Tag %v, ID: %v", newRelease.TagName, newRelease.ID)
 //}
 
-type ControllerImage struct {
-	Tag      string
-	Digest   string
-	Registry string
-	Name     string
-}
-
-type IngressRelease struct {
-	ControllerVersion string
-	ControllerImage   ControllerImage
-	ReleaseNote       ReleaseNote
-	Release           *github.RepositoryRelease
-}
-
-type ReleaseNote struct {
-	Version                   string
-	NewControllerVersion      string
-	PreviousControllerVersion string
-	ControllerImages          []ControllerImage
-	DepUpdates                []string
-	Updates                   []string
-	HelmUpdates               []string
-	NewHelmChartVersion       string
-	PreviousHelmChartVersion  string
-}
-
 // Returns a GitHub client ready for use
 func githubClient() *github.Client {
 	ts := oauth2.StaticTokenSource(
@@ -428,13 +439,6 @@ func (r ReleaseNote) printRelease() {
 	}
 }
 
-type ImageYamls []ImageElement
-
-type ImageElement struct {
-	Name string              `json:"name"`
-	Dmap map[string][]string `json:"dmap"`
-}
-
 func findImageDigest(yaml ImageYamls, image, version string) string {
 	version = fmt.Sprintf("v%s", version)
 	Info("Searching Digest for %s:%s", image, version)

From 3c93c73975d89e2e90f4c822ab9af470b98a2e6f Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 19 Jan 2023 11:50:27 -0500
Subject: [PATCH 0585/1641] go fmt

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 magefiles/release.go | 17 ++++++++---------
 1 file changed, 8 insertions(+), 9 deletions(-)

diff --git a/magefiles/release.go b/magefiles/release.go
index 3340a99ff..3c715bc07 100644
--- a/magefiles/release.go
+++ b/magefiles/release.go
@@ -56,7 +56,7 @@ var ctx = context.Background() // Context used for GitHub Client
 const INDEX_DOCS = "docs/deploy/index.md" //index.md has a version of the controller and needs to updated
 const CHANGELOG = "Changelog.md"          //Name of the changelog
 
-//ControllerImage - struct with info about controllers
+// ControllerImage - struct with info about controllers
 type ControllerImage struct {
 	Tag      string
 	Digest   string
@@ -64,7 +64,7 @@ type ControllerImage struct {
 	Name     string
 }
 
-//IngressRelease All the information about an ingress-nginx release that gets updated
+// IngressRelease All the information about an ingress-nginx release that gets updated
 type IngressRelease struct {
 	ControllerVersion string
 	ControllerImage   ControllerImage
@@ -72,7 +72,7 @@ type IngressRelease struct {
 	Release           *github.RepositoryRelease
 }
 
-//ReleaseNote - All the pieces of information/documents that get updated during a release
+// ReleaseNote - All the pieces of information/documents that get updated during a release
 type ReleaseNote struct {
 	Version                   string
 	NewControllerVersion      string
@@ -85,16 +85,16 @@ type ReleaseNote struct {
 	PreviousHelmChartVersion  string
 }
 
-//IMAGES_YAML returns this data structure
+// IMAGES_YAML returns this data structure
 type ImageYamls []ImageElement
 
-//ImageElement - a specific image and it's data structure the dmap is a list of shas and container versions
+// ImageElement - a specific image and it's data structure the dmap is a list of shas and container versions
 type ImageElement struct {
 	Name string              `json:"name"`
 	Dmap map[string][]string `json:"dmap"`
 }
 
-//init will set the GitHub token from the committers/releasers env var
+// init will set the GitHub token from the committers/releasers env var
 func init() {
 	GITHUB_TOKEN = os.Getenv("GITHUB_TOKEN")
 }
@@ -189,7 +189,7 @@ func updateIndexMD(old, new string) error {
 	return nil
 }
 
-//runs the hack/generate-deploy-scripts.sh
+// runs the hack/generate-deploy-scripts.sh
 func updateE2EDocs() {
 	updates, err := sh.Output("./hack/generate-e2e-suite-doc.sh")
 	CheckIfError(err, "Could not run update hack script")
@@ -197,7 +197,7 @@ func updateE2EDocs() {
 	CheckIfError(err, "Could not write new e2e test file ")
 }
 
-//The static deploy scripts use kustomize to generate them, this function ensures kustomize is installed
+// The static deploy scripts use kustomize to generate them, this function ensures kustomize is installed
 func installKustomize() error {
 	Info("Install Kustomize")
 	var g0 = sh.RunCmd("go")
@@ -209,7 +209,6 @@ func installKustomize() error {
 	return nil
 }
 
-//
 func updateStaticManifest() error {
 	CheckIfError(installKustomize(), "error installing kustomize")
 	//hack/generate-deploy-scripts.sh

From ea629a175ec5f99e0a691e6c79a95e1546bc3a26 Mon Sep 17 00:00:00 2001
From: Aarni Koskela <akx@iki.fi>
Date: Wed, 25 Jan 2023 11:44:11 +0200
Subject: [PATCH 0586/1641] Move and spell-check Kubernetes 1.22 migration FAQ
 (#9544)

* Move Kubernetes 1.22 migration guide to a separate file

* Reformat and spell-check Kubernetes 1.22 migration doc
---
 docs/index.md                        | 232 +------------------------
 docs/user-guide/k8s-122-migration.md | 245 +++++++++++++++++++++++++++
 2 files changed, 248 insertions(+), 229 deletions(-)
 create mode 100644 docs/user-guide/k8s-122-migration.md

diff --git a/docs/index.md b/docs/index.md
index fded1b2bc..bcf4a4018 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -11,233 +11,7 @@ You can learn more about using [Ingress](http://kubernetes.io/docs/user-guide/in
 See [Deployment](./deploy/) for a whirlwind tour that will get you started.
 
 
-# FAQ - Migration to apiVersion `networking.k8s.io/v1`
+# FAQ - Kubernetes 1.22 Migration
 
-If you are using Ingress objects in your cluster (running Kubernetes older than v1.22), and you plan to upgrade to Kubernetes v1.22, this section is relevant to you.
-
-- Please read this [official blog on deprecated Ingress API versions](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/) 
-
-- Please read this [official documentation on the IngressClass object](https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class)
-
-## What is an IngressClass and why is it important for users of Ingress-NGINX controller now ?
-
-IngressClass is a Kubernetes resource. See the description below. It's important because until now, a default install of the Ingress-NGINX controller did not require any IngressClass object. From version 1.0.0 of the Ingress-NGINX Controller, an IngressClass object is required.
-
-On clusters with more than one instance of the Ingress-NGINX controller, all instances of the controllers must be aware of which Ingress objects they serve. The `ingressClassName` field of an Ingress is the way to let the controller know about that. 
-
-```console
-kubectl explain ingressclass                                                           
-```
-```
-KIND:     IngressClass                                                               
-VERSION:  networking.k8s.io/v1                     
-
-DESCRIPTION:    
-     IngressClass represents the class of the Ingress, referenced by the Ingress
-     Spec. The `ingressclass.kubernetes.io/is-default-class` annotation can be
-     used to indicate that an IngressClass should be considered default. When a
-     single IngressClass resource has this annotation set to true, new Ingress       
-     resources without a class specified will be assigned this default class.                         
-
-FIELDS:                                   
-   apiVersion   <string>                                                             
-     APIVersion defines the versioned schema of this representation of an            
-     object. Servers should convert recognized schemas to the latest internal                         
-     value, and may reject unrecognized values. More info:                                            
-     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
-                                                                                     
-   kind <string>                                                                     
-     Kind is a string value representing the REST resource this object                                
-     represents. Servers may infer this from the endpoint the client submits                          
-     requests to. Cannot be updated. In CamelCase. More info:            
-     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
-
-   metadata     <Object>                           
-     Standard object's metadata. More info:                                                           
-     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
-
-   spec <Object>                                   
-     Spec is the desired state of the IngressClass. More info:                                        
-     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status`
-
-```
-
-## What has caused this change in behavior?
-
-There are 2 reasons primarily.
-
-### Reason #1
-
-Until K8s version 1.21, it was possible to create an Ingress resource using deprecated versions of the Ingress API, such as:
-
-  - `extensions/v1beta1`
-  - `networking.k8s.io/v1beta1`
-
-You would get a message about deprecation, but the Ingress resource would get created.
-
-From K8s version 1.22 onwards, you can **only** access the Ingress API via the stable, `networking.k8s.io/v1` API. The reason is explained in the [official blog on deprecated ingress API versions](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/).
-
-### Reason #2
-
-If you are already using the Ingress-NGINX controller and then upgrade to K8s version v1.22 , there are several scenarios where your existing Ingress objects will not work how you expect. Read this FAQ to check which scenario matches your use case.
-
-## What is ingressClassName field ?
-
-`ingressClassName` is a field in the specs of an Ingress object.
-
-```shell
-kubectl explain ingress.spec.ingressClassName
-```
-```console
-KIND:     Ingress
-VERSION:  networking.k8s.io/v1
-
-FIELD:    ingressClassName <string>
-
-DESCRIPTION:
-     IngressClassName is the name of the IngressClass cluster resource. The
-     associated IngressClass defines which controller will implement the
-     resource. This replaces the deprecated `kubernetes.io/ingress.class`
-     annotation. For backwards compatibility, when that annotation is set, it
-     must be given precedence over this field. The controller may emit a warning
-     if the field and annotation have different values. Implementations of this
-     API should ignore Ingresses without a class specified. An IngressClass
-     resource may be marked as default, which can be used to set a default value
-     for this field. For more information, refer to the IngressClass
-     documentation.
-```
-
-The `.spec.ingressClassName` behavior has precedence over the deprecated `kubernetes.io/ingress.class` annotation.
-
-
-## I have only one ingress controller in my cluster. What should I do?
-
-If a single instance of the Ingress-NGINX controller is the sole Ingress controller running in your cluster, you should add the annotation "ingressclass.kubernetes.io/is-default-class" in your IngressClass, so any new Ingress objects will have this one as default IngressClass.
-
-When using Helm, you can enable this annotation by setting `.controller.ingressClassResource.default: true` in your Helm chart installation's values file.
-
-If you have any old Ingress objects remaining without an IngressClass set, you can do one or more of the following to make the Ingress-NGINX controller aware of the old objects:
-
-- You can manually set the [`.spec.ingressClassName`](https://kubernetes.io/docs/reference/kubernetes-api/service-resources/ingress-v1/#IngressSpec) field in the manifest of your own Ingress resources.
-- You can re-create them after setting the `ingressclass.kubernetes.io/is-default-class` annotation to `true` on the IngressClass
-- Alternatively you can make the Ingress-NGINX controller watch Ingress objects without the ingressClassName field set by starting your Ingress-NGINX with the flag [--watch-ingress-without-class=true](#what-is-the-flag-watch-ingress-without-class) . When using Helm, you can configure your Helm chart installation's values file with `.controller.watchIngressWithoutClass: true`
-
-You can configure your Helm chart installation's values file with `.controller.watchIngressWithoutClass: true`. 
-
-We recommend that you create the IngressClass as shown below:
-```
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller 
-  name: nginx
-  annotations:
-    ingressclass.kubernetes.io/is-default-class: "true"
-spec:
-  controller: k8s.io/ingress-nginx
-```
-
-And add the value `spec.ingressClassName=nginx` in your Ingress objects.
-
-
-## I have multiple ingress objects in my cluster. What should I do ?
-- If you have lot of ingress objects without ingressClass configuration, you can run the ingress-controller with the flag `--watch-ingress-without-class=true`.
-
-
-### What is the flag '--watch-ingress-without-class' ?
-- Its a flag that is passed,as an argument, to the `nginx-ingress-controller` executable. In the configuration, it looks like this:
-```
-...
-...
-args:
-  - /nginx-ingress-controller
-  - --watch-ingress-without-class=true
-  - --publish-service=$(POD_NAMESPACE)/ingress-nginx-dev-v1-test-controller
-  - --election-id=ingress-controller-leader
-  - --controller-class=k8s.io/ingress-nginx
-  - --configmap=$(POD_NAMESPACE)/ingress-nginx-dev-v1-test-controller
-  - --validating-webhook=:8443
-  - --validating-webhook-certificate=/usr/local/certificates/cert
-  - --validating-webhook-key=/usr/local/certificates/key
-...
-...
-```
-
-## I have more than one controller in my cluster and already use the annotation ?
-
-No problem. This should still keep working, but we highly recommend you to test!
-
-Even though `kubernetes.io/ingress.class` is deprecated, the Ingress-NGINX controller still understands that annotation.
-If you want to follow good practice, you should consider migrating to use IngressClass and `.spec.ingressClassName`.
-
-## I have more than one controller running in my cluster, and I want to use the new API ?
-
-In this scenario, you need to create multiple IngressClasses (see example one). But be aware that IngressClass works in a very specific way: you will need to change the `.spec.controller` value in your IngressClass and configure the controller to expect the exact same value.
-
-Let's see some example, supposing that you have three IngressClasses:
-
-- IngressClass `ingress-nginx-one`, with `.spec.controller` equal to `example.com/ingress-nginx1`
-- IngressClass `ingress-nginx-two`, with `.spec.controller` equal to `example.com/ingress-nginx2`
-- IngressClass `ingress-nginx-three`, with `.spec.controller` equal to `example.com/ingress-nginx1`
-
-(for private use, you can also use a controller name that doesn't contain a `/`; for example: `ingress-nginx1`)
-
-When deploying your ingress controllers, you will have to change the `--controller-class` field as follows:
-
-- Ingress-Nginx A, configured to use controller class name `example.com/ingress-nginx1`
-- Ingress-Nginx B, configured to use controller class name `example.com/ingress-nginx2`
-
-Then, when you create an Ingress object with its `ingressClassName` set to `ingress-nginx-two`, only controllers looking for the `example.com/ingress-nginx2` controller class pay attention to the new object. Given that Ingress-Nginx B is set up that way, it will serve that object, whereas Ingress-Nginx A ignores the new Ingress.
-
-Bear in mind that, if you start Ingress-Nginx B with the command line argument `--watch-ingress-without-class=true`, then it will serve:
-
-1. Ingresses without any `ingressClassName` set
-2. Ingresses where the deprecated annotation (`kubernetes.io/ingress.class`) matches the value set in the command line argument `--ingress-class`
-3. Ingresses that refer to any IngressClass that has the same `spec.controller` as configured in `--controller-class`
-
-If you start Ingress-Nginx B with the command line argument `--watch-ingress-without-class=true` and you run Ingress-Nginx A with the command line argument `--watch-ingress-without-class=false` then this is a supported configuration. If you have two Ingress-NGINX controllers for the same cluster, both running with `--watch-ingress-without-class=true` then there is likely to be a conflict.
-
-## I am seeing this error message in the logs of the Ingress-NGINX controller: "ingress class annotation is not equal to the expected by Ingress Controller". Why ?
-
-- It is highly likely that you will also see the name of the ingress resource in the same error message. This error message has been observed on use the deprecated annotation (`kubernetes.io/ingress.class`) in a Ingress resource manifest. It is recommended to use the `.spec.ingressClassName` field of the Ingress resource, to specify the name of the IngressClass of the Ingress you are defining.
-
-## How to easily install multiple instances of the ingress-NGINX controller in the same cluster ?
-- Create a new namespace
-  ```
-  kubectl create namespace ingress-nginx-2
-  ```
-- Use Helm to install the additional instance of the ingress controller
-- Ensure you have Helm working (refer to the [Helm documentation](https://helm.sh/docs/))
-- We have to assume that you have the helm repo for the ingress-NGINX controller already added to your Helm config. But, if you have not added the helm repo then you can do this to add the repo to your helm config;
-  ```
-  helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx
-  ```
-- Make sure you have updated the helm repo data;
-  ```
-  helm repo update
-  ```
-- Now, install an additional instance of the ingress-NGINX controller like this:
-  ```
-  helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
-  --namespace ingress-nginx-2 \
-  --set controller.ingressClassResource.name=nginx-two \
-  --set controller.ingressClass=nginx-two \
-  --set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
-  --set controller.ingressClassResource.enabled=true \
-  --set controller.ingressClassByName=true
-  ```
-- If you need to install yet another instance, then repeat the procedure to create a new namespace, change the values such as names & namespaces (for example from "-2" to "-3"), or anything else that meets your needs.
-- If you need to install all instances in the same namespace, then you need to specify a different **election id**, like this:
-  ```
-  helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
-  --namespace kube-system \
-  --set controller.electionID=nginx-two-leader \
-  --set controller.ingressClassResource.name=nginx-two \
-  --set controller.ingressClass=nginx-two \
-  --set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
-  --set controller.ingressClassResource.enabled=true \
-  --set controller.ingressClassByName=true
-  ```
-  - Note, controller.ingressClassResource.name and controller.ingressClass have to be set with the value of the new class as the first is to create the IngressClass object and the other is to modify the deployment of the actuall ingress controller pod.
+If you are using Ingress objects in your cluster (running Kubernetes older than v1.22),
+and you plan to upgrade to Kubernetes v1.22, please read [the migration guide here](./user-guide/k8s-122-migration.md).
diff --git a/docs/user-guide/k8s-122-migration.md b/docs/user-guide/k8s-122-migration.md
new file mode 100644
index 000000000..34893f931
--- /dev/null
+++ b/docs/user-guide/k8s-122-migration.md
@@ -0,0 +1,245 @@
+# FAQ - Migration to Kubernetes 1.22 and apiVersion `networking.k8s.io/v1`
+
+If you are using Ingress objects in your cluster (running Kubernetes older than v1.22),
+and you plan to upgrade to Kubernetes v1.22, this page is relevant to you.
+
+- Please read this [official blog on deprecated Ingress API versions](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/)
+- Please read this [official documentation on the IngressClass object](https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class)
+
+## What is an IngressClass and why is it important for users of ingress-nginx controller now?
+
+IngressClass is a Kubernetes resource. See the description below.
+It's important because until now, a default install of the ingress-nginx controller did not require a IngressClass object.
+From version 1.0.0 of the ingress-nginx controller, an IngressClass object is required.
+
+On clusters with more than one instance of the ingress-nginx controller, all instances of the controllers must be aware of which Ingress objects they serve.
+The `ingressClassName` field of an Ingress is the way to let the controller know about that.
+
+```console
+kubectl explain ingressclass
+```
+
+```
+KIND:     IngressClass
+VERSION:  networking.k8s.io/v1
+DESCRIPTION:
+     IngressClass represents the class of the Ingress, referenced by the Ingress
+     Spec. The `ingressclass.kubernetes.io/is-default-class` annotation can be
+     used to indicate that an IngressClass should be considered default. When a
+     single IngressClass resource has this annotation set to true, new Ingress
+     resources without a class specified will be assigned this default class.
+FIELDS:
+   apiVersion   <string>
+     APIVersion defines the versioned schema of this representation of an
+     object. Servers should convert recognized schemas to the latest internal
+     value, and may reject unrecognized values. More info:
+     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+   kind <string>
+     Kind is a string value representing the REST resource this object
+     represents. Servers may infer this from the endpoint the client submits
+     requests to. Cannot be updated. In CamelCase. More info:
+     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+   metadata     <Object>
+     Standard object's metadata. More info:
+     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+   spec <Object>
+     Spec is the desired state of the IngressClass. More info:
+     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status`
+```
+
+## What has caused this change in behavior?
+
+There are 2 primary reasons.
+
+### Reason 1
+
+Until K8s version 1.21, it was possible to create an Ingress resource using deprecated versions of the Ingress API, such as:
+
+- `extensions/v1beta1`
+- `networking.k8s.io/v1beta1`
+  You would get a message about deprecation, but the Ingress resource would get created.
+
+From K8s version 1.22 onwards, you can **only** access the Ingress API via the stable, `networking.k8s.io/v1` API.
+The reason is explained in the [official blog on deprecated ingress API versions](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/).
+
+### Reason #2
+
+If you are already using the ingress-nginx controller and then upgrade to Kubernetes 1.22,
+there are several scenarios where your existing Ingress objects will not work how you expect.
+
+Read this FAQ to check which scenario matches your use case.
+
+## What is the `ingressClassName` field?
+
+`ingressClassName` is a field in the spec of an Ingress object.
+
+```shell
+kubectl explain ingress.spec.ingressClassName
+```
+
+```console
+KIND:     Ingress
+VERSION:  networking.k8s.io/v1
+FIELD:    ingressClassName <string>
+DESCRIPTION:
+     IngressClassName is the name of the IngressClass cluster resource. The
+     associated IngressClass defines which controller will implement the
+     resource. This replaces the deprecated `kubernetes.io/ingress.class`
+     annotation. For backwards compatibility, when that annotation is set, it
+     must be given precedence over this field. The controller may emit a warning
+     if the field and annotation have different values. Implementations of this
+     API should ignore Ingresses without a class specified. An IngressClass
+     resource may be marked as default, which can be used to set a default value
+     for this field. For more information, refer to the IngressClass
+     documentation.
+```
+
+The `.spec.ingressClassName` behavior has precedence over the deprecated `kubernetes.io/ingress.class` annotation.
+
+## I have only one ingress controller in my cluster. What should I do?
+
+If a single instance of the ingress-nginx controller is the sole Ingress controller running in your cluster,
+you should add the annotation "ingressclass.kubernetes.io/is-default-class" in your IngressClass,
+so any new Ingress objects will have this one as default IngressClass.
+
+When using Helm, you can enable this annotation by setting `.controller.ingressClassResource.default: true` in your Helm chart installation's values file.
+
+If you have any old Ingress objects remaining without an IngressClass set, you can do one or more of the following to make the ingress-nginx controller aware of the old objects:
+
+- You can manually set the [`.spec.ingressClassName`](https://kubernetes.io/docs/reference/kubernetes-api/service-resources/ingress-v1/#IngressSpec) field in the manifest of your own Ingress resources.
+- You can re-create them after setting the `ingressclass.kubernetes.io/is-default-class` annotation to `true` on the IngressClass
+- Alternatively you can make the ingress-nginx controller watch Ingress objects without the ingressClassName field set by starting your ingress-nginx with the flag [--watch-ingress-without-class=true](#what-is-the-flag-watch-ingress-without-class).
+  When using Helm, you can configure your Helm chart installation's values file with `.controller.watchIngressWithoutClass: true`.
+
+We recommend that you create the IngressClass as shown below:
+
+```
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+  name: nginx
+  annotations:
+    ingressclass.kubernetes.io/is-default-class: "true"
+spec:
+  controller: k8s.io/ingress-nginx
+```
+
+and add the value `spec.ingressClassName=nginx` in your Ingress objects.
+
+## I have many ingress objects in my cluster. What should I do?
+
+If you have lot of ingress objects without ingressClass configuration,
+you can run the ingress controller with the flag `--watch-ingress-without-class=true`.
+
+### What is the flag `--watch-ingress-without-class`?
+
+It's a flag that is passed, as an argument, to the `nginx-ingress-controller` executable.
+In the configuration, it looks like this:
+
+```yaml
+# ...
+args:
+  - /nginx-ingress-controller
+  - --watch-ingress-without-class=true
+  - --controller-class=k8s.io/ingress-nginx
+  # ...
+# ...
+```
+
+## I have more than one controller in my cluster, and I'm already using the annotation
+
+No problem. This should still keep working, but we highly recommend you to test!
+Even though `kubernetes.io/ingress.class` is deprecated, the ingress-nginx controller still understands that annotation.
+If you want to follow good practice, you should consider migrating to use IngressClass and `.spec.ingressClassName`.
+
+## I have more than one controller running in my cluster, and I want to use the new API
+
+In this scenario, you need to create multiple IngressClasses (see the example above).
+
+Be aware that IngressClass works in a very specific way: you will need to change the `.spec.controller` value in your IngressClass and configure the controller to expect the exact same value.
+
+Let's see an example, supposing that you have three IngressClasses:
+
+- IngressClass `ingress-nginx-one`, with `.spec.controller` equal to `example.com/ingress-nginx1`
+- IngressClass `ingress-nginx-two`, with `.spec.controller` equal to `example.com/ingress-nginx2`
+- IngressClass `ingress-nginx-three`, with `.spec.controller` equal to `example.com/ingress-nginx1`
+
+For private use, you can also use a controller name that doesn't contain a `/`, e.g. `ingress-nginx1`.
+
+When deploying your ingress controllers, you will have to change the `--controller-class` field as follows:
+
+- Ingress-Nginx A, configured to use controller class name `example.com/ingress-nginx1`
+- Ingress-Nginx B, configured to use controller class name `example.com/ingress-nginx2`
+
+When you create an Ingress object with its `ingressClassName` set to `ingress-nginx-two`,
+only controllers looking for the `example.com/ingress-nginx2` controller class pay attention to the new object.
+
+Given that Ingress-Nginx B is set up that way, it will serve that object, whereas Ingress-Nginx A ignores the new Ingress.
+
+Bear in mind that if you start Ingress-Nginx B with the command line argument `--watch-ingress-without-class=true`, it will serve:
+
+1. Ingresses without any `ingressClassName` set
+2. Ingresses where the deprecated annotation (`kubernetes.io/ingress.class`) matches the value set in the command line argument `--ingress-class`
+3. Ingresses that refer to any IngressClass that has the same `spec.controller` as configured in `--controller-class`
+4. If you start Ingress-Nginx B with the command line argument `--watch-ingress-without-class=true` and you run Ingress-Nginx A with the command line argument `--watch-ingress-without-class=false` then this is a supported configuration.
+   If you have two ingress-nginx controllers for the same cluster, both running with `--watch-ingress-without-class=true` then there is likely to be a conflict.
+
+## Why am I am seeing "ingress class annotation is not equal to the expected by Ingress Controller" in my controller logs?
+
+It is highly likely that you will also see the name of the ingress resource in the same error message.
+This error message has been observed on use the deprecated annotation (`kubernetes.io/ingress.class`) in a Ingress resource manifest.
+It is recommended to use the `.spec.ingressClassName` field of the Ingress resource, to specify the name of the IngressClass of the Ingress you are defining.
+
+## How can I easily install multiple instances of the ingress-nginx controller in the same cluster?
+
+You can install them in different namespaces.
+
+- Create a new namespace
+  ```
+  kubectl create namespace ingress-nginx-2
+  ```
+- Use Helm to install the additional instance of the ingress controller
+- Ensure you have Helm working (refer to the [Helm documentation](https://helm.sh/docs/))
+- We have to assume that you have the helm repo for the ingress-nginx controller already added to your Helm config.
+  But, if you have not added the helm repo then you can do this to add the repo to your helm config;
+  ```
+  helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx
+  ```
+- Make sure you have updated the helm repo data;
+  ```
+  helm repo update
+  ```
+- Now, install an additional instance of the ingress-nginx controller like this:
+  ```
+  helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
+  --namespace ingress-nginx-2 \
+  --set controller.ingressClassResource.name=nginx-two \
+  --set controller.ingressClass=nginx-two \
+  --set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
+  --set controller.ingressClassResource.enabled=true \
+  --set controller.ingressClassByName=true
+  ```
+
+If you need to install yet another instance, then repeat the procedure to create a new namespace,
+change the values such as names & namespaces (for example from "-2" to "-3"), or anything else that meets your needs.
+
+Note that `controller.ingressClassResource.name` and `controller.ingressClass` have to be set correctly.
+The first is to create the IngressClass object and the other is to modify the deployment of the actual ingress controller pod.
+
+### I can't use multiple namespaces, what should I do?
+
+If you need to install all instances in the same namespace, then you need to specify a different **election id**, like this:
+
+```
+helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
+--namespace kube-system \
+--set controller.electionID=nginx-two-leader \
+--set controller.ingressClassResource.name=nginx-two \
+--set controller.ingressClass=nginx-two \
+--set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
+--set controller.ingressClassResource.enabled=true \
+--set controller.ingressClassByName=true
+```

From 5628f765fe883dd8c13ccd3084e9003ffd3e28d5 Mon Sep 17 00:00:00 2001
From: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Date: Fri, 27 Jan 2023 17:12:27 +0200
Subject: [PATCH 0587/1641] tcpproxy: increase buffer size to 16K (#9548)

---
 pkg/tcpproxy/tcp.go | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/pkg/tcpproxy/tcp.go b/pkg/tcpproxy/tcp.go
index 4c34e1f7b..86850ad54 100644
--- a/pkg/tcpproxy/tcp.go
+++ b/pkg/tcpproxy/tcp.go
@@ -59,11 +59,12 @@ func (p *TCPProxy) Get(host string) *TCPServer {
 // and open a connection to the passthrough server.
 func (p *TCPProxy) Handle(conn net.Conn) {
 	defer conn.Close()
-	data := make([]byte, 4096)
+	// See: https://www.ibm.com/docs/en/ztpf/1.1.0.15?topic=sessions-ssl-record-format
+	data := make([]byte, 16384)
 
 	length, err := conn.Read(data)
 	if err != nil {
-		klog.V(4).ErrorS(err, "Error reading the first 4k of the connection")
+		klog.V(4).ErrorS(err, "Error reading data from the connection")
 		return
 	}
 

From f90f37bed66d343e6c57ea981d6c4e90e4955975 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 30 Jan 2023 12:44:50 -0800
Subject: [PATCH 0588/1641] Bump sigs.k8s.io/controller-runtime from 0.13.1 to
 0.14.2 (#9552)

Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) from 0.13.1 to 0.14.2.
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases)
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/master/RELEASE.md)
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.13.1...v0.14.2)

---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-runtime
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 22 ++++++++++----------
 go.sum | 65 +++++++++++++++++++++++++++++++++++++---------------------
 2 files changed, 53 insertions(+), 34 deletions(-)

diff --git a/go.mod b/go.mod
index 6f90615ff..03b3ebdb7 100644
--- a/go.mod
+++ b/go.mod
@@ -30,17 +30,17 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.26.0
-	k8s.io/apiextensions-apiserver v0.26.0
-	k8s.io/apimachinery v0.26.0
-	k8s.io/apiserver v0.26.0
+	k8s.io/api v0.26.1
+	k8s.io/apiextensions-apiserver v0.26.1
+	k8s.io/apimachinery v0.26.1
+	k8s.io/apiserver v0.26.1
 	k8s.io/cli-runtime v0.26.0
-	k8s.io/client-go v0.26.0
-	k8s.io/code-generator v0.26.0
-	k8s.io/component-base v0.26.0
+	k8s.io/client-go v0.26.1
+	k8s.io/code-generator v0.26.1
+	k8s.io/component-base v0.26.1
 	k8s.io/klog/v2 v2.80.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.13.1
+	sigs.k8s.io/controller-runtime v0.14.2
 	sigs.k8s.io/mdtoc v1.1.0
 )
 
@@ -77,7 +77,6 @@ require (
 	github.com/inconshreveable/mousetrap v1.0.1 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
-	github.com/magefile/mage v1.14.0 // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
 	github.com/mattn/go-colorable v0.1.13 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.4 // indirect
@@ -88,6 +87,7 @@ require (
 	github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
 	github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 // indirect
+	github.com/onsi/ginkgo v1.16.5 // indirect
 	github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
@@ -104,7 +104,7 @@ require (
 	golang.org/x/sys v0.4.0 // indirect
 	golang.org/x/term v0.4.0 // indirect
 	golang.org/x/text v0.6.0 // indirect
-	golang.org/x/time v0.0.0-20220609170525-579cf78fd858 // indirect
+	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.4.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto v0.0.0-20221118155620-16455021b5e6 // indirect
@@ -115,7 +115,7 @@ require (
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 	k8s.io/gengo v0.0.0-20220902162205-c0856e24416d // indirect
 	k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 // indirect
-	k8s.io/utils v0.0.0-20221107191617-1a15be271d1d // indirect
+	k8s.io/utils v0.0.0-20221128185143-99ec85e7a448 // indirect
 	sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 // indirect
 	sigs.k8s.io/kustomize/api v0.12.1 // indirect
 	sigs.k8s.io/kustomize/kyaml v0.13.9 // indirect
diff --git a/go.sum b/go.sum
index 8a32d3e00..7588a51fb 100644
--- a/go.sum
+++ b/go.sum
@@ -87,6 +87,8 @@ github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQL
 github.com/evanphx/json-patch/v5 v5.6.0 h1:b91NhWfaz02IuVxO9faSllyAtNXHMPkC5J8sJCLunww=
 github.com/evanphx/json-patch/v5 v5.6.0/go.mod h1:G79N1coSVB93tBe7j6PhzjmR3/2VvlbKOFpnXhI9Bw4=
 github.com/frankban/quicktest v1.11.3/go.mod h1:wRf/ReqHper53s+kmmSZizM8NamnL3IM0I9ntUbOk+k=
+github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
+github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
 github.com/fsnotify/fsnotify v1.6.0 h1:n+5WquG0fcWoWp6xPWfHdbskMCQaFnG6PfBrh1Ky4HY=
 github.com/fsnotify/fsnotify v1.6.0/go.mod h1:sl3t1tCWJFWoRz9R8WJCbQihKKwmorjAbSClcnxKAGw=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b h1:074/xhloHUBOpTZwlIzQ28rbPY8pNJvzY7Gcx5KnNOk=
@@ -116,6 +118,7 @@ github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh
 github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5Fng=
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
+github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/godbus/dbus/v5 v5.0.6 h1:mkgN1ofwASrYnJ5W6U/BxG15eXXXjirgZc7CLqkcaro=
 github.com/godbus/dbus/v5 v5.0.6/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
@@ -195,6 +198,7 @@ github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 h1:pdN6V1QBWet
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
+github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
 github.com/imdario/mergo v0.3.13/go.mod h1:4lJ1jqUDcsbIECGy0RUJAXNIhg+6ocWgb1ALK2O4oXg=
@@ -231,8 +235,6 @@ github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
-github.com/magefile/mage v1.14.0 h1:6QDX3g6z1YvJ4olPhT1wksUcSa/V0a1B+pJb73fBjyo=
-github.com/magefile/mage v1.14.0/go.mod h1:z5UZb/iS3GoOSn0JgWuiw7dxlurVYTu+/jHXqQg881A=
 github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA=
@@ -276,10 +278,17 @@ github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833/go.mod h1:0CznHmX
 github.com/ncabatoff/process-exporter v0.7.10 h1:+Ere7+3se6QqP54gg7aBRagWcL8bq3u5zNi/GRSWeKQ=
 github.com/ncabatoff/process-exporter v0.7.10/go.mod h1:DHZRZjqxw9LCOpLlX0DjBuyn6d5plh41Jv6Tmttj7Ek=
 github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
+github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
+github.com/nxadm/tail v1.4.8/go.mod h1:+ncqLTQzXmGhMZNUePPaPqPvBxHAIsmXswZKocGu+AU=
+github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
+github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
+github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
 github.com/onsi/ginkgo/v2 v2.6.1 h1:1xQPCjcqYw/J5LchOcp4/2q/jzJFjiAOc25chhnDw+Q=
 github.com/onsi/ginkgo/v2 v2.6.1/go.mod h1:yjiuMwPokqY1XauOgju45q3sJt6VzQ/Fict1LFVcsAo=
+github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
+github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.24.1 h1:KORJXNNTzJXzu4ScJWssJfJMnJ+2QJqhoQSRwNlze9E=
 github.com/opencontainers/runc v1.1.4 h1:nRCz/8sKg6K6jgYAFLDlXzPeITBZJyX28DBVhWD+5dg=
 github.com/opencontainers/runc v1.1.4/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
@@ -385,7 +394,7 @@ go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 h1:+FNtrFTmVw0YZGpBGX56XDee33
 go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5/go.mod h1:nmDLcffg48OtT/PSW0Hg7FvpRQsQh5OSqIylirxKC7o=
 go.uber.org/atomic v1.7.0 h1:ADUqmZGgLDDfbSL9ZmPxKTybcoEYHgpYfELNoN+7hsw=
 go.uber.org/multierr v1.6.0 h1:y6IPFStTAIT5Ytl7/XYmHvzXQ7S3g/IeZW9hyZ5thw4=
-go.uber.org/zap v1.21.0 h1:WefMeulhovoZ2sYXz7st6K0sLj7bBhpiFaud4r4zST8=
+go.uber.org/zap v1.24.0 h1:FiJd5l1UOLj0wCgbSE0rwwXHzEdAZS6hiiSnxJN/D60=
 golang.org/dl v0.0.0-20190829154251-82a15e2f2ead/go.mod h1:IUMfjQLJQd4UTqG1Z90tenwKoCX93Gn3MAQJMOSBsDQ=
 golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
@@ -430,6 +439,7 @@ golang.org/x/mod v0.7.0 h1:LapD9S96VoQRhi/GrNTqeBJFrUjs5UHCAtTlgwA5oZA=
 golang.org/x/mod v0.7.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -452,6 +462,7 @@ golang.org/x/net v0.0.0-20200324143707-d3edc9973b7e/go.mod h1:qpuaurCH72eLCgpAm/
 golang.org/x/net v0.0.0-20200501053045-e0ff5e5a1de5/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200506145744-7e3656a0809f/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200513185701-a91f0712d120/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200520182314-0ba52f642ac2/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20200707034311-ab3426394381/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
@@ -482,6 +493,7 @@ golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJ
 golang.org/x/sync v0.0.0-20201207232520-09787c993a3a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
+golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20181116152217-5ac8a444bdc5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190312061237-fead79001313/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -493,10 +505,13 @@ golang.org/x/sys v0.0.0-20190606165138-5da285871e9c/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20190606203320-7fc4e5ec1444/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190726091711-fc99dfbffb4e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191001151750-bb3f8db39f24/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191002063906-3421d5a6bb1c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191026070338-33540a1f6037/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191115151921-52ab43148777/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191228213918-04cbcbbfeed8/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200106162015-b016eb3dc98e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -517,6 +532,7 @@ golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200803210538-64077c9b5642/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210112080510-489259a85091/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
@@ -542,8 +558,8 @@ golang.org/x/text v0.6.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20220609170525-579cf78fd858 h1:Dpdu/EMxGMFgq0CeYMh4fazTD2vtlZRYE7wyynxJb9U=
-golang.org/x/time v0.0.0-20220609170525-579cf78fd858/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
+golang.org/x/time v0.3.0 h1:rg5rLMjNzMS1RkNLzCG38eapWhnYLFYXDXj2gOlr8j4=
+golang.org/x/time v0.3.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
@@ -586,6 +602,7 @@ golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roY
 golang.org/x/tools v0.0.0-20200729194436-6467de6f59a7/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
 golang.org/x/tools v0.0.0-20200804011535-6c149bb5ef0d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
 golang.org/x/tools v0.0.0-20200825202427-b303f430e36d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
+golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.4.0 h1:7mTAgkunk3fr4GAloyyCasadO6h9zSsQZbwvcaIciV4=
 golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
@@ -689,6 +706,7 @@ gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
 gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
+gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
 gopkg.in/go-playground/assert.v1 v1.2.1 h1:xoYuJVE7KT85PYWrN730RguIQO0ePzVRfFMXadIrXTM=
 gopkg.in/go-playground/assert.v1 v1.2.1/go.mod h1:9RXL0bg/zibRAgZUYszZSwO/z8Y/a8bDuhia5mkpMnE=
 gopkg.in/go-playground/pool.v3 v3.1.1 h1:4Qcj91IsYTpIeRhe/eo6Fz+w6uKWPEghx8vHFTYMfhw=
@@ -698,6 +716,7 @@ gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
 gopkg.in/mcuadros/go-syslog.v2 v2.3.0 h1:kcsiS+WsTKyIEPABJBJtoG0KkOS6yzvJ+/eZlhD79kk=
 gopkg.in/mcuadros/go-syslog.v2 v2.3.0/go.mod h1:l5LPIyOOyIdQquNg+oU6Z3524YwrcqEm0aKH+5zpt2U=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
+gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
 gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
@@ -718,22 +737,22 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.26.0 h1:IpPlZnxBpV1xl7TGk/X6lFtpgjgntCg8PJ+qrPHAC7I=
-k8s.io/api v0.26.0/go.mod h1:k6HDTaIFC8yn1i6pSClSqIwLABIcLV9l5Q4EcngKnQg=
-k8s.io/apiextensions-apiserver v0.26.0 h1:Gy93Xo1eg2ZIkNX/8vy5xviVSxwQulsnUdQ00nEdpDo=
-k8s.io/apiextensions-apiserver v0.26.0/go.mod h1:7ez0LTiyW5nq3vADtK6C3kMESxadD51Bh6uz3JOlqWQ=
-k8s.io/apimachinery v0.26.0 h1:1feANjElT7MvPqp0JT6F3Ss6TWDwmcjLypwoPpEf7zg=
-k8s.io/apimachinery v0.26.0/go.mod h1:tnPmbONNJ7ByJNz9+n9kMjNP8ON+1qoAIIC70lztu74=
-k8s.io/apiserver v0.26.0 h1:q+LqIK5EZwdznGZb8bq0+a+vCqdeEEe4Ux3zsOjbc4o=
-k8s.io/apiserver v0.26.0/go.mod h1:aWhlLD+mU+xRo+zhkvP/gFNbShI4wBDHS33o0+JGI84=
+k8s.io/api v0.26.1 h1:f+SWYiPd/GsiWwVRz+NbFyCgvv75Pk9NK6dlkZgpCRQ=
+k8s.io/api v0.26.1/go.mod h1:xd/GBNgR0f707+ATNyPmQ1oyKSgndzXij81FzWGsejg=
+k8s.io/apiextensions-apiserver v0.26.1 h1:cB8h1SRk6e/+i3NOrQgSFij1B2S0Y0wDoNl66bn8RMI=
+k8s.io/apiextensions-apiserver v0.26.1/go.mod h1:AptjOSXDGuE0JICx/Em15PaoO7buLwTs0dGleIHixSM=
+k8s.io/apimachinery v0.26.1 h1:8EZ/eGJL+hY/MYCNwhmDzVqq2lPl3N3Bo8rvweJwXUQ=
+k8s.io/apimachinery v0.26.1/go.mod h1:tnPmbONNJ7ByJNz9+n9kMjNP8ON+1qoAIIC70lztu74=
+k8s.io/apiserver v0.26.1 h1:6vmnAqCDO194SVCPU3MU8NcDgSqsUA62tBUSWrFXhsc=
+k8s.io/apiserver v0.26.1/go.mod h1:wr75z634Cv+sifswE9HlAo5FQ7UoUauIICRlOE+5dCg=
 k8s.io/cli-runtime v0.26.0 h1:aQHa1SyUhpqxAw1fY21x2z2OS5RLtMJOCj7tN4oq8mw=
 k8s.io/cli-runtime v0.26.0/go.mod h1:o+4KmwHzO/UK0wepE1qpRk6l3o60/txUZ1fEXWGIKTY=
-k8s.io/client-go v0.26.0 h1:lT1D3OfO+wIi9UFolCrifbjUUgu7CpLca0AD8ghRLI8=
-k8s.io/client-go v0.26.0/go.mod h1:I2Sh57A79EQsDmn7F7ASpmru1cceh3ocVT9KlX2jEZg=
-k8s.io/code-generator v0.26.0 h1:ZDY+7Gic9p/lACgD1G72gQg2CvNGeAYZTPIncv+iALM=
-k8s.io/code-generator v0.26.0/go.mod h1:OMoJ5Dqx1wgaQzKgc+ZWaZPfGjdRq/Y3WubFrZmeI3I=
-k8s.io/component-base v0.26.0 h1:0IkChOCohtDHttmKuz+EP3j3+qKmV55rM9gIFTXA7Vs=
-k8s.io/component-base v0.26.0/go.mod h1:lqHwlfV1/haa14F/Z5Zizk5QmzaVf23nQzCwVOQpfC8=
+k8s.io/client-go v0.26.1 h1:87CXzYJnAMGaa/IDDfRdhTzxk/wzGZ+/HUQpqgVSZXU=
+k8s.io/client-go v0.26.1/go.mod h1:IWNSglg+rQ3OcvDkhY6+QLeasV4OYHDjdqeWkDQZwGE=
+k8s.io/code-generator v0.26.1 h1:dusFDsnNSKlMFYhzIM0jAO1OlnTN5WYwQQ+Ai12IIlo=
+k8s.io/code-generator v0.26.1/go.mod h1:OMoJ5Dqx1wgaQzKgc+ZWaZPfGjdRq/Y3WubFrZmeI3I=
+k8s.io/component-base v0.26.1 h1:4ahudpeQXHZL5kko+iDHqLj/FSGAEUnSVO0EBbgDd+4=
+k8s.io/component-base v0.26.1/go.mod h1:VHrLR0b58oC035w6YQiBSbtsf0ThuSwXP+p5dD/kAWU=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d h1:U9tB195lKdzwqicbJvyJeOXV7Klv+wNAWENRnXEGi08=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
@@ -741,15 +760,15 @@ k8s.io/klog/v2 v2.80.1 h1:atnLQ121W371wYYFawwYx1aEY2eUfs4l3J72wtgAwV4=
 k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 h1:+70TFaan3hfJzs+7VK2o+OGxg8HsuBr/5f6tVAjDu6E=
 k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280/go.mod h1:+Axhij7bCpeqhklhUTe3xmOn6bWxolyZEeyaFpjGtl4=
-k8s.io/utils v0.0.0-20221107191617-1a15be271d1d h1:0Smp/HP1OH4Rvhe+4B8nWGERtlqAGSftbSbbmm45oFs=
-k8s.io/utils v0.0.0-20221107191617-1a15be271d1d/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
+k8s.io/utils v0.0.0-20221128185143-99ec85e7a448 h1:KTgPnR10d5zhztWptI952TNtt/4u5h3IzDXkdIMuo2Y=
+k8s.io/utils v0.0.0-20221128185143-99ec85e7a448/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
-sigs.k8s.io/controller-runtime v0.13.1 h1:tUsRCSJVM1QQOOeViGeX3GMT3dQF1eePPw6sEE3xSlg=
-sigs.k8s.io/controller-runtime v0.13.1/go.mod h1:Zbz+el8Yg31jubvAEyglRZGdLAjplZl+PgtYNI6WNTI=
+sigs.k8s.io/controller-runtime v0.14.2 h1:P6IwDhbsRWsBClt/8/h8Zy36bCuGuW5Op7MHpFrN/60=
+sigs.k8s.io/controller-runtime v0.14.2/go.mod h1:WqIdsAY6JBsjfc/CqO0CORmNtoCtE4S6qbPc9s68h+0=
 sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 h1:iXTIw73aPyC+oRdyqqvVJuloN1p0AC/kzH07hu3NE+k=
 sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/kustomize/api v0.12.1 h1:7YM7gW3kYBwtKvoY216ZzY+8hM+lV53LUayghNRJ0vM=

From 7d1c47ab5408a40993993b1b47954a4fd44d39f3 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 31 Jan 2023 20:09:06 -0500
Subject: [PATCH 0589/1641] Switch logic on path type validation and setting it
 to false (#9543)

* update path type validation to be false and update e2e test scripts

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update to make tests clear

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update test params

Signed-off-by: James Strong <strong.james.e@gmail.com>

* Adding else per pr comments

Signed-off-by: James Strong <james.strong@chainguard.dev>

---------

Signed-off-by: James Strong <strong.james.e@gmail.com>
Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 Makefile                                      |   4 +-
 charts/ingress-nginx/README.md                |   2 +-
 .../templates/controller-configmap.yaml       |   2 +-
 charts/ingress-nginx/values.yaml              |   6 +-
 .../nginx-configuration/configmap.md          | 394 +++++++++---------
 internal/ingress/controller/config/config.go  |  11 +-
 internal/ingress/controller/controller.go     |   2 +-
 .../ingress/controller/controller_test.go     |   6 +-
 internal/ingress/controller/store/store.go    |   2 +-
 pkg/util/ingress/ingress.go                   |  43 +-
 pkg/util/ingress/ingress_test.go              |  66 +--
 test/e2e/admission/admission.go               |  28 +-
 {build => test/e2e}/run-e2e-suite.sh          |  15 +-
 test/e2e/{run.sh => run-kind-e2e.sh}          |  92 ++--
 14 files changed, 354 insertions(+), 319 deletions(-)
 rename {build => test/e2e}/run-e2e-suite.sh (97%)
 rename test/e2e/{run.sh => run-kind-e2e.sh} (62%)

diff --git a/Makefile b/Makefile
index 0ce3e3cef..25855a224 100644
--- a/Makefile
+++ b/Makefile
@@ -153,11 +153,11 @@ lua-test: ## Run lua unit tests.
 
 .PHONY: e2e-test
 e2e-test:  ## Run e2e tests (expects access to a working Kubernetes cluster).
-	@build/run-e2e-suite.sh
+	@test/e2e/run-e2e-suite.sh
 
 .PHONY: kind-e2e-test
 kind-e2e-test:  ## Run e2e tests using kind.
-	@test/e2e/run.sh
+	@test/e2e/run-kind-e2e.sh
 
 .PHONY: kind-e2e-chart-tests
 kind-e2e-chart-tests: ## Run helm chart e2e tests
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 174a8870d..7f3ea1866 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -253,6 +253,7 @@ Kubernetes: `>=1.20.0-0`
 | Key | Type | Default | Description |
 |-----|------|---------|-------------|
 | commonLabels | object | `{}` |  |
+| controller.EnablePathTypeValidation | bool | `false` | This configuration defines if Ingress Controller should validate pathType. If false, special characters will be allowed on paths of any pathType. If true, special characters are only allowed on paths with pathType = ImplementationSpecific |
 | controller.addHeaders | object | `{}` | Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers |
 | controller.admissionWebhooks.annotations | object | `{}` |  |
 | controller.admissionWebhooks.certManager.admissionCert.duration | string | `""` |  |
@@ -311,7 +312,6 @@ Kubernetes: `>=1.20.0-0`
 | controller.containerPort | object | `{"http":80,"https":443}` | Configures the ports that the nginx-controller listens on |
 | controller.customTemplate.configMapKey | string | `""` |  |
 | controller.customTemplate.configMapName | string | `""` |  |
-| controller.disablePathTypeValidation | bool | `false` | This configuration defines if Ingress Controller should validate pathType. If this is true, special characters will be allowed on paths of any pathType. If false, special characters are only allowed on paths with pathType = ImplementationSpecific |
 | controller.dnsConfig | object | `{}` | Optionally customize the pod dnsConfig. |
 | controller.dnsPolicy | string | `"ClusterFirst"` | Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'. By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller to keep resolving names inside the k8s network, use ClusterFirstWithHostNet. |
 | controller.electionID | string | `""` | Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader' |
diff --git a/charts/ingress-nginx/templates/controller-configmap.yaml b/charts/ingress-nginx/templates/controller-configmap.yaml
index ffd003ee8..a1fbdf549 100644
--- a/charts/ingress-nginx/templates/controller-configmap.yaml
+++ b/charts/ingress-nginx/templates/controller-configmap.yaml
@@ -14,7 +14,7 @@ metadata:
   namespace: {{ .Release.Namespace }}
 data:
   allow-snippet-annotations: "{{ .Values.controller.allowSnippetAnnotations }}"
-  disable-pathtype-validation: "{{ .Values.controller.disablePathTypeValidation }}"
+  enable-pathtype-validation: "{{ .Values.controller.EnablePathTypeValidation }}"
 {{- if .Values.controller.addHeaders }}
   add-headers: {{ .Release.Namespace }}/{{ include "ingress-nginx.fullname" . }}-custom-add-headers
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 072493ccc..4c587ee88 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -88,9 +88,9 @@ controller:
   allowSnippetAnnotations: true
 
   # -- This configuration defines if Ingress Controller should validate pathType.
-  # If this is true, special characters will be allowed on paths of any pathType. If
-  # false, special characters are only allowed on paths with pathType = ImplementationSpecific
-  disablePathTypeValidation: false
+  # If false, special characters will be allowed on paths of any pathType.
+  # If true, special characters are only allowed on paths with pathType = ImplementationSpecific
+  EnablePathTypeValidation: false
 
   # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
   # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index baefa7c72..3832bba16 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -25,199 +25,199 @@ data:
 
 The following table shows a configuration option's name, type, and the default value:
 
-|name|type|default|
-|:---|:---|:------|
-|[add-headers](#add-headers)|string|""|
-|[allow-backend-server-header](#allow-backend-server-header)|bool|"false"|
-|[allow-snippet-annotations](#allow-snippet-annotations)|bool|true|
-|[annotation-value-word-blocklist](#annotation-value-word-blocklist)|string array|""|
-|[hide-headers](#hide-headers)|string array|empty|
-|[access-log-params](#access-log-params)|string|""|
-|[access-log-path](#access-log-path)|string|"/var/log/nginx/access.log"|
-|[http-access-log-path](#http-access-log-path)|string|""|
-|[stream-access-log-path](#stream-access-log-path)|string|""|
-|[enable-access-log-for-default-backend](#enable-access-log-for-default-backend)|bool|"false"|
-|[error-log-path](#error-log-path)|string|"/var/log/nginx/error.log"|
-|[enable-modsecurity](#enable-modsecurity)|bool|"false"|
-|[modsecurity-snippet](#modsecurity-snippet)|string|""|
-|[enable-owasp-modsecurity-crs](#enable-owasp-modsecurity-crs)|bool|"false"|
-|[client-header-buffer-size](#client-header-buffer-size)|string|"1k"|
-|[client-header-timeout](#client-header-timeout)|int|60|
-|[client-body-buffer-size](#client-body-buffer-size)|string|"8k"|
-|[client-body-timeout](#client-body-timeout)|int|60|
-|[disable-access-log](#disable-access-log)|bool|false|
-|[disable-ipv6](#disable-ipv6)|bool|false|
-|[disable-ipv6-dns](#disable-ipv6-dns)|bool|false|
-|[enable-underscores-in-headers](#enable-underscores-in-headers)|bool|false|
-|[enable-ocsp](#enable-ocsp)|bool|false|
-|[ignore-invalid-headers](#ignore-invalid-headers)|bool|true|
-|[retry-non-idempotent](#retry-non-idempotent)|bool|"false"|
-|[error-log-level](#error-log-level)|string|"notice"|
-|[http2-max-field-size](#http2-max-field-size)|string|"4k"|
-|[http2-max-header-size](#http2-max-header-size)|string|"16k"|
-|[http2-max-requests](#http2-max-requests)|int|1000|
-|[http2-max-concurrent-streams](#http2-max-concurrent-streams)|int|128|
-|[hsts](#hsts)|bool|"true"|
-|[hsts-include-subdomains](#hsts-include-subdomains)|bool|"true"|
-|[hsts-max-age](#hsts-max-age)|string|"15724800"|
-|[hsts-preload](#hsts-preload)|bool|"false"|
-|[keep-alive](#keep-alive)|int|75|
-|[keep-alive-requests](#keep-alive-requests)|int|1000|
-|[large-client-header-buffers](#large-client-header-buffers)|string|"4 8k"|
-|[log-format-escape-none](#log-format-escape-none)|bool|"false"|
-|[log-format-escape-json](#log-format-escape-json)|bool|"false"|
-|[log-format-upstream](#log-format-upstream)|string|`$remote_addr - $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" $request_length $request_time [$proxy_upstream_name] [$proxy_alternative_upstream_name] $upstream_addr $upstream_response_length $upstream_response_time $upstream_status $req_id`|
-|[log-format-stream](#log-format-stream)|string|`[$remote_addr] [$time_local] $protocol $status $bytes_sent $bytes_received $session_time`|
-|[enable-multi-accept](#enable-multi-accept)|bool|"true"|
-|[max-worker-connections](#max-worker-connections)|int|16384|
-|[max-worker-open-files](#max-worker-open-files)|int|0|
-|[map-hash-bucket-size](#max-hash-bucket-size)|int|64|
-|[nginx-status-ipv4-whitelist](#nginx-status-ipv4-whitelist)|[]string|"127.0.0.1"|
-|[nginx-status-ipv6-whitelist](#nginx-status-ipv6-whitelist)|[]string|"::1"|
-|[proxy-real-ip-cidr](#proxy-real-ip-cidr)|[]string|"0.0.0.0/0"|
-|[proxy-set-headers](#proxy-set-headers)|string|""|
-|[server-name-hash-max-size](#server-name-hash-max-size)|int|1024|
-|[server-name-hash-bucket-size](#server-name-hash-bucket-size)|int|`<size of the processor’s cache line>`
-|[proxy-headers-hash-max-size](#proxy-headers-hash-max-size)|int|512|
-|[proxy-headers-hash-bucket-size](#proxy-headers-hash-bucket-size)|int|64|
-|[plugins](#plugins)|[]string| |
-|[reuse-port](#reuse-port)|bool|"true"|
-|[server-tokens](#server-tokens)|bool|"false"|
-|[ssl-ciphers](#ssl-ciphers)|string|"ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"|
-|[ssl-ecdh-curve](#ssl-ecdh-curve)|string|"auto"|
-|[ssl-dh-param](#ssl-dh-param)|string|""|
-|[ssl-protocols](#ssl-protocols)|string|"TLSv1.2 TLSv1.3"|
-|[ssl-session-cache](#ssl-session-cache)|bool|"true"|
-|[ssl-session-cache-size](#ssl-session-cache-size)|string|"10m"|
-|[ssl-session-tickets](#ssl-session-tickets)|bool|"false"|
-|[ssl-session-ticket-key](#ssl-session-ticket-key)|string|`<Randomly Generated>`
-|[ssl-session-timeout](#ssl-session-timeout)|string|"10m"|
-|[ssl-buffer-size](#ssl-buffer-size)|string|"4k"|
-|[use-proxy-protocol](#use-proxy-protocol)|bool|"false"|
-|[proxy-protocol-header-timeout](#proxy-protocol-header-timeout)|string|"5s"|
-|[use-gzip](#use-gzip)|bool|"false"|
-|[use-geoip](#use-geoip)|bool|"true"|
-|[use-geoip2](#use-geoip2)|bool|"false"|
-|[enable-brotli](#enable-brotli)|bool|"false"|
-|[brotli-level](#brotli-level)|int|4|
-|[brotli-min-length](#brotli-min-length)|int|20|
-|[brotli-types](#brotli-types)|string|"application/xml+rss application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"|
-|[use-http2](#use-http2)|bool|"true"|
-|[gzip-disable](#gzip-disable)|string|""|
-|[gzip-level](#gzip-level)|int|1|
-|[gzip-min-length](#gzip-min-length)|int|256|
-|[gzip-types](#gzip-types)|string|"application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"|
-|[worker-processes](#worker-processes)|string|`<Number of CPUs>`|
-|[worker-cpu-affinity](#worker-cpu-affinity)|string|""|
-|[worker-shutdown-timeout](#worker-shutdown-timeout)|string|"240s"|
-|[load-balance](#load-balance)|string|"round_robin"|
-|[variables-hash-bucket-size](#variables-hash-bucket-size)|int|128|
-|[variables-hash-max-size](#variables-hash-max-size)|int|2048|
-|[upstream-keepalive-connections](#upstream-keepalive-connections)|int|320|
-|[upstream-keepalive-time](#upstream-keepalive-time)|string|"1h"|
-|[upstream-keepalive-timeout](#upstream-keepalive-timeout)|int|60|
-|[upstream-keepalive-requests](#upstream-keepalive-requests)|int|10000|
-|[limit-conn-zone-variable](#limit-conn-zone-variable)|string|"$binary_remote_addr"|
-|[proxy-stream-timeout](#proxy-stream-timeout)|string|"600s"|
-|[proxy-stream-next-upstream](#proxy-stream-next-upstream)|bool|"true"|
-|[proxy-stream-next-upstream-timeout](#proxy-stream-next-upstream-timeout)|string|"600s"|
-|[proxy-stream-next-upstream-tries](#proxy-stream-next-upstream-tries)|int|3|
-|[proxy-stream-responses](#proxy-stream-responses)|int|1|
-|[bind-address](#bind-address)|[]string|""|
-|[use-forwarded-headers](#use-forwarded-headers)|bool|"false"|
-|[enable-real-ip](#enable-real-ip)|bool|"false"|
-|[forwarded-for-header](#forwarded-for-header)|string|"X-Forwarded-For"|
-|[compute-full-forwarded-for](#compute-full-forwarded-for)|bool|"false"|
-|[proxy-add-original-uri-header](#proxy-add-original-uri-header)|bool|"false"|
-|[generate-request-id](#generate-request-id)|bool|"true"|
-|[enable-opentracing](#enable-opentracing)|bool|"false"|
-|[opentracing-operation-name](#opentracing-operation-name)|string|""|
-|[opentracing-location-operation-name](#opentracing-location-operation-name)|string|""|
-|[zipkin-collector-host](#zipkin-collector-host)|string|""|
-|[zipkin-collector-port](#zipkin-collector-port)|int|9411|
-|[zipkin-service-name](#zipkin-service-name)|string|"nginx"|
-|[zipkin-sample-rate](#zipkin-sample-rate)|float|1.0|
-|[jaeger-collector-host](#jaeger-collector-host)|string|""|
-|[jaeger-collector-port](#jaeger-collector-port)|int|6831|
-|[jaeger-endpoint](#jaeger-endpoint)|string|""|
-|[jaeger-service-name](#jaeger-service-name)|string|"nginx"|
-|[jaeger-propagation-format](#jaeger-propagation-format)|string|"jaeger"|
-|[jaeger-sampler-type](#jaeger-sampler-type)|string|"const"|
-|[jaeger-sampler-param](#jaeger-sampler-param)|string|"1"|
-|[jaeger-sampler-host](#jaeger-sampler-host)|string|"http://127.0.0.1"|
-|[jaeger-sampler-port](#jaeger-sampler-port)|int|5778|
-|[jaeger-trace-context-header-name](#jaeger-trace-context-header-name)|string|uber-trace-id|
-|[jaeger-debug-header](#jaeger-debug-header)|string|uber-debug-id|
-|[jaeger-baggage-header](#jaeger-baggage-header)|string|jaeger-baggage|
-|[jaeger-trace-baggage-header-prefix](#jaeger-trace-baggage-header-prefix)|string|uberctx-|
-|[datadog-collector-host](#datadog-collector-host)|string|""|
-|[datadog-collector-port](#datadog-collector-port)|int|8126|
-|[datadog-service-name](#datadog-service-name)|string|"nginx"|
-|[datadog-environment](#datadog-environment)|string|"prod"|
-|[datadog-operation-name-override](#datadog-operation-name-override)|string|"nginx.handle"|
-|[datadog-priority-sampling](#datadog-priority-sampling)|bool|"true"|
-|[datadog-sample-rate](#datadog-sample-rate)|float|1.0|
-|[main-snippet](#main-snippet)|string|""|
-|[http-snippet](#http-snippet)|string|""|
-|[server-snippet](#server-snippet)|string|""|
-|[stream-snippet](#stream-snippet)|string|""|
-|[location-snippet](#location-snippet)|string|""|
-|[custom-http-errors](#custom-http-errors)|[]int|[]int{}|
-|[proxy-body-size](#proxy-body-size)|string|"1m"|
-|[proxy-connect-timeout](#proxy-connect-timeout)|int|5|
-|[proxy-read-timeout](#proxy-read-timeout)|int|60|
-|[proxy-send-timeout](#proxy-send-timeout)|int|60|
-|[proxy-buffers-number](#proxy-buffers-number)|int|4|
-|[proxy-buffer-size](#proxy-buffer-size)|string|"4k"|
-|[proxy-cookie-path](#proxy-cookie-path)|string|"off"|
-|[proxy-cookie-domain](#proxy-cookie-domain)|string|"off"|
-|[proxy-next-upstream](#proxy-next-upstream)|string|"error timeout"|
-|[proxy-next-upstream-timeout](#proxy-next-upstream-timeout)|int|0|
-|[proxy-next-upstream-tries](#proxy-next-upstream-tries)|int|3|
-|[proxy-redirect-from](#proxy-redirect-from)|string|"off"|
-|[proxy-request-buffering](#proxy-request-buffering)|string|"on"|
-|[ssl-redirect](#ssl-redirect)|bool|"true"|
-|[force-ssl-redirect](#force-ssl-redirect)|bool|"false"|
-|[denylist-source-range](#denylist-source-range)|[]string|[]string{}|
-|[whitelist-source-range](#whitelist-source-range)|[]string|[]string{}|
-|[skip-access-log-urls](#skip-access-log-urls)|[]string|[]string{}|
-|[limit-rate](#limit-rate)|int|0|
-|[limit-rate-after](#limit-rate-after)|int|0|
-|[lua-shared-dicts](#lua-shared-dicts)|string|""|
-|[http-redirect-code](#http-redirect-code)|int|308|
-|[proxy-buffering](#proxy-buffering)|string|"off"|
-|[limit-req-status-code](#limit-req-status-code)|int|503|
-|[limit-conn-status-code](#limit-conn-status-code)|int|503|
-|[enable-syslog](#enable-syslog)|bool|false|
-|[syslog-host](#syslog-host)|string|""|
-|[syslog-port](#syslog-port)|int|514|
-|[no-tls-redirect-locations](#no-tls-redirect-locations)|string|"/.well-known/acme-challenge"|
-|[global-auth-url](#global-auth-url)|string|""|
-|[global-auth-method](#global-auth-method)|string|""|
-|[global-auth-signin](#global-auth-signin)|string|""|
-|[global-auth-signin-redirect-param](#global-auth-signin-redirect-param)|string|"rd"|
-|[global-auth-response-headers](#global-auth-response-headers)|string|""|
-|[global-auth-request-redirect](#global-auth-request-redirect)|string|""|
-|[global-auth-snippet](#global-auth-snippet)|string|""|
-|[global-auth-cache-key](#global-auth-cache-key)|string|""|
-|[global-auth-cache-duration](#global-auth-cache-duration)|string|"200 202 401 5m"|
-|[no-auth-locations](#no-auth-locations)|string|"/.well-known/acme-challenge"|
-|[block-cidrs](#block-cidrs)|[]string|""|
-|[block-user-agents](#block-user-agents)|[]string|""|
-|[block-referers](#block-referers)|[]string|""|
-|[proxy-ssl-location-only](#proxy-ssl-location-only)|bool|"false"|
-|[default-type](#default-type)|string|"text/html"|
-|[global-rate-limit-memcached-host](#global-rate-limit)|string|""|
-|[global-rate-limit-memcached-port](#global-rate-limit)|int|11211|
-|[global-rate-limit-memcached-connect-timeout](#global-rate-limit)|int|50|
-|[global-rate-limit-memcached-max-idle-timeout](#global-rate-limit)|int|10000|
-|[global-rate-limit-memcached-pool-size](#global-rate-limit)|int|50|
-|[global-rate-limit-status-code](#global-rate-limit)|int|429|
-|[service-upstream](#service-upstream)|bool|"false"|
-|[ssl-reject-handshake](#ssl-reject-handshake)|bool|"false"|
-|[debug-connections](#debug-connections)|[]string|"127.0.0.1,1.1.1.1/24"|
-|[disable-pathtype-validation](#disable-pathtype-validation)|bool|"false"|
-|[path-additional-allowed-chars](#path-additional-allowed-chars)|string|"^%$[](){}*+?"|
+| name                                                                            | type         | default                                                                                                                                                                                                                                                                                                                                                      |
+|:--------------------------------------------------------------------------------|:-------------|:-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| [add-headers](#add-headers)                                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [allow-backend-server-header](#allow-backend-server-header)                     | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [allow-snippet-annotations](#allow-snippet-annotations)                         | bool         | true                                                                                                                                                                                                                                                                                                                                                         |
+| [annotation-value-word-blocklist](#annotation-value-word-blocklist)             | string array | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [hide-headers](#hide-headers)                                                   | string array | empty                                                                                                                                                                                                                                                                                                                                                        |
+| [access-log-params](#access-log-params)                                         | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [access-log-path](#access-log-path)                                             | string       | "/var/log/nginx/access.log"                                                                                                                                                                                                                                                                                                                                  |
+| [http-access-log-path](#http-access-log-path)                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [stream-access-log-path](#stream-access-log-path)                               | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [enable-access-log-for-default-backend](#enable-access-log-for-default-backend) | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [error-log-path](#error-log-path)                                               | string       | "/var/log/nginx/error.log"                                                                                                                                                                                                                                                                                                                                   |
+| [enable-modsecurity](#enable-modsecurity)                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [modsecurity-snippet](#modsecurity-snippet)                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [enable-owasp-modsecurity-crs](#enable-owasp-modsecurity-crs)                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [client-header-buffer-size](#client-header-buffer-size)                         | string       | "1k"                                                                                                                                                                                                                                                                                                                                                         |
+| [client-header-timeout](#client-header-timeout)                                 | int          | 60                                                                                                                                                                                                                                                                                                                                                           |
+| [client-body-buffer-size](#client-body-buffer-size)                             | string       | "8k"                                                                                                                                                                                                                                                                                                                                                         |
+| [client-body-timeout](#client-body-timeout)                                     | int          | 60                                                                                                                                                                                                                                                                                                                                                           |
+| [disable-access-log](#disable-access-log)                                       | bool         | false                                                                                                                                                                                                                                                                                                                                                        |
+| [disable-ipv6](#disable-ipv6)                                                   | bool         | false                                                                                                                                                                                                                                                                                                                                                        |
+| [disable-ipv6-dns](#disable-ipv6-dns)                                           | bool         | false                                                                                                                                                                                                                                                                                                                                                        |
+| [enable-underscores-in-headers](#enable-underscores-in-headers)                 | bool         | false                                                                                                                                                                                                                                                                                                                                                        |
+| [enable-ocsp](#enable-ocsp)                                                     | bool         | false                                                                                                                                                                                                                                                                                                                                                        |
+| [ignore-invalid-headers](#ignore-invalid-headers)                               | bool         | true                                                                                                                                                                                                                                                                                                                                                         |
+| [retry-non-idempotent](#retry-non-idempotent)                                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [error-log-level](#error-log-level)                                             | string       | "notice"                                                                                                                                                                                                                                                                                                                                                     |
+| [http2-max-field-size](#http2-max-field-size)                                   | string       | "4k"                                                                                                                                                                                                                                                                                                                                                         |
+| [http2-max-header-size](#http2-max-header-size)                                 | string       | "16k"                                                                                                                                                                                                                                                                                                                                                        |
+| [http2-max-requests](#http2-max-requests)                                       | int          | 1000                                                                                                                                                                                                                                                                                                                                                         |
+| [http2-max-concurrent-streams](#http2-max-concurrent-streams)                   | int          | 128                                                                                                                                                                                                                                                                                                                                                          |
+| [hsts](#hsts)                                                                   | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
+| [hsts-include-subdomains](#hsts-include-subdomains)                             | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
+| [hsts-max-age](#hsts-max-age)                                                   | string       | "15724800"                                                                                                                                                                                                                                                                                                                                                   |
+| [hsts-preload](#hsts-preload)                                                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [keep-alive](#keep-alive)                                                       | int          | 75                                                                                                                                                                                                                                                                                                                                                           |
+| [keep-alive-requests](#keep-alive-requests)                                     | int          | 1000                                                                                                                                                                                                                                                                                                                                                         |
+| [large-client-header-buffers](#large-client-header-buffers)                     | string       | "4 8k"                                                                                                                                                                                                                                                                                                                                                       |
+| [log-format-escape-none](#log-format-escape-none)                               | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [log-format-escape-json](#log-format-escape-json)                               | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [log-format-upstream](#log-format-upstream)                                     | string       | `$remote_addr - $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" $request_length $request_time [$proxy_upstream_name] [$proxy_alternative_upstream_name] $upstream_addr $upstream_response_length $upstream_response_time $upstream_status $req_id`                                                         |
+| [log-format-stream](#log-format-stream)                                         | string       | `[$remote_addr] [$time_local] $protocol $status $bytes_sent $bytes_received $session_time`                                                                                                                                                                                                                                                                   |
+| [enable-multi-accept](#enable-multi-accept)                                     | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
+| [max-worker-connections](#max-worker-connections)                               | int          | 16384                                                                                                                                                                                                                                                                                                                                                        |
+| [max-worker-open-files](#max-worker-open-files)                                 | int          | 0                                                                                                                                                                                                                                                                                                                                                            |
+| [map-hash-bucket-size](#max-hash-bucket-size)                                   | int          | 64                                                                                                                                                                                                                                                                                                                                                           |
+| [nginx-status-ipv4-whitelist](#nginx-status-ipv4-whitelist)                     | []string     | "127.0.0.1"                                                                                                                                                                                                                                                                                                                                                  |
+| [nginx-status-ipv6-whitelist](#nginx-status-ipv6-whitelist)                     | []string     | "::1"                                                                                                                                                                                                                                                                                                                                                        |
+| [proxy-real-ip-cidr](#proxy-real-ip-cidr)                                       | []string     | "0.0.0.0/0"                                                                                                                                                                                                                                                                                                                                                  |
+| [proxy-set-headers](#proxy-set-headers)                                         | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [server-name-hash-max-size](#server-name-hash-max-size)                         | int          | 1024                                                                                                                                                                                                                                                                                                                                                         |
+| [server-name-hash-bucket-size](#server-name-hash-bucket-size)                   | int          | `<size of the processor’s cache line>`                                                                                                                                                                                                                                                                                                                       |
+| [proxy-headers-hash-max-size](#proxy-headers-hash-max-size)                     | int          | 512                                                                                                                                                                                                                                                                                                                                                          |
+| [proxy-headers-hash-bucket-size](#proxy-headers-hash-bucket-size)               | int          | 64                                                                                                                                                                                                                                                                                                                                                           |
+| [plugins](#plugins)                                                             | []string     |                                                                                                                                                                                                                                                                                                                                                              |
+| [reuse-port](#reuse-port)                                                       | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
+| [server-tokens](#server-tokens)                                                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [ssl-ciphers](#ssl-ciphers)                                                     | string       | "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"                                                                                                                          |
+| [ssl-ecdh-curve](#ssl-ecdh-curve)                                               | string       | "auto"                                                                                                                                                                                                                                                                                                                                                       |
+| [ssl-dh-param](#ssl-dh-param)                                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [ssl-protocols](#ssl-protocols)                                                 | string       | "TLSv1.2 TLSv1.3"                                                                                                                                                                                                                                                                                                                                            |
+| [ssl-session-cache](#ssl-session-cache)                                         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
+| [ssl-session-cache-size](#ssl-session-cache-size)                               | string       | "10m"                                                                                                                                                                                                                                                                                                                                                        |
+| [ssl-session-tickets](#ssl-session-tickets)                                     | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [ssl-session-ticket-key](#ssl-session-ticket-key)                               | string       | `<Randomly Generated>`                                                                                                                                                                                                                                                                                                                                       |
+| [ssl-session-timeout](#ssl-session-timeout)                                     | string       | "10m"                                                                                                                                                                                                                                                                                                                                                        |
+| [ssl-buffer-size](#ssl-buffer-size)                                             | string       | "4k"                                                                                                                                                                                                                                                                                                                                                         |
+| [use-proxy-protocol](#use-proxy-protocol)                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [proxy-protocol-header-timeout](#proxy-protocol-header-timeout)                 | string       | "5s"                                                                                                                                                                                                                                                                                                                                                         |
+| [use-gzip](#use-gzip)                                                           | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [use-geoip](#use-geoip)                                                         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
+| [use-geoip2](#use-geoip2)                                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [enable-brotli](#enable-brotli)                                                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [brotli-level](#brotli-level)                                                   | int          | 4                                                                                                                                                                                                                                                                                                                                                            |
+| [brotli-min-length](#brotli-min-length)                                         | int          | 20                                                                                                                                                                                                                                                                                                                                                           |
+| [brotli-types](#brotli-types)                                                   | string       | "application/xml+rss application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component" |
+| [use-http2](#use-http2)                                                         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
+| [gzip-disable](#gzip-disable)                                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [gzip-level](#gzip-level)                                                       | int          | 1                                                                                                                                                                                                                                                                                                                                                            |
+| [gzip-min-length](#gzip-min-length)                                             | int          | 256                                                                                                                                                                                                                                                                                                                                                          |
+| [gzip-types](#gzip-types)                                                       | string       | "application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"                     |
+| [worker-processes](#worker-processes)                                           | string       | `<Number of CPUs>`                                                                                                                                                                                                                                                                                                                                           |
+| [worker-cpu-affinity](#worker-cpu-affinity)                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [worker-shutdown-timeout](#worker-shutdown-timeout)                             | string       | "240s"                                                                                                                                                                                                                                                                                                                                                       |
+| [load-balance](#load-balance)                                                   | string       | "round_robin"                                                                                                                                                                                                                                                                                                                                                |
+| [variables-hash-bucket-size](#variables-hash-bucket-size)                       | int          | 128                                                                                                                                                                                                                                                                                                                                                          |
+| [variables-hash-max-size](#variables-hash-max-size)                             | int          | 2048                                                                                                                                                                                                                                                                                                                                                         |
+| [upstream-keepalive-connections](#upstream-keepalive-connections)               | int          | 320                                                                                                                                                                                                                                                                                                                                                          |
+| [upstream-keepalive-time](#upstream-keepalive-time)                             | string       | "1h"                                                                                                                                                                                                                                                                                                                                                         |
+| [upstream-keepalive-timeout](#upstream-keepalive-timeout)                       | int          | 60                                                                                                                                                                                                                                                                                                                                                           |
+| [upstream-keepalive-requests](#upstream-keepalive-requests)                     | int          | 10000                                                                                                                                                                                                                                                                                                                                                        |
+| [limit-conn-zone-variable](#limit-conn-zone-variable)                           | string       | "$binary_remote_addr"                                                                                                                                                                                                                                                                                                                                        |
+| [proxy-stream-timeout](#proxy-stream-timeout)                                   | string       | "600s"                                                                                                                                                                                                                                                                                                                                                       |
+| [proxy-stream-next-upstream](#proxy-stream-next-upstream)                       | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
+| [proxy-stream-next-upstream-timeout](#proxy-stream-next-upstream-timeout)       | string       | "600s"                                                                                                                                                                                                                                                                                                                                                       |
+| [proxy-stream-next-upstream-tries](#proxy-stream-next-upstream-tries)           | int          | 3                                                                                                                                                                                                                                                                                                                                                            |
+| [proxy-stream-responses](#proxy-stream-responses)                               | int          | 1                                                                                                                                                                                                                                                                                                                                                            |
+| [bind-address](#bind-address)                                                   | []string     | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [use-forwarded-headers](#use-forwarded-headers)                                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [enable-real-ip](#enable-real-ip)                                               | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [forwarded-for-header](#forwarded-for-header)                                   | string       | "X-Forwarded-For"                                                                                                                                                                                                                                                                                                                                            |
+| [compute-full-forwarded-for](#compute-full-forwarded-for)                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [proxy-add-original-uri-header](#proxy-add-original-uri-header)                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [generate-request-id](#generate-request-id)                                     | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
+| [enable-opentracing](#enable-opentracing)                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [opentracing-operation-name](#opentracing-operation-name)                       | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [opentracing-location-operation-name](#opentracing-location-operation-name)     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [zipkin-collector-host](#zipkin-collector-host)                                 | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [zipkin-collector-port](#zipkin-collector-port)                                 | int          | 9411                                                                                                                                                                                                                                                                                                                                                         |
+| [zipkin-service-name](#zipkin-service-name)                                     | string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      |
+| [zipkin-sample-rate](#zipkin-sample-rate)                                       | float        | 1.0                                                                                                                                                                                                                                                                                                                                                          |
+| [jaeger-collector-host](#jaeger-collector-host)                                 | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [jaeger-collector-port](#jaeger-collector-port)                                 | int          | 6831                                                                                                                                                                                                                                                                                                                                                         |
+| [jaeger-endpoint](#jaeger-endpoint)                                             | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [jaeger-service-name](#jaeger-service-name)                                     | string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      |
+| [jaeger-propagation-format](#jaeger-propagation-format)                         | string       | "jaeger"                                                                                                                                                                                                                                                                                                                                                     |
+| [jaeger-sampler-type](#jaeger-sampler-type)                                     | string       | "const"                                                                                                                                                                                                                                                                                                                                                      |
+| [jaeger-sampler-param](#jaeger-sampler-param)                                   | string       | "1"                                                                                                                                                                                                                                                                                                                                                          |
+| [jaeger-sampler-host](#jaeger-sampler-host)                                     | string       | "http://127.0.0.1"                                                                                                                                                                                                                                                                                                                                           |
+| [jaeger-sampler-port](#jaeger-sampler-port)                                     | int          | 5778                                                                                                                                                                                                                                                                                                                                                         |
+| [jaeger-trace-context-header-name](#jaeger-trace-context-header-name)           | string       | uber-trace-id                                                                                                                                                                                                                                                                                                                                                |
+| [jaeger-debug-header](#jaeger-debug-header)                                     | string       | uber-debug-id                                                                                                                                                                                                                                                                                                                                                |
+| [jaeger-baggage-header](#jaeger-baggage-header)                                 | string       | jaeger-baggage                                                                                                                                                                                                                                                                                                                                               |
+| [jaeger-trace-baggage-header-prefix](#jaeger-trace-baggage-header-prefix)       | string       | uberctx-                                                                                                                                                                                                                                                                                                                                                     |
+| [datadog-collector-host](#datadog-collector-host)                               | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [datadog-collector-port](#datadog-collector-port)                               | int          | 8126                                                                                                                                                                                                                                                                                                                                                         |
+| [datadog-service-name](#datadog-service-name)                                   | string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      |
+| [datadog-environment](#datadog-environment)                                     | string       | "prod"                                                                                                                                                                                                                                                                                                                                                       |
+| [datadog-operation-name-override](#datadog-operation-name-override)             | string       | "nginx.handle"                                                                                                                                                                                                                                                                                                                                               |
+| [datadog-priority-sampling](#datadog-priority-sampling)                         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
+| [datadog-sample-rate](#datadog-sample-rate)                                     | float        | 1.0                                                                                                                                                                                                                                                                                                                                                          |
+| [main-snippet](#main-snippet)                                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [http-snippet](#http-snippet)                                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [server-snippet](#server-snippet)                                               | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [stream-snippet](#stream-snippet)                                               | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [location-snippet](#location-snippet)                                           | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [custom-http-errors](#custom-http-errors)                                       | []int        | []int{}                                                                                                                                                                                                                                                                                                                                                      |
+| [proxy-body-size](#proxy-body-size)                                             | string       | "1m"                                                                                                                                                                                                                                                                                                                                                         |
+| [proxy-connect-timeout](#proxy-connect-timeout)                                 | int          | 5                                                                                                                                                                                                                                                                                                                                                            |
+| [proxy-read-timeout](#proxy-read-timeout)                                       | int          | 60                                                                                                                                                                                                                                                                                                                                                           |
+| [proxy-send-timeout](#proxy-send-timeout)                                       | int          | 60                                                                                                                                                                                                                                                                                                                                                           |
+| [proxy-buffers-number](#proxy-buffers-number)                                   | int          | 4                                                                                                                                                                                                                                                                                                                                                            |
+| [proxy-buffer-size](#proxy-buffer-size)                                         | string       | "4k"                                                                                                                                                                                                                                                                                                                                                         |
+| [proxy-cookie-path](#proxy-cookie-path)                                         | string       | "off"                                                                                                                                                                                                                                                                                                                                                        |
+| [proxy-cookie-domain](#proxy-cookie-domain)                                     | string       | "off"                                                                                                                                                                                                                                                                                                                                                        |
+| [proxy-next-upstream](#proxy-next-upstream)                                     | string       | "error timeout"                                                                                                                                                                                                                                                                                                                                              |
+| [proxy-next-upstream-timeout](#proxy-next-upstream-timeout)                     | int          | 0                                                                                                                                                                                                                                                                                                                                                            |
+| [proxy-next-upstream-tries](#proxy-next-upstream-tries)                         | int          | 3                                                                                                                                                                                                                                                                                                                                                            |
+| [proxy-redirect-from](#proxy-redirect-from)                                     | string       | "off"                                                                                                                                                                                                                                                                                                                                                        |
+| [proxy-request-buffering](#proxy-request-buffering)                             | string       | "on"                                                                                                                                                                                                                                                                                                                                                         |
+| [ssl-redirect](#ssl-redirect)                                                   | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
+| [force-ssl-redirect](#force-ssl-redirect)                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [denylist-source-range](#denylist-source-range)                                 | []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   |
+| [whitelist-source-range](#whitelist-source-range)                               | []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   |
+| [skip-access-log-urls](#skip-access-log-urls)                                   | []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   |
+| [limit-rate](#limit-rate)                                                       | int          | 0                                                                                                                                                                                                                                                                                                                                                            |
+| [limit-rate-after](#limit-rate-after)                                           | int          | 0                                                                                                                                                                                                                                                                                                                                                            |
+| [lua-shared-dicts](#lua-shared-dicts)                                           | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [http-redirect-code](#http-redirect-code)                                       | int          | 308                                                                                                                                                                                                                                                                                                                                                          |
+| [proxy-buffering](#proxy-buffering)                                             | string       | "off"                                                                                                                                                                                                                                                                                                                                                        |
+| [limit-req-status-code](#limit-req-status-code)                                 | int          | 503                                                                                                                                                                                                                                                                                                                                                          |
+| [limit-conn-status-code](#limit-conn-status-code)                               | int          | 503                                                                                                                                                                                                                                                                                                                                                          |
+| [enable-syslog](#enable-syslog)                                                 | bool         | false                                                                                                                                                                                                                                                                                                                                                        |
+| [syslog-host](#syslog-host)                                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [syslog-port](#syslog-port)                                                     | int          | 514                                                                                                                                                                                                                                                                                                                                                          |
+| [no-tls-redirect-locations](#no-tls-redirect-locations)                         | string       | "/.well-known/acme-challenge"                                                                                                                                                                                                                                                                                                                                |
+| [global-auth-url](#global-auth-url)                                             | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [global-auth-method](#global-auth-method)                                       | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [global-auth-signin](#global-auth-signin)                                       | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [global-auth-signin-redirect-param](#global-auth-signin-redirect-param)         | string       | "rd"                                                                                                                                                                                                                                                                                                                                                         |
+| [global-auth-response-headers](#global-auth-response-headers)                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [global-auth-request-redirect](#global-auth-request-redirect)                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [global-auth-snippet](#global-auth-snippet)                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [global-auth-cache-key](#global-auth-cache-key)                                 | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [global-auth-cache-duration](#global-auth-cache-duration)                       | string       | "200 202 401 5m"                                                                                                                                                                                                                                                                                                                                             |
+| [no-auth-locations](#no-auth-locations)                                         | string       | "/.well-known/acme-challenge"                                                                                                                                                                                                                                                                                                                                |
+| [block-cidrs](#block-cidrs)                                                     | []string     | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [block-user-agents](#block-user-agents)                                         | []string     | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [block-referers](#block-referers)                                               | []string     | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [proxy-ssl-location-only](#proxy-ssl-location-only)                             | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [default-type](#default-type)                                                   | string       | "text/html"                                                                                                                                                                                                                                                                                                                                                  |
+| [global-rate-limit-memcached-host](#global-rate-limit)                          | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
+| [global-rate-limit-memcached-port](#global-rate-limit)                          | int          | 11211                                                                                                                                                                                                                                                                                                                                                        |
+| [global-rate-limit-memcached-connect-timeout](#global-rate-limit)               | int          | 50                                                                                                                                                                                                                                                                                                                                                           |
+| [global-rate-limit-memcached-max-idle-timeout](#global-rate-limit)              | int          | 10000                                                                                                                                                                                                                                                                                                                                                        |
+| [global-rate-limit-memcached-pool-size](#global-rate-limit)                     | int          | 50                                                                                                                                                                                                                                                                                                                                                           |
+| [global-rate-limit-status-code](#global-rate-limit)                             | int          | 429                                                                                                                                                                                                                                                                                                                                                          |
+| [service-upstream](#service-upstream)                                           | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [ssl-reject-handshake](#ssl-reject-handshake)                                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [debug-connections](#debug-connections)                                         | []string     | "127.0.0.1,1.1.1.1/24"                                                                                                                                                                                                                                                                                                                                       |
+| [enable-pathtype-validation](#enable-pathtype-validation)                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
+| [path-additional-allowed-chars](#path-additional-allowed-chars)                 | string       | "^%$[](){}*+?"                                                                                                                                                                                                                                                                                                                                               |
 
 ## add-headers
 
@@ -1329,7 +1329,7 @@ _**default:**_ ""
 _References:_
 [http://nginx.org/en/docs/ngx_core_module.html#debug_connection](http://nginx.org/en/docs/ngx_core_module.html#debug_connection)
 
-## disable-pathtype-validation
+## enable-pathtype-validation
 Ingress Controller validates the pathType, and only allows special characters on "path" if pathType is
 ImplementationSpecific. 
 
@@ -1339,13 +1339,11 @@ will be 0-9, a-z, A-Z, "-", ".", "_", "~", "/".
 If the validation is disabled, the [#path-additional-allowed-chars](#path-additional-allowed-chars) will
 be allowed on any pathType.
 
-This behavior can be disabled, so special characters are accepted regardless of pathType
+This behavior is disabled by default, so special characters are accepted regardless of pathType
 _**default:**_ "false"
 
 ## path-additional-allowed-chars
-When validating path on Ingress resources, defines the additional set of special characters that
+When [enable-pathtype-validation](enable-pathtype-validation) is set to true [#path-additional-allowed-chars](#path-additional-allowed-chars) defines the additional set of special characters that
 will be allowed.
 
-See also [#disable-pathtype-validation](#disable-pathtype-validation).
-
 _**default:**_ "^%$[](){}*+?|"
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 8be92167d..b02e5998e 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -783,14 +783,15 @@ type Configuration struct {
 	// Default: ""
 	DebugConnections []string `json:"debug-connections"`
 
-	// DisablePathTypeValidation allows the admin to disable the pathType validation.
-	// If PathTypeValidation is enabled, the Controller will only allow alphanumeric
+	// EnablePathTypeValidation allows the admin to enable the pathType validation.
+	// If EnablePathTypeValidation is enabled, the Controller will only allow alphanumeric
 	// characters on path (0-9, a-z, A-Z, "-", ".", "_", "~", "/")
-	DisablePathTypeValidation bool `json:"disable-pathtype-validation"`
+	// to control what characters are allowed set them with PathAdditionalAllowedChars
+	EnablePathTypeValidation bool `json:"enable-pathtype-validation"`
 
 	// PathAdditionalAllowedChars allows the admin to specify what are the additional
 	// characters allowed in case of pathType=ImplementationSpecific.
-	// Case disable-pathtype-validation=true, this characters will be allowed on any path.
+	// Case enable-pathtype-validation=true, this characters will be only allowed on ImplementationSpecific.
 	// Defaults to: "^%$[](){}*+?"
 	PathAdditionalAllowedChars string `json:"path-additional-allowed-chars"`
 }
@@ -828,7 +829,7 @@ func NewDefault() Configuration {
 		ClientHeaderTimeout:              60,
 		ClientBodyBufferSize:             "8k",
 		ClientBodyTimeout:                60,
-		DisablePathTypeValidation:        false,
+		EnablePathTypeValidation:         false,
 		PathAdditionalAllowedChars:       "^%$[](){}*+?|",
 		EnableUnderscoresInHeaders:       false,
 		ErrorLogLevel:                    errorLevel,
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 5b22fd17a..9812bd97e 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -325,7 +325,7 @@ func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
 
 	k8s.SetDefaultNGINXPathType(ing)
 
-	if err := utilingress.ValidateIngressPath(ing, cfg.DisablePathTypeValidation, cfg.PathAdditionalAllowedChars); err != nil {
+	if err := utilingress.ValidateIngressPath(ing, cfg.EnablePathTypeValidation, cfg.PathAdditionalAllowedChars); err != nil {
 		return fmt.Errorf("ingress contains invalid characters: %s", err)
 	}
 
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index d91760552..dab1e6e37 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -203,11 +203,11 @@ func TestCheckIngress(t *testing.T) {
 	}
 
 	t.Run("when validating pathType", func(t *testing.T) {
-		t.Run("When ingress contains invalid path and pathType validation is not disabled", func(t *testing.T) {
+		t.Run("When ingress contains invalid path and pathType validation is enabled", func(t *testing.T) {
 			nginx.store = fakeIngressStore{
 				ingresses: []*ingress.Ingress{},
 				configuration: ngx_config.Configuration{
-					DisablePathTypeValidation: false,
+					EnablePathTypeValidation: true,
 				},
 			}
 			nginx.command = testNginxTestCommand{
@@ -253,7 +253,7 @@ func TestCheckIngress(t *testing.T) {
 			nginx.store = fakeIngressStore{
 				ingresses: []*ingress.Ingress{},
 				configuration: ngx_config.Configuration{
-					DisablePathTypeValidation:  true,
+					EnablePathTypeValidation:   false,
 					PathAdditionalAllowedChars: "^%$[](){}*+?|",
 				},
 			}
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 1006858e8..e0f6cfb54 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -846,7 +846,7 @@ func (s *k8sStore) syncIngress(ing *networkingv1.Ingress) {
 	copyIng := &networkingv1.Ingress{}
 	ing.ObjectMeta.DeepCopyInto(&copyIng.ObjectMeta)
 
-	if err := ingressutils.ValidateIngressPath(ing, s.backendConfig.DisablePathTypeValidation, s.backendConfig.PathAdditionalAllowedChars); err != nil {
+	if err := ingressutils.ValidateIngressPath(ing, s.backendConfig.EnablePathTypeValidation, s.backendConfig.PathAdditionalAllowedChars); err != nil {
 		klog.Errorf("ingress %s contains invalid path and will be skipped: %s", key, err)
 		return
 	}
diff --git a/pkg/util/ingress/ingress.go b/pkg/util/ingress/ingress.go
index e16518251..acadad432 100644
--- a/pkg/util/ingress/ingress.go
+++ b/pkg/util/ingress/ingress.go
@@ -246,44 +246,65 @@ func BuildRedirects(servers []*ingress.Server) []*redirect {
 	return redirectServers
 }
 
-func ValidateIngressPath(copyIng *networkingv1.Ingress, disablePathTypeValidation bool, additionalChars string) error {
+func ValidateIngressPath(copyIng *networkingv1.Ingress, enablePathTypeValidation bool, pathAdditionalAllowedChars string) error {
 
 	if copyIng == nil {
 		return nil
 	}
 
-	escapedAdditionalChars := regexp.QuoteMeta(additionalChars)
-	regexPath, err := regexp.Compile("^[" + alphaNumericChars + escapedAdditionalChars + "]*$")
+	escapedPathAdditionalAllowedChars := regexp.QuoteMeta(pathAdditionalAllowedChars)
+	regexPath, err := regexp.Compile("^[" + alphaNumericChars + escapedPathAdditionalAllowedChars + "]*$")
 	if err != nil {
-		return fmt.Errorf("ingress has misconfigured validation regex on configmap: %s - %w", additionalChars, err)
+		return fmt.Errorf("ingress has misconfigured validation regex on configmap: %s - %w", pathAdditionalAllowedChars, err)
 	}
 
 	for _, rule := range copyIng.Spec.Rules {
+
 		if rule.HTTP == nil {
 			continue
 		}
-		if err := checkPath(rule.HTTP.Paths, disablePathTypeValidation, regexPath); err != nil {
+
+		if err := checkPath(rule.HTTP.Paths, enablePathTypeValidation, regexPath); err != nil {
 			return fmt.Errorf("error validating ingressPath: %w", err)
 		}
 	}
 	return nil
 }
 
-func checkPath(paths []networkingv1.HTTPIngressPath, disablePathTypeValidation bool, regexSpecificChars *regexp.Regexp) error {
+func checkPath(paths []networkingv1.HTTPIngressPath, enablePathTypeValidation bool, regexSpecificChars *regexp.Regexp) error {
+
 	for _, path := range paths {
 		if path.PathType == nil {
 			path.PathType = &defaultPathType
 		}
 
-		if disablePathTypeValidation || *path.PathType == networkingv1.PathTypeImplementationSpecific {
+		klog.V(9).InfoS("PathType Validation", "enablePathTypeValidation", enablePathTypeValidation, "regexSpecificChars", regexSpecificChars.String(), "Path", path.Path)
+
+		switch pathType := *path.PathType; pathType {
+		case networkingv1.PathTypeImplementationSpecific:
+			//only match on regex chars per Ingress spec when path is implementation specific
 			if !regexSpecificChars.MatchString(path.Path) {
 				return fmt.Errorf("path %s of type %s contains invalid characters", path.Path, *path.PathType)
 			}
-			continue
-		}
 
-		if !pathAlphaNumericRegex(path.Path) {
-			return fmt.Errorf("path %s of type %s contains invalid characters", path.Path, *path.PathType)
+		case networkingv1.PathTypeExact, networkingv1.PathTypePrefix:
+			//enforce path type validation
+			if enablePathTypeValidation {
+				//only allow alphanumeric chars, no regex chars
+				if !pathAlphaNumericRegex(path.Path) {
+					return fmt.Errorf("path %s of type %s contains invalid characters", path.Path, *path.PathType)
+				}
+				continue
+			} else {
+				//path validation is disabled, so we check what regex chars are allowed by user
+				if !regexSpecificChars.MatchString(path.Path) {
+					return fmt.Errorf("path %s of type %s contains invalid characters", path.Path, *path.PathType)
+				}
+				continue
+			}
+
+		default:
+			return fmt.Errorf("unknown path type %v on path %v", *path.PathType, path.Path)
 		}
 	}
 	return nil
diff --git a/pkg/util/ingress/ingress_test.go b/pkg/util/ingress/ingress_test.go
index a79da6b6f..3bd7f1230 100644
--- a/pkg/util/ingress/ingress_test.go
+++ b/pkg/util/ingress/ingress_test.go
@@ -212,11 +212,11 @@ const (
 
 func TestValidateIngressPath(t *testing.T) {
 	tests := []struct {
-		name                      string
-		copyIng                   *networkingv1.Ingress
-		disablePathTypeValidation bool
-		additionalChars           string
-		wantErr                   bool
+		name                     string
+		copyIng                  *networkingv1.Ingress
+		EnablePathTypeValidation bool
+		additionalChars          string
+		wantErr                  bool
 	}{
 		{
 			name:    "should return nil when ingress = nil",
@@ -251,49 +251,53 @@ func TestValidateIngressPath(t *testing.T) {
 		{
 			name:            "should deny path with bad characters and pathType not implementationSpecific",
 			wantErr:         true,
-			additionalChars: defaultAdditionalChars,
+			additionalChars: "()",
 			copyIng:         generateDumbIngressforPathTest(&pathTypeExact, "/foo/bar/(.+)"),
 		},
 		{
-			name:            "should accept path with regex characters and pathType implementationSpecific",
-			wantErr:         false,
-			additionalChars: defaultAdditionalChars,
-			copyIng:         generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.+)"),
+			name:                     "should accept path with regex characters and pathType implementationSpecific",
+			wantErr:                  false,
+			additionalChars:          defaultAdditionalChars,
+			EnablePathTypeValidation: false,
+			copyIng:                  generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.+)"),
 		},
 		{
-			name:                      "should accept path with regex characters and pathType exact, but pathType validation disabled",
-			wantErr:                   false,
-			additionalChars:           defaultAdditionalChars,
-			disablePathTypeValidation: true,
-			copyIng:                   generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.+)"),
+			name:                     "should accept path with regex characters and pathType exact, but pathType validation disabled",
+			wantErr:                  false,
+			additionalChars:          defaultAdditionalChars,
+			EnablePathTypeValidation: false,
+			copyIng:                  generateDumbIngressforPathTest(&pathTypeExact, "/foo/bar/(.+)"),
 		},
 		{
-			name:                      "should reject path when the allowed additional set does not match",
-			wantErr:                   true,
-			additionalChars:           "().?",
-			disablePathTypeValidation: false,
-			copyIng:                   generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.+)"),
+			name:                     "should reject path when the allowed additional set does not match",
+			wantErr:                  true,
+			additionalChars:          "().?",
+			EnablePathTypeValidation: false,
+			copyIng:                  generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.+)"),
 		},
 		{
-			name:            "should accept path when the allowed additional set does match",
-			wantErr:         false,
-			additionalChars: "().?",
-			copyIng:         generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.?)"),
+			name:                     "should accept path when the allowed additional set does match",
+			wantErr:                  false,
+			additionalChars:          "().?",
+			EnablePathTypeValidation: false,
+			copyIng:                  generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.?)"),
 		},
 		{
-			name:    "should block if at least one path is bad",
-			wantErr: true,
-			copyIng: generateComplexIngress(generateDumbIngressforPathTest(&pathTypeExact, "/foo/bar/(.?)")),
+			name:                     "should block if at least one path is bad",
+			wantErr:                  true,
+			EnablePathTypeValidation: false,
+			copyIng:                  generateComplexIngress(generateDumbIngressforPathTest(&pathTypeExact, "/foo/bar/(.?)")),
 		},
 		{
-			name:    "should block if at least one path is bad",
-			wantErr: true,
-			copyIng: generateComplexIngress(generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.?)")),
+			name:                     "should block if at least one path is bad",
+			wantErr:                  true,
+			EnablePathTypeValidation: false,
+			copyIng:                  generateComplexIngress(generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.?)")),
 		},
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
-			if err := ValidateIngressPath(tt.copyIng, tt.disablePathTypeValidation, tt.additionalChars); (err != nil) != tt.wantErr {
+			if err := ValidateIngressPath(tt.copyIng, tt.EnablePathTypeValidation, tt.additionalChars); (err != nil) != tt.wantErr {
 				t.Errorf("ValidateIngressPath() error = %v, wantErr %v", err, tt.wantErr)
 			}
 		})
diff --git a/test/e2e/admission/admission.go b/test/e2e/admission/admission.go
index 5c037a0c5..e0f55df4e 100644
--- a/test/e2e/admission/admission.go
+++ b/test/e2e/admission/admission.go
@@ -160,9 +160,22 @@ var _ = framework.IngressNginxDescribe("[Serial] admission controller", func() {
 		assert.NotNil(ginkgo.GinkgoT(), err, "creating an ingress with invalid annotation value should return an error")
 	})
 
-	ginkgo.It("should reject ingress with bad characters and pathType != ImplementationSpecific", func() {
+	ginkgo.It("ADMISSION should not validate characters on ingress when validation of pathType is disabled", func() {
 		host := "admission-test"
 
+		f.UpdateNginxConfigMapData("enable-pathtype-validation", "false")
+
+		firstIngress := framework.NewSingleIngress("first-ingress", "/xpto*", host, f.Namespace, framework.EchoService, 80, nil)
+		firstIngress.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathPrefix
+		_, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), firstIngress, metav1.CreateOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "creating an ingress with regex chars on path and pathType validation disabled should be accepted")
+	})
+
+	ginkgo.It("ADMISSION should reject ingress with bad characters and pathType != ImplementationSpecific", func() {
+		host := "admission-test"
+
+		f.UpdateNginxConfigMapData("enable-pathtype-validation", "true")
+
 		firstIngress := framework.NewSingleIngress("first-ingress", "/xpto*", host, f.Namespace, framework.EchoService, 80, nil)
 		firstIngress.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathPrefix
 		_, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), firstIngress, metav1.CreateOptions{})
@@ -175,18 +188,7 @@ var _ = framework.IngressNginxDescribe("[Serial] admission controller", func() {
 
 	})
 
-	ginkgo.It("should not validate characters on ingress when validation of pathType is disabled", func() {
-		host := "admission-test"
-
-		f.UpdateNginxConfigMapData("disable-pathtype-validation", "true")
-
-		firstIngress := framework.NewSingleIngress("first-ingress", "/xpto*", host, f.Namespace, framework.EchoService, 80, nil)
-		firstIngress.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathPrefix
-		_, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), firstIngress, metav1.CreateOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "creating an ingress with regex chars on path and pathType validation disabled should be accepted")
-	})
-
-	ginkgo.It("should return an error if there is a forbidden value in some annotation", func() {
+	ginkgo.It("ADMISSION should return an error if there is a forbidden value in some annotation", func() {
 		host := "admission-test"
 
 		annotations := map[string]string{
diff --git a/build/run-e2e-suite.sh b/test/e2e/run-e2e-suite.sh
similarity index 97%
rename from build/run-e2e-suite.sh
rename to test/e2e/run-e2e-suite.sh
index ae38b5fcc..7920c0523 100755
--- a/build/run-e2e-suite.sh
+++ b/test/e2e/run-e2e-suite.sh
@@ -14,10 +14,16 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-if ! [ -z "$DEBUG" ]; then
+if [ -n "$DEBUG" ]; then
 	set -x
+else
+  trap cleanup EXIT
 fi
 
+function cleanup {
+  kubectl delete pod e2e 2>/dev/null || true
+}
+
 set -o errexit
 set -o nounset
 set -o pipefail
@@ -43,16 +49,11 @@ if [ "$missing" = true ]; then
   exit 1
 fi
 
-function cleanup {
-  kubectl delete pod e2e 2>/dev/null || true
-}
-trap cleanup EXIT
-
 E2E_CHECK_LEAKS=${E2E_CHECK_LEAKS:-}
 FOCUS=${FOCUS:-.*}
 
 BASEDIR=$(dirname "$0")
-NGINX_BASE_IMAGE=$(cat $BASEDIR/../NGINX_BASE)
+NGINX_BASE_IMAGE=$(cat $BASEDIR/../../NGINX_BASE)
 
 export E2E_CHECK_LEAKS
 export FOCUS
diff --git a/test/e2e/run.sh b/test/e2e/run-kind-e2e.sh
similarity index 62%
rename from test/e2e/run.sh
rename to test/e2e/run-kind-e2e.sh
index 17dad6c39..bb61706b4 100755
--- a/test/e2e/run.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -14,13 +14,6 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-KIND_LOG_LEVEL="1"
-
-if ! [ -z $DEBUG ]; then
-  set -x
-  KIND_LOG_LEVEL="6"
-fi
-
 set -o errexit
 set -o nounset
 set -o pipefail
@@ -31,45 +24,56 @@ cleanup() {
   fi
 
   kind delete cluster \
-    --verbosity=${KIND_LOG_LEVEL} \
-    --name ${KIND_CLUSTER_NAME}
+    --verbosity="${KIND_LOG_LEVEL}" \
+    --name "${KIND_CLUSTER_NAME}"
 }
 
-trap cleanup EXIT
+DEBUG=${DEBUG:=false}
 
+if [ "${DEBUG}" = "true" ]; then
+  set -x
+  KIND_LOG_LEVEL="6"
+else
+  trap cleanup EXIT
+fi
+
+KIND_LOG_LEVEL="1"
+IS_CHROOT="${IS_CHROOT:-false}"
 export KIND_CLUSTER_NAME=${KIND_CLUSTER_NAME:-ingress-nginx-dev}
+DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
+# Use 1.0.0-dev to make sure we use the latest configuration in the helm template
+export TAG=1.0.0-dev
+export ARCH=${ARCH:-amd64}
+export REGISTRY=ingress-controller
+NGINX_BASE_IMAGE=$(cat "$DIR"/../../NGINX_BASE)
+export NGINX_BASE_IMAGE=$NGINX_BASE_IMAGE
+export DOCKER_CLI_EXPERIMENTAL=enabled
+export KUBECONFIG="${KUBECONFIG:-$HOME/.kube/kind-config-$KIND_CLUSTER_NAME}"
+SKIP_INGRESS_IMAGE_CREATION="${SKIP_INGRESS_IMAGE_CREATION:-false}"
+SKIP_E2E_IMAGE_CREATION="${SKIP_E2E_IMAGE_CREATION:=false}"
+SKIP_CLUSTER_CREATION="${SKIP_CLUSTER_CREATION:-false}"
 
 if ! command -v kind --version &> /dev/null; then
   echo "kind is not installed. Use the package manager or visit the official site https://kind.sigs.k8s.io/"
   exit 1
 fi
 
-DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
-
-# Use 1.0.0-dev to make sure we use the latest configuration in the helm template
-export TAG=1.0.0-dev
-export ARCH=${ARCH:-amd64}
-export REGISTRY=ingress-controller
-
-NGINX_BASE_IMAGE=$(cat $DIR/../../NGINX_BASE)
-
 echo "Running e2e with nginx base image ${NGINX_BASE_IMAGE}"
 
-export NGINX_BASE_IMAGE=$NGINX_BASE_IMAGE
-
-export DOCKER_CLI_EXPERIMENTAL=enabled
-
-export KUBECONFIG="${KUBECONFIG:-$HOME/.kube/kind-config-$KIND_CLUSTER_NAME}"
-
-if [ "${SKIP_CLUSTER_CREATION:-false}" = "false" ]; then
+if [ "${SKIP_CLUSTER_CREATION}" = "false" ]; then
   echo "[dev-env] creating Kubernetes cluster with kind"
 
   export K8S_VERSION=${K8S_VERSION:-v1.25.2@sha256:9be91e9e9cdf116809841fc77ebdb8845443c4c72fe5218f3ae9eb57fdb4bace}
 
+  # delete the cluster if it exists
+  if kind get clusters | grep "${KIND_CLUSTER_NAME}"; then
+    kind delete cluster --name "${KIND_CLUSTER_NAME}"
+  fi
+
   kind create cluster \
-    --verbosity=${KIND_LOG_LEVEL} \
-    --name ${KIND_CLUSTER_NAME} \
-    --config ${DIR}/kind.yaml \
+    --verbosity="${KIND_LOG_LEVEL}" \
+    --name "${KIND_CLUSTER_NAME}" \
+    --config "${DIR}"/kind.yaml \
     --retain \
     --image "kindest/node:${K8S_VERSION}"
 
@@ -77,16 +81,26 @@ if [ "${SKIP_CLUSTER_CREATION:-false}" = "false" ]; then
   kubectl get nodes -o wide
 fi
 
-if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
+if [ "${SKIP_INGRESS_IMAGE_CREATION}" = "false" ]; then
+  echo "[dev-env] building image"
+  if [ "${IS_CHROOT}" = "true" ]; then
+    make -C "${DIR}"/../../ clean-image build image-chroot
+    docker tag ${REGISTRY}/controller-chroot:${TAG} ${REGISTRY}/controller:${TAG}
+  else
+    make -C "${DIR}"/../../ clean-image build image
+  fi
+
+  echo "[dev-env] .. done building controller images"
+fi
+
+if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
     go get github.com/onsi/ginkgo/v2/ginkgo@v2.6.1
   fi
 
-  echo "[dev-env] building image"
-  make -C ${DIR}/../../ clean-image build image image-chroot
   echo "[dev-env] .. done building controller images"
   echo "[dev-env] now building e2e-image.."
-  make -C ${DIR}/../e2e-image image
+  make -C "${DIR}"/../e2e-image image
   echo "[dev-env] ..done building e2e-image"
 fi
 
@@ -95,13 +109,7 @@ KIND_WORKERS=$(kind get nodes --name="${KIND_CLUSTER_NAME}" | grep worker | awk
 
 echo "[dev-env] copying docker images to cluster..."
 
-kind load docker-image --name="${KIND_CLUSTER_NAME}" --nodes=${KIND_WORKERS} nginx-ingress-controller:e2e
-
-if [ "${IS_CHROOT:-false}" = "true" ]; then
-   docker tag ${REGISTRY}/controller-chroot:${TAG} ${REGISTRY}/controller:${TAG}
-fi
-
-kind load docker-image --name="${KIND_CLUSTER_NAME}" --nodes=${KIND_WORKERS} ${REGISTRY}/controller:${TAG}
-
+kind load docker-image --name="${KIND_CLUSTER_NAME}" --nodes="${KIND_WORKERS}" nginx-ingress-controller:e2e
+kind load docker-image --name="${KIND_CLUSTER_NAME}" --nodes="${KIND_WORKERS}" "${REGISTRY}"/controller:"${TAG}"
 echo "[dev-env] running e2e tests..."
-make -C ${DIR}/../../ e2e-test
+make -C "${DIR}"/../../ e2e-test
\ No newline at end of file

From 8918135eeacbe90696ec8fd7f24e8c04203b46d3 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 31 Jan 2023 17:31:05 -0800
Subject: [PATCH 0590/1641] Bump k8s.io/klog/v2 from 2.80.1 to 2.90.0 (#9553)

Bumps [k8s.io/klog/v2](https://github.com/kubernetes/klog) from 2.80.1 to 2.90.0.
- [Release notes](https://github.com/kubernetes/klog/releases)
- [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes/klog/compare/v2.80.1...v2.90.0)

---
updated-dependencies:
- dependency-name: k8s.io/klog/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 03b3ebdb7..5224aefbe 100644
--- a/go.mod
+++ b/go.mod
@@ -38,7 +38,7 @@ require (
 	k8s.io/client-go v0.26.1
 	k8s.io/code-generator v0.26.1
 	k8s.io/component-base v0.26.1
-	k8s.io/klog/v2 v2.80.1
+	k8s.io/klog/v2 v2.90.0
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.14.2
 	sigs.k8s.io/mdtoc v1.1.0
diff --git a/go.sum b/go.sum
index 7588a51fb..0a7ed9440 100644
--- a/go.sum
+++ b/go.sum
@@ -756,8 +756,8 @@ k8s.io/component-base v0.26.1/go.mod h1:VHrLR0b58oC035w6YQiBSbtsf0ThuSwXP+p5dD/k
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d h1:U9tB195lKdzwqicbJvyJeOXV7Klv+wNAWENRnXEGi08=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
-k8s.io/klog/v2 v2.80.1 h1:atnLQ121W371wYYFawwYx1aEY2eUfs4l3J72wtgAwV4=
-k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/klog/v2 v2.90.0 h1:VkTxIV/FjRXn1fgNNcKGM8cfmL1Z33ZjXRTVxKCoF5M=
+k8s.io/klog/v2 v2.90.0/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 h1:+70TFaan3hfJzs+7VK2o+OGxg8HsuBr/5f6tVAjDu6E=
 k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280/go.mod h1:+Axhij7bCpeqhklhUTe3xmOn6bWxolyZEeyaFpjGtl4=
 k8s.io/utils v0.0.0-20221128185143-99ec85e7a448 h1:KTgPnR10d5zhztWptI952TNtt/4u5h3IzDXkdIMuo2Y=

From 141da0b1ec92d2fa959db539d849a0bde0c74e20 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 31 Jan 2023 17:33:06 -0800
Subject: [PATCH 0591/1641] Bump google.golang.org/grpc from 1.52.0 to 1.52.3
 (#9555)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.52.0 to 1.52.3.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.52.0...v1.52.3)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 5224aefbe..10b9e2fda 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.5.0
-	google.golang.org/grpc v1.52.0
+	google.golang.org/grpc v1.52.3
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index 0a7ed9440..6e370c655 100644
--- a/go.sum
+++ b/go.sum
@@ -679,8 +679,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.52.0 h1:kd48UiU7EHsV4rnLyOJRuP/Il/UHE7gdDAQ+SZI7nZk=
-google.golang.org/grpc v1.52.0/go.mod h1:pu6fVzoFb+NBYNAvQL08ic+lvB2IojljRYuun5vorUY=
+google.golang.org/grpc v1.52.3 h1:pf7sOysg4LdgBqduXveGKrcEwbStiK2rtfghdzlUYDQ=
+google.golang.org/grpc v1.52.3/go.mod h1:pu6fVzoFb+NBYNAvQL08ic+lvB2IojljRYuun5vorUY=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From 90c857d8e59124fc600be89ac80ee3fc6e9d930a Mon Sep 17 00:00:00 2001
From: James Strong <james.strong@chainguard.dev>
Date: Tue, 31 Jan 2023 21:16:48 -0500
Subject: [PATCH 0592/1641] build release 1.6.1 image

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index b7c0a9b1d..023604509 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.6.0
+v1.6.1

From 254b814985f8b46510fb1ab2c7f492ac76ad3b4f Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 1 Feb 2023 16:51:36 -0500
Subject: [PATCH 0593/1641] add lint on chart before release (#9570)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/helm.yaml | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 5d96507a1..2bd271bb2 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -25,6 +25,18 @@ jobs:
       - name: Checkout
         uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
+      - name: Run Artifact Hub lint
+        run: |
+          wget https://github.com/artifacthub/hub/releases/download/v1.5.0/ah_1.5.0_linux_amd64.tar.gz
+          echo 'ad0e44c6ea058ab6b85dbf582e88bad9fdbc64ded0d1dd4edbac65133e5c87da *ah_1.5.0_linux_amd64.tar.gz' | shasum -c
+          tar -xzvf ah_1.5.0_linux_amd64.tar.gz ah
+          ./ah lint -p charts/ingress-nginx || exit 1
+          rm -f ./ah ./ah_1.5.0_linux_amd64.tar.gz
+
+      - name: Lint
+        run: |
+          ./build/run-in-docker.sh ./hack/verify-chart-lint.sh
+
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
         with:

From 6c41f19b55ae950885eecd34511f4f1567f11f6a Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 2 Feb 2023 14:28:43 -0500
Subject: [PATCH 0594/1641] add path validation to implementation specific as
 well (#9573)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 pkg/util/ingress/ingress.go      | 8 +++++---
 pkg/util/ingress/ingress_test.go | 4 ++--
 2 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/pkg/util/ingress/ingress.go b/pkg/util/ingress/ingress.go
index acadad432..91243e2cc 100644
--- a/pkg/util/ingress/ingress.go
+++ b/pkg/util/ingress/ingress.go
@@ -282,9 +282,11 @@ func checkPath(paths []networkingv1.HTTPIngressPath, enablePathTypeValidation bo
 
 		switch pathType := *path.PathType; pathType {
 		case networkingv1.PathTypeImplementationSpecific:
-			//only match on regex chars per Ingress spec when path is implementation specific
-			if !regexSpecificChars.MatchString(path.Path) {
-				return fmt.Errorf("path %s of type %s contains invalid characters", path.Path, *path.PathType)
+			if enablePathTypeValidation {
+				//only match on regex chars per Ingress spec when path is implementation specific
+				if !regexSpecificChars.MatchString(path.Path) {
+					return fmt.Errorf("path %s of type %s contains invalid characters", path.Path, *path.PathType)
+				}
 			}
 
 		case networkingv1.PathTypeExact, networkingv1.PathTypePrefix:
diff --git a/pkg/util/ingress/ingress_test.go b/pkg/util/ingress/ingress_test.go
index 3bd7f1230..12c2ff1da 100644
--- a/pkg/util/ingress/ingress_test.go
+++ b/pkg/util/ingress/ingress_test.go
@@ -272,7 +272,7 @@ func TestValidateIngressPath(t *testing.T) {
 			name:                     "should reject path when the allowed additional set does not match",
 			wantErr:                  true,
 			additionalChars:          "().?",
-			EnablePathTypeValidation: false,
+			EnablePathTypeValidation: true,
 			copyIng:                  generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.+)"),
 		},
 		{
@@ -291,7 +291,7 @@ func TestValidateIngressPath(t *testing.T) {
 		{
 			name:                     "should block if at least one path is bad",
 			wantErr:                  true,
-			EnablePathTypeValidation: false,
+			EnablePathTypeValidation: true,
 			copyIng:                  generateComplexIngress(generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.?)")),
 		},
 	}

From 3348a6038edb72e19681ce273148d26ba54abea9 Mon Sep 17 00:00:00 2001
From: James Strong <james.strong@chainguard.dev>
Date: Thu, 2 Feb 2023 14:48:36 -0500
Subject: [PATCH 0595/1641] build 1.6.2 to fix #9569

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 023604509..98610aa42 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.6.1
+v1.6.2
\ No newline at end of file

From 60d9716b1f075c4eebc957cff831a5d351f8cfa2 Mon Sep 17 00:00:00 2001
From: Jongwoo Han <jongwooo.han@gmail.com>
Date: Mon, 6 Feb 2023 16:37:00 +0900
Subject: [PATCH 0596/1641] Replace deprecated command with environment file
 (#9581)

Signed-off-by: jongwooo <jongwooo.han@gmail.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 67fad3187..b19031ff6 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -42,7 +42,7 @@ jobs:
           echo "${SHORT_TAGS[0]},${SHORT_TAGS[1]},${SHORT_TAGS[2]}"
           TAGS_JSON="[\"${SHORT_TAGS[0]}\",\"${SHORT_TAGS[1]}\",\"${SHORT_TAGS[2]}\"]"
           echo "${TAGS_JSON}"
-          echo "::set-output name=TAGS::${TAGS_JSON}"
+          echo "TAGS=${TAGS_JSON}" >> $GITHUB_OUTPUT
 
   scan:
     runs-on: ubuntu-latest

From 460181b1de53f191df6d3f0a19915193cb253642 Mon Sep 17 00:00:00 2001
From: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Date: Wed, 18 Jan 2023 15:10:34 +0200
Subject: [PATCH 0597/1641] Bump `client-go` to remove dependence on
 go-autorest dependency (#9488)

* deps: bump k8s dependencies to remove go-autorest

* fix: update use of apiv1.LoadBalancerIngress

Due to changes in the Kubernetes API, we needed to switch to using
v1.IngressLoadBalancerIngress instead of apiv1.LoadBalancerIngress. The
struct is otherwise identical despite the name change.

* fix ingress status test cases

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
Signed-off-by: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Co-authored-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 go.mod                                 | 35 ++++-----
 go.sum                                 | 83 +++++++--------------
 internal/ingress/status/status.go      | 45 ++++++------
 internal/ingress/status/status_test.go | 99 +++++++++++++-------------
 test/e2e/status/update.go              |  8 +--
 5 files changed, 114 insertions(+), 156 deletions(-)

diff --git a/go.mod b/go.mod
index 2daf8e667..780cac648 100644
--- a/go.mod
+++ b/go.mod
@@ -30,14 +30,14 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.25.4
-	k8s.io/apiextensions-apiserver v0.25.0
-	k8s.io/apimachinery v0.25.4
-	k8s.io/apiserver v0.25.0
-	k8s.io/cli-runtime v0.25.0
-	k8s.io/client-go v0.25.4
-	k8s.io/code-generator v0.25.0
-	k8s.io/component-base v0.25.4
+	k8s.io/api v0.26.0
+	k8s.io/apiextensions-apiserver v0.26.0
+	k8s.io/apimachinery v0.26.0
+	k8s.io/apiserver v0.26.0
+	k8s.io/cli-runtime v0.26.0
+	k8s.io/client-go v0.26.0
+	k8s.io/code-generator v0.26.0
+	k8s.io/component-base v0.26.0
 	k8s.io/klog/v2 v2.80.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.13.1
@@ -45,17 +45,7 @@ require (
 )
 
 require (
-	cloud.google.com/go/compute v1.12.1 // indirect
-	cloud.google.com/go/compute/metadata v0.2.1 // indirect
-	github.com/Azure/go-autorest v14.2.0+incompatible // indirect
-	github.com/Azure/go-autorest/autorest v0.11.27 // indirect
-	github.com/Azure/go-autorest/autorest/adal v0.9.20 // indirect
-	github.com/Azure/go-autorest/autorest/date v0.3.0 // indirect
-	github.com/Azure/go-autorest/logger v0.2.1 // indirect
-	github.com/Azure/go-autorest/tracing v0.6.0 // indirect
 	github.com/BurntSushi/toml v1.0.0 // indirect
-	github.com/PuerkitoBio/purell v1.1.1 // indirect
-	github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/blang/semver/v4 v4.0.0 // indirect
 	github.com/cespare/xxhash/v2 v2.1.2 // indirect
@@ -70,11 +60,10 @@ require (
 	github.com/go-errors/errors v1.0.1 // indirect
 	github.com/go-logr/logr v1.2.3 // indirect
 	github.com/go-openapi/jsonpointer v0.19.5 // indirect
-	github.com/go-openapi/jsonreference v0.19.5 // indirect
+	github.com/go-openapi/jsonreference v0.20.0 // indirect
 	github.com/go-openapi/swag v0.19.14 // indirect
 	github.com/godbus/dbus/v5 v5.0.6 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
-	github.com/golang-jwt/jwt/v4 v4.2.0 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
 	github.com/golang/protobuf v1.5.2 // indirect
 	github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7 // indirect
@@ -123,9 +112,9 @@ require (
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
-	k8s.io/gengo v0.0.0-20211129171323-c02415ce4185 // indirect
-	k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1 // indirect
-	k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed // indirect
+	k8s.io/gengo v0.0.0-20220902162205-c0856e24416d // indirect
+	k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 // indirect
+	k8s.io/utils v0.0.0-20221107191617-1a15be271d1d // indirect
 	sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 // indirect
 	sigs.k8s.io/kustomize/api v0.12.1 // indirect
 	sigs.k8s.io/kustomize/kyaml v0.13.9 // indirect
diff --git a/go.sum b/go.sum
index 84a8bb106..f03756bab 100644
--- a/go.sum
+++ b/go.sum
@@ -19,10 +19,6 @@ cloud.google.com/go/bigquery v1.4.0/go.mod h1:S8dzgnTigyfTmLBfrtrhyYhwRxG72rYxvf
 cloud.google.com/go/bigquery v1.5.0/go.mod h1:snEHRnqQbz117VIFhE8bmtwIDY80NLUZUMb4Nv6dBIg=
 cloud.google.com/go/bigquery v1.7.0/go.mod h1://okPTzCYNXSlb24MZs83e2Do+h+VXtc4gLoIoXIAPc=
 cloud.google.com/go/bigquery v1.8.0/go.mod h1:J5hqkt3O0uAFnINi6JXValWIb1v0goeZM77hZzJN/fQ=
-cloud.google.com/go/compute v1.12.1 h1:gKVJMEyqV5c/UnpzjjQbo3Rjvvqpr9B1DFSbJC4OXr0=
-cloud.google.com/go/compute v1.12.1/go.mod h1:e8yNOBcBONZU1vJKCvCoDw/4JQsA0dpM4x/6PIIOocU=
-cloud.google.com/go/compute/metadata v0.2.1 h1:efOwf5ymceDhK6PKMnnrTHP4pppY5L22mle96M1yP48=
-cloud.google.com/go/compute/metadata v0.2.1/go.mod h1:jgHgmJd2RKBGzXqF5LR2EZMGxBkeanZ9wwa75XHJgOM=
 cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE=
 cloud.google.com/go/datastore v1.1.0/go.mod h1:umbIZjpQpHh4hmRpGhH4tLFup+FVzqBi1b3c64qFpCk=
 cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I=
@@ -35,30 +31,10 @@ cloud.google.com/go/storage v1.6.0/go.mod h1:N7U0C8pVQ/+NIKOBQyamJIeKQKkZ+mxpohl
 cloud.google.com/go/storage v1.8.0/go.mod h1:Wv1Oy7z6Yz3DshWRJFhqM/UCfaWIRTdp0RXyy7KQOVs=
 cloud.google.com/go/storage v1.10.0/go.mod h1:FLPqc6j+Ki4BU591ie1oL6qBQGu2Bl/tZ9ullr3+Kg0=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
-github.com/Azure/go-autorest v14.2.0+incompatible h1:V5VMDjClD3GiElqLWO7mz2MxNAK/vTfRHdAubSIPRgs=
-github.com/Azure/go-autorest v14.2.0+incompatible/go.mod h1:r+4oMnoxhatjLLJ6zxSWATqVooLgysK6ZNox3g/xq24=
-github.com/Azure/go-autorest/autorest v0.11.27 h1:F3R3q42aWytozkV8ihzcgMO4OA4cuqr3bNlsEuF6//A=
-github.com/Azure/go-autorest/autorest v0.11.27/go.mod h1:7l8ybrIdUmGqZMTD0sRtAr8NvbHjfofbf8RSP2q7w7U=
-github.com/Azure/go-autorest/autorest/adal v0.9.18/go.mod h1:XVVeme+LZwABT8K5Lc3hA4nAe8LDBVle26gTrguhhPQ=
-github.com/Azure/go-autorest/autorest/adal v0.9.20 h1:gJ3E98kMpFB1MFqQCvA1yFab8vthOeD4VlFRQULxahg=
-github.com/Azure/go-autorest/autorest/adal v0.9.20/go.mod h1:XVVeme+LZwABT8K5Lc3hA4nAe8LDBVle26gTrguhhPQ=
-github.com/Azure/go-autorest/autorest/date v0.3.0 h1:7gUk1U5M/CQbp9WoqinNzJar+8KY+LPI6wiWrP/myHw=
-github.com/Azure/go-autorest/autorest/date v0.3.0/go.mod h1:BI0uouVdmngYNUzGWeSYnokU+TrmwEsOqdt8Y6sso74=
-github.com/Azure/go-autorest/autorest/mocks v0.4.1/go.mod h1:LTp+uSrOhSkaKrUy935gNZuuIPPVsHlr9DSOxSayd+k=
-github.com/Azure/go-autorest/autorest/mocks v0.4.2 h1:PGN4EDXnuQbojHbU0UWoNvmu9AGVwYHG9/fkDYhtAfw=
-github.com/Azure/go-autorest/autorest/mocks v0.4.2/go.mod h1:Vy7OitM9Kei0i1Oj+LvyAWMXJHeKH1MVlzFugfVrmyU=
-github.com/Azure/go-autorest/logger v0.2.1 h1:IG7i4p/mDa2Ce4TRyAO8IHnVhAVF3RFU+ZtXWSmf4Tg=
-github.com/Azure/go-autorest/logger v0.2.1/go.mod h1:T9E3cAhj2VqvPOtCYAvby9aBXkZmbF5NWuPV8+WeEW8=
-github.com/Azure/go-autorest/tracing v0.6.0 h1:TYi4+3m5t6K48TGI9AUdb+IzbnSxvnvUMfuitfgcfuo=
-github.com/Azure/go-autorest/tracing v0.6.0/go.mod h1:+vhtPC754Xsa23ID7GlGsrdKBpUA79WCAKPPZVC2DeU=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/toml v1.0.0 h1:dtDWrepsVPfW9H/4y7dDgFc2MBUSeJhlaDtK13CxFlU=
 github.com/BurntSushi/toml v1.0.0/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
-github.com/PuerkitoBio/purell v1.1.1 h1:WEQqlqaGbrPkxLJWfBwQmfEAE1Z7ONdDLqrN38tNFfI=
-github.com/PuerkitoBio/purell v1.1.1/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
-github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 h1:d+Bc7a5rLufV/sSk/8dngufqelfh6jnri85riMAaF/M=
-github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578/go.mod h1:uGdkoq3SwY9Y+13GIhn11/XLaGBb4BfwItxLd5jeuXE=
 github.com/alecthomas/template v0.0.0-20160405071501-a0175ee3bccc/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
 github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
 github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
@@ -126,7 +102,6 @@ github.com/go-kit/log v0.1.0/go.mod h1:zbhenjAZHb184qTLMA9ZjW7ThYL0H2mk7Q6pNt4vb
 github.com/go-logfmt/logfmt v0.3.0/go.mod h1:Qt1PoO58o5twSAckw1HlFXLmHsOX5/0LbT9GBnD5lWE=
 github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V4qmtdjCk=
 github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A=
-github.com/go-logr/logr v0.1.0/go.mod h1:ixOQHD9gLJUVQQ2ZOR7zLEifBX6tGkNJF4QyIY7sIas=
 github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
 github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/logr v1.2.3 h1:2DntVwHkVopvECVRSlL5PSo9eG+cAkDCuckLubN+rq0=
@@ -135,8 +110,8 @@ github.com/go-logr/zapr v1.2.3 h1:a9vnzlIBPQBBkeaR9IuMUfmVOrQlkoC4YfPoFkX3T7A=
 github.com/go-openapi/jsonpointer v0.19.3/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
 github.com/go-openapi/jsonpointer v0.19.5 h1:gZr+CIYByUqjcgeLXnQu2gHYQC9o73G2XUeOFYEICuY=
 github.com/go-openapi/jsonpointer v0.19.5/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
-github.com/go-openapi/jsonreference v0.19.5 h1:1WJP/wi4OjB4iV8KVbH73rQaoialJrqv8gitZLxGLtM=
-github.com/go-openapi/jsonreference v0.19.5/go.mod h1:RdybgQwPxbL4UEjuAruzK1x3nE69AqPYEJeo/TWfEeg=
+github.com/go-openapi/jsonreference v0.20.0 h1:MYlu0sBgChmCfJxxUKZ8g1cPWFOB37YSZqewK7OKeyA=
+github.com/go-openapi/jsonreference v0.20.0/go.mod h1:Ag74Ico3lPc+zR+qjn4XBUmXymS4zJbYVCZmcgkasdo=
 github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh66Z9tfKk=
 github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5Fng=
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
@@ -147,9 +122,6 @@ github.com/godbus/dbus/v5 v5.0.6/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5x
 github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
-github.com/golang-jwt/jwt/v4 v4.0.0/go.mod h1:/xlHOz8bRuivTWchD4jCa+NbatV+wEUSzwAxVc6locg=
-github.com/golang-jwt/jwt/v4 v4.2.0 h1:besgBTC8w8HjP6NzQdxwKH9Z5oQMZ24ThTrHp3cZ8eU=
-github.com/golang-jwt/jwt/v4 v4.2.0/go.mod h1:/xlHOz8bRuivTWchD4jCa+NbatV+wEUSzwAxVc6locg=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
 github.com/golang/groupcache v0.0.0-20190702054246-869f871628b6/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20191227052852-215e87163ea7/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
@@ -362,7 +334,6 @@ github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6Mwd
 github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
 github.com/sirupsen/logrus v1.8.1 h1:dJKuHgqk1NNQlqoA6BTlM1Wf9DOH3NBjQyu0h9+AZZE=
 github.com/sirupsen/logrus v1.8.1/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
-github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
 github.com/spf13/cobra v1.6.1 h1:o94oiPyS4KD1mPy2fmcYYHHfCxLqYjJOhGsCHFZtEzA=
 github.com/spf13/cobra v1.6.1/go.mod h1:IOw/AERYS7UzyrGinqmz6HLUo219MORXGxhbaJUqzrY=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
@@ -421,8 +392,6 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.0.0-20211215153901-e495a2d5b3d3/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.5.0 h1:U/0M97KRkSFvyD/3FSmdP5W5swImpNgle/EHFhOsQPE=
 golang.org/x/crypto v0.5.0/go.mod h1:NK/OQwhpMQP3MwtdjgLlYHnH9ebylxKWv3e0fK+mkQU=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
@@ -471,7 +440,6 @@ golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190628185345-da137c7871d7/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190724013045-ca1201d0de80/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200114155413-6afb5195e5aa/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200202094626-16171245cfb2/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
@@ -490,7 +458,6 @@ golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.5.0 h1:GyT4nK/YDHSqa1c4753ouYCDajOYKTja9Xb/OHtgvSw=
 golang.org/x/net v0.5.0/go.mod h1:DivGGAXEgPSlEBzxGzZI+ZLohi+xUj054jfeKui00ws=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
@@ -511,7 +478,6 @@ golang.org/x/sync v0.0.0-20200317015054-43a5402ce75a/go.mod h1:RxMgew5VJxzue5/jJ
 golang.org/x/sync v0.0.0-20200625203802-6e8e738ad208/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201207232520-09787c993a3a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.1.0 h1:wsuoTGHzEhffawBOhz5CYhcrV4IdKZbEyZjBMuTp12o=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20181116152217-5ac8a444bdc5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
@@ -750,32 +716,31 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.25.4 h1:3YO8J4RtmG7elEgaWMb4HgmpS2CfY1QlaOz9nwB+ZSs=
-k8s.io/api v0.25.4/go.mod h1:IG2+RzyPQLllQxnhzD8KQNEu4c4YvyDTpSMztf4A0OQ=
-k8s.io/apiextensions-apiserver v0.25.0 h1:CJ9zlyXAbq0FIW8CD7HHyozCMBpDSiH7EdrSTCZcZFY=
-k8s.io/apiextensions-apiserver v0.25.0/go.mod h1:3pAjZiN4zw7R8aZC5gR0y3/vCkGlAjCazcg1me8iB/E=
-k8s.io/apimachinery v0.25.4 h1:CtXsuaitMESSu339tfhVXhQrPET+EiWnIY1rcurKnAc=
-k8s.io/apimachinery v0.25.4/go.mod h1:jaF9C/iPNM1FuLl7Zuy5b9v+n35HGSh6AQ4HYRkCqwo=
-k8s.io/apiserver v0.25.0 h1:8kl2ifbNffD440MyvHtPaIz1mw4mGKVgWqM0nL+oyu4=
-k8s.io/apiserver v0.25.0/go.mod h1:BKwsE+PTC+aZK+6OJQDPr0v6uS91/HWxX7evElAH6xo=
-k8s.io/cli-runtime v0.25.0 h1:XBnTc2Fi+w818jcJGzhiJKQuXl8479sZ4FhtV5hVJ1Q=
-k8s.io/cli-runtime v0.25.0/go.mod h1:bHOI5ZZInRHhbq12OdUiYZQN8ml8aKZLwQgt9QlLINw=
-k8s.io/client-go v0.25.4 h1:3RNRDffAkNU56M/a7gUfXaEzdhZlYhoW8dgViGy5fn8=
-k8s.io/client-go v0.25.4/go.mod h1:8trHCAC83XKY0wsBIpbirZU4NTUpbuhc2JnI7OruGZw=
-k8s.io/code-generator v0.25.0 h1:QP8fJuXu882ztf6dsqJsso/Btm94pMd68TAZC1rE6KI=
-k8s.io/code-generator v0.25.0/go.mod h1:B6jZgI3DvDFAualltPitbYMQ74NjaCFxum3YeKZZ+3w=
-k8s.io/component-base v0.25.4 h1:n1bjg9Yt+G1C0WnIDJmg2fo6wbEU1UGMRiQSjmj7hNQ=
-k8s.io/component-base v0.25.4/go.mod h1:nnZJU8OP13PJEm6/p5V2ztgX2oyteIaAGKGMYb2L2cY=
-k8s.io/gengo v0.0.0-20211129171323-c02415ce4185 h1:TT1WdmqqXareKxZ/oNXEUSwKlLiHzPMyB0t8BaFeBYI=
-k8s.io/gengo v0.0.0-20211129171323-c02415ce4185/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
-k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
+k8s.io/api v0.26.0 h1:IpPlZnxBpV1xl7TGk/X6lFtpgjgntCg8PJ+qrPHAC7I=
+k8s.io/api v0.26.0/go.mod h1:k6HDTaIFC8yn1i6pSClSqIwLABIcLV9l5Q4EcngKnQg=
+k8s.io/apiextensions-apiserver v0.26.0 h1:Gy93Xo1eg2ZIkNX/8vy5xviVSxwQulsnUdQ00nEdpDo=
+k8s.io/apiextensions-apiserver v0.26.0/go.mod h1:7ez0LTiyW5nq3vADtK6C3kMESxadD51Bh6uz3JOlqWQ=
+k8s.io/apimachinery v0.26.0 h1:1feANjElT7MvPqp0JT6F3Ss6TWDwmcjLypwoPpEf7zg=
+k8s.io/apimachinery v0.26.0/go.mod h1:tnPmbONNJ7ByJNz9+n9kMjNP8ON+1qoAIIC70lztu74=
+k8s.io/apiserver v0.26.0 h1:q+LqIK5EZwdznGZb8bq0+a+vCqdeEEe4Ux3zsOjbc4o=
+k8s.io/apiserver v0.26.0/go.mod h1:aWhlLD+mU+xRo+zhkvP/gFNbShI4wBDHS33o0+JGI84=
+k8s.io/cli-runtime v0.26.0 h1:aQHa1SyUhpqxAw1fY21x2z2OS5RLtMJOCj7tN4oq8mw=
+k8s.io/cli-runtime v0.26.0/go.mod h1:o+4KmwHzO/UK0wepE1qpRk6l3o60/txUZ1fEXWGIKTY=
+k8s.io/client-go v0.26.0 h1:lT1D3OfO+wIi9UFolCrifbjUUgu7CpLca0AD8ghRLI8=
+k8s.io/client-go v0.26.0/go.mod h1:I2Sh57A79EQsDmn7F7ASpmru1cceh3ocVT9KlX2jEZg=
+k8s.io/code-generator v0.26.0 h1:ZDY+7Gic9p/lACgD1G72gQg2CvNGeAYZTPIncv+iALM=
+k8s.io/code-generator v0.26.0/go.mod h1:OMoJ5Dqx1wgaQzKgc+ZWaZPfGjdRq/Y3WubFrZmeI3I=
+k8s.io/component-base v0.26.0 h1:0IkChOCohtDHttmKuz+EP3j3+qKmV55rM9gIFTXA7Vs=
+k8s.io/component-base v0.26.0/go.mod h1:lqHwlfV1/haa14F/Z5Zizk5QmzaVf23nQzCwVOQpfC8=
+k8s.io/gengo v0.0.0-20220902162205-c0856e24416d h1:U9tB195lKdzwqicbJvyJeOXV7Klv+wNAWENRnXEGi08=
+k8s.io/gengo v0.0.0-20220902162205-c0856e24416d/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
 k8s.io/klog/v2 v2.80.1 h1:atnLQ121W371wYYFawwYx1aEY2eUfs4l3J72wtgAwV4=
 k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
-k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1 h1:MQ8BAZPZlWk3S9K4a9NCkIFQtZShWqoha7snGixVgEA=
-k8s.io/kube-openapi v0.0.0-20220803162953-67bda5d908f1/go.mod h1:C/N6wCaBHeBHkHUesQOQy2/MZqGgMAFPqGsGQLdbZBU=
-k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed h1:jAne/RjBTyawwAy0utX5eqigAwz/lQhTmy+Hr/Cpue4=
-k8s.io/utils v0.0.0-20220728103510-ee6ede2d64ed/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 h1:+70TFaan3hfJzs+7VK2o+OGxg8HsuBr/5f6tVAjDu6E=
+k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280/go.mod h1:+Axhij7bCpeqhklhUTe3xmOn6bWxolyZEeyaFpjGtl4=
+k8s.io/utils v0.0.0-20221107191617-1a15be271d1d h1:0Smp/HP1OH4Rvhe+4B8nWGERtlqAGSftbSbbmm45oFs=
+k8s.io/utils v0.0.0-20221107191617-1a15be271d1d/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
diff --git a/internal/ingress/status/status.go b/internal/ingress/status/status.go
index 2e53682a0..eac1f6cb0 100644
--- a/internal/ingress/status/status.go
+++ b/internal/ingress/status/status.go
@@ -19,6 +19,7 @@ package status
 import (
 	"context"
 	"fmt"
+	v1 "k8s.io/api/networking/v1"
 	"net"
 	"regexp"
 	"sort"
@@ -128,7 +129,7 @@ func (s statusSync) Shutdown() {
 	}
 
 	klog.InfoS("removing value from ingress status", "address", addrs)
-	s.updateStatus([]apiv1.LoadBalancerIngress{})
+	s.updateStatus([]v1.IngressLoadBalancerIngress{})
 }
 
 func (s *statusSync) sync(key interface{}) error {
@@ -160,21 +161,21 @@ func NewStatusSyncer(config Config) Syncer {
 	return st
 }
 
-func nameOrIPToLoadBalancerIngress(nameOrIP string) apiv1.LoadBalancerIngress {
+func nameOrIPToLoadBalancerIngress(nameOrIP string) v1.IngressLoadBalancerIngress {
 	if net.ParseIP(nameOrIP) != nil {
-		return apiv1.LoadBalancerIngress{IP: nameOrIP}
+		return v1.IngressLoadBalancerIngress{IP: nameOrIP}
 	}
 
-	return apiv1.LoadBalancerIngress{Hostname: nameOrIP}
+	return v1.IngressLoadBalancerIngress{Hostname: nameOrIP}
 }
 
 // runningAddresses returns a list of IP addresses and/or FQDN where the
 // ingress controller is currently running
-func (s *statusSync) runningAddresses() ([]apiv1.LoadBalancerIngress, error) {
+func (s *statusSync) runningAddresses() ([]v1.IngressLoadBalancerIngress, error) {
 	if s.PublishStatusAddress != "" {
 		re := regexp.MustCompile(`,\s*`)
 		multipleAddrs := re.Split(s.PublishStatusAddress, -1)
-		addrs := make([]apiv1.LoadBalancerIngress, len(multipleAddrs))
+		addrs := make([]v1.IngressLoadBalancerIngress, len(multipleAddrs))
 		for i, addr := range multipleAddrs {
 			addrs[i] = nameOrIPToLoadBalancerIngress(addr)
 		}
@@ -193,7 +194,7 @@ func (s *statusSync) runningAddresses() ([]apiv1.LoadBalancerIngress, error) {
 		return nil, err
 	}
 
-	addrs := make([]apiv1.LoadBalancerIngress, 0)
+	addrs := make([]v1.IngressLoadBalancerIngress, 0)
 	for i := range pods.Items {
 		pod := pods.Items[i]
 		// only Running pods are valid
@@ -250,7 +251,7 @@ func (s *statusSync) isRunningMultiplePods() bool {
 
 // standardizeLoadBalancerIngresses sorts the list of loadbalancer by
 // IP
-func standardizeLoadBalancerIngresses(lbi []apiv1.LoadBalancerIngress) []apiv1.LoadBalancerIngress {
+func standardizeLoadBalancerIngresses(lbi []v1.IngressLoadBalancerIngress) []v1.IngressLoadBalancerIngress {
 	sort.SliceStable(lbi, func(a, b int) bool {
 		return lbi[a].IP < lbi[b].IP
 	})
@@ -259,7 +260,7 @@ func standardizeLoadBalancerIngresses(lbi []apiv1.LoadBalancerIngress) []apiv1.L
 }
 
 // updateStatus changes the status information of Ingress rules
-func (s *statusSync) updateStatus(newIngressPoint []apiv1.LoadBalancerIngress) {
+func (s *statusSync) updateStatus(newIngressPoint []v1.IngressLoadBalancerIngress) {
 	ings := s.IngressLister.ListIngresses()
 
 	p := pool.NewLimited(10)
@@ -283,7 +284,7 @@ func (s *statusSync) updateStatus(newIngressPoint []apiv1.LoadBalancerIngress) {
 	batch.WaitAll()
 }
 
-func runUpdate(ing *ingress.Ingress, status []apiv1.LoadBalancerIngress,
+func runUpdate(ing *ingress.Ingress, status []v1.IngressLoadBalancerIngress,
 	client clientset.Interface) pool.WorkFunc {
 	return func(wu pool.WorkUnit) (interface{}, error) {
 		if wu.IsCancelled() {
@@ -307,7 +308,7 @@ func runUpdate(ing *ingress.Ingress, status []apiv1.LoadBalancerIngress,
 	}
 }
 
-func lessLoadBalancerIngress(addrs []apiv1.LoadBalancerIngress) func(int, int) bool {
+func lessLoadBalancerIngress(addrs []v1.IngressLoadBalancerIngress) func(int, int) bool {
 	return func(a, b int) bool {
 		switch strings.Compare(addrs[a].Hostname, addrs[b].Hostname) {
 		case -1:
@@ -319,7 +320,7 @@ func lessLoadBalancerIngress(addrs []apiv1.LoadBalancerIngress) func(int, int) b
 	}
 }
 
-func ingressSliceEqual(lhs, rhs []apiv1.LoadBalancerIngress) bool {
+func ingressSliceEqual(lhs, rhs []v1.IngressLoadBalancerIngress) bool {
 	if len(lhs) != len(rhs) {
 		return false
 	}
@@ -336,7 +337,7 @@ func ingressSliceEqual(lhs, rhs []apiv1.LoadBalancerIngress) bool {
 	return true
 }
 
-func statusAddressFromService(service string, kubeClient clientset.Interface) ([]apiv1.LoadBalancerIngress, error) {
+func statusAddressFromService(service string, kubeClient clientset.Interface) ([]v1.IngressLoadBalancerIngress, error) {
 	ns, name, _ := k8s.ParseNameNS(service)
 	svc, err := kubeClient.CoreV1().Services(ns).Get(context.TODO(), name, metav1.GetOptions{})
 	if err != nil {
@@ -345,28 +346,28 @@ func statusAddressFromService(service string, kubeClient clientset.Interface) ([
 
 	switch svc.Spec.Type {
 	case apiv1.ServiceTypeExternalName:
-		return []apiv1.LoadBalancerIngress{{
+		return []v1.IngressLoadBalancerIngress{{
 			Hostname: svc.Spec.ExternalName,
 		}}, nil
 	case apiv1.ServiceTypeClusterIP:
-		return []apiv1.LoadBalancerIngress{{
+		return []v1.IngressLoadBalancerIngress{{
 			IP: svc.Spec.ClusterIP,
 		}}, nil
 	case apiv1.ServiceTypeNodePort:
 		if svc.Spec.ExternalIPs == nil {
-			return []apiv1.LoadBalancerIngress{{
+			return []v1.IngressLoadBalancerIngress{{
 				IP: svc.Spec.ClusterIP,
 			}}, nil
 		}
-		addrs := make([]apiv1.LoadBalancerIngress, len(svc.Spec.ExternalIPs))
+		addrs := make([]v1.IngressLoadBalancerIngress, len(svc.Spec.ExternalIPs))
 		for i, ip := range svc.Spec.ExternalIPs {
-			addrs[i] = apiv1.LoadBalancerIngress{IP: ip}
+			addrs[i] = v1.IngressLoadBalancerIngress{IP: ip}
 		}
 		return addrs, nil
 	case apiv1.ServiceTypeLoadBalancer:
-		addrs := make([]apiv1.LoadBalancerIngress, len(svc.Status.LoadBalancer.Ingress))
+		addrs := make([]v1.IngressLoadBalancerIngress, len(svc.Status.LoadBalancer.Ingress))
 		for i, ingress := range svc.Status.LoadBalancer.Ingress {
-			addrs[i] = apiv1.LoadBalancerIngress{}
+			addrs[i] = v1.IngressLoadBalancerIngress{}
 			if ingress.Hostname != "" {
 				addrs[i].Hostname = ingress.Hostname
 			}
@@ -376,7 +377,7 @@ func statusAddressFromService(service string, kubeClient clientset.Interface) ([
 		}
 		for _, ip := range svc.Spec.ExternalIPs {
 			if !stringInIngresses(ip, addrs) {
-				addrs = append(addrs, apiv1.LoadBalancerIngress{IP: ip})
+				addrs = append(addrs, v1.IngressLoadBalancerIngress{IP: ip})
 			}
 		}
 		return addrs, nil
@@ -386,7 +387,7 @@ func statusAddressFromService(service string, kubeClient clientset.Interface) ([
 }
 
 // stringInSlice returns true if s is in list
-func stringInIngresses(s string, list []apiv1.LoadBalancerIngress) bool {
+func stringInIngresses(s string, list []v1.IngressLoadBalancerIngress) bool {
 	for _, v := range list {
 		if v.IP == s || v.Hostname == s {
 			return true
diff --git a/internal/ingress/status/status_test.go b/internal/ingress/status/status_test.go
index d4ef09e7c..3dd56f37d 100644
--- a/internal/ingress/status/status_test.go
+++ b/internal/ingress/status/status_test.go
@@ -34,8 +34,8 @@ import (
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
-func buildLoadBalancerIngressByIP() []apiv1.LoadBalancerIngress {
-	return []apiv1.LoadBalancerIngress{
+func buildLoadBalancerIngressByIP() []networking.IngressLoadBalancerIngress {
+	return []networking.IngressLoadBalancerIngress{
 		{
 			IP:       "10.0.0.1",
 			Hostname: "foo1",
@@ -123,17 +123,20 @@ func buildSimpleClientSet() *testclient.Clientset {
 			},
 		}},
 		&apiv1.ServiceList{Items: []apiv1.Service{
-			{
-				ObjectMeta: metav1.ObjectMeta{
-					Name:      "foo",
-					Namespace: apiv1.NamespaceDefault,
-				},
-				Status: apiv1.ServiceStatus{
-					LoadBalancer: apiv1.LoadBalancerStatus{
-						Ingress: buildLoadBalancerIngressByIP(),
-					},
-				},
-			},
+			// This is commented out as the ServiceStatus.LoadBalancer field expects a LoadBalancerStatus object
+			// which is incompatible with the current Ingress struct which expects a IngressLoadBalancerStatus object
+			// TODO: update this service when the ServiceStatus struct gets updated
+			//{
+			//	ObjectMeta: metav1.ObjectMeta{
+			//		Name:      "foo",
+			//		Namespace: apiv1.NamespaceDefault,
+			//	},
+			//	Status: apiv1.ServiceStatus{
+			//		LoadBalancer: apiv1.LoadBalancerStatus{
+			//			Ingress: buildLoadBalancerIngressByIP(),
+			//		},
+			//	},
+			//},
 			{
 				ObjectMeta: metav1.ObjectMeta{
 					Name:      "foo_non_exist",
@@ -199,8 +202,8 @@ func buildExtensionsIngresses() []networking.Ingress {
 				Namespace: apiv1.NamespaceDefault,
 			},
 			Status: networking.IngressStatus{
-				LoadBalancer: apiv1.LoadBalancerStatus{
-					Ingress: []apiv1.LoadBalancerIngress{
+				LoadBalancer: networking.IngressLoadBalancerStatus{
+					Ingress: []networking.IngressLoadBalancerIngress{
 						{
 							IP:       "10.0.0.1",
 							Hostname: "foo1",
@@ -218,8 +221,8 @@ func buildExtensionsIngresses() []networking.Ingress {
 				},
 			},
 			Status: networking.IngressStatus{
-				LoadBalancer: apiv1.LoadBalancerStatus{
-					Ingress: []apiv1.LoadBalancerIngress{
+				LoadBalancer: networking.IngressLoadBalancerStatus{
+					Ingress: []networking.IngressLoadBalancerIngress{
 						{
 							IP:       "0.0.0.0",
 							Hostname: "foo.bar.com",
@@ -234,8 +237,8 @@ func buildExtensionsIngresses() []networking.Ingress {
 				Namespace: apiv1.NamespaceDefault,
 			},
 			Status: networking.IngressStatus{
-				LoadBalancer: apiv1.LoadBalancerStatus{
-					Ingress: []apiv1.LoadBalancerIngress{},
+				LoadBalancer: networking.IngressLoadBalancerStatus{
+					Ingress: []networking.IngressLoadBalancerIngress{},
 				},
 			},
 		},
@@ -261,7 +264,7 @@ func (til *testIngressLister) ListIngresses() []*ingress.Ingress {
 				Namespace: apiv1.NamespaceDefault,
 			},
 			Status: networking.IngressStatus{
-				LoadBalancer: apiv1.LoadBalancerStatus{
+				LoadBalancer: networking.IngressLoadBalancerStatus{
 					Ingress: buildLoadBalancerIngressByIP(),
 				},
 			},
@@ -325,7 +328,7 @@ func TestStatusActions(t *testing.T) {
 	fk.sync("just-test")
 	// PublishService is empty, so the running address is: ["11.0.0.2"]
 	// after updated, the ingress's ip should only be "11.0.0.2"
-	newIPs := []apiv1.LoadBalancerIngress{{
+	newIPs := []networking.IngressLoadBalancerIngress{{
 		IP: "11.0.0.2",
 	}}
 	fooIngress1, err1 := fk.Client.NetworkingV1().Ingresses(apiv1.NamespaceDefault).Get(context.TODO(), "foo_ingress_1", metav1.GetOptions{})
@@ -342,7 +345,7 @@ func TestStatusActions(t *testing.T) {
 	// execute shutdown
 	fk.Shutdown()
 	// ingress should be empty
-	newIPs2 := []apiv1.LoadBalancerIngress{}
+	var newIPs2 []networking.IngressLoadBalancerIngress
 	fooIngress2, err2 := fk.Client.NetworkingV1().Ingresses(apiv1.NamespaceDefault).Get(context.TODO(), "foo_ingress_1", metav1.GetOptions{})
 	if err2 != nil {
 		t.Fatalf("unexpected error")
@@ -382,7 +385,7 @@ func TestKeyfunc(t *testing.T) {
 func TestRunningAddressesWithPublishService(t *testing.T) {
 	testCases := map[string]struct {
 		fakeClient  *testclient.Clientset
-		expected    []apiv1.LoadBalancerIngress
+		expected    []networking.IngressLoadBalancerIngress
 		errExpected bool
 	}{
 		"service type ClusterIP": {
@@ -416,7 +419,7 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 				},
 				},
 			),
-			[]apiv1.LoadBalancerIngress{
+			[]networking.IngressLoadBalancerIngress{
 				{IP: "1.1.1.1"},
 			},
 			false,
@@ -437,7 +440,7 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 				},
 				},
 			),
-			[]apiv1.LoadBalancerIngress{
+			[]networking.IngressLoadBalancerIngress{
 				{IP: "1.1.1.1"},
 			},
 			false,
@@ -458,7 +461,7 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 				},
 				},
 			),
-			[]apiv1.LoadBalancerIngress{
+			[]networking.IngressLoadBalancerIngress{
 				{Hostname: "foo.bar"},
 			},
 			false,
@@ -495,7 +498,7 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 				},
 				},
 			),
-			[]apiv1.LoadBalancerIngress{
+			[]networking.IngressLoadBalancerIngress{
 				{IP: "10.0.0.1"},
 				{Hostname: "foo"},
 				{
@@ -530,7 +533,7 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 				},
 				},
 			),
-			[]apiv1.LoadBalancerIngress{
+			[]networking.IngressLoadBalancerIngress{
 				{IP: "10.0.0.1"},
 			},
 			false,
@@ -568,7 +571,7 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 			}
 
 			if ra == nil {
-				t.Fatalf("returned nil but expected valid []apiv1.LoadBalancerIngress")
+				t.Fatalf("returned nil but expected valid []networking.IngressLoadBalancerIngress")
 			}
 
 			if !reflect.DeepEqual(tc.expected, ra) {
@@ -584,7 +587,7 @@ func TestRunningAddressesWithPods(t *testing.T) {
 
 	r, _ := fk.runningAddresses()
 	if r == nil {
-		t.Fatalf("returned nil but expected valid []apiv1.LoadBalancerIngress")
+		t.Fatalf("returned nil but expected valid []networking.IngressLoadBalancerIngress")
 	}
 	rl := len(r)
 	if len(r) != 1 {
@@ -592,7 +595,7 @@ func TestRunningAddressesWithPods(t *testing.T) {
 	}
 	rv := r[0]
 	if rv.IP != "11.0.0.2" {
-		t.Errorf("returned %v but expected %v", rv, apiv1.LoadBalancerIngress{IP: "11.0.0.2"})
+		t.Errorf("returned %v but expected %v", rv, networking.IngressLoadBalancerIngress{IP: "11.0.0.2"})
 	}
 }
 
@@ -602,7 +605,7 @@ func TestRunningAddressesWithPublishStatusAddress(t *testing.T) {
 
 	ra, _ := fk.runningAddresses()
 	if ra == nil {
-		t.Fatalf("returned nil but expected valid []apiv1.LoadBalancerIngress")
+		t.Fatalf("returned nil but expected valid []networking.IngressLoadBalancerIngress")
 	}
 	rl := len(ra)
 	if len(ra) != 1 {
@@ -610,7 +613,7 @@ func TestRunningAddressesWithPublishStatusAddress(t *testing.T) {
 	}
 	rv := ra[0]
 	if rv.IP != "127.0.0.1" {
-		t.Errorf("returned %v but expected %v", rv, apiv1.LoadBalancerIngress{IP: "127.0.0.1"})
+		t.Errorf("returned %v but expected %v", rv, networking.IngressLoadBalancerIngress{IP: "127.0.0.1"})
 	}
 }
 
@@ -620,7 +623,7 @@ func TestRunningAddressesWithPublishStatusAddresses(t *testing.T) {
 
 	ra, _ := fk.runningAddresses()
 	if ra == nil {
-		t.Fatalf("returned nil but expected valid []apiv1.LoadBalancerIngress")
+		t.Fatalf("returned nil but expected valid []networking.IngressLoadBalancerIngress")
 	}
 	rl := len(ra)
 	if len(ra) != 2 {
@@ -629,10 +632,10 @@ func TestRunningAddressesWithPublishStatusAddresses(t *testing.T) {
 	rv := ra[0]
 	rv2 := ra[1]
 	if rv.IP != "127.0.0.1" {
-		t.Errorf("returned %v but expected %v", rv, apiv1.LoadBalancerIngress{IP: "127.0.0.1"})
+		t.Errorf("returned %v but expected %v", rv, networking.IngressLoadBalancerIngress{IP: "127.0.0.1"})
 	}
 	if rv2.IP != "1.1.1.1" {
-		t.Errorf("returned %v but expected %v", rv2, apiv1.LoadBalancerIngress{IP: "1.1.1.1"})
+		t.Errorf("returned %v but expected %v", rv2, networking.IngressLoadBalancerIngress{IP: "1.1.1.1"})
 	}
 }
 
@@ -642,7 +645,7 @@ func TestRunningAddressesWithPublishStatusAddressesAndSpaces(t *testing.T) {
 
 	ra, _ := fk.runningAddresses()
 	if ra == nil {
-		t.Fatalf("returned nil but expected valid []apiv1.LoadBalancerIngresst")
+		t.Fatalf("returned nil but expected valid []networking.IngressLoadBalancerIngresst")
 	}
 	rl := len(ra)
 	if len(ra) != 2 {
@@ -651,15 +654,15 @@ func TestRunningAddressesWithPublishStatusAddressesAndSpaces(t *testing.T) {
 	rv := ra[0]
 	rv2 := ra[1]
 	if rv.IP != "127.0.0.1" {
-		t.Errorf("returned %v but expected %v", rv, apiv1.LoadBalancerIngress{IP: "127.0.0.1"})
+		t.Errorf("returned %v but expected %v", rv, networking.IngressLoadBalancerIngress{IP: "127.0.0.1"})
 	}
 	if rv2.IP != "1.1.1.1" {
-		t.Errorf("returned %v but expected %v", rv2, apiv1.LoadBalancerIngress{IP: "1.1.1.1"})
+		t.Errorf("returned %v but expected %v", rv2, networking.IngressLoadBalancerIngress{IP: "1.1.1.1"})
 	}
 }
 
 func TestStandardizeLoadBalancerIngresses(t *testing.T) {
-	fkEndpoints := []apiv1.LoadBalancerIngress{
+	fkEndpoints := []networking.IngressLoadBalancerIngress{
 		{IP: "2001:db8::68"},
 		{IP: "10.0.0.1"},
 		{Hostname: "opensource-k8s-ingress"},
@@ -668,7 +671,7 @@ func TestStandardizeLoadBalancerIngresses(t *testing.T) {
 	r := standardizeLoadBalancerIngresses(fkEndpoints)
 
 	if r == nil {
-		t.Fatalf("returned nil but expected a valid []apiv1.LoadBalancerIngress")
+		t.Fatalf("returned nil but expected a valid []networking.IngressLoadBalancerIngress")
 	}
 	rl := len(r)
 	if rl != 3 {
@@ -676,21 +679,21 @@ func TestStandardizeLoadBalancerIngresses(t *testing.T) {
 	}
 	re1 := r[0]
 	if re1.Hostname != "opensource-k8s-ingress" {
-		t.Fatalf("returned %v but expected %v", re1, apiv1.LoadBalancerIngress{Hostname: "opensource-k8s-ingress"})
+		t.Fatalf("returned %v but expected %v", re1, networking.IngressLoadBalancerIngress{Hostname: "opensource-k8s-ingress"})
 	}
 	re2 := r[1]
 	if re2.IP != "10.0.0.1" {
-		t.Fatalf("returned %v but expected %v", re2, apiv1.LoadBalancerIngress{IP: "10.0.0.1"})
+		t.Fatalf("returned %v but expected %v", re2, networking.IngressLoadBalancerIngress{IP: "10.0.0.1"})
 	}
 	re3 := r[2]
 	if re3.IP != "2001:db8::68" {
-		t.Fatalf("returned %v but expected %v", re3, apiv1.LoadBalancerIngress{IP: "2001:db8::68"})
+		t.Fatalf("returned %v but expected %v", re3, networking.IngressLoadBalancerIngress{IP: "2001:db8::68"})
 	}
 }
 
 func TestIngressSliceEqual(t *testing.T) {
 	fk1 := buildLoadBalancerIngressByIP()
-	fk2 := append(buildLoadBalancerIngressByIP(), apiv1.LoadBalancerIngress{
+	fk2 := append(buildLoadBalancerIngressByIP(), networking.IngressLoadBalancerIngress{
 		IP:       "10.0.0.5",
 		Hostname: "foo5",
 	})
@@ -700,8 +703,8 @@ func TestIngressSliceEqual(t *testing.T) {
 	fk4[2].IP = "11.0.0.3"
 
 	fooTests := []struct {
-		lhs []apiv1.LoadBalancerIngress
-		rhs []apiv1.LoadBalancerIngress
+		lhs []networking.IngressLoadBalancerIngress
+		rhs []networking.IngressLoadBalancerIngress
 		er  bool
 	}{
 		{fk1, fk1, true},
@@ -710,7 +713,7 @@ func TestIngressSliceEqual(t *testing.T) {
 		{fk4, fk1, false},
 		{fk1, nil, false},
 		{nil, nil, true},
-		{[]apiv1.LoadBalancerIngress{}, []apiv1.LoadBalancerIngress{}, true},
+		{[]networking.IngressLoadBalancerIngress{}, []networking.IngressLoadBalancerIngress{}, true},
 	}
 
 	for _, fooTest := range fooTests {
diff --git a/test/e2e/status/update.go b/test/e2e/status/update.go
index c9c6ef333..8bedc4d4e 100644
--- a/test/e2e/status/update.go
+++ b/test/e2e/status/update.go
@@ -19,6 +19,7 @@ package settings
 import (
 	"context"
 	"fmt"
+	v1 "k8s.io/api/networking/v1"
 	"log"
 	"net"
 	"strings"
@@ -28,7 +29,6 @@ import (
 	"github.com/stretchr/testify/assert"
 
 	appsv1 "k8s.io/api/apps/v1"
-	apiv1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/util/wait"
 
@@ -87,7 +87,7 @@ var _ = framework.IngressNginxDescribe("[Status] status update", func() {
 		ing, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Get(context.TODO(), host, metav1.GetOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error getting %s/%v Ingress", f.Namespace, host)
 
-		ing.Status.LoadBalancer.Ingress = []apiv1.LoadBalancerIngress{}
+		ing.Status.LoadBalancer.Ingress = []v1.IngressLoadBalancerIngress{}
 		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).UpdateStatus(context.TODO(), ing, metav1.UpdateOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error cleaning Ingress status")
 		framework.Sleep(10 * time.Second)
@@ -121,9 +121,9 @@ var _ = framework.IngressNginxDescribe("[Status] status update", func() {
 			return true, nil
 		})
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error waiting for ingress status")
-		assert.Equal(ginkgo.GinkgoT(), ing.Status.LoadBalancer.Ingress, ([]apiv1.LoadBalancerIngress{
+		assert.Equal(ginkgo.GinkgoT(), ing.Status.LoadBalancer.Ingress, []v1.IngressLoadBalancerIngress{
 			{IP: "1.1.0.0"},
-		}))
+		})
 	})
 })
 

From 7f8f5f8f68a435948e86b78b76616a67d9d6a652 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 13 Jan 2023 08:54:28 -0500
Subject: [PATCH 0598/1641] start 1.6.0 release

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index c9b3c015f..05f629f1b 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.5.1
\ No newline at end of file
+v1.6.0
\ No newline at end of file

From 45632e586397520afee83449737b85de822e8b24 Mon Sep 17 00:00:00 2001
From: Zadkiel Aharonian <hello@zadkiel.fr>
Date: Thu, 19 Jan 2023 15:36:38 +0100
Subject: [PATCH 0599/1641] fix(grafana-dashboard): remove hardcoded namespace
 references (#9523)

---
 deploy/grafana/dashboards/nginx.json | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/deploy/grafana/dashboards/nginx.json b/deploy/grafana/dashboards/nginx.json
index 85f93c9eb..3c3205b4a 100644
--- a/deploy/grafana/dashboards/nginx.json
+++ b/deploy/grafana/dashboards/nginx.json
@@ -1312,7 +1312,7 @@
       "targets": [
         {
           "exemplar": true,
-          "expr": "histogram_quantile(0.80, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le))",
+          "expr": "histogram_quantile(0.80, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le))",
           "format": "time_series",
           "hide": false,
           "instant": false,
@@ -1323,7 +1323,7 @@
         },
         {
           "exemplar": true,
-          "expr": "histogram_quantile(0.90, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le))",
+          "expr": "histogram_quantile(0.90, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le))",
           "format": "time_series",
           "hide": false,
           "instant": false,
@@ -1335,7 +1335,7 @@
         {
           "editorMode": "code",
           "exemplar": true,
-          "expr": "histogram_quantile(0.99, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le))",
+          "expr": "histogram_quantile(0.99, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le))",
           "format": "time_series",
           "hide": false,
           "instant": false,
@@ -1377,7 +1377,7 @@
       "targets": [
         {
           "exemplar": true,
-          "expr": "sum(increase(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=\"uat\"}[2m])) by (le)",
+          "expr": "sum(increase(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le)",
           "format": "heatmap",
           "interval": "",
           "legendFormat": "{{le}}",

From 87a9f1e007d9f37f194d699914a46409492d324a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 19 Jan 2023 06:48:35 -0800
Subject: [PATCH 0600/1641] Bump google.golang.org/grpc from 1.51.0 to 1.52.0
 (#9512)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 780cac648..2412ad6db 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.5.0
-	google.golang.org/grpc v1.51.0
+	google.golang.org/grpc v1.52.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index f03756bab..6dc3d7f54 100644
--- a/go.sum
+++ b/go.sum
@@ -660,8 +660,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.51.0 h1:E1eGv1FTqoLIdnBCZufiSHgKjlqG6fKFf6pPWtMTh8U=
-google.golang.org/grpc v1.51.0/go.mod h1:wgNDFcnuBGmxLKI/qn4T+m5BtEBYXJPvibbUPsAIPww=
+google.golang.org/grpc v1.52.0 h1:kd48UiU7EHsV4rnLyOJRuP/Il/UHE7gdDAQ+SZI7nZk=
+google.golang.org/grpc v1.52.0/go.mod h1:pu6fVzoFb+NBYNAvQL08ic+lvB2IojljRYuun5vorUY=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From 82720c8e1dc1489a03d2a3bbfc949f49bacc5dc3 Mon Sep 17 00:00:00 2001
From: Harpreet singh <harry.singh1064@gmail.com>
Date: Thu, 19 Jan 2023 22:58:36 +0800
Subject: [PATCH 0601/1641] Add CORS template check inside location for
 externalAuth.SignURL (#8814)

* Add CORS template check inside location for externalAuth.SignURL

* Add testcase for CORS header for auth-signin redirect with CORS enabled.
---
 rootfs/etc/nginx/template/nginx.tmpl |  4 +++
 test/e2e/annotations/auth.go         | 45 ++++++++++++++++++++++++++++
 2 files changed, 49 insertions(+)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 911cf75ea..958397dd5 100755
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -1180,6 +1180,10 @@ stream {
 
             add_header Set-Cookie $auth_cookie;
 
+            {{ if $location.CorsConfig.CorsEnabled }}
+            {{ template "CORS" $location }}
+            {{ end }}
+
             # Ensure that modsecurity will not run on an internal location as this is not accessible from outside
             {{ if $all.Cfg.EnableModsecurity }}
             modsecurity off;
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index 1f0f4c3b2..e26fcbd46 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -720,6 +720,51 @@ http {
 		})
 	})
 
+	ginkgo.Context("when external authentication is configured along with CORS enabled", func() {
+		host := "auth"
+		var annotations map[string]string
+		var ing *networking.Ingress
+
+		ginkgo.BeforeEach(func() {
+			f.NewHttpbinDeployment()
+
+			var httpbinIP string
+
+			err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBinService, f.Namespace, 1)
+			assert.Nil(ginkgo.GinkgoT(), err)
+
+			e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBinService, metav1.GetOptions{})
+			assert.Nil(ginkgo.GinkgoT(), err)
+
+			httpbinIP = e.Subsets[0].Addresses[0].IP
+
+			annotations = map[string]string{
+				"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", httpbinIP),
+				"nginx.ingress.kubernetes.io/auth-signin": "http://$host/auth/start",
+				"nginx.ingress.kubernetes.io/enable-cors": "true",
+			}
+
+			ing = framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+			f.EnsureIngress(ing)
+
+			f.WaitForNginxServer(host, func(server string) bool {
+				return strings.Contains(server, "server_name auth")
+			})
+		})
+
+		ginkgo.It("should redirect to signin url when not signed in along With CORS headers in response", func() {
+			f.HTTPTestClient().
+				GET("/").
+				WithHeader("Host", host).
+				WithQuery("a", "b").
+				WithQuery("c", "d").
+				Expect().
+				Status(http.StatusFound).
+				Header("Access-Control-Allow-Origin").Equal(fmt.Sprintf("*"))
+
+		})
+	})
+
 	ginkgo.Context("when external authentication with caching is configured", func() {
 		thisHost := "auth"
 		thatHost := "different"

From c015c628b5e4e07078a04a5f8c3ced8441c255a3 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 9 Nov 2022 16:05:42 -0500
Subject: [PATCH 0602/1641] testing auto change

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 hack/changelog.sh | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
 create mode 100755 hack/changelog.sh

diff --git a/hack/changelog.sh b/hack/changelog.sh
new file mode 100755
index 000000000..6ecd9f890
--- /dev/null
+++ b/hack/changelog.sh
@@ -0,0 +1,15 @@
+#!/usr/bin/env bash
+
+set -o errexit
+set -o nounset
+set -o pipefail
+
+declare -a mandatory
+mandatory=(
+  LINES
+  RELEASE
+)
+
+gh pr list -R kubernetes/ingress-nginx -s merged -L ${LINES} -B main | cut -f1,2 | awk '{ printf "* [%s](https://github.com/kubernetes/ingress-nginx/pull/%s) %s\n",$1,$1, substr($0,6)}'
+
+

From 71e9bdcb685acbfb14d3d7afa56189d7f0f8258f Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 11 Nov 2022 09:23:19 -0500
Subject: [PATCH 0603/1641] Add mage files for changelog

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 Changelog.md.gotmpl                           |  15 +
 RELEASE.md => MANUAL_RELEASE.md               |  10 +-
 NEW_RELEASE_PROCESS.md                        |   9 +
 TAG                                           |   2 +-
 changelog/Changelog-1.5.2.md                  |  36 ++
 charts/ingress-nginx/changelog/.gitkeep       |   0
 .../changelog/Changelog-1.5.2.md              |  12 +
 go.mod                                        |   1 +
 go.sum                                        |   2 +
 hack/changelog.sh                             |  15 -
 ingress-nginx.yaml                            |  68 ++
 magefiles/common.go                           |  66 ++
 magefiles/docker.go                           |   3 +
 magefiles/go.go                               |  15 +
 magefiles/go.mod                              |  32 +
 magefiles/go.sum                              | 105 +++
 magefiles/helm.go                             | 608 ++++++++++++++++++
 magefiles/mage.go                             |  13 +
 magefiles/release.go                          | 526 +++++++++++++++
 magefiles/tags.go                             | 130 ++++
 magefiles/yaml.go                             |   3 +
 21 files changed, 1650 insertions(+), 21 deletions(-)
 create mode 100644 Changelog.md.gotmpl
 rename RELEASE.md => MANUAL_RELEASE.md (96%)
 create mode 100644 NEW_RELEASE_PROCESS.md
 create mode 100644 charts/ingress-nginx/changelog/.gitkeep
 create mode 100644 charts/ingress-nginx/changelog/Changelog-1.5.2.md
 delete mode 100755 hack/changelog.sh
 create mode 100644 ingress-nginx.yaml
 create mode 100644 magefiles/common.go
 create mode 100644 magefiles/docker.go
 create mode 100644 magefiles/go.go
 create mode 100644 magefiles/go.mod
 create mode 100644 magefiles/go.sum
 create mode 100644 magefiles/helm.go
 create mode 100644 magefiles/mage.go
 create mode 100644 magefiles/release.go
 create mode 100644 magefiles/tags.go
 create mode 100644 magefiles/yaml.go

diff --git a/Changelog.md.gotmpl b/Changelog.md.gotmpl
new file mode 100644
index 000000000..d35df8ade
--- /dev/null
+++ b/Changelog.md.gotmpl
@@ -0,0 +1,15 @@
+# Changelog
+
+### {{  .Version }}
+Images:
+{{ with .ControllerImages }}
+{{ range . }} * {{ .Registry }}/{{ .Name }}:{{ .Tag}}@{{ .Digest }}
+{{ end }} {{ end }}
+### All Changes:
+{{ with .Updates }}
+{{ range . }}* {{ . }}
+{{ end }}{{ end }}
+### Dependencies updates: {{ with .DepUpdates }}
+{{ range . }}* {{ . }}
+{{ end }} {{ end }}
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-{{ .PreviousControllerVersion }}...controller-{{ .NewControllerVersion }}
diff --git a/RELEASE.md b/MANUAL_RELEASE.md
similarity index 96%
rename from RELEASE.md
rename to MANUAL_RELEASE.md
index ca0faa4e1..d7144b85d 100644
--- a/RELEASE.md
+++ b/MANUAL_RELEASE.md
@@ -103,7 +103,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
 - Fork that other project (if you don't have a fork already).
 
-- Other project to fork  [Github repo kubernetes/k8s.io](http://github.com/kubernetes/k8s.io)
+- Other project to fork  [GitHub repo kubernetes/k8s.io](http://github.com/kubernetes/k8s.io)
 
 - Fetch --all and rebase to upstream if already forked.
 
@@ -111,7 +111,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
 - In the related branch, of your fork, edit the file /registry.k8s.io/images/k8s-staging-ingress-nginx/images.yaml.
 
-- For making it easier, you can edit your branch directly in the browser. But be careful about making any mistake.
+- For making, it easier, you can edit your branch directly in the browser. But be careful about making any mistake.
 
 - Insert the sha(s) & the tag(s), in a new line, in this file [Project kubernetes/k8s.io Ingress-Nginx-Controller Images](https://github.com/kubernetes/k8s.io/blob/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml)  Look at this [example PR and the diff](https://github.com/kubernetes/k8s.io/pull/2536) to see how it was done before
 
@@ -132,7 +132,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
 - Make sure to get the tag and sha of the promoted image from the step before, either from cloudbuild or from [here](https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/ingress-nginx/controller).
 
-- This involves editing of several different files. So carefully follow the steps below and double check all changes with diff/grep etc., repeatedly. Mistakes here impact endusers.
+- This involves editing of several files. So carefully follow the steps below and double check all changes with diff/grep etc., repeatedly. Mistakes here impact endusers.
 
 ### a. Make sure your git workspace is ready
 
@@ -160,7 +160,7 @@ Promoting the images basically means that images, that were pushed to staging co
   - [TAG](https://github.com/kubernetes/ingress-nginx/blob/main/TAG#L1)
 
 ### c. Edit the helm Chart
-  - Change the below mentioned [Fields in Chart.yaml](https://github.com/kubernetes/ingress-nginx/blob/main/charts/ingress-nginx/Chart.yaml)
+  - Change the below-mentioned [Fields in Chart.yaml](https://github.com/kubernetes/ingress-nginx/blob/main/charts/ingress-nginx/Chart.yaml)
     - version
     - appVersion
     - kubeVersion (**ONLY if applicable**)
@@ -168,7 +168,7 @@ Promoting the images basically means that images, that were pushed to staging co
       - artifacthub.io/prerelease: "true"
       - artifacthub.io/changes: |
         - Replace this line and other lines under this annotation with the Changelog. One process to generate the Changelog is described below
-          - Install and configure github cli as per the docs of gh-cli  https://cli.github.com/,
+          - Install and configure GitHub cli as per the docs of gh-cli  https://cli.github.com/,
           - Change dir to your clone, of your fork, of the ingress-nginx project
           - Run the below command and save the output to a txt file
 
diff --git a/NEW_RELEASE_PROCESS.md b/NEW_RELEASE_PROCESS.md
new file mode 100644
index 000000000..cdb683abf
--- /dev/null
+++ b/NEW_RELEASE_PROCESS.md
@@ -0,0 +1,9 @@
+# Semi-Automated Release Process 
+
+1. Update TAG
+2. Cloud Build 
+3. k8s.io PR 
+4. git pull origin main 
+5. git checkout -b $RELEASE_VERSION 
+6. mage release:newrelease $RELEASE_VERSION 
+7. Wait for PR
\ No newline at end of file
diff --git a/TAG b/TAG
index 05f629f1b..b7c0a9b1d 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.6.0
\ No newline at end of file
+v1.6.0
diff --git a/changelog/Changelog-1.5.2.md b/changelog/Changelog-1.5.2.md
index 8b2617924..ed8532374 100644
--- a/changelog/Changelog-1.5.2.md
+++ b/changelog/Changelog-1.5.2.md
@@ -3,6 +3,7 @@
 ### 1.5.2
 Images:
 
+<<<<<<< HEAD
  * registry.k8s.io/ingress-nginx/controller:controller-v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
  * registry.k8s.io/ingress-nginx/controller-chroot:controller-v1.5.2@sha256:84613555694f2c59a8b2551126d226c9aa648544ebf0cde1e0df942f7dbce42b
  
@@ -19,6 +20,24 @@ Images:
 * update the nginx run container for alpine:3.17.0 (#9430)
 * cleanup: remove ioutil for new go version (#9427)
 * start upgrade to golang 1.19.4 and alpine 3.17.0 (#9417)
+=======
+ * registry.k8s.io/controller:controller-v1.5.2@sha256:c1c091b88a6c936a83bd7g098v62f60a87868d12452529bad0d178fb36143346
+ * registry.k8s.io/controller-chroot:controller-v1.5.2@sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529b350d178fb36147345
+ 
+### All Changes:
+
+<<<<<<< HEAD
+>>>>>>> f4164ae0b (THE CHANGELOG WORKS)
+=======
+* upgrade nginx base image (#9436)
+* test the new e2e test images (#9444)
+* avoid builds and tests for non-code changes (#9392)
+* CI updates (#9440)
+* HPA: Add `controller.autoscaling.annotations` to `values.yaml`. (#9253)
+* update the nginx run container for alpine:3.17.0 (#9430)
+* cleanup: remove ioutil for new go version (#9427)
+* start upgrade to golang 1.19.4 and alpine 3.17.0 (#9417)
+>>>>>>> 9ecab7d85 (e2e doc updates work now)
 * ci: remove setup-helm step (#9404)
 * ci: remove setup-kind step (#9401)
 * Add reporter for all tests (#9395)
@@ -54,6 +73,10 @@ Images:
 * add containerSecurityContext to extraModules init containers (kubernetes#9016) (#9242)
 
 ### Dependencies updates: 
+<<<<<<< HEAD
+<<<<<<< HEAD
+=======
+>>>>>>> 9ecab7d85 (e2e doc updates work now)
 * Bump golang.org/x/crypto from 0.3.0 to 0.4.0 (#9397)
 * Bump github.com/onsi/ginkgo/v2 from 2.6.0 to 2.6.1 (#9432)
 * Bump github.com/onsi/ginkgo/v2 from 2.6.0 to 2.6.1 (#9421)
@@ -62,6 +85,11 @@ Images:
 * Bump goreleaser/goreleaser-action from 3.2.0 to 4.1.0 (#9426)
 * Bump actions/dependency-review-action from 3.0.1 to 3.0.2 (#9424)
 * Bump ossf/scorecard-action from 2.0.6 to 2.1.0 (#9422)
+<<<<<<< HEAD
+=======
+>>>>>>> f4164ae0b (THE CHANGELOG WORKS)
+=======
+>>>>>>> 9ecab7d85 (e2e doc updates work now)
 * Bump github.com/prometheus/common from 0.37.0 to 0.39.0 (#9416)
 * Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0 (#9408)
 * Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0 (#9398)
@@ -76,4 +104,12 @@ Images:
 * Bump actions/dependency-review-action from 2.5.1 to 3.0.0 (#9301)
 * Bump k8s.io/component-base from 0.25.3 to 0.25.4 (#9300)
  
+<<<<<<< HEAD
+<<<<<<< HEAD
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.5.1...controller-controller-v1.5.2
+=======
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.5.2...controller-controller-v1.5.1
+>>>>>>> f4164ae0b (THE CHANGELOG WORKS)
+=======
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.5.1...controller-controller-v1.5.2
+>>>>>>> 9ecab7d85 (e2e doc updates work now)
diff --git a/charts/ingress-nginx/changelog/.gitkeep b/charts/ingress-nginx/changelog/.gitkeep
new file mode 100644
index 000000000..e69de29bb
diff --git a/charts/ingress-nginx/changelog/Changelog-1.5.2.md b/charts/ingress-nginx/changelog/Changelog-1.5.2.md
new file mode 100644
index 000000000..5e0563858
--- /dev/null
+++ b/charts/ingress-nginx/changelog/Changelog-1.5.2.md
@@ -0,0 +1,12 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.4.1
+
+* ci: remove setup-helm step (#9404)
+* feat(helm): Optionally use cert-manager instead admission patch (#9279)
+* run helm release on main only and when the chart/value changes only (#9290)
+* Update Ingress-Nginx version controller-v1.5.2
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.4.1...helm-chart-4.4.1
diff --git a/go.mod b/go.mod
index 2412ad6db..6f90615ff 100644
--- a/go.mod
+++ b/go.mod
@@ -77,6 +77,7 @@ require (
 	github.com/inconshreveable/mousetrap v1.0.1 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
+	github.com/magefile/mage v1.14.0 // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
 	github.com/mattn/go-colorable v0.1.13 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.4 // indirect
diff --git a/go.sum b/go.sum
index 6dc3d7f54..8a32d3e00 100644
--- a/go.sum
+++ b/go.sum
@@ -231,6 +231,8 @@ github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
+github.com/magefile/mage v1.14.0 h1:6QDX3g6z1YvJ4olPhT1wksUcSa/V0a1B+pJb73fBjyo=
+github.com/magefile/mage v1.14.0/go.mod h1:z5UZb/iS3GoOSn0JgWuiw7dxlurVYTu+/jHXqQg881A=
 github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA=
diff --git a/hack/changelog.sh b/hack/changelog.sh
deleted file mode 100755
index 6ecd9f890..000000000
--- a/hack/changelog.sh
+++ /dev/null
@@ -1,15 +0,0 @@
-#!/usr/bin/env bash
-
-set -o errexit
-set -o nounset
-set -o pipefail
-
-declare -a mandatory
-mandatory=(
-  LINES
-  RELEASE
-)
-
-gh pr list -R kubernetes/ingress-nginx -s merged -L ${LINES} -B main | cut -f1,2 | awk '{ printf "* [%s](https://github.com/kubernetes/ingress-nginx/pull/%s) %s\n",$1,$1, substr($0,6)}'
-
-
diff --git a/ingress-nginx.yaml b/ingress-nginx.yaml
new file mode 100644
index 000000000..be66255e0
--- /dev/null
+++ b/ingress-nginx.yaml
@@ -0,0 +1,68 @@
+CURRENT_VERSION: "v1.5.1"
+GOLANG_VERSION: "1.19.2"
+GIT_TAG: "controller-v1.5.1"
+NGINX_BASE_IMAGE: "registry.k8s.io/ingress-nginx/nginx:0b5e0685112e4537ee20a0bdbba451e9f6158aa3@sha256:3f5e28bb248d5170e77b77fc2a1a385724aeff41a0b34b5afad7dd9cf93de000"
+NGINX_VERSION: "1.21.6"
+VERSION_TABLE:
+  - "v1.5.1":
+    - Alpine: "3.16.2"
+    - Kubernetes: ["1.25","1.24","1.23"]
+    - NGINX: "1.21.6"
+    - CONTROLLER_IMAGE: "registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629"
+    - CHROOT_CONTROLLER_IMAGE: "registry.k8s.io/ingress-nginx/controller-chroot:v1.5.1@sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529bad0d178fb36147345"
+  - "v1.4.0":
+      - Alpine: "3.16.2"
+      - Kubernetes: [  "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.3.1":
+      - Alpine: "3.16.2"
+      - Kubernetes: [  "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.3.0":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.2.1":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.1.3":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.1.2":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.1.1":
+      - Alpine: "3.16.2"
+      - Kubernetes: [  "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.1.0":
+      - Alpine: "3.16.2"
+      - Kubernetes: [  "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.0.5":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.0.4":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.0.3":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.0.2":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.0.1":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
+  - "v1.0.0":
+      - Alpine: "3.16.2"
+      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
+      - NGINX: "1.19.10"
diff --git a/magefiles/common.go b/magefiles/common.go
new file mode 100644
index 000000000..ae2fed0c4
--- /dev/null
+++ b/magefiles/common.go
@@ -0,0 +1,66 @@
+//go:build mage
+
+package main
+
+import (
+	"fmt"
+	"os"
+	"strings"
+	"time"
+)
+
+var DEBUG bool
+
+func init() {
+	DEBUG = false
+	debugENV := os.Getenv("MAGE_DEBUG")
+	if debugENV == "true" {
+		DEBUG = true
+	}
+}
+
+// CheckArgs should be used to ensure the right command line arguments are
+// passed before executing an example.
+func CheckArgs(arg ...string) {
+	if len(os.Args) < len(arg)+1 {
+		ErrorF("Usage: %s %s", os.Args[0], strings.Join(arg, " "))
+		os.Exit(1)
+	}
+}
+
+// CheckIfError should be used to naively panics if an error is not nil.
+func CheckIfError(err error, format string, args ...interface{}) {
+	if err == nil {
+		return
+	}
+
+	fmt.Printf("\x1b[31;1m%s ERROR %s %s\x1b[0m\n", timeStamp(), fmt.Sprintf(format, args...), err)
+	os.Exit(1)
+}
+
+// Info should be used to describe the example commands that are about to run.
+func Info(format string, args ...interface{}) {
+	fmt.Printf("\x1b[34;1m%s INFO: %s\x1b[0m\n", timeStamp(), fmt.Sprintf(format, args...))
+}
+
+func timeStamp() string {
+	t := time.Now()
+	return t.Format(time.RFC3339)
+}
+
+// Warning should be used to display a warning
+func Warning(format string, args ...interface{}) {
+	fmt.Printf("\x1b[36;1m%s WARNING: %s\x1b[0m\n", timeStamp(), fmt.Sprintf(format, args...))
+}
+
+// Info should be used to describe the example commands that are about to run.
+func Debug(format string, args ...interface{}) {
+	if DEBUG {
+		fmt.Printf("\x1b[34;1m%s DEBUG: %s\x1b[0m\n", timeStamp(), fmt.Sprintf(format, args...))
+	}
+}
+
+// Info should be used to describe the example commands that are about to run.
+func ErrorF(format string, args ...interface{}) {
+	fmt.Printf("\x1b[31;1m%s ERROR: %s\x1b[0m\n", timeStamp(), fmt.Sprintf(format, args...))
+}
diff --git a/magefiles/docker.go b/magefiles/docker.go
new file mode 100644
index 000000000..7353508f3
--- /dev/null
+++ b/magefiles/docker.go
@@ -0,0 +1,3 @@
+//go:build mage
+
+package main
diff --git a/magefiles/go.go b/magefiles/go.go
new file mode 100644
index 000000000..352b8fb1e
--- /dev/null
+++ b/magefiles/go.go
@@ -0,0 +1,15 @@
+//go:build mage
+
+package main
+
+//import (
+//	"github.com/magefile/mage/mg"
+//	"github.com/mysteriumnetwork/go-ci/commands"
+//)
+//
+//type Go mg.Namespace
+//
+//// Checks for issues with go imports
+//func (Go) CheckGoImports() error {
+//	return commands.GoImports("./...")
+//}
diff --git a/magefiles/go.mod b/magefiles/go.mod
new file mode 100644
index 000000000..31c11a061
--- /dev/null
+++ b/magefiles/go.mod
@@ -0,0 +1,32 @@
+module github.com/kubernetes/ingress-nginx/magefiles
+
+go 1.19
+
+require (
+	github.com/blang/semver/v4 v4.0.0
+	github.com/google/go-github/v48 v48.2.0
+	github.com/helm/helm v2.17.0+incompatible
+	github.com/magefile/mage v1.14.0
+	github.com/vmware-labs/yaml-jsonpath v0.3.2
+	golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be
+	gopkg.in/yaml.v3 v3.0.1
+)
+
+require (
+	github.com/BurntSushi/toml v1.2.1 // indirect
+	github.com/Masterminds/semver v1.5.0 // indirect
+	github.com/cyphar/filepath-securejoin v0.2.3 // indirect
+	github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960 // indirect
+	github.com/ghodss/yaml v1.0.0 // indirect
+	github.com/gobwas/glob v0.2.3 // indirect
+	github.com/golang/protobuf v1.5.2 // indirect
+	github.com/google/go-querystring v1.1.0 // indirect
+	github.com/stretchr/testify v1.8.1 // indirect
+	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5 // indirect
+	golang.org/x/net v0.0.0-20220722155237-a158d28d115b // indirect
+	google.golang.org/appengine v1.6.7 // indirect
+	google.golang.org/protobuf v1.28.0 // indirect
+	gopkg.in/yaml.v2 v2.4.0 // indirect
+	k8s.io/apimachinery v0.25.4 // indirect
+	k8s.io/helm v2.17.0+incompatible // indirect
+)
diff --git a/magefiles/go.sum b/magefiles/go.sum
new file mode 100644
index 000000000..38a4235f6
--- /dev/null
+++ b/magefiles/go.sum
@@ -0,0 +1,105 @@
+github.com/BurntSushi/toml v1.2.1 h1:9F2/+DoOYIOksmaJFPw1tGFy1eDnIJXg+UHjuD8lTak=
+github.com/BurntSushi/toml v1.2.1/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
+github.com/Masterminds/semver v1.5.0 h1:H65muMkzWKEuNDnfl9d70GUjFniHKHRbFPGBuZ3QEww=
+github.com/Masterminds/semver v1.5.0/go.mod h1:MB6lktGJrhw8PrUyiEoblNEGEQ+RzHPF078ddwwvV3Y=
+github.com/blang/semver/v4 v4.0.0 h1:1PFHFE6yCCTv8C1TeyNNarDzntLi7wMI5i/pzqYIsAM=
+github.com/blang/semver/v4 v4.0.0/go.mod h1:IbckMUScFkM3pff0VJDNKRiT6TG/YpiHIM2yvyW5YoQ=
+github.com/cyphar/filepath-securejoin v0.2.3 h1:YX6ebbZCZP7VkM3scTTokDgBL2TY741X51MTk3ycuNI=
+github.com/cyphar/filepath-securejoin v0.2.3/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
+github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
+github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960 h1:aRd8M7HJVZOqn/vhOzrGcQH0lNAMkqMn+pXUYkatmcA=
+github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960/go.mod h1:9HQzr9D/0PGwMEbC3d5AB7oi67+h4TsQqItC1GVYG58=
+github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
+github.com/ghodss/yaml v1.0.0 h1:wQHKEahhL6wmXdzwWG11gIVCkOv05bNOh+Rxn0yngAk=
+github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
+github.com/gobwas/glob v0.2.3 h1:A4xDbljILXROh+kObIiy5kIaPYD8e96x1tgBhUI5J+Y=
+github.com/gobwas/glob v0.2.3/go.mod h1:d3Ez4x06l9bZtSvzIay5+Yzi0fmZzPgnTbPcKjJAkT8=
+github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
+github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
+github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
+github.com/golang/protobuf v1.5.2 h1:ROPKBNFfQgOUMifHyP+KYbvpjbdoFNs+aK7DXlji0Tw=
+github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
+github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.5.9 h1:O2Tfq5qg4qc4AmwVlvv0oLiVAGB7enBSJ2x2DqQFi38=
+github.com/google/go-github/v48 v48.2.0 h1:68puzySE6WqUY9KWmpOsDEQfDZsso98rT6pZcz9HqcE=
+github.com/google/go-github/v48 v48.2.0/go.mod h1:dDlehKBDo850ZPvCTK0sEqTCVWcrGl2LcDiajkYi89Y=
+github.com/google/go-querystring v1.1.0 h1:AnCroh3fv4ZBgVIf1Iwtovgjaw/GiKJo8M8yD/fhyJ8=
+github.com/google/go-querystring v1.1.0/go.mod h1:Kcdr2DB4koayq7X8pmAG4sNG59So17icRSOU623lUBU=
+github.com/helm/helm v2.17.0+incompatible h1:0iy95yMXrfWpwaoOA9XRP+cTvitTrq+LcJV9DvR5n1Y=
+github.com/helm/helm v2.17.0+incompatible/go.mod h1:ahXhuvluW4YnSL6W6hDVetZsVK8Pv4BP8OwKli7aMqo=
+github.com/hpcloud/tail v1.0.0 h1:nfCOvKYfkgYP8hkirhJocXT2+zOD8yUNjXaWfTlyFKI=
+github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
+github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
+github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
+github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
+github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
+github.com/magefile/mage v1.14.0 h1:6QDX3g6z1YvJ4olPhT1wksUcSa/V0a1B+pJb73fBjyo=
+github.com/magefile/mage v1.14.0/go.mod h1:z5UZb/iS3GoOSn0JgWuiw7dxlurVYTu+/jHXqQg881A=
+github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e h1:fD57ERR4JtEqsWbfPhv4DMiApHyliiK5xCTNVSPiaAs=
+github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
+github.com/onsi/ginkgo v1.10.2 h1:uqH7bpe+ERSiDa34FDOF7RikN6RzXgduUF8yarlZp94=
+github.com/onsi/ginkgo v1.10.2/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
+github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
+github.com/onsi/gomega v1.20.1 h1:PA/3qinGoukvymdIDV8pii6tiZgC8kbmJO6Z5+b002Q=
+github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
+github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
+github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=
+github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
+github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
+github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
+github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
+github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
+github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
+github.com/stretchr/testify v1.8.1 h1:w7B6lhMri9wdJUVmEZPGGhZzrYTPvgJArz7wNPgYKsk=
+github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
+github.com/vmware-labs/yaml-jsonpath v0.3.2 h1:/5QKeCBGdsInyDCyVNLbXyilb61MXGi9NP674f9Hobk=
+github.com/vmware-labs/yaml-jsonpath v0.3.2/go.mod h1:U6whw1z03QyqgWdgXxvVnQ90zN1BWz5V+51Ewf8k+rQ=
+golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
+golang.org/x/crypto v0.0.0-20210817164053-32db794688a5 h1:HWj/xjIHfjYU5nVXpTM0s39J9CbLn7Cc5a7IC5rwsMQ=
+golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
+golang.org/x/net v0.0.0-20220722155237-a158d28d115b h1:PxfKdU9lEEDYjdIzOtC4qFWgkU2rGHdKlKowJSMN9h0=
+golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
+golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be h1:vEDujvNQGv4jgYKudGeI/+DAX4Jffq6hpD55MmoEvKs=
+golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
+golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
+golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
+golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a h1:dGzPydgVsqGcTRVwiLJ1jVbufYwmzD3LfVPLKsKg+0k=
+golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
+golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
+golang.org/x/text v0.3.7 h1:olpwvP2KacW1ZWvsR7uQhoyTYvKAupfQrRGBFM352Gk=
+golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
+golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
+google.golang.org/appengine v1.6.7 h1:FZR1q0exgwxzPzp/aF+VccGrSfxfPpkBqjIIEq3ru6c=
+google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
+google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
+google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
+google.golang.org/protobuf v1.28.0 h1:w43yiav+6bVFTBQFZX0r7ipe9JQ1QsbMgHwbBziscLw=
+google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f h1:BLraFXnmrev5lT+xlilqcH8XK9/i0At2xKjWk4p6zsU=
+gopkg.in/fsnotify.v1 v1.4.7 h1:xOHLXZwVvI9hhs+cLKq5+I5onOuwQLhQwiu63xxlHs4=
+gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
+gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
+gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
+gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
+gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
+gopkg.in/yaml.v3 v3.0.0-20191026110619-0b21df46bc1d/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
+gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+k8s.io/apimachinery v0.25.4 h1:CtXsuaitMESSu339tfhVXhQrPET+EiWnIY1rcurKnAc=
+k8s.io/apimachinery v0.25.4/go.mod h1:jaF9C/iPNM1FuLl7Zuy5b9v+n35HGSh6AQ4HYRkCqwo=
+k8s.io/helm v2.17.0+incompatible h1:Bpn6o1wKLYqKM3+Osh8e+1/K2g/GsQJ4F4yNF2+deao=
+k8s.io/helm v2.17.0+incompatible/go.mod h1:LZzlS4LQBHfciFOurYBFkCMTaZ0D1l+p0teMg7TSULI=
diff --git a/magefiles/helm.go b/magefiles/helm.go
new file mode 100644
index 000000000..87966dea0
--- /dev/null
+++ b/magefiles/helm.go
@@ -0,0 +1,608 @@
+//go:build mage
+
+package main
+
+import (
+	"fmt"
+	semver "github.com/blang/semver/v4"
+	"github.com/helm/helm/pkg/chartutil"
+	"github.com/magefile/mage/mg"
+	"github.com/magefile/mage/sh"
+	yamlpath "github.com/vmware-labs/yaml-jsonpath/pkg/yamlpath"
+	"gopkg.in/yaml.v3"
+	"os"
+	"strings"
+)
+
+const HelmChartPath = "charts/ingress-nginx/Chart.yaml"
+const HelmChartValues = "charts/ingress-nginx/values.yaml"
+
+type Helm mg.Namespace
+
+// UpdateAppVersion Updates the Helm App Version of Ingress Nginx Controller
+func (Helm) UpdateAppVersion() {
+	updateAppVersion()
+}
+
+func updateAppVersion() {
+
+}
+
+// UpdateVersion Update Helm Version of the Chart
+func (Helm) UpdateVersion(version string) {
+	updateVersion(version)
+}
+
+func currentChartVersion() string {
+	chart, err := chartutil.LoadChartfile(HelmChartPath)
+	CheckIfError(err, "HELM Could not Load Chart")
+	return chart.Version
+}
+
+func currentChartAppVersion() string {
+	chart, err := chartutil.LoadChartfile(HelmChartPath)
+	CheckIfError(err, "HELM Could not Load Chart")
+	return chart.AppVersion
+}
+
+func updateVersion(version string) {
+	Info("HELM Reading File %v", HelmChartPath)
+
+	chart, err := chartutil.LoadChartfile(HelmChartPath)
+	CheckIfError(err, "HELM Could not Load Chart")
+
+	//Get the current tag
+	//appVersionV, err := getIngressNGINXVersion()
+	//CheckIfError(err, "HELM Issue Retrieving the Current Ingress Nginx Version")
+
+	//remove the v from TAG
+	appVersion := version
+
+	Info("HELM Ingress-Nginx App Version: %s Chart AppVersion: %s", appVersion, chart.AppVersion)
+	if appVersion == chart.AppVersion {
+		Warning("HELM Ingress NGINX Version didnt change Ingress-Nginx App Version: %s Chart AppVersion: %s", appVersion, chart.AppVersion)
+		return
+	}
+
+	//Update the helm chart
+	chart.AppVersion = appVersion
+	cTag, err := semver.Make(chart.Version)
+	CheckIfError(err, "HELM Creating Chart Version: %v", err)
+
+	if err = cTag.IncrementPatch(); err != nil {
+		ErrorF("HELM Incrementing Chart Version: %v", err)
+		os.Exit(1)
+	}
+	chart.Version = cTag.String()
+	Debug("HELM Updated Chart Version: %v", chart.Version)
+
+	err = chartutil.SaveChartfile(HelmChartPath, chart)
+	CheckIfError(err, "HELM Saving new Chart")
+}
+
+func updateChartReleaseNotes(releasesNotes []string) {
+	Info("HELM Updating the Chart Release notes")
+	chart, err := chartutil.LoadChartfile(HelmChartPath)
+	CheckIfError(err, "HELM Could not Load Chart to update release notes %s", HelmChartPath)
+	var releaseNoteString string
+	for i := range releasesNotes {
+		releaseNoteString = fmt.Sprintf("%s - %s\n", releaseNoteString, releasesNotes[i])
+	}
+	Info("HLEM Release note string %s", releaseNoteString)
+	chart.Annotations["artifacthub.io/changes"] = releaseNoteString
+	err = chartutil.SaveChartfile(HelmChartPath, chart)
+	CheckIfError(err, "HELM Saving updated release notes for Chart")
+}
+
+func UpdateChartChangelog() {
+
+}
+
+// UpdateAppVersion Updates the Helm App Version of Ingress Nginx Controller
+func (Helm) UpdateChartValue(key, value string) {
+	updateChartValue(key, value)
+}
+
+func updateChartValue(key, value string) {
+	Info("HELM Updating Chart %s %s:%s", HelmChartValues, key, value)
+
+	//read current values.yaml
+	data, err := os.ReadFile(HelmChartValues)
+	CheckIfError(err, "HELM Could not Load Helm Chart Values files %s", HelmChartValues)
+
+	//var valuesStruct IngressChartValue
+	var n yaml.Node
+	CheckIfError(yaml.Unmarshal(data, &n), "HELM Could not Unmarshal %s", HelmChartValues)
+
+	//update value
+	//keyParse := parsePath(key)
+	p, err := yamlpath.NewPath(key)
+	CheckIfError(err, "HELM cannot create path")
+
+	q, err := p.Find(&n)
+	CheckIfError(err, "HELM unexpected error finding path")
+
+	for _, i := range q {
+		Info("HELM Found %s at %s", i.Value, key)
+		i.Value = value
+		Info("HELM Updated %s at %s", i.Value, key)
+	}
+
+	//// write to file
+	newValueFile, err := yaml.Marshal(&n)
+	CheckIfError(err, "HELM Could not Marshal new Values file")
+	err = os.WriteFile(HelmChartValues, newValueFile, 0644)
+	CheckIfError(err, "HELM Could not write new Values file to %s", HelmChartValues)
+
+	Info("HELM Ingress Nginx Helm Chart update %s %s", key, value)
+}
+
+func runHelmDocs() error {
+	err := installHelmDocs()
+	if err != nil {
+		return err
+	}
+	err = sh.RunV("helm-docs", "--chart-search-root=${PWD}/charts")
+	if err != nil {
+		return err
+	}
+	return nil
+}
+
+func installHelmDocs() error {
+	Info("HELM Install HelmDocs")
+	var g0 = sh.RunCmd("go")
+
+	err := g0("install", "github.com/norwoodj/helm-docs/cmd/helm-docs@v1.11.0")
+	if err != nil {
+		return err
+	}
+	return nil
+}
+func parsePath(key string) []string { return strings.Split(key, ".") }
+
+func updateHelmDocs() {
+
+}
+
+type IngressChartValue struct {
+	CommonLabels struct {
+	} `yaml:"commonLabels"`
+	Controller struct {
+		Name  string `yaml:"name"`
+		Image struct {
+			Chroot                   bool   `yaml:"chroot"`
+			Registry                 string `yaml:"registry"`
+			Image                    string `yaml:"image"`
+			Tag                      string `yaml:"tag"`
+			Digest                   string `yaml:"digest"`
+			DigestChroot             string `yaml:"digestChroot"`
+			PullPolicy               string `yaml:"pullPolicy"`
+			RunAsUser                int    `yaml:"runAsUser"`
+			AllowPrivilegeEscalation bool   `yaml:"allowPrivilegeEscalation"`
+		} `yaml:"image"`
+		ExistingPsp   string `yaml:"existingPsp"`
+		ContainerName string `yaml:"containerName"`
+		ContainerPort struct {
+			HTTP  int `yaml:"http"`
+			HTTPS int `yaml:"https"`
+		} `yaml:"containerPort"`
+		Config struct {
+		} `yaml:"config"`
+		ConfigAnnotations struct {
+		} `yaml:"configAnnotations"`
+		ProxySetHeaders struct {
+		} `yaml:"proxySetHeaders"`
+		AddHeaders struct {
+		} `yaml:"addHeaders"`
+		DNSConfig struct {
+		} `yaml:"dnsConfig"`
+		Hostname struct {
+		} `yaml:"hostname"`
+		DNSPolicy                string `yaml:"dnsPolicy"`
+		ReportNodeInternalIP     bool   `yaml:"reportNodeInternalIp"`
+		WatchIngressWithoutClass bool   `yaml:"watchIngressWithoutClass"`
+		IngressClassByName       bool   `yaml:"ingressClassByName"`
+		AllowSnippetAnnotations  bool   `yaml:"allowSnippetAnnotations"`
+		HostNetwork              bool   `yaml:"hostNetwork"`
+		HostPort                 struct {
+			Enabled bool `yaml:"enabled"`
+			Ports   struct {
+				HTTP  int `yaml:"http"`
+				HTTPS int `yaml:"https"`
+			} `yaml:"ports"`
+		} `yaml:"hostPort"`
+		ElectionID           string `yaml:"electionID"`
+		IngressClassResource struct {
+			Name            string `yaml:"name"`
+			Enabled         bool   `yaml:"enabled"`
+			Default         bool   `yaml:"default"`
+			ControllerValue string `yaml:"controllerValue"`
+			Parameters      struct {
+			} `yaml:"parameters"`
+		} `yaml:"ingressClassResource"`
+		IngressClass string `yaml:"ingressClass"`
+		PodLabels    struct {
+		} `yaml:"podLabels"`
+		PodSecurityContext struct {
+		} `yaml:"podSecurityContext"`
+		Sysctls struct {
+		} `yaml:"sysctls"`
+		PublishService struct {
+			Enabled      bool   `yaml:"enabled"`
+			PathOverride string `yaml:"pathOverride"`
+		} `yaml:"publishService"`
+		Scope struct {
+			Enabled           bool   `yaml:"enabled"`
+			Namespace         string `yaml:"namespace"`
+			NamespaceSelector string `yaml:"namespaceSelector"`
+		} `yaml:"scope"`
+		ConfigMapNamespace string `yaml:"configMapNamespace"`
+		TCP                struct {
+			ConfigMapNamespace string `yaml:"configMapNamespace"`
+			Annotations        struct {
+			} `yaml:"annotations"`
+		} `yaml:"tcp"`
+		UDP struct {
+			ConfigMapNamespace string `yaml:"configMapNamespace"`
+			Annotations        struct {
+			} `yaml:"annotations"`
+		} `yaml:"udp"`
+		MaxmindLicenseKey string `yaml:"maxmindLicenseKey"`
+		ExtraArgs         struct {
+		} `yaml:"extraArgs"`
+		ExtraEnvs   []interface{} `yaml:"extraEnvs"`
+		Kind        string        `yaml:"kind"`
+		Annotations struct {
+		} `yaml:"annotations"`
+		Labels struct {
+		} `yaml:"labels"`
+		UpdateStrategy struct {
+		} `yaml:"updateStrategy"`
+		MinReadySeconds int           `yaml:"minReadySeconds"`
+		Tolerations     []interface{} `yaml:"tolerations"`
+		Affinity        struct {
+		} `yaml:"affinity"`
+		TopologySpreadConstraints     []interface{} `yaml:"topologySpreadConstraints"`
+		TerminationGracePeriodSeconds int           `yaml:"terminationGracePeriodSeconds"`
+		NodeSelector                  struct {
+			KubernetesIoOs string `yaml:"kubernetes.io/os"`
+		} `yaml:"nodeSelector"`
+		LivenessProbe struct {
+			HTTPGet struct {
+				Path   string `yaml:"path"`
+				Port   int    `yaml:"port"`
+				Scheme string `yaml:"scheme"`
+			} `yaml:"httpGet"`
+			InitialDelaySeconds int `yaml:"initialDelaySeconds"`
+			PeriodSeconds       int `yaml:"periodSeconds"`
+			TimeoutSeconds      int `yaml:"timeoutSeconds"`
+			SuccessThreshold    int `yaml:"successThreshold"`
+			FailureThreshold    int `yaml:"failureThreshold"`
+		} `yaml:"livenessProbe"`
+		ReadinessProbe struct {
+			HTTPGet struct {
+				Path   string `yaml:"path"`
+				Port   int    `yaml:"port"`
+				Scheme string `yaml:"scheme"`
+			} `yaml:"httpGet"`
+			InitialDelaySeconds int `yaml:"initialDelaySeconds"`
+			PeriodSeconds       int `yaml:"periodSeconds"`
+			TimeoutSeconds      int `yaml:"timeoutSeconds"`
+			SuccessThreshold    int `yaml:"successThreshold"`
+			FailureThreshold    int `yaml:"failureThreshold"`
+		} `yaml:"readinessProbe"`
+		HealthCheckPath string `yaml:"healthCheckPath"`
+		HealthCheckHost string `yaml:"healthCheckHost"`
+		PodAnnotations  struct {
+		} `yaml:"podAnnotations"`
+		ReplicaCount int `yaml:"replicaCount"`
+		MinAvailable int `yaml:"minAvailable"`
+		Resources    struct {
+			Requests struct {
+				CPU    string `yaml:"cpu"`
+				Memory string `yaml:"memory"`
+			} `yaml:"requests"`
+		} `yaml:"resources"`
+		Autoscaling struct {
+			APIVersion  string `yaml:"apiVersion"`
+			Enabled     bool   `yaml:"enabled"`
+			Annotations struct {
+			} `yaml:"annotations"`
+			MinReplicas                       int `yaml:"minReplicas"`
+			MaxReplicas                       int `yaml:"maxReplicas"`
+			TargetCPUUtilizationPercentage    int `yaml:"targetCPUUtilizationPercentage"`
+			TargetMemoryUtilizationPercentage int `yaml:"targetMemoryUtilizationPercentage"`
+			Behavior                          struct {
+			} `yaml:"behavior"`
+		} `yaml:"autoscaling"`
+		AutoscalingTemplate []interface{} `yaml:"autoscalingTemplate"`
+		Keda                struct {
+			APIVersion                    string `yaml:"apiVersion"`
+			Enabled                       bool   `yaml:"enabled"`
+			MinReplicas                   int    `yaml:"minReplicas"`
+			MaxReplicas                   int    `yaml:"maxReplicas"`
+			PollingInterval               int    `yaml:"pollingInterval"`
+			CooldownPeriod                int    `yaml:"cooldownPeriod"`
+			RestoreToOriginalReplicaCount bool   `yaml:"restoreToOriginalReplicaCount"`
+			ScaledObject                  struct {
+				Annotations struct {
+				} `yaml:"annotations"`
+			} `yaml:"scaledObject"`
+			Triggers []interface{} `yaml:"triggers"`
+			Behavior struct {
+			} `yaml:"behavior"`
+		} `yaml:"keda"`
+		EnableMimalloc bool `yaml:"enableMimalloc"`
+		CustomTemplate struct {
+			ConfigMapName string `yaml:"configMapName"`
+			ConfigMapKey  string `yaml:"configMapKey"`
+		} `yaml:"customTemplate"`
+		Service struct {
+			Enabled     bool `yaml:"enabled"`
+			AppProtocol bool `yaml:"appProtocol"`
+			Annotations struct {
+			} `yaml:"annotations"`
+			Labels struct {
+			} `yaml:"labels"`
+			ExternalIPs              []interface{} `yaml:"externalIPs"`
+			LoadBalancerIP           string        `yaml:"loadBalancerIP"`
+			LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
+			EnableHTTP               bool          `yaml:"enableHttp"`
+			EnableHTTPS              bool          `yaml:"enableHttps"`
+			IPFamilyPolicy           string        `yaml:"ipFamilyPolicy"`
+			IPFamilies               []string      `yaml:"ipFamilies"`
+			Ports                    struct {
+				HTTP  int `yaml:"http"`
+				HTTPS int `yaml:"https"`
+			} `yaml:"ports"`
+			TargetPorts struct {
+				HTTP  string `yaml:"http"`
+				HTTPS string `yaml:"https"`
+			} `yaml:"targetPorts"`
+			Type      string `yaml:"type"`
+			NodePorts struct {
+				HTTP  string `yaml:"http"`
+				HTTPS string `yaml:"https"`
+				TCP   struct {
+				} `yaml:"tcp"`
+				UDP struct {
+				} `yaml:"udp"`
+			} `yaml:"nodePorts"`
+			External struct {
+				Enabled bool `yaml:"enabled"`
+			} `yaml:"external"`
+			Internal struct {
+				Enabled     bool `yaml:"enabled"`
+				Annotations struct {
+				} `yaml:"annotations"`
+				LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
+			} `yaml:"internal"`
+		} `yaml:"service"`
+		ShareProcessNamespace bool          `yaml:"shareProcessNamespace"`
+		ExtraContainers       []interface{} `yaml:"extraContainers"`
+		ExtraVolumeMounts     []interface{} `yaml:"extraVolumeMounts"`
+		ExtraVolumes          []interface{} `yaml:"extraVolumes"`
+		ExtraInitContainers   []interface{} `yaml:"extraInitContainers"`
+		ExtraModules          []interface{} `yaml:"extraModules"`
+		Opentelemetry         struct {
+			Enabled                  bool   `yaml:"enabled"`
+			Image                    string `yaml:"image"`
+			ContainerSecurityContext struct {
+				AllowPrivilegeEscalation bool `yaml:"allowPrivilegeEscalation"`
+			} `yaml:"containerSecurityContext"`
+		} `yaml:"opentelemetry"`
+		AdmissionWebhooks struct {
+			Annotations struct {
+			} `yaml:"annotations"`
+			Enabled           bool          `yaml:"enabled"`
+			ExtraEnvs         []interface{} `yaml:"extraEnvs"`
+			FailurePolicy     string        `yaml:"failurePolicy"`
+			Port              int           `yaml:"port"`
+			Certificate       string        `yaml:"certificate"`
+			Key               string        `yaml:"key"`
+			NamespaceSelector struct {
+			} `yaml:"namespaceSelector"`
+			ObjectSelector struct {
+			} `yaml:"objectSelector"`
+			Labels struct {
+			} `yaml:"labels"`
+			ExistingPsp          string `yaml:"existingPsp"`
+			NetworkPolicyEnabled bool   `yaml:"networkPolicyEnabled"`
+			Service              struct {
+				Annotations struct {
+				} `yaml:"annotations"`
+				ExternalIPs              []interface{} `yaml:"externalIPs"`
+				LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
+				ServicePort              int           `yaml:"servicePort"`
+				Type                     string        `yaml:"type"`
+			} `yaml:"service"`
+			CreateSecretJob struct {
+				SecurityContext struct {
+					AllowPrivilegeEscalation bool `yaml:"allowPrivilegeEscalation"`
+				} `yaml:"securityContext"`
+				Resources struct {
+				} `yaml:"resources"`
+			} `yaml:"createSecretJob"`
+			PatchWebhookJob struct {
+				SecurityContext struct {
+					AllowPrivilegeEscalation bool `yaml:"allowPrivilegeEscalation"`
+				} `yaml:"securityContext"`
+				Resources struct {
+				} `yaml:"resources"`
+			} `yaml:"patchWebhookJob"`
+			Patch struct {
+				Enabled bool `yaml:"enabled"`
+				Image   struct {
+					Registry   string `yaml:"registry"`
+					Image      string `yaml:"image"`
+					Tag        string `yaml:"tag"`
+					Digest     string `yaml:"digest"`
+					PullPolicy string `yaml:"pullPolicy"`
+				} `yaml:"image"`
+				PriorityClassName string `yaml:"priorityClassName"`
+				PodAnnotations    struct {
+				} `yaml:"podAnnotations"`
+				NodeSelector struct {
+					KubernetesIoOs string `yaml:"kubernetes.io/os"`
+				} `yaml:"nodeSelector"`
+				Tolerations []interface{} `yaml:"tolerations"`
+				Labels      struct {
+				} `yaml:"labels"`
+				SecurityContext struct {
+					RunAsNonRoot bool `yaml:"runAsNonRoot"`
+					RunAsUser    int  `yaml:"runAsUser"`
+					FsGroup      int  `yaml:"fsGroup"`
+				} `yaml:"securityContext"`
+			} `yaml:"patch"`
+			CertManager struct {
+				Enabled  bool `yaml:"enabled"`
+				RootCert struct {
+					Duration string `yaml:"duration"`
+				} `yaml:"rootCert"`
+				AdmissionCert struct {
+					Duration string `yaml:"duration"`
+				} `yaml:"admissionCert"`
+			} `yaml:"certManager"`
+		} `yaml:"admissionWebhooks"`
+		Metrics struct {
+			Port     int    `yaml:"port"`
+			PortName string `yaml:"portName"`
+			Enabled  bool   `yaml:"enabled"`
+			Service  struct {
+				Annotations struct {
+				} `yaml:"annotations"`
+				ExternalIPs              []interface{} `yaml:"externalIPs"`
+				LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
+				ServicePort              int           `yaml:"servicePort"`
+				Type                     string        `yaml:"type"`
+			} `yaml:"service"`
+			ServiceMonitor struct {
+				Enabled          bool `yaml:"enabled"`
+				AdditionalLabels struct {
+				} `yaml:"additionalLabels"`
+				Namespace         string `yaml:"namespace"`
+				NamespaceSelector struct {
+				} `yaml:"namespaceSelector"`
+				ScrapeInterval    string        `yaml:"scrapeInterval"`
+				TargetLabels      []interface{} `yaml:"targetLabels"`
+				Relabelings       []interface{} `yaml:"relabelings"`
+				MetricRelabelings []interface{} `yaml:"metricRelabelings"`
+			} `yaml:"serviceMonitor"`
+			PrometheusRule struct {
+				Enabled          bool `yaml:"enabled"`
+				AdditionalLabels struct {
+				} `yaml:"additionalLabels"`
+				Rules []interface{} `yaml:"rules"`
+			} `yaml:"prometheusRule"`
+		} `yaml:"metrics"`
+		Lifecycle struct {
+			PreStop struct {
+				Exec struct {
+					Command []string `yaml:"command"`
+				} `yaml:"exec"`
+			} `yaml:"preStop"`
+		} `yaml:"lifecycle"`
+		PriorityClassName string `yaml:"priorityClassName"`
+	} `yaml:"controller"`
+	RevisionHistoryLimit int `yaml:"revisionHistoryLimit"`
+	DefaultBackend       struct {
+		Enabled bool   `yaml:"enabled"`
+		Name    string `yaml:"name"`
+		Image   struct {
+			Registry                 string `yaml:"registry"`
+			Image                    string `yaml:"image"`
+			Tag                      string `yaml:"tag"`
+			PullPolicy               string `yaml:"pullPolicy"`
+			RunAsUser                int    `yaml:"runAsUser"`
+			RunAsNonRoot             bool   `yaml:"runAsNonRoot"`
+			ReadOnlyRootFilesystem   bool   `yaml:"readOnlyRootFilesystem"`
+			AllowPrivilegeEscalation bool   `yaml:"allowPrivilegeEscalation"`
+		} `yaml:"image"`
+		ExistingPsp string `yaml:"existingPsp"`
+		ExtraArgs   struct {
+		} `yaml:"extraArgs"`
+		ServiceAccount struct {
+			Create                       bool   `yaml:"create"`
+			Name                         string `yaml:"name"`
+			AutomountServiceAccountToken bool   `yaml:"automountServiceAccountToken"`
+		} `yaml:"serviceAccount"`
+		ExtraEnvs     []interface{} `yaml:"extraEnvs"`
+		Port          int           `yaml:"port"`
+		LivenessProbe struct {
+			FailureThreshold    int `yaml:"failureThreshold"`
+			InitialDelaySeconds int `yaml:"initialDelaySeconds"`
+			PeriodSeconds       int `yaml:"periodSeconds"`
+			SuccessThreshold    int `yaml:"successThreshold"`
+			TimeoutSeconds      int `yaml:"timeoutSeconds"`
+		} `yaml:"livenessProbe"`
+		ReadinessProbe struct {
+			FailureThreshold    int `yaml:"failureThreshold"`
+			InitialDelaySeconds int `yaml:"initialDelaySeconds"`
+			PeriodSeconds       int `yaml:"periodSeconds"`
+			SuccessThreshold    int `yaml:"successThreshold"`
+			TimeoutSeconds      int `yaml:"timeoutSeconds"`
+		} `yaml:"readinessProbe"`
+		Tolerations []interface{} `yaml:"tolerations"`
+		Affinity    struct {
+		} `yaml:"affinity"`
+		PodSecurityContext struct {
+		} `yaml:"podSecurityContext"`
+		ContainerSecurityContext struct {
+		} `yaml:"containerSecurityContext"`
+		PodLabels struct {
+		} `yaml:"podLabels"`
+		NodeSelector struct {
+			KubernetesIoOs string `yaml:"kubernetes.io/os"`
+		} `yaml:"nodeSelector"`
+		PodAnnotations struct {
+		} `yaml:"podAnnotations"`
+		ReplicaCount int `yaml:"replicaCount"`
+		MinAvailable int `yaml:"minAvailable"`
+		Resources    struct {
+		} `yaml:"resources"`
+		ExtraVolumeMounts []interface{} `yaml:"extraVolumeMounts"`
+		ExtraVolumes      []interface{} `yaml:"extraVolumes"`
+		Autoscaling       struct {
+			Annotations struct {
+			} `yaml:"annotations"`
+			Enabled                           bool `yaml:"enabled"`
+			MinReplicas                       int  `yaml:"minReplicas"`
+			MaxReplicas                       int  `yaml:"maxReplicas"`
+			TargetCPUUtilizationPercentage    int  `yaml:"targetCPUUtilizationPercentage"`
+			TargetMemoryUtilizationPercentage int  `yaml:"targetMemoryUtilizationPercentage"`
+		} `yaml:"autoscaling"`
+		Service struct {
+			Annotations struct {
+			} `yaml:"annotations"`
+			ExternalIPs              []interface{} `yaml:"externalIPs"`
+			LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
+			ServicePort              int           `yaml:"servicePort"`
+			Type                     string        `yaml:"type"`
+		} `yaml:"service"`
+		PriorityClassName string `yaml:"priorityClassName"`
+		Labels            struct {
+		} `yaml:"labels"`
+	} `yaml:"defaultBackend"`
+	Rbac struct {
+		Create bool `yaml:"create"`
+		Scope  bool `yaml:"scope"`
+	} `yaml:"rbac"`
+	PodSecurityPolicy struct {
+		Enabled bool `yaml:"enabled"`
+	} `yaml:"podSecurityPolicy"`
+	ServiceAccount struct {
+		Create                       bool   `yaml:"create"`
+		Name                         string `yaml:"name"`
+		AutomountServiceAccountToken bool   `yaml:"automountServiceAccountToken"`
+		Annotations                  struct {
+		} `yaml:"annotations"`
+	} `yaml:"serviceAccount"`
+	ImagePullSecrets []interface{} `yaml:"imagePullSecrets"`
+	TCP              struct {
+	} `yaml:"tcp"`
+	UDP struct {
+	} `yaml:"udp"`
+	PortNamePrefix string      `yaml:"portNamePrefix"`
+	DhParam        interface{} `yaml:"dhParam"`
+}
diff --git a/magefiles/mage.go b/magefiles/mage.go
new file mode 100644
index 000000000..97ab4712a
--- /dev/null
+++ b/magefiles/mage.go
@@ -0,0 +1,13 @@
+//go:build ignore
+// +build ignore
+
+package main
+
+import (
+	"github.com/magefile/mage/mage"
+	"os"
+)
+
+func main() {
+	os.Exit(mage.Main())
+}
diff --git a/magefiles/release.go b/magefiles/release.go
new file mode 100644
index 000000000..a48a9dbd0
--- /dev/null
+++ b/magefiles/release.go
@@ -0,0 +1,526 @@
+//go:build mage
+
+package main
+
+import (
+	"context"
+	"errors"
+	"fmt"
+	"github.com/google/go-github/v48/github"
+	"github.com/magefile/mage/mg"
+	"github.com/magefile/mage/sh"
+	"golang.org/x/oauth2"
+	"gopkg.in/yaml.v3"
+	"io"
+	"net"
+	"net/http"
+	"os"
+	"text/template"
+
+	"regexp"
+	"strings"
+	"time"
+)
+
+type Release mg.Namespace
+
+var INGRESS_ORG = "strongjz"             // the owner so we can test from forks
+var INGRESS_REPO = "ingress-nginx"       // the repo to pull from
+var RELEASE_BRANCH = "main"              //we only release from main
+var GITHUB_TOKEN string                  // the Google/gogithub lib needs an PAT to access the GitHub API
+var K8S_IO_ORG = "strongjz"              //the owner or organization for the k8s.io repo
+var K8S_IO_REPO = "k8s.io"               //the repo that holds the images yaml for production promotion
+var INGRESS_REGISTRY = "registry.k8s.io" //Container registry for storage Ingress-nginx images
+
+// ingress-nginx releases start with a TAG then a cloudbuild, then a promotion through a PR, this the location of that PR
+// var IMAGES_YAML = "https://raw.githubusercontent.com/kubernetes/k8s.io/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml"
+var IMAGES_YAML = "https://raw.githubusercontent.com/strongjz/k8s.io/testing/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml"
+
+var ctx = context.Background() // Context used for GitHub Client
+
+const CHANGELOG = "Changelog.md" //Name of the changelog
+
+func init() {
+	GITHUB_TOKEN = os.Getenv("GITHUB_TOKEN")
+}
+
+// PromoteImage Creates PR into the k8s.io repo for promotion of ingress from staging to production
+func (Release) PromoteImage(version, sha string) {
+
+}
+
+// Release Create a new release of ingress nginx controller
+func (Release) NewRelease(version string) {
+	//newRelease := Release{}
+
+	//update ingress-nginx version
+	//This is the step that kicks all the release process
+	//it is already done, so it kicks off the gcloud build of the controller images
+	//mg.Deps(mg.F(Tag.BumpNginx, version))
+
+	tag, err := getIngressNGINXVersion()
+	CheckIfError(err, "RELEASE Retrieving the current Ingress Nginx Version")
+
+	Info("RELEASE Checking Current Version %s to New Version %s", tag, version)
+	//if the version were upgrading does not match the TAG file, lets update the TAG file
+	if tag != version {
+		Warning("RELEASE Ingress Nginx TAG %s and new version %s do not match", tag, version)
+		mg.Deps(mg.F(Tag.BumpNginx, fmt.Sprintf("v%s", version)))
+	}
+
+	//update git controller tag controller-v$version
+	mg.Deps(mg.F(Tag.NewControllerTag, version))
+
+	//make release notes
+	releaseNotes, err := makeReleaseNotes(version)
+	CheckIfError(err, "RELEASE Creating Release Notes for version %s", version)
+	Info("RELEASE Release Notes %s completed", releaseNotes.Version)
+
+	//update chart values.yaml new controller tag and image digest
+	releaseNotes.PreviousHelmChartVersion = currentChartVersion()
+
+	//controller tag
+	updateChartValue("controller.image.tag", fmt.Sprintf("v%s", releaseNotes.Version))
+	//controller digest
+	if releaseNotes.ControllerImages[0].Name == "controller" {
+		updateChartValue("controller.image.digest", releaseNotes.ControllerImages[0].Digest)
+	}
+	//controller chroot digest
+	if releaseNotes.ControllerImages[1].Name == "controller-chroot" {
+		updateChartValue("controller.image.digestChroot", releaseNotes.ControllerImages[1].Digest)
+	}
+
+	//update helm chart app version
+	mg.Deps(mg.F(Helm.UpdateVersion, version))
+
+	releaseNotes.NewHelmChartVersion = currentChartVersion()
+
+	//update helm chart release notes
+	updateChartReleaseNotes(releaseNotes.HelmUpdates)
+
+	//Run helm docs update
+	CheckIfError(runHelmDocs(), "Error Updating Helm Docs ")
+
+	releaseNotes.helmTemplate()
+
+	//update static manifest
+	CheckIfError(updateStaticManifest(), "Error Updating Static manifests")
+
+	////update e2e docs TODO
+	updateE2EDocs()
+
+	//update documentation with ingress-nginx version
+	CheckIfError(updateIndexMD(releaseNotes.PreviousControllerVersion, releaseNotes.NewControllerVersion), "Error Updating %s", INDEX_DOCS)
+
+	//git commit TODO
+
+	//make Pull Request TODO
+
+	//make release TODO
+	//mg.Deps(mg.F(Release.CreateRelease, version))
+}
+
+const INDEX_DOCS = "docs/deploy/index.md"
+
+func updateIndexMD(old, new string) error {
+	Info("Updating Deploy docs with new version")
+	data, err := os.ReadFile(INDEX_DOCS)
+	CheckIfError(err, "Could not read INDEX_DOCS file %s", INDEX_DOCS)
+	datString := string(data)
+	datString = strings.Replace(datString, old, new, -1)
+	err = os.WriteFile(INDEX_DOCS, []byte(datString), 644)
+	if err != nil {
+		ErrorF("Could not write new %s %s", INDEX_DOCS, err)
+		return err
+	}
+	return nil
+}
+
+func updateE2EDocs() {
+	//hack/generate-deploy-scripts.sh
+	updates, err := sh.Output("./hack/generate-e2e-suite-doc.sh")
+	CheckIfError(err, "Could not run update hack script")
+	err = os.WriteFile("docs/e2e-tests.md", []byte(updates), 644)
+	CheckIfError(err, "Could not write new e2e test file ")
+}
+
+func installKustomize() error {
+	Info("Install Kustomize")
+	var g0 = sh.RunCmd("go")
+
+	// somewhere in your main code
+	err := g0("install", "sigs.k8s.io/kustomize/kustomize/v4@v4.5.4")
+	if err != nil {
+		return err
+	}
+	return nil
+}
+
+func updateStaticManifest() error {
+	CheckIfError(installKustomize(), "error installing kustomize")
+
+	//hack/generate-deploy-scripts.sh
+	err := sh.RunV("./hack/generate-deploy-scripts.sh")
+	if err != nil {
+		return err
+	}
+	return nil
+}
+
+//// CreateRelease Creates a new GitHub Release
+//func (Release) CreateRelease(name string) {
+//	releaser, err := gh_release.NewReleaser(INGRESS_ORG, INGRESS_REPO, GITHUB_TOKEN)
+//	CheckIfError(err, "GitHub Release Client error")
+//	newRelease, err := releaser.Create(fmt.Sprintf("controller-%s", name))
+//	CheckIfError(err, "Create release error")
+//	Info("New Release: Tag %v, ID: %v", newRelease.TagName, newRelease.ID)
+//}
+
+type ControllerImage struct {
+	Tag      string
+	Digest   string
+	Registry string
+	Name     string
+}
+
+type IngressRelease struct {
+	ControllerVersion string
+	ControllerImage   ControllerImage
+	ReleaseNote       ReleaseNote
+	Release           *github.RepositoryRelease
+}
+
+type ReleaseNote struct {
+	Version                   string
+	NewControllerVersion      string
+	PreviousControllerVersion string
+	ControllerImages          []ControllerImage
+	DepUpdates                []string
+	Updates                   []string
+	HelmUpdates               []string
+	NewHelmChartVersion       string
+	PreviousHelmChartVersion  string
+}
+
+// Returns a GitHub client ready for use
+func githubClient() *github.Client {
+	ts := oauth2.StaticTokenSource(
+		&oauth2.Token{AccessToken: GITHUB_TOKEN},
+	)
+	oauthClient := oauth2.NewClient(ctx, ts)
+	return github.NewClient(oauthClient)
+}
+
+// LatestCommitLogs Retrieves the commit log between the latest two controller versions.
+func (Release) LatestCommitLogs() {
+	commitLog := commitsBetweenTags()
+	for i, s := range commitLog {
+		Info("#%v Version %v", i, s)
+	}
+}
+
+func commitsBetweenTags() []string {
+	tags := getAllControllerTags()
+	Info("Getting Commits between %v and %v", tags[0], tags[1])
+	commitLog, err := git("log", "--full-history", "--pretty", "--oneline", fmt.Sprintf("%v..%v", tags[1], tags[0]))
+
+	if commitLog == "" {
+		Warning("All Controller Tags is empty")
+	}
+	CheckIfError(err, "Retrieving Commit log")
+	return strings.Split(commitLog, "\n")
+}
+
+// Generate Release Notes
+func (Release) ReleaseNotes(newVersion string) error {
+	notes, err := makeReleaseNotes(newVersion)
+	CheckIfError(err, "Creating Release Notes for version %s", newVersion)
+	Info("Release Notes %s completed", notes.Version)
+	return nil
+}
+
+func makeReleaseNotes(newVersion string) (*ReleaseNote, error) {
+	var newReleaseNotes = ReleaseNote{}
+
+	newReleaseNotes.Version = newVersion
+	allControllerTags := getAllControllerTags()
+
+	//new version
+	newReleaseNotes.NewControllerVersion = allControllerTags[0]
+	newControllerVersion := fmt.Sprintf("controller-v%s", newVersion)
+
+	//the newControllerVersion should match the latest tag
+	if newControllerVersion != allControllerTags[0] {
+		return nil, errors.New(fmt.Sprintf("Generating release new version %s didnt match the current latest tag %s", newControllerVersion, allControllerTags[0]))
+	}
+	//previous version
+	newReleaseNotes.PreviousControllerVersion = allControllerTags[1]
+
+	Info("New Version: %s Old Version: %s", newReleaseNotes.NewControllerVersion, newReleaseNotes.PreviousControllerVersion)
+
+	commits := commitsBetweenTags()
+
+	//dependency_updates
+	//all_updates
+	var allUpdates []string
+	var depUpdates []string
+	var helmUpdates []string
+	prRegex := regexp.MustCompile("\\(#\\d+\\)")
+	depBot := regexp.MustCompile("^(\\w){1,10} Bump ")
+	helmRegex := regexp.MustCompile("helm|chart")
+	for i, s := range commits {
+		//matches on PR
+		if prRegex.Match([]byte(s)) {
+			//matches a dependant bot update
+			if depBot.Match([]byte(s)) { //
+				Debug("#%v DEPENDABOT %v", i, s)
+				u := strings.SplitN(s, " ", 2)
+				depUpdates = append(depUpdates, u[1])
+			} else { // add it to the all updates slice
+				Debug("#%v ALL UPDATES %v", i, s)
+				u := strings.SplitN(s, " ", 2)
+				allUpdates = append(allUpdates, u[1])
+
+				//helm chart updates
+				if helmRegex.Match([]byte(s)) {
+					u := strings.SplitN(s, " ", 2)
+					helmUpdates = append(helmUpdates, u[1])
+				}
+			}
+
+		}
+	}
+	helmUpdates = append(helmUpdates, fmt.Sprintf("Update Ingress-Nginx version %s", newReleaseNotes.NewControllerVersion))
+
+	newReleaseNotes.Updates = allUpdates
+	newReleaseNotes.DepUpdates = depUpdates
+	newReleaseNotes.HelmUpdates = helmUpdates
+
+	//controller_image_digests
+	imagesYaml, err := downloadFile(IMAGES_YAML)
+	if err != nil {
+		ErrorF("Could not download file %s : %s", IMAGES_YAML, err)
+		return nil, err
+	}
+	Debug("%s", imagesYaml)
+
+	data := ImageYamls{}
+
+	err = yaml.Unmarshal([]byte(imagesYaml), &data)
+	if err != nil {
+		ErrorF("Could not unmarshal images yaml %s", err)
+		return nil, err
+	}
+
+	//controller
+	controllerDigest := findImageDigest(data, "controller", newVersion)
+	if len(controllerDigest) == 0 {
+		ErrorF("Controller Digest could not be found")
+		return nil, errors.New("Controller digest could not be found")
+	}
+
+	controllerChrootDigest := findImageDigest(data, "controller-chroot", newVersion)
+	if len(controllerChrootDigest) == 0 {
+		ErrorF("Controller Chroot Digest could not be found")
+		return nil, errors.New("Controller Chroot digest could not be found")
+	}
+
+	Debug("Latest Controller Digest %v", controllerDigest)
+	Debug("Latest Controller Chroot Digest %v", controllerChrootDigest)
+	c1 := ControllerImage{
+		Digest:   controllerDigest,
+		Registry: INGRESS_REGISTRY,
+		Name:     "controller",
+		Tag:      newReleaseNotes.NewControllerVersion,
+	}
+	c2 := ControllerImage{
+		Digest:   controllerChrootDigest,
+		Registry: INGRESS_REGISTRY,
+		Name:     "controller-chroot",
+		Tag:      newReleaseNotes.NewControllerVersion,
+	}
+	newReleaseNotes.ControllerImages = append(newReleaseNotes.ControllerImages, c1)
+	newReleaseNotes.ControllerImages = append(newReleaseNotes.ControllerImages, c2)
+	Debug("New Release Controller Images %s %s", newReleaseNotes.ControllerImages[0].Digest, newReleaseNotes.ControllerImages[1].Digest)
+
+	if DEBUG {
+		newReleaseNotes.printRelease()
+	}
+
+	//write it all out to the changelog file
+	newReleaseNotes.template()
+
+	return &newReleaseNotes, nil
+}
+
+func (i ControllerImage) print() string {
+	return fmt.Sprintf("%s/%s:%s@%s", i.Registry, i.Name, i.Tag, i.Digest)
+}
+
+func (r ReleaseNote) template() {
+	// Files are provided as a slice of strings.
+	changelogTemplate, err := os.ReadFile("Changelog.md.gotmpl")
+	if err != nil {
+		ErrorF("Could not read changelog template file %s", err)
+	}
+	Debug("ChangeLog Templates %s", string(changelogTemplate))
+	t := template.Must(template.New("changelog").Parse(string(changelogTemplate)))
+	// create a new file
+	file, err := os.Create(fmt.Sprintf("changelog/Changelog-%s.md", r.Version))
+	if err != nil {
+		ErrorF("Could not create changelog file %s", err)
+	}
+	defer file.Close()
+
+	err = t.Execute(file, r)
+	if err != nil {
+		ErrorF("executing template:", err)
+	}
+}
+
+func (r ReleaseNote) helmTemplate() {
+	// Files are provided as a slice of strings.
+	changelogTemplate, err := os.ReadFile("charts/ingress-nginx/changelog.md.gotmpl")
+	if err != nil {
+		ErrorF("Could not read changelog template file %s", err)
+	}
+	Debug("ChangeLog Templates %s", string(changelogTemplate))
+	t := template.Must(template.New("changelog").Parse(string(changelogTemplate)))
+	// create a new file
+	file, err := os.Create(fmt.Sprintf("charts/ingress-nginx/changelog/Changelog-%s.md", r.Version))
+	if err != nil {
+		ErrorF("Could not create changelog file %s", err)
+	}
+	defer file.Close()
+
+	err = t.Execute(file, r)
+	if err != nil {
+		ErrorF("executing template:", err)
+	}
+}
+
+func (r ReleaseNote) printRelease() {
+	Info("Release Version: %v", r.NewControllerVersion)
+	Info("Previous Version: %v", r.PreviousControllerVersion)
+	Info("Controller Image: %v", r.ControllerImages[0].print())
+	Info("Controller Chroot Image: %v", r.ControllerImages[1].print())
+	for i := range r.Updates {
+		Info("Update #%v - %v", i, r.Updates[i])
+	}
+	for j := range r.DepUpdates {
+		Info("Dependabot Update #%v - %v", j, r.DepUpdates[j])
+	}
+}
+
+type ImageYamls []ImageElement
+
+type ImageElement struct {
+	Name string              `json:"name"`
+	Dmap map[string][]string `json:"dmap"`
+}
+
+func findImageDigest(yaml ImageYamls, image, version string) string {
+	version = fmt.Sprintf("v%s", version)
+	Info("Searching Digest for %s:%s", image, version)
+	for i := range yaml {
+		if yaml[i].Name == image {
+			for k, v := range yaml[i].Dmap {
+				if v[0] == version {
+					return k
+				}
+			}
+			return ""
+		}
+	}
+	return ""
+}
+
+func downloadFile(url string) (string, error) {
+	client := &http.Client{
+		Transport: &http.Transport{
+			DialContext: (&net.Dialer{
+				Timeout:   5 * time.Second,
+				KeepAlive: 5 * time.Second,
+			}).DialContext,
+			TLSHandshakeTimeout:   5 * time.Second,
+			ResponseHeaderTimeout: 5 * time.Second,
+			ExpectContinueTimeout: 1 * time.Second,
+			MaxIdleConnsPerHost:   -1,
+		},
+	}
+	resp, err := client.Get(url)
+	if err != nil {
+		return "", nil
+	}
+	defer resp.Body.Close()
+
+	if resp.StatusCode != http.StatusOK {
+		return "", errors.New(fmt.Sprintf("Could not retrieve file, response from server %s for file %s", resp.StatusCode, url))
+	}
+	bodyBytes, err := io.ReadAll(resp.Body)
+	if err != nil {
+		return "", nil
+	}
+	return string(bodyBytes), nil
+}
+
+// Latest returns latest Github Release
+func (Release) Latest() error {
+	r, _, err := latestRelease()
+	if err != nil {
+		ErrorF("Latest Release error %s", err)
+		return err
+	}
+	Info("Latest Release %v", r.String())
+	return nil
+}
+
+func (Release) ReleaseByTag(tag string) error {
+	r, _, err := releaseByTag(tag)
+	if err != nil {
+		ErrorF("Release retrieve tag error %s", tag, err)
+		return err
+	}
+
+	Info("Latest Release %v", r.String())
+
+	return nil
+}
+
+func releaseByTag(tag string) (*github.RepositoryRelease, *github.Response, error) {
+	ghClient := githubClient()
+	return ghClient.Repositories.GetReleaseByTag(ctx, INGRESS_ORG, INGRESS_REPO, tag)
+}
+
+func latestRelease() (*github.RepositoryRelease, *github.Response, error) {
+	ghClient := githubClient()
+	return ghClient.Repositories.GetLatestRelease(ctx, INGRESS_ORG, INGRESS_REPO)
+}
+
+// Copy Test function to copy a release
+func (Release) Copy() error {
+	ghClient := githubClient()
+	kRelease, _, err := ghClient.Repositories.GetLatestRelease(ctx, "kubernetes", "ingress-nginx")
+	if err != nil {
+		ErrorF("Get Release from kubernetes %s", err)
+		return err
+	}
+
+	sRelease := &github.RepositoryRelease{
+		TagName:                kRelease.TagName,
+		Name:                   kRelease.Name,
+		Body:                   kRelease.Body,
+		Draft:                  kRelease.Draft,
+		Prerelease:             kRelease.GenerateReleaseNotes,
+		DiscussionCategoryName: kRelease.DiscussionCategoryName,
+		GenerateReleaseNotes:   kRelease.GenerateReleaseNotes,
+	}
+
+	sRelease, _, err = ghClient.Repositories.CreateRelease(ctx, "strongjz", "ingress-nginx", sRelease)
+	if err != nil {
+		ErrorF("Creating Strongjz release %s", err)
+		return err
+	}
+	Info("Copied over Kubernetes Release %v to Strongjz %v", &kRelease.Name, &sRelease.Name)
+	return nil
+}
diff --git a/magefiles/tags.go b/magefiles/tags.go
new file mode 100644
index 000000000..858677ba5
--- /dev/null
+++ b/magefiles/tags.go
@@ -0,0 +1,130 @@
+//go:build mage
+
+package main
+
+import (
+	"fmt"
+	semver "github.com/blang/semver/v4"
+	"github.com/magefile/mage/mg"
+	"github.com/magefile/mage/sh"
+	"os"
+	"strings"
+)
+
+type Tag mg.Namespace
+
+var git = sh.OutCmd("git")
+
+// Nginx returns the ingress-nginx current version
+func (Tag) Nginx() {
+	tag, err := getIngressNGINXVersion()
+	CheckIfError(err, "")
+	fmt.Printf("%v", tag)
+}
+
+func getIngressNGINXVersion() (string, error) {
+	dat, err := os.ReadFile("TAG")
+	CheckIfError(err, "Could not read TAG file")
+	datString := string(dat)
+	//remove newline
+	datString = strings.Replace(datString, "\n", "", -1)
+	return datString, nil
+}
+
+func checkSemVer(currentVersion, newVersion string) bool {
+	Info("Checking Sem Ver between current %s and new %s", currentVersion, newVersion)
+	cVersion, err := semver.Make(currentVersion[1:])
+	if err != nil {
+		ErrorF("TAG Error Current Tag %v Making Semver : %v", currentVersion[1:], err)
+		return false
+	}
+	nVersion, err := semver.Make(newVersion)
+	if err != nil {
+		ErrorF("TAG %v Error Making Semver %v \n", newVersion, err)
+		return false
+	}
+
+	err = nVersion.Validate()
+	if err != nil {
+		ErrorF("TAG %v not a valid Semver %v \n", newVersion, err)
+		return false
+	}
+
+	//The result will be
+	//0 if newVersion == currentVersion
+	//-1 if newVersion < currentVersion
+	//+1 if newVersion > currentVersion.
+	Info("TAG Comparing Old %s to New %s", cVersion.String(), nVersion.String())
+	comp := nVersion.Compare(cVersion)
+	if comp <= 0 {
+		Warning("SemVer:%v is not an update\n", newVersion)
+		return false
+	}
+	return true
+}
+
+// BumpNginx will update the nginx TAG
+func (Tag) BumpNginx(newTag string) {
+	Info("TAG BumpNginx version %v", newTag)
+	currentTag, err := getIngressNGINXVersion()
+	CheckIfError(err, "Getting Ingress-nginx Version")
+	bump(currentTag, newTag)
+}
+
+func bump(currentTag, newTag string) {
+	//check if semver is valid
+	if !checkSemVer(currentTag, newTag) {
+		ErrorF("ERROR: Semver is not valid %v", newTag)
+		os.Exit(1)
+	}
+
+	Info("Updating Tag %v to %v", currentTag, newTag)
+	err := os.WriteFile("TAG", []byte(newTag), 0666)
+	CheckIfError(err, "Error Writing New Tag File")
+}
+
+// Git Returns the latest git tag
+func (Tag) Git() {
+	tag, err := getGitTag()
+	CheckIfError(err, "Retrieving Git Tag")
+	Info("Git tag: %v", tag)
+}
+
+func getGitTag() (string, error) {
+	return git("describe", "--tags", "--match", "controller-v*", "--abbrev=0")
+}
+
+// ControllerTag Creates a new Git Tag for the ingress controller
+func (Tag) NewControllerTag(version string) {
+	Info("Create Ingress Nginx Controller Tag v%s", version)
+	tag, err := controllerTag(version)
+	CheckIfError(err, "Creating git tag")
+	Debug("Git Tag: %s", tag)
+}
+
+func controllerTag(version string) (string, error) {
+	return git("tag", "-a", "-m", fmt.Sprintf("-m \"Automated Controller release %v\"", version), fmt.Sprintf("controller-v%s", version))
+}
+
+func (Tag) AllControllerTags() {
+	tags := getAllControllerTags()
+	for i, s := range tags {
+		Info("#%v Version %v", i, s)
+	}
+}
+
+func getAllControllerTags() []string {
+	allControllerTags, err := git("tag", "-l", "--sort=-v:refname", "controller-v*")
+	CheckIfError(err, "Retrieving git tags")
+	if !sh.CmdRan(err) {
+		Warning("Issue Running Command")
+	}
+	if allControllerTags == "" {
+		Warning("All Controller Tags is empty")
+	}
+	Debug("Controller Tags: %v", allControllerTags)
+
+	temp := strings.Split(allControllerTags, "\n")
+	Debug("There are %v controller tags", len(temp))
+	return temp
+}
diff --git a/magefiles/yaml.go b/magefiles/yaml.go
new file mode 100644
index 000000000..7353508f3
--- /dev/null
+++ b/magefiles/yaml.go
@@ -0,0 +1,3 @@
+//go:build mage
+
+package main

From 76a5fdfecf40391e58e0f9e9f079f48d7d31df45 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 17 Jan 2023 14:13:50 -0500
Subject: [PATCH 0604/1641] change format

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 magefiles/common.go  | 14 ++++++++++++++
 magefiles/docker.go  | 14 ++++++++++++++
 magefiles/go.go      | 14 ++++++++++++++
 magefiles/helm.go    | 14 ++++++++++++++
 magefiles/mage.go    | 14 ++++++++++++++
 magefiles/release.go | 14 ++++++++++++++
 magefiles/tags.go    | 14 ++++++++++++++
 magefiles/yaml.go    | 14 ++++++++++++++
 8 files changed, 112 insertions(+)

diff --git a/magefiles/common.go b/magefiles/common.go
index ae2fed0c4..772e5527c 100644
--- a/magefiles/common.go
+++ b/magefiles/common.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build mage
 
 package main
diff --git a/magefiles/docker.go b/magefiles/docker.go
index 7353508f3..443722de1 100644
--- a/magefiles/docker.go
+++ b/magefiles/docker.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build mage
 
 package main
diff --git a/magefiles/go.go b/magefiles/go.go
index 352b8fb1e..9ef4d9fdc 100644
--- a/magefiles/go.go
+++ b/magefiles/go.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build mage
 
 package main
diff --git a/magefiles/helm.go b/magefiles/helm.go
index 87966dea0..2ac2fc573 100644
--- a/magefiles/helm.go
+++ b/magefiles/helm.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build mage
 
 package main
diff --git a/magefiles/mage.go b/magefiles/mage.go
index 97ab4712a..c6d4a2587 100644
--- a/magefiles/mage.go
+++ b/magefiles/mage.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build ignore
 // +build ignore
 
diff --git a/magefiles/release.go b/magefiles/release.go
index a48a9dbd0..714c24334 100644
--- a/magefiles/release.go
+++ b/magefiles/release.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build mage
 
 package main
diff --git a/magefiles/tags.go b/magefiles/tags.go
index 858677ba5..b8dc86f88 100644
--- a/magefiles/tags.go
+++ b/magefiles/tags.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build mage
 
 package main
diff --git a/magefiles/yaml.go b/magefiles/yaml.go
index 7353508f3..443722de1 100644
--- a/magefiles/yaml.go
+++ b/magefiles/yaml.go
@@ -1,3 +1,17 @@
+//Copyright 2023 The Kubernetes Authors.
+//
+//Licensed under the Apache License, Version 2.0 (the "License");
+//you may not use this file except in compliance with the License.
+//You may obtain a copy of the License at
+//
+//    http://www.apache.org/licenses/LICENSE-2.0
+//
+//Unless required by applicable law or agreed to in writing, software
+//distributed under the License is distributed on an "AS IS" BASIS,
+//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+//See the License for the specific language governing permissions and
+//limitations under the License.
+
 //go:build mage
 
 package main

From 22d9c35edec8faeca4cf4f8b72e8f08da20c1618 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 17 Jan 2023 14:22:38 -0500
Subject: [PATCH 0605/1641] fixed boiler plate lint

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 magefiles/common.go  | 30 ++++++++++++++++--------------
 magefiles/docker.go  | 30 ++++++++++++++++--------------
 magefiles/go.go      | 30 ++++++++++++++++--------------
 magefiles/helm.go    | 30 ++++++++++++++++--------------
 magefiles/mage.go    | 30 ++++++++++++++++--------------
 magefiles/release.go | 30 ++++++++++++++++--------------
 magefiles/tags.go    | 30 ++++++++++++++++--------------
 magefiles/yaml.go    | 30 ++++++++++++++++--------------
 8 files changed, 128 insertions(+), 112 deletions(-)

diff --git a/magefiles/common.go b/magefiles/common.go
index 772e5527c..c5c33f989 100644
--- a/magefiles/common.go
+++ b/magefiles/common.go
@@ -1,19 +1,21 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build mage
 
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (
diff --git a/magefiles/docker.go b/magefiles/docker.go
index 443722de1..d7c7f588e 100644
--- a/magefiles/docker.go
+++ b/magefiles/docker.go
@@ -1,17 +1,19 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build mage
 
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
diff --git a/magefiles/go.go b/magefiles/go.go
index 9ef4d9fdc..2385b089e 100644
--- a/magefiles/go.go
+++ b/magefiles/go.go
@@ -1,19 +1,21 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build mage
 
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 //import (
diff --git a/magefiles/helm.go b/magefiles/helm.go
index 2ac2fc573..f9bf09cb5 100644
--- a/magefiles/helm.go
+++ b/magefiles/helm.go
@@ -1,19 +1,21 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build mage
 
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (
diff --git a/magefiles/mage.go b/magefiles/mage.go
index c6d4a2587..605d687a9 100644
--- a/magefiles/mage.go
+++ b/magefiles/mage.go
@@ -1,20 +1,22 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build ignore
 // +build ignore
 
+/*
+Copyright 2021 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (
diff --git a/magefiles/release.go b/magefiles/release.go
index 714c24334..cbc4d51de 100644
--- a/magefiles/release.go
+++ b/magefiles/release.go
@@ -1,19 +1,21 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build mage
 
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (
diff --git a/magefiles/tags.go b/magefiles/tags.go
index b8dc86f88..02bbbcb37 100644
--- a/magefiles/tags.go
+++ b/magefiles/tags.go
@@ -1,19 +1,21 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build mage
 
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (
diff --git a/magefiles/yaml.go b/magefiles/yaml.go
index 443722de1..d7c7f588e 100644
--- a/magefiles/yaml.go
+++ b/magefiles/yaml.go
@@ -1,17 +1,19 @@
-//Copyright 2023 The Kubernetes Authors.
-//
-//Licensed under the Apache License, Version 2.0 (the "License");
-//you may not use this file except in compliance with the License.
-//You may obtain a copy of the License at
-//
-//    http://www.apache.org/licenses/LICENSE-2.0
-//
-//Unless required by applicable law or agreed to in writing, software
-//distributed under the License is distributed on an "AS IS" BASIS,
-//WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-//See the License for the specific language governing permissions and
-//limitations under the License.
-
 //go:build mage
 
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main

From 87baa3e99e1cb9021455cea02c0a98706d095561 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 18 Jan 2023 15:54:44 -0500
Subject: [PATCH 0606/1641] update docs, and production urls

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 magefiles/helm.go    |   2 +-
 magefiles/release.go | 112 ++++++++++++++++++++++---------------------
 2 files changed, 59 insertions(+), 55 deletions(-)

diff --git a/magefiles/helm.go b/magefiles/helm.go
index f9bf09cb5..a57c46813 100644
--- a/magefiles/helm.go
+++ b/magefiles/helm.go
@@ -104,7 +104,7 @@ func updateChartReleaseNotes(releasesNotes []string) {
 	for i := range releasesNotes {
 		releaseNoteString = fmt.Sprintf("%s - %s\n", releaseNoteString, releasesNotes[i])
 	}
-	Info("HLEM Release note string %s", releaseNoteString)
+	Info("HELM Release note string %s", releaseNoteString)
 	chart.Annotations["artifacthub.io/changes"] = releaseNoteString
 	err = chartutil.SaveChartfile(HelmChartPath, chart)
 	CheckIfError(err, "HELM Saving updated release notes for Chart")
diff --git a/magefiles/release.go b/magefiles/release.go
index cbc4d51de..3340a99ff 100644
--- a/magefiles/release.go
+++ b/magefiles/release.go
@@ -40,22 +40,61 @@ import (
 
 type Release mg.Namespace
 
-var INGRESS_ORG = "strongjz"             // the owner so we can test from forks
-var INGRESS_REPO = "ingress-nginx"       // the repo to pull from
-var RELEASE_BRANCH = "main"              //we only release from main
-var GITHUB_TOKEN string                  // the Google/gogithub lib needs an PAT to access the GitHub API
-var K8S_IO_ORG = "strongjz"              //the owner or organization for the k8s.io repo
-var K8S_IO_REPO = "k8s.io"               //the repo that holds the images yaml for production promotion
-var INGRESS_REGISTRY = "registry.k8s.io" //Container registry for storage Ingress-nginx images
+var INGRESS_ORG = "kubernetes"                                              // the owner so we can test from forks
+var INGRESS_REPO = "ingress-nginx"                                          // the repo to pull from
+var RELEASE_BRANCH = "main"                                                 //we only release from main
+var GITHUB_TOKEN string                                                     // the Google/gogithub lib needs an PAT to access the GitHub API
+var K8S_IO_ORG = "kubernetes"                                               //the owner or organization for the k8s.io repo
+var K8S_IO_REPO = "k8s.io"                                                  //the repo that holds the images yaml for production promotion
+var INGRESS_REGISTRY = "registry.k8s.io"                                    //Container registry for storage Ingress-nginx images
+var KUSTOMIZE_INSTALL_VERSION = "sigs.k8s.io/kustomize/kustomize/v4@v4.5.4" //static deploys needs kustomize to generate the template
 
 // ingress-nginx releases start with a TAG then a cloudbuild, then a promotion through a PR, this the location of that PR
-// var IMAGES_YAML = "https://raw.githubusercontent.com/kubernetes/k8s.io/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml"
-var IMAGES_YAML = "https://raw.githubusercontent.com/strongjz/k8s.io/testing/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml"
-
+var IMAGES_YAML = "https://raw.githubusercontent.com/kubernetes/k8s.io/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml"
 var ctx = context.Background() // Context used for GitHub Client
 
-const CHANGELOG = "Changelog.md" //Name of the changelog
+const INDEX_DOCS = "docs/deploy/index.md" //index.md has a version of the controller and needs to updated
+const CHANGELOG = "Changelog.md"          //Name of the changelog
 
+//ControllerImage - struct with info about controllers
+type ControllerImage struct {
+	Tag      string
+	Digest   string
+	Registry string
+	Name     string
+}
+
+//IngressRelease All the information about an ingress-nginx release that gets updated
+type IngressRelease struct {
+	ControllerVersion string
+	ControllerImage   ControllerImage
+	ReleaseNote       ReleaseNote
+	Release           *github.RepositoryRelease
+}
+
+//ReleaseNote - All the pieces of information/documents that get updated during a release
+type ReleaseNote struct {
+	Version                   string
+	NewControllerVersion      string
+	PreviousControllerVersion string
+	ControllerImages          []ControllerImage
+	DepUpdates                []string
+	Updates                   []string
+	HelmUpdates               []string
+	NewHelmChartVersion       string
+	PreviousHelmChartVersion  string
+}
+
+//IMAGES_YAML returns this data structure
+type ImageYamls []ImageElement
+
+//ImageElement - a specific image and it's data structure the dmap is a list of shas and container versions
+type ImageElement struct {
+	Name string              `json:"name"`
+	Dmap map[string][]string `json:"dmap"`
+}
+
+//init will set the GitHub token from the committers/releasers env var
 func init() {
 	GITHUB_TOKEN = os.Getenv("GITHUB_TOKEN")
 }
@@ -79,7 +118,7 @@ func (Release) NewRelease(version string) {
 
 	Info("RELEASE Checking Current Version %s to New Version %s", tag, version)
 	//if the version were upgrading does not match the TAG file, lets update the TAG file
-	if tag != version {
+	if tag[1:] != version {
 		Warning("RELEASE Ingress Nginx TAG %s and new version %s do not match", tag, version)
 		mg.Deps(mg.F(Tag.BumpNginx, fmt.Sprintf("v%s", version)))
 	}
@@ -122,22 +161,20 @@ func (Release) NewRelease(version string) {
 	//update static manifest
 	CheckIfError(updateStaticManifest(), "Error Updating Static manifests")
 
-	////update e2e docs TODO
+	////update e2e docs
 	updateE2EDocs()
 
 	//update documentation with ingress-nginx version
 	CheckIfError(updateIndexMD(releaseNotes.PreviousControllerVersion, releaseNotes.NewControllerVersion), "Error Updating %s", INDEX_DOCS)
 
+	//keeping these manual for now
 	//git commit TODO
-
 	//make Pull Request TODO
-
 	//make release TODO
 	//mg.Deps(mg.F(Release.CreateRelease, version))
 }
 
-const INDEX_DOCS = "docs/deploy/index.md"
-
+// the index.md doc needs the controller version updated
 func updateIndexMD(old, new string) error {
 	Info("Updating Deploy docs with new version")
 	data, err := os.ReadFile(INDEX_DOCS)
@@ -152,29 +189,29 @@ func updateIndexMD(old, new string) error {
 	return nil
 }
 
+//runs the hack/generate-deploy-scripts.sh
 func updateE2EDocs() {
-	//hack/generate-deploy-scripts.sh
 	updates, err := sh.Output("./hack/generate-e2e-suite-doc.sh")
 	CheckIfError(err, "Could not run update hack script")
 	err = os.WriteFile("docs/e2e-tests.md", []byte(updates), 644)
 	CheckIfError(err, "Could not write new e2e test file ")
 }
 
+//The static deploy scripts use kustomize to generate them, this function ensures kustomize is installed
 func installKustomize() error {
 	Info("Install Kustomize")
 	var g0 = sh.RunCmd("go")
-
 	// somewhere in your main code
-	err := g0("install", "sigs.k8s.io/kustomize/kustomize/v4@v4.5.4")
+	err := g0("install", KUSTOMIZE_INSTALL_VERSION)
 	if err != nil {
 		return err
 	}
 	return nil
 }
 
+//
 func updateStaticManifest() error {
 	CheckIfError(installKustomize(), "error installing kustomize")
-
 	//hack/generate-deploy-scripts.sh
 	err := sh.RunV("./hack/generate-deploy-scripts.sh")
 	if err != nil {
@@ -192,32 +229,6 @@ func updateStaticManifest() error {
 //	Info("New Release: Tag %v, ID: %v", newRelease.TagName, newRelease.ID)
 //}
 
-type ControllerImage struct {
-	Tag      string
-	Digest   string
-	Registry string
-	Name     string
-}
-
-type IngressRelease struct {
-	ControllerVersion string
-	ControllerImage   ControllerImage
-	ReleaseNote       ReleaseNote
-	Release           *github.RepositoryRelease
-}
-
-type ReleaseNote struct {
-	Version                   string
-	NewControllerVersion      string
-	PreviousControllerVersion string
-	ControllerImages          []ControllerImage
-	DepUpdates                []string
-	Updates                   []string
-	HelmUpdates               []string
-	NewHelmChartVersion       string
-	PreviousHelmChartVersion  string
-}
-
 // Returns a GitHub client ready for use
 func githubClient() *github.Client {
 	ts := oauth2.StaticTokenSource(
@@ -428,13 +439,6 @@ func (r ReleaseNote) printRelease() {
 	}
 }
 
-type ImageYamls []ImageElement
-
-type ImageElement struct {
-	Name string              `json:"name"`
-	Dmap map[string][]string `json:"dmap"`
-}
-
 func findImageDigest(yaml ImageYamls, image, version string) string {
 	version = fmt.Sprintf("v%s", version)
 	Info("Searching Digest for %s:%s", image, version)

From 3885a823a01573b904a762cadd0e9f794280a255 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 19 Jan 2023 11:50:27 -0500
Subject: [PATCH 0607/1641] go fmt

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 magefiles/release.go | 17 ++++++++---------
 1 file changed, 8 insertions(+), 9 deletions(-)

diff --git a/magefiles/release.go b/magefiles/release.go
index 3340a99ff..3c715bc07 100644
--- a/magefiles/release.go
+++ b/magefiles/release.go
@@ -56,7 +56,7 @@ var ctx = context.Background() // Context used for GitHub Client
 const INDEX_DOCS = "docs/deploy/index.md" //index.md has a version of the controller and needs to updated
 const CHANGELOG = "Changelog.md"          //Name of the changelog
 
-//ControllerImage - struct with info about controllers
+// ControllerImage - struct with info about controllers
 type ControllerImage struct {
 	Tag      string
 	Digest   string
@@ -64,7 +64,7 @@ type ControllerImage struct {
 	Name     string
 }
 
-//IngressRelease All the information about an ingress-nginx release that gets updated
+// IngressRelease All the information about an ingress-nginx release that gets updated
 type IngressRelease struct {
 	ControllerVersion string
 	ControllerImage   ControllerImage
@@ -72,7 +72,7 @@ type IngressRelease struct {
 	Release           *github.RepositoryRelease
 }
 
-//ReleaseNote - All the pieces of information/documents that get updated during a release
+// ReleaseNote - All the pieces of information/documents that get updated during a release
 type ReleaseNote struct {
 	Version                   string
 	NewControllerVersion      string
@@ -85,16 +85,16 @@ type ReleaseNote struct {
 	PreviousHelmChartVersion  string
 }
 
-//IMAGES_YAML returns this data structure
+// IMAGES_YAML returns this data structure
 type ImageYamls []ImageElement
 
-//ImageElement - a specific image and it's data structure the dmap is a list of shas and container versions
+// ImageElement - a specific image and it's data structure the dmap is a list of shas and container versions
 type ImageElement struct {
 	Name string              `json:"name"`
 	Dmap map[string][]string `json:"dmap"`
 }
 
-//init will set the GitHub token from the committers/releasers env var
+// init will set the GitHub token from the committers/releasers env var
 func init() {
 	GITHUB_TOKEN = os.Getenv("GITHUB_TOKEN")
 }
@@ -189,7 +189,7 @@ func updateIndexMD(old, new string) error {
 	return nil
 }
 
-//runs the hack/generate-deploy-scripts.sh
+// runs the hack/generate-deploy-scripts.sh
 func updateE2EDocs() {
 	updates, err := sh.Output("./hack/generate-e2e-suite-doc.sh")
 	CheckIfError(err, "Could not run update hack script")
@@ -197,7 +197,7 @@ func updateE2EDocs() {
 	CheckIfError(err, "Could not write new e2e test file ")
 }
 
-//The static deploy scripts use kustomize to generate them, this function ensures kustomize is installed
+// The static deploy scripts use kustomize to generate them, this function ensures kustomize is installed
 func installKustomize() error {
 	Info("Install Kustomize")
 	var g0 = sh.RunCmd("go")
@@ -209,7 +209,6 @@ func installKustomize() error {
 	return nil
 }
 
-//
 func updateStaticManifest() error {
 	CheckIfError(installKustomize(), "error installing kustomize")
 	//hack/generate-deploy-scripts.sh

From 4e85acce99fa27d56cc30aa2ef440e5d3c8f3359 Mon Sep 17 00:00:00 2001
From: Aarni Koskela <akx@iki.fi>
Date: Wed, 25 Jan 2023 11:44:11 +0200
Subject: [PATCH 0608/1641] Move and spell-check Kubernetes 1.22 migration FAQ
 (#9544)

* Move Kubernetes 1.22 migration guide to a separate file

* Reformat and spell-check Kubernetes 1.22 migration doc
---
 docs/index.md                        | 232 +------------------------
 docs/user-guide/k8s-122-migration.md | 245 +++++++++++++++++++++++++++
 2 files changed, 248 insertions(+), 229 deletions(-)
 create mode 100644 docs/user-guide/k8s-122-migration.md

diff --git a/docs/index.md b/docs/index.md
index fded1b2bc..bcf4a4018 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -11,233 +11,7 @@ You can learn more about using [Ingress](http://kubernetes.io/docs/user-guide/in
 See [Deployment](./deploy/) for a whirlwind tour that will get you started.
 
 
-# FAQ - Migration to apiVersion `networking.k8s.io/v1`
+# FAQ - Kubernetes 1.22 Migration
 
-If you are using Ingress objects in your cluster (running Kubernetes older than v1.22), and you plan to upgrade to Kubernetes v1.22, this section is relevant to you.
-
-- Please read this [official blog on deprecated Ingress API versions](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/) 
-
-- Please read this [official documentation on the IngressClass object](https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class)
-
-## What is an IngressClass and why is it important for users of Ingress-NGINX controller now ?
-
-IngressClass is a Kubernetes resource. See the description below. It's important because until now, a default install of the Ingress-NGINX controller did not require any IngressClass object. From version 1.0.0 of the Ingress-NGINX Controller, an IngressClass object is required.
-
-On clusters with more than one instance of the Ingress-NGINX controller, all instances of the controllers must be aware of which Ingress objects they serve. The `ingressClassName` field of an Ingress is the way to let the controller know about that. 
-
-```console
-kubectl explain ingressclass                                                           
-```
-```
-KIND:     IngressClass                                                               
-VERSION:  networking.k8s.io/v1                     
-
-DESCRIPTION:    
-     IngressClass represents the class of the Ingress, referenced by the Ingress
-     Spec. The `ingressclass.kubernetes.io/is-default-class` annotation can be
-     used to indicate that an IngressClass should be considered default. When a
-     single IngressClass resource has this annotation set to true, new Ingress       
-     resources without a class specified will be assigned this default class.                         
-
-FIELDS:                                   
-   apiVersion   <string>                                                             
-     APIVersion defines the versioned schema of this representation of an            
-     object. Servers should convert recognized schemas to the latest internal                         
-     value, and may reject unrecognized values. More info:                                            
-     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
-                                                                                     
-   kind <string>                                                                     
-     Kind is a string value representing the REST resource this object                                
-     represents. Servers may infer this from the endpoint the client submits                          
-     requests to. Cannot be updated. In CamelCase. More info:            
-     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
-
-   metadata     <Object>                           
-     Standard object's metadata. More info:                                                           
-     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
-
-   spec <Object>                                   
-     Spec is the desired state of the IngressClass. More info:                                        
-     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status`
-
-```
-
-## What has caused this change in behavior?
-
-There are 2 reasons primarily.
-
-### Reason #1
-
-Until K8s version 1.21, it was possible to create an Ingress resource using deprecated versions of the Ingress API, such as:
-
-  - `extensions/v1beta1`
-  - `networking.k8s.io/v1beta1`
-
-You would get a message about deprecation, but the Ingress resource would get created.
-
-From K8s version 1.22 onwards, you can **only** access the Ingress API via the stable, `networking.k8s.io/v1` API. The reason is explained in the [official blog on deprecated ingress API versions](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/).
-
-### Reason #2
-
-If you are already using the Ingress-NGINX controller and then upgrade to K8s version v1.22 , there are several scenarios where your existing Ingress objects will not work how you expect. Read this FAQ to check which scenario matches your use case.
-
-## What is ingressClassName field ?
-
-`ingressClassName` is a field in the specs of an Ingress object.
-
-```shell
-kubectl explain ingress.spec.ingressClassName
-```
-```console
-KIND:     Ingress
-VERSION:  networking.k8s.io/v1
-
-FIELD:    ingressClassName <string>
-
-DESCRIPTION:
-     IngressClassName is the name of the IngressClass cluster resource. The
-     associated IngressClass defines which controller will implement the
-     resource. This replaces the deprecated `kubernetes.io/ingress.class`
-     annotation. For backwards compatibility, when that annotation is set, it
-     must be given precedence over this field. The controller may emit a warning
-     if the field and annotation have different values. Implementations of this
-     API should ignore Ingresses without a class specified. An IngressClass
-     resource may be marked as default, which can be used to set a default value
-     for this field. For more information, refer to the IngressClass
-     documentation.
-```
-
-The `.spec.ingressClassName` behavior has precedence over the deprecated `kubernetes.io/ingress.class` annotation.
-
-
-## I have only one ingress controller in my cluster. What should I do?
-
-If a single instance of the Ingress-NGINX controller is the sole Ingress controller running in your cluster, you should add the annotation "ingressclass.kubernetes.io/is-default-class" in your IngressClass, so any new Ingress objects will have this one as default IngressClass.
-
-When using Helm, you can enable this annotation by setting `.controller.ingressClassResource.default: true` in your Helm chart installation's values file.
-
-If you have any old Ingress objects remaining without an IngressClass set, you can do one or more of the following to make the Ingress-NGINX controller aware of the old objects:
-
-- You can manually set the [`.spec.ingressClassName`](https://kubernetes.io/docs/reference/kubernetes-api/service-resources/ingress-v1/#IngressSpec) field in the manifest of your own Ingress resources.
-- You can re-create them after setting the `ingressclass.kubernetes.io/is-default-class` annotation to `true` on the IngressClass
-- Alternatively you can make the Ingress-NGINX controller watch Ingress objects without the ingressClassName field set by starting your Ingress-NGINX with the flag [--watch-ingress-without-class=true](#what-is-the-flag-watch-ingress-without-class) . When using Helm, you can configure your Helm chart installation's values file with `.controller.watchIngressWithoutClass: true`
-
-You can configure your Helm chart installation's values file with `.controller.watchIngressWithoutClass: true`. 
-
-We recommend that you create the IngressClass as shown below:
-```
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller 
-  name: nginx
-  annotations:
-    ingressclass.kubernetes.io/is-default-class: "true"
-spec:
-  controller: k8s.io/ingress-nginx
-```
-
-And add the value `spec.ingressClassName=nginx` in your Ingress objects.
-
-
-## I have multiple ingress objects in my cluster. What should I do ?
-- If you have lot of ingress objects without ingressClass configuration, you can run the ingress-controller with the flag `--watch-ingress-without-class=true`.
-
-
-### What is the flag '--watch-ingress-without-class' ?
-- Its a flag that is passed,as an argument, to the `nginx-ingress-controller` executable. In the configuration, it looks like this:
-```
-...
-...
-args:
-  - /nginx-ingress-controller
-  - --watch-ingress-without-class=true
-  - --publish-service=$(POD_NAMESPACE)/ingress-nginx-dev-v1-test-controller
-  - --election-id=ingress-controller-leader
-  - --controller-class=k8s.io/ingress-nginx
-  - --configmap=$(POD_NAMESPACE)/ingress-nginx-dev-v1-test-controller
-  - --validating-webhook=:8443
-  - --validating-webhook-certificate=/usr/local/certificates/cert
-  - --validating-webhook-key=/usr/local/certificates/key
-...
-...
-```
-
-## I have more than one controller in my cluster and already use the annotation ?
-
-No problem. This should still keep working, but we highly recommend you to test!
-
-Even though `kubernetes.io/ingress.class` is deprecated, the Ingress-NGINX controller still understands that annotation.
-If you want to follow good practice, you should consider migrating to use IngressClass and `.spec.ingressClassName`.
-
-## I have more than one controller running in my cluster, and I want to use the new API ?
-
-In this scenario, you need to create multiple IngressClasses (see example one). But be aware that IngressClass works in a very specific way: you will need to change the `.spec.controller` value in your IngressClass and configure the controller to expect the exact same value.
-
-Let's see some example, supposing that you have three IngressClasses:
-
-- IngressClass `ingress-nginx-one`, with `.spec.controller` equal to `example.com/ingress-nginx1`
-- IngressClass `ingress-nginx-two`, with `.spec.controller` equal to `example.com/ingress-nginx2`
-- IngressClass `ingress-nginx-three`, with `.spec.controller` equal to `example.com/ingress-nginx1`
-
-(for private use, you can also use a controller name that doesn't contain a `/`; for example: `ingress-nginx1`)
-
-When deploying your ingress controllers, you will have to change the `--controller-class` field as follows:
-
-- Ingress-Nginx A, configured to use controller class name `example.com/ingress-nginx1`
-- Ingress-Nginx B, configured to use controller class name `example.com/ingress-nginx2`
-
-Then, when you create an Ingress object with its `ingressClassName` set to `ingress-nginx-two`, only controllers looking for the `example.com/ingress-nginx2` controller class pay attention to the new object. Given that Ingress-Nginx B is set up that way, it will serve that object, whereas Ingress-Nginx A ignores the new Ingress.
-
-Bear in mind that, if you start Ingress-Nginx B with the command line argument `--watch-ingress-without-class=true`, then it will serve:
-
-1. Ingresses without any `ingressClassName` set
-2. Ingresses where the deprecated annotation (`kubernetes.io/ingress.class`) matches the value set in the command line argument `--ingress-class`
-3. Ingresses that refer to any IngressClass that has the same `spec.controller` as configured in `--controller-class`
-
-If you start Ingress-Nginx B with the command line argument `--watch-ingress-without-class=true` and you run Ingress-Nginx A with the command line argument `--watch-ingress-without-class=false` then this is a supported configuration. If you have two Ingress-NGINX controllers for the same cluster, both running with `--watch-ingress-without-class=true` then there is likely to be a conflict.
-
-## I am seeing this error message in the logs of the Ingress-NGINX controller: "ingress class annotation is not equal to the expected by Ingress Controller". Why ?
-
-- It is highly likely that you will also see the name of the ingress resource in the same error message. This error message has been observed on use the deprecated annotation (`kubernetes.io/ingress.class`) in a Ingress resource manifest. It is recommended to use the `.spec.ingressClassName` field of the Ingress resource, to specify the name of the IngressClass of the Ingress you are defining.
-
-## How to easily install multiple instances of the ingress-NGINX controller in the same cluster ?
-- Create a new namespace
-  ```
-  kubectl create namespace ingress-nginx-2
-  ```
-- Use Helm to install the additional instance of the ingress controller
-- Ensure you have Helm working (refer to the [Helm documentation](https://helm.sh/docs/))
-- We have to assume that you have the helm repo for the ingress-NGINX controller already added to your Helm config. But, if you have not added the helm repo then you can do this to add the repo to your helm config;
-  ```
-  helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx
-  ```
-- Make sure you have updated the helm repo data;
-  ```
-  helm repo update
-  ```
-- Now, install an additional instance of the ingress-NGINX controller like this:
-  ```
-  helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
-  --namespace ingress-nginx-2 \
-  --set controller.ingressClassResource.name=nginx-two \
-  --set controller.ingressClass=nginx-two \
-  --set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
-  --set controller.ingressClassResource.enabled=true \
-  --set controller.ingressClassByName=true
-  ```
-- If you need to install yet another instance, then repeat the procedure to create a new namespace, change the values such as names & namespaces (for example from "-2" to "-3"), or anything else that meets your needs.
-- If you need to install all instances in the same namespace, then you need to specify a different **election id**, like this:
-  ```
-  helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
-  --namespace kube-system \
-  --set controller.electionID=nginx-two-leader \
-  --set controller.ingressClassResource.name=nginx-two \
-  --set controller.ingressClass=nginx-two \
-  --set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
-  --set controller.ingressClassResource.enabled=true \
-  --set controller.ingressClassByName=true
-  ```
-  - Note, controller.ingressClassResource.name and controller.ingressClass have to be set with the value of the new class as the first is to create the IngressClass object and the other is to modify the deployment of the actuall ingress controller pod.
+If you are using Ingress objects in your cluster (running Kubernetes older than v1.22),
+and you plan to upgrade to Kubernetes v1.22, please read [the migration guide here](./user-guide/k8s-122-migration.md).
diff --git a/docs/user-guide/k8s-122-migration.md b/docs/user-guide/k8s-122-migration.md
new file mode 100644
index 000000000..34893f931
--- /dev/null
+++ b/docs/user-guide/k8s-122-migration.md
@@ -0,0 +1,245 @@
+# FAQ - Migration to Kubernetes 1.22 and apiVersion `networking.k8s.io/v1`
+
+If you are using Ingress objects in your cluster (running Kubernetes older than v1.22),
+and you plan to upgrade to Kubernetes v1.22, this page is relevant to you.
+
+- Please read this [official blog on deprecated Ingress API versions](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/)
+- Please read this [official documentation on the IngressClass object](https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class)
+
+## What is an IngressClass and why is it important for users of ingress-nginx controller now?
+
+IngressClass is a Kubernetes resource. See the description below.
+It's important because until now, a default install of the ingress-nginx controller did not require a IngressClass object.
+From version 1.0.0 of the ingress-nginx controller, an IngressClass object is required.
+
+On clusters with more than one instance of the ingress-nginx controller, all instances of the controllers must be aware of which Ingress objects they serve.
+The `ingressClassName` field of an Ingress is the way to let the controller know about that.
+
+```console
+kubectl explain ingressclass
+```
+
+```
+KIND:     IngressClass
+VERSION:  networking.k8s.io/v1
+DESCRIPTION:
+     IngressClass represents the class of the Ingress, referenced by the Ingress
+     Spec. The `ingressclass.kubernetes.io/is-default-class` annotation can be
+     used to indicate that an IngressClass should be considered default. When a
+     single IngressClass resource has this annotation set to true, new Ingress
+     resources without a class specified will be assigned this default class.
+FIELDS:
+   apiVersion   <string>
+     APIVersion defines the versioned schema of this representation of an
+     object. Servers should convert recognized schemas to the latest internal
+     value, and may reject unrecognized values. More info:
+     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+   kind <string>
+     Kind is a string value representing the REST resource this object
+     represents. Servers may infer this from the endpoint the client submits
+     requests to. Cannot be updated. In CamelCase. More info:
+     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+   metadata     <Object>
+     Standard object's metadata. More info:
+     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
+   spec <Object>
+     Spec is the desired state of the IngressClass. More info:
+     https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status`
+```
+
+## What has caused this change in behavior?
+
+There are 2 primary reasons.
+
+### Reason 1
+
+Until K8s version 1.21, it was possible to create an Ingress resource using deprecated versions of the Ingress API, such as:
+
+- `extensions/v1beta1`
+- `networking.k8s.io/v1beta1`
+  You would get a message about deprecation, but the Ingress resource would get created.
+
+From K8s version 1.22 onwards, you can **only** access the Ingress API via the stable, `networking.k8s.io/v1` API.
+The reason is explained in the [official blog on deprecated ingress API versions](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/).
+
+### Reason #2
+
+If you are already using the ingress-nginx controller and then upgrade to Kubernetes 1.22,
+there are several scenarios where your existing Ingress objects will not work how you expect.
+
+Read this FAQ to check which scenario matches your use case.
+
+## What is the `ingressClassName` field?
+
+`ingressClassName` is a field in the spec of an Ingress object.
+
+```shell
+kubectl explain ingress.spec.ingressClassName
+```
+
+```console
+KIND:     Ingress
+VERSION:  networking.k8s.io/v1
+FIELD:    ingressClassName <string>
+DESCRIPTION:
+     IngressClassName is the name of the IngressClass cluster resource. The
+     associated IngressClass defines which controller will implement the
+     resource. This replaces the deprecated `kubernetes.io/ingress.class`
+     annotation. For backwards compatibility, when that annotation is set, it
+     must be given precedence over this field. The controller may emit a warning
+     if the field and annotation have different values. Implementations of this
+     API should ignore Ingresses without a class specified. An IngressClass
+     resource may be marked as default, which can be used to set a default value
+     for this field. For more information, refer to the IngressClass
+     documentation.
+```
+
+The `.spec.ingressClassName` behavior has precedence over the deprecated `kubernetes.io/ingress.class` annotation.
+
+## I have only one ingress controller in my cluster. What should I do?
+
+If a single instance of the ingress-nginx controller is the sole Ingress controller running in your cluster,
+you should add the annotation "ingressclass.kubernetes.io/is-default-class" in your IngressClass,
+so any new Ingress objects will have this one as default IngressClass.
+
+When using Helm, you can enable this annotation by setting `.controller.ingressClassResource.default: true` in your Helm chart installation's values file.
+
+If you have any old Ingress objects remaining without an IngressClass set, you can do one or more of the following to make the ingress-nginx controller aware of the old objects:
+
+- You can manually set the [`.spec.ingressClassName`](https://kubernetes.io/docs/reference/kubernetes-api/service-resources/ingress-v1/#IngressSpec) field in the manifest of your own Ingress resources.
+- You can re-create them after setting the `ingressclass.kubernetes.io/is-default-class` annotation to `true` on the IngressClass
+- Alternatively you can make the ingress-nginx controller watch Ingress objects without the ingressClassName field set by starting your ingress-nginx with the flag [--watch-ingress-without-class=true](#what-is-the-flag-watch-ingress-without-class).
+  When using Helm, you can configure your Helm chart installation's values file with `.controller.watchIngressWithoutClass: true`.
+
+We recommend that you create the IngressClass as shown below:
+
+```
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+  name: nginx
+  annotations:
+    ingressclass.kubernetes.io/is-default-class: "true"
+spec:
+  controller: k8s.io/ingress-nginx
+```
+
+and add the value `spec.ingressClassName=nginx` in your Ingress objects.
+
+## I have many ingress objects in my cluster. What should I do?
+
+If you have lot of ingress objects without ingressClass configuration,
+you can run the ingress controller with the flag `--watch-ingress-without-class=true`.
+
+### What is the flag `--watch-ingress-without-class`?
+
+It's a flag that is passed, as an argument, to the `nginx-ingress-controller` executable.
+In the configuration, it looks like this:
+
+```yaml
+# ...
+args:
+  - /nginx-ingress-controller
+  - --watch-ingress-without-class=true
+  - --controller-class=k8s.io/ingress-nginx
+  # ...
+# ...
+```
+
+## I have more than one controller in my cluster, and I'm already using the annotation
+
+No problem. This should still keep working, but we highly recommend you to test!
+Even though `kubernetes.io/ingress.class` is deprecated, the ingress-nginx controller still understands that annotation.
+If you want to follow good practice, you should consider migrating to use IngressClass and `.spec.ingressClassName`.
+
+## I have more than one controller running in my cluster, and I want to use the new API
+
+In this scenario, you need to create multiple IngressClasses (see the example above).
+
+Be aware that IngressClass works in a very specific way: you will need to change the `.spec.controller` value in your IngressClass and configure the controller to expect the exact same value.
+
+Let's see an example, supposing that you have three IngressClasses:
+
+- IngressClass `ingress-nginx-one`, with `.spec.controller` equal to `example.com/ingress-nginx1`
+- IngressClass `ingress-nginx-two`, with `.spec.controller` equal to `example.com/ingress-nginx2`
+- IngressClass `ingress-nginx-three`, with `.spec.controller` equal to `example.com/ingress-nginx1`
+
+For private use, you can also use a controller name that doesn't contain a `/`, e.g. `ingress-nginx1`.
+
+When deploying your ingress controllers, you will have to change the `--controller-class` field as follows:
+
+- Ingress-Nginx A, configured to use controller class name `example.com/ingress-nginx1`
+- Ingress-Nginx B, configured to use controller class name `example.com/ingress-nginx2`
+
+When you create an Ingress object with its `ingressClassName` set to `ingress-nginx-two`,
+only controllers looking for the `example.com/ingress-nginx2` controller class pay attention to the new object.
+
+Given that Ingress-Nginx B is set up that way, it will serve that object, whereas Ingress-Nginx A ignores the new Ingress.
+
+Bear in mind that if you start Ingress-Nginx B with the command line argument `--watch-ingress-without-class=true`, it will serve:
+
+1. Ingresses without any `ingressClassName` set
+2. Ingresses where the deprecated annotation (`kubernetes.io/ingress.class`) matches the value set in the command line argument `--ingress-class`
+3. Ingresses that refer to any IngressClass that has the same `spec.controller` as configured in `--controller-class`
+4. If you start Ingress-Nginx B with the command line argument `--watch-ingress-without-class=true` and you run Ingress-Nginx A with the command line argument `--watch-ingress-without-class=false` then this is a supported configuration.
+   If you have two ingress-nginx controllers for the same cluster, both running with `--watch-ingress-without-class=true` then there is likely to be a conflict.
+
+## Why am I am seeing "ingress class annotation is not equal to the expected by Ingress Controller" in my controller logs?
+
+It is highly likely that you will also see the name of the ingress resource in the same error message.
+This error message has been observed on use the deprecated annotation (`kubernetes.io/ingress.class`) in a Ingress resource manifest.
+It is recommended to use the `.spec.ingressClassName` field of the Ingress resource, to specify the name of the IngressClass of the Ingress you are defining.
+
+## How can I easily install multiple instances of the ingress-nginx controller in the same cluster?
+
+You can install them in different namespaces.
+
+- Create a new namespace
+  ```
+  kubectl create namespace ingress-nginx-2
+  ```
+- Use Helm to install the additional instance of the ingress controller
+- Ensure you have Helm working (refer to the [Helm documentation](https://helm.sh/docs/))
+- We have to assume that you have the helm repo for the ingress-nginx controller already added to your Helm config.
+  But, if you have not added the helm repo then you can do this to add the repo to your helm config;
+  ```
+  helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx
+  ```
+- Make sure you have updated the helm repo data;
+  ```
+  helm repo update
+  ```
+- Now, install an additional instance of the ingress-nginx controller like this:
+  ```
+  helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
+  --namespace ingress-nginx-2 \
+  --set controller.ingressClassResource.name=nginx-two \
+  --set controller.ingressClass=nginx-two \
+  --set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
+  --set controller.ingressClassResource.enabled=true \
+  --set controller.ingressClassByName=true
+  ```
+
+If you need to install yet another instance, then repeat the procedure to create a new namespace,
+change the values such as names & namespaces (for example from "-2" to "-3"), or anything else that meets your needs.
+
+Note that `controller.ingressClassResource.name` and `controller.ingressClass` have to be set correctly.
+The first is to create the IngressClass object and the other is to modify the deployment of the actual ingress controller pod.
+
+### I can't use multiple namespaces, what should I do?
+
+If you need to install all instances in the same namespace, then you need to specify a different **election id**, like this:
+
+```
+helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
+--namespace kube-system \
+--set controller.electionID=nginx-two-leader \
+--set controller.ingressClassResource.name=nginx-two \
+--set controller.ingressClass=nginx-two \
+--set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
+--set controller.ingressClassResource.enabled=true \
+--set controller.ingressClassByName=true
+```

From 909a8185920c45f99292cce705dba07c770e6f74 Mon Sep 17 00:00:00 2001
From: Ismayil Mirzali <ismayilmirzeli@gmail.com>
Date: Fri, 27 Jan 2023 17:12:27 +0200
Subject: [PATCH 0609/1641] tcpproxy: increase buffer size to 16K (#9548)

---
 pkg/tcpproxy/tcp.go | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/pkg/tcpproxy/tcp.go b/pkg/tcpproxy/tcp.go
index 4c34e1f7b..86850ad54 100644
--- a/pkg/tcpproxy/tcp.go
+++ b/pkg/tcpproxy/tcp.go
@@ -59,11 +59,12 @@ func (p *TCPProxy) Get(host string) *TCPServer {
 // and open a connection to the passthrough server.
 func (p *TCPProxy) Handle(conn net.Conn) {
 	defer conn.Close()
-	data := make([]byte, 4096)
+	// See: https://www.ibm.com/docs/en/ztpf/1.1.0.15?topic=sessions-ssl-record-format
+	data := make([]byte, 16384)
 
 	length, err := conn.Read(data)
 	if err != nil {
-		klog.V(4).ErrorS(err, "Error reading the first 4k of the connection")
+		klog.V(4).ErrorS(err, "Error reading data from the connection")
 		return
 	}
 

From 0c3625cdb919c9348033369dd890569aea66ed4a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 30 Jan 2023 12:44:50 -0800
Subject: [PATCH 0610/1641] Bump sigs.k8s.io/controller-runtime from 0.13.1 to
 0.14.2 (#9552)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 22 ++++++++++----------
 go.sum | 65 +++++++++++++++++++++++++++++++++++++---------------------
 2 files changed, 53 insertions(+), 34 deletions(-)

diff --git a/go.mod b/go.mod
index 6f90615ff..03b3ebdb7 100644
--- a/go.mod
+++ b/go.mod
@@ -30,17 +30,17 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.26.0
-	k8s.io/apiextensions-apiserver v0.26.0
-	k8s.io/apimachinery v0.26.0
-	k8s.io/apiserver v0.26.0
+	k8s.io/api v0.26.1
+	k8s.io/apiextensions-apiserver v0.26.1
+	k8s.io/apimachinery v0.26.1
+	k8s.io/apiserver v0.26.1
 	k8s.io/cli-runtime v0.26.0
-	k8s.io/client-go v0.26.0
-	k8s.io/code-generator v0.26.0
-	k8s.io/component-base v0.26.0
+	k8s.io/client-go v0.26.1
+	k8s.io/code-generator v0.26.1
+	k8s.io/component-base v0.26.1
 	k8s.io/klog/v2 v2.80.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.13.1
+	sigs.k8s.io/controller-runtime v0.14.2
 	sigs.k8s.io/mdtoc v1.1.0
 )
 
@@ -77,7 +77,6 @@ require (
 	github.com/inconshreveable/mousetrap v1.0.1 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
-	github.com/magefile/mage v1.14.0 // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
 	github.com/mattn/go-colorable v0.1.13 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.4 // indirect
@@ -88,6 +87,7 @@ require (
 	github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
 	github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 // indirect
+	github.com/onsi/ginkgo v1.16.5 // indirect
 	github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
@@ -104,7 +104,7 @@ require (
 	golang.org/x/sys v0.4.0 // indirect
 	golang.org/x/term v0.4.0 // indirect
 	golang.org/x/text v0.6.0 // indirect
-	golang.org/x/time v0.0.0-20220609170525-579cf78fd858 // indirect
+	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.4.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto v0.0.0-20221118155620-16455021b5e6 // indirect
@@ -115,7 +115,7 @@ require (
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 	k8s.io/gengo v0.0.0-20220902162205-c0856e24416d // indirect
 	k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 // indirect
-	k8s.io/utils v0.0.0-20221107191617-1a15be271d1d // indirect
+	k8s.io/utils v0.0.0-20221128185143-99ec85e7a448 // indirect
 	sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 // indirect
 	sigs.k8s.io/kustomize/api v0.12.1 // indirect
 	sigs.k8s.io/kustomize/kyaml v0.13.9 // indirect
diff --git a/go.sum b/go.sum
index 8a32d3e00..7588a51fb 100644
--- a/go.sum
+++ b/go.sum
@@ -87,6 +87,8 @@ github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQL
 github.com/evanphx/json-patch/v5 v5.6.0 h1:b91NhWfaz02IuVxO9faSllyAtNXHMPkC5J8sJCLunww=
 github.com/evanphx/json-patch/v5 v5.6.0/go.mod h1:G79N1coSVB93tBe7j6PhzjmR3/2VvlbKOFpnXhI9Bw4=
 github.com/frankban/quicktest v1.11.3/go.mod h1:wRf/ReqHper53s+kmmSZizM8NamnL3IM0I9ntUbOk+k=
+github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
+github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
 github.com/fsnotify/fsnotify v1.6.0 h1:n+5WquG0fcWoWp6xPWfHdbskMCQaFnG6PfBrh1Ky4HY=
 github.com/fsnotify/fsnotify v1.6.0/go.mod h1:sl3t1tCWJFWoRz9R8WJCbQihKKwmorjAbSClcnxKAGw=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b h1:074/xhloHUBOpTZwlIzQ28rbPY8pNJvzY7Gcx5KnNOk=
@@ -116,6 +118,7 @@ github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh
 github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5Fng=
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
+github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/godbus/dbus/v5 v5.0.6 h1:mkgN1ofwASrYnJ5W6U/BxG15eXXXjirgZc7CLqkcaro=
 github.com/godbus/dbus/v5 v5.0.6/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
@@ -195,6 +198,7 @@ github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 h1:pdN6V1QBWet
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
+github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
 github.com/imdario/mergo v0.3.13/go.mod h1:4lJ1jqUDcsbIECGy0RUJAXNIhg+6ocWgb1ALK2O4oXg=
@@ -231,8 +235,6 @@ github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
-github.com/magefile/mage v1.14.0 h1:6QDX3g6z1YvJ4olPhT1wksUcSa/V0a1B+pJb73fBjyo=
-github.com/magefile/mage v1.14.0/go.mod h1:z5UZb/iS3GoOSn0JgWuiw7dxlurVYTu+/jHXqQg881A=
 github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA=
@@ -276,10 +278,17 @@ github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833/go.mod h1:0CznHmX
 github.com/ncabatoff/process-exporter v0.7.10 h1:+Ere7+3se6QqP54gg7aBRagWcL8bq3u5zNi/GRSWeKQ=
 github.com/ncabatoff/process-exporter v0.7.10/go.mod h1:DHZRZjqxw9LCOpLlX0DjBuyn6d5plh41Jv6Tmttj7Ek=
 github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
+github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
+github.com/nxadm/tail v1.4.8/go.mod h1:+ncqLTQzXmGhMZNUePPaPqPvBxHAIsmXswZKocGu+AU=
+github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
+github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
+github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
 github.com/onsi/ginkgo/v2 v2.6.1 h1:1xQPCjcqYw/J5LchOcp4/2q/jzJFjiAOc25chhnDw+Q=
 github.com/onsi/ginkgo/v2 v2.6.1/go.mod h1:yjiuMwPokqY1XauOgju45q3sJt6VzQ/Fict1LFVcsAo=
+github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
+github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.24.1 h1:KORJXNNTzJXzu4ScJWssJfJMnJ+2QJqhoQSRwNlze9E=
 github.com/opencontainers/runc v1.1.4 h1:nRCz/8sKg6K6jgYAFLDlXzPeITBZJyX28DBVhWD+5dg=
 github.com/opencontainers/runc v1.1.4/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
@@ -385,7 +394,7 @@ go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 h1:+FNtrFTmVw0YZGpBGX56XDee33
 go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5/go.mod h1:nmDLcffg48OtT/PSW0Hg7FvpRQsQh5OSqIylirxKC7o=
 go.uber.org/atomic v1.7.0 h1:ADUqmZGgLDDfbSL9ZmPxKTybcoEYHgpYfELNoN+7hsw=
 go.uber.org/multierr v1.6.0 h1:y6IPFStTAIT5Ytl7/XYmHvzXQ7S3g/IeZW9hyZ5thw4=
-go.uber.org/zap v1.21.0 h1:WefMeulhovoZ2sYXz7st6K0sLj7bBhpiFaud4r4zST8=
+go.uber.org/zap v1.24.0 h1:FiJd5l1UOLj0wCgbSE0rwwXHzEdAZS6hiiSnxJN/D60=
 golang.org/dl v0.0.0-20190829154251-82a15e2f2ead/go.mod h1:IUMfjQLJQd4UTqG1Z90tenwKoCX93Gn3MAQJMOSBsDQ=
 golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
@@ -430,6 +439,7 @@ golang.org/x/mod v0.7.0 h1:LapD9S96VoQRhi/GrNTqeBJFrUjs5UHCAtTlgwA5oZA=
 golang.org/x/mod v0.7.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -452,6 +462,7 @@ golang.org/x/net v0.0.0-20200324143707-d3edc9973b7e/go.mod h1:qpuaurCH72eLCgpAm/
 golang.org/x/net v0.0.0-20200501053045-e0ff5e5a1de5/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200506145744-7e3656a0809f/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200513185701-a91f0712d120/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200520182314-0ba52f642ac2/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20200707034311-ab3426394381/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
@@ -482,6 +493,7 @@ golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJ
 golang.org/x/sync v0.0.0-20201207232520-09787c993a3a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
+golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20181116152217-5ac8a444bdc5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190312061237-fead79001313/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -493,10 +505,13 @@ golang.org/x/sys v0.0.0-20190606165138-5da285871e9c/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20190606203320-7fc4e5ec1444/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190726091711-fc99dfbffb4e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191001151750-bb3f8db39f24/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191002063906-3421d5a6bb1c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191026070338-33540a1f6037/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191115151921-52ab43148777/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191228213918-04cbcbbfeed8/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200106162015-b016eb3dc98e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -517,6 +532,7 @@ golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200803210538-64077c9b5642/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210112080510-489259a85091/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
@@ -542,8 +558,8 @@ golang.org/x/text v0.6.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20220609170525-579cf78fd858 h1:Dpdu/EMxGMFgq0CeYMh4fazTD2vtlZRYE7wyynxJb9U=
-golang.org/x/time v0.0.0-20220609170525-579cf78fd858/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
+golang.org/x/time v0.3.0 h1:rg5rLMjNzMS1RkNLzCG38eapWhnYLFYXDXj2gOlr8j4=
+golang.org/x/time v0.3.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
@@ -586,6 +602,7 @@ golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roY
 golang.org/x/tools v0.0.0-20200729194436-6467de6f59a7/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
 golang.org/x/tools v0.0.0-20200804011535-6c149bb5ef0d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
 golang.org/x/tools v0.0.0-20200825202427-b303f430e36d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
+golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.4.0 h1:7mTAgkunk3fr4GAloyyCasadO6h9zSsQZbwvcaIciV4=
 golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
@@ -689,6 +706,7 @@ gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
 gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
+gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
 gopkg.in/go-playground/assert.v1 v1.2.1 h1:xoYuJVE7KT85PYWrN730RguIQO0ePzVRfFMXadIrXTM=
 gopkg.in/go-playground/assert.v1 v1.2.1/go.mod h1:9RXL0bg/zibRAgZUYszZSwO/z8Y/a8bDuhia5mkpMnE=
 gopkg.in/go-playground/pool.v3 v3.1.1 h1:4Qcj91IsYTpIeRhe/eo6Fz+w6uKWPEghx8vHFTYMfhw=
@@ -698,6 +716,7 @@ gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
 gopkg.in/mcuadros/go-syslog.v2 v2.3.0 h1:kcsiS+WsTKyIEPABJBJtoG0KkOS6yzvJ+/eZlhD79kk=
 gopkg.in/mcuadros/go-syslog.v2 v2.3.0/go.mod h1:l5LPIyOOyIdQquNg+oU6Z3524YwrcqEm0aKH+5zpt2U=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
+gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
 gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
@@ -718,22 +737,22 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.26.0 h1:IpPlZnxBpV1xl7TGk/X6lFtpgjgntCg8PJ+qrPHAC7I=
-k8s.io/api v0.26.0/go.mod h1:k6HDTaIFC8yn1i6pSClSqIwLABIcLV9l5Q4EcngKnQg=
-k8s.io/apiextensions-apiserver v0.26.0 h1:Gy93Xo1eg2ZIkNX/8vy5xviVSxwQulsnUdQ00nEdpDo=
-k8s.io/apiextensions-apiserver v0.26.0/go.mod h1:7ez0LTiyW5nq3vADtK6C3kMESxadD51Bh6uz3JOlqWQ=
-k8s.io/apimachinery v0.26.0 h1:1feANjElT7MvPqp0JT6F3Ss6TWDwmcjLypwoPpEf7zg=
-k8s.io/apimachinery v0.26.0/go.mod h1:tnPmbONNJ7ByJNz9+n9kMjNP8ON+1qoAIIC70lztu74=
-k8s.io/apiserver v0.26.0 h1:q+LqIK5EZwdznGZb8bq0+a+vCqdeEEe4Ux3zsOjbc4o=
-k8s.io/apiserver v0.26.0/go.mod h1:aWhlLD+mU+xRo+zhkvP/gFNbShI4wBDHS33o0+JGI84=
+k8s.io/api v0.26.1 h1:f+SWYiPd/GsiWwVRz+NbFyCgvv75Pk9NK6dlkZgpCRQ=
+k8s.io/api v0.26.1/go.mod h1:xd/GBNgR0f707+ATNyPmQ1oyKSgndzXij81FzWGsejg=
+k8s.io/apiextensions-apiserver v0.26.1 h1:cB8h1SRk6e/+i3NOrQgSFij1B2S0Y0wDoNl66bn8RMI=
+k8s.io/apiextensions-apiserver v0.26.1/go.mod h1:AptjOSXDGuE0JICx/Em15PaoO7buLwTs0dGleIHixSM=
+k8s.io/apimachinery v0.26.1 h1:8EZ/eGJL+hY/MYCNwhmDzVqq2lPl3N3Bo8rvweJwXUQ=
+k8s.io/apimachinery v0.26.1/go.mod h1:tnPmbONNJ7ByJNz9+n9kMjNP8ON+1qoAIIC70lztu74=
+k8s.io/apiserver v0.26.1 h1:6vmnAqCDO194SVCPU3MU8NcDgSqsUA62tBUSWrFXhsc=
+k8s.io/apiserver v0.26.1/go.mod h1:wr75z634Cv+sifswE9HlAo5FQ7UoUauIICRlOE+5dCg=
 k8s.io/cli-runtime v0.26.0 h1:aQHa1SyUhpqxAw1fY21x2z2OS5RLtMJOCj7tN4oq8mw=
 k8s.io/cli-runtime v0.26.0/go.mod h1:o+4KmwHzO/UK0wepE1qpRk6l3o60/txUZ1fEXWGIKTY=
-k8s.io/client-go v0.26.0 h1:lT1D3OfO+wIi9UFolCrifbjUUgu7CpLca0AD8ghRLI8=
-k8s.io/client-go v0.26.0/go.mod h1:I2Sh57A79EQsDmn7F7ASpmru1cceh3ocVT9KlX2jEZg=
-k8s.io/code-generator v0.26.0 h1:ZDY+7Gic9p/lACgD1G72gQg2CvNGeAYZTPIncv+iALM=
-k8s.io/code-generator v0.26.0/go.mod h1:OMoJ5Dqx1wgaQzKgc+ZWaZPfGjdRq/Y3WubFrZmeI3I=
-k8s.io/component-base v0.26.0 h1:0IkChOCohtDHttmKuz+EP3j3+qKmV55rM9gIFTXA7Vs=
-k8s.io/component-base v0.26.0/go.mod h1:lqHwlfV1/haa14F/Z5Zizk5QmzaVf23nQzCwVOQpfC8=
+k8s.io/client-go v0.26.1 h1:87CXzYJnAMGaa/IDDfRdhTzxk/wzGZ+/HUQpqgVSZXU=
+k8s.io/client-go v0.26.1/go.mod h1:IWNSglg+rQ3OcvDkhY6+QLeasV4OYHDjdqeWkDQZwGE=
+k8s.io/code-generator v0.26.1 h1:dusFDsnNSKlMFYhzIM0jAO1OlnTN5WYwQQ+Ai12IIlo=
+k8s.io/code-generator v0.26.1/go.mod h1:OMoJ5Dqx1wgaQzKgc+ZWaZPfGjdRq/Y3WubFrZmeI3I=
+k8s.io/component-base v0.26.1 h1:4ahudpeQXHZL5kko+iDHqLj/FSGAEUnSVO0EBbgDd+4=
+k8s.io/component-base v0.26.1/go.mod h1:VHrLR0b58oC035w6YQiBSbtsf0ThuSwXP+p5dD/kAWU=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d h1:U9tB195lKdzwqicbJvyJeOXV7Klv+wNAWENRnXEGi08=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
@@ -741,15 +760,15 @@ k8s.io/klog/v2 v2.80.1 h1:atnLQ121W371wYYFawwYx1aEY2eUfs4l3J72wtgAwV4=
 k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 h1:+70TFaan3hfJzs+7VK2o+OGxg8HsuBr/5f6tVAjDu6E=
 k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280/go.mod h1:+Axhij7bCpeqhklhUTe3xmOn6bWxolyZEeyaFpjGtl4=
-k8s.io/utils v0.0.0-20221107191617-1a15be271d1d h1:0Smp/HP1OH4Rvhe+4B8nWGERtlqAGSftbSbbmm45oFs=
-k8s.io/utils v0.0.0-20221107191617-1a15be271d1d/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
+k8s.io/utils v0.0.0-20221128185143-99ec85e7a448 h1:KTgPnR10d5zhztWptI952TNtt/4u5h3IzDXkdIMuo2Y=
+k8s.io/utils v0.0.0-20221128185143-99ec85e7a448/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
-sigs.k8s.io/controller-runtime v0.13.1 h1:tUsRCSJVM1QQOOeViGeX3GMT3dQF1eePPw6sEE3xSlg=
-sigs.k8s.io/controller-runtime v0.13.1/go.mod h1:Zbz+el8Yg31jubvAEyglRZGdLAjplZl+PgtYNI6WNTI=
+sigs.k8s.io/controller-runtime v0.14.2 h1:P6IwDhbsRWsBClt/8/h8Zy36bCuGuW5Op7MHpFrN/60=
+sigs.k8s.io/controller-runtime v0.14.2/go.mod h1:WqIdsAY6JBsjfc/CqO0CORmNtoCtE4S6qbPc9s68h+0=
 sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 h1:iXTIw73aPyC+oRdyqqvVJuloN1p0AC/kzH07hu3NE+k=
 sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/kustomize/api v0.12.1 h1:7YM7gW3kYBwtKvoY216ZzY+8hM+lV53LUayghNRJ0vM=

From 3999fb8923e3a7bf2ab89eccf4210e4df0f8af52 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 31 Jan 2023 17:31:05 -0800
Subject: [PATCH 0611/1641] Bump k8s.io/klog/v2 from 2.80.1 to 2.90.0 (#9553)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 03b3ebdb7..5224aefbe 100644
--- a/go.mod
+++ b/go.mod
@@ -38,7 +38,7 @@ require (
 	k8s.io/client-go v0.26.1
 	k8s.io/code-generator v0.26.1
 	k8s.io/component-base v0.26.1
-	k8s.io/klog/v2 v2.80.1
+	k8s.io/klog/v2 v2.90.0
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.14.2
 	sigs.k8s.io/mdtoc v1.1.0
diff --git a/go.sum b/go.sum
index 7588a51fb..0a7ed9440 100644
--- a/go.sum
+++ b/go.sum
@@ -756,8 +756,8 @@ k8s.io/component-base v0.26.1/go.mod h1:VHrLR0b58oC035w6YQiBSbtsf0ThuSwXP+p5dD/k
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d h1:U9tB195lKdzwqicbJvyJeOXV7Klv+wNAWENRnXEGi08=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
-k8s.io/klog/v2 v2.80.1 h1:atnLQ121W371wYYFawwYx1aEY2eUfs4l3J72wtgAwV4=
-k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/klog/v2 v2.90.0 h1:VkTxIV/FjRXn1fgNNcKGM8cfmL1Z33ZjXRTVxKCoF5M=
+k8s.io/klog/v2 v2.90.0/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 h1:+70TFaan3hfJzs+7VK2o+OGxg8HsuBr/5f6tVAjDu6E=
 k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280/go.mod h1:+Axhij7bCpeqhklhUTe3xmOn6bWxolyZEeyaFpjGtl4=
 k8s.io/utils v0.0.0-20221128185143-99ec85e7a448 h1:KTgPnR10d5zhztWptI952TNtt/4u5h3IzDXkdIMuo2Y=

From 95e525ccc20cc86d97e8771c90b1b75cad543c10 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 31 Jan 2023 17:33:06 -0800
Subject: [PATCH 0612/1641] Bump google.golang.org/grpc from 1.52.0 to 1.52.3
 (#9555)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 5224aefbe..10b9e2fda 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.5.0
-	google.golang.org/grpc v1.52.0
+	google.golang.org/grpc v1.52.3
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index 0a7ed9440..6e370c655 100644
--- a/go.sum
+++ b/go.sum
@@ -679,8 +679,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.52.0 h1:kd48UiU7EHsV4rnLyOJRuP/Il/UHE7gdDAQ+SZI7nZk=
-google.golang.org/grpc v1.52.0/go.mod h1:pu6fVzoFb+NBYNAvQL08ic+lvB2IojljRYuun5vorUY=
+google.golang.org/grpc v1.52.3 h1:pf7sOysg4LdgBqduXveGKrcEwbStiK2rtfghdzlUYDQ=
+google.golang.org/grpc v1.52.3/go.mod h1:pu6fVzoFb+NBYNAvQL08ic+lvB2IojljRYuun5vorUY=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From fb2223b12c70cdf746349393a7f44b753576b49c Mon Sep 17 00:00:00 2001
From: James Strong <james.strong@chainguard.dev>
Date: Tue, 31 Jan 2023 21:16:48 -0500
Subject: [PATCH 0613/1641] build release 1.6.1 image

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index b7c0a9b1d..023604509 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.6.0
+v1.6.1

From 41c2f2454c0b1b4c7aad49f05f8bcc6af4e6ed35 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 1 Feb 2023 16:51:36 -0500
Subject: [PATCH 0614/1641] add lint on chart before release (#9570)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/helm.yaml | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 5d96507a1..2bd271bb2 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -25,6 +25,18 @@ jobs:
       - name: Checkout
         uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
+      - name: Run Artifact Hub lint
+        run: |
+          wget https://github.com/artifacthub/hub/releases/download/v1.5.0/ah_1.5.0_linux_amd64.tar.gz
+          echo 'ad0e44c6ea058ab6b85dbf582e88bad9fdbc64ded0d1dd4edbac65133e5c87da *ah_1.5.0_linux_amd64.tar.gz' | shasum -c
+          tar -xzvf ah_1.5.0_linux_amd64.tar.gz ah
+          ./ah lint -p charts/ingress-nginx || exit 1
+          rm -f ./ah ./ah_1.5.0_linux_amd64.tar.gz
+
+      - name: Lint
+        run: |
+          ./build/run-in-docker.sh ./hack/verify-chart-lint.sh
+
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
         with:

From 7782c70030bc5cbe9f981fc4126c31dd715f9427 Mon Sep 17 00:00:00 2001
From: James Strong <james.strong@chainguard.dev>
Date: Thu, 2 Feb 2023 14:48:36 -0500
Subject: [PATCH 0615/1641] build 1.6.2 to fix (#9569)

---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 023604509..98610aa42 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.6.1
+v1.6.2
\ No newline at end of file

From dea3a9a3f788f92f10d668c9ecd33e76b1347a87 Mon Sep 17 00:00:00 2001
From: Jongwoo Han <jongwooo.han@gmail.com>
Date: Mon, 6 Feb 2023 16:37:00 +0900
Subject: [PATCH 0616/1641] Replace deprecated command with environment file
 (#9581)

Signed-off-by: jongwooo <jongwooo.han@gmail.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 67fad3187..b19031ff6 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -42,7 +42,7 @@ jobs:
           echo "${SHORT_TAGS[0]},${SHORT_TAGS[1]},${SHORT_TAGS[2]}"
           TAGS_JSON="[\"${SHORT_TAGS[0]}\",\"${SHORT_TAGS[1]}\",\"${SHORT_TAGS[2]}\"]"
           echo "${TAGS_JSON}"
-          echo "::set-output name=TAGS::${TAGS_JSON}"
+          echo "TAGS=${TAGS_JSON}" >> $GITHUB_OUTPUT
 
   scan:
     runs-on: ubuntu-latest

From 6f713b76a15f4ed6488b9969cedaa176f3cbeb9d Mon Sep 17 00:00:00 2001
From: Kir Shatrov <shatrov@me.com>
Date: Wed, 8 Feb 2023 20:25:02 +0300
Subject: [PATCH 0617/1641] Allow to pass a target test (#9542)

---
 test/test-lua.sh | 31 ++++++++++++++++++++-----------
 1 file changed, 20 insertions(+), 11 deletions(-)

diff --git a/test/test-lua.sh b/test/test-lua.sh
index 3b00cf35a..9c8149eac 100755
--- a/test/test-lua.sh
+++ b/test/test-lua.sh
@@ -25,14 +25,23 @@ set -o pipefail
 
 BUSTED_ARGS="-v --pattern=_test"
 
-resty \
-  -I ./rootfs/etc/nginx/lua \
-  --shdict "configuration_data 5M" \
-  --shdict "certificate_data 16M" \
-  --shdict "certificate_servers 1M" \
-  --shdict "ocsp_response_cache 1M" \
-  --shdict "balancer_ewma 1M" \
-  --shdict "balancer_ewma_last_touched_at 1M" \
-  --shdict "balancer_ewma_locks 512k" \
-  --shdict "global_throttle_cache 5M" \
-  ./rootfs/etc/nginx/lua/test/run.lua ${BUSTED_ARGS} ./rootfs/etc/nginx/lua/test/ ./rootfs/etc/nginx/lua/plugins/**/test
+SHDICT_ARGS=(
+    "-I" "./rootfs/etc/nginx/lua"
+    "--shdict" "configuration_data 5M"
+    "--shdict" "certificate_data 16M"
+    "--shdict" "certificate_servers 1M"
+    "--shdict" "ocsp_response_cache 1M"
+    "--shdict" "balancer_ewma 1M"
+    "--shdict" "quota_tracker 1M"
+    "--shdict" "high_throughput_tracker 1M"
+    "--shdict" "balancer_ewma_last_touched_at 1M"
+    "--shdict" "balancer_ewma_locks 512k"
+    "--shdict" "global_throttle_cache 5M"
+    "./rootfs/etc/nginx/lua/test/run.lua"
+)
+
+if [ $# -eq 0 ]; then
+    resty "${SHDICT_ARGS[@]}" ./rootfs/etc/nginx/lua/test/ ./rootfs/etc/nginx/lua/plugins/**/test
+else
+    resty "${SHDICT_ARGS[@]}" $@
+fi

From 59d247dd7433fd2cd99d381c1bcfce9f7dde7ac0 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 10 Feb 2023 15:13:30 +0100
Subject: [PATCH 0618/1641] update history and allow to pass a target test 
 (#9605)

* Replace deprecated command with environment file (#9581)

Signed-off-by: jongwooo <jongwooo.han@gmail.com>

* Allow to pass a target test (#9542)

* start 1.6.0 release

Signed-off-by: James Strong <strong.james.e@gmail.com>

* testing auto change

Signed-off-by: James Strong <strong.james.e@gmail.com>

* Add mage files for changelog

Signed-off-by: James Strong <strong.james.e@gmail.com>

* change format

Signed-off-by: James Strong <strong.james.e@gmail.com>

* fixed boiler plate lint

Signed-off-by: James Strong <strong.james.e@gmail.com>

* Align default value for keepalive_request with NGINX default (#9518)

* Align default value for keepalive_request with NGINX default

---------

Signed-off-by: jongwooo <jongwooo.han@gmail.com>
Signed-off-by: James Strong <strong.james.e@gmail.com>
Co-authored-by: Jongwoo Han <jongwooo.han@gmail.com>
Co-authored-by: Kir Shatrov <shatrov@me.com>
Co-authored-by: Christian Schaefer <chrisse.s@gmail.com>
---
 TAG                                           |   3 +-
 .../nginx-configuration/configmap.md          | 403 +++++++++---------
 go.mod                                        |   1 +
 go.sum                                        |   2 +
 4 files changed, 196 insertions(+), 213 deletions(-)

diff --git a/TAG b/TAG
index 98610aa42..103ae529e 100644
--- a/TAG
+++ b/TAG
@@ -1 +1,2 @@
-v1.6.2
\ No newline at end of file
+v1.6.2
+
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 3832bba16..fc5bd07c2 100755
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -25,199 +25,197 @@ data:
 
 The following table shows a configuration option's name, type, and the default value:
 
-| name                                                                            | type         | default                                                                                                                                                                                                                                                                                                                                                      |
-|:--------------------------------------------------------------------------------|:-------------|:-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
-| [add-headers](#add-headers)                                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [allow-backend-server-header](#allow-backend-server-header)                     | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [allow-snippet-annotations](#allow-snippet-annotations)                         | bool         | true                                                                                                                                                                                                                                                                                                                                                         |
-| [annotation-value-word-blocklist](#annotation-value-word-blocklist)             | string array | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [hide-headers](#hide-headers)                                                   | string array | empty                                                                                                                                                                                                                                                                                                                                                        |
-| [access-log-params](#access-log-params)                                         | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [access-log-path](#access-log-path)                                             | string       | "/var/log/nginx/access.log"                                                                                                                                                                                                                                                                                                                                  |
-| [http-access-log-path](#http-access-log-path)                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [stream-access-log-path](#stream-access-log-path)                               | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [enable-access-log-for-default-backend](#enable-access-log-for-default-backend) | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [error-log-path](#error-log-path)                                               | string       | "/var/log/nginx/error.log"                                                                                                                                                                                                                                                                                                                                   |
-| [enable-modsecurity](#enable-modsecurity)                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [modsecurity-snippet](#modsecurity-snippet)                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [enable-owasp-modsecurity-crs](#enable-owasp-modsecurity-crs)                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [client-header-buffer-size](#client-header-buffer-size)                         | string       | "1k"                                                                                                                                                                                                                                                                                                                                                         |
-| [client-header-timeout](#client-header-timeout)                                 | int          | 60                                                                                                                                                                                                                                                                                                                                                           |
-| [client-body-buffer-size](#client-body-buffer-size)                             | string       | "8k"                                                                                                                                                                                                                                                                                                                                                         |
-| [client-body-timeout](#client-body-timeout)                                     | int          | 60                                                                                                                                                                                                                                                                                                                                                           |
-| [disable-access-log](#disable-access-log)                                       | bool         | false                                                                                                                                                                                                                                                                                                                                                        |
-| [disable-ipv6](#disable-ipv6)                                                   | bool         | false                                                                                                                                                                                                                                                                                                                                                        |
-| [disable-ipv6-dns](#disable-ipv6-dns)                                           | bool         | false                                                                                                                                                                                                                                                                                                                                                        |
-| [enable-underscores-in-headers](#enable-underscores-in-headers)                 | bool         | false                                                                                                                                                                                                                                                                                                                                                        |
-| [enable-ocsp](#enable-ocsp)                                                     | bool         | false                                                                                                                                                                                                                                                                                                                                                        |
-| [ignore-invalid-headers](#ignore-invalid-headers)                               | bool         | true                                                                                                                                                                                                                                                                                                                                                         |
-| [retry-non-idempotent](#retry-non-idempotent)                                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [error-log-level](#error-log-level)                                             | string       | "notice"                                                                                                                                                                                                                                                                                                                                                     |
-| [http2-max-field-size](#http2-max-field-size)                                   | string       | "4k"                                                                                                                                                                                                                                                                                                                                                         |
-| [http2-max-header-size](#http2-max-header-size)                                 | string       | "16k"                                                                                                                                                                                                                                                                                                                                                        |
-| [http2-max-requests](#http2-max-requests)                                       | int          | 1000                                                                                                                                                                                                                                                                                                                                                         |
-| [http2-max-concurrent-streams](#http2-max-concurrent-streams)                   | int          | 128                                                                                                                                                                                                                                                                                                                                                          |
-| [hsts](#hsts)                                                                   | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
-| [hsts-include-subdomains](#hsts-include-subdomains)                             | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
-| [hsts-max-age](#hsts-max-age)                                                   | string       | "15724800"                                                                                                                                                                                                                                                                                                                                                   |
-| [hsts-preload](#hsts-preload)                                                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [keep-alive](#keep-alive)                                                       | int          | 75                                                                                                                                                                                                                                                                                                                                                           |
-| [keep-alive-requests](#keep-alive-requests)                                     | int          | 1000                                                                                                                                                                                                                                                                                                                                                         |
-| [large-client-header-buffers](#large-client-header-buffers)                     | string       | "4 8k"                                                                                                                                                                                                                                                                                                                                                       |
-| [log-format-escape-none](#log-format-escape-none)                               | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [log-format-escape-json](#log-format-escape-json)                               | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [log-format-upstream](#log-format-upstream)                                     | string       | `$remote_addr - $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" $request_length $request_time [$proxy_upstream_name] [$proxy_alternative_upstream_name] $upstream_addr $upstream_response_length $upstream_response_time $upstream_status $req_id`                                                         |
-| [log-format-stream](#log-format-stream)                                         | string       | `[$remote_addr] [$time_local] $protocol $status $bytes_sent $bytes_received $session_time`                                                                                                                                                                                                                                                                   |
-| [enable-multi-accept](#enable-multi-accept)                                     | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
-| [max-worker-connections](#max-worker-connections)                               | int          | 16384                                                                                                                                                                                                                                                                                                                                                        |
-| [max-worker-open-files](#max-worker-open-files)                                 | int          | 0                                                                                                                                                                                                                                                                                                                                                            |
-| [map-hash-bucket-size](#max-hash-bucket-size)                                   | int          | 64                                                                                                                                                                                                                                                                                                                                                           |
-| [nginx-status-ipv4-whitelist](#nginx-status-ipv4-whitelist)                     | []string     | "127.0.0.1"                                                                                                                                                                                                                                                                                                                                                  |
-| [nginx-status-ipv6-whitelist](#nginx-status-ipv6-whitelist)                     | []string     | "::1"                                                                                                                                                                                                                                                                                                                                                        |
-| [proxy-real-ip-cidr](#proxy-real-ip-cidr)                                       | []string     | "0.0.0.0/0"                                                                                                                                                                                                                                                                                                                                                  |
-| [proxy-set-headers](#proxy-set-headers)                                         | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [server-name-hash-max-size](#server-name-hash-max-size)                         | int          | 1024                                                                                                                                                                                                                                                                                                                                                         |
-| [server-name-hash-bucket-size](#server-name-hash-bucket-size)                   | int          | `<size of the processor’s cache line>`                                                                                                                                                                                                                                                                                                                       |
-| [proxy-headers-hash-max-size](#proxy-headers-hash-max-size)                     | int          | 512                                                                                                                                                                                                                                                                                                                                                          |
-| [proxy-headers-hash-bucket-size](#proxy-headers-hash-bucket-size)               | int          | 64                                                                                                                                                                                                                                                                                                                                                           |
-| [plugins](#plugins)                                                             | []string     |                                                                                                                                                                                                                                                                                                                                                              |
-| [reuse-port](#reuse-port)                                                       | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
-| [server-tokens](#server-tokens)                                                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [ssl-ciphers](#ssl-ciphers)                                                     | string       | "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"                                                                                                                          |
-| [ssl-ecdh-curve](#ssl-ecdh-curve)                                               | string       | "auto"                                                                                                                                                                                                                                                                                                                                                       |
-| [ssl-dh-param](#ssl-dh-param)                                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [ssl-protocols](#ssl-protocols)                                                 | string       | "TLSv1.2 TLSv1.3"                                                                                                                                                                                                                                                                                                                                            |
-| [ssl-session-cache](#ssl-session-cache)                                         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
-| [ssl-session-cache-size](#ssl-session-cache-size)                               | string       | "10m"                                                                                                                                                                                                                                                                                                                                                        |
-| [ssl-session-tickets](#ssl-session-tickets)                                     | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [ssl-session-ticket-key](#ssl-session-ticket-key)                               | string       | `<Randomly Generated>`                                                                                                                                                                                                                                                                                                                                       |
-| [ssl-session-timeout](#ssl-session-timeout)                                     | string       | "10m"                                                                                                                                                                                                                                                                                                                                                        |
-| [ssl-buffer-size](#ssl-buffer-size)                                             | string       | "4k"                                                                                                                                                                                                                                                                                                                                                         |
-| [use-proxy-protocol](#use-proxy-protocol)                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [proxy-protocol-header-timeout](#proxy-protocol-header-timeout)                 | string       | "5s"                                                                                                                                                                                                                                                                                                                                                         |
-| [use-gzip](#use-gzip)                                                           | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [use-geoip](#use-geoip)                                                         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
-| [use-geoip2](#use-geoip2)                                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [enable-brotli](#enable-brotli)                                                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [brotli-level](#brotli-level)                                                   | int          | 4                                                                                                                                                                                                                                                                                                                                                            |
-| [brotli-min-length](#brotli-min-length)                                         | int          | 20                                                                                                                                                                                                                                                                                                                                                           |
-| [brotli-types](#brotli-types)                                                   | string       | "application/xml+rss application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component" |
-| [use-http2](#use-http2)                                                         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
-| [gzip-disable](#gzip-disable)                                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [gzip-level](#gzip-level)                                                       | int          | 1                                                                                                                                                                                                                                                                                                                                                            |
-| [gzip-min-length](#gzip-min-length)                                             | int          | 256                                                                                                                                                                                                                                                                                                                                                          |
-| [gzip-types](#gzip-types)                                                       | string       | "application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"                     |
-| [worker-processes](#worker-processes)                                           | string       | `<Number of CPUs>`                                                                                                                                                                                                                                                                                                                                           |
-| [worker-cpu-affinity](#worker-cpu-affinity)                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [worker-shutdown-timeout](#worker-shutdown-timeout)                             | string       | "240s"                                                                                                                                                                                                                                                                                                                                                       |
-| [load-balance](#load-balance)                                                   | string       | "round_robin"                                                                                                                                                                                                                                                                                                                                                |
-| [variables-hash-bucket-size](#variables-hash-bucket-size)                       | int          | 128                                                                                                                                                                                                                                                                                                                                                          |
-| [variables-hash-max-size](#variables-hash-max-size)                             | int          | 2048                                                                                                                                                                                                                                                                                                                                                         |
-| [upstream-keepalive-connections](#upstream-keepalive-connections)               | int          | 320                                                                                                                                                                                                                                                                                                                                                          |
-| [upstream-keepalive-time](#upstream-keepalive-time)                             | string       | "1h"                                                                                                                                                                                                                                                                                                                                                         |
-| [upstream-keepalive-timeout](#upstream-keepalive-timeout)                       | int          | 60                                                                                                                                                                                                                                                                                                                                                           |
-| [upstream-keepalive-requests](#upstream-keepalive-requests)                     | int          | 10000                                                                                                                                                                                                                                                                                                                                                        |
-| [limit-conn-zone-variable](#limit-conn-zone-variable)                           | string       | "$binary_remote_addr"                                                                                                                                                                                                                                                                                                                                        |
-| [proxy-stream-timeout](#proxy-stream-timeout)                                   | string       | "600s"                                                                                                                                                                                                                                                                                                                                                       |
-| [proxy-stream-next-upstream](#proxy-stream-next-upstream)                       | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
-| [proxy-stream-next-upstream-timeout](#proxy-stream-next-upstream-timeout)       | string       | "600s"                                                                                                                                                                                                                                                                                                                                                       |
-| [proxy-stream-next-upstream-tries](#proxy-stream-next-upstream-tries)           | int          | 3                                                                                                                                                                                                                                                                                                                                                            |
-| [proxy-stream-responses](#proxy-stream-responses)                               | int          | 1                                                                                                                                                                                                                                                                                                                                                            |
-| [bind-address](#bind-address)                                                   | []string     | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [use-forwarded-headers](#use-forwarded-headers)                                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [enable-real-ip](#enable-real-ip)                                               | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [forwarded-for-header](#forwarded-for-header)                                   | string       | "X-Forwarded-For"                                                                                                                                                                                                                                                                                                                                            |
-| [compute-full-forwarded-for](#compute-full-forwarded-for)                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [proxy-add-original-uri-header](#proxy-add-original-uri-header)                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [generate-request-id](#generate-request-id)                                     | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
-| [enable-opentracing](#enable-opentracing)                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [opentracing-operation-name](#opentracing-operation-name)                       | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [opentracing-location-operation-name](#opentracing-location-operation-name)     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [zipkin-collector-host](#zipkin-collector-host)                                 | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [zipkin-collector-port](#zipkin-collector-port)                                 | int          | 9411                                                                                                                                                                                                                                                                                                                                                         |
-| [zipkin-service-name](#zipkin-service-name)                                     | string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      |
-| [zipkin-sample-rate](#zipkin-sample-rate)                                       | float        | 1.0                                                                                                                                                                                                                                                                                                                                                          |
-| [jaeger-collector-host](#jaeger-collector-host)                                 | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [jaeger-collector-port](#jaeger-collector-port)                                 | int          | 6831                                                                                                                                                                                                                                                                                                                                                         |
-| [jaeger-endpoint](#jaeger-endpoint)                                             | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [jaeger-service-name](#jaeger-service-name)                                     | string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      |
-| [jaeger-propagation-format](#jaeger-propagation-format)                         | string       | "jaeger"                                                                                                                                                                                                                                                                                                                                                     |
-| [jaeger-sampler-type](#jaeger-sampler-type)                                     | string       | "const"                                                                                                                                                                                                                                                                                                                                                      |
-| [jaeger-sampler-param](#jaeger-sampler-param)                                   | string       | "1"                                                                                                                                                                                                                                                                                                                                                          |
-| [jaeger-sampler-host](#jaeger-sampler-host)                                     | string       | "http://127.0.0.1"                                                                                                                                                                                                                                                                                                                                           |
-| [jaeger-sampler-port](#jaeger-sampler-port)                                     | int          | 5778                                                                                                                                                                                                                                                                                                                                                         |
-| [jaeger-trace-context-header-name](#jaeger-trace-context-header-name)           | string       | uber-trace-id                                                                                                                                                                                                                                                                                                                                                |
-| [jaeger-debug-header](#jaeger-debug-header)                                     | string       | uber-debug-id                                                                                                                                                                                                                                                                                                                                                |
-| [jaeger-baggage-header](#jaeger-baggage-header)                                 | string       | jaeger-baggage                                                                                                                                                                                                                                                                                                                                               |
-| [jaeger-trace-baggage-header-prefix](#jaeger-trace-baggage-header-prefix)       | string       | uberctx-                                                                                                                                                                                                                                                                                                                                                     |
-| [datadog-collector-host](#datadog-collector-host)                               | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [datadog-collector-port](#datadog-collector-port)                               | int          | 8126                                                                                                                                                                                                                                                                                                                                                         |
-| [datadog-service-name](#datadog-service-name)                                   | string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      |
-| [datadog-environment](#datadog-environment)                                     | string       | "prod"                                                                                                                                                                                                                                                                                                                                                       |
-| [datadog-operation-name-override](#datadog-operation-name-override)             | string       | "nginx.handle"                                                                                                                                                                                                                                                                                                                                               |
-| [datadog-priority-sampling](#datadog-priority-sampling)                         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
-| [datadog-sample-rate](#datadog-sample-rate)                                     | float        | 1.0                                                                                                                                                                                                                                                                                                                                                          |
-| [main-snippet](#main-snippet)                                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [http-snippet](#http-snippet)                                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [server-snippet](#server-snippet)                                               | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [stream-snippet](#stream-snippet)                                               | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [location-snippet](#location-snippet)                                           | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [custom-http-errors](#custom-http-errors)                                       | []int        | []int{}                                                                                                                                                                                                                                                                                                                                                      |
-| [proxy-body-size](#proxy-body-size)                                             | string       | "1m"                                                                                                                                                                                                                                                                                                                                                         |
-| [proxy-connect-timeout](#proxy-connect-timeout)                                 | int          | 5                                                                                                                                                                                                                                                                                                                                                            |
-| [proxy-read-timeout](#proxy-read-timeout)                                       | int          | 60                                                                                                                                                                                                                                                                                                                                                           |
-| [proxy-send-timeout](#proxy-send-timeout)                                       | int          | 60                                                                                                                                                                                                                                                                                                                                                           |
-| [proxy-buffers-number](#proxy-buffers-number)                                   | int          | 4                                                                                                                                                                                                                                                                                                                                                            |
-| [proxy-buffer-size](#proxy-buffer-size)                                         | string       | "4k"                                                                                                                                                                                                                                                                                                                                                         |
-| [proxy-cookie-path](#proxy-cookie-path)                                         | string       | "off"                                                                                                                                                                                                                                                                                                                                                        |
-| [proxy-cookie-domain](#proxy-cookie-domain)                                     | string       | "off"                                                                                                                                                                                                                                                                                                                                                        |
-| [proxy-next-upstream](#proxy-next-upstream)                                     | string       | "error timeout"                                                                                                                                                                                                                                                                                                                                              |
-| [proxy-next-upstream-timeout](#proxy-next-upstream-timeout)                     | int          | 0                                                                                                                                                                                                                                                                                                                                                            |
-| [proxy-next-upstream-tries](#proxy-next-upstream-tries)                         | int          | 3                                                                                                                                                                                                                                                                                                                                                            |
-| [proxy-redirect-from](#proxy-redirect-from)                                     | string       | "off"                                                                                                                                                                                                                                                                                                                                                        |
-| [proxy-request-buffering](#proxy-request-buffering)                             | string       | "on"                                                                                                                                                                                                                                                                                                                                                         |
-| [ssl-redirect](#ssl-redirect)                                                   | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |
-| [force-ssl-redirect](#force-ssl-redirect)                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [denylist-source-range](#denylist-source-range)                                 | []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   |
-| [whitelist-source-range](#whitelist-source-range)                               | []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   |
-| [skip-access-log-urls](#skip-access-log-urls)                                   | []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   |
-| [limit-rate](#limit-rate)                                                       | int          | 0                                                                                                                                                                                                                                                                                                                                                            |
-| [limit-rate-after](#limit-rate-after)                                           | int          | 0                                                                                                                                                                                                                                                                                                                                                            |
-| [lua-shared-dicts](#lua-shared-dicts)                                           | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [http-redirect-code](#http-redirect-code)                                       | int          | 308                                                                                                                                                                                                                                                                                                                                                          |
-| [proxy-buffering](#proxy-buffering)                                             | string       | "off"                                                                                                                                                                                                                                                                                                                                                        |
-| [limit-req-status-code](#limit-req-status-code)                                 | int          | 503                                                                                                                                                                                                                                                                                                                                                          |
-| [limit-conn-status-code](#limit-conn-status-code)                               | int          | 503                                                                                                                                                                                                                                                                                                                                                          |
-| [enable-syslog](#enable-syslog)                                                 | bool         | false                                                                                                                                                                                                                                                                                                                                                        |
-| [syslog-host](#syslog-host)                                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [syslog-port](#syslog-port)                                                     | int          | 514                                                                                                                                                                                                                                                                                                                                                          |
-| [no-tls-redirect-locations](#no-tls-redirect-locations)                         | string       | "/.well-known/acme-challenge"                                                                                                                                                                                                                                                                                                                                |
-| [global-auth-url](#global-auth-url)                                             | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [global-auth-method](#global-auth-method)                                       | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [global-auth-signin](#global-auth-signin)                                       | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [global-auth-signin-redirect-param](#global-auth-signin-redirect-param)         | string       | "rd"                                                                                                                                                                                                                                                                                                                                                         |
-| [global-auth-response-headers](#global-auth-response-headers)                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [global-auth-request-redirect](#global-auth-request-redirect)                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [global-auth-snippet](#global-auth-snippet)                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [global-auth-cache-key](#global-auth-cache-key)                                 | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [global-auth-cache-duration](#global-auth-cache-duration)                       | string       | "200 202 401 5m"                                                                                                                                                                                                                                                                                                                                             |
-| [no-auth-locations](#no-auth-locations)                                         | string       | "/.well-known/acme-challenge"                                                                                                                                                                                                                                                                                                                                |
-| [block-cidrs](#block-cidrs)                                                     | []string     | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [block-user-agents](#block-user-agents)                                         | []string     | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [block-referers](#block-referers)                                               | []string     | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [proxy-ssl-location-only](#proxy-ssl-location-only)                             | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [default-type](#default-type)                                                   | string       | "text/html"                                                                                                                                                                                                                                                                                                                                                  |
-| [global-rate-limit-memcached-host](#global-rate-limit)                          | string       | ""                                                                                                                                                                                                                                                                                                                                                           |
-| [global-rate-limit-memcached-port](#global-rate-limit)                          | int          | 11211                                                                                                                                                                                                                                                                                                                                                        |
-| [global-rate-limit-memcached-connect-timeout](#global-rate-limit)               | int          | 50                                                                                                                                                                                                                                                                                                                                                           |
-| [global-rate-limit-memcached-max-idle-timeout](#global-rate-limit)              | int          | 10000                                                                                                                                                                                                                                                                                                                                                        |
-| [global-rate-limit-memcached-pool-size](#global-rate-limit)                     | int          | 50                                                                                                                                                                                                                                                                                                                                                           |
-| [global-rate-limit-status-code](#global-rate-limit)                             | int          | 429                                                                                                                                                                                                                                                                                                                                                          |
-| [service-upstream](#service-upstream)                                           | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [ssl-reject-handshake](#ssl-reject-handshake)                                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [debug-connections](#debug-connections)                                         | []string     | "127.0.0.1,1.1.1.1/24"                                                                                                                                                                                                                                                                                                                                       |
-| [enable-pathtype-validation](#enable-pathtype-validation)                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |
-| [path-additional-allowed-chars](#path-additional-allowed-chars)                 | string       | "^%$[](){}*+?"                                                                                                                                                                                                                                                                                                                                               |
+|name|type|default|
+|:---|:---|:------|
+|[add-headers](#add-headers)|string|""|
+|[allow-backend-server-header](#allow-backend-server-header)|bool|"false"|
+|[allow-snippet-annotations](#allow-snippet-annotations)|bool|true|
+|[annotation-value-word-blocklist](#annotation-value-word-blocklist)|string array|""|
+|[hide-headers](#hide-headers)|string array|empty|
+|[access-log-params](#access-log-params)|string|""|
+|[access-log-path](#access-log-path)|string|"/var/log/nginx/access.log"|
+|[http-access-log-path](#http-access-log-path)|string|""|
+|[stream-access-log-path](#stream-access-log-path)|string|""|
+|[enable-access-log-for-default-backend](#enable-access-log-for-default-backend)|bool|"false"|
+|[error-log-path](#error-log-path)|string|"/var/log/nginx/error.log"|
+|[enable-modsecurity](#enable-modsecurity)|bool|"false"|
+|[modsecurity-snippet](#modsecurity-snippet)|string|""|
+|[enable-owasp-modsecurity-crs](#enable-owasp-modsecurity-crs)|bool|"false"|
+|[client-header-buffer-size](#client-header-buffer-size)|string|"1k"|
+|[client-header-timeout](#client-header-timeout)|int|60|
+|[client-body-buffer-size](#client-body-buffer-size)|string|"8k"|
+|[client-body-timeout](#client-body-timeout)|int|60|
+|[disable-access-log](#disable-access-log)|bool|false|
+|[disable-ipv6](#disable-ipv6)|bool|false|
+|[disable-ipv6-dns](#disable-ipv6-dns)|bool|false|
+|[enable-underscores-in-headers](#enable-underscores-in-headers)|bool|false|
+|[enable-ocsp](#enable-ocsp)|bool|false|
+|[ignore-invalid-headers](#ignore-invalid-headers)|bool|true|
+|[retry-non-idempotent](#retry-non-idempotent)|bool|"false"|
+|[error-log-level](#error-log-level)|string|"notice"|
+|[http2-max-field-size](#http2-max-field-size)|string|"4k"|
+|[http2-max-header-size](#http2-max-header-size)|string|"16k"|
+|[http2-max-requests](#http2-max-requests)|int|1000|
+|[http2-max-concurrent-streams](#http2-max-concurrent-streams)|int|128|
+|[hsts](#hsts)|bool|"true"|
+|[hsts-include-subdomains](#hsts-include-subdomains)|bool|"true"|
+|[hsts-max-age](#hsts-max-age)|string|"15724800"|
+|[hsts-preload](#hsts-preload)|bool|"false"|
+|[keep-alive](#keep-alive)|int|75|
+|[keep-alive-requests](#keep-alive-requests)|int|1000|
+|[large-client-header-buffers](#large-client-header-buffers)|string|"4 8k"|
+|[log-format-escape-none](#log-format-escape-none)|bool|"false"|
+|[log-format-escape-json](#log-format-escape-json)|bool|"false"|
+|[log-format-upstream](#log-format-upstream)|string|`$remote_addr - $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" $request_length $request_time [$proxy_upstream_name] [$proxy_alternative_upstream_name] $upstream_addr $upstream_response_length $upstream_response_time $upstream_status $req_id`|
+|[log-format-stream](#log-format-stream)|string|`[$remote_addr] [$time_local] $protocol $status $bytes_sent $bytes_received $session_time`|
+|[enable-multi-accept](#enable-multi-accept)|bool|"true"|
+|[max-worker-connections](#max-worker-connections)|int|16384|
+|[max-worker-open-files](#max-worker-open-files)|int|0|
+|[map-hash-bucket-size](#max-hash-bucket-size)|int|64|
+|[nginx-status-ipv4-whitelist](#nginx-status-ipv4-whitelist)|[]string|"127.0.0.1"|
+|[nginx-status-ipv6-whitelist](#nginx-status-ipv6-whitelist)|[]string|"::1"|
+|[proxy-real-ip-cidr](#proxy-real-ip-cidr)|[]string|"0.0.0.0/0"|
+|[proxy-set-headers](#proxy-set-headers)|string|""|
+|[server-name-hash-max-size](#server-name-hash-max-size)|int|1024|
+|[server-name-hash-bucket-size](#server-name-hash-bucket-size)|int|`<size of the processor’s cache line>`
+|[proxy-headers-hash-max-size](#proxy-headers-hash-max-size)|int|512|
+|[proxy-headers-hash-bucket-size](#proxy-headers-hash-bucket-size)|int|64|
+|[plugins](#plugins)|[]string| |
+|[reuse-port](#reuse-port)|bool|"true"|
+|[server-tokens](#server-tokens)|bool|"false"|
+|[ssl-ciphers](#ssl-ciphers)|string|"ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"|
+|[ssl-ecdh-curve](#ssl-ecdh-curve)|string|"auto"|
+|[ssl-dh-param](#ssl-dh-param)|string|""|
+|[ssl-protocols](#ssl-protocols)|string|"TLSv1.2 TLSv1.3"|
+|[ssl-session-cache](#ssl-session-cache)|bool|"true"|
+|[ssl-session-cache-size](#ssl-session-cache-size)|string|"10m"|
+|[ssl-session-tickets](#ssl-session-tickets)|bool|"false"|
+|[ssl-session-ticket-key](#ssl-session-ticket-key)|string|`<Randomly Generated>`
+|[ssl-session-timeout](#ssl-session-timeout)|string|"10m"|
+|[ssl-buffer-size](#ssl-buffer-size)|string|"4k"|
+|[use-proxy-protocol](#use-proxy-protocol)|bool|"false"|
+|[proxy-protocol-header-timeout](#proxy-protocol-header-timeout)|string|"5s"|
+|[use-gzip](#use-gzip)|bool|"false"|
+|[use-geoip](#use-geoip)|bool|"true"|
+|[use-geoip2](#use-geoip2)|bool|"false"|
+|[enable-brotli](#enable-brotli)|bool|"false"|
+|[brotli-level](#brotli-level)|int|4|
+|[brotli-min-length](#brotli-min-length)|int|20|
+|[brotli-types](#brotli-types)|string|"application/xml+rss application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"|
+|[use-http2](#use-http2)|bool|"true"|
+|[gzip-disable](#gzip-disable)|string|""|
+|[gzip-level](#gzip-level)|int|1|
+|[gzip-min-length](#gzip-min-length)|int|256|
+|[gzip-types](#gzip-types)|string|"application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"|
+|[worker-processes](#worker-processes)|string|`<Number of CPUs>`|
+|[worker-cpu-affinity](#worker-cpu-affinity)|string|""|
+|[worker-shutdown-timeout](#worker-shutdown-timeout)|string|"240s"|
+|[load-balance](#load-balance)|string|"round_robin"|
+|[variables-hash-bucket-size](#variables-hash-bucket-size)|int|128|
+|[variables-hash-max-size](#variables-hash-max-size)|int|2048|
+|[upstream-keepalive-connections](#upstream-keepalive-connections)|int|320|
+|[upstream-keepalive-time](#upstream-keepalive-time)|string|"1h"|
+|[upstream-keepalive-timeout](#upstream-keepalive-timeout)|int|60|
+|[upstream-keepalive-requests](#upstream-keepalive-requests)|int|10000|
+|[limit-conn-zone-variable](#limit-conn-zone-variable)|string|"$binary_remote_addr"|
+|[proxy-stream-timeout](#proxy-stream-timeout)|string|"600s"|
+|[proxy-stream-next-upstream](#proxy-stream-next-upstream)|bool|"true"|
+|[proxy-stream-next-upstream-timeout](#proxy-stream-next-upstream-timeout)|string|"600s"|
+|[proxy-stream-next-upstream-tries](#proxy-stream-next-upstream-tries)|int|3|
+|[proxy-stream-responses](#proxy-stream-responses)|int|1|
+|[bind-address](#bind-address)|[]string|""|
+|[use-forwarded-headers](#use-forwarded-headers)|bool|"false"|
+|[enable-real-ip](#enable-real-ip)|bool|"false"|
+|[forwarded-for-header](#forwarded-for-header)|string|"X-Forwarded-For"|
+|[compute-full-forwarded-for](#compute-full-forwarded-for)|bool|"false"|
+|[proxy-add-original-uri-header](#proxy-add-original-uri-header)|bool|"false"|
+|[generate-request-id](#generate-request-id)|bool|"true"|
+|[enable-opentracing](#enable-opentracing)|bool|"false"|
+|[opentracing-operation-name](#opentracing-operation-name)|string|""|
+|[opentracing-location-operation-name](#opentracing-location-operation-name)|string|""|
+|[zipkin-collector-host](#zipkin-collector-host)|string|""|
+|[zipkin-collector-port](#zipkin-collector-port)|int|9411|
+|[zipkin-service-name](#zipkin-service-name)|string|"nginx"|
+|[zipkin-sample-rate](#zipkin-sample-rate)|float|1.0|
+|[jaeger-collector-host](#jaeger-collector-host)|string|""|
+|[jaeger-collector-port](#jaeger-collector-port)|int|6831|
+|[jaeger-endpoint](#jaeger-endpoint)|string|""|
+|[jaeger-service-name](#jaeger-service-name)|string|"nginx"|
+|[jaeger-propagation-format](#jaeger-propagation-format)|string|"jaeger"|
+|[jaeger-sampler-type](#jaeger-sampler-type)|string|"const"|
+|[jaeger-sampler-param](#jaeger-sampler-param)|string|"1"|
+|[jaeger-sampler-host](#jaeger-sampler-host)|string|"http://127.0.0.1"|
+|[jaeger-sampler-port](#jaeger-sampler-port)|int|5778|
+|[jaeger-trace-context-header-name](#jaeger-trace-context-header-name)|string|uber-trace-id|
+|[jaeger-debug-header](#jaeger-debug-header)|string|uber-debug-id|
+|[jaeger-baggage-header](#jaeger-baggage-header)|string|jaeger-baggage|
+|[jaeger-trace-baggage-header-prefix](#jaeger-trace-baggage-header-prefix)|string|uberctx-|
+|[datadog-collector-host](#datadog-collector-host)|string|""|
+|[datadog-collector-port](#datadog-collector-port)|int|8126|
+|[datadog-service-name](#datadog-service-name)|string|"nginx"|
+|[datadog-environment](#datadog-environment)|string|"prod"|
+|[datadog-operation-name-override](#datadog-operation-name-override)|string|"nginx.handle"|
+|[datadog-priority-sampling](#datadog-priority-sampling)|bool|"true"|
+|[datadog-sample-rate](#datadog-sample-rate)|float|1.0|
+|[main-snippet](#main-snippet)|string|""|
+|[http-snippet](#http-snippet)|string|""|
+|[server-snippet](#server-snippet)|string|""|
+|[stream-snippet](#stream-snippet)|string|""|
+|[location-snippet](#location-snippet)|string|""|
+|[custom-http-errors](#custom-http-errors)|[]int|[]int{}|
+|[proxy-body-size](#proxy-body-size)|string|"1m"|
+|[proxy-connect-timeout](#proxy-connect-timeout)|int|5|
+|[proxy-read-timeout](#proxy-read-timeout)|int|60|
+|[proxy-send-timeout](#proxy-send-timeout)|int|60|
+|[proxy-buffers-number](#proxy-buffers-number)|int|4|
+|[proxy-buffer-size](#proxy-buffer-size)|string|"4k"|
+|[proxy-cookie-path](#proxy-cookie-path)|string|"off"|
+|[proxy-cookie-domain](#proxy-cookie-domain)|string|"off"|
+|[proxy-next-upstream](#proxy-next-upstream)|string|"error timeout"|
+|[proxy-next-upstream-timeout](#proxy-next-upstream-timeout)|int|0|
+|[proxy-next-upstream-tries](#proxy-next-upstream-tries)|int|3|
+|[proxy-redirect-from](#proxy-redirect-from)|string|"off"|
+|[proxy-request-buffering](#proxy-request-buffering)|string|"on"|
+|[ssl-redirect](#ssl-redirect)|bool|"true"|
+|[force-ssl-redirect](#force-ssl-redirect)|bool|"false"|
+|[denylist-source-range](#denylist-source-range)|[]string|[]string{}|
+|[whitelist-source-range](#whitelist-source-range)|[]string|[]string{}|
+|[skip-access-log-urls](#skip-access-log-urls)|[]string|[]string{}|
+|[limit-rate](#limit-rate)|int|0|
+|[limit-rate-after](#limit-rate-after)|int|0|
+|[lua-shared-dicts](#lua-shared-dicts)|string|""|
+|[http-redirect-code](#http-redirect-code)|int|308|
+|[proxy-buffering](#proxy-buffering)|string|"off"|
+|[limit-req-status-code](#limit-req-status-code)|int|503|
+|[limit-conn-status-code](#limit-conn-status-code)|int|503|
+|[enable-syslog](#enable-syslog)|bool|false|
+|[syslog-host](#syslog-host)|string|""|
+|[syslog-port](#syslog-port)|int|514|
+|[no-tls-redirect-locations](#no-tls-redirect-locations)|string|"/.well-known/acme-challenge"|
+|[global-auth-url](#global-auth-url)|string|""|
+|[global-auth-method](#global-auth-method)|string|""|
+|[global-auth-signin](#global-auth-signin)|string|""|
+|[global-auth-signin-redirect-param](#global-auth-signin-redirect-param)|string|"rd"|
+|[global-auth-response-headers](#global-auth-response-headers)|string|""|
+|[global-auth-request-redirect](#global-auth-request-redirect)|string|""|
+|[global-auth-snippet](#global-auth-snippet)|string|""|
+|[global-auth-cache-key](#global-auth-cache-key)|string|""|
+|[global-auth-cache-duration](#global-auth-cache-duration)|string|"200 202 401 5m"|
+|[no-auth-locations](#no-auth-locations)|string|"/.well-known/acme-challenge"|
+|[block-cidrs](#block-cidrs)|[]string|""|
+|[block-user-agents](#block-user-agents)|[]string|""|
+|[block-referers](#block-referers)|[]string|""|
+|[proxy-ssl-location-only](#proxy-ssl-location-only)|bool|"false"|
+|[default-type](#default-type)|string|"text/html"|
+|[global-rate-limit-memcached-host](#global-rate-limit)|string|""|
+|[global-rate-limit-memcached-port](#global-rate-limit)|int|11211|
+|[global-rate-limit-memcached-connect-timeout](#global-rate-limit)|int|50|
+|[global-rate-limit-memcached-max-idle-timeout](#global-rate-limit)|int|10000|
+|[global-rate-limit-memcached-pool-size](#global-rate-limit)|int|50|
+|[global-rate-limit-status-code](#global-rate-limit)|int|429|
+|[service-upstream](#service-upstream)|bool|"false"|
+|[ssl-reject-handshake](#ssl-reject-handshake)|bool|"false"|
+|[debug-connections](#debug-connections)|[]string|"127.0.0.1,1.1.1.1/24"|
 
 ## add-headers
 
@@ -1328,22 +1326,3 @@ _**default:**_ ""
 
 _References:_
 [http://nginx.org/en/docs/ngx_core_module.html#debug_connection](http://nginx.org/en/docs/ngx_core_module.html#debug_connection)
-
-## enable-pathtype-validation
-Ingress Controller validates the pathType, and only allows special characters on "path" if pathType is
-ImplementationSpecific. 
-
-The only characters allowed on ingresses with pathType not ImplementationSpecific 
-will be 0-9, a-z, A-Z, "-", ".", "_", "~", "/".
-
-If the validation is disabled, the [#path-additional-allowed-chars](#path-additional-allowed-chars) will
-be allowed on any pathType.
-
-This behavior is disabled by default, so special characters are accepted regardless of pathType
-_**default:**_ "false"
-
-## path-additional-allowed-chars
-When [enable-pathtype-validation](enable-pathtype-validation) is set to true [#path-additional-allowed-chars](#path-additional-allowed-chars) defines the additional set of special characters that
-will be allowed.
-
-_**default:**_ "^%$[](){}*+?|"
diff --git a/go.mod b/go.mod
index 10b9e2fda..1aad274fb 100644
--- a/go.mod
+++ b/go.mod
@@ -77,6 +77,7 @@ require (
 	github.com/inconshreveable/mousetrap v1.0.1 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
+	github.com/magefile/mage v1.14.0 // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
 	github.com/mattn/go-colorable v0.1.13 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.4 // indirect
diff --git a/go.sum b/go.sum
index 6e370c655..1d99238cb 100644
--- a/go.sum
+++ b/go.sum
@@ -235,6 +235,8 @@ github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
+github.com/magefile/mage v1.14.0 h1:6QDX3g6z1YvJ4olPhT1wksUcSa/V0a1B+pJb73fBjyo=
+github.com/magefile/mage v1.14.0/go.mod h1:z5UZb/iS3GoOSn0JgWuiw7dxlurVYTu+/jHXqQg881A=
 github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA=

From 01c9a2bf253ce962d969b624763e8a8b000dfa76 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 13 Feb 2023 07:57:29 +0100
Subject: [PATCH 0619/1641] Revert Implement pathType validation (#9511)
 (#9607)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 charts/ingress-nginx/README.md                |   1 -
 .../templates/controller-configmap.yaml       |   1 -
 charts/ingress-nginx/values.yaml              |   5 -
 internal/ingress/controller/config/config.go  |  14 --
 internal/ingress/controller/controller.go     |   4 -
 .../ingress/controller/controller_test.go     |  91 ---------
 internal/ingress/controller/store/store.go    |   9 +-
 internal/k8s/main.go                          |   3 +
 magefiles/helm.go                             |   3 +
 pkg/util/ingress/ingress.go                   |  83 ++------
 pkg/util/ingress/ingress_test.go              | 192 +++++-------------
 test/e2e/admission/admission.go               |  38 +---
 test/e2e/annotations/affinity.go              |   6 -
 test/e2e/annotations/auth.go                  |  45 ----
 test/e2e/annotations/rewrite.go               |   8 -
 test/e2e/security/invalid_paths.go            | 134 ++++++++++++
 16 files changed, 211 insertions(+), 426 deletions(-)
 create mode 100644 test/e2e/security/invalid_paths.go

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 7f3ea1866..65236e08c 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -253,7 +253,6 @@ Kubernetes: `>=1.20.0-0`
 | Key | Type | Default | Description |
 |-----|------|---------|-------------|
 | commonLabels | object | `{}` |  |
-| controller.EnablePathTypeValidation | bool | `false` | This configuration defines if Ingress Controller should validate pathType. If false, special characters will be allowed on paths of any pathType. If true, special characters are only allowed on paths with pathType = ImplementationSpecific |
 | controller.addHeaders | object | `{}` | Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers |
 | controller.admissionWebhooks.annotations | object | `{}` |  |
 | controller.admissionWebhooks.certManager.admissionCert.duration | string | `""` |  |
diff --git a/charts/ingress-nginx/templates/controller-configmap.yaml b/charts/ingress-nginx/templates/controller-configmap.yaml
index a1fbdf549..f28b26e1e 100644
--- a/charts/ingress-nginx/templates/controller-configmap.yaml
+++ b/charts/ingress-nginx/templates/controller-configmap.yaml
@@ -14,7 +14,6 @@ metadata:
   namespace: {{ .Release.Namespace }}
 data:
   allow-snippet-annotations: "{{ .Values.controller.allowSnippetAnnotations }}"
-  enable-pathtype-validation: "{{ .Values.controller.EnablePathTypeValidation }}"
 {{- if .Values.controller.addHeaders }}
   add-headers: {{ .Release.Namespace }}/{{ include "ingress-nginx.fullname" . }}-custom-add-headers
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 4c587ee88..215ce509d 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -87,11 +87,6 @@ controller:
   # Global snippets in ConfigMap are still respected
   allowSnippetAnnotations: true
 
-  # -- This configuration defines if Ingress Controller should validate pathType.
-  # If false, special characters will be allowed on paths of any pathType.
-  # If true, special characters are only allowed on paths with pathType = ImplementationSpecific
-  EnablePathTypeValidation: false
-
   # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
   # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
   # is merged
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index b02e5998e..5786b6776 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -782,18 +782,6 @@ type Configuration struct {
 	// http://nginx.org/en/docs/ngx_core_module.html#debug_connection
 	// Default: ""
 	DebugConnections []string `json:"debug-connections"`
-
-	// EnablePathTypeValidation allows the admin to enable the pathType validation.
-	// If EnablePathTypeValidation is enabled, the Controller will only allow alphanumeric
-	// characters on path (0-9, a-z, A-Z, "-", ".", "_", "~", "/")
-	// to control what characters are allowed set them with PathAdditionalAllowedChars
-	EnablePathTypeValidation bool `json:"enable-pathtype-validation"`
-
-	// PathAdditionalAllowedChars allows the admin to specify what are the additional
-	// characters allowed in case of pathType=ImplementationSpecific.
-	// Case enable-pathtype-validation=true, this characters will be only allowed on ImplementationSpecific.
-	// Defaults to: "^%$[](){}*+?"
-	PathAdditionalAllowedChars string `json:"path-additional-allowed-chars"`
 }
 
 // NewDefault returns the default nginx configuration
@@ -829,8 +817,6 @@ func NewDefault() Configuration {
 		ClientHeaderTimeout:              60,
 		ClientBodyBufferSize:             "8k",
 		ClientBodyTimeout:                60,
-		EnablePathTypeValidation:         false,
-		PathAdditionalAllowedChars:       "^%$[](){}*+?|",
 		EnableUnderscoresInHeaders:       false,
 		ErrorLogLevel:                    errorLevel,
 		UseForwardedHeaders:              false,
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 9812bd97e..dab507cdf 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -325,10 +325,6 @@ func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
 
 	k8s.SetDefaultNGINXPathType(ing)
 
-	if err := utilingress.ValidateIngressPath(ing, cfg.EnablePathTypeValidation, cfg.PathAdditionalAllowedChars); err != nil {
-		return fmt.Errorf("ingress contains invalid characters: %s", err)
-	}
-
 	allIngresses := n.store.ListIngresses()
 
 	filter := func(toCheck *ingress.Ingress) bool {
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index dab1e6e37..8cca10385 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -201,97 +201,6 @@ func TestCheckIngress(t *testing.T) {
 			},
 		},
 	}
-
-	t.Run("when validating pathType", func(t *testing.T) {
-		t.Run("When ingress contains invalid path and pathType validation is enabled", func(t *testing.T) {
-			nginx.store = fakeIngressStore{
-				ingresses: []*ingress.Ingress{},
-				configuration: ngx_config.Configuration{
-					EnablePathTypeValidation: true,
-				},
-			}
-			nginx.command = testNginxTestCommand{
-				t:        t,
-				err:      nil,
-				expected: "",
-			}
-			nginx.cfg.IngressClassConfiguration = &ingressclass.IngressClassConfiguration{
-				WatchWithoutClass: true,
-			}
-			ingPath := &networking.Ingress{
-				ObjectMeta: metav1.ObjectMeta{
-					Name:      "test-ingress1",
-					Namespace: "user-namespace1",
-					Annotations: map[string]string{
-						"kubernetes.io/ingress.class": "nginx",
-					},
-				},
-				Spec: networking.IngressSpec{
-					Rules: []networking.IngressRule{
-						{
-							Host: "example.com",
-							IngressRuleValue: networking.IngressRuleValue{
-								HTTP: &networking.HTTPIngressRuleValue{
-									Paths: []networking.HTTPIngressPath{
-										{
-											Path:     "/xpto/(a+)",
-											PathType: &pathTypePrefix,
-										},
-									},
-								},
-							},
-						},
-					},
-				},
-			}
-
-			if nginx.CheckIngress(ingPath) == nil {
-				t.Errorf("invalid path on pathTypePrefix and validation enabled should return an error")
-			}
-		})
-		t.Run("When ingress contains invalid path and pathType validation is disabled", func(t *testing.T) {
-			nginx.store = fakeIngressStore{
-				ingresses: []*ingress.Ingress{},
-				configuration: ngx_config.Configuration{
-					EnablePathTypeValidation:   false,
-					PathAdditionalAllowedChars: "^%$[](){}*+?|",
-				},
-			}
-			nginx.command = testNginxTestCommand{
-				t:        t,
-				err:      nil,
-				expected: "_,example.com",
-			}
-
-			ingPath := &networking.Ingress{
-				ObjectMeta: metav1.ObjectMeta{
-					Name:      "test-ingress2",
-					Namespace: "user-namespace2",
-				},
-				Spec: networking.IngressSpec{
-					Rules: []networking.IngressRule{
-						{
-							Host: "example.com",
-							IngressRuleValue: networking.IngressRuleValue{
-								HTTP: &networking.HTTPIngressRuleValue{
-									Paths: []networking.HTTPIngressPath{
-										{
-											Path:     "/example(/|$)(.*)",
-											PathType: &pathTypePrefix,
-										},
-									},
-								},
-							},
-						},
-					},
-				},
-			}
-
-			if nginx.CheckIngress(ingPath) != nil {
-				t.Errorf("invalid path on pathTypePrefix and validation disabled should not return an error: %s", nginx.CheckIngress(ingPath))
-			}
-		})
-	})
 	t.Run("when the class is the nginx one", func(t *testing.T) {
 		ing.ObjectMeta.Annotations["kubernetes.io/ingress.class"] = "nginx"
 		nginx.command = testNginxTestCommand{
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index e0f6cfb54..13af28137 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -846,11 +846,6 @@ func (s *k8sStore) syncIngress(ing *networkingv1.Ingress) {
 	copyIng := &networkingv1.Ingress{}
 	ing.ObjectMeta.DeepCopyInto(&copyIng.ObjectMeta)
 
-	if err := ingressutils.ValidateIngressPath(ing, s.backendConfig.EnablePathTypeValidation, s.backendConfig.PathAdditionalAllowedChars); err != nil {
-		klog.Errorf("ingress %s contains invalid path and will be skipped: %s", key, err)
-		return
-	}
-
 	if s.backendConfig.AnnotationValueWordBlocklist != "" {
 		if err := checkBadAnnotationValue(copyIng.Annotations, s.backendConfig.AnnotationValueWordBlocklist); err != nil {
 			klog.Warningf("skipping ingress %s: %s", key, err)
@@ -870,6 +865,10 @@ func (s *k8sStore) syncIngress(ing *networkingv1.Ingress) {
 			if path.Path == "" {
 				copyIng.Spec.Rules[ri].HTTP.Paths[pi].Path = "/"
 			}
+			if !ingressutils.IsSafePath(copyIng, path.Path) {
+				klog.Warningf("ingress %s contains invalid path %s", key, path.Path)
+				return
+			}
 		}
 	}
 
diff --git a/internal/k8s/main.go b/internal/k8s/main.go
index 6973b6cb7..e0d2a1660 100644
--- a/internal/k8s/main.go
+++ b/internal/k8s/main.go
@@ -180,6 +180,9 @@ func SetDefaultNGINXPathType(ing *networkingv1.Ingress) {
 				p.PathType = &defaultPathType
 			}
 
+			if *p.PathType == networkingv1.PathTypeImplementationSpecific {
+				p.PathType = &defaultPathType
+			}
 		}
 	}
 }
diff --git a/magefiles/helm.go b/magefiles/helm.go
index a57c46813..e69c4e029 100644
--- a/magefiles/helm.go
+++ b/magefiles/helm.go
@@ -153,6 +153,9 @@ func updateChartValue(key, value string) {
 	Info("HELM Ingress Nginx Helm Chart update %s %s", key, value)
 }
 
+func (Helm) Helmdocs() error {
+	return runHelmDocs()
+}
 func runHelmDocs() error {
 	err := installHelmDocs()
 	if err != nil {
diff --git a/pkg/util/ingress/ingress.go b/pkg/util/ingress/ingress.go
index 91243e2cc..5fb3ee7b9 100644
--- a/pkg/util/ingress/ingress.go
+++ b/pkg/util/ingress/ingress.go
@@ -23,6 +23,7 @@ import (
 
 	networkingv1 "k8s.io/api/networking/v1"
 	"k8s.io/apimachinery/pkg/util/sets"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/internal/net/ssl"
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
@@ -30,15 +31,15 @@ import (
 )
 
 const (
-	alphaNumericChars = `A-Za-z0-9\-\.\_\~\/` // This is the default allowed set on paths
+	alphaNumericChars = `\-\.\_\~a-zA-Z0-9/`
+	regexEnabledChars = `\^\$\[\]\(\)\{\}\*\+`
 )
 
 var (
-	// pathAlphaNumeric is a regex validation that allows only (0-9, a-z, A-Z, "-", ".", "_", "~", "/")
-	pathAlphaNumericRegex = regexp.MustCompile("^[" + alphaNumericChars + "]*$").MatchString
-
-	// default path type is Prefix to not break existing definitions
-	defaultPathType = networkingv1.PathTypePrefix
+	// pathAlphaNumeric is a regex validation of something like "^/[a-zA-Z]+$" on path
+	pathAlphaNumeric = regexp.MustCompile("^/[" + alphaNumericChars + "]*$").MatchString
+	// pathRegexEnabled is a regex validation of paths that may contain regex.
+	pathRegexEnabled = regexp.MustCompile("^/[" + alphaNumericChars + regexEnabledChars + "]*$").MatchString
 )
 
 func GetRemovedHosts(rucfg, newcfg *ingress.Configuration) []string {
@@ -246,68 +247,12 @@ func BuildRedirects(servers []*ingress.Server) []*redirect {
 	return redirectServers
 }
 
-func ValidateIngressPath(copyIng *networkingv1.Ingress, enablePathTypeValidation bool, pathAdditionalAllowedChars string) error {
-
-	if copyIng == nil {
-		return nil
+// IsSafePath verifies if the path used in ingress object contains only valid characters.
+// It will behave differently if regex is enabled or not
+func IsSafePath(copyIng *networkingv1.Ingress, path string) bool {
+	isRegex, _ := parser.GetBoolAnnotation("use-regex", copyIng)
+	if isRegex {
+		return pathRegexEnabled(path)
 	}
-
-	escapedPathAdditionalAllowedChars := regexp.QuoteMeta(pathAdditionalAllowedChars)
-	regexPath, err := regexp.Compile("^[" + alphaNumericChars + escapedPathAdditionalAllowedChars + "]*$")
-	if err != nil {
-		return fmt.Errorf("ingress has misconfigured validation regex on configmap: %s - %w", pathAdditionalAllowedChars, err)
-	}
-
-	for _, rule := range copyIng.Spec.Rules {
-
-		if rule.HTTP == nil {
-			continue
-		}
-
-		if err := checkPath(rule.HTTP.Paths, enablePathTypeValidation, regexPath); err != nil {
-			return fmt.Errorf("error validating ingressPath: %w", err)
-		}
-	}
-	return nil
-}
-
-func checkPath(paths []networkingv1.HTTPIngressPath, enablePathTypeValidation bool, regexSpecificChars *regexp.Regexp) error {
-
-	for _, path := range paths {
-		if path.PathType == nil {
-			path.PathType = &defaultPathType
-		}
-
-		klog.V(9).InfoS("PathType Validation", "enablePathTypeValidation", enablePathTypeValidation, "regexSpecificChars", regexSpecificChars.String(), "Path", path.Path)
-
-		switch pathType := *path.PathType; pathType {
-		case networkingv1.PathTypeImplementationSpecific:
-			if enablePathTypeValidation {
-				//only match on regex chars per Ingress spec when path is implementation specific
-				if !regexSpecificChars.MatchString(path.Path) {
-					return fmt.Errorf("path %s of type %s contains invalid characters", path.Path, *path.PathType)
-				}
-			}
-
-		case networkingv1.PathTypeExact, networkingv1.PathTypePrefix:
-			//enforce path type validation
-			if enablePathTypeValidation {
-				//only allow alphanumeric chars, no regex chars
-				if !pathAlphaNumericRegex(path.Path) {
-					return fmt.Errorf("path %s of type %s contains invalid characters", path.Path, *path.PathType)
-				}
-				continue
-			} else {
-				//path validation is disabled, so we check what regex chars are allowed by user
-				if !regexSpecificChars.MatchString(path.Path) {
-					return fmt.Errorf("path %s of type %s contains invalid characters", path.Path, *path.PathType)
-				}
-				continue
-			}
-
-		default:
-			return fmt.Errorf("unknown path type %v on path %v", *path.PathType, path.Path)
-		}
-	}
-	return nil
+	return pathAlphaNumeric(path)
 }
diff --git a/pkg/util/ingress/ingress_test.go b/pkg/util/ingress/ingress_test.go
index 12c2ff1da..d829a57f1 100644
--- a/pkg/util/ingress/ingress_test.go
+++ b/pkg/util/ingress/ingress_test.go
@@ -17,10 +17,13 @@ limitations under the License.
 package ingress
 
 import (
+	"fmt"
 	"testing"
 
-	networkingv1 "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+
+	networkingv1 "k8s.io/api/networking/v1"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
@@ -133,172 +136,81 @@ func TestIsDynamicConfigurationEnough(t *testing.T) {
 	}
 }
 
-func generateDumbIngressforPathTest(pathType *networkingv1.PathType, path string) *networkingv1.Ingress {
+func generateDumbIngressforPathTest(regexEnabled bool) *networkingv1.Ingress {
+	var annotations = make(map[string]string)
+	regexAnnotation := fmt.Sprintf("%s/use-regex", parser.AnnotationsPrefix)
+	if regexEnabled {
+		annotations[regexAnnotation] = "true"
+	}
 	return &networkingv1.Ingress{
 		ObjectMeta: metav1.ObjectMeta{
-			Name:      "dumb",
-			Namespace: "default",
-		},
-		Spec: networkingv1.IngressSpec{
-			Rules: []networkingv1.IngressRule{
-				{
-					Host: "test.com",
-					IngressRuleValue: networkingv1.IngressRuleValue{
-						HTTP: &networkingv1.HTTPIngressRuleValue{
-							Paths: []networkingv1.HTTPIngressPath{
-								{
-									PathType: pathType,
-									Path:     path,
-								},
-							},
-						},
-					},
-				},
-			},
+			Name:        "dumb",
+			Namespace:   "default",
+			Annotations: annotations,
 		},
 	}
 }
 
-func generateComplexIngress(ing *networkingv1.Ingress) *networkingv1.Ingress {
-
-	oldRules := ing.Spec.DeepCopy().Rules
-	ing.Spec.Rules = []networkingv1.IngressRule{
-		{
-			Host: "test1.com",
-			IngressRuleValue: networkingv1.IngressRuleValue{
-				HTTP: &networkingv1.HTTPIngressRuleValue{
-					Paths: []networkingv1.HTTPIngressPath{
-						{
-							PathType: &pathTypeExact,
-							Path:     "/xpto",
-						},
-					},
-				},
-			},
-		},
-		{
-			Host: "test2.com",
-			IngressRuleValue: networkingv1.IngressRuleValue{
-				HTTP: &networkingv1.HTTPIngressRuleValue{
-					Paths: []networkingv1.HTTPIngressPath{
-						{
-							PathType: &pathTypeExact,
-							Path:     "/someotherpath",
-						},
-						{
-							PathType: &pathTypePrefix,
-							Path:     "/someprefix/~xpto/lala123",
-						},
-					},
-				},
-			},
-		},
-	}
-	// we want to invert the order to test better :)
-	ing.Spec.Rules = append(ing.Spec.Rules, oldRules...)
-
-	return ing
-}
-
-var (
-	pathTypeExact        = networkingv1.PathTypeExact
-	pathTypePrefix       = networkingv1.PathTypePrefix
-	pathTypeImplSpecific = networkingv1.PathTypeImplementationSpecific
-)
-
-const (
-	defaultAdditionalChars = "^%$[](){}*+?"
-)
-
-func TestValidateIngressPath(t *testing.T) {
+func TestIsSafePath(t *testing.T) {
 	tests := []struct {
-		name                     string
-		copyIng                  *networkingv1.Ingress
-		EnablePathTypeValidation bool
-		additionalChars          string
-		wantErr                  bool
+		name    string
+		copyIng *networkingv1.Ingress
+		path    string
+		want    bool
 	}{
 		{
-			name:    "should return nil when ingress = nil",
-			wantErr: false,
-			copyIng: nil,
+			name:    "should accept valid path with regex disabled",
+			want:    true,
+			copyIng: generateDumbIngressforPathTest(false),
+			path:    "/xpto/~user/t-e_st.exe",
 		},
 		{
-			name:    "should accept valid path on pathType Exact",
-			wantErr: false,
-			copyIng: generateDumbIngressforPathTest(&pathTypeExact, "/xpto/~user9/t-e_st.exe"),
+			name:    "should accept valid path / with regex disabled",
+			want:    true,
+			copyIng: generateDumbIngressforPathTest(false),
+			path:    "/",
 		},
 		{
-			name:    "should accept valid path on pathType Prefix",
-			wantErr: false,
-			copyIng: generateDumbIngressforPathTest(&pathTypePrefix, "/xpto/~user9/t-e_st.exe"),
+			name:    "should reject invalid path with invalid chars",
+			want:    false,
+			copyIng: generateDumbIngressforPathTest(false),
+			path:    "/foo/bar/;xpto",
 		},
 		{
-			name:    "should accept valid simple path on pathType Impl Specific",
-			wantErr: false,
-			copyIng: generateDumbIngressforPathTest(&pathTypeImplSpecific, "/xpto/~user9/t-e_st.exe"),
+			name:    "should reject regex path when regex is disabled",
+			want:    false,
+			copyIng: generateDumbIngressforPathTest(false),
+			path:    "/foo/bar/(.+)",
 		},
 		{
-			name:    "should accept valid path on pathType nil",
-			wantErr: false,
-			copyIng: generateDumbIngressforPathTest(nil, "/xpto/~user/t-e_st.exe"),
+			name:    "should accept valid path / with regex enabled",
+			want:    true,
+			copyIng: generateDumbIngressforPathTest(true),
+			path:    "/",
 		},
 		{
-			name:    "should accept empty path",
-			wantErr: false,
-			copyIng: generateDumbIngressforPathTest(&pathTypePrefix, ""),
+			name:    "should accept regex path when regex is enabled",
+			want:    true,
+			copyIng: generateDumbIngressforPathTest(true),
+			path:    "/foo/bar/(.+)",
 		},
 		{
-			name:            "should deny path with bad characters and pathType not implementationSpecific",
-			wantErr:         true,
-			additionalChars: "()",
-			copyIng:         generateDumbIngressforPathTest(&pathTypeExact, "/foo/bar/(.+)"),
+			name:    "should reject regex path when regex is enabled but the path is invalid",
+			want:    false,
+			copyIng: generateDumbIngressforPathTest(true),
+			path:    "/foo/bar/;xpto",
 		},
 		{
-			name:                     "should accept path with regex characters and pathType implementationSpecific",
-			wantErr:                  false,
-			additionalChars:          defaultAdditionalChars,
-			EnablePathTypeValidation: false,
-			copyIng:                  generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.+)"),
-		},
-		{
-			name:                     "should accept path with regex characters and pathType exact, but pathType validation disabled",
-			wantErr:                  false,
-			additionalChars:          defaultAdditionalChars,
-			EnablePathTypeValidation: false,
-			copyIng:                  generateDumbIngressforPathTest(&pathTypeExact, "/foo/bar/(.+)"),
-		},
-		{
-			name:                     "should reject path when the allowed additional set does not match",
-			wantErr:                  true,
-			additionalChars:          "().?",
-			EnablePathTypeValidation: true,
-			copyIng:                  generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.+)"),
-		},
-		{
-			name:                     "should accept path when the allowed additional set does match",
-			wantErr:                  false,
-			additionalChars:          "().?",
-			EnablePathTypeValidation: false,
-			copyIng:                  generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.?)"),
-		},
-		{
-			name:                     "should block if at least one path is bad",
-			wantErr:                  true,
-			EnablePathTypeValidation: false,
-			copyIng:                  generateComplexIngress(generateDumbIngressforPathTest(&pathTypeExact, "/foo/bar/(.?)")),
-		},
-		{
-			name:                     "should block if at least one path is bad",
-			wantErr:                  true,
-			EnablePathTypeValidation: true,
-			copyIng:                  generateComplexIngress(generateDumbIngressforPathTest(&pathTypeImplSpecific, "/foo/bar/(.?)")),
+			name:    "should reject regex path when regex is enabled but the path is invalid",
+			want:    false,
+			copyIng: generateDumbIngressforPathTest(true),
+			path:    ";xpto",
 		},
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
-			if err := ValidateIngressPath(tt.copyIng, tt.EnablePathTypeValidation, tt.additionalChars); (err != nil) != tt.wantErr {
-				t.Errorf("ValidateIngressPath() error = %v, wantErr %v", err, tt.wantErr)
+			if got := IsSafePath(tt.copyIng, tt.path); got != tt.want {
+				t.Errorf("IsSafePath() = %v, want %v", got, tt.want)
 			}
 		})
 	}
diff --git a/test/e2e/admission/admission.go b/test/e2e/admission/admission.go
index e0f55df4e..bde98fddf 100644
--- a/test/e2e/admission/admission.go
+++ b/test/e2e/admission/admission.go
@@ -30,14 +30,6 @@ import (
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
-
-	networkingv1 "k8s.io/api/networking/v1"
-)
-
-var (
-	pathExact        = networkingv1.PathTypeExact
-	pathPrefix       = networkingv1.PathTypePrefix
-	pathImplSpecific = networkingv1.PathTypeImplementationSpecific
 )
 
 var _ = framework.IngressNginxDescribe("[Serial] admission controller", func() {
@@ -160,35 +152,7 @@ var _ = framework.IngressNginxDescribe("[Serial] admission controller", func() {
 		assert.NotNil(ginkgo.GinkgoT(), err, "creating an ingress with invalid annotation value should return an error")
 	})
 
-	ginkgo.It("ADMISSION should not validate characters on ingress when validation of pathType is disabled", func() {
-		host := "admission-test"
-
-		f.UpdateNginxConfigMapData("enable-pathtype-validation", "false")
-
-		firstIngress := framework.NewSingleIngress("first-ingress", "/xpto*", host, f.Namespace, framework.EchoService, 80, nil)
-		firstIngress.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathPrefix
-		_, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), firstIngress, metav1.CreateOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "creating an ingress with regex chars on path and pathType validation disabled should be accepted")
-	})
-
-	ginkgo.It("ADMISSION should reject ingress with bad characters and pathType != ImplementationSpecific", func() {
-		host := "admission-test"
-
-		f.UpdateNginxConfigMapData("enable-pathtype-validation", "true")
-
-		firstIngress := framework.NewSingleIngress("first-ingress", "/xpto*", host, f.Namespace, framework.EchoService, 80, nil)
-		firstIngress.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathPrefix
-		_, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), firstIngress, metav1.CreateOptions{})
-		assert.NotNil(ginkgo.GinkgoT(), err, "creating an ingress with invalid path value should return an error")
-
-		secondIngress := framework.NewSingleIngress("second-ingress", "/abc123*", host, f.Namespace, framework.EchoService, 80, nil)
-		secondIngress.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathImplSpecific
-		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), secondIngress, metav1.CreateOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "creating an ingress with regex on path and pathType ImplementationSpecific should not return an error")
-
-	})
-
-	ginkgo.It("ADMISSION should return an error if there is a forbidden value in some annotation", func() {
+	ginkgo.It("should return an error if there is a forbidden value in some annotation", func() {
 		host := "admission-test"
 
 		annotations := map[string]string{
diff --git a/test/e2e/annotations/affinity.go b/test/e2e/annotations/affinity.go
index 31e8905d1..3e1e9e969 100644
--- a/test/e2e/annotations/affinity.go
+++ b/test/e2e/annotations/affinity.go
@@ -35,8 +35,6 @@ import (
 var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	f := framework.NewDefaultFramework("affinity")
 
-	pathImpl := networking.PathTypeImplementationSpecific
-
 	ginkgo.BeforeEach(func() {
 		f.NewEchoDeployment(framework.WithDeploymentReplicas(2))
 	})
@@ -278,8 +276,6 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 		annotations["nginx.ingress.kubernetes.io/session-cookie-path"] = "/foo/bar"
 
 		ing := framework.NewSingleIngress(host, "/foo/.*", host, f.Namespace, framework.EchoService, 80, annotations)
-		ing.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathImpl
-
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -303,8 +299,6 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 		annotations["nginx.ingress.kubernetes.io/use-regex"] = "true"
 
 		ing := framework.NewSingleIngress(host, "/foo/.*", host, f.Namespace, framework.EchoService, 80, annotations)
-		ing.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathImpl
-
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index e26fcbd46..1f0f4c3b2 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -720,51 +720,6 @@ http {
 		})
 	})
 
-	ginkgo.Context("when external authentication is configured along with CORS enabled", func() {
-		host := "auth"
-		var annotations map[string]string
-		var ing *networking.Ingress
-
-		ginkgo.BeforeEach(func() {
-			f.NewHttpbinDeployment()
-
-			var httpbinIP string
-
-			err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBinService, f.Namespace, 1)
-			assert.Nil(ginkgo.GinkgoT(), err)
-
-			e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBinService, metav1.GetOptions{})
-			assert.Nil(ginkgo.GinkgoT(), err)
-
-			httpbinIP = e.Subsets[0].Addresses[0].IP
-
-			annotations = map[string]string{
-				"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", httpbinIP),
-				"nginx.ingress.kubernetes.io/auth-signin": "http://$host/auth/start",
-				"nginx.ingress.kubernetes.io/enable-cors": "true",
-			}
-
-			ing = framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
-
-			f.WaitForNginxServer(host, func(server string) bool {
-				return strings.Contains(server, "server_name auth")
-			})
-		})
-
-		ginkgo.It("should redirect to signin url when not signed in along With CORS headers in response", func() {
-			f.HTTPTestClient().
-				GET("/").
-				WithHeader("Host", host).
-				WithQuery("a", "b").
-				WithQuery("c", "d").
-				Expect().
-				Status(http.StatusFound).
-				Header("Access-Control-Allow-Origin").Equal(fmt.Sprintf("*"))
-
-		})
-	})
-
 	ginkgo.Context("when external authentication with caching is configured", func() {
 		thisHost := "auth"
 		thatHost := "different"
diff --git a/test/e2e/annotations/rewrite.go b/test/e2e/annotations/rewrite.go
index 0c426a8df..79738b984 100644
--- a/test/e2e/annotations/rewrite.go
+++ b/test/e2e/annotations/rewrite.go
@@ -24,15 +24,12 @@ import (
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
-	networking "k8s.io/api/networking/v1"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
 var _ = framework.DescribeAnnotation("rewrite-target use-regex enable-rewrite-log", func() {
 	f := framework.NewDefaultFramework("rewrite")
 
-	pathImpl := networking.PathTypeImplementationSpecific
-
 	ginkgo.BeforeEach(func() {
 		f.NewEchoDeployment()
 	})
@@ -129,7 +126,6 @@ var _ = framework.DescribeAnnotation("rewrite-target use-regex enable-rewrite-lo
 			"nginx.ingress.kubernetes.io/rewrite-target": "/new/backend",
 		}
 		ing = framework.NewSingleIngress("regex", "/foo.+", host, f.Namespace, framework.EchoService, 80, annotations)
-		ing.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathImpl
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -172,8 +168,6 @@ var _ = framework.DescribeAnnotation("rewrite-target use-regex enable-rewrite-lo
 			"nginx.ingress.kubernetes.io/rewrite-target": "/new/backend",
 		}
 		ing = framework.NewSingleIngress("regex", "/foo/bar/[a-z]{3}", host, f.Namespace, framework.EchoService, 80, annotations)
-		ing.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathImpl
-
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -202,8 +196,6 @@ var _ = framework.DescribeAnnotation("rewrite-target use-regex enable-rewrite-lo
 			"nginx.ingress.kubernetes.io/rewrite-target": "/new/backend/$1",
 		}
 		ing := framework.NewSingleIngress("regex", "/foo/bar/(.+)", host, f.Namespace, framework.EchoService, 80, annotations)
-		ing.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &pathImpl
-
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
diff --git a/test/e2e/security/invalid_paths.go b/test/e2e/security/invalid_paths.go
new file mode 100644
index 000000000..d75aefc2c
--- /dev/null
+++ b/test/e2e/security/invalid_paths.go
@@ -0,0 +1,134 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package security
+
+import (
+	"fmt"
+	"net/http"
+	"strings"
+
+	"github.com/onsi/ginkgo/v2"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+const (
+	validPath   = "/xpto/~user/t-e_st.exe"
+	invalidPath = "/foo/bar/;xpto"
+	regexPath   = "/foo/bar/(.+)"
+	host        = "securitytest.com"
+)
+
+var (
+	annotationRegex = map[string]string{
+		"nginx.ingress.kubernetes.io/use-regex": "true",
+	}
+)
+
+var _ = framework.IngressNginxDescribe("[Security] validate path fields", func() {
+	f := framework.NewDefaultFramework("validate-path")
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment()
+	})
+
+	ginkgo.It("should accept an ingress with valid path", func() {
+
+		ing := framework.NewSingleIngress(host, validPath, host, f.Namespace, framework.EchoService, 80, nil)
+
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
+			})
+
+		f.HTTPTestClient().
+			GET(validPath).
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+	})
+
+	ginkgo.It("should drop an ingress with invalid path", func() {
+
+		ing := framework.NewSingleIngress(host, invalidPath, host, f.Namespace, framework.EchoService, 80, nil)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return !strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
+			})
+
+		f.HTTPTestClient().
+			GET(invalidPath).
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+	})
+
+	ginkgo.It("should drop an ingress with regex path and regex disabled", func() {
+
+		ing := framework.NewSingleIngress(host, regexPath, host, f.Namespace, framework.EchoService, 80, nil)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return !strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
+			})
+
+		f.HTTPTestClient().
+			GET("/foo/bar/lalala").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+	})
+
+	ginkgo.It("should accept an ingress with regex path and regex enabled", func() {
+
+		ing := framework.NewSingleIngress(host, regexPath, host, f.Namespace, framework.EchoService, 80, annotationRegex)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
+			})
+
+		f.HTTPTestClient().
+			GET("/foo/bar/lalala").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+	})
+
+	ginkgo.It("should reject an ingress with invalid path and regex enabled", func() {
+
+		ing := framework.NewSingleIngress(host, invalidPath, host, f.Namespace, framework.EchoService, 80, annotationRegex)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return !strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
+			})
+
+		f.HTTPTestClient().
+			GET(invalidPath).
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+	})
+})

From b3fc7c7a066c95cd0b6497082c68d4b0167b0929 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 13 Feb 2023 08:22:52 -0500
Subject: [PATCH 0620/1641] trigger the build 1.6.3

---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 103ae529e..e37df95ee 100644
--- a/TAG
+++ b/TAG
@@ -1,2 +1,2 @@
-v1.6.2
+v1.6.3
 

From 80fd69e641d5b730048fff61f3d58682e2494fd1 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 14 Feb 2023 04:23:31 +0100
Subject: [PATCH 0621/1641] Release docs for Controller v1.6.3 and Helm v4.5.0
 (#9614)

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 README.md                                     |    1 +
 ...{Changelog-1.5.2.md => Changelog-1.6.3.md} |  101 +-
 charts/ingress-nginx/Chart.yaml               |   48 +-
 charts/ingress-nginx/README.md                |    8 +-
 ...{Changelog-1.5.2.md => Changelog-4.5.0.md} |    7 +-
 charts/ingress-nginx/values.yaml              | 1624 ++++++++---------
 deploy/static/provider/aws/deploy.yaml        |   57 +-
 .../aws/nlb-with-tls-termination/deploy.yaml  |   57 +-
 deploy/static/provider/baremetal/deploy.yaml  |   57 +-
 deploy/static/provider/cloud/deploy.yaml      |   57 +-
 deploy/static/provider/do/deploy.yaml         |   57 +-
 deploy/static/provider/exoscale/deploy.yaml   |   57 +-
 deploy/static/provider/kind/deploy.yaml       |   57 +-
 deploy/static/provider/scw/deploy.yaml        |   57 +-
 docs/deploy/index.md                          |   20 +-
 docs/e2e-tests.md                             |  991 ++++++++--
 16 files changed, 1822 insertions(+), 1434 deletions(-)
 rename changelog/{Changelog-1.5.2.md => Changelog-1.6.3.md} (52%)
 rename charts/ingress-nginx/changelog/{Changelog-1.5.2.md => Changelog-4.5.0.md} (75%)

diff --git a/README.md b/README.md
index f8c020b68..6d3fb7873 100644
--- a/README.md
+++ b/README.md
@@ -38,6 +38,7 @@ the versions listed. Ingress-Nginx versions may work on older versions but the p
 
 | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
+| v1.6.3                | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        |
 | v1.5.1                | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        |
 | v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      |
 | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      |
diff --git a/changelog/Changelog-1.5.2.md b/changelog/Changelog-1.6.3.md
similarity index 52%
rename from changelog/Changelog-1.5.2.md
rename to changelog/Changelog-1.6.3.md
index ed8532374..39fa5bb24 100644
--- a/changelog/Changelog-1.5.2.md
+++ b/changelog/Changelog-1.6.3.md
@@ -1,14 +1,59 @@
 # Changelog
 
-### 1.5.2
+### 1.6.3
 Images:
 
-<<<<<<< HEAD
- * registry.k8s.io/ingress-nginx/controller:controller-v1.5.2@sha256:3870522ed937c9efb94bfa31a7eb16009831567a0d4cbe01846fc5486d622655
- * registry.k8s.io/ingress-nginx/controller-chroot:controller-v1.5.2@sha256:84613555694f2c59a8b2551126d226c9aa648544ebf0cde1e0df942f7dbce42b
+ * registry.k8s.io/controller:controller-v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
+ * registry.k8s.io/controller-chroot:controller-v1.6.3@sha256:4b4a249c9a35ac16a8ec0e22f6c522b8707f7e59e656e64a4ad9ace8fea830a4
  
 ### All Changes:
 
+* Revert Implement pathType validation (#9511) (#9607)
+* update history and allow to pass a target test  (#9605)
+* Allow to pass a target test (#9542)
+* Replace deprecated command with environment file (#9581)
+* build 1.6.2 to fix (#9569)
+* add lint on chart before release (#9570)
+* tcpproxy: increase buffer size to 16K (#9548)
+* Move and spell-check Kubernetes 1.22 migration FAQ (#9544)
+* Add CORS template check inside location for externalAuth.SignURL (#8814)
+* fix(grafana-dashboard): remove hardcoded namespace references (#9523)
+* Replace deprecated command with environment file (#9581)
+* add path validation to implementation specific as well (#9573)
+* add lint on chart before release (#9570)
+* Switch logic on path type validation and setting it to false (#9543)
+* tcpproxy: increase buffer size to 16K (#9548)
+* Move and spell-check Kubernetes 1.22 migration FAQ (#9544)
+* Add CORS template check inside location for externalAuth.SignURL (#8814)
+* fix(grafana-dashboard): remove hardcoded namespace references (#9523)
+* Align default value for keepalive_request with NGINX default (#9518)
+* Implement pathType validation (#9511)
+* feat(configmap): expose gzip-disable (#9505)
+* Values: Add missing `controller.metrics.service.labels`. (#9501)
+* Add docs about orphan_ingress metric (#9514)
+* Add new prometheus metric for orphaned ingress (#8230)
+* Sanitise request metrics in monitoring docs (#9384)
+* Change default value of enable-brotli (#9500)
+* feat: support topology aware hints (#9165)
+* Remove 1.5.2 from readme (#9498)
+* Remove nonexistent load flag from docker build commands (#9122)
+* added option to disable sync event creation (#8528)
+* Add buildResolvers to the stream module (#9184)
+* fix: disable auth access logs (#9049)
+* Adding ipdenylist annotation (#8795)
+* Add update updateStrategy and minReadySeconds for defaultBackend (#8506)
+* Fix indentation on serviceAccount annotation (#9129)
+* Update monitoring.md (#9269)
+* add github actions stale bot (#9439)
+* Admission Webhooks/Job: Add `NetworkPolicy`. (#9218)
+* update OpenTelemetry image (#9491)
+* bump OpenTelemetry (#9489)
+* Optional podman support (#9294)
+* fix change images (#9463)
+* move tests to gh actions (#9461)
+* Automated Release Controller 1.5.2 (#9455)
+* Add sslpassthrough tests (#9457)
+* updated the link in RELEASE.md file (#9456)
 * restart 1.5.2 release process (#9450)
 * Update command line arguments documentation (#9224)
 * start release 1.5.2 (#9445)
@@ -20,24 +65,6 @@ Images:
 * update the nginx run container for alpine:3.17.0 (#9430)
 * cleanup: remove ioutil for new go version (#9427)
 * start upgrade to golang 1.19.4 and alpine 3.17.0 (#9417)
-=======
- * registry.k8s.io/controller:controller-v1.5.2@sha256:c1c091b88a6c936a83bd7g098v62f60a87868d12452529bad0d178fb36143346
- * registry.k8s.io/controller-chroot:controller-v1.5.2@sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529b350d178fb36147345
- 
-### All Changes:
-
-<<<<<<< HEAD
->>>>>>> f4164ae0b (THE CHANGELOG WORKS)
-=======
-* upgrade nginx base image (#9436)
-* test the new e2e test images (#9444)
-* avoid builds and tests for non-code changes (#9392)
-* CI updates (#9440)
-* HPA: Add `controller.autoscaling.annotations` to `values.yaml`. (#9253)
-* update the nginx run container for alpine:3.17.0 (#9430)
-* cleanup: remove ioutil for new go version (#9427)
-* start upgrade to golang 1.19.4 and alpine 3.17.0 (#9417)
->>>>>>> 9ecab7d85 (e2e doc updates work now)
 * ci: remove setup-helm step (#9404)
 * ci: remove setup-kind step (#9401)
 * Add reporter for all tests (#9395)
@@ -73,10 +100,17 @@ Images:
 * add containerSecurityContext to extraModules init containers (kubernetes#9016) (#9242)
 
 ### Dependencies updates: 
-<<<<<<< HEAD
-<<<<<<< HEAD
-=======
->>>>>>> 9ecab7d85 (e2e doc updates work now)
+* Bump google.golang.org/grpc from 1.52.0 to 1.52.3 (#9555)
+* Bump k8s.io/klog/v2 from 2.80.1 to 2.90.0 (#9553)
+* Bump sigs.k8s.io/controller-runtime from 0.13.1 to 0.14.2 (#9552)
+* Bump google.golang.org/grpc from 1.51.0 to 1.52.0 (#9512)
+* Bump `client-go` to remove dependence on go-autorest dependency (#9488)
+* Bump google.golang.org/grpc from 1.52.0 to 1.52.3 (#9555)
+* Bump k8s.io/klog/v2 from 2.80.1 to 2.90.0 (#9553)
+* Bump sigs.k8s.io/controller-runtime from 0.13.1 to 0.14.2 (#9552)
+* Bump google.golang.org/grpc from 1.51.0 to 1.52.0 (#9512)
+* Bump `client-go` to remove dependence on go-autorest dependency (#9488)
+* Bump golang.org/x/crypto from 0.4.0 to 0.5.0 (#9494)
 * Bump golang.org/x/crypto from 0.3.0 to 0.4.0 (#9397)
 * Bump github.com/onsi/ginkgo/v2 from 2.6.0 to 2.6.1 (#9432)
 * Bump github.com/onsi/ginkgo/v2 from 2.6.0 to 2.6.1 (#9421)
@@ -85,11 +119,6 @@ Images:
 * Bump goreleaser/goreleaser-action from 3.2.0 to 4.1.0 (#9426)
 * Bump actions/dependency-review-action from 3.0.1 to 3.0.2 (#9424)
 * Bump ossf/scorecard-action from 2.0.6 to 2.1.0 (#9422)
-<<<<<<< HEAD
-=======
->>>>>>> f4164ae0b (THE CHANGELOG WORKS)
-=======
->>>>>>> 9ecab7d85 (e2e doc updates work now)
 * Bump github.com/prometheus/common from 0.37.0 to 0.39.0 (#9416)
 * Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0 (#9408)
 * Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.6.0 (#9398)
@@ -104,12 +133,4 @@ Images:
 * Bump actions/dependency-review-action from 2.5.1 to 3.0.0 (#9301)
 * Bump k8s.io/component-base from 0.25.3 to 0.25.4 (#9300)
  
-<<<<<<< HEAD
-<<<<<<< HEAD
-**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.5.1...controller-controller-v1.5.2
-=======
-**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.5.2...controller-controller-v1.5.1
->>>>>>> f4164ae0b (THE CHANGELOG WORKS)
-=======
-**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.5.1...controller-controller-v1.5.2
->>>>>>> 9ecab7d85 (e2e doc updates work now)
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.5.1...controller-controller-v1.6.3
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 2a15960f7..c11859326 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,31 +1,27 @@
+annotations:
+  artifacthub.io/changes: |
+     - "add lint on chart before release (#9570)"
+     - "ci: remove setup-helm step (#9404)"
+     - "feat(helm): Optionally use cert-manager instead admission patch (#9279)"
+     - "run helm release on main only and when the chart/value changes only (#9290)"
+     - "Update Ingress-Nginx version controller-v1.6.3"
+  artifacthub.io/prerelease: "false"
 apiVersion: v2
-name: ingress-nginx
-# When the version is modified, make sure the artifacthub.io/changes list is updated
-# Also update CHANGELOG.md
-version: 4.4.2
-appVersion: 1.5.1
+appVersion: 1.6.3
+description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
+  load balancer
+engine: gotpl
 home: https://github.com/kubernetes/ingress-nginx
-description: Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
 keywords:
-  - ingress
-  - nginx
-sources:
-  - https://github.com/kubernetes/ingress-nginx
+- ingress
+- nginx
+kubeVersion: '>=1.20.0-0'
 maintainers:
-  - name: rikatz
-  - name: strongjz
-  - name: tao12345666333
-engine: gotpl
-kubeVersion: ">=1.20.0-0"
-annotations:
-  # Use this annotation to indicate that this chart version is a pre-release.
-  # https://artifacthub.io/docs/topics/annotations/helm/
-  artifacthub.io/prerelease: "false"
-  # List of changes for the release in artifacthub.io
-  # https://artifacthub.io/packages/helm/ingress-nginx/ingress-nginx?modal=changelog
-  artifacthub.io/changes: |
-    - Adding support for disabling liveness and readiness probes to the Helm chart
-    - add:(admission-webhooks) ability to set securityContext
-    - Updated Helm chart to use the fullname for the electionID if not specified
-    - Rename controller-wehbooks-networkpolicy.yaml
+- name: rikatz
+- name: strongjz
+- name: tao12345666333
+name: ingress-nginx
+sources:
+- https://github.com/kubernetes/ingress-nginx
+version: 4.5.0
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 65236e08c..cb454b535 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.4.2](https://img.shields.io/badge/Version-4.4.2-informational?style=flat-square) ![AppVersion: 1.5.1](https://img.shields.io/badge/AppVersion-1.5.1-informational?style=flat-square)
+![Version: 4.5.0](https://img.shields.io/badge/Version-4.5.0-informational?style=flat-square) ![AppVersion: 1.6.3](https://img.shields.io/badge/AppVersion-1.6.3-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -333,13 +333,13 @@ Kubernetes: `>=1.20.0-0`
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629"` |  |
-| controller.image.digestChroot | string | `"sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529bad0d178fb36147345"` |  |
+| controller.image.digest | string | `"sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2"` |  |
+| controller.image.digestChroot | string | `"sha256:4b4a249c9a35ac16a8ec0e22f6c522b8707f7e59e656e64a4ad9ace8fea830a4"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.5.1"` |  |
+| controller.image.tag | string | `"v1.6.3"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/Changelog-1.5.2.md b/charts/ingress-nginx/changelog/Changelog-4.5.0.md
similarity index 75%
rename from charts/ingress-nginx/changelog/Changelog-1.5.2.md
rename to charts/ingress-nginx/changelog/Changelog-4.5.0.md
index 5e0563858..ba4b52cbc 100644
--- a/charts/ingress-nginx/changelog/Changelog-1.5.2.md
+++ b/charts/ingress-nginx/changelog/Changelog-4.5.0.md
@@ -2,11 +2,12 @@
 
 This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
 
-### 4.4.1
+### 4.5.0
 
+* add lint on chart before release (#9570)
 * ci: remove setup-helm step (#9404)
 * feat(helm): Optionally use cert-manager instead admission patch (#9279)
 * run helm release on main only and when the chart/value changes only (#9290)
-* Update Ingress-Nginx version controller-v1.5.2
+* Update Ingress-Nginx version controller-v1.6.3
 
-**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.4.1...helm-chart-4.4.1
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.4.3...helm-chart-4.5.0
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 215ce509d..34e1cf6ef 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -14,226 +14,193 @@ commonLabels: {}
 # myLabel: aakkmd
 
 controller:
-  name: controller
-  image:
-    ## Keep false as default for now!
-    chroot: false
-    registry: registry.k8s.io
-    image: ingress-nginx/controller
-    ## for backwards compatibility consider setting the full image url via the repository value below
-    ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-    ## repository:
-    tag: "v1.5.1"
-    digest: sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
-    digestChroot: sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529bad0d178fb36147345
-    pullPolicy: IfNotPresent
-    # www-data -> uid 101
-    runAsUser: 101
-    allowPrivilegeEscalation: true
+    name: controller
+    image:
+        ## Keep false as default for now!
+        chroot: false
+        registry: registry.k8s.io
+        image: ingress-nginx/controller
+        ## for backwards compatibility consider setting the full image url via the repository value below
+        ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+        ## repository:
+        tag: "v1.6.3"
+        digest: sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
+        digestChroot: sha256:4b4a249c9a35ac16a8ec0e22f6c522b8707f7e59e656e64a4ad9ace8fea830a4
+        pullPolicy: IfNotPresent
+        # www-data -> uid 101
+        runAsUser: 101
+        allowPrivilegeEscalation: true
+    # -- Use an existing PSP instead of creating one
+    existingPsp: ""
+    # -- Configures the controller container name
+    containerName: controller
+    # -- Configures the ports that the nginx-controller listens on
+    containerPort:
+        http: 80
+        https: 443
+    # -- Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/
+    config: {}
+    # -- Annotations to be added to the controller config configuration configmap.
+    configAnnotations: {}
+    # -- Will add custom headers before sending traffic to backends according to https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/custom-headers
+    proxySetHeaders: {}
+    # -- Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers
+    addHeaders: {}
+    # -- Optionally customize the pod dnsConfig.
+    dnsConfig: {}
+    # -- Optionally customize the pod hostname.
+    hostname: {}
+    # -- Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'.
+    # By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller
+    # to keep resolving names inside the k8s network, use ClusterFirstWithHostNet.
+    dnsPolicy: ClusterFirst
+    # -- Bare-metal considerations via the host network https://kubernetes.github.io/ingress-nginx/deploy/baremetal/#via-the-host-network
+    # Ingress status was blank because there is no Service exposing the NGINX Ingress controller in a configuration using the host network, the default --publish-service flag used in standard cloud setups does not apply
+    reportNodeInternalIp: false
+    # -- Process Ingress objects without ingressClass annotation/ingressClassName field
+    # Overrides value for --watch-ingress-without-class flag of the controller binary
+    # Defaults to false
+    watchIngressWithoutClass: false
+    # -- Process IngressClass per name (additionally as per spec.controller).
+    ingressClassByName: false
+    # -- This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-aware-hints="auto"
+    # Defaults to false
+    enableTopologyAwareRouting: false
+    # -- This configuration defines if Ingress Controller should allow users to set
+    # their own *-snippet annotations, otherwise this is forbidden / dropped
+    # when users add those annotations.
+    # Global snippets in ConfigMap are still respected
+    allowSnippetAnnotations: true
+    # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
+    # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
+    # is merged
+    hostNetwork: false
+    ## Use host ports 80 and 443
+    ## Disabled by default
+    hostPort:
+        # -- Enable 'hostPort' or not
+        enabled: false
+        ports:
+            # -- 'hostPort' http port
+            http: 80
+            # -- 'hostPort' https port
+            https: 443
+    # -- Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader'
+    electionID: ""
+    ## This section refers to the creation of the IngressClass resource
+    ## IngressClass resources are supported since k8s >= 1.18 and required since k8s >= 1.19
+    ingressClassResource:
+        # -- Name of the ingressClass
+        name: nginx
+        # -- Is this ingressClass enabled or not
+        enabled: true
+        # -- Is this the default ingressClass for the cluster
+        default: false
+        # -- Controller-value of the controller that is processing this ingressClass
+        controllerValue: "k8s.io/ingress-nginx"
+        # -- Parameters is a link to a custom resource containing additional
+        # configuration for the controller. This is optional if the controller
+        # does not require extra parameters.
+        parameters: {}
+    # -- For backwards compatibility with ingress.class annotation, use ingressClass.
+    # Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation
+    ingressClass: nginx
+    # -- Labels to add to the pod container metadata
+    podLabels: {}
+    #  key: value
 
-  # -- Use an existing PSP instead of creating one
-  existingPsp: ""
+    # -- Security Context policies for controller pods
+    podSecurityContext: {}
+    # -- See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls
+    sysctls: {}
+    # sysctls:
+    #   "net.core.somaxconn": "8192"
 
-  # -- Configures the controller container name
-  containerName: controller
-
-  # -- Configures the ports that the nginx-controller listens on
-  containerPort:
-    http: 80
-    https: 443
-
-  # -- Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/
-  config: {}
-
-  # -- Annotations to be added to the controller config configuration configmap.
-  configAnnotations: {}
-
-  # -- Will add custom headers before sending traffic to backends according to https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/custom-headers
-  proxySetHeaders: {}
-
-  # -- Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers
-  addHeaders: {}
-
-  # -- Optionally customize the pod dnsConfig.
-  dnsConfig: {}
-
-  # -- Optionally customize the pod hostname.
-  hostname: {}
-
-  # -- Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'.
-  # By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller
-  # to keep resolving names inside the k8s network, use ClusterFirstWithHostNet.
-  dnsPolicy: ClusterFirst
-
-  # -- Bare-metal considerations via the host network https://kubernetes.github.io/ingress-nginx/deploy/baremetal/#via-the-host-network
-  # Ingress status was blank because there is no Service exposing the NGINX Ingress controller in a configuration using the host network, the default --publish-service flag used in standard cloud setups does not apply
-  reportNodeInternalIp: false
-
-  # -- Process Ingress objects without ingressClass annotation/ingressClassName field
-  # Overrides value for --watch-ingress-without-class flag of the controller binary
-  # Defaults to false
-  watchIngressWithoutClass: false
-
-  # -- Process IngressClass per name (additionally as per spec.controller).
-  ingressClassByName: false
-
-  # -- This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-aware-hints="auto"
-  # Defaults to false
-  enableTopologyAwareRouting: false
-
-  # -- This configuration defines if Ingress Controller should allow users to set
-  # their own *-snippet annotations, otherwise this is forbidden / dropped
-  # when users add those annotations.
-  # Global snippets in ConfigMap are still respected
-  allowSnippetAnnotations: true
-
-  # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
-  # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
-  # is merged
-  hostNetwork: false
-
-  ## Use host ports 80 and 443
-  ## Disabled by default
-  hostPort:
-    # -- Enable 'hostPort' or not
-    enabled: false
-    ports:
-      # -- 'hostPort' http port
-      http: 80
-      # -- 'hostPort' https port
-      https: 443
-
-  # -- Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader'
-  electionID: ""
-
-  ## This section refers to the creation of the IngressClass resource
-  ## IngressClass resources are supported since k8s >= 1.18 and required since k8s >= 1.19
-  ingressClassResource:
-    # -- Name of the ingressClass
-    name: nginx
-    # -- Is this ingressClass enabled or not
-    enabled: true
-    # -- Is this the default ingressClass for the cluster
-    default: false
-    # -- Controller-value of the controller that is processing this ingressClass
-    controllerValue: "k8s.io/ingress-nginx"
-
-    # -- Parameters is a link to a custom resource containing additional
-    # configuration for the controller. This is optional if the controller
-    # does not require extra parameters.
-    parameters: {}
-
-  # -- For backwards compatibility with ingress.class annotation, use ingressClass.
-  # Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation
-  ingressClass: nginx
-
-  # -- Labels to add to the pod container metadata
-  podLabels: {}
-  #  key: value
-
-  # -- Security Context policies for controller pods
-  podSecurityContext: {}
-
-  # -- See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls
-  sysctls: {}
-  # sysctls:
-  #   "net.core.somaxconn": "8192"
-
-  # -- Allows customization of the source of the IP address or FQDN to report
-  # in the ingress status field. By default, it reads the information provided
-  # by the service. If disable, the status field reports the IP address of the
-  # node or nodes where an ingress controller pod is running.
-  publishService:
-    # -- Enable 'publishService' or not
-    enabled: true
-    # -- Allows overriding of the publish service to bind to
-    # Must be <namespace>/<service_name>
-    pathOverride: ""
-
-  # Limit the scope of the controller to a specific namespace
-  scope:
-    # -- Enable 'scope' or not
-    enabled: false
-    # -- Namespace to limit the controller to; defaults to $(POD_NAMESPACE)
-    namespace: ""
-    # -- When scope.enabled == false, instead of watching all namespaces, we watching namespaces whose labels
-    # only match with namespaceSelector. Format like foo=bar. Defaults to empty, means watching all namespaces.
-    namespaceSelector: ""
-
-  # -- Allows customization of the configmap / nginx-configmap namespace; defaults to $(POD_NAMESPACE)
-  configMapNamespace: ""
-
-  tcp:
-    # -- Allows customization of the tcp-services-configmap; defaults to $(POD_NAMESPACE)
+    # -- Allows customization of the source of the IP address or FQDN to report
+    # in the ingress status field. By default, it reads the information provided
+    # by the service. If disable, the status field reports the IP address of the
+    # node or nodes where an ingress controller pod is running.
+    publishService:
+        # -- Enable 'publishService' or not
+        enabled: true
+        # -- Allows overriding of the publish service to bind to
+        # Must be <namespace>/<service_name>
+        pathOverride: ""
+    # Limit the scope of the controller to a specific namespace
+    scope:
+        # -- Enable 'scope' or not
+        enabled: false
+        # -- Namespace to limit the controller to; defaults to $(POD_NAMESPACE)
+        namespace: ""
+        # -- When scope.enabled == false, instead of watching all namespaces, we watching namespaces whose labels
+        # only match with namespaceSelector. Format like foo=bar. Defaults to empty, means watching all namespaces.
+        namespaceSelector: ""
+    # -- Allows customization of the configmap / nginx-configmap namespace; defaults to $(POD_NAMESPACE)
     configMapNamespace: ""
-    # -- Annotations to be added to the tcp config configmap
+    tcp:
+        # -- Allows customization of the tcp-services-configmap; defaults to $(POD_NAMESPACE)
+        configMapNamespace: ""
+        # -- Annotations to be added to the tcp config configmap
+        annotations: {}
+    udp:
+        # -- Allows customization of the udp-services-configmap; defaults to $(POD_NAMESPACE)
+        configMapNamespace: ""
+        # -- Annotations to be added to the udp config configmap
+        annotations: {}
+    # -- Maxmind license key to download GeoLite2 Databases.
+    ## https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases
+    maxmindLicenseKey: ""
+    # -- Additional command line arguments to pass to nginx-ingress-controller
+    # E.g. to specify the default SSL certificate you can use
+    extraArgs: {}
+    ## extraArgs:
+    ##   default-ssl-certificate: "<namespace>/<secret_name>"
+
+    # -- Additional environment variables to set
+    extraEnvs: []
+    # extraEnvs:
+    #   - name: FOO
+    #     valueFrom:
+    #       secretKeyRef:
+    #         key: FOO
+    #         name: secret-resource
+
+    # -- Use a `DaemonSet` or `Deployment`
+    kind: Deployment
+    # -- Annotations to be added to the controller Deployment or DaemonSet
+    ##
     annotations: {}
+    #  keel.sh/pollSchedule: "@every 60m"
 
-  udp:
-    # -- Allows customization of the udp-services-configmap; defaults to $(POD_NAMESPACE)
-    configMapNamespace: ""
-    # -- Annotations to be added to the udp config configmap
-    annotations: {}
+    # -- Labels to be added to the controller Deployment or DaemonSet and other resources that do not have option to specify labels
+    ##
+    labels: {}
+    #  keel.sh/policy: patch
+    #  keel.sh/trigger: poll
 
-  # -- Maxmind license key to download GeoLite2 Databases.
-  ## https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases
-  maxmindLicenseKey: ""
+    # -- The update strategy to apply to the Deployment or DaemonSet
+    ##
+    updateStrategy: {}
+    #  rollingUpdate:
+    #    maxUnavailable: 1
+    #  type: RollingUpdate
 
-  # -- Additional command line arguments to pass to nginx-ingress-controller
-  # E.g. to specify the default SSL certificate you can use
-  extraArgs: {}
-  ## extraArgs:
-  ##   default-ssl-certificate: "<namespace>/<secret_name>"
+    # -- `minReadySeconds` to avoid killing pods before we are ready
+    ##
+    minReadySeconds: 0
+    # -- Node tolerations for server scheduling to nodes with taints
+    ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
+    ##
+    tolerations: []
+    #  - key: "key"
+    #    operator: "Equal|Exists"
+    #    value: "value"
+    #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
 
-  # -- Additional environment variables to set
-  extraEnvs: []
-  # extraEnvs:
-  #   - name: FOO
-  #     valueFrom:
-  #       secretKeyRef:
-  #         key: FOO
-  #         name: secret-resource
-
-  # -- Use a `DaemonSet` or `Deployment`
-  kind: Deployment
-
-  # -- Annotations to be added to the controller Deployment or DaemonSet
-  ##
-  annotations: {}
-  #  keel.sh/pollSchedule: "@every 60m"
-
-  # -- Labels to be added to the controller Deployment or DaemonSet and other resources that do not have option to specify labels
-  ##
-  labels: {}
-  #  keel.sh/policy: patch
-  #  keel.sh/trigger: poll
-
-
-  # -- The update strategy to apply to the Deployment or DaemonSet
-  ##
-  updateStrategy: {}
-  #  rollingUpdate:
-  #    maxUnavailable: 1
-  #  type: RollingUpdate
-
-  # -- `minReadySeconds` to avoid killing pods before we are ready
-  ##
-  minReadySeconds: 0
-
-
-  # -- Node tolerations for server scheduling to nodes with taints
-  ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
-  ##
-  tolerations: []
-  #  - key: "key"
-  #    operator: "Equal|Exists"
-  #    value: "value"
-  #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
-
-  # -- Affinity and anti-affinity rules for server scheduling to nodes
-  ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
-  ##
-  affinity: {}
+    # -- Affinity and anti-affinity rules for server scheduling to nodes
+    ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+    ##
+    affinity: {}
     # # An example of preferred pod anti-affinity, weight is in the range 1-100
     # podAntiAffinity:
     #   preferredDuringSchedulingIgnoredDuringExecution:
@@ -274,10 +241,10 @@ controller:
     #         - controller
     #     topologyKey: "kubernetes.io/hostname"
 
-  # -- Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
-  ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
-  ##
-  topologySpreadConstraints: []
+    # -- Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
+    ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
+    ##
+    topologySpreadConstraints: []
     # - maxSkew: 1
     #   topologyKey: topology.kubernetes.io/zone
     #   whenUnsatisfiable: DoNotSchedule
@@ -285,682 +252,616 @@ controller:
     #     matchLabels:
     #       app.kubernetes.io/instance: ingress-nginx-internal
 
-  # -- `terminationGracePeriodSeconds` to avoid killing pods before we are ready
-  ## wait up to five minutes for the drain of connections
-  ##
-  terminationGracePeriodSeconds: 300
-
-  # -- Node labels for controller pod assignment
-  ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
-  ##
-  nodeSelector:
-    kubernetes.io/os: linux
-
-  ## Liveness and readiness probe values
-  ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#container-probes
-  ##
-  ## startupProbe:
-  ##   httpGet:
-  ##     # should match container.healthCheckPath
-  ##     path: "/healthz"
-  ##     port: 10254
-  ##     scheme: HTTP
-  ##   initialDelaySeconds: 5
-  ##   periodSeconds: 5
-  ##   timeoutSeconds: 2
-  ##   successThreshold: 1
-  ##   failureThreshold: 5
-  livenessProbe:
-    httpGet:
-      # should match container.healthCheckPath
-      path: "/healthz"
-      port: 10254
-      scheme: HTTP
-    initialDelaySeconds: 10
-    periodSeconds: 10
-    timeoutSeconds: 1
-    successThreshold: 1
-    failureThreshold: 5
-  readinessProbe:
-    httpGet:
-      # should match container.healthCheckPath
-      path: "/healthz"
-      port: 10254
-      scheme: HTTP
-    initialDelaySeconds: 10
-    periodSeconds: 10
-    timeoutSeconds: 1
-    successThreshold: 1
-    failureThreshold: 3
-
-
-  # -- Path of the health check endpoint. All requests received on the port defined by
-  # the healthz-port parameter are forwarded internally to this path.
-  healthCheckPath: "/healthz"
-
-  # -- Address to bind the health check endpoint.
-  # It is better to set this option to the internal node address
-  # if the ingress nginx controller is running in the `hostNetwork: true` mode.
-  healthCheckHost: ""
-
-  # -- Annotations to be added to controller pods
-  ##
-  podAnnotations: {}
-
-  replicaCount: 1
-
-  # -- Define either 'minAvailable' or 'maxUnavailable', never both.
-  minAvailable: 1
-  # -- Define either 'minAvailable' or 'maxUnavailable', never both.
-  # maxUnavailable: 1
-
-  ## Define requests resources to avoid probe issues due to CPU utilization in busy nodes
-  ## ref: https://github.com/kubernetes/ingress-nginx/issues/4735#issuecomment-551204903
-  ## Ideally, there should be no limits.
-  ## https://engineering.indeedblog.com/blog/2019/12/cpu-throttling-regression-fix/
-  resources:
-  ##  limits:
-  ##    cpu: 100m
-  ##    memory: 90Mi
-    requests:
-      cpu: 100m
-      memory: 90Mi
-
-  # Mutually exclusive with keda autoscaling
-  autoscaling:
-    apiVersion: autoscaling/v2
-    enabled: false
-    annotations: {}
-    minReplicas: 1
-    maxReplicas: 11
-    targetCPUUtilizationPercentage: 50
-    targetMemoryUtilizationPercentage: 50
-    behavior: {}
-      # scaleDown:
-      #   stabilizationWindowSeconds: 300
-      #   policies:
-      #   - type: Pods
-      #     value: 1
-      #     periodSeconds: 180
-      # scaleUp:
-      #   stabilizationWindowSeconds: 300
-      #   policies:
-      #   - type: Pods
-      #     value: 2
-      #     periodSeconds: 60
-
-  autoscalingTemplate: []
-  # Custom or additional autoscaling metrics
-  # ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/#support-for-custom-metrics
-  # - type: Pods
-  #   pods:
-  #     metric:
-  #       name: nginx_ingress_controller_nginx_process_requests_total
-  #     target:
-  #       type: AverageValue
-  #       averageValue: 10000m
-
-  # Mutually exclusive with hpa autoscaling
-  keda:
-    apiVersion: "keda.sh/v1alpha1"
-    ## apiVersion changes with keda 1.x vs 2.x
-    ## 2.x = keda.sh/v1alpha1
-    ## 1.x = keda.k8s.io/v1alpha1
-    enabled: false
-    minReplicas: 1
-    maxReplicas: 11
-    pollingInterval: 30
-    cooldownPeriod: 300
-    restoreToOriginalReplicaCount: false
-    scaledObject:
-      annotations: {}
-      # Custom annotations for ScaledObject resource
-      #  annotations:
-      # key: value
-    triggers: []
- #     - type: prometheus
- #       metadata:
- #         serverAddress: http://<prometheus-host>:9090
- #         metricName: http_requests_total
- #         threshold: '100'
- #         query: sum(rate(http_requests_total{deployment="my-deployment"}[2m]))
-
-    behavior: {}
- #     scaleDown:
- #       stabilizationWindowSeconds: 300
- #       policies:
- #       - type: Pods
- #         value: 1
- #         periodSeconds: 180
- #     scaleUp:
- #       stabilizationWindowSeconds: 300
- #       policies:
- #       - type: Pods
- #         value: 2
- #         periodSeconds: 60
-
-  # -- Enable mimalloc as a drop-in replacement for malloc.
-  ## ref: https://github.com/microsoft/mimalloc
-  ##
-  enableMimalloc: true
-
-  ## Override NGINX template
-  customTemplate:
-    configMapName: ""
-    configMapKey: ""
-
-  service:
-    enabled: true
-
-    # -- If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were
-    # using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http
-    # It allows choosing the protocol for each backend specified in the Kubernetes service.
-    # See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244
-    # Will be ignored for Kubernetes versions older than 1.20
+    # -- `terminationGracePeriodSeconds` to avoid killing pods before we are ready
+    ## wait up to five minutes for the drain of connections
     ##
-    appProtocol: true
-
-    annotations: {}
-    labels: {}
-    # clusterIP: ""
-
-    # -- List of IP addresses at which the controller services are available
-    ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+    terminationGracePeriodSeconds: 300
+    # -- Node labels for controller pod assignment
+    ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
     ##
-    externalIPs: []
-
-    # -- Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
-    loadBalancerIP: ""
-    loadBalancerSourceRanges: []
-
-    enableHttp: true
-    enableHttps: true
-
-    ## Set external traffic policy to: "Local" to preserve source IP on providers supporting it.
-    ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
-    # externalTrafficPolicy: ""
-
-    ## Must be either "None" or "ClientIP" if set. Kubernetes will default to "None".
-    ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
-    # sessionAffinity: ""
-
-    ## Specifies the health check node port (numeric port number) for the service. If healthCheckNodePort isn’t specified,
-    ## the service controller allocates a port from your cluster’s NodePort range.
-    ## Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
-    # healthCheckNodePort: 0
-
-    # -- Represents the dual-stack-ness requested or required by this Service. Possible values are
-    # SingleStack, PreferDualStack or RequireDualStack.
-    # The ipFamilies and clusterIPs fields depend on the value of this field.
-    ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
-    ipFamilyPolicy: "SingleStack"
-
-    # -- List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically
-    # based on cluster configuration and the ipFamilyPolicy field.
-    ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
-    ipFamilies:
-      - IPv4
-
-    ports:
-      http: 80
-      https: 443
-
-    targetPorts:
-      http: http
-      https: https
-
-    type: LoadBalancer
-
-    ## type: NodePort
-    ## nodePorts:
-    ##   http: 32080
-    ##   https: 32443
-    ##   tcp:
-    ##     8080: 32808
-    nodePorts:
-      http: ""
-      https: ""
-      tcp: {}
-      udp: {}
-
-    external:
-      enabled: true
-
-    internal:
-      # -- Enables an additional internal load balancer (besides the external one).
-      enabled: false
-      # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service.
-      annotations: {}
-
-      # loadBalancerIP: ""
-
-      # -- Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.
-      loadBalancerSourceRanges: []
-
-      ## Set external traffic policy to: "Local" to preserve source IP on
-      ## providers supporting it
-      ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
-      # externalTrafficPolicy: ""
-
-  # shareProcessNamespace enables process namespace sharing within the pod.
-  # This can be used for example to signal log rotation using `kill -USR1` from a sidecar.
-  shareProcessNamespace: false
-
-  # -- Additional containers to be added to the controller pod.
-  # See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example.
-  extraContainers: []
-  #  - name: my-sidecar
-  #    image: nginx:latest
-  #  - name: lemonldap-ng-controller
-  #    image: lemonldapng/lemonldap-ng-controller:0.2.0
-  #    args:
-  #      - /lemonldap-ng-controller
-  #      - --alsologtostderr
-  #      - --configmap=$(POD_NAMESPACE)/lemonldap-ng-configuration
-  #    env:
-  #      - name: POD_NAME
-  #        valueFrom:
-  #          fieldRef:
-  #            fieldPath: metadata.name
-  #      - name: POD_NAMESPACE
-  #        valueFrom:
-  #          fieldRef:
-  #            fieldPath: metadata.namespace
-  #    volumeMounts:
-  #    - name: copy-portal-skins
-  #      mountPath: /srv/var/lib/lemonldap-ng/portal/skins
-
-  # -- Additional volumeMounts to the controller main container.
-  extraVolumeMounts: []
-  #  - name: copy-portal-skins
-  #   mountPath: /var/lib/lemonldap-ng/portal/skins
-
-  # -- Additional volumes to the controller pod.
-  extraVolumes: []
-  #  - name: copy-portal-skins
-  #    emptyDir: {}
-
-  # -- Containers, which are run before the app containers are started.
-  extraInitContainers: []
-  # - name: init-myservice
-  #   image: busybox
-  #   command: ['sh', '-c', 'until nslookup myservice; do echo waiting for myservice; sleep 2; done;']
-
-  # -- Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module
-  extraModules: []
-  #   containerSecurityContext:
-  #     allowPrivilegeEscalation: false
-  #
-  # The image must contain a `/usr/local/bin/init_module.sh` executable, which
-  # will be executed as initContainers, to move its config files within the
-  # mounted volume.
-
-  opentelemetry:
-    enabled: false
-    image: registry.k8s.io/ingress-nginx/opentelemetry:v20230107-helm-chart-4.4.2-2-g96b3d2165@sha256:331b9bebd6acfcd2d3048abbdd86555f5be76b7e3d0b5af4300b04235c6056c9
-    containerSecurityContext:
-      allowPrivilegeEscalation: false
-
-  admissionWebhooks:
-    annotations: {}
-    # ignore-check.kube-linter.io/no-read-only-rootfs: "This deployment needs write access to root filesystem".
-
-    ## Additional annotations to the admission webhooks.
-    ## These annotations will be added to the ValidatingWebhookConfiguration and
-    ## the Jobs Spec of the admission webhooks.
-    enabled: true
-    # -- Additional environment variables to set
-    extraEnvs: []
-    # extraEnvs:
-    #   - name: FOO
-    #     valueFrom:
-    #       secretKeyRef:
-    #         key: FOO
-    #         name: secret-resource
-    # -- Admission Webhook failure policy to use
-    failurePolicy: Fail
-    # timeoutSeconds: 10
-    port: 8443
-    certificate: "/usr/local/certificates/cert"
-    key: "/usr/local/certificates/key"
-    namespaceSelector: {}
-    objectSelector: {}
-    # -- Labels to be added to admission webhooks
-    labels: {}
-
-    # -- Use an existing PSP instead of creating one
-    existingPsp: ""
-    networkPolicyEnabled: false
-
-    service:
-      annotations: {}
-      # clusterIP: ""
-      externalIPs: []
-      # loadBalancerIP: ""
-      loadBalancerSourceRanges: []
-      servicePort: 443
-      type: ClusterIP
-
-    createSecretJob:
-      securityContext:
-        allowPrivilegeEscalation: false
-      resources: {}
-        # limits:
-        #   cpu: 10m
-        #   memory: 20Mi
-        # requests:
-        #   cpu: 10m
-        #   memory: 20Mi
-
-    patchWebhookJob:
-      securityContext:
-        allowPrivilegeEscalation: false
-      resources: {}
-
-    patch:
-      enabled: true
-      image:
-        registry: registry.k8s.io
-        image: ingress-nginx/kube-webhook-certgen
-        ## for backwards compatibility consider setting the full image url via the repository value below
-        ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-        ## repository:
-        tag: v20220916-gd32f8c343
-        digest: sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
-        pullPolicy: IfNotPresent
-      # -- Provide a priority class name to the webhook patching job
-      ##
-      priorityClassName: ""
-      podAnnotations: {}
-      nodeSelector:
+    nodeSelector:
         kubernetes.io/os: linux
-      tolerations: []
-      # -- Labels to be added to patch job resources
-      labels: {}
-      securityContext:
-        runAsNonRoot: true
-        runAsUser: 2000
-        fsGroup: 2000
+    ## Liveness and readiness probe values
+    ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#container-probes
+    ##
+    ## startupProbe:
+    ##   httpGet:
+    ##     # should match container.healthCheckPath
+    ##     path: "/healthz"
+    ##     port: 10254
+    ##     scheme: HTTP
+    ##   initialDelaySeconds: 5
+    ##   periodSeconds: 5
+    ##   timeoutSeconds: 2
+    ##   successThreshold: 1
+    ##   failureThreshold: 5
+    livenessProbe:
+        httpGet:
+            # should match container.healthCheckPath
+            path: "/healthz"
+            port: 10254
+            scheme: HTTP
+        initialDelaySeconds: 10
+        periodSeconds: 10
+        timeoutSeconds: 1
+        successThreshold: 1
+        failureThreshold: 5
+    readinessProbe:
+        httpGet:
+            # should match container.healthCheckPath
+            path: "/healthz"
+            port: 10254
+            scheme: HTTP
+        initialDelaySeconds: 10
+        periodSeconds: 10
+        timeoutSeconds: 1
+        successThreshold: 1
+        failureThreshold: 3
+    # -- Path of the health check endpoint. All requests received on the port defined by
+    # the healthz-port parameter are forwarded internally to this path.
+    healthCheckPath: "/healthz"
+    # -- Address to bind the health check endpoint.
+    # It is better to set this option to the internal node address
+    # if the ingress nginx controller is running in the `hostNetwork: true` mode.
+    healthCheckHost: ""
+    # -- Annotations to be added to controller pods
+    ##
+    podAnnotations: {}
+    replicaCount: 1
+    # -- Define either 'minAvailable' or 'maxUnavailable', never both.
+    minAvailable: 1
+    # -- Define either 'minAvailable' or 'maxUnavailable', never both.
+    # maxUnavailable: 1
 
-    # Use certmanager to generate webhook certs
-    certManager:
-      enabled: false
-      # self-signed root certificate
-      rootCert:
-        duration: ""  # default to be 5y
-      admissionCert:
-        duration: ""  # default to be 1y
-      # issuerRef:
-      #   name: "issuer"
-      #   kind: "ClusterIssuer"
+    ## Define requests resources to avoid probe issues due to CPU utilization in busy nodes
+    ## ref: https://github.com/kubernetes/ingress-nginx/issues/4735#issuecomment-551204903
+    ## Ideally, there should be no limits.
+    ## https://engineering.indeedblog.com/blog/2019/12/cpu-throttling-regression-fix/
+    resources:
+        ##  limits:
+        ##    cpu: 100m
+        ##    memory: 90Mi
+        requests:
+            cpu: 100m
+            memory: 90Mi
+    # Mutually exclusive with keda autoscaling
+    autoscaling:
+        apiVersion: autoscaling/v2
+        enabled: false
+        annotations: {}
+        minReplicas: 1
+        maxReplicas: 11
+        targetCPUUtilizationPercentage: 50
+        targetMemoryUtilizationPercentage: 50
+        behavior: {}
+        # scaleDown:
+        #   stabilizationWindowSeconds: 300
+        #   policies:
+        #   - type: Pods
+        #     value: 1
+        #     periodSeconds: 180
+        # scaleUp:
+        #   stabilizationWindowSeconds: 300
+        #   policies:
+        #   - type: Pods
+        #     value: 2
+        #     periodSeconds: 60
+    autoscalingTemplate: []
+    # Custom or additional autoscaling metrics
+    # ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/#support-for-custom-metrics
+    # - type: Pods
+    #   pods:
+    #     metric:
+    #       name: nginx_ingress_controller_nginx_process_requests_total
+    #     target:
+    #       type: AverageValue
+    #       averageValue: 10000m
 
-  metrics:
-    port: 10254
-    portName: metrics
-    # if this port is changed, change healthz-port: in extraArgs: accordingly
-    enabled: false
+    # Mutually exclusive with hpa autoscaling
+    keda:
+        apiVersion: "keda.sh/v1alpha1"
+        ## apiVersion changes with keda 1.x vs 2.x
+        ## 2.x = keda.sh/v1alpha1
+        ## 1.x = keda.k8s.io/v1alpha1
+        enabled: false
+        minReplicas: 1
+        maxReplicas: 11
+        pollingInterval: 30
+        cooldownPeriod: 300
+        restoreToOriginalReplicaCount: false
+        scaledObject:
+            annotations: {}
+            # Custom annotations for ScaledObject resource
+            #  annotations:
+            # key: value
+        triggers: []
+        #     - type: prometheus
+        #       metadata:
+        #         serverAddress: http://<prometheus-host>:9090
+        #         metricName: http_requests_total
+        #         threshold: '100'
+        #         query: sum(rate(http_requests_total{deployment="my-deployment"}[2m]))
 
+        behavior: {}
+    #     scaleDown:
+    #       stabilizationWindowSeconds: 300
+    #       policies:
+    #       - type: Pods
+    #         value: 1
+    #         periodSeconds: 180
+    #     scaleUp:
+    #       stabilizationWindowSeconds: 300
+    #       policies:
+    #       - type: Pods
+    #         value: 2
+    #         periodSeconds: 60
+
+    # -- Enable mimalloc as a drop-in replacement for malloc.
+    ## ref: https://github.com/microsoft/mimalloc
+    ##
+    enableMimalloc: true
+    ## Override NGINX template
+    customTemplate:
+        configMapName: ""
+        configMapKey: ""
     service:
-      annotations: {}
-      # prometheus.io/scrape: "true"
-      # prometheus.io/port: "10254"
-      # -- Labels to be added to the metrics service resource
-      labels: {}
+        enabled: true
+        # -- If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were
+        # using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http
+        # It allows choosing the protocol for each backend specified in the Kubernetes service.
+        # See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244
+        # Will be ignored for Kubernetes versions older than 1.20
+        ##
+        appProtocol: true
+        annotations: {}
+        labels: {}
+        # clusterIP: ""
 
-      # clusterIP: ""
+        # -- List of IP addresses at which the controller services are available
+        ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+        ##
+        externalIPs: []
+        # -- Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
+        loadBalancerIP: ""
+        loadBalancerSourceRanges: []
+        enableHttp: true
+        enableHttps: true
+        ## Set external traffic policy to: "Local" to preserve source IP on providers supporting it.
+        ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
+        # externalTrafficPolicy: ""
 
-      # -- List of IP addresses at which the stats-exporter service is available
-      ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
-      ##
-      externalIPs: []
+        ## Must be either "None" or "ClientIP" if set. Kubernetes will default to "None".
+        ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
+        # sessionAffinity: ""
 
-      # loadBalancerIP: ""
-      loadBalancerSourceRanges: []
-      servicePort: 10254
-      type: ClusterIP
-      # externalTrafficPolicy: ""
-      # nodePort: ""
+        ## Specifies the health check node port (numeric port number) for the service. If healthCheckNodePort isn’t specified,
+        ## the service controller allocates a port from your cluster’s NodePort range.
+        ## Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
+        # healthCheckNodePort: 0
 
-    serviceMonitor:
-      enabled: false
-      additionalLabels: {}
-      ## The label to use to retrieve the job name from.
-      ## jobLabel: "app.kubernetes.io/name"
-      namespace: ""
-      namespaceSelector: {}
-      ## Default: scrape .Release.Namespace only
-      ## To scrape all, use the following:
-      ## namespaceSelector:
-      ##   any: true
-      scrapeInterval: 30s
-      # honorLabels: true
-      targetLabels: []
-      relabelings: []
-      metricRelabelings: []
+        # -- Represents the dual-stack-ness requested or required by this Service. Possible values are
+        # SingleStack, PreferDualStack or RequireDualStack.
+        # The ipFamilies and clusterIPs fields depend on the value of this field.
+        ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
+        ipFamilyPolicy: "SingleStack"
+        # -- List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically
+        # based on cluster configuration and the ipFamilyPolicy field.
+        ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
+        ipFamilies:
+            - IPv4
+        ports:
+            http: 80
+            https: 443
+        targetPorts:
+            http: http
+            https: https
+        type: LoadBalancer
+        ## type: NodePort
+        ## nodePorts:
+        ##   http: 32080
+        ##   https: 32443
+        ##   tcp:
+        ##     8080: 32808
+        nodePorts:
+            http: ""
+            https: ""
+            tcp: {}
+            udp: {}
+        external:
+            enabled: true
+        internal:
+            # -- Enables an additional internal load balancer (besides the external one).
+            enabled: false
+            # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service.
+            annotations: {}
+            # loadBalancerIP: ""
 
-    prometheusRule:
-      enabled: false
-      additionalLabels: {}
-      # namespace: ""
-      rules: []
-        # # These are just examples rules, please adapt them to your needs
-        # - alert: NGINXConfigFailed
-        #   expr: count(nginx_ingress_controller_config_last_reload_successful == 0) > 0
-        #   for: 1s
-        #   labels:
-        #     severity: critical
-        #   annotations:
-        #     description: bad ingress config - nginx config test failed
-        #     summary: uninstall the latest ingress changes to allow config reloads to resume
-        # - alert: NGINXCertificateExpiry
-        #   expr: (avg(nginx_ingress_controller_ssl_expire_time_seconds) by (host) - time()) < 604800
-        #   for: 1s
-        #   labels:
-        #     severity: critical
-        #   annotations:
-        #     description: ssl certificate(s) will expire in less then a week
-        #     summary: renew expiring certificates to avoid downtime
-        # - alert: NGINXTooMany500s
-        #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"5.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
-        #   for: 1m
-        #   labels:
-        #     severity: warning
-        #   annotations:
-        #     description: Too many 5XXs
-        #     summary: More than 5% of all requests returned 5XX, this requires your attention
-        # - alert: NGINXTooMany400s
-        #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"4.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
-        #   for: 1m
-        #   labels:
-        #     severity: warning
-        #   annotations:
-        #     description: Too many 4XXs
-        #     summary: More than 5% of all requests returned 4XX, this requires your attention
+            # -- Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.
+            loadBalancerSourceRanges: []
+            ## Set external traffic policy to: "Local" to preserve source IP on
+            ## providers supporting it
+            ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
+            # externalTrafficPolicy: ""
+    # shareProcessNamespace enables process namespace sharing within the pod.
+    # This can be used for example to signal log rotation using `kill -USR1` from a sidecar.
+    shareProcessNamespace: false
+    # -- Additional containers to be added to the controller pod.
+    # See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example.
+    extraContainers: []
+    #  - name: my-sidecar
+    #    image: nginx:latest
+    #  - name: lemonldap-ng-controller
+    #    image: lemonldapng/lemonldap-ng-controller:0.2.0
+    #    args:
+    #      - /lemonldap-ng-controller
+    #      - --alsologtostderr
+    #      - --configmap=$(POD_NAMESPACE)/lemonldap-ng-configuration
+    #    env:
+    #      - name: POD_NAME
+    #        valueFrom:
+    #          fieldRef:
+    #            fieldPath: metadata.name
+    #      - name: POD_NAMESPACE
+    #        valueFrom:
+    #          fieldRef:
+    #            fieldPath: metadata.namespace
+    #    volumeMounts:
+    #    - name: copy-portal-skins
+    #      mountPath: /srv/var/lib/lemonldap-ng/portal/skins
 
-  # -- Improve connection draining when ingress controller pod is deleted using a lifecycle hook:
-  # With this new hook, we increased the default terminationGracePeriodSeconds from 30 seconds
-  # to 300, allowing the draining of connections up to five minutes.
-  # If the active connections end before that, the pod will terminate gracefully at that time.
-  # To effectively take advantage of this feature, the Configmap feature
-  # worker-shutdown-timeout new value is 240s instead of 10s.
-  ##
-  lifecycle:
-    preStop:
-      exec:
-        command:
-          - /wait-shutdown
+    # -- Additional volumeMounts to the controller main container.
+    extraVolumeMounts: []
+    #  - name: copy-portal-skins
+    #   mountPath: /var/lib/lemonldap-ng/portal/skins
 
-  priorityClassName: ""
+    # -- Additional volumes to the controller pod.
+    extraVolumes: []
+    #  - name: copy-portal-skins
+    #    emptyDir: {}
 
+    # -- Containers, which are run before the app containers are started.
+    extraInitContainers: []
+    # - name: init-myservice
+    #   image: busybox
+    #   command: ['sh', '-c', 'until nslookup myservice; do echo waiting for myservice; sleep 2; done;']
+
+    # -- Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module
+    extraModules: []
+    #   containerSecurityContext:
+    #     allowPrivilegeEscalation: false
+    #
+    # The image must contain a `/usr/local/bin/init_module.sh` executable, which
+    # will be executed as initContainers, to move its config files within the
+    # mounted volume.
+
+    opentelemetry:
+        enabled: false
+        image: registry.k8s.io/ingress-nginx/opentelemetry:v20230107-helm-chart-4.4.2-2-g96b3d2165@sha256:331b9bebd6acfcd2d3048abbdd86555f5be76b7e3d0b5af4300b04235c6056c9
+        containerSecurityContext:
+            allowPrivilegeEscalation: false
+    admissionWebhooks:
+        annotations: {}
+        # ignore-check.kube-linter.io/no-read-only-rootfs: "This deployment needs write access to root filesystem".
+
+        ## Additional annotations to the admission webhooks.
+        ## These annotations will be added to the ValidatingWebhookConfiguration and
+        ## the Jobs Spec of the admission webhooks.
+        enabled: true
+        # -- Additional environment variables to set
+        extraEnvs: []
+        # extraEnvs:
+        #   - name: FOO
+        #     valueFrom:
+        #       secretKeyRef:
+        #         key: FOO
+        #         name: secret-resource
+        # -- Admission Webhook failure policy to use
+        failurePolicy: Fail
+        # timeoutSeconds: 10
+        port: 8443
+        certificate: "/usr/local/certificates/cert"
+        key: "/usr/local/certificates/key"
+        namespaceSelector: {}
+        objectSelector: {}
+        # -- Labels to be added to admission webhooks
+        labels: {}
+        # -- Use an existing PSP instead of creating one
+        existingPsp: ""
+        networkPolicyEnabled: false
+        service:
+            annotations: {}
+            # clusterIP: ""
+            externalIPs: []
+            # loadBalancerIP: ""
+            loadBalancerSourceRanges: []
+            servicePort: 443
+            type: ClusterIP
+        createSecretJob:
+            securityContext:
+                allowPrivilegeEscalation: false
+            resources: {}
+            # limits:
+            #   cpu: 10m
+            #   memory: 20Mi
+            # requests:
+            #   cpu: 10m
+            #   memory: 20Mi
+        patchWebhookJob:
+            securityContext:
+                allowPrivilegeEscalation: false
+            resources: {}
+        patch:
+            enabled: true
+            image:
+                registry: registry.k8s.io
+                image: ingress-nginx/kube-webhook-certgen
+                ## for backwards compatibility consider setting the full image url via the repository value below
+                ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+                ## repository:
+                tag: v20220916-gd32f8c343
+                digest: sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+                pullPolicy: IfNotPresent
+            # -- Provide a priority class name to the webhook patching job
+            ##
+            priorityClassName: ""
+            podAnnotations: {}
+            nodeSelector:
+                kubernetes.io/os: linux
+            tolerations: []
+            # -- Labels to be added to patch job resources
+            labels: {}
+            securityContext:
+                runAsNonRoot: true
+                runAsUser: 2000
+                fsGroup: 2000
+        # Use certmanager to generate webhook certs
+        certManager:
+            enabled: false
+            # self-signed root certificate
+            rootCert:
+                # default to be 5y
+                duration: ""
+            admissionCert:
+                # default to be 1y
+                duration: ""
+                # issuerRef:
+                #   name: "issuer"
+                #   kind: "ClusterIssuer"
+    metrics:
+        port: 10254
+        portName: metrics
+        # if this port is changed, change healthz-port: in extraArgs: accordingly
+        enabled: false
+        service:
+            annotations: {}
+            # prometheus.io/scrape: "true"
+            # prometheus.io/port: "10254"
+            # -- Labels to be added to the metrics service resource
+            labels: {}
+            # clusterIP: ""
+
+            # -- List of IP addresses at which the stats-exporter service is available
+            ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+            ##
+            externalIPs: []
+            # loadBalancerIP: ""
+            loadBalancerSourceRanges: []
+            servicePort: 10254
+            type: ClusterIP
+            # externalTrafficPolicy: ""
+            # nodePort: ""
+        serviceMonitor:
+            enabled: false
+            additionalLabels: {}
+            ## The label to use to retrieve the job name from.
+            ## jobLabel: "app.kubernetes.io/name"
+            namespace: ""
+            namespaceSelector: {}
+            ## Default: scrape .Release.Namespace only
+            ## To scrape all, use the following:
+            ## namespaceSelector:
+            ##   any: true
+            scrapeInterval: 30s
+            # honorLabels: true
+            targetLabels: []
+            relabelings: []
+            metricRelabelings: []
+        prometheusRule:
+            enabled: false
+            additionalLabels: {}
+            # namespace: ""
+            rules: []
+            # # These are just examples rules, please adapt them to your needs
+            # - alert: NGINXConfigFailed
+            #   expr: count(nginx_ingress_controller_config_last_reload_successful == 0) > 0
+            #   for: 1s
+            #   labels:
+            #     severity: critical
+            #   annotations:
+            #     description: bad ingress config - nginx config test failed
+            #     summary: uninstall the latest ingress changes to allow config reloads to resume
+            # - alert: NGINXCertificateExpiry
+            #   expr: (avg(nginx_ingress_controller_ssl_expire_time_seconds) by (host) - time()) < 604800
+            #   for: 1s
+            #   labels:
+            #     severity: critical
+            #   annotations:
+            #     description: ssl certificate(s) will expire in less then a week
+            #     summary: renew expiring certificates to avoid downtime
+            # - alert: NGINXTooMany500s
+            #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"5.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
+            #   for: 1m
+            #   labels:
+            #     severity: warning
+            #   annotations:
+            #     description: Too many 5XXs
+            #     summary: More than 5% of all requests returned 5XX, this requires your attention
+            # - alert: NGINXTooMany400s
+            #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"4.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
+            #   for: 1m
+            #   labels:
+            #     severity: warning
+            #   annotations:
+            #     description: Too many 4XXs
+            #     summary: More than 5% of all requests returned 4XX, this requires your attention
+    # -- Improve connection draining when ingress controller pod is deleted using a lifecycle hook:
+    # With this new hook, we increased the default terminationGracePeriodSeconds from 30 seconds
+    # to 300, allowing the draining of connections up to five minutes.
+    # If the active connections end before that, the pod will terminate gracefully at that time.
+    # To effectively take advantage of this feature, the Configmap feature
+    # worker-shutdown-timeout new value is 240s instead of 10s.
+    ##
+    lifecycle:
+        preStop:
+            exec:
+                command:
+                    - /wait-shutdown
+    priorityClassName: ""
 # -- Rollback limit
 ##
 revisionHistoryLimit: 10
-
 ## Default 404 backend
 ##
 defaultBackend:
-  ##
-  enabled: false
-
-  name: defaultbackend
-  image:
-    registry: registry.k8s.io
-    image: defaultbackend-amd64
-    ## for backwards compatibility consider setting the full image url via the repository value below
-    ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-    ## repository:
-    tag: "1.5"
-    pullPolicy: IfNotPresent
-    # nobody user -> uid 65534
-    runAsUser: 65534
-    runAsNonRoot: true
-    readOnlyRootFilesystem: true
-    allowPrivilegeEscalation: false
-
-  # -- Use an existing PSP instead of creating one
-  existingPsp: ""
-
-  extraArgs: {}
-
-  serviceAccount:
-    create: true
-    name: ""
-    automountServiceAccountToken: true
-  # -- Additional environment variables to set for defaultBackend pods
-  extraEnvs: []
-
-  port: 8080
-
-  ## Readiness and liveness probes for default backend
-  ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/
-  ##
-  livenessProbe:
-    failureThreshold: 3
-    initialDelaySeconds: 30
-    periodSeconds: 10
-    successThreshold: 1
-    timeoutSeconds: 5
-  readinessProbe:
-    failureThreshold: 6
-    initialDelaySeconds: 0
-    periodSeconds: 5
-    successThreshold: 1
-    timeoutSeconds: 5
-
-  # -- The update strategy to apply to the Deployment or DaemonSet
-  ##
-  updateStrategy: {}
-  #  rollingUpdate:
-  #    maxUnavailable: 1
-  #  type: RollingUpdate
-
-  # -- `minReadySeconds` to avoid killing pods before we are ready
-  ##
-  minReadySeconds: 0
-
-  # -- Node tolerations for server scheduling to nodes with taints
-  ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
-  ##
-  tolerations: []
-  #  - key: "key"
-  #    operator: "Equal|Exists"
-  #    value: "value"
-  #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
-
-  affinity: {}
-
-  # -- Security Context policies for controller pods
-  # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
-  # notes on enabling and using sysctls
-  ##
-  podSecurityContext: {}
-
-  # -- Security Context policies for controller main container.
-  # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
-  # notes on enabling and using sysctls
-  ##
-  containerSecurityContext: {}
-
-  # -- Labels to add to the pod container metadata
-  podLabels: {}
-  #  key: value
-
-  # -- Node labels for default backend pod assignment
-  ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
-  ##
-  nodeSelector:
-    kubernetes.io/os: linux
-
-  # -- Annotations to be added to default backend pods
-  ##
-  podAnnotations: {}
-
-  replicaCount: 1
-
-  minAvailable: 1
-
-  resources: {}
-  # limits:
-  #   cpu: 10m
-  #   memory: 20Mi
-  # requests:
-  #   cpu: 10m
-  #   memory: 20Mi
-
-  extraVolumeMounts: []
-  ## Additional volumeMounts to the default backend container.
-  #  - name: copy-portal-skins
-  #   mountPath: /var/lib/lemonldap-ng/portal/skins
-
-  extraVolumes: []
-  ## Additional volumes to the default backend pod.
-  #  - name: copy-portal-skins
-  #    emptyDir: {}
-
-  autoscaling:
-    annotations: {}
-    enabled: false
-    minReplicas: 1
-    maxReplicas: 2
-    targetCPUUtilizationPercentage: 50
-    targetMemoryUtilizationPercentage: 50
-
-  service:
-    annotations: {}
-
-    # clusterIP: ""
-
-    # -- List of IP addresses at which the default backend service is available
-    ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
     ##
-    externalIPs: []
+    enabled: false
+    name: defaultbackend
+    image:
+        registry: registry.k8s.io
+        image: defaultbackend-amd64
+        ## for backwards compatibility consider setting the full image url via the repository value below
+        ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+        ## repository:
+        tag: "1.5"
+        pullPolicy: IfNotPresent
+        # nobody user -> uid 65534
+        runAsUser: 65534
+        runAsNonRoot: true
+        readOnlyRootFilesystem: true
+        allowPrivilegeEscalation: false
+    # -- Use an existing PSP instead of creating one
+    existingPsp: ""
+    extraArgs: {}
+    serviceAccount:
+        create: true
+        name: ""
+        automountServiceAccountToken: true
+    # -- Additional environment variables to set for defaultBackend pods
+    extraEnvs: []
+    port: 8080
+    ## Readiness and liveness probes for default backend
+    ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/
+    ##
+    livenessProbe:
+        failureThreshold: 3
+        initialDelaySeconds: 30
+        periodSeconds: 10
+        successThreshold: 1
+        timeoutSeconds: 5
+    readinessProbe:
+        failureThreshold: 6
+        initialDelaySeconds: 0
+        periodSeconds: 5
+        successThreshold: 1
+        timeoutSeconds: 5
+    # -- The update strategy to apply to the Deployment or DaemonSet
+    ##
+    updateStrategy: {}
+    #  rollingUpdate:
+    #    maxUnavailable: 1
+    #  type: RollingUpdate
 
-    # loadBalancerIP: ""
-    loadBalancerSourceRanges: []
-    servicePort: 80
-    type: ClusterIP
+    # -- `minReadySeconds` to avoid killing pods before we are ready
+    ##
+    minReadySeconds: 0
+    # -- Node tolerations for server scheduling to nodes with taints
+    ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
+    ##
+    tolerations: []
+    #  - key: "key"
+    #    operator: "Equal|Exists"
+    #    value: "value"
+    #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
 
-  priorityClassName: ""
-  # -- Labels to be added to the default backend resources
-  labels: {}
+    affinity: {}
+    # -- Security Context policies for controller pods
+    # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
+    # notes on enabling and using sysctls
+    ##
+    podSecurityContext: {}
+    # -- Security Context policies for controller main container.
+    # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
+    # notes on enabling and using sysctls
+    ##
+    containerSecurityContext: {}
+    # -- Labels to add to the pod container metadata
+    podLabels: {}
+    #  key: value
 
+    # -- Node labels for default backend pod assignment
+    ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
+    ##
+    nodeSelector:
+        kubernetes.io/os: linux
+    # -- Annotations to be added to default backend pods
+    ##
+    podAnnotations: {}
+    replicaCount: 1
+    minAvailable: 1
+    resources: {}
+    # limits:
+    #   cpu: 10m
+    #   memory: 20Mi
+    # requests:
+    #   cpu: 10m
+    #   memory: 20Mi
+
+    extraVolumeMounts: []
+    ## Additional volumeMounts to the default backend container.
+    #  - name: copy-portal-skins
+    #   mountPath: /var/lib/lemonldap-ng/portal/skins
+
+    extraVolumes: []
+    ## Additional volumes to the default backend pod.
+    #  - name: copy-portal-skins
+    #    emptyDir: {}
+
+    autoscaling:
+        annotations: {}
+        enabled: false
+        minReplicas: 1
+        maxReplicas: 2
+        targetCPUUtilizationPercentage: 50
+        targetMemoryUtilizationPercentage: 50
+    service:
+        annotations: {}
+        # clusterIP: ""
+
+        # -- List of IP addresses at which the default backend service is available
+        ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+        ##
+        externalIPs: []
+        # loadBalancerIP: ""
+        loadBalancerSourceRanges: []
+        servicePort: 80
+        type: ClusterIP
+    priorityClassName: ""
+    # -- Labels to be added to the default backend resources
+    labels: {}
 ## Enable RBAC as per https://github.com/kubernetes/ingress-nginx/blob/main/docs/deploy/rbac.md and https://github.com/kubernetes/ingress-nginx/issues/266
 rbac:
-  create: true
-  scope: false
-
+    create: true
+    scope: false
 ## If true, create & use Pod Security Policy resources
 ## https://kubernetes.io/docs/concepts/policy/pod-security-policy/
 podSecurityPolicy:
-  enabled: false
-
+    enabled: false
 serviceAccount:
-  create: true
-  name: ""
-  automountServiceAccountToken: true
-  # -- Annotations for the controller service account
-  annotations: {}
-
+    create: true
+    name: ""
+    automountServiceAccountToken: true
+    # -- Annotations for the controller service account
+    annotations: {}
 # -- Optional array of imagePullSecrets containing private registry credentials
 ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
 imagePullSecrets: []
@@ -981,7 +882,6 @@ udp: {}
 # -- Prefix for TCP and UDP ports names in ingress controller service
 ## Some cloud providers, like Yandex Cloud may have a requirements for a port name regex to support cloud load balancer integration
 portNamePrefix: ""
-
 # -- (string) A base64-encoded Diffie-Hellman parameter.
 # This can be generated with: `openssl dhparam 4096 2> /dev/null | base64`
 ## Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index fbdf9486a..c79412536 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -359,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -392,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -415,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -455,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -527,7 +512,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -538,7 +523,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -574,7 +559,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +570,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -623,7 +608,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -636,7 +621,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 73ec24286..fae1c5d61 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -350,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -368,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -401,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -424,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -464,7 +449,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -539,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -550,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -586,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -597,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -635,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -648,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 9e6e905bb..245978140 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -387,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -410,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -449,7 +434,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,7 +506,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -532,7 +517,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -568,7 +553,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -579,7 +564,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -617,7 +602,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -630,7 +615,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index dd986a55d..9bc28ec80 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -388,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -411,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -451,7 +436,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +508,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +519,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -570,7 +555,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,7 +566,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -619,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -632,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 64e0366b4..b17da8a07 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -344,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -358,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -414,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -454,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,7 +511,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -537,7 +522,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -573,7 +558,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +569,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -622,7 +607,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index d6a40aed9..d93497323 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -364,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -397,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -420,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -460,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -532,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -543,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -579,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -590,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -628,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -641,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 62ead9e34..8c9e96891 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -343,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -355,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -387,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -410,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -455,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -537,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -548,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -584,7 +569,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -595,7 +580,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -633,7 +618,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -646,7 +631,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index d52f01489..edd00a98d 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -90,21 +90,6 @@ rules:
   - get
   - list
   - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
 - apiGroups:
   - coordination.k8s.io
   resourceNames:
@@ -144,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -163,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -245,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -264,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -284,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -303,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -322,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -344,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -358,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -391,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -414,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -454,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,7 +511,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -537,7 +522,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -573,7 +558,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +569,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
+        app.kubernetes.io/version: 1.6.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -622,7 +607,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
+    app.kubernetes.io/version: 1.6.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 29495b5c0..57df7a215 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -62,7 +62,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -225,7 +225,7 @@ In AWS, we use a Network load balancer (NLB) to expose the NGINX Ingress control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -233,10 +233,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -282,7 +282,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -299,7 +299,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -307,7 +307,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -315,7 +315,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -330,7 +330,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -357,7 +357,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.5.1/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index d5aa6cc16..5c67b47aa 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -7,11 +7,660 @@ Do not try to edit it manually.
 
 
 
+### [[Serial] admission controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L35)
+
+- [reject ingress with global-rate-limit annotations when memcached is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L48)
+- [should not allow overlaps of host and paths without canary annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L75)
+- [should allow overlaps of host and paths with canary annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L92)
+- [should block ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L113)
+- [should return an error if there is an error validating the ingress definition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L130)
+- [should return an error if there is an invalid value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L141)
+- [should return an error if there is a forbidden value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L155)
+- [should not return an error if the Ingress V1 definition is valid with Ingress Class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L169)
+- [should not return an error if the Ingress V1 definition is valid with IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L185)
+- [should return an error if the Ingress V1 definition contains invalid annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L201)
+- [should not return an error for an invalid Ingress when it has unknown class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L212)
+
+### [affinitymode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L31)
+
+- [Balanced affinity mode should balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L34)
+- [Check persistent affinity mode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L67)
+
+### [server-alias](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L29)
+
+- [should return status code 200 for host 'foo' and 404 for 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L36)
+- [should return status code 200 for host 'foo' and 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L62)
+- [should return status code 200 for hosts defined in two ingresses, different path with one alias](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L87)
+
+### [app-root](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L28)
+
+- [should redirect to /foo](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L35)
+
+### [auth-tls-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L29)
+
+- [should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L36)
+- [should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L84)
+- [should 302 redirect to error page instead of 400 when auth-tls-error-page is set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L114)
+- [should pass URL-encoded certificate to upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L161)
+- [should validate auth-tls-verify-client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L206)
+- [should return 403 using auth-tls-match-cn with no matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L266)
+- [should return 200 using auth-tls-match-cn with matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L295)
+- [should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L324)
+
+### [backend-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L27)
+
+- [should set backend protocol to https:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L34)
+- [should set backend protocol to $scheme:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L49)
+- [should set backend protocol to grpc:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L64)
+- [should set backend protocol to grpcs:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L79)
+- [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L94)
+- [should set backend protocol to '' and use ajp_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L109)
+
+### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
+
+- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L48)
+- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L80)
+- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L107)
+- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L161)
+- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L206)
+- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L250)
+- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L307)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L372)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L426)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L490)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L532)
+- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L566)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L604)
+- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L643)
+- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L705)
+- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L743)
+- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L775)
+- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L808)
+- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L836)
+- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L864)
+- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L888)
+- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L916)
+- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L973)
+- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1031)
+
+### [client-body-buffer-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L28)
+
+- [should set client_body_buffer_size to 1000](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L35)
+- [should set client_body_buffer_size to 1K](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L57)
+- [should set client_body_buffer_size to 1k](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L79)
+- [should set client_body_buffer_size to 1m](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L101)
+- [should set client_body_buffer_size to 1M](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L123)
+- [should not set client_body_buffer_size to invalid 1b](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L145)
+
+### [connection-proxy-header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L29)
+
+- [set connection header to keep-alive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L36)
+
+### [cors-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L28)
+
+- [should enable cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L35)
+- [should set cors methods to only allow POST, GET](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L62)
+- [should set cors max-age](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L78)
+- [should disable cors allow credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L94)
+- [should allow origin for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L110)
+- [should allow headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L137)
+- [should expose headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L153)
+- [should allow - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L169)
+- [should not allow - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L196)
+- [should allow correct origins - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L216)
+- [should not break functionality](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L267)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L291)
+- [should not break functionality with extra domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L314)
+- [should not match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L338)
+- [should allow - single origin with required port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L358)
+- [should not allow - single origin with port and origin without port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L386)
+- [should not allow - single origin without port and origin with required port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L405)
+- [should allow - matching origin with wildcard origin (2 subdomains)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L425)
+- [should not allow - unmatching origin with wildcard origin (2 subdomains)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L468)
+- [should allow - matching origin+port with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L488)
+- [should not allow - portless origin with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L515)
+- [should allow correct origins - missing subdomain + origin with wildcard origin and correct origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L535)
+- [should allow - missing origins (should allow all origins)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L571)
+
+### [custom-http-errors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L34)
+
+- [configures Nginx correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L41)
+
+### [default-backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L29)
+
+- [should use a custom default backend as upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L37)
+
+### [disable-access-log disable-http-access-log disable-stream-access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L28)
+
+- [disable-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L35)
+- [disable-http-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L53)
+- [disable-stream-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L71)
+
+### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L31)
+
+- [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L38)
+- [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L55)
+- [should add fastcgi_param in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L72)
+- [should return OK for service with backend protocol FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L105)
+
+### [force-ssl-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L27)
+
+- [should redirect to https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L34)
+
+### [from-to-www-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L31)
+
+- [should redirect from www HTTP to HTTP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L38)
+- [should redirect from www HTTPS to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L64)
+
+### [annotation-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L30)
+
+- [generates correct configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L38)
+
+### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L40)
+
+- [should use grpc_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L43)
+- [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L68)
+- [authorization metadata should be overwritten by external auth response headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L126)
+- [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L199)
+
+### [http2-push-preload](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L27)
+
+- [enable the http2-push-preload directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L34)
+
+### [influxdb-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/influxdb.go#L39)
+
+- [should send the request metric to the influxdb server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/influxdb.go#L48)
+
+### [whitelist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L27)
+
+- [should set valid ip whitelist range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L34)
+
+### [Annotation - limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L31)
+
+- [should limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L38)
+
+### [limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L29)
+
+- [Check limit-rate annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L37)
+
+### [enable-access-log enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L27)
+
+- [set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L34)
+- [set rewrite_log on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L49)
+
+### [mirror-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L28)
+
+- [should set mirror-target to http://localhost/mirror](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L36)
+- [should set mirror-target to https://test.env.com/$request_uri](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L51)
+- [should disable mirror-request-body](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L67)
+
+### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L28)
+
+- [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L35)
+- [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L53)
+- [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L74)
+- [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L91)
+- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L110)
+- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L132)
+- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L153)
+- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L189)
+- [should enable modsecurity when enable-owasp-modsecurity-crs is set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L225)
+- [should enable modsecurity through the config map](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L264)
+- [should enable modsecurity through the config map but ignore snippet as disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L305)
+- [should disable default modsecurity conf setting when modsecurity-snippet is specified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L347)
+
+### [preserve-trailing-slash](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L27)
+
+- [should allow preservation of trailing slashes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L34)
+
+### [proxy-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L28)
+
+- [should set proxy_redirect to off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L36)
+- [should set proxy_redirect to default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L52)
+- [should set proxy_redirect to hello.com goodbye.com](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L68)
+- [should set proxy client-max-body-size to 8m](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L85)
+- [should not set proxy client-max-body-size to incorrect value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L100)
+- [should set valid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L115)
+- [should not set invalid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L136)
+- [should turn on proxy-buffering](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L157)
+- [should turn off proxy-request-buffering](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L179)
+- [should build proxy next upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L194)
+- [should setup proxy cookies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L215)
+- [should change the default proxy HTTP version](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L233)
+
+### [proxy-ssl-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L30)
+
+- [should set valid proxy-ssl-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L37)
+- [should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L64)
+- [should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L94)
+- [should set valid proxy-ssl-secret, proxy-ssl-protocols](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L122)
+- [proxy-ssl-location-only flag should change the nginx config server part](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L150)
+
+### [permanent-redirect permanent-redirect-code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L30)
+
+- [should respond with a standard redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L33)
+- [should respond with a custom redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L61)
+
+### [satisfy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L35)
+
+- [should configure satisfy directive correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L42)
+- [should allow multiple auth with satisfy any](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L84)
+
+### [server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L28)
+
+- [add valid directives to server via server snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L35)
+- [drops server snippet if disabled by the administrator](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L61)
+
+### [service-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L32)
+
+- [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L41)
+- [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L70)
+- [should not use the Service Cluster IP and Port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L99)
+
+### [configuration-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L28)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L35)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L58)
+
+### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L28)
+
+- [should change ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L35)
+
+### [stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L34)
+
+- [should add value of stream-snippet to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L41)
+- [should add stream-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L85)
+
+### [upstream-hash-by-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L76)
+
+- [should connect to the same pod](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L83)
+- [should connect to the same subset of pods](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L92)
+
+### [upstream-vhost](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L27)
+
+- [set host to upstreamvhost.bar.com](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L34)
+
+### [x-forwarded-prefix](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L28)
+
+- [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L35)
+- [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L57)
+
+### [denylist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L28)
+
+- [only deny explicitly denied IPs, allow all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L35)
+- [only allow explicitly allowed IPs, deny all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L86)
+
+### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L35)
+
+- [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L42)
+- [should change cookie name on ingress definition change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L64)
+- [should set the path to /something on the generated cookie](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L99)
+- [does not set the path to / on the generated cookie if there's more than one rule referring to the same backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L121)
+- [should set cookie with expires](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L194)
+- [should set cookie with domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L225)
+- [should not set cookie without domain annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L248)
+- [should work with use-regex annotation and session-cookie-path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L270)
+- [should warn user when use-regex is true and session-cookie-path is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L294)
+- [should not set affinity across all server locations when using separate ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L320)
+- [should set sticky cookie without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L352)
+- [should work with server-alias annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L372)
+- [should set secure in cookie with provided true annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L412)
+- [should not set secure in cookie with provided false annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L435)
+- [should set secure in cookie with provided false annotation on https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L458)
+
+### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L39)
+
+- [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L46)
+- [should return status code 503 when authentication is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L65)
+- [should return status code 401 when authentication is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L89)
+- [should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L116)
+- [should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L144)
+- [should return status code 200 when authentication is configured and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L172)
+- [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L199)
+- [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L227)
+- [ when external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L266)
+- [ when external auth is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L284)
+- [ when auth-headers are set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L301)
+- [should set cache_key when external auth cache is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L322)
+- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L411)
+- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L422)
+- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L433)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L485)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L494)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L505)
+- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L529)
+- [should not create additional upstream block when auth-keepalive is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L552)
+- [should not create additional upstream block when host part of auth-url contains a variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L570)
+- [should not create additional upstream block when auth-keepalive is negative](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L590)
+- [should not create additional upstream block when auth-keepalive is set with HTTP/2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L609)
+- [should create additional upstream block when auth-keepalive is set with HTTP/1.x](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L623)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L678)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L687)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L698)
+- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L772)
+- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L792)
+- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L820)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L849)
+- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L879)
+- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L887)
+
+### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L30)
+
+- [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L37)
+- [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L66)
+- [should use ~* location modifier if regex annotation is present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L111)
+- [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L158)
+- [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L190)
+
+### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L29)
+
+- [should list the backend servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L37)
+- [should get information for a specific backend server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L56)
+- [should produce valid JSON for /dbg general](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L85)
+
+### [[Default Backend] custom service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L33)
+
+- [uses custom default backend that returns 200 as status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L36)
+
+### [[Default Backend]](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L30)
+
+- [should return 404 sending requests when only a default backend is running](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L33)
+- [enables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L88)
+- [disables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L105)
+
+### [[Default Backend] SSL](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L26)
+
+- [should return a self generated SSL certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L29)
+
+### [[Default Backend] change default settings](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L30)
+
+- [should apply the annotation to the default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L38)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
+
+### [[Endpointslices] long service name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L29)
+
+- [should return 200 when service name has max allowed number of characters 63](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L38)
+
+### [[TopologyHints] topology aware routing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L36)
+
+- [should return 200 when service has topology hints](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L50)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
+
+### [[Setting] ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L190)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L206)
+- [ [MemoryLeak]](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L207)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/chain.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/chain.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/cookie.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/cookie.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/match.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/match.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/object.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/object.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/reporter.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/reporter.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/response.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/response.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/string.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/string.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/value.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/value.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/influxdb.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/influxdb.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/test_context.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/test_context.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+
+### [[Shutdown] Grace period shutdown](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L32)
+
+- [/healthz should return status code 500 during shutdown grace period](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L35)
+
+### [[Shutdown] ingress controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L30)
+
+- [should shutdown in less than 60 secons without pending connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L40)
+- [should shutdown after waiting 60 seconds for pending connections to be closed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L61)
+- [should shutdown after waiting 150 seconds for pending connections to be closed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L106)
+
+### [[Shutdown] Graceful shutdown with pending request](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L25)
+
+- [should let slow requests finish before shutting down](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L33)
+
+### [[Ingress] DeepInspection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L27)
+
+- [should drop whole ingress if one path matches invalid regex](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L34)
+
+### [single ingress - multiple hosts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L30)
+
+- [should set the correct $service_name NGINX variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L38)
+
+### [[Ingress] [PathType] exact](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L30)
+
+- [should choose exact location for /exact](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L37)
+
+### [[Ingress] [PathType] mix Exact and Prefix paths](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L30)
+
+- [should choose the correct location](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L39)
+
+### [[Ingress] [PathType] prefix checks](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L28)
+
+- [should return 404 when prefix /aaa does not match request /aaaccc](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L35)
+
+### [[Ingress] definition without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L31)
+
+- [should set ingress details variables for ingresses without a host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L34)
+- [should set ingress details variables for ingresses with host without IngressRuleValue, only Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L55)
+
+### [[Memory Leak] Dynamic Certificates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L35)
+
+- [should not leak memory from ingress SSL certificates or configuration updates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L42)
+
+### [[Load Balancer] load-balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L28)
+
+- [should apply the configmap load-balance setting](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L35)
+
+### [[Load Balancer] EWMA](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L31)
+
+- [does not fail requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L42)
+
+### [[Load Balancer] round-robin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L31)
+
+- [should evenly distribute requests with round-robin (default algorithm)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L39)
+
+### [[Lua] dynamic certificates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L37)
+
+- [picks up the certificate when we add TLS spec to existing ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L45)
+- [picks up the previously missing secret for a given ingress without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L70)
+- [supports requests with domain with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L145)
+- [picks up the updated certificate without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L149)
+- [falls back to using default certificate when secret gets deleted without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L185)
+- [picks up a non-certificate only change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L218)
+- [removes HTTPS configuration when we delete TLS spec](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L233)
+
+### [[Lua] dynamic configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L42)
+
+- [configures balancer Lua middleware correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L50)
+- [handles endpoints only changes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L62)
+- [handles endpoints only changes (down scaling of replicas)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L87)
+- [handles endpoints only changes consistently (down scaling of replicas vs. empty service)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L125)
+- [handles an annotation change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L171)
+
+### [nginx-configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L99)
+
+- [start nginx with default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L102)
+- [fails when using alias directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L115)
+- [fails when using root directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L124)
+
+### [[Security] request smuggling](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L32)
+
+- [should not return body content from error_page](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L39)
+
+### [[Security] validate path fields](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L42)
+
+- [should accept an ingress with valid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L49)
+- [should drop an ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L67)
+- [should drop an ingress with regex path and regex disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L84)
+- [should accept an ingress with regex path and regex enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L101)
+- [should reject an ingress with invalid path and regex enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L118)
+
+### [[Service] backend status code 503](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L33)
+
+- [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L36)
+- [should return 503 when all backend service endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L54)
+
+### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L59)
+
+- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L62)
+- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L95)
+- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L129)
+- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L153)
+- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L184)
+- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L217)
+- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L248)
+- [should sync ingress on external name service addition/deletion](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L311)
+
+### [[Service] Nil Service Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L31)
+
+- [should return 404 when backend service is nil](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L38)
+
+### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L27)
+
+- [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L32)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L42)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L54)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L67)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L80)
+
+### [Bad annotation values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L29)
+
+- [[BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L36)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L67)
+- [[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L102)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L133)
+
+### [brotli](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L30)
+
+- [ condition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L39)
+
+### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
+
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
+
+### [add-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L30)
+
+- [Add a custom header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L40)
+- [Add multiple custom headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L65)
+
+### [[SSL] [Flag] default-ssl-certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L33)
+
+- [uses default ssl certificate for catch-all ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L64)
+- [uses default ssl certificate for host based ingress when configured certificate does not match host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L80)
+
+### [[Flag] disable-catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L33)
+
+- [should ignore catch all Ingress with backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L50)
+- [should ignore catch all Ingress with backend and rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L69)
+- [should delete Ingress updated to catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L81)
+- [should allow Ingress with rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L123)
+
+### [[Flag] disable-service-external-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L35)
+
+- [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L52)
+
+### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L30)
+
+- [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L40)
+- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L78)
+
+### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L30)
+
+- [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L40)
+- [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L92)
+
 ### [Geoip2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L37)
 
 - [should include geoip2 line in config when enabled and db file exists](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L46)
 - [should only allow requests from specific countries](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L70)
 
+### [[Security] block-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L28)
+
+- [should block CIDRs defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L38)
+- [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L55)
+- [should block Referers defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L88)
+
 ### [[Security] global-auth-url](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L34)
 
 - [should return status code 401 when request any protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L85)
@@ -27,59 +676,39 @@ Do not try to edit it manually.
 - [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L337)
 - [user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L348)
 
-### [[Security] Pod Security Policies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L40)
+### [global-options](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L28)
 
-- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L43)
+- [should have worker_rlimit_nofile option](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L31)
+- [should have worker_rlimit_nofile option and be independent on amount of worker processes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L38)
 
-### [log-format-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L28)
+### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L30)
 
-- [should disable the log-format-escape-json by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L40)
-- [should enable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L47)
-- [should disable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L55)
-- [log-format-escape-json enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L66)
-- [log-format-escape-json disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L89)
+- [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L38)
 
-### [server-tokens](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L29)
+### [hash size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L27)
 
-- [should not exists Server header in the response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L38)
-- [should exists Server header in the response when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L50)
+- [should set server_names_hash_bucket_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L40)
+- [should set server_names_hash_max_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L48)
+- [should set proxy-headers-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L60)
+- [should set proxy-headers-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L68)
+- [should set variables-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L80)
+- [should set variables-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L88)
+- [should set vmap-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L100)
 
-### [proxy-connect-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L28)
+### [[Flag] ingress-class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L39)
 
-- [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L36)
-- [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L52)
-
-### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L28)
-
-- [Add ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L31)
-
-### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L36)
-
-- [should respect port passed by the PROXY Protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L46)
-- [should respect proto passed by the PROXY Protocol server port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L79)
-- [should enable PROXY Protocol for HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L112)
-- [should enable PROXY Protocol for TCP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L155)
-
-### [plugins](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L28)
-
-- [should exist a x-hello-world header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L35)
-
-### [configmap server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L28)
-
-- [should add value of server-snippet setting to all ingress config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L35)
-- [should add global server-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L92)
-
-### [[Flag] disable-catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L33)
-
-- [should ignore catch all Ingress with backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L50)
-- [should ignore catch all Ingress with backend and rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L69)
-- [should delete Ingress updated to catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L81)
-- [should allow Ingress with rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L123)
-
-### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L30)
-
-- [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L40)
-- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L78)
+- [should ignore Ingress with a different class annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L68)
+- [should ignore Ingress with different controller class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L104)
+- [should accept both Ingresses with default IngressClassName and IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L132)
+- [should ignore Ingress without IngressClass configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L164)
+- [should delete Ingress when class is removed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L192)
+- [should serve Ingress when class is added](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L257)
+- [should serve Ingress when class is updated between annotation and ingressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L323)
+- [should ignore Ingress with no class and accept the correctly configured Ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L413)
+- [should watch Ingress with no class and ignore ingress with a different class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L482)
+- [should watch Ingress that uses the class name even if spec is different](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L539)
+- [should watch Ingress with correct annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L631)
+- [should ignore Ingress with only IngressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L652)
 
 ### [keep-alive keep-alive-requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L28)
 
@@ -87,7 +716,41 @@ Do not try to edit it manually.
 - [should set keepalive_requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L48)
 - [should set keepalive connection to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L59)
 - [should set keep alive connection timeout to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L68)
-- [should set the request count to upstream server through one keep alive connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L77)
+- [should set keepalive time to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L77)
+- [should set the request count to upstream server through one keep alive connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L86)
+
+### [Configmap - limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L28)
+
+- [Check limit-rate config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L36)
+
+### [[Flag] custom HTTP and HTTPS ports](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L32)
+
+- [should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L48)
+- [should set X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L70)
+- [should set the X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L100)
+
+### [log-format-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L28)
+
+- [should not configure log-format escape by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L40)
+- [should enable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L47)
+- [should disable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L55)
+- [should enable the log-format-escape-none](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L63)
+- [should disable the log-format-escape-none](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L71)
+- [log-format-escape-json enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L82)
+- [log-format default escape](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L105)
+- [log-format-escape-none enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L128)
+
+### [[Lua] lua-shared-dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L26)
+
+- [configures lua shared dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L29)
+
+### [main-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L27)
+
+- [should add value of main-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L31)
+
+### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
+
+- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
 
 ### [enable-multi-accept](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L27)
 
@@ -99,9 +762,19 @@ Do not try to edit it manually.
 
 - [should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L70)
 
-### [[Flag] disable-service-external-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L34)
+### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
 
-- [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L51)
+- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L54)
+- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
+- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
+
+### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L28)
+
+- [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L31)
+
+### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
+
+- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
 
 ### [Configure OpenTracing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L48)
 
@@ -119,41 +792,48 @@ Do not try to edit it manually.
 - [should enable opentracing using jaeger with an HTTP endpoint](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L228)
 - [should enable opentracing using datadog](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L241)
 
-### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
+### [plugins](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L28)
 
-- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
+- [should exist a x-hello-world header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L35)
 
-### [Configmap - limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L28)
+### [[Security] Pod Security Policies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L41)
 
-- [Check limit-rate config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L36)
+- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L44)
 
-### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L26)
+### [[Security] Pod Security Policies with volumes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L37)
 
-- [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L31)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L41)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L53)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L66)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L79)
+- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L40)
 
-### [global-options](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L28)
+### [proxy-connect-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L28)
 
-- [should have worker_rlimit_nofile option](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L31)
-- [should have worker_rlimit_nofile option and be independent on amount of worker processes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L38)
+- [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L36)
+- [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L52)
 
-### [[Flag] ingress-class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L39)
+### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L28)
 
-- [should ignore Ingress with a different class annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L68)
-- [should ignore Ingress with different controller class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L104)
-- [should accept both Ingresses with default IngressClassName and IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L132)
-- [should ignore Ingress without IngressClass configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L164)
-- [should delete Ingress when class is removed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L192)
-- [should serve Ingress when class is added](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L257)
-- [should serve Ingress when class is updated between annotation and ingressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L323)
-- [should ignore Ingress with no class and accept the correctly configured Ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L413)
-- [should watch Ingress with no class and ignore ingress with a different class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L482)
-- [should watch Ingress that uses the class name even if spec is different](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L539)
-- [should watch Ingress with correct annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L631)
-- [should ignore Ingress with only IngressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L652)
+- [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L36)
+- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L57)
+
+### [proxy-next-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L28)
+
+- [should build proxy next upstream using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L36)
+
+### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L36)
+
+- [should respect port passed by the PROXY Protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L46)
+- [should respect proto passed by the PROXY Protocol server port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L79)
+- [should enable PROXY Protocol for HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L112)
+- [should enable PROXY Protocol for TCP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L155)
+
+### [proxy-read-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L28)
+
+- [should set valid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L36)
+- [should not set invalid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L52)
+
+### [proxy-send-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L28)
+
+- [should set valid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L36)
+- [should not set invalid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L52)
 
 ### [reuse-port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L27)
 
@@ -161,133 +841,53 @@ Do not try to edit it manually.
 - [reuse port should be disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L44)
 - [reuse port should be enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L52)
 
-### [proxy-send-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L28)
+### [configmap server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L28)
 
-- [should set valid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L36)
-- [should not set invalid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L52)
+- [should add value of server-snippet setting to all ingress config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L35)
+- [should add global server-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L92)
 
-### [[SSL] [Flag] default-ssl-certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L33)
+### [server-tokens](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L29)
 
-- [uses default ssl certificate for catch-all ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L64)
-- [uses default ssl certificate for host based ingress when configured certificate does not match host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L80)
+- [should not exists Server header in the response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L38)
+- [should exists Server header in the response when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L50)
 
-### [brotli](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L30)
+### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L28)
 
-- [ condition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L39)
+- [Add ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L31)
 
-### [[Security] Pod Security Policies with volumes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L36)
+### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L35)
 
-- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L39)
-
-### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L28)
-
-- [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L36)
-- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L57)
-
-### [[Security] block-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L28)
-
-- [should block CIDRs defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L38)
-- [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L55)
-- [should block Referers defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L88)
-
-### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L30)
-
-- [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L38)
-
-### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L28)
-
-- [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L31)
-
-### [main-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L27)
-
-- [should add value of main-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L31)
-
-### [[Lua] lua-shared-dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L26)
-
-- [configures lua shared dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L29)
-
-### [Bad annotation values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L29)
-
-- [[BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L36)
-- [[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L67)
-- [[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L102)
-- [[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L133)
+- [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L42)
 
 ### [[SSL] TLS protocols, ciphers and headers)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L31)
 
 - [setting cipher suite](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L65)
-- [enforcing TLS v1.0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L87)
-- [setting max-age parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L133)
-- [setting includeSubDomains parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L149)
-- [setting preload parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L168)
-- [overriding what's set from the upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L188)
-- [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L209)
-- [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L227)
+- [setting max-age parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L111)
+- [setting includeSubDomains parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L127)
+- [setting preload parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L146)
+- [overriding what's set from the upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L166)
+- [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L187)
+- [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L205)
 
-### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
+### [With enable-ssl-passthrough enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L36)
 
-- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
+- [should enable ssl-passthrough-proxy-port on a different port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L56)
+- [should pass unknown traffic to default backend and handle known traffic](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L79)
 
-### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
+### [[Flag] disable-sync-events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L32)
 
-- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
+- [should create sync events (default)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L35)
+- [should create sync events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L53)
+- [should not create sync events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L80)
 
-### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L34)
+### [gzip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L29)
 
-- [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L41)
-
-### [proxy-read-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L28)
-
-- [should set valid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L36)
-- [should not set invalid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L52)
-
-### [proxy-next-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L28)
-
-- [should build proxy next upstream using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L36)
-
-### [hash size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L27)
-
-- [should set server_names_hash_bucket_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L40)
-- [should set server_names_hash_max_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L48)
-- [should set proxy-headers-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L60)
-- [should set proxy-headers-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L68)
-- [should set variables-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L80)
-- [should set variables-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L88)
-- [should set vmap-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L100)
-
-### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
-
-- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L54)
-- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
-- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
-
-### [[Flag] custom HTTP and HTTPS ports](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L32)
-
-- [should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L48)
-- [should set X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L70)
-- [should set the X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L100)
-
-### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L30)
-
-- [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L40)
-- [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L92)
-
-### [add-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L30)
-
-- [Add a custom header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L40)
-- [Add multiple custom headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L65)
-
-### [[Load Balancer] round-robin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L31)
-
-- [should evenly distribute requests with round-robin (default algorithm)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L39)
-
-### [[Load Balancer] EWMA](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L31)
-
-- [does not fail requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L42)
-
-### [[Load Balancer] load-balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L28)
-
-- [should apply the configmap load-balance setting](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L35)
+- [should be disabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L32)
+- [should be enabled with default settings](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L39)
+- [should set gzip_comp_level to 4](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L56)
+- [should set gzip_disable to msie6](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L67)
+- [should set gzip_min_length to 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L78)
+- [should set gzip_types to application/javascript](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L89)
 
 ### [[SSL] redirect to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L29)
 
@@ -298,22 +898,11 @@ Do not try to edit it manually.
 - [should not appear references to secret updates not used in ingress rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L40)
 - [should return the fake SSL certificate if the secret is invalid](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L82)
 
-### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L58)
+### [[Status] status update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L38)
 
-- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L61)
-- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L94)
-- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L128)
-- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L152)
-- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L183)
-- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L216)
-- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L247)
-- [should sync ingress on external name service addition/deletion](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L310)
+- [should update status field after client-go reconnection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L43)
 
-### [[Service] Nil Service Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L31)
+### [[TCP] tcp-services](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L37)
 
-- [should return 404 when backend service is nil](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L38)
-
-### [[Service] backend status code 503](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L33)
-
-- [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L36)
-- [should return 503 when all backend service endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L54)
+- [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L40)
+- [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L98)
\ No newline at end of file

From bbc8bd4bcebd43faeb2ad009babe307590e06dcf Mon Sep 17 00:00:00 2001
From: lou-lan <loulan@loulan.me>
Date: Tue, 14 Feb 2023 17:37:30 +0800
Subject: [PATCH 0622/1641] Fix incorrect annotation name in upstream hashing
 configuration (#9617)

---
 docs/user-guide/nginx-configuration/annotations.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 8cc6f4c16..9c79d9d9c 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -239,7 +239,7 @@ To enable consistent hashing for a backend:
 
 `nginx.ingress.kubernetes.io/upstream-hash-by`: the nginx variable, text value or any combination thereof to use for consistent hashing. For example: `nginx.ingress.kubernetes.io/upstream-hash-by: "$request_uri"` or `nginx.ingress.kubernetes.io/upstream-hash-by: "$request_uri$host"` or `nginx.ingress.kubernetes.io/upstream-hash-by: "${request_uri}-text-value"` to consistently hash upstream requests by the current request URI.
 
-"subset" hashing can be enabled setting `nginx.ingress.kubernetes.io/upstream-hash-by-subset`: "true". This maps requests to subset of nodes instead of a single one. `upstream-hash-by-subset-size` determines the size of each subset (default 3).
+"subset" hashing can be enabled setting `nginx.ingress.kubernetes.io/upstream-hash-by-subset`: "true". This maps requests to subset of nodes instead of a single one. `nginx.ingress.kubernetes.io/upstream-hash-by-subset-size` determines the size of each subset (default 3).
 
 Please check the [chashsubset](../../examples/chashsubset/deployment.yaml) example.
 

From 5e85747db71578d3ac828923b72d38f7d7f7027b Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 14 Feb 2023 21:33:52 +0100
Subject: [PATCH 0623/1641] remove tests and regex path checks (#9626)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 go.mod                                     |   1 -
 go.sum                                     |   2 -
 internal/ingress/controller/store/store.go |   5 -
 pkg/util/ingress/ingress.go                |  25 ----
 pkg/util/ingress/ingress_test.go           |  85 -------------
 test/e2e/security/invalid_paths.go         | 134 ---------------------
 6 files changed, 252 deletions(-)
 delete mode 100644 test/e2e/security/invalid_paths.go

diff --git a/go.mod b/go.mod
index 1aad274fb..10b9e2fda 100644
--- a/go.mod
+++ b/go.mod
@@ -77,7 +77,6 @@ require (
 	github.com/inconshreveable/mousetrap v1.0.1 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
-	github.com/magefile/mage v1.14.0 // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
 	github.com/mattn/go-colorable v0.1.13 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.4 // indirect
diff --git a/go.sum b/go.sum
index 1d99238cb..6e370c655 100644
--- a/go.sum
+++ b/go.sum
@@ -235,8 +235,6 @@ github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
-github.com/magefile/mage v1.14.0 h1:6QDX3g6z1YvJ4olPhT1wksUcSa/V0a1B+pJb73fBjyo=
-github.com/magefile/mage v1.14.0/go.mod h1:z5UZb/iS3GoOSn0JgWuiw7dxlurVYTu+/jHXqQg881A=
 github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA=
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 13af28137..b5731c4bf 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -59,7 +59,6 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
-	ingressutils "k8s.io/ingress-nginx/pkg/util/ingress"
 )
 
 // IngressFilterFunc decides if an Ingress should be omitted or not
@@ -865,10 +864,6 @@ func (s *k8sStore) syncIngress(ing *networkingv1.Ingress) {
 			if path.Path == "" {
 				copyIng.Spec.Rules[ri].HTTP.Paths[pi].Path = "/"
 			}
-			if !ingressutils.IsSafePath(copyIng, path.Path) {
-				klog.Warningf("ingress %s contains invalid path %s", key, path.Path)
-				return
-			}
 		}
 	}
 
diff --git a/pkg/util/ingress/ingress.go b/pkg/util/ingress/ingress.go
index 5fb3ee7b9..7df2cc114 100644
--- a/pkg/util/ingress/ingress.go
+++ b/pkg/util/ingress/ingress.go
@@ -18,30 +18,15 @@ package ingress
 
 import (
 	"fmt"
-	"regexp"
 	"strings"
 
-	networkingv1 "k8s.io/api/networking/v1"
 	"k8s.io/apimachinery/pkg/util/sets"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/k8s"
 	"k8s.io/ingress-nginx/internal/net/ssl"
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 	"k8s.io/klog/v2"
 )
 
-const (
-	alphaNumericChars = `\-\.\_\~a-zA-Z0-9/`
-	regexEnabledChars = `\^\$\[\]\(\)\{\}\*\+`
-)
-
-var (
-	// pathAlphaNumeric is a regex validation of something like "^/[a-zA-Z]+$" on path
-	pathAlphaNumeric = regexp.MustCompile("^/[" + alphaNumericChars + "]*$").MatchString
-	// pathRegexEnabled is a regex validation of paths that may contain regex.
-	pathRegexEnabled = regexp.MustCompile("^/[" + alphaNumericChars + regexEnabledChars + "]*$").MatchString
-)
-
 func GetRemovedHosts(rucfg, newcfg *ingress.Configuration) []string {
 	oldSet := sets.NewString()
 	newSet := sets.NewString()
@@ -246,13 +231,3 @@ func BuildRedirects(servers []*ingress.Server) []*redirect {
 
 	return redirectServers
 }
-
-// IsSafePath verifies if the path used in ingress object contains only valid characters.
-// It will behave differently if regex is enabled or not
-func IsSafePath(copyIng *networkingv1.Ingress, path string) bool {
-	isRegex, _ := parser.GetBoolAnnotation("use-regex", copyIng)
-	if isRegex {
-		return pathRegexEnabled(path)
-	}
-	return pathAlphaNumeric(path)
-}
diff --git a/pkg/util/ingress/ingress_test.go b/pkg/util/ingress/ingress_test.go
index d829a57f1..24597fb6e 100644
--- a/pkg/util/ingress/ingress_test.go
+++ b/pkg/util/ingress/ingress_test.go
@@ -17,13 +17,8 @@ limitations under the License.
 package ingress
 
 import (
-	"fmt"
 	"testing"
 
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-
-	networkingv1 "k8s.io/api/networking/v1"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
@@ -135,83 +130,3 @@ func TestIsDynamicConfigurationEnough(t *testing.T) {
 		t.Errorf("Expected new config to not change")
 	}
 }
-
-func generateDumbIngressforPathTest(regexEnabled bool) *networkingv1.Ingress {
-	var annotations = make(map[string]string)
-	regexAnnotation := fmt.Sprintf("%s/use-regex", parser.AnnotationsPrefix)
-	if regexEnabled {
-		annotations[regexAnnotation] = "true"
-	}
-	return &networkingv1.Ingress{
-		ObjectMeta: metav1.ObjectMeta{
-			Name:        "dumb",
-			Namespace:   "default",
-			Annotations: annotations,
-		},
-	}
-}
-
-func TestIsSafePath(t *testing.T) {
-	tests := []struct {
-		name    string
-		copyIng *networkingv1.Ingress
-		path    string
-		want    bool
-	}{
-		{
-			name:    "should accept valid path with regex disabled",
-			want:    true,
-			copyIng: generateDumbIngressforPathTest(false),
-			path:    "/xpto/~user/t-e_st.exe",
-		},
-		{
-			name:    "should accept valid path / with regex disabled",
-			want:    true,
-			copyIng: generateDumbIngressforPathTest(false),
-			path:    "/",
-		},
-		{
-			name:    "should reject invalid path with invalid chars",
-			want:    false,
-			copyIng: generateDumbIngressforPathTest(false),
-			path:    "/foo/bar/;xpto",
-		},
-		{
-			name:    "should reject regex path when regex is disabled",
-			want:    false,
-			copyIng: generateDumbIngressforPathTest(false),
-			path:    "/foo/bar/(.+)",
-		},
-		{
-			name:    "should accept valid path / with regex enabled",
-			want:    true,
-			copyIng: generateDumbIngressforPathTest(true),
-			path:    "/",
-		},
-		{
-			name:    "should accept regex path when regex is enabled",
-			want:    true,
-			copyIng: generateDumbIngressforPathTest(true),
-			path:    "/foo/bar/(.+)",
-		},
-		{
-			name:    "should reject regex path when regex is enabled but the path is invalid",
-			want:    false,
-			copyIng: generateDumbIngressforPathTest(true),
-			path:    "/foo/bar/;xpto",
-		},
-		{
-			name:    "should reject regex path when regex is enabled but the path is invalid",
-			want:    false,
-			copyIng: generateDumbIngressforPathTest(true),
-			path:    ";xpto",
-		},
-	}
-	for _, tt := range tests {
-		t.Run(tt.name, func(t *testing.T) {
-			if got := IsSafePath(tt.copyIng, tt.path); got != tt.want {
-				t.Errorf("IsSafePath() = %v, want %v", got, tt.want)
-			}
-		})
-	}
-}
diff --git a/test/e2e/security/invalid_paths.go b/test/e2e/security/invalid_paths.go
deleted file mode 100644
index d75aefc2c..000000000
--- a/test/e2e/security/invalid_paths.go
+++ /dev/null
@@ -1,134 +0,0 @@
-/*
-Copyright 2022 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package security
-
-import (
-	"fmt"
-	"net/http"
-	"strings"
-
-	"github.com/onsi/ginkgo/v2"
-
-	"k8s.io/ingress-nginx/test/e2e/framework"
-)
-
-const (
-	validPath   = "/xpto/~user/t-e_st.exe"
-	invalidPath = "/foo/bar/;xpto"
-	regexPath   = "/foo/bar/(.+)"
-	host        = "securitytest.com"
-)
-
-var (
-	annotationRegex = map[string]string{
-		"nginx.ingress.kubernetes.io/use-regex": "true",
-	}
-)
-
-var _ = framework.IngressNginxDescribe("[Security] validate path fields", func() {
-	f := framework.NewDefaultFramework("validate-path")
-
-	ginkgo.BeforeEach(func() {
-		f.NewEchoDeployment()
-	})
-
-	ginkgo.It("should accept an ingress with valid path", func() {
-
-		ing := framework.NewSingleIngress(host, validPath, host, f.Namespace, framework.EchoService, 80, nil)
-
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
-			})
-
-		f.HTTPTestClient().
-			GET(validPath).
-			WithHeader("Host", host).
-			Expect().
-			Status(http.StatusOK)
-	})
-
-	ginkgo.It("should drop an ingress with invalid path", func() {
-
-		ing := framework.NewSingleIngress(host, invalidPath, host, f.Namespace, framework.EchoService, 80, nil)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return !strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
-			})
-
-		f.HTTPTestClient().
-			GET(invalidPath).
-			WithHeader("Host", host).
-			Expect().
-			Status(http.StatusNotFound)
-	})
-
-	ginkgo.It("should drop an ingress with regex path and regex disabled", func() {
-
-		ing := framework.NewSingleIngress(host, regexPath, host, f.Namespace, framework.EchoService, 80, nil)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return !strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
-			})
-
-		f.HTTPTestClient().
-			GET("/foo/bar/lalala").
-			WithHeader("Host", host).
-			Expect().
-			Status(http.StatusNotFound)
-	})
-
-	ginkgo.It("should accept an ingress with regex path and regex enabled", func() {
-
-		ing := framework.NewSingleIngress(host, regexPath, host, f.Namespace, framework.EchoService, 80, annotationRegex)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
-			})
-
-		f.HTTPTestClient().
-			GET("/foo/bar/lalala").
-			WithHeader("Host", host).
-			Expect().
-			Status(http.StatusOK)
-	})
-
-	ginkgo.It("should reject an ingress with invalid path and regex enabled", func() {
-
-		ing := framework.NewSingleIngress(host, invalidPath, host, f.Namespace, framework.EchoService, 80, annotationRegex)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return !strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
-			})
-
-		f.HTTPTestClient().
-			GET(invalidPath).
-			WithHeader("Host", host).
-			Expect().
-			Status(http.StatusNotFound)
-	})
-})

From 8afba516e7b14019327dd62da89fcc0c6d094659 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 14 Feb 2023 15:55:09 -0500
Subject: [PATCH 0624/1641] start 1.6.4 build

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index e37df95ee..9dc820555 100644
--- a/TAG
+++ b/TAG
@@ -1,2 +1,2 @@
-v1.6.3
+v1.6.4
 

From 8045cd29fbaaf720dea7586e5b559005250f03c9 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 14 Feb 2023 19:12:18 -0500
Subject: [PATCH 0625/1641] Release Notes Controller 1.6.4 Helm 4.5.1

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 README.md                                     |   2 +-
 ...{Changelog-1.6.3.md => Changelog-1.6.4.md} |  14 +-
 charts/ingress-nginx/Chart.yaml               |   6 +-
 charts/ingress-nginx/README.md                |   8 +-
 ...{Changelog-4.5.0.md => Changelog-4.5.1.md} |   6 +-
 charts/ingress-nginx/values.yaml              |   6 +-
 deploy/static/provider/aws/deploy.yaml        |  42 ++---
 .../aws/nlb-with-tls-termination/deploy.yaml  |  42 ++---
 deploy/static/provider/baremetal/deploy.yaml  |  42 ++---
 deploy/static/provider/cloud/deploy.yaml      |  42 ++---
 deploy/static/provider/do/deploy.yaml         |  42 ++---
 deploy/static/provider/exoscale/deploy.yaml   |  42 ++---
 deploy/static/provider/kind/deploy.yaml       |  42 ++---
 deploy/static/provider/scw/deploy.yaml        |  42 ++---
 docs/e2e-tests.md                             | 148 +++++++++---------
 15 files changed, 259 insertions(+), 267 deletions(-)
 rename changelog/{Changelog-1.6.3.md => Changelog-1.6.4.md} (93%)
 rename charts/ingress-nginx/changelog/{Changelog-4.5.0.md => Changelog-4.5.1.md} (82%)

diff --git a/README.md b/README.md
index 6d3fb7873..855c47418 100644
--- a/README.md
+++ b/README.md
@@ -38,7 +38,7 @@ the versions listed. Ingress-Nginx versions may work on older versions but the p
 
 | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
-| v1.6.3                | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        |
+| v1.6.4                | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        |
 | v1.5.1                | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        |
 | v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      |
 | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      |
diff --git a/changelog/Changelog-1.6.3.md b/changelog/Changelog-1.6.4.md
similarity index 93%
rename from changelog/Changelog-1.6.3.md
rename to changelog/Changelog-1.6.4.md
index 39fa5bb24..5f940d1c4 100644
--- a/changelog/Changelog-1.6.3.md
+++ b/changelog/Changelog-1.6.4.md
@@ -1,13 +1,16 @@
 # Changelog
 
-### 1.6.3
+### 1.6.4
 Images:
 
- * registry.k8s.io/controller:controller-v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
- * registry.k8s.io/controller-chroot:controller-v1.6.3@sha256:4b4a249c9a35ac16a8ec0e22f6c522b8707f7e59e656e64a4ad9ace8fea830a4
+ * registry.k8s.io/controller:controller-v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
+ * registry.k8s.io/controller-chroot:controller-v1.6.4@sha256:0de01e2c316c3ca7847ca13b32d077af7910d07f21a4a82f81061839764f8f81
  
 ### All Changes:
 
+* remove tests and regex path checks (#9626)
+* Fix incorrect annotation name in upstream hashing configuration (#9617)
+* Release docs for Controller v1.6.3 and Helm v4.5.0 (#9614)
 * Revert Implement pathType validation (#9511) (#9607)
 * update history and allow to pass a target test  (#9605)
 * Allow to pass a target test (#9542)
@@ -19,7 +22,6 @@ Images:
 * Add CORS template check inside location for externalAuth.SignURL (#8814)
 * fix(grafana-dashboard): remove hardcoded namespace references (#9523)
 * Replace deprecated command with environment file (#9581)
-* add path validation to implementation specific as well (#9573)
 * add lint on chart before release (#9570)
 * Switch logic on path type validation and setting it to false (#9543)
 * tcpproxy: increase buffer size to 16K (#9548)
@@ -27,7 +29,6 @@ Images:
 * Add CORS template check inside location for externalAuth.SignURL (#8814)
 * fix(grafana-dashboard): remove hardcoded namespace references (#9523)
 * Align default value for keepalive_request with NGINX default (#9518)
-* Implement pathType validation (#9511)
 * feat(configmap): expose gzip-disable (#9505)
 * Values: Add missing `controller.metrics.service.labels`. (#9501)
 * Add docs about orphan_ingress metric (#9514)
@@ -89,7 +90,6 @@ Images:
 * remove the configmap related permissions (#9310)
 * remove hardcoded datasource from grafana dashboard (#9284)
 * update gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b to 3.0.0 (#9277)
-* Validate ingress path fields  (#9309)
 * added SAN to cert create command (#9295)
 * Missing controller.ingressClass (#9304)
 * OpenTelemetry static linking (#9286)
@@ -133,4 +133,4 @@ Images:
 * Bump actions/dependency-review-action from 2.5.1 to 3.0.0 (#9301)
 * Bump k8s.io/component-base from 0.25.3 to 0.25.4 (#9300)
  
-**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.5.1...controller-controller-v1.6.3
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.5.1...controller-controller-v1.6.4
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index c11859326..89e679d49 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -4,10 +4,10 @@ annotations:
      - "ci: remove setup-helm step (#9404)"
      - "feat(helm): Optionally use cert-manager instead admission patch (#9279)"
      - "run helm release on main only and when the chart/value changes only (#9290)"
-     - "Update Ingress-Nginx version controller-v1.6.3"
+     - "Update Ingress-Nginx version controller-v1.6.4"
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.6.3
+appVersion: 1.6.4
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 engine: gotpl
@@ -24,4 +24,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.5.0
+version: 4.5.1
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index cb454b535..6c5437a26 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.5.0](https://img.shields.io/badge/Version-4.5.0-informational?style=flat-square) ![AppVersion: 1.6.3](https://img.shields.io/badge/AppVersion-1.6.3-informational?style=flat-square)
+![Version: 4.5.1](https://img.shields.io/badge/Version-4.5.1-informational?style=flat-square) ![AppVersion: 1.6.4](https://img.shields.io/badge/AppVersion-1.6.4-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -333,13 +333,13 @@ Kubernetes: `>=1.20.0-0`
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2"` |  |
-| controller.image.digestChroot | string | `"sha256:4b4a249c9a35ac16a8ec0e22f6c522b8707f7e59e656e64a4ad9ace8fea830a4"` |  |
+| controller.image.digest | string | `"sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f"` |  |
+| controller.image.digestChroot | string | `"sha256:0de01e2c316c3ca7847ca13b32d077af7910d07f21a4a82f81061839764f8f81"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.6.3"` |  |
+| controller.image.tag | string | `"v1.6.4"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/Changelog-4.5.0.md b/charts/ingress-nginx/changelog/Changelog-4.5.1.md
similarity index 82%
rename from charts/ingress-nginx/changelog/Changelog-4.5.0.md
rename to charts/ingress-nginx/changelog/Changelog-4.5.1.md
index ba4b52cbc..ebe78f49c 100644
--- a/charts/ingress-nginx/changelog/Changelog-4.5.0.md
+++ b/charts/ingress-nginx/changelog/Changelog-4.5.1.md
@@ -2,12 +2,12 @@
 
 This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
 
-### 4.5.0
+### 4.5.1
 
 * add lint on chart before release (#9570)
 * ci: remove setup-helm step (#9404)
 * feat(helm): Optionally use cert-manager instead admission patch (#9279)
 * run helm release on main only and when the chart/value changes only (#9290)
-* Update Ingress-Nginx version controller-v1.6.3
+* Update Ingress-Nginx version controller-v1.6.4
 
-**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.4.3...helm-chart-4.5.0
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.4.3...helm-chart-4.5.1
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 34e1cf6ef..202cd4a23 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -23,9 +23,9 @@ controller:
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
         ## repository:
-        tag: "v1.6.3"
-        digest: sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
-        digestChroot: sha256:4b4a249c9a35ac16a8ec0e22f6c522b8707f7e59e656e64a4ad9ace8fea830a4
+        tag: "v1.6.4"
+        digest: sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
+        digestChroot: sha256:0de01e2c316c3ca7847ca13b32d077af7910d07f21a4a82f81061839764f8f81
         pullPolicy: IfNotPresent
         # www-data -> uid 101
         runAsUser: 101
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index c79412536..487340a73 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -440,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -512,7 +512,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -523,7 +523,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -559,7 +559,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -570,7 +570,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -608,7 +608,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -621,7 +621,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index fae1c5d61..4763623c8 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -449,7 +449,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -620,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -633,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 245978140..a642d67da 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -434,7 +434,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -506,7 +506,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -517,7 +517,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -553,7 +553,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -564,7 +564,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -602,7 +602,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -615,7 +615,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 9bc28ec80..8b09efac1 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -436,7 +436,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -508,7 +508,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -519,7 +519,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -555,7 +555,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -566,7 +566,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -604,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -617,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index b17da8a07..7461d9794 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -439,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -511,7 +511,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -522,7 +522,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -558,7 +558,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -569,7 +569,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -607,7 +607,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -620,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index d93497323..be0e2f587 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -564,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -613,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 8c9e96891..abb310999 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -440,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -522,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -533,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -569,7 +569,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -580,7 +580,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -618,7 +618,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -631,7 +631,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index edd00a98d..fdc3c6cde 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -439,7 +439,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.3@sha256:b92667e0afde1103b736e6a3f00dd75ae66eec4e71827d19f19f471699e909d2
+        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -511,7 +511,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -522,7 +522,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -558,7 +558,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -569,7 +569,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.3
+        app.kubernetes.io/version: 1.6.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -607,7 +607,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -620,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.3
+    app.kubernetes.io/version: 1.6.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 5c67b47aa..9f66e3991 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -21,6 +21,21 @@ Do not try to edit it manually.
 - [should return an error if the Ingress V1 definition contains invalid annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L201)
 - [should not return an error for an invalid Ingress when it has unknown class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L212)
 
+### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L28)
+
+- [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L35)
+- [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L53)
+- [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L74)
+- [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L91)
+- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L110)
+- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L132)
+- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L153)
+- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L189)
+- [should enable modsecurity when enable-owasp-modsecurity-crs is set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L225)
+- [should enable modsecurity through the config map](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L264)
+- [should enable modsecurity through the config map but ignore snippet as disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L305)
+- [should disable default modsecurity conf setting when modsecurity-snippet is specified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L347)
+
 ### [affinitymode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L31)
 
 - [Balanced affinity mode should balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L34)
@@ -194,21 +209,6 @@ Do not try to edit it manually.
 - [should set mirror-target to https://test.env.com/$request_uri](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L51)
 - [should disable mirror-request-body](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L67)
 
-### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L28)
-
-- [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L35)
-- [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L53)
-- [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L74)
-- [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L91)
-- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L110)
-- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L132)
-- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L153)
-- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L189)
-- [should enable modsecurity when enable-owasp-modsecurity-crs is set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L225)
-- [should enable modsecurity through the config map](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L264)
-- [should enable modsecurity through the config map but ignore snippet as disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L305)
-- [should disable default modsecurity conf setting when modsecurity-snippet is specified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L347)
-
 ### [preserve-trailing-slash](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L27)
 
 - [should allow preservation of trailing slashes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L34)
@@ -285,11 +285,6 @@ Do not try to edit it manually.
 - [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L35)
 - [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L57)
 
-### [denylist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L28)
-
-- [only deny explicitly denied IPs, allow all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L35)
-- [only allow explicitly allowed IPs, deny all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L86)
-
 ### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L35)
 
 - [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L42)
@@ -308,6 +303,14 @@ Do not try to edit it manually.
 - [should not set secure in cookie with provided false annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L435)
 - [should set secure in cookie with provided false annotation on https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L458)
 
+### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L30)
+
+- [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L37)
+- [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L66)
+- [should use ~* location modifier if regex annotation is present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L111)
+- [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L158)
+- [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L190)
+
 ### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L39)
 
 - [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L46)
@@ -344,13 +347,10 @@ Do not try to edit it manually.
 - [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L879)
 - [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L887)
 
-### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L30)
+### [denylist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L28)
 
-- [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L37)
-- [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L66)
-- [should use ~* location modifier if regex annotation is present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L111)
-- [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L158)
-- [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L190)
+- [only deny explicitly denied IPs, allow all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L35)
+- [only allow explicitly allowed IPs, deny all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L86)
 
 ### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L29)
 
@@ -376,26 +376,22 @@ Do not try to edit it manually.
 
 - [should apply the annotation to the default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L38)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
-
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
 
-### [[Endpointslices] long service name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L29)
-
-- [should return 200 when service name has max allowed number of characters 63](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L38)
-
-### [[TopologyHints] topology aware routing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L36)
-
-- [should return 200 when service has topology hints](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L50)
-
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
 
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
+
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
@@ -409,10 +405,6 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
-
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
@@ -465,10 +457,6 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
-
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
@@ -477,14 +465,14 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/test_context.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
-
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
 
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
+
 ### [[Shutdown] Grace period shutdown](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L32)
 
 - [/healthz should return status code 500 during shutdown grace period](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L35)
@@ -558,24 +546,10 @@ Do not try to edit it manually.
 - [handles endpoints only changes consistently (down scaling of replicas vs. empty service)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L125)
 - [handles an annotation change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L171)
 
-### [nginx-configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L99)
-
-- [start nginx with default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L102)
-- [fails when using alias directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L115)
-- [fails when using root directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L124)
-
 ### [[Security] request smuggling](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L32)
 
 - [should not return body content from error_page](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L39)
 
-### [[Security] validate path fields](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L42)
-
-- [should accept an ingress with valid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L49)
-- [should drop an ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L67)
-- [should drop an ingress with regex path and regex disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L84)
-- [should accept an ingress with regex path and regex enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L101)
-- [should reject an ingress with invalid path and regex enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/invalid_paths.go#L118)
-
 ### [[Service] backend status code 503](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L33)
 
 - [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L36)
@@ -596,6 +570,14 @@ Do not try to edit it manually.
 
 - [should return 404 when backend service is nil](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L38)
 
+### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
+
+- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
+
+### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
+
+- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
+
 ### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L27)
 
 - [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L32)
@@ -748,10 +730,6 @@ Do not try to edit it manually.
 
 - [should add value of main-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L31)
 
-### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
-
-- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
-
 ### [enable-multi-accept](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L27)
 
 - [should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L31)
@@ -772,10 +750,6 @@ Do not try to edit it manually.
 
 - [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L31)
 
-### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
-
-- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
-
 ### [Configure OpenTracing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L48)
 
 - [should not exists opentracing directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L58)
@@ -869,11 +843,6 @@ Do not try to edit it manually.
 - [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L187)
 - [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L205)
 
-### [With enable-ssl-passthrough enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L36)
-
-- [should enable ssl-passthrough-proxy-port on a different port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L56)
-- [should pass unknown traffic to default backend and handle known traffic](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L79)
-
 ### [[Flag] disable-sync-events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L32)
 
 - [should create sync events (default)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L35)
@@ -889,6 +858,11 @@ Do not try to edit it manually.
 - [should set gzip_min_length to 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L78)
 - [should set gzip_types to application/javascript](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L89)
 
+### [With enable-ssl-passthrough enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L36)
+
+- [should enable ssl-passthrough-proxy-port on a different port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L56)
+- [should pass unknown traffic to default backend and handle known traffic](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L79)
+
 ### [[SSL] redirect to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L29)
 
 - [should redirect from HTTP to HTTPS when secret is missing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L36)
@@ -905,4 +879,22 @@ Do not try to edit it manually.
 ### [[TCP] tcp-services](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L37)
 
 - [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L40)
-- [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L98)
\ No newline at end of file
+- [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L98)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
+
+### [[Endpointslices] long service name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L29)
+
+- [should return 200 when service name has max allowed number of characters 63](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L38)
+
+### [[TopologyHints] topology aware routing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L36)
+
+- [should return 200 when service has topology hints](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L50)
+
+### [nginx-configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L99)
+
+- [start nginx with default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L102)
+- [fails when using alias directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L115)
+- [fails when using root directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L124)
\ No newline at end of file

From 864316955fce19b7c5397680d91da313b097fc9b Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 14 Feb 2023 20:22:36 -0500
Subject: [PATCH 0626/1641] Release new Helm Chart

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 charts/ingress-nginx/Chart.yaml                               | 2 +-
 charts/ingress-nginx/README.md                                | 2 +-
 .../changelog/{Changelog-4.5.1.md => Changelog-4.5.2.md}      | 4 ++--
 3 files changed, 4 insertions(+), 4 deletions(-)
 rename charts/ingress-nginx/changelog/{Changelog-4.5.1.md => Changelog-4.5.2.md} (91%)

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 89e679d49..21779e195 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -24,4 +24,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.5.1
+version: 4.5.2
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 6c5437a26..49bb38273 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.5.1](https://img.shields.io/badge/Version-4.5.1-informational?style=flat-square) ![AppVersion: 1.6.4](https://img.shields.io/badge/AppVersion-1.6.4-informational?style=flat-square)
+![Version: 4.5.2](https://img.shields.io/badge/Version-4.5.2-informational?style=flat-square) ![AppVersion: 1.6.4](https://img.shields.io/badge/AppVersion-1.6.4-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
diff --git a/charts/ingress-nginx/changelog/Changelog-4.5.1.md b/charts/ingress-nginx/changelog/Changelog-4.5.2.md
similarity index 91%
rename from charts/ingress-nginx/changelog/Changelog-4.5.1.md
rename to charts/ingress-nginx/changelog/Changelog-4.5.2.md
index ebe78f49c..b6d8a3b0c 100644
--- a/charts/ingress-nginx/changelog/Changelog-4.5.1.md
+++ b/charts/ingress-nginx/changelog/Changelog-4.5.2.md
@@ -2,7 +2,7 @@
 
 This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
 
-### 4.5.1
+### 4.5.2
 
 * add lint on chart before release (#9570)
 * ci: remove setup-helm step (#9404)
@@ -10,4 +10,4 @@ This file documents all notable changes to [ingress-nginx](https://github.com/ku
 * run helm release on main only and when the chart/value changes only (#9290)
 * Update Ingress-Nginx version controller-v1.6.4
 
-**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.4.3...helm-chart-4.5.1
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.4.3...helm-chart-4.5.2

From de793dfeea03bd2db064b1f4c9b63e768a961172 Mon Sep 17 00:00:00 2001
From: Igor Milavec <igor.milavec@gmail.com>
Date: Wed, 15 Feb 2023 14:50:24 +0100
Subject: [PATCH 0627/1641] Fix rewrite example (#9633)

---
 docs/examples/rewrite/README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/examples/rewrite/README.md b/docs/examples/rewrite/README.md
index c529c34ef..5b42e1fc7 100644
--- a/docs/examples/rewrite/README.md
+++ b/docs/examples/rewrite/README.md
@@ -38,6 +38,7 @@ apiVersion: networking.k8s.io/v1
 kind: Ingress
 metadata:
   annotations:
+    nginx.ingress.kubernetes.io/use-regex: "true"
     nginx.ingress.kubernetes.io/rewrite-target: /$2
   name: rewrite
   namespace: default

From 9a79b059ca99380ff463f7ff589e8b4f01b19d75 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 15 Feb 2023 05:52:25 -0800
Subject: [PATCH 0628/1641] Bump golang.org/x/crypto from 0.5.0 to 0.6.0
 (#9609)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/golang/crypto/releases)
- [Commits](https://github.com/golang/crypto/compare/v0.5.0...v0.6.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 10 +++++-----
 go.sum | 20 ++++++++++----------
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/go.mod b/go.mod
index 10b9e2fda..0aa7e6880 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.1
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.5.0
+	golang.org/x/crypto v0.6.0
 	google.golang.org/grpc v1.52.3
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -99,11 +99,11 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.7.0 // indirect
-	golang.org/x/net v0.5.0 // indirect
+	golang.org/x/net v0.6.0 // indirect
 	golang.org/x/oauth2 v0.3.0 // indirect
-	golang.org/x/sys v0.4.0 // indirect
-	golang.org/x/term v0.4.0 // indirect
-	golang.org/x/text v0.6.0 // indirect
+	golang.org/x/sys v0.5.0 // indirect
+	golang.org/x/term v0.5.0 // indirect
+	golang.org/x/text v0.7.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.4.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
diff --git a/go.sum b/go.sum
index 6e370c655..47777a30d 100644
--- a/go.sum
+++ b/go.sum
@@ -403,8 +403,8 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.5.0 h1:U/0M97KRkSFvyD/3FSmdP5W5swImpNgle/EHFhOsQPE=
-golang.org/x/crypto v0.5.0/go.mod h1:NK/OQwhpMQP3MwtdjgLlYHnH9ebylxKWv3e0fK+mkQU=
+golang.org/x/crypto v0.6.0 h1:qfktjS5LUO+fFKeJXZ+ikTRijMmljikvG68fpMMruSc=
+golang.org/x/crypto v0.6.0/go.mod h1:OFC/31mSvZgRz0V1QTNCzfAI1aIRzbiufJtkMIlEp58=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -471,8 +471,8 @@ golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.5.0 h1:GyT4nK/YDHSqa1c4753ouYCDajOYKTja9Xb/OHtgvSw=
-golang.org/x/net v0.5.0/go.mod h1:DivGGAXEgPSlEBzxGzZI+ZLohi+xUj054jfeKui00ws=
+golang.org/x/net v0.6.0 h1:L4ZwwTvKW9gr0ZMS1yrHD9GZhIuVjOBBnaKH+SPQK0Q=
+golang.org/x/net v0.6.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -542,19 +542,19 @@ golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.4.0 h1:Zr2JFtRQNX3BCZ8YtxRE9hNJYC8J6I1MVbMg6owUp18=
-golang.org/x/sys v0.4.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.5.0 h1:MUK/U/4lj1t1oPg0HfuXDN/Z1wv31ZJ/YcPiGccS4DU=
+golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.4.0 h1:O7UWfv5+A2qiuulQk30kVinPoMtoIPeVaKLEgLpVkvg=
-golang.org/x/term v0.4.0/go.mod h1:9P2UbLfCdcvo3p/nzKvsmas4TnlujnuoV9hGgYzW1lQ=
+golang.org/x/term v0.5.0 h1:n2a8QNdAb0sZNpU9R1ALUXBbY+w51fCQDN+7EdxNBsY=
+golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.6.0 h1:3XmdazWV+ubf7QgHSTWeykHOci5oeekaGJBLkrkaw4k=
-golang.org/x/text v0.6.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.7.0 h1:4BRB4x83lYWy72KwLD/qYDuTu7q9PjSagHvijDw7cLo=
+golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=

From 15ecd2531fdcb722c8c477f0b51b86ab9213723f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 15 Feb 2023 05:54:24 -0800
Subject: [PATCH 0629/1641] Bump github.com/prometheus/client_golang (#9630)

Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.11.0 to 1.11.1.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.11.0...v1.11.1)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 images/custom-error-pages/rootfs/go.mod | 2 +-
 images/custom-error-pages/rootfs/go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index b39db8b20..515b72c09 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -2,7 +2,7 @@ module k8s.io/ingress-nginx/custom-error-pages
 
 go 1.19
 
-require github.com/prometheus/client_golang v1.11.0
+require github.com/prometheus/client_golang v1.11.1
 
 require (
 	github.com/beorn7/perks v1.0.1 // indirect
diff --git a/images/custom-error-pages/rootfs/go.sum b/images/custom-error-pages/rootfs/go.sum
index 87cd96b26..d071619b7 100644
--- a/images/custom-error-pages/rootfs/go.sum
+++ b/images/custom-error-pages/rootfs/go.sum
@@ -66,8 +66,8 @@ github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZN
 github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXPKyh/dDVn+NZz0KFw=
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
-github.com/prometheus/client_golang v1.11.0 h1:HNkLOAEQMIDv/K+04rukrLx6ch7msSRwf3/SASFAGtQ=
-github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
+github.com/prometheus/client_golang v1.11.1 h1:+4eQaD7vAZ6DsfsxB15hbE0odUjGI5ARs9yskGu1v4s=
+github.com/prometheus/client_golang v1.11.1/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.2.0 h1:uq5h0d+GuxiXLJLNABMgp2qUWDPiLvgCzz2dUR+/W/M=

From 00086ab429d99e3888bc2adf70178d2da66d2f57 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 15 Feb 2023 07:06:25 -0800
Subject: [PATCH 0630/1641] Bump google.golang.org/grpc from 1.52.3 to 1.53.0
 (#9610)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.52.3 to 1.53.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.52.3...v1.53.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index 0aa7e6880..d942c1637 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.6.0
-	google.golang.org/grpc v1.52.3
+	google.golang.org/grpc v1.53.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -48,7 +48,7 @@ require (
 	github.com/BurntSushi/toml v1.0.0 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/blang/semver/v4 v4.0.0 // indirect
-	github.com/cespare/xxhash/v2 v2.1.2 // indirect
+	github.com/cespare/xxhash/v2 v2.2.0 // indirect
 	github.com/coreos/go-systemd/v22 v22.3.2 // indirect
 	github.com/cyphar/filepath-securejoin v0.2.3 // indirect
 	github.com/davecgh/go-spew v1.1.1 // indirect
@@ -100,14 +100,14 @@ require (
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.7.0 // indirect
 	golang.org/x/net v0.6.0 // indirect
-	golang.org/x/oauth2 v0.3.0 // indirect
+	golang.org/x/oauth2 v0.4.0 // indirect
 	golang.org/x/sys v0.5.0 // indirect
 	golang.org/x/term v0.5.0 // indirect
 	golang.org/x/text v0.7.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.4.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/genproto v0.0.0-20221118155620-16455021b5e6 // indirect
+	google.golang.org/genproto v0.0.0-20230110181048-76db0878b65f // indirect
 	google.golang.org/protobuf v1.28.1 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index 47777a30d..b1f6269a6 100644
--- a/go.sum
+++ b/go.sum
@@ -50,8 +50,8 @@ github.com/blang/semver/v4 v4.0.0 h1:1PFHFE6yCCTv8C1TeyNNarDzntLi7wMI5i/pzqYIsAM
 github.com/blang/semver/v4 v4.0.0/go.mod h1:IbckMUScFkM3pff0VJDNKRiT6TG/YpiHIM2yvyW5YoQ=
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
 github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
-github.com/cespare/xxhash/v2 v2.1.2 h1:YRXhKfTDauu4ajMg1TPgFO5jnlC2HCbmLXMcTG5cbYE=
-github.com/cespare/xxhash/v2 v2.1.2/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
+github.com/cespare/xxhash/v2 v2.2.0 h1:DC2CZ1Ep5Y4k3ZQ899DldepgrayRUGE6BBZ/cd9Cj44=
+github.com/cespare/xxhash/v2 v2.2.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
 github.com/checkpoint-restore/go-criu/v5 v5.3.0/go.mod h1:E/eQpaFtUKGOOSEBZgmKAcn+zUUwWxqcaKZlF54wK8E=
 github.com/chzyer/logex v1.1.10/go.mod h1:+Ywpsq7O8HXn0nuIou7OrIPyXbp3wmkHB+jjWRnGsAI=
 github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5PlCu98SY8svDHJxuZscDgtXS6KTTbou5AhLI=
@@ -479,8 +479,8 @@ golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4Iltr
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.3.0 h1:6l90koy8/LaBLmLu8jpHeHexzMwEita0zFfYlggy2F8=
-golang.org/x/oauth2 v0.3.0/go.mod h1:rQrIauxkUhJ6CuwEXwymO2/eh4xz2ZWF1nBkcxS+tGk=
+golang.org/x/oauth2 v0.4.0 h1:NF0gk8LVPg1Ml7SSbGyySuoxdsXitj7TvgvuRxIMc/M=
+golang.org/x/oauth2 v0.4.0/go.mod h1:RznEsdpjGAINPTOF0UH/t+xJ75L18YO3Ho6Pyn+uRec=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -665,8 +665,8 @@ google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6D
 google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20221118155620-16455021b5e6 h1:a2S6M0+660BgMNl++4JPlcAO/CjkqYItDEZwkoDQK7c=
-google.golang.org/genproto v0.0.0-20221118155620-16455021b5e6/go.mod h1:rZS5c/ZVYMaOGBfO68GWtjOw/eLaZM1X6iVtgjZ+EWg=
+google.golang.org/genproto v0.0.0-20230110181048-76db0878b65f h1:BWUVssLB0HVOSY78gIdvk1dTVYtT1y8SBWtPYuTJ/6w=
+google.golang.org/genproto v0.0.0-20230110181048-76db0878b65f/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -679,8 +679,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.52.3 h1:pf7sOysg4LdgBqduXveGKrcEwbStiK2rtfghdzlUYDQ=
-google.golang.org/grpc v1.52.3/go.mod h1:pu6fVzoFb+NBYNAvQL08ic+lvB2IojljRYuun5vorUY=
+google.golang.org/grpc v1.53.0 h1:LAv2ds7cmFV/XTS3XG1NneeENYrXGmorPxsBbptIjNc=
+google.golang.org/grpc v1.53.0/go.mod h1:OnIrk0ipVdj4N5d9IUoFUx72/VlD7+jUsHwZgwSMQpw=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From fbdbc24a423a1afa195d5770529fbd873ef68e66 Mon Sep 17 00:00:00 2001
From: Fish-pro <zechun.chen@daocloud.io>
Date: Thu, 16 Feb 2023 21:59:39 +0800
Subject: [PATCH 0631/1641] Optimize the judgment mode to remove redundant
 transformations (#9588)

Signed-off-by: Fish-pro <zechun.chen@daocloud.io>
---
 internal/ingress/inspector/inspector.go | 6 +++---
 internal/nginx/maxmind.go               | 2 +-
 pkg/apis/ingress/types_equals.go        | 6 +-----
 3 files changed, 5 insertions(+), 9 deletions(-)

diff --git a/internal/ingress/inspector/inspector.go b/internal/ingress/inspector/inspector.go
index 98f257997..e7b6c2f10 100644
--- a/internal/ingress/inspector/inspector.go
+++ b/internal/ingress/inspector/inspector.go
@@ -26,11 +26,11 @@ import (
 // if an object contains invalid configurations that may represent a security risk,
 // and returning an error in this case
 func DeepInspect(obj interface{}) error {
-	switch obj.(type) {
+	switch obj := obj.(type) {
 	case *networking.Ingress:
-		return InspectIngress(obj.(*networking.Ingress))
+		return InspectIngress(obj)
 	case *corev1.Service:
-		return InspectService(obj.(*corev1.Service))
+		return InspectService(obj)
 	default:
 		klog.Warningf("received invalid object to inspect: %T", obj)
 		return nil
diff --git a/internal/nginx/maxmind.go b/internal/nginx/maxmind.go
index df9fd2231..5aee414cd 100644
--- a/internal/nginx/maxmind.go
+++ b/internal/nginx/maxmind.go
@@ -165,7 +165,7 @@ func downloadDatabase(dbName string) error {
 	mmdbFile := dbName + dbExtension
 
 	tarReader := tar.NewReader(archive)
-	for true {
+	for {
 		header, err := tarReader.Next()
 		if err == io.EOF {
 			break
diff --git a/pkg/apis/ingress/types_equals.go b/pkg/apis/ingress/types_equals.go
index 0941e0956..2485f8a7b 100644
--- a/pkg/apis/ingress/types_equals.go
+++ b/pkg/apis/ingress/types_equals.go
@@ -76,11 +76,7 @@ func (c1 *Configuration) Equal(c2 *Configuration) bool {
 		}
 	}
 
-	if c1.BackendConfigChecksum != c2.BackendConfigChecksum {
-		return false
-	}
-
-	return true
+	return c1.BackendConfigChecksum == c2.BackendConfigChecksum
 }
 
 // Equal tests for equality between two Backend types

From 1cdd61fb9496b39dc7892ca3f3670784cb58ec58 Mon Sep 17 00:00:00 2001
From: Fish-pro <zechun.chen@daocloud.io>
Date: Thu, 16 Feb 2023 22:05:40 +0800
Subject: [PATCH 0632/1641] Adjust the import package order and use http
 library variables (#9587)

Signed-off-by: Fish-pro <zechun.chen@daocloud.io>
---
 internal/ingress/controller/checker_test.go | 2 +-
 internal/ingress/controller/nginx_test.go   | 4 ++--
 internal/ingress/status/status.go           | 2 +-
 test/e2e/framework/healthz.go               | 2 +-
 test/e2e/framework/metrics.go               | 2 +-
 test/e2e/status/update.go                   | 2 +-
 6 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/internal/ingress/controller/checker_test.go b/internal/ingress/controller/checker_test.go
index 5d9fb1baf..a0d2baafa 100644
--- a/internal/ingress/controller/checker_test.go
+++ b/internal/ingress/controller/checker_test.go
@@ -122,7 +122,7 @@ func TestNginxCheck(t *testing.T) {
 }
 
 func callHealthz(expErr bool, healthzPath string, mux *http.ServeMux) error {
-	req, err := http.NewRequest("GET", healthzPath, nil)
+	req, err := http.NewRequest(http.MethodGet, healthzPath, nil)
 	if err != nil {
 		return fmt.Errorf("healthz error: %v", err)
 	}
diff --git a/internal/ingress/controller/nginx_test.go b/internal/ingress/controller/nginx_test.go
index 4d3155194..56eb0f324 100644
--- a/internal/ingress/controller/nginx_test.go
+++ b/internal/ingress/controller/nginx_test.go
@@ -62,7 +62,7 @@ func TestConfigureDynamically(t *testing.T) {
 			Handler: http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 				w.WriteHeader(http.StatusCreated)
 
-				if r.Method != "POST" {
+				if r.Method != http.MethodPost {
 					t.Errorf("expected a 'POST' request, got '%s'", r.Method)
 				}
 
@@ -222,7 +222,7 @@ func TestConfigureCertificates(t *testing.T) {
 			Handler: http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 				w.WriteHeader(http.StatusCreated)
 
-				if r.Method != "POST" {
+				if r.Method != http.MethodPost {
 					t.Errorf("expected a 'POST' request, got '%s'", r.Method)
 				}
 
diff --git a/internal/ingress/status/status.go b/internal/ingress/status/status.go
index eac1f6cb0..a7506705c 100644
--- a/internal/ingress/status/status.go
+++ b/internal/ingress/status/status.go
@@ -19,7 +19,6 @@ package status
 import (
 	"context"
 	"fmt"
-	v1 "k8s.io/api/networking/v1"
 	"net"
 	"regexp"
 	"sort"
@@ -30,6 +29,7 @@ import (
 
 	pool "gopkg.in/go-playground/pool.v3"
 	apiv1 "k8s.io/api/core/v1"
+	v1 "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/labels"
 	"k8s.io/apimachinery/pkg/util/wait"
diff --git a/test/e2e/framework/healthz.go b/test/e2e/framework/healthz.go
index bef093355..b52c3ffde 100644
--- a/test/e2e/framework/healthz.go
+++ b/test/e2e/framework/healthz.go
@@ -26,7 +26,7 @@ func (f *Framework) VerifyHealthz(ip string, statusCode int) error {
 	url := fmt.Sprintf("http://%v:10254/healthz", ip)
 
 	client := &http.Client{}
-	req, err := http.NewRequest("GET", url, nil)
+	req, err := http.NewRequest(http.MethodGet, url, nil)
 	if err != nil {
 		return fmt.Errorf("creating GET request for URL %q failed: %v", url, err)
 	}
diff --git a/test/e2e/framework/metrics.go b/test/e2e/framework/metrics.go
index 349eb4dc3..830237540 100644
--- a/test/e2e/framework/metrics.go
+++ b/test/e2e/framework/metrics.go
@@ -29,7 +29,7 @@ func (f *Framework) GetMetric(metricName, ip string) (*dto.MetricFamily, error)
 	url := fmt.Sprintf("http://%v:10254/metrics", ip)
 
 	client := &http.Client{}
-	req, err := http.NewRequest("GET", url, nil)
+	req, err := http.NewRequest(http.MethodGet, url, nil)
 	if err != nil {
 		return nil, fmt.Errorf("creating GET request for URL %q failed: %v", url, err)
 	}
diff --git a/test/e2e/status/update.go b/test/e2e/status/update.go
index 8bedc4d4e..5c6ea4977 100644
--- a/test/e2e/status/update.go
+++ b/test/e2e/status/update.go
@@ -19,7 +19,6 @@ package settings
 import (
 	"context"
 	"fmt"
-	v1 "k8s.io/api/networking/v1"
 	"log"
 	"net"
 	"strings"
@@ -29,6 +28,7 @@ import (
 	"github.com/stretchr/testify/assert"
 
 	appsv1 "k8s.io/api/apps/v1"
+	v1 "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/util/wait"
 

From ac8dd3dd53344b948b291530a71bcbffef9ca5d4 Mon Sep 17 00:00:00 2001
From: Fish-pro <zechun.chen@daocloud.io>
Date: Thu, 16 Feb 2023 22:05:48 +0800
Subject: [PATCH 0633/1641] sets.String is deprecated: use generic Set instead.
 new ways: s1 := Set[string]{} s2 := New[string]() (#9589)

Signed-off-by: Fish-pro <zechun.chen@daocloud.io>
---
 internal/ingress/controller/controller.go         |  4 ++--
 internal/ingress/controller/store/objectref.go    |  8 ++++----
 internal/ingress/controller/template/template.go  | 10 +++++-----
 internal/ingress/metric/collectors/socket.go      |  4 ++--
 internal/ingress/metric/collectors/socket_test.go |  2 +-
 internal/ingress/metric/dummy.go                  |  2 +-
 internal/ingress/metric/main.go                   |  4 ++--
 pkg/util/ingress/ingress.go                       |  2 +-
 8 files changed, 18 insertions(+), 18 deletions(-)

diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index dab507cdf..a77d2ff37 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -541,11 +541,11 @@ func (n *NGINXController) getDefaultUpstream() *ingress.Backend {
 }
 
 // getConfiguration returns the configuration matching the standard kubernetes ingress
-func (n *NGINXController) getConfiguration(ingresses []*ingress.Ingress) (sets.String, []*ingress.Server, *ingress.Configuration) {
+func (n *NGINXController) getConfiguration(ingresses []*ingress.Ingress) (sets.Set[string], []*ingress.Server, *ingress.Configuration) {
 	upstreams, servers := n.getBackendServers(ingresses)
 	var passUpstreams []*ingress.SSLPassthroughBackend
 
-	hosts := sets.NewString()
+	hosts := sets.New[string]()
 
 	for _, server := range servers {
 		// If a location is defined by a prefix string that ends with the slash character, and requests are processed by one of
diff --git a/internal/ingress/controller/store/objectref.go b/internal/ingress/controller/store/objectref.go
index 9ef13bf07..89ea47251 100644
--- a/internal/ingress/controller/store/objectref.go
+++ b/internal/ingress/controller/store/objectref.go
@@ -37,13 +37,13 @@ type ObjectRefMap interface {
 
 type objectRefMap struct {
 	sync.Mutex
-	v map[string]sets.String
+	v map[string]sets.Set[string]
 }
 
 // NewObjectRefMap returns a new ObjectRefMap.
 func NewObjectRefMap() ObjectRefMap {
 	return &objectRefMap{
-		v: make(map[string]sets.String),
+		v: make(map[string]sets.Set[string]),
 	}
 }
 
@@ -54,7 +54,7 @@ func (o *objectRefMap) Insert(consumer string, ref ...string) {
 
 	for _, r := range ref {
 		if _, ok := o.v[r]; !ok {
-			o.v[r] = sets.NewString(consumer)
+			o.v[r] = sets.New[string](consumer)
 			continue
 		}
 		o.v[r].Insert(consumer)
@@ -112,7 +112,7 @@ func (o *objectRefMap) Reference(ref string) []string {
 	if !ok {
 		return make([]string, 0)
 	}
-	return consumers.List()
+	return consumers.UnsortedList()
 }
 
 // ReferencedBy returns all objects referenced by the given object.
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 315262150..ea9807bd0 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -792,7 +792,7 @@ rewrite "(?i)%s" %s break;
 
 func filterRateLimits(input interface{}) []ratelimit.Config {
 	ratelimits := []ratelimit.Config{}
-	found := sets.String{}
+	found := sets.Set[string]{}
 
 	servers, ok := input.([]*ingress.Server)
 	if !ok {
@@ -815,12 +815,12 @@ func filterRateLimits(input interface{}) []ratelimit.Config {
 // for connection limit by IP address, one for limiting requests per minute, and
 // one for limiting requests per second.
 func buildRateLimitZones(input interface{}) []string {
-	zones := sets.String{}
+	zones := sets.Set[string]{}
 
 	servers, ok := input.([]*ingress.Server)
 	if !ok {
 		klog.Errorf("expected a '[]*ingress.Server' type but %T was returned", input)
-		return zones.List()
+		return zones.UnsortedList()
 	}
 
 	for _, server := range servers {
@@ -859,7 +859,7 @@ func buildRateLimitZones(input interface{}) []string {
 		}
 	}
 
-	return zones.List()
+	return zones.UnsortedList()
 }
 
 // buildRateLimit produces an array of limit_req to be used inside the Path of
@@ -1654,7 +1654,7 @@ func buildModSecurityForLocation(cfg config.Configuration, location *ingress.Loc
 func buildMirrorLocations(locs []*ingress.Location) string {
 	var buffer bytes.Buffer
 
-	mapped := sets.String{}
+	mapped := sets.Set[string]{}
 
 	for _, loc := range locs {
 		if loc.Mirror.Source == "" || loc.Mirror.Target == "" {
diff --git a/internal/ingress/metric/collectors/socket.go b/internal/ingress/metric/collectors/socket.go
index 9c0376cd3..23048d5d6 100644
--- a/internal/ingress/metric/collectors/socket.go
+++ b/internal/ingress/metric/collectors/socket.go
@@ -80,7 +80,7 @@ type SocketCollector struct {
 
 	metricMapping map[string]interface{}
 
-	hosts sets.String
+	hosts sets.Set[string]
 
 	metricsPerHost      bool
 	reportStatusClasses bool
@@ -505,7 +505,7 @@ func (sc SocketCollector) Collect(ch chan<- prometheus.Metric) {
 
 // SetHosts sets the hostnames that are being served by the ingress controller
 // This set of hostnames is used to filter the metrics to be exposed
-func (sc *SocketCollector) SetHosts(hosts sets.String) {
+func (sc *SocketCollector) SetHosts(hosts sets.Set[string]) {
 	sc.hosts = hosts
 }
 
diff --git a/internal/ingress/metric/collectors/socket_test.go b/internal/ingress/metric/collectors/socket_test.go
index f175828cc..4bebc7600 100644
--- a/internal/ingress/metric/collectors/socket_test.go
+++ b/internal/ingress/metric/collectors/socket_test.go
@@ -485,7 +485,7 @@ func TestCollector(t *testing.T) {
 				t.Errorf("registering collector failed: %s", err)
 			}
 
-			sc.SetHosts(sets.NewString("testshop.com"))
+			sc.SetHosts(sets.New[string]("testshop.com"))
 
 			for _, d := range c.data {
 				sc.handleMessage([]byte(d))
diff --git a/internal/ingress/metric/dummy.go b/internal/ingress/metric/dummy.go
index e34b5ecbd..d8ae0155a 100644
--- a/internal/ingress/metric/dummy.go
+++ b/internal/ingress/metric/dummy.go
@@ -69,7 +69,7 @@ func (dc DummyCollector) SetSSLInfo([]*ingress.Server) {}
 func (dc DummyCollector) SetSSLExpireTime([]*ingress.Server) {}
 
 // SetHosts ...
-func (dc DummyCollector) SetHosts(hosts sets.String) {}
+func (dc DummyCollector) SetHosts(hosts sets.Set[string]) {}
 
 // OnStartedLeading indicates the pod is not the current leader
 func (dc DummyCollector) OnStartedLeading(electionID string) {}
diff --git a/internal/ingress/metric/main.go b/internal/ingress/metric/main.go
index 892c8e8db..cac86e889 100644
--- a/internal/ingress/metric/main.go
+++ b/internal/ingress/metric/main.go
@@ -52,7 +52,7 @@ type Collector interface {
 	SetSSLInfo(servers []*ingress.Server)
 
 	// SetHosts sets the hostnames that are being served by the ingress controller
-	SetHosts(sets.String)
+	SetHosts(set sets.Set[string])
 
 	Start(string)
 	Stop(string)
@@ -191,7 +191,7 @@ func (c *collector) DecOrphanIngress(namespace string, name string, orphanityTyp
 	c.ingressController.DecOrphanIngress(namespace, name, orphanityType)
 }
 
-func (c *collector) SetHosts(hosts sets.String) {
+func (c *collector) SetHosts(hosts sets.Set[string]) {
 	c.socket.SetHosts(hosts)
 }
 
diff --git a/pkg/util/ingress/ingress.go b/pkg/util/ingress/ingress.go
index 7df2cc114..39ca3f883 100644
--- a/pkg/util/ingress/ingress.go
+++ b/pkg/util/ingress/ingress.go
@@ -177,7 +177,7 @@ type redirect struct {
 
 // BuildRedirects build the redirects of servers based on configurations and certificates
 func BuildRedirects(servers []*ingress.Server) []*redirect {
-	names := sets.String{}
+	names := sets.Set[string]{}
 	redirectServers := make([]*redirect, 0)
 
 	for _, srv := range servers {

From 57398dee16808fb5f7acc378bc7f84a9761348a9 Mon Sep 17 00:00:00 2001
From: Fish-pro <zechun.chen@daocloud.io>
Date: Thu, 16 Feb 2023 22:07:39 +0800
Subject: [PATCH 0634/1641] Optimize the document for readability (#9551)

Signed-off-by: Fish-pro <zechun.chen@daocloud.io>
---
 docs/how-it-works.md                 | 2 +-
 docs/user-guide/k8s-122-migration.md | 6 +++---
 docs/user-guide/miscellaneous.md     | 2 +-
 docs/user-guide/monitoring.md        | 6 +++---
 docs/user-guide/multiple-ingress.md  | 2 +-
 5 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/docs/how-it-works.md b/docs/how-it-works.md
index 4ad824dc8..894a504dc 100644
--- a/docs/how-it-works.md
+++ b/docs/how-it-works.md
@@ -10,7 +10,7 @@ The goal of this Ingress controller is the assembly of a configuration file (ngi
 
 Usually, a Kubernetes Controller utilizes the [synchronization loop pattern][1] to check if the desired state in the controller is updated or a change is required. To this purpose, we need to build a model using different objects from the cluster, in particular (in no special order) Ingresses, Services, Endpoints, Secrets, and Configmaps to generate a point in time configuration file that reflects the state of the cluster.
 
-To get this object from the cluster, we use [Kubernetes Informers][2], in particular, `FilteredSharedInformer`. This informers allows reacting to changes in using [callbacks][3] to individual changes when a new object is added, modified or removed. Unfortunately, there is no way to know if a particular change is going to affect the final configuration file. Therefore on every change, we have to rebuild a new model from scratch based on the state of cluster and compare it to the current model. If the new model equals to the current one, then we avoid generating a new NGINX configuration and triggering a reload. Otherwise, we check if the difference is only about Endpoints. If so we then send the new list of Endpoints to a Lua handler running inside Nginx using HTTP POST request and again avoid generating a new NGINX configuration and triggering a reload. If the difference between running and new model is about more than just Endpoints we create a new NGINX configuration based on the new model, replace the current model and trigger a reload.
+To get this object from the cluster, we use [Kubernetes Informers][2], in particular, `FilteredSharedInformer`. These informers allow reacting to change in using [callbacks][3] to individual changes when a new object is added, modified or removed. Unfortunately, there is no way to know if a particular change is going to affect the final configuration file. Therefore on every change, we have to rebuild a new model from scratch based on the state of cluster and compare it to the current model. If the new model equals to the current one, then we avoid generating a new NGINX configuration and triggering a reload. Otherwise, we check if the difference is only about Endpoints. If so we then send the new list of Endpoints to a Lua handler running inside Nginx using HTTP POST request and again avoid generating a new NGINX configuration and triggering a reload. If the difference between running and new model is about more than just Endpoints we create a new NGINX configuration based on the new model, replace the current model and trigger a reload.
 
 One of the uses of the model is to avoid unnecessary reloads when there's no change in the state and to detect conflicts in definitions.
 
diff --git a/docs/user-guide/k8s-122-migration.md b/docs/user-guide/k8s-122-migration.md
index 34893f931..9a1ca081d 100644
--- a/docs/user-guide/k8s-122-migration.md
+++ b/docs/user-guide/k8s-122-migration.md
@@ -131,7 +131,7 @@ and add the value `spec.ingressClassName=nginx` in your Ingress objects.
 
 ## I have many ingress objects in my cluster. What should I do?
 
-If you have lot of ingress objects without ingressClass configuration,
+If you have a lot of ingress objects without ingressClass configuration,
 you can run the ingress controller with the flag `--watch-ingress-without-class=true`.
 
 ### What is the flag `--watch-ingress-without-class`?
@@ -187,10 +187,10 @@ Bear in mind that if you start Ingress-Nginx B with the command line argument `-
 4. If you start Ingress-Nginx B with the command line argument `--watch-ingress-without-class=true` and you run Ingress-Nginx A with the command line argument `--watch-ingress-without-class=false` then this is a supported configuration.
    If you have two ingress-nginx controllers for the same cluster, both running with `--watch-ingress-without-class=true` then there is likely to be a conflict.
 
-## Why am I am seeing "ingress class annotation is not equal to the expected by Ingress Controller" in my controller logs?
+## Why am I seeing "ingress class annotation is not equal to the expected by Ingress Controller" in my controller logs?
 
 It is highly likely that you will also see the name of the ingress resource in the same error message.
-This error message has been observed on use the deprecated annotation (`kubernetes.io/ingress.class`) in a Ingress resource manifest.
+This error message has been observed on use the deprecated annotation (`kubernetes.io/ingress.class`) in an Ingress resource manifest.
 It is recommended to use the `.spec.ingressClassName` field of the Ingress resource, to specify the name of the IngressClass of the Ingress you are defining.
 
 ## How can I easily install multiple instances of the ingress-nginx controller in the same cluster?
diff --git a/docs/user-guide/miscellaneous.md b/docs/user-guide/miscellaneous.md
index 196ea17fc..d9b32d36f 100644
--- a/docs/user-guide/miscellaneous.md
+++ b/docs/user-guide/miscellaneous.md
@@ -27,7 +27,7 @@ Support for websockets is provided by NGINX out of the box. No special configura
 
 The only requirement to avoid the close of connections is the increase of the values of `proxy-read-timeout` and `proxy-send-timeout`.
 
-The default value of this settings is `60 seconds`.
+The default value of these settings is `60 seconds`.
 
 A more adequate value to support websockets is a value higher than one hour (`3600`).
 
diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index 807d91afc..281207866 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -170,7 +170,7 @@ According to the above example, this URL will be http://10.192.0.3:31086
   - By default request metrics are labeled with the hostname. When you have a wildcard domain ingress, then there will be no metrics for that ingress (to prevent the metrics from exploding in cardinality). To get metrics in this case you need to run the ingress controller with `--metrics-per-host=false` (you will lose labeling by hostname, but still have labeling by ingress).
 
 ### Grafana dashboard using ingress resource
-  - If you want to expose the dashboard for grafana using a ingress resource, then you can :
+  - If you want to expose the dashboard for grafana using an ingress resource, then you can :
     - change the service type of the prometheus-server service and the grafana service to "ClusterIP" like this :
     ```
     kubectl -n ingress-nginx edit svc grafana
@@ -178,8 +178,8 @@ According to the above example, this URL will be http://10.192.0.3:31086
     - This will open the currently deployed service grafana in the default editor configured in your shell (vi/nvim/nano/other)
     - scroll down to line 34 that looks like "type: NodePort"
     - change it to look like "type: ClusterIP". Save and exit.
-    - create a ingress resource with backend as "grafana" and port as "3000"
-  - Similarly, you can edit the service "prometheus-server" and add a ingress resource.
+    - create an ingress resource with backend as "grafana" and port as "3000"
+  - Similarly, you can edit the service "prometheus-server" and add an ingress resource.
 
 ## Prometheus and Grafana installation using Service Monitors
 This document assumes you're using helm and using the kube-prometheus-stack package to install Prometheus and Grafana.
diff --git a/docs/user-guide/multiple-ingress.md b/docs/user-guide/multiple-ingress.md
index 179041727..6a9457a9c 100644
--- a/docs/user-guide/multiple-ingress.md
+++ b/docs/user-guide/multiple-ingress.md
@@ -2,7 +2,7 @@
 
 By default, deploying multiple Ingress controllers (e.g., `ingress-nginx` & `gce`) will result in all controllers simultaneously racing to update Ingress status fields in confusing ways.
 
-To fix this problem, use [IngressClasses](https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class). The `kubernetes.io/ingress.class` annotation is not being preferred or suggested to use as it can be deprecated in future. Better to use the field `ingress.spec.ingressClassName`.
+To fix this problem, use [IngressClasses](https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class). The `kubernetes.io/ingress.class` annotation is not being preferred or suggested to use as it can be deprecated in the future. Better to use the field `ingress.spec.ingressClassName`.
 But, when user has deployed with `scope.enabled`, then the ingress class resource field is not used.
 
 

From 080c905fabd95fdccbd8deb8efcc108ebd632182 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E6=9D=A8=E5=88=9A=20=20=28=E6=88=90=E9=83=BD=29?=
 <gang.yang@daocloud.io>
Date: Thu, 16 Feb 2023 22:11:39 +0800
Subject: [PATCH 0635/1641] code clean for fsnotify (#9571)

Signed-off-by: yanggang <gang.yang@daocloud.io>
---
 pkg/util/file/file_watcher.go | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/pkg/util/file/file_watcher.go b/pkg/util/file/file_watcher.go
index eeb7b5721..daf955e52 100644
--- a/pkg/util/file/file_watcher.go
+++ b/pkg/util/file/file_watcher.go
@@ -72,8 +72,8 @@ func (f *OSFileWatcher) watch() error {
 		for {
 			select {
 			case event := <-watcher.Events:
-				if event.Op&fsnotify.Create == fsnotify.Create ||
-					event.Op&fsnotify.Write == fsnotify.Write {
+				if event.Has(fsnotify.Create) ||
+					event.Has(fsnotify.Write) {
 					if finfo, err := os.Lstat(event.Name); err != nil {
 						log.Printf("can not lstat file: %v\n", err)
 					} else if finfo.Mode()&os.ModeSymlink != 0 {

From d6bba853511d01d336fbe3c13b34ae23dc187b62 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Herv=C3=A9?= <dud225@users.noreply.github.com>
Date: Thu, 16 Feb 2023 15:15:39 +0100
Subject: [PATCH 0636/1641] Rework Ginkgo usage (#9522)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* Rework Ginkgo usage

Currently Ginkgo is launched multiple times with different options to
accomodate various use-cases. In particular, some specs needs to be run
sequentially because non-namespaced objects are created that conflicts
with concurent Helm deployments.
However Ginkgo is able to handle such cases natively, in particular
specs that needs to be run sequentially are supported (Serial spec).

This commit marks the specs that needs to be run sequentially as Serial
specs and runs the whole test suite from a single Ginkgo invocation. As
a result, a single JUnit report is now generated.

Signed-off-by: Hervé Werner <dud225@hotmail.com>

* Fix controller error in test

Error getting ConfigMap "$NAMESPACE/tcp-services": no object matching key "$NAMESPACE/tcp-services" in local store

Signed-off-by: Hervé Werner <dud225@hotmail.com>

* Replace "go get" invocations by "go install"

Executing "go get" changes the go.mod & go.sum files which is not the
case of "go install".

Signed-off-by: Hervé Werner <dud225@hotmail.com>

* Always clean out the Helm deployment

Signed-off-by: Hervé Werner <dud225@hotmail.com>

* Add E2E test to verify that changes to one or more configmap trigger an update

Signed-off-by: Hervé Werner <dud225@hotmail.com>

---------

Signed-off-by: Hervé Werner <dud225@hotmail.com>
---
 Makefile                                      |   2 +-
 internal/ingress/controller/store/store.go    |   1 -
 internal/k8s/main.go                          |   2 +-
 test/e2e-image/e2e.sh                         |  77 ++++-------
 .../namespace-overlays/topology/values.yaml   |  19 +--
 test/e2e/admission/admission.go               |  17 +--
 test/e2e/annotations/fastcgi.go               |   5 +-
 test/e2e/endpointslices/topology.go           |  19 +--
 test/e2e/framework/exec.go                    |  10 ++
 test/e2e/framework/framework.go               |  18 ++-
 test/e2e/framework/influxdb.go                |   6 +-
 test/e2e/framework/k8s.go                     |  41 ++++--
 test/e2e/leaks/lua_ssl.go                     |   2 +-
 test/e2e/run-chart-test.sh                    |   2 +-
 test/e2e/run-e2e-suite.sh                     |  46 +------
 test/e2e/run-kind-e2e.sh                      |   2 +-
 test/e2e/settings/configmap_change.go         |   4 +
 test/e2e/settings/namespace_selector.go       |  11 +-
 test/e2e/settings/ocsp/ocsp.go                |   4 +-
 test/e2e/tcpudp/tcp.go                        | 129 ++++++++++--------
 20 files changed, 165 insertions(+), 252 deletions(-)

diff --git a/Makefile b/Makefile
index 25855a224..6037ac39d 100644
--- a/Makefile
+++ b/Makefile
@@ -31,7 +31,7 @@ TAG ?= $(shell cat TAG)
 
 # e2e settings
 # Allow limiting the scope of the e2e tests. By default run everything
-FOCUS ?= .*
+FOCUS ?=
 # number of parallel test
 E2E_NODES ?= 7
 # run e2e test suite with tests that check for memory leaks? (default is false)
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index b5731c4bf..7157332c3 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -701,7 +701,6 @@ func New(
 		},
 	}
 
-	// TODO: add e2e test to verify that changes to one or more configmap trigger an update
 	changeTriggerUpdate := func(name string) bool {
 		return name == configmap || name == tcp || name == udp
 	}
diff --git a/internal/k8s/main.go b/internal/k8s/main.go
index e0d2a1660..d61013a9f 100644
--- a/internal/k8s/main.go
+++ b/internal/k8s/main.go
@@ -78,7 +78,7 @@ func GetNodeIPOrName(kubeClient clientset.Interface, name string, useInternalIP
 var (
 	// IngressPodDetails hold information about the ingress-nginx pod
 	IngressPodDetails *PodInfo
-	// IngressNodeDetails old information about the node running ingress-nginx pod
+	// IngressNodeDetails hold information about the node running ingress-nginx pod
 	IngressNodeDetails *NodeInfo
 )
 
diff --git a/test/e2e-image/e2e.sh b/test/e2e-image/e2e.sh
index ed13926fb..f8ecd5337 100755
--- a/test/e2e-image/e2e.sh
+++ b/test/e2e-image/e2e.sh
@@ -14,70 +14,39 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-set -e
+set -eu
 
 NC='\e[0m'
 BGREEN='\e[32m'
 
-#SLOW_E2E_THRESHOLD=${SLOW_E2E_THRESHOLD:-"5s"}
-FOCUS=${FOCUS:-.*}
 E2E_NODES=${E2E_NODES:-5}
 E2E_CHECK_LEAKS=${E2E_CHECK_LEAKS:-""}
 
+reportFile="report-e2e-test-suite.xml"
 ginkgo_args=(
-  "-randomize-all"
-  "-flake-attempts=2"
-  "-fail-fast"
-  "--show-node-events"
+  "--fail-fast"
+  "--flake-attempts=2"
+  "--junit-report=${reportFile}"
+  "--nodes=${E2E_NODES}"
   "--poll-progress-after=180s"
-#  "-slow-spec-threshold=${SLOW_E2E_THRESHOLD}"
-  "-succinct"
-  "-timeout=75m"
+  "--randomize-all"
+  "--show-node-events"
+  "--succinct"
+  "--timeout=75m"
 )
 
-# Variable for the prefix of report filenames
-reportFileNamePrefix="report-e2e-test-suite"
-
-echo -e "${BGREEN}Running e2e test suite (FOCUS=${FOCUS})...${NC}"
-ginkgo "${ginkgo_args[@]}"               \
-  -focus="${FOCUS}"                  \
-  -skip="\[Serial\]|\[MemoryLeak\]|\[TopologyHints\]"  \
-  -nodes="${E2E_NODES}" \
-  --junit-report=$reportFileNamePrefix.xml \
-  /e2e.test
-# Create configMap out of a compressed report file for extraction later
-
-# Must be isolated, there is a collision if multiple helms tries to install same clusterRole at same time
-echo -e "${BGREEN}Running e2e test for topology aware hints...${NC}"
-ginkgo "${ginkgo_args[@]}" \
-  -focus="\[TopologyHints\]" \
-  -skip="\[Serial\]|\[MemoryLeak\]]" \
-  -nodes="${E2E_NODES}" \
-  --junit-report=$reportFileNamePrefix-topology.xml \
-  /e2e.test
-# Create configMap out of a compressed report file for extraction later
-
-echo -e "${BGREEN}Running e2e test suite with tests that require serial execution...${NC}"
-ginkgo "${ginkgo_args[@]}"   \
-  -focus="\[Serial\]"    \
-  -skip="\[MemoryLeak\]" \
-  --junit-report=$reportFileNamePrefix-serial.xml \
-  /e2e.test
-# Create configMap out of a compressed report file for extraction later
-
-if [[ ${E2E_CHECK_LEAKS} != "" ]]; then
-  echo -e "${BGREEN}Running e2e test suite with tests that check for memory leaks...${NC}"
-  ginkgo "${ginkgo_args[@]}"    \
-    -focus="\[MemoryLeak\]" \
-    -skip="\[Serial\]" \
-    --junit-report=$reportFileNamePrefix-memleak.xml \
-    /e2e.test
-# Create configMap out of a compressed report file for extraction later
+if [ -n "${FOCUS}" ]; then
+  ginkgo_args+=("--focus=${FOCUS}")
 fi
 
-for rFile in `ls $reportFileNamePrefix*` 
-do
-  gzip -k $rFile
-  kubectl create cm $rFile.gz --from-file $rFile.gz
-  kubectl label cm $rFile.gz junitreport=true
-done
+if [ -z "${E2E_CHECK_LEAKS}" ]; then
+  ginkgo_args+=("--skip=\[Memory Leak\]")
+fi
+
+echo -e "${BGREEN}Running e2e test suite...${NC}"
+(set -x; ginkgo "${ginkgo_args[@]}" /e2e.test)
+
+# Create configMap out of a compressed report file for extraction later
+gzip -k ${reportFile}
+kubectl create cm ${reportFile}.gz --from-file ${reportFile}.gz
+kubectl label cm ${reportFile}.gz junitreport=true
diff --git a/test/e2e-image/namespace-overlays/topology/values.yaml b/test/e2e-image/namespace-overlays/topology/values.yaml
index 28b1cad19..5e27f7902 100644
--- a/test/e2e-image/namespace-overlays/topology/values.yaml
+++ b/test/e2e-image/namespace-overlays/topology/values.yaml
@@ -8,6 +8,7 @@ controller:
     digest:
     digestChroot:
   scope:
+    # Necessary to allow the ingress controller to get the topology information from the nodes
     enabled: false
   config:
     worker-processes: "1"
@@ -19,12 +20,7 @@ controller:
     periodSeconds: 1
   service:
     type: NodePort
-  electionID: ingress-controller-leader
-  ingressClassResource:
-    # We will create and remove each IC/ClusterRole/ClusterRoleBinding per test so there's no conflict
-    enabled: false
   extraArgs:
-    tcp-services-configmap: $NAMESPACE/tcp-services
     # e2e tests do not require information about ingress status
     update-status: "false"
   terminationGracePeriodSeconds: 1
@@ -33,19 +29,6 @@ controller:
 
   enableTopologyAwareRouting: true
 
-  # ulimit -c unlimited
-  # mkdir -p /tmp/coredump
-  # chmod a+rwx /tmp/coredump
-  # echo "/tmp/coredump/core.%e.%p.%h.%t" > /proc/sys/kernel/core_pattern
-  extraVolumeMounts:
-    - name: coredump
-      mountPath: /tmp/coredump
-
-  extraVolumes:
-    - name: coredump
-      hostPath:
-        path: /tmp/coredump
-
 rbac:
   create: true
   scope: false
diff --git a/test/e2e/admission/admission.go b/test/e2e/admission/admission.go
index bde98fddf..4a4e31980 100644
--- a/test/e2e/admission/admission.go
+++ b/test/e2e/admission/admission.go
@@ -32,7 +32,7 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
-var _ = framework.IngressNginxDescribe("[Serial] admission controller", func() {
+var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller", func() {
 	f := framework.NewDefaultFramework("admission")
 
 	ginkgo.BeforeEach(func() {
@@ -40,11 +40,6 @@ var _ = framework.IngressNginxDescribe("[Serial] admission controller", func() {
 		f.NewSlowEchoDeployment()
 	})
 
-	ginkgo.AfterEach(func() {
-		err := uninstallChart(f)
-		assert.Nil(ginkgo.GinkgoT(), err, "uninstalling helm chart")
-	})
-
 	ginkgo.It("reject ingress with global-rate-limit annotations when memcached is not configured", func() {
 		host := "admission-test"
 
@@ -216,16 +211,6 @@ var _ = framework.IngressNginxDescribe("[Serial] admission controller", func() {
 	})
 })
 
-func uninstallChart(f *framework.Framework) error {
-	cmd := exec.Command("helm", "uninstall", "--namespace", f.Namespace, "nginx-ingress")
-	_, err := cmd.CombinedOutput()
-	if err != nil {
-		return fmt.Errorf("unexpected error uninstalling ingress-nginx release: %v", err)
-	}
-
-	return nil
-}
-
 const (
 	validV1Ingress = `
 apiVersion: networking.k8s.io/v1
diff --git a/test/e2e/annotations/fastcgi.go b/test/e2e/annotations/fastcgi.go
index 0dc6ae4a4..572eca548 100644
--- a/test/e2e/annotations/fastcgi.go
+++ b/test/e2e/annotations/fastcgi.go
@@ -21,7 +21,6 @@ import (
 	"strings"
 
 	"github.com/onsi/ginkgo/v2"
-	"github.com/stretchr/testify/assert"
 	corev1 "k8s.io/api/core/v1"
 
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
@@ -81,9 +80,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - FastCGI", func() {
 			},
 		}
 
-		cm, err := f.EnsureConfigMap(configuration)
-		assert.Nil(ginkgo.GinkgoT(), err, "creating configmap")
-		assert.NotNil(ginkgo.GinkgoT(), cm, "expected a configmap but none returned")
+		f.EnsureConfigMap(configuration)
 
 		host := "fastcgi-params-configmap"
 
diff --git a/test/e2e/endpointslices/topology.go b/test/e2e/endpointslices/topology.go
index ce913e966..7cc67cedb 100644
--- a/test/e2e/endpointslices/topology.go
+++ b/test/e2e/endpointslices/topology.go
@@ -21,7 +21,6 @@ import (
 	"encoding/json"
 	"fmt"
 	"net/http"
-	"os/exec"
 	"strings"
 
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
@@ -33,7 +32,7 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
-var _ = framework.IngressNginxDescribe("[TopologyHints] topology aware routing", func() {
+var _ = framework.IngressNginxDescribeSerial("[TopologyHints] topology aware routing", func() {
 	f := framework.NewDefaultFramework("topology")
 	host := "topology-svc.foo.com"
 
@@ -41,12 +40,6 @@ var _ = framework.IngressNginxDescribe("[TopologyHints] topology aware routing",
 		f.NewEchoDeployment(framework.WithDeploymentReplicas(2), framework.WithSvcTopologyAnnotations())
 	})
 
-	ginkgo.AfterEach(func() {
-		// we need to uninstall chart because of clusterRole which is not destroyed with namespace
-		err := uninstallChart(f)
-		assert.Nil(ginkgo.GinkgoT(), err, "uninstalling helm chart")
-	})
-
 	ginkgo.It("should return 200 when service has topology hints", func() {
 
 		annotations := make(map[string]string)
@@ -100,13 +93,3 @@ var _ = framework.IngressNginxDescribe("[TopologyHints] topology aware routing",
 		}
 	})
 })
-
-func uninstallChart(f *framework.Framework) error {
-	cmd := exec.Command("helm", "uninstall", "--namespace", f.Namespace, "nginx-ingress")
-	_, err := cmd.CombinedOutput()
-	if err != nil {
-		return fmt.Errorf("unexpected error uninstalling ingress-nginx release: %v", err)
-	}
-
-	return nil
-}
diff --git a/test/e2e/framework/exec.go b/test/e2e/framework/exec.go
index 8c8c7ddb0..0284e768c 100644
--- a/test/e2e/framework/exec.go
+++ b/test/e2e/framework/exec.go
@@ -152,6 +152,16 @@ func (f *Framework) KubectlProxy(port int) (int, *exec.Cmd, error) {
 	return -1, cmd, fmt.Errorf("failed to parse port from proxy stdout: %s", output)
 }
 
+func (f *Framework) UninstallChart() error {
+	cmd := exec.Command("helm", "uninstall", "--namespace", f.Namespace, "nginx-ingress")
+	_, err := cmd.CombinedOutput()
+	if err != nil {
+		return fmt.Errorf("unexpected error uninstalling ingress-nginx release: %v", err)
+	}
+
+	return nil
+}
+
 func startCmdAndStreamOutput(cmd *exec.Cmd) (stdout, stderr io.ReadCloser, err error) {
 	stdout, err = cmd.StdoutPipe()
 	if err != nil {
diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index 662cd0879..cac6dfd20 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -150,7 +150,11 @@ func (f *Framework) AfterEach() {
 
 	defer func(kubeClient kubernetes.Interface, ingressclass string) {
 		defer ginkgo.GinkgoRecover()
-		err := deleteIngressClass(kubeClient, ingressclass)
+
+		err := f.UninstallChart()
+		assert.Nil(ginkgo.GinkgoT(), err, "uninstalling helm chart")
+
+		err = deleteIngressClass(kubeClient, ingressclass)
 		assert.Nil(ginkgo.GinkgoT(), err, "deleting IngressClass")
 	}(f.KubeClientSet, f.IngressClass)
 
@@ -192,6 +196,11 @@ func IngressNginxDescribe(text string, body func()) bool {
 	return ginkgo.Describe(text, body)
 }
 
+// IngressNginxDescribeSerial wrapper function for ginkgo describe. Adds namespacing.
+func IngressNginxDescribeSerial(text string, body func()) bool {
+	return ginkgo.Describe(text, ginkgo.Serial, body)
+}
+
 // DescribeAnnotation wrapper function for ginkgo describe. Adds namespacing.
 func DescribeAnnotation(text string, body func()) bool {
 	return ginkgo.Describe("[Annotations] "+text, body)
@@ -202,11 +211,6 @@ func DescribeSetting(text string, body func()) bool {
 	return ginkgo.Describe("[Setting] "+text, body)
 }
 
-// MemoryLeakIt is wrapper function for ginkgo It.  Adds "[MemoryLeak]" tag and makes static analysis easier.
-func MemoryLeakIt(text string, body interface{}) bool {
-	return ginkgo.It(text+" [MemoryLeak]", body)
-}
-
 // GetNginxIP returns the number of TCP port where NGINX is running
 func (f *Framework) GetNginxIP() string {
 	s, err := f.KubeClientSet.
@@ -387,7 +391,7 @@ func (f *Framework) UpdateNginxConfigMapData(key string, value string) {
 }
 
 // WaitForReload calls the passed function and
-// asser it has caused at least 1 reload.
+// asserts it has caused at least 1 reload.
 func (f *Framework) WaitForReload(fn func()) {
 	initialReloadCount := getReloadCount(f.pod, f.Namespace, f.KubeClientSet)
 
diff --git a/test/e2e/framework/influxdb.go b/test/e2e/framework/influxdb.go
index c3c0e3421..43a5702e6 100644
--- a/test/e2e/framework/influxdb.go
+++ b/test/e2e/framework/influxdb.go
@@ -68,9 +68,7 @@ func (f *Framework) NewInfluxDBDeployment() {
 		},
 	}
 
-	cm, err := f.EnsureConfigMap(configuration)
-	assert.Nil(ginkgo.GinkgoT(), err, "creating an Influxdb deployment")
-	assert.NotNil(ginkgo.GinkgoT(), cm, "expected a configmap but none returned")
+	f.EnsureConfigMap(configuration)
 
 	deployment := &appsv1.Deployment{
 		ObjectMeta: metav1.ObjectMeta{
@@ -136,7 +134,7 @@ func (f *Framework) NewInfluxDBDeployment() {
 
 	d := f.EnsureDeployment(deployment)
 
-	err = waitForPodsReady(f.KubeClientSet, DefaultTimeout, 1, f.Namespace, metav1.ListOptions{
+	err := waitForPodsReady(f.KubeClientSet, DefaultTimeout, 1, f.Namespace, metav1.ListOptions{
 		LabelSelector: fields.SelectorFromSet(fields.Set(d.Spec.Template.ObjectMeta.Labels)).String(),
 	})
 	assert.Nil(ginkgo.GinkgoT(), err, "waiting for influxdb pod to become ready")
diff --git a/test/e2e/framework/k8s.go b/test/e2e/framework/k8s.go
index ef9c522d6..fc3e59b08 100644
--- a/test/e2e/framework/k8s.go
+++ b/test/e2e/framework/k8s.go
@@ -25,9 +25,7 @@ import (
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
-	api "k8s.io/api/core/v1"
 	core "k8s.io/api/core/v1"
-	v1 "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	k8sErrors "k8s.io/apimachinery/pkg/api/errors"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
@@ -36,8 +34,8 @@ import (
 	"k8s.io/client-go/kubernetes"
 )
 
-// EnsureSecret creates a Secret object or returns it if it already exists.
-func (f *Framework) EnsureSecret(secret *api.Secret) *api.Secret {
+// EnsureSecret creates a Secret object or returns it.
+func (f *Framework) EnsureSecret(secret *core.Secret) *core.Secret {
 	err := createSecretWithRetries(f.KubeClientSet, secret.Namespace, secret)
 	assert.Nil(ginkgo.GinkgoT(), err, "creating secret")
 
@@ -48,17 +46,30 @@ func (f *Framework) EnsureSecret(secret *api.Secret) *api.Secret {
 	return s
 }
 
-// EnsureConfigMap creates a ConfigMap object or returns it if it already exists.
-func (f *Framework) EnsureConfigMap(configMap *api.ConfigMap) (*api.ConfigMap, error) {
-	cm, err := f.KubeClientSet.CoreV1().ConfigMaps(configMap.Namespace).Create(context.TODO(), configMap, metav1.CreateOptions{})
-	if err != nil {
-		if k8sErrors.IsAlreadyExists(err) {
-			return f.KubeClientSet.CoreV1().ConfigMaps(configMap.Namespace).Update(context.TODO(), configMap, metav1.UpdateOptions{})
-		}
-		return nil, err
+// GetConfigMap gets a ConfigMap object from the given namespace, name and returns it, throws error if it does not exist.
+func (f *Framework) GetConfigMap(namespace string, name string) *core.ConfigMap {
+	cm, err := f.KubeClientSet.CoreV1().ConfigMaps(namespace).Get(context.TODO(), name, metav1.GetOptions{})
+	assert.Nil(ginkgo.GinkgoT(), err, "getting configmap")
+	assert.NotNil(ginkgo.GinkgoT(), cm, "expected a configmap but none returned")
+	return cm
+}
+
+// EnsureConfigMap creates or updates an existing ConfigMap object or returns it.
+func (f *Framework) EnsureConfigMap(configMap *core.ConfigMap) *core.ConfigMap {
+	cm := configMap.DeepCopy()
+	// Clean out ResourceVersion field if present
+	if cm.ObjectMeta.ResourceVersion != "" {
+		cm.ObjectMeta.ResourceVersion = ""
 	}
 
-	return cm, nil
+	res, err := f.KubeClientSet.CoreV1().ConfigMaps(configMap.Namespace).Create(context.TODO(), cm, metav1.CreateOptions{})
+	if k8sErrors.IsAlreadyExists(err) {
+		res, err = f.KubeClientSet.CoreV1().ConfigMaps(configMap.Namespace).Update(context.TODO(), cm, metav1.UpdateOptions{})
+	}
+	assert.Nil(ginkgo.GinkgoT(), err, "updating configmap")
+	assert.NotNil(ginkgo.GinkgoT(), res, "updating configmap")
+
+	return res
 }
 
 // GetIngress gets an Ingress object from the given namespace, name and returns it, throws error if it does not exists.
@@ -293,7 +304,7 @@ func createDeploymentWithRetries(c kubernetes.Interface, namespace string, obj *
 	return retryWithExponentialBackOff(createFunc)
 }
 
-func createSecretWithRetries(c kubernetes.Interface, namespace string, obj *v1.Secret) error {
+func createSecretWithRetries(c kubernetes.Interface, namespace string, obj *core.Secret) error {
 	if obj == nil {
 		return fmt.Errorf("Object provided to create is empty")
 	}
@@ -313,7 +324,7 @@ func createSecretWithRetries(c kubernetes.Interface, namespace string, obj *v1.S
 	return retryWithExponentialBackOff(createFunc)
 }
 
-func createServiceWithRetries(c kubernetes.Interface, namespace string, obj *v1.Service) error {
+func createServiceWithRetries(c kubernetes.Interface, namespace string, obj *core.Service) error {
 	if obj == nil {
 		return fmt.Errorf("Object provided to create is empty")
 	}
diff --git a/test/e2e/leaks/lua_ssl.go b/test/e2e/leaks/lua_ssl.go
index 8ebd05ccb..e63a1e353 100644
--- a/test/e2e/leaks/lua_ssl.go
+++ b/test/e2e/leaks/lua_ssl.go
@@ -39,7 +39,7 @@ var _ = framework.IngressNginxDescribe("[Memory Leak] Dynamic Certificates", fun
 		f.NewEchoDeployment()
 	})
 
-	framework.MemoryLeakIt("should not leak memory from ingress SSL certificates or configuration updates", func() {
+	ginkgo.It("should not leak memory from ingress SSL certificates or configuration updates", func() {
 		hostCount := 1000
 		iterations := 10
 
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index e501ca6fe..d01ab4486 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go get github.com/onsi/ginkgo/v2/ginkgo@v2.6.1
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.6.1
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-e2e-suite.sh b/test/e2e/run-e2e-suite.sh
index 7920c0523..b1de8bf9a 100755
--- a/test/e2e/run-e2e-suite.sh
+++ b/test/e2e/run-e2e-suite.sh
@@ -49,15 +49,9 @@ if [ "$missing" = true ]; then
   exit 1
 fi
 
-E2E_CHECK_LEAKS=${E2E_CHECK_LEAKS:-}
-FOCUS=${FOCUS:-.*}
-
 BASEDIR=$(dirname "$0")
 NGINX_BASE_IMAGE=$(cat $BASEDIR/../../NGINX_BASE)
 
-export E2E_CHECK_LEAKS
-export FOCUS
-
 echo -e "${BGREEN}Granting permissions to ingress-nginx e2e service account...${NC}"
 kubectl create serviceaccount ingress-nginx-e2e || true
 kubectl create clusterrolebinding permissive-binding \
@@ -66,7 +60,6 @@ kubectl create clusterrolebinding permissive-binding \
   --user=kubelet \
   --serviceaccount=default:ingress-nginx-e2e || true
 
-
 VER=$(kubectl version  --client=false -o json |jq '.serverVersion.minor |tonumber')
 if [ $VER -lt 24 ]; then
   echo -e "${BGREEN}Waiting service account...${NC}"; \
@@ -76,7 +69,6 @@ if [ $VER -lt 24 ]; then
   done
 fi
 
-
 echo -e "Starting the e2e test pod"
 
 kubectl run --rm \
@@ -90,38 +82,10 @@ kubectl run --rm \
   e2e --image=nginx-ingress-controller:e2e
 
 # Get the junit-reports stored in the configMaps created during e2etests
-echo "Getting the report files out now.."
+echo "Getting the report file out now.."
 reportsDir="test/junitreports"
-reportFileName="report-e2e-test-suite"
-[ ! -e ${reportsDir} ] && mkdir $reportsDir
+reportFile="report-e2e-test-suite.xml.gz"
+mkdir -p $reportsDir
 cd $reportsDir
-
-# TODO: Seeking Rikatz help here to extract in a loop. Tried things like below without success
-#for cmName in `k get cm -l junitreport=true -o json | jq  '.items[].binaryData | keys[]' | tr '\"' ' '`
-#do
-#
-#
-# kubectl get cm -l junitreport=true -o json | jq -r  '[.items[].binaryData | to_entries[] | {"key": .key, "value": .value  }] | from_entries'
-#
-
-# Below lines successfully extract the report but they are one line per report.
-# We only have 3 ginkgo reports so its ok for now
-# But still, ideally this should be a loop as talked about in comments a few lines above
-kubectl get cm $reportFileName.xml.gz -o "jsonpath={.binaryData['report-e2e-test-suite\.xml\.gz']}" > $reportFileName.xml.gz.base64
-kubectl get cm $reportFileName-serial.xml.gz -o "jsonpath={.binaryData['report-e2e-test-suite-serial\.xml\.gz']}" > $reportFileName-serial.xml.gz.base64
-
-cat $reportFileName.xml.gz.base64 | base64 -d > $reportFileName.xml.gz
-cat $reportFileName-serial.xml.gz.base64 | base64 -d > $reportFileName-serial.xml.gz
-
-gzip -d $reportFileName.xml.gz
-gzip -d $reportFileName-serial.xml.gz
-
-rm *.base64
-cd ../..
-
-# TODO Temporary: if condition to check if the memleak cm exists and only then try the extract for the memleak report
-#
-#kubectl get cm $reportFileName-serial  -o "jsonpath={.data['report-e2e-test-suite-memleak\.xml\.gz']}" > $reportFileName-memleak.base64
-#cat $reportFileName-memleak.base64 | base64 -d > $reportFileName-memleak.xml.gz
-#gzip -d $reportFileName-memleak.xml.gz
-echo "done getting the reports files out.."
+kubectl get cm $reportFile -o "jsonpath={.binaryData['${reportFile//\./\\.}']}" | base64 -d | gunzip > ${reportFile%\.gz}
+echo "done getting the report file out.."
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index bb61706b4..df927bd1c 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -95,7 +95,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go get github.com/onsi/ginkgo/v2/ginkgo@v2.6.1
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.6.1
   fi
 
   echo "[dev-env] .. done building controller images"
diff --git a/test/e2e/settings/configmap_change.go b/test/e2e/settings/configmap_change.go
index be3ab0b11..3e37b62cd 100644
--- a/test/e2e/settings/configmap_change.go
+++ b/test/e2e/settings/configmap_change.go
@@ -73,5 +73,9 @@ var _ = framework.DescribeSetting("Configmap change", func() {
 				return strings.ContainsAny(cfg, "error_log  /var/log/nginx/error.log debug;")
 			})
 		assert.NotEqual(ginkgo.GinkgoT(), checksum, newChecksum)
+
+		logs, err := f.NginxLogs()
+		assert.Nil(ginkgo.GinkgoT(), err, "obtaining nginx logs")
+		assert.Contains(ginkgo.GinkgoT(), logs, "Backend successfully reloaded")
 	})
 })
diff --git a/test/e2e/settings/namespace_selector.go b/test/e2e/settings/namespace_selector.go
index a23514dca..3bf856566 100644
--- a/test/e2e/settings/namespace_selector.go
+++ b/test/e2e/settings/namespace_selector.go
@@ -27,7 +27,7 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
-var _ = framework.IngressNginxDescribe("[Flag] watch namespace selector", func() {
+var _ = framework.IngressNginxDescribeSerial("[Flag] watch namespace selector", func() {
 	f := framework.NewDefaultFramework("namespace-selector")
 	notMatchedHost, matchedHost := "bar", "foo"
 	var notMatchedNs string
@@ -45,7 +45,7 @@ var _ = framework.IngressNginxDescribe("[Flag] watch namespace selector", func()
 
 	cleanupNamespace := func(ns string) {
 		err := framework.DeleteKubeNamespace(f.KubeClientSet, ns)
-		assert.Nil(ginkgo.GinkgoT(), err, "deleting temporarily crated namespace")
+		assert.Nil(ginkgo.GinkgoT(), err, "deleting temporarily created namespace")
 	}
 
 	ginkgo.BeforeEach(func() {
@@ -56,13 +56,6 @@ var _ = framework.IngressNginxDescribe("[Flag] watch namespace selector", func()
 	ginkgo.AfterEach(func() {
 		cleanupNamespace(notMatchedNs)
 		cleanupNamespace(matchedNs)
-
-		// cleanup clusterrole/clusterrolebinding created by installing chart with controller.scope.enabled=false
-		err := f.KubeClientSet.RbacV1().ClusterRoles().Delete(context.TODO(), "nginx-ingress", metav1.DeleteOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "deleting clusterrole nginx-ingress")
-
-		err = f.KubeClientSet.RbacV1().ClusterRoleBindings().Delete(context.TODO(), "nginx-ingress", metav1.DeleteOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "deleting clusterrolebinging nginx-ingress")
 	})
 
 	ginkgo.Context("With specific watch-namespace-selector flags", func() {
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index ea137aeb1..adf4351e7 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -85,7 +85,7 @@ var _ = framework.DescribeSetting("OCSP", func() {
 		cfsslDB, err := os.ReadFile("empty.db")
 		assert.Nil(ginkgo.GinkgoT(), err)
 
-		cmap, err := f.EnsureConfigMap(&corev1.ConfigMap{
+		f.EnsureConfigMap(&corev1.ConfigMap{
 			ObjectMeta: metav1.ObjectMeta{
 				Name:      "ocspserve",
 				Namespace: f.Namespace,
@@ -95,8 +95,6 @@ var _ = framework.DescribeSetting("OCSP", func() {
 				"db-config.json": []byte(`{"driver":"sqlite3","data_source":"/data/empty.db"}`),
 			},
 		})
-		assert.Nil(ginkgo.GinkgoT(), err)
-		assert.NotNil(ginkgo.GinkgoT(), cmap)
 
 		d, s := ocspserveDeployment(f.Namespace)
 		f.EnsureDeployment(d)
diff --git a/test/e2e/tcpudp/tcp.go b/test/e2e/tcpudp/tcp.go
index b62134a03..16a633b63 100644
--- a/test/e2e/tcpudp/tcp.go
+++ b/test/e2e/tcpudp/tcp.go
@@ -21,6 +21,7 @@ import (
 	"fmt"
 	"net"
 	"net/http"
+	"regexp"
 	"strings"
 	"time"
 
@@ -36,58 +37,39 @@ import (
 
 var _ = framework.IngressNginxDescribe("[TCP] tcp-services", func() {
 	f := framework.NewDefaultFramework("tcp")
+	var ip string
+
+	ginkgo.BeforeEach(func() {
+		ip = f.GetNginxIP()
+	})
 
 	ginkgo.It("should expose a TCP service", func() {
 		f.NewEchoDeployment()
 
-		config, err := f.KubeClientSet.
-			CoreV1().
-			ConfigMaps(f.Namespace).
-			Get(context.TODO(), "tcp-services", metav1.GetOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error obtaining tcp-services configmap")
-		assert.NotNil(ginkgo.GinkgoT(), config, "expected a configmap but none returned")
-
-		if config.Data == nil {
-			config.Data = map[string]string{}
+		cm := f.GetConfigMap(f.Namespace, "tcp-services")
+		cm.Data = map[string]string{
+			"8080": fmt.Sprintf("%v/%v:80", f.Namespace, framework.EchoService),
 		}
+		f.EnsureConfigMap(cm)
 
-		config.Data["8080"] = fmt.Sprintf("%v/%v:80", f.Namespace, framework.EchoService)
-
-		_, err = f.KubeClientSet.
-			CoreV1().
-			ConfigMaps(f.Namespace).
-			Update(context.TODO(), config, metav1.UpdateOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error updating configmap")
-
-		svc, err := f.KubeClientSet.
-			CoreV1().
-			Services(f.Namespace).
-			Get(context.TODO(), "nginx-ingress-controller", metav1.GetOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error obtaining ingress-nginx service")
-		assert.NotNil(ginkgo.GinkgoT(), svc, "expected a service but none returned")
-
+		svc := f.GetService(f.Namespace, "nginx-ingress-controller")
 		svc.Spec.Ports = append(svc.Spec.Ports, corev1.ServicePort{
 			Name:       framework.EchoService,
 			Port:       8080,
 			TargetPort: intstr.FromInt(8080),
 		})
-		_, err = f.KubeClientSet.
+		_, err := f.KubeClientSet.
 			CoreV1().
 			Services(f.Namespace).
 			Update(context.TODO(), svc, metav1.UpdateOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error updating service")
 
-		// wait for update and nginx reload and new endpoint is available
-		framework.Sleep()
-
 		f.WaitForNginxConfiguration(
 			func(cfg string) bool {
 				return strings.Contains(cfg, fmt.Sprintf(`ngx.var.proxy_upstream_name="tcp-%v-%v-80"`,
 					f.Namespace, framework.EchoService))
 			})
 
-		ip := f.GetNginxIP()
-
 		f.HTTPTestClient().
 			GET("/").
 			WithURL(fmt.Sprintf("http://%v:8080", ip)).
@@ -122,44 +104,25 @@ var _ = framework.IngressNginxDescribe("[TCP] tcp-services", func() {
 		}
 		f.EnsureService(externalService)
 
-		// Expose the `external name` port on the `ingress-nginx` service
-		svc, err := f.KubeClientSet.
-			CoreV1().
-			Services(f.Namespace).
-			Get(context.TODO(), "nginx-ingress-controller", metav1.GetOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error obtaining ingress-nginx service")
-		assert.NotNil(ginkgo.GinkgoT(), svc, "expected a service but none returned")
-
+		// Expose the `external name` port on the `ingress-nginx-controller` service
+		svc := f.GetService(f.Namespace, "nginx-ingress-controller")
 		svc.Spec.Ports = append(svc.Spec.Ports, corev1.ServicePort{
 			Name:       "dns-svc",
 			Port:       5353,
 			TargetPort: intstr.FromInt(5353),
 		})
-		_, err = f.KubeClientSet.
+		_, err := f.KubeClientSet.
 			CoreV1().
 			Services(f.Namespace).
 			Update(context.TODO(), svc, metav1.UpdateOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error updating service")
 
 		// Update the TCP configmap to link port 5353 to the DNS external name service
-		config, err := f.KubeClientSet.
-			CoreV1().
-			ConfigMaps(f.Namespace).
-			Get(context.TODO(), "tcp-services", metav1.GetOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error obtaining tcp-services configmap")
-		assert.NotNil(ginkgo.GinkgoT(), config, "expected a configmap but none returned")
-
-		if config.Data == nil {
-			config.Data = map[string]string{}
+		config := f.GetConfigMap(f.Namespace, "tcp-services")
+		config.Data = map[string]string{
+			"5353": fmt.Sprintf("%v/dns-external-name-svc:5353", f.Namespace),
 		}
-
-		config.Data["5353"] = fmt.Sprintf("%v/dns-external-name-svc:5353", f.Namespace)
-
-		_, err = f.KubeClientSet.
-			CoreV1().
-			ConfigMaps(f.Namespace).
-			Update(context.TODO(), config, metav1.UpdateOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error updating configmap")
+		f.EnsureConfigMap(config)
 
 		// Validate that the generated nginx config contains the expected `proxy_upstream_name` value
 		f.WaitForNginxConfiguration(
@@ -168,7 +131,6 @@ var _ = framework.IngressNginxDescribe("[TCP] tcp-services", func() {
 			})
 
 		// Execute the test. Use the `external name` service to resolve a domain name.
-		ip := f.GetNginxIP()
 		resolver := net.Resolver{
 			PreferGo: true,
 			Dial: func(ctx context.Context, network, address string) (net.Conn, error) {
@@ -203,4 +165,57 @@ var _ = framework.IngressNginxDescribe("[TCP] tcp-services", func() {
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error from DNS resolver")
 		assert.Contains(ginkgo.GinkgoT(), ips, "8.8.4.4")
 	})
+
+	ginkgo.It("should reload after an update in the configuration", func() {
+
+		ginkgo.By("setting up a first deployment")
+		f.NewEchoDeployment(framework.WithDeploymentName("first-service"))
+
+		cm := f.GetConfigMap(f.Namespace, "tcp-services")
+		cm.Data = map[string]string{
+			"8080": fmt.Sprintf("%v/first-service:80", f.Namespace),
+		}
+		f.EnsureConfigMap(cm)
+
+		checksumRegex := regexp.MustCompile(`Configuration checksum:\s+(\d+)`)
+		checksum := ""
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				// before returning, extract the current checksum
+				match := checksumRegex.FindStringSubmatch(cfg)
+				if len(match) > 0 {
+					checksum = match[1]
+				}
+
+				return strings.Contains(cfg, fmt.Sprintf(`ngx.var.proxy_upstream_name="tcp-%v-first-service-80"`,
+					f.Namespace))
+			})
+		assert.NotEmpty(ginkgo.GinkgoT(), checksum)
+
+		ginkgo.By("updating the tcp service to a second deployment")
+		f.NewEchoDeployment(framework.WithDeploymentName("second-service"))
+
+		cm = f.GetConfigMap(f.Namespace, "tcp-services")
+		cm.Data["8080"] = fmt.Sprintf("%v/second-service:80", f.Namespace)
+		f.EnsureConfigMap(cm)
+
+		newChecksum := ""
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				match := checksumRegex.FindStringSubmatch(cfg)
+				if len(match) > 0 {
+					newChecksum = match[1]
+				}
+
+				return strings.Contains(cfg, fmt.Sprintf(`ngx.var.proxy_upstream_name="tcp-%v-second-service-80"`,
+					f.Namespace))
+			})
+		assert.NotEqual(ginkgo.GinkgoT(), checksum, newChecksum)
+
+		logs, err := f.NginxLogs()
+		assert.Nil(ginkgo.GinkgoT(), err, "obtaining nginx logs")
+		assert.Contains(ginkgo.GinkgoT(), logs, "Backend successfully reloaded")
+	})
+
 })

From 4aef45c17734d7dcba32a2032f97ac604c59d7bd Mon Sep 17 00:00:00 2001
From: Toon Schoenmakers <schoentoon@users.noreply.github.com>
Date: Fri, 17 Feb 2023 22:48:10 +0100
Subject: [PATCH 0637/1641] controller: Don't panic when ready condition in a
 endpointslice is missing (#9550)

---
 internal/ingress/controller/endpointslices.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/internal/ingress/controller/endpointslices.go b/internal/ingress/controller/endpointslices.go
index 34d5266dd..56e7a2dcb 100644
--- a/internal/ingress/controller/endpointslices.go
+++ b/internal/ingress/controller/endpointslices.go
@@ -128,7 +128,7 @@ func getEndpointsFromSlices(s *corev1.Service, port *corev1.ServicePort, proto c
 		}
 
 		for _, ep := range eps.Endpoints {
-			if !(*ep.Conditions.Ready) {
+			if (ep.Conditions.Ready != nil) && !(*ep.Conditions.Ready) {
 				continue
 			}
 			epHasZone := false

From 9126401eebf81e75bed25b5c7a1d0bbf94e2ecb6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 17 Feb 2023 16:00:03 -0800
Subject: [PATCH 0638/1641] Bump golang.org/x/net in
 /images/kube-webhook-certgen/rootfs (#9645)

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.1.0 to 0.7.0.
- [Release notes](https://github.com/golang/net/releases)
- [Commits](https://github.com/golang/net/compare/v0.1.0...v0.7.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 images/kube-webhook-certgen/rootfs/go.mod |  8 ++++----
 images/kube-webhook-certgen/rootfs/go.sum | 20 ++++++++------------
 2 files changed, 12 insertions(+), 16 deletions(-)

diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index b98adf58b..a6e2b7ed2 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -29,11 +29,11 @@ require (
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
 	github.com/tidwall/gjson v1.14.0 // indirect
-	golang.org/x/net v0.1.0 // indirect
+	golang.org/x/net v0.7.0 // indirect
 	golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d // indirect
-	golang.org/x/sys v0.1.0 // indirect
-	golang.org/x/term v0.1.0 // indirect
-	golang.org/x/text v0.4.0 // indirect
+	golang.org/x/sys v0.5.0 // indirect
+	golang.org/x/term v0.5.0 // indirect
+	golang.org/x/text v0.7.0 // indirect
 	golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
 	google.golang.org/appengine v1.6.5 // indirect
 	google.golang.org/protobuf v1.26.0 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 0270e3297..7817b7f29 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -89,7 +89,6 @@ github.com/dustin/go-humanize v1.0.0/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25Kn
 github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153/go.mod h1:/Zj4wYkgs4iZTTu3o/KG3Itv/qCCa8VVMlb3i9OVuzc=
 github.com/emicklei/go-restful v0.0.0-20170410110728-ff4f55a20633/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
 github.com/emicklei/go-restful v2.9.5+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
-github.com/emicklei/go-restful v2.16.0+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=
@@ -484,8 +483,8 @@ golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20201202161906-c7110b5ffcbb/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
 golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.1.0 h1:hZ/3BUoy5aId7sCpA/Tc5lt8DkFgdVS2onTpJsZ/fl0=
-golang.org/x/net v0.1.0/go.mod h1:Cx3nUiGt4eDBEyega/BKRp+/AlGL8hYe7U9odMt2Cco=
+golang.org/x/net v0.7.0 h1:rJrUqqhjsgNp7KqAIc25s9pZnjU7TUcSY7HcVZjdn1g=
+golang.org/x/net v0.7.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -545,16 +544,14 @@ golang.org/x/sys v0.0.0-20210403161142-5e06dd20ab57/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.1.0 h1:kunALQeHf1/185U1i0GOB/fy1IPRDDpuoOOqRReG57U=
-golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.5.0 h1:MUK/U/4lj1t1oPg0HfuXDN/Z1wv31ZJ/YcPiGccS4DU=
+golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.1.0 h1:g6Z6vPFA9dYBAF7DWcH6sCcOntplXsDKcliusYijMlw=
-golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
+golang.org/x/term v0.5.0 h1:n2a8QNdAb0sZNpU9R1ALUXBbY+w51fCQDN+7EdxNBsY=
+golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -562,8 +559,8 @@ golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.4.0 h1:BrVqGRd7+k1DiOgtnFvAkoQEWQvBc25ouMJM6429SFg=
-golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.7.0 h1:4BRB4x83lYWy72KwLD/qYDuTu7q9PjSagHvijDw7cLo=
+golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
@@ -708,7 +705,6 @@ gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
 gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.0-20200615113413-eeeca48fe776/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b h1:h8qDotaEPuJATrMmW04NCwg7v22aHH28wwpauUhK9Oo=
 gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.0 h1:hjy8E9ON/egN1tAYqKb61G10WtihqetD4sz2H+8nIeA=
 gopkg.in/yaml.v3 v3.0.0/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=

From d21ae2dbf6810158e912dcba0ef5f5775f823978 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sat, 18 Feb 2023 17:11:37 +0530
Subject: [PATCH 0639/1641] changed v1.6.3 to v1.6.4 on deploy docs (#9647)

---
 docs/deploy/index.md | 22 +++++++++++-----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 57df7a215..49340e2f5 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -62,7 +62,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -225,7 +225,7 @@ In AWS, we use a Network load balancer (NLB) to expose the NGINX Ingress control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -233,10 +233,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -282,7 +282,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -299,7 +299,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -307,7 +307,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -315,7 +315,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -330,7 +330,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -357,7 +357,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.3/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),
@@ -429,4 +429,4 @@ of the NGINX Ingress Controller (e.g. version 0.49).
 
 The Helm chart of the NGINX Ingress Controller switched to version 1 in version 4 of the chart. In other words, if 
 you're running Kubernetes 1.19 or earlier, you should use version 3.X of the chart (this can be done by adding 
-`--version='<4'` to the `helm install` command).
+`--version='<4'` to the `helm install` command ).

From c5d73d58c69f71a8d1aecad6b5c15b5ede4a23e8 Mon Sep 17 00:00:00 2001
From: Mitsuo Heijo <25817501+johejo@users.noreply.github.com>
Date: Thu, 23 Feb 2023 00:27:57 +0900
Subject: [PATCH 0640/1641] migrate mitchellh/hashstructure to v2 (#9651)

---
 go.mod                                                 | 2 +-
 go.sum                                                 | 4 ++--
 internal/ingress/controller/controller.go              | 4 ++--
 internal/ingress/controller/template/configmap.go      | 4 ++--
 internal/ingress/controller/template/configmap_test.go | 8 ++++----
 5 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/go.mod b/go.mod
index d942c1637..2b51cda17 100644
--- a/go.mod
+++ b/go.mod
@@ -10,7 +10,7 @@ require (
 	github.com/json-iterator/go v1.1.12
 	github.com/kylelemons/godebug v1.1.0
 	github.com/mitchellh/go-ps v1.0.0
-	github.com/mitchellh/hashstructure v1.1.0
+	github.com/mitchellh/hashstructure/v2 v2.0.2
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
diff --git a/go.sum b/go.sum
index b1f6269a6..fe147d4a5 100644
--- a/go.sum
+++ b/go.sum
@@ -248,8 +248,8 @@ github.com/matttproud/golang_protobuf_extensions v1.0.4 h1:mmDVorXM7PCGKw94cs5zk
 github.com/matttproud/golang_protobuf_extensions v1.0.4/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
 github.com/mitchellh/go-ps v1.0.0 h1:i6ampVEEF4wQFF+bkYfwYgY+F/uYJDktmvLPf7qIgjc=
 github.com/mitchellh/go-ps v1.0.0/go.mod h1:J4lOc8z8yJs6vUwklHw2XEIiT4z4C40KtWVN3nvg8Pg=
-github.com/mitchellh/hashstructure v1.1.0 h1:P6P1hdjqAAknpY/M1CGipelZgp+4y9ja9kmUZPXP+H0=
-github.com/mitchellh/hashstructure v1.1.0/go.mod h1:xUDAozZz0Wmdiufv0uyhnHkUTN6/6d8ulp4AwfLKrmA=
+github.com/mitchellh/hashstructure/v2 v2.0.2 h1:vGKWl0YJqUNxE8d+h8f6NJLcCJrgbhC4NcD46KavDd4=
+github.com/mitchellh/hashstructure/v2 v2.0.2/go.mod h1:MG3aRVU/N29oo/V/IhBX8GR/zz4kQkprJgF2EVszyDE=
 github.com/mitchellh/mapstructure v1.5.0 h1:jeMsZIYE/09sWLaz43PL7Gy6RuMjD2eJVyuac5Z2hdY=
 github.com/mitchellh/mapstructure v1.5.0/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo=
 github.com/mmarkdown/mmark v2.0.40+incompatible h1:vMeUeDzBK3H+/mU0oMVfMuhSXJlIA+DE/DMPQNAj5C4=
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index a77d2ff37..1914765d8 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -23,7 +23,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/mitchellh/hashstructure"
+	"github.com/mitchellh/hashstructure/v2"
 	apiv1 "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	apiequality "k8s.io/apimachinery/pkg/api/equality"
@@ -187,7 +187,7 @@ func (n *NGINXController) syncIngress(interface{}) error {
 	if !utilingress.IsDynamicConfigurationEnough(pcfg, n.runningConfig) {
 		klog.InfoS("Configuration changes detected, backend reload required")
 
-		hash, _ := hashstructure.Hash(pcfg, &hashstructure.HashOptions{
+		hash, _ := hashstructure.Hash(pcfg, hashstructure.FormatV1, &hashstructure.HashOptions{
 			TagName: "json",
 		})
 
diff --git a/internal/ingress/controller/template/configmap.go b/internal/ingress/controller/template/configmap.go
index 61e8e4998..c73f3b6c0 100644
--- a/internal/ingress/controller/template/configmap.go
+++ b/internal/ingress/controller/template/configmap.go
@@ -26,7 +26,7 @@ import (
 
 	"k8s.io/klog/v2"
 
-	"github.com/mitchellh/hashstructure"
+	"github.com/mitchellh/hashstructure/v2"
 	"github.com/mitchellh/mapstructure"
 
 	"k8s.io/apimachinery/pkg/util/sets"
@@ -431,7 +431,7 @@ func ReadConfig(src map[string]string) config.Configuration {
 		klog.Warningf("unexpected error merging defaults: %v", err)
 	}
 
-	hash, err := hashstructure.Hash(to, &hashstructure.HashOptions{
+	hash, err := hashstructure.Hash(to, hashstructure.FormatV1, &hashstructure.HashOptions{
 		TagName: "json",
 	})
 	if err != nil {
diff --git a/internal/ingress/controller/template/configmap_test.go b/internal/ingress/controller/template/configmap_test.go
index ebe55d192..dad841694 100644
--- a/internal/ingress/controller/template/configmap_test.go
+++ b/internal/ingress/controller/template/configmap_test.go
@@ -23,7 +23,7 @@ import (
 	"time"
 
 	"github.com/kylelemons/godebug/pretty"
-	"github.com/mitchellh/hashstructure"
+	"github.com/mitchellh/hashstructure/v2"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/authreq"
 	"k8s.io/ingress-nginx/internal/ingress/controller/config"
@@ -104,7 +104,7 @@ func TestMergeConfigMapToStruct(t *testing.T) {
 	def.DefaultType = "text/plain"
 	def.DebugConnections = []string{"127.0.0.1", "1.1.1.1/24", "::1"}
 
-	hash, err := hashstructure.Hash(def, &hashstructure.HashOptions{
+	hash, err := hashstructure.Hash(def, hashstructure.FormatV1, &hashstructure.HashOptions{
 		TagName: "json",
 	})
 	if err != nil {
@@ -134,7 +134,7 @@ func TestMergeConfigMapToStruct(t *testing.T) {
 	def.LuaSharedDicts = defaultLuaSharedDicts
 	def.DisableIpv6DNS = true
 
-	hash, err = hashstructure.Hash(def, &hashstructure.HashOptions{
+	hash, err = hashstructure.Hash(def, hashstructure.FormatV1, &hashstructure.HashOptions{
 		TagName: "json",
 	})
 	if err != nil {
@@ -155,7 +155,7 @@ func TestMergeConfigMapToStruct(t *testing.T) {
 	def.WhitelistSourceRange = []string{"1.1.1.1/32"}
 	def.DisableIpv6DNS = true
 
-	hash, err = hashstructure.Hash(def, &hashstructure.HashOptions{
+	hash, err = hashstructure.Hash(def, hashstructure.FormatV1, &hashstructure.HashOptions{
 		TagName: "json",
 	})
 	if err != nil {

From 6865ee0fba2d0f4256463d3fce747d89d4c69698 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 22 Feb 2023 07:37:57 -0800
Subject: [PATCH 0641/1641] Bump golang.org/x/net from 0.6.0 to 0.7.0 (#9646)

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/golang/net/releases)
- [Commits](https://github.com/golang/net/compare/v0.6.0...v0.7.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 2b51cda17..2b485801f 100644
--- a/go.mod
+++ b/go.mod
@@ -99,7 +99,7 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.7.0 // indirect
-	golang.org/x/net v0.6.0 // indirect
+	golang.org/x/net v0.7.0 // indirect
 	golang.org/x/oauth2 v0.4.0 // indirect
 	golang.org/x/sys v0.5.0 // indirect
 	golang.org/x/term v0.5.0 // indirect
diff --git a/go.sum b/go.sum
index fe147d4a5..741fa7b5b 100644
--- a/go.sum
+++ b/go.sum
@@ -471,8 +471,8 @@ golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.6.0 h1:L4ZwwTvKW9gr0ZMS1yrHD9GZhIuVjOBBnaKH+SPQK0Q=
-golang.org/x/net v0.6.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
+golang.org/x/net v0.7.0 h1:rJrUqqhjsgNp7KqAIc25s9pZnjU7TUcSY7HcVZjdn1g=
+golang.org/x/net v0.7.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=

From 33b3dc32153699517908404099cff779dac0b296 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 22 Feb 2023 07:39:57 -0800
Subject: [PATCH 0642/1641] Bump github.com/prometheus/common from 0.39.0 to
 0.40.0 (#9653)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.39.0 to 0.40.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.39.0...v0.40.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 2b485801f..8c4a7123c 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.14.0
 	github.com/prometheus/client_model v0.3.0
-	github.com/prometheus/common v0.39.0
+	github.com/prometheus/common v0.40.0
 	github.com/spf13/cobra v1.6.1
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.1
diff --git a/go.sum b/go.sum
index 741fa7b5b..31c11e5a4 100644
--- a/go.sum
+++ b/go.sum
@@ -320,8 +320,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.39.0 h1:oOyhkDq05hPZKItWVBkJ6g6AtGxi+fy7F4JvUV8uhsI=
-github.com/prometheus/common v0.39.0/go.mod h1:6XBZ7lYdLCbkAVhwRsWTZn+IN5AB9F/NXd5w0BbEX0Y=
+github.com/prometheus/common v0.40.0 h1:Afz7EVRqGg2Mqqf4JuF9vdvp1pi220m55Pi9T2JnO4Q=
+github.com/prometheus/common v0.40.0/go.mod h1:L65ZJPSmfn/UBWLQIHV7dBrKFidB/wPlF1y5TlSt9OE=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=

From dc61f6cd8bdc9dfa87ee8924d16838549242cf2b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 27 Feb 2023 04:26:19 -0800
Subject: [PATCH 0643/1641] Bump github.com/stretchr/testify from 1.8.1 to
 1.8.2 (#9675)

Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.1 to 1.8.2.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.8.1...v1.8.2)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 8c4a7123c..00765b534 100644
--- a/go.mod
+++ b/go.mod
@@ -22,7 +22,7 @@ require (
 	github.com/prometheus/common v0.40.0
 	github.com/spf13/cobra v1.6.1
 	github.com/spf13/pflag v1.0.5
-	github.com/stretchr/testify v1.8.1
+	github.com/stretchr/testify v1.8.2
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.6.0
diff --git a/go.sum b/go.sum
index 31c11e5a4..6274257aa 100644
--- a/go.sum
+++ b/go.sum
@@ -364,8 +364,8 @@ github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
-github.com/stretchr/testify v1.8.1 h1:w7B6lhMri9wdJUVmEZPGGhZzrYTPvgJArz7wNPgYKsk=
-github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
+github.com/stretchr/testify v1.8.2 h1:+h33VjcLVPDHtOdpUCuF+7gSuG3yGIftsP1YvFihtJ8=
+github.com/stretchr/testify v1.8.2/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=

From 640bdac76d8c5b0505b10255a3195709b971154f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 5 Mar 2023 10:56:57 -0800
Subject: [PATCH 0644/1641] Bump golang.org/x/sys in
 /images/custom-error-pages/rootfs (#9671)

Bumps [golang.org/x/sys](https://github.com/golang/sys) from 0.0.0-20210603081109-ebe580a85c40 to 0.1.0.
- [Release notes](https://github.com/golang/sys/releases)
- [Commits](https://github.com/golang/sys/commits/v0.1.0)

---
updated-dependencies:
- dependency-name: golang.org/x/sys
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 images/custom-error-pages/rootfs/go.mod | 2 +-
 images/custom-error-pages/rootfs/go.sum | 3 ++-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 515b72c09..2e762d091 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -12,6 +12,6 @@ require (
 	github.com/prometheus/client_model v0.2.0 // indirect
 	github.com/prometheus/common v0.26.0 // indirect
 	github.com/prometheus/procfs v0.6.0 // indirect
-	golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40 // indirect
+	golang.org/x/sys v0.1.0 // indirect
 	google.golang.org/protobuf v1.28.0 // indirect
 )
diff --git a/images/custom-error-pages/rootfs/go.sum b/images/custom-error-pages/rootfs/go.sum
index d071619b7..a5f86cade 100644
--- a/images/custom-error-pages/rootfs/go.sum
+++ b/images/custom-error-pages/rootfs/go.sum
@@ -113,8 +113,9 @@ golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200615200032-f1bc736245b1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40 h1:JWgyZ1qgdTaF3N3oxC+MdTV7qvEEgHo3otj+HB5CM7Q=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.1.0 h1:kunALQeHf1/185U1i0GOB/fy1IPRDDpuoOOqRReG57U=
+golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=

From 82e836fbe89815ba57dcc1c8f9e370773d6bf291 Mon Sep 17 00:00:00 2001
From: cui fliter <imcusg@gmail.com>
Date: Mon, 6 Mar 2023 03:00:57 +0800
Subject: [PATCH 0645/1641] fix some comments (#9688)

Signed-off-by: cui fliter <imcusg@gmail.com>
---
 docs/developer-guide/code-overview.md             | 2 +-
 images/kube-webhook-certgen/rootfs/pkg/k8s/k8s.go | 2 +-
 internal/ingress/controller/endpointslices.go     | 2 +-
 internal/ingress/controller/template/template.go  | 2 +-
 magefiles/helm.go                                 | 7 ++++---
 pkg/util/ingress/ingress.go                       | 2 +-
 test/e2e/settings/ssl_passthrough.go              | 2 +-
 7 files changed, 10 insertions(+), 9 deletions(-)

diff --git a/docs/developer-guide/code-overview.md b/docs/developer-guide/code-overview.md
index c55fb69f9..a26083c6a 100644
--- a/docs/developer-guide/code-overview.md
+++ b/docs/developer-guide/code-overview.md
@@ -104,7 +104,7 @@ Describe here `kubectl plugin`, `dbg`, `waitshutdown` and cover the hack scripts
 
 ### kubectl plugin
 
-It containes kubectl plugin for inspecting your ingress-nginx deployments.
+It contains kubectl plugin for inspecting your ingress-nginx deployments.
 This part of code can be found in [cmd/plugin](https://github.com/kubernetes/ingress-nginx/tree/main/cmd/plugin) directory
 Detail functions flow and available flow can be found in [kubectl-plugin](https://github.com/kubernetes/ingress-nginx/blob/main/docs/kubectl-plugin.md)
 
diff --git a/images/kube-webhook-certgen/rootfs/pkg/k8s/k8s.go b/images/kube-webhook-certgen/rootfs/pkg/k8s/k8s.go
index 0034235fb..6018b4253 100644
--- a/images/kube-webhook-certgen/rootfs/pkg/k8s/k8s.go
+++ b/images/kube-webhook-certgen/rootfs/pkg/k8s/k8s.go
@@ -105,7 +105,7 @@ func (k8s *k8s) patchAPIService(ctx context.Context, objectName string, ca []byt
 	return nil
 }
 
-// PatchWebhookConfigurations will patch validatingWebhook and mutatingWebhook clientConfig configurations with
+// patchWebhookConfigurations will patch validatingWebhook and mutatingWebhook clientConfig configurations with
 // the provided ca data. If failurePolicy is provided, patch all webhooks with this value
 func (k8s *k8s) patchWebhookConfigurations(
 	ctx context.Context,
diff --git a/internal/ingress/controller/endpointslices.go b/internal/ingress/controller/endpointslices.go
index 56e7a2dcb..ca6e595c8 100644
--- a/internal/ingress/controller/endpointslices.go
+++ b/internal/ingress/controller/endpointslices.go
@@ -34,7 +34,7 @@ import (
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
-// getEndpoints returns a list of Endpoint structs for a given service/target port combination.
+// getEndpointsFromSlices returns a list of Endpoint structs for a given service/target port combination.
 func getEndpointsFromSlices(s *corev1.Service, port *corev1.ServicePort, proto corev1.Protocol, zoneForHints string,
 	getServiceEndpointsSlices func(string) ([]*discoveryv1.EndpointSlice, error)) []ingress.Endpoint {
 
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index ea9807bd0..f3283a782 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -1732,7 +1732,7 @@ func buildServerName(hostname string) string {
 	return `~^(?<subdomain>[\w-]+)\.` + strings.Join(parts, "\\.") + `$`
 }
 
-// parseComplexNGINXVar parses things like "$my${complex}ngx\$var" into
+// parseComplexNginxVarIntoLuaTable parses things like "$my${complex}ngx\$var" into
 // [["$var", "complex", "my", "ngx"]]. In other words, 2nd and 3rd elements
 // in the result are actual NGINX variable names, whereas first and 4th elements
 // are string literals.
diff --git a/magefiles/helm.go b/magefiles/helm.go
index e69c4e029..93c440584 100644
--- a/magefiles/helm.go
+++ b/magefiles/helm.go
@@ -20,14 +20,15 @@ package main
 
 import (
 	"fmt"
+	"os"
+	"strings"
+
 	semver "github.com/blang/semver/v4"
 	"github.com/helm/helm/pkg/chartutil"
 	"github.com/magefile/mage/mg"
 	"github.com/magefile/mage/sh"
 	yamlpath "github.com/vmware-labs/yaml-jsonpath/pkg/yamlpath"
 	"gopkg.in/yaml.v3"
-	"os"
-	"strings"
 )
 
 const HelmChartPath = "charts/ingress-nginx/Chart.yaml"
@@ -114,7 +115,7 @@ func UpdateChartChangelog() {
 
 }
 
-// UpdateAppVersion Updates the Helm App Version of Ingress Nginx Controller
+// UpdateChartValue Updates the Helm ChartValue
 func (Helm) UpdateChartValue(key, value string) {
 	updateChartValue(key, value)
 }
diff --git a/pkg/util/ingress/ingress.go b/pkg/util/ingress/ingress.go
index 39ca3f883..e69ca7b29 100644
--- a/pkg/util/ingress/ingress.go
+++ b/pkg/util/ingress/ingress.go
@@ -46,7 +46,7 @@ func GetRemovedHosts(rucfg, newcfg *ingress.Configuration) []string {
 	return oldSet.Difference(newSet).List()
 }
 
-// GetRemovedCertificateSerialNumber extracts the difference of certificates between two configurations
+// GetRemovedCertificateSerialNumbers extracts the difference of certificates between two configurations
 func GetRemovedCertificateSerialNumbers(rucfg, newcfg *ingress.Configuration) []string {
 	oldCertificates := sets.NewString()
 	newCertificates := sets.NewString()
diff --git a/test/e2e/settings/ssl_passthrough.go b/test/e2e/settings/ssl_passthrough.go
index 77a3c990e..a906a2d11 100644
--- a/test/e2e/settings/ssl_passthrough.go
+++ b/test/e2e/settings/ssl_passthrough.go
@@ -81,7 +81,7 @@ var _ = framework.IngressNginxDescribe("[Flag] enable-ssl-passthrough", func() {
 			host := "testpassthrough.com"
 			echoName := "echopass"
 
-			/* Even with enable-ssl-passthrough enabled, only annotated ingresses may receive the trafic */
+			/* Even with enable-ssl-passthrough enabled, only annotated ingresses may receive the traffic */
 			annotations := map[string]string{
 				"nginx.ingress.kubernetes.io/ssl-passthrough": "true",
 			}

From c84003e3b1e34d8a3c8cce6a026c267e37a0fbea Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 5 Mar 2023 12:10:58 -0800
Subject: [PATCH 0646/1641] Bump golang.org/x/net in /magefiles (#9692)

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.0.0-20220722155237-a158d28d115b to 0.7.0.
- [Release notes](https://github.com/golang/net/releases)
- [Commits](https://github.com/golang/net/commits/v0.7.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 magefiles/go.mod | 2 +-
 magefiles/go.sum | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/magefiles/go.mod b/magefiles/go.mod
index 31c11a061..613e5fb1f 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -23,7 +23,7 @@ require (
 	github.com/google/go-querystring v1.1.0 // indirect
 	github.com/stretchr/testify v1.8.1 // indirect
 	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5 // indirect
-	golang.org/x/net v0.0.0-20220722155237-a158d28d115b // indirect
+	golang.org/x/net v0.7.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/protobuf v1.28.0 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
diff --git a/magefiles/go.sum b/magefiles/go.sum
index 38a4235f6..f6b4786a5 100644
--- a/magefiles/go.sum
+++ b/magefiles/go.sum
@@ -64,17 +64,17 @@ golang.org/x/crypto v0.0.0-20210817164053-32db794688a5 h1:HWj/xjIHfjYU5nVXpTM0s3
 golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
-golang.org/x/net v0.0.0-20220722155237-a158d28d115b h1:PxfKdU9lEEDYjdIzOtC4qFWgkU2rGHdKlKowJSMN9h0=
-golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
+golang.org/x/net v0.7.0 h1:rJrUqqhjsgNp7KqAIc25s9pZnjU7TUcSY7HcVZjdn1g=
+golang.org/x/net v0.7.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be h1:vEDujvNQGv4jgYKudGeI/+DAX4Jffq6hpD55MmoEvKs=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a h1:dGzPydgVsqGcTRVwiLJ1jVbufYwmzD3LfVPLKsKg+0k=
+golang.org/x/sys v0.5.0 h1:MUK/U/4lj1t1oPg0HfuXDN/Z1wv31ZJ/YcPiGccS4DU=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
-golang.org/x/text v0.3.7 h1:olpwvP2KacW1ZWvsR7uQhoyTYvKAupfQrRGBFM352Gk=
+golang.org/x/text v0.7.0 h1:4BRB4x83lYWy72KwLD/qYDuTu7q9PjSagHvijDw7cLo=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/appengine v1.6.7 h1:FZR1q0exgwxzPzp/aF+VccGrSfxfPpkBqjIIEq3ru6c=

From 0bb07bffd02e104b68d3ab7e5603924e8d117bde Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 6 Mar 2023 23:22:18 -0800
Subject: [PATCH 0647/1641] Bump sigs.k8s.io/controller-runtime from 0.14.2 to
 0.14.5 (#9697)

Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) from 0.14.2 to 0.14.5.
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases)
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.14.2...v0.14.5)

---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-runtime
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 00765b534..0ffda4dcf 100644
--- a/go.mod
+++ b/go.mod
@@ -40,7 +40,7 @@ require (
 	k8s.io/component-base v0.26.1
 	k8s.io/klog/v2 v2.90.0
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.14.2
+	sigs.k8s.io/controller-runtime v0.14.5
 	sigs.k8s.io/mdtoc v1.1.0
 )
 
diff --git a/go.sum b/go.sum
index 6274257aa..a9f0db95e 100644
--- a/go.sum
+++ b/go.sum
@@ -767,8 +767,8 @@ pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
-sigs.k8s.io/controller-runtime v0.14.2 h1:P6IwDhbsRWsBClt/8/h8Zy36bCuGuW5Op7MHpFrN/60=
-sigs.k8s.io/controller-runtime v0.14.2/go.mod h1:WqIdsAY6JBsjfc/CqO0CORmNtoCtE4S6qbPc9s68h+0=
+sigs.k8s.io/controller-runtime v0.14.5 h1:6xaWFqzT5KuAQ9ufgUaj1G/+C4Y1GRkhrxl+BJ9i+5s=
+sigs.k8s.io/controller-runtime v0.14.5/go.mod h1:WqIdsAY6JBsjfc/CqO0CORmNtoCtE4S6qbPc9s68h+0=
 sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 h1:iXTIw73aPyC+oRdyqqvVJuloN1p0AC/kzH07hu3NE+k=
 sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/kustomize/api v0.12.1 h1:7YM7gW3kYBwtKvoY216ZzY+8hM+lV53LUayghNRJ0vM=

From ec2fe2b6d1e99202d15b6c0577bcfd69cf461c3a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 7 Mar 2023 11:54:41 -0800
Subject: [PATCH 0648/1641] Bump github.com/prometheus/common from 0.40.0 to
 0.41.0 (#9698)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.40.0 to 0.41.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.40.0...v0.41.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 0ffda4dcf..e85419dcc 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.14.0
 	github.com/prometheus/client_model v0.3.0
-	github.com/prometheus/common v0.40.0
+	github.com/prometheus/common v0.41.0
 	github.com/spf13/cobra v1.6.1
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.2
@@ -100,7 +100,7 @@ require (
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.7.0 // indirect
 	golang.org/x/net v0.7.0 // indirect
-	golang.org/x/oauth2 v0.4.0 // indirect
+	golang.org/x/oauth2 v0.5.0 // indirect
 	golang.org/x/sys v0.5.0 // indirect
 	golang.org/x/term v0.5.0 // indirect
 	golang.org/x/text v0.7.0 // indirect
diff --git a/go.sum b/go.sum
index a9f0db95e..0729873ef 100644
--- a/go.sum
+++ b/go.sum
@@ -320,8 +320,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.40.0 h1:Afz7EVRqGg2Mqqf4JuF9vdvp1pi220m55Pi9T2JnO4Q=
-github.com/prometheus/common v0.40.0/go.mod h1:L65ZJPSmfn/UBWLQIHV7dBrKFidB/wPlF1y5TlSt9OE=
+github.com/prometheus/common v0.41.0 h1:npo01n6vUlRViIj5fgwiK8vlNIh8bnoxqh3gypKsyAw=
+github.com/prometheus/common v0.41.0/go.mod h1:xBwqVerjNdUDjgODMpudtOMwlOwf2SaTr1yjz4b7Zbc=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
@@ -479,8 +479,8 @@ golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4Iltr
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.4.0 h1:NF0gk8LVPg1Ml7SSbGyySuoxdsXitj7TvgvuRxIMc/M=
-golang.org/x/oauth2 v0.4.0/go.mod h1:RznEsdpjGAINPTOF0UH/t+xJ75L18YO3Ho6Pyn+uRec=
+golang.org/x/oauth2 v0.5.0 h1:HuArIo48skDwlrvM3sEdHXElYslAMsf3KwRkkW4MC4s=
+golang.org/x/oauth2 v0.5.0/go.mod h1:9/XBHVqLaWO3/BRHs5jbpYCnOZVjj5V0ndyaAM7KB4I=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=

From 4f74e03aad663c7d72edaa36d8e874f1ebe1aa2d Mon Sep 17 00:00:00 2001
From: Alan Clucas <alan@clucas.org>
Date: Thu, 9 Mar 2023 15:26:04 +0000
Subject: [PATCH 0649/1641] Indent values.yaml using 2 instead of 4 spaces
 (#9656)

* Generate values.yaml with indentation of 2

Signed-off-by: Alan Clucas <alan@clucas.org>

* Fix review comments

---------

Signed-off-by: Alan Clucas <alan@clucas.org>
---
 magefiles/helm.go | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/magefiles/helm.go b/magefiles/helm.go
index 93c440584..d56cbed78 100644
--- a/magefiles/helm.go
+++ b/magefiles/helm.go
@@ -19,6 +19,7 @@ limitations under the License.
 package main
 
 import (
+	"bytes"
 	"fmt"
 	"os"
 	"strings"
@@ -146,9 +147,12 @@ func updateChartValue(key, value string) {
 	}
 
 	//// write to file
-	newValueFile, err := yaml.Marshal(&n)
+	var b bytes.Buffer
+	yamlEncoder := yaml.NewEncoder(&b)
+	yamlEncoder.SetIndent(2)
+	err = yamlEncoder.Encode(&n)
 	CheckIfError(err, "HELM Could not Marshal new Values file")
-	err = os.WriteFile(HelmChartValues, newValueFile, 0644)
+	err = os.WriteFile(HelmChartValues, b.Bytes(), 0644)
 	CheckIfError(err, "HELM Could not write new Values file to %s", HelmChartValues)
 
 	Info("HELM Ingress Nginx Helm Chart update %s %s", key, value)

From 1b11527f59388e53b84105589508862fa3229417 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 10 Mar 2023 08:54:40 -0800
Subject: [PATCH 0650/1641] Bump k8s.io/component-base from 0.26.1 to 0.26.2
 (#9696)

Bumps [k8s.io/component-base](https://github.com/kubernetes/component-base) from 0.26.1 to 0.26.2.
- [Release notes](https://github.com/kubernetes/component-base/releases)
- [Commits](https://github.com/kubernetes/component-base/compare/v0.26.1...v0.26.2)

---
updated-dependencies:
- dependency-name: k8s.io/component-base
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index e85419dcc..39e76c331 100644
--- a/go.mod
+++ b/go.mod
@@ -30,14 +30,14 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.26.1
+	k8s.io/api v0.26.2
 	k8s.io/apiextensions-apiserver v0.26.1
-	k8s.io/apimachinery v0.26.1
+	k8s.io/apimachinery v0.26.2
 	k8s.io/apiserver v0.26.1
 	k8s.io/cli-runtime v0.26.0
-	k8s.io/client-go v0.26.1
+	k8s.io/client-go v0.26.2
 	k8s.io/code-generator v0.26.1
-	k8s.io/component-base v0.26.1
+	k8s.io/component-base v0.26.2
 	k8s.io/klog/v2 v2.90.0
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.14.5
diff --git a/go.sum b/go.sum
index 0729873ef..d299919fb 100644
--- a/go.sum
+++ b/go.sum
@@ -737,22 +737,22 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.26.1 h1:f+SWYiPd/GsiWwVRz+NbFyCgvv75Pk9NK6dlkZgpCRQ=
-k8s.io/api v0.26.1/go.mod h1:xd/GBNgR0f707+ATNyPmQ1oyKSgndzXij81FzWGsejg=
+k8s.io/api v0.26.2 h1:dM3cinp3PGB6asOySalOZxEG4CZ0IAdJsrYZXE/ovGQ=
+k8s.io/api v0.26.2/go.mod h1:1kjMQsFE+QHPfskEcVNgL3+Hp88B80uj0QtSOlj8itU=
 k8s.io/apiextensions-apiserver v0.26.1 h1:cB8h1SRk6e/+i3NOrQgSFij1B2S0Y0wDoNl66bn8RMI=
 k8s.io/apiextensions-apiserver v0.26.1/go.mod h1:AptjOSXDGuE0JICx/Em15PaoO7buLwTs0dGleIHixSM=
-k8s.io/apimachinery v0.26.1 h1:8EZ/eGJL+hY/MYCNwhmDzVqq2lPl3N3Bo8rvweJwXUQ=
-k8s.io/apimachinery v0.26.1/go.mod h1:tnPmbONNJ7ByJNz9+n9kMjNP8ON+1qoAIIC70lztu74=
+k8s.io/apimachinery v0.26.2 h1:da1u3D5wfR5u2RpLhE/ZtZS2P7QvDgLZTi9wrNZl/tQ=
+k8s.io/apimachinery v0.26.2/go.mod h1:ats7nN1LExKHvJ9TmwootT00Yz05MuYqPXEXaVeOy5I=
 k8s.io/apiserver v0.26.1 h1:6vmnAqCDO194SVCPU3MU8NcDgSqsUA62tBUSWrFXhsc=
 k8s.io/apiserver v0.26.1/go.mod h1:wr75z634Cv+sifswE9HlAo5FQ7UoUauIICRlOE+5dCg=
 k8s.io/cli-runtime v0.26.0 h1:aQHa1SyUhpqxAw1fY21x2z2OS5RLtMJOCj7tN4oq8mw=
 k8s.io/cli-runtime v0.26.0/go.mod h1:o+4KmwHzO/UK0wepE1qpRk6l3o60/txUZ1fEXWGIKTY=
-k8s.io/client-go v0.26.1 h1:87CXzYJnAMGaa/IDDfRdhTzxk/wzGZ+/HUQpqgVSZXU=
-k8s.io/client-go v0.26.1/go.mod h1:IWNSglg+rQ3OcvDkhY6+QLeasV4OYHDjdqeWkDQZwGE=
+k8s.io/client-go v0.26.2 h1:s1WkVujHX3kTp4Zn4yGNFK+dlDXy1bAAkIl+cFAiuYI=
+k8s.io/client-go v0.26.2/go.mod h1:u5EjOuSyBa09yqqyY7m3abZeovO/7D/WehVVlZ2qcqU=
 k8s.io/code-generator v0.26.1 h1:dusFDsnNSKlMFYhzIM0jAO1OlnTN5WYwQQ+Ai12IIlo=
 k8s.io/code-generator v0.26.1/go.mod h1:OMoJ5Dqx1wgaQzKgc+ZWaZPfGjdRq/Y3WubFrZmeI3I=
-k8s.io/component-base v0.26.1 h1:4ahudpeQXHZL5kko+iDHqLj/FSGAEUnSVO0EBbgDd+4=
-k8s.io/component-base v0.26.1/go.mod h1:VHrLR0b58oC035w6YQiBSbtsf0ThuSwXP+p5dD/kAWU=
+k8s.io/component-base v0.26.2 h1:IfWgCGUDzrD6wLLgXEstJKYZKAFS2kO+rBRi0p3LqcI=
+k8s.io/component-base v0.26.2/go.mod h1:DxbuIe9M3IZPRxPIzhch2m1eT7uFrSBJUBuVCQEBivs=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d h1:U9tB195lKdzwqicbJvyJeOXV7Klv+wNAWENRnXEGi08=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=

From 67ca41d797bd4471ddb8ac95c7df51c945893e43 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 11 Mar 2023 11:34:41 -0800
Subject: [PATCH 0651/1641] Bump golang.org/x/crypto in /magefiles (#9691)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.0.0-20210817164053-32db794688a5 to 0.1.0.
- [Release notes](https://github.com/golang/crypto/releases)
- [Commits](https://github.com/golang/crypto/commits/v0.1.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 magefiles/go.mod | 2 +-
 magefiles/go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/magefiles/go.mod b/magefiles/go.mod
index 613e5fb1f..9ad1e11c9 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -22,7 +22,7 @@ require (
 	github.com/golang/protobuf v1.5.2 // indirect
 	github.com/google/go-querystring v1.1.0 // indirect
 	github.com/stretchr/testify v1.8.1 // indirect
-	golang.org/x/crypto v0.0.0-20210817164053-32db794688a5 // indirect
+	golang.org/x/crypto v0.1.0 // indirect
 	golang.org/x/net v0.7.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/protobuf v1.28.0 // indirect
diff --git a/magefiles/go.sum b/magefiles/go.sum
index f6b4786a5..9c0c8ee7f 100644
--- a/magefiles/go.sum
+++ b/magefiles/go.sum
@@ -60,8 +60,8 @@ github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o
 github.com/vmware-labs/yaml-jsonpath v0.3.2 h1:/5QKeCBGdsInyDCyVNLbXyilb61MXGi9NP674f9Hobk=
 github.com/vmware-labs/yaml-jsonpath v0.3.2/go.mod h1:U6whw1z03QyqgWdgXxvVnQ90zN1BWz5V+51Ewf8k+rQ=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
-golang.org/x/crypto v0.0.0-20210817164053-32db794688a5 h1:HWj/xjIHfjYU5nVXpTM0s39J9CbLn7Cc5a7IC5rwsMQ=
-golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/crypto v0.1.0 h1:MDRAIl0xIo9Io2xV565hzXHw3zVseKrJKodhohM5CjU=
+golang.org/x/crypto v0.1.0/go.mod h1:RecgLatLF4+eUMCP1PoPZQb+cVrJcOPbHkTkbkB9sbw=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
 golang.org/x/net v0.7.0 h1:rJrUqqhjsgNp7KqAIc25s9pZnjU7TUcSY7HcVZjdn1g=

From 5dabf2155868f3415520abe74423f2479cef4599 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 11 Mar 2023 11:36:42 -0800
Subject: [PATCH 0652/1641] Bump k8s.io/klog/v2 from 2.90.0 to 2.90.1 (#9694)

Bumps [k8s.io/klog/v2](https://github.com/kubernetes/klog) from 2.90.0 to 2.90.1.
- [Release notes](https://github.com/kubernetes/klog/releases)
- [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes/klog/compare/v2.90.0...v2.90.1)

---
updated-dependencies:
- dependency-name: k8s.io/klog/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 39e76c331..bf0f83625 100644
--- a/go.mod
+++ b/go.mod
@@ -38,7 +38,7 @@ require (
 	k8s.io/client-go v0.26.2
 	k8s.io/code-generator v0.26.1
 	k8s.io/component-base v0.26.2
-	k8s.io/klog/v2 v2.90.0
+	k8s.io/klog/v2 v2.90.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.14.5
 	sigs.k8s.io/mdtoc v1.1.0
diff --git a/go.sum b/go.sum
index d299919fb..a46367fb7 100644
--- a/go.sum
+++ b/go.sum
@@ -756,8 +756,8 @@ k8s.io/component-base v0.26.2/go.mod h1:DxbuIe9M3IZPRxPIzhch2m1eT7uFrSBJUBuVCQEB
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d h1:U9tB195lKdzwqicbJvyJeOXV7Klv+wNAWENRnXEGi08=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
-k8s.io/klog/v2 v2.90.0 h1:VkTxIV/FjRXn1fgNNcKGM8cfmL1Z33ZjXRTVxKCoF5M=
-k8s.io/klog/v2 v2.90.0/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/klog/v2 v2.90.1 h1:m4bYOKall2MmOiRaR1J+We67Do7vm9KiQVlT96lnHUw=
+k8s.io/klog/v2 v2.90.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 h1:+70TFaan3hfJzs+7VK2o+OGxg8HsuBr/5f6tVAjDu6E=
 k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280/go.mod h1:+Axhij7bCpeqhklhUTe3xmOn6bWxolyZEeyaFpjGtl4=
 k8s.io/utils v0.0.0-20221128185143-99ec85e7a448 h1:KTgPnR10d5zhztWptI952TNtt/4u5h3IzDXkdIMuo2Y=

From ddcfaecb3c4f6820f570f1ac926f16a3a433f586 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 11 Mar 2023 11:38:39 -0800
Subject: [PATCH 0653/1641] Bump github.com/onsi/ginkgo/v2 from 2.6.1 to 2.9.0
 (#9695)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.6.1 to 2.9.0.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.6.1...v2.9.0)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 +++++---
 go.sum | 18 +++++++++++-------
 2 files changed, 16 insertions(+), 10 deletions(-)

diff --git a/go.mod b/go.mod
index bf0f83625..011d69e63 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.6.1
+	github.com/onsi/ginkgo/v2 v2.9.0
 	github.com/opencontainers/runc v1.1.4
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.14.0
@@ -62,6 +62,7 @@ require (
 	github.com/go-openapi/jsonpointer v0.19.5 // indirect
 	github.com/go-openapi/jsonreference v0.20.0 // indirect
 	github.com/go-openapi/swag v0.19.14 // indirect
+	github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0 // indirect
 	github.com/godbus/dbus/v5 v5.0.6 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
@@ -71,6 +72,7 @@ require (
 	github.com/google/gnostic v0.5.7-v3refs // indirect
 	github.com/google/go-cmp v0.5.9 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
+	github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.3.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 // indirect
@@ -98,14 +100,14 @@ require (
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
-	golang.org/x/mod v0.7.0 // indirect
+	golang.org/x/mod v0.8.0 // indirect
 	golang.org/x/net v0.7.0 // indirect
 	golang.org/x/oauth2 v0.5.0 // indirect
 	golang.org/x/sys v0.5.0 // indirect
 	golang.org/x/term v0.5.0 // indirect
 	golang.org/x/text v0.7.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
-	golang.org/x/tools v0.4.0 // indirect
+	golang.org/x/tools v0.6.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto v0.0.0-20230110181048-76db0878b65f // indirect
 	google.golang.org/protobuf v1.28.1 // indirect
diff --git a/go.sum b/go.sum
index a46367fb7..1c709138d 100644
--- a/go.sum
+++ b/go.sum
@@ -118,6 +118,7 @@ github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh
 github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5Fng=
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
+github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0 h1:p104kn46Q8WdvHunIJ9dAyjPVtrBPhSr3KT2yUst43I=
 github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/godbus/dbus/v5 v5.0.6 h1:mkgN1ofwASrYnJ5W6U/BxG15eXXXjirgZc7CLqkcaro=
@@ -187,6 +188,8 @@ github.com/google/pprof v0.0.0-20200212024743-f11f1df84d12/go.mod h1:ZgVRPoUq/hf
 github.com/google/pprof v0.0.0-20200229191704-1ebb73c60ed3/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200430221834-fc25d7d30c6d/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200708004538-1a94d8640e99/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
+github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38 h1:yAJXTCF9TqKcTiHJAE8dj7HMvPfh66eeA2JYW7eFpSE=
+github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
@@ -200,6 +203,7 @@ github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
+github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
 github.com/imdario/mergo v0.3.13/go.mod h1:4lJ1jqUDcsbIECGy0RUJAXNIhg+6ocWgb1ALK2O4oXg=
 github.com/inconshreveable/mousetrap v1.0.1 h1:U3uMjPSQEBMNp1lFxmllqCPM6P5u/Xq7Pgzkat/bFNc=
@@ -285,11 +289,11 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.6.1 h1:1xQPCjcqYw/J5LchOcp4/2q/jzJFjiAOc25chhnDw+Q=
-github.com/onsi/ginkgo/v2 v2.6.1/go.mod h1:yjiuMwPokqY1XauOgju45q3sJt6VzQ/Fict1LFVcsAo=
+github.com/onsi/ginkgo/v2 v2.9.0 h1:Tugw2BKlNHTMfG+CheOITkYvk4LAh6MFOvikhGVnhE8=
+github.com/onsi/ginkgo/v2 v2.9.0/go.mod h1:4xkjoL/tZv4SMWeww56BU5kAt19mVB47gTWxmrTcxyk=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.24.1 h1:KORJXNNTzJXzu4ScJWssJfJMnJ+2QJqhoQSRwNlze9E=
+github.com/onsi/gomega v1.27.1 h1:rfztXRbg6nv/5f+Raen9RcGoSecHIFgBBLQK3Wdj754=
 github.com/opencontainers/runc v1.1.4 h1:nRCz/8sKg6K6jgYAFLDlXzPeITBZJyX28DBVhWD+5dg=
 github.com/opencontainers/runc v1.1.4/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
@@ -435,8 +439,8 @@ golang.org/x/mod v0.1.1-0.20191105210325-c90efee705ee/go.mod h1:QqPTAvyqsEbceGzB
 golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.7.0 h1:LapD9S96VoQRhi/GrNTqeBJFrUjs5UHCAtTlgwA5oZA=
-golang.org/x/mod v0.7.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/mod v0.8.0 h1:LUYupSeNrTNCGzR/hVBk2NHZO4hXcVaW1k4Qx7rjPx8=
+golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -604,8 +608,8 @@ golang.org/x/tools v0.0.0-20200804011535-6c149bb5ef0d/go.mod h1:njjCfa9FT2d7l9Bc
 golang.org/x/tools v0.0.0-20200825202427-b303f430e36d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.4.0 h1:7mTAgkunk3fr4GAloyyCasadO6h9zSsQZbwvcaIciV4=
-golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
+golang.org/x/tools v0.6.0 h1:BOw41kyTf3PuCW1pVQf8+Cyg8pMlkYB1oo9iJ6D/lKM=
+golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=

From 66a760794f91809bcd897cbdb45435653d73fd92 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Sat, 11 Mar 2023 23:38:39 -0500
Subject: [PATCH 0654/1641] update to golang 1.20 (#9690)

update alpine and golang
remove nano
update go modules
remove need for openssl external cli
fix stale

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 .github/workflows/ci.yaml                     | 12 +++++------
 .github/workflows/plugin.yaml                 |  2 +-
 .github/workflows/stale.yaml                  |  4 ++--
 go.mod                                        |  4 ++--
 go.sum                                        |  4 ++--
 images/cfssl/rootfs/Dockerfile                |  2 +-
 images/custom-error-pages/rootfs/Dockerfile   |  2 +-
 images/custom-error-pages/rootfs/go.mod       |  2 +-
 .../rootfs/Dockerfile                         |  2 +-
 images/ext-auth-example-authsvc/rootfs/go.mod |  2 +-
 images/ext-auth-example-authsvc/rootfs/go.sum | 21 +++++++++++++++++--
 images/fastcgi-helloserver/rootfs/Dockerfile  |  2 +-
 .../go-grpc-greeter-server/rootfs/Dockerfile  |  2 +-
 images/httpbin/rootfs/Dockerfile              |  2 +-
 images/kube-webhook-certgen/rootfs/Dockerfile |  2 +-
 images/kube-webhook-certgen/rootfs/go.mod     |  2 +-
 images/nginx/rootfs/Dockerfile                |  5 ++---
 images/opentelemetry/rootfs/Dockerfile        |  4 ++--
 images/test-runner/Makefile                   |  2 +-
 magefiles/go.mod                              |  2 +-
 rootfs/Dockerfile-chroot                      |  4 ++--
 test/e2e-image/Dockerfile                     |  2 +-
 test/e2e/annotations/auth.go                  |  8 ++++---
 test/e2e/settings/no_auth_locations.go        |  5 +++--
 24 files changed, 59 insertions(+), 40 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 61f5970db..b9a400747 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -88,7 +88,7 @@ jobs:
         id: go
         uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
         with:
-          go-version: '1.19'
+          go-version: '1.20'
           check-latest: true
 
       - name: Run Lint
@@ -107,7 +107,7 @@ jobs:
         id: go
         uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
         with:
-          go-version: '1.19'
+          go-version: '1.20'
           check-latest: true
 
       - name: Run go-fmt
@@ -126,7 +126,7 @@ jobs:
         id: go
         uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
         with:
-          go-version: '1.19'
+          go-version: '1.20'
           check-latest: true
 
       - name: Run test
@@ -147,7 +147,7 @@ jobs:
         id: go
         uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
         with:
-          go-version: '1.19'
+          go-version: '1.20'
           check-latest: true
 
       - name: Set up QEMU
@@ -213,7 +213,7 @@ jobs:
       - name: Setup Go
         uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
         with:
-          go-version: '1.19'
+          go-version: '1.20'
           check-latest: true
 
       - name: cache
@@ -485,7 +485,7 @@ jobs:
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
         uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
         with:
-          go-version: '1.19'
+          go-version: '1.20'
           check-latest: true
 
       - name: kube-webhook-certgen image build
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 779cd1da8..cb0f73489 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -24,7 +24,7 @@ jobs:
       - name: Set up Go
         uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
         with:
-          go-version: 1.19
+          go-version: 1.20
           check-latest: true
 
       - name: Run GoReleaser
diff --git a/.github/workflows/stale.yaml b/.github/workflows/stale.yaml
index 736585e05..8a172d370 100644
--- a/.github/workflows/stale.yaml
+++ b/.github/workflows/stale.yaml
@@ -15,8 +15,8 @@ jobs:
     steps:
       - uses: actions/stale@6f05e4244c9a0b2ed3401882b05d701dd0a7289b # v7.0.0
         with:
-          stale-issue-message: 'This is stale, but we won't close it automatically, just bare in mind the maintainers may be busy with other tasks and will reach your issue ASAP. If you have any question or request to prioritize this, please reach `#ingress-nginx-dev` on Kubernetes Slack.'
-          stale-pr-message: 'This is stale, but we won't close it automatically, just bare in mind the maintainers may be busy with other tasks and will reach your issue ASAP. If you have any question or request to prioritize this, please reach `#ingress-nginx-dev` on Kubernetes Slack.'
+          stale-issue-message: "This is stale, but we won't close it automatically, just bare in mind the maintainers may be busy with other tasks and will reach your issue ASAP. If you have any question or request to prioritize this, please reach `#ingress-nginx-dev` on Kubernetes Slack."
+          stale-pr-message: "This is stale, but we won't close it automatically, just bare in mind the maintainers may be busy with other tasks and will reach your issue ASAP. If you have any question or request to prioritize this, please reach `#ingress-nginx-dev` on Kubernetes Slack."
           stale-issue-label: lifecycle/frozen
           stale-pr-label: lifecycle/frozen
           days-before-issue-stale: 30
diff --git a/go.mod b/go.mod
index 011d69e63..a653632f5 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx
 
-go 1.19
+go 1.20
 
 require (
 	github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a
@@ -93,7 +93,7 @@ require (
 	github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
-	github.com/prometheus/procfs v0.8.0 // indirect
+	github.com/prometheus/procfs v0.9.0 // indirect
 	github.com/sergi/go-diff v1.1.0 // indirect
 	github.com/sirupsen/logrus v1.8.1 // indirect
 	github.com/xlab/treeprint v1.1.0 // indirect
diff --git a/go.sum b/go.sum
index 1c709138d..ff41229cf 100644
--- a/go.sum
+++ b/go.sum
@@ -332,8 +332,8 @@ github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsT
 github.com/prometheus/procfs v0.1.3/go.mod h1:lV6e/gmhEcM9IjHGsFOCxxuZ+z1YqCvr4OA4YeYWdaU=
 github.com/prometheus/procfs v0.6.0/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
 github.com/prometheus/procfs v0.7.3/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
-github.com/prometheus/procfs v0.8.0 h1:ODq8ZFEaYeCaZOJlZZdJA2AbQR98dSHSM1KW/You5mo=
-github.com/prometheus/procfs v0.8.0/go.mod h1:z7EfXMXOkbkqb9IINtpCn86r/to3BnA0uaxHdg830/4=
+github.com/prometheus/procfs v0.9.0 h1:wzCHvIvM5SxWqYvwgVL7yJY8Lz3PKn49KQtpgMYJfhI=
+github.com/prometheus/procfs v0.9.0/go.mod h1:+pB4zwohETzFnmlpe6yd2lSc+0/46IYZRB/chUwxUZY=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
 github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTEfhy4qGm1nDQc=
 github.com/rogpeppe/go-internal v1.8.0 h1:FCbCCtXNOY3UtUuHUYaghJg4y7Fd14rXifAYUAtL9R8=
diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index f9370c210..7841e189c 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.17.0
+FROM alpine:3.17.2
 
 RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
 RUN apk add --no-cache \
diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index ef825dec1..942228eac 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.19.4-alpine3.17 as builder
+FROM golang:1.20.1-alpine3.17 as builder
 RUN apk add git
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/custom-error-pages
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 2e762d091..89e47a4b5 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.19
+go 1.20
 
 require github.com/prometheus/client_golang v1.11.1
 
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index d54df8ab9..c604651d4 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.19.4-alpine3.17 as builder
+FROM golang:1.20.1-alpine3.17 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index 0be630b8b..cc5124072 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,6 +1,6 @@
 module example.com/authsvc
 
-go 1.19
+go 1.20
 
 require k8s.io/apimachinery v0.23.1
 
diff --git a/images/ext-auth-example-authsvc/rootfs/go.sum b/images/ext-auth-example-authsvc/rootfs/go.sum
index 2ca056fae..6e3fab295 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.sum
+++ b/images/ext-auth-example-authsvc/rootfs/go.sum
@@ -105,7 +105,19 @@ golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3/go.mod h1:6SW0HCj/g11FgYtHl
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/net v0.1.0/go.mod h1:Cx3nUiGt4eDBEyega/BKRp+/AlGL8hYe7U9odMt2Cco=
+golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
+golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
+golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
+golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -129,7 +141,12 @@ golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210831042530-f4d43177bf5e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
+golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
+golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
index 0213baf87..7d9220ddf 100755
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.19.4-alpine3.17 as builder
+FROM golang:1.20.1-alpine3.17 as builder
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
 
diff --git a/images/go-grpc-greeter-server/rootfs/Dockerfile b/images/go-grpc-greeter-server/rootfs/Dockerfile
index 547842512..67aed038e 100644
--- a/images/go-grpc-greeter-server/rootfs/Dockerfile
+++ b/images/go-grpc-greeter-server/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.19.4-alpine3.17 as build
+FROM golang:1.20.1-alpine3.17 as build
 
 WORKDIR /go/src/greeter-server
 
diff --git a/images/httpbin/rootfs/Dockerfile b/images/httpbin/rootfs/Dockerfile
index 1a9b55ba5..0e490be74 100644
--- a/images/httpbin/rootfs/Dockerfile
+++ b/images/httpbin/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.17.0
+FROM alpine:3.17.2
 
 ENV LC_ALL=C.UTF-8
 ENV LANG=C.UTF-8
diff --git a/images/kube-webhook-certgen/rootfs/Dockerfile b/images/kube-webhook-certgen/rootfs/Dockerfile
index 32847fd39..40a2c31ac 100644
--- a/images/kube-webhook-certgen/rootfs/Dockerfile
+++ b/images/kube-webhook-certgen/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM --platform=$BUILDPLATFORM golang:1.19.4 as builder
+FROM --platform=$BUILDPLATFORM golang:1.20.1 as builder
 ARG BUILDPLATFORM
 ARG TARGETARCH
 
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index a6e2b7ed2..49f95828f 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,6 +1,6 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.19
+go 1.20
 
 require (
 	github.com/onrik/logrus v0.9.0
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index a9b01ff82..3279af5d5 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.17.0 as builder
+FROM alpine:3.17.2 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.17.0
+FROM alpine:3.17.2
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
@@ -49,7 +49,6 @@ RUN apk update \
   libmaxminddb \
   yaml-cpp \
   dumb-init \
-  nano \
   tzdata \
   && ln -s /usr/local/nginx/sbin/nginx /sbin/nginx \
   && adduser -S -D -H -u 101 -h /usr/local/nginx \
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index aa4e219af..33f5bcb36 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.17.0 as base
+FROM alpine:3.17.2 as base
 
 RUN mkdir -p /opt/third_party/install
 COPY . /opt/third_party/
@@ -39,7 +39,7 @@ COPY --from=grpc /opt/third_party/install/ /usr
 COPY --from=otel-cpp /opt/third_party/install/ /usr
 RUN bash /opt/third_party/build.sh -n
 
-FROM alpine:3.17.0 as final
+FROM alpine:3.17.2 as final
 COPY --from=base /opt/third_party/init_module.sh /usr/local/bin/init_module.sh
 COPY --from=nginx /etc/nginx/modules /etc/nginx/modules
 COPY --from=nginx /opt/third_party/install/lib /etc/nginx/modules
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 4d71b8ad5..a8c3a4560 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -39,7 +39,7 @@ build: ensure-buildx
 		--progress=$(PROGRESS) \
 		--pull \
 		--build-arg BASE_IMAGE=$(NGINX_BASE_IMAGE) \
-		--build-arg GOLANG_VERSION=1.19.4 \
+		--build-arg GOLANG_VERSION=1.20.1 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.24.2 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
diff --git a/magefiles/go.mod b/magefiles/go.mod
index 9ad1e11c9..40b909600 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -1,6 +1,6 @@
 module github.com/kubernetes/ingress-nginx/magefiles
 
-go 1.19
+go 1.20
 
 require (
 	github.com/blang/semver/v4 v4.0.0
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index bdb9be60b..7ab8584a7 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.17.0
+FROM alpine:3.17.2
 
 ARG TARGETARCH
 ARG VERSION
@@ -49,8 +49,8 @@ RUN apk update \
   && apk upgrade \
   && apk add -U --no-cache \
      bash \
-     curl \
      openssl \
+     curl \
      ca-certificates \
      dumb-init \
      tzdata \
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index ab4ba5026..09ce36cc5 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,7 +1,7 @@
 ARG E2E_BASE_IMAGE
 FROM ${E2E_BASE_IMAGE} AS BASE
 
-FROM alpine:3.16.2
+FROM alpine:3.17.2
 
 RUN apk add -U --no-cache \
   ca-certificates \
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index 1f0f4c3b2..e3d0bcb2e 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -19,9 +19,9 @@ package annotations
 import (
 	"context"
 	"fmt"
+	"golang.org/x/crypto/bcrypt"
 	"net/http"
 	"net/url"
-	"os/exec"
 	"regexp"
 	"strings"
 	"time"
@@ -899,7 +899,8 @@ http {
 //   Auth error
 
 func buildSecret(username, password, name, namespace string) *corev1.Secret {
-	out, err := exec.Command("openssl", "passwd", "-crypt", password).CombinedOutput()
+	//out, err := exec.Command("openssl", "passwd", "-crypt", password).CombinedOutput()
+	out, err := bcrypt.GenerateFromPassword([]byte(password), 14)
 	encpass := fmt.Sprintf("%v:%s\n", username, out)
 	assert.Nil(ginkgo.GinkgoT(), err)
 
@@ -917,7 +918,8 @@ func buildSecret(username, password, name, namespace string) *corev1.Secret {
 }
 
 func buildMapSecret(username, password, name, namespace string) *corev1.Secret {
-	out, err := exec.Command("openssl", "passwd", "-crypt", password).CombinedOutput()
+	//out, err := exec.Command("openssl", "passwd", "-crypt", password).CombinedOutput()
+	out, err := bcrypt.GenerateFromPassword([]byte(password), 14)
 	assert.Nil(ginkgo.GinkgoT(), err)
 
 	return &corev1.Secret{
diff --git a/test/e2e/settings/no_auth_locations.go b/test/e2e/settings/no_auth_locations.go
index 70ec3be8f..2fc4b6455 100644
--- a/test/e2e/settings/no_auth_locations.go
+++ b/test/e2e/settings/no_auth_locations.go
@@ -18,8 +18,8 @@ package settings
 
 import (
 	"fmt"
+	"golang.org/x/crypto/bcrypt"
 	"net/http"
-	"os/exec"
 	"strings"
 
 	"github.com/onsi/ginkgo/v2"
@@ -147,7 +147,8 @@ func buildBasicAuthIngressWithSecondPath(host, namespace, secretName, pathName s
 }
 
 func buildSecret(username, password, name, namespace string) *corev1.Secret {
-	out, err := exec.Command("openssl", "passwd", "-crypt", password).CombinedOutput()
+	//out, err := exec.Command("openssl", "passwd", "-crypt", password).CombinedOutput()
+	out, err := bcrypt.GenerateFromPassword([]byte(password), 14)
 	assert.Nil(ginkgo.GinkgoT(), err, "creating password")
 
 	encpass := fmt.Sprintf("%v:%s\n", username, out)

From f93d11b4cf549c4c443c0d81cf15fbecfd0b3388 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 12 Mar 2023 05:18:40 -0700
Subject: [PATCH 0655/1641] Bump helm/chart-releaser-action from 1.4.1 to 1.5.0
 (#9720)

Bumps [helm/chart-releaser-action](https://github.com/helm/chart-releaser-action) from 1.4.1 to 1.5.0.
- [Release notes](https://github.com/helm/chart-releaser-action/releases)
- [Commits](https://github.com/helm/chart-releaser-action/compare/98bccfd32b0f76149d188912ac8e45ddd3f8695f...be16258da8010256c6e82849661221415f031968)

---
updated-dependencies:
- dependency-name: helm/chart-releaser-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/helm.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 2bd271bb2..b1db0c1d8 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -73,7 +73,7 @@ jobs:
           git config --global user.email "$GITHUB_ACTOR@users.noreply.github.com"
 
       - name: Helm Chart Releaser
-        uses: helm/chart-releaser-action@98bccfd32b0f76149d188912ac8e45ddd3f8695f # v1.4.1
+        uses: helm/chart-releaser-action@be16258da8010256c6e82849661221415f031968 # v1.5.0
         env:
           CR_SKIP_EXISTING: "false"
           CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"

From b87645fe5318dc6fe9b00b3d9c6c25b5098d9e0e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 12 Mar 2023 05:20:40 -0700
Subject: [PATCH 0656/1641] Bump docker/setup-buildx-action from 2.2.1 to 2.5.0
 (#9719)

Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.2.1 to 2.5.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/8c0edbc76e98fa90f69d9a2c020dcb50019dc325...4b4e9c3e2d4531116a6f8ba8e71fc6e2cb6e6c8c)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index b9a400747..db9f69c41 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -155,7 +155,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@8c0edbc76e98fa90f69d9a2c020dcb50019dc325 # v2.2.1
+        uses: docker/setup-buildx-action@4b4e9c3e2d4531116a6f8ba8e71fc6e2cb6e6c8c # v2.5.0
         with:
           version: latest
 

From e2d076c4fc52f6c9cdcf9af93d9ae41821303faa Mon Sep 17 00:00:00 2001
From: Do Hoang Khiem <dohoangkhiem@gmail.com>
Date: Tue, 14 Mar 2023 18:32:18 +0700
Subject: [PATCH 0657/1641] HPA: autoscaling/v2beta1 deprecated, bump
 apiVersion to v2 for defaultBackend (#9731)

---
 charts/ingress-nginx/README.md                          | 1 +
 charts/ingress-nginx/templates/default-backend-hpa.yaml | 2 +-
 charts/ingress-nginx/values.yaml                        | 1 +
 3 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 49bb38273..5e7fa85a1 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -456,6 +456,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.watchIngressWithoutClass | bool | `false` | Process Ingress objects without ingressClass annotation/ingressClassName field Overrides value for --watch-ingress-without-class flag of the controller binary Defaults to false |
 | defaultBackend.affinity | object | `{}` |  |
 | defaultBackend.autoscaling.annotations | object | `{}` |  |
+| defaultBackend.autoscaling.apiVersion | string | `"autoscaling/v2"` |  |
 | defaultBackend.autoscaling.enabled | bool | `false` |  |
 | defaultBackend.autoscaling.maxReplicas | int | `2` |  |
 | defaultBackend.autoscaling.minReplicas | int | `1` |  |
diff --git a/charts/ingress-nginx/templates/default-backend-hpa.yaml b/charts/ingress-nginx/templates/default-backend-hpa.yaml
index 594d26525..f9ae0b276 100644
--- a/charts/ingress-nginx/templates/default-backend-hpa.yaml
+++ b/charts/ingress-nginx/templates/default-backend-hpa.yaml
@@ -1,5 +1,5 @@
 {{- if and .Values.defaultBackend.enabled .Values.defaultBackend.autoscaling.enabled }}
-apiVersion: autoscaling/v2beta1
+apiVersion: {{ .Values.defaultBackend.autoscaling.apiVersion }}
 kind: HorizontalPodAutoscaler
 metadata:
   labels:
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 202cd4a23..031078499 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -827,6 +827,7 @@ defaultBackend:
     #    emptyDir: {}
 
     autoscaling:
+        apiVersion: autoscaling/v2
         annotations: {}
         enabled: false
         minReplicas: 1

From 520384b1103d8382c857c0f86551dab2343eda2c Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Tue, 14 Mar 2023 17:06:17 +0530
Subject: [PATCH 0658/1641] bumped ginkgo to v2.9.0 (#9722)

---
 build/run-in-docker.sh               | 2 +-
 images/test-runner/rootfs/Dockerfile | 2 +-
 test/e2e/run-chart-test.sh           | 2 +-
 test/e2e/run-kind-e2e.sh             | 4 ++--
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 44ca2d5f7..d375c4336 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -87,7 +87,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.6.1
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.9.0
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 1e8bc3643..7872b7a2b 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -55,7 +55,7 @@ ENV PATH $GOPATH/bin:/usr/local/go/bin:$PATH
 
 RUN mkdir -p "$GOPATH/src" "$GOPATH/bin" && chmod -R 777 "$GOPATH"
 
-RUN go install github.com/onsi/ginkgo/v2/ginkgo@v2.6.1  && go install golang.org/x/lint/golint@latest
+RUN go install github.com/onsi/ginkgo/v2/ginkgo@v2.9.0  && go install golang.org/x/lint/golint@latest
 
 ARG RESTY_CLI_VERSION
 ARG RESTY_CLI_SHA
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index d01ab4486..813e296cf 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.6.1
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.9.0
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index df927bd1c..d3ea18b6d 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -95,7 +95,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.6.1
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.9.0
   fi
 
   echo "[dev-env] .. done building controller images"
@@ -112,4 +112,4 @@ echo "[dev-env] copying docker images to cluster..."
 kind load docker-image --name="${KIND_CLUSTER_NAME}" --nodes="${KIND_WORKERS}" nginx-ingress-controller:e2e
 kind load docker-image --name="${KIND_CLUSTER_NAME}" --nodes="${KIND_WORKERS}" "${REGISTRY}"/controller:"${TAG}"
 echo "[dev-env] running e2e tests..."
-make -C "${DIR}"/../../ e2e-test
\ No newline at end of file
+make -C "${DIR}"/../../ e2e-test

From 47eb3a17fd95e9205dbe0c6bdb474ac4603f498d Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Tue, 14 Mar 2023 14:44:17 +0100
Subject: [PATCH 0659/1641] Deployment/DaemonSet: Label pods using
 `ingress-nginx.labels`. (#9732)

---
 charts/ingress-nginx/templates/controller-daemonset.yaml  | 2 +-
 charts/ingress-nginx/templates/controller-deployment.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index e6721566b..efa273dac 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -33,7 +33,7 @@ spec:
       {{- end }}
     {{- end }}
       labels:
-        {{- include "ingress-nginx.selectorLabels" . | nindent 8 }}
+        {{- include "ingress-nginx.labels" . | nindent 8 }}
         app.kubernetes.io/component: controller
         {{- with .Values.controller.labels }}
         {{- toYaml . | nindent 8 }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 9f1cf70db..36d7670e3 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -37,7 +37,7 @@ spec:
       {{- end }}
     {{- end }}
       labels:
-        {{- include "ingress-nginx.selectorLabels" . | nindent 8 }}
+        {{- include "ingress-nginx.labels" . | nindent 8 }}
         app.kubernetes.io/component: controller
         {{- with .Values.controller.labels }}
         {{- toYaml . | nindent 8 }}

From 2d15a9946b0017d0888b59066862c48f09ad6fa3 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 14 Mar 2023 07:22:17 -0700
Subject: [PATCH 0660/1641] Bump actions/upload-artifact from 3.1.1 to 3.1.2
 (#9717)

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/83fd05a356d7e2593de66fc9913b3002723633cb...0b7f8abb1508181956e8e162db84b466c27e18ce)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml        | 6 +++---
 .github/workflows/scorecards.yml | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index db9f69c41..56d87c000 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -188,7 +188,7 @@ jobs:
             | pigz > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # v3.1.1
+        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
         with:
           name: docker.tar.gz
           path: docker.tar.gz
@@ -320,7 +320,7 @@ jobs:
           make kind-e2e-test
 
       - name: Uplaod e2e junit-reports
-        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # v3.1.1
+        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ matrix.k8s }}
@@ -375,7 +375,7 @@ jobs:
           make kind-e2e-test
 
       - name: Uplaod e2e junit-reports
-        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # v3.1.1
+        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
         if: success() || failure()
         with:
           name: e2e-test-reports-chroot-${{ matrix.k8s }}
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 6af70e691..8a3af47de 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@83fd05a356d7e2593de66fc9913b3002723633cb # v3.1.1
+        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
         with:
           name: SARIF file
           path: results.sarif

From 7a95a43df63627d7fe1a4db6eceb1c83bf556d8f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 14 Mar 2023 07:24:23 -0700
Subject: [PATCH 0661/1641] Bump goreleaser/goreleaser-action from 4.1.0 to
 4.2.0 (#9718)

Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 4.1.0 to 4.2.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/8f67e590f2d095516493f017008adc464e63adb1...f82d6c1c344bcacabba2c841718984797f664a6b)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/plugin.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index cb0f73489..760420765 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -28,7 +28,7 @@ jobs:
           check-latest: true
 
       - name: Run GoReleaser
-        uses: goreleaser/goreleaser-action@8f67e590f2d095516493f017008adc464e63adb1 # v4.1.0
+        uses: goreleaser/goreleaser-action@f82d6c1c344bcacabba2c841718984797f664a6b # v4.2.0
         with:
           version: latest
           args: release --rm-dist

From 778577253e612181114e694028105e046d16c90e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 14 Mar 2023 07:26:18 -0700
Subject: [PATCH 0662/1641] Bump actions/download-artifact from 3.0.1 to 3.0.2
 (#9721)

Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/9782bd6a9848b53b110e712e20e42d89988822b7...9bc31d5ccc31df68ecc42ccf4149144866c47d8a)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 56d87c000..00049bddf 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -217,7 +217,7 @@ jobs:
           check-latest: true
 
       - name: cache
-        uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7 # v3.0.1
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
         with:
           name: docker.tar.gz
 
@@ -291,7 +291,7 @@ jobs:
         uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
       - name: cache
-        uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7 # v3.0.1
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
         with:
           name: docker.tar.gz
 
@@ -345,7 +345,7 @@ jobs:
         uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
       - name: cache
-        uses: actions/download-artifact@9782bd6a9848b53b110e712e20e42d89988822b7 # v3.0.1
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
         with:
           name: docker.tar.gz
 

From 4d443962d698ce022e71db4373ce48ef6b5964c2 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 14 Mar 2023 07:28:16 -0700
Subject: [PATCH 0663/1641] Bump golang.org/x/crypto from 0.6.0 to 0.7.0
 (#9723)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.6.0 to 0.7.0.
- [Release notes](https://github.com/golang/crypto/releases)
- [Commits](https://github.com/golang/crypto/compare/v0.6.0...v0.7.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 10 +++++-----
 go.sum | 20 ++++++++++----------
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/go.mod b/go.mod
index a653632f5..9144ff337 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.2
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.6.0
+	golang.org/x/crypto v0.7.0
 	google.golang.org/grpc v1.53.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -101,11 +101,11 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.8.0 // indirect
-	golang.org/x/net v0.7.0 // indirect
+	golang.org/x/net v0.8.0 // indirect
 	golang.org/x/oauth2 v0.5.0 // indirect
-	golang.org/x/sys v0.5.0 // indirect
-	golang.org/x/term v0.5.0 // indirect
-	golang.org/x/text v0.7.0 // indirect
+	golang.org/x/sys v0.6.0 // indirect
+	golang.org/x/term v0.6.0 // indirect
+	golang.org/x/text v0.8.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.6.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
diff --git a/go.sum b/go.sum
index ff41229cf..813771bbc 100644
--- a/go.sum
+++ b/go.sum
@@ -407,8 +407,8 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.6.0 h1:qfktjS5LUO+fFKeJXZ+ikTRijMmljikvG68fpMMruSc=
-golang.org/x/crypto v0.6.0/go.mod h1:OFC/31mSvZgRz0V1QTNCzfAI1aIRzbiufJtkMIlEp58=
+golang.org/x/crypto v0.7.0 h1:AvwMYaRytfdeVt3u6mLaxYtErKYjxA2OXjJ1HHq6t3A=
+golang.org/x/crypto v0.7.0/go.mod h1:pYwdfH91IfpZVANVyUOhSIPZaFoJGxTFbZhFTx+dXZU=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -475,8 +475,8 @@ golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.7.0 h1:rJrUqqhjsgNp7KqAIc25s9pZnjU7TUcSY7HcVZjdn1g=
-golang.org/x/net v0.7.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
+golang.org/x/net v0.8.0 h1:Zrh2ngAOFYneWTAIAPethzeaQLuHwhuBkuV6ZiRnUaQ=
+golang.org/x/net v0.8.0/go.mod h1:QVkue5JL9kW//ek3r6jTKnTFis1tRmNAW2P1shuFdJc=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -546,19 +546,19 @@ golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.5.0 h1:MUK/U/4lj1t1oPg0HfuXDN/Z1wv31ZJ/YcPiGccS4DU=
-golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.6.0 h1:MVltZSvRTcU2ljQOhs94SXPftV6DCNnZViHeQps87pQ=
+golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.5.0 h1:n2a8QNdAb0sZNpU9R1ALUXBbY+w51fCQDN+7EdxNBsY=
-golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k=
+golang.org/x/term v0.6.0 h1:clScbb1cHjoCkyRbWwBEUZ5H/tIFu5TAXIqaZD0Gcjw=
+golang.org/x/term v0.6.0/go.mod h1:m6U89DPEgQRMq3DNkDClhWw02AUbt2daBVO4cn4Hv9U=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.7.0 h1:4BRB4x83lYWy72KwLD/qYDuTu7q9PjSagHvijDw7cLo=
-golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.8.0 h1:57P1ETyNKtuIjB4SRd15iJxuhj8Gc416Y78H3qgMh68=
+golang.org/x/text v0.8.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=

From ce18c5e552158ff512afd8034de361fc42a2b381 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 14 Mar 2023 07:30:17 -0700
Subject: [PATCH 0664/1641] Bump github.com/prometheus/common from 0.41.0 to
 0.42.0 (#9724)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.41.0 to 0.42.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.41.0...v0.42.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 9144ff337..4c4bc903a 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.14.0
 	github.com/prometheus/client_model v0.3.0
-	github.com/prometheus/common v0.41.0
+	github.com/prometheus/common v0.42.0
 	github.com/spf13/cobra v1.6.1
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.2
diff --git a/go.sum b/go.sum
index 813771bbc..c3a2152b7 100644
--- a/go.sum
+++ b/go.sum
@@ -324,8 +324,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.41.0 h1:npo01n6vUlRViIj5fgwiK8vlNIh8bnoxqh3gypKsyAw=
-github.com/prometheus/common v0.41.0/go.mod h1:xBwqVerjNdUDjgODMpudtOMwlOwf2SaTr1yjz4b7Zbc=
+github.com/prometheus/common v0.42.0 h1:EKsfXEYo4JpWMHH5cg+KOUWeuJSov1Id8zGR8eeI1YM=
+github.com/prometheus/common v0.42.0/go.mod h1:xBwqVerjNdUDjgODMpudtOMwlOwf2SaTr1yjz4b7Zbc=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=

From dba7ae04f5074ef49d1a61811660ad00680f0e6c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 14 Mar 2023 07:32:16 -0700
Subject: [PATCH 0665/1641] Bump actions/dependency-review-action from 3.0.2 to
 3.0.3 (#9727)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3.0.2 to 3.0.3.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/0ff3da6f81b812d4ec3cf37a04e2308c7a723730...c090f4e553673e6e505ea70d6a95362ee12adb94)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 758e4b95f..0ecdcd55c 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@0ff3da6f81b812d4ec3cf37a04e2308c7a723730 # v3.0.2
+        uses: actions/dependency-review-action@c090f4e553673e6e505ea70d6a95362ee12adb94 # v3.0.3

From 3cd4ff93fe6cef93665604fd490f100fe65a3f53 Mon Sep 17 00:00:00 2001
From: longwuyuan <longwuyuan@gmail.com>
Date: Wed, 15 Mar 2023 23:44:25 +0530
Subject: [PATCH 0666/1641] changed test-runner-image tag and sha

---
 build/run-in-docker.sh  | 2 +-
 test/e2e-image/Makefile | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index d375c4336..3a6aeb43d 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20221221-controller-v1.5.1-62-g6ffaef32a@sha256:8f025472964cd15ae2d379503aba150565a8d78eb36b41ddfc5f1e3b1ca81a8e}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20230314-helm-chart-4.5.2-32-g520384b11@sha256:754c62f9a5efd1ee515ee908ecc16c0c4d1dda96a8cc8019667182a55f3a9035}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index f89bf6bf2..001146f65 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20221221-controller-v1.5.1-62-g6ffaef32a@sha256:8f025472964cd15ae2d379503aba150565a8d78eb36b41ddfc5f1e3b1ca81a8e"
+E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20230314-helm-chart-4.5.2-32-g520384b11@sha256:754c62f9a5efd1ee515ee908ecc16c0c4d1dda96a8cc8019667182a55f3a9035"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"

From 2324ad0d0556d07aa39c4b8872e1b8419f338e33 Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Thu, 16 Mar 2023 13:57:18 +0530
Subject: [PATCH 0667/1641] updated NGINX_BASE image with latest tag (#9747)

---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index 72093c593..bf23fa5a7 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:21aa7f55a3325c1c26de0dfb62ede4c0a809a994@sha256:da6b877ed96dada46ed6e379051c2dd461dd5d329af7a7531820ad3e16197e20
\ No newline at end of file
+registry.k8s.io/ingress-nginx/nginx:66a760794f91809bcd897cbdb45435653d73fd92@sha256:86c1581e69dc92d107f8edd36724890ea682a3afda8c1fb1ba41aabc7bc0128d
\ No newline at end of file

From 58e5a2c01f72bd1e4d9e924d5059b29350577d76 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Fri, 17 Mar 2023 02:39:16 +0100
Subject: [PATCH 0668/1641] Chart: Drop `controller.headers`, rework DH param
 secret. (#9659)

---
 charts/ingress-nginx/README.md                    |  2 +-
 charts/ingress-nginx/templates/NOTES.txt          |  7 -------
 .../controller-configmap-proxyheaders.yaml        |  9 ++-------
 .../templates/controller-configmap.yaml           |  7 +++----
 .../templates/controller-secret.yaml              | 15 +++++++++++++++
 .../ingress-nginx/templates/dh-param-secret.yaml  | 10 ----------
 charts/ingress-nginx/values.yaml                  |  2 +-
 7 files changed, 22 insertions(+), 30 deletions(-)
 create mode 100644 charts/ingress-nginx/templates/controller-secret.yaml
 delete mode 100644 charts/ingress-nginx/templates/dh-param-secret.yaml

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 5e7fa85a1..a72805054 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -509,7 +509,7 @@ Kubernetes: `>=1.20.0-0`
 | defaultBackend.serviceAccount.name | string | `""` |  |
 | defaultBackend.tolerations | list | `[]` | Node tolerations for server scheduling to nodes with taints # Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/ # |
 | defaultBackend.updateStrategy | object | `{}` | The update strategy to apply to the Deployment or DaemonSet # |
-| dhParam | string | `nil` | A base64-encoded Diffie-Hellman parameter. This can be generated with: `openssl dhparam 4096 2> /dev/null | base64` # Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param |
+| dhParam | string | `""` | A base64-encoded Diffie-Hellman parameter. This can be generated with: `openssl dhparam 4096 2> /dev/null | base64` # Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param |
 | imagePullSecrets | list | `[]` | Optional array of imagePullSecrets containing private registry credentials # Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ |
 | podSecurityPolicy.enabled | bool | `false` |  |
 | portNamePrefix | string | `""` | Prefix for TCP and UDP ports names in ingress controller service # Some cloud providers, like Yandex Cloud may have a requirements for a port name regex to support cloud load balancer integration |
diff --git a/charts/ingress-nginx/templates/NOTES.txt b/charts/ingress-nginx/templates/NOTES.txt
index 8985c56c0..9fe35c785 100644
--- a/charts/ingress-nginx/templates/NOTES.txt
+++ b/charts/ingress-nginx/templates/NOTES.txt
@@ -71,10 +71,3 @@ If TLS is enabled for the Ingress, a Secret containing the certificate and key m
     tls.crt: <base64 encoded cert>
     tls.key: <base64 encoded key>
   type: kubernetes.io/tls
-
-{{- if .Values.controller.headers }}
-#################################################################################
-######   WARNING: `controller.headers` has been deprecated!                 #####
-######            It has been renamed to `controller.proxySetHeaders`.      #####
-#################################################################################
-{{- end }}
diff --git a/charts/ingress-nginx/templates/controller-configmap-proxyheaders.yaml b/charts/ingress-nginx/templates/controller-configmap-proxyheaders.yaml
index f8d15faf9..38feb721f 100644
--- a/charts/ingress-nginx/templates/controller-configmap-proxyheaders.yaml
+++ b/charts/ingress-nginx/templates/controller-configmap-proxyheaders.yaml
@@ -1,4 +1,4 @@
-{{- if or .Values.controller.proxySetHeaders .Values.controller.headers -}}
+{{- if .Values.controller.proxySetHeaders -}}
 apiVersion: v1
 kind: ConfigMap
 metadata:
@@ -10,10 +10,5 @@ metadata:
     {{- end }}
   name: {{ include "ingress-nginx.fullname" . }}-custom-proxy-headers
   namespace: {{ .Release.Namespace }}
-data:
-{{- if .Values.controller.proxySetHeaders }}
-{{ toYaml .Values.controller.proxySetHeaders | indent 2 }}
-{{ else if and .Values.controller.headers (not .Values.controller.proxySetHeaders) }}
-{{ toYaml .Values.controller.headers | indent 2 }}
-{{- end }}
+data: {{ toYaml .Values.controller.proxySetHeaders | nindent 2 }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-configmap.yaml b/charts/ingress-nginx/templates/controller-configmap.yaml
index f28b26e1e..9ec2b8369 100644
--- a/charts/ingress-nginx/templates/controller-configmap.yaml
+++ b/charts/ingress-nginx/templates/controller-configmap.yaml
@@ -17,13 +17,12 @@ data:
 {{- if .Values.controller.addHeaders }}
   add-headers: {{ .Release.Namespace }}/{{ include "ingress-nginx.fullname" . }}-custom-add-headers
 {{- end }}
-{{- if or .Values.controller.proxySetHeaders .Values.controller.headers }}
+{{- if .Values.controller.proxySetHeaders }}
   proxy-set-headers: {{ .Release.Namespace }}/{{ include "ingress-nginx.fullname" . }}-custom-proxy-headers
 {{- end }}
 {{- if .Values.dhParam }}
-  ssl-dh-param: {{ printf "%s/%s" .Release.Namespace (include "ingress-nginx.controller.fullname" .) }}
+  ssl-dh-param: {{ .Release.Namespace }}/{{ include "ingress-nginx.controller.fullname" . }}
 {{- end }}
 {{- range $key, $value := .Values.controller.config }}
-    {{- $key | nindent 2 }}: {{ $value | quote }}
+  {{- $key | nindent 2 }}: {{ $value | quote }}
 {{- end }}
-
diff --git a/charts/ingress-nginx/templates/controller-secret.yaml b/charts/ingress-nginx/templates/controller-secret.yaml
new file mode 100644
index 000000000..f3744232f
--- /dev/null
+++ b/charts/ingress-nginx/templates/controller-secret.yaml
@@ -0,0 +1,15 @@
+{{- if .Values.dhParam -}}
+apiVersion: v1
+kind: Secret
+metadata:
+  labels:
+    {{- include "ingress-nginx.labels" . | nindent 4 }}
+    app.kubernetes.io/component: controller
+    {{- with .Values.controller.labels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  name: {{ include "ingress-nginx.controller.fullname" . }}
+  namespace: {{ .Release.Namespace }}
+data:
+  dhparam.pem: {{ .Values.dhParam }}
+{{- end }}
diff --git a/charts/ingress-nginx/templates/dh-param-secret.yaml b/charts/ingress-nginx/templates/dh-param-secret.yaml
deleted file mode 100644
index 12e7a4f63..000000000
--- a/charts/ingress-nginx/templates/dh-param-secret.yaml
+++ /dev/null
@@ -1,10 +0,0 @@
-{{- with .Values.dhParam -}}
-apiVersion: v1
-kind: Secret
-metadata:
-  name: {{ include "ingress-nginx.controller.fullname" $ }}
-  labels:
-    {{- include "ingress-nginx.labels" $ | nindent 4 }}
-data:
-  dhparam.pem: {{ . }}
-{{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 031078499..1fab6f52a 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -886,4 +886,4 @@ portNamePrefix: ""
 # -- (string) A base64-encoded Diffie-Hellman parameter.
 # This can be generated with: `openssl dhparam 4096 2> /dev/null | base64`
 ## Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param
-dhParam:
+dhParam: ""

From fec1dbe3a122089a92c1f794fa2ca6b389640d49 Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Sun, 19 Mar 2023 03:43:16 +0530
Subject: [PATCH 0669/1641] changes Makefile of echo folder to trigger
 code-build (#9754)

---
 images/echo/Makefile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/echo/Makefile b/images/echo/Makefile
index 500704e81..0ab1c945f 100644
--- a/images/echo/Makefile
+++ b/images/echo/Makefile
@@ -4,7 +4,7 @@
 # you may not use this file except in compliance with the License.
 # You may obtain a copy of the License at
 #
-#     http://www.apache.org/licenses/LICENSE-2.0
+#      http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS,

From 1e629fae1d12a6bf3151f709ecdb96b5b1165ebb Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Sun, 19 Mar 2023 03:45:16 +0530
Subject: [PATCH 0670/1641] added upgrade ginkgo documentation for contributors
 (#9753)

---
 ginkgo_upgrade.md | 131 ++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 131 insertions(+)
 create mode 100644 ginkgo_upgrade.md

diff --git a/ginkgo_upgrade.md b/ginkgo_upgrade.md
new file mode 100644
index 000000000..1ed996cd1
--- /dev/null
+++ b/ginkgo_upgrade.md
@@ -0,0 +1,131 @@
+# GINKGO UPGRADE
+
+#### Bumping ginkgo in the project requires four PRs.
+
+## 1. Dependabot PR
+
+- Dependabot automatically updates `ginkgo version` but only in [go.mod ](go.mod) and [go.sum ](go.sum) files.
+- This is an automatically generated PR by Dependabot but it needs approval from maintainers to get merged.
+
+## 2. Edit-hardcoded-version PR
+
+### a. Make changes to appropriate files in required directories
+
+- Make changes in files where gingko version is hardcoded. These files are :
+    - [run-in-docker.sh ](build/run-in-docker.sh)
+    - [Dockerfile ](images/test-runner/rootfs/Dockerfile)
+    - [run.sh ](test/e2e/run.sh)
+    - [run-chart-test.sh ](test/e2e/run-chart-test.sh)
+
+### b. Create PR
+
+- Open pull request(s) accordingly, to fire cloudbuild for building the component's image (if applicable).
+
+### c. Merge
+
+- Merging will fire cloudbuild, which will result in images being promoted to the  [staging container registry](https://console.cloud.google.com/gcr/images/k8s-staging-ingress-nginx).
+
+### d. Make sure cloudbuild is a success
+
+- Wait for [cloud build](https://console.cloud.google.com/cloud-build/builds?project=k8s-staging-ingress-nginx). If you don't have access to cloudbuild, you can also have a look at [this](https://prow.k8s.io/?repo=kubernetes%2Fingress-nginx&job=post-*), to see the progress of the build.
+
+- Proceed only after cloud-build is successful in building a new Ingress-Nginx-Controller image.
+
+
+## 3. PROMOTE the new-testrunner-image PR:
+
+Promoting the images basically means that images, that were pushed to staging container registry in the steps above, now are also pushed to the public container registry. Thus are publicly available. Follow these steps to promote images:
+- When you make changes to the `Dockerfile` or other core content under [images directory ](images), it generates a new image in google cloudbuild. This is because kubernetes projects need to use the infra provided for the kubernetes projects. The new image is always only pushed to the staging repository of K8S. From the staging repo, the new image needs to be promoted to the production repo. And once promoted, its possible to  use the sha of the new image in the code.
+
+### a. Get the sha
+
+- Get the sha of the new image(s) of the controller, from the cloudbuild, from steps above
+
+    - The sha is available in output from [cloud build](https://console.cloud.google.com/cloud-build/builds?project=k8s-staging-ingress-nginx)
+
+    - The sha is also visible [here](https://console.cloud.google.com/gcr/images/k8s-staging-ingress-nginx/global/e2e-test-runner)
+
+    - The sha is also visible [here]((https://prow.k8s.io/?repo=kubernetes%2Fingress-nginx&job=post-*)), after cloud build is finished. Click on the respective job, go to `Artifacts` section in the UI, then again `artifacts` in the directory browser. In the `build.log` at the very bottom you see something like this:
+
+  ```
+  ...
+  pushing manifest for gcr.io/k8s-staging-ingress-nginx/controller:v1.0.2@sha256:e15fac6e8474d77e1f017edc33d804ce72a184e3c0a30963b2a0d7f0b89f6b16
+  ...
+  ```
+
+### b. Add the new image to [k8s.io](http://github.com/kubernetes/k8s.io)
+
+- The sha(s) from the step before (and the tag(s) for the new image(s) have to be added, as a new line, in a file, of the [k8s.io](http://github.com/kubernetes/k8s.io) project of Kubernetes organization.
+
+- Fork that other project (if you don't have a fork already).
+
+- Other project to fork  [Github repo kubernetes/k8s.io](http://github.com/kubernetes/k8s.io)
+
+- Fetch --all and rebase to upstream if already forked.
+
+- Create a branch in your fork, named as the issue number for this release
+
+- In the related branch, of your fork, edit the file k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml.
+
+- For making it easier, you can edit your branch directly in the browser. But be careful about making any mistake.
+
+- Insert the sha(s) & the tag(s), in a new line, in this file [Project kubernetes/k8s.io Ingress-Nginx-Controller Images](https://github.com/kubernetes/k8s.io/blob/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml)  Look at this [example PR and the diff](https://github.com/kubernetes/k8s.io/pull/4499) to see how it was done before
+
+- Save and commit
+
+### c. Create PR
+
+- Open pull request to promote the new e2e-test-runner image.
+
+### d. Merge
+
+- Merge success is required.
+
+- Proceed only after cloud-build is successful in building a new e2e-test-runner image.
+
+
+## 4. Change testrunner-image-sha PR
+
+### a. Get the sha
+
+- Make sure to get the tag and sha of the promoted image from the step before, either from cloudbuild or from [here](https://console.cloud.google.com/gcr/images/k8s-artifacts-prod/us/ingress-nginx/e2e-test-runner).
+
+### a. Make sure your git workspace is ready
+
+- Get your git workspace ready
+
+    - If not using a pre-existing fork, then Fork the repo kubernetes/ingress-nginx
+
+    - Clone (to laptop or wherever)
+
+    - Add upstream
+
+    - Set upstream url to no_push
+
+    - Checkout & switch to branch, named as per related new-release-issue-number
+
+    - If already forked, and upstream already added, then `git fetch --all` and `git rebase upstream/main` (not  origin)
+
+    - Checkout a branch in your fork's clone
+
+    - Perform any other diligence as needed
+
+- Prefer to edit only and only in your branch, in your Fork
+
+### b. Change testrunner-image-sha
+
+- You need update the testrunner-image-sha in the following files :
+
+    - [run-in-docker.sh](https://github.com/kubernetes/ingress-nginx/blob/main/build/run-in-docker.sh#L41)
+    - [Makefile](https://github.com/kubernetes/ingress-nginx/blob/main/test/e2e-image/Makefile#L3)
+
+### c. Create PR
+
+- Look at this PR for how it was done before [example PR](https://github.com/kubernetes/ingress-nginx/pull/9444)
+- Create a PR
+
+### d. Merge
+
+- Finally merge the PR.
+
+## END ##
\ No newline at end of file

From 6eb52c39c8d964e3e23d537a23c1aadb1befb3fd Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Sun, 19 Mar 2023 03:47:15 +0530
Subject: [PATCH 0671/1641] updated nginx-error digest and tags (#9755)

---
 .../custom-errors/custom-default-backend.helm.values.yaml       | 2 +-
 .../customization/custom-errors/custom-default-backend.yaml     | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
index 670208559..807da71a4 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
@@ -6,7 +6,7 @@ defaultBackend:
   image:
     registry: registry.k8s.io
     image: ingress-nginx/nginx-errors
-    tag: "v20220916-gd32f8c343@sha256:09c421ac743bace19ab77979b82186941c5125c95e62cdb40bdf41293b5c275c"
+    tag: "v20230312-helm-chart-4.5.2-28-g66a760794@sha256:332be6ff8c4e93e8845963932f98839dfd52ae49829c29e06475368a3e4fbd9e"
   extraVolumes:
   - name: custom-error-pages
     configMap:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.yaml b/docs/examples/customization/custom-errors/custom-default-backend.yaml
index 072beab3b..5fc5c55e4 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.yaml
@@ -36,7 +36,7 @@ spec:
     spec:
       containers:
       - name: nginx-error-server
-        image: registry.k8s.io/ingress-nginx/nginx-errors:v20220916-gd32f8c343@sha256:09c421ac743bace19ab77979b82186941c5125c95e62cdb40bdf41293b5c275c
+        image: registry.k8s.io/ingress-nginx/nginx-errors:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:332be6ff8c4e93e8845963932f98839dfd52ae49829c29e06475368a3e4fbd9e
         ports:
         - containerPort: 8080
         # Setting the environment variable DEBUG we can see the headers sent 

From 45dae623c74515382d3566a3643c105d0f6d2b2e Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Sun, 19 Mar 2023 21:29:16 +0530
Subject: [PATCH 0672/1641] updated kube-webhook-certgen digest and tags
 (#9756)

---
 charts/ingress-nginx/README.md                                | 4 ++--
 charts/ingress-nginx/values.yaml                              | 4 ++--
 deploy/static/provider/aws/deploy.yaml                        | 4 ++--
 .../static/provider/aws/nlb-with-tls-termination/deploy.yaml  | 4 ++--
 deploy/static/provider/baremetal/deploy.yaml                  | 4 ++--
 deploy/static/provider/cloud/deploy.yaml                      | 4 ++--
 deploy/static/provider/do/deploy.yaml                         | 4 ++--
 deploy/static/provider/exoscale/deploy.yaml                   | 4 ++--
 deploy/static/provider/kind/deploy.yaml                       | 4 ++--
 deploy/static/provider/scw/deploy.yaml                        | 4 ++--
 10 files changed, 20 insertions(+), 20 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index a72805054..6725bb2bb 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -271,11 +271,11 @@ Kubernetes: `>=1.20.0-0`
 | controller.admissionWebhooks.networkPolicyEnabled | bool | `false` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
-| controller.admissionWebhooks.patch.image.digest | string | `"sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f"` |  |
+| controller.admissionWebhooks.patch.image.digest | string | `"sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.admissionWebhooks.patch.image.registry | string | `"registry.k8s.io"` |  |
-| controller.admissionWebhooks.patch.image.tag | string | `"v20220916-gd32f8c343"` |  |
+| controller.admissionWebhooks.patch.image.tag | string | `"v20230312-helm-chart-4.5.2-28-g66a760794"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
 | controller.admissionWebhooks.patch.podAnnotations | object | `{}` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 1fab6f52a..f6064911a 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -598,8 +598,8 @@ controller:
                 ## for backwards compatibility consider setting the full image url via the repository value below
                 ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
                 ## repository:
-                tag: v20220916-gd32f8c343
-                digest: sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+                tag: v20230312-helm-chart-4.5.2-28-g66a760794
+                digest: sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
                 pullPolicy: IfNotPresent
             # -- Provide a priority class name to the webhook patching job
             ##
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 487340a73..bf4ffce19 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -537,7 +537,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -586,7 +586,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 4763623c8..0b58831a3 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -549,7 +549,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -598,7 +598,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index a642d67da..d141e8ca6 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -531,7 +531,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -580,7 +580,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 8b09efac1..97c22739b 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -533,7 +533,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -582,7 +582,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 7461d9794..5b7c86670 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -536,7 +536,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -585,7 +585,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index be0e2f587..c8236ef20 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -542,7 +542,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -591,7 +591,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index abb310999..a8fd055c9 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -547,7 +547,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -596,7 +596,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index fdc3c6cde..1f04b9b9e 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -536,7 +536,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -585,7 +585,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:

From 1f4fb4133240794cdd2fcc2c1b5171ff5b8b9d01 Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Sun, 19 Mar 2023 21:33:16 +0530
Subject: [PATCH 0673/1641] updated digest and sha for e2e-test-cfssl (#9757)

---
 test/e2e/settings/ocsp/ocsp.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index adf4351e7..483013f59 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -290,7 +290,7 @@ func ocspserveDeployment(namespace string) (*appsv1.Deployment, *corev1.Service)
 						Containers: []corev1.Container{
 							{
 								Name:  name,
-								Image: "registry.k8s.io/ingress-nginx/e2e-test-cfssl@sha256:c1b273763048944dd7d22d37adfc65be4fa6a5f6068204292573c6cdc5ea3457",
+								Image: "registry.k8s.io/ingress-nginx/e2e-test-cfssl@sha256:d02c1e18f573449966999fc850f1fed3d37621bf77797562cbe77ebdb06a66ea",
 								Command: []string{
 									"/bin/bash",
 									"-c",

From 18c3a91a0462b8182a2ff61461f002f32749aaef Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Mon, 20 Mar 2023 01:13:16 +0530
Subject: [PATCH 0674/1641] updated digest and sha for opentelemetry (#9758)

---
 charts/ingress-nginx/README.md   | 2 +-
 charts/ingress-nginx/values.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 6725bb2bb..6da71a144 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -395,7 +395,7 @@ Kubernetes: `>=1.20.0-0`
 | controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment # Ref: https://kubernetes.io/docs/user-guide/node-selection/ # |
 | controller.opentelemetry.containerSecurityContext.allowPrivilegeEscalation | bool | `false` |  |
 | controller.opentelemetry.enabled | bool | `false` |  |
-| controller.opentelemetry.image | string | `"registry.k8s.io/ingress-nginx/opentelemetry:v20230107-helm-chart-4.4.2-2-g96b3d2165@sha256:331b9bebd6acfcd2d3048abbdd86555f5be76b7e3d0b5af4300b04235c6056c9"` |  |
+| controller.opentelemetry.image | string | `"registry.k8s.io/ingress-nginx/opentelemetry:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:40f766ac4a9832f36f217bb0e98d44c8d38faeccbfe861fbc1a76af7e9ab257f"` |  |
 | controller.podAnnotations | object | `{}` | Annotations to be added to controller pods # |
 | controller.podLabels | object | `{}` | Labels to add to the pod container metadata |
 | controller.podSecurityContext | object | `{}` | Security Context policies for controller pods |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index f6064911a..f043c17cb 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -536,7 +536,7 @@ controller:
 
     opentelemetry:
         enabled: false
-        image: registry.k8s.io/ingress-nginx/opentelemetry:v20230107-helm-chart-4.4.2-2-g96b3d2165@sha256:331b9bebd6acfcd2d3048abbdd86555f5be76b7e3d0b5af4300b04235c6056c9
+        image: registry.k8s.io/ingress-nginx/opentelemetry:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:40f766ac4a9832f36f217bb0e98d44c8d38faeccbfe861fbc1a76af7e9ab257f
         containerSecurityContext:
             allowPrivilegeEscalation: false
     admissionWebhooks:

From f75b12e690151d6a2e1f692ff22fc01152cbd162 Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Mon, 20 Mar 2023 01:17:16 +0530
Subject: [PATCH 0675/1641] updated digest and sha for
 e2e-test-fastcgi-helloserver (#9759)

---
 test/e2e/framework/fastcgi_helloserver.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/test/e2e/framework/fastcgi_helloserver.go b/test/e2e/framework/fastcgi_helloserver.go
index c3e89c7f5..719048c06 100644
--- a/test/e2e/framework/fastcgi_helloserver.go
+++ b/test/e2e/framework/fastcgi_helloserver.go
@@ -58,7 +58,7 @@ func (f *Framework) NewNewFastCGIHelloServerDeploymentWithReplicas(replicas int3
 					Containers: []corev1.Container{
 						{
 							Name:  "fastcgi-helloserver",
-							Image: "registry.k8s.io/ingress-nginx/e2e-test-fastcgi-helloserver@sha256:723b8187e1768d199b93fd939c37c1ce9427dcbca72ec6415f4d890bca637fcc",
+							Image: "registry.k8s.io/ingress-nginx/e2e-test-fastcgi-helloserver@sha256:0e08c836cc58f1ea862578de99b13bc4264fe071e816f96dc1d79857bfba7473",
 							Env:   []corev1.EnvVar{},
 							Ports: []corev1.ContainerPort{
 								{

From 2d3554794314139e87ac47c3f75e5f6f5d48a467 Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Mon, 20 Mar 2023 01:17:24 +0530
Subject: [PATCH 0676/1641] updated digest and sha for e2e-test-echo (#9760)

---
 .../customization/external-auth-headers/echo-service.yaml       | 2 +-
 test/e2e/framework/deployment.go                                | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/examples/customization/external-auth-headers/echo-service.yaml b/docs/examples/customization/external-auth-headers/echo-service.yaml
index 0fe37be56..57df4d628 100644
--- a/docs/examples/customization/external-auth-headers/echo-service.yaml
+++ b/docs/examples/customization/external-auth-headers/echo-service.yaml
@@ -18,7 +18,7 @@ spec:
       terminationGracePeriodSeconds: 60
       containers:
       - name: echo-service
-        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v20220819-ga98c63787@sha256:778ac6d1188c8de8ecabeddd3c37b72c8adc8c712bad2bd7a81fb23a3514934c
+        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v20230318-helm-chart-4.5.2-44-gfec1dbe3a@sha256:4938d1d91a2b7d19454460a8c1b010b89f6ff92d2987fd889ac3e8fc3b70d91a
         ports:
         - containerPort: 8080
         resources:
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 8115fd12e..4627a8892 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -93,7 +93,7 @@ func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
 		o(options)
 	}
 
-	deployment := newDeployment(options.name, options.namespace, "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:778ac6d1188c8de8ecabeddd3c37b72c8adc8c712bad2bd7a81fb23a3514934c", 80, int32(options.replicas),
+	deployment := newDeployment(options.name, options.namespace, "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:4938d1d91a2b7d19454460a8c1b010b89f6ff92d2987fd889ac3e8fc3b70d91a", 80, int32(options.replicas),
 		nil, nil, nil,
 		[]corev1.VolumeMount{},
 		[]corev1.Volume{},

From 9a1cfc7181d0afc1e405962c5308abaa0501b751 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Mar 2023 11:01:37 +0000
Subject: [PATCH 0677/1641] Bump securego/gosec from 2.14.0 to 2.15.0

Bumps [securego/gosec](https://github.com/securego/gosec) from 2.14.0 to 2.15.0.
- [Release notes](https://github.com/securego/gosec/releases)
- [Changelog](https://github.com/securego/gosec/blob/master/.goreleaser.yml)
- [Commits](https://github.com/securego/gosec/compare/1af1d5bb49259b62e45c505db397dd2ada5d74f8...a459eb0ba387d9bd083d5c2e2354dbeef2465038)

---
updated-dependencies:
- dependency-name: securego/gosec
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 00049bddf..3d7c21c3d 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -68,7 +68,7 @@ jobs:
         uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
 
       - name: Run Gosec Security Scanner
-        uses: securego/gosec@1af1d5bb49259b62e45c505db397dd2ada5d74f8 # v2.14.0
+        uses: securego/gosec@a459eb0ba387d9bd083d5c2e2354dbeef2465038 # v2.15.0
         with:
           # G601 for zz_generated.deepcopy.go
           # G306 TODO: Expect WriteFile permissions to be 0600 or less

From 12da492f0112a5833f6437e00a485c23562856b2 Mon Sep 17 00:00:00 2001
From: Ole-Martin Bratteng <1681525+omBratteng@users.noreply.github.com>
Date: Mon, 20 Mar 2023 13:05:18 +0100
Subject: [PATCH 0678/1641] docs(helm): fix value key in readme for enabling
 certManager (#9640)

---
 charts/ingress-nginx/README.md        | 2 +-
 charts/ingress-nginx/README.md.gotmpl | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 6da71a144..9659df139 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -228,7 +228,7 @@ A validating and configuration requires the endpoint to which the request is sen
 #### Alternatives
 It should be possible to use [cert-manager/cert-manager](https://github.com/cert-manager/cert-manager) if a more complete solution is required.
 
-You can enable automatic self-signed TLS certificate provisioning via cert-manager by setting the `controller.admissionWebhooks.certManager.enable` value to true.
+You can enable automatic self-signed TLS certificate provisioning via cert-manager by setting the `controller.admissionWebhooks.certManager.enabled` value to true.
 
 Please ensure that cert-manager is correctly installed and configured.
 
diff --git a/charts/ingress-nginx/README.md.gotmpl b/charts/ingress-nginx/README.md.gotmpl
index 78e4f38d4..99a2a62cb 100644
--- a/charts/ingress-nginx/README.md.gotmpl
+++ b/charts/ingress-nginx/README.md.gotmpl
@@ -227,7 +227,7 @@ A validating and configuration requires the endpoint to which the request is sen
 #### Alternatives
 It should be possible to use [cert-manager/cert-manager](https://github.com/cert-manager/cert-manager) if a more complete solution is required.
 
-You can enable automatic self-signed TLS certificate provisioning via cert-manager by setting the `controller.admissionWebhooks.certManager.enable` value to true.
+You can enable automatic self-signed TLS certificate provisioning via cert-manager by setting the `controller.admissionWebhooks.certManager.enabled` value to true.
 
 Please ensure that cert-manager is correctly installed and configured.
 

From 1936973ea9d95b62fe8077e1cb36b2471d2c16b8 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Mar 2023 09:33:19 -0700
Subject: [PATCH 0679/1641] Bump actions/add-to-project from 0.4.0 to 0.4.1
 (#9765)

Bumps [actions/add-to-project](https://github.com/actions/add-to-project) from 0.4.0 to 0.4.1.
- [Release notes](https://github.com/actions/add-to-project/releases)
- [Commits](https://github.com/actions/add-to-project/compare/960fbad431afda394cfcf8743445e741acd19e85...4756e6330fe1e0a736690d3cfd9f11c9399c2ed4)

---
updated-dependencies:
- dependency-name: actions/add-to-project
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/project.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/project.yml b/.github/workflows/project.yml
index d75435712..35d6d3e5c 100644
--- a/.github/workflows/project.yml
+++ b/.github/workflows/project.yml
@@ -13,7 +13,7 @@ jobs:
       repository-projects: write
       issues: write
     steps:
-      - uses: actions/add-to-project@960fbad431afda394cfcf8743445e741acd19e85 # v0.4.0
+      - uses: actions/add-to-project@4756e6330fe1e0a736690d3cfd9f11c9399c2ed4 # v0.4.1
         with:
           project-url: https://github.com/orgs/kubernetes/projects/104
           github-token: ${{ secrets.PROJECT_WRITER }}

From 5c0b70764395832d243cd6647aa384c891c453da Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 21 Mar 2023 06:33:08 -0700
Subject: [PATCH 0680/1641] Bump actions/dependency-review-action from 3.0.3 to
 3.0.4 (#9766)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3.0.3 to 3.0.4.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/c090f4e553673e6e505ea70d6a95362ee12adb94...f46c48ed6d4f1227fb2d9ea62bf6bcbed315589e)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 0ecdcd55c..571610dc6 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@c090f4e553673e6e505ea70d6a95362ee12adb94 # v3.0.3
+        uses: actions/dependency-review-action@f46c48ed6d4f1227fb2d9ea62bf6bcbed315589e # v3.0.4

From 9b3599206c0b5789523678a7f09d8c12d9f41cb7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 21 Mar 2023 06:35:10 -0700
Subject: [PATCH 0681/1641] Bump k8s.io/component-base from 0.26.2 to 0.26.3
 (#9764)

Bumps [k8s.io/component-base](https://github.com/kubernetes/component-base) from 0.26.2 to 0.26.3.
- [Release notes](https://github.com/kubernetes/component-base/releases)
- [Commits](https://github.com/kubernetes/component-base/compare/v0.26.2...v0.26.3)

---
updated-dependencies:
- dependency-name: k8s.io/component-base
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index 4c4bc903a..f351bae17 100644
--- a/go.mod
+++ b/go.mod
@@ -30,14 +30,14 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.26.2
+	k8s.io/api v0.26.3
 	k8s.io/apiextensions-apiserver v0.26.1
-	k8s.io/apimachinery v0.26.2
+	k8s.io/apimachinery v0.26.3
 	k8s.io/apiserver v0.26.1
 	k8s.io/cli-runtime v0.26.0
-	k8s.io/client-go v0.26.2
+	k8s.io/client-go v0.26.3
 	k8s.io/code-generator v0.26.1
-	k8s.io/component-base v0.26.2
+	k8s.io/component-base v0.26.3
 	k8s.io/klog/v2 v2.90.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.14.5
diff --git a/go.sum b/go.sum
index c3a2152b7..00918fc47 100644
--- a/go.sum
+++ b/go.sum
@@ -741,22 +741,22 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.26.2 h1:dM3cinp3PGB6asOySalOZxEG4CZ0IAdJsrYZXE/ovGQ=
-k8s.io/api v0.26.2/go.mod h1:1kjMQsFE+QHPfskEcVNgL3+Hp88B80uj0QtSOlj8itU=
+k8s.io/api v0.26.3 h1:emf74GIQMTik01Aum9dPP0gAypL8JTLl/lHa4V9RFSU=
+k8s.io/api v0.26.3/go.mod h1:PXsqwPMXBSBcL1lJ9CYDKy7kIReUydukS5JiRlxC3qE=
 k8s.io/apiextensions-apiserver v0.26.1 h1:cB8h1SRk6e/+i3NOrQgSFij1B2S0Y0wDoNl66bn8RMI=
 k8s.io/apiextensions-apiserver v0.26.1/go.mod h1:AptjOSXDGuE0JICx/Em15PaoO7buLwTs0dGleIHixSM=
-k8s.io/apimachinery v0.26.2 h1:da1u3D5wfR5u2RpLhE/ZtZS2P7QvDgLZTi9wrNZl/tQ=
-k8s.io/apimachinery v0.26.2/go.mod h1:ats7nN1LExKHvJ9TmwootT00Yz05MuYqPXEXaVeOy5I=
+k8s.io/apimachinery v0.26.3 h1:dQx6PNETJ7nODU3XPtrwkfuubs6w7sX0M8n61zHIV/k=
+k8s.io/apimachinery v0.26.3/go.mod h1:ats7nN1LExKHvJ9TmwootT00Yz05MuYqPXEXaVeOy5I=
 k8s.io/apiserver v0.26.1 h1:6vmnAqCDO194SVCPU3MU8NcDgSqsUA62tBUSWrFXhsc=
 k8s.io/apiserver v0.26.1/go.mod h1:wr75z634Cv+sifswE9HlAo5FQ7UoUauIICRlOE+5dCg=
 k8s.io/cli-runtime v0.26.0 h1:aQHa1SyUhpqxAw1fY21x2z2OS5RLtMJOCj7tN4oq8mw=
 k8s.io/cli-runtime v0.26.0/go.mod h1:o+4KmwHzO/UK0wepE1qpRk6l3o60/txUZ1fEXWGIKTY=
-k8s.io/client-go v0.26.2 h1:s1WkVujHX3kTp4Zn4yGNFK+dlDXy1bAAkIl+cFAiuYI=
-k8s.io/client-go v0.26.2/go.mod h1:u5EjOuSyBa09yqqyY7m3abZeovO/7D/WehVVlZ2qcqU=
+k8s.io/client-go v0.26.3 h1:k1UY+KXfkxV2ScEL3gilKcF7761xkYsSD6BC9szIu8s=
+k8s.io/client-go v0.26.3/go.mod h1:ZPNu9lm8/dbRIPAgteN30RSXea6vrCpFvq+MateTUuQ=
 k8s.io/code-generator v0.26.1 h1:dusFDsnNSKlMFYhzIM0jAO1OlnTN5WYwQQ+Ai12IIlo=
 k8s.io/code-generator v0.26.1/go.mod h1:OMoJ5Dqx1wgaQzKgc+ZWaZPfGjdRq/Y3WubFrZmeI3I=
-k8s.io/component-base v0.26.2 h1:IfWgCGUDzrD6wLLgXEstJKYZKAFS2kO+rBRi0p3LqcI=
-k8s.io/component-base v0.26.2/go.mod h1:DxbuIe9M3IZPRxPIzhch2m1eT7uFrSBJUBuVCQEBivs=
+k8s.io/component-base v0.26.3 h1:oC0WMK/ggcbGDTkdcqefI4wIZRYdK3JySx9/HADpV0g=
+k8s.io/component-base v0.26.3/go.mod h1:5kj1kZYwSC6ZstHJN7oHBqcJC6yyn41eR+Sqa/mQc8E=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d h1:U9tB195lKdzwqicbJvyJeOXV7Klv+wNAWENRnXEGi08=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=

From 00bfb2e84a3cbbce501d5e23cf112772cae6eb0e Mon Sep 17 00:00:00 2001
From: Adam Jacques <ajacques@users.noreply.github.com>
Date: Tue, 21 Mar 2023 06:37:08 -0700
Subject: [PATCH 0682/1641] Fix several Helm YAML issues with extraModules and
 extraInitContainers (#9709)

* Fix indention issue for DaemonSets when using extraModules and extraInitContainers

* Improve documentation

* Unify and fix templating

* Enable support for the opentelemetry from values.yaml
---
 .../templates/controller-daemonset.yaml       | 19 ++++++++-----------
 .../templates/controller-deployment.yaml      |  2 +-
 charts/ingress-nginx/values.yaml              |  2 ++
 3 files changed, 11 insertions(+), 12 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index efa273dac..bce21a7d6 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -178,17 +178,14 @@ spec:
       {{- end }}
       {{- if .Values.controller.extraModules }}
         {{- range .Values.controller.extraModules }}
-          - name: {{ .Name }}
-            image: {{ .Image }}
-            command: ['sh', '-c', '/usr/local/bin/init_module.sh']
-            {{- if (or $.Values.controller.containerSecurityContext .containerSecurityContext) }}
-            securityContext: {{ .containerSecurityContext | default $.Values.controller.containerSecurityContext | toYaml | nindent 14 }}
-            {{- end }}
-            volumeMounts:
-              - name: modules
-                mountPath: /modules_mount
+          {{ $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
+{{ include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext) | indent 8 }}
         {{- end }}
       {{- end }}
+      {{- if .Values.controller.opentelemetry.enabled}}
+          {{ $otelContainerSecurityContext := $.Values.controller.opentelemetry.containerSecurityContext | default $.Values.controller.containerSecurityContext }}
+          {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext) | nindent 8}}
+      {{- end}}
     {{- end }}
     {{- if .Values.controller.hostNetwork }}
       hostNetwork: {{ .Values.controller.hostNetwork }}
@@ -207,9 +204,9 @@ spec:
     {{- end }}
       serviceAccountName: {{ template "ingress-nginx.serviceAccountName" . }}
       terminationGracePeriodSeconds: {{ .Values.controller.terminationGracePeriodSeconds }}
-    {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraVolumes .Values.controller.extraModules) }}
+    {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraVolumes .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
       volumes:
-      {{- if .Values.controller.extraModules }}
+      {{- if (or .Values.controller.extraModules .Values.controller.opentelemetry.enabled)}}
         - name: modules
           emptyDir: {}
       {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 36d7670e3..323d87623 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -185,7 +185,7 @@ spec:
       {{- if .Values.controller.extraModules }}
         {{- range .Values.controller.extraModules }}
           {{ $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext | nindent 8) }}
+{{ include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext) | indent 8 }}
         {{- end }}
       {{- end }}
       {{- if .Values.controller.opentelemetry.enabled}}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index f043c17cb..1a538f810 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -527,6 +527,8 @@ controller:
 
     # -- Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module
     extraModules: []
+    # - name: mytestmodule
+    #   image: registry.k8s.io/ingress-nginx/mytestmodule
     #   containerSecurityContext:
     #     allowPrivilegeEscalation: false
     #

From 9e097fb79d1e8f0eb792107167f6a707ee9f0b3c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 21 Mar 2023 06:39:07 -0700
Subject: [PATCH 0683/1641] Bump aquasecurity/trivy-action from 0.8.0 to 0.9.2
 (#9767)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.8.0 to 0.9.2.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/9ab158e8597f3b310480b9a69402b419bc03dbd5...1f0aa582c8c8f5f7639610d6d38baddfea4fdcee)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index b19031ff6..88ba16fa2 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@9ab158e8597f3b310480b9a69402b419bc03dbd5 # v0.8.0
+        uses: aquasecurity/trivy-action@1f0aa582c8c8f5f7639610d6d38baddfea4fdcee # v0.9.2
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'

From e3c9382fc927cfbdfaa7a006b5ef2b0c332242d1 Mon Sep 17 00:00:00 2001
From: Taehyun Kim <kgyoo8232@gmail.com>
Date: Tue, 21 Mar 2023 22:41:08 +0900
Subject: [PATCH 0684/1641] fix: controller psp's volume config (#9740)

* fix: controller psp's volume config

* revert chart version
---
 charts/ingress-nginx/templates/controller-psp.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-psp.yaml b/charts/ingress-nginx/templates/controller-psp.yaml
index 2e0499ce9..3c499b9d4 100644
--- a/charts/ingress-nginx/templates/controller-psp.yaml
+++ b/charts/ingress-nginx/templates/controller-psp.yaml
@@ -28,9 +28,9 @@ spec:
   volumes:
     - 'configMap'
     - 'emptyDir'
-    #- 'projected'
+    - 'projected'
     - 'secret'
-    #- 'downwardAPI'
+    - 'downwardAPI'
 {{- if .Values.controller.hostNetwork }}
   hostNetwork: {{ .Values.controller.hostNetwork }}
 {{- end }}

From 43168a7fe119b8e6a8b99944fa29e94b46a1e216 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 21 Mar 2023 13:42:46 +0000
Subject: [PATCH 0685/1641] Bump actions/checkout from 3.2.0 to 3.4.0

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.2.0 to 3.4.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/755da8c3cf115ac066823e79a1e1788f8940201b...24cb9080177205b6e8c946b17badbe402adc938f)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/ci.yaml                  | 22 +++++++++++-----------
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  2 +-
 .github/workflows/vulnerability-scans.yaml |  4 ++--
 8 files changed, 21 insertions(+), 21 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 3d7c21c3d..3ce77b419 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -39,7 +39,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -65,7 +65,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
 
       - name: Run Gosec Security Scanner
         uses: securego/gosec@a459eb0ba387d9bd083d5c2e2354dbeef2465038 # v2.15.0
@@ -82,7 +82,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
       
       - name: Set up Go
         id: go
@@ -101,7 +101,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
       
       - name: Set up Go
         id: go
@@ -120,7 +120,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
       
       - name: Set up Go
         id: go
@@ -141,7 +141,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
 
       - name: Set up Go
         id: go
@@ -208,7 +208,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
 
       - name: Setup Go
         uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
@@ -288,7 +288,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -342,7 +342,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -391,7 +391,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
@@ -464,7 +464,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 571610dc6..46a587ded 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@f46c48ed6d4f1227fb2d9ea62bf6bcbed315589e # v3.0.4
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 241921ecf..3ab49ef10 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index b1db0c1d8..4e7fde34f 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
 
       - name: Run Artifact Hub lint
         run: |
@@ -61,7 +61,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 89dfdfad6..dd31420bf 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 760420765..87ba6aca9 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -17,7 +17,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 8a3af47de..529cc7c28 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
         with:
           persist-credentials: false
 
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 88ba16fa2..9649140ec 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@755da8c3cf115ac066823e79a1e1788f8940201b # v3.2.0
+        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
 
       - shell: bash
         id: test

From e4a66fd2f625de3bcc7aaa793b31f529a0662009 Mon Sep 17 00:00:00 2001
From: Sergei Kaznakhovskii <kaznakhovskiy@gmail.com>
Date: Tue, 21 Mar 2023 07:47:09 -0600
Subject: [PATCH 0686/1641] Fix canary-weight-total annotation ignored in rule
 backends (#9729)

* Missed canary weight total

    - added canary weight total for spec rules

* - added e2e test
---
 internal/ingress/controller/controller.go | 30 +++++++++++------------
 test/e2e/annotations/canary.go            | 27 ++++++++++++++++++++
 2 files changed, 42 insertions(+), 15 deletions(-)

diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 1914765d8..20f8c8687 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -33,6 +33,7 @@ import (
 	"k8s.io/apimachinery/pkg/util/wait"
 	clientset "k8s.io/client-go/kubernetes"
 	"k8s.io/ingress-nginx/internal/ingress/annotations"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/canary"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/log"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/proxy"
@@ -968,14 +969,7 @@ func (n *NGINXController) createUpstreams(data []*ingress.Ingress, du *ingress.B
 			// configure traffic shaping for canary
 			if anns.Canary.Enabled {
 				upstreams[defBackend].NoServer = true
-				upstreams[defBackend].TrafficShapingPolicy = ingress.TrafficShapingPolicy{
-					Weight:        anns.Canary.Weight,
-					WeightTotal:   anns.Canary.WeightTotal,
-					Header:        anns.Canary.Header,
-					HeaderValue:   anns.Canary.HeaderValue,
-					HeaderPattern: anns.Canary.HeaderPattern,
-					Cookie:        anns.Canary.Cookie,
-				}
+				upstreams[defBackend].TrafficShapingPolicy = newTrafficShapingPolicy(anns.Canary)
 			}
 
 			if len(upstreams[defBackend].Endpoints) == 0 {
@@ -1040,13 +1034,7 @@ func (n *NGINXController) createUpstreams(data []*ingress.Ingress, du *ingress.B
 				// configure traffic shaping for canary
 				if anns.Canary.Enabled {
 					upstreams[name].NoServer = true
-					upstreams[name].TrafficShapingPolicy = ingress.TrafficShapingPolicy{
-						Weight:        anns.Canary.Weight,
-						Header:        anns.Canary.Header,
-						HeaderValue:   anns.Canary.HeaderValue,
-						HeaderPattern: anns.Canary.HeaderPattern,
-						Cookie:        anns.Canary.Cookie,
-					}
+					upstreams[name].TrafficShapingPolicy = newTrafficShapingPolicy(anns.Canary)
 				}
 
 				if len(upstreams[name].Endpoints) == 0 {
@@ -1819,3 +1807,15 @@ func (n *NGINXController) getStreamSnippets(ingresses []*ingress.Ingress) []stri
 	}
 	return snippets
 }
+
+// newTrafficShapingPolicy creates new ingress.TrafficShapingPolicy instance using canary configuration
+func newTrafficShapingPolicy(cfg canary.Config) ingress.TrafficShapingPolicy {
+	return ingress.TrafficShapingPolicy{
+		Weight:        cfg.Weight,
+		WeightTotal:   cfg.WeightTotal,
+		Header:        cfg.Header,
+		HeaderValue:   cfg.HeaderValue,
+		HeaderPattern: cfg.HeaderPattern,
+		Cookie:        cfg.Cookie,
+	}
+}
diff --git a/test/e2e/annotations/canary.go b/test/e2e/annotations/canary.go
index 893a4dc8b..6dd81fdd8 100644
--- a/test/e2e/annotations/canary.go
+++ b/test/e2e/annotations/canary.go
@@ -830,6 +830,33 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			TestMainlineCanaryDistribution(f, host)
 		})
+
+		ginkgo.It("should route requests split between mainline and canary if canary weight is 100 and weight total is 200", func() {
+			host := "foo"
+			annotations := map[string]string{}
+
+			ing := framework.NewSingleIngress(host, "/", host,
+				f.Namespace, framework.EchoService, 80, annotations)
+			f.EnsureIngress(ing)
+
+			f.WaitForNginxServer(host,
+				func(server string) bool {
+					return strings.Contains(server, "server_name foo")
+				})
+
+			canaryIngName := fmt.Sprintf("%v-canary", host)
+			canaryAnnotations := map[string]string{
+				"nginx.ingress.kubernetes.io/canary":              "true",
+				"nginx.ingress.kubernetes.io/canary-weight":       "100",
+				"nginx.ingress.kubernetes.io/canary-weight-total": "200",
+			}
+
+			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
+				f.Namespace, canaryService, 80, canaryAnnotations)
+			f.EnsureIngress(canaryIng)
+
+			TestMainlineCanaryDistribution(f, host)
+		})
 	})
 
 	ginkgo.Context("Single canary Ingress", func() {

From c075793ae5ee52e28cf8420c33cf3b73022161e1 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 21 Mar 2023 16:34:12 -0400
Subject: [PATCH 0687/1641] drop k8s 1.23 support (#9772)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/ci.yaml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 3ce77b419..c2c108638 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -204,7 +204,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.23.13, v1.24.7, v1.25.3, v1.26.0]
+        k8s: [v1.24.7, v1.25.3, v1.26.0]
 
     steps:
       - name: Checkout
@@ -284,7 +284,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.23.13, v1.24.7, v1.25.3, v1.26.0]
+        k8s: [v1.24.7, v1.25.3, v1.26.0]
 
     steps:
       - name: Checkout
@@ -337,7 +337,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.23.13, v1.24.7, v1.25.3, v1.26.0]
+        k8s: [v1.24.7, v1.25.3, v1.26.0]
 
     steps:
 
@@ -460,7 +460,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.23.13, v1.24.7, v1.25.3, v1.26.0]
+        k8s: [v1.24.7, v1.25.3, v1.26.0]
 
     steps:
       - name: Checkout

From c8cb9167d3bfe6a2ed50796e179b3aec648a7e16 Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Wed, 22 Mar 2023 19:58:22 +0100
Subject: [PATCH 0688/1641] feat: OpenTelemetry module integration (#9062)

* OpenTelemetry module integration

* e2e test

* e2e test fix

* default OpentelemetryConfig

* e2e values

* mount otel module for otel test only

* propagate IS_CHROOT

* propagate IS_CHROOT e2e test

* code doc

* comments

* golint

* opentelemetry doc

* zipkin

* zipkin

* typo

* update e2e test OpenTelemetry value

* use opentelemetry value

* revert merge conflict

* fix

* format

* review comments

* clean
---
 docs/images/otel-grafana-demo.png             | Bin 0 -> 123976 bytes
 docs/images/otel-jaeger-demo.png              | Bin 0 -> 120283 bytes
 docs/images/otel-zipkin-demo.png              | Bin 0 -> 133964 bytes
 docs/kubectl-plugin.md                        |   1 +
 .../nginx-configuration/annotations.md        |  20 ++
 .../nginx-configuration/configmap.md          |  53 ++++
 .../third-party-addons/opentelemetry.md       | 260 ++++++++++++++++++
 internal/ingress/annotations/annotations.go   |   3 +
 .../ingress/annotations/opentelemetry/main.go | 101 +++++++
 .../annotations/opentelemetry/main_test.go    | 170 ++++++++++++
 internal/ingress/controller/config/config.go  |  55 ++++
 internal/ingress/controller/controller.go     |   1 +
 internal/ingress/controller/nginx.go          |  43 +++
 .../ingress/controller/template/template.go   |  96 +++++++
 .../controller/template/template_test.go      | 153 +++++++++++
 mkdocs.yml                                    |   1 +
 pkg/apis/ingress/types.go                     |   4 +
 pkg/apis/ingress/types_equals.go              |   4 +
 rootfs/etc/nginx/template/nginx.tmpl          |  26 ++
 test/e2e/framework/exec.go                    |   7 +-
 test/e2e/run-e2e-suite.sh                     |   1 +
 test/e2e/settings/opentelemetry.go            | 119 ++++++++
 test/e2e/wait-for-nginx.sh                    |  15 +-
 23 files changed, 1131 insertions(+), 2 deletions(-)
 create mode 100644 docs/images/otel-grafana-demo.png
 create mode 100644 docs/images/otel-jaeger-demo.png
 create mode 100644 docs/images/otel-zipkin-demo.png
 mode change 100755 => 100644 docs/user-guide/nginx-configuration/configmap.md
 create mode 100644 docs/user-guide/third-party-addons/opentelemetry.md
 create mode 100644 internal/ingress/annotations/opentelemetry/main.go
 create mode 100644 internal/ingress/annotations/opentelemetry/main_test.go
 mode change 100755 => 100644 rootfs/etc/nginx/template/nginx.tmpl
 create mode 100644 test/e2e/settings/opentelemetry.go

diff --git a/docs/images/otel-grafana-demo.png b/docs/images/otel-grafana-demo.png
new file mode 100644
index 0000000000000000000000000000000000000000..61b50c8612dc1aaa80de0bc416dc683f39bd201a
GIT binary patch
literal 123976
zcmd43cQo7o`#-FUQlqWX(xQ{1cI??IYLD1z)r?pzp>~JSR?*sf6GX&{5qqmWB4*5@
zgxE8}Fa3PJpYNxApL3u4KKCE@xvz5^uROh8*Xud1`M9q5tfiquL&Z!*Mn*=X{NlL|
z85vbN8QJ;F%jBeyGSP@o(yw!FI!e#Tiu&%XkUm_rd#e7FjI1Q$%8BJA(q~H77e;Pm
zWGo@Sf6hfLZrPBLo#iM$f2#Y|Yz=$GLU-i-*%n)*+``4c^ov(6wvnCBxuvjK@>n?f
zOXerxfe-1=3>LW16l3S%ij@`&H$sm^QCIY}xLUs$IzIWJV5Ix)x*^pk#cyP)AFf}$
z4vf5eMi3KnvlH}EyM8rt16tQp?TPQ1I*@+t@1_xjq5Rx&ku;}22|WN>y7uP)={oP)
z`MiG&eWE(2`;VdLL1bM27|MJ`#_*3J?R)QjZ{8pDF7K+`@16OB<a95mpa0`C>GCeu
zMXhsx4_#&We>ANeWn5sZRW9`(55IF&PpqQ5|BA#=!@r}@IMhU}9&+<<ZvMiTlUSFZ
zP>_+y!Q&m&o_9QmR=Iid2NN>&M6nDS$+xR?X%k0ZUtAy~Yy9z8r>>3F@l+z5UI)&V
z&wR=Fua$*Gu}BD80%ZeUWO=M|^pM`Jg`6-jY%YUpbmt)p$*%o<x2oZ0xnjbVWnus4
zJinQD!r@}VG0eKIwU+3Ki`tZbZqd8;7J3=Dl+~O^hs*r!?+S0fkdY)(?3z^dVEQL|
zV&OytQ2X;slPwDEESik#f4}D=Wtx5>Y%>sep(l^Nvp6V7@<UcDAL)&se`20-q2+o4
z<x<!S@j7~)XxdCg`e$%$GGYAg@JQj&0lFNdc6a5^19g3KC0IS_?FBka>$l=SVswJ*
z?&O=8xEP~|8ROx4IOvpguCv)cb>Al@=jK9Fa^uGgaRTiL&IYf;W8+|jyXIU+xvdGd
zI|d03Iur$h?<UGYz_v;$c>w`D#h)UP%<RA@Lu0EMvC{cHAiuVDiivap_Mg_I?01%C
z%2YhMH=LzAi_UJa$z*3KMNE{T#R83O$o9TsDEmTKq>YP)hIIT0>)JRPn3vKYhx#rm
zF~x5)M29GTS@Q)+cGKUNfn}h=P6f6eusnehE^hA8jE@vk96Z958L76c+{HCm&lac+
z7w1tsWyW=xKjj!&QM|b#P@{HugNzKo>k;<L{zyCK1lH>P1nB7ab$))H#N~ZeUge`B
z{upwtBysgZm7E-#z6XEIrZJ!AiLXQ4kJR&I@7lZaDTH6Y$@G{lA3vCy%1e`me>Sx%
zco=95B13|PZ!HhvJ=p$ub{5Te&v#X7g0wAiRzER8_0s$BowpMp0f+1N99ILi9^?Vu
zF|ReGePR6LA+eb8@sJmDK$Es_q@~C$%wj%<vk))^Ov2hx>>k8UF0W^KdXP4A&|i8z
zi}viH)IIE$V5HUryv`*6e=B`h7`-G!#e*B#vF05K6fQlbypo}~`X%izBVj*qUYk-<
zckb)h4=N7ZIVsW!12meBzhO=4vF8iULL@b20cwYUzce%bJr$UUrk8=Rkre1^9$Sz>
z)O|?X#?!y11Tb`VoR8lNh|0a}MKW>k8vL#8)UYDjSZ|$deXY6--M?9$+ph3;5K!O{
znsaY+3DLrWelH+4N&<pYIBm=yW@u<g{YjZTQTxy5p1xVQ?vdWCoFWmSF==+X39=_0
z6<PY0z{o?wp#Nq4Z&OMxvjC}RmA@w^HO;%PE--MMFZ3!7d!Mw?SvJj3(z+Y+IfF)G
z&I9HDwum$ucLP@W0xSI;LX&eyGqaaE4`BxvcWL<j;Hnbl*s(TD`7y)A^_N8+XgplF
z-l1mEd}cpp!y!5s%t3mPnGYsoeKuomw=K8_{e;~#Ni5fRLG2R+>osyp>B!8K|A+K7
zg+Dt4=Hj!4!{dZjgMlf<fkMua43Mkz^suUpBlHsyjCT#HfsJhTr$-MeBRV!F|EGBy
z7ayMx5Z7KGknAx5>XR-ID0XR@@h8B`cyJdc5wvRu#UfKHuVw6ZXWw7QEwXN?)D!IY
zk?ktNk1dq{<r|n|<<1C-FAfN)BDKx7Fd9i;Z^cl3hv`D5IUt$+!!=x;AGQ*4w(pl-
zv~~cV_|zOF;$xZuDGKr7m_&s4m|Q#$#hhKR0lo?Hi`^Ul2k#pJ*3CSIXJhYm34^k|
zmJG=Ws~8W1(6^$##yZ<!v}`hYrKN9nsL9eZzJ!Hohcd!%-1J0+N5`(Z4nEycTL(Bz
z0Hh{H?Z+w?N#+Ih0NJ_^o7|78hfF`_<(<yI%_8x(vAod1WyDIq`g5Y;-eV|@*D!TK
ziVv~_bnZ`|2)OHflW=e9B#?VEJ0&@f-wwUzeBczQc`kjc7;&%<nOSO}Ln~l66rn}O
zhMpDXEaH0^t23Owv^DBp|Bzt`#@J|ArQ`ruzacul0cX+-B^#(ZL=g6dE=jlw+Q0H|
zrMD-d^X9K|{JqWPa?bPdI{`Pn?vX?!PLGcY{r&5=g2)|fSK48E*}tW#m<4t<pFdGo
zkcA}XC7Yumg%mC+Kg<hOMJ508&vGrxf!rt8sA}#|8<MyJoO20&0Y8}X>x-WMtqRvW
zI#Wn0qsyh^1C23A{mbva3&t4+-VI90+N2}#2s298uqFaCoNsV`WBvyh+V|87BbFpT
z^sc=F9l>?9uJQ06)47)4HvH*w2I*B*&u|Jcqmj?j?!EhxxU)C9Nw9NhM^iEn^{SC<
z<$q{4TH!M3oB$q31f4J_<=d?i2wKDr31JQWLMt9IlkmD9yt4Ph_M!LWjM_+`xNUX`
zlN9jEFz}~PR@-e`aI3s(kD*N@;NFe`jl|?vF7xj8h@rLGw=@A#s#YjrH;xVSoUbKJ
z#>?R(BlaJ1eNzm)suA9NBbh=Ia9`@tV7Bu;v=IH2Z(FLg7fChKx9n$Ret4Y}xTftG
znh2;TCF(5b`tRm(j?hjboF_Fqrn<CWPOV@X)OYtrDUu7&0(L0i8`~0?T1Rs16832Q
zwXvL2XQ=^a<ybUNJugwXHJUrd{UeH^85)ZPmyhK?@YL4frk6n?#ZBte{}BZOcsT;d
zkmb5IkG_-d)S9<?sX(&PQZtWv1|^e1)yC&>nKBpDs;{#kl(m(B6;9@|1~th#;nT*|
z3T+yODBVjN4H*V0za!#5D7{4dsAd+?^KQlXt&8k%o$q%{FLS}yn7+%k$F}yT=u-zL
z#n4fW(N7@m9>c1KIkJSzV0Zp38<X;1v0I7DAca3PiR8H(Dh&ggyf&XdXa-()Z=xg1
zdxV-ru(>yxi@G;OEZ8|!RNzHzLN`uy^(HPCY%uR_hG_EGOuFsbku>Emx~uj8bWT{0
zX$P98sp?s1G47OD?ODi9y^aWn7g8#@A%C??0{Z<X29LkE69swn>iRXb919Z+^|L>u
zh#ya~**OfdYmV;EO=LT~Ja#qp@Q=K1BH{*R;nCYNs5Y*%E?TOM$?9@Tp=5ULejZlE
z)n+WR0p2NpZIpYuX{?6`D?A_~>?au3dkiyV;$w4Hz`c1PE>k<kZ~aP{xJNLTJ_>^}
zn2^-*sOR*A_L>KhrGTHQYL$1|N5OgRVRwqUYs#bg8`f2*kl;x!o@8kgZt3@ikJQo0
zPzvrrrjpq8*Wht|$p?zH?b68SEq%!DBjcli$GuatQkD-v&z3@&-76&ZAy*Lp-II6Z
z{WFGf4YN{jGq25YQvMEW(bsv>F?7aq@Y}|6(oOUIX$72>@tgU*5~nBP%K0I|(#bhT
z2he=YNDg0z&@h8nZvw)OOk-^$aF*=B+ce3U;{BR~#q~d$HuK>ip`+_Q_5<re!UtO=
ztIq5p_CmT$Ze@V2c7M{Jd%c`Wd2dSt`DDMd9wGI{;$yPT11l~RVJUWnY!GjWg>kaJ
z4xHnKbW(G}iJuKNCeuc{8<NtWN=uRAn3o?U%=mTb&$v~A<cU{dJbX$u=b4r-rg*;h
z(Wc$R7EWs%qA?m+J~|&WjK9?I4ZVUXb&~P@@5)J6V$;kvWFv9Wg_zts&W%4qgz+CP
z3fYRsL)WXTG2fu`a#~dh66Ugc^n^t12Im!TfVAG{)LEPH4Bz#x?t@y)@riR5z~)T>
z(~jy$GzUkX=4~Md%G!z^wc=KGD5wkFl)E^}++~s-;h9vL19?;6o%BZT#Q>0Nx<VyX
zy*gK7dOJ|CNS!v=D<XEa5&v>s!q9=;Fp>RN=`IJLD2Zv5%4v$pS0)1(02B<~)l~wP
zKiaRlXZ`Ym57&>g_cqlNhq;`87&g*^-Yw*6lWVbryg|NcQd9S{&&-vPF<=v;S6Z0}
z{V+E?ub#l{*X@+(dd7lrO;S`d%QSt@Z!c+jV&(D)VAj$>qqi(~OHi{r^~G@UV3zyx
zp*FLCcP69L6_3f8<ILND_Ne>oZfAz3OD^B_f{f!<yw=r0T`$e;Q_IXIJ*yN$L@yfW
zNYx>K45I^HX%Y|514Vr0>z?-CU-U0;jRtp$s?Zl*3D)fPcru6{{3v`}B<a4)^HF$S
zRJ9!2u>LAa*#4)M(0!iiXjmiA?f^{&tf0XyQkG9h?4s}Xd*H_4K>n{aK4sH_3V)oU
z>;1g}no8MpAAb<dgSwfM3uNzt3tp3J(G?A@?MedNEGtBuI|tiGz~v*U(^=JDJSX5O
z6Y}A)bqP5a`mTI+Dns@SN9Ju5^5$A^VG9FrjB6qdvl~JH0@1==w@p0pVDq}uULd~@
zjerf!NO9;yLa8urLe0k7#|-w2$M4X_>4`{|%23;=LX6x<(Gj>D8=X?L1_Y{&Ga}N=
zW+}Z{Ckj1F)vJRg!ddh1sj)BOWW*=SYCYmTD{P<81zY%GkHPVr;1%0-K?USmHXFG<
zkGfyv$4PWd_RfV#b!N196_!ed0Fz>){O_V0IiY7S=;sSpW+{C{HU!ivu}<o$4SK|W
z5qgq<hes(g$?=@J2gNF=a5*QysG&%pPkf#@xOX@4@(P!Xxru>`fK9~wqPN|T>pXtl
ztfhNRcDBchoGMg+1taS^k04GTp22;;Tzh4)nl#Q4t*vh3N}jP1zgKbS+3n+Cn8C8e
zz)oZCBV$mPuy9@|$JH81C4@Kg%e~3HAJZ0c0K6k)w;}rw(S-$fIY581CCtCO@u;J^
z?E@05I~$$Id6cQGq0C$u?xa3A;anr4bg1>;rI9gzcI#6eVp4}c+o_O%5}5GMe~WeY
zmPeC0gLx!5R?xJ}+%U5Z0UsE8)MPnUZJX-4)hlJ%c5|hX97z2gYO`a<y>rRauy$Ha
zL&gNIKIj})-d~rI#<WsqwJ;g4qt39>fBS<e7PoeTW`{y9B>S;=@n+Bj>P;BusBXZc
zRM3|Sx8ZXB=54;ZO7r3xU$8X2L{cWwbeiyFCORkFbSSw)#;+#+=*r%aq|wAGyB0%|
zHBXIc)m;S^6N#wo$o_JH3G|ac7Q_K3PShUi5vx&_Z5_7$E1_7QU4#q#*|`7u={(qz
zlqAI1Gt+08)$zKL*L?lenu5RLC|fgi>zW+R0#5j8*>Y_jrRY9zx%F)uIWVWApHjjz
z^rmn2l-zk_3d($eT`R===Zb&BT_qQV;cZw}LgL8Qi;2UCl=m2It4R-SmmGV!Hy<SD
z2JDV4oWk{&7*PwaF*_b~=j$Xn2U9XjYwz%g*!(eF4L_wlM6J|%f%D_b9_M@>E(_bp
z5UWy;1Kf5G)@^^!R*d)?A{akNZsN^aT5AMV7GW<;_VbFiU*$T7zM7x7+o%N*!Pdhb
zn%_20%g?6^8%=ot6t=c6VBFyEXAupW_~kxm-n;1>o*>JN`1Miq19sDM4f0XKA)0sJ
zy}`VA%f<<?IKkCz!r+zA5=>VcgN;dwS*Gh?_s~gm&R=yN%4wS%?R1`U$4>OCy%09T
z@@bCnYgV4sRPYEq`eP-e%W%4Y!*bBDMR$}(wLq{IWx97*)zdnnDT>>?o0T~ypU(!o
z5X>{daMGk@t&r1%UuSSRm^XKmJfJW>D>sLoScnp1Xk8R1)$74qtG!MAs{_D~ie~dG
z{<4~EXOH@$vq}_?DAWh9-!{pvywBs-$#2m8Ovd4}%(&ARm7$}`eE>Wumg|6x{Uz#6
zPzCFo(0YxJBT%@kSQ28&^NSkOe<%Bnlt7z6`uW(3gUwficX|O?XD@tE!e7g4?(F4H
z>Sei4t{)^F!RPSis}<#J+||{R0oF^9l_lZ*O*T)^u5es|RSe<+S-Rz?8!~&~ulGn<
zFl)Wg{72KlxV4cYr`(tHs-oaH&I#<~L48pOr%w)O0>)kL{#ml8zD>;x4<Z74(F-%}
z#(EW<DD&?H_}rJ=<FM%4FVfk;16MT<2sLiI`cB(Wt|5}JC6z9&`7>ijqg#%S!Hti$
zY+GS3x@C46l!PD~me*_l<(EvN_3g19^Z<1=ZI^&E!lk4=GkEOnKi9id{+9U5ZiRUY
zR@e6l?7(iEC^E`4qdE9ZKs4Vjn;*2pwz^uf1esp8@^cu@Y4DfGMHt5`lj8R0b92Ly
zkrri9r*EvTkPxrE$1==osb;TD-N#>$+}P6#?G1VNmJ<hE+xTz+6_?D@4zrXKuU;=#
z8~7Fy46AJL30MSm&!}r7e!-J1uB4V=hX92484gbErkG`@EaEEx`gmch1adipmlXeg
zOk3Q!R5LSE?_b36{B}y15v*MLYNq;t&4CnLpzhhn+<LRDXaVpSb`4)MdJ28&47_oj
z(WTrqg9_pU9zmPQp#a|{5D24J%b|2z{g3k|)6Gz)+tY9?2w-p=A_Vy91(-R~aAO=0
zvMR3LcBXH=ZVSzizVvfBEa`KZBiHW^-M8N%xKtsCI29*eu~&6P@QI6pq&Ob%gtQyP
zAajRNe2T`nZQMGjqW#9RNAFhmG{QNaGa>K~QZe&Kh+oxqW#xy+C+c_NZ#eRxJ-k17
zCuL$kEN6<Ven3R152gQ5EkDe;DNI-~C?D|lI}V~;QeJ6P;^Q73c3AF$3L<$2!u*6D
znaMoeG4IEm*rkm+5_ZfhWddAFhXo4|CW-hv*uE4bqrNfDt1<dQSA{(m2Km)4!w2lQ
zStf7EsApw9l>`&l*AH4l6NO|=t^|nc`&~~mn#@fh|C*fF-BWn(HpV_~<<*SKsK_v}
zekMu0i$*y;mTM!*5%?Q`{|}8E*%Btbw?-V{XHPV1whQOdxRIM-$m8uif^SlGJr(<%
zCn<=*OY3Ujd~=tf$T;&sN%1rkg6IgJ_S&N}jxW<(#NQ!%7o}FV)C*CBedG2C8$*<s
zPmU>2rTLdExIx!!G{KI))yHh^o{Fktx5w((y{9D_+vU0x`##SSdFavOH&`YGg~i>1
zsH9x3PI4)yL{0oyRxV;4`<A~FQN(Yh__{(c*Un+VU&t9ep$3<H2rDBVz1QCeE#E_O
zCQ8i=FZz{ZY{9Stw<o_-lx2(1Mr0|ZkC<5U1Tnv_s-g3$+d>s)a|sqL&MD6pzm?7~
zQ8heF1%HDqdG>gp!LJr8shKKc<nZM`dqVmRxa9;H<YOC<)}ziU;xALovaZoTTMU4-
zekET!(>hyr5rZXY+9hPdP5K|E;G@GIyZBXj=)El|KOpW+n7&dZBjbp1HuZUYR9m#_
z-sfejvezemAhj&)@u{?=tWq8_2W;59>agu)n*2syflRmuBkpOxMsH*sXOJhj)6Ggs
ze_l5+^7y@qRy^yaFaAo(7(c3yKQ@ywUBJg@dcoZETs!Hb%cmC_@po|2LxAIqCr-jq
z@{Zj@=n_!k(J`|V-(xEO`kcaSts0RhgKIU4prMmHBRt$FMHi=iazoV^LPRyhSJULX
z%-ekt>`BtNam77NidqI$yW2~vA1?s``}@>9G*=prd8U6-l5G&xy6-<ho7^r)BZ2(?
zOV1grbA}#pondas14a+}`QbA$48KCpAfXI{r<`QTYkiJx`eD!VJPym%Kb%1?tM@!8
zxRQ44C7(y*NB9jCyzPmWFBgZwcMNrJU^pcHm+x-`zf0q(m=PV&l~ro+(`NMZDAXnS
zJ~h`J2A}<(;t`OMfS(sooj*?2Mwi+)e$m@GSf6qA4987}D<G=$4zkC(-JYADtkZe7
z?94Y3VjT_kuOL84lH$*QdU^i}o(%bwECxH=WA7zcRZyj@%t`I|RqJc=7_MlLzaua7
zBRpK*f;Ic~Svj=<Xxt<GUIu#JI~zIWL+*t3k7U}YLe_^`682Z@OxzC#GQMrD3}!7(
z?62s@_`3O;Tz(?E3d%2G3_sWhV`{7C=Y5ZlEq<}^5AE+rWa)i~YLGJa_YKI_9$kl8
zIWIou?Q`C!{ak-~{0<l+v83jy()Yw8W@SvkbILYi_&nF2JEFXtcN!B1HPxfOH#bb5
zQJx*S$w@YAZA<ZD{cb+XW27GD`l{zO8EJ-SR&kwszQ*+X;Be2w-5SNeKqRseNgn-N
zA%C()PIjHkNO^+BZzD&UcHj6f5Qt3cbN}9+Xztr%CKV9{vc`N4sX*`J6`AG1B|dr?
z1;Ag}6IuForD(#)sIx#(9f~->qkqGS^&A;T+2+-Pn{&YDp?|^HWL!wxu=JY;dA%|2
za~6=V19WHO7kKqU#Dvb1iRCL$ktzcUPJd&%a*GuWSxECcue<GbhX#_ARysIMM+7*P
zS!#AiA_DeR!+v3NheWiJ4sPX6c98Ox_A?#P>_Di&B<!poKPuheE9W_LVwGZ*dz|9e
z21iYL<5SOWLD?X`V|&OFT}Esy>ud66=pbP!$wgO3XN{T^+T8yO_j|{6XK<;q40+V3
zZTEz|zRuh1^+$h+HM`>#;R|S?lIq=FnRUL`sYSENJCW|F6fJRhb>9kRH09QSg7Rne
z6dkpsqT{EAoq%e26VWl|Nk!8>j`vh#dp~HCohPCfr~@^#Jj-ienp8NxA^%sLdg+gY
zmm3N9E%02j;qn<~^>bpDheR`g&+K5k%U%IPcopUV!u*bu-ws^waR1Y`hvRDwa^KwA
z^P*$Mr+XTH6<AL4pZIAGjv?Saa=Ri#nw0X?1J#W=9<mB8UUlkoz)3MOu)HCi)_+OE
z+k-0eGxUG(i_h$RJxCAR4@rozGLC*yeE`6^KFJ{-Va|YeV+C{P=1*RCx6<=R6Yo89
zDj}{`5Z!y=ciP%goQadq%>(=z^Ho^fawQ+xG1hdsuf<C`m;D3N{r%qm@9UiZKP|uh
zznPYnYDYMW8>^L-RkG6WDpUiWuyH}o>Tl3DJyxZ=E4hP_$C#5n_$n6}fZXE{U5}qU
zIe3q<@41Hg4VTY&LVs6(KXnf*6;||FX%F68{u9=m&9;NyO?*q$_mPA7T56>Ie9ud;
zfIx{vmI61<X?0(Q>>V%yd%Q9lLRU~*>wHg_z&f;B-aa1tbI_#$?#5l}*no19#nB{(
zR8<Yb1CoB>5OiXCoCkg>kwT%SBjO%CES2N`C~9b_di?67Wn<ywf%}kMBy&~y7s}rt
z(+m|M5R>m_Fu72#LEv$l*+J_E*o;em7TE_}$2c$7yypF1jI;bD3GrqYqJNe1*L}am
z?~do+rjIoAe_t*ic)=nRLAo<cZyhK9*Yk2MgW0+FsQ!hM77ci7FCw!C?EbQs@7nKu
zOStPxn$XoQbi{q#sKodV*MIO}$XC#nRG9l+rDQIXOX)m@KEvj%vaSDZ8N;6MHj&u8
z3+Aq6y^(LGo3VXE?k{r>@a<UJ43yQijN_&Ql6V1l)uoURVL!j>nj8FW;+V_XV=g^T
z)*|^Fxd%%KIwQJiiKvDf`Rcl|f7ec)Ub)DTY!Nh<W~f&{DiNgL+d+qX7z7%;VEExB
zD5gXYeE65?WKL(d{6Xp2dQ{oG`|UU45+-NJ@+*ENct$zS8=BN{`R}bEZw=(AU86iz
ztU0e~9K^nF(baKY^Y_FZHR?LhAJ>kxia+S)Z;FQ-@v;B?o*NuW*B&26LH#jR^cAkB
z-?0;MLShAU=A?&{C)E5nv?xl+Ys{=ik`fKiV1~E1`!{6X{@q1Dqk8wfL%duNeW`0#
zaDa%9|FSS<*5%q0{@*ORr1lc!x}mnk2^7$xpFInlNs-+>zwGJ^ez%5L0!{xfj46$?
z#r^H9IW@sy=_q-{^L)tD*T$F2SW_qnY)Q9mA!c(ub~jI+k-|l?)z19aRcdt)wCJ`*
zC6gsWf&7c#5~zg`y_~3>wj<xZUro)=c3K5+0Zk&>DQg9mqVW#@2odZpPDmAEmN`Gb
zT4@SwQ=?LzS>x_Vi>&!wSBI@Y&5wMQRHwYe3%{$}e%ojvwYrx45U~+jU<f6mY%FUj
zpUfqt<BWX&jA(;sbZlDbQ@Z_+LLjRo&D_O@CzpnU<Aj)B0OL#dYK49rccdUQzpb2p
z*g0o;zwQ=EBI<SZ&iMQFOwvlI`U)|hC<{{kQT?0&e(3{=4#u)bZVilEN3sQs5UhcN
z;-CNB_d)Yb*4ja+?aLgnW;XkAk9&<HO`p3bVAI}=G2WKy^arnyt?VMHpho8K;8n_f
zL&D|Qo~To=HI5UTjV$_yNb;KLh1xOR$>EQSjXvHp55$Bo{#}&2TTR*`HOuQaFj-hC
zhag^1N-3eXr3W7jSW`M^N?3B8Zj0`b?X$?8*zqBSy6+}F=|YQfw{!894y;RqUynGB
zml0YUB~+&%5g(M-bjppl8AqeCS$n>-!g#meg_Qpi^JB^Dme(0h-+>OZdWB3{z1EZn
z%F9i%S(XvrUcYPKd7gS0=|YYaRA}X$l|k=`)DHi0qhXDMqrzwOEKg3lR^BvxmPQbx
z3A39X4I5wSNtJ~E63wsx$HO^W?i0={8&((RG<`1I7O7ba7~(xXTK0UKM!GSNFO^EE
z)%%5EN}G8^$vE9UaC+1$+28xha(;6&5z}4B1i$7ohF-d;^)c%oGv|`@UDZ?;<D@z$
zDcB7X8n10n7!e|gk)?X*;TxY<t-lN8t4|+6XzU^rSo08u$yW<FCpDkH&F}VamU3yB
zmNhp#1l;+1=hH7`(ra*AXf!c@aLOV-w4)9b?g?ykwA?Ycdid~Ph$QMbI3IDbfCqEp
zF@BbnSR7ZgcMoQU&i<TSbkIvp5*Ev5=sz^p(2zUt)EUGxO?!MH14sY`R5VXI#ETZr
zsqM(lF@TtVi+Vve?R?5w{_({RP>u1kUm9*;WqgkYyt9ZyT+`?*(6f$Br1$S28Q|&>
z*~}Kd8Mm%fW8HO%(Z>FGUm5_=qSClrx*T>$YLaN&vKWy}K30mCgS7I9olTq_F7L&q
zu>HK)0`(XtHib)n)cb<o^EW(1|AX`SYr{92O0kQDvX*n8BeYjg<zn$w%*Ewus^3=b
zj$I5|{v-?I_P#Sux)*Jid>js>g<Ua<=mTE+koz6AQ29G;GJNf<np8F+5uu<ELUQ{5
zrFXzISx3vVE)TL6CgCkg@YK4kh!}poLbfr%x`BU9e7TNvZ+H~d$aNswXI+Xdv{kZ*
z#`>#tGb`zvw_Gw04;lM*g3SF^q`+>t=lim!qk;eO5$_avP0Ql4^UHv|LntHpn35r;
zqwpLqtJ52Mpp|e2L`u=MVg0HH?eFqc0VOWAl5gz8Y{OGCqh1aEPh2^hy-d#Y@^tL^
zSQTaN1n?tv*f=>eK~#sIRFj;2UWVgwzGs+Iawv)MJl!JKWXV{NF~71r$R<Yvpx#L1
zIe$Kn;{&2$i0u}vTT*oRJ(3T+Jv`1OqIs@EKBeXHLh9%cE~@vF=qGyS!2Ft*JgnX!
zyJ#vJ$x*d}vVmEx&WgOgL7f<en+~HK;PSQJYGYJ>r<At&{K)IsUgo$7&E=Fy4fsN0
z!U`jyjBXj+jcRb%`tSrk>5^-3uK*Hy_o_A3_zdJG=Us@-YHTiN<xKjtU91Cc#`dvQ
z6XVXsfy)34>c?z?aeV6iG`%O2`(K>>EsBg>&gbpf<>m6kr%(4OPG>4qejTj^&dtuJ
z{?Bm%bUF&pL@90gPwsu~${m-YyO%)<VBT#Q-gR`?x!Eia-M4=<>{}n(7fm$xGs@b`
zUkB`bTF5(CUtxapG}5@z5!!cQSlFi6>wM#n9FS1k#4>0mL*)#6oyYgp2i~#^fW5|1
zaG`B&`SboTO<)=;X0P$K401dT%cWcg2S0D0a_mh=%*8Kp-eGHTVS#l=PX4fSI*@t5
z&MEyv>Kx#F7}8mAZ9A1z^P^30KB|%R{o)Pr3)tg7=$r5D)(qRs5Aq?Iu-`ObC@gS}
zIv^UYVSEu<O-~$NqY%O-%y<b#v*_4Z{F}tI<!@E`zap9E`JPv2R{bt<z3xK22|p8-
z`kbXDF5#FwgSoEBNuTqb*&*+pA8B@a$tZRyrXa71R72OJR_ZNOZ1t*@S6}+PDjlk8
z-2i%YzoDJlGHpSXwSe=?1w}q05IEtz>27oC9F3|Jq(ABUkj7GwaGj6~J_hDqs%EA#
ziesi$I1@}WVLm#Vo$X_sHNwA;pY_vx!;=_fmP9X+c%O8RU8v74g}jn8g$EhE-W-!W
znKEtQo`yZ$LXzNP8u(tTK+og<r)VT+wM5Q8by@N4)e+vB;gow<_w%ej@qd2*Z<?#3
zxyE5EpWZj0-$C-MUOr!>dwHsd@34EVN-gy1@}OpAuc30l`|_aGwWzNBq5-!9%~8R`
zspi-2C!{+3w3v(M@gADN)!tyoxsvGCV+hHdWOTlHw9*n%;Q5OGlTK_>4&{NJLmX2?
z*E{OohRO!xByGu7lVZ!yjHjdB#uby3Z2=!7=uk!nUs((Ka$z<mTgM5^1lONMC7Onn
z-4}Afb9F>D*!!V<QJ`=}uH@{)rQ7itJ!i%H>Oiohi<bgZ)UpH2i`IUV*%I4ohn-|h
z^qG7=0t6gy32Tfi+&tN9wsY#ZWGjjPpWY0q*V_yK5$(I3&mXT11pj!YtK0INgf%vL
zW=5)fjS}4(wc_fdXPX&H$l2`n!v`{_UqaJcn&h&7RU7%1k<T2fad<<_ivcvct)^Z_
z^yitr=GZ1A;#E8Z9+8H~s^3|mNn>;{U3whm^H_+~>&K1Ww<#08=a(7lEi>t9iDIYW
ze~@R;)-41$Ry>%H`jCE&IZ4q#RC(yv6{2im=kTgQ-5d}d7oJ5(xQZwTuTKHleI5Ro
zG_BPk$$DRWAa=OG{NC%<|Byyk6TB{P)Mg6$VJFbd3^<&tNka;VwVD`vz21DTpg?U$
z7({drt5q-gK5)S-eztAZDPFs0V|_ERMCHcvW1+P&A9Ep*f#b(y>5RwWBa19*UY_C8
zT|zeKEE41|`XhR$d<)@d{clwwqj@izK1b`U+d@D83Gh6=wejDiwISd7xv2?W8Hlkd
zfb@8q(%A0&HqGCE))j`;sE=QtEP?V0EhduI+U@fg^L4ywsIA{w;K4{|H@dX9iBZQ&
z68g)Sg!?{6^uJ5Z6<*bGGL<GZod~Y#%`~k}xAVk0ndBV({7*3-U^w?Qy!c-8L-K!9
zus7R%ja}M7w-)GNT?Hvid@i|d{PcfaP)8KD3aW2ER_*LXNXk#-SK5Z$DjYnMc^T)a
zs)G|d5dXWGW7Q{Fec+u5yF;rU=jvENLIQgXOP2wDLc!Y$f8FT`YYr14OwW@8q@N8b
z3+A%Q5lRA+`Z>Jo8YV~oW!wwft}yePUfEb*u5f+(Z&wq8S>9(7cxt5s@0S)bD^X7o
z*VEU@J5lE@=NAHUAJhz=_XQ>Ho3E^{yKrsIa`o0eYVk&NqGtBK*it*#wW}a;Z~|oc
ziZFF26GNp>t+#nn(cI`RFrtk9d^f!GK7%i*z2K&`!%FUEQ3r8I*he{W1vTQ>p`Ndj
zCZ;dDI;0`vLty1WcX12>+>k<1A<J&`@cupMX)-Yd3Wv=MB#)LNxtnPZOl5&?9XS_`
z<E1tS-NXFdgP5+2%F_#`VbaTb?Tu1nHR{wiXi6&<<<2Uepecrj0Df?$u!o=zsXpF$
z5{ZKsU{L$r1!vF3`u9v-ClREUAE%o6sV6p5X-p8&;tRRFgRS*j_!qPBU!HXe+@6as
z`fw1RH)5xBwN&PNUj`T2#sm$LJT6@DdVlto7TX~#_!hM^6Zwi|yuugmzb(>BEt$Jo
zn+ERk2`fEBl<eIbLe}gttQ;>6oUTs)NInq3y_6~TEYs&pF6uduhIbz80Ib&@n@&RQ
zehE+1>pPp|1eMtt)ao-2k}~~7U!oxmK{*@z6{2Z$T)Naytw_=HQwvgE;Z>pJ12*fg
zD_nD}uP7wIAf~-TC>2b}c^{uJjbUV5Zk}nVZ7R4N$r>~Q4|z01EKo0K&!HQ&S?1s@
z$+2U*(=*)eX^vqtGuB=qcpW_5npj~La8g(#1Zalq+xDXGY@8xsDzT=IFw)?DTfc89
z`37;zBk4sJpLfmP6L*6d#rH0GzNz|V^;#)5cxtEAdj_DrGP-w#b#&5f@Kc2MFB=?c
z);ZRf=eDd$8I1bq5hro{rf_TdiIHtxM=xCuWE6@*Dc`Em*ef$}&Z|mOue07#<pYo7
zyYL%kF=+aeNnd5@4XX|<brb$3I9rU<U~N)6_&Xs`DR9T#rdERX4s6$w$jyrjUtI;5
zL5!AlZF<r&Wq7axXI}FR>vid72u@acR<q3AD{G67|EGmXQo6GyjM(u~+R1A9q{iri
zx1RPg+g3Sa1VEPhb8$++Wcc?Y1BYSFmX5Fy&BA^f*$wWR(-EaQA-5!^|3dcfyl=2=
z_>0$_b(7F-bwDShmPw_$-o~IN7+*#&{PTSO&B2P?-k+*#8BZ(wb(elNz2^&fKni+5
zzdMW+HOX2(IgM*zDKrMk#S!-NjUo<sx*ur0ZV?GYua>&k9D~i*HALTMQX>+N2=7xC
zLM~{&tRMVRRA>+(raBzwsGYuy*C&$NR9I~vs#Q`ZZaxUG7&?`aG%3rXPSYPKZ(x^7
z$pKZ;>2J`cUVYCaV)j{@oSW!r<c%*n)pPM|2z2lD_x}>SyBYYcka&}=0`6C*XhZ-h
zZ@Sg>OA;iF{G5~XmJ9uaZCpQi-OoGhr6zir<TI6pr>V9(JUgrqM$O15%Wj8|tqtHy
znKUk2;39=nG3e`PKRH=oc;SLD=ljikmixztdI9_bW?3PqIbaf>SDthIG|$3~sKmAL
z4uxZ1zZ;}hsr?&ar{fkhZoyyXhJ!mt9g5qfP|tTZNO6{Rzn4o{-y()Z2k`UM0I=+T
zFtJ|KDub}&^0W9wchRvAx&0v{@zC5TQE=em7l$9eW3--ro%X7(A_0uF&6Im@nk2A=
ztJ)(lZw}c@tE>K2Lb6J_8E;bpk3{=epaf6BpKZU=1}AV06Wdo3ty~aIcxj$pX4BBU
z;_~{}xl3oGH)wE4cbI3($GS(C+c~vs%|DPD%=C^<HCLgQ2PXZp$+>vjH|uSZdx1eQ
zPip21ee_HBycW#S-I|(c8$IW#x27JWp~h08%|4g*qZ;b9qO3|1$kqL{hZPU#q>GY-
zfm=9O`J=0^oS@UAM>Ud&=R-6Y0dN;d+q%!<H$l4B0YBdx?3U_5zx+!#n#+W%8YK6)
z`iT=h)W?<8$cURV5*4ibB^`Ujk(MWhTT6@ANO@gr6(n)Foi41l&?9AO?k23E-q!$k
zM_Jk&_$+5-$l2E9h6~1rp&2@NJzDIpf)#5(PType&#Z*5SIXI94=1yGFfx28AGQ6+
zT^rZLl(=)^9#$>2?d4*Awj}f2%(4NaR9ANIi)y{`N`wD%&A!Bp@qK<sJSuVdT~t?N
z4c2P+`}aY%ECDCT%BPyWfsNkRGB|B4c1CLSSI(-LU6NFufN)_*D%E}S$w=X)Yn~_5
z?`?mhHvb|GOPbP4=+citI<UaTxE`BFORCehmhW%JI1q52_RXr-66tnm^xMyp@?_vW
zRoC7kZsF?AvuPES8lJ^XKpfAFcoW}$+;Uhyds)NqXy<#$Ys+&9pLmkn!G{Y*%)`As
zCboXlewgK;!dHh<NEda^Y-D#9W_G4tkEgN@J5y^;zZ6JeR>xyygy7q8TzFT!KH2Nt
z3&06aA0;y)w)M0a5#iIZR4fV;DA!VUp34Nsna90vf6RP=Bb7a@LCw+$8K%3z{ZW<A
zf$jYw@Thi^$yds*CTsr=?d%lggL-RxKI3b_6-R}|%Y}>BcyV1I$zjnbOfnl^Du3rd
zIeGIEH(+mnWx`$&wopS<;Hky1(U$d<e8-40`fbBhAk+QAkPpUkG;`I#&ru#Oe%vO#
z6f`uc1U*x?`(_m23gX%~T+io^BZEFHB{F$c#gX8zL?a-)pQ@TvZJ%IVVYNmq%=xZM
zpw&Lx1qF2!9`L*ks9=}+&LUtjhLwOqO_tp|Gg*6vix7oj`*jx~yA@LQl2wXjXI5Wg
zgBpy+O0G7eWF=(ZZBDZhxx5;_`OVga7;-gus#0M3bdSqBamMu5Dnqc5%c=K;!IMSL
zI)~~x)JpJ_3?^COp3Rx`$HAvnP2&~c_lF0c`SDAt54X^ke_OX;F>jIx3K<r3$c4rz
zcTYQF6J*MU@INJU8}gRPlW<zE!v&Qz&^n%l$EeR)A;CnvWf+d3!e7r3rgEU3O+aEL
zj;DQND%7Z)zK`m}g0UeRbTxFNDz)u~kkmPi6lej#=$DuGY<eLo-l)>}rTLw`(!M?P
zc?XhKG#@F-z~hvv;Gv4fiUvd%tC_}?t~)cD@ZPGH9kXeiQi8AmMxyf0wF)3)QegM!
z8H;_w)src%qJV2AVsN**or@(cZ)91Do^q~_<a&LTT<^4Ga5P8cxYWbLju!FdS6{D6
zyv-isRo8!YWhZg_&H7B4S+|*KA>D(zT$4oqxM_nWegiM%&&V)Q&Yc6JV|40OOYttc
zjbSJoFGh8|x^(GOqwUeIP8v+d9n_C^NRU)&@Om^V1q_O3Tz%aJK^3@^N>qX}Zh?^=
zwZh6}u}RBy^O3^VyZoj@)o^2xN{(n)t!spgzuosznF+hFk&oRQ15u)ny4OlR(ZYSE
zjVhlW^bCB{uziK}a9FA9w@+Y-;vL2c1?PkH*xbdG`lYHGu?HLvB;R?%k>@ha`WR6T
zCpWMI;&08O4R3~<iYKA*rO}OB<}7Fao1vgl1CXrhNZUGn@<OLR_Q*2izDspJ0+kA4
z@!1zHMY*AM_z)$!^^P87dk!hE7UQ_1PfIKz#eUdu>~U?y;;%?0yjB{cUh+Xq{s`nh
zZ7J^(vo7gAzyxa2ImW}jmgMJNdJ3+3otN9!zvUh@u9m{rU{u#@s8t&*3%K`F^>}{j
zQKH}Iz^o58x?oV#8U({CfU?tHz!Nq>%Biu^eo2Z`_A>p<!CzB~Y-)%zc_zkt!^j6}
z;^{9!S^bSnh`s6U?BGsp*0bhk^*EtjV8Eg7-dJKJF-OO!9>Wu#IXJz@>Xl^6*MFs=
z$HC<Q2i2dLi0bxzA5i|H2E#j;+`-|nD!<Qf<R;^>?Am+-SlbkS-^mY4T)S2|lS}ED
zLvpowcwY&Vn)5TxZ7{;8{KT=*ug44xnO_Sna3v+nv?GDn*sW(jjTZlCxp0q6vYb$9
zS9|Z>{W=t8_}DQimHEaglfMiue&-_I!^yjaUaWX}dF0WAe=#Y^-$ykR#*w0c%+!Zr
zdTjmvT$2YzVJ*;#(Eja<6<uF+4JWf-T3MOPFKJR&@6*%>s0+0e-NPbSR#OSzi((#d
zI83u^dSWmT*T((==NPg3IA)<04b4MzgQIAWnbk8qH^z>p#`6^e4-;l~BA1m}wAY7@
zORs5l9OYJy^sh8blk|^PJn2DENJ|;qzJRqB1<o_jM_+q`6+G4$e6BfGT4)g?xK2nQ
znjOr{6?Ob7cCy8q2Zt5qLeyIV0`APunC}w>tjC{V2w_Rd`jF5s8vGeACd=$r`@T>6
zcqR%m8cvSU<}t%bh(y=kH4Kv7*GkyKb!^{tl?sH~Ih_RbP4w*(JwVRIlN)1h!+?8r
z^ZUPK@RZmU$}~oo?l(A=Y2t1mgl?OyR-N8`ypwa)O7Vdp<Vz{hq@2{5?B;9OBII0?
zqB^sE$Hfk6Z<tfVY4)*?PR6KKT=JF-JOjVrpD&QQnO}#nQykNuMk%-Y(fc=4^ySc*
z75ACoPMAbbX|Z0R$h4O5rm>%!1XmuT(QQ>CB$X&`%q-x`T$FJ8>sLc){#(E5Cp>Lm
z-}=VkUOpw6A+8sslv90lp9|gY$%WIH?si<r!ki$d+q0s-<7v_oaUpePOLfVF4xC9c
zPU)_%F`L>UdgbZeljCLSWga*m>S>F*czWMnAN_1kx4UQiL*hxKhDPTPT8)@!k^%6#
z^2nn>XMx?ge~()88oT|#;SZG0z>%{Y?vt0g+Sdv9RalymZy5Sa=_cwN{G)iHkWC~$
zX*(T%B~Y_}G(JCdv3O?ZlW?_y$=)sZ5W#k6L74OmrEQ1?f*BH$dy3bV-k%gusi}>V
zC@-jT{@&`&oJqmzrL{7elLyYcEd!}QAk9eMcPj8<L&<+c)yx5X>bJLVwLNqn%6Y&J
zTJ7&c2m*|)UY7{_r$xG~5siCi&EuNS2c53*X_V}hHbT?)FO1Akrp1Dl_NlR=pi+Nf
zo6^)DpNolH)EKXywaV4oJN2$A74fN{L<s@)IFHg6C`M|(b|jh2iF_Ik^2{j+@mn+6
zFo<#k9FMl<b%aGVo6(~jhw<WD%g*Z&*nMWft)?!7Q$u2=z@XWrLze#N|F)inH;^;Q
zAsY;5PBG7OWOu({ye{x_4YiN5I~;HO3OOsUWvaH&3;1!YqU7X&8nEX~2mP2*Y!m;N
z^+rNMBEUZv!vdgR?QRn8s_mw63bw}VBL>zemK?0^s*S5DFVl(GL~QaQYiQ_#pRUR2
z85f(3c&~WN-X-;c*2|Of+PBZ@V_%8h6<O?ksrjxjg_lhn9nGyB3(KJk8%i0rCAELv
zahkHAGb!(OjFwpu^=ZBlWPGsuSlyd*tqks04?a@E9%;o^P{`D#kWUFV4NIe7Z|AIu
zoCA*>gdl8*8J4#4N8}oV{oY3(&wZD#X;Xa@ef#k1#l6$l1)L$<H0vuzYcJtRY!lfA
zTS{fZO|-cuj(JGD5rpn``5N@Is=hr4AfK*RtJoEnxl14qanES5fy8o-KKo%ga^iUo
zd1J)i-)y0$TZ0!PY`yx}rZ$!yGjEomZ#?=<wveWdeDZyA4xK`kKI5|epbP6zX`SuV
z5X$Y0YS|Y;YD{PK4*OAF<iZf!TZhQ*-%^vUX>bmA1<~d$O)TAh4Gm7lHBeOZC`S1B
zD$jZ~T)>$RqQCik^T9H|YCj2nIjQ+M*U=@(>%i6?G)8<fB!YX}wCPZ3w3VxtqlA*x
zHxvQad7EYx2*EKGzAGZ?ojtTB2H;7)@`|mq9kZE*5dw!*)-*Ky9;eEF2&&KuztK=u
zq4dJE=@r&RXd~?oN}9J;e3yc|UOVHdeofJ)oULJ9OA&Vux>c>elw*JN(|5g)W7@(r
zc!^a9c&XWuWL@NoD1X9xJpxYV^D=Lreq)nF18)2h))j>Y!_$xm1CmWC+d$2f!MX5B
zR0m+(%fwUtpF18~wEcdE9P}_+97e7KtaHA*lmxq}7_&z-%4j~ofYuh1^Xa4}?`<WY
zGBl6OEJ}pHHoz*EltuGADS*>;Dm$ZzZy?FwIj2PC*SAB=BJMjc)Hq)z2c+yJ-q|`X
z+0NOr9E~`hONL_h3l0z7L;CnSDKTDFQRoNHZgxZ9o~-6PfS(x4RR_NQCiUZCtEiOO
zXqMO-m#!UePt9ujyoTLi+|QZ4iumqfcZgjLC$?px$~72Ifb1c@M?&xi*hVy-?xxpi
zUrAfu8K3j({+tJrNVFL(K{`NMnXUn)>><nYIt8JB49S24*aGrZ&em^X2RMvA*WZd^
zo67o7ypu1eVc~ibvpVaT`?8ME1w0<9bLQu9i;>jS^2x!zM)o01r1!|j*wrzGo(E#@
zTSbV9tFc#btYWytU(PL&>Q?|w#;GqpHjMP@@r@CX1(w13ev3T?SlkT8x$@U)?5|*2
zRS~1T@11EvbJotpa$Z!W=O}TLo#>PRU7VO|OJsa4=^d<Kf(5H=>BEf|18jU~YBCTL
zfS9g>TBu#JTW{jQXq2#1#@WfOyfkyXxQqntFm}|VwC~Bvz_Hiy$aB$)J~P>NAC`ah
zD-}c>d@E=Jzv3+q?>==(nO(sjq>3U0x?}5xjSk{948T)Jo~fJ3cahQ_CT2;wPuJHO
zqzWN!Z0NvEa1x|<&C2QH0Go&b#0eHQVH)?Jo+Ghq%+_Qhw0bfJ&)&XxY>zAG<>I%I
zd_0DK1q65>Y|MkyIW+@(1a&HFe)oYcA@X<2G7YjJJ5U4amO}<Rkd;|+j(|C?)2}ng
zKc59LEt`^ePX7nx^NYs^-J>(O65*WrJwEV$Zn0KW2S$9j9B{R?IJQppj7y%TCRP(@
zo3kOR+rsN$*M+fjG0tY{=00<D>PCNc)Fi8r4+tw7cm^`WmDJzBiZ#)a!vB;OX;Y02
z(`(}8CQ=4$zVk*6JHQktRxUHyx<>k6;}wbs%uExh^FC$Dyk*GFp)WZhwKzQG`wx9~
zo<UYmo22Q1HLmj_+y>qz#T6RWy)L@fI>$5HlB8rs>_>RJv<zf%%yS^=(nPS@R#MsC
zfn4)_Gv%ARqKjV&>MI_Bb{S4%FY;jama4_|PF^(DQ`G&cra1Cm?J9P)dRAtu;km!>
zYO%w`Q?#2%zb?`}Jj2#oAcbbAcf_Ff>T|zbbeN`655NwuTE@>W0s$SjpW(k{f??F<
z`uC@Y9lU;+t$#s7P*$N!g$GjOf=%u$_*F6QbSR|xB@aBaNUPQtHNADQH<B-Jp5j)U
zxbfj;Bv<nr@GfR))?a0fLHzL=!AQl`>%aw5nizbZW~TG~>b0sZqrITzg1jq6lMegW
zHS1vVnlyrKR0lX@LRa4I%hHOY^O{=4>Njbs8l%B&KCH{21#@ofxTOkGx~5>qJxt$!
zNn9W9_Nbie$h63<>bM~{5Vuoi(I{K4cTg~v(Iu-}5?1-EuKyWADPvMh;X<TzMhkX4
zQM=81d^F++$4w|S7AsfWvD5cYWo*C`wRLK*-`5|-8E#0WPLRGVyuSV{Lnc|0uN=G*
z`LeFWwJup!uTO3NBHYS-q|Nyz{?TnlaCjy7EkQWo<@zZRV#{Z$r_6WRX2x5lgV8PL
z*xhYf`}R#6hXgzEeMAD(Xagm?p}Z#g@L2?72e7*9%K@l+wXMt7wG{7j$m!?!46JvB
zhPu!Dr&nExvt}#r5DT_QcSC5sS*DJ#c3$%x{H5gS_E$#7QjXUA1HB92DL)?@<HVxc
z?(jPvthnrj5&RagR(a!;XN~A9fZxljouYgpqHn3>E&K|7wvET6#!_LP(Cl|!6_eTj
zg*`JX(3I{_YErtg8|>!WnulvMkXX)v;~46ut~%C3PI_l<NbPrdu7*JwL0NuV2S&@k
zG(R*A{4%#Py;3+j)@_nXxG8-UTnY07kH^|Lye_J_Bylp^CBas+$2DJaJ4+QMe)Bnt
zai!c&^18#=XvLYxsK|`?s_8J;#0kBM`p<t6Y5Y8R_d;IIQ4)++&-wB0#aD@(B0o(c
z9-59ny2U&YE=&bZFU|Bml)3lVyrzIk$9Uh5g<5>oXDg<h?B;%s2kexYC>M;cy<g>g
zsXJGXY5$9HwO#f7uHj@l>3do;;}Q)+-xR)6$>hIkF`t>C|H?UpSu{%ZV;(OO??yh_
z^wa*(hhxi-94*FJnV1Xe16kwK&%Ix|u!D5O^r%E2+F+s-aalH+G<o0TSPINiKEl5(
zIveV)zZs<nI4o?Jx8M-wA1S{sarT)y>~?bIbHZ(40}-}6^)W%18jV&&*(w>v4p@E`
z<jPIp{#3=seY*#&!JhLdCWMX!wj<vxbID6pjkDDBZ2P6^g0Z2U-;Ky)T&-L~I;I*`
zfdZ?go_hNDTM*hS*Iwm@z?LRr0WWX*B=St0zShf-wX(_8r!b}}yycuMI_^&6M3V&_
zSr#e7AW>Jwx}NymIcW=-fD}o^!?JQl%;*g2k?lJdB0VHFbbw#m<3c`m1iaKF{@S;I
z&CY!>uTqx}&PBEKvpbX|I8$`hVkhIA%(Dz&h1@q*`m3AxP1nXT#HMKOu{aYagQMGJ
zZ$3=kdnJ0Zb!>#NP{mwIibK~fYFcSU%tkya7gY*{!T79Qw9RIj=@FQ?q?HTDoZ`jr
z!2{QE6T-(*-&7o+*`aDBBFD7)o^GshP9}POe!S_rL1_lkI~0V1Dl@-0+#S5wOW?D;
zvc5}hIgckZ>A<z$RrNMOBN<&`6w;$vW45VmAx4opBhp%;Wf(AV%3)(TXV1udCJkz%
zXI8wexAx=lQN4k(aeeq+UtU}JNX~;P=LNg|#5rosQ~y#t%b>yM)4)WY=^5mX%zAja
zr6)t;rbV(bc`Oovl9<c8?uP<J2|a2x5I;s!f-1B+iafM<jI3Bo;^t`g1gep42uK`g
zzpw`Tf7pA|Xg1sa@AtYoPpYk=rMP;jDvGM2=C)dDrlty!wrY%_hERz}OI1rzZBg@7
zV}u%Fmb6vWJSHJA6eWm=DG7-rJN@7Hb?@i@>{t6)&tB_!vCkL0aju*>m*Y5o)A#c|
z!4@PrdAumR;2=(Ln0U^vA%J6mYgy8icfuD9UyB|an#96wEz==c9QHvqIs=KrISp*S
z@*<dOOsF|p_Fvf?2)D(u>DL8}k0ZXqpbHwRA9jcbiGd9Z2kp&x=bJ{4A4{Q)l6bAQ
z+GSy0rr;<oMA3pju330b#XO*%B^0V(YniYXm2@4_>itIY>8EtK?}gf6LIC19soRUn
z4@~HyTF=`#8TOvQZLN#7!I7^+m<wwD^P|Mn)K5z;G)#H$^!A;4Ze2Q!m-{gUPTz!;
z6MC;zrmf#?clG%>xf(=BzW|LpJ?WdW6k6atNV(nlut|O#u(;venj_J|3|<`XIwytS
zI-*;Bzq3=lKG_-VtIV`q6<Hqosylw9u7&(kxV1Z|)*C6_v@*DJi(C~_scA&*^?gXF
z6a0I(_+22XI;C$0yp%mRlL^L6LKm6t&HYf@MBFB~qNLiDc@C{YD0xNh{0b-1f=T{B
z!K@ok1S)*bm%B;nC~Y<ElA7t8rYj<kb-f`#^*toj?Xx(b;6KsBE5p6iNPV%s(b>y3
z!NJy%vabVkzX)B@IlFTzI9tyC1b+jWo##YNUZM5jdp)G#>mc|UznRe=z#hVn;epd{
zeqOj#_0IlQ*+_HGc(%xj-bhDsk#pf?U*@%<<ZVtw(P{Zw`dCQQ%EqNz&Ew-lu|rAU
zk?h28x5TBD4u^1@Q;><Gqpo1*WX)Pb#Fd#EF~M;NXQT1Y>wsUu1RY4Yq1yTP?{C|(
z!&(;7Qu9uwhHSi0-mK-A+mwGhX!+)d-&|Kv-{__2a6e4obZM8`-<G^)h3g=nN1{OY
z?&;QZ9Gc`nHG0{$-hNsAm#4!|F_PI~i3zDwd^!7tS&sa5oyvgz%oL59TCKNJK1Kb6
z{?Tu#E~B+<BQLAOPbO_8c?Xa+vMSaML1Ab}^sFWG0NHE2Xag2%{!4MV^SMZ<bZ{F@
zykc{2UR${AXR)l)Sp@a5Bf;xR;O30L`33KLKgCo{R2`aav>7X>CyHdW(P(1I{Tg)7
z`zOXe4s5N?w_qDH&nnwS-bdKC<sg0l@9?ChQZ8y_lq9t=$xT|2sEj`+`HGhL09U<x
zB$;Pyj;AyWO_x<m$&6M_osIvvN#E>xzqM&<R=;lXw$xdrPbhd*hMx*+n(OX*75h3C
znXYL9+%AT-Z)tZ5#3ze-#vpb8GK<H^^cXavSyiT2lBz+VU6+-x%b(04FON*<YCVp0
zk=f5^(C%wAW4Fa7qf;C)Htehwr=w`?&a_AT6ncQ4w<|i7fg{mYMiUT4|EXKACv6~1
ze;WQT*-Ik7g5&iA-c*=ae0Bl)^?~v?Tvfc&o?;G6syQ-`AJg0eo*&L8Uw>Zx4uL6l
z6W$Xgj8@IFg6&9G@apym9Wt|ud5bMQb<K14@gy9m4Dqz?!-Uil&i3EwVP$$p9JNKM
zR^o+2?hg~EdD|I>&q9Memo9FYc<<h1H0hL-O0$+HzF=w@@o1SzxT>)$^kw-Q86v%M
zo||Zl{{b5=?<uD{H>zRb=Q_VPc8=|pj>=ibNirLhu9R+Vv=OQ2$c@A*!h74qONQ`>
zmAV^%jRC>ai}2~;iey;$hj6bf0}DB`n|YWjsX0J8#Ume(o-v{!^H6a_EC)~-kco2v
zX5I32*^Hig%8=95+m!25g*<=4o%?e9Z-*9Ve*9q01Q5zByhlcfqDGkl$Oh=d^hrDD
z%7S<3^X3`tkmg>%yDJjfa#fAM>z^W(S31R<NjgMlJ>yV8Ezs-fnuVGalF0i(<J5!(
zhq=~Hpl?M_ovIClCe1)k6SMJwtop=Vf&qWH^51Qh8;U1ypmO6lK#woa;Yr+0ZmIN^
zsV^4lXD%n!4zoM6osCLMcbG(i3jv6M&2Q3ogfTx#d&wZ^o+B8sI!TIymnQ)no#J;S
zB5#>83^FhqSKs}cFTKoZsk~G4Mo4yWkLQaSJ|)0+`tz+g^5ez+Ap;1x)?va=h9X}P
zO-z4ur%>zEL&xqiww_q0!(9z(j2%J8Fg{G5&?F*E_^k3Zc_%x#74lHPfBQ!zJ=)78
zhgF*mlXHp#2?}}v+URPYuN6$3up7>ybF&6cDsPDH!qEP%Z5r<4iCRO|oTu%Zu78>$
zFVHcM$}j4$@<lM&sAy%K$~Rlr=qg{EVu>Zu#qA~EZz|hQq|CInW-Fm7mn}E>VacTv
zQvz6jPm{II<IM!mfOseFmZ?>X2PgJ;guBU*c4aa-LLxOkAgRuL?8=I>DkAF>zk#+;
z6Q@CGjrLo=y}gRpjGPNMKN}Ke8RRU=mu`XrOk}@@`Rb5u@{Y(K*31%HzDFxB6=_=T
zcM2|rcU|tsi6@%l;TCVZpy58Hdgw~zVK}6x#HD{CIo8yQhU{2$XzO>#>_*S|JAVDk
zHve#3+3jiDQxy}y#RFr2Y`6M-jYc%gR!er6`WWOXR|_^FDbhUoCiR13&ZF0_UzcU9
zrZ^N)L^<Wjy499a{ctNLhgeSe5XM?lph(PVEiGs0+^n{D@ZR-o28TCOHu!nzr!M?1
zo^nx_FTy{9a(gw>xOZd}YjGa6$xqv<8kdHOb51V~TQe6!akZ=4@n~+sLVz_2LCBdz
zozFrs%N~J>fwU00)mWQMq1^XGx`40Dde^l1J=V|1HU3Bfn~3SB=RY2SLAAdHJb`95
z{+)%>sJ%0CS1|?vaMA7nrb^@2H_8zpVxnqoa4|f%)+$FlrfXy{Xo~_Oar|*KClUYQ
zoRxvkDHJ^l1e=Dn-yZ`0h`JZt^YJwE4C(WjZUuo_(^($xs+by-sb8r{vp=@<(o@aK
zfnKc<3%QIHCRTsO;)vDKNl|&-ipTbSAZh+Ne=7O9B815Py6*<kE`#uaV)a#$I#pxD
zmgee?xNu-i^!mvh6l7ri1b%&L_N}^7=8Vq>h(jb|1eFG3EDntlr}d>u^|Ik7IqQ;+
zcAcwbgsG9$0({}69W9Rcs2jgZ0i`sJa=a&DF_4w}t}%E;{3DN0e!+ZUsM_vL2$tCr
zp*EzqdJ+8XL-AIJIy+iLi%AS<I)C{x=%yXP4Ga@#<abBFivBy<%&j*;5?lT`_2{;9
zNH2X<1pD8M`VT8Uicr8MNkp;duooTa(*sf~9>#xQ$SZ5`1zTt8Rx3<TBR_MSL-pTQ
z3Yw|N<7y?@{TKbgfI?zZ%YjKe0PjfBKJkhU87ho2cl27$`sHt3ao5S-BkiiiM{mGk
z2{=I_eQhwfFDxjT{|}xHICPly{bC7Frj_=xPHge)RYK+jN?GHgTj6;iFXu`OgA!!(
z#^kB#^E!0{H5pZ>O(_$?Ta4~#m7Qw4y4rw*$N5PX!7)3Q=N2n@FvLIMDfY;5Z39Hf
z=RPeyXv)i-AtL-D$J0EcEA?Z!Uerjk3W4aJXffzUPd%qLiz8A6>+!K5pwO}MXh<7^
zy8o+`_6l*!PynEe0<2^6Ek5Hj+&!MAr^iS7{}NuFaSsZ9V33m1)NXUjm(U2HhnZLH
zbSzhInzy<m5=1<j?~LA(Sk6)#UiYTcd}Qm6gC}>%biarz8+O^e?5m*Z3)-uvnNdBX
z(^)G?WiZb9uS@UMR-0T*M)gom*G(;z_51Y)##%ZB2HRzj%;=dV{hqX}(f&;G&DIZ$
zIg4tis@*M=BWvWM<(`Vi@446fTQ{>+CRxkN_N%|93~V43lUE<Cg0{wPg*r8u)UM;g
zSYs}I3tdfHvT6c9?+i}`&q*M&+b%AV;Y4KNWRt6LBl;5;FClfz%PWW}3Y&2AA^;uk
z9Lj6oG7FCMKMw$+#98A~wk3i&iJvQZDU^L&qVvaPucVguj&;{%LTa3hkNHu~fc`1o
z+wYb?LEVGk1Xm>Pl?c#&-998@Le8A`YikJUvWP2sZn;r^P7JR_ZR|76Op(@58W<LD
z%!WH+EPJZ)O`S&HG?!f&ZoYUdo{bGJPSMk~lsceS;2eYZkPAYKUyG+qIiwn1_bC{n
z6EPMIbvmKwl!$o?WUKCT5eFfd^Vx@pj*`yt83#78rN~>t@7&zW8A0-5eEr|i9zEze
zs>d~Q0sOgZ$wWHSlGjQ^_3SiJPVru%aO;vcA)TuZ{*<obX?$^v>xVIqkCGq#KtfVD
znqPf_1nBh<yqgzZA;&fxC~yv-VVQ_c64zNZ`L7h-Ct}~YeXEUhv;i0j)H4c@3F$#*
zY%#t)_zQ2JjlJavo(v;pzCUI6<F_c{_w|e~B@%CmNWZRAi$jk|wyAkNa5GO-8tP@!
z24Bd(e3P0_?Is|z!i6!HDhft~yeA5SRB5Tt+M|;Xs_=VVua35oO46DHv+{4M9X{{-
zbbLfDu;rby%H$eoTKU9F>va#-+g!soMwg4Fr^-zUWwkq*&_@}#DqKGx7FjkwVTCFB
zx;m^-J4RFl*5qX6_VhD?OI_X;qrf%jEtCxYZJ}nO<>+Wk`NJ^IK>--dDXP5YG+J-+
zw5~eln#}K@)-3VFjmx9mz3XBcSM3UDIi+De1W&LFCe|S0!b2)s(m-t<n~neYb~V1$
z1oD^iy+wXm)ML`1uRX5T3-+0`x=Pp<Dk%sK@Ze$kaZNjr>0%7cE<HEVA|T?0uQmNM
z*xz?gudx_BOi<{X;wU~DoH-mi`vMgtFiKEsU%cLgZOZtx`P{M^-LIH^25r2P+57uA
ze4ZkjId`BFL;Msfy?Y214o|>4c1{(8PM5WO^B_*DWqe&aLK<#CL0!TMq4>}&y@{{P
zt*Vi3w@j#@B_TKDYizjl2Cj*jjl`YT`AI;f_M-`TyGMPu7!IrT3P#$Qy-xZ4OJ4dH
zk<2hg><2LWrQqM^0I;n@s^8rTV5c|W70M(q@-VIaQpa&S?!4T{@WNyM_~>-H$D4jm
z*Ij{)7&!tWx3Ax*9%mOCZ%g~aNU)xjk)|VugbiF(;O{2!H?XYR$iH`4x#7u>_^P8A
z#<JKCG<AggEihS1aVWtpXe-0`{k0hv@W+i0)#{BDNy3hIJYPNj>}*k+C2QFkhFIwu
za!TIa$a{c=ym3SVs^QUBr7~9{`dbB;*9q#4lRr8kfdHSaN<s(0+%&I8y7qJv`Rx)^
z&qC2$wQr~rA;CZx=V4wAc2l@3bmBwNN96<Cd8(x$kCaAokFNN-<o6+^6`i*5DDL-3
zcWT9GYXQvBssEK1($r`Y339$4AVpYEOMbnid2fl6wN;8&bpB*H+4az*7LnTAXAn-W
zgXn%fs<J%RJ}HXUo>C~|j-mB7V_HXt%Ds0^veP|dI(_l$g!7I-B)GKp6#HnTBJtn{
zvM0_yRQ&ew82naKi?O3c4|22i@;4||?{QsCWg!W!|F32B#~<k1f1o1=Y!{bO2n6}|
z4;JR|)tuZvg<0nD4mnQCG*fEHHt~|)pr}vjBrF0I9x=H2t)aX5rGRi{zXudEp{!K)
z$*v(HeLHS6mNs6U(_wzjIZEln<`%x_!Ou<t3j5MA(LibWlxI@K(;$W%PE6eUA>Dm`
zKOoJk=vSN}|9Crmr|`(H6AEAs?dkT$leHk%xn!$0%GUf8zPS7-_%nLoseqJ*ZOFi<
zglcC+PM=kL14rFFUEL;4xwr16nW9TpLA-eRj5s2<ihH30R?#eT2Xf4%?kH7^3rczv
zFr@u919ivJa_G}~!L`{U+xUp<Ha&s5%(Eatfo4_RPZ_YvUEb@{P?Yz_d`<D*I56t&
zCO1j^x{DU0=_?R(GId|mv@+>;0lZ9Z{+4hUpexoN*Zv{jfrTP}lqZ&Jo~$<#ZY!5r
zXt%!G#7D+(RA?@RJ7DvjeLEKT#;f!Q^L5i<bnEWdUplA=`o5U(&{bybDHo<lG}ejV
z%dxM_S}JpDk2$>^Z+i%FSI$(*zQH{_*Q~h59sIfZTf}8k%8_niLPcfAq$rUd#?dZ!
zQ&tXbe(g79Y!E>&$<E}yl4NrVpeq%&S>i$WV{{1eMxFaK%7x#TUqc*ye!fj&dG5uJ
zN2e)1A_z*3$}-gE(~ifYA9H`~j?3L@1ub(9V*dwlD8mN2032y5?epu~OuOS37o(CD
z9DqRNDmxq%S!kHir}z&Cj6_lNA-7{snU>Q-7mhAxdiGDMDv#_viFad^BOw*42IU;t
z4^_sS+!12Ekkn}Tie>PRoZ!pj1$IFmX-~>WXCj{`(`X-if(>Fh<1)mCUFwmZ`T78E
zL6iUR1<vwPJ$nAh&!}1$T}PLTx6l|Q=-tsjeE4WbDdndM^k;qIVpm!cUgi>uu7CXZ
zLC4T;#9T*jIhz#VW>^Y1+~GSBx#e1fvu}LkY9C~YYx#uDoY7Tp(@HIOUGADDp*HGp
z8V9BK>4P`Z53Q_ubttb~acc}|p}$%1Wzcx(@&r-5Zl8#Ux(_vhc}4Ad2<ey^VH-(Q
zSp6Z%uVP0v(FjH2Y-82T)r~n~;Uby886~dW2$u*4JXmfx*_LPRk~;TJ?N<tH>n%j!
z@VFi!<f`gFOUz1RpOwP>f^bXIi?1aNoCI|Xx3coJE7uS}>oVYY<;RMN%k=HS5Zjl*
z>*3Gul|&vwUBP{?0K%f4$EE;Bi!0?Eyh{4DNv9R}^F%c-pFBlW>=_v*1nxP1a5{R)
zu2xdK7R(j%)o^R4+vZSWmWP$N1Yz$vZ3VNl0uCv96C%exw}&(v3d#H4JSm$c7zzdK
zn%*N*%&U%IObz8YjKix>;QFd+CgK~qIV20R0E!EBtv|wQV|?A|KB6~ru*e6*j6^-;
zi-Rak1=UX(<T*v3@#CwbhBg(+NAHcQ3?8#BJrZg}`a3jI%ZWBbItwjvmC^XRmr`?$
z&9zQ%oeDahlaYV3$cG@jvFCM*yNQW~+Psj@OrY=jbgtH?MdAgo?K|96rfG8X!z9^H
zqVeb8809nhTaeniW;ut7n3ofe5_qIe@3&nSBR=cuKgC+CeA1K6ogE^3aQ5~zgGa=Z
zcgKEh?<nCL@A220%5Ocw^SAy9Q)Rr4_ee&-B2)%w`<||)$sZi9(c=0IPz=JjfWDsa
z0fFl5wEP_BMKiq!3?R=@P`}d6iCOx|Irep&jq}J=VIN?ghos9V%dBIhht$d^`Kic>
z>01xnq9lCiPn^{FbBh;sr~q+T?L)`4MS)8LLmkvrcD<LBk5^6j<{md4cbr_PNZGFE
zn`SP42s>AB*&G&*KHMWLufOYGRuIDEp2UCEKBu;6zr=6dVQ~UI+2j0Lg_kgT*BAux
z^%Fj#vE+|FW-1B505Y-!O{`)bd%Q!p4G;zp>{qLjqoxx5uW*E&MvK(l)dvzn?sZ4J
ztGKf6Jc6w<Wun?3X`U6_w_&okbx480Pej4QZ)l>mXO5LhY)yh3ywyfZDKpPYD&124
z@>;D0AcOEiQ`K(HJgzkc-+CHv9<E!`w(i2IBAIF&Tl{ne2I8-jsUP%n2j|&aehWI9
zI}`SDVjJ&S&3MCtGD@J?z%|{ioKVlf{Z!mStpQQuI-)%9=WWT6f3JaOFW>y(z5fnt
zEiT-qE|X+gfTV=gNjf!^=s!fsQGt2mX+di6u9O>>@-djvipHn$hxfT&Zims0eVu~B
zg5vA;VU&%nXq1sMfsv4Np?7lauCwEa1N@*{Df&f7VI+3IYGIc@7oDO1%BBtP8VABR
zeF3MJcB-`{uORxkeSnZiC)c)6*Ci*g4ypq^lDKN-5UTp}z4Mej95ekPOT;H8J#hYj
zK%=8Ug~akP{UxU!rJhX@uQ?Z+y5<L%`~#i6&#nQ_HH?w+3@j<HMT76%`q|`AHp@e5
zg^LYSL*R?rwynB-ta*Qsn+bZv!z#8o`AayQn<s}KdosDXW@aArvRKW{){gn*Z$+4Y
zjqI1S-0wZ+)|!BN)doel?m_Ta=&7sD`GWeJ%0};?AXWR;_q}?TdvKjcy`|J$>SV^6
z%KBHAUN|8?1joOeT$JP)RG9M_N7X5QjD0uWL&j0MW;;)pif@uLM25QS7Tb1Ywa$8J
z&QP4AS(u_T@B>@6;9}b{6q201_O>z>1+Fc2#P^FPpwur+t~@TUBsjFzh;i-rQu@9+
z&ujaiEe@fY|1A6Y_VC`i!L!N1kje93vzUXa7Wzarhj++A<=(-{U0|Cf)M~`#sZ-9y
zU_xWRlZbcd(?2%XiXI$&o_s9reEp|3;@YEMJA2xW3g?fhc}RTrGgH3lyF1f;CC1Ew
zIHTxGoT=8=rI)N`c;b14L~r~zw0y&r@iHLbxX9vB4~xXf9_dPh2Osmw59uO|Y@H<=
zq;BiQL*=M^PH-x?GsfRxxZBVCoPApJ;gtgl60Jt@qlF9^&Vz)7-H>X@?4^({+Hndh
z{f11w3vaH4S1>x<l*p(XfKjfy)OBO6ZwaR_AT0fd@L}bDjcegEZ#})y=)7NwpRph;
zLK0=c4K)3np&UJ8v0m0>94~KoEvQz#Ql;Mv*UIk=HTI#x@B<^Y4tiBnsB9eTY30|d
zjBrdpq~hy-)>hkH(`+Opr;#vrJS#EuZ|sqziXJ>`l0Ov1FEUOtu+<e3i3j_o!1wD1
zdjC-|+?YIZBmRLaUTi>g$(Ypzw+nZqiI=|_k_9Q0<^gGB@ccv?(K|U-w104Tg2lN<
z8c4nBJXhv9Go<k(wt^~hOhXt^S9W}I(8Ft;^`J)%<I;vaJ`!R|`1Cb<4g6gxtnF6w
zeub@x8mIDGNg}#6w@IAo7JLbPY_KB9b-+*bBlf}ODU_<)wI^T?@WZ=DW4+Qhnrp?P
zt(rr93ZMyl{+0*VZcBZ=A4QAINVaZQ>j({d`EqN6R`s{9W0qU@5WjKBjM6_nI9}Qm
z<Saa+#+D4uAWPb|IMTulVseD##uE4%5k~oJYdPgt0oPpte8F*Vkv&9lB`=u5U3@v}
z6Gq%7$bWlAF0yZo$N5Hf(AB=)azX)syU4)34|PiCqU~bV!>9dcGzE{^eI}k(RG41h
z*9(^uQ$;mB013v!9=%@B*Xb5W9(`Yk5PbPq+eO7z*UYbU<vkPqLlJMX{*D=iLfSis
z-iz#*pf(~_>-wd57`X^Xp3tEY<JVD=6;OSr@V%<n5MSfcpG12g2%|r*(L;nZ<VpOB
zKd$2NSd-=u#kmlQDZ2jBdu%`Vt^Z_XKRVTQ5~M5o?0A$~X)K)&wXGNuwQm))XknFy
z+AB^^TeeoZ$pA|_OU>Dg<v|PzKs?;Woy%0JlVamOn>e*>DQG{MVn4{kgj72Qc%Qv5
zSIO{p1$<W0{ADaixEX`co)#FRb_w87N6k;v-GR|P=gmqD^OicW(OMz82`JGNQE%*~
zCcZAA0bUNAoQMxi;q~~8$n)E0`}yVk!FS4fhii4tjuCuG$V8_ydmae|_odQc2kol4
zn2%qkt&(O#RXEBvmh3+ir^-T89ZrTYq#WjKvQn-nc<0?me8XvS-{a=aF^lThZFh+G
zqxw#9SW+<@sS#spX1)AS9zbnt+=bw>Skw?&xno+0id~QjCa5jEdGUj!s&ccKlqeHZ
zjxK-xv1gR6Lw+@!VCntQqGDAop!M2<5}&hP&GGF^$9C<*fu#+}7n;~5-+ji2=V&f!
zS|J(G1g^=un)&JUTQ<BuokMl|)tTe727ZH0>V)|lPeT%?cs9T~-G4$XJLzX)##7FU
zo59vTF&$U4Kjz+)xP@)-gWqX#*U`0xdvDDz96pUtAAX*=;O+jGPg=32@?)@rE`PS>
zL`L~TL8Bv<-;qpn)#M$i>>CD-6)AnCWBK;i@VeR#ls%l27fS{ZEhS#kEe~ZKC<+%n
ze@k4?-OX75&zsgL)Z&H3h>D{Jj}{%o_V)LT2K8+0`7=QbElHt@Y5oNguPIx-N<6--
zr=icUp#$^DtChv@DB9hml)m24rYLv*zU0tUGyn%I?S23E3h61N<$}3T_Wk^`8ew}z
z+;)iQ$qxbFd^mGG*>De_>u`=khq>HCb{_^~PFR7lVSr4R!qgh`Mv+)ionq|#P8+yy
zbcZFoHL?9wxG9cF7b|?@D5S&8<!d9~ofKP9b}0ZpPjROHHBpeBl`RI%^5LtiI`k`}
z6QPyw)kd0Vx7`en*wz{2UKHmHo<M*zQ)bc13N_tdN*WU!#yS{~@ceAp(-N%%DV29A
z)$%T#NRP?Ayj6iY0emn;Pw&e<k*M;ZfS<SfTB>5mF-J4dy{9EYzJ&W;8Gc9*F4EV%
zV*s^l(Wu2d`B3CY=6wG36peXMUSw{{to;QrQb_eIKuED?`!?`0`+QG(EX@mNOWpg}
zWEJh}Mx|`Yx{R)U5j2afUH6|7QHiVNOC1k>3wGBZXpmXCUc2*--=K<vhJ_>0bv;b|
zO1Zs#L2B1_jdc6g`6F6b?Cb}N7NO>TTqyw@>-+r%{Ys_cR7;D+O>)zi8n2Rgro>~M
z;s%=jMo_r9*Ds7%8f8Dmn683WhT6{zzEu9@e6e2##F17LCI!4&&3>9F`SH3leC3&4
z6}>COfkxFT1%JW@0b~yD31MS5WUKMZBf1RN%qEw&_o@neRc%J;X3bV5RPnMya(FAV
zfg}^`cWy?(ZSiS(ur)@HFIv6hjnpG#Nj0|jtCElgxk*Fk;OXQFgV}aMsnK`Q3nd1f
zgZ9P+sRa<y%C^IsCNAm3$kjq4vsh?oh`uy}aFJXk?|Y!giFq3Kkh#=WAGs-2jh`MT
z1WZD3xj&vWK88?}7aa#AK*`sEWjXA&9_a&TVN8=cM%g@4_vE*?)MWL)#>e~F8mK|T
z&_|C+N9pl!XUJ-y!ru}OqFeVI$Wceoq{nAnGnx{UzB`Xi`TmKQX3;C#xQSq7P^PPv
zZN^v8rkk`tFpN{FDkrbPiCKIE8|n$7&rHkfJB0X8ElDz|<q*{8b1F@>FqjAS1Fg%B
zo|SOHb8wPSisVG@qM-$btsiVR(?4#iEj(B0*DVYulc2jx!mF54`%EGv_A{-&1t6+T
zs0^gCdUY4TK`jSyYh#?2FPB4|AgiKF@kB~~zuy)0Wqg*RZ-2s*tm=w`sUbnrLHw*~
zHKL*qqIn`a{(>R=oxGQ>=s$7krIR<}OYX)=2?)gRyo>SvR>KEe+G(Hh6ySq{ciAJO
zt>5ZnrqQ4AA7X>HSS!Nr-^bLQg7mg(R~&MH>-@6m>&uF8-`5K|oECTe3^!k-OuD+(
z9n@aXUn$-&hSW9L<rK=d(;ncCx$I{~Bm3x*n!taNF;N2%EMdiP+?1sOPV<D}XFYbG
zSN4sHlOjaLsoJ}U`(B1`P|A<JA-P|R(rbV3B;#v!M?|e-SI=daB`9XdsVliiRGvYC
z4m5>#$aQI1sIF$9Ald%TuB5HOx9iH@d64o06>|8`!Cj|xH8g=y?{vv?e38%FFa(`!
z+7rPlB)58B)6v4WoH;qpUKKQre9jpQSyqJ>iC`8QJFXMzBTTjsSf_W$_L>QiVz7VQ
zRn-<|uDivV;p0Wh;WKyoB4+RO)ib8QO~>2ie1Gs|^NUeUa@Ca<nQv;WwrQQ`rW7JB
zZ0&R(sQTNvgM5PQYH+;x$IChJc)jKR`RWP-JC`|Ui`>BH^a$m~9`#N@e_;@cQXm^%
z76raWF8vI%zQBM?OmzrX%tg)jMVz~zQF`_vVKH6a<+|fQSX6;=lv+SVt8VqygwR)Z
ziqPQEaDV@-7~wsYcL3_t^S?FrOIOw9?3S=Klq1>9>Qr7{)pL7Is?>wa5lX6KQ12|%
zkW)sR)_EnanH2u~K59Lr|5_jE#Dska@W;6QCMW<;YfPPh>wXXF(^|7GD#D%(Ip^0i
z`m0w>>wzJaGr=*WT(4!+@IKZhX0&gDMqfNPem+Qhjt-*7%)5W$%OD^D9zhe-fuULG
z*a37%KEBa#c{BY~rHbed;xFrxcz+zV^ETvOX5mthE@`Y0(?}6+7--Ede67J)8@*|H
zs<Uv)F&gL(#)W9V{gBItp$!#MBLj;0gDz@*J|Ni>j@4f1se0K8-i?f`2`3mZIlE|T
zY6a+A?YG^Y?Du8$=S38NW`_PinM@4II<RLBDqzD(_KnJuXRFn_ta9P+u*N<4Jo=3r
zW^oqF`m>Ve>^reSDVN7tbuIw^Z}tg-TOBd05afJx{US!(?CJ1HS98-5TWudUsafsE
z?$_F76x#1g`JLE^fPoW2k-_cvM<TcsW9UyzS5xSN$!`F0)IdOpSF-|yw&?P8KGq9)
zGgL4X(Hrn-dGMk0EoFg5cy*BrscRgwpQbn{4r(0GWbEFd`PI}Lz0o>`ahg+FUpYt-
z(st&{892+5=2_lU2UQ4@oiQ=*jVSC$T)Uh~@BVJuaf!MIX3`i^?&y*ixAF0)&HS}j
z&e_ON-pYly3iV`N-(Wun;Y0=U^>fP+Av^tOR>r11=+g8=q?WUag~R>?((mb`%%X%X
zC8Tv6y^_vN^r}1`8a5!y-WDruM!8Pg^G6MAjcGe}cL(40m|Y5-94-T4`-s{77=NTf
z#LQ$iBSO3s3?mAe)b6yQlhr1?UfX22I4E%H-(UOmo?dFiT$<c(iaZ>P|Ebom0yq6D
zoHeGZCXhpvU)6@`ziHewVT#>ru|w{P7m2V*l^vaaJ1_t_+%OY*tcGiGbj3doot>H>
zQEZyEf`nLxV_zzELTwu?+8sM_S#7<E&5T8<)h?@MO5k5QB$v|A`=kNvB7WClQjb4n
z5jM>y`ux}Rj41sKkaj3f#mOgA;#lp=8)KJ13ey0gMJ}URgqZ%06o{KWbhLi;btCJq
z6SqrpDz@VY%0u0)7heg9SAPHW7_$17zcLc;Q32|}_vA6)8$58mXgqy)ZQ=pNpRcUu
zM=|tqW9qNXh~h_7q~KK}uUpXr$B$A|e1~$R`eHv@5<C|o?Y`z32mlg+Ec*o6Gv}%N
zZlNMzrA^MCcgpQePDvPeQ}^bLxPNV0Cn}yY#rj~2>gFIx$v<Ly*)D1lR`K*2we=Z?
zTD8I2bQye5{JQfrA2D)o0T}ApudbS>wBoveSptZ7q6Z&IC}X}~fLK`E1Jf|tfKRAO
zb6Zxy_(|HGke^rQ(2By@L5Y8=J|g85Xez^K9@J44+-d1<Ty->_oj&O8qYyfN%IT$q
z1A}dmlkb)!(hoMO6Y*8)gt`#|dY%iUrRynfG~wS!oNF~mLmCWpjy3Fqm?b=!mhT#=
zHbQM)dGr$!w=fZeU3ig2I!_bE#24d7RAwL6ms165Mg03K#=PB7zr5BBPS)9(QpP^x
zD_xP7658f%%E>97%}nQwb0drZA)lrG3Wdj)bh|kd0l^4}27C33?D$vw1+28}qbzVa
zrb5ox6;g^tlQ<dZ%ex14Wk0sY%Z}Xy`9GZkRDOZ?`%G82@^@W$-)dp!^g1%se)aPd
zd{suXvDdzJYZIhfCQGfzEOtu7n%MYjU$9?$?vkGB8tL5#_`J4P_*~MXQ*7^vt+QWu
zil_6C#Ll}$d@*8;<9WqLDV5m;`^8u6_2x$DFO8ua%$dsZ0yo@C(%+3{OL(%rW*Z>E
zXw{x5L(Te(=L$GNccTU6Ur<7@+?HxHaDhZci$P-F(@|;@i<!6_TELdC3Tr%qS0prZ
zkCH3ep$l~9V%YLWhQqR-M_OOC{?&V_7d!5gWQ`C`jRRTOIt-w!w?0HGXJq4>3e=~l
z)fw;6d*!AcSRa+4U;JqCO4!FDB1J#wr6ikrMqoMn0m|`p2$uau5+<#4-J!yc$9ZQj
zJmx=qtJP?m8P&>>9NJ45zgd3@&Z;PG@B9+j_}qrZNY~0w72le~IB&`aTTk6`0L{O=
z0T$ttE5w7Q@W;V>8#<Fcv@_<cWVGpw9tE?wx_LlKt38{#NlGmjFP{skL;KWt=;k+9
zYJ+^acC$XFF#UswD>nT7h04`;F5xInY<ktv&sqX{7|la+-maj~;|q(04rTsbb&*G3
zF5Z*PSUoIh@10n^fErx=66T#kYMxfVeEg_qbJNtdE=PTslioFTJKa;|bCr)1r{K_(
zsghrbI8T=mdQotYnG+FM%9adZ-uynp=$Y8ra~zDw8xLh@K0+n7O0lk=x1^lg8QEhA
zE<}$_CwL|RnW~vm0oQ1s&NJvEytCMxPdUu$3<-YYtiGILF^X7BU9@_b2Fpr!qv?a$
z7FeUGO#Is(6f?89@Hx-jCXN!gbEK7?lrfuNDw$u(P#YC<ciNnO05md*om9Q6qH@wn
zpO4D<uPe9cP_BJDw>rWn-5rB5Y(5Ufe6If>(M`b5*Qh}zF7+K-iu-J}Bb70Gc%fNG
z`jc8=HD5Uj%$t|T3bWe6EeA{Vnr4-!%hQ&;(pk6a)K`^k(=?7*@f~**$GdmU(^tbo
z>{?$c#A>wWm*OM3Kf3A>GTvzd%4Q>-Q80MXYApk|werB!ui`0?al_LylnrwCw01k%
z5LmPT+j9(8C)pfQv(d}cVx$^U790p~+!918ejMJ{6pQk$dy01IkgK?E6ju~K{JF~J
znnzedi16v?Z0WjF?5BMr9Za$}18AT&TOkLiU3z@D_nJ$4#)9|oqDh5{TcOrxZ6nhh
zjJZa!ho{$8X?iymls7(y0xyj4!PptfywLB*DMb5_K`r|f5Ba(281Lb5O4GyavXZ;v
z<V3>QbT7VIAWZ87Lyw`h@ta`{UAe6op*tY-*oWUidzl{ixcz7c_&e5;FpF-KzkWI-
zr#8iZk}@*ML|Ol=zPou*5Vt7X%X$gy5&VT3n&rb>Sb61IbyvU&qr;s>OAF2JhRz`{
z>;alYy%)pCE-S{Vc1){Y0j^AGsY^_9Q#KoYCFUP@Y5w<YrTfwm^m>+9t-6z|oxeh}
zUM-wHA$Bf?KQ%PuV_vf2T%G8}ZpFKMEsT9dmnd9VBDxqCWftQqD^%ub_;n!p60S|H
zkWZx8VE)ALHB&U5UtsOGzCdgy#p)A<Bto8O)`U0dtsi)Ee1XzjS|LS-df0XA59LT^
z<>|v~ZP<w)6gpPBHI)qK+u5~l<D2O$b~|x)+;Bca6ijRzaAL;mp5LV0%?t6r&#&A^
z81}R%`fGKgR|}2kz15bsPsX4%3#;Hq-92ao8NgX8^{B12$9}J#mbFk(nU`0t(&y>+
z!8UH{?!NPCtd6{e>JGm>B2s}%xJ6M@QR%15l@p}ow{Q1kqqAWgA+T2zqq4g0tE(gH
ziAP>{56X?<pVO99Z|O?~ao=3c2IeX5k3kL8r}osqB{M3*GNi-r+SG9I3MS?AJHeCp
z-1N3zN%DI7-$D+3W<c;Xslz0}Rm$W*Rko8bOCzb-*%aOH!n^1WQ>(87&RC$>J)7OH
zM&ZzUO0Y4EpG*qS@K=0xa7X%B17v!K7W?{^j|ZiJ_z*=<<(&<2_U#$2O>@VN(cQry
zz`^H7>HwWTYr}{?Uu@2f=Ec?gRY5FA_%aYP#GlpeW1YoneU5eYYG7g{;GDAJHP0KN
zvZo!ho9+D%M#k8U(d)9q<$W46oGLYXvew_}+e&t1W@z1elqF;jCoA(?><4p(#kG<5
z7d>6(ydYW~K0K3{5vm$rKO4gZC!;L_`mzL&rzjIZmhFq6Pa<sXWmf|0P1uOLXFqJ!
zW1Aqi@R4&?6FN6;qy`S#MtGFG4um)Ta8^aJZ@g)RQ%mt-%o(Jre2WKvxH3m6^JIev
zG1KOUGgFn@&?NxtL_3J``u;O10`MHxI=}u=F2*w`g#>Z7PO2Zjc>CI{m!jl&Td+|&
zvfY3-c&>P2Egt3_{W6P^@-Kfe`dO&g9|s0TzipkC9doLq3Qz8SnV1t-`t#YG*Oy?$
zminBXs#}w^(0}oWE}EgGO$}DNf_rY%{$o^@8mc^$71~$Sz78c=+ALTQ+(JOq?vdg3
zdbygWX<X**m-^W#6)xVXaq8b&BLCNo{p;&~SVuOtJdF0N_8DM*PNlozF@dF|$9zk+
zC>SNrP5s)jb+OHY?29FQYbt@bLpgi?cyjL8c0ep2e79Qf<S-x;4%In!rtG(o71z2?
z-i}nlK77(2M=-B4!B>Y~nX&149@$s)PcX>;%#x#fN|M(F@Slo7LvNCFdtaCYXXJum
z2cpW_LBAIF+89a`LL)1->TB(O4}uRS^AYx)ZQWi5zr9)1?$b3^>pMHU<-}%u=4=JD
zjRC<-zL{5VZ?RfYMw->@RX#~j@_DXz(uR8Z)&Hn=`Ck;sFK}P7v&qgb(es_f!M~3H
zw!iNaxT2`Hza2UE<u!D5CU1GspIdv`p=aT;inM1-Z&d)O>{Q=}y<iaj@89kYHzWjp
zSS=v7Y$z$Z*LH_w_ysI)z*qX3jMw0{s2Yd(z<<A+c6D-^?|%>`{4Wc+^@m!%8lYYi
z<mTR+s$(let{9wksNpA$17JptBVd=vPmm)%Yjvch*_Khq5rdiU^R@4ViyqKfi-o*-
z3|^-^?Ci)>OXsbK@mcPFJkw%7jaQGbTTaR7KyLn&OXoG&3Bs1{^wlj>23j8{ld&a-
z_eRawB>(bW3Q8lo8U8cU|NBu4_>aQx|I8kD>jf1=o>J{PC7zm_(ABj(!S{}M?q99w
zwgX@ebJDMP#HBqmlvAJ5GEA4ND?MAEJny|UH-cVyyjaXPYt7BO)Q|6l6?;w*e<pT}
zj+VusP40OhF;i7`o>}GP58@Yef@2nZRE7AT`OgJ0`~!XO4sn}!I$k`KPfNI;7vFr;
zPGmcT6v%h<JIJ@5+wn1Pb^CDDMK+u`mdr)obu;R_>zH(;?($Ht_NvuF(ch}S!P)ep
zf1QGTp?#w*%%ECIuAM%U(C#DiU&maJ%g2%o|D62x|ItA$*X4h5MF{@EC$9gu>qgse
zfL_=HZ(fgFb<y*``D6b6!~dV9{;$_{`+tR{&cF5lYlrRsLm%tk#^2}i|Ko1UH^1m?
zPe1jqxA~u+%TCtDX>vG=@NiRd056rD*_odE{{X7ro^PmsMlARGUjI+e?%(&{(7mKf
z{Qki^M&y6?Cx0^W-@(588~(Q%oBtpB+W%iY)(zAJ`T1oe1g*BEKj2Z6cYZC4Fg;%B
z0Lpqq{lAZo+rytAw`Nsrjt~6@<6l*mt`@(|z=1RJk;>&%g3kW#Fzrs3XzcpZ%4R>I
z(WBmem-%So`+EKK^4+fU!rbZO@TP(rGSgZ?x7L>-eOXOjPxP~<m2Os<_x-BACoz#x
zz~t!|Ae`+yFWTpum-)5AYb&;IYNKPp3l`e^Jc1KO-0Ba4G6po|Ly8T5vA<ePvPK>@
zm4M&Tp{her`1nk?FF+GC(Cd^J<sNvupPV=-Gx=_`u5c&Zly3#;%X^w9vK#PP-46W+
z`dw}iLg!Wizlk5Ms6SF(^&Z`=V<QKOJut0hVW4br9M~Tf#`;yTlTN>-MsZY--3hES
zwqHi`aW9L-+XF>jD+LO@LdgM%gd_sffvmp%d=58Gkm?<B?Q|6n;S{>_$X1Y7YIC5+
zOC9WNRcT@LGNO1DQ-N)Qc+2MS)cSYcA`_?5D;>DiMHW40LZ_0O0<839LOqcpeSP0I
z0wt7saV+6+05?%rUgf>?YrgI;3ZY}w+HYxlYx7L#>`-9xIbwmOJ+?rDM;4M$3Y8@|
zI>QQ`HE(btK9(~)YOOL`Tf+Rovn%tfo5@e`>%<;N#G^>I7%8cZSPw(mD@6don@Gnm
z4Ud6gZ4ZD`1+AxMBPmax@<fTODGC(cr-viRAJ_?Y;c=Jm86O~%q>XHYpH^<@k@6-%
zQYtp$4I<>FcX0zYJq5htcqFehk~O_JomNJ3I!f=<_W*}VtZHj;xW4f#Vl7<zin|ov
zlhz1k_SyJLE)w_rt%z7hGTea&Z@O3s{$inRjtK!mB8qEp#HP0$A9IS}uuu167`&X2
zU#nJMHHrauR19D1H#oPF+Ls3zg7hH<v~oN1(Wy~H?}f=Hj+T(MQBm7_pWvYKVGt;z
zKqIKEbQ*8s+9W#mr>#cr{oQeS6l-^%RFDOn?k<4&LF`27&~fi>3GW6)r}So23d3T1
zM_E>M45~l0I^MhMcrGK<zP64BpSh-{uWC%rAy^+)4Bv3jz$&5>cn0z1O2PS=Yn%TB
z7SG<BE)88QvejN+SIp|<fPOoeME>EuSA=l>PU_ZO+s!g!Bd6|um^j|M2XhD%zSD2R
z;{tz$&)0E%=SO!Nw3JRMHvr_Q<+s*70O;jS`KU~5z9}+rq)1+^bonixl%jf#Teb2k
zhf2{fPMp%Xex^Sz_p*kmpx#<$UD|r?Q(z!jwTanjTsAw8A8$1onA&`6fBXJ3KMkEc
zP`rt?0^;*u@AxwGoi!?JuGqchcsTW-f^Y93V8FwBYpQ~%p>ikW;gAqMd<=`RX$9~F
zoMrb1JhLWxykhbUDR{~~$isV)Y3>rUQkEl&@_S2kuWc}~1ashA-_w2c1_7XP6MbDY
z7+y_2S9<Lk(SV@8^~#Sb;aq(8H-Y%5pc%6L>ctY;Vz5Bv0>^Yie^9})wZc;V1?SPI
z*N>;1M>k+Qn}H`KxVJ0y+0(3_3aTy&0VWuhNIc8B8t@_~!|s69q+81f!0^4@tK8e#
zH6BY#!bwpED#iq_T?vP>R{aLCn_UU@YLxN$vgt+Zz9_lr2u?H}#k(C{9LUH&!0dkT
z><()Kk-8+sBb<oXv2J7I^Aw@JtVw`X54#^_i9u2ZRHW_7wC*mmzxFjT`!gUj<1@@1
z!*e&{DY+j^BXYmXSDeH<md&=DLvenYN@%(rCp|c0B?DTFV(M8>a?>@V$02FP_Q0a}
zvxz0PY<td4=0L177S;MPNV$aT|CXloY<ZWX@|DFdC_B<O^tUgJLrC8(R&>7w%)0!i
z?Lgo!@*-7$&LbeQ_LQigg1PN*NdH;8P_3X}NXxB6I%x5P{t;9SZ6W-h6Z7Y<4d6bj
zjE?qpkB@<`M&PR&CWVC%_QlU$zS=v=J0{H=A<J>fm_y>R!U#Vn*~L6KZ*-dAmvF@r
zb6kpJkA8zuKcwPo6MTnuTdgLsRQh0YDjQ2|S+beeB6(C|bcS!EP65isz50SX#wBpG
zR@obIZ5X<DO0Go~@kfI9X<8pTJ5(0oFiVo5_-Ok(*q5}l?3E9aB}7R!(W|_~Cc1=7
zG`;JgO$H#icxB4;(V`9vVdhccH3X<fJ;Jx>4CWeVAt?vh!|ZKn_j?`ae={k)qtl5r
zo`t`bSIo++aWb{1J&`>#=?62kIglfMYPQO0yqAQqUB@*13=4+J7VfSE!?*gI-d>4T
zrdyk{nR?#yn$vr75KZ(QuH7qht9rdGI>OXme!wg?R@t~zV**8zH5<kjbM8(ObMk0m
z1MAYTts!xRvZpl3CQ4FFaF?U|D4*^-sf``2S1f04D0|3I99{VvKQV7C58GfQw3?oq
zp+qaK892mAsa@gOd#&?cNJ`&aH_6&PILT^L?QNL%Okz;`9RhmKZtMuU!p4<!fEnC6
z3wGb9rnN%zk?#s5xeEqiPvS%XG^y2ZFkbFqxUTqsAAJj{OANZQ_0*4;Uvn?wiS2j~
zPor$Jkt4ud7KQ8bJuB`E@aIwpgn93?q8=KH<X7>u5~+*AUi11PT`)*o<4Op}drk9*
zdquZh#DmH@1YNm3LU~LpIX$OzmD~y5<oVzps>*2{Zdzd+yvCYcliG7X$06{x5r$ZX
zt(<l%ijFlti(*$;9#<-G?5vD+MX`g*N$F@vyC-gb51KWr>wA2<OGQo$J^(RcoCD0q
zFuiD)N9_P6^FB}AJFEOCz?T5apr}R?%?@X2mBzy_M{Gvpxt0lf^oauIs(!v}fa2)i
zN`}So%4DJwnT*|FE)SLx<vj&flijA(3FB0u(em0GjX6|1>%E?T;!+u(BJ{5{&ceZ<
z*Xdz2?Y@C~iBchh9;Oanm1(v?rD7YK3c+=}+n40*9CxhY;sM(LZ9P_vUhET-oqNU0
zuh|i0zf^BkJiza9qB#I|C}OoAZx`-5`D=u;s3#>Rl94<P`68SZwx;77Xc!3q2!C|<
z2nR{PW0E~2CW;O9%ACys5g=+fpG!tihu85y?oiheOQr=It;E2)b(gcgW$Q>>UqDT(
zCs&TNFYi#r0ab;gW=KH+vWpdG`mc2@?HwNq2qr?&dYa4Snv}kyx$ADQXO>q4k}_D!
z*hjO!z<!J>I&&&bS9z3K??h<g1<B&f(=h$hg*pS=EkTgFS1|*%qHXXRbDyo>y;D1@
z6L!#K<+$eZbMhGlKGr&5+ZFA2OBNESmwSJw(H=<3a&8?7*P^}afw-8m6W9IiGINlq
z3~ni^QG3Gotv_e}1Ob4uNVM)<@+fm9xe}W@wd%w+5noD>w3Yv1TM68{Ke?x*FTIgh
z)%q(V9l<<x>a}KRxKo9+QNryr-I1UOgp<fj80?b%9n4?)E`U;s;HgRbO_QS^YL=ya
zck-=b_K?VLk6^cp?OQVn_K;!j&B$SX1hOG1(3z}E)xWlVjvaT0@HJE4(}#!?)8>Yl
zpMjwb^;1xj&uK{+OB39=;JmY&lq<^sdY~#P<rWGtb1}XF^6BD)>b-)IReT0$A9m0m
z=U>a!?Rqm7u0g>gb<bx<fww@sh-AYzt#-`B`f2ic)R<5>+$XTi(8b5_948nC&<9tF
zyES%4tg(KQ6C0cmyT!83__CaeoiJfV4|}(5|6sy^4G!h22tv@W0|V>ikha=fDAq8s
z$yi9T!Oqplxza=bxRQs@#sdx;=Y9de-x-P~^^K+3Oe@kC6`|-jS+CLdZ2UcaxTD}C
zv~`%)Xtz{QNiaZ6o!So6VPxhtq3hVhp46g)6*OyzLQDjv%B1<b-^E_LI$5WhVbtcO
z$#Vk_$p$_Ia4^hY^`4MQ>Qa+wBn8Ap(BxF-2+-|y$L{dJrU(vY397C9(dG4$)(rw;
z`ptDBr9(>Qpp&p}gK?ZY*AScS-pUnBq|B6J@d#d<kcMteWkqxEhk_3};VphE%f`<n
z`*9ok76gA;E&$7=`qN1~?iZbt710N{B@Uk<_$W<iSNU9dCjtrLaeb-BcGW*cvyL|s
zSsJ!+Qi5yF?~f~x6Y&(u2<Mt|$gc00y7v%M3kb9`#X<tgXW^_t2asn^I+il2R)nr}
z_gFf}FC`M*(r$tfMRq+?coJe@XzD;xG^M!tKv>0Lyh_s-3~h|5NX7_3vusIR6I0ds
zl1xR=&)b)(S5Xe&?<L(YlhTEkKA1GwBu-?P)jf|^#9<Q2%j@d|O2<jNmWt<K96I$>
zR+(kv5%uz6BPWd2%*^2CRt|E?&H@8N{ibG+bCyn9{%KSj%9*A!NIkX7BT?>vxjFWZ
zCvY~z^PwDWRd^&*%Z#P#$6<7UJiKCxBS?z$)MdAhWeH~F-0U}Pf2;a0Xp~ik%VE63
zh(CJSWuU@(?U-k=X#})Jj*vAO9losxd3luwnwc)UJiLjwn))N+g>}|~1hg!!G*g1*
zgSPkGc7|b<4*NvCt7I;}had=L1HG1GfM9DrNcY!;d^#}uKSn>-Lc-e#C(zeTJ<@dC
z*845(tj1Hr=l2u0yHfoc9S=gZ+#>hW!E1N2*T`Hu=z@OgQ%q)c-AwvfD1#HO>h3jS
zEE>J<pv{MnhgYltjDhHMI={I5RgpDkGfwpFSgGh8u%y4(Q`vYsOBa*^-<o*r26Ixq
z>{95F<C6EFt>f_WAZe2|wHMbXbY+au0cTYrMA8CCBCR`Pw|wPQ3cQPscX7-ckH>DJ
zecOYez6H#hvXGHy*?yFE^=3Am*S}tS!S<7IVn3ni%ZsNF3uCo;t?ON>HBYBSP*3^3
z(Pa;X%2J(is%O-dx~%bte)?t8B=yz}u-kqHLKV{Nld1JlMZZ~L`Cw6NuB;^D7H_Ju
z>6v%SJ(@W6u&VuBaq5fk9d=@vYOVYyhy^=*O>%%*J~w`vGy4ugUkoms-Z?73tPA#T
zUin+*;BY}SAcrnGe;~ovDKBNfNg@zaYpH&R6qbsFfo<#?1068==!*~L<q5I~=tvOe
z`=zQVrhs?JTs*$|pljYdKaFCwr9s&_(MKF7?qYbZz%z&XQWoF4O>Gi3aDkk41mok$
z9%ge1=&nA8N}rpenvX+c6vqMEmNfA(l4oHgZO{d%bR;ZFD1Y~hETB2>3vpItI&3-X
z_S)=+fN?b~{lUWji>Pn$XZnx7@9vY5PoYAnltQSG>s%6wm@wBy$Yth|%iJ%Oq~wxv
zzuzyLO)fLHk;)~^-R3^IGn<%gnAvaN-|zALeIDDN@P55s=XuU~o`ZoAgIBI$FZvRz
ztG*U6a(?xr8#n7rYQNKN*f$qZBsA@mSY0MLq(%v3BweCJbDxu5Yeo%y_;X>z+BMU!
zH7G`7#uB3Y>?C`-QZ7f`I!@L9l`6VR^14h1-vwfuUSwE+?qilko<^CqG=Mf$Z^6Rz
z18-1HqQ~ryhn^rkcFsElC9)@M?a{`Y0$*vJngGpx$dqnc`u&8eck;N_y?U*@&A*fs
zla4&LnSFYwGotuhdz<FJH~arT8PjTb%lpzn3U`2yRk&s7M}x+uHrdC<7N2w)Cj&P;
zXd8YXWp}kLVQU*BguF|u!t!NB!G^F^I(wp-Z&#`(l)YeI6Z7@motHOnyt(o3PobBD
z53y(J1X?USk)C6dHdvM|y1pLI`Pog`R1xU)HnwE<OK6KNDgKik<`y?A?|nXU?ew)X
zod2~me>CM?jeWmlzw>)IuIX(TV|`!Vwg1ilwXe@R_m;kygtK&LSn2(^z0T4bQV*tq
zF(lHM?`SSctX=$zV#GSXQO0MaPljO6Wi^YUh3f*t)>TcN=Xgd7bBTY0;&bkHSYb~0
z2(4r)Jv{V`@h=aa3ub<}f;@8}=M6B1zBzdK{%}PDuk!q3z)1VgOgduc#phwa6{tmh
z^*MTwnN{IE50AvNPE%r2_HYdu!~JNfh>aUY8LHNNHQ7_L;+}Q$g*v0p?8_t)$)`iA
zBj<hVt_H%<>WDQ%Gm|(|B<!AsL;OsamR6-ifAgb}&iJwJeuET3=*YoR7??59+my-h
zoZTvnpxIUXeK+#_<sa_oQiBB?j9Jkwu^58T-Gdmf-5)0!9VZPeBhA>D3DH+7b@onj
zjTTPipt^7L5bS~Ro3Xs+U1P99&+IUd?apMCMLBSRgcetT{m})J*6iDwn?KSM!;S4P
zZ-&g(1BD|F3Lnr9*T^M3EsGM)lgN55v_+7IDyw0*4C+D(VJ%g}&=yt>D+PqP`BfMa
zI3FbYwb9hdI$vJn!{68X3-;e?lJ*#(z($?(DoPOd?AnjNuC}>g*~{+4tUsDR3Gz<E
zy6)`1Dy)r<o9laNv!m~GhMIOKDK4d4?r+(#z}bo|)IXzGHlBBO11mOFC+^XN>V4w>
zAWiIiKE16CWrQa_RoRc!+)b4=_+(-3UwGfIX7umC(t7CV)H0xW(=JOA>NmOqadL)V
z024PWPDix;tE*sH-ryFqWsP94tMa{Tr(#N1Yk;skd75tI;5J2IbXrb5KM{DjVs$l1
zNYSD40AB^FM&P^q1NIa_PzGhD)Ag&yxYYzE_&{7TGXSJ#nNKO0=|#_?RT2eH2ixZK
zRPJdGm&S+s=L6%D9WsM{@1R&i7M%X+M#A;5=SMR`sVfRN5YpeNHJ80fFkki@n^v)O
z^C1|c1~Z9BkfpB^RPA3xMOyL18}4@ZiV*#*=J^k$Yq8L-K-OWbV%x~%>=|X#lJVbZ
zQaEGFC|kr%zXV3Bm~S3`!>bJ^pay#&X70LiIbPx1w-;S^L7RZ93{(As(UUzn?!~l^
zU3G1FOUlE3ijfxeNw?l1sx7GvU}{#dF0Aart-jHX3cgD9Nry!>5QUGKoTw7kE8V<Z
z6R~abDevJzr~B|?MP_zRNgvAhmru{J1plS}yb=#W4XZHafuz0)wujGMBY$5!oR?z|
z|Jbxs2<Z`$Hx&UbZA+1^T$IvZIZ8(NQ^Ue{DXL_Zmu#eAp{(6#4oYOEt%>N5w5MuR
z4B+aivvh;--R&&j<!rmmt<S9yWGmNwXZ(@9Wz5c;=JZ<(mw#Gr&{A0w)eN(0mbYJg
zUz!b<kz}m?@zyL>^V<8O;rI34;eOW6M?;D3Hjf-`I4(ccZE1F^p*5UgNsAtcY)>CZ
zUv2`f*JLY;Otu)8uypgf`UpsdMrGA34K%ZDO=WI4541hv<7ABWE(3%nWBtSxL&CoN
zz@=UiqC@p{bvOkA{Z2x;FY^X|W~%4Kg!c?MrKDblCPxa74vxZ$L@!26`_(EwyJY86
zU3&Rv(E$RD!Bc4;?1!V9_6sFD0~1WO#_UACIewb%2Qqvey+!+jt9n@x?Xi~??NrQ4
zZ>vq+#xyPSkj-^;qHMU*m6TPD_-+A*ZxCodd@yM`5I@<GjgM<WBE$K^>p$(lm(p>Q
zO2UMr77;C5BG~HM&1&M^HTQ5h;;eO<2%zW8E%(*!w_c*dPvmnF{#x4pyrvl1FuSUX
zzn%$tK1Ok9>yVtcsy+9hZfBa_`aG%uoM&V7SB(3WsI5w8^-_ef|0o<kqWC8t<xu?j
zn*&_Nhq8baYvl}se2yKs*6QYiDT@jkD>X7kFYqgk43{R$wUJ8NpnoI!%P3()jn=0Q
zANyI3lq#oXMbAw+id>?|u1)wWqrX`Y!%WA%gQ~G^X~vbyS9!csB9p`8PQuFj$!e#<
zH|P&e5Y|#;3Jh9aH2H><Q9JK}ojjT&1c^DyUa=Cw5WB=p(Yb69^TuDVB>sa}+2<76
zBQNOQSaG9wm?f)U|GrnmItV$~HCfn9!(|~pN+$W9fU!H|x(m9C@8GhPfP7%IF715&
z_(!V$MD|C6kG{9RD>iS5w2M2YJP6K3rGK6E{`w_hG^6R@%N1vdN4Ljm0{E7#p6my}
zG$1DwSd$v!zxu+GN5A^?lNlqU(BT%t;NDb7#@6qtCDxk-*{f29epTsZ*?mE}Cz_FN
zTHmhgl|p)Mra@iSztbA8c(a3Us#^bER(a7UoRK}}%yVDYhKh&U?3c2vu`{AXL;oPl
z*U$27#+N1hPY!3GTSYcRR-HN1G14|(`ur0x3FFE_%n;f5&`F2HP03EApkqY{k-K@|
z+ZvLxM-0;u3z?43;I2I`Wkdr_ZD@$G793{S<0CfDHVp6P_CD%pzCM4J3qjpz&3!-#
zw5=DnSs>fxW&a`VZ4Xce6Av5ALqkT-t~W17sgYal9$2pD&p^lSst!=lk9z+E-0ALC
z-q*BrS!>PmC2Ms`c(PU&ycGB7;_REOWejj4FRgA!l-%!Q^u9@otT<3+$H&9#14KVm
z3~QKyO7&ufrB`kdkrxNNj;a(*r`nf=i%nol_a7qHGb2;DL(REdg@fPd!9aGC1#m3u
z{R-WwRH7_^{XU$OR{rX>D;4W}!=Er$tmnic&x)@1g2n{;F2YwYV?0wuy*HfG^u~hY
zq&>~|-cZ~c2G8F+z9MkT2w~8>k=dZLAV35|HU{qxPiL!86>h2&N+$*kIK96vrgkmj
zTuEQcb84xxRK%li8SxVfGd;)T%@U>*(8Le^xEv)jYtbG)>sncm@pDe#T2}HM(k-q>
z?*4Dn+N%944u@g6npFb1g-V@9U#lBEJ*DIVdNC~m=SOoG^$PGF3JqWUNxu15^;iqo
zFp^}p>(1+QhFxe+#8@pX{NP^=V`y#jesLPT6TbY1NP4q(21b;R911^EBj8#YnD+f{
z2l$&618|tW96H{Tu$Q>H=PEi}C@2~0-@Afz?s9gUMDwl@I*9<BS`d%wYHaVv1k2&q
zw<2o;mL?!BvnY*r%cGp=d%L{t+Pq^|k_<AG3Acq^C4KXk7=c~^8<vgW6j=GQRI+Mv
z$X~Othn2OM5(9zoS-s0zL9s4&lZ@<5S%!V7q-g)8Pl9(iXg^bJXx#N&^R)Z7WupwY
z>?pq!fhEZ7kq%(%(==S4X(5yLW2-(*T)Rj=olkhh*SBWFKJ2-$ePB*e=L!u*w+eKy
zQIKe-D4B1L#RP0ttmxVe+N(lJM^0z-+#6my^K}MTX!qlSf-_#7mnrjb%UT{b(ZMI6
zHrF^;a&;jzj-*E#Uk^9FOn6s20?6)*YI-j@7JI3Qv1P9=@oOS8dm}biabXwJ>sLYF
z*~)&O&g_6`@c8pkZi+|tX8P%B23JyTX0p`rp)z_xP)@7ve9DWqBjb5+Ba|<sbtQ~)
zB4Os5B=MbuP1g=TaIK}9yd0uhYV=1h<JT@l(#eq-!8o$Ak>7K3rF-vx>D%uUJ>)0f
z8)Xz^?ar^8Q{R{hcurN~q6KDfR}-_#KS^}j@~W!xrbw|_81!`5KXnJ5$o>4sFqi3k
z`|>Yk#-=SXF=`1r8DL(Z4KF{0720{wn+DnI8Jm1Q>k)>y$NcaVmvM!7>-(*%vig3q
zAL=_XqPKk_7~4xB%p6Ma@p%dNWo68Vh6RWW!OoI7(&^oslZ$d|K2@{e$E$FAom-)N
zay8^`YMH1H{F-E@hPcuB<)l%Yk{^nQN@8o@0nes4J^~RtaYWbtt`Q56b)VK832%<V
zZG*MVak^mb+TI6^fKr6CWg`e|S|-$kMHX~s#ef|4<3i<G%zBb%GvUJJQ5NRt6_2%Z
zTA-J2ODC{P(z%=ahs2g|qfW2$79<!h`-Y%h)C_d{`W#RmHCBxJ&?1rIso^JvNfGmb
zUR1fRS45uWbUl8{P1yaI8^v#sbxQfra<v51;a>0l)!mFXsZ=*AL?qNPDbG;h({-C+
z&oskXC$cINeh+R4i;nQ+;nr+6mvQXTTCDro2nLx3ug#lM65?Vu3-li@aK~G8PG`~3
zq+7pf%FRAhQ<<%R!`H7mjGpH=Z{`w2zT0e}?4ElvLZxq+6*XO8hEMKq2H~35yuz77
zd26nkei0D|-N*Om3!iLXCN6S&37ZtDPQSGgcO2Q!h-y=k{8IhS0(0_FXRqh!GV_&!
zQ)-&$K<@-z!Y-T*Jf#48fG@9e%X;7~X&#LT!D=r#X)LE4=Qi1{d+w~C#TAvro9aDc
zgSg@l#twy|kv|$?#|mp<L!-YmmOgl$D*^VKKhn=Jc!0vIZMHatSwK7;Qf$Z)qYHA~
zt9;#-X3r=Gp{`Lqrz%0Sh6()fZQG)Nt(oYVm7&&>eU@QBo1EVJz?G^_xKYH8-2MpB
zay`W|JFl(nZ%xD@ZNU9Y*SovAX)pb`2#T9wz$G!}d(lvrCxnBlmb#|{>;b1HMS{%g
zRMFj=iH6_sB{SW<$i&e2u*0EDR*LuKwG#QiqYDa2wf<Ca?Z#2t9`Js<NMo#j4ppCI
zemJDM<ayhqk!dLHLxpt(YLc8yGL>vV6mB~8)7Y=+3<E}M{<w@fSe~3#teVw}#wiER
za#o2Eb*<(7!Ox@1AoS72!^Ekh{W$oxuWRi_L3J!`XCWR2yu7yIDJw^9t>1YawA9ya
zQP<e4ngwd@P`017n*~#p+K6&iAI;*)!)pHy4=4|~fXiP}JO1&T^@O5(vKgL?VDaP!
zPO)D?S*vrSYdueDh!-or4N#o{1Afp@Bjb(WH~8ljH9Ghw9{gLq&YO*V7c!C%B(X3H
zC7}OFCq)QJ7zjZC{8i6pUrKLp_RC&->55pVFG6VsD;l9)kIQ<qkkS$z#@Q8>hi_SN
zPBK34eBw>qy+Y-~!}Jk&kJ=SQc5daFnM9C1N_$$_R6gbMcp?0{lL*p(R|Gk01wX}v
zULU@7yM(d!pd6b1<}w6-@(isc@6d|MM}DSnNTX9D>$&>>6|eCh@@MMyTDZ<~I50h-
z?fOQXK~q(G8F<vG?ZIXbsR#P$xiF$8G?Erpao<YvQoluJ@KeDqV^BeGziL@6YHVhE
z9OCp|HU&9lI}1}U!}W~)DjsYn25r&CVS<IEo!v8~R$V(0@>punQ&-7qMjBHWI)Aq4
zsbfT-Eu&R&qz4sFQgsb2snxNQRk8h#I_P(dia6(sU-K{-%3SJU=4&<gFrbl7Qds$u
zz~2!1@vPJfNPEkCc;`9kzh*fi?ke95Ntkio@5kp;M%DDL-O&9yob%_3NXlO4c3=hN
z+r75x*ZuXU$i&n##;0r||L4yoXBk{~I=3Yzv@809&*Tt2`=*E1vjf9FvR0)y5pGdA
z5ioalY8V+KHpi9NH`>>W8g{NNy$z5wEwGbY*}Xn8EC3PJ%~708O{@B%BZK!=Vw2pa
zt8k<<Wb%f|u$E%_PIF|~phM+PwdLa-OEy^7+oBdKD$AP1(F@Pf8E8mX=zvJu#qNSd
zt8yl)pThkELforAoHw(5GqFF6t8Ie5LD-cMQYTo-Bz}v=v6jsHhM0s}=1g3hjQ;O{
zw!J|`sWA$gygMVZKh2XyY9d`+?Z1^4a?bxUgJ&iQ%H@r|1YN5-RBw3wVJeq=j=qnp
z4Vf#oj;-ZgUQRr$6a#FV<}C&Ax0JK@@dO&JDiWM{5P&{a*%fd&1J=&bWd6axR$wZz
zwa3+j&e#vh9VTx+ZDYz)TmT!H>@Hr?8{4YSi0kF4J!AXifi#{2mgu|0*iG)&Aj5Yq
z8n4Pwjd#&qpN<?&P<96UeiGeXj_(orp|Dpuik}=C-Tpgw)V)egn@2a;=I}5^Y8-@O
z3EYI&Kwn>}3G?`T@TJtPP~;K8WT$nzJ_Ru=rGJ?i*<iP1YauxxtH0Y}G?ZL?G}g-#
z)D!8A<wgjPPP%&#@E6C@7NJ<_%eNGsJ;A=MRYhRdM5M1eqYX}F!TLj=M*8NgMDAln
zo1xXuebmWJ%hfbu2t02R%k@C5A32z!Y)F-R{Q0L$tLj|^o8NwI`TDtg_Ti;K8@FOb
z$|j{a%s4U3rvMZMxx~JzE3~#+$UH2(<<(oSPyhLps}1uwuPOKq)sOVkrkY6ZxL~#k
zp@bRO&Tz{o30k^+nejF_3_^AKJ5xGB_WDV*u^7?OuZb+paGD{3l(sjc&E`P<As(He
zU6_T3MXU6%ys}LOC(8$v){jr#d88WxBDd<SnUUuTJFjEehYwPOSBzsohn~-7P_!QD
zZ#p;iOBr|A^kHISMUxcB=5&ze%53+I4qL=zeogqSSj&+0SAOr4d6~`w>Yj+Z{g<E}
zWZ$-=bLQ4>ywCUaZ3v!SzbtQ*vFz=Gv$d<b=r?<g&@yH2R4NuxZGfrb&3>4Y?IHF#
zh8vA<sQ=dQw~$9tXMdaSN6wq(pdA7r79XGKJvhERJ7KZVq9^#ymOZ7RA3s3V41biD
z@#icYKO{j8TC)w=ePn-M<=OGYlMy~&6(rl698Je07WUm@d~ybtr(KbHs#r3M=4*F9
zS_-H99w64<*&<9FTR-MEm9^%CusN3^OhpaXAE)2wQnA1~iU=c;+j_0^rA53zI<Pku
z-gQ;CScL+@Q&66mMIp{Q12vSOVON-^xz8ih_idy()nExgW$$D~NcC$1t|u#U%++@H
zsVH^VS?AX0BNGl@wH#q-046KMgt=R2Dqa)o`f$$xlLarA>^6(|$hqxekWiWo6y#Q>
zl5oQtnn!!+RG=|FF~`|JzG9H84zvU(A<lG_NvgIqUo_i1OBolLB<+AEJxT+;x^^aw
zK=gYe&^{uG6QzTEN!o7w`Iy+mK<?$Cy)BztrydKNh0eYZ{NnrDI#A<(A>pe4DtV&I
zy3%>Tg}hz{>5saZg%19-HBqNe%gtREEl)y}Y<&Bh%j<fj$TWvHz`X2-CtWAqE|alg
znu4A-(d`P*G~p3d>_k07Yj;HFt{{m{m0u?o*4q2ERN-~ODSP?d)}P>wh^V3qDJsGB
z%iwA)OI#LmWAPtXYQU|0=g0!TDbG9R(Pd(<iuFMBC~^G;+d+M~<K(;%_iSsmiAq#V
z61l`h#;a`mXn4IB>klAvIb?p4Qi<$fy81X|vgdf~?sf=hO%=z>0hSt5&9epYsJ=AB
zTc_G!)*dn3!ag(4QKTs0nM=G&<Pa~)2T@HJU*Td*V(ohIX@`ET;82IG9^$?jYql(Z
zWdTaet12<HyJF5k0IG1z`pgn3{G2FxxWRI-ca~PM7M8aA3iCZ<@RhD@l*qbr1CR+9
z9{Xb_?Kt{$W<R<y9Ew!UOK(3Lu=&I<DD45m?B<%ul2a64<>C-Z;+J6^G7si4%PGP{
zeR0&kCF~b$0ZOlu;%zHvY#K&=l(8yc;ll1K@I%QY_9*wJJW}+EHm5BCKU=yV-XT@x
zwQk*9E^bSRBp0AEJ96}-`pD+~zs8Tsl8xZ9G9WA#kn>hyIdgNhRgj*~wd5Uc)Hbo4
z%2rxgOY5yi%!n$C^oUf^GfU};*p>+ptnivF=+Y#%^j?xzmzg25=Xtb|;a7`0*6{d_
zj!CERI8B%FNTCZN@W~njM168E=wq(^<KheQWp4BqMBQ9$aAr<U<%h$Bv?QmEs|)8+
zHpj=%X9Go+LKovI&VuI4Biy&e=B5>*N~N;Tmx~_%>A2vS4TzDdV}Gb+G#t#QWG+7S
zvF+tnPXol?-|5HFRpaBnvSi-7#aD|X)TCnfGceCXH{RV)xL3hk5~F_U1uau<;SiEj
z6)XW}JP;Y)n#=78pQXd?Y)xPA=IODPPwJ_vbb9H|n^bed0XKYeXp?4+;Cq5A)?YTj
z(}qYX_5LaNw&zUyE0!q2Zk>@?imE4tY`<*v80z9&9oFnXY~#EF*JZ|o`?@GR0m`iu
z+Sgo3ns})88K7V-N$(ZXfFR8aGP=C?OrirqhRqP}aBxQ0JD(*5|I9#6OdKr$*Ijxf
z#<A-qWLej86^=j+PFJkOicxSKyK@OMU&C`|gY$h~J5AD>Cvj%YRpLxg-PF@fI-<0F
zq$lTw>-v9Vnl<IbPu>Ah3r{i83|y<4Sj2|rBJ`iQyu!kbu0Qc;IC*p8iEDg-mx5TB
zCmuCP5%`!;Ep|cCq5|H=wSwe<W7rqZFFRr7a$L-UId5M8$40Y}`PL(%;D3f{%QWyk
zOY0~|z!*NHdp3aU`5RQ!2>Vba{>m9zj`z%9Q9w;eo6vI^uc(EyqTpman7N+otVye=
zPu;?>FqHHmFybleeHrcLCYKjQkwDv1N7#~o8#mWF1Az5Bz_k({FNc(bvoZ%gn@CS;
znSH~UTfng|nvqqgS0`n%(3cMBCytrXH_=gLaRaSQsQl{hzpjAUxU@uj(%jaS@v?bv
zM?X*(Z28JnYx)M5Iu-+C9L$bcFow-h7YGN=V_>wSq&mpYn^oT$?u0+h6%$}yIV?|P
zrMA*mzlLm=C9c{M*-_hMWkIv=4WH0=e~W(q?NiBq>QcU4t$q3fs1hu1YuKS>^g*e-
zZ|qTE@;zWAmvh_FzqPp?U&~v~)t;{eLrOBi?FHurd$0?Uv;(C}=inBNyzKqD!y3n&
zfDOcGu0Z1YnLL|(x#{qj){vF!;p=!Ny6zY9)NsS|nO7rP1v;?F{U5CT>9UJ!{h{7t
zm%QwXV~BSG&RjJb+<<CA8H}-rQJrrFI$25b&2<%xg_{btBqp!#gw@)`Y@vIG7(htc
zvTH+$bygleQM5saVVlQAW8&z$*G3?UC-WF|-zCpGreoKdPaZMTD!*<f;ZAY3giv-@
zHRSH76gp-@ik@{MeaF5N^s(#YI$7mAeN^49BP*p9sLE-<<kiQfiQM}Kjso6eA0T0$
zd=5jvZ+R1I?61f#9G$r^&$-(@VW+%2rAHhHdlyBEE;qN8HnHFTC6RblLmyt@CaGFx
zjlCMw&|Z*O{ZZH5D)&Z23Kp@FdVOp+<jH(A97|Vm59=X;^}RmNmxfvJszZ~D)JMxB
z^!|Rbh|4j4U=E@+SJ}o#;r1~9MDJzJU8#5$KX#?jr!wKgs!}&mm}NJTz4IwYHAUE2
za79BlMY`1V&_PIkQxrhY(pQMQdwT211(o}FS$j}LVGY}J#M;{7sROskMz{6}F0qQh
z<t+h4ca3PD1X(1kx$ZD$DZ~}`AVstedR1}n<n8O%%v92zm-Lq2>_x<u0R-p90c(V{
z<02zGT+PRvMsB%EYqT(UJwQ0)6;=|igq0R?YI8$X?0;WN<tZNevo00Mphq<|r2}Km
zY2cERXD&8``|^7ON6gBbq?m4ALizQDl&b_d>Z)bT`)1LQcdqUnGT4vZXJPZfuV(JE
zw#GTKo5dI^3~AT+yq9Q)q(zs&H61nYZhtbF?0dfS3kJ9*#^3g5%OFqPwlU4F01;9d
ziMl_~$>CnEg#WG#t|O_q<~-0~DzXlf6~``>KC#~rQQuE)WvFc)KPrAnz0|vD?A?Uj
z_LqolD@`17;m$Be5f2Bp5lz-EDlc_<7zBdfOhtH^`mygl2v^ZSRE15$rbi*<Pl<U}
zgR~lb@|@&?AA@EwINqxUK5FfPjN)B2l%&tS@QBbIP-n$asYG^(H(<vM+uEBV6e9)u
zBV%*dq~&3U6suj4ZKgRE*hT}h9KyktSL}ECvS3vH&=+@YxM@8D_LkM5r#Ru;atH0$
z0K78zF8R^a0pQa~t~`@(112gmd+A$KF;iHcm{Z0%S-g$M6y9gm=2%Z3zq!eZ(+K=Y
z+s8Fg6r_Cd;E)$@0CQ3M^CcmBX}s(0&6-8b$i^Sm;w^@Ltr1jCUTTr_wX?(HXD&{%
z!a-HLxuS>q5s7s^B=5FTLO?*w=ToH|&)iI;lmeTwX+yFgK^9Lctx9t&H2;rHn2)68
zsCf<6QP!1!xyD7=Hdw<w=q!GF$s0=Jik1S5yK~*ylXUERx@24r&994A**NyizEF0<
zr?nvxHT=jjKDwY?FIN2@7jmh^{siLV>S~b60uXB6IuPS#R5V9X56>J^7?dOk)L9Tj
z>Mjc5X~GxEg7>lg10X)KO?+q$LNVGFO|%(1(&2)`J6nQFq<vkbUBfaR^-tvOe5xq{
zPOOw~?X6$Bxavn_)&?}xYrDO_I1`@uh1@<;*w%8D!^<O+&o3+oPcP$LjWYr47w#cm
z7E#h4dAK)xD)Ru_G^SV+eGAz{^-Ck28Cb5EOwsFHT*p_*)pHrQp-7X<rxeffi%dWc
zW;Bes!eu<R&w#@A`EmW&r<TvhsN=r@YnKo??f`StTNok^y0v73cBze(;%I?NQ4138
zv)TSCr&9j8!X5|6EM<w`oNTFW&q#b%c6;S|tqZwVAuyzV_-oOU^4hJ53D|#7v|jwk
z*y1JlA|!3CMujis!TpEr?Gfu9P!Q=np$n;3Ui;itKWg28yN*7?In|sY`n#OgmRXr}
z$2otR(d+A717iYdi?`(^O%pyJ*@HEBH{*{=>#N9T;AS;Tqrr-acnC?XtxPQEN9lfF
zrePbknld-E?+Ik`tFNcC(+`;m*1jDx=uKPrtu|)eiq=C$CTTy6K8Ze;bF@E|rhb#V
zZn1h`^-Q29rBY;Y^3+~WC=J3|?bi)?g%ON(hE|zn5YWrfkRc`S(IDn`Xn&+}+w-Lj
zvHQ5a{a#*s*cl<iq3FE6YG#a<KH7riQW4wi-Y8T8NlU0<VuuQma);W&WbTc=tN1f6
zI5d;1phy>%>pm?tRqlv!YZ^S?TDhPiQLeVS`U=Xf^37IXanuNC8iT9>bBANV?I{jD
zO?B)^T`uHaaCk$P%xeV+B=Jbo^3PnmIk#bZZUb_Jj$7P3aLrI&dS@hblVBgxW-=#M
z-2H4KvwluCd_}2ur!Pv$t%X(g6;-Rl!)0LpjUplw>54Ttr^0*q`rQ>HAmGhhl{VBw
zw?rQN%KN>h>a})3HxT$wBV<iJX(D?U9$44<t>>IO&Fr<f>6TNC|DWt$|1p8a%yj;c
z9@+j(44_I3Ydsjg5uaHiY`hr#i4QhOed`Bg)x^*$ZIOEk8`3cBOr*x?4?V-v(#w*!
z<ew!aybvd^ZX|VKa(fhh-8QMaGFb)A>a#GgfY_o%w8U~NR3^GA&_vfVOxQ?ED0()+
z+mCUE=O{<4%qZ;pD4!DA0c!FHX)?~gb}`TAzfW!Z-`DOR`dc6KE%cR%iNK|8ssdBx
zMz&KnS91cvdC2v)0^Bu|j4J2eR1tP9#7$?zhQygmtxBnaLB(I@!y}LJXRCs1yB=9_
znHqMuEMYw>SEeXaUf3onadqjJ&>`Ls#ZdM>W9Kj8_^A5i>~f<-k6q!z=7+~h_6<Ba
zIY`2hWIg~?Rwm+!=H9HK9pT|xI*kXgd@&3@sSaQwyU_J*t7D=@2lPXAcnSSwnSt*I
zTfQD1v{Y^AKqgH+I+HPhK5jEL7XjGoN~^23uu-UB?hd`d+CUkigq9fppT8)?rS84=
zV|8q4uRL7{UCaogG`^6wsz%-LnRSbJ*36h<y>Iw65kUNR&8o@~v!tKc^Nrbp2HF}3
zks~Cp%38O|{@INMt>EX~g5qq)vk`mSN28^`BkASuGcPm`yc*5o|84c~+tjgj#A5wB
zGbv@&P88@H2p3<bF-)EA?ds<z?KnUfpM>A|WC+d6&zQoxk%AHWb)Dl_yD3`|-B-VE
zzHACxX5iOq7qKC~Kbl4vlw&tNwEbiVA}$1-F`bTU-igYag{?!&JdkF8-s9jkQMK3k
z=9zetiRZ=YKxh1HUJKZ+?a_#>PH>~2oqmfWGOgsgfYNYA#F)87&ik}qnV{sAKT7ny
zMTq65*vtgH=}VY&j&-Xq8t*M_S}~zszbAg||IXEEK(h7J#_!RV;%@TE+!HtRI**up
zZ@-1d=hpiXfe~oH@w$6$<;>|bPY1{Og36XF`M(sd$q(~8xNOHTpj2ir+GEcbqkbrY
zB+8GEuAP9@mxnEc2u#?Eeg6D%@uAMj)7wOUp{ePR0*AdR8}zb{0HvbF)^W@1Z}(G<
z%xk$;_U-&@>fwKe*c;c5jLF$mJn8Rhk+~`6#zLv0Ls&POb-@BVyVLJp#Ry_n`9<-d
zqLGh&w*dq%3ppiLLoc}!k%TC0(_*+uR4FHCJI1Jpj+Zhp8=GFGJC*#Ud%TBQ7-N6H
zzI+t0t(2Ka*kG;qpgi4V#oa4yUpS`m$0u-P5l`>(zn4Ea;Ggf~23E=u%fnyNcCcLg
z6^)}`eFE3G>}|^zQE)TDS{lcZAW*i}=nkARU$R(mdj2D<xvC8E(JRp|i)386$Iw=>
z#n*~S20~_cDNe{RDiP$x5VL$_5{RpaQdpxVu6@kYARUA;WQ}UN7^B5>ZN0PcO*<E7
zf(beO11rnF{jddk5B>WnWX~Sh43!82Ym!{=ID96#O3f0$&0ik=6mVtGlM7b=X(kM=
zUevOAzV;w8sBT#OCNAlB?56ublP(PH^>Gs=g;{3(6aY+)9Q%=?Uem0-k*b64Pdjhi
z_~NF-gyd`z3$DJn0e~6%Y2YW}KRF2kyWdsno!*gNt9bMWgvbPyGu7E^I_p(`nDu-U
zsb-Ynz?R*Fo!c07!sAbjaV&PkSO2A^qD)z5LrRJiNMjVO5sIj{lC}#m=hb|LXnjRp
z+W*0uXECdRnFP!G##9Cv=!bY&QhV3Bq;Cg|mUp5>W-<f4HopaWxxM>gOdosX*Vt28
zckSVm(|VB5M{h6Sv_|`dK<3PJE8&xYD{Fj}gOnSCYB}Tp)isk}|ME|(O$nJ>wi=!k
zYjA()FAKPO%~0^xmCq?fwrwQU$lS5OxSA4u+${DHY@6rvCI7lW<ighQ?{;~5h4e>H
zKk|zFjN=R;MNb34yf|JI%IN}$vu2hq1wlU8KO*em6%%<m#E$?(miSn%9ywddDx23$
zYq+8o56-_b5Ur(zgCnaWEwx@S&b+iEZH@zeqDIuz;%Z#t4FVP!9v?f#+cGjf>bx>r
z=ZO3Nf#~zEg*cdJ5K+)CW7?i$ADLBQ#>G3C6#lF_maG&ZZ)%;UD)tc9>km-&1Yr@e
z()u-eyw*4|oVzb*`jSvZ`9eqXDK2Qk45|4Wit8<oi<iz+@A6Kc@zXmqa=^?T6OnI<
z0`?L^%!z7te=C;aMbRn}iETqN=^d%tVnTUt4B;Ne4zg<G9{U>Lk7w;(ZXENiD3ih?
zG$Ig|S;Z-{YL~yUJDObfW1I3qsB7F%0Y}-ax4OhR9&bEkiL2p%7e8}8?vdmA39bH{
z^Ax9itkx!W4&Sn~m3$G37|V`i=eaW$DjJ7H+rUc!+iQ>eM$_ZYuDH&hFxuvqp1+$g
z64XpIv2Vsv)LI7{6r77)l{NWfP2gn;vM)-99XT(x6HcRf;I5-N<6zCY=|vr&HO38m
zw@2oghE<7UGeO!mc9a%>6w>snHReRbj)HT8aexjOZObaMH5dg4XH~b>G7r1|st9_$
zL5@vgI1Ijr`IC|v=w(GO7vkj3bvaYLw=>@5vZU(QW)fE=Z3V@%Sv)sGN7XJ-&iS4p
zX;!T(CDJ<~{at-?8cd#3`rB@e9XA*k3WlBp)J+%IjAc`f#5RmlsOsYSUtPu*Lc8&c
zFEMk2$5UnrogN=8d<lVz?sT-M9p&!G1<dUo`s4*noifmt5kUAZq_m{BG|8Izv6HdE
z-%K1dL4X4`f4eSD$lVzsA_p!2wx5L7AvM@H0ei?2ueMuHlf0Hb@C{9`PRgFs6~*LV
zhQHu_lgW|i-;gd<Ex!92t}+B?F>^qA`Zpw`hIXyw!a-@!wyKqf3)*A0TdqfAMb=XP
zVa%t66^Ll17Cj;iAgac+)dFNRCc0i%BuzAJ4EM$jc$5V9T*77k`-$EY?ELR~=qnE~
zhgjhS)yVq_l4@n%6Qgqt4}KzDW>i6Y$rC&|N2zb|`zV_?T*kM6S|5BwTwU)YV}v%Y
zF3E$x*a|^57CzQ)Yysl)(%0)ZN#@u|3IMmxJE}~bUMRj6ar%kxML{)lzx+HX?Wq4r
z8O$i@MO((fzhw?M9<ZE{-Xlg{f5VBG-C6D@X%UGtBi5~_K|TKRSa}V;8SX`|zEmsv
zm2X^Eev&5>fxjlg|ARF3Y7@Y?fiN%h`mbNXAzBym$2WZFQB|#(3^H2mWtSARa79A?
z_?OPx6YlrxbU`UIL$*AjjB)CFDNo;~E250|dDri|Lg~AY6MN~!@RsR_eAmj6#h20a
z=CtGdc`BU||BMtw#hm(JzO%d3Sznvyq7vu1vNn_<4ts0LCH7~1;#+~HM;DP!Y!X*0
zK;Sd>VZgQaGO9Y>bkefIZfaU&@scvd2Jp(W9`LdUk7UShM0_XO<@4HaoQthaS4^9|
zXYYd&P`0bx!>U|dS0nCMb~fjhqxqq~6E_K8a_D~r9e=NrXQmWfQYpIzs3{$-+EbGQ
zjVJGLVEvTz#-SO>!+OALC^G=3wDU_YZ}5kL<qMB2`W<G99sSi=6^RHA72%HmcjsNJ
zLa$6YlsdAX^nXt(T9IB?nyDUo5Vg;8St&<nF#^1szkA3W{s91@Ohi<g4zu!xi&3|5
zFsbJmu8gUN@^y25E<7dnqw(^g5A<wWihi9Nym#WI+fbxkfih!9@~W}CX0wU4S1;Qw
z-u6*^=&SPT8JAh#+Nq}Whbh&o7r~<f*%JlxxXme+>`?>k4{JWsCGYeJOylT22JKZw
zde(N2yktMBDCs3FsQN^SIRC(2zgpw@(nTQ?HmcryoYi?CNcA4;OQPpP76qDU^OW-D
z1hClpjA+uy_>jO*M%CHJZKfFdc*0QAJT)zVAUefl0+Z%ArpN9S@A~BO{5tP$pk;ox
zeVt=bHWqN=7j$}+@3igZ`LMpJxF$nHPw&Q8DFq`wW<|nqlEyO#eV}r}He^4lXm*Bj
z@v<OtA`nm-eUF}h)27irSS!u{<kNbH{$bumMA}{4;XI#(k#k}=>r_0ZD`4WFKEPks
zkqa_hsPE5u#JD=@A+w&8s!;KY#u5BShLs2~E<gRgVNcCh?A*IX`}2{|tp-Zk>2(Yi
zZdWn%B)Mw6^Xkd>nR$1em*@u4JPEyKqv7M2jC)2p3*YS;XKO!*DCzz_p8fEs&w@gy
zT~$I9SMxBVzXveW+nrgs8<D`8E0*lZd0=8as>aFD$<h8OeqZ6*Z*?;@bGzA@pcaBE
zq7L&Tc$ll~WvJKw#6ZE$J-VVctOUN1ZwA{Sh=$sA7!4+iW+Z0KJu+&%UA7Y72?6Op
z{`OYqdWvdO-s`%#Ih1cXNt&z5^+>>6gD@>hj(+wby64y@-zMnu${7>}sB;&;MSXjU
zELnY=m+SE@WG4SgpM^!6_Sijx?S_G4$>})`T=n&C?AD`iuK<52cF$o89%2~K>njmD
zMC-xYM;9`fJmE`UC>W#3Kon@ed|N@)1n%3cMer7KT--9N+3>3_d0v8gtqa^geVrVV
z)N#JbiWJh4_LtvCxxn`w7j9`1+O--ZwDy$UReVhyyoOSWJ%^_UpYMX)?V>=Mj4^fP
z=$}tF<AA2IUjT<;3*M-d`xjdHfYko&|8|XQr@xi21|{+cbp2Azd#9k7Gd@DO%08Ub
z7Of0gy3_4*>Yc?hbfWZ)s74@g>UnZm3t04eHGgHYb(-W<#1EqBvvOo89npvb7TkLx
z^feb1gy|kk1qa)JM*UP0b{czd{u=ubfJrg#WGE=IL5KT;iAPAPMEu8kQFy>*5))P3
zO0T{8iP@ssVn6j@)7;tV(><ftZ$<72$!pj`#BpWvGE(5QvSXHGhR3(f`~y%frQ^IK
zHY8A!YgrFNDexrnM9eLzrMEr?0j&DtQ#*97fH}CKR*h_nV_{`iMEp&gyf%HDe*9Wu
zCT~imBtKw_8&{Vn1shFqV<uqXYQqp2O%=a5Q@sWN1wLEpEIb3}rn$5IKlL>|tsTkM
z=2D!(Lv4)^2k%8dz2`%nk2xydV?4ac6$p3eVscdZxuwP%k%!g*A5T5T@!eEavXA$}
zsjr=3tiu=}qPhS3UdY^DjKY*mX+E~qe2GUp*6``)BIqBNSEQo-AHeBj7dfz#FL5US
z9(X`w%G};`GExSRYU3H+F0kVo#_*2Y3^;QLnYFB3N8JVt^jOXo+)A4`e(Nfu{brN*
zdlCN8Z^ppc{kbDY)g_x~WdrWd^a8&pT7PocJA4q$+0-tcq7v!zY5wfvKn~0*bft&%
z69OaHpGzm6Xj9+o(;B-HE{$d)m=SC0%Y8>mXV(b;RC8p_sLsEz1WM@g>7^#o0Hqa@
zQeLxtIBAi#foI!Qa7Iq8--b;TC~)eytZ4nrvxRh&LIOlrTIHI}n?rh#4zquS7VXVy
z><a0}E_5|{Ws@K@4J@nZ7P^v@5z??6zH|*N-${l9=*NJf+;XZ9>XgN?F!o5l<xY;P
zCFAkbeXlU9z<&Qvs;ZL(os&`^^eHI~S>rzx;2Liw{;Ot0hm70U-KC4HzkXkv+@bJ@
z%_l7XCyA1AC!o2M!%js5n5~7r6M9|shk(d=_-mBsU;)-J5^i6)nz9_%{EU})Z)6w!
zz)6GzHyFL}Z`E%4E6koS`fx&j$1(2(_3X@Uj+)|#jM4vSfH#f8Bb^rZU3a=a=~$C<
zbk-UhYorb|JQhVraV<ahIL0YV!Us#!Cfmb7iy}{`#s>GJHI8|tR_=GegS;t=vO*bK
zke6bf@Ev`}Scy2pfY9I~gT3DEcy@CKkb|@3@%fF9gM*vZvw3f2CJMH6OCy(q%B&l6
zVz;+P<(to#%-8iQ-t0fPmg6o<gyYl@ql0+Kw)}rO60-`Q{64oLtiyGNv$AY=w47s!
zUv{y1;|vl`lWc3=pY}Tbbm5ZHGis@Xux*`o^k$XC$FlfEZHkgTKD>7Nty&zlrLo?0
zOn-kl6mC}_HnUg$U@|K8BybfN=+E^FRMli3sFC8$`#*-0Qv0xyW|voHmb0ooyXP2n
zzaA&Hx)$qWp*)PbTpAk2eO75X(6BfDky%^I6c+zV+&iM9JBwTZsIo^fBVBnL`Z(r^
zCf8J!aAw_Bh3@{dO^E~VP>ZVPUmbWk5C9gq%AkK<c+VcADmgQ5M<%E7L-eDcJ^0->
zI?gYStz$3x2<IMYOPc7(Nu57?mh1rv-xDR@k?(EmZ<FpW_%(W3XhoIYw~Vk9TB)#g
z6nb%mkS5fHhS4vtxc;txC_qpwFB$<Jy>{N<vf7gg`T^|ZrW@AwMS;?a3oybUHzGx%
z>Ft(U5A9EnCw$B5PJm&QI#~Mhnp^)(y}gmX(*JRFdDe0xa!4XVxy3$a94LCWXZ?R{
zMPrjo?$+NIHL8*#2;>R)4}c<lPYC{@!QZH-exyWoAq>2!YJWVA7*?^Bg+n^$uAH1~
zYBuG;(;j~NQP_1G>X=!GTdGfivYMyN3ACvz23dYdHF~=h=mQ<(q{RaG8>bOCY#Qkj
z_BA*z!+APM(jdWKPOT2oWnV>zlB0!aufIF%VE5wG$$@*R&aSaC0#kL34Fr1D3lB}d
zXEG%=S(Y!_7FPl)Gvb`EUfyr8198?d`cjIavG<Ws8K=aM1`Bx+hR`nrH1lYw;G$yO
zGN5o}^EWv|?}0fS-ejchb2|3ZD`HnlPw0kxh;I}i=nH3kBOYq&R~Fi{86uce5?ni+
zy=H<)>hhj}V`2TIxxrO)qs-*B>9WrBZQfaYy~fdUueG;6t*IV;1ks|nxv~Is-6Yrd
z?vG85A-;jCpa!#0sO>1E)TgKm^3=EZE%H&nc?qtUiYAgzkPZRiy_b*s7P~E1daS5;
z=2BCd&0ETTNZDH*=m>a*MOwJmu~;%v*0l!FF_mpL#yjJHJ&xY<lrI<6=yzYhVRPyW
z8M_@5Cz<I+*sx;{so6AR)FLl?G%h|>|8HOwnM}yF;&XFw=$|W@6auz$<?hA2e;-by
zY&taj+*8IPk^1RT0|(8bt7lX0-gLPk#1_t!0&Q3nx!KQ*)Du$RJNXEdS)e|wobo~M
zMu+vAvv2;0D@r-Xb;dn0^9_sp@%DWMI;8E~sTf<{ugBHaK`m`7KPTu>OxW!k&z_ur
z!+lw_=vjqRN^VlYPIXbrWdV0UkT<|2AC@IGIw>tm$Y#7|KfbAZ5^D9LVV+atSvjV#
zV-^48iTUE+Bi1<Ih~3tDf(Uv=HP^|#LedPTpUm0y68QIW;dya=$j)VIpo(VES3Rj8
zyPgt$GkA|Xq*||a57Vx{<~O5-+pa1P?}C?Gs@KOYr3j@S6$mpekDBXIH`@ju-@HuP
zv^o6n`3Ou@%91wpkCU1ZA1@Sth=qX_`$I61O(KvjrFvl8+nBxI=anY+bL&3q%yfP4
z-pYJ1`F!&3$(VXb<eD~SbDfx+82;o^yl?1Lfy?mn)zvqe2@;+mu;?ZdV5W$nDTK<n
zWMq=e$|q{Rd{?OVPO=-IRl0kVwaS!(<3;PAvWhhVeQKHr-|ep@iMG~u-7>{xvEdAQ
z=7`)N3?oQ{;z<1be;~QJdHu1PZhI1;@A*DwhJIacsJAC+Aj#F>5Vc|>1T;l;^ZLzZ
z_vzEzW{-CMiEiL}Ji5G=!6im;@easO>))VVK^UU2k3Q1<=IF8NEGjWH`#7s-R6xnD
zbn!0cc%OgW6Sc#=xg(0Z#)ATcz{s@sBBKduMDsU*Aa%2<R^0_KFo1MshY=b6g0~@k
z%BxDxxb3l%{y1sb^~%WdJ;C#n;y}0AJy*asQnTDrIj_^cE*~LjC%>A%9i<*VDsW`9
z6uYO(Evjh^5#Px9<9domS6X%YvG+_Wv4$!D*xFd<q~v%pEylWlgYQnL?f0cij-M}B
zJ%8?`THc7QD%_H^cgt=lcQ#35L2jt4`N7*Ha|=&AoQys8IB{dFbN&VRu8NT!{>9dr
zfbR1`tMv&Y@I%HX?Nf<!c+^LC43spqm6<EJc2=u4(&?S}xaZ+TGI&2Zg7K!zEl1T;
zZgq6`j6DC^{^4M2Teb7ReE^Ng8+VhZ<f?92sZ^)>%(3{EpE8@(+xSPWhcE8iPmb@l
z2Y^JXPche(i=$%A+~a({@5e|<{Lbi#6O^|p($l-WYK0KWOpqGie};qKL2XpG{k(8L
zdA0AQ`6Mv+mE&G|`==Jugh$TGmXBa1UJEig?r^xd?da`}_xr+Yfp3%S%cOta(ZAd#
zf9-mA_gLRt(lIPsyTT@9WlVd>z$m_Y`|~oZW83PE(2LB5K8V2sjzj;Xbe$*Lhw7L%
z%)nIKgw~e^<mh)csi`l9j!EzIu@c>3n;rdFyS(1@b7wuPY><T6%?v5brgg!?Ho?rV
z0*I^3hRq(^nSK~mEtiFlghs`HIM3g;b50SAx|T*QIW~c1V+!H5by-~p!d8$pHNav9
z#B#N10(CHTJFwDksn^RFHB{Ew9O0T1aKM5!UL3Leo7+<)H{7>#Ua#N#Zjadc&T8cV
zj~cy%yTgW1si?*X&0v$>P<~P4zUrTfQV5EP`N8ApQ>Sjfe1|xIMw;qDio-WD+I3En
zG)=6lsCBiCrp&~5(mpTKj~#m`kfA(j6<B*V3sqh5+v3~6UGW?Qb2S_(N6zR8^7Eqm
zKQ$66*a=#pJ<-=Ks0Y!~d>c!&b5R1S@pbcBS%rL#0z&^5f7qqajD<zYUQx&ImP*bv
z7^{Jw#mO$Wr0DbKUM~A~L>!!8;IC#Mza!KCI4v$7&j=%%`@vGCf<?;~QKXaN*e7wx
z_a@UTwRK4v=F!ZhG;!Upo$+-EwXgq)RNOIG*@vwj$J$>k%edqcu%v^(=aPI>{Nc2*
zsZ%c{XiYfe?<Ur+SlK}*{n8aEp`FFW|L@o0?#~XLw9FW?tL*x#MvdoKFeU9NxGS@I
zOeiyML17j>(6`{9?AQmD`AR$1ZYM(ddM(t4XMRi(cVy)3wvb*Z5#&I6X_S{<{;#Ew
z;KrRQ)weTz^BilRUrg=+M*7FW;^|mp#chxO_r^g0`Qb4Slhgk#&{`N*pav0OuWU@?
z{PJuF?ZJ})-+w0D8;L#_W6Jk)$#u~oDM0XAeNka3Qxs(e{{Hx8Rz}OSgb#5*j^p`k
zCS>}<zbCIiO@cu&*DIgS+T&6}K`ZqcO_4z2{m$2uyb$}2Ytnyx-X%GljPCGHk*iEh
z(vx^3NLX{Z4lPv@L*ezYb_#$YC&r?E8Sh=ADQ$A#6efI|OS(Yu+?&`i<V<k6zDm%y
zr7!YZ|0xar${~G%yvkPE+WoH!Q-9iN3UZ`};h}t1D5FB<uIZlwZSHMM?um*86Lf$;
zSh-P$BKHT8A}jfTYYjTEW<=;olK=WEnqA7+m88gYorJlod)A*;&7nHzSd8aj>bxpC
zxbkehnZA2(U0LC?oc43k(I=$8&${FwajNFkX2Mhqybr#GyVNym(+0d5%0O(neSWAD
zM-=!s-+_J)KQRgK-1imm>?foGVD5|tuP*-vm$u9(CxJ^BU*e`F@Wt!f;i`+1$vOJ|
zFYGhcCu5}5!y4Wq%iKCwQ$te7<K+iG?u(oQj@+)@|Ei^_n3h5^A?P^BF%k`#+T<#=
z(!WX1eA9_eUc@LS$kcCqkAW}Z7ECGrr_FdQEvy(on*~&^pHE+v0UnJ*i@EK!)vvle
zY?{}92h&`=4~<s)rY~$CZcg0WBZa>uhn)Hr)C(9aas3>JQ9m_u_O17uocDA`EPI~>
zznoMtB<>V)LOWe?N}z?=7V?)lKoXbBQw$;X*$uRx$Zx`p443Y&i%41Rg#zf~ytDyc
zX|8{sj~BtqKPlW2x6zL9gxj%hv3xzN1K*r`zrd9*G--%-m_SIm#f^6FUe;BcJ_ek^
zO`2d<b2I_vT@h3-BDLMby-&$=_%=eXvhznth!4nmKmkMj9DwQ_DTQn4{?fZGF)H)7
z4y_9tiw<FL4y*>U*Q+eB7s*qOcuu}(`ReUx!9B30iHm-W5bp+lIg+J4aOjDZ0^Gzh
zh4>$A9g9DAM&Tl;GVrkec{BNCH+ZEW$0iH&g!bpRK^%`+xwMZG)I)|?iD7TYaU$nx
zx^w~qWkT`N-iFxg^G*VPS`(1*@Y!Z-Z*_LuVI%Cd`rp4^NKC7yUA6f2IECMb5w)F`
zRHfEETL5(cIm=}hgp*k<=N0z`_*(Jk<?aoo@}iN&#xh;Om_pWzjOyRV7eCysclewq
ze-%|UX4NSwu;^|2C+V^CuPl|{bH_}8cf{m_lPu3&e(kP|N9iyP;)oL!gMS=^L|?8D
z0#qCmpI!V-v?euP@p*f+Tqft5K|-R*_n{E7?6kOCt+7sgKxN1?HvBSbs9H}*ka96-
zy@!#ij?$0Vw;Wh|=@av1xzEJC;hvdabt-%R|FHKKU~w($q9E}d2qA*&POxAhxCKZ;
zkl^l;1aI7fHX$K|U?Es=w{E;?92$bVHBJM;t#P`6rr|BJ_c{06eeQYl?wvdH&6}C}
zK3LtgdR5h``lagExXHx_jb-jri6<*v&VejBY%_Rf0-RVy{b6|nc9r3}T!_&IRer&N
zS=f^<siK390;<BJ+5R;ONiTH{udAsE%6<e85tZW`#h^8eSJ-D|^@GnTh~oM;sgYw(
zp|T9P>X~hrAM2K`K|LmBYxGPinUL_Nn(Av+9V+D0c6}NWNZmWwUL{)FNHXpUU7H{$
zTk+`Kb4QVyt^vTEGn&sP)CKVIcBfyZSzPcYfRr}K$UJ$-^*sDdAv@|U^7esuuyYcD
zrpD9*G+)<QSTZ0<s!qn*$xL|9%1-V8jGO;3N|a`dI40X1V!x|X6)AY5dMLZ^_JU90
z+PROLSpSDGG~IfQami4t%*ZC&KoAX)77FJ<b(~|eX%%*hrwg+rrlsmTF6UM^+~5F@
zr8Xb_bl0ivco@n#te%U%)_s^Oi^!ZUpkJTU7#>)@rmb(((C#AYdGwXt-5%M7HV3W3
zleT_u_`t3Ue{PO`&{j%437-`ORAENtdNiS)i8zCx1)~q|+?4nl`9IWs;u#@-JZ7U!
z9iR1xk<Oi@oNu^lh{OcR&ETthKJ5nzK>H9r6L6(38a0lv{_Odf{#^7(*ChtSa9hn*
z@#B8$)rF_F5Vny9siK-^VK(S1=Iqdoft`|_t%aOS>BA+l&?N^QJ)4h1-ySaJK06kO
z%b(_oVsIsZtgXHoiQZDvQwsSMNWJ3oEba2<tYtPu5RE1b%V;;Pn}+Z81uxuWsAa{A
z`p#L`U<zN5@;)u!!1bPHUznNNPv&uDi+@m2`oJBR<hgR?Zz{Ch=C$9Ri4!Hx{fdI|
z`ZcQeJ8t}=sAGcDCJ?LmSMhHWrc>IfT^IRV#owN-dqKedx6glGeg4Z;yqxT!XWvn?
zQi`@oBX%HANzDhc#cikEzjQ!(*-kcS!uP{{a`HEBHa3vLBB8v03id1UfPm~T&;9RI
zMMX|V2kzP0e!wEww=O6kpo?nya*G6x`^zgmL9WvnY&JCABnm01feVaikI^9g3IFn=
z)T9IIe+nwQoN-<AFTYE2y_)uy^=)MR@2qOh$XJM&z>BxEwCSO8a;`(YCy&IU1<gOP
zWJ_~!Hd0DV7JW*1=v&gDswJBgbul{p&9H9d0h^wDC}A{$$LBz<UcSOk^K8otF2=e>
zeh*rZ^a`*C%75lEAI>PMs|}oC<y}j#E%e>_%w6Y>Q1*o6DB3uc?j0T7b*A3<?~usb
zfIl^03Q$`CxU7ts{00Oyetz>eoxQ4?3ExEw&9@86W$du?71l2?F(*eYj^25aVUuN>
zg<DI+(jpguuq{8&U=Nb8tXK;Bp~+-7-))uKEst1PB2u%0*Gj+qMjQ>E(8s$e1>)Ns
zm2@4mS!BmQ;H@7G&~y{JB`{vR(Dg+IL46UvG6BK12Vj_2Z@2~BBesErUUQJ>dXmNK
zD{*1e74_Ldgw*JC`*bzygeL+TooYV`iC5kFx1Qc5U!J!5W0fu65kQ=t7@E`Gid0vy
z3&g~Z$ltW?3MGmIdk5~#7($&><(Gi&gj27EClt0)FthDgWwK+U^Vj97WGq8RJMQHB
zZiDbHM%gt*YL}y;aitUTw<RE-y6V~UpJsd>G>suQRh-t((Q>d=l@1awOjT2^{~;wJ
z(DW$ReblCVFQy$qx$8uAcOq_M;eJ?f1Tw$QEEPlwJ?ObAeWY-svLV}?;jmr~fTqTq
zJNr7iNGo%tzR~gVI~(RKIwg6XiHZGZcW+YDQCX23lIOK-=F1at4MN5QAsNGz0;Efd
zz|fN(oW}4kfO=`}XJm4@O(MqXaw#$gtzY%wqRed$Cld&_15_Ey%ICUlrKtjkG7AqO
z5L-<HyU0<}v8nq<91kD78hnm<?eP3&!V|ml7ubT)ZW?xUB+#%W{rSiIlkrwlGWVWi
zpUOHm)mND^9D{X|IwomCGmkYtcrw^M8|<oHRyRK$flfaXs;1wq;g7Q$i6z7)a9@de
zx*@-mLmgP&mkELt4!v(Co~*5YCe9*8a*KsvM3SF>6Xy;lX{Ngkof;hlxvAVZN3PX8
zWmHrWn;rQkAPp%f)L5E9O-}H?h?i-4>OSs=&Z54+#CN2HY;k~BG&p;dTQB?6_l9d)
z&WqZRuBEu7qL1%_^xb3f`WogbMMQK&b}vE3cRtNb8m1>qUSXfr$QpXnNgYQCEr}JM
zv{TtkwTRXj7LV4T33Faw)oneYQ+?k0#%A*Ds65o4zc)ol=4Y?8*GBIldqKhQdk8NX
znGhShY4p782{gwMk#~oPfZ+9S%)LXbD`6UnazX3v4udJ-FIz<>HMQ!dPF%t$DwQJO
zg865vA66pN`g%IU)eHt@e0A6A+C~1hat~S8ht_rpArlaxnaRAj8!5)s?i5;VPXv^9
z8D;Y_ZLz!EG0P$QI!ljc5PG#UV1sVSM?*8dWbDN*U}ZnWLM8gHB#fo*9+MK~L{SED
zqB(^)5U95AS!9B!L&CSq8`0;*F(;1Om*@%#wXI)8LN04WOMs$(P<w#3A4DA5)dZ_A
zBh92YXS0Mxw^Xb3+?{cn0+?H`!a5o>bwY_WybrbO4~s`8>uRUJ7s=GKh;d)NcFh14
z+dL!bDUo?a^*+qv5m%X7AWa4K(K`=%kk)vWCbO`<mcAzAhRTDR2|hosQPX%;>AaZ|
z&f>Lr#L5Twl!=ps4pea(MT^P8a+HvZHz^*8aT%u<3P6Nk!XXz>CyD!!0m_}3)hI6N
z{%UFmx+y<eC7kK=ZjLc#k}OCjB0dXwH|E3&WlZPlZBuk8_f?(mE!l_~)NZLSxH+mU
z^f<yAo5KaMEtSy|C2?c7cu|&dny97k)2OG64pQm<O<~}rDV?Z71!%z!8%%?wa(l0y
zc{(!g1`}0}hp|}uxaNYOiC%Ss6baFVR1?;O;)V~f4`CCbt)ZS28yVJ7{GJ(VkNe~_
z4@#vbO{Ovy8lC~v(XohdRa2qUy*||>ZT^ebH5TfnqPq>((lGrdog#eERK}Sk`(HF2
zC~ADz8D-4Y7DBiO4@#uicU8vfLM*Md`>rZ=b*Vb*hOl$cAjxT=H(gxZCPLZzoQ?IP
zHBIspn#C17r&+HN5KwyEHO;kpYgp1HRA2lStG^imUv+f+($@MZzaD}+GXrO^^o^8%
ze8X;njUA1yoG|sh^EHbK*3O;*f@yEruGXj|JY5m>^|8+g*P>VNL5kG4YKP}2I&<^g
z*3booKSsFbSSYS(^|?kI?|3}2^D26roSaE(>St5aVG1dRXcWI?1xQuni*Nka>H(i<
z%(LnqR<6{3YCbDXh`v{3dT7oL5mAnRWE)+^XPOOpOI9;$w$Jps++rn%qpno7TYGCD
z{ZbdVl(yd<k=p4sKDV`L>jZmck0#-;U=l3@rR;T;eRLIYE<2e(@u^m2g!-Ba+PLMZ
zz|_M;ttwdVkUy}@F8-7z7p6>CSU&y}^VvRJ*VJeIk#x0y$ZNs&lU)T^3@I`XA7~I`
zqMQEVY_KcI7fx<?$6f`PJAar?u4oU@$C97U4f-QoJ$K)pf?q1xKmVRQ+WNAJwmu}P
zIfw(fT3+s|GVR%8TP4||8}3r2kk@={6cj;QDX5+r`=%gK#4Qj1O;^bD><MhDfYFHT
z4Y5vu-eY>Q{F$)&>oVcIU9Fihb7wSw`}I-)m3)Mi&dAo~C5Nd($fzT;O1)-?CG)sa
zFF@~;f^KVD>Da--Q$mB5(@h1OT+=48TiU@>G*TbfEyGg^Z7f<K=x2fQ812<(-f0<a
zJp%#N!~EOphDww(d1Yn1F`9zZ-LD1~J=>~^5+T2!Ls)MTN(i?=gY1gRWDf@S&$28_
zyA*}w1A3V!wMDC}J`R-X$=|jeE1Kuspf^>COz@e=?xOb7#dV>1Gn@4+lK5;=)cO<$
z)O18(z5RN9{B3S1z5}AMkH<PTecv774C94diG-S(E-&w9vaWSS^s1`+ivyWp{Ds0d
zM-8|eG7t?qL%GxQ42!p1Y;E>46c<-4#aZpJZzl)JU74vuijJ&;D3oxC$|a{}LRj!|
z%hhXwTKSH{+GJajOy}QA6JR@g^jLHsxuqk)`m^wk<5S6(=@y&*{j}6V4?4$_1@sXI
zMoV^V>OW)QUN&pjV`$oqG_`Z)(QE+KbF6?MF#%p|oC+?vZR|+)5gdmrlHce%$j}){
z3Mm;)7*O9;dw<(ql>ZHesa1?M7Hsv+LRmrMwPkX}b{?!PKH&?I)(kuIN{^P;N8jo@
zck&DL^uDOqx}!I})sTrQ-By#?cIGnA-H@8SG&GOFFw*Un;yfolex9zXcauh0Mjvc1
zKU@p2l|H6Z8}xRt9+5FkB()uaEOEf=o2pJ<^$v|ckEsL(`sC};O^f(q<EaX*Nz<h3
zT76IT(*+bl%cg6H^<nmfGbf0VNpn)VD^Wv$3&)4EYFjwZ%u%A+3~nW;4SOuj?qXXm
z&WC*kw4@vxJINaptqn=X`idc}vU3xjXSdCwwp6@G?`DoaGu6Y{kVT8@j2U_)+t&;p
z8G68rl9JK}7R1rmkdZ8+huI$jCnsU66WQrIT=g|??R4UI50wtJ<9WD7Os3)x`IR%3
z-SG~K`6Ux|mcrWBMU6urIh6#-XVsH(g=VI*&|*Y~?@L3?uZ5}aSSiUZEI$M`QqTR)
z2>H5b_e0AfsM2c8u}-sdkv|yCMt<@+2at0bZ*oc+A#}$Kzhxg8w?=)}-IvhIW~ctf
zzu#r!nkj+~3vt88z+$MZXHz$pK6a_RSsM*mgUsX!g_<vJbE===w%5ZB$v{G}PEA$1
z-alaNder{w_ws(P)K{vvJhk1A^QeH1;KS{_<FygTImSjcS~oV;0InkJEkL@sRv58P
z#`9Qb%x}oE)DbOhy*G<^UR*p`NKgEjpA^&zc|mupAGtIp%>B~7&Z1)I3VXT5S}nVC
zYE}IUPX`Cp<I=0WhObS^4Lz!z-zLEE$>#dA{k_xlKKe4XU1NpF1Yg-0e!M*DUH$$;
z>n5a?fbT((F)pnwrO(4}l<aw}{&eD3v@H@tCR6>c6E`XTS-Tz>+7tgqe)H^W@?_HD
z-QRPXqWL%!wC0WDr7W}A3)aG|bl$|P4Q-4X8?eGk^9PD5PpVabbBiM=UclHWi&M5%
zevim?fPSiYM-D1IFi;9}JH8evs;-sut==3WOq&s@=W@8Kx7_^_Po&tZ=~be3Fg>wh
zY!xRH6D>H2SLTW#(~eh*ksei8Hxk{@G_B9vR{abO%zo3C7K&lq%2v+*ndx!3{!Qr6
zKA7SXu)YK-p$X_ZA&YC_791yYEcLr>ELxsw3i%r|Ixh|DF4I6l_cXF^Q@6&He6%(4
zJG5o?AWQop@b=?`(!jwnU-YsGlsB_Lt8DwLs0@?!3EBQrq?}j4600Pvi%H7HpdaVH
zM01d!=I3SV;*l+9Nwnd#f1EogtlQJEz_euSo$U-8CS{<q8ewuPA1N?`<EsR;0X&%N
zp`c96UR!v$1kO@k0-SjKrtG!&X|=58nR;obpdy2fR!T_;`FU?H#FdeIl8;o?%rnD3
zF<Gw%0^%@ZXN=1u-*qPDAX+V{C40N$*HA+2NWQslR@vjEw5<1ACpAY^p(V&y2?>-L
znZz;dlNEy?>chsnFmfc30CQ6!_kk_K>F$WVp`lX4o@tG<e$KbIw1oUcUf~r}OY>2K
zi<|(@^yFL**p=Vg$i0b7e`M)yJ+^B=wIIO;+{q`6OomPmz6Y`UnAouUJhG1GX6JGm
z$$>wI#v%$&so5M40=r(7<gPKQ--m@sR>bC&*xt#m!Bi~7U4zPN4uMXKg5x$OyK~q%
z*!17@C5Fi8?R}oSF#!S&V*cyypx#O1(S6k3BqO2XcL>zkTO5X#Rp<=TKW@5Sc#0T1
zI1#f@%7(%>1u{9cY)6MuvL-Z6MtQwT=D6xtL9bTv9)~9gg#zkVtR}+R=@|a@C8gv1
zH>vXLVOy&cHBL>oN|ZFvyw{nhNKZ|)%yE7;ezTUwBlbpG1=Q}V0Iz^gxq5L!t=3Xd
z5QpbHzmeaFK+UdXPtaB-nR~3mh3J9ua%f0U2p`#qVV=-g|3uR2W0>c$xdXdHDq=pj
zS4%lmyzn&UDgL3kG+jla^f=@Ps&6^t?AR~xawt)PXOvNIwESH?7Xg=OMAulunyo&l
z5@!8TCypZTfo;KZ?<<;;<x5d2-Jd&#>Zo23j&Iw(IQ$TB&vH2L92;A~|A}LNo=Tp<
z?AH1qp=rE>y{cL=X$;S+{biHFjdRmd2?<sWMnD;PAu3P_<y~)al|?9}-If*^*7<|u
z3jAp68PU4WIAUC(-Cc2{4bzeubdRY;7$PSMek7C0sHDxyV!Q@tmL=I0v<LSyFBgLd
zX`;jB3y%?CYo*->Y+eP<j~g_{PTSvde1FIhn-~Is^VM=>epY#pS3_duyi$E>q49es
z4FRD{9h#FASAGb{BOc<V*)~&jB{7sYM(r^nEtTmA?`+|VDMGJNkXLz`978-jzO9YT
zPi{L>0EC-z04?PZ3XrG_Ev^A6N5>yY8oA`><WdG!!Upubh<IN1B{=t1?iAkrFr;pj
zRcBtjR($@>sJM7M?FY5BS=%imzW$(&i{vm#@$(u5%lB_@p`f4Wg><L18elKEoFDmy
zZlEjPg;Cil8k*#wwt62@PGZr>BJ%y~P6<3QY=)T{Kg<Q~YM|vhG3vz9>=414o7VC)
zJCp5|<}aBdDjo-5&}$PPArqQ@Z`88YASwgnn%s{oPMpf~6&dRGbBukC0oVDbD#zX=
z-8^33icZJNA2eLZUxX2X;k{*Dc`1p{=)O2F&pD=&0&}-WNGo7KWWhvvttm{uq9|iU
zyrBtHP?_LGOoS!%r_SivWV%Le-u(l`T1|DD*~>n0RAh{A=kVHv$LLq*zw8ZXS~9G7
z#)m6R24J&Mh*->{+Xv6W{-9~%BmT9kAf%{sRpupz@Y!LOTF~uyl%vRxg1b_=`=251
zMI$uDluNnbGX;l2uA%pDer-OB4p<s7w_L7ED%&HQK3I5s%)o8#I!a4ZCj(*~Rn&)6
ziXdINtZy1J9Be~=8|zlJ383!i^BDtuhnbErrQz{(2}fY&9rbAsk%~Z?c3PU%S?K0!
zsoqC-IssYgVa)eQ$_WpB(<Ff*mFJg6KfgaNzt!LSlL0P!lBi@*y}zH4x6M%WF4HiH
z+!CQ=DTr1z$^1d=U~Rs8mu>tJg-aAAaEP@!VzwIkD3@O?XMn+QU2~`U;+#`i^^466
zU1L!k4iI^@C#IXW1XVyTD%fSgM?_z{KFnamUDy98c7>Jt_F+L`_qVTw!D{NmeV1dB
z$}M*AWRXwwt=USA1XdXA3Ux;M!n_v5_XDBNvU8nXfW&4;zdux9K<tVdN!B~uKb{F0
z={c`b7BY&-Zm5LQet9A*C~UIGvv8k;_K68Gb-FGed1;Vi808yx8sIG8KR*{J!%Vf5
zdsW&E6>c;7eyC8t+BFjr`ZLmW_-O$)9vxcLpO-NmYT#}){V|JPN#R;f7Dp@PpxJ4C
z|5;dwmU@H<Sw@M3H?uxPPfEHcjE`*4R3Cgz-vpUo5v6?x5bidzy%{5T!fR@q$~)T;
zI;h=LpHbE((pBY{$HyA3q+?MWmwFoJl)u~(6Qi9zThsAm)}4qp+sPswX(X4Rem~6K
zC5*kNa>elU3fVZLYGb9ju*1U}?99Hd{VY287ttxPW(WLG5E$l?q@Ww{%}Yy%Y<cyt
zZF=xdwz063%j1Nsa%1RSvui6}x4nRK%QMN#q0T0$9R#_J$WnQsF2frkU(D(~X4`-7
zif0YQWdZQPs`WB<*(52a<kMv?1GRBzcFs&FudZY9kHtt{bP<2eE4_p}YZ#&ZhSxQ~
zpS1Kg0rFXPgaY4Lv5uNrz4(@yFk}D-<I3k<;oJi{LmlHf>*yx8d_n-S*C?iR2(cED
z=gS<%J*~Y(lgI))7<NpnXz!jnYkDuk)@2md)g2c2GKZb7jozGymQUN-PlhVHriNp=
z1f&w2&=bqY8mgT)h3DC)+ST2!c50PCdxTR{^DKn!4IB2-%|gj>{?D$(8%2<@Bu|`5
zNi{b(V6ji8e->QJFDx8cPazKra<$d0`8FRV!16%xteIB6FQtG=&xz0;I#46fiV8fK
zi=>Xb3w?bq7xv|8&g3VSYtk$m0oHs1Y@?hr75R{Nm7t!~VJFoa;mn}vRkJV}nqtR=
zN4Gvx7qanLSQ%!ePGXmBdS_VZVC1(hPKoLp&jDhoq5mR4YdM7XvBarN=ulSvaCFpD
zLkRbPcOnQ0B0HJX^bpoGjarC_mXHZndq7An_#%^4d9)|^l`}1LEOsPO%bX&NhFUcG
zDT~@J8<l+6O|7rs&+~0&Hp@MVVFwO6$DiPngH{xp_;1nPD4*WGF97oJj!b3x>VHyu
zyd@_;oL6NQ#z2=n@H;rLEysGVoG6COG#W^#!d_gZ)|cNLBl<w^E}`06pAx6!(Y)}V
zJk(-N;TEAc;WN){9^vG&M}60tA@;QCJ>^W<;R@P{X^2lE^98&I$gJ0<G-yDQdc&2v
z7?4~L^ikf;<W^n(ZADxr$}M#;Sx>52fP#Zn;2G`<WCWHzET>d$^-bnB$KZ*8IcRgG
zEmOt(<rse8ld~PiHkIpKLy`C>4EyvCZs-}h_cH)mMmD0C`y+szn2095<8Hm=C6GAs
z;eK-JqR4rAARml$xLm`Vq+0%UvZ$_;oSNxyOk{jcOP*XSYnb{;3oQxunqB05*WGAJ
z;whNgHkEnx**hZ(*J1CJ<pdT}lzL2(MXbq(MX+tvJS=BD<5e)Bgmy7{qY}#{1ZZjw
zR&+J`E#m<F`EPXj2d_jD;_tE{avs)KRwxFcGt@8S)e#CTY$ITVySCeGm`!=tBU6D<
zeD!uTk=x)A<uP2_>JTT5;tAp!fjo`PD+qNpXOU%l$nrdMxXn5t$g)LB&2K%gc%(GT
zH9J(W%R~EV7UHdp3bJ5g?aP6U&a1N<lf$#U%^JTydNjUXLA#}OJV?;DNuUYOw@}GX
z2*@Bye7!ln_%6)#YF@TQ&<xli3R5`|6>lh3R;>oO&~<h7Xv%;xGA6OBAAFxvlNHj7
zA>cWh%u3I{1cz&#u9{^twOAdMUe~fUfRY)23SL}zqV!p`BXvt_p*<90?1Sw4BB#K<
zU>4ZhrD^usdssvWZ0V?3M+IbL#N0{DQ)BBZv(%7&KU#-P$5h3Y8f<9Rt@w+6l4X~W
zQ0wdr{t|IZ%iAbe!tk)60$CHo5)}C8vA7nGEQyuJpkMX;HJ=Oclu#|x5wN>0-QI4k
zIrJ#(OUTepxEHz$tg>wjb>TovUdluFf_5Tw+Ny4aF^K60r^8Ru($q5Nn^Bilv-{ed
z(fMntx|#*|WWv<D@^k}nm3c*GA=(8qC<jL%Rb}IG8{VQczyE_P;<vCqIn~vlgk<QV
zjoo`HbKk9Nn79;`q-hS{nD-AL>3!H3Z%Y$E-v2=aJ3DUm$`K271*cQT^UG&OiTeg<
z!s@3X?>YGGL)%`u=Xq^EM!O)`#wPNH>TkGm@-{t!hH1JYe<K!JF6pvKgqjOdPjRWP
z@vT@X>cYMV+KxVx?oa<M&9N{Mb_zO8A<aCcrcaBlsh_L@g?;%{j`0IHv&8D|CNGa#
zrfe%aZ;8^4Udy;`3O6l`DK7^@m*Ooog;skq21g<$*BCWg9{E?aOFmmP>$y@m!h>xs
z1I-B-f%z;0k(!Tl#y!)AWK`r?qx$=PhW&dzU!zmQ;rTf&R3udQfpA#SX3R1{5LmkU
z)abIc#>iSdjnH=j<QuiYU3vz#_CM4_5@FM+@jcYn$;~)2Yzxn7a^&AXcuy!iSrqFI
zIlSO%$4sxPh5EFerQXlzYUeG_-MQBJh@w*c@!xWW1EBPd{NHqiJ><gu&t*sa7JqBX
z1#Ss%)7c4hwO$1>;{LsS8W*Ads~XKeDv;o>8nYuaT}{_ho?1lE_i<t96cYK`4LG*_
zV{zR2pR4BX{Iwf`)TC0So!Qg14fF*L{6q0~nI!^yPi%?7tpfgTP5S43Ruq-q70}jn
zyt|3YzC(Tg)`fESgko|gZJ^>h{Hk;w^T2T|ko1*cE^Kw#8EUX1S5X6e^RKMpz6o4S
z3Xkwnz@whfu_@o&+XBDTfGlGi+Vm#yKc~e%${+U)_^ELJuOa)p^p_YL0pBl*@WiiX
z{P%BN%KM|{@Beph{;Cqj4ge;Hzly&`*uQUxM9JvSNfRFVZ*HgOm!HYDN$cMgj_gZ)
z$=2AzXu*Bw+KW6TtFw6>Kjo?KLcU0GP3nNh=>hEr0qtxkk`h|`#-VTo*ryQGwfepS
zE=LeEygcBQTsN|TZqQ)m<ovNdI;v@4<dCFwDNjs+WAkFY(!kX&7Hi+CVTUv8@Gb*b
z-=7UiVP{R<7<}j1pcfsy3;8t#J0n%mOtr<VfGx>0@TI)&ST5Lwg4h3y%eYQAgq&;W
z8?(Z}q)qXJDKJ6)3*KARD+OEV%31qgQ0Cxda*=|xLBHhnd(_zQ#6ACYOOL;RA3^bd
z0AT;B%HO50)U@5p_0Klu%oZA$fDZbE{*?}RE{V@}yoCOrz<~IVHDCGXHJ|<0ec%3P
zF!;Z#9e<bG0>r?ZUX;JX;2)j;QTfOJzrpgqd@rD#fBh1w!+*B*cLezFos9oWU!wOH
zA{GBLB9+@t@B)a`=Wyx$*_YsmSVo^J@#_S0Ti>epLwT2;E)^PQV?!?xZLTn=;Y=Jb
z2<`X#gGl}YUu8qtb~U<!BAtbF7VldGNmJyUx~~EBtn{i!d8~g7l-5N}CV-$D#Ftes
z&2f?n{zw<m=|g_sWy4Ss_}8kb<;x37EZx9@Qg<(awobrilUdsXwS_Hse9<M>mcr%6
zV6o}x4B~BDWO#2Y@RV@nU4O587hrfLgjVFmn9mkS>AT<ii$V7d^1Nsc>;LI51rof#
zW&g^z5yB>zf}3pce<PNxeFet{CSa3v5^cM(c7n!gv@OZALs+dPsmnrkmh0HM<@J<%
zJ{NM8e<*!q^`?xyRh`3keMEIF&3>88I6gGgI`uAC{~IY+z6^{O7_^VnuiJeh&0c?F
zCjTp#D5atEXNSrHe`$!{?ShH{Wlr<|7^DAl?Oa%Nh&T9?-KVj1OH80H*vfa`&n?!m
zw$2|x0FVI?J4ZsAp94u8mY|*^QecG}jhr<hGE}L)H?WZDql-b!BnV*cL2K=?-r5wv
z*Bx>!^QE~KI(z%UPacAx_T{%1aKUf^7j7Er>IXk&jVn%6;3Xx$K@AKv?A+>~1Jjih
zc=<A(>^=jR?2+TIPPV2!Yg&%#D!pR%{u9v0@Y^%Gx4($p>k@Kq;{xdra_i1-%wA~t
z*k&m(w#Hp??6iwE7Bl5g`EL+G;NK)_a77irc>#0(Smww8s0FrCeIo8XdYy=0l>g#B
zD-H09Kz+l%G*Mbfdei*raP?2t+t}ImivcA${Pyh6mHb;b{wlw!8bwydOHIWu#&l5}
z%l=>uD>Q!&AU&Alk2?gp)c>yU6<QD=Dfv|#A^+~7KWl$o=I;M$=l`!F_&+%ljUui6
z+|TZY>xPBW`nLI8z7l|j|J@7^m|kI_TOnV<B`vVnJO3J^2ppe2c>bn~Qd}zX=Pu^^
zu!GI6JRJz)etRxjx7;f70&vHSy_FPVIZN9wAgCRH*?v9Llmh~_e(`-~{uf)nZqpQS
zO<RbWS(^J4Z4N!xB>KaKY^GgE^$I&MmfY_GY2m+x40m)y^DRpe|KrYX&hQT+^^Xwo
zUpM>vFWU?LCms~eb#-@NRn>ssM#iP^q+-Igz0v<T`aa@+Hco?}fL*wjzCP%X+n}Q7
zV(w@oQce7SyvQUarF<J9g75Ly4Nz4nydV?1^Q{+TqTH<Wo;RQtA#n8R7sn=z)Z;Nz
zg@5NofK0OFe?rJErg$#t?Wq6cfMMp9LvzcXpgE0y7^Gv-za$v{@GFA<oy;8nKl(!d
zY~87WURE)2!2Y@Q{@ZdU;f#-_y4`2<$^Py5`X89OikRB`l`%AS%Kkfyy=YMwF!TM7
z`N!Y-ySV<zQvSEC`Xnvg&H%%Ce+~|V)hH<uYkQQG@wSiq{^JV)pD96s(%%0|ma|fq
z0b^s}iN*nH5$CKCamP9Ti({cB#hx>8I3iwL12jnZj{Zvo!Z<o>EG6N(0O+sN-1tiN
z-<wHiXv71D=|#?0FP~q?6#k!0JOACx{l9Oh|B==CJ>i}$8tO<9q17B4a?sHCtF3`I
zCQONw?LZEBnm^mJz3>j))~3ngXGs(}6P1z$D*c_Bs&*-7yB}D~GbYZ4MS6HZ=@Py;
z;sn0O(vc4^atoAJ5~>C8;&WxNVM4J+Db<NMeMEVFgL`eoGS@JJv2nVWH@`BEY>_?U
zT(Fnwe%1#X;{hxfeh^JdLEx`px!4h@jct5?<zkPVWYp0OK%3Cl+$#i*7)Hq(1aq4n
zSt!#-d1F6*JS?!cQ-Y5iwoTmkrxrKy@Wt8psu00sZ)GWsFq|r@;E$NmCGANt7Rfvl
zUx$VyZw1iI9uaEq!`NoJ%kYuPx#4Vsgu!j^@u=lw?o~tszBa1zJZxbX<1kYgxMoZn
zA<GWm%|0Ij*K5CyXw2tbgMvq!<Cw;!lqOFSZ4NsSo6iXvMc&iA1;&Z`55_5aS+zf$
z<*40PFXH^Psi7$sZ3mKk3kHH%#Qxr@bY9kQj>IR3t47aPH{LZnowUCl#4)}_>(<$P
zB2zp!jA@gP*@kX7-4bp?6*%~qHi+}LY%UB!=QK3r0&;w}EKf%2iEi9V2=s79972r!
zj_p=fEKMrfy_SD-mlXR!y8H$C4^lw@u#>*RekX8iXgF&mrd|M9pbAi~-3neODK>6+
zC5B<8RJf#&aXPoeiI`o1Ei5<cvMd);oCM`#e*<6W`Dz;ta>g*^YtA5y9Wkj<KU{|c
z^uCk_A&v9lh-x(<6h;r_9WhwHD<d9fVtKCiCCLqD&tOM#i>$rZ>)<YSVbCzlhs$$W
z*?0GZ!?hk?y_6z*&>qtY+9LcytUlf9v4N|!m}(X#8*Qj~;k_w{o#N23n&9a3BT&9A
z``x~7cfaOf2)fC$a(&+e<+Win+P*1CZ;}g$ME_nI^#-mY7KSCq9E$t3(*%$?d)X#q
z_5H-iXwPzTiGxu4{@{urYj@oAuDSTx9x=5k$w;xMoQcodWbs8_1rsnvt+&D*oalav
zHuYLH-yo6tT{`u=lTSZ-3!*hFOh4<VNFpA^D%Mt7>{Pin7-T<sRP<<7zVHZRd3d1g
zeMf@N=2^XE4c+hBd*6!APl}WA1U{I9VeUtQf-~#jm1OW*9KvUMU2@8IKT&cZl**;>
z?AtdZucM#1k!f2*!C(lL<4Fgj$|Ei=6ty1~wRAFjj?W*7fL&3#e2Ku(osk;={pn{Z
zw+R|2B2H-m9oOudRls>D$us<^%FO6POU2K~DrFTE=Ih>Olb?wFKr`Z`3`m~>MvH-S
z6B~RVkKOW0`MzJ`=M640x&n$4JUi9Lk9m(iBS}4vck0O!!C_Bl$xhm~lku#Z-((Mi
ziu=|fYL#anSY7)g;xG(8>%3d`_<qKan9a}(!SHs9gI0(0t)u-W#>=Yj(|O+fAm!K@
zLRH`Uc(T{+Fy*U^zm|@<E#byvQzoGizcFp{1by7KLGw18maA?_(1?#w%IPPjn+YH?
z5~`3whjV=u#5a{0;LL12H{4w4x4-|k&=>D<vM{u;xRUFAw(z;`sQaW}rEe@tZII9v
zuICCE2~BCQGW4J6d!oV`-jR!&q#_n9jCgsZBa31ULJy&{amCoP-H&HS+Y4L(r*EQh
zZInOY<T^R%)qlca(7SyL<LB4k#ZfnM+GJX@)XuS)ZqJ&;3Q(EYJ!VM{#X3C?U;A{H
zY^IJkk~b=go?{)xg1XO~e~fh)h1#H0{QTZKvns3ly!;v?<Q;lx^^kMcK#E$0fM5k~
zwdA+<+}C;ZDzj`2J0@y!LqV%*>zepsA{nHz{n$PoATu}tu4#H&f1x$6#a5w>*zPc!
z1|S^7EuJyBu0jz)1MGTsT;Op*J$6`*T*xR)u?ZlB2nHVz$nVv$_jJO%N{?Xd$Ngp>
zW)C_(I}mkQ9IR*g+@*%7p!ZmRkBB=!MM(^tF6lSmE6eU^SR^4nNl)NEY=*=1Lh|#=
zf|4HBZi0N5IA%+N`iw2Oa<+O1H24OP^`7{%02S|k@0=%NSipoEezp^&gF7Wx@!R=u
zUUAu}J|0u|Wb3;4DRQ9(zqh&d`filTS6U~k1blq^A@saPX#qV5Z0c{BEw89x;!-Vb
z&d}|h{VLegD}=+FVyR=p*qJozOw?r~#Rr2xV2}@6$4jYh{Y&_`4O-aN*!k({bFPFf
zavu=yD7Q1PP&L^83j*is2WayfJMYE2eAqe}Og#*;q#s%7Jw4<%Q}31alKqzQE(L&^
zYHr2-Fd%`4AHYzQJ%}U(;>Xf5oeOLha~nLGZ_c<xjQ+r#7a$~XY4$b3?SvNVkwPTF
zf^fB!8w5$h`!j1W?)4OC@*2Fhv4d2p=HxjZGZ7>J9vJgw`?B}&=%6ZtVq@bRm*eNX
zZP%4-J0pv(E~2dCtGkY*MeRe|V>S%Q@;3!g&a>QggeQr1q+VO`TcA$}T?Gl87Jh_&
zokKB-+)r<e>w9*=ORSK7qGml1V!6SuPXFQbY!TdMd0Nn<5{wo!nrC-)8)e(>q&Y+;
z*rE;*l4GY=ZQjBiaB%yRGljnQXNLHyvmIug9n<8|vm+V&<`tX9f&E@%hlka4ndIwH
zsRjiT3mRTe`K=|@b0Kyd2Pdh<17Cb+;>rsu-xqg|yu(%|P6A<&#9JJM)-1$N#-{jZ
z&TgwH?L;6BseI4xQ<bq;_l>z!`ba4hB9ihJz*v8o*}`*A=Taa(_If2E?c65^N$>15
z8|Us?uT|S+>3Udh?C=}EHVFGE?x0e#E~l`;)(|QfP2;tN>l1_vX+j(qY`m6)yIqQn
zMvvX!H8>*<d{O+BwU{^{zi$TjSwxVk(+0Y{H9@kqFo$yZ?t*T9=a_f#x&FDX-uh47
zT@2cd1U^sQ-rU``JGZz*LzGex*(56IUNqb_2F_(ZZue|O;fZUD5)v~7&?mKS!%H%s
z#CQuhlAV%0>O{a6Pp%xQYqW#5XHXxC%!lBiS8hPGjEt-!#QEZz;w;kUcYca1cv*TY
z<t<C>kQ%N-ZUW)OXZu^IWgGyOGum#R=7y$|^I<tJN_RXJD$@u(-JoJT=N&!})N=4t
zI)CSsKN|b0(}jF}c#LZ_OW4xO1dq`PJFRY92RKviCl5IEpe}BxZbJaS8<>6KsFOIq
z!Z}LeU|hh1A?{cQOJ<#)rp}CQ02J=Mh{SG{pBvP7c112*umNPqP~54bB^SOtyJK!7
zDc<Cnnpyu0jGxyzjF_S56W71Y+a<<OmnPYekXtzNJi+zY?&K5>BelGiU18lmYmb!T
zPEA~TLD0Ciq?NKIH+Z_yP++s%t6m1nhtVrb6PtCKcp0C&xP2Mafn;NSpZCXzv?nSH
zs{o>5&J`uUnSD>6Qti5f0PW=!s3BVd|B6MW&A|QYm6XE%^F>SjXnRR0+E)Fr&rN@K
zix*uGo6xlnU%8qBeSA6tt?_mKUV0`)bwLfG$0sKa3`pAz>V7|R+&ZCeRkpHPlqDN>
zG7;`rwyzKI9aA`I69U^UQb{D7ruiM#AM-W?q1V7w{UVc531NtVZ$93Qs4DJ_-EAO>
zS5X``kps>M&etyDRE1M(Rb(Gs1zCy1lESG~@&9Iba!bbA#s&^}RL+4PUdoI4lDccH
z6uj?oJNz@U166Eg6zJmk`;v{xpro;9(;4T8ptlc$1u4c<ayX2_oL%Cfrnt7y?{eXQ
zok^<i2MGxv7;)irmOf5JTxm>8NLe*{WHtvcCTle)geaieeM4BLW7HfD!F)ilIXHx|
z%NjwhQ85+_p4~kY-Rm-#d_(M6v9nxkrCn!K1@Y05#G$F(g09tqD>V`O5neV?;sZg)
zu>%eVC~l+d%`7XC03(i-MTR?&&sjGUN_Rwi!yaqR+{gx1o-ao->UiJ}s8HUAfF`*X
zuN{Rzym)v|z<pBdq=h+C6R|!!$v5|-u2goH!Z>%6a)lz0iD`YcEc>KGzv$RvkMCqO
zfT!<AQ7Hq4^E}@Vp5I0-`X=?LuEF(9M$+tbR=`-Q>I}V2qZl!o8oZ_@4>zp~5M4ir
zATvn5Vl<64Pj=s?D>m>uO0D7NQ@i`19;4;>T_!v}TY<tD^4*u?ps8Vt8Z7Q&pW42C
z{BqV;vd84?0VAmc*ET!zDEF9XCG|&?QuX>iwZkl>ZSf=37PusmYxuqw=eE@$b^VD0
zHq6uqi<TVA#6BJ^M~+LhCr8Qwu{fMkdUXp_dV)t9z{P5w5vJKIJTsCD(*~9)ra%<O
zbyn8}VV&Q-lHKc$z>~Hlhh&A*=cn0zds-w@9j}uacH<MAgZaeA;r3AwoLG*=%7&x`
zbGN9?hX_gvowJ&~;PW9RSQ~rST_ocL#efwjLBHCyop>snITC(<9ugsW7AmnDtg;S)
zN~9|#3g$JOrQvn9t1dH~FG$)CWw(hSybfzET?bN+aeMnhtMeh;I<M1``zhN(J5_CM
z>jZ6e?IJ{K%PT9_@Yq=`<-S|eGBra4diZ5wzGwTkgc1Tu-=DOeR8{$f9E<hNZuCuq
z`7DjiNQj@Jt6v}O{M5$o{A|{)j8LE-7%NhS4=paAo)6Ybo+P@{3Y*!6NI_8ebnSYB
z+|cf2_Q9%g#}?MS-H}So%_P8VIO%eGZ?}?;WLoVCv*`Z59by#hx8gCWrj^U6?bl%J
zP;ZnO$`N|{biAYg{(ZLt28F{&7v<bx@pFImgX7}qd|SYiEnC}X8|KAZtO*aZ6Ll`p
zWWeLd?1&JWac1FP5#WM()5`TQxVVX{Lc`%k&C=x+-<<Wz?P2g)zkE#MQgW<l3`GHw
zW=h6ti&^i>4tA`gO4s+G4Y7nTlmZl33tB0D`zi-V8J%Ao!E==`WybkXpFT?3qvJN!
z@7ZEob;_OT7Aa>!c(YgUr})0!?~eiwf>U&ok|qV`9<wi)6DT^uHVzJS8geKq#rC@~
zZ3)I>X>9_|w&fT^g?c^ITr|ZRE0NEw>}I@D0pun)$G3@lO;*L?tvs?JP<E}^w|Hwu
z+RC+xsa%_^QooUH@tj-<%8YlH34~QdBz#l1lE`h0hV`&4sk%Ah%k>)YyatGFq7Iji
zH-?p;`LW#DAdfR?Lx!6;4M@CUm&h%X?89&t9r!%K?`+*`X~p|&bLU;WpaS-E$6l$l
zELJe4_%y!(GjQL_1+8sr)LYkTIO`%Sn~UO;d;YvhyK<=n>tJ--lX*$Xt}_8`FYu7%
z5q4(9ZLAg5#KhVXYVWt$ov_$Yg<;W(BZJn>JYuRw-;o{dJvmcpnAZAWejdQTHY{Wn
z%11bqxo5si^Q_|Q&938*sO`bGy^7oRec3+y3JtOW24(P7T>mOY1Vd9J2*b4Q8D&ER
z2?J39(LSxsUh4)|_<NUi^Bg1(OO_)972+!T1V^^{DvaDTBJ3!>KQZwTKQ3`b|7@}u
zG65qpa1UO+t|$`1%)WzuS)@2T<WR5iGr-rFtl|(1HPk)dqVA(A46-9BCxDb;V=3!f
zcC=Q4SR1T&Y<eJ;TeECK#<14uDLs!QrbI#R%knIa&(|+Wd{gcFGI-;deySa5YyuHC
zj{&)xSbTO0M_DU+2a7-TPh+c`fOitNoNWbCIajIEEC^c{2{w4g1(}*3yg-?5X?Tx!
zj?c7}FCUCPZL6Nht}e4VO);7ZLrg6AS`@AD)vW9pPjxID|5PMtz#n}u)+R|wQ}FWw
zPM`1%J%K)bT$#=tUAa%>;!j9dZeH)cB_A5%qHT>dAx^l$lk1k+ZurSNEXI<ZZ)eYY
z7ME}v%l<S8-MgFkKFi`+{xNPk9=Bo(>^}jg3J!X3h-XiHdx9A3x`9KkIKyIJ^6NND
zb~pwIp)y*Is?$`#Pu&)AQyl2I)NKyzoL#@WKF>%_6|!#cihH`eQtVK%&3Qe?%BR?7
z5<tsFXMxd?J(X7}XH~;n9<YUKvPnDH_7>)TS4>qrkVY;+t5qMzN`igie)ht%h(c*W
zJ!WC^3c=jL6PqU-h7d^!ugoIE63h!Yo*dR_cnt|l_`)8Sr`#B^-Z($(8&-LG!TXc2
z!67l`k_?5$SewFCm-n_$ik|CimAGJcG?i%4n}?ID+#5N17&rSRb^KUmD&>$iQ!c7{
zU}D|c`~BWiBdIF{K4q`Vj5sPHi;8x1H{7CP>sG$t6;${5q3uGZrZrpr^at5x&kXho
zE3GSh>vih)9*7@6$yOBYaxK5`Nf2nAd%Zj#pC`Zb_S$rPp5)WxJPEMp7hiwk0IFxl
z{sw7Q-r1uP*lQ@~VfaZuZVOp&a{ArA22FFaQL#0o`1<56$_>AJStx+i>M;!VYKfsP
zM^a*!SbXmaKmhT(QY)nFxa3i^D@y&Q`se}8rXR`U`212M$ueD<^Z5<jbL9mGJj6a>
zoX*-tkOGUO(^<{wpULw^9G_3rlI%R{I^13ms%QHB>Tg^JGf@6ZWM5}AUtX2IOV$!V
z|1)n6IwzugwyM^0`C-~;f70x{OV>E_G;bQo{~k^7z*WxblFy2tyE|-Rlcn}S^vCTW
zo8tJMtsdo6)RGW(KkwH1n3~tq-5gFQXqH~uPXel;iK#v9xCX}5$de)#=XtZKx}STx
z{o#A#uWeAo>yJqeHrY&LYqV5}tsjs)9UBKSAlrg<+CH)>3&~F4%#gYLa#3&lem6^c
z85j}Wlv#gOvFKU#W&4ev2WqdHj}_mdJ}5m8%*sM-M7g=Lv=l|Jok&ez0S*;u5|bUx
zA7*2ianpX^y4BQbBya(;R(xtPvNMtG)HQZEG;EO=g^3Vnmr4bz(pTghkK=v@Ystbs
z$we7+D}YvfEa5Fjz8uV_`;izw3C)=!-qQT0G<pXn@b-JUrJv77y%AR199N>YJVd(O
zzZ#=AC2!f7z>T5BW9><DmFALlJpw+fA<gDp*S+8QKOIwhvB?`RJf2X=)ZXqG-_V5i
zxihIxPczdV;i6hXI$*jqZLGIf>K0xae!sm!(XZ##`?jHmAXJ3SV|I4y-sWd7^7<T8
zS8RkFFh(v|8E06aD$4xhPQE;w>IRoCb%zaK<?DPyr18vsF{U4ddg30tHrR2Ys>SFG
zGVzC0^^#xLG{7bF8s?4~-rrfrZ2Z2e)uZ2}ywF!T*J16n)S&3zoWPhalkCO&<tP;=
zLJ0^uvIrO5{rrL>S7$ekNoZ7#&YpVIx2x!tES7^4zewI&Td2Ghkti#Eb*UVDe{hz=
z=allEcNe-gH;AQQ2`<^~^E=6S^Hb)AwlT|$*ZFS!HoPYb)x5qI^DD_~QMp}t&rw<0
z3E;*n1ZM2}vtNN2UvbZi>p1oqhj?Di$E}ZIx7WkZDNzVTivpf2D8ruu)k}|#e>9wh
z`L)zYjBPSX%_PPj)ErGPQ8`DTS`e)pHV2c(?`)j#*bt%9HUfewW5N|!$Z^Z71M=DG
zz=fh0Peqs?9TJ+nLT*n?_Bql<k)<LyXomMC@gKIL9>eLzx{eTW9j^V>lDvHl6@4*p
zxTFdB!7?(QKK=Ol1(Gbp)Zyrq&C}vzV<+(&Utc8!JCUY^OqT1_O}DQ&4sPkc2!U7N
zPAQ_fc<z&LFPwY(+Hlq<Ogxw{?OudMFkbG8I`nOqkX4~)<|;Q|YM1;P!FoRDzLmnk
zaE_(2{weC_?H!gfYZB#clXGx>K!wAO&`A1&&`<YG7+72?Sn&@e^E6G@M6JI0q|@x7
z)rJr*L^p|En~#C(A`JZZz854vQJuLto9N0K67f}pQKsV*70mDzQtta;<aG+uOZlS>
zk}emAu$bd+Mze+MzP6E8V=aZ|lXv1NGYZD#Y9{e1_n_{2QK$y><*c<U+Cpn?xxP>I
z?z#7W6EdbvJXKCNRalH_k}?a1(w4$qW=FX7M#j?UuVjCK?k!ylKC%CP>)bh8R`m2c
zC+<k^*j8yi@uT1tBS}{CrBb_jv3pySEcWw-hY}~xsYIRhYCfrGHBI*|Db<n%p|s!K
z-e|4>uy<xqz_qGp_vpc6KX8@L-szo6{E&J<psdv}Ia2ndVt*Xd+}5ohVF#YadYB(w
zt+b<@e6fX&846a>o09O!yXECqrFd!|U!N-5QGxF>g_j?I-khi9_RxVkXQwtjnptXn
zJ%5XZC~5p=o-4$?Vbzird2dVq_7u;?kvCrLxWz8DPwiNOYTmBiTeMW2MZzYm7P&yX
zVCX&;5i7!6Ab+ElVJzX3H28Q)7RP-9{35U6g|8@A;mdfn>Cgwr(0dYYgiIf)tzHZ4
zgE*y=Q?be|9fY+)@x<+hD=TTgTVCTa=u7(6d_wz`(WB&Q^<xmdVR2`EedkrUmy!ex
zw#+rpNS{y`ng}fr$@cfl@wJE4NtOgM2nhgcX_qg~fnrij$adlfZ;HOIUaOv~p&9+@
z6_HwIde0KfdW&6ma4<^o^MZw?Tjy4d$X&~GiLb?9qg@V|qlUJrPej^}_1ebTlUv5#
z;S@EEP8!5Dj5km(x&rl!U2t$7*@n03*&}>=livr21X@Q82nd7%O}$ZPsf*M$V=4*X
zi%*@(c5^$8^%H9MY|1oLmq->D?vCPO%8a-Dj5t;G6AtLPGE?n1wY-ksg&B)Y)pKqi
zS*3^10yZjRBc~qUC}#H_=2kQp+<VIeszz<cc@1R*B+u=7HFw0^+(0$m-f8LhLbc!X
z#N@@4N{mX%28-6yhL!7q+Hto>58X8*?pOo%LiKG<y$sBZ^!fHAufA-E`1dfKUa7U3
z&f6^;q>oi}ueAwAAzHTfP4Evf@CRJiuGmz5+rz95LRq`@WgVzV0kN-2OcNTSU?ovG
zs}H-bU^QaTd-Q>1apvo7-f@6*oX)(Ur`&=DZiJrWAXA*P9Tgo1Z%Dd2tT~uR_qWth
zU&*Kyf@F=Ou&h(TKfUr%cZZZ}kP5dbT8gQ-9XJokBqkneSX5oxf5HALWYQf$GN>^7
zH8@fIHmt>9*i~?3zLx52bSOi99{hT9axObwNb>3-2+bZ?%#h=UbFH(5oy*&Y_>?tr
zp^eHum6v(befvas-@QMIM<TH%B8u6x+1%jmkTxhss^W2;(~bOX$h&n?R+?Pm$Y2f)
z<85oL-^a0Fq#>PC8747$Yqbp1&9l$cb(pH(q~72pR4b{byFD7tay9yTX8X|$W>;Z0
zn%O?avwKWgqMiv8)crk}4Mn9Y698it6k;Ib>Bjm|NGd!`>b<1zO!_#P^T-Fzq$itC
z&oC;1AAP6iJ$a_lTvmxySZYSVxpM2-ex@`Tu-Z%rp_L3VX#v@22}2SFza#LaKvfOG
z)b(=Sgy<J}_!Hu?^R9PwfjoTrM@Y8p*K3G#@u9Qs_jf?QKU}KvwO7IJJE}5JVcrq3
zrKQ%~e`~f-2VnW!7LdW)aw*F5?me5LB>)S1iOx_+K&z|t$g9_)R^Rh8612n>I;ejl
znz$lXFQx5ux-xo5FKPZWc=o1(Q0$qp-^*LxS#V8(^9Sa>m1knpw_GaCqV`!<hSU*=
zxbtatfoJ-fPNzkYC1NjP6B-UQ&a2-H!2?WBcEte3U3+DzlwRC?wRXY0QyI7K{@!Z{
zn{Qb(;Q?rtzY)gXu&)g9r49LdZPpVfzS>pXshl1IRTx;4)0+p0*k&o}CFp7ilrKG^
z8fo_GT@nt~7d4(KHK0&9O>V4l72IT15p+GM-Jt=twq9c7YuQJ!x%NYKWeevF_c9)u
zrLXO4sJgJN*gibo_PmGO3d|ajwmkb<a5?{+TA|p04sp(EYw}RTCw5Jv>7Mq)NeaXL
z2m9?JMZ=6HV4Y=$&!q_PN;JE;Wmi;h$g6Oda2w}68$V^XG5gnhmyHbjFHO5b6lTNS
zwN^iJm0@W3p8TGEjP4noNK)Ttj#wWY7U%fNLgs42>}06_)@<s>>$N8xnWEP03$=?J
zTv`P;TkXFyr;gA5lnGB{rZGitM^;0-uPhjUB~KSA9Il-@Y{m->(UN61Gj{UH#Q(&O
z+`9Kn3!oy2KY3T1Quf+bewJ~Kc9UE!YS~ddo=20qhcop~GDL-iXuQ%X)?=<Ud=Gnj
zFZS(Cq;N25S%vS|q_fMeZy-Lx;>e)l8~gF**+)4&vF53Whxs-}0;M&XescO>=Y!a~
zA8uU9q@z|8rr^AWf_h(d`wA(lSm5p`5-{<s))-eh<(yc8<bixuA(ZdfmR>fgLo3|?
z2hrz0rnj&17Oc?k#*p@>P0Oo#!yW1h9Et3%lR+QDH~oTMTWc}%yo|a72e_l|7g6Qq
zZC5+aPPMw4@)BHqu%s25)g9r{ZPqg!+}lf%{C&?Ua-8%7^P?8ak=O$*{Tieb5jEO4
zwkwX<-1mXrT186NNE8Nmg6AHZZ*J>r7F)~oC<S#b#aIyH0kVf&!flW21sb_Vf0J0L
z&XY0I>C^w9?Y*O#YP<G9?1BQ10xDfZKtMpcfCLbg4odHc^xkVIDgpvhL+?oMy#|7c
z^rnF%^xgvm2mwL}nd9@#`~IHy`^}p5&8(UGA6SrN<(zxpdtZBB`&?U4hIB@Q?fbl_
z#bx##&LFy#8V&^xRW!q_H7O}gC-LLRs3vMqns1wtnZK{e?~>I@3UYmd=ytm^IO;Lp
z9f*xSX@U8Wx$$4Uhd{FmwL{MU6I3)Z*MGEcBjr>Pk`Obxcx4M0Z_e6zA2%#YO06Is
zsG+Az!qL(}kxP~%>qnGD63Qy!i^~N7^oz0f2~k!-_xARejKs`)9da&=f;7%&C4-Kh
zLJLzfZzC5e>50DAxNU-H>S1P0b!*3+#}erR<BVD|%sB%-c-h7{UC|v3d2e!m>fQN2
zkfd@{y!W9!{xN=~`<hh@)*6)%y*j7uyanWOWws|D8>+TXMxV{oxm2B{Z@c>!1{@s9
z;(sFCCxp^S`?7u(ZcCVfHIJ^AYgQY*^_HQtZK>z#PY!u)euw{6>R;R|aQFug_K|JL
z_~e*aiKvV5XJ$SZWEWtdg?#jO8JWWLJwg+l61Kh?c(n1vT{UDADbZuKdkf?3?MIqv
z<y3zP#9ICwleZdp*X!lK9OjyKa4MU&`}l?R#e#St67Jft=p<THM!~BzI5r;@3IwN&
zS2dqRciFo@0SayDx=jL#<6qr`q;qeC$j8-_5B&0nx8*6|HkiDxz+;OB7Ic;B83%Nv
zaqjA+I3RAHS3WC)wDsgX)DTk#1%177n;G=tY6r+P88~fX{44_O;cbm4jwXz%<%7E@
zYAoaC6Fr9&2_EreFmp%K&_2QbDn+iOf!RPOSTBrvi(fjs2KH@K{{iDMmjK^AZMnhe
z7|6LO1jA&G7<?FXPoi0&so1bh+W2eiR7di!cY3$Ks)_{Ttx?w)U558ios9_&AetsV
zh=h0W+byNmUq3H#f&8;rNxz>MgiYstzs3^qx~D~Nx2688(bL`37o>PYUoQ0~R^<S-
z*XCwwsDi2ic1&LlxQxpgI%Z@!((9}v>!F=kMPlKol$Nn;V&X7+3PD2@3h$L2b|W%p
zDXsI2-fC0aNh!cjQ)!Oy@p=bf60~I$dofQ_Pts}AcL$#tD(bUAQMVcCcTp+18+_o~
zW-0lpiP+zlEz*ta_xLmu46lpUhiS|bv7<8HW<B}SFE7=fy3W61=sDYkN~|r?gLY={
zrda>`vl1B$b+E*rVCV<?;Q&0}1I@4AuarGi?Q?+Sr^Ud|ftKBJfT2<(LF+l=5roYG
z7^{xYp~P_Ea6Ykvy_U-<>;Vm~9zaIaeY7vMMD)8|C@ynNCz0w>Z@<kcW6xd4O20SV
zFy=lv;fK|b1I%!H;(?YaSnJ2|?A~|Hs@WStr&>g2%c^#nl8nSL^2}*ol{wa>UbU1D
z18EZt@6H4Tuy?t}f=#SJ=odRP?7cgAWMsxt-{FlO(h6}R=24F`lApUCMppMz?N28U
z+!l}#aUp<yRFyeTcD(5E#n1djGATfdUZDVMi>-@aCHqFnUxIi<KR&b1I=-I)OAzc#
zGbJSntPEVFy-ryRa{z1KFr($(Pr(@|guZr>W5)o|Va=Pjx|Y}K`vc)8FMp$Z{fRMB
z!NXKgin7KpXd6Fbc83#@O6moVW=*Ps<Ojg+RVy2BW;m|bA2#>r5t;ambE4uK&8Xt@
zKt>blO6Z5J*+4dJ)&HzRtetl(r7F?ZMy{W!yP&(PT1hW<NWb;RQR4%L&l`m=6B=~)
ztB4t8913=J(tE2bX~HQTb>3f7@EY(Xk4(o*%no7cPQ=9WkeDGh{-H&pM3C9=`wQCQ
zy%kySjxvPYT{SlM_wtd~V))#DbVQub0CDKGfRx^aX6gs6XeG1y<>IpqLu62(zhT4c
zCJE|Kmcx7E$+|k*v`vk|P9~tiU25&mmse}SeEVG96M=TxPtD$m>Tm<IRIxDF3~LDE
zDdGF5II%`@90t|r*rrbL$qqtFrhQ4eMWfpW`Ud3f2NQi4G`r8ot`FNVS2g8>FIBu)
ziYt(`VGwmI+S2)m`vBkVxV;}9(*{~lj>(KzG-iMCaaNO*=fvqZ3sPbk6+23O<^Q{k
zH_&pg9HPqYpeIc39D6vSaq;eB2^t^Uh}h#||Jv1NAoS20j$L<$POxDWxj&_+brr*Y
zG|mT;qJQ?Z>Djfo;n3oJxV@&wyN9hlbMykS&khP4G8wZxWX7FVod=UC>-@0(KrUle
zjfgCfA#L{xJZ^E%plaLIt(qrX+MF(H=xr2xUi5|Gk-S+03+qsQ_yw}}mLJ_)i7boV
zp*IrZ_);*K1{C;AdqvT0NfLh}fjxy7F5YU~8Q`1ZD#yQ~xGHK_r}>p?sxvKd>wbPV
zRAUQDJTrgnKelhM-n}Sf6(W6;?7c&wwv3(CT^@<rHQqGH05w)GKux_L_7p|B@sm}_
zF+rwOQDXNjm|ah{yT=81J)^<u1)-(=o|p`fdPO34zKzKwDcr&9w_Y1p<sFcD?oEdE
zp{x3+E@$GIgF&5%jNLo;+Pjw1E*62>^2cM`XhP#GBja*@;q0nl)%({mjx6)tt=X4a
z=vQwh|FXwzQ%rs^d|+Wp&#ko<s&bMtI?y#rouUC7caU!x!uz&7LtzZkTnxkOE(1ZF
zh?Y3*__bBgMQCl-y~R&s7VsKWYt)$#5M8L^(yW_EOibmDinnDIH>-HMeKU7WH9>3O
zac8ylHdz_;qyw-}o7LJ2@>Zvu&5<R@5ro%U3qtH+yl|(HK|gQZi#u&=h<y6<smg+O
zkMPKOwsJT(`|aS7(f6~61o5BwX}-aU$)>a0)a6@;%6P{KXx)$VpA4OzEnm+0;dDQT
z-W-AGPc^Tht~DB(vqgMI+^~bHJlgs+?Q2(YlVOYHeWVNzVP}qa>F9zu@rufK&quRN
z+VweK(kpcIPJt|@Q0;HS6Hk090qfnRR8%MDcRYSDwomsQcT>drXs?uiex;vvI(T-%
za}LvzUr9{CSZPWQ31|A{>&fB7MwKrWx^xoDh$-^Q)d*|6TXcn=UQu;}42G_R-{hKF
zf`Ik;{hVmLY#8Mhd*#j=_yU<M#Yf4$h2QxrAHupTFvs3Fh#pH)IBSr0Sf`X}@`lM)
zYm^dkF5hbC*U$M&##P5Br6q9mC3>u}ICqN1LpHJJYq5+#G0&Dgw&STbDD5s=?Rtel
zjnV05M#Cme_yF>F_t-R<imqamj$E+LZ4N4Q(4Aehnj61t-QSaX;{l#0os&XAX6cR6
zPGon#r&HC$%wO4BKhmk=%yamY|J1Aq)v(8bQcz;{C9-c`zrJcXNTt^4C65~0od&cn
zIUFGV%RF@e^E^cm3Np`&+pj8+Tv|}}3+H2Nn;p$dw>l5ifaD;uCA&cdr{Zh33D%?R
z^}(GC9}vDYtX_drqCCjbrf&P?n=x+w?(%;cEH&$|db{qbihfs+&`^DDZqCxN00eIa
z<E2^mE6**flpjuT^0s~4;LeK?=X&TEk2f`{|NJLmG+7SU!Q9!yK=n91&S2?&7faOl
zZwcA_1dN0)#4y(oZ1?V%i-y%A1ppoK*@Yvh^R`Ky4q=7XSMcw<)rhjNPgBJGV1Yze
zC`tLsD%G>n9jzaN5l3}FngQEB(@)NMymCYy*&U<9hhHMYm1C(Zra`O^awKRrlP^-{
z#NS$z(NR{xMn-&CTn49127ZW$0j28OX-6vQ^FmQBg@u;p&CraP9-u;U9ND7hqxSoX
zMD6I{k>bAFYGFo*VF#y$=?=Tj!Q`dKTt^B6J@e~IzAYfmK`w6y`IxxzIyC{Ae$$=B
zvy^;blR^~T7A^Je_<`2Jo#$RY!k;vR;RkkOr{#JiJJRZc(_}!Xu+|h3Wn}+B)5N=2
z)-<EFRfkgPH=^X~nq{CJ{j3%XI5^wUL#!AgT1@-Mz+|g=i%TOWjo0i8J;(7BLLU&l
zaL2J?*!ddL!05KNqvdPN2#uy)(Mo+sBajNn4XV;1yL>^YrEt@$b#A%%QAzCKj_&MP
zNm`9d_LqAi+C`6J;vPA;b9uk&OArVj$VJ&GC7wUZ<0C#3{I+~;{B7%TJfR>m?VBli
z@Qxfk-m1lM#!hV^6-NZ``_khN|AJD;0(sl6!KTr`m(-x9*pxhf`ICbV_a7pmj}q9;
z1j);14ckCM%AgDhtyeO0>Gyfa7N%}&aqXa=!d(6&iNZ%|rkJXe^Z>rUlg+EN<8om{
z0*Jeq&x7-4Umf{eNdAY``}@}dh%&D-hvqjOYXx3Jiq(Jv?Itt~lfBMZWgUNRdk&fu
zFazc(PQLC^Tz!~$YZ0urrhJ0}g!h$PLuM}7^z*M5vOW3<?!(R4MI3o~d?K7&iBt-N
z9;f$T?yR2sbz!`!%VyxPROTrQD{NcpMf#93J}`VaJUCz0&8?GObTPqbxbI|Gs5`Ng
za^Y{297>5EX=)GQQOft8($X;0@ebpR?eFOZDK`^VQ-9_(g8AgG@Jt5UdG_xzAg?L9
zpt%Zr|E>s4yR1H+fv*bIIeciQ&OlykY<~4HSqDkd-hB2v47bZgX^bDcH+f{k!22zz
zS>3z!b_q}@F@3M&rQ!wQaSrvc$cL}zJN@GO9wFDKosN?^3{TmKUs_gH5f@MH^>2u~
zI8r|pktFm6bBFcW>sK%tT~77!UcI`X&O&U+otk#<7^TeCDA`pJ^q4?&l#(1&@3`Y6
z-&;V4&x}p`N3l3(mJOw0n}=CX;*T_O`$ClLrNU1dmvjs%ro>f#vUW-$mNd>lx&V52
z=85mX;vX9{nOFauy1SbTq(vWYK`ixogI-@GyWe^TURFd5m9$P%HP~7f|4^&)aNzKo
zN~Nwd-;nX~zLuNDjna3p3A4CLl^*}rOY?Ps?L%f5-+3l0BgK@57vLaxLEW+p{B~35
z;EQTffAh<tp;*^5>$v={BAcF~K`YU55*QFqEN+{BwBw*k)vQgkNy6p%2*ZQbsgB1v
z?T{u4pf#vKCn?-;8Z~KgfD$(=oVmG2X9lTe4zeI4n|Y!d#Wt!K2>C3*>A-a}QP8wg
zoX{^F6*s%<e+!d+toWwJbH{k})`Zf;gF(&$V@jgol0Vggb)D0@7RSbV33IxvLi#bS
z%x%y+v)}`|+j`ORtKLp-XOUZKnGYZKcbQzHKLe`dlJCntG%&S#NV0@Ra?Q$V*6ycb
zsKt1{zPnv+5SAS8k81L+y5?{#()B9y$HIVR=Le0`Ds(m+Jr)^On+#AHwFeIe_$Ket
z>Y`$y?&T`s;o0%$MBHx;Ln!HUT~O>(Y+XWrgEo0VnL=A1w}kxmoMl7BfxZFyF*h%p
zCMo+)1o<A3*GfJ8QWDluOMA)x@oQ+fC*|AD()s$(Y5#fN;J_TvV)7B)jAmsowKAM!
zW61HlDmrOQGNQSOP#r&2dHdJ`eWN$ht&3xZ?{1KVK6h;u@nwN+DB+B!(4^cu?I()k
zr{cIflr=5g=6cfJX0*zsWQK-Ay63~67l+idcK5;AnD%<+MXi)1_ddUD0d2zoQ*sBc
zx$WD*p7panNla0Rbo0?Eg4HrSAuPN6?8Pr95POxQe6yz};ah;>+ssCp${Rvd;MsS+
z+dCU-{Gi$cznHhjtW-dJ<#u=j$9I5UeGP5`cj(_)ZoeX<Pmx>?))|CX-SMQ_QCYM`
z%^$S|jkYdjK(uJNej9aJjr4W_b-Qf%a)h{5e^4)m`)_h=t;d0ktSZzQUS1lQ^@r3c
zI3PU+a2|~1BpPT6HqrUR57rt1Gg=utnb=&6l}@x@vNTj%{V8o74@2Z80~9_dJVIy~
zPA0urCYe4M(`sj2m0a|vx-VbO6&M~1`R!s9YXhC^YM0<7AIUWpgQANKsiWOhgHOmx
zt*Eg@mU2=U*VB@1pF{fT*a^A90IPz!(TwXM918ETUO3C4c|Dg6vaLu;@NJADf`T&k
z#4L|Z=?P}WPEYvw)roa8=}AoyAx;btM0_Fe#dTQYb?BPAOa0HaV~ggYlt%AhL%vCd
zw0kXly7E(n-g?fZRPaJ0@y%aytd$V$*d)sGhf|0|ry6a$RkOF4$QR5WP+^G|Kb%z-
z)pJf<{gz4F)~*RpIeFK<;E1d*OCuqhozCi+vAO>47!T$%qoaXK049nc;S*~D4F=SR
zC%h#&;{qusi;^JgC<U*{>jqHqefgl*jYk(kt*iA{mz;H;$0|AU$n34Q^K)T4>fS=I
z*W}S6TCI(TYIR-UF`y=;^sMvYi<f=R0mI6<DinT`{w>QV4Hrl5(AUE9Ple<BV18Z2
zJnFhTwWC-(k5WfijH!lsH1A|iM+NnvQNZlO1g($8;<_j0p*PQeRjrYF$OLj2mn@gX
z*{xc!9&+dJ+&f4Z3IMEYyc?vG3*{}^lWtGFZ08Zo(?7cfqzs8Kvs{B--H89nEz+b}
z{vIn#09cLljPPj}&MQ%kHH3Co=pv`mpsdnmmG4vD)t&yqZ<|d;bi#b0O8AM}c*|^)
zKty_wtJ@d=#dPi-DPAkJ=MMr<eqDd*`TVy(PDt`^C!|=Wg1W_CP;NJM{_#bi`14mI
z(@VZv%8$*s2-^a!d7>EXn^ivjwzj(ag13nov*?#mz&J26n=chaHfEz%HQ}mtGNFvO
z<a~N>26SpzMA1dRJOe+kxQbzz-WL8|ma}3St42LfCk#QoAnq@>=T0n?3>y@OSnfa!
zvjSEw0o3Bbh>FU#se$#eDNWkS-~Ngx%6ibSnIdL&Dmo4*;{OF|xYEeL!MwfJtNmln
zOK5&qe5o^mZki_8k=jZ40peg)uF@1T3QGklLdTtvq4P&-$&JvR^IT;(!cVUXCuh5y
zc^xXVvvl_{q;iB59S4V7yDD?|$*+9iGJ;;LF%<QbOQ>17ZO{S|thxIK;rl*JB6Ilz
zQlruirlfJ2C$Z_Y+eSRoGe;pjPNvC7ZZ%tio=~9G(ldtITXl~@sdIu1M0At4RcBm2
zZb`GVpBC4tvdvmfbYdXxRo({{mfhkInve?66_v^=Zl~h6c0^-wsM38pE~qXi=~uhs
z{=m=3MmgNdhxpPYiz@!W`E1^tjwuEELOY9A3Gb=XwnfXpr@PyPdt(+yAN)&Mr~54j
z)0zSY)DBZrEREhhH!=jp5BLY$y&rGRutVZtIKAK|E+HC9tX~*|aM@k60BNl-jjVt_
zgm|Ls+VOnwvSAFOoTTcO9enN=?>M>i2wypyAs(<*vwzH71r2rZI&xoDeSK|ndI;9f
z9TfiJ<g7hT>qi;5)1x|w%`AtSedR;~njXA*2juKt!geJKkcNJ~qz1HleY?Z|W~BP0
zkYNy_))DMeAygBBmU8zj0CW5TN~Hr|o1X@gQ36w0PdS>FmiRY7t;N|yqc>+PliPC?
zy)dsT#?TOZ@3?F2L66CktBysyXI<-ELaK9KS7LUfJ7&+AADiO?wNq;6&OX|8l%$Ry
zxIx@s+k()L#2tTet1DzJN+QXo!#t6#BCJN-9@fR@(7yj=>5mRcDhi78>8Dq;yNcy4
zH`X`*0*S8mf4ojm@vTK3q^2-Ee_ftZ*qC)iX~NlLT`lLX9I+sfx!339(~inYJ+Hl&
zScfY>ZBIUi43GTqWdlmErgNmx24xbJCIaRs6F0A}bC{E{GovMF2cIWkVs%b^>Rn`M
zBW7VDo0OlOC%b-4=iuCT8><{fp9W8N+@F2`6Oyk^Q#~MTMKjALB^^v|Cq*DsJQ9<U
z@-_p#)l_jvj*hbhmz^P#YtfL{YhvC6H`z<U*-{FbfW&{cQPR*~r82GwU;InF4p`|v
zRva^lD1jKqpHtY9JeDmLc?qqa7Q>_Id`IEoZ^_+v)%t(r*wM<USf6F;UlIM&Ix;am
zs(52`8C1}C7z|FBK~rFQ`g?K`=IPtLf9N?6&#Wi9XU)eS=b+a(YHTZk$&;(~q&cqD
zkIxHqF~5bD*lb$F{<?KAskweyOKbaB114^`TbXk9lTN!n;~D-)n;to{9QfR5a3STa
zLVs(_H0>a-aeg96W2nyO9v^Gxar(@3iznPJTssjN8+<<}aPP~w&yM!#g)>U}<@Io*
zS#|a~FdN<*zExhWp1?JGF@qf1WwrExK<(quV@S|_2R)9lgFR;6F1k8HSAtS7B^+Mb
zG-T7K7~kcpj%JFx_d-1?DgO4(lr6wxj6S7byY-xkXHxDICW(-Q&BRV7W<6a$vM?|0
zL8dTbNci>UlYSwq{key|;Z?_$>-S7B0@0A(1nv4P4veo6M)vCK{8!A}ngu05!fs8G
zBUwoMeE89#Rw1?|$p?IB%MRr7_GQ?!t#Xo3HDY&|2_%YCO`hLoRQza96&G7MDqC5;
z<t6oEKy-(_>y;78p3w7gVim$sSp7_{u@cqn(fK4?F$&-e7K-|1AW!vk_Jdr5lKD6*
zD;?$>s13~C9x_-2R#m_cL1>S`LHJJ=Y45S;28$cOGn@QwLRRNOC|pB-J;ZW+nYlps
zO2>Oc6m}{Glf*vtwCnz@I?r_QODtL%<~51RNVnlno)lgmcruzH9L$Jmn-o=81qr<h
zwy-rc`B5P-D#uZ-0vQqL+lal^66B$D?q?ODYG6-VgXFi(5au4z!}CLX*P}}#=Cdr4
z`@hh_dcztSIEk~JHq-N=(6-r)te-As{Ry+XIgO@qRcgHHn3F3!;}9fubn@@nGO3HQ
z<VJu$oVr9NJEiSsnW>uNWTI89o^TE_lz1bT1y<xEK)nyQ`p+AMe7aF9<<Wm=a`7;p
z*!Ja95}by&ci=NwS8=JyC{6wK7^WY+0=Rfi9Tk;Stkl}_2uV-9bx-RL;5PrtSepCS
zpK5`|$ro3t;1sR0!_<fQ*Jf=-rsZxwHrFxg>kv>&y2Y$46~y|iR`ZVUnRi+D$FKl<
zle-lTU3a@WE<X|fk`$W3M4Hb!J64F@>{aOd5s@9rGFule!K18)o{<_l3o@KKcS7-9
zqlK!j4Yl-;nzNOFQmf{Zf(;q(;M<{*6JEEL)YF^|S4ZNzcU7P~v#$n!fp7)yZH$i&
zt|+-WUWzLEuw$B%h-vv<7G?1)#04p`9Q#vo+YXKY^-l9iUwYLvAzL3?bu)-}X8F<p
z8ND<C1U>W1tRUt>+i$rx4ugd3{blqTZ_;&ayzz7XSZ)0_Yi8c4V%5olubQZEyRb53
zgL%_v8f5E8UTm@Qy25LZwhq)lr+At}&ZTQOC^_X};ADsZ{Iiutlyj_>;O)S}k1I7r
zdLqGauap{a@|Sx;Af-|Z(q@)6WJRfYFUO5v{T+3$KK9<@yq7cSP>(i8X=7}hy3gCq
zx=wpOa2;{ju*U;Ql{ReXe2jai;ugrD)LbZaytC43%E6|&)+zS7$g!EEUetCNxXuhE
z|MY@<Jq9R-_daCv`TU8FLdpN^B-MJ}=Z?{s+hK3DpB77yL&P#Q>z2$q$Ib0$&eA9d
zp-Hks6SOIA+^*iS=x{Kp!k56*Y~5kB{(hsIh0uw+V(q;idBlno!qp`ApYxXfwfQ6<
z^YHk(XmQJ2EFVN8o0VIo9T>ZpzY=A`IDNM#aSoN&t>R(jDo>C(sjy<T;3Ek2ntjv3
z^>dlEJ}*fV4A@fV?TBH*SC!+5UuZ!u2Pp3HJGLprFbSGeA4Uy=1zLg{_Bn$HdIvo<
z{rxh<4_lKbD$p^@;KV?u8h%G|iHaaVfXt?rrvp?2>(kaa5A9d`p^o-|N7)fGFO$jk
ztfCrcmPT>fBQKRtjN~o95<?20Xo;W%On_8p0*ipU_o0+Qj?UHCpjU>UPOtk-saMeR
z%Fm_SkQ9=noH(p9pIHZzjt)Fte6`@UT2krac(xDHVedbiWSXz<*0y>>j$F@TLasAc
zcY^W4q?FkHNVnJlDHZ$~C0SY$peSuQ6QqJ8k{GFWJ2i6jLB=d#pTgzXhsr7>K}dnT
zQn|Q!)R5n{LE5g%(u#6bzw_WCp&9#=bZL*6judh{7>voV@)=EFk?)bZI{kODB3c+E
zeM}@x!Z?VXnw?eaNre8A#lV8d(HnDulP6Zn!{<H_6wJ5BZMm=3>Y#^)od{*?-XUEI
z2;$#I*Q*Sm0{(zX#!7YR)8EM3TO10jw_O5d7_9<jutQ?4>kj-11DV;EtlIp3sJ)in
zByBy~e9ab$v0pzLNT?kh;NtBdou_WK9>4gcito%5nzvCO@HyhzKSt0V$W=KEAxMEZ
z<BzCECG#Icuo=6*yQ;*RwN_b*+svIZ#I>(>f(($m$NCWl9+Cr)jBx3pP0xZ)oupi^
z@5jtyU(6(DrrrasBhF<*HAVEahK2(=kNEQN+pj;k$$h;Wdw3h9Ch&)guM(-`&_wzd
z!K(XA(?|dv+VYIEHlc(AXeGL>oA(aBx4HUs@+i7-M2kYjnN>jEj8VYBVrI>tS>b|-
zPt0a(I8NR1UhtJgEjlihxjL$XJ;exA?pLi{0BGyH8Av*~nPVC^Aqugw?6lzs$njvo
z@t2w-<y=T<x^3H|Fz!Vu2<y1D+2PrIwud0HN!2Ql(<00DM~Y&Fi4!7Fii2Eki~Nwt
z#{EeHaVJgar~fcRtW))OEr;|~W&ckau?AcS+Dnz^MuhYF{v!#L8@eg`_EG4dRMdl=
z&d2xx#Z^u3POfHUZ*|kr3l}6f7xS+Uq!vaby-upev2@~i={I=;C@k+AzQF<%qoCZ-
z5EDp;K?JcnUbKyqJ2~W}aWS#UX62ztagLuDb4LBuvHwU+Q&%6gDL40{SV=#J@7;Do
z7#3UX<)rx8fRjdnFMc`3rhQ6m*??Z;UB%<c8a?$Eo>HSBf=fIHP`0)>ivvzk<Pgqt
z4|?0Vs#vL$hBI@5moX(KDgM$`f6CZ0w8Z(8&Mo)n!GkSKT#R~P@^t+iot~Tiujf*0
zRlmMle)yf}6Z;8hrDz2_)Vvl8mH`AbW2_Lbt@gixSapxwi_kdoW7kBEfPqrz1HTgy
zZgj`?{2Xw;m^<k<eHO&69o0`~=dz?p7HgHNVkCd8!(qCCko8-QAH`(vd7IoJCOCre
z7cVv39Z+Kf(|tbC0Q)~=4ymhn3m_=<SUUyD$b=+;qcY7kxF-kj9qzH{EYsNLu)&|V
zVvGI)(UF4-LS|{PS0<YdO-MhAQGZ7^wKKT5)vx-lO02gfoD|jA5+udE!Vyq*erh5%
z)oIY<VzAbsZxrxJHK4ZmOJ?#JH2qF;lp)Aq&iCj|&Z5@p(_{5yIzkKwV{pdE{KCrO
zm;)ybPzq<`$!#0sgkl0qLdL801^q&YJ>1*_NY;3V$$&I$meClolp_8#i=dPOWl%x<
ziu?IC)9ZuA=Vq~$CMzM**nZv6dhFq@&uKy9#j?U#Tl|un0?jJ<bZ0_u7+#A4v}y9H
zbe64x30;#RQo3|~QgTy{u7lgSNaI`?S#-jBd-o$pg%0cHwE7?o7v+a^ii~N!fv+w-
zDlM_3Z%UB39(bc3wVh7qD|n!+OdNAWya`h1ajGD%8~wBL#%z6V8dBC&aNCJO#u*0D
z8X~f%pJGV9^J3e2vc<7<h@3jbwliquppKQOqapch#%Ri5aEs+O(y7q__c(38``P5Z
zZ`8K1rVd?qDYtP+?>p)c?!{Z6W2h`|t|Xl;NcO5%?NK}&30m?F$a>mhkUYxBE1bNW
zbW&8^ZzJ$fS4^$-qN~^D>5soQr)nB#UDZb=&&7krOkTC6WE?>++CRwY4eyW<FnMCI
zrch9aeGSa_t4b5m)89{7pS8{4QLcQVkU_i~vm57>Ev^V~iSLbZ4icKHe&Oet35ddg
zJma<2mW}HX%Hi|C6L)E>C{Ms_K!CF(vkXAxU$hUqk$W*sPx4CI1+tb1V=NgD%9@M}
zPDg6>BH|G*XvxS*7t*PKfYXZuo+|$m%XtFyy2O<ZXG>2%3sBne`}gzpKu4v;{r@iE
z`TqT1|6Kq?R`&Yenwl`C8TL0)?3KON5g>DFK>Dfgh5GiqWANN0d-#s|zdrUP<Zrc*
zg~6}lRvS^5DuE{Ny6-H2a6w#z<C%L4(QjRiycu9n|7$H!U;L*w)1N<HzkWe`AxzLT
z?8uf~dMF>-zMmoeFP*RddeeKxn-~5lkNk68{`8+BCBXkKKL6jQC|+Rue{jA3`1t$x
zFaP%;gn#|@fBDV-@uok&{tv%a|NjD$pVFO;XSm1I%4a0%{uX|bJ>@ZOso7+aaQ_LY
zTgvwQXau%(=!1hK85un*0DZ}XU>@YA`ME(is774c6sUXCt7J<4f4xk_<d1AGNwoyX
zBkhOdp38q@U!6+rk-vpo|8WCk{ioa52X<9578cHmz=y6Co2MZZ|J!!==~TbpQfY;A
zsEXTTE{y#V`MF4^+x~g;73(ucKo#!3#iAi#&THR9ng5tGT7rx$_adP2^&hKB^8dr#
z_@5a`9qmo-)7aUZ7kLlziWu+u40w(i{rf69eyidG>u1+Z=GR33)>btZFz=2^bw2#w
zRdfT`vO86)z;UKB9=kx+chUk7sqg=9?-6h${^N50$A<MkyOis>b3b1ZZ3-MG@3A@P
zp0g2IHXW${Y{Wm7BK?K&4E>HauZQ5H?F5<NAiLL{+0uZw`RBTCb@{c+yIW}FV0YBr
z)$vlT1Ju-Y@S}ge1fUTI{@>m@c<pgMyg&!cty5cPIhfsb6JTEcweAbIdJ4)Ny>w2Y
zQ@J}pJ;pgHUv2E_8Z;*D{}ky-l)Iu$_Kl9)xFl}8)I{rG^+r=T8C9$MYJ#C?xr)A0
zuNoJ<+D^KtWgm7_asC=>+)S&-w0t#{8ODomosInlx8ZYBl4H>!!{NuoO2d#nfHC;j
zx<3Xd(V$3-C=xr0#7oWhW*}&7D*s{`wYF^caG7eFCcHz1tJRfFt|(aANImnJoeU)N
zYW~z5LV0O<w8eCKIonyYN!5-(cRtx+Q~lWVAnKWGFf}>FfCDi3I#z}+i86z!*FhOW
z9F-yUm1-5QVk)OC5$T;n2UmDp=AOX|ephO?y1yhJ$k3~^?0=BLZ<5fZ5Yw05`M{D8
zljV*-up%HLcH8qqfqp*J`C#*>PnXl63*gCm8?$uO^0v#`WUvWitNU6a0RvTdE+5r5
zV)Eu-rya9xLl!@6G{e~}Rw3ZFzrV)hcCdoLtH!e&p1?YLr4z=cifx9{E!GfzF;UV1
zFRVw-bw{$KY&s>0c>ih#LF&0=Y4+a~B^n)~rpme{@2LOf@`3xduvQC3Tl?W^vyaT|
z6t0Zl{Az^azg=rx=tu(R2Y~E8((>x6&fz=7t#Fa^R@2Fp)+b?~5kek4dhnLtl}Gw>
zh)OLZ&Mzc=WR<CT5280cDY!57cusJXSo5|jZLZGjj>;Hk^iD0)VF#{tm=QU!V3S=J
zF1ax;X`I7~%ZWFgS0KnRAIED~=znJ!luNPM%}ld44xA;B7@cGw<1Mkh>FYSJ`JwDv
zulIgQVA_m_T^u;OOi!E7+77w!;4w+zfWe;Y22WgKW>Cv4;4dpPs9_T)!wf5f;}i?%
zMoYHm`8n?Ft-<NobK$_iEZBU`U{E}%0~>73?6);lSU*{HI)wv->F2KzCPp8^_dU}`
zHakuSo(Rvherb!DJHeo>Q^kdg0_{wTv4`-^@Co_qoO+wl{xo45$g`0g8JCN>r@w+m
z*S(m~1`=TYP1iu<7T52p$MDs`{_L^vFfr-Pr`gqGZ#VdwS5i2mU4ZV9ZKpEtt6%Mt
z0PZb5ydbDU@-`E#<(ytIuR)z+?bnxuTH)UAKFuRVOZfr}y0}b%(cZ$Slp%+)HkRtf
z8%Y1B{%0))oeHrm_2Cz(YHP!XgMv>zGaE-GV^$e;(liST-hRL6{)DsV6T*d)K5){=
zbLZvBKYWAh7~H;u87yN@@^X4}0TEtqa6#u%3A<@v_hklD<^26C6f+O31`}&@)Oa{K
zUzz%O6`VC~`+ya{vK-Ix2|OcZ((=&0qgLAb_929m_Rbw$O)6%|hom68md9qb@F3(Z
zS4U(+1UWoV(){ZedO|$$3;X-ipUXrJAbmd=tnO5*OcxD=jUt_<SIy+l`QqcHcGzP4
z#-3Q7pW#<m`XNFGGWjb|OxKRhOMe;H&i1|P^@nDzHJOrL%E06|AIqammmM3e^-Q12
z%gsLXpi=GHucfaxl~Q)5{jjS^B=H|C35u6W7_z0^S4tXldX*;YBBo_i3N2E0kIdeE
z{8oM5X|7rO{7N+@UnJmo7mVRDqN0qQo9!sK986XdbDDchEqzu}dT;A+ccZyLtCuQ4
z)InD(%VQ5K(6>7awp^fz?biyqnl8H>)2FyOS+0?=uU#&Md2+#gR;-OlfD+t|hTZ<m
zTlsz~+9Q3yU~$ZBWGnAno8+NON#uQ(b#^u=1TG12Zq`KB{;HKXqPZ{a`AF9~P<XW3
z{-c$0N<vkZl;QM);_c>`@@|!&<Syi?Zrf}F9=|r6p1$7fJk2&AE+EAAhHG8O*e(>#
zYY<BoFou;+QQs*HXsxSTAcPjBSGUpg<enNHeOVb6fc;0%X(=sKpws5bwU%vkKqLwk
zstm$5Y}59D2iA@T%7ucz`*1dtHlzcS6<D4ScN^^2az9)$&U;NMqn;zE6$X1cq^eM?
z*X}Dw1M1M^GZIOOi~CsTMDWJXgDqAX<4N%xD#6LX(MVtC)hl~MjoWlO%@X;9N4pGe
zmqD8QLONJob)F)su4;=0lqKy4o!KeLE^7I-daO6ibtYs!b^B2vZW27QiXzLsY76z=
zeRzol;}RR6$#0Y<RH&w}6OzMF5<S&19i*$O=yg()V$7yTc}3$qAkqNU2J-CK0B<(k
zJE&eS^eCn}N~MB;NYA}rN?erIDbtR($x*KmE3Zc2%Gq8~E(J;8c!jC$y9actA``l!
z=u*6$Fhay#dqf2r9=k3~gjV{&;Cpt~MbowznC+Nlr!)G&O9~YUne-Oaf@{7JW2$SZ
zu199`0$A@vdlSS`>l|`+zV5D7*l0W{r1|xQ8^M5#Ud|kS#;jXcz$D>6ZY<->nPxs2
zmBjrY!i=sSJV5N6^>MNqgm69evr|-=%e_C=;kwwqS=9Wo`RQ{HF7=|haR*oc-gwyc
z8c*f&9MKlexhWkewP^traMdZ-j+b(F;g;}NdlF1)4G1lb#1B>vS`N+|solq(wPM}T
zm6WRQHCY`{Rgj5^pO*WOOF2)}wjAzjmV4P>fzz9fCOAzuWo!=P*NjSa%8L>yZU|RL
z#KxxN+!09H*dQL!zG(A7^AswFrjgB>Ij~!<mLZOWAE+^iCtRi6%Gk>SRWFVxurl6v
zI5*_Y5OYe#1Yb}2c!ff7I9>E16qoL3P(Sb`t$w?fS;TX)-A|bNZAaDH?;owx4g;?m
zV5`iPvyMhgpew`83WI=N{7&uJa;8t=g<rvxes79Yv#gOh>j&slUe`fBz^*ZBd%sFG
zFs8R}-+qUT)%_gkcS3^1ll;0a`vqS&v+Yz~>CTg1X|h%uLW^WdZlry;4%}!%;_`?i
z#{(JSv9#RA`akaSxp$=S8yz`L4j+x%7oDD+QZhd5@gFr8=(PP<*%lLQ*#2UU6`Mz|
zu!)Ukoab2`OcEY+Jy_wUIrAzee9#?LYw>;a<1W9@U{GPh0~Z8O(ki@gu+9#9N5W_B
zSR&WfwnV$+^~hrf<!Uc=EvH#n*W;*8)!cet!3Y_TS7I)cJa;RtaE1PjWosP`^qaHL
z<0*Lvd~-ttYqTCV=H>=6Ti0&ae`7aZ1DibWJUfE^{K-_8qqOxi0#fvGfe&A~nJvjj
zn28Zx7qShV;0t!C55KyrjLe5G=gxOg4^$#+JA5#pQnSt~&)r|@&Mtl#ULd=NNxTv~
z7acq{Pp7DMFbPyUQ;HrAB$t_zJcGNn;nZ9XTV}kY-j4IS?yDn7j)C?qZO&PS@P2<7
zf|+l%sVKS-h)<d=u54OrVr*<~VEf#5pK8KN71C#5(qp~AepMM>sCCWG%}C23TRnp!
zPMv|tWxgr8!O5ezp=Lzbze2lGQ)whqg10vYER(Y#p~uVRv-L~Y*~QH$68p8`U`0OA
zKTXzcC{G_7G=lq`8zjwbIUM3_LkWkDMK(+C?ph-ieuQ4ul5SQ*OAYz@W8YJujy<Xq
z(6IsdkE{F+e$(@aSB8dz71I^gIQs`kOR8>`BS~p#uGzV-t&M@Z3CT#I;)d+Z!SX!t
ztRB>7=b@9~EL##!qBtR=N_>`up=ln*4rk$gbIBoiD=?TEovHg>Qa~Zy0uh)#V!o?v
zh;EXHLMwJA1{!lV-3r##W~n=V2Ws(tY=V|IT1*oJ)$O-X<qk1poez+Mu)v7kDlAj+
zdbG(KXk}naXd|mW8XjaO&3Tx)fStMft-Y-?h0r>Ja^;%s@gLd%Z-^b)bh@rPOwJw$
zSI$*n7BO{Fv7+nv?$()bYSyG9q+r2%R7;DmaPa2hTyJ*mpQ#T2S}hV*!|6MbLeV@n
zBgRGGBh~iJ)8(-0_x_`^vnweaQL1qwuQ^nbpDb^QIBOd^IgV$za5)$Tjx^5?d=C*U
zk|FWo)#{hj4doilyG}VLyw1=3Xx@((oy~3@!ZIcK7Ty+%Gm1NjscnGa_8Gl9WRS4$
z3}TLN0iS+P%4^G0iyIKe$dd9&oK6=_ayEgc$`(?QPSKM}>ATd4S6S~0m~MID8<k7z
zKbGv?;4^A?Ld<TESdM^nJ{c|p!)sE-Ix!WmCCz{Qw8WNUMAt&7tw`sW)-Yu{<*Dy0
zpxj!W2|2-d#N`hnLs;2rf|`yl<#|a5;i#W$nJYEOC-|&&rh<!723e{#sPj@6QMOr<
zU9O(}l)GHFQjn;ab`_3m+1InRy+y->+zD7%kOSMgx3Lc6y|V+v>>?{nQapp(f7?E-
z0Ha3WC&;S_d|)xu=`Ytq=~-wxS;kd4(I-Xb%~+)5*f-zMgVhxnxJ?C6xgJ7m<u7~g
zjDNqZA^NNwZ5k3Q;l3tfz6k2@S6+M`x~<1m_@NPK9!?vmZzI_ZC-}CO=@!<}>#Zxy
z%NLhoOUK|vKSdMEx@I>$sAVRmAJ=Ecio7WAO?EcQx=Z=RK5mq;GPxYHZp_-oBxxpE
zrUxN_XLdZ=BUcAi06~WMcQ55vKQ_jQmXuXHz2nOmDPDh8^l(TrTzVXuVsNyL6dSXG
zz0D#y*H%$8_#$xIPHA2+QL>74<564zo3TlAw#bXX=EmTS^S9Z}EK`WR27dYdcipP@
zkbomcaqnz-4d+-ddBOY*(bb-%PlQdfWOnTJjl$8`>_cgmEsxI9_R2GQF3~objV6Sh
z1n+Aw#Xtti(P38ary<8~?+erjbNlWkJquIm&4yFZ$@??`>8e9%Pty3nMCGod9rLKk
z5NJ0_W{^d*CKr%dH1Q@9cAZUzYKw@HGHvsAZ*ed%G-H|kU-k|Bw4@RbAj1JUmg<Ss
z)?LU&io7ic85XIYFAha+A#JYbA5mmQVY3Z9Meqe3-R8IPSGnb*Xa$Lem3y%=fd0j}
zE229pf=*^^YbZ_FI_TNv8PQ@iKP<-Ga@6^B)^5)oADP7IYXG1@KYU>x=ljxNv}@qG
z{qOhNN6b>H!E^0?CQ0nlc7+<1rklf+&0->phJ^@=y8)z-&EtX#6F5e(^z&za2fl&T
zqn#)4PuikGQ$@He&QE2FtTe`%*h&;};aKL}Q)gzJ$G38~rR%VqQ;i`_`IB-AWbK#;
z5w;njy=0J`X|7TU@|}}3)%w~Sp&N6^72qRncTdovsp0@v;bOV1uxz#6n=_Cy21{;f
zc}i0;K9I|xoFy4p<fm>X>~Yj=jTiAP`K}UdyQ*0^Q(`{qvc~^p?9}(nMrg5qbhvim
zriTBGcUx`^=F6OEhuzx3F}e%d4A+rwv%+jib8RLd2J!FDNO__=tar{I-sOL&ILv@h
zv(n<qg27^8IlAslGUf^N>-laut;t5k=$oIw@Vz`;1aW07A_iyPnX*eQnay7;&Tw(2
zebohxTOI~S<6Se)oU^J04A#{sF?dGVaXjjEO&H#LH&VH7NQMtT`H5jLMId9PJ%9a9
zC9({=(3+jOJYHsC5_wm^IyPQ0mb#Manag)->r9FHAz?zu9Ie~dxE;+W6gFOp@*cYF
zmsee&!j?E)BDcwaq08`)s6UW_uXJf_<Llc_o2guo1+}!?nfG2JE#8y|ST`S;jk@Vp
z8#q+S8_w!Ad)#lJaQG~`vq2=RehwV_$Yo+(8COn-lCZAmZN|cc2g^SUP^?14E(ABO
zAxvCdYf4!df$S`X>;JUnWl?_6+^4q~+sT>s9P#tV&|P`|j$@xmG@{h$;@D|B3)hIn
zT7AD(#pq*&p?zRl*T0ugI3S;JdaUbL<04b4TUj>GrX3g!)9wB3=EaZ}5k@8YqF6oq
z88_f_g^1#10!6B#Y|4~xbgH!bFF(P#Fz?#!32XGPQ94)=<{2T<$;3MSbTK=}PPh!=
zXh+ywk8*~NpUD>?S~;|Slh?Wak}GU`u47u;5|OJ>s#&<57a>w`x?`*mr*izp=C9*w
zpdxYhDdMO+0Uqhe@OBJkH__KI;E1zFsP?JO3qJsKTSbVr3tP1cgn_vAoPGSSqC#N?
z%2#wvF>I9D-AspbnJ{r6F-e$D`t>BW8CMefU4uGN$SMINt``zU9ei$;W(S(%7CWl3
z`)Fj>_yZ7+)S_aJ6b&x#AbjN*sERA0lh(@r-o}%}n-+LHO2=!m%tP73hhG(^NkG}r
zQF>k8nzhR%6mxW@@{Ej>#gv(58FFU&|B?(pYp^UO&*TZr;X}3tb(bO5Fp`Z9=@zem
zc}#<!RB`u^tME;UO?Q`xmdQgjY?1FK`0OXS!O8M%l<&x~p#!telv$H1eYM<=OV_9d
z5(+!p*4`YqCY2-mVwk0d{k|F^1~?Tn(iax)d(5GB>YRx^4+kr-EKb*^<>hHc-2kU7
z`r(&+ZEZgi5|cmNk8Z8hjb1T-Hw(hv{WKWUmt~zM8c?}xrxz007Q>^f$RPRnO?%5q
z?TA9J22)B`xR$f7Ns38xY*-eK>9{wC*F@adR*!`AD*j;PG%{cM28hID9Ukla21kU0
zhs%%6T9w~b9wTZB*4qnTtiMDh!Pj=YBme;7^_}_#go&n&s*$HooqasNY#ouRr=i26
zC-QwB!lltq9Tg-rJ**V#G<)os1LVl<C=2Agl{lfxXR$xoM1C@Ruxe40@;Q3%Iy$|$
zH^QS$GUrB+K49kmHdlZokeJ!Kpj~(Yo)Xrvq<0-59Z<Gx*|b;6Lwozd<c@v5q0|1W
z;w1HTzLSy597$L4)}#2Io1Ie)&nvFF!g(B!j+~15ni(;=x}IU}0cnT$yPOSc1#&YQ
zGFTRn*C{bpMs-z*G8Iv}V;lBo#!Jjv9A9q?GeoC+tP>wdNolvCe90EZGDYk0DlgBe
z^64bZiIGMT6matSg~9Z;A$*~@8MhH&+~(UKw2CNXYw=iz=-GL(2pG1$M#UCm?=q?3
z)`uYq?vrf3W(|06%D;NLyEDqNvKzK)#5SwG>$-ezW)F|$WUN|js!8A&-iyv?@|B)@
z;Io?`j10;UcsfDXHnz+a@cW&?9`QNNQ(OVI#FO=RU>8IecIbWPAPbC9^gCD)8%_i(
z*Yx~$+Erf<L^thN`<@5jE0-nuf_eaS*%rLvXU1E+)%s1T7yz7p2P0q$wG#bJiNQ&x
z^C}Z4q>_u-=GeIxR{cF-osv@h)YR|-BBL+sjkSsGs_L<FGLV7@VjIDuFzwNhHqyp<
z9$^t#8RNC6PC_npI1hTPGZ8Ywc7PFI_C3GJs@Gw8m{!tz_M2tHaDqzLMw<q+RM3wv
zm_a)S*56yzyPhmD%refWSxE^9M7o|2!$qWPl{&jSil1ipuz*e5gg+~%rY7O&*Nbz0
zXfshRWwXR<=gsb*X^SEoO)8S-*L25BLmnZ91)#$Iz3zMT{dGYbH{6U(`1Cq3P1354
z7qF9so?NxdQu101UwJk-DhgrLW{(6q&LVFHy6M;T2G9E%i8*?Tcm%T##Ir*!YmFql
zsXzO{%Y4-tetC%HV+Oyn1}B6F#<<3XeQux+a^h)MyrqCpq&zl>eo`G414{=DifnG9
z_tDkj*7YRH3f!`R`Qc>oRmBWlpH#1)!wo?^f52}#@uYd6pxZyEz&bSp6=%4PZDPR*
zn#1oFC9L8+@i~M2Kio|Xr2La<kK78`<SF~Jq=M%h7F2oD&(F|8V?$6~VVuH<v4k2z
zow7DdGV7UZ@yO4d_>&f2>>R@<kK$?5@*}E%r8j<yt;HtOyp>4-8d)*I)Y8Rv3kWlY
zL&V#{Y~cn9>kmfG@mx6@IhL&O@Le<I<1tD`@wB%^VI?^XCoMBzAH7nO`Y;1djkcJ~
z??`JkMy`x1Q08C-n!6C2#6`(t|Mt!L^khJ1_E_XyUh5w%(DqN!(sq4%^3`q6Y(_YA
z^Szqwu=7Gb=f`#4S@}FJ&L&0ee#7nFTN5K_p-s2yOr3IK9-F#JxZ!WC^5`{nJqOd-
zP08^A*w)4^jM_T-AQQB6eR%EIeR%|-e`Iv9DvmAE(ZWsqdxL>r(u~5$b9s*c+A?xE
zL$Rc9?1(EUHJ0fJ1)g}4K3uA@|7tk7{R-8pb!`*gnolmtz2j{=ufA(PHg&ecFXUeQ
z_~iUrns~5WUHDbO#su^G&*kOS?r~P~o55BnRwT+tPBrUZkfXqMt5PnezULAStX|su
zI?XfgQO_m_7qk%LcTLtr9gyjE_K+pq79t7o_ZbUuS7ExwA<A|1(P50DvOx3J`}MCm
z$$fXViU;?XKZsu1soYwhtY1%1ov%+=9<F%3m>7bv%ga-sbSipLeqet^d(|}U4e!UJ
z;1xESsiAa^^6g3JsP@EoICyLc)g^=M1m3$_e)@|zsFX36BSA2tK@K}thPYb|rv6oW
zRgZOhRx6T@&%RTLyB_qc2z~x*VNnJ&qBpmJ7Og2+-=|m|OgDd7iLJ=)qGFZc32)a<
z#d)fHI7<+=nHm}N2O+W9%~o!p8I+N-C(D4*VD7Txbki(LdJx>h6xdx+jop<+3yl$;
z&E4LQZBv6m_&QcO?|*Db+@e(pSsDE8<^;7&GI)14`5}Nh$DmLj(NU|Tfnvaq`h@B>
z_!o)w2Ia$FCtQ6jYFj$|rrH3Tvbhy-j5&6V{62X2y3Ue(4DoF@p1nVVRwG)By6VCM
zog!7cF<hbJWF6=Gvb_92!qKEWjopH7NHfC>oFa4TW^<ViH2E3fP^)PEu8E7An_JP>
zY+V^d(Mh9Oas9hh9)gbRREu8}iYH&#dPGpInLu$JoUis9Ek;Q}mC(*YKp!tgC8(P5
zX8!oDr_;lmr<Plc3}_BJz)q=kNo62WHAh*^%};d18^5l#kV91KafaqvtY~pZp=zjU
z1O9NdSXHG?U{n5Bz{fD~uzXW^HH5mizoFVj<!2iur)<gM7-4sZAE>0(nWZU~(}LAe
z#JoIR%F?S3?2lQ{?Y?r#v;xjZr*4YXVL!EUK?2PWkl&Ja+3+FZE5c<xn0437Ad`9&
zx295B^W+ah^#U_5pitpq=dUvAhbu@56>Z2&f6f+jzXhxB+GaSoTk$nhwA_S>=^uMz
zX;07pzN{zcFd{(82gdtp>t@c@lR*A@qgMMQCdn1sI>Qi!o#{ENQ|Z-yh(eu>1{gPb
z_+%lXw@|k-y(oCP$?2dvPav%dzIb|ufHx>vl)i>#ZpwJ9ec|1s|BNU{rGBf1$LXY~
zGpltLN7C^sMl&E(NdSig=|~}8I`aE=*+n#$4(1vkAh{?k;dfB5(wA)_>Fp>0)NGs0
zvNCl;qno;-S1YaH;Zrb+@Cu{O?}y7<zqV2tPLLEOtAi4NO0Sn;sP?f}<@iRWy<PHS
z1J##iPC=$2dFL%a(nbEsL3HU1e=sc%8Gvv#OUxa1Wa&7I+NKDYf$Et>8|W3uBsfk@
zzst#S+WJb4kk)z{8LX-RKbop5-&pz^mycFLrBsQVH2saha)Og0ax?^!0=@i!qV$t$
z)VB`Z3%VT2wBoae1$o;Ry|EdQ4GjK#rWGaRKX&IjdV^jLWMYf+5bdBcU;8-ylu19x
zM-L`SeE1#icVQ;vCb54on%p_Fly~|sOMfMdAMVxs@{C09@GV#wB{aM?mPO@en(45W
zPuNdfOJ9z_1dBh;q%9SgY5$KsOzXy-c4BYR%jyWgp3Trb_X^YSni!VNury<=9r+aJ
zzB<5R0`*L8^Rk~Fm9({8&$|XzQB;%z_ca!OP@WZI`0?8nxh*lTtg8BDb8B9*Jwp`3
zK&!@^^$LxwR3#hF;wRC>9*e8(l?VR*eK1{TRV4El!>)0weIt3r>S&G`OLNiY&i}#O
zc>p!Jwr^gKilQP%5s`?13W!wc9TXI$_ZFH+2LUMo352L9D2ntJnh1oJfYJ#iDo5!Z
zLJgpl2mwM%D531b+5h>z^Zm>2&hG5aX2y|mB1zu7@AE$Qb^osGu4iE4;Lg>OD`fU0
z;&f&^Q@w!p;xhX2HlhzND4>b%*n~FFmB&zd6CLGJIsKF$4YPr^<-G+AL`mZuW~QH5
z>q~YjZ;I{~9dYBeV)7u4yw6~ixC#r8;t<RF18i^yKmE{ce1m`!uOqmEZ$+@eIPwaB
zQ2E{XQNM>lJ(QK@!FtYZZ>CdZIlk|nP!%nL5J46#!=7#mW>hWU>-wUfRAO30leTRj
zssl5MKI{2Pk}(X9N+g4c5}(|N*_yaK-ITRJHvzLk?p?YP&&Edes8Ff`mIuyH_>=}$
z(uaEt)eaiGta&utYnb!cu8*Qino6`>P4#>)X~oW3F`9-XTMTj%!93xp;b#;5F0vN3
zC5M|e38jIZp?k#2j`Y=`Y(%czF5D^ElRnh=Zgv+o>ONzlhbvy&Vh66b$qPnTEY(_r
z>WncB=jN13#(znVpPf4ql_+XScoC<Ra8mHbm1C!xK?A}{=4O6T%>tYwO&Kw=@FqdA
zI6*VCHxNTMgTEOrYx_G(F*#c<D!%;l?c9|{2K@wy7jTJ}dg+p%^MA19K5N!fh6rA>
zr6YT>?ree71Uqr$5{E0HTm$v>?%drY2@p*G)3>JQ(xrFZC9G;esVZuU$yZ!4M@lGS
z3yq6;rc}1{!y1<BEcWhkhTKQ%r2mA5IByPQzE6^2;nR&>RJf{xFWH#y|5VRt<a)QS
zpbvdLP?TxNt=qH_3OR~W*;ja7UPVkY%1hA<lh0(jL`ZVZfcKu>nC+SooCYE?%~o}d
zKKN=W4{1)`Tc49<S;cKE74w<rj*e<HI>6ip>)Zy;NL=+W4H>0fcAD_)sViV?lyl{#
z0JRr&C?o88g=--4E@r}|@N{^B&=ssDQAEyHzEF`&H!d+XK}q5UcCa1uO~WP{6#`Q)
zUmRU)=t!0Fj?6|@d5uEdMh4y>dOnX|Ml<gJ5zz~^wwTbG2x#g|ciLah`9c6HqW_}c
z_Q*Dje4jdRqO%;lmWbC$mXJDbf5w6o|3reTikK+7ujwVuZ;30P3t;dZn8jD2Jl-ep
zEBIFnwsf3;oLT74N?!*zboZKIGaFrv=}zm}U^J_#ly<G4TNUHoZMCQyMCFmU$d@N)
za=o*|ieWj{yFlLZ-y6lE)@{#{b(U?8R9qgd(mA)#f77EYsJ6|1cU!X_r{UGStX{<K
zo*WQf!2#jc^_r6_X?Qfs=~~PPH89(--`MD$(urawN-JCq;2oAJo-HM>rwz7kQ|D3k
zh8sb-ZNyJRYqRrpRL90lFrwsd%gk7ssgSkHhP5R-@Qg}6ftS71OJKODa*>`@z+YJI
zx^Wy%jqmZo+o9m1tQVXFVqCdb;oaQ13<6S5J|s-0f$*h+53t4r>5n@cl_&h7ko7i9
zu2C~FzKJWSUugeh(jFMoZYtJCIMiJicq+CY$?azy1)mZg2G_yBFC3L-137^RTCYWy
z7AX9ABHhJUdi_?Y3$>%xa(&hDZH1hytqrPj7<iOk4xL{j)-K}j?2Y3RW;aUCV$aL^
zc2+rEa(_~2ne<M4Gv&Ht_tPc}0`XLFe}S7NzyFYVdzM-$oC*zU&yhTjp2}Iz2Wsf<
z{9CVKt~N(fC;tH^0jE`4X0Wfnu=svBN<{$lou$dtrf*uiXG98zh8j!PNfX*LT_aNN
z%|=JKWcq?fQ2tG{fRx9xpnvS>@drHUbQ5i~Zp(`$xc~PpiBN`SUmC6NX<C><LWyRc
zJQDh{f6E5PL9F!`AK-w6m=;6r@!|z-geOe%gK>G8+G$M+6c@X3wIiuOcKKwRB2J|2
znK$&NQO1(C3Z6x2;2RL_Tec)ML3;()O}`#JEp2XnwdiemMEyIN=6O@BVN0D8aXXTB
z@tGWap_-#~99)-1))}`BHj^VNd;OAyjK^vTF#`j57;%?I&vdFulf>+|dEryna+g$a
zTyle<VR99Pq-UXGe4A<Ki1!LjutLsV8F3z-hX>c=ZPrldn9RdPw>5rZb_aJ4wA3k`
z#wPlQjZ`Xz-hjK%*6>xH69{YKP2rqz@+#ZiGX(dnrKUNL;T`r;BuSbs`nQwK6BKox
ziCk!%(tTW|I1pByDxb7;tuFYAHkaUq<3O8%<z`P4pjvo>e_Um!eji1v5-ZTGDwLYq
zT1I2H$K<@s#N_21g+EWZk+hxqjq!AhYY_6+Y9~tSUPH3@z)@)WZE2?JN23kaHv5!I
zv);Mo?0XsY+sPX}4`L*4Wm5vCn+-rE@Jw;NIUC(uSeus#?>+iR>V2Wzq(vEtr|1v)
zy*@@Kn}o2~^1?z<sF=ZoWmQqo&}p;Gu#5O)dE$$0$#sn6W0b_bGc0}tr)^RvFgA1~
zd;DfM?viVK`Fd`+X={hj`eyPzqWYlKZuC;pxiig)y(?2eRM2dn*H$;xj^O^jTwvBr
z!U+|f+7Pa5B&am+e^BCY+5ONf_I(x?W=EA{@)aOnfL0ijghBn!;?j{SQ*xf){IeoO
zH#ISHZ84bTV!wWR#^^c~t{9?3x6Cx*sVF5^`LZ=@xDWfzbn@0<W(Eh{Zt0P}`EnY4
zup1D~L!>*TP{#^>=vgO8VAkG~f`2J*Z6(>ZB!Wc@A*q+4NVrxdhqP+hHj`(D$Pf4~
z@9iFsHFl;Yh1oho$$EoDYeU_|BH1EERZl%*sSnamrIT-Oh%)hYp(F-Lw8y=vCr+{n
zI22MiKW&5;T~V5qlEN*a%}Kn(?~H6B$zXwM9}Kd3<2Z<z3V*4BLTFD|lI}(6VW;UG
zb;o9(;2>zcOmFaefQJ6{m~{HEZ?^ZNNOTBk9b|Db>^v;~+p2#4{rtJ_-_pg2>!!ti
zjD3+KL7)A+B#lD!<o@Wc3S_FKd>@$aRB-4=s-xzg1ksifnvS221&z+3E~iJCdZ-7e
zp}~2dOx<LD`|lwRDseR($+TQog830!i1K)~YuxVXr|ake^-%z1J!Iw*yRCsdvJ0Il
ze+Eli8ZR?*LP~UTMqGL}e!4r?D5$_Zt4?U!wSe*LgplV8$H7CMB^evZzb`})6dw)6
zD?jV``17u|%=V<++z{QswYRW7zR=vF)UiwPS;$|X5&WGdVyzvGh#A!>qt97vNy^IN
z=Qx!(+;Mx{Pv_Ot0gOk$6u8Qdm`N-g$$X-n0g>!BCil6e)Whk;n3SHew}<;h(&by-
zOU@+iY^}A$=Bl*C=_$FZ9GP?jIPX#2qM<|)Rwo+Lxo=<Bu{Az+$y&Z;rY*_Z<YixI
z&;b(bplAhVur+g3qmLYlUI972hYq<izVAJXWH71H_1Nla9&~6AqG+ZP0!Ba`=1a52
z`HBDNd+~<NvBMTQ+{JzEB!JT@odF{-4VoOQbS~sb7l4VUTnOc##)#Oma*w{&U<U7#
zj5qiL${&fy`AkPAt9|m}Pvk23+fiu#b>h8~eif0R4V*SSfENVjbv&<q(~cf|EU3zl
zJaX42#5+HDYm4WAw+ZxcnAS~EB3brDz0C&79iT3bw;|OV+)(5AddE|JFIEWvi(9JO
zq8-GRdGG9QNXsGQbpc=@63U>=7s{Z>r)NP7LD28Ve0>R+AEVVZ(YEQ{TrDtG`=1Z)
z?5j^vw-M_rvMExeOMN`$rcI9qX(EAB_>#6?RTI%6QR@k+FIBbsstgQjXNddtqO}2(
zPfd5!4eHFrYHBUnYVah4VXluOi*n@a*D+B|2!WLq=LIw1?VpkbyVYPZ7z$%v1MM^)
zEL05i(OMd-nQ0#`E0um&A1q~$4*YA7`@uVE-uz$3Bpb*@-r1HjUzC}Xi>13Vge|3O
zo~(TM<2z>}ugbm<i*o8C)i)^}q&U9&WoR9qD_3qSr{6UA{&u%Hgm2Ad=;O0G>UU(0
zv3YXA`6}3`G=OWkx_7`7anG+2Y+}S;p^{|gL$}ob`1j!P?;L3peo>t7q^yy@-=bd0
z{*#gRblTx&0GRUkfB)?0#6to)%K#hy`{REftme`B68&L+XjkLBz&SUZw|AblOnri&
z^;f@a8s|-G@EY9u|6dcg2h)uI_Bc2YM~uPxw)VGwJovHN;_QC~<p1rN|NF=Be~p{}
zPXKkV8O@}d#Qgf>+A`VIJ*1#jQOXcvoLX!DiU<~z=#`hOq7QLB$C*>X2;pY)>O`>C
z$UW9Meu#T&3V!C$p?|YweL|C&1^%=b{6G9OSDr>((j6{!bO79EDQpeC74oIZ5G;Lk
z_Q~xBnSXDf9eSE`;{DGsqdb3)8%F524jm{H&6h7V>fx|O=cnXQ#JRt{YY>Ke75w5(
zK=?Rx0TvLDx5I3gh0mTPFZ^fEZT*kT|NroievT|UV7<!Jr7YI_3~L_$c&>Eb>_ZQh
ziHG0IW@~Xn1%N?XwC=Z}m?vlZB9)&E`5kt!xeO;>iCn@6<_erodNf=%to9d$`&325
zx{inL&lzu`QWCe!jvrDx%x&<my!5TGSV1$90+TY_iv+*1-=i&9t7k3*uD;$A-<*49
zh}OOl^lQMN)`^LIbw{Fi<I8cLfTb~-z8Iy5QnHq{=8JXNEcb1q8J4@`GiqN&OoPVA
z`~X&XakMh=(eMe+!_Bg)TIXX2zpGqVI_{rXYV!3&=3f^@G{ZI>x7S&WuOd^Hw&@Co
ztO_0lt{#p0NRMm2blw5SCXxoE8q?*(V06&WY1h6Ee$Vx-rM>%>wOzG=nfopqhi`rF
zud`rr9sVhO!?N=2!mF_xq%PZZaz7P)Tc2sfP5&{OcG(92%?0<1Bf`QoL3zfr*Umm%
z=U8M__oU~vD5&HMpt+@1I6n&jXkH~1f5C|WY0htP%m!%4JQMA^x(9s?m20uQS{Dke
z3O@LK%D}I^OLVez8QU~<=M?-C)~%D)$7Q$=<ckDU)EF(f3|m1Zz4*MnSA6&hK_(r5
zW$XnFCRg`*8{5%xjcWxK^{8f*hu^nITqVb5OMp&8=Pkc)S9V5}ho|}3k>iWb;*~pF
z9GMn+-_pgb52bWP2QVaa{qff+cx#(qUlwm%XrUXj>-kdY=%G74v+a&J=dM3ei&b2n
ztK5?DW!WL({A13RG+e!XJ8<TpMBf#&pDDO~B=`32wo@`gD4?dU6%Fq2av>CT3D}7T
zVay@3u5&}5>d&8K6g$ktBz<>rT-diEMKF#JX{V=T05I#B{c#8{7$csb7JjA$ZwnD=
zGsBc;>P)BkkJgUd2RKYihElDo;pXNF%fVKmd4HTsP)tmWR>X2ZYabxk+H~rE!;KAU
z^*so2M1OU*LvXaxD@la7RAD>!o+5FeQu;QXF~pen@K6rq-jvlD<1)+**APpIx&2?)
z3~T*`8PA*)Cu<I>JzB8aTFLt+?z9kojw@49c5N$%u@~dYB2gmBj5L8(x`-@}j5{U{
z)`$cwjW~8Rnu)v9WN79Za!E3vX`r~hd24IXx9k3!*$$m2nk2QxAfy+Oj|<!=p<c)l
z``pN-YY47+;RFFwKNADRfTgsBH}7aQ^~3`neOsy5%+sA<ygJk7Jge6<f%B;C+PbvU
zZnXMuB(l@xJ4<6X5L^rPl?k4C-kBkM$Ioy?n}yX2efe^`^qROKoHjoNLj=tA8`uQF
zs;7Y__u+$o+tb^6ZGZya8NdF9RnUpxwKnP*_x#wY>PiE*(cv4yZAgg&;HTVcP#tVv
zW8@|}Wyt&zy%E{WV-t<IYEpE~sfHw_Alh(Ojtcha2(8%EDZMjo7wewxcC7zkYxwdM
zqxdd)*yrc8hQy9rk3G6ciI{We_0Q7BJr8|7eR@gdK6wlesYBgPTcS2~4(V}a7G(ZB
z#$a{KD7VT!PH1x3`Ss6lm??ZHZ0uMn9u{nUTno9Uvsd{}MGrFhD8S6UB|$LH3KwkA
znW^BlbfMj`BRpcPM(aW_emU&X>>iNcw7P;Qm7P5`4xMAiQm($xWZ9_>Db?!1EzT^_
zsJT8rf`1CN2Cn#F9@*|;gU@o_aK0S+TWsFLpup;T*Q#7?;>*IXI&N)Dw2nnKwY$f*
za0=*97H@cv6Jk`~QC|3njiaKZPB{|BB7OSB_|<xyHh}H+uZt#n&*>fg-R$P!>YQB0
z5P|m$znqGnLMt>`Yo=(4e5Z3wRu719;{wCsqe#iqIg&@sK_|ZkYa#JkDcF3RgUSUW
z_H<cr?I@|Dz({|ow{Z7H2ELr?uh*K*1cbB?`cWfUp}fk<HX+bD;}6*zK)RLm^eYOM
zr6F8lq|3la)4<b5;C3A-G|5q;SNg0Ed9w(>2J-?$89$BhkJYR>an2L4_Oq7hvLULV
z3E8+VNTQcl%-&N|$e<Y2`0%=OF2#fHd+R|_M^fB%o-Pufw(ZiW@p06VZK)~tgFwVF
zMtPNz;LIebW8&-yJ2>(<wkTeJ)k(Fa!fimZt!S#cE8O%{|ARt?%EZ029kpk^fmFl+
z4IPPbJOEkUmHkE_ghze2is3}Sx=A-4q0S37PN(E$l+R|rNI}QZ$TY(5&gml+?TUOn
zJVRZ4z1_c%`x2^d1dJWZd?R2FCF#in1S6RrlIg`F_JC^Zz|{nAmEHjpg@9!3gzVmG
zw$t&VWFSfrO=p5mzJ?Q#nJJ0eQ(dg9)b?TYL?)utJ*jhbyw*!g%{{Xh(TKPtSLN$Y
zHXo|-O<I`9RQ#Mln8CAOmV+CcVyuJ@7{bF7?ek8Ur-c-g5}V5`5mvOORi4|u0F=`R
z-G=F0q}?N5+)>`SXHoBj#q0^H0uq(?8+PhWQ4ptc@E>E`lO?5&npzvh>FwS{Q^MP>
zpI(SUg^En~9cfZ}@V$lZB@q@=VvS%c&Z#|~wTO@$DChk%Ctk!vGvd6617YAxXp7hL
z>hX2-5n^7e<zNoCdrC#ba-=y{>UUrZqQ+PkZa@U~=Z$qDj*?<A`&RK~gcaC|&zY74
znfnpOF8l$6Q;7({%GMukH2x6&{#jS{p1h3nuvDi+Obw4&!&k#%8>0gF4OP>H)mIfx
zB?5?W72!pJ3(<9idmrDBx>~oiEO^W^f(>&XU3Sd~+p3OP4@B42oVxVaX`h3C9~@Zl
z{N!g|VOD*{_YAKN6<&J^1;{PSgC4g$BXkJwn<ODAJN(aY5h*wG7^q-jyQ7)NZ>O5D
zHY<A5M7{!=$Dl5CBL52xbSF^}@u2LknBb*;%rsr&00tXS0`aZ|tnclL`_4W}S)mFI
z<2+JdfM$uR5oEi_28+T>e7ybe%w_Qslg?Y{u-cR7`5!ztrPJ<Omb{i)TT$CoU6bF~
z=(+jc)M(&jY9AUY3{dabXw@rDa+2l7C7#yqI~RumL;IGzzT?}~dZZqXx|L<x&@Ygj
zskdc#L1bHlX1RvF&3oBa5OtwC_o>kK%Jm@a;~R(EvQ%FJS(=5gZGP1@SkA;Bz^qd<
zRf$GbcL8(RA-(DD@j|IG)HiT#y2YNLq1}FEYl+U)PLqYN=g0Hgj2$iXt99EXPlE3^
z@tPDQqyJ<HPFHGdeN7bK`iDm5K{1{hcv8@!cYzHjB+rcBt8C}&yFJ*0$G~zE?!kh7
zi3bCZ%FZg;%SomCahfT)$h0ED_2H<}0-5s`%=GI3wcMGaEa$WN3bRKRwW#$^uedCz
z6*)hk{c5c_Cc9<!wvx&wyE`Py$x<g>y2At^R)H`)^10-6P>=Dg0q&$Q%RKEAfr<8X
zugWrpDZd&RvcRh5gT?;Rl`%n!5C<C>%R?qzx3QEu>(yh&TUJ?%X7nHZBue5$$}NKH
zQ|uyP!8?wZ`*h*$iz<&lAJw2<>@CcOKI`Y&&R86&jCoF|c(9RCFAk^@zRxH_Zh)fz
z1wX!w)Y%fCA|y^al?R+>_wRpsPS_TDSbWKHPZu)@zt*#sZ0bGmaZj1d0o(TbzAZHS
z`j9|z_yUzH9tjf?l$-u=XJ7udI^w3**Q6bxH*EVt?s^vza8hqHGbRlU<#;p`w+o^3
zSArtPSA9wfW1CR3S*%7gDij@wKC5!S`ZRtUOE=bzYsUnWk{$_~HTzfnoPcq{P34n1
zuK0xDg)Z;Edz-QqC&i^Topj__jz2Xvc0bY3P^9a^7M1cg5Tmj_Ml8M*^w*VfYrEBq
z`~Iw+#iRXWlTP;zQ6VQB8l)bhb&lrUg*Jgcp)nJ?ZraYvy3O9leLFj7ozxjR*VmcM
zwj@BU<M<xsXK8s92M-CBw6YnYTPr<Abt?L{PBln8tG{|TBKhWf24iCC1wG+~jrI4}
zXK0DS?Z`V`qYY{q>^pUg>vQX7Set7To$1bnFX#QrRnr;rB%4XoHfQ^L%6I?t9;l(a
zlIKol7P5t(5xW9Kq)R_jJ}@4PQxSxn3c|X=#JwYFcTch<F5i6<d-PN|e#fit5gqht
zXOI*G_x?ubzV;LSysS2kAbx@|!@y&cXjr?ezBobHZ|3xS0qpd4$raJo_=3K6$vvwE
z)!E=RtUIS)x_cb)RKvb<i=u3j*%1>#)8g2}p&8y-QEO4iAN^n~ZUju(uU2?->3Gni
zeZ`Fh3B!h9ISt@jXh2CfLi0*cf&JmdMof4&su5H8d;_+vIN>)FeSMoi$4xCKc1c<E
z8g1IB3x&|+ng~`fYmL7FHdrQ-eKowukQ93+Umxc8ZbK#;jrX=yJb$Z%elad`C=4d-
z^@D9)*;{!o(DD~=OfSb_OvMH~3T{tVjdLzSqY4(|MDddS0P4V5b0Qu+b^S0=lb&S3
zOp<T-HlhyS`K6pw?6*}C&w1@&Yd&%S^h<j=Ek;G=93cJsuQ(!<7NlO~HQ6jerE+|m
zKs?pE#NKvD9xy66?Mdcio6_Qz;&wSh^gZ22hK!T?=MEeO5UEEGp8u$-s_u|P*yQWK
z8k{UMty=(uKTxoq!%p8pJ;;$}+t<&u;p182m@RgA{S&R~I4X_JsezrA@$Bz54(j*q
znCtUCKqR;N`F>ScP%jYR%g!9O>uFg(8bs1Z+tLZ!D*>E}HOKX<C_^`9+7c6r(-lzM
z=;F1)1VN3o3YB@udPawoUdXM1shNWw+J=j(hZd5?Wh?oa_!$@S$G2}5O&zN|Br&E8
zLWx-uwCZXRVJAW8ZP8jD2zJaxewUxvzO>U%h7w1lI=pvxzjE!4NZavhCGW1hkYWZ<
zgl6SF>&YAZ0Cx~SY*Mc-m-++LJr{bXmORl=_pisWgfWAW@`lC*F3|6g7`V^Oq3Dv{
zv=;-1xogQ(d0^=~Dul;gWaEu0$Uu=M>CB?`Q?n>3?1dtePZj63hRZx}NTp_kuA_3v
zS}N`f<LOUW?yKK9#5&mML4<3hf3=u-IIS4C+eVGuEZ8mm<6cP;RgT<xdFDBf*%vFH
zCoOOd8~T`$^4#WQ(SnSLZSgAausY=d4^+|=ul!ZRlag*%b62Mmw3-r|1qSUb_2egP
zZ6ju?`A123VIu->XUn%C;ZoiqR8;Bh*o{O?>Dr($d+Ck6S}u=&+NgkByuXj+wYYjH
zMGN{{etc|==2A^<>Q1Rc4CCmrLWh=fPFCsPBQ;Zh-}n3KOtXDmKKIahK%Qx4=l6#D
zA(ph-tx=7lZ?3*;kPH3X?@b@9nGKhY)FF*nn&km+5v=5!ct?GyJQLPEhg|Eh>WT1#
zXZ25J%aA(LC9aGBgI;AgPoZUArE7?7lL~A;UOV|_51IaUYf{b3cYb66&!C>}XCt*-
zFktK4nQ;xjo8hOFe{5o(8@M)g@TT?yzXNjm4`|(!0!BKnFEDv$>pZZF8CYm-q$dhP
zlSA}C^CH2kA>H}6=SzMyeoFJ(#-QAZhf2AlLXfP&5H}oKr|r!wBRw3m%Y#0P8y_G4
z_=+xqt8{A#nC3s&-dG}D=Zd2Duh-Jo%QVnmvji+FF%@q+bnw@iQXAxd!UpNpmfLNj
z#ohT~&!ryE7Xtxf=AZ+=>(ha%u*v%o*{QV%t<XN9T@~ud+~p0syuYkg&4_UQY?e9|
zpxHG8j2?5G^F*yelY&Q=-@vug6HXBt(B#{VKGq7bn_xI6Xcbkt!onG4=e={H>H=5q
zPg!2N-^Ce_s{i4-QsPKujZvX#fde}0w(2KN$oc-K8K!!Kn-~S_Jm`R7E&W4w2R%nU
z^rJj8pdfy$$7zoYyiY$fNK%>$QtT&%us}@q-cG#{No6=*>*wYrFm6*$$kWxETVI+R
zH)*vXh28pv>*N05$zomANqzsU?TiOyRla`RiqF;$dO$oBniUBE|Aya!3h0ms3?6tC
zgx%T7@bsd$6&--^a8-?iynqF?%4h1);fcX}AUs)?#yQm+T__K4$7_Zb2G@u??W!-1
zPsvB2)sNKS(jW|j9+SEoCZsL>lFQ?sJOvNZNw7;U-)7fHovDi-+OT%y&dZ~<&xts!
zlp=g96WRVLYt&Zl=aL_i++7@5?lr2es(KQ&(YF}gfvcRSug}3UhuP}DEu%zk!gbTS
zvGdSx1_lwtSZ+4a*9)VxJf6rb1rB0^t+uhUUWf)9y`1%V(J(KE_DAcg*VQ_0U%d8y
zmwq5^D`}>Y=kAyq558t0Bf;oXOOrf&IoTe%rJ9q^{<E7_)3f>|D0^m0njmEQNK|hh
zFViuxy*Yu*jBC(Q<*jYF8N}{N|3g18sC=r1SsgFZ$kkvSfw~^oYJ-VUTpnv%RUx^<
zpe4)+&xr1U2&KPn-v<#9hvrQlqLw;i@1jG*ZoL1!uz@!9$-ce1a~AJ)2LfHW0GQIC
zsDcG_XC{8qmmL7`uBtMv?1YtjScp{4<Fogk7^KF6Qndj%E<pJIMFYVk`Ou(@@`o8^
zC-d?wy*ymLDr%~|ft;tRAISm>qU0`g*Ff-?{2cBgXkd!3f3rguA#Ir;OZ|Kk3DP8r
zGV@+9^_P|2u~QeK1xy4|LXfTxv;l@?S$^_Eo|OAutpDZO`}JXwI%fO+g<x;YsN!m(
z;sGBYh4&sJHPrW@Rb*wGQ7V+S{3}q~F9w&FPAj{AHawEI<ThC7`dbea(Sz7CGy)<B
zOSMsqLIB?>D}}j+{H9R<C=R)Y%sLY@%r6)Q%b~epW1wpr8}(f$I;siD#}%?uuv0$m
z>>HdYYAZdw*Z;E;jW$GcDj1<VKYpjTE0*uSfLXcocECLkTV6+~Aa*_l=V~XfzdSHA
zF`na8ym&27H(fg60n7?eaeXh=F}|-&59vgjra$twl<?i_7f9g>c_<op(1(6f#uu4;
z|A#8=;=5hzq5!9^m}|qbMS~crXJ0KZ^~=!Tsz?saVR+<$vqYQ#&6HQN#^W-iT%K5#
zeMiTZ<NfOAlq;u6wvO%LQ|;TFDt4u=0ycT1{L_W6ZNk@W_`J#?A5BvRy7R)8uLsj=
z0-3FCtUa;qg<tM5b>g~GMYkc?p@N5Jcuk-A_fDA>Wz07QE<Vm{GyL$x+jpwbhHkDA
z$r%9Q9++DM1C$lKysqe}Y*n8Q++z<6SvKk=J<C9&it|DV759p$^U{wdDl6ho3cAkP
zHdaE;VfC}><f4EJeT4Jc4W?qxy`ZAt_1E?j-5xl9BHZ^(_sI(Aa6pIc+0`%irY_Up
zQE@t{`_dGHT%TN?QJuk0VQ)pv2Z=Rn_<%((oYEQdro>L8wNca);)G<r`)`d~&pVFX
z;=bxg7%geVhn-H?2(Gx#5^ueu(q}mz4?B7%>P{<)#pzWht=XXOrke5%6XC#qDGcT^
zj}mYfI^8!6bXOM6&Ttb>z#52VD7mXv42NoJHqtYbo(a2YO#IN(BDrP7PW4*I72W+<
zMvD0WQ)qjmH!iYd7PBA)Z+pc?i9<W8@&qNmL2vI5ud(q4HRu<F1lb0z)X;wB&oTew
zqT`mh@)Vu`nr{E8)8u}k_ON)YptEjYNk;(v<R#Csa*b^&QWfWqH_L#}$_3@`m%~4l
z`D99GrGdt6K<dd{$Qc2X!gwXg0^ss%UN5k1E}Utbrs$9zfDy%-ndy>s0iZ-vmSd$G
zDK^&qwm43EW;xXy`N&va&E&nV>pJ(vOO}`sovuAmDm4O~{!9G^iTis+b^G`ppMVX3
zA0?l2rmADlKpe4Jw&kvFxmOIZLMa!3^65BhlxI-oc{wQmKF~I?9;8=yT_(+oa<_|s
zl3CW--+*Wc^}_FLr>-vyG%dvKQz`}*vj+XQh_2BljRBA$%c_uU#*a6MQPPjbgnH=A
z$&2g|RJDrhW1}MLd3UzG@;hg0kGWRZ9tn_dVECz6^xp01@`j43d5MLi>I+DB|750r
z_69}fN?QbL>u8C8_bs~&&?DS@J>@fWMvnfW$u@mNN{8D>tq!;md+YLgi}w(dpKnXp
zjs)Y3vcsr4FhG<Cw3JRHU1xXRYBk}r!v4_f3S7Ipaf}Hy4`%%eE(usW3z}iYMlA%J
z<{NEsy8GpXRL|?A9oNski#VoPxpd@)X7*gY_PB9@RnO5EFw4D<zphKD=;Fq-68GF_
zSWVV8Ein~O@$RibgyF{Psiq^EHYp%i&fa=fDQF|*((gMlqwp@pnziJW(Q+Kon0o**
zZt<z|$)^v!YYjo#zMD&a>7td1UVx-&@v^R>RN1V3_0?;W2+fGzCIrsJSLn`m?%#gL
zK^^a|SPI95q&1~^CM5_CR(rncCL#BIUkbVumGmvwnKpE!D<oM^bfMqOyBLq#KXfoN
z{<)=A70&67V_H2%imMBZ%?zj3m9Uz^GCML=7VR7kjXNY=&?$Odb8aarp4G{`Re&wP
zYE+a{iKk~+Eq88Lug%>HB&$yZ8tp0Ml#~lhVc)vs1n-Y>8qJjdTGZ3pA8oxKg0P?k
z8`g)yJl#I@)$<$RMK5?|8b&03QVw6(H&N!GmF~C?6|I&eska##38~Z?H{_K_w%a2_
zw(p1I1w<RxOW$sL;{!_;W-e(I{kAQipf?hb@BCXq9zi#TExb-h6x!E2h?l+b)%bab
z&8q+0_;c}pMkd{IQaeNy=sh&2)o8N<C|^$H0q+x;@FZb(Q<e+3ky57tzOR=l*@rXY
zU4~lNc~*0Nw24vbuX(+LTSFxCy->r0@6#DxOYUSx^`j|K*Y3TuS@BCd+*F>dY>y7!
zT#@a2QBf?zB<;V@Z8IL?8;^nR)wa|9D-}m5cJu*_nerpwpplP%o$3l=s-2%|;M_<C
z9<J8RTU9bYPO+stelK8M7+-XQ4q*8dkL=qwu`Xo6p@m3#L+ph?A8>`37%+{@t(O;g
zGL6f*e)govtWBqHd~fZ-^Hi=`V$8*iW@tm+OfUFAigo!pG{cDG{a@@K`)?9s?8lD;
z#wcXB?-dR3g|6~3%%pW>Q^w1>NMf_`GJ2dh468p5hgnv62E5!zTc>nb?p2PvC&6}H
z8D*N}MWN;S?9NT^(w%CEb3scgkGmh)dU%2!glVyK0)NGCW!J4IfN@xy^i+}aFfslY
z&fApTKVW|S##&k!zm#@C@ptjS-mSskOa8lQMHSdu`|X?blD8O7NqA`HHM27eZ0S}f
zuU67>Oq>Nx3Lg}{bDJdij?zC|v0}2FS4Ov$KA96OcKZZ{8F#V5J6wa^LmhM$NvF<8
zC+NYff6?bEmAquCxXzz<pgG!-ULJK%4eXps0Tui7jV5@%$KqC<rwn$);~kP*pYC^=
zEG=SH9bIr?K?JbnfyjmHt1WpfI<SX&ILfaM7Tjt0&Y}A%FGo(t1O9Mm6@#(G4fUKy
zx|PbwgFN8)ynCk;j-%pZR0*5TT{iJ=hD){fVk>g!z9p@F!m$%CeEe2q1L@=wa(>F0
z{c|hjJ7%e$xpoUrKeAL`O^ZyBl2C68!lT3sTCCs3drj=?Rw|Tk5GFo}2fQqU(C-fK
z?S_lX^ip#;PTKO;w%_agow3M{0UDwCs^wE=;-b3@)HnUt!gp8kfNZJh;OFNBEP6Ok
z{_`GE#trTvh_%H!o-4+-Xx)?rFg8`TS=MK|S)?;9Cg_zO6LO2!HOTA|3#9k)>`;_)
zOk%(|Zv~m?hRPmn8gN6YD81cZmtf!id9wtp{lw|6yk?@(Qj#~}v4@+DTBYU@8vrJP
zi>!fL!Z|oWgw?j>4;%~-n3}1dik;1FV}VRw@Hv0Lzzk#M80P4YLx45h;khSdGRSRm
z%7;R<&h_trv=k=E1J~n2RTz|g75IOW(XB+TD5a6X7sXWB=Cik0)*!F?xzibbdo!AK
zAM0cRzz`!bzog3$-PcRbkXb3a&%R4NNq0ux)`Y25)cEECdq~~<4zSLM46pvmzFm)-
zt>`?Nt+X_kxFDsc+@qo~X_}X3B0;AvUh7g(Xr{`OwrfzmrP|MWVb}!Ofu3tk+JkXR
zws6H8*mEd|$5mxeZ^cGGHqcF9JsZ2KI=FVZsw(;o;mMm2=zQ6HzKlhwlNia9soo7{
zvvINvvbp2hB8rB%1J|i5WI`h<3djlfW3Ik*Y(#gg_Q>9IfgPBEJFC_@wsIZYM%%q-
zM7!R96ov0N0;_rYaE*HsM?_@8<a_SG<!2dxW($D~2c7DnHTbl~kupfI$xDp=CD57d
zfB1B#)`-1tVYfi4Z~9He9+CU}g`cu!vn4(E1)QT2q->-7jW0_jXf(C;BH(qiF|8Zx
zNlTpHmde;_b(TEMv?4}8QmCeFDqd#wg=VC}h?bG<vDJ-xt>Rr4Z{?iAoi^HN4tn2P
zZ}`qPi^y4Vu`SGQ@n-ff_L@NlPI?<7E3hf+g^KRNZO!as5B?b&<{*7kzvS>gTt@ec
z?zr8GT6Ucmv2Iuh&?jkHH3YX%l_8uuucggOo(avI7A*k$y%wNov|(~gC+as>AG6bc
zG@WCy2e)OjtgNi!!23n9yq7zcYAqWc=C-HeKa<rm*K*ou_>J%Pt7?OiqZjS<6kSoI
z!H5r#v|i2ZMq7AK2+R;v-7(C-R3^MIzm*IG^B~M;EVTZBi>HDHhBauyqd}_0H^n?w
z#R^R~?y-#oL2qp0L^{LLLGad@?;NoUa-~`|rH(m^)>!TLt6#>Ia?N`_&;;XrOoO%O
zyyre3P52YSSSz+3E13$!2OQmvfYQsuq?ozn+%Bu!kinOD-iV%faj{ReDwDywUO0R$
zE5SO!KTauN3A1CrYXs3<AQpv}H>~;h8E<E)eL~L{Dwjh`!&pjQ-b%co-|3cH;B872
zGVdNxFVlmbHLb#TZm1;fDrEQ}J;pHwbNjnpGw7er&|mP!rt1EAtR_+%*a%i8DeK%p
zcc#qwz}+O<B;JC~qP68bm}h^`xp^o_!PahR{lln1)Q<#^w%(RS#(`K6g7TA0MX6;m
z(EK$jvpH;aiU2Eb^IfF`380o|3L?v<>q{z8v-7)Ihl9i4lp?+ai96nX^t0Oen&Z+w
zx)~DJ#hf6IB?@S<Ra<8S7MB@|Mq7)Z(CgvgPsJ7;S+Ar;;K1<*MhwIq&zKh;s1MFj
zg2^g*z8DdG6A~qvpjXC*<t1_<EXG4fI$IR2BRO8-a6=I;9m+q!rWDr0{qA={b0Nxg
zq$N)c)qIF@eQl808pn^m{>9<?rh)cPVN<~-Ed4(~FPitDArBIDT$!m8<A@%<x?G@t
zdf*!3g@Iv!T}rmXYeG3F|DBn-=cl5p>US3tClYr(w@VnDpBSeaDf{pQ_Wc6(mfU9o
zxqU;($)|I8LtJ~;>Aj>KdahmZ?3OzLBXW79s?7EZ-}}6BXlAjmmz`Nx(|4WJc3Ia?
z>m*yu;*S%lu6=6&89T^U;!~`XewfbAd4lQQyu8st3Qw`jNHBt=d%0bC7}$b>epT3p
z=s`Zx-L|#2CL6uQ7s<otKo}8Y#oP*PqMn$mJ!eQ0WN}@ahpzMt+JDUv<pCp0=+O)t
zpxEZ-jbM|>ss}sU)X6l4BTA{)HfE<^8)-a$`m9_3*AAtzUgXW%3ZnX2GRC@#q?{?<
zF>o63W)y{j1#B*#O}V*ps!X>6oOc&Qx4sEYRs7y8er!IiBGc`cwA4#g4il-VpFeeE
zc%88b-KsLv+tlm#F+ci%_K`Zd4pRH=zV<)s)hvQ+_O4Z#PEcoejy1tP*Fzt<l4S>d
zhrfh|*Dd*iE>@f`sZ$G(jX96ARB7Es_egfb6eP++-t(&i01I+wFAhX})`3XHixA*f
zU!1h^xYE1+BWpFdD3&i6?$>diUCK3K(>88+Tk-LTatWAvVY>4}xDs;1-CtJV4x50@
zfS-wZt&^dyo<ZKVX^9Q=x-gr)X-j;7Q!8AFi7o$n`e?3Aj67C%SKdZFxcp8fhdlX2
zr&F8A)*I9KFpr?NwG#XdFXkG(c`Kqe0QCOt@s#}Z(7aSmM+x$8=C3maqt$_B9C8aM
z%r6L<8iQ0Nw{0aU&;I-Bb=whdL+DI_KWsx6v-T|O;gK8){$uOzzZYxey+cpLNnf|k
zR+s8S(iSX0->!BJtZR3*lQms`Z@zR{#aV>XwWZbg7LsEOz1xT2+!-jazh_pV<>3P#
zt-Oq$;L=l}<~)M#Cmm$@X>SF807V?gb^@H2dFF7L0!lMrWM|{TL3hB1)G1sw48GzX
zx7<0qMI3Ba>C}0C?tpRcT9C=sB(y<6?zrN=A};~ot`xfsh|F*u{!lZw(GLPI#OGD6
zbtrHBVZRHiFXycU&m$hvHmPibH`BxR&v3}{YlZBY@P#OUJ9^*Og6;$~`~|Udp)abY
zySz|=dU}u{MW@AUkfZ(GMbc{}w}*%!rWO6aFTXs+rrj-45;dQOdk0HN{{kb)LT;TF
zHvHps?YSBZtT4fHU^_CEM?{%A=?K@NIIgNss2xdcHS1dh_MZ`YbC3Oa>RdqHl~%1J
zk<`V!0ezznB!YiHh4}4(SFfmql{#e|lUJf?_y?*JKwev`Q6aU?oyd^)y071PlQe@o
zCumdKcd}Ssg<$81+QLKEs|TjcHe5+^CPkH=L**6?8PrI|i|)VI7#GA6LQ;ZlyLY8Z
zU`s~#qH-D{4{b)*7mjW8>Ic3r&S37+G~RS!rw*taF-iU|_RfEidgiy<E&4PVNxY{`
z{rPTfx!|(9<D06n`EMsI@NHs?4|Cm8mIi#JeX`yLkxjM+y9a0LOB&)F$+R{D`g%&9
z!?n46<DeGGrUdshW0QZ}KcD>wcyh=r0-Sv4j*kjz`JKxJXF`#ZZ)r`LZ93+<jXE0}
zbzLuHiLTWcUvO&Oc!+hYacncCv+rXq@wb6B!sB~arV3th?+LPmBH=Q52*hg`T=5|j
zJj4UWgZoMVFj1?j1^ImugeJ}f^v>1qjqJx6+BFn8$-5?FU}RGp(ho-W@p8tH3Q>7z
zh-GE_dQfj6&=6qWFDYq$C}!YH1nhKof92xnkwOrn`x#?Uk5cR|$~*X;hC!T@4qmz{
zWV?Kd>bCMT*N1;Ldd>^vnx01d2<)S1gzKe?Ybev#S&VenH8Ic%b&&SsS_mOv42Y*k
z%K}OY-a+`Wt2nzU^|GattS4gt9;{RO4i++6<?jBx7%~pTfco8bszr!Njp4Dm3Cfik
zd=s(wcT`;1;fg@-8JjI{kU!*<*)Ws1V_2c-802DjU|_s>k)KJ&E%yO&@F3vhd4715
z3qSS6ZbW>#To9qoMzF=SG*PE9aA}=V>9G{w#JMQQgr#DBcBRGqX-F$FEBaYc<HvMK
zeuLQW@M(NB=M17-pb;`(kLnFdsq0yz97INBirQ9U7;nP`SWOL8F}@!;DR2?($g;vh
zPdvvkf}#R7SkLfG$Jz@u8<Tfo!(6T>GX<>8dgvRe8yM?aw4nKXPMb;T9dC)<BggGQ
z(#NxrhlIdEUyfYX0?;}aX2aMM13l{?KG3F!;#0&tviTb21|J{6cub1i-zHW-2T=_c
z9WdQ4twX)sdct!Gb@+0Al=XBlMksR~UAK{K*|&9Awqif}S~*JePV2VIrv@Jbg@(Wz
z!W8aUqP&+C3!9!+Kg!mTz(#3nPO?cfP+1DV#Kp4az7D+ofVQXz5Wv3{$Mx@&<wM2i
z5BHNlv#at3qon(sf<3<K6>83CitoiS>#*v2jO@gObH%zE<=xMFx2W^WiPC@&xBJPn
zHgaq3$!NeGR0xUga-w^bo~9URh}KON0Z?~4*<|zU-O@%*+ti=P#epBIU+9$9&(}F6
zh$U$4#4x5y)z5uKT4EaS{rvpXof9SH@eu7TFQN+qE2LW#tNR9jxjSpqd)q^G)do{_
zjq<RP)zTi@gXjrc$mgAdoC<y&HH;c&i$0;Se_d&*ezdNsP4rAc)x=K8d0}Y((HhBo
zGUs~#M@p41Ddj<S*k!5Da?S+5vf$2{G-c{339BP%34$h)QG!`(b%^ln)*??8?73=B
z>xcZ3`nXOIpE(U}!da)Sm5?`!M6b7D36-XoWISWL_;jRq=ix$l`HQ~IBW6EyZ#}b|
zt{g@2Fh+*GI3Hh{tChN!toDw(u-E&8KShd+vFQ75SPwNB+$(CFClok_Ln$keU~L`X
zgX8;X4sr<(;J<~45f7Rm@>fGeNFyIhbrH}^B|*2dJr1Z>*v1OOl?hLi=lc=nUIYYy
z^K<R#l^U~_p_NLMMUf~fS&%wUs0`mm_w~REA=3HI=z=sd8Zk<6swu8KXslFvM8&gQ
z*G0X@izLy50CNf}8to`udNr2dz_ogpWG1-a_TDIOE;1}t0p>zJkqK?;5XJ8<fgHsm
zg@8xMq<G<}p*-S&#gO(IgmO&N602%x>`I(VZiw&{Hl~>QhPj-!;<X}r0bN!zss8R7
z+G(f(LGO^qK|5`$x#={8ul1nSDMeY#q1e{LO;}zGxK)hLs%5sNUN2!p(v5O2JPltk
z$)(`wnrcdp>BMUj_4^sx6Bk{GMlvAau(sw!e2k^SlLC?S`V2|zPZw1c_#m{;#F8fe
zZeqs-qM_!MbkV&|e&#aiS2q1}rdFTzw_3-|OJ1!2yyO;+?P$C!S1xE;hm@yw6=n_&
z|HJFYUB9BB_*5`KSTAGpEErT182Vg$<Lk>moSgfNzF2bXKZF0A9w<8FFO@SGENWBQ
zuh?t3ac^V<G2TJnx%bbkN7v_aBZ|9bea;}NcHn?ZV`LO#9SGT?$_&ruYHadFUeX9<
zpy~|WFY@n9ulgLKenipE$1IhA-cAdv0o0qM#xW%X#k%%Gjwu#0i;x@}1{uD+v|>W<
zhb<32zuc^9Vi2tvd9R-LEaw+h<g8v`5EoW|Zc7=Y&Bpam8j>8?)5@>fH!?73-!w{9
zAh>1gq)LlfGqJcmHc7%qOCc%_vTHv1B+QwCbw9x{_pA0T!_@18+zG`pU4h*<`(-9N
z<Cs-Aoug8k5rGvcf!LwKwfBA9RCGrHSyJ+|ymv2&?=*Y9N>WL*+dv^IZ~$E;XjaSv
ztfsEx*)~LZCri|FK}E4`pvMb~swGpbjr~_QDfj-5-@6=9VuLfjB6$q;lKQaa2XA+r
z`!4}s34YifT_>8GqdnK_H14OEp4nonEoP!$ui=r|zw!>+mv3E!9wr=IeH5!Ew<&ao
z_`-fYU%29Lfo7#UuDMwXOdnl+H^63D;#tc!VcW&e9Z@p?&4k*?9%LKEs$9A9sTXDX
zRtPwGEA&|7H3=b@FEUvEksNO|u(vg`YVfI8n4nZ^X>No=rHWFibujuF_e>D!^D+CR
z6NqK$<@;9gVXjmqG4)pAb!!z?fp`g4AsMe>w|C6BeT19VH6Z(RNS~w=WszP5@UCWF
zG7JKJ8=?7#un!!(Wg>n`zr4*SAWb!#fY<$Od}|yz`F^M7p<^s{^34(#t6;p0od#3-
zyrd+i$RwJ2vEN>&%5l1r-&Z@2rvjGu!w!3=NN3P%r0yF=B_YvqwL%wBA71QCjA}~|
zbVqFmG=vwsE1g*nuIiFk4}q?hS$HCU`49TO%IHe_fec8OuZ+8?;9${>5+zbRJzN$`
zY&hZRy&HpDzX-Y6@fDRwJ92gZa=!0yJOd53=Z6G58!p684h0?69!zIIvF%mMYP>QX
zEO}?7-gF~F_8q;ni9?=8MQBH?rIf6k-!#HVuEWnzJU}E3<QIX8xXGvPPtk>o_$-~m
zSt(%2y;sOX#_+fEE9N<muM`;67gp$=i@IlxZX*P4Fq3!cg7j8>Q#r2#sVQ;lx^C+T
z>{2Wy=`9~pxyhMe<ZX7&`^axbH6-pi8?mJ3Eu~drEmv#Qr=&&aUI9}Y!$5*UD;OD7
z6J~hDuJ+Me`Nez=RNe<aB<+eTl)nh}bA;dbdU4_r+Gx6bvQD8iR_NH;`2>iRPfJ5&
z?ey}ornuoXlZ0Zu4ez%B%7zX5)6T>0QD#{hmIYRyA;FWP7Py{kFKnt4%iYYad|EVy
z8(b1(J?TCtW8?#*<IfR3WDc#wVY-9&K5-asb;1p=>b(McO&#fysCc7JBTbsV>u6qT
zzrcfz#u#DofML^>U5(GR%{sNYo_+I%?;k@U%m3IJf+VmD!kP6mO7tU>v+)vn*}2nY
z&K$>vc4EvcPc`2v58MGBO%R=eZUtbw^%r(*V!nwYe#Z^9j+hoRnp@S(Syu+>%?W{P
zY|Uy>if#f?@NCNd7(Oi7Eg$q9#jj{1TypWYNK3vb=8HV!K?Ri8Ai7DadM;8~#ht(*
z!G#O%ER2>{8FAPn?;{!&4L@`g?o)Qf{!AR+EbKFe(0T>ZLNkMI^93hXx_yHDgg=}#
zTAh#?j}->o+Br!7dsLVd(0TdmxfTRt{HahqdzBq?hBNSy7te_#y(ELAz}W>kA0#E*
zVI?-RV_7hlyubY88X5@*2(!A9U+~4P&uRy|*fOtbuWQzOV)iPr;dCnAF45Lwto&|6
z8m)q{d~U~$Rf`Gdy6HPJk9P>G=t`H1D@Ud7DY<uAS!|bel5X^!t}ffo)xDRO*QawT
z{Wun0*jC)Jo0kipmM1?!fsB|w2ONV8Y`i?Rw~p6>nXnDU{9=O(+6vmpHJri2wW81l
zlvrDZu9P{ZX&f-Zt>x@xIztwudupL(MsSfhQQW&c?R3vX;V<%?R3%^-NSWOjvd1bg
z1-reM0>+Xcm#fxZnrd~B$-#{^YIBNUULaOFv}E*7XwP-sv}H&bY{EJIT?tuxkO=Ip
zn*B?Ed@hZX-dC9-56{YxK22HCfMDT@4#*`BaxFDwH&k_ocD^YVw9ZH=YY<zTk7RI>
zI*lDjtv^<OIEOpPeXf7V+Xyu+a4kJNDv^17jrs%{JH|<vb)_^4-(%B`pSwimt5P(q
z0g?~xm&}X@R%rYCAy*UeT3D7MUt6ADoYYd_3Jbn<NYt#wfNXz{7F*T!d5}siQTQHI
zkNo+>RyW>pX)3oUQd}^&=$D0PPzqs{BBOr2v+-9}Z_QgNW|F<*@Yu0)ix;mv$b7rg
zyK~|n_SD|+y`^G2{>bNq1LscuAkF<0E29*#y84!T|7M=m+&T26ijAjpPUmH|gZ1`i
zE(0q{NWke&^ysq(iT19&)@nw;gzBRD_Sv@G7b_!g6SWW5Z1zhSJAV5dsa_OBtIn%E
zF9;C;I;}uz)sBZs=sNn!00`r>FO)}0cs*kbc6RvhhPK=H9L*;SYdxOsl-#?!LimaB
z37W1Yshl^vbQE%H(fIrP%EhHv>j>!@%ca`v#CTCu(+VeBS8LYgqUqYLQ;vwY8|PhV
z4=Zwf2Wh<@gY%~Y#^U+ex-t{9YfW1)qHL}HQQE<yBy}xkcWGTLyJ$)9i~$U%>9s}q
z43C{4E1JePlrTq!ZDA;C6U+%47e+&c0|mxKHejB7QV}oja|Ut#feKesp1mS0zm8Lb
z5G~9!P54EIOBFn||I#ZC?bZ0L#4d~mc1zZBDNnJ12@yOe&-j;XK3RX<OGr0TJtTGO
zsJ^!_aK1g3C;)^ka5sE6X4-RF`pt~jE~f;LV;Z%!(3F$KYxq-L%jA@U*)Qyu27SO}
zjpN002ZM5~y1=XyKxavQ0bOd(6JQhHI$lrb5yIpc7aR9*My%%y=v|V|clUf`Ub8K#
z+VGFJ28@Fp2lH;8UV0vO1-ZM(EEhEUc5M7Z%6Spv<`9OtD_V&{f6iRs=ec8wfnEb1
zj`GaEYK?>6a)RSvSjXeW1Hb2iS9rQP#z@}ZMexg)FEoj2LqG@WfSoe$XeA}O;w*VF
z>u;}o$W`sYpF5@x_SP|!5OaR8(#4))>l{_{&h1Q75<E+mZvM)Z)V=;s=?54DA09ZR
zcbk^<KIq5j_eH)@aKz1F|LgM+yq<W&Uq0o7aVzYn{=<R$S0C8l-{Jqs<PnD(7Y*0B
zYE@pV-c{9+5m|}{nd3gWTFIXM<44e`1`hpO;9_fj`){Vxa2+=AMGE}~tMZpGTRI!R
zewg=BkF)+?9m?}BG4=<?;J=uSG|tnSAY#Y)uSe-X75Vo=YJU5FK9J}?nbZRpG{e1^
zQ(shifMY+lhJdZRN%bzRd4BI5JeX7S^v?g^rrEh1;Qba4=+qv@1=a`SCoKyA3Auav
zF~VUTu^N8N_aLa0_hE<T9HHXPzYeGQ9QpK+K(y|Bf3Ywy#m8VQ$}~aTR)JYb@xg!p
zsP~uk@XxQY8VZ(xIfvaarc&oF&I79oFnT4vdIh6Ne5QU;{(D~Vp-H#@i8=N`L&-ZE
ztolJ=WxkCf9-nl|(pfgcnBNBTUz%TmnK8gp@iFtTrzdn^v(iat8kqV^-Ke&-?o==`
z>?-;aV)^6TZ-=5Un6!=YIY#uyTduMuU@S_9)%s>vRg$Ks=hR9`%Y4H)5_1rL@PC+<
zbmCv9Lfztv0a8C$Q%jBcZFRxGn1{^uVq<~#PW@@(1kr`GXu-JgKCRac;SEU*c?!0T
zC49u<0~>#pbpG|bYH#jWVuIt39GcWTN@9%hXF7hLc+w;H!QMGDF#b=TDLwH(%b@&Y
zJ&b0Lfr1q^u6x<FiRN)IWyDYblcRJ#MT00`k@Jo^#9Cn)V!jy%>|w(pd~!@h2NCCt
zEy`PWkT*aGKTSeoraeXNz%{9N=9j3b;zoJkZl9jA=b~1C2FOZYFw5;^Z>ExBdUwE*
zD@-(<Qf9eO5A_?_{^#YGa#m;g_^Yi3`C_O4nf=l4e`tR+IR^Z1{06lFZE0S!tvM~W
zL;tO|w~T5lTDwNuLa`PvrFenT0x4RcxVyKwTPg1Dl;Z9bcMDc5IBB7{y96n&!95VZ
z%{k+Y_nh;+_s1RM-t{MJlI&z>uV<}i&1bGTRg@-yn#eV@K~iQcPhw*<SM204C3xV3
z2n07H<SAafsN^Cb)fNZ(5c7jA&svXCFMw%N-+TF$|M~N0wn}l`I$F2*?#6F95#hN&
z8)a)l?{T`BWCLrEOR>G2uW}x}Bsu!CHr`}{&Y)gy9)J0;%$2`(1ZzzvazKHKrr#NU
zsa{JmD*Dq@m%=@2V0n0ZHDOHh;X-VJzquITLB)PmNdMsh7#Ea{*GM>709ppMt-~%&
zPBY9_l<o0awb1Gw+5V<hz!7C*tOvaxn&l-4{MgLY)K7=J%_k=QpLRbc0`^GhMgSu@
z!RH>@#`i4(ynuLw)W8&divL1cL>PZT+1|j>z;UEm%hD9#2$E~Lo_B=}wO(wtZP++5
zxH-uT$PW1|H`sS!tE!@^zNCvf6M)`l{5E=J7~GY9c;|x{G{Z6bI_xp*l=b2Hb^5*2
zu4?-hOx<}+@?@J<tiUFHdUa!?5Z<|mOBp`U;KPFBqnPD+;?M+#!0K?L$psk2D7}S8
zh=wPK4HOb5ij@Y)s@fQdK<cr;{*+!H6e|1KWgoB0_=Y8Kz1Ft2jjLmKkDIwIV4L3W
z9X66zuS)K`q+pQGO*KlxJdFGNIz$^+nMQn1fr5r$Y;#;(Q>9Ggx5mzpC<l&&iPLnj
z#<N7Po6Dr-$o5p|U-Y)6`}fLpbr$k<f8J%pdMx|cRWdclFX@Zml|RQWW#Ds#C##js
zq*|RC7-%0+^8T9Lnks`1WL!Uc!&LEi#M~uvuh?zm;0779XFlC<x^AqUc3l$G(2#O=
zI3smirXII9Q$+@AXPl|jo46F!9Y{@0mAps3W+*M)1f7KZb&?)3Jbl;G-;_j%>*mH|
z)%tEIwLv(hu#uY%4<Db1sAy3tX*}KNa?C*1o!8f32RV+hL%9F8$B&eHEjhgm-uM&}
z`xvD~`t-E{n=dw54IOAF)cVHa+xtj?su2f8ViLj1kib+SqW5ADzvD`IfiFmmtd;St
z+?GN$Ccop0U*Xn$g4y)2<e|7I%$W^b6KuZ}LVWzi`KwDFeEhMB80bh?XlMz&%2CSc
zS@{*DDMRiWi|7owI|cGI7-!Tt8An7|ka+r)8Meqtb^cV`j5qO$sp3k}4H?z$!GYIz
zzzPRaOpkI9bnNUMS95xuoc?%*=F*{n<cQ=j-MfM9Plqxy%$Xd{TGJUzuP!m#IqjxZ
zzw@NS1H1uf{XrvbO|+c;As9^uH2O<b!Z!0?KG@0}XCqa3-F8cIsbDs=(%KES1!wzX
zdY?xOMwLq|(9v*T7?|8c?_4Edcod78Fl=HL-9(bwuY2s8mlKQTN`<mZ9v6i8pL)#2
z-pR<xCETIo?3!FGd2J~GBJV~7FJFR<sI3f)$S_E_Y!{^G>nxb~+~CQll3q6F(6Ve)
zbaabt21al$C5yfZESk~RmsGw&zb&m?H|g?LJBAnmpDAvrV~xg4x+;hNg5Xc@&lg5y
z4OHkf?09OlU3XitpEW^A;U$%@x(@c?kD?h-WD*u+e)j@)%2>H$m&;x{fQQ0sN=iz_
zhAOpzm*aI7gxH^rTe!RX0la1T^=<vY_Ds|1=AOGSpX~>T8_h}q8Z#Wb)z9Dd*#n7j
zc{sIrU^uc5&`#-Xyr-ZYiew9_Hu8!t-)f3*U?LarlqVoOMVpQAydC}-{mp6yIck+J
zhHwRfWS{oe^71Pw8<%Aa_4|f_-oeBQm>cQL1||06`_#aoU~}P@k9+UXttT)fRK{T-
z={rxCuAbuf3?47_)itFb4-rCYZ{xB%s`v!u)^q?uq5Zi2b>o2-*&)>x`;)&u08D>J
zst5_%xwRrWJjF=!<+J;SX3;=mvaP&egoy=aPV({Q_z|6ruguiDLMvqoi_W}Way?ke
zPx1hHcnw@ov_xL!$6tSrY)IMoVCDH0DdIsxLnD<oy+fBpnG8*mOAkpeCKqVyye+*7
zI3Rf&BdO(!uFu~p&qX!SrMp1-Jh{POn`T8YtJ`ebx^K9dW~SdgG{lVvGs1#Nf$>d$
z5eh@RpMZ-_eSu4ieW^84^(O~Uqh~&O9r7@QQSZwY2&GV~9!pXvbS(OPljD$iNJ<Rq
zM{AIRrEc<f#IP*;KSO8yKSHN>QLju|dU`|7^YA&Evfdxpl<0IKVSpK;gyL7?%Ik9T
zTnpfx1mA(5qFMeR{FVu^(Ut+W4|1x8fx}D2!z?o~B55!}M|CvKOVkVGxgBWjRW)aE
zlgOpoE~CXIC&#jt=-&2c@SJ|RXmHy2n=7_zP!C2+#k(mpsLI;EKG&$gGc(0rqrTl;
zTgxY61T>^f`L{A4Yg=7%XC4rQh#}^b>L(+o&2l@_!=<*>y{)pIZ$FLXo$HQoY6;w~
zLffY;uYMAL8U2Oem<$1XlmuK4O<L4^*<qLAnAiKjt!WTr=`EP#{bh$`U{FJQ7ESr?
z_I7=>D?-w*JeFai=)tq++-0fTVO4jsQcZ5;cXVdUpoWfS%*@1u3SxbK?hR0+&p!7q
zC@PW#bmci>!%ww8vWo)Kdcqbr*7u_~jIDV}pA?*?b~)KCPCnKEVgfcQ%2A}e%=Yii
zJJaf$K;(Hb`s_DYNm34i_RkFze!Kx_>QfH>_UrHlFX^`CI7ehhkgkyd>=C%0fcb`D
z<&TVvjAEP(pKI@MW=quRD{7z=Fo9<#D{Gm>_3MZ@gcNo(<HYH+DPQsYSx}S=s{gXP
zO@X?w#83IMFvU#fWu{w^5vTfJj|6NZQ$j=S;eIeYTZianl4&;o_TN7m+TIcp5IA<@
z595nYNsyp8pR)RE^JDBaSWJo5)c7WF?s08<sr!~2O~u9<@|d+|ySq19nVKRVF)ksr
z8!RgiYs+SAN3r_VXK|NQlqHA`g&HCIon@6BY#bk#F4@`HqfBN?rqt!0+=sjZW(T#2
z-lgtCg@KfG+4K-Ek2zv!_id>=-g}?x18w7L1L5nZ%K7VK#9q>&Ez+*5q}ThMBc_|<
zYBkPto;>ggVbZ4_VQ$hTiOW#^3qH={A%{8ZTY*MyC@k9QbAxH4s_Q`Vnov}V-Nl#G
zs?#K-7**0+=}P?tx`d@W%_35`X1jONzWlS;?cm3sf4@@&>n|~;<Ctmdi;9bjH@rdm
zD2j_a@2wp=0WoU)==?1(L-Y(`<<R{6u(QX&ev&lfa&z70b=jvR#FD%>Qz?`1!yLPY
z+Bs~e-@t24A(h<)FgSTpJf-NTd6tiM0S4R<jK~95tczc=yx+gPt@WG2iY{3Sm30&|
zAg}x;Xzd3GtJfH=Txv7DfE}NJ>HTgU6ux__Lx@C}RABddOCE<PshnPlidQcrqusT{
z>f9-dg#BE%Bj#QA%>duUX6r@VCx8yNYFw9G$|ly!cI58;b{$+xOY7vgQE8ou%BOrq
z#2Tf?n|UWg9ZkZ$G~ihOTh4lu(??kr9h4G(*-Dl+exTNvT?(6Rw5T1tw-r$&8{HC2
zV(iPy_U)fS+dHOt71p1uB*e#23>{^`FsAtxrpz|~?G&=zlRc!tXEysx3=sEay%ylp
z`8t?kbGDN{FS#&UjA5F4!|)^)!+3R;MZZqoAPO8{*NP0ML<!I{hZz8PXwM7VWhPB}
zYHH3x#Z3D}97g2O$7!uOG-Z6(E^hDj<9D38VOT}g-CVy0UMbmVH;kKz^L-sjE!(S5
z)_bWY@4$>Nj<g?~&G3D1E#H3Ak5QqE#my2Ua9pQ2W+yPR7nxok10vbNn8EGFdvOWm
zRTL=x)whGSBYUo6f(QrINj7D?jC8<yPC8p(picG+Y?>+RGOT-^Dy(?q)m?^-;3=B!
za#SAatEwho#<s5d_Itbg(>yxH_qAq-XgWGB`Rm1I=lJqv--Kp-mjXajV7$`Cs;{?q
zR2lAbxm2MRdYtvm7orAx)q*R;Eo~ghMIqp-3(BIgzv>nHUMS;i0?3tVX8p>kvNPRT
zs;^y|UmlaxhFIISN=?TNq||b}*~jQsM_+5J(ulF`_A=Bd)?W*?F?^xYbGbJm*X+7O
z@Am3YV=RiS51!SqwUZw(Yl|y#OS#x0JHpqpdy&Q!hA*_HsYJTA*uMPeFs9^YuF8&O
zjnuNLieY=<C8vKlQnIBPaEyXy>>u9#ZNr$j%kSTAze69akEZ6BFLHSX->QJQZdd0S
zz)?yXqfPS2WVG^yF8&-0eJH%Q={_9tbfI<DrQ-3F2kpNkx*?zW<nO1pNDR^Vd?oY;
z$h=DOEM2%#WT^rwyRKWfLUi;zj#BjrT)lz|%-mmPe~W^iQan{oKa2e~^kf~fPs{E%
z`F<|xv@OP3X5LMiKOZKeDWO!Vd(l|Fu-C788yz^1gO5T7&Z|BbTOKIkarg)ZOD-|t
zx|YACbkyhaxoCQ?#5qGY(&%g%Q!r!xE(&F#t7i@Teksunf)2!Sv&+##Jm=|9`DFuX
z;-^nfN<J1(qK{>x7UA7nc8H%AlO;3jFw1=PCrBdq({ELsuGFa#(#a(tFG`ov#1j#g
zPdO+bRhB<o)<&@bw4jsiwg!^`T6<cIwjpBKr$PC<83y9D^*V;=SBx=cgX(@=ClpcL
zAHGyoN=iy8n1pY67Dk|gB-tM_d5gHD3@5Q{B>oa6z1<p2XR(^uIzZPvn;3CC(5+$4
zXQva*h<=R$KmoGYh<Q=6cH~!ZL6J5xw^lN0cf4JXPY)83Gwt@Qea0}2iJbTb{|?io
zqmvG7B&O%8F6<9oGH7#D6Dz)8MZ=pF_sW$`V)VrQj*gvpG+*y>4d~>a%n=*x)KpZx
zRZRXfk?f0ujXm|KmKGzu{raMX2T@(`c)pu4N-z2wBV*ojtTj~?yk4>9h`7kaX;{IS
zAE#%O6*J<-<)*r*lAyZ3JvGM8qFD&rxvG#oxq9~f^;t&KDOT&(M@j1Vk<6GFAxmB(
zdZgp!n$-dNZszDWk8?ZG(U#t+-QEtG>HNJpm}w~nbdElWO}S&+ZU_hznw}PszLoef
z5tq!ACR1C))_t*fo{`9;qQ1I{v$y91LcBuMpgP!0m0OguM_P@MMlxe`MBqLr&sh=w
z__3APbO%8Zoo{zYIi9Phv)I7IA8aBK`qIe3Okd>(V7=8VaEI7YJ<*7&4)UkJdFnG+
zCglc~(#Wwx!?}tGem};gIwdZY=g9h`^a3X4HFnT)xSL-!#I;mxuiMbnvgKtPk*EJ9
z(Ds>#(SVoVLAx0J)SO9I3Z<we+MY{Rtg?Nf8tO2ctr7et%CXcRH>kuh+_FG>ho|?X
z@Uf0Lh_c1FRqEwCZ!GRZpj+Je;{nSQe4?Oq4l;JlwCm6UyHp0NXZ=w(o)Nw$gZ;4u
z{LAUQEHb6ZNlU)T(6De?<G+R$Hgz)0UHyY$WL>UqS%S7FUh0r9?<f*o-VG&jjaU5`
zxp>d=IGHY@_xB01vHGO1ajUSUi818~rQ0)W>hHmAj8rjQYss*l!{}JE8z~w8^y@c3
zX#A@&;y=$B_ah2)BY%3fx<<HuS(Xfr!<g4BW^G7GPEJ-)7$MbnmQ?+Y_PG#D*BV;7
zPV9UCof#IP#GPv-uIg2XcDbJ$uIFo1yE&9@(Ip^kjxX{_3J+uP)T$il)wD%F8$=Bv
zZww<NUtOmyt!<6_+rKOFMwj2RgQ1z_QdQikHr2$4OHPlOnq|sC0?h>k>}L9-FCccy
z)NU8MAhsdxT>)PR7|0HTUwi^|8AkYa-=V%$%Hl2@z+jWybc)0n+axCM^0Yc45m7-^
zwBZc5ETR50I5?;a2g&D4ep-dwlty~5Z;$bRvjRm*=;Agi$;hzHB<~*+Z_d~6k;Xfr
znk<lxo?l!f&(~Y+I682a7-$4os?PXka-Hg2UlJ3ZbGh7DS2Tt>eZxwCtjMV{SLpG{
zS1Iw2AUPi+kpw1$tMx&9M>Df+>>mBj*ZTuuj;sei3$mcVl6i~sEIby%bSCiR`zvB}
zT#D&aWjtLfH`l#9k!}?9wMbWm(Ywg|eUMhObs-upKD$Kd1QtTrpK$FDl5;@4eEhPb
zB>22gyI%N|XjtSmF_D<iy=DBx2(;UedO)Lc`WJ6UT8a2B7AiA~ZsTi0Xcl8OsZFQN
z)UL}($k;~=8?>hz2Q7dijn$N9APZEdQ93(jEsgb<jK^oQJPW4Il-@#KUcYf@pav?-
zJAwEt-?e^8)#dbE&Y>8l1TiM%g|l|lmu{UZrR5BjOh%kW-Mv&deF1~jxU^jOsN^%1
zTtz6qZ~x;j{4t>Ul@`o(fAEsjSv^t<^VO6mTP3gz?{%@Yp-TDvDXW_*$?D6(KJDhb
zcLqO;Hf*6RcoKRnz^j6dS@BiIxG0NZbJ<Jnrq@6Ds)a^p_2oz++|_8NoJnOPb4EWY
zMNs#3GW5Ciwd~#Nf#o+)y6ogPdW@6}Xx}&BaVP~Yp;e7ZebX#)rh0uZKeG6hE*phL
zl241B_`-uj|EGnAKUU34fBl9-oPS}_<=Xo5=XRsc*)}f#m&%U!y}PFw!KV0H>7qaM
z_ceCe<Dz|LX>ae=;AlKeEF2uJnN3#>Xgj;r&5OBai%jy_7M)d`Kbs33olH|K5o-XO
zlr%#uNC38*H!LcYC07$DT@CmbFp1Oxuww6&I*g36R{Lh4CL_Go$MZ5?VQ;2aNQe^T
zc6nI*tt!Cq#!lE}bWPG=bL%YigJ(=^Nj6VrYZ=65IT!wiD=*&;by^wzVU~N#AMY)=
zkoVbyVgAV9^}g2o7uNNjL)uMte^Gef-Xo`5Hs@C<0E>?vEsPIOE<V*`to7pS$~AHU
zULDCQaN>BC&wyXIUUTFwbb7DCl1Qi`E6i{u-V}7^p{}`9=aC+L9?H9dQ<g)6*KXZq
z$>WC%P!APn#e1wI-w-{cRc5YzeSK~D8h_?jskq#uhSw!%yBlg_=5pY2&3Z`~<}6o{
zsZ=P@od#6Dpb|aM9=|}`W!n^_zUetsRgGAmJ$4sBmY|(Gx7CgYQ~BwGdoVG^4z69Q
zAdh`0N$@LwE12mu+JAaU0;^S|in)OE*(-w(#*rFa!wEz;?OF-uB6ZF~&Dh<uZTOA7
zt<EwtD{>gz_tD^C-T_hwzY`aO(sJ(n$z}!YY^ytp)Y2cqT2c}rC}Pe9U8cg*Z%I~6
zjS-ytX%TTy#fnkNtlz9#`N{<6+r$bBKZvF6D&y>6POs<Bd_CEhOUeP_m*H4zM295X
zur>rP_Y^ZQQr4&xMm&d;G270Covam5(V4wP+>&e4SP{meou>?sV8^*q>j(6frfcZ!
zd^oePh>GFWAo#M_-ytNoIifJXxIF#2>1-b@wf;A=Pa4a|V;l=wF-e?+;Vb5esfijJ
zJsDN$%XmrwlRq#`*<~Iz$@W`tq&HlF<T~6z$Rh>KanaH_775oxOZuPgTvEX5FY8R0
z2+~piu2xuKJ?F@S5RvE%$e9OozA(jI8SsljNK3|eYNT=5<caVFF0)c_cPKRyL43>#
z3JP9&@lE@id>Tv>km~lk2tu10wZo7(-<=cdj-;g1`B;&1NIaO(L+LZ??P^={2D5~K
zXVtEgBACH}%>Gc|h99-5we|g!k8Ztt-{%Ta49@T0or-Gg7U*S1qUe4R>lm^QWx+KW
z!qYu&gG9^;!%4rmq7unbb2kR7mMe>-RN!?Z%omE;U2fjDy?xEfstnr6g4&D3C)fol
zRS*y=S-ImS8REaKONr0eWleNj{UhT;(GlzW)x`v3>}OL;u-(MO2OwQtnU~<y5LVN+
zO0W27pxPvXhyPn*4?$G4-*Z=Oa_q4LI!e28A5cBocG`2dM`J|tT6X?!<i_sG_ai_5
z<U2k-QUAGu$(joBSQVwdgX5@VJ1x~iMloZM5B>epv!87+yG!~Lj$5Msl#e$p!IUcd
zOLsWSW@9rcwKadrj3qFg^U}DoLaesk*6s+B^eC#cJ(t^+PQD+1`^7XL#buSmx)!_v
zvvo??okG#$g+}M3G0umu80KJc1M`1VzecmrtXc<u&BoPu>51G@Ogc_Ria~cwf);E<
z2BMVs{MAK~ce%=#5Hlb?AUi#$$G(?;Tyv6leU^vOuEQHbJD5u6mCTDD9#lCp@NP|V
z0MU7n{PkN_H~QiCn)xf;w!V|N_8(9F5bvn;#WrSEOP1O8hG#N7Gl}BV@Fj+lu54=m
zYyJlw8JW?P!;o^+nqP*f@}87b%ozAc0Caxvw|A&Df_Il&<LxRREnZCM7U%a=)D>;A
zU>f*xev*vz9$LYUnY+13FLk_ZyBr|y_6$5K|IHmpf}chT^cQxsi%5dfD{XQ>!g%Z_
za}jzBTUpKnJ_%CJ<K5k4(s5a=_?2{enoU5~VgRzF3A|b-jOp#f#fj&t&^8ZJllr~L
zsOIhB1ArF~Zd4l^D`HNIS?<=MXe|yEi<_b@O7d#aSOpk2!GV*LE*L1mK|z*BS4T#2
zL6ZT7?{!cDG4y!>(Ln~St4^gF-?gvU+{U_Utlt}eCFP(Kf1}Icv=&u^;@ncHNelmo
z$MLmUq$^+LPiq#qadR+dwSW@3nz5WH9g7_tH&8j-cXf;(?t`pS3iq30Og{a>Uq!zl
zuuy+*-&SO%39gxMiF^%pV74#Epd;>HbCoO93$*;?GE3Q=1yVWGS#c@x43{kjAoP>-
zNs^O8mbbg`0ZfB|oe8ry?0L~=t+i#4ditX*H5PVJgvnN=fc6}K)r9J<&0IR{5U#$R
z!yGW(JvrT+?`V_}hP99L%^QHS`>B$5wkwwJPoI~AG7qh(B@q4CjWR913h%3w7U-Sa
z_WA(}P%l}C?@E_-sFL0e_Z9w*dW(5Br(>rxqVY0*yIrinDY0tS7rY>Nt>Cee^l>9|
z4t<Cd07L%ORCS-{5G<l%I1{}j0AbEl-o@2Y1xh^&*x9Xk3__hN&m;Q?+$$Z6S&ZKe
zaaHZi+0pm%!)X&4DR2Dz?rB0=%PoH-QP|kbw@S3%8^v`3vtWn`!hHd{UfFUu6$>X+
zx>GCOl9Kp@TBmGrcCI0rHZqL;?Wa;C(&0r>9drokT6xVlW3vd+Ly6n2`tid&%yL$F
zS5mu3PRd0=RmLR<7-ORI$f0Fh#jI0hY7<_nBl6X$H|^Yb-RW#z(TXWqcU}<nVR5|E
zl@PQ(psL5nHWuY<JuB9TqcTA3jG%>GKcXDQF9K*?;o$|1%sz}Ba;Dj`yp(w4OoMQY
zgk%;w<T|hX(7`r$`Nu#=6&bw6v+MX&muD&c>0w{=yroyCJ0n)04*n5K=!Hdc;oB6O
zpy}J$U{wme28mQpDrKz(+b@A=ekoPD2`UP&*je=A4S=Lh7W~Sqk?84su;6b_mlM^M
zwTDrCUmPcPCG#!{7f<TT?<=BVH4;vDH+M<Niz?8P?VO|KPzuk)7?fjGjpQ88EYrNo
z@OUWFMo4*vK-ncp2i>A*N~xC4cEB-nX^Et`oeaccq<#C4Idu;v!DZ&U(ba{*cKD=u
ziILSMcwsfpclZ_FyD#zR?x?)fy1hBHm;5#?NX9=%cC>~&7yRq)1COeYfPuj_An*zm
zn_R?D*k4`L8FlY)e@WqBcSZx?oY+;mP<EJ4@48Q0hFxO<OG;MS0NHmoMR_=wm~pb3
zXEQx9Jp=PDdoE2Jnw|L)*f@DmyyvLaw8v)_dd$q^r=!FM@%J7Z^%*<YWL)Je0$vLi
zf?{tNb~2XoKhxYSeEKnteA(hw)m}vZu$3bNcYx!z-YQ52ap4vUz$e&m4;D7QG*Oeu
zY{ff0aRo$9Jr6O8k`E_Zilh6cE40(B?2yOAe@Op|1$C_xVC6g!4HaV1db=icFZ<R<
zKw%ot7u||i;TW82GV!V)w>Vrc6@N(Iub1A+XVDZB=#do{6A*GfkJ>G3@2*~*mz0?N
zGhwzK&oksL;`?DZ=EKOqNE+uJ1!crJm)X)2A3w39F=TZf`QecNp65y8j>o)}7oR=-
zus6hNeBwi-)j;`n5^e_c<SRWl6kG=>ANfuE3}F6wHnzy^B@dmm={_6bPi?8$^Y^;h
z^AcEM`4mRHr(E&!$&=fziBs3U-oa79>JVW@@R2c01g8TT#9*+b0tkZTK+P@=_;N%v
zfPvicn~oj{`_CYElW+u2!WX^YRBYChu}g3<4$ZW7r*QAqQG))u-sFOz52l0U124{(
zhCHQXXi$aP4kP1P-+$>Dpxh!$mb;j%U_Z~7i1$APHEE={W?E@d(g&Y$8uY{N^{EjF
zHIcNOiB5!v{`MBrK0lxPxz$B_c=&TLXBs2^t?S$;y%MHt#x%Z!CnSE6V`XM#6~0-X
zQc8i>TaSq@`JQ5v@NJ@8!{k`ftTG#HU>6x!t|h!P4Q?y|&atyj#!*r{@FVy*M`5&o
z846AWnR!_KRD{{!R`qa9bbSN5S)xB<8pOt4{ZPM+WAs_ct=smfk)CV!>Bybh#lal4
z1G=&4?#G0|`X(lw_Kw-gLZQV4TX_>41kQfSa&0ZA^fW}l%BjMnL|vNzsMu5>&W?}c
z6e;*Zi;IgXF9C(^Av5m783Pkedi0fgD>;O#+jdP`C7@<oa=A3dc0EZLlWt{qaGb)V
zBiY)@m?pFl%tra*%XP@^*_kuX?)v1~Q<0LF6Txf2KdCyLh?(^hZD4K>)W|60Qo%?>
z31QX*vz74A_y)IXa1?KVY;o~O##qklXrd%~e29SeddYQU0JXXI)bn3k9~b$$AwUJN
zdyR<G-UgAjJH<rwRgSD9fwCKc1@8T-*Nz`YFH^!B4)-G4!fqJ%m;H%hN?W%B->|71
z!rmhIrd;=Q#@?v%_UpCr<KcvS@E8UOOvAo@Y4l~J(ZZ2$jEgz#1J*KfS#K2$Dq7`K
zHyv7jR*CTpd+IdYB$ChjkFK1!_}P{N{AQ?ZQoq1w%9aM76z4p#8#gLhsXJ=OWsfj#
zB>v~pX0wsrdr(0o>dmU4*s3dK9V#3A%VA^^_gyd1>s)N-q-P5SY7_%zN98CwrkTt{
zpDrYM;=X8=uiH^7vzbz80eYFCmQ{!SjU+<-&5L32me<^LS)AIvYa{1)J=x>`llq4C
zs{LbLIzGm%0SutA$#QoW?=G=N@c^@+xSO+sLL&;*`UU8H&UNUi>*2K;#Cox)>JnJs
zzsvSsSn<vB*|aDnAukuA;&+#R`2c2g0(Dv*HC22(_)J3#vyPG1Vf(ooCQd)pvWO_)
zGvH3)IvZRZ2{FR*{Z%(;HN%56lT#ht^V2Z!iDI%o{f&+mmXeYZT!7Qn)ud`P!R0@f
z<10YIaU`e*35qS}Gz_)q{=oizBxGYiLv~zi0Gh~ULqJQ5<kC%n8{M6iCYY{jWLt5L
zt<E;Pv=r#c6XN3HTFmCOSITiah?eCyW2x!;MMX`upPrs3Nl}r+7sre(QM$R#<ba-p
zwOsDAQ8hL7#M~|WEw>RYHpVq|KY_K}BOmilulTbiN3aJ$1u{-WE|)<u0=GGVL7PY^
z`?Hxjr!9_0;r5nIHOZEVVPVDR%_8PRDrtP5fjy88ZX;xr&fRgeJ<iLYu*sx}goLmQ
zvw)pp-gSoV%hl@C6>6YKBQk)+0iI%OaoH(B{I*ie_^B$1gI!TNr2(gI3|;GL1F;U<
z>%ls>@U|t)PXUU-lB`&~!-2BG%ik8NoUW6ub=WhSpK|BlgQtyQ=X(;HrJ7h*0m2?8
zx@KR#_G{Iq*^3<UM>fHfAJ<zS#MqVyMljYzgBw>bI+Y^M>oKy1e{gEd<Z3e&m=^5S
z>-E9pMhXSWPfyRM*y7^j8$>NdSci@C@;OF*uD010g#cnewt{wWs&^}9cwLoH&Dpaz
z*NZh3snej%W}3Tpmk)v_KOz*ZsPWT;hLRIPTzArL>%3O=NKRKYNlrB*o4T{Aole(=
zHsqoO?OtW8kP}H_pE2=^r)5(2G*rbksUR5+TTj4|H*{kJ-4*!E6=#_LHW2<ZiF)(F
z%r9M~niWX*0LKycijJ_-Au5k6>Qo*d@Y%tXSSRm0#jHfkgtvQ6dO<T<pdqcx?|3=+
zcLjxoeP^k)9I>VkYb_q@c1o3F==tW}NuSWYMwZ7eW?MGfxs}CqxrL(rGq(n!BbMar
z`do!Q^=53;vdtlb*fMO$5jnrx#h}GJnl;K@u#GXyo|#AM>+p?wN@mcbO<<_wFb~1o
z8<0c@BDbj=4-F2ceOh@P10zZ9+EGza&9AUT^k6yfI@+JT^sUMj3!K9Hn<3<uOqqSo
zZKjZ&w}+o2-iXt%DxAKCqXTYTy`@%#cwI&*mz0f~0i{bGpU6{V8=)Kb?z*bNCWlID
zF4rpgjN5wV&LKf$ZzzVq7S)|eT^4QRJJ^NM%~8{7`^3hoDCa~$ffFgYHLR%c>PDT5
zsyc9YS3=UVk#r*2V7Mj{_Q5P+-Tf9*fCb3q69G#yOX!nniI36oJybr@2hhtb{uMd1
z3~mouv0|iJnYlk9(I-93GdRpo7^q0n{aQ8vQkN7$Q3<lK=^x!u&iqDc&SgFTr9u!t
z13p!&Q|bGQ=Wy{<(F54D7YXO7%u1&U)bcvt&YHm8&i=72Njm+f-u17cZmGglw4kto
zp%B1_kQsP6<b3bnUPAPeF^2!lpa1sn>yTU>Gx$7V88x1~&T^qs2>;z8Si<SfW2DL}
z>NvS{;3)v<`50GZXnzLk$DlrjQcpoI=e@kGd91BsofJjVUP(<VXiB-gO`YwO==|c?
z+vT6O(nD#a$&%SU2a9HvbTl+KPBPN2$Y<7FY6U(NTCel<y;J~9RL8OZq;73s$i+a*
zOp=?v*!c+#i^V9rWbtal*7O@$nzOZ851tLn+>>5q%*m*?GP=~u_wxyf)LGp<Pe(kv
z&CsQ=OUK1__bw-qv9-t1q^lsKG5yUG>?koNgRg^hx3(U4-^WglLzMVtH6U*&_})d|
z@BSO4oR`PAwWD=x<HVD4@)cucSIsG_hCsb3euD~+xoEM3-W~Ms<eL`#l`*jGmjY)%
z69`54N0x7Q`P?RLlK`uG&ehG0C1>N5)pS2Kx=Kfb<(%jPn6W~p3fH~5qdCPN3(o=6
z4aOMCS@fFU3?x@gTIQ+GUIHb2I!5rf1N4<)pq?OiX{%STNMXadA87yCTQs0mXjg2`
zl=!`Kk<VXqp%P^aC>82OH}bGix5qFkBc5g`jcdxVD5RxDoy=yjIcbSjKJ+hRG*!~^
zqlqlLr5d%A+<U#dH{9IPC^lOxx}z2+V|Eud!tTc{PnQR-M%q~oJifz^jc>lHT1$}q
z#6BY{;_czWGtA_;Cc_qMe%Ook8Bp7>0Ws1@iciKdXY%a`8t0MiHBBCsj?LJ$o<lAw
zDk@+QtFG=~Y@h^rIciT8J>r@1qnUh#E3kEm?EG7~cH6YK>2H(L*BCCjHtrPjr{{^K
z+E1tAI=bKJr&wC&e^M0_nBiubzR*Fu!lU$pAKF>aPpJR1<{uj$&uBLCR;J$ao2S4U
zxskk1&!dh3mEw_Dz^d#=)qBbeC)NJv&oIY!e`3UNh1tFtiaHG%)id;mvbk3EhbLK`
z@z#h=4gC7`D1RuaFxsJl!-jxqDAE;TIVbNYX}YSQ1CcRaCGiow!I^Tyr{}lStp$>E
zmp0l)96Uh@Die=3HdlO{`mHq;8PHGUaS!KQiyc&P2&d$41SEI{CxNuv!(y7Fo4cr6
z5|$<>uy$?QpBxA0bM4DAFgd^W-y`&iv6y5NfcgmK2oSRr^?^C}oDo4HoO8R~JmNnH
zOe!R5izM&G<;YBQN+6Nd0lu0ow)t7#J7#U|?!Sp`&XeJtiTmYzw)Vb_vRbcWqpYU1
z!6+pu-@;tO^ueFXX;0*=WI`3g?b7O4id}}B=)|z4rp7S<rD}=`H$d_J+{bh=SV55j
z)U9Z<wqP`9a$8VPlos=X8Orup(`{2eKKhyJvZR6Lh=W{yMSC}I<aeMrztxN+o2&w5
z^43lGGlAJ*F?y|ltm^EryN@aM&>=`v!cN28OG~h}$c+6nKt-sOk>O+Dyrt=yptbu|
z{YFn(h)D<MJ*yuhPrZ)I48sizrT*LWm{gEja0Vk81AOl$R7zOD;%_Q_wbbYJeop?)
zw@c@qeWU2wq1oxu7rAsNJK%&oT%NuP3*sG(o+};dwUXN!8g;CjFOFU28gQKRKO>78
zG-U3*$9fL&U{h%c{!XvnQ8Qi{7q_*L$ToJX{sS@?n1C)bU5(Its;fn^(VcvW8GT|@
z_9N!@Q33xHoA7&sW0{1;LLCX{t_PAUZ2JZ6lt7e^L~??USG06<6N|%X$^q^I-6uiQ
zC_<>g%St|a4<Utza;(FDRA=K_S_(1L{z*Mj2Nn-utO7`YOBu@m_+JB12}cfQNk<rC
z)&!u4PaVUbo5UQEpL6$G`Qi>YVm()ia-u&!+VH+p-&3nBx2U+-N*L>-YOrptYbO8o
zS#6D3jOmT5YJj-?1U|o@+kv+YdNeKqy$)Sv6N*5hdx9{)NT1sgzdqau-^ssaoaI5v
zFTnQg-1~OyM#f{{E}AzNlOIO<5LDjuh)b$oqP!N*b8s*xG=o(JO^91O`p1+N+=mzW
z!DDl7i}QswOpu&5+GDu&+VTEx$d~JIwdVH5(fhtW?P2NFwY3NV_0g(JY|npWpV8Pb
zr@*!Qnd1B85GtQrA<tXxhk+n^F!Nro(%}mQ$^%~nPA`KYpp?#|1F?ot0|+EXPGorO
z>_^e~4}jL?+A-#4Et7Jb^TBOUjU&+wjow0(Rj2j_VO1(n!U|h#G4Nv!r<IDaf)-^7
zRpshybiK=9ofpu61*{3f@B$>xr+J*93FkN+u_diHLv<uI_rFBocBrGDf(U1@ZqR%J
z+Z~@?#4xO}owufsNnwEU4!P_WnSp&o@lL*S&mi}w@utmHiIb`fW@q0ng2r$HRZjPw
zX;5&#C|>*14y{(&C$q7?&^-1{v|lX<cE-14k})5dB&jt8fUc(Qo5OBFhv&eK`7)E9
zX~5jPj*+n&^~tY`fB>)+_bU;2TOqk1FwrqqVk0&!h3o1JVY59$$?coZQX8KdBs(VL
z;KU3dsG^hEs0?{;$4-zc6mKx@@3(K&Q@I`TO|@^x0UjJs6b*AATbj}}Eml`^IzgPu
ztX^5gan*e6C!T=Ff{&|vDkRZ8kl(9Msv#!jksg&1fh)`PH3VPg_UW#zL9nZ;U}s9M
zdGAGYk2b$Xcm3a<UVtRovB+=!$F|gZ>we`3QMJix+5)A}^kb<%JX#I*aX-3DfCAXR
zTFH-o)eCI<A3u-EEK`Tyf2eh~6b+mzue|J0N?Z~;OGJaTI6vRNjc!_>-A}Shm2(DN
zeLX?V9H&Skg{HB}h(%W3c#MfwG=|4+!w%c4a<ypk?$t}^Z&Q#yoQXnS2i_q>_V+qZ
z)ylw^#l!0c5<dVU2CIwMysY$8@aH~|aDOs`StV1N)y#ctUF4fg*L%YbG$)(BJwfa8
zGfXz*@V!M~q>gRnV3)#^JTE}gEKORRh{a)|vp;!1@|2*#;+wpdw|Hk-6Se=mSVv^x
zEd=JVt+`_$_Xgxz6q(UFpsT~$@QZ$DqAG-=Y=dPfnMH{V&i&4TFQvB#ZpN9Dw&&)t
zZs>8J`sz3t_4+s){f)7-M%YnT>&;wzlCyBKZvuUkR9<HHS|^}EkgUNla)iU4qeNzb
zw_P@IUj`zHceXAY%!G)qo=|cC=y}qk|KMtYHOD>&(s1%zzVCZ#^k_=L+HJ@1(fK_w
z09}R3s;9D>7PyV@(XrF$s#oc;@VOpvQBfmt*&awC>7C0PkjJVm{tUob?|6>?n<|nK
zkPY0yZKZ>o^Sv6=J=Z4Z>l%(Q+xJO~sVd6^z<d6^-Gu-J86fX>ekQFbGlpj=Q58O3
zD#pj4QRzN`0t|Nl(TLDdN*>k-4WWx(#-=e2WkA|U0b8av9XQD+|BqJ!U(AfPUijg}
z5x-P#%VsK505af?^DV&7{y;_jZz%r5pUq7V9j(!pd23Z;%HZ(Bhl%s{f}nr)w2Wzl
z&Qq8kFPf`wkFKNjMSsH}5Lh&MWC38cDTIny{CO5|wYE&RdH@mb>>kCh82HwUH&=)Z
z;NOhuXVZwubtixo3JlHv^{M|jO!?>KKU~#+G-jhm|5mp8S405lcE=;e|GLtD95xlm
zn=bqBZ8|dhs@<Ine)ynwD5tGCwCm}2`^TaUs`hj7;q-o#B2(bqyV4JRo=U)B!%HOd
zJ0Kmt{|21^;?CCR_JPeOP6YDY^RYbPX>&sZ<^1;zd-$|CIRK^l|MhADAFKXv=Xb>X
zX9sw=mVa;S@$5-HD3$30O;>8?Gl;=K=QbAbG*j9S0E79zo9Z~1&7uV}kwRDal4o|B
zx8h;uZ>)cGtp9%Pdi>|Ae{|3PenQ+&zx;oHqA>dZ<yR+oh`9f|_0j=o&Hr+z|G)d~
bU!VA4>c61zB9HsWzC{@cMe#~e!+`$-e1N6H

literal 0
HcmV?d00001

diff --git a/docs/images/otel-jaeger-demo.png b/docs/images/otel-jaeger-demo.png
new file mode 100644
index 0000000000000000000000000000000000000000..006b23c34de68375ed40377e14707493112ef2f4
GIT binary patch
literal 120283
zcmeFY_dDBd{|Bs7b!n*;>*_#JtM<%QilX-3RkcFw*rbDM)u@@;MeRKjJ83COY+^;E
z_KcVbVm#^n{a)Yue(pcu`RVx_ha>r%M<O}TyyxrndVkc@QNM8&aFvFJ=7z?zrv@}M
z*A!@I&ih@tOkMfwjUyBF;hc|wx-v~gKgTNd=AzRR?I$!e)p6I3?JiO8={%pA`_RyE
zM*jIb7q__WKtpquukrMWQGm?`?wXYm<n(OY|MttYD7v&+p31uubNLS>6D>ZO><*`$
z8u*N0+$}7d5EbUdmP;0=@W(>vu&J~$P=({_`_$Qi;VNwh;|C(ee<i<-_`>pl0PXKR
z=lGuO%bRnwA&SAzcNN>MP|Llt`1!zrWh-ye#-we;>y)f4_h$E*mPP`A`t|<vYA~|`
zSzq|i73%Z9zu(=u{$Fc<y|^9lXaE0s-Kx5x@ZayfVs<g>+<(4^`uyUf^8^32M01|`
zjnjXxo%{4%{J+*-zgGRt_Frp%f4}$tf4%<?PES}in6y!8!hTLbQ4!~dYYFthO6nQa
zEIp+kdhV*ZmSetdYmj|;>;Vn1XSk%=3y}CiJB`b_?1a9<j4>b9xa5U9_$lYwv#{B`
zaTF?|dsqp*YcrB2afiUdE%{M@Sq)>{tRWBCoY3Kv_cJhhcWXV4MQ@Xiprt)LR*r>(
zN8IzBHpiD*&BwTJ*a?j`LcRcOvDyS|y=i2u7>EsY(r2n};yPMBzt}KwWF1fZ5n=6K
z!i?CZv8uLtSi2C|<hAAIFva_RHM4wvbW%#;q1+gI^Q%HNSZI;|IVK!$@X>SCPV4QF
z{l#9JtM$AW`ViyuzGOGoV~Jy-{OC`{G|@Xfbok(ZjL*|6uZ?P*MN`8G@Ib=^hMDxj
zZe4}4nR-8?X%+E05Rq>ECX*l^By&kY@~Ic6oM712e440zP6~iHz`x<vGvyJC*J9}%
z3<uuO4;e>vQnE@^Eo+ioany*Bq@%gRXEHJAsauv?>aK~ns)ZTPz7w1M-Y>eO&F<fR
za_f%^vSjYXT$3!Y^@ur82X#b5)+R_mH#kA~Gp|0Y_(zmO_K-y6wzW1FSK(&6)5E*%
zO}A-i4pyrC+@Hgzh6mH9iV+w!o&<!}$4j+dpXVwn9pL}xuX;@Xa&ng9M?5;vXHaXO
zi8Nv0YPJprhf{a9P!_9X8dJ_}{>f}(5n&E}DBy!ujsYkr`ygz-2w-Svj6g0LniH?!
z7!}UkD?KJ^tG1ORj-}-Xeo>B6=l?lIBNtePVlc_HG=?TQ%f0g4<p0~OdK8?2t|wY+
zBj3|5{#G})kd)G~XDHJc$@>I9%VBlR-FrN)P{E#U=A@n4b80<93bMp0V$(!BbjM-h
z!Ti%{kLXXs`W}<fjaG{pJ)^Ti>w9a_Y?{w%-9-kqM@~=DE=yJOo(P!op9NS!GmzC=
zb%&P#{F_-63D3W!A?{<(;JD0pxBy~mBx0o&Dl|TQX?@x#B6etk=d5%{j3?v!$uCe$
z6QqTM1zWA<2Z*cXJ^wwz%tVm>f6eY%VYMoZUo)f@1;7?wSM3UVgXr7KT;G{H6lY@d
zzqCP`2vmY(9aqn=4gONnci3*F{pVa*qy-c%7%NAs5vPhzF0tGUI{){ZueUH2m}mMZ
z&Vokn&@%H-D?vVw(cXG#fv&Wj!ad1>20Ho3;$7~7^>z`ZF-u)~gOG2LRkhs##M!=P
zm){Mrq=QA;G|8WmsYzw2BP;?u<7rQsI{dg^3yxjO_g8L43SZw-gM9M4BA+)bQ*CK^
zO?fpws=1;hGE+N*_>WC|?}+&mlp6vrN*ZJr+K!pQrahN}(a8Zn)3#uBi)qI{L9i;H
z==aE-*cmpwmVVBd_Dl&zIW+6ow)LzCovxczepbI$B}x5%QOW7KeMEC`#A@u9XQeSc
z5B${=n5nn8g4kZQf6n2xK-|ARuVM7V(BSQp@{b|wb&`wW7*gb;@*tN4hI0O9(fvTL
zCf+l|Bc>}Vqo+BmswGBz$R_3V;+^X>e|H<yuU{zT#}(ha=pdM%bQbmse!UgT-vjzT
z3;eqFuk;}-2bbR;)GN*O7?Q?Yl-HnfI~7?XGJQ?fqbefnM8y-YrhT<FAG|2MzQC<!
ziGSObfttjU9`GC{w$+MEGnTI0Dvi;6U~CIbaDeCMaOVAVyZFy0ijJ-*%->5YlN|zM
z?wvjMgUp`uFeHWXRD8*yBgg55kdG-H{9y-Iw7*naeZ;3!pLaGXVTe*V<7}dwYNR1v
z=8+sM$+i5mt<0W{wtMpyke^41pL!+Z<fkjkmmXL`tGbOHcR+nmk{3??AhwNi;{IWi
zQ{H%Y{DENYPX+4~2Hu~tt?wtH_6%3)pTQo4PPVIZqn4`nO@SI&%X@&lF&QL^Q4`-_
zHIfC$X@;5xWH<cCH@{p{2XdSBsr!&s2p+RdO8%xgpk!6WF+JfCuBO<mSDH{8EvtXt
zUKZEln8O<f35yeIB4b*YYU%>u2!{ZcuwI;`u0Kl)aQ$&WmO)FOPL}3y-CKvot!=Ch
z8x*ZQ{2YdoCBy4=9?tSFFQ+0tdh+#rH33Ih_MHc2^B*=ZCo^hVNe%>ta!NgeaslR1
zqB^gjI4BH*=*8FIKsgdoc%>A(=FjQ*;IX5rz~-|CUJ*asX7JpJ-%MhLM`9hQdi|jN
zlub=h-cn0?)3jf9y}x5?LU*~QE^yl@X2mJyTrVNM-kvru&OixHCbk~N)mxW^rGbg_
zkD)+aPDE?}F<W9Zc=1*TQ%mg0OHxOxZr@<8q=rpDi=h}c(9opDMCeP2emiBY^O$ll
zEFCN0wlU|VhVro7t%y8yMWX!Spilm2TQBdp26lUFmnrFR%^nK#yADHG-M`9ZZ=>ey
zlD02n%W7ZbqBG!Azf@=et>s@2`oT&rtQZ-d?A%%13;l&BiY<MTwl~o2&m2SwxswE~
zkmF25YWRM%@#`QKY=i{`_nF}rD{DDW9+%KRQrdf}H!UnqZL<Uu;BKkw7G02RFR!Vk
zq{Wj$g2BrlZW}o__2FfR`y|RWqW^6o`JaOAwLrvoalPN+2%!KgFKY_ur{OiYuVDg-
ziK7%fj1<zaXnK*LwzpZv9yy?={C=O$BXg?Kctm}rbJO3|D1I4O22M|LJvF2kM6PoJ
z;D0st(sqX?QwSh!cCJcx+PLvL@|cTHP5Yb9x>sPG0Mn5y)?9XZR-%U&NQ@}*d^--9
zuVgp&O*_Rz5vcodCOmRD#dT*PW-Qz~AiHqyn{7#M&|Uk?A^KJ(^5BC$+xTzbo9B}E
zUM)Mkz|`jhHM37Ajc~Zoa9&h>^$Xcw)9K&B$&Svwzh$&3z3u1x#9xR{n#D#h?#=Ky
zI_tmP4K^AJ153g3m%G+CvGRcI_JHi*Pe3zn2F2&lV1>@Kng;`8;%B~^n1IiveLh{T
z$Pq6BYfPrhbAl^t-)A%2<6kazdTmV)=xMh;c`cmn{kU2Rz8b9O#c7?FSMlS)?i_={
zg{WQY6zEv1iz|H8D^T+3jrGa~J=Zo7Q1Pw@ZSkVeJBitj@x9rpO8D8f*}BJ8VTLsk
zG)k0%HCTTL1~rmWfqR~xPgk$wf`c<Q5o6>1*b|7wUQ1{*(5~ZjIP$92=i2cJB+xf<
zip-TGHqaak+{nH=+Zvd*rDqFA?b>Nm>h3(ri;hWCkkBD3omDW9Ep*-8<951kin#fn
z;pD1q=_=XnD{p$Oo$v*px%Wd`VlcXuSV}`M&_1}f!{yz4<}rBrhW~_()70C=PQ+vL
z)v@f|)X?g{4rT4Im*HZz(F5Y4a8j}y(NCHGQ_R3v=!eeU08=_k5{o;9gVM=inhcpX
zePYj&oobI~qZjO7Avb4#S+hG$BYKo{UYAZmS*klvrJW$j5n|BgxK<VY`lkPNlQcZO
zQ|8<C*)@hPPf8vWzAvoVI>ChJ@U*q(Bq(pm5}fY-?hdyL9R2W5$+7AbO`!lQsM|po
zj*#y{QC(j|I+w*z{-68~cT{C^LS3UF`0`99;B;SD1e!dBuu2g%*)P4{tvO9CPPDzi
znO(&lXt<K)tQ>lqVp7F%U3#n$6+GP)R%^7ivtirWa^{;=-M8Uvi|B=v&o>SHuIp=T
zt?W$NIdR&YF6uL}#5EO%UMM9nktmbI|I6UXOmCdN`wAHEa<7&*JCzACgn4ycr;Gkm
zASJY3kNNWCYka8W68FqSMS4NI&RaMoJNU5R%5ON^H0v-Hdn<nXGz(=Jnk7(B3D_G<
z)FpXWWTov_oXP=<!~Y()6ABIcll;=F?9%pq<8qVD&?=pv7`EdE(~}q1qV`Vnc%e(d
zuNMP$6k-AwtOuS<SJ5)z^PQ7xGPG+U9%r}HT6!tpJ&)AH2Oob87q$M7d%9KE+4L%_
zUK`r@Gb+5XGZ;|&y%9CXt2^!->GQ5Wj=kVvDL8TKqZGv~RbqEtH|Ygjd-k2XiBrGj
z4X7*bm&khB-Z#nqb+Hc6ipNQkfsY;~<)dZ*Bv*~JQBZURd28{mqFut#^^B5mhOvl(
zJ*GroVr?e^E0tUd_J|#P4HOz(Vvy$VL=cN_1F9#|xl<43!U>Ag?(f5;gBr^<u|<c_
zCKZ2F(n2VWAfLHUR)E>33;}hyt0OB1I;sLiOJU7cjF(B6qRE+<*5|2?0l^2jCVvE(
zSov4RT03GySS$TZ%x3!n-yxTuIOTLda+DJ2p_DGU8T=~8!0P<2P4U<2PXjuv=m=So
zb=A=Nq3g9ErJ-@w3oIwwulZK9r<RFz7d?Q9llc3-^Ml2jdx6Lx`S+hjIWHVpN>6}o
z(icL36B&a`x-1sp=7s|^NyJpX-)5DGA|#UOG0Ab-<7`HoYr@h#C2+evnvoP*a=_PO
zPM(}>A8(bM<1Xd_qPQ0}rVV5YHilI))6ED8tf8=jWA4^7H<$J3F!9dcHX`XvC<O|p
z_@ooz_ImD20$U0$&`vqb`*3?r(HkKZY;BD9RkoBaubnbj#vg6rUZAp1!u}~i^op(j
z)%=%Boi_?<I@vPVUFrjmKNQ@Rs8W#_NgMXy9-T--OZp_YKSA+|MG?L8<Rl)e6q-++
zLD~0HwIBlNzts0n6KFBWhKxym@h!U+oA|%<?!)7V1;XR1MF^dhtyq!dFTbt8qAj{2
z5Honw*4L0@-%#0+#n-tpXeR^uK8v%2qlRK%hpZ`5C*M{2TlArO`h*Nc?A?aj1u2<L
zf}2Z@i1BXO7VC7Wa-WKOZXcmy`aZ!yB~gCL9|uTdAIKc^1!|zZ+ztTtM`&dJvHgc2
zUH^@uIifA^lFKaZ0D?DqU}w)4ZY5>o!?EKyTi&!9i|;HMVsZpN;J353<3TBl0h$+}
zl5(9R!4jo6(+f#(-k5<qOsOSz)*)AI+s!T`Z3^Rn*vc(0;(GgR|Lm_l$$81&bpC}>
zepa#3ht1GD25C9dx3$*{m%D7oEXiHJ>^%yEM{y@kGLZq%4#GobOVjVK)JTK8@saRf
z+wkcbpz$sRU+!`<l$|`?6|^qwQR>e*HXOM*82<MBi}<vv<ItE#3EU8ZYvML1&LKp-
zod3*oS1wL?>@?DfVLt!&(a9rfyIc;gtjFLYJ_U)b-#*(WyQZk4R{p2)F#L?%U5MN7
ze_dme>{A=!o0|JmngUZSGGTUCB2Mtg$3S3`w`qib)~ppR5b~;#t)-Eh&UWr(g}57Y
zw#R0S64<~@aJ1m%Q<4<C$f+)lbFeF0*uU1AP~dVFrhNhTp4fu#$1Va+4%PF3xNo0Z
zIp*u2$Du+<V9hV7c6fH~z56lXH27P3*PI3}#nH)t&9?-{37OD_>BC5o#!jh#57jq>
z0f7Cm>%#{Xu)38-u8y!u1!U|HZ6@|<@jEy{qU%wlzuWjyB@PU{(INb)0)I#=={gk_
zllr@%-`m_z$-FRMhslG`MtMG7<HCh#EV#<voP@C}PxGwol!-0Zc0~ERRmxZbS;P7V
z$NJcle;0`4a#@s-xrH2iUv9}rc?WXF+2>W+q`_Y`9X&N0QBAVD4r|q6Y*MPoCp7~U
zVyqQp?4qmPB|6Q<zEOxRmFt)2cROy)2$<AQkM<#BcVukaMxB-@X-q`B4Wd_e*Rf5#
z;qpy_8`{BZx3yI)%fc<Xu*bE#j+pH$Mbh0c)Sr(z+^6*y&tE~bgg%c(@W_WXB#;+3
zq7Q4vzKC$a#G7|)v#en(1M{!%%~vEKy115G>(MDW8qmH>pz1cyUSiA$Ij@13f_8F5
zoy|=XX<xrwSXvU`<LmMR+w^B%`!d2y_3H2RYZ&pfC+GkEdhP1fVF#FX!5XF%TY(-)
z6?gJIKJdy^3bk+=$b!4K${3fLXv1v78rMdP?bj(gPf-_=4OJ`nLR5b@GW@l*;h{=T
zVs;)@VJuL{&&h0y;&L9CDoWK=D3=w+e7=mVF&_!DtOHd3X(Oh~^>u!{6@{F(Go~q&
zz$}`SHhzYcr%_t6$VRtIIBte8*Ptr-xHs~P^wtZ`^VNBDT#pF>HSRt+{*`-|mv8fY
zwOHI*`z3mT9{4+4I2bLt_nQIW{Zfebe$3+c?nXvUb4isvE6Uw6*phH&ML_*IM(J7g
zbkU9&sCDh>EtiP$N0XG8W%r!Uo4bGck1O0@TLDafzP-`a8J`G#d57y2&gi>B@_~YO
z)~3aqitw*dIV(S$bmP2yUNnFCs@enGl*$^v8;=1;G1!tH)1*<$@UUgQbG`H4%N3P$
z3XB1MBB34aQNcai5>s}7<_AOc=YGHHlNjsrDdRV6s16BPja<xoenkOR)IhMGo*&sK
z1AhukJG@J(^>5^j$#}5b7xJa8wq^snUF8m-%+&%2O^RaUBj~J=*2K(qu)cfP*2`sT
zcaoGUYSY@)ba6R~ZGNGke56-npwTEKdMJGH)2HxX3j2l!Li2m5k!VQm{6y!3`zGZH
zh;7z$J{|%P-||{k5<hC#Rnc{ss^S7|I6iYQnaGfEQHw9h$x@z_YE;X<A$8PiH<Abh
z_7a*Y)g5&C&?Y^`Q>g(5in-O-{t>^Kg}`1|@T<I~WB5u#&BTC_ojt6kds4=@9=KQ0
zzQd9?REa7Z!cCK#DaePLv@}Z_5JpE4cMcDdN}FKN5*=)<H>)#W%7Lw2mey4}s~xVo
z7$Rj%;0_#5dpy0LfKVK7Kim(o5Lpmd>;smNwfZ%Bw{+U~77l1Jd^Ia9B7BF|C;OGc
zOq=bOSIg;n1uA|a-!_XvyeP~|A-coIPF=1`PW^HGE@c+HjT&iVcHv7{-YD!Q3%S+(
z+kuy%M8`C5L+p>f(8kFD=iZmFFyxsKI6z^nJ*Y4@WjUAf{gh6j8H<;MmD5T(^oVvy
zd(|39mo@@{#m+qIFY(ZvX>IX45R~yb#a>ow*)1_9a+G@Q&Nym=Y+6oDms`KPxS>WV
z)p#nh_PT@$K<gcbhlj633HJ7|o%%2Qx^20_teR@qdHF`q?Cbb9VYDUhcdT@iF27mU
zeEq!^6)3aCwp%olP5wF+Ecf2U+Z0~><-+%+9}}Bo5nq`PYz0b*_+dP4-NU69HWehH
z;DTpYdJ3j*h5(4JQ}St;!h@ayRl&Gqj$0BJ*z19FtU>WpaZp>L{ADF?LrJFtT>r`1
z;yI$h?j1l>pdPU|)F=~oQG937Ewd1K6LOO$;O657`sV?Ljf29*yR_8Aqr<k~o+e7<
ziHUwRJG8`~oc*V2;#%h~N*KVcGlf1M61Ao~$230ZP4|RXz2b+_fN=nBA9CqZ7Fv7q
zUF*dxoF_}q6>%iRHHH{wJ}%2vD!Jyj{K9M7cw6Agn`MT;X(gny8+UNfjM7qwoCe{n
zZaU3d?<Ks?3Y@O^)E~9^`PV+{!<{gBkIP4nGfK)nR?6!6fcXYG^Cm*!FWUXnTy+fc
zy(A&NS>Ur6;AqWP8<`)zwpJKT7_sFVmMHZ6M$tnQuY_!eHRpNYF&}0OGj-rZETU_n
z;|p=xt~{tm@_|J!rL3x2%lyubBW7-fI#x8kH%BF-#5nl+mF8=;!L`xs-YDw|)J^}>
zc;yT+5B!eZ47G4W;~rb$A_oLH1e5QuKJrwi(}j!`F^zru5z2j3W%KayP4Oj^x&CpZ
z4ajOC(&uJ0c<RfK`OG6Uj$S;ff~5spFA7{=f^iMEddQUpv{6B2Xq@3P!#H35i;zfn
z38V@s@MTNC$vkAb|Cuh{)uSY@nGVXr(o<fwI0*^d*8M$6K+b#~mssz1=Q*wt`#%8k
z;N+<^qLs@jnx%|h@el62TgN4MlnS08q8dn)bKhg4qpxQw1P+hgym7-g1|aE1i+T6%
z9k`wfr+xLt);h%zn#^k*5w0|E2*-!JJ!o`oW?+}^YCf#Q9oK|Fpky{_Z2}jQON>iX
z%Dq>4U{)`i2`_ioD^XJdLfJB2ZKQWE4Exd~nQqVa@gKCPQ!|CBYB`_gy1_c2;a7)q
zn>Y`*kx2~e4bCBaTGfLPL2154NsckvGf#yT{s{bTS;3v)!I3+;DHl!)%-aQpIh=xR
zc`h@2>r{+v4v(s-TmMYa&8{Q~L5J}~uhU1^0#sT4CCps!JKTUA_g>wSdI$I3Mvl1%
zGdJsF%;t-%3S^|D1MF}Kz~gAi$g@_E6WUt(BDr~yvCn@kT{I?RNp)iK&X9KEnUbm(
z6+9Sg4uT}x=e8MtQ&SS}m;G#~uvEF57%l4{Tca}oB!;}0L0o4tjj7Zqn`<@)r^jd>
zG#xl}ZB|KDdX=?dwL@Pj3YFTeiTf0ih~6y$S75*A983u8iwu5Jb=+Q-lkNQlW$ijS
zFAaTvUb-nCEb8NF3I9MEaEKiVD!JOY&achSyWv(6YN#7iHx<z);k#ql5uT}i7X-y-
z_Rn^WUguP_gKP0G?@IRDIbjif&0_t(w&Ubb*-YsD>U2YFb5t`~Sfs80eI49l;f|kF
zd!P;V?UGbqxHcj=yt<xLc8HduV!Z-?s(jhV!MskzCF_aF(PJ_|b{b?Ub>`U%3glbM
zfoWZ7VtWfH9vBgEts9vD<uQj^O#4k4tHxNjB<EP`95!*SO(VWV47?DA=4EtE@U#2N
znzF(dLQX|sJ-F5u%g!5j`zY(gk@vC@R~T)rbNVj5%SZ?SzQ6Wy_1l|RwCkGs)Iwib
zpN>JU%EaXLB~oMeCwkN9Bwak@s(d=oAb_yS(AHn@!6wMNW!F2gW{VMas)?cXkc||;
z0zr??Y&I;P!AB3bSJRec)Osz74l9zOC;!4xx7QV`qex!O+(2*;ot;zSb}Mp#XCe!3
zxyojO?TE0>La$XRofi6h$0&T#>b7$-{L{7?#D~s+J%mK;T9ZmDf&A04*9okP7;^P3
z%E<=#Lc>HVt#j|Ya>s_lwbDwHlcRkwru~ZiAJpr6gx%!~PC@zfb1T`<)5$RsZEc(9
zY1oUA0&ON{X2;;xPqMzQVScsry+~2Y&kgq4xL)KA%MoYMw7^S6eP$}JX?Xl%UkLfx
z=*?7lSYE#g)*UsB3(X!$sOu3cEOrM3+e*U>^@AC5`|oED|Ls~565-;^?SVHHSCxkb
z@PwEe&=jT2oo)d1sO45=c`fIiejHqHpdrHsd!4ZX2o5=n0+99SX6uw=<|AFpMuM#>
z=%pGTJXBnzc8IN4tuqIgE=KmeE@;jgUJ+K}xa~e{3*}m#PQ}hl{SG;DHH~kVaIG<v
zGf%x{Gjwe27<5mIPDF9pNTZ)Q?a)U9t#=<c+$AfT_~rA0)USmHkW6N9%~XN=42e_k
zA^B+viH99MTuU!lL1|ZQZ|r=mu<d?U=IgDSB32$n!%#3Z<HoIG@lb9Cw0w>I8?rti
z-sF>WPOQm@u%T>WnPc%QelNJzAbDsuitLSLW*E^@u@1|q3G~;%BFsAc_jo5B=09k9
zFWj{{;4T;+q<7yWFWc+pR|jOh)kpVEyM1|`(eTL2{79{`Dd~@xLHyAUC%r!U;W9Yo
zCWqe)7fUIMi*0SO_z;{UH~zN^9oB`GNy=|KP0YkIsE1K*-r=Ce?-gH%^hbRs`wWS_
z9Iv#&+Wa*$sGzSIw}_8T=R8;7=(>_<gm0s|edc+@Zc<e@8d5)QFQf9T%$;o^DPWA&
zQd37^Iiyuzs~o|9eCocYS0MVLM#*yJxM}<T<v{ZNODYE*v@Uh?UB4_U$|+@tAEbGO
z!ta}+Cx`Sl!e>%3qvSYxxkx{}dEuQ>0x%NpV?WCtL!9VDpKxnUyaND;i$?-At?t!n
ze(On_q*A{(u;rS^U8_2j=J>R&04OyM98PcSI<}VPca+11{rIb2NRjj+A96#le-8sv
zPH2Qdj_|6oM-)F^1%;Mroy30;^jn#1A^mt=aWX#aaFNBb`B8s{Y~FlV9Cm6c&ZcjR
zD<d`ZB`KzRL$G$BCyH9Tr0kgKCjG&w1{-~%v4$f}n6L4<<&Iv%iDS;S7{o`EVf_Ka
z=ygJYk}&2Hx+`<-_x_X4TaqAvD?F6?o7r2J#5q(1>FffvhmVVe3r&gQ){HGBSC&0+
zA=gwQey%XX@)qfAiGGF-!!h`}J>e^#sg%#n!f@%Bja9;vHDxN7wGdLJw9Xi6tvpk(
z{rY1+hD0T&YJtN`k|Ll4!zo!c`|QB)rGw7{VDg#tOCA!)`#eTBwI_Gt4SzfQevJ*i
zqW^WxqEM{9sZwHNlL2C%F-Hrm=q7@F8EeR4Y$P=u1b2x6mwCCqyHcbyOu*9R@NI)O
z=Tt!L1sknd(spRh3?ZX5ILM$BL7u1g$e1WE*Wu~BkCE=L|82L7_cKK6R7atfpJ)eo
zHyt4aR)+|qJ*C?*J`;nZhgn=R`-$&znc(9tu2HTHl_|MFH-~?z^MN+gJyuVksKro-
z6YvTORXC?v)Uffe#S(f0J|$)2R!9)=+?az0fsQRpT@t^gRtk+PdAvQo-6}!Gf7<U)
z7jfCiYnRxm_>ya%MFlB+uQHSL@adtP(rM_%-2lI#asCLWnuoFV_A*)&nPp8BKX-_^
z^5^k=^=o#3iTq4@yq&Z`{i=Q8u`_g^FlQA3H@iz1ZS=nnCo+`2Y437r^U+;RscM_i
zoNSt2?V_QAc!o~g^~H{o8%Pr@FC@<|NZ)#fZ>h#`>wc422Yf$={&}nX;Vp$YJuMh_
z+d@_?AXa#9$4YHgUP?}6!1^-(Or&u_OnT_d+?ZCXyfpKsz5i+f=|&j>HbJaU<0<L+
zW37&|vLvDB&dv}2hrYh@_aP=r`}E4_Vx)Uz%Z{dUeTOKebK|~YSa$NIlbc40r#Am<
zm^l&jv{T9@!M9};b54piOtAfh?@Fcaf&#5YO08qVuxc?OtoBBg=1qp6NZ-KGMc-EQ
zw6nt7{e^Wm*7NzeS0Q%i%aKMKwNK#$cle`qg9YtTF=PbH0ZRgp)0&L9f0nZ~jXGzS
z=-eU8Ijw^k^Y~Pp;W+Z_LUu;3jBAhM`~w{2C#X<Qi=uv(8_$z9g=GL;UMWLpQ}Jk~
zar@$_y*KuArKmZ%6!$|x|3AQuwLCh6iaW!iav$2-RRfw=AR;=t#MaN~6M$_;#3+w}
zP>aQ4cu^C&dZ*|J(!;FxsJ!k@sGB6AsWdNcwzl(vjbYo{dI|EXx}^6rkq$|b9LBkH
zcFXG`ukt~)_8noW0-H?+7c-S}M<-n@?+G0(S(Y-f9{KHveYGe}m6M4GH-xY2X<%Jc
zF2!26j6WlIc*$!0EYXM}o>lRRn3eb8vmP4W68ArImvuO5pDN0ad!ueR&rB#waoBYy
z)Tec92VIAW?5Hh+YKpmC4880~_ce|twlBQDF)WnXgOKW0sKd%89bt8%cJ6-msF;_F
zqnHs<hbaXy;_p@z?_mBqQ{)_*smz37`ujqtKj^dYT<f<x{FD>Rd>KB6;Mp3+No{cG
z@#fF^*oPxQp?G>#)CfyZpm6%5d^gApK4y*CI_jk1ma0F;E4UCbKOo?YuWo%EV$$qe
z*%gMukd%{gL|RXMal!CZ(CF5P$p5H|!dN&s+?q-15z8Zmy4VU=%+<l@Cp6u}ykjN7
zYt)pTcHEftQ1JY~>$Zh6ZYGB>=Ei(VoL2B~Y0xIVCvJ1}x;~`T9H~4Sn6%FC&KXfW
zkf?j$d({cGQ~feq`>BsClLvaLJakjXXCv3E$p1ofMxJ?p;Xqup-ibjB9WEn5MyMUc
zl&1mJ&f4Ix@MhR8I+dD+_2f{?oci`M1a1kg;V!UgVSq|9oT0{zwGG3+X}7+`&%M_*
zZBzGf@ufZ6bjBcuyQ1P*1}Atn-;whhqhqVH>I907TSu{7opvmavZC)|bg(gaDQQH-
z;>MaNv0vdc#Eeo_U>yv9gpop}SUhbq%AEF@IP`&y6+a?q*%aoB^RCWLM&!uh_w;-X
zZD~_tMkn$|_e(BNV~`*<1byn<ZjXv34@-fDqPLss{hd@H#M0pGw4D5GURPU$$M$j_
zTXT5|&xU1a%Zr>PN{~6hz)4n8tE)9Ya3*&4s;a;#SJ$GXF}E8jBcT8Ih_R5yZM15$
zQ##-6Cbt<F{-`{9u@97D?*5)6fAaYUE6V-wS7<g%uzAja74u=J`ROs_fDU|eY+VZ8
zu*Z$fEU)b}^_~Sk|6g+;R;Q)J#%R^wH*Hq^wma!uXSupLrp1R4tp2?rZP#?abKHA)
zgItTJ|NRoi9Z=A8=MUC>QMk6Jc6D0Tzp!t&Z?e`2JdP<buC;EjJyz-=*4BK*zbWa?
zUjJA_<@}2>0Tjg>Nu?aHM=H-gW42Vy?nA2577JVg4!N!RoU-Qp#@@MKxIEilxK7-j
z>HYAk@1uJuvy%0aY^Kt9=0U-JSqi;!yVd#oe7>EZJf9HKW;o5d6$uP@f&CT%i_lTa
z7~1Efk6?!0Sjb2nihXyu%l_$I&Sq-O;5JjImadplqu{WsuERv9eu_x+&yoACI{(EC
zvN>#fze{^)nupsNI~KP;)?fo##h2AuKYJDr$!IQ#ExOopW9RZ`@d}_{<p<9ZCQK`3
zR?EG@C)qrrScf0=F27vP#iyS&FH@#0Nl0Vrc-6blR#b&?lRM{Nvom1!y-Wvvm=z=Q
zqj4#EY(WBC&*d@HZr@6In##FXGk6C^TT>M^n~ogD#}1<a7$ie>CU{XFLXs#$PgV8_
zGK1Q(-#<jUs^caqtB!m$YGP$g4UE@7eW_w9BO$FV^+Q2#Ln4z?!IGb539SA4^AlM*
zPQA|#SF~V6Wn}x2TeAJ2l0m3E1+e0Kf1n8wZc4WQ&L>~`i+-E|?=ynuu~~9SMk7a-
z?7PZRxEBhXYgP38oSpE{d`8Y$GH2&CqykL4!rOYu{2)2sN;=qBV=|zFQ^VpFyl-vU
zIwUKGisDrKL2*#W?-ma+ZGS9+h9y!<xbY|GN8--PeQGGMIKL{d{hRF}y}DH?D@kv@
zv}{RL_*?s5IQ&SOr>A;ZTp^TPKWqdR^!8NJNCler{k;s4?ENGC$OE}(Gp%^n${hp<
zc&2~$TML2BpWA#Or0HwADr%lB<lCUQ@uUON@>T1~c}*(cK|~H$HEYc!)bI7D8%o#(
zKs&nX^awjvN%t&@@-V&i#1C<AmM^zTjQ1@+^fm|L8Vv-G(b&H{Xu6O3^98(A-=_<I
z3vZWmlf?DRRQ~KRlmu;Yg0|CRLC|^5HN}wd&6AM_+UeDLTGBi&+4wM+UXyJp3!N7f
zmd{bTs!tPVt^AT}R342V4nIf`%yiroDm$H?^QU*6ihAXc((0-5+j-bJl+$#K8s`(6
zb95~d7&v@Nsrek)8@T)^pSvn8<>un8=^FvX*!?${q)j7Q;KDEctTFx*+S1j(7E#>h
zLMlW*r0J?K{RTPsP8BuH|L^tH;QrS2ugZ(=7DdbBW{fwP6(udxb<G(cLTyZi70dD~
z`}|}-drU|ekEAfMi|qdOG?U1>bVu*m;dkx)_5~66ue%}4N-K_#rC%}v?=1T6U^+mS
z1_&Z~hxRg!X1>;!X*HPv2bbNqT}<QfN;L&4xt-8D?M@XDTJbT&J1{es#)|_@dX75M
z_MM?{@=~OM3%lf5@!d7WVOExu;E1UxhJps06KY{k4PC-%0Xk<vnGDps3a2tHN%tfZ
zs`xGfI~)9xsqf3<?;Qdy6_`h#|J7Q`vQCLb4Z6LyM{)nN)g;>U1AhlP5B|!(S3wal
zX2~?vNRze8q5QTTQ;tbZH=0|;Ug-JA0UI#*C=e8A-Y5||X{7C`sD<G1+A$Im>f=AV
z?_p%y#bF+=8QC~>JlRa8ii+dCkl8^T4WfWzur%!Jt2SnE`Qsmo7i+45s!h<|4|nIT
zV8=@;?!jYq^FgQf{_8Vrovgi0-I-e^)oUEUXL*0($0efRHkv9fpq7;6b3CTJq{7}u
zFj2pCwMD~B%K2z(Wx&s(0Tsi&Q<T4e1A!8>-r)rRa2vXPk@i6=;N(GB2ATj?rKX9{
zOCi}JBE`BF)@9L82(dVcK~TB@v-_Y_DcIjEeO%^dLlZwT518`9;wowiWPxxzD9>nQ
zM`pgsnLw+Y0w|ng{V@?2`lwQsmg6D(B|VLl<sDNkjJ3bfuwU`kH&MmWyFK{=rx9&o
zs9<C8zYq4}b?U)3UeW)cRs3UmI3rDdy$WH`*CS$@z8pIq(iN?msHS5F>%BBDNvLHU
zOX3p)5J=y{ykNALnV>qp{HxG~g_R;q-8EAJz+{A8S=j%hT(Vq)pK_Nq7c19->a;Al
zkyqF6IzGJEi?Qoca31e5#BOM<mnX`IW%*~VPk#F}VXCFgF6`+{vGAR#r#uXpRUOz!
znaKF?fTrPX&MoczG~shqiH&mhk|GVCZ^4MFDY3A+Zt~Y>G7|yrPK{HfF~iO;Z4TI(
zZ|U!2(<|yzLcWUhy{HvaJMdn#402j}8pAnbyPbIt(_mum`aY~QFQ3(5fy=+*fZaH6
zfvnGE58KKTX^hU%MD`L^5lDpP-P`d|>$1-iorF#1pr|nzH!|OR{xW|>a{BVKta8<C
zd65Tqp9qsnALX15y03{(gVJkeFa@tl!J1mbCE6xfUsEV<R$Fz0A)@Gr$z&uUurp3f
z#a>~x<(s={5I-~88}h*X<E2pc(gwtgNabSru<(FXXNx~uw$rIuPx6s&sxa`mSeE=R
zki}zv_fe{nQy4d@^x`~jgUqs6`EREAbuLu}zIgAsP_vmfdh7%liSv$iG|qiD(}BiG
zSlTnoaP3Ert`rlU$5dj~dur>PcLX(CXp;5Bp}&k`F(i}C9Gqs=lvMof5@Od&dpNtA
zOk}%(KkV_-gdFSjvV#0tL(j>~c8jCq2Ze^Ef~RysX=mYc<r?V=Y(Y!h{da{to_5?Y
zaH8(|a0UJLx3BvSvk>GUBa^r~%aCy4ywxlE8w5wV&_`m~pp*_i#+y0J_*$vM;hv>E
zdM)oh72oz(@g<(bx$bO4q@nIjE)()BZwrkMfu=%pt@CBIUT=RK_LukYZ%c1BQqiG2
zt3+;wWOw>&o6f0My6kM(M169}*?LTyt~hBM1>UzKoK#}!eBC(g;0o7%R)5lcs~jE3
zQmWL>w^p9~@n~m17pQ01B;4)th-2nwe$-*Xi5k)P^4&Gh-FG+9#bQf1t1kgM8X@(f
zy)LW)T4nf>Tanhdc91!VOBk`%XxY8%Ymd6!8Dy7GAY@jgn$3wYb-LmDEk#GA=Mh29
zsN@Hzv0G!(rlD8e&(IQevHK)%M|hy%3f#>}Qiz*~uChROON?ph0KZ;$t?1N2W9SG+
zO`cA?C6>O`Oml+Fl#`0{q5t+sBlnA0Z@h086y5Bnt&-*|JYv=C##B_|;Zw<0BsFax
z*?jP*imt0~q$r$wJ6uhUYp_4a6q?yO1e_JHEyGq=D>1id9TL?|(89+E(&>#QDcAeU
z^UI}hh%SH0PCjASv2a7<TW&ftcYw}eSAe$XqfNK0+~a}PQJGvA?{hyLZ};@mGAa`r
z=+0286swzf6fb2y5MKjnY_A!ng10ALn*Lw!Ne*+KiT{#)ohqkmcoy$Q|KZ$Xz6Sd~
z6=z}JgU78ePoFd=e@-duOCNI?S{Ii9_bGAKpPKN()A)N_@>25q`13!I7B|Poj7_lK
z>RQX5o<YNaW$ume8zXgmG2ky+9fNZmGsGROyOsH%U3YFE%<z(hAwA^7&b<hZ*Y+@~
z@Gz<BWsai~rD2nE#`JzlAf9Cw$A!UX`_a9w@V@!_y)=0KIILD_JCIF!F+{Fg_Iq>Z
zxK|TV`K6r8*Y+*JU7QHKZ%h+YK+ggE`B#Vkj_uV}uTN6_*gV~OS5#bt@d(*Xe`)4{
zeQTA~u2b*eLgnte^4n2<-G+Q_Q#Mh^=a}PD|CLROy7Opltt9k^H&|&dPN-n_Gzs6e
z=3tZxbF$B`V2<y{kM{~ShtQ9(?>ggSF(%mI`#r20vcI&4mdIs@>g-VU=YM4$MVy53
zCENXn34s2X!0<tnJJkeCAB}e*jUFq&tv_;G5Htzl3{Jpu)z~-KD!U->r_m>OCL~`<
z2G#h8ite@+O4jD;dZojy(i20km@M$F*7|2EC0+L0+WkTP{1Afd0$DDhQ2kwNwvAJW
z&PLGJHh06Wxf#%!vZ6R{TVdT`dckYWez6-sAMl*<<p#L<l{N*dyxil)1NvrpB*Xj4
zAi1GET7t(l(H`Zup3{HM=p+4>3Bhu6BvEH^FdtmYJz_habniD^fZ!v8%*?RFgc5ow
zN<tPIGbYsk#_Y^^*zFqvmm#f`j<+laD>(whfuW|m<%mpI85z?^dLDDIR-BpYc-54R
z24-C6qYM54?}NiTM_Ty3cpuE7J8l&D1|zIP6Km~lh{qHaIy(0Uuh#{l!+6|vNG{XE
zHQIcoi%%9}*4Fn@3?<L<9@tk<=Bkuz5Ys&0*Rd-lM#?WCU80fF+1&2h*!-tmm8+ii
z8}q1^+M!}X#@n&sX3dE?v<#(63c7Zj378V=QHnJcf~*YV#{_<_E5+R%Ke*Yet4Nh#
zCM0dmC}^i|SNNSQL<(#)V&Ri^&=R7@adQjI+`%U6hAPQly0z38S(f-*o$3MSOTizh
zpk#4dV;~7eUxx54JZ?oBn{1GmOCS7KJ(mRg#RXWqBS!_RwOSQlXO<>)R5~N)f3#@|
zEZ3UujgvFlB~|!<Mg2E_<W1Ep6!C{<^e9@tHk@{J>DM9#aZYI;E(@m3A5`CqT#eN^
zRZ<KSg2ehOoHX8@RqewssC@peP=4mNTxCgZAyswQY#$o$o=LTr$T)vwD+JPemen#B
z=P+_Z!eajw=#k0at`WTpFI#{|9L4V>H)(Ur@2!77S5G_0UwY0~!XO){3mYlvGaD!i
zdijmFY=UV2r8|a^0td~a>M&^+Hvnwd8_NR6{Ngs_CC4wzc*Nd0dB}mMN9z;M5*+ls
z-raG6gAJV4F~&;ASAH8MEb00ew}gymM)_Q&%{Jb2DNQ9BRp{ay_Z&oA(>&58oY<Y#
zg*+};O|tJ(18SksmK~NQfSSP(xY0=v_Cd(EfsiYw4vrfLixj-nW3|}Wdzk#nk;;ms
z#_z1+lv_2u&%czX>R7u+YtK)~UV4PqGFq1Bd>c>V4o+q2z6SlmTrebEU)%OGjA2+O
zljyzKk?+F-!t%T3UTo|xh5sr>9hLe}+MfCmVmp=MMn>2v3YFy~rM+y|XhmB{#g)=8
zr%}6IC47+P6y`^}??w;hpm7*<iMPmrD%syKCh#nt9(eEzv!p5_clNv840+_|Wn+`s
zf9g#gK)K*9RfG2^QTWFkUT0^Z$0}}o+VAwybsqiw1E3I)lohafqkOu~baJ_jav%^~
zi8R}OUl7afppd<tk(V_%8YsBmp>%rt2F;Ff>i6AEoG@+In`;&EN2hjQd@ki(n%_4S
zd8@dZ-8U#MB5OKPo<x;UEiL$Gp1(dDN+mZet<Yl;{HO7J3r5#53LOMr+fp`IJlj+#
zfAP<ewF0OV{Mn_2gWIv^n9t}|ebd$C7XPY|fVMsC+vdFzU#*{bCfB`KciOu5Om~1T
zAqlEb>Y~Ffq-M`|Q($LOIXBW}PNjdK7JO8jHji%HSFvaEhhe06+{S4w5%L%7j|407
zfLa{qnI7fB3R(`nqUo>SbX_$JWdi!;FpOyG4+#gO7-GO0$C-cBoEl8cu}|{{8<s_5
z{Cc9wN51eaC3Cnd_?wm5c++Kd(EArFS*U5dj}HcCymR}Qs18zo%aXHfSe$kS+ZN6d
zwP%+sO4q8YOj)yCJO)_o$4dpX9qHJLYpC$a(|!hr#rK=_C8VCKSgzZ{G9W%KIR*9P
z0~{Cf00D{gSmfXA%@QAtxnaNY;i#bM<5V3U*CEUPH>7^t%cyWv-jTurLzVVeFHq6Y
z8=C&uWc_g2v^m^0(&a_{Re(o>(H^eFD<TE#SCqve^{oEjgx2@&+A&4lI?PQ}mmavT
z`ta~+&5~|5;Z8|h&>lJJ8l3le4o<=|T+7)X6A-igvQa{?&E0aV%u!A#%?=QBmPu`w
zlU1qB)XgW8>6p7Tk;%zHfl?%Y;sN(^RO^&;nM$_Bvg(TL_yjS)idq-)g<^q9zXA^p
zN|2}Dwv<#nO1_HL>rN0Weg84Nzu6W!ElSPj)m+wEFq+T1KP$#&lt(8$6$*tUsKo@U
ze8ewKy6@{`-Q?{Zw$I~r>92W8(5ye-Kgl))w<}&!5Z8=rZ84#31)5!=F*ZrQqJY}&
zWDhz$T!wq)rF)+DJQv~1X7cUrPzfD*ZDx|n%Lp&0r04f}D3zUyYgxClt2glW*TmWc
z?Zk8S({}8t?hS``_Z#zzn<^GAGiK1gh1FA~ta{ni*Wi;lbk?pYv`Kp?JWF_10Oe(<
zEi0%YPD{oVUDD|BrJ%nvYM%KbHaU;0m>VxXJBo%HZD;8uW;azmV=Xz!gAP5bcNkS3
z4g1LmSOpAzY0~4jamsS#uUHl>1qYdqa0vR(jHqO0o~P##L)zM7OH}LT9c-8mgmWI3
z;#T$hf*^YFC2Om6;u3TInN-ERk<gI@W`Z~1bZ#MwiVNw&T&EaAA@<`)fS5g;#AL26
zX>i=o0a(kBZSQ#az~sKQ4qN5IWK-~hQMo3ByJkSKMqgZgrc|tygQbjBJK!sf0`@Cr
zTR)-A@-7YuGt=q<*ypWwdJ|@)X;Qn1Amy`WNrL$DCH#m~iRyDGj0}E{j2S?U@5WvC
zM&gPN?TLERjA$I~zLKJwn?uNFxCP_;xZyfU3hup<52<2oA-*D;|M~qhh3ACO-sa0=
z6Zy_t16HS8T#D`UJ5Dv^u3LRxWo6X4koz7!3hm)Mb?Iur)f%_76C5Qjt>xb2{Dd<;
zjjeOSxg~?yM_dAkT%m97(fu|@gs>9B<aB*F!W{ID&1HJNYCul{Lx%KrUaK#;?A|70
zvol5)(?mT#_^?iX;e#Ui3Z7kBD>@6bu(w74m%Ia;w~x7?)ArF$%W<4vo1Nt26x%5Z
zIk#1n6Y{;xsLY43-Zm%p;tRboy<(V?KT~jwSbtQP<co&wOmba+pXOL@;ZX^BFGkpo
zpf2h4?Az{6^1sIJsw3r|UU~t-eGh{!V*e44YYGyv$wBUI%At^_SK~NyKZ>Brd9+d{
zggsCS`YJEm^Y4EQns1cei-4i_2B!Dk+XPSq9ZHhtHq(n>XXB?KTFkBGuxvmsJAjp}
zVNt~5ScZABE=J>7U9$JaNqi%N+t<(S!kfF#x977V#Z$@oeU-q926o~g&b|<|^p@KD
zyg=|$KepkfR}(qE?E-4nZt?chV%Ai;fyRtslc=-ZyfsEU?S`R%?@zUT<VdOc#sjFL
zi}qj5HlvaKz`tBC-zE~c3J+!zCHkbG%%C)}57CsE-Q#My^?Y+(GI?ioH=mK=<f~)r
z3P4W2ES!z1s`lW3-QNw3rOre3M^Q#v?)@kv#Uaa3WM4*($BPA^e!Qa$w`W|49^;vw
z#HhhnwX#kfK>&!_^%dJ>wM`zlaW*#^-4l}7sn0ww{^k5Z(Y6rdK1z#E0QnK}?%iGt
z5ww%NDTScp#N3-YP{IS1$xF7E@pjiX)!DG0W}s=`4qZvj<zXx{E?*qWtqL03?L&_G
zdpS0aF1)F+RV%++#&89Mf2>ofxR#*wJj~So$bT&6M9sPFIz`I<bfXyH@W@HOUa3sh
zG9y8AZFkN$X3q(-9C9OQg;?2e{JD#R{lvay&ck<x)E`0})H-QKP$yE2gtTinL3C8!
zw3f>o6?1jf7uG4~RJ@Um%B~LO*w{KOClnk42*JQImz&82>|JEfiVvl=W03BvogR)~
zcRwOQXU%s3`x_f?mAHpQbO@9f|3m$RP<chfCwiA<8qVf$-#|U6fAK<Qql4X#9n(RU
z&W?;Oaub1mSKWf#XcQ!LhwH397v0c%Yw`0v`@GZvB{z2V4&W@{D!t)!qOR+!X!_7i
z+8FsJVavmNn0lYUkkyUc(-$F5R&R?_v-`$c>-{8<EYx<{Eg0IDE!M51d!*}qIMd<0
zAvixhkofsojMNyLu&zgN*lw4i&U)r0afu((NC@}rUS{n_wr?ol3>t`Dihsr9UNaSC
zY-LG*p`S*N+NA74=Ch^7tc5-Bq)h5K#wJ2msEK}Pfk}9G#!4jBsiVkF+w$Kq#LNi2
zw1^Ce!g*;g4ER6LoE|SN+;7%^AZby4`T0<ER}jCP!o(?`if2GwkfM}|;pMu78q{FM
zrH}4$L^;`nqDz%wId1Ub?<mE5+POR?8{CnlUR7IOkW23<KVV`wpeHH9q6zua>EdgF
zas%2d+@%bE;tUwB2e5UYd<hpATOBFf$7jly7Yp##rSpmeYFzkq5qHzovaLBy-2Qz*
z-<LvFx^5k&OIZ3q?aGtJOiANz4s+AJy&gxNA4*(ph)V#M-}CcUC2W;r-(Uj2@6>Z<
z54wtTwgb(l>Kz)FuuB8i`)p?wpl&azvPqtiPl{jGMPh<=#%oL?i+$qlXJgUvhf0al
zreUEwp+clv*Aodz!>YP`N;?Decj!19yjeg~q~Y2$6dL`@=b1bNiS9dhN}UNAug<-|
z{`X-qr{XgopysIje9#@ng~!N&^n^OuvjnT-;=y+L{qa}!e23^u^P`2vFH97EMlj@(
z=uaw@IPm4qARWD})Y-7_$i6S6qh`&AH5pX$Y@uG^?C(zcKk)P1;%3;z-z|j9-5EKs
z51m{(v2vH&W~9cYBjR4n_Ro>cP8)-un)c;-M0$Uv9p14b?eMdl3^<D<sMrold9mUn
z;_Aj1Nn6MxNS$rE6q?mA4pHGOXxQ!m7b;$vsMZqdI5`y3_R&TGdKW9dibQ{sjgw|s
zrMEv-G#!4t63FJy$=(;}k(XW_Ke=4#THz`=88!H=`KZ$ptRC-QqII~Kc_U`jX-YoG
z^@D5G*s)F7NbWe{L=ybNTYC3_S{^>cI`7l95w*SHGM>st#gW$|K~9~@LXi4UaabP<
zpFqFvo3V@}g22NpPAaX5E2BTJ&SR5B6>TlrpHk8|Z1?0Xcci*F2CnZ`*~sNs+p=Vx
z@RV5ALEE+#sl9dc-}wIt_g^`vL(nFTjg4~9(-z3J*8;A1zw#L;t4PwwcX`WV(Y1|-
zX62hLrWeuyeFRtd;^z|+-J4->6Ku@7>*eWE8zCGp4^(GR8GO`TrcrZpBI5SOm8QYW
zc<Os?bCplMJ8tj$1$r~XEsXepQfcs+j57LkUt~Qc%I<w;q~g}s_t($z{0hFA)tiXj
zR+Ip*(x&Z4nn}}ETc_TQqpv&Yb_e;ULJX0gdv4M68MJ8)Fv+&=gm<-;Jz$l61`VE;
z<=59QYyjT@s+KAk*+IshZO_jP!#+`^z2~Va763J75+6ae7=sX7FJ)_7Ie<DI<tJY!
zXr69XL<BAIz(zh&g@bCr#tt<pb6f#E`MI_=jyl#wcPbwb++7Pnf4!H@7c$tlX2r(r
z|DEND-I~HN4^P<ko0%Z*&vTkgNYJ;2VBWQIdg*oaB}0i(F(Wz|I{i_qjZGy}Wpn7o
zpEg3rDt&;#+-Vh`yPc%43Rx+@Oy4?9`r&DT(1{)~nmi}AG_j8BNc+wEdO2(RghN!H
z=youH=qoF~qDrnheO0T&%@-`oTnv7HHZx=;(iwUfdOF6f$zpV!YJf4!02zWx=)o%y
z_@134rXjuc<w;$0i}_{Flx_DJ+CB8tvIEP%=mx)>hT!0bJ^v4T-x=1_wzcctZoxv?
z7DPb6vPFu3fb?bqwkSm)p@xV^3tb>cR}oMYu+UrRB_RX|2{lAz15!f^p(7v!5<&~1
zg>o03ea`ot^WEn@&;5Px`XPBHm}Jd0=a^%>;~npSC5hS#t^RmC!t0=K>$uQS{zF~p
ztg9QpY^cR)fXc|9qP@7{(2&$pk%EFiiLSVqfKY4p@wt%-WJx<VUpFtZ%ckHJe^h{W
z!?CyIZ`5&$m3@G(`jU@n<(4MOJ=k;cwFCwF+a@P_H{tQ$$W0h~z7XLHke6p>W-O}?
z6(QyO;1VNlqrJ90A{DJlU(jd9zPO$5&#asZokbMCBXGvhjs2om&Sc?F#KJta!=J3n
zIN1E=biaN4#{F<kUKy4{zQ6<G+!OlSq_K@C|D*)`_1$s4fwgwWnHBxV6Z&+8j$VFk
ztEv=@u~>by2}kBJb@qf$7^1XkY1fpvw~Z3hP$>R-o3v#|-FF*9nid+)k8AHeES^{>
z-?M7!hh=L`PxMBz-YU{t0ZPl2=E<9n0QL%y7)1mbyn%);sQ&1=F-p&(M|@0K&Jj};
zWtp*8jM!dQJHP92Z@tx3ADak`9s${c!PnmINR})SRSfS;3(r2ZIN=v7ns-dL!68l0
zC#pqK<J-2ij(qqpvZ0Tz=`Fb~`tS-a$$=Tdca9i5c3bjU^O2ozWI?68XRkNuobmar
zp$uXcb`2=G_KLZ^-`jImCga8K_h&^l?+r=tiCqCIMo)a40nMrw)U~gk1adeYZHIpa
z={TQg;!Y{5+9Q}sxOOhBs>C!DMyaX0^FOeI4M~7AmIMoq0p$zU?LfjRO#5fmzKxHh
zTBAD7n$`R2$eZEyN!Qf%?h8$I*PLSPA1iuo-tDydSj5c-ksduS6r<3r1r5&fw@okl
z;4jb~Bo!5(SHn<j(Q97akCpzRZFo30<XKp@oS-VxJ`SN-pRmhT92&%54gOH%FUI>+
z<r84auG@}0{EFn(krE3!)&J*8bG0Xf7()>mpP2U<Vh2ah%4`@#tbZ1+>z8l#?Mo;N
z#hyC*fbs+@YD4jvt!_$fS;8nbOJmsMqIicLKl|NkrLcDld8G<zJ<S`wHj__%vr$u&
z#V7TmD0hm%iZFq<CNV+aV+MN(!<sqe+Ti<iM=qm=AvZp8$J9-`RIcTt4(YlH*GOE@
zyRC+S<Ry$zx#vWB=ER=xbz)GTZ2%PNAsy$S0J7GuOpR<H7XNn3^1g#j<_WS%d*<}o
zfF94p)}{7DT&Lyo3p^SyI*amQkEU+X;31C`^VP}O6&<?kY=W=d2K%R=!EzKdbgL=R
z|2oFNar{fk8dnyrO{<|D9&+by>;6lA5$|xuHmYRmQtnXOPFuZ4z85ywr~Ec(;%v@%
z{=#Xz(4p@+zO4YuAPm63zc!tN8yZ#VNu?@#dep5~rC>S+(gT<!5_LfO`R@MGQeXc@
zmpa;dhje~n-|ojQz6_h&t>(8z(%Cm|KPz2gEn_?1t}E{G^rNB!*K3h5D0Cbez%$5M
z`6B=(_YALS_Zm?u>$HA+^Kd)J6gj&=wC*!Ow|?{9_S!1bH-5u===n9YpirUQv4K3h
zg^wA65E0^t-NLVjK&OE4*;sCUp`3rnd8`)4P<x+#Zv?p?oR$kkDw}o00I5X3polG(
zDy1u;J(eKT@MIa7>7*y%Mtu%jZ3zMB;8;i!r^1i)PoJjcM%^5xORJ}jlZ#FDl5DM9
zjB0Ijm{gMaJjtA#()7E*>?#dap)nvdyU}ijvDF;$b4h3keKfmW9O$+uGhZrUC7+ex
zhYE6xn0kl_y~2HcF(|2!y-05R@~P5H*?A3R-_O#gJ65g3ioGWiq6ZFRfm7s#9~QBR
zBJQv>0<=Z?Ger%pOk)jQD4f{Jr%^rie#v5R@38G}-OWAGN8<x8@`)J@O)Nfa7I5wD
zc>}T9TGdbauv@KdXhuOXl+{mwuti55O3szsYk$`|*pte(FrOaK|6KB8r^6(7auu@b
ztFC{=crOHP5~EeLun>0Qth6M+|4um^?|nM6pHnpC$=DQh_Iuc0jk(bPJA0@l&b2$F
z(RaD~B0ce~`2cSOr>24MrC<pRhuNuOC@p-a44ci=<O5O@2X1Ng@*q&oh5YdzFD52g
z{#QGAIx`~n$;>zK>E#Z&-Q`b=gUYVoE+~8t0*tkTqvKiY)}aoobQSO00s;bR0lg3l
z%&NlS;wWBGnWF_cPg~pD`!*)RFrr~QJ$M`T*LvcX3Ug(aY2)@a?e0h;0^#0QdVFs)
zKw>1`S?P8z-z2rn=fd%ZRY4s+ow}Mz6QC&Fkd<1qRk!<eB_hM%%W?O`2JIYc9dY6a
z4LUu$gnzrMg<iDExpM#AeTQS}{DltMY$waxgEf-HH(oe>?b>tV`8pA>q3Mbg_sNon
z??7>n$&&Q5``4lVKZ<&W(|-gTlX~K`ck{@iVQvN>lUC*#<!7%Bq$w2m>ro(U?2nOS
zZYC_8d*w&j2R#O=%Wsfk=4sltMQ2>wH1dNGgVE~w>Id@{FL(d}X*>T8woXckp|O1V
z$O*s({<Zgj;qwb=C(Fm!_&s{tEmt?DKkweBm+c^PNPa3%N4RLufrt}UFF=GMt%xv%
zJEJXeqE)y~dYcGM%YQN5eQ!H_OM|%cn5}AmQ$fmylaq5~HlrpuP$*Do$!UBdIDKpL
zZN*pr_EN#YuIet^;(SpCD8eC=v_Ph9fF(zq@pW~mXpA)XA<)Q`W)4bd>5D_~@~Diy
zzCL$KXPR;qgl*~wPTX^v6ZI9B?ySuh_jxaGKg^^BQ8Nal^OK-MHPvNUm(A|%KpJKm
zU0g9z?wYjCy(0>c#TO=UeK5<|l7S-Y7Su8qwQ;R$z?*jdu|eVm|2{51Vpz63+Qlf&
z^W@k7Ec=hsndb^WG)4|x{YX%k*4VXH(`n$%e1hqFRT|f>@#0k{MAl`*N7HO1wZlJ~
zdMC~GGL9`2CEx!%97aZNF+^`0mka9MFbQn7b3HC@*~73-1joemC4c<|(JV7m+#@&e
zD*whv`6UeBXM6sJ`$fl*=9p3ir_l^5cR~}H8`JAQvH!>*fp?wVj@a@vQYhRXOa1lG
zesQv?M=D<?@3#_f^SXd^wHxIVg3F=9XoFTgUog4<Lc!bN-)n(Fs|1U^YRu2Nm9Xn~
zG94YLJ21Q-eE@{EYD(f!yn}JPGPl!`JUO>>!PmiYR<oj_!tLT@a1sQb^7ZRix0ZIv
zv>jMep%G#r!Q9reAmB;l^G>S#enwCF#0wD)rKE=n^=_eXrcYYCpZC&`+=5%EE|%C4
z02Nu4ib~tHI6H$EeddfVFoYIChD@F<{H}R@6Rs1*X&rVgp5T(GOW01h@hCcRbVeel
z-du{)sMlmHs|QnCd^1SKC}pCAtnMi@V6K<f?UAcEGg+z=%e@s2!0|g9L@cYRJ@-b-
zy9~aOs>l#2#m$s_lLhC_kP@6c_!{}EQG>BAyxPi-sN>I~=fk;IsgTTy4fh`Y{VJUi
z;t&cl?^r+Dot5BGUHVCFY!n2sK5M$PIVvGMx}9=L*}Vs!N5F?Mx!upB;mXbPiPp8q
zgqEmGlV)?o{OP0?T<to?ST9{{dUuB6Ad@Rf>@Lxp{bq4VaoO{JKPG?I(SN=4rxlDu
zPn<_;sI#2RLFyF{1lk7u*AIv;B6X=QLv3vM{%+u1sT<#dpKlEf!2G`Q4`+U~>rl;|
zuved7pP0xmjd{CeGgKE}J$oYLL;YAPZ}W8NTX2wlW>XWsB6CD%FUV(CCZLv(rOg3r
z`xpxIle`1HQZg_si>7eJ82dgj9~)=F$BajV6w~$h^${VfHTZ>1{h*koVn#VdmmaxD
z@HMSle%Uq*y4AG9wrc%#kE&z_mw`?;e`X@y?qwGkXzbHbs$K%hllMZFd-Q-!<&*uj
zi~m8mZZur7qtf{8sd}!LPf7-$S5-vTZp@N*$NImthZo$Od5>~mk{0JumwJ%P_LVvX
z2bSTX=g<H88$JMK3at8a$s_?~I4QTfIk*J}k>680^hpWXtDfGghbtThw^rL_t3X&K
zOy@|aJ}LI%T-#T!&D2}&SV4a{9DeJFCp0BaLDW;r=+8g@%r6RdlgV}bHpC^HWHw)O
zsj(~JcHamqX{FKk&S41!m+}HFID&&$#OBB26Y6P+22a`k>?SVtw1(bvz0sYJxsbpG
z)u2ID4S4dNe0}iOE)cZf6f`ZbxV@tc8xpt_ncIf4i^w3I@23gGx%4aeR6ZLskFay<
z`#{)+jXmxRn7wDP`}q!Nse@sq;*gh_j<aw@cUMTLha{a!>g>sT*c?3W-BwHf0vwmy
zqbiz{v))j&brFB_yS@{yJYbtE-l9*$2-(N%ZM&zq*UPZLf2<p5&;%JZtVGC@9B8P3
z)9*-lvp0Z8(>k}2M^04;eR<ZyzfZLJYUki`q==9r$TK*8?z-r^7RI0bz2;Y4`r{*p
z7dPW*p<b)qFv9i4W1UvB%c=i>=^bN43suuJ2;U_bR!X4hW>ST;^1(X?yY*U02T#hy
zq?KE7wwt(8->nR7IBZvQ{gCiMlxu({1+{-6BwSgrkqbVixgW%^qMw~eRzJiK8XOWc
zfpF*mvJ9_|T~>tM`Y5j%`^hJv#vxlb<~#;uIbcu#l!wcUgU@f=bx26d$nQ8EaU#?M
zjszQs=0`bQwXQn%I1)%%UYj{MiX=|}b$ACairP99f>SRVnP#Z@je-v;E!lI}LK<@%
z=g3@|(5J0e@Gc71tt?Y+*<xv>Tb7;Ay_}tk`f!$42DvoTHc)N{PSi-S;^C3lNw{aq
z28s7&8fnJhf|hY|wu3^wjm=z288+yPfhQ$dz(;ZB!;9#*(c&e~>7I`HgNuh1w>^DW
ztM*m&RN4Sz*`U`%dhA^3h-kn=X418uk2*}&)Y=P}6T3FEcm0a2^U8o*E^)-=yQwUl
zq0=1Vwh?6QQy4SAz{9=`4YNr8YnHV`a4*NCvqpipTsH(59LmnG8>c5i{c<?q*OOui
zR;uoq4PG6cnQ|UM-bir4IShTZ`pQ1LLX4;3)?~A*M;P@8VN%X3=tVHr0&8m+U(4GU
zZ$5$FhBXv$c{s6s)|*uW{n}8exQqRBOse8OV`p#kEyz;M)OCL=g=csXBJR^Cl&U7%
zv*}ut6BIkZWR_5ESMjq#%xv@co+S1FEn-LtNAa{9#|7GNKX&J>gYcf4z*f0qoa!k_
zF&nUkOrTbid_=#4SAqXq-#A~NqF<AY^$bmj!>GS~-!-hHX0(2%|M!u&OBGcz11C;2
zh#$qWCDj9p#WWRK3mrZ$=rQH)e_|e<1{r-mh*r(7dEOz##RPq&c4JjP2YvsbCsP5e
z`@4*#fCqOnkeb5aukTLQmN)(_&;^jAM`W;y0SiZ){FjP;DkP=)`KO)Z4p}_bBqVh^
ztK#_9I%Mpbz1~Q1a_4<BO5H)KkVlAhJtp|c`<xPqgY|SY7${decwwB70aRkb-6Inr
z;U$jWR5djr+B?hPvFBBD8l!ln6cqX-uEQcTT`73P!~oY3^8rbcqxQ}YlXU#}@e0t9
zE{qMJM$$LSn4Ms<QSz+_Jx8w*F5k3-R0108K2ADt60yTLfoKwMwfWhm2;g>;E{L0<
zYuEY?8xe|Xz<>6x$ZvcQTG$Y}p8sv)xUA`oZg`>4jct%}7=oQ6rZs2;u}-wk+s-*T
z?4K3s`^K2t=TcGRCBdjRyqJ20jw>bQOSdsA@Y%a<od_wFZ#&@^#VxW8>R^L&oKNCb
z7yU~2+*GPP%E2Qd<Dgu``CMC`INk<%t6dTHTaMw|4N#YrZOD;?K;F_Yz5AW-E7Mwv
z1FLhE&gT}2%){!X6ujzgLyz>*$QDZuRY5n6G@sR3L0mwsO52s>3|&!WoKY(1ji;!x
zZDXxX?#}JuFXs5Z&)Qs-`!~OL!-ajhP9g?N$xFd@!B)lO=W^Ta1c;x3H2p<$I?}Eq
z>f&_sAp7ZriL?b(FiA#w8e5bkrltD8yLqGJJ6~hWM&SNU*9K2YX}HYf<Q-R5R|P@$
zvKd4)K;M4x9r)QE@2Ph)Vt_6}vxce_B!<_O<Fk42Olgi^>uq~Zn6I)x`)8C@4d#dF
zj~@){Vsq&3ZJLtRVSChK;Pff`Mj<cl@~8Z8kKxMVMZ$)yYa223hD#1m;)|+${)FeF
z!B2NGsj#Eu+AgVEd(Jqu?}PHy*+;Ay0a==V)r7~`lx67P*1nc<!-J-xKs)N~nh6;S
zG|K2{>F5u1nMF+I`p0H?u?F$ik{chX#ZBLb23}nZt!+pjdfOKkpVS{g8w-mxDY<9P
z5QUU9@irNEavd^med0nMREfD)CdO@_w9r3y&h;zeTpb_?dw?wcI+3Xv<VHbTSK%Q^
zad(DOpWRf|MZuXWe#<u2e_0NLuY|g4AgvBJ`MTuR4s`Y!4HG0R^}15Sq8}zH`T5e=
z1bt24yQ)qlzZ)3)kxM7cKA;7Wku9rAR6j}P^L0^`9E2f)9Kd|teI*GwJmbfAQUF~*
zZRjcZaaj!ogZ<v8<9>Vs*e^HpKWQ(z4wR%YYD+pwA}w))z|r|-JlOFwnM<wi^r=&i
zQ48rLu9#FiXH!BTYZUy3=ZWJW3#jw2#C3i~)opl!!<52_j)RoGkY6(d9+BGGDk73Q
z4^>(cYE@>R+C{!#hJUxSv%?2KEmQ1*eY6m&KFvz|9a`6^^oXPCX&6^|qO8M1IrfW8
z2hY@eAg*=b)tDdy2P)YXeO}|<efJksIa*-8AM?m}%%0?aC~1ISHm>(PcGj^x#C5RB
zBphK0b6rne#z)#Di8@L9!q_IA+Z(nHqA@`HyWP5r74D}UGlH#LlvoSPq>MIDEUJW<
zp7C<~75T0l+8F9m2XV}DHj;mBv@ifU@rNPry9MNOJ#dx}nxSuqP!_)=v62=uW7qk#
z_POIa$jLGeN6Yp$BOEp5^_ou=zX-E_46=fIE=7Myt?Y3AD|TSCrK20yl&uZyB50#p
zwWBn%(zP`tb^AjPmvE7U&)8aF)P~)9k3ADF6h|+7Bg<>%+hgfqx=eT)viEXh_8^F^
zYh+i?+S-q^e3h5v6I2*-gz`qe1|b9!5$8hVoaG9>DZ78AYkFmvAf+o1;xbCY$%fd0
z4~LCg@Kn^o*5Z3;wD~4^AU|`@XH6%$N7+a)#FU3`Qg$s+5&9YQ49*W%5?1s56F?57
zliqHPmN5%@0YeS^t6=9;_kMO)k)F$YgU(y7^_$7p{tBuJ0lOp36PN=l5-M#5_kq|K
zF)nBSQHhpt1_&*muln1zz{85ACxSgss6$hstoc!anc)4HJ?!rLQA8)}o%}~-m-bR$
zVReUy3|WF%(q5pglaX-W3p5l~rFs9rZ1X!F>gU3x+MJk6xn*wD@x8>dQx#!(OGW#r
zYvett(@bpgEk~?q$DxwK3s`}p#Hna0w+)3QPp#4lIqC<2r%HE59P?ocbJpoQNXqPP
zXA5W+aC&gPOd!BFa&R)cs63a78olc5S}9cY=Cl}1Cl088F1n4WsHz~Tn+<6K?ARg4
z%VrrlqkvxL<k)^r(!SEe)1775fJT2#+}L`x>zNP(@BN(M7^|@-o*@Z=#`&m|HX=EG
z2CwSAR(wIiYsmFVqfuc}+WGHxM;M)SYg7uL9x73(6Escc9<r`%G4dwOHJ=2xgUVi_
z<K}NnBxHxL3lzBy+nO#=>kAyrgD$&ZcoN|pV9)%}xLB}xNVY209EPdOekBl{so7Gk
zXC4z;33#tB{>b{3<k&p~85H1aPwHmYvJjS4Dwh`)a=<580{e*#J5z@V%&EIE^-|yr
zdqK;v$`hUrqj1V~gU}V}D*$u}px?#VJ{Rv7`X#sCaqui*y3niqG+mhIwWYqZe*k)R
zbpc#=4vx~B`9Q7gp{(;6q&?lb*mQG70j0RT)4R6DI(^Ec)>fJ}e20_j!{bb?a&l+f
zcKkCCwZ8WxQ)$<P?A)zSnRueHIGg6@Gula8O)EfJGfHC5Uq>C3j(>h=WtG~%UQ~BQ
z7JdAckomIH@p*snB2Z{+UG<xc0@IG8uG8(?OcK=N#EqcGk)d=zc&82#5T>x^#?dS#
zq|ogi8vF6($SlM0`_PkdqCB_~-omArHp$rW!qRUT7tic_4GIMm`qIn_cnaJo{KxL&
zyqe9Vm8A6R)IOjgcwMOowsGx7zua_<J38D-!>){jcip!fc_qy-ohvJ3L-4qaSo}g=
zZrh-%B88Ck!Gry^_FX_DjTznyZyONDrY5mB?F=2H`i@(R22<~CEcMlnD!b!$W4G^J
zZC_0*TrL%S=4l?WXpOWy(eP2zBSY2{dM!CWpKayxeUMYb{CVl^UnQ4E(bmc%NBA?V
zvZ)W_v~B-bdoWmYE*ns0rd}|3wkS=&{;+3E;IQ9UXY{A>)MgiFk_GNsqvg@>`N^Ca
z+hN*;uVkHK&M13Ck6WfVv$k3SCoIM};Zt*3hqB~Pm?BbmrjJd_t2J+bBFe#kdEWK{
zpqM|uNFBL*MXZ+SHq59I%(_bav6my23dQhr(u%G29%i(c8c!!XD;7B-cD5{PnO{f%
z<8R~jZX%33$1f!9DCFUL(`qwvsarv^5Ju`5pyGb${nCL>Mr&&ifFuEUgQE4EqIl6}
zW!9EIGZff`H_Ns*ca9Gw+zZ9Q6nO198aj90UT(Qi9iYwJ14V45bZjMxf|W6yE=+h9
zOg+DY@y1HS6PbBV(IR{asN=XS+V_b>$Wryh^bey2WPa(ZPz`F{2;(mrUX7;~!aDh;
zI_^PUtDYO5`6Wi6TYpH1-+86r0ewJ2c;`E)b0`@NKD-FRB!(K~aF#qju8}74?E5dk
zbQc(;(ORz}t{s>@apa9`C!f@^e<`Jhnh;)CDSP{C_14zX^rgzv{lT$U$M&|O>?`<q
zkMo$LlvtypT(y;%rGR*7>cK8)5Hm=f1Jn`l1<}Wk9V@p2K5|h5u5kD-F@^K4T2+>O
zD(`mz_Yx25cYIv~=!hI&uZS-^n1R{p4(d0|OPiErGSZb&>VCo_?S&_{*C+HlrCzBJ
z2#jF^v%xo(pnS>gMO#CL8EOt}H*UcjWsn2+bgTWkG3yEKEv0$BoPWHV#$6Y0cV9_}
z-9yolTI{+Q_^9IyL1oDyCKfj~r2TR=EMOF5KP%Jo@rtdD2px&EzSB6^Y#}NG9Etw>
zTVpocxJvDUuMjJPBR<RJH69bzJ?-cG2)%*E#Ya$NNSw2;^88zKD7h^pplzhe>cn1+
zdG?qt{X?Bqie|vWqt&0Wt&q8`?(93m)!w<ol`hj8_W^m867v^QKqSDcwOw>-0F8}6
z9Q&yp0ZiH<889xbMM9=)H~)TG?Es<P91Ty_$hcYW!7cT`XT9?2f^=hmaC<pIidCUz
z*OVzd+iR7?f4&H?9yhbwW$H>Ubig9Dgi{jUY05QrI~w0W2%PD}oN|kFKAa)os};Ia
z&A_H1uz6lpQa|UpC5>dS1$D6RV()xk2e=0Ah{lelWXf#imcPP+jR~3F_SHtW6G@(}
zmrsH)v1!bne>?%==|EkOuU8B~tyJJ?Y@KJc?H*JieY>LIL2?l%$A-x$H~P#&dR|3X
z*~G*>ud>o|#dS$+^{MVCFuhgo(+$7j$L`9D{DLBOGeHWzYt?A)4<|r>`K^Q3%iUBx
zy$>5ZS6?czyBWC>Dg~~t<q^$&A-w^c@9-8>_9<S+pD&VYtg|(9;^6uAbAE@oelqR`
z&PYZpXFK&3wH%ky47xq|FF}7%n<;vB`m|btt0&~FN#8gy&Cf}zZ>cHdXyL|8$8$FT
zse?cLpbF<<<BQ+Q+sZMMlhKZ$x(cJa2MRX75)@q%J+8T|kMNn>*ae9&w<PV22jr^V
zIYO}jV%Yvd)qUN-;V34k5r6=}V#;^A9J5B^MR$}uudXdL*SIl;%Pc%KHeTs+i<Eqk
zNjmW3h!Yj}boRi{Qu6Zg>LK~6an)PwqN_Lj#`QzWF*$b<_}_*P<Ge8h0d1ScX={nm
zvDO5`Cz8|e$?*P4oZ8S!Oml_T^*;C~^%PG3`R^YH!wI&gik)m_kNi?R@q9nOI?u2b
zf0Z%B$GwtJ<M9@LWT*9)OZ_ylAo_P*`|;s4zQRB$R*-LHIhTXrz8`r`k6jF?-{6m*
z82pTV)9v$pS!vDY{MW97^>}cZrMDx!BLQ#ZdGCS34`Y~XQH>+Xz_Gf<d%79co%I5c
zh$}>48ivop8`gTio{JUW>1-`WL^aljg}%RGoU%lKGlpwd+oarI%=EVL9!cY82ApT-
z$;%y{n02~N4f817<&SVU_L5VOQifHXfFwQi8LrRh#$xO5xGK7iiW_89S-p`EkgQU9
z3Xg=lTOd_Q?|SWJG2~n9H^JZa0=D=P!^6>$C=CW=;{%{x>V)nuEhIEEOE;2eC;U^W
z3PG%)mJ#<(*Fe02h}}^SG(3cH<t49-W%gYoOPA^L`&YRJ>`4#ECtOP&!TI<^#y|`=
z^j-Akv!oVDQi_n%P}tGy?%567J+<XukD&bOLf0k7qRzTDaTqCdTfh@Fi@!MfEeW7-
z8|i*n?N|Qf!=?q!ZSkD_tjCfJw_}?Rk7QFnKTPZfe8_*yCxG@e=Yz|?V6TQ%C~LH;
z%T66M0a;7|1v4Ab2bqK;T9A~4=bh|o4xLWpxeu51-0UnrSxQvNU)PS)zTGxE-RV^(
zuvXg9(H#`JIa1%n`^6kS{wjlcG7#?VjJ8c~Fop_$_-Y^JJk{>$+WPT|j*O3J&6m*q
zUra~$#zIqaUf|V#V$ECZoGR9;>79STh1s?i%MluslaWi8`jK^-&r0GFVJijUY6(t=
z{u&L3uqp@&DpGi_T_Y+6GcR|S&{6np@3xPltl3n9+l;o3?W_zs*e?;BO3uC$<nkwP
zkjgMuhwg^3JD`ByEA*-0YyhJp<c-zl&L1Q83L9i&ijdpGc_ivqdSqOsUM6p8GV+)#
zW}viVhevLE^=>3SZ26@aVLgEnb?B-!98@QT*0w$L<)OdJTE@Bq6&3L51}j6>cllK#
zyK@xvR~4c!kB>9|auDb;{*%=a%doXi-<QEKzD0>5C=L{jcz809=Y0M#&C@>t*@MTB
zmD5k=Q(TA&>zaKs?_}Lh=;%PKy(I&9?ahad#;SwJoq&bG@=FPsV_Sg7<z`2%*9h8d
zEjh%Hco6;B5sU(qvT&eP0H>XA>jI?dwE)_Ie8MIvVmLt>CwN^)L4=+^x5{;%<A~Hj
z<o+Nn=Y@3sLX1!4Bh3#^`^Ug*=te%uXSXHtusNdt8=J#*`O&oenpTY9#>=x;XC$^u
ziF301_7Mqvv1;aPr6TByrh7RfF<ZGIuB>K-Twlc2v+1W3_NF*rl=l*cx1grO>m1aG
z=;P_l>IH}uV|6%AlNmX%sIYf-*zit)=F^8}E8IlCcbUYh4D{2dj=hf!LKd`w!jeO_
zzMl@9M2xtHOi1p@3MynJ$Zg2{VLv3Gp%eB-Ieczt80Q$98QeX&tEF_$^N-|PTgJG$
zjR4JF#-(eGHnEbO0hf<za`HfLlU`-~gfD@aEwbQlqz&>O%23VGbP?$a3JxUlJUQhL
z%&d5<W$_@_HO?bL_Z3oakpR&#>$yI~<&?BE*AqHn8)N=Q?3}Qdyh0P4%?xMdAAuWW
zT*>sCb{wll2rY)+pen+CZYa2ZOM^cn1nN8wpH{0xaEx2Nc+pNn_tP^&@fYUSH;C`4
zfsM<So7{nqXm14-HsNF471!eh$5%PVw4PNKbY!6393GaaP0)Oe%7YBkx9gIY;etvo
zr3D)D#@-K4uCr5=(@5SE(6!Zm&QZ=p_qa3+wS}vPQI7txOoRDB(gQVB9{ND{-UccX
zERdTV^wdn<FoN1c-cf<Vx#lfRm*5#eJ$j_bog0qB!3H&$j5|=spOY~Ei8GxDCEYuL
zqgi15_j<^)cIT$Ct><D5+ZB7g%+wR-yGjEOI-!*8?g%8j67W(A?~3iXP$}@b6xsW)
ztRH9ezhD}xRKK?h|1#0fPq>pZHSzQTv^AjB*>cg{KqKpXF6baR_AKb*UzKS6oq=a&
zIF9J~UfqbRYWw%<l&{dgSu%~}XuZvi65UKu%rNXM<(2`XN-(rnIqefGq;#m^0WJ;y
zaHN1`)|uF|siPfMWiG*vo9l2O`?@SzPAC4vN+M)^bffUQdYrNQIW%)fq2UKs$#FHR
z-!-7)!;Y7364|AIKBAmJ_%oq!1Xv)FhW|>*$v1YUq@>`DvC19#pB+`=%M^b7An;B3
z&QAU@@3e^sA8Hq$nbt;C`gx!IW?KQmwKjY0>pr_?no40wzLYc40*}CO*0rF%YcYW=
zDVOKo6LlJ6{unS%W?p{ntz4*ZZmGGIavje6ehj<RtWqRdu?MNYpuI=KL=WwAcwPLh
zZKJMtcjvV}=|yg}{(oD&)y6d1Fuc=j1YE-4pE*CAZLptI^jFM&;a`7|SO`r$Us?r6
zv<HN;`ywa(&h}n4;qgey<tP>b?XYbd6*nlQyZ>}2NVvl3Bv+;fAlh9d*zw3YoP+y}
zh=>Pjo&H9^R|%!2clYk^aNW=Hjcxg83wN#3dLVk0VQ<Qeu((h1=QOw#(E#d*zr+ac
z>-9r6cO@a;hwjd)dR3p$gx1?pH5^3s2dJW9MPa+HDT&fp87VNV^J-dru=q%I)KXW*
zmaV#SSdOC9K4>$&eJ?*OBsq)QdVQ`a&M4L2H}2yArl*aMXK7_O%w?v{C_deNOk$!&
zVS6v_5BFuJ(?8o+#ADmjkc}~Nu%0YDlG8FOyeor}e+y`(Gl`>}8PR2F2wy>tnQ_wx
zjocxGTbC6paSyo3MK1_&rh}g#(#74n@B2LbK<aYlAfI&vA*2X<azZ-|^whxd+ZGa4
zYBJp%0|E$yCQ<i(`K`2Dtp`uX$jiG^np!(H+W?-7MG<3|U>q^=$aV=-;A&g=+D&*2
zW~(PvnaJQcR4x9u=rlavo+G_83wv4Ns5?gv>f_p)?}*<|1?m^#3R3s?71nrbaX}kz
z6&7}wzqoG`_r<646dCte+pv)tF<i0J#Jt3~sxW&g(0!-imGR0IGI?2fj9laAp0HMO
z)s#a2B;2B*0oB9_d!dFcOalb=d$ut=;)Qv4u||kv2Zso7NuDk22YTyNtNe&#1JnS=
zy3(V1vF9Ipc$7;22C<oOIyBx2_(C!TwuC@Dy;m}6_cM^PrKRMz@i2a3T$P2lDFH#a
z)s%Zyfpdb~DeLutiZ~Dd>F;_*wAL$}ex1)HQlFYj1q8Rn=Las-Bs9D7_Q%)k_P5oJ
zL3hZ|g|NdQ^Q>T^6w9b>6cp&uC#GHcCi)3D&~}BiA=6vN^g!?DIS;Cet5|&ba;xj&
z4+TA(&#vH=5dW^)FQ0t2L)!(>{@m(NM=htamonuA2E@#sjaGW)Mck`OR!zvZQFI|d
zH3>AB;pI149LXZ5jRJlKbYkU>CBmie%g5dWXZoL)nXscGPy^s5qQ`06gmWvjm5!k=
zBv@_t*z#_rX)t!@grzl~+!z@vH9Qb7q>Osi4GT~>lL)zFw#FZUhKvL9L)*1q#}*e$
zLwVH?-*h;&w$^84gda{YX^9n1NJz-9th`b6%N+8;KIQ)GP1W}xqIeiO8SRb;Eq<pk
zkoVH8&P9DJ_`WhOF4pYH6CvCiw`?g{)q*7jBYHhUi#WHr(Q>ADTM#lod6kpe+t9xa
z(YD-Be${W9mNw<r&gyCQ(M1}Vx$2l{=a+O$x8cU-%`>!8OZ)67G@6uKoH*?>kNfUo
zp0`n5R`&oc*j0IKa8XT1XbGp&hccs9T$ukB7XLmz8#}Q3;ENsFZ`xoihOIjUCB}H~
z2lkd<wp4R(_t?)lJrPofHLo&hY<K7V`^<d)+-qS_Zp6=0>J>0@p=>6OEh%q(^30h$
zAf|heWHV)f<GSgR!q;b@2<tC{B!RaUI3tmMOe_7}z&evEG1}WkGC5C2fsAp%2qq`h
z+!rMw3d{!zg!~!E9(xYSiUNjFCd50&N_poNKrAoCXpiLEoA;Z4(q(~|^3$Hw)%cX{
z^6_UYd?Amu9Qv<odQEt~^PddcqsgulUm&H78zv6=DJg01TNE?K33Y8?e?uc>yjA3E
zXWB^VNtLd=Qc9|DOFR@)1E)V@y)I_hkcU3{FZ-bPXzZ8JXJog~v_QD8GFR(B*g$a3
z;jJT|P|7_9n)c-Gu}{Ou`%C@h(31IXC0dBJHK<A~<J^*8%8D%mhGJ!`L`$49)XL33
z1Q(6XlD=Ler;X=jW(d~qK2X~reB9fu={2<O^Rq%x8FG>?^#|$pgNrZ1lm^%`oAdu<
znjJ0*UVVEzQPJ2ull>wfYJf&gI!i-c9^ft&{A>Qj)kvvDn5PtxI{)Y^DwVZv-d5@1
z%_pM%z+R*tLaFBdEg^%r{dU(gi*`JIsVZu_BEbm6t$z7^Mvt-!kP#=l6<F{BxaqPY
z1!XDh`qgW7?w65yvFJfWNhQG4T5)6Lmimjrl^{L3kl}u*;Le2`jGa~(zmx@e6!f@j
z9DSoj8B~b#U;(^<BZ_8jl*EW%sMDPB!Go}$sk?vN)1gD4KfU@!6djvw3<92HP32rF
ziEhu1ejVNSS+Br(@f~L{kTrPeXRvdQpy3~_%lq2Y*B<rkvGc2(I^O;{VkfyhE&&Qe
z#gd;SPe0?39G&-EYxG9B7Y&s;94m||DviwM$&G_{(Mrg^m9mW&?+QOnu);5&Q^psI
z44Ihoz58Sc<W}_1_@%BqVa3dg(6URH2t@-nRWX;2zZ?xvOHFkAuNGgxH-0WD_TSQf
z_Y<94Kh^}U6m#}t?n_0S6=kkmt4ydJXFV4)M7SOlboxO1|Kem9yS7jD{dvesuI9(W
z5SD1={#((1S@q>YpElKc>$(l6xw*KjezQqCMc(gUA}MABj?Vsq5LdGQMkA_kLMnhQ
zBCMI2d%7_1wNQ}MI*jfqlILz!ocB(HeU~Lh8&?Oj7^aC!32T#7eRX@p@z~dj9Cr*B
zPB#s1gzfj@FAoF}bMigdkf5MVH9tZkL&dSK#$q6-Cy^I7`JOd}EKL5Tsx9r(nx3$z
ze}IA?kr|jonz^=Acq2bAH1{1K+$4{=FpkdpPD5H&HKgL^vj#lW3FiWa^zYy6Q5MjP
z+4@lEv*n6!e+k-Mtwm0h#HiU=L$$P|{_&ij>&O1j#ryQ>Q#T5WMg};OXW1_rR?NeC
zmTr>y#3wu@HKucb_I4ibo6AuB!Fp>KJs%);FYr<G7t_<@z2e%)DN18%sz!j4n2>Q}
zxr{nGUOkY$L6lWpDDiPoO9wI!28ynzZ_5j74;`q~7;eQomrKAaUty|dv3pxr6Y$N<
zR-32|bAsbBK9r_P#^tz^bf1>WpvEYx8ku`RJWlGs8&Frf#Hr4yAC*h`qlDmeiw}nW
z)b!YVx9%v>;G8^7fi|uA-{DHT9}5+(#!51XLY1qH+{28qPyh5c{=V}=x4sMT=le`t
zap~O7P^0}WqjUsvw&eTwM@LjMZKo&-+gbq`N_m-;9^w%`s>6gy?Y3{Y0=|;hiD=M|
zYiG4HdMr^c<At+);~CUTYfqy-V+|#*YOe%aDvnUgAu?DG>~Av@9=5lULmnuBDVzOj
z-=0U)tT+n;J#EqMf-nrF>r#fu6M{CC6gWF)h~D226W$!E{eu3aR^}2ju%w1mFvQWq
zOGr*O)>VV)s>lpF#kuc`e8<m3%|ACOkZI3;nHjo0-+Iu~aNn03pq$|#x$g{@9!^DS
zs(Fv6Dw$y>bd|>gv1$<h{BPg>#JQX<Zcaj&InH{|3@>h=3`I3_psDzN(7Ib0f7g7+
zn`<FSwFb~X+|8Rw5pPCm26c0ZMZ-E_-tWux_B8{CQ;P~}rAtA%QYEcZ>FP*NUSWzX
z{!P1CT`{X#Ds50Jj`6hhWd0cqe@&f@{fyd~eYDOU@(qtp^;+n}o--(5Z^j(t=@D#8
z<*F2-#;<qs@M+*yw*3SJFwpkY%GLqAkv1jUbRh3ywc+U|-#VQ!wMrZ@O3D4*hIhU<
zCAUq@W&e-unO6<$$&yP}it+Y&>d<w(-}a92mlHxpR@Mf?V<pxeFbp0~8qjsWWIfk*
zzrybZJ&&wSocqgvVt#>)?q7a7!u|IIBFpSs7N~hrbcqkZS@`=PV8NeAJ#Ujzrr6#q
z(~S`Xyr{?8-O9kx1gLJ+{yM`ph;Xv;mB$y(B_|XrO8r848*5HlbSIb9+Dm`GK=u$p
ziIf|he~DLBE4$nX<M-UycCf-PK)08tx%G#c1Vbx<#}E?;E7uc5GUR>>_Ls@2g+*B!
zAkuqUr@?)C+2$0V?RppW)%!a9)6@)oEQWNgnLeVheWVMZl(ElCDw=!t>JU8QK<%|%
zF0?EfHyIyf)TBp|T0kH+=25~jplpLee;O);Cm~hVGe?Fn#W!-v%#b8#2I0=FLs8w`
zL71#I);$KBWH_Di9~<JP9<U*jeAtys?47mpGiI2W+PmcSb6PyL+ks7Y&onzR8<a&n
zahmGLPdo|lGG3XPdyNZZXgC?vsrcZR2`SmGvL-!?s%Dt=d*QC+?rSVJRUh$t_XJ{>
zTAOOlGsY{RGFy)PdI`bTM_@uQCDW?Gqg3OHPZ!9sv>YYYaqVFEwxOy<cxR6==XnoQ
zu_MHO<~l0+DAK-zuEcYT_K$Py-_9t2?FRHx<xdJ1Py_$2#4`Yr9#Jv70l)gEfgsu3
z%lQ3E6b0-|ps9s@-TtKK<U3GuA;hxmWq7!QMrC)3o5R9T-YZ^;>&8k>F*RMm2|W;T
z3c2ns-1yBY9`AxXg<mkmn=WppckPs!3Jv_>TsV}SbR?k5QB*Z6mnT2|j!>1NZT=r*
zazXJOm8~BSg}wAOg!=T(BP!nv2YQ2ZXdevBl5@3+b7OD0{k_~kChu8sl>q@wXMR$t
z51FYRRFaTiUY+UDTT?g2{nqQB`dL9nQZKCIp<PEc{%fj5=hTh)oKWIEVVf08aUZiM
z*CzVa>2dqr!TciVWv<PlQ;dlFyN6ix9$N#NO1x;7dO-$V*_q_xI&88OJvB|?yI6Fu
z<gv9Hn9ya~mF>R$WJZ41wMidsQ)9BfO(CvLHjjbd*VLx|h4<!>Q!laXI^PPmyHQi{
zRWN8v0K=oWn6Z=>y8Q)~Y8Zxbi>mkOEYrR68-=N8G6x7Sd94;Mq0jzpP?3^<{P7n&
z0{~d+e!51#WiqLZLIu)(56sdG1@450tS>~!Xq?+zWs4I@Z7%`wUa_#!t8KJX)1Awo
zq7NngS4-dgDk|1NzpFwFsr+zbyd3FikVw>U_#>pmz$N0|*!R~Kti|5E>o)1Nw(aoq
zSTR~L<GD4tIaPAt!yh4=VJ=6$Oa;mv_H}i2y@W6#g&3*^DY-U=5h*EC1HXU4kryJZ
z{dN;1^f#U3p1LW6%|E3DN#S3(-`1-NF5-?luI*#&RhC4oRKe8Oe|;9nDi|ZzeNwEl
z(ZZlp*RO!<exru9_SNi=%qH9aey-1>6H`)(5uw}nva_?1P(&Cv&^NIN33Mv9uk$!y
zbqL;^dA#>0xjtFjiZFFN3I@;j0@(4w+Mzb)wgLG71GvO`(hv+z4Bc7LJ19%w7PPQK
znB@FZ=`rUkuqck)qMW#7ak9J|Hf0>GvJ`b#?Gf&+T5<YiaNkuj2pdbjh65~6$fv*!
zMrm>Z3se_qY$wkCc;N`8q)?0~w>PeCOVRu7zN*uY&5@D|QOn-z_o7TXB7Fh^@TPi+
z!4h2R{N6ixcgW6-vWp^1dr$3>{tg%p@u2}s9Zz3aaQm4<Q#!co3tq|O3?``!prZ_t
zVm%^PA2{BO!|pzFT#p&jEBIToG;oLTQ?m4C1QO#aM6Mi;^ifrtJqIhbHZ^R-Kb9vN
zhCbyw#95rW%N66mZv#cE`<VwXP0%+Eb2vW_s9|r=C`@pZ?T9g%Y1(awfto4`N9V=g
z|2!Ca_VnLVFaE(&_!_Yy-jb2h{WE{~8xK$!PDD5^5+U#*2Rz&|IeUKR(YXIah~DM^
zH`b`5K`td^CN4`Akm!}3DbEx~-S5iOyie%+Kdryz)8`6GDHXykC2wf3r#_xdv*v-?
zRn~|d*TM>PYaoTY8~tJ6u3SYGy5}m}aQNy=8ftf`4wWB*eBVbOFdg}&3K^pa0=uMv
zB_%GCw7h>ha@#LMHEU<?xT`#A%8t<@w$3pl*Nc1AKj!i7%XS{O6bcz6&o!dl|9Pk1
z!MeJUhMAT7>M($Y3F|MiQ%@E-kc>Sz%o0X^5}AG$x*R_022c|;O#MT}*L&~Fg2rn7
z+}*>xM|takv<T2hNBU<o9h)gH+UnbH7~&oh>qMgc_2%>uK5Kx2RQ&q&QR@-toPX9T
zvWRup<>a%{-;Qdq<4iZftTPJV!8m+DaKdh<Scu>EWW&r>)67y6H=+#e@h;k;=}0Dv
z@KI~W#^uP?_q2X>{Eug4rtj+vU0Ds9%{3;K#iPHH^kO#Zv%hO{Dmr5(CTz}C!H?Uc
z@KzH7nB;bJYj4|lfg)nT^b6K@#CnBTvrN43_Zs|tu;Z|zrRCOsGLXJ_jw}KY4)BSa
z4t9IzSkY3YWd%F*ZyzqJ0VzktBYKWa103APZ{H8qAsz<Z2`Ig)KYh^qLA)PhZhZ@E
z-S!Yj8(agYDgg!ZVQ8CTUhTcR_ky0fRe?#G*$bzg;*<Oh+tiVbQGjrvI75#;%|I3h
zx}#kBj9IiZ4UGyd^2d>yL5T&|qE>FPx+8TOyT;qb(A>>bo0?Uq72YjhDWFd~YGa<g
z!&TE$$0~*I;oO`F#(V>Mtvx*<NBm{RCk?D>7NGc0D6^Ggmzo8-HGIa(D4R#e{Auh0
z7O9!^$DK5=0P|_YiU1`zhZ`#Tz7hNPQC&3E(Pm<hri24=D@bW@9^u;yx^}P;vZj*R
z_P|5u>Ps*m9D2gR0(f_igM_hd%S~Mihq1C9S`wt+F9R#ymJgRH&Mm27{;S!u^<1Ai
z+#Xat0ZLUV3Jqd0#(OXR#)uTCA4|78Vjs?Ta>NMIVbZ0&tLHi(EM6qPK=#?Kw?>qV
z6)*S<tno?vjVujI^`}-25pV4e2b!(dC1WTf&ooJ-KruhUz=De77_lIgHCId@%b09L
z9Vd116@&}<JtTHDCFE)s|G>FcUe)#zK9wyKQu}S|q~o_|pX3*uF37cmQ9(-<<SMZ-
z_1rPQ>7|zM#7b`0$SYy`3mUh)9Vq%ki>ez5D<z$trleRy0`K3J;O`&5a`9z)dmn?L
z6Hi9uzaR<kVwCb`^%BQafCwH>jmqG@$RhUx>^d4AbULb}#GI5c_d6W?o>sL7NTLt*
z=Kv9={tc?cG@W~R7ppi=qmB(%)?Ekm+r?mXnS}*hB<u`$P&**XUvj9=RS2`ao5%v9
z@;eOI$2LGDbW}&N)CI@w)Ei$}d|iC8tF_-?7y?8ifk<2IC4|(aisIu4*1O(@;k?5l
z6R0mZ%u8Ca<(dCV*8SrqeieS<Wb@=@e_lvD4dQ4(OOIu2-UYf+O4MB-yQvi_XfO0f
zDk7v9m42UA1_M6`pZ}FWCa)`ZzT2lV*K7jXwBk!xC}Bi<#|XZMB|QrAD8<loY5d^m
zy_sZqDf@1#cDe)?T@Zbs^tRk;D9moEZGCpNGqi7DayQ=aFFyd0hTT^kHvNH%G1q1i
z;Gyf;TG~$%UIL(kNjcH`sFM28U4tOSn$gtj>8+b_r?kfNG-XJrdN;<%$E@F?Bs=i5
zF2=~2T^ql!+;szC56z71{os#T1{1*;g)SrH!ft7ZgN7@X2R6N&`R`Bf=A+vGO)M^6
z=QFXZcg!)tE-7DouHq3S@Qv?YaAuckgkwI<z|#b9rcZ=_OZ>!En)~FgcLH_O`sK?Q
zs(dMF|FK3Ao&E|B-mtbeBSFT8noBb4n^le7jvqH!&QGch2)l*!htzw-_=>9F??EsQ
z>amumS^e<OXqdf0jhf3SMb+1>%+{KiX+AD1li?Ep)FRPy9L+8I7I*5c=@dqP`6Xco
zP0TxLr%!<G5g`N}|5%H1kFmFKn$aP-ny0%DrIqi8HxASA*25}hum1@d{e9CfqK}iR
z#g9Nj2veSKAKpo-_(BbBHMPxjO;)kUri{~+fL<&^6?K7rE(OD12DlS_nwf){?GkQ6
zCBp^`3`2Fn?YK#!p?}eR=5X`n^XEKEzOn1_Y6Y9uj5nsfc4;96h9G0P^qLTNN|_I9
z+ue`8qz}M0rOvt5K>{17>EVY1%-YC|a95ONl5JB|HOSQ6V;)qA@a^*1S6<2iTDSbu
z1Ng`HExJ*(Y;(+bvPNS@f^8gavi@Xlj^uRyYyGX`NLy2u;0@EXbu?(=N-li>K>0(V
z73=3!koJXLXCgn!9y9TZu|kG{6cpdW3L?pG4b=F(7oSA}CHvyj-;QNmJ9;E(YIh5G
z@0;Tf8AEt$&e-#PtqRoRl3JWcC}wDmleJ3n`UbQ>=2X{esJ^K_O&L$}ZQguv<RSH6
z&<5_Yl~TMBBq0fXBNx%os)9W2bpH0F<9<}X86+2DwO<fH+Wik}A#?3lQo^AZ|4Nqs
z{a|cLWN@Ybe)E9K^ZjSD`hQ!nzn1|@q5n1lu;49#zAFDQ_8agy|1osv*R%iQa}WIj
zwCnnhzxx^E{KweM&p#V}|J&$=M?X8=|J&IA|9bz=&0f;N1aaRS6?4cO>u7)ivPJ)P
z*_<z0{@G^bzl~ma1X-Pq(>9s>7m4ZbU*5b41RnqG4-a1cKR2KMH+$K5CPOo50RD?{
z%?d;}%P!^B<wPJY`}dW#^S?76GFvMEiyt>Uu3C1heb1*qbs5qL*6hbZAg;8j#Et1+
z7^4JeltLW+!FT{2Jm34ChBU=|u&Q)HIhu1=SJnE<+ovfN+9G3#F+CCUWahTZl9;=e
zV0I=X&9W*1oEaNd2fCM51=F)iH6eCZc<`FOEfRyBBHt2L+tK|nnPgp+gq<$lb|Y`V
z<krqAmV2xg?uw3Kh+&Tmio$gpmdhTa`pqvJ6)zce@84JPKrFD$2?0(gf<`|1v?OfL
zSlJ5<W(!XQ%Q8RMb*j(R4qEr4g7Rp;4K0Bsn|+q{)$ZN1j+vp;cPpeJeu9z}48Lf`
zv$txt`~{DbuGt4{?wp=pQTG>DY+Uc^&&gdGv<{q4bfph2nZBEz5R6kyWS}LiaTECC
z=-fz(Z6RIFzgt?k)YQUTHdO7tIzF@j&9j@cE#3cR$Iv$x<i`96ozSjW+mbrHw$8&g
zi()&?O&T^4)?FMJn<lQrKPBgwY9~L`E^ep!npRoh#0#rJ)B@gQhO!ibv<0>eo|zI-
ztxuPBWq^mnD0Hk*%*Nc3gA6pY+{V)eP5KCTM!6Fl5gX-10;CG>X|eOvNhPDffUXVk
zycSfvJsup64-iFJFV^dPa9C_)ss$}PH`&<DD*06CH$Hp@5*Q#1)ak@ux(qwZY%gLq
zD~W?9&bOJY&tug*g$!(98u&#1IK`dS-1Wi*GH;6^ZB3OP5soZ&bbeJzD2*ts?+E=w
z{9$fg0!F7YYTZJ6@rv}yr98#?*8DHWOD(NqE?EhUtmz`@RFc_>h9{GEXF`6L`nsoR
z$V4*`PrPaWu~({U$rAk0Htjmp8hwwnJ&*BR|2TrqbJxT@L|o<bAkyyI6!IufED~8}
zSEeSGD#D>a8YZL;$Np}&3*;Fdg;*?WHWb7RSGpCYCM*Umlr_M-2ppp}11o`7jGGyy
zn4P)@BHfV=`w!m)jU*jGZS&bRKOM3{TlbrH9@-PYw(OE$hM5-?ClVRO>*m9r>vhrR
z=&H*jt6tgrV>3yJN?8|dXmxF&$0`*z-QsS=oYzW0<!w`VjW>EVHnuc`)hkWwHiW_8
zE&;wB)3*F1NtL|VuYx$^v^htl`Hpt}=ZxdFVgG_PH={o@BfR#K;i344bzvP?kL7Ed
zZA!FW0-9EL%siOrkPmpZ8ZAdo@MrXA8d1c72EmrihnnWY5iXNy_bbV7b)-tB55?4P
zz;V@IYrjmyE>Wn*q;RXB%!FlSo}1}{G?&vi7_eQUixh4mRYq<(9e3ycc(4v4#1*I&
z3w^uiyZ;En?`Xiz$)hUuzY%z(vCn{=dOY_1f>gkpS>m?kq?32g)PT0jk1YC+J+y;M
zOC6Kd7HAZw)L&zGSR}}zN?9h*OiMNdZ5tGj0{>CyKPJA%+P&)99=yBTnfLO7clitI
z=nb^ucCckdp|VIp+TuQTk^Y0~pOJ=iIK7V;P^&L#`OG90TWxIzqxYH{gG$0a>BiI;
zG1`~UGDA0Q?mH6EB+Zf$n#~BHj|nTWAHC-9_(+2lUX!~2p+@Fu%UomBJFNwaVdZC5
z^VXl%I^&2y`(X%t1{clf9yF-Vz80sb6rM66?&4Hyn2Gi9;xjXi8EK{sd+lGTmihDh
zP*1)h`N#HRw7XSbZFYr3Xc{!&FllB-bEL{-!wBkbaHgg4S*}J^OoCa!Z<(aLD=xd{
zE^3yW>^mEhGaH*z$2F4N>#WuI|5#oS&nq1seTEty;H~fXDQBbj0AS*Ic_vEo<TI@r
zJ-U|RfKjtrd4Kj3qc*{3d;g26_l#;X(V~X0<ESHwItrrHQ3M18q<2seP>QsK5}MLO
z2t7o)WdP|Sz4w+vXi4Z%5s+R&5=ekZFCic;bojXITkrec{7im5S?la)pS{mH+ozly
z+Gede4<hE-aHE>g%}Zp)iXTW;%J$Qa$p1m)cbE^Ii2|DA?!h8T&+l1`nzbXjZ#M!|
zk3S}4U&?#7g6xN(Nn`z?+zKd+O1iyM=~7P4@cVei4*ik%Y6uucLenk#LGpFG7JHnC
zfNo5WdZ-TJNGw+~w^S=Ce3*o;61&OWOC@O0Gj-XJwv`KL$>-SIWIg?3bKC@r(?Yxn
zynL;~CG;3~q5;9Og75OG?u5o@oNg8%@XH0a!=xZ@ZC+l<AO0{{=cF0QU73AQZyv}S
zehMCpIymBiJYy$K<9J3Z5Ge*ddLtjK^y}L<p7_rht`MnaMrB}TuarAX`n}V!zwygU
zA4b<Y$!$Of+4I%m!7uYqUK<8~4t}8BttoFD#fk^CH=PMOXuH5+OAYi(c$muPl8@<F
zGY_PSZy3ZSl_44gp4=tZUux7%tyR}&SMfI%?BW_cvhmCFS=Lqbz=VVA9pX<UFj&TN
zC~}7?p5L>PEVuf$+4EC{r=fDs$fDPYro{N#JsSr<J+Sp@aq-_ZE8f`V#fR+01dFx`
zcz`n8(h0BOZtJv@Qd)8vYJU2t%Fn25S==!*cFhTOUe9b;7EaIzaZb>XaA7U->yxg*
zdvotWwnEeo2l>cNKlzHUpZXa;g*wI$E;4d7A!-51tfM(m9}oD+w)FAaszUDOl%J{_
z{kMe#YAyw-Necwe8B}C7na^wHS3&JVkvTJV2Nbn=r{jv=ssv*`O`w@NeBk86)2AnU
zX*t8!gVD_VE@>lM+py)*rU&aK0~w9pv$A}HN);$>%2Jk|)k@<Y^sGrvxuPa4n!9<N
zcX#l#-}S)X`ZDc5Jc_gN`8e=Ny~R$T4^7IC_I6tj77aCZ;xh&A?>2kv`DByBd<y<q
z4XLcjCpLhu$a~#<b0|q^J-T^(&?}m&0lC_TUf(dXs5ed?+N91LWVat6uFmf06~@sf
zM>f}GGSOP1^zrWn2;y@lO%6VeyTj!dzEP{c-P=v<kqvJOS&OS3A^Nir=I(c1i_;x;
zE$Xg|cAV(ij<={y1z(8UnfNaN-#Y_f*DViyO>RL*<pOEAv!Nrb&i>AN==yt8jor-i
z)ZfeDut(v4fm*9p6g|tx6ggbzLN$mK=i^fKD(gJPevn~6zE_&t3_^1Q(oDK9_`fIT
z|DQtpPupheSU)E_sTQb@Pe0ht#P+(2fA6RF>nDp#ZEnSsL5XC+g=uwBrAIpO36izC
zXPX^#>+oT1tAp2C;Z$fd(lE^axJ8%7q6(OiGJx+E2`7!r?NtrsHmzQ}Fzc5Znm6W|
zdkLur;o<q1l9}2n$yZ*72E8#?R2L5eO3l5trlZ-x(Y-l{<J*gS3(jZN)3r_oLl6C}
zYThh{99p2r<a|_g$a3eR-fvb%a=nKmg87S(yFo?L$=4u=2Zx%L=n@0Scg!osq0|(a
zUZx6QNPgRp=-p<Sdui<Y2(>nwS9Z)9ha{!fnr^kOuD5t;P--#g=$VY(iEur9QTM^1
zJNgw~IL5@kQFg9$WozF0?8j9~PvVylyQn<P7PG@zeKBWu_~v2jK&tRyImD|I3@Li+
z8a{?OFS)h*LlJyX(@^c#=GO)D&bNA{^fi!otDdxD+l<s*KUwjyRUgMM1*$Z`T3hve
zIf<(a=eQq#Z2*+544i?jET85||5mdfNR|AE<!SBi0gpv#{VKghZFJ68KLavDc?Q+`
zI2?|2pkYP#B=M~$!jlKhCoAKXNeCJ%XLI{FJUJBkHTY~M?=X+NTNh&imm~%#-T-3O
zs||e`G7e*H&kW7xAcUVRlDfB_Ox+F77mo)%eSh|LPZd9zEd5lEwuX)3;w~Ylyw--^
zO{tF_AK)(JHySou!U+AAiEyv8?b<HQMtC;sck4rwRO|oy4u2;WTNi9zU96k<lV2KH
zUXcw#rj;vuTZLj<mGyQ|1Oe6G@vS2kz%O`v2;GO>glsYg-Cf2I?S>~5>7&^T^E-`M
z8>{(pUw8aBU7pCjiE4?RENsa=c@sr$(|9^-XN3kx$+iV_?a)gG(YVS4hbRrSg`MK!
zsrUhH$Z|IAnKfZ-T5HLJ5D@ak1#6fvcwDy7_FH7f-SfD6p}~9|)^KWcN=mo4gqr1A
zPVV-Jv*tHb3CnE*uhtFn*S*7B50fc9%Oq8LdAX}q@6N>C1GB-~Wc$?w%((sAa0=yY
zUGRVy_hG$5d~l-NvMZf(jj8m@tSkK=qb|a+O|Od@+V%FqX7RtXdXp=6e*3L$S>)ZV
zwB|iL+5?5Atw!yhz35X<o5^osUUT5^p2cgsuq7JBewZlPJCWcu(i&o?Yo&Kgy;rr?
zu*#9S+qJVFw&?2~NH1IQi{gR~Zy9AtQ`%eTNeKV^sb5xnKlg^Ix2+^G7>H^|rEa1%
z%#VhIHO}IeR}&Au6@FjcuNT-Zp8fdIz4GN@HVl%;AHx`Wj^&NLoTphOFv2VT^t3`N
za{$70-@yPqY_9J#VC#xjRP#@cJr>@i8t1g$YyiLnPc?&g&!+=JPft%pKYaL<{#Q{!
z(I+;s4DQayeGlu(dY2r@X*BozaaU4WzES=G?#N?jvRvbkOa&2)Ld`?dXujF<ez%>Q
zWKNw-U6M|pT;Mc$Zv5xp=gvJn%Js8d{J{8dWiCG`Gcj1PX#mzT06Vc+Y#C(aY^h-U
zK6+-}n0X5kE_I%7oS1m0KmXm+wd`gp2Pn6U#t*MQ$A9X=Basw4YY%Skk`%1(Xu_H$
z(*O24{@6VRcV4J{1=F!jiV^3{4Qs!ZGSqqN(jQSGqCO2f>+(@4*1wki#V=9Ac5CNu
zRTN&XlT+^jNyYCdLoBwM*Q)?rg5>rNAZq5O_<#5wzalz(;GN{(`?mvp@YZz#h&Ufi
z2yiuR8s{7f`#<FMU9b6I{>gSZp}MIVHJK=@S!0N#8&O!3LMyUi)nYOlWRYyb$bfBg
zYG}a=&en@yH*d2MGcD(&T6kC`Mh53j8?dFe2IG&Vg6VJg&?vJ4Xu%(oekBv5xnme;
zerTZ-4r*2=eeJM1u=6eVf!Nz81wlL28e<0S-Ny$jM3?q?e)7gjUTs8HA_A{5cCO<P
z-F0yAuiNv9$M`E~iS4Vy<Fn1Mda7<%Td2IZ|G#~`LC!P_#<3xdkM4+2Ej-V1_I=^{
zJzM=+Lz|v<FnpyqPO2WJTNYroRihf5e~k->sKOYYw|>+j1GPSG8^N!ezs%p@wn-{X
z)Z7QyGv%UG3yNawRQz6}6++&q^V0ypr9HbtFO?!&5+4#?HF||%Lws7Cx|tktFdSdQ
zJ=A3suk5FxK2L{#F1l3)ad^@euqx&mvK_+wc7G>V&UQHO_T0GdybFrhgP$VTYDx~*
zrix?FzF-ch7ZqI$XJ@~jO3-((TRYrcE+^O(qdh6>wW*#01AF4UCCit!NNSv&2HS?=
zyU^BSmdr7D+4s;@ab2ZohRD7m>s@hni&xbQ2QMA*Ln*RR=CaG&Dq`xH?RczH_j>)D
zm-tRMIaCaBb*SLYG@Co}g#|2HMzM66NoXykp9WeH<wp0#Lw^5rH<tL(2Hmt?et?w^
z*S%;&Ntp_+KT5<b8DUxr=kuMGe)(udB*v#OLyWXEs`ajGV4pX~zOq(-klkNK1*MNv
z)pTdcb~4`_Un3oEcMIT`3U<sl=wzd{xb*(E(0x(2Jxg}Ajq9PyC?(j0y);ooyk#e+
zM7Wbx=ev_o<}?WjugIUeO>1DXuHGpb`}>4i;{!MQ^0C+7eEs-&_)(Eh565Y4zMEYR
zws!x5sPFcZ)X+U=$1lDwU&oahvEj){H<@-=JymX`qzEG_vCqWAo&hxqXO~GspR$bV
z4^v1+HF|lnI%l^^Hx(coi-!2~&!;wS9lNa*bTYpW-ma`U-@BbCm5nR>jdXSI`OJEh
zu_b;wvm3Nc&@}c06TQZc6nE6x1bg=A{>-{5aLz_>7;Qf|i>MCR=uZnYAy`hzz4;70
zM*&nxU^GfjkL)2d>%iw9%kI*2k*cXG^Hm3}X-+|}fYG@Mx{edvrFv(p^WqOHo`!XH
znxvma1e9Eb#nHQraMKF8cFQu?KUR(OEzsI(2I#wE81%C2Nl0fih7Ow-LoXG#ozppV
zHh?b~o}#>rs>ys?c!8yIK?aW7x<w1x2f$B@>&MOsIGJg!Yiz2@T5a(g3>!nvWfEG^
zR5wkQ$`sG73ZzRtHYBUEA2`tFn?CpRiMCyGK~iYHKxI@Ai?2chctHgOd)3yaK0iyd
ze*bNnt!`~dROxf^i2K&vgKJOQ35Cc=mQ1AFZTlym?uQty7=y7n`4x;|Ye7L&Am%5f
z?Z^xPZ;`Fb<x5P$CpM*jxX5m7IQ%zINpr|pgnrU4U){Pzj`R%v(PA5)uvW)<zZe_%
zsI9P21^$+xH}GN+;Z6!RNO{IBQVJ$CH`gb2Uf*ruf~}px1yqXvqWCO8M>nzdDhIl|
zBh!WgjM+FQD>RHXeN+BVb`wi`h*PJGgnEOSwX94%>~NrS&jlWUyT+?rNYr@B&B6Qn
zR6Tc7!>S6qIKHT=;kXUafX1KkM!c=P$9NGYXXBIfK<Fhl;FP=C0)Jv$HL&s@NS%hP
zLnkyd;q6e|g+!jiruXL$vD|~$g%6&t0opx#p=Q=!GQJ?Xp$|rz#P;1Ar^d$pk!O(>
ziA#Bqi%P6>I;!%o0TtZlE(jT6J*`U-VgW;Uv=gOgxDU(KSLsnXX2UpkP@_Y1TE^j9
zS$?rcvfSlKF{@tv^?xfmhacglENh>~_P=%M^-Kj`!ts5~*y!RyZhwnOm8?k<4D0UG
zsOX8*VB=H!iin#~Z-QA%4pQ=3Zn0R8y?<NAbC1%737qdw%3)vkLRvAHqf2o^pKjPQ
z>}}*S7?nOpze{~qYui;krDxX8>-NM$rN^`;pi1-_llGU+p*dC1PB@?ECl5yzMm@Zp
z2FiaExAj|DJAut?omDT@x$*2<RT?p*p#-E3{m8LOr+zaPSs+zC1zu=gWqwQ7QJquM
z=vJVTzK^IBTd@NP37$i?6YBxmyKDAwp-XGey5g%s1woSn4Q#x;1!ji{OMs6xcj7{K
zzh?a9I5=hMngHdY1^7+gCHD?r3}=<%oUPikyGGSNaQ;2hMt7rZtaNMXs5)r|7Mv5*
zg%~r#LTi@IpgvW%SjVOjJ}-FR@EXCqLzfaPG09Ev(BG)ZMcb>uj^KJ`-C*i;?V#5&
ze2~~V57{XtNoFC~_}bsPYp%SS122*>DK)U{0MMcHVvx^_|Md%jAPgeWJ-==;{xOTW
zXx|~xLB$hmpnG?iUK5XvME;YteN_YbMO_!@d^8pI{=B?Ok?7N=ItI)yH!GZy(Z9zG
z;-NX~QVt_~{$L(#UV-lSj2T%HSKWfojv1*wFFfY;32e6g&iX&&7XK+IZjwGOkR4e0
zSuWtFZ<pzga!_ZNpLbsx_m9T;Q$Ve|iT=*>sfZ#nn!l8LMGTOYUK%eDGSo9W4M`yc
zmX462W>e8@q{gdL#<pcgees~<H<2;!sJwW0K+48@^N_hW4OBMH_1+=sE=3G^E3xGI
zl^V%<d0t{t$nO4z)97|!mLj~$l#p5AjkIsh{V7xChaHjK0)R})FH(l(M=NKZ=hZ4y
zkuRz0qw^$kB@E8uUN!*>HahI`VwyBFX!*x_-7Q4h7v=(>zZqf0>8cnO)3WSY+H_kU
z(1vqr7B*BJ<(n$7$O{1swxyMAPc|A}#^|J5F(LhoLB_DQlzac1#nOpa6%wWgjM)0$
z(Of&7UDm0gC8FcCb6?G&dxs9{hfDWcYc&YAzzQP)n_{l~x295r>?#|E^76cHZR*Kd
zZ_sA+B6j87A{aeI&>PgOc_G!-_|*D(LtmvbyH{I<c4sxXnI?UKlnFXn?FH2p|4jM>
zvMVugB>m2LG^tScWkYbc#BzOL*0RlpajxrCT<Rg{M!_5DWV9#oHYcvFN5S#TrLKwL
zb3J0O5e=BDPP=?A6zVx!w=dWKdqdFEtgPEH3!NVtB}#^kC~!5QAf0e_{eU=CVH=#!
zF!zE%fTvTkMBj?scprA6a7q&(YN1-DPTezDtxl78@~%HL=t$DWE~3a)y(q$OQrt8c
zU_SCzdP4H+pit7d%p;Iz_D0vfufzwc39M7$cjuwG>T7+I9&Ew@`7Y!8c4iiQT`*{F
zxO_WX)nT%{W)t8jgX>n18$AN6bV}JI$0;z^4&!|u1?eQ(P&_6pCE?Z<!cmQ<%@V@e
zvg?m=#ZdyoW`xXgOZ;UNS(Nfe0`5fwPSxs%cgskt;R;XD-=Qc^eYXi%md`AE)5!q?
zb_{zN6YDL!lWVM<${2WH{H=ZB7BwXD&t?%&u7>kfXHnI81yB0P8{f%4Oa6%%w;`;@
zA-KK%YM8hnD%^ums4(TkPQYLv&8R!mK};ocQp2EE#pASwx_g*z$^r=t%CE847J*F6
z@c6yUO4g?4zxiRCzi>CnSP>y=+IdO5o_xov2BPNRKdL-iL&{EFH;CIRA?L72)ErwB
zTl!^1$8R&M{W@xR!_ulP;x#URRarhM-@up%!|8iW=t~69Ux~J&aQ863rk{F4TYLvg
zU#irNSLn<*32x)01*rl<pFmC)FRSlw`a-?eX8YeRA>~1vy(0B{SBmAux<`2i)e(#F
zmiLKw2RRl&(mx%bKG5n%u&Dlqj!&9)_QXeI-yc%r_RyhCN*<|ruvD~p<lvH*?CXLL
z=mm7q(r2*&{5AHB66?jgHT%rUEDfrbyVJfMRL)_&e_UG(8L%%SxK^c{>6O@Q;W^;t
zc<4Sq_VBTe7FwWT=96@8!a&-}Cg8Pv!&9wDnpcXN6yxnTqMQXU4HK6*MLgiW?zp<$
zLVmbT+^rAV;ty7x3kn%AwkWRsu1-Bl+^v_!d_)^_?KY>&=fBXtUdR1-c5m)QtmCMs
z5>6d%s!Fzmde7SGcm8(aX`3ALLiMhA^GwX4Ud`X3zcH|HW2n5LOU*;FYpw;n4Q;qn
zlZS^?3{Ay@L9NogZ8p}&ld-B>?aF6DqFZ?3uwCN?j)a|}pGPO8<(1z?6vSg?crkm2
zZpwNsf6$z)9<iSl<cV+*s`nKxB{E>UeP_L>#U;vNR*Qe@?z9V2x{J|tbrtHB#PYC1
z?`kZ+=7kI4|F7EftJV)Jrlx4VQ)%w3{qaapc=_Ni(SK)8ntMX?xmM(b?z}ZXwG{-%
zNkg9QvEM2Eu}l#Ko3@-uu^4H=OX3B!FLe9G%@zkL>L+vsb*}kebrl`hi_++a+pPHT
zXt@0A;i~Vy`aGU{AP4ZRdx~4x;a$$MO(~7y=2#^t+YW80apV{$*p+q}RV*09>#^yL
zy8igo`8=AnM8Z7nVhNb-G+xXVqhi`Q7dhM*n1U(hAmHj9HEP?{gA`D&s&|S@$&}k8
z&GeN4_6yV&m+Tnk6)DT&n-~f#I+^3_DBEn;b4Yb~L`;l0F#MH@S%9fVyRQ4|+3yg9
zjg_rQW#l_=L%l{TVpRe$!#n%g{Ydbb+iY;B?o!`9<jicrpZ(b|^e`rrlxq!m4=h>e
z%STEtwvJ5bo<A1fxt@+_o<DJ%5SL2#7|zeLFN)g|Dxutl?6Qb4S=^YXoh{84HmrXf
ze9h)DR2%dGlL*4qRTkB_mIG6EqFD!V7BhE{GQ}OCA=*7hzW5khw)@SM5+(sbNf!-s
ziwY&9qhXgUmLpt8>M_`9gU;$h4LUN<Cz|`#s=@^-UdDDH1yPi%n!-3x$9b2AEqWUA
z4kf_qJo3%UvgsU%ZhGMJ(-Wf&wkls%UA^ga<AHJHhz;_gJv@8nQgi8p3M1y<=%act
zbXk^+G9ORi_IUqME^G#1Xee`1m0wxep6v|F(hFdG>~wEe=-)F(IB4|;R+*o0fvF>a
zAP~_@mduHN$tb2iqp%f(a?mWJ8xk+ZXD{8^9p&gZh><&xb47hbW{auOJaf>aHHEC5
zA5uzs8<!KnMr}R`o!33~RRIDMtESV+cCshnru*ut+l+syf_FiVX{z`R_l4^M!-=N%
z<5PdExNcZZkK;`*SwKDYHm@WAeN9t>M@So!AnZWtCXVJSOImpm3BkgUe>9cn#?(ku
zg`90XR!eDR-wdyQ(#;N;z|E&|=FyBZG1~;G;hy#ZXmD*CeBA)g9H{ci#n+pEoA}sN
zYk)qB!tU`lALLiC-tEh+IL91M&ygqh_IrW5dqRp~J{fAK{QbNOZzerEG953$s#}&X
zvYqjA4j%=38r;QwaLR^H$@|HrD+!e?IQ)kX*%p%$!_yO{jsh;NJC{dZJBF{5{dbj+
z$rp5i%MZQX4E&6C?kfLi^Quq^GS+=1@9etGf1~uL@vgPok$9pQW;JeSV60<z4Kw`)
zt;4|#s1#Sr4m!y32Smv?4enhBc>L@45w_o^AQnXCoh(1U5S5ikv=XYT(o1zc;!smD
zQ7m}?c3Az3{m$c`mYtz-0j1BZ7>X<J?oRFPi60>tDPK|wkTdbefd=*WKkxto`aXGa
z$K5EJX>gB&!Yi=T7q4rcY7j_wstW-$GH6!*Pi^6c`%MpoY&czi2qx*MnIjxsii{>j
z`IIfo3fw5=Y;qFmh%bUFK-WI&QKw>cg8Ai6|HOEHRG!EcfQRsOzH(tv*83Q+O_}Ww
zJ1w(vZRoZH7&WSCw^7`i(&iC;av;)W#=+vuGan3FFf+_rAMC+;O{%1e{Aoarqv;}!
zlIIVQ);rFc7uYwqA4D%4?n+?~Es^IU6Xy7b+tiUMK3`WzIW^Y@)Okw5RjGRn-<@yz
z1d0fm9R!u3_D*8^BiBEyO{N`I!b#`&RKOmoIxY2@gy*gyA31nOb=&w_CF+HZcqrU8
z`0<eaKe=gR^_|c@8;fJ{*!bBr6;i%Rks$1&d{A}of&Y|a@j32MZ-a4NWIU|ZJS?f0
zV_|x&z3EuBzW*q$h7#ZA((-+^CX|P%-*1PuPcFT+a38AB@Ay3!c~mi+Mp3LduuM8M
zb832wfgNfLAB4Jm{N;x1%XSyeWDf1s#PE-riNwYLVYsJ2UHy4QD)wgBA`DERT}yBJ
zUME_8kP*O@sYOESp0z~dj#g1syfg(I6DR_3Kbop)R}F)7ZM@ZjMYHw9??{fgBs$Vy
zEmX_tMmu16-0?e~zPsrus7kXqN3svOetcJdvRR{EmCSgsel{&u++rvI&OUZ}x6vFC
zPZ|Yx>&b<~9rL~Nt~`{i0!&)X!ZmX+L9@Hu9;aVk$3G6kZ%n)T|3rM}O?zxqS0#VY
zh>GQGCUY}V9QQMsB-ldO_yi`Kw(<GIT`AB&q>ty`fceVX{{M8SoM$sD7gyUgB^)?X
zgZtcOx#KeKtyhZ;Ug&YTVtVOS=@=}aHDG1rNR@I}C*of});MKf4vxOX=}H%dz)-(S
z26DElrzlL4h`_o<=?2M@R=bhi*!i3t7$L@Vu0KCn{mo|Se|rN-p9t5F;VCyUeDe*}
zE3@UF3#ZMUf2uGiEnX9DxP-a5_dH;S1?J(-dUGAy;8^Y}f8;+*vmVgaPQ!sXeU2^)
zEv50;M((nY4n@n#sdq}3Mb4=A_+In4y6apOxYOJ2-MM{%J-6hp>@5x#7DAj%M)N%y
zUeeSt>z~u~>&{LkZq}uoJk3hOSQe%VKmj@~dBxPsSz@kvdb7oagoyHrlDk=QaxcOL
z>}iAc_llEYy?-J{oU}4ytPL%tBMHJ*#RsYvSv-#c(-Mf$fM;7`)iD;^kC9tyf84*%
z34zf<fiqu}tg0l!?NJi(Ld_mAgyX-D7v?G3R0w8yo-1!i{iS4O;5<(Xt8!K`?j&tL
zlkWD7#KNZm)IG1dUOS{7N1L14=WbFYEVA?+K1;aZ_(Kk~yB6(&tq6hsdBV*p68)jO
zoD%eD5M?ykg?KO_sMp#fAMcG!3(u%5^XjHVDiX79>O*U?T7TbdJwiC{apkw@cE=Mx
zBkP@c;_eMN&Ur{2#mf^2fqHeiSVj46qYXuRaaZ_O9Dl>TTHEOGSFY~14CLLqzvte#
zr6YPLk)X_c6c{8a=<4np=V#;UPem6L8iuO%TXIziTCBgIWVMrdv>`6f>Q?-qJ(RNR
zS%?x^mC-QiJX&$G&{aTas>XOw?fBDz;mQ+EDS~lCVqKGAvjup6#Y1@u!sw~Rx?6!9
z@7qyEMRz|c*7txSaV7g%@SVW*EH~{c^GSIATJRoNVt>@#Bn~RJQ@$%!(;SnL3LO^j
zRN@a=)kgQ!kPoY!B;Gy-4l^HS=O4C7hwe&^5;5i0&^*H$yk=E!vWmj{R9BQhdu0el
zVO<i?s2?#9DGL<qrdRf7!x2N7*PSddbycbl>3015+4LYcle6dg!*_+$?0jq@kgqS0
zW%Ky><LKZDN|pIZzR7k;$uM6D@P5HTZYKBly?Y4(rAoSiWOuHc@Z>MLQ9tRKs2K+4
zwQO4^xAUYLpnSxEve}tyQM0Je#4nETKlGS+H2LLD>5XuPBI`<Rmm~g;s==WgnG@WV
zVE)HV$JQ&E-mxwZ?zCI8mnMdP>U@=tcql%NUwCW6NcEysHsfT?0;3srl(DE&pT-ft
zth}Pn$Kb5nnp+ilp|V7w1nE>{2%ZGCDB3PHx|0vF3k|Hv3vJ3Z^0|{)bioMZ(-WI0
z4l5zi0eNT-!LrM(EPnNk51d+R?)Ca)&Fmh{0rI`{vSLrVd8zyw;lBKqh~Y-m{_dvi
z75TIFZ-X*O{19QZw4pkq%E4n}@Fp2U0kXbM83R$rcNy5t+<8zE>pj_PyiEN<DFRIP
z2r{jPM$PJI<v)qn%bdr>XEIhQAg;@i!wI+R-0A5(?oemw{Mb*gAI1@5in(m_i$PQk
zMvAKe(st>ERg^Nchn}@uVYl)otKX?<F8dazr@b7IN^r!?HuMdp21-1vE%SL-jCNOP
z*-8puvNSx69KLq<@SG-rJJ)^pmO5y-<9N+ksKI`=KVP0i<`XVkQ^WDyD9^S@=;kBr
zcnDqdX~Bq36q2)kZ^@7km+QXB2UNrQ+zn~l$nU%++FF${&6`R$nqzM;0%JcwsXl!*
z9T#;BDLKnNY+h<yGfG^K#hp_G&D|<Srl7&3lbEj^J<6}4qvxwe40VD@4fcxo*%K}K
z<<7EDKig#!n9=h$C}C-{R9@$f1gwsAMrPIZku=D@syLRFeARiLv$D^MpU|q(Vh1N4
zWhaj}OkGkT`yB@57x3^566LJduf(8Yi1)bRxxF|K@A&ADpu@_t3H92gYVpeBv*oG(
z|C7$Sn3}2IDWz6BKD(N$=a1+y3Trd{RqYlLm}9ERe%Vi0AGn+X<Ld;ZWqS#={s|s^
z;QB{m^RJp>4hK8qbqNwcS#pDOaZZ`vm3gbk=Ve}$tdxP_o#}>8bmNrrmTPuqTZu1*
zB=8Tws|8Qw7hvN8wjfl?>ebTldQ)+8)R6nu-<2$14?YW1JLkUijrsRloa#SU#^dat
zTRM_Rh#2!)$)G6lk*({a{aKRa+;mKSlwM=nY^L66&x*pBr(MA%myRBn&{li;3n6+I
zqFYczd_Lg<Xm3t7Xgl&nmnP1_IZdI3xcxb(u4nlC^-}jQ#gEdy8R0TAgMLk4$nw~c
zPEJ>7X|C-5clI`sn-@90D=}n1Ia*DW#nLk={{NUkY`#<_FKSkd?iue}U2Ztn{sp#s
z-HfCJzjSsY6T1?hmg3cK9^$&GtvfLKUG)p+<hTt{zv$JzKx>(hfGSUdTj^BlNPUZB
zbyGWJn`*D1bd!E{7~gNEr<#1y&ywEiSFE4d52oIfUtd@=6t1%kO}u@FewR8e#SUDR
z-!R8l+GMV)VRQvrjCRMRvNSREe3J24T?L^jdWzC66>|OIu+|Q~=@_})c}O;Qmi(xk
z9CuH(^585dbNa?va5S6|Sz&(r>(6mXqU%v;ue^LUXX;wwM+L9#7sv01`LW{NWuWqG
z3EXeS;_@1!sQIXwLdgRk3un96-3)t`p8Vp?#&S?;>(=GyPn!+8Xffo-_*9tA#NTBV
z!~DfOq8`=H&?OxR#M&OIxBm3=j`~ySEDxb43X1~rz*!WtV8Od;Qyu-eO-o+5ljt8M
zI+Bzmx+R%fB?N>m2AG$BnPE**lbTPo)em=9JDo<-aPGYe=G6X84|LEp!PYZx<ALc`
zTQL4+l$GD#H_$&A+4nhAX&#fZnpR0<L+Cl_Xg#097tuYoz7LHons6?m9Nbin@QkBp
z@hs+WdA;|Efl#L|!s;G;edbn)G;z_b^T&(E+ceJ#q%rs;%o%EjNp*QP*@M*^d}ItX
zOF9sS1!M6;8&?jl8x571vz<g4+=1{B>(lBz9yOB_;*UDr01dNW3lYCx_rhAmbT6UG
zv;V!iGjXi}{5auF3@=Z%(c7FwFe`R6qp<Utw1XF+$$ea)Y{+&C1mSHCq>|fj`ZFdP
z^>StPFMmXb<&sK|*XFy3{AGs;(2sJgteS*BtrRt4a%2YdIx!|DVT&?(A9YkHT=1~=
zs5?oe?Ul7v*x!5!JCcrpmry)i@u990PU7H}#&gLjk0(HauXu+}SZgfgE5u69u<#vw
zZUx`CMOcqp$Hgd+Bf4s(Q)$G0`ZC^)3~&rxX2@9V$cw3_m8;)f1~vOeoY5Tg&fP;`
z(3F{It|g|~=fv7}y`RShwPrS-7g?3G_*lZ=GJb$Kp<J1jdc$*vQ6i4|9~ilQJ>5dG
z>enxFEx0}PHyThnrD0Sjj62C8K1u(AWRH&!Wcas?B67wQZQ8AGfA;^)Q_Qo<HR=Vd
zZT-_IHO9yi8~@?E6X(vxL!}9X&X{pgac-porxL)2(mygmGlTWk{}~_8X6F5_ckqoy
z)9&*;99rLu+S!_Lg~WFw&l@Ri?<em?F6r#*$KSX!mhzSOOEkFsHDg_Q`MZAVqH8lS
z!H}10QfAumbuGW;_Pez<Ws{BeXPn+saW~+k#^6zag+*3~e$1knZeen&ZygD$l2duq
z*+s;ss10ku=u<UWA*~R$#f$USr8QfA_$HhBeAL+A5>n*D_&A{13b+xsfJ^nwt*A-j
zv$>OwKJ&rCOr+XU!4hX3?YeD2rl8co5rxmPl<PFOQ3fqAl;$MN6>MptE;fv#<Wpi9
zxi5EzvqI0dcMt|#S&wP0K}!+F*+}_b3oFIH?-1y@mA2Lwf&Iy^W9p|9johb`_3KMx
zFN|=L@;n2GT4f_)I~BK&T~d7qtqZVv<;+YM!x#-al!$;`iIBZN<xkwq_TNm^iEp_#
zB>xV-aD98?%b%SFiZdSo{kf{PCTN}T_nYvwL6q(${N<!is@1gRuV44#6|Jyy<<bMq
z$Q6A+(8%y|nf)hFW4L};TPrW0&Oc+=%C!L|%0>t(e6Lyj)Voo^|JT-<FE(USAzkE&
zoMK~#ncTBW^3AQTpcaQo^IYQyoX@QU3AvH^i^(3X8?lG=OPNBTwy;>4>**B-EiYZB
zI(5Gl-;!@P;Aq~tDAbW?I`^OS^5P8l9zaT~6_S4Z<ZeX2dm+C#Ftast+hpmN!hP5L
zLbmnwC6t(k1IkAN8|Lvq`&zs=Zwrv~A>PUk-0}VoUDMok<M<d)-RC|N%Kak+_t5k;
zP8VLYKG_5dQ&+qB7hf4OEs+<kC7zPP(Dqn!Yndy6phEKuNhX|dt!d*d-O+L7Av-pV
zk#(zspTfZHi^|ofewmvLEFS9kwA1p;hZrX3RDGYOG<!?Iw<5LLx^RTGfVh+}>@S%2
zB3IRjSd0qe|MQ|{SDEdUBA!F(!7Cy`*<#Do%f$D)r8Ya8XOMeDWuabaAnh!9UJlv^
z7MyI7Wx(+L;XI7ie0w7M)v87CGcA-QLhtbG76(<rO6*~!$z;S|M9kj*Yn9$26(qxL
zAMj;;xJUv3D_7m}SgtM)LnkkRYDmP?Mm-=2l>7de`l1?KWxzQgZZ#iVA9SXudokCO
z)sQ#sKMwfMbGPn~jeIkS(a)&5OV2_E`kBEXdS5zqF81y_jW*5jfztCR@4Nbf$i`-+
zh-B>^T6$@m5ry#)F5^GN$WoUKk=KhNA|UI&D2%KI)9U5$ZDcP8^0)a-LetD%652dn
z)O2_nO-k7@ds_kt{NcgL=LHoO5udQ?tjrvGyxUWw?YvML<ajrw+3v#xq9ajRY^mu~
z9SJ0h80>e<LmxbkK+>Iog^hKH)Z>AzAXcu2`0_nK_pU}!a1}f3L6FUBQZsS;NEY0K
zlaYLeY1K{aGctDz*0HlL+1AuRrrYwjs~=8>1KkaJop$vR_{@J>jYZKy>WKzmbLINt
zm6XF_-%@398+&!5N{YYqtm@m^wa{@B^#1(fZFig>HI|6o8=vn9STk#K*y|742X-mh
zg>3Q*fzHhDS6O+X60KI8*o9~E`%~$Bq!Rm+_}c@%xGO?>;Y=$D`Xts#nto!E^>&gy
zOM3RAt)h_58&5?axuqY&T4;;+I)`^vo7P?(_)xxu2H3_U5PHCBuS6VlyaFpufrNL-
zl0dG10td!~hR6r~kbrN;s1hVMUL-(nbF29;s6X7(RmaBh$Gw`_qW;l0hHZ|8c?a=3
zlP;=TegEzEVCC5uc~zS{{^6WqPsz8N+FidfZ7A2<18LU&zn2%O<Dd;9vR~BA+Qa+O
z`FBatS?O~c2Ho%d(Sd$7b|LObw>8{^o`h#re(8NA-P3iZE<1{dZgg6&UWWR4<rdCG
z7iS@&6#x&twt}E_2+?drPcK@b_UVOebzVielTvV$pORpnx+AO!%ouy<n{j{jWoW<n
zviZ``-@2yxg9Z1X!b%D%w$6OLe~MKfU(&bDqZDkI$@L%}cnT*ix_Xfhc8T>N+F2Tw
z>4m5dBWwCojFGTi88bM!{a`e{3kT&lJM5-gE#MHcsjT42#g4zeOX;8%IpZ9|Aa;Ko
zTHS3%FAJ1}nY#kDxy0NQN5=<=DYsWCc}(m2jp9^LJ}vj0w)oKp4t~z^e;F=IWZELw
zZUx<R4~)8hXf0kMZQG$r0Xy1>pN$SdTGvL8;0~?VV~8A!L>X>(KpH_eTM-4Is*0zu
zz6CjFD1P>5elF-v9sQpXBfY4Rc&UiU<UlHG8H5h$YPr+=OxyxPrW)R*rsb9w-Qsk)
zH|Gf`mql}^w7G>G%?YRge4=Ij8Bik6tv^;0oJEnX!1SDz-W0sLErf3WhVZ%7Vcs2m
z^3e7!ZTBIj8o-(EYj;S^5~4eapH`3p`R4;OJ%Ks>i-@3C#AQKEik{JAN!2&`TfKMi
zvfyGqJuz#2k|#kW7&ie<g)fLXc7O-F<%J#Z*~Qs>TnO3;INj+HS98*lKa26S4*vf8
zR!|r=72py}X~|cwJS(={$Lp=5T}-yOjjw|BsP1r<LvD<Q6-va;QmAVT8bjE+tRCo9
z`<=E`aoXciddzw$G46p57c|@cHJkVlmXj`|sv6PBSnCQa)@@5J+Pg>g;=PTYqn*iT
zrwV4n>b$MIN2AE|!NpDIA@xVLt`5JPBpL)aTDn6PNkmKywb|ag#gw3GbS9JaQrrx6
z6m7`6S3c*bCUQT1WVN*@qB@l!LrlpdvVztqO7A<H{0=9xD3+mE8wlAG44-+Q?^Rb~
zNq^iS{9JtWL~ySn9hxC*!#TYD=YPy#sk|M3gp!Cmc!cI`;TK1S>cYaTh8eAP#ZGH?
zZLGC7+RXR%4c0otK)UG@Hv*88Teu@o0`6cFtkSctBq1q~E!HFEpp>~)f2l2ti*Xxy
z=3xi8Ox;M`{C#FoPIv9}K?axJXU}qaLa4;Oh)#D_>(=}TTSZI3kEXx7jKca6;)5;F
zyfd<ET{>(R(OJH-rfP%S^aQ@-@+BSY;U})(BmmJ{0>kQ*2>i{DR+on`gbHmVHB9|v
zx|i|`fz#I!iDzkk!YYv3IyTQ#*7_Jk=o2?|{DLTEx!d^6@bYAT*yGjYQ#13KZMDBL
z@&0{l40(dDNe!cMFUx=Hkx)mZ=nyR2;YSds$Y#Ck)*0`wGiAue(#Epu&HihfB{wCP
zb5pv${<Fv~JPG#*ZVNRxE=c_s{NsXMGvKW5;El`AE-(>iGMnY@`;or44%%7AYW)ZO
zv=r>1TlOom|5jjDz~+|4&mkqDDSza`D*<P$G)!!uXY*|_+=9%|mp{FC%N0x>tua)b
z&WKAQ0aL^VTi!o_Hkx}rUce)1C!GIVTd@ph7mQgl-ef&ArSLey8R27By|IyO|D^i+
zeO*z><%^RlHSxNlaLd86=T)DcpGD(fY{Q}IJ)?#vw@X`Hg#|GFNH&TX{js4QKLp5!
zFsZ5GrJ~OSWx72wF7(We#8u(;_kLpVgb$ar-2owAJR4wNn*5ewpX?j%V{lE(O{|N4
zfU4x@^oLu16t-T|xr*QBU-<L^c3@b5AYrO1`T-x0t{Yv$JpB^WAO{wryX7?D`51xy
zv2jKGpP!*9?Rg2Jh<*Z>mF=~p!rY9JGs7updB5}DH`aX~>YK3<S;|G&f2aSm<HKW^
z6h&`(F65bboB*ikx?cwCu{|!zJMF!#E0f(Svqc2GH7f}=1w-_3;BMJLNGfo648?Xl
zN}!`(+74{Cehs2>1h-Fu_G0Nuh%YCbK9gJMmu%M`S`1r|T@7&F5&pkK`sukYLh;!+
z_l^6zJqv?vkmF<_=3NHe4x4tmVSwKEZcJ<W-I5pXl9YG)L+gWnUABx2GnGWcPz|<&
zciCGV5@xv)gHTs_Ui<NVtTE`xReXMjIT3YM#W2S)t~^o^mm1Kdu6u#{&Na<C`pY60
z$58J|?VZC&m(Y^1a}tN+7ZB+*!FC96vgN*mRs_Ok9ks+cG=}^043fxA)HK>*G;z)T
z&JCrnD@{j0j&!-T#e)lYQ!;^_o!z$L`lK-eDo{o4>{ClMAC(uL+1qBB4ZZW$?l`kR
z(w4bNJw%dJ<Q41Vrp7DHxmbOA82X2l0z0oe45TLXfc8OZ<5dB?;R|6mC2Z@vS<qZt
zpk5;t<-&X#h%;~forbf0mw|$arC=rdlTbJx0to|sKTMPl`~<5uHZA!>H$8+WvEmPT
zm$Jp#h}+?H!pmx~L3Os+t8jo8M%4I3I#?=oeu2l&@wY(Lk_+P%oRJo|b9r=VZ#hdI
zo@eUy()^i6%J+lA>}J8JNbXb@uhA@939lHiA%)ePPAD>6^l>Pt39nIUKBJ^%BZ18c
zuAD&fNejF{`hwlB`#*y0ujIyw>)|ovm3XTjRg+;r(j>(w?CCwWL~i82V7yz9|8CXg
zed{<DwdL~3F;onDfb9_R_)->Mb1efB1N+gwpFU7UNq0E0y>KnMj{dK#)Xr@okvQOJ
zL0S37Om{t&+w8%kuCPMBs_p+rJ8kT2BxB!Z#ykpb!Hy-}89h6%Sgy=3uI}ZDFeS)q
z5pRirSBGxos?SzB*kH<f+JNQMh9R?3lzcDtzJwvzdNY3a8=LP!F?T!Gpnc_j{>5Ch
zJmwQ=DPw1Bd5ewB!~R)GHk)(kmqG`>>HR&?M+#Q>lB{0OD$~UY#9fMzyXmTNL=Jkm
z6p42w{`;KL6luC26^nK9vrfe#QV-iUG7T7L+mf4(**8CHwckQZnziY@@;~LhcGWNR
zQ%IX{ET~z@uDmFOGPi0Oaoq#`Va9x(7G9m!GpVPn+jH9~O!u9KXJURn>cXHhzcOus
zejFVi9c3r@;8_&`#A2<wymTe0<jgkl-r^h{R(l#;yCtsI>vLpYNRb?xy<RTHQX@4^
zQp!D`lQfTGlp4x|@=`zM_vh957Xe}OxgNSjHkP%w{Yzx(GFOkj_v+!(h3Z6EtS*{8
z=fO?U@uV_EJNe|l@+rxQ8ff__bhx)ljyS%5k7t+-uOgM;>wFR#KLU3ZKYS7$1sm8S
z#l+ftL8uPk%U<--=>_NorGykn@7hG?bBppXMdU8yw%|r`i2GH@Rg2nSWNo7L=`Vmq
zNfB#)5z8?#7)tOh({t`mPBQ}HP1(cV9W+kj-&_qIJ5FZT?U~rk4?Vc6Wp!|&NywCv
z|H#wa2lK3B-gA6pf!Ik9j!E@9o31+i_hHMem(k^7)`1U#RXIGyOODOIgN>a&oIz%l
zdJS|f2QcaDSbKA(n1kP6M}BhuMYv!jID|VSkfsPF@kz-R2__Q`Y)kk^5fcMF@JD$3
zdzRD6;TrJ^lz%2^wx615H-K(0`}}4N7~~fV>eQWgmN>M%8QRVn+;1=$O0eobaBkh}
zy9IhnR}<=LIQhJM&_lfxe0}!ul1Hwf74wJBylOIeK(NB7_Za@Uf7}?z@IUnPR~31r
zW5VKXQ{m)QupW}(d*ol=bTXa9BxDX_(qaEtmLhOvjj!v>QI>`EyJWH6z01wPcE=yS
zb8_YvEW2ov&x8rB??atEgPi-9sJYb?(wTsa_QbHbti-FsGa}{I{Qq0A17qf>fi#4F
z&;I<$$yCzskiQ+&*EuVmFq8^cQfBvg(JEmhZcll$#6IRn4GVivU5|e~P11WIjkA@t
zni>l;^J;wBec305o3}(3I~mNoM)Wp^Eg1eLbpb{PBJWkK2PWWE>g?=`_IH0uy_h!f
z(QELG^pyAdr&0Q;R&E!5eqUv1U~-Lf@_%S)0!3KOVxFtwd)Oq|DCshhQ&H(f7=IaV
zR7>7+>puPSW5ySNb7c&uIR*%S-oa_AWt$tcqab_fL)J~x-YY2-cCL-d=T}YsP5oq>
z)C>${c3byoQs4TJHGip%XTAbP0bbiqZ1QAPEN@KLF8)-o01acW&}}(xq@w_MU0gb(
zSAc7IoTB(}%dK%G=R)}axpMC7ZFJC%sQRI2-4&?CAfTuhK6c;n%qPoM@R(YDAp<ij
zVaKQ;Ez+un)A~YE0r;>?V)DD6ZicufLu<{k0vn^t4no%0X)Pp;Bfnzoy*d68L}Q#<
z+vEhT!g(qrZ{#{~Dvu3w^5?F8X=wqDUy`yt2udG|6b;BBL3<3$s3Q9a-02BP?7*oq
zEzJFtE9z{Jn_(<t6ODTW)eFE0Nel_@3X9eA8F_oQX*jnfmu<I`eXAr*53Kc5*WS8v
z3CN<fp9OYv>1Tb(g+_yZ|5n%Aw)}&5Ue@GL-nF)lBb0U?q$J*SOYy0VP1ueQ^>=FK
z^9*#+W(a!!q3ynTk@L>9M9?gzcfQHIJdWS9ew%Cf>x+(NoO-5y{a&s?s<q*J<@jE@
z-8?zqN5JFrL@6<IQFDBEn3nErkZt*94lt<wPC2rS?RQ~JoS$Jp-{_YPaL=PU;c6Ls
z>yx}PVAU<90rE-q-4FLUR&h6h52YN-uchZFHPX<UFiR^d-FP%6+Q{D8ab)v#cCeUP
z$262`?am(TfN7fu|31a!7^S<{8=SvbL4ZUo$#(Qi1zK{t{GqRv$_Do|D`b2M-mzGs
zlzjCwd}TfxMwfDk>-2wHDn;ymW${yDXu6nuAp6fNiinQr4=hK4S;xy%_|D%;RYw=a
z#z3}+1b(ofPtB{q2=i8*{IC@|eK_!q?HIF9;cFSuW#)6H0kp-){vgYIK1Hrm0VXsK
z!uH+CpGD^~G#<z(n0T7)4%{qtR*8bw-vbLYVoPFL8sG`_-;K@{>hSy*9+FqW9IYK~
z7UlntSDQebSlJh#a+#HPL4|_4=%sP&jO+6Z-dzXzipTUFc;k%^av`4_n;2|cz>t}O
znAK#Cl8TILYRy6pXHvII!Cb>3TBIr_F|DGo@F@%y#wMprOAVAy+rlN9Q<3#mgBv%(
z5BEeLh`n^o-SCCRQ)#O(C?Pmdd@8Bf6w<{bC(|jk+{%*(HR5hR3!qp<Il7y@9{XIz
zoH1?st0r$(24}JuR=@3*t?0)gAX$6U+E)A{9{tO^P~M<=rpgEas31fo>v5`BO?7@!
zeY5oWFNhi^l^`+L^b!Hxk5|01uS&%%sMOfmBlZ<(6Caom>_~{iSW_!mu3?MkMrnzq
z>lJSud8XR9-~W!2ZO-1Kb*ReaK%1V7)?t7AxJ65uN4by;y!}gfDfN2T;JU>t4yBog
z=-BqBF>wJl(^q17-GPEA;{oz9!hK!^xJ)L2)=&Wp(;F51`_IJ`dYS;{7N|JvGBvz*
z=gJ%Q4l7VI_G^;T0#8{*60<J>p-D^eAXC4~3P1_H2W$ErQXpAEwiqR-yKKUUJ``)D
zhPbp&Fxs7TJ(@f%xUF7i3AUHlzod|?yY6OQ^Y(SimoxrtXfHvTfy)AC3|>@8m@G7V
zxsk{=(BrW^JXb!s$ll9azs)}#vXH~G0<g7WHdNnHvl6Yd=?r?CY8NPKNJ~(u+wP0~
z0NL)j5=#OcQOYu9Z>npqOfDlkKt~H{oj;6a$HhXI#X<9?e2Sa6?iif;c|t~a*0S$C
z&CumuJ({_bZH8RN*1?$|wHZETOf9FSKn(056hA4nafjV4FIaXDc3#Q|Qh2;;Um<c@
z+aYoH&8FfE%`TxoC1f-5wwLEY<Ys>?lcd08q?HpaY&#Vnn@4*l<FxhjKudcQ-$k%L
z=7amiXwkD-hT|Llts7aryLa2A>_$C8Ji{?=`i_5(syJgpw8589_{a%(KItQWRNcuG
zyzyRvN30!~Ntb+V-AD2@^b@DIJU7x@%}9tak|1A94;-lmI5x@~O)HS!TiBLOLK|NU
z(>IM<C+62TXsGKTQ!cAhvgNdzX|k99@tb((<^yf@gV*9jw<BElMt>OXJkq9Ya1YWJ
za^69H9GmNHjS(0vCcHE&W2`tnis~-TrtbZW7WK`3<`^QS!76aHxvq)sU`%!??t^xj
zGe4?~>d&qnb`qqngHB&_m6&|Yat;M>i7)mV)lcoMcG=G@ErBVm9}^Fv*lU_f?ULS*
zPe{JFXZtkN8~g(DyL{zvS6TI&D*4<?kl+8I#JS2YD(hNnD3tjfyD%jKFt;bgo!kzQ
zsX^$Asm@-bm#hZ<ow^a9J=)UZS8a85yfAgHB&#J?WpueYg?p64d`IqNt3)S|#^M<^
zg0qn;rpZ*(q+;|y%%}d*xzMsnvgDN1eUJ&4s0wo>AnmXXdrUi>poy}}I$XdX>z+yP
zbrsUMK=0u#J=*lhUt^{zzNx)<{2dKzq@DjYdM$g6tpLV^Ys)i(>dVPDR`%a<wk^Wr
zg^oB)n-6g+vXT2gcGCXIzOU6PmHGIgg3cTBWB}GHnd~X$CeKpz>iJ1Os$nVJ`gQ;8
zUlk$zSB!3p6twDj=sB<N&VtOU_F|86<<LiuFhrlX#;Y%MM|_|)EGJH7&(~ME#TFOH
zk{Tv4Y;X?`Sd>hCKXD^Yx;6NkYC=)S_xQnVf%Tr21J=lR7I$zed1M0B`M?&=iBN&U
zSeF6Ku}5$pLa>z#x%)%h_4?sJ#rW_P;Y67I<tFABSt+1zd|Fg`Y7Fi%#oUt!%}S`0
zYW4hd=1iFgMyYrT%Xuw~fmR#Q$~A^}qfoG}+m$BFmT!G6=e~a{Cz-L!2U=qZ!ROg#
zMdC>>7AsR6?;b1>kHsK6!sv^fu2m$mU;=pOu2a2zp2F@c6eZo`Bz|KDfiaKY|51JG
z&|3Wx&}3OnWE%68wHAQ+@jopIu0>&5+08ox=7W0`XkP{ie`z=yah7mrI`51EQX|Py
zRI!Jzl8aGZ)%G`N#YK9Ib{HpXMJd~tFIw@$B$;!uMS(Z1;5noras~=Iep=^a!2upD
z7spQV;tHR-LItUzK0_R8_e>mfW)YGjXPEES(SxOCB$XZ?vS_EZG9%a%0iDzM;JJr#
zOXbzk(Grp)`^x%ulswZ)$h9O1n>Pto#*>8-dUOi}_hQG_ChpV)XE){{gXjNa?>obq
z+O|bewy;H!t%!6`kuD;=7ezsk-a7(PL+?ExB1ly!N^e5wkzPYUno<&42t^3JcL;$1
z$y@Am&%I~gbAH@^=e_T~`DcBZnQN`N#+;*%IR>jU#viu0(r;4wP|uyS<S9Nbqx=ev
z)0Zm@g}4LtC$1N3SE#-BeW+=*fNk=yffMuYoOimrpSET{9FEyBLHTSssWdvLy`*`b
z{+-Q?|Hx)Nj+2QNe}`ZNi{3mxyDhbGsUW@vUMW<{0y}$~{5uHF)nIC3R*{*O?61>P
z>#jApT*Q#t9O7<mRg~(ql%ffGskM$BdX((OmOP*K*o8v@cJ|fVa`;$i#oN0s+Q(_I
z1Z^=^t#MXA#&kHGv;xwePO&RhEOb2jdSu=xqHF6o5V(yhlH|~R?`h1j6nHE6)Je^!
zZ?8yynE|(+$?V}5J}m16s|uoDV}vYDnSv7QIE;%inG;_+!2%KH=_USKMl1cIOMo7}
z=|+ejQvc<ZpgmdJ6kvFRG%-2AE^tiRnj-Oz{fr3n_@nDEMK#Tu^5A=+34AKnkxfB$
zzBP(U4IBdX73f*}=SB&7z7#R^+$JC~!Nzrmk*N61SNzF%9Z9P#_%xxa-k}e&Q5(=j
zQ9kfcKU3zz<D->Ch+}MRf{%#wcP$~5s`_M;WjaM#*F#o1spKYgC1*v`S<@s=AJD?l
zWj!De;KGmEq_kFQz_VazavFu$0xD>#4{@E6@-XPO1lP)re}W7%P#xH|;;xP8@qKFN
z&$-r=Nq?H)TI))*bhT?0GTC#X+W%c|f4X8%mC@;any=^C^D=_#%!h-Tte|BZzLUph
z6G~;r9V!omi7ZZcI>tXO^ER3}Z$DqAE$DndH>UG?UANA)S|48hl(lRs&w1j})IKK&
z2(Up-YQJJ9KVmNEyjmeeCKspNq;l_Qr&xQY5V!erq+%*nhCq0gZar1JQ;=J!l_~cJ
zNL8{zdrzR}iTvO<E?m0S<UJ3M7V9*|k{ZmHp4b-c(sD;lwVxpc(Aq*Y=d-=U%u{Sd
zKj_PRx1qBcD#Us6LvD+0kKd`BH%Ia*my?$&dC3)kifqI=Mw@J#^uznF7np1;+S*On
z0wF$4qE9Rb3`$(2>&kyl6(whHyE=6+^28+7?uB;;E4?~QDztWdS=v)d+a8gCZ5ba_
zZgTu!eFZ8QQjZh0E&kE?F>PwK)vMem>!koX^Q}1UD8Jsq`czkMJ?k+ui>-6Va@<lj
z-JZ%qw`&a}=K$8BR^Qg}6zf7$ri`J>zYF^ANKx;w)y!M7pC8xz!^?%$sP~%{G;YEs
zuCi+ploxyFdv!cu6LBHL4M;pHtlaXhn{Zk2kHugYVDX~ucABwPlhdIglv5gi52e|y
zMIAuo&e!<MwjW9P+t*VJTuX(K*)Oi{j#2Xi=c+7buAV;6X^Yxpm|L5-nkB(Xrb50)
zlNGmWD^YEuvZkABr;ht(K!<Wh`R`bsL^nA`Ay{OJg}Uoc-Zg*?UUj-%$?Qdc)B)%q
zmp*|Yb2R5`w`0(LwI{+H9;KY-KJXa3K1bKRD4DUI78eL^jow1eh`nQetUm(jDar2p
zwt~t}AWMkV-Pym-T>B_KvlOa@`gx04CSa6c;8CTGvO`P|2U<wzC6>s{r1F;76i6N8
zd8W#EerXoupE8XYjQO_QKP7jRhYBt+m+LAhz<3gt9bD@cFu*kQ%;%I*8Od+*I2?XV
z<V*T@e^G;9VvzgQxa%0ZBb7tFyoil+Tf><07jK5%$Q1rOqRd>Cu<&6$GJfn8)lbv%
zHEIDZw7JX+yBLpTll6yPznTV1SJuK<G3A}#^aYpk*Y(ccUgE*jDx5f*8&c`*!>Bf<
zblyytm`%nyU|>UrDPyOKwL@u=occ#hB$!JKiI26ObTua%Ek0COQ7+;DuiQLeTuz}i
z>N~2?4T#5bxKxA)=O<M8vV81e|0AU=kcCiJc-<{~C9B=~wp5EYIb3|)BfxCJO60UX
zQrNBrv}~DrRIX}JhgH9sC?eEubftnZX=|kSu-o;sRicQUDlh$Q8D|C|hggOi+heU`
zV__e;0ZYWMLPoO5+@RAb{JCAcFxCfD#}shHnqR6U!sUu=EmWBsc!v3=d5z!@8<;0Q
zp$|KswB=Q9g?$$}Ddc8w6wYc)Hy`TFIB=zMG5zd5aMLEJrq<!inUCmG0@QI9F-c$M
zI$KXo6YLye7||hpr}UHf<HnZkSg$nQ#_M&s%-4ybfhx-_NACyLacPRE8q>)R=PAKX
z_4IrJzBGaKJnHV!l`vJC`pIqa$*3K6N=Kuc^)eg2&?nK^(l2aMO-x*4GNzWlr1Z7l
z39juvUFH^Q?(}Sa_4`E(U=U81(t|&(Y<(e8S9e0!aRS`-g3?`f<`+VveeOw#lzy3x
z_ZXp@6ch3>E#t9DaQfEDWwLia;Z@IiN;8b^@SWU<8WN!<t5<!zSIZqF4^xTm^X?W2
z@76=gQ^us{t=`yrHRW?uX6=9Igsr^EJXe)1ZBlRxMBF+u2zt6igK{)&kyY#$^nO>U
z7~o<P`0nsCa;Sr+!bMX7dzD5w!6+bt*V2iV<_;sT&Vl&G;=L`O-(E31_Ne)8;>0UM
zV^xZtQz(%1tau{ANl}Age<c3FqD;lw{OtR@Fhbv|Q)2lUPV247L-f%_F#TXu;P*&M
zO>eDMnHg~%^P(2m!14f-+0J7#?{hC+iOJ&Ny%z&R!IH0tnmPBo6Es0uF`Q--h+k7_
zDO*X639`U(gBipx+!um>bmY-QtX(&r7kuhMQ!m;gBYT`x*wpoGYaA{H>X5EoDMwmp
zL@4%v<oyeMm|S?tJieKUXk6P-bE!O&EDfx;$ycU`AB`f|dHou<9XK{zL9D5IH>%%m
zcIwj;DXFis5h7&!bm%dR2OYNFi)IK?e}09%8&~rSvAI`2v3zn2S``rzw)xg~*#TMk
zF+FSD0Nn4+^lJa=(0H)`#a_dU$?<qoNMnT}=e2_*SWm{X%w*th5zhd}jD54BTC<kB
z=;xz`YX|F$3>C6t0_F->Wg1bbZYf7*yDQJlN*DJ;z3pq)=0obMn|w2cC(+Xp@g>u>
zOME!KWs9H6dQD}CM@I+m(r=@C14fdqr@HH4zEMvvm*{B))KpSptgo9`O$Rg4r4}*X
z`fhS&Ud{?-Ao|S&e=c_LKct{99txKUDWWlp#Yz@8PjP7=z%yM2?H%uaKo38})5EnC
z^xp5|?8Kb&m3W!=-qWW)C|Gs0D-Pte{tVu4yC>mu63MjjG6Z&CiArDIO%6r7SUfro
zk(#I32psTP2yK+5kBh5R@9sL%`MIYu!4~cI8B^b}l^GM-&LHx&zBhKOE!L#}s0qMX
z&X*ZeO7GR1y3NBrs<g}*i^wGpCu5uJ3|8R08?d3HcjSgE{s_rQr}_hFMQ~vAAGZrY
zP-cD;C5FM5|K+<P@k+vRNT<`T-S6SbGl=UgEzvarilZSv1qCgleM8^%nC2J%G;nxU
z<hsz+u+H*?L9D;_VI0({!%EmHC&95#qj+8w*5`YD^v6}@G+E22fchU0kLzL_E%gGX
z$t8|R@lWomvLXBRl*6maXm0;`%_}|}w53X}lu=COl^x_oD-#STdJMR*Jxxw$LE5~$
zScj9>F?2;GO-A7z=#@fcd}fhL%WQCk>sLjpb!UwkI_e=45zc7{ricFp>AQp>5go`z
z$xYJ5z+n~h60DYH|6>Uc`pNWNr?ZgoNS>ngqG%q3;fMvq{NC8}%^SNLV!8{ELVNtz
zISQOuO0#PwP;t6^F<<j}LJX>Nty%;pg<GFO_wbB*wi@PVb$fjAJNJsC+Oh6e&s1mS
zPh?|<tTnfuBXL|dUYdO|Q+4)c&K$1{l1f{C2xK_FC@WNDhOQ1Nr1K==CvGP{RuD6z
zF8F31QX=DP%x*JgsHm<#9~bZ5&jdQ~yEM)Bk?X$J!7^e<&45bBB2#Z`?S3--)TiJU
zF-$pmtC&t@dlr8hj-Cm+$jISnsHu@DV^TVTShBrl;B@#*Ei1F+%7KoEMBek>THFKR
za8Cq}sKC%(x*mPsOd8c`Rm+mg`RkDA`_s4P5D;~8G5)b-(+%f9f5RIgq}C!L?k!~W
zag%Gk9?81n5Y-_A&h_*IaNdp?Yw>dZgV81Dv3aDFq=(&8qxU{g;{xWM@|mqAk*i2D
zi}XBbY9V(=K<ReU0j`Ey+P0;zKLf%VET>0Z-s{O{7W>vN977V9>ZqPyX_d*XGa=9;
zX@}W%d4Zb7)eb9unQRWh(L1`vbiZZT`c%oZZ#ETW!qk_$RJXPWxs(raOoN#fX&D(+
z@@!GtJ54E0CE};AG;!L*zL9<)lp!}aF_@q5G?G$>m?a`<7HsU@9p5<<i`&(L%C<Ay
zmU)uctyq-MbDoh6<Uc^=wA$(EXqBhotK%(~*s?=IC|G5T40_(Cod~jEcd3R3bI+Gd
z0w?KwGb^d8eY9l)x!vTy&O=lmPu3tdUzzx}-^!YrU08w4oRc{`+eG2Jb=hp!(E7{D
zp=9yG3t2qL$p&<NqsDpNA%U}BN=0NO)Gd?sKdDAiXHnXI8gxrX&<p6<c*n(l>upC{
zw1+EkZ8LJKL<4g-=9MU~P=~Q8ard)B3d(~+(gku{KipT0(|eXJsi&`7)a0)!_DC5G
zwl4c_tcr`!@Z0Y7@o9Z)ml#YGaE^X=g<<2BT0u0!RH&g^E5gw(&tztFd2}R7`4&V?
zPnSrB%JjM6T34VWj2-h2ctyA#=b$Bc{*+UiF%~22kw-&%<w#2dlT`wWt!3J>AAS2X
zEf`JOWH;tVx%y%l<!>7G`Y9&I%^Jp>-yVkT-g(^_hs8SDUndM~4O*NJY%Qj3Bniu!
zh7FXiN?v*Euvm1nn_suMq+}#+s`4kK{${vRyut9{gE)s)dC89?<0DbmG`6Jjbe8Lw
z1QnHs?v+1q%CeKH(x@I9%P!ZA7|P0aN7PS<UXRn8AAJx<aWu%{>tnvv<5wBiV+V;_
z5JE4M<;>1?3$$aKIGVzLBGk<$cYF|6Ui!I&Yq-i`Ybgy5JAYHl_Gq=vN3dQTWg;ke
zZSi3SbMVwW5;jbMlhl*Jv6hkCgvs0N@uKm(TM7-J4Zqr#@3Xg1$v~ol7PgB`RsU2`
z*clYJ^7OjwrFI5s$4?b6v&wF=R9nTJuMOVSW8u?oJW$-kn^Vx!a;Kk@xmZuhp`E7c
zp;X}__qQ2UP87?&;~AZiGu9=tc1&no{3zFfn3y;F+{B`s{Kxzr$7e4zQ0OuG1-X2D
zHG*bx7F5G_9tl!?Q|X$0yMVy*X6R8l+ANd!r~<d_pEW*5x}+1R0#Ro?nDNW&VJ}P*
zRH;J<dw$OOuQ=D$A{I{d47Wzf-$;&)CBCWPWD+^1j~dKR^=nYn4f`1qp527WQUj2~
zILRY&r@mcLixqFdoy4VHaa*t7;)i365+(f<ekQ*c?LDnD|Ie(}rme=M8e}BL3_mdS
zC_)+?izE22S%qgk6o53rK|ooF)flnEZp=a4_RnZm2hYR5W;>r1{BsyH^UT*SsIz8;
zlS+$g)-8X1p$fO<{3ZVuX}1$=lXvx&nQwW={wr(l?Du;>UgFmHcU?RZvRVfr_?kPW
z)Q;HyJR<O?elxrOw;4R=v6;I(z(n&3_FoUU7%;m(x&RcoSSfS)yE^pu>n@M3-(RN*
zjIMq0zpO9d_U+pl)lL6BX?a_z=0D|x4n?nP>F6j#*!>-Xf4`c)r}(D~=Ph@x{(JiL
z6VlSsJoSAe^;pKg`VuRjOk6>gh|QdmDLMA`yMhp%uX-+aNGPu&thcUw3?qxzKC!X&
za_Z~}X1gsFoZ^zsP~Mv5B2w0mD#Yo7I<lVXO_8pXL{O#{CHYqi3v{CQ=*2SWl!UrA
z%m=T5V#<A;qq3oP+ws*ibVm<I^5k6WXZ!}w4ldpiv%d8byJ6FncC<sqYm<XI2#R+d
zyaqSRKTv|YrxE*u7Km!=FY7_reG&Y=Tk1MvEDP+E$Ex2uO~fuO?^IIu0uxQ8#~P<8
zr}X@O^+H#v3!{#22cMcy(`>GJxiO~oG{<2?dX67`KIk-ZeK<U<x}nDS-B!9R()D`v
z46vv<ywY8cLszT4rUnFDDko2t>?e@sXrF_#LM1+AOxh$PuX%g`;cP{Y7=fC;hiXn)
zKS9gsSr*)uw0)yUwOycd<wWuWw)p7qOHSv<urW^Hk)hCLM;q84FRbaF#u7I8wuDbc
z-uKw!W5X~Ck2;=(S2^A0GO8{&_lGEfn4zV~fU>6)F+*>MI$ndsOU~F%Cb1_znJigF
zUoKTBF=o<5lH0{^564@3uP<Tx7AzE|=|wUUFXw#{kr}h4WT)9NEJq$V#)jv%u8;I|
ze4E>AdL%lE7Y4vG`#mby;(Ww5IrEyXm-eT;$-wo7<szRg$-JiJO2~nRo!4^NUZd=g
zN)`*7-JxSvGXYh~m}FoMmHoIN?DG0cfF6_HlaTnj5O2+}1r87$1PXkc+fYNsl*|G&
zce!yoR}@9NQo1|%C>U>3Os4T(=Swzr@4%jZhfFNkz(+&v%dLVomUv{!lFJZ5g{rdV
z913A@+^|_jUe9vN=b+kJqWc|~X6EwRudh4B9g^RCK{19~E%7d>btF|ux0rlz_?b+n
zXUFYqCN^~GA@h40ex=OPUDM25G!Ycxal6<kK{m$$@dlARReKm=(<{kbn95u{dV#2>
z2nvIZ#?PX~Wf~dFa*`JAm-LDFr{(@j?9N<CR@*_wICYPdwIcM9oLsI=;MXX6s*QV}
zd+C#>KCjpJRp~NIt5L~_zPzbVj8Dj4=nv1fAfg1e$yqWBesl+I1lY6?-s&&@#=B&}
zI?~^+?|K1i=@P2)vH7laU3;*+vRIZ_1!8y@^H6VW4M--tD=@%di#5pAm&1J$O}@gl
z-Aq(E=n*4B@R*)Pn*$-j2<x5U5lnUwLJ0vpOa2t)8fd1`lFat}>uN5!EzfuQC{bO<
zQ%p#yO)84wOO?C^L8k^w<t*O%g#R22iY*d*$}JZnFO+F9rddV_4}1cObrX}s+8KZF
zBlM)*h6XD0mx*XRM4}RL96#tK0F=o|bgZs9G<cb;$6S~c$>JD|+7xR$H+~t{z<=Bn
zc{nb{SWPmiOH970M37Nx7n3dPv8`EfV49}m4JcKoDSAY3O7vj(`i*f}lwB$vuRdyq
zi58HIu659<$Y%w<U{}PTPRzij8{{^uruO~^2j=(b$EetZf{fsbJ@*O^kAAec+Dmu2
z$7@pVX}9`^y==PeRG80InOT*{^<2?Yyj8IZd<(N1rxiaDg->Z%Ma+ZVfy94az{WlS
zFX&7>y@m%vU9>F~EU;VF*quA5$<}#io6MB&E-h&Gi3!cLd{ZH}8z=8v994ZpPk5}1
zKW%=jz8ULz!~i^kRtZ+O^H_t7oXfKCWmWZ02$TbnX_KH;T3uJqt2i)W-;LH@++=Nd
zFi02lJxOrnV@=TN>=Wy<6?d<=l(e6SOYTh@k3L;g|7d#do*Nx_<%bx717|o8RX4x<
z>+6gBQl}oDC8>ZcgSjELBfwlS`Ek=}wa#!T277jb1QV{6HfQqGdJd5Ha_^M>tPj%3
zPtWpjUJ=SMzrwmRG*luVr_ACkqxj8`G33+&e;$~+?yuLUbmtB<@Cgw+8Q8li@I;x-
zj8G|PkWOgT1)F^=1P3*!Z;UyQ+DUopZc9D;sPJYK!Px|SDG6<o#TtwAxLFAc;O+~~
z*dVq3Izle$Fw#naWlsLO(JdanGSW*FR5+<^We8Erdv|IAQ=<gRQg`?O1)1#U``^cL
zwn@px#}^qOq+)89-C%DL;m{oomm}un=Gr4Rwi^j8iq+Kb*3PIzH(#H*a&)!enr2K1
zSu>}zY-|JzNSw)0QBei_UEJ?_Z8m52%oj{WZ48q&oIX`LIw)pbO<3Yg^K%Rrj3K4T
z92Jz^EW*pUg7zjaqsTQza4Q-~10w31MkO+=J6gq0X{4Mpo|+NMc?{Bram9HUdv=km
zW&q2c^REufx2N6ID@1|M@(E{%Q@nlo%@`Lx&4gTm==B}Qx<dNl*f6^>0YQ$p?@)A>
z`K1u9^xQ%IVD^jWBmgBhot(0`2_A77ZS;)5lkoKHg+rNKvkgH#Q#pBSJ5|l8;)jis
z$2fl7@joE0!E%7<8_w&MQHcDK%Lo*b(K)FwWF#CG`slw9D8_B1yg+j$AJYLSHsUm-
zqLNj?I4|?eyR`sN<32}&PPvy`+_Q_do6%4mb^oswCu6rMrFNd<)jOkm#8xASc$n;t
zz!RM_-}M1G;?J9yQ~?w9RHytN2e(k&x^o#AVFkXvg_9d@ipzFDUQO?gr7t6?&#5-I
znVLawxIP*Q+)2e)c808()IfI2@KkZy_F~hPXh8T-N&=4uG3Q3zJ7U=mAm{y&(XcO=
zY43Kpe*56#TmFY*>-|;^ZW$cvX+`e^x{;<S&;eKYR|~ir<qZHpe&iVCk)*+%-!0+B
zg=qLgeVELR3WFsA3O^!85mzLoE%qQC2a<fg-n7w=i!eT4LG|+0Z|9cr>33Uv=FT^!
z_+k}g=c?qY)6+9_DH6Rp?Y#VAK^XKdaz{MF72YSDgLE$kW3R|yJMZ%uzdk#kmjJ3!
znb}OcUn@GH%QVOusp3149O9q6NlZx4)ilek8f&ds34u?De+5Wcn@zsKmw8+MLF662
zLE(Bw4ztk@P!Znx(#f)D!9d$;&P2KZPW#Cu5;ix)U=`f9s9|iVxm6m?63F<m`aZN7
zVXoFSaKVWUpr8>gx#t!lTJAs+>DGrzpb)rWDVh%jwJ<B+#J}iLi`IGlK{usZF~-6t
z$bt>wa6w2TUJRU}v)9%v5a?$b6ZE#`5ho0@U;<BH!3j^9sCi`EXq5Wv0C7E_iUmR3
zlQN^&$e><Of8H8E1s6TI-RFh(EFE!%h?$k3GU;jAOOmZeG_c)6>UhAJ5cm`c!)Mif
z7Hxiki7?zd+_u4^c4l;Zy5zeU1Wfwn*^+pF3|0}1N+?UshdujRN8g83DoWGlf6GGg
zoH?du1zI<o6s*pBLsuK?MR|$3AMyqokg?RKqeYKB<IITzypyIb!QWyewdPKWe98uN
zE58fxacHD2V<nGJE4?y&l&Py_V_F5_=>s8Iyneb%!4*g<U2eD6+SU>EXChDs?``_7
zUwfW>8A3+x3k$c!1hhsH@ujmP!6jw;BOgH4!fgZxVE4@4S{IOCsGx_mePYIMCTi4J
z!i<Wo!bP3?46q*_1QV4os7}I|9UttS+7L=Xop<LzqjoQm^2o7!LzZ9~sB%W*yOB`y
zYS|69eg}{$Pjz`0GU4{1;@c+!r@~StOXay;QgT&28(8)$JVgRl_=X{dJHsz)Ipf#H
zbItIFecF^+w;<oTuWtLDS-`y;@3?a7x$Tn%%m<Dz?-Ac}Hyt$zNLD*H#~X+h?Hs>n
z7*q4Th_;*kPQm#3>(!5>qkSb0v@;qjOn|y@uE9!RfpGL(wHKyrjwM@G@YSXW0~(?$
zB|BZDAuGDD>^=FRRqq6KQw6_Gim#ZWR*Oz{&>xjD%f;{cu0iBl&Cs1)4&ReDgf|!M
zCd~~C&q!&aVFwUAdK45Z?)|1vHBLuic}3DNz?71$5R~ElDeX@Rwfe;oV0zlYAuZ;Y
z5^dLxDp%g$zE;29;T%ztpgLGq88S&YvO1sREA^<lxpOCjxlD^K&B`r-VIMm*OqFCo
zo%43*S1C82qH+*W-e$0Ty;QGZ!TEfrDzjvD$Uxb1M?Wa=a?V03ezn?E50zY!Q=}56
z<<7uNUt%u8F6kp|(JV{UE(nKkA^bnK3RTXph2w)fD|&f&ZU=NI1RS1<+2`G?R#R<K
zgn5cOSU6OA9FQjM4_f1&^gd(DN-z4_smXk5^*K6*=k_6G>AsiqJ0L9mS~8i&2x&|!
zbWQQhK7kqvdt&Wa?|8b$BQicO;%<-TKk_|mm1BERi?O5={KjlkE48EBXawhze-fNN
z@LK-Ob}-)Ie6vy_x-Q^C;QOp!>mh4eh-!|d8>@%jkCVrgsWbhW5)a`XFM~sSHH{7+
z*-X=AG_J1tmN0=Ivvh&pF?4KgIK6@@LgiD&8>#gcP3xWFllgApV=Ht}#f;z%F}x&R
zL`UD<_)@EOXB-uP;?iY-J1sALgK?K+jux%cq{gDqy!D_p51f>^)OzPn!BbFZ`NUAB
z##dXJBf$N8X3l=a<otrcMDUEh^FEr@yUMM+&je%m=!sA=K1z7VR&}I@nX_eY6n{>}
zc*!|9R}>C2rjH-2PJOJ_?2w0V$`DAP2W5uUvD;5R_*{ANmRqzt$fBH~^i9qCzwL{t
zdGDB7CxhBiPIcnpfX}n&S`o$H9E&D%3y{(f8!2^%Hm(in%HE`EpURMvW=bBH1!?#5
zc<kis?hXYVuLCY6Ib>AAg(SnXQvTfduu~^st$d3I^t=8r6}Uvgx%<^4b=_4j)`R=O
z(JXi*1iK6KU8|5<*$C^&8ngE8<jTp_p28RwZXu3Kc`NfYGPGTyG)Fw~cpi?i-W&0$
zg^Z@zv$TIe=uQ_79Ca5|9mMr4W843r`+8|W@DrPzTp=X;ICWcXGb`qtS;MdOh2pdH
zT<2Or!r4pM{ur6fCcmz?uQU%M0K!$<E>`}r4U=d+R~Dx;O!ivXP7~*E2HVEDpNCCZ
zkOt}bHc%MkS1(D|G*(FF9ExKg=k#5hVU;T;Hh|OaGf>p7;h@bjV+9=x_K*yu;3he1
zyUwTEBfUdURM(M*izCR@T>1)f39{^0?EUFWbS_BSV23RD_SbJ(Lq|%YcPjA7=6=Do
zqFX-=Qu}_o12dABNN4`p+kRCg+WpXR?wE{^a9~R#_Ka&OmspxTEr&UODsPjbe}<%3
zsuQndEes<qM=alGvyqG3`Hq1npipoBTtR#2Jo3&4sy5=2##`GNF$?zrk2h0ZcV8Nv
zr)P797z(k)f_Y8z(Q?AA=zJAtLVrt`W_0Q#p7QOD&K_VAW;)QOyGnD_4Rh`LSniQ!
zG(m^|oDK8wOOUL9=V3Kx)|e30KoY36lKXhQS-4MHZt_F^fQ1OaP*M#A9z3-yU!-_T
z8RLb#`FQ3;47@qhX8$~W?p3?v`FcGR<Q)*d-}gv$7QOd&<wID!QgjlFK_#pwVo1!r
zb=hLtpp`PY7gMLmOW6IC6)=BQ1}kM97GzY^i_nDvoROr-tU@%{iskk*`!QTPv(uNW
z?Y;w*z?y+;i}$vBd!b{XQwQ!g@jp`KhR$m|+IEf7(wUsVHM51t401+56=<d-mp5u2
z=qUc3T}>pxP4eDdeSwbt_#kHS*E=H;9V@GZ^tf>L>;Re-r{Q%uc-~4#<qHjITy#o#
z-|!Vl7J!Dg**xI%{CsXD-#NMw`}<h+FST^t@mE31>2ibpwg#8qKnWGgu_BV{cJ?Fj
zwwIRMq8`Z&efV=(#Nm!h&;USf>es8)c&i<97OG8VLL7C;LQqF?FP&Czx_eB-Z}s{f
zdK<K=O<jvchyKQHw#33)FaIZnecl><TA05(adyf&GLnGMQw3%jvfnf_gF?k%E=4mh
zG+f~$&OSK>B?5w9IJu7ikar;C)Rt#BND{lp<ZO&>GWXxU%7^drJYvLDsWk6cfqSU4
z;v$wX%hM4wl9n0_R61@^FeOevmyFL|Bg&q9SVq36V%af+u3xqeYdIhGXYIO3mTr1G
zxr;}%`jOKRgNx^($B2}=dwv}H9UD*0Hl4K3VZ*tIVDACx>HYcnO_WG)JPpImZ@JV9
z_Mb_O1hc;s&0S4fTnjWC&93lKeR(aI21t#wnfGmjb#O#Owve3QkmmilRA8nm$l0P<
z7b#P%YqVT*!8s|CLDOZl#cyrJC`F5PD`niaOIPQzWEV;s_Tq;Jl_*R~1JE=XBY<U5
zo{^z9X%CHAPxfNFvqfDlK_xRf&jAySxSn+WWcHpw^q!Y2`pzboxq*414j{Sm_}cu8
zeM36WQHQUAZ$JMN)?DIGe7}C-?m_iVq7a;7X#INp+t}7RTiUf|I$ocN+1oO^iz5M>
z?Tu-ovfAyixR6>K0H`U1Wuil|j6m*&<jw9I+HYktPopRjCIcHhIjrffJ<jW@M;C9G
z0SO>YGf_jIT;<=+yJT2{TW}-rAY&@9Z(9DD_Z&mHi+RMwPM2?9T6sOiyBHA{?{dBu
zK{-|HHFRHQ@32b0MCtRIU-8MLK|9~AY$+CEsqeS@kbaL}OOBmHIiVX-9BE?OS%~5F
z1pa5*K<!?VN7o`flbp$*q}DXkj=Ss3;t-&Iap)a}=-RntjAK`Y3ipF2IN2t7W#;lt
zCh0aU{~fOgo=q9aJoAY_=GwD7Yam%ogXW(koe9sdmthvni0<Q?A~wB<3E4|ZslCOY
z%q(XKc2*7A)-D@Y3ksr<e)y!i^)!^_v`Z)ezeg_Y`ziIES$UZr<E9wKTaWWr)+tXw
zO`|=)LNMmN6KdzJOo2Z)LO%|%^qPJy-hFYvnqz))#YVqgr*-TM$B!MQhVpiZ6n{6o
zYq?<Op#DjQ*35>JN$x`LcKdnAJYUpgnpN;n<7R+D#f=Fh8<o}<n!8l2+kP#oh>C{^
zdWpPLOTDo*r#G%A!djI$yWK-<dSza*##nXN2z)?t#WA_~EOLSBBa6M&b>z$PBE<tl
z99+*V%46XKZTMN2r*ZK3y3I;yYxkugGoks-o!;IkBEa4%bZr{-W0@A#TB>y{DCuo&
z6%2U#tY;rCElYfoes^88wAhRDZ{j?SZPme!`C!_cfRh`U#gPQ(3aiPW5+B}x9-eM#
z1Cz{hvq&b`uiMKTQ74j*zbo`-l>Q1{2E|$_P6V31x**B3y*ft|R_FU`oQJ>Uq_fi>
z_SY+cD0bz*kHsBdn@C(q?wz!OzkrTw#Us7>^f%Mip(*R1;lj&-$qT<q6QO+CSAF}F
z&K<!<sZDJA8>8VW-*2_%zOerB9ek$DXj&?5;DWBgdB(;+R!d(#sc6fH+t6Fxzoxrm
zT!>n}>vCTt=!cOWdc}UEXUw`KGd4VIOKRY^_ax76>})@$0v5qb_iIHnLOP0Tq>u*m
z%gRjT!mgCUoj)064pG&4b25G>eCI*_RN1S_6&b#%?GS3q;5ml#pVB1z??)+rj<qXa
ztclX1Uo`Ib=QS^MeNYBEx0n;o5&q!RUmW$Vnjk{UWC*8ir}v1oELmmn9^Cz|XkIoC
zs4uC~y_sj4#oDlZ%P3w6|16%)^1@Tnmb?<h=7);9hoGCN{;|loxl++LY+xT}GV7Gp
zYF=VvK_BLs{hM0)XqZxD{k4@EU@>Qn_V5LYPL5vB`bQP0zH;S_<l0-PrOFOP@$lCA
zPf#p<(U5l+M4~Fj9|*0-rV`>(lppq7)3eX=rF^gXx*2)T_sX6C2}#5LZwXN!Flzy)
zjmq^c#tPV6l<`NGPI=jz<;!DD>w(^%7Vv>F8E*n;D$W!2Y3VX=jtCF9b7KZ03@c+U
zD?Tr=C=kF{IC~&DAM5V?Vn0O@=Gaio2B(34w-tvFI)qzxo@|XLLNoZqcn)^mm+YK}
zn|Fc=-w1VkWbE-b@je>Fe=AlY7Xw%P8d0<xcoMwlP)HGdPzxGq4zSY+3pl!}8Egi-
zti-|X@YT9uu;>rwQ$Zd7)7HVl*kB$W=^UA6!NVa823?`k{WKc>5~og;n0-D1EOT4I
z2*@ylj24{R|0@`8HDWiJ2-YRXrB!Z7;lHa^J=S;)23K7UG$cKw%W)Twsa@$~T4HcN
z>@HVq30w>nj63%0N`vvp(dIOq$c>d*stvhB_E`Q1u>NT7XPqe+sA?Zu&B%-?@J{#C
zqY*S0g2w4rgS{81S@PRCTLtF{m$xQco}W_0c)fz$Btnm01ojP#2eq;^iS)9I?)aTy
zK=w%iw&02k(&n0<_#i|D^JL9FbFk02^p7vaU;>1${sbVaZA<y$BT+9eOhZXuxv1Lh
z_L^u9EdVLcyDMCTt@VT(XSId@5z8Mg64G58EgB<U-wpmUPsTbzE9FtU6QhQI$Z4TO
zwajI`B?zltDq0V|FMJRdC?fF#-?BHI3Yd48=*qu-<-#=_`xTCDJxn1}vlmd)^UvNm
zAl0Ktf2=@V2A<Cl1%PQ>G+nXuvQ=|UBLB2sz{YvvtJ+!?LETZ)Blan?LM;R9>GfEB
z-7Q(0&4HmKwMUH%k5(LsOUw88tP$baYcfK0%&A3F9M|gt0-pZKu^gV{i!}AH1ZSBP
z{o-S+wE=&OzOh-EogQ?$5MJ{5fMh#J(=#v7i1bTUjn~k%fRU*70P`h}?NQ%vR%D;o
zOUo|Pymqc@<<&{ouNYJcjBSGgHg4kU_&n1$#W#AQAyn(0LUuWE#|Ug%t4@q3jL<=2
zgTT$0ZsA86c4o{bEtkoIjB|vRB_;xwc?!!9nzlxZDUgNVI<Meyr?%XWzH4xL)PYVb
zf>7i4lfBT^0jr9*RM%UDNjozIZ^LMMr|Zm&B0<7;Ln^l6D248T(7kZ!7WwLVwnd9X
z=);ABsrsdoyljDZaKH=V%C@-oGB-Z}M0uRh4b^P|m5h(wr~Bb?B$(KQ`lZ#k7H|JF
z-GpT1eOvyB1DJKqk7!>Fsrl(LHan45exJ4j4&{WwK?nBrfLM|+6S5_q>%`)BJ}R)C
z!?3hdHBY?DCJH|gI9DpI^e3MOvo2IqNf$QXVxt*5c<Zsb2Tq|tzT<Z3h6R*W9{^6R
zQ0PaJlUg>$`>)P|&U^BGxgCy4*6ibN8n_s!r^4^g+c~u7MJ5gFhbS4isbA<F1I$0P
z;t$^Y)FziablrkJ^&ab)yp!`|f@;lfz*FRmEom_8OEvm=?2Gq+8r4R_wW-Lf&$tdv
z>oAJ<Ok@wC@Lay6>I5EhZ98s0907|VJ;{tP$pvR=cb{|26!hE~FffgIRT5KaMf-O8
zIFv2>ZYKj&00W%pBJ2ry@8nPWs@Ey0sm1y8&t1_6Ec?MvK=F|d%W%1}q_98T4kQ)|
zokU=oe{VUbnrwi?@Rt^fzW*;AmH(>m!g=Y5SpV-XUlQokf8o)Ld29EV*8o4v|5aZp
z@Bsr7rOjq34~?w6FLd>PZ1PjvjVmmrrJny>dAAMZUG)6`*NT%V?VE-Vuz>!&*&u~2
zczzSApl&x|0X!^}m!=XR<|MQ7PJn46ly{m~@0fsE+U5tJ#Gp{_|F`?E14c(j0pBum
zBM@_%1x))Vm{5qi2p}*uI?_F?g~wBt)W9zUc>^9Rz+_0$7B&u;mPrhnAcSKo04x@S
zecIB}g(mj7lUiD^&3`~hBwcV5Dg<F4|CbO7z6N&mZfst>igblxQ~u*^Df|{L;7l>s
ztaBRR`3>4P87~Ce8=c)3zlNv%S1xj=Ry>eCHG~2^e`&Mc|Bpum7#=xAk&vL^%FmwY
z{>PX7?~8KypRVD5-?8QOGgW}EiMFrNbH%HuNpZ;=tIrC^AK!cj$dAwhLavqnw0|G*
z%LKj{3JbnHSPemulML$l&iF(A3uhllleXFPs`{CGG-w*pB>(xe4-J8kbML-}t49XF
z3eBoKzrc19@jn<z+m;G6G+58=j~`QB-L1z1W`}5iFv+tC&7H`3dSHzvluM~dX0;oj
zcaa4A<RI56FL0w<!F|ySD#sKRcWHM2*5Z^7oPjo9D=fH7mL#;I>5r>O*)dS_7q&D3
z>vveh$5qv;|6b{vMCahlN(k4$3wS7Ru>Vt)`?juU|5O~D1p55n)Q8G1EL_e&O+R{>
z@^EOf7PK{ef%yQYyX|F4`KrIXLCaH`H@r?t(s28h?@kTeg<h<kaG{Qx76SkRuH*pm
zX=piITgzvqWG%dRi2y8$yl>+HLTU>tWZOR|gZpK@v;FW^)}>iN8xCpKk_s(<GZ?V8
zZrqz@2Vv*l{rx7J7lflNIr>im=5|+<EVS<>l11C=73-D5O$Y2H5-(cdeqaoLWzdPo
z=|+qH!9U#s{L9oNG&j)`@Yf(KpdWe><n-U#zYXC3u7&<z`CfUU6~tIcZe9N|FSZHp
zN$K7FTUK@9?SI@0$9T325hy3s(>qzx#9z}+V+-3Pmsws{c<UdBH3)v#y>O89H@*{+
z^et3fan$ge&SqF2;Pz7G`p1E8SML4~MXG-#X8l|Ha#C4jVWas5-vSO<X1&4tdm@lQ
zf!u%mxHg*53(+prHsBbmhiqjVt;WznPj!$aAf5~K{Cf-KCH*sgZQyWq!bBDp9tZye
zdb%;UV5fSQ=1)BS`#`s)|7U^q_fPoq`ahSW|E&xBZ<zCc=nXEP*<Yp@n*C)0z>mSY
z!0pDK^>rqme`1rn#>^EL828skd+o0q=;B{LzP~Yte;oP$`vAC<v(VGi|I65285I?k
zze#n*mYsb^=)pnF3*krJmu&`sA}zxnAOSTDMu`DjIbzuwcA;hbV+%!J#1{Xx{eKhy
z=;Hrao&LXx46JKuYkMHpw?7GWrB3edk=cB;<FW2jr!hWPP~_lp42spRP}b_j?oq7S
zoOhsKtflpcY`mvD+D?KPY)quyJKBcEM0aGbb%<d`A}yQ-5gm#NAGp|6VMe~cf+MvR
z$s}aG?qzc8A?&i(I}WLmt9do($$^l*fi*fB=$FOctfy79g2vHqOHG43H`Y7kUfXxV
zr*r8_KaZe;VPv5(g{}Ivc7Y|nt`?<AD?r@8N(gMJj}Jtfe3O65LP0@c>q2;(j`IVQ
zQd9d*z%VoW^l!V^7(HU6ZtJ)P{#D^n|7b7~$&U(r1jyvWr1ZUpjk@p<t1w%&X0rq$
zyAI75ynQNjs681zireusgqvFev5P7Pv6w?W8A4|B;cmJ_H{{WW>Vn?mzJ;dX$%ny2
z2z+!nxw~l*h$2iKsa%rb3nnP@HF&4F5EBY|-A?Rkx{jUEEk&#t@6TC5)$`xa-;ub5
zp;*tKf={Q3>zUB_;<5D=GnHEG0C5aV#1S302o-98Mcwv%3r;kF2M0pbjnA75l8*=r
zU~Dtod2q&~)Zp6I$zMp~AgoD$uF*a`<YaIm0Gawbh&HdN6v*LEBOtBwWhjXYboFFe
z$M`HJoyHOd{}pV;JE!l2uLTTeJ5?)xL_V-bz<gJiS7&&p_p;2-F_ijNfl<rwFNG2B
zr%lZoSB1{;?<27|)eYFa`yuh#g+06>rf>V3hV4|S99NDsuyfH!(@&dh!YeEMtHfWD
zPe%h?UKSFP8swpq%{%CMJ~_=6So2kYV4L13@qy=KU~uG&a}4~s?=SK8zAO%{0$8cJ
z!DIyww_8~&cG^S)VSBCvlu{e(g||XwmeH{qC|Gq5*B~C^q62=BPVh|?Wn9pF_4Si2
zrow?OK#DL>JQpPjtE$;T22px9+<$U%$yr$g4WUo%m9?^c7s-R4{Ha3dR%;S16uQvt
zj+-{@TeO0uUuHumzVaVA>9|x*^hAkO#G^&fh*7cmr?+1bb$Jmf8*K*JJi#M(Y?g2T
zjMaBiu%gL!EB};8EwUdpr{Y~)B?=uX<QJ^n3Kf}V<K!l!Ii#iDhI|lJ+I})|2ev;V
zXP=I(GpiuvhMea=YgBh!E5tYsSyYw#mZ#Uuq620btONmF2U1EyTk6|d%t^EhSM>3*
zNUJv{?yII@3o~5;P2t%x!vP~-UsnDBkl|O7K_Lsfq6Ogn#yZjM5od}7`r>irOzECM
zRqV}$Q#qfL5R(S0g<IZR-e?|y5*umHS19=Egm1anR#MX{E{(<pc8SE4-Z+EJmnl)b
zbvb}tgJS1Qz`?AJKv=*y#$oHciv!MZ)ua3N6T0Pj&TIJNnDX8;9)smk@6|J+P0qEe
z$O8PXobB3A@3E<4sl#gUsonG~+F`+=nkG$pFjxzI#%lMeOn44MC_}eWTf@R}KZk~Q
zf-U&BMI;qm#&p1bDq@jRgf1`Jo>Jpoez2gd%@@27?BILG_RClNcuft$u5z%w9_U76
zKq~<|#Jalt(KfA`+)gFAaufY%!ywAV{IDt{OJ&$|1Cb5L1fL^~nN`3_JKz+4A##Jc
z#AHdkcinzEAAFXhMEOlh)SfH)9t#73n92&0RpB1YvTo7aP5jS0_y=!Pw0c3tDvsr)
zw%EUtiU=;<n3lBpV5*Zgb&v{8kI%>{?K3I=Y_6{3!%OomAAYi9>=*cu7GQ~?=|??`
z-aPnCHP~T5)A_Rk&brd&wcIOW+`~Gd`l;nL#Pe|dm71dlpfJSQ>#$a#_5(Gfw~`zx
zoml;B?I`903lO>FI(OdW@Fg3S&kWe)8jX!!67~39YG&%f0Fk;ax#T4PW|PB6J7Nx>
z;_pLi!4CBgq<sbM0KAu0_jDmn+veQ4(%du~1jFSBt<W*(@t#f_97gI*95KR7s(>7W
z<cEV|O1;=AW#9}>MuLC*84}4~$;ujN6_Z-PO5oC~3@&G3c0Xo2N00O+yTY8!c&{Q?
zq=>FDdh6j-^rz*BO%s^X3UwCl5ef&#<+06)5JLDu*2tsfG?o>+44~^hRL06xY58_?
zXQ|rwDNNfGQ;3FK>%!;W$IWn@lrvuWY4xJz=eMgaYF|WJeZ%%(`Zg<9eOq&gL9ZQ~
zKNa)VwUmG@jybn#;ORN1#9gWLyYWeONI(qP#d>(`7{jvbQ0@ycV)`sTrGsaD1KBd_
zTi3$W9dRWE0hqEsoHr>U!MG`v=x;3f?zy8ZBebQ2iUi!0&JP&_gbUKHRdF)-4Pt5D
zVzm~xN@zrLRYBdqX&O|Jrq7_};S!I!yTCj2GQx43oWOE&Y{iMKA3@d(kmYsRyRofv
zk$6NshtzyrHL91$qvrZ(=I()Zt~36rjEG#tgqnWA<UTy+FcKQ8ZqlMn`>Q-%G2#al
zvIn!7z^}&1aXCl&-xoGM$T}`|VX$Q_Qr@~$AcHH@PuK8ZOwD6OXrLA?FCASAM@80i
zIj^zS%!TfCr{qNtaZ=HsovUVS`n__RUq{BK#*%DXirE<lno07Ln^rODnMng^B@N=|
z6vmM|;3?AXpxTg6RT_ph_rv*jr~$*8mm-8Z>t+2alK(7s?;S*)Q`+E;k;Zq&m#`aU
z!9!8Xz-;qEj*qF5S3M{SKz|aG!AV-zQEnnD90i71V?exwBi8k8Mk^XCc$ooYy~D%|
zAy5-bj)1C@>!0fb*<wS$MW5g>`Fb@*?sR{iwkV~#@<1Keaq3)Wm9rrvwxiU{1tObP
zuCQ{=z>#V-pQxOeI&Ae4pUXmglGiX#N@5Vz`w(`L&F>gq34KhRzSHPiH~+MsSv9lw
zU>Lj2I^)G8m5>3+mJ3O|zeQS`ee${he4b6&{TZ^FbtQ3f96l~AU1-GaU`?#SN7yCX
zZp(Fi!e+A06fSb5FPxnZIpf{d7~`MWTVwET;4{s{H(Ls3DM4lE8@&AkHMc$&BuTAg
zh)qn~_QD38&+2c)&FI)7=t~*RAx%$d^daimTIHyT2QQw`zUtyv4XhQIkXTIDsFeb4
zNb-Xd4%X7k<ANdP=O}HPs_08Zxj@`yTD?^Gr8DIx0)k#zTDtOD_xSzPZmT_^{zIp-
z=JB=K(Z>ct^~QBTg17-WvoZFm?=Bk!swyu>pS9m^`M8khp+!n_B{p4>H}MviBN1mx
zM)rmNU3#7jMwXi24$&{MB4Z~G6+)g+YQ;sX_gIe{v2m5{VERGE88416$=Uua0J|28
z!dMgss|mXwv^%>bj`z}$-}c}UiU^DP_hzoriw7i5&#RA*amTU(wCLo(ejZ5{=(|kk
zy*9Q4;gE5o;o(aPteN4QEg6egRKZr;iUlz=@ty0gp&)WcoqibSqFb@JDMk%WlX!a4
zre@_Fxo!Ps4<eyL^Sy?@Zf=!k>Ct_l^{u(R{(NiqBM%eu>V6rWtFY@8NbX4GYJ%*(
zpF%w+!)d{*s@!S@Aonf8?P;6mz2Dt*z9VjJ)NTK6`0bC8#ZP~vj(@|^sVoNatZG{&
ze-k2`pJ*JJD}I;BUfvX7g=eL0S2FjL&Z8PL4bRJ<<CSP^?3n(wMP<zNu>;|=n;`@V
zxI&S6M`FK8qJ7#rXKzK*^|}=G&6`H*z7HAtI(WY$upSni`75>^=^Jrgoi8oz)-FR<
z!b{(#uS?tkrk__h*DLVghoxPyyeik7cyweY`&e(_b^b?T&>(H}tA!b_ByL~hWz)-|
zz?e0ew{rLVVi|l=qV|5Y{k*nUmVLH3*vX{beWyg9IW9qq$EBjJ*iT|Jc023~@j(aT
z*)uq&#QPzSaeALtzoUdO$8jSo%4QeY-$N`5wcQR?nc`oMu5Yq8e+Yc$aD6rMi6T+~
zZ<742`a`vA_${B5M|T1Q=wyMLhD#RYe<SQo?0at15y$4wPdSPZVRp_TEt8j-wv0>5
z(`w#Ly<*)Pxyh2H5DHrQXq;b>sqsAp43D_tS=cr*qSLCDT2115&UwdSWuTy{CMsAj
z6?1?x+?x`4&0h9>c<s`DP3T&$C(~4I-kCosA-~XRpfTlb@}>0ySy+YiZh71_K5*8c
zc)29%OW%)E_iOrR)|Zym^|E_BDVAIDkH)$Ro&+jn4rJtA?*#8XdYVo3G_*<8A@C_?
zBC6Br;M|D!k;@-}FZQ;`It_xYS50rti#P`6T{9iEg+&pj_m%VTF|<#!u+`$5Wh<+U
zZ~oxNeoo}AWUqA0evur9YDMpO4nZo3{-svgzx`&}E~o#h&vNZYrKZf$%dS1@=<$O*
z#;S!%$6~znepA`g&7bSYTp4<3i|qB3wKe+CoE3$=ZCVa<wiWA}JV*$1`=QZ$34Bi<
zls00ir&heGnmXBA%ffnCEu@?fc<mN4bt;7Ibisq=7QFb^XPxCJXFSJEe@ee7>W}94
zLZZ+4)eFu;<D@ilwzZZ@#j80fFszbqf~P`mAp<syCIZ{Q%c_3357u4c)Nr!WddSnM
zXOBW0MgpZTEAiOXwVV%)hkOrmwLqTU#JEba*E1`TSq1HwoYd0s%}ERXE_9ikdu9HN
zEsEg5c7uja@kiVMbwsd{8i#EN$V}p$!c=l+{myu<B4)OVRq{rwM?vTLc(x<qm&&te
z&vY~I0OysjUuRl%@oE`b4-4B(GLaC^v^a4To{n(Bf=tQV^CK$<q10q?ZU$+A9(TK9
zC>{8j^ccd)+o#9B?|62!S*i$e3R#%xlXCSv>0bdQ^(yDv&Hv0*yz{6|%|E@D*-WaJ
z5<r>~Dl<u+kTV{0^PAyb?%J+mRu9NZd_~e;DpmUEWk|ns3l3`f2puoS7)Ajtjm)h3
z=H_RURywi%ae6cRwHw*Wy@9uzI)zX(`H#!5uPM9li^;y~Ozg%ego^wkSEf~-$Q^;5
z{D5}#hyW$E_WaAFjoWMJFRjkJZFNeCiei|eXPPShEn=GUq-}a!A_pc#hD~9RWD>VN
znRuD|JS1g*$IutD9%ftJJM8{IzwwLxVxk5E(e^iY7v@E0@^SC)u!xhTlQt=>Oj2Y#
zBE<393l+pSak_PJStf=7j-aM_g@=MCdNZFt9`0TKP2DuKzIFV~SK*Uu>o)!l%H#Wc
z+Wo0?QM70~UEO=4Z2a4-egq`%%|OKoy-A^A&j)i)<@o#c4W2X$C^u5{#e$TmD^;ea
z6j%<z(uZq))Nb<mfz~^|R2}n`O{KjZ-6wHp(e`!jjD`<9X`^<vd|6kV)$*>a+|@GL
z;_*`=?B-r1QvWxduA@%y=_B)?Gt2&SJL&z0SJly9BgliYMqDlL&jeW03?CK*KZ01I
z7+v2N-=caeEqXacab`eZ(;^nz6IEi7>3CD=ST*ZwT^OJHds~YfbbR^uH=N;>hYNf(
zr_TcKD4U??%2!DLI3AXKt;^@2t4zA{`ONUlI)qEVy9CJw?NfQ6*YaCv-h;B+8+UfS
ziuUo34GaB95G?UM-C%<jMFx=-UkOr1i_ABXtY9r8TC51iM~hO6mIzviY}l2XDbB>&
z#Eso~YMtGAIbNKNdD?g(xHXDf<6&Egwc3Nm7hY($Hd5~*X;ZzS_u@`+CHnX8AXjo!
zTd`?gOP0J|M*+Vj9BN&jkP9Zt+(<2n&zB0@N<Vt9^=5TQc3!|dvn$^f)|*_7ybB~l
z+I%shFR7Ro<h^C`by2kmPnLPyqgG3`c$hJ}o?A04=)n^iis*hd)8apW=js5vx3P%b
zA8be=s*jPe%%e7gHcV~ZB7J-KzTTjNWmt4Q+nANLm84fKJSyp8FPEfqC~l4MJ){#$
zJMpcpz2cfb1C+^~p##;}zkLEiWMLg`C|LV5oX$$uYEOo*e|IzR5)`>DR9q;KGT$%i
z9fYmye(@!J;qm?ZP3cjd3w?c+bGy%TI^<PPN16>qJs)JC0vVOA#&-o31bOP?9KI0T
zC@s!RA}c=-Oe->WUgpTuQG<vllIAJMDgFg46`IW)A7BCd6vQ-Lcc%~IXCzS%KN7tU
zN8QCN+9@(o{Q+>or;w4K$=q9HKF<S%i0|qhi(5(Wsw3}!eT-7xTYI=ONd0zQ2uPGr
z_J7EGtEjlTZd)_~0!eUp3U_xWxI-Yg6_ViYPH+ew+}+*XEy3Mgg1bXiaVp<`b~}6T
z`=8V9!+E-QzEsUswN`6uu0F@;qmMD?(tWc5-qY{6DlXfkH5y7Z2@6-<z>H;{ATXnx
z?7M<TpVn6Z+1PR!lCHJ81+>SP#!IvLs`ppyZ!#N})*<rJEE3gn+<=A>GcgWmpKfu#
z=lUpi4{!SPwLk8y^VIAe(QkgvnWQhd@JZI=4atN*NK4*)d~@O!aiidIUk&#pZGtr6
zu%mZ-C1viY7|JL=Fm$Ge8{Q0@&F&uXxXO;x0=QxEHG*7E|5SHe%cZPTC3;n|><;j}
zkbaYBltv}32BRSzEu%1<5alk6id$>38f?VU5z_=vcxM>|#m15<q_Td5eVrl_IWWyD
zDS$gbu@!T?F}egCzPTghRj2y3)`)UtCV7*rMzoX!UkOH2@bpE;5fXaa-_|%V-{tFW
zdW*K^<$~Engd<PShd8{=!CDh|jWn;{KYfUc9#7xc$?A2**&_R`EBNOapoUpk-qwwf
z0~WP?gQ5AZ3fzFg!t9B9^={<iejR*y7|{CuLt4Ox{O7F=V7<LqS-^`t{QcQP;4B{C
zwj_bHE2QC-@zZ7Zec4+(FQgAxF{mGg=45vV?i+^YL72P`h@ag-2%y*lIKTzT9TFK&
zXrPy7f_0Qiz{Ekkea_Se5+=W%bi~a891o|n?S}_Hqu(_lrMw>G=g8lH@5KXfjLN*$
zn{o;}v41QK?F8M9YENs5QcN|1%6{C)K&%me7MP}&|9aW6I-UK&gfIBPDH~PvlGE?$
zu_YtbU+}2r*R<iR5kurPAj~xpl|9$!uN!v4FAdM@Zk)LRp-141_XHUUO<h~sJqmHa
zM9*By&(s_bqIoA(+{QO-h)zxn=^bgMktQ8&pfG*BiS>|e1A0cC4syj<T%M{zh#L=|
zb8tzrrVun%G3M#_<1eqJBUnxP;1uv?5R}d?5`oHG#EaK$9jt^5C}n=7g^NqK%PB(5
z&sJO)DWzxCbs`#m!Em)AM4d&(_Z_XqehPgh{x%M~)&zADB6*akvIxxilW?`lHU$Xi
zD&jR37e6K*zEUt9urnWI^xjPbPE|(j(>Rx6T)7dV?)v4O@m@P9;LqirYpQX*XJ~LZ
zjxabIBxMi+Bv<cI2!WxM#)lscxSJ`st$)Fv>GS7nyQbka=u2rBakL0dVLuRNnN;oX
z3}18&8kLF*2n7w(Ad7`s9^~j2FL$CGPB$Y|G#1C*b&t{t`d}?noo(+Kqo#XBj(>@i
z*QS$sE#zwB6WH2VZ8=BYUj+Ik`fYgGB|7E$gBr${y!4P>y<()c#FbdN%<6%@LlYFn
zpC6rYk+POBZRU??`GYH8W+n5X?%oScKN2FahoNM%j_Oe*+T~tTzy14jM7~v$(ek1Q
z`OTW79-VT=>koNc$JkU5g)0ef3`!tEZp6_zDU>0v4*a|d;Y{kd?k1MuN5JBA@?VT)
zo*yFmM&oL9*Q=lxj7gHVg{XPg$q+t1PF`>-^ft5Q0fG?HuMcYPWM|7-x}{Prh`5$|
zF;0^Xy{_(vU%~?RMHdj&+V>2~M{1TagDm-7D{)NF*-#uj&0)OT2^l-8n2CB;P<O~G
zXL^cp4aIm&?BEl&#vm-Yzi~#1xjzO%0p&5vqxJe*$Gg*o!B-H%F#)uCHyllDUp>u}
zIv!O^ugBkr{Zh!IN`%m>dFwN%M-+;VKAqWHcNMaSQCC+nEpo^=hD`9T*>y&HvhL=a
zeq!cQ<UTMvc9_+lOxZ|A*Tjx?-j1<AB-xFC6;Gp`9IcD(1K$dRvB7V3J-V^JS^(;H
zN53Ib-S3_iw~awJX-E63I!{MjliYx@d>LNHck3bd;-NSrU*8SGLb(}+{1Bn*dWcC&
zGO9PA!k3xH8RE`(pEVVZ(9*x!OvC7zOm;!r6~Fm%+4q<OIsAMQk*7!}{=BfS<)@di
z*ABnaS{%}|WFNeXOrF=C;-c$(<BrxZ{hU)AUh;MM$lbdWoWP5^Y!u{2x>g>FtjNI|
z`V?6!Inh=5XbMi&x|^4>UQZAD@<e5By7*RqMdS6s-FC!HPQz%)9S*q!)YT<<tNm_R
z6wiCoR-&U`6tvpDqvv#Y?eUfP1w9n9_%={Thio^(zT;&bJ<utG7kA%m=P-*>@90mk
zZ=zDqH{N=%Pshs@3ej)o9;(vlJcSJ0#&^H?<AOSCX{I`=X*>yhSaRC<5wZqp;nsDC
zhKgS0fI7f{F>rbfw<oUBp246H_d~wTDmS&T1S^XP7=!Uy^@DcarnUFupx1kn{Se#e
zXnW^V_~u;U6n+c5ifF*6pG$GUp{QGRFO-q?+!dI%Xzt8(qT!u@4G>6ZjATJkP+If$
zP~;;-oM``ZaUfHTUAz<$vYdU>EbADac^>tCWByVLuT&|_8FnO9OnV{%&p3iO2ijfo
zXKPj1K7$C6A!(yo))7S=+*(EE&cU}3+7K?0NTyIpVA5Ce#tKyGsKbw79Q}=EqDe5Y
zLrYxLdK9?m9Yhs_BoR}knk}=+0RxFq{672S6DHz;Pqj06GwYMjS_%|+x^gi+3-bq8
z+PlkR>~%6`xs67D<$I6h#S+xPvS1=1l&r#x`dg(u$CUyUkZdTU-yP8K&B=VWYp6@_
zC>isR+p|hEcAeDFiyJf5SXVIX1u46e8(UnjJqZB7q>k$AG<y(>r!eKs4pL}81}}ep
zDcpHPAGQp~B7a4?7{5-4d8(=+!P^&+_#l9Yufnohy~*Gbb9W*n=Eo>Idb;}|yEJ~_
zDxrc%d53TI{O(gM#NE=DW##wH#;2k#z*eAHl2Xqni#BKkoFY=iLU9G0+^&T4I584|
zRBLs5f1vhI_o!6D3nQdslM${a5)o-ctL}VzhQ$22q)kMSRlpc~BmIU|a1Xp4W^0?}
zu5~=z0YLN9VXWSRV{TXY-mMEJ2TOb{!9Tw^4r-D-;`PYI^U#(wKlu}KpX6<uE8uUl
z3Hn|?gWYc%WBAOgS#PJbCdYlhKE2w>^<y$iYWo|pudpxD6H~_a%2SuFF4NPqx*j&z
z<XhoTPx@v|6|>D%_icR3V>eMo>l#j{XQL)8rX+8z39K(Kg-ZzqiRT<@=NZz@?qb!>
zvyg^)5qy*#e)-GPlRxC}T35Jk;^?v)<XrITjfqk<VV)1TP)|L$ewyV?)%=zvpf+wd
zl}Pq_=n10rk&m23W1HYa>QOWO@-w0mK`C5=p(Tp*J@+EVWrZS$Xj^yCW3>tZ^ZH1R
z125v=^Ba@RAy0&aWQs&{=1c5Nw;qwuD}uX68p>Cwk}-W|r2XbML1vq4&r?DEFCi~1
z?Lp$Ly`4AhI6J^)o{=1(TI}qK4ga<B?<adtDZ&Mnz1`jK1ZbQslKjE=+Pp5OL}>yK
z-{n`mruC3`MyvL=ww_UIsAVfcGikCi_feDS%Z=Ad5&88L`lhq%?Qc)9ozY_4YU-1c
zRf>c{Dzhv4P%O6BVcA~8$;@>xMBP3_OG+DCHQi>+vL1wQPz$e(NzdSV#W9=CW<H{~
za}LKQ`hAd#`O(#>_PxS{;PjadksB2$pj^Mu0R0%({SR+sSlBsM5<=E$-+Vow&81~=
zOMGSsN$|k%;h@}p?<a3&bXK^TlneXSwl#Q2?AgiVcPi(p$UG56Adb;C$WQ?h>%b;k
zxaRk24CX;K`GX9OQbv@x93nuFVdBgw%M;6gr$e}m&|b>vWAcys*v&Q(Dg1&`J`$)W
zQ`HjQDCwPdJ_T8adaE?9r@Vm^HcVk-RdnNjONe^#0|B|G<$G35JU#8OUrZFRYVZKw
zpDq1ff9eRL<L&NZ%Om_ciOxn|7pQ#6fwylCswJ{RLk9~d>i-^AR&~AK)sOw@S``l*
z7~4*QrU^$Tjdt*V-k%OnBLyNFR~hsUIvw%0`Ozq0x%I>P2;hM-7q`c<qGX=6Gsxki
z#6KwuB<zt$_ANwdy$l{`bvrQJlkf!x7!x`lu6(GB%Iv$<4hBw=p7qdi0@#QnAiRLy
z7zAVEp8msGdfXS~jN$q0!R|r75iz|oWbZ$WJrR?_!P0|#6MhBWF#V<S-Q*0_T+cDC
zOnxlgj3x{lkjWThCVd7W(;bN`UY4tt>{$o7^q5=DoZ^`FxPXTF`TRE~h%MuK(UVyK
zRh1nbFP!krs-BsH>`&jDX#|TWBo76k0*z>Cl5T#UyLDu&JT0QI`^^Ozo-rf(W*fki
z#S8h%{yVGMt9T~MLY>{UqRH<-n!DsOPh@`}OJV7HN&#G2REsMo`pI0=<RiMh+A3FT
zQTX7;JJ~aU7qXpF^?Nx@bAR8-jvz^J!e+y!t*G&n=9-z|C=KDDhTIzK%d0^@<$+wX
z16`Ux-$mo)^?^*(QrIJTp*{=ov(cqtV<pd3_2cu2pONcp2vUY+TyhTgVAq9d-Aoge
zPTn10uE@UW^O2Cr>2P;APu7v9Pj-WAf8^rra0*mG--%N@A_Njzbl;}=<9AU<S6Ru1
z0jo)l?(47CzDO<TE)al8d@$nYHZN^LK*J59nQH-wn`Ph?EA9=*4P^_SZYsAp+Vum^
zcJak<j0Ra3XsK%AEQW>bt9xPI)5lUkb_SWJPMkZh_?Z{EC9lntmmVp}&xzzgk?j{I
z5%R?`9{te*xdGj-VdWWYttQkh^oxxh?KB()FVx4$j1LziO*_rT8R5Xd`BmjSGNrhr
z>78HC4_A;El}EP8EyU(iPZQAIb}Vx}y)Z<mOL=V2<qBw<XAVdfz(N(gejnmiArmf>
z*w7v64jAp0?+iY%E1}AehBuPhBK06r%ebNFf=o&g@!LI08Yhi8@jPR<MOfC$dtr(a
zsXI~Z27AtKJEyU4IcMKe!mOPd=|fQ8S~VQ=!^~!*d}^OKx9@g%i#z9siw-qi#J@H$
zC%c;9W<y;22G_H90rEJsz*la+w~#t=_#>v5UbhKCEzaEbxSUw7Hf60Ko<EOyz)?<#
z*BcfsR^Zcf%R709KNrHtl*J(@BXqlXOyGef>g3j9&DSy-ev93!r%hlF%v1Tn!0u}u
z3>*H!;lTsrhCA7tb>tI_x%pOb*an3kD!>~?s&5Z>6*wZ@#F;)YLEKd@cI5}~4p0_G
zZ${l5CX9fYRwl?fnyE1w)G;TxMSd6E4-NH?%lFJ-xHIB(sxFDY{V6}7x+6fOE2y5n
zc(~0*6D;x?)I{1`B;JK7F5Qh%_-g4>a~Lzbz1*1iEVxi}LKtQdpXlb}sFcC+7#Xnp
z7D}T-)I&H#tfewQc0O#vcssV&9R}mbcm3leJKo;5G{RcX{Ny}C6ik{vyPuL{Zegdx
zyiMqYAIYQ{e`8Sbws{5Ok-cB{Ve9KZHJ2Rv8;xIx%N~2)f$tV;$t}AdPtM`8&Bk8S
z=df)2rEK1w!7KOY@oWx<&Umfu+;6`I8~?%6eCiroXSiH$;z*n@TAZ5&x_MdcfiB-B
zb)knNd(FgFi-7lwOkV%UbadUqo(h`%Ii;BZw)t{g6{iXxZfL9r{HYu`vSTlDQTH7e
zbV3*Q(+fHh&zzFW9Bi`z!U?07>`_h>Zm+%bs5@Od!gIjE1W}um^_oyF-0wK_`X4U#
zVxMO=PU$>u_y~17ba6e8gV2E0sM2A;<{w-28?9;se(fLaz<hXLI)vE1P3USpn2<1+
zyJ;2*VMQ=muAarzD~2Xe*>tc%>4%?SD@yoqLJ^w*$#Y5pn=Kwj&PMh6cgp-pCwy72
zTZaSLOG3-rF8~T8z(EMUzX3H&83xazAUj+%IK=Rmgml9K>ZfQb<8|3aAqQ^LTOQn>
z4*dniw`_|{VM1y#(APihkqH~Wg`r{YDeFJx?5xy9&({C)u_}vE<|N%T#uYw0K)*eg
zy9__T%=9G{rJ9h$WJO&@(6VMcsu3vV8P=+Z#*&d_u=9wwh8+Dx+AyqDvdJMRf?&@M
z2|v_il!ZOz_7v%sgQw_XFBJdTS3=O${Cdt+U7U4(b<ApBvO{Cu^a*H5ZmGq@Z}M0m
zJ@v)%;6nU%0@F005lUA$2wtuWn<z-q*hxCaiv;cRlTh&Z>CjM1ar+Nv@~+}bMI@0Y
z;2*%EA9W9mHjB<;yFBD4%SP=51y%VF_s?R6?g1E={l4D@iT-NOc7cyA=WtDSD>PY>
zHBDuATP<XbM|Z463htkt3LlX$AYSnMoBVloUr8*9x*^JDx5)ff&7T;(d_E*Gq6B$~
z!^J}9${{zMI3$&WH#4!iLso14$$Kw*R5Y%%4_5O!E-NmOC?A*N<kHF(Wda+|$5eYc
zn1k1eyB-uZGr~+RazW$>F_WDSOrr%*|B)H5;_^;;9Id83I*V3vt$Oe6OIGCR658q8
zVY2=)^BLaI=&=4WL41<Hdd)#W(5rv<FP|u3cC2}Q0n0fBu}GBxa?&&=Yh%X{gvBGh
zCl+fN*5->cn`xdmiXp~5T|RDw4q|4`Pya|`^U1u67rGI@#vMEGs$!IfTL^{`up4lr
z>7#BwXtf)|&gh^FG>Cu!!jWpQCZoXqdPhTr&;~o<9vyjhu7i7%)whLwGm~TQmJ{te
zL?v#$E>Eh}F}e7{UR{Nnh(~yyn^!n9-I?85-0TqAw<mX$C!@qSqn{Ct2R7Yb&hgM2
z;Bw>Vr*8fr%ka|hyklyxZ2Hpf#U%Vljl2+8Z1nrprv&TW)1G+8YqQxlMWz8G?Z+Js
z&(C*Ato*rFc8wMXu*xPEi_Nv6j_~rK=Rej;PV-Q@OUC6^VtSy9fVDHavj)SWj~fW)
zprq4$eI22GGg54<3vhWSZD%}fB7Dipe)vm%H2^!Jcq{xsle|<X;Fw?{D^hcnD>wmr
z-ScQSMu#$!J5ldil*g&pqSt0mjZ3C<Fhtyv&s02l)_zO3QD}P9ecmGfI#$J?aS4%x
z3+^*9tjIvor0_s!HB&(Hil0Yu{7Ci6HNJHPzw@_B{g=d0v0ddX>`om7V=qmnjKHb8
z<GS`|!)fX4?eVMUem-ml;1h!Je(Wl7MKbO)U%3tDnqbEqP7MXPV#TrpyfZug6{Hhs
z9cp-Qwe$E$`!PLBMP4d>4&}^}?Xo&k@GI5H?u0PjOnXr!F8J_BlVnc`L^nDhi3*+?
zU*m5!*ESKsRDrEILC%&Y`L2iB+Hq~~B00Rvph@mp@$jI|ll9a3bQLek=k<%P3lS$a
zYRZ$-YK`^u=+}Mg|InbzlwY0q-hY%FZHh_xGq1f?&aNt}>p5`d09~3&{OGu<JW_4!
z0}6Git`k;2I6}EVD4!5V9!1G)qqD2sw~iPP5svVurU398^eRh8I49Hfr`n8Od4A=L
z&aw;j|B|ex#vTnqdwobwy*%<ox2VnDy?a>P)tcvFY9#Q6NbxRQ$m70#ei*Fx<0wI^
z1tBx0&7l68H|!UAHEI}9Szg9t1QLWF_T%n<#Kg8s(NIfiNx`8>s)afEGTvcg8ICAj
z1AH~wp@7b@!_z>jh~%v(x7Wz;w$#kX4G$7M6eH3<+Js(WJ!NgV-~7u7<}>cT-`PX8
z$Yiw{`*bs(c_M%_b8;4>G=%eYJrBg--`?EZa2Xf$FAt{@k^#^#e!?Z-J3Qg{{eUB6
zt=-X*=9Ky?h$hR&L3jvXO}wdV@<W!We9eGz7d=55@=L5OcbrDZZ2|9Hz^TP0iMels
zYV==`WAojMe|?#z(Ly1`dHrIocYEO`C26hrro|2js}1R5;+_+OH%Tl1r5|&PqL~9d
znch!bm5R@d{Vf;knJthcS*pA$D+RKH@pv2&aH_~tYkO|b?h7N1NZ7dCzcKKPzxdms
zV1^gO2YKrC8~}{_Hx;-#T$T|~Ug}jzTD2hE_eW~>T^&gw--ByDSWy(bX~1p6w=TWE
zq-RXIVa8wx&SDYM%@PEV`zngf7~M3_t^HW~Iy31(Emja+Q%#q%=JFmir&sQ3f>9=w
z#X<w<k!ln&S$jV!p1dNMG2flb-jseM*Jo;u7(a(I)kZmKE~3_!$@$(lq6xA(&*aJk
zTW*jMm>8Of?UwPV=?#|THAOl{=oaaYLi3r>AdD#V(+x)QDbB|2RtA1=hIFFnVko@R
zu}d6nv98%>Qc#b$cNXVqv`{U!JqCQN{cUzLB0d3iO+;tMBuAaDPwdx9)MUOVavd)-
zFda|^nBQv=2c0Z#fhGuz7SV^p*J1aQxKRMWJ<~KE@LE}-ak1#Z9gaYQL|EmCzVO6D
zWaq`Ec+a&_Za{HtK0tiwF}wQ8Bsu}7DRB7F4E@&LZEc3jb{Zcw+Dir>L9IMv9lrC<
z-(0ph6pgp4x%U}+_v@F^0-yT#G=5=y2diK9dD5&iLw3W>sQdaiNKb8@vr6$+az7yK
zTwo~WXG`RG|1Lmz3eCHE5&;g6A|7ndU&>U(%#wEIupQ%JKv`y`nyV{K*G~qb<zA<W
zY}U=i&b*%vPF729g#Je?A@n8z99LRjN`Ka(q(x<mQy|Z@As9md#RT5p%5MFEG`Gav
zXt_>;gZ1+2(F=rXVQ3>0h6l;h*Ne@^3<_!;M)V}W(mo05o$j!HHWPIs#sbB~l8ebF
z!`Sv<0QEx7mj_=<`)Atglhk4E0S7#EbQS$XvYV9W`6hj#Z4Ghs<maehq=vdOTF$9Y
zynmz6vTBS1JDq4h?|AAM<h`03tOo+-5ccZLgir1SieI(+ebjP(0;dMImgqQg%j*<~
zR+(cowm8?u`;I4Ih6$k+1*l9>YDQT(8BFXvHbc3Hj`iCO&XV2Ja$l02as`LAase;^
zHuMzRBNRaCVR+7}FH)+MvR|d)d=E{H1}x3i^0wTsePbQL1!)MZpNG*~178!q1z)c>
z(v$eFe_)&lxG(i2BNn3V37OyJyatz~0BVlTmT6xXLYxS%Vyb^4iH(GijZjv2y1c~^
z1ooeuF&%@%vKAzMHF4=Iq~tjdgk4!ysJFkBh0?Pf_Mi794rVXQmjqf7GJm41T*_<o
zlx}64R<N2nYzk1zHVpKsJe3Ql3HWNpM<4HnD%3DH?{_z$?n5yk!WV0~3}E^SR(w2q
zFj|r8c=(pq5tXb=Np`P*(d1nVV@KQ`w&Euq(y3-Gok)K+;n@-yAyTfGn;tlw%w})L
z1lzQD>s5bsFK?wgx^TGighaK(*s1hK!N0hehQ#yHNWsJNt=MbrN5Y59%Db-WcmpQJ
zlm3OuX(gMqHOSj&>>IRc8;!#2%ZIC(W@<WTni`*3VVPtHwQ`BI0$TMD&1%IS{8n~H
zH+O`|06&qJ)w(VX;?Q06FNyWK&O?{7%3IshsJr2^{nN`^s8-YA>r2a6^cM2!b=}&b
zhZH041fv6C*mkc%x2zwP;;C-d8c(MTUhn8dfS-j+I3y!cv3H18VkxeY*3mDo+qE$E
z0)63eDf9)Mu&xM2hOY}*!u&YBqaUriwk4sCq?kXMpi%?tdaxyzdgBDm1O^~dXdGZ0
z1Ap}FAI?oIJy+dGcythWPQB4m`%mG(5-p~~@LnNZ-52yq4dAWMl0tC!bXRP0RYWLt
z|7ppuNFpLxnPgqpU4*{M+@bh~bzs-V(`)%j8-DLUAYV`Tx@BH5bIRlTIqGemXH+l&
z;XgvRiyIdJL4#@V`fMav@%)R}36X1)oycdK<=)2n@T-6V9~zltYk9{8scu7{#`Ubq
z!0$@m%Og97wN{6}9LgD?M#_!l%1y_%nC#A4{58J;`+Qz=QlL!T>BD^ufRSh5XcAk0
zwcLi{R3I@MoKvayP=mhQ?{uH;ZsJQSD4?nKFbfT0{7wlZAmDF|?q{&pSgR(bQpkdu
z3k1;{WRI-I=z?=}D_mDHZJmYRN0(9W`YBrr2SYmHMNji6DQ(r$?qiVrr7JP&+|oEH
zedEfSI?=8xfOlncnV`!R0kZuU*1KJiUBD_Pdb>72xOw<=o5ZDL?j+0>_7+x&iM<Yq
zo_uj(pYf~t9CuOQxVFs(vRoY+VeK1#%)ms$n<`4mLiKZoVPD~t=V8ed6%tY!@-oE!
zk^bUKa1tO+HzNYj>>ZQ62RaLMFHoi0p&n36+>UPSCMqUVFVDzib}1N{zz-Be=v~h7
ztk;u$dC4XncM)K)Agunmj%b4<6$cI2o9pY;HxKDs4bV+_#2!Ri^_r(XxFYLUwzm?m
z4J!=y`N;rNZwPS4Q&Be2tM+lRjvTqPUKc)|a#k$JKvNZN?}?eQN)%Bw>-}>ylx#l>
zZ_JXu`Z>ZrN=D>6nvkw#jQM;$gwwoJ1n4XIJ_YMxo1}Evb7}fq3DdNcW;0oSJa(tM
z4|bCIGR%-=TeXkPKGvoa@KeVd+2G~n7D&4Ki5G<eY6TnX>W{*bb<gqUW)(<fp^Sa1
zvghgz)O?;<#2A6Q4TjSIg>IxPMtd2b8SyteClWJtmkvebPf%W7=89BYYcw~zWnKr>
z@G6m(ixZ|ldZGrjr@mQc>W7BLDzj$xD&y0LjUF)_NK{l*wC%YNo%jvc9cyZfx4K}y
z>h?~(pvi)lvw1(3VsXtFJM)T8jYCe>H<MiuW??-Dyx75{M9-n`VZo$)hO)TcSKftU
z9oK24Ok>&=ABGykX_&Fh<M64oMx>(q>*2XtOF|3Y^4AUtx%6ZNPP46k9|CjE#ula<
zhUytr8k>+FtGt;x-|QeYt}AaoK6JT+MUq)5<Wlk2W?`NFE<p!DIKOrCukGU-rsbMQ
zT8G{w?6=kR2I307K3Wl7^;biici>7%>!k>H9u<hBpe?*N{9<MD+OsnKX6V(+%&}hX
z<4QPX30JFsEs4EVWz$KyqLs_*<_=hu8MW3<B&P5rey+<QXm|i$>$Vswip2=`FS3ak
z0`uV0g%O8Gm0$YDPv3O;XEfCOXuT(&C{v7dsURt!$t#kr5(K>`iItLgdZ{_@cUhvz
zZYI8(N(kLr!(xH4oKX)cSDV;qY|nFaRaeaW*+ivYm##r|wptpW-#)_|7lUY8$GzfB
zWf`=csSv3zZ@;c)tWzxhG}Q{faIbVIFo*EP41zyO4%J_7VCVd_)Jy+`zU*fMXN_wA
z40n5><Z6NRkA+?JsB7)>SZ)j3hh-iq&6n>wF0aULE~qSS=BJu5Pjv|WHhz{<BN$I*
zYNm5-{S60yu^&v7C0e!JbLje)Eu{6ld;C`+#HaG!gKY*hKdFYZXQLJ1Ylz{O%^kyB
zjm(T3ZyhJBr{ukm5B%oyF;?(RJdI;cyiT7j`0mbhx&>7!w%h~54j1V8aH96n{}zXw
zI8=n_RSC-<%+2)itk#=cUU$56-wwvD;p^8kLS<q;d>v?R4pd#p$L8lN)eg?bmQ;vj
zr;RlBOD`kT*<Advju8E6D>B%9cOCWW99Y!<1x5G-&5w5-^jv;?I|*4}`cA2cp*ktb
zNDJG@Fk_7>osaFNo3D@C7>=}uT{f;;#1#^mRmRz<8|$iSsV6n#+vw;}jemJu&dIdU
zi*9R)`P-wVgj<on`5j`>#9)AAuDe?@mV>4L!u_+EjF?82<n)Yg-}D1l2RNf^qCQKg
zXd+#$cD!-UxCYhqR@HC05nW)<=d-TI5_+SO4Q#x3rvj=V$Mqg*s`iuF{72aDx|&`N
z2{N{mzO5NGALX0N0qb{&y=EfTeZ|#GeUZc9Ev^=T-l=ZBq|?4_Dd5_*bR3?>pnt>i
zi)W?I&kp`<Do;6e5+a&BfdGBG$7f{rmXBjN|7eo}+?~89nJV9wavWW+l;!qM%ZlTy
z6m$LsFLNlo23LNoKRvse$NCP<iHJGIminejiSW?e{TMBqiL;|;1CL7X`kU$V8!s>p
zL(9r~{1J~i#m5U7sC~97eG{XU9uOI;{r=iH#X#Z}Hx+5r($tZ~*7VOwUPaI8NjA5M
zgwf;_!)xuePrrl<8&2CASOC>ajcyvN!?6}sa#QnASZG<KL3*Y#Ffs%ReRp_U1lktd
zxATZIJP%m}1p=H+OvtqHXJ%1o$E&iaS+12u{CWp?Wkdf`6Y;-EX!Lm%6!sWefXNCn
zJFr$;WwQ3O$&UMXsETn9WrGJ(GX4JN!YP0@v|WNcPnDOd!(vGK>nEMIBPUzYCePYN
zOwWYm<cb|V>V)kd#PF>Pf;tvze-jbwu9c_OS0~}ldnY?_z6)bOZ3hT%5%)UrezjV4
zs)^g-37i!>yW%TycWkuy@#+DES9_8lML?&#$lc~VLaZe<Yi4$S26(Cwfxl5bEvk$W
zkmeGnMFOGc&SGscfNGk5U;#cTwKea%%M_iCvEEv4FQCTHaW~nDdRKO#kinL|%u_$-
z>OT3}ASWYq%(-Ih#9LJn`S5Ks!6^W9;DRtMv%0A(g?w1WZ7piIKNEaT2pXuohHH63
zfttd_ceXL5iZ+5jE#F^S`pHSmw5m~B>`2luOt08>(!;b1pcF6YDL(A+!;R)1y>mZF
zM;a}=IBvAmM@JD(4MM7aX?*uAbc2D@TGBn@&1(F~XN0c3_tgT>nE3<yq5@M|{%mis
za$w}za+WM*@0+O)#sD`?sSPH(>YcJFYPK)7bPv-yOWml9KtaewFus#nPIhZmQkhHn
zc*w!~<hRdVXu~d2<H>?wDF>4^wXZ#UB$1;rr!(`uq1wSkt6A0yL?aD6ZZsdMvc#X)
z(D$p;n@L{?`u~_!L03AB?CMNxU@HCT(})(Dmu?A#@Sd<65&=^uU6HuLn(rRrQyKnQ
zugwx^OtqA8LFmz&&ud*2Qe~J)WZ=&kSE#q=@2ZI9r9Ev4b}%PX9uZ=p8jt#i%$0S!
zWzBwQdQc^PX1!n2WA<8)$d!a$W%ThF{}g1<>FhPY>VCM{V143mM3L|ZvgDr8TGmiL
zL-Ip(>_h2395Ckmnp3;E>oQS<bxd>(l>jp_VbuOlsLgTkE(Kdfb2uu}c-!}kuZ8=2
zE2V<=Hqo8!#m|a5MZ;p>%-oD`T&dK!rtC_NJ|`ZgQ%G@Foeq!<;Cp39{w-|FYn!%+
z%g@q9aA`b+-TF%nG5?{4jRk}L)pIrVf76Zv#IPrh;|(fGc$^v@$)B2iI9v&k3oLS%
zN%G;c+S9veb=-ud!3w5m8T=zrtD%1tfz|4ALc#gwvE3$0yw^2I2=DNq_2=^wf-q4b
zCXki&*^jQ>M7MsI)u?W1rtI#n7^$>5tVyA|YEj<&6Vk_D#UjMU+-IB+NVi5{%0*&N
z{fRx#>_r?8<q1v;q&r_m#A#XrUQ87xv+IZb;yn&FY=!Q4KR3k|&liy$nE_q93W>b%
z2ORo#Xk}JMDE9N##Q<5NSb8+9cTS8TjZ~F*UMuTyBa$`95wXGSXKaD2<jKO>oWOBz
zFmx`Q%?uTj(=mOJ8<<1(&1#GhkS9C$6~CLlM5>68XUB9N?|<viLr-lKw!+5rjND7v
zSl(zQJOp2#Yr(YBtrLpG$C()vQE90y+w3BOlv>g>=&Rqly!LD$KJ=WZm0Sp+Uk&pE
zaWwrY`)#`P!rYf`G7p^5*cxQL@|J=TAJSW>7&!5ZPzMs(rhsRly7TH=-OG7bj@m7d
zR)uc$2C%U2;V=5FTC6WU&5caX@dr*$U!wLCO9=y44ZE)q-!yr5p;(wkh~wYpy9d7@
zeHM$CaHgphGpjDH*$bv}A1QajL`28k9?R7Fwp7J46zTJ+Dns8J<mH{65^=KA-4~eW
zqo-uEnIyN8r1rb3N^vln%PQ8sjZSl>i&!VO`c-ZJL}O;b<Y@%20I0g@NI$zhcHa1S
z;FmDU^a8EGgT07PA0mbjWlLJbI!S`TawwdH!aWDIax%pPR&IivvL3K3X1bIbwjv=Q
z25dXG#G`@T{DpF(6MsCO$0X2AFjS!?(9yIL<kNn3R3+xj24luKgdBj_6EbEEce^Rj
znf$OTpbFJjLyuqtiwgG3IJ3mskyLXDh!+J)#(bW_Yu2bb)66dU)#N1Sb<2v&b^K-3
zt$#LVNA|~rZUXg(-Gj%2VF8DVoB|MR6T3?XMl0VJkSW3>-~6zES<`rbhsO*P2Ei8~
zL-{N@kodaAwdS(@Y!!8Ik8UKnNzNn}l^ZWIe?%_UNhWd}!a{JJhU|wEgUW@QFZ^Rt
zL?3mW?=C8uaAuchCs5tNv0JVGp9l;aTDF>fF?eS3P0vV8#n(f9(A9>iBcRK`Bv)$S
zA0}OSh~g8-<*0*r$TNiLiaQ&ZWpthdt3Oz(&MLA|^WcfWfgtyKKPho54KUozB}yoX
zVQF`Uzp{daPx>Wnf<J9xZcxJl+isreQ_k#P&zK+oA=j8&a2GTQ55F8tVTB)A;g56z
z{o-+mB%LLA7k+Jir=4I^juL;M_b`J_F5Uk17ukKV*OAb%pQN!_NYxJ5&4%At7^#}q
zPu<JbEAoBXho{@(u2+`M;Yz_Sq_+Aitrr$B4+EU>ig@#}pixY&iBDo5wIlq_n~8*n
zRIPdprkQ5Hkm@}aGiR}!<aEi`=<b7^!HDkCvlTu-OkuqkdO0fps$1aZt)#o@4q8h?
zDZx-j$msIls_k~IT6sX|T_2DKf*4Ql<L-!zZ-qnpNU`7Eb%roGls+oPT43q?B1N)8
zVIY0TbL<un<AcdI3ZgH=6pvWagspK-o<r$1OIx-q#6=|14gPMX`NIq^fGkTjMMvQV
z#K2vd0{4YY(MFFJ22wO2?*kzTwBP)}6&E<+6i_QhQnTED!2;NB{FF@Zzc?!MGKn$v
zq_s@ad?4I!HhIgCE!}QKm*uODeC?VU1YK|RO`%NV{ED4@fn_iPJ$%HwbHLS)xoK68
zc_GY71X{eU&5(Qk)}0B0yOD9O(MoQo0&gthhbn&u1_lrBzV;FNU9&F(xki)++WoxH
z3Fk$tz+3q4+l9-QC$@Ram&i;%yF792zyb!yx(p}aCasI(^z0DzET<Y(uwn&MQ5P8A
z;J&J^DS6PF<;T<Qi_J2wyHmxsuT2Zs*c}w)UDazHXxNw=$@O-pF}GvuZx(&B4^;MW
zh3vrSQ;+4hz@q#o^fHBK`-{ch4cf~A9kkrD(JW$7My7Ew>}mIz9b?l2hQ+rWnBBdT
zFQOPAKd-Nr5R}Nm)I;wA^c3vI0ZeeNvB1CNubi}$t&GV_bmIoU>IZUN1v~1Nv4ei4
z2++BE5x0h`Xf*@*y_R?U$!w>nh~p-|MN^oO9%_V+R%i91Uf2zwmolmU_O&*KrnNXH
z&5TKWsBBDb)`ADzwIRz@`s27uiJ4Ko2mncn^#K~ss@-J6X{?81SeL67k5^nK0;R*n
zO#%x#Rmx&^f#x`SyDmT)W={{_g|Tm8O*D@5A_y}M;Wk->z~~_Q`|=I?(u-?1hcuL0
zs%r~xOzmjRnQ7IwKWpXch5DyJ)`%XRD-DG5PS=zw^lIN)P!G|oYAyS$DU4+-EFN~Z
zHkO`TEqCwkU)DIBv9i*_ISuiums3)9rV@5(TOtqC+f9ZR*ZzoDW^;e4G(Q~hgoE7a
z!||5STB!xxj>kQE>$d$iRB!K{MQ0yHP?`^^o<S(wj+HhBzx47`RX*Q`JIwvs=z#!c
z{d*^O)(->|c`UyDt0Xd)`@&95)1j*Zk`<Ku<Ebp0gW(XxFFIKyN#uJ!$Sqr4IH6Hy
zeOPSY1U>#l{f7G(MRI3<vH)=f7X4ZF4Sg4C;9v2dTy}gnis%&dA~I)KRan*)W7zAy
zTc$N(1~3%=QR?<VZ~JDLFU9tHmDh#0?f9Dngf^}JV0V2PHY(bpZ0B!ub*|}1P7qga
ztnlaU7?`Q*Na(sQ09Nbuf@`T-<Fr~zu=!$^gKd7`seI_+wf)6#dhO^?_ilS%``zrt
z`l5Sudx7X)wn(Tq{L3iK`@<py9IIfCRgq77)X<;hvl${Y8qsDu`L&_h{c)hjej;n5
zzChDD>rSs%T&*T->!GYHIy>s1@osYY<#Lg}%)$VLsTY!QldnJOre1Um&w!ZIeciPd
z-Ph+0;8moNhncohgOgK#XR253Z#q#~Uv}fJ$lh>y9((0_D_Z{S;0Aq_$4fx9$$X3)
zbT2Yr_nXSrM0!bifaBM5ozTa6Rj>Ed<HYX~JlfvzuOXhU!$onUdbEyERxiu5j*m+$
zY0&-#y*=4UR2^O)8tdt=+Tj~%3>*$r;%(+2Nu@IGytk7$4JThScSWtj#wI_}5?p{d
z(QT}kCCQ!R1~db&0`q$}+MC-6+rZbD#xW5#5GvRgZtLDEC!L0tVm{`GyD{Dl^zy#G
ztBw13<54P-_Z~D@zL{yG-Sbj6_dZjVk_0Fq9%Vtz4->>|K{oBmq{`)z3(DbP;2oik
zy9N3InG^C_KtSxnBDwcYr_4qgoQ37~l@=)W<U4xc`cx4!e#wG9oAKPIwMW^&J?|r4
z8F5gv6?#5j%uOLxi;7NAA4qW8Eqv+ztl0hHwXfDz87Cos6g}SH<xRE7Lcav|{{JjP
zFX|LJm9MjZ46R0YYJz*<PJaGEWFjCuXk`aM6e(#RaM(G~;x2E#Wg<)DobzQ9^bJwS
zits1iGvzuP_(-%;5ckru=Pc;U>q(MqxACURJT5ugzo3$^_WJCzH=dgk<0LEz_@fH#
z>s#l(lAO?Kae4~NEzoph7+BVlisA$pp~1=nKe#Q)d=X-BC0B9OVjEr+C}`-Sbz7(<
z_4~+Ysf7vupn9z*%8OZ?p>oo#{L=IBV~H|ZXx^r;E!-&s_#68YU?=7{vR0_<&MEj`
zc8vQWfmA>})OI(!uV7o>;X>$`*e%GkrMnz+1*dR#FW6XbY&3cDTayn-?_6zFGsG@q
zUQv%uFdXy}vNe6QJ6&8E*U~sIMB5n~y`}-nx?TI>(tNSu*oP+x=m%DZcwBUHT_pao
z@iJ~P19-@2J4%K|Bo|&pSRgE-Q?MOfp(y~C2Omj053!oglgr*Y4-X7Z8i_5Iw>WQO
zOvuMvZ2gEsMc6LQ**5p^riuOon+gB4(>uXEV)E@FZ}xjF-h4BxwI74%@_a-K<-6Hn
z*L8$Gr&BD!yW9NBQ|sR%=zpsLH0r%O99a0FZ(<8Ya27rBvfZ+j_4k};7N==O*yeJe
z7t10-eP|lm#I&?M_^6z%a=5%r!pZW4&3}gdYtxoyh!8eZFp{p9<LdBof_gabf&aE&
zCL3}%)5d3;U?AE{^{w-azkOG<`a=r;1zqF?7~#n$xQsb-<p=m0_mfLsjst35MD64T
zb7r5Ehr%2o1qmBljLL%ffiMv&G6onX(6{yk?t#o8g>=YB`KfgmRVuVP+1~QRw{_&}
zLpaM$>y^I!UGhzf8tq*aXY`Ha)a)!<$2S6361v!`hM<dB<`TSc2O=q`R2s6<(XFCC
z_*D1og%Lvkr`&g<!v4-I%F$pj(A`}}8Lu5>q@^t;cx0HIda?YEO-EXKK~=MWloF?&
zT{Hr8q$s(fd6=OY&ei<biK3+PXW@W%yT}XzEhs+k4c1q7{@k6kJfBGFwU%}Hv6-@G
zW!%6?@ud@D>Pt?L?cd-b`QpubYIEys|6@MQ);EazJD>9-#-VU|!N%Qx_*Li^e?Jts
zOET=#8_)KO_0b}y=;2rT=0Ol7Upm+9W#nR$5CUC5J%9To@B8{n#^P+{gt<6Ul_%lb
zaec8LS}YiDRvaDhB@vWUAy{ts-1$N<=}_1z^DN3Y+%Ce2E;OoaI6mEUU@yp7LAbKf
z5^}OAKZhi_KZ!kbU&ry>8o=gKeOaNI5aKer+1IvIUs6JAr4u#pNkyd{27c7<=obEc
z>LfRLcfE<zTO7}yt0zP+h=>n_qj=oBo~FVpm(Wjrl56>4wOs4|dLchrjzehjIz<jT
zxx;78s_cqvVA<%KxuzeYcE0N!^?PL~5;iRIvvNk(*4-S8cwI7f)mDFbtuv((+tdoC
zv?#ty|KSG)e{)w~<!N-l$Jf;~lHB9p=d;@4<%WyMN`ISesh)(aUWEZ#epIV)x5(F-
zZlm`?^7x||B*IhR7<?jk+zn)`ykz{ndWVD4VY%$<AdfPbz`E~Y=9ecb<JYQvo@V+E
z2Dh^OnxNdhQ_E2=pAwevmE?!pC_^(L#k0fn=;MhPfLG&Xbl~HpghWeH1fbg>)MqB0
zI+LU?k|rd-zV!?Ky5n8>_pfA#RcVyaK)QXA3EwXELy|@XwAWVe08NlcNJK?JqhWG#
zOY6UbYqt9aHM=y0+XHJ&Z#5^X5&OLJfc~19j?1R7#-zE|hxK@SIR$(Typ*d!U0YfB
ze81R+?1_~AT^8aq)%Z<50pyDBaWH>8r7y(#^|n6+3`%$B+cU!4-tts)$60B7#(v?p
zNFY5Nc<1h8%#)&Pa+7F}J-&L|6ZSzAZ&A5Ic9|;y^fQ#aG~%?~=vO~x!kLFF9FZb(
z2^G<^NMw$5Xm6<v;+E70<^x>1#K6LXOHaHn+1de%z*K)S;$u~f<<CwH4uruu7Wq^8
zicV{+dP#?V*$&EEsmTVzK+~6;P|?@sQ+7Daq1#Wg=bb56i=QLQG@;9(G0xTm*~ny$
zo2$%itllw{TVW3eG^~^4Z*h2W8~8rCFs5+Atq(k>X|~GQ|KjL%-<kF|*VPGN(5(CX
z7~#HhF3x%$x2$!$V3i`!R=(`BiS{x$^KtU$!up^u`pL=ESlP^pn9hNbNzus5zDq5z
zEgU@a+}wA)`?v;xH(m*hPOJ(t-x$P<57~&w>$qtt0h%@7oaCqlHtn^9xCq>m5C)NM
z3fs4MATL(^a8U)mM1#Gz9v(TguA93J@0Uo-*A=q#-Z2PbqUSz=507WwRi2*&AxI-h
zYMN-yP1~q<f0V(g+bWZVKIS&B^`BSpsfHGVa!^1B5dO^oOUy0tZv0)DGo<kfg_0YV
z#s_L>Z^bCs>>prMe0LV8?c+d))+YbWsr@I&NLf`u6XxjX>!o#db$jV_T<g#(l>gck
z5n-X|{5NgxE8C^Qzc~(7QgQz0Db2dgZ@jO6)9i2qvTWup{{Gn+(OLStAj%8eP3TJL
zEY#%vM=L2c+DiS8&VTt#V}#EN|1U@WXQ$-1@m8v@*|SlT6l|2U?jHm%7y7?<^WPhn
zA`*0H|4mbgAMAk+%fD${+W&t#WnEoQPw)T!<NxpA_<w<z|K};|@d*jH=_^n`|C?s1
zs<r*U0ZoOMoV@)0$H`))%%3#3r^{a;vj1HClZHkTXm)&D@t^+O6gxZnUiM$T99_la
zuj7PDL;o?U{<qiuKLYaKAvNs(jN$)lr~Gr%e(?nV>!z302BpWo=ng$GLL_Yd0s1`f
z|H~r)eKhH1YqW67OFdF+eW?G%#Qd*e_BF$E|F?+Bqdv)+fxdvZV5sy<@!kg^uloc)
zZuKklo4F(h;Rq2GT{qs+zWNhJi3roB4b>nNb?U!{Wx6skF_G%k85#j<D<WOba<w>a
zo2_*?=w~VYcR(ZOYdbNlEp{RDw|eEJn|<d`^#5z5$;s;rdYrVcs6aoPh`X_9xBqqU
zKSAD7@4?Nv_xo=|d%JWL^CBf^&K%k>Ctlq!|L!aDUt4o*!o17|D0j^?*ep*#iEM{l
zb31GTCD3#t)Q-lb4!u-mJM1^iDg5LR$N}Y(FA@17k-t*sCdS0BINKj@N)6(w`Fu1q
zeqxe5^_KdOVV&ikg$?Y$;pl+m_)Pv<9J!m=wu?6?*<-;?Em(_o^zoHC%lS@r%8|am
zV57N5IK{cDG^wyx^Dn+cEF<@wK6RmWZXVvQQl8Zxf#<`W-DbLz^kL8lD2Y=Q#qXQm
zS4`RuB~X3Ya%EUx`zF-aYz7-L%F10SEQe}jGhnMn%m#1*l=W|x@PCF(%z=2aY%>!w
zRUS95){pJ}>up2b3qz}iNbko<seLK3UqkTR+@fJ4*xf*upg$+}L66Aa>jl^GVL@VO
zkVg36#l+B*0!69YI<!YrSDYBk7#ET^uO8cB!UmM*j1qH5M^Dyhw=TKt-3CwmOQfJ!
zenky1TX1L|n(!n5HY4$9A`pyT$M`XgUYYLqvu9EpGB+MriCu2~C{b^k)H{JaX1v7S
zysBiD>07}ohOka#Pnl0F`JKN*+PCBDWQ&340*d4LPv2hVhR=Uh)cv^@{?W68pTEt_
zqPzASnRF1v|FwW3i2p&-0;X@StI30__i^{OVfuYs@^)m6km*4OSH(bELz!p2>P5nN
zmG7(1!cg&Q!)L(USlP2r<+-@i-MORGLB0R{xGEMd$?!(ChS7Y?&_klbVqB*gHn~QH
z<k+?XR?-_+V*TwE@in3|BlRN5`)#}m{j0a!nY0=Jlc4asGVk)GtUnI~t-#ITp)C0^
z;B>!)TfH@r2oq$2udPop(~*Z(QC6DdbZc#QAt<xdqV1=b*uTuoe{!nRl}XuErCz}Y
zd3odw7PC^|O4s9?C0*5R?T@Ez6Jne&wfy^%Uzt3KjJzTd*odV<x6|#!w>`4?dp}KA
zvBC*qM#JT!y7X4KSZ#sV&BvZ`-s{CjmCztr_9RuqqBS*R<%%c%mfKp^_EBIr7&C|*
zPNohkmEv`$uoiD{uQ2jhWt0%2NP0@VeXkru942{a*#9CQcUeXVN=|Rvgu!{phV20A
z2bL6Wlz4K=_#aH${TM1QujN0PJbpfYGTFZ}A9GaqWl+=(*H&hhaxS`VXJd|$Bt70m
zLn>*=KHk9nJsN7XRQ@{;JK!+j{bM?BM*RYOpU(zLZE5aO96J1kj%%UAUCE`j8vR1(
zFezbU1$9|<o{spt-D|lK>hekhY1h+YEkCuf*)enzoOk&%WL9EX?i<jh^W62J!v(|J
zC$^eYTHeILBEG?QUe}*j#!$qwvtrobS2b=twX4XoBMzerHJqF7v?C3bugJUP=><pq
zq!EQ!!NG5!g5co;jnSYt$n_@Vneab7lz+ai%Z;b$&R6!`-~zqhy1BXWwdm<CFE3x4
z6dssA*P-!gemrRs+nSkQiu)NA5CBtPm4^mNi4c_D&SLGj49D`WB&ULjrztTqL+}f#
zS`Ku+S_(M*diwa4t%JC(#&c-*@y7StecP|+OFq8Swc}dWifBctrdtp`0(v7O+Vu)H
zHL3NsoSK0EE*u!_1NZw#4Y|)C@>8AY_I934ZVDZOw|~!TMXAqHD~8YO+l@&HQl0Z|
zYs%rOft~4@k67eJsUp<XtTTR|qozg+nt89uk`#RHZ<gr<YE*B5InYI^&&!ivkOc(X
zO%|?ciN?^tIp@V;W*z&awhPS>Y)`czClPPs#kZK6HOM_<N*6_OFuK;sn&CUpmOdFB
zw8vp*fMK?b7}9udVzZ1zsZK$>)=AJ!rtog(^x)JG1>`HXSOxK7P#Z8O%lmWnL&r3C
zsq;LiGbch&?(H4A(;-XWNI8^2Tn?_^mY&?AjsCky&s#nC6LsQJewp#}Ckzk>Y-wpB
z<>p@4u^d<Zv@$t~s;#XZ77-!-3IWf1F}hhX2+9khH+gZ0b(Yzh;AkkjO3PH3^9OAk
zy3)eay1fs1cxQCCG5@|SEny_OuR^6Bt#HrcL~UDpr_~viyZczXQp|C|4`v(Efz{;l
zY02L@2t}jlB=P)X@M_TeR`!Mi0fbt!I4!S07e{wTu6q!T40KBwjY5dirzz=Lt*1x<
zdg(2sas~urmm+rsvwad-k6<&Sp1MHZmV!Jt2Cb<{u?5X~*5_1O4_&Z`thBTJer1_1
z5RXxS_v5>4IE_^VRXnd0Guoenap+ZiVS|k#Yl<za^nwhGx|)Mm7aRQx@ry>QcKkR>
zC1fF5p6^dYW^x)v4IhQh-$}bT#+P1JX!HgzowwSiE}^A|S)aK)F*A5+Mt;Z$5j}f*
zHeI<?CjuKhxYK2-QF9>-A5V=OAdcvvk?JdyF&t{_S-5+~{}I(rdQ9}{arD?}b*cX;
zS2l%xDVLnlpo@8SE24ABvjMGe$3Rz_MG%sZTo>blztrx-5)G=5EWK4T*0)}5H<IXa
zM{+D75lHU)ga2Y&!^4NWg7Iy+2#`+_p(+yH8C|&v=(*}Mej;J;GD9LJ{;tw_y0>|k
zU=zaY8o2H0h`0kuN6u`(W6<TjCGdaqI^y&7!}{;euw^H>)?_&ca8XK5)y0;B$=1B2
z+#f;=pY$fecGMz`Qyvo^hFQDp>W=E}<<t+E?!M4ve@ISa1CR#e_~CBb&Ehb@oZu+l
zKe+P49jV8^7ZGC&y~f^t)uYu|*c^esXU;DpW?|Ro#&|d#+Kvy7MPc&LB^KHen8vkD
zY;S`v<Za-FX^%jLkl<D9$_p<tRK_P(!mddv^$qynU*|KR4=XhN5AxnJD9&!%;|%T^
z+$99J0F8&>1cJLejWzBBNN^{(1$U=$cMI<B?(RDMzUQ2|=bn4#%hXg&P0jw&{Zw^z
zKmF{z*WT;De`_r>Ru|f${$_)jMJ%$dkKOfyuN9yGV2;<6DW*gOx#@S$Y9mancw_{>
zxwy;vK|-hs*vy^skzko2(F-p7pz9_lqEPntlAX1OhE#O@Gg*TbXJ3^KaNpA1+6H}m
z;!O!s%{CltcPUS|YBvQaU-QvX`@Rdk=zk8u^Avi+3Bk{8uitF554?+}=ZX;ePe-uO
zeg?83!%<0q9#T5jL}t@gI?yC{Ngz|6tGohXJyVGk2c*%koO@F#Sm5Dhc2uG$WrLNF
zyO68Z#0bzfx_A+>7|n{>r)QX2?saY|t9wkXG2?0(#f0<XmFL6Jy16SDD2+xK4K>oD
z0}9n=-qm#*m1-*XS30VC+ftNj&1-J@X12FM`81M76zXa^l<?X5e*@sT;GsV9o~PAE
z+*Pk%ZZEk#vFEjJb?-B%rXMZhvmkz#Sn;vSsiao7Ad+6i&0`v3h5hL|u;DG)kQ_Qa
zrDQOUZsTW($S-3ZX!IBpkOabXu?a0tU-0#jJP~&(68!Di&^3YHP(C8I+;kJXgcl-j
z9JMv*mA0|ijpZ^@F6zmLUeX56wRC1z%6W}Y<&P2_L|@`>>YC|=Vy>`=Zgh;-Fe^^V
zsoLDq25%JNG4qGI^DlN4djWYnw7&DfN0Zx%7$xA%Y4e9V+Xpy4CD5@5L^i0t^*zQh
zjC}}T5sK)^C$G)|<y$9OVE}n*u*YZw%|;65(<(--_7Ck#_3?wY@Oxy&#RVjs`kX-k
z?DqFBm>C75CQ{e^>9z9|3Cc_ri5$meVTx`d*NWTlxoRt4I6{?Yjb~g#2HK`cZsjH)
zL%k-{G}l`7y+dUW4#TUANTMQpib0Y+&zr$<k7~!{OGo)nYHF4E`aNcw9-cr`{TiDf
zO26eEEVO;Of&qMem3+~`uVwcZVR|pa<X4lAZ=Uh{{1(7^)yJ+Z(;|nK?=@`>`r9YH
z#i~c(J2A>oZN7mg$<+)Y^3MDyYAj%BiEN`gb~4=N&hEC_%Vv=8%KaS?ST50eJgZqF
z(2uzsAAi&BxZvI?qed6LhrRkPOjV;@lB9x$IsS$9M$w)uGWdnOu^Parnygk`*J7(B
z?ZtYsG`l(fN1C&-HK3rX*XrAKPAXs4GVTYTTIAHo^dMD!)ApeXnF}4_&ny0@^xr@f
ztgp&qgZ=RyzonL(zP7aWTCM*`GUG)_TpGq|i$$RCR~g)uuBh(1x81JfSVZsI2LGMs
z@V~9_6KPp;KY<}Q8n4$=^32GB#DQsf{mblzz)sKkcR4?ezLxA-!obmeLX0*g6)Ft0
z#HSt@o6h+O@D?_T^dR6zg$c*$k0Xr3Wo~d#1rb*L+>5!x`luec`t#T8spX8hygvxh
z@6Jo9`4t-CLG$sP97bgRk#>|6sfzxUVM0J=r<$s&a_xxe+ft$~R<{1`jaD?yY!Lke
zkYNPb`6vuP{gNe?9syU!HGk1o<?<Tk&i&2p*~aCH=hIGQ7A~I)S3PThFSJgah!-<o
z*TSUbwCj&a8LgUQAyQW6-w_AO1(a^DI&NPp&L*u%zQPEke@8+A%J<h4btVa|;g2fi
zt!60ONzn=|=T5$Phb5INWtJi2GrJ)<LW1eE#;uujFy8@*?R{o#jz5=;mNw~mkdAKc
z8n<!UR^A`%F_{TOCY>o~HCw;{+aKHx8V$fKQ*2(hB22#zp_<L|1|naOJ<%>p7QL1r
zNebKo8et8xnsle~<@%2USSj5y)8^0ka>@Rv?E!veL>#M4KC<*2Q<#$Kc{u#i2y`2L
zvni=T6=$!iF7KKEmN)55vAb@3zi$dgWBSu`nnrl|o$F6uy1#WCz_Ewmr7F*hUH!T>
zD(BhtW=|P+Of{tnZfUBQ+=rO`?Km;+HRg6K#sJll@dkw2R!p=XAD585(_vuhBmG2W
zPG`-BCP8lDbMz@%i3_$|MmP{hq1IWPoYpi(F)!#GR9f@ua-P(L$vUF?Xmr~ZfcWcC
zghZy<_2BIt9+izF6>@Ku;he43!)x^2o*QsJ*voM{^{`VnR?dv-E+6-|ZUk&q-ib5*
zkj5wc&PUT=V`)BFi&(DgIYyk*#qgf*FBiq9Fn(LAuJ@@7S&k?>XMNnBm)mWGDz94D
zPq(}mDVR^Q_qT_?qN()^PITARPKrsHFIo6H)CJlmy%Vwf@(3@j>U6wG09HNr6wFWb
z&fXTOc=GsHN0}uXTsoS}2}k>3e-4k16^8XLq=c`#UEgp~aE?AX#juhb2_QpM^8enN
zY7cRp-5(DMAOTyl7dJP|82mC(jj=UgP+lFAdJ=9K=cB7wswE{o41mRsyrk|(M8N%I
zZnVQIUE{fe&8@gyT42qcJWDj9qQ)#4&D#3giZ7;W*&rAO{+bP6&smt;>-NPBFC5n+
zzH1;q?v7)5q9`!jIyI7XrZ@+Qjx9#06r?|J{DO5IdRfZfCilZ|yU}UPMQjl1R5OVy
z3%ohXN22*Y^4xB!o<KREIyL-=?v)o;TWBpb+-g&uAH%JY@h-_pxI|?HWNLM3<gfK7
zlzq`Pu>OYruqC1>nL{F6StJwLv!PLnUZT^Ut&fLLr`KSKxcnry&pGauL7rVWNVG^P
zW*OeA558kYEt#SErXy}6@(W5PMYFWU5?(n0=eV8O#kV(EF*ACDolo$}xtMuSOJq=p
z`?S05MZM8}kN3rRgbTfumS#b#If4og3q2p5Rc`eTOpPt%wcWxiTH4g)+IEI`yn6<A
zuyk9_8wxscDU=#G$7Rr+64C{HRl<Cm`SzuIFiK_%9}CuIIS8^?nftmz9+ld)NciHI
zZ-2}uU_}|5dzu!1D=z1skvZ->{HYfp_=sAfrK$eyh=w*j+P(Dh_CSeayRx`7h<13!
zb@qiD&fSO~v@EWF!**;xk>Q{pY`iZ5*lzWr!YWdl3)`YF@U_Z&F<$cF>$}0eN-+E4
z*sx2q8FTz?0)K?ByEc)pQvroL+#`4J6Fj<a3C<!bo>%#|7}oDn-(uB^7he-+9h)jr
z-Mr$csQ<(a?#7#%M}DDw?6X<VIp_M$jC7kG)m;*1F17Te?+3(d2kK%**((*>s+-OM
z!?8JM-#@kbV3>+bJcN2Bd2Rc*L`*t-M|1T=0p80g6|>C+<_*R3M5dMwds1R8aVF2V
z?)+NDxa}tIPio%x#rp5V7b5>Z%{13#81B2DE;k-dL#jj$3tL(qk`lU<*OQSNewLp`
z2B5{vm+}*Hli$bTFS~r<4hq!C+ORt)1X#r=AsagvGJg^#Hv{D4glQ08S+3y&2mmg1
zRmZxFSh{4P%)OoSc6mlOEnnP-P1uN2;&A}BrjKSbamB7gXn5^G7!atzo_@q)>s`g4
zHm<WFBAnB3&MJ}vybvDaqDM0|iKo$XmyB9ITVqQQ2EzNNq4HSA`2BVbR(d9_9P4fA
z_@AlH5_e>SIHCZhVAnrJ!=&0Y->raA#jGnCDDjMNe9i6zt*D)i?WrW@%rCskMITT+
z-QZaJWGaS(YzvO)W)FTPdc#WI_84?8%4312q)dUWvo-{ftpDIEnDWai=ZA$E=!#LV
zKs9|<VvGhEVuxx>p*_0TVMn#%K>eYPS&YxUfoUNF_l+9pT<XdxAx!R~X%nuM(PZE=
zsJ+=upgrJIo|i$PI6n`;*TzK*yI9f5rYU-O+_PG#uZdfuc1KpPQD0rko1%0g;(F@|
zL)X>yx;BCRUlx}Zfbo@epb97n(P^(H=LDZ!Q+37=TQNXn29{^f1a50MX?LB=z6QvH
zm`g?PBkm8iZ4+wkrt{98*Pv#O?b^ZjUJUY;ad?dZm$O~9QQ&qq0KuZ<K|qTm?wC$W
zLZrY20g!vkCw`GvE#q`N>(E^^Y&atit;VmK#JnO~S-(NL|0}abolZPXTSlpW@zt$$
zN0v<X1`oXa=jmYD{~>i|ON>+4OVJNJFIrV>gt4|2;&>!<jp}<p<b7W|V>xEx)iubr
z1nVJ5hfVK-6p=?R@iFztrkTa2hZV$<|4`1#;UTjWkEDdxQq))v)<OH(Wg<0dj?ei4
z%5A(1IruPH2PqFs#7?9W3bN>+CWi6?VMNHUY?2syBo;ciLV7ixeGgJAz~k#DMw}Yf
zC<uw42{>(tc7=q9bBgg=x%x)skm~fBZE6Nfz?cmS>-Dh}6KxzVvd3kkOG%5fTU-Xx
z-cZ{@>}4ku`2KZqpi~A`p!4{ksT;`9){^Ee^K*U;j`}uIjFHKyP8i0jI|jL!gb~Pz
zWYhbbxY<wi5pAL{*^<S&SkcCrni>(A1E9U4xT-;N(GB*KK6+rH2(3^irhW8o*SX7i
zO0gOq%LLWcxt{goB}@zL?Auf=yVNkd#$g^+-eiL+R-{)w6fr=pmGn!wj;dBr7Xw_4
ztQu`Sap<d3o}unXrE6M@6MGXW-rZZ9eOo||RxmXEFhgDEDaIviwNqle`dCB;27#ul
z{Zo-t5x|?Wez(2ifp7pXZDW4QjeyMMWSgSizLzd$P8*Z|t6s^`0*`@pTHDZ<=o%qg
zJ+bnKSSwuotXNky{u&NvEII9)v%!kq9UpZ$vry8xL0qqJNb<zejGxdqwNvn<5qeNN
z!7iYgd~qh-awtiC*lT=*+V28<2GiSFm%T{;DW!_J#=s*9$mA+qDa#A0l6lMqrR7;n
zdbQJ{v;35%ra^(*g&xV%lv>NHv-O+QHFW!)j5F!{Wt>(Kk(fa?qOVlEB$|e+<otUr
zPF`NVjUu8FvM-U8M5nlMv`Q<}?-_(}UH(}<0-e<{BVM56Og@r0KJv60g-$puwbc?n
zE_{b)-@C^6XJ=oH_ux{&2@QH#yQHX#oDqLMAKP&FFnlAIaj|=Jmw+^J+%UKT7HOL8
z7#$NvI1nS)$J`~}^jnZ5Gh?BWpoXTfJ|;i)qp~&6@1V_uTRTz#WT+^J?hO})^*AV_
z!87=+r8$|TwhWH_P0+Hs&03HRl%>&L0L@ldPkp@e<HXtgN(p>dA|-ZO8l%@%F1mW~
z&4j2CcaU;vvGQk7D$dO;B)S)yW0q{_7o!>fEom|AAhE^)+}2Tgat?>y!Xo0zfi<`f
zA_&=Lw!13LFVFLR9g1f7!u`?ynL#@mivG-c=h(6ax^Bm2y@`agEy8A(l3LP-4UcL^
zVFr>!<v*I@)SSUj;2&Uym)bvjq@A0^D^NJ3qr3+_;-JI!;3ug@MV)Qqvbn#&drI|F
zC$~$l7E+Sn-Zx~w0w;ZIM6<S7>lzOmP}!RE`1O^^M+(d8$=_Tq8f7qJxGy9T`!Bne
zzwnIu)g53pt&iV1m89sE0QFImFrj^lqOk+~<ETiMYqgSJecLZdrYlo!d`om*)x)+V
zElUNTo_5FO+;w$lJ132f`W8C%<d*P6t%`?GST=no<r!;{9S<nYC-c-JVI)S9!z{L1
z)+bh=T*{acd-Xmk*6OO4s;C0gem=G=mWl;YJwO4J4DC9h+O9;gh_r41<ZbcAXIh<g
zVF=%8;fznQ?cX*HV6R<&`BgUM2(ACB(F85gsXAz5h}hNcm3&WSQU6&VKC%vFhX*uU
zIl!4f*d!1t!tHONUVfUJwnaCmwar22bC*miSi>0g?wf0T2CS(IRP*Ky@G#C!j1t=1
z$eJ9L)bl?O=_g)l&%CI{x>Uxx&Wh_y>pv-pTWpB$oP9@m*oUk76zzq!zdR!Q&^k&o
zJtv2S9Ilo(+AZ!Ca3m2^Z^aQAY^uS_*9{JELba73;rJg1=}tiw;~mvv<Q}iBfoY~M
zFj$)foa$}3P>_6;W8y?&Em{87wyjKJFDGzfe~{KFTHfxy@Q#~txUsKl7K=G?$>@La
z|9x1J(X~@SO*J8fpo4#OK6^AzSxbsXZEg+P8ub+xl5D>OikUK=6j!x9a=bp5P2N5$
z&tN*hTnAWDn8C?Jn23S2L;U4)Z{LAsrAbmDIT!*XNk1UyIZL)1+l~D;8{M~N^<EwB
zO`aOem98?vycqQio=?&;=2~MxpL`G1NLVDn`flKrUOC-nXPofzcVcLqU6n4dVbE}D
zFcO$TKU6*>5g2{AvH<i+n44-#P1Oph7qQv3uQko&gwdS5s<8_!3H$V?l!HC^`<tMD
zg`kQ%F^FV?eHEiMPkMtpOz{Jp3h4KQA|E0vaH}TTxvbiZ?0nyl=8@t(J#8f8%lbZg
zRLbS3Z*@y`UfV#Nk6J=R(p~q(>J#xV582@*@euaCbgoI;TKlUHpHReHc^YRh!|Q&u
zd3Xu~BDu{~O+1}keiaAeQ(rZJt8M6&<mr8+j!Byagiz#7!-^v9%4}CPuR|SaEf)Ap
zWHxS!YYL*hG(p^fEj-qri(^Hva>!C6`z3fnz4E)G%j^f5SK<rK*zP#3%Ip5?wDBMB
z_SLLrmy0)G#<1!4pPSM6hjiGEM(k)bJn2w#Bw;C^t<b7MLlsow;6~;)5Q*4{41>0l
zZ5vA~y3hA2w*6Us6WSv>MhBhfr4AeSN&V5{7m55^aiB(UA0j<4$2iQAG~_sAs`E}*
z#U9gV5YyO*st4yb#NE~khIRRsgd{t(r5A7|3}@+l{J-bw%VAYPbg)ZzpK$Mw(ntvy
zXx&d&3_-t$^H~==JiC}6cGrx6DmPFc5!y;|Cf>3rmh~e>owBc|zJyWthDgrOm7`vF
zo~jFel8K`C-mb^&^P&tvx}jUmo7<taJ2sYJ?$5Y++!b3GqpcL;pGLr*<0$2T$y(%Q
z@K<C7BD&9{en~Y(_G;j63VANd;))+kaIPi(lg^TJ#(Q5Kv8<RQt%YFAgek5(<bGF$
z<Bgtwuk@hbI4ZcK+N~i0t4Z}sIAxO@)*S7@g*lY4jPARMma4BB9*-7PdAs-jqK8w~
zcJi;*(Vd5)hX3kSBEH$j;Ke9)MEoGf)0J4!pQQz__0-TD`jREuSB`UW{KK(5YX*9?
zZyw_SL(*Q2RW?dgC;n#cbRl9I8?1Lbx<4cG4by9r(q;T6mLJ?U_!{@b!T`N-))ItK
zM~os*%#$3loT_H$Ql`b%j-KM)Q4*z5WJNgtFoLyT4C|1$^^r<|<jjk}k7%}-h<i*J
zl1>mPga1|Kgm{Eo>RFT1T4#fXTs!;BQ7ogz^=B##sXh$1JjMew+Q|k;swMMV?8>m{
za-WzxIXCjbLp{TbxzKm$z|ivAo8Rv$Za3RxBrDzVEAWcYj-K)&|8XY#Up_<j(ni~@
zE)nhdH<7pA`4(msBtf7Awe_xfgX?i{B<TvfhZ#XOhalGFiKYJ_$C^lT3D^x%+0^B)
zHRDAiKIQkFyU~TG;f~=6eu5Q)I$v2{hk7^GCr*@!3V6e$)S8!3f^~e~V8KbE27_5z
zu!g2Hsb!82Vs^b4#kgt>%KJ)>5N}@6jZ;GZ-nXy6>SuPqh$P`iz3;luwP0?=iQ6gs
zi39}B|6CXy6|(b2rbab-msk3sC-bXsw7RZ#7g%u{bW7NWX$4?Vt#*5omx?c26g3r*
z>PX7>A@UY#iOZ2ttwt4I)ZO^=y^;3KUa`YA1jD>dVwFbSzbnbk{j3!>u#-WhNb(F|
zfpR+*Mo~%wcwwFgBOIs1Q}F|^&%9dHPLFO%K6fAx|1I?NPed7qw?%;j*cyVaTa@Tt
z1jPoQ%mmfEFe3-%t><rDlo^HbRVtj;L<CrDxj*ZYh14E?T75bUcKb-&5SeCDvj~<A
zE0J2En>C&BaDJk~N~F;P--@!kmj?J4r`-HJ(*S~TNR`?><h@wHt5&_Y-bGAn?xnWw
zZd#|>7Q{PkWjwF5-VBj~7G8Oo2OSdx461?U5v#2mi_ml|3DB!H=lcb66(J`I0=u-c
z`p8VgrEiN-y-hE4C)PmNZ;IVhBVteBtjf8wF$^`s)|#?OE6Fui<}`MXxa<Czn&V+>
z9ot#L^44jjn{9ztc2ryh2@AE~^FfbWs(dy*>>naiC(Vq=!%5JttW3oU*xkO@<Xp6c
zjJ+STLWq)t9+x~MDf)B|*D?A>7M)=(^%Xk8%6-0B`c3Os<U}n`b~RRiIcF@c^=bT`
z4V!y2U@KT9qNNp|%uA~1m01^-oxz}x=yi1%`JvWMe{a<?>_5$;O|9H%I;sG7KESxU
zlGYPLjWrGK?6c+iXea6G6;-9^w<rQ5KPJ;d=9uu{1<H9!E>hp~*EJYJCU|oWC&+rp
z(EmNU<=EcehB0Qzc@sd2#eNX12S7=;6dB2i;x=Q}Wq$lf%ILSkT&!amDf@;gmS<u-
zmclknbfk&J>2f2s-eOm}ni_HKOi7?n6zT+X7cj!+Ha0EP%>*lGZP*cW*z3K{Ijk>0
zJ|*GV0WQOJf=eC{V7Ac=Xh3G1=lAGfWFrXE$G$>!RbfC^cfR72mXWq<(WO`3Yu}ph
zqTY{65-i6c(b5$+OqiB*r>m<9I@&iFM!RHNWtEt}MeKOq%kLQKB~weh+HM<dv%{@J
z_gd$FibA}d4q~7I>|gC$e<NgiY+Z2PzwB`s+uj`Xg0P%_9+LPiF!}1Ss}GQW>E1~D
zs<pD4=CkUYghm4!!jpY^YF_*1W({kqn9QqpPNul3gRai$lirRA8V|vF)=%>N$C9n<
z*0z2n__=%7N4g5(2`9ZCLR|P$jLiDiCn~kJy(VQf5k{{qGMi-Jwo8{sDb-A?Av8ZS
zg#_c7R_@1XhnF{=C48?Q<bye(vnn^{Yl49F#;Kj+(H)Y0gK}>lJ!Y}GzsDg7@u(jR
zo9AoI;FY>^a5xG0imxeKT{Plj3a`;{^%c8m1LQ>Dy59<bToDSgBlLgA(f>vESkN!x
zE+Py+Ux1q&N^p8_1am6S&T}mAiJwJ3lU?yS4ZFYPQi~_*=yvjG*Zw*|51|1AMD#(o
zY%r|btjNKYgC7-*AWugpbIt<w;~hRqY}cCh);7bw3P*E#_jtCf<PG<K*~)*sYf?Qu
z+xN9ehiWLOsk!F1==uu-;`g{crhl_8-lX0wV&3|W=aXG``mRwC(IG9sd;)bvH<XRl
z^pbSUpc#73g!(XKP4Zs7dYCY0jR`j4_{+qnGY^Eu5N{tP@Mi(|1s6Xy&$fz*FwA0x
zWx^2EAZI%=^3cDi7%|t-)XgLxd6FyUf1cdO79IQ<92EIKp`hi(p_%`jHQp7ul~@0S
zf=bVq=^S#{tSW_`flLrifo~*ua_Zn-(Z;<y0Pg3Rbsp0Et9_O^55=@C!C%PGhggw^
zjWcnB7oV^hdJhN|a`mpt78)>Gj>^9VRSH__vf3rKyYdzx`^If$lea4RpAI6L_@If@
z0xEqDr72f#Wwk$UI<cq)w8+vuwFoBy6MwLu3_RTwn(hRJfB|P0dWg%L9mzCPV07c@
zxAt!2F-?8A&KE*(uj^9Vho(FTYIiE~(2VuaOSx|Yt#%t}XR{>zjY(Khj;v-*th$!?
z<7kTS=eo<~X|b=k=`=PrHka~{9?K3)h>oUw+x`c)hw|TH*goX3h)y$td?r<@ia!-{
zfp3f@V2Ix;E-t>A5U@SMh;=!?B|T4wj;P5O2DQL18x60hfA*y-oitbr57vkNc-RX<
z45~U4`89IDunj=wW|M$P`Y2Alz<$a?x4YdtvoX{8{{bHseuQ*`M)?Qh9Y<k}=Q1U%
zaUT3(t!fy?3_C@ic9~}u1_3Kf8xA7FLtE@1T6N<wAKxB58puCsM*55Yg+PeLaDU0x
zme&7d61V=zBr*zcCp^JZnCO10GFCUTujCfcojI`k@wETNpGiAHaN)pJA3_;)L$Sy=
zg}tFblAYCBBcOYARsL^$tD>m!-)Jxu6~{jqM<QZI3W%qvX#B5V`{$GVf0=;%pE%?H
zFBnem_tSv?@caL9sTk`ZZ(&hH;`Z73Fis!~IF^1n#y^tQ_WIY<oaQt&HT@&Bvb?;V
z@z*sPGc~p7>mNw|8!Rj?yhv_{=_myMGi0DF`7!oCP08Qag@69<QP}_Mm;FBty*}VM
z%1Lp0{^u_DZ_AyH{QpT{d*<uLoNy%=j8$)EK5ZdZpJJBmgc`aOPKQ(c?{NIT9`F8X
z*Z(E3eixUJ@cNNUE{%^yet)65;Q30<v7ofwQ6ziu6U)+)42TP)6ad^yp2)@x6wJ#y
zSNZsUMM){(Z`{qeB)XLa5q;1EVu;}X#j?iwU}MenNdg@)b?wN6bm=7)Mp6$|{;^K}
z<C(8<ADNAucX-ty9?wIKxjHHpU}GisbzCvK)WiOb?0d69INNLp09Ffor4&hhlQ?vU
z^KV~3^{H>`b@o2jhrD5VNjgnLOhuRDhW4LBp9>Qr)&J{{LtdGvz4EEN>O{m$&>02R
zj7lNF2d)9nJYwa%&}lO7MEnG%LtKNp(xNq-H4yeLvXWNy)8;#ra=Nf$X-1LYAwX#a
zr1F@WTYmEdnl4LZ9+~K9ufBqZZkoBN-_w#aq}G|&M5k7o8JPHfXISw=-d<+mec-(;
zBs|jkZJbc>5kr{uY4=h`H9k!Uek6K|$ER_4vws=sGheD7x4c<#`@c`vXqtpuhu*7|
z-_vWs!3@R$d(DbAIKI}_2FCCG3w17@ZbUwOuOSf5S?=YuXyTU`Ly^3`pfdFi;gerC
z0Gg8RL7gY={-IL^7M7kLQQS0kWhoY@Di;b*J9O_Xc6g~^;;}|aG<9YVks@=ujVk5(
zkQSFmalqdPP<+=;NU|(M)C8Ac@%;^{?j_E7_8FCik6_=;=HmPXuY&0iUms8E_IZ)9
zxI~k=_m4zO2h-y<p6B2342@-#pY5999CTBwnkN(uY2{z*O<b7!j}fD}I+JdDKhi-3
z^fkB7UN7-BMK$R-lZwureo-4Cr4jnvQum^>^%~yknSOZHnxbI3rj`{U5&WzJKwQuP
z_gs4a#-h0mwHHt3uY8=r^z$lRbD3!WcpIgcR+kFt+QN|L=tTedv=AQ6O#if0ZSC&G
zrp9}2VR~=+dnC`csNM+yUT^Cx;sGHXzxi%pR(#j!Nb1no+;crK-Rv%fsVgd{M0y2}
z7kAz11JZ-i`~%qm`>Z)jx{Uj<+A*(g>8Sf&2n$cef0JYel%B%_f`=bg;M2oG56RR^
z$Bb<o8HxPm36S4t7_lI3iyWefa5Vr`*pHU_S%E%N_RBm0&^?{Be`em?kPkc8{qc$Z
zYFe6paxSoA#hufv)v`ecye&GR@nDGwe|^V&)sn~a1WEg8CQ*2#9DFTUVy}QQPsj0Y
zfgkg5j{G!M6cY@9I(V!psaaiv0F8f6_s{S{Nf!>Ui$lfQ?;AVar<we{u_It#Tx1vo
zC3!g2rw=4_eRoNHP;a!u<Ci99#>=YO4CPTp-;fNYFpofTv-Ok&03Jj`D=wq4!l_(u
ztxb%*PD%|Bm6J`fl6gV|%bJ|5do-^pDfKQ~SE~;NmC`q+E$L5cqjrhp<YrYFR*MqK
zPu1M{Ea&QGnk=_JlM_`pFcdYI>qRhmnj)5qHL<W)uO;6;|3uVmTQnd)s@J`?h4@j#
z{1QYa&1Vj2-`RyYuggnLAwfY-bIs8(vXh!PZ}6P9Qz$tw1sf9`Utr-she~<{WjZpl
zkKO3oJ=$S2dGQzVcwu-CC-lY6?o+%%Dq-bBF^u8!5VbB!siw$8$L9WYVm51xF_!u^
zHK>{f;=}m4hI7FF)6FTA{E=U3CvV8^Gc!_wRcy13h<B62USRFNn+zL#?>-T+-Deh<
zG5zlsaLX$zM>sm8qoWDrjDnI=i2(zRQPkG*jIb<WU7g|3I5@dm>nRFu{8D#Tn00Kh
z)#(?KZgt#vK2<P(7L3yW0$V@8re8V+yRU{aU~Fn-pD$tFk7$<(^l@Qs=#z_i{H!__
zG+KC_tU`H@31Ehuh*!e!*hu2yKrSOgk#v%-Yx>LxcJmE$sCPlYi$WIbA)^mC^zFzi
z0gI-{Gg0%KBB-&V;VAb~-HK7L8L+#kpyZiRT6UUGupVxSuN^Crv)+yE&LDbz(^P}-
zx6f;?`SqWVy7$iSCt(e)nZ&H+B<h;b8S&jkSBC{R&NHxonwZ`my0rKvbBO7Ocq409
zOCA)2`vq&|Tf=-(r|#jN9sp?Mn`_gN`6w4toxFQfXL$U2Fx5L~uh0OKbw!m~l;AGc
zH`xEt_@aLDR{a#{PMSCtLtbH>(`e9e@N)18fcW!LfDx;;fBJ|WWvM+hK^wgSwreT7
z#gRT{EgALA6v+W`#jr*tUUNZc@-nBlX{f(`e=W11J6gwLiP*CFubxWDEUl(%VDJW<
zy^CUhnGhbtD@j>$_DghSU1ohzN{O1{z1$|+rrOEH)@fS<kx1M%kt_9Rnyo;+^t)yH
zac*c~jS_z-l#$<ISW7ZoLc?%(?tXbh;A$stmAICqwP-ERkd%9X^K?z9O68ux`*$0y
z8JYpcjOP7cR!!y98~Lwae^ykmLZYHDiHXAiAf^%mM!4LU=jUJX@c|7DJlAJy`mOyA
zqevl^kQBSNthK5bfBS=QG*pKnm91bzQY}4V&4gM2=IND7VLP0WbD&#z^<xRc%X=SG
zjW`M|NLYei#20#!5{73!#8Hks8h=B1i$bDEJn8qCySq_#^rn0&%lOo%&GL;UIxaY7
z5h($5>`~p5f&<>FUe{T6^Wn(Ki!a^w3e^NKacih?RE9;w&uh_m6m_6GGk*`&H6QVi
zjU<7Os1DP2@uUN8Q_U@WP6z314G#f1nCOUF)d(dS3Vze^I8>H_9A;jODN$t-w@nnh
z9i?my@^)?xG)C&fzMk<X!;c<#5@X>pF!evJs<3XvdO6G!77VUa4_QS;!N$r2EhjT;
zs(IN$&tg7OOKe}Rm3{XM20g(a#pl6=)X+j$BYQcDHOuXbTQcu^9s2!;ejfKOg<^iL
zGm0#I3pU<%KOkUVfjIP&S80Cp)dL1mnl(aUn1U75zO$ibb~wnNk;H2AOv(d&GB7^`
z3u4xBYm*EeI%Tzxmz+{xBz?Icus9)2*NG5(LsEj?hDUvxvwNHNY$pD3x~<o9%<H=>
zlh?o!v6Z6PS=UMoA4LpP!BRK)4Za*d-^jHEzKB=L)SHobzB#-r_p9IfxJa@jD;EO^
zyXNS**DP8x@z$@R_wTjmySt~blAk6Otho`Z_nwGI&KOqoz7r)Qf*3Kr`B1(aeXtMK
zafIbd{9&n@UV%^6d7A_?(4e5R_4p+*qDQdV{@#Q#v?6RR59ECP<4jDyVS&DSI?#I|
zdC};B@sUOiaJw&HhXYOK;FkuM_y7SadWyUGc%poejLU5$zZt<JLrB!S?qJD}Mhc$J
zW}>z8c&0+Zj$QW(-_+%4`ts?^bIvO@qWp{mSr~~`mq1k6kI{YJ*xcOQ5400$$IsCk
zAI#o-KQ*@{0d}FBi?goAtylbhD|NK3afaKg)27D62Aj*W43_eDbBv?N9d4)m7OKJZ
z%q<?j?VHUZpton|q3@%wTj{4TsQjcbE7aHL&I!F78tp^}*C=l4Fi)gbw?A%$*z)M~
zqt@+tp_}OWL!ZPY??d`-<%=KVqtG;Y8XEL!3~^I6kH<ajHV*Dqpq6Y?<H*bY`ZPov
z<X49UTNN2ww=Dkqt}uI%?)*woTTCqeg~eD&NkJ2tNv0D>-(meV59l?o>G4gsd$hjS
z_=>$*8Uo;cqQYFYTrxZen}O7kzJq$?-Hd*%UMv-!C^x4$4u?W~>yUzcip0N{)ve2`
zhPy9O?~|6`;#1=n>J5#*=mdv(O=PHczuvyCLJ{JMUN>OTC2GK#m}>DaCe=ePgHrD0
zptj&%iSAKs1gE1MK$x^*HlXCHpV+62%q5{g04tFDInL!;eMwg3kIR?+HPI3Xa10Q|
z--=L=o42^^U$U>%g4<2e5m!Wu&jPhTV{uNCu4W5`vfvde)BFj3)j;aO(70{87_SgJ
z9;%#+-x9kTGyjmJAsPGh9<=_}W0cpZc1%l++a6nA=8w}X`G&t?i|GQ8^a!uItv-Kk
zo`Kw0Y8Is%`#fB_G0X&*hkUS@``Bep+<wrb^pOQ?Au*+U^$%{jpw7m;+Ba5#$bV6_
z#hdR_F&jU^OIG!a);X%|+Io>LPT6bROnBrHz2rxU9P8o-4IiP~oo=8a96gQOoMY0&
zl?;hVw|z>a)U|}q?fz4zPEPRPs3@oP=2H>ceIWu~ubX@f-m}%T{O)ymYcx}QGw+#=
z*~^^wPmcKY0TJLu64D^x{23*l^{Gp><~Z{@tt7|IUU!P>sb4l*KdR(u;Zp$8TVHWn
ze^%{5rnO|r(WQ5=_6_~5niq)cye_V}s5gr>{)Udp1_=S*q8So0q`QzmAiwpiKa4me
zxDbyI^-^>_&f;U&Xw2m0dIilWzNO+vZ@`-<LKx&hJv~9vRCrHpTF>mP3`j;lGZT#%
zF7*w3c}Rp*H<b~Qi`J;Bg_JGM+CJ*#@iD@1AsgwHZ#Is0k_a=>=w6gwepo`ov681^
z2Oz<V=i5`uQwxo0g4k`Aty$8gliwr`SO<iXgUMaUm5UYriVOU&HUYY8E<>S*OAvaw
zRt^&x3xpI8XLtQJuX#?!U+R&k77`)rPNPfCt(>LbDne&EWtk9NrDSo9;ai_<LsV&k
z5o7FXu#@^K(OuZREL%Di;-`?X{^N^~BW@IEotIJyZK1rcb2~ICXXrg6*mw#3!&#Y<
z{k=36G6$#Bd<#+5m4tDA8}wB<bfa{&VicTVOUYt+AKa=uEW^k=><3~`?4Sn%p~Y#n
z`Hm%@x=ALT0KfkD{2h|@&l)RTQR$-VS6IP|v5_LY0@>W}!tOo}y?`g#p3~^_^XO!4
z?Y~P^Kq=P)(t_wY@IpV2D5R(+FK76UAo}<ZB3N){yQoG4&{7+wsrW4Fm^T%R<XXk`
z8|Y<Dur+3*K?{BDPX{RmyP5rPVB$J=nbQN@elW?YNv7^&(g<D<o?-(Xa>9;zA)$DY
zKrycGDZ`^M%JwFZ64JF<z({5^{>9~*zV7LXoEz}l`v8oxZwG~U2Bj4j9WZ_Ihx@LJ
zrr13<oKS1+JJwf~fCs<aOAkAXW7~_#Dg&&@Iqdf)MehM>T0Z=4-*kf$ccqW01>Zy<
zhe%|2N7bH*ubu}eSoOSE0h@UibGAfyEOE1@MEPTS!2w%ohK|ZX)N9rvfq90jsr^{>
zGMcxU1$tf226<=saADq>>nMA8Mi&Jb)U|jady_E<`^u*L-_v^J8j8dRv#gz2zQWjs
z{p=E4Gq@Yu3|T_&y6$~6rXsjX9PUkG$(Cm&?c~-bI(`Qc0=punfQl3}Nxd3HevKu+
zRm9cfVoPL?T)r&0lPuwf?VkY*y5a4gPWgL|zY5#rT@+-yk0Gp2OLGoh+B?-J6=>+u
z4YH&KngJO`W!_%Rcl;5;!)s+&Efg1vIRft?`*9eUi~XFR1e=9%HY}ghf{nGToXC!Y
zBnx1v>;`iXuMbPZZ=}8Z4oKVqSvW$ZW6`XERrZ%6>niLSZY-wWwC=CO;<V8YO?U^k
z|8Bw|0w!ns5o?#v|H9hFE5YtIx^fXga_5Nro(XdBbP}Vj)x-y=S>}XxIX+(2b#F{6
zf>I_Y;2v$)N1F<jwQ;2#xq`LY2!y?1)~$_UQe8+lmVG#%GZ2M)v?4-6hvRv#UAf8V
z)ElqIC7q_CO*Ot~+Lks?bhz>YUFo6^L~wBSMIVU#Wsa;40o2mNWdv+zUjBbnqfw&I
zGZcnn>T1)_ej^|lU8I&^r74-WY=R6ElvFi?-AbwXTsR$5Ny<l)!zW8DtC5wTl+Csx
zI`HGX7cW2}JKjPyFmEw11Fwigpt=H76Urm)+66Gky>g8Tt!1UQz)y~W)@FuCRllh&
zy%W*Pf*nuJNx9&iRs{UQoLEj6KG|LA?_(E|JD!%@ulP!t^cc4)m1jpt{S3f&Pi;28
zsK*MF2csyHS>Ooqd*q*9&pDNw6z|q>8W$@gnpvSe3RQ_s>&_9cv4`FxbOl%s^hU~m
zpi=eFT=akduO&%2zM!`Qf;pLC?G&gH!yHL-XWFrK;K4(hM8}+BT0U@z@YcZxFK0hS
zpqEOmRl?9H{)B*YKy@%JM+11yotIUgrvr~2B`t3qBpe$z?$T&>OTedksC+SfKtxh}
zq6{%`gpND3$6xtb^^eR~7SJ%JpXHI3?`0n>yiS;m+SmLtki9!cJWCBhD>}>WFui;7
zRQ5oo$X!(=bnY`)`SuA2C0|RzBo`i%AUZiAL?S-ALtJ?<j&IzDA&lUBJ7_%t^2cvl
z_?nkSGrK=q9foa*XWc9WTXA}q^SnCRIwAflk?;w};>P$;Ux6t@2sEB$1-wATE#>#j
z_5rf@788cD63+VnclI%RX~&h+ErB2~eQz|aM6QetI7*V6pT8OniT6w8=bMe2a@kiQ
zb1N@JOmThQ*ySUt*3%6!FFFK!L=7p}!j7W!4pv|o-7p@CaRl;f6CDAtLQf|CSQ{)V
zbjI`LTAp2r?I)OsF{Al5clshnoplVFQX*bDNe}~l{7Yraubo$LJ1-aM8x-nUU&z?h
z%KAu&17N+N4C1IZo}^6IV8=ut0Thd9duq0>&ZECD{^AH8I}7F^B0ixI{#KI%5I1jN
zSk01~|Bg_L?7YYzicC)Fx{hEWS=CBFJ4@G-zZTTdCbYa5meKSrcbhTx!{Rn-qjZf|
z#b*bK#kgY~Q{FV)h-0SIEJW`e8YXWS)La3F+XZX)W@}G0Ol@7=44br_4EKc{1b_F_
z_h7pV8AP;8OkHJEUBiz`7_?M2Ly#@SISNUU_lRhO^%7BIao4CC5~n^RbGt@nXTA8D
z2n%xV7f&noYp&Y@iEE2B7A0!=V`Fz@$kD=zE^mZjbCfV++O!sL=hRe@0GsuqJI-5i
zO{jz1R^slhn}JiNk|yuDqQD_PY+By?J%~iW_to#Wbn@P(?fm@p8nvS1@ZAwZ5GZ2z
zj;=jHk0-*IP-{z{)7TiJpw3de!p|cTFNf-hMU~av3MMr{`bZ+#$sxYx3(5h*M|+7e
zS=pXH%SK=c+}|zG?6TI99ey{B;s2q66AhkyK4*&d9j<7-C2G6h43o|R(jPzXB<c^|
zu^%r_=jLQ8A!$)Nj8SQVh#;;TY)<0G0b#Ag{;o<s0O10hI2|*y_~R<%1PLopGZrCJ
z`v%s6OEUnzNTIrAVnRcyW?d;S6U@tU5)P}vJkdw`v!YzW!3=AXYeJ)y3HE0W8iO+a
zM}wOd!=z_92lpRS<!NmxRorT1tnp8MG1@);S~JS!<3gB}4$(KTrOTzKwUd5Q8ac<?
zn(tez)QcJ;Z5~|IjS(t}pzPu&`DnCE$X3H-^}T=GK^WMK@(4&&kD;Y{P`1%Q0d8od
zZAW0lj4i^p(xB03mrkDIC|;ce1}#78&9BV?J`=L3_Kq4JZ>327ZqSd$2FENX9u$|#
zCqIEsrWMm2^X7{ysGOs=jRLC1m@1sd__+^|!2Ry-lC^B5JWpKwNQ3VFGfII?7_suj
zA4zGR_S<5B8dGLNV-3;;5zwoFnP*s-7%RPHD|5o+A;sBd-O2W^2KHN*LGt1l#z%El
z$apz{<c%}fgAh4-O>O0>K-7y{v4WJTQ4tjSg3>DSsGz<~+n`XbKO-kiokInz$9eAM
zc<aXtq4$>$Z>L{2ld0lf%={n``hN*ZRBUXRQF3TK`>VH=uVpxUQD>d$P7l@^$tN!#
z8HDB}hy~Uch0Bk>Z#l3iVH;z%UhrG5fDux*c*hfnBDDT<BiGeYEse}2bTh5Ill7N7
zlJapyGQsW(H+QXj(>t@Aju1mTvSSR0C^xSdw%LHLd&8CLBc?Wk3RJ~M`IQG)X+GR)
z{iD$iNz?sU))VQRg&5P-4l2%14YMoy0!oQyg3Ft!W7jOWiMDdx`nfj@ef4wi*on@H
z{~hVl!Q90AED4eNoqA{Cz7h%Tg^s*-A>RZs3Tb3_eR`3{)p$h0;^i{UCL*N6!TFk_
zLKPhe=$I+uVh_leBX~2(T$X;-Vp4u)TEva8qbEJ2xQ*5aLHDBDC6@xM5aWPexUhGM
zn>@e4L`tAN?e-Okc@KlduEfgoqIal=Cy1W(g`QV@HSR_8PpTiNT#M;<9p<v0c;6=%
zL@Xmm!1`MnOpTF7ZVqSir)B#)*7iqJ?xc}E8Jm-G-0jBcu~n^3GD`xpt7?%JTkoAz
zNj|aa2Bqa7wDidepFclnG<?8eW%ed%WxkhweYC6u6~P?g;pt>S@)eng*{e|*ZOLa#
zG1yuk!LkamIze=i3NzgJSi?C&43)AbCW{%Aw9`Z)?(?CyY1_00dm^E<Sc!>|iTp7F
zH|O@X%#<1~zF>>3<y?f7AGapRmPEI6@v;>YNo<c$PL`lDrZ<R^-1?o2mzHzB^@d;U
z?3+lr;lh6eY&U@j+yLhbz>N5y^czE<1(D_`$S!zNDnvvibdvMq!#X++nf#ZoUckOa
zDwEZjp+bT}@IE=GSyx})xOJEkqX0tJil$9)kSV2RyIwlR7yYsN6vjVN^QCnon)NUU
z6@@33Rlm+_iOSJ$``C<^AYwF9vSo9M(uZS>JkBSC&gS;X8Vy6}uDyqDpE!OISHc5&
z`gej(cwMihryMwixPEZ;Q0MB(Q;hA{Ptq1d@wEU2w2B}K2JJKr1au4p2zc@<DvgRH
zT({_32K{5Xnx-6nLzIHi(7o7oMM_CgIpQCri2=S3k)ltL`*gBRXiK2qxYo^X9j;1j
zyDUiJ`+ozsKc><C25wvUPsSx)S6#GGk@2qlQySsir8u<u%;?~GLjGQRU>1!De_f4Y
zxD5<(k3dOdIgmQN#nL93&S|*=fI`$qR&J?hC9wBT^4#9-O`rvYs4t$%rQT;2N#rCy
z6#Z7#&4CC@d@3&GWm>jjdB?qvGD57nVlzq2**F1OJGCHZlsbs%J_T_9^5Mh-zm14r
z*#2;CZacra659)f9>D|GDw0#kN%Zw2k4#7iswXrT_Od!a?ac0Pe#|&22A?coImkU)
zVvTZdI-AduJ{slvP>^{!QT3soM3Lz(cBs8t!e^H5Ghx4vOm6Lnh6t7a)@;z=(@VyK
z(jh@Nsel|9u!h_<&6fU|B;}BX=G5^FqK|3_mFMWW8sni>VFWj{z9N<1AKNzHV6m-(
zpzI#RmdpGq)FAij^)*eKP<=jC|KCv=%oXo+|J*Q%F{gweI$Ef=b|JR3i5S;}+RdsP
zx(TXT@)}&ce`QNQTKze<_Gwjq643G*S%v*N1~*%t@c|uV5F7KuUsN;rUcTl6Bu@Vc
zom^#!1y{8YBqsFsN7=&X3HbcLxD_Sgg46YyA2?SQXqfa_Ll6H}>BgccI=rx=8@%<t
zNbnu&=UrXV@wz6c_af`8^=e!C<iu-2;+~LF_mDfF=&?<z^0Dc6A?ADUH*mN1{>Zt|
zp|Y<J5)%G0-dt<G#w0O8<4*OP|0~j#kx9m<<iqm!7#Q3d!a>8v{r1nfZl`9Ec4z8W
zdUmI!Bwren`;?v+g58Bk&RW}{ispJ+bmQjiPZzc>#~vqj)jWnf7gS$0LjW)fe6=fx
zL>}6MwP)dxO1~Z)K1LEUChMn!IyGXq3X(JpC_{RNNhMH67WFpc6^?tH<j(c33pNA6
z&PP1iG|ag{{)H%DQ{PU{Le(Bd{Lr1~j!wvO58fsiESh6w1LL`;N5J!)1Ug>;xqTHB
zS3D-ZXRnr?<x-k@k+JyKDf+)!ZSR;y@Bqnc0GkLhAIGtd<efY9b{a)vsKo{(?SY2~
zqMD7Igqk8&DDqTvB>?9&M}%Tdkc=qMHN6NFJ_o<b`aK+zcdAf$KFJVK3opPwTm&b?
z6vylXg{3BDU<A_pJ7jcWw>O9`u=RSb1~YZ<g7*v*qu`^F@h)xg)(@gCZ09%gGX1)!
zdGU6#g61~8llJz6@uAZ`=Lhki*q4uZoIee)vt)m{e8sE(&;^d9!gj)dzl-UstDBe_
z8gVEWt^R#9mMj$1o&WfjSU6WJ;S#R^8`Naf0Z1KZrcq(fGWq(8iI4%qZ}(RrZ)Cvw
zgP`m{_lFOZoeFCet!8_pg6%<1Z9eVmxewd?Ggcg2^;7o4>~WuCbB6l|OOZQIgM9J}
zPEQ4yEGv|=q)QHQIs35+qkW7EcnOYFuI(yn3!i@F@5p<e<g?EWTW^sxr&$>aq*x9`
z*n8ZJ^U;29o8<u(80HJs>4_hhF&0+!$HYy$mxZ$@XwQ9;H=R{7Ei{+4Im4}f>dkBH
zBN!=Bt_EwUdF^$o)B$9NW`s(?enYo67e%E{k7iG$$m^#;Z_UVf`c0zcuPyvv&*|D;
ze4P$;Re$d%_zF2|L}U<*8E@`1E}S}yrRIF?Yu_B1X&+BNU3#O>6dZfn)@~Qp_9kap
zS&{!*Z?#BJRNE#}YnI?)nKJnl%@_3~QOuRD@RClpWl>%{o&`yKY)`gg6X<r9R1l}J
zb(CXkHRQQ6Ie@S2Tv<9#^yFxJqXpd>W*5H`>x?jCTDQyBQa4ttBxoJz#*+BKay8AY
zaD}Ij^^R_w_t+V%i4g9d_NhcmKBK^?qzUlu-OEJz6ar-I`xA;pD(YOW?c45t18Dhe
zHG!&L^!S~$`sFlCQ=1>JE9EqNN=<(s?S`l&F5AmBG>Ow5Qnkxlc)o>y1`sP6bFD6b
zq|&_Pn_u{Awr&_mkJyjtBGTAg#;uG}>_xW+XWsp*?US|}LyhA@j}bT^4N2EL1qd+0
z5|uKjc2+e?heoNl(8}_bgsNJ=i%(tcyd{d5E*qSDVzcLESlv+<&L@lj#rS~I9h3w^
zxkop?jwr5bHK&02tG~Rq=3NGs@M{luTn{nSK$rEcE}_JyMw^^iMVw7gJrKX&)>Y5r
zz!krhD4w{8m8))kLf(1umPp)6G9G{^Qpo(YrEIgCniaU45ls4RH@r%!;LGZ%ZT9|X
z9`(kOZbv$mhob=LBguJA?0S3VL3Q8)l+zW-9q(M1+XquO{=Vc3uXa7}k7ZUgJH($<
z?mZfj%bZW^)cOcoH>?gul{QlORe6BF{EmC#4`!6pphtOy2*gaS!ej_bTwR7+Ej*(y
zsmjibGF(0{F;_m*3^#Z0n=rR5L1<ysAib5$J-x+jPz7kJZX~s4Lmz{vmBsy3uTTu=
z*qd+l^_J7>$*=F0Sa12*`YjuPV>=<tq2n}VZ8}Q0o+@li!qHB~Tw7ZtJ0bn;tG!+W
zs+B<B{m3udf(u)3Z$G`~G_W~K6y8dP%^EN#;x@*qHv*l$aw%!ek<}uM_qHnWdbv+_
zaSA7<{EE)e+dp&!%gwC7{P%@^4GQh;e&acK*qLLFa$C{J*L_xvOOi#<-4rtN(i%C)
zCw=Mr=Eq2<6E^p*m6Gk3=KxkyefX*uKkb)Om7LB5|J<fPzZ)m-yt|g`K;@UDKaD&y
z?;HlZ&}?-!c?V+CrcSJ1@jaYYT#ttQ>U!9?o!wegcb`UQiE36YBF&Iu)8()Mza8D!
ziw4|s)e(3GrK!toeOBev@T9+;RWUv?WV6q<Az3NEMFBb&9#(3xpmh-3_wy;aPQLa;
z5ZlCD)tkX=MvzCwL1w`}T1N)AcRzF{D{MMDs*bdlV)o;gc<H%qdPYGKT4zRj4ta4_
zb$SKGQj(}CL4tIW2bZ~GZy@+G(S)A<H=PSDy_NV+X_wg&mwMJq-pwkNni9R&h=)s;
za9L@oI|d)!qGIS922VcGEnq(Vnn!QNpsQA?8pgy|tv365cJz$PuKub%h1|(jsG0U(
z1-YL^S1y{4B)w-|>%`!~Vt*Sr`F={+E}2gejjq}(9Tg_3DCOEIE@O$cjaS$Fvk~wq
zF!?vl8AHZk@mQgyvD`L8@2=K~je<cvdmFCi;QoMB%G{(zMTGavTtdnIsSIvR#kZ6y
zG9=00S8??`n}v^ml0DP(dv$kLExhXS>6j;P8V|49J^-8>)jqSyr}HF!eq+n*Gmfwn
zn94tDODKKtd1^=~a6x13&u5vzAlEH4sh{vUjca`=GTVZykKsr>3Tf9iP}L<X>{;M2
zO|uy09QkeGd=tj|N?u;m|DNovNIn~v+pA4Ypl!L>f7x&nTJW{?iHns|ZXyE#m#u#l
zXL@hK{&H9|H(s9Uq{&O)1`ugl+FirLQFuaflw&U2HYG6Xu;O^6uaycXgs3qlYD2d-
zxv<ZZ_jZC&d&&RDq2IgQAl81_xM13h?5_Ojre`aR6U5dJ_wKuR?UB@qJ^z4JP3l{v
z%u*fb=tfb|7PQZk9UA<in38g#-sJT?&S}G#w8C4IU+-?nR!x5ODpJnd%o_XuXzshC
zn%cI0@hEmhMWhKFjsgM#B8FZpM|y`O^oR%nLXqCV1{{&1(j*Xi4UmZR7EmNejSwI}
zs6q%35=sb2&5QTk<9E+}-}lCQW4!UcH~-n$bFaPD%3O1<HRoKvu@`5NCEb*|bt(Sk
zlufoJXHT}TwipLSiWx6}RS&0*%n*pjsPDacURZWD`7BI%j*7zk*Ly)+<jwgj!Ne8=
zl~}s<>|}*?bUHC^YsUeg1}MN6wQo#qc_NTW6$;9bLw_mbw0F-``8(EB`D8NoWaM4Q
zySS~Xh^eJIY7McB4C}4F8E!;UFXFQN6_$zr^o7fO^ok(KT>-AA%M~a>I3ckGVJN5G
zB*4pm14f=qwrBjp_T)`*N#~voo49O69#;KvoN^&jU}e#*?g-uS^F)RDska$2Wvz63
z0Dn1Z-=6GOL)${0$uQAN_j$Hp(Qc55vJ99+y>$9ecg!Ix>bdfG;J{eN7|cBB;labE
z!mDBT0>YbNjK#`hlg7!G2xX6y6zO*}8&Q!R<blEMEr~oL|Hc(AqVEV#Q+HxX2wnzw
zR54<+_^hCMA->#QIpX7DtiQ|h3u`~}xMg!}V+8!51y_ZvF^pC}_`LX2CbzFTjci8_
zJ`&k$XBcv@ZTvpHEpcUakNl)nj*Sf>awPMR&C4ty4Pj<lrSiH<dLN`|VdIy-1R7f1
z9xGVRtMIvtU*k<zAKOl3D;=mgy^TBc6w1bi(LJtunC;2T@Yk;o)ac=d+1O5VPkOSk
zIN04YY-~5iHC1qb)%4f(#<z2UNB_F{=aqHb<A2UO+EYFbzI!q<wnMTW3qG7$F*d4U
zUVOTU<KHS!`!C-Aw_^WgJO7*IFkQb`(sx4ttu$NRiyxx=8$CJy>c5Ex8{|G(#1j7B
z=}K3z@wG?nnNtzWu+rHYqDN&W8W1bQD%6%!Qqmc0sIOm@$x@jpt9$pJGkX3pdNzSA
zKREm=3T$kxkNK&rq5eCy{&8=b_wOvW)<5q5zu_IGe;mgA_yhk+t>=DQJ^il?*6#<O
z|ND5c==|wnn|d4R*%`BH{4pE%Axclk*FaU%!fbp%`2vs1)V;s;_KCgb|3Z4xlG)7#
zh7mi{24M#fCKAW5z|q^Lm=dH<ANg5J>to^7SoGDc4>u$43eTGSu$8*8o1pZq?6p7<
zu*aX46E((7)~LAK$qk<x;?7dw7vM&Kqn>zOr@x!8==FI={%QVfQG7q_oJCJG9LUc@
zsM+)zaya|UQ$O3|ab-;)Y&`PORqf<NPrM*IB2$KNE}pz0=zcQ+=>KJr=V-O{93?zn
zJB;<t0x(2x0(e3tnw34qDOHX6&Vf~`+==qQK^5Ec85$uLOcNU6tb>XV(H%|wii&X+
zaQ6tP`Po=&bxf<AW@e&emtXyyHwn3%zs88nmWZ&+9^cl{%o@$g?*XcBQ>>P$27U6A
zN`fK$MsV*QcfPxQM{U__=aoCwOU4!{!WQKp;t)8B>A;>1m)k}u24A9bdDTzZNt<DP
z3b7WLl!B0%N;lB-gi5)N*&;sym2~MN9ktkfZI-8^z>Bss)c$zbQR2V^<^73HBgj6J
z2>CoIA5ba~bQ+Xg{6Gh;IxL&9Mk_PvW~Yz@kpv~O6%=i!hk#&!X}aFn2jzI2Bv)+H
z-r-A`P^S+*cF@?!^zI?w?Z^+CTW5R`G9hXKF888*nud}mQ0@x7;Uw!0Z}A9nft-KY
z>=no6C?jjWZeW9Q3m$M5H(@blhcX(;o>$YhU3qHga5*>RhqPL!t0Kncs!*9Z>d@{G
zpmHc`<*T=KSmb1}axOkA1H4;&t^M=oYr0fdn0n4wjDopeS?}nDpK>Pr#tJk>)yq>n
zy&AkTrQa}bf9EbVKu+4^k1K6;2K;&z07g1L?HDU;>U$Y?lmc||NQAq4%Ka)l<k<&)
zD`pl{s**)eq#tV01(7AB07VJ2QNE!t%m*PUe=MhY7_ekhK~Fm5u(&bm)3Uk9L@N4Q
zZ!(gj$hOzZQ^w?Dn2v6*w0ThL;tHzWB6a!qpm}o1Dtn7W8(rQ{DavRlOL_l1!i=$V
zxd6&tJl7j6<_k-xbsn`Tkd`(jIi7q9aK{nGmFgwNY}{>li*PnYMLu(BiRb~lyX1XN
zQ$|Bid=N-Md7_W!6*wq4X$k1%E<^rar74nd)pD1c(a@Kg?%+xADHPnh6W`paIm@^4
z=GU_aNc{qkBxJH@4MbVDGOw4{D(SQ%d0wab#<lq<3@ZR22ijX-UiUP%#4;AWIDGkL
zxuy;i8ZJu7TsNQLJVo*kW(oI6>EbI5gpU;%XPjBNZ(belQ~!P)8eP4@(R=esKdN)e
zcypiQ3x%=tbhk2jDPA@hM_Cq{?3X>M_H*X7sXVUga0E6`*db(UGQ?O%N#YNp<dl61
z?RFv3<|)aS%Rv2!+g%~owJ^6+PTE}q8?=sy8t1KZuP56Jw2jQSB>Nrl+PzYz1{p2Y
zrG^y-k%$ct26Wj6%uDW*#R-&|_YZ___nsV7`<}GroQ8sYOKg#!jxAz&)11qx>D|B^
zQ>EV|<Ram}uE0%`(}}#~<AW)szHx*FfT0QS`bzFE$y>(@<V%*1rC}Qscllvvq-D=?
zT%ReIR0WQ!Ok#jpowqfru#a0=%mE~uI%UQL3}2g$&6(4(1S!f{kj(n_+mRItD<yj@
zaQ7b-AgnT1vyCI#tSvmbypo)aH6_VhkG&Cn;1X16%ux;~)ox6t_Z0YjAXK$tIG&Lt
zY=C7;f@x!X$=B<R*onQ{0k%+BEI++$pQ^OUb$Vq#SacjAiLN$yxd&_($xPoEE)6dw
zg=0(0!bymGNXv*U?_pq9Qx{FYQlc^}tcSiES7E(XTY;%(mKp(U=he;WG#Q7mjF9Zv
z5Xa*y|M0QE3$I=o&PwnheQL6XRgM|)Xb7ieU7g*ye=eArzb`IdQM-hmpFmcafNC!S
zK(!H)K!x-)GAq8yolS85>7_j`=jA#XiMheQ(!#_Hc@f=fEpY@sY(#SC`yrQ&hg~;|
zyx0v>!~?7{m;Z2%irJ)r?1KqYZu0J%5-z}cdNR1+3|3u`tf#eqN=bLuq@ceGXqjzp
zCwG~0+@m*{Y(hVMA9<2XdB*u(vFZJnO6zIjc;DG-TP#drM8@xUlDKDhW>>8HI1G8w
zg1Q{mDn{7*tr4+=KUn&uU=-qa!IT95om8e^^q{BwVbMu4L%+3VnZAf&zyBc@gG(y4
zcL!<tEf@peT&N5?*;PKCT58_VbHX&>{NFt6S~I^<Lp1L=N2>EyWsvTYJg%@js4KLp
z=j3=W<ZQ9qXu%b8w2!z?IsJZcP8USR6qG@)zVfI{tENJ5{_;SqAM)04Ny3zo*4Ny1
zq4w_GXZ?E^h!nq1@UqYtG$Y_C?&KrxrqSP~CQ@shcc8O^+nAt)4NM;b?TFpkNA8#u
zNe-haqrWkcfg}%kxMY{_JUco#qoBfEsdF273w67H@`;y>%6?S5-*R|dY*-UkeSTqr
zBNe%n<wIS4EQTP|(i!#Ng0{>EA-}F~>86G}m<Xpv1W%I}&0x<rG1cH>8qT1FXA@ju
zdDbs0E32nbIx*Fa$~MOZP1{?*l&>$HY;VxH`=#4OdI$k6D%LdFO?mt1uF$cex&BWr
zdgimRkiijG-}skiy4b6LgLw{Deg$jED?oRTiBfI_su`UjZgntwe|_O~&3AwCb1u8I
zSs{V)5gl=>z?Hiq@s$dTk1K#rmzt4*MRz{RhkWQ)Ff{E7py59e8$HKU^=2*CrjIo5
zdbR*<zoJsO1;{4B^S|}3tgIQX^cSXbAOZGo!q*Ah8^fq6<V>49%stN`j<QN!S(;R7
z+;4lp_r=Dw_RALN_RT(%cj*HmS)^yrRxky&yK%GO-!2oliaG=O2)Qk~gNg^APl2;b
zIuB-ZK7an5!prsq)=7?==eQ1@^237^%RjmjUWR!V@5}|&U$_a_Pm~bwNcl#yK(g!f
ziN^nkg@C_4YEsnG<L-GJ+%{(32u+RWTUm5y!Q6f|uef6Jd??rf&083cFDp1T7>35!
zd3vg$wkFkbIi=iP1CW|p^;p+$gO<8!fNj(1U^YHJzB1^aLCL2-gOY!`wQEALZhDzt
zyFBcnW}j-Cy1d6|03*h6mGrj*pRD&9moy&3Q~TFpEdu@^cqr~Z>w#*$#CNZ#w>K+&
zjTUS^FZEka(KU~E@L5TaYCrWk9S>|i`CFvPnOQQI^FH71@sA8gTjVS}IT$*QD9GO^
zGCwD~?B-1wepEDiVE}4aS#)`SmN_Z6?51l0%8%%&As&FImI`!htRtCF`-JzEoym6D
z5uw=lfMHc;%H~#aYp7CIDd{HgsV%*!%fQGqr9x0j2;miM09e=XJoXJgyno$$f$+$t
zJ2z`=ONYUn1v|<(EHi>#o4ixFMtXa(elf;tjq|-1(kem<)C)2U?a7#TyCZoxJnmp6
z(;k{AsRl7B*EYsZ*tORpQq(qb5CP1MgXRH};P=tw%%b#~dt>VZlrh3!S+Qb5p+Q!m
zOJXd4g;a3^vNyQjlX*j6cryzP!*@6OejTx!6}2Q9HLN{@Cs6zKG^TRzo!1anDQ-qD
zo3Jt+s(3Z;j`8dhJ{bGxH`e^Xkg-W*<?y{TH$90X#6+%{tO7klYJVY_x(2E1Q^m*%
z&epjLT^^+1JO?t(`uq!D6;*9P>;_Vh%Iq4AhO{FNs1qKx1b^LQ0d50@wJM(DMp*#o
zM%mg1jyyo8Vr_>&>8ajBRN~rOyB);7r+Eva<SR39RB>1-RWy7;DJ4k2zonQv0#8j3
zRGfd<Fj97yxudZ$K*V|xGiD95@<&efp4{uJ+mxa8m&oM27iKNxN72n|8XJ9`bnNaH
zv3fe46EXSa8&)}j_T8&8Uggl-S!&VH!>|tqNe?@;zR&nQ88ZUH2$=!CP4xy;?!1ef
zoO$mSu2n~?4=?8JZj{Ef`B%IA^uA7uv%IhV5422T<uha_X{k7Wm+-PVGQ91XlYMcx
zOR-c1e@T6pZgu*bd^Otw_ykG9GM!U4R#~AWRd$~oJ_>!@ojw6>cSyZ?iL5M4G^L{J
zlP(%qfO6Lrx`CCo*6lM!))(E1K_u3yjOrT9n^|gXQFj2k#5?PtXle6RA=<{nH_;R0
zwk2@wV_q6LAvZ(PBlRqmB&klTB2;u``aT&na2Xn<!OU!$k^xx)o1YEKAlnAa-`8TT
z65jUBtZ3$;hdrElx3u*1^w0@wiR3Z<qj3N#{0;Rhg>kD6lbm;#BFZRTCQLZY0Fa^W
zWf~J;=Z41YrBZ5GRTsakz6Za|$|(lxGy3}N2?e8D1Lts!kexj{FBgw_@5Z14@}j7*
zrEujFVtz}wsS(NsRlp%VG{BWW5!0~9*2&8&&=3T6EZ&XY=w3fsZR^WR<R^xDMpo~~
ztnB|TIUg%$$KebfwUaC!2Wsa~oM7!7AlL2Z-PP-zB;9~|0JJd3#A+z8Zdc)cscV9j
z7t}zHCP{P4@Z7yq9o0e4585-Ftsg-?_gs;ScRF<tT(pUh7Y#9sNjaF-DenQy!y8SF
z4j#Nw#YTFDZE*)TPmb2L91IrLP@u4&kDONa86n$UVvNLSC~SP;^|O}kg3V2v*vZJd
z4bm<pnV~yt@eXQf)HhySgEnUFJ)3Xs(_RT%FirtO9|#gM5`D&xffr6V=$|U&Ii?<9
z-141tZt@9Bb$INu1Wkr=DqR!!(5z%zNNBKLfJtrd*Fj1gb{ijz&IO4P`>glLH~}*T
zG1_-{Z|Vpt3(4Djut$Ul3zW!}s`G15^$}t#&wqHJT_G)Ns-CRV@GL{RO@;(1Wajao
zp30N(E32{R-9yW^`MWV96BlGJs2#r}z!B|T)Io7#Z7oU5Epp#kO_;elWvlx~0KEC7
zk@0u4;B@tqT0$}>5M`iI>@OszqRv_GPJpmo=Ab_5dN+7&e#uVaW&p|1Am;M5fUEi(
zTE3K_!TKlOBNIC34^IiG>U_9@zk^WXM0o+FvXmw#1rw6|j#S}6`}+4mz`1M*X1#IH
zyp34hT-q$~<Cy6-?75-itj9A0f1u;NwYP!o9b0R4II^2%-dD0=W%?wls6AO^C4uTE
zF=aREH^Gra$tq*>j`x<^wJ9-#4^~aMV5bJpFR!FZBDOkjk~AAcXF3{Op>2k5Ie(}j
z@7C)uj=_Z<t@G&N?5gmGf|6DWlOs|)=h9JJxV_)mjV4Q1kBI=lV98anJXyy~!L9}P
zuUQ+2=v%nuo%f(2v1Lr(Hz!AD(^{q}wpTZaD@Ywg^g>%%!G>0I)-I<aV@v$OzcY?8
zvYhTOrsJ#gI|46>i^yA{QW7`c$qc(p3H7WnEeggfweiYE3i9{6xkdR(&zZKV9Q!Ro
zW<$b|E@*QN$3xb;w=o!L<s0qw>{TyPWrUKYvvEt*gw9NLvAuh(BA{>h7JbCMT;L;h
zCSC9OW;0YUAj2u5mXdKx*>I7guM%ZnjIlZvMZ0u_6;Qr+!M{1IH5e+a>m^5a(ablp
zTasRKa(o1J#lGN?eB9)j3Ss4h6Pe(Z#m{0?Z-a~i_N~x+VT6~ogoGid<|1F0Z&Ha|
z4vf)<qR?x8ANo1ftlY_c%FRD#Jsyc8nNMZzzx^hYiua!yKOaa#-XEg)Bq>U<!b!b3
zg;GHk^woT5XCu;B#CofAgSV)XBOqvppF$Hkt-3$2ei)BHY*(e;@`8ALF`kiunb(Md
zbr6OZ%Ot^_4WT5bz+01vd3(J8TlJgYP2Yz;=nGY>;}A4#B$i;C8}*apK&is{T@l1b
zkaVt~bvrMSitffSdW{WDaN**mgp1=s*AqHaDeQnf>k7M2_k_)%EYoz}b2Q<6>=Rqm
zNMeQu_!I3nLwpgulPJ&5*O&^3AAW(3^BF^YE|6G*VSQkEu0}-L!g=`7QeEG1YA5K|
z28E9rnX;PFap`cL98-kWtIWNZC&Qb}#ho5+{oZ<3ed=9tmA3HG)dbOWT+uH}b&Q=^
z&4fZNo_zAK_^=2}O<*BnLD4_sTS!wnkIe20urHlG+r15t%3-t=>o@KK=UU9V1#WOM
zkmWCmg}E_Uf_`uWrm`WVJU)&puH)^}UfPaV`ao9>Dh74Hsa<_BF{b+ZvALR~kSKN4
z!nQNL`}?a!>aqPi6llh4FHD$n@P}SSx`-J$sCpwDeJPBtd+>tq=kUE@WpyzZ8OlEO
zzaYgDO0h2fm&W1f9zZhawY<H~8{GiHwa10`bBwhaA>F`Dw>RrFJ$$)ZB0}vJyGj9I
zH>u#e_K7|@a>J3h-M2S{?>?^5z>0M?HkbqAq>$*%QeRt4QyN0T?3g65!4*ZbhTzYC
zy{sT?W1yrb;wKDq-=SZ#Q_T+UO3e>W&T^NR0Di#NyXNd8Lq{=Rf?ib~1(gK7M(s2i
z_;oablxThWo5}+oR8Q4|b?gM=^(BLZWa+5E(B<sS9R*5#oVt6USEc{HboTJ8z9?7V
zD@y~*e%BIWp*xxpy0@8Bon!S}jH(%JA=l0SQL&&%|7NE3P@tmfuG5e}^|wA<eF|%}
z82`}gzZ$X!*=$A>R1aa$GDkLu#~r3>^6p4E-Prl2rR)-}LhyKlBU84osXP)Sy-gSW
zl5vM)HdZMe=Ps2hAqVNJI}vuIi8$!p=W^Cpdf&0E$nRxHdZMsL#y-b4Xx63*mX+mw
zB6Dw50C+3Zttl+4IH`yC{K4%TA1Yg92pFbo|F(<`Tvg1PLv{5@lO0+x@M~#Lnpe#B
zZ~2veKqRtuQpxV=8eG;r7dTqKpO}c8sMR|l_%Fn*O8^N7W1oetEB~?o{6}o7+}Drg
z)|`m>3b`dY&swy0rjk;ZrA_|&p^F`UQx{O9dny1w9LRsGpBJFin{WN;PCuXf=t6D!
zsE9;FfpNXl_khqXU!PZf2rqb8vF!5!LzTCM4l`f;Oy^pCX45c-aZiIs^9;=PUaa!S
znezzy5?KjL1@HE0=hO?PK1sX26<s~Aw~C~YQ`WhAzPqF)KmpSC=q&u4C)fs5;JSp)
z4)$shS;&lT29-LMda;&h5+QuM=Xx2jPIL6|iHnWNkF)Si`q@p3LpCD43bZyYUB_X6
z%(oz;KA>ej>_T{1-(&gZe35+C*Y&On&kBB6d1`l;{`^vD(y^>TqfDEe`#x_0;(gL0
zVL97LXMyhhh1^>U=2{D*zIV!nZXwq!UT8g@&N)U9(1AbN<E~;@lnZ?KK$$&H3&>1D
zZrpL&-QBSCnX3>wRSbCONIAc(m!a45E__eqILm}Em#Ia-{oPqCu2>eXN+!YuNgEKu
zU0H$cyzNByB&?Xs*CuoVz{*}0?z|Bu=2h130jBp`+0wMuy1gbcOWM=qeCctrn?V?7
z@Iqpx@><pqGSDG<&$A^j5z(#wGkf$vn`NcSIvI(c3a;JemN11YC8H431KR=#4L<bu
zr;jY5eaT@_*?TQW+7-9Uri^q)!$>IlttzN(q+ACu<K@_6T$ky|ku_ZGU4*A~OOnQz
zC3sqnPO>%PF(c-BZ`>^$WEVKPP!)2#<inmwV;a1)%)D{b^P}!Ih;$7a{`O>qfPFy^
zn{RMt%)w;6lk%+jI^b%dc!!QbYLlytWFxN$-U-cVhXY%-E?z#eH8m%JbF<hoe6_hE
zU9l?!81}f$+kHeNtUF$c!tM~(d(QoLDP+k;>EaVFA#A(k<nqpi`LOzs2TXMBNblg~
z0)xu*d*aIeZ%r{iXprgwCzrZeHrFe&IeEhF_?`VFTRMifXbogpXVGhCQvB(Yx?sKd
zeAND|E_lp*w!Ye=x~O2j?aYVuJ~>n0`fjxu(MChtZYGh^-u!4>aW~M6TT{@dWA=p9
zEe(K*U(gFetkzb2b@;{Y184WjQjvu8bK4vosL!{_0}!v-<*o>_`dhQI#`M?EdN*5y
z`<>W-c>J;YLWr-H6tp;w@`!QPomf-eJ^P-%S-;I;2x&jxIGg7b=EeoWn3!F-LU<A1
zEM@03XPH&IuzYUMz^&)A<&J+mm_zk3`ci(8>rT>IOf~bU8QD4>1|iL;hff~+Yj$pZ
z@MGM0vlf9*lh;f8HTKK&4Y<o_s9y@!%WLw!@FqM`;_};d2~BCjjmUn2SL2EUA#+nz
zHOrF2axkh-9hf8z{V;S3Q@3sUrJfe3#l9ddeXC?yD*;)Du7X*-x6lZyQGUoZQwV;w
zfuC^dE`R2z6q7-bCKxfT=lpJxSMiL^U%fG8ff41j@mbaeygBKqC>OI*W8H?!w5@R$
z;s2@N<R@td1XH1iZ*8-MFxA2r<jLM;z7e4~!&s<?^Pf%O(9Ez58*>{hb}Ka^$-JZ9
zQmej7`EY22HgJh7+2NYJ#5#N_G|UPaLn6A>jCbKOVUR2thsm(<!v@xL#)2kU@cYMK
zX;19{t^|7f*!%Fxv%ZGsS^K900<V(P+RiFfRafybr$lhQPMsuq_Q@5k)<8B>(+gbX
zAb=psY{F!ABu`9yF}@o@)v48&-AuGHx-~NMP5Q3#`_ZB^?J~$u`YVQr-)grZOLB*X
z{7NjsBCU*&vUlw%*t|n&sW)jU_S!`p1RIRJ<(kv$?L<w1cyqXhuQmhJzN=VYWTD0y
zD~MDc<^^*RdV_o!py}}N;YED+71yLn+l>OuQy4fT!HDaG_{GI&)NoCAbV{C041FA>
zva%C@X@dFW12n$2RJ}H1$P4z<+SyKX{ers<Rd^&G5rzVe-umvEd6S!5`Un~ax3U_%
zPzEN=-zD|nQh{5F&Ds<pe&-kXf-)fubf~1BMR_i}PjVwlKl#j^Y98`&d2^(jEoxr+
z+D$t^oe!h3W#zKGAuxsW-SDO=N!9dvgnME&8h|NRCl!i{uM8dJBi#RIJlgxe@Mxc1
z{y)Q`?KDkbV?)Ld4@p?h0_XEK)gDb8=CB=I@&_1XqHVuMzAD<FwGa<YoYkC~Vctw^
z>W^t@Kd|%q2Tm=53NMYwQ4?zrsbpUKnn?~@FQ3YmYDsv_M$;Rh!sRtx%hAT=X$6_^
z!i|G`VxkkQFs)NP>~>2i?zAIh0K`l|8tHK7io(XO<~jJr%!}~zGfVDxGQVY8HL^!q
zPZ4t;W*PAxkfj+`&MLXtXPf#Nf$kmtE=FP6e6uE4h2GcS&+*sP{{XGc2U`2BriNTx
zxcs1=mBc_(@#3>Ks6~2``e{6COOIz!Gp@eV#a8XPGWoMgGL_Lq>~_FH#?sq+AMYHv
zHcZUK<1JJi%Q*esOyO&rBQ%B5<BBWzH2Rm8@(qOcE1*@|k1DIRz|bkY2lFg7uvxdG
z3^{<f&w?OS@adoC|7*5kOVyg@T@bameCglv8X9@~Ij}&&LLRKMwidIMFAfD(Nc0|o
z24nV^rp2-RWwu8}rM21{_awgDYI|p}j_x%xL~5;Jl~hZVx~ySfIe+M-FD<p^laKwN
zuXx{uTSkJihekp|a=hi<mW7qCsaai(aCp{4LHZWvewow;D2ETY_y<68LZ@&G-j{t&
zZ{t8#cZObYVXagt)pwiTkh*KtwU82^aDTY!yy6A2M1Wu5*+_|qW@DGbQeMlC`3bq9
zeklUC6>wfzK2ot-rct#H8N5?l6cTix0c461z88s3E&Xam_JBFY_VZ&>XxF(g^=6Si
zN0q)9+N9a34T(>yen(=Z9m^(1Ww#2c_q$$IVP1ueZM)UBt`B8y)iUqkn5wlzwbvz0
z4AOA5Y)4%LVS451<W;ClQiq}wjC#pEkS5|D<epyBTw|Fo?=k!l<iO5($<_XCrI%Yn
z$|EB=P&M!vWFq^FjE8&;pk`|CANaM8K3I8$UeJ8T7omuW(*92PHp983+`v5s^iVg3
z{>d?R)4BicD4&9Iek;vjY_&-(Q%Xjyh`e{km0!)UGWEJ?-D(XvQ$#l*@vcEg?6z7_
zYFAIaN53A<{cGXGp-9cfxo!W#qvnZ0<BGNcpHwGB-Opz2R^P*(tiMI2tw=cjfd-Gf
z?`faz3)N;NC!VvC6V@?p9e|Z+7JBW@mpY7i!&c@TimAy`lhFIWPuxg~2p!P?Z)M;C
zvzK-elO1Qc#t0+1^kHxz-PL8hDCVe2)8!Btvck_usv|saZ2s}HdRrl(@_`kNI^U$T
zoMKDZeyVHBV^B2mY-s^qlq$r+C+RdwY@AV8bSmZisf_m`S)S{2JsnA1bD?6>MYyVC
zL3D%(1@vR@$qr?jook^qbL-oKK<_!CZRrl8y$kZTApddh2qM3Xi(O*W5<ND7`9l7q
z+q54Qysa?bO_Y@v7oI5H^D97}94uX4JRO&nRv1d*YLS?Fxv||8wQyBxs*cDLZ4@-)
zVCitpbaC>@66A}SX;uy`aDs8A#Wlh@_gTA+;SJ?Gyn5?Ex859WOD_=l*EsMn+<OR=
z+F9FGS~j<Om$yy7?`=S`k>e25yjoVwJNcncxxd1-_e7qlnCp(d`PX`3E@cGGmL*s>
z(08lgWG7hEz%t>*mA;@Z>rj!Fxqx{)GT1A%KEP^<%C7s$Hw?AZ)IsU%&;`OmjphQz
z4`YKaL7Za260GzAcoH3S!pl2M(0tk=k1qjXN@RG5Kv7?3>&2HYL*fl=kwWSX#+@E{
zTjSym)(*R7z1UOpo864hQ&R7dw>iweEvIb;VfFDnX&^9D->O&)15JRGZwCG%6pk7Z
z7jFn4aauWp0?zWQ>6|*CotTJ7)nXk8B02J?50E`g?vK%XSAIX?z*x`h7|$?f(K`4c
z>8=4kq0nr`r!lem@r@3?KW5&&a`DX=U~WcRZ6hAlJFpas7QLVtL~DQ;sbaM8QC?Q8
z5x-(N`2A5_11%=}2LCy_&Abx2@SljYu`XeR>i3#G75^_QTd<C^EtBfb(XSmudrapM
zZ^Dnp+&n<v*OK&ij;=^xG6cqKLqO!b-UHg-foQ#x9c4RB4z*{~a~2mW;F<7&#YFf|
zMZ0lPGxBbZOb>Q<rNz^4+@I(^Os|ewgNO*Z`SCTs`_SX^VD2Px`Fz594S%ml!O5n#
zlo#f^=wO6i8mt%e26;EK>wWMcw(s=8!AHYGsTVjo%URG16abRJ{GA28V6>Ba4RNbC
z+WKT^+k9L;d3ZVBcyl+ry~B5}fa^ogR*UL=z3ia;XO|w&>Qq-%cOwa^61uVxvUX-~
zF*zzN>NT(@N*3h`o0-PiUhwK^Cq%h=ZY4I{iA{MP8`#@K5e<7!eh=>@q)LB19U{}c
zU8&`_x+;tCaK~?-GK5y?If#uTRmgn<zssFhyM5-&nPIs<fk89-EI1dBN7EEb5^Zs<
z^y7D?dBGe%U?WGLu`p26xceb`h%pWK0qzK8u`sXx#pb(tny|rl=@<R(eFCDFL+>je
z%WPzax14630Lwy<Df|sVc69B~!Ji_o8-Dk6PS)%ar2)+>N2S+1bQZ)`^f=g=+5d@9
z`BBQo=LaC|@5EE_f53w%d5|y{Os_pswd(|6`08SZ`VMmLIx7AEudu3@8|Q5ZSTvQg
zZMZF$A^o$RSeqXpn7>o3#s7Vt><zON#{S>iVIj26{S%|}FAuI<`fuV57t5SB{0~>)
xpIy>SGVyHLm;X=tG~i7BcL*7qCeI@C*!^qri00y`{2w*w+&BCkb@#!u{{i&8_@)2=

literal 0
HcmV?d00001

diff --git a/docs/images/otel-zipkin-demo.png b/docs/images/otel-zipkin-demo.png
new file mode 100644
index 0000000000000000000000000000000000000000..a3af04e466c8717c01ea4286ba360acedd76fe76
GIT binary patch
literal 133964
zcmdSA_dnbH`#!8il@`6|w5rug?bdAUE~SLltgV+lLNA2cExOf;9g+^j3K}CdQyoT(
zsM(0omPEw}iP0c(zjA%<&-;D<aQ^|{ZypaGd6MxO=kqv^^E{8^`EARa!a@>4JUl$Y
zW~SGzd3c06czAe&4jush!t*q%0r<Ty%=+e4p6UUq1z^GFdj)cZhv$9Tq1}7@z*_LW
zsbd%qkMvXS&%QLunl}#*r^M{~725}HOH+cAQm}hQdm#^v_n(p4mm+)fLz-;v!Nj)*
z?&#mHeDKiz&f+)g_YJo&DldLL|IK;oFlt|HTjEqNQ+6ToMWQSr?%G`E{bVI$*?kP6
zue!K)?@AbmSZ6g&9}h$p<@-iP0FPAqmc~r}#lW$u8{Fghe;?7^iW_qOyWrtjKYZry
ze^=3|N0k4&GPrs0_<vRpk#c;8{<AVB{+0OO4}Cp<uw(y!{x=ww?6L1ZtKZ<Owf|Z0
ztV{jh|8??x1zLf3rbPeutio%l1%WxRaaUYb!<duz#;AjuxV%LfhnL5b{PxC6LL&bm
zLXxQA-IcbjX~y6+(NWGq+<&jh;L}$+(;uqvd)pgFc-9+R=<O|&5oGAb?GW+*T;YeR
zjo<%%sqRh4s^C<&tSD|xMY>1*`T4ZceuL-riQ)~08C*UaHs**9s_i&1`awYE!RyKU
zpM~ub)SOG=`TqAfor?Lt^Ld0FS|HW==7PhhSuE!Kp^y6qZLl+hJ*A!ZOGK=D@1Dv|
zlN;#2cN#k864sC1+g@~F>&(Q49h2Gr&@GqkxEYwicG-+<v-od>OjNb3G>^`@MoyjQ
zIrQ;ECfjK<<l7QGI{UvNRqq&xX{hMhS!t<>=6kqSOu}pJw78xB|9qRhd)x+X?dQ|e
z)iV1$^!+zO`uD0G1pgCU#t1=idE2y?$5kr+fB(<J^M6e6&5lqJA#R52Z$#}}xA*aM
zivK6@AO2G&_|b5yiHOm?a+k-W^?$Y~j8hgfvor1Bw)^YE__f|H;5ynFZj@VPA5v?r
zm9Zh*dn#=&0-j69P6SkrdLr+4@Sn)q!gJUggTHluJme+(byMmN_g+Q!i3hi?buz|q
z?F}*#r$B}GuXZKPJe7$qi``?Q)X=E-XoCYeX%KBv@lqYpkU}EHM>zTx!3ZPeHkDm5
z^fnxA1qi|bgWX}&p6$wq+0<=2p3gc!>@n8SMr}b&l$?#c_NnMa3<cY(suVdL<!j*c
zNBg@+685u*-r*0jG-ASDSkqjlIe}MH|90B{Ac4IPgeT&qN@H1<@;{%2b+Xdp*WcL<
zJZ$eT1lL7d7#!hAxjB2!9ew_;M;|F}YpS=)aPxiWkQpdDvTf0Iv@>EDqJ!CA`+lW)
z(H<1gvV=81hBRW$!Fw-tN!5kFJABc_IizjlA#ZKQ;NE~9-9_|ON(Y~Z9J6KEQg8Iy
zzZ>8qp~{&@Tix<yEzidXXZQ}KoDwXOj+)D$XrNdYQDb#TyEN&%`jaucYhAgKt+UeJ
zzrH-*xcl(Usas|7v#)fjcT75O3n3dxK8WUjcmBy2pGA#YV^_jZmCftC>u=ll*9!l8
zJC7vtcP0a;UK_hvhf-0C{`Qh~=^C?nysbKR?WKE_llT8@$df6U#)*n%aaZoU3m)-#
zNG5WROcpq@W}UVL2!%~gNXS?BzGdL^VCe0V8K}rMV)CD^=))ghy#Hn*Dcr*Q?`fTU
z0h}oJt;RI~UYOWb7soRZGr$F?Qj7h0$a3uAG1_C`S#9&eFnZkPUywGrD)Gb5DMH#5
zH|7*LTBB^2fSwOuG^uzm`tZ%kTRe?t4j$rJ#|qZ@^gG#ZZM7!s%_pd;J?J<@P^=6e
z*fiYxGfT<E?|QR<aBxjqP!W*2Zw&tROpZ_xSnZe=^$CEpyVKiaxUp-4l0JQTci1v$
z2*N%s3Twn+5h+9FYAWMyG0;&UzF~IeHRPZ=$mnt_bHKY-1y_Y)d+AJt+km%!zpI=%
z_|dp+?NvzCj(wH6YEv=o?=t3Ue@J}Y%D-nWX33tMH*^qHai_=8V|u@yaCZ^iS9STb
z;K#=1pHCzSH;uOMz$#UI1_~Vw+#*QcqjEecIzWu+1YfNUi6N5-9RjCaxNsBQhdr+1
zWUJb``ib#VG~t8(`rx&V@6%`bdLM+%W!%g;(f0es#vr^XetUt!L~&wKc+##6qotev
z4uRtA&Qrd7reU6%%=j8I^RWQ3jbBR&8+VP&wu+<KjBYAVZ?$h_pTPh5YRBO};c|PL
zv$y5Ie&=1)Pc-&Mit7G;&1j>?)fE2Id1~XXz0cKJc1))R@=oJS{7!UPNSZ#ww29un
zQ*lVL8b}Zf;HySC_o4#X$N__`N!s6;YeC*Stw0<YbCNwCtpyizWAMB8tH&OLPb7oy
zBAJErwlizM#_s*{T)c9vr$gE0L+vE6$L*y1fIV+F+O_KCe|J%<CJNH9YaO!j?lim1
zCH&isjf9)im2Mjq*e;nETXw?sFp9v1nu-KvXD(7a5|FuzahI4nRlwew!RrG^rcznm
z9MHts+v(-((K+_`e*2yXXv3)e#_h;{ddzfd)Mx|?hi5~Zm;-u?oKM{nqG!GjKuS0B
z_;TI$7`c(cA5He3a0igj;Q^2KzP54v-UemSofFMkuu5=xTsc%?G%KRFRGa!{Y%RD;
zI#T)cpN|3r-~*RKC;ZVWbuO0rYhM_tk*)7^(>-@@9jve63Hk&VjM>~m^mCZ4?Voa@
zP;Z`Co|-{!)}!q(e{p7w_B=`9!;qH7b0UX{5`k5Bv?u)DVYjAZavj<k+1_>i+Lb{5
z<~|OOnhJQx4HGmqpe8fDZkt#}WWrXY-D~y8yU_i$m+pN^Rs;=?bQG_Z<+je9-$=Ok
z1G^^`|K}$KIP_=~Ny)yDx>Yn27tf(bkGJf$zY#T<5epJ&O$Af)us!mK5l^IY`JbBj
zjY^8I(T<~mkE7sQnb7Vt-oVwX?9zYZZ2n}*$vbZS+s)n{5Xyxgyfqm{WZ)8ZaCU=o
zlIY;f5l#(fyQZ2selozkmKaObs8q6Qd3;NQ2*jKk0r*T(bf4J2S%8<EEHbR?>$DIw
zj(Obc1NND&vv6BYJh9#~8@t*e&?_3hniODoG68_zv}|94MaPXn>@*_>mxTy!E|-z`
zushZcY{!vnz1sjZx$iB{>|taiTrqgKOLio{NF3O_8S|X^ggxJ;ZCYjJJ(Ug-VsOi{
zJwHPSNDhWLXjSZ!38BE@7mN4T|2D4$kI^E$*PH?|cBK~iSc^A(vuQ?ddw;r&assQH
zN@YGX-k!g!@^9jon}2Gwd(Up{m}mLu_!ySe;fEOys?R~pb7t5pk(E#4wueWQMCz*y
zh;d()-0qC#o@>pH{yc&%9j)U(bUaIM<-@xQ-)?n!r52%dpk&zhRM{9McY9(sRj-;x
zpDR&|^B?_l>uO^8RuF1FYygbjo#C+E$8#o}azl2eINR#qDZPX<i(h~+aQ6Qz;`z5A
zX|>2}mM^K0Ylh|jL&Ku;gJRSTRS>0@GUef!^In{Af&$w1v+|qs-`g7o=u4zJO867M
zT9pp@6WKFiAUMdXI#p|8@h-dFQKp_xkHGNc?BF>&*tJf{aUdQ*Qbv1gX*<GssrB`i
zJKWnl`pDOP-*?l?8&mZ7$YZ;b{!tum^t<xbl8lj2)O;(UkE){ixqPR?#K7rFH^mB~
zrWV~C_7+fk<uaciWWe44sZYS>n&3whxAA2U<u~i49s$Zd`>f*M@h*!g0&$#?m?vdg
zBDwg;=I*I;A9W|IPyCzVfsF|3S^*ic%vb}F?KbfMgKz-FWL(WZy15BEEO0I3J}mLa
z0w0&|Kg`Jb;b}v>zq5=>%ja2QWF1ImG!6e4Fg0VZ2pIk8U}V?CmI!rFRiT)l7=541
zvrG;*L)jgA_D%)noS!@C7>q88sGwca>kp%8<98`)4w080Qxq2G7>7STIezb^0}U7X
z{od0G%kz)MlQV2i0GBACRp_%XA{<EB4zD`T$IfWBX3hKRjbaRCPU=zn@@?2TdN2UO
zg8t1Xx?{=Sa(H_3vEgTDYpakV9rBl(7pq$$g!AQp<gb1;uC|mi8%A5HB`|doY{uMT
zmZL2=p?|MWjJG$oE<-~qyAHdHiy<$0ngDwge4B7Ai}XM>gq5nU=C9jE-WoNttVRKN
zdw79n*I7MpK#zjWV8!fvvM+wl7>^Wc^KvEFh4Q4N*2kvj%+s6ZkpY(-ROAmX<|uMO
zW<4?aili?pE@Db&)8(J9$Ly5e@Giu&dfjsZYuXy)y?vYbLueOm=$Bmthe{}8j&(kE
zltll&3z*e7fKw>fB(N7N4;T&UI$bUHKQi~eOQ!NuX~Kp>g54eq#c4tkUW|`4$*1H*
z4~$$v-+Rd2Hlv{yap4jMX1$5;x#S*ojV<3h95c;CQY0Qi=L{HbRS(EeoNK<Ozx608
zr&K(=4R~4Q&j^42^)4VfhgvqhCCT+Pf%V3^0o}>~Rs$;zovMZTfrfeh5HyfXgxuA<
z(p)^LXZBG81W`KsgQN&D1QO3yx>I4_qi%CIMkZs)*QiBCBOH8cXZ5L(%VTrh$Ch=m
zp@FZ`V&~*Wp&B_jP0EymN0XYMIPSRe;12fM%3MWdb%l`r6S*2<xNgs}5FXx3kt>tU
zA?t^|WdNvYYz_$`s6<;|xtOrG8}OiQW6U|a<zKRPH^Vv?NK<ja{^JhUBv|f?9Q;-r
zeKgL~%1NkCWm912e7bJBF`Y{txg0y%&#yq%|Eg=bn#D8C$n-wxGvZ5x8|xV?A_KBm
z<Ny1D3aZ5LvWi5iec3t?*51eDdt=d)n*d=Bj~Yfy+m3$q0hb=@ob2aP6Zd1&5QD01
zNDl58=}+2|Cnh&luRaU15sQa5!lwYju4Rt9lA)V-?60f?Ir!c71c1KT!Y~=LDfP#N
z_3wSEa;(c)+85J(ML^oNp?<<)P}6}-`Jw>2#Rf0cey$M5)gL9Ps+2@De|=DpV+ioD
z?KaxlbPOHiWT3ZPKU`7k@0R;I(COv!@q^NY7-|^x#V3>MC$Sxe+y=GI>8DfRrR#cA
z6S63|{>6DhX9U=B<@o)ebH#rE%ze{r5GoUPDBI;qLDGCMGX|hFcAyNwm7yJOzNO_{
zTn;S>5z>94<iLlPEtvw(7uuxi(#oR!*6a5yo7vL>iu{U@H&#3KVu_rO0*1G_MM4Sr
znZC|rt^Vc5p<-DVof-w3VC$@Tlsmq;PRf+B)y&=`=k~xs4zrAHbG5em=(xs^DXMQR
z7SkKE43sOQD#KwVo{fn7`JkHsalqS>-<)RuzL_M#+`<V1udH8@W8{anJi_lS;;X3&
zOy);kQCr;1Ky(~HFGp<dVyl1*o@@7WvD^loW9Q)7Ac0aEXBJE<E&>>J1&`|^MEv=e
z4q;pXep<QUb;?TuoY8OR&W;OVwX$4;fC9ig*OMxT(r|c!3?DLMBQMtkSzk=2Xn(iA
zm9Rse5&8YyQ+6mi+Ua=rXe{sh`#(Q1>QL;e$poNO%cCrwB0ex_P<iGOn?BQFyxcJE
z=8b?hmTxni_eN{t?HZ7SW|qIO%E;{zv})Tg@M1{n`=MK3fdrC!{C7PWD7q?N!esz9
zK>KoWF*Y79IIT^tEmZcAQ3VPv^^ob-02g<4QH9lkkh**mszD9Jd~Si^8a`xb)b!OX
z=bF$S6C5Tr65H6ThHssWW%j!oIlpr>L<C`bhBmawPh&wOlO+H>%<<?jq5;k`a3N#)
zYK}P);jc}u3YrzKZePOoHmjmqL*ms~Q*%we$S5Cf?O5U2BE{5ZX8V_f%AKgt0xe8=
z#dE1vwshp=`-0%G!s(ga`s&=?MW!}Zv?oM!XJm|-*<ryYSSMY}tzv#2a=*KQmik#l
zkM$j$sn$A&h{h+&c4dw=CuaR66FK>h9p`ram`d@I0YzP5#_W&AFl5RN1Zn#l7yTux
z4jp6w6IVzZP+!)@*mG7zIk&SL(E1>X0gyO3P8{For32@^gF&d+P&<30yKEKwh)T&n
zrCC#PoShjpcNW2c#?f~qFaWaMU16c*eT_52+2YuFKYBGr(aYN=?&Z*5q^s9Dw9)MB
ziay<LW%Y+t?;lXWd;P)c?;JvlXtqwcyV~t>+&LTW8-oP2{~aywb|q`4A5(tsUR6XV
zj_~gR_*TUkc9oEi0U+INRHwK~ms~%R5S|&jTi@5V+(@>^1na=k{YSSq$ssk3-xP>+
zD;n5ZZDIsbKlZ#-^#{P_F8~CbuGjcC;`m3@&g8s(jai%(?Qd=c;-C`X+kzsdvze!S
z3-3TRBqf7C+=Jcx*&4anI?pP9+RZPstWty??Hg$-oz_NOg7sy*RK^z8)daG4%UftQ
z4eRY*G5NX$rg1^-pMl~VSD_R@Ybn^e)%(l8r_GKg<F?g2Znpzh?$rl%$xam`FYHX{
z8^IQOE))UP|3*TK`IFZ*2LjdUq^%oumOkxP1{)(ZSb0|uwm1HAmk_Jkd9j)aoK2o_
z1kJNx8##jUHnhPbSwWoLA}<4TgWJ?I8)(OyjCM$y(<Uw-7mRH$zVm6si1OfE4Kdbh
zrl9pY<6JpHGIb253u|nG|5G|u0n7JoBO1oP4*doZ4<?5E0@xEimj(TJ`_))`@HvdG
zXJ^X0#XV%Y_|w9NKA)!`mWA!>C2GQca;LyYx{sw4?azaBSGa1Ml5TGuv*>xE4EmdN
z2JJ`-x-5Rw+*n?(G5E^&LgP7&`qO;t8_4|lutB(esQC58qqJ8*r9OMC=E03)9|Cec
zZbn>PmZX_pxpGx;$_t(Q+Ee=%_|G$aAKxNjm`IAQ3OrVa^d~a#Cww}y(i6ekVh{G0
zc`hA3_Gb5huG#PV^$h?{LOl;C?)x?->$q6YkO4n4HwBTO@x_T4tPfUrl#mR)9K8{l
zyk841%<(jkdn^*a(jRo`Rq&2dUt^=<M2<4IT{4Pzmrf4&_6mOdcJs8W0rea@3g7KX
zH6o*r29@+)fe!C-jMs6(#7$k0m|$7Mid?AVR_uT>naZ5!0fS^5aoD&%hUG_X@~^Ku
z-)UYoFiz%P6^AtK?UesC`0*hyPdq(l#<@t}tGPeCU<-0YXVDnvKgW0RaTxfGdBS37
zUp*Gzvke!YJgN&j^b(U2YK`1bTr}P^DrzpwqHYZ;f+pk|q%_!j)He<0_pZBxBIHyS
z-5Ws}(8#L^yxHP}WNe)bb*s=bbMuGa*yz!NI^;)VvjwfH_~$_}3}=EmZJoqy)(6pZ
z=QTkj44!SF)0GX@?%j$9s*Z7vqdgVPYSRRbzuHy9FDk=>+_9M7w&`R;BZa#?n#_r@
z86QJuLkFr7h*OkU8x_C5jg;!u40&Vi<&2E#*}M$m^#2o9I=aC0jwy(<p&BrUf&$N?
zG=_m%${@72B;pim+$SbCk=@FP-&uBO3t5cS8YYC<$bM6iEnu0IY5)AOTdLb{g`-!(
z+FaaFI*dJqXE6jDq;=f1eZQvl{XG9U++hIeQXmQrdaECKE15fmM0CmyL8+#S)AFU#
zolUEFgzV<nbZL)Wjm5zD6;Kw>Jj<LGk6RC*R;_888in?PHWAYcXID$z-rE@b?Y2`L
z*;c9OU>;>BfjDWJr)0g7E9;&Ur@9?1x~>URRR}XLVH@vvUfy<&XYDa%^0)Y6tY^p&
znt_c-e(1X_ckgJ-qU|CBih23l%Dp%8hH2a<Zk<>WtGW2u*y%`c_Q$CG_XIDpx5x3-
ziB^ZLXpb4rv@!2C3BSNETsm!MMfTTS*gn*g8cB+{fn)rloQLs{bhKbc6qqYDXR>1H
zg8QkFIWzt^#zGKUtk$B)j3$K$Wwbijh$5OPBmQ1wMDt)ol<R(+0x?A5i=Rq}RYIpX
zi&9tI+G@ZH_Xwb#A@)ZY!ru1#TIMn~TO(By{itW?xh5!U;)o$VDt^<>|KnRW+uApS
z<wuKPP6nkh9TCkbV?@+^X+jy9+;@$pd={L)6llE#-+~&tFUC;bYl*_?y1gJ+D=P&E
zg7T^20sRd{NZS`Hpudqi<J>ax)jK~D?)k{aDCdcrbqIXH2TawVYFwvYn#G<D!kV(G
zL(iDgY{-j!2qJ20Wu4_r+2{eEQ_ES6F!Xdgo$q5)lhcf7johrksJoNWd=THg&KHc&
zUt09vBn$4NCKT-_^Nu!K&YzTTY8a7h3~;5gW;`T#`=TdD-k0`ny_0#7anWg~Ib;3H
z@lpY=ciFZv+Kef$u0P8m2{FbFBC1y9--)BQixNu(Kgjb<K(A%Np9QTyISaZ69`vh8
z37Ko-b~WD30Hs&D_~#|R1R&LndFEvE{#M3W78DuHUK6p<^;f$qQ4u`sFItJQz)tnq
z5x_@o-PHsM3I0YuRKxdocesmO4Xd3|eKe2@;N@u8S@OiubLZy@cyUMV=LndiZigKj
z6X@|<EtRYGBD!Js^QdeMd=x%;KXWgGGw-ptQIim-rGFdz$I|>Ucwf-fyR5_DQ++Xo
zz-(f46YDB6SEpQe*ydt3B@do+G+Ikwxao$CjbFhJr%#Wf+)5GSb8R*!Pk?2Kq09CC
zM0KkNS|G7+Qs;biNnKjKvcrBV$xyG@YHea<Cf$IUNz97!YsblJ<|Qp1HEy&@Ixi44
z)m*sVD6kazD@%MmV`QOC57u@L|Hg;i+Y?{i49%X2s7~!S3mKc~##&x+jt_C%>|d<2
zGF#k=lLmQ7u!>54$l>vP5yPR-Mo^RD<<P1O_<UhrMCR4iT_mHmyHW1(R6gn`kJfOH
zS#0%ckdU^ne-Y~F(YcDDKC9AkiNpQzO5_ig>P8B?AwoU{te$Y|BRLB`+k&%O=X+K7
z$NMAGDFqY+F`F_~H5-L;Ig(B<Q8@Yg9B8KLfh;kk2p!v5T6=yc)1@4-Y}?`!U*P$8
zi~?u*3;kgjc)4vm4HTt(neR9AXvh1wn(n(%r#kl@jO^bkT)r}J4*-~l?-lO7skb1R
z%E<`c))b@ld@w<hRciC*OIu49I+L=L(EN3!``}r*#o0|Ags(pYbFULdoSjXUtrE|K
zJoqeGv1;yQEG^tGjj+ziSMRl?IAQ+nASl*Z{I2sis2Pu2e|Oq-n{4{*!iFgC=)|wk
z(hUE7Z1ZRBO}}L+Y=5>6ED@4){aSW&`mQ`ew|gYRM=y67I=p(jF-iesC4Hk250U<-
za^xTR2l-G>B#N<<d=jzX6*DvPoVro&X=YrD;0w0VN!J~0H3a%?!xDiupsd^85>{px
zE<4Q|Z1gn!k!8e3xfuq6SP8T^n^e?RAXRTTAScSu;nSxk$(j4-Zx?REN22B~pWXNi
z!$f!&d6V265X5O0&2(K_X-TK0SV~a)%Mo#{-YO$UVgYg5v?#Q*r1$H^WouDnbVaKJ
zZITfs*4Y<{q^k~{4Pd%bq8tbMV@hDZMxfdoCahgnP!aY3YqGy6*v1|1?=9WGGZ&{(
zROQQZkC*JxtFNhXtS%q#+0kSU#m<+@1++iy3zUfJiPpA1?>iQYW3?lm+<W+yoaq)I
zsJ*W!=ueAXtMBI=cxi{`F=@Feu^{aN|6e=KGu!qC)E?|`x8((u>kSD=pUeGEakNE)
zx(s6L=IE{9Y33pKKUa@+N<7O57S!&j;p`GQOVKdvJ=Az)0Y@3W<U+1lDc13x3J|ey
zrVu79RT_ouEnn+BW`)YaWjFl-*+t>x&ch?d&WTWw2g5W5ezzBI`-WM6i#>aq^Fb&?
z8>i5{?_T^n48CDk4P*yi=++E1-g|Bp`*x!9{Ox?Q-`rL{?=aO%;mI~hY|rA1b^I17
zIF12FDZB4Xj90Lr(`xs&gT!sh^5!W_N?QRubI+@pbX@**_9vY3J1OPTi}Yf+WksSz
ze`5vgbjB8;QITIWDmbw|st*G`3$ktsP#^9!RAA;iYf+-|w~~W7bk1IlZf$T*RCD2x
zIoXzP&3&__h+xIjoIhQ?IzU%4Kv$4&{<R^<m*nFk0sh#(quKi-gtHk^DeFenoB4;T
zfr0zV6j1WE`r0pmL|H2~2lI(TP`!S*H>vUIVP;Wy04coHANo%i(4(W`vTFUqMtv=B
zJL5ROjg5(Nv(y*2AU5aEQ?@e2*9!mmx@R7VY}`lMo5N);+sbjw-<XxcXUq~SSVePR
zE;9=gp9Br77af(QM1eQ`Rpy>0%OE^!OB<d_EmAh}QL&p#o{Z_J;IK8zu_P*=;lw-$
z1tL=l*L~wde-*I&<A*c0`m`GrF1&ELn9b^;YtM=Y5HH=Qf`)sT8dhKuv0h?X<(<z2
zI6tIOE6TM|EuS7+-RGVYMpc@LM52h<oQ6gKvXX+}%s498Q3TU_ftls6&CHtjY8R7%
zw(%(Tp68b$$=}$^rNE=QHPwwUy&yW`Vqoc%GHPriG%9X-iOw*X52IEr#tyW~6MH>N
zzx8<<+LXe#{9JXot-kki-WUaQD-vX2!Dgi(bYvYJt4kToFgZUY6r|&SUSr=kKEB}+
z7tb3FCtF&b5+UqaU|>Y4&_92rEGw*d@|?G{f>Ow+gL#RgjNo4-$`>hm{)2wST<UV#
z$ql#zVIX}tqb4iFn^ml@?(M#e>EA%ZSkwjupzpJ-F`?4o!zO;Euw1Xxelf_uYi@iW
z;|VH`KZk#pQ6^d(!ir~*C7+E*mIlEGOe$fmL6Ty-y?f;ffdks-URijxWN(igMo+(O
zE9nVVZ%cL<{&0s-Rj0z?HaJI%imT5E8_Y!(K?7`%Gb4ZD8dLKN%~x#4M{K;@3p&4x
z1qYSFvCNURVpa7G`2}koax*&ss-=OtL|Niim|CLw_A+(s=Y27W*^s#K_B3v?w2KRx
z)?lVbSr}N*?l9uZuXTr8JHWSFl<VYW^I4X&PVSuT@k-q?3pwFXFLGg202Tb%|FCy$
zsD4JAPqCpK8NWLg`p<RoAALLXxB~A&@ATzZLx-Ge#e2H@CYChR)$&a?-z{UMhHnKL
zIwRrH4L%a=9zz3^!HkUt-f=6Fzx&S!OQ#^mgX!wcD*0KeuZ9A#7qG3?Mw!rrIwVEU
zA}%2(q%?ot*F9&;?AqCKG$3b)N%Cb4AYAM=AC)KEDvBC=@1sl7@t&?LWFlFRxv(3w
z$JXea1z!VG_5%scpmyfr`Ic@hF?K$R)lUf%U5^|Mh{Ew9V0w%8?Tf89H_>vV-=&mr
z-zLUi6(juxwcnJL9{X&G{n=**xr%(JB8d$O+JOt-84kGH667J?EKw#Edv0|k`M?C_
zoSq(P&+>W>n(vmF$!~L9k!gfqzuB?28t0dI$iC0_VTgg-B9^&0z8&$83pKs_*0_^$
ze1M<W;H`UhA~Mbt;}-DUfe;nY5lrY~d+`f|j!;XF(AqIYa?VjF%IoOMq1Ks+^?f%*
zESV&|hNYq-fqUaF+1b3DV9fc{VyTnp)k-!~hY_cZIYcdfPyTwuk*Z+&l4{&+SA8U;
zO>qyH7R*#8(e3k}7V=TOE`@ra;Qgl0v_WS`zCK|2-KmBB85Xl)K+Qh1`gi+Is}652
zy{YY?Iw%1AytJjTSQ|eR0WS5gZtvelK#kE4p<!>yNBbx`!@I${J@sPoR(V*v_;K(;
zFaR<41AB`|G9?e+C>%ArXLdDp`BCR#bb6aYtJ%F<?kW$d4=&Nk@ydA%UWmyQVo#9J
zxHAP;u$BQ|4LS{=45$sfMx0-fA2$1=!(iFSW>Y3qIlb6{dTc*o3r-n=d@3Pz!V1uQ
z*>W`@(=8c4kAA;ln4rirq4Yw%KX$rwRi6J^zhQ-u+(r~)e`D;^<!pnDsJ<p+)eGHW
z)<?27B)ILImQbZtlTUF?vkuLrl-{g3oFUp3Ij)b(7~3}a{1O=PdDBj8(|}niaioUk
zOn7UvnH`#zRa5Lemenh2OH&iKcwQ=1om*T;YnfpO+sU9p-|{`Sjx37Ku(1S}IHd|2
zi*BYGD~#&`$^_kbo#iRN8R!K{9JkS$TP|?xBev%FJw1L8jaQ}de7~Iuxpi!a=V6RD
zi6l}oExS=sF50*G`}66&`=ezpG#Fw##nL)AU-?#Xp#iye?6|RH)5&wNljYZXHe0mx
zB_N+qW?(t`czD)l9hg4E_&uW4L0z+m3L1KFOM|YEV3lOFjKdHE#d)B#yVe3^%z!Ep
za)|CYfU#D~j!yk;n|tXfYY(et)&{8@iQ@baFuLnBpRxUP#7xr~ogIx{N<gr!&~%+H
zS;*84w_$|~dPAA4-(x)PRCKupvC+seag!nikcRXy%~yGvVqYu|$ikjLrpzT+0lCUI
zG>S&Lyx1wqm2=hVsx?+q4`>VI`ST~(Uao#)ZB=N;na;N(<}jxm<FsUt;kTadxIbx2
zlkLDz&`@DgOTyZ5#>H+hcj<CVLu0PAZJ76h@wweBX*Uq~Zuh8KQN#fy>j){fnd!r|
z8gg@O>$O@XrWq_zUr-oEHlfbR3B-Ske}6^fu=xHLM?+yPVhg~y{abB~zU3bUa#ixI
z*b8Ehoes;QU%%!;eogXBb5EmQ?`4p>qkSAdXJ=xX^5wOl3q`Tf^2!g>4u|#@soy>c
zLxmP|dV!Yv!`{Lxby|A%Dw^)U6O6fZxu_lGlJR}{)6tw{z7}?TSR(mo;v8SI4Nqgn
z@(uBdzHKt!1-%}-z^T&gg}J#8`DhC?OStq1TH#0c^JtsZZ)R>NR?qrb{@YW<x68<1
zjT8#~g#~q(Vk8rt6G~osnQ_jzWwZTQ1>*(z#{&5g0HgG$w!m#IH6M-e#kSamYR;J9
z=sKvDZ|(S=V^8|m;;C)q8ycie>N%q{5><PrY%gVG9%|^kpWgpia+x9RgU_@7kg!qd
zu8__p<(E{w`7vk4OSQ&3xiyvH;z`|x#ytD&&X-vo#f9&hKI)%%H6QH5JDTN+cELBq
zmgN?ge3^W&vacXE)s$sVNEK7uLEu@43at(fFw9X%;A|xrsrEi)N}lvPV$XBj#DtI&
zmfI8LZhaFG%Cv;-S8%qPx}utVd3W`5uT0F+9geSK{}intl+jK*Vhx(uowkXDLlfjE
zvrUkM#;4_hK_L%|?Qq+P5eiItr6tfGl80$cB_bi$B=YfDqmdOvKicEw?5TOCChQ>O
zL-=KEA(^-K)ozW!?+HazL%9aQ5WNxOH+S`Ua!TD{hwD7rSR?von{U3i+fYe+Nlg?j
zkln32rOc6fSv=i}sCvpWWERcqWb%ZE%0Y^vI?;RWh*s^Ux>!0(#u}}8+}luK8<CjZ
zpC{Tu9UE#YsP$j2fG-^#QvYe3h*r9)-OlU(k2-Oo(Wc*Q*mTK4POrr^f>c73?PTO6
zq1r`aCE}#LF2#qp+=x$%NoorH0B>z~Rw67rB);MY-|4xsY~1|w=wXU1o@^JEA!{Ed
zi%Oa|`D6h3qa;us_ZWYc2`)^ku5aDS!L^n&3wHq`gl+HrI9702OJd=NIAH!+BSUt+
z=`tO9e{y^)o$T5M%r%t(!JP+eBcf8d7tr~AXcl8~>1|_g(cy@Ev{oWl7cknc{y05D
zJaMd&heNB`tBC!<d;0eTC4foYIWZ~K%9pMuoivxT5S}ymH|`}ORDA*<-uX>V8u*vN
zuKVjCkF0=F-0Uhm4vGpb9FofQjv4N|CKORHV>1on7c8Q_TVU)!sc4w)a_ALP9IGe9
zh>YmQ1{la&bXaQ?vX%o8S*+g?LD{ST#nX&d<rYg6dLeW%$D}$B>PA*&PS@X_GBb3r
zF&m7Jor%_h#T@Eg9y%MMC?lr19LO0v*+V2p|1=ds3{{vbHWWB7198pMrhs|I{&fOh
z_7s_Z{4)dJUjKwG;lCuW!oc_m`j^W1$hx`<->EnE<cWgNB&~h2TV7Ba_mW1lieQ<?
z?a0o?(B+{Y#C-x%w~b=HnoD;AaKFOn)M<a;j0p=aDcsJcYLw_}crPiyiBsk~ElelE
zx1s32ceaMg1Dyn=puB>ggg$=iHU~c#W`xts>f8w-im$-+!47rOw;W?63Ib;iP_&mJ
zO|fq9bPt+p3k;)jue7jrqdG{C8o%Uux{_v4hYHGG_1H}CKck0dk1;mey*NXd_%p*n
zZLi<r$*_4<#A#Od&5G@b`i~Q;!@mPt3Zne$b$(wuTF(5PBm9Ezh7De<+?fzLYFdV4
zwF2dyJF*<@M~kd8tSW;-aR)eOcb2STe~D9mze|fBn!2S?6SLCf+mPA@OotV?U8hB0
z?tnzV)Ud&G1GuST{vTXb+-P*vuje594d13DFPpC1=%RX|$#x_z!oRA7Wzdiy>Uksn
zP`~=V9Ieu8wSuQw*~=kxjdb{{2f;d1nC#YX>92efYk9vxy9(f4?TJ!J*~Yda;U3D}
zDw4WASH5sXf}+9@x0wZxbNGh$Cleuln&hUvW;~mW$0QmmIf<+k9N!H6G39<iL7)Ya
z7y3agna$OC6%A4%_7o-w&quhrAR3QW2d=OiW6ImseP*Yo>Ls|07>j;L>vi7?-7t{v
zMkEafUn%cUWm-Cg2%-|ljtXs#QWQ6Q;>D_gq4HEk{DBp&8fa=OIhLs5(^vM?FMEH|
z*o<-DKFH#ll~6$F*-3|7_)aO$*^WP!Z-#?%w}pI6giaSI`P)1jv;g6sQ+4u}Evu0$
znx`ST4`ad@`K*O-=YpTzp@BKBRGh-mg;Me*e`;k@y6kXoM8ojB|8fCczSpx@bu3_1
z8F$oB>&%Y~^-PowzbQr~&Nr^-eHSoht+?7Y*>U#7oO0T~5<O)j!2_@gchk%7YC5CE
z*8SNDpA=ucNxuG6>BLe3%?2fLJNIRZfE<ousT5Ft2tw)!bYm7&ShN^Hnw$xaPS<SP
z6i*<1No~N`rsk>!Ai(s4bq&2#ZT9o;R@fl>OKS@o!r=4BXj-{69<f>76!`7#paU1t
zbMQe)Vt;mky>Q2n)njG<=KIVpRmbi&*8k%f%5n@aG*sXBIoTAU`!WkYU;U(9e5o=p
z5gir3gQ3Zho3oyS`W}qjxtZ;m3ik2mHS|}O-_VB?nIvE#7D@6&UhRm5;sG?dXtVQe
zUkFZbMhp8YMB+$~FBF<5H{@qs3U6K;xu!GYS==zZ^pZIRQl5gIN-cgg(sE-ge@Pr`
zxl6{gosU_wpC<fyT5+em%3ZK%^Vsh`PJzDhqM`3=#$JCkTo<t`Gcmq4#?@-M=o%HZ
zKYjmt1D8(MpW(0lk|*5ZBUj{nWBr&+&*%xk$FDY_dofom6~o>Zz0yu;lzNB)L^y!-
zsK9vo_8crK4rH|ZQ#7}!L9_R!$PWbX`Wr%o;^P~fKWUu1$h8z-Tb1EPneKTH)t_Zj
zA4Rv?4k*#5W^Rat#4S2kDz&<=y>PGvs5q*@?acSWJmF$kP;@UP*WGPP1#DtwTCEV|
z;mCsMJo=J+`Dy4c-IFYt?H$zvj6%1ptMA6rFMZBkejs#m*!mW_HdyF}*b~c_rxkYT
zm6_ar{z=KuJ)~Y76p$Hg<bk|g_Qsc`jOID7>d)<PC4DkZLsyp`C`y{L9;}#-WrfV|
z-_XIc`t1_j#l8m+rndujFHlsLRbH32ER-T>z9|q^tpBk!6wq-a>;R&{l2_Pst7Ob{
z#W?H`7wKN)LT_&xb)8O#9rZIGeqcho7r_<7Bt&&@F1ymB9ga0Z@-7LR)Q>-xpCmcF
ze1pNF{8Z1~C3$fs9NHoq-}P^5!{#AMZRH_=;<CTuwO`H@Fno4?<^I=pWeg!Y<G@=a
zcd95X;2jqve0_d{HTk(oa)nT))rXw<Zk*s=tA4T$xPlkYKc2y4<Cl2CBuBWala0J-
zO)&^s)Yj?1h=j7|4R?nV^V%ZdyOJsTMm3A)?)B84>}TZKiwQ()xr3}?CWb32@u639
zmJ=E`1jnd3R|VBi$1J_4Ktp1jqe#7O_IrR1Dkk6gP6|IMl0w)j-N5&`S2q)vQ?U5$
z@dWmG1<wVCCpBePTa;S>?P0=4K<2d79QyO|iLn}=iv^S%^5nd>CTlv(Tiz<i{%k>x
zJyUNXqQNgXkO3%1!#++~#WUb%LQY_pX(2n=<R6jIGr_J-SefqZ+FqOLyUX+k8YiB6
zNs<>d!WW~Peng)$4B51DG_onr7D}yO%}gxVyo$1=>C>Z#lDA)80D|D-@83rs78%4u
zjA}LW-_t0}@sMnyFi5_rHj9h38=ToID+Bo+0fe7J2d#o}Q|>QuO`n~@F0I+1wnr*d
zU&BYFVFCOwP04Iir5ZpZC0ao&w71*|`+Cg5R)t#Xa&be-8QNgSMy;W3jx?U(IrN#y
zy$GYy>cdzXcW@LP#IZISUBY99Z(VMH^T~(ZxkghJnBY#fYusHcbiXdmh{e9*3mHCQ
zudXjR#}zD4uASb#J!%cT+Ptm;J4iyC&`u9E5T?9sZXPS&BK`eRrDD$|CG&Praq8QK
z4&=A27Df4UMN7u#s`B-=eD<spwt;y>ODvE<mAKtEhwoFdb@35SH7zjz25ptrG%avy
zz*x4_OIBQmc&FDv?JNC&6#D*xC=MQUFf4H4{RO?U$^9_d0%_|OsdJOSL~Ud6qqlF~
zM+iDcC@dZB9GudLad_<-oIC7rL>tF#OHU83HI88z9DOw+UH-A~VTedUfzk@LDlFUH
z-6_QE;!(BuwU?D+HgW>cfAxUkEtA$4aE$Kf&R0u3?+7g;ff2cyt8X2OU^nA`N*h!L
z&NBi;l$D%~^A0R6khUWdP<_>G3%rAIz7@LE{#~5CSbrp6HfSzSmj5strbOPV2XuLA
z!ameuT!U8snDZx1%vTYIRD~UceSAniU57awv}1jj>=K9IY{6oi&w9BPybdw62{b1a
z&4s}-iQ~#!u_xFN-y437alEYd1A$TT(^Yc0Zqfe#%3Gzw3L_@`N81%2>t+l_+Q@Qk
zH7P1n`)dX1C5vhY$rD0B1aI+&ud=*#fYj?S8aI1WBF=PBfdW?8F`YdUH!580{YkzR
zZW1F_xO_}u)~v~ckkvRD+PlwnsZiG1rv36XOo$61tKK^kK`{rM9lmeJ1kwIJt74)}
zE=@U2!%PnoU=sC#w9{P8-13PbF({4muMFvgQA)9<@wbsP#aH0LV8r_iOaz&+b-wF3
zgl*IQt`zy+jwYQcN7&Qe2x7^EzPXXuO>#JYLC=2EpeZTDh6pESHp7W=D`9qVQL2h&
zCnIE;1;o)<Iz-MkDPt>`7JzNv%!U2t?>VRWYP;AHcB66ckmpq1p$_@td}HUG>@18J
zVLJ^#`b(0@1WO<G#(2%sW-=i3YPSFA3o^{g=@V-v924}<2MPoi@rzI1%XW;mTRudP
z3G<DAno916wLJMBp`m^aLTZT(=*=pho~)W2XcM%her&-j<uExv`My{```&6O5cF^B
zde4&K=6R-mv|GE4w298{u(2{|X#Uj#mntlMT?6MUFF4{M(z$cUk}`G+s9$fb%cbdK
zC2}i&AqL%?&P;~j*%k3X_6{o$A9e}P+`m%4M|R(O;n4cFS-P7bi-(ss&<j8K=nWTs
zGzt8zNt7->uDPRh?$*64br7>Fx5K1zSpLD%S+$`F{KtBo8`YZPZhOUR%uE%_7Lyz0
zQRRY<OJ$)K9_?i07>B>ZvwE_t%UyaNiz!$v5KZHzZE15tTdi9FkwMxv!C_$X58EZL
znCU!isMC}HH>Qro@q5_pWmel9iO6-0D1Um(u5sLNf9*Gk#Qwm}tE67j9TZSumZ;R1
zo^KAO+|KBX8G2|;n6ws1ZzhZgZY7SX?_>pXwaGvZvrZdL?k&K!u2pFrRN^@#Cx@}u
z{@FH?y#y#5?KsBu+Ns~NUfx_mP8^;GPdQOmtP+zUNDz60Ni@Q9g-4_JTSo2`yTpAM
zI^rU}(jR|LxNrUZMi`fH6S!nlxZ?a2rKG00(6p?9HO&C)P5G;D3_zs4HZO4<0~^w%
z$g?wni)#eGTT>C@)&shQ?BCfAZjQo{L*rQB7-Dk9PL-yrc1cdnUCkcJM)OnVOsykP
z<2tZd!Ec+<N#}{tV|5j<^98zN*_5}EC!bw9mIzr)2musal^-p2z<0W#{b7}_-YYt2
z_T^oACqq*OwN6#rcdMvlJ0w!1>NS7<sJ}kCu-QV|Hvm{z0x(BRoJB5+O{|y;Jq=yt
zih1#BTs?a)SCV4@s9l{8p>=yYEZvwLqVe~Q@#e@Su3aMfeiI-=j(|dRXLod0rJjvd
z{)ONjvc%%Md)yLms_q%;bjV3XfucC+`=zjl?LvHEXRe70^=Zf8rXni00Ue+`hiG=k
zQd>Or<z!BaLYBElO@nMBoLgMjy;(|2*qx;*>OWE2*VchFg*GpgvXOjS%`O+R#OvjQ
z3I;u6I!rsYx-Np>^qa-Hhni>qtGoY^B&rIKOb3I_9!62Pl3!1VA3)kM@t^z6Jmr{~
z@VV|-U%l@#u|PEmx$=Mt>T>?vbn!L3Z^j)E<W(3kGuR$D=slrR&Co#gqA_pO!aD3P
zCn4L=eYZZL1fimHi8URB`G7_?*m7l2aozUv+)npDk#%XbULb~#{-z{E(Nh*HSF2%0
zrAN4SmCl^K{k5+)WrGqGAm6oWpmA)#QPI{MVs@ccD@FbI{>yU9pAM;2Nu2Rd#6a@h
zb()qVR>bl`3r6^To2V=I<9e849=E`M{LFq|@LtKMyST6k4(-^AceIGLJ)mA;&~^sG
zY=U8cooa-0YNkN8ibpvmCHcUx$IaqkZ&cjosoSoRG~I&ja?RG9!)9`n5sWb0E872C
z17ZX}*SIQpthCx-LocKG`B-#jJ1u<p*;mtKk9V+X<|#Pu?{hF{x%oi5LT|PIx|e22
zb*ZzoeS6)AiWbb4>vLhFyeXgH^%cnZVmBoezG>Ji2SQu#N*vQ={;m`O^%mFYGBx*q
z2kL!1*U4nZF4EjEBymcom21pj)<N!Ho~>)&g0*I@hBK5L=hH6#dUgr+m(3V_UVk1u
zI{(aTpM8$!;ge;T#1s1uD1i>gEq|yB+y0goZ~HjB6T4&qC>+P5%UWC%CNK<xed!&V
zf1&0<C%-2ral2P41{p!Q(m%OM-ROfR4kE4G<O&$mtel{|9k&whDI%30--X=208-$(
zX^`O!_Zodq8BN0T>UGIMxX{<pgI5IX*cgTzcRcA*)T)UUJr(@mqQLBD!Ai;(IfuHN
zmSsa%Jz~z>eZrxJ?3F5>3yiDTOxl^0FK$XS#0XILXYkRTyqz4W{ZL8lY17`Mj89!s
z>pqUuFv^SV1Xgas!et|WGwq$KJ}Z%eoo2DLM~jPz$aYN!`YRnr(K;k3eaeNMe>LN%
z4DLkg+yk}8#r=)4i}Cw6F`&MTpFzXJ-fYPDIRAA)^V0M(w)T#~g>JKmI^mv>a+q#@
z+OBE=d_5?}dUe>)D1)v>E-Q5L)k}Bg5kB`Ce7D@#Ke5TNnk28|a8M^SC7(zh?}=3{
z3@C-q&(Af*v95P6176S3ug>{yLLvpP*`@?6QT=5Qih%^0$Mc6EXWSZFimIQjcme!!
zx~2){-adQu2h6E6-()yCdhCr4LWGOg?OBHopW`8Se~<@Az^6b7J-@jGNR!FCjV1-O
z;~nexjYp!f9v@u^`A=zFxhvs(t_!waxkgRF0lfL$vy!o>Z{%I(U%ss5&bkE#Oih)?
z$!BN7{$X&PN}-<wLAECf&`Y|MCtP7+uKzzcJHnz^>caXd=ayFAn5dY9AsTdLe-6vC
z$&O0rHse`aK<`oUB%o-B50hL?_OW)zocAHkMJc_^TIBX(Os9eZrEfVI#?4C3+#M~7
zX!dj^l%uv<=k0{UHH9rE0coLCfXm9;m#R(^N6Z?1Nx52)p3v-nnv(7z;n4d|642ll
z<o)2`)oV0)UH(HFg}QID8gSZkmkOKb>Mu<2CBdV5TG5a4?fZAMg`MZ><PU-;tWoKD
zk&SALeF=s)nMEb4XJ_u{_?s%cI_r(fJrZOXGM16i{xSlsTl**g`p@N=INBfGQ3TiD
zX!k^}xAa?bv?NQ~i-RzZtV0<AE=n55@C<Cq-&T>H%MSTem!DRJX6+&Dvu$dSo~f4j
zHx@c4ro1E^Yv9g)Mvaof82qwNJJ8L1P|>h<!egxwuv$B^QQ1{If|_kV_|@)~9{Xrd
zDq{mW<tnF2N&lzP5qC%bc0jM%T)j?D;Os2E0eSJ}!Sj~Z^?Fk0|MffVZQ<S19PKTQ
z(*S=^$<Gpd(go1c4vU!3E>m~iot|Ihw4?HKSkcpRPFLD=T_+(!ymu_!Q4Um|j~li!
zYLj6m7yf`XpNH<3<xV5PYhT0{FBP3n8C|X*@~x!;R+#8#Yx0W|fKae){W$4!2G0Xr
zWn$QC2G>im2&FkBj{)6oXrFPzp3ek2o44&~>$&fv<8*B&TvAaZ2>j;OgF3;L`G=Pt
zM}r^qMJQiEZNd?6VjGY8aGP3=(GL+<G0BKfo?PAmJ`^K9pD0!3Gn1Y)xM%3D<8QVh
zj{0+5t3N2FE?yIt`3ErD-R1we?W~RAI*#l>Vc>(r_0Z6K@lS;w=lcpMS@67Fquz_4
zR}1v|D(ls}BoZ~CI<`})78ILJ8J@HRroo}Qlq{Qy<!Cv4xyzXu7yf)!&+~hqVu4-8
zA$Ej*`W2=21O(cRb2T7Cgl-IPB>L*lo-%h%7|<PcF(aui-c5CNN~;TXSp_T&?*kwC
z#nS~ZG)}(&(KD8>q~2plcGDX-ye@<GxDL1qSX0J}lwEme%9o4eEIw6@5Ee!g^qu93
z<cgb~Lo0Vp#A2b)WnIu}lY|bwvel3|!51q>PU9O!h%fpTq548{uILC3fou`p*&eaO
z+ktYNUiE-aHT}C@;PWRD9A9vwE>M@C>ifuOIIBNGzE`%3(nQc24lK=H{+#cNY_d40
zO)i&01G>!}Gkz=TJ9vFJBC)PYGzw)=X_xBEBq3&}V%?*r0a>nNzo$@g!Kcb4UhHA#
zn&4npwcPP}D5|SUhm_zYBlj2_g`ygWJ%m)QL++giz~*A~0m+BZ?D5jT{eLN33nuhw
zRJU0uocP|@PJ9Y@n5*{<{G?UJV~mz5(-_zxcJ}j|NL2K+{Es2`s5pYHdjH5F+*4Ow
zvs1U*-(@At=a841M<Efz{(DZj?zrvlEV<GvXzJNN?Ztfx-q}q|CmWv;Ki75z9YE%8
zXqVl;g)YY}hp^P!{}oq{HHGtLFFSsMNA(-i_r_c0t#iP)qae+Ezq;y5r@^p6C2N}7
zaC0~f;S{Dx>MXW=O$sTw^JFQ^Y4IKw(;e}4SUSfBiQ@S?5X=Gu=yzb{qGsSI+FuB$
ztIf)cF6LivfU27x?W7GT9lP1*(70TFsC(0pV?}yERbi8mzA<B_2i0K*qH0<>Yh9<^
zIq160s1U-u4G2L=*G(SV>W{~f+)4*DBNNQ0ZoB1LSmHh|c+6MA>lF){OO#Q{v&u<*
zHdGxlhfl(0e01b}q|?AMV{(Lq7I~ZD&*s8tt>kQX{6!3#s^M#B1ImRdpBWkPzDZjX
z?;e;po3g_#-@x+w7neJR)EWA)yQ4Gd3QW{SF$>8+Mg^n2i)LR={)P3=*6P)miOlh&
z4XPV06l`eChOOPI<MgYWuWD`l0yMzbf!*TZy14kaaS}=2npcWNE~)(VJ=I9~=k{>=
ztrhh_jHOCfetA+58|q7%|L~J*-K1T*sBRMIu9Mk$-Mm(C`&`p>^K5W#5}Iq(+8F$v
zEBq}GD3k&OCRO#O3ePpH<T;gO8f0&N-T)Fr^~9-$Cs%-}QK5@=_SVG->-5YcL5tbn
zlCqPiN2TU|R3fCL&d=#&-Jc*RtK3IFEEn8I@wnu0YyP@i+Nptk4uOHsuVvU*G2H}V
zCW&_b6Gj3rNmj)VK>|_WBl-))@SMiI+<D5md$nTL=B8TY9;p#(vNApUzRgZ{67Sk+
z&f00a+gj>vg|hOiIh3rcAE>k{DveGJlOG&yHyB_HeB}kNzS_k%HLDEwai!K~J3UtM
z)&_XHcpE{A4~G=n-dY+LuWra8>X+PDD@^|A0c`a%gO;vB;!airSj&0bw8Kjt67rn!
zghX&(%o1Q)wyQ)7f_*+@%xkHbhQogZT58)|%uGzR0P$-=cpCF-HVH4f!)^SEwz^wy
zSiWFxTY#9O5)b>IhdGt_AzSq446rGoZ)N&-&+!#3J6KlN#rYY%56)dEPJc@p<MuvF
z;mg-k9T160`k*sE$BciQ_ST2}bQZ4|*vf_`P(hCyAw1f>+GHG+z<ea}oQU`dv`&2&
zutdY!{I2kY5TPH|9`MB1M}Gl3oadby<q+2ah=kw1Uc6TWJfq1JymlIHXtyd}D_FbW
z?IW0~O_^ewoeC$s4HKy6)<Sk9w;brF>Q`BTC55V#>w;zNi>`Fq$%n2P)>LGtawuYs
zFDta`&6ql>FM)76>{|p9-cl!gUY{4^wmp<<Plk8+sUK7@lI~vq#w^s=5p$AE>2s!L
zP~^y;_<mc@3})TDNvN&+f7pA^u%@%G?>AOt6mVn|6@_tB5NQqwNOxqcG!^M3AO@sH
zN`TOU4aS0u3Pieyf|QU@LL?AEQPG5=l!O2Q5knxMR|zC}b{s|Lf1l?*=YFnp-W^_e
z4MXxPyRN;~cYT%=rAE=2vy>YCsKayLrj*z3h&Pp_e=;AG5-&QDi`Hw4%*r=`OZ+mV
zt2F4JMf1wbs3<qukBHCTc!p_yO~4TDPn6BqF?T*;g-TzvNa3A@^;!A%yBK9HG%vBE
zG>sWXo)HGy)V9A7?3u&m2c2U6!P%!lHa9JP@25-f;Y6kK@*?{g#u7RZ*%XU1C(W!%
zY4@R^1EJmgSL)H{nmw)H=<x9(ndXJWx&7zk9z>p+smU+%*%{^y6hTM5Ig1*kNOJyl
zOA?aCD5|oD&X9{9<^i|9#!|mZ*)I6LF1iX~D9V8iV)_$@<3U2B?~J4W#B_ug#=ZIX
z3(-}paqk$9E{liYY=<RmBkn{{bM|+g2)R^A{3J?A!k@F4JZx+DRI9=F&mLG#D#X`e
z!iP?e@QCXeIn(4@o>nN{!#bLSrP<@xQZK*NOH|I;qQaT2@}=+k{3(?7X3TSo$Ed=p
z<nj$YPWbZQ=0N6c{92cGJ+C2SG3Vyfe>&V~erqAwmO8SDT?UIl_lQ4(eb{wFd*Wds
zam$~k5bgd5BcUkYn{Q00{VekNhySz&?dR=+R_@vI8?`*}amG;}T7F&mTG`5-W9IO1
zD@4Rx`L?cI!EF6gmv#2^M@nJ(EiHVfqrG$=J0~Nfr7Gi1EG`DsoytWYt1HCT5WQDb
zkn7369Q|aovob2o2yW!gHDG=E?GJ|&7C(u{ZmF2)Om<y*AWcbk9nwjY?z^$MOdxT=
z!XW6kv};w%CuA3ymmDhNPydA0e=Cmgp%yB=p_XgZh?9Ye?^oDQy!BfyG{Fz3{_eSy
zxag(!krJ{u>vzoQJY06Wr*Br)K>6C9H|#e_NL>$~WXprQN}XGXi8khG3!@zx-g|or
zc4g%r%E8yFOk^GPPCoZjq29WPlck_{Dy%Ah(gton)11XVE4%k2h7NQpYYr)^luj|w
zUKieM;9+>i6r74L;kf!>=HZr~70tfco3QHwq{8{wy^NjpBdy9VQ@8h!<Z*#J%?gX+
zs}(~3xSQy#u#dL08=f?Fj?$bK*dgH9R_&npguk`Byjz{sl^@X*nhJ5Hu+n(9Zm6W`
z-FA9(=-r+5=krqZ^Y(9g6noNv`qoO2sh6?VPLpY&VVO@ob^V0-4kV=^ZR3tD!)B(1
zDbek#eK_jp^CJ6@Z0q(nM9su)w$l5UAn~-oE3Yp%-`ITjG0w>c@4euE<{*qT5|j(}
zcXen!%~Ygn#v470R_cdpl6B?YE-P3b-fZ6|N?I@MN4R7W*$QurobnS|G90b?+dGg?
zqnE)h;m~RPF4=W2;(&c@zPcX`8#$CKxu0qzvBW}7M6&e@c|~SAgIk`A?UVThCYRQK
z^iq`h{NA~nDS43~7TRa%COll6#KU`#yoQwKyzO<CQcs{9=owc*m!VY>mOUQae-olN
zLmO*JKjbu+z29z6*Q;dD4I#Kd$o-xz!Nhv^1ADqoz2L&sBkZ>-Tt=^n$+@Rj5FVw!
z#}0UEdIK*e*PfTWl%}Ttd0tH{470`e^c^fRT1PxT?^%<e`1$JXMM-<s_H0})ttaxw
zy0Y#=d{*x@5r3LH{sjNWb-^{o=5^%(AXiS3doQe(0u$Zrtg#!e?$l+j$iZ%S_{cFF
z?qhkZtK*siNW<@P^9WNl3AaD@-!e{AUK99)kAX+|yj+8<JoCisc8#;cAjLZG&^DIN
z{ld(^56QTY)m+_Ml%%8LPI)N{<pPFWOniA?a<WUBqcq~dvAmoFBO>vPC<q0C*y%nU
zcYCf{n!BHIg45rY>I-%D8P>wouTp`Fm(_q|wehYG)>Q_It-HM;+w4k0K-V8+|7~+D
zsL>LVy!o25WZP3j>MqMW`D>EcqC}rU7oE01$G*cmGHG@_&yW*NW2rrX4Pg%*ckSDd
z)^k4e;n1A%^!<cHkf@23`v;NmjsXP8^+fEZ=hk!@`>A!8h&5sYp|+;=&E|4iuwUej
z`tL)4(il9)y4N+kL%Oo{lHWK#79~P|iQWiT9o-P3D}ozPMHbgM*jvNRJOStDAn<fK
zE`k%3lZD>M)9}$ZOMt7;jo0e(YR^qVlSW~4oA0WNUsc>7N-m~><axJA6G`2ta{u6{
z!b;a#wrQ>3a*YJYF%*zS$<02`tl#c>TomY_s8x-&l~9E-B|d=npd2S39rlG|Vk{Um
zwn>Qv8KO3rS{Fp8HGk+n#75y5j{065WK~R$hmxzn0Pa^30g>!qTyf)PotFb7nF6nA
zIDoHoVwfmEe(4n28;L+XfkP>tA-)pYwzou?l`L?Si#A;U8Z9E4{8VrB`NQ?O?O*ya
zrVjc3j?0CGq`;|HG9o-vhe?!=1a%xFy&~jmyB_*E2Cl<A@UhF32w#=K1ndeCAwt;_
zNwK1=m-Rhs<BaGm$R=^IWWi~&RZJ4|21pWDEm+!dV~ymI$HeZ7&06%LMuR;B7a_2@
zpN#};ch6jG@=O*DrJ|D8J3$EZ)5|fDY0TLZGk^pK9v8&*q<7JJCr&u9x<KO=3Y>mk
z5}lJcB4=_;_UGY~#ts18aDEO2Mvby4dA+kgt6Bl;_et`;*Pd;U)jiV#PA~}<_d!JQ
zOajNUuoHkYP_}auWTBvQP((+vI5KdffNVV@obm>tht5G5+S$gi{`PFH4k^E2;tV9D
z?%F!*C_32jZA52w-VOjF0yF6t&Sc-(jU**oJJhGW@=Aq8(|?+Di83LnQmD@j;Tv2(
z2S!d7*pdnWv_gLQgBS~JV9x=DP4wJJowp_HhWJKPw=6I4v0<;23k?1&m4YLwjuaCq
z!wVJ6ke+FvHlOGeIs)v}QMjzs5>fHID@6IK2o13-sOfhWaNOn-6QV}lSL15`GIcv!
zp|eJ!d<c0RY4qh5wWlb~TGEkGqTX}?dU%_`z>V|33t|Y~E<{O00VxQ8K-}Y#UE@xf
zenX?xPEUgL^x~hg?!jcBkpW0i#+_8WrNgy#uGQ^ZR+wyi53Xtl*`3*PJ0mpUDJLN@
z?{oKe?P**2K<(#e`|TjF_5T59e0dy5?Eyd}`sY8vzyCd|P1>V575{u()WctXwx#I?
zdCY||U})<E$f3TwaZwq`|1Y!M{6z2_LyJd;vi~<oux%=KXALb<59j}H{w@dLC7gf^
z1TFvn5(#!R4GdmFc(3bq3CgFp4-2Cq+ois6&Qkf#*exq96QeC<ID57d0DKAs<~qy^
zo43UT>{%)srT?~62_R-E-yvqfSAaV_NyJzys^M{9g_w$iq5xvOi3s|ZwF=@6op)rQ
zV8+QJN*aR<Gp2L@lNeXd2pf#2^0-*2)T*O!(~Y>nJrLO+kZ=iFbf+>AP7Q{^(+V8k
zweM7ckS@M|avTOG1Pg$RQ~;?4jvUU8;|OPsR={GQ%feg!f4bk7k!$EFA}4I?<kz10
zcvrLK`4Z%Hu83Cj4?GHdB&MbOJ9iH9-}4L=(t%3n4k!A{mB0LBw@1P3(b)yn`vV@m
z2Mbla*kGHm#Sk}PE4sZ!<S^4JaS?y#M-Zajp6&*0JZ(yxq@CSG+w4p1w1tww(<g!7
z&*3{o4-&)jf4r*e1TPKZ8?ia09{34?i~ReIPnbs>(Z-NZyjEOJ9mqZ2bxT@N%}ad#
z+D5e>XSwTzVDH`9ZuFtwg_iX4^=X@ZwFH2?wRL5<1C!<^_m>zy2b3SLeYNjQ*NuyX
z$*$PSp`Ab8%;tsQ81DUAXpVTj&7l8_f%X6Xqs5-C%e(t;T%37S?7dE#Pv{N2^L?6t
z1LqU1$?gLDx-JleO{KXiHl=9(3n+Q6edi6ov58-9G`n{;XXxAh*a+u3cSgt426DG{
zDL@==x=mC~{A-xMzM%jvE&ft_Pgg<2hpS>gw)1vP2NP`kyg(dG=)eEtd3w8x`6%np
zcsZSc`zPgoL|D2ujr{Vr^UiC|IM=KH{*u)@ym4Vs>6sMVm4RbFHo)t|`75IjW96e}
z&;9#<3mpE+m;|h@@7zM*VDmuy^wJ^>plWXZxPU4Zb|if7+;^Hkj>+0bI)E-kgp2>{
z>gn_Ee5%CnY%5#>nK)m69xHz5Zz?A~Uw!BoK7Rd%TFUq4w)20vC5CnS&^A|=!pg9}
z`=aLKh9^JOo}Jwqwl#L0o$mJs-kWQ+$?fqVggEj`;O^lgkk{%f58?V}`N_==aZ5b;
zqp0o%45lH9FBLOozS4W!ll@oGX;Vzzs`UkqllT!CaOK7C&u2ojeTUyM&eetRcbxi+
zC$k}kjK1I3g!WQW&oG1wFP~o%+^*D-+UU>EkXyAq>xS#eF44N|Pv*~0gAiphkU~|<
zeFKuZw;n7kIuCGmnCZkkgJ&X2$6VJ{AE}B8qlyrEKhjcH*cwC`)t^uel79r1!)A#c
z+Fl4IaISfZQ$_a`W+^+loqAV-?g-#F#NqiPb~8iG%78m@Qbb>)h(LeAvVe9pccty=
zX&BgQlw|$N&)I`0DOU(-*t1su*idU06qu8x-t2FCCrQCAJw?+q8Nf{F?mXH~ol_{y
z-q}3U!E?f;xI#)Lss_W8uRYZrL5-*SWL8FP9k#5+jXc2{J1mJ^oF8StKwKHvw$;Fv
zMvF*+a;sy{YzVoLjuI?dL$npwIr^3yPXV!g{PnM!drZl}J)M<7>|_!C!7F1SGh*Cc
zNPwI7KAtNX(O?D(r_%0FJA=lH1yVQzU!5ra^gMg~JS&)Z)6G#{?Bg_5U0t-Rbdmv;
zEKx$c>#?_1#G&?>5Qg#4_(u>bw5<d@ox%WsO!8*{i>x5p^)l#`T2ZF}CMl6~$u+@n
zeslEKr+J*W568<h=I8%Z?++Am{}9#M?R`3a<zt+sW6U?=*v>*U&mNo-Tr@L@<;S}~
zh}Y)|;@3U2+;v^O7103aqimIHmM>hhmksQ<1Gdm8got^H->|V^A4YezXdrNYSFQc2
z_8(Ip^3LZxJwtEeGN)GTi4{aU0d#u;L<LuWDdORn1vlh5UiP`uhQA@c8){1pU`&eM
zHhXsI_$rgVCAzEI%n)X2+L-XKsMHu2aER4Gd@#9>W4I?6+O!B~9&FxGd;7tdMTPNo
zaZ*JU2-+7k0)*zDkYpAJBhc`dX@;(opgE2f|0<4Id7{Epy@_1O>NEvcn%rS3H`RYW
z1DsJ-+1&LFbs(5vh<=1_W@vv@=b*@fH>{tg75Ow1#WrPjD14pRhxUml;zPY|O=ZT(
z<!7zJUA$D)4i3P55*=VnIvEz@X%3xxRp8A;T2Vyphwsy<p>1t*8}B19?j7Xh{~X@r
zy6;kzl^<#wJZ`;gwBKQD$|1L7a~r6RWyKP(sCD2N_{~6!eI}lcAWG=g-fr`~p6a&+
zGMKfp8Xo%9{CSa<6HTvp1aiV;DdagKqQh$!gk<@B>OYu2WFLzM2+L%!a@!okLI%?|
zkDl45KbKVb&ruQL`l+1OkV~G^{shU%?x}baBJR4p<=XDN(i#5=n~-GjZ%Z2FuKY3F
zpc!<ag*M5ibRpX4!j(V8l$dS^Ngw`Y$oDl~fQ{;<v>|w-7`^y!x0vi8t<HHhFXqbH
zyH;OvcI&V&4?zvVP;;%94y|0|khXZ;JZ^ror)Dok1pU;%2i-xu8aaRB$Ir}fsGEQ8
zpWU2m?CdjHMnb_jMAhry7jCH!SfEy}<$h<gZ-S51m5NY|+gYZxa~>?I*gkpX&$V6J
zZuejI<1zrLt#c5VB?XNvjA0Rj*VSz(Sn{DffoD1^q$8~DgZUZH40v{P)k!q(!entx
zZIwIoJvC-wgEg=uPd`Usa^TElm~vki{?}Ck4!Nq+(ilX0VFUFyzZi!AovW60g#VF)
zgebR(Np(Fl1D5j_LlsyhFkqxOr;2+Khm+UoE{&EIHi~dB;WxI{g^M)+x1(Hp`q{&&
z1GI;C%7b}b1N{f?WD2Lw*9f?!!`-?7zZ$mV0`)iQrK!@l8s6}&+Nq8IYAoIj*N6)~
zhswmS*bLAc<&+cTgPpd{K9#?NK9_8bZ*r)|#nZl<P_Di|UmM#qmffUKo}#v=rC@1E
z+H{cxo6{Voe}pB$XewkHth*rUpTn`JDYrWx!x=u;dY)1&4mT1t+YRYxE8{y?DH_yL
zALnGu?v?gF1iJ0s8gcKTWWk*pWQbvG9i_A|Is2XR$|q*m?&*?ye?zm!B(>RZx!wE-
zw;){QdJ>FIRB=Q&&aZr~b{IV5AL8y6p<b_o>*IsCo`>x0L(ENaWB<O}JPt_Kl1+gr
z@cz79RFOdHdIdN%?eMVwiTrhS0#eZ~#kD;R4koxU!ldV9D(k??J`7HSS(|;OF0W3(
z)HTrp%o``m)v4g^!Q}e(b0{1%?%9aVnhg%ucGrBJTq}PR4dq9)vmVmXW54uWnk1@P
zQon<{U(2m*-QWxVh43AceuXL+DBHARO*{_$zFGet@|1CH_CE2qU=8^`$*S5;geJRQ
zbExMTd(Y<6fR1g0$$C#F5uzOy+uYRcbC=@QEEEVg9wGwxTD6gW%#>^WlUJPR*x@G4
z)*?C2=2UCLd*wsQ6nCEmU{WRB+$fVQqB;U^&5NRia#TTP<2&Fq@}xdJeaG^$4U}Y-
zex#&`$SHu;-w>w;zc={W{&#iwohYet0Z%#)>SPF4VIXEkVC`O3R2x~0ZAFR^My`iJ
zk}`CPj(R1*s+VOaRt*_mNQf$3lU0Mzy}aNDV)eVCKU#8)T#xfUtg70iyc96c@U%?;
z2S)f@7qt)Y5tF|};5nl)Ya|Z<ZLTeM&k1Un!-VVM%i`a9V>=;}H0Hs|lIkW@^B1dZ
zvpa#fsboC$Aw@Z>Bx><ZVU}$lua`-&u<XGJT1&SX&D$}>4pnS=`pgznw|Wp*rqs?G
zs@f`rBzK|4)bRB}HU5ro1_!nMUYf7nO{f&eJ7xHG>&<o5^|-&bqV|(qTMurk>a?O2
zHmXexyC=}2AnsIf7J@DybpB>T?gD>`itR(J@R&Wn5Uwt59C@V^@K(PLE>|RQjK<01
z*tmM^*p}F+i91==l1xu_xS3LdK>^@3kBXdj+!}$zP$k6uK6t=pZ+JvBbKw#&3%_0?
zmgCpjgV|NSR5ADNO;2c#dEvreaWX~@hO6)HzwR|)?Sm7+i(!>1xRG+=#9JOu{_7Vv
z9k0)?f=_h-k&@$h4S9L?i4Ro?^`dlnVM0v_sy}1N5@v+BXpML4f|-dxFT9BWTcC2c
zDxvp0(1=ZRnq-IwRS4jJj2Iuu%W@$p*4llijn7tt#wYY?VwXSH`%o04Kle<(mFE{P
ze*$;G7Qd)Tk6@~@KBoC&>#;k~hepYf?7P!sw(~i;u&_V)97SrxGi$q;t@|+*a^b_-
zUvSL~0D=F4u7<5H02)O9IUzi9P<HN-fK>^wn9#ZI6S*l~Y(vptv1#wPsB*~W`<87u
zR+|TBdP3$CfMvJ~)m_Odzk@BT$MGvsg1s!dZQoe|IV;1l1-jhrzrKy5QhVyOD_)$W
zkQgqK@~ooWxF7<UaZ0qB^v<Sua1U!Vn^lR|3<<A`(^eOqT5&EMZS4+tC_(+B3hpRn
z$hhU{e4(b~Ma1O&n{$t@rUmt{>EsHRLeU-WkP|1Ne{`&cTI#YA!!HkO#QX2*287mV
zFNln*N(%0B2{CJr-b|BbVWS8}nXnhLczYUbXaBhsaSg|^3fS>mr4x)^m@QA%fxM1w
z(Vr4aCx-_nB2Ts%5+W=9bAwU^eiXahJ3~MJGYDL(N3ep3$8+?5b~WXCWBGFUm+=kg
zv`d&Q^vP{THc}Fn4pC7(Ga-d>ypYegj4?~Gp29U!2e7F|C32j`!36ZpjdE&)-T=qN
zW_hd<JG3%r5omPnij9P`(~DH}-HG;^r6hGf&1am9pfOA8@1C|KQ+x}1S=Tn%GBYG9
z#Zh7|JIhP*Rr!b}<!Y6`gGVvhBc;0gAnaoM;a>Ly^y18fGOA{=VtR1KUqy$WQ?-*)
zJyve3>)+}HoBr6Ra(zM7Wj*zB%Fu^kUZzLlUP)%QFCpBpD~mS+HC%c<&EE)j1Y%N;
z*6FuVIx1F$S5Hz{o>}K=BK@@9VWZ~z$<=P{S_Oie3%yPPejGZvurT}mOx>E09X9iW
zqh;tw#+P;INOCoZ&mI(c9yr<Wr|M;DaFHx!Xnx#wC3ht0y31qW9Q^0!v7%u_Pcw17
ztMO8Me}WxETkXYwI*UuL!O88sZe#z<EWO+#rG!Ca;cQ23`*2={(d*I-qPWwsDLyn4
z<u@J8GN_?7l#^1u*`u0KXHtmaAXI4M{LCz~)P>;{mq8H|@Q|#(40Y7nIVj98oK`Yd
zttvUkr6h=vFXvo2zdTLtNws-EKcGKWx>PEh@MvdJuOc872J=UCh0E`yYVUb^WgyA{
z&mB2TJFilE`TJ2lysf4OVG%B9olplYKA0JP`NNh1KG;f>8ijLLS!M7rx5Zg5^sJE}
z)t<E%8||XY!OknIhx2S$Jbf`^=76csV`GfNqp_|iVfD1UOs`WhYI177B@}T6q-_{d
zjZ9;0aJOJpc@s|a(6;j7X~KvkD@vV_KU(R+yf}VMjM7PWvJwoIL+Mm@D2vK=wrwHv
zvtOA8lvvYMddA9qko_Ay?>cOr7wE&4*{yP6p-5<9@3l(S5{7%saUr{1?SOI3P-Y-1
zLoDk>UoI<tNqwnGcTk3&R4898mTRVtjcAFTJE|j_+%TW+qE2q4rZdoJIMYS~moCb?
zC|rv52THQ%#DSf+kgK+z{$Xk}qVD8{_^z9e1qWR+iI*FG`3lWG=rlFC5JNnZayS65
z0c+#Hn0SRG37Sip8Q7DN-8?JN!M89|Gq=~6;1vA!8S90RRPAI$meWBxFg(#j)N#is
z2jrBI@^6>)a(0zW+|_VD&y!bQ=npqv>>#ur%ra&Z1K+2|6?m$+9AQl>W0e#Iqjc7z
zvSM{Q-K{lW7H%u>?-$f(QX5ScTrOBFj~%U|Qg<|Lc+`@inU@~YGC?J$N3cKcFL~K9
zVyP@f<C{7`YY>dywj#auimvQxx54no*T?1=*`p3|=`wvmK8xeJLFi35r}RLI66>~d
z@$<O#o><cSK@rQ5B8me56wUHePFq&MV*lAoE*h2)_nRxHn0G-QzAyZlgd$~sQrWoU
z4yIF05Oobgco4?3(#9^?Cf<Za@7BopI@r~A*jdaoP}EZAtud-FL3$xIAP-6i6A#u|
zXthlqY^kYi%6B;KTpd}#(I3?<c8Wk&j@A%S9}`Rc9IrnPQm-ms_O<A=@$Y;vnc3Qv
z9rPEHBgw*6q@FJb36+m{3{LaUSR9VLiaMb$+=r=i<O{7>RM<ciQ3ItMGytI?C>D_K
z4?h?OVUs{`Pyv8>G~Hw8(TVT%LBd<^#_PqoszdWlaL<}Z3-_O?h9_Iw1gm_yAINCi
zc3d%eEVCwvLH7SW_@y~Bdz3KsAUT2xhNNenGjx52+(<Jzc|uSr`4d*-*=Qw|X3A?M
z#Zl515pT3I%e@UQv>X9lJa=usi8LMM5Vv_ImGzkI>!R(f#ZN%%mZ_`v?>wQ5-_#_+
z2LoPs^)tDhk8U_hf#4R{xD7mUe{|WBd7YgG@wqo_fm80?!8hRmtWR?n8yD3$nCmt(
z*}N?roHMU$3@C9EZ=IAkcwB6p;nJQ@jreN49WC4;TWq^vH~>aAhM2@CN6-&E<O*(X
zl+RzXNxuoI<P;lWs>8B&WH|n^yLc?O)2-?JIGH~b`1(QLs!HCdE{hkwO|h8lrhEDH
z#1Vo=iczIE8Bx+m%|YBDQC|po(-`FmCDU!qF98)TgDS8_`Q>F$gLIs>XgP$nVpvt|
zO$S1nHXPwR&nduhx_z*q@PR)Vay!og3ITgai~lylQ|=4Y!u>?6e*a=ipeTilp9e<h
z<7+ta+Ao1so@Tt+#$mr>xJ_LJ>V0^#%$ZJ&sRl8r7u?+Tpeh8iwOZ%v>U`M3h+R6}
zey7+ucWGL^6)V&~OmC`OI^Dj@7rnSs%gQrR$JgkYT-ejz$o9*J+wBPl9O6_IE&GWk
zcb+tazB|#(cCr%$F1Z@BwOFk)oW5IDl)Jk*f&kxc@N)j<vX^Ei)Mc8BmwK8=lOF?V
z%mnovj}Bw1U4`c8S+qH|zd5~PpDVv>4QqKuUDeih(Ei*O8$;2kl+>Rk)k{`%b`4Kx
z0cz~&xxVY-bTv!yb%gcT#DF&!aQsC~Fp~L(<W-LRnYhj<<-W@`-(JhTb)vX3Uu0jQ
zN8}=(vO*?Iu8gHuTBZ)URyEOYYy0tLr+b;9>L*FQaivU->FZ|Dh0_^6=vnL)uXD4d
zm9S{7LnXchsv7HYerN3l`!X}foLkif=Z7Tsgc>XicsQrn(U5^T_0-N;KbP}0!Cke)
zLCN%UWbXqsl^(wmr0!)}Gz%JnT~h>es}!VCsk+uEMX96-A@6nIjJs)UuD?bOSZ>aT
zgtyqh^1N4n8{P4dS}>5xI;vB?DB4rUWnTzf9@3yQeeTDH_GkCjt^Ef%QZic^ll}8G
zSgnGuA!*!k>ckA`>#52$*c@yP4BdSx<2hpEE-p*6Bd~Dk7!vpObbOYx)rlF8xvy)*
z?!y@`To^*#o@6i6*b}u@l#bJgiOu|>x|5umR|*{oq|0+&EbHC0Tl<+al%HFH9`pqx
zQA1ZeyHO@N4O{(uSLlF=sY_2Y-!@s8#y^^0L$c0IGz{%2+*SVS0WI?D@|jcV5g-C0
zM_JOK$|X@FTznLXeR+qODE;`g&dPZ)#${pBgf*nAgPzEm=T6sHsRJ2l&dF92*4?0D
zWn1IwOP4>!IwliFEB2kLEUgl@^iUSdzydyyyu`JYU@nV|tJ^|@V2jIA7V24g6D{Gs
z{l!M?=|F*Df-PTKC*4Nd84=LxE|oabN-lSDj)#@^qEHKni}g3M6^U^(-S0L2{*sS@
z63v+>J>y`qSHF*hf1M@Uoi|cD*~0Q&(HBh@_%oCRPvf&g>Ti{DOS%GuP=6KArjfj)
z)~zD~E|s8`<~U@#rZ91b{`h&xR0oMo?PDx~o|FECR%f4hBE01I+~7~s??^I9(kOl0
zc-0*=G;3RvYCqgreOsu!-WUZuGD5lf4#q}KiS85>RT+L32`qF+nI@&6w7Eh9m!YPb
z>PT)y_}}N+ZNp|nd(zT+ES7FG=4Dy9^g6TV8g4ZX7q}UWjcw5%dJz4$by6oJ{&|nu
zuF|D#ma6JZM4B6-$4tJjc`?t-fq%NaDH3yNp;gs$dA?}+?MBYuBLzOm86lu2e=nP$
z*~mNZ^xpNttFZi~>G~bpGa?wzSe`+gqeCy}D1uf-#U}XMMibch-exiT9J4h01<CsI
z)6(3Uo2;7okjmICxBdM7oSE9A^6BTpp)GT)m-3m;HBj}1TUOdCVkB2=snB)J8y)C{
z;!N8Gb(bNOQC`+jHLCNqf(-wKehw&Sa-6Aig-=qL&`pmSo2IFXa=?_u_Smf-eJ>RF
zr5KOFDfJ2I8Xt<&ELz8CEW??;uYI-|9?|E|+F#|bS>)d{!lhfurjjG-GA&a*hJ22v
zMKF*oS-R0#&I@;jKS8w0IY<Q0rip=7ULhGl!$d5Va2-^yzF*?>t%`V_9?*hdafmG1
zEm?p2zEa2jKbTiPPwkfKh?1sSWpy`-jbH95g*{Ai{Cu=hKp~O?`u8HZ_-93B^LL3@
zd2Z1;1v+WLFwC8)le$fPp<V4DyVq7M5YXzy#>hboueX~G4`jChQ9wD!rBt1J)FOhO
z6X73t5$1iG6B)?uKn~_6yBc?>M!Zhrz@2fI$PbaTN^3a0_7SZNVzuJeH@>^ovVT?y
zHX}jHj{{YkBv4=w7g1Yls?$-HyF;8rR%feoRorf|-IGpbzQiHvJza}qm|V%1d^)-n
z>Oin_v{BLw>3z2AaPLdXVi2`CL3Jd9_`aR;$8JYm=d$W~mRRzjOG$+8Wvb#eLeH2!
zsp+|KTYc4pim^-E(v38EC8<sls5r6XEET_mC7oa{gr)RXhjlRRYY=@Hm<1_ap}5Qo
z$qdqV(l}~)+O%jyWN3t&g@Oa@_~ZHlQR$GmRKX`w+TxctUgzqz{N3`{euL?0fFF0H
zu?W5P3z*A6R6+~tw^6%X|6aq<u=X{qVm)<zWcRGv!24}!{?H2FOif{3;G!Qw=;|Ep
zvdHi=?JiW6rYkSOwR>r<SQSsE4Z*uAEWDNJ`TAi)0odtO>EKx50uR@{LgrIWW)YAn
z6(cPyyrYHvw6IbBpp0_}^MSwy%#)yGg`0UvwsZ7%qaA)!|8~xWu|cWCG!ONW-O~P5
z<&mKw?dPv3wR?<Skd*apsJvSsI?ldR#VI`3`<o7q>HP=fm%17`*;n5NYg)Qn`-s*;
z8_5;x8nR|K5doG`;tf}9h9+TLb{)alp$63;ZT`1K&&9au*m&+$n*}JexRPK|r*M~d
zjS1`rJB`o#WPP3Qb%pZUu8i<Qo0Zrde3O9J>R(pRr>KuF2Tt0w=nkd^B6r&Wn=@{@
zW(`4&`bl2~MH5zisL=5IW4(=iwOPnP`6xjyj90KDy1FSP3aL9aG)t(ebPBfJjZ+28
zi-jl~q_wGODfJOCK-X8OnswQJzORyXS0KxE$_7g=CGec4Wuc0|plZUYqEKwdk~ZVg
zLn8djmK(qvGogxnBMHc3uUV+ZT|s7s9#>-ZES1kl-`E;+GwJ$@<$S1kdGTHZ#XOX0
z>tE&RQaLCPqcWvh)Mw;ez`7e&Zoun$02zjkM?DVTRpi+e=4}sraN)z^D59W3W8rG<
z;=A_&i*R*y87+CAP9<2Y=jgiu8v)pUp<RJ@mh;=GKF~nd#ZOSf!ewSqh-%z3{SWr6
z=hvkUK*Jdou&UFhnYMD7j?u^yjW36Pb%Gk9MtU^@O-F{NS(?R4wsh%qy{Mk)t0oJ|
zCr8T=3`F>`LaC%e^`)7Qtr7e-_TkehqSJFtM94yNL@S5~ny#sWwS~ik{7l<>`kxuB
zzu2ABVPr&-)N-eQB_svXOWAsJe~OHBVWYAs>fEpv9h3L_JO70NZDzQq?$olbDck2`
zcv>R4JLrY#ROyplK!{=@nE|FvB}+uIXMkmcN(J=>3QSR;X-!H%eY6WRhiUtl5B{@S
zeqAA4ofv^RbCeM@zcO+;j;t!bD1cKyl(2C6s&Em8>?fek_09C>B{f(sdsTjjC3m#S
zz2JwYo^vVXY6E|YAdLSZPiJ~uMHt{>+7-ZWraFdjH-}U&woQZ6u!@eY>Ql7}%0U=M
zkDHWH(fwjH#sA?PWmXB%o_j~N8fCFKZrQ5r+0oDtxQJwV60~&K@~c9fZH<IwcPKju
zbX7vJ(KBDdSOsfL%m^Dff<vo}XF3b~u{&T@Z%qZx$=cVdkh&iwme5j7-4&zl`TKj9
zu<BVtmKJMTj3c9>jihvxGPliXbYFB}1ZQYb+SdEA`>k3&&)Ksa37rj5kBDxD@mE9A
zu#V)w?fx~7BR#!L>k1Ri2~4o&;pHwhEj580i3JJfR$HfYhz0~;n{)yX<`3g?ym|~-
zm6TVk4-OtRQ3PgrwRh`oPBx4gMvr1W01mvk6O3k=#CCswe-`;nN=ZWtOepEr2tu&c
zk(?f~azAOhC6K>nBek9g>v|^VXg5yw^w(u4u#?<tP=72oZ|M6dybE<&_*1!X?|`6(
zvVaOXvG~r*79ckb&W=MT!|Xr*8G@MdL{>MUK4b<iCfO#p3SFl>Gx<kTvV@jSIle^T
zNx?_>lRhEG#)-v|i-~2FTQdDN#Wn2v8p6{+w;ilb{M0s`Ke1dBiFzTyQu9O$!$T^o
zy?ze;7!I6=O~dcbA98;W%6d3U9{CUhDr{8qI<dt=>;BJuaaY(wtup_(;;cB?B?Fm`
zMve;RsTV{g(KG@+zAWVwfDn|lf=c`GnGOGp)I)u<wnD>qJg#MWbiiCSYrkrwWJer%
zfg4D#&Ry4(Epk8DWOw`51oIYIw;ikc9kPDE%z4dv?CEPikL2uRsmo-XGeRK^Gc)H`
zd{?c-ascDr&k0Zgl?5FsBF4HDCJdCl2?6Yz=<}j75}oe<#ee16%M&@v=X;`OfRjVJ
z-!&t!E4pfaM+|>z9eqRX{F5cPva!)jC<|J%A7TnW^?4Rl<gqj?FDl=XX5$d2+};K5
z0EP%@4g=pBv+ni26`S`l+xbcZlvAS^!R*sdYLMzGtG>d<P^{<~=M%>KMZOc;u}TwU
zzv+Tfgnwm#C`&ps&pFW9a4jy9#8QRlJ6wtv6<7S}l_)Wc1t=ZfKxb)WRRc&(Xp!)h
zCv@HSITf7Xzwknv=NBl4YVClY@#|_ZTix#*WtH_u*KQpKuKHra7==s<Bo{=?1cfMx
z8AWkRxkK&LaYqCEuJWD=7Ce&>vG{?S<$N!?Gl(kCZ$3~MTnP*RL;^v(jodvkEI6kl
zpQR`&-~`g1&qsp-B{qAyXf%5e>Yv~M=Wx+bCGZmC<IQHC=iECe(jI<E9u=}lt6u-M
z$1XYTIDu)kU}z8hS`G~oQ<wUpyTJMY9{a2BUQC@)P@y?R<W24qEHkM+nFL4OD`*VW
z-_cAxt;iT}=7i|vrDTZLuFl!Ns#B(B^5)!GPcH`Iv1k|*v1Ndl7MAi@wbpL$T590T
zFdYcBGK;Xnug9iZSB#68t+a(9yF0B=z#3?jaoP*nc-PCpZ=Fbwt71DtSd1(E@Ru|d
zSexe&BdtfiHsbcvK4y_m=4kMYD6hqjBW$!XoKz;K8L87u!bW;c9k#6cL<E%-yUIZz
zpBBaM0TMy3QB2=H@DTW6qAu&bdb-Uvxu`Qg2152>O1ixf{aeIq6*i<D9mNL?0S|`y
z0R3TWWl<!r(G#tF;?RYSxav*i`?~;Ir)qr7Fo;-weW0VQK7QgAox1csCqcg#JIOLD
zJVbY9noF%-Oz04fjPvv-@-vs_pimINL4`J(&!HgU4I((&0wQm#ovXp4|DnhI_rnXl
z(+mx-wx^|_7#kX>#J*I!F?)2#Ek!N$<UdapGnGr`O<bixQ6FdT6tY#-g;zd+dNd>L
zob3Hu>`0=m#w5xy0=NuGN)M?#A9FRX>iG1I@oHegHCBts7#m$M-Z-o!Z{Uh{gBiCN
zEsb&l`lA*wauH0R>vmi~D6G}jzDt;sv^l(|>*rtB>Km;@7L}`9K<Fd*x3#9~rG0gi
zMdyuI;-o-}_g#<he<xU7X<+b1|D)Q%`WB!qvd7(@tC)Q4A_!!7_kVji-vlob48==R
z+lJwAcNKUr@apZC$G(N%0I6Vo{#&^YrNoqg1b9WX;Y(K-1L0V_a`oD-y=!~cr2gvR
z^J|%vaBl?M-cTc~xs(gvLAdu_N^l|pM1oC!Ez?S0oGc8*@^%1P9}UKs{r(B}hd^v#
zY8RAbZIe%I%=|saV3O$BA#{6O+Eh9U!pe|uE6LZevbV!Qzlkj$swW=VCdSR%2l}9R
zXi<Ru22>yM?}yu)ddMT<K$$pvDBz2lQ5R}h-W0`Z0Wo<6>H%tjy+4LpYE6KBi|c_L
zb-6uV0guH4a?_3kT<m1dWup^K6O5ntF4toy*DW*7gO)06(Rfq(M&qqWGmvb{)mSM<
z40&DiMaH({iDs)oS$MjZkImeR>hfso5zB?oAYubtp+yFu5GV^M^^`VlQ+X~Y4-70(
zk)uE%e*q1EYR^UGEW`UKJTOP-3j3->Wtc^EokX+mODX1fE!qK)V-!C30u;@)ZuN1v
z>F39{{wBJv4WmQ(p;qkP4tpJEPL7p&h8|ZGR*w8K8&(ya5)Ew86gnu@cK9~!ld(h4
zuS|_!MN0R%7eE(glYslpZo)N8q=LHrQ{9OfgcgweY5&nRbmNJ5y}~jN)SeR6ShgM9
zlIVxxhtb0)AH?`b1}a!)I*EkyH{F27lUrxG8aI+k#~XbMRC^x79aWdU_Dsh9>$QQ*
zDn~cv6k7UrusCt(>2HcMBU@t4(E^1-RT|#cFuJv;C$*e;?X227uT>Sm7JNVU;p?Du
zH2`rFk#?E%1_(TW7-qE%Kr*Fbi;%w8Fql8Oa(!YQ*Wi#$$~2xJS9|!6E``a|MvwxG
zYo2*RUh_2y8#8rc!?t1AG2HBL+})cJHji$wdk=)4H5Ef8S{r)Sx&U!$=EH$`dXb8Q
zl<Sr&&F<3I{H~R({<iXgw}F3qo8*0hVf$u_O08bTT7xo^RzG1`5Z&-SEaeiTyaJL2
zqszs76C#1>qy{t^ojW_sQ0@2%-_*Z7i@m*8myB4V1xfin{9X)oAN9Gt3x<k&-~GdY
zR0SfDBCE@q&eEg4#9Vy4!g8fX$l_>o;AN;0GkNdIfIk!>4m2WTSDO`HrW6}a<~z3G
z)pBgc8dg3~+qG}4zD4lH;EIrp*BBM&yw<*g_HX;kdP}DAAqQU+#K!20O3AHd2&L>p
zKfSU`g3E}WKcGNsS!uZP2JHLlHW&vKQBSQl1j9IA@3mbQGlv^PlzCsix)sA1FNY^Q
z!IRaSXTAvIzlg%tIG?<#`2Elw`_$^P;vg-fIvf}sB1xEE+TpVg70e61%n;7c$pjB)
zpRa<nTA)t0znfqz2%GzA#X(59`7{2UT79qjOPK6Z3w~O0naA7)+>^sS8G;H+%wRVL
zl=S;j$lLk{O`53Rzf|uA5<{DWuaExD=ZnHE^3axpJ`#_bBMS~m;V#0e+KIcpd1CH4
z@!AD)pe{3QT2zINkE_14n@ZgFMd1dn7AC5ZW7r4klskNrFg|8KE!Ic$z3;dxWwYAT
z>$o<votAOl!~ZZ|AXPh^G-h6*->iN4z^X1gAibo{j<gpF!1Q+5oXk?-+R#eg=%Eo(
z+joM!1_#PCTgyH{&I~0P^G7UMKwI)l?AM{?+GNTM;k*C_o!&%8RGwty<5b$Vo~j$~
zTyV`+lw2#t&epYdMx_~V=X1r$A)NK@B89(5^(ayweyKC;{OjMfA3<ezj%V$=OS>t=
zM8rYS?TdWu*)iE^xX+ESjfShgDMC3<zYVEy^VK*_&lVL?`On5+`kxZhkJQ|{gGEal
z@uVE`=}!xy(!(q?z0akXG;yD^2-)kEhM+xPjRO@?Jw%ll?cL+GD4as93j%|w2MbNz
z+KZm8na(0?msH&wkVgQ#QIW@Rdq+jZ5eWUDbOEUAieLYAL#Ta}9MdH#xS9z>vYQIl
zb@}h<62+UmHfV!&E4ON1Jv5m+j(pn7AHFd?`NaD6V<05Hg|kQn2OJdsIE*_-JJ4f*
zXgCN-Q>&vZtgQkk1WEn1vR<1e09oRIs3`r`QJJ!fM@j|zi%2bc+{Ae8?&rkMYqx*b
zZo8g!$XP#PNx$JL(n>ws(`AtRbN<@5BA3&_%~haS9tZjHr&`y2M;~3`z63Rk-*H7{
z$v3-QTQ>i!l>mC8yKS?t4@7&tEXa%*{XQkuV{XYFPQYO56oykb`%2$1|2!uWjn1%J
zv9I?Z=n;g+SfqaNmXp3>-i4U{^cGYzSF+w-Azqtndb9$+wQC50Nr2o{U)la^ALCz3
zwDkvr<y^HMEQ&{ci8tKZpOM9zR&Tl>?Q8x{tBxKFmLiBR5YH3A8dwY}ivLT;-1etr
zYNJ9|HwcOlJzi)*(&)ETAyHluWuV)BSY?qJ5S7}`-!&<l?4|WD%Q;@hnSa2G*A40J
z@JC4;g*r48iN6>s0Z&tBx5_Ri>EU;u%q2|8b=nmlBGAL%a5LGkZF|xDX5YgDbPp#v
z$1FN9Ph6M3$IfG)8HT^xq*F)Vq~m;eaMk)8d=j1Z&WHQi1}xV<Dm{Pe-n*gsid+?6
z%Jo;hbxvsk^;n4V4-)W~!MFEp3f^^8C*vAs&2F(D-{1#P`IW8F{}Po`<Ly@C48+N+
zi+WcC`!QS3Tv)aJr>nM*?(bR{k?hPSUw%cB26^ncVmX4@^e$-S>)^Lx-IZ<wzx|Jl
z!0(pQf1m&H@7qa(Oo-Uy2;*<_8r*d4j|o@rf)rF7ioPdNL1Hq$3opQz{)+_fn>q|6
zrDX11IS7KP-mTxe?*B7G`2T4e{P<2Wzr*{?Ws)}vgS{$eQ>m2rAoN{FR2ha!(+pA7
zT<ELxHTIi+aNoTxo^^LG`9idd%LPf}5Me3OFr?@aiYiZOMImh}XK(9Ms$Vs5C&I2E
zxo-N2j%1{n?&5<K*59ZoD~4aj{??4p_orEp;7}XNMk)2i8drv;27KP0B{dVOywvJc
zB}zZtYx&KbgUrUR3r#eRT(Dw2QqOd<;Pa(db-h^1<x=FMgU;v<v^OSU`JC4pWVzN~
zoA@TWi!*tNLB%g}5=R`-7y^S>L>}nS=-SS$HnmV|jGXHT<mQOBOgoE}oQ$JVVdYK>
z4=t0id=D3;v@t8m=*4IlJD#ro(6&&hFB}i#vOJTl$PpHm0aKGrbkyT&uZ21E^24i@
zBX<Ko$)H>)ntd0Hrn^&~k>`V}@N0YSW+8{qvCONyfkH5bb#moZ?ncdEmC^eljvmP-
zeUp^wrsm8IwXeM&($&+92a{NsxG^idQ#iv?t*9QisgCEfAPWqqn3AJET!4^nZ8W!N
zMP;&%vnJga)Gf>PyT@No&w&0A9E!@CP9=~_eT7eBPqESZYWjKUi20i=3L`WT2^%YY
zZ=;{coM&Q3HG^^#ZyLjwS@&6{<O8hZDB-PAezVZg!f2*G@Fe58uW^uYy1H3i6}p&3
zrF6HVPA;Nl;LZ*jm8MKy+8}kxxDxLx?3PL-80}SU@3U*MGe8+nOzRG{k_w!{X!4Ys
zbSE4C^s2Cz<;~P4KhUk!u34psyc5>!{&Q;jOGSY#`)!lCLru!Cv3LrtM>Sdyy_A^J
zF18)!=MWS1eXJl^^>8^Wi<+l9T&DXK32S>IE42MoU%jqouoE?-QEru-2eLA#yk|vZ
zMpG%@e<_ilg-6&|VRW&I4$1tZNCt<UD8Kx<D6q5lM&^Qwdia!JF3?NplICSpHcD8U
zhehSPKw<(;|Iong+6Q}V4Rw+oC!U8ByQ-@}-B;?liLuQw&R2YNxi1GP0gC+UWw-fd
z4P+sh89hZ%xeR{X^vuI;3C2@Jf!u4nN<V)?Hi{~4TwR<Pzm4ocI!VRA0+F1MDzvAX
zpugI<MNP+m_z6iR;+twFX|EDAss4BR^Nd5GfoF6D?TX-u1*NaD0%u;$RLp%O>m*a7
zh1aL??ll)$UU)Hdkf1g*MZ9shtp)FuJOv>IfZ18ds__J4b;YRh7lHL~xaw}tLgv9a
zADu#WK=*@%meLf1=NIa{VSz3>QE#t7Bf@h_UikQx5_+ABc>`$5?@<09y6gwCrVQV=
zK{i$F(!drevdz84X(@{JLWiZ_%%nBAwz}ZnxSh|GPlW@fH>&ZaMrC+m74@dDJrbLc
zJXeT>=OT|ScF-+>W~SgY$ct(z3ZK2WvY6gAm!_*eRCKa!$ug{RLX5m(72kYF{iFoq
z;BS2rtra?2N7|PII}>Uy)C3Jwm(Guiq4)M7F6+8Z7*gaS49X0a7*&Z9+xi>?!F9j~
z+2{c(kT|2f?wnuXFV4Q2u&3-s+2ak^853%7J=clSM$Ihe%qr%3*vFkd=*EdfMCIq$
zDhknY!m+}ItonO+&vBMm9uyRX9ITyAHPk*RU3h;XiEC+0Zc=kZd&=Qp_Jo}TyVV%z
zl68uew)zrz?yqSAHgf(WvM0x2h9Q<{n9H<Qs~If_e3kU9sVkIwp45EZHc38eQJ+<h
z^g%OSNS_zu<j&5!EH5|pl!f*^R(UaJ$*P~h9@t3eBKYcKvi5O1fL^xSowt`YYpf!`
zwIbaYYklUS2L3$&MTxAxronztMu8FF7ee~r=;@BrorRQZx-#f8HBwF@CevQBOC#$N
zC~q|tT#*s!t`*&bmUrpnwM9|n(#)Nwuf6i;kBPIC$!4Ds!fD!GK}Gen?xN)Ufh7aa
z2@Us;yIHBm&UP(TJ{hHr{%I<HNd#n8l~5zkmj@<wLz!=8i6wGeQ(N6i2DOmT;!-_o
zK`JOJS=z%QO(2^;PBkB1I3U{_6;L@^;6qJU(oZH4!Y+a|>Fx6C5zXJWy}S21DMRW<
zo>tH4I->Dx<~g<HS8rK9jk~RkK3{dG1V9a+rH6ynsi0?EEy2jen8fsBqqBt3E=sZ!
z(7xFM&*XRqc!Du9r?kfuYU5HKpfnR5WK-$tZ&=gWzM#D1+d2KDpdu=e5l!H4Gj35v
zy%>sB#1q2@x002-#O71<{qcw2F&H^4;zmnV9kuZuL1$c|3|`BvN-&O9LCxKrqYkyh
z)kFL7mwGWW%hl;+p9g)XujwSwNAd49+OrIz2-Br#@^jzPu$mU$*gDpD`112Kl(nv~
zaWPSo3To@UFIAl@E)8Mu7O_g|5xkFr!f2P4EM~Su4<33Uvnoti#adBrsI@9;N>LRy
z<EI1Nvf00=G@3CMBa?*5^K((?M>KZX11R9#?JIuj@RvN;()GS`0v1$CJ+3-9OQVbk
z6pew6qsED4(P4qQ1H!0+$jL#da^CV3O#}6IV={4RsIcHDM<Jp~B@J71saM0Mr`nfn
zdOpQAi9t{}Us;6LVLVrnHFv&<-_e8S%Lv{3u*C;;R37$JmpGx{`Pmy}VFnoY{8h_P
z4;xcpgfYisnWpAyn(eDOJ^dFlbqyOr(T>;xBXfq|&=3rN*SoCSqX(VR*_h(&A2Hpy
zV{1ZRptG)`VQaVtBbwxWAq`KZS@!!)4OUObf#9%4L8rE*ef4?+hIgU5*T7t9P>aJd
zvEtX+a?j+@<(UE2ZfqZB&}S87*iU+!s?EX|m)JY^q2@GOPz>l^AaFe<iTpPQrf-&v
zfNWRQ_FQviS$K7T;rhpLX+;YaaD27t^uyJy7n%QasMopKat}uVR{+s}$Uu(_7OQyH
zYai@E8No<fU}yUNTdnv|<EOg>JcZAnFISE$%7gNDU`)3Y)GS95J>roBG<TXOBj<82
zs&1(Bxhx8KX|YZHOv*nydPw-dM=#;%LzWLY)pkB&Ns&UWu-|ezDtNw?sz?q$k+RSm
znrK-a%uRmG`L~sHo<xn3Nq%S)9avd}aDvK_iqm;@*rYN_H!KH}c|JG9OTZE6(v$SJ
zq0(je{1TY3nR7qttA$b1#D-pUshmt}Onj)GVlTN!*GXd1@*7=(&+88LpbbYBn?KLP
zLKcuv<t$zw;+Yv30VKi8aNo3(<7#wfaHx_cc;&g*%z_UAgav!fdq=80)Hpj`uj=$t
zF;pAHn}@MeG^z7FzUQ<Z3a!k-Tt#kQq7)?76XaXK{v$ooUu<8k>(}gu$0wUJ!IB>M
zcE2dI5hhq(1c%jF5E!_Q2gklZK<`L)gp=@2kyEcg9LPUks5yU^_xoFK;CPmWLqj6Q
zm8p*X5f^kh8K(Ya#uL}9sP?vp$Lc`%dECBD2M(klM4zf)L`=vP8)e6d>E6<}A8X2r
zE3;L+HqE~eY|ug-m;o&)93u>Oo#)~Vj$mu>D2KYSNnMWGs;-htebwCL*(OrS;IfVL
zYTR{vw*rhz5SkzxmFJauEG-`oj|UF!XD3>b`S`%zlSXz%i28h1DQ`(E=KTZrr@NF{
zkCYlMbYoY?ezQjnhe1Xq_S)|yAf57p>dR-(UX&kPeb>-jIdE^=$33|7VL$>&0pSk-
zofnD<*$>jd>z9Ifgbm;Q)op!+$||SNq=(ej)~c#e<jZp~VP0oWm0kD8;kINGHo8zS
z(ZIUVk1p+zO*j~55cNS7JJ-L(x7VSChiXJy!F#aPgVO5Cj%Y5W)p!vfc)}sXuz&=k
z{|rD=0&A9-yis<#RfsZNkMp-i(9@j{99vZD`glDei>(G<#Q(UEn3I{+HCa2`vjq$d
z`RbhBaJ~eqO}RxK&7XR`|LOpKL4D#g8Z1vI4eoD(ta<pz<=zBftQ2#O<=KH`QL2Uh
z*oC<@COQ8o&ST^rCLi0P{Z@501h6DZUu|=|KsdE6W?jq_@Ms87^W*D`3V1C-q3j<Y
zwGL`sIH<JkH_VNS&4ow)+PC}*KuY3=(B1Lbemh4!uA6o(cd9s)m870v{_@#N+wpW+
z(qW9p-sGc7tDIN=w%1y$VC^q^&s;yYd*c?k#O-Bv#E_YWxaM0kwL@#Lc?pA&?51?!
zgh>xNqC1n>s&k?tR-%3QeGURVmi>a1oWb^UTip^SbWazx7&hG4Vf=1hr#k!oc)DCr
zEOT1ditREi;jB&WxpOARkZ9+wM)0oVbm|zldq(uV%QBk0o590puED%!u)QC3hB=B!
z+Q+-w)%Bf}vu0|yPG^lEYph+X?NRYhe#&d8`QR)oU(GLOKiqZ1q(!dy+#t3?Vh8e|
zN{ux=6){(***$Y_0f0g*)&||X)RNSs`%pJjgMD_$>Go~h(f*YPNz8$1z=N=34($-7
z9AVTgL895)W|>$mkV2dzWxV{(JL^=VF#XbBYKz@?4Xxw-eJ{?T!WT3rhGQh3BbP!7
zwFJlD<sC1=n*L0A#1U(;?TGBsFV?ggo0U|)%v(Y?BwTheXvxMR{dLB}t(&U^pHg~W
zrG|O^)oBsuRJ1nE%a=~GU2`+oa3Vk7UQ953D^^NpV&r0c%4L$QU-UEkRrJ_=wTP4X
z6tuvl=lWWo1cK(t{ljP4!;pm`g65r_uRObFX1DN1WfBTF48!>snURleZH)>}qRth^
zUp-dr8GWuny}Snk`Ex_i_@$QYO+gm077S!oa%CU<>o?$vFGlzfWfef=qc*=`t=q}F
z+uiWyGDOAhTSpXkXbk<t{5!aKw$7%L--x=*h_#&?7mJ>1Z8ds-mF(LI>K9)iM=*kf
z)O=z{<Vo9QUfZ9}KIY_e<fSo9@A=l$NWrangC%1JR?2v7-2kt9J9*^T+|9M|I!bo*
zgM7j9)+R%&&g%l&&fA)E_|rOe*6z@#=}_;mPSk+W`<_-opJq$@^6Lxc<!t2C4Ii!d
z)fp1x_R_g#-iM%xFzU&O@~M35?&39iR|e>ZhYTW?11d;9oy;<_LL&hanosQKyErbO
zKJJDunu%3l+Y0b-?sb0FK{vBgTET`bos&PCbX21fY*ZH_i{%+Pep%IXihkNX4S)bY
zB~v{Jf&8_0Xcr~jbVp5)GGst@c|tBk_N(J!^FUuXS2YTxvDs+7$To@Vc3<@;F*$h~
zcOG!DOA#9(q=4DsbIK6?ut`@5d81yrh>Piuf*xpUT^xn!Vdt#J!q_o=QBj53@W>Nf
z8fHea^{{t)Rs}bn9Q`Dy(X3OoKP&&eXU{{2i-#je_v`s3c=DX}XWL%0=h#fF*Afj~
zE=Ztuex^j|MfzVmkD4@e-a$WS$$2-92p^E}`b>W~*L>&VXvx*|{H{Ni%BP+g@;>2a
z@o<#wTc}=pbW{HxQswwMQubPB-Kg>wLL;a5+?mfG_l$)h<3fCy&)HC<71j@Ry49HE
zB++9)ooBtJ)Oe+;%{Ncq9UzV>=XtfZ?C$QIeW2~XSk~8zcUC98a4F34?g&|MYYjiu
znSNIpG2j}Jnz<|7iYxepEORgJn0-HHIuu~H1nql1hT2_>wdCiXNOwzM3O)TISxom#
z`Jm5+h7&2R159i<eM(G*lLpm=<{<@l_-C%2*wveDJkk4XtmOo0wmYqR%5%m@coG#>
z^QtT)c7);>{T!|sTvX+X9Sq9#L>-Cfmn3!nFRHFPp6Y-9Ye=*cm091usR+rIRYG>+
z*jtXAV{`07$tXg@Ja+b(*0GLJX7)VCI1WkXu@4T8@%wbY_uj|-^^bgfj)Twp{eG?I
zSlYFaMnf~_w789+yL-GD{;>nULuwxzj2ZJWF@3WA@$u#!pdNy}r5;;;^pjQD@4rnl
z<tzTQZfOiz%)a$iU)EzIZsp%VV<}7NkJCiJT)Hp%V;BxH^4_ztN8?l`CYrtARfqI6
zY-*u^y4J7f{qv)x&gS@(=1%L(o|1S2j@vQV;MVaOUY1N;zlJenJju>`vx#258pFA)
z<gQ$BPOC4hU3#7&9b#_XQ0x_n%#O6lOZH-+_C+XBUEn(Rq_s&cj-wa6FaLd#>M?t@
zZDAwVFa2ou&e+km2!82NR&OuuzWIjIT`1{Fi|@VXfn)wTu-(d5r>9-|aBufa#8Ig=
z%lV9aTAOxXyy@gH9eWfof6OE&^GUJXYNw_Q^~7?>s!knk`xx&v2~A^*;F4PY_7tuR
zzXU879IMFKWUs5F>eMaoo;{x~sX2W|dr)bAo`Kky>EXB1yJ?cniP~}d+i7V{TylOj
zbK$ikVBai%QM@r@P6r|Xndv^$jg7Pw*-WtzQ3Q>!v*Q<d|F!#BIY_X`f95Ig*m@P{
zX@Kq_(b&9_>FWuG$m_$)_uANFp}<BvcuNz^a+5m>`#0M6zfHq;$N#sh_^-<sVgG%A
z|GDkP;(t&2|6EcY0(#B=`Q)FEuM2_B@BhEVq#ya;Ch>p1^0g-`=YO|9fK-#EZUgg#
z3fE&#S+*^i4sO4Qz4NJ<2avr_85<izPXUZp{0hIU=hGnO*l8zVC2`676-S)C{uTIw
zrI?r)$p+BVxyW{Cb#gC4^FI?m;O$-)+C0HxFqpAQx6FxPh6|vE9=Hdnc5Kocjwo#3
zFTZYC2Up0JEvLBjIY)z2CCK@sYTXr(3RB><XL<g&pZoe9_(=rId7i$Bx<J_4&&Rxq
zK_kH@-)V!nCCSK9aCZf?!WMYZrqcg^5p2HiCaN^QsFd~Tt+Hi=%ZPI)aM!%`|NEO?
zYBL;=u<QV44~*?=H)>K`Mx6%@AD#m4Q~Lk+%>Y6Qf8Brg<+JFxO9c><nKpU<8-IY$
zl$&3<xDWvhiR0u6U0pD@G+7R~x)<@k58%dM$<Kd&f6KBQ2!v;6>PcImx&8m|_!%Zn
zX<~ofQq<~91CxOXuJY=|P~K-QuGL0H$X8bRU~Mi;e@^#D^rmdJU_iN*NaaCo@SM?s
z{3JD8>F>$-qAq_`!9cWCkMs`FblyUcZXQ=H#Ike(_<jEUPggMV0)ItKB#W*pm@Lis
zbG1?Zw2yLmk-x+HhXuMX_VzD>a6ZUtg$tv94d<T%CCv)K2mW@LFviWsEl2+Kw9}{{
z4TS<(rQy03*yH7KW;!ozS;7LL7)=ObDeymU0|em(Ks+{;a{RAJAgl}lD@k#aWgGZ~
zUrzv<imPM4kw1)P_cdh$@1I;uEEBXAFYTC#D!zekNF=HvwsL-0wH8kMAU&;01t^Av
z9VcA2pZ)h+{~WSE9&Y&k>EBQ&)Idus`fz_v2?~g{Kp>ET?PW5VMZ8BIoME3q<_7aW
zVEmc7Hj2*|MpD$2+;Kg_=V*(>j1b-gWVk9b0`3s{tLNdZv7x;P1AKIpVQEcEK-48)
z`*5R#Ji(s&NoiMNZ))y7aocjH2tu~FJxZ?`oOLzw^7=xO*DqRZjhzwS^S!R8CXx`R
zYn%cXg|%~ny4cDqYJwEcECO8T=ZgQ<2v81Ksh&fVfl1|94f93b5#M8*NzY_6Hitcf
zfY=)VFoTx^m0yaH=YRqr50C>H=3_@pHAPZCYl-xKys5GzmQC3C6&)yP`9M9Eryn3Q
z8w+JI0QlCzw>Kw9JITq{T3T8b09E}`D{(0)5?9DWu{XbUQl%CE?sNZ0i9LXDgKNEI
zxlq9$qdQBJXzLob4xx;RbV~&Q?+yjrO=^}(JIi5IqvbKYmNg*TE8);_h3d8KzdMtJ
zDc)wjYLNwiDo*Wpb?^TvROSI`#=&CSrlk_5Q(PgU$KfisM-GQ(hf3`ln3kI5iT82O
zb)!U?pv`xEw4*%vOi?w=yx-O72J}}cURi>n8Mf)QVGo;QG(O*w)M^27m*)xM4BSZv
zL$}OIn(F^m(*N_Y;X~Gz?I#YFfvxwsbB65^6ExYWs~pTXwb%=93{x`3Sz#PA{9D=7
z_Kp`vu)bTN5R66ZcfJ~-O>CKq6%UhFY;UC$c~pAM>AH**f8TS~VIn;skM?D&FnHGB
z0DuJVF|8&f<J<_GT2IeBDLyE~dxUq8*^A!`Rt0A8TpjU^yOfhlj>5aA!Hr!La6W>c
z51XU4?)82Be1(zGpPScPwIub=Px{&*CC~w@7RN`4&bCO$J*+^k7kpW20~al|^hGh3
zqq~Oxh9WcsM~D0o&y$3A^R;IV%eC<_!Z)o_UB1w6PL{?R`B=_Pl-Eo*Xjkin%TNF>
zN~ey>vFZJ=O~pIi&u7yB3meJ8qJuq{(wG5iX?s}E;0K;>dst{VL&Vp?jk9aB%b{VV
z$)a)vMUv*i@GW_YJB~0CcIDw@-5j%k^%+$vU%?{(^26T#cFhaWz$M1qcuD4OWN?E*
zY46^gNgw6n_WHsz6oMNH@>I_sD1dc24s>ZdOz8hg(JM0x{81WK<J@-MGLBl;&wwok
zRJnDEJs_Wc;_$=>faJV^i<<HD)dXVu0oA%3LdMGJE5Cl*JwfN&<%_-?;Rc(D$GNMN
zgEQyjn0}?Y)jNgX)+z3Ppjx7h?*m|IW=(+U3=F;=ZC%bM?z1}KqHqK}qwQ-?xyoFU
zJDMYk4k3zdfCds3s4c0RrrRXo48_<;FfsK<Ty$=5N`M+*DBH=O^UB}zI?SBVG91AB
z44RO0`;Kyz6o26|bM6yds;pndR{hJ;5qMq~yX_J-+&DVQ*iK0l$>W~JuwYn1$p)ye
zyAxK`pE(T+Z8Y_U?M^^P7Y$W(s@clENGg<BU^CdP@pAb5ueYj)cc`a&FGu3Cvz~6X
zQ3(#dWofApkiR+>tfOhPVy|;x_91&A1tK}-Qr(IFD)w1ZAxk}w+wj-u;T`Q>qp2n$
z#9hjF(`UGT`K6HmlbR?aDWTjCw8u$;bN;ik!Unr}ma|2iRKk_jZ5fReIuRwyb*5))
zuq5lz6i?=ukD(B~h86M2vamz0z#?#oMSh%+=1Bqt%!;e9V>>}xLYHdd_#$CZKZa5T
zQ@$ySlO4Rg%HX)wuG&TliBaR03@O#o(OI^f(My%madL7($orSJ#__wIV;Ar{Tuv5K
zk)H6&5vl%t8CnBGY&~+N+i*c<FoY840|fh;?J;OVLPDNKhF4s@k)}ew_Ldd9p=40z
zwCYvM+)KCAUX2vnk{IHvgSFPQ`fdgb(@#U?)4;K#agW$YE{&JFt-%`mw1qrPkZi7(
zln)_C?%mp*7V!CSxnRV_{tJ24j^m#V#Uv9?e-;CQJmGzjV52v>g8sXkVfyB?HrW#M
zXcc-on0LcIspAOW$6c#^kNB1R`N}?uvXX@P^_?d#CZ;T7!6)$^y?|1SRY!TnAa!mj
zXqkdbdA0BYzXu8qx#F$OCgYe{LK}LcSgs0+inr8TQNBj}GVKT+A?gi(P5o`*Y6p4W
z(V>lR9a1cbc*3Ut)dgBTP%w)u?Wetu(bVsGD``e>C;&0{aQV0nM%>X#n0~-b&?3?t
z@0LZn6fDP>&Gc#;w?oP}nuTEB?T9Yp`RVok_4NkkBx0ciIa{W8Viw&o`~m%!q?+mX
zl0#X}&B1jix4M;m{ZCxzpU||+;F&@{jfBY{PC-Yb(78)-3g-k7>6i`U05ejs3^uap
zC>HllD$M4RllH5jFm*<%=tnMO{R%f=Kjsr?G7x47go&cZZ%>)h33793Ufuu|^{(PX
zVCzm&!@epY>OP5<`fC^fXhJK2Klja%V0P3FR6M>c%Y>tIv0O^JpKmf<3cs64h>c#D
zwR72YBCl@vz$ETiw)@Z}C$O=epv_lx7L29_zp07-tg(S74ioXty}i=C+8l`_q-`Xj
zExIzDKw~X|@-$$pyDk<|OESD`SN;ZQ&+1&!1LQffi}53juqPI6*k7yNojg=>-^f^v
z7G+pHP&At%`10Rt;6TJENkI0udzjqce)%#+UClfklddf`Gr@~|l!k}T<4Zv?O1+?z
zYQ?Kb`7Lzt=JO9(3<oV8>%x|h!ogqM%UPoaaj#m=qpmAQljNtC&vku@&rXp>B%06Y
zNp53H7Z-yP<cZcE{XbX5B^A_}l~4l_!k~`Sd3Xg>AG=~fp?k8p^hlaPFrty*;1I;z
z5nl`ua=PaHC9&-xL3;i}>Ym>?{tVtzHGwn#QT)X@y0EG?`qv%sE8A{4;_m>uPT6w2
z3!5j$M3~r7$@4AnAR;+0Du&z8!yNHht<@)pE+(VqVb9Z1MF5KDc){+a0CQA=f>M}f
z*QK0>SmpzdAPA`GsFRNM>J=;Trl?^oOP`yTz1W}qk`t~)f>5HuHA}!VFGjy|D1;Fi
zb5(pb!HV^NL6Vh!0=dI-VE@bH{7D8n1HNra386d)<k98KN9`)x5^t(Rm?TIA+WkqA
z5>gzswC3l6!IP)&NKjXQe7a?H+vJvrh)AyMMz75DSt`M?sTNywI{F9at4Ak*?W}rw
z`>EXg5a1hBp>E-6ml<-8ylOW2d{BVkqWzwBXjb(Iql3&yLU#%j1QO)Nes2(x?P}y8
z&tXpW19$Ycd|+2PI6l<H2)3u?YDoV^uJxPAR_-0Wv6)>kT+RvasI&c?-*ew^8T)0S
z^jRu`uM@Np_R^t8RDTOnfH=VFnOk1RV2#@MwY#h2O-C<Ccfgy2FaEP$-f@X(c3I{Q
zTp9F11qZ)hBp60IoBGGCpi2g<Is~hYoo>}lGhVva4jlStNPjC5!1yUXo53mQVv0L@
z1t4S6mlNXC=IV^h=wYNCn8HMvVcuwVMMS9m<n-(JTKbP+F`nq8ZS>?3Isv7p%1Qn`
z_IxGfi~8)#+p%7+Dz-)?ofi1h6gY*xy&w8IW=BA5RLO(xx9i(gvbLJYZg2{^r8yBm
z)rE4((p#>Q_iGvyK2-Z@l)MNWQL=9X&%Ze;6;gH+Ht5Igp`NTWQ7i2qpAL{y#7i#Z
z$+-cCzw&ka&?K|>2Q|CdZ}4B#tV|C4um(@B3}U1&YII5M0@}!9bh+eWTRXe2_1k!y
z)6UuyAjFc=*5%dZb%OZ{eVKff<TJ_7c*oite7HNeUAK}B$Osy}8?L>;9ws?>%03Y=
z6$UI-VAM^($3vG$B$}1jg<JVeF;`Puc@+YNf@e!6f@nI_U6c`~w6W$-J=Pk-joD51
zuLV+5BMve^7VHU_0IEWap5ktEhTH>ou8CsXw_8D8)H5TgGeLj|HhSH>!kKk1qidrc
zD7Z+_Bf$TsIKwTmO`8EI;YMznCd0rJ<h?B_$lM&-ZNIxQGgj+gwl(TosYtNT2S(qs
zmEdl!Ks37Ix?@C=b?_+H+>u4uQnsrKI6%BRUx#<<;^aO&)8IzrdEUkHo~~k_Wi!-<
zhcEHNfznml7`PfBwt%QKI>wj%8Qt13{{R35notMP#^M-%?C7b$00p3P3cy?64~(J5
z7%PUbz+^F1=IgQVP$$Wy0V$P?>*l}Wn^%N{mN3RsOQwRQHFAsZDa8J`fceEA;=TK+
zrJ#jPtze&~I+Rhkcp0dE>*Y>UwGK8?ToP6FUG&*_I;W&a2kD&erlT?BpGEs^{W9)D
z;MG8s3i9zTeaOdRZcM+3nMTF*IShod3D;J*!B`$$|5DiQQ&!}JlO7pWHBiB)<%_vi
z@J#0>=eBngCzk0G&rNx!JhJlQ94D^xX~j+BYs+{LzHSkfbvfEltNA9$p|>$+>xGpm
zVz)I)GJ1PF>ZEPvuqN4R0hlNYb1DeTd|n}w;^LLyomff1lzon0Z!)|s^DzEPV%7*Y
zwI`M%;P<`Nj4uI|j*RnSS+0W0q82}wO>s{8E{4w12fp`D>-)A9yj|IzR^Mly8^!$m
z1$e3EA;|Ab<h*Zq)~m>_P_JCNHRNtoiAY=kq_g`a>FB{@y_6H!88dG^?8B}qC|C%3
zc*3k=T^K$O_pxEAfKqV$&sVy^2&hD0&$8KOt`<wIA78+p2z1<1FSVNSC)=#;Jtq~M
zGU}}qq{Xd3OILENkX%8edcllGJ*)Tclmr#dbuP_yi6jXrlUCPIoq%yAy|zHL7sha{
znJ?9jtbqEDE_Wc7d6U-le2ap%e5iGNC|Wr~Dv{~~<@F~)ZL6i~U6i`Fr&75A{cFo*
z>N;Z76mdjzFdO#n;@-aBMl*XU+O))$6pLXAG9d(if%ZCn%20aQx;%&^*A0%>2V`!c
zUr$)&k-NQz{YVbU;SoCDL_Us;n4|+8SEENaZ{D=INctcicYU@Rj8Hxv?)-LPS@9vz
zYE6eF()s<^A4neST6t2W2u^9BrLW$Vlmr2~NX4^*2`Rl93W4ap>CD5;JIj*|4Rv-H
zR!zi>99BKWqkY;QWAex~W;K>I1JReCQjijt5-GYrkFtR#PRipRf#uliCDlG$%LeLl
zv*qW>uQ8?*2|~t@xt?^AoOstpvP+{pI5e?-m&J}xe3cybjJ`r4AC9Kj%mQ;%TV{Wq
zJ~}Y6DsELL=qVi-iX>@mZEdBKQr3YSo*2;Oe2d_-yy!s|zv&`=fjvtqGsmrtfpaUH
z(5@N@v+v&9WVY(|>Xw=}=Vb3X?_kctlooXQJD;%&1SXAIFL~mio0<KD5&E&n>|;f)
z$@QEi!lkcUEuO+AudG?ia_<Te1H}Zh4$gHn+_T0nH*~~&xkWIPq*lC|qZ06emDhbB
z<W{)^@T1y>Uy?P;i-n+=hVl>v*JjyxnoYWtGuf$E^oP8Tui^#zP<rn=hcv3uYC_m7
zs7_(P<oO)kN-*B%lfuM^KIXG(zKS4jhk6y+QKneAys0oL?mYPw4?2^uSb0#DS!0dw
z`BD8JoO+n^O9b1BF3pMxy+0I+6j%T<(-1Q|7zO+O3@FHaU|slb-|P^=+W)P|`$^c3
z8cnY0zAk?9RGl?O-y~^ze{%Xy9s=9PzHH6!GK!^OgT6B|0&-?j?)+Y^mDdvIo%pD}
zkDvS^ZD)?Ulkq+mRkk)aR^D~~g-?)A_B%aX-x%VB@c!edUxcOCSjWUMqHWn`-S1eT
zErn?P0eo2<Bi@m)dyxNg>hrt4$+pn?npYo0Dg`$+snW71PVGEe=Lr<_StUi>ff_!z
z{iLJx>6l!Lhr<)YgSiuRo2k2d{rjqB^}&SNOYJ8DI`NuXs~rQ&9N5>7N1AjxC63gq
zYv{(Pa>{uapC8R%*m@~txItu4YwEYoLHRPJkj1mqJIS#gE4}PKLMG$a>Cy5yUxE<~
z=@}G@?bwxu4{w%-{PajT@(G-KJ`b3~?)=IdTX8ziX!~o%5+3Utl#F)R)4*~b9QxNe
zhz``}#{}%pRg(Z-o=$c*9Ll+nxe{Q}Yfk-9W~Fnn5-z3~Pc^0`$j*r*90l7m0*2mH
z{x+*Kq#q8(NgNqll8*e1omO}!6SfjV%&~1&D``dw<C|5S2Ll0ZHM=YFmJT!f>hl{;
z#wigQA$zwO;)<ktCAU6W2HCb!MnZ9uC-=4qUW<JV>grmt%F7+Lb>SP=Z1rKba>(~q
zmVqSrZ=iSbBG8?lmt^&MaG^Xj7k=(E;x)3U+3CqUpm^F_G;Tm1(LxU6z+K7N8eatP
zxT|I71K1i7HaV={5ad735eP+ijbvPZj=DL>sk>IB>gRE4wZQxcr8L#OgtaUKkg`ix
zOwCB15%2uT2<oN^+`etvX*ZE%%4t9xHq4jg(9@Y2#A?se039nlklqEh-%h$KD?4g-
z2hh&NtHo{}%KZql*Lfz@Ctu?==2Y+pBjIA*rkL;2nqoUtSRby_wFy?7+-a3w662*c
zY;*|0fUrGgU-#XBT~3l{eC`P512~2*03(MQ{Bp{TV$;f5e+t|ue_%xjS8L}|W>BDu
zClQJYdHDI=m`ij(lNj?#Guu~_d+84yqVUeM)%hExqnz+g2a>q1ut07wAgQw1X*0`w
zL+(<j0-t=yw<JH^Shcu%ZFYg~=RO{ov1mlBCb4l0W+sm!?*W3lsdLTs4(e}_SHX}!
z2#T+z!VBBSyUz!#3?W-L0{0t{_spv7(jhB7AMLf%?8ZX==FA!Sr17s58?x*g`@zPN
zciC---G~lW`?}GADu1A$v0id`)lqKN)EFGx<Q!eT5)|;=LdN;%EY=!5DgQa=O7Gs%
z=5}wC!4u6`!Ncc{zUmHDp!%_eUBiDO`0IIgC90Le$AxnP)hj{<Qw>Rl&ZxOqVs}6+
zZ!%Rqn0RISvfAFk$ONhzZ;B@Yoiztb^7`U?gQc|$f`t%Q6M^fh5=z;ZG7ry-2)#_?
z$E`x_)gZO24;M+ZR-Bh#ee%LrzJ6k{qK%)sE9(Brtfq2whZ@0TIXm49)u)}=mZT4L
zO6FU$3DP|>rg;!ftKR2AAW`$wu@fHm=k+Vw3ZCXo*csbk+d+G^o<uhnee=}-bH$sw
zKjc)KAH2y6E(`v&axi1g#rSd?X~{ryJPX`T;Ru*dTqiY=fqeqPnRlO$%rM?<%rkNz
zT^igdf4M8ZJP7(dnRRXW1;xCgKiJbRk>Z<VlzwDMG1yX9u%BJHerN(K$Tu(Qo!k26
zCe6pr)=gl5g|5_4hi3xzLDqLSiz}4$v3axn#OCUnqeu-l@!`=PvwS`5!1!&UC5Het
zp~NmCDC4TaPk)@R{{*zyZx%TzI-KO{|D#N4Y*1k(rH3sa5rwIQ9^x!BoYdzd_M>#E
zljycf8R`}d88~uC8OorFo`#|sZpM)wkxGw(EC@jt5Phpn6Md^Y{FAt9WAEDOOU7M&
zhJ${#=~jy`-jkr2RsmyC-xl-lP2o^0H3rf*JCz@gC?6YHLDoeKIs{s8f3j_gFg*rh
z=aQg_5yf@#1_8J1qkgYm1xMimR(phCTJ|1!@(>(;se4}=4>AxVo%|c<NZO$wRG<rs
zxtQBDRcuw6*WwlX(?8wj*fVi{@#L&RR%<KoepQmZcGiHlTWEYeq*&n9-g?_H6vWh4
zi~XZS7Y!ILS)h2M0JE7vGu@`E5|Y`PW%p;{IvMh#Y;O^OnNl4c-I0H2xfufRQ%G`R
znJCsJ1l<kE0eIC|S0uKCy)t<50$rT%uLS1HH^Uyu2RwY$cY{ikpwYrZ&kagVciA*H
zz-{xTY3n$frPPMeRv@-}2co6RA*8pqBqAW&PaaMg718FH0^DUL%rYbV8z{@{0`Htj
zNv3WBAD|=#z|6Pp?tSomy>fDUWo@?XK`#Sf8`}w|0*SSi_WTIix=bOZcX0gIknQmi
z@I2}eap5)l+lx!<KYibPMaAD6jPLWvc&OYF?;7qN$R|Qe`}p_dN7UE0M@M!t3oIbB
z_|$8)HI1=m3HV6RbUdikMAmxsP}6v+a-;l*XgOCgDhDnMDNda|{^R$1%F#pF!#&xK
z_gWwAqg1X}_82*vOITm?fUZJ$GoNU7JcV&5NKy1Dzn<?ujpP}2yw^+ny%wzU?<vWq
z+S`pgEcFxDUfq?pCGoWg&P;L&wP^-QA}f0K4aY5fYo&j?l2nEThTRg!KswX$V%fKv
ze-e?c1s!$6S_a^bDeJp7X)0yQ{Q1L*B?9xXpWl8ZRQwdlGhOX3JHJ|V&TDTXYWPQq
zkJlH%T*s$3$xqmfPLay$^LLDAViImic9O?S454=?uf37a+!Y|m`n;qMr>V>uMZ0B8
z2Z;AhMKv_KZp$UZ<<AZQJwXNDO!>gg?r4x#YGpxfBGCcJjZBjOA5QUyXFwY!bzHvX
zg_28_9yemCZ_?huqMlvWJ$?Vmv|He_3zW~fm+C{qRU#LVnd3#wBr$MO8qNpHTSL8|
zg&)sVETH7vrca=AWgb0TNO9fQ@r7vgdke*n2{qNDBKb_R7Lqas`I_bD2DlA(+$Ogs
zOb;~G=Le-WqpE%GdJ_^wtX53z+*F4)tW7<hcLSQYF{^i5N6uvU$B*M=HJX+jxRACQ
zUYmU(zy0|>otKc$$6LN_R7{$6`VO1|4^V5L9BZPN{cG!tw3eeVgVBleJ*lm}W=Drq
z4~A$G#HHZp;`7@F#m}TuSyB@r{i_(?@q3%8^t$!!(y?DWn)rZmZ>Mx2W#N%Z>w%i9
z@|8)!*2b{kiz=5jVLiaEc0XRMm|dILp9F6{d8aLg+c8|`;BAb+14sb3WP+^@eO*s}
zJ&cQ+8}s0mFUY*RG<iXLWbmYbXv6-->+f0y)n35V#OStOlVPl6g4J8GsWzJg^X}T9
z$Ik{OgNp@g@{gn3>QXP}r-)pcty>zM7VdOzjL+x76y06yMXR%SZNhs5K2Z5z{_!6N
zHVJDxz`M1un9D?61M`6o^PeDXN%k@vZ*IM3JwWshJ(y#fRoG>D3Gb1a{;+LRR@4X0
zUvLeSqH)QU4^B+<XuCbZ2*d|Yg<l=Be<V)+$lAJhoG=we@bH|6zD{7efAIiFvM;P8
z>T-Y%BuQ5U1NTnep43Opep9lLE78syLkJ^<G#9oTL4!0QxnQD_EA}Dw+%jMX7kHoX
zxlkP=MW{K0k%G`jeAuC8nR53|Gva-ezLRb2LxBj!7upZvNEN;<T7F%6*o1P8DE|T-
zYEC%n`geGI=aZ;H)0D&VEt=EfIex*~`pS!7I4wNgLCE(LoZ0u6MYp&2?#;tPwS)Q|
zvUZ(^SrXLsz2-r7C0h>H@Q=|V==8-8+6Lb#PDXw@G2wy%`!X%H5hIm#Llax@aULCN
zX}w)Rmtn?M#5j_2C5tYaX2PJGC2ZY?kDnj&pB=r#vKS*1vyY^V_j6X0yOjCP#9sQf
z-hNrAEtCs`yk}$-<yJHf@gX5gWvoY~|Asa?<Rqk7=5|B~;J4joi``<Wa;kqXLMxZj
zZ!bJDW(3bntzM472hx22HHV1^2SP?jqj~$<tZ6%!Enbe>gVMcMU-{8?2P`0TPuaFL
z+rBkWC}olNU^$s5H{@=)g%;F!q2wXquSJ(L5_iPhmG2uixu&2}PjpWYaBsqeOlq_M
z4YA>NF)SZW8A|`ATcAw=vCGx%)+j^!(QUGOZ#bR?ACCN7Owm9<jlWS2*Ip>pZ-@z(
zsx<gBdmRr8?$sYKbo)56HFQeo?vmTEm!9clXIy&96?cDz%J2=eUg5D3_e~i8I<w55
zqO#m~c~bKC0xHd^W<ff8B>j=^DfCyT<E8nR(Y7_1RqRHgza@>Q>7*gyOb}xCB%A(T
za$gQ>1s8+9swD8tiS&szAK@T%Z0L_U?Dj1MsEZ5!IJy<+B0hrcuJ&GSmF%<=EZsYv
zm>In1#MqoYIK}pDPyARntygK%%&4rZ|3^?pJ_2KVybDMo9n)b(f!{{8+0mbIrUgLT
zIu^ca0uFrG1x@Yq$a;YB?*Zt5n8oJ&DCc5jVO`g{bETJGGwYrYvx$rRbR9{q7~E5h
zll)JiMvo>X);s}_VupjP4K?hz+<VtM?wO$xFmkyUJlvCql8H{i#v-^5<SJ^U+R3Uq
zckSBdH)8FIk-^oS{AcYiA3Q155$ye8IAtFL@yTRM(w&wNXm``W_89MtKST-TtcBqJ
z4d^&~C31tWNMA?imCEAn?UxF>BYBHQ=!#Xp+MRcNrq^Acl@lNlNluMJ-W*1wb#^Uz
zPV1l3?6EEt&U<wfb5O*gZAZzl<}@z(o|`rbXyybDYp7iLCnZdGn{NDzs20$N>Mq)9
zSPve}+?l>|+f-OdOaqa&0#{mz;%M7G3}=VBYp?N5_F)c{I5!V=ev9^e%KL>pH&zFK
zYh)yBw2ry%`C-|lC$SZh@VjRqjLHULsOechJlp3{7yU-D{+FS+Rg#6Xv`UFvrd64z
z|KQe^*!RX4_L7GX!u9;39CdH34VNH0+rcQ0(6`<FrVFo9in;=b={0w9RzLN`uiL-9
zKPX!x(azmX!NcQ@w{R51Zk*yG1UUApx!rp9j6}U0qxVqExE&9TQ!F>*)n*=NguJS=
zPf)7rVym!%wJFrdK4aQV6Z#A*bE>V^#p)(NecSP^2s7zZXP;))XeYcdc)tmNREz=w
zY6b=d(5^E&$|R*LP-JsG(0c@Wgfuabt<LNIt2+|f<dd>*&&}=v-AL?~1-sO_R&U!$
zUIYE1t0Iz*H4Qk1GOOLJdLP)Dve%v^GFBVhD2Oe4<OiQSii%c~huf8yjv9d<kmTWQ
zP_@Ex`5^kE`|#FJrQ|up@I!6M(R#x@1%2&{#0QztqgKc3^p3u_oy>j<;*z2*ij+g1
zl-Bn;0x&o;f)56PK%o6!taDg~bHBRHbS6#y&k20B`JN(awRFJLL-Sd?ehWVdIaFWe
zRF!^P5PAKb(l44J-X*nySKPUO?2eFOP+4Uv500}svKg`;Zz$W^9N{B|cEKUwmb}+5
z6tGm;usc69s;9F>4s!?AUG)yK<L#&dG9RQCzGW04w(u|}BN02EX@smV(GdP*qFTxS
zx0O=w%K7fj1MO;JLVsB2686I)*YALw1PI$dN43lwJDAgFmGkPaRG!c$Mag5o_Z&WT
zXkR6JWGo0EJOD5R|GST`YF|8z29-fd2GquK#w3fThK(AIUd(FC9v5a5rtDb()yXDG
z(lY{HB4XuqW~CH&LJC=2<@1_w;A&v5egSI>b+O3yr2ggl6|Bd4r9Jx7^dqn3Vk=CB
zUxaSgElrEGF>%#4PJb#djrSd8iMMjQ9xUCa3VBBN<2iGDVP)q^v+25~wuXU`Z4rdz
zyv_+OGDU})vQDgqZVw^X_*V@Ntf-@p&o+D1q1f@dmo$Qi2Yc$t>TxF+zhm62zS>R%
zft6KymmQKl-B;tlDh=x=W+=b3lH!I#L+WqZ<e5nd4+2AMcE251AZ69ZT1Lq)ujQKc
z>N<af!6(M+?a?_019cy3IIS_dHIO?}vCr16v-f$-QJZ}CI>*Po*5fnXY!)EWL+@Ii
z%H#_!Nu;`;#%H!+NhH(ksh5^~x;Nys^Gow^(4Y`-8g9`cWMLBC+!-dRvqdbiZ-W3z
zJw|s)VUGZ<TwDc<1bu1LKK$%~3L>97h~Ge%bn+5`Tie0ZT6ri;^)0hvAR7h&vpHUy
zuZd#)?t>8w1Q1U`&Q6I3(boHRCe$uNPf2Z)N@)1_^W=+#qE{d_4C_i)%WtqLZW7LV
z(n^(x?p5aSy_K?i7Jl<3`zx4S`mxD^qcs4uZr&@sUwJbG%>97q^Y(pA3~^_DnyhrI
z?7XE&(&1X9(){~78PDzQbAX9JxBc+}8CW=%^Pg32ar%44GsoL^ryZjcrmuQ>A9&t4
ze5ceTCnn?b&Y-c`&>;aZeRp{i#B6QOC6u6~V4#|9l_o#G(hyyW2{E3VJZiox=KD!-
z;Dp5!^7IQ8o%b7Mj`#fcU+ExHFkjWFGh-o_Et#wDf-dYEw>b`eU+I{SwaC-U%<5FT
zBXkgZnJ6Wt4h$0iS<T9#<>*?2>I;EqPURwQ42x=#QO7tBq5jttATZ<ZVqIvZ^I*@g
zbm5|-=`rkg|0Q=w%Xxz37YysMka?xY)jqxxo=H$u`!!AD$1(p(KPFzA*=I-b@&EWa
zPk^k~6%6?`9B0jbl|V}|BT#Zbb05cC=yg|lKc|mtwU#cgyu|wJ$|^P8Wq9JSx`JQ)
z1*^f*w)sj=xX6=VqXO2&sqE}~*9v)WobbFqKfQj>F#kdHEggR?lG!A)se}6XR?U%b
z54*X|v>&harT&^T3h4vqtIKV-%(v5*1Ds=ol-<2wr}^6jN3CT;-x}=(&u?zn?=_vF
z)J<n=B0RsKuPqIVpghqf)Nq&)Bf|9F8<i%7d2C=vCid9K>?|0%#wvN5y90W?&7NN@
z+hnl&D8bmO2ryK|8-w8h9Eq%gKG9wqtfyV^-T0i(WIcTOjhO-S(EWn-JW+T%@><lq
zeZ`xM#?B-Q&-WZg5_2r|#TB-p&BDUMM)NgTtnME;Bq;pa{Jo!=Oq?>i7ef{Ldpz$#
z-!#=vPhk@}S6QHKT0re)xMjWFav@ra=ykPlzhye;@su(u7T)5Qr&#rZ8_6lyjiY8@
z#|c~@O9XDSJ?Wk-;psWbVU%n@vv!w3H&QNP0x{6t(!g20C<sbc0PGigpC8)m93$QO
zX9-+n-X@`z>H~zHUG<%|6Rs7r;!4Q=b=&8eH#8-R4;FrHViAk5{e1bC-6O$F-W;7C
zrTga|eKTb=BdnOuOgnPSixB3DTf<N2uakV-BQ1P-tpLPO#8sK`GBv%O<4)OQ{}gHf
zV_}w!5bD;X6>ux<Ogn=L@-x6jaT1XpaYte6nwucz;KkdLkqnPjrvdOI+0+1sua3AF
zi4(B<^PTJM?x^*8ZGaGy+aGPQUA2<38X9$`E;E792s?gav5meH^<#$rrQAwHOrIfY
zJ+bCW;?nOmmNrH-`NCGvOfP=COuGr2fkZ`Uumqc<H|CBTKG#mm0TgPa*49)A8_3KG
zSGI+6B_FU1M|GrAm}MPodZNLf`*CgAu(_}Ct@<qc#eTj3D=mHt?1_wBOUY%y-lGfi
z>x_=A{hN$+<;%DMx{ecVc(~mG*#P;I>;@T4f;?ZWMO7*+V4;UVcjOOVjjNHhaeL^X
zp<!a>7Os8|2}&3;?2t%!p#tkyy}AHcK_iG#gLS~r&xnA!XOMqaNJ!|nEkG55vuz@<
z8|oj{)KYZ-Genu;FkXu5szw-VyU%dmp)zAuy5ag-9Sb+MZhOoMlo@m7s)hR-aBl|h
zS{*ZY{YC<A#DE^_-~C4d<cNNBXx*JG)`UC{Jw9*<0EsZ&snYCW;kQltfEvi%^RJWK
z$9^@)jk;cU?PZ;LUwz|MV`6kikkT<}3&GC$BCRz0Jdshmbc;=hNrJua7a|D#%fPeT
zubXpuy!Hjhh1q*lGXgb(Nn4UUp1RRwwf&AGDfdI8po<?omFS`m<XD;;FxG(tg6URE
zS^R-}q4j@sjxK%0Xw1-PAh+8#gWjvlPRloSjy@Jb^*{0Xd%VU4|A7@X9=<pr3A&6{
z=#WFtn;XJVaC~Wr*}3|~2;29@W6N~GZiG$_TQrpTkf}})FHZ}r#am3ruVcO$+rM=R
z$R8_vsTLJw%xrccxCv=T2*CY;IBet`oc`=bbY{o};Yl(oM=#B!4y^Fz+=d74DOLdm
zUaxL>bT|`!sO2SM@a&kIPG3;<X1b{K?2zQkOUNTu@9{Y1?2VvPF1oV5{)x*eeJ3zY
z>L1F@?>ukD8t}LQpr9Ix+%dHeea4utpQxK1+~1M0D+AkeOS2vuQ(jtIw8_+yOWxh7
zAq|IHnL38_*NIA1<&5XAPG?N=-S1;$TlxB{AT=gyhmgfwNYR)Lwf9@&+uKp-whgrU
zqZ6qTo?&urR}P*u6wx+usz*rwLHV2u_lJ9hGU@VMT_(3JrAb}{EvnU8?FN;M|K2s7
z_;Ty!i9qeFo;Jg4=dQfoV!aY}&L}}54U$(!QIF+QKprsYQ~)mtaXGhoe+jS_DmS0l
z-AVJ(ZHtn$oZ@#AFmV=~N4R4b&QCsA?JWmRu<`AW&N4xuS2~3i7~%Z}VeNOslj1Q=
zkr&Jpob<o~KbFXfT~ap4;*8S*Jcli!!TJEhuspPCVPU~YW*boN58bLN;;i*uZNGfw
zu{G>m?VoDJD$M3qAHg=`-FCqa_f<#<{N^a?@h&ZJ-f9VLvU`;1f+I|ah1_Vih%X%4
zJkB9%i4w-G4kf~1NWTZ_*Vzd}_uYqujxxshf;skUmiQx8BfpmzRjQhX=ON7-%pX;{
z^mQOx%#u^ShKUTHvW)iJI?eHKSolTBvEKpZ&m7Ek9_jnfT)4aS7xh?b$g^^d8UNc5
z`Bw@LZkVM*4PEe;C8dQ`JxWT99{ja-u^_&@+NZc!L+hxo)3sGplW3{x(?V{2!f`OC
zMVb$$l^75&_}ilqGRES(Q-+z4&tBEMWm-oW;J7p8eESg|Wm|RLtAii_QgPPM!91*&
zHriD;K}N&<iY&6PbnK1fjamDaEr00jtJPjrU5sF?T&Px7C6hE0?r*pnzd!RZ{#W;>
zr}6Bb_fKn}Kj**nOMR3GS?G8U$*t(va(-JWdt2mH_NO<T)zm9(<oB3R87pIWZ`j?u
zHe=U5MHF!~viIO|LmBb|-<@R+{k)<hdE-I#XSZI=E%cz|Zv~tU-*z5mkAqsimJX<L
zst&FkE5{CO=B|Z?HHmon<!|^M_y+7RC`0wf=$q5q0rEbF%h}dC#9Ds6;dkF}NgUkq
zHKWO|F*2b}S!`7mCGFB?O5aAd%C%4x*g=tVgXfGttX?iX7q{?2=_32z2lF{`XrEyw
zbX>?qlDxFZPB}ra#B$4rU+lZKHODA0*-=-I4Lj^a0<G5}R}H{9JA$&vv$GHMlSvEy
zZEr*Rh-fH#qlB$`6WW00SEXG@dSKi0mW6QC)EJZj9mWy?%jzRYFW>5WjOm^F=Y^(s
z?)=3QRJ%)}0V<ONd}@5pX3IuP>?83LmCmD=ANWBP-vV<cDiVc-SS!-})0eVehV@(x
z`jf_u1D<zD3Ngr_@~7cm+QZ`Qf|Vje5&6qGJxXMPck}z2C7Wg;m+zL_;V)ActkB4N
zJF4L$GA(gsWIi3NG#c9x8~t4@iu+6M&}O(G-1DuEThWV&rwp+ik1`)`!UGqI&q2Sd
zb@Wo_lS{V+q^#cGbL!YNO(40B=HqW~GkZpx<H>Tt9{(m+Jbg%Cd;}DP3+d%qCbW8v
zpIS%JFSe9TW9eMU1T)_WV<lxv`^s0{>=OY+0uScb2#42)stg_cwK6*_OTG>tqf}8>
z2kLyXLtE7zd5`dq#|WmT;xwrNPHCQ;FGsUW`^sg9Ulm!t5t}wsKW#~B6P#(4X9PIp
zAh~rd+Nkq_x=xiz0YY0Vca2x{pu}-Ym)Kjv$Rj6g2c}m^-~Wj76?r{q!r$i^<w{|)
zb#4S-XfXz7C`ixjc)7gAe#UTrI`=`%Pem);@sb-?O72}3EKY34?CqX0EHAB2MRsB!
z$c|wJ*hFB_k*`@`-tx3i>F~W+96NVtLTj)iwjLVgiES{Zh16S+DL$$rP5hAI!D#Qm
zZ0U~yK>z|LvW`O^ModQ}EuM*v?K@XF>r`9d@FcszWHR!$T(K^lQ*@wac-dy*Q`6X-
zSw4YNgy_>tSywuI1GZR#-+g(tw{JYtM5_SSLW2#vS&q@)({J)BW-aR}X6?36(OZ69
z`xNf2Gmka{iM%v)A8zIsw**~kRX#~+=ZwqQZOhe`BxsFBXZ_(LVa(`l%RTt*J6o7X
zL1j9p*oqK8Ee#C5Si!f5uaBAV(~|vT{av$)Ggv($$|!VT*%QI=H&%n(Q~(e>T7-l?
z5Ez+9WjP7DAoy?XqyYelsAyWoD89VhBmqpI0nFH<`g$v1Z<J5?O`i*NUQH3q1*e=f
zI7V9bF$ZQ8DA7&s^X!XtYmH|x+hn%}ipx7<P({cA)fzLmEBIs2O?1}7T1M(xS*?&U
zww%-sFa>fR<~kuUdyRcy^4?n0&&M$K`oqD@!(64q^*FPJ;JS&BBRJzzUkdDCy^Y_T
zN<km3SoJ#J0zc5^aG0DsdF`aln=kz82Zx?UsTD~^NS`kY0j)Ha{WIBCeb6tR)s3#)
zrkXtV(t7cqoCK@LO4|3T`2=6U`b5B&<CB-@OT>oZz2IF?NGbv#ca)YtPe~Dvx46_O
z7o*i*%PhOin`6~&DN^1NBM~C8%bKkj(g{snCV7-k7A>lG8cK*7EDUZC`|L|)j98_w
z7TQF?hnpzgJSW=!UCOKC7hy>Tx{mWIgNGtY)syBpMl`i<xK#Vv3hAe9Rq{P%WK}o!
zcQ2&`+~<N*H%<|99us{IC1xUvZbqn1OVR>;Kx)Lr_l^Ms3lB{foF6yRCi8L5B0tKo
zeg8T_;-2}8?kce{mzhH_`Lb@|S5OaeW}^3wh+dgNK<qazvDg#@lw}+dj92?EhlRNK
zFq>@KN6y-OuY~Iy%bbMCfC-NhVmh9$58OwEW-yALbSI}{KFjsW`7kg!aTJIv+HeKd
z-VxFfwCAB&O^|R`rc~VpMQ2)|Kj>#{lOQv?Iz}r^Tb|1<%XdpXa&=au(~xzd27``C
zh5cPVc8SQu-}e^ouNs6d(&l&;OFBfK1w4skzWGk$MNco=@8a02BA~$SE!M#Skck;)
zPmOUPK|%%Se=04|=|eNPFb6U#tu1CUD8gH9C7$88*ZW{&U-OwdeY)179zB~%vU0vP
z&(3bfEm!WA-J&SFDmatS1sZtJdlS6%*Gw?o%+jk{vSxP7joQ}Ixuv_vLkS8$7(eD?
zb8t%#TKp@kM*Qd$44D+L&~0WD`D9o)_;0_v<tzpvGRA{+;o-W`$?f{ycxZxHNKpp8
zcIh2;byz`ZNr!`&%@x?GVz$xr_qjnu7j!c2!}Sb*bE-#$=T+Rs2j2YL50N!pN3W$0
zOSP%!%AkTnn9&?tiM=@I-Cmv>=g|hEqS9uMN9|+!W(LuS61kuLjU&|0zcI^XX`qPH
z_@<o4ibt$D=yiD=XSV5<pPp7Z+I=%B9l*XM(N%8E7#l|aM4EDXE&V~{5tl=52;6`Q
zrYHi&e?}vHJAX!fI;-}L;b2NKG8LR5lGMp|`;=W{hQM$CKTU~m^VIx$oVE?|q^%B-
z^oM;?BRL&3HSV55r_YFnj6zb^a78j)g^ie9?QZIIfX%qH8IYqE1Gx}h4}cIJpJ)SH
z?(g=7RD@=M50YnMH$Q^2K4Oc?Ar&W@YA=-WCihkevA>q2cAd=9X)$5HrU-P8m(*1p
zNuNyTz}63_ePLbXvDgFS@!AYlM@DExeeX#o_r+_!cUh|DGWTzs6h?OI8rd=~&<yZ?
zUf~0BuwjmGv6^|4&wm}{m3^|xcDaxru_m;)QUy|S`@Dg175Z?TxZG1F0uINvh{wHb
z@b}A&hp2$mzFD8Dl<ky|9IQXRXe*L6l#sWzFZAnej3C0lAdQtZikk=5oa$xh4iAOD
zA?WlBbjI%%!qmCu{Q30)Ce$wsgUM0}^QE#0+X|7I!^3`}HM_Mhuo`8ZV@Z-ZcBz^M
z1oLSfWUXzY=Khm!%z7&;79ONuFLvj>6GrJTlAQHbzePW@RLo?Cjls=d>pALS9u{zP
zI8B~YR0_#hc8_&@H2!k34zKp;4DY2Ks{cPH#b)BJ=U5e>5R4(Sx70l}{xS=YD|35>
zYY>M1gZC3m>Y#a$^;WjLm~y_;D*&{qYybq-`H~xsT8y7I)+x3heNwASRvpYKlRypa
z-&Io0qoU-jt(SCD4IB)_L9QZ-vF3#dD9^DIR=k~8#<tApi$RnJz2{E_o~#kLe&~1+
z_kkrO@0a(a<j6%{=jT&1)erI9)1J`s_3b{KY{ig+(C+!waGLJ09er5H*E85e!5wDB
zl8$SO_^TX>K5^&8wq*zqZ>c>Y_g<*zg$w`U>8P$WJY%48dbL~%b$A4LzX&=qwz*Bx
zct(ATcB}{DFK%9jPb$r=(Z9sPy=~%{>mDgG4{WQ|b*xldC;0R!$dvW0f)*O`1Sibz
zV!o^mgCd{Pac@itu#xIQ@K5kNSB6DNiRyAu-!~n&W%d7>@f+apw5>s}6mf63{%IZ_
zl@ARjqoN$=OgIb(V~12|JVQutx{V`XJMvhD$G5zhqk~*hU9moSGBE-^Bbe89_-1xu
z^S1123MLSkA4eO_A5yhPO`yjyXP~wGbUDfvB@nM~0PEdgNK%~Nt;Ezw&xr_Klsl}j
zF8b@1ay)HKM3|Ap4=r+}Ur!8ZIAp98u|1$O)!a82FwdaxJyO80``5v2l0~ZJRHecD
z%9D~BKkdWTg7<@V_SA%NG<4gXWrlyCnuWZT0q&U*Wb7Owz-exc{AP>3s7_C2E16C(
z24$y;;`!ISc8CrLrD4M&-uwmnVdY8+=g+MRE<-1z$MZlL3L8CbN%IlzLZheF`_=hP
z-?SWVcDn_a85EY^5on&XelKYuaLVp@iY4KrG{{beX|VD>m|wzH&5P;<C@(kx+97RW
z?%nb_31p0U9px9IO-H%^<YS#5{b4tCl84UDN_J1@M+dMMZaF4G2L)EIjsY4DXJwlq
zR!1{Q))lAt%g`Dc8jnxp2|RGJqW%x@4OM4WXp3z4gN!tKJ@DWSV3-0vNVUmhWllv_
zfEB^%Dbwk=zc6usz!CLZOXhcGcfmDq#<nTQ4nEZl@RJ0^#Pr{uI#;?9*%V|1C80~k
z-jLEwX91yfeE{rOiae&5@-WXp)wXP<tHNbs5>Ts*8*S|>MQGw9{P|f~Ga9(%2UF)#
z7m;ei0K9n)kea}3*-d<r%|8N;J|`T)xuOzqh^GRiy0R5+1-QszR{(q=F9}V5`N!#<
zv?sYr30e{0fhM+ebv}qoSzZY{{Be9f{MmlsrFQ~`q07?ih?ErKAxqg%7K0xNqLnBG
zEEHE-?J8}Y`G$zbD=k5pDjJ%7y(51Qnp`VKKKXD<g*jMHisKrm{L<oKQZc`D(MIee
z(6X#PRH`A3GL%bGYi3x=$LPN(#S!ku@j3|lmq+^ZIrT@i!H=25c?`ynY#r|?eA-=}
zs<xa%^khCrGn)x2EHq%Mm}EvhebkXX8cZ#ps%L;E4e0tkW+2A#V!rF_?10eAzmA+6
zq4@SK_fNd9V+_VVhbyqy!~lq6+A6aTQ+wX$%tT+W7*TB(UCeF*MF_M<mk=L%op@=w
zuiSh|2mw@oI>iG8H{THsMJR#xuim^~X^w&Y@PH?BiWK!nxNsYCxiXRdU?<T`=moZr
z72ifiKYTwv<T;Xph1<o165X2LUt(<C2g%pzKv9|rNhyMDPa8f$Ekf&-hnzZF5q-yt
z)to~IR<Ql8-7qtY<h-GK8obQnUGfDl@6LS}#K4`RAuB5)Oo5@QKY)Z@%zmJ}7@Sif
zUv1J-3H~wlY>iPbsLL8_=)fUjM464rfbq#N1zJ4qmup#P*S-57t6BCB=TbrCClgxi
zFml$T_u^e9=vl1+-!m)5Ez=Wo7?bUfoZ}K!bIFMB>a}{+FRMbB2E!iK^)B<AJtsAx
zH||Yw6UOnr#<%Ja6@+RBna_UXQfY(qgp77x^<<J_qSh(qLa19tg*D!fKQf^&H8R${
zdh!e;=Oz<JXxnGwjOPzSQ{z~_aW&;rayUo<r+HpWMg+UW3Zm!GfBvuNObndeMlRIU
zW&)(jQ4yUTTtl*dH~~WkB$8~OvTLVFxtJAbqVthOtn7#zsO#E!y4Fmj+Sy!<FK8et
z3zma31Ztg*#|T_=YJ4wnqsF%B6vmQ3Vv|HLz_tGS9YQ!~9M>3s7d6$U;HcCR(E5QR
z3j<oOJDR-Fn4EJF{Dru<@P~!aaKvZ`05}QgZ~3gzh&kA~Z(ITrscC8Be0L>p+OUJg
zsm*BaviffMF3&&M$dzpYra<}RtVPwU{vp}+6Y9Wp0;IarbU~@S^*T6Rmgl@sEhM?G
zswfoNSO%_3*_s13M;3B4fB!`B)I(}_*pKdQ=VS;@;0M&I7j4hJxea7NfHveWw&TT2
z?rdK#J2!ZuvVWeMF{2zGRm+3e>c0V7r)0?xgfgW70-#<(QDOP_)zHl9Z{`IpWlw6~
z4Pg!oPg047fDJqy*6huZlpn<roxnAp)Gja-Xi&d+FcF+~OP%@1IuRTjZH$IHlw<I!
zI^2u+&8rUS!IpeUrg<<Wt%b|SSIlgUqZ)#<IS;*%Joa+4MRDfDjWI6Jk$TFcXu1M*
z^ApG{2tItK#l=%m0+hnRduGwRXLRzN@rUZ2K@t)?#|9FCKgE;wf63o@<yyV0v1i0u
z0Whc1vzE9Rfc8u~>MoI|&7Jzo<HOwV5qgC-h+O0)_$XM|E!ZW5A@A__oqIR22c{5M
z<qsk(6=9N<(9mu0b=B$Lg~q+-yeHr3E)kgav~qd$_Mo!bcSTL4mrt}A${ySiK5`G^
zQ3`tIRe$NmgRN~rN-*t2z(fNCI>d@YK+8wB$o$kc4uW^nLC8?LLDMRv?vB8?qhRKq
zU{FM77+w37#JDnQ!E?gUd0AB8vfZ}00ddIivgBhuYtRe!af!#O>;jU<46O0J8Oe~W
z{Jnet1@Dj8P5FsRNh-R*1z=FaZ=YCjxotANHr3=Qmu{5T4{#Js+A;yT`N7~#lWZd%
zN$L-8vfGo|*=m7n&Wa6xNY{U)Pb7DY4bT1lqkTXsF_jV*Ejvi|Pu461QxI%<b7_N>
z%idW+-?{R?;`}pAFU%@j8@BXK$JZaEz`)321Pm<r13`D*skq1fS}J==nfhp`w<Yt)
z@#T{WaH>>Sy`AD6S^(Hm9rEoOV2$*LKYhBQA!RY2RtDP8R{vJ&_^0O4<QP2w;meMm
z6hojdc9nWc2^_R2Ldg?U#|s55IJyEe)A4`oy=7QjN!u<8AxLmSfCP^qK@;2?5+p%`
zH0}g#B)B#ZNPq~C;O^ScxCDm~Ab79_8h590m$S&syfc}Zy{~=Fb@q>M@2`H)eX*)*
z)vBuX)KgXWbKe))T>B$)iWK(zQLshxJF-RoUlXt63<uo10?esJ^l#%i`WSU{>)#1w
z>z^N5*;p&HyQ`VIur1HP>4ZEyW3ZZmMSAO1#>(D~l{J{BkR+7SeNTSj`qo_Rf#Gk&
zyNY~XkFQBGUGYLJyu@pY^G&@GLSt8tmU*)w&lA@>WxlVOXYgfF2sNT!L&I{km)tVa
zyg1-|?&i6YZCF}q!Sr)-KT$97(+fVerKHo>lgOhl9amc!f!%#!m$7*n=qJ8i2bNdM
z1PVgZ+dL94Nd54mZ)6;p389Ja&7!1I>^ux8XkRBr<|JgUscFPe3V4l1=HAk&Q3Rip
z`)-&&PCDGRbC)ecQEp~$_TBGwtC3u0F*8oGQXjII*-uq33)ZkQN<>6r0tWB?KpB7^
z!c}>aV6N-OMXQ?!Gep;H=I+JzuF=$LyRKCe<j8C{DjOMa=KX{;Sv|$iw{RjO3VN}|
zC;hx~$YR4kX`ghKXnIx^SFIfO9v}tzBi&27ae5U@bx=2Fz8;Ln!*3Zg2#~~@^&-k2
z4ll<+M4on(cN{U<p}Bn9ceQFKO6NuMyh(Wyf-v>cnYwTZa8N)~Z{C{_t_NLJ$T~Tz
z=CqTuVH~&IMFUVwy`nMz&|V6khSu?}Uv<mZrvP8WH<lFyu8o@|97fxvir5cPL~lKM
zN0@2GF*qAXfUKy0A~+>f@y+YOyJLh1*%aa-R^IB{(C^2^&`Q<;)64rwhZP0VAMi?n
zfZSZw+q|~<Peb;o$vATdq7s4dL`ax<@c#6*z#UkZNS>O94$<!T7xm1Q8=^hjX7X|G
zlgG0Nz?mJ-U70N-&V9{$o~v@H8FuGMW2$0J?+UU$cfYJtC&S~Kzda^6fm|1RS?OgQ
z@kt+6PF0y>`@Fb3KQa4pXFM!_Ocq?;Q=2T3`Q~=apOpWKWxGAXN>2l6mvUBO=XjSW
zF5&OfM4+xnw{q7#(e;}QdOoF_UODREOBa8R8<PV<AvK&9-*`|=yz8t3z!_#brp6)M
z^Y}$9$AUuRe*Dx~7NE6||Lxm1MgKeIwA{TbxnpOBU1Ej@SGRm){zI9l<_}typjS?x
zv40!vS0pIsb<_Y?24PL7`}9jL<8MK8bXeGElGp!9bVAzk=8~g!>&YqYE33z2V(5Ut
z_7%&;UkF+RW&nyjYrR)Zm<OWMgN7CEr5gavL5k}yTrc;YSX;A6XeMxVRoGTsEzb66
ze`OeXlqx<TD)NepdraWxJ?j5T6pa?doaK3R6@k6{BlY0+^t@q(WvNZP4K+{@ROYYL
zFvRv=Mom`$ELsdn{!(_*%`3JOgJ0QBuAI?<77BxW0NOkZ<fHf>6R6k#6hxGK)-lpR
z#4#Sn7hl=9Ah-WHGfU1RAjGMqwN+cMBfcY!Lf<VFY`XiAyQk<$z?GYwe1n?KES`HT
zX%wrw!lL4NsZE^Cpmm;EJkVo}jdz>|n{EH#h`2X?1-+iQ+G9kp`z|-u<E1o6c5J_y
zqXei^E~jg8m#J8q{?uLg`NIDHOQ-WE3E9uWfj^SJD9HT$Z;;S`T9^JkJ|)lhYEh59
z9DrR5O_9dN#s;wgi0|1>Bt1(A2eR)aqI5f4Z87P+{_>*)`_?;%4H-J<%ZY1fzN&$!
zsmsz{v9W5=&jL(<Nmv%1s)|63<BA{sXGDqL5=7PR=8pj}{Jqsc%VmcgPWen#2fra^
zTY3Q82D&61y_2YejzjmKK^AlmINGYTodU>upa70s9UuuyI3uJMNV!@JZQya%{`k-R
zs2mARdouB-s>pn|{zFji%j^KKoUC5akRY#wkyA;52SjH?tMNRv%@eg6WKMMK5mY~w
zoJ{}@MpF*Es=@^Wxw-@+1uL)p5cUu87_s@;T0qxDSO8=$sGG;LA2=&mzQz`O#wMVA
z8H_=!^;f#06eghU0CAYmd><5)%#ag^l?kTe@3E4>?Ey%I(VmzXdn}%90<=SrLNrex
z<dyaD<31~lzX<#gXI^b31MzcH_1N@bb%5Ogm{00oPGR_N#o`uSF>0Zt$bXjg)tsd<
z<PLXhJ$6dvUt0L|ip~g#yj=z8Dt-ptfyvN`-SyoU$e=TL2J|?1^e?YYNx{lP_*vDf
zf=dY|pqsJ3by!kvgb(2J{$x@Cd=qD&;gF$d%K!_>?``nMN03nV=v9#ZUz7MC{a>xi
z)usPc`ltW5<Mof*{%_}{`aiH@SnLM%XE_spk}v(%m{{W}68`Jz=Jnf)2W10_r2zn)
z$=cq4Qe^<Z;{&-Z<dlPTz8&iGryShxec&5p^rXn_HrLB%p2Udj2Hl3OvGnUHm*-QL
ze`-hkkrkaH|5`o>SeLyq=!OHaWlg~6bRMqo^6^qK(?7-zDGVZxcw<OF>bnp2-+ybU
z;Q6D%X6!!${f{v~Z+rx6I$`;G@}y`Haoq?`ybi!FWdAy~{LIOe;KQp4+`3@{a2UrV
z?COsh|6^kQC@SI6#f*lJS*_jHTSMrEgy-SrzdZxnI%N>&)~ciY?E^p_@Siz=DcNuT
zt?^hO1~%b8Inusuzcs`NFe0K6lKe*<N!s7&pO<5sfR3gy{_)BQ7@e`!xwL_Zg#qIt
zcJCj}6?BvN_8Q3c2XL(V<ew$?g07D#lm4BGE$9*BkyXHeqA<M9h5)czYJPvZJU<&n
zTrKtHpDyKZ?UeQ}FGVE4>hT|o`$uz%zvMC+7WdyD0hTYJ+U$S)`}a?J*%yGez_01w
zsNw$QZvWG{?2i)vYuN^TA+Mt?<(gphS9{EP6n{L!&re0?EB`|W?F28<5Zm`g{mI{6
z-S3g;=YTdFXa?=q&cnfU=T7mtD)^D7GUxsx+Bb>6IDbIVirzm9PF?HfY0UjdY|XiU
z%Zy?Dchv3gRak~)r?5(B(mTB|^h~Ysh1k*k;pP06Awjnquk7I9F&Yg{Q@~x#Al~t9
zu{XxQEz^E4VtT%BjHPfU1bbQvhfgvUOAkY|5cIX+y4kO}j@Clyty0{bXk>`Vf$4vQ
z_{~l0jg|VoF?xty_OCbH)3fu>sk_k-z(s%tNaKj&Fm$c@fHcQ&cnS-ixC3nDe@WBd
za2aBddX2nSmr>$#zN$2LM{KX-W?<n}1&kd~Sd086Ga5jth>4ejg;xz+y1_#z5J}><
zAwB%cDn%S3Fn88QrHA^pCTSYOpI}ues-;WKFLPeilh}&RZw&pHIf_;x*fr;8yS;Fo
z^fePPJyc*C|G+OdLi5PxPaQC90$*-tC%ORm|NUa|-hI2PJ7jY`DMG)F8}C9;>Qc9l
zY0!Nx-n(5+a9N?0az*j?XY&0{&K!Z{{kB?z@>zofk_PQx)tL;ab6SnBRf^7K6MqkN
zL;xWT3^3+8zt((u&}IHR2}Ho_s0i%T2by069kpUs?^9S%zk&f=cyBqoR_Ew!H$2ur
zM=VWA?u)U2==7g=2EO@<%M%}jD~S~&vzF6tl${Vs7wIGy9KKflTp7akm7E#P6QN~J
z;`{5Ebn2Y%lAr8)bj*DzLh1X1#BYCKA8oc~Y9HbHV;gjI<xmQp?+w7)ei<8R%OUOY
zvE#9v{)@?S-15Rd;7Y@%jk!U@)-hh#lyr_$5$PfC-W9j~Qa`jG+~LC9$J_>6LywMm
zE>F???q8>p9Nw#~+Mx8_C&=RA{Wbdx*HxwBLVe8OYwTCUs^SG9VZHzROY}DUEVh4U
zE-i@VF;IsyrHWt+#FF?CyuL(lxkTVE`f>y72*}j}=PzmI(Q#=(({O<xFWPG$Z_3*1
zZ_7wNe@^E=1>&x9i`yNSSkzm`DWz0g3QViX;2`b~`un*j-8mxyXqA3#6KEfA_#!0m
z-ry2C(|zD2*aF2k*~I%3{B2efH#jP>XezO)=kx6WUeS~_^lz8Ge<$VqL2=<;20YKT
zBJo#O<JV*Q(P2%1J_gOJzdQr*6-Q>6Eza_k3v%)MP_MyRpr65O#uEDeYer&11M==@
zxwRWryp11-t%JO<@6Z{X0s%OPzfA*mGo7i<-8sio*ss{06iwi`5N`+1q5V2kmx(48
z`nv>ntQw1fCuqME|N8pZQT0PZuhe3`-}eWxA3^wKQvk*vYv<o8l>$0i>i?dFo_hB>
zRX_nYIUzvO_Lt;)AudL6WpVU(Xbc5@{N)Pp^~6tv@`o^B{NDNhz0l8c7{I0npCq;J
zuRm!ct>R7b1b)&e@dwoMw+yfDeKx_k28_aMg!I4s#FzB-86`3G-+J!1MO&SC2|%g)
zm-LAEdp3INFN^G}tN-n4|Jg?W+ZWS`62Kmem{p~cmQ1Ki{xyTK@wgda@4~KuxB2sZ
znLU8!K&u&8W3lv}3|vK6Tl$8_>+J6`KJ+PvR_fTxzIwpCvR2Bwd&(Wj#e$%vd#xQ0
zzPz*|3om_<OEEh4mj}5H#O;(~nVjscAg-*#IzWW^G>~uzSeX}G(PcFQ#I4Q%VS-jO
z;JhR4x($zP2`>3wu>ek+FZ#54=|C=01}{?7rkaaY*Q%869divVQV<%jlc#;p@%Z=K
zNM`$YTjjGV&m=f8gwn$M5RZT$U2Xt@lGn<wy}{%%7o^i8;|Q)As`v3L+k|PfLkS$l
z4xi5G$3hyGCJ7c6MNx$s1(#5?Iz+`(=84RQh<L%L;mE`Cmzllo;J$PK4zr|llm6t3
z+GITln=Z_*Lv2%u6^yc0#xbYsORaItfG-?)_JYs7JprRBumZS|#Pw?wkj~8sB#re*
zl>$`~8yF$E`?8nrF3|#PJ{IS!bTwUFu(`_N4|it5N_D`bO19oBpahkpw!s*!y)Gj}
zMie6^(Y^~Cy0u<n2}zeNh|lQi4<J3kxLAynS4fU6l)dI49$}?C2aSyr64X1+ydpq6
z#YF1NBL`Df`@J%il3-n@l!Ff6ym1<zr<>-f67Vu~^vWalx^D8Wm(vBQlQ@I`FZew?
z;JrQPWK`cK<yO<x%FGww{t91><MpQS{M}$r&kvOBD4J66yA{3#H2*db#_R<!Wrg57
zENa>@>1D+TDb@0Pj{bbQ$h?Oy{O0D=%h!v?m|m=*n`@F8LX8V!%o~;pp1$458d0jQ
z5@?*8yt{w%R1obX1)y-EV6N$y43)`bUaL?6A03p#T3G7Y<sPPY`P&NSIYfHPxPg<=
zC4&qvv*OOjQRB@U0E9{57#6xnZ~Z3WK02E3cVMy5*jPm`Rcg0=p`6*;jckepc1V6E
zraXTFmSh7v%<r?dY(vO>NcopXa+VJX1*y%Rfm`8t<!;?V@LFLhMC1V6ltssVCz2?r
zin-6bS1<5^9wh{1DOt265b^5u()NdbHKRkZDD!<GEP6I!7`W`aDQ`Fcr?7!WzNdJ}
zJXBejneh-JQ4C9(OnFcDK&#gg<Qy6$m<z{|O#H3xVuzYKVT+=N0M6LQ`xD(v0zTv7
zXkD~A^TxgZjGIR(vz*)d0*@O6Z1E7mJtUR7tes#1fFCej22y4o!^5pw1%j*3B^jQ-
zKEC04a=zce+gp>{McbEh);_u7pb<9s`@BM2Uy&891}UdzIf}+-NHCqaL9hO9w1wr_
z_9W!Y**~sU0d1L|owKkqlwB~%B&^wS{)X|ZS`|FJh$V%#T(5G~yI$NF^ssL%Gm9-S
z)?y{Gil~*(<z7sHZ>>lROyu}EQI)j~Tu}k6e2r3575r9Uw}}Uty_~AR*sY9zM0CiJ
zO=<N$0(fyt^5XpTU#+a|{oW-%=(LGW3KUz{YEvw^lidW(GPNt8HxuUWo1iq?GaYs@
zF4~W+irOM3=FibDmjj{0+UL~P>Lz;6v#+72%P94K?7E_Cg)w}8t32F1xuh+Hejo%E
z^9f*#wam`U+nSNK(Mf`cCe?pWGIXv#-0rJ_P1%J~S=1Y2C8c`hiS{5YkB4AUt+Hfh
zNK{kpWt9}n<>alWcKp!Rt5hy?#gZ&;6nABrez&NefY@x*K>pN$d#L)3LTr+=8Yji*
zT}gq;u@#$-cM3*s+i~aI4$PWZuL_p?l)kT5w?+eT%=1o~5;H&e(DpuJV=NiqT3Mu7
zuo@W}ARJ;mM0kKNcq&Z{c>G7{e6({<;1Vvd0~3j=C7hK$XCK0qebK^=d~iEWY~15^
z?+JiUHrXU3QnBix_XkzUvu;dnfu1qjqvZXKsXPzo^)>WfLF>)PNyj&RyR}28F=wR4
z*r1wueKzmmhEH^*%cx9f8LX<W#vn_lcb72hhq95SjqekgyGi$L*ejQYx&`GRA1FoJ
zipO7FKvB^qB!F-f^Hskl)a`3mf4`8s3oQw&)<4=8@m>Ov!(2kMMOmJ<DB1q#83saY
zH@qw}$<2jtEgkRXZr5vd6j<z>RSinnWgj}H@4tL4dJp`8-!nTe#`Jvf&hOp+^(OzK
z1A{hvA9<E-c;h|cHov;X;U)o0N1a~g2ducMTtqcvuhX3QG^9fj^O}56=BQR)hj2-x
zNX-iZ&yBv<wcxz7crI{7$tcy!(K!_xxp-rxO4?wr<no-E5G~mr4rTa&H__rbNEM#e
zMHSJ|U#fn<m-FfXe}MxQ=@@-p<u+;FoPHelxaL_fc3pb)4w>P1p0!HoWYT{9P%cvH
zST;GLAkAE;EztK_*dvb4F*lRo1mW85%?Iow@ChB@y!Uy)&2{@W3ul;D4?zc8fqJ@~
zj{`rTl#?|cJDK(XeK!NZdpK;WDO5i+VBjU7IZZP<Xp6hqTl}4S3YRnyufSO*vn1Pf
zH2GYA3b_<&6hg|)^RV<qq_ZM#WrNcP-T1CzF4gd?#k~3&6NXp)&(v1g3GEyQJZxw_
zZCrdxAd8K24qPc780Wv_@I2VK-N5<&kPpUe;%D~K^H45&UxZV2Ip?77iK$Y2=GUR~
zOO*9m7MH1_l6u9G0D^dZ>M&r_pwhMN9v}<%3D|*JcC~>gfy{tl!Fbclo17frO!r*9
zYNRE2juWL(cU)tr3!L>uut1D!jj=rGf~)A2EnPKojU~dIr}kgOsvn)B4<4@kK0Bn)
z1<Qe>hB}LMhN@ONc!$0n1nB5LdhWi6eHKsAIrxqjH)-#}*XPh?5|S826RG{E5($%x
z+VgMGKJHgUIf^v*0QeF|&-eMsr>NW^(FQAgq^f#z8rM*0SN|;USnWVVnL6Z>S1R2+
z)_2o(h`lJ;?cCU=c+nuW?8CY}Nh3HeZ(QhMdXA!w3vvyhb!0CC1p+|u2r-aGd9w)0
zeu!_QY_eI=CbwfZ-!fEmh~<>dE^s^Xh|Dm^asEhQ&A_)QbF~Ujt)6$h_qKqTF%5U5
z2@Q@e%dv76E*(T|x2fKykO0)J5vwX&RVPhVak@bYdgK}LP&N!MtWlXQZv(eFbFYw1
z+Wr^{&{-<TNQ6%mdLFcaKSc8OiS)8BJ!ODRm@3?A<eE56zsc(nqLry+yE4MWul}&t
zXfkJX=|k;X)w8leGWQTt_O|+pCCwrma4wg$d(wP?#)W9P9?bX}Q})sIsbfk1iUwZd
z%K$KJJ(YY-ptuD&)#Y9P?2ZejcJA{?;FQ}2R;#pkc{s|w4jd)&V#*eW=&{4t3)D<b
zpUVd=J)5u?(=J#ST;OV%ouhV#X)Yb2PFpG2YsDsa*?JpLNxNUpOhQb>>V(OGY4x=f
z4!QUdvZfwaM3>Jf%<N@!PE*2os4RHfhx0&Ra;vgIS!vMi((U^fn*wU|8f<_R4UXAS
zdhx?j&Dnpd<$Jy2A1lLi7X3S>ye?>IQUqCXBZHmu8?=>@L#$LoWtHV)EP<((;k!g~
zb$Z)bfG?vQcaw8@c})a}UI-b-W$!8H_}Fo-86F2$r?>Aoy(DL`$%nq)_q)!ZJE+<K
zpzk+aSTpDOS<WTGX1zW@CBhs;Q0+RA!wkcdY+x`stBr1ct<pPXUD?;<99sp+Sqchz
zes<oNw;9QEjC0M;%aq2-(fs91L2z=7B$CfP4ms16^`Ej;uOhwetCnJT*!8MF?5Z~Y
za^0I-q0b(I@|3{^Pq$q#A&_Kd*bAww(d=;;r#@r$rS)NcAJ^Jxg1|xq*e&EU4W<Im
zNGT{pPIa48*3@)Z^mK4>*blRJJn7OwO;s=d<2!qr)A{eW$Rciy4DeeyhF|X4+Spi^
zX@_98BpQry2aed^Vc}?3J<|-NPA<1VwH-Var%3kNc{d?+L)XdDGpKA~8qIkEb?jO(
z;+POrdca?r%v44pXXRMXrvhv@ua{>wYykt|KH$_bCR7Xbo|@2BE=`T_=gXW(gu_s*
zyGbBD11s>X63rYi2%ZHx&>jbqPb~{au}5-GKThTUX()bN844f!8?rU!njg9grw|&<
z5Z%*cjtyj7rDxtZkBhFjvu@uT>V-e2K^s0BX!^PFOM`4cVBsqHdb_@UirJ~2o5d{m
zu>LEW`r(&ImbhfNmMYV7Nnd-%g=HqC%O0Owe_E924F~y;8mqwrFRh|zSf$@R=iWG2
zbHMI4>O#zCm=sP)hq84S!z!E~Gb+27_r9+&tx(}8LLI$p_*Ot!+5SfB><IH<=c0j{
zVN{}_$2eloXUXlUq;M3h4|f;sGn1KofUHJ7xW$i$!Od|h$!0t=AkKkoF$>cA!0rVI
zur594cdr|_v8zd#`9a$Z5>y=5x1wv*<Mn8Et)Qh+HmcOJw|Ql_v#$$Iev}=2StFYP
zLDfu3qrC&gvdg4E9U_{!?d%4sn6~!dr{m~8Z;0oZe+2OI!nD+h-6jPVM7O_@o?M}^
z?Ibk08<0rt)5#l;zSYx+hujIFUt&rsjS=mZjS0&*TDz1Os3un~X?dVua8P=?w|<PX
zf)6<}Cdq!bgx^w$J$v55x?$keRw4^`<J+pzHVBbILo+l4w&;oL4+;v;0upu9RAW}p
z{ac~WHhTjgv;0Ed=LqncgaNg4t@ObUsQNg=0g8l58_6ks;Oy~RFQMHg_Me+S0z6kl
ze1W|N%<6fuLq81-I!}2{ah7Bizx<0GnsO_`njJ#`+>xu?9Zse8I1ifD7DU50Zd;za
z0gwr>0HsSiV!6nswO)sPCMHeaT{r7zXfhUfUCzhfuEXz;#i6urwxG+SJdmIAK?hQy
zf=5om#wU?m$&Ns>3zysIC9?d4TRf*h=XEVzrDIoHoX_phomX?+KKp_aSZC=(FAHoK
zw;CT+_7URC6zA=<DszD*`MGL}={9q2SBxiP63q#<V&P6xnlIy@YW{FP5ePmGaD5j~
z+cT7Zya03M>r`mbc=P?bx`D?E!_|@G`OP=`-6-HFUZhxJ1U)K(_-tzOO+2ee+Z!Pp
zw+G!i8@!)JG<%hsSeFImW3=_h*3Xj!Y_r1Fe?Y~POh!Q?2JFL|IJ$D6v!AY$1>idE
zg~kX7+QNU>Ma6(L#~sucSk6OEymM<kr0IM<j|~53w&XXKW@Ir{k0KY-OfT1Qfh<Lp
z!?aXV%8DmPWaRWxxqOhIVdXJxodxe^2J@$I7CF4gi$c?b`xCdVXDOB04nBGtTttbg
z%e2!DbtFB~PM5)^3Il&>Kkdp2#i^#Jyb^~9QyBmPq@E@6txx9KP-(!@>Kw{-dIGs4
z&x=?MTh#7bW^hK4f4?Ktt60Wcx3bA6zb0syTMoeFdZdRy>RD-3vDH51=bHRI!op{R
z-m~m2EHM_^w!DRGs@{wE3X~x2cK!v}a-WCb)a{hbX?vC1+-4sqRFeIR>e2Fhf#5eF
zo(6GnxOv#?{Ytu#C2!(r#8Lhgf9Hbri;Z*!mfB&(GFddV%f0845^9#Op9p-o@nLLZ
zkFOwzNIMh3s(-%?+0B38;a{q^x2OrMPqE0a)~77q2n?9!^f`OsX|5Oh@}lwcoQsRt
ziRH|{Of+{HIV3`~+_h`X5?7Ih>63-p=9~p-)p{_WvS(HN3_7V@os9B7GFDbPy4cm)
z)5{$;ijxD2%Ak^9jRY3sTf$t*xmgbT15{;4(sq7B<;x^+9EY=Kw@GSG%5tkI%{3f{
znh+dQ1m&>IVs!@BmsYJAeU#AA>k2WS^0i_|J2*Ks_PM*!{mss2^B*h>*(xh|jtu9S
zLi}NJyODwuj_V1rg{vAk&9j<QCy2_3&!3H^)}X`{5VQk;8e;gc{!sLEa(f8T&n8TW
zY!(ys4f(R5t(BYRz9P#9V!MM9WR#Cf-RsgNivoh8AU<azIYi7w*U^587NsP&Ft4aj
z6<T$-gxwR}nJuPxWx~02-fCNOuvr<8UT%qk5KNj`d3jdeh9>^89d{C3qs-t~J5x|X
zv0*>)9^7x!qHW>awx)jkVFr_PtRjjPs#3ipmp5dHEj8OJH2+0R&RyyQxZKL$1#wGr
zjwC7O?g4oI%Qg6TolecuJGOX}?ZU5~)T+R{1Q~Us@=of2uzUOv4dldO2h~1g@FW^T
zMkW5xnF8$Gc^)-EeP>Cq<G3uR-mp5X6c4Pmq*luN!Hq$|o_P-OmIa<OfQ;s|*xpBk
zW4BHV2+EJRp4)DWe^CL;y^jn}8q_D~uglYyDlG+9HPfOW0YS-nRSucZLi5kJe0k$s
zkM0%aRy$=(;6F|NKm=V^ac{j^odRU%(Up|-$De;h0D+7>!Q>k7!GH~3p;Yt7w=}Pz
z{oHl?acO)r5<pGw=pO+1zy{F0;Wk8~%i|k!qCVPp2#{w>w%&SUi~Wn)wcTIr?~idl
z+xw3tUFLtRGRA24C9jXnD#iIrz$uI|V9qdI_99n4Yv4jaCW!@MGte_pQ*NpdY(@J}
zy@{wlf{R1nhOS`^D)yDjE24SqRRb&k+q)!itjb*H@Eg&*7LKYxR6CgVqTYf1Cw)^J
z>hvhs0<Rsby<5H@n|2(GocZ!$xL2@-v@*cM%RjSywV+Dx|4MC|!T4~-PrYsp?+0N~
z%;$Hqv5}c?i9Dhf_HDFvKAZa_FZA~lsQF17>iHL4X}efKARC@dQrc+hKM~?}iP`c4
z-#*lKzxr~BYzg$p{HX{qs;<P{lUn<}99c2oC_hr7&fCeNR!a|TsJwfBncwXwxnf|S
zG+bKyW0qhNYbedE)T=e-^UsEr1?H$n^v3l`>2E6;JW%V*8to<ui8b|A%u-XGdl#cG
zPPbG9G4%Z{!`J$_B6S*Y75m2_=iUlaf11sPZ;X}>KS^*hQ^EQo%l(T(lUesU_JXAH
zAayV}B#E%QrcylDMChy8h4$p5$69Y#IqXZ!0Ubnb(xb23#K*0IJYz5(_8~ECsC;Ue
zugjORR@+vCAIfb*$&PStH#cjga6X+#wK*QgwDa>%ae!C_-3RX%`LlEn9$v7aCKL%b
z!MoyWM$W=uZ<#DEbF(~`P|=>LX-$TVo<8atT==P;>k_I24K#ygbe{ult#4;g<<xUP
zz|^#7U22=Y@&IXcsBh_P2@Nhsb2yVL##JG`MYa6E%&v6bB>Cdj<xu;ic%Eml?gWk9
zfk3%gcx7yyxH|(HS{f!`{V*O#KL=^$P@f{<YpM6Zt|$KY)E|PX<SZArX%;#X^m10=
z>{i0F(6SA~@Ksc&`sO`UvcPjZa+c0|!?~g16;Wg3`8xbkjlzcZ7Wv=j{W`L|2o!}|
zA%FE+B&gxpeob}N;s`RMLwNHuzYyRfX1<{<v49A_tjvhH>yn-a><g^s?FDRobg*!F
zUwNk%%|FnbW+@~o<4$ZWi}nV=9@^*o%B4QD8%jz#oe{zfx;>i!GX(+5iRHWe^wuxe
zx@+&fVChaTmLH10)*`8+c6r$`Xc0%c#A2Gp+uy(FIT1s@%Y&)lT{<X6dr+#mf}%=r
z*tAmHchLCcyH>LSwjiCGyLOR-_LE@69eqTdcbIH7>McT_CG!^Z60*SPP#_qH3Z>GW
zoRgri(SekAU7#x!mX+t8vzfgrs_S+XIUefwEu3N^Rpl8L;^WPo2SJ96eX_@6r;6D)
z<fh_po`gmKNVs>vx~H*Gurt-Kgt{gkCtCKRc^CWbP(`r(07e5lxRqJSQwjdwRu*9z
z9fJ5NZ@N$#VXzP}#$7&FK?$CSa$0{ISg#0TRDOu~%9|_V=*K&efy;sa`-u>a!B4r3
z%`JVR32pdUENO(7YN{-4o<{n>!)$X4T`hP?vKg!USGGtIlQ1KDS)Gy>mU=b!#aPvw
zHx>{0g@*NbB4z9DC}ekRvPL`F$>iq&@b-f0n}AYC;feQm)7AtV4M(pvXWnEk=j-y(
z8<~^N*1%Q=II}bz&EK3Muc}ygG|73KzA}!8!Ls7;2{*CwtQotSR5iaL$~#LwHk{G2
zb^KoB5U*z2eQusXFzn?8zCv7Fo>kr{>H*mqo6K{G@Dy8cPrF)Q2V*%hFsb6413YE_
zVJDdjo2GZq)qE85*~jY)nPaDI>832(@rp9YdGB=P$Xzq$2@Z>XlreRO=Cr6WpJ+nf
z_<Lzyx;<gD>UcE+-He-gL2|G~{i))4@kg)yisJc3GoOmepMJqMJmf7$4JQT!XoERe
zR1V5+#MuX)i`wYMkx#{w6yaLWg54)~V`vyySPC=-Bp_w`b_N3-H%%{9W3|8L==*&9
zVjpLH`QzJ)R>2O(WqpM;9Q+)JLlU`>7Vns`$-uI<d97Eu!^AnYe<>n&CKz$>%4<wN
zd&zBHILf`Jce6*i19K8Mm;I^oXeizyADfNMwE+sC1Xw`TmO#?RtuJ%-R@h-WDk=Cf
zeuqS?p<jv#O~<uiaotql(ncfie5x18S)ukh)9ttmx?_(MYupP@W{{75dkKA26+ebK
z<f)ZDkRd$vOTXc$M!v)<%&i)mbl21Sa|eWSgZTYZK{9})nN=L00g&_A`1GuqrX4|a
zBtsGNJ+m!mG|oKG25vYu*jXDIKZ`~h25gvTCYYP%lx3++28GD6pXN)C+~knk))(eA
z`f+2CmofK@Y%Mi>EC(N)uf5EkR+KHl5KDu3TiSq6g1e-1&_e9vJ1y8r;WY-#)kzwG
znc2vbY1tvNETj>CWn6Nu`Y}xvV*5LOm1{(fgJ~($`Z;*}J<Ec^dKUR=w|i2X9xMqY
zN6JweDjYrlR$CH;#hM`drS!5wKhK>WdVGj=3z51Q2(I7bQiw}}hYk5e&sDI1Cv34_
z7_3d9ENAUFDw-Q@dBq~&ccM>exS6_DE=)Keqq|X}uhxlf`qEcp8G(-HNo$6xpyMo!
zV)}#i2CkG2Kv%pfr#y5^CSUrl+8x&-OSMur1^#FfLVNU@j5Kns*sHsGe9}Pl@}N7;
zAb0W2HL%E|Hji4@S>Dr%Ybf`y8f8<x3n(v$7Uq<c`VkwV7Pp!Bbzgl66;&fDvntW`
zO$5x|S*ky^!KSgfccZ$?RU{^EMUXaj_<g1R<!kXJa{zT=e0A!RCXgvwqEqAQ86eY-
ze3~x$0o>7B;g-FNPsWdR<ZtvUA<S$cx6BM)G15C$(z@HGU=%=2;p|x4lFc~~DnIl!
zlV)IpLylms?)RNF--g=^UD`Qu!Ha>XEdVh5`(p&^y@{?Lz^!XJ6DDLcs+s;ax9J-B
zc86xIO3TV~7q@N`)zZmwN=9p)bTDrw;*8X*lz&&TSJ`q1%SOilh9CI!x%#tja9+;6
z0_^<TGOt%z93uKJXvaP3GC^~epIOaxLtrAwCf)vmiMWr-d;-W=%i$H84<-C0#a{-2
z`{88Bt$uB=XiRqgnrIs)>nAI!$d`2d2&=IHvW^pvqOb=QBm-(M)<!wI4ml6(n^<H^
zQl795yM<T|V+mvh%Y#?mm&2I5R93%*w9PSPvE;ofUafFjtfZF;x#6<xy>C|KHN<rK
z_6COCk0>UJyhg{aJ)g@-(=86qrU=?e;U7}N^wt_}>}X?fz){>LCxmI1OX*nQ&M#L~
zTPCQy7g=KFZAqGYi=uu2#ERjQspSt<$B8f`ng_4*l1jq0!0G)u!XfwThrhcQ$x>C=
zyvP;wsqT+=a_0Xsc+8dsoa807C_a4AT}=RE!F7_~p(fJjDolQ5O_UDwa2mmH2q$QV
zkVlyb*%5LPfuHPi;eHCg6GAPR)+=_}MJaZ^r|OPKZVjP<DEtKiz(iEJx}>0TVWs3K
zk?1nD2)}uwaSd2|s@d4Up}nkJKq!>2MHyt6gMdaz?F!lo=ztm%0K$R@%j`rm0s!P>
z)xhgNQ^R{U)|mU|uWF!ZXhy5rBvDsU6OG%yz|qlCD7+*zfs)bCn6Q31nD^D^`u7W0
zHtAns*8YTaVqSx`$t5AQ8=9E)6;-^=OUXWy-jDzQ&ASXBrb`2^L@Sc^vjMU_?Z3f<
zhzs;;Tr2_f{1q;S_vLqD$ZbIB6c91zf!yY?cmXsY{uF#>3QLjUpWwa!?|Q8NcYyBx
ziO&4*7W-{x1^)h*#83V&SQles<NV*F1pjze91R_v_$!#)m3Z*e0Q};g;OCzxXaLt*
zJ{8xrH9>h{Gp+W70f?gcB}vk-G<ocm-(3HR^Z4Zw8qP5A?&e&_+q)L|H|*AbvBv%H
z_vE*Z4arNF3FVU91|-h?{wkpiY}TVc4ceJ+Hpit``CDWCKvm<(oCGr6NwdSrsA)qp
zO!<2TyK8UnLg&ut)`UXt3I&KKCpL)B{Uh5Y$kP>r0vx*xaEzwCe0!0ea`Q9a4>`Yy
z6m_Z!G|rX1S&03puAer!&5c8=4-m;a(QIj93Y9@rCDs!8HEfw_vFY|wEYC}u;tlg9
z#)2#)W^l<;M=p9D^#hDz_$P1e9Bw$ycG)j>3HG|j?(PWpK9%HQrpCNi?(G69=y4d;
zF7Z~7<hga*kKx|mQW|<Op@dc8hBN4F%fEYOJ-}zFqhvs{f$<)tHARAu^J?u>rzXm+
zydiDC1vy)|+>;>aUr@kNB@8{`$=GR*c&IwxOHA^&lxSydYImL8Cw(8XzCW<#+Js4w
z1Fbl1F)&Bn9RsG*kAQx>;ofrJD?s$PMmb%2<|`g&gs`$V(g4n;RWI3J-AkOmL8rd0
z;e_9G^KWI7jGD(*7GFRL4NOLrnv>x_GLIm@>5M^1@LkQc3nLtL<F!EW85zyfBFVp}
z3N166{7Y?@#Kgqq<>g09wifdPesLykA#ZDHY6KH<o&D+>2C0A_o;#+VL<jvneK*yf
z2B+6m;5WRNUAh2>V`c&B@S}@U)E(b*5|U08Hq~P57A^z})u52XX<qSFi@*4n`YShR
zVNsQ%Wguot$h|Y^_}TGUqpD1As{@ZC$rJN$T_jda$ZM4<)Ax=zV_7jt<Q<@glZ#5B
z6E4ng;Tn!=SP(L5Kj9_m6MuAF?(dH*d2W2i=~g1S_xk#Jgs@P9MdyTrUeS6`5Z2Xm
z{yp(9Oa4&ic{kP9mr9tr8?1R?Ok=nl8PtOnVEFD|TH{Nf(0mTBKPSM=%HhnMX!ot8
zQkQ~lRL3<a=;Xs)&A*Mbd-ql;NX*JMCD~IDGcrOxL8gU6*C7)mBm{i_QoMzD*{5_I
z@e*>)ek*^|qsX8D%73Zw`5wkoZ>~;aHppuR8&N}?sGtBOX0~FY5bBUCN?03iFoq5h
zHnC}AgRPP)u>@`ItqgqXAX3ee{|tKi>%;S?4Ds;gK_v$@qQ8U&v}wBLQen9A^E)qx
zhMQJMpXM!Cm5C^rn==6#gPzAzD`$YX3Psbz1Px$P0^-XQblqm&I$VwO@0Ygc(Y`>;
zn+c%hu*gL^k)xdM5s`Q>tbSa~w&K+i_s^EZnjY&JIGRnK`aV&am_3-fgw2kh*Y~8@
z$(wY|7w+sIWKs0^pFPWigA`UwJ)W;zUSCxSJo};*Kv}+(2j9A%=(7$d(&hgj{OXw`
zyvSzC8CD4Nrv>xBl^axld=Y_^0h;IOyMK0KnuHT<?IY6F+c^C2o3n3F5Ba}z9#-E9
zHz)@R6u}emF9RAF7-=MdK-rYV+7%CGkdVU2nglCn`oF*FBqWIx90Ja(gAIchy9huE
zPVc&Q!x3vWo%d1GnTC^jPlAMoM)Y{17?e`w*r+4o;f{IG^7_rYBX>IS9eg^dlJ5#i
zZZc2`G36;A?O_c*t2@c;y=xW5^`#I=#ZtVTLpOW>Z1AqAvzK!44w1}#W7|g}gGNiF
z<_nGmF_T*F5@=L<_dgV^)_>Y{82vGd2w5H0Flla6L9M?OaUI)2GU_^HQ0EzN8IJ39
z7O{Ob|8bCh&Zy8UYw6)@$mYRDdv`9f$-FdwjOdo}elp~ds2E0HlgUu(65*kZq~tu8
z>J4M_tTb7u<!~aT_%PFbOT~Z?&miLNLu<ir%8f;}-aphsOF$8gqK^qq@&=7~{L0c!
zI0Z+xTAUt$G6JV=I~QRnpcV}$$iqLheWS5}=SeSISPeq0!|DmPzOWDv*d~M&tu$@9
ztb9@to=glm+OxQBkVaUMdn1w)-i)~K@c=}D86EO*Y^}I(2aWLToOIBqkAq<A&D8#D
zoT`V^cV8#n9#5YXQ=B5&cm%B_qT7VGG7)sEJb$LjZz<$wSC3ATioSK*&+3Ubk+pbF
za$etN$77e88$+I;Z-I0=5fchcM=QZ3F`FP9nI#NrpEe5KqarK1gQ3AxEw3{N&~>F7
zO?z9!*Y(AYmbjr~d>Ny{D#1`Xub|b2Vb+1AnP6WZye1{Pq>xX~IU)=|2)%`b0=>9a
z>`Y51)xev5MZ<`o_rb?U5G_pnq2PWrgEy0R-i<A_-j$~Fwcm+<raCZ^f6zDTdR;il
z{U!qe-nPYs-j+rn()r}U>cO3&%2j%?0^yKw<Csd&H70{lo%^;;A0gco;-^c2;T9v8
zw3B&fjUpG@Vz0kkWa-$;9pN7dQ=PjS%os+Zqc-zi7pF?m&M(ltpI)haQWzh=$`OUV
z->z|rn2W8g6L23eetGGEg(VPZE>%=mi9DP$PK5Ufea`JG;hFNetV@8W?ncMQQ*l%;
z-}`un8w;=@t$>*TBDpE{malJcq66?`zUXLXP~SU;8i0FnK`|ooR|C=$M>uHH{&iKO
zB5kou=)0^Vm=<y7jlrUXbZ-ug+ugaF_Bpd%&ELh1{)kCz_0z5%cHG6?dyP$7hoXn*
zfMHInx5z7WruEIN7uJ0<qE%X4n?jPfN>8b!O?10x2<J^Vq3c7mG3N~G_==c8jh?c!
ztd}$;xO_&Tl)hxhhMeZ4O59?zZme~P%S?cS45|F=>%z73nWaZ)W0(WN@kRSVC;hn`
zJSa{n#HvWd=45sN&Rg}B(*r|Q335c_U`)2>^oam8Tb|jVfn3ms&oCJ%Ry%b4sp)fC
z^#*J4^UBr6CWkai9Vs+*=t__##SUW8u$eHgWX#}QzlQq#r45f2{Ip9fz6-)Z6!CBl
zZgIIRK_jj~{0r6c8<@QX5|bPQzFEE6QxycJCy4qo^ni0KG<6F*>2q%kzS;-fQ;R~_
zYx<YNdZAQlkIchv1n_qn31t#KNHc<$re5zfm!iL${tPHE_>nE^6SIEnuJ_&2LpPis
z^$9vt66m~F?oX+Ansu5Z%$HMWiUVyl)&M6*7PjIOr&Psa+?c)A0zrj?P0#}c8orB*
z=OW>i#cfAQd_yx6-D}(O9o)<ppi>hN^h~t&Kn*w(8!;tp#APRtUPl%Y=H?-cWK8Jn
zu%P7>4ENCT>L0Am#LpcW>JTQK+uSs^ts|@K(8CY&K4o*Lfcnl&<)BJ)vEHtl(|Wc=
za>uBzdp$W1(P-iIVN!g)<bpcG<P<5!x8E(dj1T={8ane9gpv$SFBCDA3=y*7tVLNc
z);D2~BEKZo9SXRJW!0iI7y^fkBqi@(xduGO?%mxj0OL2KYd&U_bO47_f|J+m;I>Vj
z9KWo0LP9hVN$>->1q>2)5zuJo$2DI&JoLunGi@9-PQ&LHQs^WkpWjM{E3dqhm$0>e
z{C>lkXjL;@-N0)s0JeGB#M7UU|Jq277m2Ztle~I%H#?-aQ+X>6y`bexa@r9C_fT%B
zofbVv_L-C!!qE+gWBycpk5)O2y!XH=qP~P?U(wG^PiC!H=7j3eXs-l3gXYl&i}(zo
z#?zpFlFQc(Gm&A?{?85A*K7eSs*~wSQm5|Q`Qw3^hm)lZ#8fW4&mFm6KojfL)f%*L
zo<0?Rb?hX`*(;tEQ?bNVY_)PtzCqXH1J1h(u>7T=<rCB5{++j~Ot5W!OTC<E#@^j5
z3pTmlb+Aj8p8H5qWwI)N%C>9jbC$JQ*9eGO5<k26j>+m$DOb@wF<f-ojT|3gY)n)P
zmeJ^e^Vp}Tf^ECiJ$L%85Qb+^SvDQhi>PrD=E9|{L%gCHJ$psuSR+D@?#)W`jD0?J
zJPWq@#XAd}#2oQOP8DTF8awxuFy$A=?>r1vNY|nFF&=x1%Yg}vNq3d=yx%O39}yCa
zA!Zi3IT#I<Zf~z5Z&Kf~d~q48nQ(zUzqoYYz)4U`)BcdBDqt{R$62!>6CGOUI?uWe
zg%V7{!s`vsc-VA5za1AbJ*(<1Z2amI-4>$9S<ptvu49{9imo%<@ZMD_^Q-#6Vc=d%
z%tP20QFmenV_Iq~Qg)iAko~pPq}ZGLug=b?***j}p^}dAD!euQ=T={l9ONIrV!hbu
zLJ^bJ;IDz4+}~0?$lf{@?k_uE@_Jx8Ki#b-?PV)=-L7S+Rkk+v^g-BSZ(9iktNq!>
z6Q!tD`KDmJh)Mo6F%1uELFe0aHY%qKcHUl^CoaPEk5jW$_T28>3t~4Q?F+?tS~SQB
zhzQ9%fBx>|eNfPHTQ7=lKL95lFT1oA<L+VZ+5|CQFX&}`LECGk%!X>TqoTLZw1z>e
z^aZTP*H6Clg99-($AW^s^Rf$Q=Y6~8XZ!Arezt#)K7Tjf=8kaS=e)(c(L{ayDQi#8
zJ*ku@Hecriy<lo{rE!3VuSs^N7l<97l#?ttOb=kp95Ra2E#KhZx4O_o87}+WA*!?B
zsIR+e2OcFnd04%5Y;??g>vg?LR!RDuQ&~hiuYa|W`;od(1sS?w?y#MU$W1fsW}Q4!
zL^p;v=tFCm=e33CtjfF>{GTW_P9H<{2<VLSlxu~F``-1%h#9d(4BX^*lgE9!7bb;6
zg5Btxc?9fw<n*dtm(hb~s%yK7jj+IlRqRsK6dw=FIKK1f&xoAhjF{W4=D(oeg>uxO
zhZtxd;sYn^YD9V>fV5weT`d42ZTl*$8T#gQpV&M%i$<q-DP~9Md?3^YgHf#^Q!*H8
z`$6Wc3(d`{{E^%)#UpO?8;+5V76Va4%I0-$*hUl1@zjhq;o<|nOUXe2+8a|P$`5D-
zc4WUH_a6o&<j~|+H?uw<)G9Q)t5Tb<AG!g~k52CSj0%~n1HoIl?GRPE%`2blbc!_q
zelP3%BO5leBmIwk9iZoVhh#Xlj(2E-lNlSVN7(8#-YB2Wmew(ka(Xb%6c~Ws)LbiU
zwAj~l+B1FqWsSd+_`YAhg?Rg>|B>QFv@O$RuW#l2T-pmZ{c*<=j)TP4nk&29QXvQP
z9M<^`3uvo6A=Zv{QMy762{6`g;kiDqi^;y6EY@sq4OB5B&-f<2byoQ(?jEkZ>^gbp
z#4%_kIb-J&_!U_SPP}|LSX+&6e`mF<TlXW=MfP>O=!OrjQ)GIAlN{|Wqz$-jLl$p~
z=O3S)RK8t?dN@2h%X-67SDvhM-3#ue?N2j{>gJy_+jjLNSVwGI34O$^GUxMS>J$Ym
zGA%H&&9%{@Bz`WcO0w&U3HSS_rjw6+2`*XV<cIn%MTys!((&o<-J^U=sa&eOGN5qd
zg-1}2YuiC%Q4LKD@oPh$Qzht?s|zp8Z=!@F+T)*0cc>4lslFBJ<JJl-YUgVOwGtV9
z9$1*n>YyAPgNKydaFFVuZQ|3mSQg)X4gaoFij`><TsrVnZ>&`ZH0m#UPfEaukbHbG
z8%y4E2OnRe=twx13~s>Me3I2LF#NhYv?H?7T2kPN6uc0@fhXbi#X+~;ZmJ1=7;DV=
zB|qQ0>E#EadmvS8<gN`3;kwGr<e5q&;S0}6;t(8n_l@Ryr4s>Xz;lG0qnl1NJFz9u
zSnqoE*r;6JBT4IhGjXXAdNCM)oU*}S(&@|SqV>bDDfARm^?`*zh~o0C#%L3qhe-#r
zK5Qt(UDi4GQ_4s-hm(-`sL{^%i&A4xv^dx)c?*que^|DZXh*ka_^@n!LfCc~Y1j<|
zyX`|)upwUbwnGnzj0Ie-W4p36^)(&?$6dloclA>TOe)4*iIb`AdG+%Ijw7EF%ufcb
zF~!f7lQZ7kGhZ!Jr(PlJI9-)1uSdk&N=}o>+7U%#%}OWsduGgh8Q4Ot^tz-Rbz?R9
z+$ERJ#d!C!t#~eUZ2@sxWM9c}VwY%cbIVY7&ix@ro!Y8Mp~S1BI=5M+OMe-&_lLuV
z=Xt{G*w3;1wp~lMM(A21^nwLf7?|C;XiNPHS~HOty0`u13JF{Dv6EWY3PFBa4vMa#
zw4DX(&fX5rDTEGCI34A7ZsLG{b9v1|Z+G=B?Kra^9A2Y*pM|A(=E$7x;Z$mJ0HkXG
z*gz@)R)<hy8ZT4g1FwF+lFZ>*BqVcFYX4g%oHn4=>A?hPDt?0tmRVcYz0xvV_6pc)
zWol+Mz96d!iKr^gVVA`NI13j)riGU>jkk?r;UYV**vq|iVRw+s%D}$wFz6$PObf}+
z#AVRR4XT3%oK)dRaw^Ewr_$PV2z#7-^<CgDLnVJ$KR-ymW;;G2%FeCQVVJi-v}7Go
z%+oEE7v>S6wBA7-0oKv0+er1CjNC43iiw7WJk^pG)UmSZDb=Js?mu*n{_N&+vwye4
zu<SH4F{e9NeTvgrj;8C<Rr+PG@|3GhS=qQ`Y(-O%3RRTv&Fqb&@>Ju<lZ!i}%iFJ9
zoI`|Y`}XzCvGioPttKBzO`<eR7CIs|t2_vHWIL31rBHHHS*{sA233?)V(QrI-<8Em
zOLT2l;pgJ1XF@XGl1e+<Sou+xb;Lu+(aUzLTiS$>!nUMfOwCele4Teg4ZTlSgn2D!
z->{-K2t12c_NiaCPgUO3;*3nI&C;sRDO6bNa9!uj58<?WQB_PV*vpa}-MP50Frqqa
zwcF}jx?|t|*<pdZkhR?1$xAP=BTVGO&cnv6!?nH({~Z^5)%>a~>deA?<xU|y!9qK!
z^56v~=7AAWZ=GsIgvpc+`Pv&1MbF&{U|}0+A4T_B%+s2VkL+c8VWcJR{>jIfY*Ce}
zgWH!LmZQ{<w7Q~cK+kq{Dv5M5xgK*;9M@#*FT$ZYr^o}Z_)f4Mx$$UJv}OU-TlEEG
zc-8p)z7+dzbi^@Fbf`s=1F;izsWvLZ*{Ykhe{Z8eBD^%t(c1!GIfs+4`N!}BlFrR9
zU3U^Vn*%1+A}qCZZpb)u&#Xb2KQ*}0uymJycM6@FIWQBQTCLAH2?}?JJh)qj(9jrW
z$`<;uM`Ul$bbG*iHpRP7Y+VMv?+oI;jSN+jTWe_H8_Y&o`{hb&GtwI25c9fN<{#*F
z)K36NtZs>!R?!}aREcsF=3;N`3yuJ-i>#dW&9SZq!By`soSmz04zw(Fj^q@2x2+Uo
z4K>HkCtM1~NJ#o#8NoDq3m0cveW=zw^jq4^4v&kxynV7TTl?idtP%7d*En%l3s~DT
zLY(VG<_<J77DuaSx25ic4LVA#tzjdbu{V$sa$u7FXzBY;pg!M3`vtcl2L+BJ0-=>n
zUguAQ4EU0@Ap=fI6+(@^3q~DZx`rRKJvUWhh<t9fZrw$k99|vdnc?o;*LPf<w(&_q
zY?$9b=TY(+)eFxjP*tDA9GSN<1xK4)YxQDkuchNDblFC}Y<@mTL*JiuTwGY3KC6e5
zkQHX$&!t=7dZd?g*)XwVuQJWvRCF2??j*loIb|oF>C`hfLl+{|p!b^LL|ixHq7<rN
zk)z&2PhEcR5u(k2a5WW5CvWiG-$U5U&+9e}?-OLRY|wk!PIGrjb|t0{1HF>t>w7Y}
z6e1@v=T9M%t9g+z8O_IZbbd!mNl#b%8E`5^uw0ZIvJ0CZBu+i7GXiZF-*LF*bv8IH
zt%nh!MOPLV8kpJBbQ~iuRKf0}%CmsNKCi{OZc+Xo*>`tC^{^e<U)3a8ql(>-D{G*4
zUaa3XxCr4^Vd{}#C$K*2cRzj1d!3vT2UN2=8^8*kFDKeKRX9@FTr(5vEwU%Pw{}?3
zry5=7IE*JVc4v4RUSon`Cm!KcJ*HodjeSbC!<crLiAL#TJUo!&0h*CS{i-;`#zK`-
z){UrU5r4UDbG}}qn8glzRWU?nI=@A;&I6NNzBCe1;jr_de*eas2L5TEa`>BEt33+~
z&_ebpv~E};I5u4`Mt#LoDX&g6m^^$bt_RB+3cXJ`9r_lO9NZ{3G;@$J@*$d(^mEKn
z)ZU%;cC1>B6RxD^q|F%|8+U3eT7u@thlZ2#$KK9fx?_cQB+E6ycnghW64Na<Emycv
zsq;#ZA{HqcyV-QN#lynX`E#L!GSLB^TlJ4;28bdiJ;{5%4$0ctr5Cg&e0j<6?4(K2
zYkn)Bn_l1;{bFZU@woc1n{{~R^Vqs#to6q!>WqSr=<LFwPr<{Jm(s`B-SdW$-<bl0
zw-3{Ih*{h0k1&)`5auV@;~%GAZ7(+Gz)HyuZCbJ~vlC1MFHT=F!Q+TYf~oPF!aCP6
z_3yk91p%z_^ezbN2c~3AFW^$NIxh^serJ)zG4?tv_<Tf-YUY$i--B8|dPd!^DZ`cC
z&@O4md1^0YY%WRfEO#F(dpj1@_l2E|g!>yo@l7=v#HJt5*Dr9K*yp8>S^2P~*D8bx
z`sa%G+_%CE2JbD!o=u`i<QbkRJ!U@Fw|6_(b}w=j%;cQsN+SKRXZ$pDCzqugkaahs
z7fS#7w#bI+BPS!hP@W`BV9Cdlsd8-rn{sAt%DbGQ@++s+ozH5geADt5f}*0H_d_ba
zmTuz6eiwg_$e6Fl{>;u^GbyCJANXLNT1Ee@SkmixVtcS9wbO}!DLqS3RY$vSV$RnC
z<4pc#jmoF4Asq7Mm+3b#A&8V$ZDNBysgo?fZAswzG+<E?;@c!-&(SS>*NG2Q06SYC
z>MuTctdA)N@j`H4xaWhMU*W)W9$szv@EP^CF&@v$(|Ww5!+#4YS{#y%p=PWTdeLy7
z2;yxJ1PAjzvgAjX9QCS|A;fua&qH7@cOOm{Z9GwmIa1v)ndY@xWbR0dh*C@6$Nql+
z>Od90F`w(OrqF<W4bAG!o>rJXuEd7lufwKZZRI)Bg{F54@XXVBDBW$bPRQd_=ld`F
z&}?VEI~vOI%Gy#nNGFJCHFddJ)V89Qt29rWq;l;s{!gW4^XD9_et8pW?A^dVQHM=0
zr(;b)DJrEhF)tU1yx#0CMZvS{Q2Mc>^|nhXS83TA_FJwSHFCL%@2_)o1KqOBkC;EL
zl+P=xk+ZqZJkGxBf@zmjK5MPkJ88)_H%Qa>Rw349<e>bB?d_tgc^^ujUyZzyN{jVD
z%$wMzHXvtp4mKTfJazV#q5tF%<)+%PYBV@#BC+)!HA+o86GGtMt9B-PT2Z$-2kF-H
zt?r99yd;(D+x0fWnO$;olUb{6tgja9lf&idOjnci`yu_E90)(rtd$M@-;bVy{md!R
z{HnBXd})KU{#$HA*5B!9*YR}|>clz_>Sy;xYwMv+()uR$?H2R(wFxy<n~*21hj!QD
zBhqhzjk2s$KPT4T{{AWm9mo2(tS$?|oO{(9;>L~G`mwf-X}VCqvk>K?JUl|M=&lf6
zXd@yT=Gy9OA%5C1H5lW*tLPP46c4jjn4F~@U3AijocKA2UYT!ky+JyEm(GQgZcmUO
zrnGgw+;Uhv_!^5j@kP=Zd_QzGqC#A!h)qY)Hlz7`yRlk2C(ek)j2Ii&4bGCzh7zRS
zHUqIznUqx3n}f8C)zUn_AkNpLkzQ{5JlvQYi&=A$<a2%VwFUFJeiG*1s6C+Cca7!g
zh`w<)62x@9*Ij1a*M|}iG2j06A?;d?^>vSu7m_f0Rs!<>&(Te1X}x?e8?mz@kdRRX
zgS~PwIJw5qU*?)N0}(8m)wF9gF1|sJMN3y<)q`^oa+Qm1By_Z+RXu<3zv@b*$Ck@H
z)nm(cG<{`#%%x~;tdk$e3$fK2!G#wiWcDH?uUdsAb3@?mY7-6}%{V64DCC2H2}5`!
z*Wc+o(X2ekg#b*r(!qx=^HxH{sK%H5KL6=Hw)MMX0U{>Z3!Qdrm5%XclP5TwCr@u>
z>R|k`Pv^@68-Eu%w1-Hq@PLCy8sXuou2bzzXm-50+R)E!Lm2OkYt-}Ry2B=$=Q^#2
ztL56jL=f0Vxwxws%yri-0D(GDLUpLB8R`@T5%tTsP{ggyMe!RukgT){-%IEI?bs~e
zv+zRXb*|NhPBdsPyaY4mFUF(U*;w)O8MxYoOsQ=AG{pRN1s=`J$3jQVn16E;U#Y#L
z`<MzDe{}$q=RgkP<4<iRI=@2QKJ`(x$Vt6|hgbXDs`MB?LW4FDmOAV3QKiy5$^UBD
zxr8h^jk+x_<E<moaq-=;n0>9Q$yvpBpS^`OPd<ZJw;R#WtPX5$z`L7Y#;SF1p`r6M
z8n&&$lWU5xYkz}!PH_^)>)u7lnkTWw`e`HCS1|tR38buf6+7Oq!*TO*PzxFky^9@x
zT7#6-_1J4`zG+BxI;*5>axiX|{#+d-Z65zr1`U<t@4taJ#X+`bJQnF42Vga0u3v=v
z?-YHlcym*QRc*D`U`n{s_d%TqyIN_fLDh%S-^n^mkq*<R1S$1E8$Yb+eJ*k8a~zbT
z4O5^CbZy#*h(-d2V96!Ug02k0o@f4Eh(~^%jj9$e1k6oDR&Fthiwm$eH4c$ll@g{B
zBt21LC#2Z|!^&tRy{4WVdFc?7x)ue+(s**Ska(wvkT#-ZSu~cvuDoR++A6Z~@KP}?
zzKD!X!`cEdy}8I*G7kajMbMV2Y$W}ms#oaN>&_?fY^?gG>TG1bR%`X1TIByW6%}%S
zC{q3>4Uw10F9yb3#(-~R95S>rez<#@jjtsjdQ}A+-e!FL5hT4}l!`b;8Aridq{T)e
zWnm=7sc#Xrv*!GAF4DKDOUo}3aoX}w->-yvMR0j85?(a+4kx<@A$fJ0R02W^%AU%G
z!Kwz5w(?9Y&r?nxy%w&;3klL0hHBg`w<B4dud3G#4sTet?b`)qZxe+1w{(x=Y}@nJ
zR@7Y<hUlfK$jo{U&pr1XG9O(6{Zw)ByB*bk-h_STAf8mLw~6<x!lLWd0kf0k&ph{B
zlw1>w#|`oF>tyAe1dvX2R>}V!kC0wx|25e3X9MaH2>pZF_h%ww`67ggs}k*X*!su6
zp{CC_Ai7|BX9EgF6NB)?^!dqHm8s5K`Z6r~nIGB@ZAIZm<u*cZ;`0T_d#7G10Z#<q
zwFIe8DW88XD-)>?&Oz|y(&S0wD0s7Ht$)tSr%(PNP2=nPfSVQ|`LRs(`!kSymr}z^
zyKw_Hye#I^17W{dh74^UA4@=#d{w6vd$xb*xYkZ9t$PcxZcCjs-%9N?%hJ2QciAt(
z<auZ}mSRJN?VB@|ZyV4$RgWdBv}uvb`zGxMrDeHF<G(E)E6n5XE>|4cgTj|K*jVmO
zsFd~}d&ISxNnu#DJOi2Hv!ct)kUp<RpnO-W75g?<!hZg@92=x^ZM7VS{Qc_ZrSC5&
zE=QBSq@B8M`TfkIe4a|hk~;$Bn`)-_3$S5Vlg;vRrmLYGg>Q@U@$0cn<+6NKTCV=`
zH^A^(dG97dPgLV?uawH$t6ckxMfu3<{jCAg^qH{d)eUw7h=Sc^I3XBH3sz02{?y)D
z)m;;f&yD_e1Cl*;q5iEL6ud8PZdz?`nX9_Xbypt#X6$*1qxHbw@QT*lq~-dm?nlB!
zd8y0O)XyMk*FWkYu3<W=wW_cCQAPjvGyT_!>Nj6enqO7-jooD}w()QTNRuqSbKM{9
zZv&!9QBj|g-I}PxzU$RJ@_Ll8BEw>tL}R+#e5-?X_%-P_p<S%QQHa+*Yu-N9^;dm+
z-|fNQ{-`ahRo&Z%dE2tRtUN>KU{R?0@0-g}XHgq-*QeXDK{OpKt%D)+=OAP-j-7~z
zXh=04-mdf<%0%qUgkGUV@i1$`%vne%us&z*yTV73kX;{u<lG%N@abpx?6c4C$*x?)
z$u$-lk-aJwvC{c+{q-p*uKYy)_s>2(fGwHIL#!=T=_oSvJ&<e6N<zYGjfnhR0d{<(
zeD7zUNaKAjMmZ<0&PGyB@9PHrcGW!Oitl(MMIE5W+C9qm=FU}5kcFdVc;pwUa;qs`
zx<stqdH|n@&q>`UA8o<f1f4YBMiec6xL269v+5-zJzpiArH3MJ-4-19M4d13*~$VW
z>%{j+W%}!vdbYCSibMH$cyW<jLu=^$Yq8}cby<jUAJ~oJ-$g196`M-%#2<TKyAVNU
z<ysBk8=ZmDJ?iI0nXijOXiEh$lhUC+a@>pfd_sJVeBH!LmyFz<7Ufb|j5PV$l2k59
z(OAAsi^mS04(WJTu4!{}Fam5fwXYc;jObrPA!L#`F6x8t+MwN|AM5TYROtavHOE-<
zm93*+>0IMu`6$$8ji4UaM`O`#A@J+t<cSBo4$3{=@D!ibTGklkRzLbXeO=$Ssps?;
zVYH*-8}A7%V%*f)ziI7|&I9CQ+eve<V5a?AXS;QwqfI?G96K70VjLd-&pdT#b@>|4
zz{hVcv(D2F&(Yiesja0Z^tt%@yKTsP5O%j-zSh$8P9X|+)uUBAckSvx)BaNAy&=xA
zrSlExd@ay2UpvU_u8*HmD?n3aof^C*qLHHWL_I2AOGRu<j(k5N^x<4AJy$hu(0Ob8
zP4{E*+!^q<p8y?@uZ-{FUAb=>uA9`yFY%p;*!lia&k?-!KQH60y04(sCVTpuBY5vm
z*?3j_sE(h3#kWs`b$<8a(7Ui$C%)5&_3MkVxA8l3jj*S`I*5%guE!2>{NcY4u@0IH
z`0oEouztJrM*kSZ-Z{zPu}yFPi&t|t;`r5f;i1)kKz@F{)a4@U*E5xXZ^K3u|9%Z#
ze)Bjc-Ms=?IpW`?ZtW9zK%VxKsN1j$Mym=rzk0tIFTXFHV~n4Mg)6d<o2PzG8uuU4
zAHc2N(wk21#rop+%pqhNLYMksvPiZ{ww7(h=T^(Br(i68_g$3y&pO;Yq_>!l<D++!
z>S;X}>JU0c?sdVXxcRnwmEI4kP}Ad7_EJpwcO?aT`0y9K?tOf7xJJGw;~5?-*CspW
zx*Kt~_=jCJIBZ=ero-~NJUk;1>?lZ2L^Q%M1WQiY3b<Z$(M57+i9y)&$hI<+Arfhu
zcVfr7G{oq2(CH#EZ%GCUHkWqS2wG7DgIepSrMB{y@We(n45>>&>CR#~kQ%9z#-oox
z+Dp5!J2wuYXhF*$+^4A8SO#NA9C9mnqhNI+=0%F>)yu)#9dE3~JoVmEOWt-=^}0_s
z4v~+pMWXs1<MZh#GS5>dYID<(sWzn;`fwT&<(f?gfhgk^FU-r_fgJ@Ih||jWH_|k3
zFGjLj#x2E<;HCE*+^LcZuq84B#f4eQI3njEakaS7rA=oWDxOI~wl)v<=VJFe1<25r
zhx-2AmAQyhzti|a5;Dte+)$jFh!-*=mHw78JdtB@lj{ouo=7W_mZ-#Q9v*wxs<vGB
zP=rORg?wl;s%)$`iWXFCQTH>EanP&HwwZ+_n{T>(_F1wT${ive;aIX{0j5v#gq!+n
z>ULQGq883kYZ0kKL({-+_Ba-Z1rLe<lJ@;>7&{>Z3+|6cn7D}FUX6`=>K)#!=;hcR
zY~3L)*^8S5OA!4tKX|A&KHM(xLCE|Ekv!W$B-QHk@eu*=)K2U!bc3gVIO3NqLWned
zB8d9GHGQpZ)kW>?Xb+6Wl9({~jaO&j!m;p+&|{8TQ;6wEE5aT~z=9imFjkw#@qy6K
z(@Rq?IaY_JUg0}CzOBLk$~RX4zuECfm>UA0OS-?;=Y|D{zb`}{Z__*FFxnii^xbo#
z<RG2kHr@x`T02GNa+OZcW0J9CcChqs+W32xtGwLb>$%*!8fvgxepopW(Tf%!WWw0)
zn{sYrrO!tp{ufcoe7EmGlcW8vwB9HD%3>Vy_eV*?<|tw1BL)~8)Pn30k${Bx7UeU>
z69F@&VRtF(mFaDRo$_(4=^y2gw>GhiEtaX^c9~SR(Ru`4?uUS@TG85L@;Xpgu@%+g
z!;|!g|K*$><s+~6a}y9RulFVx-jvEm`6nCfEkkJ@uU7)tc5jM(U5^8DO*DbfO?52-
zE7ps*v=E{7_U7gxm8-Na-l3Fh&08OK2PeO+L**8w+52AWtGXYV^UHYX#Z^FQd2Xt*
zKgW(VnZyr^2ZC+YHl^v$e)JsdXF3j5VyjV1hYzA2Tqf@uyUSW^<8zR3zj6as-UdFh
zwGFhx^r;9R1jEnAP7O!uzAO2GC<L0TYZA+3Iu=B0+o*Ljx7O>h9>LmYwe54Mx_{_5
zX}X{-E06B&L)*6GSGIohJQ1Rowkh%5(!S+y73#i8S_ilOrBYr8J#_zx1=kN~;)sao
ztY|?)t#**;1zkcGO11FmXP@A}&H|)FiSs$>eC??OJYutD5Z8(80EyYsIQ0P-H%b}i
z?x#n}Z(@`ehm0^zOhdu?WauWU=eDE9A?V)6@R(d<3Q$tr_b_gY^u>{xr6@>>M1b~y
zhPyQ0=nP~fDd(##rAGOoma|7XXMg2sl!@XGNkQ)VG|Zbi4%!*L`(;6x_jmzv9~Ni7
zA|Twe7TntXIm&tXk`$!P4Z=8!OBU`EBaxDsf=Itm=>Dw{jgDIL>7^4@Z>?8unnh;e
zh4gs{x~zNT?&Ex+OUlJst=wL#wJNt-6g`zKe_lK!`}%Wn2)#=EyeRXz87O`u#lbm!
z_vdk^v_2N5K<{r+E)#V~eCc(pU8t;=Wf|*HHK?`tcE~L#$o#If`_R{beA}*;Sui{u
z<`qUu$9-zAEhkN=6XzP&`@!B}Xutd*juHiLcyx)DN7R-z2EEmf{^|Hu`$iup<tL7~
z?NFP;mme^@O*yyf<wP|$y|G6s3vs?3?&1TD9cb5ToxRFaInK97I;OWrdze~u$^*Tc
zfsWq;m-(o3Vl+882kyd`P1=?%tqoR9EGrK?i_X@=-2>+~Njlg0?IMH+jz-<vdB}QP
z1X!gmEgkDh_TltZ(z)$}%dzMNt1Wbp*Il<Oe3bLo_8OQRwEjXw!$(_ry4;$<b)q)=
zj1uX1A_#HWJ5cbOQ1h__(T~Dcd$Dn|^61C-$p1j72xj)lX!y@vhSf`EW19OxY+RFy
zq$NtT|4GZA#H;V0!qwAbu;Pium~n;rkshwVj9)&1711+r^;f&FKI6ZTBz;!?eCj&9
zRW}CHZeNVm%kF}|y^T+rhvLFrIEiU^;8(NNnrZvur1alxEdI?xgqo|_9gQn)T8KG6
zQ(hfuXuuUeUxsCO2I2~BIxd}rTkeig&qv-x{SnKWa8IJ)pi-`Z^J8&W;1w3N?2g98
zzPI2P@pr+?ClG;WTJY7NJw-|OU5(ifES8VSS`E)4?v5DzF8eRoY5W|m-wbiHl=hrD
z4wI;rRdS=B%T52u##}Q6O4PLyhd=K*{hrt9l=aeZ5Iz6t6b^s<rrb9>NJL;Imrg<O
zOwscuKKi8Rc#eN|5OQ6zw=02JBBCD)N0-Qm>;_<e{p(-L9fPpvugHfpkT}g;muR<f
zp@?}vufC|oM-A3#szz)tR>P3c<FV{ygxVO5uRfzYP&r^;NPIXA`ibgGOB3fI{ysH)
zi6YcCsJ)gh)*&S)8Oj4;Mr5v0YAWfh&PV$5@+}u2Bn=sZe32yRH@SHB-hkfYyiA&&
z-)BK7ofhO5Y?i0Tp2UP01gJL-dpT5s>|%8p$v3X_@U`{ciF#yMd}q-MB|UDeX?*X^
zz*_aDV|PHe5oOOmq1?2SmPK6VlbF|QS-3-Y*J8DdYq9w~J9WXDc45;tr8n|UUC$ux
zS>_WNf&g1j?v3}uG_@9%>gJ)l&Es>I9$~gFT6hE_{0_Co)BO$jybmeZrcbMtfZpUN
zL|NY?kh#H67lG;OtDd@0|9`uc&j;$ExA}R=Wg!TYn~DSW9S}9A4vnyzr`fm>c_k)j
zPc(XjA!MqJJAmUol^`4H(QZ*|p(E{|8kHJ=q>_oy`PsaI<}vlBn0~o80w%lR`*s@(
z#X;>srbBAEPMCwJo9vgXUR&<F5A>*UvGuDjaphz`cwQfZ>+F1o+XQL7Rr{O&X@99q
zUl`T11{KYOFz9D0%eC&~dOJ6Xrek4bAZ&fy=Vy9E$seyn%|8aP-JEFe4&Ph4d^!>y
zNyd`Ji!j}CyZQPc_Ed@a^+41e5%9CMO^fyZr(w!Xtz)}UXRGxi!ND^0yl%R(-L&sP
zy^YT|9ja1pa0fc6MaqI$FXWq%6Cx09XM6Rz{-<jAw_W5bWv!p=!5(>*qo9wpy}n|M
zAEw`;?8y38n@tl;HPV-OOoyZEJAL1eo{RlVJL-($rncm!D1`glP7b(Dis;@3s%m=Q
zDDIHT<YVb?U?BV)+yJ({?~=yv=MUvsly)>*R<ZPL18U@TSo-X3cGh93Ji^0W3|HG>
zcUfH?V181({%adspV&9eRUQIp-~ASLA8AF+mcJ?M;Dji|-(`EBKtx2tO*2lm>7bk9
zCD)Ku@OTVDweYEQE;r6U63OdJy90+$<)fnC&5BE=F2?*@dY@g73k-!$?bkmrUp;@c
z<b{d<ruH6fv3*?VP#ogr+C#0mBUCqE>23K`jQZ>`ZAYPe&hCZe6^RJ7**vN=eg7E`
z`AW>8^{7xEa_vEyXsy1+9{gfZu&Wfsg=-NbDtU5QBN|Ns(1rLyzi_6Vb8~kDh2F0A
zf7<gQXX*HNvpk(TEPcr8Az77sNE{YNt1qloS75#T`5>e{6l423hBVfB|COR#$7spN
z=6CzPM%dSiCbfZ-U~fCeq{Bo<lSyt8J}}VFaTv0X+FP|F-a2d*EsvZCK)7YA9M-LV
zykomnl##6!)duB(wBUOesI52rIQaO7D1qK~19r<TV%YGt5tX|v&P~p`4m3A3;8>IG
z>1+SC2~9`8M7vcuchJ|}%RJTav-Evmoy+ndB3GSkvpy=SMNw8dUfNPWcs2eLoonCJ
zVdMJs*ehyU9X}HfEa+WRt4qE)j=H)dIAZf;;v~M4jx~=Qw_jcT=`S15@cC!3{gxJd
zAwGY?-qUJdVejS=c^*Q46^mQ?9O6|>y8UJZ_By@17?b>!`zg}c@gFzYh}T|rg?g_@
znv!p9PvdtdPMT}CwKO_#A)d)tffc`9XydzSD2xe;$MZRhakG4Sb{rpU%E6P%;xPY?
zDBOB)5*|}Sv94xfD>LTf)?06N(#^+{yVMU@JNY%V=cBIa>p7#>)zB_&96M=Mg{#jL
z+$fLEh{HW@+#E)Y+<?#BxbZseLcS-0f2u^echt&}SJgK#)rdM{rFUOH1vYPs5fP10
z48f9Jjsma~CQOh!24T-vdMvobe*DnunqX+LQgnT<_NYu%*j%CXdOf@t^R80*ZSlP`
z9&u{_z{KEo8#mB2zW&;6G~oL)YL6B7o0cNuH|j06id1A4mmy!Pbwo5-xGvGg4Y+~O
zWAP#fp<2J&@pJ8FP{l4(_ox-l(mdSwZ}#WC_JhslFl%DMe8-_uzxi0aMD4d*TdObT
zrLI+OzKMWt)=Mb+OE#WXYyK6%-n1wisb^uT4)fKTU2Ds#Y=&$bKim#w^@+jHqa04{
zkn_JvYckH7lUi5?g$IKD?FX7Xe-exU(bHasV>T~N*wTuo!^({SpFls@y`FH1KZ3hA
z84F+H*x!|l{XUcJH-9c@O~v736PkvkGS~o2xYAav$_=Bn&EY4WgH&6OsQE;_`xzPt
zKdtswYi<G1Ke7T#7RMv}8XK`gyR`?k;>&+1<?0da=de~8PyY}lsEK_&YIF6T5ifmj
zGE&vrXl)uh*8Fc;lSaLTAkfcVT+I#F1gOik?iiYFEmw!-a}E5}YM$yEo6*<R!uu*U
zn*H$x<P~hfo|-1Kb~wMq+VSNvD0TQwgWm-EHSCB`W}qDOYe$W#SG-Z-s0Ju$y9vBW
z^t5A7t#u8}O=$Q?8RzurwgZs8S*#cT?r(p+Fo%Dm)#m0q(A=oZF~s`hV3s|61J(UV
zKWel2x=E}C(lYmlt<_!A_x<QO*w1u*i6#+Vl>|@ma}d~cL%?<FdU)(}G+PCKx{lUk
zkMuVnD8RvV+uL_Z+(w(f+j1N2lD<m`;fG1vr~ShAnXKN#?k7jfYP33G?PqLnbDlTo
zF(*{)VVYogEe9LrT6O)PzdOoK@SKQ<hMyqB6&9m-`(BjVefU#47kp@`5>jm`!e8GT
zKvMLUAmup3n)^l2&L)E=ny)$x9_f4i?VPT<U!pz5(uqzx*A0e3TYas14tzUq46=W2
zkE=p3^A^$5g6-AaXVU>w)Y@~mEysNc=_oSPqOol-;vE5qc}ZF)-q?-Yx%QXEI8W`&
zvS+z9e!NRL=bt)L95UK54m!Q<t3r)`-y_Yb#Orp1TDK5m$xnv`>T}v9hX%0@-}Vz|
zRt`(yBe$nMTy>%8AM#Nsf~9ldp<#mQh;(dse?rezIn-7^lJ8N%1*RSLT16STT8&$=
zK{~ee2wfx{?+#V@o+A^&a94z~Zr7CLpkP-Wn!i<#_kZX@YeP8-UM@wQhll;^3`43F
z)qh!ooXz`CFRkA_Ladn?Sdk!FtY}8{TX|SpScxW^VTZw5cRk^Gz0x<755p7D;PKTz
zi%-<n<UXk^Mb`bH(jin8@|Vp<Y;NCM6CfIPzB-8F7uVn|QR&b48F*kt45nSG{8OKN
zwHNEtpFweD9S}Ghi_`yrT)D~reB`cOjb(RF1Df`tWX+RUxARD^FzD&e-olzyFJt5W
z7I@thgB4l1@@M7GXFZAsqWsZvaEJ6A>rniEU#Xw!_El90)>oaxc->;e=xkOs>ykj9
ztJS`qMqi}Gg8guX))I(I#^dU1l+f&vEidEAytlBo?l?|z=W)(mdVM^ee{(bb`1HfL
zduA}qOTMWFm1-#Vj;I(s_U9T{MN3DJYY;3yYkC+5O%}(VpVnZvcqz^I6pQWs>Oh@b
z(`##GjZ*Wg>=+Kq8Q5?HU)!IZ0};{i#Skpn<SYQIVG#Cw6^x0tYE{*E`I?)oGgwuT
z(o(wzRcinI5GS$GaX|=MsP+%Uos%7gJH4*fs)hvWkK4OZ=Z??^GmxTYY7DEEBU`R@
z#0&G*rP-+2bb$1CAjCmHSlkSns?%!RHQ-ab%@$6Em)-kOEjU`M-5hfqmQ}bT;QD!L
ze=TZ0w^LRV=OJy~JS7NyC<n{a%9NW^At}gs&{1u<LD1i)rYmiRY#UKkrY5LkZ-=f=
zC#8dLth<9`*O2pr!~1MwE>>?sG@<pMuBN}*(JnW~4qWD8=gzNeEXLaU?v8e}szJG?
zE$fsf=<IZ9>y;-AMbn-gE<SbHHy2^_SzA07%?w^KfSW&dkI1^0i{BMaZmM182`#4f
zrGwgBWv4o%Mb->cLk;%r-ip$fHb{FCXT0IzU<TdHL0VI<0HDla`M6>1#p=JBn$g$W
zMq`8j1B>L4opdr^w+EXF*C8uC4Xb~jhtjw9q2^e-&6-<Uzt$d=-GhR3+v}^+Wua7E
z4o#hQ!nF>Ms>i}VI85&ARYUW!22{)2&U6I+#D2uGCyVvsGDq91wN^B1vs_hxber?4
zcF&fo&964$w4GVDr}ZB-@@K<-;$yp}Syi9+qvv8j^R4uqYOm9P!+38sh+YHB%34ME
z;PZNM(BOkWUq{<<-}hbJ&AfVuEW3S|cwitun*;mJ^F+uU3lSoUuU%Sqr9XamEI`Dh
zv$mrqBBHa!KNK_7K%$}EQF|p$T;lHFym1JPyGZ&q9$p$vYU?v7Lc$H#%1!s$?jn%-
zp7PGxZ@cflj?*WrHS|j3swhHw(p*H`a2;mc9*fkh5*QA(3~JD$v#kv+4MtQMN|2wG
zis;{FtN+qdON)AC=o)YP4`52VL$p1aKmSu-#}D&L|2k1?+p*!Oa&2NTocc~arV+<r
z!}{ua*XNKH2QVQJK0{bbsmDyc-D5k?8^g`5ejKRp>zUp#cB~Q`{!$~&d<f>~LtK2A
zaU^j=z#Yk0B)3M>j=HxCuqGo-Ip0c6L)I$>G<oZhym*dUL)zKh7TOOe0c3G~tXGKD
zZ7jS4qmZz4k$eu)erPK;?X~?d>tL<B=JUArjy^xsOGM|u#pBG!n(h-r5tCkwQndmU
z<MY|r-1jDth=z^R$KS*HXVzhtIRN_rZn=82@{fIT5_?P4nq>VK;-TNfV21C-qUr+K
z=u5B0v^$sK(Iqo5UV87rzZPSc<tgCl2JCo!Bjm}@Ek??(XCv^6?&%nPg+Fdtv;vRL
z7f-}BU{|352Q5>HjXSXZkJ5pxG!HTJXQ2NPSn2fgqW;XkW0PjaVxjyn-$@+bw-M{t
ztU^k1A|8F_W%=RJy5sh0x1}LB$`ez<@5aMV=Axvc9GhRy#nX?*<L;kbqaL##M`dmj
zVxQV6_1PD`vIuX#{kD^?2#<uTA2@5qV9ND(%YBufeh%%{$ML!<IpiAp)8L-xCVo?t
z%*LnEziWrYO^5N3IJ})a4Su#W;zUFv7DKSqi>m=x4TG@M7tLRYQy#_mOPt--@`Bej
zYVUAxaVQcWPca941+Rrq;<35*Zn+qdWAo;eMfak1L(9sPiB4|h0KUH6b>r9#@9KTK
zYvt|bdvu!5!yJWWyIBT?8@{k##i;Mx6g;NhXj6nD<-hGU-Pp}nH(zP05VcreZdEpi
z3@DOs>UkmgPMx_1p!3s}@O03ewn!>!w+h=%xtLx%*$O-LTe{{{M?abyrNL%5QuaeT
zOb05l>Gd3BiJMlBrz3s!8sxlEh|;$zvG0frHzR{R9fVjV9-ivWFWaHXU?%~>ahIu$
z3mrRc4y>Bq=^1S7*_B%~)9;CpdskpZydEJ}b$?I$7xmb;yA*|MS0nA&0&K16IiFpf
z16u3*WbBk+<px^&J~WuR3#jSSYGvEg1;gK7O}T@n3#a>9t81T0>sp<tZ8jKwKCXs(
zT{PVHGj`9cnqb=BE^Q-Hne;xC9+1|r)S9S=yYUkc_!G5X+LL%*Hr8Q4nuv%-DsOme
z=kS9WI6RMaerv0Zl)muAyzHIWk(+{fQ@YR5TMk#DBrg?7b7tVWnF+`=^fR>FVnkV9
zI+E^*kgsuEcf$>sF)JFeNvX)pD}m8wh@=Ha|E~6)4MTCz@ol^Mz?hQ<R0l#jzcN2y
zWxs`4$!Y0)PwDd*Wi_+MOxPzMhB|Ilq(3}7yT=&dbEW-acDoYZ>TzKGSFJW5P8<pz
z|4(~Fw8=^NiL)fdXjku)bTy&;&8^b;s0Tvk&rw_5=nLt1Si5NRMXMU9w&Mr$)VV%=
zgEjsOrSt5VRIGY%0m81A)^&NH2fY2KLmw}le?J%nKl7#CA>0;vX+{0V>Uq#j5eT#Q
zaNT7g2oG1*Q&UBq`I^_@ue%=b(2_adcAT|!oQMXKJ3{Y{Q}0VuVAsbyilve1yF(kX
zX4R`oaMk-(EPixxKLfCmuj=s8ex>(T{Y?1Vxt)8(bUpNPrKk-s96TZqlYRa%Hp(w2
zK|kAGh;=mlXX<gQ=smd$AJnM_ZKsdmt=CJWF^<QKMKPE$kOb^darehvk7Q%TqM4Xx
z@!XzxAaGaddTBZQ7gEyKW7p>l!=6*4#=z4r7~yv=#=}`f*!*@0o`3LW`M9>#@Fae}
z%|Q%y>^NL{>7`D(ad01{zTetd5A%Be^*{Sq?`&%;K397ujPG4j>!sIBR<a5o9#-Gi
zikc6_J#|mqc&$~cb<7mpxIpw6VLYtdAN%I>Pvw?wJ;Q_LT4ITaeoPpGr5^ekfYmSv
zORgID4V-h!{hA;IS!O#g9-<m*T)9az%7r>=q=Rq!?`lD#^Qs^1vaDUEH(&S%^^Ebl
zk8+`;{AOaool0-Z>$^~8@fEf2ZC08~^oqw!-H?>}2=b-ln>g+5&?3s7m$(>08}B)=
zn_?G^Ha`U%a^EVY2|A};JVG3Wd8yBA-fTH#Lix+9k@M%R*z>VTsnycM8v&Dp5q8@G
zEJ|30)Tfp}t6SQx8Yef;+FR97Y5+WJggI+^R*l(9+X?j!`Q-lAs5=(k!BJTB+f~R+
zUxDQKXhi7(;jNAA>pD~x=3vvI?s{3=Mydbkp~o_t>!^+HHZ`o<S8mt9|0eN$?I^GN
zTwPWs)K!XGaUO`eKEOd!`-4ULanWY^j%Bvz&qf!ewC?1ZjwYBsmi|r-gx_Fq-@|=B
zqlOQ9Ic7qQSp7o>KYZYMg%XVz?&PLo#d;xYN42y+s<u^QG!YREUuQbe*4E~Ft)UaW
z&hrNsd-}egsVH|h^#X)f3bv@t_B!o;WBKT=Fb)BtM%e9p@ySO!P@0>C<k(0AXxBDO
z706GDMtXVQ9yjW&&O!8yXe`evf}vUo(RxkML3d{ylGE3sVC!ytQk)_W@5u`j|4r>Z
z8%Am(?V_>fZK%UuYZS6}w5oYP>sBI~Of~X3T!`ObAB9TXMw^dqJ;ymZgR=-^o@hUN
zwPcPNt4`ndj$5`k*@`dKUhn_sXg(|)tAjxfbx6mxudlZ8z~)Ni?2z9He7pgx)nSDP
zy3dK-#;T>)ak^L2!Is+pX`VWVEwfk~%<+5phhf2e$w-yYuU28jgVMQnu(y2v+Vxcv
zl-1A4!`g$Ydz}vsnBed{+Q%<Y>1l65vvwVAxUaiJbZ+<s;6}CA@c95*G$1-BPUFbV
zby)TLx0IS!0~g}a$L}9lc(m;+IV2}4xCxx(sCJu4@c(zE@8pr=(0*=Dp3uUD)8Ox@
z#-B?kAy7Si*?aserKj;AHp=xWoy6Y%NkL*_Vz2I*&GI{e{p*pU4tsf@qnl<!;KK0;
zjEcpw%zWf#J%MFQVln$?{^p8_PB!gD@l)%tgS(XB<I<~f^L<a_=?9eP=Lhe6<ghl_
z0lCx<lYgr8R(z^OT3vIh;UIR(ec_mL%^10_2cId>i8`x3JqVMSfo~3@W|#Pf*$D2g
z%Sv@Aru@57UG2^~QFH7m9RB!C`St7|Mqr8P$A=+UGV5;uR>L4Hxx#z{XGCg&;i*SZ
zWbq(yOYtLkV%xcSGPv{Gfu7KL!PjZ(%|87^`^&QPU=GrsvaHF~h|E<vsC9bB)C-Yw
zW0c;O66`T*AE-rDnG&E5`c-6)+IY`TPHy6~x2hpnAB?-il|;4R0T1=$$aKQd%}>#c
zzS?Wa<1%yDu=(WqR41$(#%h7juasuKZR<eY#?@H!N*?mw?@R5Y7R%);C$+VH{iV5P
z)GN(5@1*a2t5CT?=MjLY_!Y>=d=Ag8T7e~t<FR0N7(xPl;CZIY!L(~S9IkgAZQA^M
zW1Ow)Vx8SJy!O_C_J68VaK$+DO)S6LEW?b}U6fk$Y;SItc*8GvI`j(@uwqpvRxMqi
zG{r7W;hv8h%=0?#a<xWn(M0=@-_deIz`sW*H`{jC;d4<KN9wUhOpM2L`1`rKtqN`!
ztsa^=-d>wfxi$+q>+`Vnkocl;xKdr8M0pRzEO#B1=1KY+aD70}W_Jd|x!BKK;$fbT
zCMQAe?i;|tJ!(N}ZB%L<3ZHU~OV7CU#n?-<scROiv3=jR<D6wqPgG;8Xew3`xKP^f
z$oHXZu;Hz0C6rG@M8jUow&l2X@^!f3h9oD=!#3j6ZAxE|cXu<hB$eUO{yl-}?Wa?E
zTAI-^2!}uJmjxhHAA^+D1=z9o6YPB>1M}ol`xX>!t8%^e-V+tb{B^c`W86!ZjNF|E
z@X2SNVej^06u*>#l>6r)a;h&nzq8$fjF*=>UmrG_AK<j5t=0MG9p6)KM18f|>p#(a
zLwdl>wX~Yx<Pfp{#(HCddhC9z)xp9)p|$Gb0iP=@4nn0Pt)@EpC=`J|8SJA_iT4D^
zEx<~?Y;|;0*ADYyyvj-IB7@01ef4N=b#NkkqFFtL55bjvuF<vsuDnVuy-%CrX!2T{
z)wE~mm3=zD8tU<DnoQ~jrt>qmNHnZmXk*<U^mVr#?P_KRm$1bPqT!~kA{(*sv6ww0
z9TiTFrM_4H203lPkZ3qLjfO32@Z?_)$^lgWsE6?AZ|{P?lU5lA)qv6_qkj}>mC;vB
z!nEl#5%bGO@l4(yu=*is8OZ-)RYNWffmVF*;xZ)Ndn=Z0aV63^22-wA?=pYbim#Qv
zA#gQryzOSWuXSS;jHl#Y7kmR_rTRqO%{m0zJc*rx;BayDUWvm;r4fI25OS<_!Ht+=
zBQxuHoz9}>*w1nJL-FEn+<2XhHxm(!a16ncU403_YU~AJMU!Ymg82rHq}kC$d|3-x
z`u1?tkZRoWG@jU~+!6{}l7hskqOS#I8BfFTg*@0wD3YyfWU=mg)zG5)T$*>a*PiB<
z?pr;<4g#t6T?BXYiSVarap7)P%kfXuKEU1GP93w~8Ik|r%FQr9kCcbiq-}LJ(hF*x
z)*LiWcRS+bz7~|cXH?!_U4iw7M2`+}`XJGBo~uXAKkQ$qZ#`D8+yv`W)7zf7@+ZnA
z{r37M`@y8HCe&A{{XJX>KXr9(`l!L&%-oOPSor)zt%=e2Ili=ab4e;UQ%yUX8|rb<
zC4H$A%VN3Im>iaC>pyDLCOL!Qt=+uqFrltWxhorR+XCoCZ7sI$$ed_42Wai9?$L~Y
zPhDs-9aMU+_k+z=@Qn>h@Y5E#e3ahcpZN5xM%1omRBtRq-b-27`l+oiaD&IBFobD8
zKVP+(!=D~L{!n7Ddr;GG7V34G;Exb_o2*3LKe}K#yhje?`h*7~pig(oeBc-C!uI;L
zw7ni{h3V5TG4@jNeh*Cei5mQ^szJlIO7Gz5!sl|zzz2c8{kete%sJT4xLpaK>y_S`
z!zKs8VQt<e9zO6i-#~9geXZCs!w@iW@Nb8@dHbjVjB0%Th5ftRS`hc_YsJ2e8<b$d
zq&d**f)RH693{a1@dj+#>*%I45fKd+UO{2fnV3+8?H}5Y9ClXig7OG-5a!>^^R{mN
zZ~ni#?2E9ys*fqy&U%!sN<!>C5y*Vc)|t3Fyh7p-f1mpD^Ja6+P0q9#cc~8u>#+36
z6zKhJhn^c7EFX^T=KF79N+7jm4{Gh6h;*X%!y>i6r|!>hhf%&(V24RsXWvtL^#P8m
zpz0$xt%ZViblE=y8z4{kOi}8q6vvbHj+#1}8kA!#kLmEcN*<*6x*j#+5{@naK0}ep
zbMrxfdX80d!2a~%l-g2+By7T2j7dt<cg;;oZ*{%a5=U=MraGl3&>s`*ryP5l6lLQf
z&7NKIZ1ug@FTyHySo{s$U*I<38cdh_9Gz!NWv8y+fdLcx6d)ex_`5ze$miHASC`wr
zR?t;%zTPl>vR~iM;|IhOp4vHD{V|6RcQ#AghfJKKX*Jaj`nr1>r`1q{$N%#<i{(H>
zt{CS%9&PVcp}wUEdp>q>XX20%6>6_;ihAvgXxLK%u+MCk>wm?xpFe?Ri$Zb5V5C1T
zyF#su#)!Hjj+*p8jw9-A!|^^>NK>KqU*V_rA4G$rr`9@;pnkv78+xT$b?voxAwNIg
zVfW~K<*m4BF|yTR4^2Ny)zY7=!&`q^gEi^v@Sd$__Aa~_SBL%w{zE+$J$dq^!<zYN
zprm8N%RWa<leD&O+>OKPP)EN0LVedyJ#o3xHzcn9**&;h+$L!)#QHziz?B^AsoFR3
z+9q*?>WRA-MB-{?a4*+Pj+Flz|M58v*L@)OhyVK&Tq^fjG1nY>9Ic<4a8PWsGlMb3
z=9`I#MmC0E$?T?^ZbD3qQUhau0<aqEAgmat7&npNbxkm|TVdM|DRC{kI_vS#Mz#N3
zJ6eY9r^=LIs#hY?{wo<Nsfp@Mmohx@e3_HlNBU^vN2qt07Hz|!Dy=4&I0R``81#u3
zCI)FsqYNMY-B~=f4YgHeYJU)dudx-p?S%1<naEaiK#`egNd8S4vXo<S7@to^ezlYD
z8K=YTNy@lea(6*g25Wq;P$~P!`J!?OlGMGu2lckjm`+r~@V0Uj$1gI_ZcUlC_)U#a
z-v6lqh6A>419ZVuVL+w&swX#G6Bwo3G&!~v<@@d3Mv%s_V;xpLn}fVpD`B$NeE10B
zF*#Jdxl{>5g~{g4wbqaKpj^H;G##On`*Q2bV!1dfSBvHDp_`6C?RrmFSN9DeTQ#7_
zT2WoO+l7E!JIZ$(ZQda2I<gyvU1A135EdF}`{rDGIVwN0zh24Z;}M4GeJmfix#9GQ
z8q^<YMdjXuc5YyGhzgPwJ{C2&TpoZM)YcLAy;F&Ldw0*I@-1Ac)a1MAW924a|M(zS
zr(8&{{>N_hhM^BaCToo`x=ySY@~0eauOC%GUMnU<AaIgA5S{@yK$+!zD1X1+?hV6M
zV<A?qUW2^#n^5C&#p6vd?U&}MPXYYCI2ZdF4+MsWDc`wYT8Hg~rMtHQt9|cD6Y9i5
zuon&=sPTcAu2a_NO2clL?ENn6aB|EwL|XT5LaDqG`eDx9;mSHYAq)%dP)exojZN4$
zbdTE;5z%1r(_y}PPFL}235>Sxfr^JA*W@VYZFerleEFf#^MQ0;t(}h>j8NJy>8Z22
z1cho1xqW6)_9ZW_hus|P(J~}mI|H+0W09`4R^#rD@0$#$s%}L7UkrAxS+v3YeC<?U
zmuqtD?Cd^3bhme!Ax+czKiVo0Nk}9XhlrjkWdFhT^_0%)d}QaTFRYnAUyIC_OVD^m
z9%`i#Wq-(40xe!~`1viiu3_|($7S$Qk9Qr{BsnlXlS7o_$~pt~)Y&)=J!L}WJNx8b
z>j&%F8|&nAfj&QE=(4d0xL!Rrm!{9|IZ0)?+){)%*9-JJoAJQ0@DEmw<J)&tVxO&m
zf^?i*{+4nkJbn5!48>!7c3t8xog2ziC!J^SL$i%@mR4gqwjL9G(=q+JK2F^L$M5Ft
zjf<pnY_#veL7NYoTAs&8N$1sPbJ<GgXg4TVVX%KU_8hSj@)gVX9pya8C*1P-*kG@_
z?a(UJ4Y<574?PpnSus^QmXePdfczJVY#yuOOe0EO&Q$(wY6@=uDQkkIk>T{Ajd)oO
zzykjBAHqYkCSlMjfW2%QZvL6l`>tUZ8tmNG`)c1-Y?U9XnFRd}7B?!dod&&pJ^Ba?
zJN81WG`*+OXxOn8ax3n*6*o^kOCi>Qk_!1$jdZNtbP)er)nF&!dJ-qq<IhP~j8`9^
zqoFco#v-Mnh);9y!Yd!3)#mx3>iABq&sQGSy!o~p?S@PT#rT_X|MFS#c}C42A4Arb
z&m9I~PnotND{Z~}kfW!5DenE5{gmpZQ-TpL{XKm61AI^;LcO8T**#~_YL2bI!T&uh
z-{TGaY4F)S{~;neOBjNs9<(5Ae*>@@EeOj1EcG%~k2v)PPRr|?QQ@F%-o|Z($XEN%
ztwxl+@HEPl1S}G>Q=pSha@=oOif3chu;#|6k-cRwW3c%s+~#0>hf1)%RPB$QiO_yt
zV-31_zB!bfU$EJ6kk_;wg~e+B)cMfaxTz^_Qf0oN*7OpYg^YVeO)I{LS&?RbYBc+)
zeA_oo&D;@sON<gQ#%34~)xu~{ZsNuK{B~(<Bbi0h`CojARvR}V+}zbL+*i%`(q1}E
zXs<+G-X>HZ>wt2(zYFb0_MkLx1FFSMh)H_PnbF5!-GngAnJsP$w4?gZ8?b4=3GLdw
zgm0Tsv!eioJM7mN>gFGXMG^9C1k{w|Aa6@Gn!fG68PRpZgngS|LC!l(z}F^RbbT=V
zdK`&3FP~xQl3@JDJxZ+5w4)G(yXw%a)v(#sfu;kSut94I{GR_nur`mbGA|dkTzAw+
z<5$b|hc2`>RH9H@?j9kS6B!8e?HP{=@K-~g^*c79yrC6cTDeNo)_P<gw!V^s4Mrur
z=Tu!Oa$YS*{R!>+JJ4KXK*4JUxpo+j&^ZX7YX9a?-5WV5*j0~K?M%PNdgXzTx#0-x
zYxzj0>Y=xWD>tw{-hd68_rau1pQNj!74^F|V59s*xexR=26UH?^x5h2qm@wTv2x`7
zp%9f;Wz<|(j)Ip&O_uFw?(joMpt6qlmli^8e@DGxI3Wc7{W;{4){DF3?ajvadP>Z*
zv@VKmO)8o2yTX+4p>X+hEKt|irg!qN?)A#<<tgcsmPy^N0_2Eww!Il0ej(kVYG;m_
zP$T9k)UW&d2HC*(GkrI9YB=VEitlVf`77&C`o5`q9hSH8t>$gOdf(g8B$bKuH(;`#
zvW^bAu?UQugAg(DBL)=yxg2%P+K-3T@50%3tP&gEP{R3scPv1dc|CW7&#ep83*mJr
z-B9U52%m_E&MjZee>g=sr#qB`q{W#iJEWyCJJEKi4C!&v%EORe^RPB`o_aoaeh9ib
zS()EMnMltlL#=k5qq7aQTQZUG>ufZ7IVcf#clEsdC_ep%b;?ybpH9z$d>KV5``GzO
z$ggTdr*>0M`i}aF93<Sc90s(Y{$wcTM{3_CEw=>q;oWV^@o+{7j7PigUU#-NqAGVe
zo{+CC1R>>a9bCP%AZn;pF6~rF=lD6OvKp_kG!wDXG%43nYzac#<H|bKvQeG3FVu0I
zk><&eEti|^dSr#}&tqFEqT{n+XlOIHJkxo!3i(U#!*aPbA1};%JQ0zD+SL7(m>_D>
zk<=WQ&L5QC!Dn%fURh9pO$VCLp`NRBG}plJr$UsA5Ti#p?$TKvflJ4z|B#PD5$HQK
zN1=jzY(7)mIu++6c_`dH*ynl!(|sIYhfS{(Naw@ty{@0gXX=5`_>W*4=dmZn!;mYn
zQgrXwzZTLz7RT{*oA64Zbe?@uU6Z=nVS2w5c}}h)v>zx`rcLU~d$qDV!10fthA{Pf
zv+^&}dS-E+-1Th}s<&v%)(`soqinWpVtPj{yOo8gcKN|d*NhGR4=j?GtqF$L3b0i=
zA2zRh*4Ig-bF>9LwvRzxcfbBptt~eI{yt)wh-i4RIA*Apj>{HX9=Axxu?+@f$44Vo
zeqbpSDXS9^$_y-x1g9IYqjU%4pV+Hs;?~Kh(NI^1I!E1cs~dAC_TuHlL?nuCi&}fS
z*~JK*yBIUXb>W7Mc=^Q=y!Y8xIIUeb@B9jN+h0a@-d=ec{O8AFW{;b9lQ8qXg%GjW
zlU3`H{XaW!Q2Kr?Fnao%BiQ@bb!v!rJZ3Dp3!x*WR?5+VxOM(Cx%bGHm+|tpgE;<8
zcNF&YNon3T6r)5wJ`08ZCbf178ak8jM)I$e_R?xz{~hMX{thp^Q3>Ox$MMZK-^ktZ
zPd~uUSD!@Oub;$D@eEYZVl2LGNF%T^&zY%s`oU0mq7^%zi^F|S6k=zsG+o-UCr;s;
z<2BN>J%;=4dsdz{&(OtqI%SsQfUZ|CbU&5;e)tC75J~dMI;aha*fb?bG*!`x5B7?)
zY){;H?a<FV5z)DD!KqWH{-ySxxBm67?jq3o#b43=@WT)0zoI*H<_x;Jy5#Qk>C=$P
z4^yU0kv~K9<JN+*r8BTxz8H{#($A8W3kSA*QHG>2aRWy3aA~h5|J%ybF>7&=Ttkdk
zR2mAh6A@%}r=@Lw4iaK4Z+P_n&Xz4nn6XT$4K?MB&ycJ>(W@{b=h|pwi{3leV(&{1
zZo*aP;M#lScS65zFLLMhd}rgvBt)br-{TcqfSs!&yKfAgs6hJd32HNddaSL?#k`5~
zzx0D;84ICEDJekmO;&|-)PVG5Nhp$QTMb3p)>0()2&DF5-qD7NRkM&#tlXIjy+0Q(
zJg$fDDEVc#9^dJOc`t3n+B>br`kfKkG1178pZe@QU9|<#nERBnM1y`)iqeNeZ8n#v
zs73yqxyY2p6?CT_<F*-4g*X%($UtO21HXep+yHr6xk;j5`W&Kcp1ZcA`t{Y=Aeu~@
zos8#h>#l1;Xx(3ctP&*@qzFO$szp#+Hb+;30nfZrE{#Rw0sViiLX=pqEWUsG%qV=h
z%XYJL9{%C@&zLy~?AJ}cR@9W_q0mkZi=H>>5%RqO<zgai%%Avt-R2D_c;C?tA`b-4
zO+fsuKCr$|;;eieI#Q06FNtk67>gc@M~IE!p128<vqS0;O%mQ0(mRyqU>Q69Y!{l|
zEkwbVI*Vmz$pZm*#3OE|WfOsp*Oi_+P`{%H8{Vn6Gk(eC(-Hm41(@#LvsAmJauET&
zdb=O=#B^!fo%C5AO7}}sDox8O%V{x}YXHJ$dZ2n&wasbpynX@VV#44vMjfCsm)qoU
zM0r%B+-Bg`6T$Q2@Qa`IUMF1B1=Fqq6u#}CeB}8|z=E5+dwoaOu}T#FaVzTVe;Ak)
zhJ@G!R@+rymZ7E<`wFtu+A)E^m{cU(Wbc_<XXAIay-D-@izSG@!Fv48)>nn!&l0d`
zexNiK*R<}<L)IJh2zwv{3+#oV2Vp-tp#6;9{e+Y6Jk^YSn+l|D#P+^X@DMjr@6#i|
ze1o(L^>3viZ?_NTEMJCjdtql6_FdxUZu!a_`PeG>7pr<Sr7Aew&OHL4*LlORL)2r`
z`#bFJ+Xl3(no#-DI&2jednf6!?AKAfn&IvG+<=^y%jE#9-`r(LmX;L}5e;u`?`0z?
zB?ndZf{lK9WaO+x+|<4%2b2+-&xdVXN03=uYv_FqKw*6GT13Af^;n+^JNT^K&sZ{F
zH;~Tz_ekgcmd(yf(_fL1goM{@M>f55Dac(6L?=j}xAh&JRmcvHMUF+edi`z-_9khM
ztV(Y=l#ireW}?Dg*$W}kIrBQ{oVmv}iB1@E6Oi<Lm0HTS_#)=HKO!SKz`;4XH5bO~
z7lW+KP#9xVQ6kN8${TxoEwjdLskm=xiR}k+rO&6#JBjQU<)voxI+W9OvS0J&nvO%8
zkp8N4d^KSXmMvFnymysL$5|T3=jh@=$mj?Ev*&qWS3S0-<)N}a(<Tw&%GH0Crw+-_
zMOoCKX^XRCbNlE2{ne-GJ0%@Q|EUm$20LdylcKQXmzKxy7A%&N>*sq4r`H}-&d%5U
zW-dX(9hMJrcIz$&`|Hs_#*b6dG5wzlu=S9=vqnGZ+;8liRa9I}+V6qj76=yHB}hon
z;K40ukfw2W2=49<2~Kc#ZCrx{CqUCUB*ER?&d$s^^UXW+-kkfdE_y9kt9S2R^;GSu
zNB+MA=R@<m=t&)9><OoebJN97{64?Q#wIUnd$in88rZ4w>IZh-2BlyR&9}(3Z0M|b
zztpoLu~pAkH18eqVW*{6`l`*^mw)3nB&uq?`k?>zaZj=kTRmmW5C6uAZGb_nrc1ke
zDGc(+JF_!D?(SiWhP~jEV=9PXF658mD~zRCBF^eVudwB5$zMs^xZIA@%7hkGNcqqS
zO<t&>#|2y>o_65qef^2}qHmG??Q9=LzU$612eI+7Zy~oQU1LfF73Rv<o&0bfvA;nd
z5HVfbxFY|W6Z5=Jx62b1qnP>P4Ee5g;c#H^Kcz;A!K*)yNhf}uK$6~7Vb^Z$rafOP
zO>#4qtN!VNg>J9#&9jtU(1$atb8J2{0g#Y163)WU_+9OIa`;RRXEu2)iEnWD5hME2
zo?S)|m*h(zH0+xL<if|36uV29vddGFIJfxxA%omo1k7@>e*eAZqpt%yEJ=QAR^#e4
z^m9f=#!}>Y>RaPCp63?PB;4pkI-f-26n{K^F4?%MX=#_ZiBL>j3?b5Ea?7h|=xQ8}
zGnL(9fdO*I=F80`h3<~Ijw8i|f_P5m{WRRwm;~zTB^-%VPV+XSpP$v}eNxjJ)^cdT
zOatUSxw5bJ?b#4&zL_R~(yNxcISf3K56tdwrGw?nsWtdTS<2&wi-!F_SI|iWyM?K^
zloE%NDsz5W!@03|tqLVo8JI0NSxxqLw)Id;r1nz}?01XI*{_$W#qN$IHK;BCawK+y
z;><xvP60V{m}ghe&eYhHOSf74X>A<mvqVx~h$Eav`eMOiu9GX4+)`@$B^WZIqPP-9
zJdr_YIDZfL@N~%iJ-sa*;CsgO<JPY~A?g(_(^yJ7Ss!8CrXa~4X+sd5?9lz2?lqpf
z-zkL&`x0xg9s*IMV~J0r90d%l@8>Rjt*#YFuh3be(y;Brq@QP@e$9@K-Z)9k$7oDd
z+R<k~GVqk(N*26ida=JG@kv9tH>G6$4Ll2lY&XKl&E>IFw}K}txRp%a6Vc$#iWR|(
zeMbmjbUsu)?<KQrF~5J^stKp@36J+8nO)Sm&lxdwmc=wJ^gA6DH!Z>BlqdeDN>u?1
zub3gl%4nh<MjKp>dsp0VV|$^e4;U0WAp}<!*xi?JU?_%HRo#*L!L;t5Jx_iDLce>2
zGJAdKeOCf-EX_l_M-8VtSxT0Q)l;xGf+_DyK>gGX?_0w0HZyAk+IMHaqeId}qZ`YO
zyLcD4#xB9Pwyg`!v<SHOc;-Z^WGanK>heUQ_A5j(P)7xKle8GPikyn-IAOC6J*EwU
zij1J^4Pu!?aX5|r@(<aOMGU<-*Iyp1cdCfze2er4+>JdySRK^?=ZjAg@{8U1&%vvL
z_JOkZI2TQgtHR2SXC|!awzYzg1Nnu={32)ewcOc|BHfHcI96{QZpOSnz0<~kj$!xF
z4mYC_IIv9ScH+oMNIc^{OvcAQS_)W#zS|aWu<~uk$%zvE?bJWlCe%a;KS%kDU7{$(
z$R1Gi_BCfp{H!uePw$4}O2|kHRk<F~4NK&8On6C<qo)lA-i^CNO=(q9kPzL_!xu>j
zf2n(Q_mco_InzOAWI6B|Jq#YyL!K+!Ki5(YM_lW<UF4iS;-xT2Z6-??dA0vuBU?Og
z*u9C+ocb*|49>Q}$TJTwLA{0)#nn`Hx=g%8$J7R+(QmE|-e^^zzD6>$QJGtxNof`c
zo7HOFdi!&XQkZ5g#RNK!xTuoYhf_F|w#=PQ9{P@ESPwkXDf6Euk(G;2&z|N`8|{(l
zk~PV%`e_PkRDhs&g2$<7fO8rsOE;&EpFR89=WSyr%&7IY`TK?s_rP<Ns1({8qFahB
z&#W(fH^(n3JO>rwE?H|m$k>xgvpr)IY}j*l^WbCrqMv`Gj358CRym@`zm?vBI#mAo
z0NG#y-Q$*`zYHZG*UlrBVN*#c&duA$<_%1DXK9P_x1qSD7X}~cA}Q`giuY)Z4~8RU
zY(Uj_hYIJ>cs>7Rfhc1CLfnn(1Yu-@JIjV68`hEGfk^%Ffyw|)w=ji{hr+e{mx76%
zBrN-g1|ckuLWFTuJ_yexCnQSzu384&v)?ay-aP}I+<$Q|iG!c}^$R`t@s!x4m~G%&
zHj)^>8pqk`^ZwE8uw#h<bSJpv@lg4<8(GCFbr94E5t6tz^H7?(-#<ss7;{ne;{jPn
zb56Oe1_FO_ux1#e@p48+LPi#=(jxa}?{+!v{WM?m)nxI>_pyxHL*6PRgAnUS1?XW}
zD*1ZBl<>q5DgpO*!2J3W>tFiQ)9`12@G2y{#3X;*LW<Quc&rI#$5w$!nU)gs`B#P>
zr5%G7Ouu2pzXoC^UAvsNtpjZ(WW^9wStPnrxP$}}a838bWH2yaImOfQ)}u(69ZL0d
z2rWE(N-!m6G(NcH!GHa_4sYFAEkjn{Do{N$UbvnEZGHng3!K>bG5Z!FOZUY>c|_m%
z6$dUwcJ)#LhHP&#?~6%YbA_hypu8I?NT`0b1pbj+(D({pPAOt7=SN_>!{nz888|np
zWzDQArd7$diXvuShCCuIeTk&!9RG#&oL@kvtZ+(L)4H2FkJ@A<wzrnfDRyjA?hkz+
zl=RFcTf45N?Tr-H%jZP8C4P6r>jzd_EpI1p<jP%$1Hygj;HTLre$dg7>;Szn`O`?D
zrULGl_dvSAT`YIci;L&hf%JJmNS%FCsEO2T6%>U(0v5j)%Z(d*f3l)#A|d;1qNMkt
zb3Ev4P(|ZULvA<>cQ)@A^0vqZNbK8`zL=gD>XHk+gPPV72VGHb-ZDQc^omNrCAEA_
zStykVnK~A&8e6YZrmJ3MVUOdAA_4Wa4=ITkGq0vu)51joLEsN6&uUO5hyA|KV|Jq-
zPQOUFB)!nrKCQh^LvMIh?Rf?`e07YYO?HhW_%XVt{J9UnL0>OI=G08Z!uTsvs@Ny#
z(mRsfy)a#D;{XA9WiKo_AepuOb7hH>@-wYH2gqbC+S;4sKl<J@{Il4b2A4v$GGKMY
z{N*Tw%#vz#3h&Ttw<89{2|ixL53}M8#VY#h#>L!NG`DZ}N(B7ncB-WTu})&Zvi{Nd
zi~qyCCR<EY@-1!Pu`6Qt$-D1WcEoMlwn7fm-Cfe!RF<k2T>MNzn;GW*x$CnSV8cXH
zVtbzxv-t)b6Eb)kl?r5`E5%72^V#skkG}w3@m$f|xsC_?HbTgVtU3Yo{G{CIUpab?
z9kGWCudbIMm?JcEGK>HdAk)~EK&FctUQ*Rwr-yMcyx}DL2=H%*uvB99uT#8F_I;;^
zyDRpfJwav9i_>|nGMYA891}iHSvjW}A2P)cLy(scQLI2qw)j-b0D>WU2^%Za_<RRI
z47Xu`RZMD`NsNzL^bLHcfi&omn|-IIZ7lC-rFx?DfJ?4$(MZXasfyrzapr>AorPum
zfPl-uh=29d-tRTwkBj;;^|A8J!D=v;BOKvzn|RoJWB~6l{+9B3wM1=Iuj|Bq&N&B-
zd{ftrh(CQ#`Eg5(4-O*^M`F1fjum(?tY>RtZ#gwAPm8t_=+@P^^FCUmZGT`SDVLA$
z{D9U?Lx<#$(0dUXPl{ld7G%(nf2vChp2?LsUz@$yp?JAlz*#r10*G_}lgwf9@(=!E
zoP*u{hD7B;k3cTV56x5>U^XvA4{9YvfNzk*<F_(7W9II^+j!h~v1vu$$aRK=F3<<0
zI(1RNQ@p>Ues-EA+dG`Zl5}{&x}LZnfJTAZ%ncu9cI)r5goB&uCEWB{>|P;DH5<+A
zu^oHIa@W_(lw@iazxz`Od9&b44Bv}vR0`h%R6IZ@(ZiCAhH^|YavZ~=^u4PMVpWDW
zTUCd~E`xqpxR<Jm8kYOc3zeGJ#G*XRk>orBVFu$JJ?}H&lfw9+0l*W&(AV0MEV6Mz
zkbe2L3rqcz)xm}Nhj3z^#%{JE@Z8adlFbxEK@m_;L6fMimRlyb%RH={2qCLCm!xe2
zKf;OmrF_F#kJBS%){~KT)e}A~>_Tgjq;ko4NfD7K$&a~prz^r^2OKC&B$;1qhEdP0
zE-pEDd{>7@g^h{cpAvvLcyVa#B!N_r0LDOL)mp0^nr(Y@|Lhh*8l`K6tk~mJdQj4f
zxEi!}?myU--ogG{nb#{3%YZ0B+s81tLL*Q&3tX$fT6}UFk^sgu4xb9SaI{D0cu$_P
z!9=Xko7yC$Jj#yCXWA;@EtH34m1EL;Y`T9=y*#JgKmhXcAb%iY4^*2jOXgfeb>-dt
z3ZoqLlXTl0C3bdk8Cu?%E~ZYR1hAzvexczyGZ72GZao+C8OaQF<BeGMBL{4S(m5-b
zN?W<n89906*93l|Z*sJ<$MsFm^>0YHuc#08*|&C=LXbcT1P&Oof3-|3?wBzvN?a^x
z2$7C|DITQw(O0LUo*T@_!3|E{ygTYjspocnbaZm+l_b&){=Y1rm)utPuj3mrMu5%z
zi%-|bhE5(4r+Ar6O&IL$%7+qKmVUNLlp~+VHG!EJJ`V4OxSSoe>?L0d$TfND`m1tQ
zj1uKG^--O)AnadT@H$Rpz_H#aMu?Yy*Q)JhFsCA$IN<(Dx1pWtKg^#I26~J{t^!RX
zPbinh;$h(<^PlVgrH!Nfnf%8(e2*{OW7;HqF8+yQ09K%65T4B{uqXiBAcg;?;RLNu
zMGY7%ff_x4J)Seq-_UiqP$l4CUQ6_!C=ZITsR67)ZXeE{iT#(RBBJZwgXDO9F?^Ep
zbN9*Z)oWME%EytLsIfY{S$G<L?f+lI$zL80_``SfUxQOrU;pv2_-qzH^Zq(Kj0J{f
z@F8C+=5tVOa%OjpO%uSS$ru?K8&f!xXwm(HtYI9MyR$C82PHdq0&mNIPP4y$a{d0B
z2bb_M)5R!+p@Cy+ogXKYJ1+RCL6>;ASbql!D$%zIA*l?CbM~!mx^Gd$nN<F>Q2l4q
z$wMM$dlu7p>v#PN<pxL+ZZJKvA+IHql7Q;}4Mb_uKm0vyZ%je04pFl(a7m-Txg_$3
zU~=~MV=<@MnVG^zj7;`EjwT%xVCR&VJMiDbgnJRCF<tD!h!CHr<qeb`QW|MRnO249
z+qy_d1OaTRf6mN*`*chrG;09BOuwX0+@K{Yj<b`K0YE~&h7ZaED8iIA8Pd4KHj5;G
z2_vV;d;Ht`3n2`|Uj~M1qpH3hFD53&!qT$mYSl09Plfqzn`Oa^5oK2S+7JD81S25r
zmE=7*+)3rOpU~2eTMyNd8_&yO?2nO(YLk@@1j}ih=Ido`l5V%>mNFY*uRazHW&`&4
z*Tzo?+Olo%j!CY>&6P<g$MutB%RK<3LaeQO-Bx`V&F%W`Sig(XhL!ZIWAN#FpY*@v
zwIdT06#O(qp8}*YksA+0Cp@*bv<w|hTZKR>9+J3wE?t3%-m)*z5?NQzDl(Gp!Zz~R
zRIU%FV)Ry8>#qFaowXnFe>2BaL7O&+BfyQ6PX^Y|+~59jYb$I<8Pa$eKX{O=um+{j
z<h(-20Ki=Rg(-T>VTKU63c~dU%uiO?_4o2ZfGjms1hYqu)lY`aPe=0me~+b#JuHp1
z67PnD&6u{1o5q-yA2*aBb9=V#9oMNv?gv~Levjs4gf9TpDkfY3=vZ?mplLpUV{{8-
zZbn=@ue<zv@R(T|1h>JU+!RM+uVEI9E&YRopX**LlpSJFL<oh7Wh_`vS{~uqgz%Iy
z{=bWDJTKjNUccS<yz1|-=~6$shzjmjU$<!(jUfz#jIN<B=#vn$_NIWTK4SD(87csW
z7T~V_NjAGNwz_%7!hayGc_(W2-xgn@tzX9*$n)XH<J6!5aVJ!)3eyrB`(L*b2i!`<
zc7<Q~-wes_5QiVFMK$DSd2)X(g(B@2RAcl%cVGa<ZtC+dassB{#dGnR7bBF0mHKy+
zrvLrpgWSn{WIg;*#sG^f1`}o|@0I%@py$Kv|BRM$rJwuX{Ip}HDWUY*?i-Rvn-Df#
za;eLId_(SG`mgKIpTB~-ISPs=0j=hYi#M*c`Sp-})_D>s2`;t2flTFzZZTn&K9II0
z%+LScUIoq%=zjwc<1%6G{emg?`0i8Mi^)$t|7}XRnd*&ViThHD(h^)cf433>w?&Kn
zH&+J!|MyGh|9%1Jfq!fN+e`n}8UJfb|K1t@Ya0LF8?@tp(1y1u3w|rNvt6xG@AruO
zB(Hj(i=;k99*(AQZtw1XZksMv5@#0qkj5eTI2sNByjb)(O4yNq-b#X8^ic(&DeI{_
znMs55x#xQ+!eJ${a(=vc!<w7jN%U(D>Tp%(m!bLwRAN;a!B_OVBA7%oe9f0xHZ7X}
z2(o$(J@7zYs$8bLxQFDStN)>{u_JDa<z_rM^^HYIbej$@l3A6CO;Vx*f-=vd8BF8t
zW$0dL5>eTeoq}Niu8mxBuCo@Qt!#IaCiF&j^<p~h`X=w?D2BtEOv1Co(*biC>;x~A
z%@3rztIM&UZ8Hq-YveLrT^?x<yYEBJaCQwoBY)f?QlGouHM6Oj3n}Z(GwE|4?E@+i
zaGcDU+NE9{?QKK>jsZ3|%Z`JMU#i}h8Oj%u`Y#ilY`NA89k#&xK9*Tr5Lb)6S#6;$
z7RO)StXbtjDQ%}b#fs4UymrLJk?0c73Dnx6Z!GV@ZqBKt*>N|nBZEfZyW#nEt(~Rp
znC(<DDF4IPey$5IV$f%pu{iE22CtjFW}XdU5j8LOi?#JDOy10r;a2Qgk6n55+h*2r
zzS`==)VQu>^=_&o&3<8(IGG28zWZVd(W-q-+uh)k5DSSe(4P0|VIo%*kumN=pvtb2
z=#Kf&CsPF*0h9Mbp$c<$E30=j=i@S?af*HSGOImWtGB15u0=>vmXw|IHRJ?~P@kak
zE|z3uYrzh#JR3{IWP7K_#hE&KG|uFRjur~*t97Fl_2FaqovY4|9Qa*r|87>m$@N!n
z*juyFm(dhLBzAUoj=WY-rhfq~0pkKrbm++s5?gq{k?EZF$D^dsuE<Kz>1TwBp+T`<
zc6j_yKT=tek!f5ZT9OfcCcw)jhOt|Y$uum}y-%8-VD}?*5eU+ZZ1vG}Gy_2ZE{(fy
zZh5z2Q;i}hf25&nI4J4C%1UpDRn*gCHm*kB_f642eT%UvjWV%JW#U@k>+w_*^vjS8
zkX#<?ljVW%bHS|DWa;C`k8KGbOJ=h$AT*=|#&%Rz!<kkI+&7*4BP%}~TNWf8%>(UB
z4o0<os7tT@BR7vr5w(A{0R43-vr#VzR<i$ESs?%pm$xXDo@t~p88%G}&J!1JD<Ipk
zVd|kB;ww?t&laK?WU?)nofm3iDYaQ>?+CR7SZ`8m)Q~IbqRIHu{XLGzQFu^pEqGt^
z^P8&y)PiK#m2nr1Ery>5qAWZ1I2fjt8TWw?Zm*0-tpn$eoOb-YvEM3cegk<CqlAHm
z4R-W6&yFZvV;gkQjLK7sA+q6TnZZfhi%gYCp{3X!5+!@pG@+*&GJl~vse#Tfe?2!z
zQNR#c_>QatA6l`KxW{&*R=}i<MoO7elqDHKZ~)^fMgIPHI^+J0hL3FQMJ2=B``~2)
zxJAj;(9PcO$2UYkHHapPte_YX_00;7KsMiqPKji7r674dAyH{ApZ<0Vov~;z`+!Sh
z&SOwhLbkc`GfutKrYd~vt=r-13S#}Q0oz20weFJiH1wVf-rwOf_2D0#T&7a#!%lI9
z81cYM!&l=HbQ9_;v#<t?498PL<!9=87_)g?URkGn@<Cd(nW%>=^<<`2MnB|<f>J{`
zaW`ohN^reg?WKnF%SHpf{aCdXbx_68scdLqCuw4pKCk20Xlr*4znPhExZ`4PZkjQ^
z(?3&D%N<B=|E*jj^eh3!Ez?L`Xvr;SU5LTIS1XUGx<Qny%10=_F_+!qsDW2uiuEOs
z2w`(v`gf*Lnp@t+PuKg4xG85Q&Vx@6yDGv{UM^Py2EG!ht%v(PRWbBTDpGU_o0j!l
zO4F=crMLuBtvc16jupg|4+>x+Qi-m$ojT~H9?xf0N9aw$*Rga1FDN2eWGd9%^dSKj
zJ|5*9j!9hfcCHb<U^U*Krc`sEm+%RyO>7re%w<2B+xre$zTMI(ch@@ju21$ZIftcy
z-Uw2Sk(BIH+pw>@h#(2ajW(jczrv1H!Z3FfJs2Ay70VaCU%>z>w_Q+*>sv=keRaSo
z(8VElrXJ40woUOll+B)wM#f`C<n?{1i`<dywM(Oih>;)VT5|;ous(Qe#(jQzBv6%a
z%da=DXP65(5}*&dY5R+Bg$whaP7zcM$CWUH%uf`sg2!!bRE@axt-PO%SBujDo6k1p
z8VX-rSiOYVyK+#pk3F{=9&!4v<-gs=Y%(4#**Vzd4kTD)XG=zRsbBYVFj=wtM-V2m
zW#+;h89R!lJSX~3ML-t+FCam*X_{hmAXaXWi;7VhDY+{}ACLFN3r@?kym>Jv#9_ez
z<nipYoMaaf4JCW`LU4}WFa8#@3H^dH(RmpY0R0!eMv!;Z`NrVpo^C@xtl(6eF)3T}
zpoPYr!OAyU;bY(jJ^4tLw6Z<(mrds33fUc`EwGUu(^&Bu8Z|;THkQK9VP!fZLaGhI
z@)ver22SKH$!30sWS$BczTb_JWx{>XOOP4SkLt7RNLGvE5HlfkCF(oJR%z?z;37QF
zP)!uxr`vZe!VNW7J&_P~d!ypYBVI$e7-DyUjsG2a@S%4l*LyVc%d2WyhrQ=iw8Ne)
zvG0WthNe1S*T0-tA^qV*{u!25moy1_eYDpe4+2FrXn(btl*StLUPoKccor4;7-k@#
zl0*<YCpZGs9rU<TjEe5x+uVpESC?>E>L-QgP~3T{tXU!$IVC;Fn{3+QFD<S<MD@+v
zgUs0+ecx&>`vudyzCtqDuIxOLAgIGLPN3~#M77jzqH-v^XI}<h8yXAPgufD=<aklC
zxXsxR1weP>qIb)Gp@oxV0jI3pY>b&M;9wIIa)tFr+H!>~nfqWacv-p?s@bc#)_5TY
zr;+D(U%LViGW;!AaQ|9$$Ntr~*XFi5t1l3r^x#3VBh>o|K%w?F<4Hl~&y9Zg@SAG<
zlGV`9<Qlo(dQ28#yN2OGLz!{Ev`B$a=duX0k}z?8XW4t#G>!6|pQUVGvRLz;)F;2V
z%Hb-0#`=3@_tn?R!Bx=P3-M@&l<Ca8vSLwxR+HDb+~A91kZCF2kIV+gV)fA{*9}hN
zB~j$Mi*;^_zRZTUD$*Wu3+c#HS#UGm?e}a5?(Y|g9G)CtAFYHK4!#PQbkU0fYY0PV
z0o9r)3jEwS;Y)c=TvEaSx;?mkKKylFwGroIh__yT6)is^(mg6d&F6)>3m^>v`Z9eH
zc*jMb_P5Wp$Rvv=vJJA&*)&BwjI&2Gc`y@le*5ByWPp-aDToK;|JdLJehua$nBvhb
zKs1mv5ZZ9qgR6Lh-MVT@rGO=?5l&JZRul3tz&3C7NqvFWWD&IrJ!PlHS+b5qs=EL7
zbmi{2ha|43G8f@Sp7vAk{R;eC{Z7T9z+YkA+wHwLtdnukiv>)qt-K(g8N^-zsfM!Z
z&|*S0O^Z_KyL-WJz6ybzkGy3*@6X&6Uns1-{w8T<|6F=crReh8?1-<^rZ4;(zr_L1
zww{^*tJ39Xwug8}Gvz%DivyD5(s>K3r&swwWUdu|YE+-~LHkqfn|KBt!gU%zw%~Sz
zjPhF*4o2qqw9nNax@H9hZ`wQ_%3jUT+e+<EiVaM8vt{l5%wX8X?ULBB9a@epqu|>k
zBrD@!f7LhP+FSroui6Wgof@j;%Ls3}6x3&<lnd_NXvA!hTGa>IiT@BV>}bgK`00o?
zX|#Mis-nC4WMlGrWsHLwHBkeP;L^P*g;^WT`wUKeu*IN6VKke<nN#{Ih`rQ>O^mds
zy?F^%xOJCP^!e9?@KvVLBgYcp1VKd~S7bu{d`#Ct$BfuVKD#DuT2~yS<dWyu4eJK8
zVd6=Fwu!^wW!?`8y{aeyzHZAO`sCZNS8>P@6dTh<RNsQuRD4uIrOoK6oV2fm7kK$G
zkjj%vp5~o+t}_3!_mXfH23&*4s{k9UN+%*oRnt9({M}6SZWDTq8RTVh$k$n3!-?X9
zZFLb#FFdPDd&!+!GLzD5B3+m~keb_!;xb0QOPaYOc9&q4n6gg2rDZEPe5FD0Ciem5
z!WR1v6ikQ|BjM_9hHzRXT%oPp@Uxj^^I5wvrV7PwR4WP8ukup64y4GUNtkzAz~3%1
z-q77lk5XD&|8{M`+Tj4g`9^?;fG^bZU1_!YsnCFKc6h3`Givjh)U`lKaBXFa!04K=
z+ySlx-q7yV>(wIc#YUY>!b$qveGHf8lxpx|@%rMp9>fQHtM?G4-A)$zk-*lXf=TT5
zca~|q7C3|uMSp5(3L%s0DA#xD{*E6FtF_IzePIv82re6muje3~<b-g9zdxUHUblan
zw-J5IBVPpGSM9aeyH)01w+i#afew<D2@9GC_?v1nmg#vQO74b9jCFYuiG?lPk7nhL
zPDC#n{{w$DuJOjQ6Nv1EJ96mfF?^%4Jz)AK9X6w<Ro_tIJXMDta>NFox^1JP`+MPY
zUEvA){GgikdrZ%FSP|1YSYPD!T&>_;k65K58^#wf1KLW))B^I<(S$|>$`RG|=fG(|
zltoQ<0$Ma2vhM{o%=4PmuuYoc`KTUxuPzJF?WC@}%txhc+8ds5_R7jz`WvOx+LL4H
z&V*%l&7^28)rE)4GAnaq-jyMVT=XcWRLUcB2@!&=44K9xth~8s8ct+%`-Ezznj@7b
z4a}ce@I{iG35FQ%np$;{cRmpoUC#W@?-D?3yxU38s38@I`k2$^NoB1?JFMppuJUPR
zhlslQwo5PY6WnTxABYT65fi<%TG6x>2323qzlmRc^O1n3tN48Pa9UvgdoYd1k@?(%
z)Z0kPxc!?p4$xX{k9<ma1@EQNmD5{P5*f+wU_OBTR~5B;6q!qC+vuxlBHnVezk2lg
zFL4jthi1TECcYO2V0LfNdG@Qs>&Yl=Lw44Lu8%>aOY6L-<QAS?I9lbixitkZ?u5B7
zN?IB&WQ45BcybLC_#Js>`Ko5lC9oPhPcb#R{y>~B-T?Kb!&i0>PS_e<?PxBH&>mR9
zPUZa9pmTGKn$j}l3w>usJ?%KC!Gtzxd_6x#$Pw=a_6atl9Xu*D?PHCF1xf3=ow+!g
zs(nVlw&^@mX_@A;1h$fDW>MFFP@V%O4ZC4P3G!3%>Y!+HcD@qaa{=1O(+1=u<4<AZ
z9;`D(5g&1jcoJe_{6c<}EZ7%1$mh1)Z02YOlFh1l0vmuNC)|Yi*t}D~y1P`lD6{<U
z#T)VXM6ZbQLFrdhy8Yp`+WEP=QTZh*UXoO>qI_hNfl%WCp^*e#Fj9UC+P>7wCIV_F
zEiSXZg8Xk*odTqLDutI}dTVsio5Hv~V2y@q$T|hHSmV-p3mpfBrBf#B_oH2vI*xCG
zA{V>Te}rPzL+D1c2%^4Pp}gg`6jv8P@bN#3&zzO0Bs9%=Y`&DGMs=8SWPZ)sfB5ZX
zG52gE88>@rR)DR!q8il`5(FkuEm80=EQ*yyawXGONMvvouso>y0&O)Qc!@4%QT45x
z8NyT)i)XT%9<x#Jw*+P7y*Gk~FFb@YL&E1a23dJ>c55WHnq>BVdrduxSCnHnk}Kp>
zlTY$W07z|AWWd~wIKC-=jrg}yUK8w<ttN8e?4GCJwQFOJ93rSP&{vWmX8c*gXLzN!
z3M@!9J+;w*4qfG_^pMv8#iEw6OA=R=Gu>z_{3J0!M^g_cA^cM*US?HwbL-tNxS-4h
z-euagc$Gg{Pa8CEr)CYWp#(9cg>`dGJ}JQK=dxxGBFalSW7Uil$jCqMcMX*8AJ~@K
zZtD>eBHxn2H1x|41v+pD*LQW!c|dDBo3STOA8RgSI_9*$hNi~*KAKr|a?>#S#;PjL
zERYmGR?&_1WAXTE;)^#Nk#+z5Bp5!|pyqkG2<YKaM7>BhkoD&JW{)cBUK4j4`<m;3
zxx00YTdw)y6gZs`#$2NmUdicxV<(h3x(X%S;_A@%ugr7R(pFS6?v)QIu~B|pUSr<z
zGWxx7!WyCPU-Mqc<6Z2&sHg+qhvLMPWuSucbI`Y|8E8&wavLGFXjZbjgmiGXb`}n9
zqHdVx%3Ca;2=yx1(uz`fdH)Unk{|HO8wBXmd4y>Ix@HPSkkj1!vSor^><Fbn&6IX0
zL2Lu-;m16TX;v`BS(B@7W8rPb8+%=j^JH#Pz5JA}`sQ~;Lro>UcCu1cf*+jab2+<2
z;NHd+Gxd}tbFjwAi}|Y4@<YJ;onJbSAZklZ6(7)Mf`MI?@OPKf1J6xEx+EUCFGb=X
zcEOeppF25upE)F0Efp6cq&XQS*w?2y%yM@&p;>7>Z_QRb(7nrU5KLaB-IR`a=An=l
z*0<%D#8LA#YnO(ObtGVtCV190Pe5vm3xsU%p7yMb`(4>g-JTl8u-<sEDx(FCsxRlN
zEL9n<X}M7X^RUKol*HE-?>{J@^POa%;_()@xh|C4)>7kczaG<oSony5%~^%k)s~C>
zRWMQuiSS<V$%Rc6*pW!wt#;~2X8SXO$&$$Nad`y|-g9=ggw1Y@R<G%r#`iWNEra1n
z1MFS7NCZk_k~X4lI4WF*RbI;NO1m26V-xa58s)tbZsz{{YNsJRMnV^2-AfWCC3jdS
zx>{Wk;suSq5w_;0!qKjEHZj`CwEU$qy2akO#N`V0b<fjzC12eQ*zTl~&N^lC-sRyg
zECu^^5TpI##9=|G&=Bo94@L!W^$mFEA2El|W%fjE?GQH2UKZFVhhIGMYHdDf^|WHr
zjbpvBe;Sy55#J)IYiVO?=R~n0v|_Q+^z%r1=6!CVG94k)U3?E{%z#<cGxA!>(l6`r
z<)(rfa$BC{!X|;|wO-}r!UmH50k5HUzG_x7@-N<s$$}Y2GIV{HTqf>Uj4rc%Y*xH_
zY0rA8@8peY28>;kD72>RH`)V2^-ZN!nt?<zql}B`3_neDSYhg{<&E1$mb2QN*We(1
z)sesi>^~<FmLF!%RJ@fvkn}2nki1M365kDnh^X}at3IpP;KnX#C(pOz#&qGd0_oFU
zG|(F_{=kPnbLc0Q;nba`LBF`CMOsOE+@38Ic`=|hva&?utk#z^#h~Aw$Z%Yt=hPh`
zu(yWFkodECxiOzncTpKbq5jPIAu?YL%k={*MQPWUB6=FcfYSy<<6GUR8l!%6i7@5_
zo#|MGIUkej0fX;)Ws+g^`VD!S&hFl*zq7rtCx!rZq}wG=FCh6uCB2SNG=K1WlYx8y
zs=1_C@w6yqX6TZetMP#tdqcxJREzn^I(k{`2OT%@V4btCq7@8z#D||VK?1YP{2p5V
z_nG{<Obpg&l@4EUnV;k7;<U4tO*=oAl{y)R$lybU(j{UNahvVxNI1}wJK4pt;2A3V
zV@2p`p|UuWAlqP|yryxVRSNdmBOHIVlnBCb*d06SVFelsALTY`f1tBM_0g-O#`nC}
z!MIJ;di|V=tMsKnQ?(?xLGRTw56{M&b3=$;->ywT*9y6b&HWNtfK!0L61$4mT~2)&
zj*|UHeF=6+o$xh&#l_*XlZKL4sx&D_n+PVUBfQ9#><0sfHl^N$7bAxxJa6I7peqZl
z`HH>%G1=Cl4Uc%!nU!p10)DY+o82{dMPu$eNG@rAw$$d3b!;R{T^>(K8rw5Pd~*gP
zy@EO4^Kflle{zBPH%ggwYaiz~f98NF+lwNuWS60b7gKI!{2!bj7eePF%JLXT?_xam
z<Z6v|Nq$2gLa(b*!#I_54h2lY>T36LrWSj1y#;Ns%fC}MIr5@wSWj2%2f^%C=R2?>
zT^{2G^dNJtv)yPf(N9(2Ei<+9LKG#Lc#*;V(`@QDGR@|E!!}5UD3+dmp79UutrVdJ
zIp=Ja9e(eSJt3^LTah`N*!!$1z4tGA8_TlplFRRLD-=1)GG}2n#E%r7kijS0GPUt3
zlA2>#LDyoQ+$xKn$*%H_*Da_-^9l#p<MyDfrUhRvIJ}MpgVC6N))od+aW{pfJlC};
z8@jQykhx+T=n@NY#R+B%c*m^@Dfb^Zla|fZq`{V<Q-0mA1yvDjlJ0a}Wmo(Md7b+L
z6T|;Gn_^Ib*@T1P|G4=+T3uhux>CfSzh&Z?ikn2Yee``^O6_bg)d%as_5rD!v$?Q0
zYNg`U`oWTJh;!HDwa0C?@S7i$^|;kxJzsy_HX^HQLp1{?L0lp)vl<&?YgbZzuV{it
zZl)MsGC#k}O8)h&7jGG>?K%9kD?VX)PmTa(Z#|l5hcznMMwCanQ-Ywn&oT;+c-ks=
zPEi^9MOB0BVes8M_G>-TU^uTEmM-Ps2WRGX-O|e+EZ7smDd9PKM=sLc9TP?eFD~Sn
zBMr7SE1hGQymoP&uyS+b*!$bd6MgH&=?8h(;~?(8+<=@yo>=j1dye>`*KrFX8YSEs
zV8=pNK&AB;ShAPx4gOY%;S3-Xp5vyPZ$jHhL{xe-yH-2XI81b`d(G<Tx0X|+S6zx4
zrFJJjo8PB$lU>riIXlC#UkwnVXcRIIl?#LlLTbP61lLx`U?Zcy?TSc{+tE1|)7b>m
zDemdc9X`Hw=MhlJ%tps2ZWV{V-s3XTtO5@tyaMV98m#*|jaA$#>n^@mrpS|GR$D>P
zr2#lC@sGs{1!tW&+nURei#MPdoh998#S)0?O-J1eYHZHTVl7%sE0AYeV5X)*Or<UZ
z<&;`8oZ@1u`c?{eY7fc0Wt_+6j7@62>drS@U<D;OvHY1GA-c+|jab)o$lSe^zS!|I
zYO59n>7tSu?R{R#*|uh%xfjt9ushMP^hq-<%%D?JSYYzRjGiTVi6<ZY<b-B!{|K{8
zhe_70_H<xbAmUPriXp)uC18WO@mwYa@?FpKp|fUdId{t#gQ{2cY%No_i`feXcdbWc
zr>nYuO+q1g1yq>lZv1*qSqYofYyB~~5#c`sf7~gE8SrSg`$=0$Ku24fbT4OSk3`s*
zL~!PD#rvmUK4tsEGaNEOKxPEdI;@o9E>SOdd4K!t^IP~-9`S>xX6&M0>4D_GE87H0
zkmy$Ss0N)Kn2acXsD@YV2H*8zLWoZgDik!+3ke}VlRDyq=g&SGe)>Vz!uf|}nS~p5
z{u>?I6mGWqB_WBWb0lxb@eBO?|7FWEzRJ(h@25KDxR7K&{4u6oflOju>+7Z;6cocG
zA2HwvsNsZIpNNSaxtpwgZyQx;joL6|1T&!p9v&(qhNokj|8cWAR#93_?#My>!g!23
zG%##T$j-+DCySVEU>Y^_CqEXk+FEGO58ut{_j)^c*?evFB}r&uUcPKS(-o3q4IFrI
z1fnNEvd-x{3ASQ(s>vC+>j?Bj3rM#oy|Hh>TKI8%TI<WVDwkc056L$m8{E7@C(On|
ztW3Av9E_6?-(Me4_DW5ll2&n8fXn5T`knEbLtF2HYoYBi51X=e_Y(;lks~928-tiz
zltrK~g`<;dPCbN8pUnSd)EkqLfs~qg4iInn^fYXTMIjCw-uEQ6)JaXdPEEK2A%bK_
z;1FB^!(R-{YuFeRv9Okgg_dp2DDP_h00JM*Ey>#KbY{hTbN1LFW(_{YmvYE^ycJ$g
zn!)=-1s?ST1&X>+<cm=WWO?oNClKj)TY?W1fL$e}(#HngO!;1JE%56GHkIEt(;j^9
zbh7Ys`>Siqg3b^%ITWTONDjT+Mh3ji#zVj9K_@c!o~EISE;$|Z!L84{Y9IwTp>Z?6
zI-GNEKphK|f!0-y_(e$Gb_xTLC@ECFhVKy8Npz`weB-8`**E*l2H%EyhUp3*K(92{
zMjoN=t~}n0vAG!yJX}yKtni86n5WHVEw9y5L!XM7DRNPaHK<u1?b{>YN!ANJd<%uw
z8FKOG5+WJz2o;jqU#nW#oTrCXWF|3<e-Mq<^VU3K7||}P!|hl)agz+?PZM~e+J>$q
zFCasT1c<^7icH}&QUaG|&TJ4-?ivLHU&z&pBl>DGre}B@bx}17Jo2a2dUx=>AwD}>
zBoCvcPga0Vv<bfl(~=!yh@}Q~L;n;_sh0QGx1!4a!j%Cf#nnYJtEsE!u(A`>a+=es
zGjII}`-oHAUa!PYD(4y8?A$fdUw>)E2g%*&P+(HI3-WalATy&3Q&lVZV#^ID+EmiP
z#%)nk)(<TOxFYRp(Z6|JY2B(WhG!!h8>OHc#LA~)04sw{Eo||Jauf}Ox4T2@HX4+S
z-D;NF)KiB%QaMkaEAObH1BzVsn&n5;mVb>cc^?FxDF@b~0LdCVoMOi9M^;PE$Xa8~
zIuawuu`Vf?B)ViyHFz{hb`Tc0(fA=oeBh|TY?mdT&yUcIeMBNcG!0qYlHs%2ivOGr
zZ98ERl~x8M_cRmtM#*&KPOqBYI>B*dUT>)5?YK_)q4GoMPOWQZCe?*0f5E-5Jl1|w
zPKkS4&}vc-$%Mfq?Wl(O65#++=z>-;`QA~d)1dEv8d={TBTH^#gnlhG);+K&n@8y#
z5L@r4LoU~>>Kpz(UF)fUjsDn<mUO33v-;bUh`&?a3n*qt>HMK803H(s)UuM-Wv72O
zvv^BmEF&mX_BJrjRZVX$IQ-%P9}u%<T5vMjF!qjU#ZOI>@@OL;MXBh8H&{3l6U;O1
zIUR%~D<q>(^KEJMT`!`Gyi!Qc$e2&*Wa;{*XY1wp!Ij79aP4Ph2v-w#D<Q~=lg8Yk
zf@~DOJ#R|6MtELvdfP{b0-N}UyUu~jkVI{o08A@Hx4Imcj>wwt;J!-h;LGN=l{x1+
z){!+-FQYwY0-!TLfD3AH3HsAOSvXO1bBKUirKoxo`}vNxvbQ~)V%d?S`r;!Q-960=
z+3!g2_V?H}Z4@WgeN{1Fr}KpH={CY9QuJFm^Ix29(Pyxt>gqi?C0i_YCNDO;(v#Zo
zEDs<J{E~m^lQ`n$00Z?!KaCn$Bc--AA2|OK{sO6V$`OBLO0<dVJ6YMlYTTs&&X&u=
z2dA2<#zrqeaSowOwi50{DlhfV=V|k)4wY(BJ-h}36&7@?^3uMglS7?-<f1@v)Tw&`
z*)~zY&@J1IjDl(rwWX;rCIkES3v}gl@`$KJ@->{D;FBb0lPI4{sLA?cO4aklFd^=D
z3&l8%yaQ=&LO~a#47Se+Mb)bd+_%XeD6W@dv!%-)2)sTGw*LfzXyWuQ@iHIAbvJE&
z1qWwrE1vGgsc-)pEuqQ7ji3gRfL~V_R&r}6T#Z^)u&_#csAKJtrW+EoTztj%-@)|^
zR?t9+mtW8x!v(qPc%)eyuID<YrA()b=&nVjVL*1#wQD+B;}po;V83ZAhfcMB<2ZfE
zFNv8N?R?>GEjoz;`BXULxA--L%j*UATH$z{RO3QHgZ();@llB;&<5E6CG3dXrxdvk
zFLU!}i@?$W&rsDi*P&=cdiZIp{U#37ksn)c96@EO6)#OMvctYYQmz3T9=tuqj(<Cc
ziGMU7uyhynbLG`o#;ww=_18*BW(m7O|5B<AQ`9ig+dVmzc&ZrbM>nFhvKn3Ml!tMo
z)Sa4F4^9({9)<!iji|gr+-5@!)@1Yb{Pm8f)s@U{X_eI{N<UIGX?z5RUxb10{XbFS
z=H(zVQ=z&mTlrG4L4Q9#(ah0kaEIm>;_oS)GoH?ZEpQ_x)!s{V8$ta8#Nb-6sD5?6
zcq<x<6aB>3*)~tt)*{nAxOe0J;VNT3b3W~8)Z6W#^X9{6o_)@Vd7AWBjZZ%5T&?Z$
zUy{X=%35Z|oR0MMH?di>D-4^QXS(0US>7&f$jL2aGOD@zd<S8XKhzwascm4DM1tee
zOXFUc?WP&}%nUi%&HD(h8;*fa6E=k>r}>@goyX6R*+|lV*vt=sF9HYdvxW5Brg|rY
z@To@i$#AXazHvoud>!|Ad<cYmETr&6@C}_&j#((O+=14Gm(9TTNE^?C2Z^k&M5kHn
zFLb21tw7n%{pwQ2=DBj0Ef{eBY9-C6J-_StAs$&p6OSL-GNINkGqIhr9bvIQwowLl
zYR$7I*I#|Sm=n+EHtCMB(izh#_zF?EU;D`IVs%oCOa9uroy#AC-<7F}!*G#bGHI99
zJS}awa?itohNST=o8{upi_jm6S%a0xv$b0O%3tCJ#+<)c?*2qWDnrt4SmV#KN|!{e
z<<RW-sWy;t6pTQNe<$K}@dy=d?F`S^=`T}ZY2tMyKZ#kqanfOI&+X4EXR^~4Sw+02
z;mY$0AZ<?x_+Uy18IqFtE=nTcQl(MxAgAwRs(^;UwbpWnuRSZotW~PLQ986x@dLdf
zP0rIHF;wB}QPxM?S`vXfAB9%~w(VyEwS1ykm^Q1OwU@6>gIw=}86C`RE$OFOt14{M
zg&hH5IH(RFxo)|=ZO&!8sl#?{QORSwkXsF_`mv;$HTmG<RDJR7+{d!gi#1B1gQG;}
z?%Jqnt8eOrgkuv64?9}9e&tGQYaeqg^R82Pxj|OI)u&KtHLd(r9G3c4UKF!{71v?u
zT~<ae656KFfp8YThEM(&`sD!+L0#p6JqXs}BsQ|@*&7W{dj3tQ(m6<Xrm-8UzLvtz
zUe}&Oy>esRFjxHBI@qPMg=hPH!fXfkW;MrH>YhB#)M#=1M9tE{tE~6br*+^7)3rru
zb@YcsmipTIPyJ6zNdGbeI5nGK1BV-(xylJ5TP}5d((<FAt{HnjhvHjT%X~8h((P8O
z8MV?>bBh|@a2K6o?~y@5c^6&HSuPjV;&y`9EHxOV3u_&aix?}7O*Es`;f(%fdWe$C
z7{Vpn>=7kNk>S-+SpcUzX#N5v_hnP?#4z;aplG>6tD6cIa78)YjXUkcvZjz(o`z>s
zx$+upw`q~0h|h_$TRwa-*52fyw4f<r!nc>x==nL%jevk*r3h<8h?EPIDcDr}I?$fU
zZLcTKb^B}Gc<QF)LZd^1C6;Q&djhR4ft-Fk6sx%>`j(!~0dek)Y|e{MS4Ipk&IX~4
zPwxDj8V(1;oLO288>N!VT!Qjx--Tu^E7Co_kN@U7e#AIrJ7L3hQ<yG((#v@jw_GeL
zWIR)984Tnv>8XwJV)`BT^-Jwn`V5b%nK_K-;-Rz~s;owqnl=h)$)-Py8sWV>C<xo~
zD<JUmk$V1or+jV>*4il*L&L(J5=!2u=m^HOny#qm4L2=!6<0!n;w`AFp~D!LNGDrM
zmFAlFg?k;FzPF|;Wph?`$5Ni#s8rB+Kl;dNRTg{W=f^2h%-T&yTM*`?e@ctVG`;%E
zq`n3w^(kMg($fi|hW$agHZ2C4mEOA|@eGAF|J|~goB&IEwcSaKBJ%FXr1aCS>b;Au
z*FVhfCiv^CFs=|&u`SJ2;JeX(?yXNWOiefGg3ETei*(J(O0=veDu+{8JhXptt8zB^
z99C9oy$?^U<&u>peQvSHxai0NLH_h}WI{on1lka6$hN8tu3pNap>4Wz9l5iESRq!>
zUEQQe+FV>>ol3B1H(gR<^B+IDV-cG(ua$n$CbpMRY3jQSSMG(iGz};|)`g?DkQVR3
ze0#ZU`iwn|^Z8t3v{}Xx)s*N69LT&c8F?5M{N{$%ep1kT1<Lf=sqPsiua!?##I&2w
z`85*gg<P$>`cNDr3gjw1{tT_KfB9=?6|U}c;+yZmyPhir7F_~nVa=fy_XzbxvBun2
z%dbcl8d3!`y6xyExW~5NL9p@LJJetYuYZ#)6=5BvnK_dtRak7J*(#kv+hb;WyI!|{
zt386~z3<rT*!te6#N*!UM&I~=h1H&$#P7VFgRR8QelJ*WBM&x1D4X(`9Q!b$s<HT`
zPV`L3{>`o7@@irHCj*$B?S+OSo5i9?#hEXN(xt<&?lU_13v8xeLQe3KnCit$O<Jx1
z0w$m(U7)GNGIYR|H_D<U>tx(drWP`4BcJ5TyCXcU*Y4r=)6c+g2<u8NXz`Y;n&Tex
zY&oldKvq&m1h%!rKLKx7x#uIcZVJgdt<}+XBYJH4y*T@jckjcKaxkYwnBDe2Yk@x{
zidapvx1&i}H#jf|qoe$CHbZ3Ayy!qFsEB+cqQ|$<RsPTuqd8}JQFwM%+Rgf^N?etm
z*Im0qR@=j<rtRsW#g!0@b(z@MdGWQV-3Y~UYez(+W^_N~fra}hGjp?gpf%r%G|7b=
zq%G0*?t<%pck49^U5(TGkw@;;hKKO&0=)+XubGVWuFm+Ju{64ln><D{PPL}*$!}n)
zg%CRuvxUW{GRbmuj0+RX-ZpzraUt<GH*`<}x8=CEEh<Rz)SvL_015A_b!E@8WBG%J
ziS5@aw6zZx-@~)g8%*pXSk@qiJagc-y_lwCuOLq((^osI^)6KOva;okT0Xx$vSE?r
zCNSk~he0Ug(KyfEQE5+Y2ueb|YLjQLacyM=VR>0)zMXWxhhj}jJ;Wy4^3K8FrVIZX
zGfFw;$FkxexIFn)Y0X9Zm8JqOIq$jo!@XKFWIW<2Bj@C(g*|dxNcO1f=2MoxUc`-B
znc5ZXG-gMaP*Nwzm9oR&w&Y^DcEzcxxvssuDz_{|olB@*^lZz$N?2rfVAu7i`6O~h
zN6S6@1bD&hlJH9ON?}f4BMIZq6jjblb4IgXYvyjHVZVmyKbhs7;Tq3OT#>MqAG8=q
zhr}?eqhs|@g7~%VQyWDf)#bSb1<SBo!dHg6KaJB($<K&B@U&d8-@R&V@Hq4@W6HCw
zFfxux=Pzw(lCRdZKDviR9xoS>WI9jdO#AvYCR1`9AT(M|t_uBHsf~;pYBM&yB;ITj
z%EtG7FtOFC;8oC<j*j?P{Ql16?cOWK%PqNX;kv5X`DzcT+q;U+agnK%hdGbhzgph&
zKb9v}eTJ+AxpcA>v|RAe`7x_aWVNELJ+|5?e#_s>CA90NcBDA7e7Q;QDR2_ML{jaM
zxeQSq!TTW5xXiW-TD4_vsI)sUHfksqo?Ud(u*&Wt09gwqUN^2Rev;EaTCH5x<W;Yy
z92RnQs<2&bkl=i()yX2$Tw6SXDrEVvTF0R5<)SfwPKS)skM9}zPcrY!t3J>RiHOE|
zM2g%J<aS=I*q1ffPM_DtS=Dwaf86Bhcx%_b@&>I|QE92TlOFpARC(fBc6Yr&X*(v2
za^@cY$q@4FNT}@XlR1JtIVH?T2qVJYF1rd%i5&(na(9I2_W?2xZus1~q_lC@<rGih
z@rdXHPTd!ZM?X$yKj&936eeLO%_9Xj$&V^=<LCN9+)gtro`#`2eUDvJ2H6LeLfe`}
z>83er@rBFwLWR;>=~UAe);BcFDTj(fSRAg*leVzx*`H4ybHS`4lg3>hqS>iqmq{(V
zND8TH+h|3K9ex|S6Bz7w0*bKt<A@1Qe#I#t9}J44(WEcjo0521fb9~qFIU5;53>uC
zTD&rNEtZ=kdyO<6*_2?le(P7h)jgvZFptL?V4Isw(OF*5Q-{iJ^Go*Y>)HJ)9*}t=
zB_l6r_V%U1l^RYXtI`-{SN%YYzUO!xo~P62i`$FG>Wxu0`|U|{!o9vuEIF{cByaz<
zL`->K+3K^y@Sj=c(~zE3D@BGKB<p*v{jWi|B<FXyH{bG18-#=jOfO(IPsX`3)+otO
z!dIYo=qpvid3Tv4yA2h!hyA?whni-?fJ){usU7HtaFGbx&f5;MeTSv#*%5BvuU*Dw
zewX)pUwB*nF225LFlcTX74EevIbs*gW;vYOxpLb0Y4or{@_k7uN%3~Zf6jZ>3wQy4
z1!c3ujm;?^J8iT*1K*n*UM%cH<PJYMXi*q%N%|Zj{Lf<Qt5(JD_jrF*<kNrqc(?TW
zxZyzBYj|krM0jBusEaGcAbS1oqpNFU#p6dcwX{`%YZTMfE=H?c^rq#j+|u3UL0go>
zT9x{zcS?#jkO`2&gKSRXlGcIu5qo-?iCF1O#?C+$IkaxarK}8t-^IDfwQ9K}M*3i@
z`eS|3OoP`1b@{T?NnD)rcV+WZ9Y$WO6_&Gx$@<nJ-ra$5wwVSE^}WhY*!Wns<yz62
zUDDhxIl+^1JO6Dc)5OvA@NBX5jqjP;#lr5~4k5&L$KGpy>!BhaG4fE;+KU0axYnS(
zTLeE=p?6HXXI*$GP|(|Uxns>a0=wQ+iKJYbdg9<&UBfR?igGjyDq7{0U{B3ak$_TR
zbw0WFbC=|filf~g$4G*|e&%hNyDEgFzkTC}q}e97^akrB*u=TxHkP7Xz`jEdmhSv>
z`uW9xR}^Hig86rqCHVLol}Hl5lEsO*?((txlO>QsPlZ=CW_=Z?Lc()`$9rwskvHGn
z)7s_twW^xhx=mzuOa6e_i@}))w><1=^+U`-D!W;OL#ti$7E<{nIFp}ZHZ%sdKyo$n
zV0`3!DZ*l#0hFC;jwx}FE}s~(xjR+xZ(uyyc=_ZYE50>c+y)LCB{7lzhrIU;Xlh&f
zhfzdD4`M@)AaK-!D2S*u0Rcq?rMFN*Q;?QW1wscKqDWEcy%R{GhYq0#h(IDG2_zH|
zB$AL&6CfeUKlgdwd+z<epWg59{<N~Pv-ZlY*=uHgGixT~&uqJ>2_--2^A3ph?a)`@
z%yLoO_qLxwDJZRPcM9K>`FW1AA#RV@gZHwT7-bRA@Ae657kfeFi)9*q`}X7zTF24v
z8e?lHD!XOn9OK&79@b(k)mog{Izxwh6^vY2i;f)%aeAOUUf4z_(DG^PGt#2y0WHgd
zJ7GC`S!=$t`~@gbjOq12?`?mOG>BM8dYSG0$_cqD4)0co59?M&%~m(@1lC?Qy<NsX
z_T?9h*{k02KMS=xhyZUMq!Jr)VjYfFO%odFlaB|~d}~+}<Vlab?~P)-G3PmhTTwHQ
zMbS!4KUAJ>I-RX^+Dv1JL$kna3GwFx&-@r9DtnHfXLGjHeIDP6aAobn+<<qsPeFe^
zd*F?zGBtSatoih1CrjGY7I%r){An8qNur_Ww$$}6D*rAM%2vHGSNpXtiB@5rz0zVG
zg;mm7FqH+{F9Asw{;NYS5gU1M{EpJrY<E1>-On)Hq%^WBnH<)Sql!s@Z6Z(uqEr@Z
zy0vp-=1dG}_=5P(AuPicNzKr)L^qy*xok6_AC%Fz2O4f@50H41PA9b&nh@(7^5FKM
zC3Z@T_tzOUu|N4K(>Nh?wW6uWZ!1dIc$4RfCL?0X3K+HUNh0~Xu5rwa<zrkpeOpOo
zo6Hp);OkCzP1<$z90ywFuI)LMXg_x*4YG1cPogk(tDvZ=J<4n}$j7lBBCU|ieVd*W
z6SlysZ~0>YbBpy~rdD)?g@uJx%X2p&QpiM=)nHatCkrGbB&0qLuyOnq)gYTg9$g|G
ztor-S6NNWVj@m?Dur=iVsML9?2KtIUR6!#QG1%xB-;oMmpMex^)54;OLKd%4o8<Zm
z#+{@}gh71~j)TK%0o-P8y?^-`#CBo|%Y0HJzVg|H$&(dM_G+`*x`M3})+$Ov)pduv
zi7Q8tqRC^6X<@H*ognYF-bWKP=-Zgi1IG;9K&0VyamFFj+qi<meMzkP@;jdt_m%<e
z#}Sf+#Eu`^tY2StU;6Qj4c)P_oDJ2xpL6C6lM45e)+$}F+`oPA!HTVMMBf~;K+Q9p
zaAB4-lwtJZ<7Bs~^6scU<E`w0MboEjH^xX~OakFGHuRNswC#{-M4-XV{m9OuMz%`G
zK&izvsH0-DM?+RB%z@LGNLW3pNr#|%=0pfPLNAj;AFOb~nb?#G!d$f7KpQ-`-7vUf
z@8E4m3GV7ak+4zUK9E6=gNQ<Lo$q?u^#i2sGO_UAUlzMKK8{#d=ggwGHnKe9x4G3}
z{AaaAa&oW{kBrS`QV%PLd-nwH+b+r^)Ty}qk;hWgQYy{j!LmFcVD312!ZkKmnhr4@
zPY|v>QnQ_YYcfBw+X%e^-a$R4g!~W+-ofSI6Ar`C1lIDZkx%ALJ=gs0H;x?7X&Y?&
zp2rM9b<IgAXiB%HQINGLn!G%k^>SO`BJ=4;=2IlJ#!<c=djtF--4yR?+ELWiyUL)j
z*)}RPGV&;L7HCafhX!4+rG`f0fgk!4$8z>zhNy8yqjULEF!x<SsGB+@eUN<pAL+B!
z`|$9YD|vry9(IsQlYno(HU+K3FmQ<@5@c%y5ir8t(RcKtdGd0We%$Z=R-6^`o+~OK
z|4tdUiG~+~=9wbXTNhr=QEJWa2N`C#!yIRZoAA@kGsdk8=zhweK7t{1q}sX)DG>);
z-6ffeKc^;w@L!=xu#lW+xW^Iu0T~-dRF0};&g884EtlN<y%|51(h31@JJ=|2o5#2m
zrLlQ#hJa2{%N0K%1}{2Q?$!OdMO?x%H^@f>C8c6n5Y>5ie8t`-WH_<KX>Jrq_<c2-
zz3Y)JaYMlVBw)h(>*=WMc3matY;{rX$n)Od6C<ZdJZ&wdz*tpIgu#nKPi;bT)Ed{2
zuULh&RolpVXcbUOTK2uVtuG1!SAM=1%dZ!ZvP2wkji*bWguBm51~z$&86ItD{LX<D
z<8=y(#0s#u)KPrEyA8x&x+5-el&AHP>vFA9gqOkPm1cmeUcjOG{Ik+B!xKuqELe){
z-ymt|1yL|j(@;6Y$a@qQSl#LLx;z?&S~VK)?d1H_nq>wYIsO8bd%GDGbfHQ&@B4eJ
z@djo+sFDRm#I|xezS5!7)Lm9mRPfxY2W32Y>EN-hGvf?FXjrnx?B-B-@&MwdD-Af3
z_ucY@O_MdWb7{BiXxbB)@lx6<ke=T*f>ED~s-W{ry2^jn!KL2aXKVjRNd$#SHkST1
zcRgY*s=q*2u%?mEvmZ^wHDi!xCKukXZX{~jk@q;+E_v{rlL+u_*jtr7h_y3$@KiQu
z^=~(IA7_;bui@!egyg9++u`}<tpY1<Asyk`Pidsj=dx2{=GqBCC-_gwih66eIvw(P
zDSE5Yoy*l`Fm@f*tH3m9wt2!25MOOFvMW%)wlDiynqnFAl5qsecxCkdn)HoxnhIr{
z|Jou2_I{fQ<8@_h|6$~RHM)NBdkTXp4*VB<`LF&LN8*lO`&Z+?F1ho%HUIVTU(E{t
z!`=U-m;I}&u;;@6KL%@|?CoyO<uJvl?A5@wuJJ}`+ErQE0k)^<T-0{nb%*93MpIK$
zbu3eJb92lso0D_eg8u7OtrWR&IcJA9f$Kv3$^utf3{@ciCg2O{^3>GRfGP*O?(S}w
zRpn<T$0!Ew$dMz@FSDBtU`xm$LUVIxcaZyR<aBG!%n8IoeRPPYE=)Rfa-I$G)Lx7Y
z@?=U8=v05&{^ry_#{~)(zeTJZ_}7~J>(YsQ^W^2&g#+Mq5z|m2vqbB}E0JlP&JCVO
zq5m#AG<6{3RF$JZ#t~O>fz;`;KQ;IL@6QD8_TA%ecapj_>355cM6{0Guj%B>hi$2e
z-W~kK({<5d<=BXGt1M$S1qu;666n1Vd6Aff40M=)+31dhEN4XU{~1R>C;FcW81Eds
zy0UC=tb1woD7L|GP8;crc8XxGm;-^?<B9?X7_Q4nDXFS*;~bb_#&ytibM5wrc#pcY
zEklDs@HV{HzQKJUj<s>OE-5DPYb!rfn$sZxw+mN(gK$+-cNMBu5xz)Yf(V0@PR(SF
z%%e2gqpCW!*D6h7>TTx84*vYR#RdWQ(t?afF1ONI_5hvmOb~t*c-d9<-;=Ef<ui8K
z{loa5!Zwq4d`!E38i?>`dnlrAn==zKhs#z0=aL0dk-jsn%k;KYNM~1QXUz_K%p&tH
zf!>~6K=8;p%g2Yh%KQ!6G{xqqpPru^hak>F1#@^ycMb{YTqZQJ%YcmN<>G#me?Qag
z=80EA2C`r8?04D~l+9mTo#Qgq_Sf81ud7yMYt&b(nF`EphhK|d1=9utX`OXzPxsdd
zTvv~nt{o_-lNwiT4>`NfRzL^H+;LA1ER+0a1qEKni(IhX`L$b%%U_XprX8tqj@~T`
zJ99UzwpxiDzA2(LX&JD4-L<;6N}x?4ZB66FP_I<XN<amoU%73+H;|&gWGAo_P&c3+
z(JoJ$6#n;o1son9?!G8GCv8J(bbNV5MJ4S>O_$6wXFq1JhjYws_2At-$F_)LKIQwb
zy%@qs#jULWb{S|$iNl-iJJTiBE48{3Q2qCRNG{;dkJ$ULe?{6_E5$MDin{vL9l;+K
zwbgB(t$7<!$c`0a-q5g;fPdK3!f0QTmp)`~{Enc2&B2Ii`Q`tfl-J?z9!1k1i#@SN
zSrmBnu!BHGeALVop+I)W%%PLu`>k8V{knjI6EifZ)|EK;x*)4Xz~8NApkpi{@1MWc
zmG<WNwe}5O4T$H%`<<Pi@4F<>Y_&qgbaM9`Gj@eqA*RpHs|E`E*r*#Q`5-xtc~+XO
z{=dWgO#1I(;*VcDQWIl^l5P9>oo||w@9b}Gh^*GZs@SEzBG5yY&IvTP|1V)y1FvU#
z2>kf=BsoIn|GjvNpLlTq_8}XA41F%Oy5@%<;ra_{jsMv|KL1~{es}!ZUR{g>!${zI
z@|Z(hncYEw>#<`ArvGa23s4^V_ggLSqUXe`hx_)rj_j?SCbupUh0M%vl<&Jcc=P(d
zw<7@oAwEC;Ly`Y!+>O0|_{{&^B_MX}!v8H(1O%*Zzj^Y{lm7R1v-#uyUk7tI#|3|O
z3SX81XBXFMjofii?^#fW)CKQ3M;crrW`@Nc8P7Y#`<bhh!W|mkxI{0yiU)IDIxZ83
z@4aWl*egjp`WXv{|J^?<_-*Pdn-+-4?#G%rD^<HxR(GxoW3-Jr7TlGp{k7<J^mcCA
z&b)h)^i8F$ct$pX9%DfpzLsh>e1s8k&0Y|BwF;eeD7A@epBw1=!&UaQ{U>chMFztH
z{K{p(ZdENHLqkPr^N1xF=DUmRh_auU9o~R??Fmy=popmEnc@GC!2c?rlxvsHmN!SR
z<tXA;1KCGLW<l;}FS5{5X4?n5m#Vu?&H_tbPj$miDV1i<0|lBx=N$_sy7X{m<8TJ|
zGtS-j$-JY-Z;z3lVdq%e?c9^e1vdVZPec^mo6iWyy?vxYQ+qs*D@9aa2KV|ZX%>=j
z(O>_JwZ0W|#synv_pR9sKxhnW3FVLc&*jGF%@@*5`P(qRKtARNQ&~mcR1y@nB+sWP
z!@!bak}pxE3KNG&W5`bvKwq==;$d%rD>}U@b>IZuAg74Vo%)j_(|5&Zl<z0cxu835
zAEP?Iho`!udh8PkUmt~B7qAMwSq%?c$R68OA)=qBXPvu?3=L-eic~oQ2f3e~UwlBD
z&I3hBCs@61CW!gE|05{`nw9y!mTzm=L2)(TTotYI<$}zx=KT-A6G(HIJ8G;cx=?iG
znayAGdBNo7b@3CH!vcufD7<)?yIrD2p2|*@ixu#JlVJ?ZJcjOK91tFz$6v*IJHJVC
zu8Ofl$uD=Ohoio0W~jPDs1#}H%$Hue5gJ%QaQwgsP5v`BeUUUvf6rR^5k{48ITidt
z!ZZ_Jif4@0UF{B^%RZT&9d<X&o`_c`&la34`dizO)9mQj`bB+i6|)j;plR9~$Ps>@
z52N>b!0$b{DOl6L9;*~QCaxiNruz5n-qHWOT|X=?9yt0#Uw)-(UwkJ9w0M4kS$35^
zyuW8+x2iUrQhOr4t>~?itmY=7F3&muVK$a;M7?P%qA6mo7IIl2wF9^i98%9R3FO&S
zgW|^JD$L0`zmpfppirwQwTT!FM~_^Oc#pxQ;BPfjufcOw^FA|tnQR`r6>S}?i`2th
zmNYf;_gJ!#cN$%9JFVvV3gqaDy$wawlXIc*WK&|yS_Q)vP&BFt|D<{9AD-!w@yG3M
zlF@23dHnVq8S?U9I*6r-Nz(RcekYr*>DcVwomE#~@5U%7E{;C0c5i#egD*2zNq%VD
z;$X^%{B>PyZT9mF$4{G?_=FsUSl;Ty$Ih9FJH^?rj8AK_w{FsaO%6wA4Xs->;eWLO
z$y!l3WSAsiGnINLr}DMEjpuCc14ic7=T=;;I}KPd;IzK`iH*LzTvmlYr2$Xfj)Zsj
zd#$8uiUEu@8X>uttJmteEA<+U;KX!vz1d)x+<QInmlV;8ddtg-_5+`t2#ZY{hZK5G
zZ-2kkI^HRXmWi4HheI$BsN=QS=)k53bIjqs?Ii2oY&t771z9f(@fz6>0%op22^(8%
zUAN>9Hcel}eG5pO#$7=z9#(}8_DKxC5^W}m@(ap?0d7h@LF+HwEJJW?Kcp||sD^E?
zu4GuF(ZCxH$F=sZY8_v&evC>U*~Hf_-=Qmt`@iN$Wf8epSq2eEUVa5k_--i*X`CIT
zppC~FD~P*K@q5LH1tq+?_LOr};aq1!&oFj?q@TVLREFT*^~+l+*B`z^Zr_1&o?U1s
zWg;ia(6|q7R>0?DrH@;gM6lTT^N7O2zdTwgFnI2u4PTiGiIINd6mat`_0#$S4i+Eu
z%<!yM=hF&3rc@Osm?~fTnH|4UAAxeE&MA`@+%P^9G=bTQDmD153T`G)f!vNMjX{KD
zXcr~ZBHvYW{lM;|%hn62kjV3e;@&ge;<LTs*n=Xcfn{}?SSRwJVrqLpw!2KsGG=oP
zp#;w3GLms12v!lNj%eLXtw%~gK|mL}M6A9}MM2*m*6_6(tJ=%2P}~FoDz>B(7|bc7
zd(Jo}f_Ja^4Pp#zh_wJ<)|x{%Cn>AQCVZ-?B4nHGtnOQ&0;Bsv+hVAxJG%vpYFacb
z%4uao=J>2<Go60ZiWZsF(!pIpDARbL&RIt-ea-#WIC!;hhZL?Wopze8E`1F$cYdnr
z(U5i+0K9iibA!vEJaydiV49APJEO+mRCQQkJO3Jqj%wGZ1T2iyDH)%0)`ANADLzk^
zzoJ*7k2PxoT5oQFM#9~4Pa?}bI2iSxP2z|s2kD6!$r)`0Iz*Fl4ChG|9~^h?(=Iqd
z0R3>$I_c=Ffwo)iylr4Oyw{#TAuTP52!|+<Q<GLQiwNlr-v!<CXP}}ZIj%bP@1~=N
zw0B@qnVRFn=-V-@zC&kK$~hj^_c!A|jB{<KK+hz3D^aIV-c#nNgq+f^5<t1hz;=uz
zpr1a-avA(X_788Hx84z(k75ZhFQ0mqOXS=-QyDKFv;-9u0jqy!!xw;5nsx3TB=7~O
zCRiUvQ$U+{us*>oa8@}Dgs@wW^;L}~&JN~Ghe>goJfF0s;~_GhY#nVY<b@O~MMU|g
z6=o{WfV2iiGDMg-$r5IOD9owjk&q43j^{;1<?w7sr^sR_<CCmH36DXuOORMREQchU
zeje_OInOqWIHf1A!pkfdj+fK{%;QPwoNRx78XaQ`8WFEC%vkWI;s=R!V_0?sn<i0)
zO!&^sodV5`5Z_Yh(XE`6LJmB}u?A~+rF8uOYGu6;L_o0yG|TfWP11v>x7%TPaAzyv
zg*4s!npkU+#EefM=8z#~*Dq-4Ys5ZQzs1DO>HK0j$wMuGoaB-3-|W!GLKCt@b;{C3
zkV%-S(g}3G=Z6ktJ|l;_X(NJPjdtGAv-7e>b3KY72Prn1=fg>Vs|?3<o}os{>2^}x
zdTS#GI&PC}N^b{;KZzB$U9iJ+L$|tfb+UHDR1$THe)lhBKKt9VIylM$<?OLUo8Vsc
zVZ?5FU%2Q2-|kq)du*!b86m0w@R7X_K?`4B_lf_b+28HU`24w;pZ--7eU$I>{2$np
zatD24k%#QsRuhcY=}P;y7j)D?14j>gkeu+&GAM6a0HLsxtr1UG*G;~2ntVX&sOPEb
z#}E|8v)}~`2^3LDI9I%my;Df7Qr$EtAs*M-u-BoAR+Vdv28gfc)W#15I{&6+`y7G<
zu0U!iLFbBh&R|YCJ>}?oz7T%rE^S{TBqQ9lbZX4~bN}49x|#s^=n-p_#%R36Q^vB^
zsC&6i+Qee5IVIq=a2F8~ZHd3W8FyOC^HqM%jV~es5&LUY*;*h~D|RQoHtY76H_=*S
zX>0iBWx2sT7{0i=pBY4Q^3n5pC)`B|icd$U{W#!d6Ip9Rcfqeyk2gnyCX7EVMLx2j
zko!csfUW(NEy7o%iRb<j08j2)Ni7u$=Qd$M;ZHBD-0j@E+m<wy_~c=u^iSR%=Vrx5
zDfhN_ak%o9@V4D6xQcmOCRDkIHv%H?e6+YJ(P6J%AAuo0zKa&u_O6O{k2_)bS3A`(
zJYX_~5_~^}Pt*}758H(By=Up=$E3u6q|@eGe|4_U@`*jEy^3BheNBNAe)O>xy38pK
zYJM*OY0n9~pQidk6~7_%Z<BN3`r*f{;qM}c>|ep(R63P(<D=2YPb0%dI#pijBo8MH
zcLvcZNTw_oOnbYtLTZQ3UT&xUp~bCVr=+iDlK2Z`?QCqHOt`c?V&)t(fWn(4N_N~W
zarL#<n%nGl**4}MUlr$Uwun1Dn){vI9o`D%lYfN+lgoRwW5zaVtJkG&S%@~-nJqq1
zQ6i-Wtnke;du40@4O(8buaVuE#mXw6`4R%lo!b3ey15%#1@v=LKOz;rJz@B)Sic<6
z?v%SLfWKW(#ks1)U`YgoM-E2P)apO@<;`j}6TE~7tH^noc3=6Vq<Bef`;n5!{WXoS
zU@_v7TVKDanI}Pv5<PGLcWg-Hj$8%o)%}Hut)vIRULH$gmX8R16s5gj*&wROY2r%o
z+rG+CpZAm~@}IGpQ(-vEk`tC4^N;P#RN#4^BwipTGb*$%Ia!zV<F&*1ycEH~X;#dR
z)CUiJ&B(j^<X#h;_BA*@QKE9~T{|CJ`-oE{s7h5f_BK^SJtg?0k;K%d!;@QE_+Oc!
z(qWPdoiRR2*n%JK_7j}Oo$0?yN0tjnxS;PEGtWshclW{A$$?D|OI%@*>G277q)r8}
z6okrxO`edSP`=B1Agc4EBc>e`%gPl^FZ`xrJa^uVP!&6KM5pWK9Z2$+N#?l|wfko0
zn3}jspCs!0ziC(hMo{5QA8T|Udur7{1yDwJ1o<+++s&^y;$s1w;k@UK*(^=xC=9eG
z$s<5WZ7py*s<C=vpkwAhtR^SS<Xi;j&=bkI0!v8vD`w2;5>fZ9tB#WzjH_kp&KKb@
z>xrR#Rj&VNasqB6WU~Dai;5Cvld=_R#i;DE!o(K2-)p*=%piVNO!cMfI3srj5`R-0
zJNO0|6Wv;wlrl1G&0>mWZ@==GdM2qUFGNVNwp#xDFiC?JUhx#=?G}yFJL(*U2X5ci
z;t@o*9%fI~fQyx%*h)9iYJ(fkAT*a|HFTPjG(`EwMg`9K()6*9psi_j$yayt!sMb3
zG-ivdR`Wehh$JNYZuJzKI~_E_zV<K+lVgvayH)%|04Hx0OtCYRevIE=ztV%XzOpW<
zMn8v-K<I5HS&2kE_&PYz{r9HSLOyP*>15gligXAkzGb$@S^s9qzO8W2FDlh#KN5Eu
z$KLl#4_Kl?$!C_EV&vTVf@DHr%h8_^9a+Bhdc92Tp&bgMS;8n;ic}_QV0O3GKJG2-
zsaoB!t7SFc5Cukrl$6Vw?6B{{axFnJ(l<w^4w_Q}Pmt$D?K&#DVK&R{W1ZQRcD&!k
z<}p&GWF2SdAF_v?>=;0u>RO+iE4RVb_(%;CQ{Ghgh)(|aK%A-i5ZvNuFnjPxljHf3
za*zu)M+|fbvJ#(8a>6NN+0k`I`gJR30oI{IH^rxLB8QgD%idD}n$-!Mz%3S)-gwQ9
zU7qe2P~c18$#4*5EslG!y~Oq<buB+M9owr+8=q#x&8`(*=6W}C^rf`uVFn$bw(fBy
z+4SX^khgY2*}r&N&YC89A^DbNmno3V&?d*b!789<jI2oJD&uB$nm2<gv>C~_Fh2cB
z?u&L<*@!(?cE~qAK>id<$`YJ?8>>-uXhhvvK`&%m`d4FzFaB#pKRi%DtvMGO!@X&;
z>PvzvF~cm&V#67t$BR*K-l&*=jSZsNZojz<9MbLxDo?M@DS4nUz7bX4LsL<}sdp)`
z?NNRn`=QIkCM`3RturHdI|>_-42JY;M74V-Y|dg@+I40mSK%njIj5M9e%#Sxe<ah1
z7@8tAlK5#wy#TQpoE5D7Y?AysSX(9HyKq8=Ey)SAGF{AWXRazDZczin_xd`+Ssl7C
z+?o4CW`~KJhY-pPZmUBeB;WO42#vLm$_@@nZ^VMDwxI{8^=0*o=jF(|9=HzuT-f4y
z0C2-ori1Sbbf%Wju2w#O+fmpGBeWd2*W|t_CK1vGyX{I;V?n5vKz0Z?&oW#7>eKwr
zV0ya~;DSN{AR^}8H<&`O4=V5*al2S`lC-fsN<=YZP#*Q{2FbOR2~-a3cEK<GwAw)r
z&XD^Rh29QSgn!;mivKoMsAn?qZF|*M4PSwq>@Rm{4#yX^2HBP_4a`g6UCSl>S{e}c
zbi2}*l>DPLpcPLXm=4a|RvRL%&MnUho3s^XAMu$UV~L(F;MTJCJ}e$^Q+Lf~M3SfC
z6>ynM&EVE4jeH0%msEMb;MkZ4hARaA)jnzv?Ca)Nc?Oy;7)@^MxQJ7ZZp>CiQ1{$y
zju<=Q_2p^5MwofEP1P2TIQn|@kB|Nr2K*zwi3d6bn<207d)1)DlAqX%_?W<X3GZVa
zS^iX!iIE)ka0Jm?yd`bsqLE^obsD?AA@u|tYTMDbPzSpUa+E!qKUQ>V?zUoJlE>bg
z562>{h3k{rHnmT65P-7_zCNbH_sNZV3YxI^ncL{cUa?m0Gn;q@kZHr#+61^<|6~Ps
zHVSPt$<03Whthw*g)4?kY*&{|dX*xVTj~@kfA6YE&r)GyjIt#*I+gPF!)b(uF@G2;
z#76O<`h0=6q&>KUi4tw-zv|<msA-?Vt24V=F88DF(VViSX{WNOaND#$p&Kc$yxAgV
z5ZvR>6y=N@wK_k|#l{+FyEnGq3rYO#7pK}AM6S5~Py^lSLH$7?C|7TVbg3d3h{%U2
zWW;w!#N4<=!&2UIcB6mW^ffP)hm1czsTES><pI*BS;z<V-aVSu(i)~g;~(?sNM2e>
z)uQ_N)}H;67Q)rd=20GZ*a*44;@W``|FPm)wUy@QwR_$2SfgG8D<KFz24Mr*iOyu@
zw3gta@|d5Ej^Ku9w3-l{={Vyq<=9qHl=2Lf)R!S|U{-{xCq|sPljh5;k1Sg;RlD~?
z1N3LjHMhQu#?2GPk!*mBhFwuF@zZU+)$;61t~Q4{*2>a(3()YW5l|Crar9yK=F(h4
zufzSKr)uyt(ly;Ek=4<mHw`9U10KCwJD;<ND`9ge)8Ff{AA-Id(6UFxeCLImMk5Gh
z<G|h*_{Mhj;CWgNnIK->W<ND=Zisj9&<y!l9@YAF8qYKIadJiSq{kb2bMY5G-B(dH
zt?)|qtzCus4%N)ME}a6_kpe&256PP1Hmf^}wDNB_BF}s)pkafZ*aU6}otx(X{SuQr
zDy`#0n~tBELMO#sDV@6x*%fecvBC=5=MnOs6}W;Pll&wJEvC(!@NVKDNX^#9v1-jp
z6lR|(+(j=aheol<zd;Ii8<tv}DGjwQfPx<9h_F7t-c=D<$7$)nt!=+B01rsD-k7O%
ztCtvS=qI`R9C@2cvuAC?JbH4h3$D#AsUF2K%^4M|z9A6SMPpu!t1|gRFr7U~-e~W{
z@A~S_pu)X=82gS_jcH6%6lD)Uo>recD>AmpW9FLTcUiH)+IwjI)J*!pr&LsQ%@-V?
z?IFslV%%W-J<_BkvdkAR95{oAD^2+99sYHmn_|t0YGAGez6PJm(Fb$Rm>#Zzy^@o}
zt&0)lmrLyE3LB=EJ+W;~gDLxLkV*UG9+J;iHfqst-Rt&CWqKu?Oy7Gvkatr7;04yd
z@^t=M6nKBkyktJZ`R2}I1o4Jn@iBE*;x(F4=%~Y?OE{+9cH_pk$G9RHt*xnB1q?qH
z>a+VFIBt;IJMq&es?)V1U#FujOZ0rZEcsG<&*u$<#@y=VV^NLi1=@D9BbjHc>R)HK
z8l#^lbyobnsxi#w1r{getb)2fiNY+qUR9D)YnhGH{EaJ;rytb-`W5%w^f5d}W8`|+
z!(W-V9jOkp<e*zENY%fiJo_JkbBSt(_Dc!=Y{n~`J`Px!&rXHU41p*ufN0h=WX`C*
zy{b&JYvxpETK<AfWtlkR%HQWDfB#wKL=kxsr)RR!7CCfTa+(*aiPqD%)~Jtvl6O|J
zwPna*vXXN&hnzoz4?s0V^g)H`+pC3-aMUGXo}OH*e)}o+>!F=M=vTUq9r;m0<EqlV
z$$qps$>M<3=0<xmPI?I#m=sYwrHup7KEJ_8uH$#yFx2q~LvyjV#j&In6%sgcDlhlo
zKf2nB=X!_FWXu+gWG^dr)!%s-XY`{SnE2MWchs0Bk#%=Ljf7e&h^AB$agS0Aod?E0
z1)Ak}?80%ax>xn53+jW7D<YeQQI4BuWQRuH9hBclk5KtBduXEL<*A3GQ;yP}OA&p^
zeg}g*6Wy<0Z%$r@J6Zm;acB2j!XaZx!;0)j@hI8oEq(&S@(87ns_!e$Vn`s`f@Y5K
zVH|NlHK0YzPjcBH6x^cr?mV7u(zh)Q*Cb_%L1n<R&PVmkQ*=mfc)R<?E<bbA75!9f
zsFN$4hQFi!EW5FZ_b`>Zaxav55wS;n^9jkR-o9kqy%brw_)uu5LPkpK*?#G<tX^q~
zvq^J5;e1&XI2!;zt9ZkjngRONg5FpcRRJR_S<CVabs0&m)i*cl<>Pimo|Q@3FTQo!
z6i)82OU(68Ziu0t0=m4?3d_wcArt&m+1Ab@8mt2<_N12&s8NBXm)Ow3(=Njv<&d`B
zzbXxyQEvs36er{hP8$tEea=JE4jEsBS!@0pgzvUa{`z2LS5(B6%cu&JU+MHukqTW9
zmdR;>>}=896{c^@?v4Oeu^L>=Ui%ncTNdkoidg9U;^P|MssHn>)6qv!d_<vb<fDe#
zS%*%Bze=EGiGk)%-kq=2emRiKp4nBBc;>EV)exb|Iy-o}9_w+n)Lk)T$@n$y+isjV
zKBCMBhnVrztj1+C`p)`#R-MKH>|?Xd)u<ntV$J>EUSospJ7S0PxnIu%h;N}stj6!u
zgZ=33TcW74uJ<2derT1mA-}SH(*}ztvP;)A%A>sVJ8h|CYieal@Y-*6**961EmeEJ
zO0nm2er<<a7`2140&mC%*QxGwq_N{zKTEcUI{^TsJ9<#$bYm^t4Y&%<BhArst^|7h
z+LVo=sc*yZ<EV1GyO_%~XXR0e8w?Hg`(U+95H!BwZP}{=_A#(DLH0DFKg@mMFPfGo
zY!n|4D6vTP0sv$t=8%k2(-cHZWtAvbLsx&;!9EadKeLbvyCj{+oYQI32lFljI-Rx<
zQvPwXffa&=iu>3i3VuOhkQtbXJbA~0_8j<dO-qr<tL|J=Q$?~<l1KwMjn&S2`3lnJ
z#R5Qw#!|;IZuRHAylQLb6+34B^wS;<XZu4iy1mi9st-zFwr4WAnb6{>U>G#LaN32b
zqZ#P>65Qcn%YMQQ)VpxP)#yJ#5_iM+zDmREoHyvgN?HP@ZSY;Yhx-Rl-1-}3(deSP
zhER09;UTS|jDEG{eT1mXq^l!mCh=jw=J`yCboiMv?b_gJfyw353Ni9UM!J~;OvS^^
z`C@H%E_}Ix3;0lT=3`h-jMhZO<)^-4wt2Ww#iNy3tY3!=7^SLJ@D#G@k7Jte+HdtC
z--=u5&#<y7byEWkOC3{OHa=Vjs{vO@u%5kb)HDsM(ua7x<b8P;)8s&Y>!Fb4ESqT^
zrV0DQQl$Yn^2&T!I@U67FHQ^V7Iwep+_^v_>P3{-Pvl0(;@1g*mlwPSr*o!{FUh+$
zd>I}JHjqtXiJHxx#CJ6?LC$prFOUOdX>b!X-UpdE{p~gBGU(?AJX?G2VX~q~`<@!v
z2=`t0bZZPdB>a9e!_Qw_h;KCPqs>y^X!*<|oyX+2vEP5&$HDTh!p=^P!2EikEcg0?
zg`WYoV3W*F`19956eK6?ndF#n%#{4VQw7Z@J!k+C{-H?@4%cs}%+1~`Q>{L7ymaJ}
z-iR)|ZKU4WYx7K#-CfG5Y){GULrw|xNt^);!j~c5?AobfAkBq++y*v1)Hk}`@(c%v
zlbcSty~nIc&v6gaj3nlwaXq+6A5L?wDc~(SCN+hXC=3EhKb@mr$@$@sV?Eoo+@!yM
zu0NWPOYuFt$z$yZt4Eh8>F>pq$Ew{(Lm~;eM9m?u-85FJN%$*7kwPFm&sP$b#shb(
zPCSvhCK5V&m6|I%<@|0dk$Cb-MTbVWJx%%VVdvwhcigF_L5bpy#u|$T?#gVX(o)yk
z20KJF8dzk~lw?l3IM5L4Xfq`8hO%``^60b{G0-16)p-|iS5W#siJK>3{GzU`Ct{If
zefqh5u5RAyfPPxzt|_Lycu`%Ec|b$)c`tg1t4b8%sg7tln@V0?>@dNMUrm7=JC>Y6
zPC+T(VxE0IoxGxqJSnw}`84}6+`9imIbfE5?rU)6pv~%U)qjMLK&m|d9KquCXJwhz
zH*xSK&IRtu@-*<ZklXJB=$3`ovjTu{)3sz8&!O;{X`gKzs#9z{&Fu4<`(2N;`D%-@
zfhO{=_sjUh+Z|WKs*b92FExl%t#A33cXGcda|{SCQ}R<iD)!v;#%xRo8;T>~^HUm)
z(Jz;T+Ji&lwI_XHBx`W-vCgvd9b%yRG*+Lkhjp!^y<PcNX#3;x=N^*#un_?GCo+Cb
zNBpdb7(ClOtHNpKK#0lI?$+2*|GoS0=B9QV>+EA^fq+d{w@?f93r}OE3Ba3_>DB`J
z&Y-liYIGHM=gF&R{MR>ff^sfA#Jv$E*c&{>1K7z|5_NNPVIfUnzEtnk=!DkboQicF
z=W0T~B0+kASJ*~kUDcXteJ>2M1Bnub^$CY^rM#9a-vaHrXFsR*WiVHRiL2)qzJVs5
zr7B@nZ1bp@-zvSFJ?)AHCQD*<jWEU@$L#excf<*66aB|5+cfu9;hKpSmVuOIN-;*n
zc^(#t@^Y%XIU*j_u?o0f#MS*K=E#qa-F2kH2+Gc_=+TyqKgVG$O_V0V&mKocBB64Z
z#t+yXg)f2NV$g7(pSZooDauK-Nr0>AmDXBv)czrD%SqY36Z}9WFDKHNsb}3gu6m$#
zejgkkuZDEd*ag$3DZ-To-A@BR$JuqQ+>7>t{nBO*d)_E-LiZgiyad+F13qe9f&_>2
z9p!??Y9X840UYk7!GW_75x;!sAC>@}(%G-mF`-3|RD3)eX<K@d>(0^bFYb^ZK6NhI
z^fHs*ws-PODBx_F$Xj7IlclPv<gmwq&*!d?EKTMLhErz2Do@a?Qx?YgMVn)ZdF0Yn
z<9g7{ha(67%aW7Qt=XA}OM~RnxZlfue|W8p{^8+4p$hDq+<C0HT$ZulIK}D)K0pt;
z|KMYVf?u=oI?eIWgOp#jyF-G$Dz*bcZn;<P&{DX|PL|zjwjw}gz|s_}!SAQkHsU_f
zdaN!^1)e3~c4B`1R$4{1R?{)jszv035ApOG)8jYLEDGKgCdFGl(82r~K5|~`zU%7F
zYdU?}G*1F$)<NkLR?oM1J7-Up7>w&^IxSk2D-rh%5dVvfrpe}JX>w}O>|3OzG98>W
zufvFKnl+ZF=bv^12c9qu*(!i%q4VMMquNbO(Ms<swBgfiyfmaqp&1e~Gv9E{C!(^p
zMTp6bdMW=aJ?*&PH(2|dsTs=cKu9&I`GB_eujQ7p*i`e;2e5m|yA<uEHwTS|@m+_k
zD~2TNadm<16cu_Q7=Bjr1<I`;9NVy$Riu<3WBWr*c{j1{h~)TlKNacI-mkK6%1>bZ
z?vCfN`pC28yq&Q|AY=57Tkfqgjl@D&aInupsLCqZL~sCUN%EYFpc5u=87t__B`>VD
zC8*IFAs(h$g7>qM@9}Y$%z|=!>!+<mu1DqK@LU^ia;&D0dBkSx*x_SW@9nf8ddM;s
z6Y9tQ*=q_BCtmf5&dvW(VD?MYHs^%+*p#Kn_md9#Gj#DH&rNclusK7ud^s6Q<6(2P
zp8+%Oh33*b6u!weI2fBZ&A@NROlc)I2oZlxM-V7=2a&(}pRg-}1y8xopdZWUp7B?o
zu&J3d{l=n5=-8C_QOe4TaDmQ&^X+w5Dg39`@U-S7b%iNEUs-9h;8;~9;}{J>h~KiG
zdSL%FODFk*W2YxOrQrK`^=zp*?@wq*iVi-hBrdq$GMs3Qj18aRwntkJ?a@w&Yo}-c
zO1S)JI?LRA#fEUVCx%RVko*B_-%6%dt{sI`p4T=<Rs%;pHfT*x4=LD|8(rn@X3d6T
zt_kiPe*p8^(+F<ey^cGAto&;=6Jnz7VacF%i=uSA8Xz<!z_X(#95~m<H#`z_@4TcS
z{Ms*Y9Qdg5_nQjaOy-n_T9)<Tv%izSdyK=W9JJ^dW^p?eq70Y{>u)#~zrt%Q)^g3R
zK2^WPP32eJ6gC{WC6n5y{@C~JEen*!7j@*v$=jAsH342!vijz?@sNCjau&aK!R{P-
z|9FEo(KTJpbjssf4DUZNE>_pxJX!AzSwsj6K2iZ?ze#Z}I&yVT!D7g&L2nvo_Y@<R
zRz)Kjw^XiS#Ba4f`2#Y$7$B~8{kyWAP|R#~>9<(G{L!Q92TifjDK5aiz~2o`A;FHO
z<6H6u#y!Jrxg%!X`{7UH+nTD2b2FY%e=uMB-arCVS+f!zS`w2ziWV~jYp+5)MC=<E
ziR)5N&my*6@Agd{zG>>;nynkS`r958{#yeZRaUPUD!*BriV2fTwze7RG0ArdRN4H5
zWf0%=iO)?9%fC&yR?n52hpj69UJQm_G<s;B_c(*>J2u~uPnbzGDkF?L%dL+GgcFac
z{*MI^_ED-p)1+S8vGfP*A>cK#_*-n+`=iJU*s_?VRCKE6)pTc;C9lXxNlWTVb8rwU
zeJ`RopEvNA)|T#BEk5$8TA<9at&AlG2j_I+Jnrj8%6&=Cz@GJr3uLc-1D)P2WZZV3
zQJOjVQITosw~;>|4T<#Fk!FUJk5ZuPqDaDU9CDLRK9#4=Hi_uLsGKGem4_yrqFlc@
zzqJDYRK5Pv38%$-#pi7;X|XGL*GzwnX2XD!nfQpjgC=*%_MxZBs$|ZMW5RnXgT+p|
zW=Ho`S{qxAGNw<29m$N_indpf$k~Oe@two3x3VO?_Y8xh)+_>LhR>BMYUh;|!XDbZ
z?$BtixrciHN^1^>DPvWRIpD76pR*kS&KitQL5H_r2S+tri}`EZ1E{+Ca65Qcl4I7U
zEe<P1s}btZ|H4&c#@17oZUZQV8u>SkC4w=V)wR0UyJ<Abg0Xd1U!~I7KV#)BMkE@7
zJaUc3qAjm9-p05^U^J=iR~92dHx^&0ui`6_j1Y=izF(M%m_z&iuCT~;8{R-q9+7f%
zv(@3@`EBw1g=mZh-J~RREV+43@k1;9TdL`Ic3U9+%zw!fzkhM?_AjThoV9zXcT4fl
zbA%Xv#TpsQ2}x4w5AuwyuLM$$bTElWeAKRft;xI~4zLv?xCmRnUh++}ieV|kT!8~Y
zH%65|Ty^tnRlC90H`SoOG8hiMR3ptzu#c*7at-&Aa$$?a=Mn7&110C2N<iH7?|Y~v
zLFM9@3(K#6k%GPohqkb%pkab)D<8wms03o-$>(!;^UAR@11+m>lIEr!;k}=)lqG7q
z9XTL>r{|a|D@4EJvNhVq+W*%zw@5elGrb<m`SF9s6U~7a?v3QMR(v9>Zb2d8g7zH}
zO*dZV2FWN&l-q%=*)3X(C%DZ6o`NuhUZP$W<Q|5r&IHZrjSnxlWQZaNl77@Q;R5i|
zo2*vS@Fpr|2%g=zesopG;&A2C`^4+@M?>3sT$S6ue+;m*EnRe_>)bhfY_+(J?{jpO
zeU?!rnd70c`N1O#QkoM4Kph1Aickx3{xk!a)2>RBlV|Te^}r9rZD&7~HA*Zwq=~Ex
z)@~wtm&wT?njv=Ikgswp6MV|wk4@FwRPzV2?fCIcVIArCOlzDt9<%Hq+~3e}KR>Xh
z9Hw?|xnVE<e5ILb*zfVm*#Ol#^Fx~_AXfU?38QBpOY^x=!-CKMlO@OR%?E&di9*xo
z;gqFz7IPBrdnp-q#Ai=){QB2r=>Zcr?;9g7@$If3Se&KQgWSvJ`KX<5lY6On-$xtK
zv4@YXTQ%errR4jss7T^!@<`WoDv5#Lty)BA6<^&`g7S9dQr2;n(XV=6N)nrTBb?qi
ztXiijTrmmmp|p}6F^@xx=306+8{<^Nr`X9?znKCYN&c_A{)M&ScbC7`Cb6xX?5=5x
zMZcC45}z0X0+!{*?*v+9taJbPM=ExSE!=u|@a5-6W*br|S30f(?{nc#+yHFVJ=Zq<
zY%`(^-aYkg(2eCc!!*{9YA~W-yrc0}-y6f;32wgmMm<jEWaND{^iv`qEyYm}hG6SO
zeF*WNOD}mB{0**No)uSMdp_`pDH`?cn;XYi1&-jmCFP%iW?Fj=c|I^5=S>|#ftGZs
zyFm&LsR&mS)<xS-TKb-MyB6_BWU^e(J5+yYow&K)Q;l$4Z7}#<f8RjuW$nl8U-{Mn
zvCfKqMbpEteFe)xHvEVI(>@0Yyh^EMifjdOMYOf7^KpfgGj!Xub>!zGLm-lK`TTgr
zh;&dKI=&mlk4(BwYkx|Zu_xbFuzx4}qZo1Lf`l`TC29k|c)teERcW_$<xF!m`3`Xg
z_&42|xsKbny~=0d#jgOsX^Saf=X1^AHh##bTD5<HLH)UN(m8mIsK~D(adH*0tqgu4
zXu9+6G-9-bkYmspsIqY}zW;I+yGP_Lz_%Dfvu`B@g+o6#O(y=d?+mUN=HhJH3hq?C
zD$$Q(B=VD$nMGmVe*qBv;(xx?<64xIa8?tdjGV$IkQdoMP2+M}`ffV2wQ!>Md#qmV
zFFIS)DQ=^dmVhnyDj?~4<>exjEoYP}xPSIR7^l91RqYcgInOf(PBy^*CakoEX)Iek
zNQXTzv4DEUyhM|5+{U(Hl?an_&c@7xl7WI)^8O?*6q~0v-}mRZRZEWeOjz4)uRc;Z
zo;EhZNlreR6Lf7b=J9yp+meYsZ04D<;Mi={Ahs-dGERmnJ=Am$Am*KcX>6?SmW*!1
zp8RR)#dPS8D3_s4*AFg!r@|mB-YRPn^kl2?om1jFwv7k(mR_`;0e))o_t0jU`4-V0
z#rF3N4oZ=|#|9ZPR|LVE>WaGA9SCMLn-K!@Vaih1?$Bx_Dj{oxEE(K;8z>(zRMDa4
z(zI^c3&unk2<mlKeb`kK?I!3{m_#?N2CLlQ;pNG{<A|1@7xLR5dkk-P|DfcX1**ew
z<`<T3VYD54Vxs;NKv`&YxVu=_c5`;XARzjSsC8b|CFSJ|!HJQ_fY__BkanqaA<*LZ
zQ^QvRXSTYq#2o+Mc4df2W5@yg`e2X(Z!EQ@qpIU)4B$~3&PCXg?R*DXyB%bin%8wC
z*<!jQ*>g|Q{CQo*)Ie(c#Ib_(32}v;F9#s6dnUqmLbaazNk5EWsX^ZLbE8vRvz~yM
zwa=o~@>kp5EMv?A;)CQA-KmqThrr*$Kcm%6kK&~R;U59-t)?q9jh)3B+{f>!-<$*m
zTMekEFB@>~^!cXtK+1A7@7o*&pKK2Iw`;v=q>}p<cc}8c$<eb5HA{a-d&|uNY~b|z
ztx)tl=-1!gzzWAEe!OSMmSywiRfz52drLzrNmE(q@{DBpbC)zoYs92WB0AWAmcff`
z2WCCl%;NZgl1vMqj|iXIXz2aS@$d{~|9L8*A)U5Y*q>zZeW%g5{VA*mXG88DVth3n
zW)tGg=b{4{I|?^_ZD~DD$j7<XU%8Ge8(f+#$|%C9MyVZzlMd0UkV-UauBVSs7%At%
z+oO(duOfmCHl96E(46Jfe>Ofh`0=eMWu1p1=+ER&EQo4X`!bma0oKe>QAQ`!(C`w&
zhX#3NjsqwTi}<>q-!+rzJlV8o_daeW@7OU3{##j2p*PaC->Qit=GW_kLN0}HrsB@-
z=AKew5LqMi-P2aiGY5xJ7_2$SqX);V3z=gy=F`2B9-C!DyoW^qX9t$5jSm653f(hG
z3+MCVZxq0%WShQ{*NUwyP%`UUr!<h2Yf|qivwp97@@_(3pF$+GU2?jB$xMe`dXHuv
zwEEzY-nb{*o%{L|$X~zMcX?YA2f=hdiVX?1t94z1n`a7tD#wmv(pp}AyDxi(_6T>b
zM%PF4OI8g6<&#$c$Z*a#BR~{BaHNl2P$0ui_l7_dliGI3?NwH*?>TM2JSH>TWX?Cn
zfF$_#+$F#&Mlim^r<A0F`Z>`srxA=+!AM#vu1s`)c`vgfeN`bKUpO5|BJ@*M+X_@j
z9+eSo7yayu=rrTWO@~*<kU=>~xNR@&Q%jLX>vj!J<Ohwu+3QUeRWoRQ0b|Rcg=|c2
z;kYod4dazQW~l+0jzWLDQJ*M#vZ3rvw==nYvY}sO%^Fmx7vgQ6VXxmx@?n54MHED2
zMr)z<*gDy6P1l5pHMh1Sk#2d_9UTMXE)1K^==YRBsJe%I-Z+6I3;&Ws9@6$33E1{_
zwggA`t!vQ>bO1dI+#*b7%-!P-O3X2<QQz?|RYKre%;tTi-2a>=c(K7hS1EQM_^O;2
zm{=(XG!7;*%=dc#Wyj}_P2QWCsCk<jwU{YU-2SGO1A0+Bvsi+OZgCjb2_Q)cZ)V8%
zEj|G^oGU!k+DaSyYGh~w@fUeGbF#YD6v*Z-+RmIKnW?P6Z)-Y|bRvy64W56nm0p&I
zf|=i}+=y4-7m9=a1pC0DF{`wq3aXKSD($F3cvOC)W=u;DUA&AgGQ6q(8TA9%-i=Fb
zIs>YIJSU{~yUIL7=v{Y}@%PzkV^VrLOvO1H@}7@F^e%Z<oP&%4LO+xQzNSup)Wh7A
z+(}kC%1<5kz?kz4b!!FoCaq_pffK6bVsk7isH%UCXv$dm5p2>5`CGeqxh+q|;MwL_
z0E>X>_4PzpM9F5_J>jG$yygdcw5x~dmTFp$5RO?oDmI5FgfnuADj~6^5mN;T7UXx7
zvDjV%lPPNFqxmDEW@0xMN>L(sE{ftk8?*HX2N88NmPlwsC5^!Qy{s>=`GI7If;Iph
z%v}w)+sl;{*jW{WOABZ1*`6H(Sm&`d%*`XnXIgHnWGL3Fg>#GVc;Hrh5hK4HFu1?T
z7)8FuHMH87F^AW8g;-6C_^a#h{NkB4kiQj`XrFH*LgpeLNK1!UT3$HO5v0#+!DyQ%
z##nTS$Ep*;nD5=PQH!`cq}=q|2IDE{AVJ_g>ljqD*+Pu(YIWO+q`9%t6?MlP9X3Bx
zL62*l>$a0$8u6V(uHG(aMt8pa`^KkBM`sRR$Iy!m40g=yFqzgiC=DaPir|#^&ZI_g
zhl&${IM|X~f^XTfL@M^FM7aA%``EVW*<n1w9AhD&){Zext79@;*oo$$6~bNlk*1_G
z3F%iGX^#vWFdj<fLV#q;XJ|1BCv&Qi6b%hOp@Ixl1L#{oS`{rEV-LWB!ZiRM*R23)
z{jL+*(HU%Rz$G!t8yI$Zm=0}#EXQFCIfEKmu=DVk9!)fzi4~MTJyZ0W9})tDCCMI}
zI9nz@o<H^$C+y3sD6dLn<xOc*wW4cneKZFu<CV(o*t^S~O&4J{FbGBpHsQMDJZa@q
zd9dj^Ucp3qiUVeS{TxWS?^B?2(Uh0oU)7OMsc#I_$htM!V7O%DB8oJeU5v)tksKA7
z!69wPXrI*?a-K%RiZ*S_xR#Y)4TBwDT@PZz-Qs-dbu7JegO^ep8s7jwn>F}aKj?OI
zM5AJ>v0;-zZIqF9`ckv(@2~GmeCxwc;UM<EVE6JKZR^woLgY$P=Z5}c{ih~uN=TYr
z@Xmt{Dk^@@b{q)8@5;=jMX6dIA}D-sxEe77D$g*$*0%Dun|(ROzcx=zH&!<s=wN)R
ztb>WiOWm;!Flk%F(8H|9XCLEh$HO2_1C6qv*&!?il_pcYj|yi0Jj+=8AjGy&pVD9l
z!#<xiB^2c6R6dxSu=x<G<sW$e6xWEbB(rH%1EE4jq806yO+H_;74eI{yIvmp%;_o+
zr4}N6%$L`NZH-r)vb0mJNXp&{aZf9`f~xkz#9oR>^AGUS-g#uNX>w}G1n`sFp|KG0
zfqoR48nET6u=}JmpV!{twcN`J9sNs-%QcdbHdburo`N&h$DZQZrsM8PB<kXMEuC#)
z1s<sSR-KX8J$p=8o;u1#vojM0b^fz-SpuzmZ;%3$R-g3x6|(f>FV6bhP|zX*8;;o4
z*}z4PWNSVe$DeV!$Z*L}G$ImjX0Mem^ES1qP0u{aBIaCKdOE958KVt0`XK8KkfeIB
z!BmUabub$d{cRGVQjjn@USED@WzJ%<7L>+}m|a+Omr2)1MgareMaHQGF$m6Xqb3^>
z;my0fDU4jV-0<H-$1N|1jW;a)m~SVi$TXo@>GVu*wi(;#QLWSKLo<5nAROYoed0}i
zq7Ren9Q8Nt7=&c0SYR}g!-mLdVly`r>ykR5j)vh^y#7yl=N`^v-v{uCQucIGNYXmI
zDI+}@$zcvfJtXFkLz(Fj!$OfcH6$KIDCaN~62s)ovc(m>4s)JkY&q@0Mv*y;?Y()P
z()(P`AMbm;f4=uW+qGT$UEkmD{$Ahv+I@dNpWlKEtYj?e<k$A_{(zozPosWG%)L`D
zqD5_`^14@<vyBq*O6U;I{W3FareVEVO3lYyph5gA2FFR9xK6p5S)t~%AafjVA;1(Z
z?Hu@U@g&(Kin;QpH<tIpG?CNZwDpYmbt;Uj?OCwmltzY6mq=Ui?{jHC;m+n%_1Nn6
zb?y@J=Q7{6t(;b6M)}e0*DeLletA*e5^iEzr-5(z+^>={nKRm$S?02m5i?Y*^^^vy
zslA1#XW0|3lJ-Xd?UHTceErK&hfm)b#*y3;%3GWXI|sotCH~|n3m4veU5qDBYI+`>
zR^C?9vu46Tc;0oGbt8CTwB&t0;@RMPhT&Kz<|T*z$c%*Q!Y~-&P<^g#h^#=svE19O
zo3|K1de#3qHk>%-I6dC#oz89?rmSyMAA8dH9C7JIL~m9i(2GekperHUTC0<`kMGu9
zhiWY2SR`QxkiN0}$yVN*@Pl9C8nC-!J$6CAM7LpT^+NSCl|~xhOdV2i$SG`hN3FhV
zIU{`f(qyjipqyd90dnO=O;W`_9CNQGE9v*z`WFO0d?>bm|CpgA(kmXeEOL*{o0%1C
zk^B5`AM7IWtA~4J;07$xjYr;=AZb9eECeN{pZ&hl2|NU!8#z^jnMkZT5V<xhId#Y-
zGF=!&6ZAwUFH10uDNBr(4W;}R7bn{XkhDK~{IPHPzgqk8iJ3$F^<pI#*8E5nHGHgR
zk?4UggyTr}<O4AmMDvQD?~?I~9mmWuK=n~7ad>gq0e3FFtMUERb+5g(4k(o<4XgY&
z-(e;5`?9jKc{WwW^CazTgZR`*fCg=ym(t<UMeYZ}7>j~7xvzyHL^8q}G#6udieBMq
zD-IA?TQtwh3-6q^HgS1RP|b*Lu7B*sc^w`I1pZlHSI7M4ocNkRuHH5~SJ{;#s<f&#
z_dA(RJ9l_96T;l!DgW%BBUWI1CAZoM9HB@P5}c!vPb)ms%eeYDZ%1DzbsK7`Vo_L`
zuWP@Mod9F*m-bdR=9a|F&OCq8K#vD7#wC>oHU4=$NeDFi2|)LLKf-|q5HanSyYMl=
z1amX12u^jEd(zqK$JH(;56(flhjr01(5FSi6|znGXVKH`oZ{SpWb(bL@<3PR;Db;<
zyHfR%mIagBT?c#Y%T0SvcVagXvRLBO8gZ98^%Av#fbW9(dzVH$!vo#iZw>ha>{h{`
z@F~NQThh%%2X&;)xjlnJ&mCsGUAl`37krFPRv2~P1qS(c1YHT*BM%LEj}*p-r{#4b
zhWP0G-`-!UidQM%M}|vhm_$e3ar1XqCt+}s=6mb2+tKf>A`fa_$UK~!b$RBIDR6}z
zaKs@TY33D}i5yuqOj+Ia1zM2D>upl-;*?_qt4Ls%dOPQ8fJJL+oY0#uJKpRP0_^#4
zcpR~_yx)ANv#2<(#1bQl5`*M`pyb_U0l46Ky690AL(^tpkQ>}qlRSr=c!TsD{Nvmi
z!*5}OK#4*}t<1Mi&QiODQI2YCMlt{=%v!-0I<NRmX6GnzhBaMKZI6woSUg>7fO4(#
zXxN$a`Hu%a+_T_Lc$rfrBNfYV^|!Onw<SC?9`2k&qO+mTrm&VOu#zVsyAgDYo2Ew9
zF%oTZgY0b}%7l|eryAbGLD`l6+ApcfA(K24#a7_b!CCC2SJq>dpjE4UsRAUI{0!=C
zmN|T!+M;MWZLK%7#~BAPq`e5~SRLKG<T6B$1L=DVxr3;g%cNUp#@VCe*>R!D`C6?3
z_`I?Du7y=FxKbLoHD=lMRk7zsEN9Z*AizJ__Qo_1iOu(97K|IHo~AvT$zBq7#7aIQ
zRfHWQ+?wvI-kMxPYY__aNGRv1)=>Cy_o&pVUaf|f(}HJ>^DNhznv76cs#h#ho`XKy
zKh1+T%g9lA-X<!mm)OUtEXDRx`T<(rec(^cTG=_)IoM{vHj0*btw5fC7x`BlALk~q
zp&=L_8}os%CrPv9u28T<s;s*D4GX?36xw9{>gD`j;6ad$L9EQx&az%x0)t`q-S1;a
z-hw1ixLnY@2&i(E_cda-f{P)yE&sO(G0>gy%DZE=zeav%vNJ}m=<Az|H^t-WTcOwT
zfbxdId8N^}&+#o7+!O%{gkhlf7fHtd3N&vf+s3<fI@%;F<A~8dhN)b{v;yEQ=-Lw0
zOptHLBm_gBi-T+=4=jHFP0-6{Zn^^NHQ2eTuCC4y{4P6&U)>ytT#4l??|rdw6%0}!
zu8x{GH<UhY{{<LG?jr9l@%)cmeKug^ps*lTaG>!n@=qRq**2_xoYb<@Yj7QZ2blV2
zvrFbS<YsfCf9!Mc239{Wy@`v1_UmpJ_Z{QkrIAngM~I(pL4g#+xYZ>@EmUYI1mOG&
zq_8T10`JBhqAyFRzq&>Vc)AP*75>Djw2axT$e>Emb?Th6o4~onXZS79Eai?JyCAKO
zRchOE%AK>|i1OwvpiyCInBr5*#Gz{ClsrttAhiStuy6D!{4kQ0WKrdKgXVVjqXrnH
z<;L+r{|zkfGtM`m@kplG26@-Z@&+p0iBfKrwHksMZ~J<m<7)bQ@wl~RlES<kYoO-M
zm!WW%cEB_MN=$(B`bH7fk<RhQ0}I->!KpCN=h0iyo*bWlpMvS$;7}AW1#JCM?&V$}
zg?=Bv5WVuu%3TM0-fq#hF8R~eu(3ME<HV6UZ}xDvQ<9oW4fX97kiyPy!iMf8ePr)f
zTOetd?%r)s!K9Lseq5>;o3*i6V@=nA&!gN~%A%&<tJKs(vtI%Ggsi-Li!U`=j|Z`0
zLy+*bJpk2N?KQ2Y)if~QidSdic4;^E^(Mdrl$<+tJ32aA%f$BXeE}#drjjv*Uxs--
zDoY3}(90rB#elb0cah_jYn1Y8kGO&orm-h`%PBJ*9pJo_K6p7*|Jr^{0MP4x@Q~_K
z^hlPgw0KfjRsLJ>JtK+M^kQ=U`1v*gZ9R``h!de9=Q@-Z+{_RUJE{?*CnbKcnuN>2
z;X})=?-myY+T4YBGT&5O8?_+ZSZ8@#t%fVNBaM|oV0P^DtGV+j80LURH&1El>FKF9
zuUh$VhG6~N)cE*pvmB$zX(9!?&4%PEY{zD@0=|5(71w5*k>p5-aU&vdguy8qLH$AB
zbRlqyV=$h=VrrmlG|X;RVg+nOo;ZUL9*HiSN)$0m1A}m=Wg%<7Z0W2x+L+_Mm3-3*
z5Ur>P(&@XFr2iDH+zH8H@3856Akvlz?>`zLcT{NF7dQ?6DC2ZZwvdq`42CZs62_)4
z&B^aRLR>|iW1WF=BqT^pmXQaQQ;QxBl~dZ60v>!>tgnZxD^^6;6)QHr(La<VfCP^N
zGzt;!zto`^b@NWfmKV17Bv2r%#$j*&VnUIx3<<&t5I}fvB=&K^5y<goSU<{^)i@to
zPftv!TQ|Pg{9$~t|6zLjjsj|*?X}l61i&|VMWNEKKWhxcN>^8k0-mf@+^6R(&Ch@u
z4RnIJY&x<-b!@kKUo6w>#HT75cyA7R1W-bxX^e^k!R}8--<O}>%uRERO_PhyK-$ms
z@rQ!TmN{X}4!Q>DL?R#jc<pz0TjwQ`5ukqwDjsoPol_wytwy4F6F|C*x~Bs6m~ZuM
zb!lCC61FG5UPbAXR8~=r99#$k?*6aEG{=Nenk&+8FY~t{)RrkBaSMr}f4kO<u;@MV
z2sOY1NB*?Kcrc*!<b@*MGDk8f!aJAzXni5~Z!F}J)~jzJRu+E`QTvngU^E9Ph2Os0
xctxbG%VPH3I=p$Q+xR?4<l+CVMCrgJU+_%S$BdH;DiiCAp|5A8TX?}P_+LVH+k5~3

literal 0
HcmV?d00001

diff --git a/docs/kubectl-plugin.md b/docs/kubectl-plugin.md
index 01be19f59..2b6381f6f 100644
--- a/docs/kubectl-plugin.md
+++ b/docs/kubectl-plugin.md
@@ -208,6 +208,7 @@ modsecurity
 modules
 nginx.conf
 opentracing.json
+opentelemetry.toml
 owasp-modsecurity-crs
 template
 ```
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 9c79d9d9c..dac39f752 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -121,6 +121,8 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/enable-access-log](#enable-access-log)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/enable-opentracing](#enable-opentracing)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/opentracing-trust-incoming-span](#opentracing-trust-incoming-span)|"true" or "false"|
+|[nginx.ingress.kubernetes.io/enable-opentelemetry](#enable-opentelemetry)|"true" or "false"|
+|[nginx.ingress.kubernetes.io/opentelemetry-trust-incoming-span](#opentelemetry-trust-incoming-spans)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/enable-influxdb](#influxdb)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/influxdb-measurement](#influxdb)|string|
 |[nginx.ingress.kubernetes.io/influxdb-port](#influxdb)|string|
@@ -821,6 +823,24 @@ sometimes need to be overridden to enable it or disable it for a specific ingres
 nginx.ingress.kubernetes.io/opentracing-trust-incoming-span: "true"
 ```
 
+### Enable Opentelemetry
+
+Opentelemetry can be enabled or disabled globally through the ConfigMap but this will sometimes need to be overridden
+to enable it or disable it for a specific ingress (e.g. to turn off telemetry of external health check endpoints)
+
+```yaml
+nginx.ingress.kubernetes.io/enable-opentelemetry: "true"
+```
+
+### Opentelemetry Trust Incoming Span
+
+The option to trust incoming trace spans can be enabled or disabled globally through the ConfigMap but this will
+sometimes need to be overridden to enable it or disable it for a specific ingress (e.g. only enable on a private endpoint)
+
+```yaml
+nginx.ingress.kubernetes.io/opentelemetry-trust-incoming-spans: "true"
+```
+
 ### X-Forwarded-Prefix Header
 To add the non-standard `X-Forwarded-Prefix` header to the upstream request with a string value, the following annotation can be used:
 
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
old mode 100755
new mode 100644
index fc5bd07c2..ccb115a0f
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -157,6 +157,19 @@ The following table shows a configuration option's name, type, and the default v
 |[datadog-operation-name-override](#datadog-operation-name-override)|string|"nginx.handle"|
 |[datadog-priority-sampling](#datadog-priority-sampling)|bool|"true"|
 |[datadog-sample-rate](#datadog-sample-rate)|float|1.0|
+|[enable-opentelemetry](#enable-opentelemetry)|bool|"false"|
+|[opentelemetry-trust-incoming-span](#opentelemetry-trust-incoming-span)|bool|"true"|
+|[opentelemetry-operation-name](#opentelemetry-operation-name)|string|""|
+|[opentelemetry-config](#/etc/nginx/opentelemetry.toml)|string|"/etc/nginx/opentelemetry.toml"|
+|[otlp-collector-host](#otlp-collector-host)|string|""|
+|[otlp-collector-port](#otlp-collector-port)|int|4317|
+|[otel-max-queuesize](#otel-max-queuesize)|int||
+|[otel-schedule-delay-millis](#otel-schedule-delay-millis)|int||
+|[otel-max-export-batch-size](#otel-max-export-batch-size)|int||
+|[otel-service-name](#otel-service-name)|string|"nginx"|
+|[otel-sampler](#otel-sampler)|string|"AlwaysOff"|
+|[otel-sampler-parent-based](#otel-sampler-parent-based)|bool|"false"|
+|[otel-sampler-ratio](#otel-sampler-ratio)|float|0.01|
 |[main-snippet](#main-snippet)|string|""|
 |[http-snippet](#http-snippet)|string|""|
 |[server-snippet](#server-snippet)|string|""|
@@ -1009,6 +1022,46 @@ If true disables client-side sampling (thus ignoring `sample_rate`) and enables
 Specifies sample rate for any traces created.
 This is effective only when `datadog-priority-sampling` is `false` _**default:**_ 1.0
 
+## enable-opentelemetry
+
+Enables the nginx OpenTelemetry extension. _**default:**_ is disabled
+
+_References:_
+[https://github.com/open-telemetry/opentelemetry-cpp-contrib](https://github.com/open-telemetry/opentelemetry-cpp-contrib/tree/main/instrumentation/nginx)
+
+## opentelemetry-operation-name
+
+Specifies a custom name for the server span. _**default:**_ is empty
+
+For example, set to "HTTP $request_method $uri".
+
+## otlp-collector-host
+
+Specifies the host to use when uploading traces. It must be a valid URL.
+
+## otlp-collector-port
+
+Specifies the port to use when uploading traces. _**default:**_ 4317
+
+## otel-service-name
+
+Specifies the service name to use for any traces created. _**default:**_ nginx
+
+##  opentelemetry-trust-incoming-span: "true"
+Enables or disables using spans from incoming requests as parent for created ones. _**default:**_ true
+
+##  otel-sampler-parent-based
+
+Uses sampler implementation which by default will take a sample if parent Activity is sampled. _**default:**_ false
+
+## otel-sampler-ratio
+
+Specifies sample rate for any traces created. _**default:**_ 0.01
+
+## otel-sampler
+
+Specifies the sampler to be used when sampling traces. The available samplers are: AlwaysOff, AlwaysOn, TraceIdRatioBased, remote. _**default:**_ AlwaysOff
+
 ## main-snippet
 
 Adds custom configuration to the main section of the nginx configuration.
diff --git a/docs/user-guide/third-party-addons/opentelemetry.md b/docs/user-guide/third-party-addons/opentelemetry.md
new file mode 100644
index 000000000..d966dff1f
--- /dev/null
+++ b/docs/user-guide/third-party-addons/opentelemetry.md
@@ -0,0 +1,260 @@
+# OpenTelemetry
+
+Enables requests served by NGINX for distributed telemetry via The OpenTelemetry Project.
+
+Using the third party module [opentelemetry-cpp-contrib/nginx](https://github.com/open-telemetry/opentelemetry-cpp-contrib/tree/main/instrumentation/nginx) the NGINX ingress controller can configure NGINX to enable [OpenTelemetry](http://opentelemetry.io) instrumentation.
+By default this feature is disabled.
+
+## Usage
+
+To enable the instrumentation we must enable OpenTelemetry in the configuration ConfigMap:
+```yaml
+data:
+  enable-opentelemetry: "true"
+```
+
+To enable or disable instrumentation for a single Ingress, use
+the `enable-opentelemetry` annotation:
+```yaml
+kind: Ingress
+metadata:
+  annotations:
+    nginx.ingress.kubernetes.io/enable-opentelemetry: "true"
+```
+
+We must also set the host to use when uploading traces:
+
+```yaml
+otlp-collector-host: "otel-coll-collector.otel.svc"
+```
+NOTE: While the option is called `otlp-collector-host`, you will need to point this to any backend that recieves otlp-grpc.
+
+Next you will need to deploy a distributed telemetry system which uses OpenTelemetry.
+[opentelemetry-collector](https://github.com/open-telemetry/opentelemetry-collector), [Jaeger](https://www.jaegertracing.io/)
+[Tempo](https://github.com/grafana/tempo), and [zipkin](https://zipkin.io/)
+have been tested.
+
+Other optional configuration options:
+```yaml
+# specifies the name to use for the server span
+opentelemetry-operation-name
+
+# sets whether or not to trust incoming telemetry spans
+opentelemetry-trust-incoming-span
+
+# specifies the port to use when uploading traces, Default: 4317
+otlp-collector-port
+
+# specifies the service name to use for any traces created, Default: nginx
+otel-service-name
+
+# The maximum queue size. After the size is reached data are dropped.
+otel-max-queuesize
+
+# The delay interval in milliseconds between two consecutive exports.
+otel-schedule-delay-millis
+        
+# How long the export can run before it is cancelled.
+otel-schedule-delay-millis
+
+# The maximum batch size of every export. It must be smaller or equal to maxQueueSize.
+otel-max-export-batch-size
+
+# specifies sample rate for any traces created, Default: 0.01
+otel-sampler-ratio
+
+# specifies the sampler to be used when sampling traces.
+# The available samplers are: AlwaysOn,  AlwaysOff, TraceIdRatioBased, Default: AlwaysOff
+otel-sampler
+
+# Uses sampler implementation which by default will take a sample if parent Activity is sampled, Default: false
+otel-sampler-parent-based
+```
+
+Note that you can also set whether to trust incoming spans (global default is true) per-location using annotations like the following:
+```yaml
+kind: Ingress
+metadata:
+  annotations:
+    nginx.ingress.kubernetes.io/opentelemetry-trust-incoming-span: "true"
+```
+
+## Examples
+
+The following examples show how to deploy and test different distributed telemetry systems. These example can be performed using Docker Desktop.
+
+In the [esigo/nginx-example](https://github.com/esigo/nginx-example)
+GitHub repository is an example of a simple hello service:
+
+```mermaid
+graph TB
+    subgraph Browser
+    start["http://esigo.dev/hello/nginx"]
+    end
+
+    subgraph app
+        sa[service-a]
+        sb[service-b]
+        sa --> |name: nginx| sb
+        sb --> |hello nginx!| sa
+    end
+
+    subgraph otel
+        otc["Otel Collector"] 
+    end
+
+    subgraph observability
+        tempo["Tempo"]
+        grafana["Grafana"]
+        backend["Jaeger"]
+        zipkin["Zipkin"]
+    end
+
+    subgraph ingress-nginx
+        ngx[nginx]
+    end
+
+    subgraph ngx[nginx]
+        ng[nginx]
+        om[OpenTelemetry module]
+    end
+
+    subgraph Node
+        app
+        otel
+        observability
+        ingress-nginx
+        om --> |otlp-gRPC| otc --> |jaeger| backend
+        otc --> |zipkin| zipkin
+        otc --> |otlp-gRPC| tempo --> grafana
+        sa --> |otlp-gRPC| otc
+        sb --> |otlp-gRPC| otc
+        start --> ng --> sa
+    end
+```
+
+To install the example and collectors run:
+
+1. Enable Ingress addon with:
+
+    ```yaml
+      opentelemetry:
+        enabled: true
+        image: registry.k8s.io/ingress-nginx/opentelemetry:v20230107-helm-chart-4.4.2-2-g96b3d2165@sha256:331b9bebd6acfcd2d3048abbdd86555f5be76b7e3d0b5af4300b04235c6056c9
+        containerSecurityContext:
+        allowPrivilegeEscalation: false
+    ```
+
+2. Enable OpenTelemetry and set the otlp-collector-host:
+
+    ```yaml
+    $ echo '
+      apiVersion: v1
+      kind: ConfigMap
+      data:
+        enable-opentelemetry: "true"
+        opentelemetry-config: "/etc/nginx/opentelemetry.toml"
+        opentelemetry-operation-name: "HTTP $request_method $service_name $uri"
+        opentelemetry-trust-incoming-span: "true"
+        otlp-collector-host: "otel-coll-collector.otel.svc"
+        otlp-collector-port: "4317"
+        otel-max-queuesize: "2048"
+        otel-schedule-delay-millis: "5000"
+        otel-max-export-batch-size: "512"
+        otel-service-name: "nginx-proxy" # Opentelemetry resource name
+        otel-sampler: "AlwaysOn" # Also: AlwaysOff, TraceIdRatioBased
+        otel-sampler-ratio: "1.0"
+        otel-sampler-parent-based: "false"
+      metadata:
+        name: ingress-nginx-controller
+        namespace: ingress-nginx
+      ' | kubectl replace -f -
+    ```
+
+4. Deploy otel-collector, grafana and Jaeger backend:
+
+    ```bash
+    # add helm charts needed for grafana and OpenTelemetry collector
+    helm repo add open-telemetry https://open-telemetry.github.io/opentelemetry-helm-charts
+    helm repo add grafana https://grafana.github.io/helm-charts
+    helm repo update
+    # deply cert-manager needed for OpenTelemetry collector operator
+    kubectl apply -f https://github.com/cert-manager/cert-manager/releases/download/v1.9.1/cert-manager.yaml
+    # create observability namespace
+    kubectl apply -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/namespace.yaml
+    # install OpenTelemetry collector operator
+    helm upgrade --install otel-collector-operator -n otel --create-namespace open-telemetry/opentelemetry-operator
+    # deploy OpenTelemetry collector
+    kubectl apply -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/collector.yaml
+    # deploy Jaeger all-in-one
+    kubectl apply -f https://github.com/jaegertracing/jaeger-operator/releases/download/v1.37.0/jaeger-operator.yaml -n observability
+    kubectl apply -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/jaeger.yaml -n observability
+    # deploy zipkin
+    kubectl apply -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/zipkin.yaml -n observability
+    # deploy tempo and grafana
+	helm upgrade --install tempo grafana/tempo --create-namespace -n observability
+	helm upgrade -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/grafana/grafana-values.yaml --install grafana grafana/grafana --create-namespace -n observability
+    ```
+
+3. Build and deploy demo app:
+
+    ```bash
+    # build images
+    make images
+
+    # deploy demo app:
+    make deploy-app
+    ```
+
+5. Make a few requests to the Service:
+
+    ```bash
+    kubectl port-forward --namespace=ingress-nginx service/ingress-nginx-controller 8090:80
+    curl http://esigo.dev:8090/hello/nginx
+
+
+    StatusCode        : 200
+    StatusDescription : OK
+    Content           : {"v":"hello nginx!"}
+
+    RawContent        : HTTP/1.1 200 OK
+                        Connection: keep-alive
+                        Content-Length: 21
+                        Content-Type: text/plain; charset=utf-8
+                        Date: Mon, 10 Oct 2022 17:43:33 GMT
+
+                        {"v":"hello nginx!"}
+
+    Forms             : {}
+    Headers           : {[Connection, keep-alive], [Content-Length, 21], [Content-Type, text/plain; charset=utf-8], [Date,
+                        Mon, 10 Oct 2022 17:43:33 GMT]}
+    Images            : {}
+    InputFields       : {}
+    Links             : {}
+    ParsedHtml        : System.__ComObject
+    RawContentLength  : 21
+    ```
+
+6. View the Grafana UI:
+
+    ```bash
+    kubectl port-forward --namespace=observability service/grafana 3000:80
+    ```
+    In the Grafana interface we can see the details:
+    ![grafana screenshot](../../images/otel-grafana-demo.png "grafana screenshot")
+
+7. View the Jaeger UI:
+
+    ```bash
+    kubectl port-forward --namespace=observability service/jaeger-all-in-one-query 16686:16686
+    ```
+    In the Jaeger interface we can see the details:
+    ![Jaeger screenshot](../../images/otel-jaeger-demo.png "Jaeger screenshot")
+
+8. View the Zipkin UI:
+
+    ```bash
+    kubectl port-forward --namespace=observability service/zipkin 9411:9411
+    ```
+    In the Zipkin interface we can see the details:
+    ![zipkin screenshot](../../images/otel-zipkin-demo.png "zipkin screenshot")
diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index 14415a4f7..6a9e7367c 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -20,6 +20,7 @@ import (
 	"github.com/imdario/mergo"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/canary"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/modsecurity"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/opentelemetry"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/proxyssl"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/sslcipher"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/streamsnippet"
@@ -94,6 +95,7 @@ type Ingress struct {
 	EnableGlobalAuth   bool
 	HTTP2PushPreload   bool
 	Opentracing        opentracing.Config
+	Opentelemetry      opentelemetry.Config
 	Proxy              proxy.Config
 	ProxySSL           proxyssl.Config
 	RateLimit          ratelimit.Config
@@ -145,6 +147,7 @@ func NewAnnotationExtractor(cfg resolver.Resolver) Extractor {
 			"EnableGlobalAuth":     authreqglobal.NewParser(cfg),
 			"HTTP2PushPreload":     http2pushpreload.NewParser(cfg),
 			"Opentracing":          opentracing.NewParser(cfg),
+			"Opentelemetry":        opentelemetry.NewParser(cfg),
 			"Proxy":                proxy.NewParser(cfg),
 			"ProxySSL":             proxyssl.NewParser(cfg),
 			"RateLimit":            ratelimit.NewParser(cfg),
diff --git a/internal/ingress/annotations/opentelemetry/main.go b/internal/ingress/annotations/opentelemetry/main.go
new file mode 100644
index 000000000..7dd292322
--- /dev/null
+++ b/internal/ingress/annotations/opentelemetry/main.go
@@ -0,0 +1,101 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package opentelemetry
+
+import (
+	networking "k8s.io/api/networking/v1"
+
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/resolver"
+)
+
+type opentelemetry struct {
+	r resolver.Resolver
+}
+
+// Config contains the configuration to be used in the Ingress
+type Config struct {
+	Enabled       bool   `json:"enabled"`
+	Set           bool   `json:"set"`
+	TrustEnabled  bool   `json:"trust-enabled"`
+	TrustSet      bool   `json:"trust-set"`
+	OperationName string `json:"operation-name"`
+}
+
+// Equal tests for equality between two Config types
+func (bd1 *Config) Equal(bd2 *Config) bool {
+
+	if bd1.Set != bd2.Set {
+		return false
+	}
+
+	if bd1.Enabled != bd2.Enabled {
+		return false
+	}
+
+	if bd1.TrustSet != bd2.TrustSet {
+		return false
+	}
+
+	if bd1.TrustEnabled != bd2.TrustEnabled {
+		return false
+	}
+
+	if bd1.OperationName != bd2.OperationName {
+		return false
+	}
+
+	return true
+}
+
+// NewParser creates a new serviceUpstream annotation parser
+func NewParser(r resolver.Resolver) parser.IngressAnnotation {
+	return opentelemetry{r}
+}
+
+// Parse parses the annotations to look for opentelemetry configurations
+func (c opentelemetry) Parse(ing *networking.Ingress) (interface{}, error) {
+	cfg := Config{}
+	enabled, err := parser.GetBoolAnnotation("enable-opentelemetry", ing)
+	if err != nil {
+		return &cfg, nil
+	}
+	cfg.Set = true
+	cfg.Enabled = enabled
+	if !enabled {
+		return &cfg, nil
+	}
+
+	trustEnabled, err := parser.GetBoolAnnotation("opentelemetry-trust-incoming-span", ing)
+	if err != nil {
+		operationName, err := parser.GetStringAnnotation("opentelemetry-operation-name", ing)
+		if err != nil {
+			return &cfg, nil
+		}
+		cfg.OperationName = operationName
+		return &cfg, nil
+	}
+
+	cfg.TrustSet = true
+	cfg.TrustEnabled = trustEnabled
+	operationName, err := parser.GetStringAnnotation("opentelemetry-operation-name", ing)
+	if err != nil {
+		return &cfg, nil
+	}
+	cfg.OperationName = operationName
+	return &cfg, nil
+}
diff --git a/internal/ingress/annotations/opentelemetry/main_test.go b/internal/ingress/annotations/opentelemetry/main_test.go
new file mode 100644
index 000000000..619108fa6
--- /dev/null
+++ b/internal/ingress/annotations/opentelemetry/main_test.go
@@ -0,0 +1,170 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package opentelemetry
+
+import (
+	"testing"
+
+	api "k8s.io/api/core/v1"
+	networking "k8s.io/api/networking/v1"
+	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/resolver"
+)
+
+func buildIngress() *networking.Ingress {
+	defaultBackend := networking.IngressBackend{
+		Service: &networking.IngressServiceBackend{
+			Name: "default-backend",
+			Port: networking.ServiceBackendPort{
+				Number: 80,
+			},
+		},
+	}
+
+	return &networking.Ingress{
+		ObjectMeta: meta_v1.ObjectMeta{
+			Name:      "foo",
+			Namespace: api.NamespaceDefault,
+		},
+		Spec: networking.IngressSpec{
+			DefaultBackend: &networking.IngressBackend{
+				Service: &networking.IngressServiceBackend{
+					Name: "default-backend",
+					Port: networking.ServiceBackendPort{
+						Number: 80,
+					},
+				},
+			},
+			Rules: []networking.IngressRule{
+				{
+					Host: "foo.bar.com",
+					IngressRuleValue: networking.IngressRuleValue{
+						HTTP: &networking.HTTPIngressRuleValue{
+							Paths: []networking.HTTPIngressPath{
+								{
+									Path:    "/foo",
+									Backend: defaultBackend,
+								},
+							},
+						},
+					},
+				},
+			},
+		},
+	}
+}
+
+func TestIngressAnnotationOpentelemetrySetTrue(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix("enable-opentelemetry")] = "true"
+	ing.SetAnnotations(data)
+
+	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	openTelemetry, ok := val.(*Config)
+	if !ok {
+		t.Errorf("expected a Config type")
+	}
+
+	if !openTelemetry.Enabled {
+		t.Errorf("expected annotation value to be true, got false")
+	}
+
+	if !openTelemetry.Set {
+		t.Errorf("expected annotation value to be true, got false")
+	}
+
+	if openTelemetry.TrustSet {
+		t.Errorf("expected annotation value to be false, got true")
+	}
+}
+
+func TestIngressAnnotationOpentelemetrySetFalse(t *testing.T) {
+	ing := buildIngress()
+
+	// Test with explicitly set to false
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix("enable-opentelemetry")] = "false"
+	ing.SetAnnotations(data)
+
+	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	openTelemetry, ok := val.(*Config)
+	if !ok {
+		t.Errorf("expected a Config type")
+	}
+
+	if openTelemetry.Enabled {
+		t.Errorf("expected annotation value to be false, got true")
+	}
+
+	if !openTelemetry.Set {
+		t.Errorf("expected annotation value to be true, got false")
+	}
+}
+
+func TestIngressAnnotationOpentelemetryTrustSetTrue(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	opName := "foo-op"
+	data[parser.GetAnnotationWithPrefix("enable-opentelemetry")] = "true"
+	data[parser.GetAnnotationWithPrefix("opentelemetry-trust-incoming-span")] = "true"
+	data[parser.GetAnnotationWithPrefix("opentelemetry-operation-name")] = opName
+	ing.SetAnnotations(data)
+
+	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	openTelemetry, ok := val.(*Config)
+	if !ok {
+		t.Errorf("expected a Config type")
+	}
+
+	if !openTelemetry.Enabled {
+		t.Errorf("expected annotation value to be true, got false")
+	}
+
+	if !openTelemetry.Set {
+		t.Errorf("expected annotation value to be true, got false")
+	}
+
+	if !openTelemetry.TrustEnabled {
+		t.Errorf("expected annotation value to be true, got false")
+	}
+
+	if !openTelemetry.TrustSet {
+		t.Errorf("expected annotation value to be true, got false")
+	}
+
+	if openTelemetry.OperationName != opName {
+		t.Errorf("expected annotation value to be %v, got %v", opName, openTelemetry.OperationName)
+	}
+}
+
+func TestIngressAnnotationOpentelemetryUnset(t *testing.T) {
+	ing := buildIngress()
+
+	// Test with no annotation specified
+	data := map[string]string{}
+	ing.SetAnnotations(data)
+
+	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	_, ok := val.(*Config)
+	if !ok {
+		t.Errorf("expected a Config type")
+	}
+}
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 5786b6776..da37ea3c9 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -568,6 +568,54 @@ type Configuration struct {
 	// Default: true
 	OpentracingTrustIncomingSpan bool `json:"opentracing-trust-incoming-span"`
 
+	// EnableOpentelemetry enables the nginx Opentelemetry extension
+	// By default this is disabled
+	EnableOpentelemetry bool `json:"enable-opentelemetry"`
+
+	// OpentelemetryConfig sets the opentelemetry config file
+	// Default: /etc/nginx/opentelemetry.toml
+	OpentelemetryConfig string `json:"opentelemetry-config"`
+
+	// OpentelemetryOperationName specifies a custom name for the server span
+	OpentelemetryOperationName string `json:"opentelemetry-operation-name"`
+
+	// OpentelemetryTrustIncomingSpan sets whether or not to trust incoming trace spans
+	// If false, incoming span headers will be rejected
+	// Default: true
+	OpentelemetryTrustIncomingSpan bool `json:"opentelemetry-trust-incoming-span"`
+
+	// OtlpCollectorHost specifies the host to use when uploading traces
+	OtlpCollectorHost string `json:"otlp-collector-host"`
+
+	// OtlpCollectorPort specifies the port to use when uploading traces
+	// Default: 4317
+	OtlpCollectorPort string `json:"otlp-collector-port"`
+
+	// OtelServiceName specifies the service name to use for any traces created
+	// Default: nginx
+	OtelServiceName string `json:"otel-service-name"`
+
+	// OtelSampler specifies the sampler to use for any traces created
+	// Default: AlwaysOff
+	OtelSampler string `json:"otel-sampler"`
+
+	// OtelSamplerRatio specifies the sampler ratio to use for any traces created
+	// Default: 0.01
+	OtelSamplerRatio float32 `json:"otel-sampler-ratio"`
+
+	//OtelSamplerParentBased specifies the parent based sampler to be use for any traces created
+	// Default: false
+	OtelSamplerParentBased bool `json:"otel-sampler-parent-based"`
+
+	// MaxQueueSize specifies the max queue size for uploading traces
+	OtelMaxQueueSize int32 `json:"otel-max-queuesize"`
+
+	// ScheduleDelayMillis specifies the max delay between uploading traces
+	OtelScheduleDelayMillis int32 `json:"otel-schedule-delay-millis"`
+
+	// MaxExportBatchSize specifies the max export batch size to used when uploading traces
+	OtelMaxExportBatchSize int32 `json:"otel-max-export-batch-size"`
+
 	// ZipkinCollectorHost specifies the host to use when uploading traces
 	ZipkinCollectorHost string `json:"zipkin-collector-host"`
 
@@ -917,6 +965,13 @@ func NewDefault() Configuration {
 		BindAddressIpv4:                        defBindAddress,
 		BindAddressIpv6:                        defBindAddress,
 		OpentracingTrustIncomingSpan:           true,
+		OpentelemetryTrustIncomingSpan:         true,
+		OpentelemetryConfig:                    "/etc/nginx/opentelemetry.toml",
+		OtlpCollectorPort:                      "4317",
+		OtelServiceName:                        "nginx",
+		OtelSampler:                            "AlwaysOff",
+		OtelSamplerRatio:                       0.01,
+		OtelSamplerParentBased:                 false,
 		ZipkinCollectorPort:                    9411,
 		ZipkinServiceName:                      "nginx",
 		ZipkinSampleRate:                       1.0,
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 20f8c8687..5d94605b5 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -1444,6 +1444,7 @@ func locationApplyAnnotations(loc *ingress.Location, anns *annotations.Ingress)
 	loc.EnableGlobalAuth = anns.EnableGlobalAuth
 	loc.HTTP2PushPreload = anns.HTTP2PushPreload
 	loc.Opentracing = anns.Opentracing
+	loc.Opentelemetry = anns.Opentelemetry
 	loc.Proxy = anns.Proxy
 	loc.ProxySSL = anns.ProxySSL
 	loc.RateLimit = anns.RateLimit
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 5575009ea..80693db5c 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -673,6 +673,11 @@ func (n *NGINXController) OnUpdate(ingressCfg ingress.Configuration) error {
 		return err
 	}
 
+	err = createOpentelemetryCfg(cfg)
+	if err != nil {
+		return err
+	}
+
 	err = n.testTemplate(content)
 	if err != nil {
 		return err
@@ -1056,6 +1061,29 @@ const datadogTmpl = `{
   "dd.priority.sampling": {{ .DatadogPrioritySampling }}
 }`
 
+const otelTmpl = `
+exporter = "otlp"
+processor = "batch"
+
+[exporters.otlp]
+# Alternatively the OTEL_EXPORTER_OTLP_ENDPOINT environment variable can also be used.
+host = "{{ .OtlpCollectorHost }}"
+port = {{ .OtlpCollectorPort }}
+
+[processors.batch]
+max_queue_size = {{ .OtelMaxQueueSize }}
+schedule_delay_millis = {{ .OtelScheduleDelayMillis }}
+max_export_batch_size = {{ .OtelMaxExportBatchSize }}
+
+[service]
+name = "{{ .OtelServiceName }}" # Opentelemetry resource name
+
+[sampler]
+name = "{{ .OtelSampler }}" # Also: AlwaysOff, TraceIdRatioBased
+ratio = {{ .OtelSamplerRatio }}
+parent_based = {{ .OtelSamplerParentBased }}
+`
+
 func createOpentracingCfg(cfg ngx_config.Configuration) error {
 	var tmpl *template.Template
 	var err error
@@ -1091,6 +1119,21 @@ func createOpentracingCfg(cfg ngx_config.Configuration) error {
 	return os.WriteFile("/etc/nginx/opentracing.json", []byte(expanded), file.ReadWriteByUser)
 }
 
+func createOpentelemetryCfg(cfg ngx_config.Configuration) error {
+
+	tmpl, err := template.New("otel").Parse(otelTmpl)
+	if err != nil {
+		return err
+	}
+	tmplBuf := bytes.NewBuffer(make([]byte, 0))
+	err = tmpl.Execute(tmplBuf, cfg)
+	if err != nil {
+		return err
+	}
+
+	return os.WriteFile(cfg.OpentelemetryConfig, tmplBuf.Bytes(), file.ReadWriteByUser)
+}
+
 func cleanTempNginxCfg() error {
 	var files []string
 
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index f3283a782..9dc9fb3b8 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -265,6 +265,7 @@ var (
 		"buildAuthSignURL":                   buildAuthSignURL,
 		"buildAuthSignURLLocation":           buildAuthSignURLLocation,
 		"buildOpentracing":                   buildOpentracing,
+		"buildOpentelemetry":                 buildOpentelemetry,
 		"proxySetHeader":                     proxySetHeader,
 		"buildInfluxDB":                      buildInfluxDB,
 		"enforceRegexModifier":               enforceRegexModifier,
@@ -274,7 +275,9 @@ var (
 		"buildHTTPListener":                  buildHTTPListener,
 		"buildHTTPSListener":                 buildHTTPSListener,
 		"buildOpentracingForLocation":        buildOpentracingForLocation,
+		"buildOpentelemetryForLocation":      buildOpentelemetryForLocation,
 		"shouldLoadOpentracingModule":        shouldLoadOpentracingModule,
+		"shouldLoadOpentelemetryModule":      shouldLoadOpentelemetryModule,
 		"buildModSecurityForLocation":        buildModSecurityForLocation,
 		"buildMirrorLocations":               buildMirrorLocations,
 		"shouldLoadAuthDigestModule":         shouldLoadAuthDigestModule,
@@ -1239,6 +1242,33 @@ func buildOpentracing(c interface{}, s interface{}) string {
 	return buf.String()
 }
 
+func buildOpentelemetry(c interface{}, s interface{}) string {
+	cfg, ok := c.(config.Configuration)
+	if !ok {
+		klog.Errorf("expected a 'config.Configuration' type but %T was returned", c)
+		return ""
+	}
+
+	servers, ok := s.([]*ingress.Server)
+	if !ok {
+		klog.Errorf("expected an '[]*ingress.Server' type but %T was returned", s)
+		return ""
+	}
+
+	if !shouldLoadOpentelemetryModule(cfg, servers) {
+		return ""
+	}
+
+	buf := bytes.NewBufferString("")
+
+	buf.WriteString("\r\n")
+
+	if cfg.OpentelemetryOperationName != "" {
+		buf.WriteString(fmt.Sprintf("opentelemetry_operation_name \"%s\";\n", cfg.OpentelemetryOperationName))
+	}
+	return buf.String()
+}
+
 // buildInfluxDB produces the single line configuration
 // needed by the InfluxDB module to send request's metrics
 // for the current resource
@@ -1360,6 +1390,13 @@ func opentracingPropagateContext(location *ingress.Location) string {
 	return "opentracing_propagate_context;"
 }
 
+func opentelemetryPropagateContext(location *ingress.Location) string {
+	if location == nil {
+		return ""
+	}
+	return "opentelemetry_propagate;"
+}
+
 // shouldLoadModSecurityModule determines whether or not the ModSecurity module needs to be loaded.
 // First, it checks if `enable-modsecurity` is set in the ConfigMap. If it is not, it iterates over all locations to
 // check if ModSecurity is enabled by the annotation `nginx.ingress.kubernetes.io/enable-modsecurity`.
@@ -1575,6 +1612,36 @@ func buildOpentracingForLocation(isOTEnabled bool, isOTTrustSet bool, location *
 	return opc
 }
 
+func buildOpentelemetryForLocation(isOTEnabled bool, isOTTrustSet bool, location *ingress.Location) string {
+	isOTEnabledInLoc := location.Opentelemetry.Enabled
+	isOTSetInLoc := location.Opentelemetry.Set
+
+	if isOTEnabled {
+		if isOTSetInLoc && !isOTEnabledInLoc {
+			return "opentelemetry off;"
+		}
+	} else if !isOTSetInLoc || !isOTEnabledInLoc {
+		return ""
+	}
+
+	opc := opentelemetryPropagateContext(location)
+	if opc != "" {
+		opc = fmt.Sprintf("opentelemetry on;\n%v", opc)
+	}
+
+	if location.Opentelemetry.OperationName != "" {
+		opc = opc + "\nopentelemetry_operation_name " + location.Opentelemetry.OperationName + ";"
+	}
+
+	if (!isOTTrustSet && !location.Opentelemetry.TrustSet) ||
+		(location.Opentelemetry.TrustSet && !location.Opentelemetry.TrustEnabled) {
+		opc = opc + "\nopentelemetry_trust_incoming_spans off;"
+	} else {
+		opc = opc + "\nopentelemetry_trust_incoming_spans on;"
+	}
+	return opc
+}
+
 // shouldLoadOpentracingModule determines whether or not the Opentracing module needs to be loaded.
 // First, it checks if `enable-opentracing` is set in the ConfigMap. If it is not, it iterates over all locations to
 // check if Opentracing is enabled by the annotation `nginx.ingress.kubernetes.io/enable-opentracing`.
@@ -1606,6 +1673,35 @@ func shouldLoadOpentracingModule(c interface{}, s interface{}) bool {
 	return false
 }
 
+// shouldLoadOpentelemetryModule determines whether or not the Opentelemetry module needs to be loaded.
+// It checks if `enable-opentelemetry` is set in the ConfigMap.
+func shouldLoadOpentelemetryModule(c interface{}, s interface{}) bool {
+	cfg, ok := c.(config.Configuration)
+	if !ok {
+		klog.Errorf("expected a 'config.Configuration' type but %T was returned", c)
+		return false
+	}
+
+	servers, ok := s.([]*ingress.Server)
+	if !ok {
+		klog.Errorf("expected an '[]*ingress.Server' type but %T was returned", s)
+		return false
+	}
+
+	if cfg.EnableOpentelemetry {
+		return true
+	}
+
+	for _, server := range servers {
+		for _, location := range server.Locations {
+			if location.Opentelemetry.Enabled {
+				return true
+			}
+		}
+	}
+	return false
+}
+
 func buildModSecurityForLocation(cfg config.Configuration, location *ingress.Location) string {
 	isMSEnabledInLoc := location.ModSecurity.Enable
 	isMSEnableSetInLoc := location.ModSecurity.EnableSet
diff --git a/internal/ingress/controller/template/template_test.go b/internal/ingress/controller/template/template_test.go
index cb1ebd1b7..343da506b 100644
--- a/internal/ingress/controller/template/template_test.go
+++ b/internal/ingress/controller/template/template_test.go
@@ -37,6 +37,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/authreq"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/influxdb"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/modsecurity"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/opentelemetry"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/opentracing"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/rewrite"
@@ -1150,6 +1151,26 @@ func TestOpentracingPropagateContext(t *testing.T) {
 	}
 }
 
+func TestOpentelemetryPropagateContext(t *testing.T) {
+	tests := map[*ingress.Location]string{
+		{BackendProtocol: "HTTP"}:      "opentelemetry_propagate;",
+		{BackendProtocol: "HTTPS"}:     "opentelemetry_propagate;",
+		{BackendProtocol: "AUTO_HTTP"}: "opentelemetry_propagate;",
+		{BackendProtocol: "GRPC"}:      "opentelemetry_propagate;",
+		{BackendProtocol: "GRPCS"}:     "opentelemetry_propagate;",
+		{BackendProtocol: "AJP"}:       "opentelemetry_propagate;",
+		{BackendProtocol: "FCGI"}:      "opentelemetry_propagate;",
+		nil:                            "",
+	}
+
+	for loc, expectedDirective := range tests {
+		actualDirective := opentelemetryPropagateContext(loc)
+		if actualDirective != expectedDirective {
+			t.Errorf("Expected %v but returned %v", expectedDirective, actualDirective)
+		}
+	}
+}
+
 func TestGetIngressInformation(t *testing.T) {
 
 	testcases := map[string]struct {
@@ -1723,6 +1744,37 @@ func TestBuildOpenTracing(t *testing.T) {
 
 }
 
+func TestBuildOpenTelemetry(t *testing.T) {
+	invalidType := &ingress.Ingress{}
+	expected := ""
+	actual := buildOpentelemetry(invalidType, []*ingress.Server{})
+
+	if expected != actual {
+		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
+	}
+
+	cfgNoHost := config.Configuration{
+		EnableOpentelemetry: true,
+	}
+	expected = "\r\n"
+	actual = buildOpentelemetry(cfgNoHost, []*ingress.Server{})
+
+	if expected != actual {
+		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
+	}
+
+	cfgOpenTelemetry := config.Configuration{
+		EnableOpentelemetry:        true,
+		OpentelemetryOperationName: "my-operation-name",
+	}
+	expected = "\r\n"
+	expected += "opentelemetry_operation_name \"my-operation-name\";\n"
+	actual = buildOpentelemetry(cfgOpenTelemetry, []*ingress.Server{})
+	if expected != actual {
+		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
+	}
+}
+
 func TestEnforceRegexModifier(t *testing.T) {
 	invalidType := &ingress.Ingress{}
 	expected := false
@@ -1903,6 +1955,107 @@ func TestShouldLoadOpentracingModule(t *testing.T) {
 	}
 }
 
+func TestOpentelemetryForLocation(t *testing.T) {
+	trueVal := true
+	falseVal := false
+
+	loadOT := `opentelemetry on;
+opentelemetry_propagate;
+opentelemetry_trust_incoming_spans on;`
+	loadOTUntrustedSpan := `opentelemetry on;
+opentelemetry_propagate;
+opentelemetry_trust_incoming_spans off;`
+	testCases := []struct {
+		description     string
+		globalOT        bool
+		isSetInLoc      bool
+		isOTInLoc       *bool
+		globalTrust     bool
+		isTrustSetInLoc bool
+		isTrustInLoc    *bool
+		expected        string
+	}{
+		{"globally enabled, without annotation", true, false, nil, true, false, nil, loadOT},
+		{"globally enabled and enabled in location", true, true, &trueVal, true, false, nil, loadOT},
+		{"globally disabled and not enabled in location", false, false, nil, true, false, nil, ""},
+		{"globally disabled but enabled in location", false, true, &trueVal, true, false, nil, loadOT},
+		{"globally trusted, not trusted in location", true, false, nil, true, true, &falseVal, loadOTUntrustedSpan},
+		{"not globally trusted, trust set in location", true, false, nil, false, true, &trueVal, loadOT},
+		{"not globally trusted, trust not set in location", true, false, nil, false, false, nil, loadOTUntrustedSpan},
+	}
+
+	for _, testCase := range testCases {
+		il := &ingress.Location{
+			Opentelemetry: opentelemetry.Config{Set: testCase.isSetInLoc, TrustSet: testCase.isTrustSetInLoc},
+		}
+		if il.Opentelemetry.Set {
+			il.Opentelemetry.Enabled = *testCase.isOTInLoc
+		}
+		if il.Opentelemetry.TrustSet {
+			il.Opentelemetry.TrustEnabled = *testCase.isTrustInLoc
+		}
+
+		actual := buildOpentelemetryForLocation(testCase.globalOT, testCase.globalTrust, il)
+
+		if testCase.expected != actual {
+			t.Errorf("%v: expected '%v' but returned '%v'", testCase.description, testCase.expected, actual)
+		}
+	}
+}
+
+func TestShouldLoadOpentelemetryModule(t *testing.T) {
+	// ### Invalid argument type tests ###
+	// The first tests should return false.
+	expected := false
+
+	invalidType := &ingress.Ingress{}
+	actual := shouldLoadOpentelemetryModule(config.Configuration{}, invalidType)
+	if expected != actual {
+		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
+	}
+
+	actual = shouldLoadOpentelemetryModule(invalidType, []*ingress.Server{})
+	if expected != actual {
+		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
+	}
+
+	// ### Functional tests ###
+	actual = shouldLoadOpentelemetryModule(config.Configuration{}, []*ingress.Server{})
+	if expected != actual {
+		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
+	}
+
+	// All further tests should return true.
+	expected = true
+
+	configuration := config.Configuration{EnableOpentelemetry: true}
+	actual = shouldLoadOpentelemetryModule(configuration, []*ingress.Server{})
+	if expected != actual {
+		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
+	}
+
+	servers := []*ingress.Server{
+		{
+			Locations: []*ingress.Location{
+				{
+					Opentelemetry: opentelemetry.Config{
+						Enabled: true,
+					},
+				},
+			},
+		},
+	}
+	actual = shouldLoadOpentelemetryModule(config.Configuration{}, servers)
+	if expected != actual {
+		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
+	}
+
+	actual = shouldLoadOpentelemetryModule(configuration, servers)
+	if expected != actual {
+		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
+	}
+}
+
 func TestModSecurityForLocation(t *testing.T) {
 	loadModule := `modsecurity on;
 `
diff --git a/mkdocs.yml b/mkdocs.yml
index c76a640f6..62c0ccf48 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -101,6 +101,7 @@ nav:
       - Third party addons:
           - ModSecurity Web Application Firewall: "user-guide/third-party-addons/modsecurity.md"
           - OpenTracing: "user-guide/third-party-addons/opentracing.md"
+          - OpenTelemetry: "user-guide/third-party-addons/opentelemetry.md"
   - Examples:
       - Introduction: "examples/index.md"
       - Prerequisites: "examples/PREREQUISITES.md"
diff --git a/pkg/apis/ingress/types.go b/pkg/apis/ingress/types.go
index 9395683ec..08a2f7575 100644
--- a/pkg/apis/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -35,6 +35,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/log"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/mirror"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/modsecurity"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/opentelemetry"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/opentracing"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/proxy"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/proxyssl"
@@ -360,6 +361,9 @@ type Location struct {
 	// Opentracing allows the global opentracing setting to be overridden for a location
 	// +optional
 	Opentracing opentracing.Config `json:"opentracing"`
+	// Opentelemetry allows the global opentelemetry setting to be overridden for a location
+	// +optional
+	Opentelemetry opentelemetry.Config `json:"opentelemetry"`
 }
 
 // SSLPassthroughBackend describes a SSL upstream server configured
diff --git a/pkg/apis/ingress/types_equals.go b/pkg/apis/ingress/types_equals.go
index 2485f8a7b..8a54f3758 100644
--- a/pkg/apis/ingress/types_equals.go
+++ b/pkg/apis/ingress/types_equals.go
@@ -464,6 +464,10 @@ func (l1 *Location) Equal(l2 *Location) bool {
 		return false
 	}
 
+	if !l1.Opentelemetry.Equal(&l2.Opentelemetry) {
+		return false
+	}
+
 	if !l1.Mirror.Equal(&l2.Mirror) {
 		return false
 	}
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
old mode 100755
new mode 100644
index 958397dd5..014c8cc2a
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -37,6 +37,10 @@ load_module /etc/nginx/modules/ngx_http_modsecurity_module.so;
 load_module /etc/nginx/modules/ngx_http_opentracing_module.so;
 {{ end }}
 
+{{ if (shouldLoadOpentelemetryModule $cfg $servers) }}
+load_module /modules_mount/etc/nginx/modules/otel/otel_ngx_module.so;
+{{ end }}
+
 daemon off;
 
 worker_processes {{ $cfg.WorkerProcesses }};
@@ -64,6 +68,10 @@ events {
 }
 
 http {
+    {{ if (shouldLoadOpentelemetryModule $cfg $servers) }}
+    opentelemetry_config {{ $cfg.OpentelemetryConfig }};
+    {{ end }}
+
     lua_package_path "/etc/nginx/lua/?.lua;;";
 
     {{ buildLuaSharedDictionaries $cfg $servers }}
@@ -322,6 +330,7 @@ http {
     limit_conn_status               {{ $cfg.LimitConnStatusCode }};
 
     {{ buildOpentracing $cfg $servers }}
+    {{ buildOpentelemetry $cfg $servers }}
 
     include /etc/nginx/mime.types;
     default_type {{ $cfg.DefaultType }};
@@ -695,6 +704,9 @@ http {
         opentracing off;
         {{ end }}
 
+        {{ if $cfg.EnableOpentelemetry }}
+        opentelemetry off;
+        {{ end }}
         location {{ $healthzURI }} {
             return 200;
         }
@@ -1063,6 +1075,11 @@ stream {
             opentracing_propagate_context;
             {{ end }}
 
+            {{ if (or $all.Cfg.EnableOpentelemetry $location.Opentelemetry.Enabled) }}
+            opentelemetry on;
+            opentelemetry_propagate;
+            {{ end }}
+
             access_log off;
 
             # Ensure that modsecurity will not run on an internal location as this is not accessible from outside
@@ -1204,6 +1221,7 @@ stream {
             set $global_rate_limit_exceeding n;
 
             {{ buildOpentracingForLocation $all.Cfg.EnableOpentracing $all.Cfg.OpentracingTrustIncomingSpan $location }}
+            {{ buildOpentelemetryForLocation $all.Cfg.EnableOpentelemetry $all.Cfg.OpentelemetryTrustIncomingSpan $location }}
 
             {{ if $location.Mirror.Source }}
             mirror {{ $location.Mirror.Source }};
@@ -1520,6 +1538,10 @@ stream {
             opentracing off;
             {{ end }}
 
+            {{ if $all.Cfg.EnableOpentelemetry }}
+            opentelemetry off;
+            {{ end }}
+
             access_log off;
             return 200;
         }
@@ -1531,6 +1553,10 @@ stream {
             opentracing off;
             {{ end }}
 
+            {{ if $all.Cfg.EnableOpentelemetry }}
+            opentelemetry off;
+            {{ end }}
+
             {{ range $v := $all.NginxStatusIpv4Whitelist }}
             allow {{ $v }};
             {{ end }}
diff --git a/test/e2e/framework/exec.go b/test/e2e/framework/exec.go
index 0284e768c..d91d36551 100644
--- a/test/e2e/framework/exec.go
+++ b/test/e2e/framework/exec.go
@@ -21,6 +21,7 @@ import (
 	"encoding/json"
 	"fmt"
 	"io"
+	"os"
 	"os/exec"
 	"regexp"
 	"strconv"
@@ -111,7 +112,11 @@ func (f *Framework) NamespaceContent() (string, error) {
 // newIngressController deploys a new NGINX Ingress controller in a namespace
 func (f *Framework) newIngressController(namespace string, namespaceOverlay string) error {
 	// Creates an nginx deployment
-	cmd := exec.Command("./wait-for-nginx.sh", namespace, namespaceOverlay)
+	isChroot, ok := os.LookupEnv("IS_CHROOT")
+	if !ok {
+		isChroot = "false"
+	}
+	cmd := exec.Command("./wait-for-nginx.sh", namespace, namespaceOverlay, isChroot)
 	out, err := cmd.CombinedOutput()
 	if err != nil {
 		return fmt.Errorf("unexpected error waiting for ingress controller deployment: %v.\nLogs:\n%v", err, string(out))
diff --git a/test/e2e/run-e2e-suite.sh b/test/e2e/run-e2e-suite.sh
index b1de8bf9a..a3bf589cd 100755
--- a/test/e2e/run-e2e-suite.sh
+++ b/test/e2e/run-e2e-suite.sh
@@ -76,6 +76,7 @@ kubectl run --rm \
   --restart=Never \
   --env="E2E_NODES=${E2E_NODES}" \
   --env="FOCUS=${FOCUS}" \
+  --env="IS_CHROOT=${IS_CHROOT:-false}"\
   --env="E2E_CHECK_LEAKS=${E2E_CHECK_LEAKS}" \
   --env="NGINX_BASE_IMAGE=${NGINX_BASE_IMAGE}" \
   --overrides='{ "apiVersion": "v1", "spec":{"serviceAccountName": "ingress-nginx-e2e"}}' \
diff --git a/test/e2e/settings/opentelemetry.go b/test/e2e/settings/opentelemetry.go
new file mode 100644
index 000000000..92d202cb3
--- /dev/null
+++ b/test/e2e/settings/opentelemetry.go
@@ -0,0 +1,119 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package settings
+
+import (
+	"strings"
+
+	"github.com/onsi/ginkgo/v2"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+const (
+	enableOpentelemetry            = "enable-opentelemetry"
+	opentelemetryTrustIncomingSpan = "opentelemetry-trust-incoming-span"
+
+	opentelemetryOperationName         = "opentelemetry-operation-name"
+	opentelemetryLocationOperationName = "opentelemetry-location-operation-name"
+	opentelemetryConfig                = "opentelemetry-config"
+	opentelemetryConfigPath            = "/etc/nginx/opentelemetry.toml"
+)
+
+var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
+	f := framework.NewDefaultFramework("enable-opentelemetry")
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment()
+	})
+
+	ginkgo.AfterEach(func() {
+	})
+
+	ginkgo.It("should not exists opentelemetry directive", func() {
+		config := map[string]string{}
+		config[enableOpentelemetry] = "false"
+		f.SetNginxConfigMapData(config)
+
+		f.EnsureIngress(framework.NewSingleIngress(enableOpentelemetry, "/", enableOpentelemetry, f.Namespace, "http-svc", 80, nil))
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return !strings.Contains(cfg, "opentelemetry on")
+			})
+	})
+
+	ginkgo.It("should exists opentelemetry directive when is enabled", func() {
+		config := map[string]string{}
+		config[enableOpentelemetry] = "true"
+		config[opentelemetryConfig] = opentelemetryConfigPath
+		f.SetNginxConfigMapData(config)
+
+		f.EnsureIngress(framework.NewSingleIngress(enableOpentelemetry, "/", enableOpentelemetry, f.Namespace, "http-svc", 80, nil))
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return strings.Contains(cfg, "opentelemetry on")
+			})
+	})
+
+	ginkgo.It("should include opentelemetry_trust_incoming_spans on directive when enabled", func() {
+		config := map[string]string{}
+		config[enableOpentelemetry] = "true"
+		config[opentelemetryConfig] = opentelemetryConfigPath
+		config[opentelemetryTrustIncomingSpan] = "true"
+		f.SetNginxConfigMapData(config)
+
+		f.EnsureIngress(framework.NewSingleIngress(enableOpentelemetry, "/", enableOpentelemetry, f.Namespace, "http-svc", 80, nil))
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return strings.Contains(cfg, "opentelemetry_trust_incoming_spans on")
+			})
+	})
+
+	ginkgo.It("should not exists opentelemetry_operation_name directive when is empty", func() {
+		config := map[string]string{}
+		config[enableOpentelemetry] = "true"
+		config[opentelemetryConfig] = opentelemetryConfigPath
+		config[opentelemetryOperationName] = ""
+		f.SetNginxConfigMapData(config)
+
+		f.EnsureIngress(framework.NewSingleIngress(enableOpentelemetry, "/", enableOpentelemetry, f.Namespace, "http-svc", 80, nil))
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return !strings.Contains(cfg, "opentelemetry_operation_name")
+			})
+	})
+
+	ginkgo.It("should exists opentelemetry_operation_name directive when is configured", func() {
+		config := map[string]string{}
+		config[enableOpentelemetry] = "true"
+		config[opentelemetryConfig] = opentelemetryConfigPath
+		config[opentelemetryOperationName] = "HTTP $request_method $uri"
+		f.SetNginxConfigMapData(config)
+
+		f.EnsureIngress(framework.NewSingleIngress(enableOpentelemetry, "/", enableOpentelemetry, f.Namespace, "http-svc", 80, nil))
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return strings.Contains(cfg, `opentelemetry_operation_name "HTTP $request_method $uri"`)
+			})
+	})
+
+})
diff --git a/test/e2e/wait-for-nginx.sh b/test/e2e/wait-for-nginx.sh
index 190f71e6d..153d348c2 100755
--- a/test/e2e/wait-for-nginx.sh
+++ b/test/e2e/wait-for-nginx.sh
@@ -23,6 +23,7 @@ DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
 
 export NAMESPACE=$1
 export NAMESPACE_OVERLAY=$2
+export IS_CHROOT=$3
 
 echo "deploying NGINX Ingress controller in namespace $NAMESPACE"
 
@@ -46,6 +47,16 @@ metadata:
 
 EOF
 
+OTEL_MODULE=$(cat <<EOF
+  opentelemetry:
+    enabled: true
+EOF
+)
+
+if [[ "$NAMESPACE_OVERLAY" != "enable-opentelemetry" ]]; then
+  OTEL_MODULE=""
+fi
+
 # Use the namespace overlay if it was requested
 if [[ ! -z "$NAMESPACE_OVERLAY" && -d "$DIR/namespace-overlays/$NAMESPACE_OVERLAY" ]]; then
     echo "Namespace overlay $NAMESPACE_OVERLAY is being used for namespace $NAMESPACE"
@@ -59,7 +70,7 @@ fullnameOverride: nginx-ingress
 controller:
   image:
     repository: ingress-controller/controller
-    chroot: true
+    chroot: ${IS_CHROOT}
     tag: 1.0.0-dev
     digest:
     digestChroot:
@@ -100,6 +111,8 @@ controller:
       hostPath:
         path: /tmp/coredump
 
+${OTEL_MODULE}
+
 rbac:
   create: true
   scope: true

From 5d678e054278d3822b8d1c9c4dfd6e4da8a11458 Mon Sep 17 00:00:00 2001
From: ouyang <oulinbao@163.com>
Date: Wed, 22 Mar 2023 18:50:22 -0700
Subject: [PATCH 0689/1641] Update exposing-tcp-udp-services.md (#9777)

---
 docs/user-guide/exposing-tcp-udp-services.md | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/docs/user-guide/exposing-tcp-udp-services.md b/docs/user-guide/exposing-tcp-udp-services.md
index 6b595ffae..63293f0e5 100644
--- a/docs/user-guide/exposing-tcp-udp-services.md
+++ b/docs/user-guide/exposing-tcp-udp-services.md
@@ -63,3 +63,9 @@ spec:
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
 ```
+Then, the configmap should be added into ingress controller's deployment args.
+```
+ args:
+    - /nginx-ingress-controller
+    - --tcp-services-configmap=ingress-nginx/tcp-services
+```

From 72ff21ed9e26cb969052c753633049ba8a87ecf9 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 22 Mar 2023 23:26:22 -0400
Subject: [PATCH 0690/1641] kick off 1.7.0 build (#9775)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 9dc820555..b13f0e3bc 100644
--- a/TAG
+++ b/TAG
@@ -1,2 +1,2 @@
-v1.6.4
+v1.7.0
 

From 7865825cf018624bef7a76fb8481e39dcd2032bc Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 24 Mar 2023 09:45:31 -0400
Subject: [PATCH 0691/1641] release notes v1.7.0

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 README.md                                     |    1 +
 TAG                                           |    2 +-
 changelog/Changelog-1.7.0.md                  |   78 +
 charts/ingress-nginx/Chart.yaml               |   22 +-
 charts/ingress-nginx/README.md                |    8 +-
 .../changelog/Changelog-4.6.0.md              |   24 +
 charts/ingress-nginx/values.yaml              | 1652 ++++++++---------
 deploy/static/provider/aws/deploy.yaml        |   44 +-
 .../aws/nlb-with-tls-termination/deploy.yaml  |   44 +-
 deploy/static/provider/baremetal/deploy.yaml  |   44 +-
 deploy/static/provider/cloud/deploy.yaml      |   44 +-
 deploy/static/provider/do/deploy.yaml         |   44 +-
 deploy/static/provider/exoscale/deploy.yaml   |   44 +-
 deploy/static/provider/kind/deploy.yaml       |   44 +-
 deploy/static/provider/scw/deploy.yaml        |   44 +-
 docs/e2e-tests.md                             |  277 +--
 docs/user-guide/exposing-tcp-udp-services.md  |    6 +
 magefiles/release.go                          |    2 +-
 18 files changed, 1283 insertions(+), 1141 deletions(-)
 create mode 100644 changelog/Changelog-1.7.0.md
 create mode 100644 charts/ingress-nginx/changelog/Changelog-4.6.0.md

diff --git a/README.md b/README.md
index 855c47418..f3f68366e 100644
--- a/README.md
+++ b/README.md
@@ -38,6 +38,7 @@ the versions listed. Ingress-Nginx versions may work on older versions but the p
 
 | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
 |-----------------------|------------------------------|----------------|---------------|
+| v1.7.0                | 1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        |
 | v1.6.4                | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        |
 | v1.5.1                | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        |
 | v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      |
diff --git a/TAG b/TAG
index 9dc820555..b13f0e3bc 100644
--- a/TAG
+++ b/TAG
@@ -1,2 +1,2 @@
-v1.6.4
+v1.7.0
 
diff --git a/changelog/Changelog-1.7.0.md b/changelog/Changelog-1.7.0.md
new file mode 100644
index 000000000..6a938c5f5
--- /dev/null
+++ b/changelog/Changelog-1.7.0.md
@@ -0,0 +1,78 @@
+# Changelog
+
+### 1.7.0
+Images:
+
+ * registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
+ * registry.k8s.io/ingress-nginx/controller-chroot:v1.7.0@sha256:e84ef3b44c8efeefd8b0aa08770a886bfea1f04c53b61b4ba9a7204e9f1a7edc
+ 
+### All Changes:
+
+* kick off 1.7.0 build (#9775)
+* Update exposing-tcp-udp-services.md (#9777)
+* feat: OpenTelemetry module integration (#9062)
+* drop k8s 1.23 support (#9772)
+* Fix canary-weight-total annotation ignored in rule backends (#9729)
+* fix: controller psp's volume config (#9740)
+* Fix several Helm YAML issues with extraModules and extraInitContainers (#9709)
+* docs(helm): fix value key in readme for enabling certManager (#9640)
+* updated digest and sha for e2e-test-echo (#9760)
+* updated digest and sha for e2e-test-fastcgi-helloserver (#9759)
+* updated digest and sha for opentelemetry (#9758)
+* updated digest and sha for e2e-test-cfssl (#9757)
+* updated kube-webhook-certgen digest and tags (#9756)
+* updated nginx-error digest and tags (#9755)
+* added upgrade ginkgo documentation for contributors (#9753)
+* changes Makefile of echo folder to trigger code-build (#9754)
+* Chart: Drop `controller.headers`, rework DH param secret. (#9659)
+* updated NGINX_BASE image with latest tag (#9747)
+* Deployment/DaemonSet: Label pods using `ingress-nginx.labels`. (#9732)
+* bumped ginkgo to v2.9.0 (#9722)
+* HPA: autoscaling/v2beta1 deprecated, bump apiVersion to v2 for defaultBackend (#9731)
+* update to golang 1.20 (#9690)
+* Indent values.yaml using 2 instead of 4 spaces (#9656)
+* fix some comments (#9688)
+* migrate mitchellh/hashstructure to v2 (#9651)
+* changed v1.6.3 to v1.6.4 on deploy docs (#9647)
+* controller: Don't panic when ready condition in a endpointslice is missing (#9550)
+* Rework Ginkgo usage (#9522)
+* code clean for fsnotify (#9571)
+* Optimize the document for readability (#9551)
+* sets.String is deprecated: use generic Set instead. new ways: s1 := Set[string]{} s2 := New[string]() (#9589)
+* Adjust the import package order and use http library variables (#9587)
+* Optimize the judgment mode to remove redundant transformations (#9588)
+* Fix rewrite example (#9633)
+* remove tests and regex path checks (#9626)
+* Fix incorrect annotation name in upstream hashing configuration (#9617)
+* Release docs for Controller v1.6.3 and Helm v4.5.0 (#9614)
+
+### Dependencies updates: 
+* Bump aquasecurity/trivy-action from 0.8.0 to 0.9.2 (#9767)
+* Bump k8s.io/component-base from 0.26.2 to 0.26.3 (#9764)
+* Bump actions/dependency-review-action from 3.0.3 to 3.0.4 (#9766)
+* Bump actions/add-to-project from 0.4.0 to 0.4.1 (#9765)
+* Bump actions/dependency-review-action from 3.0.2 to 3.0.3 (#9727)
+* Bump github.com/prometheus/common from 0.41.0 to 0.42.0 (#9724)
+* Bump golang.org/x/crypto from 0.6.0 to 0.7.0 (#9723)
+* Bump actions/download-artifact from 3.0.1 to 3.0.2 (#9721)
+* Bump goreleaser/goreleaser-action from 4.1.0 to 4.2.0 (#9718)
+* Bump actions/upload-artifact from 3.1.1 to 3.1.2 (#9717)
+* Bump docker/setup-buildx-action from 2.2.1 to 2.5.0 (#9719)
+* Bump helm/chart-releaser-action from 1.4.1 to 1.5.0 (#9720)
+* Bump github.com/onsi/ginkgo/v2 from 2.6.1 to 2.9.0 (#9695)
+* Bump k8s.io/klog/v2 from 2.90.0 to 2.90.1 (#9694)
+* Bump golang.org/x/crypto in /magefiles (#9691)
+* Bump k8s.io/component-base from 0.26.1 to 0.26.2 (#9696)
+* Bump github.com/prometheus/common from 0.40.0 to 0.41.0 (#9698)
+* Bump sigs.k8s.io/controller-runtime from 0.14.2 to 0.14.5 (#9697)
+* Bump golang.org/x/net in /magefiles (#9692)
+* Bump golang.org/x/sys in /images/custom-error-pages/rootfs (#9671)
+* Bump github.com/stretchr/testify from 1.8.1 to 1.8.2 (#9675)
+* Bump github.com/prometheus/common from 0.39.0 to 0.40.0 (#9653)
+* Bump golang.org/x/net from 0.6.0 to 0.7.0 (#9646)
+* Bump golang.org/x/net in /images/kube-webhook-certgen/rootfs (#9645)
+* Bump google.golang.org/grpc from 1.52.3 to 1.53.0 (#9610)
+* Bump github.com/prometheus/client_golang (#9630)
+* Bump golang.org/x/crypto from 0.5.0 to 0.6.0 (#9609)
+ 
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.6.3...controller-controller-v1.7.0
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 21779e195..130fe06fd 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,13 +1,21 @@
 annotations:
   artifacthub.io/changes: |
-     - "add lint on chart before release (#9570)"
-     - "ci: remove setup-helm step (#9404)"
-     - "feat(helm): Optionally use cert-manager instead admission patch (#9279)"
-     - "run helm release on main only and when the chart/value changes only (#9290)"
-     - "Update Ingress-Nginx version controller-v1.6.4"
+    - "Upgrade alpine 3.17.2"
+    - "Upgrade golang 1.20"
+    - "Drop testing/support for Kubernetes 1.23"
+    - "docs(helm): fix value key in readme for enabling certManager (#9640)"
+    - "Update Ingress-Nginx version controller-v1.7.0"
+    - "feat: OpenTelemetry module integration (#9062)"
+    - "canary-weight-total annotation ignored in rule backends (#9729)"
+    - "fix controller psp's volume config (#9740)"
+    - "Fix several Helm YAML issues with extraModules and extraInitContainers (#9709)"
+    - "Chart: Drop `controller.headers`, rework DH param secret. (#9659)"
+    - "Deployment/DaemonSet: Label pods using `ingress-nginx.labels`. (#9732)"
+    - "HPA: autoscaling/v2beta1 deprecated, bump apiVersion to v2 for defaultBackend (#9731)"
+    - "Fix incorrect annotation name in upstream hashing configuration (#9617)"
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.6.4
+appVersion: 4.6.0
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 engine: gotpl
@@ -24,4 +32,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.5.2
+version: 4.5.4
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 9659df139..dcd5af57e 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.5.2](https://img.shields.io/badge/Version-4.5.2-informational?style=flat-square) ![AppVersion: 1.6.4](https://img.shields.io/badge/AppVersion-1.6.4-informational?style=flat-square)
+![Version: 4.5.4](https://img.shields.io/badge/Version-4.5.4-informational?style=flat-square) ![AppVersion: 4.6.0](https://img.shields.io/badge/AppVersion-4.6.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -333,13 +333,13 @@ Kubernetes: `>=1.20.0-0`
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f"` |  |
-| controller.image.digestChroot | string | `"sha256:0de01e2c316c3ca7847ca13b32d077af7910d07f21a4a82f81061839764f8f81"` |  |
+| controller.image.digest | string | `"sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7"` |  |
+| controller.image.digestChroot | string | `"sha256:e84ef3b44c8efeefd8b0aa08770a886bfea1f04c53b61b4ba9a7204e9f1a7edc"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.6.4"` |  |
+| controller.image.tag | string | `"v1.7.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/Changelog-4.6.0.md b/charts/ingress-nginx/changelog/Changelog-4.6.0.md
new file mode 100644
index 000000000..469aaba8c
--- /dev/null
+++ b/charts/ingress-nginx/changelog/Changelog-4.6.0.md
@@ -0,0 +1,24 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.5.3
+
+* docs(helm): fix value key in readme for enabling certManager (#9640)
+* Upgrade alpine 3.17.2
+* Upgrade golang 1.20
+* Drop testing/support for Kubernetes 1.23
+* docs(helm): fix value key in readme for enabling certManager (#9640)
+* Update Ingress-Nginx version controller-v1.7.0
+* feat: OpenTelemetry module integration (#9062)
+* canary-weight-total annotation ignored in rule backends (#9729)
+* fix controller psp's volume config (#9740)
+* Fix several Helm YAML issues with extraModules and extraInitContainers (#9709)
+* Chart: Drop `controller.headers`, rework DH param secret. (#9659)
+* Deployment/DaemonSet: Label pods using `ingress-nginx.labels`. (#9732)
+* HPA: autoscaling/v2beta1 deprecated, bump apiVersion to v2 for defaultBackend (#9731)
+* Fix incorrect annotation name in upstream hashing configuration (#9617)
+
+* Update Ingress-Nginx version controller-v1.7.0
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.5.2...helm-chart-4.6.0
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 1a538f810..6627bf220 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -14,148 +14,541 @@ commonLabels: {}
 # myLabel: aakkmd
 
 controller:
-    name: controller
-    image:
-        ## Keep false as default for now!
-        chroot: false
-        registry: registry.k8s.io
-        image: ingress-nginx/controller
-        ## for backwards compatibility consider setting the full image url via the repository value below
-        ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-        ## repository:
-        tag: "v1.6.4"
-        digest: sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
-        digestChroot: sha256:0de01e2c316c3ca7847ca13b32d077af7910d07f21a4a82f81061839764f8f81
-        pullPolicy: IfNotPresent
-        # www-data -> uid 101
-        runAsUser: 101
-        allowPrivilegeEscalation: true
-    # -- Use an existing PSP instead of creating one
-    existingPsp: ""
-    # -- Configures the controller container name
-    containerName: controller
-    # -- Configures the ports that the nginx-controller listens on
-    containerPort:
-        http: 80
-        https: 443
-    # -- Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/
-    config: {}
-    # -- Annotations to be added to the controller config configuration configmap.
-    configAnnotations: {}
-    # -- Will add custom headers before sending traffic to backends according to https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/custom-headers
-    proxySetHeaders: {}
-    # -- Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers
-    addHeaders: {}
-    # -- Optionally customize the pod dnsConfig.
-    dnsConfig: {}
-    # -- Optionally customize the pod hostname.
-    hostname: {}
-    # -- Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'.
-    # By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller
-    # to keep resolving names inside the k8s network, use ClusterFirstWithHostNet.
-    dnsPolicy: ClusterFirst
-    # -- Bare-metal considerations via the host network https://kubernetes.github.io/ingress-nginx/deploy/baremetal/#via-the-host-network
-    # Ingress status was blank because there is no Service exposing the NGINX Ingress controller in a configuration using the host network, the default --publish-service flag used in standard cloud setups does not apply
-    reportNodeInternalIp: false
-    # -- Process Ingress objects without ingressClass annotation/ingressClassName field
-    # Overrides value for --watch-ingress-without-class flag of the controller binary
-    # Defaults to false
-    watchIngressWithoutClass: false
-    # -- Process IngressClass per name (additionally as per spec.controller).
-    ingressClassByName: false
-    # -- This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-aware-hints="auto"
-    # Defaults to false
-    enableTopologyAwareRouting: false
-    # -- This configuration defines if Ingress Controller should allow users to set
-    # their own *-snippet annotations, otherwise this is forbidden / dropped
-    # when users add those annotations.
-    # Global snippets in ConfigMap are still respected
-    allowSnippetAnnotations: true
-    # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
-    # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
-    # is merged
-    hostNetwork: false
-    ## Use host ports 80 and 443
-    ## Disabled by default
-    hostPort:
-        # -- Enable 'hostPort' or not
-        enabled: false
-        ports:
-            # -- 'hostPort' http port
-            http: 80
-            # -- 'hostPort' https port
-            https: 443
-    # -- Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader'
-    electionID: ""
-    ## This section refers to the creation of the IngressClass resource
-    ## IngressClass resources are supported since k8s >= 1.18 and required since k8s >= 1.19
-    ingressClassResource:
-        # -- Name of the ingressClass
-        name: nginx
-        # -- Is this ingressClass enabled or not
-        enabled: true
-        # -- Is this the default ingressClass for the cluster
-        default: false
-        # -- Controller-value of the controller that is processing this ingressClass
-        controllerValue: "k8s.io/ingress-nginx"
-        # -- Parameters is a link to a custom resource containing additional
-        # configuration for the controller. This is optional if the controller
-        # does not require extra parameters.
-        parameters: {}
-    # -- For backwards compatibility with ingress.class annotation, use ingressClass.
-    # Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation
-    ingressClass: nginx
-    # -- Labels to add to the pod container metadata
-    podLabels: {}
-    #  key: value
+  name: controller
+  image:
+    ## Keep false as default for now!
+    chroot: false
+    registry: registry.k8s.io
+    image: ingress-nginx/controller
+    ## for backwards compatibility consider setting the full image url via the repository value below
+    ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+    ## repository:
+    tag: "v1.7.0"
+    digest: sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
+    digestChroot: sha256:e84ef3b44c8efeefd8b0aa08770a886bfea1f04c53b61b4ba9a7204e9f1a7edc
+    pullPolicy: IfNotPresent
+    # www-data -> uid 101
+    runAsUser: 101
+    allowPrivilegeEscalation: true
+  # -- Use an existing PSP instead of creating one
+  existingPsp: ""
+  # -- Configures the controller container name
+  containerName: controller
+  # -- Configures the ports that the nginx-controller listens on
+  containerPort:
+    http: 80
+    https: 443
+  # -- Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/
+  config: {}
+  # -- Annotations to be added to the controller config configuration configmap.
+  configAnnotations: {}
+  # -- Will add custom headers before sending traffic to backends according to https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/custom-headers
+  proxySetHeaders: {}
+  # -- Will add custom headers before sending response traffic to the client according to: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#add-headers
+  addHeaders: {}
+  # -- Optionally customize the pod dnsConfig.
+  dnsConfig: {}
+  # -- Optionally customize the pod hostname.
+  hostname: {}
+  # -- Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'.
+  # By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller
+  # to keep resolving names inside the k8s network, use ClusterFirstWithHostNet.
+  dnsPolicy: ClusterFirst
+  # -- Bare-metal considerations via the host network https://kubernetes.github.io/ingress-nginx/deploy/baremetal/#via-the-host-network
+  # Ingress status was blank because there is no Service exposing the NGINX Ingress controller in a configuration using the host network, the default --publish-service flag used in standard cloud setups does not apply
+  reportNodeInternalIp: false
+  # -- Process Ingress objects without ingressClass annotation/ingressClassName field
+  # Overrides value for --watch-ingress-without-class flag of the controller binary
+  # Defaults to false
+  watchIngressWithoutClass: false
+  # -- Process IngressClass per name (additionally as per spec.controller).
+  ingressClassByName: false
+  # -- This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-aware-hints="auto"
+  # Defaults to false
+  enableTopologyAwareRouting: false
+  # -- This configuration defines if Ingress Controller should allow users to set
+  # their own *-snippet annotations, otherwise this is forbidden / dropped
+  # when users add those annotations.
+  # Global snippets in ConfigMap are still respected
+  allowSnippetAnnotations: true
+  # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
+  # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
+  # is merged
+  hostNetwork: false
+  ## Use host ports 80 and 443
+  ## Disabled by default
+  hostPort:
+    # -- Enable 'hostPort' or not
+    enabled: false
+    ports:
+      # -- 'hostPort' http port
+      http: 80
+      # -- 'hostPort' https port
+      https: 443
+  # -- Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader'
+  electionID: ""
+  ## This section refers to the creation of the IngressClass resource
+  ## IngressClass resources are supported since k8s >= 1.18 and required since k8s >= 1.19
+  ingressClassResource:
+    # -- Name of the ingressClass
+    name: nginx
+    # -- Is this ingressClass enabled or not
+    enabled: true
+    # -- Is this the default ingressClass for the cluster
+    default: false
+    # -- Controller-value of the controller that is processing this ingressClass
+    controllerValue: "k8s.io/ingress-nginx"
+    # -- Parameters is a link to a custom resource containing additional
+    # configuration for the controller. This is optional if the controller
+    # does not require extra parameters.
+    parameters: {}
+  # -- For backwards compatibility with ingress.class annotation, use ingressClass.
+  # Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation
+  ingressClass: nginx
+  # -- Labels to add to the pod container metadata
+  podLabels: {}
+  #  key: value
 
-    # -- Security Context policies for controller pods
-    podSecurityContext: {}
-    # -- See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls
-    sysctls: {}
-    # sysctls:
-    #   "net.core.somaxconn": "8192"
+  # -- Security Context policies for controller pods
+  podSecurityContext: {}
+  # -- See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls
+  sysctls: {}
+  # sysctls:
+  #   "net.core.somaxconn": "8192"
 
-    # -- Allows customization of the source of the IP address or FQDN to report
-    # in the ingress status field. By default, it reads the information provided
-    # by the service. If disable, the status field reports the IP address of the
-    # node or nodes where an ingress controller pod is running.
-    publishService:
-        # -- Enable 'publishService' or not
-        enabled: true
-        # -- Allows overriding of the publish service to bind to
-        # Must be <namespace>/<service_name>
-        pathOverride: ""
-    # Limit the scope of the controller to a specific namespace
-    scope:
-        # -- Enable 'scope' or not
-        enabled: false
-        # -- Namespace to limit the controller to; defaults to $(POD_NAMESPACE)
-        namespace: ""
-        # -- When scope.enabled == false, instead of watching all namespaces, we watching namespaces whose labels
-        # only match with namespaceSelector. Format like foo=bar. Defaults to empty, means watching all namespaces.
-        namespaceSelector: ""
-    # -- Allows customization of the configmap / nginx-configmap namespace; defaults to $(POD_NAMESPACE)
+  # -- Allows customization of the source of the IP address or FQDN to report
+  # in the ingress status field. By default, it reads the information provided
+  # by the service. If disable, the status field reports the IP address of the
+  # node or nodes where an ingress controller pod is running.
+  publishService:
+    # -- Enable 'publishService' or not
+    enabled: true
+    # -- Allows overriding of the publish service to bind to
+    # Must be <namespace>/<service_name>
+    pathOverride: ""
+  # Limit the scope of the controller to a specific namespace
+  scope:
+    # -- Enable 'scope' or not
+    enabled: false
+    # -- Namespace to limit the controller to; defaults to $(POD_NAMESPACE)
+    namespace: ""
+    # -- When scope.enabled == false, instead of watching all namespaces, we watching namespaces whose labels
+    # only match with namespaceSelector. Format like foo=bar. Defaults to empty, means watching all namespaces.
+    namespaceSelector: ""
+  # -- Allows customization of the configmap / nginx-configmap namespace; defaults to $(POD_NAMESPACE)
+  configMapNamespace: ""
+  tcp:
+    # -- Allows customization of the tcp-services-configmap; defaults to $(POD_NAMESPACE)
     configMapNamespace: ""
-    tcp:
-        # -- Allows customization of the tcp-services-configmap; defaults to $(POD_NAMESPACE)
-        configMapNamespace: ""
-        # -- Annotations to be added to the tcp config configmap
-        annotations: {}
-    udp:
-        # -- Allows customization of the udp-services-configmap; defaults to $(POD_NAMESPACE)
-        configMapNamespace: ""
-        # -- Annotations to be added to the udp config configmap
-        annotations: {}
-    # -- Maxmind license key to download GeoLite2 Databases.
-    ## https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases
-    maxmindLicenseKey: ""
-    # -- Additional command line arguments to pass to nginx-ingress-controller
-    # E.g. to specify the default SSL certificate you can use
-    extraArgs: {}
-    ## extraArgs:
-    ##   default-ssl-certificate: "<namespace>/<secret_name>"
+    # -- Annotations to be added to the tcp config configmap
+    annotations: {}
+  udp:
+    # -- Allows customization of the udp-services-configmap; defaults to $(POD_NAMESPACE)
+    configMapNamespace: ""
+    # -- Annotations to be added to the udp config configmap
+    annotations: {}
+  # -- Maxmind license key to download GeoLite2 Databases.
+  ## https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases
+  maxmindLicenseKey: ""
+  # -- Additional command line arguments to pass to nginx-ingress-controller
+  # E.g. to specify the default SSL certificate you can use
+  extraArgs: {}
+  ## extraArgs:
+  ##   default-ssl-certificate: "<namespace>/<secret_name>"
 
+  # -- Additional environment variables to set
+  extraEnvs: []
+  # extraEnvs:
+  #   - name: FOO
+  #     valueFrom:
+  #       secretKeyRef:
+  #         key: FOO
+  #         name: secret-resource
+
+  # -- Use a `DaemonSet` or `Deployment`
+  kind: Deployment
+  # -- Annotations to be added to the controller Deployment or DaemonSet
+  ##
+  annotations: {}
+  #  keel.sh/pollSchedule: "@every 60m"
+
+  # -- Labels to be added to the controller Deployment or DaemonSet and other resources that do not have option to specify labels
+  ##
+  labels: {}
+  #  keel.sh/policy: patch
+  #  keel.sh/trigger: poll
+
+  # -- The update strategy to apply to the Deployment or DaemonSet
+  ##
+  updateStrategy: {}
+  #  rollingUpdate:
+  #    maxUnavailable: 1
+  #  type: RollingUpdate
+
+  # -- `minReadySeconds` to avoid killing pods before we are ready
+  ##
+  minReadySeconds: 0
+  # -- Node tolerations for server scheduling to nodes with taints
+  ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
+  ##
+  tolerations: []
+  #  - key: "key"
+  #    operator: "Equal|Exists"
+  #    value: "value"
+  #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
+
+  # -- Affinity and anti-affinity rules for server scheduling to nodes
+  ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
+  ##
+  affinity: {}
+  # # An example of preferred pod anti-affinity, weight is in the range 1-100
+  # podAntiAffinity:
+  #   preferredDuringSchedulingIgnoredDuringExecution:
+  #   - weight: 100
+  #     podAffinityTerm:
+  #       labelSelector:
+  #         matchExpressions:
+  #         - key: app.kubernetes.io/name
+  #           operator: In
+  #           values:
+  #           - ingress-nginx
+  #         - key: app.kubernetes.io/instance
+  #           operator: In
+  #           values:
+  #           - ingress-nginx
+  #         - key: app.kubernetes.io/component
+  #           operator: In
+  #           values:
+  #           - controller
+  #       topologyKey: kubernetes.io/hostname
+
+  # # An example of required pod anti-affinity
+  # podAntiAffinity:
+  #   requiredDuringSchedulingIgnoredDuringExecution:
+  #   - labelSelector:
+  #       matchExpressions:
+  #       - key: app.kubernetes.io/name
+  #         operator: In
+  #         values:
+  #         - ingress-nginx
+  #       - key: app.kubernetes.io/instance
+  #         operator: In
+  #         values:
+  #         - ingress-nginx
+  #       - key: app.kubernetes.io/component
+  #         operator: In
+  #         values:
+  #         - controller
+  #     topologyKey: "kubernetes.io/hostname"
+
+  # -- Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
+  ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
+  ##
+  topologySpreadConstraints: []
+  # - maxSkew: 1
+  #   topologyKey: topology.kubernetes.io/zone
+  #   whenUnsatisfiable: DoNotSchedule
+  #   labelSelector:
+  #     matchLabels:
+  #       app.kubernetes.io/instance: ingress-nginx-internal
+
+  # -- `terminationGracePeriodSeconds` to avoid killing pods before we are ready
+  ## wait up to five minutes for the drain of connections
+  ##
+  terminationGracePeriodSeconds: 300
+  # -- Node labels for controller pod assignment
+  ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
+  ##
+  nodeSelector:
+    kubernetes.io/os: linux
+  ## Liveness and readiness probe values
+  ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#container-probes
+  ##
+  ## startupProbe:
+  ##   httpGet:
+  ##     # should match container.healthCheckPath
+  ##     path: "/healthz"
+  ##     port: 10254
+  ##     scheme: HTTP
+  ##   initialDelaySeconds: 5
+  ##   periodSeconds: 5
+  ##   timeoutSeconds: 2
+  ##   successThreshold: 1
+  ##   failureThreshold: 5
+  livenessProbe:
+    httpGet:
+      # should match container.healthCheckPath
+      path: "/healthz"
+      port: 10254
+      scheme: HTTP
+    initialDelaySeconds: 10
+    periodSeconds: 10
+    timeoutSeconds: 1
+    successThreshold: 1
+    failureThreshold: 5
+  readinessProbe:
+    httpGet:
+      # should match container.healthCheckPath
+      path: "/healthz"
+      port: 10254
+      scheme: HTTP
+    initialDelaySeconds: 10
+    periodSeconds: 10
+    timeoutSeconds: 1
+    successThreshold: 1
+    failureThreshold: 3
+  # -- Path of the health check endpoint. All requests received on the port defined by
+  # the healthz-port parameter are forwarded internally to this path.
+  healthCheckPath: "/healthz"
+  # -- Address to bind the health check endpoint.
+  # It is better to set this option to the internal node address
+  # if the ingress nginx controller is running in the `hostNetwork: true` mode.
+  healthCheckHost: ""
+  # -- Annotations to be added to controller pods
+  ##
+  podAnnotations: {}
+  replicaCount: 1
+  # -- Define either 'minAvailable' or 'maxUnavailable', never both.
+  minAvailable: 1
+  # -- Define either 'minAvailable' or 'maxUnavailable', never both.
+  # maxUnavailable: 1
+
+  ## Define requests resources to avoid probe issues due to CPU utilization in busy nodes
+  ## ref: https://github.com/kubernetes/ingress-nginx/issues/4735#issuecomment-551204903
+  ## Ideally, there should be no limits.
+  ## https://engineering.indeedblog.com/blog/2019/12/cpu-throttling-regression-fix/
+  resources:
+    ##  limits:
+    ##    cpu: 100m
+    ##    memory: 90Mi
+    requests:
+      cpu: 100m
+      memory: 90Mi
+  # Mutually exclusive with keda autoscaling
+  autoscaling:
+    apiVersion: autoscaling/v2
+    enabled: false
+    annotations: {}
+    minReplicas: 1
+    maxReplicas: 11
+    targetCPUUtilizationPercentage: 50
+    targetMemoryUtilizationPercentage: 50
+    behavior: {}
+    # scaleDown:
+    #   stabilizationWindowSeconds: 300
+    #   policies:
+    #   - type: Pods
+    #     value: 1
+    #     periodSeconds: 180
+    # scaleUp:
+    #   stabilizationWindowSeconds: 300
+    #   policies:
+    #   - type: Pods
+    #     value: 2
+    #     periodSeconds: 60
+  autoscalingTemplate: []
+  # Custom or additional autoscaling metrics
+  # ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/#support-for-custom-metrics
+  # - type: Pods
+  #   pods:
+  #     metric:
+  #       name: nginx_ingress_controller_nginx_process_requests_total
+  #     target:
+  #       type: AverageValue
+  #       averageValue: 10000m
+
+  # Mutually exclusive with hpa autoscaling
+  keda:
+    apiVersion: "keda.sh/v1alpha1"
+    ## apiVersion changes with keda 1.x vs 2.x
+    ## 2.x = keda.sh/v1alpha1
+    ## 1.x = keda.k8s.io/v1alpha1
+    enabled: false
+    minReplicas: 1
+    maxReplicas: 11
+    pollingInterval: 30
+    cooldownPeriod: 300
+    restoreToOriginalReplicaCount: false
+    scaledObject:
+      annotations: {}
+      # Custom annotations for ScaledObject resource
+      #  annotations:
+      # key: value
+    triggers: []
+    #     - type: prometheus
+    #       metadata:
+    #         serverAddress: http://<prometheus-host>:9090
+    #         metricName: http_requests_total
+    #         threshold: '100'
+    #         query: sum(rate(http_requests_total{deployment="my-deployment"}[2m]))
+
+    behavior: {}
+  #     scaleDown:
+  #       stabilizationWindowSeconds: 300
+  #       policies:
+  #       - type: Pods
+  #         value: 1
+  #         periodSeconds: 180
+  #     scaleUp:
+  #       stabilizationWindowSeconds: 300
+  #       policies:
+  #       - type: Pods
+  #         value: 2
+  #         periodSeconds: 60
+
+  # -- Enable mimalloc as a drop-in replacement for malloc.
+  ## ref: https://github.com/microsoft/mimalloc
+  ##
+  enableMimalloc: true
+  ## Override NGINX template
+  customTemplate:
+    configMapName: ""
+    configMapKey: ""
+  service:
+    enabled: true
+    # -- If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were
+    # using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http
+    # It allows choosing the protocol for each backend specified in the Kubernetes service.
+    # See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244
+    # Will be ignored for Kubernetes versions older than 1.20
+    ##
+    appProtocol: true
+    annotations: {}
+    labels: {}
+    # clusterIP: ""
+
+    # -- List of IP addresses at which the controller services are available
+    ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+    ##
+    externalIPs: []
+    # -- Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
+    loadBalancerIP: ""
+    loadBalancerSourceRanges: []
+    enableHttp: true
+    enableHttps: true
+    ## Set external traffic policy to: "Local" to preserve source IP on providers supporting it.
+    ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
+    # externalTrafficPolicy: ""
+
+    ## Must be either "None" or "ClientIP" if set. Kubernetes will default to "None".
+    ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
+    # sessionAffinity: ""
+
+    ## Specifies the health check node port (numeric port number) for the service. If healthCheckNodePort isn’t specified,
+    ## the service controller allocates a port from your cluster’s NodePort range.
+    ## Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
+    # healthCheckNodePort: 0
+
+    # -- Represents the dual-stack-ness requested or required by this Service. Possible values are
+    # SingleStack, PreferDualStack or RequireDualStack.
+    # The ipFamilies and clusterIPs fields depend on the value of this field.
+    ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
+    ipFamilyPolicy: "SingleStack"
+    # -- List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically
+    # based on cluster configuration and the ipFamilyPolicy field.
+    ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
+    ipFamilies:
+      - IPv4
+    ports:
+      http: 80
+      https: 443
+    targetPorts:
+      http: http
+      https: https
+    type: LoadBalancer
+    ## type: NodePort
+    ## nodePorts:
+    ##   http: 32080
+    ##   https: 32443
+    ##   tcp:
+    ##     8080: 32808
+    nodePorts:
+      http: ""
+      https: ""
+      tcp: {}
+      udp: {}
+    external:
+      enabled: true
+    internal:
+      # -- Enables an additional internal load balancer (besides the external one).
+      enabled: false
+      # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service.
+      annotations: {}
+      # loadBalancerIP: ""
+
+      # -- Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.
+      loadBalancerSourceRanges: []
+      ## Set external traffic policy to: "Local" to preserve source IP on
+      ## providers supporting it
+      ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
+      # externalTrafficPolicy: ""
+  # shareProcessNamespace enables process namespace sharing within the pod.
+  # This can be used for example to signal log rotation using `kill -USR1` from a sidecar.
+  shareProcessNamespace: false
+  # -- Additional containers to be added to the controller pod.
+  # See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example.
+  extraContainers: []
+  #  - name: my-sidecar
+  #    image: nginx:latest
+  #  - name: lemonldap-ng-controller
+  #    image: lemonldapng/lemonldap-ng-controller:0.2.0
+  #    args:
+  #      - /lemonldap-ng-controller
+  #      - --alsologtostderr
+  #      - --configmap=$(POD_NAMESPACE)/lemonldap-ng-configuration
+  #    env:
+  #      - name: POD_NAME
+  #        valueFrom:
+  #          fieldRef:
+  #            fieldPath: metadata.name
+  #      - name: POD_NAMESPACE
+  #        valueFrom:
+  #          fieldRef:
+  #            fieldPath: metadata.namespace
+  #    volumeMounts:
+  #    - name: copy-portal-skins
+  #      mountPath: /srv/var/lib/lemonldap-ng/portal/skins
+
+  # -- Additional volumeMounts to the controller main container.
+  extraVolumeMounts: []
+  #  - name: copy-portal-skins
+  #   mountPath: /var/lib/lemonldap-ng/portal/skins
+
+  # -- Additional volumes to the controller pod.
+  extraVolumes: []
+  #  - name: copy-portal-skins
+  #    emptyDir: {}
+
+  # -- Containers, which are run before the app containers are started.
+  extraInitContainers: []
+  # - name: init-myservice
+  #   image: busybox
+  #   command: ['sh', '-c', 'until nslookup myservice; do echo waiting for myservice; sleep 2; done;']
+
+  # -- Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module
+  extraModules: []
+  # - name: mytestmodule
+  #   image: registry.k8s.io/ingress-nginx/mytestmodule
+  #   containerSecurityContext:
+  #     allowPrivilegeEscalation: false
+  #
+  # The image must contain a `/usr/local/bin/init_module.sh` executable, which
+  # will be executed as initContainers, to move its config files within the
+  # mounted volume.
+
+  opentelemetry:
+    enabled: false
+    image: registry.k8s.io/ingress-nginx/opentelemetry:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:40f766ac4a9832f36f217bb0e98d44c8d38faeccbfe861fbc1a76af7e9ab257f
+    containerSecurityContext:
+      allowPrivilegeEscalation: false
+  admissionWebhooks:
+    annotations: {}
+    # ignore-check.kube-linter.io/no-read-only-rootfs: "This deployment needs write access to root filesystem".
+
+    ## Additional annotations to the admission webhooks.
+    ## These annotations will be added to the ValidatingWebhookConfiguration and
+    ## the Jobs Spec of the admission webhooks.
+    enabled: true
     # -- Additional environment variables to set
     extraEnvs: []
     # extraEnvs:
@@ -164,707 +557,314 @@ controller:
     #       secretKeyRef:
     #         key: FOO
     #         name: secret-resource
-
-    # -- Use a `DaemonSet` or `Deployment`
-    kind: Deployment
-    # -- Annotations to be added to the controller Deployment or DaemonSet
-    ##
-    annotations: {}
-    #  keel.sh/pollSchedule: "@every 60m"
-
-    # -- Labels to be added to the controller Deployment or DaemonSet and other resources that do not have option to specify labels
-    ##
+    # -- Admission Webhook failure policy to use
+    failurePolicy: Fail
+    # timeoutSeconds: 10
+    port: 8443
+    certificate: "/usr/local/certificates/cert"
+    key: "/usr/local/certificates/key"
+    namespaceSelector: {}
+    objectSelector: {}
+    # -- Labels to be added to admission webhooks
     labels: {}
-    #  keel.sh/policy: patch
-    #  keel.sh/trigger: poll
-
-    # -- The update strategy to apply to the Deployment or DaemonSet
-    ##
-    updateStrategy: {}
-    #  rollingUpdate:
-    #    maxUnavailable: 1
-    #  type: RollingUpdate
-
-    # -- `minReadySeconds` to avoid killing pods before we are ready
-    ##
-    minReadySeconds: 0
-    # -- Node tolerations for server scheduling to nodes with taints
-    ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
-    ##
-    tolerations: []
-    #  - key: "key"
-    #    operator: "Equal|Exists"
-    #    value: "value"
-    #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
-
-    # -- Affinity and anti-affinity rules for server scheduling to nodes
-    ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
-    ##
-    affinity: {}
-    # # An example of preferred pod anti-affinity, weight is in the range 1-100
-    # podAntiAffinity:
-    #   preferredDuringSchedulingIgnoredDuringExecution:
-    #   - weight: 100
-    #     podAffinityTerm:
-    #       labelSelector:
-    #         matchExpressions:
-    #         - key: app.kubernetes.io/name
-    #           operator: In
-    #           values:
-    #           - ingress-nginx
-    #         - key: app.kubernetes.io/instance
-    #           operator: In
-    #           values:
-    #           - ingress-nginx
-    #         - key: app.kubernetes.io/component
-    #           operator: In
-    #           values:
-    #           - controller
-    #       topologyKey: kubernetes.io/hostname
-
-    # # An example of required pod anti-affinity
-    # podAntiAffinity:
-    #   requiredDuringSchedulingIgnoredDuringExecution:
-    #   - labelSelector:
-    #       matchExpressions:
-    #       - key: app.kubernetes.io/name
-    #         operator: In
-    #         values:
-    #         - ingress-nginx
-    #       - key: app.kubernetes.io/instance
-    #         operator: In
-    #         values:
-    #         - ingress-nginx
-    #       - key: app.kubernetes.io/component
-    #         operator: In
-    #         values:
-    #         - controller
-    #     topologyKey: "kubernetes.io/hostname"
-
-    # -- Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
-    ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
-    ##
-    topologySpreadConstraints: []
-    # - maxSkew: 1
-    #   topologyKey: topology.kubernetes.io/zone
-    #   whenUnsatisfiable: DoNotSchedule
-    #   labelSelector:
-    #     matchLabels:
-    #       app.kubernetes.io/instance: ingress-nginx-internal
-
-    # -- `terminationGracePeriodSeconds` to avoid killing pods before we are ready
-    ## wait up to five minutes for the drain of connections
-    ##
-    terminationGracePeriodSeconds: 300
-    # -- Node labels for controller pod assignment
-    ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
-    ##
-    nodeSelector:
-        kubernetes.io/os: linux
-    ## Liveness and readiness probe values
-    ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#container-probes
-    ##
-    ## startupProbe:
-    ##   httpGet:
-    ##     # should match container.healthCheckPath
-    ##     path: "/healthz"
-    ##     port: 10254
-    ##     scheme: HTTP
-    ##   initialDelaySeconds: 5
-    ##   periodSeconds: 5
-    ##   timeoutSeconds: 2
-    ##   successThreshold: 1
-    ##   failureThreshold: 5
-    livenessProbe:
-        httpGet:
-            # should match container.healthCheckPath
-            path: "/healthz"
-            port: 10254
-            scheme: HTTP
-        initialDelaySeconds: 10
-        periodSeconds: 10
-        timeoutSeconds: 1
-        successThreshold: 1
-        failureThreshold: 5
-    readinessProbe:
-        httpGet:
-            # should match container.healthCheckPath
-            path: "/healthz"
-            port: 10254
-            scheme: HTTP
-        initialDelaySeconds: 10
-        periodSeconds: 10
-        timeoutSeconds: 1
-        successThreshold: 1
-        failureThreshold: 3
-    # -- Path of the health check endpoint. All requests received on the port defined by
-    # the healthz-port parameter are forwarded internally to this path.
-    healthCheckPath: "/healthz"
-    # -- Address to bind the health check endpoint.
-    # It is better to set this option to the internal node address
-    # if the ingress nginx controller is running in the `hostNetwork: true` mode.
-    healthCheckHost: ""
-    # -- Annotations to be added to controller pods
-    ##
-    podAnnotations: {}
-    replicaCount: 1
-    # -- Define either 'minAvailable' or 'maxUnavailable', never both.
-    minAvailable: 1
-    # -- Define either 'minAvailable' or 'maxUnavailable', never both.
-    # maxUnavailable: 1
-
-    ## Define requests resources to avoid probe issues due to CPU utilization in busy nodes
-    ## ref: https://github.com/kubernetes/ingress-nginx/issues/4735#issuecomment-551204903
-    ## Ideally, there should be no limits.
-    ## https://engineering.indeedblog.com/blog/2019/12/cpu-throttling-regression-fix/
-    resources:
-        ##  limits:
-        ##    cpu: 100m
-        ##    memory: 90Mi
-        requests:
-            cpu: 100m
-            memory: 90Mi
-    # Mutually exclusive with keda autoscaling
-    autoscaling:
-        apiVersion: autoscaling/v2
-        enabled: false
-        annotations: {}
-        minReplicas: 1
-        maxReplicas: 11
-        targetCPUUtilizationPercentage: 50
-        targetMemoryUtilizationPercentage: 50
-        behavior: {}
-        # scaleDown:
-        #   stabilizationWindowSeconds: 300
-        #   policies:
-        #   - type: Pods
-        #     value: 1
-        #     periodSeconds: 180
-        # scaleUp:
-        #   stabilizationWindowSeconds: 300
-        #   policies:
-        #   - type: Pods
-        #     value: 2
-        #     periodSeconds: 60
-    autoscalingTemplate: []
-    # Custom or additional autoscaling metrics
-    # ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/#support-for-custom-metrics
-    # - type: Pods
-    #   pods:
-    #     metric:
-    #       name: nginx_ingress_controller_nginx_process_requests_total
-    #     target:
-    #       type: AverageValue
-    #       averageValue: 10000m
-
-    # Mutually exclusive with hpa autoscaling
-    keda:
-        apiVersion: "keda.sh/v1alpha1"
-        ## apiVersion changes with keda 1.x vs 2.x
-        ## 2.x = keda.sh/v1alpha1
-        ## 1.x = keda.k8s.io/v1alpha1
-        enabled: false
-        minReplicas: 1
-        maxReplicas: 11
-        pollingInterval: 30
-        cooldownPeriod: 300
-        restoreToOriginalReplicaCount: false
-        scaledObject:
-            annotations: {}
-            # Custom annotations for ScaledObject resource
-            #  annotations:
-            # key: value
-        triggers: []
-        #     - type: prometheus
-        #       metadata:
-        #         serverAddress: http://<prometheus-host>:9090
-        #         metricName: http_requests_total
-        #         threshold: '100'
-        #         query: sum(rate(http_requests_total{deployment="my-deployment"}[2m]))
-
-        behavior: {}
-    #     scaleDown:
-    #       stabilizationWindowSeconds: 300
-    #       policies:
-    #       - type: Pods
-    #         value: 1
-    #         periodSeconds: 180
-    #     scaleUp:
-    #       stabilizationWindowSeconds: 300
-    #       policies:
-    #       - type: Pods
-    #         value: 2
-    #         periodSeconds: 60
-
-    # -- Enable mimalloc as a drop-in replacement for malloc.
-    ## ref: https://github.com/microsoft/mimalloc
-    ##
-    enableMimalloc: true
-    ## Override NGINX template
-    customTemplate:
-        configMapName: ""
-        configMapKey: ""
+    # -- Use an existing PSP instead of creating one
+    existingPsp: ""
+    networkPolicyEnabled: false
     service:
-        enabled: true
-        # -- If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were
-        # using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http
-        # It allows choosing the protocol for each backend specified in the Kubernetes service.
-        # See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244
-        # Will be ignored for Kubernetes versions older than 1.20
-        ##
-        appProtocol: true
-        annotations: {}
-        labels: {}
-        # clusterIP: ""
+      annotations: {}
+      # clusterIP: ""
+      externalIPs: []
+      # loadBalancerIP: ""
+      loadBalancerSourceRanges: []
+      servicePort: 443
+      type: ClusterIP
+    createSecretJob:
+      securityContext:
+        allowPrivilegeEscalation: false
+      resources: {}
+      # limits:
+      #   cpu: 10m
+      #   memory: 20Mi
+      # requests:
+      #   cpu: 10m
+      #   memory: 20Mi
+    patchWebhookJob:
+      securityContext:
+        allowPrivilegeEscalation: false
+      resources: {}
+    patch:
+      enabled: true
+      image:
+        registry: registry.k8s.io
+        image: ingress-nginx/kube-webhook-certgen
+        ## for backwards compatibility consider setting the full image url via the repository value below
+        ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+        ## repository:
+        tag: v20230312-helm-chart-4.5.2-28-g66a760794
+        digest: sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        pullPolicy: IfNotPresent
+      # -- Provide a priority class name to the webhook patching job
+      ##
+      priorityClassName: ""
+      podAnnotations: {}
+      nodeSelector:
+        kubernetes.io/os: linux
+      tolerations: []
+      # -- Labels to be added to patch job resources
+      labels: {}
+      securityContext:
+        runAsNonRoot: true
+        runAsUser: 2000
+        fsGroup: 2000
+    # Use certmanager to generate webhook certs
+    certManager:
+      enabled: false
+      # self-signed root certificate
+      rootCert:
+        # default to be 5y
+        duration: ""
+      admissionCert:
+        # default to be 1y
+        duration: ""
+        # issuerRef:
+        #   name: "issuer"
+        #   kind: "ClusterIssuer"
+  metrics:
+    port: 10254
+    portName: metrics
+    # if this port is changed, change healthz-port: in extraArgs: accordingly
+    enabled: false
+    service:
+      annotations: {}
+      # prometheus.io/scrape: "true"
+      # prometheus.io/port: "10254"
+      # -- Labels to be added to the metrics service resource
+      labels: {}
+      # clusterIP: ""
 
-        # -- List of IP addresses at which the controller services are available
-        ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
-        ##
-        externalIPs: []
-        # -- Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
-        loadBalancerIP: ""
-        loadBalancerSourceRanges: []
-        enableHttp: true
-        enableHttps: true
-        ## Set external traffic policy to: "Local" to preserve source IP on providers supporting it.
-        ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
-        # externalTrafficPolicy: ""
-
-        ## Must be either "None" or "ClientIP" if set. Kubernetes will default to "None".
-        ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
-        # sessionAffinity: ""
-
-        ## Specifies the health check node port (numeric port number) for the service. If healthCheckNodePort isn’t specified,
-        ## the service controller allocates a port from your cluster’s NodePort range.
-        ## Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
-        # healthCheckNodePort: 0
-
-        # -- Represents the dual-stack-ness requested or required by this Service. Possible values are
-        # SingleStack, PreferDualStack or RequireDualStack.
-        # The ipFamilies and clusterIPs fields depend on the value of this field.
-        ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
-        ipFamilyPolicy: "SingleStack"
-        # -- List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically
-        # based on cluster configuration and the ipFamilyPolicy field.
-        ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
-        ipFamilies:
-            - IPv4
-        ports:
-            http: 80
-            https: 443
-        targetPorts:
-            http: http
-            https: https
-        type: LoadBalancer
-        ## type: NodePort
-        ## nodePorts:
-        ##   http: 32080
-        ##   https: 32443
-        ##   tcp:
-        ##     8080: 32808
-        nodePorts:
-            http: ""
-            https: ""
-            tcp: {}
-            udp: {}
-        external:
-            enabled: true
-        internal:
-            # -- Enables an additional internal load balancer (besides the external one).
-            enabled: false
-            # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service.
-            annotations: {}
-            # loadBalancerIP: ""
-
-            # -- Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.
-            loadBalancerSourceRanges: []
-            ## Set external traffic policy to: "Local" to preserve source IP on
-            ## providers supporting it
-            ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
-            # externalTrafficPolicy: ""
-    # shareProcessNamespace enables process namespace sharing within the pod.
-    # This can be used for example to signal log rotation using `kill -USR1` from a sidecar.
-    shareProcessNamespace: false
-    # -- Additional containers to be added to the controller pod.
-    # See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example.
-    extraContainers: []
-    #  - name: my-sidecar
-    #    image: nginx:latest
-    #  - name: lemonldap-ng-controller
-    #    image: lemonldapng/lemonldap-ng-controller:0.2.0
-    #    args:
-    #      - /lemonldap-ng-controller
-    #      - --alsologtostderr
-    #      - --configmap=$(POD_NAMESPACE)/lemonldap-ng-configuration
-    #    env:
-    #      - name: POD_NAME
-    #        valueFrom:
-    #          fieldRef:
-    #            fieldPath: metadata.name
-    #      - name: POD_NAMESPACE
-    #        valueFrom:
-    #          fieldRef:
-    #            fieldPath: metadata.namespace
-    #    volumeMounts:
-    #    - name: copy-portal-skins
-    #      mountPath: /srv/var/lib/lemonldap-ng/portal/skins
-
-    # -- Additional volumeMounts to the controller main container.
-    extraVolumeMounts: []
-    #  - name: copy-portal-skins
-    #   mountPath: /var/lib/lemonldap-ng/portal/skins
-
-    # -- Additional volumes to the controller pod.
-    extraVolumes: []
-    #  - name: copy-portal-skins
-    #    emptyDir: {}
-
-    # -- Containers, which are run before the app containers are started.
-    extraInitContainers: []
-    # - name: init-myservice
-    #   image: busybox
-    #   command: ['sh', '-c', 'until nslookup myservice; do echo waiting for myservice; sleep 2; done;']
-
-    # -- Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module
-    extraModules: []
-    # - name: mytestmodule
-    #   image: registry.k8s.io/ingress-nginx/mytestmodule
-    #   containerSecurityContext:
-    #     allowPrivilegeEscalation: false
-    #
-    # The image must contain a `/usr/local/bin/init_module.sh` executable, which
-    # will be executed as initContainers, to move its config files within the
-    # mounted volume.
-
-    opentelemetry:
-        enabled: false
-        image: registry.k8s.io/ingress-nginx/opentelemetry:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:40f766ac4a9832f36f217bb0e98d44c8d38faeccbfe861fbc1a76af7e9ab257f
-        containerSecurityContext:
-            allowPrivilegeEscalation: false
-    admissionWebhooks:
-        annotations: {}
-        # ignore-check.kube-linter.io/no-read-only-rootfs: "This deployment needs write access to root filesystem".
-
-        ## Additional annotations to the admission webhooks.
-        ## These annotations will be added to the ValidatingWebhookConfiguration and
-        ## the Jobs Spec of the admission webhooks.
-        enabled: true
-        # -- Additional environment variables to set
-        extraEnvs: []
-        # extraEnvs:
-        #   - name: FOO
-        #     valueFrom:
-        #       secretKeyRef:
-        #         key: FOO
-        #         name: secret-resource
-        # -- Admission Webhook failure policy to use
-        failurePolicy: Fail
-        # timeoutSeconds: 10
-        port: 8443
-        certificate: "/usr/local/certificates/cert"
-        key: "/usr/local/certificates/key"
-        namespaceSelector: {}
-        objectSelector: {}
-        # -- Labels to be added to admission webhooks
-        labels: {}
-        # -- Use an existing PSP instead of creating one
-        existingPsp: ""
-        networkPolicyEnabled: false
-        service:
-            annotations: {}
-            # clusterIP: ""
-            externalIPs: []
-            # loadBalancerIP: ""
-            loadBalancerSourceRanges: []
-            servicePort: 443
-            type: ClusterIP
-        createSecretJob:
-            securityContext:
-                allowPrivilegeEscalation: false
-            resources: {}
-            # limits:
-            #   cpu: 10m
-            #   memory: 20Mi
-            # requests:
-            #   cpu: 10m
-            #   memory: 20Mi
-        patchWebhookJob:
-            securityContext:
-                allowPrivilegeEscalation: false
-            resources: {}
-        patch:
-            enabled: true
-            image:
-                registry: registry.k8s.io
-                image: ingress-nginx/kube-webhook-certgen
-                ## for backwards compatibility consider setting the full image url via the repository value below
-                ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-                ## repository:
-                tag: v20230312-helm-chart-4.5.2-28-g66a760794
-                digest: sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
-                pullPolicy: IfNotPresent
-            # -- Provide a priority class name to the webhook patching job
-            ##
-            priorityClassName: ""
-            podAnnotations: {}
-            nodeSelector:
-                kubernetes.io/os: linux
-            tolerations: []
-            # -- Labels to be added to patch job resources
-            labels: {}
-            securityContext:
-                runAsNonRoot: true
-                runAsUser: 2000
-                fsGroup: 2000
-        # Use certmanager to generate webhook certs
-        certManager:
-            enabled: false
-            # self-signed root certificate
-            rootCert:
-                # default to be 5y
-                duration: ""
-            admissionCert:
-                # default to be 1y
-                duration: ""
-                # issuerRef:
-                #   name: "issuer"
-                #   kind: "ClusterIssuer"
-    metrics:
-        port: 10254
-        portName: metrics
-        # if this port is changed, change healthz-port: in extraArgs: accordingly
-        enabled: false
-        service:
-            annotations: {}
-            # prometheus.io/scrape: "true"
-            # prometheus.io/port: "10254"
-            # -- Labels to be added to the metrics service resource
-            labels: {}
-            # clusterIP: ""
-
-            # -- List of IP addresses at which the stats-exporter service is available
-            ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
-            ##
-            externalIPs: []
-            # loadBalancerIP: ""
-            loadBalancerSourceRanges: []
-            servicePort: 10254
-            type: ClusterIP
-            # externalTrafficPolicy: ""
-            # nodePort: ""
-        serviceMonitor:
-            enabled: false
-            additionalLabels: {}
-            ## The label to use to retrieve the job name from.
-            ## jobLabel: "app.kubernetes.io/name"
-            namespace: ""
-            namespaceSelector: {}
-            ## Default: scrape .Release.Namespace only
-            ## To scrape all, use the following:
-            ## namespaceSelector:
-            ##   any: true
-            scrapeInterval: 30s
-            # honorLabels: true
-            targetLabels: []
-            relabelings: []
-            metricRelabelings: []
-        prometheusRule:
-            enabled: false
-            additionalLabels: {}
-            # namespace: ""
-            rules: []
-            # # These are just examples rules, please adapt them to your needs
-            # - alert: NGINXConfigFailed
-            #   expr: count(nginx_ingress_controller_config_last_reload_successful == 0) > 0
-            #   for: 1s
-            #   labels:
-            #     severity: critical
-            #   annotations:
-            #     description: bad ingress config - nginx config test failed
-            #     summary: uninstall the latest ingress changes to allow config reloads to resume
-            # - alert: NGINXCertificateExpiry
-            #   expr: (avg(nginx_ingress_controller_ssl_expire_time_seconds) by (host) - time()) < 604800
-            #   for: 1s
-            #   labels:
-            #     severity: critical
-            #   annotations:
-            #     description: ssl certificate(s) will expire in less then a week
-            #     summary: renew expiring certificates to avoid downtime
-            # - alert: NGINXTooMany500s
-            #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"5.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
-            #   for: 1m
-            #   labels:
-            #     severity: warning
-            #   annotations:
-            #     description: Too many 5XXs
-            #     summary: More than 5% of all requests returned 5XX, this requires your attention
-            # - alert: NGINXTooMany400s
-            #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"4.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
-            #   for: 1m
-            #   labels:
-            #     severity: warning
-            #   annotations:
-            #     description: Too many 4XXs
-            #     summary: More than 5% of all requests returned 4XX, this requires your attention
-    # -- Improve connection draining when ingress controller pod is deleted using a lifecycle hook:
-    # With this new hook, we increased the default terminationGracePeriodSeconds from 30 seconds
-    # to 300, allowing the draining of connections up to five minutes.
-    # If the active connections end before that, the pod will terminate gracefully at that time.
-    # To effectively take advantage of this feature, the Configmap feature
-    # worker-shutdown-timeout new value is 240s instead of 10s.
-    ##
-    lifecycle:
-        preStop:
-            exec:
-                command:
-                    - /wait-shutdown
-    priorityClassName: ""
+      # -- List of IP addresses at which the stats-exporter service is available
+      ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+      ##
+      externalIPs: []
+      # loadBalancerIP: ""
+      loadBalancerSourceRanges: []
+      servicePort: 10254
+      type: ClusterIP
+      # externalTrafficPolicy: ""
+      # nodePort: ""
+    serviceMonitor:
+      enabled: false
+      additionalLabels: {}
+      ## The label to use to retrieve the job name from.
+      ## jobLabel: "app.kubernetes.io/name"
+      namespace: ""
+      namespaceSelector: {}
+      ## Default: scrape .Release.Namespace only
+      ## To scrape all, use the following:
+      ## namespaceSelector:
+      ##   any: true
+      scrapeInterval: 30s
+      # honorLabels: true
+      targetLabels: []
+      relabelings: []
+      metricRelabelings: []
+    prometheusRule:
+      enabled: false
+      additionalLabels: {}
+      # namespace: ""
+      rules: []
+      # # These are just examples rules, please adapt them to your needs
+      # - alert: NGINXConfigFailed
+      #   expr: count(nginx_ingress_controller_config_last_reload_successful == 0) > 0
+      #   for: 1s
+      #   labels:
+      #     severity: critical
+      #   annotations:
+      #     description: bad ingress config - nginx config test failed
+      #     summary: uninstall the latest ingress changes to allow config reloads to resume
+      # - alert: NGINXCertificateExpiry
+      #   expr: (avg(nginx_ingress_controller_ssl_expire_time_seconds) by (host) - time()) < 604800
+      #   for: 1s
+      #   labels:
+      #     severity: critical
+      #   annotations:
+      #     description: ssl certificate(s) will expire in less then a week
+      #     summary: renew expiring certificates to avoid downtime
+      # - alert: NGINXTooMany500s
+      #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"5.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
+      #   for: 1m
+      #   labels:
+      #     severity: warning
+      #   annotations:
+      #     description: Too many 5XXs
+      #     summary: More than 5% of all requests returned 5XX, this requires your attention
+      # - alert: NGINXTooMany400s
+      #   expr: 100 * ( sum( nginx_ingress_controller_requests{status=~"4.+"} ) / sum(nginx_ingress_controller_requests) ) > 5
+      #   for: 1m
+      #   labels:
+      #     severity: warning
+      #   annotations:
+      #     description: Too many 4XXs
+      #     summary: More than 5% of all requests returned 4XX, this requires your attention
+  # -- Improve connection draining when ingress controller pod is deleted using a lifecycle hook:
+  # With this new hook, we increased the default terminationGracePeriodSeconds from 30 seconds
+  # to 300, allowing the draining of connections up to five minutes.
+  # If the active connections end before that, the pod will terminate gracefully at that time.
+  # To effectively take advantage of this feature, the Configmap feature
+  # worker-shutdown-timeout new value is 240s instead of 10s.
+  ##
+  lifecycle:
+    preStop:
+      exec:
+        command:
+          - /wait-shutdown
+  priorityClassName: ""
 # -- Rollback limit
 ##
 revisionHistoryLimit: 10
 ## Default 404 backend
 ##
 defaultBackend:
-    ##
-    enabled: false
-    name: defaultbackend
-    image:
-        registry: registry.k8s.io
-        image: defaultbackend-amd64
-        ## for backwards compatibility consider setting the full image url via the repository value below
-        ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-        ## repository:
-        tag: "1.5"
-        pullPolicy: IfNotPresent
-        # nobody user -> uid 65534
-        runAsUser: 65534
-        runAsNonRoot: true
-        readOnlyRootFilesystem: true
-        allowPrivilegeEscalation: false
-    # -- Use an existing PSP instead of creating one
-    existingPsp: ""
-    extraArgs: {}
-    serviceAccount:
-        create: true
-        name: ""
-        automountServiceAccountToken: true
-    # -- Additional environment variables to set for defaultBackend pods
-    extraEnvs: []
-    port: 8080
-    ## Readiness and liveness probes for default backend
-    ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/
-    ##
-    livenessProbe:
-        failureThreshold: 3
-        initialDelaySeconds: 30
-        periodSeconds: 10
-        successThreshold: 1
-        timeoutSeconds: 5
-    readinessProbe:
-        failureThreshold: 6
-        initialDelaySeconds: 0
-        periodSeconds: 5
-        successThreshold: 1
-        timeoutSeconds: 5
-    # -- The update strategy to apply to the Deployment or DaemonSet
-    ##
-    updateStrategy: {}
-    #  rollingUpdate:
-    #    maxUnavailable: 1
-    #  type: RollingUpdate
-
-    # -- `minReadySeconds` to avoid killing pods before we are ready
-    ##
-    minReadySeconds: 0
-    # -- Node tolerations for server scheduling to nodes with taints
-    ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
-    ##
-    tolerations: []
-    #  - key: "key"
-    #    operator: "Equal|Exists"
-    #    value: "value"
-    #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
-
-    affinity: {}
-    # -- Security Context policies for controller pods
-    # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
-    # notes on enabling and using sysctls
-    ##
-    podSecurityContext: {}
-    # -- Security Context policies for controller main container.
-    # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
-    # notes on enabling and using sysctls
-    ##
-    containerSecurityContext: {}
-    # -- Labels to add to the pod container metadata
-    podLabels: {}
-    #  key: value
-
-    # -- Node labels for default backend pod assignment
-    ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
-    ##
-    nodeSelector:
-        kubernetes.io/os: linux
-    # -- Annotations to be added to default backend pods
-    ##
-    podAnnotations: {}
-    replicaCount: 1
-    minAvailable: 1
-    resources: {}
-    # limits:
-    #   cpu: 10m
-    #   memory: 20Mi
-    # requests:
-    #   cpu: 10m
-    #   memory: 20Mi
-
-    extraVolumeMounts: []
-    ## Additional volumeMounts to the default backend container.
-    #  - name: copy-portal-skins
-    #   mountPath: /var/lib/lemonldap-ng/portal/skins
-
-    extraVolumes: []
-    ## Additional volumes to the default backend pod.
-    #  - name: copy-portal-skins
-    #    emptyDir: {}
-
-    autoscaling:
-        apiVersion: autoscaling/v2
-        annotations: {}
-        enabled: false
-        minReplicas: 1
-        maxReplicas: 2
-        targetCPUUtilizationPercentage: 50
-        targetMemoryUtilizationPercentage: 50
-    service:
-        annotations: {}
-        # clusterIP: ""
-
-        # -- List of IP addresses at which the default backend service is available
-        ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
-        ##
-        externalIPs: []
-        # loadBalancerIP: ""
-        loadBalancerSourceRanges: []
-        servicePort: 80
-        type: ClusterIP
-    priorityClassName: ""
-    # -- Labels to be added to the default backend resources
-    labels: {}
-## Enable RBAC as per https://github.com/kubernetes/ingress-nginx/blob/main/docs/deploy/rbac.md and https://github.com/kubernetes/ingress-nginx/issues/266
-rbac:
-    create: true
-    scope: false
-## If true, create & use Pod Security Policy resources
-## https://kubernetes.io/docs/concepts/policy/pod-security-policy/
-podSecurityPolicy:
-    enabled: false
-serviceAccount:
+  ##
+  enabled: false
+  name: defaultbackend
+  image:
+    registry: registry.k8s.io
+    image: defaultbackend-amd64
+    ## for backwards compatibility consider setting the full image url via the repository value below
+    ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+    ## repository:
+    tag: "1.5"
+    pullPolicy: IfNotPresent
+    # nobody user -> uid 65534
+    runAsUser: 65534
+    runAsNonRoot: true
+    readOnlyRootFilesystem: true
+    allowPrivilegeEscalation: false
+  # -- Use an existing PSP instead of creating one
+  existingPsp: ""
+  extraArgs: {}
+  serviceAccount:
     create: true
     name: ""
     automountServiceAccountToken: true
-    # -- Annotations for the controller service account
+  # -- Additional environment variables to set for defaultBackend pods
+  extraEnvs: []
+  port: 8080
+  ## Readiness and liveness probes for default backend
+  ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/
+  ##
+  livenessProbe:
+    failureThreshold: 3
+    initialDelaySeconds: 30
+    periodSeconds: 10
+    successThreshold: 1
+    timeoutSeconds: 5
+  readinessProbe:
+    failureThreshold: 6
+    initialDelaySeconds: 0
+    periodSeconds: 5
+    successThreshold: 1
+    timeoutSeconds: 5
+  # -- The update strategy to apply to the Deployment or DaemonSet
+  ##
+  updateStrategy: {}
+  #  rollingUpdate:
+  #    maxUnavailable: 1
+  #  type: RollingUpdate
+
+  # -- `minReadySeconds` to avoid killing pods before we are ready
+  ##
+  minReadySeconds: 0
+  # -- Node tolerations for server scheduling to nodes with taints
+  ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
+  ##
+  tolerations: []
+  #  - key: "key"
+  #    operator: "Equal|Exists"
+  #    value: "value"
+  #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
+
+  affinity: {}
+  # -- Security Context policies for controller pods
+  # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
+  # notes on enabling and using sysctls
+  ##
+  podSecurityContext: {}
+  # -- Security Context policies for controller main container.
+  # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
+  # notes on enabling and using sysctls
+  ##
+  containerSecurityContext: {}
+  # -- Labels to add to the pod container metadata
+  podLabels: {}
+  #  key: value
+
+  # -- Node labels for default backend pod assignment
+  ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
+  ##
+  nodeSelector:
+    kubernetes.io/os: linux
+  # -- Annotations to be added to default backend pods
+  ##
+  podAnnotations: {}
+  replicaCount: 1
+  minAvailable: 1
+  resources: {}
+  # limits:
+  #   cpu: 10m
+  #   memory: 20Mi
+  # requests:
+  #   cpu: 10m
+  #   memory: 20Mi
+
+  extraVolumeMounts: []
+  ## Additional volumeMounts to the default backend container.
+  #  - name: copy-portal-skins
+  #   mountPath: /var/lib/lemonldap-ng/portal/skins
+
+  extraVolumes: []
+  ## Additional volumes to the default backend pod.
+  #  - name: copy-portal-skins
+  #    emptyDir: {}
+
+  autoscaling:
+    apiVersion: autoscaling/v2
     annotations: {}
+    enabled: false
+    minReplicas: 1
+    maxReplicas: 2
+    targetCPUUtilizationPercentage: 50
+    targetMemoryUtilizationPercentage: 50
+  service:
+    annotations: {}
+    # clusterIP: ""
+
+    # -- List of IP addresses at which the default backend service is available
+    ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+    ##
+    externalIPs: []
+    # loadBalancerIP: ""
+    loadBalancerSourceRanges: []
+    servicePort: 80
+    type: ClusterIP
+  priorityClassName: ""
+  # -- Labels to be added to the default backend resources
+  labels: {}
+## Enable RBAC as per https://github.com/kubernetes/ingress-nginx/blob/main/docs/deploy/rbac.md and https://github.com/kubernetes/ingress-nginx/issues/266
+rbac:
+  create: true
+  scope: false
+## If true, create & use Pod Security Policy resources
+## https://kubernetes.io/docs/concepts/policy/pod-security-policy/
+podSecurityPolicy:
+  enabled: false
+serviceAccount:
+  create: true
+  name: ""
+  automountServiceAccountToken: true
+  # -- Annotations for the controller service account
+  annotations: {}
 # -- Optional array of imagePullSecrets containing private registry credentials
 ## Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
 imagePullSecrets: []
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index bf4ffce19..c1d595c3a 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,6 +417,8 @@ spec:
         app.kubernetes.io/component: controller
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.7.0
     spec:
       containers:
       - args:
@@ -440,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -512,7 +514,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -523,7 +525,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -559,7 +561,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -570,7 +572,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -608,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -621,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 0b58831a3..ed6275a0b 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -426,6 +426,8 @@ spec:
         app.kubernetes.io/component: controller
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.7.0
     spec:
       containers:
       - args:
@@ -449,7 +451,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +526,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +537,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -620,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -633,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index d141e8ca6..595088a0c 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -412,6 +412,8 @@ spec:
         app.kubernetes.io/component: controller
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.7.0
     spec:
       containers:
       - args:
@@ -434,7 +436,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -506,7 +508,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -517,7 +519,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -553,7 +555,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -564,7 +566,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -602,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -615,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 97c22739b..0540ff1cb 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,6 +413,8 @@ spec:
         app.kubernetes.io/component: controller
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.7.0
     spec:
       containers:
       - args:
@@ -436,7 +438,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -508,7 +510,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -519,7 +521,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -555,7 +557,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -566,7 +568,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -604,7 +606,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -617,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 5b7c86670..ae6ae1f8f 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,6 +416,8 @@ spec:
         app.kubernetes.io/component: controller
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.7.0
     spec:
       containers:
       - args:
@@ -439,7 +441,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -511,7 +513,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -522,7 +524,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -558,7 +560,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -569,7 +571,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -607,7 +609,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -620,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index c8236ef20..a387fa928 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,6 +422,8 @@ spec:
         app.kubernetes.io/component: controller
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.7.0
     spec:
       containers:
       - args:
@@ -445,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +519,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +530,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -564,7 +566,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +577,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -613,7 +615,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -626,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index a8fd055c9..a77a08ae9 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,6 +416,8 @@ spec:
         app.kubernetes.io/component: controller
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.7.0
     spec:
       containers:
       - args:
@@ -440,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -522,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -533,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -569,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -580,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -618,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -631,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 1f04b9b9e..ab9142ce2 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -416,6 +416,8 @@ spec:
         app.kubernetes.io/component: controller
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.7.0
     spec:
       containers:
       - args:
@@ -439,7 +441,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -511,7 +513,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -522,7 +524,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -558,7 +560,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -569,7 +571,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.6.4
+        app.kubernetes.io/version: 1.7.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -607,7 +609,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -620,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.6.4
+    app.kubernetes.io/version: 1.7.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 9f66e3991..22a76dc7a 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -7,34 +7,19 @@ Do not try to edit it manually.
 
 
 
-### [[Serial] admission controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L35)
+### [[Admission] admission controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L35)
 
-- [reject ingress with global-rate-limit annotations when memcached is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L48)
-- [should not allow overlaps of host and paths without canary annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L75)
-- [should allow overlaps of host and paths with canary annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L92)
-- [should block ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L113)
-- [should return an error if there is an error validating the ingress definition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L130)
-- [should return an error if there is an invalid value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L141)
-- [should return an error if there is a forbidden value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L155)
-- [should not return an error if the Ingress V1 definition is valid with Ingress Class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L169)
-- [should not return an error if the Ingress V1 definition is valid with IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L185)
-- [should return an error if the Ingress V1 definition contains invalid annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L201)
-- [should not return an error for an invalid Ingress when it has unknown class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L212)
-
-### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L28)
-
-- [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L35)
-- [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L53)
-- [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L74)
-- [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L91)
-- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L110)
-- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L132)
-- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L153)
-- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L189)
-- [should enable modsecurity when enable-owasp-modsecurity-crs is set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L225)
-- [should enable modsecurity through the config map](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L264)
-- [should enable modsecurity through the config map but ignore snippet as disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L305)
-- [should disable default modsecurity conf setting when modsecurity-snippet is specified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L347)
+- [reject ingress with global-rate-limit annotations when memcached is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L43)
+- [should not allow overlaps of host and paths without canary annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L70)
+- [should allow overlaps of host and paths with canary annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L87)
+- [should block ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L108)
+- [should return an error if there is an error validating the ingress definition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L125)
+- [should return an error if there is an invalid value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L136)
+- [should return an error if there is a forbidden value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L150)
+- [should not return an error if the Ingress V1 definition is valid with Ingress Class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L164)
+- [should not return an error if the Ingress V1 definition is valid with IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L180)
+- [should return an error if the Ingress V1 definition contains invalid annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L196)
+- [should not return an error for an invalid Ingress when it has unknown class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L207)
 
 ### [affinitymode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L31)
 
@@ -71,33 +56,6 @@ Do not try to edit it manually.
 - [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L94)
 - [should set backend protocol to '' and use ajp_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L109)
 
-### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
-
-- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L48)
-- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L80)
-- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L107)
-- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L161)
-- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L206)
-- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L250)
-- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L307)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L372)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L426)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L490)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L532)
-- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L566)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L604)
-- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L643)
-- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L705)
-- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L743)
-- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L775)
-- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L808)
-- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L836)
-- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L864)
-- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L888)
-- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L916)
-- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L973)
-- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1031)
-
 ### [client-body-buffer-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L28)
 
 - [should set client_body_buffer_size to 1000](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L35)
@@ -151,13 +109,6 @@ Do not try to edit it manually.
 - [disable-http-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L53)
 - [disable-stream-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L71)
 
-### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L31)
-
-- [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L38)
-- [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L55)
-- [should add fastcgi_param in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L72)
-- [should return OK for service with backend protocol FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L105)
-
 ### [force-ssl-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L27)
 
 - [should redirect to https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L34)
@@ -209,6 +160,21 @@ Do not try to edit it manually.
 - [should set mirror-target to https://test.env.com/$request_uri](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L51)
 - [should disable mirror-request-body](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L67)
 
+### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L28)
+
+- [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L35)
+- [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L53)
+- [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L74)
+- [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L91)
+- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L110)
+- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L132)
+- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L153)
+- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L189)
+- [should enable modsecurity when enable-owasp-modsecurity-crs is set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L225)
+- [should enable modsecurity through the config map](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L264)
+- [should enable modsecurity through the config map but ignore snippet as disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L305)
+- [should disable default modsecurity conf setting when modsecurity-snippet is specified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L347)
+
 ### [preserve-trailing-slash](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L27)
 
 - [should allow preservation of trailing slashes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L34)
@@ -285,6 +251,11 @@ Do not try to edit it manually.
 - [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L35)
 - [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L57)
 
+### [denylist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L28)
+
+- [only deny explicitly denied IPs, allow all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L35)
+- [only allow explicitly allowed IPs, deny all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L86)
+
 ### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L35)
 
 - [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L42)
@@ -311,6 +282,13 @@ Do not try to edit it manually.
 - [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L158)
 - [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L190)
 
+### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L30)
+
+- [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L37)
+- [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L54)
+- [should add fastcgi_param in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L71)
+- [should return OK for service with backend protocol FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L102)
+
 ### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L39)
 
 - [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L46)
@@ -347,10 +325,33 @@ Do not try to edit it manually.
 - [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L879)
 - [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L887)
 
-### [denylist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L28)
+### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
 
-- [only deny explicitly denied IPs, allow all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L35)
-- [only allow explicitly allowed IPs, deny all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L86)
+- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L48)
+- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L80)
+- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L107)
+- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L161)
+- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L206)
+- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L250)
+- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L307)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L372)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L426)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L490)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L532)
+- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L566)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L604)
+- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L643)
+- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L705)
+- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L743)
+- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L775)
+- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L808)
+- [should route requests split between mainline and canary if canary weight is 100 and weight total is 200](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L834)
+- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L863)
+- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L891)
+- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L915)
+- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L943)
+- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1000)
+- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1058)
 
 ### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L29)
 
@@ -376,30 +377,21 @@ Do not try to edit it manually.
 
 - [should apply the annotation to the default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L38)
 
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
+
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+### [[Endpointslices] long service name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L29)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+- [should return 200 when service name has max allowed number of characters 63](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L38)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+### [[TopologyHints] topology aware routing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L35)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
-
-### [[Setting] ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L190)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L206)
-- [ [MemoryLeak]](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L207)
+- [should return 200 when service has topology hints](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L43)
 
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
 
@@ -445,14 +437,6 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/influxdb.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/influxdb.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
-
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
@@ -465,13 +449,41 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/test_context.go#L)
 
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
+
+### [[Setting] ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L194)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/influxdb.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/influxdb.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
+
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
 
 ### [[Shutdown] Grace period shutdown](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L32)
 
@@ -546,6 +558,12 @@ Do not try to edit it manually.
 - [handles endpoints only changes consistently (down scaling of replicas vs. empty service)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L125)
 - [handles an annotation change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L171)
 
+### [nginx-configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L99)
+
+- [start nginx with default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L102)
+- [fails when using alias directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L115)
+- [fails when using root directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L124)
+
 ### [[Security] request smuggling](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L32)
 
 - [should not return body content from error_page](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L39)
@@ -570,14 +588,6 @@ Do not try to edit it manually.
 
 - [should return 404 when backend service is nil](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L38)
 
-### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
-
-- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
-
-### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
-
-- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
-
 ### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L27)
 
 - [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L32)
@@ -597,10 +607,6 @@ Do not try to edit it manually.
 
 - [ condition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L39)
 
-### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
-
-- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
-
 ### [add-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L30)
 
 - [Add a custom header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L40)
@@ -730,26 +736,24 @@ Do not try to edit it manually.
 
 - [should add value of main-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L31)
 
+### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
+
+- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
+
 ### [enable-multi-accept](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L27)
 
 - [should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L31)
 - [should be enabled when set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L39)
 - [should be disabled when set to false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L49)
 
-### [[Flag] watch namespace selector](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L30)
-
-- [should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L70)
-
-### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
-
-- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L54)
-- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
-- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
-
 ### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L28)
 
 - [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L31)
 
+### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
+
+- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
+
 ### [Configure OpenTracing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L48)
 
 - [should not exists opentracing directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L58)
@@ -858,11 +862,33 @@ Do not try to edit it manually.
 - [should set gzip_min_length to 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L78)
 - [should set gzip_types to application/javascript](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L89)
 
+### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
+
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
+
+### [[Flag] watch namespace selector](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L30)
+
+- [should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L63)
+
 ### [With enable-ssl-passthrough enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L36)
 
 - [should enable ssl-passthrough-proxy-port on a different port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L56)
 - [should pass unknown traffic to default backend and handle known traffic](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L79)
 
+### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
+
+- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L54)
+- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
+- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
+
+### [Configure Opentelemetry](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L37)
+
+- [should not exists opentelemetry directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L47)
+- [should exists opentelemetry directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L60)
+- [should include opentelemetry_trust_incoming_spans on directive when enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L74)
+- [should not exists opentelemetry_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L89)
+- [should exists opentelemetry_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L104)
+
 ### [[SSL] redirect to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L29)
 
 - [should redirect from HTTP to HTTPS when secret is missing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L36)
@@ -876,25 +902,8 @@ Do not try to edit it manually.
 
 - [should update status field after client-go reconnection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L43)
 
-### [[TCP] tcp-services](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L37)
+### [[TCP] tcp-services](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L38)
 
-- [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L40)
-- [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L98)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
-
-### [[Endpointslices] long service name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L29)
-
-- [should return 200 when service name has max allowed number of characters 63](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L38)
-
-### [[TopologyHints] topology aware routing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L36)
-
-- [should return 200 when service has topology hints](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L50)
-
-### [nginx-configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L99)
-
-- [start nginx with default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L102)
-- [fails when using alias directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L115)
-- [fails when using root directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L124)
\ No newline at end of file
+- [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L46)
+- [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L80)
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L169)
\ No newline at end of file
diff --git a/docs/user-guide/exposing-tcp-udp-services.md b/docs/user-guide/exposing-tcp-udp-services.md
index 6b595ffae..63293f0e5 100644
--- a/docs/user-guide/exposing-tcp-udp-services.md
+++ b/docs/user-guide/exposing-tcp-udp-services.md
@@ -63,3 +63,9 @@ spec:
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
 ```
+Then, the configmap should be added into ingress controller's deployment args.
+```
+ args:
+    - /nginx-ingress-controller
+    - --tcp-services-configmap=ingress-nginx/tcp-services
+```
diff --git a/magefiles/release.go b/magefiles/release.go
index 3c715bc07..aeaafc3d2 100644
--- a/magefiles/release.go
+++ b/magefiles/release.go
@@ -50,7 +50,7 @@ var INGRESS_REGISTRY = "registry.k8s.io"                                    //Co
 var KUSTOMIZE_INSTALL_VERSION = "sigs.k8s.io/kustomize/kustomize/v4@v4.5.4" //static deploys needs kustomize to generate the template
 
 // ingress-nginx releases start with a TAG then a cloudbuild, then a promotion through a PR, this the location of that PR
-var IMAGES_YAML = "https://raw.githubusercontent.com/kubernetes/k8s.io/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml"
+var IMAGES_YAML = "https://raw.githubusercontent.com/kubernetes/k8s.io/main/registry.k8s.io/images/k8s-staging-ingress-nginx/images.yaml"
 var ctx = context.Background() // Context used for GitHub Client
 
 const INDEX_DOCS = "docs/deploy/index.md" //index.md has a version of the controller and needs to updated

From 81cf94ea482c364e306ca27e4219ac61c0eca56b Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 24 Mar 2023 13:27:00 -0400
Subject: [PATCH 0692/1641] release 1.7.0 chart 4.6.0

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 charts/ingress-nginx/Chart.yaml | 4 ++--
 charts/ingress-nginx/README.md  | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 130fe06fd..bad5e2a8c 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -15,7 +15,7 @@ annotations:
     - "Fix incorrect annotation name in upstream hashing configuration (#9617)"
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 4.6.0
+appVersion: 1.7.0
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 engine: gotpl
@@ -32,4 +32,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.5.4
+version: 4.6.0
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index dcd5af57e..cb3848634 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.5.4](https://img.shields.io/badge/Version-4.5.4-informational?style=flat-square) ![AppVersion: 4.6.0](https://img.shields.io/badge/AppVersion-4.6.0-informational?style=flat-square)
+![Version: 4.6.0](https://img.shields.io/badge/Version-4.6.0-informational?style=flat-square) ![AppVersion: 1.7.0](https://img.shields.io/badge/AppVersion-1.7.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 

From c84ae78bdfabb1f93bf0e87cdff34c75c744b8df Mon Sep 17 00:00:00 2001
From: Mohammad Yasir <74600745+Yasir761@users.noreply.github.com>
Date: Mon, 27 Mar 2023 19:44:30 +0530
Subject: [PATCH 0693/1641] The Ingress-Nginx project recently released version
 1.7.0 of the controller, but the deployment documentation still referenced
 version 1.6.4. This commit updates the documentation to reference the latest
 version, ensuring that users have access to the most up-to-date information.
 Fixes#9787 (#9788)

---
 docs/deploy/index.md | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 49340e2f5..f6ba17a09 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -62,7 +62,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -225,7 +225,7 @@ In AWS, we use a Network load balancer (NLB) to expose the NGINX Ingress control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -233,10 +233,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -282,7 +282,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -299,7 +299,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -307,7 +307,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -315,7 +315,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -330,7 +330,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -357,7 +357,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.6.4/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),

From e4a11295abc4bfd72990ebf7d7b25b6ecfe17cca Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Thu, 30 Mar 2023 11:48:58 -0500
Subject: [PATCH 0694/1641] file parsing for Cgroup2

---
 pkg/util/runtime/cpu_linux.go | 52 +++++++++++++++++++++++++++++++++--
 1 file changed, 50 insertions(+), 2 deletions(-)

diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index cfc49d924..a69a4432c 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -43,8 +43,16 @@ func NumCPU() int {
 		return cpus
 	}
 
-	cpuQuota := readCgroupFileToInt64(cgroupPath, "cpu.cfs_quota_us")
-	cpuPeriod := readCgroupFileToInt64(cgroupPath, "cpu.cfs_period_us")
+	cgroupVersion := getCgroupVersion();
+	cpuQuota := -1;
+	cpuPeriod := -1;
+
+	if cgroupVersion == 1  {
+		cpuQuota := readCgroupFileToInt64(cgroupPath, "cpu.cfs_quota_us")
+		cpuPeriod := readCgroupFileToInt64(cgroupPath, "cpu.cfs_period_us")
+	} else if cgroupVersion == 2 {
+		cpuQuota, cpuPeriod := readCgroup2FileToInt64Tuple(cgroupPath, "cpu.max")
+	} 
 
 	if cpuQuota == -1 || cpuPeriod == -1 {
 		return cpus
@@ -53,6 +61,46 @@ func NumCPU() int {
 	return int(math.Ceil(float64(cpuQuota) / float64(cpuPeriod)))
 }
 
+func getCgroupVersion() int64 {
+	// TODO: detect version
+	return 2;
+}
+
+func readCgroup2FileToInt64Tuple(cgroupPath, cgroupFile string) (int64, int64) {
+	contents, err := os.ReadFile(filepath.Join(cgroupPath, cgroupFile))
+
+	if err != nil {
+		return -1, -1;
+	}
+
+	// file contents looks like: $MAX $PERIOD
+	// $MAX can have value "max" indicating no limit
+
+	values :=  strings.Fields(string(contents));
+
+	if values[0] == "max" {
+		return -1, -1;
+	}
+
+	cpuQuota, err := strconv.ParseInt(values[0], 10, 64);
+
+	if  err != nil {
+		return -1, -1;
+	}
+
+	if len(values) == 1 {
+		return cpuQuota, 1;
+	}
+
+	cpuPeriod, err := strconv.ParseInt(values[1], 10, 64);
+
+	if err != nil {
+		return -1, -1;
+	}
+
+	return cpuQuota, cpuPeriod;
+}
+
 func readCgroupFileToInt64(cgroupPath, cgroupFile string) int64 {
 	contents, err := os.ReadFile(filepath.Join(cgroupPath, cgroupFile))
 	if err != nil {

From 221e85f6f2e11455cdeeb5b2d4cfd93b51b575c1 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Fri, 31 Mar 2023 00:36:12 -0500
Subject: [PATCH 0695/1641] added version detecting

---
 pkg/util/runtime/cpu_linux.go | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index a69a4432c..431691a7e 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -62,8 +62,12 @@ func NumCPU() int {
 }
 
 func getCgroupVersion() int64 {
-	// TODO: detect version
-	return 2;
+	// /sys/fs/cgroup/cgroup.controllers will not exist with cgroupsv1
+	if _, err := os.Stat("/sys/fs/cgroup/cgroup.controllers"); err == nil {
+		return 2;
+	} else {
+		return 1;
+	}
 }
 
 func readCgroup2FileToInt64Tuple(cgroupPath, cgroupFile string) (int64, int64) {
@@ -75,6 +79,7 @@ func readCgroup2FileToInt64Tuple(cgroupPath, cgroupFile string) (int64, int64) {
 
 	// file contents looks like: $MAX $PERIOD
 	// $MAX can have value "max" indicating no limit
+	// it is possible for $PERIOD to be unset
 
 	values :=  strings.Fields(string(contents));
 

From 3ae35a045dc0d103c6d6511ffa516ebddb11ac14 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Fri, 31 Mar 2023 00:52:14 -0500
Subject: [PATCH 0696/1641] ran gofmt

---
 pkg/util/runtime/cpu_linux.go | 34 +++++++++++++++++-----------------
 1 file changed, 17 insertions(+), 17 deletions(-)

diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index 431691a7e..7f46a6dd1 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -43,16 +43,16 @@ func NumCPU() int {
 		return cpus
 	}
 
-	cgroupVersion := getCgroupVersion();
-	cpuQuota := -1;
-	cpuPeriod := -1;
+	cgroupVersion := getCgroupVersion()
+	cpuQuota := -1
+	cpuPeriod := -1
 
-	if cgroupVersion == 1  {
+	if cgroupVersion == 1 {
 		cpuQuota := readCgroupFileToInt64(cgroupPath, "cpu.cfs_quota_us")
 		cpuPeriod := readCgroupFileToInt64(cgroupPath, "cpu.cfs_period_us")
 	} else if cgroupVersion == 2 {
 		cpuQuota, cpuPeriod := readCgroup2FileToInt64Tuple(cgroupPath, "cpu.max")
-	} 
+	}
 
 	if cpuQuota == -1 || cpuPeriod == -1 {
 		return cpus
@@ -64,9 +64,9 @@ func NumCPU() int {
 func getCgroupVersion() int64 {
 	// /sys/fs/cgroup/cgroup.controllers will not exist with cgroupsv1
 	if _, err := os.Stat("/sys/fs/cgroup/cgroup.controllers"); err == nil {
-		return 2;
+		return 2
 	} else {
-		return 1;
+		return 1
 	}
 }
 
@@ -74,36 +74,36 @@ func readCgroup2FileToInt64Tuple(cgroupPath, cgroupFile string) (int64, int64) {
 	contents, err := os.ReadFile(filepath.Join(cgroupPath, cgroupFile))
 
 	if err != nil {
-		return -1, -1;
+		return -1, -1
 	}
 
 	// file contents looks like: $MAX $PERIOD
 	// $MAX can have value "max" indicating no limit
 	// it is possible for $PERIOD to be unset
 
-	values :=  strings.Fields(string(contents));
+	values := strings.Fields(string(contents))
 
 	if values[0] == "max" {
-		return -1, -1;
+		return -1, -1
 	}
 
-	cpuQuota, err := strconv.ParseInt(values[0], 10, 64);
+	cpuQuota, err := strconv.ParseInt(values[0], 10, 64)
 
-	if  err != nil {
-		return -1, -1;
+	if err != nil {
+		return -1, -1
 	}
 
 	if len(values) == 1 {
-		return cpuQuota, 1;
+		return cpuQuota, 1
 	}
 
-	cpuPeriod, err := strconv.ParseInt(values[1], 10, 64);
+	cpuPeriod, err := strconv.ParseInt(values[1], 10, 64)
 
 	if err != nil {
-		return -1, -1;
+		return -1, -1
 	}
 
-	return cpuQuota, cpuPeriod;
+	return cpuQuota, cpuPeriod
 }
 
 func readCgroupFileToInt64(cgroupPath, cgroupFile string) int64 {

From 7f6472617bf086712d995418e2e4df98e2ee4682 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Fri, 31 Mar 2023 00:53:34 -0500
Subject: [PATCH 0697/1641] declarations to assignments

---
 pkg/util/runtime/cpu_linux.go | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index 7f46a6dd1..d6ea87ad6 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -48,10 +48,10 @@ func NumCPU() int {
 	cpuPeriod := -1
 
 	if cgroupVersion == 1 {
-		cpuQuota := readCgroupFileToInt64(cgroupPath, "cpu.cfs_quota_us")
-		cpuPeriod := readCgroupFileToInt64(cgroupPath, "cpu.cfs_period_us")
+		cpuQuota = readCgroupFileToInt64(cgroupPath, "cpu.cfs_quota_us")
+		cpuPeriod = readCgroupFileToInt64(cgroupPath, "cpu.cfs_period_us")
 	} else if cgroupVersion == 2 {
-		cpuQuota, cpuPeriod := readCgroup2FileToInt64Tuple(cgroupPath, "cpu.max")
+		cpuQuota, cpuPeriod = readCgroup2FileToInt64Tuple(cgroupPath, "cpu.max")
 	}
 
 	if cpuQuota == -1 || cpuPeriod == -1 {

From a080ea1f29bf1b48b5cfe8cdda2f0278c185f487 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Fri, 31 Mar 2023 00:58:43 -0500
Subject: [PATCH 0698/1641] correct types

---
 pkg/util/runtime/cpu_linux.go | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index d6ea87ad6..5228c93a2 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -44,8 +44,8 @@ func NumCPU() int {
 	}
 
 	cgroupVersion := getCgroupVersion()
-	cpuQuota := -1
-	cpuPeriod := -1
+	cpuQuota := int64(-1)
+	cpuPeriod := int64(-1)
 
 	if cgroupVersion == 1 {
 		cpuQuota = readCgroupFileToInt64(cgroupPath, "cpu.cfs_quota_us")

From ddde3b0d607744b7b3cee968be539bc901782164 Mon Sep 17 00:00:00 2001
From: sarab <sarab@sarabsingh.com>
Date: Sun, 2 Apr 2023 03:03:12 +0530
Subject: [PATCH 0699/1641] Switched from N1 to E2 machine

---
 images/ext-auth-example-authsvc/cloudbuild.yaml | 2 +-
 images/go-grpc-greeter-server/cloudbuild.yaml   | 2 +-
 images/httpbin/cloudbuild.yaml                  | 2 +-
 images/nginx/cloudbuild.yaml                    | 2 +-
 images/opentelemetry/cloudbuild.yaml            | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/images/ext-auth-example-authsvc/cloudbuild.yaml b/images/ext-auth-example-authsvc/cloudbuild.yaml
index fbd5d7b63..d77c9fc19 100644
--- a/images/ext-auth-example-authsvc/cloudbuild.yaml
+++ b/images/ext-auth-example-authsvc/cloudbuild.yaml
@@ -2,7 +2,7 @@ timeout: 1200s
 options:
   substitution_option: ALLOW_LOOSE
   # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
-  machineType: N1_HIGHCPU_8
+  machineType: E2_HIGHCPU_8
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
     entrypoint: bash
diff --git a/images/go-grpc-greeter-server/cloudbuild.yaml b/images/go-grpc-greeter-server/cloudbuild.yaml
index f4d6cc6d4..834c0cb85 100644
--- a/images/go-grpc-greeter-server/cloudbuild.yaml
+++ b/images/go-grpc-greeter-server/cloudbuild.yaml
@@ -2,7 +2,7 @@ timeout: 1200s
 options:
   substitution_option: ALLOW_LOOSE
   # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
-  machineType: N1_HIGHCPU_8
+  machineType: E2_HIGHCPU_8
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
     entrypoint: bash
diff --git a/images/httpbin/cloudbuild.yaml b/images/httpbin/cloudbuild.yaml
index 03f269b6e..9f2658b7b 100644
--- a/images/httpbin/cloudbuild.yaml
+++ b/images/httpbin/cloudbuild.yaml
@@ -2,7 +2,7 @@ timeout: 1200s
 options:
   substitution_option: ALLOW_LOOSE
   # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
-  machineType: N1_HIGHCPU_8
+  machineType: E2_HIGHCPU_8
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
     entrypoint: bash
diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index fb9a51225..b3d7b1507 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -2,7 +2,7 @@ timeout: 10800s
 options:
   substitution_option: ALLOW_LOOSE
   # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
-  machineType: N1_HIGHCPU_32
+  machineType: E2_HIGHCPU_32
 steps:
   - name: 'gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90'
     entrypoint: bash
diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
index e2aa5a2b2..0096c0f44 100644
--- a/images/opentelemetry/cloudbuild.yaml
+++ b/images/opentelemetry/cloudbuild.yaml
@@ -2,7 +2,7 @@ timeout: 10800s
 options:
   substitution_option: ALLOW_LOOSE
   # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
-  machineType: N1_HIGHCPU_32
+  machineType: E2_HIGHCPU_32
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
     entrypoint: bash

From 3b46b85451e2f1c70a873e02639f654dd43bbe7f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 4 Apr 2023 05:41:54 -0700
Subject: [PATCH 0700/1641] Bump sigs.k8s.io/controller-runtime from 0.14.5 to
 0.14.6 (#9822)

Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) from 0.14.5 to 0.14.6.
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases)
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.14.5...v0.14.6)

---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-runtime
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index f351bae17..f65660dd0 100644
--- a/go.mod
+++ b/go.mod
@@ -40,7 +40,7 @@ require (
 	k8s.io/component-base v0.26.3
 	k8s.io/klog/v2 v2.90.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.14.5
+	sigs.k8s.io/controller-runtime v0.14.6
 	sigs.k8s.io/mdtoc v1.1.0
 )
 
diff --git a/go.sum b/go.sum
index 00918fc47..e7db50a63 100644
--- a/go.sum
+++ b/go.sum
@@ -771,8 +771,8 @@ pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
-sigs.k8s.io/controller-runtime v0.14.5 h1:6xaWFqzT5KuAQ9ufgUaj1G/+C4Y1GRkhrxl+BJ9i+5s=
-sigs.k8s.io/controller-runtime v0.14.5/go.mod h1:WqIdsAY6JBsjfc/CqO0CORmNtoCtE4S6qbPc9s68h+0=
+sigs.k8s.io/controller-runtime v0.14.6 h1:oxstGVvXGNnMvY7TAESYk+lzr6S3V5VFxQ6d92KcwQA=
+sigs.k8s.io/controller-runtime v0.14.6/go.mod h1:WqIdsAY6JBsjfc/CqO0CORmNtoCtE4S6qbPc9s68h+0=
 sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 h1:iXTIw73aPyC+oRdyqqvVJuloN1p0AC/kzH07hu3NE+k=
 sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/kustomize/api v0.12.1 h1:7YM7gW3kYBwtKvoY216ZzY+8hM+lV53LUayghNRJ0vM=

From ff048d86b09b91ea3c4c85a556a09ac4a4714637 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 4 Apr 2023 05:43:57 -0700
Subject: [PATCH 0701/1641] Bump google.golang.org/grpc from 1.53.0 to 1.54.0
 (#9794)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.53.0 to 1.54.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.53.0...v1.54.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index f65660dd0..383754428 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.7.0
-	google.golang.org/grpc v1.53.0
+	google.golang.org/grpc v1.54.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index e7db50a63..e78672fa9 100644
--- a/go.sum
+++ b/go.sum
@@ -683,8 +683,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.53.0 h1:LAv2ds7cmFV/XTS3XG1NneeENYrXGmorPxsBbptIjNc=
-google.golang.org/grpc v1.53.0/go.mod h1:OnIrk0ipVdj4N5d9IUoFUx72/VlD7+jUsHwZgwSMQpw=
+google.golang.org/grpc v1.54.0 h1:EhTqbhiYeixwWQtAEZAxmV9MGqcjEU2mFx52xCzNyag=
+google.golang.org/grpc v1.54.0/go.mod h1:PUSEXI6iWghWaB6lXM4knEgpJNu2qUcKfDtNci3EC2g=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From 8249be4e29c2f781654665bb86057616737fa327 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 4 Apr 2023 05:45:53 -0700
Subject: [PATCH 0702/1641] Bump github.com/imdario/mergo from 0.3.13 to 0.3.15
 (#9795)

Bumps [github.com/imdario/mergo](https://github.com/imdario/mergo) from 0.3.13 to 0.3.15.
- [Release notes](https://github.com/imdario/mergo/releases)
- [Commits](https://github.com/imdario/mergo/compare/v0.3.13...v0.3.15)

---
updated-dependencies:
- dependency-name: github.com/imdario/mergo
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 5 ++---
 2 files changed, 3 insertions(+), 4 deletions(-)

diff --git a/go.mod b/go.mod
index 383754428..5331a7bbe 100644
--- a/go.mod
+++ b/go.mod
@@ -6,7 +6,7 @@ require (
 	github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a
 	github.com/eapache/channels v1.1.0
 	github.com/fsnotify/fsnotify v1.6.0
-	github.com/imdario/mergo v0.3.13
+	github.com/imdario/mergo v0.3.15
 	github.com/json-iterator/go v1.1.12
 	github.com/kylelemons/godebug v1.1.0
 	github.com/mitchellh/go-ps v1.0.0
diff --git a/go.sum b/go.sum
index e78672fa9..48d90af46 100644
--- a/go.sum
+++ b/go.sum
@@ -204,8 +204,8 @@ github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
-github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
-github.com/imdario/mergo v0.3.13/go.mod h1:4lJ1jqUDcsbIECGy0RUJAXNIhg+6ocWgb1ALK2O4oXg=
+github.com/imdario/mergo v0.3.15 h1:M8XP7IuFNsqUx6VPK2P9OSmsYsI/YFaGil0uD21V3dM=
+github.com/imdario/mergo v0.3.15/go.mod h1:WBLT9ZmE3lPoWsEzCh9LPo3TiwVN+ZKEjmz+hD27ysY=
 github.com/inconshreveable/mousetrap v1.0.1 h1:U3uMjPSQEBMNp1lFxmllqCPM6P5u/Xq7Pgzkat/bFNc=
 github.com/inconshreveable/mousetrap v1.0.1/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
@@ -731,7 +731,6 @@ gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
 gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.0-20200615113413-eeeca48fe776/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-gopkg.in/yaml.v3 v3.0.0/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=

From 0169ed5c873355c705557e2dc3e4aa664330844b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 4 Apr 2023 05:47:54 -0700
Subject: [PATCH 0703/1641] Bump actions/setup-go from 3.5.0 to 4.0.0 (#9796)

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3.5.0 to 4.0.0.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/6edd4406fa81c3da01a34fa6f6343087c207a568...4d34df0c2316fe8122ab82dc22947d607c0c91f9)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml     | 12 ++++++------
 .github/workflows/plugin.yaml |  2 +-
 2 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index c2c108638..83c9fcd18 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -86,7 +86,7 @@ jobs:
       
       - name: Set up Go
         id: go
-        uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
+        uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
         with:
           go-version: '1.20'
           check-latest: true
@@ -105,7 +105,7 @@ jobs:
       
       - name: Set up Go
         id: go
-        uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
+        uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
         with:
           go-version: '1.20'
           check-latest: true
@@ -124,7 +124,7 @@ jobs:
       
       - name: Set up Go
         id: go
-        uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
+        uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
         with:
           go-version: '1.20'
           check-latest: true
@@ -145,7 +145,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
+        uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
         with:
           go-version: '1.20'
           check-latest: true
@@ -211,7 +211,7 @@ jobs:
         uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
 
       - name: Setup Go
-        uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
+        uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
         with:
           go-version: '1.20'
           check-latest: true
@@ -483,7 +483,7 @@ jobs:
       - name: Set up Go
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
+        uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
         with:
           go-version: '1.20'
           check-latest: true
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 87ba6aca9..bc646da87 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -22,7 +22,7 @@ jobs:
           fetch-depth: 0
 
       - name: Set up Go
-        uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 # v3.5.0
+        uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
         with:
           go-version: 1.20
           check-latest: true

From 1684070ca915406c79f31a5afba96e66a0fd4eb6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 4 Apr 2023 05:49:53 -0700
Subject: [PATCH 0704/1641] Bump rajatjindal/krew-release-bot from 0.0.43 to
 0.0.46 (#9797)

Bumps [rajatjindal/krew-release-bot](https://github.com/rajatjindal/krew-release-bot) from 0.0.43 to 0.0.46.
- [Release notes](https://github.com/rajatjindal/krew-release-bot/releases)
- [Changelog](https://github.com/rajatjindal/krew-release-bot/blob/main/.goreleaser.yml)
- [Commits](https://github.com/rajatjindal/krew-release-bot/compare/92da038bbf995803124a8e50ebd438b2f37bbbb0...df3eb197549e3568be8b4767eec31c5e8e8e6ad8)

---
updated-dependencies:
- dependency-name: rajatjindal/krew-release-bot
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/plugin.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index bc646da87..03a7a9bac 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -36,6 +36,6 @@ jobs:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Update new version in krew-index
-        uses: rajatjindal/krew-release-bot@92da038bbf995803124a8e50ebd438b2f37bbbb0 # v0.0.43
+        uses: rajatjindal/krew-release-bot@df3eb197549e3568be8b4767eec31c5e8e8e6ad8 # v0.0.46
         with:
           krew_template_file: cmd/plugin/krew.yaml

From c40a13714bf6cd265171e8eaf03d66c745063f90 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 4 Apr 2023 05:51:54 -0700
Subject: [PATCH 0705/1641] Bump actions/stale from 7.0.0 to 8.0.0 (#9799)

Bumps [actions/stale](https://github.com/actions/stale) from 7.0.0 to 8.0.0.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/stale/compare/6f05e4244c9a0b2ed3401882b05d701dd0a7289b...1160a2240286f5da8ec72b1c0816ce2481aabf84)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/stale.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/stale.yaml b/.github/workflows/stale.yaml
index 8a172d370..b038f522b 100644
--- a/.github/workflows/stale.yaml
+++ b/.github/workflows/stale.yaml
@@ -13,7 +13,7 @@ jobs:
       pull-requests: write
 
     steps:
-      - uses: actions/stale@6f05e4244c9a0b2ed3401882b05d701dd0a7289b # v7.0.0
+      - uses: actions/stale@1160a2240286f5da8ec72b1c0816ce2481aabf84 # v8.0.0
         with:
           stale-issue-message: "This is stale, but we won't close it automatically, just bare in mind the maintainers may be busy with other tasks and will reach your issue ASAP. If you have any question or request to prioritize this, please reach `#ingress-nginx-dev` on Kubernetes Slack."
           stale-pr-message: "This is stale, but we won't close it automatically, just bare in mind the maintainers may be busy with other tasks and will reach your issue ASAP. If you have any question or request to prioritize this, please reach `#ingress-nginx-dev` on Kubernetes Slack."

From 0800f30dcb2dd791e8850948909ff22965915b0f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 4 Apr 2023 05:53:53 -0700
Subject: [PATCH 0706/1641] Bump github.com/opencontainers/runc from 1.1.4 to
 1.1.5 (#9806)

Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.4 to 1.1.5.
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/v1.1.5/CHANGELOG.md)
- [Commits](https://github.com/opencontainers/runc/compare/v1.1.4...v1.1.5)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 5331a7bbe..24c319bc7 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo/v2 v2.9.0
-	github.com/opencontainers/runc v1.1.4
+	github.com/opencontainers/runc v1.1.5
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.14.0
 	github.com/prometheus/client_model v0.3.0
diff --git a/go.sum b/go.sum
index 48d90af46..8ee1dc453 100644
--- a/go.sum
+++ b/go.sum
@@ -294,8 +294,8 @@ github.com/onsi/ginkgo/v2 v2.9.0/go.mod h1:4xkjoL/tZv4SMWeww56BU5kAt19mVB47gTWxm
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.27.1 h1:rfztXRbg6nv/5f+Raen9RcGoSecHIFgBBLQK3Wdj754=
-github.com/opencontainers/runc v1.1.4 h1:nRCz/8sKg6K6jgYAFLDlXzPeITBZJyX28DBVhWD+5dg=
-github.com/opencontainers/runc v1.1.4/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
+github.com/opencontainers/runc v1.1.5 h1:L44KXEpKmfWDcS02aeGm8QNTFXTo2D+8MYGDIJ/GDEs=
+github.com/opencontainers/runc v1.1.5/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=

From 5806b5800328c2b8f45808cc4fb32f4f4913c13d Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Tue, 4 Apr 2023 14:55:53 +0200
Subject: [PATCH 0707/1641] Values: Fix indention of commented values. (#9812)

---
 charts/ingress-nginx/values.yaml | 36 ++++++++++++++++----------------
 1 file changed, 18 insertions(+), 18 deletions(-)

diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 6627bf220..c2e8cdcd7 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -375,26 +375,26 @@ controller:
       #  annotations:
       # key: value
     triggers: []
-    #     - type: prometheus
-    #       metadata:
-    #         serverAddress: http://<prometheus-host>:9090
-    #         metricName: http_requests_total
-    #         threshold: '100'
-    #         query: sum(rate(http_requests_total{deployment="my-deployment"}[2m]))
+    # - type: prometheus
+    #   metadata:
+    #     serverAddress: http://<prometheus-host>:9090
+    #     metricName: http_requests_total
+    #     threshold: '100'
+    #     query: sum(rate(http_requests_total{deployment="my-deployment"}[2m]))
 
     behavior: {}
-  #     scaleDown:
-  #       stabilizationWindowSeconds: 300
-  #       policies:
-  #       - type: Pods
-  #         value: 1
-  #         periodSeconds: 180
-  #     scaleUp:
-  #       stabilizationWindowSeconds: 300
-  #       policies:
-  #       - type: Pods
-  #         value: 2
-  #         periodSeconds: 60
+    # scaleDown:
+    #   stabilizationWindowSeconds: 300
+    #   policies:
+    #   - type: Pods
+    #     value: 1
+    #     periodSeconds: 180
+    # scaleUp:
+    #   stabilizationWindowSeconds: 300
+    #   policies:
+    #   - type: Pods
+    #     value: 2
+    #     periodSeconds: 60
 
   # -- Enable mimalloc as a drop-in replacement for malloc.
   ## ref: https://github.com/microsoft/mimalloc

From 149374d9cd82eafab67019398c082563840f1f49 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 4 Apr 2023 05:57:54 -0700
Subject: [PATCH 0708/1641] Bump ossf/scorecard-action from 2.1.2 to 2.1.3
 (#9823)

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.1.2 to 2.1.3.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](https://github.com/ossf/scorecard-action/compare/e38b1902ae4f44df626f11ba0734b14fb91f8f86...80e868c13c90f172d68d1f4501dee99e2479f7af)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 529cc7c28..608d10bcb 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -32,7 +32,7 @@ jobs:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@e38b1902ae4f44df626f11ba0734b14fb91f8f86 # v2.1.2
+        uses: ossf/scorecard-action@80e868c13c90f172d68d1f4501dee99e2479f7af # v2.1.3
         with:
           results_file: results.sarif
           results_format: sarif

From c76179c04e880b9ec16e6a4a2c47c1fc54e71cc7 Mon Sep 17 00:00:00 2001
From: viq <vicviq@gmail.com>
Date: Tue, 4 Apr 2023 16:45:56 +0200
Subject: [PATCH 0709/1641] ISO 8601 date format (#9682)

Adjust the tag to be in sortable format, compatible with ISO 8601.
---
 images/cfssl/Makefile                  | 2 +-
 images/custom-error-pages/Makefile     | 2 +-
 images/fastcgi-helloserver/Makefile    | 2 +-
 images/go-grpc-greeter-server/Makefile | 2 +-
 images/httpbin/Makefile                | 2 +-
 images/kube-webhook-certgen/Makefile   | 2 +-
 images/opentelemetry/Makefile          | 2 +-
 images/test-runner/Makefile            | 2 +-
 8 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/images/cfssl/Makefile b/images/cfssl/Makefile
index b1909abe3..1521d2c78 100644
--- a/images/cfssl/Makefile
+++ b/images/cfssl/Makefile
@@ -18,7 +18,7 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%m%d%Y)-$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-cfssl
diff --git a/images/custom-error-pages/Makefile b/images/custom-error-pages/Makefile
index 7564b813d..b014beabe 100644
--- a/images/custom-error-pages/Makefile
+++ b/images/custom-error-pages/Makefile
@@ -20,7 +20,7 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%m%d%Y)-$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/nginx-errors
diff --git a/images/fastcgi-helloserver/Makefile b/images/fastcgi-helloserver/Makefile
index c1b54703f..6c5a3647a 100644
--- a/images/fastcgi-helloserver/Makefile
+++ b/images/fastcgi-helloserver/Makefile
@@ -20,7 +20,7 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%m%d%Y)-$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-fastcgi-helloserver
diff --git a/images/go-grpc-greeter-server/Makefile b/images/go-grpc-greeter-server/Makefile
index 523b83bfb..e6b6efae6 100644
--- a/images/go-grpc-greeter-server/Makefile
+++ b/images/go-grpc-greeter-server/Makefile
@@ -18,7 +18,7 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%m%d%Y)-$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/go-grpc-greeter-server
diff --git a/images/httpbin/Makefile b/images/httpbin/Makefile
index ac363dfa8..5d92ffcb5 100644
--- a/images/httpbin/Makefile
+++ b/images/httpbin/Makefile
@@ -18,7 +18,7 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%m%d%Y)-$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-httpbin
diff --git a/images/kube-webhook-certgen/Makefile b/images/kube-webhook-certgen/Makefile
index f1d3edc5b..1716bc07e 100644
--- a/images/kube-webhook-certgen/Makefile
+++ b/images/kube-webhook-certgen/Makefile
@@ -19,7 +19,7 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%m%d%Y)-$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/kube-webhook-certgen
diff --git a/images/opentelemetry/Makefile b/images/opentelemetry/Makefile
index 20fb7ec63..695dcf632 100644
--- a/images/opentelemetry/Makefile
+++ b/images/opentelemetry/Makefile
@@ -21,7 +21,7 @@ DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
 # 0.0.0 shouldn't clobber any released builds
-TAG ?=v$(shell date +%m%d%Y)-$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
 IMAGE = $(REGISTRY)/opentelemetry
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index a8c3a4560..729f27415 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -18,7 +18,7 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%m%d%Y)-$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-runner

From 5d4827af0cfb6242ca69395f4d033f700510f557 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 4 Apr 2023 08:05:54 -0700
Subject: [PATCH 0710/1641] Bump actions/checkout from 3.4.0 to 3.5.0 (#9798)

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.4.0 to 3.5.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/24cb9080177205b6e8c946b17badbe402adc938f...8f4b7f84864484a7bf31766abe9204da3cbe65b3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 22 +++++++++++-----------
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  2 +-
 .github/workflows/vulnerability-scans.yaml |  4 ++--
 8 files changed, 21 insertions(+), 21 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 83c9fcd18..b810a3aba 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -39,7 +39,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -65,7 +65,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
 
       - name: Run Gosec Security Scanner
         uses: securego/gosec@a459eb0ba387d9bd083d5c2e2354dbeef2465038 # v2.15.0
@@ -82,7 +82,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
       
       - name: Set up Go
         id: go
@@ -101,7 +101,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
       
       - name: Set up Go
         id: go
@@ -120,7 +120,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
       
       - name: Set up Go
         id: go
@@ -141,7 +141,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
 
       - name: Set up Go
         id: go
@@ -208,7 +208,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
 
       - name: Setup Go
         uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
@@ -288,7 +288,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -342,7 +342,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -391,7 +391,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
@@ -464,7 +464,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 46a587ded..e18f71a20 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@f46c48ed6d4f1227fb2d9ea62bf6bcbed315589e # v3.0.4
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 3ab49ef10..5a0f6bb7b 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 4e7fde34f..e3fa2d779 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
 
       - name: Run Artifact Hub lint
         run: |
@@ -61,7 +61,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index dd31420bf..4b7e000a5 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 03a7a9bac..c56535223 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -17,7 +17,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 608d10bcb..b0ce14f51 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
         with:
           persist-credentials: false
 
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 9649140ec..aae43d03c 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.4.0
+        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
 
       - shell: bash
         id: test

From 522683813a200fb06342a035db49963b1e76aa26 Mon Sep 17 00:00:00 2001
From: Saumya <76432998+SaumyaBhushan@users.noreply.github.com>
Date: Wed, 5 Apr 2023 17:35:41 +0530
Subject: [PATCH 0711/1641] updated NGINX_BASE image in project (#9829)

---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index bf23fa5a7..5f1751bbf 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:66a760794f91809bcd897cbdb45435653d73fd92@sha256:86c1581e69dc92d107f8edd36724890ea682a3afda8c1fb1ba41aabc7bc0128d
\ No newline at end of file
+registry.k8s.io/ingress-nginx/nginx:91057c439cf07ffb62887b8a8bda66ce3cbe39ca@sha256:3b650123c755392f8c0eb9a356b12716327106e624ab5f5b43bc25ab130978fb
\ No newline at end of file

From 26d83d1b2058cc9c23657b4e97b9e5a6d5fe9871 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 6 Apr 2023 13:25:48 -0400
Subject: [PATCH 0712/1641] update all container tags with date and sha,
 upgrade all containers (#9834)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/ci.yaml                     |  1 +
 hack/verify-chart-lint.sh                     |  2 +-
 images/cfssl/cloudbuild.yaml                  |  1 -
 images/cfssl/rootfs/Dockerfile                |  5 +-
 images/custom-error-pages/cloudbuild.yaml     |  1 -
 images/custom-error-pages/rootfs/Dockerfile   |  4 +-
 images/echo/Makefile                          |  2 +-
 images/echo/cloudbuild.yaml                   |  1 -
 images/echo/rootfs/Dockerfile                 |  2 +-
 .../ext-auth-example-authsvc/cloudbuild.yaml  |  1 -
 images/fastcgi-helloserver/cloudbuild.yaml    |  1 -
 images/go-grpc-greeter-server/cloudbuild.yaml |  1 -
 images/httpbin/cloudbuild.yaml                |  1 -
 images/httpbin/rootfs/Dockerfile              |  2 +-
 images/kube-webhook-certgen/cloudbuild.yaml   |  1 -
 images/nginx/Makefile                         |  2 +-
 images/nginx/cloudbuild.yaml                  |  1 -
 images/nginx/rootfs/Dockerfile                |  2 +-
 images/opentelemetry/cloudbuild.yaml          |  1 -
 images/test-runner/Makefile                   | 45 ++++++++---
 images/test-runner/cloudbuild.yaml            |  2 +-
 images/test-runner/rootfs/Dockerfile          | 74 +++++++++----------
 test/e2e-image/Dockerfile                     |  3 +-
 test/e2e-image/Makefile                       |  2 +-
 24 files changed, 90 insertions(+), 68 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index b810a3aba..6323c65be 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -22,6 +22,7 @@ on:
         required: false
         type: boolean
 
+
 permissions:
   contents: read
 
diff --git a/hack/verify-chart-lint.sh b/hack/verify-chart-lint.sh
index 2d59dadce..9ece681e0 100755
--- a/hack/verify-chart-lint.sh
+++ b/hack/verify-chart-lint.sh
@@ -20,5 +20,5 @@ set -o pipefail
 
 KUBE_ROOT="$( cd "$(dirname "$0")../" >/dev/null 2>&1 ; pwd -P )"
 # TODO: This is a temporary workaround while we don't update Helm Chart test
-curl https://raw.githubusercontent.com/helm/chart-testing/v3.7.0/etc/chart_schema.yaml -o /tmp/chart_schema.yaml
+curl https://raw.githubusercontent.com/helm/chart-testing/v3.8.0/etc/chart_schema.yaml -o /tmp/chart_schema.yaml
 ct lint --charts ${KUBE_ROOT}/charts/ingress-nginx --validate-maintainers=false --chart-yaml-schema=/tmp/chart_schema.yaml
diff --git a/images/cfssl/cloudbuild.yaml b/images/cfssl/cloudbuild.yaml
index 5fb9e0c96..3f0abee99 100644
--- a/images/cfssl/cloudbuild.yaml
+++ b/images/cfssl/cloudbuild.yaml
@@ -6,7 +6,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - TAG=$_GIT_TAG
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index 7841e189c..a50c715ea 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -14,8 +14,11 @@
 
 FROM alpine:3.17.2
 
+
 RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
-RUN apk add --no-cache \
+RUN apk update \
+    && apk upgrade &&  \
+    apk add --no-cache \
     bash \
     cfssl@testing
 
diff --git a/images/custom-error-pages/cloudbuild.yaml b/images/custom-error-pages/cloudbuild.yaml
index 8c96d289c..3490bd73b 100644
--- a/images/custom-error-pages/cloudbuild.yaml
+++ b/images/custom-error-pages/cloudbuild.yaml
@@ -6,7 +6,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - TAG=$_GIT_TAG
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index 942228eac..b34bb6977 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -13,7 +13,9 @@
 # limitations under the License.
 
 FROM golang:1.20.1-alpine3.17 as builder
-RUN apk add git
+
+RUN apk update \
+    && apk upgrade && apk add git
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/custom-error-pages
 
diff --git a/images/echo/Makefile b/images/echo/Makefile
index 0ab1c945f..5dc546a8b 100644
--- a/images/echo/Makefile
+++ b/images/echo/Makefile
@@ -18,7 +18,7 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v1.0.0
+TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-echo
diff --git a/images/echo/cloudbuild.yaml b/images/echo/cloudbuild.yaml
index 8349b5a7f..8f59b6727 100644
--- a/images/echo/cloudbuild.yaml
+++ b/images/echo/cloudbuild.yaml
@@ -6,7 +6,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - TAG=$_GIT_TAG
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/echo/rootfs/Dockerfile b/images/echo/rootfs/Dockerfile
index 4c9b6ab55..c4ab26561 100644
--- a/images/echo/rootfs/Dockerfile
+++ b/images/echo/rootfs/Dockerfile
@@ -2,7 +2,7 @@ ARG BASE_IMAGE
 
 FROM ${BASE_IMAGE}
 
-RUN apk add -U perl curl make unzip
+RUN apk update && apk upgrade && apk add -U --no-cache perl curl make unzip
 
 ARG LUAROCKS_VERSION
 ARG LUAROCKS_SHA
diff --git a/images/ext-auth-example-authsvc/cloudbuild.yaml b/images/ext-auth-example-authsvc/cloudbuild.yaml
index d77c9fc19..8de32fdc9 100644
--- a/images/ext-auth-example-authsvc/cloudbuild.yaml
+++ b/images/ext-auth-example-authsvc/cloudbuild.yaml
@@ -8,7 +8,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - TAG=$_GIT_TAG
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index cb4ac2e94..92f4be017 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -6,7 +6,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - TAG=$_GIT_TAG
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/go-grpc-greeter-server/cloudbuild.yaml b/images/go-grpc-greeter-server/cloudbuild.yaml
index 834c0cb85..d618c5e6f 100644
--- a/images/go-grpc-greeter-server/cloudbuild.yaml
+++ b/images/go-grpc-greeter-server/cloudbuild.yaml
@@ -8,7 +8,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - TAG=$_GIT_TAG
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/httpbin/cloudbuild.yaml b/images/httpbin/cloudbuild.yaml
index 9f2658b7b..ffd8c9974 100644
--- a/images/httpbin/cloudbuild.yaml
+++ b/images/httpbin/cloudbuild.yaml
@@ -8,7 +8,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - TAG=$_GIT_TAG
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/httpbin/rootfs/Dockerfile b/images/httpbin/rootfs/Dockerfile
index 0e490be74..a05f6872f 100644
--- a/images/httpbin/rootfs/Dockerfile
+++ b/images/httpbin/rootfs/Dockerfile
@@ -17,7 +17,7 @@ FROM alpine:3.17.2
 ENV LC_ALL=C.UTF-8
 ENV LANG=C.UTF-8
 
-RUN apk update \
+RUN apk upgrade && apk update \
   && apk add --no-cache \
     python3 python3-dev \
     musl-dev gcc g++ make \
diff --git a/images/kube-webhook-certgen/cloudbuild.yaml b/images/kube-webhook-certgen/cloudbuild.yaml
index 127dee6eb..ef938ef6a 100644
--- a/images/kube-webhook-certgen/cloudbuild.yaml
+++ b/images/kube-webhook-certgen/cloudbuild.yaml
@@ -21,7 +21,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - TAG=$_GIT_TAG
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/nginx/Makefile b/images/nginx/Makefile
index 438d0cfe1..053f1e5e8 100644
--- a/images/nginx/Makefile
+++ b/images/nginx/Makefile
@@ -21,7 +21,7 @@ DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
 # 0.0.0 shouldn't clobber any released builds
-TAG ?= 0.0
+TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
 IMAGE = $(REGISTRY)/nginx
diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index b3d7b1507..003209d77 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -9,7 +9,6 @@ steps:
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
       - BASE_REF=$_PULL_BASE_REF
-      - TAG=$_PULL_BASE_SHA
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       - HOME=/root
     args:
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 3279af5d5..a968eb1b3 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -17,7 +17,7 @@ COPY . /
 
 RUN apk update \
   && apk upgrade \
-  && apk add -U bash \
+  && apk add -U bash --no-cache \
   && /build.sh
 
 # Use a multi-stage build
diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
index 0096c0f44..82b75e6e6 100644
--- a/images/opentelemetry/cloudbuild.yaml
+++ b/images/opentelemetry/cloudbuild.yaml
@@ -8,7 +8,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - TAG=$_GIT_TAG
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 729f27415..289270e26 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -30,27 +30,52 @@ export DOCKER_CLI_EXPERIMENTAL=enabled
 
 # build with buildx
 PLATFORMS?=linux/amd64,linux/arm64
-OUTPUT=
+OUTPUT?=
 PROGRESS=plain
 
-build: ensure-buildx
-	docker buildx build \
-		--platform=${PLATFORMS} $(OUTPUT) \
-		--progress=$(PROGRESS) \
+image:
+	echo "Building docker image ($(ARCH))..."
+	docker build \
+		${PLATFORM_FLAG} ${PLATFORM} \
+		--no-cache \
 		--pull \
-		--build-arg BASE_IMAGE=$(NGINX_BASE_IMAGE) \
+		--push \
+		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
 		--build-arg GOLANG_VERSION=1.20.1 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
-		--build-arg K8S_RELEASE=v1.24.2 \
+		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
 		--build-arg RESTY_CLI_SHA=e5f4f3128af49ba5c4d039d0554e5ae91bbe05866f60eccfa96d3653274bff90 \
 		--build-arg LUAROCKS_VERSION=3.8.0 \
 		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
-		--build-arg CHART_TESTING_VERSION=3.7.0 \
+		--build-arg CHART_TESTING_VERSION=3.8.0 \
 		--build-arg YAML_LINT_VERSION=1.27.1 \
 		--build-arg YAMALE_VERSION=4.0.4 \
-		--build-arg HELM_VERSION=v3.9.0 \
-		-t $(IMAGE):$(TAG) rootfs
+		--build-arg HELM_VERSION=3.11.2 \
+		--build-arg GINKGO_VERSION=2.9.0 \
+		--build-arg GOLINT_VERSION=latest \
+		-t ${IMAGE}:${TAG} rootfs
+
+build: ensure-buildx
+	docker buildx build \
+		--platform=${PLATFORMS} ${OUTPUT} \
+		--progress=${PROGRESS} \
+		--pull \
+		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
+		--build-arg GOLANG_VERSION=1.20.1 \
+		--build-arg ETCD_VERSION=3.4.3-0 \
+		--build-arg K8S_RELEASE=v1.26.0 \
+		--build-arg RESTY_CLI_VERSION=0.27 \
+		--build-arg RESTY_CLI_SHA=e5f4f3128af49ba5c4d039d0554e5ae91bbe05866f60eccfa96d3653274bff90 \
+		--build-arg LUAROCKS_VERSION=3.8.0 \
+		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
+		--build-arg CHART_TESTING_VERSION=3.8.0 \
+		--build-arg YAML_LINT_VERSION=1.27.1 \
+		--build-arg YAMALE_VERSION=4.0.4 \
+		--build-arg HELM_VERSION=3.11.2 \
+		--build-arg GINKGO_VERSION=2.9.0 \
+		--build-arg GOLINT_VERSION=latest \
+		-t ${IMAGE}:${TAG} rootfs
 
 # push the cross built image
 push: OUTPUT=--push
diff --git a/images/test-runner/cloudbuild.yaml b/images/test-runner/cloudbuild.yaml
index b1f32d6a2..ff4667b0c 100644
--- a/images/test-runner/cloudbuild.yaml
+++ b/images/test-runner/cloudbuild.yaml
@@ -6,7 +6,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - TAG=$_GIT_TAG
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
@@ -20,3 +19,4 @@ steps:
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"
+  _PULL_BASE_SHA: '12345'
\ No newline at end of file
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 7872b7a2b..0b691a7d2 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -11,7 +11,6 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-
 ARG BASE_IMAGE
 ARG GOLANG_VERSION
 ARG ETCD_VERSION
@@ -21,6 +20,20 @@ FROM registry.k8s.io/etcd:${ETCD_VERSION} as etcd
 
 FROM ${BASE_IMAGE}
 
+ARG RESTY_CLI_VERSION
+ARG RESTY_CLI_SHA
+ARG LUAROCKS_VERSION
+ARG LUAROCKS_SHA
+ARG TARGETARCH
+ARG K8S_RELEASE
+ARG CHART_TESTING_VERSION
+ARG HELM_VERSION
+ARG YAMALE_VERSION
+ARG YAML_LINT_VERSION
+ARG GINKGO_VERSION
+ARG GOLINT_VERSION
+
+
 RUN set -eux; \
 	if [ -e /etc/nsswitch.conf ]; then \
 		grep '^hosts: files dns' /etc/nsswitch.conf; \
@@ -28,13 +41,16 @@ RUN set -eux; \
 		echo 'hosts: files dns' > /etc/nsswitch.conf; \
 	fi
 
-
 COPY --from=GO   /usr/local/go /usr/local/go
+ENV GOPATH /go
+ENV PATH $GOPATH/bin:/usr/local/go/bin:$PATH
+RUN mkdir -p "$GOPATH/src" "$GOPATH/bin" && chmod -R 777 "$GOPATH"
+
 COPY --from=etcd /usr/local/bin/etcd /usr/local/bin/etcd
 
-RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
+RUN echo "@testing https://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
 
-RUN apk add --no-cache \
+RUN apk update && apk upgrade && apk add --no-cache \
   bash \
   ca-certificates \
   wget \
@@ -48,19 +64,15 @@ RUN apk add --no-cache \
   py-pip \
   unzip \
   openssl \
-  cfssl@testing
+  cfssl@testing \
+  curl \
+  tzdata \
+  libc6-compat
 
-ENV GOPATH /go
-ENV PATH $GOPATH/bin:/usr/local/go/bin:$PATH
+RUN go install -v github.com/onsi/ginkgo/v2/ginkgo@v${GINKGO_VERSION} \
+    && go install golang.org/x/lint/golint@${GOLINT_VERSION}
 
-RUN mkdir -p "$GOPATH/src" "$GOPATH/bin" && chmod -R 777 "$GOPATH"
-
-RUN go install github.com/onsi/ginkgo/v2/ginkgo@v2.9.0  && go install golang.org/x/lint/golint@latest
-
-ARG RESTY_CLI_VERSION
-ARG RESTY_CLI_SHA
-
-RUN wget -O /tmp/resty_cli.tgz \
+RUN wget -qO /tmp/resty_cli.tgz \
   https://github.com/openresty/resty-cli/archive/v${RESTY_CLI_VERSION}.tar.gz \
   && echo "${RESTY_CLI_SHA} */tmp/resty_cli.tgz" | sha256sum -c - \
   && tar -C /tmp -xzf /tmp/resty_cli.tgz \
@@ -68,10 +80,7 @@ RUN wget -O /tmp/resty_cli.tgz \
   && resty -V \
   && rm -rf /tmp/*
 
-ARG LUAROCKS_VERSION
-ARG LUAROCKS_SHA
-
-RUN wget -O /tmp/luarocks.tgz \
+RUN wget -qO /tmp/luarocks.tgz \
   https://github.com/luarocks/luarocks/archive/v${LUAROCKS_VERSION}.tar.gz \
   && echo "${LUAROCKS_SHA} */tmp/luarocks.tgz" | sha256sum -c - \
   && tar -C /tmp -xzf /tmp/luarocks.tgz \
@@ -82,48 +91,39 @@ RUN wget -O /tmp/luarocks.tgz \
 RUN  luarocks install busted \
   && luarocks install luacheck
 
-ARG TARGETARCH
-
-ARG K8S_RELEASE
-
-RUN wget -O /usr/local/bin/kubectl \
+RUN wget -qO /usr/local/bin/kubectl \
   https://storage.googleapis.com/kubernetes-release/release/${K8S_RELEASE}/bin/linux/${TARGETARCH}/kubectl \
   && chmod +x /usr/local/bin/kubectl
 
-RUN wget -O /usr/local/bin/kube-apiserver \
+RUN wget -qO /usr/local/bin/kube-apiserver \
   https://storage.googleapis.com/kubernetes-release/release/${K8S_RELEASE}/bin/linux/${TARGETARCH}/kube-apiserver \
   && chmod +x /usr/local/bin/kube-apiserver
 
-ARG CHART_TESTING_VERSION
-
-RUN wget -O /tmp/ct-${CHART_TESTING_VERSION}-linux-amd64.tar.gz \
-  https://github.com/helm/chart-testing/releases/download/v${CHART_TESTING_VERSION}/chart-testing_${CHART_TESTING_VERSION}_linux_amd64.tar.gz \
+RUN wget -qO /tmp/ct-${CHART_TESTING_VERSION}-linux-${TARGETARCH}.tar.gz \
+  https://github.com/helm/chart-testing/releases/download/v${CHART_TESTING_VERSION}/chart-testing_${CHART_TESTING_VERSION}_linux_${TARGETARCH}.tar.gz \
   && mkdir -p /tmp/ct-download \
-  && tar xzvf /tmp/ct-${CHART_TESTING_VERSION}-linux-amd64.tar.gz -C /tmp/ct-download \
-  && rm /tmp/ct-${CHART_TESTING_VERSION}-linux-amd64.tar.gz \
+  && tar xzvf /tmp/ct-${CHART_TESTING_VERSION}-linux-${TARGETARCH}.tar.gz -C /tmp/ct-download \
+  && rm /tmp/ct-${CHART_TESTING_VERSION}-linux-${TARGETARCH}.tar.gz \
   && cp /tmp/ct-download/ct /usr/local/bin \
   && mkdir -p /etc/ct \
   && cp -R /tmp/ct-download/etc/* /etc/ct \
   && rm -rf /tmp/*
 
-RUN wget -O /usr/local/bin/lj-releng \
+RUN wget -qO /usr/local/bin/lj-releng \
   https://raw.githubusercontent.com/openresty/openresty-devel-utils/master/lj-releng \
   && chmod +x /usr/local/bin/lj-releng
 
-ARG HELM_VERSION
 
-RUN wget -O /tmp/helm.tgz \
-  https://get.helm.sh/helm-${HELM_VERSION}-linux-${TARGETARCH}.tar.gz \
+RUN wget -qO /tmp/helm.tgz \
+  https://get.helm.sh/helm-v${HELM_VERSION}-linux-${TARGETARCH}.tar.gz \
   && tar -C /tmp -xzf /tmp/helm.tgz \
   && cp /tmp/linux*/helm /usr/local/bin \
   && rm -rf /tmp/*
 
 # Install a YAML Linter
-ARG YAML_LINT_VERSION
 RUN pip install "yamllint==$YAML_LINT_VERSION"
 
 # Install Yamale YAML schema validator
-ARG YAMALE_VERSION
 RUN pip install "yamale==$YAMALE_VERSION"
 
 WORKDIR $GOPATH
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 09ce36cc5..11abc26b4 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -3,7 +3,8 @@ FROM ${E2E_BASE_IMAGE} AS BASE
 
 FROM alpine:3.17.2
 
-RUN apk add -U --no-cache \
+RUN apk update \
+	&& apk upgrade && apk add -U --no-cache \
   ca-certificates \
   bash \
   curl \
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 001146f65..011396531 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE="registry.k8s.io/ingress-nginx/e2e-test-runner:v20230314-helm-chart-4.5.2-32-g520384b11@sha256:754c62f9a5efd1ee515ee908ecc16c0c4d1dda96a8cc8019667182a55f3a9035"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20230314-helm-chart-4.5.2-32-g520384b11@sha256:754c62f9a5efd1ee515ee908ecc16c0c4d1dda96a8cc8019667182a55f3a9035"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"

From 24e0e29386be3ba03249758dcd730360ad6ed97d Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 7 Apr 2023 10:42:37 -0400
Subject: [PATCH 0713/1641] add short sha to gcloud build and makefiles

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/cfssl/Makefile                           | 6 +++++-
 images/cfssl/cloudbuild.yaml                    | 1 +
 images/custom-error-pages/Makefile              | 4 +++-
 images/custom-error-pages/cloudbuild.yaml       | 1 +
 images/echo/Makefile                            | 4 +++-
 images/echo/cloudbuild.yaml                     | 1 +
 images/ext-auth-example-authsvc/cloudbuild.yaml | 1 +
 images/fastcgi-helloserver/Makefile             | 4 +++-
 images/fastcgi-helloserver/cloudbuild.yaml      | 1 +
 images/go-grpc-greeter-server/Makefile          | 4 +++-
 images/go-grpc-greeter-server/cloudbuild.yaml   | 1 +
 images/httpbin/Makefile                         | 4 +++-
 images/httpbin/cloudbuild.yaml                  | 1 +
 images/kube-webhook-certgen/Makefile            | 4 +++-
 images/kube-webhook-certgen/cloudbuild.yaml     | 1 +
 images/nginx/Makefile                           | 4 +++-
 images/nginx/cloudbuild.yaml                    | 1 +
 images/opentelemetry/Makefile                   | 4 +++-
 images/opentelemetry/cloudbuild.yaml            | 1 +
 images/test-runner/Makefile                     | 4 +++-
 images/test-runner/cloudbuild.yaml              | 1 +
 21 files changed, 43 insertions(+), 10 deletions(-)

diff --git a/images/cfssl/Makefile b/images/cfssl/Makefile
index 1521d2c78..8d8e597a4 100644
--- a/images/cfssl/Makefile
+++ b/images/cfssl/Makefile
@@ -18,9 +18,13 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
+SHORT_SHA ?=$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
 REGISTRY ?= local
 
+
+
 IMAGE = $(REGISTRY)/e2e-test-cfssl
 
 # required to enable buildx
diff --git a/images/cfssl/cloudbuild.yaml b/images/cfssl/cloudbuild.yaml
index 3f0abee99..4976a3f67 100644
--- a/images/cfssl/cloudbuild.yaml
+++ b/images/cfssl/cloudbuild.yaml
@@ -6,6 +6,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
+      - SHORT_SHA=$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/custom-error-pages/Makefile b/images/custom-error-pages/Makefile
index b014beabe..810736cca 100644
--- a/images/custom-error-pages/Makefile
+++ b/images/custom-error-pages/Makefile
@@ -20,7 +20,9 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
+SHORT_SHA ?=$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/nginx-errors
diff --git a/images/custom-error-pages/cloudbuild.yaml b/images/custom-error-pages/cloudbuild.yaml
index 3490bd73b..e38d4bcdc 100644
--- a/images/custom-error-pages/cloudbuild.yaml
+++ b/images/custom-error-pages/cloudbuild.yaml
@@ -6,6 +6,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
+      - SHORT_SHA=$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/echo/Makefile b/images/echo/Makefile
index 5dc546a8b..a213df5d3 100644
--- a/images/echo/Makefile
+++ b/images/echo/Makefile
@@ -18,7 +18,9 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
+SHORT_SHA ?=$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-echo
diff --git a/images/echo/cloudbuild.yaml b/images/echo/cloudbuild.yaml
index 8f59b6727..f07be825a 100644
--- a/images/echo/cloudbuild.yaml
+++ b/images/echo/cloudbuild.yaml
@@ -6,6 +6,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
+      - SHORT_SHA=$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/ext-auth-example-authsvc/cloudbuild.yaml b/images/ext-auth-example-authsvc/cloudbuild.yaml
index 8de32fdc9..c5bb5db6a 100644
--- a/images/ext-auth-example-authsvc/cloudbuild.yaml
+++ b/images/ext-auth-example-authsvc/cloudbuild.yaml
@@ -8,6 +8,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
+      - SHORT_SHA=$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/fastcgi-helloserver/Makefile b/images/fastcgi-helloserver/Makefile
index 6c5a3647a..4d277a19d 100644
--- a/images/fastcgi-helloserver/Makefile
+++ b/images/fastcgi-helloserver/Makefile
@@ -20,7 +20,9 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
+SHORT_SHA ?=$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-fastcgi-helloserver
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index 92f4be017..a4c9d5eff 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -6,6 +6,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
+      - SHORT_SHA=$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/go-grpc-greeter-server/Makefile b/images/go-grpc-greeter-server/Makefile
index e6b6efae6..e221ecfea 100644
--- a/images/go-grpc-greeter-server/Makefile
+++ b/images/go-grpc-greeter-server/Makefile
@@ -18,7 +18,9 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
+SHORT_SHA ?=$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/go-grpc-greeter-server
diff --git a/images/go-grpc-greeter-server/cloudbuild.yaml b/images/go-grpc-greeter-server/cloudbuild.yaml
index d618c5e6f..6f32bcf50 100644
--- a/images/go-grpc-greeter-server/cloudbuild.yaml
+++ b/images/go-grpc-greeter-server/cloudbuild.yaml
@@ -8,6 +8,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
+      - SHORT_SHA=$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/httpbin/Makefile b/images/httpbin/Makefile
index 5d92ffcb5..a2ba07400 100644
--- a/images/httpbin/Makefile
+++ b/images/httpbin/Makefile
@@ -18,7 +18,9 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
+SHORT_SHA ?=$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-httpbin
diff --git a/images/httpbin/cloudbuild.yaml b/images/httpbin/cloudbuild.yaml
index ffd8c9974..e9df202b8 100644
--- a/images/httpbin/cloudbuild.yaml
+++ b/images/httpbin/cloudbuild.yaml
@@ -8,6 +8,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
+      - SHORT_SHA=$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/kube-webhook-certgen/Makefile b/images/kube-webhook-certgen/Makefile
index 1716bc07e..cd014c7c3 100644
--- a/images/kube-webhook-certgen/Makefile
+++ b/images/kube-webhook-certgen/Makefile
@@ -19,7 +19,9 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
+SHORT_SHA ?=$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/kube-webhook-certgen
diff --git a/images/kube-webhook-certgen/cloudbuild.yaml b/images/kube-webhook-certgen/cloudbuild.yaml
index ef938ef6a..bf0bd3ce1 100644
--- a/images/kube-webhook-certgen/cloudbuild.yaml
+++ b/images/kube-webhook-certgen/cloudbuild.yaml
@@ -21,6 +21,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
+      - SHORT_SHA=$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/nginx/Makefile b/images/nginx/Makefile
index 053f1e5e8..b54a7739b 100644
--- a/images/nginx/Makefile
+++ b/images/nginx/Makefile
@@ -21,7 +21,9 @@ DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
 # 0.0.0 shouldn't clobber any released builds
-TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
+SHORT_SHA ?=$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
 IMAGE = $(REGISTRY)/nginx
diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index 003209d77..c581700dd 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -8,6 +8,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
+      - SHORT_SHA=$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       - HOME=/root
diff --git a/images/opentelemetry/Makefile b/images/opentelemetry/Makefile
index 695dcf632..07a66beed 100644
--- a/images/opentelemetry/Makefile
+++ b/images/opentelemetry/Makefile
@@ -21,7 +21,9 @@ DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
 # 0.0.0 shouldn't clobber any released builds
-TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
+SHORT_SHA ?=$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
 IMAGE = $(REGISTRY)/opentelemetry
diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
index 82b75e6e6..9556ccba9 100644
--- a/images/opentelemetry/cloudbuild.yaml
+++ b/images/opentelemetry/cloudbuild.yaml
@@ -8,6 +8,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
+      - SHORT_SHA=$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 289270e26..562625cff 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -18,7 +18,9 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v$(shell date +%Y%m%d)-$(shell git rev-parse --short HEAD)
+SHORT_SHA ?=$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-runner
diff --git a/images/test-runner/cloudbuild.yaml b/images/test-runner/cloudbuild.yaml
index ff4667b0c..761ea7f28 100644
--- a/images/test-runner/cloudbuild.yaml
+++ b/images/test-runner/cloudbuild.yaml
@@ -6,6 +6,7 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
+      - SHORT_SHA=$SHORT_SHA
       - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx

From 7fcafff04617528619950b1cef190a3b424e4f2b Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Fri, 7 Apr 2023 17:39:15 +0200
Subject: [PATCH 0714/1641] Chart: Improve `README.md`. (#9831)

---
 charts/ingress-nginx/README.md        | 28 ++-------------------------
 charts/ingress-nginx/README.md.gotmpl | 27 +-------------------------
 2 files changed, 3 insertions(+), 52 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index cb3848634..44b553ece 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -8,10 +8,9 @@ To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.c
 
 This chart bootstraps an ingress-nginx deployment on a [Kubernetes](http://kubernetes.io) cluster using the [Helm](https://helm.sh) package manager.
 
-## Prerequisites
+## Requirements
 
-- Chart version 3.x.x: Kubernetes v1.16+
-- Chart version 4.x.x and above: Kubernetes v1.19+
+Kubernetes: `>=1.20.0-0`
 
 ## Get Repo Info
 
@@ -52,10 +51,6 @@ helm upgrade [RELEASE_NAME] [CHART] --install
 
 _See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
 
-### Upgrading With Zero Downtime in Production
-
-By default the ingress-nginx controller has service interruptions whenever it's pods are restarted or redeployed. In order to fix that, see the excellent blog post by Lindsay Landry from Codecademy: [Kubernetes: Nginx and Zero Downtime in Production](https://medium.com/codecademy-engineering/kubernetes-nginx-and-zero-downtime-in-production-2c910c6a5ed8).
-
 ### Migrating from stable/nginx-ingress
 
 There are two main ways to migrate a release from `stable/nginx-ingress` to `ingress-nginx/ingress-nginx` chart:
@@ -66,7 +61,6 @@ There are two main ways to migrate a release from `stable/nginx-ingress` to `ing
     1. Redirect your DNS traffic from the old controller to the new controller
     1. Log traffic from both controllers during this changeover
     1. [Uninstall](#uninstall-chart) the old controller once traffic has fully drained from it
-    1. For details on all of these steps see [Upgrading With Zero Downtime in Production](#upgrading-with-zero-downtime-in-production)
 
 Note that there are some different and upgraded configurations between the two charts, described by Rimas Mocevicius from JFrog in the "Upgrading to ingress-nginx Helm chart" section of [Migrating from Helm chart nginx-ingress to ingress-nginx](https://rimusz.net/migrating-to-ingress-nginx). As the `ingress-nginx/ingress-nginx` chart continues to update, you will want to check current differences by running [helm configuration](#configuration) commands on both charts.
 
@@ -126,19 +120,6 @@ controller:
       service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: '3600'
 ```
 
-### AWS route53-mapper
-
-To configure the LoadBalancer service with the [route53-mapper addon](https://github.com/kubernetes/kops/blob/be63d4f1a7a46daaf1c4c482527328236850f111/addons/route53-mapper/README.md), add the `domainName` annotation and `dns` label:
-
-```yaml
-controller:
-  service:
-    labels:
-      dns: "route53"
-    annotations:
-      domainName: "kubernetes-example.com"
-```
-
 ### Additional Internal Load Balancer
 
 This setup is useful when you need both external and internal load balancers but don't want to have multiple ingress controllers and multiple ingress objects per application.
@@ -244,10 +225,6 @@ Detail of how and why are in [this issue](https://github.com/helm/charts/pull/13
 
 As of version `1.26.0` of this chart, by simply not providing any clusterIP value, `invalid: spec.clusterIP: Invalid value: "": field is immutable` will no longer occur since `clusterIP: ""` will not be rendered.
 
-## Requirements
-
-Kubernetes: `>=1.20.0-0`
-
 ## Values
 
 | Key | Type | Default | Description |
@@ -522,4 +499,3 @@ Kubernetes: `>=1.20.0-0`
 | serviceAccount.name | string | `""` |  |
 | tcp | object | `{}` | TCP service key-value pairs # Ref: https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/exposing-tcp-udp-services.md # |
 | udp | object | `{}` | UDP service key-value pairs # Ref: https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/exposing-tcp-udp-services.md # |
-
diff --git a/charts/ingress-nginx/README.md.gotmpl b/charts/ingress-nginx/README.md.gotmpl
index 99a2a62cb..238166277 100644
--- a/charts/ingress-nginx/README.md.gotmpl
+++ b/charts/ingress-nginx/README.md.gotmpl
@@ -7,10 +7,7 @@ To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.c
 
 This chart bootstraps an ingress-nginx deployment on a [Kubernetes](http://kubernetes.io) cluster using the [Helm](https://helm.sh) package manager.
 
-## Prerequisites
-
-- Chart version 3.x.x: Kubernetes v1.16+
-- Chart version 4.x.x and above: Kubernetes v1.19+
+{{ template "chart.requirementsSection" . }}
 
 ## Get Repo Info
 
@@ -51,10 +48,6 @@ helm upgrade [RELEASE_NAME] [CHART] --install
 
 _See [helm upgrade](https://helm.sh/docs/helm/helm_upgrade/) for command documentation._
 
-### Upgrading With Zero Downtime in Production
-
-By default the ingress-nginx controller has service interruptions whenever it's pods are restarted or redeployed. In order to fix that, see the excellent blog post by Lindsay Landry from Codecademy: [Kubernetes: Nginx and Zero Downtime in Production](https://medium.com/codecademy-engineering/kubernetes-nginx-and-zero-downtime-in-production-2c910c6a5ed8).
-
 ### Migrating from stable/nginx-ingress
 
 There are two main ways to migrate a release from `stable/nginx-ingress` to `ingress-nginx/ingress-nginx` chart:
@@ -65,7 +58,6 @@ There are two main ways to migrate a release from `stable/nginx-ingress` to `ing
     1. Redirect your DNS traffic from the old controller to the new controller
     1. Log traffic from both controllers during this changeover
     1. [Uninstall](#uninstall-chart) the old controller once traffic has fully drained from it
-    1. For details on all of these steps see [Upgrading With Zero Downtime in Production](#upgrading-with-zero-downtime-in-production)
 
 Note that there are some different and upgraded configurations between the two charts, described by Rimas Mocevicius from JFrog in the "Upgrading to ingress-nginx Helm chart" section of [Migrating from Helm chart nginx-ingress to ingress-nginx](https://rimusz.net/migrating-to-ingress-nginx). As the `ingress-nginx/ingress-nginx` chart continues to update, you will want to check current differences by running [helm configuration](#configuration) commands on both charts.
 
@@ -125,19 +117,6 @@ controller:
       service.beta.kubernetes.io/aws-load-balancer-connection-idle-timeout: '3600'
 ```
 
-### AWS route53-mapper
-
-To configure the LoadBalancer service with the [route53-mapper addon](https://github.com/kubernetes/kops/blob/be63d4f1a7a46daaf1c4c482527328236850f111/addons/route53-mapper/README.md), add the `domainName` annotation and `dns` label:
-
-```yaml
-controller:
-  service:
-    labels:
-      dns: "route53"
-    annotations:
-      domainName: "kubernetes-example.com"
-```
-
 ### Additional Internal Load Balancer
 
 This setup is useful when you need both external and internal load balancers but don't want to have multiple ingress controllers and multiple ingress objects per application.
@@ -243,8 +222,4 @@ Detail of how and why are in [this issue](https://github.com/helm/charts/pull/13
 
 As of version `1.26.0` of this chart, by simply not providing any clusterIP value, `invalid: spec.clusterIP: Invalid value: "": field is immutable` will no longer occur since `clusterIP: ""` will not be rendered.
 
-{{ template "chart.requirementsSection" . }}
-
 {{ template "chart.valuesSection" . }}
-
-{{ template "helm-docs.versionFooter" . }}

From 4e8d0b5836096426393340273260b9000cd1e151 Mon Sep 17 00:00:00 2001
From: Marco Cadetg <cadetg@gmail.com>
Date: Tue, 11 Apr 2023 10:01:18 +0200
Subject: [PATCH 0715/1641] Exclude socket metrics (#9770)

* exclude creation and exporting of socket metrics via flag

* make exclude metric naming more consistent

* fix connect time metric update

* add documentation

* e2e test

* improve creation of metric mapping
---
 cmd/dataplane/main.go                         |   2 +-
 cmd/nginx/main.go                             |   2 +-
 docs/user-guide/cli-arguments.md              |   1 +
 internal/ingress/controller/controller.go     |   9 +-
 internal/ingress/metric/collectors/socket.go  | 219 +++++++++++-------
 .../ingress/metric/collectors/socket_test.go  | 116 +++++++++-
 internal/ingress/metric/main.go               |   4 +-
 pkg/flags/flags.go                            |  10 +-
 test/e2e/e2e.go                               |   1 +
 test/e2e/metrics/metrics.go                   |  94 ++++++++
 10 files changed, 362 insertions(+), 96 deletions(-)
 create mode 100644 test/e2e/metrics/metrics.go

diff --git a/cmd/dataplane/main.go b/cmd/dataplane/main.go
index 0ab978429..6fd559e4d 100644
--- a/cmd/dataplane/main.go
+++ b/cmd/dataplane/main.go
@@ -70,7 +70,7 @@ func main() {
 	mc := metric.NewDummyCollector()
 	if conf.EnableMetrics {
 		// TODO: Ingress class is not a part of dataplane anymore
-		mc, err = metric.NewCollector(conf.MetricsPerHost, conf.ReportStatusClasses, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets)
+		mc, err = metric.NewCollector(conf.MetricsPerHost, conf.ReportStatusClasses, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets, conf.ExcludeSocketMetrics)
 		if err != nil {
 			klog.Fatalf("Error creating prometheus collector:  %v", err)
 		}
diff --git a/cmd/nginx/main.go b/cmd/nginx/main.go
index 9f0973ec9..48dd933dc 100644
--- a/cmd/nginx/main.go
+++ b/cmd/nginx/main.go
@@ -133,7 +133,7 @@ func main() {
 
 	mc := metric.NewDummyCollector()
 	if conf.EnableMetrics {
-		mc, err = metric.NewCollector(conf.MetricsPerHost, conf.ReportStatusClasses, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets)
+		mc, err = metric.NewCollector(conf.MetricsPerHost, conf.ReportStatusClasses, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets, conf.ExcludeSocketMetrics)
 		if err != nil {
 			klog.Fatalf("Error creating prometheus collector:  %v", err)
 		}
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index febc6f762..59e52957d 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -25,6 +25,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--enable-ssl-chain-completion`    | Autocomplete SSL certificate chains with missing intermediate CA certificates. Certificates uploaded to Kubernetes must have the "Authority Information Access" X.509 v3 extension for this to succeed. (default false)|
 | `--enable-ssl-passthrough`         | Enable SSL Passthrough. (default false) |
 | `--enable-topology-aware-routing`  | Enable topology aware hints feature, needs service object annotation service.kubernetes.io/topology-aware-hints sets to auto. (default false) |
+| `--exclude-socket-metrics`         | Set of socket request metrics to exclude which won't be exported nor being calculated. The possible socket request metrics to exclude are documented in the monitoring guide e.g. 'nginx_ingress_controller_request_duration_seconds,nginx_ingress_controller_response_size'|
 | `--health-check-path`              | URL path of the health check endpoint. Configured inside the NGINX status server. All requests received on the port defined by the healthz-port parameter are forwarded internally to this path. (default "/healthz") |
 | `--health-check-timeout`           | Time limit, in seconds, for a probe to health-check-path to succeed. (default 10) |
 | `--healthz-port`                   | Port to use for the healthz endpoint. (default 10254) |
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 5d94605b5..17142a478 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -102,10 +102,11 @@ type Configuration struct {
 
 	EnableProfiling bool
 
-	EnableMetrics       bool
-	MetricsPerHost      bool
-	MetricsBuckets      *collectors.HistogramBuckets
-	ReportStatusClasses bool
+	EnableMetrics        bool
+	MetricsPerHost       bool
+	MetricsBuckets       *collectors.HistogramBuckets
+	ReportStatusClasses  bool
+	ExcludeSocketMetrics []string
 
 	FakeCertificate *ingress.SSLCert
 
diff --git a/internal/ingress/metric/collectors/socket.go b/internal/ingress/metric/collectors/socket.go
index 23048d5d6..508cc6bc8 100644
--- a/internal/ingress/metric/collectors/socket.go
+++ b/internal/ingress/metric/collectors/socket.go
@@ -21,6 +21,7 @@ import (
 	"io"
 	"net"
 	"os"
+	"strings"
 	"syscall"
 
 	jsoniter "github.com/json-iterator/go"
@@ -60,6 +61,8 @@ type HistogramBuckets struct {
 	SizeBuckets   []float64
 }
 
+type metricMapping map[string]prometheus.Collector
+
 // SocketCollector stores prometheus metrics and ingress meta-data
 type SocketCollector struct {
 	prometheus.Collector
@@ -78,7 +81,7 @@ type SocketCollector struct {
 
 	listener net.Listener
 
-	metricMapping map[string]interface{}
+	metricMapping metricMapping
 
 	hosts sets.Set[string]
 
@@ -106,7 +109,7 @@ var defObjectives = map[float64]float64{0.5: 0.05, 0.9: 0.01, 0.99: 0.001}
 
 // NewSocketCollector creates a new SocketCollector instance using
 // the ingress watch namespace and class used by the controller
-func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStatusClasses bool, buckets HistogramBuckets) (*SocketCollector, error) {
+func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStatusClasses bool, buckets HistogramBuckets, excludeMetrics []string) (*SocketCollector, error) {
 	socket := "/tmp/nginx/prometheus-nginx.socket"
 	// unix sockets must be unlink()ed before being used
 	_ = syscall.Unlink(socket)
@@ -132,13 +135,23 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 		requestTags = append(requestTags, "host")
 	}
 
+	em := make(map[string]struct{}, len(excludeMetrics))
+	for _, m := range excludeMetrics {
+		// remove potential nginx_ingress_controller prefix from the metric name
+		// TBD: how to handle fully qualified histogram metrics e.g. _buckets and _sum. Should we just remove the suffix and remove the histogram metric or ignore it?
+		em[strings.TrimPrefix(m, "nginx_ingress_controller_")] = struct{}{}
+	}
+
+	// create metric mapping with only the metrics that are not excluded
+	mm := make(metricMapping)
+
 	sc := &SocketCollector{
 		listener: listener,
 
 		metricsPerHost:      metricsPerHost,
 		reportStatusClasses: reportStatusClasses,
 
-		connectTime: prometheus.NewHistogramVec(
+		connectTime: histogramMetric(
 			prometheus.HistogramOpts{
 				Name:        "connect_duration_seconds",
 				Help:        "The time spent on establishing a connection with the upstream server",
@@ -147,8 +160,11 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 				Buckets:     buckets.TimeBuckets,
 			},
 			requestTags,
+			em,
+			mm,
 		),
-		headerTime: prometheus.NewHistogramVec(
+
+		headerTime: histogramMetric(
 			prometheus.HistogramOpts{
 				Name:        "header_duration_seconds",
 				Help:        "The time spent on receiving first header from the upstream server",
@@ -157,8 +173,10 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 				Buckets:     buckets.TimeBuckets,
 			},
 			requestTags,
+			em,
+			mm,
 		),
-		responseTime: prometheus.NewHistogramVec(
+		responseTime: histogramMetric(
 			prometheus.HistogramOpts{
 				Name:        "response_duration_seconds",
 				Help:        "The time spent on receiving the response from the upstream server",
@@ -167,8 +185,11 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 				Buckets:     buckets.TimeBuckets,
 			},
 			requestTags,
+			em,
+			mm,
 		),
-		requestTime: prometheus.NewHistogramVec(
+
+		requestTime: histogramMetric(
 			prometheus.HistogramOpts{
 				Name:        "request_duration_seconds",
 				Help:        "The request processing time in milliseconds",
@@ -177,9 +198,11 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 				Buckets:     buckets.TimeBuckets,
 			},
 			requestTags,
+			em,
+			mm,
 		),
 
-		responseLength: prometheus.NewHistogramVec(
+		responseLength: histogramMetric(
 			prometheus.HistogramOpts{
 				Name:        "response_size",
 				Help:        "The response length (including request line, header, and request body)",
@@ -188,19 +211,24 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 				Buckets:     buckets.LengthBuckets,
 			},
 			requestTags,
+			em,
+			mm,
 		),
-		requestLength: prometheus.NewHistogramVec(
+
+		requestLength: histogramMetric(
 			prometheus.HistogramOpts{
 				Name:        "request_size",
 				Help:        "The request length (including request line, header, and request body)",
 				Namespace:   PrometheusNamespace,
-				Buckets:     buckets.LengthBuckets,
 				ConstLabels: constLabels,
+				Buckets:     buckets.LengthBuckets,
 			},
 			requestTags,
+			em,
+			mm,
 		),
 
-		requests: prometheus.NewCounterVec(
+		requests: counterMetric(
 			prometheus.CounterOpts{
 				Name:        "requests",
 				Help:        "The total number of client requests",
@@ -208,9 +236,11 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 				ConstLabels: constLabels,
 			},
 			requestTags,
+			em,
+			mm,
 		),
 
-		bytesSent: prometheus.NewHistogramVec(
+		bytesSent: histogramMetric(
 			prometheus.HistogramOpts{
 				Name:        "bytes_sent",
 				Help:        "DEPRECATED The number of bytes sent to a client",
@@ -219,9 +249,11 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 				ConstLabels: constLabels,
 			},
 			requestTags,
+			em,
+			mm,
 		),
 
-		upstreamLatency: prometheus.NewSummaryVec(
+		upstreamLatency: summaryMetric(
 			prometheus.SummaryOpts{
 				Name:        "ingress_upstream_latency_seconds",
 				Help:        "DEPRECATED Upstream service latency per Ingress",
@@ -230,28 +262,59 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 				Objectives:  defObjectives,
 			},
 			[]string{"ingress", "namespace", "service", "canary"},
+			em,
+			mm,
 		),
 	}
 
-	sc.metricMapping = map[string]interface{}{
-		prometheus.BuildFQName(PrometheusNamespace, "", "requests"): sc.requests,
-
-		prometheus.BuildFQName(PrometheusNamespace, "", "connect_duration_seconds"):  sc.connectTime,
-		prometheus.BuildFQName(PrometheusNamespace, "", "header_duration_seconds"):   sc.headerTime,
-		prometheus.BuildFQName(PrometheusNamespace, "", "response_duration_seconds"): sc.responseTime,
-		prometheus.BuildFQName(PrometheusNamespace, "", "request_duration_seconds"):  sc.requestTime,
-
-		prometheus.BuildFQName(PrometheusNamespace, "", "request_size"):  sc.requestLength,
-		prometheus.BuildFQName(PrometheusNamespace, "", "response_size"): sc.responseLength,
-
-		prometheus.BuildFQName(PrometheusNamespace, "", "bytes_sent"): sc.bytesSent,
-
-		prometheus.BuildFQName(PrometheusNamespace, "", "ingress_upstream_latency_seconds"): sc.upstreamLatency,
-	}
-
+	sc.metricMapping = mm
 	return sc, nil
 }
 
+func containsMetric(excludeMetrics map[string]struct{}, name string) bool {
+	if _, ok := excludeMetrics[name]; ok {
+		klog.V(3).InfoS("Skipping metric", "metric", name)
+		return true
+	}
+	return false
+}
+
+func summaryMetric(opts prometheus.SummaryOpts, requestTags []string, excludeMetrics map[string]struct{}, metricMapping metricMapping) *prometheus.SummaryVec {
+	if containsMetric(excludeMetrics, opts.Name) {
+		return nil
+	}
+	m := prometheus.NewSummaryVec(
+		opts,
+		requestTags,
+	)
+	metricMapping[prometheus.BuildFQName(PrometheusNamespace, "", opts.Name)] = m
+	return m
+}
+
+func counterMetric(opts prometheus.CounterOpts, requestTags []string, excludeMetrics map[string]struct{}, metricMapping metricMapping) *prometheus.CounterVec {
+	if containsMetric(excludeMetrics, opts.Name) {
+		return nil
+	}
+	m := prometheus.NewCounterVec(
+		opts,
+		requestTags,
+	)
+	metricMapping[prometheus.BuildFQName(PrometheusNamespace, "", opts.Name)] = m
+	return m
+}
+
+func histogramMetric(opts prometheus.HistogramOpts, requestTags []string, excludeMetrics map[string]struct{}, metricMapping metricMapping) *prometheus.HistogramVec {
+	if containsMetric(excludeMetrics, opts.Name) {
+		return nil
+	}
+	m := prometheus.NewHistogramVec(
+		opts,
+		requestTags,
+	)
+	metricMapping[prometheus.BuildFQName(PrometheusNamespace, "", opts.Name)] = m
+	return m
+}
+
 func (sc *SocketCollector) handleMessage(msg []byte) {
 	klog.V(5).InfoS("Metric", "message", string(msg))
 
@@ -305,30 +368,36 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 			"canary":    stats.Canary,
 		}
 
-		requestsMetric, err := sc.requests.GetMetricWith(collectorLabels)
-		if err != nil {
-			klog.ErrorS(err, "Error fetching requests metric")
-		} else {
-			requestsMetric.Inc()
+		if sc.requests != nil {
+			requestsMetric, err := sc.requests.GetMetricWith(collectorLabels)
+			if err != nil {
+				klog.ErrorS(err, "Error fetching requests metric")
+			} else {
+				requestsMetric.Inc()
+			}
 		}
 
 		if stats.Latency != -1 {
-			connectTimeMetric, err := sc.connectTime.GetMetricWith(requestLabels)
-			if err != nil {
-				klog.ErrorS(err, "Error fetching connect time metric")
-			} else {
-				connectTimeMetric.Observe(stats.Latency)
+			if sc.connectTime != nil {
+				connectTimeMetric, err := sc.connectTime.GetMetricWith(requestLabels)
+				if err != nil {
+					klog.ErrorS(err, "Error fetching connect time metric")
+				} else {
+					connectTimeMetric.Observe(stats.Latency)
+				}
 			}
 
-			latencyMetric, err := sc.upstreamLatency.GetMetricWith(latencyLabels)
-			if err != nil {
-				klog.ErrorS(err, "Error fetching latency metric")
-			} else {
-				latencyMetric.Observe(stats.Latency)
+			if sc.upstreamLatency != nil {
+				latencyMetric, err := sc.upstreamLatency.GetMetricWith(latencyLabels)
+				if err != nil {
+					klog.ErrorS(err, "Error fetching latency metric")
+				} else {
+					latencyMetric.Observe(stats.Latency)
+				}
 			}
 		}
 
-		if stats.HeaderTime != -1 {
+		if stats.HeaderTime != -1 && sc.headerTime != nil {
 			headerTimeMetric, err := sc.headerTime.GetMetricWith(requestLabels)
 			if err != nil {
 				klog.ErrorS(err, "Error fetching header time metric")
@@ -337,7 +406,7 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 			}
 		}
 
-		if stats.RequestTime != -1 {
+		if stats.RequestTime != -1 && sc.requestTime != nil {
 			requestTimeMetric, err := sc.requestTime.GetMetricWith(requestLabels)
 			if err != nil {
 				klog.ErrorS(err, "Error fetching request duration metric")
@@ -346,7 +415,7 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 			}
 		}
 
-		if stats.RequestLength != -1 {
+		if stats.RequestLength != -1 && sc.requestLength != nil {
 			requestLengthMetric, err := sc.requestLength.GetMetricWith(requestLabels)
 			if err != nil {
 				klog.ErrorS(err, "Error fetching request length metric")
@@ -355,7 +424,7 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 			}
 		}
 
-		if stats.ResponseTime != -1 {
+		if stats.ResponseTime != -1 && sc.responseTime != nil {
 			responseTimeMetric, err := sc.responseTime.GetMetricWith(requestLabels)
 			if err != nil {
 				klog.ErrorS(err, "Error fetching upstream response time metric")
@@ -365,18 +434,22 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 		}
 
 		if stats.ResponseLength != -1 {
-			bytesSentMetric, err := sc.bytesSent.GetMetricWith(requestLabels)
-			if err != nil {
-				klog.ErrorS(err, "Error fetching bytes sent metric")
-			} else {
-				bytesSentMetric.Observe(stats.ResponseLength)
+			if sc.bytesSent != nil {
+				bytesSentMetric, err := sc.bytesSent.GetMetricWith(requestLabels)
+				if err != nil {
+					klog.ErrorS(err, "Error fetching bytes sent metric")
+				} else {
+					bytesSentMetric.Observe(stats.ResponseLength)
+				}
 			}
 
-			responseSizeMetric, err := sc.responseLength.GetMetricWith(requestLabels)
-			if err != nil {
-				klog.ErrorS(err, "Error fetching bytes sent metric")
-			} else {
-				responseSizeMetric.Observe(stats.ResponseLength)
+			if sc.responseLength != nil {
+				responseSizeMetric, err := sc.responseLength.GetMetricWith(requestLabels)
+				if err != nil {
+					klog.ErrorS(err, "Error fetching bytes sent metric")
+				} else {
+					responseSizeMetric.Observe(stats.ResponseLength)
+				}
 			}
 		}
 	}
@@ -471,36 +544,16 @@ func (sc *SocketCollector) RemoveMetrics(ingresses []string, registry prometheus
 
 // Describe implements prometheus.Collector
 func (sc SocketCollector) Describe(ch chan<- *prometheus.Desc) {
-	sc.connectTime.Describe(ch)
-	sc.headerTime.Describe(ch)
-	sc.responseTime.Describe(ch)
-	sc.requestTime.Describe(ch)
-
-	sc.requestLength.Describe(ch)
-	sc.responseLength.Describe(ch)
-
-	sc.requests.Describe(ch)
-
-	sc.upstreamLatency.Describe(ch)
-
-	sc.bytesSent.Describe(ch)
+	for _, metric := range sc.metricMapping {
+		metric.Describe(ch)
+	}
 }
 
 // Collect implements the prometheus.Collector interface.
 func (sc SocketCollector) Collect(ch chan<- prometheus.Metric) {
-	sc.connectTime.Collect(ch)
-	sc.headerTime.Collect(ch)
-	sc.responseTime.Collect(ch)
-	sc.requestTime.Collect(ch)
-
-	sc.requestLength.Collect(ch)
-	sc.responseLength.Collect(ch)
-
-	sc.requests.Collect(ch)
-
-	sc.upstreamLatency.Collect(ch)
-
-	sc.bytesSent.Collect(ch)
+	for _, metric := range sc.metricMapping {
+		metric.Collect(ch)
+	}
 }
 
 // SetHosts sets the hostnames that are being served by the ingress controller
diff --git a/internal/ingress/metric/collectors/socket_test.go b/internal/ingress/metric/collectors/socket_test.go
index 4bebc7600..fe442aba0 100644
--- a/internal/ingress/metric/collectors/socket_test.go
+++ b/internal/ingress/metric/collectors/socket_test.go
@@ -84,6 +84,7 @@ func TestCollector(t *testing.T) {
 		data             []string
 		metrics          []string
 		useStatusClasses bool
+		excludeMetrics   []string
 		wantBefore       string
 		removeIngresses  []string
 		wantAfter        string
@@ -470,13 +471,126 @@ func TestCollector(t *testing.T) {
 			wantAfter: `
 			`,
 		},
+		{
+			name: "basic exclude metrics test",
+			data: []string{`[{
+				"host":"testshop.com",
+				"status":"200",
+				"bytesSent":150.0,
+				"method":"GET",
+				"path":"/admin",
+				"requestLength":300.0,
+				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
+				"upstreamName":"test-upstream",
+				"upstreamIP":"1.1.1.1:8080",
+				"upstreamResponseTime":200,
+				"upstreamStatus":"220",
+				"namespace":"test-app-production",
+				"ingress":"web-yml",
+				"service":"test-app",
+				"canary":""
+			}]`},
+			excludeMetrics:   []string{"nginx_ingress_controller_connect_duration_seconds"},
+			metrics:          []string{"nginx_ingress_controller_connect_duration_seconds", "nginx_ingress_controller_response_duration_seconds"},
+			useStatusClasses: true,
+			wantBefore: `
+				# HELP nginx_ingress_controller_response_duration_seconds The time spent on receiving the response from the upstream server
+				# TYPE nginx_ingress_controller_response_duration_seconds histogram
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.005"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.01"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.025"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.05"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.1"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.25"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.5"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="1"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="2.5"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="5"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="10"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="+Inf"} 1
+				nginx_ingress_controller_response_duration_seconds_sum{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx"} 200
+				nginx_ingress_controller_response_duration_seconds_count{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx"} 1
+			`,
+		},
+		{
+			name: "remove metrics with the short metric name",
+			data: []string{`[{
+				"host":"testshop.com",
+				"status":"200",
+				"bytesSent":150.0,
+				"method":"GET",
+				"path":"/admin",
+				"requestLength":300.0,
+				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
+				"upstreamName":"test-upstream",
+				"upstreamIP":"1.1.1.1:8080",
+				"upstreamResponseTime":200,
+				"upstreamStatus":"220",
+				"namespace":"test-app-production",
+				"ingress":"web-yml",
+				"service":"test-app",
+				"canary":""
+			}]`},
+			excludeMetrics:   []string{"response_duration_seconds"},
+			metrics:          []string{"nginx_ingress_controller_response_duration_seconds"},
+			useStatusClasses: true,
+			wantBefore: `
+			`,
+		},
+		{
+			name: "exclude metrics make sure to only remove exactly matched metrics",
+			data: []string{`[{
+				"host":"testshop.com",
+				"status":"200",
+				"bytesSent":150.0,
+				"method":"GET",
+				"path":"/admin",
+				"requestLength":300.0,
+				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
+				"upstreamName":"test-upstream",
+				"upstreamIP":"1.1.1.1:8080",
+				"upstreamResponseTime":200,
+				"upstreamStatus":"220",
+				"namespace":"test-app-production",
+				"ingress":"web-yml",
+				"service":"test-app",
+				"canary":""
+			}]`},
+			excludeMetrics:   []string{"response_duration_seconds2", "test.*", "nginx_ingress_.*", "response_duration_secon"},
+			metrics:          []string{"nginx_ingress_controller_response_duration_seconds"},
+			useStatusClasses: true,
+			wantBefore: `
+				# HELP nginx_ingress_controller_response_duration_seconds The time spent on receiving the response from the upstream server
+				# TYPE nginx_ingress_controller_response_duration_seconds histogram
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.005"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.01"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.025"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.05"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.1"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.25"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="0.5"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="1"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="2.5"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="5"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="10"} 0
+				nginx_ingress_controller_response_duration_seconds_bucket{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx",le="+Inf"} 1
+				nginx_ingress_controller_response_duration_seconds_sum{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx"} 200
+				nginx_ingress_controller_response_duration_seconds_count{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx"} 1
+			`,
+		},
 	}
 
 	for _, c := range cases {
 		t.Run(c.name, func(t *testing.T) {
 			registry := prometheus.NewPedanticRegistry()
 
-			sc, err := NewSocketCollector("pod", "default", "ingress", true, c.useStatusClasses, buckets)
+			sc, err := NewSocketCollector("pod", "default", "ingress", true, c.useStatusClasses, buckets, c.excludeMetrics)
 			if err != nil {
 				t.Errorf("%v: unexpected error creating new SocketCollector: %v", c.name, err)
 			}
diff --git a/internal/ingress/metric/main.go b/internal/ingress/metric/main.go
index cac86e889..b2f721f62 100644
--- a/internal/ingress/metric/main.go
+++ b/internal/ingress/metric/main.go
@@ -71,7 +71,7 @@ type collector struct {
 }
 
 // NewCollector creates a new metric collector the for ingress controller
-func NewCollector(metricsPerHost, reportStatusClasses bool, registry *prometheus.Registry, ingressclass string, buckets collectors.HistogramBuckets) (Collector, error) {
+func NewCollector(metricsPerHost, reportStatusClasses bool, registry *prometheus.Registry, ingressclass string, buckets collectors.HistogramBuckets, excludedSocketMetrics []string) (Collector, error) {
 	podNamespace := os.Getenv("POD_NAMESPACE")
 	if podNamespace == "" {
 		podNamespace = "default"
@@ -89,7 +89,7 @@ func NewCollector(metricsPerHost, reportStatusClasses bool, registry *prometheus
 		return nil, err
 	}
 
-	s, err := collectors.NewSocketCollector(podName, podNamespace, ingressclass, metricsPerHost, reportStatusClasses, buckets)
+	s, err := collectors.NewSocketCollector(podName, podNamespace, ingressclass, metricsPerHost, reportStatusClasses, buckets, excludedSocketMetrics)
 	if err != nil {
 		return nil, err
 	}
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index 911ab775c..370510380 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -171,10 +171,11 @@ Requires the update-status parameter.`)
 		reportStatusClasses = flags.Bool("report-status-classes", false,
 			`Use status classes (2xx, 3xx, 4xx and 5xx) instead of status codes in metrics.`)
 
-		timeBuckets         = flags.Float64Slice("time-buckets", prometheus.DefBuckets, "Set of buckets which will be used for prometheus histogram metrics such as RequestTime, ResponseTime.")
-		lengthBuckets       = flags.Float64Slice("length-buckets", prometheus.LinearBuckets(10, 10, 10), "Set of buckets which will be used for prometheus histogram metrics such as RequestLength, ResponseLength.")
-		sizeBuckets         = flags.Float64Slice("size-buckets", prometheus.ExponentialBuckets(10, 10, 7), "Set of buckets which will be used for prometheus histogram metrics such as BytesSent.")
-		monitorMaxBatchSize = flags.Int("monitor-max-batch-size", 10000, "Max batch size of NGINX metrics.")
+		timeBuckets          = flags.Float64Slice("time-buckets", prometheus.DefBuckets, "Set of buckets which will be used for prometheus histogram metrics such as RequestTime, ResponseTime.")
+		lengthBuckets        = flags.Float64Slice("length-buckets", prometheus.LinearBuckets(10, 10, 10), "Set of buckets which will be used for prometheus histogram metrics such as RequestLength, ResponseLength.")
+		sizeBuckets          = flags.Float64Slice("size-buckets", prometheus.ExponentialBuckets(10, 10, 7), "Set of buckets which will be used for prometheus histogram metrics such as BytesSent.")
+		excludeSocketMetrics = flags.StringSlice("exclude-socket-metrics", []string{}, "et of socket request metrics to exclude which won't be exported nor being calculated. E.g. 'nginx_ingress_controller_success,nginx_ingress_controller_header_duration_seconds'.")
+		monitorMaxBatchSize  = flags.Int("monitor-max-batch-size", 10000, "Max batch size of NGINX metrics.")
 
 		httpPort  = flags.Int("http-port", 80, `Port to use for servicing HTTP traffic.`)
 		httpsPort = flags.Int("https-port", 443, `Port to use for servicing HTTPS traffic.`)
@@ -328,6 +329,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		MetricsPerHost:              *metricsPerHost,
 		MetricsBuckets:              histogramBuckets,
 		ReportStatusClasses:         *reportStatusClasses,
+		ExcludeSocketMetrics:        *excludeSocketMetrics,
 		MonitorMaxBatchSize:         *monitorMaxBatchSize,
 		DisableServiceExternalName:  *disableServiceExternalName,
 		EnableSSLPassthrough:        *enableSSLPassthrough,
diff --git a/test/e2e/e2e.go b/test/e2e/e2e.go
index 57b047230..614dd166a 100644
--- a/test/e2e/e2e.go
+++ b/test/e2e/e2e.go
@@ -40,6 +40,7 @@ import (
 	_ "k8s.io/ingress-nginx/test/e2e/leaks"
 	_ "k8s.io/ingress-nginx/test/e2e/loadbalance"
 	_ "k8s.io/ingress-nginx/test/e2e/lua"
+	_ "k8s.io/ingress-nginx/test/e2e/metrics"
 	_ "k8s.io/ingress-nginx/test/e2e/nginx"
 	_ "k8s.io/ingress-nginx/test/e2e/security"
 	_ "k8s.io/ingress-nginx/test/e2e/servicebackend"
diff --git a/test/e2e/metrics/metrics.go b/test/e2e/metrics/metrics.go
new file mode 100644
index 000000000..907b53732
--- /dev/null
+++ b/test/e2e/metrics/metrics.go
@@ -0,0 +1,94 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package defaultbackend
+
+import (
+	"context"
+	"fmt"
+	"net/http"
+	"strings"
+	"time"
+
+	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
+	appsv1 "k8s.io/api/apps/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+const waitForMetrics = 2 * time.Second
+
+var _ = framework.IngressNginxDescribe("[metrics] exported prometheus metrics", func() {
+	f := framework.NewDefaultFramework("metrics")
+	host := "foo.com"
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment()
+		f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil))
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, fmt.Sprintf("server_name %s ;", host)) &&
+					strings.Contains(server, "proxy_pass http://upstream_balancer;")
+			})
+	})
+
+	ginkgo.It("exclude socket request metrics are absent", func() {
+		err := f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
+			args := deployment.Spec.Template.Spec.Containers[0].Args
+			args = append(args, "--exclude-socket-metrics=nginx_ingress_controller_request_size,nginx_ingress_controller_header_duration_seconds")
+			deployment.Spec.Template.Spec.Containers[0].Args = args
+			_, err := f.KubeClientSet.AppsV1().Deployments(f.Namespace).Update(context.TODO(), deployment, metav1.UpdateOptions{})
+			return err
+		})
+		assert.Nil(ginkgo.GinkgoT(), err, "updating deployment")
+
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+		time.Sleep(waitForMetrics)
+
+		ip := f.GetNginxPodIP()
+		mf, err := f.GetMetric("nginx_ingress_controller_request_size", ip)
+		assert.ErrorContains(ginkgo.GinkgoT(), err, "nginx_ingress_controller_request_size")
+		assert.Nil(ginkgo.GinkgoT(), mf)
+	})
+	ginkgo.It("exclude socket request metrics are present", func() {
+		err := f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
+			args := deployment.Spec.Template.Spec.Containers[0].Args
+			args = append(args, "--exclude-socket-metrics=non_existing_metric_does_not_affect_existing_metrics")
+			deployment.Spec.Template.Spec.Containers[0].Args = args
+			_, err := f.KubeClientSet.AppsV1().Deployments(f.Namespace).Update(context.TODO(), deployment, metav1.UpdateOptions{})
+			return err
+		})
+		assert.Nil(ginkgo.GinkgoT(), err, "updating deployment")
+
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+		time.Sleep(waitForMetrics)
+
+		ip := f.GetNginxPodIP()
+		mf, err := f.GetMetric("nginx_ingress_controller_request_size", ip)
+		assert.Nil(ginkgo.GinkgoT(), err)
+		assert.NotNil(ginkgo.GinkgoT(), mf)
+	})
+})

From f35dae9b1117a6e0da532702bb4978ea8547175f Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Sun, 16 Apr 2023 16:09:39 -0500
Subject: [PATCH 0716/1641] added test boilerplate

---
 test/e2e/e2e.go | 41 +++++++++++++++++++++--------------------
 1 file changed, 21 insertions(+), 20 deletions(-)

diff --git a/test/e2e/e2e.go b/test/e2e/e2e.go
index 57b047230..a671e8793 100644
--- a/test/e2e/e2e.go
+++ b/test/e2e/e2e.go
@@ -29,26 +29,27 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 
 	// tests to run
-	_ "k8s.io/ingress-nginx/test/e2e/admission"
-	_ "k8s.io/ingress-nginx/test/e2e/annotations"
-	_ "k8s.io/ingress-nginx/test/e2e/annotations/modsecurity"
-	_ "k8s.io/ingress-nginx/test/e2e/dbg"
-	_ "k8s.io/ingress-nginx/test/e2e/defaultbackend"
-	_ "k8s.io/ingress-nginx/test/e2e/endpointslices"
-	_ "k8s.io/ingress-nginx/test/e2e/gracefulshutdown"
-	_ "k8s.io/ingress-nginx/test/e2e/ingress"
-	_ "k8s.io/ingress-nginx/test/e2e/leaks"
-	_ "k8s.io/ingress-nginx/test/e2e/loadbalance"
-	_ "k8s.io/ingress-nginx/test/e2e/lua"
-	_ "k8s.io/ingress-nginx/test/e2e/nginx"
-	_ "k8s.io/ingress-nginx/test/e2e/security"
-	_ "k8s.io/ingress-nginx/test/e2e/servicebackend"
-	_ "k8s.io/ingress-nginx/test/e2e/settings"
-	_ "k8s.io/ingress-nginx/test/e2e/settings/modsecurity"
-	_ "k8s.io/ingress-nginx/test/e2e/settings/ocsp"
-	_ "k8s.io/ingress-nginx/test/e2e/ssl"
-	_ "k8s.io/ingress-nginx/test/e2e/status"
-	_ "k8s.io/ingress-nginx/test/e2e/tcpudp"
+	// _ "k8s.io/ingress-nginx/test/e2e/admission"
+	// _ "k8s.io/ingress-nginx/test/e2e/annotations"
+	// _ "k8s.io/ingress-nginx/test/e2e/annotations/modsecurity"
+	_ "k8s.io/ingress-nginx/test/e2e/cgroups"
+	// _ "k8s.io/ingress-nginx/test/e2e/dbg"
+	// _ "k8s.io/ingress-nginx/test/e2e/defaultbackend"
+	// _ "k8s.io/ingress-nginx/test/e2e/endpointslices"
+	// _ "k8s.io/ingress-nginx/test/e2e/gracefulshutdown"
+	// _ "k8s.io/ingress-nginx/test/e2e/ingress"
+	// _ "k8s.io/ingress-nginx/test/e2e/leaks"
+	// _ "k8s.io/ingress-nginx/test/e2e/loadbalance"
+	// _ "k8s.io/ingress-nginx/test/e2e/lua"
+	// _ "k8s.io/ingress-nginx/test/e2e/nginx"
+	// _ "k8s.io/ingress-nginx/test/e2e/security"
+	// _ "k8s.io/ingress-nginx/test/e2e/servicebackend"
+	// _ "k8s.io/ingress-nginx/test/e2e/settings"
+	// _ "k8s.io/ingress-nginx/test/e2e/settings/modsecurity"
+	// _ "k8s.io/ingress-nginx/test/e2e/settings/ocsp"
+	// _ "k8s.io/ingress-nginx/test/e2e/ssl"
+	// _ "k8s.io/ingress-nginx/test/e2e/status"
+	// _ "k8s.io/ingress-nginx/test/e2e/tcpudp"
 )
 
 // RunE2ETests checks configuration parameters (specified through flags) and then runs

From dad8086cb2b992c37736e2645aaabd0a36129735 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Sun, 16 Apr 2023 16:09:58 -0500
Subject: [PATCH 0717/1641] added test boilerplate

---
 test/e2e/cgroups/cgroups.go | 36 ++++++++++++++++++++++++++++++++++++
 1 file changed, 36 insertions(+)
 create mode 100644 test/e2e/cgroups/cgroups.go

diff --git a/test/e2e/cgroups/cgroups.go b/test/e2e/cgroups/cgroups.go
new file mode 100644
index 000000000..ec9628bd5
--- /dev/null
+++ b/test/e2e/cgroups/cgroups.go
@@ -0,0 +1,36 @@
+/*
+Copyright 2020 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package cgroups
+
+import (
+	"github.com/onsi/ginkgo/v2"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
+	f := framework.NewDefaultFramework("cgroups")
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment()
+		f.NewSlowEchoDeployment()
+	})
+
+	ginkgo.It("run this test properly", func() {
+
+	})
+})

From d3e75b056f77be54e01bdb18675f1bb46caece31 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 16 Apr 2023 14:10:42 -0700
Subject: [PATCH 0718/1641] Bump actions/add-to-project from 0.4.1 to 0.5.0
 (#9840)

Bumps [actions/add-to-project](https://github.com/actions/add-to-project) from 0.4.1 to 0.5.0.
- [Release notes](https://github.com/actions/add-to-project/releases)
- [Commits](https://github.com/actions/add-to-project/compare/4756e6330fe1e0a736690d3cfd9f11c9399c2ed4...31b3f3ccdc584546fc445612dec3f38ff5edb41c)

---
updated-dependencies:
- dependency-name: actions/add-to-project
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/project.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/project.yml b/.github/workflows/project.yml
index 35d6d3e5c..95537e16c 100644
--- a/.github/workflows/project.yml
+++ b/.github/workflows/project.yml
@@ -13,7 +13,7 @@ jobs:
       repository-projects: write
       issues: write
     steps:
-      - uses: actions/add-to-project@4756e6330fe1e0a736690d3cfd9f11c9399c2ed4 # v0.4.1
+      - uses: actions/add-to-project@31b3f3ccdc584546fc445612dec3f38ff5edb41c # v0.5.0
         with:
           project-url: https://github.com/orgs/kubernetes/projects/104
           github-token: ${{ secrets.PROJECT_WRITER }}

From 7c4ac85a48c8d55417f33648dab87641a7105b7e Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Sun, 16 Apr 2023 16:11:05 -0500
Subject: [PATCH 0719/1641] more boilerplate

---
 test/e2e/cgroups/cgroups.go | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/test/e2e/cgroups/cgroups.go b/test/e2e/cgroups/cgroups.go
index ec9628bd5..98148db8d 100644
--- a/test/e2e/cgroups/cgroups.go
+++ b/test/e2e/cgroups/cgroups.go
@@ -30,7 +30,15 @@ var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
 		f.NewSlowEchoDeployment()
 	})
 
-	ginkgo.It("run this test properly", func() {
+	ginkgo.It("detects number of CPUs properly in cgroups v1", func() {
+
+	})
+
+	ginkgo.It("detects number of CPUs properly in cgroups v2", func() {
+
+	})
+
+	ginkgo.It("detects cgroups version", func() {
 
 	})
 })

From 165d0573618c5bcd42962de100b75666c6fe15b3 Mon Sep 17 00:00:00 2001
From: Sridhar Nandigam <nandigamsridhar.v@gmail.com>
Date: Sun, 16 Apr 2023 16:39:51 -0500
Subject: [PATCH 0720/1641] added a thing

---
 test/e2e/cgroups/cgroups.go                 |    7 +-
 test/junitreports/report-e2e-test-suite.xml | 1311 +++++++++++++++++++
 2 files changed, 1316 insertions(+), 2 deletions(-)
 create mode 100644 test/junitreports/report-e2e-test-suite.xml

diff --git a/test/e2e/cgroups/cgroups.go b/test/e2e/cgroups/cgroups.go
index 98148db8d..34d6c037a 100644
--- a/test/e2e/cgroups/cgroups.go
+++ b/test/e2e/cgroups/cgroups.go
@@ -18,8 +18,11 @@ package cgroups
 
 import (
 	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
+
+	"k8s.io/ingress-nginx/pkg/util/runtime"
 )
 
 var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
@@ -31,11 +34,11 @@ var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
 	})
 
 	ginkgo.It("detects number of CPUs properly in cgroups v1", func() {
-
+		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), -1)
 	})
 
 	ginkgo.It("detects number of CPUs properly in cgroups v2", func() {
-
+		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), -1)
 	})
 
 	ginkgo.It("detects cgroups version", func() {
diff --git a/test/junitreports/report-e2e-test-suite.xml b/test/junitreports/report-e2e-test-suite.xml
new file mode 100644
index 000000000..fc919bad2
--- /dev/null
+++ b/test/junitreports/report-e2e-test-suite.xml
@@ -0,0 +1,1311 @@
+<?xml version="1.0" encoding="UTF-8"?>
+  <testsuites tests="427" disabled="6" errors="0" failures="0" time="15519.407450685">
+      <testsuite name="nginx-ingress-controller e2e suite" package="/" tests="427" disabled="0" skipped="6" errors="0" failures="0" time="15519.407450685" timestamp="2023-04-04T18:04:19">
+          <properties>
+              <property name="SuiteSucceeded" value="true"></property>
+              <property name="SuiteHasProgrammaticFocus" value="false"></property>
+              <property name="SpecialSuiteFailureReason" value=""></property>
+              <property name="SuiteLabels" value="[]"></property>
+              <property name="RandomSeed" value="1680631459"></property>
+              <property name="RandomizeAllSpecs" value="true"></property>
+              <property name="LabelFilter" value=""></property>
+              <property name="FocusStrings" value=""></property>
+              <property name="SkipStrings" value="\[Memory Leak\]"></property>
+              <property name="FocusFiles" value=""></property>
+              <property name="SkipFiles" value=""></property>
+              <property name="FailOnPending" value="false"></property>
+              <property name="FailFast" value="true"></property>
+              <property name="FlakeAttempts" value="2"></property>
+              <property name="DryRun" value="false"></property>
+              <property name="ParallelTotal" value="7"></property>
+              <property name="OutputInterceptorMode" value=""></property>
+          </properties>
+          <testcase name="[It] [Annotations] cors-* should set cors methods to only allow POST, GET" classname="nginx-ingress-controller e2e suite" status="passed" time="155.719672151">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.256&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:40.576 (2m21.32s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:06:40.576&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:06:44.629 (4.053s)&#xA;&gt; Enter [It] should set cors methods to only allow POST, GET - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:62 @ 04/04/23 18:06:44.629&#xA;&lt; Exit [It] should set cors methods to only allow POST, GET - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:62 @ 04/04/23 18:06:54.768 (10.139s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:54.768&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:54.976 (208ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Load Balancer] round-robin should evenly distribute requests with round-robin (default algorithm)" classname="nginx-ingress-controller e2e suite" status="passed" time="146.423040301">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:54.976&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:01.906 (6.93s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:34 @ 04/04/23 18:07:01.906&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:34 @ 04/04/23 18:07:12.967 (11.06s)&#xA;&gt; Enter [It] should evenly distribute requests with round-robin (default algorithm) - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:39 @ 04/04/23 18:07:12.967&#xA;&lt; Exit [It] should evenly distribute requests with round-robin (default algorithm) - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:39 @ 04/04/23 18:09:21.17 (2m8.203s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:21.17&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:21.399 (229ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] use-forwarded-headers should trust X-Forwarded headers when setting is true" classname="nginx-ingress-controller e2e suite" status="passed" time="35.389805466">
+              <system-err>&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:21.4&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:28.324 (6.924s)&#xA;&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 04/04/23 18:09:28.324&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 04/04/23 18:09:39.376 (11.052s)&#xA;&gt; Enter [It] should trust X-Forwarded headers when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:40 @ 04/04/23 18:09:39.376&#xA;STEP: ensuring single values are parsed correctly - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:54 @ 04/04/23 18:09:56.563&#xA;STEP: ensuring that first entry in X-Forwarded-Host is used as the best host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:75 @ 04/04/23 18:09:56.572&#xA;&lt; Exit [It] should trust X-Forwarded headers when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:40 @ 04/04/23 18:09:56.578 (17.202s)&#xA;&gt; Enter [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:56.578&#xA;&lt; Exit [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:56.789 (211ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] from-to-www-redirect should redirect from www HTTPS to HTTPS" classname="nginx-ingress-controller e2e suite" status="passed" time="26.419790469">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:56.79&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:03.662 (6.873s)&#xA;&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 04/04/23 18:10:03.662&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 04/04/23 18:10:07.688 (4.026s)&#xA;&gt; Enter [It] should redirect from www HTTPS to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:64 @ 04/04/23 18:10:07.688&#xA;STEP: setting up server for redirect from www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:65 @ 04/04/23 18:10:07.688&#xA;STEP: sending request to www should redirect to domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:91 @ 04/04/23 18:10:22.913&#xA;STEP: sending request to domain should not redirect to www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:103 @ 04/04/23 18:10:22.941&#xA;&lt; Exit [It] should redirect from www HTTPS to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:64 @ 04/04/23 18:10:22.969 (15.281s)&#xA;&gt; Enter [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:22.969&#xA;&lt; Exit [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:23.209 (240ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should set secure in cookie with provided true annotation on http" classname="nginx-ingress-controller e2e suite" status="passed" time="22.314624867">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:23.21&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:31.083 (7.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:10:31.083&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:10:35.101 (4.018s)&#xA;&gt; Enter [It] should set secure in cookie with provided true annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:412 @ 04/04/23 18:10:35.101&#xA;&lt; Exit [It] should set secure in cookie with provided true annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:412 @ 04/04/23 18:10:45.308 (10.206s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:45.308&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:45.524 (217ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should not set cookie without domain annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="21.240386516">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:45.525&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:52.399 (6.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:10:52.399&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:10:56.446 (4.048s)&#xA;&gt; Enter [It] should not set cookie without domain annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:248 @ 04/04/23 18:10:56.446&#xA;&lt; Exit [It] should not set cookie without domain annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:248 @ 04/04/23 18:11:06.571 (10.124s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:06.571&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:06.765 (195ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should set sticky cookie without host" classname="nginx-ingress-controller e2e suite" status="passed" time="21.40125451">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:06.765&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:13.684 (6.918s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:11:13.684&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:11:17.714 (4.03s)&#xA;&gt; Enter [It] should set sticky cookie without host - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:352 @ 04/04/23 18:11:17.714&#xA;&lt; Exit [It] should set sticky cookie without host - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:352 @ 04/04/23 18:11:27.946 (10.232s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:27.946&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:28.167 (220ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Security] request smuggling should not return body content from error_page" classname="nginx-ingress-controller e2e suite" status="passed" time="32.363293062">
+              <system-err>&gt; Enter [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:28.167&#xA;&lt; Exit [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:36.071 (7.904s)&#xA;&gt; Enter [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:35 @ 04/04/23 18:11:36.071&#xA;&lt; Exit [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:35 @ 04/04/23 18:11:38.106 (2.035s)&#xA;&gt; Enter [It] should not return body content from error_page - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:39 @ 04/04/23 18:11:38.106&#xA;&lt; Exit [It] should not return body content from error_page - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:39 @ 04/04/23 18:12:00.307 (22.201s)&#xA;&gt; Enter [AfterEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:00.307&#xA;&lt; Exit [AfterEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:00.53 (223ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - GRPC should use grpc_pass in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="24.501632586">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:00.531&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:07.492 (6.961s)&#xA;&gt; Enter [It] should use grpc_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:43 @ 04/04/23 18:12:07.492&#xA;&lt; Exit [It] should use grpc_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:43 @ 04/04/23 18:12:24.818 (17.326s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:24.818&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:25.032 (214ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured with invalid content and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="21.754871768">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:25.033&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:32.425 (7.392s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:12:32.425&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:12:36.448 (4.023s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured with invalid content and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:227 @ 04/04/23 18:12:36.448&#xA;&lt; Exit [It] should return status code 401 when authentication is configured with invalid content and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:227 @ 04/04/23 18:12:46.572 (10.124s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:46.572&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:46.787 (215ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="33.025082751">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:46.788&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:54.215 (7.427s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:12:54.215&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:13:02.279 (8.064s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:490 @ 04/04/23 18:13:02.279&#xA;STEP: routing requests to the canary upstream when header pattern is matched - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:514 @ 04/04/23 18:13:19.503&#xA;STEP: routing requests to the mainline upstream when header failed to match header value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:523 @ 04/04/23 18:13:19.508&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:490 @ 04/04/23 18:13:19.51 (17.231s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:19.51&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:19.813 (303ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] enable-multi-accept should be enabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="10.259806432">
+              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:19.813&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:26.704 (6.89s)&#xA;&gt; Enter [It] should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:31 @ 04/04/23 18:13:26.704&#xA;&lt; Exit [It] should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:31 @ 04/04/23 18:13:29.872 (3.169s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:29.872&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:30.073 (201ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass" classname="nginx-ingress-controller e2e suite" status="passed" time="37.41369791">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:30.073&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:37.948 (7.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:13:37.948&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:13:41.967 (4.019s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:133 @ 04/04/23 18:13:41.967&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:133 @ 04/04/23 18:14:07.32 (25.353s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:07.32&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:07.487 (167ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Default Backend] disables access logging for default backend" classname="nginx-ingress-controller e2e suite" status="skipped" time="7.073309195">
+              <skipped message="skipped - enable-access-log-for-default-backend"></skipped>
+              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:07.487&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:14.369 (6.882s)&#xA;&gt; Enter [It] disables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:105 @ 04/04/23 18:14:14.369&#xA;[SKIPPED] enable-access-log-for-default-backend&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:107 @ 04/04/23 18:14:14.37&#xA;&lt; Exit [It] disables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:105 @ 04/04/23 18:14:14.37 (1ms)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:14.37&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:14.561 (191ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by cookie respects always and never values" classname="nginx-ingress-controller e2e suite" status="passed" time="60.518220117">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:14.561&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:21.468 (6.907s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:14:21.468&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:14:29.526 (8.058s)&#xA;&gt; Enter [It] respects always and never values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:643 @ 04/04/23 18:14:29.526&#xA;STEP: routing requests to the canary upstream when cookie is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:667 @ 04/04/23 18:14:46.664&#xA;STEP: routing requests to the mainline upstream when cookie is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:678 @ 04/04/23 18:14:54.864&#xA;STEP: routing requests to the mainline upstream when cookie is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:689 @ 04/04/23 18:15:04.858&#xA;&lt; Exit [It] respects always and never values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:643 @ 04/04/23 18:15:14.862 (45.336s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:14.862&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:15.079 (218ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] default-backend when default backend annotation is enabled should use a custom default backend as upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="22.31198962">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:15.08&#xA;&lt; Exit [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:22.972 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:32 @ 04/04/23 18:15:22.972&#xA;&lt; Exit [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:32 @ 04/04/23 18:15:26.998 (4.026s)&#xA;&gt; Enter [It] should use a custom default backend as upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:37 @ 04/04/23 18:15:26.998&#xA;&lt; Exit [It] should use a custom default backend as upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:37 @ 04/04/23 18:15:37.18 (10.182s)&#xA;&gt; Enter [AfterEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:37.18&#xA;&lt; Exit [AfterEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:37.392 (212ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* canary affinity behavior always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="38.759102087">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:37.392&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:44.321 (6.929s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:15:44.321&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:15:50.372 (6.051s)&#xA;&gt; Enter [It] always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1000 @ 04/04/23 18:15:50.372&#xA;&lt; Exit [It] always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1000 @ 04/04/23 18:16:15.956 (25.584s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:15.956&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:16.151 (195ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should write rewrite logs" classname="nginx-ingress-controller e2e suite" status="passed" time="26.937169082">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:16.152&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:25.575 (9.424s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:16:25.576&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:16:29.621 (4.045s)&#xA;&gt; Enter [It] should write rewrite logs - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:37 @ 04/04/23 18:16:29.621&#xA;STEP: setting enable-rewrite-log annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:38 @ 04/04/23 18:16:29.621&#xA;&lt; Exit [It] should write rewrite logs - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:37 @ 04/04/23 18:16:42.864 (13.243s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:42.864&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:43.089 (224ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret" classname="nginx-ingress-controller e2e suite" status="passed" time="26.69218604">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:43.089&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:50.483 (7.394s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:16:50.483&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:16:54.502 (4.019s)&#xA;&gt; Enter [It] should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:36 @ 04/04/23 18:16:54.502&#xA;&lt; Exit [It] should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:36 @ 04/04/23 18:17:09.564 (15.063s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:09.564&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:09.781 (217ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should propagate the w3c header when configured with jaeger" classname="nginx-ingress-controller e2e suite" status="passed" time="41.394943239">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:09.782&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:16.68 (6.899s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:17:16.68&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:17:20.71 (4.03s)&#xA;&gt; Enter [It] should propagate the w3c header when configured with jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:197 @ 04/04/23 18:17:20.71&#xA;&lt; Exit [It] should propagate the w3c header when configured with jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:197 @ 04/04/23 18:17:50.976 (30.266s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:50.976&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:51.176 (200ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:17:51.176&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:17:51.176 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes" classname="nginx-ingress-controller e2e suite" status="passed" time="32.627892918">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:51.177&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:59.072 (7.895s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:17:59.072&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:18:13.271 (14.199s)&#xA;&gt; Enter [It] handles endpoints only changes - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:62 @ 04/04/23 18:18:13.271&#xA;&lt; Exit [It] handles endpoints only changes - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:62 @ 04/04/23 18:18:23.585 (10.314s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:23.585&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:23.805 (219ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [SSL] secret update should not appear references to secret updates not used in ingress rules" classname="nginx-ingress-controller e2e suite" status="passed" time="34.389384875">
+              <system-err>&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:23.805&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:30.696 (6.891s)&#xA;&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 04/04/23 18:18:30.696&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 04/04/23 18:18:34.717 (4.021s)&#xA;&gt; Enter [It] should not appear references to secret updates not used in ingress rules - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:40 @ 04/04/23 18:18:34.717&#xA;&lt; Exit [It] should not appear references to secret updates not used in ingress rules - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:40 @ 04/04/23 18:18:57.987 (23.27s)&#xA;&gt; Enter [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:57.987&#xA;&lt; Exit [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:58.194 (208ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure Opentelemetry should include opentelemetry_trust_incoming_spans on directive when enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="31.804972504">
+              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:58.195&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:08.072 (9.877s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:19:08.072&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:19:12.096 (4.024s)&#xA;&gt; Enter [It] should include opentelemetry_trust_incoming_spans on directive when enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:74 @ 04/04/23 18:19:12.096&#xA;&lt; Exit [It] should include opentelemetry_trust_incoming_spans on directive when enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:74 @ 04/04/23 18:19:29.486 (17.39s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:29.486&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:30 (514ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:19:30&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:19:30 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] from-to-www-redirect should redirect from www HTTP to HTTP" classname="nginx-ingress-controller e2e suite" status="passed" time="22.301605707">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:30.007&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:37.929 (7.922s)&#xA;&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 04/04/23 18:19:37.929&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 04/04/23 18:19:41.957 (4.027s)&#xA;&gt; Enter [It] should redirect from www HTTP to HTTP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:38 @ 04/04/23 18:19:41.957&#xA;STEP: setting up server for redirect from www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:39 @ 04/04/23 18:19:41.957&#xA;STEP: sending request to www.fromtowwwredirect.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:55 @ 04/04/23 18:19:52.111&#xA;&lt; Exit [It] should redirect from www HTTP to HTTP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:38 @ 04/04/23 18:19:52.114 (10.157s)&#xA;&gt; Enter [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:52.114&#xA;&lt; Exit [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:52.309 (195ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Debug CLI should produce valid JSON for /dbg general" classname="nginx-ingress-controller e2e suite" status="passed" time="19.236570056">
+              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:52.309&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:59.222 (6.912s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:19:59.222&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:20:03.271 (4.049s)&#xA;&gt; Enter [It] should produce valid JSON for /dbg general - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:85 @ 04/04/23 18:20:03.271&#xA;&lt; Exit [It] should produce valid JSON for /dbg general - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:85 @ 04/04/23 18:20:10.739 (7.468s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:10.739&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:11.546 (807ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests split between mainline and canary if canary weight is 50" classname="nginx-ingress-controller e2e suite" status="passed" time="72.6402812">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:11.548&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:20.355 (8.808s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:20:20.355&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:20:28.54 (8.185s)&#xA;&gt; Enter [It] should route requests split between mainline and canary if canary weight is 50 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:808 @ 04/04/23 18:20:28.54&#xA;&lt; Exit [It] should route requests split between mainline and canary if canary weight is 50 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:808 @ 04/04/23 18:21:23.965 (55.425s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:23.965&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:24.188 (223ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] custom-http-errors configures Nginx correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="44.923714382">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:24.188&#xA;&lt; Exit [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:32.093 (7.904s)&#xA;&gt; Enter [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:37 @ 04/04/23 18:21:32.093&#xA;&lt; Exit [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:37 @ 04/04/23 18:21:36.116 (4.023s)&#xA;&gt; Enter [It] configures Nginx correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:41 @ 04/04/23 18:21:36.116&#xA;STEP: turning on proxy_intercept_errors directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:59 @ 04/04/23 18:21:46.348&#xA;STEP: configuring error_page directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:62 @ 04/04/23 18:21:46.348&#xA;STEP: creating error locations - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:67 @ 04/04/23 18:21:46.348&#xA;STEP: updating configuration when only custom-http-error value changes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:72 @ 04/04/23 18:21:46.349&#xA;STEP: ignoring duplicate values (503 in this case) per server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:90 @ 04/04/23 18:21:50.55&#xA;STEP: using the custom default-backend from annotation for upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:102 @ 04/04/23 18:22:00.715&#xA;&lt; Exit [It] configures Nginx correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:41 @ 04/04/23 18:22:08.9 (32.784s)&#xA;&gt; Enter [AfterEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:08.9&#xA;&lt; Exit [AfterEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:09.112 (212ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] connection-proxy-header set connection header to keep-alive" classname="nginx-ingress-controller e2e suite" status="passed" time="22.252976907">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:09.112&#xA;&lt; Exit [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:17.003 (7.891s)&#xA;&gt; Enter [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:32 @ 04/04/23 18:22:17.003&#xA;&lt; Exit [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:32 @ 04/04/23 18:22:21.032 (4.029s)&#xA;&gt; Enter [It] set connection header to keep-alive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:36 @ 04/04/23 18:22:21.032&#xA;&lt; Exit [It] set connection header to keep-alive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:36 @ 04/04/23 18:22:31.159 (10.126s)&#xA;&gt; Enter [AfterEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:31.159&#xA;&lt; Exit [AfterEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:31.365 (206ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName using FQDN with trailing dot" classname="nginx-ingress-controller e2e suite" status="passed" time="17.384809737">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:31.366&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:38.253 (6.887s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName using FQDN with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:217 @ 04/04/23 18:22:38.253&#xA;&lt; Exit [It] should return 200 for service type=ExternalName using FQDN with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:217 @ 04/04/23 18:22:48.533 (10.28s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:48.533&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:48.75 (218ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure TLS protocol setting cipher suite" classname="nginx-ingress-controller e2e suite" status="passed" time="30.336386338">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:48.751&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:55.631 (6.88s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:22:55.631&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:22:59.653 (4.022s)&#xA;&gt; Enter [BeforeEach] should configure TLS protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:47 @ 04/04/23 18:22:59.653&#xA;&lt; Exit [BeforeEach] should configure TLS protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:47 @ 04/04/23 18:23:08.743 (9.09s)&#xA;&gt; Enter [It] setting cipher suite - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:65 @ 04/04/23 18:23:08.743&#xA;&lt; Exit [It] setting cipher suite - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:65 @ 04/04/23 18:23:18.9 (10.157s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:18.9&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:19.087 (187ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] client-body-buffer-size should not set client_body_buffer_size to invalid 1b" classname="nginx-ingress-controller e2e suite" status="passed" time="22.345381233">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:19.087&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:27.019 (7.931s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:23:27.019&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:23:31.042 (4.023s)&#xA;&gt; Enter [It] should not set client_body_buffer_size to invalid 1b - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:145 @ 04/04/23 18:23:31.042&#xA;&lt; Exit [It] should not set client_body_buffer_size to invalid 1b - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:145 @ 04/04/23 18:23:41.252 (10.21s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:41.252&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:41.433 (181ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user with annotated ingress retains cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="35.862466475">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:41.433&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:48.317 (6.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:23:48.317&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:23:52.34 (4.023s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:23:52.34&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:24:11.665 (19.325s)&#xA;&gt; Enter [It] user with annotated ingress retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:433 @ 04/04/23 18:24:11.665&#xA;&lt; Exit [It] user with annotated ingress retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:433 @ 04/04/23 18:24:16.916 (5.251s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:16.916&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:17.295 (379ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With default ingress class config should accept both Ingresses with default IngressClassName and IngressClass annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="28.849373163">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:17.296&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:24.725 (7.429s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:24:24.725&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:24:28.761 (4.036s)&#xA;&gt; Enter [It] should accept both Ingresses with default IngressClassName and IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:132 @ 04/04/23 18:24:28.761&#xA;&lt; Exit [It] should accept both Ingresses with default IngressClassName and IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:132 @ 04/04/23 18:24:45.952 (17.19s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:45.952&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:46.145 (194ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="62.989242552">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:46.146&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:54.048 (7.903s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:24:54.048&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:24:58.076 (4.028s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:24:58.076&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:25:03.11&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:25:13.321&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:25:23.483&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:25:33.694&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:25:48.897 (50.821s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:849 @ 04/04/23 18:25:48.897&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:849 @ 04/04/23 18:25:48.908 (11ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:48.908&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:49.135 (227ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should enable the log-format-escape-none" classname="nginx-ingress-controller e2e suite" status="passed" time="29.279224113">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:49.135&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:56.988 (7.853s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:25:56.988&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:26:08.04 (11.052s)&#xA;&gt; Enter [It] should enable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:63 @ 04/04/23 18:26:08.04&#xA;&lt; Exit [It] should enable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:63 @ 04/04/23 18:26:18.223 (10.184s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:18.223&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:18.414 (191ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="28.389158726">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:18.415&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:25.316 (6.901s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:26:25.316&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:26:29.352 (4.036s)&#xA;&gt; Enter [It] disable-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:35 @ 04/04/23 18:26:29.352&#xA;&lt; Exit [It] disable-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:35 @ 04/04/23 18:26:46.584 (17.231s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:46.584&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:46.805 (221ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] backend status code 503 should return 503 when backend service does not exist" classname="nginx-ingress-controller e2e suite" status="passed" time="17.252661988">
+              <system-err>&gt; Enter [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:46.805&#xA;&lt; Exit [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:53.714 (6.909s)&#xA;&gt; Enter [It] should return 503 when backend service does not exist - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:36 @ 04/04/23 18:26:53.714&#xA;&lt; Exit [It] should return 503 when backend service does not exist - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:36 @ 04/04/23 18:27:03.859 (10.145s)&#xA;&gt; Enter [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:03.859&#xA;&lt; Exit [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:04.058 (199ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when host part of auth-url contains a variable" classname="nginx-ingress-controller e2e suite" status="passed" time="180.073180671">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:04.058&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:22.496 (2m18.438s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:29:22.496&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:29:26.527 (4.032s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:26.527&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:40.697 (14.169s)&#xA;&gt; Enter [It] should not create additional upstream block when host part of auth-url contains a variable - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:570 @ 04/04/23 18:29:40.697&#xA;&lt; Exit [It] should not create additional upstream block when host part of auth-url contains a variable - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:570 @ 04/04/23 18:30:03.916 (23.219s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:03.916&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:04.131 (215ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should return 403 using auth-tls-match-cn with no matching CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="22.572106725">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:04.131&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:12.003 (7.871s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:30:12.003&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:30:16.028 (4.025s)&#xA;&gt; Enter [It] should return 403 using auth-tls-match-cn with no matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:266 @ 04/04/23 18:30:16.028&#xA;&lt; Exit [It] should return 403 using auth-tls-match-cn with no matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:266 @ 04/04/23 18:30:26.487 (10.459s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:26.487&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:26.704 (217ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] hash size Check the variable hash size should set variables-hash-max-size" classname="nginx-ingress-controller e2e suite" status="passed" time="28.267138211">
+              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:26.704&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:33.592 (6.888s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:30:33.592&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:30:44.636 (11.044s)&#xA;&gt; Enter [It] should set variables-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:88 @ 04/04/23 18:30:44.636&#xA;&lt; Exit [It] should set variables-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:88 @ 04/04/23 18:30:54.792 (10.156s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:54.792&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:54.971 (179ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] nginx-configuration fails when using alias directive" classname="nginx-ingress-controller e2e suite" status="passed" time="62.037787772">
+              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:30:54.971&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:30:56.98 (2.008s)&#xA;&gt; Enter [It] fails when using alias directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:115 @ 04/04/23 18:30:56.98&#xA;&lt; Exit [It] fails when using alias directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:115 @ 04/04/23 18:31:57.006 (1m0.027s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:31:57.006&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:31:57.009 (3ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] stream-snippet should add value of stream-snippet to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="26.324702674">
+              <system-err>&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:57.009&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:03.889 (6.88s)&#xA;&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 04/04/23 18:32:03.889&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 04/04/23 18:32:07.917 (4.028s)&#xA;&gt; Enter [It] should add value of stream-snippet to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:41 @ 04/04/23 18:32:07.917&#xA;&lt; Exit [It] should add value of stream-snippet to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:41 @ 04/04/23 18:32:23.139 (15.222s)&#xA;&gt; Enter [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:23.139&#xA;&lt; Exit [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:23.334 (195ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] force-ssl-redirect should redirect to https" classname="nginx-ingress-controller e2e suite" status="passed" time="18.161892976">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:23.334&#xA;&lt; Exit [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:30.222 (6.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:30 @ 04/04/23 18:32:30.222&#xA;&lt; Exit [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:30 @ 04/04/23 18:32:34.249 (4.027s)&#xA;&gt; Enter [It] should redirect to https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:34 @ 04/04/23 18:32:34.249&#xA;&lt; Exit [It] should redirect to https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:34 @ 04/04/23 18:32:41.274 (7.025s)&#xA;&gt; Enter [AfterEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:41.274&#xA;&lt; Exit [AfterEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:41.496 (222ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With specific ingress-class flags should ignore Ingress with no class and accept the correctly configured Ingresses" classname="nginx-ingress-controller e2e suite" status="passed" time="43.376544604">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:41.497&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:48.376 (6.879s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:32:48.376&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:32:52.403 (4.027s)&#xA;&gt; Enter [BeforeEach] With specific ingress-class flags - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:392 @ 04/04/23 18:32:52.403&#xA;&lt; Exit [BeforeEach] With specific ingress-class flags - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:392 @ 04/04/23 18:33:00.451 (8.048s)&#xA;&gt; Enter [It] should ignore Ingress with no class and accept the correctly configured Ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:413 @ 04/04/23 18:33:00.451&#xA;&lt; Exit [It] should ignore Ingress with no class and accept the correctly configured Ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:413 @ 04/04/23 18:33:24.697 (24.246s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:24.697&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:24.873 (176ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to canary if canary weight is 100" classname="nginx-ingress-controller e2e suite" status="passed" time="34.835880563">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:24.873&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:32.238 (7.364s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:33:32.238&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:33:42.291 (10.053s)&#xA;&gt; Enter [It] should route requests only to canary if canary weight is 100 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:743 @ 04/04/23 18:33:42.291&#xA;&lt; Exit [It] should route requests only to canary if canary weight is 100 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:743 @ 04/04/23 18:33:59.526 (17.235s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:59.526&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:59.709 (183ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] plugins should exist a x-hello-world header" classname="nginx-ingress-controller e2e suite" status="passed" time="28.296985312">
+              <system-err>&gt; Enter [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:59.71&#xA;&lt; Exit [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:06.602 (6.893s)&#xA;&gt; Enter [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:31 @ 04/04/23 18:34:06.602&#xA;&lt; Exit [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:31 @ 04/04/23 18:34:10.627 (4.025s)&#xA;&gt; Enter [It] should exist a x-hello-world header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:35 @ 04/04/23 18:34:10.627&#xA;&lt; Exit [It] should exist a x-hello-world header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:35 @ 04/04/23 18:34:27.807 (17.179s)&#xA;&gt; Enter [AfterEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:27.807&#xA;&lt; Exit [AfterEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:28.007 (200ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured falls back to using default certificate when secret gets deleted without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="42.494257699">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:28.007&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:35.896 (7.889s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:34:35.896&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:34:39.916 (4.02s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:34:39.916&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:34:57.039&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:35:05.187&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:35:05.197 (25.281s)&#xA;&gt; Enter [It] falls back to using default certificate when secret gets deleted without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:185 @ 04/04/23 18:35:05.197&#xA;STEP: serving the default certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:204 @ 04/04/23 18:35:10.227&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:214 @ 04/04/23 18:35:10.293&#xA;&lt; Exit [It] falls back to using default certificate when secret gets deleted without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:185 @ 04/04/23 18:35:10.293 (5.095s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:10.293&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:10.501 (209ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user retains cookie by default" classname="nginx-ingress-controller e2e suite" status="passed" time="32.330381109">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:10.502&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:17.387 (6.885s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:35:17.387&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:35:21.413 (4.026s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:35:21.413&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:35:42.607 (21.195s)&#xA;&gt; Enter [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:411 @ 04/04/23 18:35:42.607&#xA;&lt; Exit [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:411 @ 04/04/23 18:35:42.616 (9ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:42.616&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:42.832 (216ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - FastCGI should use fastcgi_pass in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="22.329056924">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:42.832&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:49.737 (6.905s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:35:49.737&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:35:54.76 (5.023s)&#xA;&gt; Enter [It] should use fastcgi_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:37 @ 04/04/23 18:35:54.76&#xA;&lt; Exit [It] should use fastcgi_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:37 @ 04/04/23 18:36:04.978 (10.218s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:04.978&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:05.161 (183ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured picks up the updated certificate without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="48.818003036">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:05.162&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:13.068 (7.906s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:36:13.068&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:36:17.096 (4.027s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:36:17.096&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:36:34.288&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:36:42.473&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:36:42.5 (25.405s)&#xA;&gt; Enter [It] picks up the updated certificate without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:149 @ 04/04/23 18:36:42.5&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:163 @ 04/04/23 18:36:47.607&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:169 @ 04/04/23 18:36:50.731&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:180 @ 04/04/23 18:36:53.763&#xA;&lt; Exit [It] picks up the updated certificate without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:149 @ 04/04/23 18:36:53.763 (11.263s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:53.763&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:53.98 (217ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format default escape" classname="nginx-ingress-controller e2e suite" status="passed" time="33.273225638">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:53.981&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:00.852 (6.872s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:37:00.852&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:37:13.899 (13.046s)&#xA;&gt; Enter [It] log-format default escape - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:105 @ 04/04/23 18:37:13.899&#xA;&lt; Exit [It] log-format default escape - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:105 @ 04/04/23 18:37:27.067 (13.169s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:27.067&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:27.254 (186ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] brotli should only compress responses that meet the `brotli-min-length` condition" classname="nginx-ingress-controller e2e suite" status="passed" time="43.280934967">
+              <system-err>&gt; Enter [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:27.254&#xA;&lt; Exit [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:35.134 (7.88s)&#xA;&gt; Enter [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:35 @ 04/04/23 18:37:35.134&#xA;&lt; Exit [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:35 @ 04/04/23 18:37:39.153 (4.019s)&#xA;&gt; Enter [It] should only compress responses that meet the `brotli-min-length` condition - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:39 @ 04/04/23 18:37:39.153&#xA;&lt; Exit [It] should only compress responses that meet the `brotli-min-length` condition - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:39 @ 04/04/23 18:38:10.344 (31.191s)&#xA;&gt; Enter [AfterEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:10.344&#xA;&lt; Exit [AfterEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:10.535 (191ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-http-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="28.299680714">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:10.535&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:17.414 (6.879s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:38:17.414&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:38:21.437 (4.023s)&#xA;&gt; Enter [It] disable-http-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:53 @ 04/04/23 18:38:21.437&#xA;&lt; Exit [It] disable-http-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:53 @ 04/04/23 18:38:38.614 (17.177s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:38.614&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:38.835 (221ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] enable-access-log enable-rewrite-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="21.343128764">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:38.836&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:45.698 (6.862s)&#xA;&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 04/04/23 18:38:45.698&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 04/04/23 18:38:49.734 (4.036s)&#xA;&gt; Enter [It] set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:34 @ 04/04/23 18:38:49.734&#xA;&lt; Exit [It] set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:34 @ 04/04/23 18:38:59.959 (10.225s)&#xA;&gt; Enter [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:59.959&#xA;&lt; Exit [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:00.179 (220ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] Geoip2 should only allow requests from specific countries" classname="nginx-ingress-controller e2e suite" status="skipped" time="12.683479458">
+              <skipped message="skipped - GeoIP test are temporarily disabled"></skipped>
+              <system-err>&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:00.179&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:08.619 (8.44s)&#xA;&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 04/04/23 18:39:08.619&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 04/04/23 18:39:12.644 (4.025s)&#xA;&gt; Enter [It] should only allow requests from specific countries - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:70 @ 04/04/23 18:39:12.644&#xA;[SKIPPED] GeoIP test are temporarily disabled&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:71 @ 04/04/23 18:39:12.645&#xA;&lt; Exit [It] should only allow requests from specific countries - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:70 @ 04/04/23 18:39:12.645 (1ms)&#xA;&gt; Enter [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:12.645&#xA;&lt; Exit [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:12.862 (217ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting includeSubDomains parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="30.581404926">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:12.863&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:19.76 (6.897s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:39:19.76&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:39:23.829 (4.069s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:39:23.829&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:39:33.03 (9.2s)&#xA;&gt; Enter [It] setting includeSubDomains parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:127 @ 04/04/23 18:39:33.03&#xA;&lt; Exit [It] setting includeSubDomains parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:127 @ 04/04/23 18:39:43.259 (10.229s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:43.259&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:43.444 (186ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should add auth headers when global-auth-response-headers is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="55.890075182">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:43.445&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:50.328 (6.883s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:39:50.328&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:39:58.361 (8.034s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:39:58.361&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:39:58.361&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:40:08.534&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:40:18.725&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:40:28.928 (30.567s)&#xA;&gt; Enter [It] should add auth headers when global-auth-response-headers is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:223 @ 04/04/23 18:40:28.928&#xA;STEP: Adding a global-auth-response-headers to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:228 @ 04/04/23 18:40:28.928&#xA;&lt; Exit [It] should add auth headers when global-auth-response-headers is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:223 @ 04/04/23 18:40:39.119 (10.19s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:39.119&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:39.335 (216ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] proxy-read-timeout should not set invalid proxy read timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="26.343140938">
+              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:39.335&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:46.231 (6.896s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 04/04/23 18:40:46.231&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 04/04/23 18:40:48.266 (2.035s)&#xA;&gt; Enter [It] should not set invalid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:52 @ 04/04/23 18:40:48.266&#xA;&lt; Exit [It] should not set invalid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:52 @ 04/04/23 18:41:05.463 (17.198s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:05.463&#xA;&lt; Exit [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:05.678 (215ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should not return an error if the Ingress V1 definition is valid with IngressClass annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="43.931079725000004">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:41:24.95&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:41:57.132 (32.182s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:41:57.132&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:42:05.196 (8.064s)&#xA;&gt; Enter [It] should not return an error if the Ingress V1 definition is valid with IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:180 @ 04/04/23 18:42:05.196&#xA;&lt; Exit [It] should not return an error if the Ingress V1 definition is valid with IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:180 @ 04/04/23 18:42:08.558 (3.362s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:42:08.558&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:42:08.881 (323ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should return an error if the Ingress V1 definition contains invalid annotations" classname="nginx-ingress-controller e2e suite" status="passed" time="26.799712273">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:42:08.881&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:42:27.269 (18.388s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:42:27.269&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:42:35.33 (8.061s)&#xA;&gt; Enter [It] should return an error if the Ingress V1 definition contains invalid annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:196 @ 04/04/23 18:42:35.33&#xA;&lt; Exit [It] should return an error if the Ingress V1 definition contains invalid annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:196 @ 04/04/23 18:42:35.482 (152ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:42:35.482&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:42:35.681 (199ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should not allow overlaps of host and paths without canary annotations" classname="nginx-ingress-controller e2e suite" status="passed" time="32.195691651">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:42:35.681&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:42:54.33 (18.649s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:42:54.33&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 21:18:55.121 (10.056s)&#xA;&gt; Enter [It] should not allow overlaps of host and paths without canary annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:70 @ 04/04/23 21:18:55.121&#xA;&lt; Exit [It] should not allow overlaps of host and paths without canary annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:70 @ 04/04/23 21:18:58.366 (3.245s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 21:18:58.367&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 21:18:58.612 (246ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [TopologyHints] topology aware routing should return 200 when service has topology hints" classname="nginx-ingress-controller e2e suite" status="passed" time="21.448473937">
+              <system-err>&gt; Enter [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 21:18:58.613&#xA;&lt; Exit [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 21:19:05.487 (6.875s)&#xA;&gt; Enter [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:39 @ 04/04/23 21:19:05.487&#xA;&lt; Exit [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:39 @ 04/04/23 21:19:09.523 (4.036s)&#xA;&gt; Enter [It] should return 200 when service has topology hints - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:43 @ 04/04/23 21:19:09.523&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:53 @ 04/04/23 21:19:19.701&#xA;&lt; Exit [It] should return 200 when service has topology hints - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:43 @ 04/04/23 21:19:19.839 (10.316s)&#xA;&gt; Enter [AfterEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 21:19:19.839&#xA;&lt; Exit [AfterEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 21:19:20.061 (222ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should block ingress with invalid path" classname="nginx-ingress-controller e2e suite" status="passed" time="42.332684214">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 21:19:20.061&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:17:57.17 (30.737s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:17:57.17&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:18:05.234 (8.065s)&#xA;&gt; Enter [It] should block ingress with invalid path - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:108 @ 04/04/23 22:18:05.234&#xA;&lt; Exit [It] should block ingress with invalid path - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:108 @ 04/04/23 22:18:08.53 (3.296s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:18:08.53&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:18:08.765 (235ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] watch namespace selector With specific watch-namespace-selector flags should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar" classname="nginx-ingress-controller e2e suite" status="passed" time="46.527358158">
+              <system-err>&gt; Enter [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:18:08.766&#xA;&lt; Exit [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:18:22.642 (13.877s)&#xA;&gt; Enter [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:51 @ 04/04/23 22:18:22.642&#xA;&lt; Exit [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:51 @ 04/04/23 22:18:48.76 (26.118s)&#xA;&gt; Enter [It] should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:63 @ 04/04/23 22:18:48.76&#xA;&lt; Exit [It] should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:63 @ 04/04/23 22:18:55.044 (6.284s)&#xA;&gt; Enter [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:18:55.044&#xA;&lt; Exit [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:18:55.29 (246ms)&#xA;&gt; Enter [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:56 @ 04/04/23 22:18:55.29&#xA;&lt; Exit [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:56 @ 04/04/23 22:18:55.293 (3ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should not return an error for an invalid Ingress when it has unknown class" classname="nginx-ingress-controller e2e suite" status="passed" time="26.083527499">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:18:55.294&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:19:12.977 (17.683s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:19:12.977&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:19:21.048 (8.072s)&#xA;&gt; Enter [It] should not return an error for an invalid Ingress when it has unknown class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:207 @ 04/04/23 22:19:21.048&#xA;&lt; Exit [It] should not return an error for an invalid Ingress when it has unknown class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:207 @ 04/04/23 22:19:21.18 (132ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:19:21.18&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:19:21.377 (197ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller reject ingress with global-rate-limit annotations when memcached is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="49.765265582">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:19:21.377&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:19:52.511 (31.134s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:19:52.511&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:20:00.575 (8.064s)&#xA;&gt; Enter [It] reject ingress with global-rate-limit annotations when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:43 @ 04/04/23 22:20:00.575&#xA;STEP: rejects ingress when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:52 @ 04/04/23 22:20:00.575&#xA;STEP: accepts ingress when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:57 @ 04/04/23 22:20:00.587&#xA;&lt; Exit [It] reject ingress with global-rate-limit annotations when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:43 @ 04/04/23 22:20:10.885 (10.31s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:20:10.885&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:20:11.143 (257ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should return an error if there is an invalid value in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="33.755788426">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:20:11.143&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:20:29.584 (18.441s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:20:29.584&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:20:37.66 (8.076s)&#xA;&gt; Enter [It] should return an error if there is an invalid value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:136 @ 04/04/23 22:20:37.66&#xA;&lt; Exit [It] should return an error if there is an invalid value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:136 @ 04/04/23 22:20:44.7 (7.04s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:20:44.7&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:20:44.899 (199ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should return an error if there is a forbidden value in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="34.438337938">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:20:44.899&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:21:03.976 (19.078s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:21:03.976&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:21:12.046 (8.07s)&#xA;&gt; Enter [It] should return an error if there is a forbidden value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:150 @ 04/04/23 22:21:12.046&#xA;&lt; Exit [It] should return an error if there is a forbidden value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:150 @ 04/04/23 22:21:19.079 (7.033s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:21:19.079&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:21:19.337 (258ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should return an error if there is an error validating the ingress definition" classname="nginx-ingress-controller e2e suite" status="passed" time="26.71968897">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:21:19.337&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:21:37.731 (18.394s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:21:37.731&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:21:45.791 (8.06s)&#xA;&gt; Enter [It] should return an error if there is an error validating the ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:125 @ 04/04/23 22:21:45.791&#xA;&lt; Exit [It] should return an error if there is an error validating the ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:125 @ 04/04/23 22:21:45.852 (61ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:21:45.852&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:21:46.057 (205ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should not return an error if the Ingress V1 definition is valid with Ingress Class" classname="nginx-ingress-controller e2e suite" status="passed" time="32.534925031">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:21:46.057&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:22:04.907 (18.85s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:22:04.907&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:22:12.968 (8.061s)&#xA;&gt; Enter [It] should not return an error if the Ingress V1 definition is valid with Ingress Class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:164 @ 04/04/23 22:22:12.968&#xA;&lt; Exit [It] should not return an error if the Ingress V1 definition is valid with Ingress Class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:164 @ 04/04/23 22:22:18.358 (5.39s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:22:18.358&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:22:18.592 (234ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should allow overlaps of host and paths with canary annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="40.047809217">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:22:18.592&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:22:47.015 (28.422s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:22:47.015&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:22:55.073 (8.059s)&#xA;&gt; Enter [It] should allow overlaps of host and paths with canary annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:87 @ 04/04/23 22:22:55.073&#xA;&lt; Exit [It] should allow overlaps of host and paths with canary annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:87 @ 04/04/23 22:22:58.439 (3.366s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:22:58.439&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:22:58.64 (201ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured supports requests with domain with trailing dot" classname="nginx-ingress-controller e2e suite" status="passed" time="45.156808474">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.251&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:26.76 (7.509s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:04:26.76&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:04:38.808 (12.048s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:04:38.808&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:04:55.931&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:05:04.12&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:05:04.15 (25.342s)&#xA;&gt; Enter [It] supports requests with domain with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:145 @ 04/04/23 18:05:04.15&#xA;&lt; Exit [It] supports requests with domain with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:145 @ 04/04/23 18:05:04.174 (24ms)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:04.174&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:04.407 (234ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] preserve-trailing-slash should allow preservation of trailing slashes" classname="nginx-ingress-controller e2e suite" status="passed" time="18.218254728">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:04.408&#xA;&lt; Exit [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:11.385 (6.978s)&#xA;&gt; Enter [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:30 @ 04/04/23 18:05:11.385&#xA;&lt; Exit [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:30 @ 04/04/23 18:05:15.42 (4.034s)&#xA;&gt; Enter [It] should allow preservation of trailing slashes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:34 @ 04/04/23 18:05:15.42&#xA;&lt; Exit [It] should allow preservation of trailing slashes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:34 @ 04/04/23 18:05:22.428 (7.008s)&#xA;&gt; Enter [AfterEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:22.428&#xA;&lt; Exit [AfterEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:22.626 (198ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should set valid proxy timeouts" classname="nginx-ingress-controller e2e suite" status="passed" time="21.290348562">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:22.626&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:29.568 (6.942s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:05:29.568&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:05:33.606 (4.037s)&#xA;&gt; Enter [It] should set valid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:115 @ 04/04/23 18:05:33.606&#xA;&lt; Exit [It] should set valid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:115 @ 04/04/23 18:05:43.732 (10.127s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:43.732&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:43.917 (184ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Dynamic $proxy_host should exist a proxy_host using the upstream-vhost annotation value" classname="nginx-ingress-controller e2e suite" status="passed" time="22.27109412">
+              <system-err>&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:43.917&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:51.802 (7.885s)&#xA;&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 04/04/23 18:05:51.802&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 04/04/23 18:05:55.831 (4.029s)&#xA;&gt; Enter [It] should exist a proxy_host using the upstream-vhost annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:57 @ 04/04/23 18:05:55.831&#xA;&lt; Exit [It] should exist a proxy_host using the upstream-vhost annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:57 @ 04/04/23 18:06:05.978 (10.147s)&#xA;&gt; Enter [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:05.978&#xA;&lt; Exit [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:06.188 (210ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] server-tokens should not exists Server header in the response" classname="nginx-ingress-controller e2e suite" status="passed" time="29.448501298">
+              <system-err>&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:06.189&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:14.133 (7.945s)&#xA;&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 04/04/23 18:06:14.133&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 04/04/23 18:06:18.165 (4.031s)&#xA;&gt; Enter [It] should not exists Server header in the response - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:38 @ 04/04/23 18:06:18.165&#xA;&lt; Exit [It] should not exists Server header in the response - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:38 @ 04/04/23 18:06:35.378 (17.213s)&#xA;&gt; Enter [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:35.378&#xA;&lt; Exit [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:35.637 (259ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] Configmap - limit-rate Check limit-rate config" classname="nginx-ingress-controller e2e suite" status="passed" time="41.582520724">
+              <system-err>&gt; Enter [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:35.637&#xA;&lt; Exit [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:42.521 (6.884s)&#xA;&gt; Enter [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:32 @ 04/04/23 18:06:42.521&#xA;&lt; Exit [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:32 @ 04/04/23 18:06:46.54 (4.019s)&#xA;&gt; Enter [It] Check limit-rate config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:36 @ 04/04/23 18:06:46.54&#xA;&lt; Exit [It] Check limit-rate config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:36 @ 04/04/23 18:07:17.039 (30.499s)&#xA;&gt; Enter [AfterEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:17.039&#xA;&lt; Exit [AfterEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:17.22 (180ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend" classname="nginx-ingress-controller e2e suite" status="passed" time="19.412775362">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:17.22&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:24.225 (7.005s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:07:24.225&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:07:26.256 (2.031s)&#xA;&gt; Enter [It] does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:121 @ 04/04/23 18:07:26.256&#xA;&lt; Exit [It] does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:121 @ 04/04/23 18:07:36.45 (10.194s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:36.45&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:36.633 (183ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canary is created should response with a 200 status from the mainline upstream when requests are made to the mainline ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="32.429318493">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:36.633&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:43.537 (6.903s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:43.537&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:51.596 (8.059s)&#xA;&gt; Enter [It] should response with a 200 status from the mainline upstream when requests are made to the mainline ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:48 @ 04/04/23 18:07:51.596&#xA;&lt; Exit [It] should response with a 200 status from the mainline upstream when requests are made to the mainline ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:48 @ 04/04/23 18:08:08.813 (17.217s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:08.813&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:09.063 (249ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should still return status code 200 after auth backend is deleted using cache" classname="nginx-ingress-controller e2e suite" status="passed" time="63.851336918">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:09.063&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:16.959 (7.896s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:08:16.959&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:08:25.017 (8.058s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:08:25.017&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:08:25.017&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:08:35.191&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:08:45.372&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:08:55.507 (30.491s)&#xA;&gt; Enter [It] should still return status code 200 after auth backend is deleted using cache - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:155 @ 04/04/23 18:08:55.507&#xA;STEP: Adding a global-auth-cache-key to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:163 @ 04/04/23 18:08:55.507&#xA;&lt; Exit [It] should still return status code 200 after auth backend is deleted using cache - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:155 @ 04/04/23 18:09:12.69 (17.183s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:12.69&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:12.914 (224ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Ingress] DeepInspection should drop whole ingress if one path matches invalid regex" classname="nginx-ingress-controller e2e suite" status="passed" time="28.383842502">
+              <system-err>&gt; Enter [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:12.915&#xA;&lt; Exit [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:19.799 (6.884s)&#xA;&gt; Enter [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:30 @ 04/04/23 18:09:19.799&#xA;&lt; Exit [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:30 @ 04/04/23 18:09:23.825 (4.026s)&#xA;&gt; Enter [It] should drop whole ingress if one path matches invalid regex - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:34 @ 04/04/23 18:09:23.825&#xA;&lt; Exit [It] should drop whole ingress if one path matches invalid regex - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:34 @ 04/04/23 18:09:41.065 (17.24s)&#xA;&gt; Enter [AfterEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:41.065&#xA;&lt; Exit [AfterEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:41.299 (233ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Lua] lua-shared-dicts configures lua shared dicts" classname="nginx-ingress-controller e2e suite" status="passed" time="20.303048947">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:41.299&#xA;&lt; Exit [BeforeEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:49.196 (7.896s)&#xA;&gt; Enter [It] configures lua shared dicts - /go/src/k8s.io/ingress-nginx/test/e2e/settings/lua_shared_dicts.go:29 @ 04/04/23 18:09:49.196&#xA;&lt; Exit [It] configures lua shared dicts - /go/src/k8s.io/ingress-nginx/test/e2e/settings/lua_shared_dicts.go:29 @ 04/04/23 18:10:01.416 (12.22s)&#xA;&gt; Enter [AfterEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:01.416&#xA;&lt; Exit [AfterEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:01.602 (187ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should use correct longest path match" classname="nginx-ingress-controller e2e suite" status="passed" time="31.437264514">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:01.603&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:08.48 (6.877s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:10:08.48&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:10:12.502 (4.022s)&#xA;&gt; Enter [It] should use correct longest path match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:66 @ 04/04/23 18:10:12.502&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:69 @ 04/04/23 18:10:12.502&#xA;STEP: making a request to the non-rewritten location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:78 @ 04/04/23 18:10:22.752&#xA;STEP: creating an ingress definition with the rewrite-target annotation set on the &#34;/&#34; location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:88 @ 04/04/23 18:10:22.759&#xA;STEP: making a second request to the non-rewritten location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:102 @ 04/04/23 18:10:32.852&#xA;&lt; Exit [It] should use correct longest path match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:66 @ 04/04/23 18:10:32.86 (20.358s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:32.86&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:33.04 (180ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting max-age parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="33.487300099">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:33.04&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:40.925 (7.885s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:10:40.925&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:10:44.945 (4.02s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:10:44.945&#xA;Apr  4 18:10:54.109: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:10:56.109 (11.164s)&#xA;&gt; Enter [It] setting max-age parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:111 @ 04/04/23 18:10:56.109&#xA;&lt; Exit [It] setting max-age parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:111 @ 04/04/23 18:11:06.315 (10.206s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:06.315&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:06.527 (212ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="50.397964041">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:06.528&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:13.431 (6.904s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:11:13.431&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:11:21.479 (8.048s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:11:21.479&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:11:49.732 (28.253s)&#xA;&gt; Enter [It] user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:348 @ 04/04/23 18:11:49.732&#xA;&lt; Exit [It] user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:348 @ 04/04/23 18:11:56.743 (7.011s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:56.743&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:56.926 (183ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user retains cookie by default" classname="nginx-ingress-controller e2e suite" status="passed" time="43.408433493">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:56.926&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:03.815 (6.889s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:12:03.815&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:12:11.862 (8.047s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:12:11.862&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:12:40.103 (28.241s)&#xA;&gt; Enter [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:326 @ 04/04/23 18:12:40.103&#xA;&lt; Exit [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:326 @ 04/04/23 18:12:40.112 (9ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:40.112&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:40.334 (222ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not allow - portless origin with wildcard origin" classname="nginx-ingress-controller e2e suite" status="passed" time="18.100951563">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:40.335&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:47.184 (6.849s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:12:47.184&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:12:51.214 (4.031s)&#xA;&gt; Enter [It] should not allow - portless origin with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:515 @ 04/04/23 18:12:51.214&#xA;&lt; Exit [It] should not allow - portless origin with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:515 @ 04/04/23 18:12:58.232 (7.018s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:58.232&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:58.436 (203ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 200 when authentication is configured with a map and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="23.202917116">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:58.436&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:05.332 (6.896s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:13:05.332&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:13:09.361 (4.029s)&#xA;&gt; Enter [It] should return status code 200 when authentication is configured with a map and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:199 @ 04/04/23 18:13:09.361&#xA;&lt; Exit [It] should return status code 200 when authentication is configured with a map and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:199 @ 04/04/23 18:13:21.468 (12.107s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:21.468&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:21.639 (171ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should pass URL-encoded certificate to upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="25.893054261">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:21.639&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:29.514 (7.875s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:13:29.514&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:13:33.537 (4.023s)&#xA;&gt; Enter [It] should pass URL-encoded certificate to upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:161 @ 04/04/23 18:13:33.537&#xA;&lt; Exit [It] should pass URL-encoded certificate to upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:161 @ 04/04/23 18:13:47.331 (13.794s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:47.331&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:47.532 (202ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Default Backend] custom service uses custom default backend that returns 200 as status code" classname="nginx-ingress-controller e2e suite" status="passed" time="23.264944049">
+              <system-err>&gt; Enter [BeforeEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:47.533&#xA;&lt; Exit [BeforeEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:54.43 (6.897s)&#xA;&gt; Enter [It] uses custom default backend that returns 200 as status code - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/custom_default_backend.go:36 @ 04/04/23 18:13:54.43&#xA;&lt; Exit [It] uses custom default backend that returns 200 as status code - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/custom_default_backend.go:36 @ 04/04/23 18:14:10.603 (16.173s)&#xA;&gt; Enter [AfterEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:10.603&#xA;&lt; Exit [AfterEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:10.797 (195ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] whitelist-source-range should set valid ip whitelist range" classname="nginx-ingress-controller e2e suite" status="passed" time="21.327163771">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:10.798&#xA;&lt; Exit [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:17.742 (6.944s)&#xA;&gt; Enter [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:30 @ 04/04/23 18:14:17.742&#xA;&lt; Exit [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:30 @ 04/04/23 18:14:21.766 (4.024s)&#xA;&gt; Enter [It] should set valid ip whitelist range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:34 @ 04/04/23 18:14:21.766&#xA;&lt; Exit [It] should set valid ip whitelist range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:34 @ 04/04/23 18:14:31.914 (10.148s)&#xA;&gt; Enter [AfterEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:31.914&#xA;&lt; Exit [AfterEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:32.125 (211ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName using a port name" classname="nginx-ingress-controller e2e suite" status="passed" time="18.535847693">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:32.125&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:40.045 (7.92s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName using a port name - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:184 @ 04/04/23 18:14:40.045&#xA;&lt; Exit [It] should return 200 for service type=ExternalName using a port name - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:184 @ 04/04/23 18:14:50.345 (10.299s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:50.345&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:50.661 (317ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is not set" classname="nginx-ingress-controller e2e suite" status="passed" time="48.861086206">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:50.662&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:57.86 (7.198s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:14:57.86&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:15:01.901 (4.041s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:15:01.901&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:15:16.075 (14.174s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:552 @ 04/04/23 18:15:16.075&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:552 @ 04/04/23 18:15:39.289 (23.214s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:39.289&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:39.523 (234ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 401 when accessing &#39;/&#39; unauthentication" classname="nginx-ingress-controller e2e suite" status="passed" time="29.175448236">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:39.523&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:46.413 (6.89s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:15:46.413&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:16:05.358 (18.945s)&#xA;&gt; Enter [It] should return status code 401 when accessing &#39;/&#39; unauthentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:54 @ 04/04/23 18:16:05.358&#xA;&lt; Exit [It] should return status code 401 when accessing &#39;/&#39; unauthentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:54 @ 04/04/23 18:16:08.518 (3.16s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:08.518&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:08.699 (180ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] use-proxy-protocol should enable PROXY Protocol for HTTPS" classname="nginx-ingress-controller e2e suite" status="passed" time="110.571232421">
+              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:08.699&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:15.641 (6.942s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:16:15.641&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:16:26.725 (11.084s)&#xA;&gt; Enter [It] should enable PROXY Protocol for HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:112 @ 04/04/23 18:16:26.725&#xA;&lt; Exit [It] should enable PROXY Protocol for HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:112 @ 04/04/23 18:17:59.041 (1m32.316s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:59.041&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:59.27 (229ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-catch-all should ignore catch all Ingress with backend" classname="nginx-ingress-controller e2e suite" status="passed" time="40.559995342">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:59.27&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:07.156 (7.885s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:18:07.156&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:18:19.212 (12.057s)&#xA;&gt; Enter [It] should ignore catch all Ingress with backend - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:50 @ 04/04/23 18:18:19.212&#xA;&lt; Exit [It] should ignore catch all Ingress with backend - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:50 @ 04/04/23 18:18:39.618 (20.406s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:39.618&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:39.83 (212ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow headers for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="21.260866655">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:39.831&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:46.716 (6.885s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:46.716&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:50.744 (4.028s)&#xA;&gt; Enter [It] should allow headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:137 @ 04/04/23 18:18:50.744&#xA;&lt; Exit [It] should allow headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:137 @ 04/04/23 18:19:00.902 (10.159s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:00.902&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:01.091 (189ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canary is created should return 404 status for requests to the canary if no matching ingress is found" classname="nginx-ingress-controller e2e suite" status="passed" time="23.296431448">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:01.092&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:09.007 (7.915s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:19:09.007&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:19:17.081 (8.074s)&#xA;&gt; Enter [It] should return 404 status for requests to the canary if no matching ingress is found - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:80 @ 04/04/23 18:19:17.081&#xA;&lt; Exit [It] should return 404 status for requests to the canary if no matching ingress is found - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:80 @ 04/04/23 18:19:24.105 (7.024s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:24.105&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:24.388 (283ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes (down scaling of replicas)" classname="nginx-ingress-controller e2e suite" status="passed" time="176.113366498">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:24.389&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:43.748 (2m19.359s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:21:43.748&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:21:57.954 (14.206s)&#xA;&gt; Enter [It] handles endpoints only changes (down scaling of replicas) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:87 @ 04/04/23 18:21:57.954&#xA;&lt; Exit [It] handles endpoints only changes (down scaling of replicas) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:87 @ 04/04/23 18:22:20.304 (22.351s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:20.304&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:20.502 (198ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should not set proxy client-max-body-size to incorrect value" classname="nginx-ingress-controller e2e suite" status="passed" time="21.245320565">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:20.503&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:27.369 (6.866s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:22:27.369&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:22:31.399 (4.03s)&#xA;&gt; Enter [It] should not set proxy client-max-body-size to incorrect value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:100 @ 04/04/23 18:22:31.399&#xA;&lt; Exit [It] should not set proxy client-max-body-size to incorrect value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:100 @ 04/04/23 18:22:41.545 (10.146s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:41.545&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:41.748 (203ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] reuse-port reuse port should be disabled" classname="nginx-ingress-controller e2e suite" status="passed" time="155.972323059">
+              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:41.748&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:58.304 (2m16.556s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:24:58.304&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:25:07.351 (9.047s)&#xA;&gt; Enter [It] reuse port should be disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:44 @ 04/04/23 18:25:07.351&#xA;&lt; Exit [It] reuse port should be disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:44 @ 04/04/23 18:25:17.463 (10.112s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:17.463&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:17.721 (257ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="152.692429605">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:17.721&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:36 (2m18.279s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:27:36&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:27:40.022 (4.023s)&#xA;&gt; Enter [It] should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:266 @ 04/04/23 18:27:40.022&#xA;&lt; Exit [It] should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:266 @ 04/04/23 18:27:50.223 (10.201s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:50.224&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:50.413 (190ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a TLS enabled ingress when external authentication is configured should set the X-Forwarded-Port header to 443" classname="nginx-ingress-controller e2e suite" status="passed" time="39.615463078">
+              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:50.414&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:04.312 (13.898s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:28:04.312&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:28:11.43 (7.118s)&#xA;&gt; Enter [It] should set the X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:100 @ 04/04/23 18:28:11.43&#xA;Apr  4 18:28:24.664: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not forwarded-headers&#xA;&lt; Exit [It] should set the X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:100 @ 04/04/23 18:28:29.799 (18.368s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:29.799&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:30.029 (230ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] configuration-snippet set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34;" classname="nginx-ingress-controller e2e suite" status="passed" time="21.243303661">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:30.03&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:36.888 (6.859s)&#xA;&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 04/04/23 18:28:36.888&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 04/04/23 18:28:40.919 (4.03s)&#xA;&gt; Enter [It] set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:35 @ 04/04/23 18:28:40.919&#xA;&lt; Exit [It] set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:35 @ 04/04/23 18:28:51.095 (10.176s)&#xA;&gt; Enter [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:51.095&#xA;&lt; Exit [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:51.273 (178ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if the canary ingress is modified" classname="nginx-ingress-controller e2e suite" status="passed" time="41.082860994">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:51.273&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:59.672 (8.399s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:28:59.672&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:29:07.713 (8.041s)&#xA;&gt; Enter [It] should route requests to the correct upstream if the canary ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:307 @ 04/04/23 18:29:07.713&#xA;STEP: routing requests destined for the mainline ingress to the mainline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:351 @ 04/04/23 18:29:32.166&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:360 @ 04/04/23 18:29:32.169&#xA;&lt; Exit [It] should route requests to the correct upstream if the canary ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:307 @ 04/04/23 18:29:32.172 (24.459s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:32.172&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:32.356 (184ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is negative" classname="nginx-ingress-controller e2e suite" status="passed" time="48.516222384">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:32.356&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:39.249 (6.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:29:39.249&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:29:43.271 (4.022s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:43.271&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:57.423 (14.152s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is negative - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:590 @ 04/04/23 18:29:57.423&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is negative - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:590 @ 04/04/23 18:30:20.684 (23.26s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:20.684&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:20.873 (189ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-sync-events should create sync events" classname="nginx-ingress-controller e2e suite" status="passed" time="28.393909326">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:20.873&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:27.823 (6.95s)&#xA;&gt; Enter [It] should create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:53 @ 04/04/23 18:30:27.823&#xA;&lt; Exit [It] should create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:53 @ 04/04/23 18:30:49.071 (21.248s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:49.071&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:49.267 (196ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1K" classname="nginx-ingress-controller e2e suite" status="passed" time="21.295000977">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:49.267&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:56.179 (6.912s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:30:56.179&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:31:00.207 (4.028s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1K - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:57 @ 04/04/23 18:31:00.207&#xA;&lt; Exit [It] should set client_body_buffer_size to 1K - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:57 @ 04/04/23 18:31:10.334 (10.127s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:10.334&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:10.562 (228ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured keeps processing new ingresses even if one of the existing ingresses is misconfigured" classname="nginx-ingress-controller e2e suite" status="passed" time="36.595408248">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:10.562&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:17.468 (6.905s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:17.468&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:21.488 (4.02s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:31:21.488&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:31:35.745 (14.257s)&#xA;&gt; Enter [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:505 @ 04/04/23 18:31:35.745&#xA;&lt; Exit [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:505 @ 04/04/23 18:31:46.949 (11.204s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:46.949&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:47.158 (209ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow origin for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="19.176493735">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:47.158&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:55.054 (7.895s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:31:55.054&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:31:59.086 (4.032s)&#xA;&gt; Enter [It] should allow origin for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:110 @ 04/04/23 18:31:59.086&#xA;&lt; Exit [It] should allow origin for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:110 @ 04/04/23 18:32:06.117 (7.031s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:06.117&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:06.335 (217ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 200 when accessing &#39;/&#39;  authentication" classname="nginx-ingress-controller e2e suite" status="passed" time="27.949951743">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:06.335&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:13.216 (6.881s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:32:13.216&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:32:30.126 (16.91s)&#xA;&gt; Enter [It] should return status code 200 when accessing &#39;/&#39;  authentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:68 @ 04/04/23 18:32:30.126&#xA;&lt; Exit [It] should return status code 200 when accessing &#39;/&#39;  authentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:68 @ 04/04/23 18:32:34.111 (3.985s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:34.111&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:34.285 (174ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not allow - single origin without port and origin with required port" classname="nginx-ingress-controller e2e suite" status="passed" time="19.142361956">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:34.285&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:42.164 (7.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:32:42.164&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:32:46.19 (4.026s)&#xA;&gt; Enter [It] should not allow - single origin without port and origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:405 @ 04/04/23 18:32:46.19&#xA;&lt; Exit [It] should not allow - single origin without port and origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:405 @ 04/04/23 18:32:53.221 (7.031s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:53.221&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:53.428 (207ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] gzip should set gzip_min_length to 100" classname="nginx-ingress-controller e2e suite" status="passed" time="24.269620195999998">
+              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:53.428&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:00.295 (6.867s)&#xA;&gt; Enter [It] should set gzip_min_length to 100 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:78 @ 04/04/23 18:33:00.295&#xA;&lt; Exit [It] should set gzip_min_length to 100 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:78 @ 04/04/23 18:33:17.519 (17.224s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:17.519&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:17.698 (178ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] global-options should have worker_rlimit_nofile option and be independent on amount of worker processes" classname="nginx-ingress-controller e2e suite" status="passed" time="17.207554955">
+              <system-err>&gt; Enter [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:17.698&#xA;&lt; Exit [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:24.578 (6.881s)&#xA;&gt; Enter [It] should have worker_rlimit_nofile option and be independent on amount of worker processes - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:38 @ 04/04/23 18:33:24.578&#xA;&lt; Exit [It] should have worker_rlimit_nofile option and be independent on amount of worker processes - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:38 @ 04/04/23 18:33:34.73 (10.152s)&#xA;&gt; Enter [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:34.73&#xA;&lt; Exit [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:34.905 (175ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keepalive time to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="31.352569677">
+              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:34.906&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:44.808 (9.902s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:33:44.808&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:33:55.842 (11.034s)&#xA;&gt; Enter [It] should set keepalive time to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:77 @ 04/04/23 18:33:55.842&#xA;&lt; Exit [It] should set keepalive time to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:77 @ 04/04/23 18:34:05.994 (10.152s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:05.994&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:06.258 (264ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Memory Leak] Dynamic Certificates should not leak memory from ingress SSL certificates or configuration updates" classname="nginx-ingress-controller e2e suite" status="skipped" time="0">
+              <skipped message="skipped"></skipped>
+          </testcase>
+          <testcase name="[It] [Shutdown] ingress controller should shutdown in less than 60 secons without pending connections" classname="nginx-ingress-controller e2e suite" status="passed" time="30.340601041">
+              <system-err>&gt; Enter [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:06.259&#xA;&lt; Exit [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:14.168 (7.909s)&#xA;&gt; Enter [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:35 @ 04/04/23 18:34:14.168&#xA;&lt; Exit [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:35 @ 04/04/23 18:34:25.207 (11.04s)&#xA;&gt; Enter [It] should shutdown in less than 60 secons without pending connections - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:40 @ 04/04/23 18:34:25.207&#xA;&lt; Exit [It] should shutdown in less than 60 secons without pending connections - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:40 @ 04/04/23 18:34:36.4 (11.193s)&#xA;&gt; Enter [AfterEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:36.4&#xA;&lt; Exit [AfterEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:36.599 (199ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param should return status code 200 when signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="26.351221493">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:36.6&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:44.48 (7.88s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:34:44.48&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:34:48.503 (4.024s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:34:48.503&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:35:02.728 (14.224s)&#xA;&gt; Enter [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:678 @ 04/04/23 18:35:02.728&#xA;&lt; Exit [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:678 @ 04/04/23 18:35:02.742 (15ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:02.742&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:02.951 (209ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName should sync ingress on external name service addition/deletion" classname="nginx-ingress-controller e2e suite" status="passed" time="27.600345816">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:02.951&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:09.829 (6.877s)&#xA;&gt; Enter [It] should sync ingress on external name service addition/deletion - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:311 @ 04/04/23 18:35:09.829&#xA;&lt; Exit [It] should sync ingress on external name service addition/deletion - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:311 @ 04/04/23 18:35:30.35 (20.521s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:30.35&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:30.552 (202ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] enable-ssl-passthrough With enable-ssl-passthrough enabled should pass unknown traffic to default backend and handle known traffic" classname="nginx-ingress-controller e2e suite" status="passed" time="47.050402902">
+              <system-err>&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:30.552&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:37.481 (6.929s)&#xA;&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 04/04/23 18:35:37.481&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 04/04/23 18:35:48.587 (11.106s)&#xA;&gt; Enter [It] should pass unknown traffic to default backend and handle known traffic - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:79 @ 04/04/23 18:35:48.587&#xA;&lt; Exit [It] should pass unknown traffic to default backend and handle known traffic - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:79 @ 04/04/23 18:36:17.402 (28.814s)&#xA;&gt; Enter [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:17.402&#xA;&lt; Exit [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:17.602 (201ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should enable the log-format-escape-json" classname="nginx-ingress-controller e2e suite" status="passed" time="28.304476097">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:17.603&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:24.47 (6.867s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:36:24.47&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:36:35.523 (11.052s)&#xA;&gt; Enter [It] should enable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:47 @ 04/04/23 18:36:35.523&#xA;&lt; Exit [It] should enable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:47 @ 04/04/23 18:36:45.69 (10.167s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:45.69&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:45.908 (218ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should 302 redirect to error page instead of 400 when auth-tls-error-page is set" classname="nginx-ingress-controller e2e suite" status="passed" time="25.063507751">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:45.908&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:52.807 (6.899s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:36:52.807&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:36:56.83 (4.024s)&#xA;&gt; Enter [It] should 302 redirect to error page instead of 400 when auth-tls-error-page is set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:114 @ 04/04/23 18:36:56.83&#xA;&lt; Exit [It] should 302 redirect to error page instead of 400 when auth-tls-error-page is set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:114 @ 04/04/23 18:37:10.803 (13.972s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:10.803&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:10.971 (169ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user does not retain cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="32.349310786">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:10.972&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:17.855 (6.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:37:17.855&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:37:21.879 (4.023s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:37:21.879&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:37:43.087 (21.209s)&#xA;&gt; Enter [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:422 @ 04/04/23 18:37:43.087&#xA;&lt; Exit [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:422 @ 04/04/23 18:37:43.095 (8ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:43.095&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:43.321 (225ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* Single canary Ingress should not use canary as a catch-all server" classname="nginx-ingress-controller e2e suite" status="passed" time="32.401910534">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:43.321&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:50.242 (6.92s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:37:50.242&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:37:58.297 (8.055s)&#xA;&gt; Enter [It] should not use canary as a catch-all server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:863 @ 04/04/23 18:37:58.297&#xA;&lt; Exit [It] should not use canary as a catch-all server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:863 @ 04/04/23 18:38:15.503 (17.206s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:15.503&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:15.723 (220ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Default Backend] should return 404 sending requests when only a default backend is running" classname="nginx-ingress-controller e2e suite" status="passed" time="16.552121031">
+              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:15.724&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:22.643 (6.92s)&#xA;&gt; Enter [It] should return 404 sending requests when only a default backend is running - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:33 @ 04/04/23 18:38:22.643&#xA;STEP: basic HTTP GET request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.644&#xA;STEP: basic HTTP GET request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.657&#xA;STEP: basic HTTPS GET request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.667&#xA;STEP: basic HTTPS GET request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.695&#xA;STEP: basic HTTP POST request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.708&#xA;STEP: basic HTTP POST request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.712&#xA;STEP: basic HTTPS POST request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:28.052&#xA;STEP: basic HTTPS POST request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:28.468&#xA;STEP: basic HTTP GET request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:28.852&#xA;STEP: basic HTTP GET request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:29.25&#xA;STEP: basic HTTPS GET request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:29.647&#xA;STEP: basic HTTPS GET request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:30.07&#xA;STEP: basic HTTP POST request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:30.469&#xA;STEP: basic HTTP POST request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:30.847&#xA;STEP: basic HTTPS POST request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:31.252&#xA;STEP: basic HTTPS POST request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:31.65&#xA;&lt; Exit [It] should return 404 sending requests when only a default backend is running - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:33 @ 04/04/23 18:38:32.067 (9.424s)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:32.067&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:32.276 (208ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="56.980816149">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:32.276&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:40.184 (7.908s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:38:40.184&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:38:48.25 (8.066s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:38:48.25&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:38:48.25&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:38:58.421&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:39:08.584&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:39:18.813 (30.563s)&#xA;&gt; Enter [It] should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:102 @ 04/04/23 18:39:18.813&#xA;STEP: Adding a no-auth-locations for /bar to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:104 @ 04/04/23 18:39:18.813&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:111 @ 04/04/23 18:39:29.026&#xA;STEP: Sending a request to whitelisted service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:118 @ 04/04/23 18:39:29.042&#xA;&lt; Exit [It] should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:102 @ 04/04/23 18:39:29.049 (10.236s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:29.049&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:29.257 (208ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] server-alias should return status code 200 for hosts defined in two ingresses, different path with one alias" classname="nginx-ingress-controller e2e suite" status="passed" time="27.220788713">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:29.257&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:37.143 (7.885s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:39:37.143&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:39:39.168 (2.025s)&#xA;&gt; Enter [It] should return status code 200 for hosts defined in two ingresses, different path with one alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:87 @ 04/04/23 18:39:39.168&#xA;&lt; Exit [It] should return status code 200 for hosts defined in two ingresses, different path with one alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:87 @ 04/04/23 18:39:56.292 (17.124s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:56.292&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:56.478 (186ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the keep alive should set keepalive_timeout" classname="nginx-ingress-controller e2e suite" status="passed" time="28.340439622">
+              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:56.478&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:03.36 (6.881s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:40:03.36&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:40:14.407 (11.047s)&#xA;&gt; Enter [It] should set keepalive_timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:40 @ 04/04/23 18:40:14.407&#xA;&lt; Exit [It] should set keepalive_timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:40 @ 04/04/23 18:40:24.598 (10.191s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:24.598&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:24.819 (221ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a plain HTTP ingress should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port" classname="nginx-ingress-controller e2e suite" status="passed" time="32.033196945">
+              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:24.819&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:39.201 (14.382s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:40:39.201&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:40:46.467 (7.266s)&#xA;&gt; Enter [It] should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:48 @ 04/04/23 18:40:46.467&#xA;&lt; Exit [It] should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:48 @ 04/04/23 18:40:56.662 (10.195s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:56.662&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:56.852 (191ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to grpc:// and use grpc_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="30.964751532">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.258&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:27.76 (8.502s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:04:27.76&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:04:39.782 (12.022s)&#xA;&gt; Enter [It] should set backend protocol to grpc:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:64 @ 04/04/23 18:04:39.782&#xA;&lt; Exit [It] should set backend protocol to grpc:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:64 @ 04/04/23 18:04:49.993 (10.211s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:04:49.993&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:04:50.223 (229ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity without using &#39;modsecurity on;&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="29.40122161">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:50.223&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:58.145 (7.922s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:04:58.145&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:05:02.17 (4.025s)&#xA;&gt; Enter [It] should enable modsecurity without using &#39;modsecurity on;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:110 @ 04/04/23 18:05:02.17&#xA;&lt; Exit [It] should enable modsecurity without using &#39;modsecurity on;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:110 @ 04/04/23 18:05:19.394 (17.225s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:19.394&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:19.624 (230ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should create additional upstream block when auth-keepalive is set with HTTP/1.x" classname="nginx-ingress-controller e2e suite" status="passed" time="62.641572065">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:19.625&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:26.544 (6.92s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:05:26.544&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:05:30.589 (4.045s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:05:30.589&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:05:58.841 (28.251s)&#xA;&gt; Enter [It] should create additional upstream block when auth-keepalive is set with HTTP/1.x - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:623 @ 04/04/23 18:05:58.841&#xA;&lt; Exit [It] should create additional upstream block when auth-keepalive is set with HTTP/1.x - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:623 @ 04/04/23 18:06:22.065 (23.224s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:22.065&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:22.266 (201ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] block-* should block User-Agents defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="28.334554031">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:22.267&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:29.196 (6.929s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:06:29.196&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:06:40.24 (11.044s)&#xA;&gt; Enter [It] should block User-Agents defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:55 @ 04/04/23 18:06:40.24&#xA;&lt; Exit [It] should block User-Agents defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:55 @ 04/04/23 18:06:50.425 (10.185s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:50.425&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:50.601 (177ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] x-forwarded-prefix should set the X-Forwarded-Prefix to the annotation value" classname="nginx-ingress-controller e2e suite" status="passed" time="21.281567841">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:50.602&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:57.545 (6.943s)&#xA;&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 04/04/23 18:06:57.545&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 04/04/23 18:07:01.588 (4.043s)&#xA;&gt; Enter [It] should set the X-Forwarded-Prefix to the annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:35 @ 04/04/23 18:07:01.588&#xA;&lt; Exit [It] should set the X-Forwarded-Prefix to the annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:35 @ 04/04/23 18:07:11.685 (10.097s)&#xA;&gt; Enter [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:11.685&#xA;&lt; Exit [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:11.883 (198ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow correct origins - missing subdomain + origin with wildcard origin and correct origin" classname="nginx-ingress-controller e2e suite" status="passed" time="18.188442412">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:11.883&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:18.774 (6.89s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:07:18.774&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:07:22.815 (4.041s)&#xA;&gt; Enter [It] should allow correct origins - missing subdomain + origin with wildcard origin and correct origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:535 @ 04/04/23 18:07:22.815&#xA;&lt; Exit [It] should allow correct origins - missing subdomain + origin with wildcard origin and correct origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:535 @ 04/04/23 18:07:29.864 (7.049s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:29.864&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:30.072 (208ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] mirror-* should set mirror-target to http://localhost/mirror" classname="nginx-ingress-controller e2e suite" status="passed" time="153.373652478">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:30.072&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:48.992 (2m18.92s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:09:48.992&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:09:53.047 (4.055s)&#xA;&gt; Enter [It] should set mirror-target to http://localhost/mirror - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:36 @ 04/04/23 18:09:53.047&#xA;&lt; Exit [It] should set mirror-target to http://localhost/mirror - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:36 @ 04/04/23 18:10:03.229 (10.182s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:03.229&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:03.446 (217ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 200 when no authentication is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="21.374323588">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:03.446&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:10.362 (6.916s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:10:10.362&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:10:14.4 (4.038s)&#xA;&gt; Enter [It] should return status code 200 when no authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:46 @ 04/04/23 18:10:14.4&#xA;&lt; Exit [It] should return status code 200 when no authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:46 @ 04/04/23 18:10:24.616 (10.216s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:24.616&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:24.82 (204ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] use-proxy-protocol should respect port passed by the PROXY Protocol" classname="nginx-ingress-controller e2e suite" status="passed" time="110.562959663">
+              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:24.821&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:31.7 (6.879s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:10:31.7&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:10:42.759 (11.059s)&#xA;&gt; Enter [It] should respect port passed by the PROXY Protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:46 @ 04/04/23 18:10:42.759&#xA;&lt; Exit [It] should respect port passed by the PROXY Protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:46 @ 04/04/23 18:12:14.993 (1m32.235s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:14.993&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:15.384 (390ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 503 when authentication is configured with an invalid secret" classname="nginx-ingress-controller e2e suite" status="passed" time="19.23986285">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:15.384&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:22.265 (6.881s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:12:22.265&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:12:24.285 (2.02s)&#xA;&gt; Enter [It] should return status code 503 when authentication is configured with an invalid secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:65 @ 04/04/23 18:12:24.285&#xA;&lt; Exit [It] should return status code 503 when authentication is configured with an invalid secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:65 @ 04/04/23 18:12:34.441 (10.156s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:34.441&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:34.624 (183ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] Add no tls redirect locations Check no tls redirect locations config" classname="nginx-ingress-controller e2e suite" status="passed" time="27.400615783">
+              <system-err>&gt; Enter [BeforeEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:34.624&#xA;&lt; Exit [BeforeEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:41.556 (6.931s)&#xA;&gt; Enter [It] Check no tls redirect locations config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_tls_redirect_locations.go:31 @ 04/04/23 18:12:41.556&#xA;&lt; Exit [It] Check no tls redirect locations config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_tls_redirect_locations.go:31 @ 04/04/23 18:13:01.842 (20.286s)&#xA;&gt; Enter [AfterEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:01.842&#xA;&lt; Exit [AfterEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:02.025 (183ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not allow - single origin with port and origin without port" classname="nginx-ingress-controller e2e suite" status="passed" time="19.133441454">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:02.025&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:09.923 (7.898s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:13:09.923&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:13:13.962 (4.038s)&#xA;&gt; Enter [It] should not allow - single origin with port and origin without port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:386 @ 04/04/23 18:13:13.962&#xA;&lt; Exit [It] should not allow - single origin with port and origin without port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:386 @ 04/04/23 18:13:20.977 (7.016s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:20.977&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:21.159 (181ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should disable the log-format-escape-json" classname="nginx-ingress-controller e2e suite" status="passed" time="29.267500447">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:21.159&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:29.044 (7.885s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:13:29.044&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:13:40.088 (11.044s)&#xA;&gt; Enter [It] should disable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:55 @ 04/04/23 18:13:40.088&#xA;&lt; Exit [It] should disable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:55 @ 04/04/23 18:13:50.23 (10.141s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:50.23&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:50.426 (197ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should deny login for different servers" classname="nginx-ingress-controller e2e suite" status="passed" time="128.935461321">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:50.427&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:57.36 (6.933s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:13:57.36&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:14:01.385 (4.026s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:14:01.385&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:14:06.428&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:14:16.618&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:14:26.768&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:14:36.897&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:14:52.087 (50.702s)&#xA;&gt; Enter [It] should deny login for different servers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:820 @ 04/04/23 18:14:52.087&#xA;STEP: logging into server thisHost /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:821 @ 04/04/23 18:14:52.087&#xA;STEP: receiving an internal server error without cache on thisHost location /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:833 @ 04/04/23 18:14:59.113&#xA;&lt; Exit [It] should deny login for different servers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:820 @ 04/04/23 18:15:59.128 (1m7.041s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:59.128&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:59.362 (234ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Ingress] definition without host should set ingress details variables for ingresses with host without IngressRuleValue, only Backend" classname="nginx-ingress-controller e2e suite" status="passed" time="22.396821642">
+              <system-err>&gt; Enter [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:59.363&#xA;&lt; Exit [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:06.334 (6.971s)&#xA;&gt; Enter [It] should set ingress details variables for ingresses with host without IngressRuleValue, only Backend - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:55 @ 04/04/23 18:16:06.334&#xA;&lt; Exit [It] should set ingress details variables for ingresses with host without IngressRuleValue, only Backend - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:55 @ 04/04/23 18:16:20.803 (14.469s)&#xA;&gt; Enter [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:20.803&#xA;&lt; Exit [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:21.76 (957ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] permanent-redirect permanent-redirect-code should respond with a standard redirect code" classname="nginx-ingress-controller e2e suite" status="passed" time="19.639351578">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:21.77&#xA;&lt; Exit [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:31.035 (9.266s)&#xA;&gt; Enter [It] should respond with a standard redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:33 @ 04/04/23 18:16:31.035&#xA;STEP: setting permanent-redirect annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:34 @ 04/04/23 18:16:31.036&#xA;STEP: sending request to redirected URL path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:52 @ 04/04/23 18:16:41.175&#xA;&lt; Exit [It] should respond with a standard redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:33 @ 04/04/23 18:16:41.182 (10.147s)&#xA;&gt; Enter [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:41.182&#xA;&lt; Exit [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:41.409 (227ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-catch-all should allow Ingress with rules" classname="nginx-ingress-controller e2e suite" status="passed" time="159.265969917">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:41.409&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:57.856 (2m16.447s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:18:57.856&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:19:09.919 (12.063s)&#xA;&gt; Enter [It] should allow Ingress with rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:123 @ 04/04/23 18:19:09.919&#xA;&lt; Exit [It] should allow Ingress with rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:123 @ 04/04/23 18:19:20.272 (10.353s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:20.272&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:20.675 (403ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="23.386440713">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:20.677&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:28.892 (8.215s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:19:28.892&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:19:32.924 (4.032s)&#xA;&gt; Enter [It] should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:324 @ 04/04/23 18:19:32.924&#xA;&lt; Exit [It] should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:324 @ 04/04/23 18:19:43.863 (10.939s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:43.863&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:44.064 (200ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure Opentelemetry should exists opentelemetry directive when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="29.635463259">
+              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:44.064&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:53.434 (9.37s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:19:53.434&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:19:55.451 (2.017s)&#xA;&gt; Enter [It] should exists opentelemetry directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:60 @ 04/04/23 18:19:55.451&#xA;&lt; Exit [It] should exists opentelemetry directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:60 @ 04/04/23 18:20:12.863 (17.412s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:12.863&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:13.699 (836ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:20:13.699&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:20:13.699 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should not set invalid proxy timeouts" classname="nginx-ingress-controller e2e suite" status="passed" time="23.437314841">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:13.7&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:22.723 (9.023s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:20:22.723&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:20:26.762 (4.038s)&#xA;&gt; Enter [It] should not set invalid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:136 @ 04/04/23 18:20:26.762&#xA;&lt; Exit [It] should not set invalid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:136 @ 04/04/23 18:20:36.907 (10.146s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:36.907&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:37.137 (230ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure Opentelemetry should not exists opentelemetry directive" classname="nginx-ingress-controller e2e suite" status="passed" time="29.375459507">
+              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:37.137&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:45.044 (7.907s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:20:45.044&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:20:49.07 (4.026s)&#xA;&gt; Enter [It] should not exists opentelemetry directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:47 @ 04/04/23 18:20:49.07&#xA;&lt; Exit [It] should not exists opentelemetry directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:47 @ 04/04/23 18:21:06.287 (17.217s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:06.287&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:06.513 (226ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:21:06.513&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:21:06.513 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="20.138129865">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:06.513&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:13.397 (6.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:13.397&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:15.42 (2.023s)&#xA;&gt; Enter [It] should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:144 @ 04/04/23 18:21:15.42&#xA;&lt; Exit [It] should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:144 @ 04/04/23 18:21:26.454 (11.034s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:26.454&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:26.651 (198ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] access-log http-access-log-path &amp; stream-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="17.272214647">
+              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:26.652&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:33.515 (6.863s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:80 @ 04/04/23 18:21:33.515&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:80 @ 04/04/23 18:21:43.707 (10.192s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:43.707&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:43.924 (216ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="18.136904986">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:43.924&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:50.816 (6.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:21:50.816&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:21:54.851 (4.035s)&#xA;&gt; Enter [It] should allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:169 @ 04/04/23 18:21:54.851&#xA;&lt; Exit [It] should allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:169 @ 04/04/23 18:22:01.873 (7.022s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:01.873&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:02.061 (188ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format-escape-json enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="32.345578464">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:02.061&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:09.943 (7.882s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:22:09.943&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:22:20.994 (11.051s)&#xA;&gt; Enter [It] log-format-escape-json enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:82 @ 04/04/23 18:22:20.994&#xA;&lt; Exit [It] log-format-escape-json enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:82 @ 04/04/23 18:22:34.191 (13.197s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:34.191&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:34.407 (216ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Ingress] [PathType] mix Exact and Prefix paths should choose the correct location" classname="nginx-ingress-controller e2e suite" status="passed" time="45.509310566">
+              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:34.407&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:41.334 (6.927s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:33 @ 04/04/23 18:22:41.334&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:33 @ 04/04/23 18:22:45.355 (4.021s)&#xA;&gt; Enter [It] should choose the correct location - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:39 @ 04/04/23 18:22:45.355&#xA;STEP: Checking exact request to / - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:63 @ 04/04/23 18:23:02.535&#xA;STEP: Checking prefix request to /bar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:76 @ 04/04/23 18:23:02.543&#xA;STEP: Checking exact request to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:109 @ 04/04/23 18:23:19.72&#xA;STEP: Checking prefix request to /foo/bar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:122 @ 04/04/23 18:23:19.723&#xA;STEP: Checking prefix request to /foobar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:134 @ 04/04/23 18:23:19.724&#xA;&lt; Exit [It] should choose the correct location - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:39 @ 04/04/23 18:23:19.726 (34.371s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:19.726&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:19.917 (190ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1m" classname="nginx-ingress-controller e2e suite" status="passed" time="22.336168959">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:19.917&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:27.858 (7.94s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:23:27.858&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:23:31.884 (4.027s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:101 @ 04/04/23 18:23:31.884&#xA;&lt; Exit [It] should set client_body_buffer_size to 1m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:101 @ 04/04/23 18:23:42.035 (10.15s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:42.035&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:42.253 (218ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] use-forwarded-headers should not trust X-Forwarded headers when setting is false" classname="nginx-ingress-controller e2e suite" status="passed" time="34.740529941">
+              <system-err>&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:42.254&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:50.152 (7.898s)&#xA;&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 04/04/23 18:23:50.152&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 04/04/23 18:23:59.193 (9.041s)&#xA;&gt; Enter [It] should not trust X-Forwarded headers when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:92 @ 04/04/23 18:23:59.193&#xA;&lt; Exit [It] should not trust X-Forwarded headers when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:92 @ 04/04/23 18:24:16.594 (17.4s)&#xA;&gt; Enter [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:16.594&#xA;&lt; Exit [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:16.994 (401ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests split between mainline and canary if canary weight is 100 and weight total is 200" classname="nginx-ingress-controller e2e suite" status="passed" time="72.078446664">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:16.995&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:25.428 (8.433s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:24:25.428&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:24:33.475 (8.047s)&#xA;&gt; Enter [It] should route requests split between mainline and canary if canary weight is 100 and weight total is 200 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:834 @ 04/04/23 18:24:33.475&#xA;&lt; Exit [It] should route requests split between mainline and canary if canary weight is 100 and weight total is 200 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:834 @ 04/04/23 18:25:28.827 (55.352s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:28.827&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:29.073 (245ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] http2-push-preload enable the http2-push-preload directive" classname="nginx-ingress-controller e2e suite" status="passed" time="21.276652741">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:29.073&#xA;&lt; Exit [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:35.955 (6.882s)&#xA;&gt; Enter [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:30 @ 04/04/23 18:25:35.955&#xA;&lt; Exit [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:30 @ 04/04/23 18:25:39.976 (4.021s)&#xA;&gt; Enter [It] enable the http2-push-preload directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:34 @ 04/04/23 18:25:39.976&#xA;&lt; Exit [It] enable the http2-push-preload directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:34 @ 04/04/23 18:25:50.116 (10.14s)&#xA;&gt; Enter [AfterEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:50.116&#xA;&lt; Exit [AfterEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:50.35 (233ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] enable-real-ip trusts X-Forwarded-For header only when setting is true" classname="nginx-ingress-controller e2e suite" status="passed" time="35.407310527">
+              <system-err>&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:50.35&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:57.262 (6.911s)&#xA;&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 04/04/23 18:25:57.262&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 04/04/23 18:26:08.325 (11.063s)&#xA;&gt; Enter [It] trusts X-Forwarded-For header only when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:40 @ 04/04/23 18:26:08.325&#xA;STEP: ensuring single values are parsed correctly - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:54 @ 04/04/23 18:26:25.541&#xA;&lt; Exit [It] trusts X-Forwarded-For header only when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:40 @ 04/04/23 18:26:25.551 (17.226s)&#xA;&gt; Enter [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:25.551&#xA;&lt; Exit [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:25.758 (207ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should disable modsecurity" classname="nginx-ingress-controller e2e suite" status="passed" time="21.301340903">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:25.758&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:32.641 (6.883s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:26:32.641&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:26:36.668 (4.026s)&#xA;&gt; Enter [It] should disable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:74 @ 04/04/23 18:26:36.668&#xA;&lt; Exit [It] should disable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:74 @ 04/04/23 18:26:46.879 (10.212s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:46.879&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:47.059 (180ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity through the config map but ignore snippet as disabled by admin" classname="nginx-ingress-controller e2e suite" status="passed" time="40.382987384">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:47.06&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:53.958 (6.898s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:26:53.958&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:26:57.986 (4.028s)&#xA;&gt; Enter [It] should enable modsecurity through the config map but ignore snippet as disabled by admin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:305 @ 04/04/23 18:26:57.986&#xA;&lt; Exit [It] should enable modsecurity through the config map but ignore snippet as disabled by admin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:305 @ 04/04/23 18:27:27.257 (29.271s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:27.257&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:27.443 (186ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] denylist-source-range only allow explicitly allowed IPs, deny all others" classname="nginx-ingress-controller e2e suite" status="passed" time="35.459281249">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:27.443&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:34.37 (6.927s)&#xA;&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 04/04/23 18:27:34.37&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 04/04/23 18:27:38.399 (4.029s)&#xA;&gt; Enter [It] only allow explicitly allowed IPs, deny all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:86 @ 04/04/23 18:27:38.399&#xA;STEP: sending request from an explicitly denied IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:115 @ 04/04/23 18:27:55.604&#xA;STEP: sending request from an implicitly denied IP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:123 @ 04/04/23 18:27:55.61&#xA;STEP: sending request from an explicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:131 @ 04/04/23 18:27:55.616&#xA;STEP: sending request from an explicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:139 @ 04/04/23 18:27:55.623&#xA;&lt; Exit [It] only allow explicitly allowed IPs, deny all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:86 @ 04/04/23 18:28:02.653 (24.254s)&#xA;&gt; Enter [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:02.653&#xA;&lt; Exit [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:02.902 (249ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] enable-multi-accept should be disabled when set to false" classname="nginx-ingress-controller e2e suite" status="passed" time="17.373623456">
+              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:02.903&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:09.803 (6.9s)&#xA;&gt; Enter [It] should be disabled when set to false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:49 @ 04/04/23 18:28:09.803&#xA;&lt; Exit [It] should be disabled when set to false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:49 @ 04/04/23 18:28:20.04 (10.238s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:20.041&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:20.276 (236ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to grpcs:// and use grpc_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="20.243088476">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:20.277&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:28.169 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:28:28.169&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:28:30.185 (2.016s)&#xA;&gt; Enter [It] should set backend protocol to grpcs:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:79 @ 04/04/23 18:28:30.185&#xA;&lt; Exit [It] should set backend protocol to grpcs:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:79 @ 04/04/23 18:28:40.334 (10.15s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:40.334&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:40.52 (185ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="25.246171205">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:40.52&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:47.397 (6.877s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:28:47.397&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:28:51.425 (4.028s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:28:51.425&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:05.527 (14.103s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:494 @ 04/04/23 18:29:05.527&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:494 @ 04/04/23 18:29:05.539 (12ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:05.539&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:05.766 (227ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] proxy-connect-timeout should set valid proxy timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="28.356651539">
+              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:05.767&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:12.664 (6.897s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 04/04/23 18:29:12.664&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 04/04/23 18:29:16.693 (4.029s)&#xA;&gt; Enter [It] should set valid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:36 @ 04/04/23 18:29:16.693&#xA;&lt; Exit [It] should set valid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:36 @ 04/04/23 18:29:33.899 (17.207s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:33.899&#xA;&lt; Exit [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:34.123 (224ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with transaction ID and OWASP rules" classname="nginx-ingress-controller e2e suite" status="passed" time="22.251075828">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:34.124&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:42.012 (7.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:29:42.012&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:29:46.039 (4.027s)&#xA;&gt; Enter [It] should enable modsecurity with transaction ID and OWASP rules - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:53 @ 04/04/23 18:29:46.039&#xA;&lt; Exit [It] should enable modsecurity with transaction ID and OWASP rules - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:53 @ 04/04/23 18:29:56.186 (10.147s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:56.186&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:56.375 (189ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should change the default proxy HTTP version" classname="nginx-ingress-controller e2e suite" status="passed" time="21.310489423">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:56.375&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:03.267 (6.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:30:03.267&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:30:07.298 (4.031s)&#xA;&gt; Enter [It] should change the default proxy HTTP version - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:233 @ 04/04/23 18:30:07.298&#xA;&lt; Exit [It] should change the default proxy HTTP version - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:233 @ 04/04/23 18:30:17.47 (10.172s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:17.47&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:17.686 (215ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [SSL] secret update should return the fake SSL certificate if the secret is invalid" classname="nginx-ingress-controller e2e suite" status="passed" time="154.723842483">
+              <system-err>&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:17.686&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:35.008 (2m17.322s)&#xA;&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 04/04/23 18:32:35.008&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 04/04/23 18:32:39.033 (4.025s)&#xA;&gt; Enter [It] should return the fake SSL certificate if the secret is invalid - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:82 @ 04/04/23 18:32:39.033&#xA;&lt; Exit [It] should return the fake SSL certificate if the secret is invalid - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:82 @ 04/04/23 18:32:52.207 (13.174s)&#xA;&gt; Enter [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:52.207&#xA;&lt; Exit [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:52.41 (203ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1000" classname="nginx-ingress-controller e2e suite" status="passed" time="21.380029765">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:52.41&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:59.312 (6.902s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:32:59.312&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:33:03.343 (4.031s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1000 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:35 @ 04/04/23 18:33:03.343&#xA;&lt; Exit [It] should set client_body_buffer_size to 1000 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:35 @ 04/04/23 18:33:13.571 (10.227s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:13.571&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:13.79 (220ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] OCSP should enable OCSP and contain stapling information in the connection" classname="nginx-ingress-controller e2e suite" status="passed" time="52.538209784">
+              <system-err>&gt; Enter [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:13.791&#xA;&lt; Exit [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:20.666 (6.876s)&#xA;&gt; Enter [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:45 @ 04/04/23 18:33:20.666&#xA;&lt; Exit [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:45 @ 04/04/23 18:33:24.686 (4.02s)&#xA;&gt; Enter [It] should enable OCSP and contain stapling information in the connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:49 @ 04/04/23 18:33:24.686&#xA;STEP: running cfssl gencert -initca ca_csr.json | cfssljson -bare ca - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 04/04/23 18:33:31.697&#xA;STEP: running cfssl gencert -ca ca.pem -ca-key ca-key.pem -config=cfssl_config.json -profile=intermediate intermediate_ca_csr.json | cfssljson -bare intermediate_ca - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 04/04/23 18:33:32.042&#xA;STEP: running cfssl gencert -ca intermediate_ca.pem -ca-key intermediate_ca-key.pem -config=cfssl_config.json -profile=ocsp ocsp_csr.json | cfssljson -bare ocsp - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 04/04/23 18:33:32.211&#xA;STEP: running cfssl serve -db-config=db-config.json -ca-key=intermediate_ca-key.pem -ca=intermediate_ca.pem -config=cfssl_config.json -responder=ocsp.pem -responder-key=ocsp-key.pem - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:228 @ 04/04/23 18:33:32.385&#xA;STEP: running cfssl gencert -remote=localhost -profile=server leaf_csr.json | cfssljson -bare leaf - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:238 @ 04/04/23 18:33:37.385&#xA;STEP: running cfssl ocsprefresh -ca intermediate_ca.pem -responder=ocsp.pem -responder-key=ocsp-key.pem -db-config=db-config.json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:252 @ 04/04/23 18:33:37.548&#xA;&lt; Exit [It] should enable OCSP and contain stapling information in the connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:49 @ 04/04/23 18:34:06.016 (41.33s)&#xA;&gt; Enter [AfterEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:06.016&#xA;&lt; Exit [AfterEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:06.329 (312ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] satisfy should allow multiple auth with satisfy any" classname="nginx-ingress-controller e2e suite" status="passed" time="27.083879161">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:06.329&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:13.238 (6.909s)&#xA;&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 04/04/23 18:34:13.238&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 04/04/23 18:34:17.265 (4.027s)&#xA;&gt; Enter [It] should allow multiple auth with satisfy any - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:84 @ 04/04/23 18:34:17.265&#xA;&lt; Exit [It] should allow multiple auth with satisfy any - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:84 @ 04/04/23 18:34:33.244 (15.979s)&#xA;&gt; Enter [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:33.244&#xA;&lt; Exit [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:33.413 (169ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="21.260634154999998">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:33.413&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:40.3 (6.887s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:34:40.3&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:34:44.318 (4.018s)&#xA;&gt; Enter [It] should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:284 @ 04/04/23 18:34:44.318&#xA;&lt; Exit [It] should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:284 @ 04/04/23 18:34:54.489 (10.171s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:54.489&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:54.674 (185ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes consistently (down scaling of replicas vs. empty service)" classname="nginx-ingress-controller e2e suite" status="passed" time="47.623291228">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:54.674&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:01.542 (6.868s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:35:01.542&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:35:15.829 (14.287s)&#xA;&gt; Enter [It] handles endpoints only changes consistently (down scaling of replicas vs. empty service) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:125 @ 04/04/23 18:35:15.829&#xA;&lt; Exit [It] handles endpoints only changes consistently (down scaling of replicas vs. empty service) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:125 @ 04/04/23 18:35:42.1 (26.271s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:42.1&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:42.298 (198ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting preload parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="33.446353768">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:42.298&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:50.176 (7.878s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:35:50.176&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:35:54.197 (4.021s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:35:54.197&#xA;Apr  4 18:36:03.338: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:36:05.327 (11.13s)&#xA;&gt; Enter [It] setting preload parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:146 @ 04/04/23 18:36:05.327&#xA;&lt; Exit [It] setting preload parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:146 @ 04/04/23 18:36:15.512 (10.185s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:15.512&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:15.744 (233ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Endpointslices] long service name should return 200 when service name has max allowed number of characters 63" classname="nginx-ingress-controller e2e suite" status="passed" time="22.305086">
+              <system-err>&gt; Enter [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:15.745&#xA;&lt; Exit [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:23.617 (7.872s)&#xA;&gt; Enter [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:34 @ 04/04/23 18:36:23.617&#xA;&lt; Exit [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:34 @ 04/04/23 18:36:27.64 (4.023s)&#xA;&gt; Enter [It] should return 200 when service name has max allowed number of characters 63 - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:38 @ 04/04/23 18:36:27.64&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:48 @ 04/04/23 18:36:37.807&#xA;&lt; Exit [It] should return 200 when service name has max allowed number of characters 63 - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:38 @ 04/04/23 18:36:37.815 (10.175s)&#xA;&gt; Enter [AfterEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:37.815&#xA;&lt; Exit [AfterEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:38.05 (235ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - FastCGI should add fastcgi_index in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="20.255437009">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:38.05&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:45.936 (7.886s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:36:45.936&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:36:47.961 (2.026s)&#xA;&gt; Enter [It] should add fastcgi_index in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:54 @ 04/04/23 18:36:47.961&#xA;&lt; Exit [It] should add fastcgi_index in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:54 @ 04/04/23 18:36:58.079 (10.118s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:58.079&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:58.306 (226ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity globally and with modsecurity-snippet block requests" classname="nginx-ingress-controller e2e suite" status="passed" time="171.582212664">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:58.306&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:16.416 (2m18.11s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:39:16.416&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:39:20.463 (4.047s)&#xA;&gt; Enter [It] should enable modsecurity globally and with modsecurity-snippet block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:189 @ 04/04/23 18:39:20.463&#xA;&lt; Exit [It] should enable modsecurity globally and with modsecurity-snippet block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:189 @ 04/04/23 18:39:49.668 (29.205s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:49.668&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:49.888 (220ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) ports or X-Forwarded-Host check during HTTP tp HTTPS redirection should not use ports during the HTTP to HTTPS redirection" classname="nginx-ingress-controller e2e suite" status="passed" time="23.299518785">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:49.888&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:57.8 (7.912s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:39:57.8&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:40:01.823 (4.023s)&#xA;&gt; Enter [It] should not use ports during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:187 @ 04/04/23 18:40:01.823&#xA;Apr  4 18:40:10.971: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [It] should not use ports during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:187 @ 04/04/23 18:40:12.979 (11.155s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:12.979&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:13.188 (209ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName with a port defined" classname="nginx-ingress-controller e2e suite" status="passed" time="18.584802653">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:13.188&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:21.087 (7.899s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName with a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:129 @ 04/04/23 18:40:21.087&#xA;&lt; Exit [It] should return 200 for service type=ExternalName with a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:129 @ 04/04/23 18:40:31.585 (10.498s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:31.585&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:31.773 (188ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="25.3240127">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:31.773&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:38.672 (6.898s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:40:38.672&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:40:42.706 (4.034s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:40:42.706&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:40:56.901 (14.195s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:687 @ 04/04/23 18:40:56.901&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:687 @ 04/04/23 18:40:56.912 (10ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:56.912&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:57.097 (186ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] Annotation - limit-connections should limit-connections" classname="nginx-ingress-controller e2e suite" status="passed" time="44.225945645">
+              <system-out>I0404 18:04:54.427675      25 request.go:690] Waited for 1.19834838s due to client-side throttling, not priority and fairness, request: GET:https://10.96.0.1:443/api/v1/namespaces/e2e-tests-limit-connections-1680631459257336272-jn44f/services/nginx-ingress-controller&#xA;</system-out>
+              <system-err>&gt; Enter [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.256&#xA;&lt; Exit [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:26.817 (7.56s)&#xA;&gt; Enter [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:34 @ 04/04/23 18:04:26.817&#xA;&lt; Exit [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:34 @ 04/04/23 18:04:38.845 (12.028s)&#xA;&gt; Enter [It] should limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:38 @ 04/04/23 18:04:38.845&#xA;&lt; Exit [It] should limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:38 @ 04/04/23 18:05:03.259 (24.414s)&#xA;&gt; Enter [AfterEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:03.259&#xA;&lt; Exit [AfterEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:03.482 (224ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Ingress] [PathType] exact should choose exact location for /exact" classname="nginx-ingress-controller e2e suite" status="passed" time="38.595312029">
+              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:03.483&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:10.366 (6.883s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:33 @ 04/04/23 18:05:10.366&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:33 @ 04/04/23 18:05:14.405 (4.039s)&#xA;&gt; Enter [It] should choose exact location for /exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:37 @ 04/04/23 18:05:14.405&#xA;&lt; Exit [It] should choose exact location for /exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:37 @ 04/04/23 18:05:41.807 (27.402s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:41.807&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:42.078 (271ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="39.725581056">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:42.079&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:50.08 (8.002s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:05:50.08&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:05:54.108 (4.028s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:36 @ 04/04/23 18:05:54.108&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:36 @ 04/04/23 18:06:21.53 (27.422s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:21.53&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:21.804 (274ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not break functionality" classname="nginx-ingress-controller e2e suite" status="passed" time="18.152762201">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:21.804&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:28.705 (6.901s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:06:28.705&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:06:32.732 (4.027s)&#xA;&gt; Enter [It] should not break functionality - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:267 @ 04/04/23 18:06:32.732&#xA;&lt; Exit [It] should not break functionality - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:267 @ 04/04/23 18:06:39.756 (7.024s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:39.756&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:39.957 (201ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] app-root should redirect to /foo" classname="nginx-ingress-controller e2e suite" status="passed" time="22.339253677">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:39.958&#xA;&lt; Exit [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:47.864 (7.907s)&#xA;&gt; Enter [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:31 @ 04/04/23 18:06:47.864&#xA;&lt; Exit [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:31 @ 04/04/23 18:06:51.912 (4.047s)&#xA;&gt; Enter [It] should redirect to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:35 @ 04/04/23 18:06:51.912&#xA;&lt; Exit [It] should redirect to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:35 @ 04/04/23 18:07:02.086 (10.175s)&#xA;&gt; Enter [AfterEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:02.086&#xA;&lt; Exit [AfterEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:02.297 (211ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should return 200 using auth-tls-match-cn with matching CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="22.922113641">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:02.297&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:10.188 (7.891s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:07:10.188&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:07:14.226 (4.037s)&#xA;&gt; Enter [It] should return 200 using auth-tls-match-cn with matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:295 @ 04/04/23 18:07:14.226&#xA;&lt; Exit [It] should return 200 using auth-tls-match-cn with matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:295 @ 04/04/23 18:07:25.018 (10.792s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:25.018&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:25.219 (201ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] denylist-source-range only deny explicitly denied IPs, allow all others" classname="nginx-ingress-controller e2e suite" status="passed" time="34.300425996">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:25.22&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:33.104 (7.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 04/04/23 18:07:33.104&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 04/04/23 18:07:35.129 (2.025s)&#xA;&gt; Enter [It] only deny explicitly denied IPs, allow all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:35 @ 04/04/23 18:07:35.129&#xA;STEP: sending request from an explicitly denied IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:61 @ 04/04/23 18:07:52.29&#xA;STEP: sending request from an explicitly denied IP address - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:69 @ 04/04/23 18:07:52.298&#xA;STEP: sending request from an implicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:77 @ 04/04/23 18:07:52.304&#xA;&lt; Exit [It] only deny explicitly denied IPs, allow all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:35 @ 04/04/23 18:07:59.326 (24.197s)&#xA;&gt; Enter [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:59.326&#xA;&lt; Exit [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:59.52 (194ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* Single canary Ingress should not use canary with domain as a server" classname="nginx-ingress-controller e2e suite" status="passed" time="32.388431935">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:59.52&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:06.412 (6.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:08:06.412&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:08:14.461 (8.049s)&#xA;&gt; Enter [It] should not use canary with domain as a server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:891 @ 04/04/23 18:08:14.461&#xA;&lt; Exit [It] should not use canary with domain as a server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:891 @ 04/04/23 18:08:31.701 (17.24s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:31.701&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:31.909 (208ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set" classname="nginx-ingress-controller e2e suite" status="passed" time="22.408753285">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:31.909&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:39.801 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:08:39.801&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:08:43.836 (4.035s)&#xA;&gt; Enter [It] should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:301 @ 04/04/23 18:08:43.836&#xA;&lt; Exit [It] should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:301 @ 04/04/23 18:08:54.106 (10.269s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:54.106&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:54.318 (212ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should routes to mainline upstream when the given Regex causes error" classname="nginx-ingress-controller e2e suite" status="passed" time="32.339918036">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:54.318&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:01.207 (6.889s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:09:01.207&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:09:09.264 (8.058s)&#xA;&gt; Enter [It] should routes to mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:566 @ 04/04/23 18:09:09.264&#xA;STEP: routing requests to the mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:591 @ 04/04/23 18:09:26.43&#xA;&lt; Exit [It] should routes to mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:566 @ 04/04/23 18:09:26.434 (17.169s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:26.434&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:26.658 (224ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With default ingress class config should delete Ingress when class is removed" classname="nginx-ingress-controller e2e suite" status="passed" time="36.529874252">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:26.658&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:33.593 (6.935s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:09:33.593&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:09:37.637 (4.044s)&#xA;&gt; Enter [It] should delete Ingress when class is removed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:192 @ 04/04/23 18:09:37.637&#xA;&lt; Exit [It] should delete Ingress when class is removed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:192 @ 04/04/23 18:10:02.989 (25.352s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:02.989&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:03.188 (199ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should proxy_method method when global-auth-method is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="56.864281316">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:03.189&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:11.089 (7.901s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:10:11.09&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:10:19.123 (8.033s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:10:19.123&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:10:19.123&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:10:29.295&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:10:39.491&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:10:49.631 (30.509s)&#xA;&gt; Enter [It] should proxy_method method when global-auth-method is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:197 @ 04/04/23 18:10:49.631&#xA;STEP: Adding a global-auth-method to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:202 @ 04/04/23 18:10:49.631&#xA;&lt; Exit [It] should proxy_method method when global-auth-method is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:197 @ 04/04/23 18:10:59.844 (10.213s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:59.844&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:00.053 (208ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] proxy-connect-timeout should not set invalid proxy timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="159.263240703">
+              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:00.053&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:17.888 (2m17.835s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 04/04/23 18:13:17.888&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 04/04/23 18:13:21.926 (4.038s)&#xA;&gt; Enter [It] should not set invalid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:52 @ 04/04/23 18:13:21.926&#xA;&lt; Exit [It] should not set invalid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:52 @ 04/04/23 18:13:39.103 (17.177s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:39.103&#xA;&lt; Exit [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:39.316 (214ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - FastCGI should add fastcgi_param in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="22.255464666">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:39.317&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:46.2 (6.883s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:13:46.2&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:13:51.228 (5.028s)&#xA;&gt; Enter [It] should add fastcgi_param in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:71 @ 04/04/23 18:13:51.228&#xA;&lt; Exit [It] should add fastcgi_param in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:71 @ 04/04/23 18:14:01.351 (10.123s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:01.351&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:01.572 (222ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should enable cors" classname="nginx-ingress-controller e2e suite" status="passed" time="21.227042773">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:01.573&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:08.451 (6.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:14:08.451&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:14:12.484 (4.033s)&#xA;&gt; Enter [It] should enable cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:35 @ 04/04/23 18:14:12.484&#xA;&lt; Exit [It] should enable cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:35 @ 04/04/23 18:14:22.62 (10.136s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:22.62&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:22.8 (179ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header overriding what&#39;s set from the upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="27.764170353">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:22.8&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:29.697 (6.897s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:14:29.697&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:14:33.724 (4.026s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:14:33.724&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:14:43.071 (9.347s)&#xA;&gt; Enter [It] overriding what&#39;s set from the upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:166 @ 04/04/23 18:14:43.071&#xA;&lt; Exit [It] overriding what&#39;s set from the upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:166 @ 04/04/23 18:14:50.277 (7.207s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:50.277&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:50.564 (287ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic certificates picks up the previously missing secret for a given ingress without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="31.607242139">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:50.566&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:57.791 (7.225s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:14:57.791&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:15:01.819 (4.028s)&#xA;&gt; Enter [It] picks up the previously missing secret for a given ingress without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:70 @ 04/04/23 18:15:01.819&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:94 @ 04/04/23 18:15:18.959&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:101 @ 04/04/23 18:15:21.991&#xA;&lt; Exit [It] picks up the previously missing secret for a given ingress without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:70 @ 04/04/23 18:15:22.003 (20.184s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:22.003&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:22.173 (170ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should disable cors allow credentials" classname="nginx-ingress-controller e2e suite" status="passed" time="20.359505705">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:22.173&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:30.052 (7.879s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:15:30.052&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:15:32.076 (2.024s)&#xA;&gt; Enter [It] should disable cors allow credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:94 @ 04/04/23 18:15:32.076&#xA;&lt; Exit [It] should disable cors allow credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:94 @ 04/04/23 18:15:42.292 (10.217s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:42.292&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:42.533 (240ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 200 when accessing &#39;/noauth&#39; unauthenticated" classname="nginx-ingress-controller e2e suite" status="passed" time="29.196807175">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:42.533&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:49.463 (6.93s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:15:49.463&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:16:08.363 (18.9s)&#xA;&gt; Enter [It] should return status code 200 when accessing &#39;/noauth&#39; unauthenticated - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:82 @ 04/04/23 18:16:08.363&#xA;&lt; Exit [It] should return status code 200 when accessing &#39;/noauth&#39; unauthenticated - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:82 @ 04/04/23 18:16:11.514 (3.151s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:11.514&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:11.73 (216ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 401 when request any protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="47.840368216">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:11.73&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:18.612 (6.881s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:16:18.612&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:16:28.726 (10.115s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:16:28.726&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:16:28.726&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:16:38.887&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:16:49.114&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:16:59.322 (30.595s)&#xA;&gt; Enter [It] should return status code 401 when request any protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:85 @ 04/04/23 18:16:59.322&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:87 @ 04/04/23 18:16:59.322&#xA;STEP: Sending a request to protected service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:94 @ 04/04/23 18:16:59.333&#xA;&lt; Exit [It] should return status code 401 when request any protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:85 @ 04/04/23 18:16:59.342 (20ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:59.342&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:59.57 (229ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-catch-all should ignore catch all Ingress with backend and rules" classname="nginx-ingress-controller e2e suite" status="passed" time="29.278878474">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:59.571&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:06.433 (6.862s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:17:06.433&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:17:18.505 (12.072s)&#xA;&gt; Enter [It] should ignore catch all Ingress with backend and rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:69 @ 04/04/23 18:17:18.505&#xA;&lt; Exit [It] should ignore catch all Ingress with backend and rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:69 @ 04/04/23 18:17:28.675 (10.171s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:28.675&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:28.85 (174ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] global-options should have worker_rlimit_nofile option" classname="nginx-ingress-controller e2e suite" status="passed" time="12.275994764">
+              <system-err>&gt; Enter [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:28.85&#xA;&lt; Exit [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:37.72 (8.87s)&#xA;&gt; Enter [It] should have worker_rlimit_nofile option - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:31 @ 04/04/23 18:17:37.72&#xA;&lt; Exit [It] should have worker_rlimit_nofile option - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:31 @ 04/04/23 18:17:40.919 (3.199s)&#xA;&gt; Enter [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:40.919&#xA;&lt; Exit [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:41.126 (207ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) ports or X-Forwarded-Host check during HTTP tp HTTPS redirection should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection" classname="nginx-ingress-controller e2e suite" status="passed" time="30.353652292">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:41.126&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:49.014 (7.887s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:17:49.014&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:17:53.032 (4.018s)&#xA;&gt; Enter [It] should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:205 @ 04/04/23 18:17:53.032&#xA;Apr  4 18:18:09.269: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [It] should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:205 @ 04/04/23 18:18:11.272 (18.241s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:11.272&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:11.48 (208ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should build proxy next upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="21.256053884">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:11.48&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:18.335 (6.854s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:18:18.335&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:18:22.355 (4.02s)&#xA;&gt; Enter [It] should build proxy next upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:194 @ 04/04/23 18:18:22.355&#xA;&lt; Exit [It] should build proxy next upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:194 @ 04/04/23 18:18:32.501 (10.146s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:32.501&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:32.736 (236ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] use-proxy-protocol should respect proto passed by the PROXY Protocol server port" classname="nginx-ingress-controller e2e suite" status="passed" time="110.539511063">
+              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:32.737&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:39.632 (6.895s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:18:39.632&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:18:50.669 (11.037s)&#xA;&gt; Enter [It] should respect proto passed by the PROXY Protocol server port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:79 @ 04/04/23 18:18:50.669&#xA;&lt; Exit [It] should respect proto passed by the PROXY Protocol server port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:79 @ 04/04/23 18:20:22.888 (1m32.219s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:22.888&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:23.276 (388ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] ssl-ciphers should change ssl ciphers" classname="nginx-ingress-controller e2e suite" status="passed" time="20.32621915">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:23.277&#xA;&lt; Exit [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:31.164 (7.887s)&#xA;&gt; Enter [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:31 @ 04/04/23 18:20:31.164&#xA;&lt; Exit [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:31 @ 04/04/23 18:20:33.226 (2.062s)&#xA;&gt; Enter [It] should change ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:35 @ 04/04/23 18:20:33.226&#xA;&lt; Exit [It] should change ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:35 @ 04/04/23 18:20:43.402 (10.176s)&#xA;&gt; Enter [AfterEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:43.402&#xA;&lt; Exit [AfterEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:43.603 (201ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1k" classname="nginx-ingress-controller e2e suite" status="passed" time="21.3434496">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:43.603&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:50.486 (6.883s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:20:50.486&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:20:54.514 (4.028s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1k - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:79 @ 04/04/23 18:20:54.514&#xA;&lt; Exit [It] should set client_body_buffer_size to 1k - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:79 @ 04/04/23 18:21:04.738 (10.224s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:04.738&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:04.947 (209ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should turn off proxy-request-buffering" classname="nginx-ingress-controller e2e suite" status="passed" time="21.279526094">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:04.947&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:11.835 (6.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:21:11.835&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:21:15.853 (4.017s)&#xA;&gt; Enter [It] should turn off proxy-request-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:179 @ 04/04/23 18:21:15.853&#xA;&lt; Exit [It] should turn off proxy-request-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:179 @ 04/04/23 18:21:26.03 (10.178s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:26.03&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:26.226 (196ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Debug CLI should get information for a specific backend server" classname="nginx-ingress-controller e2e suite" status="passed" time="22.566428383">
+              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:26.227&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:34.123 (7.896s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:21:34.123&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:21:38.158 (4.035s)&#xA;&gt; Enter [It] should get information for a specific backend server - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:56 @ 04/04/23 18:21:38.158&#xA;&lt; Exit [It] should get information for a specific backend server - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:56 @ 04/04/23 18:21:48.595 (10.437s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:48.595&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:48.793 (198ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] nginx-configuration start nginx with default configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="11.047475387">
+              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:21:48.794&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:21:50.797 (2.003s)&#xA;&gt; Enter [It] start nginx with default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:102 @ 04/04/23 18:21:50.797&#xA;&lt; Exit [It] start nginx with default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:102 @ 04/04/23 18:21:59.838 (9.042s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:21:59.839&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:21:59.841 (3ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should set cors max-age" classname="nginx-ingress-controller e2e suite" status="passed" time="21.882315298">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:59.842&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:07.232 (7.39s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:07.232&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:11.252 (4.02s)&#xA;&gt; Enter [It] should set cors max-age - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:78 @ 04/04/23 18:22:11.252&#xA;&lt; Exit [It] should set cors max-age - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:78 @ 04/04/23 18:22:21.435 (10.182s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:21.435&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:21.724 (289ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow - matching origin+port with wildcard origin" classname="nginx-ingress-controller e2e suite" status="passed" time="18.7769524">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:21.725&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:29.212 (7.488s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:29.212&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:33.245 (4.033s)&#xA;&gt; Enter [It] should allow - matching origin+port with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:488 @ 04/04/23 18:22:33.245&#xA;&lt; Exit [It] should allow - matching origin+port with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:488 @ 04/04/23 18:22:40.278 (7.032s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:40.278&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:40.502 (224ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should change cookie name on ingress definition change" classname="nginx-ingress-controller e2e suite" status="passed" time="26.301024226">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:40.502&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:47.367 (6.865s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:22:47.368&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:22:51.389 (4.021s)&#xA;&gt; Enter [It] should change cookie name on ingress definition change - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:64 @ 04/04/23 18:22:51.389&#xA;&lt; Exit [It] should change cookie name on ingress definition change - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:64 @ 04/04/23 18:23:06.598 (15.209s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:06.598&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:06.803 (205ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] configmap server-snippet should add value of server-snippet setting to all ingress config" classname="nginx-ingress-controller e2e suite" status="passed" time="43.5615642">
+              <system-err>&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:06.804&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:13.683 (6.879s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 04/04/23 18:23:13.683&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 04/04/23 18:23:17.702 (4.019s)&#xA;&gt; Enter [It] should add value of server-snippet setting to all ingress config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:35 @ 04/04/23 18:23:17.702&#xA;&lt; Exit [It] should add value of server-snippet setting to all ingress config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:35 @ 04/04/23 18:23:50.157 (32.455s)&#xA;&gt; Enter [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:50.157&#xA;&lt; Exit [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:50.365 (209ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] block-* should block Referers defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="26.650551683">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:50.366&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:57.248 (6.882s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:23:57.248&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:24:06.308 (9.06s)&#xA;&gt; Enter [It] should block Referers defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:88 @ 04/04/23 18:24:06.308&#xA;&lt; Exit [It] should block Referers defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:88 @ 04/04/23 18:24:16.602 (10.294s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:16.602&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:17.016 (414ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] gzip should set gzip_types to application/javascript" classname="nginx-ingress-controller e2e suite" status="passed" time="25.977355163">
+              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:17.016&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:25.558 (8.541s)&#xA;&gt; Enter [It] should set gzip_types to application/javascript - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:89 @ 04/04/23 18:24:25.558&#xA;&lt; Exit [It] should set gzip_types to application/javascript - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:89 @ 04/04/23 18:24:42.749 (17.191s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:42.749&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:42.994 (245ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should exists opentracing_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="30.228533662">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:42.994&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:49.859 (6.865s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:24:49.859&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:24:55.885 (6.025s)&#xA;&gt; Enter [It] should exists opentracing_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:115 @ 04/04/23 18:24:55.885&#xA;&lt; Exit [It] should exists opentracing_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:115 @ 04/04/23 18:25:13.047 (17.162s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:13.047&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:13.223 (176ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:25:13.223&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:25:13.223 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not allow - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="21.147688959">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:13.223&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:21.122 (7.899s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:25:21.122&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:25:27.151 (6.029s)&#xA;&gt; Enter [It] should not allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:196 @ 04/04/23 18:25:27.151&#xA;&lt; Exit [It] should not allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:196 @ 04/04/23 18:25:34.17 (7.019s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:34.17&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:34.371 (201ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should set snippet when global external auth is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="55.823887488">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:34.371&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:41.275 (6.904s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:25:41.275&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:25:49.318 (8.044s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:25:49.318&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:25:49.318&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:25:59.469&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:26:09.647&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:26:19.839 (30.521s)&#xA;&gt; Enter [It] should set snippet when global external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:250 @ 04/04/23 18:26:19.839&#xA;STEP: Adding a global-auth-snippet to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:254 @ 04/04/23 18:26:19.839&#xA;&lt; Exit [It] should set snippet when global external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:250 @ 04/04/23 18:26:29.995 (10.156s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:29.995&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:30.195 (200ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] server-snippet add valid directives to server via server snippet" classname="nginx-ingress-controller e2e suite" status="passed" time="21.25795177">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:30.195&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:37.066 (6.871s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 04/04/23 18:26:37.066&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 04/04/23 18:26:41.082 (4.015s)&#xA;&gt; Enter [It] add valid directives to server via server snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:35 @ 04/04/23 18:26:41.082&#xA;&lt; Exit [It] add valid directives to server via server snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:35 @ 04/04/23 18:26:51.227 (10.145s)&#xA;&gt; Enter [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:51.227&#xA;&lt; Exit [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:51.453 (226ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should deny login for different location on same server" classname="nginx-ingress-controller e2e suite" status="passed" time="128.860516385">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:51.453&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:58.324 (6.87s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:26:58.324&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:27:02.348 (4.024s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:27:02.348&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:27:07.377&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:27:17.563&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:27:27.77&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:27:37.89&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:27:53.085 (50.737s)&#xA;&gt; Enter [It] should deny login for different location on same server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:792 @ 04/04/23 18:27:53.085&#xA;STEP: receiving an internal server error without cache on location /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:811 @ 04/04/23 18:28:00.105&#xA;&lt; Exit [It] should deny login for different location on same server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:792 @ 04/04/23 18:29:00.109 (1m7.024s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:00.109&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:00.314 (205ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - FastCGI should return OK for service with backend protocol FastCGI" classname="nginx-ingress-controller e2e suite" status="passed" time="20.336008253">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:00.314&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:08.193 (7.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:29:08.193&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:29:10.222 (2.029s)&#xA;&gt; Enter [It] should return OK for service with backend protocol FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:102 @ 04/04/23 18:29:10.222&#xA;&lt; Exit [It] should return OK for service with backend protocol FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:102 @ 04/04/23 18:29:20.442 (10.22s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:20.442&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:20.65 (208ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to canary if canary weight is equal to canary weight total" classname="nginx-ingress-controller e2e suite" status="passed" time="32.449934124">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:20.651&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:27.592 (6.941s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:29:27.592&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:29:35.635 (8.044s)&#xA;&gt; Enter [It] should route requests only to canary if canary weight is equal to canary weight total - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:775 @ 04/04/23 18:29:35.635&#xA;&lt; Exit [It] should route requests only to canary if canary weight is equal to canary weight total - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:775 @ 04/04/23 18:29:52.866 (17.23s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:52.866&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:53.101 (235ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] modsecurity-snippet should add value of modsecurity-snippet setting to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="18.334369723000002">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:53.101&#xA;&lt; Exit [BeforeEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:00.998 (7.896s)&#xA;&gt; Enter [It] should add value of modsecurity-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/modsecurity/modsecurity_snippet.go:30 @ 04/04/23 18:30:00.998&#xA;&lt; Exit [It] should add value of modsecurity-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/modsecurity/modsecurity_snippet.go:30 @ 04/04/23 18:30:11.215 (10.217s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:11.215&#xA;&lt; Exit [AfterEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:11.436 (221ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should exists opentracing directive when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="28.327005454">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:11.436&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:18.304 (6.868s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:30:18.304&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:30:22.331 (4.027s)&#xA;&gt; Enter [It] should exists opentracing directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:71 @ 04/04/23 18:30:22.331&#xA;&lt; Exit [It] should exists opentracing directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:71 @ 04/04/23 18:30:39.546 (17.216s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:39.546&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:39.763 (217ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:30:39.763&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:30:39.763 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinitymode Check persistent affinity mode" classname="nginx-ingress-controller e2e suite" status="passed" time="128.063623015">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:39.763&#xA;&lt; Exit [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:47.146 (7.383s)&#xA;&gt; Enter [It] Check persistent affinity mode - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:67 @ 04/04/23 18:30:47.146&#xA;&lt; Exit [It] Check persistent affinity mode - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:67 @ 04/04/23 18:32:47.648 (2m0.502s)&#xA;&gt; Enter [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:47.648&#xA;&lt; Exit [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:47.827 (179ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress with a different class annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="158.132598199">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:47.827&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:04.512 (2m16.685s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:35:04.512&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:35:08.555 (4.042s)&#xA;&gt; Enter [It] should ignore Ingress with a different class annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:68 @ 04/04/23 18:35:08.555&#xA;&lt; Exit [It] should ignore Ingress with a different class annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:68 @ 04/04/23 18:35:25.764 (17.209s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:25.764&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:25.96 (196ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should enable opentracing using jaeger" classname="nginx-ingress-controller e2e suite" status="passed" time="32.14322785">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:25.96&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:33.883 (7.923s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:35:33.883&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:35:37.911 (4.028s)&#xA;&gt; Enter [It] should enable opentracing using jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:172 @ 04/04/23 18:35:37.911&#xA;&lt; Exit [It] should enable opentracing using jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:172 @ 04/04/23 18:35:57.93 (20.019s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:57.93&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:58.103 (173ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:35:58.103&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:35:58.103 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should add custom error page when global-auth-signin url is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="56.818456066">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:58.104&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:05.96 (7.857s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:36:05.96&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:36:14.017 (8.056s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:36:14.017&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:36:14.017&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:36:24.203&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:36:34.361&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:36:44.521 (30.504s)&#xA;&gt; Enter [It] should add custom error page when global-auth-signin url is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:210 @ 04/04/23 18:36:44.521&#xA;STEP: Adding a global-auth-signin to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:215 @ 04/04/23 18:36:44.521&#xA;&lt; Exit [It] should add custom error page when global-auth-signin url is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:210 @ 04/04/23 18:36:54.694 (10.173s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:54.694&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:54.922 (228ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-stream-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="30.946117672">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:54.922&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:02.365 (7.443s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:37:02.365&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:37:08.389 (6.023s)&#xA;&gt; Enter [It] disable-stream-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:71 @ 04/04/23 18:37:08.389&#xA;&lt; Exit [It] disable-stream-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:71 @ 04/04/23 18:37:25.61 (17.222s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:25.611&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:25.869 (258ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should enable opentracing using jaeger with sampler host" classname="nginx-ingress-controller e2e suite" status="passed" time="31.172411267">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:25.869&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:32.759 (6.89s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:37:32.759&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:37:36.785 (4.026s)&#xA;&gt; Enter [It] should enable opentracing using jaeger with sampler host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:184 @ 04/04/23 18:37:36.785&#xA;&lt; Exit [It] should enable opentracing using jaeger with sampler host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:184 @ 04/04/23 18:37:56.815 (20.03s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:56.815&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:57.041 (227ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:37:57.041&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:37:57.041 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] add-headers Add a custom header" classname="nginx-ingress-controller e2e suite" status="passed" time="29.429456981">
+              <system-err>&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:57.042&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:04.9 (7.858s)&#xA;&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 04/04/23 18:38:04.9&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 04/04/23 18:38:15.932 (11.032s)&#xA;&gt; Enter [It] Add a custom header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:40 @ 04/04/23 18:38:15.932&#xA;&lt; Exit [It] Add a custom header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:40 @ 04/04/23 18:38:26.137 (10.204s)&#xA;&gt; Enter [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:26.137&#xA;&lt; Exit [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:26.471 (334ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With default ingress class config should serve Ingress when class is updated between annotation and ingressClassName" classname="nginx-ingress-controller e2e suite" status="passed" time="36.546449498">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:26.471&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:33.322 (6.851s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:38:33.322&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:38:37.351 (4.029s)&#xA;&gt; Enter [It] should serve Ingress when class is updated between annotation and ingressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:323 @ 04/04/23 18:38:37.351&#xA;&lt; Exit [It] should serve Ingress when class is updated between annotation and ingressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:323 @ 04/04/23 18:39:02.787 (25.436s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:02.787&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:03.018 (231ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] backend status code 503 should return 503 when all backend service endpoints are unavailable" classname="nginx-ingress-controller e2e suite" status="passed" time="18.478587281">
+              <system-err>&gt; Enter [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:03.025&#xA;&lt; Exit [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:11.02 (7.995s)&#xA;&gt; Enter [It] should return 503 when all backend service endpoints are unavailable - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:54 @ 04/04/23 18:39:11.02&#xA;&lt; Exit [It] should return 503 when all backend service endpoints are unavailable - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:54 @ 04/04/23 18:39:21.316 (10.296s)&#xA;&gt; Enter [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:21.316&#xA;&lt; Exit [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:21.504 (188ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] gzip should set gzip_disable to msie6" classname="nginx-ingress-controller e2e suite" status="passed" time="25.33065533">
+              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:21.504&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:29.492 (7.988s)&#xA;&gt; Enter [It] should set gzip_disable to msie6 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:67 @ 04/04/23 18:39:29.492&#xA;&lt; Exit [It] should set gzip_disable to msie6 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:67 @ 04/04/23 18:39:46.643 (17.151s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:46.643&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:46.835 (192ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* canary affinity behavior routes traffic to either mainline or canary backend (legacy behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="70.69738704">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:46.835&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:53.72 (6.885s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:39:53.72&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:40:01.768 (8.048s)&#xA;&gt; Enter [It] routes traffic to either mainline or canary backend (legacy behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1058 @ 04/04/23 18:40:01.768&#xA;&lt; Exit [It] routes traffic to either mainline or canary backend (legacy behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1058 @ 04/04/23 18:40:57.335 (55.567s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:57.335&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:57.533 (198ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Status] status update should update status field after client-go reconnection" classname="nginx-ingress-controller e2e suite" status="passed" time="80.044380755">
+              <system-err>&gt; Enter [BeforeEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.249&#xA;&lt; Exit [BeforeEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:26.794 (7.545s)&#xA;&gt; Enter [It] should update status field after client-go reconnection - /go/src/k8s.io/ingress-nginx/test/e2e/status/update.go:43 @ 04/04/23 18:04:26.794&#xA;Apr  4 18:04:26.794: INFO: Asynchronously running &#39;/bin/bash -c /usr/local/bin/kubectl proxy --accept-hosts=.* --address=0.0.0.0 --port=0&#39;&#xA;Apr  4 18:04:49.019: INFO: waiting for leader election and initial status update&#xA;Apr  4 18:05:29.033: INFO: Asynchronously running &#39;/bin/bash -c /usr/local/bin/kubectl proxy --accept-hosts=.* --address=0.0.0.0 --port=42431&#39;&#xA;&lt; Exit [It] should update status field after client-go reconnection - /go/src/k8s.io/ingress-nginx/test/e2e/status/update.go:43 @ 04/04/23 18:05:39.069 (1m12.275s)&#xA;&gt; Enter [AfterEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:39.069&#xA;&lt; Exit [AfterEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:39.293 (225ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1M" classname="nginx-ingress-controller e2e suite" status="passed" time="21.355109571">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:39.294&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:46.218 (6.925s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:05:46.218&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:05:50.239 (4.02s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1M - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:123 @ 04/04/23 18:05:50.239&#xA;&lt; Exit [It] should set client_body_buffer_size to 1M - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:123 @ 04/04/23 18:06:00.422 (10.184s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:00.422&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:00.649 (227ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Dynamic $proxy_host should exist a proxy_host" classname="nginx-ingress-controller e2e suite" status="passed" time="21.314347362">
+              <system-err>&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:00.649&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:07.542 (6.893s)&#xA;&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 04/04/23 18:06:07.542&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 04/04/23 18:06:11.569 (4.027s)&#xA;&gt; Enter [It] should exist a proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:36 @ 04/04/23 18:06:11.569&#xA;&lt; Exit [It] should exist a proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:36 @ 04/04/23 18:06:21.772 (10.203s)&#xA;&gt; Enter [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:21.772&#xA;&lt; Exit [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:21.963 (191ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] add-headers Add multiple custom headers" classname="nginx-ingress-controller e2e suite" status="passed" time="28.410685853">
+              <system-err>&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:21.964&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:28.888 (6.924s)&#xA;&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 04/04/23 18:06:28.888&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 04/04/23 18:06:39.938 (11.05s)&#xA;&gt; Enter [It] Add multiple custom headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:65 @ 04/04/23 18:06:39.938&#xA;&lt; Exit [It] Add multiple custom headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:65 @ 04/04/23 18:06:50.151 (10.213s)&#xA;&gt; Enter [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:50.151&#xA;&lt; Exit [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:50.374 (223ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if mainline ingress is created before the canary ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="32.384106483">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:50.375&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:57.307 (6.932s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:06:57.307&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:05.355 (8.048s)&#xA;&gt; Enter [It] should route requests to the correct upstream if mainline ingress is created before the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:161 @ 04/04/23 18:07:05.355&#xA;STEP: routing requests destined for the mainline ingress to the maineline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:185 @ 04/04/23 18:07:22.519&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:195 @ 04/04/23 18:07:22.526&#xA;&lt; Exit [It] should route requests to the correct upstream if mainline ingress is created before the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:161 @ 04/04/23 18:07:22.534 (17.179s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:22.534&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:22.759 (225ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] hash size Check proxy header hash size should set proxy-headers-hash-max-size" classname="nginx-ingress-controller e2e suite" status="passed" time="28.404384502">
+              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:22.759&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:29.671 (6.912s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:07:29.671&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:07:40.702 (11.031s)&#xA;&gt; Enter [It] should set proxy-headers-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:68 @ 04/04/23 18:07:40.702&#xA;&lt; Exit [It] should set proxy-headers-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:68 @ 04/04/23 18:07:50.922 (10.22s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:50.922&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:51.164 (242ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress with different controller class" classname="nginx-ingress-controller e2e suite" status="passed" time="29.290705972">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:51.164&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:59.041 (7.877s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:07:59.041&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:08:03.067 (4.025s)&#xA;&gt; Enter [It] should ignore Ingress with different controller class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:104 @ 04/04/23 18:08:03.067&#xA;&lt; Exit [It] should ignore Ingress with different controller class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:104 @ 04/04/23 18:08:20.253 (17.187s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:20.253&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:20.455 (201ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format-escape-none enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="31.867930552">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:20.455&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:27.83 (7.375s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:08:27.83&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:08:38.87 (11.04s)&#xA;&gt; Enter [It] log-format-escape-none enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:128 @ 04/04/23 18:08:38.87&#xA;&lt; Exit [It] log-format-escape-none enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:128 @ 04/04/23 18:08:52.098 (13.228s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:52.098&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:52.323 (225ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should return status code 200 when signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="25.339688675">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:52.323&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:59.233 (6.909s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:08:59.233&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:09:03.258 (4.025s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:09:03.258&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:09:17.471 (14.213s)&#xA;&gt; Enter [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:485 @ 04/04/23 18:09:17.471&#xA;&lt; Exit [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:485 @ 04/04/23 18:09:17.477 (6ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:17.477&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:17.663 (186ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [SSL] [Flag] default-ssl-certificate uses default ssl certificate for host based ingress when configured certificate does not match host" classname="nginx-ingress-controller e2e suite" status="passed" time="32.685166334">
+              <system-err>&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:17.664&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:24.618 (6.955s)&#xA;&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 04/04/23 18:09:24.618&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 04/04/23 18:09:37.752 (13.134s)&#xA;&gt; Enter [It] uses default ssl certificate for host based ingress when configured certificate does not match host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:80 @ 04/04/23 18:09:37.752&#xA;STEP: making sure new ingress is deployed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:90 @ 04/04/23 18:09:44.916&#xA;STEP: making sure the configured default ssl certificate is being used - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:96 @ 04/04/23 18:09:48.094&#xA;&lt; Exit [It] uses default ssl certificate for host based ingress when configured certificate does not match host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:80 @ 04/04/23 18:09:50.119 (12.367s)&#xA;&gt; Enter [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:50.119&#xA;&lt; Exit [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:50.349 (230ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - GRPC should return OK for service with backend protocol GRPC" classname="nginx-ingress-controller e2e suite" status="passed" time="21.305689365">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:50.349&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:57.22 (6.871s)&#xA;&gt; Enter [It] should return OK for service with backend protocol GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:68 @ 04/04/23 18:09:57.22&#xA;&lt; Exit [It] should return OK for service with backend protocol GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:68 @ 04/04/23 18:10:11.466 (14.247s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:11.466&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:11.655 (189ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] gzip should be enabled with default settings" classname="nginx-ingress-controller e2e suite" status="passed" time="17.220763513">
+              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:11.655&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:18.528 (6.872s)&#xA;&gt; Enter [It] should be enabled with default settings - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:39 @ 04/04/23 18:10:18.528&#xA;&lt; Exit [It] should be enabled with default settings - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:39 @ 04/04/23 18:10:28.683 (10.155s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:28.683&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:28.876 (193ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should include opentracing_trust_incoming_span off directive when disabled" classname="nginx-ingress-controller e2e suite" status="passed" time="28.309530893">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:28.876&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:35.756 (6.88s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:10:35.756&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:10:39.781 (4.025s)&#xA;&gt; Enter [It] should include opentracing_trust_incoming_span off directive when disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:85 @ 04/04/23 18:10:39.781&#xA;&lt; Exit [It] should include opentracing_trust_incoming_span off directive when disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:85 @ 04/04/23 18:10:56.965 (17.184s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:56.965&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:57.186 (221ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:10:57.186&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:10:57.186 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should warn user when use-regex is true and session-cookie-path is not set" classname="nginx-ingress-controller e2e suite" status="passed" time="25.399109696">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:57.186&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:05.078 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:11:05.078&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:11:09.104 (4.027s)&#xA;&gt; Enter [It] should warn user when use-regex is true and session-cookie-path is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:294 @ 04/04/23 18:11:09.104&#xA;&lt; Exit [It] should warn user when use-regex is true and session-cookie-path is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:294 @ 04/04/23 18:11:22.32 (13.216s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:22.32&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:22.585 (265ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to &#39;&#39; and use ajp_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="21.471021469">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:22.585&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:29.564 (6.979s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:11:29.564&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:11:33.585 (4.021s)&#xA;&gt; Enter [It] should set backend protocol to &#39;&#39; and use ajp_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:109 @ 04/04/23 18:11:33.585&#xA;&lt; Exit [It] should set backend protocol to &#39;&#39; and use ajp_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:109 @ 04/04/23 18:11:43.812 (10.227s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:43.812&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:44.056 (244ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] stream-snippet should add stream-snippet and drop annotations per admin config" classname="nginx-ingress-controller e2e suite" status="passed" time="39.472773565">
+              <system-err>&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:44.057&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:52.078 (8.021s)&#xA;&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 04/04/23 18:11:52.078&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 04/04/23 18:11:54.141 (2.063s)&#xA;&gt; Enter [It] should add stream-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:85 @ 04/04/23 18:11:54.141&#xA;&lt; Exit [It] should add stream-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:85 @ 04/04/23 18:12:23.359 (29.218s)&#xA;&gt; Enter [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:23.359&#xA;&lt; Exit [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:23.53 (171ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should not set secure in cookie with provided false annotation on http" classname="nginx-ingress-controller e2e suite" status="passed" time="21.302342634">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:23.53&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:30.423 (6.893s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:12:30.423&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:12:34.455 (4.032s)&#xA;&gt; Enter [It] should not set secure in cookie with provided false annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:435 @ 04/04/23 18:12:34.455&#xA;&lt; Exit [It] should not set secure in cookie with provided false annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:435 @ 04/04/23 18:12:44.621 (10.166s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:44.621&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:44.832 (211ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [TCP] tcp-services should expose an ExternalName TCP service" classname="nginx-ingress-controller e2e suite" status="passed" time="11.0379693">
+              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:44.833&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:52.267 (7.434s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:12:52.267&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:12:52.272 (5ms)&#xA;&gt; Enter [It] should expose an ExternalName TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:80 @ 04/04/23 18:12:52.272&#xA;&lt; Exit [It] should expose an ExternalName TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:80 @ 04/04/23 18:12:55.617 (3.345s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:55.617&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:55.87 (253ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured removes HTTPS configuration when we delete TLS spec" classname="nginx-ingress-controller e2e suite" status="passed" time="41.41020715">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:55.871&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:02.782 (6.911s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:13:02.782&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:13:06.807 (4.025s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:13:06.807&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:13:23.944&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:13:32.097&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:13:32.106 (25.299s)&#xA;&gt; Enter [It] removes HTTPS configuration when we delete TLS spec - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:233 @ 04/04/23 18:13:32.106&#xA;&lt; Exit [It] removes HTTPS configuration when we delete TLS spec - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:233 @ 04/04/23 18:13:37.112 (5.005s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:37.112&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:37.281 (169ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should not exists opentracing_location_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="29.339631623">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:37.281&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:45.19 (7.908s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:13:45.19&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:13:49.209 (4.019s)&#xA;&gt; Enter [It] should not exists opentracing_location_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:130 @ 04/04/23 18:13:49.209&#xA;&lt; Exit [It] should not exists opentracing_location_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:130 @ 04/04/23 18:14:06.443 (17.233s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:06.443&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:06.621 (178ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:14:06.621&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:14:06.621 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic certificates picks up the certificate when we add TLS spec to existing ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="26.612276222">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:06.621&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:13.543 (6.921s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:14:13.543&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:14:17.569 (4.026s)&#xA;&gt; Enter [It] picks up the certificate when we add TLS spec to existing ingress - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:45 @ 04/04/23 18:14:17.569&#xA;&lt; Exit [It] picks up the certificate when we add TLS spec to existing ingress - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:45 @ 04/04/23 18:14:33.037 (15.469s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:33.037&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:33.234 (196ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] nginx-configuration fails when using root directive" classname="nginx-ingress-controller e2e suite" status="passed" time="62.038566962">
+              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:14:33.234&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:14:35.237 (2.003s)&#xA;&gt; Enter [It] fails when using root directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:124 @ 04/04/23 18:14:35.237&#xA;&lt; Exit [It] fails when using root directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:124 @ 04/04/23 18:15:35.27 (1m0.034s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:15:35.27&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:15:35.272 (2ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should fail to use longest match for documented warning" classname="nginx-ingress-controller e2e suite" status="passed" time="27.307439756">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:35.273&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:43.177 (7.905s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:15:43.177&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:15:45.196 (2.019s)&#xA;&gt; Enter [It] should fail to use longest match for documented warning - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:158 @ 04/04/23 18:15:45.196&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:161 @ 04/04/23 18:15:45.196&#xA;STEP: creating an ingress definition with the use-regex annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:165 @ 04/04/23 18:15:52.212&#xA;STEP: check that &#39;/foo/bar/bar&#39; does not match the longest exact path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:179 @ 04/04/23 18:16:02.371&#xA;&lt; Exit [It] should fail to use longest match for documented warning - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:158 @ 04/04/23 18:16:02.374 (17.178s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:02.374&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:02.58 (206ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure Opentelemetry should not exists opentelemetry_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="32.017142107">
+              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:02.581&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:12.465 (9.885s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:16:12.465&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:16:16.495 (4.03s)&#xA;&gt; Enter [It] should not exists opentelemetry_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:89 @ 04/04/23 18:16:16.495&#xA;&lt; Exit [It] should not exists opentelemetry_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:89 @ 04/04/23 18:16:33.975 (17.48s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:33.975&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:34.598 (623ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:16:34.598&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:16:34.598 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should disable modsecurity using &#39;modsecurity off;&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="26.218874638">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:34.603&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:41.474 (6.871s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:16:41.474&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:16:43.493 (2.019s)&#xA;&gt; Enter [It] should disable modsecurity using &#39;modsecurity off;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:132 @ 04/04/23 18:16:43.493&#xA;&lt; Exit [It] should disable modsecurity using &#39;modsecurity off;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:132 @ 04/04/23 18:17:00.623 (17.13s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:00.623&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:00.822 (199ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set the request count to upstream server through one keep alive connection" classname="nginx-ingress-controller e2e suite" status="passed" time="28.371746836">
+              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:00.823&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:07.712 (6.89s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:17:07.712&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:17:18.751 (11.038s)&#xA;&gt; Enter [It] should set the request count to upstream server through one keep alive connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:86 @ 04/04/23 18:17:18.751&#xA;&lt; Exit [It] should set the request count to upstream server through one keep alive connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:86 @ 04/04/23 18:17:28.957 (10.206s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:28.957&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:29.194 (237ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the keep alive should set keepalive_requests" classname="nginx-ingress-controller e2e suite" status="passed" time="31.301174976">
+              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:29.195&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:39.14 (9.946s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:17:39.14&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:17:50.186 (11.045s)&#xA;&gt; Enter [It] should set keepalive_requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:48 @ 04/04/23 18:17:50.186&#xA;&lt; Exit [It] should set keepalive_requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:48 @ 04/04/23 18:18:00.312 (10.127s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:00.312&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:00.496 (184ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] gzip should set gzip_comp_level to 4" classname="nginx-ingress-controller e2e suite" status="passed" time="24.296191576">
+              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:00.496&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:07.399 (6.903s)&#xA;&gt; Enter [It] should set gzip_comp_level to 4 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:56 @ 04/04/23 18:18:07.399&#xA;&lt; Exit [It] should set gzip_comp_level to 4 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:56 @ 04/04/23 18:18:24.593 (17.194s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:24.593&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:24.792 (199ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should set sticky cookie SERVERID" classname="nginx-ingress-controller e2e suite" status="passed" time="21.367955213">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:24.793&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:31.73 (6.937s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:18:31.73&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:18:35.753 (4.023s)&#xA;&gt; Enter [It] should set sticky cookie SERVERID - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:42 @ 04/04/23 18:18:35.753&#xA;&lt; Exit [It] should set sticky cookie SERVERID - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:42 @ 04/04/23 18:18:45.94 (10.187s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:45.94&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:46.161 (221ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow - missing origins (should allow all origins)" classname="nginx-ingress-controller e2e suite" status="passed" time="19.125716488">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:46.161&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:54.022 (7.861s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:54.022&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:58.047 (4.025s)&#xA;&gt; Enter [It] should allow - missing origins (should allow all origins) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:571 @ 04/04/23 18:18:58.047&#xA;&lt; Exit [It] should allow - missing origins (should allow all origins) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:571 @ 04/04/23 18:19:05.106 (7.059s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:05.106&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:05.287 (181ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should not set affinity across all server locations when using separate ingresses" classname="nginx-ingress-controller e2e suite" status="passed" time="29.276973597">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:05.287&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:13.171 (7.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:19:13.171&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:19:17.198 (4.027s)&#xA;&gt; Enter [It] should not set affinity across all server locations when using separate ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:320 @ 04/04/23 18:19:17.198&#xA;&lt; Exit [It] should not set affinity across all server locations when using separate ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:320 @ 04/04/23 18:19:34.328 (17.129s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:34.328&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:34.564 (236ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName without a port defined" classname="nginx-ingress-controller e2e suite" status="passed" time="18.63305273">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:34.564&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:42.455 (7.891s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName without a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:95 @ 04/04/23 18:19:42.455&#xA;&lt; Exit [It] should return 200 for service type=ExternalName without a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:95 @ 04/04/23 18:19:52.995 (10.54s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:52.995&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:53.197 (202ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Default Backend] enables access logging for default backend" classname="nginx-ingress-controller e2e suite" status="skipped" time="7.568859087">
+              <skipped message="skipped - enable-access-log-for-default-backend"></skipped>
+              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:53.198&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:00.144 (6.946s)&#xA;&gt; Enter [It] enables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:88 @ 04/04/23 18:20:00.144&#xA;[SKIPPED] enable-access-log-for-default-backend&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:90 @ 04/04/23 18:20:00.144&#xA;&lt; Exit [It] enables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:88 @ 04/04/23 18:20:00.144 (0s)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:00.144&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:00.767 (622ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should overwrite Foo header with auth response" classname="nginx-ingress-controller e2e suite" status="passed" time="31.890098966">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:00.767&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:09.884 (9.117s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:20:09.884&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:20:13.952 (4.068s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:20:13.952&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:20:28.231 (14.28s)&#xA;&gt; Enter [It] should overwrite Foo header with auth response - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:529 @ 04/04/23 18:20:28.231&#xA;&lt; Exit [It] should overwrite Foo header with auth response - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:529 @ 04/04/23 18:20:32.452 (4.22s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:32.452&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:32.657 (205ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should use ~* location modifier if regex annotation is present" classname="nginx-ingress-controller e2e suite" status="passed" time="31.515497703">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:32.657&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:39.572 (6.914s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:20:39.572&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:20:43.594 (4.022s)&#xA;&gt; Enter [It] should use ~* location modifier if regex annotation is present - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:111 @ 04/04/23 18:20:43.594&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:114 @ 04/04/23 18:20:43.594&#xA;STEP: creating an ingress definition with the use-regex amd rewrite-target annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:123 @ 04/04/23 18:20:53.786&#xA;STEP: ensuring &#39;/foo&#39; matches &#39;~* ^/foo&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:137 @ 04/04/23 18:21:03.945&#xA;STEP: ensuring &#39;/foo/bar&#39; matches &#39;~* ^/foo.+&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:147 @ 04/04/23 18:21:03.953&#xA;&lt; Exit [It] should use ~* location modifier if regex annotation is present - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:111 @ 04/04/23 18:21:03.959 (20.365s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:03.959&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:04.173 (214ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured but Authorization header is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="23.147807317">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:04.173&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:12.085 (7.912s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:12.085&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:16.104 (4.019s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:89 @ 04/04/23 18:21:16.104&#xA;&lt; Exit [It] should return status code 401 when authentication is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:89 @ 04/04/23 18:21:27.134 (11.029s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:27.134&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:27.321 (187ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] mirror-* should disable mirror-request-body" classname="nginx-ingress-controller e2e suite" status="passed" time="21.355247118">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:27.321&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:34.238 (6.917s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:21:34.238&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:21:38.265 (4.026s)&#xA;&gt; Enter [It] should disable mirror-request-body - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:67 @ 04/04/23 18:21:38.265&#xA;&lt; Exit [It] should disable mirror-request-body - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:67 @ 04/04/23 18:21:48.462 (10.197s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:48.462&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:48.677 (215ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* with invalid auth-url should deny whole location should return 503 (location was denied)" classname="nginx-ingress-controller e2e suite" status="passed" time="21.341137941">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:48.677&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:55.595 (6.918s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:55.595&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:59.616 (4.02s)&#xA;&gt; Enter [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 04/04/23 18:21:59.616&#xA;&lt; Exit [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 04/04/23 18:22:09.78 (10.165s)&#xA;&gt; Enter [It] should return 503 (location was denied) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:879 @ 04/04/23 18:22:09.78&#xA;&lt; Exit [It] should return 503 (location was denied) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:879 @ 04/04/23 18:22:09.787 (6ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:09.787&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:10.018 (231ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should setup proxy cookies" classname="nginx-ingress-controller e2e suite" status="passed" time="22.293403591">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:10.018&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:17.91 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:22:17.91&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:22:21.937 (4.027s)&#xA;&gt; Enter [It] should setup proxy cookies - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:215 @ 04/04/23 18:22:21.937&#xA;&lt; Exit [It] should setup proxy cookies - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:215 @ 04/04/23 18:22:32.141 (10.205s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:32.141&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:32.312 (170ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class Without IngressClass Cluster scoped Permission should ignore Ingress with only IngressClassName" classname="nginx-ingress-controller e2e suite" status="passed" time="28.459532866">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:32.312&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:39.246 (6.934s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:22:39.246&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:22:43.274 (4.028s)&#xA;&gt; Enter [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 04/04/23 18:22:43.274&#xA;&lt; Exit [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 04/04/23 18:22:50.32 (7.047s)&#xA;&gt; Enter [It] should ignore Ingress with only IngressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:652 @ 04/04/23 18:22:50.32&#xA;&lt; Exit [It] should ignore Ingress with only IngressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:652 @ 04/04/23 18:23:00.536 (10.216s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:00.536&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:00.771 (235ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] enable-ssl-passthrough With enable-ssl-passthrough enabled should enable ssl-passthrough-proxy-port on a different port" classname="nginx-ingress-controller e2e suite" status="passed" time="29.495200538">
+              <system-err>&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:00.772&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:07.648 (6.876s)&#xA;&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 04/04/23 18:23:07.648&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 04/04/23 18:23:18.858 (11.21s)&#xA;&gt; Enter [It] should enable ssl-passthrough-proxy-port on a different port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:56 @ 04/04/23 18:23:18.858&#xA;&lt; Exit [It] should enable ssl-passthrough-proxy-port on a different port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:56 @ 04/04/23 18:23:30.073 (11.215s)&#xA;&gt; Enter [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:30.073&#xA;&lt; Exit [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:30.267 (194ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Default Backend] change default settings should apply the annotation to the default backend" classname="nginx-ingress-controller e2e suite" status="passed" time="21.28407974">
+              <system-err>&gt; Enter [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:30.267&#xA;&lt; Exit [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:37.168 (6.901s)&#xA;&gt; Enter [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:34 @ 04/04/23 18:23:37.168&#xA;&lt; Exit [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:34 @ 04/04/23 18:23:41.193 (4.024s)&#xA;&gt; Enter [It] should apply the annotation to the default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:38 @ 04/04/23 18:23:41.193&#xA;&lt; Exit [It] should apply the annotation to the default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:38 @ 04/04/23 18:23:51.36 (10.167s)&#xA;&gt; Enter [AfterEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:51.36&#xA;&lt; Exit [AfterEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:51.551 (192ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] Geoip2 should include geoip2 line in config when enabled and db file exists" classname="nginx-ingress-controller e2e suite" status="passed" time="31.122649161">
+              <system-err>&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:51.552&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:58.412 (6.86s)&#xA;&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 04/04/23 18:23:58.412&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 04/04/23 18:24:02.44 (4.027s)&#xA;&gt; Enter [It] should include geoip2 line in config when enabled and db file exists - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:46 @ 04/04/23 18:24:02.44&#xA;Apr  4 18:24:11.771: INFO: Connecting to github.com (140.82.113.4:443)&#xA;Connecting to github.com (140.82.113.4:443)&#xA;Connecting to raw.githubusercontent.com (185.199.108.133:443)&#xA;saving to &#39;/etc/nginx/geoip/GeoLite2-Country.mmdb&#39;&#xA;GeoLite2-Country.mmd 100%!|(MISSING)********************************| 17952  0:00:00 ETA&#xA;&#39;/etc/nginx/geoip/GeoLite2-Country.mmdb&#39; saved&#xA;&#xA;&lt; Exit [It] should include geoip2 line in config when enabled and db file exists - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:46 @ 04/04/23 18:24:22.088 (19.648s)&#xA;&gt; Enter [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:22.088&#xA;&lt; Exit [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:22.674 (586ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should allow for custom rewrite parameters" classname="nginx-ingress-controller e2e suite" status="passed" time="22.284349289">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:22.675&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:30.572 (7.897s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:24:30.572&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:24:34.603 (4.031s)&#xA;&gt; Enter [It] should allow for custom rewrite parameters - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:190 @ 04/04/23 18:24:34.603&#xA;STEP: creating an ingress definition with the use-regex annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:193 @ 04/04/23 18:24:34.603&#xA;STEP: check that &#39;/foo/bar/bar&#39; redirects to custom rewrite - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:206 @ 04/04/23 18:24:44.755&#xA;&lt; Exit [It] should allow for custom rewrite parameters - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:190 @ 04/04/23 18:24:44.757 (10.154s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:44.757&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:44.959 (202ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] hash size Check server names hash size should set server_names_hash_bucket_size" classname="nginx-ingress-controller e2e suite" status="passed" time="30.356197074">
+              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:44.96&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:53.864 (8.905s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:24:53.864&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:25:04.899 (11.035s)&#xA;&gt; Enter [It] should set server_names_hash_bucket_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:40 @ 04/04/23 18:25:04.899&#xA;&lt; Exit [It] should set server_names_hash_bucket_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:40 @ 04/04/23 18:25:15.061 (10.162s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:15.061&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:15.316 (255ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a TLS enabled ingress should set X-Forwarded-Port header to 443" classname="nginx-ingress-controller e2e suite" status="passed" time="44.268466762">
+              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:15.316&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:39.846 (24.53s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:25:39.846&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:25:47.041 (7.195s)&#xA;&gt; Enter [It] should set X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:70 @ 04/04/23 18:25:47.041&#xA;&lt; Exit [It] should set X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:70 @ 04/04/23 18:25:59.374 (12.333s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:59.374&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:59.585 (211ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-sync-events should create sync events (default)" classname="nginx-ingress-controller e2e suite" status="passed" time="21.291606043">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:59.585&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:06.445 (6.86s)&#xA;&gt; Enter [It] should create sync events (default) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:35 @ 04/04/23 18:26:06.445&#xA;&lt; Exit [It] should create sync events (default) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:35 @ 04/04/23 18:26:20.681 (14.236s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:20.681&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:20.877 (196ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not allow - unmatching origin with wildcard origin (2 subdomains)" classname="nginx-ingress-controller e2e suite" status="passed" time="18.145584685">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:20.877&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:27.751 (6.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:26:27.751&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:26:31.787 (4.036s)&#xA;&gt; Enter [It] should not allow - unmatching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:468 @ 04/04/23 18:26:31.787&#xA;&lt; Exit [It] should not allow - unmatching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:468 @ 04/04/23 18:26:38.82 (7.032s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:38.82&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:39.022 (203ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] proxy-send-timeout should not set invalid proxy send timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="29.217298979">
+              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:39.023&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:46.929 (7.906s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 04/04/23 18:26:46.929&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 04/04/23 18:26:50.949 (4.02s)&#xA;&gt; Enter [It] should not set invalid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:52 @ 04/04/23 18:26:50.949&#xA;&lt; Exit [It] should not set invalid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:52 @ 04/04/23 18:27:08.052 (17.103s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:08.052&#xA;&lt; Exit [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:08.24 (188ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] hash size Check server names hash size should set server_names_hash_max_size" classname="nginx-ingress-controller e2e suite" status="passed" time="29.415884826">
+              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:08.24&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:16.131 (7.891s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:27:16.131&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:27:27.187 (11.056s)&#xA;&gt; Enter [It] should set server_names_hash_max_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:48 @ 04/04/23 18:27:27.187&#xA;&lt; Exit [It] should set server_names_hash_max_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:48 @ 04/04/23 18:27:37.411 (10.224s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:37.411&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:37.656 (245ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should set proxy client-max-body-size to 8m" classname="nginx-ingress-controller e2e suite" status="passed" time="21.297633873">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:37.657&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:44.535 (6.879s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:27:44.535&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:27:48.555 (4.02s)&#xA;&gt; Enter [It] should set proxy client-max-body-size to 8m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:85 @ 04/04/23 18:27:48.555&#xA;&lt; Exit [It] should set proxy client-max-body-size to 8m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:85 @ 04/04/23 18:27:58.71 (10.155s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:58.71&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:58.954 (244ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not break functionality with extra domain" classname="nginx-ingress-controller e2e suite" status="passed" time="19.187139443">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:58.955&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:06.864 (7.909s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:28:06.864&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:28:10.897 (4.033s)&#xA;&gt; Enter [It] should not break functionality with extra domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:314 @ 04/04/23 18:28:10.897&#xA;&lt; Exit [It] should not break functionality with extra domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:314 @ 04/04/23 18:28:17.933 (7.036s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:17.933&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:18.142 (209ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-ssl-* proxy-ssl-location-only flag should change the nginx config server part" classname="nginx-ingress-controller e2e suite" status="passed" time="43.288812125">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:18.142&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:26.105 (7.963s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:28:26.105&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:28:28.133 (2.028s)&#xA;&gt; Enter [It] proxy-ssl-location-only flag should change the nginx config server part - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:150 @ 04/04/23 18:28:28.133&#xA;&lt; Exit [It] proxy-ssl-location-only flag should change the nginx config server part - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:150 @ 04/04/23 18:29:01.214 (33.081s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:01.214&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:01.431 (217ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* with invalid auth-url should deny whole location should add error to the config" classname="nginx-ingress-controller e2e suite" status="passed" time="155.376018795">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:01.431&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:19.232 (2m17.801s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:19.232&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:23.279 (4.047s)&#xA;&gt; Enter [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 04/04/23 18:31:23.279&#xA;&lt; Exit [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 04/04/23 18:31:33.459 (10.18s)&#xA;&gt; Enter [It] should add error to the config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:887 @ 04/04/23 18:31:33.459&#xA;&lt; Exit [It] should add error to the config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:887 @ 04/04/23 18:31:36.583 (3.124s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:36.583&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:36.807 (224ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Default Backend] SSL should return a self generated SSL certificate" classname="nginx-ingress-controller e2e suite" status="passed" time="12.194301845">
+              <system-err>&gt; Enter [BeforeEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:36.808&#xA;&lt; Exit [BeforeEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:43.735 (6.927s)&#xA;&gt; Enter [It] should return a self generated SSL certificate - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:29 @ 04/04/23 18:31:43.735&#xA;STEP: checking SSL Certificate using the NGINX IP address - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:30 @ 04/04/23 18:31:43.735&#xA;STEP: checking SSL Certificate using the NGINX catch all server - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:45 @ 04/04/23 18:31:48.771&#xA;&lt; Exit [It] should return a self generated SSL certificate - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:29 @ 04/04/23 18:31:48.798 (5.063s)&#xA;&gt; Enter [AfterEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:48.798&#xA;&lt; Exit [AfterEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:49.002 (204ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should return status code 200 when signed in after auth backend is deleted" classname="nginx-ingress-controller e2e suite" status="passed" time="68.873387156">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:49.002&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:55.884 (6.881s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:55.884&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:59.898 (4.014s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:31:59.898&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:32:04.919&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:32:15.067&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:32:25.279&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:32:35.453&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:32:50.643 (50.746s)&#xA;&gt; Enter [It] should return status code 200 when signed in after auth backend is deleted  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:772 @ 04/04/23 18:32:50.643&#xA;&lt; Exit [It] should return status code 200 when signed in after auth backend is deleted  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:772 @ 04/04/23 18:32:57.666 (7.022s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:57.666&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:57.876 (210ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-protocols" classname="nginx-ingress-controller e2e suite" status="passed" time="21.67574864">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:57.876&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:04.793 (6.917s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:33:04.793&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:33:08.814 (4.021s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-protocols - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:122 @ 04/04/23 18:33:08.814&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-protocols - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:122 @ 04/04/23 18:33:19.338 (10.524s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:19.338&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:19.552 (213ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] gzip should be disabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="10.227903498">
+              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:19.552&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:26.442 (6.89s)&#xA;&gt; Enter [It] should be disabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:32 @ 04/04/23 18:33:26.442&#xA;&lt; Exit [It] should be disabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:32 @ 04/04/23 18:33:29.606 (3.164s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:29.606&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:29.78 (174ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinitymode Balanced affinity mode should balance" classname="nginx-ingress-controller e2e suite" status="passed" time="25.347106236">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:29.78&#xA;&lt; Exit [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:36.668 (6.887s)&#xA;&gt; Enter [It] Balanced affinity mode should balance - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:34 @ 04/04/23 18:33:36.668&#xA;&lt; Exit [It] Balanced affinity mode should balance - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:34 @ 04/04/23 18:33:54.927 (18.259s)&#xA;&gt; Enter [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:54.927&#xA;&lt; Exit [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:55.127 (200ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] proxy-next-upstream should build proxy next upstream using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="29.357042378">
+              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:55.128&#xA;&lt; Exit [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:03.016 (7.888s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:32 @ 04/04/23 18:34:03.016&#xA;&lt; Exit [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:32 @ 04/04/23 18:34:07.036 (4.021s)&#xA;&gt; Enter [It] should build proxy next upstream using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:36 @ 04/04/23 18:34:07.036&#xA;&lt; Exit [It] should build proxy next upstream using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:36 @ 04/04/23 18:34:24.255 (17.219s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:24.255&#xA;&lt; Exit [AfterEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:24.485 (230ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to off" classname="nginx-ingress-controller e2e suite" status="passed" time="21.295257079">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:24.485&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:31.385 (6.9s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:34:31.385&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:34:35.427 (4.042s)&#xA;&gt; Enter [It] should set proxy_redirect to off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:36 @ 04/04/23 18:34:35.427&#xA;&lt; Exit [It] should set proxy_redirect to off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:36 @ 04/04/23 18:34:45.603 (10.176s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:45.603&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:45.78 (178ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should not exists opentracing_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="28.296945502">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:45.781&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:52.66 (6.879s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:34:52.66&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:34:56.689 (4.029s)&#xA;&gt; Enter [It] should not exists opentracing_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:100 @ 04/04/23 18:34:56.689&#xA;&lt; Exit [It] should not exists opentracing_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:100 @ 04/04/23 18:35:13.844 (17.155s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:13.844&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:14.078 (234ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:35:14.078&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:35:14.078 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] influxdb-* when influxdb is enabled should send the request metric to the influxdb server" classname="nginx-ingress-controller e2e suite" status="passed" time="45.55392001">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:14.078&#xA;&lt; Exit [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:22.011 (7.933s)&#xA;&gt; Enter [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:42 @ 04/04/23 18:35:22.011&#xA;&lt; Exit [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:42 @ 04/04/23 18:35:38.056 (16.045s)&#xA;&gt; Enter [It] should send the request metric to the influxdb server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:48 @ 04/04/23 18:35:38.056&#xA;&lt; Exit [It] should send the request metric to the influxdb server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:48 @ 04/04/23 18:35:59.417 (21.362s)&#xA;&gt; Enter [AfterEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:59.417&#xA;&lt; Exit [AfterEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:59.632 (215ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should enable opentracing using datadog" classname="nginx-ingress-controller e2e suite" status="passed" time="31.178047596">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:59.632&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:06.509 (6.876s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:36:06.509&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:36:10.532 (4.023s)&#xA;&gt; Enter [It] should enable opentracing using datadog - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:241 @ 04/04/23 18:36:10.532&#xA;&lt; Exit [It] should enable opentracing using datadog - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:241 @ 04/04/23 18:36:30.574 (20.042s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:30.574&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:30.81 (237ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:36:30.81&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:36:30.81 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Ingress] definition without host should set ingress details variables for ingresses without a host" classname="nginx-ingress-controller e2e suite" status="passed" time="21.276931352">
+              <system-err>&gt; Enter [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:30.811&#xA;&lt; Exit [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:37.689 (6.878s)&#xA;&gt; Enter [It] should set ingress details variables for ingresses without a host - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:34 @ 04/04/23 18:36:37.689&#xA;&lt; Exit [It] should set ingress details variables for ingresses without a host - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:34 @ 04/04/23 18:36:51.912 (14.223s)&#xA;&gt; Enter [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:51.912&#xA;&lt; Exit [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:52.088 (176ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] main-snippet should add value of main-snippet setting to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="18.324672874">
+              <system-err>&gt; Enter [BeforeEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:52.088&#xA;&lt; Exit [BeforeEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:59.999 (7.911s)&#xA;&gt; Enter [It] should add value of main-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/main_snippet.go:31 @ 04/04/23 18:36:59.999&#xA;&lt; Exit [It] should add value of main-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/main_snippet.go:31 @ 04/04/23 18:37:10.187 (10.188s)&#xA;&gt; Enter [AfterEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:10.187&#xA;&lt; Exit [AfterEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:10.413 (225ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="28.358772993">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:10.413&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:17.279 (6.866s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:37:17.279&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:37:21.337 (4.058s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:532 @ 04/04/23 18:37:21.337&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;DoCananry&#39; and header-value is &#39;DoCanary&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:557 @ 04/04/23 18:37:38.545&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:532 @ 04/04/23 18:37:38.552 (17.215s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:38.552&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:38.772 (219ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With default ingress class config should serve Ingress when class is added" classname="nginx-ingress-controller e2e suite" status="passed" time="36.494045555">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:38.772&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:45.664 (6.892s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:37:45.664&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:37:49.681 (4.017s)&#xA;&gt; Enter [It] should serve Ingress when class is added - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:257 @ 04/04/23 18:37:49.681&#xA;&lt; Exit [It] should serve Ingress when class is added - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:257 @ 04/04/23 18:38:15.087 (25.406s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:15.087&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:15.266 (179ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - GRPC should return OK for service with backend protocol GRPCS" classname="nginx-ingress-controller e2e suite" status="passed" time="24.346743802">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:15.266&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:23.144 (7.877s)&#xA;&gt; Enter [It] should return OK for service with backend protocol GRPCS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:199 @ 04/04/23 18:38:23.144&#xA;&lt; Exit [It] should return OK for service with backend protocol GRPCS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:199 @ 04/04/23 18:38:39.406 (16.262s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:39.406&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:39.613 (207ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] annotation-global-rate-limit generates correct configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="44.912006655">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:39.613&#xA;&lt; Exit [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:46.507 (6.894s)&#xA;&gt; Enter [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:34 @ 04/04/23 18:38:46.507&#xA;&lt; Exit [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:34 @ 04/04/23 18:38:50.531 (4.023s)&#xA;&gt; Enter [It] generates correct configuration - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:38 @ 04/04/23 18:38:50.531&#xA;STEP: regenerating the correct configuration after update - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:65 @ 04/04/23 18:39:12.735&#xA;&lt; Exit [It] generates correct configuration - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:38 @ 04/04/23 18:39:23.972 (33.441s)&#xA;&gt; Enter [AfterEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:23.972&#xA;&lt; Exit [AfterEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:24.525 (553ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="44.961262468">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:24.526&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:32.928 (8.402s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:39:32.928&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:39:36.954 (4.026s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:67 @ 04/04/23 18:39:36.954&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:67 @ 04/04/23 18:40:09.289 (32.335s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:09.289&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:09.487 (198ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] x-forwarded-prefix should not add X-Forwarded-Prefix if the annotation value is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="21.334669278">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:09.487&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:16.38 (6.893s)&#xA;&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 04/04/23 18:40:16.38&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 04/04/23 18:40:20.419 (4.039s)&#xA;&gt; Enter [It] should not add X-Forwarded-Prefix if the annotation value is empty - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:57 @ 04/04/23 18:40:20.419&#xA;&lt; Exit [It] should not add X-Forwarded-Prefix if the annotation value is empty - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:57 @ 04/04/23 18:40:30.626 (10.207s)&#xA;&gt; Enter [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:30.626&#xA;&lt; Exit [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:30.822 (196ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress without IngressClass configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="28.41523425">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:30.822&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:37.735 (6.913s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:40:37.735&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:40:41.759 (4.024s)&#xA;&gt; Enter [It] should ignore Ingress without IngressClass configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:164 @ 04/04/23 18:40:41.759&#xA;&lt; Exit [It] should ignore Ingress without IngressClass configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:164 @ 04/04/23 18:40:58.984 (17.225s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:58.984&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:59.238 (254ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should set cookie with domain" classname="nginx-ingress-controller e2e suite" status="passed" time="29.966187459">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.257&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:26.759 (7.502s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:04:26.759&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:04:38.804 (12.045s)&#xA;&gt; Enter [It] should set cookie with domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:225 @ 04/04/23 18:04:38.804&#xA;&lt; Exit [It] should set cookie with domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:225 @ 04/04/23 18:04:49.017 (10.213s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:04:49.017&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:04:49.223 (207ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Nil Service Backend should return 404 when backend service is nil" classname="nginx-ingress-controller e2e suite" status="passed" time="29.349579291">
+              <system-err>&gt; Enter [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:49.225&#xA;&lt; Exit [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:57.104 (7.879s)&#xA;&gt; Enter [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:34 @ 04/04/23 18:04:57.104&#xA;&lt; Exit [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:34 @ 04/04/23 18:05:01.132 (4.029s)&#xA;&gt; Enter [It] should return 404 when backend service is nil - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:38 @ 04/04/23 18:05:01.132&#xA;STEP: setting an ingress with a nil backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:39 @ 04/04/23 18:05:01.132&#xA;&lt; Exit [It] should return 404 when backend service is nil - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:38 @ 04/04/23 18:05:18.375 (17.242s)&#xA;&gt; Enter [AfterEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:18.375&#xA;&lt; Exit [AfterEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:18.574 (200ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should set the path to /something on the generated cookie" classname="nginx-ingress-controller e2e suite" status="passed" time="21.311039096000002">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:18.575&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:25.47 (6.895s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:05:25.47&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:05:29.501 (4.031s)&#xA;&gt; Enter [It] should set the path to /something on the generated cookie - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:99 @ 04/04/23 18:05:29.501&#xA;&lt; Exit [It] should set the path to /something on the generated cookie - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:99 @ 04/04/23 18:05:39.685 (10.184s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:39.685&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:39.886 (201ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] block-* should block CIDRs defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="28.417865083">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:39.886&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:46.798 (6.912s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:05:46.798&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:05:57.853 (11.055s)&#xA;&gt; Enter [It] should block CIDRs defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:38 @ 04/04/23 18:05:57.853&#xA;&lt; Exit [It] should block CIDRs defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:38 @ 04/04/23 18:06:08.065 (10.213s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:08.065&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:08.304 (239ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] proxy-read-timeout should set valid proxy read timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="28.373125957">
+              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:08.304&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:15.196 (6.891s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 04/04/23 18:06:15.196&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 04/04/23 18:06:19.22 (4.024s)&#xA;&gt; Enter [It] should set valid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:36 @ 04/04/23 18:06:19.22&#xA;&lt; Exit [It] should set valid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:36 @ 04/04/23 18:06:36.431 (17.211s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:36.431&#xA;&lt; Exit [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:36.678 (246ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] proxy-send-timeout should set valid proxy send timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="28.283099319">
+              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:36.678&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:43.562 (6.884s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 04/04/23 18:06:43.562&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 04/04/23 18:06:47.588 (4.026s)&#xA;&gt; Enter [It] should set valid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:36 @ 04/04/23 18:06:47.588&#xA;&lt; Exit [It] should set valid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:36 @ 04/04/23 18:07:04.782 (17.194s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:04.782&#xA;&lt; Exit [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:04.961 (179ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by header with value should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="33.351072485">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:04.961&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:12.853 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:12.853&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:20.912 (8.059s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:426 @ 04/04/23 18:07:20.912&#xA;STEP: routing requests to the canary upstream when header is set to &#39;DoCanary&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:451 @ 04/04/23 18:07:38.088&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:460 @ 04/04/23 18:07:38.092&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:469 @ 04/04/23 18:07:38.097&#xA;STEP: routing requests to the mainline upstream when header is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:478 @ 04/04/23 18:07:38.101&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:426 @ 04/04/23 18:07:38.105 (17.192s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:38.105&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:38.312 (208ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param keeps processing new ingresses even if one of the existing ingresses is misconfigured" classname="nginx-ingress-controller e2e suite" status="passed" time="50.940964633">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:38.313&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:45.57 (7.258s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:07:45.57&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:07:49.597 (4.027s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:07:49.597&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:08:17.835 (28.238s)&#xA;&gt; Enter [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:698 @ 04/04/23 18:08:17.835&#xA;&lt; Exit [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:698 @ 04/04/23 18:08:29.028 (11.193s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:29.028&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:29.254 (225ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if mainline ingress is created after the canary ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="33.290599437">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:29.254&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:37.146 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:08:37.146&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:08:45.193 (8.047s)&#xA;&gt; Enter [It] should route requests to the correct upstream if mainline ingress is created after the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:206 @ 04/04/23 18:08:45.193&#xA;STEP: routing requests destined for the mainline ingress to the mainelin upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:231 @ 04/04/23 18:09:02.324&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:240 @ 04/04/23 18:09:02.332&#xA;&lt; Exit [It] should route requests to the correct upstream if mainline ingress is created after the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:206 @ 04/04/23 18:09:02.337 (17.144s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:02.337&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:02.545 (208ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with snippet" classname="nginx-ingress-controller e2e suite" status="passed" time="21.322032369">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:02.545&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:09.432 (6.887s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:09:09.432&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:09:13.454 (4.022s)&#xA;&gt; Enter [It] should enable modsecurity with snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:91 @ 04/04/23 18:09:13.454&#xA;&lt; Exit [It] should enable modsecurity with snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:91 @ 04/04/23 18:09:23.682 (10.227s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:23.682&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:23.867 (185ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] settings-global-rate-limit generates correct NGINX configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="162.380955721">
+              <system-err>&gt; Enter [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:23.867&#xA;&lt; Exit [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:41.632 (2m17.765s)&#xA;&gt; Enter [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:34 @ 04/04/23 18:11:41.632&#xA;&lt; Exit [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:34 @ 04/04/23 18:11:45.686 (4.054s)&#xA;&gt; Enter [It] generates correct NGINX configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:38 @ 04/04/23 18:11:45.686&#xA;STEP: generating correct defaults - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:43 @ 04/04/23 18:11:52.711&#xA;STEP: applying customizations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:61 @ 04/04/23 18:11:55.865&#xA;&lt; Exit [It] generates correct NGINX configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:38 @ 04/04/23 18:12:06.074 (20.388s)&#xA;&gt; Enter [AfterEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:06.074&#xA;&lt; Exit [AfterEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:06.248 (175ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Load Balancer] EWMA does not fail requests" classname="nginx-ingress-controller e2e suite" status="passed" time="33.046314908">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:06.248&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:13.645 (7.397s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:34 @ 04/04/23 18:12:13.645&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:34 @ 04/04/23 18:12:24.689 (11.044s)&#xA;&gt; Enter [It] does not fail requests - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:42 @ 04/04/23 18:12:24.689&#xA;Apr  4 18:12:39.085: INFO: Request distribution: map[echo-7b6bf466cc-4gqhv:16 echo-7b6bf466cc-kbjqx:9 echo-7b6bf466cc-scqj9:5]&#xA;&lt; Exit [It] does not fail requests - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:42 @ 04/04/23 18:12:39.085 (14.396s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:39.085&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:39.295 (210ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should expose headers for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="22.277341561">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:39.295&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:47.18 (7.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:12:47.18&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:12:51.204 (4.024s)&#xA;&gt; Enter [It] should expose headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:153 @ 04/04/23 18:12:51.204&#xA;&lt; Exit [It] should expose headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:153 @ 04/04/23 18:13:01.392 (10.189s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:01.392&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:01.572 (180ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* canary affinity behavior always routes traffic to canary if first request was affinitized to canary (default behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="40.738608182">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:01.573&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:08.45 (6.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:13:08.45&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:13:16.493 (8.042s)&#xA;&gt; Enter [It] always routes traffic to canary if first request was affinitized to canary (default behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:943 @ 04/04/23 18:13:16.493&#xA;&lt; Exit [It] always routes traffic to canary if first request was affinitized to canary (default behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:943 @ 04/04/23 18:13:42.089 (25.596s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:42.089&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:42.311 (222ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should disable the log-format-escape-none" classname="nginx-ingress-controller e2e suite" status="passed" time="28.271527881">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:42.312&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:49.227 (6.915s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:13:49.227&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:14:00.268 (11.041s)&#xA;&gt; Enter [It] should disable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:71 @ 04/04/23 18:14:00.268&#xA;&lt; Exit [It] should disable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:71 @ 04/04/23 18:14:10.406 (10.138s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:10.406&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:10.583 (177ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to default" classname="nginx-ingress-controller e2e suite" status="passed" time="21.825938851">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:10.584&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:17.985 (7.402s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:14:17.985&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:14:22.015 (4.03s)&#xA;&gt; Enter [It] should set proxy_redirect to default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:52 @ 04/04/23 18:14:22.015&#xA;&lt; Exit [It] should set proxy_redirect to default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:52 @ 04/04/23 18:14:32.238 (10.222s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:32.238&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:32.409 (172ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keepalive connection to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="29.30727806">
+              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:32.41&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:40.329 (7.92s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:14:40.329&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:14:51.355 (11.026s)&#xA;&gt; Enter [It] should set keepalive connection to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:59 @ 04/04/23 18:14:51.356&#xA;&lt; Exit [It] should set keepalive connection to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:59 @ 04/04/23 18:15:01.513 (10.157s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:01.513&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:01.717 (204ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to https:// and use proxy_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="21.399584297">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:01.717&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:08.628 (6.911s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:15:08.628&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:15:12.654 (4.026s)&#xA;&gt; Enter [It] should set backend protocol to https:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:34 @ 04/04/23 18:15:12.654&#xA;&lt; Exit [It] should set backend protocol to https:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:34 @ 04/04/23 18:15:22.863 (10.21s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:22.863&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:23.117 (253ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by header with no value should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="29.309952801">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:23.117&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:31.017 (7.9s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:15:31.017&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:15:35.052 (4.035s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:372 @ 04/04/23 18:15:35.052&#xA;STEP: routing requests to the canary upstream when header is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:395 @ 04/04/23 18:15:52.235&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:404 @ 04/04/23 18:15:52.237&#xA;STEP: routing requests to the mainline upstream when header is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:414 @ 04/04/23 18:15:52.239&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:372 @ 04/04/23 18:15:52.24 (17.188s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:52.24&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:52.427 (187ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should exists opentracing_location_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="29.742956364">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:52.428&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:59.303 (6.876s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:15:59.303&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:16:03.326 (4.022s)&#xA;&gt; Enter [It] should exists opentracing_location_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:145 @ 04/04/23 18:16:03.326&#xA;&lt; Exit [It] should exists opentracing_location_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:145 @ 04/04/23 18:16:20.959 (17.634s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:20.959&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:22.171 (1.211s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:16:22.171&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:16:22.171 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] limit-rate Check limit-rate annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="27.8652561">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:22.172&#xA;&lt; Exit [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:31.372 (9.2s)&#xA;&gt; Enter [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:33 @ 04/04/23 18:16:31.372&#xA;&lt; Exit [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:33 @ 04/04/23 18:16:35.41 (4.038s)&#xA;&gt; Enter [It] Check limit-rate annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:37 @ 04/04/23 18:16:35.41&#xA;&lt; Exit [It] Check limit-rate annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:37 @ 04/04/23 18:16:49.822 (14.412s)&#xA;&gt; Enter [AfterEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:49.822&#xA;&lt; Exit [AfterEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:50.037 (215ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] configmap stream-snippet should add value of stream-snippet via config map to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="34.311850272">
+              <system-err>&gt; Enter [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:50.037&#xA;&lt; Exit [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:57.908 (7.87s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:38 @ 04/04/23 18:16:57.908&#xA;&lt; Exit [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:38 @ 04/04/23 18:17:01.931 (4.024s)&#xA;&gt; Enter [It] should add value of stream-snippet via config map to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:42 @ 04/04/23 18:17:01.931&#xA;&lt; Exit [It] should add value of stream-snippet via config map to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:42 @ 04/04/23 18:17:24.158 (22.227s)&#xA;&gt; Enter [AfterEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:24.158&#xA;&lt; Exit [AfterEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:24.349 (191ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] upstream-hash-by-* should connect to the same pod" classname="nginx-ingress-controller e2e suite" status="passed" time="45.553942925">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:24.35&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:31.239 (6.889s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 04/04/23 18:17:31.239&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 04/04/23 18:17:39.264 (8.025s)&#xA;&gt; Enter [It] should connect to the same pod - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:83 @ 04/04/23 18:17:39.264&#xA;&lt; Exit [It] should connect to the same pod - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:83 @ 04/04/23 18:18:09.666 (30.402s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:09.666&#xA;&lt; Exit [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:09.903 (237ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is set with HTTP/2" classname="nginx-ingress-controller e2e suite" status="passed" time="31.415945068">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:09.904&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:16.786 (6.882s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:18:16.786&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:18:20.804 (4.018s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:18:20.804&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:18:35.029 (14.226s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is set with HTTP/2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:609 @ 04/04/23 18:18:35.029&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is set with HTTP/2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:609 @ 04/04/23 18:18:41.107 (6.078s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:41.107&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:41.32 (212ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret" classname="nginx-ingress-controller e2e suite" status="passed" time="22.937247348">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:41.32&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:49.195 (7.875s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:18:49.195&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:18:53.217 (4.022s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:37 @ 04/04/23 18:18:53.217&#xA;&lt; Exit [It] should set valid proxy-ssl-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:37 @ 04/04/23 18:19:04.077 (10.86s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:04.077&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:04.257 (181ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES" classname="nginx-ingress-controller e2e suite" status="passed" time="23.410135069">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:04.258&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:12.153 (7.895s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:19:12.153&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:19:16.174 (4.021s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:94 @ 04/04/23 18:19:16.174&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:94 @ 04/04/23 18:19:27.319 (11.146s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:27.32&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:27.668 (348ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to &#39;&#39; and use fastcgi_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="21.643801846">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:27.668&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:34.827 (7.159s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:19:34.827&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:19:38.85 (4.023s)&#xA;&gt; Enter [It] should set backend protocol to &#39;&#39; and use fastcgi_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:94 @ 04/04/23 18:19:38.85&#xA;&lt; Exit [It] should set backend protocol to &#39;&#39; and use fastcgi_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:94 @ 04/04/23 18:19:49.066 (10.216s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:49.066&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:49.312 (246ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName should return status 502 for service type=ExternalName with an invalid host" classname="nginx-ingress-controller e2e suite" status="passed" time="24.223123224">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:49.312&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:57.192 (7.879s)&#xA;&gt; Enter [It] should return status 502 for service type=ExternalName with an invalid host - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:153 @ 04/04/23 18:19:57.192&#xA;&lt; Exit [It] should return status 502 for service type=ExternalName with an invalid host - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:153 @ 04/04/23 18:20:12.695 (15.504s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:12.695&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:13.536 (840ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should set request-redirect when global-auth-request-redirect is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="56.08885726">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:13.536&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:20.628 (7.092s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:20:20.628&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:20:28.704 (8.077s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:20:28.704&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:20:28.704&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:20:38.882&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:20:49.057&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:20:59.272 (30.567s)&#xA;&gt; Enter [It] should set request-redirect when global-auth-request-redirect is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:237 @ 04/04/23 18:20:59.272&#xA;STEP: Adding a global-auth-request-redirect to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:242 @ 04/04/23 18:20:59.272&#xA;&lt; Exit [It] should set request-redirect when global-auth-request-redirect is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:237 @ 04/04/23 18:21:09.45 (10.178s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:09.45&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:09.625 (175ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] service-upstream when enabling in the configmap and disabling in the annotations should not use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="28.500641833">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:09.625&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:16.495 (6.87s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:21:16.495&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:21:20.516 (4.021s)&#xA;&gt; Enter [It] should not use the Service Cluster IP and Port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:99 @ 04/04/23 18:21:20.516&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:113 @ 04/04/23 18:21:37.731&#xA;STEP: checking if the Service Cluster IP and Port are not used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:120 @ 04/04/23 18:21:37.737&#xA;&lt; Exit [It] should not use the Service Cluster IP and Port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:99 @ 04/04/23 18:21:37.9 (17.384s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:37.9&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:38.126 (226ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] server-alias should return status code 200 for host &#39;foo&#39; and &#39;bar&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="22.287533212">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:38.126&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:46.024 (7.897s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:21:46.024&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:21:50.044 (4.02s)&#xA;&gt; Enter [It] should return status code 200 for host &#39;foo&#39; and &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:62 @ 04/04/23 18:21:50.044&#xA;&lt; Exit [It] should return status code 200 for host &#39;foo&#39; and &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:62 @ 04/04/23 18:22:00.233 (10.189s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:00.233&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:00.414 (181ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should not configure log-format escape by default" classname="nginx-ingress-controller e2e suite" status="passed" time="21.319101474">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:00.414&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:07.306 (6.892s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:22:07.306&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:22:18.341 (11.035s)&#xA;&gt; Enter [It] should not configure log-format escape by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:40 @ 04/04/23 18:22:18.341&#xA;&lt; Exit [It] should not configure log-format escape by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:40 @ 04/04/23 18:22:21.446 (3.105s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:21.446&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:21.733 (287ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if the mainline ingress is modified" classname="nginx-ingress-controller e2e suite" status="passed" time="168.05341063">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:21.733&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:39.876 (2m18.143s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:24:39.876&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:24:47.956 (8.08s)&#xA;&gt; Enter [It] should route requests to the correct upstream if the mainline ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:250 @ 04/04/23 18:24:47.956&#xA;STEP: routing requests destined fro the mainline ingress to the mainline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:288 @ 04/04/23 18:25:09.571&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:297 @ 04/04/23 18:25:09.578&#xA;&lt; Exit [It] should route requests to the correct upstream if the mainline ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:250 @ 04/04/23 18:25:09.586 (21.629s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:09.586&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:09.787 (201ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] upstream-hash-by-* should connect to the same subset of pods" classname="nginx-ingress-controller e2e suite" status="passed" time="45.556284939">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:09.787&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:16.668 (6.881s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 04/04/23 18:25:16.668&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 04/04/23 18:25:24.696 (8.028s)&#xA;&gt; Enter [It] should connect to the same subset of pods - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:92 @ 04/04/23 18:25:24.696&#xA;&lt; Exit [It] should connect to the same subset of pods - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:92 @ 04/04/23 18:25:55.101 (30.405s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:55.101&#xA;&lt; Exit [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:55.343 (242ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [SSL] redirect to HTTPS should redirect from HTTP to HTTPS when secret is missing" classname="nginx-ingress-controller e2e suite" status="passed" time="24.373667503">
+              <system-err>&gt; Enter [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:55.344&#xA;&lt; Exit [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:02.277 (6.934s)&#xA;&gt; Enter [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:32 @ 04/04/23 18:26:02.277&#xA;&lt; Exit [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:32 @ 04/04/23 18:26:06.299 (4.021s)&#xA;&gt; Enter [It] should redirect from HTTP to HTTPS when secret is missing - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:36 @ 04/04/23 18:26:06.299&#xA;&lt; Exit [It] should redirect from HTTP to HTTPS when secret is missing - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:36 @ 04/04/23 18:26:19.516 (13.217s)&#xA;&gt; Enter [AfterEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:19.516&#xA;&lt; Exit [AfterEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:19.717 (201ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] configmap server-snippet should add global server-snippet and drop annotations per admin config" classname="nginx-ingress-controller e2e suite" status="passed" time="43.438812584">
+              <system-err>&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:19.718&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:26.668 (6.951s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 04/04/23 18:26:26.668&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 04/04/23 18:26:30.695 (4.027s)&#xA;&gt; Enter [It] should add global server-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:92 @ 04/04/23 18:26:30.695&#xA;&lt; Exit [It] should add global server-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:92 @ 04/04/23 18:27:02.982 (32.287s)&#xA;&gt; Enter [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:02.982&#xA;&lt; Exit [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:03.156 (175ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should set cookie with expires" classname="nginx-ingress-controller e2e suite" status="passed" time="22.389477827">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:03.157&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:11.021 (7.864s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:27:11.021&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:27:15.049 (4.028s)&#xA;&gt; Enter [It] should set cookie with expires - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:194 @ 04/04/23 18:27:15.049&#xA;&lt; Exit [It] should set cookie with expires - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:194 @ 04/04/23 18:27:25.315 (10.266s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:25.315&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:25.546 (231ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow - matching origin with wildcard origin (2 subdomains)" classname="nginx-ingress-controller e2e suite" status="passed" time="18.14890018">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:25.547&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:32.464 (6.917s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:27:32.464&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:27:36.484 (4.02s)&#xA;&gt; Enter [It] should allow - matching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:425 @ 04/04/23 18:27:36.484&#xA;&lt; Exit [It] should allow - matching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:425 @ 04/04/23 18:27:43.52 (7.037s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:43.52&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:43.695 (175ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] enable-multi-accept should be enabled when set to true" classname="nginx-ingress-controller e2e suite" status="passed" time="17.346789678">
+              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:43.696&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:50.592 (6.896s)&#xA;&gt; Enter [It] should be enabled when set to true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:39 @ 04/04/23 18:27:50.592&#xA;&lt; Exit [It] should be enabled when set to true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:39 @ 04/04/23 18:28:00.821 (10.229s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:00.821&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:01.043 (221ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place" classname="nginx-ingress-controller e2e suite" status="passed" time="30.46844143">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:01.043&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:08.918 (7.875s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:28:08.918&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:28:12.942 (4.024s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:102 @ 04/04/23 18:28:12.942&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:102 @ 04/04/23 18:28:31.293 (18.352s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:31.293&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:31.512 (218ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="49.899045109">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:31.512&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:38.394 (6.882s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:28:38.394&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:28:46.454 (8.06s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:28:46.454&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:28:46.454&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:28:56.618&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:29:06.764&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:29:16.991 (30.537s)&#xA;&gt; Enter [It] should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:126 @ 04/04/23 18:29:16.991&#xA;STEP: Adding an ingress rule for /bar with annotation enable-global-auth = false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:128 @ 04/04/23 18:29:16.991&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:140 @ 04/04/23 18:29:21.174&#xA;STEP: Sending a request to whitelisted service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:147 @ 04/04/23 18:29:21.184&#xA;&lt; Exit [It] should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:126 @ 04/04/23 18:29:21.191 (4.2s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:21.191&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:21.411 (220ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic configuration when only backends change handles an annotation change" classname="nginx-ingress-controller e2e suite" status="passed" time="28.208007184">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:21.411&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:28.853 (7.441s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:29:28.853&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:29:43.082 (14.23s)&#xA;&gt; Enter [It] handles an annotation change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:171 @ 04/04/23 18:29:43.082&#xA;&lt; Exit [It] handles an annotation change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:171 @ 04/04/23 18:29:49.435 (6.352s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:49.435&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:49.619 (185ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] server-tokens should exists Server header in the response when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="28.239544805">
+              <system-err>&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:49.62&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:56.496 (6.875s)&#xA;&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 04/04/23 18:29:56.496&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 04/04/23 18:30:00.515 (4.019s)&#xA;&gt; Enter [It] should exists Server header in the response when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:50 @ 04/04/23 18:30:00.515&#xA;&lt; Exit [It] should exists Server header in the response when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:50 @ 04/04/23 18:30:17.68 (17.166s)&#xA;&gt; Enter [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:17.68&#xA;&lt; Exit [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:17.86 (179ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName works with external name set to incomplete fqdn" classname="nginx-ingress-controller e2e suite" status="passed" time="21.343180997">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:17.86&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:24.767 (6.907s)&#xA;&gt; Enter [It] works with external name set to incomplete fqdn - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:62 @ 04/04/23 18:30:24.767&#xA;&lt; Exit [It] works with external name set to incomplete fqdn - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:62 @ 04/04/23 18:30:38.985 (14.218s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:38.985&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:39.203 (218ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Debug CLI should list the backend servers" classname="nginx-ingress-controller e2e suite" status="passed" time="22.378504517">
+              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:39.204&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:47.098 (7.895s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:30:47.098&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:30:51.122 (4.023s)&#xA;&gt; Enter [It] should list the backend servers - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:37 @ 04/04/23 18:30:51.122&#xA;&lt; Exit [It] should list the backend servers - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:37 @ 04/04/23 18:31:01.391 (10.269s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:01.391&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:01.582 (191ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* does not crash when canary ingress has multiple paths to the same non-matching backend" classname="nginx-ingress-controller e2e suite" status="passed" time="32.459393771">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:01.582&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:08.498 (6.915s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:31:08.498&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:31:16.564 (8.066s)&#xA;&gt; Enter [It] does not crash when canary ingress has multiple paths to the same non-matching backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:915 @ 04/04/23 18:31:16.564&#xA;&lt; Exit [It] does not crash when canary ingress has multiple paths to the same non-matching backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:915 @ 04/04/23 18:31:33.8 (17.236s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:33.8&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:34.042 (242ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] service-upstream when using the default value (false) and enabling in the annotations should use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="21.449933338">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:34.042&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:40.946 (6.904s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:31:40.946&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:31:44.981 (4.035s)&#xA;&gt; Enter [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:41 @ 04/04/23 18:31:44.981&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:53 @ 04/04/23 18:31:55.094&#xA;STEP: checking if the Service Cluster IP and Port are used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:60 @ 04/04/23 18:31:55.098&#xA;&lt; Exit [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:41 @ 04/04/23 18:31:55.252 (10.271s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:55.252&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:55.492 (240ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity when enable-owasp-modsecurity-crs is set to true" classname="nginx-ingress-controller e2e suite" status="passed" time="40.260077601">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:55.493&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:02.366 (6.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:32:02.366&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:32:06.394 (4.028s)&#xA;&gt; Enter [It] should enable modsecurity when enable-owasp-modsecurity-crs is set to true - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:225 @ 04/04/23 18:32:06.394&#xA;&lt; Exit [It] should enable modsecurity when enable-owasp-modsecurity-crs is set to true - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:225 @ 04/04/23 18:32:35.569 (29.175s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:35.569&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:35.753 (184ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Security] Pod Security Policies with volumes should be running with a Pod Security Policy" classname="nginx-ingress-controller e2e suite" status="skipped" time="7.104968031">
+              <skipped message="skipped - PSP not supported in this version"></skipped>
+              <system-err>&gt; Enter [BeforeEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:35.753&#xA;&lt; Exit [BeforeEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:42.66 (6.907s)&#xA;&gt; Enter [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:40 @ 04/04/23 18:32:42.66&#xA;[SKIPPED] PSP not supported in this version&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:53 @ 04/04/23 18:32:42.661&#xA;&lt; Exit [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:40 @ 04/04/23 18:32:42.661 (1ms)&#xA;&gt; Enter [AfterEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:42.661&#xA;&lt; Exit [AfterEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:42.858 (197ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] permanent-redirect permanent-redirect-code should respond with a custom redirect code" classname="nginx-ingress-controller e2e suite" status="passed" time="17.246524814">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:42.858&#xA;&lt; Exit [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:49.722 (6.864s)&#xA;&gt; Enter [It] should respond with a custom redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:61 @ 04/04/23 18:32:49.722&#xA;STEP: setting permanent-redirect-code annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:62 @ 04/04/23 18:32:49.722&#xA;STEP: sending request to redirected URL path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:82 @ 04/04/23 18:32:59.899&#xA;&lt; Exit [It] should respond with a custom redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:61 @ 04/04/23 18:32:59.901 (10.18s)&#xA;&gt; Enter [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:59.901&#xA;&lt; Exit [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:00.105 (203ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] hash size Check proxy header hash size should set proxy-headers-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="29.32779995">
+              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:00.105&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:07.991 (7.886s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:33:07.991&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:33:19.06 (11.069s)&#xA;&gt; Enter [It] should set proxy-headers-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:60 @ 04/04/23 18:33:19.06&#xA;&lt; Exit [It] should set proxy-headers-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:60 @ 04/04/23 18:33:29.206 (10.146s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:29.206&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:29.433 (227ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow correct origins - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="20.137438453">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:29.433&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:36.312 (6.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:33:36.312&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:33:42.335 (6.023s)&#xA;&gt; Enter [It] should allow correct origins - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:216 @ 04/04/23 18:33:42.335&#xA;&lt; Exit [It] should allow correct origins - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:216 @ 04/04/23 18:33:49.381 (7.046s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:49.381&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:49.571 (190ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should disable default modsecurity conf setting when modsecurity-snippet is specified" classname="nginx-ingress-controller e2e suite" status="passed" time="33.33883845">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:49.571&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:56.527 (6.956s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:33:56.527&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:34:00.557 (4.03s)&#xA;&gt; Enter [It] should disable default modsecurity conf setting when modsecurity-snippet is specified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:347 @ 04/04/23 18:34:00.557&#xA;&lt; Exit [It] should disable default modsecurity conf setting when modsecurity-snippet is specified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:347 @ 04/04/23 18:34:22.694 (22.137s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:22.694&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:22.91 (216ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [TCP] tcp-services should expose a TCP service" classname="nginx-ingress-controller e2e suite" status="passed" time="14.259355858">
+              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:22.91&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:29.807 (6.897s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:34:29.807&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:34:29.814 (6ms)&#xA;&gt; Enter [It] should expose a TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:46 @ 04/04/23 18:34:29.814&#xA;&lt; Exit [It] should expose a TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:46 @ 04/04/23 18:34:36.97 (7.156s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:36.97&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:37.169 (200ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity through the config map" classname="nginx-ingress-controller e2e suite" status="passed" time="41.348214262">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:37.17&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:45.073 (7.903s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:34:45.073&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:34:49.091 (4.018s)&#xA;&gt; Enter [It] should enable modsecurity through the config map - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:264 @ 04/04/23 18:34:49.091&#xA;&lt; Exit [It] should enable modsecurity through the config map - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:264 @ 04/04/23 18:35:18.316 (29.225s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:18.316&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:18.518 (202ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] reuse-port reuse port should be enabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="21.391567166">
+              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:18.518&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:25.408 (6.889s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:35:25.408&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:35:36.46 (11.052s)&#xA;&gt; Enter [It] reuse port should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:38 @ 04/04/23 18:35:36.46&#xA;&lt; Exit [It] reuse port should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:38 @ 04/04/23 18:35:39.652 (3.192s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:39.652&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:39.91 (258ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class Without IngressClass Cluster scoped Permission should watch Ingress with correct annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="29.330715429">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:39.91&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:46.843 (6.933s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:35:46.843&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:35:50.861 (4.018s)&#xA;&gt; Enter [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 04/04/23 18:35:50.861&#xA;&lt; Exit [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 04/04/23 18:35:58.882 (8.021s)&#xA;&gt; Enter [It] should watch Ingress with correct annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:631 @ 04/04/23 18:35:58.882&#xA;&lt; Exit [It] should watch Ingress with correct annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:631 @ 04/04/23 18:36:09.027 (10.145s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:09.027&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:09.241 (213ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Ingress] [PathType] prefix checks should return 404 when prefix /aaa does not match request /aaaccc" classname="nginx-ingress-controller e2e suite" status="passed" time="22.814127467">
+              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:09.241&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:17.143 (7.901s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:31 @ 04/04/23 18:36:17.143&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:31 @ 04/04/23 18:36:21.166 (4.023s)&#xA;&gt; Enter [It] should return 404 when prefix /aaa does not match request /aaaccc - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:35 @ 04/04/23 18:36:21.166&#xA;&lt; Exit [It] should return 404 when prefix /aaa does not match request /aaaccc - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:35 @ 04/04/23 18:36:31.412 (10.246s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:31.412&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:32.055 (644ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] mirror-* should set mirror-target to https://test.env.com/$request_uri" classname="nginx-ingress-controller e2e suite" status="passed" time="22.284646292">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:32.057&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:39.923 (7.865s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:36:39.923&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:36:43.949 (4.026s)&#xA;&gt; Enter [It] should set mirror-target to https://test.env.com/$request_uri - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:51 @ 04/04/23 18:36:43.949&#xA;&lt; Exit [It] should set mirror-target to https://test.env.com/$request_uri - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:51 @ 04/04/23 18:36:54.141 (10.192s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:54.141&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:54.342 (200ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2" classname="nginx-ingress-controller e2e suite" status="passed" time="23.733756697">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:54.342&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:01.212 (6.87s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:37:01.212&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:37:07.231 (6.019s)&#xA;&gt; Enter [It] should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:84 @ 04/04/23 18:37:07.231&#xA;&lt; Exit [It] should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:84 @ 04/04/23 18:37:17.855 (10.625s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:17.855&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:18.076 (221ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should work with use-regex annotation and session-cookie-path" classname="nginx-ingress-controller e2e suite" status="passed" time="22.376606309">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:18.076&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:25.984 (7.907s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:37:25.984&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:37:30.003 (4.019s)&#xA;&gt; Enter [It] should work with use-regex annotation and session-cookie-path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:270 @ 04/04/23 18:37:30.003&#xA;&lt; Exit [It] should work with use-regex annotation and session-cookie-path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:270 @ 04/04/23 18:37:40.203 (10.201s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:40.203&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:40.453 (250ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] ssl-ciphers Add ssl ciphers" classname="nginx-ingress-controller e2e suite" status="passed" time="17.271588421">
+              <system-err>&gt; Enter [BeforeEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:40.453&#xA;&lt; Exit [BeforeEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:47.317 (6.864s)&#xA;&gt; Enter [It] Add ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_ciphers.go:31 @ 04/04/23 18:37:47.317&#xA;&lt; Exit [It] Add ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_ciphers.go:31 @ 04/04/23 18:37:57.514 (10.197s)&#xA;&gt; Enter [AfterEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:57.514&#xA;&lt; Exit [AfterEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:57.725 (211ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 200 when authentication is configured and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="23.036361577">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:57.725&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:04.608 (6.883s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:38:04.608&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:38:08.636 (4.028s)&#xA;&gt; Enter [It] should return status code 200 when authentication is configured and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:172 @ 04/04/23 18:38:08.636&#xA;&lt; Exit [It] should return status code 200 when authentication is configured and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:172 @ 04/04/23 18:38:20.58 (11.945s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:20.58&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:20.761 (181ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to hello.com goodbye.com" classname="nginx-ingress-controller e2e suite" status="passed" time="21.346400057">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:20.762&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:27.757 (6.995s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:38:27.757&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:38:31.784 (4.027s)&#xA;&gt; Enter [It] should set proxy_redirect to hello.com goodbye.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:68 @ 04/04/23 18:38:31.784&#xA;&lt; Exit [It] should set proxy_redirect to hello.com goodbye.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:68 @ 04/04/23 18:38:41.901 (10.118s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:41.901&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:42.108 (207ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] access-log access-log-path use the default configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="11.334209829">
+              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:42.108&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:50.04 (7.932s)&#xA;&gt; Enter [It] use the default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:32 @ 04/04/23 18:38:50.04&#xA;&lt; Exit [It] use the default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:32 @ 04/04/23 18:38:53.238 (3.198s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:53.238&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:53.443 (205ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should not exists opentracing directive" classname="nginx-ingress-controller e2e suite" status="passed" time="28.224804352">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:53.443&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:00.319 (6.876s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:39:00.319&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:39:04.344 (4.026s)&#xA;&gt; Enter [It] should not exists opentracing directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:58 @ 04/04/23 18:39:04.344&#xA;&lt; Exit [It] should not exists opentracing directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:58 @ 04/04/23 18:39:21.438 (17.094s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:21.438&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:21.668 (229ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:39:21.668&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:39:21.668 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-catch-all should delete Ingress updated to catch-all" classname="nginx-ingress-controller e2e suite" status="passed" time="33.741887473">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:21.67&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:29.901 (8.232s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:39:29.901&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:39:40.966 (11.065s)&#xA;&gt; Enter [It] should delete Ingress updated to catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:81 @ 04/04/23 18:39:40.966&#xA;&lt; Exit [It] should delete Ingress updated to catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:81 @ 04/04/23 18:39:55.23 (14.264s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:55.23&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:55.411 (181ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to mainline if canary weight is 0" classname="nginx-ingress-controller e2e suite" status="passed" time="36.538414445">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:55.412&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:03.291 (7.88s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:40:03.291&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:40:11.34 (8.049s)&#xA;&gt; Enter [It] should route requests only to mainline if canary weight is 0 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:705 @ 04/04/23 18:40:11.34&#xA;&lt; Exit [It] should route requests only to mainline if canary weight is 0 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:705 @ 04/04/23 18:40:31.758 (20.417s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:31.758&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:31.95 (192ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] single ingress - multiple hosts should set the correct $service_name NGINX variable" classname="nginx-ingress-controller e2e suite" status="passed" time="29.458771949">
+              <system-err>&gt; Enter [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:31.951&#xA;&lt; Exit [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:39.859 (7.909s)&#xA;&gt; Enter [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:33 @ 04/04/23 18:40:39.859&#xA;&lt; Exit [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:33 @ 04/04/23 18:40:47.913 (8.054s)&#xA;&gt; Enter [It] should set the correct $service_name NGINX variable - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:38 @ 04/04/23 18:40:47.913&#xA;&lt; Exit [It] should set the correct $service_name NGINX variable - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:38 @ 04/04/23 18:41:01.214 (13.301s)&#xA;&gt; Enter [AfterEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:01.214&#xA;&lt; Exit [AfterEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:01.409 (195ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With watch-ingress-without-class flag should watch Ingress with no class and ignore ingress with a different class" classname="nginx-ingress-controller e2e suite" status="passed" time="45.14197691">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.256&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:27.796 (8.54s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:04:27.796&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:04:39.83 (12.034s)&#xA;&gt; Enter [BeforeEach] With watch-ingress-without-class flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:462 @ 04/04/23 18:04:39.83&#xA;&lt; Exit [BeforeEach] With watch-ingress-without-class flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:462 @ 04/04/23 18:04:46.871 (7.041s)&#xA;&gt; Enter [It] should watch Ingress with no class and ignore ingress with a different class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:482 @ 04/04/23 18:04:46.871&#xA;&lt; Exit [It] should watch Ingress with no class and ignore ingress with a different class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:482 @ 04/04/23 18:05:04.134 (17.262s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:04.134&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:04.398 (264ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] service-upstream when enabling in the configmap should use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="28.567748572">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:04.398&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:11.399 (7.001s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:05:11.399&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:05:15.426 (4.027s)&#xA;&gt; Enter [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:70 @ 04/04/23 18:05:15.426&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:82 @ 04/04/23 18:05:32.603&#xA;STEP: checking if the Service Cluster IP and Port are used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:89 @ 04/04/23 18:05:32.612&#xA;&lt; Exit [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:70 @ 04/04/23 18:05:32.783 (17.357s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:32.783&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:32.966 (182ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-service-external-name should ignore services of external-name type" classname="nginx-ingress-controller e2e suite" status="passed" time="40.523434341">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:32.966&#xA;&lt; Exit [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:40.858 (7.892s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:38 @ 04/04/23 18:05:40.858&#xA;&lt; Exit [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:38 @ 04/04/23 18:05:52.924 (12.066s)&#xA;&gt; Enter [It] should ignore services of external-name type - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:52 @ 04/04/23 18:05:52.924&#xA;&lt; Exit [It] should ignore services of external-name type - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:52 @ 04/04/23 18:06:13.273 (20.349s)&#xA;&gt; Enter [AfterEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:13.273&#xA;&lt; Exit [AfterEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:13.49 (217ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] satisfy should configure satisfy directive correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="28.489806635">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:13.49&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:20.419 (6.929s)&#xA;&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 04/04/23 18:06:20.419&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 04/04/23 18:06:24.447 (4.029s)&#xA;&gt; Enter [It] should configure satisfy directive correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:42 @ 04/04/23 18:06:24.447&#xA;&lt; Exit [It] should configure satisfy directive correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:42 @ 04/04/23 18:06:41.792 (17.345s)&#xA;&gt; Enter [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:41.792&#xA;&lt; Exit [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:41.98 (187ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keep alive connection timeout to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="29.295943095">
+              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:41.98&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:49.854 (7.874s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:06:49.854&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:07:00.907 (11.052s)&#xA;&gt; Enter [It] should set keep alive connection timeout to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:68 @ 04/04/23 18:07:00.907&#xA;&lt; Exit [It] should set keep alive connection timeout to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:68 @ 04/04/23 18:07:11.072 (10.166s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:11.073&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:11.276 (203ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] hash size Check the map hash size should set vmap-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="27.335942615">
+              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:11.277&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:19.172 (7.895s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:07:19.172&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:07:28.212 (9.04s)&#xA;&gt; Enter [It] should set vmap-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:100 @ 04/04/23 18:07:28.212&#xA;&lt; Exit [It] should set vmap-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:100 @ 04/04/23 18:07:38.38 (10.168s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:38.38&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:38.612 (232ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Load Balancer] load-balance should apply the configmap load-balance setting" classname="nginx-ingress-controller e2e suite" status="passed" time="28.614638536">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:38.613&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:45.664 (7.051s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:31 @ 04/04/23 18:07:45.664&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:31 @ 04/04/23 18:07:49.689 (4.025s)&#xA;&gt; Enter [It] should apply the configmap load-balance setting - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:35 @ 04/04/23 18:07:49.689&#xA;&lt; Exit [It] should apply the configmap load-balance setting - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:35 @ 04/04/23 18:08:07.048 (17.358s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:07.048&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:07.227 (180ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - GRPC authorization metadata should be overwritten by external auth response headers" classname="nginx-ingress-controller e2e suite" status="passed" time="157.156535928">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:07.228&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:25.86 (2m18.633s)&#xA;&gt; Enter [It] authorization metadata should be overwritten by external auth response headers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:126 @ 04/04/23 18:10:25.86&#xA;&lt; Exit [It] authorization metadata should be overwritten by external auth response headers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:126 @ 04/04/23 18:10:44.166 (18.305s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:44.166&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:44.384 (218ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName should update the external name after a service update" classname="nginx-ingress-controller e2e suite" status="passed" time="22.917038202">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:44.385&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:51.27 (6.885s)&#xA;&gt; Enter [It] should update the external name after a service update - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:248 @ 04/04/23 18:10:51.27&#xA;STEP: checking the service is updated to use eu.httpbin.org - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:304 @ 04/04/23 18:11:06.958&#xA;&lt; Exit [It] should update the external name after a service update - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:248 @ 04/04/23 18:11:07.097 (15.827s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:07.097&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:07.302 (205ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on" classname="nginx-ingress-controller e2e suite" status="passed" time="23.058976901">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:07.302&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:15.212 (7.91s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:11:15.212&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:11:19.237 (4.025s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:64 @ 04/04/23 18:11:19.237&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:64 @ 04/04/23 18:11:30.15 (10.913s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:30.15&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:30.361 (211ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] enable-access-log enable-rewrite-log set rewrite_log on" classname="nginx-ingress-controller e2e suite" status="passed" time="19.342099122">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:30.361&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:37.259 (6.898s)&#xA;&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 04/04/23 18:11:37.259&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 04/04/23 18:11:39.287 (2.028s)&#xA;&gt; Enter [It] set rewrite_log on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:49 @ 04/04/23 18:11:39.287&#xA;&lt; Exit [It] set rewrite_log on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:49 @ 04/04/23 18:11:49.482 (10.195s)&#xA;&gt; Enter [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:49.482&#xA;&lt; Exit [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:49.703 (222ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] reuse-port reuse port should be enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="28.444903559">
+              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:49.704&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:56.672 (6.968s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:11:56.672&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:12:07.713 (11.041s)&#xA;&gt; Enter [It] reuse port should be enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:52 @ 04/04/23 18:12:07.713&#xA;&lt; Exit [It] reuse port should be enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:52 @ 04/04/23 18:12:17.909 (10.196s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:17.909&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:18.149 (239ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by header with value and cookie should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="33.34510439">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:18.149&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:26.102 (7.953s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:12:26.102&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:12:34.143 (8.041s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:604 @ 04/04/23 18:12:34.143&#xA;STEP: routing requests to the canary upstream when header value does not match and cookie is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:630 @ 04/04/23 18:12:51.301&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:604 @ 04/04/23 18:12:51.309 (17.166s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:51.309&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:51.494 (185ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] server-snippet drops server snippet if disabled by the administrator" classname="nginx-ingress-controller e2e suite" status="passed" time="40.379085957">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:51.494&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:58.391 (6.897s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 04/04/23 18:12:58.391&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 04/04/23 18:13:02.411 (4.02s)&#xA;&gt; Enter [It] drops server snippet if disabled by the administrator - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:61 @ 04/04/23 18:13:02.411&#xA;&lt; Exit [It] drops server snippet if disabled by the administrator - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:61 @ 04/04/23 18:13:31.674 (29.262s)&#xA;&gt; Enter [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:31.674&#xA;&lt; Exit [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:31.873 (199ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] access-log stream-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="17.302948605">
+              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:31.874&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:38.753 (6.879s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:67 @ 04/04/23 18:13:38.753&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:67 @ 04/04/23 18:13:48.95 (10.197s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:48.95&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:49.177 (226ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Security] Pod Security Policies should be running with a Pod Security Policy" classname="nginx-ingress-controller e2e suite" status="skipped" time="8.138943568">
+              <skipped message="skipped - PSP not supported in this version"></skipped>
+              <system-err>&gt; Enter [BeforeEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:49.177&#xA;&lt; Exit [BeforeEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:57.081 (7.904s)&#xA;&gt; Enter [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:44 @ 04/04/23 18:13:57.081&#xA;[SKIPPED] PSP not supported in this version&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:56 @ 04/04/23 18:13:57.084&#xA;&lt; Exit [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:44 @ 04/04/23 18:13:57.084 (2ms)&#xA;&gt; Enter [AfterEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:57.084&#xA;&lt; Exit [AfterEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:57.316 (232ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with snippet and block requests" classname="nginx-ingress-controller e2e suite" status="passed" time="33.391362002">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:57.316&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:04.203 (6.887s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:14:04.203&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:14:08.231 (4.028s)&#xA;&gt; Enter [It] should enable modsecurity with snippet and block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:153 @ 04/04/23 18:14:08.231&#xA;&lt; Exit [It] should enable modsecurity with snippet and block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:153 @ 04/04/23 18:14:30.484 (22.253s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:30.484&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:30.708 (223ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-sync-events should not create sync events" classname="nginx-ingress-controller e2e suite" status="passed" time="30.323049827">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:30.708&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:37.628 (6.92s)&#xA;&gt; Enter [It] should not create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:80 @ 04/04/23 18:14:37.628&#xA;&lt; Exit [It] should not create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:80 @ 04/04/23 18:15:00.832 (23.203s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:00.832&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:01.031 (199ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should validate auth-tls-verify-client" classname="nginx-ingress-controller e2e suite" status="passed" time="26.051870766">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:01.031&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:07.953 (6.922s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:15:07.953&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:15:11.978 (4.025s)&#xA;&gt; Enter [It] should validate auth-tls-verify-client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:206 @ 04/04/23 18:15:11.978&#xA;&lt; Exit [It] should validate auth-tls-verify-client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:206 @ 04/04/23 18:15:26.888 (14.91s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:26.888&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:27.083 (195ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should enable opentracing using zipkin" classname="nginx-ingress-controller e2e suite" status="passed" time="32.217906581">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:27.083&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:34.978 (7.895s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:15:34.978&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:15:39.01 (4.032s)&#xA;&gt; Enter [It] should enable opentracing using zipkin - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:160 @ 04/04/23 18:15:39.01&#xA;&lt; Exit [It] should enable opentracing using zipkin - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:160 @ 04/04/23 18:15:59.042 (20.032s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:59.042&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:59.301 (259ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:15:59.301&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:15:59.301 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured picks up a non-certificate only change" classname="nginx-ingress-controller e2e suite" status="passed" time="42.603077039">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:59.302&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:06.324 (7.022s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:16:06.324&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:16:10.352 (4.028s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:16:10.352&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:16:28.235&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:16:36.64&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:16:36.649 (26.297s)&#xA;&gt; Enter [It] picks up a non-certificate only change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:218 @ 04/04/23 18:16:36.649&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:229 @ 04/04/23 18:16:41.653&#xA;&lt; Exit [It] picks up a non-certificate only change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:218 @ 04/04/23 18:16:41.686 (5.038s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:41.686&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:41.905 (219ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] enable-real-ip should not trust X-Forwarded-For header when setting is false" classname="nginx-ingress-controller e2e suite" status="passed" time="35.362528503">
+              <system-err>&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:41.905&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:48.792 (6.887s)&#xA;&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 04/04/23 18:16:48.792&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 04/04/23 18:16:59.851 (11.059s)&#xA;&gt; Enter [It] should not trust X-Forwarded-For header when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:78 @ 04/04/23 18:16:59.851&#xA;&lt; Exit [It] should not trust X-Forwarded-For header when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:78 @ 04/04/23 18:17:17.088 (17.237s)&#xA;&gt; Enter [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:17.088&#xA;&lt; Exit [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:17.268 (179ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic configuration configures balancer Lua middleware correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="28.627555304">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:17.268&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:25.143 (7.875s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:17:25.143&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:17:39.338 (14.195s)&#xA;&gt; Enter [It] configures balancer Lua middleware correctly - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:50 @ 04/04/23 18:17:39.338&#xA;&lt; Exit [It] configures balancer Lua middleware correctly - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:50 @ 04/04/23 18:17:45.709 (6.371s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:45.709&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:45.895 (186ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user does not retain cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="43.374170474">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:45.896&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:52.77 (6.874s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:17:52.77&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:18:00.824 (8.054s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:18:00.824&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:18:29.039 (28.216s)&#xA;&gt; Enter [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:337 @ 04/04/23 18:18:29.039&#xA;&lt; Exit [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:337 @ 04/04/23 18:18:29.048 (9ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:29.048&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:29.27 (222ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow - single origin with required port" classname="nginx-ingress-controller e2e suite" status="passed" time="18.648918317">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:29.27&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:36.638 (7.367s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:36.638&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:40.656 (4.018s)&#xA;&gt; Enter [It] should allow - single origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:358 @ 04/04/23 18:18:40.656&#xA;&lt; Exit [It] should allow - single origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:358 @ 04/04/23 18:18:47.695 (7.04s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:47.695&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:47.919 (224ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] configuration-snippet drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34;" classname="nginx-ingress-controller e2e suite" status="passed" time="40.641495701">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:47.919&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:54.793 (6.873s)&#xA;&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 04/04/23 18:18:54.793&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 04/04/23 18:18:58.818 (4.026s)&#xA;&gt; Enter [It] drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:58 @ 04/04/23 18:18:58.818&#xA;&lt; Exit [It] drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:58 @ 04/04/23 18:19:28.082 (29.263s)&#xA;&gt; Enter [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:28.082&#xA;&lt; Exit [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:28.561 (479ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] upstream-vhost set host to upstreamvhost.bar.com" classname="nginx-ingress-controller e2e suite" status="passed" time="22.366668485">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:28.561&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:36.485 (7.924s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:30 @ 04/04/23 18:19:36.485&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:30 @ 04/04/23 18:19:40.514 (4.029s)&#xA;&gt; Enter [It] set host to upstreamvhost.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:34 @ 04/04/23 18:19:40.514&#xA;&lt; Exit [It] set host to upstreamvhost.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:34 @ 04/04/23 18:19:50.715 (10.201s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:50.715&#xA;&lt; Exit [AfterEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:50.928 (213ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should turn on proxy-buffering" classname="nginx-ingress-controller e2e suite" status="passed" time="24.539076289">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:50.928&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:59.376 (8.447s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:19:59.376&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:20:03.412 (4.036s)&#xA;&gt; Enter [It] should turn on proxy-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:157 @ 04/04/23 18:20:03.412&#xA;&lt; Exit [It] should turn on proxy-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:157 @ 04/04/23 18:20:13.859 (10.448s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:13.859&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:15.468 (1.608s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [TCP] tcp-services should reload after an update in the configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="155.065694354">
+              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:15.468&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:32.896 (2m17.428s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:22:32.896&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:22:32.905 (9ms)&#xA;&gt; Enter [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:169 @ 04/04/23 18:22:32.905&#xA;STEP: setting up a first deployment - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:171 @ 04/04/23 18:22:32.905&#xA;STEP: updating the tcp service to a second deployment - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:196 @ 04/04/23 18:22:40.099&#xA;&lt; Exit [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:169 @ 04/04/23 18:22:50.31 (17.405s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:50.31&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:50.534 (224ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not break functionality - without `*`" classname="nginx-ingress-controller e2e suite" status="passed" time="18.076988583">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:50.534&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:57.402 (6.868s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:57.402&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:23:01.417 (4.015s)&#xA;&gt; Enter [It] should not break functionality - without `*` - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:291 @ 04/04/23 18:23:01.417&#xA;&lt; Exit [It] should not break functionality - without `*` - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:291 @ 04/04/23 18:23:08.429 (7.012s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:08.429&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:08.611 (182ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should set secure in cookie with provided false annotation on https" classname="nginx-ingress-controller e2e suite" status="passed" time="21.337074474">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:08.611&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:15.499 (6.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:23:15.499&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:23:19.526 (4.026s)&#xA;&gt; Enter [It] should set secure in cookie with provided false annotation on https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:458 @ 04/04/23 18:23:19.526&#xA;&lt; Exit [It] should set secure in cookie with provided false annotation on https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:458 @ 04/04/23 18:23:29.716 (10.19s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:29.716&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:29.948 (233ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials" classname="nginx-ingress-controller e2e suite" status="passed" time="22.23359748">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:29.949&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:36.837 (6.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:23:36.837&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:23:40.864 (4.027s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:116 @ 04/04/23 18:23:40.864&#xA;&lt; Exit [It] should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:116 @ 04/04/23 18:23:51.976 (11.112s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:51.976&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:52.182 (206ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure Opentelemetry should exists opentelemetry_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="30.105451465">
+              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:52.183&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:00.596 (8.414s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:24:00.596&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:24:04.625 (4.028s)&#xA;&gt; Enter [It] should exists opentelemetry_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:104 @ 04/04/23 18:24:04.625&#xA;&lt; Exit [It] should exists opentelemetry_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:104 @ 04/04/23 18:24:21.864 (17.239s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:21.864&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:22.288 (424ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:24:22.288&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:24:22.288 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should set cache_key when external auth cache is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="20.270369293999998">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:22.289&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:30.179 (7.89s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:24:30.179&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:24:32.201 (2.022s)&#xA;&gt; Enter [It] should set cache_key when external auth cache is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:322 @ 04/04/23 18:24:32.201&#xA;&lt; Exit [It] should set cache_key when external auth cache is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:322 @ 04/04/23 18:24:42.391 (10.19s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:42.391&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:42.559 (169ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should work with server-alias annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="23.332291638">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:42.559&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:49.462 (6.902s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:24:49.462&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:24:55.483 (6.021s)&#xA;&gt; Enter [It] should work with server-alias annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:372 @ 04/04/23 18:24:55.483&#xA;&lt; Exit [It] should work with server-alias annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:372 @ 04/04/23 18:25:05.677 (10.194s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:05.677&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:05.892 (215ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] access-log http-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="17.146392503">
+              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:05.892&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:12.767 (6.875s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:54 @ 04/04/23 18:25:12.767&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:54 @ 04/04/23 18:25:22.853 (10.086s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:22.853&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:23.038 (186ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to $scheme:// and use proxy_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="22.339493601">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:23.039&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:30.928 (7.889s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:25:30.928&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:25:34.955 (4.027s)&#xA;&gt; Enter [It] should set backend protocol to $scheme:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:49 @ 04/04/23 18:25:34.955&#xA;&lt; Exit [It] should set backend protocol to $scheme:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:49 @ 04/04/23 18:25:45.122 (10.167s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:45.122&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:45.378 (256ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With ingress-class-by-name flag should watch Ingress that uses the class name even if spec is different" classname="nginx-ingress-controller e2e suite" status="passed" time="44.416072668">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:45.378&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:52.259 (6.88s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:25:52.259&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:25:56.284 (4.026s)&#xA;&gt; Enter [BeforeEach] With ingress-class-by-name flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:518 @ 04/04/23 18:25:56.284&#xA;&lt; Exit [BeforeEach] With ingress-class-by-name flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:518 @ 04/04/23 18:26:05.326 (9.041s)&#xA;&gt; Enter [It] should watch Ingress that uses the class name even if spec is different - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:539 @ 04/04/23 18:26:05.326&#xA;&lt; Exit [It] should watch Ingress that uses the class name even if spec is different - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:539 @ 04/04/23 18:26:29.579 (24.254s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:29.579&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:29.795 (215ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not match" classname="nginx-ingress-controller e2e suite" status="passed" time="18.102332549">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:29.795&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:36.671 (6.876s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:26:36.671&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:26:40.694 (4.023s)&#xA;&gt; Enter [It] should not match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:338 @ 04/04/23 18:26:40.694&#xA;&lt; Exit [It] should not match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:338 @ 04/04/23 18:26:47.715 (7.021s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:47.715&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:47.897 (182ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] Configmap change should reload after an update in the configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="41.659966884">
+              <system-err>&gt; Enter [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:47.898&#xA;&lt; Exit [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:54.79 (6.892s)&#xA;&gt; Enter [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:32 @ 04/04/23 18:26:54.79&#xA;&lt; Exit [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:32 @ 04/04/23 18:26:58.813 (4.023s)&#xA;&gt; Enter [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:36 @ 04/04/23 18:26:58.813&#xA;STEP: adding a whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:42 @ 04/04/23 18:27:05.828&#xA;STEP: changing error-log-level - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:61 @ 04/04/23 18:27:16.071&#xA;&lt; Exit [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:36 @ 04/04/23 18:27:29.359 (30.546s)&#xA;&gt; Enter [AfterEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:29.359&#xA;&lt; Exit [AfterEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:29.558 (198ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] hash size Check the variable hash size should set variables-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="28.276887482">
+              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:29.558&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:36.431 (6.873s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:27:36.431&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:27:47.466 (11.035s)&#xA;&gt; Enter [It] should set variables-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:80 @ 04/04/23 18:27:47.466&#xA;&lt; Exit [It] should set variables-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:80 @ 04/04/23 18:27:57.638 (10.172s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:57.638&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:57.835 (197ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [SSL] [Flag] default-ssl-certificate uses default ssl certificate for catch-all ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="34.780183951">
+              <system-err>&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:57.835&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:04.708 (6.873s)&#xA;&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 04/04/23 18:28:04.708&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 04/04/23 18:28:20.208 (15.5s)&#xA;&gt; Enter [It] uses default ssl certificate for catch-all ingress - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:64 @ 04/04/23 18:28:20.208&#xA;STEP: making sure new ingress is deployed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:68 @ 04/04/23 18:28:27.228&#xA;STEP: making sure new ingress is responding - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:74 @ 04/04/23 18:28:30.423&#xA;STEP: making sure the configured default ssl certificate is being used - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:76 @ 04/04/23 18:28:30.423&#xA;&lt; Exit [It] uses default ssl certificate for catch-all ingress - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:64 @ 04/04/23 18:28:32.435 (12.227s)&#xA;&gt; Enter [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:32.435&#xA;&lt; Exit [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:32.615 (181ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] access-log access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="17.267999907">
+              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:32.616&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:39.497 (6.882s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:42 @ 04/04/23 18:28:39.497&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:42 @ 04/04/23 18:28:49.668 (10.171s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:49.669&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:49.884 (215ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity" classname="nginx-ingress-controller e2e suite" status="passed" time="21.326374759">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:49.884&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:56.783 (6.899s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:28:56.783&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:29:00.81 (4.027s)&#xA;&gt; Enter [It] should enable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:35 @ 04/04/23 18:29:00.81&#xA;&lt; Exit [It] should enable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:35 @ 04/04/23 18:29:10.998 (10.189s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:10.998&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:11.21 (212ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Shutdown] Grace period shutdown /healthz should return status code 500 during shutdown grace period" classname="nginx-ingress-controller e2e suite" status="passed" time="79.134312514">
+              <system-err>&gt; Enter [BeforeEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:11.211&#xA;&lt; Exit [BeforeEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:19.1 (7.89s)&#xA;&gt; Enter [It] /healthz should return status code 500 during shutdown grace period - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/grace_period.go:35 @ 04/04/23 18:29:19.1&#xA;&lt; Exit [It] /healthz should return status code 500 during shutdown grace period - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/grace_period.go:35 @ 04/04/23 18:30:30.168 (1m11.068s)&#xA;&gt; Enter [AfterEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:30.168&#xA;&lt; Exit [AfterEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:30.345 (177ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] server-alias should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="21.338020536">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:30.345&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:37.278 (6.932s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:30:37.278&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:30:41.303 (4.025s)&#xA;&gt; Enter [It] should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:36 @ 04/04/23 18:30:41.303&#xA;&lt; Exit [It] should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:36 @ 04/04/23 18:30:51.481 (10.178s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:51.481&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:51.683 (202ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] use-proxy-protocol should enable PROXY Protocol for TCP" classname="nginx-ingress-controller e2e suite" status="passed" time="633.259626659">
+              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:51.684&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:58.618 (6.934s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:30:58.618&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:31:09.663 (11.045s)&#xA;&gt; Enter [It] should enable PROXY Protocol for TCP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155 @ 04/04/23 18:31:09.663&#xA;Automatically polling progress:&#xA;  [Setting] use-proxy-protocol should enable PROXY Protocol for TCP (Spec Runtime: 3m17.98s)&#xA;    /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155&#xA;    In [It] (Node Runtime: 3m0.001s)&#xA;      /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155&#xA;&#xA;    Spec Goroutine&#xA;    goroutine 2932 [IO wait, 3 minutes]&#xA;      internal/poll.runtime_pollWait(0x7f9e883a91b8, 0x72)&#xA;        /usr/local/go/src/runtime/netpoll.go:306&#xA;      internal/poll.(*pollDesc).wait(0xc0000de300?, 0xc00098a926?, 0x0)&#xA;        /usr/local/go/src/internal/poll/fd_poll_runtime.go:84&#xA;      internal/poll.(*pollDesc).waitRead(...)&#xA;        /usr/local/go/src/internal/poll/fd_poll_runtime.go:89&#xA;      internal/poll.(*FD).Read(0xc0000de300, {0xc00098a926, 0x15a, 0x15a})&#xA;        /usr/local/go/src/internal/poll/fd_unix.go:167&#xA;      net.(*netFD).Read(0xc0000de300, {0xc00098a926?, 0x453656?, 0x380?})&#xA;        /usr/local/go/src/net/fd_posix.go:55&#xA;      net.(*conn).Read(0xc000516660, {0xc00098a926?, 0x19913c0?, 0xc00098a700?})&#xA;        /usr/local/go/src/net/net.go:183&#xA;      io.ReadAll({0x1f62de0, 0xc000516660})&#xA;        /usr/local/go/src/io/io.go:701&#xA;    &gt; k8s.io/ingress-nginx/test/e2e/settings.glob..func38.5()&#xA;        /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:211&#xA;      github.com/onsi/ginkgo/v2/internal.extractBodyFunction.func3({0xa0558e, 0xc000300a80})&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/node.go:463&#xA;      github.com/onsi/ginkgo/v2/internal.(*Suite).runNode.func3()&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/suite.go:863&#xA;      github.com/onsi/ginkgo/v2/internal.(*Suite).runNode&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/suite.go:850&#xA;&lt; Exit [It] should enable PROXY Protocol for TCP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155 @ 04/04/23 18:41:24.726 (10m15.064s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:24.726&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:24.943 (217ms)&#xA;</system-err>
+          </testcase>
+      </testsuite>
+  </testsuites>
\ No newline at end of file

From 6778c3ec44280fb6c5184aee570a94dac5951fa5 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 16 Apr 2023 21:22:43 -0300
Subject: [PATCH 0721/1641] Remove deprecated annotation secure-upstream
 (#9862)

---
 internal/ingress/annotations/annotations.go   |   3 -
 .../annotations/secureupstream/main.go        |  48 ------
 .../annotations/secureupstream/main_test.go   | 162 ------------------
 3 files changed, 213 deletions(-)
 delete mode 100644 internal/ingress/annotations/secureupstream/main.go
 delete mode 100644 internal/ingress/annotations/secureupstream/main_test.go

diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index 6a9e7367c..974b9ce16 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -58,7 +58,6 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/redirect"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/rewrite"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/satisfy"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/secureupstream"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/serversnippet"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/serviceupstream"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/sessionaffinity"
@@ -103,7 +102,6 @@ type Ingress struct {
 	Redirect           redirect.Config
 	Rewrite            rewrite.Config
 	Satisfy            string
-	SecureUpstream     secureupstream.Config
 	ServerSnippet      string
 	ServiceUpstream    bool
 	SessionAffinity    sessionaffinity.Config
@@ -155,7 +153,6 @@ func NewAnnotationExtractor(cfg resolver.Resolver) Extractor {
 			"Redirect":             redirect.NewParser(cfg),
 			"Rewrite":              rewrite.NewParser(cfg),
 			"Satisfy":              satisfy.NewParser(cfg),
-			"SecureUpstream":       secureupstream.NewParser(cfg),
 			"ServerSnippet":        serversnippet.NewParser(cfg),
 			"ServiceUpstream":      serviceupstream.NewParser(cfg),
 			"SessionAffinity":      sessionaffinity.NewParser(cfg),
diff --git a/internal/ingress/annotations/secureupstream/main.go b/internal/ingress/annotations/secureupstream/main.go
deleted file mode 100644
index ebaea2058..000000000
--- a/internal/ingress/annotations/secureupstream/main.go
+++ /dev/null
@@ -1,48 +0,0 @@
-/*
-Copyright 2016 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package secureupstream
-
-import (
-	networking "k8s.io/api/networking/v1"
-	"k8s.io/klog/v2"
-
-	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
-	"k8s.io/ingress-nginx/internal/ingress/resolver"
-)
-
-// Config describes SSL backend configuration
-type Config struct {
-	CACert resolver.AuthSSLCert `json:"caCert"`
-}
-
-type su struct {
-	r resolver.Resolver
-}
-
-// NewParser creates a new secure upstream annotation parser
-func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return su{r}
-}
-
-// Parse parses the annotations contained in the ingress
-// rule used to indicate if the upstream servers should use SSL
-func (a su) Parse(ing *networking.Ingress) (secure interface{}, err error) {
-	if ca, _ := parser.GetStringAnnotation("secure-verify-ca-secret", ing); ca != "" {
-		klog.Warningf("NOTE! secure-verify-ca-secret is not supported anymore. Please use proxy-ssl-secret instead")
-	}
-	return
-}
diff --git a/internal/ingress/annotations/secureupstream/main_test.go b/internal/ingress/annotations/secureupstream/main_test.go
deleted file mode 100644
index 7546cb5cf..000000000
--- a/internal/ingress/annotations/secureupstream/main_test.go
+++ /dev/null
@@ -1,162 +0,0 @@
-/*
-Copyright 2016 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package secureupstream
-
-import (
-	"fmt"
-	"testing"
-
-	api "k8s.io/api/core/v1"
-	networking "k8s.io/api/networking/v1"
-	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-
-	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
-	"k8s.io/ingress-nginx/internal/ingress/resolver"
-)
-
-func buildIngress() *networking.Ingress {
-	defaultBackend := networking.IngressBackend{
-		Service: &networking.IngressServiceBackend{
-			Name: "default-backend",
-			Port: networking.ServiceBackendPort{
-				Number: 80,
-			},
-		},
-	}
-
-	return &networking.Ingress{
-		ObjectMeta: meta_v1.ObjectMeta{
-			Name:      "foo",
-			Namespace: api.NamespaceDefault,
-		},
-		Spec: networking.IngressSpec{
-			DefaultBackend: &networking.IngressBackend{
-				Service: &networking.IngressServiceBackend{
-					Name: "default-backend",
-					Port: networking.ServiceBackendPort{
-						Number: 80,
-					},
-				},
-			},
-			Rules: []networking.IngressRule{
-				{
-					Host: "foo.bar.com",
-					IngressRuleValue: networking.IngressRuleValue{
-						HTTP: &networking.HTTPIngressRuleValue{
-							Paths: []networking.HTTPIngressPath{
-								{
-									Path:    "/foo",
-									Backend: defaultBackend,
-								},
-							},
-						},
-					},
-				},
-			},
-		},
-	}
-}
-
-type mockCfg struct {
-	resolver.Mock
-	certs map[string]resolver.AuthSSLCert
-}
-
-func (cfg mockCfg) GetAuthCertificate(secret string) (*resolver.AuthSSLCert, error) {
-	if cert, ok := cfg.certs[secret]; ok {
-		return &cert, nil
-	}
-	return nil, fmt.Errorf("secret not found: %v", secret)
-}
-
-func TestNoCA(t *testing.T) {
-	ing := buildIngress()
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("backend-protocol")] = "HTTPS"
-	ing.SetAnnotations(data)
-
-	_, err := NewParser(mockCfg{
-		certs: map[string]resolver.AuthSSLCert{
-			"default/secure-verify-ca": {},
-		},
-	}).Parse(ing)
-	if err != nil {
-		t.Errorf("Unexpected error on ingress: %v", err)
-	}
-}
-
-func TestAnnotations(t *testing.T) {
-	ing := buildIngress()
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("backend-protocol")] = "HTTPS"
-	data[parser.GetAnnotationWithPrefix("secure-verify-ca-secret")] = "secure-verify-ca"
-	ing.SetAnnotations(data)
-
-	_, err := NewParser(mockCfg{
-		certs: map[string]resolver.AuthSSLCert{
-			"default/secure-verify-ca": {},
-		},
-	}).Parse(ing)
-	if err != nil {
-		t.Errorf("Unexpected error on ingress: %v", err)
-	}
-}
-
-func TestSecretNotFound(t *testing.T) {
-	ing := buildIngress()
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("backend-protocol")] = "HTTPS"
-	data[parser.GetAnnotationWithPrefix("secure-verify-ca-secret")] = "secure-verify-ca"
-	ing.SetAnnotations(data)
-	_, err := NewParser(mockCfg{}).Parse(ing)
-	if err != nil {
-		t.Error("Expected secret not found error on ingress")
-	}
-}
-
-func TestSecretOnNonSecure(t *testing.T) {
-	ing := buildIngress()
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("backend-protocol")] = "HTTP"
-	data[parser.GetAnnotationWithPrefix("secure-verify-ca-secret")] = "secure-verify-ca"
-	ing.SetAnnotations(data)
-	_, err := NewParser(mockCfg{
-		certs: map[string]resolver.AuthSSLCert{
-			"default/secure-verify-ca": {},
-		},
-	}).Parse(ing)
-	if err != nil {
-		t.Error("Expected CA secret on non secure backend error on ingress")
-	}
-}
-
-func TestUnsupportedAnnotation(t *testing.T) {
-	ing := buildIngress()
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("backend-protocol")] = "HTTPS"
-	data[parser.GetAnnotationWithPrefix("secure-verify-ca-secret")] = "secure-verify-ca"
-	ing.SetAnnotations(data)
-
-	_, err := NewParser(mockCfg{
-		certs: map[string]resolver.AuthSSLCert{
-			"default/secure-verify-ca": {},
-		},
-	}).Parse(ing)
-	if err != nil {
-		t.Errorf("Unexpected error on ingress: %v", err)
-	}
-}

From 297036e1690ae6dee602bae8b49bb015855141eb Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 16 Apr 2023 21:26:43 -0300
Subject: [PATCH 0722/1641] Deprecate and remove influxdb feature (#9861)

---
 docs/e2e-tests.md                             |   8 -
 .../nginx-configuration/annotations.md        |  28 ---
 images/nginx/rootfs/build.sh                  |   6 -
 internal/ingress/annotations/annotations.go   |   3 -
 internal/ingress/annotations/influxdb/main.go | 101 ----------
 .../ingress/annotations/influxdb/main_test.go | 138 -------------
 internal/ingress/controller/controller.go     |   1 -
 .../ingress/controller/template/template.go   |  45 -----
 .../controller/template/template_test.go      |  25 ---
 pkg/apis/ingress/types.go                     |   4 -
 pkg/apis/ingress/types_equals.go              |   4 -
 rootfs/etc/nginx/template/nginx.tmpl          |   6 -
 test/e2e/annotations/influxdb.go              | 186 ------------------
 test/e2e/framework/influxdb.go                | 141 -------------
 14 files changed, 696 deletions(-)
 delete mode 100644 internal/ingress/annotations/influxdb/main.go
 delete mode 100644 internal/ingress/annotations/influxdb/main_test.go
 delete mode 100644 test/e2e/annotations/influxdb.go
 delete mode 100644 test/e2e/framework/influxdb.go

diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 22a76dc7a..ed3e77f67 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -133,10 +133,6 @@ Do not try to edit it manually.
 
 - [enable the http2-push-preload directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L34)
 
-### [influxdb-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/influxdb.go#L39)
-
-- [should send the request metric to the influxdb server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/influxdb.go#L48)
-
 ### [whitelist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L27)
 
 - [should set valid ip whitelist range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L34)
@@ -461,10 +457,6 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/influxdb.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/influxdb.go#L)
-
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index dac39f752..3b463eea7 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -123,11 +123,6 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/opentracing-trust-incoming-span](#opentracing-trust-incoming-span)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/enable-opentelemetry](#enable-opentelemetry)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/opentelemetry-trust-incoming-span](#opentelemetry-trust-incoming-spans)|"true" or "false"|
-|[nginx.ingress.kubernetes.io/enable-influxdb](#influxdb)|"true" or "false"|
-|[nginx.ingress.kubernetes.io/influxdb-measurement](#influxdb)|string|
-|[nginx.ingress.kubernetes.io/influxdb-port](#influxdb)|string|
-|[nginx.ingress.kubernetes.io/influxdb-host](#influxdb)|string|
-|[nginx.ingress.kubernetes.io/influxdb-server-name](#influxdb)|string|
 |[nginx.ingress.kubernetes.io/use-regex](#use-regex)|bool|
 |[nginx.ingress.kubernetes.io/enable-modsecurity](#modsecurity)|bool|
 |[nginx.ingress.kubernetes.io/enable-owasp-core-rules](#modsecurity)|bool|
@@ -896,29 +891,6 @@ nginx.ingress.kubernetes.io/modsecurity-snippet: |
 Include /etc/nginx/owasp-modsecurity-crs/nginx-modsecurity.conf
 ```
 
-### InfluxDB
-
-Using `influxdb-*` annotations we can monitor requests passing through a Location by sending them to an InfluxDB backend exposing the UDP socket
-using the [nginx-influxdb-module](https://github.com/influxdata/nginx-influxdb-module/).
-
-```yaml
-nginx.ingress.kubernetes.io/enable-influxdb: "true"
-nginx.ingress.kubernetes.io/influxdb-measurement: "nginx-reqs"
-nginx.ingress.kubernetes.io/influxdb-port: "8089"
-nginx.ingress.kubernetes.io/influxdb-host: "127.0.0.1"
-nginx.ingress.kubernetes.io/influxdb-server-name: "nginx-ingress"
-```
-
-For the `influxdb-host` parameter you have two options:
-
-- Use an InfluxDB server configured with the  [UDP protocol](https://docs.influxdata.com/influxdb/v1.5/supported_protocols/udp/) enabled.
-- Deploy Telegraf as a sidecar proxy to the Ingress controller configured to listen UDP with the [socket listener input](https://github.com/influxdata/telegraf/tree/release-1.6/plugins/inputs/socket_listener) and to write using
-anyone of the [outputs plugins](https://github.com/influxdata/telegraf/tree/release-1.7/plugins/outputs) like InfluxDB, Apache Kafka,
-Prometheus, etc.. (recommended)
-
-It's important to remember that there's no DNS resolver at this stage so you will have to configure
-an ip address to `nginx.ingress.kubernetes.io/influxdb-host`. If you deploy Influx or Telegraf as sidecar (another container in the same pod) this becomes straightforward since you can directly use `127.0.0.1`.
-
 ### Backend Protocol
 
 Using `backend-protocol` annotations is possible to indicate how NGINX should communicate with the backend service. (Replaces `secure-backends` in older versions)
diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 8023575c0..44c7b20f8 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -77,8 +77,6 @@ export LUA_UPSTREAM_VERSION=8aa93ead98ba2060d4efd594ae33a35d153589bf
 # Check for recent changes: https://github.com/openresty/lua-cjson/compare/2.1.0.10...openresty:master
 export LUA_CJSON_VERSION=2.1.0.10
 
-export NGINX_INFLUXDB_VERSION=5b09391cb7b9a889687c0aa67964c06a2d933e8b
-
 # Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/3.3...master
 export GEOIP2_VERSION=a26c6beed77e81553686852dceb6c7fdacc5970d
 
@@ -270,9 +268,6 @@ fi
 get_src 586f92166018cc27080d34e17c59d68219b85af745edf3cc9fe41403fc9b4ac6 \
         "https://github.com/DataDog/dd-opentracing-cpp/archive/v$DATADOG_CPP_VERSION.tar.gz"
 
-get_src 1af5a5632dc8b00ae103d51b7bf225de3a7f0df82f5c6a401996c080106e600e \
-        "https://github.com/influxdata/nginx-influxdb-module/archive/$NGINX_INFLUXDB_VERSION.tar.gz"
-
 get_src 4c1933434572226942c65b2f2b26c8a536ab76aa771a3c7f6c2629faa764976b \
         "https://github.com/leev/ngx_http_geoip2_module/archive/$GEOIP2_VERSION.tar.gz"
 
@@ -640,7 +635,6 @@ WITH_MODULES=" \
   --add-module=$BUILD_PATH/lua-upstream-nginx-module-$LUA_UPSTREAM_VERSION \
   --add-module=$BUILD_PATH/nginx_ajp_module-${NGINX_AJP_VERSION} \
   --add-dynamic-module=$BUILD_PATH/nginx-http-auth-digest-$NGINX_DIGEST_AUTH \
-  --add-dynamic-module=$BUILD_PATH/nginx-influxdb-module-$NGINX_INFLUXDB_VERSION \
   --add-dynamic-module=$BUILD_PATH/nginx-opentracing-$NGINX_OPENTRACING_VERSION/opentracing \
   --add-dynamic-module=$BUILD_PATH/ModSecurity-nginx-$MODSECURITY_VERSION \
   --add-dynamic-module=$BUILD_PATH/ngx_http_geoip2_module-${GEOIP2_VERSION} \
diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index 974b9ce16..5bb2bf5e6 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -44,7 +44,6 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/fastcgi"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/globalratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/http2pushpreload"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/influxdb"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipdenylist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipwhitelist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/loadbalancing"
@@ -115,7 +114,6 @@ type Ingress struct {
 	XForwardedPrefix   string
 	SSLCipher          sslcipher.Config
 	Logs               log.Config
-	InfluxDB           influxdb.Config
 	ModSecurity        modsecurity.Config
 	Mirror             mirror.Config
 	StreamSnippet      string
@@ -166,7 +164,6 @@ func NewAnnotationExtractor(cfg resolver.Resolver) Extractor {
 			"XForwardedPrefix":     xforwardedprefix.NewParser(cfg),
 			"SSLCipher":            sslcipher.NewParser(cfg),
 			"Logs":                 log.NewParser(cfg),
-			"InfluxDB":             influxdb.NewParser(cfg),
 			"BackendProtocol":      backendprotocol.NewParser(cfg),
 			"ModSecurity":          modsecurity.NewParser(cfg),
 			"Mirror":               mirror.NewParser(cfg),
diff --git a/internal/ingress/annotations/influxdb/main.go b/internal/ingress/annotations/influxdb/main.go
deleted file mode 100644
index 1aee91f33..000000000
--- a/internal/ingress/annotations/influxdb/main.go
+++ /dev/null
@@ -1,101 +0,0 @@
-/*
-Copyright 2018 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package influxdb
-
-import (
-	networking "k8s.io/api/networking/v1"
-
-	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
-	"k8s.io/ingress-nginx/internal/ingress/resolver"
-)
-
-type influxdb struct {
-	r resolver.Resolver
-}
-
-// Config contains the IfluxDB configuration to be used in the Ingress
-type Config struct {
-	InfluxDBEnabled     bool   `json:"influxDBEnabled"`
-	InfluxDBMeasurement string `json:"influxDBMeasurement"`
-	InfluxDBPort        string `json:"influxDBPort"`
-	InfluxDBHost        string `json:"influxDBHost"`
-	InfluxDBServerName  string `json:"influxDBServerName"`
-}
-
-// NewParser creates a new InfluxDB annotation parser
-func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return influxdb{r}
-}
-
-// Parse parses the annotations to look for InfluxDB configurations
-func (c influxdb) Parse(ing *networking.Ingress) (interface{}, error) {
-	var err error
-	config := &Config{}
-
-	config.InfluxDBEnabled, err = parser.GetBoolAnnotation("enable-influxdb", ing)
-	if err != nil {
-		config.InfluxDBEnabled = false
-	}
-
-	config.InfluxDBMeasurement, err = parser.GetStringAnnotation("influxdb-measurement", ing)
-	if err != nil {
-		config.InfluxDBMeasurement = "default"
-	}
-
-	config.InfluxDBPort, err = parser.GetStringAnnotation("influxdb-port", ing)
-	if err != nil {
-		// This is not the default 8086 port but the port usually used to expose
-		// influxdb in UDP, the module uses UDP to talk to influx via the line protocol.
-		config.InfluxDBPort = "8089"
-	}
-
-	config.InfluxDBHost, err = parser.GetStringAnnotation("influxdb-host", ing)
-	if err != nil {
-		config.InfluxDBHost = "127.0.0.1"
-	}
-
-	config.InfluxDBServerName, err = parser.GetStringAnnotation("influxdb-server-name", ing)
-	if err != nil {
-		config.InfluxDBServerName = "nginx-ingress"
-	}
-
-	return config, nil
-}
-
-// Equal tests for equality between two Config types
-func (e1 *Config) Equal(e2 *Config) bool {
-	if e1 == e2 {
-		return true
-	}
-	if e1 == nil || e2 == nil {
-		return false
-	}
-	if e1.InfluxDBEnabled != e2.InfluxDBEnabled {
-		return false
-	}
-	if e1.InfluxDBPort != e2.InfluxDBPort {
-		return false
-	}
-	if e1.InfluxDBHost != e2.InfluxDBHost {
-		return false
-	}
-	if e1.InfluxDBServerName != e2.InfluxDBServerName {
-		return false
-	}
-
-	return true
-}
diff --git a/internal/ingress/annotations/influxdb/main_test.go b/internal/ingress/annotations/influxdb/main_test.go
deleted file mode 100644
index 13d681509..000000000
--- a/internal/ingress/annotations/influxdb/main_test.go
+++ /dev/null
@@ -1,138 +0,0 @@
-/*
-Copyright 2018 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package influxdb
-
-import (
-	"testing"
-
-	api "k8s.io/api/core/v1"
-	networking "k8s.io/api/networking/v1"
-	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
-	"k8s.io/ingress-nginx/internal/ingress/resolver"
-)
-
-func buildIngress() *networking.Ingress {
-	defaultBackend := networking.IngressBackend{
-		Service: &networking.IngressServiceBackend{
-			Name: "default-backend",
-			Port: networking.ServiceBackendPort{
-				Number: 80,
-			},
-		},
-	}
-
-	return &networking.Ingress{
-		ObjectMeta: meta_v1.ObjectMeta{
-			Name:      "foo",
-			Namespace: api.NamespaceDefault,
-		},
-		Spec: networking.IngressSpec{
-			DefaultBackend: &networking.IngressBackend{
-				Service: &networking.IngressServiceBackend{
-					Name: "default-backend",
-					Port: networking.ServiceBackendPort{
-						Number: 80,
-					},
-				},
-			},
-			Rules: []networking.IngressRule{
-				{
-					Host: "foo.bar.com",
-					IngressRuleValue: networking.IngressRuleValue{
-						HTTP: &networking.HTTPIngressRuleValue{
-							Paths: []networking.HTTPIngressPath{
-								{
-									Path:    "/foo",
-									Backend: defaultBackend,
-								},
-							},
-						},
-					},
-				},
-			},
-		},
-	}
-}
-
-func TestIngressInvalidInfluxDB(t *testing.T) {
-	ing := buildIngress()
-
-	influx, _ := NewParser(&resolver.Mock{}).Parse(ing)
-	nginxInflux, ok := influx.(*Config)
-	if !ok {
-		t.Errorf("expected a Config type")
-	}
-
-	if nginxInflux.InfluxDBEnabled == true {
-		t.Errorf("expected influxdb enabled but returned %v", nginxInflux.InfluxDBEnabled)
-	}
-
-	if nginxInflux.InfluxDBMeasurement != "default" {
-		t.Errorf("expected measurement name not found. Found %v", nginxInflux.InfluxDBMeasurement)
-	}
-
-	if nginxInflux.InfluxDBPort != "8089" {
-		t.Errorf("expected port not found. Found %v", nginxInflux.InfluxDBPort)
-	}
-
-	if nginxInflux.InfluxDBHost != "127.0.0.1" {
-		t.Errorf("expected host not found. Found %v", nginxInflux.InfluxDBHost)
-	}
-
-	if nginxInflux.InfluxDBServerName != "nginx-ingress" {
-		t.Errorf("expected server name not found. Found %v", nginxInflux.InfluxDBServerName)
-	}
-}
-
-func TestIngressInfluxDB(t *testing.T) {
-	ing := buildIngress()
-
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("enable-influxdb")] = "true"
-	data[parser.GetAnnotationWithPrefix("influxdb-measurement")] = "nginxmeasures"
-	data[parser.GetAnnotationWithPrefix("influxdb-port")] = "9091"
-	data[parser.GetAnnotationWithPrefix("influxdb-host")] = "10.99.0.13"
-	data[parser.GetAnnotationWithPrefix("influxdb-server-name")] = "nginx-test-1"
-	ing.SetAnnotations(data)
-
-	influx, _ := NewParser(&resolver.Mock{}).Parse(ing)
-	nginxInflux, ok := influx.(*Config)
-	if !ok {
-		t.Errorf("expected a Config type")
-	}
-
-	if !nginxInflux.InfluxDBEnabled {
-		t.Errorf("expected influxdb enabled but returned %v", nginxInflux.InfluxDBEnabled)
-	}
-
-	if nginxInflux.InfluxDBMeasurement != "nginxmeasures" {
-		t.Errorf("expected measurement name not found. Found %v", nginxInflux.InfluxDBMeasurement)
-	}
-
-	if nginxInflux.InfluxDBPort != "9091" {
-		t.Errorf("expected port not found. Found %v", nginxInflux.InfluxDBPort)
-	}
-
-	if nginxInflux.InfluxDBHost != "10.99.0.13" {
-		t.Errorf("expected host not found. Found %v", nginxInflux.InfluxDBHost)
-	}
-
-	if nginxInflux.InfluxDBServerName != "nginx-test-1" {
-		t.Errorf("expected server name not found. Found %v", nginxInflux.InfluxDBServerName)
-	}
-}
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 17142a478..80b5b587b 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -1460,7 +1460,6 @@ func locationApplyAnnotations(loc *ingress.Location, anns *annotations.Ingress)
 	loc.UsePortInRedirects = anns.UsePortInRedirects
 	loc.Connection = anns.Connection
 	loc.Logs = anns.Logs
-	loc.InfluxDB = anns.InfluxDB
 	loc.DefaultBackend = anns.DefaultBackend
 	loc.BackendProtocol = anns.BackendProtocol
 	loc.FastCGI = anns.FastCGI
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 9dc9fb3b8..6aadab48e 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -40,7 +40,6 @@ import (
 	"k8s.io/apimachinery/pkg/util/sets"
 	"k8s.io/klog/v2"
 
-	"k8s.io/ingress-nginx/internal/ingress/annotations/influxdb"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/controller/config"
@@ -267,7 +266,6 @@ var (
 		"buildOpentracing":                   buildOpentracing,
 		"buildOpentelemetry":                 buildOpentelemetry,
 		"proxySetHeader":                     proxySetHeader,
-		"buildInfluxDB":                      buildInfluxDB,
 		"enforceRegexModifier":               enforceRegexModifier,
 		"buildCustomErrorDeps":               buildCustomErrorDeps,
 		"buildCustomErrorLocationsPerServer": buildCustomErrorLocationsPerServer,
@@ -281,7 +279,6 @@ var (
 		"buildModSecurityForLocation":        buildModSecurityForLocation,
 		"buildMirrorLocations":               buildMirrorLocations,
 		"shouldLoadAuthDigestModule":         shouldLoadAuthDigestModule,
-		"shouldLoadInfluxDBModule":           shouldLoadInfluxDBModule,
 		"buildServerName":                    buildServerName,
 		"buildCorsOriginRegex":               buildCorsOriginRegex,
 	}
@@ -1269,29 +1266,6 @@ func buildOpentelemetry(c interface{}, s interface{}) string {
 	return buf.String()
 }
 
-// buildInfluxDB produces the single line configuration
-// needed by the InfluxDB module to send request's metrics
-// for the current resource
-func buildInfluxDB(input interface{}) string {
-	cfg, ok := input.(influxdb.Config)
-	if !ok {
-		klog.Errorf("expected an 'influxdb.Config' type but %T was returned", input)
-		return ""
-	}
-
-	if !cfg.InfluxDBEnabled {
-		return ""
-	}
-
-	return fmt.Sprintf(
-		"influxdb server_name=%s host=%s port=%s measurement=%s enabled=true;",
-		cfg.InfluxDBServerName,
-		cfg.InfluxDBHost,
-		cfg.InfluxDBPort,
-		cfg.InfluxDBMeasurement,
-	)
-}
-
 func proxySetHeader(loc interface{}) string {
 	location, ok := loc.(*ingress.Location)
 	if !ok {
@@ -1797,25 +1771,6 @@ func shouldLoadAuthDigestModule(s interface{}) bool {
 	return false
 }
 
-// shouldLoadInfluxDBModule determines whether or not the ngx_http_auth_digest_module module needs to be loaded.
-func shouldLoadInfluxDBModule(s interface{}) bool {
-	servers, ok := s.([]*ingress.Server)
-	if !ok {
-		klog.Errorf("expected an '[]*ingress.Server' type but %T was returned", s)
-		return false
-	}
-
-	for _, server := range servers {
-		for _, location := range server.Locations {
-			if location.InfluxDB.InfluxDBEnabled {
-				return true
-			}
-		}
-	}
-
-	return false
-}
-
 // buildServerName ensures wildcard hostnames are valid
 func buildServerName(hostname string) string {
 	if !strings.HasPrefix(hostname, "*") {
diff --git a/internal/ingress/controller/template/template_test.go b/internal/ingress/controller/template/template_test.go
index 343da506b..1980d7e52 100644
--- a/internal/ingress/controller/template/template_test.go
+++ b/internal/ingress/controller/template/template_test.go
@@ -35,7 +35,6 @@ import (
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/authreq"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/influxdb"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/modsecurity"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/opentelemetry"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/opentracing"
@@ -1640,30 +1639,6 @@ func TestProxySetHeader(t *testing.T) {
 	}
 }
 
-func TestBuildInfluxDB(t *testing.T) {
-	invalidType := &ingress.Ingress{}
-	expected := ""
-	actual := buildInfluxDB(invalidType)
-
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-
-	cfg := influxdb.Config{
-		InfluxDBEnabled:     true,
-		InfluxDBServerName:  "ok.com",
-		InfluxDBHost:        "host.com",
-		InfluxDBPort:        "5252",
-		InfluxDBMeasurement: "ok",
-	}
-	expected = "influxdb server_name=ok.com host=host.com port=5252 measurement=ok enabled=true;"
-	actual = buildInfluxDB(cfg)
-
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-}
-
 func TestBuildOpenTracing(t *testing.T) {
 	invalidType := &ingress.Ingress{}
 	expected := ""
diff --git a/pkg/apis/ingress/types.go b/pkg/apis/ingress/types.go
index 08a2f7575..e50666c18 100644
--- a/pkg/apis/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -29,7 +29,6 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/cors"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/fastcgi"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/globalratelimit"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/influxdb"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipdenylist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipwhitelist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/log"
@@ -338,9 +337,6 @@ type Location struct {
 	// Logs allows to enable or disable the nginx logs
 	// By default access logs are enabled and rewrite logs are disabled
 	Logs log.Config `json:"logs,omitempty"`
-	// InfluxDB allows to monitor the incoming request by sending them to an influxdb database
-	// +optional
-	InfluxDB influxdb.Config `json:"influxDB,omitempty"`
 	// BackendProtocol indicates which protocol should be used to communicate with the service
 	// By default this is HTTP
 	BackendProtocol string `json:"backend-protocol"`
diff --git a/pkg/apis/ingress/types_equals.go b/pkg/apis/ingress/types_equals.go
index 8a54f3758..84b1a186a 100644
--- a/pkg/apis/ingress/types_equals.go
+++ b/pkg/apis/ingress/types_equals.go
@@ -431,10 +431,6 @@ func (l1 *Location) Equal(l2 *Location) bool {
 		return false
 	}
 
-	if !(&l1.InfluxDB).Equal(&l2.InfluxDB) {
-		return false
-	}
-
 	if l1.BackendProtocol != l2.BackendProtocol {
 		return false
 	}
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 014c8cc2a..a49989f30 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -21,10 +21,6 @@ load_module /etc/nginx/modules/ngx_http_brotli_filter_module.so;
 load_module /etc/nginx/modules/ngx_http_brotli_static_module.so;
 {{ end }}
 
-{{ if (shouldLoadInfluxDBModule $servers) }}
-load_module /etc/nginx/modules/ngx_http_influxdb_module.so;
-{{ end }}
-
 {{ if (shouldLoadAuthDigestModule $servers) }}
 load_module /etc/nginx/modules/ngx_http_auth_digest_module.so;
 {{ end }}
@@ -1366,8 +1362,6 @@ stream {
             {{ range $limit := $limits }}
             {{ $limit }}{{ end }}
 
-            {{ buildInfluxDB $location.InfluxDB }}
-
             {{ if isValidByteSize $location.Proxy.BodySize true }}
             client_max_body_size                    {{ $location.Proxy.BodySize }};
             {{ end }}
diff --git a/test/e2e/annotations/influxdb.go b/test/e2e/annotations/influxdb.go
deleted file mode 100644
index 7a52730cf..000000000
--- a/test/e2e/annotations/influxdb.go
+++ /dev/null
@@ -1,186 +0,0 @@
-/*
-Copyright 2018 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package annotations
-
-import (
-	"bytes"
-	"context"
-	"fmt"
-	"net/http"
-	"os/exec"
-	"strings"
-	"time"
-
-	jsoniter "github.com/json-iterator/go"
-	"github.com/onsi/ginkgo/v2"
-	"github.com/stretchr/testify/assert"
-	corev1 "k8s.io/api/core/v1"
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-	"k8s.io/apimachinery/pkg/util/intstr"
-	"k8s.io/apimachinery/pkg/util/wait"
-
-	"k8s.io/ingress-nginx/test/e2e/framework"
-)
-
-var _ = framework.DescribeAnnotation("influxdb-*", func() {
-	f := framework.NewDefaultFramework("influxdb")
-
-	ginkgo.BeforeEach(func() {
-		f.NewInfluxDBDeployment()
-		f.NewEchoDeployment()
-	})
-
-	ginkgo.Context("when influxdb is enabled", func() {
-		ginkgo.It("should send the request metric to the influxdb server", func() {
-			ifs := createInfluxDBService(f)
-
-			// Ingress configured with InfluxDB annotations
-			host := "influxdb.e2e.local"
-			createInfluxDBIngress(
-				f,
-				host,
-				framework.EchoService,
-				80,
-				map[string]string{
-					"nginx.ingress.kubernetes.io/enable-influxdb":      "true",
-					"nginx.ingress.kubernetes.io/influxdb-host":        ifs.Spec.ClusterIP,
-					"nginx.ingress.kubernetes.io/influxdb-port":        "8089",
-					"nginx.ingress.kubernetes.io/influxdb-measurement": "requests",
-					"nginx.ingress.kubernetes.io/influxdb-servername":  "e2e-nginx-srv",
-				},
-			)
-
-			// Do a request to the echo server ingress that sends metrics
-			// to the InfluxDB backend.
-			f.HTTPTestClient().
-				GET("/").
-				WithHeader("Host", host).
-				Expect().
-				Status(http.StatusOK)
-
-			framework.Sleep(10 * time.Second)
-
-			var measurements string
-			var err error
-
-			err = wait.Poll(time.Second, time.Minute, func() (bool, error) {
-				measurements, err = extractInfluxDBMeasurements(f)
-				if err != nil {
-					return false, nil
-				}
-				return true, nil
-			})
-			assert.Nil(ginkgo.GinkgoT(), err)
-
-			var results map[string][]map[string]interface{}
-			_ = jsoniter.ConfigCompatibleWithStandardLibrary.Unmarshal([]byte(measurements), &results)
-
-			assert.NotEqual(ginkgo.GinkgoT(), len(measurements), 0)
-			for _, elem := range results["results"] {
-				assert.NotEqual(ginkgo.GinkgoT(), len(elem), 0)
-			}
-		})
-	})
-})
-
-func createInfluxDBService(f *framework.Framework) *corev1.Service {
-	service := &corev1.Service{
-		ObjectMeta: metav1.ObjectMeta{
-			Name:      "influxdb",
-			Namespace: f.Namespace,
-		},
-		Spec: corev1.ServiceSpec{Ports: []corev1.ServicePort{
-			{
-				Name:       "udp",
-				Port:       8089,
-				TargetPort: intstr.FromInt(8089),
-				Protocol:   "UDP",
-			},
-		},
-			Selector: map[string]string{
-				"app": "influxdb",
-			},
-		},
-	}
-
-	return f.EnsureService(service)
-}
-
-func createInfluxDBIngress(f *framework.Framework, host, service string, port int, annotations map[string]string) {
-	ing := framework.NewSingleIngress(host, "/", host, f.Namespace, service, port, annotations)
-	f.EnsureIngress(ing)
-
-	f.WaitForNginxServer(host,
-		func(server string) bool {
-			return strings.Contains(server, fmt.Sprintf("server_name %v", host))
-		})
-}
-
-func extractInfluxDBMeasurements(f *framework.Framework) (string, error) {
-	l, err := f.KubeClientSet.CoreV1().Pods(f.Namespace).List(context.TODO(), metav1.ListOptions{
-		LabelSelector: "app=influxdb",
-	})
-	if err != nil {
-		return "", err
-	}
-
-	if len(l.Items) == 0 {
-		return "", err
-	}
-
-	cmd := "influx -database 'nginx' -execute 'select * from requests' -format 'json' -pretty"
-
-	var pod *corev1.Pod
-	for _, p := range l.Items {
-		pod = &p
-		break
-	}
-
-	if pod == nil {
-		return "", fmt.Errorf("no influxdb pods found")
-	}
-
-	o, err := execInfluxDBCommand(pod, cmd)
-	if err != nil {
-		return "", err
-	}
-
-	return o, nil
-}
-
-func execInfluxDBCommand(pod *corev1.Pod, command string) (string, error) {
-	var (
-		execOut bytes.Buffer
-		execErr bytes.Buffer
-	)
-
-	cmd := exec.Command("/bin/bash", "-c", fmt.Sprintf("%v exec --namespace %s %s -- %s", framework.KubectlPath, pod.Namespace, pod.Name, command))
-	cmd.Stdout = &execOut
-	cmd.Stderr = &execErr
-
-	err := cmd.Run()
-
-	if execErr.Len() > 0 {
-		return "", fmt.Errorf("stderr: %v", execErr.String())
-	}
-
-	if err != nil {
-		return "", fmt.Errorf("could not execute '%s %s': %v", cmd.Path, cmd.Args, err)
-	}
-
-	return execOut.String(), nil
-}
diff --git a/test/e2e/framework/influxdb.go b/test/e2e/framework/influxdb.go
deleted file mode 100644
index 43a5702e6..000000000
--- a/test/e2e/framework/influxdb.go
+++ /dev/null
@@ -1,141 +0,0 @@
-/*
-Copyright 2018 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package framework
-
-import (
-	"github.com/onsi/ginkgo/v2"
-	"github.com/stretchr/testify/assert"
-	appsv1 "k8s.io/api/apps/v1"
-	corev1 "k8s.io/api/core/v1"
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-	"k8s.io/apimachinery/pkg/fields"
-)
-
-const influxConfig = `
-reporting-disabled = true
-bind-address = "0.0.0.0:8088"
-
-[meta]
-  dir = "/var/lib/influxdb/meta"
-  retention-autocreate = true
-  logging-enabled = true
-
-[data]
-  dir = "/var/lib/influxdb/data"
-  index-version = "inmem"
-  wal-dir = "/var/lib/influxdb/wal"
-  wal-fsync-delay = "0s"
-  query-log-enabled = true
-  cache-max-memory-size = 1073741824
-  cache-snapshot-memory-size = 26214400
-  cache-snapshot-write-cold-duration = "10m0s"
-  compact-full-write-cold-duration = "4h0m0s"
-  max-series-per-database = 1000000
-  max-values-per-tag = 100000
-  max-concurrent-compactions = 0
-  trace-logging-enabled = false
-
-[[udp]]
-  enabled = true
-  bind-address = ":8089"
-  database = "nginx"
-`
-
-// NewInfluxDBDeployment creates an InfluxDB server configured to reply
-// on 8086/tcp and 8089/udp
-func (f *Framework) NewInfluxDBDeployment() {
-	configuration := &corev1.ConfigMap{
-		ObjectMeta: metav1.ObjectMeta{
-			Name:      "influxdb-config",
-			Namespace: f.Namespace,
-		},
-		Data: map[string]string{
-			"influxd.conf": influxConfig,
-		},
-	}
-
-	f.EnsureConfigMap(configuration)
-
-	deployment := &appsv1.Deployment{
-		ObjectMeta: metav1.ObjectMeta{
-			Name:      "influxdb",
-			Namespace: f.Namespace,
-		},
-		Spec: appsv1.DeploymentSpec{
-			Replicas: NewInt32(1),
-			Selector: &metav1.LabelSelector{
-				MatchLabels: map[string]string{
-					"app": "influxdb",
-				},
-			},
-			Template: corev1.PodTemplateSpec{
-				ObjectMeta: metav1.ObjectMeta{
-					Labels: map[string]string{
-						"app": "influxdb",
-					},
-				},
-				Spec: corev1.PodSpec{
-					TerminationGracePeriodSeconds: NewInt64(0),
-					Volumes: []corev1.Volume{
-						{
-							Name: "influxdb-config",
-							VolumeSource: corev1.VolumeSource{
-								ConfigMap: &corev1.ConfigMapVolumeSource{
-									LocalObjectReference: corev1.LocalObjectReference{
-										Name: "influxdb-config",
-									},
-								},
-							},
-						},
-					},
-					Containers: []corev1.Container{
-						{
-							Name:    "influxdb",
-							Image:   "docker.io/influxdb:1.5",
-							Env:     []corev1.EnvVar{},
-							Command: []string{"influxd", "-config", "/influxdb-config/influxd.conf"},
-							VolumeMounts: []corev1.VolumeMount{
-								{
-									Name:      "influxdb-config",
-									ReadOnly:  true,
-									MountPath: "/influxdb-config",
-								},
-							},
-							Ports: []corev1.ContainerPort{
-								{
-									Name:          "http",
-									ContainerPort: 8086,
-								},
-								{
-									Name:          "udp",
-									ContainerPort: 8089,
-								},
-							},
-						},
-					},
-				},
-			},
-		},
-	}
-
-	d := f.EnsureDeployment(deployment)
-
-	err := waitForPodsReady(f.KubeClientSet, DefaultTimeout, 1, f.Namespace, metav1.ListOptions{
-		LabelSelector: fields.SelectorFromSet(fields.Set(d.Spec.Template.ObjectMeta.Labels)).String(),
-	})
-	assert.Nil(ginkgo.GinkgoT(), err, "waiting for influxdb pod to become ready")
-}

From 11419a68373d3b1edf98e1812ed91e6097b3c6b4 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 16 Apr 2023 21:32:43 -0300
Subject: [PATCH 0723/1641] Fastcgi configmap should be on the same namespace
 of ingress (#9863)

---
 internal/ingress/annotations/fastcgi/main.go  |  6 ++--
 .../ingress/annotations/fastcgi/main_test.go  | 30 +++++++++++++++----
 2 files changed, 28 insertions(+), 8 deletions(-)

diff --git a/internal/ingress/annotations/fastcgi/main.go b/internal/ingress/annotations/fastcgi/main.go
index b32b85997..84bac4109 100644
--- a/internal/ingress/annotations/fastcgi/main.go
+++ b/internal/ingress/annotations/fastcgi/main.go
@@ -88,11 +88,11 @@ func (a fastcgi) Parse(ing *networking.Ingress) (interface{}, error) {
 		}
 	}
 
-	if cmns == "" {
-		cmns = ing.Namespace
+	if cmns != "" && cmns != ing.Namespace {
+		return fcgiConfig, fmt.Errorf("different namespace is not supported on fast_cgi param configmap")
 	}
 
-	cm = fmt.Sprintf("%v/%v", cmns, cmn)
+	cm = fmt.Sprintf("%v/%v", ing.Namespace, cmn)
 	cmap, err := a.r.GetConfigMap(cm)
 	if err != nil {
 		return fcgiConfig, ing_errors.LocationDenied{
diff --git a/internal/ingress/annotations/fastcgi/main_test.go b/internal/ingress/annotations/fastcgi/main_test.go
index 26d85e7ce..35c5bbc12 100644
--- a/internal/ingress/annotations/fastcgi/main_test.go
+++ b/internal/ingress/annotations/fastcgi/main_test.go
@@ -17,13 +17,14 @@ limitations under the License.
 package fastcgi
 
 import (
+	"fmt"
 	"testing"
 
 	api "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/client-go/tools/cache"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
-	"k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
@@ -51,14 +52,19 @@ type mockConfigMap struct {
 }
 
 func (m mockConfigMap) GetConfigMap(name string) (*api.ConfigMap, error) {
-	if name != "default/demo-configmap" {
-		return nil, errors.Errorf("there is no configmap with name %v", name)
+	if name != "default/demo-configmap" && name != "otherns/demo-configmap" {
+		return nil, fmt.Errorf("there is no configmap with name %v", name)
+	}
+
+	cmns, cmn, err := cache.SplitMetaNamespaceKey(name)
+	if err != nil {
+		return nil, fmt.Errorf("invalid configmap name")
 	}
 
 	return &api.ConfigMap{
 		ObjectMeta: meta_v1.ObjectMeta{
-			Namespace: api.NamespaceDefault,
-			Name:      "demo-secret",
+			Namespace: cmns,
+			Name:      cmn,
 		},
 		Data: map[string]string{"REDIRECT_STATUS": "200", "SERVER_NAME": "$server_name"},
 	}, nil
@@ -210,6 +216,20 @@ func TestParseFastCGIParamsConfigMapAnnotationWithNS(t *testing.T) {
 	}
 }
 
+func TestParseFastCGIParamsConfigMapAnnotationWithDifferentNS(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix("fastcgi-params-configmap")] = "otherns/demo-configmap"
+	ing.SetAnnotations(data)
+
+	_, err := NewParser(&mockConfigMap{}).Parse(ing)
+	if err == nil {
+		t.Errorf("Different namespace configmap should return an error")
+	}
+
+}
+
 func TestConfigEquality(t *testing.T) {
 
 	var nilConfig *Config

From 89b8aff3976ba1128c4133b94cb24b3366d4e1b1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 17 Apr 2023 01:48:43 -0700
Subject: [PATCH 0724/1641] Bump github.com/spf13/cobra from 1.6.1 to 1.7.0
 (#9839)

Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.6.1 to 1.7.0.
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](https://github.com/spf13/cobra/compare/v1.6.1...v1.7.0)

---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 24c319bc7..210afb10a 100644
--- a/go.mod
+++ b/go.mod
@@ -20,7 +20,7 @@ require (
 	github.com/prometheus/client_golang v1.14.0
 	github.com/prometheus/client_model v0.3.0
 	github.com/prometheus/common v0.42.0
-	github.com/spf13/cobra v1.6.1
+	github.com/spf13/cobra v1.7.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.2
 	github.com/yudai/gojsondiff v1.0.0
@@ -76,7 +76,7 @@ require (
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.3.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 // indirect
-	github.com/inconshreveable/mousetrap v1.0.1 // indirect
+	github.com/inconshreveable/mousetrap v1.1.0 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
diff --git a/go.sum b/go.sum
index 8ee1dc453..36403c1d0 100644
--- a/go.sum
+++ b/go.sum
@@ -206,8 +206,8 @@ github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/imdario/mergo v0.3.15 h1:M8XP7IuFNsqUx6VPK2P9OSmsYsI/YFaGil0uD21V3dM=
 github.com/imdario/mergo v0.3.15/go.mod h1:WBLT9ZmE3lPoWsEzCh9LPo3TiwVN+ZKEjmz+hD27ysY=
-github.com/inconshreveable/mousetrap v1.0.1 h1:U3uMjPSQEBMNp1lFxmllqCPM6P5u/Xq7Pgzkat/bFNc=
-github.com/inconshreveable/mousetrap v1.0.1/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
+github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
+github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
 github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
@@ -349,8 +349,8 @@ github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6Mwd
 github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
 github.com/sirupsen/logrus v1.8.1 h1:dJKuHgqk1NNQlqoA6BTlM1Wf9DOH3NBjQyu0h9+AZZE=
 github.com/sirupsen/logrus v1.8.1/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
-github.com/spf13/cobra v1.6.1 h1:o94oiPyS4KD1mPy2fmcYYHHfCxLqYjJOhGsCHFZtEzA=
-github.com/spf13/cobra v1.6.1/go.mod h1:IOw/AERYS7UzyrGinqmz6HLUo219MORXGxhbaJUqzrY=
+github.com/spf13/cobra v1.7.0 h1:hyqWnYt1ZQShIddO5kBpj3vu05/++x6tJ6dg8EC572I=
+github.com/spf13/cobra v1.7.0/go.mod h1:uLxZILRyS/50WlhOIKD7W6V5bgeIt+4sICxh6uRMrb0=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=

From e09e40af1ad33cf748ee92502f61ec2b6f741b96 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 17 Apr 2023 01:56:43 -0700
Subject: [PATCH 0725/1641] Bump golang.org/x/crypto from 0.7.0 to 0.8.0
 (#9838)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.7.0 to 0.8.0.
- [Release notes](https://github.com/golang/crypto/releases)
- [Commits](https://github.com/golang/crypto/compare/v0.7.0...v0.8.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 10 +++++-----
 go.sum | 20 ++++++++++----------
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/go.mod b/go.mod
index 210afb10a..4779437d7 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.2
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.7.0
+	golang.org/x/crypto v0.8.0
 	google.golang.org/grpc v1.54.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -101,11 +101,11 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.8.0 // indirect
-	golang.org/x/net v0.8.0 // indirect
+	golang.org/x/net v0.9.0 // indirect
 	golang.org/x/oauth2 v0.5.0 // indirect
-	golang.org/x/sys v0.6.0 // indirect
-	golang.org/x/term v0.6.0 // indirect
-	golang.org/x/text v0.8.0 // indirect
+	golang.org/x/sys v0.7.0 // indirect
+	golang.org/x/term v0.7.0 // indirect
+	golang.org/x/text v0.9.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.6.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
diff --git a/go.sum b/go.sum
index 36403c1d0..f0aef6bc6 100644
--- a/go.sum
+++ b/go.sum
@@ -407,8 +407,8 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.7.0 h1:AvwMYaRytfdeVt3u6mLaxYtErKYjxA2OXjJ1HHq6t3A=
-golang.org/x/crypto v0.7.0/go.mod h1:pYwdfH91IfpZVANVyUOhSIPZaFoJGxTFbZhFTx+dXZU=
+golang.org/x/crypto v0.8.0 h1:pd9TJtTueMTVQXzk8E2XESSMQDj/U7OUu0PqJqPXQjQ=
+golang.org/x/crypto v0.8.0/go.mod h1:mRqEX+O9/h5TFCrQhkgjo2yKi0yYA+9ecGkdQoHrywE=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -475,8 +475,8 @@ golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.8.0 h1:Zrh2ngAOFYneWTAIAPethzeaQLuHwhuBkuV6ZiRnUaQ=
-golang.org/x/net v0.8.0/go.mod h1:QVkue5JL9kW//ek3r6jTKnTFis1tRmNAW2P1shuFdJc=
+golang.org/x/net v0.9.0 h1:aWJ/m6xSmxWBx+V0XRHTlrYrPG56jKsLdTFmsSsCzOM=
+golang.org/x/net v0.9.0/go.mod h1:d48xBJpPfHeWQsugry2m+kC02ZBRGRgulfHnEXEuWns=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -546,19 +546,19 @@ golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.6.0 h1:MVltZSvRTcU2ljQOhs94SXPftV6DCNnZViHeQps87pQ=
-golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.7.0 h1:3jlCCIQZPdOYu1h8BkNvLz8Kgwtae2cagcG/VamtZRU=
+golang.org/x/sys v0.7.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.6.0 h1:clScbb1cHjoCkyRbWwBEUZ5H/tIFu5TAXIqaZD0Gcjw=
-golang.org/x/term v0.6.0/go.mod h1:m6U89DPEgQRMq3DNkDClhWw02AUbt2daBVO4cn4Hv9U=
+golang.org/x/term v0.7.0 h1:BEvjmm5fURWqcfbSKTdpkDXYBrUS1c0m8agp14W48vQ=
+golang.org/x/term v0.7.0/go.mod h1:P32HKFT3hSsZrRxla30E9HqToFYAQPCMs/zFMBUFqPY=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.8.0 h1:57P1ETyNKtuIjB4SRd15iJxuhj8Gc416Y78H3qgMh68=
-golang.org/x/text v0.8.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
+golang.org/x/text v0.9.0 h1:2sjJmO8cDvYveuX97RDLsxlyUxLl+GHoLxBiRdHllBE=
+golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=

From 91a89bcc0c1f63045de37e5dd8a4f7b6a3a85788 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Thu, 20 Apr 2023 10:45:13 +0200
Subject: [PATCH 0726/1641] README: Update `external-dns` link. (#9866)

---
 charts/ingress-nginx/README.md        | 2 +-
 charts/ingress-nginx/README.md.gotmpl | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 44b553ece..b7c97939d 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -94,7 +94,7 @@ Previous versions of this chart had a `controller.stats.*` configuration block,
 
 ### ExternalDNS Service Configuration
 
-Add an [ExternalDNS](https://github.com/kubernetes-incubator/external-dns) annotation to the LoadBalancer service:
+Add an [ExternalDNS](https://github.com/kubernetes-sigs/external-dns) annotation to the LoadBalancer service:
 
 ```yaml
 controller:
diff --git a/charts/ingress-nginx/README.md.gotmpl b/charts/ingress-nginx/README.md.gotmpl
index 238166277..b3d35b6e7 100644
--- a/charts/ingress-nginx/README.md.gotmpl
+++ b/charts/ingress-nginx/README.md.gotmpl
@@ -91,7 +91,7 @@ Previous versions of this chart had a `controller.stats.*` configuration block,
 
 ### ExternalDNS Service Configuration
 
-Add an [ExternalDNS](https://github.com/kubernetes-incubator/external-dns) annotation to the LoadBalancer service:
+Add an [ExternalDNS](https://github.com/kubernetes-sigs/external-dns) annotation to the LoadBalancer service:
 
 ```yaml
 controller:

From 94a3264f1e09e2857c224ef28f5c7f043c72bac6 Mon Sep 17 00:00:00 2001
From: James Strong <james.strong@chainguard.dev>
Date: Thu, 20 Apr 2023 07:52:59 -0400
Subject: [PATCH 0727/1641] add puerco and cpanato as approvers

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 OWNERS_ALIASES | 9 ++++++---
 1 file changed, 6 insertions(+), 3 deletions(-)

diff --git a/OWNERS_ALIASES b/OWNERS_ALIASES
index 49806abdb..33c986f57 100644
--- a/OWNERS_ALIASES
+++ b/OWNERS_ALIASES
@@ -14,24 +14,27 @@ aliases:
   - ElvinEfendi
   - rikatz
   - strongjz
+  - cpanato
+  - puerco
   - tao12345666333
 
   ingress-nginx-reviewers:
   - ElvinEfendi
   - rikatz
   - strongjz
+  - puerco
+  - cpanato
   - tao12345666333
 
   ingress-nginx-helm-maintainers:
-  - ChiefAlexander
   - cpanato
+  - strongjz
 
   ingress-nginx-helm-reviewers:
-  - ChiefAlexander
   - cpanato
+  - strongjz
 
   ingress-nginx-docs-maintainers:
-  - IamNoah1
   - longwuyuan
   - tao12345666333
 

From ec5b4b4fd06cc590f929ca6b63d5a9013d49765b Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 21 Apr 2023 03:33:10 +0200
Subject: [PATCH 0728/1641] Update k8s versions (#9879)

* increase wait on web cert setup

Signed-off-by: James Strong <james.strong@chainguard.dev>

* add cmctl to check its working

Signed-off-by: James Strong <james.strong@chainguard.dev>

* fix wait cmd and update default k8s version

Signed-off-by: James Strong <james.strong@chainguard.dev>

* update the kubectl test commands

Signed-off-by: James Strong <james.strong@chainguard.dev>

* README: Update `external-dns` link. (#9866)

* add puerco and cpanato as approvers

Signed-off-by: James Strong <james.strong@chainguard.dev>

* update k8s versions for testing and remove cache deletion

Signed-off-by: James Strong <james.strong@chainguard.dev>

* upgrade default to 1.26 for testing

Signed-off-by: James Strong <james.strong@chainguard.dev>

---------

Signed-off-by: James Strong <james.strong@chainguard.dev>
Co-authored-by: Marco Ebert <marco@giantswarm.io>
---
 .github/workflows/ci.yaml  | 28 +++++++---------------------
 build/dev-env.sh           |  2 +-
 test/e2e/run-chart-test.sh | 13 ++++++++++---
 test/e2e/run-kind-e2e.sh   |  2 +-
 4 files changed, 19 insertions(+), 26 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 6323c65be..65e8cacff 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -193,7 +193,7 @@ jobs:
         with:
           name: docker.tar.gz
           path: docker.tar.gz
-
+          retention-days: 5
   helm:
     name: Helm chart
     runs-on: ubuntu-latest
@@ -205,7 +205,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.7, v1.25.3, v1.26.0]
+        k8s: [v1.24.12, v1.25.8, v1.26.3]
 
     steps:
       - name: Checkout
@@ -255,11 +255,6 @@ jobs:
         run: |
           kind create cluster --image=kindest/node:${{ matrix.k8s }}
 
-      - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af # v2.0.0
-        with:
-          name: docker.tar.gz
-          failOnError: false
-
       - name: Load images from cache
         run: |
           echo "loading docker images..."
@@ -285,7 +280,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.7, v1.25.3, v1.26.0]
+        k8s: [v1.24.12, v1.25.8, v1.26.3]
 
     steps:
       - name: Checkout
@@ -301,11 +296,6 @@ jobs:
         run: |
           kind create cluster --image=kindest/node:${{ matrix.k8s }} --config test/e2e/kind.yaml
 
-      - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af # v2.0.0
-        with:
-          name: docker.tar.gz
-          failOnError: false
-
       - name: Load images from cache
         run: |
           echo "loading docker images..."
@@ -327,6 +317,7 @@ jobs:
           name: e2e-test-reports-${{ matrix.k8s }}
           path: 'test/junitreports/report*.xml'
 
+
   kubernetes-chroot:
     name: Kubernetes chroot
     runs-on: ubuntu-latest
@@ -338,7 +329,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.7, v1.25.3, v1.26.0]
+        k8s: [v1.24.12, v1.25.8, v1.26.3]
 
     steps:
 
@@ -355,11 +346,6 @@ jobs:
         run: |
           kind create cluster --image=kindest/node:${{ matrix.k8s }} --config test/e2e/kind.yaml
 
-      - uses: geekyeggo/delete-artifact@54ab544f12cdb7b71613a16a2b5a37a9ade990af # v2.0.0
-        with:
-          name: docker.tar.gz
-          failOnError: false
-
       - name: Load images from cache
         run: |
           echo "loading docker images..."
@@ -375,7 +361,7 @@ jobs:
           kind get kubeconfig > $HOME/.kube/kind-config-kind
           make kind-e2e-test
 
-      - name: Uplaod e2e junit-reports
+      - name: Upload e2e junit-reports
         uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
         if: success() || failure()
         with:
@@ -461,7 +447,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.7, v1.25.3, v1.26.0]
+        k8s: [v1.24.12, v1.25.8, v1.26.3]
 
     steps:
       - name: Checkout
diff --git a/build/dev-env.sh b/build/dev-env.sh
index 09609367a..3d21b7e15 100755
--- a/build/dev-env.sh
+++ b/build/dev-env.sh
@@ -62,7 +62,7 @@ echo "[dev-env] building image"
 make build image
 docker tag "${REGISTRY}/controller:${TAG}" "${DEV_IMAGE}"
 
-export K8S_VERSION=${K8S_VERSION:-v1.25.2@sha256:9be91e9e9cdf116809841fc77ebdb8845443c4c72fe5218f3ae9eb57fdb4bace}
+export K8S_VERSION=${K8S_VERSION:-v1.26.3@sha256:61b92f38dff6ccc29969e7aa154d34e38b89443af1a2c14e6cfbd2df6419c66f}
 
 KIND_CLUSTER_NAME="ingress-nginx-dev"
 
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 813e296cf..6efa63eb2 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -62,7 +62,7 @@ export KUBECONFIG="${KUBECONFIG:-$HOME/.kube/kind-config-$KIND_CLUSTER_NAME}"
 if [ "${SKIP_CLUSTER_CREATION:-false}" = "false" ]; then
   echo "[dev-env] creating Kubernetes cluster with kind"
 
-  export K8S_VERSION=${K8S_VERSION:-v1.21.1@sha256:69860bda5563ac81e3c0057d654b5253219618a22ec3a346306239bba8cfa1a6}
+  export K8S_VERSION=${K8S_VERSION:-v1.26.3@sha256:61b92f38dff6ccc29969e7aa154d34e38b89443af1a2c14e6cfbd2df6419c66f}
 
   kind create cluster \
     --verbosity=${KIND_LOG_LEVEL} \
@@ -91,9 +91,16 @@ echo "[dev-env] copying docker images to cluster..."
 kind load docker-image --name="${KIND_CLUSTER_NAME}" --nodes=${KIND_WORKERS} ${REGISTRY}/controller:${TAG}
 
 if [ "${SKIP_CERT_MANAGER_CREATION:-false}" = "false" ]; then
+  curl -fsSL -o cmctl.tar.gz https://github.com/cert-manager/cert-manager/releases/download/v1.11.1/cmctl-linux-amd64.tar.gz
+  tar xzf cmctl.tar.gz
+  chmod +x cmctl
+ ./cmctl help
   echo "[dev-env] apply cert-manager ..."
-  kubectl apply --wait -f https://github.com/cert-manager/cert-manager/releases/download/v1.10.0/cert-manager.yaml
-  sleep 10
+  kubectl apply --wait -f https://github.com/cert-manager/cert-manager/releases/download/v1.11.0/cert-manager.yaml
+  kubectl wait --timeout=30s --for=condition=available deployment/cert-manager -n cert-manager
+  kubectl get validatingwebhookconfigurations cert-manager-webhook -ojson | jq '.webhooks[].clientConfig'
+  kubectl get endpoints -n cert-manager cert-manager-webhook
+  ./cmctl check api --wait=2m
 fi
 
 echo "[dev-env] running helm chart e2e tests..."
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index d3ea18b6d..fe7550360 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -63,7 +63,7 @@ echo "Running e2e with nginx base image ${NGINX_BASE_IMAGE}"
 if [ "${SKIP_CLUSTER_CREATION}" = "false" ]; then
   echo "[dev-env] creating Kubernetes cluster with kind"
 
-  export K8S_VERSION=${K8S_VERSION:-v1.25.2@sha256:9be91e9e9cdf116809841fc77ebdb8845443c4c72fe5218f3ae9eb57fdb4bace}
+  export K8S_VERSION=${K8S_VERSION:-v1.26.3@sha256:61b92f38dff6ccc29969e7aa154d34e38b89443af1a2c14e6cfbd2df6419c66f}
 
   # delete the cluster if it exists
   if kind get clusters | grep "${KIND_CLUSTER_NAME}"; then

From 156273bf394a56ce3014a1fbeab1512b8f2456a5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 22 Apr 2023 02:21:12 -0700
Subject: [PATCH 0729/1641] Bump actions/checkout from 3.5.0 to 3.5.2 (#9870)

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.0 to 3.5.2.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/8f4b7f84864484a7bf31766abe9204da3cbe65b3...8e5e7e5ab8b370d6c329ec480221332ada57f0ab)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 22 +++++++++++-----------
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  2 +-
 .github/workflows/vulnerability-scans.yaml |  4 ++--
 8 files changed, 21 insertions(+), 21 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 65e8cacff..edef01915 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -40,7 +40,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -66,7 +66,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - name: Run Gosec Security Scanner
         uses: securego/gosec@a459eb0ba387d9bd083d5c2e2354dbeef2465038 # v2.15.0
@@ -83,7 +83,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
       
       - name: Set up Go
         id: go
@@ -102,7 +102,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
       
       - name: Set up Go
         id: go
@@ -121,7 +121,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
       
       - name: Set up Go
         id: go
@@ -142,7 +142,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - name: Set up Go
         id: go
@@ -209,7 +209,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - name: Setup Go
         uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
@@ -284,7 +284,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -334,7 +334,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -378,7 +378,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
@@ -451,7 +451,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index e18f71a20..de9243f16 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@f46c48ed6d4f1227fb2d9ea62bf6bcbed315589e # v3.0.4
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 5a0f6bb7b..1a2ceaa83 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index e3fa2d779..2a82fa124 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - name: Run Artifact Hub lint
         run: |
@@ -61,7 +61,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 4b7e000a5..9e87bf1b2 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index c56535223..f77c59937 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -17,7 +17,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index b0ce14f51..72acf608a 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
         with:
           persist-credentials: false
 
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index aae43d03c..acd5a13f8 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@8f4b7f84864484a7bf31766abe9204da3cbe65b3 # v3.5.0
+        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - shell: bash
         id: test

From 4053896179643e235534b145d68bbad6fc4b5b1c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Apr 2023 04:11:02 -0700
Subject: [PATCH 0730/1641] Bump github.com/opencontainers/runc from 1.1.5 to
 1.1.6 (#9867)

Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.5 to 1.1.6.
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/v1.1.6/CHANGELOG.md)
- [Commits](https://github.com/opencontainers/runc/compare/v1.1.5...v1.1.6)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  2 +-
 go.sum | 25 ++-----------------------
 2 files changed, 3 insertions(+), 24 deletions(-)

diff --git a/go.mod b/go.mod
index 4779437d7..1cc9a00dd 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo/v2 v2.9.0
-	github.com/opencontainers/runc v1.1.5
+	github.com/opencontainers/runc v1.1.6
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.14.0
 	github.com/prometheus/client_model v0.3.0
diff --git a/go.sum b/go.sum
index f0aef6bc6..b3c9af550 100644
--- a/go.sum
+++ b/go.sum
@@ -52,17 +52,13 @@ github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA
 github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
 github.com/cespare/xxhash/v2 v2.2.0 h1:DC2CZ1Ep5Y4k3ZQ899DldepgrayRUGE6BBZ/cd9Cj44=
 github.com/cespare/xxhash/v2 v2.2.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
-github.com/checkpoint-restore/go-criu/v5 v5.3.0/go.mod h1:E/eQpaFtUKGOOSEBZgmKAcn+zUUwWxqcaKZlF54wK8E=
 github.com/chzyer/logex v1.1.10/go.mod h1:+Ywpsq7O8HXn0nuIou7OrIPyXbp3wmkHB+jjWRnGsAI=
 github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5PlCu98SY8svDHJxuZscDgtXS6KTTbou5AhLI=
 github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU=
-github.com/cilium/ebpf v0.7.0/go.mod h1:/oI2+1shJiTGAMgl6/RgJr36Eo1jzrRcAWbcXO2usCA=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
 github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc=
-github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
 github.com/coreos/go-systemd/v22 v22.3.2 h1:D9/bQk5vlXQFZ6Kwuu6zaiXJ9oTPe68++AzAJc1DzSI=
 github.com/coreos/go-systemd/v22 v22.3.2/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
-github.com/cpuguy83/go-md2man/v2 v2.0.0-20190314233015-f79a8a8ca69d/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
 github.com/cpuguy83/go-md2man/v2 v2.0.2/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/cyphar/filepath-securejoin v0.2.3 h1:YX6ebbZCZP7VkM3scTTokDgBL2TY741X51MTk3ycuNI=
@@ -70,7 +66,6 @@ github.com/cyphar/filepath-securejoin v0.2.3/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxG
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/docker/go-units v0.4.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
 github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815/go.mod h1:WwZ+bS3ebgob9U8Nd0kOddGdZWjyMGR8Wziv+TBNwSE=
 github.com/eapache/channels v1.1.0 h1:F1taHcn7/F0i8DYqKXJnyhJcVpp2kgFcNePxXtnyu4k=
 github.com/eapache/channels v1.1.0/go.mod h1:jMm2qB5Ubtg9zLd+inMZd2/NUvXgzmWXsDaLyQIGfH0=
@@ -86,7 +81,6 @@ github.com/evanphx/json-patch v4.12.0+incompatible h1:4onqiflcdA9EOZ4RxV643DvftH
 github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/evanphx/json-patch/v5 v5.6.0 h1:b91NhWfaz02IuVxO9faSllyAtNXHMPkC5J8sJCLunww=
 github.com/evanphx/json-patch/v5 v5.6.0/go.mod h1:G79N1coSVB93tBe7j6PhzjmR3/2VvlbKOFpnXhI9Bw4=
-github.com/frankban/quicktest v1.11.3/go.mod h1:wRf/ReqHper53s+kmmSZizM8NamnL3IM0I9ntUbOk+k=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
 github.com/fsnotify/fsnotify v1.6.0 h1:n+5WquG0fcWoWp6xPWfHdbskMCQaFnG6PfBrh1Ky4HY=
@@ -271,7 +265,6 @@ github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00 h1:n6/
 github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00/go.mod h1:Pm3mSP3c5uWn86xMLZ5Sa7JB9GsEZySvHYXCTK4E9q4=
 github.com/moul/pb v0.0.0-20220425114252-bca18df4138c h1:1STmblv9zmHLDpru4dbnf1PNL6wrrZNf7yBH+SfQU+s=
 github.com/moul/pb v0.0.0-20220425114252-bca18df4138c/go.mod h1:jE2HT8eoucYyUPBFJMreiVlC3KPHkDMtN8wn+ef7Y64=
-github.com/mrunalp/fileutils v0.5.0/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq1c1nUAm88MOHcQC9l5mIlSMApZMrHA=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/mwitkow/go-conntrack v0.0.0-20161129095857-cc309e4a2223/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
@@ -294,11 +287,10 @@ github.com/onsi/ginkgo/v2 v2.9.0/go.mod h1:4xkjoL/tZv4SMWeww56BU5kAt19mVB47gTWxm
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.27.1 h1:rfztXRbg6nv/5f+Raen9RcGoSecHIFgBBLQK3Wdj754=
-github.com/opencontainers/runc v1.1.5 h1:L44KXEpKmfWDcS02aeGm8QNTFXTo2D+8MYGDIJ/GDEs=
-github.com/opencontainers/runc v1.1.5/go.mod h1:1J5XiS+vdZ3wCyZybsuxXZWGrgSr8fFJHLXuG2PsnNg=
+github.com/opencontainers/runc v1.1.6 h1:XbhB8IfG/EsnhNvZtNdLB0GBw92GYEFvKlhaJk9jUgA=
+github.com/opencontainers/runc v1.1.6/go.mod h1:CbUumNnWCuTGFukNXahoo/RFBZvDAgRh/smNYNOhA50=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
-github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
 github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
@@ -338,12 +330,9 @@ github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFR
 github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTEfhy4qGm1nDQc=
 github.com/rogpeppe/go-internal v1.8.0 h1:FCbCCtXNOY3UtUuHUYaghJg4y7Fd14rXifAYUAtL9R8=
 github.com/rogpeppe/go-internal v1.8.0/go.mod h1:WmiCO8CzOY8rg0OYDC4/i/2WRWAB6poM+XZ2dLUbcbE=
-github.com/russross/blackfriday/v2 v2.0.1/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
-github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
 github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
 github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=
-github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
 github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
 github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE=
 github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
@@ -370,11 +359,7 @@ github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/
 github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/stretchr/testify v1.8.2 h1:+h33VjcLVPDHtOdpUCuF+7gSuG3yGIftsP1YvFihtJ8=
 github.com/stretchr/testify v1.8.2/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
-github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
-github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
-github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
-github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
 github.com/xlab/treeprint v1.1.0 h1:G/1DjNkPpfZCFt9CSh6b5/nY4VimlbHF3Rh4obvtzDk=
 github.com/xlab/treeprint v1.1.0/go.mod h1:gj5Gd3gPdKtR1ikdDK6fnFLdmIS0X30kTTuNd/WEJu0=
 github.com/yudai/gojsondiff v1.0.0 h1:27cbfqXLVEJ1o8I6v3y9lg8Ydm53EKqHXAOMxEGlCOA=
@@ -472,7 +457,6 @@ golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81R
 golang.org/x/net v0.0.0-20200707034311-ab3426394381/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.9.0 h1:aWJ/m6xSmxWBx+V0XRHTlrYrPG56jKsLdTFmsSsCzOM=
@@ -506,7 +490,6 @@ golang.org/x/sys v0.0.0-20190422165155-953cdadca894/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20190502145724-3ef323f4f1fd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190507160741-ecd444e8653b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190606165138-5da285871e9c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190606203320-7fc4e5ec1444/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190726091711-fc99dfbffb4e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -514,7 +497,6 @@ golang.org/x/sys v0.0.0-20191001151750-bb3f8db39f24/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20191002063906-3421d5a6bb1c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191026070338-33540a1f6037/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191115151921-52ab43148777/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191228213918-04cbcbbfeed8/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -541,9 +523,7 @@ golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210906170528-6f6e22806c34/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20211116061358-0a5406a5449c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.7.0 h1:3jlCCIQZPdOYu1h8BkNvLz8Kgwtae2cagcG/VamtZRU=
@@ -699,7 +679,6 @@ google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGj
 google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
 google.golang.org/protobuf v1.28.1 h1:d0NfwRgPtno5B1Wa6L2DAG+KivqkdutMf1UhdNx175w=
 google.golang.org/protobuf v1.28.1/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=

From 23a2b2473e2de0261c6d5faad82cc03d49cffb45 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Apr 2023 05:53:02 -0700
Subject: [PATCH 0731/1641] Bump aquasecurity/trivy-action from 0.9.2 to 0.10.0
 (#9888)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.9.2 to 0.10.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/1f0aa582c8c8f5f7639610d6d38baddfea4fdcee...e5f43133f6e8736992c9f3c1b3296e24b37e17f2)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index acd5a13f8..069c9f974 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@1f0aa582c8c8f5f7639610d6d38baddfea4fdcee # v0.9.2
+        uses: aquasecurity/trivy-action@e5f43133f6e8736992c9f3c1b3296e24b37e17f2 # v0.10.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'

From 9d9ff90eddcb8d514ecceb78b432e75f02a9b917 Mon Sep 17 00:00:00 2001
From: Elvin Efendi <elvin.efendiyev@gmail.com>
Date: Mon, 24 Apr 2023 08:55:02 -0400
Subject: [PATCH 0732/1641] I have not been able to fulfill my maintainer
 responsibilities for a while already, making it official now. (#9883)

* I have not been able to fulfill my maintainer responsibilities for a while already, making it official now.

* Make ElvinEfendi emeritus approver
---
 OWNERS         | 1 +
 OWNERS_ALIASES | 2 --
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/OWNERS b/OWNERS
index 71f3328f1..da1da1b2e 100644
--- a/OWNERS
+++ b/OWNERS
@@ -9,3 +9,4 @@ reviewers:
 emeritus_approvers:
 - aledbf  # 2020-04-02
 - bowei # 2022-10-12
+- ElvinEfendi # 2023-04-23
diff --git a/OWNERS_ALIASES b/OWNERS_ALIASES
index 33c986f57..cd9001dd2 100644
--- a/OWNERS_ALIASES
+++ b/OWNERS_ALIASES
@@ -11,7 +11,6 @@ aliases:
   - strongjz
 
   ingress-nginx-maintainers:
-  - ElvinEfendi
   - rikatz
   - strongjz
   - cpanato
@@ -19,7 +18,6 @@ aliases:
   - tao12345666333
 
   ingress-nginx-reviewers:
-  - ElvinEfendi
   - rikatz
   - strongjz
   - puerco

From d7ba103515fe6449d6c88a5d726827a8387faa41 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Apr 2023 07:03:04 -0700
Subject: [PATCH 0733/1641] Bump github.com/prometheus/client_golang from
 1.14.0 to 1.15.0 (#9868)

Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.14.0 to 1.15.0.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.14.0...v1.15.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 13 +++++++------
 2 files changed, 10 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 1cc9a00dd..75b0e8e1f 100644
--- a/go.mod
+++ b/go.mod
@@ -17,7 +17,7 @@ require (
 	github.com/onsi/ginkgo/v2 v2.9.0
 	github.com/opencontainers/runc v1.1.6
 	github.com/pmezard/go-difflib v1.0.0
-	github.com/prometheus/client_golang v1.14.0
+	github.com/prometheus/client_golang v1.15.0
 	github.com/prometheus/client_model v0.3.0
 	github.com/prometheus/common v0.42.0
 	github.com/spf13/cobra v1.7.0
@@ -66,7 +66,7 @@ require (
 	github.com/godbus/dbus/v5 v5.0.6 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
-	github.com/golang/protobuf v1.5.2 // indirect
+	github.com/golang/protobuf v1.5.3 // indirect
 	github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7 // indirect
 	github.com/google/btree v1.0.1 // indirect
 	github.com/google/gnostic v0.5.7-v3refs // indirect
@@ -110,7 +110,7 @@ require (
 	golang.org/x/tools v0.6.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto v0.0.0-20230110181048-76db0878b65f // indirect
-	google.golang.org/protobuf v1.28.1 // indirect
+	google.golang.org/protobuf v1.30.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
diff --git a/go.sum b/go.sum
index b3c9af550..49a716752 100644
--- a/go.sum
+++ b/go.sum
@@ -148,8 +148,9 @@ github.com/golang/protobuf v1.4.1/go.mod h1:U8fpvMrcmy5pZrNK1lt4xCsGvpyWQ/VVv6QD
 github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.4.3/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
-github.com/golang/protobuf v1.5.2 h1:ROPKBNFfQgOUMifHyP+KYbvpjbdoFNs+aK7DXlji0Tw=
 github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
+github.com/golang/protobuf v1.5.3 h1:KhyjKVUg7Usr/dYsdSqoFveMYd5ko72D+zANwlG1mmg=
+github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7 h1:oKYOfNR7Hp6XpZ4JqolL5u642Js5Z0n7psPVl+S5heo=
 github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7/go.mod h1:aii0r/K0ZnHv7G0KF7xy1v0A7s2Ljrb5byB7MO5p6TU=
 github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
@@ -223,8 +224,8 @@ github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515/go.mod h1:+0opPa2QZZtGFB
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
 github.com/kr/pretty v0.2.0/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
 github.com/kr/pretty v0.2.1/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
-github.com/kr/pretty v0.3.0 h1:WgNl7dwNpEZ6jJ9k1snq4pZsg7DOEN8hP9Xw0Tsjwk0=
 github.com/kr/pretty v0.3.0/go.mod h1:640gp4NfQd8pI5XOwp5fnNeVWj67G7CFk/SaSQn7NBk=
+github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
@@ -304,8 +305,8 @@ github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXP
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
-github.com/prometheus/client_golang v1.14.0 h1:nJdhIvne2eSX/XRAFV9PcvFFRbrjbcTUj0VP62TMhnw=
-github.com/prometheus/client_golang v1.14.0/go.mod h1:8vpkKitgIVNcqrRBWh1C4TIUQgYNtG/XQE4E/Zae36Y=
+github.com/prometheus/client_golang v1.15.0 h1:5fCgGYogn0hFdhyhLbw7hEsWxufKtY9klyvdNfFlFhM=
+github.com/prometheus/client_golang v1.15.0/go.mod h1:e9yaBhRPU2pPNsZwE+JdQl0KEt1N9XgF6zxWmaC0xOk=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
@@ -679,8 +680,8 @@ google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGj
 google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.28.1 h1:d0NfwRgPtno5B1Wa6L2DAG+KivqkdutMf1UhdNx175w=
-google.golang.org/protobuf v1.28.1/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.30.0 h1:kPPoIgf3TsEvrm0PFe15JQ+570QVxYzEvvHqChK+cng=
+google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=

From 01d2646538242a6409be3b8cf1b29d7b92c090f0 Mon Sep 17 00:00:00 2001
From: plynch-magnolia <patrick.lynch@magnolia-cms.com>
Date: Mon, 24 Apr 2023 11:33:02 -0400
Subject: [PATCH 0734/1641] Adding resource type to default HPA configuration
 to resolve issues with Terraform helm chart usage (#9803)

---
 charts/ingress-nginx/templates/default-backend-hpa.yaml | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/templates/default-backend-hpa.yaml b/charts/ingress-nginx/templates/default-backend-hpa.yaml
index f9ae0b276..924125f07 100644
--- a/charts/ingress-nginx/templates/default-backend-hpa.yaml
+++ b/charts/ingress-nginx/templates/default-backend-hpa.yaml
@@ -22,12 +22,16 @@ spec:
     - type: Resource
       resource:
         name: cpu
-        targetAverageUtilization: {{ . }}
+        target:
+          type: Utilization
+          averageUtilization: {{ . }}
 {{- end }}
 {{- with .Values.defaultBackend.autoscaling.targetMemoryUtilizationPercentage }}
     - type: Resource
       resource:
         name: memory
-        targetAverageUtilization: {{ . }}
+        target:
+          type: Utilization
+          averageUtilization: {{ . }}
 {{- end }}
 {{- end }}

From 405a5aa44c828d151c62d914e68cd39954370152 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Mon, 24 Apr 2023 11:33:50 -0500
Subject: [PATCH 0735/1641] add some e2e tests (unfinished) + fix
 findMountPoint bug

---
 pkg/util/runtime/cpu_linux.go | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index 5228c93a2..4d755f4c5 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -38,7 +38,6 @@ import (
 func NumCPU() int {
 	cpus := runtime.NumCPU()
 
-	cgroupPath, err := libcontainercgroups.FindCgroupMountpoint("", "cpu")
 	if err != nil {
 		return cpus
 	}
@@ -48,10 +47,11 @@ func NumCPU() int {
 	cpuPeriod := int64(-1)
 
 	if cgroupVersion == 1 {
+		cgroupPath, err := libcontainercgroups.FindCgroupMountpoint("", "cpu")
 		cpuQuota = readCgroupFileToInt64(cgroupPath, "cpu.cfs_quota_us")
 		cpuPeriod = readCgroupFileToInt64(cgroupPath, "cpu.cfs_period_us")
 	} else if cgroupVersion == 2 {
-		cpuQuota, cpuPeriod = readCgroup2FileToInt64Tuple(cgroupPath, "cpu.max")
+		cpuQuota, cpuPeriod = readCgroup2FileToInt64Tuple("cpu.max")
 	}
 
 	if cpuQuota == -1 || cpuPeriod == -1 {
@@ -71,7 +71,7 @@ func getCgroupVersion() int64 {
 }
 
 func readCgroup2FileToInt64Tuple(cgroupPath, cgroupFile string) (int64, int64) {
-	contents, err := os.ReadFile(filepath.Join(cgroupPath, cgroupFile))
+	contents, err := os.ReadFile(filepath.Join("/sys/fs/cgroup/", cgroupFile))
 
 	if err != nil {
 		return -1, -1

From aa9a87621742343c8188cc7f89be234e9f956e8f Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Mon, 24 Apr 2023 11:34:21 -0500
Subject: [PATCH 0736/1641] typo

---
 pkg/util/runtime/cpu_linux.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index 4d755f4c5..b4d6997b9 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -70,7 +70,7 @@ func getCgroupVersion() int64 {
 	}
 }
 
-func readCgroup2FileToInt64Tuple(cgroupPath, cgroupFile string) (int64, int64) {
+func readCgroup2FileToInt64Tuple(cgroupFile string) (int64, int64) {
 	contents, err := os.ReadFile(filepath.Join("/sys/fs/cgroup/", cgroupFile))
 
 	if err != nil {

From fa44f2f7cd4ee49864fceddfbe517d9918d85c1d Mon Sep 17 00:00:00 2001
From: Carlos Tadeu Panato Junior <ctadeu@gmail.com>
Date: Tue, 25 Apr 2023 15:12:17 +0200
Subject: [PATCH 0737/1641] update k8s.io dependecies to v0.26.4 (#9893)

Signed-off-by: cpanato <ctadeu@gmail.com>
---
 go.mod | 16 ++++++++--------
 go.sum | 32 ++++++++++++++++----------------
 2 files changed, 24 insertions(+), 24 deletions(-)

diff --git a/go.mod b/go.mod
index 75b0e8e1f..54929c1a7 100644
--- a/go.mod
+++ b/go.mod
@@ -30,14 +30,14 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.26.3
-	k8s.io/apiextensions-apiserver v0.26.1
-	k8s.io/apimachinery v0.26.3
-	k8s.io/apiserver v0.26.1
-	k8s.io/cli-runtime v0.26.0
-	k8s.io/client-go v0.26.3
-	k8s.io/code-generator v0.26.1
-	k8s.io/component-base v0.26.3
+	k8s.io/api v0.26.4
+	k8s.io/apiextensions-apiserver v0.26.4
+	k8s.io/apimachinery v0.26.4
+	k8s.io/apiserver v0.26.4
+	k8s.io/cli-runtime v0.26.4
+	k8s.io/client-go v0.26.4
+	k8s.io/code-generator v0.26.4
+	k8s.io/component-base v0.26.4
 	k8s.io/klog/v2 v2.90.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.14.6
diff --git a/go.sum b/go.sum
index 49a716752..4d2b69333 100644
--- a/go.sum
+++ b/go.sum
@@ -720,22 +720,22 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.26.3 h1:emf74GIQMTik01Aum9dPP0gAypL8JTLl/lHa4V9RFSU=
-k8s.io/api v0.26.3/go.mod h1:PXsqwPMXBSBcL1lJ9CYDKy7kIReUydukS5JiRlxC3qE=
-k8s.io/apiextensions-apiserver v0.26.1 h1:cB8h1SRk6e/+i3NOrQgSFij1B2S0Y0wDoNl66bn8RMI=
-k8s.io/apiextensions-apiserver v0.26.1/go.mod h1:AptjOSXDGuE0JICx/Em15PaoO7buLwTs0dGleIHixSM=
-k8s.io/apimachinery v0.26.3 h1:dQx6PNETJ7nODU3XPtrwkfuubs6w7sX0M8n61zHIV/k=
-k8s.io/apimachinery v0.26.3/go.mod h1:ats7nN1LExKHvJ9TmwootT00Yz05MuYqPXEXaVeOy5I=
-k8s.io/apiserver v0.26.1 h1:6vmnAqCDO194SVCPU3MU8NcDgSqsUA62tBUSWrFXhsc=
-k8s.io/apiserver v0.26.1/go.mod h1:wr75z634Cv+sifswE9HlAo5FQ7UoUauIICRlOE+5dCg=
-k8s.io/cli-runtime v0.26.0 h1:aQHa1SyUhpqxAw1fY21x2z2OS5RLtMJOCj7tN4oq8mw=
-k8s.io/cli-runtime v0.26.0/go.mod h1:o+4KmwHzO/UK0wepE1qpRk6l3o60/txUZ1fEXWGIKTY=
-k8s.io/client-go v0.26.3 h1:k1UY+KXfkxV2ScEL3gilKcF7761xkYsSD6BC9szIu8s=
-k8s.io/client-go v0.26.3/go.mod h1:ZPNu9lm8/dbRIPAgteN30RSXea6vrCpFvq+MateTUuQ=
-k8s.io/code-generator v0.26.1 h1:dusFDsnNSKlMFYhzIM0jAO1OlnTN5WYwQQ+Ai12IIlo=
-k8s.io/code-generator v0.26.1/go.mod h1:OMoJ5Dqx1wgaQzKgc+ZWaZPfGjdRq/Y3WubFrZmeI3I=
-k8s.io/component-base v0.26.3 h1:oC0WMK/ggcbGDTkdcqefI4wIZRYdK3JySx9/HADpV0g=
-k8s.io/component-base v0.26.3/go.mod h1:5kj1kZYwSC6ZstHJN7oHBqcJC6yyn41eR+Sqa/mQc8E=
+k8s.io/api v0.26.4 h1:qSG2PmtcD23BkYiWfoYAcak870eF/hE7NNYBYavTT94=
+k8s.io/api v0.26.4/go.mod h1:WwKEXU3R1rgCZ77AYa7DFksd9/BAIKyOmRlbVxgvjCk=
+k8s.io/apiextensions-apiserver v0.26.4 h1:9D2RTxYGxrG5uYg6D7QZRcykXvavBvcA59j5kTaedQI=
+k8s.io/apiextensions-apiserver v0.26.4/go.mod h1:cd4uGFGIgzEqUghWpRsr9KE8j2KNTjY8Ji8pnMMazyw=
+k8s.io/apimachinery v0.26.4 h1:rZccKdBLg9vP6J09JD+z8Yr99Ce8gk3Lbi9TCx05Jzs=
+k8s.io/apimachinery v0.26.4/go.mod h1:ats7nN1LExKHvJ9TmwootT00Yz05MuYqPXEXaVeOy5I=
+k8s.io/apiserver v0.26.4 h1:3Oq4mnJv0mzVX7BR/Nod+8KjlELf/3Ljvu9ZWDyLUoA=
+k8s.io/apiserver v0.26.4/go.mod h1:yAY3O1vBM4/0OIGAGeWcdfzQvgdwJ188VirLcuSAVnw=
+k8s.io/cli-runtime v0.26.4 h1:MgSU871KDzBDX7V9GtuqS6Ai9lhQCHgRzkurnXOWtZ0=
+k8s.io/cli-runtime v0.26.4/go.mod h1:MjJ2DXMChw2zcG0/agzm17xwKpfVxOfuoCdfY9iOCOE=
+k8s.io/client-go v0.26.4 h1:/7P/IbGBuT73A+G97trf44NTPSNqvuBREpOfdLbHvD4=
+k8s.io/client-go v0.26.4/go.mod h1:6qOItWm3EwxJdl/8p5t7FWtWUOwyMdA8N9ekbW4idpI=
+k8s.io/code-generator v0.26.4 h1:zgDD0qX13p/jtrAoYRRiYeQ5ibnriwmo2cMkMZAtJxc=
+k8s.io/code-generator v0.26.4/go.mod h1:ryaiIKwfxEJEaywEzx3dhWOydpVctKYbqLajJf0O8dI=
+k8s.io/component-base v0.26.4 h1:Bg2xzyXNKL3eAuiTEu3XE198d6z22ENgFgGQv2GGOUk=
+k8s.io/component-base v0.26.4/go.mod h1:lTuWL1Xz/a4e80gmIC3YZG2JCO4xNwtKWHJWeJmsq20=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d h1:U9tB195lKdzwqicbJvyJeOXV7Klv+wNAWENRnXEGi08=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=

From 3714c2c426885e8b4730cefc6b04d3d997102bec Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Tue, 25 Apr 2023 10:19:07 -0500
Subject: [PATCH 0738/1641] move error check

---
 pkg/util/runtime/cpu_linux.go |  7 +++----
 test/e2e/cgroups/cgroups.go   | 19 +++++++++++++++----
 2 files changed, 18 insertions(+), 8 deletions(-)

diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index b4d6997b9..c72f47f01 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -38,16 +38,15 @@ import (
 func NumCPU() int {
 	cpus := runtime.NumCPU()
 
-	if err != nil {
-		return cpus
-	}
-
 	cgroupVersion := getCgroupVersion()
 	cpuQuota := int64(-1)
 	cpuPeriod := int64(-1)
 
 	if cgroupVersion == 1 {
 		cgroupPath, err := libcontainercgroups.FindCgroupMountpoint("", "cpu")
+		if err != nil {
+			return cpus
+		}
 		cpuQuota = readCgroupFileToInt64(cgroupPath, "cpu.cfs_quota_us")
 		cpuPeriod = readCgroupFileToInt64(cgroupPath, "cpu.cfs_period_us")
 	} else if cgroupVersion == 2 {
diff --git a/test/e2e/cgroups/cgroups.go b/test/e2e/cgroups/cgroups.go
index 34d6c037a..4ee6bf927 100644
--- a/test/e2e/cgroups/cgroups.go
+++ b/test/e2e/cgroups/cgroups.go
@@ -17,6 +17,9 @@ limitations under the License.
 package cgroups
 
 import (
+	"log"
+	"os"
+
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
@@ -33,15 +36,23 @@ var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
 		f.NewSlowEchoDeployment()
 	})
 
+	ginkgo.It("detects cgroups version v1", func() {
+		assert.Equal(ginkgo.GinkgoT(), runtime.getCgroupVersion(), 1)
+	})
+
 	ginkgo.It("detects number of CPUs properly in cgroups v1", func() {
 		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), -1)
 	})
 
+	ginkgo.It("detects cgroups version v2", func() {
+		// create cgroups2 files
+		if err := os.MkdirAll("a/b/c/d", os.ModePerm); err != nil {
+			log.Fatal(err)
+		}
+
+	})
+
 	ginkgo.It("detects number of CPUs properly in cgroups v2", func() {
 		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), -1)
 	})
-
-	ginkgo.It("detects cgroups version", func() {
-
-	})
 })

From 6d96e111c8e15081c36bf0448745cb3eb73b1cb4 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Tue, 25 Apr 2023 19:24:34 -0500
Subject: [PATCH 0739/1641] try to figure out testing flags

---
 Makefile                         |  2 +-
 pkg/util/runtime/cpu_linux.go    |  4 +++
 pkg/util/runtime/cpu_notlinux.go |  4 +++
 test/e2e/cgroups/cgroups.go      | 58 --------------------------------
 4 files changed, 9 insertions(+), 59 deletions(-)
 delete mode 100644 test/e2e/cgroups/cgroups.go

diff --git a/Makefile b/Makefile
index 6037ac39d..357ef9827 100644
--- a/Makefile
+++ b/Makefile
@@ -167,7 +167,7 @@ kind-e2e-chart-tests: ## Run helm chart e2e tests
 e2e-test-binary:  ## Build binary for e2e tests.
 	@build/run-in-docker.sh \
 		MAC_OS=$(MAC_OS) \
-		ginkgo build ./test/e2e
+		ginkgo build ./test/e2e -tags linux
 
 .PHONY: print-e2e-suite
 print-e2e-suite: e2e-test-binary ## Prints information about the suite of e2e tests.
diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index c72f47f01..e5e8db40a 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -60,6 +60,10 @@ func NumCPU() int {
 	return int(math.Ceil(float64(cpuQuota) / float64(cpuPeriod)))
 }
 
+func IsCgroupAvaliable() bool {
+	return true
+}
+
 func getCgroupVersion() int64 {
 	// /sys/fs/cgroup/cgroup.controllers will not exist with cgroupsv1
 	if _, err := os.Stat("/sys/fs/cgroup/cgroup.controllers"); err == nil {
diff --git a/pkg/util/runtime/cpu_notlinux.go b/pkg/util/runtime/cpu_notlinux.go
index 2a1b48252..3c4c6718b 100644
--- a/pkg/util/runtime/cpu_notlinux.go
+++ b/pkg/util/runtime/cpu_notlinux.go
@@ -27,3 +27,7 @@ import (
 func NumCPU() int {
 	return runtime.NumCPU()
 }
+
+func IsCgroupAvaliable() bool {
+	return false
+}
diff --git a/test/e2e/cgroups/cgroups.go b/test/e2e/cgroups/cgroups.go
deleted file mode 100644
index 4ee6bf927..000000000
--- a/test/e2e/cgroups/cgroups.go
+++ /dev/null
@@ -1,58 +0,0 @@
-/*
-Copyright 2020 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package cgroups
-
-import (
-	"log"
-	"os"
-
-	"github.com/onsi/ginkgo/v2"
-	"github.com/stretchr/testify/assert"
-
-	"k8s.io/ingress-nginx/test/e2e/framework"
-
-	"k8s.io/ingress-nginx/pkg/util/runtime"
-)
-
-var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
-	f := framework.NewDefaultFramework("cgroups")
-
-	ginkgo.BeforeEach(func() {
-		f.NewEchoDeployment()
-		f.NewSlowEchoDeployment()
-	})
-
-	ginkgo.It("detects cgroups version v1", func() {
-		assert.Equal(ginkgo.GinkgoT(), runtime.getCgroupVersion(), 1)
-	})
-
-	ginkgo.It("detects number of CPUs properly in cgroups v1", func() {
-		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), -1)
-	})
-
-	ginkgo.It("detects cgroups version v2", func() {
-		// create cgroups2 files
-		if err := os.MkdirAll("a/b/c/d", os.ModePerm); err != nil {
-			log.Fatal(err)
-		}
-
-	})
-
-	ginkgo.It("detects number of CPUs properly in cgroups v2", func() {
-		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), -1)
-	})
-})

From 475adf734ad9f1d85ece1d344a2b2636de7b4fa4 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Tue, 25 Apr 2023 19:32:59 -0500
Subject: [PATCH 0740/1641] add files

---
 test/e2e/cgroups/cgroups_linux.go    | 65 ++++++++++++++++++++++++++++
 test/e2e/cgroups/cgroups_notlinux.go | 42 ++++++++++++++++++
 2 files changed, 107 insertions(+)
 create mode 100644 test/e2e/cgroups/cgroups_linux.go
 create mode 100644 test/e2e/cgroups/cgroups_notlinux.go

diff --git a/test/e2e/cgroups/cgroups_linux.go b/test/e2e/cgroups/cgroups_linux.go
new file mode 100644
index 000000000..18b3f837b
--- /dev/null
+++ b/test/e2e/cgroups/cgroups_linux.go
@@ -0,0 +1,65 @@
+//go:build linux
+// +build linux
+
+/*
+Copyright 2020 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package cgroups
+
+import (
+	"log"
+	"os"
+
+	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+
+	"k8s.io/ingress-nginx/pkg/util/runtime"
+)
+
+var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
+	f := framework.NewDefaultFramework("cgroups")
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment()
+		f.NewSlowEchoDeployment()
+	})
+
+	ginkgo.It("detects if cgroups is avaliable", func() {
+		assert.Equal(ginkgo.GinkgoT(), runtime.IsCgroupAvaliable(), 1)
+	})
+
+	ginkgo.It("detects cgroups version v1", func() {
+		assert.Equal(ginkgo.GinkgoT(), runtime.readCgroupFileToInt64(), 1)
+	})
+
+	ginkgo.It("detects number of CPUs properly in cgroups v1", func() {
+		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), -1)
+	})
+
+	ginkgo.It("detects cgroups version v2", func() {
+		// create cgroups2 files
+		if err := os.MkdirAll("a/b/c/d", os.ModePerm); err != nil {
+			log.Fatal(err)
+		}
+
+	})
+
+	ginkgo.It("detects number of CPUs properly in cgroups v2", func() {
+		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), -1)
+	})
+})
diff --git a/test/e2e/cgroups/cgroups_notlinux.go b/test/e2e/cgroups/cgroups_notlinux.go
new file mode 100644
index 000000000..483db52cc
--- /dev/null
+++ b/test/e2e/cgroups/cgroups_notlinux.go
@@ -0,0 +1,42 @@
+//go:build !linux
+// +build !linux
+
+/*
+Copyright 2020 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package cgroups
+
+import (
+	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+
+	"k8s.io/ingress-nginx/pkg/util/runtime"
+)
+
+var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
+	f := framework.NewDefaultFramework("cgroups")
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment()
+		f.NewSlowEchoDeployment()
+	})
+
+	ginkgo.It("detects cgroups is not avaliable", func() {
+		assert.True(ginkgo.GinkgoT(), !runtime.IsCgroupAvaliable())
+	})
+})

From 82d8cded6123da44860a4b143c07bb9a30ae3cc3 Mon Sep 17 00:00:00 2001
From: tzssangglass <tzssangglass@apache.org>
Date: Mon, 1 May 2023 19:22:18 +0800
Subject: [PATCH 0741/1641] ensure make lua-test runs locally (#9902)

---
 Makefile         | 1 -
 test/test-lua.sh | 4 ++--
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/Makefile b/Makefile
index 6037ac39d..fc40a39bb 100644
--- a/Makefile
+++ b/Makefile
@@ -147,7 +147,6 @@ test:  ## Run go unit tests.
 .PHONY: lua-test
 lua-test: ## Run lua unit tests.
 	@build/run-in-docker.sh \
-		BUSTED_ARGS=$(BUSTED_ARGS) \
 		MAC_OS=$(MAC_OS) \
 		test/test-lua.sh
 
diff --git a/test/test-lua.sh b/test/test-lua.sh
index 9c8149eac..fc60023f8 100755
--- a/test/test-lua.sh
+++ b/test/test-lua.sh
@@ -41,7 +41,7 @@ SHDICT_ARGS=(
 )
 
 if [ $# -eq 0 ]; then
-    resty "${SHDICT_ARGS[@]}" ./rootfs/etc/nginx/lua/test/ ./rootfs/etc/nginx/lua/plugins/**/test
+    resty "${SHDICT_ARGS[@]}" ./rootfs/etc/nginx/lua/test/ ./rootfs/etc/nginx/lua/plugins/**/test ${BUSTED_ARGS}
 else
-    resty "${SHDICT_ARGS[@]}" $@
+    resty "${SHDICT_ARGS[@]}" $@ ${BUSTED_ARGS}
 fi

From 97a1a6d616b1bea4edd1404cbbdcf4b759be26f7 Mon Sep 17 00:00:00 2001
From: Ron Nabuurs <nabuurs.ron@gmail.com>
Date: Mon, 1 May 2023 13:24:17 +0200
Subject: [PATCH 0742/1641] Fix typo in OpenTelemetry (#9903)

I've noticed a small typo, which I've fixed.
---
 docs/user-guide/third-party-addons/opentelemetry.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/third-party-addons/opentelemetry.md b/docs/user-guide/third-party-addons/opentelemetry.md
index d966dff1f..7aeea541c 100644
--- a/docs/user-guide/third-party-addons/opentelemetry.md
+++ b/docs/user-guide/third-party-addons/opentelemetry.md
@@ -27,7 +27,7 @@ We must also set the host to use when uploading traces:
 ```yaml
 otlp-collector-host: "otel-coll-collector.otel.svc"
 ```
-NOTE: While the option is called `otlp-collector-host`, you will need to point this to any backend that recieves otlp-grpc.
+NOTE: While the option is called `otlp-collector-host`, you will need to point this to any backend that receives otlp-grpc.
 
 Next you will need to deploy a distributed telemetry system which uses OpenTelemetry.
 [opentelemetry-collector](https://github.com/open-telemetry/opentelemetry-collector), [Jaeger](https://www.jaegertracing.io/)

From ae989d7722bcdc626986a4f8afd69d97eacb471d Mon Sep 17 00:00:00 2001
From: Jacob Henner <code@ventricle.us>
Date: Mon, 1 May 2023 07:32:18 -0400
Subject: [PATCH 0743/1641] Add support for --container flag (#9703)

Add support for --container flag, which sets an explicit container name
for exec operations. Defaults to `controller`.

Signed-off-by: Jacob Henner <code@ventricle.us>
---
 cmd/plugin/commands/backends/backends.go |  9 +++++----
 cmd/plugin/commands/certs/certs.go       |  9 +++++----
 cmd/plugin/commands/conf/conf.go         |  9 +++++----
 cmd/plugin/commands/exec/exec.go         | 10 ++++++----
 cmd/plugin/commands/general/general.go   |  9 +++++----
 cmd/plugin/commands/logs/logs.go         |  9 +++++----
 cmd/plugin/commands/ssh/ssh.go           |  9 +++++----
 cmd/plugin/kubectl/kubectl.go            |  4 ++--
 cmd/plugin/util/util.go                  |  8 ++++++++
 docs/kubectl-plugin.md                   |  2 +-
 10 files changed, 47 insertions(+), 31 deletions(-)

diff --git a/cmd/plugin/commands/backends/backends.go b/cmd/plugin/commands/backends/backends.go
index 341c62a9c..afc98e4d6 100644
--- a/cmd/plugin/commands/backends/backends.go
+++ b/cmd/plugin/commands/backends/backends.go
@@ -30,7 +30,7 @@ import (
 
 // CreateCommand creates and returns this cobra subcommand
 func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
-	var pod, deployment, selector *string
+	var pod, deployment, selector, container *string
 	cmd := &cobra.Command{
 		Use:   "backends",
 		Short: "Inspect the dynamic backend information of an ingress-nginx instance",
@@ -47,7 +47,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 				return fmt.Errorf("--list and --backend cannot both be specified")
 			}
 
-			util.PrintError(backends(flags, *pod, *deployment, *selector, backend, onlyList))
+			util.PrintError(backends(flags, *pod, *deployment, *selector, *container, backend, onlyList))
 			return nil
 		},
 	}
@@ -55,6 +55,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	pod = util.AddPodFlag(cmd)
 	deployment = util.AddDeploymentFlag(cmd)
 	selector = util.AddSelectorFlag(cmd)
+	container = util.AddContainerFlag(cmd)
 
 	cmd.Flags().String("backend", "", "Output only the information for the given backend")
 	cmd.Flags().Bool("list", false, "Output a newline-separated list of backend names")
@@ -62,7 +63,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	return cmd
 }
 
-func backends(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, backend string, onlyList bool) error {
+func backends(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, container string, backend string, onlyList bool) error {
 	var command []string
 	if onlyList {
 		command = []string{"/dbg", "backends", "list"}
@@ -77,7 +78,7 @@ func backends(flags *genericclioptions.ConfigFlags, podName string, deployment s
 		return err
 	}
 
-	out, err := kubectl.PodExecString(flags, &pod, command)
+	out, err := kubectl.PodExecString(flags, &pod, container, command)
 	if err != nil {
 		return err
 	}
diff --git a/cmd/plugin/commands/certs/certs.go b/cmd/plugin/commands/certs/certs.go
index 07fd08ad3..88b721ee3 100644
--- a/cmd/plugin/commands/certs/certs.go
+++ b/cmd/plugin/commands/certs/certs.go
@@ -30,7 +30,7 @@ import (
 
 // CreateCommand creates and returns this cobra subcommand
 func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
-	var pod, deployment, selector *string
+	var pod, deployment, selector, container *string
 	cmd := &cobra.Command{
 		Use:   "certs",
 		Short: "Output the certificate data stored in an ingress-nginx pod",
@@ -40,7 +40,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 				return err
 			}
 
-			util.PrintError(certs(flags, *pod, *deployment, *selector, host))
+			util.PrintError(certs(flags, *pod, *deployment, *selector, *container, host))
 			return nil
 		},
 	}
@@ -50,11 +50,12 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	pod = util.AddPodFlag(cmd)
 	deployment = util.AddDeploymentFlag(cmd)
 	selector = util.AddSelectorFlag(cmd)
+	container = util.AddContainerFlag(cmd)
 
 	return cmd
 }
 
-func certs(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, host string) error {
+func certs(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, container string, host string) error {
 	command := []string{"/dbg", "certs", "get", host}
 
 	pod, err := request.ChoosePod(flags, podName, deployment, selector)
@@ -62,7 +63,7 @@ func certs(flags *genericclioptions.ConfigFlags, podName string, deployment stri
 		return err
 	}
 
-	out, err := kubectl.PodExecString(flags, &pod, command)
+	out, err := kubectl.PodExecString(flags, &pod, container, command)
 	if err != nil {
 		return err
 	}
diff --git a/cmd/plugin/commands/conf/conf.go b/cmd/plugin/commands/conf/conf.go
index 5caa2a649..a7f03a062 100644
--- a/cmd/plugin/commands/conf/conf.go
+++ b/cmd/plugin/commands/conf/conf.go
@@ -32,7 +32,7 @@ import (
 
 // CreateCommand creates and returns this cobra subcommand
 func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
-	var pod, deployment, selector *string
+	var pod, deployment, selector, container *string
 	cmd := &cobra.Command{
 		Use:   "conf",
 		Short: "Inspect the generated nginx.conf",
@@ -42,7 +42,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 				return err
 			}
 
-			util.PrintError(conf(flags, host, *pod, *deployment, *selector))
+			util.PrintError(conf(flags, host, *pod, *deployment, *selector, *container))
 			return nil
 		},
 	}
@@ -50,17 +50,18 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	pod = util.AddPodFlag(cmd)
 	deployment = util.AddDeploymentFlag(cmd)
 	selector = util.AddSelectorFlag(cmd)
+	container = util.AddContainerFlag(cmd)
 
 	return cmd
 }
 
-func conf(flags *genericclioptions.ConfigFlags, host string, podName string, deployment string, selector string) error {
+func conf(flags *genericclioptions.ConfigFlags, host string, podName string, deployment string, selector string, container string) error {
 	pod, err := request.ChoosePod(flags, podName, deployment, selector)
 	if err != nil {
 		return err
 	}
 
-	nginxConf, err := kubectl.PodExecString(flags, &pod, []string{"/dbg", "conf"})
+	nginxConf, err := kubectl.PodExecString(flags, &pod, container, []string{"/dbg", "conf"})
 	if err != nil {
 		return err
 	}
diff --git a/cmd/plugin/commands/exec/exec.go b/cmd/plugin/commands/exec/exec.go
index 5f1a31913..f06aaeb23 100644
--- a/cmd/plugin/commands/exec/exec.go
+++ b/cmd/plugin/commands/exec/exec.go
@@ -29,19 +29,21 @@ import (
 // CreateCommand creates and returns this cobra subcommand
 func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	opts := execFlags{}
-	var pod, deployment, selector *string
+	var pod, deployment, selector, container *string
 
 	cmd := &cobra.Command{
 		Use:   "exec",
 		Short: "Execute a command inside an ingress-nginx pod",
 		RunE: func(cmd *cobra.Command, args []string) error {
-			util.PrintError(exec(flags, *pod, *deployment, *selector, args, opts))
+			util.PrintError(exec(flags, *pod, *deployment, *selector, *container, args, opts))
 			return nil
 		},
 	}
 	pod = util.AddPodFlag(cmd)
 	deployment = util.AddDeploymentFlag(cmd)
 	selector = util.AddSelectorFlag(cmd)
+	container = util.AddContainerFlag(cmd)
+
 	cmd.Flags().BoolVarP(&opts.TTY, "tty", "t", false, "Stdin is a TTY")
 	cmd.Flags().BoolVarP(&opts.Stdin, "stdin", "i", false, "Pass stdin to the container")
 
@@ -53,7 +55,7 @@ type execFlags struct {
 	Stdin bool
 }
 
-func exec(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, cmd []string, opts execFlags) error {
+func exec(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, container string, cmd []string, opts execFlags) error {
 	pod, err := request.ChoosePod(flags, podName, deployment, selector)
 	if err != nil {
 		return err
@@ -67,7 +69,7 @@ func exec(flags *genericclioptions.ConfigFlags, podName string, deployment strin
 		args = append(args, "-i")
 	}
 
-	args = append(args, []string{"-n", pod.Namespace, pod.Name, "--"}...)
+	args = append(args, []string{"-n", pod.Namespace, "-c", container, pod.Name, "--"}...)
 	args = append(args, cmd...)
 	return kubectl.Exec(flags, args)
 }
diff --git a/cmd/plugin/commands/general/general.go b/cmd/plugin/commands/general/general.go
index 44e02ca88..fa6c1301f 100644
--- a/cmd/plugin/commands/general/general.go
+++ b/cmd/plugin/commands/general/general.go
@@ -30,29 +30,30 @@ import (
 
 // CreateCommand creates and returns this cobra subcommand
 func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
-	var pod, deployment, selector *string
+	var pod, deployment, selector, container *string
 	cmd := &cobra.Command{
 		Use:   "general",
 		Short: "Inspect the other dynamic ingress-nginx information",
 		RunE: func(cmd *cobra.Command, args []string) error {
-			util.PrintError(general(flags, *pod, *deployment, *selector))
+			util.PrintError(general(flags, *pod, *deployment, *selector, *container))
 			return nil
 		},
 	}
 	pod = util.AddPodFlag(cmd)
 	deployment = util.AddDeploymentFlag(cmd)
 	selector = util.AddSelectorFlag(cmd)
+	container = util.AddContainerFlag(cmd)
 
 	return cmd
 }
 
-func general(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string) error {
+func general(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, container string) error {
 	pod, err := request.ChoosePod(flags, podName, deployment, selector)
 	if err != nil {
 		return err
 	}
 
-	out, err := kubectl.PodExecString(flags, &pod, []string{"/dbg", "general"})
+	out, err := kubectl.PodExecString(flags, &pod, container, []string{"/dbg", "general"})
 	if err != nil {
 		return err
 	}
diff --git a/cmd/plugin/commands/logs/logs.go b/cmd/plugin/commands/logs/logs.go
index 55cd008dc..56f4fc640 100644
--- a/cmd/plugin/commands/logs/logs.go
+++ b/cmd/plugin/commands/logs/logs.go
@@ -31,19 +31,20 @@ import (
 // CreateCommand creates and returns this cobra subcommand
 func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	o := logsFlags{}
-	var pod, deployment, selector *string
+	var pod, deployment, selector, container *string
 
 	cmd := &cobra.Command{
 		Use:   "logs",
 		Short: "Get the kubernetes logs for an ingress-nginx pod",
 		RunE: func(cmd *cobra.Command, args []string) error {
-			util.PrintError(logs(flags, *pod, *deployment, *selector, o))
+			util.PrintError(logs(flags, *pod, *deployment, *selector, *container, o))
 			return nil
 		},
 	}
 	pod = util.AddPodFlag(cmd)
 	deployment = util.AddDeploymentFlag(cmd)
 	selector = util.AddSelectorFlag(cmd)
+	container = util.AddContainerFlag(cmd)
 
 	cmd.Flags().BoolVarP(&o.Follow, "follow", "f", o.Follow, "Specify if the logs should be streamed.")
 	cmd.Flags().BoolVar(&o.Timestamps, "timestamps", o.Timestamps, "Include timestamps on each line in the log output")
@@ -94,13 +95,13 @@ func (o *logsFlags) toStrings() []string {
 	return r
 }
 
-func logs(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, opts logsFlags) error {
+func logs(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, container string, opts logsFlags) error {
 	pod, err := request.ChoosePod(flags, podName, deployment, selector)
 	if err != nil {
 		return err
 	}
 
-	cmd := []string{"logs", "-n", pod.Namespace, pod.Name}
+	cmd := []string{"logs", "-n", pod.Namespace, "-c", container, pod.Name}
 	cmd = append(cmd, opts.toStrings()...)
 	return kubectl.Exec(flags, cmd)
 }
diff --git a/cmd/plugin/commands/ssh/ssh.go b/cmd/plugin/commands/ssh/ssh.go
index 5e8b49fac..fe1b3e9fe 100644
--- a/cmd/plugin/commands/ssh/ssh.go
+++ b/cmd/plugin/commands/ssh/ssh.go
@@ -28,27 +28,28 @@ import (
 
 // CreateCommand creates and returns this cobra subcommand
 func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
-	var pod, deployment, selector *string
+	var pod, deployment, selector, container *string
 	cmd := &cobra.Command{
 		Use:   "ssh",
 		Short: "ssh into a running ingress-nginx pod",
 		RunE: func(cmd *cobra.Command, args []string) error {
-			util.PrintError(ssh(flags, *pod, *deployment, *selector))
+			util.PrintError(ssh(flags, *pod, *deployment, *selector, *container))
 			return nil
 		},
 	}
 	pod = util.AddPodFlag(cmd)
 	deployment = util.AddDeploymentFlag(cmd)
 	selector = util.AddSelectorFlag(cmd)
+	container = util.AddContainerFlag(cmd)
 
 	return cmd
 }
 
-func ssh(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string) error {
+func ssh(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, container string) error {
 	pod, err := request.ChoosePod(flags, podName, deployment, selector)
 	if err != nil {
 		return err
 	}
 
-	return kubectl.Exec(flags, []string{"exec", "-it", "-n", pod.Namespace, pod.Name, "--", "/bin/bash"})
+	return kubectl.Exec(flags, []string{"exec", "-it", "-n", pod.Namespace, "-c", container, pod.Name, "--", "/bin/bash"})
 }
diff --git a/cmd/plugin/kubectl/kubectl.go b/cmd/plugin/kubectl/kubectl.go
index c11ba5b77..3f31a2104 100644
--- a/cmd/plugin/kubectl/kubectl.go
+++ b/cmd/plugin/kubectl/kubectl.go
@@ -31,8 +31,8 @@ import (
 
 // PodExecString takes a pod and a command, uses kubectl exec to run the command in the pod
 // and returns stdout as a string
-func PodExecString(flags *genericclioptions.ConfigFlags, pod *apiv1.Pod, args []string) (string, error) {
-	args = append([]string{"exec", "-n", pod.Namespace, pod.Name}, args...)
+func PodExecString(flags *genericclioptions.ConfigFlags, pod *apiv1.Pod, container string, args []string) (string, error) {
+	args = append([]string{"exec", "-n", pod.Namespace, "-c", container, pod.Name}, args...)
 	return ExecToString(flags, args)
 }
 
diff --git a/cmd/plugin/util/util.go b/cmd/plugin/util/util.go
index cc9882009..e1910140d 100644
--- a/cmd/plugin/util/util.go
+++ b/cmd/plugin/util/util.go
@@ -31,6 +31,7 @@ import (
 const (
 	DefaultIngressDeploymentName = "ingress-nginx-controller"
 	DefaultIngressServiceName    = "ingress-nginx-controller"
+	DefaultIngressContainerName  = "controller"
 )
 
 // IssuePrefix is the github url that we can append an issue number to to link to it
@@ -127,6 +128,13 @@ func AddSelectorFlag(cmd *cobra.Command) *string {
 	return &v
 }
 
+// AddContainerFlag adds a --container flag to a cobra command
+func AddContainerFlag(cmd *cobra.Command) *string {
+	v := ""
+	cmd.Flags().StringVar(&v, "container", DefaultIngressContainerName, "The name of the ingress-nginx controller container")
+	return &v
+}
+
 // GetNamespace takes a set of kubectl flag values and returns the namespace we should be operating in
 func GetNamespace(flags *genericclioptions.ConfigFlags) string {
 	namespace, _, err := flags.ToRawKubeConfigLoader().Namespace()
diff --git a/docs/kubectl-plugin.md b/docs/kubectl-plugin.md
index 2b6381f6f..9e5a5dcc6 100644
--- a/docs/kubectl-plugin.md
+++ b/docs/kubectl-plugin.md
@@ -68,7 +68,7 @@ Use "ingress-nginx [command] --help" for more information about a command.
 ## Common Flags
 
 - Every subcommand supports the basic `kubectl` configuration flags like `--namespace`, `--context`, `--client-key` and so on.
-- Subcommands that act on a particular `ingress-nginx` pod (`backends`, `certs`, `conf`, `exec`, `general`, `logs`, `ssh`), support the `--deployment <deployment>` and `--pod <pod>` flags to select either a pod from a deployment with the given name, or a pod with the given name. The `--deployment` flag defaults to `ingress-nginx-controller`.
+- Subcommands that act on a particular `ingress-nginx` pod (`backends`, `certs`, `conf`, `exec`, `general`, `logs`, `ssh`), support the `--deployment <deployment>`, `--pod <pod>`, and `--container <container>` flags to select either a pod from a deployment with the given name, or a pod with the given name (and the given container name). The `--deployment` flag defaults to `ingress-nginx-controller`, and the `--container` flag defaults to `controller`.
 - Subcommands that inspect resources (`ingresses`, `lint`) support the `--all-namespaces` flag, which causes them to inspect resources in every namespace.
 
 ## Subcommands

From d8f54420a47582fd128ec3a85d1f67a2eb983b01 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jan-Otto=20Kr=C3=B6pke?= <mail@jkroepke.de>
Date: Mon, 1 May 2023 17:18:19 +0200
Subject: [PATCH 0744/1641] [helm] Support custom port configuration for
 internal service (#9846)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Jan-Otto Kröpke <mail@jkroepke.de>
---
 charts/ingress-nginx/README.md                        |  2 ++
 .../ci/deployment-internal-lb-values.yaml             |  6 ++++++
 .../templates/controller-service-internal.yaml        |  8 ++++----
 charts/ingress-nginx/values.yaml                      | 11 +++++++++++
 4 files changed, 23 insertions(+), 4 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index b7c97939d..70a2ea688 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -406,6 +406,8 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.service.internal.annotations | object | `{}` | Annotations are mandatory for the load balancer to come up. Varies with the cloud service. |
 | controller.service.internal.enabled | bool | `false` | Enables an additional internal load balancer (besides the external one). |
 | controller.service.internal.loadBalancerSourceRanges | list | `[]` | Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0. |
+| controller.service.internal.ports | object | `{}` | Custom port mapping for internal service |
+| controller.service.internal.targetPorts | object | `{}` | Custom target port mapping for internal service |
 | controller.service.ipFamilies | list | `["IPv4"]` | List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/ |
 | controller.service.ipFamilyPolicy | string | `"SingleStack"` | Represents the dual-stack-ness requested or required by this Service. Possible values are SingleStack, PreferDualStack or RequireDualStack. The ipFamilies and clusterIPs fields depend on the value of this field. # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/ |
 | controller.service.labels | object | `{}` |  |
diff --git a/charts/ingress-nginx/ci/deployment-internal-lb-values.yaml b/charts/ingress-nginx/ci/deployment-internal-lb-values.yaml
index fd8df8de5..663ccb9d1 100644
--- a/charts/ingress-nginx/ci/deployment-internal-lb-values.yaml
+++ b/charts/ingress-nginx/ci/deployment-internal-lb-values.yaml
@@ -11,3 +11,9 @@ controller:
       enabled: true
       annotations:
         service.beta.kubernetes.io/aws-load-balancer-internal: "true"
+      ports:
+        http: 443
+        https: 80
+      targetPorts:
+        http: 443
+        https: 80
diff --git a/charts/ingress-nginx/templates/controller-service-internal.yaml b/charts/ingress-nginx/templates/controller-service-internal.yaml
index aae3e155e..87146b746 100644
--- a/charts/ingress-nginx/templates/controller-service-internal.yaml
+++ b/charts/ingress-nginx/templates/controller-service-internal.yaml
@@ -29,9 +29,9 @@ spec:
   {{- $setNodePorts := (or (eq .Values.controller.service.type "NodePort") (eq .Values.controller.service.type "LoadBalancer")) }}
   {{- if .Values.controller.service.enableHttp }}
     - name: http
-      port: {{ .Values.controller.service.ports.http }}
+      port: {{ .Values.controller.service.internal.ports.http | default .Values.controller.service.ports.http }}
       protocol: TCP
-      targetPort: {{ .Values.controller.service.targetPorts.http }}
+      targetPort: {{ .Values.controller.service.internal.targetPorts.http | default .Values.controller.service.targetPorts.http }}
     {{- if semverCompare ">=1.20" .Capabilities.KubeVersion.Version }}
       appProtocol: http
     {{- end }}
@@ -41,9 +41,9 @@ spec:
   {{- end }}
   {{- if .Values.controller.service.enableHttps }}
     - name: https
-      port: {{ .Values.controller.service.ports.https }}
+      port: {{ .Values.controller.service.internal.ports.https | default .Values.controller.service.ports.https }}
       protocol: TCP
-      targetPort: {{ .Values.controller.service.targetPorts.https }}
+      targetPort: {{ .Values.controller.service.internal.targetPorts.https | default .Values.controller.service.targetPorts.https }}
     {{- if semverCompare ">=1.20" .Capabilities.KubeVersion.Version }}
       appProtocol: https
     {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index c2e8cdcd7..611c384f0 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -482,6 +482,17 @@ controller:
       ## providers supporting it
       ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
       # externalTrafficPolicy: ""
+
+      # -- Custom port mapping for internal service
+      ports: {}
+      #  http: 80
+      #  https: 443
+
+      # -- Custom target port mapping for internal service
+      targetPorts: {}
+      #  http: http
+      #  https: https
+
   # shareProcessNamespace enables process namespace sharing within the pod.
   # This can be used for example to signal log rotation using `kill -USR1` from a sidecar.
   shareProcessNamespace: false

From 914c5cf295a78ff2d85e656e82c36b9681a5fae0 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 1 May 2023 10:58:19 -0700
Subject: [PATCH 0745/1641] Bump github.com/opencontainers/runc from 1.1.6 to
 1.1.7 (#9912)

Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.6 to 1.1.7.
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/v1.1.7/CHANGELOG.md)
- [Commits](https://github.com/opencontainers/runc/compare/v1.1.6...v1.1.7)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 54929c1a7..9de23ba1a 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo/v2 v2.9.0
-	github.com/opencontainers/runc v1.1.6
+	github.com/opencontainers/runc v1.1.7
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.15.0
 	github.com/prometheus/client_model v0.3.0
diff --git a/go.sum b/go.sum
index 4d2b69333..da99bd248 100644
--- a/go.sum
+++ b/go.sum
@@ -288,8 +288,8 @@ github.com/onsi/ginkgo/v2 v2.9.0/go.mod h1:4xkjoL/tZv4SMWeww56BU5kAt19mVB47gTWxm
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.27.1 h1:rfztXRbg6nv/5f+Raen9RcGoSecHIFgBBLQK3Wdj754=
-github.com/opencontainers/runc v1.1.6 h1:XbhB8IfG/EsnhNvZtNdLB0GBw92GYEFvKlhaJk9jUgA=
-github.com/opencontainers/runc v1.1.6/go.mod h1:CbUumNnWCuTGFukNXahoo/RFBZvDAgRh/smNYNOhA50=
+github.com/opencontainers/runc v1.1.7 h1:y2EZDS8sNng4Ksf0GUYNhKbTShZJPJg1FiXJNH/uoCk=
+github.com/opencontainers/runc v1.1.7/go.mod h1:CbUumNnWCuTGFukNXahoo/RFBZvDAgRh/smNYNOhA50=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=

From 4328bed66326a8a2eec84e5676e84b001ccf4b36 Mon Sep 17 00:00:00 2001
From: Jeff Spahr <spahrj@gmail.com>
Date: Mon, 1 May 2023 18:42:11 -0400
Subject: [PATCH 0746/1641] Update dependabot to watch docker images (#9600)

* Update dependabot to watch docker images

* Change to only /images on dependabot scan

---------

Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>
---
 .github/dependabot.yml | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 28a5e5580..5ad21ca95 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -17,3 +17,11 @@ updates:
       - "area/dependency"
       - "release-note-none"
       - "ok-to-test"
+  - package-ecosystem: "docker"
+    directory: "/images"
+    schedule:
+      interval: "weekly"
+    labels:
+      - "area/dependency"
+      - "release-note-none"
+      - "ok-to-test"

From f48b03be54031491e78472bcf3aa026a81e1ffd3 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 3 May 2023 14:20:14 -0400
Subject: [PATCH 0747/1641] Update TAG - 1.7.1 (#9922)

start build 1.7.1
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index b13f0e3bc..668c7899c 100644
--- a/TAG
+++ b/TAG
@@ -1,2 +1,2 @@
-v1.7.0
+v1.7.1
 

From 6d91c2a54c6e54c987078f6e01868385e3308ee6 Mon Sep 17 00:00:00 2001
From: Brendan Kamp <brendankamp757@gmail.com>
Date: Fri, 5 May 2023 14:27:13 +0200
Subject: [PATCH 0748/1641] chore: create httpbun image (#9926)

Signed-off-by: Spazzy <brendankamp757@gmail.com>
---
 .github/workflows/ci.yaml                     |  8 +++---
 images/README.md                              |  3 ++-
 images/{httpbin => httpbun}/Makefile          |  2 +-
 images/{httpbin => httpbun}/cloudbuild.yaml   |  2 +-
 images/{httpbin => httpbun}/rootfs/Dockerfile | 26 ++++++++++---------
 5 files changed, 22 insertions(+), 19 deletions(-)
 rename images/{httpbin => httpbun}/Makefile (97%)
 rename images/{httpbin => httpbun}/cloudbuild.yaml (94%)
 rename images/{httpbin => httpbun}/rootfs/Dockerfile (61%)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index edef01915..66d89393c 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -395,8 +395,8 @@ jobs:
               - 'images/echo/**'
             go-grpc-greeter-server:
               - 'images/go-grpc-greeter-server/**'
-            httpbin:
-              - 'images/httpbin/**'
+            httpbun:
+              - 'images/httpbun/**'
             kube-webhook-certgen:
               - 'images/kube-webhook-certgen/**'
             ext-auth-example-authsvc:
@@ -422,10 +422,10 @@ jobs:
         if: ${{ steps.filter-images.outputs.go-grpc-greeter-server == 'true' }}
         run: |
           cd images/go-grpc-greeter-server && make build
-      - name: httpbin image build
+      - name: httpbun image build
         if: ${{ steps.filter-images.outputs.httpbin == 'true' }}
         run: |
-          cd images/httpbin && make build
+          cd images/httpbun && make build
       - name: kube-webhook-certgen image build
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
         run: |
diff --git a/images/README.md b/images/README.md
index 13f6bfc3c..cdcb9574b 100644
--- a/images/README.md
+++ b/images/README.md
@@ -17,6 +17,7 @@ custom-error-pages | Example of Custom error pages for the NGINX Ingress control
 e2e | Image to run e2e tests
 fastcgi-helloserver | FastCGI application for e2e tests
 grpc-fortune-teller | grpc server application for the nginx-ingress grpc example
-httpbin | A simple HTTP Request & Response Service for e2e tests
+httpbun | A simple HTTP Request & Response Service for e2e tests
+httpbin | [Removed] we are no longer maintaining the httpbin image due to project being unmaintained 
 nginx | NGINX base image using [alpine linux](https://www.alpinelinux.org)
 cfssl | Image to run cfssl commands
diff --git a/images/httpbin/Makefile b/images/httpbun/Makefile
similarity index 97%
rename from images/httpbin/Makefile
rename to images/httpbun/Makefile
index a2ba07400..bcb8c7be2 100644
--- a/images/httpbin/Makefile
+++ b/images/httpbun/Makefile
@@ -23,7 +23,7 @@ TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
 
 REGISTRY ?= local
 
-IMAGE = $(REGISTRY)/e2e-test-httpbin
+IMAGE = $(REGISTRY)/e2e-test-httpbun
 
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled
diff --git a/images/httpbin/cloudbuild.yaml b/images/httpbun/cloudbuild.yaml
similarity index 94%
rename from images/httpbin/cloudbuild.yaml
rename to images/httpbun/cloudbuild.yaml
index e9df202b8..9e3af5935 100644
--- a/images/httpbin/cloudbuild.yaml
+++ b/images/httpbun/cloudbuild.yaml
@@ -18,7 +18,7 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && cd images/httpbin && make push
+      && cd images/httpbun && make push
 substitutions:
   _GIT_TAG: "12345"
   _PULL_BASE_REF: "master"
diff --git a/images/httpbin/rootfs/Dockerfile b/images/httpbun/rootfs/Dockerfile
similarity index 61%
rename from images/httpbin/rootfs/Dockerfile
rename to images/httpbun/rootfs/Dockerfile
index a05f6872f..a1775d303 100644
--- a/images/httpbin/rootfs/Dockerfile
+++ b/images/httpbun/rootfs/Dockerfile
@@ -12,21 +12,23 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.17.2
+FROM golang:1.20 AS builder
 
 ENV LC_ALL=C.UTF-8
 ENV LANG=C.UTF-8
+ENV HTTPBUN_COMMIT=a6b387c438b664322734250e426b6966966c2fe4
 
-RUN apk upgrade && apk update \
-  && apk add --no-cache \
-    python3 python3-dev \
-    musl-dev gcc g++ make \
-    libffi libffi-dev libstdc++ \
-    py3-gevent py3-gunicorn py3-wheel \
-    py3-pip \
- && pip3 install httpbin \
- && apk del python3-dev musl-dev gcc g++ make libffi-dev
+RUN git clone https://github.com/sharat87/httpbun.git
+WORKDIR httpbun
+RUN git checkout $HTTPBUN_COMMIT
 
+RUN CGO_ENABLED=0 GOOS=linux go build \
+    -installsuffix cgo \
+    -trimpath \
+    -o bin/httpbun .
+
+FROM scratch
+COPY --from=builder /go/httpbun/bin/httpbun httpbun
+ENV HTTPBUN_BIND=0.0.0.0:80
 EXPOSE 80
-
-CMD ["gunicorn", "-b", "0.0.0.0:80", "httpbin:app", "-k", "gevent"]
+ENTRYPOINT ["/httpbun"]

From 3d733279944440ae781a95d216ecc13bec824d6f Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 5 May 2023 08:45:13 -0400
Subject: [PATCH 0749/1641] release controller 1.7.1 and chart 4.6.1 (#9929)

* release controller 1.7.1 and chart 4.6.1

Signed-off-by: James Strong <james.strong@chainguard.dev>

* fix typo

Signed-off-by: James Strong <james.strong@chainguard.dev>

* fix ah lint errors

Signed-off-by: James Strong <james.strong@chainguard.dev>

---------

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 .github/workflows/ci.yaml                     |  8 +--
 README.md                                     | 41 ++++++++-------
 changelog/Changelog-1.7.1.md                  | 52 +++++++++++++++++++
 charts/ingress-nginx/Chart.yaml               | 20 ++-----
 charts/ingress-nginx/README.md                |  8 +--
 .../changelog/Changelog-4.6.1.md              | 11 ++++
 charts/ingress-nginx/values.yaml              |  8 ++-
 deploy/static/provider/aws/deploy.yaml        | 44 ++++++++--------
 .../aws/nlb-with-tls-termination/deploy.yaml  | 44 ++++++++--------
 deploy/static/provider/baremetal/deploy.yaml  | 44 ++++++++--------
 deploy/static/provider/cloud/deploy.yaml      | 44 ++++++++--------
 deploy/static/provider/do/deploy.yaml         | 44 ++++++++--------
 deploy/static/provider/exoscale/deploy.yaml   | 44 ++++++++--------
 deploy/static/provider/kind/deploy.yaml       | 44 ++++++++--------
 deploy/static/provider/scw/deploy.yaml        | 44 ++++++++--------
 docs/deploy/index.md                          | 20 +++----
 docs/e2e-tests.md                             | 15 ++++--
 17 files changed, 296 insertions(+), 239 deletions(-)
 create mode 100644 changelog/Changelog-1.7.1.md
 create mode 100644 charts/ingress-nginx/changelog/Changelog-4.6.1.md

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 66d89393c..77232aa88 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -205,7 +205,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.12, v1.25.8, v1.26.3]
+        k8s: [v1.24.12, v1.25.8, v1.26.3,v1.27.1]
 
     steps:
       - name: Checkout
@@ -280,7 +280,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.12, v1.25.8, v1.26.3]
+        k8s: [v1.24.12, v1.25.8, v1.26.3,v1.27.1]
 
     steps:
       - name: Checkout
@@ -329,7 +329,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.12, v1.25.8, v1.26.3]
+        k8s: [v1.24.12, v1.25.8, v1.26.3,v1.27.1]
 
     steps:
 
@@ -447,7 +447,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.12, v1.25.8, v1.26.3]
+        k8s: [v1.24.12, v1.25.8, v1.26.3,v1.27.1]
 
     steps:
       - name: Checkout
diff --git a/README.md b/README.md
index f3f68366e..86f95cb9b 100644
--- a/README.md
+++ b/README.md
@@ -34,27 +34,28 @@ For detailed changes on the `ingress-nginx` helm chart, please check the followi
 ### Supported Versions table 
 
 Supported versions for the ingress-nginx project mean that we have completed E2E tests, and they are passing for
-the versions listed. Ingress-Nginx versions may work on older versions but the project does not make that guarantee. 
+the versions listed. Ingress-Nginx versions may work on older versions but the project does not make that guarantee.
 
-| Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version |
-|-----------------------|------------------------------|----------------|---------------|
-| v1.7.0                | 1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        |
-| v1.6.4                | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        |
-| v1.5.1                | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        |
-| v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      |
-| v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      |
-| v1.3.0                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.0         | 1.19.10†      |
-| v1.2.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.6         | 1.19.10†      |
-| v1.1.3                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.4         | 1.19.10†      |
-| v1.1.2                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       |
-| v1.1.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       |
-| v1.1.0                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
-| v1.0.5                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
-| v1.0.4                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
-| v1.0.3                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
-| v1.0.2                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
-| v1.0.1                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       |
-| v1.0.0                | 1.22, 1.21, 1.20, 1.19       | 3.13.5         | 1.20.1        |
+|       | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
+|:-----:|------------------------|------------------------------|----------------|---------------|--------------------|
+| 🔄 |  **v1.7.1**               | 1.27,1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        | 4.6.*         |
+| 🔄 |  **v1.7.0**   | 1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        | 4.6.*              |
+| 🔄 | **v1.6.4**   | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        | 4.5.*              |
+| 🔄| **v1.5.1**   | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        | 4.4.*              |
+|   | v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      | 4.3.0              |
+| | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      | 4.2.5              |
+| | v1.3.0                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.0         | 1.19.10†      | 4.2.3              |
+| | v1.2.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.6         | 1.19.10†      | 4.1.4              |
+| | v1.1.3                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.4         | 1.19.10†      | 4.0.19             |
+| | v1.1.2                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       | 4.0.18             |
+| | v1.1.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       | 4.0.17             |
+| | v1.1.0                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.13             |
+| | v1.0.5                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.9              |
+| | v1.0.4                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.6              |
+| | v1.0.3                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.5              |
+| | v1.0.2                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.3              |
+| | v1.0.1                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.2              |
+| | v1.0.0                | 1.22, 1.21, 1.20, 1.19       | 3.13.5         | 1.20.1        | 4.0.1              |
 
 
 † _This build is 
diff --git a/changelog/Changelog-1.7.1.md b/changelog/Changelog-1.7.1.md
new file mode 100644
index 000000000..4921dea15
--- /dev/null
+++ b/changelog/Changelog-1.7.1.md
@@ -0,0 +1,52 @@
+# Changelog
+
+### 1.7.1
+Images:
+
+ * registry.k8s.io/controller:controller-v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
+ * registry.k8s.io/controller-chroot:controller-v1.7.1@sha256:e35d5ab487861b9d419c570e3530589229224a0762c7b4d2e2222434abb8d988
+ 
+### All Changes:
+
+* Update TAG - 1.7.1 (#9922)
+* Update dependabot to watch docker images (#9600)
+* [helm] Support custom port configuration for internal service (#9846)
+* Add support for --container flag (#9703)
+* Fix typo in OpenTelemetry (#9903)
+* ensure make lua-test runs locally (#9902)
+* update k8s.io dependecies to v0.26.4 (#9893)
+* Adding resource type to default HPA configuration to resolve issues with Terraform helm chart usage (#9803)
+* I have not been able to fulfill my maintainer responsibilities for a while already, making it official now. (#9883)
+* Update k8s versions (#9879)
+* README: Update `external-dns` link. (#9866)
+* Fastcgi configmap should be on the same namespace of ingress (#9863)
+* Deprecate and remove influxdb feature (#9861)
+* Remove deprecated annotation secure-upstream (#9862)
+* Exclude socket metrics (#9770)
+* Chart: Improve `README.md`. (#9831)
+* update all container tags with date and sha, upgrade all containers (#9834)
+* updated NGINX_BASE image in project (#9829)
+* ISO 8601 date format (#9682)
+* Values: Fix indention of commented values. (#9812)
+* The Ingress-Nginx project recently released version 1.7.0 of the controller, but the deployment documentation still referenced version 1.6.4. This commit updates the documentation to reference the latest version, ensuring that users have access to the most up-to-date information. Fixes#9787 (#9788)
+
+### Dependencies updates: 
+* Bump github.com/opencontainers/runc from 1.1.6 to 1.1.7 (#9912)
+* Bump github.com/prometheus/client_golang from 1.14.0 to 1.15.0 (#9868)
+* Bump aquasecurity/trivy-action from 0.9.2 to 0.10.0 (#9888)
+* Bump github.com/opencontainers/runc from 1.1.5 to 1.1.6 (#9867)
+* Bump actions/checkout from 3.5.0 to 3.5.2 (#9870)
+* Bump golang.org/x/crypto from 0.7.0 to 0.8.0 (#9838)
+* Bump github.com/spf13/cobra from 1.6.1 to 1.7.0 (#9839)
+* Bump actions/add-to-project from 0.4.1 to 0.5.0 (#9840)
+* Bump actions/checkout from 3.4.0 to 3.5.0 (#9798)
+* Bump ossf/scorecard-action from 2.1.2 to 2.1.3 (#9823)
+* Bump github.com/opencontainers/runc from 1.1.4 to 1.1.5 (#9806)
+* Bump actions/stale from 7.0.0 to 8.0.0 (#9799)
+* Bump rajatjindal/krew-release-bot from 0.0.43 to 0.0.46 (#9797)
+* Bump actions/setup-go from 3.5.0 to 4.0.0 (#9796)
+* Bump github.com/imdario/mergo from 0.3.13 to 0.3.15 (#9795)
+* Bump google.golang.org/grpc from 1.53.0 to 1.54.0 (#9794)
+* Bump sigs.k8s.io/controller-runtime from 0.14.5 to 0.14.6 (#9822)
+ 
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.7.0...controller-controller-v1.7.1
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index bad5e2a8c..81ebfc875 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,21 +1,11 @@
 annotations:
   artifacthub.io/changes: |
-    - "Upgrade alpine 3.17.2"
-    - "Upgrade golang 1.20"
-    - "Drop testing/support for Kubernetes 1.23"
-    - "docs(helm): fix value key in readme for enabling certManager (#9640)"
-    - "Update Ingress-Nginx version controller-v1.7.0"
-    - "feat: OpenTelemetry module integration (#9062)"
-    - "canary-weight-total annotation ignored in rule backends (#9729)"
-    - "fix controller psp's volume config (#9740)"
-    - "Fix several Helm YAML issues with extraModules and extraInitContainers (#9709)"
-    - "Chart: Drop `controller.headers`, rework DH param secret. (#9659)"
-    - "Deployment/DaemonSet: Label pods using `ingress-nginx.labels`. (#9732)"
-    - "HPA: autoscaling/v2beta1 deprecated, bump apiVersion to v2 for defaultBackend (#9731)"
-    - "Fix incorrect annotation name in upstream hashing configuration (#9617)"
+     - "[helm] Support custom port configuration for internal service (#9846)"
+     - "Adding resource type to default HPA configuration to resolve issues with Terraform helm chart usage (#9803)"
+     - "Update Ingress-Nginx version controller-v1.7.1"
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.7.0
+appVersion: 1.7.1
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 engine: gotpl
@@ -32,4 +22,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.6.0
+version: 4.6.1
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 70a2ea688..108a5091e 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.6.0](https://img.shields.io/badge/Version-4.6.0-informational?style=flat-square) ![AppVersion: 1.7.0](https://img.shields.io/badge/AppVersion-1.7.0-informational?style=flat-square)
+![Version: 4.6.1](https://img.shields.io/badge/Version-4.6.1-informational?style=flat-square) ![AppVersion: 1.7.1](https://img.shields.io/badge/AppVersion-1.7.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -310,13 +310,13 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7"` |  |
-| controller.image.digestChroot | string | `"sha256:e84ef3b44c8efeefd8b0aa08770a886bfea1f04c53b61b4ba9a7204e9f1a7edc"` |  |
+| controller.image.digest | string | `"sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407"` |  |
+| controller.image.digestChroot | string | `"sha256:e35d5ab487861b9d419c570e3530589229224a0762c7b4d2e2222434abb8d988"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.7.0"` |  |
+| controller.image.tag | string | `"v1.7.1"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/Changelog-4.6.1.md b/charts/ingress-nginx/changelog/Changelog-4.6.1.md
new file mode 100644
index 000000000..57d99b8db
--- /dev/null
+++ b/charts/ingress-nginx/changelog/Changelog-4.6.1.md
@@ -0,0 +1,11 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.6.1
+
+* [helm] Support custom port configuration for internal service (#9846)
+* Adding resource type to default HPA configuration to resolve issues with Terraform helm chart usage (#9803)
+* Update Ingress-Nginx version controller-v1.7.1
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.6.0...helm-chart-4.6.1
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 611c384f0..551fb0449 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -23,9 +23,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.7.0"
-    digest: sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
-    digestChroot: sha256:e84ef3b44c8efeefd8b0aa08770a886bfea1f04c53b61b4ba9a7204e9f1a7edc
+    tag: "v1.7.1"
+    digest: sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
+    digestChroot: sha256:e35d5ab487861b9d419c570e3530589229224a0762c7b4d2e2222434abb8d988
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
@@ -395,7 +395,6 @@ controller:
     #   - type: Pods
     #     value: 2
     #     periodSeconds: 60
-
   # -- Enable mimalloc as a drop-in replacement for malloc.
   ## ref: https://github.com/microsoft/mimalloc
   ##
@@ -492,7 +491,6 @@ controller:
       targetPorts: {}
       #  http: http
       #  https: https
-
   # shareProcessNamespace enables process namespace sharing within the pod.
   # This can be used for example to signal log rotation using `kill -USR1` from a sidecar.
   shareProcessNamespace: false
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index c1d595c3a..41006c016 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -514,7 +514,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -525,7 +525,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -561,7 +561,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -572,7 +572,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -623,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index ed6275a0b..4e4f9ca9b 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -427,7 +427,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
     spec:
       containers:
       - args:
@@ -451,7 +451,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,7 +526,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -537,7 +537,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -573,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -622,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 595088a0c..3f015f001 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
     spec:
       containers:
       - args:
@@ -436,7 +436,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -508,7 +508,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -519,7 +519,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -555,7 +555,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -566,7 +566,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -604,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -617,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 0540ff1cb..a914aca5e 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -414,7 +414,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
     spec:
       containers:
       - args:
@@ -438,7 +438,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -510,7 +510,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -521,7 +521,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -557,7 +557,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -568,7 +568,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -606,7 +606,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -619,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index ae6ae1f8f..676ae1229 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
     spec:
       containers:
       - args:
@@ -441,7 +441,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -513,7 +513,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -524,7 +524,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -560,7 +560,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -571,7 +571,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -609,7 +609,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -622,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index a387fa928..e9d3522f0 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -519,7 +519,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -530,7 +530,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -566,7 +566,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -577,7 +577,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -615,7 +615,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -628,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index a77a08ae9..6a327b97f 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -620,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -633,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index ab9142ce2..389e2a920 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
     spec:
       containers:
       - args:
@@ -441,7 +441,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -513,7 +513,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -524,7 +524,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -560,7 +560,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -571,7 +571,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.0
+        app.kubernetes.io/version: 1.7.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -609,7 +609,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -622,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.0
+    app.kubernetes.io/version: 1.7.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index f6ba17a09..e9418bdfc 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -62,7 +62,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -225,7 +225,7 @@ In AWS, we use a Network load balancer (NLB) to expose the NGINX Ingress control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -233,10 +233,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -282,7 +282,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -299,7 +299,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -307,7 +307,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -315,7 +315,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -330,7 +330,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -357,7 +357,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.0/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index ed3e77f67..9b3c5f2ff 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -373,10 +373,6 @@ Do not try to edit it manually.
 
 - [should apply the annotation to the default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L38)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
-
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
@@ -898,4 +894,13 @@ Do not try to edit it manually.
 
 - [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L46)
 - [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L80)
-- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L169)
\ No newline at end of file
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L169)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
+
+### [[metrics] exported prometheus metrics](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L36)
+
+- [exclude socket request metrics are absent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L50)
+- [exclude socket request metrics are present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L72)
\ No newline at end of file

From c3a22a219ac2826901bd6426e3fdf25519e53a64 Mon Sep 17 00:00:00 2001
From: James Strong <james.strong@chainguard.dev>
Date: Fri, 5 May 2023 09:52:39 -0400
Subject: [PATCH 0750/1641] fix controller tag in release

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 changelog/Changelog-1.7.1.md |  4 ++--
 magefiles/helm.go            |  2 +-
 magefiles/release.go         | 12 +++++++-----
 3 files changed, 10 insertions(+), 8 deletions(-)

diff --git a/changelog/Changelog-1.7.1.md b/changelog/Changelog-1.7.1.md
index 4921dea15..9b8422c7e 100644
--- a/changelog/Changelog-1.7.1.md
+++ b/changelog/Changelog-1.7.1.md
@@ -3,8 +3,8 @@
 ### 1.7.1
 Images:
 
- * registry.k8s.io/controller:controller-v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
- * registry.k8s.io/controller-chroot:controller-v1.7.1@sha256:e35d5ab487861b9d419c570e3530589229224a0762c7b4d2e2222434abb8d988
+ * registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
+ * registry.k8s.io/ingress-nginx/controller-chroot:v1.7.1@sha256:e35d5ab487861b9d419c570e3530589229224a0762c7b4d2e2222434abb8d988
  
 ### All Changes:
 
diff --git a/magefiles/helm.go b/magefiles/helm.go
index d56cbed78..585a93413 100644
--- a/magefiles/helm.go
+++ b/magefiles/helm.go
@@ -104,7 +104,7 @@ func updateChartReleaseNotes(releasesNotes []string) {
 	CheckIfError(err, "HELM Could not Load Chart to update release notes %s", HelmChartPath)
 	var releaseNoteString string
 	for i := range releasesNotes {
-		releaseNoteString = fmt.Sprintf("%s - %s\n", releaseNoteString, releasesNotes[i])
+		releaseNoteString = fmt.Sprintf("%s - \"%s\"\n", releaseNoteString, releasesNotes[i])
 	}
 	Info("HELM Release note string %s", releaseNoteString)
 	chart.Annotations["artifacthub.io/changes"] = releaseNoteString
diff --git a/magefiles/release.go b/magefiles/release.go
index aeaafc3d2..c02b88cfd 100644
--- a/magefiles/release.go
+++ b/magefiles/release.go
@@ -356,15 +356,17 @@ func makeReleaseNotes(newVersion string) (*ReleaseNote, error) {
 	c1 := ControllerImage{
 		Digest:   controllerDigest,
 		Registry: INGRESS_REGISTRY,
-		Name:     "controller",
-		Tag:      newReleaseNotes.NewControllerVersion,
+		Name:     "ingress-nginx/controller",
+		Tag:      fmt.Sprintf("v%s", newReleaseNotes.Version),
 	}
+
 	c2 := ControllerImage{
 		Digest:   controllerChrootDigest,
 		Registry: INGRESS_REGISTRY,
-		Name:     "controller-chroot",
-		Tag:      newReleaseNotes.NewControllerVersion,
+		Name:     "ingress-nginx/controller-chroot",
+		Tag:      fmt.Sprintf("v%s", newReleaseNotes.Version),
 	}
+
 	newReleaseNotes.ControllerImages = append(newReleaseNotes.ControllerImages, c1)
 	newReleaseNotes.ControllerImages = append(newReleaseNotes.ControllerImages, c2)
 	Debug("New Release Controller Images %s %s", newReleaseNotes.ControllerImages[0].Digest, newReleaseNotes.ControllerImages[1].Digest)
@@ -413,7 +415,7 @@ func (r ReleaseNote) helmTemplate() {
 	Debug("ChangeLog Templates %s", string(changelogTemplate))
 	t := template.Must(template.New("changelog").Parse(string(changelogTemplate)))
 	// create a new file
-	file, err := os.Create(fmt.Sprintf("charts/ingress-nginx/changelog/Changelog-%s.md", r.Version))
+	file, err := os.Create(fmt.Sprintf("charts/ingress-nginx/changelog/Changelog-%s.md", r.NewHelmChartVersion))
 	if err != nil {
 		ErrorF("Could not create changelog file %s", err)
 	}

From 788b3606b19df563cc9d45341561f5fdd5f98c12 Mon Sep 17 00:00:00 2001
From: guessi <guessi@gmail.com>
Date: Sat, 6 May 2023 00:31:13 +0800
Subject: [PATCH 0751/1641] Keep project name display aligned (#9920)

---
 deploy/grafana/dashboards/README.md           |  2 +-
 docs/deploy/baremetal.md                      | 28 +++++++++----------
 docs/deploy/hardening-guide.md                |  2 +-
 docs/deploy/index.md                          | 14 +++++-----
 docs/developer-guide/code-overview.md         |  2 +-
 docs/developer-guide/getting-started.md       |  4 +--
 docs/examples/affinity/cookie/README.md       |  2 +-
 .../customization/custom-errors/README.md     |  4 +--
 .../customization/custom-headers/README.md    |  4 +--
 .../customization/ssl-dh-param/README.md      |  2 +-
 docs/examples/tls-termination/README.md       |  2 +-
 docs/how-it-works.md                          |  2 +-
 docs/user-guide/cli-arguments.md              |  2 +-
 docs/user-guide/external-articles.md          |  2 +-
 docs/user-guide/miscellaneous.md              |  4 +--
 docs/user-guide/monitoring.md                 | 10 +++----
 docs/user-guide/multiple-ingress.md           |  4 +--
 .../nginx-configuration/annotations.md        |  2 +-
 .../third-party-addons/opentelemetry.md       |  2 +-
 .../third-party-addons/opentracing.md         |  2 +-
 images/README.md                              |  2 +-
 images/custom-error-pages/README.md           |  2 +-
 mkdocs.yml                                    |  2 +-
 23 files changed, 51 insertions(+), 51 deletions(-)

diff --git a/deploy/grafana/dashboards/README.md b/deploy/grafana/dashboards/README.md
index 26195583b..e16180c3b 100644
--- a/deploy/grafana/dashboards/README.md
+++ b/deploy/grafana/dashboards/README.md
@@ -4,7 +4,7 @@ Ingress-nginx supports a rich collection of prometheus metrics.  If you have pro
 
 This folder contains two dashboards that you can import.
 
-## 1. NGINX Ingress Controller
+## 1. Ingress-Nginx Controller
 
 ![Dashboard](screenshot.png)
 
diff --git a/docs/deploy/baremetal.md b/docs/deploy/baremetal.md
index 7d8076147..f5ff54174 100644
--- a/docs/deploy/baremetal.md
+++ b/docs/deploy/baremetal.md
@@ -1,14 +1,14 @@
 # Bare-metal considerations
 
 In traditional *cloud* environments, where network load balancers are available on-demand, a single Kubernetes manifest
-suffices to provide a single point of contact to the NGINX Ingress controller to external clients and, indirectly, to
+suffices to provide a single point of contact to the Ingress-Nginx Controller to external clients and, indirectly, to
 any application running inside the cluster. *Bare-metal* environments lack this commodity, requiring a slightly
 different setup to offer the same kind of access to external consumers.
 
 ![Cloud environment](../images/baremetal/cloud_overview.jpg)
 ![Bare-metal environment](../images/baremetal/baremetal_overview.jpg)
 
-The rest of this document describes a few recommended approaches to deploying the NGINX Ingress controller inside a
+The rest of this document describes a few recommended approaches to deploying the Ingress-Nginx Controller inside a
 Kubernetes cluster running on bare-metal.
 
 ## A pure software solution: MetalLB
@@ -30,7 +30,7 @@ the traffic for the `ingress-nginx` Service IP. See [Traffic policies][metallb-t
     yourself by reading the official documentation thoroughly.
 
 MetalLB can be deployed either with a simple Kubernetes manifest or with Helm. The rest of this example assumes MetalLB
-was deployed following the [Installation][metallb-install] instructions, and that the NGINX Ingress controller was installed 
+was deployed following the [Installation][metallb-install] instructions, and that the Ingress-Nginx Controller was installed 
 using the steps described in the [quickstart section of the installation guide][install-quickstart].
 
 MetalLB requires a pool of IP addresses in order to be able to take ownership of the `ingress-nginx` Service. This pool
@@ -164,7 +164,7 @@ field of the `ingress-nginx` Service spec to `Local` ([example][preserve-ip]).
 !!! warning
     This setting effectively **drops packets** sent to Kubernetes nodes which are not running any instance of the NGINX
     Ingress controller. Consider [assigning NGINX Pods to specific nodes][pod-assign] in order to control on what nodes
-    the NGINX Ingress controller should be scheduled or not scheduled.
+    the Ingress-Nginx Controller should be scheduled or not scheduled.
 
 !!! example
     In a Kubernetes cluster composed of 3 nodes (the external IP is added as an example, in most bare-metal environments
@@ -193,7 +193,7 @@ field of the `ingress-nginx` Service spec to `Local` ([example][preserve-ip]).
 
 * **Ingress status**
 
-Because NodePort Services do not get a LoadBalancerIP assigned by definition, the NGINX Ingress controller **does not
+Because NodePort Services do not get a LoadBalancerIP assigned by definition, the Ingress-Nginx Controller **does not
 update the status of Ingress objects it manages**.
 
 ```console
@@ -202,12 +202,12 @@ NAME           HOSTS               ADDRESS   PORTS
 test-ingress   myapp.example.com             80
 ```
 
-Despite the fact there is no load balancer providing a public IP address to the NGINX Ingress controller, it is possible
+Despite the fact there is no load balancer providing a public IP address to the Ingress-Nginx Controller, it is possible
 to force the status update of all managed Ingress objects by setting the `externalIPs` field of the `ingress-nginx`
 Service.
 
 !!! warning
-    There is more to setting `externalIPs` than just enabling the NGINX Ingress controller to update the status of
+    There is more to setting `externalIPs` than just enabling the Ingress-Nginx Controller to update the status of
     Ingress objects. Please read about this option in the [Services][external-ips] page of official Kubernetes
     documentation as well as the section about [External IPs](#external-ips) in this document for more information.
 
@@ -268,11 +268,11 @@ for generating redirect URLs that take into account the URL used by external cli
 
 In a setup where there is no external load balancer available but using NodePorts is not an option, one can configure
 `ingress-nginx` Pods to use the network of the host they run on instead of a dedicated network namespace. The benefit of
-this approach is that the NGINX Ingress controller can bind ports 80 and 443 directly to Kubernetes nodes' network
+this approach is that the Ingress-Nginx Controller can bind ports 80 and 443 directly to Kubernetes nodes' network
 interfaces, without the extra network translation imposed by NodePort Services.
 
 !!! note
-    This approach does not leverage any Service object to expose the NGINX Ingress controller. If the `ingress-nginx`
+    This approach does not leverage any Service object to expose the Ingress-Nginx Controller. If the `ingress-nginx`
     Service exists in the target cluster, it is **recommended to delete it**.
 
 This can be achieved by enabling the `hostNetwork` option in the Pods' spec.
@@ -284,7 +284,7 @@ template:
 ```
 
 !!! danger "Security considerations"
-    Enabling this option **exposes every system daemon to the NGINX Ingress controller** on any network interface,
+    Enabling this option **exposes every system daemon to the Ingress-Nginx Controller** on any network interface,
     including the host's loopback. Please evaluate the impact this may have on the security of your system carefully.
 
 !!! example
@@ -299,7 +299,7 @@ template:
     ingress-nginx-controller-5b4cf5fc6-lzrls   1/1     Running   203.0.113.2   host-2
     ```
 
-One major limitation of this deployment approach is that only **a single NGINX Ingress controller Pod** may be scheduled
+One major limitation of this deployment approach is that only **a single Ingress-Nginx Controller Pod** may be scheduled
 on each cluster node, because binding the same port multiple times on the same network interface is technically
 impossible. Pods that are unschedulable due to such situation fail with the following event:
 
@@ -312,7 +312,7 @@ Events:
   Warning  FailedScheduling  default-scheduler  0/3 nodes are available: 3 node(s) didn't have free ports for the requested pod ports.
 ```
 
-One way to ensure only schedulable Pods are created is to deploy the NGINX Ingress controller as a *DaemonSet* instead
+One way to ensure only schedulable Pods are created is to deploy the Ingress-Nginx Controller as a *DaemonSet* instead
 of a traditional Deployment.
 
 !!! info
@@ -334,7 +334,7 @@ expected to resolve internal names for any reason.
 
 * **Ingress status**
 
-Because there is no Service exposing the NGINX Ingress controller in a configuration using the host network, the default
+Because there is no Service exposing the Ingress-Nginx Controller in a configuration using the host network, the default
 `--publish-service` flag used in standard cloud setups **does not apply** and the status of all Ingress objects remains
 blank.
 
@@ -346,7 +346,7 @@ test-ingress   myapp.example.com             80
 
 Instead, and because bare-metal nodes usually don't have an ExternalIP, one has to enable the
 [`--report-node-internal-ip-address`][cli-args] flag, which sets the status of all Ingress objects to the internal IP
-address of all nodes running the NGINX Ingress controller.
+address of all nodes running the Ingress-Nginx Controller.
 
 !!! example
     Given a `ingress-nginx-controller` DaemonSet composed of 2 replicas
diff --git a/docs/deploy/hardening-guide.md b/docs/deploy/hardening-guide.md
index d428bc3aa..cfbdb1466 100644
--- a/docs/deploy/hardening-guide.md
+++ b/docs/deploy/hardening-guide.md
@@ -94,7 +94,7 @@ This guide refers to chapters in the CIS Benchmark. For full explanation you sho
 | __5 Request Filtering and Restrictions__||| |
 | ||| |
 | __5.1 Access Control__||| |
-| 5.1.1 Ensure allow and deny filters limit access to specific IP addresses (Not Scored)| OK/ACTION NEEDED | Depends on use case, geo ip module is compiled into nginx ingress controller, there are several ways to use it | If needed set IP restrictions via annotations or work with config snippets (be careful with lets-encrypt-http-challenge!) |
+| 5.1.1 Ensure allow and deny filters limit access to specific IP addresses (Not Scored)| OK/ACTION NEEDED | Depends on use case, geo ip module is compiled into Ingress-Nginx Controller, there are several ways to use it | If needed set IP restrictions via annotations or work with config snippets (be careful with lets-encrypt-http-challenge!) |
 | 5.1.2 Ensure only whitelisted HTTP methods are allowed (Not Scored) | OK/ACTION NEEDED | Depends on use case| If required it can be set via config snippet|
 | ||| |
 | __5.2 Request Limits__||| |
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index e9418bdfc..e33ee5dbe 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -1,6 +1,6 @@
 # Installation Guide
 
-There are multiple ways to install the NGINX ingress controller:
+There are multiple ways to install the Ingress-Nginx Controller:
 
 - with [Helm](https://helm.sh), using the project repository chart;
 - with `kubectl apply`, using YAML manifests;
@@ -192,9 +192,9 @@ doesn't work, you might have to fall back to the `kubectl port-forward` method d
 
 Rancher Desktop provides Kubernetes and Container Management on the desktop. Kubernetes is enabled by default in Rancher Desktop. 
 
-Rancher Desktop uses K3s under the hood, which in turn uses Traefik as the default ingress controller for the Kubernetes cluster. To use NGINX ingress controller in place of the default Traefik, disable Traefik from Preference > Kubernetes menu.
+Rancher Desktop uses K3s under the hood, which in turn uses Traefik as the default ingress controller for the Kubernetes cluster. To use Ingress-Nginx Controller in place of the default Traefik, disable Traefik from Preference > Kubernetes menu.
 
-Once traefik is disabled, the NGINX ingress controller can be installed on Rancher Desktop using the default [quick start](#quick-start) instructions. Follow the instructions described in the [local testing section](#local-testing) to try a sample.
+Once traefik is disabled, the Ingress-Nginx Controller can be installed on Rancher Desktop using the default [quick start](#quick-start) instructions. Follow the instructions described in the [local testing section](#local-testing) to try a sample.
 
 ### Cloud deployments
 
@@ -214,7 +214,7 @@ options of various cloud providers.
 
 #### AWS
 
-In AWS, we use a Network load balancer (NLB) to expose the NGINX Ingress controller behind a Service of `Type=LoadBalancer`.
+In AWS, we use a Network load balancer (NLB) to expose the Ingress-Nginx Controller behind a Service of `Type=LoadBalancer`.
 
 !!! info
     The provided templates illustrate the setup for legacy in-tree service load balancer for AWS NLB.
@@ -419,14 +419,14 @@ Here is how these Ingress versions are supported in Kubernetes:
 - from Kubernetes 1.19 to 1.21, both `v1beta1` and `v1` Ingress resources are supported
 - in Kubernetes 1.22 and above, only `v1` Ingress resources are supported
 
-And here is how these Ingress versions are supported in NGINX Ingress Controller:
+And here is how these Ingress versions are supported in Ingress-Nginx Controller:
 - before version 1.0, only `v1beta1` Ingress resources are supported
 - in version 1.0 and above, only `v1` Ingress resources are
 
 As a result, if you're running Kubernetes 1.19 or later, you should be able to use the latest version of the NGINX 
 Ingress Controller; but if you're using an old version of Kubernetes (1.18 or earlier) you will have to use version 0.X 
-of the NGINX Ingress Controller (e.g. version 0.49).
+of the Ingress-Nginx Controller (e.g. version 0.49).
 
-The Helm chart of the NGINX Ingress Controller switched to version 1 in version 4 of the chart. In other words, if 
+The Helm chart of the Ingress-Nginx Controller switched to version 1 in version 4 of the chart. In other words, if 
 you're running Kubernetes 1.19 or earlier, you should use version 3.X of the chart (this can be done by adding 
 `--version='<4'` to the `helm install` command ).
diff --git a/docs/developer-guide/code-overview.md b/docs/developer-guide/code-overview.md
index a26083c6a..8e872211d 100644
--- a/docs/developer-guide/code-overview.md
+++ b/docs/developer-guide/code-overview.md
@@ -53,7 +53,7 @@ This code can be found in [internal/file](https://github.com/kubernetes/ingress-
 
 #### Ingress functions
 
-Contains all the logics from NGINX Ingress Controller, with some examples being:
+Contains all the logics from Ingress-Nginx Controller, with some examples being:
 
 * Expected Golang structures that will be used in templates and other parts of the code - [internal/ingress/types.go](https://github.com/kubernetes/ingress-nginx/blob/main/internal/ingress/types.go).
 * supported annotations and its parsing logics - [internal/ingress/annotations](https://github.com/kubernetes/ingress-nginx/tree/main/internal/ingress/annotations).
diff --git a/docs/developer-guide/getting-started.md b/docs/developer-guide/getting-started.md
index 9f4be8fcc..4b7ed46f0 100644
--- a/docs/developer-guide/getting-started.md
+++ b/docs/developer-guide/getting-started.md
@@ -1,6 +1,6 @@
- Developing for NGINX Ingress Controller
+ Developing for Ingress-Nginx Controller
 
-This document explains how to get started with developing for NGINX Ingress controller.
+This document explains how to get started with developing for Ingress-Nginx Controller.
 
 For the really new contributors, who want to contribute to the INGRESS-NGINX project, but need help with understanding some basic concepts,
 that are needed to work with the Kubernetes ingress resource, here is a link to the [New Contributors Guide](https://github.com/kubernetes/ingress-nginx/blob/main/NEW_CONTRIBUTOR.md).
diff --git a/docs/examples/affinity/cookie/README.md b/docs/examples/affinity/cookie/README.md
index 1920d132b..e66503dd7 100644
--- a/docs/examples/affinity/cookie/README.md
+++ b/docs/examples/affinity/cookie/README.md
@@ -67,7 +67,7 @@ Accept-Ranges: bytes
 ```
 
 In the example above, you can see that the response contains a `Set-Cookie` header with the settings we have defined.
-This cookie is created by the NGINX Ingress Controller, it contains a randomly generated key corresponding to the upstream used for that request (selected using [consistent hashing][consistent-hashing]) and has an `Expires` directive.
+This cookie is created by the Ingress-Nginx Controller, it contains a randomly generated key corresponding to the upstream used for that request (selected using [consistent hashing][consistent-hashing]) and has an `Expires` directive.
 If a client sends a cookie that doesn't correspond to an upstream, NGINX selects an upstream and creates a corresponding cookie.
 
 If the backend pool grows NGINX will keep sending the requests through the same server of the first request, even if it's overloaded.
diff --git a/docs/examples/customization/custom-errors/README.md b/docs/examples/customization/custom-errors/README.md
index a137fd6dc..a7c9545b0 100644
--- a/docs/examples/customization/custom-errors/README.md
+++ b/docs/examples/customization/custom-errors/README.md
@@ -29,7 +29,7 @@ service/nginx-errors   ClusterIP   10.0.0.12   <none>        80/TCP    10s
 
 ## Ingress controller configuration
 
-If you do not already have an instance of the NGINX Ingress controller running, deploy it according to the
+If you do not already have an instance of the Ingress-Nginx Controller running, deploy it according to the
 [deployment guide][deploy], then follow these steps:
 
 1. Edit the `ingress-nginx-controller` Deployment and set the value of the `--default-backend-service` flag to the name of the
@@ -37,7 +37,7 @@ If you do not already have an instance of the NGINX Ingress controller running,
 
 2. Edit the `ingress-nginx-controller` ConfigMap and create the key `custom-http-errors` with a value of `404,503`.
 
-3. Take note of the IP address assigned to the NGINX Ingress controller Service.
+3. Take note of the IP address assigned to the Ingress-Nginx Controller Service.
     ```
     $ kubectl get svc ingress-nginx
     NAME            TYPE        CLUSTER-IP  EXTERNAL-IP   PORT(S)          AGE
diff --git a/docs/examples/customization/custom-headers/README.md b/docs/examples/customization/custom-headers/README.md
index 499bfc386..0da12582f 100644
--- a/docs/examples/customization/custom-headers/README.md
+++ b/docs/examples/customization/custom-headers/README.md
@@ -10,7 +10,7 @@ To work around this limitation, perform a rolling restart of the deployment.
 
 ## Example
 
-This example demonstrates configuration of the nginx ingress controller via
+This example demonstrates configuration of the Ingress-Nginx Controller via
 a ConfigMap to pass a custom list of headers to the upstream
 server.
 
@@ -26,7 +26,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/main
 kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/docs/examples/customization/custom-headers/configmap.yaml
 ```
 
-The nginx ingress controller will read the `ingress-nginx/ingress-nginx-controller` ConfigMap, find the `proxy-set-headers` key, read HTTP headers from the `ingress-nginx/custom-headers` ConfigMap, and include those HTTP headers in all requests flowing from nginx to the backends.
+The Ingress-Nginx Controller will read the `ingress-nginx/ingress-nginx-controller` ConfigMap, find the `proxy-set-headers` key, read HTTP headers from the `ingress-nginx/custom-headers` ConfigMap, and include those HTTP headers in all requests flowing from nginx to the backends.
 
 
 The above example was for passing a custom list of headers to the upstream server.
diff --git a/docs/examples/customization/ssl-dh-param/README.md b/docs/examples/customization/ssl-dh-param/README.md
index 2eae67ce2..fcd80757b 100644
--- a/docs/examples/customization/ssl-dh-param/README.md
+++ b/docs/examples/customization/ssl-dh-param/README.md
@@ -1,6 +1,6 @@
 # Custom DH parameters for perfect forward secrecy
 
-This example aims to demonstrate the deployment of an nginx ingress controller and
+This example aims to demonstrate the deployment of an Ingress-Nginx Controller and
 use a ConfigMap to configure a custom Diffie-Hellman parameters file to help with
 "Perfect Forward Secrecy".
 
diff --git a/docs/examples/tls-termination/README.md b/docs/examples/tls-termination/README.md
index bd68ddc67..25139b381 100644
--- a/docs/examples/tls-termination/README.md
+++ b/docs/examples/tls-termination/README.md
@@ -1,6 +1,6 @@
 # TLS termination
 
-This example demonstrates how to terminate TLS through the nginx Ingress controller.
+This example demonstrates how to terminate TLS through the Ingress-Nginx Controller.
 
 ## Prerequisites
 
diff --git a/docs/how-it-works.md b/docs/how-it-works.md
index 894a504dc..161803210 100644
--- a/docs/how-it-works.md
+++ b/docs/how-it-works.md
@@ -60,7 +60,7 @@ In a relatively big cluster with frequently deploying apps this feature saves si
 
 Because the ingress controller works using the [synchronization loop pattern](https://coreos.com/kubernetes/docs/latest/replication-controller.html#the-reconciliation-loop-in-detail), it is applying the configuration for all matching objects. In case some Ingress objects have a broken configuration, for example a syntax error in the `nginx.ingress.kubernetes.io/configuration-snippet` annotation, the generated configuration becomes invalid, does not reload and hence no more ingresses will be taken into account.
 
-To prevent this situation to happen, the nginx ingress controller optionally exposes a [validating admission webhook server][8] to ensure the validity of incoming ingress objects.
+To prevent this situation to happen, the Ingress-Nginx Controller optionally exposes a [validating admission webhook server][8] to ensure the validity of incoming ingress objects.
 This webhook appends the incoming ingress objects to the list of ingresses, generates the configuration and calls nginx to ensure the configuration has no syntax errors.
 
 [0]: https://github.com/openresty/lua-nginx-module/pull/1259
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index 59e52957d..bc0894a52 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -68,7 +68,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--validating-webhook`             | The address to start an admission controller on to validate incoming ingresses. Takes the form "<host>:port". If not provided, no admission controller is started. |
 | `--validating-webhook-certificate` | The path of the validating webhook certificate PEM. |
 | `--validating-webhook-key`         | The path of the validating webhook key PEM. |
-| `--version`                        | Show release information about the NGINX Ingress controller and exit. |
+| `--version`                        | Show release information about the Ingress-Nginx Controller and exit. |
 | `--watch-ingress-without-class`                        | Define if Ingress Controller should also watch for Ingresses without an IngressClass or the annotation specified. (default false) |
 | `--watch-namespace`                | Namespace the controller watches for updates to Kubernetes objects. This includes Ingresses, Services and all configuration resources. All namespaces are watched if this parameter is left empty. |
 | `--watch-namespace-selector`       | The controller will watch namespaces whose labels match the given selector. This flag only takes effective when `--watch-namespace` is empty. |
diff --git a/docs/user-guide/external-articles.md b/docs/user-guide/external-articles.md
index d9fd828b8..27a3f4447 100644
--- a/docs/user-guide/external-articles.md
+++ b/docs/user-guide/external-articles.md
@@ -2,5 +2,5 @@
 
 - [Pain(less) NGINX Ingress](http://danielfm.me/posts/painless-nginx-ingress.html)
 - [Accessing Kubernetes Pods from Outside of the Cluster](http://alesnosek.com/blog/2017/02/14/accessing-kubernetes-pods-from-outside-of-the-cluster)
-- [Kubernetes - Redirect HTTP to HTTPS with ELB and the nginx ingress controller](https://dev.to/tomhoule/kubernetes---redirect-http-to-https-with-elb-and-the-nginx-ingress-controller)
+- [Kubernetes - Redirect HTTP to HTTPS with ELB and the Ingress-Nginx Controller](https://dev.to/tomhoule/kubernetes---redirect-http-to-https-with-elb-and-the-nginx-ingress-controller)
 - [Configure Nginx Ingress Controller for TLS termination on Kubernetes on Azure](https://blogs.technet.microsoft.com/livedevopsinjapan/2017/02/28/configure-nginx-ingress-controller-for-tls-termination-on-kubernetes-on-azure-2/)
diff --git a/docs/user-guide/miscellaneous.md b/docs/user-guide/miscellaneous.md
index d9b32d36f..e7d1ac59c 100644
--- a/docs/user-guide/miscellaneous.md
+++ b/docs/user-guide/miscellaneous.md
@@ -32,7 +32,7 @@ The default value of these settings is `60 seconds`.
 A more adequate value to support websockets is a value higher than one hour (`3600`).
 
 !!! Important
-    If the NGINX ingress controller is exposed with a service `type=LoadBalancer` make sure the protocol between the loadbalancer and NGINX is TCP.
+    If the Ingress-Nginx Controller is exposed with a service `type=LoadBalancer` make sure the protocol between the loadbalancer and NGINX is TCP.
 
 ## Optimizing TLS Time To First Byte (TTTFB)
 
@@ -52,4 +52,4 @@ The previous behavior can be restored using `retry-non-idempotent=true` in the c
 
 ## Why endpoints and not services
 
-The NGINX ingress controller does not use [Services](http://kubernetes.io/docs/user-guide/services) to route traffic to the pods. Instead it uses the Endpoints API in order to bypass [kube-proxy](http://kubernetes.io/docs/admin/kube-proxy/) to allow NGINX features like session affinity and custom load balancing algorithms. It also removes some overhead, such as conntrack entries for iptables DNAT.
+The Ingress-Nginx Controller does not use [Services](http://kubernetes.io/docs/user-guide/services) to route traffic to the pods. Instead it uses the Endpoints API in order to bypass [kube-proxy](http://kubernetes.io/docs/admin/kube-proxy/) to allow NGINX features like session affinity and custom load balancing algorithms. It also removes some overhead, such as conntrack entries for iptables DNAT.
diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index 281207866..1e30e556f 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -6,14 +6,14 @@ Two different methods to install and configure Prometheus and Grafana are descri
 
 ## Prometheus and Grafana installation using Pod Annotations
 
-This tutorial will show you how to install [Prometheus](https://prometheus.io/) and [Grafana](https://grafana.com/) for scraping the metrics of the NGINX Ingress controller.
+This tutorial will show you how to install [Prometheus](https://prometheus.io/) and [Grafana](https://grafana.com/) for scraping the metrics of the Ingress-Nginx Controller.
 
 !!! important
     This example uses `emptyDir` volumes for Prometheus and Grafana. This means once the pod gets terminated you will lose all the data.
 
 ### Before You Begin
 
-- The NGINX Ingress controller should already be deployed according to the deployment instructions [here](../deploy/index.md).
+- The Ingress-Nginx Controller should already be deployed according to the deployment instructions [here](../deploy/index.md).
 
 - The controller should be configured for exporting metrics. This requires 3 configurations to the controller. These configurations are :
   1. controller.metrics.enabled=true
@@ -184,9 +184,9 @@ According to the above example, this URL will be http://10.192.0.3:31086
 ## Prometheus and Grafana installation using Service Monitors
 This document assumes you're using helm and using the kube-prometheus-stack package to install Prometheus and Grafana.
 
-### Verify NGINX Ingress controller is installed
+### Verify Ingress-Nginx Controller is installed
 
-- The NGINX Ingress controller should already be deployed according to the deployment instructions [here](../deploy/index.md).
+- The Ingress-Nginx Controller should already be deployed according to the deployment instructions [here](../deploy/index.md).
 
 - To check if Ingress controller is deployed,
   ```
@@ -214,7 +214,7 @@ This document assumes you're using helm and using the kube-prometheus-stack pack
 
 - If prometheus is not installed, then you can install from [here](https://artifacthub.io/packages/helm/prometheus-community/kube-prometheus-stack)
 
-### Re-configure NGINX Ingress controller
+### Re-configure Ingress-Nginx Controller
 
 - The Ingress NGINX controller needs to be reconfigured for exporting metrics. This requires 3 additional configurations to the controller. These configurations are :
   ```
diff --git a/docs/user-guide/multiple-ingress.md b/docs/user-guide/multiple-ingress.md
index 6a9457a9c..fca93ee65 100644
--- a/docs/user-guide/multiple-ingress.md
+++ b/docs/user-guide/multiple-ingress.md
@@ -111,7 +111,7 @@ spec:
 
 then setting the corresponding `kubernetes.io/ingress.class: "internal-nginx"` annotation on your Ingresses.
 
-To reiterate, setting the annotation to any value which does not match a valid ingress class will force the NGINX Ingress controller to ignore your Ingress.
-If you are only running a single NGINX ingress controller, this can be achieved by setting the annotation to any value except "nginx" or an empty string.
+To reiterate, setting the annotation to any value which does not match a valid ingress class will force the Ingress-Nginx Controller to ignore your Ingress.
+If you are only running a single Ingress-Nginx Controller, this can be achieved by setting the annotation to any value except "nginx" or an empty string.
 
 Do this if you wish to use one of the other Ingress controllers at the same time as the NGINX controller.
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 3b463eea7..328f13a17 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -598,7 +598,7 @@ the User guide.
 
 ### Service Upstream
 
-By default the NGINX ingress controller uses a list of all endpoints (Pod IP/port) in the NGINX upstream configuration.
+By default the Ingress-Nginx Controller uses a list of all endpoints (Pod IP/port) in the NGINX upstream configuration.
 
 The `nginx.ingress.kubernetes.io/service-upstream` annotation disables that behavior and instead uses a single upstream in NGINX, the service's Cluster IP and port.
 
diff --git a/docs/user-guide/third-party-addons/opentelemetry.md b/docs/user-guide/third-party-addons/opentelemetry.md
index 7aeea541c..1b9b6536e 100644
--- a/docs/user-guide/third-party-addons/opentelemetry.md
+++ b/docs/user-guide/third-party-addons/opentelemetry.md
@@ -2,7 +2,7 @@
 
 Enables requests served by NGINX for distributed telemetry via The OpenTelemetry Project.
 
-Using the third party module [opentelemetry-cpp-contrib/nginx](https://github.com/open-telemetry/opentelemetry-cpp-contrib/tree/main/instrumentation/nginx) the NGINX ingress controller can configure NGINX to enable [OpenTelemetry](http://opentelemetry.io) instrumentation.
+Using the third party module [opentelemetry-cpp-contrib/nginx](https://github.com/open-telemetry/opentelemetry-cpp-contrib/tree/main/instrumentation/nginx) the Ingress-Nginx Controller can configure NGINX to enable [OpenTelemetry](http://opentelemetry.io) instrumentation.
 By default this feature is disabled.
 
 ## Usage
diff --git a/docs/user-guide/third-party-addons/opentracing.md b/docs/user-guide/third-party-addons/opentracing.md
index 6ed0f195e..f5ec59faf 100644
--- a/docs/user-guide/third-party-addons/opentracing.md
+++ b/docs/user-guide/third-party-addons/opentracing.md
@@ -2,7 +2,7 @@
 
 Enables requests served by NGINX for distributed tracing via The OpenTracing Project.
 
-Using the third party module [opentracing-contrib/nginx-opentracing](https://github.com/opentracing-contrib/nginx-opentracing) the NGINX ingress controller can configure NGINX to enable [OpenTracing](http://opentracing.io) instrumentation.
+Using the third party module [opentracing-contrib/nginx-opentracing](https://github.com/opentracing-contrib/nginx-opentracing) the Ingress-Nginx Controller can configure NGINX to enable [OpenTracing](http://opentracing.io) instrumentation.
 By default this feature is disabled.
 
 ## Usage
diff --git a/images/README.md b/images/README.md
index cdcb9574b..e7e5f71a6 100644
--- a/images/README.md
+++ b/images/README.md
@@ -13,7 +13,7 @@
 
 Directory | Purpose
 ------------ | -------------
-custom-error-pages | Example of Custom error pages for the NGINX Ingress controller
+custom-error-pages | Example of Custom error pages for the Ingress-Nginx Controller
 e2e | Image to run e2e tests
 fastcgi-helloserver | FastCGI application for e2e tests
 grpc-fortune-teller | grpc server application for the nginx-ingress grpc example
diff --git a/images/custom-error-pages/README.md b/images/custom-error-pages/README.md
index 88983591f..cd6df3e0a 100644
--- a/images/custom-error-pages/README.md
+++ b/images/custom-error-pages/README.md
@@ -1,3 +1,3 @@
 # custom-error-pages
 
-Example of Custom error pages for the NGINX Ingress controller
+Example of Custom error pages for the Ingress-Nginx Controller
diff --git a/mkdocs.yml b/mkdocs.yml
index 62c0ccf48..39eab9ef0 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -1,4 +1,4 @@
-site_name: NGINX Ingress Controller
+site_name: Ingress-Nginx Controller
 repo_name: "kubernetes/ingress-nginx"
 repo_url: https://github.com/kubernetes/ingress-nginx
 site_url: https://kubernetes.github.io/ingress-nginx

From 8ab8803dcc71a6a0cab99bfe13969dce1808aa44 Mon Sep 17 00:00:00 2001
From: guessi <guessi@gmail.com>
Date: Sat, 6 May 2023 09:23:16 +0800
Subject: [PATCH 0752/1641] Update charts/* to keep project name display
 aligned (#9931)

---
 charts/ingress-nginx/README.md        | 14 +++++++-------
 charts/ingress-nginx/README.md.gotmpl |  8 ++++----
 charts/ingress-nginx/values.yaml      |  6 +++---
 3 files changed, 14 insertions(+), 14 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 108a5091e..2c2dd2f37 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -79,14 +79,14 @@ else it would make it impossible to evacuate a node. See [gh issue #7127](https:
 
 ### Prometheus Metrics
 
-The Nginx ingress controller can export Prometheus metrics, by setting `controller.metrics.enabled` to `true`.
+The Ingress-Nginx Controller can export Prometheus metrics, by setting `controller.metrics.enabled` to `true`.
 
 You can add Prometheus annotations to the metrics service using `controller.metrics.service.annotations`.
 Alternatively, if you use the Prometheus Operator, you can enable ServiceMonitor creation using `controller.metrics.serviceMonitor.enabled`. And set `controller.metrics.serviceMonitor.additionalLabels.release="prometheus"`. "release=prometheus" should match the label configured in the prometheus servicemonitor ( see `kubectl get servicemonitor prometheus-kube-prom-prometheus -oyaml -n prometheus`)
 
 ### ingress-nginx nginx\_status page/stats server
 
-Previous versions of this chart had a `controller.stats.*` configuration block, which is now obsolete due to the following changes in nginx ingress controller:
+Previous versions of this chart had a `controller.stats.*` configuration block, which is now obsolete due to the following changes in Ingress-Nginx Controller:
 
 - In [0.16.1](https://github.com/kubernetes/ingress-nginx/blob/main/Changelog.md#0161), the vts (virtual host traffic status) dashboard was removed
 - In [0.23.0](https://github.com/kubernetes/ingress-nginx/blob/main/Changelog.md#0230), the status page at port 18080 is now a unix socket webserver only available at localhost.
@@ -193,7 +193,7 @@ Optionally you can set `controller.service.loadBalancerIP` if you need a static
 
 ### Ingress Admission Webhooks
 
-With nginx-ingress-controller version 0.25+, the nginx ingress controller pod exposes an endpoint that will integrate with the `validatingwebhookconfiguration` Kubernetes feature to prevent bad ingress from being added to the cluster.
+With nginx-ingress-controller version 0.25+, the Ingress-Nginx Controller pod exposes an endpoint that will integrate with the `validatingwebhookconfiguration` Kubernetes feature to prevent bad ingress from being added to the cluster.
 **This feature is enabled by default since 0.31.0.**
 
 With nginx-ingress-controller in 0.25.* work only with kubernetes 1.14+, 0.26 fix [this issue](https://github.com/kubernetes/ingress-nginx/pull/4521)
@@ -202,7 +202,7 @@ With nginx-ingress-controller in 0.25.* work only with kubernetes 1.14+, 0.26 fi
 A validating and configuration requires the endpoint to which the request is sent to use TLS. It is possible to set up custom certificates to do this, but in most cases, a self-signed certificate is enough. The setup of this component requires some more complex orchestration when using helm. The steps are created to be idempotent and to allow turning the feature on and off without running into helm quirks.
 
 1. A pre-install hook provisions a certificate into the same namespace using a format compatible with provisioning using end user certificates. If the certificate already exists, the hook exits.
-2. The ingress nginx controller pod is configured to use a TLS proxy container, which will load that certificate.
+2. The Ingress-Nginx Controller pod is configured to use a TLS proxy container, which will load that certificate.
 3. Validating and Mutating webhook configurations are created in the cluster.
 4. A post-install hook reads the CA from the secret created by step 1 and patches the Validating and Mutating webhook configurations. This process will allow a custom CA provisioned by some other process to also be patched into the webhook configurations. The chosen failure policy is also patched into the webhook configurations
 
@@ -294,14 +294,14 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.enableMimalloc | bool | `true` | Enable mimalloc as a drop-in replacement for malloc. # ref: https://github.com/microsoft/mimalloc # |
 | controller.enableTopologyAwareRouting | bool | `false` | This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-aware-hints="auto" Defaults to false |
 | controller.existingPsp | string | `""` | Use an existing PSP instead of creating one |
-| controller.extraArgs | object | `{}` | Additional command line arguments to pass to nginx-ingress-controller E.g. to specify the default SSL certificate you can use |
+| controller.extraArgs | object | `{}` | Additional command line arguments to pass to Ingress-Nginx Controller E.g. to specify the default SSL certificate you can use |
 | controller.extraContainers | list | `[]` | Additional containers to be added to the controller pod. See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example. |
 | controller.extraEnvs | list | `[]` | Additional environment variables to set |
 | controller.extraInitContainers | list | `[]` | Containers, which are run before the app containers are started. |
 | controller.extraModules | list | `[]` | Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module |
 | controller.extraVolumeMounts | list | `[]` | Additional volumeMounts to the controller main container. |
 | controller.extraVolumes | list | `[]` | Additional volumes to the controller pod. |
-| controller.healthCheckHost | string | `""` | Address to bind the health check endpoint. It is better to set this option to the internal node address if the ingress nginx controller is running in the `hostNetwork: true` mode. |
+| controller.healthCheckHost | string | `""` | Address to bind the health check endpoint. It is better to set this option to the internal node address if the Ingress-Nginx Controller is running in the `hostNetwork: true` mode. |
 | controller.healthCheckPath | string | `"/healthz"` | Path of the health check endpoint. All requests received on the port defined by the healthz-port parameter are forwarded internally to this path. |
 | controller.hostNetwork | bool | `false` | Required for use with CNI based kubernetes installations (such as ones set up by kubeadm), since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920 is merged |
 | controller.hostPort.enabled | bool | `false` | Enable 'hostPort' or not |
@@ -390,7 +390,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.readinessProbe.successThreshold | int | `1` |  |
 | controller.readinessProbe.timeoutSeconds | int | `1` |  |
 | controller.replicaCount | int | `1` |  |
-| controller.reportNodeInternalIp | bool | `false` | Bare-metal considerations via the host network https://kubernetes.github.io/ingress-nginx/deploy/baremetal/#via-the-host-network Ingress status was blank because there is no Service exposing the NGINX Ingress controller in a configuration using the host network, the default --publish-service flag used in standard cloud setups does not apply |
+| controller.reportNodeInternalIp | bool | `false` | Bare-metal considerations via the host network https://kubernetes.github.io/ingress-nginx/deploy/baremetal/#via-the-host-network Ingress status was blank because there is no Service exposing the Ingress-Nginx Controller in a configuration using the host network, the default --publish-service flag used in standard cloud setups does not apply |
 | controller.resources.requests.cpu | string | `"100m"` |  |
 | controller.resources.requests.memory | string | `"90Mi"` |  |
 | controller.scope.enabled | bool | `false` | Enable 'scope' or not |
diff --git a/charts/ingress-nginx/README.md.gotmpl b/charts/ingress-nginx/README.md.gotmpl
index b3d35b6e7..4a35a40b3 100644
--- a/charts/ingress-nginx/README.md.gotmpl
+++ b/charts/ingress-nginx/README.md.gotmpl
@@ -76,14 +76,14 @@ else it would make it impossible to evacuate a node. See [gh issue #7127](https:
 
 ### Prometheus Metrics
 
-The Nginx ingress controller can export Prometheus metrics, by setting `controller.metrics.enabled` to `true`.
+The Ingress-Nginx Controller can export Prometheus metrics, by setting `controller.metrics.enabled` to `true`.
 
 You can add Prometheus annotations to the metrics service using `controller.metrics.service.annotations`.
 Alternatively, if you use the Prometheus Operator, you can enable ServiceMonitor creation using `controller.metrics.serviceMonitor.enabled`. And set `controller.metrics.serviceMonitor.additionalLabels.release="prometheus"`. "release=prometheus" should match the label configured in the prometheus servicemonitor ( see `kubectl get servicemonitor prometheus-kube-prom-prometheus -oyaml -n prometheus`)
 
 ### ingress-nginx nginx\_status page/stats server
 
-Previous versions of this chart had a `controller.stats.*` configuration block, which is now obsolete due to the following changes in nginx ingress controller:
+Previous versions of this chart had a `controller.stats.*` configuration block, which is now obsolete due to the following changes in Ingress-Nginx Controller:
 
 - In [0.16.1](https://github.com/kubernetes/ingress-nginx/blob/main/Changelog.md#0161), the vts (virtual host traffic status) dashboard was removed
 - In [0.23.0](https://github.com/kubernetes/ingress-nginx/blob/main/Changelog.md#0230), the status page at port 18080 is now a unix socket webserver only available at localhost.
@@ -190,7 +190,7 @@ Optionally you can set `controller.service.loadBalancerIP` if you need a static
 
 ### Ingress Admission Webhooks
 
-With nginx-ingress-controller version 0.25+, the nginx ingress controller pod exposes an endpoint that will integrate with the `validatingwebhookconfiguration` Kubernetes feature to prevent bad ingress from being added to the cluster.
+With nginx-ingress-controller version 0.25+, the Ingress-Nginx Controller pod exposes an endpoint that will integrate with the `validatingwebhookconfiguration` Kubernetes feature to prevent bad ingress from being added to the cluster.
 **This feature is enabled by default since 0.31.0.**
 
 With nginx-ingress-controller in 0.25.* work only with kubernetes 1.14+, 0.26 fix [this issue](https://github.com/kubernetes/ingress-nginx/pull/4521)
@@ -199,7 +199,7 @@ With nginx-ingress-controller in 0.25.* work only with kubernetes 1.14+, 0.26 fi
 A validating and configuration requires the endpoint to which the request is sent to use TLS. It is possible to set up custom certificates to do this, but in most cases, a self-signed certificate is enough. The setup of this component requires some more complex orchestration when using helm. The steps are created to be idempotent and to allow turning the feature on and off without running into helm quirks.
 
 1. A pre-install hook provisions a certificate into the same namespace using a format compatible with provisioning using end user certificates. If the certificate already exists, the hook exits.
-2. The ingress nginx controller pod is configured to use a TLS proxy container, which will load that certificate.
+2. The Ingress-Nginx Controller pod is configured to use a TLS proxy container, which will load that certificate.
 3. Validating and Mutating webhook configurations are created in the cluster.
 4. A post-install hook reads the CA from the secret created by step 1 and patches the Validating and Mutating webhook configurations. This process will allow a custom CA provisioned by some other process to also be patched into the webhook configurations. The chosen failure policy is also patched into the webhook configurations
 
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 551fb0449..3a9629d63 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -55,7 +55,7 @@ controller:
   # to keep resolving names inside the k8s network, use ClusterFirstWithHostNet.
   dnsPolicy: ClusterFirst
   # -- Bare-metal considerations via the host network https://kubernetes.github.io/ingress-nginx/deploy/baremetal/#via-the-host-network
-  # Ingress status was blank because there is no Service exposing the NGINX Ingress controller in a configuration using the host network, the default --publish-service flag used in standard cloud setups does not apply
+  # Ingress status was blank because there is no Service exposing the Ingress-Nginx Controller in a configuration using the host network, the default --publish-service flag used in standard cloud setups does not apply
   reportNodeInternalIp: false
   # -- Process Ingress objects without ingressClass annotation/ingressClassName field
   # Overrides value for --watch-ingress-without-class flag of the controller binary
@@ -150,7 +150,7 @@ controller:
   # -- Maxmind license key to download GeoLite2 Databases.
   ## https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases
   maxmindLicenseKey: ""
-  # -- Additional command line arguments to pass to nginx-ingress-controller
+  # -- Additional command line arguments to pass to Ingress-Nginx Controller
   # E.g. to specify the default SSL certificate you can use
   extraArgs: {}
   ## extraArgs:
@@ -302,7 +302,7 @@ controller:
   healthCheckPath: "/healthz"
   # -- Address to bind the health check endpoint.
   # It is better to set this option to the internal node address
-  # if the ingress nginx controller is running in the `hostNetwork: true` mode.
+  # if the Ingress-Nginx Controller is running in the `hostNetwork: true` mode.
   healthCheckHost: ""
   # -- Annotations to be added to controller pods
   ##

From 57d94569a4dfecc8deb76bdc21ad288c1ed424a5 Mon Sep 17 00:00:00 2001
From: Ian De Bie <ian@debie.us>
Date: Sun, 7 May 2023 02:17:16 -0500
Subject: [PATCH 0753/1641] Update annotations.md (#9933)

add the missing quotes
---
 docs/user-guide/nginx-configuration/annotations.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 328f13a17..b515a9f3b 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -22,7 +22,7 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/auth-realm](#authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-secret](#authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-secret-type](#authentication)|string|
-|[nginx.ingress.kubernetes.io/auth-type](#authentication)|basic or digest|
+|[nginx.ingress.kubernetes.io/auth-type](#authentication)|"basic" or "digest"|
 |[nginx.ingress.kubernetes.io/auth-tls-secret](#client-certificate-authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-tls-verify-depth](#client-certificate-authentication)|number|
 |[nginx.ingress.kubernetes.io/auth-tls-verify-client](#client-certificate-authentication)|string|

From 2794129e9296cf59de89cf7efbd1eebc7cf44349 Mon Sep 17 00:00:00 2001
From: Alexander Stanko <rakoth3d@gmail.com>
Date: Tue, 9 May 2023 05:42:52 +0700
Subject: [PATCH 0754/1641] Add geoname id value into $geoip2_*_geoname_id
 variables (#9527)

---
 rootfs/etc/nginx/template/nginx.tmpl | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index a49989f30..9b3a47de3 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -188,8 +188,10 @@ http {
     geoip2 /etc/nginx/geoip/GeoLite2-Country.mmdb {
         $geoip2_country_code source=$remote_addr country iso_code;
         $geoip2_country_name source=$remote_addr country names en;
+        $geoip2_country_geoname_id source=$remote_addr country geoname_id;
         $geoip2_continent_code source=$remote_addr continent code;
         $geoip2_continent_name source=$remote_addr continent names en;
+        $geoip2_continent_geoname_id source=$remote_addr continent geoname_id;
     }
     {{ end }}
 
@@ -197,8 +199,10 @@ http {
     geoip2 /etc/nginx/geoip/GeoIP2-Country.mmdb {
         $geoip2_country_code source=$remote_addr country iso_code;
         $geoip2_country_name source=$remote_addr country names en;
+        $geoip2_country_geoname_id source=$remote_addr country geoname_id;
         $geoip2_continent_code source=$remote_addr continent code;
         $geoip2_continent_name source=$remote_addr continent names en;
+        $geoip2_continent_geoname_id source=$remote_addr continent geoname_id;
     }
     {{ end }}
 
@@ -206,7 +210,9 @@ http {
     geoip2 /etc/nginx/geoip/GeoLite2-City.mmdb {
         $geoip2_city_country_code source=$remote_addr country iso_code;
         $geoip2_city_country_name source=$remote_addr country names en;
+        $geoip2_city_country_geoname_id source=$remote_addr country geoname_id;
         $geoip2_city source=$remote_addr city names en;
+        $geoip2_city_geoname_id source=$remote_addr city geoname_id;
         $geoip2_postal_code source=$remote_addr postal code;
         $geoip2_dma_code source=$remote_addr location metro_code;
         $geoip2_latitude source=$remote_addr location latitude;
@@ -214,8 +220,10 @@ http {
         $geoip2_time_zone source=$remote_addr location time_zone;
         $geoip2_region_code source=$remote_addr subdivisions 0 iso_code;
         $geoip2_region_name source=$remote_addr subdivisions 0 names en;
+        $geoip2_region_geoname_id source=$remote_addr subdivisions 0 geoname_id;
         $geoip2_subregion_code source=$remote_addr subdivisions 1 iso_code;
         $geoip2_subregion_name source=$remote_addr subdivisions 1 names en;
+        $geoip2_subregion_geoname_id source=$remote_addr subdivisions 1 geoname_id;
     }
     {{ end }}
 
@@ -223,7 +231,9 @@ http {
     geoip2 /etc/nginx/geoip/GeoIP2-City.mmdb {
         $geoip2_city_country_code source=$remote_addr country iso_code;
         $geoip2_city_country_name source=$remote_addr country names en;
+        $geoip2_city_country_geoname_id source=$remote_addr country geoname_id;
         $geoip2_city source=$remote_addr city names en;
+        $geoip2_city_geoname_id source=$remote_addr city geoname_id;
         $geoip2_postal_code source=$remote_addr postal code;
         $geoip2_dma_code source=$remote_addr location metro_code;
         $geoip2_latitude source=$remote_addr location latitude;
@@ -231,8 +241,10 @@ http {
         $geoip2_time_zone source=$remote_addr location time_zone;
         $geoip2_region_code source=$remote_addr subdivisions 0 iso_code;
         $geoip2_region_name source=$remote_addr subdivisions 0 names en;
+        $geoip2_region_geoname_id source=$remote_addr subdivisions 0 geoname_id;
         $geoip2_subregion_code source=$remote_addr subdivisions 1 iso_code;
         $geoip2_subregion_name source=$remote_addr subdivisions 1 names en;
+        $geoip2_subregion_geoname_id source=$remote_addr subdivisions 1 geoname_id;
     }
     {{ end }}
 

From eec43519fa7b6c933d4f0b6501851bd3ea9e460e Mon Sep 17 00:00:00 2001
From: Kundan Kumar <kundan.kumar@india.nec.com>
Date: Wed, 10 May 2023 10:32:59 +0530
Subject: [PATCH 0755/1641] image_update (#9942)

---
 .../customization/custom-errors/custom-default-backend.yaml     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/examples/customization/custom-errors/custom-default-backend.yaml b/docs/examples/customization/custom-errors/custom-default-backend.yaml
index 5fc5c55e4..2af64896f 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.yaml
@@ -36,7 +36,7 @@ spec:
     spec:
       containers:
       - name: nginx-error-server
-        image: registry.k8s.io/ingress-nginx/nginx-errors:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:332be6ff8c4e93e8845963932f98839dfd52ae49829c29e06475368a3e4fbd9e
+        image: registry.k8s.io/ingress-nginx/nginx-errors:v20230404-helm-chart-4.6.0-11-gc76179c04@sha256:aabd7a001f6a0a07ed6ea8f6da87e928bfa8f971eba2bef708f3e8504fc5cc9b
         ports:
         - containerPort: 8080
         # Setting the environment variable DEBUG we can see the headers sent 

From 0bdb64373c48660192dc87fe17989ab574422932 Mon Sep 17 00:00:00 2001
From: Brendan Kamp <brendankamp757@gmail.com>
Date: Wed, 10 May 2023 16:43:02 +0200
Subject: [PATCH 0756/1641] chore: update httpbin to httpbun (#9919)

Signed-off-by: Spazzy <brendankamp757@gmail.com>
---
 test/data/config.json                         |   6 +-
 test/e2e/annotations/auth.go                  |  45 +++----
 test/e2e/annotations/grpc.go                  |  10 +-
 test/e2e/annotations/satisfy.go               |  10 +-
 test/e2e/framework/deployment.go              | 103 ++++++++++++++--
 test/e2e/security/request_smuggling.go        |   7 +-
 .../servicebackend/service_externalname.go    | 115 +++++++++---------
 test/e2e/settings/brotli.go                   |   4 +-
 .../settings/disable_service_external_name.go |   8 +-
 test/e2e/settings/global_external_auth.go     |  12 +-
 test/e2e/settings/listen_nondefault_ports.go  |  10 +-
 test/k6/smoketest.js                          |   2 +-
 12 files changed, 215 insertions(+), 117 deletions(-)

diff --git a/test/data/config.json b/test/data/config.json
index 5d8a88cbe..d51e1c40b 100644
--- a/test/data/config.json
+++ b/test/data/config.json
@@ -413,7 +413,7 @@
 				"secured": false
 			},
 			"externalAuth": {
-				"url": "https://httpbin.org/basic-auth/user/passwd",
+				"url": "https://httpbun.com/basic-auth/user/passwd",
 				"method": "",
 				"sendBody": false
 			},
@@ -59354,7 +59354,7 @@
 				"secured": false
 			},
 			"externalAuth": {
-				"url": "https://httpbin.org/basic-auth/user/passwd",
+				"url": "https://httpbun.com/basic-auth/user/passwd",
 				"method": "",
 				"sendBody": false
 			},
@@ -60272,4 +60272,4 @@
 			"failTimeout": 0
 		}]
 	}]
-}
\ No newline at end of file
+}
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index e3d0bcb2e..4ca034825 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -19,13 +19,14 @@ package annotations
 import (
 	"context"
 	"fmt"
-	"golang.org/x/crypto/bcrypt"
 	"net/http"
 	"net/url"
 	"regexp"
 	"strings"
 	"time"
 
+	"golang.org/x/crypto/bcrypt"
+
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
@@ -389,10 +390,10 @@ http {
 			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
 			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
 
-			httpbinIP := e.Subsets[0].Addresses[0].IP
+			httpbunIP := e.Subsets[0].Addresses[0].IP
 
 			annotations = map[string]string{
-				"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/cookies/set/alma/armud", httpbinIP),
+				"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/cookies/set/alma/armud", httpbunIP),
 				"nginx.ingress.kubernetes.io/auth-signin": "http://$host/auth/start",
 			}
 
@@ -456,21 +457,21 @@ http {
 		var ing *networking.Ingress
 
 		ginkgo.BeforeEach(func() {
-			f.NewHttpbinDeployment()
+			f.NewHttpbunDeployment()
 
-			err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBinService, f.Namespace, 1)
+			err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBunService, f.Namespace, 1)
 			assert.Nil(ginkgo.GinkgoT(), err)
 
-			e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBinService, metav1.GetOptions{})
+			e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBunService, metav1.GetOptions{})
 			assert.Nil(ginkgo.GinkgoT(), err)
 
 			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
 			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
 
-			httpbinIP := e.Subsets[0].Addresses[0].IP
+			httpbunIP := e.Subsets[0].Addresses[0].IP
 
 			annotations = map[string]string{
-				"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", httpbinIP),
+				"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", httpbunIP),
 				"nginx.ingress.kubernetes.io/auth-signin": "http://$host/auth/start",
 			}
 
@@ -649,20 +650,20 @@ http {
 		var ing *networking.Ingress
 
 		ginkgo.BeforeEach(func() {
-			f.NewHttpbinDeployment()
+			f.NewHttpbunDeployment()
 
-			var httpbinIP string
+			var httpbunIP string
 
-			err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBinService, f.Namespace, 1)
+			err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBunService, f.Namespace, 1)
 			assert.Nil(ginkgo.GinkgoT(), err)
 
-			e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBinService, metav1.GetOptions{})
+			e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBunService, metav1.GetOptions{})
 			assert.Nil(ginkgo.GinkgoT(), err)
 
-			httpbinIP = e.Subsets[0].Addresses[0].IP
+			httpbunIP = e.Subsets[0].Addresses[0].IP
 
 			annotations = map[string]string{
-				"nginx.ingress.kubernetes.io/auth-url":                   fmt.Sprintf("http://%s/basic-auth/user/password", httpbinIP),
+				"nginx.ingress.kubernetes.io/auth-url":                   fmt.Sprintf("http://%s/basic-auth/user/password", httpbunIP),
 				"nginx.ingress.kubernetes.io/auth-signin":                "http://$host/auth/start",
 				"nginx.ingress.kubernetes.io/auth-signin-redirect-param": "orig",
 			}
@@ -728,23 +729,23 @@ http {
 		barPath := "/bar"
 
 		ginkgo.BeforeEach(func() {
-			f.NewHttpbinDeployment()
+			f.NewHttpbunDeployment()
 
-			err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBinService, f.Namespace, 1)
+			err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBunService, f.Namespace, 1)
 			assert.Nil(ginkgo.GinkgoT(), err)
 
 			framework.Sleep(1 * time.Second)
 
-			e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBinService, metav1.GetOptions{})
+			e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBunService, metav1.GetOptions{})
 			assert.Nil(ginkgo.GinkgoT(), err)
 
 			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
 			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
 
-			httpbinIP := e.Subsets[0].Addresses[0].IP
+			httpbunIP := e.Subsets[0].Addresses[0].IP
 
 			annotations := map[string]string{
-				"nginx.ingress.kubernetes.io/auth-url":            fmt.Sprintf("http://%s/basic-auth/user/password", httpbinIP),
+				"nginx.ingress.kubernetes.io/auth-url":            fmt.Sprintf("http://%s/basic-auth/user/password", httpbunIP),
 				"nginx.ingress.kubernetes.io/auth-signin":         "http://$host/auth/start",
 				"nginx.ingress.kubernetes.io/auth-cache-key":      "fixed",
 				"nginx.ingress.kubernetes.io/auth-cache-duration": "200 201 401 30m",
@@ -777,7 +778,7 @@ http {
 				Expect().
 				Status(http.StatusOK)
 
-			err := f.DeleteDeployment(framework.HTTPBinService)
+			err := f.DeleteDeployment(framework.HTTPBunService)
 			assert.Nil(ginkgo.GinkgoT(), err)
 			framework.Sleep()
 
@@ -797,7 +798,7 @@ http {
 				Expect().
 				Status(http.StatusOK)
 
-			err := f.DeleteDeployment(framework.HTTPBinService)
+			err := f.DeleteDeployment(framework.HTTPBunService)
 			assert.Nil(ginkgo.GinkgoT(), err)
 			framework.Sleep()
 
@@ -826,7 +827,7 @@ http {
 				Expect().
 				Status(http.StatusOK)
 
-			err := f.DeleteDeployment(framework.HTTPBinService)
+			err := f.DeleteDeployment(framework.HTTPBunService)
 			assert.Nil(ginkgo.GinkgoT(), err)
 			framework.Sleep()
 
diff --git a/test/e2e/annotations/grpc.go b/test/e2e/annotations/grpc.go
index 39349e701..046191b21 100644
--- a/test/e2e/annotations/grpc.go
+++ b/test/e2e/annotations/grpc.go
@@ -125,7 +125,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 
 	ginkgo.It("authorization metadata should be overwritten by external auth response headers", func() {
 		f.NewGRPCBinDeployment()
-		f.NewHttpbinDeployment()
+		f.NewHttpbunDeployment()
 
 		host := "echo"
 
@@ -149,19 +149,19 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 		}
 		f.EnsureService(svc)
 
-		err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBinService, f.Namespace, 1)
+		err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBunService, f.Namespace, 1)
 		assert.Nil(ginkgo.GinkgoT(), err)
 
-		e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBinService, metav1.GetOptions{})
+		e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBunService, metav1.GetOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err)
 
 		assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
 		assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
 
-		httpbinIP := e.Subsets[0].Addresses[0].IP
+		httpbunIP := e.Subsets[0].Addresses[0].IP
 
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/auth-url":              fmt.Sprintf("http://%s/response-headers?authorization=foo", httpbinIP),
+			"nginx.ingress.kubernetes.io/auth-url":              fmt.Sprintf("http://%s/response-headers?authorization=foo", httpbunIP),
 			"nginx.ingress.kubernetes.io/auth-response-headers": "Authorization",
 			"nginx.ingress.kubernetes.io/backend-protocol":      "GRPC",
 		}
diff --git a/test/e2e/annotations/satisfy.go b/test/e2e/annotations/satisfy.go
index e75464a9d..758ad21a4 100644
--- a/test/e2e/annotations/satisfy.go
+++ b/test/e2e/annotations/satisfy.go
@@ -85,15 +85,15 @@ var _ = framework.DescribeAnnotation("satisfy", func() {
 		host := "auth"
 
 		// setup external auth
-		f.NewHttpbinDeployment()
+		f.NewHttpbunDeployment()
 
-		err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBinService, f.Namespace, 1)
+		err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBunService, f.Namespace, 1)
 		assert.Nil(ginkgo.GinkgoT(), err)
 
-		e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBinService, metav1.GetOptions{})
+		e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBunService, metav1.GetOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err)
 
-		httpbinIP := e.Subsets[0].Addresses[0].IP
+		httpbunIP := e.Subsets[0].Addresses[0].IP
 
 		// create basic auth secret at ingress
 		s := f.EnsureSecret(buildSecret("uname", "pwd", "basic-secret", f.Namespace))
@@ -105,7 +105,7 @@ var _ = framework.DescribeAnnotation("satisfy", func() {
 			"nginx.ingress.kubernetes.io/auth-realm":  "test basic auth",
 
 			// annotations for external auth
-			"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", httpbinIP),
+			"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", httpbunIP),
 			"nginx.ingress.kubernetes.io/auth-signin": "http://$host/auth/start",
 
 			// set satisfy any
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 4627a8892..06dfa0c5e 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -19,6 +19,7 @@ package framework
 import (
 	"context"
 	"errors"
+	"fmt"
 	"os"
 	"time"
 
@@ -36,14 +37,18 @@ const EchoService = "echo"
 // SlowEchoService name of the deployment for the echo app
 const SlowEchoService = "slow-echo"
 
-// HTTPBinService name of the deployment for the httpbin app
-const HTTPBinService = "httpbin"
+// HTTPBunService name of the deployment for the httpbun app
+const HTTPBunService = "httpbun"
+
+// NipService name of external service using nip.io
+const NIPService = "external-nip"
 
 type deploymentOptions struct {
 	namespace      string
 	name           string
 	replicas       int
 	svcAnnotations map[string]string
+	image          string
 }
 
 // WithDeploymentNamespace allows configuring the deployment's namespace
@@ -82,18 +87,26 @@ func WithName(n string) func(*deploymentOptions) {
 	}
 }
 
+// WithImage allows configuring the image for the deployments
+func WithImage(i string) func(*deploymentOptions) {
+	return func(o *deploymentOptions) {
+		o.image = i
+	}
+}
+
 // NewEchoDeployment creates a new single replica deployment of the echo server image in a particular namespace
 func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
 	options := &deploymentOptions{
 		namespace: f.Namespace,
 		name:      EchoService,
 		replicas:  1,
+		image:     "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:4938d1d91a2b7d19454460a8c1b010b89f6ff92d2987fd889ac3e8fc3b70d91a",
 	}
 	for _, o := range opts {
 		o(options)
 	}
 
-	deployment := newDeployment(options.name, options.namespace, "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:4938d1d91a2b7d19454460a8c1b010b89f6ff92d2987fd889ac3e8fc3b70d91a", 80, int32(options.replicas),
+	deployment := newDeployment(options.name, options.namespace, options.image, 80, int32(options.replicas),
 		nil, nil, nil,
 		[]corev1.VolumeMount{},
 		[]corev1.Volume{},
@@ -129,6 +142,85 @@ func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
 	assert.Nil(ginkgo.GinkgoT(), err, "waiting for endpoints to become ready")
 }
 
+// BuildNipHost used to generate a nip host for DNS resolving
+func BuildNIPHost(ip string) string {
+	return fmt.Sprintf("%s.nip.io", ip)
+}
+
+// BuildNIPExternalNameService used to generate a service pointing to nip.io to
+// help resolve to an IP address
+func BuildNIPExternalNameService(f *Framework, ip, portName string) *corev1.Service {
+	return &corev1.Service{
+		ObjectMeta: metav1.ObjectMeta{
+			Name:      NIPService,
+			Namespace: f.Namespace,
+		},
+		Spec: corev1.ServiceSpec{
+			ExternalName: BuildNIPHost(ip),
+			Type:         corev1.ServiceTypeExternalName,
+			Ports: []corev1.ServicePort{
+				{
+					Name:       portName,
+					Port:       80,
+					TargetPort: intstr.FromInt(80),
+					Protocol:   "TCP",
+				},
+			},
+		},
+	}
+}
+
+// NewHttpbunDeployment creates a new single replica deployment of the httpbun
+// server image in a particular namespace we return the ip for testing purposes
+func (f *Framework) NewHttpbunDeployment(opts ...func(*deploymentOptions)) string {
+	options := &deploymentOptions{
+		namespace: f.Namespace,
+		name:      HTTPBunService,
+		replicas:  1,
+		image:     "registry.k8s.io/ingress-nginx/e2e-test-httpbun:v20230505-v0.0.1",
+	}
+	for _, o := range opts {
+		o(options)
+	}
+
+	deployment := newDeployment(options.name, options.namespace, options.image, 80, int32(options.replicas),
+		nil, nil, nil,
+		[]corev1.VolumeMount{},
+		[]corev1.Volume{},
+		true,
+	)
+
+	f.EnsureDeployment(deployment)
+
+	service := &corev1.Service{
+		ObjectMeta: metav1.ObjectMeta{
+			Name:        options.name,
+			Namespace:   options.namespace,
+			Annotations: options.svcAnnotations,
+		},
+		Spec: corev1.ServiceSpec{
+			Ports: []corev1.ServicePort{
+				{
+					Name:       "http",
+					Port:       80,
+					TargetPort: intstr.FromInt(80),
+					Protocol:   corev1.ProtocolTCP,
+				},
+			},
+			Selector: map[string]string{
+				"app": options.name,
+			},
+		},
+	}
+
+	s := f.EnsureService(service)
+
+	err := WaitForEndpoints(f.KubeClientSet, DefaultTimeout, options.name, options.namespace, options.replicas)
+	assert.Nil(ginkgo.GinkgoT(), err, "waiting for endpoints to become ready")
+
+	return s.Spec.ClusterIPs[0]
+}
+
 // NewSlowEchoDeployment creates a new deployment of the slow echo server image in a particular namespace.
 func (f *Framework) NewSlowEchoDeployment() {
 	cfg := `#
@@ -418,11 +510,6 @@ func newDeployment(name, namespace, image string, port int32, replicas int32, co
 	return d
 }
 
-// NewHttpbinDeployment creates a new single replica deployment of the httpbin image in a particular namespace.
-func (f *Framework) NewHttpbinDeployment() {
-	f.NewDeployment(HTTPBinService, "registry.k8s.io/ingress-nginx/e2e-test-httpbin@sha256:c6372ef57a775b95f18e19d4c735a9819f2e7bb4641e5e3f27287d831dfeb7e8", 80, 1)
-}
-
 func (f *Framework) NewDeployment(name, image string, port int32, replicas int32) {
 	f.NewDeploymentWithOpts(name, image, port, replicas, nil, nil, nil, nil, nil, true)
 }
diff --git a/test/e2e/security/request_smuggling.go b/test/e2e/security/request_smuggling.go
index 9891480dc..786a7a397 100644
--- a/test/e2e/security/request_smuggling.go
+++ b/test/e2e/security/request_smuggling.go
@@ -50,9 +50,12 @@ server {
 
 		f.UpdateNginxConfigMapData("http-snippet", snippet)
 
+		//TODO: currently using a self hosted HTTPBun instance results in a 499, we
+		//should move away from using httpbun.com once we have the httpbun
+		//deployment as part of the framework
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, map[string]string{
-			"nginx.ingress.kubernetes.io/auth-signin": "https://httpbin.org/uuid",
-			"nginx.ingress.kubernetes.io/auth-url":    "https://httpbin.org/basic-auth/user/passwd",
+			"nginx.ingress.kubernetes.io/auth-signin": "https://httpbun.com/bearer/d4bcba7a-0def-4a31-91a7-47e420adf44b",
+			"nginx.ingress.kubernetes.io/auth-url":    "https://httpbun.com/basic-auth/user/passwd",
 		})
 		f.EnsureIngress(ing)
 
diff --git a/test/e2e/servicebackend/service_externalname.go b/test/e2e/servicebackend/service_externalname.go
index 0d121c671..2fd6cd080 100644
--- a/test/e2e/servicebackend/service_externalname.go
+++ b/test/e2e/servicebackend/service_externalname.go
@@ -29,44 +29,21 @@ import (
 	corev1 "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-	"k8s.io/apimachinery/pkg/util/intstr"
 
 	"k8s.io/ingress-nginx/internal/nginx"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
-func buildHTTPBinExternalNameService(f *framework.Framework, portName string) *corev1.Service {
-	return &corev1.Service{
-		ObjectMeta: metav1.ObjectMeta{
-			Name:      framework.HTTPBinService,
-			Namespace: f.Namespace,
-		},
-		Spec: corev1.ServiceSpec{
-			ExternalName: "httpbin.org",
-			Type:         corev1.ServiceTypeExternalName,
-			Ports: []corev1.ServicePort{
-				{
-					Name:       portName,
-					Port:       80,
-					TargetPort: intstr.FromInt(80),
-					Protocol:   "TCP",
-				},
-			},
-		},
-	}
-}
-
 var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	f := framework.NewDefaultFramework("type-externalname")
 
 	ginkgo.It("works with external name set to incomplete fqdn", func() {
 		f.NewEchoDeployment()
-
 		host := "echo"
 
 		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
-				Name:      framework.HTTPBinService,
+				Name:      framework.HTTPBunService,
 				Namespace: f.Namespace,
 			},
 			Spec: corev1.ServiceSpec{
@@ -77,7 +54,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 
 		f.EnsureService(svc)
 
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBinService, 80, nil)
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, nil)
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -93,15 +70,19 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should return 200 for service type=ExternalName without a port defined", func() {
+		// This is a workaround so we only depend on a self hosted instance of
+		// httpbun
+		ip := f.NewHttpbunDeployment()
+
 		host := "echo"
 
 		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
-				Name:      framework.HTTPBinService,
+				Name:      framework.NIPService,
 				Namespace: f.Namespace,
 			},
 			Spec: corev1.ServiceSpec{
-				ExternalName: "httpbin.org",
+				ExternalName: framework.BuildNIPHost(ip),
 				Type:         corev1.ServiceTypeExternalName,
 			},
 		}
@@ -109,9 +90,9 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 		f.EnsureService(svc)
 
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/upstream-vhost": "httpbin.org",
+			"nginx.ingress.kubernetes.io/upstream-vhost": framework.BuildNIPHost(ip),
 		}
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBinService, 80, annotations)
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, annotations)
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -127,15 +108,19 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should return 200 for service type=ExternalName with a port defined", func() {
+		// This is a workaround so we only depend on a self hosted instance of
+		// httpbun
+		ip := f.NewHttpbunDeployment()
+
 		host := "echo"
 
-		svc := buildHTTPBinExternalNameService(f, host)
+		svc := framework.BuildNIPExternalNameService(f, ip, host)
 		f.EnsureService(svc)
 
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/upstream-vhost": "httpbin.org",
+			"nginx.ingress.kubernetes.io/upstream-vhost": framework.BuildNIPHost(ip),
 		}
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBinService, 80, annotations)
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, annotations)
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -155,7 +140,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 
 		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
-				Name:      framework.HTTPBinService,
+				Name:      framework.HTTPBunService,
 				Namespace: f.Namespace,
 			},
 			Spec: corev1.ServiceSpec{
@@ -166,7 +151,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 
 		f.EnsureService(svc)
 
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBinService, 80, nil)
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, nil)
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -182,18 +167,22 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should return 200 for service type=ExternalName using a port name", func() {
+		// This is a workaround so we only depend on a self hosted instance of
+		// httpbun
+		ip := f.NewHttpbunDeployment()
+
 		host := "echo"
 
-		svc := buildHTTPBinExternalNameService(f, host)
+		svc := framework.BuildNIPExternalNameService(f, ip, host)
 		f.EnsureService(svc)
 
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/upstream-vhost": "httpbin.org",
+			"nginx.ingress.kubernetes.io/upstream-vhost": framework.BuildNIPHost(ip),
 		}
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBinService, 80, annotations)
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, annotations)
 		namedBackend := networking.IngressBackend{
 			Service: &networking.IngressServiceBackend{
-				Name: framework.HTTPBinService,
+				Name: framework.NIPService,
 				Port: networking.ServiceBackendPort{
 					Name: host,
 				},
@@ -215,22 +204,26 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should return 200 for service type=ExternalName using FQDN with trailing dot", func() {
+		// This is a workaround so we only depend on a self hosted instance of
+		// httpbun
+		ip := f.NewHttpbunDeployment()
+
 		host := "echo"
 
 		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
-				Name:      framework.HTTPBinService,
+				Name:      framework.NIPService,
 				Namespace: f.Namespace,
 			},
 			Spec: corev1.ServiceSpec{
-				ExternalName: "httpbin.org.",
+				ExternalName: framework.BuildNIPHost(ip),
 				Type:         corev1.ServiceTypeExternalName,
 			},
 		}
 
 		f.EnsureService(svc)
 
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBinService, 80, nil)
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, nil)
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -246,18 +239,23 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should update the external name after a service update", func() {
+		// This is a workaround so we only depend on a self hosted instance of
+		// httpbun
+		ip := f.NewHttpbunDeployment()
+
 		host := "echo"
 
-		svc := buildHTTPBinExternalNameService(f, host)
+		svc := framework.BuildNIPExternalNameService(f, ip, host)
 		f.EnsureService(svc)
 
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/upstream-vhost": "httpbin.org",
+			"nginx.ingress.kubernetes.io/upstream-vhost": framework.BuildNIPHost(ip),
 		}
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBinService, 80, annotations)
+
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, annotations)
 		namedBackend := networking.IngressBackend{
 			Service: &networking.IngressServiceBackend{
-				Name: framework.HTTPBinService,
+				Name: framework.NIPService,
 				Port: networking.ServiceBackendPort{
 					Name: host,
 				},
@@ -281,13 +279,15 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 
 		assert.Contains(ginkgo.GinkgoT(), body, `"X-Forwarded-Host": "echo"`)
 
-		svc, err := f.KubeClientSet.CoreV1().Services(f.Namespace).Get(context.TODO(), framework.HTTPBinService, metav1.GetOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error obtaining httpbin service")
+		svc, err := f.KubeClientSet.CoreV1().Services(f.Namespace).Get(context.TODO(), framework.NIPService, metav1.GetOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error obtaining external service")
 
-		svc.Spec.ExternalName = "eu.httpbin.org"
+		ip = f.NewHttpbunDeployment(framework.WithDeploymentName("eu-server"))
+
+		svc.Spec.ExternalName = framework.BuildNIPHost(ip)
 
 		_, err = f.KubeClientSet.CoreV1().Services(f.Namespace).Update(context.Background(), svc, metav1.UpdateOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error updating httpbin service")
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error updating external service")
 
 		framework.Sleep()
 
@@ -301,18 +301,22 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 
 		assert.Contains(ginkgo.GinkgoT(), body, `"X-Forwarded-Host": "echo"`)
 
-		ginkgo.By("checking the service is updated to use eu.httpbin.org")
+		ginkgo.By("checking the service is updated to use new host")
 		curlCmd := fmt.Sprintf("curl --fail --silent http://localhost:%v/configuration/backends", nginx.StatusPort)
 		output, err := f.ExecIngressPod(curlCmd)
 		assert.Nil(ginkgo.GinkgoT(), err)
-		assert.Contains(ginkgo.GinkgoT(), output, `{"address":"eu.httpbin.org"`)
+		assert.Contains(ginkgo.GinkgoT(), output, fmt.Sprintf("{\"address\":\"%s\"", framework.BuildNIPHost(ip)))
 	})
 
 	ginkgo.It("should sync ingress on external name service addition/deletion", func() {
+		// This is a workaround so we only depend on a self hosted instance of
+		// httpbun
+		ip := f.NewHttpbunDeployment()
+
 		host := "echo"
 
 		// Create the Ingress first
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBinService, 80, nil)
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.NIPService, 80, nil)
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -328,7 +332,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 			Status(http.StatusServiceUnavailable)
 
 		// Now create the service
-		svc := buildHTTPBinExternalNameService(f, host)
+		svc := framework.BuildNIPExternalNameService(f, ip, host)
 		f.EnsureService(svc)
 
 		framework.Sleep()
@@ -341,9 +345,8 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 			Status(http.StatusOK)
 
 		// And back to 503 after deleting the service
-
-		err := f.KubeClientSet.CoreV1().Services(f.Namespace).Delete(context.TODO(), framework.HTTPBinService, metav1.DeleteOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error deleting httpbin service")
+		err := f.KubeClientSet.CoreV1().Services(f.Namespace).Delete(context.TODO(), framework.NIPService, metav1.DeleteOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error deleting external service")
 
 		framework.Sleep()
 
diff --git a/test/e2e/settings/brotli.go b/test/e2e/settings/brotli.go
index a07eb6c09..a13678f66 100644
--- a/test/e2e/settings/brotli.go
+++ b/test/e2e/settings/brotli.go
@@ -33,7 +33,7 @@ var _ = framework.IngressNginxDescribe("brotli", func() {
 	host := "brotli"
 
 	ginkgo.BeforeEach(func() {
-		f.NewHttpbinDeployment()
+		f.NewHttpbunDeployment()
 	})
 
 	ginkgo.It("should only compress responses that meet the `brotli-min-length` condition", func() {
@@ -43,7 +43,7 @@ var _ = framework.IngressNginxDescribe("brotli", func() {
 		f.UpdateNginxConfigMapData("brotli-types", contentEncoding)
 		f.UpdateNginxConfigMapData("brotli-min-length", strconv.Itoa(brotliMinLength))
 
-		f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBinService, 80, nil))
+		f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, nil))
 
 		f.WaitForNginxConfiguration(
 			func(server string) bool {
diff --git a/test/e2e/settings/disable_service_external_name.go b/test/e2e/settings/disable_service_external_name.go
index a24cfebde..7f03e5355 100644
--- a/test/e2e/settings/disable_service_external_name.go
+++ b/test/e2e/settings/disable_service_external_name.go
@@ -50,17 +50,21 @@ var _ = framework.IngressNginxDescribe("[Flag] disable-service-external-name", f
 	})
 
 	ginkgo.It("should ignore services of external-name type", func() {
-
 		nonexternalhost := "echo-svc.com"
 
 		externalhost := "echo-external-svc.com"
+
+		ip := f.NewHttpbunDeployment()
+		svc := framework.BuildNIPExternalNameService(f, ip, "echo")
+		f.EnsureService(svc)
+
 		svcexternal := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
 				Name:      "external",
 				Namespace: f.Namespace,
 			},
 			Spec: corev1.ServiceSpec{
-				ExternalName: "httpbin.org",
+				ExternalName: framework.BuildNIPHost(ip),
 				Type:         corev1.ServiceTypeExternalName,
 			},
 		}
diff --git a/test/e2e/settings/global_external_auth.go b/test/e2e/settings/global_external_auth.go
index c70b5a9b1..c5964299f 100644
--- a/test/e2e/settings/global_external_auth.go
+++ b/test/e2e/settings/global_external_auth.go
@@ -50,13 +50,13 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 
 	ginkgo.BeforeEach(func() {
 		f.NewEchoDeployment()
-		f.NewHttpbinDeployment()
+		f.NewHttpbunDeployment()
 	})
 
 	ginkgo.Context("when global external authentication is configured", func() {
 
 		ginkgo.BeforeEach(func() {
-			globalExternalAuthURL := fmt.Sprintf("http://%s.%s.svc.cluster.local:80/status/401", framework.HTTPBinService, f.Namespace)
+			globalExternalAuthURL := fmt.Sprintf("http://%s.%s.svc.cluster.local:80/status/401", framework.HTTPBunService, f.Namespace)
 
 			ginkgo.By("Adding an ingress rule for /foo")
 			fooIng := framework.NewSingleIngress("foo-ingress", fooPath, host, f.Namespace, echoServiceName, 80, nil)
@@ -158,7 +158,7 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 			globalExternalAuthCacheKey := "foo"
 			globalExternalAuthCacheDurationSetting := "global-auth-cache-duration"
 			globalExternalAuthCacheDuration := "200 201 401 30m"
-			globalExternalAuthURL := fmt.Sprintf("http://%s.%s.svc.cluster.local:80/status/200", framework.HTTPBinService, f.Namespace)
+			globalExternalAuthURL := fmt.Sprintf("http://%s.%s.svc.cluster.local:80/status/200", framework.HTTPBunService, f.Namespace)
 
 			ginkgo.By("Adding a global-auth-cache-key to configMap")
 			f.SetNginxConfigMapData(map[string]string{
@@ -182,7 +182,7 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 				Expect().
 				Status(http.StatusOK)
 
-			err := f.DeleteDeployment(framework.HTTPBinService)
+			err := f.DeleteDeployment(framework.HTTPBunService)
 			assert.Nil(ginkgo.GinkgoT(), err)
 			framework.Sleep()
 
@@ -307,9 +307,9 @@ http {
 			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
 			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
 
-			httpbinIP := e.Subsets[0].Addresses[0].IP
+			httpbunIP := e.Subsets[0].Addresses[0].IP
 
-			f.UpdateNginxConfigMapData(globalExternalAuthURLSetting, fmt.Sprintf("http://%s/cookies/set/alma/armud", httpbinIP))
+			f.UpdateNginxConfigMapData(globalExternalAuthURLSetting, fmt.Sprintf("http://%s/cookies/set/alma/armud", httpbunIP))
 
 			ing1 = framework.NewSingleIngress(host, "/", host, f.Namespace, "http-cookie-with-error", 80, nil)
 			f.EnsureIngress(ing1)
diff --git a/test/e2e/settings/listen_nondefault_ports.go b/test/e2e/settings/listen_nondefault_ports.go
index 61a128040..8b5d22f6e 100644
--- a/test/e2e/settings/listen_nondefault_ports.go
+++ b/test/e2e/settings/listen_nondefault_ports.go
@@ -98,21 +98,21 @@ var _ = framework.IngressNginxDescribe("[Flag] custom HTTP and HTTPS ports", fun
 		ginkgo.Context("when external authentication is configured", func() {
 
 			ginkgo.It("should set the X-Forwarded-Port header to 443", func() {
-				f.NewHttpbinDeployment()
+				f.NewHttpbunDeployment()
 
-				err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBinService, f.Namespace, 1)
+				err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBunService, f.Namespace, 1)
 				assert.Nil(ginkgo.GinkgoT(), err)
 
-				e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBinService, metav1.GetOptions{})
+				e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBunService, metav1.GetOptions{})
 				assert.Nil(ginkgo.GinkgoT(), err)
 
 				assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
 				assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
 
-				httpbinIP := e.Subsets[0].Addresses[0].IP
+				httpbunIP := e.Subsets[0].Addresses[0].IP
 
 				annotations := map[string]string{
-					"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", httpbinIP),
+					"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", httpbunIP),
 					"nginx.ingress.kubernetes.io/auth-signin": "http://$host/auth/start",
 				}
 
diff --git a/test/k6/smoketest.js b/test/k6/smoketest.js
index b5ab577a9..8fe9e950a 100644
--- a/test/k6/smoketest.js
+++ b/test/k6/smoketest.js
@@ -27,7 +27,7 @@ export default function () {
   const params = {
     headers: {'host': 'test.ingress-nginx-controller.ga'},
   };
-  // httpbin.org documents these requests
+  // httpbun.com documents these requests
   const req1 = {
   	method: 'GET',
   	url: 'http://test.ingress-nginx-controller.ga/ip',

From f18826b73ef5ad78eca74befeb9f0f521f5bfc61 Mon Sep 17 00:00:00 2001
From: vkanelov <81570499+vkanelov@users.noreply.github.com>
Date: Thu, 11 May 2023 00:39:14 +0300
Subject: [PATCH 0757/1641] add option for annotations in PodDisruptionBudget
 (#9843)

add option for annotations in PodDisruptionBudget
---
 .../templates/controller-poddisruptionbudget.yaml              | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml b/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
index 899d3cc5d..230307cd7 100644
--- a/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
+++ b/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
@@ -10,6 +10,9 @@ metadata:
     {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}
   namespace: {{ .Release.Namespace }}
+  {{- if .Values.controller.annotations }}
+  annotations: {{ toYaml .Values.controller.annotations | nindent 4 }}
+  {{- end }}
 spec:
   selector:
     matchLabels:

From 3b3cf8b331f221969a2bd89a24a502507583f87b Mon Sep 17 00:00:00 2001
From: Apoorva Kulkarni <kuapoorv@amazon.com>
Date: Thu, 11 May 2023 08:39:03 -0700
Subject: [PATCH 0758/1641] Use dl.k8s.io instead of hardcoded GCS URIs (#9946)

---
 .github/workflows/ci.yaml            | 2 +-
 images/test-runner/rootfs/Dockerfile | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 77232aa88..19d39ab70 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -167,7 +167,7 @@ jobs:
         run: |
           sudo apt-get -qq update || true
           sudo apt-get install -y pigz
-          curl -LO https://storage.googleapis.com/kubernetes-release/release/v1.25.5/bin/linux/amd64/kubectl
+          curl -LO https://dl.k8s.io/release/v1.25.5/bin/linux/amd64/kubectl
           chmod +x ./kubectl
           sudo mv ./kubectl /usr/local/bin/kubectl
 
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 0b691a7d2..8574f8752 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -92,11 +92,11 @@ RUN  luarocks install busted \
   && luarocks install luacheck
 
 RUN wget -qO /usr/local/bin/kubectl \
-  https://storage.googleapis.com/kubernetes-release/release/${K8S_RELEASE}/bin/linux/${TARGETARCH}/kubectl \
+  https://dl.k8s.io/release/${K8S_RELEASE}/bin/linux/${TARGETARCH}/kubectl \
   && chmod +x /usr/local/bin/kubectl
 
 RUN wget -qO /usr/local/bin/kube-apiserver \
-  https://storage.googleapis.com/kubernetes-release/release/${K8S_RELEASE}/bin/linux/${TARGETARCH}/kube-apiserver \
+  https://dl.k8s.io/release/${K8S_RELEASE}/bin/linux/${TARGETARCH}/kube-apiserver \
   && chmod +x /usr/local/bin/kube-apiserver
 
 RUN wget -qO /tmp/ct-${CHART_TESTING_VERSION}-linux-${TARGETARCH}.tar.gz \

From 06612e6ffd044171e33b5e8315b9605eb8730c55 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Thu, 11 May 2023 18:37:03 +0200
Subject: [PATCH 0759/1641] HPA: Use capabilites & align manifests. (#9521)

---
 charts/ingress-nginx/README.md                |  2 -
 .../templates/controller-hpa.yaml             | 27 +++++-------
 .../templates/default-backend-hpa.yaml        | 41 ++++++++++---------
 charts/ingress-nginx/values.yaml              |  2 -
 4 files changed, 33 insertions(+), 39 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 2c2dd2f37..d79ad38cd 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -273,7 +273,6 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.allowSnippetAnnotations | bool | `true` | This configuration defines if Ingress Controller should allow users to set their own *-snippet annotations, otherwise this is forbidden / dropped when users add those annotations. Global snippets in ConfigMap are still respected |
 | controller.annotations | object | `{}` | Annotations to be added to the controller Deployment or DaemonSet # |
 | controller.autoscaling.annotations | object | `{}` |  |
-| controller.autoscaling.apiVersion | string | `"autoscaling/v2"` |  |
 | controller.autoscaling.behavior | object | `{}` |  |
 | controller.autoscaling.enabled | bool | `false` |  |
 | controller.autoscaling.maxReplicas | int | `11` |  |
@@ -435,7 +434,6 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.watchIngressWithoutClass | bool | `false` | Process Ingress objects without ingressClass annotation/ingressClassName field Overrides value for --watch-ingress-without-class flag of the controller binary Defaults to false |
 | defaultBackend.affinity | object | `{}` |  |
 | defaultBackend.autoscaling.annotations | object | `{}` |  |
-| defaultBackend.autoscaling.apiVersion | string | `"autoscaling/v2"` |  |
 | defaultBackend.autoscaling.enabled | bool | `false` |  |
 | defaultBackend.autoscaling.maxReplicas | int | `2` |  |
 | defaultBackend.autoscaling.minReplicas | int | `1` |  |
diff --git a/charts/ingress-nginx/templates/controller-hpa.yaml b/charts/ingress-nginx/templates/controller-hpa.yaml
index d1e78bdfc..96a91f533 100644
--- a/charts/ingress-nginx/templates/controller-hpa.yaml
+++ b/charts/ingress-nginx/templates/controller-hpa.yaml
@@ -1,12 +1,9 @@
-{{- if and .Values.controller.autoscaling.enabled (or (eq .Values.controller.kind "Deployment") (eq .Values.controller.kind "Both")) -}}
-{{- if not .Values.controller.keda.enabled }}
-
-apiVersion: {{ .Values.controller.autoscaling.apiVersion }}
+{{- if and (or (eq .Values.controller.kind "Deployment") (eq .Values.controller.kind "Both")) .Values.controller.autoscaling.enabled (not .Values.controller.keda.enabled) -}}
+apiVersion: {{ ternary "autoscaling/v2" "autoscaling/v2beta2" (.Capabilities.APIVersions.Has "autoscaling/v2") }}
 kind: HorizontalPodAutoscaler
 metadata:
-  annotations:
   {{- with .Values.controller.autoscaling.annotations }}
-  {{- toYaml . | trimSuffix "\n" | nindent 4 }}
+  annotations: {{ toYaml . | nindent 4 }}
   {{- end }}
   labels:
     {{- include "ingress-nginx.labels" . | nindent 4 }}
@@ -24,14 +21,6 @@ spec:
   minReplicas: {{ .Values.controller.autoscaling.minReplicas }}
   maxReplicas: {{ .Values.controller.autoscaling.maxReplicas }}
   metrics:
-  {{- with .Values.controller.autoscaling.targetMemoryUtilizationPercentage }}
-  - type: Resource
-    resource:
-      name: memory
-      target:
-        type: Utilization
-        averageUtilization: {{ . }}
-  {{- end }}
   {{- with .Values.controller.autoscaling.targetCPUUtilizationPercentage }}
   - type: Resource
     resource:
@@ -40,6 +29,14 @@ spec:
         type: Utilization
         averageUtilization: {{ . }}
   {{- end }}
+  {{- with .Values.controller.autoscaling.targetMemoryUtilizationPercentage }}
+  - type: Resource
+    resource:
+      name: memory
+      target:
+        type: Utilization
+        averageUtilization: {{ . }}
+  {{- end }}
   {{- with .Values.controller.autoscalingTemplate }}
   {{- toYaml . | nindent 2 }}
   {{- end }}
@@ -48,5 +45,3 @@ spec:
     {{- toYaml . | nindent 4 }}
   {{- end }}
 {{- end }}
-{{- end }}
-
diff --git a/charts/ingress-nginx/templates/default-backend-hpa.yaml b/charts/ingress-nginx/templates/default-backend-hpa.yaml
index 924125f07..faaf4fa75 100644
--- a/charts/ingress-nginx/templates/default-backend-hpa.yaml
+++ b/charts/ingress-nginx/templates/default-backend-hpa.yaml
@@ -1,37 +1,40 @@
 {{- if and .Values.defaultBackend.enabled .Values.defaultBackend.autoscaling.enabled }}
-apiVersion: {{ .Values.defaultBackend.autoscaling.apiVersion }}
+apiVersion: {{ ternary "autoscaling/v2" "autoscaling/v2beta2" (.Capabilities.APIVersions.Has "autoscaling/v2") }}
 kind: HorizontalPodAutoscaler
 metadata:
+  {{- with .Values.defaultBackend.autoscaling.annotations }}
+  annotations: {{ toYaml . | nindent 4 }}
+  {{- end }}
   labels:
     {{- include "ingress-nginx.labels" . | nindent 4 }}
     app.kubernetes.io/component: default-backend
     {{- with .Values.defaultBackend.labels }}
     {{- toYaml . | nindent 4 }}
     {{- end }}
-  name: {{ template "ingress-nginx.defaultBackend.fullname" . }}
+  name: {{ include "ingress-nginx.defaultBackend.fullname" . }}
   namespace: {{ .Release.Namespace }}
 spec:
   scaleTargetRef:
     apiVersion: apps/v1
     kind: Deployment
-    name: {{ template "ingress-nginx.defaultBackend.fullname" . }}
+    name: {{ include "ingress-nginx.defaultBackend.fullname" . }}
   minReplicas: {{ .Values.defaultBackend.autoscaling.minReplicas }}
   maxReplicas: {{ .Values.defaultBackend.autoscaling.maxReplicas }}
   metrics:
-{{- with .Values.defaultBackend.autoscaling.targetCPUUtilizationPercentage }}
-    - type: Resource
-      resource:
-        name: cpu
-        target:
-          type: Utilization
-          averageUtilization: {{ . }}
-{{- end }}
-{{- with .Values.defaultBackend.autoscaling.targetMemoryUtilizationPercentage }}
-    - type: Resource
-      resource:
-        name: memory
-        target:
-          type: Utilization
-          averageUtilization: {{ . }}
-{{- end }}
+  {{- with .Values.defaultBackend.autoscaling.targetCPUUtilizationPercentage }}
+  - type: Resource
+    resource:
+      name: cpu
+      target:
+        type: Utilization
+        averageUtilization: {{ . }}
+  {{- end }}
+  {{- with .Values.defaultBackend.autoscaling.targetMemoryUtilizationPercentage }}
+  - type: Resource
+    resource:
+      name: memory
+      target:
+        type: Utilization
+        averageUtilization: {{ . }}
+  {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 3a9629d63..a398b0503 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -326,7 +326,6 @@ controller:
       memory: 90Mi
   # Mutually exclusive with keda autoscaling
   autoscaling:
-    apiVersion: autoscaling/v2
     enabled: false
     annotations: {}
     minReplicas: 1
@@ -838,7 +837,6 @@ defaultBackend:
   #    emptyDir: {}
 
   autoscaling:
-    apiVersion: autoscaling/v2
     annotations: {}
     enabled: false
     minReplicas: 1

From 98780d7eb85cb38a599637f5f02f45fef2906cd6 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 11 May 2023 15:45:05 -0400
Subject: [PATCH 0760/1641] Update feature_request.md (#9951)

---
 .github/ISSUE_TEMPLATE/feature_request.md | 10 ----------
 1 file changed, 10 deletions(-)

diff --git a/.github/ISSUE_TEMPLATE/feature_request.md b/.github/ISSUE_TEMPLATE/feature_request.md
index 0e892d626..406a7ad0a 100644
--- a/.github/ISSUE_TEMPLATE/feature_request.md
+++ b/.github/ISSUE_TEMPLATE/feature_request.md
@@ -7,16 +7,6 @@ assignees: ''
 
 ---
 
-<!--
-With the situation in place today, we think (and decided) that it's time to temporarily pause accepting new features and focus on fixing and stabilizing Ingress NGINX. We understand that some people may need to merge a trivial new feature. Still, we are asking the community to understand that maintaining the project at this pace is becoming hard for the project maintainers. We understand that you waited too long with your PR in the queue, and we are sorry! But it's hard for us as well to keep the project stable.
-
-More details are available here https://youtu.be/UBt4N82ymOE and here   https://kubernetes.slack.com/archives/CANQGM8BA/p1656020331133589. 
-The announcement in the dev mailing list is here https://groups.google.com/a/kubernetes.io/g/dev/c/rxtrKvT_Q8E
-
-Thank you,
-Ingress-Nginx maintainer
--->
-
 <!-- What do you want to happen? -->
 
 <!-- Is there currently another issue associated with this? -->

From 55e37c6feaff0badaea6b04636e93494d899201f Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 11 May 2023 15:47:05 -0400
Subject: [PATCH 0761/1641] Update PULL_REQUEST_TEMPLATE.md (#9952)

---
 .github/PULL_REQUEST_TEMPLATE.md | 34 +-------------------------------
 1 file changed, 1 insertion(+), 33 deletions(-)

diff --git a/.github/PULL_REQUEST_TEMPLATE.md b/.github/PULL_REQUEST_TEMPLATE.md
index e3781887a..c1c815678 100644
--- a/.github/PULL_REQUEST_TEMPLATE.md
+++ b/.github/PULL_REQUEST_TEMPLATE.md
@@ -1,5 +1,6 @@
 <!--- Provide a general summary of your changes in the Title above --->
 <!--- Please don't @-mention people in PR or commit messages (do so in an additional comment). --->
+<!--- Please make sure you title is descriptive, it is used in the Release notes to let others know what it does ---> 
 
 ## What this PR does / why we need it:
 <!--- Why is this change required? What problem does it solve? -->
@@ -33,36 +34,3 @@ fixes #
 - [ ] I've read the [CONTRIBUTION](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md) guide
 - [ ] I have added unit and/or e2e tests to cover my changes.
 - [ ] All new and existing tests passed.
-- [ ] Added Release Notes.
-
-## Does my pull request need a release note?
-Any user-visible or operator-visible change qualifies for a release note. This could be a:
-
-- CLI change
-- API change
-- UI change
-- configuration schema change
-- behavioral change
-- change in non-functional attributes such as efficiency or availability, availability of a new platform
-- a warning about a deprecation
-- fix of a previous Known Issue
-- fix of a vulnerability (CVE)
-
-No release notes are required for changes to the following:
-
-- Tests
-- Build infrastructure
-- Fixes for unreleased bugs
-
-For more tips on writing good release notes, check out the [Release Notes Handbook](https://github.com/kubernetes/sig-release/tree/master/release-team/role-handbooks/release-notes)
-
-<!--
-If no, just write "NONE" in the release-note block below.
-If yes, a release note is required:
-Enter your extended release note in the block below. If the PR requires additional action from users switching to the new release, include the string "action required".
-
-For more information on release notes see: https://git.k8s.io/community/contributors/guide/release-notes.md
--->
-```release-note
-PLACE RELEASE NOTES HERE
-```

From c5dad5e46116382ef8ec02a648e9c48d0ef1ea19 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Thu, 11 May 2023 21:03:12 -0400
Subject: [PATCH 0762/1641] removed e2e tests for cgroups2 and associated
 functions

---
 pkg/util/runtime/cpu_linux.go        |  4 --
 pkg/util/runtime/cpu_notlinux.go     |  6 +--
 test/e2e/cgroups/cgroups_linux.go    | 65 ----------------------------
 test/e2e/cgroups/cgroups_notlinux.go | 42 ------------------
 test/e2e/e2e.go                      | 41 +++++++++---------
 5 files changed, 21 insertions(+), 137 deletions(-)
 delete mode 100644 test/e2e/cgroups/cgroups_linux.go
 delete mode 100644 test/e2e/cgroups/cgroups_notlinux.go

diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index e5e8db40a..c72f47f01 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -60,10 +60,6 @@ func NumCPU() int {
 	return int(math.Ceil(float64(cpuQuota) / float64(cpuPeriod)))
 }
 
-func IsCgroupAvaliable() bool {
-	return true
-}
-
 func getCgroupVersion() int64 {
 	// /sys/fs/cgroup/cgroup.controllers will not exist with cgroupsv1
 	if _, err := os.Stat("/sys/fs/cgroup/cgroup.controllers"); err == nil {
diff --git a/pkg/util/runtime/cpu_notlinux.go b/pkg/util/runtime/cpu_notlinux.go
index 3c4c6718b..0441af957 100644
--- a/pkg/util/runtime/cpu_notlinux.go
+++ b/pkg/util/runtime/cpu_notlinux.go
@@ -26,8 +26,4 @@ import (
 // NumCPU ...
 func NumCPU() int {
 	return runtime.NumCPU()
-}
-
-func IsCgroupAvaliable() bool {
-	return false
-}
+}
\ No newline at end of file
diff --git a/test/e2e/cgroups/cgroups_linux.go b/test/e2e/cgroups/cgroups_linux.go
deleted file mode 100644
index 18b3f837b..000000000
--- a/test/e2e/cgroups/cgroups_linux.go
+++ /dev/null
@@ -1,65 +0,0 @@
-//go:build linux
-// +build linux
-
-/*
-Copyright 2020 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package cgroups
-
-import (
-	"log"
-	"os"
-
-	"github.com/onsi/ginkgo/v2"
-	"github.com/stretchr/testify/assert"
-
-	"k8s.io/ingress-nginx/test/e2e/framework"
-
-	"k8s.io/ingress-nginx/pkg/util/runtime"
-)
-
-var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
-	f := framework.NewDefaultFramework("cgroups")
-
-	ginkgo.BeforeEach(func() {
-		f.NewEchoDeployment()
-		f.NewSlowEchoDeployment()
-	})
-
-	ginkgo.It("detects if cgroups is avaliable", func() {
-		assert.Equal(ginkgo.GinkgoT(), runtime.IsCgroupAvaliable(), 1)
-	})
-
-	ginkgo.It("detects cgroups version v1", func() {
-		assert.Equal(ginkgo.GinkgoT(), runtime.readCgroupFileToInt64(), 1)
-	})
-
-	ginkgo.It("detects number of CPUs properly in cgroups v1", func() {
-		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), -1)
-	})
-
-	ginkgo.It("detects cgroups version v2", func() {
-		// create cgroups2 files
-		if err := os.MkdirAll("a/b/c/d", os.ModePerm); err != nil {
-			log.Fatal(err)
-		}
-
-	})
-
-	ginkgo.It("detects number of CPUs properly in cgroups v2", func() {
-		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), -1)
-	})
-})
diff --git a/test/e2e/cgroups/cgroups_notlinux.go b/test/e2e/cgroups/cgroups_notlinux.go
deleted file mode 100644
index 483db52cc..000000000
--- a/test/e2e/cgroups/cgroups_notlinux.go
+++ /dev/null
@@ -1,42 +0,0 @@
-//go:build !linux
-// +build !linux
-
-/*
-Copyright 2020 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package cgroups
-
-import (
-	"github.com/onsi/ginkgo/v2"
-	"github.com/stretchr/testify/assert"
-
-	"k8s.io/ingress-nginx/test/e2e/framework"
-
-	"k8s.io/ingress-nginx/pkg/util/runtime"
-)
-
-var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
-	f := framework.NewDefaultFramework("cgroups")
-
-	ginkgo.BeforeEach(func() {
-		f.NewEchoDeployment()
-		f.NewSlowEchoDeployment()
-	})
-
-	ginkgo.It("detects cgroups is not avaliable", func() {
-		assert.True(ginkgo.GinkgoT(), !runtime.IsCgroupAvaliable())
-	})
-})
diff --git a/test/e2e/e2e.go b/test/e2e/e2e.go
index a671e8793..57b047230 100644
--- a/test/e2e/e2e.go
+++ b/test/e2e/e2e.go
@@ -29,27 +29,26 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 
 	// tests to run
-	// _ "k8s.io/ingress-nginx/test/e2e/admission"
-	// _ "k8s.io/ingress-nginx/test/e2e/annotations"
-	// _ "k8s.io/ingress-nginx/test/e2e/annotations/modsecurity"
-	_ "k8s.io/ingress-nginx/test/e2e/cgroups"
-	// _ "k8s.io/ingress-nginx/test/e2e/dbg"
-	// _ "k8s.io/ingress-nginx/test/e2e/defaultbackend"
-	// _ "k8s.io/ingress-nginx/test/e2e/endpointslices"
-	// _ "k8s.io/ingress-nginx/test/e2e/gracefulshutdown"
-	// _ "k8s.io/ingress-nginx/test/e2e/ingress"
-	// _ "k8s.io/ingress-nginx/test/e2e/leaks"
-	// _ "k8s.io/ingress-nginx/test/e2e/loadbalance"
-	// _ "k8s.io/ingress-nginx/test/e2e/lua"
-	// _ "k8s.io/ingress-nginx/test/e2e/nginx"
-	// _ "k8s.io/ingress-nginx/test/e2e/security"
-	// _ "k8s.io/ingress-nginx/test/e2e/servicebackend"
-	// _ "k8s.io/ingress-nginx/test/e2e/settings"
-	// _ "k8s.io/ingress-nginx/test/e2e/settings/modsecurity"
-	// _ "k8s.io/ingress-nginx/test/e2e/settings/ocsp"
-	// _ "k8s.io/ingress-nginx/test/e2e/ssl"
-	// _ "k8s.io/ingress-nginx/test/e2e/status"
-	// _ "k8s.io/ingress-nginx/test/e2e/tcpudp"
+	_ "k8s.io/ingress-nginx/test/e2e/admission"
+	_ "k8s.io/ingress-nginx/test/e2e/annotations"
+	_ "k8s.io/ingress-nginx/test/e2e/annotations/modsecurity"
+	_ "k8s.io/ingress-nginx/test/e2e/dbg"
+	_ "k8s.io/ingress-nginx/test/e2e/defaultbackend"
+	_ "k8s.io/ingress-nginx/test/e2e/endpointslices"
+	_ "k8s.io/ingress-nginx/test/e2e/gracefulshutdown"
+	_ "k8s.io/ingress-nginx/test/e2e/ingress"
+	_ "k8s.io/ingress-nginx/test/e2e/leaks"
+	_ "k8s.io/ingress-nginx/test/e2e/loadbalance"
+	_ "k8s.io/ingress-nginx/test/e2e/lua"
+	_ "k8s.io/ingress-nginx/test/e2e/nginx"
+	_ "k8s.io/ingress-nginx/test/e2e/security"
+	_ "k8s.io/ingress-nginx/test/e2e/servicebackend"
+	_ "k8s.io/ingress-nginx/test/e2e/settings"
+	_ "k8s.io/ingress-nginx/test/e2e/settings/modsecurity"
+	_ "k8s.io/ingress-nginx/test/e2e/settings/ocsp"
+	_ "k8s.io/ingress-nginx/test/e2e/ssl"
+	_ "k8s.io/ingress-nginx/test/e2e/status"
+	_ "k8s.io/ingress-nginx/test/e2e/tcpudp"
 )
 
 // RunE2ETests checks configuration parameters (specified through flags) and then runs

From a8028a576f3174e9063f55ccc96c5345bf0357b1 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Thu, 11 May 2023 21:04:21 -0400
Subject: [PATCH 0763/1641] remove test report

---
 test/junitreports/report-e2e-test-suite.xml | 1311 -------------------
 1 file changed, 1311 deletions(-)
 delete mode 100644 test/junitreports/report-e2e-test-suite.xml

diff --git a/test/junitreports/report-e2e-test-suite.xml b/test/junitreports/report-e2e-test-suite.xml
deleted file mode 100644
index fc919bad2..000000000
--- a/test/junitreports/report-e2e-test-suite.xml
+++ /dev/null
@@ -1,1311 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-  <testsuites tests="427" disabled="6" errors="0" failures="0" time="15519.407450685">
-      <testsuite name="nginx-ingress-controller e2e suite" package="/" tests="427" disabled="0" skipped="6" errors="0" failures="0" time="15519.407450685" timestamp="2023-04-04T18:04:19">
-          <properties>
-              <property name="SuiteSucceeded" value="true"></property>
-              <property name="SuiteHasProgrammaticFocus" value="false"></property>
-              <property name="SpecialSuiteFailureReason" value=""></property>
-              <property name="SuiteLabels" value="[]"></property>
-              <property name="RandomSeed" value="1680631459"></property>
-              <property name="RandomizeAllSpecs" value="true"></property>
-              <property name="LabelFilter" value=""></property>
-              <property name="FocusStrings" value=""></property>
-              <property name="SkipStrings" value="\[Memory Leak\]"></property>
-              <property name="FocusFiles" value=""></property>
-              <property name="SkipFiles" value=""></property>
-              <property name="FailOnPending" value="false"></property>
-              <property name="FailFast" value="true"></property>
-              <property name="FlakeAttempts" value="2"></property>
-              <property name="DryRun" value="false"></property>
-              <property name="ParallelTotal" value="7"></property>
-              <property name="OutputInterceptorMode" value=""></property>
-          </properties>
-          <testcase name="[It] [Annotations] cors-* should set cors methods to only allow POST, GET" classname="nginx-ingress-controller e2e suite" status="passed" time="155.719672151">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.256&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:40.576 (2m21.32s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:06:40.576&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:06:44.629 (4.053s)&#xA;&gt; Enter [It] should set cors methods to only allow POST, GET - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:62 @ 04/04/23 18:06:44.629&#xA;&lt; Exit [It] should set cors methods to only allow POST, GET - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:62 @ 04/04/23 18:06:54.768 (10.139s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:54.768&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:54.976 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Load Balancer] round-robin should evenly distribute requests with round-robin (default algorithm)" classname="nginx-ingress-controller e2e suite" status="passed" time="146.423040301">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:54.976&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:01.906 (6.93s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:34 @ 04/04/23 18:07:01.906&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:34 @ 04/04/23 18:07:12.967 (11.06s)&#xA;&gt; Enter [It] should evenly distribute requests with round-robin (default algorithm) - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:39 @ 04/04/23 18:07:12.967&#xA;&lt; Exit [It] should evenly distribute requests with round-robin (default algorithm) - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:39 @ 04/04/23 18:09:21.17 (2m8.203s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:21.17&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:21.399 (229ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-forwarded-headers should trust X-Forwarded headers when setting is true" classname="nginx-ingress-controller e2e suite" status="passed" time="35.389805466">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:21.4&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:28.324 (6.924s)&#xA;&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 04/04/23 18:09:28.324&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 04/04/23 18:09:39.376 (11.052s)&#xA;&gt; Enter [It] should trust X-Forwarded headers when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:40 @ 04/04/23 18:09:39.376&#xA;STEP: ensuring single values are parsed correctly - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:54 @ 04/04/23 18:09:56.563&#xA;STEP: ensuring that first entry in X-Forwarded-Host is used as the best host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:75 @ 04/04/23 18:09:56.572&#xA;&lt; Exit [It] should trust X-Forwarded headers when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:40 @ 04/04/23 18:09:56.578 (17.202s)&#xA;&gt; Enter [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:56.578&#xA;&lt; Exit [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:56.789 (211ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] from-to-www-redirect should redirect from www HTTPS to HTTPS" classname="nginx-ingress-controller e2e suite" status="passed" time="26.419790469">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:56.79&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:03.662 (6.873s)&#xA;&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 04/04/23 18:10:03.662&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 04/04/23 18:10:07.688 (4.026s)&#xA;&gt; Enter [It] should redirect from www HTTPS to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:64 @ 04/04/23 18:10:07.688&#xA;STEP: setting up server for redirect from www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:65 @ 04/04/23 18:10:07.688&#xA;STEP: sending request to www should redirect to domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:91 @ 04/04/23 18:10:22.913&#xA;STEP: sending request to domain should not redirect to www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:103 @ 04/04/23 18:10:22.941&#xA;&lt; Exit [It] should redirect from www HTTPS to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:64 @ 04/04/23 18:10:22.969 (15.281s)&#xA;&gt; Enter [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:22.969&#xA;&lt; Exit [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:23.209 (240ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set secure in cookie with provided true annotation on http" classname="nginx-ingress-controller e2e suite" status="passed" time="22.314624867">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:23.21&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:31.083 (7.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:10:31.083&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:10:35.101 (4.018s)&#xA;&gt; Enter [It] should set secure in cookie with provided true annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:412 @ 04/04/23 18:10:35.101&#xA;&lt; Exit [It] should set secure in cookie with provided true annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:412 @ 04/04/23 18:10:45.308 (10.206s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:45.308&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:45.524 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should not set cookie without domain annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="21.240386516">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:45.525&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:52.399 (6.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:10:52.399&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:10:56.446 (4.048s)&#xA;&gt; Enter [It] should not set cookie without domain annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:248 @ 04/04/23 18:10:56.446&#xA;&lt; Exit [It] should not set cookie without domain annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:248 @ 04/04/23 18:11:06.571 (10.124s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:06.571&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:06.765 (195ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set sticky cookie without host" classname="nginx-ingress-controller e2e suite" status="passed" time="21.40125451">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:06.765&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:13.684 (6.918s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:11:13.684&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:11:17.714 (4.03s)&#xA;&gt; Enter [It] should set sticky cookie without host - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:352 @ 04/04/23 18:11:17.714&#xA;&lt; Exit [It] should set sticky cookie without host - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:352 @ 04/04/23 18:11:27.946 (10.232s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:27.946&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:28.167 (220ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Security] request smuggling should not return body content from error_page" classname="nginx-ingress-controller e2e suite" status="passed" time="32.363293062">
-              <system-err>&gt; Enter [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:28.167&#xA;&lt; Exit [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:36.071 (7.904s)&#xA;&gt; Enter [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:35 @ 04/04/23 18:11:36.071&#xA;&lt; Exit [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:35 @ 04/04/23 18:11:38.106 (2.035s)&#xA;&gt; Enter [It] should not return body content from error_page - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:39 @ 04/04/23 18:11:38.106&#xA;&lt; Exit [It] should not return body content from error_page - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:39 @ 04/04/23 18:12:00.307 (22.201s)&#xA;&gt; Enter [AfterEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:00.307&#xA;&lt; Exit [AfterEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:00.53 (223ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - GRPC should use grpc_pass in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="24.501632586">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:00.531&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:07.492 (6.961s)&#xA;&gt; Enter [It] should use grpc_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:43 @ 04/04/23 18:12:07.492&#xA;&lt; Exit [It] should use grpc_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:43 @ 04/04/23 18:12:24.818 (17.326s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:24.818&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:25.032 (214ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured with invalid content and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="21.754871768">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:25.033&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:32.425 (7.392s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:12:32.425&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:12:36.448 (4.023s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured with invalid content and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:227 @ 04/04/23 18:12:36.448&#xA;&lt; Exit [It] should return status code 401 when authentication is configured with invalid content and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:227 @ 04/04/23 18:12:46.572 (10.124s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:46.572&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:46.787 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="33.025082751">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:46.788&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:54.215 (7.427s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:12:54.215&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:13:02.279 (8.064s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:490 @ 04/04/23 18:13:02.279&#xA;STEP: routing requests to the canary upstream when header pattern is matched - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:514 @ 04/04/23 18:13:19.503&#xA;STEP: routing requests to the mainline upstream when header failed to match header value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:523 @ 04/04/23 18:13:19.508&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:490 @ 04/04/23 18:13:19.51 (17.231s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:19.51&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:19.813 (303ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-multi-accept should be enabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="10.259806432">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:19.813&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:26.704 (6.89s)&#xA;&gt; Enter [It] should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:31 @ 04/04/23 18:13:26.704&#xA;&lt; Exit [It] should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:31 @ 04/04/23 18:13:29.872 (3.169s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:29.872&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:30.073 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass" classname="nginx-ingress-controller e2e suite" status="passed" time="37.41369791">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:30.073&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:37.948 (7.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:13:37.948&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:13:41.967 (4.019s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:133 @ 04/04/23 18:13:41.967&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:133 @ 04/04/23 18:14:07.32 (25.353s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:07.32&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:07.487 (167ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] disables access logging for default backend" classname="nginx-ingress-controller e2e suite" status="skipped" time="7.073309195">
-              <skipped message="skipped - enable-access-log-for-default-backend"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:07.487&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:14.369 (6.882s)&#xA;&gt; Enter [It] disables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:105 @ 04/04/23 18:14:14.369&#xA;[SKIPPED] enable-access-log-for-default-backend&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:107 @ 04/04/23 18:14:14.37&#xA;&lt; Exit [It] disables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:105 @ 04/04/23 18:14:14.37 (1ms)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:14.37&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:14.561 (191ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by cookie respects always and never values" classname="nginx-ingress-controller e2e suite" status="passed" time="60.518220117">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:14.561&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:21.468 (6.907s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:14:21.468&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:14:29.526 (8.058s)&#xA;&gt; Enter [It] respects always and never values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:643 @ 04/04/23 18:14:29.526&#xA;STEP: routing requests to the canary upstream when cookie is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:667 @ 04/04/23 18:14:46.664&#xA;STEP: routing requests to the mainline upstream when cookie is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:678 @ 04/04/23 18:14:54.864&#xA;STEP: routing requests to the mainline upstream when cookie is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:689 @ 04/04/23 18:15:04.858&#xA;&lt; Exit [It] respects always and never values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:643 @ 04/04/23 18:15:14.862 (45.336s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:14.862&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:15.079 (218ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] default-backend when default backend annotation is enabled should use a custom default backend as upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="22.31198962">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:15.08&#xA;&lt; Exit [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:22.972 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:32 @ 04/04/23 18:15:22.972&#xA;&lt; Exit [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:32 @ 04/04/23 18:15:26.998 (4.026s)&#xA;&gt; Enter [It] should use a custom default backend as upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:37 @ 04/04/23 18:15:26.998&#xA;&lt; Exit [It] should use a custom default backend as upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:37 @ 04/04/23 18:15:37.18 (10.182s)&#xA;&gt; Enter [AfterEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:37.18&#xA;&lt; Exit [AfterEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:37.392 (212ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* canary affinity behavior always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="38.759102087">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:37.392&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:44.321 (6.929s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:15:44.321&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:15:50.372 (6.051s)&#xA;&gt; Enter [It] always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1000 @ 04/04/23 18:15:50.372&#xA;&lt; Exit [It] always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1000 @ 04/04/23 18:16:15.956 (25.584s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:15.956&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:16.151 (195ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should write rewrite logs" classname="nginx-ingress-controller e2e suite" status="passed" time="26.937169082">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:16.152&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:25.575 (9.424s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:16:25.576&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:16:29.621 (4.045s)&#xA;&gt; Enter [It] should write rewrite logs - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:37 @ 04/04/23 18:16:29.621&#xA;STEP: setting enable-rewrite-log annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:38 @ 04/04/23 18:16:29.621&#xA;&lt; Exit [It] should write rewrite logs - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:37 @ 04/04/23 18:16:42.864 (13.243s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:42.864&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:43.089 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret" classname="nginx-ingress-controller e2e suite" status="passed" time="26.69218604">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:43.089&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:50.483 (7.394s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:16:50.483&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:16:54.502 (4.019s)&#xA;&gt; Enter [It] should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:36 @ 04/04/23 18:16:54.502&#xA;&lt; Exit [It] should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:36 @ 04/04/23 18:17:09.564 (15.063s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:09.564&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:09.781 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should propagate the w3c header when configured with jaeger" classname="nginx-ingress-controller e2e suite" status="passed" time="41.394943239">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:09.782&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:16.68 (6.899s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:17:16.68&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:17:20.71 (4.03s)&#xA;&gt; Enter [It] should propagate the w3c header when configured with jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:197 @ 04/04/23 18:17:20.71&#xA;&lt; Exit [It] should propagate the w3c header when configured with jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:197 @ 04/04/23 18:17:50.976 (30.266s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:50.976&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:51.176 (200ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:17:51.176&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:17:51.176 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes" classname="nginx-ingress-controller e2e suite" status="passed" time="32.627892918">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:51.177&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:59.072 (7.895s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:17:59.072&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:18:13.271 (14.199s)&#xA;&gt; Enter [It] handles endpoints only changes - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:62 @ 04/04/23 18:18:13.271&#xA;&lt; Exit [It] handles endpoints only changes - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:62 @ 04/04/23 18:18:23.585 (10.314s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:23.585&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:23.805 (219ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] secret update should not appear references to secret updates not used in ingress rules" classname="nginx-ingress-controller e2e suite" status="passed" time="34.389384875">
-              <system-err>&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:23.805&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:30.696 (6.891s)&#xA;&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 04/04/23 18:18:30.696&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 04/04/23 18:18:34.717 (4.021s)&#xA;&gt; Enter [It] should not appear references to secret updates not used in ingress rules - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:40 @ 04/04/23 18:18:34.717&#xA;&lt; Exit [It] should not appear references to secret updates not used in ingress rules - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:40 @ 04/04/23 18:18:57.987 (23.27s)&#xA;&gt; Enter [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:57.987&#xA;&lt; Exit [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:58.194 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should include opentelemetry_trust_incoming_spans on directive when enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="31.804972504">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:58.195&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:08.072 (9.877s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:19:08.072&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:19:12.096 (4.024s)&#xA;&gt; Enter [It] should include opentelemetry_trust_incoming_spans on directive when enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:74 @ 04/04/23 18:19:12.096&#xA;&lt; Exit [It] should include opentelemetry_trust_incoming_spans on directive when enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:74 @ 04/04/23 18:19:29.486 (17.39s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:29.486&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:30 (514ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:19:30&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:19:30 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] from-to-www-redirect should redirect from www HTTP to HTTP" classname="nginx-ingress-controller e2e suite" status="passed" time="22.301605707">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:30.007&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:37.929 (7.922s)&#xA;&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 04/04/23 18:19:37.929&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 04/04/23 18:19:41.957 (4.027s)&#xA;&gt; Enter [It] should redirect from www HTTP to HTTP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:38 @ 04/04/23 18:19:41.957&#xA;STEP: setting up server for redirect from www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:39 @ 04/04/23 18:19:41.957&#xA;STEP: sending request to www.fromtowwwredirect.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:55 @ 04/04/23 18:19:52.111&#xA;&lt; Exit [It] should redirect from www HTTP to HTTP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:38 @ 04/04/23 18:19:52.114 (10.157s)&#xA;&gt; Enter [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:52.114&#xA;&lt; Exit [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:52.309 (195ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Debug CLI should produce valid JSON for /dbg general" classname="nginx-ingress-controller e2e suite" status="passed" time="19.236570056">
-              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:52.309&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:59.222 (6.912s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:19:59.222&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:20:03.271 (4.049s)&#xA;&gt; Enter [It] should produce valid JSON for /dbg general - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:85 @ 04/04/23 18:20:03.271&#xA;&lt; Exit [It] should produce valid JSON for /dbg general - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:85 @ 04/04/23 18:20:10.739 (7.468s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:10.739&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:11.546 (807ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests split between mainline and canary if canary weight is 50" classname="nginx-ingress-controller e2e suite" status="passed" time="72.6402812">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:11.548&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:20.355 (8.808s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:20:20.355&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:20:28.54 (8.185s)&#xA;&gt; Enter [It] should route requests split between mainline and canary if canary weight is 50 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:808 @ 04/04/23 18:20:28.54&#xA;&lt; Exit [It] should route requests split between mainline and canary if canary weight is 50 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:808 @ 04/04/23 18:21:23.965 (55.425s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:23.965&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:24.188 (223ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] custom-http-errors configures Nginx correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="44.923714382">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:24.188&#xA;&lt; Exit [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:32.093 (7.904s)&#xA;&gt; Enter [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:37 @ 04/04/23 18:21:32.093&#xA;&lt; Exit [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:37 @ 04/04/23 18:21:36.116 (4.023s)&#xA;&gt; Enter [It] configures Nginx correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:41 @ 04/04/23 18:21:36.116&#xA;STEP: turning on proxy_intercept_errors directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:59 @ 04/04/23 18:21:46.348&#xA;STEP: configuring error_page directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:62 @ 04/04/23 18:21:46.348&#xA;STEP: creating error locations - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:67 @ 04/04/23 18:21:46.348&#xA;STEP: updating configuration when only custom-http-error value changes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:72 @ 04/04/23 18:21:46.349&#xA;STEP: ignoring duplicate values (503 in this case) per server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:90 @ 04/04/23 18:21:50.55&#xA;STEP: using the custom default-backend from annotation for upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:102 @ 04/04/23 18:22:00.715&#xA;&lt; Exit [It] configures Nginx correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:41 @ 04/04/23 18:22:08.9 (32.784s)&#xA;&gt; Enter [AfterEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:08.9&#xA;&lt; Exit [AfterEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:09.112 (212ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] connection-proxy-header set connection header to keep-alive" classname="nginx-ingress-controller e2e suite" status="passed" time="22.252976907">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:09.112&#xA;&lt; Exit [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:17.003 (7.891s)&#xA;&gt; Enter [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:32 @ 04/04/23 18:22:17.003&#xA;&lt; Exit [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:32 @ 04/04/23 18:22:21.032 (4.029s)&#xA;&gt; Enter [It] set connection header to keep-alive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:36 @ 04/04/23 18:22:21.032&#xA;&lt; Exit [It] set connection header to keep-alive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:36 @ 04/04/23 18:22:31.159 (10.126s)&#xA;&gt; Enter [AfterEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:31.159&#xA;&lt; Exit [AfterEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:31.365 (206ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName using FQDN with trailing dot" classname="nginx-ingress-controller e2e suite" status="passed" time="17.384809737">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:31.366&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:38.253 (6.887s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName using FQDN with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:217 @ 04/04/23 18:22:38.253&#xA;&lt; Exit [It] should return 200 for service type=ExternalName using FQDN with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:217 @ 04/04/23 18:22:48.533 (10.28s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:48.533&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:48.75 (218ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure TLS protocol setting cipher suite" classname="nginx-ingress-controller e2e suite" status="passed" time="30.336386338">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:48.751&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:55.631 (6.88s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:22:55.631&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:22:59.653 (4.022s)&#xA;&gt; Enter [BeforeEach] should configure TLS protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:47 @ 04/04/23 18:22:59.653&#xA;&lt; Exit [BeforeEach] should configure TLS protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:47 @ 04/04/23 18:23:08.743 (9.09s)&#xA;&gt; Enter [It] setting cipher suite - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:65 @ 04/04/23 18:23:08.743&#xA;&lt; Exit [It] setting cipher suite - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:65 @ 04/04/23 18:23:18.9 (10.157s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:18.9&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:19.087 (187ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should not set client_body_buffer_size to invalid 1b" classname="nginx-ingress-controller e2e suite" status="passed" time="22.345381233">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:19.087&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:27.019 (7.931s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:23:27.019&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:23:31.042 (4.023s)&#xA;&gt; Enter [It] should not set client_body_buffer_size to invalid 1b - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:145 @ 04/04/23 18:23:31.042&#xA;&lt; Exit [It] should not set client_body_buffer_size to invalid 1b - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:145 @ 04/04/23 18:23:41.252 (10.21s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:41.252&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:41.433 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user with annotated ingress retains cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="35.862466475">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:41.433&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:48.317 (6.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:23:48.317&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:23:52.34 (4.023s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:23:52.34&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:24:11.665 (19.325s)&#xA;&gt; Enter [It] user with annotated ingress retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:433 @ 04/04/23 18:24:11.665&#xA;&lt; Exit [It] user with annotated ingress retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:433 @ 04/04/23 18:24:16.916 (5.251s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:16.916&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:17.295 (379ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should accept both Ingresses with default IngressClassName and IngressClass annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="28.849373163">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:17.296&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:24.725 (7.429s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:24:24.725&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:24:28.761 (4.036s)&#xA;&gt; Enter [It] should accept both Ingresses with default IngressClassName and IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:132 @ 04/04/23 18:24:28.761&#xA;&lt; Exit [It] should accept both Ingresses with default IngressClassName and IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:132 @ 04/04/23 18:24:45.952 (17.19s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:45.952&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:46.145 (194ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="62.989242552">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:46.146&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:54.048 (7.903s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:24:54.048&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:24:58.076 (4.028s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:24:58.076&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:25:03.11&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:25:13.321&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:25:23.483&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:25:33.694&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:25:48.897 (50.821s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:849 @ 04/04/23 18:25:48.897&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:849 @ 04/04/23 18:25:48.908 (11ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:48.908&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:49.135 (227ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should enable the log-format-escape-none" classname="nginx-ingress-controller e2e suite" status="passed" time="29.279224113">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:49.135&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:56.988 (7.853s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:25:56.988&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:26:08.04 (11.052s)&#xA;&gt; Enter [It] should enable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:63 @ 04/04/23 18:26:08.04&#xA;&lt; Exit [It] should enable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:63 @ 04/04/23 18:26:18.223 (10.184s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:18.223&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:18.414 (191ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="28.389158726">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:18.415&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:25.316 (6.901s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:26:25.316&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:26:29.352 (4.036s)&#xA;&gt; Enter [It] disable-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:35 @ 04/04/23 18:26:29.352&#xA;&lt; Exit [It] disable-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:35 @ 04/04/23 18:26:46.584 (17.231s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:46.584&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:46.805 (221ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] backend status code 503 should return 503 when backend service does not exist" classname="nginx-ingress-controller e2e suite" status="passed" time="17.252661988">
-              <system-err>&gt; Enter [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:46.805&#xA;&lt; Exit [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:53.714 (6.909s)&#xA;&gt; Enter [It] should return 503 when backend service does not exist - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:36 @ 04/04/23 18:26:53.714&#xA;&lt; Exit [It] should return 503 when backend service does not exist - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:36 @ 04/04/23 18:27:03.859 (10.145s)&#xA;&gt; Enter [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:03.859&#xA;&lt; Exit [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:04.058 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when host part of auth-url contains a variable" classname="nginx-ingress-controller e2e suite" status="passed" time="180.073180671">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:04.058&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:22.496 (2m18.438s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:29:22.496&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:29:26.527 (4.032s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:26.527&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:40.697 (14.169s)&#xA;&gt; Enter [It] should not create additional upstream block when host part of auth-url contains a variable - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:570 @ 04/04/23 18:29:40.697&#xA;&lt; Exit [It] should not create additional upstream block when host part of auth-url contains a variable - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:570 @ 04/04/23 18:30:03.916 (23.219s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:03.916&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:04.131 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should return 403 using auth-tls-match-cn with no matching CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="22.572106725">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:04.131&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:12.003 (7.871s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:30:12.003&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:30:16.028 (4.025s)&#xA;&gt; Enter [It] should return 403 using auth-tls-match-cn with no matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:266 @ 04/04/23 18:30:16.028&#xA;&lt; Exit [It] should return 403 using auth-tls-match-cn with no matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:266 @ 04/04/23 18:30:26.487 (10.459s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:26.487&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:26.704 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check the variable hash size should set variables-hash-max-size" classname="nginx-ingress-controller e2e suite" status="passed" time="28.267138211">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:26.704&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:33.592 (6.888s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:30:33.592&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:30:44.636 (11.044s)&#xA;&gt; Enter [It] should set variables-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:88 @ 04/04/23 18:30:44.636&#xA;&lt; Exit [It] should set variables-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:88 @ 04/04/23 18:30:54.792 (10.156s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:54.792&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:54.971 (179ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] nginx-configuration fails when using alias directive" classname="nginx-ingress-controller e2e suite" status="passed" time="62.037787772">
-              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:30:54.971&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:30:56.98 (2.008s)&#xA;&gt; Enter [It] fails when using alias directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:115 @ 04/04/23 18:30:56.98&#xA;&lt; Exit [It] fails when using alias directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:115 @ 04/04/23 18:31:57.006 (1m0.027s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:31:57.006&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:31:57.009 (3ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] stream-snippet should add value of stream-snippet to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="26.324702674">
-              <system-err>&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:57.009&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:03.889 (6.88s)&#xA;&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 04/04/23 18:32:03.889&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 04/04/23 18:32:07.917 (4.028s)&#xA;&gt; Enter [It] should add value of stream-snippet to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:41 @ 04/04/23 18:32:07.917&#xA;&lt; Exit [It] should add value of stream-snippet to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:41 @ 04/04/23 18:32:23.139 (15.222s)&#xA;&gt; Enter [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:23.139&#xA;&lt; Exit [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:23.334 (195ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] force-ssl-redirect should redirect to https" classname="nginx-ingress-controller e2e suite" status="passed" time="18.161892976">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:23.334&#xA;&lt; Exit [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:30.222 (6.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:30 @ 04/04/23 18:32:30.222&#xA;&lt; Exit [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:30 @ 04/04/23 18:32:34.249 (4.027s)&#xA;&gt; Enter [It] should redirect to https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:34 @ 04/04/23 18:32:34.249&#xA;&lt; Exit [It] should redirect to https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:34 @ 04/04/23 18:32:41.274 (7.025s)&#xA;&gt; Enter [AfterEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:41.274&#xA;&lt; Exit [AfterEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:41.496 (222ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With specific ingress-class flags should ignore Ingress with no class and accept the correctly configured Ingresses" classname="nginx-ingress-controller e2e suite" status="passed" time="43.376544604">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:41.497&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:48.376 (6.879s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:32:48.376&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:32:52.403 (4.027s)&#xA;&gt; Enter [BeforeEach] With specific ingress-class flags - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:392 @ 04/04/23 18:32:52.403&#xA;&lt; Exit [BeforeEach] With specific ingress-class flags - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:392 @ 04/04/23 18:33:00.451 (8.048s)&#xA;&gt; Enter [It] should ignore Ingress with no class and accept the correctly configured Ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:413 @ 04/04/23 18:33:00.451&#xA;&lt; Exit [It] should ignore Ingress with no class and accept the correctly configured Ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:413 @ 04/04/23 18:33:24.697 (24.246s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:24.697&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:24.873 (176ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to canary if canary weight is 100" classname="nginx-ingress-controller e2e suite" status="passed" time="34.835880563">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:24.873&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:32.238 (7.364s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:33:32.238&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:33:42.291 (10.053s)&#xA;&gt; Enter [It] should route requests only to canary if canary weight is 100 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:743 @ 04/04/23 18:33:42.291&#xA;&lt; Exit [It] should route requests only to canary if canary weight is 100 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:743 @ 04/04/23 18:33:59.526 (17.235s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:59.526&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:59.709 (183ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] plugins should exist a x-hello-world header" classname="nginx-ingress-controller e2e suite" status="passed" time="28.296985312">
-              <system-err>&gt; Enter [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:59.71&#xA;&lt; Exit [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:06.602 (6.893s)&#xA;&gt; Enter [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:31 @ 04/04/23 18:34:06.602&#xA;&lt; Exit [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:31 @ 04/04/23 18:34:10.627 (4.025s)&#xA;&gt; Enter [It] should exist a x-hello-world header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:35 @ 04/04/23 18:34:10.627&#xA;&lt; Exit [It] should exist a x-hello-world header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:35 @ 04/04/23 18:34:27.807 (17.179s)&#xA;&gt; Enter [AfterEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:27.807&#xA;&lt; Exit [AfterEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:28.007 (200ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured falls back to using default certificate when secret gets deleted without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="42.494257699">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:28.007&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:35.896 (7.889s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:34:35.896&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:34:39.916 (4.02s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:34:39.916&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:34:57.039&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:35:05.187&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:35:05.197 (25.281s)&#xA;&gt; Enter [It] falls back to using default certificate when secret gets deleted without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:185 @ 04/04/23 18:35:05.197&#xA;STEP: serving the default certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:204 @ 04/04/23 18:35:10.227&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:214 @ 04/04/23 18:35:10.293&#xA;&lt; Exit [It] falls back to using default certificate when secret gets deleted without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:185 @ 04/04/23 18:35:10.293 (5.095s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:10.293&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:10.501 (209ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user retains cookie by default" classname="nginx-ingress-controller e2e suite" status="passed" time="32.330381109">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:10.502&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:17.387 (6.885s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:35:17.387&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:35:21.413 (4.026s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:35:21.413&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:35:42.607 (21.195s)&#xA;&gt; Enter [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:411 @ 04/04/23 18:35:42.607&#xA;&lt; Exit [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:411 @ 04/04/23 18:35:42.616 (9ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:42.616&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:42.832 (216ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - FastCGI should use fastcgi_pass in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="22.329056924">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:42.832&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:49.737 (6.905s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:35:49.737&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:35:54.76 (5.023s)&#xA;&gt; Enter [It] should use fastcgi_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:37 @ 04/04/23 18:35:54.76&#xA;&lt; Exit [It] should use fastcgi_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:37 @ 04/04/23 18:36:04.978 (10.218s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:04.978&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:05.161 (183ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured picks up the updated certificate without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="48.818003036">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:05.162&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:13.068 (7.906s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:36:13.068&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:36:17.096 (4.027s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:36:17.096&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:36:34.288&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:36:42.473&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:36:42.5 (25.405s)&#xA;&gt; Enter [It] picks up the updated certificate without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:149 @ 04/04/23 18:36:42.5&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:163 @ 04/04/23 18:36:47.607&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:169 @ 04/04/23 18:36:50.731&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:180 @ 04/04/23 18:36:53.763&#xA;&lt; Exit [It] picks up the updated certificate without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:149 @ 04/04/23 18:36:53.763 (11.263s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:53.763&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:53.98 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format default escape" classname="nginx-ingress-controller e2e suite" status="passed" time="33.273225638">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:53.981&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:00.852 (6.872s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:37:00.852&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:37:13.899 (13.046s)&#xA;&gt; Enter [It] log-format default escape - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:105 @ 04/04/23 18:37:13.899&#xA;&lt; Exit [It] log-format default escape - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:105 @ 04/04/23 18:37:27.067 (13.169s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:27.067&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:27.254 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] brotli should only compress responses that meet the `brotli-min-length` condition" classname="nginx-ingress-controller e2e suite" status="passed" time="43.280934967">
-              <system-err>&gt; Enter [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:27.254&#xA;&lt; Exit [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:35.134 (7.88s)&#xA;&gt; Enter [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:35 @ 04/04/23 18:37:35.134&#xA;&lt; Exit [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:35 @ 04/04/23 18:37:39.153 (4.019s)&#xA;&gt; Enter [It] should only compress responses that meet the `brotli-min-length` condition - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:39 @ 04/04/23 18:37:39.153&#xA;&lt; Exit [It] should only compress responses that meet the `brotli-min-length` condition - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:39 @ 04/04/23 18:38:10.344 (31.191s)&#xA;&gt; Enter [AfterEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:10.344&#xA;&lt; Exit [AfterEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:10.535 (191ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-http-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="28.299680714">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:10.535&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:17.414 (6.879s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:38:17.414&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:38:21.437 (4.023s)&#xA;&gt; Enter [It] disable-http-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:53 @ 04/04/23 18:38:21.437&#xA;&lt; Exit [It] disable-http-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:53 @ 04/04/23 18:38:38.614 (17.177s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:38.614&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:38.835 (221ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] enable-access-log enable-rewrite-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="21.343128764">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:38.836&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:45.698 (6.862s)&#xA;&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 04/04/23 18:38:45.698&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 04/04/23 18:38:49.734 (4.036s)&#xA;&gt; Enter [It] set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:34 @ 04/04/23 18:38:49.734&#xA;&lt; Exit [It] set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:34 @ 04/04/23 18:38:59.959 (10.225s)&#xA;&gt; Enter [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:59.959&#xA;&lt; Exit [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:00.179 (220ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Geoip2 should only allow requests from specific countries" classname="nginx-ingress-controller e2e suite" status="skipped" time="12.683479458">
-              <skipped message="skipped - GeoIP test are temporarily disabled"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:00.179&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:08.619 (8.44s)&#xA;&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 04/04/23 18:39:08.619&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 04/04/23 18:39:12.644 (4.025s)&#xA;&gt; Enter [It] should only allow requests from specific countries - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:70 @ 04/04/23 18:39:12.644&#xA;[SKIPPED] GeoIP test are temporarily disabled&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:71 @ 04/04/23 18:39:12.645&#xA;&lt; Exit [It] should only allow requests from specific countries - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:70 @ 04/04/23 18:39:12.645 (1ms)&#xA;&gt; Enter [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:12.645&#xA;&lt; Exit [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:12.862 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting includeSubDomains parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="30.581404926">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:12.863&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:19.76 (6.897s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:39:19.76&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:39:23.829 (4.069s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:39:23.829&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:39:33.03 (9.2s)&#xA;&gt; Enter [It] setting includeSubDomains parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:127 @ 04/04/23 18:39:33.03&#xA;&lt; Exit [It] setting includeSubDomains parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:127 @ 04/04/23 18:39:43.259 (10.229s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:43.259&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:43.444 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should add auth headers when global-auth-response-headers is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="55.890075182">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:43.445&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:50.328 (6.883s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:39:50.328&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:39:58.361 (8.034s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:39:58.361&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:39:58.361&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:40:08.534&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:40:18.725&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:40:28.928 (30.567s)&#xA;&gt; Enter [It] should add auth headers when global-auth-response-headers is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:223 @ 04/04/23 18:40:28.928&#xA;STEP: Adding a global-auth-response-headers to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:228 @ 04/04/23 18:40:28.928&#xA;&lt; Exit [It] should add auth headers when global-auth-response-headers is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:223 @ 04/04/23 18:40:39.119 (10.19s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:39.119&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:39.335 (216ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-read-timeout should not set invalid proxy read timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="26.343140938">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:39.335&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:46.231 (6.896s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 04/04/23 18:40:46.231&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 04/04/23 18:40:48.266 (2.035s)&#xA;&gt; Enter [It] should not set invalid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:52 @ 04/04/23 18:40:48.266&#xA;&lt; Exit [It] should not set invalid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:52 @ 04/04/23 18:41:05.463 (17.198s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:05.463&#xA;&lt; Exit [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:05.678 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should not return an error if the Ingress V1 definition is valid with IngressClass annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="43.931079725000004">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:41:24.95&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:41:57.132 (32.182s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:41:57.132&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:42:05.196 (8.064s)&#xA;&gt; Enter [It] should not return an error if the Ingress V1 definition is valid with IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:180 @ 04/04/23 18:42:05.196&#xA;&lt; Exit [It] should not return an error if the Ingress V1 definition is valid with IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:180 @ 04/04/23 18:42:08.558 (3.362s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:42:08.558&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:42:08.881 (323ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should return an error if the Ingress V1 definition contains invalid annotations" classname="nginx-ingress-controller e2e suite" status="passed" time="26.799712273">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:42:08.881&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:42:27.269 (18.388s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:42:27.269&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:42:35.33 (8.061s)&#xA;&gt; Enter [It] should return an error if the Ingress V1 definition contains invalid annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:196 @ 04/04/23 18:42:35.33&#xA;&lt; Exit [It] should return an error if the Ingress V1 definition contains invalid annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:196 @ 04/04/23 18:42:35.482 (152ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:42:35.482&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:42:35.681 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should not allow overlaps of host and paths without canary annotations" classname="nginx-ingress-controller e2e suite" status="passed" time="32.195691651">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:42:35.681&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:42:54.33 (18.649s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:42:54.33&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 21:18:55.121 (10.056s)&#xA;&gt; Enter [It] should not allow overlaps of host and paths without canary annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:70 @ 04/04/23 21:18:55.121&#xA;&lt; Exit [It] should not allow overlaps of host and paths without canary annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:70 @ 04/04/23 21:18:58.366 (3.245s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 21:18:58.367&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 21:18:58.612 (246ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [TopologyHints] topology aware routing should return 200 when service has topology hints" classname="nginx-ingress-controller e2e suite" status="passed" time="21.448473937">
-              <system-err>&gt; Enter [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 21:18:58.613&#xA;&lt; Exit [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 21:19:05.487 (6.875s)&#xA;&gt; Enter [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:39 @ 04/04/23 21:19:05.487&#xA;&lt; Exit [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:39 @ 04/04/23 21:19:09.523 (4.036s)&#xA;&gt; Enter [It] should return 200 when service has topology hints - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:43 @ 04/04/23 21:19:09.523&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:53 @ 04/04/23 21:19:19.701&#xA;&lt; Exit [It] should return 200 when service has topology hints - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:43 @ 04/04/23 21:19:19.839 (10.316s)&#xA;&gt; Enter [AfterEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 21:19:19.839&#xA;&lt; Exit [AfterEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 21:19:20.061 (222ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should block ingress with invalid path" classname="nginx-ingress-controller e2e suite" status="passed" time="42.332684214">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 21:19:20.061&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:17:57.17 (30.737s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:17:57.17&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:18:05.234 (8.065s)&#xA;&gt; Enter [It] should block ingress with invalid path - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:108 @ 04/04/23 22:18:05.234&#xA;&lt; Exit [It] should block ingress with invalid path - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:108 @ 04/04/23 22:18:08.53 (3.296s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:18:08.53&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:18:08.765 (235ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] watch namespace selector With specific watch-namespace-selector flags should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar" classname="nginx-ingress-controller e2e suite" status="passed" time="46.527358158">
-              <system-err>&gt; Enter [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:18:08.766&#xA;&lt; Exit [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:18:22.642 (13.877s)&#xA;&gt; Enter [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:51 @ 04/04/23 22:18:22.642&#xA;&lt; Exit [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:51 @ 04/04/23 22:18:48.76 (26.118s)&#xA;&gt; Enter [It] should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:63 @ 04/04/23 22:18:48.76&#xA;&lt; Exit [It] should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:63 @ 04/04/23 22:18:55.044 (6.284s)&#xA;&gt; Enter [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:18:55.044&#xA;&lt; Exit [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:18:55.29 (246ms)&#xA;&gt; Enter [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:56 @ 04/04/23 22:18:55.29&#xA;&lt; Exit [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:56 @ 04/04/23 22:18:55.293 (3ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should not return an error for an invalid Ingress when it has unknown class" classname="nginx-ingress-controller e2e suite" status="passed" time="26.083527499">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:18:55.294&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:19:12.977 (17.683s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:19:12.977&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:19:21.048 (8.072s)&#xA;&gt; Enter [It] should not return an error for an invalid Ingress when it has unknown class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:207 @ 04/04/23 22:19:21.048&#xA;&lt; Exit [It] should not return an error for an invalid Ingress when it has unknown class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:207 @ 04/04/23 22:19:21.18 (132ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:19:21.18&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:19:21.377 (197ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller reject ingress with global-rate-limit annotations when memcached is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="49.765265582">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:19:21.377&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:19:52.511 (31.134s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:19:52.511&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:20:00.575 (8.064s)&#xA;&gt; Enter [It] reject ingress with global-rate-limit annotations when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:43 @ 04/04/23 22:20:00.575&#xA;STEP: rejects ingress when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:52 @ 04/04/23 22:20:00.575&#xA;STEP: accepts ingress when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:57 @ 04/04/23 22:20:00.587&#xA;&lt; Exit [It] reject ingress with global-rate-limit annotations when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:43 @ 04/04/23 22:20:10.885 (10.31s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:20:10.885&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:20:11.143 (257ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should return an error if there is an invalid value in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="33.755788426">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:20:11.143&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:20:29.584 (18.441s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:20:29.584&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:20:37.66 (8.076s)&#xA;&gt; Enter [It] should return an error if there is an invalid value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:136 @ 04/04/23 22:20:37.66&#xA;&lt; Exit [It] should return an error if there is an invalid value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:136 @ 04/04/23 22:20:44.7 (7.04s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:20:44.7&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:20:44.899 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should return an error if there is a forbidden value in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="34.438337938">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:20:44.899&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:21:03.976 (19.078s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:21:03.976&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:21:12.046 (8.07s)&#xA;&gt; Enter [It] should return an error if there is a forbidden value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:150 @ 04/04/23 22:21:12.046&#xA;&lt; Exit [It] should return an error if there is a forbidden value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:150 @ 04/04/23 22:21:19.079 (7.033s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:21:19.079&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:21:19.337 (258ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should return an error if there is an error validating the ingress definition" classname="nginx-ingress-controller e2e suite" status="passed" time="26.71968897">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:21:19.337&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:21:37.731 (18.394s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:21:37.731&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:21:45.791 (8.06s)&#xA;&gt; Enter [It] should return an error if there is an error validating the ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:125 @ 04/04/23 22:21:45.791&#xA;&lt; Exit [It] should return an error if there is an error validating the ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:125 @ 04/04/23 22:21:45.852 (61ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:21:45.852&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:21:46.057 (205ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should not return an error if the Ingress V1 definition is valid with Ingress Class" classname="nginx-ingress-controller e2e suite" status="passed" time="32.534925031">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:21:46.057&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:22:04.907 (18.85s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:22:04.907&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:22:12.968 (8.061s)&#xA;&gt; Enter [It] should not return an error if the Ingress V1 definition is valid with Ingress Class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:164 @ 04/04/23 22:22:12.968&#xA;&lt; Exit [It] should not return an error if the Ingress V1 definition is valid with Ingress Class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:164 @ 04/04/23 22:22:18.358 (5.39s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:22:18.358&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:22:18.592 (234ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should allow overlaps of host and paths with canary annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="40.047809217">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:22:18.592&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:22:47.015 (28.422s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:22:47.015&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:22:55.073 (8.059s)&#xA;&gt; Enter [It] should allow overlaps of host and paths with canary annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:87 @ 04/04/23 22:22:55.073&#xA;&lt; Exit [It] should allow overlaps of host and paths with canary annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:87 @ 04/04/23 22:22:58.439 (3.366s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:22:58.439&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:22:58.64 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured supports requests with domain with trailing dot" classname="nginx-ingress-controller e2e suite" status="passed" time="45.156808474">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.251&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:26.76 (7.509s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:04:26.76&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:04:38.808 (12.048s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:04:38.808&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:04:55.931&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:05:04.12&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:05:04.15 (25.342s)&#xA;&gt; Enter [It] supports requests with domain with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:145 @ 04/04/23 18:05:04.15&#xA;&lt; Exit [It] supports requests with domain with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:145 @ 04/04/23 18:05:04.174 (24ms)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:04.174&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:04.407 (234ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] preserve-trailing-slash should allow preservation of trailing slashes" classname="nginx-ingress-controller e2e suite" status="passed" time="18.218254728">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:04.408&#xA;&lt; Exit [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:11.385 (6.978s)&#xA;&gt; Enter [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:30 @ 04/04/23 18:05:11.385&#xA;&lt; Exit [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:30 @ 04/04/23 18:05:15.42 (4.034s)&#xA;&gt; Enter [It] should allow preservation of trailing slashes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:34 @ 04/04/23 18:05:15.42&#xA;&lt; Exit [It] should allow preservation of trailing slashes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:34 @ 04/04/23 18:05:22.428 (7.008s)&#xA;&gt; Enter [AfterEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:22.428&#xA;&lt; Exit [AfterEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:22.626 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set valid proxy timeouts" classname="nginx-ingress-controller e2e suite" status="passed" time="21.290348562">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:22.626&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:29.568 (6.942s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:05:29.568&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:05:33.606 (4.037s)&#xA;&gt; Enter [It] should set valid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:115 @ 04/04/23 18:05:33.606&#xA;&lt; Exit [It] should set valid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:115 @ 04/04/23 18:05:43.732 (10.127s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:43.732&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:43.917 (184ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Dynamic $proxy_host should exist a proxy_host using the upstream-vhost annotation value" classname="nginx-ingress-controller e2e suite" status="passed" time="22.27109412">
-              <system-err>&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:43.917&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:51.802 (7.885s)&#xA;&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 04/04/23 18:05:51.802&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 04/04/23 18:05:55.831 (4.029s)&#xA;&gt; Enter [It] should exist a proxy_host using the upstream-vhost annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:57 @ 04/04/23 18:05:55.831&#xA;&lt; Exit [It] should exist a proxy_host using the upstream-vhost annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:57 @ 04/04/23 18:06:05.978 (10.147s)&#xA;&gt; Enter [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:05.978&#xA;&lt; Exit [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:06.188 (210ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] server-tokens should not exists Server header in the response" classname="nginx-ingress-controller e2e suite" status="passed" time="29.448501298">
-              <system-err>&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:06.189&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:14.133 (7.945s)&#xA;&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 04/04/23 18:06:14.133&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 04/04/23 18:06:18.165 (4.031s)&#xA;&gt; Enter [It] should not exists Server header in the response - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:38 @ 04/04/23 18:06:18.165&#xA;&lt; Exit [It] should not exists Server header in the response - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:38 @ 04/04/23 18:06:35.378 (17.213s)&#xA;&gt; Enter [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:35.378&#xA;&lt; Exit [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:35.637 (259ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Configmap - limit-rate Check limit-rate config" classname="nginx-ingress-controller e2e suite" status="passed" time="41.582520724">
-              <system-err>&gt; Enter [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:35.637&#xA;&lt; Exit [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:42.521 (6.884s)&#xA;&gt; Enter [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:32 @ 04/04/23 18:06:42.521&#xA;&lt; Exit [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:32 @ 04/04/23 18:06:46.54 (4.019s)&#xA;&gt; Enter [It] Check limit-rate config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:36 @ 04/04/23 18:06:46.54&#xA;&lt; Exit [It] Check limit-rate config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:36 @ 04/04/23 18:07:17.039 (30.499s)&#xA;&gt; Enter [AfterEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:17.039&#xA;&lt; Exit [AfterEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:17.22 (180ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend" classname="nginx-ingress-controller e2e suite" status="passed" time="19.412775362">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:17.22&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:24.225 (7.005s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:07:24.225&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:07:26.256 (2.031s)&#xA;&gt; Enter [It] does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:121 @ 04/04/23 18:07:26.256&#xA;&lt; Exit [It] does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:121 @ 04/04/23 18:07:36.45 (10.194s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:36.45&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:36.633 (183ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should response with a 200 status from the mainline upstream when requests are made to the mainline ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="32.429318493">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:36.633&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:43.537 (6.903s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:43.537&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:51.596 (8.059s)&#xA;&gt; Enter [It] should response with a 200 status from the mainline upstream when requests are made to the mainline ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:48 @ 04/04/23 18:07:51.596&#xA;&lt; Exit [It] should response with a 200 status from the mainline upstream when requests are made to the mainline ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:48 @ 04/04/23 18:08:08.813 (17.217s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:08.813&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:09.063 (249ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should still return status code 200 after auth backend is deleted using cache" classname="nginx-ingress-controller e2e suite" status="passed" time="63.851336918">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:09.063&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:16.959 (7.896s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:08:16.959&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:08:25.017 (8.058s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:08:25.017&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:08:25.017&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:08:35.191&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:08:45.372&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:08:55.507 (30.491s)&#xA;&gt; Enter [It] should still return status code 200 after auth backend is deleted using cache - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:155 @ 04/04/23 18:08:55.507&#xA;STEP: Adding a global-auth-cache-key to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:163 @ 04/04/23 18:08:55.507&#xA;&lt; Exit [It] should still return status code 200 after auth backend is deleted using cache - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:155 @ 04/04/23 18:09:12.69 (17.183s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:12.69&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:12.914 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] DeepInspection should drop whole ingress if one path matches invalid regex" classname="nginx-ingress-controller e2e suite" status="passed" time="28.383842502">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:12.915&#xA;&lt; Exit [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:19.799 (6.884s)&#xA;&gt; Enter [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:30 @ 04/04/23 18:09:19.799&#xA;&lt; Exit [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:30 @ 04/04/23 18:09:23.825 (4.026s)&#xA;&gt; Enter [It] should drop whole ingress if one path matches invalid regex - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:34 @ 04/04/23 18:09:23.825&#xA;&lt; Exit [It] should drop whole ingress if one path matches invalid regex - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:34 @ 04/04/23 18:09:41.065 (17.24s)&#xA;&gt; Enter [AfterEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:41.065&#xA;&lt; Exit [AfterEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:41.299 (233ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Lua] lua-shared-dicts configures lua shared dicts" classname="nginx-ingress-controller e2e suite" status="passed" time="20.303048947">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:41.299&#xA;&lt; Exit [BeforeEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:49.196 (7.896s)&#xA;&gt; Enter [It] configures lua shared dicts - /go/src/k8s.io/ingress-nginx/test/e2e/settings/lua_shared_dicts.go:29 @ 04/04/23 18:09:49.196&#xA;&lt; Exit [It] configures lua shared dicts - /go/src/k8s.io/ingress-nginx/test/e2e/settings/lua_shared_dicts.go:29 @ 04/04/23 18:10:01.416 (12.22s)&#xA;&gt; Enter [AfterEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:01.416&#xA;&lt; Exit [AfterEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:01.602 (187ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should use correct longest path match" classname="nginx-ingress-controller e2e suite" status="passed" time="31.437264514">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:01.603&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:08.48 (6.877s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:10:08.48&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:10:12.502 (4.022s)&#xA;&gt; Enter [It] should use correct longest path match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:66 @ 04/04/23 18:10:12.502&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:69 @ 04/04/23 18:10:12.502&#xA;STEP: making a request to the non-rewritten location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:78 @ 04/04/23 18:10:22.752&#xA;STEP: creating an ingress definition with the rewrite-target annotation set on the &#34;/&#34; location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:88 @ 04/04/23 18:10:22.759&#xA;STEP: making a second request to the non-rewritten location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:102 @ 04/04/23 18:10:32.852&#xA;&lt; Exit [It] should use correct longest path match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:66 @ 04/04/23 18:10:32.86 (20.358s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:32.86&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:33.04 (180ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting max-age parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="33.487300099">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:33.04&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:40.925 (7.885s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:10:40.925&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:10:44.945 (4.02s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:10:44.945&#xA;Apr  4 18:10:54.109: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:10:56.109 (11.164s)&#xA;&gt; Enter [It] setting max-age parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:111 @ 04/04/23 18:10:56.109&#xA;&lt; Exit [It] setting max-age parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:111 @ 04/04/23 18:11:06.315 (10.206s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:06.315&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:06.527 (212ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="50.397964041">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:06.528&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:13.431 (6.904s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:11:13.431&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:11:21.479 (8.048s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:11:21.479&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:11:49.732 (28.253s)&#xA;&gt; Enter [It] user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:348 @ 04/04/23 18:11:49.732&#xA;&lt; Exit [It] user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:348 @ 04/04/23 18:11:56.743 (7.011s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:56.743&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:56.926 (183ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user retains cookie by default" classname="nginx-ingress-controller e2e suite" status="passed" time="43.408433493">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:56.926&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:03.815 (6.889s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:12:03.815&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:12:11.862 (8.047s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:12:11.862&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:12:40.103 (28.241s)&#xA;&gt; Enter [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:326 @ 04/04/23 18:12:40.103&#xA;&lt; Exit [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:326 @ 04/04/23 18:12:40.112 (9ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:40.112&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:40.334 (222ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - portless origin with wildcard origin" classname="nginx-ingress-controller e2e suite" status="passed" time="18.100951563">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:40.335&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:47.184 (6.849s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:12:47.184&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:12:51.214 (4.031s)&#xA;&gt; Enter [It] should not allow - portless origin with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:515 @ 04/04/23 18:12:51.214&#xA;&lt; Exit [It] should not allow - portless origin with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:515 @ 04/04/23 18:12:58.232 (7.018s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:58.232&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:58.436 (203ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 200 when authentication is configured with a map and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="23.202917116">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:58.436&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:05.332 (6.896s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:13:05.332&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:13:09.361 (4.029s)&#xA;&gt; Enter [It] should return status code 200 when authentication is configured with a map and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:199 @ 04/04/23 18:13:09.361&#xA;&lt; Exit [It] should return status code 200 when authentication is configured with a map and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:199 @ 04/04/23 18:13:21.468 (12.107s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:21.468&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:21.639 (171ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should pass URL-encoded certificate to upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="25.893054261">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:21.639&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:29.514 (7.875s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:13:29.514&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:13:33.537 (4.023s)&#xA;&gt; Enter [It] should pass URL-encoded certificate to upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:161 @ 04/04/23 18:13:33.537&#xA;&lt; Exit [It] should pass URL-encoded certificate to upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:161 @ 04/04/23 18:13:47.331 (13.794s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:47.331&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:47.532 (202ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] custom service uses custom default backend that returns 200 as status code" classname="nginx-ingress-controller e2e suite" status="passed" time="23.264944049">
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:47.533&#xA;&lt; Exit [BeforeEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:54.43 (6.897s)&#xA;&gt; Enter [It] uses custom default backend that returns 200 as status code - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/custom_default_backend.go:36 @ 04/04/23 18:13:54.43&#xA;&lt; Exit [It] uses custom default backend that returns 200 as status code - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/custom_default_backend.go:36 @ 04/04/23 18:14:10.603 (16.173s)&#xA;&gt; Enter [AfterEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:10.603&#xA;&lt; Exit [AfterEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:10.797 (195ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] whitelist-source-range should set valid ip whitelist range" classname="nginx-ingress-controller e2e suite" status="passed" time="21.327163771">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:10.798&#xA;&lt; Exit [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:17.742 (6.944s)&#xA;&gt; Enter [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:30 @ 04/04/23 18:14:17.742&#xA;&lt; Exit [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:30 @ 04/04/23 18:14:21.766 (4.024s)&#xA;&gt; Enter [It] should set valid ip whitelist range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:34 @ 04/04/23 18:14:21.766&#xA;&lt; Exit [It] should set valid ip whitelist range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:34 @ 04/04/23 18:14:31.914 (10.148s)&#xA;&gt; Enter [AfterEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:31.914&#xA;&lt; Exit [AfterEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:32.125 (211ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName using a port name" classname="nginx-ingress-controller e2e suite" status="passed" time="18.535847693">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:32.125&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:40.045 (7.92s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName using a port name - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:184 @ 04/04/23 18:14:40.045&#xA;&lt; Exit [It] should return 200 for service type=ExternalName using a port name - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:184 @ 04/04/23 18:14:50.345 (10.299s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:50.345&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:50.661 (317ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is not set" classname="nginx-ingress-controller e2e suite" status="passed" time="48.861086206">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:50.662&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:57.86 (7.198s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:14:57.86&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:15:01.901 (4.041s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:15:01.901&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:15:16.075 (14.174s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:552 @ 04/04/23 18:15:16.075&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:552 @ 04/04/23 18:15:39.289 (23.214s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:39.289&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:39.523 (234ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 401 when accessing &#39;/&#39; unauthentication" classname="nginx-ingress-controller e2e suite" status="passed" time="29.175448236">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:39.523&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:46.413 (6.89s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:15:46.413&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:16:05.358 (18.945s)&#xA;&gt; Enter [It] should return status code 401 when accessing &#39;/&#39; unauthentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:54 @ 04/04/23 18:16:05.358&#xA;&lt; Exit [It] should return status code 401 when accessing &#39;/&#39; unauthentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:54 @ 04/04/23 18:16:08.518 (3.16s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:08.518&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:08.699 (180ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-proxy-protocol should enable PROXY Protocol for HTTPS" classname="nginx-ingress-controller e2e suite" status="passed" time="110.571232421">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:08.699&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:15.641 (6.942s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:16:15.641&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:16:26.725 (11.084s)&#xA;&gt; Enter [It] should enable PROXY Protocol for HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:112 @ 04/04/23 18:16:26.725&#xA;&lt; Exit [It] should enable PROXY Protocol for HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:112 @ 04/04/23 18:17:59.041 (1m32.316s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:59.041&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:59.27 (229ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-catch-all should ignore catch all Ingress with backend" classname="nginx-ingress-controller e2e suite" status="passed" time="40.559995342">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:59.27&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:07.156 (7.885s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:18:07.156&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:18:19.212 (12.057s)&#xA;&gt; Enter [It] should ignore catch all Ingress with backend - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:50 @ 04/04/23 18:18:19.212&#xA;&lt; Exit [It] should ignore catch all Ingress with backend - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:50 @ 04/04/23 18:18:39.618 (20.406s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:39.618&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:39.83 (212ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow headers for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="21.260866655">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:39.831&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:46.716 (6.885s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:46.716&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:50.744 (4.028s)&#xA;&gt; Enter [It] should allow headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:137 @ 04/04/23 18:18:50.744&#xA;&lt; Exit [It] should allow headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:137 @ 04/04/23 18:19:00.902 (10.159s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:00.902&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:01.091 (189ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should return 404 status for requests to the canary if no matching ingress is found" classname="nginx-ingress-controller e2e suite" status="passed" time="23.296431448">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:01.092&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:09.007 (7.915s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:19:09.007&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:19:17.081 (8.074s)&#xA;&gt; Enter [It] should return 404 status for requests to the canary if no matching ingress is found - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:80 @ 04/04/23 18:19:17.081&#xA;&lt; Exit [It] should return 404 status for requests to the canary if no matching ingress is found - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:80 @ 04/04/23 18:19:24.105 (7.024s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:24.105&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:24.388 (283ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes (down scaling of replicas)" classname="nginx-ingress-controller e2e suite" status="passed" time="176.113366498">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:24.389&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:43.748 (2m19.359s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:21:43.748&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:21:57.954 (14.206s)&#xA;&gt; Enter [It] handles endpoints only changes (down scaling of replicas) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:87 @ 04/04/23 18:21:57.954&#xA;&lt; Exit [It] handles endpoints only changes (down scaling of replicas) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:87 @ 04/04/23 18:22:20.304 (22.351s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:20.304&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:20.502 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should not set proxy client-max-body-size to incorrect value" classname="nginx-ingress-controller e2e suite" status="passed" time="21.245320565">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:20.503&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:27.369 (6.866s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:22:27.369&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:22:31.399 (4.03s)&#xA;&gt; Enter [It] should not set proxy client-max-body-size to incorrect value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:100 @ 04/04/23 18:22:31.399&#xA;&lt; Exit [It] should not set proxy client-max-body-size to incorrect value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:100 @ 04/04/23 18:22:41.545 (10.146s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:41.545&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:41.748 (203ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] reuse-port reuse port should be disabled" classname="nginx-ingress-controller e2e suite" status="passed" time="155.972323059">
-              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:41.748&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:58.304 (2m16.556s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:24:58.304&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:25:07.351 (9.047s)&#xA;&gt; Enter [It] reuse port should be disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:44 @ 04/04/23 18:25:07.351&#xA;&lt; Exit [It] reuse port should be disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:44 @ 04/04/23 18:25:17.463 (10.112s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:17.463&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:17.721 (257ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="152.692429605">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:17.721&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:36 (2m18.279s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:27:36&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:27:40.022 (4.023s)&#xA;&gt; Enter [It] should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:266 @ 04/04/23 18:27:40.022&#xA;&lt; Exit [It] should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:266 @ 04/04/23 18:27:50.223 (10.201s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:50.224&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:50.413 (190ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a TLS enabled ingress when external authentication is configured should set the X-Forwarded-Port header to 443" classname="nginx-ingress-controller e2e suite" status="passed" time="39.615463078">
-              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:50.414&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:04.312 (13.898s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:28:04.312&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:28:11.43 (7.118s)&#xA;&gt; Enter [It] should set the X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:100 @ 04/04/23 18:28:11.43&#xA;Apr  4 18:28:24.664: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not forwarded-headers&#xA;&lt; Exit [It] should set the X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:100 @ 04/04/23 18:28:29.799 (18.368s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:29.799&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:30.029 (230ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] configuration-snippet set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34;" classname="nginx-ingress-controller e2e suite" status="passed" time="21.243303661">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:30.03&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:36.888 (6.859s)&#xA;&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 04/04/23 18:28:36.888&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 04/04/23 18:28:40.919 (4.03s)&#xA;&gt; Enter [It] set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:35 @ 04/04/23 18:28:40.919&#xA;&lt; Exit [It] set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:35 @ 04/04/23 18:28:51.095 (10.176s)&#xA;&gt; Enter [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:51.095&#xA;&lt; Exit [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:51.273 (178ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if the canary ingress is modified" classname="nginx-ingress-controller e2e suite" status="passed" time="41.082860994">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:51.273&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:59.672 (8.399s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:28:59.672&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:29:07.713 (8.041s)&#xA;&gt; Enter [It] should route requests to the correct upstream if the canary ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:307 @ 04/04/23 18:29:07.713&#xA;STEP: routing requests destined for the mainline ingress to the mainline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:351 @ 04/04/23 18:29:32.166&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:360 @ 04/04/23 18:29:32.169&#xA;&lt; Exit [It] should route requests to the correct upstream if the canary ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:307 @ 04/04/23 18:29:32.172 (24.459s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:32.172&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:32.356 (184ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is negative" classname="nginx-ingress-controller e2e suite" status="passed" time="48.516222384">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:32.356&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:39.249 (6.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:29:39.249&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:29:43.271 (4.022s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:43.271&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:57.423 (14.152s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is negative - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:590 @ 04/04/23 18:29:57.423&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is negative - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:590 @ 04/04/23 18:30:20.684 (23.26s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:20.684&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:20.873 (189ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-sync-events should create sync events" classname="nginx-ingress-controller e2e suite" status="passed" time="28.393909326">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:20.873&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:27.823 (6.95s)&#xA;&gt; Enter [It] should create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:53 @ 04/04/23 18:30:27.823&#xA;&lt; Exit [It] should create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:53 @ 04/04/23 18:30:49.071 (21.248s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:49.071&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:49.267 (196ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1K" classname="nginx-ingress-controller e2e suite" status="passed" time="21.295000977">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:49.267&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:56.179 (6.912s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:30:56.179&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:31:00.207 (4.028s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1K - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:57 @ 04/04/23 18:31:00.207&#xA;&lt; Exit [It] should set client_body_buffer_size to 1K - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:57 @ 04/04/23 18:31:10.334 (10.127s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:10.334&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:10.562 (228ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured keeps processing new ingresses even if one of the existing ingresses is misconfigured" classname="nginx-ingress-controller e2e suite" status="passed" time="36.595408248">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:10.562&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:17.468 (6.905s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:17.468&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:21.488 (4.02s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:31:21.488&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:31:35.745 (14.257s)&#xA;&gt; Enter [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:505 @ 04/04/23 18:31:35.745&#xA;&lt; Exit [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:505 @ 04/04/23 18:31:46.949 (11.204s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:46.949&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:47.158 (209ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow origin for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="19.176493735">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:47.158&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:55.054 (7.895s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:31:55.054&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:31:59.086 (4.032s)&#xA;&gt; Enter [It] should allow origin for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:110 @ 04/04/23 18:31:59.086&#xA;&lt; Exit [It] should allow origin for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:110 @ 04/04/23 18:32:06.117 (7.031s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:06.117&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:06.335 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 200 when accessing &#39;/&#39;  authentication" classname="nginx-ingress-controller e2e suite" status="passed" time="27.949951743">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:06.335&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:13.216 (6.881s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:32:13.216&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:32:30.126 (16.91s)&#xA;&gt; Enter [It] should return status code 200 when accessing &#39;/&#39;  authentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:68 @ 04/04/23 18:32:30.126&#xA;&lt; Exit [It] should return status code 200 when accessing &#39;/&#39;  authentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:68 @ 04/04/23 18:32:34.111 (3.985s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:34.111&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:34.285 (174ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - single origin without port and origin with required port" classname="nginx-ingress-controller e2e suite" status="passed" time="19.142361956">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:34.285&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:42.164 (7.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:32:42.164&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:32:46.19 (4.026s)&#xA;&gt; Enter [It] should not allow - single origin without port and origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:405 @ 04/04/23 18:32:46.19&#xA;&lt; Exit [It] should not allow - single origin without port and origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:405 @ 04/04/23 18:32:53.221 (7.031s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:53.221&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:53.428 (207ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should set gzip_min_length to 100" classname="nginx-ingress-controller e2e suite" status="passed" time="24.269620195999998">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:53.428&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:00.295 (6.867s)&#xA;&gt; Enter [It] should set gzip_min_length to 100 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:78 @ 04/04/23 18:33:00.295&#xA;&lt; Exit [It] should set gzip_min_length to 100 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:78 @ 04/04/23 18:33:17.519 (17.224s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:17.519&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:17.698 (178ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] global-options should have worker_rlimit_nofile option and be independent on amount of worker processes" classname="nginx-ingress-controller e2e suite" status="passed" time="17.207554955">
-              <system-err>&gt; Enter [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:17.698&#xA;&lt; Exit [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:24.578 (6.881s)&#xA;&gt; Enter [It] should have worker_rlimit_nofile option and be independent on amount of worker processes - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:38 @ 04/04/23 18:33:24.578&#xA;&lt; Exit [It] should have worker_rlimit_nofile option and be independent on amount of worker processes - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:38 @ 04/04/23 18:33:34.73 (10.152s)&#xA;&gt; Enter [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:34.73&#xA;&lt; Exit [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:34.905 (175ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keepalive time to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="31.352569677">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:34.906&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:44.808 (9.902s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:33:44.808&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:33:55.842 (11.034s)&#xA;&gt; Enter [It] should set keepalive time to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:77 @ 04/04/23 18:33:55.842&#xA;&lt; Exit [It] should set keepalive time to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:77 @ 04/04/23 18:34:05.994 (10.152s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:05.994&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:06.258 (264ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Memory Leak] Dynamic Certificates should not leak memory from ingress SSL certificates or configuration updates" classname="nginx-ingress-controller e2e suite" status="skipped" time="0">
-              <skipped message="skipped"></skipped>
-          </testcase>
-          <testcase name="[It] [Shutdown] ingress controller should shutdown in less than 60 secons without pending connections" classname="nginx-ingress-controller e2e suite" status="passed" time="30.340601041">
-              <system-err>&gt; Enter [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:06.259&#xA;&lt; Exit [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:14.168 (7.909s)&#xA;&gt; Enter [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:35 @ 04/04/23 18:34:14.168&#xA;&lt; Exit [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:35 @ 04/04/23 18:34:25.207 (11.04s)&#xA;&gt; Enter [It] should shutdown in less than 60 secons without pending connections - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:40 @ 04/04/23 18:34:25.207&#xA;&lt; Exit [It] should shutdown in less than 60 secons without pending connections - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:40 @ 04/04/23 18:34:36.4 (11.193s)&#xA;&gt; Enter [AfterEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:36.4&#xA;&lt; Exit [AfterEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:36.599 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param should return status code 200 when signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="26.351221493">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:36.6&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:44.48 (7.88s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:34:44.48&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:34:48.503 (4.024s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:34:48.503&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:35:02.728 (14.224s)&#xA;&gt; Enter [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:678 @ 04/04/23 18:35:02.728&#xA;&lt; Exit [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:678 @ 04/04/23 18:35:02.742 (15ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:02.742&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:02.951 (209ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should sync ingress on external name service addition/deletion" classname="nginx-ingress-controller e2e suite" status="passed" time="27.600345816">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:02.951&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:09.829 (6.877s)&#xA;&gt; Enter [It] should sync ingress on external name service addition/deletion - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:311 @ 04/04/23 18:35:09.829&#xA;&lt; Exit [It] should sync ingress on external name service addition/deletion - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:311 @ 04/04/23 18:35:30.35 (20.521s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:30.35&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:30.552 (202ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] enable-ssl-passthrough With enable-ssl-passthrough enabled should pass unknown traffic to default backend and handle known traffic" classname="nginx-ingress-controller e2e suite" status="passed" time="47.050402902">
-              <system-err>&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:30.552&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:37.481 (6.929s)&#xA;&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 04/04/23 18:35:37.481&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 04/04/23 18:35:48.587 (11.106s)&#xA;&gt; Enter [It] should pass unknown traffic to default backend and handle known traffic - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:79 @ 04/04/23 18:35:48.587&#xA;&lt; Exit [It] should pass unknown traffic to default backend and handle known traffic - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:79 @ 04/04/23 18:36:17.402 (28.814s)&#xA;&gt; Enter [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:17.402&#xA;&lt; Exit [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:17.602 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should enable the log-format-escape-json" classname="nginx-ingress-controller e2e suite" status="passed" time="28.304476097">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:17.603&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:24.47 (6.867s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:36:24.47&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:36:35.523 (11.052s)&#xA;&gt; Enter [It] should enable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:47 @ 04/04/23 18:36:35.523&#xA;&lt; Exit [It] should enable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:47 @ 04/04/23 18:36:45.69 (10.167s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:45.69&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:45.908 (218ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should 302 redirect to error page instead of 400 when auth-tls-error-page is set" classname="nginx-ingress-controller e2e suite" status="passed" time="25.063507751">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:45.908&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:52.807 (6.899s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:36:52.807&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:36:56.83 (4.024s)&#xA;&gt; Enter [It] should 302 redirect to error page instead of 400 when auth-tls-error-page is set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:114 @ 04/04/23 18:36:56.83&#xA;&lt; Exit [It] should 302 redirect to error page instead of 400 when auth-tls-error-page is set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:114 @ 04/04/23 18:37:10.803 (13.972s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:10.803&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:10.971 (169ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user does not retain cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="32.349310786">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:10.972&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:17.855 (6.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:37:17.855&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:37:21.879 (4.023s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:37:21.879&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:37:43.087 (21.209s)&#xA;&gt; Enter [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:422 @ 04/04/23 18:37:43.087&#xA;&lt; Exit [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:422 @ 04/04/23 18:37:43.095 (8ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:43.095&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:43.321 (225ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* Single canary Ingress should not use canary as a catch-all server" classname="nginx-ingress-controller e2e suite" status="passed" time="32.401910534">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:43.321&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:50.242 (6.92s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:37:50.242&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:37:58.297 (8.055s)&#xA;&gt; Enter [It] should not use canary as a catch-all server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:863 @ 04/04/23 18:37:58.297&#xA;&lt; Exit [It] should not use canary as a catch-all server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:863 @ 04/04/23 18:38:15.503 (17.206s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:15.503&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:15.723 (220ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] should return 404 sending requests when only a default backend is running" classname="nginx-ingress-controller e2e suite" status="passed" time="16.552121031">
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:15.724&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:22.643 (6.92s)&#xA;&gt; Enter [It] should return 404 sending requests when only a default backend is running - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:33 @ 04/04/23 18:38:22.643&#xA;STEP: basic HTTP GET request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.644&#xA;STEP: basic HTTP GET request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.657&#xA;STEP: basic HTTPS GET request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.667&#xA;STEP: basic HTTPS GET request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.695&#xA;STEP: basic HTTP POST request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.708&#xA;STEP: basic HTTP POST request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.712&#xA;STEP: basic HTTPS POST request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:28.052&#xA;STEP: basic HTTPS POST request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:28.468&#xA;STEP: basic HTTP GET request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:28.852&#xA;STEP: basic HTTP GET request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:29.25&#xA;STEP: basic HTTPS GET request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:29.647&#xA;STEP: basic HTTPS GET request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:30.07&#xA;STEP: basic HTTP POST request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:30.469&#xA;STEP: basic HTTP POST request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:30.847&#xA;STEP: basic HTTPS POST request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:31.252&#xA;STEP: basic HTTPS POST request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:31.65&#xA;&lt; Exit [It] should return 404 sending requests when only a default backend is running - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:33 @ 04/04/23 18:38:32.067 (9.424s)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:32.067&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:32.276 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="56.980816149">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:32.276&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:40.184 (7.908s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:38:40.184&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:38:48.25 (8.066s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:38:48.25&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:38:48.25&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:38:58.421&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:39:08.584&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:39:18.813 (30.563s)&#xA;&gt; Enter [It] should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:102 @ 04/04/23 18:39:18.813&#xA;STEP: Adding a no-auth-locations for /bar to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:104 @ 04/04/23 18:39:18.813&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:111 @ 04/04/23 18:39:29.026&#xA;STEP: Sending a request to whitelisted service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:118 @ 04/04/23 18:39:29.042&#xA;&lt; Exit [It] should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:102 @ 04/04/23 18:39:29.049 (10.236s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:29.049&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:29.257 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-alias should return status code 200 for hosts defined in two ingresses, different path with one alias" classname="nginx-ingress-controller e2e suite" status="passed" time="27.220788713">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:29.257&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:37.143 (7.885s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:39:37.143&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:39:39.168 (2.025s)&#xA;&gt; Enter [It] should return status code 200 for hosts defined in two ingresses, different path with one alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:87 @ 04/04/23 18:39:39.168&#xA;&lt; Exit [It] should return status code 200 for hosts defined in two ingresses, different path with one alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:87 @ 04/04/23 18:39:56.292 (17.124s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:56.292&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:56.478 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the keep alive should set keepalive_timeout" classname="nginx-ingress-controller e2e suite" status="passed" time="28.340439622">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:56.478&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:03.36 (6.881s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:40:03.36&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:40:14.407 (11.047s)&#xA;&gt; Enter [It] should set keepalive_timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:40 @ 04/04/23 18:40:14.407&#xA;&lt; Exit [It] should set keepalive_timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:40 @ 04/04/23 18:40:24.598 (10.191s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:24.598&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:24.819 (221ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a plain HTTP ingress should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port" classname="nginx-ingress-controller e2e suite" status="passed" time="32.033196945">
-              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:24.819&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:39.201 (14.382s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:40:39.201&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:40:46.467 (7.266s)&#xA;&gt; Enter [It] should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:48 @ 04/04/23 18:40:46.467&#xA;&lt; Exit [It] should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:48 @ 04/04/23 18:40:56.662 (10.195s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:56.662&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:56.852 (191ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to grpc:// and use grpc_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="30.964751532">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.258&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:27.76 (8.502s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:04:27.76&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:04:39.782 (12.022s)&#xA;&gt; Enter [It] should set backend protocol to grpc:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:64 @ 04/04/23 18:04:39.782&#xA;&lt; Exit [It] should set backend protocol to grpc:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:64 @ 04/04/23 18:04:49.993 (10.211s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:04:49.993&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:04:50.223 (229ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity without using &#39;modsecurity on;&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="29.40122161">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:50.223&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:58.145 (7.922s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:04:58.145&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:05:02.17 (4.025s)&#xA;&gt; Enter [It] should enable modsecurity without using &#39;modsecurity on;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:110 @ 04/04/23 18:05:02.17&#xA;&lt; Exit [It] should enable modsecurity without using &#39;modsecurity on;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:110 @ 04/04/23 18:05:19.394 (17.225s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:19.394&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:19.624 (230ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should create additional upstream block when auth-keepalive is set with HTTP/1.x" classname="nginx-ingress-controller e2e suite" status="passed" time="62.641572065">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:19.625&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:26.544 (6.92s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:05:26.544&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:05:30.589 (4.045s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:05:30.589&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:05:58.841 (28.251s)&#xA;&gt; Enter [It] should create additional upstream block when auth-keepalive is set with HTTP/1.x - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:623 @ 04/04/23 18:05:58.841&#xA;&lt; Exit [It] should create additional upstream block when auth-keepalive is set with HTTP/1.x - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:623 @ 04/04/23 18:06:22.065 (23.224s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:22.065&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:22.266 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] block-* should block User-Agents defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="28.334554031">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:22.267&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:29.196 (6.929s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:06:29.196&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:06:40.24 (11.044s)&#xA;&gt; Enter [It] should block User-Agents defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:55 @ 04/04/23 18:06:40.24&#xA;&lt; Exit [It] should block User-Agents defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:55 @ 04/04/23 18:06:50.425 (10.185s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:50.425&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:50.601 (177ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] x-forwarded-prefix should set the X-Forwarded-Prefix to the annotation value" classname="nginx-ingress-controller e2e suite" status="passed" time="21.281567841">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:50.602&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:57.545 (6.943s)&#xA;&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 04/04/23 18:06:57.545&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 04/04/23 18:07:01.588 (4.043s)&#xA;&gt; Enter [It] should set the X-Forwarded-Prefix to the annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:35 @ 04/04/23 18:07:01.588&#xA;&lt; Exit [It] should set the X-Forwarded-Prefix to the annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:35 @ 04/04/23 18:07:11.685 (10.097s)&#xA;&gt; Enter [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:11.685&#xA;&lt; Exit [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:11.883 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow correct origins - missing subdomain + origin with wildcard origin and correct origin" classname="nginx-ingress-controller e2e suite" status="passed" time="18.188442412">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:11.883&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:18.774 (6.89s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:07:18.774&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:07:22.815 (4.041s)&#xA;&gt; Enter [It] should allow correct origins - missing subdomain + origin with wildcard origin and correct origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:535 @ 04/04/23 18:07:22.815&#xA;&lt; Exit [It] should allow correct origins - missing subdomain + origin with wildcard origin and correct origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:535 @ 04/04/23 18:07:29.864 (7.049s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:29.864&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:30.072 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] mirror-* should set mirror-target to http://localhost/mirror" classname="nginx-ingress-controller e2e suite" status="passed" time="153.373652478">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:30.072&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:48.992 (2m18.92s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:09:48.992&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:09:53.047 (4.055s)&#xA;&gt; Enter [It] should set mirror-target to http://localhost/mirror - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:36 @ 04/04/23 18:09:53.047&#xA;&lt; Exit [It] should set mirror-target to http://localhost/mirror - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:36 @ 04/04/23 18:10:03.229 (10.182s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:03.229&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:03.446 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 200 when no authentication is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="21.374323588">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:03.446&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:10.362 (6.916s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:10:10.362&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:10:14.4 (4.038s)&#xA;&gt; Enter [It] should return status code 200 when no authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:46 @ 04/04/23 18:10:14.4&#xA;&lt; Exit [It] should return status code 200 when no authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:46 @ 04/04/23 18:10:24.616 (10.216s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:24.616&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:24.82 (204ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-proxy-protocol should respect port passed by the PROXY Protocol" classname="nginx-ingress-controller e2e suite" status="passed" time="110.562959663">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:24.821&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:31.7 (6.879s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:10:31.7&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:10:42.759 (11.059s)&#xA;&gt; Enter [It] should respect port passed by the PROXY Protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:46 @ 04/04/23 18:10:42.759&#xA;&lt; Exit [It] should respect port passed by the PROXY Protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:46 @ 04/04/23 18:12:14.993 (1m32.235s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:14.993&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:15.384 (390ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 503 when authentication is configured with an invalid secret" classname="nginx-ingress-controller e2e suite" status="passed" time="19.23986285">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:15.384&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:22.265 (6.881s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:12:22.265&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:12:24.285 (2.02s)&#xA;&gt; Enter [It] should return status code 503 when authentication is configured with an invalid secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:65 @ 04/04/23 18:12:24.285&#xA;&lt; Exit [It] should return status code 503 when authentication is configured with an invalid secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:65 @ 04/04/23 18:12:34.441 (10.156s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:34.441&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:34.624 (183ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Add no tls redirect locations Check no tls redirect locations config" classname="nginx-ingress-controller e2e suite" status="passed" time="27.400615783">
-              <system-err>&gt; Enter [BeforeEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:34.624&#xA;&lt; Exit [BeforeEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:41.556 (6.931s)&#xA;&gt; Enter [It] Check no tls redirect locations config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_tls_redirect_locations.go:31 @ 04/04/23 18:12:41.556&#xA;&lt; Exit [It] Check no tls redirect locations config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_tls_redirect_locations.go:31 @ 04/04/23 18:13:01.842 (20.286s)&#xA;&gt; Enter [AfterEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:01.842&#xA;&lt; Exit [AfterEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:02.025 (183ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - single origin with port and origin without port" classname="nginx-ingress-controller e2e suite" status="passed" time="19.133441454">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:02.025&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:09.923 (7.898s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:13:09.923&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:13:13.962 (4.038s)&#xA;&gt; Enter [It] should not allow - single origin with port and origin without port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:386 @ 04/04/23 18:13:13.962&#xA;&lt; Exit [It] should not allow - single origin with port and origin without port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:386 @ 04/04/23 18:13:20.977 (7.016s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:20.977&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:21.159 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should disable the log-format-escape-json" classname="nginx-ingress-controller e2e suite" status="passed" time="29.267500447">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:21.159&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:29.044 (7.885s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:13:29.044&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:13:40.088 (11.044s)&#xA;&gt; Enter [It] should disable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:55 @ 04/04/23 18:13:40.088&#xA;&lt; Exit [It] should disable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:55 @ 04/04/23 18:13:50.23 (10.141s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:50.23&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:50.426 (197ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should deny login for different servers" classname="nginx-ingress-controller e2e suite" status="passed" time="128.935461321">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:50.427&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:57.36 (6.933s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:13:57.36&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:14:01.385 (4.026s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:14:01.385&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:14:06.428&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:14:16.618&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:14:26.768&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:14:36.897&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:14:52.087 (50.702s)&#xA;&gt; Enter [It] should deny login for different servers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:820 @ 04/04/23 18:14:52.087&#xA;STEP: logging into server thisHost /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:821 @ 04/04/23 18:14:52.087&#xA;STEP: receiving an internal server error without cache on thisHost location /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:833 @ 04/04/23 18:14:59.113&#xA;&lt; Exit [It] should deny login for different servers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:820 @ 04/04/23 18:15:59.128 (1m7.041s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:59.128&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:59.362 (234ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] definition without host should set ingress details variables for ingresses with host without IngressRuleValue, only Backend" classname="nginx-ingress-controller e2e suite" status="passed" time="22.396821642">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:59.363&#xA;&lt; Exit [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:06.334 (6.971s)&#xA;&gt; Enter [It] should set ingress details variables for ingresses with host without IngressRuleValue, only Backend - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:55 @ 04/04/23 18:16:06.334&#xA;&lt; Exit [It] should set ingress details variables for ingresses with host without IngressRuleValue, only Backend - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:55 @ 04/04/23 18:16:20.803 (14.469s)&#xA;&gt; Enter [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:20.803&#xA;&lt; Exit [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:21.76 (957ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] permanent-redirect permanent-redirect-code should respond with a standard redirect code" classname="nginx-ingress-controller e2e suite" status="passed" time="19.639351578">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:21.77&#xA;&lt; Exit [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:31.035 (9.266s)&#xA;&gt; Enter [It] should respond with a standard redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:33 @ 04/04/23 18:16:31.035&#xA;STEP: setting permanent-redirect annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:34 @ 04/04/23 18:16:31.036&#xA;STEP: sending request to redirected URL path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:52 @ 04/04/23 18:16:41.175&#xA;&lt; Exit [It] should respond with a standard redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:33 @ 04/04/23 18:16:41.182 (10.147s)&#xA;&gt; Enter [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:41.182&#xA;&lt; Exit [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:41.409 (227ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-catch-all should allow Ingress with rules" classname="nginx-ingress-controller e2e suite" status="passed" time="159.265969917">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:41.409&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:57.856 (2m16.447s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:18:57.856&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:19:09.919 (12.063s)&#xA;&gt; Enter [It] should allow Ingress with rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:123 @ 04/04/23 18:19:09.919&#xA;&lt; Exit [It] should allow Ingress with rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:123 @ 04/04/23 18:19:20.272 (10.353s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:20.272&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:20.675 (403ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="23.386440713">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:20.677&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:28.892 (8.215s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:19:28.892&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:19:32.924 (4.032s)&#xA;&gt; Enter [It] should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:324 @ 04/04/23 18:19:32.924&#xA;&lt; Exit [It] should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:324 @ 04/04/23 18:19:43.863 (10.939s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:43.863&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:44.064 (200ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should exists opentelemetry directive when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="29.635463259">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:44.064&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:53.434 (9.37s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:19:53.434&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:19:55.451 (2.017s)&#xA;&gt; Enter [It] should exists opentelemetry directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:60 @ 04/04/23 18:19:55.451&#xA;&lt; Exit [It] should exists opentelemetry directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:60 @ 04/04/23 18:20:12.863 (17.412s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:12.863&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:13.699 (836ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:20:13.699&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:20:13.699 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should not set invalid proxy timeouts" classname="nginx-ingress-controller e2e suite" status="passed" time="23.437314841">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:13.7&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:22.723 (9.023s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:20:22.723&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:20:26.762 (4.038s)&#xA;&gt; Enter [It] should not set invalid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:136 @ 04/04/23 18:20:26.762&#xA;&lt; Exit [It] should not set invalid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:136 @ 04/04/23 18:20:36.907 (10.146s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:36.907&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:37.137 (230ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should not exists opentelemetry directive" classname="nginx-ingress-controller e2e suite" status="passed" time="29.375459507">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:37.137&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:45.044 (7.907s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:20:45.044&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:20:49.07 (4.026s)&#xA;&gt; Enter [It] should not exists opentelemetry directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:47 @ 04/04/23 18:20:49.07&#xA;&lt; Exit [It] should not exists opentelemetry directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:47 @ 04/04/23 18:21:06.287 (17.217s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:06.287&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:06.513 (226ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:21:06.513&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:21:06.513 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="20.138129865">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:06.513&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:13.397 (6.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:13.397&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:15.42 (2.023s)&#xA;&gt; Enter [It] should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:144 @ 04/04/23 18:21:15.42&#xA;&lt; Exit [It] should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:144 @ 04/04/23 18:21:26.454 (11.034s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:26.454&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:26.651 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log http-access-log-path &amp; stream-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="17.272214647">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:26.652&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:33.515 (6.863s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:80 @ 04/04/23 18:21:33.515&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:80 @ 04/04/23 18:21:43.707 (10.192s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:43.707&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:43.924 (216ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="18.136904986">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:43.924&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:50.816 (6.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:21:50.816&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:21:54.851 (4.035s)&#xA;&gt; Enter [It] should allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:169 @ 04/04/23 18:21:54.851&#xA;&lt; Exit [It] should allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:169 @ 04/04/23 18:22:01.873 (7.022s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:01.873&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:02.061 (188ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format-escape-json enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="32.345578464">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:02.061&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:09.943 (7.882s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:22:09.943&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:22:20.994 (11.051s)&#xA;&gt; Enter [It] log-format-escape-json enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:82 @ 04/04/23 18:22:20.994&#xA;&lt; Exit [It] log-format-escape-json enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:82 @ 04/04/23 18:22:34.191 (13.197s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:34.191&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:34.407 (216ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] [PathType] mix Exact and Prefix paths should choose the correct location" classname="nginx-ingress-controller e2e suite" status="passed" time="45.509310566">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:34.407&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:41.334 (6.927s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:33 @ 04/04/23 18:22:41.334&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:33 @ 04/04/23 18:22:45.355 (4.021s)&#xA;&gt; Enter [It] should choose the correct location - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:39 @ 04/04/23 18:22:45.355&#xA;STEP: Checking exact request to / - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:63 @ 04/04/23 18:23:02.535&#xA;STEP: Checking prefix request to /bar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:76 @ 04/04/23 18:23:02.543&#xA;STEP: Checking exact request to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:109 @ 04/04/23 18:23:19.72&#xA;STEP: Checking prefix request to /foo/bar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:122 @ 04/04/23 18:23:19.723&#xA;STEP: Checking prefix request to /foobar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:134 @ 04/04/23 18:23:19.724&#xA;&lt; Exit [It] should choose the correct location - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:39 @ 04/04/23 18:23:19.726 (34.371s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:19.726&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:19.917 (190ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1m" classname="nginx-ingress-controller e2e suite" status="passed" time="22.336168959">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:19.917&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:27.858 (7.94s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:23:27.858&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:23:31.884 (4.027s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:101 @ 04/04/23 18:23:31.884&#xA;&lt; Exit [It] should set client_body_buffer_size to 1m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:101 @ 04/04/23 18:23:42.035 (10.15s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:42.035&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:42.253 (218ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-forwarded-headers should not trust X-Forwarded headers when setting is false" classname="nginx-ingress-controller e2e suite" status="passed" time="34.740529941">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:42.254&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:50.152 (7.898s)&#xA;&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 04/04/23 18:23:50.152&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 04/04/23 18:23:59.193 (9.041s)&#xA;&gt; Enter [It] should not trust X-Forwarded headers when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:92 @ 04/04/23 18:23:59.193&#xA;&lt; Exit [It] should not trust X-Forwarded headers when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:92 @ 04/04/23 18:24:16.594 (17.4s)&#xA;&gt; Enter [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:16.594&#xA;&lt; Exit [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:16.994 (401ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests split between mainline and canary if canary weight is 100 and weight total is 200" classname="nginx-ingress-controller e2e suite" status="passed" time="72.078446664">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:16.995&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:25.428 (8.433s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:24:25.428&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:24:33.475 (8.047s)&#xA;&gt; Enter [It] should route requests split between mainline and canary if canary weight is 100 and weight total is 200 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:834 @ 04/04/23 18:24:33.475&#xA;&lt; Exit [It] should route requests split between mainline and canary if canary weight is 100 and weight total is 200 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:834 @ 04/04/23 18:25:28.827 (55.352s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:28.827&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:29.073 (245ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] http2-push-preload enable the http2-push-preload directive" classname="nginx-ingress-controller e2e suite" status="passed" time="21.276652741">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:29.073&#xA;&lt; Exit [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:35.955 (6.882s)&#xA;&gt; Enter [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:30 @ 04/04/23 18:25:35.955&#xA;&lt; Exit [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:30 @ 04/04/23 18:25:39.976 (4.021s)&#xA;&gt; Enter [It] enable the http2-push-preload directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:34 @ 04/04/23 18:25:39.976&#xA;&lt; Exit [It] enable the http2-push-preload directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:34 @ 04/04/23 18:25:50.116 (10.14s)&#xA;&gt; Enter [AfterEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:50.116&#xA;&lt; Exit [AfterEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:50.35 (233ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-real-ip trusts X-Forwarded-For header only when setting is true" classname="nginx-ingress-controller e2e suite" status="passed" time="35.407310527">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:50.35&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:57.262 (6.911s)&#xA;&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 04/04/23 18:25:57.262&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 04/04/23 18:26:08.325 (11.063s)&#xA;&gt; Enter [It] trusts X-Forwarded-For header only when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:40 @ 04/04/23 18:26:08.325&#xA;STEP: ensuring single values are parsed correctly - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:54 @ 04/04/23 18:26:25.541&#xA;&lt; Exit [It] trusts X-Forwarded-For header only when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:40 @ 04/04/23 18:26:25.551 (17.226s)&#xA;&gt; Enter [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:25.551&#xA;&lt; Exit [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:25.758 (207ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should disable modsecurity" classname="nginx-ingress-controller e2e suite" status="passed" time="21.301340903">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:25.758&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:32.641 (6.883s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:26:32.641&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:26:36.668 (4.026s)&#xA;&gt; Enter [It] should disable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:74 @ 04/04/23 18:26:36.668&#xA;&lt; Exit [It] should disable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:74 @ 04/04/23 18:26:46.879 (10.212s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:46.879&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:47.059 (180ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity through the config map but ignore snippet as disabled by admin" classname="nginx-ingress-controller e2e suite" status="passed" time="40.382987384">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:47.06&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:53.958 (6.898s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:26:53.958&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:26:57.986 (4.028s)&#xA;&gt; Enter [It] should enable modsecurity through the config map but ignore snippet as disabled by admin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:305 @ 04/04/23 18:26:57.986&#xA;&lt; Exit [It] should enable modsecurity through the config map but ignore snippet as disabled by admin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:305 @ 04/04/23 18:27:27.257 (29.271s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:27.257&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:27.443 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] denylist-source-range only allow explicitly allowed IPs, deny all others" classname="nginx-ingress-controller e2e suite" status="passed" time="35.459281249">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:27.443&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:34.37 (6.927s)&#xA;&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 04/04/23 18:27:34.37&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 04/04/23 18:27:38.399 (4.029s)&#xA;&gt; Enter [It] only allow explicitly allowed IPs, deny all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:86 @ 04/04/23 18:27:38.399&#xA;STEP: sending request from an explicitly denied IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:115 @ 04/04/23 18:27:55.604&#xA;STEP: sending request from an implicitly denied IP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:123 @ 04/04/23 18:27:55.61&#xA;STEP: sending request from an explicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:131 @ 04/04/23 18:27:55.616&#xA;STEP: sending request from an explicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:139 @ 04/04/23 18:27:55.623&#xA;&lt; Exit [It] only allow explicitly allowed IPs, deny all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:86 @ 04/04/23 18:28:02.653 (24.254s)&#xA;&gt; Enter [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:02.653&#xA;&lt; Exit [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:02.902 (249ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-multi-accept should be disabled when set to false" classname="nginx-ingress-controller e2e suite" status="passed" time="17.373623456">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:02.903&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:09.803 (6.9s)&#xA;&gt; Enter [It] should be disabled when set to false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:49 @ 04/04/23 18:28:09.803&#xA;&lt; Exit [It] should be disabled when set to false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:49 @ 04/04/23 18:28:20.04 (10.238s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:20.041&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:20.276 (236ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to grpcs:// and use grpc_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="20.243088476">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:20.277&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:28.169 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:28:28.169&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:28:30.185 (2.016s)&#xA;&gt; Enter [It] should set backend protocol to grpcs:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:79 @ 04/04/23 18:28:30.185&#xA;&lt; Exit [It] should set backend protocol to grpcs:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:79 @ 04/04/23 18:28:40.334 (10.15s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:40.334&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:40.52 (185ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="25.246171205">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:40.52&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:47.397 (6.877s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:28:47.397&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:28:51.425 (4.028s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:28:51.425&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:05.527 (14.103s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:494 @ 04/04/23 18:29:05.527&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:494 @ 04/04/23 18:29:05.539 (12ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:05.539&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:05.766 (227ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-connect-timeout should set valid proxy timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="28.356651539">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:05.767&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:12.664 (6.897s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 04/04/23 18:29:12.664&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 04/04/23 18:29:16.693 (4.029s)&#xA;&gt; Enter [It] should set valid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:36 @ 04/04/23 18:29:16.693&#xA;&lt; Exit [It] should set valid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:36 @ 04/04/23 18:29:33.899 (17.207s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:33.899&#xA;&lt; Exit [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:34.123 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with transaction ID and OWASP rules" classname="nginx-ingress-controller e2e suite" status="passed" time="22.251075828">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:34.124&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:42.012 (7.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:29:42.012&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:29:46.039 (4.027s)&#xA;&gt; Enter [It] should enable modsecurity with transaction ID and OWASP rules - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:53 @ 04/04/23 18:29:46.039&#xA;&lt; Exit [It] should enable modsecurity with transaction ID and OWASP rules - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:53 @ 04/04/23 18:29:56.186 (10.147s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:56.186&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:56.375 (189ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should change the default proxy HTTP version" classname="nginx-ingress-controller e2e suite" status="passed" time="21.310489423">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:56.375&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:03.267 (6.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:30:03.267&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:30:07.298 (4.031s)&#xA;&gt; Enter [It] should change the default proxy HTTP version - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:233 @ 04/04/23 18:30:07.298&#xA;&lt; Exit [It] should change the default proxy HTTP version - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:233 @ 04/04/23 18:30:17.47 (10.172s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:17.47&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:17.686 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] secret update should return the fake SSL certificate if the secret is invalid" classname="nginx-ingress-controller e2e suite" status="passed" time="154.723842483">
-              <system-err>&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:17.686&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:35.008 (2m17.322s)&#xA;&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 04/04/23 18:32:35.008&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 04/04/23 18:32:39.033 (4.025s)&#xA;&gt; Enter [It] should return the fake SSL certificate if the secret is invalid - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:82 @ 04/04/23 18:32:39.033&#xA;&lt; Exit [It] should return the fake SSL certificate if the secret is invalid - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:82 @ 04/04/23 18:32:52.207 (13.174s)&#xA;&gt; Enter [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:52.207&#xA;&lt; Exit [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:52.41 (203ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1000" classname="nginx-ingress-controller e2e suite" status="passed" time="21.380029765">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:52.41&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:59.312 (6.902s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:32:59.312&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:33:03.343 (4.031s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1000 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:35 @ 04/04/23 18:33:03.343&#xA;&lt; Exit [It] should set client_body_buffer_size to 1000 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:35 @ 04/04/23 18:33:13.571 (10.227s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:13.571&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:13.79 (220ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] OCSP should enable OCSP and contain stapling information in the connection" classname="nginx-ingress-controller e2e suite" status="passed" time="52.538209784">
-              <system-err>&gt; Enter [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:13.791&#xA;&lt; Exit [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:20.666 (6.876s)&#xA;&gt; Enter [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:45 @ 04/04/23 18:33:20.666&#xA;&lt; Exit [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:45 @ 04/04/23 18:33:24.686 (4.02s)&#xA;&gt; Enter [It] should enable OCSP and contain stapling information in the connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:49 @ 04/04/23 18:33:24.686&#xA;STEP: running cfssl gencert -initca ca_csr.json | cfssljson -bare ca - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 04/04/23 18:33:31.697&#xA;STEP: running cfssl gencert -ca ca.pem -ca-key ca-key.pem -config=cfssl_config.json -profile=intermediate intermediate_ca_csr.json | cfssljson -bare intermediate_ca - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 04/04/23 18:33:32.042&#xA;STEP: running cfssl gencert -ca intermediate_ca.pem -ca-key intermediate_ca-key.pem -config=cfssl_config.json -profile=ocsp ocsp_csr.json | cfssljson -bare ocsp - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 04/04/23 18:33:32.211&#xA;STEP: running cfssl serve -db-config=db-config.json -ca-key=intermediate_ca-key.pem -ca=intermediate_ca.pem -config=cfssl_config.json -responder=ocsp.pem -responder-key=ocsp-key.pem - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:228 @ 04/04/23 18:33:32.385&#xA;STEP: running cfssl gencert -remote=localhost -profile=server leaf_csr.json | cfssljson -bare leaf - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:238 @ 04/04/23 18:33:37.385&#xA;STEP: running cfssl ocsprefresh -ca intermediate_ca.pem -responder=ocsp.pem -responder-key=ocsp-key.pem -db-config=db-config.json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:252 @ 04/04/23 18:33:37.548&#xA;&lt; Exit [It] should enable OCSP and contain stapling information in the connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:49 @ 04/04/23 18:34:06.016 (41.33s)&#xA;&gt; Enter [AfterEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:06.016&#xA;&lt; Exit [AfterEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:06.329 (312ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] satisfy should allow multiple auth with satisfy any" classname="nginx-ingress-controller e2e suite" status="passed" time="27.083879161">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:06.329&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:13.238 (6.909s)&#xA;&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 04/04/23 18:34:13.238&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 04/04/23 18:34:17.265 (4.027s)&#xA;&gt; Enter [It] should allow multiple auth with satisfy any - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:84 @ 04/04/23 18:34:17.265&#xA;&lt; Exit [It] should allow multiple auth with satisfy any - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:84 @ 04/04/23 18:34:33.244 (15.979s)&#xA;&gt; Enter [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:33.244&#xA;&lt; Exit [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:33.413 (169ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="21.260634154999998">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:33.413&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:40.3 (6.887s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:34:40.3&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:34:44.318 (4.018s)&#xA;&gt; Enter [It] should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:284 @ 04/04/23 18:34:44.318&#xA;&lt; Exit [It] should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:284 @ 04/04/23 18:34:54.489 (10.171s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:54.489&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:54.674 (185ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes consistently (down scaling of replicas vs. empty service)" classname="nginx-ingress-controller e2e suite" status="passed" time="47.623291228">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:54.674&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:01.542 (6.868s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:35:01.542&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:35:15.829 (14.287s)&#xA;&gt; Enter [It] handles endpoints only changes consistently (down scaling of replicas vs. empty service) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:125 @ 04/04/23 18:35:15.829&#xA;&lt; Exit [It] handles endpoints only changes consistently (down scaling of replicas vs. empty service) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:125 @ 04/04/23 18:35:42.1 (26.271s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:42.1&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:42.298 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting preload parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="33.446353768">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:42.298&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:50.176 (7.878s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:35:50.176&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:35:54.197 (4.021s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:35:54.197&#xA;Apr  4 18:36:03.338: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:36:05.327 (11.13s)&#xA;&gt; Enter [It] setting preload parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:146 @ 04/04/23 18:36:05.327&#xA;&lt; Exit [It] setting preload parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:146 @ 04/04/23 18:36:15.512 (10.185s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:15.512&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:15.744 (233ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Endpointslices] long service name should return 200 when service name has max allowed number of characters 63" classname="nginx-ingress-controller e2e suite" status="passed" time="22.305086">
-              <system-err>&gt; Enter [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:15.745&#xA;&lt; Exit [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:23.617 (7.872s)&#xA;&gt; Enter [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:34 @ 04/04/23 18:36:23.617&#xA;&lt; Exit [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:34 @ 04/04/23 18:36:27.64 (4.023s)&#xA;&gt; Enter [It] should return 200 when service name has max allowed number of characters 63 - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:38 @ 04/04/23 18:36:27.64&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:48 @ 04/04/23 18:36:37.807&#xA;&lt; Exit [It] should return 200 when service name has max allowed number of characters 63 - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:38 @ 04/04/23 18:36:37.815 (10.175s)&#xA;&gt; Enter [AfterEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:37.815&#xA;&lt; Exit [AfterEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:38.05 (235ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - FastCGI should add fastcgi_index in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="20.255437009">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:38.05&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:45.936 (7.886s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:36:45.936&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:36:47.961 (2.026s)&#xA;&gt; Enter [It] should add fastcgi_index in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:54 @ 04/04/23 18:36:47.961&#xA;&lt; Exit [It] should add fastcgi_index in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:54 @ 04/04/23 18:36:58.079 (10.118s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:58.079&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:58.306 (226ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity globally and with modsecurity-snippet block requests" classname="nginx-ingress-controller e2e suite" status="passed" time="171.582212664">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:58.306&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:16.416 (2m18.11s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:39:16.416&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:39:20.463 (4.047s)&#xA;&gt; Enter [It] should enable modsecurity globally and with modsecurity-snippet block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:189 @ 04/04/23 18:39:20.463&#xA;&lt; Exit [It] should enable modsecurity globally and with modsecurity-snippet block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:189 @ 04/04/23 18:39:49.668 (29.205s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:49.668&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:49.888 (220ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) ports or X-Forwarded-Host check during HTTP tp HTTPS redirection should not use ports during the HTTP to HTTPS redirection" classname="nginx-ingress-controller e2e suite" status="passed" time="23.299518785">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:49.888&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:57.8 (7.912s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:39:57.8&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:40:01.823 (4.023s)&#xA;&gt; Enter [It] should not use ports during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:187 @ 04/04/23 18:40:01.823&#xA;Apr  4 18:40:10.971: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [It] should not use ports during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:187 @ 04/04/23 18:40:12.979 (11.155s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:12.979&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:13.188 (209ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName with a port defined" classname="nginx-ingress-controller e2e suite" status="passed" time="18.584802653">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:13.188&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:21.087 (7.899s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName with a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:129 @ 04/04/23 18:40:21.087&#xA;&lt; Exit [It] should return 200 for service type=ExternalName with a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:129 @ 04/04/23 18:40:31.585 (10.498s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:31.585&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:31.773 (188ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="25.3240127">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:31.773&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:38.672 (6.898s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:40:38.672&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:40:42.706 (4.034s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:40:42.706&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:40:56.901 (14.195s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:687 @ 04/04/23 18:40:56.901&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:687 @ 04/04/23 18:40:56.912 (10ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:56.912&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:57.097 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Annotation - limit-connections should limit-connections" classname="nginx-ingress-controller e2e suite" status="passed" time="44.225945645">
-              <system-out>I0404 18:04:54.427675      25 request.go:690] Waited for 1.19834838s due to client-side throttling, not priority and fairness, request: GET:https://10.96.0.1:443/api/v1/namespaces/e2e-tests-limit-connections-1680631459257336272-jn44f/services/nginx-ingress-controller&#xA;</system-out>
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.256&#xA;&lt; Exit [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:26.817 (7.56s)&#xA;&gt; Enter [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:34 @ 04/04/23 18:04:26.817&#xA;&lt; Exit [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:34 @ 04/04/23 18:04:38.845 (12.028s)&#xA;&gt; Enter [It] should limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:38 @ 04/04/23 18:04:38.845&#xA;&lt; Exit [It] should limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:38 @ 04/04/23 18:05:03.259 (24.414s)&#xA;&gt; Enter [AfterEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:03.259&#xA;&lt; Exit [AfterEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:03.482 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] [PathType] exact should choose exact location for /exact" classname="nginx-ingress-controller e2e suite" status="passed" time="38.595312029">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:03.483&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:10.366 (6.883s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:33 @ 04/04/23 18:05:10.366&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:33 @ 04/04/23 18:05:14.405 (4.039s)&#xA;&gt; Enter [It] should choose exact location for /exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:37 @ 04/04/23 18:05:14.405&#xA;&lt; Exit [It] should choose exact location for /exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:37 @ 04/04/23 18:05:41.807 (27.402s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:41.807&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:42.078 (271ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="39.725581056">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:42.079&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:50.08 (8.002s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:05:50.08&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:05:54.108 (4.028s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:36 @ 04/04/23 18:05:54.108&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:36 @ 04/04/23 18:06:21.53 (27.422s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:21.53&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:21.804 (274ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not break functionality" classname="nginx-ingress-controller e2e suite" status="passed" time="18.152762201">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:21.804&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:28.705 (6.901s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:06:28.705&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:06:32.732 (4.027s)&#xA;&gt; Enter [It] should not break functionality - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:267 @ 04/04/23 18:06:32.732&#xA;&lt; Exit [It] should not break functionality - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:267 @ 04/04/23 18:06:39.756 (7.024s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:39.756&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:39.957 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] app-root should redirect to /foo" classname="nginx-ingress-controller e2e suite" status="passed" time="22.339253677">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:39.958&#xA;&lt; Exit [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:47.864 (7.907s)&#xA;&gt; Enter [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:31 @ 04/04/23 18:06:47.864&#xA;&lt; Exit [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:31 @ 04/04/23 18:06:51.912 (4.047s)&#xA;&gt; Enter [It] should redirect to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:35 @ 04/04/23 18:06:51.912&#xA;&lt; Exit [It] should redirect to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:35 @ 04/04/23 18:07:02.086 (10.175s)&#xA;&gt; Enter [AfterEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:02.086&#xA;&lt; Exit [AfterEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:02.297 (211ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should return 200 using auth-tls-match-cn with matching CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="22.922113641">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:02.297&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:10.188 (7.891s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:07:10.188&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:07:14.226 (4.037s)&#xA;&gt; Enter [It] should return 200 using auth-tls-match-cn with matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:295 @ 04/04/23 18:07:14.226&#xA;&lt; Exit [It] should return 200 using auth-tls-match-cn with matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:295 @ 04/04/23 18:07:25.018 (10.792s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:25.018&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:25.219 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] denylist-source-range only deny explicitly denied IPs, allow all others" classname="nginx-ingress-controller e2e suite" status="passed" time="34.300425996">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:25.22&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:33.104 (7.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 04/04/23 18:07:33.104&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 04/04/23 18:07:35.129 (2.025s)&#xA;&gt; Enter [It] only deny explicitly denied IPs, allow all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:35 @ 04/04/23 18:07:35.129&#xA;STEP: sending request from an explicitly denied IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:61 @ 04/04/23 18:07:52.29&#xA;STEP: sending request from an explicitly denied IP address - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:69 @ 04/04/23 18:07:52.298&#xA;STEP: sending request from an implicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:77 @ 04/04/23 18:07:52.304&#xA;&lt; Exit [It] only deny explicitly denied IPs, allow all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:35 @ 04/04/23 18:07:59.326 (24.197s)&#xA;&gt; Enter [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:59.326&#xA;&lt; Exit [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:59.52 (194ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* Single canary Ingress should not use canary with domain as a server" classname="nginx-ingress-controller e2e suite" status="passed" time="32.388431935">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:59.52&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:06.412 (6.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:08:06.412&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:08:14.461 (8.049s)&#xA;&gt; Enter [It] should not use canary with domain as a server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:891 @ 04/04/23 18:08:14.461&#xA;&lt; Exit [It] should not use canary with domain as a server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:891 @ 04/04/23 18:08:31.701 (17.24s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:31.701&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:31.909 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set" classname="nginx-ingress-controller e2e suite" status="passed" time="22.408753285">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:31.909&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:39.801 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:08:39.801&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:08:43.836 (4.035s)&#xA;&gt; Enter [It] should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:301 @ 04/04/23 18:08:43.836&#xA;&lt; Exit [It] should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:301 @ 04/04/23 18:08:54.106 (10.269s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:54.106&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:54.318 (212ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should routes to mainline upstream when the given Regex causes error" classname="nginx-ingress-controller e2e suite" status="passed" time="32.339918036">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:54.318&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:01.207 (6.889s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:09:01.207&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:09:09.264 (8.058s)&#xA;&gt; Enter [It] should routes to mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:566 @ 04/04/23 18:09:09.264&#xA;STEP: routing requests to the mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:591 @ 04/04/23 18:09:26.43&#xA;&lt; Exit [It] should routes to mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:566 @ 04/04/23 18:09:26.434 (17.169s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:26.434&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:26.658 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should delete Ingress when class is removed" classname="nginx-ingress-controller e2e suite" status="passed" time="36.529874252">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:26.658&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:33.593 (6.935s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:09:33.593&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:09:37.637 (4.044s)&#xA;&gt; Enter [It] should delete Ingress when class is removed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:192 @ 04/04/23 18:09:37.637&#xA;&lt; Exit [It] should delete Ingress when class is removed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:192 @ 04/04/23 18:10:02.989 (25.352s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:02.989&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:03.188 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should proxy_method method when global-auth-method is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="56.864281316">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:03.189&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:11.089 (7.901s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:10:11.09&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:10:19.123 (8.033s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:10:19.123&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:10:19.123&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:10:29.295&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:10:39.491&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:10:49.631 (30.509s)&#xA;&gt; Enter [It] should proxy_method method when global-auth-method is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:197 @ 04/04/23 18:10:49.631&#xA;STEP: Adding a global-auth-method to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:202 @ 04/04/23 18:10:49.631&#xA;&lt; Exit [It] should proxy_method method when global-auth-method is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:197 @ 04/04/23 18:10:59.844 (10.213s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:59.844&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:00.053 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-connect-timeout should not set invalid proxy timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="159.263240703">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:00.053&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:17.888 (2m17.835s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 04/04/23 18:13:17.888&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 04/04/23 18:13:21.926 (4.038s)&#xA;&gt; Enter [It] should not set invalid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:52 @ 04/04/23 18:13:21.926&#xA;&lt; Exit [It] should not set invalid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:52 @ 04/04/23 18:13:39.103 (17.177s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:39.103&#xA;&lt; Exit [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:39.316 (214ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - FastCGI should add fastcgi_param in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="22.255464666">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:39.317&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:46.2 (6.883s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:13:46.2&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:13:51.228 (5.028s)&#xA;&gt; Enter [It] should add fastcgi_param in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:71 @ 04/04/23 18:13:51.228&#xA;&lt; Exit [It] should add fastcgi_param in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:71 @ 04/04/23 18:14:01.351 (10.123s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:01.351&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:01.572 (222ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should enable cors" classname="nginx-ingress-controller e2e suite" status="passed" time="21.227042773">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:01.573&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:08.451 (6.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:14:08.451&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:14:12.484 (4.033s)&#xA;&gt; Enter [It] should enable cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:35 @ 04/04/23 18:14:12.484&#xA;&lt; Exit [It] should enable cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:35 @ 04/04/23 18:14:22.62 (10.136s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:22.62&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:22.8 (179ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header overriding what&#39;s set from the upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="27.764170353">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:22.8&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:29.697 (6.897s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:14:29.697&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:14:33.724 (4.026s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:14:33.724&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:14:43.071 (9.347s)&#xA;&gt; Enter [It] overriding what&#39;s set from the upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:166 @ 04/04/23 18:14:43.071&#xA;&lt; Exit [It] overriding what&#39;s set from the upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:166 @ 04/04/23 18:14:50.277 (7.207s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:50.277&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:50.564 (287ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates picks up the previously missing secret for a given ingress without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="31.607242139">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:50.566&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:57.791 (7.225s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:14:57.791&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:15:01.819 (4.028s)&#xA;&gt; Enter [It] picks up the previously missing secret for a given ingress without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:70 @ 04/04/23 18:15:01.819&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:94 @ 04/04/23 18:15:18.959&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:101 @ 04/04/23 18:15:21.991&#xA;&lt; Exit [It] picks up the previously missing secret for a given ingress without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:70 @ 04/04/23 18:15:22.003 (20.184s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:22.003&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:22.173 (170ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should disable cors allow credentials" classname="nginx-ingress-controller e2e suite" status="passed" time="20.359505705">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:22.173&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:30.052 (7.879s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:15:30.052&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:15:32.076 (2.024s)&#xA;&gt; Enter [It] should disable cors allow credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:94 @ 04/04/23 18:15:32.076&#xA;&lt; Exit [It] should disable cors allow credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:94 @ 04/04/23 18:15:42.292 (10.217s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:42.292&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:42.533 (240ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 200 when accessing &#39;/noauth&#39; unauthenticated" classname="nginx-ingress-controller e2e suite" status="passed" time="29.196807175">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:42.533&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:49.463 (6.93s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:15:49.463&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:16:08.363 (18.9s)&#xA;&gt; Enter [It] should return status code 200 when accessing &#39;/noauth&#39; unauthenticated - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:82 @ 04/04/23 18:16:08.363&#xA;&lt; Exit [It] should return status code 200 when accessing &#39;/noauth&#39; unauthenticated - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:82 @ 04/04/23 18:16:11.514 (3.151s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:11.514&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:11.73 (216ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 401 when request any protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="47.840368216">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:11.73&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:18.612 (6.881s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:16:18.612&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:16:28.726 (10.115s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:16:28.726&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:16:28.726&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:16:38.887&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:16:49.114&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:16:59.322 (30.595s)&#xA;&gt; Enter [It] should return status code 401 when request any protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:85 @ 04/04/23 18:16:59.322&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:87 @ 04/04/23 18:16:59.322&#xA;STEP: Sending a request to protected service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:94 @ 04/04/23 18:16:59.333&#xA;&lt; Exit [It] should return status code 401 when request any protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:85 @ 04/04/23 18:16:59.342 (20ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:59.342&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:59.57 (229ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-catch-all should ignore catch all Ingress with backend and rules" classname="nginx-ingress-controller e2e suite" status="passed" time="29.278878474">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:59.571&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:06.433 (6.862s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:17:06.433&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:17:18.505 (12.072s)&#xA;&gt; Enter [It] should ignore catch all Ingress with backend and rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:69 @ 04/04/23 18:17:18.505&#xA;&lt; Exit [It] should ignore catch all Ingress with backend and rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:69 @ 04/04/23 18:17:28.675 (10.171s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:28.675&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:28.85 (174ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] global-options should have worker_rlimit_nofile option" classname="nginx-ingress-controller e2e suite" status="passed" time="12.275994764">
-              <system-err>&gt; Enter [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:28.85&#xA;&lt; Exit [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:37.72 (8.87s)&#xA;&gt; Enter [It] should have worker_rlimit_nofile option - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:31 @ 04/04/23 18:17:37.72&#xA;&lt; Exit [It] should have worker_rlimit_nofile option - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:31 @ 04/04/23 18:17:40.919 (3.199s)&#xA;&gt; Enter [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:40.919&#xA;&lt; Exit [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:41.126 (207ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) ports or X-Forwarded-Host check during HTTP tp HTTPS redirection should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection" classname="nginx-ingress-controller e2e suite" status="passed" time="30.353652292">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:41.126&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:49.014 (7.887s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:17:49.014&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:17:53.032 (4.018s)&#xA;&gt; Enter [It] should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:205 @ 04/04/23 18:17:53.032&#xA;Apr  4 18:18:09.269: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [It] should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:205 @ 04/04/23 18:18:11.272 (18.241s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:11.272&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:11.48 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should build proxy next upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="21.256053884">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:11.48&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:18.335 (6.854s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:18:18.335&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:18:22.355 (4.02s)&#xA;&gt; Enter [It] should build proxy next upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:194 @ 04/04/23 18:18:22.355&#xA;&lt; Exit [It] should build proxy next upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:194 @ 04/04/23 18:18:32.501 (10.146s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:32.501&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:32.736 (236ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-proxy-protocol should respect proto passed by the PROXY Protocol server port" classname="nginx-ingress-controller e2e suite" status="passed" time="110.539511063">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:32.737&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:39.632 (6.895s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:18:39.632&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:18:50.669 (11.037s)&#xA;&gt; Enter [It] should respect proto passed by the PROXY Protocol server port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:79 @ 04/04/23 18:18:50.669&#xA;&lt; Exit [It] should respect proto passed by the PROXY Protocol server port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:79 @ 04/04/23 18:20:22.888 (1m32.219s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:22.888&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:23.276 (388ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] ssl-ciphers should change ssl ciphers" classname="nginx-ingress-controller e2e suite" status="passed" time="20.32621915">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:23.277&#xA;&lt; Exit [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:31.164 (7.887s)&#xA;&gt; Enter [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:31 @ 04/04/23 18:20:31.164&#xA;&lt; Exit [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:31 @ 04/04/23 18:20:33.226 (2.062s)&#xA;&gt; Enter [It] should change ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:35 @ 04/04/23 18:20:33.226&#xA;&lt; Exit [It] should change ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:35 @ 04/04/23 18:20:43.402 (10.176s)&#xA;&gt; Enter [AfterEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:43.402&#xA;&lt; Exit [AfterEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:43.603 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1k" classname="nginx-ingress-controller e2e suite" status="passed" time="21.3434496">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:43.603&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:50.486 (6.883s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:20:50.486&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:20:54.514 (4.028s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1k - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:79 @ 04/04/23 18:20:54.514&#xA;&lt; Exit [It] should set client_body_buffer_size to 1k - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:79 @ 04/04/23 18:21:04.738 (10.224s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:04.738&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:04.947 (209ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should turn off proxy-request-buffering" classname="nginx-ingress-controller e2e suite" status="passed" time="21.279526094">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:04.947&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:11.835 (6.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:21:11.835&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:21:15.853 (4.017s)&#xA;&gt; Enter [It] should turn off proxy-request-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:179 @ 04/04/23 18:21:15.853&#xA;&lt; Exit [It] should turn off proxy-request-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:179 @ 04/04/23 18:21:26.03 (10.178s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:26.03&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:26.226 (196ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Debug CLI should get information for a specific backend server" classname="nginx-ingress-controller e2e suite" status="passed" time="22.566428383">
-              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:26.227&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:34.123 (7.896s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:21:34.123&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:21:38.158 (4.035s)&#xA;&gt; Enter [It] should get information for a specific backend server - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:56 @ 04/04/23 18:21:38.158&#xA;&lt; Exit [It] should get information for a specific backend server - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:56 @ 04/04/23 18:21:48.595 (10.437s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:48.595&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:48.793 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] nginx-configuration start nginx with default configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="11.047475387">
-              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:21:48.794&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:21:50.797 (2.003s)&#xA;&gt; Enter [It] start nginx with default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:102 @ 04/04/23 18:21:50.797&#xA;&lt; Exit [It] start nginx with default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:102 @ 04/04/23 18:21:59.838 (9.042s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:21:59.839&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:21:59.841 (3ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should set cors max-age" classname="nginx-ingress-controller e2e suite" status="passed" time="21.882315298">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:59.842&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:07.232 (7.39s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:07.232&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:11.252 (4.02s)&#xA;&gt; Enter [It] should set cors max-age - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:78 @ 04/04/23 18:22:11.252&#xA;&lt; Exit [It] should set cors max-age - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:78 @ 04/04/23 18:22:21.435 (10.182s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:21.435&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:21.724 (289ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - matching origin+port with wildcard origin" classname="nginx-ingress-controller e2e suite" status="passed" time="18.7769524">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:21.725&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:29.212 (7.488s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:29.212&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:33.245 (4.033s)&#xA;&gt; Enter [It] should allow - matching origin+port with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:488 @ 04/04/23 18:22:33.245&#xA;&lt; Exit [It] should allow - matching origin+port with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:488 @ 04/04/23 18:22:40.278 (7.032s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:40.278&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:40.502 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should change cookie name on ingress definition change" classname="nginx-ingress-controller e2e suite" status="passed" time="26.301024226">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:40.502&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:47.367 (6.865s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:22:47.368&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:22:51.389 (4.021s)&#xA;&gt; Enter [It] should change cookie name on ingress definition change - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:64 @ 04/04/23 18:22:51.389&#xA;&lt; Exit [It] should change cookie name on ingress definition change - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:64 @ 04/04/23 18:23:06.598 (15.209s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:06.598&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:06.803 (205ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] configmap server-snippet should add value of server-snippet setting to all ingress config" classname="nginx-ingress-controller e2e suite" status="passed" time="43.5615642">
-              <system-err>&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:06.804&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:13.683 (6.879s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 04/04/23 18:23:13.683&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 04/04/23 18:23:17.702 (4.019s)&#xA;&gt; Enter [It] should add value of server-snippet setting to all ingress config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:35 @ 04/04/23 18:23:17.702&#xA;&lt; Exit [It] should add value of server-snippet setting to all ingress config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:35 @ 04/04/23 18:23:50.157 (32.455s)&#xA;&gt; Enter [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:50.157&#xA;&lt; Exit [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:50.365 (209ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] block-* should block Referers defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="26.650551683">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:50.366&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:57.248 (6.882s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:23:57.248&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:24:06.308 (9.06s)&#xA;&gt; Enter [It] should block Referers defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:88 @ 04/04/23 18:24:06.308&#xA;&lt; Exit [It] should block Referers defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:88 @ 04/04/23 18:24:16.602 (10.294s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:16.602&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:17.016 (414ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should set gzip_types to application/javascript" classname="nginx-ingress-controller e2e suite" status="passed" time="25.977355163">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:17.016&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:25.558 (8.541s)&#xA;&gt; Enter [It] should set gzip_types to application/javascript - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:89 @ 04/04/23 18:24:25.558&#xA;&lt; Exit [It] should set gzip_types to application/javascript - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:89 @ 04/04/23 18:24:42.749 (17.191s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:42.749&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:42.994 (245ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should exists opentracing_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="30.228533662">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:42.994&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:49.859 (6.865s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:24:49.859&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:24:55.885 (6.025s)&#xA;&gt; Enter [It] should exists opentracing_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:115 @ 04/04/23 18:24:55.885&#xA;&lt; Exit [It] should exists opentracing_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:115 @ 04/04/23 18:25:13.047 (17.162s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:13.047&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:13.223 (176ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:25:13.223&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:25:13.223 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="21.147688959">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:13.223&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:21.122 (7.899s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:25:21.122&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:25:27.151 (6.029s)&#xA;&gt; Enter [It] should not allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:196 @ 04/04/23 18:25:27.151&#xA;&lt; Exit [It] should not allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:196 @ 04/04/23 18:25:34.17 (7.019s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:34.17&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:34.371 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should set snippet when global external auth is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="55.823887488">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:34.371&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:41.275 (6.904s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:25:41.275&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:25:49.318 (8.044s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:25:49.318&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:25:49.318&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:25:59.469&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:26:09.647&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:26:19.839 (30.521s)&#xA;&gt; Enter [It] should set snippet when global external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:250 @ 04/04/23 18:26:19.839&#xA;STEP: Adding a global-auth-snippet to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:254 @ 04/04/23 18:26:19.839&#xA;&lt; Exit [It] should set snippet when global external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:250 @ 04/04/23 18:26:29.995 (10.156s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:29.995&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:30.195 (200ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-snippet add valid directives to server via server snippet" classname="nginx-ingress-controller e2e suite" status="passed" time="21.25795177">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:30.195&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:37.066 (6.871s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 04/04/23 18:26:37.066&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 04/04/23 18:26:41.082 (4.015s)&#xA;&gt; Enter [It] add valid directives to server via server snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:35 @ 04/04/23 18:26:41.082&#xA;&lt; Exit [It] add valid directives to server via server snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:35 @ 04/04/23 18:26:51.227 (10.145s)&#xA;&gt; Enter [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:51.227&#xA;&lt; Exit [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:51.453 (226ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should deny login for different location on same server" classname="nginx-ingress-controller e2e suite" status="passed" time="128.860516385">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:51.453&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:58.324 (6.87s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:26:58.324&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:27:02.348 (4.024s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:27:02.348&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:27:07.377&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:27:17.563&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:27:27.77&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:27:37.89&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:27:53.085 (50.737s)&#xA;&gt; Enter [It] should deny login for different location on same server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:792 @ 04/04/23 18:27:53.085&#xA;STEP: receiving an internal server error without cache on location /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:811 @ 04/04/23 18:28:00.105&#xA;&lt; Exit [It] should deny login for different location on same server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:792 @ 04/04/23 18:29:00.109 (1m7.024s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:00.109&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:00.314 (205ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - FastCGI should return OK for service with backend protocol FastCGI" classname="nginx-ingress-controller e2e suite" status="passed" time="20.336008253">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:00.314&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:08.193 (7.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:29:08.193&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:29:10.222 (2.029s)&#xA;&gt; Enter [It] should return OK for service with backend protocol FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:102 @ 04/04/23 18:29:10.222&#xA;&lt; Exit [It] should return OK for service with backend protocol FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:102 @ 04/04/23 18:29:20.442 (10.22s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:20.442&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:20.65 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to canary if canary weight is equal to canary weight total" classname="nginx-ingress-controller e2e suite" status="passed" time="32.449934124">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:20.651&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:27.592 (6.941s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:29:27.592&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:29:35.635 (8.044s)&#xA;&gt; Enter [It] should route requests only to canary if canary weight is equal to canary weight total - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:775 @ 04/04/23 18:29:35.635&#xA;&lt; Exit [It] should route requests only to canary if canary weight is equal to canary weight total - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:775 @ 04/04/23 18:29:52.866 (17.23s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:52.866&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:53.101 (235ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] modsecurity-snippet should add value of modsecurity-snippet setting to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="18.334369723000002">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:53.101&#xA;&lt; Exit [BeforeEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:00.998 (7.896s)&#xA;&gt; Enter [It] should add value of modsecurity-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/modsecurity/modsecurity_snippet.go:30 @ 04/04/23 18:30:00.998&#xA;&lt; Exit [It] should add value of modsecurity-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/modsecurity/modsecurity_snippet.go:30 @ 04/04/23 18:30:11.215 (10.217s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:11.215&#xA;&lt; Exit [AfterEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:11.436 (221ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should exists opentracing directive when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="28.327005454">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:11.436&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:18.304 (6.868s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:30:18.304&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:30:22.331 (4.027s)&#xA;&gt; Enter [It] should exists opentracing directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:71 @ 04/04/23 18:30:22.331&#xA;&lt; Exit [It] should exists opentracing directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:71 @ 04/04/23 18:30:39.546 (17.216s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:39.546&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:39.763 (217ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:30:39.763&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:30:39.763 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinitymode Check persistent affinity mode" classname="nginx-ingress-controller e2e suite" status="passed" time="128.063623015">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:39.763&#xA;&lt; Exit [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:47.146 (7.383s)&#xA;&gt; Enter [It] Check persistent affinity mode - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:67 @ 04/04/23 18:30:47.146&#xA;&lt; Exit [It] Check persistent affinity mode - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:67 @ 04/04/23 18:32:47.648 (2m0.502s)&#xA;&gt; Enter [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:47.648&#xA;&lt; Exit [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:47.827 (179ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress with a different class annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="158.132598199">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:47.827&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:04.512 (2m16.685s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:35:04.512&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:35:08.555 (4.042s)&#xA;&gt; Enter [It] should ignore Ingress with a different class annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:68 @ 04/04/23 18:35:08.555&#xA;&lt; Exit [It] should ignore Ingress with a different class annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:68 @ 04/04/23 18:35:25.764 (17.209s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:25.764&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:25.96 (196ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should enable opentracing using jaeger" classname="nginx-ingress-controller e2e suite" status="passed" time="32.14322785">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:25.96&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:33.883 (7.923s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:35:33.883&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:35:37.911 (4.028s)&#xA;&gt; Enter [It] should enable opentracing using jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:172 @ 04/04/23 18:35:37.911&#xA;&lt; Exit [It] should enable opentracing using jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:172 @ 04/04/23 18:35:57.93 (20.019s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:57.93&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:58.103 (173ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:35:58.103&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:35:58.103 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should add custom error page when global-auth-signin url is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="56.818456066">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:58.104&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:05.96 (7.857s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:36:05.96&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:36:14.017 (8.056s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:36:14.017&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:36:14.017&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:36:24.203&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:36:34.361&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:36:44.521 (30.504s)&#xA;&gt; Enter [It] should add custom error page when global-auth-signin url is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:210 @ 04/04/23 18:36:44.521&#xA;STEP: Adding a global-auth-signin to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:215 @ 04/04/23 18:36:44.521&#xA;&lt; Exit [It] should add custom error page when global-auth-signin url is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:210 @ 04/04/23 18:36:54.694 (10.173s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:54.694&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:54.922 (228ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-stream-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="30.946117672">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:54.922&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:02.365 (7.443s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:37:02.365&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:37:08.389 (6.023s)&#xA;&gt; Enter [It] disable-stream-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:71 @ 04/04/23 18:37:08.389&#xA;&lt; Exit [It] disable-stream-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:71 @ 04/04/23 18:37:25.61 (17.222s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:25.611&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:25.869 (258ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should enable opentracing using jaeger with sampler host" classname="nginx-ingress-controller e2e suite" status="passed" time="31.172411267">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:25.869&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:32.759 (6.89s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:37:32.759&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:37:36.785 (4.026s)&#xA;&gt; Enter [It] should enable opentracing using jaeger with sampler host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:184 @ 04/04/23 18:37:36.785&#xA;&lt; Exit [It] should enable opentracing using jaeger with sampler host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:184 @ 04/04/23 18:37:56.815 (20.03s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:56.815&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:57.041 (227ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:37:57.041&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:37:57.041 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] add-headers Add a custom header" classname="nginx-ingress-controller e2e suite" status="passed" time="29.429456981">
-              <system-err>&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:57.042&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:04.9 (7.858s)&#xA;&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 04/04/23 18:38:04.9&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 04/04/23 18:38:15.932 (11.032s)&#xA;&gt; Enter [It] Add a custom header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:40 @ 04/04/23 18:38:15.932&#xA;&lt; Exit [It] Add a custom header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:40 @ 04/04/23 18:38:26.137 (10.204s)&#xA;&gt; Enter [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:26.137&#xA;&lt; Exit [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:26.471 (334ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should serve Ingress when class is updated between annotation and ingressClassName" classname="nginx-ingress-controller e2e suite" status="passed" time="36.546449498">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:26.471&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:33.322 (6.851s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:38:33.322&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:38:37.351 (4.029s)&#xA;&gt; Enter [It] should serve Ingress when class is updated between annotation and ingressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:323 @ 04/04/23 18:38:37.351&#xA;&lt; Exit [It] should serve Ingress when class is updated between annotation and ingressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:323 @ 04/04/23 18:39:02.787 (25.436s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:02.787&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:03.018 (231ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] backend status code 503 should return 503 when all backend service endpoints are unavailable" classname="nginx-ingress-controller e2e suite" status="passed" time="18.478587281">
-              <system-err>&gt; Enter [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:03.025&#xA;&lt; Exit [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:11.02 (7.995s)&#xA;&gt; Enter [It] should return 503 when all backend service endpoints are unavailable - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:54 @ 04/04/23 18:39:11.02&#xA;&lt; Exit [It] should return 503 when all backend service endpoints are unavailable - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:54 @ 04/04/23 18:39:21.316 (10.296s)&#xA;&gt; Enter [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:21.316&#xA;&lt; Exit [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:21.504 (188ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should set gzip_disable to msie6" classname="nginx-ingress-controller e2e suite" status="passed" time="25.33065533">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:21.504&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:29.492 (7.988s)&#xA;&gt; Enter [It] should set gzip_disable to msie6 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:67 @ 04/04/23 18:39:29.492&#xA;&lt; Exit [It] should set gzip_disable to msie6 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:67 @ 04/04/23 18:39:46.643 (17.151s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:46.643&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:46.835 (192ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* canary affinity behavior routes traffic to either mainline or canary backend (legacy behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="70.69738704">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:46.835&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:53.72 (6.885s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:39:53.72&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:40:01.768 (8.048s)&#xA;&gt; Enter [It] routes traffic to either mainline or canary backend (legacy behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1058 @ 04/04/23 18:40:01.768&#xA;&lt; Exit [It] routes traffic to either mainline or canary backend (legacy behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1058 @ 04/04/23 18:40:57.335 (55.567s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:57.335&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:57.533 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Status] status update should update status field after client-go reconnection" classname="nginx-ingress-controller e2e suite" status="passed" time="80.044380755">
-              <system-err>&gt; Enter [BeforeEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.249&#xA;&lt; Exit [BeforeEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:26.794 (7.545s)&#xA;&gt; Enter [It] should update status field after client-go reconnection - /go/src/k8s.io/ingress-nginx/test/e2e/status/update.go:43 @ 04/04/23 18:04:26.794&#xA;Apr  4 18:04:26.794: INFO: Asynchronously running &#39;/bin/bash -c /usr/local/bin/kubectl proxy --accept-hosts=.* --address=0.0.0.0 --port=0&#39;&#xA;Apr  4 18:04:49.019: INFO: waiting for leader election and initial status update&#xA;Apr  4 18:05:29.033: INFO: Asynchronously running &#39;/bin/bash -c /usr/local/bin/kubectl proxy --accept-hosts=.* --address=0.0.0.0 --port=42431&#39;&#xA;&lt; Exit [It] should update status field after client-go reconnection - /go/src/k8s.io/ingress-nginx/test/e2e/status/update.go:43 @ 04/04/23 18:05:39.069 (1m12.275s)&#xA;&gt; Enter [AfterEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:39.069&#xA;&lt; Exit [AfterEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:39.293 (225ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1M" classname="nginx-ingress-controller e2e suite" status="passed" time="21.355109571">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:39.294&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:46.218 (6.925s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:05:46.218&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:05:50.239 (4.02s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1M - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:123 @ 04/04/23 18:05:50.239&#xA;&lt; Exit [It] should set client_body_buffer_size to 1M - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:123 @ 04/04/23 18:06:00.422 (10.184s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:00.422&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:00.649 (227ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Dynamic $proxy_host should exist a proxy_host" classname="nginx-ingress-controller e2e suite" status="passed" time="21.314347362">
-              <system-err>&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:00.649&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:07.542 (6.893s)&#xA;&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 04/04/23 18:06:07.542&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 04/04/23 18:06:11.569 (4.027s)&#xA;&gt; Enter [It] should exist a proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:36 @ 04/04/23 18:06:11.569&#xA;&lt; Exit [It] should exist a proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:36 @ 04/04/23 18:06:21.772 (10.203s)&#xA;&gt; Enter [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:21.772&#xA;&lt; Exit [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:21.963 (191ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] add-headers Add multiple custom headers" classname="nginx-ingress-controller e2e suite" status="passed" time="28.410685853">
-              <system-err>&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:21.964&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:28.888 (6.924s)&#xA;&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 04/04/23 18:06:28.888&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 04/04/23 18:06:39.938 (11.05s)&#xA;&gt; Enter [It] Add multiple custom headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:65 @ 04/04/23 18:06:39.938&#xA;&lt; Exit [It] Add multiple custom headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:65 @ 04/04/23 18:06:50.151 (10.213s)&#xA;&gt; Enter [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:50.151&#xA;&lt; Exit [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:50.374 (223ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if mainline ingress is created before the canary ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="32.384106483">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:50.375&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:57.307 (6.932s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:06:57.307&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:05.355 (8.048s)&#xA;&gt; Enter [It] should route requests to the correct upstream if mainline ingress is created before the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:161 @ 04/04/23 18:07:05.355&#xA;STEP: routing requests destined for the mainline ingress to the maineline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:185 @ 04/04/23 18:07:22.519&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:195 @ 04/04/23 18:07:22.526&#xA;&lt; Exit [It] should route requests to the correct upstream if mainline ingress is created before the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:161 @ 04/04/23 18:07:22.534 (17.179s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:22.534&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:22.759 (225ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check proxy header hash size should set proxy-headers-hash-max-size" classname="nginx-ingress-controller e2e suite" status="passed" time="28.404384502">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:22.759&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:29.671 (6.912s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:07:29.671&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:07:40.702 (11.031s)&#xA;&gt; Enter [It] should set proxy-headers-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:68 @ 04/04/23 18:07:40.702&#xA;&lt; Exit [It] should set proxy-headers-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:68 @ 04/04/23 18:07:50.922 (10.22s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:50.922&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:51.164 (242ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress with different controller class" classname="nginx-ingress-controller e2e suite" status="passed" time="29.290705972">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:51.164&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:59.041 (7.877s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:07:59.041&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:08:03.067 (4.025s)&#xA;&gt; Enter [It] should ignore Ingress with different controller class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:104 @ 04/04/23 18:08:03.067&#xA;&lt; Exit [It] should ignore Ingress with different controller class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:104 @ 04/04/23 18:08:20.253 (17.187s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:20.253&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:20.455 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format-escape-none enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="31.867930552">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:20.455&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:27.83 (7.375s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:08:27.83&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:08:38.87 (11.04s)&#xA;&gt; Enter [It] log-format-escape-none enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:128 @ 04/04/23 18:08:38.87&#xA;&lt; Exit [It] log-format-escape-none enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:128 @ 04/04/23 18:08:52.098 (13.228s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:52.098&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:52.323 (225ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should return status code 200 when signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="25.339688675">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:52.323&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:59.233 (6.909s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:08:59.233&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:09:03.258 (4.025s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:09:03.258&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:09:17.471 (14.213s)&#xA;&gt; Enter [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:485 @ 04/04/23 18:09:17.471&#xA;&lt; Exit [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:485 @ 04/04/23 18:09:17.477 (6ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:17.477&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:17.663 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] [Flag] default-ssl-certificate uses default ssl certificate for host based ingress when configured certificate does not match host" classname="nginx-ingress-controller e2e suite" status="passed" time="32.685166334">
-              <system-err>&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:17.664&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:24.618 (6.955s)&#xA;&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 04/04/23 18:09:24.618&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 04/04/23 18:09:37.752 (13.134s)&#xA;&gt; Enter [It] uses default ssl certificate for host based ingress when configured certificate does not match host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:80 @ 04/04/23 18:09:37.752&#xA;STEP: making sure new ingress is deployed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:90 @ 04/04/23 18:09:44.916&#xA;STEP: making sure the configured default ssl certificate is being used - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:96 @ 04/04/23 18:09:48.094&#xA;&lt; Exit [It] uses default ssl certificate for host based ingress when configured certificate does not match host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:80 @ 04/04/23 18:09:50.119 (12.367s)&#xA;&gt; Enter [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:50.119&#xA;&lt; Exit [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:50.349 (230ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - GRPC should return OK for service with backend protocol GRPC" classname="nginx-ingress-controller e2e suite" status="passed" time="21.305689365">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:50.349&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:57.22 (6.871s)&#xA;&gt; Enter [It] should return OK for service with backend protocol GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:68 @ 04/04/23 18:09:57.22&#xA;&lt; Exit [It] should return OK for service with backend protocol GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:68 @ 04/04/23 18:10:11.466 (14.247s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:11.466&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:11.655 (189ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should be enabled with default settings" classname="nginx-ingress-controller e2e suite" status="passed" time="17.220763513">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:11.655&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:18.528 (6.872s)&#xA;&gt; Enter [It] should be enabled with default settings - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:39 @ 04/04/23 18:10:18.528&#xA;&lt; Exit [It] should be enabled with default settings - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:39 @ 04/04/23 18:10:28.683 (10.155s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:28.683&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:28.876 (193ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should include opentracing_trust_incoming_span off directive when disabled" classname="nginx-ingress-controller e2e suite" status="passed" time="28.309530893">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:28.876&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:35.756 (6.88s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:10:35.756&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:10:39.781 (4.025s)&#xA;&gt; Enter [It] should include opentracing_trust_incoming_span off directive when disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:85 @ 04/04/23 18:10:39.781&#xA;&lt; Exit [It] should include opentracing_trust_incoming_span off directive when disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:85 @ 04/04/23 18:10:56.965 (17.184s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:56.965&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:57.186 (221ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:10:57.186&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:10:57.186 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should warn user when use-regex is true and session-cookie-path is not set" classname="nginx-ingress-controller e2e suite" status="passed" time="25.399109696">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:57.186&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:05.078 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:11:05.078&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:11:09.104 (4.027s)&#xA;&gt; Enter [It] should warn user when use-regex is true and session-cookie-path is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:294 @ 04/04/23 18:11:09.104&#xA;&lt; Exit [It] should warn user when use-regex is true and session-cookie-path is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:294 @ 04/04/23 18:11:22.32 (13.216s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:22.32&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:22.585 (265ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to &#39;&#39; and use ajp_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="21.471021469">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:22.585&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:29.564 (6.979s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:11:29.564&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:11:33.585 (4.021s)&#xA;&gt; Enter [It] should set backend protocol to &#39;&#39; and use ajp_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:109 @ 04/04/23 18:11:33.585&#xA;&lt; Exit [It] should set backend protocol to &#39;&#39; and use ajp_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:109 @ 04/04/23 18:11:43.812 (10.227s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:43.812&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:44.056 (244ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] stream-snippet should add stream-snippet and drop annotations per admin config" classname="nginx-ingress-controller e2e suite" status="passed" time="39.472773565">
-              <system-err>&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:44.057&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:52.078 (8.021s)&#xA;&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 04/04/23 18:11:52.078&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 04/04/23 18:11:54.141 (2.063s)&#xA;&gt; Enter [It] should add stream-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:85 @ 04/04/23 18:11:54.141&#xA;&lt; Exit [It] should add stream-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:85 @ 04/04/23 18:12:23.359 (29.218s)&#xA;&gt; Enter [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:23.359&#xA;&lt; Exit [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:23.53 (171ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should not set secure in cookie with provided false annotation on http" classname="nginx-ingress-controller e2e suite" status="passed" time="21.302342634">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:23.53&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:30.423 (6.893s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:12:30.423&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:12:34.455 (4.032s)&#xA;&gt; Enter [It] should not set secure in cookie with provided false annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:435 @ 04/04/23 18:12:34.455&#xA;&lt; Exit [It] should not set secure in cookie with provided false annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:435 @ 04/04/23 18:12:44.621 (10.166s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:44.621&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:44.832 (211ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [TCP] tcp-services should expose an ExternalName TCP service" classname="nginx-ingress-controller e2e suite" status="passed" time="11.0379693">
-              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:44.833&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:52.267 (7.434s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:12:52.267&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:12:52.272 (5ms)&#xA;&gt; Enter [It] should expose an ExternalName TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:80 @ 04/04/23 18:12:52.272&#xA;&lt; Exit [It] should expose an ExternalName TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:80 @ 04/04/23 18:12:55.617 (3.345s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:55.617&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:55.87 (253ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured removes HTTPS configuration when we delete TLS spec" classname="nginx-ingress-controller e2e suite" status="passed" time="41.41020715">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:55.871&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:02.782 (6.911s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:13:02.782&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:13:06.807 (4.025s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:13:06.807&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:13:23.944&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:13:32.097&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:13:32.106 (25.299s)&#xA;&gt; Enter [It] removes HTTPS configuration when we delete TLS spec - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:233 @ 04/04/23 18:13:32.106&#xA;&lt; Exit [It] removes HTTPS configuration when we delete TLS spec - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:233 @ 04/04/23 18:13:37.112 (5.005s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:37.112&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:37.281 (169ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should not exists opentracing_location_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="29.339631623">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:37.281&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:45.19 (7.908s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:13:45.19&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:13:49.209 (4.019s)&#xA;&gt; Enter [It] should not exists opentracing_location_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:130 @ 04/04/23 18:13:49.209&#xA;&lt; Exit [It] should not exists opentracing_location_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:130 @ 04/04/23 18:14:06.443 (17.233s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:06.443&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:06.621 (178ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:14:06.621&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:14:06.621 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates picks up the certificate when we add TLS spec to existing ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="26.612276222">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:06.621&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:13.543 (6.921s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:14:13.543&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:14:17.569 (4.026s)&#xA;&gt; Enter [It] picks up the certificate when we add TLS spec to existing ingress - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:45 @ 04/04/23 18:14:17.569&#xA;&lt; Exit [It] picks up the certificate when we add TLS spec to existing ingress - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:45 @ 04/04/23 18:14:33.037 (15.469s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:33.037&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:33.234 (196ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] nginx-configuration fails when using root directive" classname="nginx-ingress-controller e2e suite" status="passed" time="62.038566962">
-              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:14:33.234&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:14:35.237 (2.003s)&#xA;&gt; Enter [It] fails when using root directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:124 @ 04/04/23 18:14:35.237&#xA;&lt; Exit [It] fails when using root directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:124 @ 04/04/23 18:15:35.27 (1m0.034s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:15:35.27&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:15:35.272 (2ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should fail to use longest match for documented warning" classname="nginx-ingress-controller e2e suite" status="passed" time="27.307439756">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:35.273&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:43.177 (7.905s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:15:43.177&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:15:45.196 (2.019s)&#xA;&gt; Enter [It] should fail to use longest match for documented warning - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:158 @ 04/04/23 18:15:45.196&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:161 @ 04/04/23 18:15:45.196&#xA;STEP: creating an ingress definition with the use-regex annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:165 @ 04/04/23 18:15:52.212&#xA;STEP: check that &#39;/foo/bar/bar&#39; does not match the longest exact path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:179 @ 04/04/23 18:16:02.371&#xA;&lt; Exit [It] should fail to use longest match for documented warning - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:158 @ 04/04/23 18:16:02.374 (17.178s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:02.374&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:02.58 (206ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should not exists opentelemetry_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="32.017142107">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:02.581&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:12.465 (9.885s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:16:12.465&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:16:16.495 (4.03s)&#xA;&gt; Enter [It] should not exists opentelemetry_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:89 @ 04/04/23 18:16:16.495&#xA;&lt; Exit [It] should not exists opentelemetry_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:89 @ 04/04/23 18:16:33.975 (17.48s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:33.975&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:34.598 (623ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:16:34.598&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:16:34.598 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should disable modsecurity using &#39;modsecurity off;&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="26.218874638">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:34.603&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:41.474 (6.871s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:16:41.474&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:16:43.493 (2.019s)&#xA;&gt; Enter [It] should disable modsecurity using &#39;modsecurity off;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:132 @ 04/04/23 18:16:43.493&#xA;&lt; Exit [It] should disable modsecurity using &#39;modsecurity off;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:132 @ 04/04/23 18:17:00.623 (17.13s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:00.623&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:00.822 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set the request count to upstream server through one keep alive connection" classname="nginx-ingress-controller e2e suite" status="passed" time="28.371746836">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:00.823&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:07.712 (6.89s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:17:07.712&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:17:18.751 (11.038s)&#xA;&gt; Enter [It] should set the request count to upstream server through one keep alive connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:86 @ 04/04/23 18:17:18.751&#xA;&lt; Exit [It] should set the request count to upstream server through one keep alive connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:86 @ 04/04/23 18:17:28.957 (10.206s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:28.957&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:29.194 (237ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the keep alive should set keepalive_requests" classname="nginx-ingress-controller e2e suite" status="passed" time="31.301174976">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:29.195&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:39.14 (9.946s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:17:39.14&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:17:50.186 (11.045s)&#xA;&gt; Enter [It] should set keepalive_requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:48 @ 04/04/23 18:17:50.186&#xA;&lt; Exit [It] should set keepalive_requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:48 @ 04/04/23 18:18:00.312 (10.127s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:00.312&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:00.496 (184ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should set gzip_comp_level to 4" classname="nginx-ingress-controller e2e suite" status="passed" time="24.296191576">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:00.496&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:07.399 (6.903s)&#xA;&gt; Enter [It] should set gzip_comp_level to 4 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:56 @ 04/04/23 18:18:07.399&#xA;&lt; Exit [It] should set gzip_comp_level to 4 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:56 @ 04/04/23 18:18:24.593 (17.194s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:24.593&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:24.792 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set sticky cookie SERVERID" classname="nginx-ingress-controller e2e suite" status="passed" time="21.367955213">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:24.793&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:31.73 (6.937s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:18:31.73&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:18:35.753 (4.023s)&#xA;&gt; Enter [It] should set sticky cookie SERVERID - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:42 @ 04/04/23 18:18:35.753&#xA;&lt; Exit [It] should set sticky cookie SERVERID - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:42 @ 04/04/23 18:18:45.94 (10.187s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:45.94&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:46.161 (221ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - missing origins (should allow all origins)" classname="nginx-ingress-controller e2e suite" status="passed" time="19.125716488">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:46.161&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:54.022 (7.861s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:54.022&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:58.047 (4.025s)&#xA;&gt; Enter [It] should allow - missing origins (should allow all origins) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:571 @ 04/04/23 18:18:58.047&#xA;&lt; Exit [It] should allow - missing origins (should allow all origins) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:571 @ 04/04/23 18:19:05.106 (7.059s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:05.106&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:05.287 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should not set affinity across all server locations when using separate ingresses" classname="nginx-ingress-controller e2e suite" status="passed" time="29.276973597">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:05.287&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:13.171 (7.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:19:13.171&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:19:17.198 (4.027s)&#xA;&gt; Enter [It] should not set affinity across all server locations when using separate ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:320 @ 04/04/23 18:19:17.198&#xA;&lt; Exit [It] should not set affinity across all server locations when using separate ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:320 @ 04/04/23 18:19:34.328 (17.129s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:34.328&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:34.564 (236ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName without a port defined" classname="nginx-ingress-controller e2e suite" status="passed" time="18.63305273">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:34.564&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:42.455 (7.891s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName without a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:95 @ 04/04/23 18:19:42.455&#xA;&lt; Exit [It] should return 200 for service type=ExternalName without a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:95 @ 04/04/23 18:19:52.995 (10.54s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:52.995&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:53.197 (202ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] enables access logging for default backend" classname="nginx-ingress-controller e2e suite" status="skipped" time="7.568859087">
-              <skipped message="skipped - enable-access-log-for-default-backend"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:53.198&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:00.144 (6.946s)&#xA;&gt; Enter [It] enables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:88 @ 04/04/23 18:20:00.144&#xA;[SKIPPED] enable-access-log-for-default-backend&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:90 @ 04/04/23 18:20:00.144&#xA;&lt; Exit [It] enables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:88 @ 04/04/23 18:20:00.144 (0s)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:00.144&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:00.767 (622ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should overwrite Foo header with auth response" classname="nginx-ingress-controller e2e suite" status="passed" time="31.890098966">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:00.767&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:09.884 (9.117s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:20:09.884&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:20:13.952 (4.068s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:20:13.952&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:20:28.231 (14.28s)&#xA;&gt; Enter [It] should overwrite Foo header with auth response - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:529 @ 04/04/23 18:20:28.231&#xA;&lt; Exit [It] should overwrite Foo header with auth response - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:529 @ 04/04/23 18:20:32.452 (4.22s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:32.452&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:32.657 (205ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should use ~* location modifier if regex annotation is present" classname="nginx-ingress-controller e2e suite" status="passed" time="31.515497703">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:32.657&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:39.572 (6.914s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:20:39.572&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:20:43.594 (4.022s)&#xA;&gt; Enter [It] should use ~* location modifier if regex annotation is present - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:111 @ 04/04/23 18:20:43.594&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:114 @ 04/04/23 18:20:43.594&#xA;STEP: creating an ingress definition with the use-regex amd rewrite-target annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:123 @ 04/04/23 18:20:53.786&#xA;STEP: ensuring &#39;/foo&#39; matches &#39;~* ^/foo&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:137 @ 04/04/23 18:21:03.945&#xA;STEP: ensuring &#39;/foo/bar&#39; matches &#39;~* ^/foo.+&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:147 @ 04/04/23 18:21:03.953&#xA;&lt; Exit [It] should use ~* location modifier if regex annotation is present - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:111 @ 04/04/23 18:21:03.959 (20.365s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:03.959&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:04.173 (214ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured but Authorization header is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="23.147807317">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:04.173&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:12.085 (7.912s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:12.085&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:16.104 (4.019s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:89 @ 04/04/23 18:21:16.104&#xA;&lt; Exit [It] should return status code 401 when authentication is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:89 @ 04/04/23 18:21:27.134 (11.029s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:27.134&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:27.321 (187ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] mirror-* should disable mirror-request-body" classname="nginx-ingress-controller e2e suite" status="passed" time="21.355247118">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:27.321&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:34.238 (6.917s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:21:34.238&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:21:38.265 (4.026s)&#xA;&gt; Enter [It] should disable mirror-request-body - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:67 @ 04/04/23 18:21:38.265&#xA;&lt; Exit [It] should disable mirror-request-body - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:67 @ 04/04/23 18:21:48.462 (10.197s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:48.462&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:48.677 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* with invalid auth-url should deny whole location should return 503 (location was denied)" classname="nginx-ingress-controller e2e suite" status="passed" time="21.341137941">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:48.677&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:55.595 (6.918s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:55.595&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:59.616 (4.02s)&#xA;&gt; Enter [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 04/04/23 18:21:59.616&#xA;&lt; Exit [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 04/04/23 18:22:09.78 (10.165s)&#xA;&gt; Enter [It] should return 503 (location was denied) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:879 @ 04/04/23 18:22:09.78&#xA;&lt; Exit [It] should return 503 (location was denied) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:879 @ 04/04/23 18:22:09.787 (6ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:09.787&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:10.018 (231ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should setup proxy cookies" classname="nginx-ingress-controller e2e suite" status="passed" time="22.293403591">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:10.018&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:17.91 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:22:17.91&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:22:21.937 (4.027s)&#xA;&gt; Enter [It] should setup proxy cookies - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:215 @ 04/04/23 18:22:21.937&#xA;&lt; Exit [It] should setup proxy cookies - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:215 @ 04/04/23 18:22:32.141 (10.205s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:32.141&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:32.312 (170ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class Without IngressClass Cluster scoped Permission should ignore Ingress with only IngressClassName" classname="nginx-ingress-controller e2e suite" status="passed" time="28.459532866">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:32.312&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:39.246 (6.934s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:22:39.246&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:22:43.274 (4.028s)&#xA;&gt; Enter [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 04/04/23 18:22:43.274&#xA;&lt; Exit [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 04/04/23 18:22:50.32 (7.047s)&#xA;&gt; Enter [It] should ignore Ingress with only IngressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:652 @ 04/04/23 18:22:50.32&#xA;&lt; Exit [It] should ignore Ingress with only IngressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:652 @ 04/04/23 18:23:00.536 (10.216s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:00.536&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:00.771 (235ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] enable-ssl-passthrough With enable-ssl-passthrough enabled should enable ssl-passthrough-proxy-port on a different port" classname="nginx-ingress-controller e2e suite" status="passed" time="29.495200538">
-              <system-err>&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:00.772&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:07.648 (6.876s)&#xA;&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 04/04/23 18:23:07.648&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 04/04/23 18:23:18.858 (11.21s)&#xA;&gt; Enter [It] should enable ssl-passthrough-proxy-port on a different port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:56 @ 04/04/23 18:23:18.858&#xA;&lt; Exit [It] should enable ssl-passthrough-proxy-port on a different port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:56 @ 04/04/23 18:23:30.073 (11.215s)&#xA;&gt; Enter [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:30.073&#xA;&lt; Exit [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:30.267 (194ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] change default settings should apply the annotation to the default backend" classname="nginx-ingress-controller e2e suite" status="passed" time="21.28407974">
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:30.267&#xA;&lt; Exit [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:37.168 (6.901s)&#xA;&gt; Enter [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:34 @ 04/04/23 18:23:37.168&#xA;&lt; Exit [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:34 @ 04/04/23 18:23:41.193 (4.024s)&#xA;&gt; Enter [It] should apply the annotation to the default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:38 @ 04/04/23 18:23:41.193&#xA;&lt; Exit [It] should apply the annotation to the default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:38 @ 04/04/23 18:23:51.36 (10.167s)&#xA;&gt; Enter [AfterEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:51.36&#xA;&lt; Exit [AfterEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:51.551 (192ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Geoip2 should include geoip2 line in config when enabled and db file exists" classname="nginx-ingress-controller e2e suite" status="passed" time="31.122649161">
-              <system-err>&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:51.552&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:58.412 (6.86s)&#xA;&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 04/04/23 18:23:58.412&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 04/04/23 18:24:02.44 (4.027s)&#xA;&gt; Enter [It] should include geoip2 line in config when enabled and db file exists - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:46 @ 04/04/23 18:24:02.44&#xA;Apr  4 18:24:11.771: INFO: Connecting to github.com (140.82.113.4:443)&#xA;Connecting to github.com (140.82.113.4:443)&#xA;Connecting to raw.githubusercontent.com (185.199.108.133:443)&#xA;saving to &#39;/etc/nginx/geoip/GeoLite2-Country.mmdb&#39;&#xA;GeoLite2-Country.mmd 100%!|(MISSING)********************************| 17952  0:00:00 ETA&#xA;&#39;/etc/nginx/geoip/GeoLite2-Country.mmdb&#39; saved&#xA;&#xA;&lt; Exit [It] should include geoip2 line in config when enabled and db file exists - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:46 @ 04/04/23 18:24:22.088 (19.648s)&#xA;&gt; Enter [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:22.088&#xA;&lt; Exit [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:22.674 (586ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should allow for custom rewrite parameters" classname="nginx-ingress-controller e2e suite" status="passed" time="22.284349289">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:22.675&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:30.572 (7.897s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:24:30.572&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:24:34.603 (4.031s)&#xA;&gt; Enter [It] should allow for custom rewrite parameters - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:190 @ 04/04/23 18:24:34.603&#xA;STEP: creating an ingress definition with the use-regex annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:193 @ 04/04/23 18:24:34.603&#xA;STEP: check that &#39;/foo/bar/bar&#39; redirects to custom rewrite - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:206 @ 04/04/23 18:24:44.755&#xA;&lt; Exit [It] should allow for custom rewrite parameters - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:190 @ 04/04/23 18:24:44.757 (10.154s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:44.757&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:44.959 (202ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check server names hash size should set server_names_hash_bucket_size" classname="nginx-ingress-controller e2e suite" status="passed" time="30.356197074">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:44.96&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:53.864 (8.905s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:24:53.864&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:25:04.899 (11.035s)&#xA;&gt; Enter [It] should set server_names_hash_bucket_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:40 @ 04/04/23 18:25:04.899&#xA;&lt; Exit [It] should set server_names_hash_bucket_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:40 @ 04/04/23 18:25:15.061 (10.162s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:15.061&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:15.316 (255ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a TLS enabled ingress should set X-Forwarded-Port header to 443" classname="nginx-ingress-controller e2e suite" status="passed" time="44.268466762">
-              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:15.316&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:39.846 (24.53s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:25:39.846&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:25:47.041 (7.195s)&#xA;&gt; Enter [It] should set X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:70 @ 04/04/23 18:25:47.041&#xA;&lt; Exit [It] should set X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:70 @ 04/04/23 18:25:59.374 (12.333s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:59.374&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:59.585 (211ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-sync-events should create sync events (default)" classname="nginx-ingress-controller e2e suite" status="passed" time="21.291606043">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:59.585&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:06.445 (6.86s)&#xA;&gt; Enter [It] should create sync events (default) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:35 @ 04/04/23 18:26:06.445&#xA;&lt; Exit [It] should create sync events (default) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:35 @ 04/04/23 18:26:20.681 (14.236s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:20.681&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:20.877 (196ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - unmatching origin with wildcard origin (2 subdomains)" classname="nginx-ingress-controller e2e suite" status="passed" time="18.145584685">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:20.877&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:27.751 (6.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:26:27.751&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:26:31.787 (4.036s)&#xA;&gt; Enter [It] should not allow - unmatching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:468 @ 04/04/23 18:26:31.787&#xA;&lt; Exit [It] should not allow - unmatching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:468 @ 04/04/23 18:26:38.82 (7.032s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:38.82&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:39.022 (203ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-send-timeout should not set invalid proxy send timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="29.217298979">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:39.023&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:46.929 (7.906s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 04/04/23 18:26:46.929&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 04/04/23 18:26:50.949 (4.02s)&#xA;&gt; Enter [It] should not set invalid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:52 @ 04/04/23 18:26:50.949&#xA;&lt; Exit [It] should not set invalid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:52 @ 04/04/23 18:27:08.052 (17.103s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:08.052&#xA;&lt; Exit [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:08.24 (188ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check server names hash size should set server_names_hash_max_size" classname="nginx-ingress-controller e2e suite" status="passed" time="29.415884826">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:08.24&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:16.131 (7.891s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:27:16.131&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:27:27.187 (11.056s)&#xA;&gt; Enter [It] should set server_names_hash_max_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:48 @ 04/04/23 18:27:27.187&#xA;&lt; Exit [It] should set server_names_hash_max_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:48 @ 04/04/23 18:27:37.411 (10.224s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:37.411&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:37.656 (245ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set proxy client-max-body-size to 8m" classname="nginx-ingress-controller e2e suite" status="passed" time="21.297633873">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:37.657&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:44.535 (6.879s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:27:44.535&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:27:48.555 (4.02s)&#xA;&gt; Enter [It] should set proxy client-max-body-size to 8m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:85 @ 04/04/23 18:27:48.555&#xA;&lt; Exit [It] should set proxy client-max-body-size to 8m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:85 @ 04/04/23 18:27:58.71 (10.155s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:58.71&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:58.954 (244ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not break functionality with extra domain" classname="nginx-ingress-controller e2e suite" status="passed" time="19.187139443">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:58.955&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:06.864 (7.909s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:28:06.864&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:28:10.897 (4.033s)&#xA;&gt; Enter [It] should not break functionality with extra domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:314 @ 04/04/23 18:28:10.897&#xA;&lt; Exit [It] should not break functionality with extra domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:314 @ 04/04/23 18:28:17.933 (7.036s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:17.933&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:18.142 (209ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* proxy-ssl-location-only flag should change the nginx config server part" classname="nginx-ingress-controller e2e suite" status="passed" time="43.288812125">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:18.142&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:26.105 (7.963s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:28:26.105&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:28:28.133 (2.028s)&#xA;&gt; Enter [It] proxy-ssl-location-only flag should change the nginx config server part - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:150 @ 04/04/23 18:28:28.133&#xA;&lt; Exit [It] proxy-ssl-location-only flag should change the nginx config server part - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:150 @ 04/04/23 18:29:01.214 (33.081s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:01.214&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:01.431 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* with invalid auth-url should deny whole location should add error to the config" classname="nginx-ingress-controller e2e suite" status="passed" time="155.376018795">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:01.431&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:19.232 (2m17.801s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:19.232&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:23.279 (4.047s)&#xA;&gt; Enter [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 04/04/23 18:31:23.279&#xA;&lt; Exit [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 04/04/23 18:31:33.459 (10.18s)&#xA;&gt; Enter [It] should add error to the config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:887 @ 04/04/23 18:31:33.459&#xA;&lt; Exit [It] should add error to the config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:887 @ 04/04/23 18:31:36.583 (3.124s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:36.583&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:36.807 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] SSL should return a self generated SSL certificate" classname="nginx-ingress-controller e2e suite" status="passed" time="12.194301845">
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:36.808&#xA;&lt; Exit [BeforeEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:43.735 (6.927s)&#xA;&gt; Enter [It] should return a self generated SSL certificate - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:29 @ 04/04/23 18:31:43.735&#xA;STEP: checking SSL Certificate using the NGINX IP address - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:30 @ 04/04/23 18:31:43.735&#xA;STEP: checking SSL Certificate using the NGINX catch all server - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:45 @ 04/04/23 18:31:48.771&#xA;&lt; Exit [It] should return a self generated SSL certificate - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:29 @ 04/04/23 18:31:48.798 (5.063s)&#xA;&gt; Enter [AfterEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:48.798&#xA;&lt; Exit [AfterEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:49.002 (204ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should return status code 200 when signed in after auth backend is deleted" classname="nginx-ingress-controller e2e suite" status="passed" time="68.873387156">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:49.002&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:55.884 (6.881s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:55.884&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:59.898 (4.014s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:31:59.898&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:32:04.919&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:32:15.067&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:32:25.279&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:32:35.453&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:32:50.643 (50.746s)&#xA;&gt; Enter [It] should return status code 200 when signed in after auth backend is deleted  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:772 @ 04/04/23 18:32:50.643&#xA;&lt; Exit [It] should return status code 200 when signed in after auth backend is deleted  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:772 @ 04/04/23 18:32:57.666 (7.022s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:57.666&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:57.876 (210ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-protocols" classname="nginx-ingress-controller e2e suite" status="passed" time="21.67574864">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:57.876&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:04.793 (6.917s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:33:04.793&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:33:08.814 (4.021s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-protocols - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:122 @ 04/04/23 18:33:08.814&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-protocols - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:122 @ 04/04/23 18:33:19.338 (10.524s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:19.338&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:19.552 (213ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should be disabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="10.227903498">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:19.552&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:26.442 (6.89s)&#xA;&gt; Enter [It] should be disabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:32 @ 04/04/23 18:33:26.442&#xA;&lt; Exit [It] should be disabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:32 @ 04/04/23 18:33:29.606 (3.164s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:29.606&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:29.78 (174ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinitymode Balanced affinity mode should balance" classname="nginx-ingress-controller e2e suite" status="passed" time="25.347106236">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:29.78&#xA;&lt; Exit [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:36.668 (6.887s)&#xA;&gt; Enter [It] Balanced affinity mode should balance - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:34 @ 04/04/23 18:33:36.668&#xA;&lt; Exit [It] Balanced affinity mode should balance - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:34 @ 04/04/23 18:33:54.927 (18.259s)&#xA;&gt; Enter [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:54.927&#xA;&lt; Exit [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:55.127 (200ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-next-upstream should build proxy next upstream using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="29.357042378">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:55.128&#xA;&lt; Exit [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:03.016 (7.888s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:32 @ 04/04/23 18:34:03.016&#xA;&lt; Exit [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:32 @ 04/04/23 18:34:07.036 (4.021s)&#xA;&gt; Enter [It] should build proxy next upstream using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:36 @ 04/04/23 18:34:07.036&#xA;&lt; Exit [It] should build proxy next upstream using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:36 @ 04/04/23 18:34:24.255 (17.219s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:24.255&#xA;&lt; Exit [AfterEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:24.485 (230ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to off" classname="nginx-ingress-controller e2e suite" status="passed" time="21.295257079">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:24.485&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:31.385 (6.9s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:34:31.385&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:34:35.427 (4.042s)&#xA;&gt; Enter [It] should set proxy_redirect to off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:36 @ 04/04/23 18:34:35.427&#xA;&lt; Exit [It] should set proxy_redirect to off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:36 @ 04/04/23 18:34:45.603 (10.176s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:45.603&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:45.78 (178ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should not exists opentracing_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="28.296945502">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:45.781&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:52.66 (6.879s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:34:52.66&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:34:56.689 (4.029s)&#xA;&gt; Enter [It] should not exists opentracing_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:100 @ 04/04/23 18:34:56.689&#xA;&lt; Exit [It] should not exists opentracing_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:100 @ 04/04/23 18:35:13.844 (17.155s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:13.844&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:14.078 (234ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:35:14.078&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:35:14.078 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] influxdb-* when influxdb is enabled should send the request metric to the influxdb server" classname="nginx-ingress-controller e2e suite" status="passed" time="45.55392001">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:14.078&#xA;&lt; Exit [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:22.011 (7.933s)&#xA;&gt; Enter [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:42 @ 04/04/23 18:35:22.011&#xA;&lt; Exit [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:42 @ 04/04/23 18:35:38.056 (16.045s)&#xA;&gt; Enter [It] should send the request metric to the influxdb server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:48 @ 04/04/23 18:35:38.056&#xA;&lt; Exit [It] should send the request metric to the influxdb server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:48 @ 04/04/23 18:35:59.417 (21.362s)&#xA;&gt; Enter [AfterEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:59.417&#xA;&lt; Exit [AfterEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:59.632 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should enable opentracing using datadog" classname="nginx-ingress-controller e2e suite" status="passed" time="31.178047596">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:59.632&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:06.509 (6.876s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:36:06.509&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:36:10.532 (4.023s)&#xA;&gt; Enter [It] should enable opentracing using datadog - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:241 @ 04/04/23 18:36:10.532&#xA;&lt; Exit [It] should enable opentracing using datadog - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:241 @ 04/04/23 18:36:30.574 (20.042s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:30.574&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:30.81 (237ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:36:30.81&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:36:30.81 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] definition without host should set ingress details variables for ingresses without a host" classname="nginx-ingress-controller e2e suite" status="passed" time="21.276931352">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:30.811&#xA;&lt; Exit [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:37.689 (6.878s)&#xA;&gt; Enter [It] should set ingress details variables for ingresses without a host - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:34 @ 04/04/23 18:36:37.689&#xA;&lt; Exit [It] should set ingress details variables for ingresses without a host - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:34 @ 04/04/23 18:36:51.912 (14.223s)&#xA;&gt; Enter [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:51.912&#xA;&lt; Exit [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:52.088 (176ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] main-snippet should add value of main-snippet setting to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="18.324672874">
-              <system-err>&gt; Enter [BeforeEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:52.088&#xA;&lt; Exit [BeforeEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:59.999 (7.911s)&#xA;&gt; Enter [It] should add value of main-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/main_snippet.go:31 @ 04/04/23 18:36:59.999&#xA;&lt; Exit [It] should add value of main-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/main_snippet.go:31 @ 04/04/23 18:37:10.187 (10.188s)&#xA;&gt; Enter [AfterEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:10.187&#xA;&lt; Exit [AfterEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:10.413 (225ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="28.358772993">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:10.413&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:17.279 (6.866s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:37:17.279&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:37:21.337 (4.058s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:532 @ 04/04/23 18:37:21.337&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;DoCananry&#39; and header-value is &#39;DoCanary&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:557 @ 04/04/23 18:37:38.545&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:532 @ 04/04/23 18:37:38.552 (17.215s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:38.552&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:38.772 (219ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should serve Ingress when class is added" classname="nginx-ingress-controller e2e suite" status="passed" time="36.494045555">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:38.772&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:45.664 (6.892s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:37:45.664&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:37:49.681 (4.017s)&#xA;&gt; Enter [It] should serve Ingress when class is added - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:257 @ 04/04/23 18:37:49.681&#xA;&lt; Exit [It] should serve Ingress when class is added - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:257 @ 04/04/23 18:38:15.087 (25.406s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:15.087&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:15.266 (179ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - GRPC should return OK for service with backend protocol GRPCS" classname="nginx-ingress-controller e2e suite" status="passed" time="24.346743802">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:15.266&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:23.144 (7.877s)&#xA;&gt; Enter [It] should return OK for service with backend protocol GRPCS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:199 @ 04/04/23 18:38:23.144&#xA;&lt; Exit [It] should return OK for service with backend protocol GRPCS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:199 @ 04/04/23 18:38:39.406 (16.262s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:39.406&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:39.613 (207ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] annotation-global-rate-limit generates correct configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="44.912006655">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:39.613&#xA;&lt; Exit [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:46.507 (6.894s)&#xA;&gt; Enter [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:34 @ 04/04/23 18:38:46.507&#xA;&lt; Exit [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:34 @ 04/04/23 18:38:50.531 (4.023s)&#xA;&gt; Enter [It] generates correct configuration - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:38 @ 04/04/23 18:38:50.531&#xA;STEP: regenerating the correct configuration after update - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:65 @ 04/04/23 18:39:12.735&#xA;&lt; Exit [It] generates correct configuration - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:38 @ 04/04/23 18:39:23.972 (33.441s)&#xA;&gt; Enter [AfterEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:23.972&#xA;&lt; Exit [AfterEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:24.525 (553ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="44.961262468">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:24.526&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:32.928 (8.402s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:39:32.928&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:39:36.954 (4.026s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:67 @ 04/04/23 18:39:36.954&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:67 @ 04/04/23 18:40:09.289 (32.335s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:09.289&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:09.487 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] x-forwarded-prefix should not add X-Forwarded-Prefix if the annotation value is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="21.334669278">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:09.487&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:16.38 (6.893s)&#xA;&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 04/04/23 18:40:16.38&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 04/04/23 18:40:20.419 (4.039s)&#xA;&gt; Enter [It] should not add X-Forwarded-Prefix if the annotation value is empty - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:57 @ 04/04/23 18:40:20.419&#xA;&lt; Exit [It] should not add X-Forwarded-Prefix if the annotation value is empty - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:57 @ 04/04/23 18:40:30.626 (10.207s)&#xA;&gt; Enter [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:30.626&#xA;&lt; Exit [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:30.822 (196ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress without IngressClass configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="28.41523425">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:30.822&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:37.735 (6.913s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:40:37.735&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:40:41.759 (4.024s)&#xA;&gt; Enter [It] should ignore Ingress without IngressClass configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:164 @ 04/04/23 18:40:41.759&#xA;&lt; Exit [It] should ignore Ingress without IngressClass configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:164 @ 04/04/23 18:40:58.984 (17.225s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:58.984&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:59.238 (254ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set cookie with domain" classname="nginx-ingress-controller e2e suite" status="passed" time="29.966187459">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.257&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:26.759 (7.502s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:04:26.759&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:04:38.804 (12.045s)&#xA;&gt; Enter [It] should set cookie with domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:225 @ 04/04/23 18:04:38.804&#xA;&lt; Exit [It] should set cookie with domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:225 @ 04/04/23 18:04:49.017 (10.213s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:04:49.017&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:04:49.223 (207ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Nil Service Backend should return 404 when backend service is nil" classname="nginx-ingress-controller e2e suite" status="passed" time="29.349579291">
-              <system-err>&gt; Enter [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:49.225&#xA;&lt; Exit [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:57.104 (7.879s)&#xA;&gt; Enter [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:34 @ 04/04/23 18:04:57.104&#xA;&lt; Exit [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:34 @ 04/04/23 18:05:01.132 (4.029s)&#xA;&gt; Enter [It] should return 404 when backend service is nil - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:38 @ 04/04/23 18:05:01.132&#xA;STEP: setting an ingress with a nil backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:39 @ 04/04/23 18:05:01.132&#xA;&lt; Exit [It] should return 404 when backend service is nil - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:38 @ 04/04/23 18:05:18.375 (17.242s)&#xA;&gt; Enter [AfterEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:18.375&#xA;&lt; Exit [AfterEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:18.574 (200ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set the path to /something on the generated cookie" classname="nginx-ingress-controller e2e suite" status="passed" time="21.311039096000002">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:18.575&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:25.47 (6.895s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:05:25.47&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:05:29.501 (4.031s)&#xA;&gt; Enter [It] should set the path to /something on the generated cookie - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:99 @ 04/04/23 18:05:29.501&#xA;&lt; Exit [It] should set the path to /something on the generated cookie - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:99 @ 04/04/23 18:05:39.685 (10.184s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:39.685&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:39.886 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] block-* should block CIDRs defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="28.417865083">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:39.886&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:46.798 (6.912s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:05:46.798&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:05:57.853 (11.055s)&#xA;&gt; Enter [It] should block CIDRs defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:38 @ 04/04/23 18:05:57.853&#xA;&lt; Exit [It] should block CIDRs defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:38 @ 04/04/23 18:06:08.065 (10.213s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:08.065&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:08.304 (239ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-read-timeout should set valid proxy read timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="28.373125957">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:08.304&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:15.196 (6.891s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 04/04/23 18:06:15.196&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 04/04/23 18:06:19.22 (4.024s)&#xA;&gt; Enter [It] should set valid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:36 @ 04/04/23 18:06:19.22&#xA;&lt; Exit [It] should set valid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:36 @ 04/04/23 18:06:36.431 (17.211s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:36.431&#xA;&lt; Exit [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:36.678 (246ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-send-timeout should set valid proxy send timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="28.283099319">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:36.678&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:43.562 (6.884s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 04/04/23 18:06:43.562&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 04/04/23 18:06:47.588 (4.026s)&#xA;&gt; Enter [It] should set valid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:36 @ 04/04/23 18:06:47.588&#xA;&lt; Exit [It] should set valid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:36 @ 04/04/23 18:07:04.782 (17.194s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:04.782&#xA;&lt; Exit [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:04.961 (179ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="33.351072485">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:04.961&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:12.853 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:12.853&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:20.912 (8.059s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:426 @ 04/04/23 18:07:20.912&#xA;STEP: routing requests to the canary upstream when header is set to &#39;DoCanary&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:451 @ 04/04/23 18:07:38.088&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:460 @ 04/04/23 18:07:38.092&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:469 @ 04/04/23 18:07:38.097&#xA;STEP: routing requests to the mainline upstream when header is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:478 @ 04/04/23 18:07:38.101&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:426 @ 04/04/23 18:07:38.105 (17.192s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:38.105&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:38.312 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param keeps processing new ingresses even if one of the existing ingresses is misconfigured" classname="nginx-ingress-controller e2e suite" status="passed" time="50.940964633">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:38.313&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:45.57 (7.258s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:07:45.57&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:07:49.597 (4.027s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:07:49.597&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:08:17.835 (28.238s)&#xA;&gt; Enter [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:698 @ 04/04/23 18:08:17.835&#xA;&lt; Exit [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:698 @ 04/04/23 18:08:29.028 (11.193s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:29.028&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:29.254 (225ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if mainline ingress is created after the canary ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="33.290599437">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:29.254&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:37.146 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:08:37.146&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:08:45.193 (8.047s)&#xA;&gt; Enter [It] should route requests to the correct upstream if mainline ingress is created after the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:206 @ 04/04/23 18:08:45.193&#xA;STEP: routing requests destined for the mainline ingress to the mainelin upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:231 @ 04/04/23 18:09:02.324&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:240 @ 04/04/23 18:09:02.332&#xA;&lt; Exit [It] should route requests to the correct upstream if mainline ingress is created after the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:206 @ 04/04/23 18:09:02.337 (17.144s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:02.337&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:02.545 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with snippet" classname="nginx-ingress-controller e2e suite" status="passed" time="21.322032369">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:02.545&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:09.432 (6.887s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:09:09.432&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:09:13.454 (4.022s)&#xA;&gt; Enter [It] should enable modsecurity with snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:91 @ 04/04/23 18:09:13.454&#xA;&lt; Exit [It] should enable modsecurity with snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:91 @ 04/04/23 18:09:23.682 (10.227s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:23.682&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:23.867 (185ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] settings-global-rate-limit generates correct NGINX configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="162.380955721">
-              <system-err>&gt; Enter [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:23.867&#xA;&lt; Exit [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:41.632 (2m17.765s)&#xA;&gt; Enter [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:34 @ 04/04/23 18:11:41.632&#xA;&lt; Exit [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:34 @ 04/04/23 18:11:45.686 (4.054s)&#xA;&gt; Enter [It] generates correct NGINX configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:38 @ 04/04/23 18:11:45.686&#xA;STEP: generating correct defaults - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:43 @ 04/04/23 18:11:52.711&#xA;STEP: applying customizations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:61 @ 04/04/23 18:11:55.865&#xA;&lt; Exit [It] generates correct NGINX configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:38 @ 04/04/23 18:12:06.074 (20.388s)&#xA;&gt; Enter [AfterEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:06.074&#xA;&lt; Exit [AfterEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:06.248 (175ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Load Balancer] EWMA does not fail requests" classname="nginx-ingress-controller e2e suite" status="passed" time="33.046314908">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:06.248&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:13.645 (7.397s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:34 @ 04/04/23 18:12:13.645&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:34 @ 04/04/23 18:12:24.689 (11.044s)&#xA;&gt; Enter [It] does not fail requests - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:42 @ 04/04/23 18:12:24.689&#xA;Apr  4 18:12:39.085: INFO: Request distribution: map[echo-7b6bf466cc-4gqhv:16 echo-7b6bf466cc-kbjqx:9 echo-7b6bf466cc-scqj9:5]&#xA;&lt; Exit [It] does not fail requests - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:42 @ 04/04/23 18:12:39.085 (14.396s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:39.085&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:39.295 (210ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should expose headers for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="22.277341561">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:39.295&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:47.18 (7.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:12:47.18&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:12:51.204 (4.024s)&#xA;&gt; Enter [It] should expose headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:153 @ 04/04/23 18:12:51.204&#xA;&lt; Exit [It] should expose headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:153 @ 04/04/23 18:13:01.392 (10.189s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:01.392&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:01.572 (180ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* canary affinity behavior always routes traffic to canary if first request was affinitized to canary (default behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="40.738608182">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:01.573&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:08.45 (6.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:13:08.45&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:13:16.493 (8.042s)&#xA;&gt; Enter [It] always routes traffic to canary if first request was affinitized to canary (default behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:943 @ 04/04/23 18:13:16.493&#xA;&lt; Exit [It] always routes traffic to canary if first request was affinitized to canary (default behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:943 @ 04/04/23 18:13:42.089 (25.596s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:42.089&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:42.311 (222ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should disable the log-format-escape-none" classname="nginx-ingress-controller e2e suite" status="passed" time="28.271527881">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:42.312&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:49.227 (6.915s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:13:49.227&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:14:00.268 (11.041s)&#xA;&gt; Enter [It] should disable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:71 @ 04/04/23 18:14:00.268&#xA;&lt; Exit [It] should disable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:71 @ 04/04/23 18:14:10.406 (10.138s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:10.406&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:10.583 (177ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to default" classname="nginx-ingress-controller e2e suite" status="passed" time="21.825938851">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:10.584&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:17.985 (7.402s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:14:17.985&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:14:22.015 (4.03s)&#xA;&gt; Enter [It] should set proxy_redirect to default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:52 @ 04/04/23 18:14:22.015&#xA;&lt; Exit [It] should set proxy_redirect to default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:52 @ 04/04/23 18:14:32.238 (10.222s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:32.238&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:32.409 (172ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keepalive connection to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="29.30727806">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:32.41&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:40.329 (7.92s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:14:40.329&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:14:51.355 (11.026s)&#xA;&gt; Enter [It] should set keepalive connection to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:59 @ 04/04/23 18:14:51.356&#xA;&lt; Exit [It] should set keepalive connection to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:59 @ 04/04/23 18:15:01.513 (10.157s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:01.513&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:01.717 (204ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to https:// and use proxy_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="21.399584297">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:01.717&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:08.628 (6.911s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:15:08.628&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:15:12.654 (4.026s)&#xA;&gt; Enter [It] should set backend protocol to https:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:34 @ 04/04/23 18:15:12.654&#xA;&lt; Exit [It] should set backend protocol to https:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:34 @ 04/04/23 18:15:22.863 (10.21s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:22.863&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:23.117 (253ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with no value should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="29.309952801">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:23.117&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:31.017 (7.9s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:15:31.017&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:15:35.052 (4.035s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:372 @ 04/04/23 18:15:35.052&#xA;STEP: routing requests to the canary upstream when header is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:395 @ 04/04/23 18:15:52.235&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:404 @ 04/04/23 18:15:52.237&#xA;STEP: routing requests to the mainline upstream when header is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:414 @ 04/04/23 18:15:52.239&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:372 @ 04/04/23 18:15:52.24 (17.188s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:52.24&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:52.427 (187ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should exists opentracing_location_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="29.742956364">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:52.428&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:59.303 (6.876s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:15:59.303&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:16:03.326 (4.022s)&#xA;&gt; Enter [It] should exists opentracing_location_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:145 @ 04/04/23 18:16:03.326&#xA;&lt; Exit [It] should exists opentracing_location_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:145 @ 04/04/23 18:16:20.959 (17.634s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:20.959&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:22.171 (1.211s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:16:22.171&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:16:22.171 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] limit-rate Check limit-rate annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="27.8652561">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:22.172&#xA;&lt; Exit [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:31.372 (9.2s)&#xA;&gt; Enter [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:33 @ 04/04/23 18:16:31.372&#xA;&lt; Exit [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:33 @ 04/04/23 18:16:35.41 (4.038s)&#xA;&gt; Enter [It] Check limit-rate annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:37 @ 04/04/23 18:16:35.41&#xA;&lt; Exit [It] Check limit-rate annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:37 @ 04/04/23 18:16:49.822 (14.412s)&#xA;&gt; Enter [AfterEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:49.822&#xA;&lt; Exit [AfterEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:50.037 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] configmap stream-snippet should add value of stream-snippet via config map to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="34.311850272">
-              <system-err>&gt; Enter [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:50.037&#xA;&lt; Exit [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:57.908 (7.87s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:38 @ 04/04/23 18:16:57.908&#xA;&lt; Exit [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:38 @ 04/04/23 18:17:01.931 (4.024s)&#xA;&gt; Enter [It] should add value of stream-snippet via config map to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:42 @ 04/04/23 18:17:01.931&#xA;&lt; Exit [It] should add value of stream-snippet via config map to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:42 @ 04/04/23 18:17:24.158 (22.227s)&#xA;&gt; Enter [AfterEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:24.158&#xA;&lt; Exit [AfterEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:24.349 (191ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] upstream-hash-by-* should connect to the same pod" classname="nginx-ingress-controller e2e suite" status="passed" time="45.553942925">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:24.35&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:31.239 (6.889s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 04/04/23 18:17:31.239&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 04/04/23 18:17:39.264 (8.025s)&#xA;&gt; Enter [It] should connect to the same pod - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:83 @ 04/04/23 18:17:39.264&#xA;&lt; Exit [It] should connect to the same pod - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:83 @ 04/04/23 18:18:09.666 (30.402s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:09.666&#xA;&lt; Exit [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:09.903 (237ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is set with HTTP/2" classname="nginx-ingress-controller e2e suite" status="passed" time="31.415945068">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:09.904&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:16.786 (6.882s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:18:16.786&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:18:20.804 (4.018s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:18:20.804&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:18:35.029 (14.226s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is set with HTTP/2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:609 @ 04/04/23 18:18:35.029&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is set with HTTP/2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:609 @ 04/04/23 18:18:41.107 (6.078s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:41.107&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:41.32 (212ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret" classname="nginx-ingress-controller e2e suite" status="passed" time="22.937247348">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:41.32&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:49.195 (7.875s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:18:49.195&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:18:53.217 (4.022s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:37 @ 04/04/23 18:18:53.217&#xA;&lt; Exit [It] should set valid proxy-ssl-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:37 @ 04/04/23 18:19:04.077 (10.86s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:04.077&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:04.257 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES" classname="nginx-ingress-controller e2e suite" status="passed" time="23.410135069">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:04.258&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:12.153 (7.895s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:19:12.153&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:19:16.174 (4.021s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:94 @ 04/04/23 18:19:16.174&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:94 @ 04/04/23 18:19:27.319 (11.146s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:27.32&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:27.668 (348ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to &#39;&#39; and use fastcgi_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="21.643801846">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:27.668&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:34.827 (7.159s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:19:34.827&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:19:38.85 (4.023s)&#xA;&gt; Enter [It] should set backend protocol to &#39;&#39; and use fastcgi_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:94 @ 04/04/23 18:19:38.85&#xA;&lt; Exit [It] should set backend protocol to &#39;&#39; and use fastcgi_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:94 @ 04/04/23 18:19:49.066 (10.216s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:49.066&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:49.312 (246ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return status 502 for service type=ExternalName with an invalid host" classname="nginx-ingress-controller e2e suite" status="passed" time="24.223123224">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:49.312&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:57.192 (7.879s)&#xA;&gt; Enter [It] should return status 502 for service type=ExternalName with an invalid host - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:153 @ 04/04/23 18:19:57.192&#xA;&lt; Exit [It] should return status 502 for service type=ExternalName with an invalid host - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:153 @ 04/04/23 18:20:12.695 (15.504s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:12.695&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:13.536 (840ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should set request-redirect when global-auth-request-redirect is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="56.08885726">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:13.536&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:20.628 (7.092s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:20:20.628&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:20:28.704 (8.077s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:20:28.704&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:20:28.704&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:20:38.882&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:20:49.057&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:20:59.272 (30.567s)&#xA;&gt; Enter [It] should set request-redirect when global-auth-request-redirect is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:237 @ 04/04/23 18:20:59.272&#xA;STEP: Adding a global-auth-request-redirect to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:242 @ 04/04/23 18:20:59.272&#xA;&lt; Exit [It] should set request-redirect when global-auth-request-redirect is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:237 @ 04/04/23 18:21:09.45 (10.178s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:09.45&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:09.625 (175ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] service-upstream when enabling in the configmap and disabling in the annotations should not use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="28.500641833">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:09.625&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:16.495 (6.87s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:21:16.495&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:21:20.516 (4.021s)&#xA;&gt; Enter [It] should not use the Service Cluster IP and Port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:99 @ 04/04/23 18:21:20.516&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:113 @ 04/04/23 18:21:37.731&#xA;STEP: checking if the Service Cluster IP and Port are not used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:120 @ 04/04/23 18:21:37.737&#xA;&lt; Exit [It] should not use the Service Cluster IP and Port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:99 @ 04/04/23 18:21:37.9 (17.384s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:37.9&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:38.126 (226ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-alias should return status code 200 for host &#39;foo&#39; and &#39;bar&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="22.287533212">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:38.126&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:46.024 (7.897s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:21:46.024&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:21:50.044 (4.02s)&#xA;&gt; Enter [It] should return status code 200 for host &#39;foo&#39; and &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:62 @ 04/04/23 18:21:50.044&#xA;&lt; Exit [It] should return status code 200 for host &#39;foo&#39; and &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:62 @ 04/04/23 18:22:00.233 (10.189s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:00.233&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:00.414 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should not configure log-format escape by default" classname="nginx-ingress-controller e2e suite" status="passed" time="21.319101474">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:00.414&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:07.306 (6.892s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:22:07.306&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:22:18.341 (11.035s)&#xA;&gt; Enter [It] should not configure log-format escape by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:40 @ 04/04/23 18:22:18.341&#xA;&lt; Exit [It] should not configure log-format escape by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:40 @ 04/04/23 18:22:21.446 (3.105s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:21.446&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:21.733 (287ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if the mainline ingress is modified" classname="nginx-ingress-controller e2e suite" status="passed" time="168.05341063">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:21.733&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:39.876 (2m18.143s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:24:39.876&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:24:47.956 (8.08s)&#xA;&gt; Enter [It] should route requests to the correct upstream if the mainline ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:250 @ 04/04/23 18:24:47.956&#xA;STEP: routing requests destined fro the mainline ingress to the mainline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:288 @ 04/04/23 18:25:09.571&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:297 @ 04/04/23 18:25:09.578&#xA;&lt; Exit [It] should route requests to the correct upstream if the mainline ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:250 @ 04/04/23 18:25:09.586 (21.629s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:09.586&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:09.787 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] upstream-hash-by-* should connect to the same subset of pods" classname="nginx-ingress-controller e2e suite" status="passed" time="45.556284939">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:09.787&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:16.668 (6.881s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 04/04/23 18:25:16.668&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 04/04/23 18:25:24.696 (8.028s)&#xA;&gt; Enter [It] should connect to the same subset of pods - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:92 @ 04/04/23 18:25:24.696&#xA;&lt; Exit [It] should connect to the same subset of pods - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:92 @ 04/04/23 18:25:55.101 (30.405s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:55.101&#xA;&lt; Exit [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:55.343 (242ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] redirect to HTTPS should redirect from HTTP to HTTPS when secret is missing" classname="nginx-ingress-controller e2e suite" status="passed" time="24.373667503">
-              <system-err>&gt; Enter [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:55.344&#xA;&lt; Exit [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:02.277 (6.934s)&#xA;&gt; Enter [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:32 @ 04/04/23 18:26:02.277&#xA;&lt; Exit [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:32 @ 04/04/23 18:26:06.299 (4.021s)&#xA;&gt; Enter [It] should redirect from HTTP to HTTPS when secret is missing - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:36 @ 04/04/23 18:26:06.299&#xA;&lt; Exit [It] should redirect from HTTP to HTTPS when secret is missing - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:36 @ 04/04/23 18:26:19.516 (13.217s)&#xA;&gt; Enter [AfterEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:19.516&#xA;&lt; Exit [AfterEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:19.717 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] configmap server-snippet should add global server-snippet and drop annotations per admin config" classname="nginx-ingress-controller e2e suite" status="passed" time="43.438812584">
-              <system-err>&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:19.718&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:26.668 (6.951s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 04/04/23 18:26:26.668&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 04/04/23 18:26:30.695 (4.027s)&#xA;&gt; Enter [It] should add global server-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:92 @ 04/04/23 18:26:30.695&#xA;&lt; Exit [It] should add global server-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:92 @ 04/04/23 18:27:02.982 (32.287s)&#xA;&gt; Enter [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:02.982&#xA;&lt; Exit [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:03.156 (175ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set cookie with expires" classname="nginx-ingress-controller e2e suite" status="passed" time="22.389477827">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:03.157&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:11.021 (7.864s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:27:11.021&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:27:15.049 (4.028s)&#xA;&gt; Enter [It] should set cookie with expires - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:194 @ 04/04/23 18:27:15.049&#xA;&lt; Exit [It] should set cookie with expires - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:194 @ 04/04/23 18:27:25.315 (10.266s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:25.315&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:25.546 (231ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - matching origin with wildcard origin (2 subdomains)" classname="nginx-ingress-controller e2e suite" status="passed" time="18.14890018">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:25.547&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:32.464 (6.917s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:27:32.464&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:27:36.484 (4.02s)&#xA;&gt; Enter [It] should allow - matching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:425 @ 04/04/23 18:27:36.484&#xA;&lt; Exit [It] should allow - matching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:425 @ 04/04/23 18:27:43.52 (7.037s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:43.52&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:43.695 (175ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-multi-accept should be enabled when set to true" classname="nginx-ingress-controller e2e suite" status="passed" time="17.346789678">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:43.696&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:50.592 (6.896s)&#xA;&gt; Enter [It] should be enabled when set to true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:39 @ 04/04/23 18:27:50.592&#xA;&lt; Exit [It] should be enabled when set to true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:39 @ 04/04/23 18:28:00.821 (10.229s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:00.821&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:01.043 (221ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place" classname="nginx-ingress-controller e2e suite" status="passed" time="30.46844143">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:01.043&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:08.918 (7.875s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:28:08.918&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:28:12.942 (4.024s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:102 @ 04/04/23 18:28:12.942&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:102 @ 04/04/23 18:28:31.293 (18.352s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:31.293&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:31.512 (218ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="49.899045109">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:31.512&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:38.394 (6.882s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:28:38.394&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:28:46.454 (8.06s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:28:46.454&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:28:46.454&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:28:56.618&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:29:06.764&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:29:16.991 (30.537s)&#xA;&gt; Enter [It] should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:126 @ 04/04/23 18:29:16.991&#xA;STEP: Adding an ingress rule for /bar with annotation enable-global-auth = false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:128 @ 04/04/23 18:29:16.991&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:140 @ 04/04/23 18:29:21.174&#xA;STEP: Sending a request to whitelisted service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:147 @ 04/04/23 18:29:21.184&#xA;&lt; Exit [It] should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:126 @ 04/04/23 18:29:21.191 (4.2s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:21.191&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:21.411 (220ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration when only backends change handles an annotation change" classname="nginx-ingress-controller e2e suite" status="passed" time="28.208007184">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:21.411&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:28.853 (7.441s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:29:28.853&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:29:43.082 (14.23s)&#xA;&gt; Enter [It] handles an annotation change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:171 @ 04/04/23 18:29:43.082&#xA;&lt; Exit [It] handles an annotation change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:171 @ 04/04/23 18:29:49.435 (6.352s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:49.435&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:49.619 (185ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] server-tokens should exists Server header in the response when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="28.239544805">
-              <system-err>&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:49.62&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:56.496 (6.875s)&#xA;&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 04/04/23 18:29:56.496&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 04/04/23 18:30:00.515 (4.019s)&#xA;&gt; Enter [It] should exists Server header in the response when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:50 @ 04/04/23 18:30:00.515&#xA;&lt; Exit [It] should exists Server header in the response when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:50 @ 04/04/23 18:30:17.68 (17.166s)&#xA;&gt; Enter [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:17.68&#xA;&lt; Exit [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:17.86 (179ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName works with external name set to incomplete fqdn" classname="nginx-ingress-controller e2e suite" status="passed" time="21.343180997">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:17.86&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:24.767 (6.907s)&#xA;&gt; Enter [It] works with external name set to incomplete fqdn - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:62 @ 04/04/23 18:30:24.767&#xA;&lt; Exit [It] works with external name set to incomplete fqdn - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:62 @ 04/04/23 18:30:38.985 (14.218s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:38.985&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:39.203 (218ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Debug CLI should list the backend servers" classname="nginx-ingress-controller e2e suite" status="passed" time="22.378504517">
-              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:39.204&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:47.098 (7.895s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:30:47.098&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:30:51.122 (4.023s)&#xA;&gt; Enter [It] should list the backend servers - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:37 @ 04/04/23 18:30:51.122&#xA;&lt; Exit [It] should list the backend servers - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:37 @ 04/04/23 18:31:01.391 (10.269s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:01.391&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:01.582 (191ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* does not crash when canary ingress has multiple paths to the same non-matching backend" classname="nginx-ingress-controller e2e suite" status="passed" time="32.459393771">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:01.582&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:08.498 (6.915s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:31:08.498&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:31:16.564 (8.066s)&#xA;&gt; Enter [It] does not crash when canary ingress has multiple paths to the same non-matching backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:915 @ 04/04/23 18:31:16.564&#xA;&lt; Exit [It] does not crash when canary ingress has multiple paths to the same non-matching backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:915 @ 04/04/23 18:31:33.8 (17.236s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:33.8&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:34.042 (242ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] service-upstream when using the default value (false) and enabling in the annotations should use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="21.449933338">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:34.042&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:40.946 (6.904s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:31:40.946&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:31:44.981 (4.035s)&#xA;&gt; Enter [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:41 @ 04/04/23 18:31:44.981&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:53 @ 04/04/23 18:31:55.094&#xA;STEP: checking if the Service Cluster IP and Port are used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:60 @ 04/04/23 18:31:55.098&#xA;&lt; Exit [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:41 @ 04/04/23 18:31:55.252 (10.271s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:55.252&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:55.492 (240ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity when enable-owasp-modsecurity-crs is set to true" classname="nginx-ingress-controller e2e suite" status="passed" time="40.260077601">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:55.493&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:02.366 (6.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:32:02.366&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:32:06.394 (4.028s)&#xA;&gt; Enter [It] should enable modsecurity when enable-owasp-modsecurity-crs is set to true - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:225 @ 04/04/23 18:32:06.394&#xA;&lt; Exit [It] should enable modsecurity when enable-owasp-modsecurity-crs is set to true - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:225 @ 04/04/23 18:32:35.569 (29.175s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:35.569&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:35.753 (184ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Security] Pod Security Policies with volumes should be running with a Pod Security Policy" classname="nginx-ingress-controller e2e suite" status="skipped" time="7.104968031">
-              <skipped message="skipped - PSP not supported in this version"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:35.753&#xA;&lt; Exit [BeforeEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:42.66 (6.907s)&#xA;&gt; Enter [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:40 @ 04/04/23 18:32:42.66&#xA;[SKIPPED] PSP not supported in this version&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:53 @ 04/04/23 18:32:42.661&#xA;&lt; Exit [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:40 @ 04/04/23 18:32:42.661 (1ms)&#xA;&gt; Enter [AfterEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:42.661&#xA;&lt; Exit [AfterEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:42.858 (197ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] permanent-redirect permanent-redirect-code should respond with a custom redirect code" classname="nginx-ingress-controller e2e suite" status="passed" time="17.246524814">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:42.858&#xA;&lt; Exit [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:49.722 (6.864s)&#xA;&gt; Enter [It] should respond with a custom redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:61 @ 04/04/23 18:32:49.722&#xA;STEP: setting permanent-redirect-code annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:62 @ 04/04/23 18:32:49.722&#xA;STEP: sending request to redirected URL path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:82 @ 04/04/23 18:32:59.899&#xA;&lt; Exit [It] should respond with a custom redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:61 @ 04/04/23 18:32:59.901 (10.18s)&#xA;&gt; Enter [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:59.901&#xA;&lt; Exit [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:00.105 (203ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check proxy header hash size should set proxy-headers-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="29.32779995">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:00.105&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:07.991 (7.886s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:33:07.991&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:33:19.06 (11.069s)&#xA;&gt; Enter [It] should set proxy-headers-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:60 @ 04/04/23 18:33:19.06&#xA;&lt; Exit [It] should set proxy-headers-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:60 @ 04/04/23 18:33:29.206 (10.146s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:29.206&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:29.433 (227ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow correct origins - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="20.137438453">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:29.433&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:36.312 (6.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:33:36.312&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:33:42.335 (6.023s)&#xA;&gt; Enter [It] should allow correct origins - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:216 @ 04/04/23 18:33:42.335&#xA;&lt; Exit [It] should allow correct origins - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:216 @ 04/04/23 18:33:49.381 (7.046s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:49.381&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:49.571 (190ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should disable default modsecurity conf setting when modsecurity-snippet is specified" classname="nginx-ingress-controller e2e suite" status="passed" time="33.33883845">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:49.571&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:56.527 (6.956s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:33:56.527&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:34:00.557 (4.03s)&#xA;&gt; Enter [It] should disable default modsecurity conf setting when modsecurity-snippet is specified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:347 @ 04/04/23 18:34:00.557&#xA;&lt; Exit [It] should disable default modsecurity conf setting when modsecurity-snippet is specified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:347 @ 04/04/23 18:34:22.694 (22.137s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:22.694&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:22.91 (216ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [TCP] tcp-services should expose a TCP service" classname="nginx-ingress-controller e2e suite" status="passed" time="14.259355858">
-              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:22.91&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:29.807 (6.897s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:34:29.807&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:34:29.814 (6ms)&#xA;&gt; Enter [It] should expose a TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:46 @ 04/04/23 18:34:29.814&#xA;&lt; Exit [It] should expose a TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:46 @ 04/04/23 18:34:36.97 (7.156s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:36.97&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:37.169 (200ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity through the config map" classname="nginx-ingress-controller e2e suite" status="passed" time="41.348214262">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:37.17&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:45.073 (7.903s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:34:45.073&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:34:49.091 (4.018s)&#xA;&gt; Enter [It] should enable modsecurity through the config map - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:264 @ 04/04/23 18:34:49.091&#xA;&lt; Exit [It] should enable modsecurity through the config map - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:264 @ 04/04/23 18:35:18.316 (29.225s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:18.316&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:18.518 (202ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] reuse-port reuse port should be enabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="21.391567166">
-              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:18.518&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:25.408 (6.889s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:35:25.408&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:35:36.46 (11.052s)&#xA;&gt; Enter [It] reuse port should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:38 @ 04/04/23 18:35:36.46&#xA;&lt; Exit [It] reuse port should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:38 @ 04/04/23 18:35:39.652 (3.192s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:39.652&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:39.91 (258ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class Without IngressClass Cluster scoped Permission should watch Ingress with correct annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="29.330715429">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:39.91&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:46.843 (6.933s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:35:46.843&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:35:50.861 (4.018s)&#xA;&gt; Enter [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 04/04/23 18:35:50.861&#xA;&lt; Exit [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 04/04/23 18:35:58.882 (8.021s)&#xA;&gt; Enter [It] should watch Ingress with correct annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:631 @ 04/04/23 18:35:58.882&#xA;&lt; Exit [It] should watch Ingress with correct annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:631 @ 04/04/23 18:36:09.027 (10.145s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:09.027&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:09.241 (213ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] [PathType] prefix checks should return 404 when prefix /aaa does not match request /aaaccc" classname="nginx-ingress-controller e2e suite" status="passed" time="22.814127467">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:09.241&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:17.143 (7.901s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:31 @ 04/04/23 18:36:17.143&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:31 @ 04/04/23 18:36:21.166 (4.023s)&#xA;&gt; Enter [It] should return 404 when prefix /aaa does not match request /aaaccc - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:35 @ 04/04/23 18:36:21.166&#xA;&lt; Exit [It] should return 404 when prefix /aaa does not match request /aaaccc - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:35 @ 04/04/23 18:36:31.412 (10.246s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:31.412&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:32.055 (644ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] mirror-* should set mirror-target to https://test.env.com/$request_uri" classname="nginx-ingress-controller e2e suite" status="passed" time="22.284646292">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:32.057&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:39.923 (7.865s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:36:39.923&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:36:43.949 (4.026s)&#xA;&gt; Enter [It] should set mirror-target to https://test.env.com/$request_uri - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:51 @ 04/04/23 18:36:43.949&#xA;&lt; Exit [It] should set mirror-target to https://test.env.com/$request_uri - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:51 @ 04/04/23 18:36:54.141 (10.192s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:54.141&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:54.342 (200ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2" classname="nginx-ingress-controller e2e suite" status="passed" time="23.733756697">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:54.342&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:01.212 (6.87s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:37:01.212&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:37:07.231 (6.019s)&#xA;&gt; Enter [It] should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:84 @ 04/04/23 18:37:07.231&#xA;&lt; Exit [It] should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:84 @ 04/04/23 18:37:17.855 (10.625s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:17.855&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:18.076 (221ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should work with use-regex annotation and session-cookie-path" classname="nginx-ingress-controller e2e suite" status="passed" time="22.376606309">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:18.076&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:25.984 (7.907s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:37:25.984&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:37:30.003 (4.019s)&#xA;&gt; Enter [It] should work with use-regex annotation and session-cookie-path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:270 @ 04/04/23 18:37:30.003&#xA;&lt; Exit [It] should work with use-regex annotation and session-cookie-path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:270 @ 04/04/23 18:37:40.203 (10.201s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:40.203&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:40.453 (250ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] ssl-ciphers Add ssl ciphers" classname="nginx-ingress-controller e2e suite" status="passed" time="17.271588421">
-              <system-err>&gt; Enter [BeforeEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:40.453&#xA;&lt; Exit [BeforeEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:47.317 (6.864s)&#xA;&gt; Enter [It] Add ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_ciphers.go:31 @ 04/04/23 18:37:47.317&#xA;&lt; Exit [It] Add ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_ciphers.go:31 @ 04/04/23 18:37:57.514 (10.197s)&#xA;&gt; Enter [AfterEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:57.514&#xA;&lt; Exit [AfterEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:57.725 (211ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 200 when authentication is configured and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="23.036361577">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:57.725&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:04.608 (6.883s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:38:04.608&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:38:08.636 (4.028s)&#xA;&gt; Enter [It] should return status code 200 when authentication is configured and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:172 @ 04/04/23 18:38:08.636&#xA;&lt; Exit [It] should return status code 200 when authentication is configured and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:172 @ 04/04/23 18:38:20.58 (11.945s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:20.58&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:20.761 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to hello.com goodbye.com" classname="nginx-ingress-controller e2e suite" status="passed" time="21.346400057">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:20.762&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:27.757 (6.995s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:38:27.757&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:38:31.784 (4.027s)&#xA;&gt; Enter [It] should set proxy_redirect to hello.com goodbye.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:68 @ 04/04/23 18:38:31.784&#xA;&lt; Exit [It] should set proxy_redirect to hello.com goodbye.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:68 @ 04/04/23 18:38:41.901 (10.118s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:41.901&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:42.108 (207ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log access-log-path use the default configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="11.334209829">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:42.108&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:50.04 (7.932s)&#xA;&gt; Enter [It] use the default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:32 @ 04/04/23 18:38:50.04&#xA;&lt; Exit [It] use the default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:32 @ 04/04/23 18:38:53.238 (3.198s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:53.238&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:53.443 (205ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should not exists opentracing directive" classname="nginx-ingress-controller e2e suite" status="passed" time="28.224804352">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:53.443&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:00.319 (6.876s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:39:00.319&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:39:04.344 (4.026s)&#xA;&gt; Enter [It] should not exists opentracing directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:58 @ 04/04/23 18:39:04.344&#xA;&lt; Exit [It] should not exists opentracing directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:58 @ 04/04/23 18:39:21.438 (17.094s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:21.438&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:21.668 (229ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:39:21.668&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:39:21.668 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-catch-all should delete Ingress updated to catch-all" classname="nginx-ingress-controller e2e suite" status="passed" time="33.741887473">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:21.67&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:29.901 (8.232s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:39:29.901&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:39:40.966 (11.065s)&#xA;&gt; Enter [It] should delete Ingress updated to catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:81 @ 04/04/23 18:39:40.966&#xA;&lt; Exit [It] should delete Ingress updated to catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:81 @ 04/04/23 18:39:55.23 (14.264s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:55.23&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:55.411 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to mainline if canary weight is 0" classname="nginx-ingress-controller e2e suite" status="passed" time="36.538414445">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:55.412&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:03.291 (7.88s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:40:03.291&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:40:11.34 (8.049s)&#xA;&gt; Enter [It] should route requests only to mainline if canary weight is 0 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:705 @ 04/04/23 18:40:11.34&#xA;&lt; Exit [It] should route requests only to mainline if canary weight is 0 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:705 @ 04/04/23 18:40:31.758 (20.417s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:31.758&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:31.95 (192ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] single ingress - multiple hosts should set the correct $service_name NGINX variable" classname="nginx-ingress-controller e2e suite" status="passed" time="29.458771949">
-              <system-err>&gt; Enter [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:31.951&#xA;&lt; Exit [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:39.859 (7.909s)&#xA;&gt; Enter [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:33 @ 04/04/23 18:40:39.859&#xA;&lt; Exit [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:33 @ 04/04/23 18:40:47.913 (8.054s)&#xA;&gt; Enter [It] should set the correct $service_name NGINX variable - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:38 @ 04/04/23 18:40:47.913&#xA;&lt; Exit [It] should set the correct $service_name NGINX variable - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:38 @ 04/04/23 18:41:01.214 (13.301s)&#xA;&gt; Enter [AfterEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:01.214&#xA;&lt; Exit [AfterEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:01.409 (195ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With watch-ingress-without-class flag should watch Ingress with no class and ignore ingress with a different class" classname="nginx-ingress-controller e2e suite" status="passed" time="45.14197691">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.256&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:27.796 (8.54s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:04:27.796&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:04:39.83 (12.034s)&#xA;&gt; Enter [BeforeEach] With watch-ingress-without-class flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:462 @ 04/04/23 18:04:39.83&#xA;&lt; Exit [BeforeEach] With watch-ingress-without-class flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:462 @ 04/04/23 18:04:46.871 (7.041s)&#xA;&gt; Enter [It] should watch Ingress with no class and ignore ingress with a different class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:482 @ 04/04/23 18:04:46.871&#xA;&lt; Exit [It] should watch Ingress with no class and ignore ingress with a different class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:482 @ 04/04/23 18:05:04.134 (17.262s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:04.134&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:04.398 (264ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] service-upstream when enabling in the configmap should use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="28.567748572">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:04.398&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:11.399 (7.001s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:05:11.399&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:05:15.426 (4.027s)&#xA;&gt; Enter [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:70 @ 04/04/23 18:05:15.426&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:82 @ 04/04/23 18:05:32.603&#xA;STEP: checking if the Service Cluster IP and Port are used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:89 @ 04/04/23 18:05:32.612&#xA;&lt; Exit [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:70 @ 04/04/23 18:05:32.783 (17.357s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:32.783&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:32.966 (182ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-service-external-name should ignore services of external-name type" classname="nginx-ingress-controller e2e suite" status="passed" time="40.523434341">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:32.966&#xA;&lt; Exit [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:40.858 (7.892s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:38 @ 04/04/23 18:05:40.858&#xA;&lt; Exit [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:38 @ 04/04/23 18:05:52.924 (12.066s)&#xA;&gt; Enter [It] should ignore services of external-name type - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:52 @ 04/04/23 18:05:52.924&#xA;&lt; Exit [It] should ignore services of external-name type - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:52 @ 04/04/23 18:06:13.273 (20.349s)&#xA;&gt; Enter [AfterEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:13.273&#xA;&lt; Exit [AfterEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:13.49 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] satisfy should configure satisfy directive correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="28.489806635">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:13.49&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:20.419 (6.929s)&#xA;&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 04/04/23 18:06:20.419&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 04/04/23 18:06:24.447 (4.029s)&#xA;&gt; Enter [It] should configure satisfy directive correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:42 @ 04/04/23 18:06:24.447&#xA;&lt; Exit [It] should configure satisfy directive correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:42 @ 04/04/23 18:06:41.792 (17.345s)&#xA;&gt; Enter [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:41.792&#xA;&lt; Exit [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:41.98 (187ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keep alive connection timeout to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="29.295943095">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:41.98&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:49.854 (7.874s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:06:49.854&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:07:00.907 (11.052s)&#xA;&gt; Enter [It] should set keep alive connection timeout to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:68 @ 04/04/23 18:07:00.907&#xA;&lt; Exit [It] should set keep alive connection timeout to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:68 @ 04/04/23 18:07:11.072 (10.166s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:11.073&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:11.276 (203ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check the map hash size should set vmap-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="27.335942615">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:11.277&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:19.172 (7.895s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:07:19.172&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:07:28.212 (9.04s)&#xA;&gt; Enter [It] should set vmap-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:100 @ 04/04/23 18:07:28.212&#xA;&lt; Exit [It] should set vmap-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:100 @ 04/04/23 18:07:38.38 (10.168s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:38.38&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:38.612 (232ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Load Balancer] load-balance should apply the configmap load-balance setting" classname="nginx-ingress-controller e2e suite" status="passed" time="28.614638536">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:38.613&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:45.664 (7.051s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:31 @ 04/04/23 18:07:45.664&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:31 @ 04/04/23 18:07:49.689 (4.025s)&#xA;&gt; Enter [It] should apply the configmap load-balance setting - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:35 @ 04/04/23 18:07:49.689&#xA;&lt; Exit [It] should apply the configmap load-balance setting - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:35 @ 04/04/23 18:08:07.048 (17.358s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:07.048&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:07.227 (180ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - GRPC authorization metadata should be overwritten by external auth response headers" classname="nginx-ingress-controller e2e suite" status="passed" time="157.156535928">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:07.228&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:25.86 (2m18.633s)&#xA;&gt; Enter [It] authorization metadata should be overwritten by external auth response headers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:126 @ 04/04/23 18:10:25.86&#xA;&lt; Exit [It] authorization metadata should be overwritten by external auth response headers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:126 @ 04/04/23 18:10:44.166 (18.305s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:44.166&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:44.384 (218ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should update the external name after a service update" classname="nginx-ingress-controller e2e suite" status="passed" time="22.917038202">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:44.385&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:51.27 (6.885s)&#xA;&gt; Enter [It] should update the external name after a service update - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:248 @ 04/04/23 18:10:51.27&#xA;STEP: checking the service is updated to use eu.httpbin.org - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:304 @ 04/04/23 18:11:06.958&#xA;&lt; Exit [It] should update the external name after a service update - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:248 @ 04/04/23 18:11:07.097 (15.827s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:07.097&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:07.302 (205ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on" classname="nginx-ingress-controller e2e suite" status="passed" time="23.058976901">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:07.302&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:15.212 (7.91s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:11:15.212&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:11:19.237 (4.025s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:64 @ 04/04/23 18:11:19.237&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:64 @ 04/04/23 18:11:30.15 (10.913s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:30.15&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:30.361 (211ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] enable-access-log enable-rewrite-log set rewrite_log on" classname="nginx-ingress-controller e2e suite" status="passed" time="19.342099122">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:30.361&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:37.259 (6.898s)&#xA;&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 04/04/23 18:11:37.259&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 04/04/23 18:11:39.287 (2.028s)&#xA;&gt; Enter [It] set rewrite_log on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:49 @ 04/04/23 18:11:39.287&#xA;&lt; Exit [It] set rewrite_log on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:49 @ 04/04/23 18:11:49.482 (10.195s)&#xA;&gt; Enter [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:49.482&#xA;&lt; Exit [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:49.703 (222ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] reuse-port reuse port should be enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="28.444903559">
-              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:49.704&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:56.672 (6.968s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:11:56.672&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:12:07.713 (11.041s)&#xA;&gt; Enter [It] reuse port should be enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:52 @ 04/04/23 18:12:07.713&#xA;&lt; Exit [It] reuse port should be enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:52 @ 04/04/23 18:12:17.909 (10.196s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:17.909&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:18.149 (239ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value and cookie should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="33.34510439">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:18.149&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:26.102 (7.953s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:12:26.102&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:12:34.143 (8.041s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:604 @ 04/04/23 18:12:34.143&#xA;STEP: routing requests to the canary upstream when header value does not match and cookie is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:630 @ 04/04/23 18:12:51.301&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:604 @ 04/04/23 18:12:51.309 (17.166s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:51.309&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:51.494 (185ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-snippet drops server snippet if disabled by the administrator" classname="nginx-ingress-controller e2e suite" status="passed" time="40.379085957">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:51.494&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:58.391 (6.897s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 04/04/23 18:12:58.391&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 04/04/23 18:13:02.411 (4.02s)&#xA;&gt; Enter [It] drops server snippet if disabled by the administrator - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:61 @ 04/04/23 18:13:02.411&#xA;&lt; Exit [It] drops server snippet if disabled by the administrator - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:61 @ 04/04/23 18:13:31.674 (29.262s)&#xA;&gt; Enter [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:31.674&#xA;&lt; Exit [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:31.873 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log stream-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="17.302948605">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:31.874&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:38.753 (6.879s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:67 @ 04/04/23 18:13:38.753&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:67 @ 04/04/23 18:13:48.95 (10.197s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:48.95&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:49.177 (226ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Security] Pod Security Policies should be running with a Pod Security Policy" classname="nginx-ingress-controller e2e suite" status="skipped" time="8.138943568">
-              <skipped message="skipped - PSP not supported in this version"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:49.177&#xA;&lt; Exit [BeforeEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:57.081 (7.904s)&#xA;&gt; Enter [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:44 @ 04/04/23 18:13:57.081&#xA;[SKIPPED] PSP not supported in this version&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:56 @ 04/04/23 18:13:57.084&#xA;&lt; Exit [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:44 @ 04/04/23 18:13:57.084 (2ms)&#xA;&gt; Enter [AfterEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:57.084&#xA;&lt; Exit [AfterEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:57.316 (232ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with snippet and block requests" classname="nginx-ingress-controller e2e suite" status="passed" time="33.391362002">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:57.316&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:04.203 (6.887s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:14:04.203&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:14:08.231 (4.028s)&#xA;&gt; Enter [It] should enable modsecurity with snippet and block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:153 @ 04/04/23 18:14:08.231&#xA;&lt; Exit [It] should enable modsecurity with snippet and block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:153 @ 04/04/23 18:14:30.484 (22.253s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:30.484&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:30.708 (223ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-sync-events should not create sync events" classname="nginx-ingress-controller e2e suite" status="passed" time="30.323049827">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:30.708&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:37.628 (6.92s)&#xA;&gt; Enter [It] should not create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:80 @ 04/04/23 18:14:37.628&#xA;&lt; Exit [It] should not create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:80 @ 04/04/23 18:15:00.832 (23.203s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:00.832&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:01.031 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should validate auth-tls-verify-client" classname="nginx-ingress-controller e2e suite" status="passed" time="26.051870766">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:01.031&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:07.953 (6.922s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:15:07.953&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:15:11.978 (4.025s)&#xA;&gt; Enter [It] should validate auth-tls-verify-client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:206 @ 04/04/23 18:15:11.978&#xA;&lt; Exit [It] should validate auth-tls-verify-client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:206 @ 04/04/23 18:15:26.888 (14.91s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:26.888&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:27.083 (195ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should enable opentracing using zipkin" classname="nginx-ingress-controller e2e suite" status="passed" time="32.217906581">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:27.083&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:34.978 (7.895s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:15:34.978&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:15:39.01 (4.032s)&#xA;&gt; Enter [It] should enable opentracing using zipkin - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:160 @ 04/04/23 18:15:39.01&#xA;&lt; Exit [It] should enable opentracing using zipkin - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:160 @ 04/04/23 18:15:59.042 (20.032s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:59.042&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:59.301 (259ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:15:59.301&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:15:59.301 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured picks up a non-certificate only change" classname="nginx-ingress-controller e2e suite" status="passed" time="42.603077039">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:59.302&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:06.324 (7.022s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:16:06.324&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:16:10.352 (4.028s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:16:10.352&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:16:28.235&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:16:36.64&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:16:36.649 (26.297s)&#xA;&gt; Enter [It] picks up a non-certificate only change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:218 @ 04/04/23 18:16:36.649&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:229 @ 04/04/23 18:16:41.653&#xA;&lt; Exit [It] picks up a non-certificate only change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:218 @ 04/04/23 18:16:41.686 (5.038s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:41.686&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:41.905 (219ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-real-ip should not trust X-Forwarded-For header when setting is false" classname="nginx-ingress-controller e2e suite" status="passed" time="35.362528503">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:41.905&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:48.792 (6.887s)&#xA;&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 04/04/23 18:16:48.792&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 04/04/23 18:16:59.851 (11.059s)&#xA;&gt; Enter [It] should not trust X-Forwarded-For header when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:78 @ 04/04/23 18:16:59.851&#xA;&lt; Exit [It] should not trust X-Forwarded-For header when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:78 @ 04/04/23 18:17:17.088 (17.237s)&#xA;&gt; Enter [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:17.088&#xA;&lt; Exit [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:17.268 (179ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration configures balancer Lua middleware correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="28.627555304">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:17.268&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:25.143 (7.875s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:17:25.143&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:17:39.338 (14.195s)&#xA;&gt; Enter [It] configures balancer Lua middleware correctly - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:50 @ 04/04/23 18:17:39.338&#xA;&lt; Exit [It] configures balancer Lua middleware correctly - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:50 @ 04/04/23 18:17:45.709 (6.371s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:45.709&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:45.895 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user does not retain cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="43.374170474">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:45.896&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:52.77 (6.874s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:17:52.77&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:18:00.824 (8.054s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:18:00.824&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:18:29.039 (28.216s)&#xA;&gt; Enter [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:337 @ 04/04/23 18:18:29.039&#xA;&lt; Exit [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:337 @ 04/04/23 18:18:29.048 (9ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:29.048&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:29.27 (222ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - single origin with required port" classname="nginx-ingress-controller e2e suite" status="passed" time="18.648918317">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:29.27&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:36.638 (7.367s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:36.638&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:40.656 (4.018s)&#xA;&gt; Enter [It] should allow - single origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:358 @ 04/04/23 18:18:40.656&#xA;&lt; Exit [It] should allow - single origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:358 @ 04/04/23 18:18:47.695 (7.04s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:47.695&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:47.919 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] configuration-snippet drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34;" classname="nginx-ingress-controller e2e suite" status="passed" time="40.641495701">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:47.919&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:54.793 (6.873s)&#xA;&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 04/04/23 18:18:54.793&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 04/04/23 18:18:58.818 (4.026s)&#xA;&gt; Enter [It] drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:58 @ 04/04/23 18:18:58.818&#xA;&lt; Exit [It] drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:58 @ 04/04/23 18:19:28.082 (29.263s)&#xA;&gt; Enter [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:28.082&#xA;&lt; Exit [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:28.561 (479ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] upstream-vhost set host to upstreamvhost.bar.com" classname="nginx-ingress-controller e2e suite" status="passed" time="22.366668485">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:28.561&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:36.485 (7.924s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:30 @ 04/04/23 18:19:36.485&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:30 @ 04/04/23 18:19:40.514 (4.029s)&#xA;&gt; Enter [It] set host to upstreamvhost.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:34 @ 04/04/23 18:19:40.514&#xA;&lt; Exit [It] set host to upstreamvhost.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:34 @ 04/04/23 18:19:50.715 (10.201s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:50.715&#xA;&lt; Exit [AfterEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:50.928 (213ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should turn on proxy-buffering" classname="nginx-ingress-controller e2e suite" status="passed" time="24.539076289">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:50.928&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:59.376 (8.447s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:19:59.376&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:20:03.412 (4.036s)&#xA;&gt; Enter [It] should turn on proxy-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:157 @ 04/04/23 18:20:03.412&#xA;&lt; Exit [It] should turn on proxy-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:157 @ 04/04/23 18:20:13.859 (10.448s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:13.859&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:15.468 (1.608s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [TCP] tcp-services should reload after an update in the configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="155.065694354">
-              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:15.468&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:32.896 (2m17.428s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:22:32.896&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:22:32.905 (9ms)&#xA;&gt; Enter [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:169 @ 04/04/23 18:22:32.905&#xA;STEP: setting up a first deployment - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:171 @ 04/04/23 18:22:32.905&#xA;STEP: updating the tcp service to a second deployment - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:196 @ 04/04/23 18:22:40.099&#xA;&lt; Exit [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:169 @ 04/04/23 18:22:50.31 (17.405s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:50.31&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:50.534 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not break functionality - without `*`" classname="nginx-ingress-controller e2e suite" status="passed" time="18.076988583">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:50.534&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:57.402 (6.868s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:57.402&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:23:01.417 (4.015s)&#xA;&gt; Enter [It] should not break functionality - without `*` - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:291 @ 04/04/23 18:23:01.417&#xA;&lt; Exit [It] should not break functionality - without `*` - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:291 @ 04/04/23 18:23:08.429 (7.012s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:08.429&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:08.611 (182ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set secure in cookie with provided false annotation on https" classname="nginx-ingress-controller e2e suite" status="passed" time="21.337074474">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:08.611&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:15.499 (6.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:23:15.499&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:23:19.526 (4.026s)&#xA;&gt; Enter [It] should set secure in cookie with provided false annotation on https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:458 @ 04/04/23 18:23:19.526&#xA;&lt; Exit [It] should set secure in cookie with provided false annotation on https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:458 @ 04/04/23 18:23:29.716 (10.19s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:29.716&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:29.948 (233ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials" classname="nginx-ingress-controller e2e suite" status="passed" time="22.23359748">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:29.949&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:36.837 (6.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:23:36.837&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:23:40.864 (4.027s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:116 @ 04/04/23 18:23:40.864&#xA;&lt; Exit [It] should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:116 @ 04/04/23 18:23:51.976 (11.112s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:51.976&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:52.182 (206ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should exists opentelemetry_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="30.105451465">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:52.183&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:00.596 (8.414s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:24:00.596&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:24:04.625 (4.028s)&#xA;&gt; Enter [It] should exists opentelemetry_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:104 @ 04/04/23 18:24:04.625&#xA;&lt; Exit [It] should exists opentelemetry_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:104 @ 04/04/23 18:24:21.864 (17.239s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:21.864&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:22.288 (424ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:24:22.288&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:24:22.288 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should set cache_key when external auth cache is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="20.270369293999998">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:22.289&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:30.179 (7.89s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:24:30.179&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:24:32.201 (2.022s)&#xA;&gt; Enter [It] should set cache_key when external auth cache is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:322 @ 04/04/23 18:24:32.201&#xA;&lt; Exit [It] should set cache_key when external auth cache is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:322 @ 04/04/23 18:24:42.391 (10.19s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:42.391&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:42.559 (169ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should work with server-alias annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="23.332291638">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:42.559&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:49.462 (6.902s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:24:49.462&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:24:55.483 (6.021s)&#xA;&gt; Enter [It] should work with server-alias annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:372 @ 04/04/23 18:24:55.483&#xA;&lt; Exit [It] should work with server-alias annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:372 @ 04/04/23 18:25:05.677 (10.194s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:05.677&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:05.892 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log http-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="17.146392503">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:05.892&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:12.767 (6.875s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:54 @ 04/04/23 18:25:12.767&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:54 @ 04/04/23 18:25:22.853 (10.086s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:22.853&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:23.038 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to $scheme:// and use proxy_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="22.339493601">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:23.039&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:30.928 (7.889s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:25:30.928&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:25:34.955 (4.027s)&#xA;&gt; Enter [It] should set backend protocol to $scheme:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:49 @ 04/04/23 18:25:34.955&#xA;&lt; Exit [It] should set backend protocol to $scheme:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:49 @ 04/04/23 18:25:45.122 (10.167s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:45.122&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:45.378 (256ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With ingress-class-by-name flag should watch Ingress that uses the class name even if spec is different" classname="nginx-ingress-controller e2e suite" status="passed" time="44.416072668">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:45.378&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:52.259 (6.88s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:25:52.259&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:25:56.284 (4.026s)&#xA;&gt; Enter [BeforeEach] With ingress-class-by-name flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:518 @ 04/04/23 18:25:56.284&#xA;&lt; Exit [BeforeEach] With ingress-class-by-name flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:518 @ 04/04/23 18:26:05.326 (9.041s)&#xA;&gt; Enter [It] should watch Ingress that uses the class name even if spec is different - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:539 @ 04/04/23 18:26:05.326&#xA;&lt; Exit [It] should watch Ingress that uses the class name even if spec is different - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:539 @ 04/04/23 18:26:29.579 (24.254s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:29.579&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:29.795 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not match" classname="nginx-ingress-controller e2e suite" status="passed" time="18.102332549">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:29.795&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:36.671 (6.876s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:26:36.671&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:26:40.694 (4.023s)&#xA;&gt; Enter [It] should not match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:338 @ 04/04/23 18:26:40.694&#xA;&lt; Exit [It] should not match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:338 @ 04/04/23 18:26:47.715 (7.021s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:47.715&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:47.897 (182ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Configmap change should reload after an update in the configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="41.659966884">
-              <system-err>&gt; Enter [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:47.898&#xA;&lt; Exit [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:54.79 (6.892s)&#xA;&gt; Enter [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:32 @ 04/04/23 18:26:54.79&#xA;&lt; Exit [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:32 @ 04/04/23 18:26:58.813 (4.023s)&#xA;&gt; Enter [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:36 @ 04/04/23 18:26:58.813&#xA;STEP: adding a whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:42 @ 04/04/23 18:27:05.828&#xA;STEP: changing error-log-level - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:61 @ 04/04/23 18:27:16.071&#xA;&lt; Exit [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:36 @ 04/04/23 18:27:29.359 (30.546s)&#xA;&gt; Enter [AfterEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:29.359&#xA;&lt; Exit [AfterEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:29.558 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check the variable hash size should set variables-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="28.276887482">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:29.558&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:36.431 (6.873s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:27:36.431&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:27:47.466 (11.035s)&#xA;&gt; Enter [It] should set variables-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:80 @ 04/04/23 18:27:47.466&#xA;&lt; Exit [It] should set variables-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:80 @ 04/04/23 18:27:57.638 (10.172s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:57.638&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:57.835 (197ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] [Flag] default-ssl-certificate uses default ssl certificate for catch-all ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="34.780183951">
-              <system-err>&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:57.835&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:04.708 (6.873s)&#xA;&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 04/04/23 18:28:04.708&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 04/04/23 18:28:20.208 (15.5s)&#xA;&gt; Enter [It] uses default ssl certificate for catch-all ingress - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:64 @ 04/04/23 18:28:20.208&#xA;STEP: making sure new ingress is deployed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:68 @ 04/04/23 18:28:27.228&#xA;STEP: making sure new ingress is responding - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:74 @ 04/04/23 18:28:30.423&#xA;STEP: making sure the configured default ssl certificate is being used - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:76 @ 04/04/23 18:28:30.423&#xA;&lt; Exit [It] uses default ssl certificate for catch-all ingress - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:64 @ 04/04/23 18:28:32.435 (12.227s)&#xA;&gt; Enter [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:32.435&#xA;&lt; Exit [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:32.615 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="17.267999907">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:32.616&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:39.497 (6.882s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:42 @ 04/04/23 18:28:39.497&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:42 @ 04/04/23 18:28:49.668 (10.171s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:49.669&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:49.884 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity" classname="nginx-ingress-controller e2e suite" status="passed" time="21.326374759">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:49.884&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:56.783 (6.899s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:28:56.783&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:29:00.81 (4.027s)&#xA;&gt; Enter [It] should enable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:35 @ 04/04/23 18:29:00.81&#xA;&lt; Exit [It] should enable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:35 @ 04/04/23 18:29:10.998 (10.189s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:10.998&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:11.21 (212ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Shutdown] Grace period shutdown /healthz should return status code 500 during shutdown grace period" classname="nginx-ingress-controller e2e suite" status="passed" time="79.134312514">
-              <system-err>&gt; Enter [BeforeEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:11.211&#xA;&lt; Exit [BeforeEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:19.1 (7.89s)&#xA;&gt; Enter [It] /healthz should return status code 500 during shutdown grace period - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/grace_period.go:35 @ 04/04/23 18:29:19.1&#xA;&lt; Exit [It] /healthz should return status code 500 during shutdown grace period - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/grace_period.go:35 @ 04/04/23 18:30:30.168 (1m11.068s)&#xA;&gt; Enter [AfterEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:30.168&#xA;&lt; Exit [AfterEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:30.345 (177ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-alias should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="21.338020536">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:30.345&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:37.278 (6.932s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:30:37.278&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:30:41.303 (4.025s)&#xA;&gt; Enter [It] should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:36 @ 04/04/23 18:30:41.303&#xA;&lt; Exit [It] should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:36 @ 04/04/23 18:30:51.481 (10.178s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:51.481&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:51.683 (202ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-proxy-protocol should enable PROXY Protocol for TCP" classname="nginx-ingress-controller e2e suite" status="passed" time="633.259626659">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:51.684&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:58.618 (6.934s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:30:58.618&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:31:09.663 (11.045s)&#xA;&gt; Enter [It] should enable PROXY Protocol for TCP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155 @ 04/04/23 18:31:09.663&#xA;Automatically polling progress:&#xA;  [Setting] use-proxy-protocol should enable PROXY Protocol for TCP (Spec Runtime: 3m17.98s)&#xA;    /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155&#xA;    In [It] (Node Runtime: 3m0.001s)&#xA;      /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155&#xA;&#xA;    Spec Goroutine&#xA;    goroutine 2932 [IO wait, 3 minutes]&#xA;      internal/poll.runtime_pollWait(0x7f9e883a91b8, 0x72)&#xA;        /usr/local/go/src/runtime/netpoll.go:306&#xA;      internal/poll.(*pollDesc).wait(0xc0000de300?, 0xc00098a926?, 0x0)&#xA;        /usr/local/go/src/internal/poll/fd_poll_runtime.go:84&#xA;      internal/poll.(*pollDesc).waitRead(...)&#xA;        /usr/local/go/src/internal/poll/fd_poll_runtime.go:89&#xA;      internal/poll.(*FD).Read(0xc0000de300, {0xc00098a926, 0x15a, 0x15a})&#xA;        /usr/local/go/src/internal/poll/fd_unix.go:167&#xA;      net.(*netFD).Read(0xc0000de300, {0xc00098a926?, 0x453656?, 0x380?})&#xA;        /usr/local/go/src/net/fd_posix.go:55&#xA;      net.(*conn).Read(0xc000516660, {0xc00098a926?, 0x19913c0?, 0xc00098a700?})&#xA;        /usr/local/go/src/net/net.go:183&#xA;      io.ReadAll({0x1f62de0, 0xc000516660})&#xA;        /usr/local/go/src/io/io.go:701&#xA;    &gt; k8s.io/ingress-nginx/test/e2e/settings.glob..func38.5()&#xA;        /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:211&#xA;      github.com/onsi/ginkgo/v2/internal.extractBodyFunction.func3({0xa0558e, 0xc000300a80})&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/node.go:463&#xA;      github.com/onsi/ginkgo/v2/internal.(*Suite).runNode.func3()&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/suite.go:863&#xA;      github.com/onsi/ginkgo/v2/internal.(*Suite).runNode&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/suite.go:850&#xA;&lt; Exit [It] should enable PROXY Protocol for TCP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155 @ 04/04/23 18:41:24.726 (10m15.064s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:24.726&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:24.943 (217ms)&#xA;</system-err>
-          </testcase>
-      </testsuite>
-  </testsuites>
\ No newline at end of file

From ad1fb03f002d6378a9293e08c2c9163030f9287c Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Thu, 11 May 2023 21:06:52 -0400
Subject: [PATCH 0764/1641] remove linux tag

---
 Makefile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/Makefile b/Makefile
index 357ef9827..6037ac39d 100644
--- a/Makefile
+++ b/Makefile
@@ -167,7 +167,7 @@ kind-e2e-chart-tests: ## Run helm chart e2e tests
 e2e-test-binary:  ## Build binary for e2e tests.
 	@build/run-in-docker.sh \
 		MAC_OS=$(MAC_OS) \
-		ginkgo build ./test/e2e -tags linux
+		ginkgo build ./test/e2e
 
 .PHONY: print-e2e-suite
 print-e2e-suite: e2e-test-binary ## Prints information about the suite of e2e tests.

From bbf70c2a96999cc08194e31ea18d8baf5079aba7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 19 May 2023 08:24:30 -0700
Subject: [PATCH 0765/1641] Bump google.golang.org/grpc from 1.54.0 to 1.55.0
 (#9936)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.54.0 to 1.55.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.54.0...v1.55.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 9de23ba1a..0a03e522b 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.8.0
-	google.golang.org/grpc v1.54.0
+	google.golang.org/grpc v1.55.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -102,14 +102,14 @@ require (
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.8.0 // indirect
 	golang.org/x/net v0.9.0 // indirect
-	golang.org/x/oauth2 v0.5.0 // indirect
+	golang.org/x/oauth2 v0.6.0 // indirect
 	golang.org/x/sys v0.7.0 // indirect
 	golang.org/x/term v0.7.0 // indirect
 	golang.org/x/text v0.9.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.6.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/genproto v0.0.0-20230110181048-76db0878b65f // indirect
+	google.golang.org/genproto v0.0.0-20230306155012-7f2fa6fef1f4 // indirect
 	google.golang.org/protobuf v1.30.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index da99bd248..e602f477b 100644
--- a/go.sum
+++ b/go.sum
@@ -468,8 +468,8 @@ golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4Iltr
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.5.0 h1:HuArIo48skDwlrvM3sEdHXElYslAMsf3KwRkkW4MC4s=
-golang.org/x/oauth2 v0.5.0/go.mod h1:9/XBHVqLaWO3/BRHs5jbpYCnOZVjj5V0ndyaAM7KB4I=
+golang.org/x/oauth2 v0.6.0 h1:Lh8GPgSKBfWSwFvtuWOfeI3aAAnbXTSutYxJiOJFgIw=
+golang.org/x/oauth2 v0.6.0/go.mod h1:ycmewcwgD4Rpr3eZJLSB4Kyyljb3qDh40vJ8STE5HKw=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -650,8 +650,8 @@ google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6D
 google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20230110181048-76db0878b65f h1:BWUVssLB0HVOSY78gIdvk1dTVYtT1y8SBWtPYuTJ/6w=
-google.golang.org/genproto v0.0.0-20230110181048-76db0878b65f/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
+google.golang.org/genproto v0.0.0-20230306155012-7f2fa6fef1f4 h1:DdoeryqhaXp1LtT/emMP1BRJPHHKFi5akj/nbx/zNTA=
+google.golang.org/genproto v0.0.0-20230306155012-7f2fa6fef1f4/go.mod h1:NWraEVixdDnqcqQ30jipen1STv2r/n24Wb7twVTGR4s=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -664,8 +664,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.54.0 h1:EhTqbhiYeixwWQtAEZAxmV9MGqcjEU2mFx52xCzNyag=
-google.golang.org/grpc v1.54.0/go.mod h1:PUSEXI6iWghWaB6lXM4knEgpJNu2qUcKfDtNci3EC2g=
+google.golang.org/grpc v1.55.0 h1:3Oj82/tFSCeUrRTg/5E/7d/W5A1tj6Ky1ABAuZuv5ag=
+google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From 0dd1cf74600a49ccb5b416da5f3fe7b96ef40d06 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 19 May 2023 08:26:30 -0700
Subject: [PATCH 0766/1641] Bump github.com/prometheus/client_model from 0.3.0
 to 0.4.0 (#9937)

Bumps [github.com/prometheus/client_model](https://github.com/prometheus/client_model) from 0.3.0 to 0.4.0.
- [Release notes](https://github.com/prometheus/client_model/releases)
- [Commits](https://github.com/prometheus/client_model/compare/v0.3.0...v0.4.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_model
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 0a03e522b..58b647b40 100644
--- a/go.mod
+++ b/go.mod
@@ -18,7 +18,7 @@ require (
 	github.com/opencontainers/runc v1.1.7
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.15.0
-	github.com/prometheus/client_model v0.3.0
+	github.com/prometheus/client_model v0.4.0
 	github.com/prometheus/common v0.42.0
 	github.com/spf13/cobra v1.7.0
 	github.com/spf13/pflag v1.0.5
diff --git a/go.sum b/go.sum
index e602f477b..908b21594 100644
--- a/go.sum
+++ b/go.sum
@@ -311,8 +311,8 @@ github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/client_model v0.3.0 h1:UBgGFHqYdG/TPFD1B1ogZywDqEkwp3fBMvqdiQ7Xew4=
-github.com/prometheus/client_model v0.3.0/go.mod h1:LDGWKZIo7rky3hgvBe+caln+Dr3dPggB5dvjtD7w9+w=
+github.com/prometheus/client_model v0.4.0 h1:5lQXD3cAg1OXBf4Wq03gTrXHeaV0TQvGfUooCfx1yqY=
+github.com/prometheus/client_model v0.4.0/go.mod h1:oMQmHW1/JoDwqLtg57MGgP/Fb1CJEYF2imWWhWtMkYU=
 github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=

From c540b584745ac47b45f859c5db52e6b7a612a9c6 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sat, 20 May 2023 08:58:18 -0300
Subject: [PATCH 0767/1641] Validate path types (#9967)

* Validate path types

* Fix the year of header

* Update internal/ingress/controller/config/config.go

Co-authored-by: Jintao Zhang <tao12345666333@163.com>

---------

Co-authored-by: Jintao Zhang <tao12345666333@163.com>
---
 .../nginx-configuration/configmap.md          |  15 ++
 internal/ingress/controller/config/config.go  |   7 +
 internal/ingress/controller/controller.go     |   9 +
 internal/ingress/inspector/inspector.go       |  29 +++
 internal/ingress/inspector/inspector_test.go  | 191 ++++++++++++++++++
 internal/ingress/inspector/rules.go           |   8 +
 test/e2e/admission/admission.go               |  37 ++++
 7 files changed, 296 insertions(+)
 create mode 100644 internal/ingress/inspector/inspector_test.go

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index ccb115a0f..782b9bc92 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -229,6 +229,7 @@ The following table shows a configuration option's name, type, and the default v
 |[service-upstream](#service-upstream)|bool|"false"|
 |[ssl-reject-handshake](#ssl-reject-handshake)|bool|"false"|
 |[debug-connections](#debug-connections)|[]string|"127.0.0.1,1.1.1.1/24"|
+|[strict-validate-path-type](#strict-validate-path-type)|bool|"false" (v1.7.x)|
 
 ## add-headers
 
@@ -1379,3 +1380,17 @@ _**default:**_ ""
 
 _References:_
 [http://nginx.org/en/docs/ngx_core_module.html#debug_connection](http://nginx.org/en/docs/ngx_core_module.html#debug_connection)
+
+## strict-validate-path-type
+Ingress objects contains a field called pathType that defines the proxy behavior. It can be `Exact`, `Prefix` and `ImplementationSpecific`.
+
+When pathType is configured as `Exact` or `Prefix`, there should be a more strict validation, allowing only paths starting with "/" and
+containing only alphanumeric characters and "-", "_" and additional "/".
+
+When this option is enabled, the validation will happen on the Admission Webhook, making any Ingress not using pathType `ImplementationSpecific`
+and containing invalid characters to be denied.
+
+This means that Ingress objects that rely on paths containing regex characters should use `ImplementationSpecific` pathType.
+
+The cluster admin should establish validation rules using mechanisms like [Open Policy Agent](https://www.openpolicyagent.org/) to 
+validate that only authorized users can use `ImplementationSpecific` pathType and that only the authorized characters can be used.
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index da37ea3c9..fafb76ce5 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -830,6 +830,12 @@ type Configuration struct {
 	// http://nginx.org/en/docs/ngx_core_module.html#debug_connection
 	// Default: ""
 	DebugConnections []string `json:"debug-connections"`
+
+	// StrictValidatePathType enable the strict validation of Ingress Paths
+	// It enforces that pathType of type Exact or Prefix should start with / and contain only
+	// alphanumeric chars, "-", "_", "/".In case of additional characters,
+	// like used on Rewrite configurations the user should use pathType as ImplementationSpecific
+	StrictValidatePathType bool `json:"strict-validate-path-type"`
 }
 
 // NewDefault returns the default nginx configuration
@@ -1002,6 +1008,7 @@ func NewDefault() Configuration {
 		GlobalRateLimitMemcachedPoolSize:       50,
 		GlobalRateLimitStatucCode:              429,
 		DebugConnections:                       []string{},
+		StrictValidatePathType:                 false, // TODO: This will be true in future releases
 	}
 
 	if klog.V(5).Enabled() {
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 80b5b587b..49e8aa0bb 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -270,11 +270,13 @@ func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
 	if !ing.DeletionTimestamp.IsZero() {
 		return nil
 	}
+
 	if n.cfg.DeepInspector {
 		if err := inspector.DeepInspect(ing); err != nil {
 			return fmt.Errorf("invalid object: %w", err)
 		}
 	}
+
 	// Do not attempt to validate an ingress that's not meant to be controlled by the current instance of the controller.
 	if ingressClass, err := n.store.GetIngressClass(ing, n.cfg.IngressClassConfiguration); ingressClass == "" {
 		klog.Warningf("ignoring ingress %v in %v based on annotation %v: %v", ing.Name, ing.ObjectMeta.Namespace, ingressClass, err)
@@ -293,6 +295,13 @@ func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
 	cfg := n.store.GetBackendConfiguration()
 	cfg.Resolver = n.resolver
 
+	// Adds the pathType Validation
+	if cfg.StrictValidatePathType {
+		if err := inspector.ValidatePathType(ing); err != nil {
+			return fmt.Errorf("ingress contains invalid paths: %w", err)
+		}
+	}
+
 	var arrayBadWords []string
 
 	if cfg.AnnotationValueWordBlocklist != "" {
diff --git a/internal/ingress/inspector/inspector.go b/internal/ingress/inspector/inspector.go
index e7b6c2f10..23b57e538 100644
--- a/internal/ingress/inspector/inspector.go
+++ b/internal/ingress/inspector/inspector.go
@@ -17,6 +17,9 @@ limitations under the License.
 package inspector
 
 import (
+	"errors"
+	"fmt"
+
 	corev1 "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/klog/v2"
@@ -36,3 +39,29 @@ func DeepInspect(obj interface{}) error {
 		return nil
 	}
 }
+
+var (
+	implSpecific = networking.PathTypeImplementationSpecific
+)
+
+func ValidatePathType(ing *networking.Ingress) error {
+	if ing == nil {
+		return fmt.Errorf("received null ingress")
+	}
+	var err error
+	for _, rule := range ing.Spec.Rules {
+		if rule.HTTP != nil {
+			for _, path := range rule.HTTP.Paths {
+				if path.Path == "" {
+					continue
+				}
+				if path.PathType == nil || *path.PathType != implSpecific {
+					if isValid := validPathType.MatchString(path.Path); !isValid {
+						err = errors.Join(err, fmt.Errorf("path %s cannot be used with pathType %s", path.Path, string(*path.PathType)))
+					}
+				}
+			}
+		}
+	}
+	return err
+}
diff --git a/internal/ingress/inspector/inspector_test.go b/internal/ingress/inspector/inspector_test.go
new file mode 100644
index 000000000..36b029cff
--- /dev/null
+++ b/internal/ingress/inspector/inspector_test.go
@@ -0,0 +1,191 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package inspector
+
+import (
+	"errors"
+	"fmt"
+	"testing"
+
+	networking "k8s.io/api/networking/v1"
+)
+
+var (
+	exact  = networking.PathTypeExact
+	prefix = networking.PathTypePrefix
+)
+
+var (
+	validIngress = &networking.Ingress{
+		Spec: networking.IngressSpec{
+			Rules: []networking.IngressRule{
+				{
+					IngressRuleValue: networking.IngressRuleValue{
+						HTTP: &networking.HTTPIngressRuleValue{
+							Paths: []networking.HTTPIngressPath{
+								{
+									Path: "/test",
+								},
+								{
+									PathType: &prefix,
+									Path:     "/xpto/ab0/x_ss-9",
+								},
+								{
+									PathType: &exact,
+									Path:     "/bla/",
+								},
+							},
+						},
+					},
+				},
+			},
+		},
+	}
+
+	emptyIngress = &networking.Ingress{
+		Spec: networking.IngressSpec{
+			Rules: []networking.IngressRule{
+				{
+					IngressRuleValue: networking.IngressRuleValue{
+						HTTP: &networking.HTTPIngressRuleValue{
+							Paths: []networking.HTTPIngressPath{
+								{
+									PathType: &exact,
+								},
+							},
+						},
+					},
+				},
+			},
+		},
+	}
+
+	invalidIngress = &networking.Ingress{
+		Spec: networking.IngressSpec{
+			Rules: []networking.IngressRule{
+				{
+					IngressRuleValue: networking.IngressRuleValue{
+						HTTP: &networking.HTTPIngressRuleValue{
+							Paths: []networking.HTTPIngressPath{
+								{
+									PathType: &exact,
+									Path:     "/foo.+",
+								},
+								{
+									PathType: &exact,
+									Path:     "xpto/lala",
+								},
+								{
+									PathType: &exact,
+									Path:     "/xpto/lala",
+								},
+								{
+									PathType: &prefix,
+									Path:     "/foo/bar/[a-z]{3}",
+								},
+								{
+									PathType: &prefix,
+									Path:     "/lala/xp\ntest",
+								},
+							},
+						},
+					},
+				},
+			},
+		},
+	}
+
+	validImplSpecific = &networking.Ingress{
+		Spec: networking.IngressSpec{
+			Rules: []networking.IngressRule{
+				{
+					IngressRuleValue: networking.IngressRuleValue{
+						HTTP: &networking.HTTPIngressRuleValue{
+							Paths: []networking.HTTPIngressPath{
+								{
+									PathType: &implSpecific,
+									Path:     "/foo.+",
+								},
+								{
+									PathType: &implSpecific,
+									Path:     "xpto/lala",
+								},
+							},
+						},
+					},
+				},
+			},
+		},
+	}
+)
+
+var aErr = func(s, pathType string) error {
+	return fmt.Errorf("path %s cannot be used with pathType %s", s, pathType)
+}
+
+func TestValidatePathType(t *testing.T) {
+	tests := []struct {
+		name    string
+		ing     *networking.Ingress
+		wantErr bool
+		err     error
+	}{
+		{
+			name:    "nil should return an error",
+			ing:     nil,
+			wantErr: true,
+			err:     fmt.Errorf("received null ingress"),
+		},
+		{
+			name:    "valid should not return an error",
+			ing:     validIngress,
+			wantErr: false,
+		},
+		{
+			name:    "empty should not return an error",
+			ing:     emptyIngress,
+			wantErr: false,
+		},
+		{
+			name:    "empty should not return an error",
+			ing:     validImplSpecific,
+			wantErr: false,
+		},
+		{
+			name:    "invalid should return multiple errors",
+			ing:     invalidIngress,
+			wantErr: true,
+			err: errors.Join(
+				aErr("/foo.+", "Exact"),
+				aErr("xpto/lala", "Exact"),
+				aErr("/foo/bar/[a-z]{3}", "Prefix"),
+				aErr("/lala/xp\ntest", "Prefix"),
+			),
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			err := ValidatePathType(tt.ing)
+			if (err != nil) != tt.wantErr {
+				t.Errorf("ValidatePathType() error = %v, wantErr %v", err, tt.wantErr)
+			}
+			if (err != nil && tt.err != nil) && tt.err.Error() != err.Error() {
+				t.Errorf("received invalid error: want = %v, expected %v", tt.err, err)
+			}
+		})
+	}
+}
diff --git a/internal/ingress/inspector/rules.go b/internal/ingress/inspector/rules.go
index ab573b7fe..c9714e680 100644
--- a/internal/ingress/inspector/rules.go
+++ b/internal/ingress/inspector/rules.go
@@ -28,6 +28,14 @@ var (
 	invalidSecretsDir     = regexp.MustCompile(`/var/run/secrets`)
 	invalidByLuaDirective = regexp.MustCompile(`.*_by_lua.*`)
 
+	// validPathType enforces alphanumeric, -, _ and / characters.
+	// The field (?i) turns this regex case insensitive
+	// The remaining regex says that the string must start with a "/" (^/)
+	// the group [[:alnum:]\_\-\/]* says that any amount of characters (A-Za-z0-9), _, - and /
+	// are accepted until the end of the line
+	// Nothing else is accepted.
+	validPathType = regexp.MustCompile(`(?i)^/[[:alnum:]\_\-\/]*$`)
+
 	invalidRegex = []regexp.Regexp{}
 )
 
diff --git a/test/e2e/admission/admission.go b/test/e2e/admission/admission.go
index 4a4e31980..0ee8248b0 100644
--- a/test/e2e/admission/admission.go
+++ b/test/e2e/admission/admission.go
@@ -30,6 +30,8 @@ import (
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
+
+	networking "k8s.io/api/networking/v1"
 )
 
 var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller", func() {
@@ -161,6 +163,41 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 		assert.NotNil(ginkgo.GinkgoT(), err, "creating an ingress with invalid annotation value should return an error")
 	})
 
+	ginkgo.It("should return an error if there is an invalid path and wrong pathType is set", func() {
+		host := "path-validation"
+		var (
+			exactPathType  = networking.PathTypeExact
+			prefixPathType = networking.PathTypePrefix
+			implSpecific   = networking.PathTypeImplementationSpecific
+		)
+
+		f.UpdateNginxConfigMapData("strict-validate-path-type", "true")
+
+		invalidPath := framework.NewSingleIngress("first-ingress", "/foo/bar/[a-z]{3}", host, f.Namespace, framework.EchoService, 80, nil)
+		invalidPath.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &exactPathType
+
+		_, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), invalidPath, metav1.CreateOptions{})
+		assert.NotNil(ginkgo.GinkgoT(), err, "creating an ingress with invalid path value should return an error")
+
+		invalidPath.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &prefixPathType
+		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), invalidPath, metav1.CreateOptions{})
+		assert.NotNil(ginkgo.GinkgoT(), err, "creating an ingress with invalid path value should return an error")
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/use-regex":      "true",
+			"nginx.ingress.kubernetes.io/rewrite-target": "/new/backend",
+		}
+		pathSpecific := framework.NewSingleIngress("pathspec-ingress", "/foo/bar/[a-z]{3}", host, f.Namespace, framework.EchoService, 80, annotations)
+		pathSpecific.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &implSpecific
+		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), pathSpecific, metav1.CreateOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "creating an ingress with arbitrary path and implSpecific value should not return an error")
+
+		validPath := framework.NewSingleIngress("second-ingress", "/bloblo", host, f.Namespace, framework.EchoService, 80, nil)
+		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), validPath, metav1.CreateOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "creating an ingress with valid path should not return an error")
+
+	})
+
 	ginkgo.It("should not return an error if the Ingress V1 definition is valid with Ingress Class", func() {
 		out, err := createIngress(f.Namespace, validV1Ingress)
 		assert.Equal(ginkgo.GinkgoT(), "ingress.networking.k8s.io/extensions created\n", out)

From 0cb3dcfd5c313305bf36924c300572dbd7f07fc1 Mon Sep 17 00:00:00 2001
From: hongzhouzi <36416216+hongzhouzi@users.noreply.github.com>
Date: Sun, 21 May 2023 06:26:18 +0800
Subject: [PATCH 0768/1641] fix: avoid builds and tests for changes to markdown
 (#9962)

---
 .github/workflows/ci.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 19d39ab70..862a0604a 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -7,6 +7,7 @@ on:
     paths-ignore:
       - 'docs/**'
       - 'deploy/**'
+      - '**.md'
 
   push:
     branches:
@@ -14,6 +15,7 @@ on:
     paths-ignore:
       - 'docs/**'
       - 'deploy/**'
+      - '**.md'
 
   workflow_dispatch:
     inputs:

From 4d57ddb5faf9c0899a0b11ca7a15777c2cc5dba8 Mon Sep 17 00:00:00 2001
From: fergusean <fergusean@gmail.com>
Date: Sun, 21 May 2023 07:08:20 -0400
Subject: [PATCH 0769/1641] Correct annotations in monitoring docs (#9976)

---
 docs/user-guide/monitoring.md | 31 +++++++++++++++----------------
 1 file changed, 15 insertions(+), 16 deletions(-)

diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index 1e30e556f..28608e850 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -39,10 +39,9 @@ This tutorial will show you how to install [Prometheus](https://prometheus.io/)
   controller:
     metrics:
       enabled: true
-      service:
-        annotations:
-          prometheus.io/port: "10254"
-          prometheus.io/scrape: "true"
+    podAnnotations:
+      prometheus.io/port: "10254"
+      prometheus.io/scrape: "true"
   ..
   ```
    - If you are **not using helm**, you will have to edit your manifests like this:
@@ -50,10 +49,6 @@ This tutorial will show you how to install [Prometheus](https://prometheus.io/)
        ```
        apiVersion: v1
        kind: Service
-       metadata:
-        annotations:
-          prometheus.io/scrape: "true"
-          prometheus.io/port: "10254"
        ..
        spec:
          ports:
@@ -67,16 +62,20 @@ This tutorial will show you how to install [Prometheus](https://prometheus.io/)
          ```
          apiVersion: v1
          kind: Deployment
-         metadata:
-          annotations:
-            prometheus.io/scrape: "true"
-            prometheus.io/port: "10254"
          ..
          spec:
-           ports:
-             - name: prometheus
-               containerPort: 10254
-               ..
+           template:
+             metadata:
+               annotations:
+                 prometheus.io/scrape: "true"
+                 prometheus.io/port: "10254"
+             spec:
+               containers:
+                 - name: controller
+                   ports:
+                     - name: prometheus
+                       containerPort: 10254
+                     ..
          ```
 
 

From ac9a50751e98f3ef5f42102a61721b8c44b6426f Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Sun, 21 May 2023 19:04:19 +0200
Subject: [PATCH 0770/1641] OpenTelemetry default config (#9978)

---
 internal/ingress/controller/config/config.go | 14 ++++++++++----
 1 file changed, 10 insertions(+), 4 deletions(-)

diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index fafb76ce5..ad4bebde0 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -596,7 +596,7 @@ type Configuration struct {
 	OtelServiceName string `json:"otel-service-name"`
 
 	// OtelSampler specifies the sampler to use for any traces created
-	// Default: AlwaysOff
+	// Default: AlwaysOn
 	OtelSampler string `json:"otel-sampler"`
 
 	// OtelSamplerRatio specifies the sampler ratio to use for any traces created
@@ -604,16 +604,19 @@ type Configuration struct {
 	OtelSamplerRatio float32 `json:"otel-sampler-ratio"`
 
 	//OtelSamplerParentBased specifies the parent based sampler to be use for any traces created
-	// Default: false
+	// Default: true
 	OtelSamplerParentBased bool `json:"otel-sampler-parent-based"`
 
 	// MaxQueueSize specifies the max queue size for uploading traces
+	// Default: 2048
 	OtelMaxQueueSize int32 `json:"otel-max-queuesize"`
 
 	// ScheduleDelayMillis specifies the max delay between uploading traces
+	// Default: 5000
 	OtelScheduleDelayMillis int32 `json:"otel-schedule-delay-millis"`
 
 	// MaxExportBatchSize specifies the max export batch size to used when uploading traces
+	// Default: 512
 	OtelMaxExportBatchSize int32 `json:"otel-max-export-batch-size"`
 
 	// ZipkinCollectorHost specifies the host to use when uploading traces
@@ -975,9 +978,12 @@ func NewDefault() Configuration {
 		OpentelemetryConfig:                    "/etc/nginx/opentelemetry.toml",
 		OtlpCollectorPort:                      "4317",
 		OtelServiceName:                        "nginx",
-		OtelSampler:                            "AlwaysOff",
+		OtelSampler:                            "AlwaysOn",
 		OtelSamplerRatio:                       0.01,
-		OtelSamplerParentBased:                 false,
+		OtelSamplerParentBased:                 true,
+		OtelScheduleDelayMillis:                5000,
+		OtelMaxExportBatchSize:                 512,
+		OtelMaxQueueSize:                       2048,
 		ZipkinCollectorPort:                    9411,
 		ZipkinServiceName:                      "nginx",
 		ZipkinSampleRate:                       1.0,

From e3fb63fc141900f162c1fcea13da9001b2f5fbf8 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 May 2023 05:02:31 -0700
Subject: [PATCH 0771/1641] Bump github.com/prometheus/common from 0.42.0 to
 0.43.0 (#9981)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.42.0 to 0.43.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.42.0...v0.43.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 14 +++++++-------
 2 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/go.mod b/go.mod
index 58b647b40..97ad2c9e2 100644
--- a/go.mod
+++ b/go.mod
@@ -17,9 +17,9 @@ require (
 	github.com/onsi/ginkgo/v2 v2.9.0
 	github.com/opencontainers/runc v1.1.7
 	github.com/pmezard/go-difflib v1.0.0
-	github.com/prometheus/client_golang v1.15.0
+	github.com/prometheus/client_golang v1.15.1
 	github.com/prometheus/client_model v0.4.0
-	github.com/prometheus/common v0.42.0
+	github.com/prometheus/common v0.43.0
 	github.com/spf13/cobra v1.7.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.2
@@ -102,7 +102,7 @@ require (
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.8.0 // indirect
 	golang.org/x/net v0.9.0 // indirect
-	golang.org/x/oauth2 v0.6.0 // indirect
+	golang.org/x/oauth2 v0.7.0 // indirect
 	golang.org/x/sys v0.7.0 // indirect
 	golang.org/x/term v0.7.0 // indirect
 	golang.org/x/text v0.9.0 // indirect
diff --git a/go.sum b/go.sum
index 908b21594..cc9b44d6b 100644
--- a/go.sum
+++ b/go.sum
@@ -305,8 +305,8 @@ github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXP
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
-github.com/prometheus/client_golang v1.15.0 h1:5fCgGYogn0hFdhyhLbw7hEsWxufKtY9klyvdNfFlFhM=
-github.com/prometheus/client_golang v1.15.0/go.mod h1:e9yaBhRPU2pPNsZwE+JdQl0KEt1N9XgF6zxWmaC0xOk=
+github.com/prometheus/client_golang v1.15.1 h1:8tXpTmJbyH5lydzFPoxSIJ0J46jdh3tylbvM1xCv0LI=
+github.com/prometheus/client_golang v1.15.1/go.mod h1:e9yaBhRPU2pPNsZwE+JdQl0KEt1N9XgF6zxWmaC0xOk=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
@@ -317,8 +317,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.42.0 h1:EKsfXEYo4JpWMHH5cg+KOUWeuJSov1Id8zGR8eeI1YM=
-github.com/prometheus/common v0.42.0/go.mod h1:xBwqVerjNdUDjgODMpudtOMwlOwf2SaTr1yjz4b7Zbc=
+github.com/prometheus/common v0.43.0 h1:iq+BVjvYLei5f27wiuNiB1DN6DYQkp1c8Bx0Vykh5us=
+github.com/prometheus/common v0.43.0/go.mod h1:NCvr5cQIh3Y/gy73/RdVtC9r8xxrxwJnB+2lB3BxrFc=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
@@ -329,8 +329,8 @@ github.com/prometheus/procfs v0.9.0 h1:wzCHvIvM5SxWqYvwgVL7yJY8Lz3PKn49KQtpgMYJf
 github.com/prometheus/procfs v0.9.0/go.mod h1:+pB4zwohETzFnmlpe6yd2lSc+0/46IYZRB/chUwxUZY=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
 github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTEfhy4qGm1nDQc=
-github.com/rogpeppe/go-internal v1.8.0 h1:FCbCCtXNOY3UtUuHUYaghJg4y7Fd14rXifAYUAtL9R8=
 github.com/rogpeppe/go-internal v1.8.0/go.mod h1:WmiCO8CzOY8rg0OYDC4/i/2WRWAB6poM+XZ2dLUbcbE=
+github.com/rogpeppe/go-internal v1.10.0 h1:TMyTOH3F/DB16zRVcYyreMH6GnZZrwQVAoYjRBZyWFQ=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
 github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=
@@ -468,8 +468,8 @@ golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4Iltr
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.6.0 h1:Lh8GPgSKBfWSwFvtuWOfeI3aAAnbXTSutYxJiOJFgIw=
-golang.org/x/oauth2 v0.6.0/go.mod h1:ycmewcwgD4Rpr3eZJLSB4Kyyljb3qDh40vJ8STE5HKw=
+golang.org/x/oauth2 v0.7.0 h1:qe6s0zUXlPX80/dITx3440hWZ7GwMwgDDyrSGTPJG/g=
+golang.org/x/oauth2 v0.7.0/go.mod h1:hPLQkd9LyjfXTiRohC/41GhcFqxisoUQ99sCUOHO9x4=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=

From 3fc10b8374788ace736891f32a47c22b6d29b549 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 May 2023 05:04:31 -0700
Subject: [PATCH 0772/1641] Bump securego/gosec from 2.15.0 to 2.16.0 (#9983)

Bumps [securego/gosec](https://github.com/securego/gosec) from 2.15.0 to 2.16.0.
- [Release notes](https://github.com/securego/gosec/releases)
- [Changelog](https://github.com/securego/gosec/blob/master/.goreleaser.yml)
- [Commits](https://github.com/securego/gosec/compare/a459eb0ba387d9bd083d5c2e2354dbeef2465038...c5ea1b7bdd9efc3792e513258853552b0ae31e06)

---
updated-dependencies:
- dependency-name: securego/gosec
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 862a0604a..9049a8579 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -71,7 +71,7 @@ jobs:
         uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - name: Run Gosec Security Scanner
-        uses: securego/gosec@a459eb0ba387d9bd083d5c2e2354dbeef2465038 # v2.15.0
+        uses: securego/gosec@c5ea1b7bdd9efc3792e513258853552b0ae31e06 # v2.16.0
         with:
           # G601 for zz_generated.deepcopy.go
           # G306 TODO: Expect WriteFile permissions to be 0600 or less

From 270571b8ccbdf3fcfe148d2935690cafc86fec6f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 May 2023 05:28:30 -0700
Subject: [PATCH 0773/1641] Bump actions/setup-go from 4.0.0 to 4.0.1 (#9984)

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4.0.0 to 4.0.1.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/4d34df0c2316fe8122ab82dc22947d607c0c91f9...fac708d6674e30b6ba41289acaab6d4b75aa0753)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml     | 12 ++++++------
 .github/workflows/plugin.yaml |  2 +-
 2 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 9049a8579..18be42906 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -89,7 +89,7 @@ jobs:
       
       - name: Set up Go
         id: go
-        uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
+        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
         with:
           go-version: '1.20'
           check-latest: true
@@ -108,7 +108,7 @@ jobs:
       
       - name: Set up Go
         id: go
-        uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
+        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
         with:
           go-version: '1.20'
           check-latest: true
@@ -127,7 +127,7 @@ jobs:
       
       - name: Set up Go
         id: go
-        uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
+        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
         with:
           go-version: '1.20'
           check-latest: true
@@ -148,7 +148,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
+        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
         with:
           go-version: '1.20'
           check-latest: true
@@ -214,7 +214,7 @@ jobs:
         uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
 
       - name: Setup Go
-        uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
+        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
         with:
           go-version: '1.20'
           check-latest: true
@@ -472,7 +472,7 @@ jobs:
       - name: Set up Go
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
+        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
         with:
           go-version: '1.20'
           check-latest: true
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index f77c59937..c5c6fc2b1 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -22,7 +22,7 @@ jobs:
           fetch-depth: 0
 
       - name: Set up Go
-        uses: actions/setup-go@4d34df0c2316fe8122ab82dc22947d607c0c91f9 # v4.0.0
+        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
         with:
           go-version: 1.20
           check-latest: true

From 214ab50820d80201cd233661ed0657b3343dffb7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 May 2023 06:12:31 -0700
Subject: [PATCH 0774/1641] Bump golang.org/x/crypto from 0.8.0 to 0.9.0
 (#9982)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.8.0 to 0.9.0.
- [Commits](https://github.com/golang/crypto/compare/v0.8.0...v0.9.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index 97ad2c9e2..fa303b4f3 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.2
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.8.0
+	golang.org/x/crypto v0.9.0
 	google.golang.org/grpc v1.55.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -101,10 +101,10 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.8.0 // indirect
-	golang.org/x/net v0.9.0 // indirect
+	golang.org/x/net v0.10.0 // indirect
 	golang.org/x/oauth2 v0.7.0 // indirect
-	golang.org/x/sys v0.7.0 // indirect
-	golang.org/x/term v0.7.0 // indirect
+	golang.org/x/sys v0.8.0 // indirect
+	golang.org/x/term v0.8.0 // indirect
 	golang.org/x/text v0.9.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.6.0 // indirect
diff --git a/go.sum b/go.sum
index cc9b44d6b..d41cfa734 100644
--- a/go.sum
+++ b/go.sum
@@ -393,8 +393,8 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.8.0 h1:pd9TJtTueMTVQXzk8E2XESSMQDj/U7OUu0PqJqPXQjQ=
-golang.org/x/crypto v0.8.0/go.mod h1:mRqEX+O9/h5TFCrQhkgjo2yKi0yYA+9ecGkdQoHrywE=
+golang.org/x/crypto v0.9.0 h1:LF6fAI+IutBocDJ2OT0Q1g8plpYljMZ4+lty+dsqw3g=
+golang.org/x/crypto v0.9.0/go.mod h1:yrmDGqONDYtNj3tH8X9dzUun2m2lzPa9ngI6/RUPGR0=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -460,8 +460,8 @@ golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81R
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.9.0 h1:aWJ/m6xSmxWBx+V0XRHTlrYrPG56jKsLdTFmsSsCzOM=
-golang.org/x/net v0.9.0/go.mod h1:d48xBJpPfHeWQsugry2m+kC02ZBRGRgulfHnEXEuWns=
+golang.org/x/net v0.10.0 h1:X2//UzNDwYmtCLn7To6G58Wr6f5ahEAQgKNzv9Y951M=
+golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -527,11 +527,11 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.7.0 h1:3jlCCIQZPdOYu1h8BkNvLz8Kgwtae2cagcG/VamtZRU=
-golang.org/x/sys v0.7.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.8.0 h1:EBmGv8NaZBZTWvrbjNoL6HVt+IVy3QDQpJs7VRIw3tU=
+golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.7.0 h1:BEvjmm5fURWqcfbSKTdpkDXYBrUS1c0m8agp14W48vQ=
-golang.org/x/term v0.7.0/go.mod h1:P32HKFT3hSsZrRxla30E9HqToFYAQPCMs/zFMBUFqPY=
+golang.org/x/term v0.8.0 h1:n5xxQn2i3PC0yLAbjTpNT85q/Kgzcr2gIoX9OrJUols=
+golang.org/x/term v0.8.0/go.mod h1:xPskH00ivmX89bAKVGSKKtLOWNx2+17Eiy94tnKShWo=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=

From 8c7981bfa21c6dab551ed1f4c48db217b5d852ca Mon Sep 17 00:00:00 2001
From: Federico Cuello <fcuello@fu.do>
Date: Mon, 22 May 2023 16:42:34 +0200
Subject: [PATCH 0775/1641] helm: Fix opentelemetry module installation for
 daemonset (#9792)

* fix: opentelemetry module for controller-daemonset

* fix: Align controller-daemonset with controller-deployment

* Fix typo in github/workflows/ci
---
 .github/workflows/ci.yaml                        |  2 +-
 .../templates/controller-daemonset.yaml          | 16 +++++++++-------
 2 files changed, 10 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 18be42906..4d443f8d5 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -312,7 +312,7 @@ jobs:
           kind get kubeconfig > $HOME/.kube/kind-config-kind
           make kind-e2e-test
 
-      - name: Uplaod e2e junit-reports
+      - name: Upload e2e junit-reports
         uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
         if: success() || failure()
         with:
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index bce21a7d6..82abe7564 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -53,12 +53,12 @@ spec:
       imagePullSecrets: {{ toYaml .Values.imagePullSecrets | nindent 8 }}
     {{- end }}
     {{- if .Values.controller.priorityClassName }}
-      priorityClassName: {{ .Values.controller.priorityClassName }}
+      priorityClassName: {{ .Values.controller.priorityClassName | quote }}
     {{- end }}
     {{- if or .Values.controller.podSecurityContext .Values.controller.sysctls }}
       securityContext:
     {{- end }}
-    {{- if .Values.controller.podSecurityContext  }}
+    {{- if .Values.controller.podSecurityContext }}
         {{- toYaml .Values.controller.podSecurityContext | nindent 8 }}
     {{- end }}
     {{- if .Values.controller.sysctls }}
@@ -143,11 +143,15 @@ spec:
               hostPort: {{ $key }}
               {{- end }}
           {{- end }}
-        {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraModules) }}
+        {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
           volumeMounts:
-          {{- if .Values.controller.extraModules }}
+          {{- if (or .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
             - name: modules
+            {{ if .Values.controller.image.chroot }}
+              mountPath: /chroot/modules_mount
+            {{ else }}
               mountPath: /modules_mount
+            {{ end }}
           {{- end }}
           {{- if .Values.controller.customTemplate.configMapName }}
             - mountPath: /etc/nginx/template
@@ -169,9 +173,7 @@ spec:
       {{- if .Values.controller.extraContainers }}
         {{ toYaml .Values.controller.extraContainers | nindent 8 }}
       {{- end }}
-
-
-    {{- if (or .Values.controller.extraInitContainers .Values.controller.extraModules) }}
+    {{- if (or .Values.controller.extraInitContainers .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
       initContainers:
       {{- if .Values.controller.extraInitContainers }}
         {{ toYaml .Values.controller.extraInitContainers | nindent 8 }}

From 24cd56d27c60b550ee103bff1ccbef980f614c7e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 May 2023 07:50:35 -0700
Subject: [PATCH 0776/1641] Bump github.com/onsi/ginkgo/v2 from 2.9.0 to 2.9.5
 (#9980)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.9.0 to 2.9.5.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.9.0...v2.9.5)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 10 +++++-----
 go.sum | 21 +++++++++++----------
 2 files changed, 16 insertions(+), 15 deletions(-)

diff --git a/go.mod b/go.mod
index fa303b4f3..cebf8df5d 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.9.0
+	github.com/onsi/ginkgo/v2 v2.9.5
 	github.com/opencontainers/runc v1.1.7
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.15.1
@@ -58,11 +58,11 @@ require (
 	github.com/evanphx/json-patch/v5 v5.6.0 // indirect
 	github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b // indirect
 	github.com/go-errors/errors v1.0.1 // indirect
-	github.com/go-logr/logr v1.2.3 // indirect
+	github.com/go-logr/logr v1.2.4 // indirect
 	github.com/go-openapi/jsonpointer v0.19.5 // indirect
 	github.com/go-openapi/jsonreference v0.20.0 // indirect
 	github.com/go-openapi/swag v0.19.14 // indirect
-	github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0 // indirect
+	github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 // indirect
 	github.com/godbus/dbus/v5 v5.0.6 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
@@ -100,14 +100,14 @@ require (
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
-	golang.org/x/mod v0.8.0 // indirect
+	golang.org/x/mod v0.10.0 // indirect
 	golang.org/x/net v0.10.0 // indirect
 	golang.org/x/oauth2 v0.7.0 // indirect
 	golang.org/x/sys v0.8.0 // indirect
 	golang.org/x/term v0.8.0 // indirect
 	golang.org/x/text v0.9.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
-	golang.org/x/tools v0.6.0 // indirect
+	golang.org/x/tools v0.9.1 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto v0.0.0-20230306155012-7f2fa6fef1f4 // indirect
 	google.golang.org/protobuf v1.30.0 // indirect
diff --git a/go.sum b/go.sum
index d41cfa734..91749fc4b 100644
--- a/go.sum
+++ b/go.sum
@@ -100,8 +100,8 @@ github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V
 github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A=
 github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
 github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
-github.com/go-logr/logr v1.2.3 h1:2DntVwHkVopvECVRSlL5PSo9eG+cAkDCuckLubN+rq0=
-github.com/go-logr/logr v1.2.3/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
+github.com/go-logr/logr v1.2.4 h1:g01GSCwiDw2xSZfjJ2/T9M+S6pFdcNtFYsp+Y43HYDQ=
+github.com/go-logr/logr v1.2.4/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/zapr v1.2.3 h1:a9vnzlIBPQBBkeaR9IuMUfmVOrQlkoC4YfPoFkX3T7A=
 github.com/go-openapi/jsonpointer v0.19.3/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
 github.com/go-openapi/jsonpointer v0.19.5 h1:gZr+CIYByUqjcgeLXnQu2gHYQC9o73G2XUeOFYEICuY=
@@ -112,8 +112,9 @@ github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh
 github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5Fng=
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
-github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0 h1:p104kn46Q8WdvHunIJ9dAyjPVtrBPhSr3KT2yUst43I=
 github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
+github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 h1:tfuBGBXKqDEevZMzYi5KSi8KkcZtzBcTgAUUtapy0OI=
+github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572/go.mod h1:9Pwr4B2jHnOSGXyyzV8ROjYa2ojvAY6HCGYYfMoC3Ls=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/godbus/dbus/v5 v5.0.6 h1:mkgN1ofwASrYnJ5W6U/BxG15eXXXjirgZc7CLqkcaro=
 github.com/godbus/dbus/v5 v5.0.6/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
@@ -283,11 +284,11 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.9.0 h1:Tugw2BKlNHTMfG+CheOITkYvk4LAh6MFOvikhGVnhE8=
-github.com/onsi/ginkgo/v2 v2.9.0/go.mod h1:4xkjoL/tZv4SMWeww56BU5kAt19mVB47gTWxmrTcxyk=
+github.com/onsi/ginkgo/v2 v2.9.5 h1:+6Hr4uxzP4XIUyAkg61dWBw8lb/gc4/X5luuxN/EC+Q=
+github.com/onsi/ginkgo/v2 v2.9.5/go.mod h1:tvAoo1QUJwNEU2ITftXTpR7R1RbCzoZUOs3RonqW57k=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.27.1 h1:rfztXRbg6nv/5f+Raen9RcGoSecHIFgBBLQK3Wdj754=
+github.com/onsi/gomega v1.27.6 h1:ENqfyGeS5AX/rlXDd/ETokDz93u0YufY1Pgxuy/PvWE=
 github.com/opencontainers/runc v1.1.7 h1:y2EZDS8sNng4Ksf0GUYNhKbTShZJPJg1FiXJNH/uoCk=
 github.com/opencontainers/runc v1.1.7/go.mod h1:CbUumNnWCuTGFukNXahoo/RFBZvDAgRh/smNYNOhA50=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
@@ -425,8 +426,8 @@ golang.org/x/mod v0.1.1-0.20191105210325-c90efee705ee/go.mod h1:QqPTAvyqsEbceGzB
 golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.8.0 h1:LUYupSeNrTNCGzR/hVBk2NHZO4hXcVaW1k4Qx7rjPx8=
-golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/mod v0.10.0 h1:lFO9qtOdlre5W1jxS3r/4szv2/6iXxScdzjoBMXNhYk=
+golang.org/x/mod v0.10.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -589,8 +590,8 @@ golang.org/x/tools v0.0.0-20200804011535-6c149bb5ef0d/go.mod h1:njjCfa9FT2d7l9Bc
 golang.org/x/tools v0.0.0-20200825202427-b303f430e36d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.6.0 h1:BOw41kyTf3PuCW1pVQf8+Cyg8pMlkYB1oo9iJ6D/lKM=
-golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
+golang.org/x/tools v0.9.1 h1:8WMNJAz3zrtPmnYC7ISf5dEn3MT0gY7jBJfw27yrrLo=
+golang.org/x/tools v0.9.1/go.mod h1:owI94Op576fPu3cIGQeHs3joujW/2Oc6MtlxbF5dfNc=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=

From 5bc7dc8a6a516f4cedb8f44d37119f60c86c7175 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Mon, 22 May 2023 23:22:58 +0530
Subject: [PATCH 0777/1641] bumped ginkgo to v2.9.5 (#9985)

---
 build/run-in-docker.sh      | 2 +-
 images/test-runner/Makefile | 4 ++--
 test/e2e/run-chart-test.sh  | 2 +-
 test/e2e/run-kind-e2e.sh    | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 3a6aeb43d..90cd7217e 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -87,7 +87,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.9.0
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.9.5
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 562625cff..a004ad932 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -54,7 +54,7 @@ image:
 		--build-arg YAML_LINT_VERSION=1.27.1 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.11.2 \
-		--build-arg GINKGO_VERSION=2.9.0 \
+		--build-arg GINKGO_VERSION=2.9.5 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -75,7 +75,7 @@ build: ensure-buildx
 		--build-arg YAML_LINT_VERSION=1.27.1 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.11.2 \
-		--build-arg GINKGO_VERSION=2.9.0 \
+		--build-arg GINKGO_VERSION=2.9.5 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 6efa63eb2..6df4fb1e7 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.9.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.9.5
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index fe7550360..e6e4e086b 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -95,7 +95,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.9.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.9.5
   fi
 
   echo "[dev-env] .. done building controller images"

From 8d9210fd3874343c82e397de220679bfd282ba18 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Tue, 23 May 2023 16:14:27 +0530
Subject: [PATCH 0778/1641] updated testrunner image tag+sha (#9987)

---
 build/run-in-docker.sh  | 2 +-
 test/e2e-image/Makefile | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 90cd7217e..fe9906e0d 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20230314-helm-chart-4.5.2-32-g520384b11@sha256:754c62f9a5efd1ee515ee908ecc16c0c4d1dda96a8cc8019667182a55f3a9035}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20230522@sha256:a3deb0444d53b3f3b2d73acec8be2c3330d28d2df1ef09d0b9d7dbecdee706fb}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 011396531..4106290e6 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20230314-helm-chart-4.5.2-32-g520384b11@sha256:754c62f9a5efd1ee515ee908ecc16c0c4d1dda96a8cc8019667182a55f3a9035"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20230522@sha256:a3deb0444d53b3f3b2d73acec8be2c3330d28d2df1ef09d0b9d7dbecdee706fb"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"

From 897783557a178dc09b6cd7ec25d9719c556ee3b9 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Thu, 25 May 2023 11:18:52 -0300
Subject: [PATCH 0779/1641] Add OPA examples on pathType restrictions (#9992)

---
 docs/examples/openpolicyagent/README.md       | 25 ++++++++++++
 docs/examples/openpolicyagent/rule.yaml       | 14 +++++++
 docs/examples/openpolicyagent/template.yaml   | 40 +++++++++++++++++++
 .../tests/should-allow-ns-except.yaml         | 18 +++++++++
 .../openpolicyagent/tests/should-allow.yaml   | 17 ++++++++
 .../openpolicyagent/tests/should-deny.yaml    | 17 ++++++++
 mkdocs.yml                                    |  1 +
 7 files changed, 132 insertions(+)
 create mode 100644 docs/examples/openpolicyagent/README.md
 create mode 100644 docs/examples/openpolicyagent/rule.yaml
 create mode 100644 docs/examples/openpolicyagent/template.yaml
 create mode 100644 docs/examples/openpolicyagent/tests/should-allow-ns-except.yaml
 create mode 100644 docs/examples/openpolicyagent/tests/should-allow.yaml
 create mode 100644 docs/examples/openpolicyagent/tests/should-deny.yaml

diff --git a/docs/examples/openpolicyagent/README.md b/docs/examples/openpolicyagent/README.md
new file mode 100644
index 000000000..2d653a90c
--- /dev/null
+++ b/docs/examples/openpolicyagent/README.md
@@ -0,0 +1,25 @@
+# OpenPolicyAgent and pathType enforcing
+
+Ingress API allows users to specify different [pathType](https://kubernetes.io/docs/concepts/services-networking/ingress/#path-types) 
+on Ingress object. 
+
+While pathType `Exact` and `Prefix` should allow only a small set of characters, pathType `ImplementationSpecific`
+allows any characters, as it may contain regexes, variables and other features that may be specific of the Ingress 
+Controller being used.
+
+This means that the Ingress Admins (the persona who deployed the Ingress Controller) should trust the users 
+allowed to use `pathType: ImplementationSpecific`, as this may allow arbitrary configuration, and this 
+configuration may end on the proxy (aka Nginx) configuration.
+
+## Example
+The example in this repo uses [Gatekeeper](https://open-policy-agent.github.io/gatekeeper/website/) to block the usage of `pathType: ImplementationSpecific`, 
+allowing just a specific list of namespaces to use it.
+
+It is recommended that the admin modifies this rules to enforce a specific set of characters when the usage of ImplementationSpecific
+is allowed, or in ways that best suits their needs.
+
+First, the `ConstraintTemplate` from [template.yaml](template.yaml) will define a rule that validates if the Ingress object 
+is being created on an excempted namespace, and case not, will validate its pathType.
+
+Then, the rule `K8sBlockIngressPathType` contained in [rule.yaml](rule.yaml) will define the parameters: what kind of 
+object should be verified (Ingress), what are the excempted namespaces, and what kinds of pathType are blocked.
diff --git a/docs/examples/openpolicyagent/rule.yaml b/docs/examples/openpolicyagent/rule.yaml
new file mode 100644
index 000000000..fce305241
--- /dev/null
+++ b/docs/examples/openpolicyagent/rule.yaml
@@ -0,0 +1,14 @@
+apiVersion: constraints.gatekeeper.sh/v1beta1
+kind: K8sBlockIngressPathType
+metadata:
+  name: implspecificisblocked
+spec:
+  match:
+    kinds:
+      - apiGroups: ["networking.k8s.io"]
+        kinds: ["Ingress"]
+  parameters:
+    namespacesExceptions:
+      - "privileged"
+    blockedTypes:
+      - "ImplementationSpecific"
diff --git a/docs/examples/openpolicyagent/template.yaml b/docs/examples/openpolicyagent/template.yaml
new file mode 100644
index 000000000..ed2a6ba1c
--- /dev/null
+++ b/docs/examples/openpolicyagent/template.yaml
@@ -0,0 +1,40 @@
+apiVersion: templates.gatekeeper.sh/v1
+kind: ConstraintTemplate
+metadata:
+  name: k8sblockingresspathtype
+  annotations:
+    metadata.gatekeeper.sh/title: "Block a pathType usage"
+    description: >-
+      Users should not be able to use specific pathTypes
+spec:
+  crd:
+    spec:
+      names:
+        kind: K8sBlockIngressPathType
+      validation:
+        openAPIV3Schema:
+          type: object
+          properties:
+            blockedTypes:
+              type: array
+              items: 
+                type: string 
+            namespacesExceptions:
+              type: array
+              items: 
+                type: string
+  targets:
+    - target: admission.k8s.gatekeeper.sh
+      rego: |
+        package K8sBlockIngressPathType
+
+        violation[{"msg": msg}] {
+          input.review.kind.kind == "Ingress"
+          ns := input.review.object.metadata.namespace
+          excemptNS := [good | excempts = input.parameters.namespacesExceptions[_] ; good = excempts == ns]
+          not any(excemptNS)
+          pathType := object.get(input.review.object.spec.rules[_].http.paths[_], "pathType", "")
+          blockedPath := [blocked | blockedTypes = input.parameters.blockedTypes[_] ; blocked = blockedTypes == pathType]
+          any(blockedPath)
+          msg := sprintf("pathType '%v' is not allowed in this namespace", [pathType])
+        }
diff --git a/docs/examples/openpolicyagent/tests/should-allow-ns-except.yaml b/docs/examples/openpolicyagent/tests/should-allow-ns-except.yaml
new file mode 100644
index 000000000..974e83555
--- /dev/null
+++ b/docs/examples/openpolicyagent/tests/should-allow-ns-except.yaml
@@ -0,0 +1,18 @@
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  creationTimestamp: null
+  name: simple
+  namespace: privileged
+spec:
+  rules:
+  - host: foo1.com
+    http:
+      paths:
+      - backend:
+          service:
+            name: svc1
+            port:
+              number: 8080
+        path: /bar
+        pathType: ImplementationSpecific
diff --git a/docs/examples/openpolicyagent/tests/should-allow.yaml b/docs/examples/openpolicyagent/tests/should-allow.yaml
new file mode 100644
index 000000000..854aff14c
--- /dev/null
+++ b/docs/examples/openpolicyagent/tests/should-allow.yaml
@@ -0,0 +1,17 @@
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  creationTimestamp: null
+  name: simple
+spec:
+  rules:
+  - host: foo.com
+    http:
+      paths:
+      - backend:
+          service:
+            name: svc1
+            port:
+              number: 8080
+        path: /bar
+        pathType: Exact
diff --git a/docs/examples/openpolicyagent/tests/should-deny.yaml b/docs/examples/openpolicyagent/tests/should-deny.yaml
new file mode 100644
index 000000000..b732fdc89
--- /dev/null
+++ b/docs/examples/openpolicyagent/tests/should-deny.yaml
@@ -0,0 +1,17 @@
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  creationTimestamp: null
+  name: simple
+spec:
+  rules:
+  - host: foo2.com
+    http:
+      paths:
+      - backend:
+          service:
+            name: svc1
+            port:
+              number: 8080
+        path: /bar
+        pathType: ImplementationSpecific
diff --git a/mkdocs.yml b/mkdocs.yml
index 39eab9ef0..380b1b67a 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -126,6 +126,7 @@ nav:
       - Static IPs: "examples/static-ip/README.md"
       - TLS termination: "examples/tls-termination/README.md"
       - Pod Security Policy (PSP): "examples/psp/README.md"
+      - Open Policy Agent rules: "examples/openpolicyagent/README.md"
   - Developer Guide:
       - Getting Started: "developer-guide/getting-started.md"
       - Code Overview: "developer-guide/code-overview.md"

From 1282345be2952f497c7f1387ef5fc9658fe95a1d Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Thu, 25 May 2023 11:56:52 -0300
Subject: [PATCH 0780/1641] Admission warning (#9975)

* Add warning feature in admission code

* Apply suggestions from code review

Co-authored-by: Josh Soref <2119212+jsoref@users.noreply.github.com>

* Add deprecation and validation path notice

---------

Co-authored-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
---
 internal/admission/controller/main.go         |  10 ++
 internal/admission/controller/main_test.go    |  12 ++
 internal/ingress/controller/controller.go     |  48 ++++++++
 .../ingress/controller/controller_test.go     | 107 ++++++++++++++++++
 4 files changed, 177 insertions(+)

diff --git a/internal/admission/controller/main.go b/internal/admission/controller/main.go
index 645f298b4..f59bf2091 100644
--- a/internal/admission/controller/main.go
+++ b/internal/admission/controller/main.go
@@ -33,6 +33,7 @@ import (
 // contains invalid instructions
 type Checker interface {
 	CheckIngress(ing *networking.Ingress) error
+	CheckWarning(ing *networking.Ingress) ([]string, error)
 }
 
 // IngressAdmission implements the AdmissionController interface
@@ -85,6 +86,15 @@ func (ia *IngressAdmission) HandleAdmission(obj runtime.Object) (runtime.Object,
 		return review, nil
 	}
 
+	// Adds the warnings regardless of operation being allowed or not
+	warning, err := ia.Checker.CheckWarning(&ingress)
+	if err != nil {
+		klog.ErrorS(err, "failed to get ingress warnings")
+	}
+	if len(warning) > 0 {
+		status.Warnings = warning
+	}
+
 	if err := ia.Checker.CheckIngress(&ingress); err != nil {
 		klog.ErrorS(err, "invalid ingress configuration", "ingress", fmt.Sprintf("%v/%v", review.Request.Namespace, review.Request.Name))
 		status.Allowed = false
diff --git a/internal/admission/controller/main_test.go b/internal/admission/controller/main_test.go
index 7cc3cd7b4..0a547d4be 100644
--- a/internal/admission/controller/main_test.go
+++ b/internal/admission/controller/main_test.go
@@ -38,6 +38,11 @@ func (ftc failTestChecker) CheckIngress(ing *networking.Ingress) error {
 	return nil
 }
 
+func (ftc failTestChecker) CheckWarning(ing *networking.Ingress) ([]string, error) {
+	ftc.t.Error("checker should not be called")
+	return nil, nil
+}
+
 type testChecker struct {
 	t   *testing.T
 	err error
@@ -50,6 +55,13 @@ func (tc testChecker) CheckIngress(ing *networking.Ingress) error {
 	return tc.err
 }
 
+func (tc testChecker) CheckWarning(ing *networking.Ingress) ([]string, error) {
+	if ing.ObjectMeta.Name != testIngressName {
+		tc.t.Errorf("CheckWarning should be called with %v ingress, but got %v", testIngressName, ing.ObjectMeta.Name)
+	}
+	return nil, tc.err
+}
+
 func TestHandleAdmission(t *testing.T) {
 	adm := &IngressAdmission{
 		Checker: failTestChecker{t: t},
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 49e8aa0bb..20de63fd1 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -256,6 +256,54 @@ func (n *NGINXController) syncIngress(interface{}) error {
 	return nil
 }
 
+// GetWarnings returns a list of warnings an Ingress gets when being created.
+// The warnings are going to be used in an admission webhook, and they represent
+// a list of messages that users need to be aware (like deprecation notices)
+// when creating a new ingress object
+func (n *NGINXController) CheckWarning(ing *networking.Ingress) ([]string, error) {
+	warnings := make([]string, 0)
+
+	var deprecatedAnnotations = sets.NewString()
+	deprecatedAnnotations.Insert(
+		"enable-influxdb",
+		"influxdb-measurement",
+		"influxdb-port",
+		"influxdb-host",
+		"influxdb-server-name",
+		"secure-verify-ca-secret",
+		"fastcgi-params-configmap",
+		"fastcgi-index",
+	)
+
+	// Skip checks if the ingress is marked as deleted
+	if !ing.DeletionTimestamp.IsZero() {
+		return warnings, nil
+	}
+
+	anns := ing.GetAnnotations()
+	for k := range anns {
+		trimmedkey := strings.TrimPrefix(k, parser.AnnotationsPrefix+"/")
+		if deprecatedAnnotations.Has(trimmedkey) {
+			warnings = append(warnings, fmt.Sprintf("annotation %s is deprecated", k))
+		}
+	}
+
+	// Add each validation as a single warning
+	// rikatz: I know this is somehow a duplicated code from CheckIngress, but my goal was to deliver fast warning on this behavior. We
+	// can and should, tho, simplify this in the near future
+	if err := inspector.ValidatePathType(ing); err != nil {
+		if errs, is := err.(interface{ Unwrap() []error }); is {
+			for _, errW := range errs.Unwrap() {
+				warnings = append(warnings, errW.Error())
+			}
+		} else {
+			warnings = append(warnings, err.Error())
+		}
+	}
+
+	return warnings, nil
+}
+
 // CheckIngress returns an error in case the provided ingress, when added
 // to the current configuration, generates an invalid configuration
 func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index 8cca10385..06e1e8db0 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -352,6 +352,113 @@ func TestCheckIngress(t *testing.T) {
 	})
 }
 
+func TestCheckWarning(t *testing.T) {
+
+	// Ensure no panic with wrong arguments
+	var nginx = &NGINXController{}
+
+	nginx.t = fakeTemplate{}
+	nginx.store = fakeIngressStore{
+		ingresses: []*ingress.Ingress{},
+	}
+
+	ing := &networking.Ingress{
+		ObjectMeta: metav1.ObjectMeta{
+			Name:        "test-ingress-warning",
+			Namespace:   "user-namespace",
+			Annotations: map[string]string{},
+		},
+		Spec: networking.IngressSpec{
+			Rules: []networking.IngressRule{
+				{
+					Host: "example.com",
+				},
+			},
+		},
+	}
+	t.Run("when a deprecated annotation is used a warning should be returned", func(t *testing.T) {
+		ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("enable-influxdb")] = "true"
+		defer func() {
+			ing.ObjectMeta.Annotations = map[string]string{}
+		}()
+
+		warnings, err := nginx.CheckWarning(ing)
+		if err != nil {
+			t.Errorf("no error should be returned, but %s was returned", err)
+		}
+		if len(warnings) != 1 {
+			t.Errorf("expected 1 warning to occur but %d occured", len(warnings))
+		} else {
+			t.Logf("got warning %s correctly", warnings[0])
+		}
+	})
+
+	t.Run("When an invalid pathType is used, a warning should be returned", func(t *testing.T) {
+
+		rules := ing.Spec.DeepCopy().Rules
+		ing.Spec.Rules = []networking.IngressRule{
+			{
+				Host: "example.com",
+				IngressRuleValue: networking.IngressRuleValue{
+					HTTP: &networking.HTTPIngressRuleValue{
+						Paths: []networking.HTTPIngressPath{
+							{
+								Path:     "/xpto{$2}",
+								PathType: &pathTypePrefix,
+							},
+							{
+								Path:     "/ok",
+								PathType: &pathTypeExact,
+							},
+						},
+					},
+				},
+			},
+		}
+		defer func() {
+			ing.Spec.Rules = rules
+		}()
+
+		warnings, err := nginx.CheckWarning(ing)
+		if err != nil {
+			t.Errorf("no error should be returned, but %s was returned", err)
+		}
+		if len(warnings) != 1 {
+			t.Errorf("expected 1 warning to occur but %d occured", len(warnings))
+		} else {
+			t.Logf("got warnings %v correctly", warnings)
+		}
+
+		t.Run("adding invalid annotations increases the warning count", func(t *testing.T) {
+			ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("enable-influxdb")] = "true"
+			ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("secure-verify-ca-secret")] = "true"
+			ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("fastcgi-index")] = "blabla"
+			defer func() {
+				ing.ObjectMeta.Annotations = map[string]string{}
+			}()
+			warnings, err := nginx.CheckWarning(ing)
+			if err != nil {
+				t.Errorf("no error should be returned, but %s was returned", err)
+			}
+			if len(warnings) != 4 {
+				t.Errorf("expected 4 warning to occur but %d occured", len(warnings))
+			} else {
+				t.Logf("got warnings %v correctly", warnings)
+			}
+		})
+	})
+
+	t.Run("When the ingress is marked as deleted", func(t *testing.T) {
+		ing.DeletionTimestamp = &metav1.Time{
+			Time: time.Now(),
+		}
+
+		if warnings, err := nginx.CheckWarning(ing); err != nil || len(warnings) != 0 {
+			t.Errorf("when the ingress is marked as deleted, no warning should be returned")
+		}
+	})
+}
+
 func TestMergeAlternativeBackends(t *testing.T) {
 	testCases := map[string]struct {
 		ingress      *ingress.Ingress

From 61ae861e81618be3acc1aeed2a8193618434a124 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 25 May 2023 09:08:51 -0700
Subject: [PATCH 0781/1641] Bump k8s.io/klog/v2 from 2.90.1 to 2.100.1 (#9913)

Bumps [k8s.io/klog/v2](https://github.com/kubernetes/klog) from 2.90.1 to 2.100.1.
- [Release notes](https://github.com/kubernetes/klog/releases)
- [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes/klog/compare/v2.90.1...v2.100.1)

---
updated-dependencies:
- dependency-name: k8s.io/klog/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index cebf8df5d..c44d2f207 100644
--- a/go.mod
+++ b/go.mod
@@ -38,7 +38,7 @@ require (
 	k8s.io/client-go v0.26.4
 	k8s.io/code-generator v0.26.4
 	k8s.io/component-base v0.26.4
-	k8s.io/klog/v2 v2.90.1
+	k8s.io/klog/v2 v2.100.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.14.6
 	sigs.k8s.io/mdtoc v1.1.0
diff --git a/go.sum b/go.sum
index 91749fc4b..c2e02777b 100644
--- a/go.sum
+++ b/go.sum
@@ -740,8 +740,8 @@ k8s.io/component-base v0.26.4/go.mod h1:lTuWL1Xz/a4e80gmIC3YZG2JCO4xNwtKWHJWeJms
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d h1:U9tB195lKdzwqicbJvyJeOXV7Klv+wNAWENRnXEGi08=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
-k8s.io/klog/v2 v2.90.1 h1:m4bYOKall2MmOiRaR1J+We67Do7vm9KiQVlT96lnHUw=
-k8s.io/klog/v2 v2.90.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/klog/v2 v2.100.1 h1:7WCHKK6K8fNhTqfBhISHQ97KrnJNFZMcQvKp7gP/tmg=
+k8s.io/klog/v2 v2.100.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 h1:+70TFaan3hfJzs+7VK2o+OGxg8HsuBr/5f6tVAjDu6E=
 k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280/go.mod h1:+Axhij7bCpeqhklhUTe3xmOn6bWxolyZEeyaFpjGtl4=
 k8s.io/utils v0.0.0-20221128185143-99ec85e7a448 h1:KTgPnR10d5zhztWptI952TNtt/4u5h3IzDXkdIMuo2Y=

From df0be089d233b4294dee40be53f9d0f6ace2752a Mon Sep 17 00:00:00 2001
From: Peter Jakubis <balonik@users.noreply.github.com>
Date: Thu, 25 May 2023 19:26:53 +0200
Subject: [PATCH 0782/1641] PodDisruptionBudget spec logic update (#9904)

Signed-off-by: Peter Jakubis <balonik32@gmail.com>
---
 charts/ingress-nginx/README.md                               | 2 +-
 .../templates/controller-poddisruptionbudget.yaml            | 2 +-
 charts/ingress-nginx/values.yaml                             | 5 +++--
 3 files changed, 5 insertions(+), 4 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index d79ad38cd..4d4d6ba6f 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -365,7 +365,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.metrics.serviceMonitor.relabelings | list | `[]` |  |
 | controller.metrics.serviceMonitor.scrapeInterval | string | `"30s"` |  |
 | controller.metrics.serviceMonitor.targetLabels | list | `[]` |  |
-| controller.minAvailable | int | `1` | Define either 'minAvailable' or 'maxUnavailable', never both. |
+| controller.minAvailable | int | `1` | Minimum available pods set in PodDisruptionBudget. Define either 'minAvailable' or 'maxUnavailable', never both. |
 | controller.minReadySeconds | int | `0` | `minReadySeconds` to avoid killing pods before we are ready # |
 | controller.name | string | `"controller"` |  |
 | controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment # Ref: https://kubernetes.io/docs/user-guide/node-selection/ # |
diff --git a/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml b/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
index 230307cd7..91be5801f 100644
--- a/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
+++ b/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
@@ -18,7 +18,7 @@ spec:
     matchLabels:
       {{- include "ingress-nginx.selectorLabels" . | nindent 6 }}
       app.kubernetes.io/component: controller
-  {{- if .Values.controller.minAvailable }}
+  {{- if and .Values.controller.minAvailable (not (hasKey .Values.controller "maxUnavailable")) }}
   minAvailable: {{ .Values.controller.minAvailable }}
   {{- else if .Values.controller.maxUnavailable }}
   maxUnavailable: {{ .Values.controller.maxUnavailable }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index a398b0503..e0b38c5a7 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -308,9 +308,10 @@ controller:
   ##
   podAnnotations: {}
   replicaCount: 1
-  # -- Define either 'minAvailable' or 'maxUnavailable', never both.
+  # -- Minimum available pods set in PodDisruptionBudget.
+  # Define either 'minAvailable' or 'maxUnavailable', never both.
   minAvailable: 1
-  # -- Define either 'minAvailable' or 'maxUnavailable', never both.
+  # -- Maximum unavalaile pods set in PodDisruptionBudget. If set, 'minAvailable' is ignored.
   # maxUnavailable: 1
 
   ## Define requests resources to avoid probe issues due to CPU utilization in busy nodes

From 4cf439118ffc1e9455d8ceae1e3c3439fc979dd9 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sat, 27 May 2023 01:26:56 +0530
Subject: [PATCH 0783/1641] openssl CVE fix (#9996)

---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index 5f1751bbf..ebe355582 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:91057c439cf07ffb62887b8a8bda66ce3cbe39ca@sha256:3b650123c755392f8c0eb9a356b12716327106e624ab5f5b43bc25ab130978fb
\ No newline at end of file
+registry.k8s.io/ingress-nginx/nginx:v20230526@sha256:b05566e432d85a7681feb7ef93fda8385d53712478737b39e617c993c86c5e65

From c2e1f34cbefe95014540b3fb833fbe9580339cc7 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Sat, 27 May 2023 08:54:49 +0800
Subject: [PATCH 0784/1641] images: upgrade to Alpine 3.18 (#9997)

Alpine Linux 3.18 was released
https://alpinelinux.org/posts/Alpine-3.18.0-released.html

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 docs/examples/customization/sysctl/patch.json | 2 +-
 images/cfssl/rootfs/Dockerfile                | 2 +-
 images/nginx/rootfs/Dockerfile                | 4 ++--
 images/opentelemetry/rootfs/Dockerfile        | 4 ++--
 rootfs/Dockerfile-chroot                      | 2 +-
 test/e2e-image/Dockerfile                     | 2 +-
 6 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/docs/examples/customization/sysctl/patch.json b/docs/examples/customization/sysctl/patch.json
index 3f736197b..e87c9affa 100644
--- a/docs/examples/customization/sysctl/patch.json
+++ b/docs/examples/customization/sysctl/patch.json
@@ -4,7 +4,7 @@
 			"spec": {
 				"initContainers": [{
 					"name": "sysctl",
-					"image": "alpine:3.17.0",
+					"image": "alpine:3.18",
 					"securityContext": {
 						"privileged": true
 					},
diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index a50c715ea..e8d6c617a 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.17.2
+FROM alpine:3.18.0
 
 
 RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index a968eb1b3..9b4abf244 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.17.2 as builder
+FROM alpine:3.18.0 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.17.2
+FROM alpine:3.18.0
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index 33f5bcb36..69d82cda2 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.17.2 as base
+FROM alpine:3.18.0 as base
 
 RUN mkdir -p /opt/third_party/install
 COPY . /opt/third_party/
@@ -39,7 +39,7 @@ COPY --from=grpc /opt/third_party/install/ /usr
 COPY --from=otel-cpp /opt/third_party/install/ /usr
 RUN bash /opt/third_party/build.sh -n
 
-FROM alpine:3.17.2 as final
+FROM alpine:3.18.0 as final
 COPY --from=base /opt/third_party/init_module.sh /usr/local/bin/init_module.sh
 COPY --from=nginx /etc/nginx/modules /etc/nginx/modules
 COPY --from=nginx /opt/third_party/install/lib /etc/nginx/modules
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index 7ab8584a7..a4123fe87 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.17.2
+FROM alpine:3.18.0
 
 ARG TARGETARCH
 ARG VERSION
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 11abc26b4..97986ec95 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,7 +1,7 @@
 ARG E2E_BASE_IMAGE
 FROM ${E2E_BASE_IMAGE} AS BASE
 
-FROM alpine:3.17.2
+FROM alpine:3.18.0
 
 RUN apk update \
 	&& apk upgrade && apk add -U --no-cache \

From 9398c7e747bc74d2ec78be2b4d92ed7dddbb63df Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sat, 27 May 2023 12:44:52 +0530
Subject: [PATCH 0785/1641] change to alpine318 baseimage (#10000)

---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index ebe355582..02a35039a 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:v20230526@sha256:b05566e432d85a7681feb7ef93fda8385d53712478737b39e617c993c86c5e65
+registry.k8s.io/ingress-nginx/nginx:v20230527@sha256:cf77c71aa6e4284925ca2233ddf871b5823eaa3ee000347ae25096b07fb52c57

From f7ea0b152b9139e895f2da7629953e0cb5f59d84 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sat, 27 May 2023 20:16:51 +0530
Subject: [PATCH 0786/1641] changed tagsha to recent builds (#10001)

---
 build/run-in-docker.sh                                      | 2 +-
 charts/ingress-nginx/README.md                              | 6 +++---
 charts/ingress-nginx/values.yaml                            | 6 +++---
 .../custom-errors/custom-default-backend.helm.values.yaml   | 2 +-
 .../customization/custom-errors/custom-default-backend.yaml | 2 +-
 .../customization/external-auth-headers/echo-service.yaml   | 2 +-
 docs/user-guide/third-party-addons/opentelemetry.md         | 2 +-
 test/e2e-image/Makefile                                     | 2 +-
 test/e2e/framework/deployment.go                            | 2 +-
 test/e2e/settings/ocsp/ocsp.go                              | 2 +-
 10 files changed, 14 insertions(+), 14 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index fe9906e0d..d2d6fcdd9 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20230522@sha256:a3deb0444d53b3f3b2d73acec8be2c3330d28d2df1ef09d0b9d7dbecdee706fb}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20230527@sha256:a98ce8ab90f16bdd8539b168a4d000f366afa4eec23a220b3ce39698c5769bfd}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 4d4d6ba6f..391eb4159 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -248,11 +248,11 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.networkPolicyEnabled | bool | `false` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
-| controller.admissionWebhooks.patch.image.digest | string | `"sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f"` |  |
+| controller.admissionWebhooks.patch.image.digest | string | `"sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.admissionWebhooks.patch.image.registry | string | `"registry.k8s.io"` |  |
-| controller.admissionWebhooks.patch.image.tag | string | `"v20230312-helm-chart-4.5.2-28-g66a760794"` |  |
+| controller.admissionWebhooks.patch.image.tag | string | `"v20230407"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
 | controller.admissionWebhooks.patch.podAnnotations | object | `{}` |  |
@@ -371,7 +371,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment # Ref: https://kubernetes.io/docs/user-guide/node-selection/ # |
 | controller.opentelemetry.containerSecurityContext.allowPrivilegeEscalation | bool | `false` |  |
 | controller.opentelemetry.enabled | bool | `false` |  |
-| controller.opentelemetry.image | string | `"registry.k8s.io/ingress-nginx/opentelemetry:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:40f766ac4a9832f36f217bb0e98d44c8d38faeccbfe861fbc1a76af7e9ab257f"` |  |
+| controller.opentelemetry.image | string | `"registry.k8s.io/ingress-nginx/opentelemetry:v20230527@sha256:fd7ec835f31b7b37187238eb4fdad4438806e69f413a203796263131f4f02ed0"` |  |
 | controller.podAnnotations | object | `{}` | Annotations to be added to controller pods # |
 | controller.podLabels | object | `{}` | Labels to add to the pod container metadata |
 | controller.podSecurityContext | object | `{}` | Security Context policies for controller pods |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index e0b38c5a7..962567e07 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -547,7 +547,7 @@ controller:
 
   opentelemetry:
     enabled: false
-    image: registry.k8s.io/ingress-nginx/opentelemetry:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:40f766ac4a9832f36f217bb0e98d44c8d38faeccbfe861fbc1a76af7e9ab257f
+    image: registry.k8s.io/ingress-nginx/opentelemetry:v20230527@sha256:fd7ec835f31b7b37187238eb4fdad4438806e69f413a203796263131f4f02ed0
     containerSecurityContext:
       allowPrivilegeEscalation: false
   admissionWebhooks:
@@ -609,8 +609,8 @@ controller:
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
         ## repository:
-        tag: v20230312-helm-chart-4.5.2-28-g66a760794
-        digest: sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        tag: v20230407
+        digest: sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         pullPolicy: IfNotPresent
       # -- Provide a priority class name to the webhook patching job
       ##
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
index 807da71a4..708a93831 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
@@ -6,7 +6,7 @@ defaultBackend:
   image:
     registry: registry.k8s.io
     image: ingress-nginx/nginx-errors
-    tag: "v20230312-helm-chart-4.5.2-28-g66a760794@sha256:332be6ff8c4e93e8845963932f98839dfd52ae49829c29e06475368a3e4fbd9e"
+    tag: "v20230505@sha256:3600dcd1bbd0d05959bb01af4b272714e94d22d24a64e91838e7183c80e53f7f"
   extraVolumes:
   - name: custom-error-pages
     configMap:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.yaml b/docs/examples/customization/custom-errors/custom-default-backend.yaml
index 2af64896f..e606c5b62 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.yaml
@@ -36,7 +36,7 @@ spec:
     spec:
       containers:
       - name: nginx-error-server
-        image: registry.k8s.io/ingress-nginx/nginx-errors:v20230404-helm-chart-4.6.0-11-gc76179c04@sha256:aabd7a001f6a0a07ed6ea8f6da87e928bfa8f971eba2bef708f3e8504fc5cc9b
+        image: registry.k8s.io/ingress-nginx/nginx-errors:v20230505@sha256:3600dcd1bbd0d05959bb01af4b272714e94d22d24a64e91838e7183c80e53f7f
         ports:
         - containerPort: 8080
         # Setting the environment variable DEBUG we can see the headers sent 
diff --git a/docs/examples/customization/external-auth-headers/echo-service.yaml b/docs/examples/customization/external-auth-headers/echo-service.yaml
index 57df4d628..fc4461cd8 100644
--- a/docs/examples/customization/external-auth-headers/echo-service.yaml
+++ b/docs/examples/customization/external-auth-headers/echo-service.yaml
@@ -18,7 +18,7 @@ spec:
       terminationGracePeriodSeconds: 60
       containers:
       - name: echo-service
-        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v20230318-helm-chart-4.5.2-44-gfec1dbe3a@sha256:4938d1d91a2b7d19454460a8c1b010b89f6ff92d2987fd889ac3e8fc3b70d91a
+        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v20230527@sha256:6fc5aa2994c86575975bb20a5203651207029a0d28e3f491d8a127d08baadab4
         ports:
         - containerPort: 8080
         resources:
diff --git a/docs/user-guide/third-party-addons/opentelemetry.md b/docs/user-guide/third-party-addons/opentelemetry.md
index 1b9b6536e..1e276939e 100644
--- a/docs/user-guide/third-party-addons/opentelemetry.md
+++ b/docs/user-guide/third-party-addons/opentelemetry.md
@@ -140,7 +140,7 @@ To install the example and collectors run:
     ```yaml
       opentelemetry:
         enabled: true
-        image: registry.k8s.io/ingress-nginx/opentelemetry:v20230107-helm-chart-4.4.2-2-g96b3d2165@sha256:331b9bebd6acfcd2d3048abbdd86555f5be76b7e3d0b5af4300b04235c6056c9
+        image: registry.k8s.io/ingress-nginx/opentelemetry:v20230527@sha256:fd7ec835f31b7b37187238eb4fdad4438806e69f413a203796263131f4f02ed0
         containerSecurityContext:
         allowPrivilegeEscalation: false
     ```
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 4106290e6..f74ea8c74 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20230522@sha256:a3deb0444d53b3f3b2d73acec8be2c3330d28d2df1ef09d0b9d7dbecdee706fb"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20230527@sha256:a98ce8ab90f16bdd8539b168a4d000f366afa4eec23a220b3ce39698c5769bfd"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 06dfa0c5e..565b8f4ac 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -100,7 +100,7 @@ func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
 		namespace: f.Namespace,
 		name:      EchoService,
 		replicas:  1,
-		image:     "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:4938d1d91a2b7d19454460a8c1b010b89f6ff92d2987fd889ac3e8fc3b70d91a",
+		image:     "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:6fc5aa2994c86575975bb20a5203651207029a0d28e3f491d8a127d08baadab4",
 	}
 	for _, o := range opts {
 		o(options)
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index 483013f59..ea444444b 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -290,7 +290,7 @@ func ocspserveDeployment(namespace string) (*appsv1.Deployment, *corev1.Service)
 						Containers: []corev1.Container{
 							{
 								Name:  name,
-								Image: "registry.k8s.io/ingress-nginx/e2e-test-cfssl@sha256:d02c1e18f573449966999fc850f1fed3d37621bf77797562cbe77ebdb06a66ea",
+								Image: "registry.k8s.io/ingress-nginx/e2e-test-cfssl@sha256:adaa118c179c41cb33fb567004a1f0c71b8fce6bc13263efa63d42dddd5b4346",
 								Command: []string{
 									"/bin/bash",
 									"-c",

From 40957d43ccaf13b380887d8dee8abe709e01a303 Mon Sep 17 00:00:00 2001
From: longwuyuan <longwuyuan@gmail.com>
Date: Fri, 26 May 2023 23:58:19 +0530
Subject: [PATCH 0787/1641] add faq section in docs

---
 docs/faq.md                                   | 33 ++++++++++++++
 docs/index.md                                 |  7 +--
 docs/user-guide/retaining-client-ipaddress.md | 44 +++++++++++++++++++
 mkdocs.yml                                    |  1 +
 4 files changed, 79 insertions(+), 6 deletions(-)
 create mode 100644 docs/faq.md
 create mode 100644 docs/user-guide/retaining-client-ipaddress.md

diff --git a/docs/faq.md b/docs/faq.md
new file mode 100644
index 000000000..253378c65
--- /dev/null
+++ b/docs/faq.md
@@ -0,0 +1,33 @@
+
+# FAQ
+
+## Retaining Client IPAddress
+
+Please read [Retain Client IPAddress Guide here](./user-guide/retaining-client-ipaddress.md).
+
+## Kubernetes v1.22 Migration
+
+If you are using Ingress objects in your cluster (running Kubernetes older than v1.22), and you plan to upgrade your Kubernetes version to K8S 1.22 or above, then please read [the migration guide here](./user-guide/k8s-122-migration.md).
+
+## Validation Of __`path`__
+
+- For improving security and also following desired standards on Kubernetes API spec, the next release, scheduled for v1.8.0, will include a new & optional feature of validating the value for the key `ingress.spec.rules.http.paths.path` .
+
+- This behavior will be disabled by default on the 1.8.0 release and enabled by default on the next breaking change release, set for 2.0.0.
+
+- When "`ingress.spec.rules.http.pathType=Exact`" or "`pathType=Prefix`", this validation will limit the characters accepted on the field "`ingress.spec.rules.http.paths.path`",  to "`alphanumeric characters`", and  `"/," "_," "-."` Also, in this case, the path should start with `"/."`
+
+- When the ingress resource path contains other characters (like on rewrite configurations), the pathType value should be "`ImplementationSpecific`".
+
+- API Spec on pathType is documented [here](https://kubernetes.io/docs/concepts/services-networking/ingress/#path-types)
+
+- When this option is enabled, the validation will happen on the Admission Webhook. So if any new ingress object contains characters other than  "`alphanumeric characters`", and  `"/," "_," "-."` , in the `path` field, but is not using `pathType` value as `ImplementationSpecific`, then the ingress object will be denied admission.
+
+- The cluster admin should establish validation rules using mechanisms like "`Open Policy Agent`", to validate that only authorized users can use ImplementationSpecific pathType and that only the authorized characters can be used. [The configmap value is here](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#strict-validate-path-type)
+
+- A complete example of an Openpolicyagent gatekeeper rule is available [here](https://kubernetes.github.io/ingress-nginx/examples/openpolicyagent/)
+
+- If you have any issues or concerns, please do one of the following: 
+  - Open a GitHub issue 
+  - Comment in our Dev Slack Channel
+  - Open a thread in our Google Group ingress-nginx-dev@kubernetes.io
diff --git a/docs/index.md b/docs/index.md
index bcf4a4018..0a0f488cf 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -6,12 +6,7 @@ It is built around the [Kubernetes Ingress resource](https://kubernetes.io/docs/
 
 You can learn more about using [Ingress](http://kubernetes.io/docs/user-guide/ingress/) in the official [Kubernetes documentation](https://docs.k8s.io).
 
-## Getting Started
+# Getting Started
 
 See [Deployment](./deploy/) for a whirlwind tour that will get you started.
 
-
-# FAQ - Kubernetes 1.22 Migration
-
-If you are using Ingress objects in your cluster (running Kubernetes older than v1.22),
-and you plan to upgrade to Kubernetes v1.22, please read [the migration guide here](./user-guide/k8s-122-migration.md).
diff --git a/docs/user-guide/retaining-client-ipaddress.md b/docs/user-guide/retaining-client-ipaddress.md
new file mode 100644
index 000000000..237bd3004
--- /dev/null
+++ b/docs/user-guide/retaining-client-ipaddress.md
@@ -0,0 +1,44 @@
+
+## Retaining Client IPAddress
+
+Please read this https://kubernetes.github.io/ingress-nginx/user-guide/miscellaneous/#source-ip-address , to get details of retaining the client IPAddress.
+
+### Using proxy-protocol
+
+Please read this https://kubernetes.github.io/ingress-nginx/user-guide/miscellaneous/#proxy-protocol , to use proxy-protocol for retaining client IPAddress
+
+
+### Using the K8S spec service.spec.externalTrafficPolicy
+
+```
+% kubectl explain service.spec.externalTrafficPolicy
+KIND:       Service
+VERSION:    v1
+
+FIELD: externalTrafficPolicy <string>
+
+DESCRIPTION:
+    externalTrafficPolicy describes how nodes distribute service traffic they
+    receive on one of the Service's "externally-facing" addresses (NodePorts,
+    ExternalIPs, and LoadBalancer IPs). If set to "Local", the proxy will
+    configure the service in a way that assumes that external load balancers
+    will take care of balancing the service traffic between nodes, and so each
+    node will deliver traffic only to the node-local endpoints of the service,
+    without masquerading the client source IP. (Traffic mistakenly sent to a
+    node with no endpoints will be dropped.) The default value, "Cluster", uses
+    the standard behavior of routing to all endpoints evenly (possibly modified
+    by topology and other features). Note that traffic sent to an External IP or
+    LoadBalancer IP from within the cluster will always get "Cluster" semantics,
+    but clients sending to a NodePort from within the cluster may need to take
+    traffic policy into account when picking a node.
+    
+    Possible enum values:
+     - `"Cluster"` routes traffic to all endpoints.
+     - `"Local"` preserves the source IP of the traffic by routing only to
+    endpoints on the same node as the traffic was received on (dropping the
+    traffic if there are no local endpoints).
+
+```
+
+
+- Setting the field `externalTrafficPolicy`, in the ingress-controller service, to a value of `Local` retains the client's ipaddress, within the scope explained above
diff --git a/mkdocs.yml b/mkdocs.yml
index 380b1b67a..992c04d45 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -130,3 +130,4 @@ nav:
   - Developer Guide:
       - Getting Started: "developer-guide/getting-started.md"
       - Code Overview: "developer-guide/code-overview.md"
+  - FAQ: "faq.md"

From 0e94cc1b234c62fbc3a37ba1b991c2accb5e6959 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Mon, 29 May 2023 19:35:25 +0800
Subject: [PATCH 0788/1641] chore: start v1.8.0 release process

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 668c7899c..ba103d909 100644
--- a/TAG
+++ b/TAG
@@ -1,2 +1,2 @@
-v1.7.1
+v1.8.0
 

From 53254647bc4e908dd3e046a56d3274565e1b011a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 29 May 2023 07:03:43 -0700
Subject: [PATCH 0789/1641] Bump github.com/prometheus/common from 0.43.0 to
 0.44.0 (#10007)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.43.0 to 0.44.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.43.0...v0.44.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index c44d2f207..721a3c16b 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.15.1
 	github.com/prometheus/client_model v0.4.0
-	github.com/prometheus/common v0.43.0
+	github.com/prometheus/common v0.44.0
 	github.com/spf13/cobra v1.7.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.2
@@ -102,7 +102,7 @@ require (
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.10.0 // indirect
 	golang.org/x/net v0.10.0 // indirect
-	golang.org/x/oauth2 v0.7.0 // indirect
+	golang.org/x/oauth2 v0.8.0 // indirect
 	golang.org/x/sys v0.8.0 // indirect
 	golang.org/x/term v0.8.0 // indirect
 	golang.org/x/text v0.9.0 // indirect
diff --git a/go.sum b/go.sum
index c2e02777b..003ad5fb8 100644
--- a/go.sum
+++ b/go.sum
@@ -318,8 +318,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.43.0 h1:iq+BVjvYLei5f27wiuNiB1DN6DYQkp1c8Bx0Vykh5us=
-github.com/prometheus/common v0.43.0/go.mod h1:NCvr5cQIh3Y/gy73/RdVtC9r8xxrxwJnB+2lB3BxrFc=
+github.com/prometheus/common v0.44.0 h1:+5BrQJwiBB9xsMygAB3TNvpQKOwlkc25LbISbrdOOfY=
+github.com/prometheus/common v0.44.0/go.mod h1:ofAIvZbQ1e/nugmZGz4/qCb9Ap1VoSTIO7x0VV9VvuY=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
@@ -469,8 +469,8 @@ golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4Iltr
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.7.0 h1:qe6s0zUXlPX80/dITx3440hWZ7GwMwgDDyrSGTPJG/g=
-golang.org/x/oauth2 v0.7.0/go.mod h1:hPLQkd9LyjfXTiRohC/41GhcFqxisoUQ99sCUOHO9x4=
+golang.org/x/oauth2 v0.8.0 h1:6dkIjl3j3LtZ/O3sTgZTMsLKSftL/B8Zgq4huOIIUu8=
+golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=

From 1240361855d3b4679379f66eb0c437014cd5e5fb Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Mon, 29 May 2023 19:33:44 +0200
Subject: [PATCH 0790/1641] Add legacy to OpenTelemetry migration doc (#10011)

---
 .../third-party-addons/opentelemetry.md       | 54 +++++++++++++++++++
 1 file changed, 54 insertions(+)

diff --git a/docs/user-guide/third-party-addons/opentelemetry.md b/docs/user-guide/third-party-addons/opentelemetry.md
index 1e276939e..d735fca4f 100644
--- a/docs/user-guide/third-party-addons/opentelemetry.md
+++ b/docs/user-guide/third-party-addons/opentelemetry.md
@@ -5,6 +5,18 @@ Enables requests served by NGINX for distributed telemetry via The OpenTelemetry
 Using the third party module [opentelemetry-cpp-contrib/nginx](https://github.com/open-telemetry/opentelemetry-cpp-contrib/tree/main/instrumentation/nginx) the Ingress-Nginx Controller can configure NGINX to enable [OpenTelemetry](http://opentelemetry.io) instrumentation.
 By default this feature is disabled.
 
+Check out this demo showcasing OpenTelemetry in Ingress NGINX. The video provides an overview and
+practical demonstration of how OpenTelemetry can be utilized in Ingress NGINX for observability
+and monitoring purposes.
+
+<p align="center">
+  <a href="https://www.youtube.com/watch?v=jpBfgJpTcfw&t=129" target="_blank" rel="noopener noreferrer">
+    <img src="https://img.youtube.com/vi/jpBfgJpTcfw/0.jpg" alt="Video Thumbnail" />
+  </a>
+</p>
+
+<p align="center">Demo: OpenTelemetry in Ingress NGINX.</p>
+
 ## Usage
 
 To enable the instrumentation we must enable OpenTelemetry in the configuration ConfigMap:
@@ -258,3 +270,45 @@ To install the example and collectors run:
     ```
     In the Zipkin interface we can see the details:
     ![zipkin screenshot](../../images/otel-zipkin-demo.png "zipkin screenshot")
+
+## Migration from OpenTracing, Jaeger, Zipkin and Datadog
+
+If you are migrating from OpenTracing, Jaeger, Zipkin, or Datadog to OpenTelemetry,
+you may need to update various annotations and configurations. Here are the mappings
+for common annotations and configurations:
+
+### Annotations
+
+| Legacy                                           | OpenTelemetry                                    |
+|--------------------------------------------------|--------------------------------------------------|
+| `nginx.ingress.kubernetes.io/enable-opentracing` | `nginx.ingress.kubernetes.io/enable-opentelemetry` |
+| `opentracing-trust-incoming-span`                | `opentracing-trust-incoming-span`                  |
+
+### Configs
+
+| Legacy                                | OpenTelemetry                                |
+|---------------------------------------|----------------------------------------------|
+| `opentracing-operation-name`          | `opentelemetry-operation-name`               |
+| `opentracing-location-operation-name` | `opentelemetry-operation-name`               |
+| `opentracing-trust-incoming-span`     | `opentelemetry-trust-incoming-span`          |
+| `zipkin-collector-port`               | `otlp-collector-port`                        |
+| `zipkin-service-name`                 | `otel-service-name`                          |
+| `zipkin-sample-rate`                  | `otel-sampler-ratio`                         |
+| `jaeger-collector-port`               | `otlp-collector-port`                        |
+| `jaeger-endpoint`                     | `otlp-collector-port`, `otlp-collector-host` |
+| `jaeger-service-name`                 | `otel-service-name`                          |
+| `jaeger-propagation-format`           | `N/A`                                        |
+| `jaeger-sampler-type`                 | `otel-sampler`                               |
+| `jaeger-sampler-param`                | `otel-sampler`                               |
+| `jaeger-sampler-host`                 | `N/A`                                        |
+| `jaeger-sampler-port`                 | `N/A`                                        |
+| `jaeger-trace-context-header-name`    | `N/A`                                        |
+| `jaeger-debug-header`                 | `N/A`                                        |
+| `jaeger-baggage-header`               | `N/A`                                        |
+| `jaeger-tracer-baggage-header-prefix` | `N/A`                                        |
+| `datadog-collector-port`              | `otlp-collector-port`                        |
+| `datadog-service-name`                | `otel-service-name`                          |
+| `datadog-environment`                 | `N/A`                                        |
+| `datadog-operation-name-override`     | `N/A`                                        |
+| `datadog-priority-sampling`           | `otel-sampler`                               |
+| `datadog-sample-rate`                 | `otel-sampler-ratio`                         |

From bcfed2e912e1eb81013fc886062607ef900d22ed Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 29 May 2023 21:27:44 -0700
Subject: [PATCH 0791/1641] Bump github.com/imdario/mergo from 0.3.15 to 0.3.16
 (#10008)

Bumps [github.com/imdario/mergo](https://github.com/imdario/mergo) from 0.3.15 to 0.3.16.
- [Release notes](https://github.com/imdario/mergo/releases)
- [Commits](https://github.com/imdario/mergo/compare/v0.3.15...v0.3.16)

---
updated-dependencies:
- dependency-name: github.com/imdario/mergo
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 721a3c16b..99849f00b 100644
--- a/go.mod
+++ b/go.mod
@@ -6,7 +6,7 @@ require (
 	github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a
 	github.com/eapache/channels v1.1.0
 	github.com/fsnotify/fsnotify v1.6.0
-	github.com/imdario/mergo v0.3.15
+	github.com/imdario/mergo v0.3.16
 	github.com/json-iterator/go v1.1.12
 	github.com/kylelemons/godebug v1.1.0
 	github.com/mitchellh/go-ps v1.0.0
diff --git a/go.sum b/go.sum
index 003ad5fb8..dda3e809f 100644
--- a/go.sum
+++ b/go.sum
@@ -200,8 +200,8 @@ github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
-github.com/imdario/mergo v0.3.15 h1:M8XP7IuFNsqUx6VPK2P9OSmsYsI/YFaGil0uD21V3dM=
-github.com/imdario/mergo v0.3.15/go.mod h1:WBLT9ZmE3lPoWsEzCh9LPo3TiwVN+ZKEjmz+hD27ysY=
+github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4=
+github.com/imdario/mergo v0.3.16/go.mod h1:WBLT9ZmE3lPoWsEzCh9LPo3TiwVN+ZKEjmz+hD27ysY=
 github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
 github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=

From 3476232f5c38383dd157ddaff3b4c7cebd57284e Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 30 May 2023 14:39:50 -0400
Subject: [PATCH 0792/1641] release controller 1.8.0 and chart 4.7.0 (#10017)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 README.md                                     |  75 ++--
 changelog/Changelog-1.8.0.md                  |  67 +++
 charts/ingress-nginx/Chart.yaml               |  10 +-
 charts/ingress-nginx/README.md                |   8 +-
 .../changelog/Changelog-4.7.0.md              |  14 +
 charts/ingress-nginx/values.yaml              |   6 +-
 deploy/static/provider/aws/deploy.yaml        |  48 +-
 .../aws/nlb-with-tls-termination/deploy.yaml  |  48 +-
 deploy/static/provider/baremetal/deploy.yaml  |  48 +-
 deploy/static/provider/cloud/deploy.yaml      |  48 +-
 deploy/static/provider/do/deploy.yaml         |  48 +-
 deploy/static/provider/exoscale/deploy.yaml   |  48 +-
 deploy/static/provider/kind/deploy.yaml       |  48 +-
 deploy/static/provider/scw/deploy.yaml        |  48 +-
 docs/deploy/index.md                          |  20 +-
 docs/e2e-tests.md                             | 409 +++++++++---------
 magefiles/release.go                          |   8 +-
 17 files changed, 546 insertions(+), 455 deletions(-)
 create mode 100644 changelog/Changelog-1.8.0.md
 create mode 100644 charts/ingress-nginx/changelog/Changelog-4.7.0.md

diff --git a/README.md b/README.md
index 86f95cb9b..dc7ff3c38 100644
--- a/README.md
+++ b/README.md
@@ -9,7 +9,7 @@
 
 ## Overview
 
-ingress-nginx is an Ingress controller for Kubernetes using [NGINX](https://www.nginx.org/) as a reverse proxy and load 
+ingress-nginx is an Ingress controller for Kubernetes using [NGINX](https://www.nginx.org/) as a reverse proxy and load
 balancer.
 
 [Learn more about Ingress on the main Kubernetes documentation site](https://kubernetes.io/docs/concepts/services-networking/ingress/).
@@ -20,67 +20,72 @@ See the [Getting Started](https://kubernetes.github.io/ingress-nginx/deploy/) do
 
 ## Troubleshooting
 
-If you encounter issues, review the [troubleshooting docs](docs/troubleshooting.md), 
-[file an issue](https://github.com/kubernetes/ingress-nginx/issues), or talk to us on the 
+If you encounter issues, review the [troubleshooting docs](docs/troubleshooting.md),
+[file an issue](https://github.com/kubernetes/ingress-nginx/issues), or talk to us on the
 [#ingress-nginx channel](https://kubernetes.slack.com/messages/ingress-nginx) on the Kubernetes Slack server.
 
 ## Changelog
 
 See [the list of releases](https://github.com/kubernetes/ingress-nginx/releases) to find out about feature changes.
 For detailed changes for each release; please check the [Changelog.md](Changelog.md) file.
-For detailed changes on the `ingress-nginx` helm chart, please check the following 
+For detailed changes on the `ingress-nginx` helm chart, please check the following
 [CHANGELOG.md](charts/ingress-nginx/CHANGELOG.md) file.
 
-### Supported Versions table 
+### Supported Versions table
 
 Supported versions for the ingress-nginx project mean that we have completed E2E tests, and they are passing for
 the versions listed. Ingress-Nginx versions may work on older versions but the project does not make that guarantee.
 
-|       | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
-|:-----:|------------------------|------------------------------|----------------|---------------|--------------------|
-| 🔄 |  **v1.7.1**               | 1.27,1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        | 4.6.*         |
-| 🔄 |  **v1.7.0**   | 1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        | 4.6.*              |
-| 🔄 | **v1.6.4**   | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        | 4.5.*              |
-| 🔄| **v1.5.1**   | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        | 4.4.*              |
-|   | v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      | 4.3.0              |
-| | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      | 4.2.5              |
-| | v1.3.0                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.0         | 1.19.10†      | 4.2.3              |
-| | v1.2.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.6         | 1.19.10†      | 4.1.4              |
-| | v1.1.3                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.4         | 1.19.10†      | 4.0.19             |
-| | v1.1.2                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       | 4.0.18             |
-| | v1.1.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       | 4.0.17             |
-| | v1.1.0                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.13             |
-| | v1.0.5                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.9              |
-| | v1.0.4                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.6              |
-| | v1.0.3                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.5              |
-| | v1.0.2                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.3              |
-| | v1.0.1                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.2              |
-| | v1.0.0                | 1.22, 1.21, 1.20, 1.19       | 3.13.5         | 1.20.1        | 4.0.1              |
+|    | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
+|:--:|-----------------------|------------------------------|----------------|---------------|--------------------|
+| 🔄 | **v1.8.0**            | 1.27,1.26, 1.25, 1.24        | 3.18.0         | 1.21.6        | 4.7.*              |
+| 🔄 | **v1.7.1**            | 1.27,1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
+| 🔄 | **v1.7.0**            | 1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        | 4.6.*              |
+| 🔄 | **v1.6.4**            | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        | 4.5.*              |
+|    | v1.5.1                | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        | 4.4.*              |
+|    | v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      | 4.3.0              |
+|    | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      | 4.2.5              |
+|    | v1.3.0                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.0         | 1.19.10†      | 4.2.3              |
+|    | v1.2.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.6         | 1.19.10†      | 4.1.4              |
+|    | v1.1.3                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.4         | 1.19.10†      | 4.0.19             |
+|    | v1.1.2                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       | 4.0.18             |
+|    | v1.1.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       | 4.0.17             |
+|    | v1.1.0                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.13             |
+|    | v1.0.5                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.9              |
+|    | v1.0.4                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.6              |
+|    | v1.0.3                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.5              |
+|    | v1.0.2                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.3              |
+|    | v1.0.1                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.2              |
+|    | v1.0.0                | 1.22, 1.21, 1.20, 1.19       | 3.13.5         | 1.20.1        | 4.0.1              |
 
 
-† _This build is 
+† _This build is
 [patched against CVE-2021-23017](https://github.com/openresty/openresty/commit/4b5ec7edd78616f544abc194308e0cf4b788725b#diff-42ef841dc27fe0b5aa2d06bd31308bb63a59cdcddcbcddd917248349d22020a3)._
 
-See [this article](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/) if you want upgrade to the stable 
-Ingress API. 
+See [this article](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/) if you want upgrade to the stable
+Ingress API.
 
 ## Get Involved
 
 Thanks for taking the time to join our community and start contributing!
 
-- This project adheres to the [Kubernetes Community Code of Conduct](https://git.k8s.io/community/code-of-conduct.md). 
+- This project adheres to the [Kubernetes Community Code of Conduct](https://git.k8s.io/community/code-of-conduct.md).
   By participating in this project, you agree to abide by its terms.
 
 - **Contributing**: Contributions of all kind are welcome!
-  
-  - Read [`CONTRIBUTING.md`](CONTRIBUTING.md) for information about setting up your environment, the workflow that we 
+
+  - Read [`CONTRIBUTING.md`](CONTRIBUTING.md) for information about setting up your environment, the workflow that we
     expect, and instructions on the developer certificate of origin that we require.
   - Join our Kubernetes Slack channel for developer discussion : [#ingress-nginx-dev](https://kubernetes.slack.com/archives/C021E147ZA4).
-  - Submit GitHub issues for any feature enhancements, bugs or documentation problems. Please make sure to read the [Issue Reporting Checklist](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md#issue-reporting-guidelines) before opening an issue. Issues not conforming to the guidelines **may be closed immediately**.
-  - **Support**: Join the [#ingress-nginx-users](https://kubernetes.slack.com/messages/CANQGM8BA/) channel inside the [Kubernetes Slack](http://slack.kubernetes.io/) to ask questions or get support from the maintainers and other users.
+  - Submit GitHub issues for any feature enhancements, bugs or documentation problems. 
+    - Please make sure to read the [Issue Reporting Checklist](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md#issue-reporting-guidelines) before opening an issue. Issues not conforming to the guidelines **may be closed immediately**.
+  - Join our [ingress-nginx-dev mailing list](https://groups.google.com/a/kubernetes.io/g/ingress-nginx-dev/c/ebbBMo-zX-w)
+
+- **Support**: 
+  - Join the [#ingress-nginx-users](https://kubernetes.slack.com/messages/CANQGM8BA/) channel inside the [Kubernetes Slack](http://slack.kubernetes.io/) to ask questions or get support from the maintainers and other users.
   - The [GitHub issues](https://github.com/kubernetes/ingress-nginx/issues) in the repository are **exclusively** for bug reports and feature requests.
-  - **Discuss**: Tweet using the `#IngressNginx` hashtag.
+  - **Discuss**: Tweet using the `#IngressNginx` hashtag or sharing with us [@IngressNginx](https://twitter.com/IngressNGINX).
 
 ## License
 
-[Apache License 2.0](https://github.com/kubernetes/ingress-nginx/blob/main/LICENSE)
+[Apache License 2.0](https://github.com/kubernetes/ingress-nginx/blob/main/LICENSE)
\ No newline at end of file
diff --git a/changelog/Changelog-1.8.0.md b/changelog/Changelog-1.8.0.md
new file mode 100644
index 000000000..a109c68ba
--- /dev/null
+++ b/changelog/Changelog-1.8.0.md
@@ -0,0 +1,67 @@
+# Changelog
+
+### 1.8.0
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.8.0@sha256:a45e41cd2b7670adf829759878f512d4208d0aec1869dae593a0fecd09a5e49e
+
+### Important Changes:
+
+* Validate path types (#9967)
+* images: upgrade to Alpine 3.18 (#9997)
+* Update documentation to reflect project name; Ingress-Nginx Controller
+
+For improving security on our 1.8.0 release includes a 
+[new, **optional** validation ](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#strict-validate-path-type) 
+that limits the characters accepted  on ".spec paths.path" when pathType=Exact or pathType=Prefix, 
+to alphanumeric characters only. More information can be found on our 
+[Google doc](https://docs.google.com/document/d/1HPvaEwHRuMSkXYkVIJ-w7IpijKdHfNynm_4N2Akt0CQ/edit?usp=sharing)
+, our new [ingress-nginx-dev mailing list](https://groups.google.com/a/kubernetes.io/g/ingress-nginx-dev/c/ebbBMo-zX-w)
+or in our [docs](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#strict-validate-path-type)
+
+### Community Updates
+
+We are now posting updates and release to our twitter handle, [@IngressNginx](https://twitter.com/IngressNGINX) and
+on our new [ingress-nginx-dev mailing list](https://groups.google.com/a/kubernetes.io/g/ingress-nginx-dev/c/ebbBMo-zX-w)
+
+### All Changes:
+
+* Add legacy to OpenTelemetry migration doc (#10011)
+* changed tagsha to recent builds (#10001)
+* change to alpine318 baseimage (#10000)
+* images: upgrade to Alpine 3.18 (#9997)
+* openssl CVE fix (#9996)
+* PodDisruptionBudget spec logic update (#9904)
+* Admission warning (#9975)
+* Add OPA examples on pathType restrictions (#9992)
+* updated testrunner image tag+sha (#9987)
+* bumped ginkgo to v2.9.5 (#9985)
+* helm: Fix opentelemetry module installation for daemonset (#9792)
+* OpenTelemetry default config (#9978)
+* Correct annotations in monitoring docs (#9976)
+* fix: avoid builds and tests for changes to markdown (#9962)
+* Validate path types (#9967)
+* HPA: Use capabilites & align manifests. (#9521)
+* Use dl.k8s.io instead of hardcoded GCS URIs (#9946)
+* add option for annotations in PodDisruptionBudget (#9843)
+* chore: update httpbin to httpbun (#9919)
+* image_update (#9942)
+* Add geoname id value into $geoip2_*_geoname_id variables (#9527)
+* Update annotations.md (#9933)
+* Update charts/* to keep project name display aligned (#9931)
+* Keep project name display aligned (#9920)
+
+### Dependencies updates:
+* Bump github.com/imdario/mergo from 0.3.15 to 0.3.16 (#10008)
+* Bump github.com/prometheus/common from 0.43.0 to 0.44.0 (#10007)
+* Bump k8s.io/klog/v2 from 2.90.1 to 2.100.1 (#9913)
+* Bump github.com/onsi/ginkgo/v2 from 2.9.0 to 2.9.5 (#9980)
+* Bump golang.org/x/crypto from 0.8.0 to 0.9.0 (#9982)
+* Bump actions/setup-go from 4.0.0 to 4.0.1 (#9984)
+* Bump securego/gosec from 2.15.0 to 2.16.0 (#9983)
+* Bump github.com/prometheus/common from 0.42.0 to 0.43.0 (#9981)
+* Bump github.com/prometheus/client_model from 0.3.0 to 0.4.0 (#9937)
+* Bump google.golang.org/grpc from 1.54.0 to 1.55.0 (#9936)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.7.1...controller-controller-v1.8.0
\ No newline at end of file
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 81ebfc875..9786f705c 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,11 +1,11 @@
 annotations:
   artifacthub.io/changes: |
-     - "[helm] Support custom port configuration for internal service (#9846)"
-     - "Adding resource type to default HPA configuration to resolve issues with Terraform helm chart usage (#9803)"
-     - "Update Ingress-Nginx version controller-v1.7.1"
+     - "helm: Fix opentelemetry module installation for daemonset (#9792)"
+     - "Update charts/* to keep project name display aligned (#9931)"
+     - "Update Ingress-Nginx version controller-v1.8.0"
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.7.1
+appVersion: 1.8.0
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 engine: gotpl
@@ -22,4 +22,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.6.1
+version: 4.7.0
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 391eb4159..4a00815fd 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.6.1](https://img.shields.io/badge/Version-4.6.1-informational?style=flat-square) ![AppVersion: 1.7.1](https://img.shields.io/badge/AppVersion-1.7.1-informational?style=flat-square)
+![Version: 4.7.0](https://img.shields.io/badge/Version-4.7.0-informational?style=flat-square) ![AppVersion: 1.8.0](https://img.shields.io/badge/AppVersion-1.8.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -309,13 +309,13 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407"` |  |
-| controller.image.digestChroot | string | `"sha256:e35d5ab487861b9d419c570e3530589229224a0762c7b4d2e2222434abb8d988"` |  |
+| controller.image.digest | string | `"sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3"` |  |
+| controller.image.digestChroot | string | `"sha256:a45e41cd2b7670adf829759878f512d4208d0aec1869dae593a0fecd09a5e49e"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.7.1"` |  |
+| controller.image.tag | string | `"v1.8.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/Changelog-4.7.0.md b/charts/ingress-nginx/changelog/Changelog-4.7.0.md
new file mode 100644
index 000000000..7399da777
--- /dev/null
+++ b/charts/ingress-nginx/changelog/Changelog-4.7.0.md
@@ -0,0 +1,14 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.7.0
+
+* helm: Fix opentelemetry module installation for daemonset (#9792)
+* Update charts/* to keep project name display aligned (#9931)
+* HPA: Use capabilites & align manifests. (#9521)
+* PodDisruptionBudget spec logic update (#9904)
+* add option for annotations in PodDisruptionBudget (#9843)
+* Update Ingress-Nginx version controller-v1.8.0
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.6.1...helm-chart-4.7.0
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 962567e07..7ca41e79e 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -23,9 +23,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.7.1"
-    digest: sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
-    digestChroot: sha256:e35d5ab487861b9d419c570e3530589229224a0762c7b4d2e2222434abb8d988
+    tag: "v1.8.0"
+    digest: sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
+    digestChroot: sha256:a45e41cd2b7670adf829759878f512d4208d0aec1869dae593a0fecd09a5e49e
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 41006c016..48f7f11b1 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -514,7 +514,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -525,7 +525,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -539,7 +539,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -561,7 +561,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -572,7 +572,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -588,7 +588,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -623,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 4e4f9ca9b..b4e2cd5f6 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -427,7 +427,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
     spec:
       containers:
       - args:
@@ -451,7 +451,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,7 +526,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -537,7 +537,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -551,7 +551,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -573,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -600,7 +600,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -622,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 3f015f001..74292b82b 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
     spec:
       containers:
       - args:
@@ -436,7 +436,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -508,7 +508,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -519,7 +519,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -533,7 +533,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -555,7 +555,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -566,7 +566,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -582,7 +582,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -604,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -617,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index a914aca5e..6dac63865 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -414,7 +414,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
     spec:
       containers:
       - args:
@@ -438,7 +438,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -510,7 +510,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -521,7 +521,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -535,7 +535,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -557,7 +557,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -568,7 +568,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -584,7 +584,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -606,7 +606,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -619,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 676ae1229..0e3f4b46f 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
     spec:
       containers:
       - args:
@@ -441,7 +441,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -513,7 +513,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -524,7 +524,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -538,7 +538,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -560,7 +560,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -571,7 +571,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -587,7 +587,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -609,7 +609,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -622,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index e9d3522f0..a1bd4ed00 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -519,7 +519,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -530,7 +530,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -544,7 +544,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -566,7 +566,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -577,7 +577,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -593,7 +593,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -615,7 +615,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -628,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 6a327b97f..41d17d8d1 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -549,7 +549,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -571,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -598,7 +598,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -620,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -633,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 389e2a920..e303a52f5 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
     spec:
       containers:
       - args:
@@ -441,7 +441,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -513,7 +513,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -524,7 +524,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -538,7 +538,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -560,7 +560,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -571,7 +571,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -587,7 +587,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -609,7 +609,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -622,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index e33ee5dbe..655c6fae9 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -62,7 +62,7 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -225,7 +225,7 @@ In AWS, we use a Network load balancer (NLB) to expose the Ingress-Nginx Control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -233,10 +233,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -282,7 +282,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -299,7 +299,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -307,7 +307,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -315,7 +315,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -330,7 +330,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -357,7 +357,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.7.1/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 9b3c5f2ff..025ff686d 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -7,19 +7,38 @@ Do not try to edit it manually.
 
 
 
-### [[Admission] admission controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L35)
+### [[Admission] admission controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L37)
 
-- [reject ingress with global-rate-limit annotations when memcached is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L43)
-- [should not allow overlaps of host and paths without canary annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L70)
-- [should allow overlaps of host and paths with canary annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L87)
-- [should block ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L108)
-- [should return an error if there is an error validating the ingress definition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L125)
-- [should return an error if there is an invalid value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L136)
-- [should return an error if there is a forbidden value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L150)
-- [should not return an error if the Ingress V1 definition is valid with Ingress Class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L164)
-- [should not return an error if the Ingress V1 definition is valid with IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L180)
-- [should return an error if the Ingress V1 definition contains invalid annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L196)
-- [should not return an error for an invalid Ingress when it has unknown class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L207)
+- [reject ingress with global-rate-limit annotations when memcached is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L45)
+- [should not allow overlaps of host and paths without canary annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L72)
+- [should allow overlaps of host and paths with canary annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L89)
+- [should block ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L110)
+- [should return an error if there is an error validating the ingress definition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L127)
+- [should return an error if there is an invalid value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L138)
+- [should return an error if there is a forbidden value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L152)
+- [should return an error if there is an invalid path and wrong pathType is set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L166)
+- [should not return an error if the Ingress V1 definition is valid with Ingress Class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L201)
+- [should not return an error if the Ingress V1 definition is valid with IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L217)
+- [should return an error if the Ingress V1 definition contains invalid annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L233)
+- [should not return an error for an invalid Ingress when it has unknown class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L244)
+
+### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L35)
+
+- [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L42)
+- [should change cookie name on ingress definition change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L64)
+- [should set the path to /something on the generated cookie](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L99)
+- [does not set the path to / on the generated cookie if there's more than one rule referring to the same backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L121)
+- [should set cookie with expires](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L194)
+- [should set cookie with domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L225)
+- [should not set cookie without domain annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L248)
+- [should work with use-regex annotation and session-cookie-path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L270)
+- [should warn user when use-regex is true and session-cookie-path is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L294)
+- [should not set affinity across all server locations when using separate ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L320)
+- [should set sticky cookie without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L352)
+- [should work with server-alias annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L372)
+- [should set secure in cookie with provided true annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L412)
+- [should not set secure in cookie with provided false annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L435)
+- [should set secure in cookie with provided false annotation on https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L458)
 
 ### [affinitymode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L31)
 
@@ -36,6 +55,42 @@ Do not try to edit it manually.
 
 - [should redirect to /foo](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L35)
 
+### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L40)
+
+- [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L47)
+- [should return status code 503 when authentication is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L66)
+- [should return status code 401 when authentication is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L90)
+- [should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L117)
+- [should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L145)
+- [should return status code 200 when authentication is configured and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L173)
+- [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L200)
+- [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L228)
+- [ when external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L267)
+- [ when external auth is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L285)
+- [ when auth-headers are set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L302)
+- [should set cache_key when external auth cache is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L323)
+- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L412)
+- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L423)
+- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L434)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L486)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L495)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L506)
+- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L530)
+- [should not create additional upstream block when auth-keepalive is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L553)
+- [should not create additional upstream block when host part of auth-url contains a variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L571)
+- [should not create additional upstream block when auth-keepalive is negative](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L591)
+- [should not create additional upstream block when auth-keepalive is set with HTTP/2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L610)
+- [should create additional upstream block when auth-keepalive is set with HTTP/1.x](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L624)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L679)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L688)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L699)
+- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L773)
+- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L793)
+- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L821)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L850)
+- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L880)
+- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L888)
+
 ### [auth-tls-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L29)
 
 - [should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L36)
@@ -56,6 +111,34 @@ Do not try to edit it manually.
 - [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L94)
 - [should set backend protocol to '' and use ajp_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L109)
 
+### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
+
+- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L48)
+- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L80)
+- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L107)
+- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L161)
+- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L206)
+- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L250)
+- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L307)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L372)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L426)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L490)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L532)
+- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L566)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L604)
+- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L643)
+- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L705)
+- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L743)
+- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L775)
+- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L808)
+- [should route requests split between mainline and canary if canary weight is 100 and weight total is 200](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L834)
+- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L863)
+- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L891)
+- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L915)
+- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L943)
+- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1000)
+- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1058)
+
 ### [client-body-buffer-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L28)
 
 - [should set client_body_buffer_size to 1000](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L35)
@@ -109,6 +192,13 @@ Do not try to edit it manually.
 - [disable-http-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L53)
 - [disable-stream-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L71)
 
+### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L30)
+
+- [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L37)
+- [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L54)
+- [should add fastcgi_param in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L71)
+- [should return OK for service with backend protocol FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L102)
+
 ### [force-ssl-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L27)
 
 - [should redirect to https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L34)
@@ -133,6 +223,11 @@ Do not try to edit it manually.
 
 - [enable the http2-push-preload directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L34)
 
+### [denylist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L28)
+
+- [only deny explicitly denied IPs, allow all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L35)
+- [only allow explicitly allowed IPs, deny all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L86)
+
 ### [whitelist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L27)
 
 - [should set valid ip whitelist range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L34)
@@ -203,6 +298,14 @@ Do not try to edit it manually.
 - [should respond with a standard redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L33)
 - [should respond with a custom redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L61)
 
+### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L30)
+
+- [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L37)
+- [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L66)
+- [should use ~* location modifier if regex annotation is present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L111)
+- [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L158)
+- [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L190)
+
 ### [satisfy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L35)
 
 - [should configure satisfy directive correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L42)
@@ -247,108 +350,6 @@ Do not try to edit it manually.
 - [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L35)
 - [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L57)
 
-### [denylist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L28)
-
-- [only deny explicitly denied IPs, allow all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L35)
-- [only allow explicitly allowed IPs, deny all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L86)
-
-### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L35)
-
-- [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L42)
-- [should change cookie name on ingress definition change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L64)
-- [should set the path to /something on the generated cookie](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L99)
-- [does not set the path to / on the generated cookie if there's more than one rule referring to the same backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L121)
-- [should set cookie with expires](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L194)
-- [should set cookie with domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L225)
-- [should not set cookie without domain annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L248)
-- [should work with use-regex annotation and session-cookie-path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L270)
-- [should warn user when use-regex is true and session-cookie-path is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L294)
-- [should not set affinity across all server locations when using separate ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L320)
-- [should set sticky cookie without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L352)
-- [should work with server-alias annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L372)
-- [should set secure in cookie with provided true annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L412)
-- [should not set secure in cookie with provided false annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L435)
-- [should set secure in cookie with provided false annotation on https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L458)
-
-### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L30)
-
-- [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L37)
-- [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L66)
-- [should use ~* location modifier if regex annotation is present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L111)
-- [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L158)
-- [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L190)
-
-### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L30)
-
-- [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L37)
-- [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L54)
-- [should add fastcgi_param in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L71)
-- [should return OK for service with backend protocol FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L102)
-
-### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L39)
-
-- [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L46)
-- [should return status code 503 when authentication is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L65)
-- [should return status code 401 when authentication is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L89)
-- [should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L116)
-- [should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L144)
-- [should return status code 200 when authentication is configured and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L172)
-- [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L199)
-- [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L227)
-- [ when external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L266)
-- [ when external auth is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L284)
-- [ when auth-headers are set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L301)
-- [should set cache_key when external auth cache is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L322)
-- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L411)
-- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L422)
-- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L433)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L485)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L494)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L505)
-- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L529)
-- [should not create additional upstream block when auth-keepalive is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L552)
-- [should not create additional upstream block when host part of auth-url contains a variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L570)
-- [should not create additional upstream block when auth-keepalive is negative](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L590)
-- [should not create additional upstream block when auth-keepalive is set with HTTP/2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L609)
-- [should create additional upstream block when auth-keepalive is set with HTTP/1.x](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L623)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L678)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L687)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L698)
-- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L772)
-- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L792)
-- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L820)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L849)
-- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L879)
-- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L887)
-
-### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
-
-- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L48)
-- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L80)
-- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L107)
-- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L161)
-- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L206)
-- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L250)
-- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L307)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L372)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L426)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L490)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L532)
-- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L566)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L604)
-- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L643)
-- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L705)
-- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L743)
-- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L775)
-- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L808)
-- [should route requests split between mainline and canary if canary weight is 100 and weight total is 200](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L834)
-- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L863)
-- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L891)
-- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L915)
-- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L943)
-- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1000)
-- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1058)
-
 ### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L29)
 
 - [should list the backend servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L37)
@@ -373,6 +374,10 @@ Do not try to edit it manually.
 
 - [should apply the annotation to the default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L38)
 
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
+
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
@@ -385,10 +390,30 @@ Do not try to edit it manually.
 
 - [should return 200 when service has topology hints](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L43)
 
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
+
+### [[Setting] ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L194)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L)
+
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
 
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
@@ -413,6 +438,10 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/reporter.go#L)
 
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
+
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/response.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/response.go#L)
@@ -425,14 +454,18 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/value.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
 
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
 
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
+
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
@@ -445,34 +478,6 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
 
-### [[Setting] ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L194)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
-
 ### [[Shutdown] Grace period shutdown](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L32)
 
 - [/healthz should return status code 500 during shutdown grace period](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L35)
@@ -546,6 +551,11 @@ Do not try to edit it manually.
 - [handles endpoints only changes consistently (down scaling of replicas vs. empty service)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L125)
 - [handles an annotation change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L171)
 
+### [[metrics] exported prometheus metrics](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L36)
+
+- [exclude socket request metrics are absent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L50)
+- [exclude socket request metrics are present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L72)
+
 ### [nginx-configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L99)
 
 - [start nginx with default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L102)
@@ -561,15 +571,15 @@ Do not try to edit it manually.
 - [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L36)
 - [should return 503 when all backend service endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L54)
 
-### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L59)
+### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L37)
 
-- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L62)
-- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L95)
-- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L129)
-- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L153)
-- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L184)
-- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L217)
-- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L248)
+- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L40)
+- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L72)
+- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L110)
+- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L138)
+- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L169)
+- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L206)
+- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L241)
 - [should sync ingress on external name service addition/deletion](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L311)
 
 ### [[Service] Nil Service Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L31)
@@ -595,6 +605,10 @@ Do not try to edit it manually.
 
 - [ condition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L39)
 
+### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
+
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
+
 ### [add-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L30)
 
 - [Add a custom header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L40)
@@ -616,6 +630,12 @@ Do not try to edit it manually.
 
 - [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L52)
 
+### [[Flag] disable-sync-events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L32)
+
+- [should create sync events (default)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L35)
+- [should create sync events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L53)
+- [should not create sync events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L80)
+
 ### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L30)
 
 - [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L40)
@@ -661,6 +681,15 @@ Do not try to edit it manually.
 
 - [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L38)
 
+### [gzip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L29)
+
+- [should be disabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L32)
+- [should be enabled with default settings](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L39)
+- [should set gzip_comp_level to 4](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L56)
+- [should set gzip_disable to msie6](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L67)
+- [should set gzip_min_length to 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L78)
+- [should set gzip_types to application/javascript](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L89)
+
 ### [hash size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L27)
 
 - [should set server_names_hash_bucket_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L40)
@@ -734,6 +763,16 @@ Do not try to edit it manually.
 - [should be enabled when set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L39)
 - [should be disabled when set to false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L49)
 
+### [[Flag] watch namespace selector](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L30)
+
+- [should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L63)
+
+### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
+
+- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L54)
+- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
+- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
+
 ### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L28)
 
 - [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L31)
@@ -742,6 +781,14 @@ Do not try to edit it manually.
 
 - [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
 
+### [Configure Opentelemetry](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L37)
+
+- [should not exists opentelemetry directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L47)
+- [should exists opentelemetry directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L60)
+- [should include opentelemetry_trust_incoming_spans on directive when enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L74)
+- [should not exists opentelemetry_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L89)
+- [should exists opentelemetry_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L104)
+
 ### [Configure OpenTracing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L48)
 
 - [should not exists opentracing directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L58)
@@ -821,6 +868,11 @@ Do not try to edit it manually.
 
 - [Add ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L31)
 
+### [With enable-ssl-passthrough enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L36)
+
+- [should enable ssl-passthrough-proxy-port on a different port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L56)
+- [should pass unknown traffic to default backend and handle known traffic](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L79)
+
 ### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L35)
 
 - [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L42)
@@ -835,48 +887,6 @@ Do not try to edit it manually.
 - [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L187)
 - [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L205)
 
-### [[Flag] disable-sync-events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L32)
-
-- [should create sync events (default)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L35)
-- [should create sync events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L53)
-- [should not create sync events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L80)
-
-### [gzip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L29)
-
-- [should be disabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L32)
-- [should be enabled with default settings](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L39)
-- [should set gzip_comp_level to 4](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L56)
-- [should set gzip_disable to msie6](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L67)
-- [should set gzip_min_length to 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L78)
-- [should set gzip_types to application/javascript](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L89)
-
-### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
-
-- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
-
-### [[Flag] watch namespace selector](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L30)
-
-- [should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L63)
-
-### [With enable-ssl-passthrough enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L36)
-
-- [should enable ssl-passthrough-proxy-port on a different port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L56)
-- [should pass unknown traffic to default backend and handle known traffic](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L79)
-
-### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
-
-- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L54)
-- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
-- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
-
-### [Configure Opentelemetry](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L37)
-
-- [should not exists opentelemetry directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L47)
-- [should exists opentelemetry directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L60)
-- [should include opentelemetry_trust_incoming_spans on directive when enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L74)
-- [should not exists opentelemetry_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L89)
-- [should exists opentelemetry_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L104)
-
 ### [[SSL] redirect to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L29)
 
 - [should redirect from HTTP to HTTPS when secret is missing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L36)
@@ -894,13 +904,4 @@ Do not try to edit it manually.
 
 - [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L46)
 - [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L80)
-- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L169)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
-
-### [[metrics] exported prometheus metrics](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L36)
-
-- [exclude socket request metrics are absent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L50)
-- [exclude socket request metrics are present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L72)
\ No newline at end of file
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L169)
\ No newline at end of file
diff --git a/magefiles/release.go b/magefiles/release.go
index c02b88cfd..6e5efb490 100644
--- a/magefiles/release.go
+++ b/magefiles/release.go
@@ -136,12 +136,16 @@ func (Release) NewRelease(version string) {
 
 	//controller tag
 	updateChartValue("controller.image.tag", fmt.Sprintf("v%s", releaseNotes.Version))
+	Debug("releaseNotes.ControllerImages[0].Name %s", releaseNotes.ControllerImages[0].Name)
+	Debug("releaseNotes.ControllerImages[1].Name %s", releaseNotes.ControllerImages[1].Name)
 	//controller digest
-	if releaseNotes.ControllerImages[0].Name == "controller" {
+	if releaseNotes.ControllerImages[0].Name == "ingress-nginx/controller" {
+		Debug("Updating Chart Value %s with %s", "controller.image.digest", releaseNotes.ControllerImages[0].Digest)
 		updateChartValue("controller.image.digest", releaseNotes.ControllerImages[0].Digest)
 	}
 	//controller chroot digest
-	if releaseNotes.ControllerImages[1].Name == "controller-chroot" {
+	if releaseNotes.ControllerImages[1].Name == "ingress-nginx/controller-chroot" {
+		Debug("Updating Chart Value %s with %s", "controller.image.digestChroot", releaseNotes.ControllerImages[1].Digest)
 		updateChartValue("controller.image.digestChroot", releaseNotes.ControllerImages[1].Digest)
 	}
 

From 057c1b26fb1e9f7bcd073ab8c5e6f3eb346a9885 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 31 May 2023 02:03:46 +0530
Subject: [PATCH 0793/1641] added helmshowvalues example (#10019)

---
 docs/deploy/index.md | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 655c6fae9..dcdfeb7c0 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -59,6 +59,12 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
     - if the ingress controller is not installed, it will install it,
     - if the ingress controller is already installed, it will upgrade it.
 
+**If you want a full list of values that you can set, while installing with Helm,** then run:
+
+```console
+helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx
+```
+
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console

From fddf4e034c0d766a4815247b414cbd71a1869456 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Wed, 31 May 2023 23:17:50 -0500
Subject: [PATCH 0794/1641] fix formatting

---
 pkg/util/runtime/cpu_notlinux.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pkg/util/runtime/cpu_notlinux.go b/pkg/util/runtime/cpu_notlinux.go
index 0441af957..2a1b48252 100644
--- a/pkg/util/runtime/cpu_notlinux.go
+++ b/pkg/util/runtime/cpu_notlinux.go
@@ -26,4 +26,4 @@ import (
 // NumCPU ...
 func NumCPU() int {
 	return runtime.NumCPU()
-}
\ No newline at end of file
+}

From 19de8af3508c50c19eccc647eb9f259ac9008a74 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 1 Jun 2023 13:11:46 +0530
Subject: [PATCH 0795/1641] added note on dns for localtesting (#10021)

---
 docs/deploy/index.md | 22 +++++++++++++++++-----
 1 file changed, 17 insertions(+), 5 deletions(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index dcdfeb7c0..76a28b6ad 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -76,10 +76,9 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
     resources as if you had used Helm to install the controller.
 
 !!! attention
-  If you are running an old version of Kubernetes (1.18 or earlier), please read
-  [this paragraph](#running-on-Kubernetes-versions-older-than-1.19) for specific instructions.
-  Because of api deprecations, the default manifest may not work on your cluster.
-  Specific manifests for supported Kubernetes versions are available within a sub-folder of each provider.
+    If you are running an old version of Kubernetes (1.18 or earlier), please read [this paragraph](#running-on-Kubernetes-versions-older-than-1.19) for specific instructions.
+    Because of api deprecations, the default manifest may not work on your cluster.
+    Specific manifests for supported Kubernetes versions are available within a sub-folder of each provider.
 
 ### Pre-flight check
 
@@ -99,6 +98,7 @@ kubectl wait --namespace ingress-nginx \
   --timeout=120s
 ```
 
+
 ### Local testing
 
 Let's create a simple web server and the associated service:
@@ -121,7 +121,19 @@ Now, forward a local port to the ingress controller:
 kubectl port-forward --namespace=ingress-nginx service/ingress-nginx-controller 8080:80
 ```
 
-At this point, if you access http://demo.localdev.me:8080/, you should see an HTML page telling you "It works!".
+!!! info
+    A note on DNS & network-connection.
+    This documentation assumes that a user has awareness of the DNS and the network routing aspects involved in using ingress.
+    The port-forwarding mentioned above, is the easiest way to demo the working of ingress. The "kubectl port-forward..." command above has forwarded the port number 8080, on the localhost's tcp/ip stack, where the command was typed, to the port  number 80, of the service created by the installation of ingress-nginx controller. So now, the traffic sent to port number 8080 on localhost will reach the port number 80, of the ingress-controller's service.
+    Port-forwarding is not for a production environment use-case. But here we use port-forwarding, to simulate a HTTP request, originating from outside the cluster, to reach the service of the ingress-nginx controller, that is exposed to receive traffic from outside the cluster.
+  [This issue](https://github.com/kubernetes/ingress-nginx/issues/10014#issuecomment-1567791549described) shows a typical DNS problem and its solution.
+
+At this point, you can access your deployment using curl ;
+```console
+curl --resolve demo.localdev.me:8080:127.0.0.1 http://demo.localdev.me:8080
+```
+
+You should see a HTML response containing text like **"It works!"**.
 
 ### Online testing
 

From d02ba28b9609c106ea4de8e0f3dbf5abc3d06fdc Mon Sep 17 00:00:00 2001
From: Eng Zer Jun <engzerjun@gmail.com>
Date: Thu, 1 Jun 2023 22:29:47 +0800
Subject: [PATCH 0796/1641] perf: avoid unnecessary byte/string conversion
 (#10012)

We can use alternative functions to avoid unnecessary byte/string
conversion calls and reduce allocations.

Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>
---
 internal/ingress/annotations/auth/main.go    | 2 +-
 internal/ingress/annotations/authreq/main.go | 6 +++---
 internal/net/ssl/ssl.go                      | 6 +++---
 test/e2e/settings/ocsp/ocsp.go               | 2 +-
 4 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/internal/ingress/annotations/auth/main.go b/internal/ingress/annotations/auth/main.go
index 58486c6e8..62d70873e 100644
--- a/internal/ingress/annotations/auth/main.go
+++ b/internal/ingress/annotations/auth/main.go
@@ -197,7 +197,7 @@ func dumpSecretAuthMap(filename string, secret *api.Secret) error {
 	for user, pass := range secret.Data {
 		builder.WriteString(user)
 		builder.WriteString(":")
-		builder.WriteString(string(pass))
+		builder.Write(pass)
 		builder.WriteString("\n")
 	}
 
diff --git a/internal/ingress/annotations/authreq/main.go b/internal/ingress/annotations/authreq/main.go
index 6a8a4611a..2ab389146 100644
--- a/internal/ingress/annotations/authreq/main.go
+++ b/internal/ingress/annotations/authreq/main.go
@@ -143,7 +143,7 @@ func ValidMethod(method string) bool {
 
 // ValidHeader checks is the provided string satisfies the header's name regex
 func ValidHeader(header string) bool {
-	return headerRegexp.Match([]byte(header))
+	return headerRegexp.MatchString(header)
 }
 
 // ValidCacheDuration checks if the provided string is a valid cache duration
@@ -159,13 +159,13 @@ func ValidCacheDuration(duration string) bool {
 		if len(element) == 0 {
 			continue
 		}
-		if statusCodeRegex.Match([]byte(element)) {
+		if statusCodeRegex.MatchString(element) {
 			if seenDuration {
 				return false // code after duration
 			}
 			continue
 		}
-		if durationRegex.Match([]byte(element)) {
+		if durationRegex.MatchString(element) {
 			seenDuration = true
 		}
 	}
diff --git a/internal/net/ssl/ssl.go b/internal/net/ssl/ssl.go
index 05ec10bc5..fdee2f46e 100644
--- a/internal/net/ssl/ssl.go
+++ b/internal/net/ssl/ssl.go
@@ -81,7 +81,7 @@ func CreateSSLCert(cert, key []byte, uid string) (*ingress.SSLCert, error) {
 		}
 	}
 
-	pemCertBuffer.Write([]byte("\n"))
+	pemCertBuffer.WriteString("\n")
 	pemCertBuffer.Write(key)
 
 	pemBlock, _ := pem.Decode(pemCertBuffer.Bytes())
@@ -195,12 +195,12 @@ func StoreSSLCertOnDisk(name string, sslCert *ingress.SSLCert) (string, error) {
 func ConfigureCACertWithCertAndKey(name string, ca []byte, sslCert *ingress.SSLCert) error {
 	var buffer bytes.Buffer
 
-	_, err := buffer.Write([]byte(sslCert.PemCertKey))
+	_, err := buffer.WriteString(sslCert.PemCertKey)
 	if err != nil {
 		return fmt.Errorf("could not append newline to cert file %v: %v", sslCert.CAFileName, err)
 	}
 
-	_, err = buffer.Write([]byte("\n"))
+	_, err = buffer.WriteString("\n")
 	if err != nil {
 		return fmt.Errorf("could not append newline to cert file %v: %v", sslCert.CAFileName, err)
 	}
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index ea444444b..0173f41ac 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -68,7 +68,7 @@ var _ = framework.DescribeSetting("OCSP", func() {
 
 		var pemCertBuffer bytes.Buffer
 		pemCertBuffer.Write(leafCert)
-		pemCertBuffer.Write([]byte("\n"))
+		pemCertBuffer.WriteString("\n")
 		pemCertBuffer.Write(intermediateCa)
 
 		f.EnsureSecret(&corev1.Secret{

From 9e125c597e17781b7df12b03987f98360ad6e20c Mon Sep 17 00:00:00 2001
From: James Strong <james.strong@chainguard.dev>
Date: Thu, 1 Jun 2023 13:33:20 -0400
Subject: [PATCH 0797/1641] adding a tag here so we force nginx builds to
 cloudbuild

Signed-off-by: James Strong <james.strong@chainguard.dev>
---
 images/nginx/TAG | 1 +
 1 file changed, 1 insertion(+)
 create mode 100644 images/nginx/TAG

diff --git a/images/nginx/TAG b/images/nginx/TAG
new file mode 100644
index 000000000..77d6f4ca2
--- /dev/null
+++ b/images/nginx/TAG
@@ -0,0 +1 @@
+0.0.0

From 8a61027f1a65bfd588ac85c960ab00db164d7a59 Mon Sep 17 00:00:00 2001
From: Stilian Stoilov <stilian.stoilov@sap.com>
Date: Fri, 2 Jun 2023 04:07:46 +0300
Subject: [PATCH 0798/1641] Upgrade to Golang 1.20.4 (#10016)

* Upgrade to Golang 1.20.4 and alpine 3.18.0

* Handle Review comments
---
 images/custom-error-pages/rootfs/Dockerfile       | 2 +-
 images/ext-auth-example-authsvc/rootfs/Dockerfile | 2 +-
 images/fastcgi-helloserver/rootfs/Dockerfile      | 2 +-
 images/go-grpc-greeter-server/rootfs/Dockerfile   | 2 +-
 images/test-runner/Makefile                       | 4 ++--
 images/test-runner/rootfs/Dockerfile              | 2 +-
 6 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index b34bb6977..30ac54693 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.20.1-alpine3.17 as builder
+FROM golang:1.20.4-alpine3.18 as builder
 
 RUN apk update \
     && apk upgrade && apk add git
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index c604651d4..96dcd9a39 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.20.1-alpine3.17 as builder
+FROM golang:1.20.4-alpine3.18 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
index 7d9220ddf..a11834373 100755
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.20.1-alpine3.17 as builder
+FROM golang:1.20.4-alpine3.18 as builder
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
 
diff --git a/images/go-grpc-greeter-server/rootfs/Dockerfile b/images/go-grpc-greeter-server/rootfs/Dockerfile
index 67aed038e..d457b43e5 100644
--- a/images/go-grpc-greeter-server/rootfs/Dockerfile
+++ b/images/go-grpc-greeter-server/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.20.1-alpine3.17 as build
+FROM golang:1.20.4-alpine3.18 as build
 
 WORKDIR /go/src/greeter-server
 
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index a004ad932..1d1f4f638 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -43,7 +43,7 @@ image:
 		--pull \
 		--push \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=1.20.1 \
+		--build-arg GOLANG_VERSION=1.20.4 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
@@ -64,7 +64,7 @@ build: ensure-buildx
 		--progress=${PROGRESS} \
 		--pull \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=1.20.1 \
+		--build-arg GOLANG_VERSION=1.20.4 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 8574f8752..40017f775 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -15,7 +15,7 @@ ARG BASE_IMAGE
 ARG GOLANG_VERSION
 ARG ETCD_VERSION
 
-FROM golang:${GOLANG_VERSION}-alpine3.17 as GO
+FROM golang:${GOLANG_VERSION}-alpine3.18 as GO
 FROM registry.k8s.io/etcd:${ETCD_VERSION} as etcd
 
 FROM ${BASE_IMAGE}

From e97e9285428bf78b3ddc334c1f670636fd7c2427 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Fri, 2 Jun 2023 15:36:53 +0800
Subject: [PATCH 0799/1641] chore(dep): upgrade
 github.com/emicklei/go-restful/v3 to 3.10 (#10028)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 99849f00b..6d8bcce61 100644
--- a/go.mod
+++ b/go.mod
@@ -53,7 +53,7 @@ require (
 	github.com/cyphar/filepath-securejoin v0.2.3 // indirect
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/eapache/queue v1.1.0 // indirect
-	github.com/emicklei/go-restful/v3 v3.9.0 // indirect
+	github.com/emicklei/go-restful/v3 v3.10.2 // indirect
 	github.com/evanphx/json-patch v4.12.0+incompatible // indirect
 	github.com/evanphx/json-patch/v5 v5.6.0 // indirect
 	github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b // indirect
diff --git a/go.sum b/go.sum
index dda3e809f..d04cc680a 100644
--- a/go.sum
+++ b/go.sum
@@ -71,8 +71,8 @@ github.com/eapache/channels v1.1.0 h1:F1taHcn7/F0i8DYqKXJnyhJcVpp2kgFcNePxXtnyu4
 github.com/eapache/channels v1.1.0/go.mod h1:jMm2qB5Ubtg9zLd+inMZd2/NUvXgzmWXsDaLyQIGfH0=
 github.com/eapache/queue v1.1.0 h1:YOEu7KNc61ntiQlcEeUIoDTJ2o8mQznoNvUhiigpIqc=
 github.com/eapache/queue v1.1.0/go.mod h1:6eCeP0CKFpHLu8blIFXhExK/dRa7WDZfr6jVFPTqq+I=
-github.com/emicklei/go-restful/v3 v3.9.0 h1:XwGDlfxEnQZzuopoqxwSEllNcCOM9DhhFyhFIIGKwxE=
-github.com/emicklei/go-restful/v3 v3.9.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
+github.com/emicklei/go-restful/v3 v3.10.2 h1:hIovbnmBTLjHXkqEBUz3HGpXZdM7ZrE9fJIZIqlJLqE=
+github.com/emicklei/go-restful/v3 v3.10.2/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=

From 179aa898f4b7b5e43175aad7220f1aa76c69c4fb Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 2 Jun 2023 08:04:55 -0700
Subject: [PATCH 0800/1641] Bump github.com/stretchr/testify from 1.8.2 to
 1.8.3 (#10005)

Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.2 to 1.8.3.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.8.2...v1.8.3)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 8 ++------
 2 files changed, 3 insertions(+), 7 deletions(-)

diff --git a/go.mod b/go.mod
index 6d8bcce61..e1f8cd8c6 100644
--- a/go.mod
+++ b/go.mod
@@ -22,7 +22,7 @@ require (
 	github.com/prometheus/common v0.44.0
 	github.com/spf13/cobra v1.7.0
 	github.com/spf13/pflag v1.0.5
-	github.com/stretchr/testify v1.8.2
+	github.com/stretchr/testify v1.8.3
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.9.0
diff --git a/go.sum b/go.sum
index d04cc680a..a867674d6 100644
--- a/go.sum
+++ b/go.sum
@@ -347,9 +347,7 @@ github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
 github.com/stretchr/objx v0.5.0 h1:1zr/of2m5FGMsad5YfcqgdqdWrIhu+EBEJRhR1U7z/c=
-github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
 github.com/stretchr/testify v1.1.3/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
@@ -357,10 +355,8 @@ github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81P
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
-github.com/stretchr/testify v1.8.2 h1:+h33VjcLVPDHtOdpUCuF+7gSuG3yGIftsP1YvFihtJ8=
-github.com/stretchr/testify v1.8.2/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
+github.com/stretchr/testify v1.8.3 h1:RP3t2pwF7cMEbC1dqtB6poj3niw/9gnV4Cjg5oW5gtY=
+github.com/stretchr/testify v1.8.3/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
 github.com/xlab/treeprint v1.1.0 h1:G/1DjNkPpfZCFt9CSh6b5/nY4VimlbHF3Rh4obvtzDk=
 github.com/xlab/treeprint v1.1.0/go.mod h1:gj5Gd3gPdKtR1ikdDK6fnFLdmIS0X30kTTuNd/WEJu0=

From 1503695b3041505c93335c1ddf5801bd6734e970 Mon Sep 17 00:00:00 2001
From: Chen Chen <imchench@gmail.com>
Date: Sun, 4 Jun 2023 01:50:41 +0800
Subject: [PATCH 0801/1641] Fix typo in controller_test (#10034)

Signed-off-by: z1cheng <imchench@gmail.com>
---
 internal/ingress/controller/controller_test.go | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index 06e1e8db0..41ce9de87 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -387,7 +387,7 @@ func TestCheckWarning(t *testing.T) {
 			t.Errorf("no error should be returned, but %s was returned", err)
 		}
 		if len(warnings) != 1 {
-			t.Errorf("expected 1 warning to occur but %d occured", len(warnings))
+			t.Errorf("expected 1 warning to occur but %d occurred", len(warnings))
 		} else {
 			t.Logf("got warning %s correctly", warnings[0])
 		}
@@ -424,7 +424,7 @@ func TestCheckWarning(t *testing.T) {
 			t.Errorf("no error should be returned, but %s was returned", err)
 		}
 		if len(warnings) != 1 {
-			t.Errorf("expected 1 warning to occur but %d occured", len(warnings))
+			t.Errorf("expected 1 warning to occur but %d occurred", len(warnings))
 		} else {
 			t.Logf("got warnings %v correctly", warnings)
 		}
@@ -441,7 +441,7 @@ func TestCheckWarning(t *testing.T) {
 				t.Errorf("no error should be returned, but %s was returned", err)
 			}
 			if len(warnings) != 4 {
-				t.Errorf("expected 4 warning to occur but %d occured", len(warnings))
+				t.Errorf("expected 4 warning to occur but %d occurred", len(warnings))
 			} else {
 				t.Logf("got warnings %v correctly", warnings)
 			}

From 7d27f39953fb131b75088a9f34c4c069492ae2e0 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Mon, 5 Jun 2023 20:37:27 +0530
Subject: [PATCH 0802/1641] ensured hpa mem spec before cpu spec (#10043)

---
 .../ingress-nginx/templates/controller-hpa.yaml  | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-hpa.yaml b/charts/ingress-nginx/templates/controller-hpa.yaml
index 96a91f533..f212bc4f5 100644
--- a/charts/ingress-nginx/templates/controller-hpa.yaml
+++ b/charts/ingress-nginx/templates/controller-hpa.yaml
@@ -21,14 +21,6 @@ spec:
   minReplicas: {{ .Values.controller.autoscaling.minReplicas }}
   maxReplicas: {{ .Values.controller.autoscaling.maxReplicas }}
   metrics:
-  {{- with .Values.controller.autoscaling.targetCPUUtilizationPercentage }}
-  - type: Resource
-    resource:
-      name: cpu
-      target:
-        type: Utilization
-        averageUtilization: {{ . }}
-  {{- end }}
   {{- with .Values.controller.autoscaling.targetMemoryUtilizationPercentage }}
   - type: Resource
     resource:
@@ -37,6 +29,14 @@ spec:
         type: Utilization
         averageUtilization: {{ . }}
   {{- end }}
+  {{- with .Values.controller.autoscaling.targetCPUUtilizationPercentage }}
+  - type: Resource
+    resource:
+      name: cpu
+      target:
+        type: Utilization
+        averageUtilization: {{ . }}
+  {{- end }}
   {{- with .Values.controller.autoscalingTemplate }}
   {{- toYaml . | nindent 2 }}
   {{- end }}

From ba1a4fac998f14d1718d507492ceb3917c8abb99 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 5 Jun 2023 14:13:08 -0700
Subject: [PATCH 0803/1641] Bump github.com/stretchr/testify from 1.8.3 to
 1.8.4 (#10041)

Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.3 to 1.8.4.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.8.3...v1.8.4)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index e1f8cd8c6..1bdcdbc61 100644
--- a/go.mod
+++ b/go.mod
@@ -22,7 +22,7 @@ require (
 	github.com/prometheus/common v0.44.0
 	github.com/spf13/cobra v1.7.0
 	github.com/spf13/pflag v1.0.5
-	github.com/stretchr/testify v1.8.3
+	github.com/stretchr/testify v1.8.4
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.9.0
diff --git a/go.sum b/go.sum
index a867674d6..9e65d666f 100644
--- a/go.sum
+++ b/go.sum
@@ -355,8 +355,8 @@ github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81P
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.8.3 h1:RP3t2pwF7cMEbC1dqtB6poj3niw/9gnV4Cjg5oW5gtY=
-github.com/stretchr/testify v1.8.3/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
+github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
+github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
 github.com/xlab/treeprint v1.1.0 h1:G/1DjNkPpfZCFt9CSh6b5/nY4VimlbHF3Rh4obvtzDk=
 github.com/xlab/treeprint v1.1.0/go.mod h1:gj5Gd3gPdKtR1ikdDK6fnFLdmIS0X30kTTuNd/WEJu0=

From 712e10d4176da06e28a11eb6f9e2d7a263b887cb Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 5 Jun 2023 14:15:06 -0700
Subject: [PATCH 0804/1641] Bump actions/dependency-review-action from 3.0.4 to
 3.0.6 (#10042)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3.0.4 to 3.0.6.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/f46c48ed6d4f1227fb2d9ea62bf6bcbed315589e...1360a344ccb0ab6e9475edef90ad2f46bf8003b1)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index de9243f16..4f04bdaed 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@f46c48ed6d4f1227fb2d9ea62bf6bcbed315589e # v3.0.4
+        uses: actions/dependency-review-action@1360a344ccb0ab6e9475edef90ad2f46bf8003b1 # v3.0.6

From c3ea3b861e04db08a9edb67d25fc96502b32a657 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Wed, 7 Jun 2023 22:58:13 +0800
Subject: [PATCH 0805/1641] docs: Updated the content of deploy/rbac.md
 (#10054)

Due to Kubernetes having deprecated the use of configmap as a mechanism
for elections, we have migrated to a mechanism based on leases
resources. However, the documentation has not been updated, resulting in
inconsistencies.

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 docs/deploy/rbac.md | 19 +++++++++----------
 1 file changed, 9 insertions(+), 10 deletions(-)

diff --git a/docs/deploy/rbac.md b/docs/deploy/rbac.md
index 8c36d19a7..70af8ba92 100644
--- a/docs/deploy/rbac.md
+++ b/docs/deploy/rbac.md
@@ -29,39 +29,38 @@ namespace specific permissions defined by the `Role` named `ingress-nginx`.
 
 These permissions are granted in order for the ingress-nginx-controller to be
 able to function as an ingress across the cluster.  These permissions are
-granted to the ClusterRole named `ingress-nginx`
+granted to the `ClusterRole` named `ingress-nginx`
 
 * `configmaps`, `endpoints`, `nodes`, `pods`, `secrets`: list, watch
 * `nodes`: get
-* `services`, `ingresses`: get, list, watch
+* `services`, `ingresses`, `ingressclasses`, `endpointslices`: get, list, watch
 * `events`: create, patch
 * `ingresses/status`: update
+* `leases`: list, watch
 
 ### Namespace Permissions
 
 These permissions are granted specific to the ingress-nginx namespace.  These
-permissions are granted to the Role named `ingress-nginx`
+permissions are granted to the `Role` named `ingress-nginx`
 
 * `configmaps`, `pods`, `secrets`: get
 * `endpoints`: get
 
 Furthermore to support leader-election, the ingress-nginx-controller needs to
-have access to a `configmap` using the resourceName `ingress-controller-leader-nginx`
+have access to a `leases` using the resourceName `ingress-nginx-leader`
 
 > Note that resourceNames can NOT be used to limit requests using the “create”
 > verb because authorizers only have access to information that can be obtained
 > from the request URL, method, and headers (resource names in a “create” request
 > are part of the request body).
 
-* `configmaps`: get, update (for resourceName `ingress-controller-leader-nginx`)
-* `configmaps`: create
+* `leases`: get, update (for resourceName `ingress-controller-leader`)
+* `leases`: create
 
-This resourceName is the concatenation of the `election-id` and the
-`ingress-class` as defined by the ingress-controller, which defaults to:
+This resourceName is the `election-id` defined by the ingress-controller, which defaults to:
 
 * `election-id`: `ingress-controller-leader`
-* `ingress-class`: `nginx`
-* `resourceName` : `<election-id>-<ingress-class>`
+* `resourceName` : `<election-id>`
 
 Please adapt accordingly if you overwrite either parameter when launching the
 ingress-nginx-controller.

From 4c00085c173566519f0509cd8c1b0a4aa0f81aa0 Mon Sep 17 00:00:00 2001
From: Mitchell Mohorovich <mitchell@mohorovich.ca>
Date: Thu, 8 Jun 2023 11:52:14 -0400
Subject: [PATCH 0806/1641] fix broken kubernetes.io/user-guide/ docs links
 (#10055)

---
 charts/ingress-nginx/README.md   | 10 +++++-----
 charts/ingress-nginx/values.yaml | 10 +++++-----
 docs/index.md                    |  2 +-
 docs/troubleshooting.md          |  4 ++--
 4 files changed, 13 insertions(+), 13 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 4a00815fd..c6859d1ad 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -352,7 +352,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.metrics.prometheusRule.enabled | bool | `false` |  |
 | controller.metrics.prometheusRule.rules | list | `[]` |  |
 | controller.metrics.service.annotations | object | `{}` |  |
-| controller.metrics.service.externalIPs | list | `[]` | List of IP addresses at which the stats-exporter service is available # Ref: https://kubernetes.io/docs/user-guide/services/#external-ips # |
+| controller.metrics.service.externalIPs | list | `[]` | List of IP addresses at which the stats-exporter service is available # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips # |
 | controller.metrics.service.labels | object | `{}` | Labels to be added to the metrics service resource |
 | controller.metrics.service.loadBalancerSourceRanges | list | `[]` |  |
 | controller.metrics.service.servicePort | int | `10254` |  |
@@ -368,7 +368,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.minAvailable | int | `1` | Minimum available pods set in PodDisruptionBudget. Define either 'minAvailable' or 'maxUnavailable', never both. |
 | controller.minReadySeconds | int | `0` | `minReadySeconds` to avoid killing pods before we are ready # |
 | controller.name | string | `"controller"` |  |
-| controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment # Ref: https://kubernetes.io/docs/user-guide/node-selection/ # |
+| controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment # Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ # |
 | controller.opentelemetry.containerSecurityContext.allowPrivilegeEscalation | bool | `false` |  |
 | controller.opentelemetry.enabled | bool | `false` |  |
 | controller.opentelemetry.image | string | `"registry.k8s.io/ingress-nginx/opentelemetry:v20230527@sha256:fd7ec835f31b7b37187238eb4fdad4438806e69f413a203796263131f4f02ed0"` |  |
@@ -401,7 +401,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.service.enableHttps | bool | `true` |  |
 | controller.service.enabled | bool | `true` |  |
 | controller.service.external.enabled | bool | `true` |  |
-| controller.service.externalIPs | list | `[]` | List of IP addresses at which the controller services are available # Ref: https://kubernetes.io/docs/user-guide/services/#external-ips # |
+| controller.service.externalIPs | list | `[]` | List of IP addresses at which the controller services are available # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips # |
 | controller.service.internal.annotations | object | `{}` | Annotations are mandatory for the load balancer to come up. Varies with the cloud service. |
 | controller.service.internal.enabled | bool | `false` | Enables an additional internal load balancer (besides the external one). |
 | controller.service.internal.loadBalancerSourceRanges | list | `[]` | Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0. |
@@ -463,7 +463,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.minAvailable | int | `1` |  |
 | defaultBackend.minReadySeconds | int | `0` | `minReadySeconds` to avoid killing pods before we are ready # |
 | defaultBackend.name | string | `"defaultbackend"` |  |
-| defaultBackend.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for default backend pod assignment # Ref: https://kubernetes.io/docs/user-guide/node-selection/ # |
+| defaultBackend.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for default backend pod assignment # Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ # |
 | defaultBackend.podAnnotations | object | `{}` | Annotations to be added to default backend pods # |
 | defaultBackend.podLabels | object | `{}` | Labels to add to the pod container metadata |
 | defaultBackend.podSecurityContext | object | `{}` | Security Context policies for controller pods See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls # |
@@ -477,7 +477,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.replicaCount | int | `1` |  |
 | defaultBackend.resources | object | `{}` |  |
 | defaultBackend.service.annotations | object | `{}` |  |
-| defaultBackend.service.externalIPs | list | `[]` | List of IP addresses at which the default backend service is available # Ref: https://kubernetes.io/docs/user-guide/services/#external-ips # |
+| defaultBackend.service.externalIPs | list | `[]` | List of IP addresses at which the default backend service is available # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips # |
 | defaultBackend.service.loadBalancerSourceRanges | list | `[]` |  |
 | defaultBackend.service.servicePort | int | `80` |  |
 | defaultBackend.service.type | string | `"ClusterIP"` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 7ca41e79e..708469fab 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -257,7 +257,7 @@ controller:
   ##
   terminationGracePeriodSeconds: 300
   # -- Node labels for controller pod assignment
-  ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
+  ## Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/
   ##
   nodeSelector:
     kubernetes.io/os: linux
@@ -417,7 +417,7 @@ controller:
     # clusterIP: ""
 
     # -- List of IP addresses at which the controller services are available
-    ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+    ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips
     ##
     externalIPs: []
     # -- Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
@@ -652,7 +652,7 @@ controller:
       # clusterIP: ""
 
       # -- List of IP addresses at which the stats-exporter service is available
-      ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+      ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips
       ##
       externalIPs: []
       # loadBalancerIP: ""
@@ -810,7 +810,7 @@ defaultBackend:
   #  key: value
 
   # -- Node labels for default backend pod assignment
-  ## Ref: https://kubernetes.io/docs/user-guide/node-selection/
+  ## Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/
   ##
   nodeSelector:
     kubernetes.io/os: linux
@@ -849,7 +849,7 @@ defaultBackend:
     # clusterIP: ""
 
     # -- List of IP addresses at which the default backend service is available
-    ## Ref: https://kubernetes.io/docs/user-guide/services/#external-ips
+    ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips
     ##
     externalIPs: []
     # loadBalancerIP: ""
diff --git a/docs/index.md b/docs/index.md
index 0a0f488cf..bd6a825e1 100644
--- a/docs/index.md
+++ b/docs/index.md
@@ -4,7 +4,7 @@ This is the documentation for the Ingress NGINX Controller.
 
 It is built around the [Kubernetes Ingress resource](https://kubernetes.io/docs/concepts/services-networking/ingress/), using a [ConfigMap](https://kubernetes.io/docs/concepts/configuration/configmap/) to store the controller configuration.
 
-You can learn more about using [Ingress](http://kubernetes.io/docs/user-guide/ingress/) in the official [Kubernetes documentation](https://docs.k8s.io).
+You can learn more about using [Ingress](https://kubernetes.io/docs/concepts/services-networking/ingress/) in the official [Kubernetes documentation](https://docs.k8s.io).
 
 # Getting Started
 
diff --git a/docs/troubleshooting.md b/docs/troubleshooting.md
index 4b9820200..e1fd6956e 100644
--- a/docs/troubleshooting.md
+++ b/docs/troubleshooting.md
@@ -137,7 +137,7 @@ The Ingress controller needs information from apiserver. Therefore, authenticati
 * _Kubeconfig file:_ In some Kubernetes environments service accounts are not available. In this case a manual configuration is required. The Ingress controller binary can be started with the `--kubeconfig` flag. The value of the flag is a path to a file specifying how to connect to the API server. Using the `--kubeconfig` does not requires the flag `--apiserver-host`.
    The format of the file is identical to `~/.kube/config` which is used by kubectl to connect to the API server. See 'kubeconfig' section for details.
 
-* _Using the flag `--apiserver-host`:_ Using this flag `--apiserver-host=http://localhost:8080` it is possible to specify an unsecured API server or reach a remote kubernetes cluster using [kubectl proxy](https://kubernetes.io/docs/user-guide/kubectl/kubectl_proxy/).
+* _Using the flag `--apiserver-host`:_ Using this flag `--apiserver-host=http://localhost:8080` it is possible to specify an unsecured API server or reach a remote kubernetes cluster using [kubectl proxy](https://kubernetes.io/docs/reference/generated/kubectl/kubectl-commands#proxy).
    Please do not use this approach in production.
 
 In the diagram below you can see the full authentication flow with all options, starting with the browser
@@ -230,7 +230,7 @@ If it is not working, there are two possible reasons:
 
 More information:
 
-- [User Guide: Service Accounts](http://kubernetes.io/docs/user-guide/service-accounts/)
+- [User Guide: Service Accounts](https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/)
 - [Cluster Administrator Guide: Managing Service Accounts](http://kubernetes.io/docs/admin/service-accounts-admin/)
 
 ## Kube-Config

From 5bfc56618ed512d5a2c95bdbd5481b82c6853661 Mon Sep 17 00:00:00 2001
From: Chen Chen <imchench@gmail.com>
Date: Thu, 8 Jun 2023 23:54:13 +0800
Subject: [PATCH 0807/1641] Update Internal Load Balancer docs (#10062)

* Update internal load balancer doc

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix incorrect description

Signed-off-by: z1cheng <imchench@gmail.com>

* GenerateREADME.md using helm-docs

Signed-off-by: z1cheng <imchench@gmail.com>

* Regenerate the docs

Signed-off-by: z1cheng <imchench@gmail.com>

---------

Signed-off-by: z1cheng <imchench@gmail.com>
---
 charts/ingress-nginx/README.md        | 8 ++++++--
 charts/ingress-nginx/README.md.gotmpl | 8 ++++++--
 2 files changed, 12 insertions(+), 4 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index c6859d1ad..363970f60 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -143,8 +143,10 @@ controller:
     internal:
       enabled: true
       annotations:
-        # Create internal ELB
-        service.beta.kubernetes.io/aws-load-balancer-internal: "true"
+        # Create internal NLB
+        service.beta.kubernetes.io/aws-load-balancer-scheme: "internet-facing"
+        # Create internal ELB(Deprecated)
+        # service.beta.kubernetes.io/aws-load-balancer-internal: "true"
         # Any other annotation can be declared here.
 ```
 
@@ -187,6 +189,8 @@ controller:
         # Any other annotation can be declared here.
 ```
 
+The load balancer annotations of more cloud service providers can be found: [Internal load balancer](https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer).
+
 An use case for this scenario is having a split-view DNS setup where the public zone CNAME records point to the external balancer URL while the private zone CNAME records point to the internal balancer URL. This way, you only need one ingress kubernetes object.
 
 Optionally you can set `controller.service.loadBalancerIP` if you need a static IP for the resulting `LoadBalancer`.
diff --git a/charts/ingress-nginx/README.md.gotmpl b/charts/ingress-nginx/README.md.gotmpl
index 4a35a40b3..9b6f8c9c9 100644
--- a/charts/ingress-nginx/README.md.gotmpl
+++ b/charts/ingress-nginx/README.md.gotmpl
@@ -140,8 +140,10 @@ controller:
     internal:
       enabled: true
       annotations:
-        # Create internal ELB
-        service.beta.kubernetes.io/aws-load-balancer-internal: "true"
+        # Create internal NLB
+        service.beta.kubernetes.io/aws-load-balancer-scheme: "internet-facing"
+        # Create internal ELB(Deprecated)
+        # service.beta.kubernetes.io/aws-load-balancer-internal: "true"
         # Any other annotation can be declared here.
 ```
 
@@ -184,6 +186,8 @@ controller:
         # Any other annotation can be declared here.
 ```
 
+The load balancer annotations of more cloud service providers can be found: [Internal load balancer](https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer).
+
 An use case for this scenario is having a split-view DNS setup where the public zone CNAME records point to the external balancer URL while the private zone CNAME records point to the internal balancer URL. This way, you only need one ingress kubernetes object.
 
 Optionally you can set `controller.service.loadBalancerIP` if you need a static IP for the resulting `LoadBalancer`.

From adbad99a71234f1f570133c36c1961c7dd383e94 Mon Sep 17 00:00:00 2001
From: Brendan Kamp <brendankamp757@gmail.com>
Date: Fri, 9 Jun 2023 13:58:15 +0200
Subject: [PATCH 0808/1641] docs: canary weighted deployments example (#10067)

Signed-off-by: Spazzy <brendankamp757@gmail.com>
---
 docs/examples/canary/README.md | 231 +++++++++++++++++++++++++++++++++
 docs/examples/index.md         |   1 +
 2 files changed, 232 insertions(+)
 create mode 100644 docs/examples/canary/README.md

diff --git a/docs/examples/canary/README.md b/docs/examples/canary/README.md
new file mode 100644
index 000000000..4124faf6f
--- /dev/null
+++ b/docs/examples/canary/README.md
@@ -0,0 +1,231 @@
+# Canary
+
+Ingress Nginx Has the ability to handle canary routing by setting specific
+annotations, the following is an example of how to configure a canary
+deployment with weighted canary routing.
+
+## Create your main deployment and service
+
+This is the main deployment of your application with the service that will be
+used to route to it
+
+```bash
+echo "
+---
+# Deployment
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: production
+  labels:
+    app: production
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: production
+  template:
+    metadata:
+      labels:
+        app: production
+    spec:
+      containers:
+      - name: production
+        image: registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:6fc5aa2994c86575975bb20a5203651207029a0d28e3f491d8a127d08baadab4
+        ports:
+        - containerPort: 80
+        env:
+          - name: NODE_NAME
+            valueFrom:
+              fieldRef:
+                fieldPath: spec.nodeName
+          - name: POD_NAME
+            valueFrom:
+              fieldRef:
+                fieldPath: metadata.name
+          - name: POD_NAMESPACE
+            valueFrom:
+              fieldRef:
+                fieldPath: metadata.namespace
+          - name: POD_IP
+            valueFrom:
+              fieldRef:
+                fieldPath: status.podIP
+---
+# Service
+apiVersion: v1
+kind: Service
+metadata:
+  name: production
+  labels:
+    app: production
+spec:
+  ports:
+  - port: 80
+    targetPort: 80
+    protocol: TCP
+    name: http
+  selector:
+    app: production
+" | kubectl apply -f -
+```
+
+## Create the canary deployment and service
+
+This is the canary deployment that will take a weighted amount of requests
+instead of the main deployment
+
+```bash
+echo "
+---
+# Deployment
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: canary
+  labels:
+    app: canary
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: canary
+  template:
+    metadata:
+      labels:
+        app: canary
+    spec:
+      containers:
+      - name: canary
+        image: registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:6fc5aa2994c86575975bb20a5203651207029a0d28e3f491d8a127d08baadab4
+        ports:
+        - containerPort: 80
+        env:
+          - name: NODE_NAME
+            valueFrom:
+              fieldRef:
+                fieldPath: spec.nodeName
+          - name: POD_NAME
+            valueFrom:
+              fieldRef:
+                fieldPath: metadata.name
+          - name: POD_NAMESPACE
+            valueFrom:
+              fieldRef:
+                fieldPath: metadata.namespace
+          - name: POD_IP
+            valueFrom:
+              fieldRef:
+                fieldPath: status.podIP
+---
+# Service
+apiVersion: v1
+kind: Service
+metadata:
+  name: canary
+  labels:
+    app: canary
+spec:
+  ports:
+  - port: 80
+    targetPort: 80
+    protocol: TCP
+    name: http
+  selector:
+    app: canary
+" | kubectl apply -f -
+```
+
+## Create Ingress Pointing To Your Main Deployment
+
+Next you will need to expose your main deployment with an ingress resource,
+note there are no canary specific annotations on this ingress
+
+```bash
+echo "
+---
+# Ingress
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: production
+  annotations:
+spec:
+  ingressClassName: nginx
+  rules:
+  - host: echo.prod.mydomain.com
+    http:
+      paths:
+      - pathType: Prefix
+        path: /
+        backend:
+          service:
+            name: production
+            port:
+              number: 80
+" | kubectl apply -f -
+```
+
+## Create Ingress Pointing To Your Canary Deployment
+
+You will then create an Ingress that has the canary specific configuration,
+please pay special notice of the following:
+
+- The host name is identical to the main ingress host name
+- The `nginx.ingress.kubernetes.io/canary: "true"` annotation is required and
+  defines this as a canary annotation (if you do not have this the Ingresses
+  will clash)
+- The `nginx.ingress.kubernetes.io/canary-weight: "50"` annotation dictates the
+  weight of the routing, in this case there is a "50%" chance a request will
+  hit the canary deployment over the main deployment
+```bash
+echo "
+---
+# Ingress
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: canary
+  annotations:
+    nginx.ingress.kubernetes.io/canary: \"true\"
+    nginx.ingress.kubernetes.io/canary-weight: \"50\"
+spec:
+  ingressClassName: nginx
+  rules:
+  - host: echo.prod.mydomain.com
+    http:
+      paths:
+      - pathType: Prefix
+        path: /
+        backend:
+          service:
+            name: canary
+            port:
+              number: 80
+" | kubectl apply -f -
+```
+
+## Testing your setup
+
+You can use the following command to test your setup (replacing
+INGRESS_CONTROLLER_IP with your ingresse controllers IP Address)
+
+```bash
+for i in $(seq 1 10); do curl -s --resolve echo.prod.mydomain.com:80:$INGRESS_CONTROLLER_IP echo.prod.mydomain.com  | grep "Hostname"; done
+```
+
+You will get the following output showing that your canary setup is working as
+expected:
+
+```bash
+Hostname: production-5c5f65d859-phqzc
+Hostname: canary-6697778457-zkfjf
+Hostname: canary-6697778457-zkfjf
+Hostname: production-5c5f65d859-phqzc
+Hostname: canary-6697778457-zkfjf
+Hostname: production-5c5f65d859-phqzc
+Hostname: production-5c5f65d859-phqzc
+Hostname: production-5c5f65d859-phqzc
+Hostname: canary-6697778457-zkfjf
+Hostname: production-5c5f65d859-phqzc
+```
diff --git a/docs/examples/index.md b/docs/examples/index.md
index 8a5fd5f51..3af4266ff 100644
--- a/docs/examples/index.md
+++ b/docs/examples/index.md
@@ -23,6 +23,7 @@ Customization | [External authentication with response header propagation](custo
 Customization | [Sysctl tuning](customization/sysctl/README.md) | TODO | TODO
 Features | [Rewrite](rewrite/README.md) | TODO | TODO
 Features | [Session stickiness](affinity/cookie/README.md) | route requests consistently to the same endpoint | Advanced
+Features | [Canary Deployments](canary/README.md) | weigthed canary routing to a seperate deployment | Intermediate
 Scaling | [Static IP](static-ip/README.md) | a single ingress gets a single static IP |  Intermediate
 TLS | [Multi TLS certificate termination](multi-tls/README.md) | TODO | TODO
 TLS | [TLS termination](tls-termination/README.md) | TODO | TODO

From 388987c4e7500478ce76ff0c845d43256b603a00 Mon Sep 17 00:00:00 2001
From: Brendan Kamp <brendankamp757@gmail.com>
Date: Sun, 11 Jun 2023 20:39:47 +0200
Subject: [PATCH 0809/1641] docs: add lua testing documentation (#10060)

Signed-off-by: Spazzy <brendankamp757@gmail.com>
---
 docs/lua_tests.md | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 docs/lua_tests.md

diff --git a/docs/lua_tests.md b/docs/lua_tests.md
new file mode 100644
index 000000000..4d3d1fe70
--- /dev/null
+++ b/docs/lua_tests.md
@@ -0,0 +1,19 @@
+# Lua Tests
+
+## Running the Lua Tests
+
+To run the Lua tests you can run the following from the root directory:
+
+```bash
+make lua-test
+```
+
+This command makes use of docker hence does not need any dependency
+installations besides docker
+
+## Where are the Lua Tests?
+
+Lua Tests can be found in the [rootfs/etc/nginx/lua/test](../rootfs/etc/nginx/lua/test) directory
+
+
+[1]: https://openresty.org/en/installation.html

From dd4a703637f723c34081cd67d51dc5451a3a7771 Mon Sep 17 00:00:00 2001
From: Brendan Kamp <brendankamp757@gmail.com>
Date: Sun, 11 Jun 2023 20:41:46 +0200
Subject: [PATCH 0810/1641] fix: add canary to sidebar in examples (#10068)

Signed-off-by: Spazzy <brendankamp757@gmail.com>
---
 mkdocs.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/mkdocs.yml b/mkdocs.yml
index 992c04d45..3243f8247 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -127,6 +127,7 @@ nav:
       - TLS termination: "examples/tls-termination/README.md"
       - Pod Security Policy (PSP): "examples/psp/README.md"
       - Open Policy Agent rules: "examples/openpolicyagent/README.md"
+      - Canary Deployments: "examples/canary/README.md"
   - Developer Guide:
       - Getting Started: "developer-guide/getting-started.md"
       - Code Overview: "developer-guide/code-overview.md"

From 05e5956545afa74ce332791075db14ac7ffa54ff Mon Sep 17 00:00:00 2001
From: David Goffredo <david.goffredo@datadoghq.com>
Date: Sun, 11 Jun 2023 14:45:47 -0400
Subject: [PATCH 0811/1641] tracing: upgrade to dd-opentracing-cpp v1.3.7
 (#10031)

---
 images/nginx/rootfs/build.sh | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 44c7b20f8..e2a5fd8c6 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -53,8 +53,8 @@ export JAEGER_VERSION=0.7.0
 # Check for recent changes: https://github.com/msgpack/msgpack-c/compare/cpp-3.3.0...master
 export MSGPACK_VERSION=3.3.0
 
-# Check for recent changes: https://github.com/DataDog/dd-opentracing-cpp/compare/v1.3.2...master
-export DATADOG_CPP_VERSION=1.3.2
+# Check for recent changes: https://github.com/DataDog/dd-opentracing-cpp/compare/v1.3.7...master
+export DATADOG_CPP_VERSION=1.3.7
 
 # Check for recent changes: https://github.com/SpiderLabs/ModSecurity-nginx/compare/v1.0.3...master
 export MODSECURITY_VERSION=1.0.3
@@ -265,7 +265,7 @@ get_src d3f2c870f8f88477b01726b32accab30f6e5d57ae59c5ec87374ff73d0794316 \
         "https://github.com/openresty/luajit2/archive/v$LUAJIT_VERSION.tar.gz"
 fi
 
-get_src 586f92166018cc27080d34e17c59d68219b85af745edf3cc9fe41403fc9b4ac6 \
+get_src 8d39c6b23f941a2d11571daaccc04e69539a3fcbcc50a631837560d5861a7b96 \
         "https://github.com/DataDog/dd-opentracing-cpp/archive/v$DATADOG_CPP_VERSION.tar.gz"
 
 get_src 4c1933434572226942c65b2f2b26c8a536ab76aa771a3c7f6c2629faa764976b \

From 114ae77fb7ca30cb97326f41a18a1cb75ecc5665 Mon Sep 17 00:00:00 2001
From: guangwu <guoguangwu@magic-shield.com>
Date: Mon, 12 Jun 2023 02:49:47 +0800
Subject: [PATCH 0812/1641] chore: pkg imported more than once (#10048)

---
 .../ingress/controller/controller_test.go     | 31 +++++++++----------
 internal/ingress/controller/store/store.go    |  3 +-
 internal/net/ssl/ssl_test.go                  |  5 ++-
 test/e2e/annotations/grpc.go                  |  7 ++---
 test/e2e/framework/framework.go               | 14 ++++-----
 5 files changed, 27 insertions(+), 33 deletions(-)

diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index 41ce9de87..355f5da95 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -33,7 +33,7 @@ import (
 
 	"github.com/eapache/channels"
 	corev1 "k8s.io/api/core/v1"
-	v1 "k8s.io/api/core/v1"
+
 	discoveryv1 "k8s.io/api/discovery/v1"
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
@@ -48,7 +48,6 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/proxyssl"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/sessionaffinity"
-	"k8s.io/ingress-nginx/internal/ingress/controller/config"
 	ngx_config "k8s.io/ingress-nginx/internal/ingress/controller/config"
 	"k8s.io/ingress-nginx/internal/ingress/controller/ingressclass"
 	"k8s.io/ingress-nginx/internal/ingress/controller/store"
@@ -146,7 +145,7 @@ func (ntc testNginxTestCommand) Test(cfg string) ([]byte, error) {
 
 type fakeTemplate struct{}
 
-func (fakeTemplate) Write(conf config.TemplateConfig) ([]byte, error) {
+func (fakeTemplate) Write(conf ngx_config.TemplateConfig) ([]byte, error) {
 	r := []byte{}
 	for _, s := range conf.Servers {
 		if len(r) > 0 {
@@ -1529,7 +1528,7 @@ func TestGetBackendServers(t *testing.T) {
 	testCases := []struct {
 		Ingresses    []*ingress.Ingress
 		Validate     func(ingresses []*ingress.Ingress, upstreams []*ingress.Backend, servers []*ingress.Server)
-		SetConfigMap func(namespace string) *v1.ConfigMap
+		SetConfigMap func(namespace string) *corev1.ConfigMap
 	}{
 		{
 			Ingresses: []*ingress.Ingress{
@@ -2299,8 +2298,8 @@ func TestGetBackendServers(t *testing.T) {
 					t.Errorf("location cafilename should be '%s', got '%s'", ingresses[1].ParsedAnnotations.ProxySSL.CAFileName, s.Locations[0].ProxySSL.CAFileName)
 				}
 			},
-			SetConfigMap: func(ns string) *v1.ConfigMap {
-				return &v1.ConfigMap{
+			SetConfigMap: func(ns string) *corev1.ConfigMap {
+				return &corev1.ConfigMap{
 					ObjectMeta: metav1.ObjectMeta{
 						Name:     "config",
 						SelfLink: fmt.Sprintf("/api/v1/namespaces/%s/configmaps/config", ns),
@@ -2360,8 +2359,8 @@ func TestGetBackendServers(t *testing.T) {
 					t.Errorf("backend should be upstream-default-backend, got '%s'", s.Locations[0].Backend)
 				}
 			},
-			SetConfigMap: func(ns string) *v1.ConfigMap {
-				return &v1.ConfigMap{
+			SetConfigMap: func(ns string) *corev1.ConfigMap {
+				return &corev1.ConfigMap{
 					ObjectMeta: metav1.ObjectMeta{
 						Name:     "config",
 						SelfLink: fmt.Sprintf("/api/v1/namespaces/%s/configmaps/config", ns),
@@ -2438,8 +2437,8 @@ func TestGetBackendServers(t *testing.T) {
 				}
 
 			},
-			SetConfigMap: func(ns string) *v1.ConfigMap {
-				return &v1.ConfigMap{
+			SetConfigMap: func(ns string) *corev1.ConfigMap {
+				return &corev1.ConfigMap{
 					ObjectMeta: metav1.ObjectMeta{
 						Name:     "config",
 						SelfLink: fmt.Sprintf("/api/v1/namespaces/%s/configmaps/config", ns),
@@ -2459,8 +2458,8 @@ func TestGetBackendServers(t *testing.T) {
 	}
 }
 
-func testConfigMap(ns string) *v1.ConfigMap {
-	return &v1.ConfigMap{
+func testConfigMap(ns string) *corev1.ConfigMap {
+	return &corev1.ConfigMap{
 		ObjectMeta: metav1.ObjectMeta{
 			Name:     "config",
 			SelfLink: fmt.Sprintf("/api/v1/namespaces/%s/configmaps/config", ns),
@@ -2469,11 +2468,11 @@ func testConfigMap(ns string) *v1.ConfigMap {
 }
 
 func newNGINXController(t *testing.T) *NGINXController {
-	ns := v1.NamespaceDefault
+	ns := corev1.NamespaceDefault
 
 	clientSet := fake.NewSimpleClientset()
 
-	configMap := &v1.ConfigMap{
+	configMap := &corev1.ConfigMap{
 		ObjectMeta: metav1.ObjectMeta{
 			Name:     "config",
 			SelfLink: fmt.Sprintf("/api/v1/namespaces/%s/configmaps/config", ns),
@@ -2540,8 +2539,8 @@ func fakeX509Cert(dnsNames []string) *x509.Certificate {
 	}
 }
 
-func newDynamicNginxController(t *testing.T, setConfigMap func(string) *v1.ConfigMap) *NGINXController {
-	ns := v1.NamespaceDefault
+func newDynamicNginxController(t *testing.T, setConfigMap func(string) *corev1.ConfigMap) *NGINXController {
+	ns := corev1.NamespaceDefault
 
 	clientSet := fake.NewSimpleClientset()
 	configMap := setConfigMap(ns)
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 7157332c3..78fab62dc 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -36,7 +36,6 @@ import (
 	"k8s.io/apimachinery/pkg/labels"
 	k8sruntime "k8s.io/apimachinery/pkg/runtime"
 	"k8s.io/apimachinery/pkg/util/runtime"
-	utilruntime "k8s.io/apimachinery/pkg/util/runtime"
 	"k8s.io/client-go/informers"
 	clientset "k8s.io/client-go/kubernetes"
 	"k8s.io/client-go/kubernetes/scheme"
@@ -1138,7 +1137,7 @@ func (s *k8sStore) Run(stopCh chan struct{}) {
 var runtimeScheme = k8sruntime.NewScheme()
 
 func init() {
-	utilruntime.Must(networkingv1.AddToScheme(runtimeScheme))
+	runtime.Must(networkingv1.AddToScheme(runtimeScheme))
 }
 
 func toIngress(obj interface{}) (*networkingv1.Ingress, bool) {
diff --git a/internal/net/ssl/ssl_test.go b/internal/net/ssl/ssl_test.go
index e251d01d1..9d1aedf16 100644
--- a/internal/net/ssl/ssl_test.go
+++ b/internal/net/ssl/ssl_test.go
@@ -20,7 +20,6 @@ import (
 	"bytes"
 	"crypto"
 	"crypto/rand"
-	cryptorand "crypto/rand"
 	"crypto/rsa"
 	"crypto/tls"
 	"crypto/x509"
@@ -336,7 +335,7 @@ const (
 
 // newPrivateKey creates an RSA private key
 func newPrivateKey() (*rsa.PrivateKey, error) {
-	return rsa.GenerateKey(cryptorand.Reader, rsaKeySize)
+	return rsa.GenerateKey(rand.Reader, rsaKeySize)
 }
 
 // newSignedCert creates a signed certificate using the given CA certificate and key
@@ -365,7 +364,7 @@ func newSignedCert(cfg certutil.Config, key crypto.Signer, caCert *x509.Certific
 		KeyUsage:     x509.KeyUsageKeyEncipherment | x509.KeyUsageDigitalSignature,
 		ExtKeyUsage:  cfg.Usages,
 	}
-	certDERBytes, err := x509.CreateCertificate(cryptorand.Reader, &certTmpl, caCert, key.Public(), caKey)
+	certDERBytes, err := x509.CreateCertificate(rand.Reader, &certTmpl, caCert, key.Public(), caKey)
 	if err != nil {
 		return nil, err
 	}
diff --git a/test/e2e/annotations/grpc.go b/test/e2e/annotations/grpc.go
index 046191b21..2bdac553b 100644
--- a/test/e2e/annotations/grpc.go
+++ b/test/e2e/annotations/grpc.go
@@ -29,7 +29,6 @@ import (
 	"google.golang.org/grpc"
 	"google.golang.org/grpc/credentials"
 	"google.golang.org/grpc/metadata"
-	core "k8s.io/api/core/v1"
 	corev1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/util/intstr"
@@ -70,7 +69,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 
 		host := "echo"
 
-		svc := &core.Service{
+		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
 				Name:      "grpcbin-test",
 				Namespace: f.Namespace,
@@ -129,7 +128,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 
 		host := "echo"
 
-		svc := &core.Service{
+		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
 				Name:      "grpcbin-test",
 				Namespace: f.Namespace,
@@ -201,7 +200,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 
 		host := "echo"
 
-		svc := &core.Service{
+		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
 				Name:      "grpcbin-test",
 				Namespace: f.Namespace,
diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index cac6dfd20..7ed3da3e0 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -27,7 +27,6 @@ import (
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
-	corev1 "k8s.io/api/core/v1"
 	v1 "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	apiextcs "k8s.io/apiextensions-apiserver/pkg/client/clientset/clientset"
@@ -38,7 +37,6 @@ import (
 	"k8s.io/client-go/kubernetes"
 	"k8s.io/client-go/kubernetes/scheme"
 	"k8s.io/client-go/rest"
-	restclient "k8s.io/client-go/rest"
 	"k8s.io/klog/v2"
 )
 
@@ -62,13 +60,13 @@ type Framework struct {
 
 	// A Kubernetes and Service Catalog client
 	KubeClientSet          kubernetes.Interface
-	KubeConfig             *restclient.Config
+	KubeConfig             *rest.Config
 	APIExtensionsClientSet apiextcs.Interface
 
 	Namespace    string
 	IngressClass string
 
-	pod *corev1.Pod
+	pod *v1.Pod
 }
 
 // NewDefaultFramework makes a new framework and sets up a BeforeEach/AfterEach for
@@ -233,7 +231,7 @@ func (f *Framework) GetURL(scheme RequestScheme) string {
 }
 
 // GetIngressNGINXPod returns the ingress controller running pod
-func (f *Framework) GetIngressNGINXPod() *corev1.Pod {
+func (f *Framework) GetIngressNGINXPod() *v1.Pod {
 	return f.pod
 }
 
@@ -413,13 +411,13 @@ func (f *Framework) WaitForReload(fn func()) {
 	assert.Nil(ginkgo.GinkgoT(), err, "while waiting for ingress controller reload")
 }
 
-func getReloadCount(pod *corev1.Pod, namespace string, client kubernetes.Interface) int {
+func getReloadCount(pod *v1.Pod, namespace string, client kubernetes.Interface) int {
 	events, err := client.CoreV1().Events(namespace).Search(scheme.Scheme, pod)
 	assert.Nil(ginkgo.GinkgoT(), err, "obtaining NGINX Pod")
 
 	reloadCount := 0
 	for _, e := range events.Items {
-		if e.Reason == "RELOAD" && e.Type == corev1.EventTypeNormal {
+		if e.Reason == "RELOAD" && e.Type == v1.EventTypeNormal {
 			reloadCount++
 		}
 	}
@@ -793,7 +791,7 @@ func Sleep(duration ...time.Duration) {
 	time.Sleep(sleepFor)
 }
 
-func loadConfig() (*restclient.Config, error) {
+func loadConfig() (*rest.Config, error) {
 	config, err := rest.InClusterConfig()
 	if err != nil {
 		return nil, err

From 7043f6ae296ef85bbb4066d5e33e72b5e15dc970 Mon Sep 17 00:00:00 2001
From: guangwu <guoguangwu@magic-shield.com>
Date: Mon, 12 Jun 2023 02:49:54 +0800
Subject: [PATCH 0813/1641] unnecessary use of fmt.Sprint (S1039) (#10049)

---
 internal/ingress/controller/checker_test.go   |  2 +-
 test/e2e/annotations/connection.go            |  3 +-
 test/e2e/framework/framework.go               |  4 +-
 test/e2e/settings/enable_real_ip.go           | 30 +++++++-------
 test/e2e/settings/forwarded_headers.go        | 39 +++++++++----------
 test/e2e/settings/keep-alive.go               |  5 +--
 test/e2e/settings/listen_nondefault_ports.go  |  4 +-
 .../e2e/settings/no_tls_redirect_locations.go |  5 +--
 test/e2e/settings/proxy_host.go               |  2 +-
 test/e2e/settings/proxy_protocol.go           | 20 +++++-----
 test/e2e/settings/tls.go                      |  6 +--
 11 files changed, 58 insertions(+), 62 deletions(-)

diff --git a/internal/ingress/controller/checker_test.go b/internal/ingress/controller/checker_test.go
index a0d2baafa..bea1c9cd0 100644
--- a/internal/ingress/controller/checker_test.go
+++ b/internal/ingress/controller/checker_test.go
@@ -109,7 +109,7 @@ func TestNginxCheck(t *testing.T) {
 			})
 
 			// pollute pid file
-			pidFile.Write([]byte(fmt.Sprint("999999")))
+			pidFile.Write([]byte("999999"))
 			pidFile.Close()
 
 			t.Run("bad pid", func(t *testing.T) {
diff --git a/test/e2e/annotations/connection.go b/test/e2e/annotations/connection.go
index 9cfcbacd0..428d85876 100644
--- a/test/e2e/annotations/connection.go
+++ b/test/e2e/annotations/connection.go
@@ -17,7 +17,6 @@ limitations under the License.
 package annotations
 
 import (
-	"fmt"
 	"net/http"
 	"strings"
 
@@ -52,6 +51,6 @@ var _ = framework.DescribeAnnotation("connection-proxy-header", func() {
 			WithHeader("Host", host).
 			Expect().
 			Status(http.StatusOK).
-			Body().Contains(fmt.Sprintf("connection=keep-alive"))
+			Body().Contains("connection=keep-alive")
 	})
 })
diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index 7ed3da3e0..a3d5ea760 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -160,7 +160,7 @@ func (f *Framework) AfterEach() {
 		return
 	}
 
-	cmd := fmt.Sprintf("cat /etc/nginx/nginx.conf")
+	cmd := "cat /etc/nginx/nginx.conf"
 	o, err := f.ExecCommand(f.pod, cmd)
 	if err != nil {
 		Logf("Unexpected error obtaining nginx.conf file: %v", err)
@@ -277,7 +277,7 @@ func (f *Framework) matchNginxConditions(name string, matcher func(cfg string) b
 	return func() (bool, error) {
 		var cmd string
 		if name == "" {
-			cmd = fmt.Sprintf("cat /etc/nginx/nginx.conf")
+			cmd = "cat /etc/nginx/nginx.conf"
 		} else {
 			cmd = fmt.Sprintf("cat /etc/nginx/nginx.conf | awk '/## start server %v/,/## end server %v/'", name, name)
 		}
diff --git a/test/e2e/settings/enable_real_ip.go b/test/e2e/settings/enable_real_ip.go
index 9be2e52d9..778011b9f 100644
--- a/test/e2e/settings/enable_real_ip.go
+++ b/test/e2e/settings/enable_real_ip.go
@@ -64,15 +64,15 @@ var _ = framework.DescribeSetting("enable-real-ip", func() {
 			Body().
 			Raw()
 
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=myhost"))
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-host=myhost"))
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-proto=myproto"))
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-port=1234"))
+		assert.NotContains(ginkgo.GinkgoT(), body, "host=myhost")
+		assert.NotContains(ginkgo.GinkgoT(), body, "x-forwarded-host=myhost")
+		assert.NotContains(ginkgo.GinkgoT(), body, "x-forwarded-proto=myproto")
+		assert.NotContains(ginkgo.GinkgoT(), body, "x-forwarded-port=1234")
 		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=%s", host))
 		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-host=%s", host))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-proto=http"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-port=80"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-for=1.2.3.4"))
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-proto=http")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-port=80")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-for=1.2.3.4")
 	})
 
 	ginkgo.It("should not trust X-Forwarded-For header when setting is false", func() {
@@ -101,13 +101,13 @@ var _ = framework.DescribeSetting("enable-real-ip", func() {
 			Raw()
 
 		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=%s", host))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-port=80"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-proto=http"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-original-forwarded-for=1.2.3.4"))
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=myhost"))
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-host=myhost"))
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-proto=myproto"))
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-port=1234"))
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-for=1.2.3.4"))
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-port=80")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-proto=http")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-original-forwarded-for=1.2.3.4")
+		assert.NotContains(ginkgo.GinkgoT(), body, "host=myhost")
+		assert.NotContains(ginkgo.GinkgoT(), body, "x-forwarded-host=myhost")
+		assert.NotContains(ginkgo.GinkgoT(), body, "x-forwarded-proto=myproto")
+		assert.NotContains(ginkgo.GinkgoT(), body, "x-forwarded-port=1234")
+		assert.NotContains(ginkgo.GinkgoT(), body, "x-forwarded-for=1.2.3.4")
 	})
 })
diff --git a/test/e2e/settings/forwarded_headers.go b/test/e2e/settings/forwarded_headers.go
index b929e683b..d4ffee545 100644
--- a/test/e2e/settings/forwarded_headers.go
+++ b/test/e2e/settings/forwarded_headers.go
@@ -17,7 +17,6 @@ limitations under the License.
 package settings
 
 import (
-	"fmt"
 	"net/http"
 	"strings"
 
@@ -65,12 +64,12 @@ var _ = framework.DescribeSetting("use-forwarded-headers", func() {
 			Body().
 			Raw()
 
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=myhost"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-host=myhost"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-proto=myproto"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-scheme=myproto"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-port=1234"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-for=1.2.3.4"))
+		assert.Contains(ginkgo.GinkgoT(), body, "host=myhost")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-host=myhost")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-proto=myproto")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-scheme=myproto")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-port=1234")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-for=1.2.3.4")
 
 		ginkgo.By("ensuring that first entry in X-Forwarded-Host is used as the best host")
 		body = f.HTTPTestClient().
@@ -85,8 +84,8 @@ var _ = framework.DescribeSetting("use-forwarded-headers", func() {
 			Body().
 			Raw()
 
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=myhost.com"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-host=myhost.com"))
+		assert.Contains(ginkgo.GinkgoT(), body, "host=myhost.com")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-host=myhost.com")
 	})
 
 	ginkgo.It("should not trust X-Forwarded headers when setting is false", func() {
@@ -115,16 +114,16 @@ var _ = framework.DescribeSetting("use-forwarded-headers", func() {
 			Body().
 			Raw()
 
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=forwarded-headers"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-port=80"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-proto=http"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-scheme=http"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-original-forwarded-for=1.2.3.4"))
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=myhost"))
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-host=myhost"))
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-proto=myproto"))
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-scheme=myproto"))
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-port=1234"))
-		assert.NotContains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-for=1.2.3.4"))
+		assert.Contains(ginkgo.GinkgoT(), body, "host=forwarded-headers")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-port=80")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-proto=http")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-scheme=http")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-original-forwarded-for=1.2.3.4")
+		assert.NotContains(ginkgo.GinkgoT(), body, "host=myhost")
+		assert.NotContains(ginkgo.GinkgoT(), body, "x-forwarded-host=myhost")
+		assert.NotContains(ginkgo.GinkgoT(), body, "x-forwarded-proto=myproto")
+		assert.NotContains(ginkgo.GinkgoT(), body, "x-forwarded-scheme=myproto")
+		assert.NotContains(ginkgo.GinkgoT(), body, "x-forwarded-port=1234")
+		assert.NotContains(ginkgo.GinkgoT(), body, "x-forwarded-for=1.2.3.4")
 	})
 })
diff --git a/test/e2e/settings/keep-alive.go b/test/e2e/settings/keep-alive.go
index 510a90125..d139f61c0 100644
--- a/test/e2e/settings/keep-alive.go
+++ b/test/e2e/settings/keep-alive.go
@@ -17,7 +17,6 @@ limitations under the License.
 package settings
 
 import (
-	"fmt"
 	"regexp"
 	"strings"
 
@@ -41,7 +40,7 @@ var _ = framework.DescribeSetting("keep-alive keep-alive-requests", func() {
 			f.UpdateNginxConfigMapData("keep-alive", "140")
 
 			f.WaitForNginxConfiguration(func(server string) bool {
-				return strings.Contains(server, fmt.Sprintf(`keepalive_timeout 140s;`))
+				return strings.Contains(server, `keepalive_timeout 140s;`)
 			})
 		})
 
@@ -49,7 +48,7 @@ var _ = framework.DescribeSetting("keep-alive keep-alive-requests", func() {
 			f.UpdateNginxConfigMapData("keep-alive-requests", "200")
 
 			f.WaitForNginxConfiguration(func(server string) bool {
-				return strings.Contains(server, fmt.Sprintf(`keepalive_requests 200;`))
+				return strings.Contains(server, `keepalive_requests 200;`)
 			})
 
 		})
diff --git a/test/e2e/settings/listen_nondefault_ports.go b/test/e2e/settings/listen_nondefault_ports.go
index 8b5d22f6e..e682cef06 100644
--- a/test/e2e/settings/listen_nondefault_ports.go
+++ b/test/e2e/settings/listen_nondefault_ports.go
@@ -92,7 +92,7 @@ var _ = framework.IngressNginxDescribe("[Flag] custom HTTP and HTTPS ports", fun
 				Expect().
 				Status(http.StatusOK).
 				Body().
-				Contains(fmt.Sprintf("x-forwarded-port=443"))
+				Contains("x-forwarded-port=443")
 		})
 
 		ginkgo.Context("when external authentication is configured", func() {
@@ -141,7 +141,7 @@ var _ = framework.IngressNginxDescribe("[Flag] custom HTTP and HTTPS ports", fun
 					Expect().
 					Status(http.StatusOK).
 					Body().
-					Contains(fmt.Sprintf("x-forwarded-port=443"))
+					Contains("x-forwarded-port=443")
 			})
 		})
 	})
diff --git a/test/e2e/settings/no_tls_redirect_locations.go b/test/e2e/settings/no_tls_redirect_locations.go
index 2fca545ff..332d764d6 100644
--- a/test/e2e/settings/no_tls_redirect_locations.go
+++ b/test/e2e/settings/no_tls_redirect_locations.go
@@ -17,7 +17,6 @@ limitations under the License.
 package settings
 
 import (
-	"fmt"
 	"strings"
 
 	"github.com/onsi/ginkgo/v2"
@@ -34,7 +33,7 @@ var _ = framework.DescribeSetting("Add no tls redirect locations", func() {
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxConfiguration(func(server string) bool {
-			return !strings.Contains(server, fmt.Sprintf("force_no_ssl_redirect = true,"))
+			return !strings.Contains(server, "force_no_ssl_redirect = true,")
 		})
 
 		wlKey := "no-tls-redirect-locations"
@@ -43,7 +42,7 @@ var _ = framework.DescribeSetting("Add no tls redirect locations", func() {
 		f.UpdateNginxConfigMapData(wlKey, wlValue)
 
 		f.WaitForNginxConfiguration(func(server string) bool {
-			return strings.Contains(server, fmt.Sprintf("force_no_ssl_redirect = true,"))
+			return strings.Contains(server, "force_no_ssl_redirect = true,")
 		})
 
 	})
diff --git a/test/e2e/settings/proxy_host.go b/test/e2e/settings/proxy_host.go
index 8f564414a..efc254e45 100644
--- a/test/e2e/settings/proxy_host.go
+++ b/test/e2e/settings/proxy_host.go
@@ -66,7 +66,7 @@ var _ = framework.IngressNginxDescribe("Dynamic $proxy_host", func() {
 		f.WaitForNginxConfiguration(
 			func(server string) bool {
 				return strings.Contains(server, fmt.Sprintf("server_name %v", test)) &&
-					strings.Contains(server, fmt.Sprintf("set $proxy_host $proxy_upstream_name"))
+					strings.Contains(server, "set $proxy_host $proxy_upstream_name")
 			})
 
 		f.HTTPTestClient().
diff --git a/test/e2e/settings/proxy_protocol.go b/test/e2e/settings/proxy_protocol.go
index 8b0e56fe4..f48ee5c8c 100644
--- a/test/e2e/settings/proxy_protocol.go
+++ b/test/e2e/settings/proxy_protocol.go
@@ -71,9 +71,9 @@ var _ = framework.DescribeSetting("use-proxy-protocol", func() {
 
 		body := string(data)
 		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=%v", "proxy-protocol"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-port=1234"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-proto=http"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-for=192.168.0.1"))
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-port=1234")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-proto=http")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-for=192.168.0.1")
 	})
 
 	ginkgo.It("should respect proto passed by the PROXY Protocol server port", func() {
@@ -104,9 +104,9 @@ var _ = framework.DescribeSetting("use-proxy-protocol", func() {
 
 		body := string(data)
 		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=%v", "proxy-protocol"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-port=443"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-proto=https"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-for=192.168.0.1"))
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-port=443")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-proto=https")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-for=192.168.0.1")
 	})
 
 	ginkgo.It("should enable PROXY Protocol for HTTPS", func() {
@@ -146,10 +146,10 @@ var _ = framework.DescribeSetting("use-proxy-protocol", func() {
 
 		body := string(data)
 		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=%v", "proxy-protocol"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-port=1234"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-proto=https"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-scheme=https"))
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("x-forwarded-for=192.168.0.1"))
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-port=1234")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-proto=https")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-scheme=https")
+		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-for=192.168.0.1")
 	})
 
 	ginkgo.It("should enable PROXY Protocol for TCP", func() {
diff --git a/test/e2e/settings/tls.go b/test/e2e/settings/tls.go
index a249f8bad..a820e41dd 100644
--- a/test/e2e/settings/tls.go
+++ b/test/e2e/settings/tls.go
@@ -112,7 +112,7 @@ var _ = framework.DescribeSetting("[SSL] TLS protocols, ciphers and headers)", f
 			f.UpdateNginxConfigMapData(hstsMaxAge, "86400")
 
 			f.WaitForNginxConfiguration(func(server string) bool {
-				return strings.Contains(server, fmt.Sprintf(`hsts_max_age = 86400,`))
+				return strings.Contains(server, `hsts_max_age = 86400,`)
 			})
 
 			f.HTTPTestClientWithTLSConfig(tlsConfig).
@@ -131,7 +131,7 @@ var _ = framework.DescribeSetting("[SSL] TLS protocols, ciphers and headers)", f
 			})
 
 			f.WaitForNginxConfiguration(func(server string) bool {
-				return strings.Contains(server, fmt.Sprintf(`hsts_include_subdomains = false,`))
+				return strings.Contains(server, `hsts_include_subdomains = false,`)
 			})
 
 			f.HTTPTestClientWithTLSConfig(tlsConfig).
@@ -151,7 +151,7 @@ var _ = framework.DescribeSetting("[SSL] TLS protocols, ciphers and headers)", f
 			})
 
 			f.WaitForNginxConfiguration(func(server string) bool {
-				return strings.Contains(server, fmt.Sprintf(`hsts_preload = true,`))
+				return strings.Contains(server, `hsts_preload = true,`)
 			})
 
 			f.HTTPTestClientWithTLSConfig(tlsConfig).

From 051aa6d40d88aaf390ba280fa86fd90fc3c25986 Mon Sep 17 00:00:00 2001
From: Micah Huber <pfp2024@gmail.com>
Date: Sun, 11 Jun 2023 13:51:46 -0500
Subject: [PATCH 0814/1641] add support for keda fallback settings (#9993)

---
 charts/ingress-nginx/templates/controller-keda.yaml | 5 +++++
 charts/ingress-nginx/values.yaml                    | 3 +++
 2 files changed, 8 insertions(+)

diff --git a/charts/ingress-nginx/templates/controller-keda.yaml b/charts/ingress-nginx/templates/controller-keda.yaml
index 875157ea4..c0d95a98e 100644
--- a/charts/ingress-nginx/templates/controller-keda.yaml
+++ b/charts/ingress-nginx/templates/controller-keda.yaml
@@ -25,6 +25,11 @@ spec:
   cooldownPeriod: {{ .Values.controller.keda.cooldownPeriod }}
   minReplicaCount: {{ .Values.controller.keda.minReplicas }}
   maxReplicaCount: {{ .Values.controller.keda.maxReplicas }}
+{{- with .Values.controller.keda.fallback }}
+  fallback:
+    failureThreshold: {{ .failureThreshold | default 3 }}
+    replicas: {{ .replicas | default $.Values.controller.keda.maxReplicas }}
+{{- end }}
   triggers:
 {{- with .Values.controller.keda.triggers }}
 {{ toYaml . | indent 2 }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 708469fab..8080a1fc3 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -368,6 +368,9 @@ controller:
     maxReplicas: 11
     pollingInterval: 30
     cooldownPeriod: 300
+    # fallback:
+    #   failureThreshold: 3
+    #   replicas: 11
     restoreToOriginalReplicaCount: false
     scaledObject:
       annotations: {}

From 4d3e64258c6fa581b1bf92b6a541e718977040fc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jos=C3=A9=20Neto?=
 <53952575+josenetoo@users.noreply.github.com>
Date: Sun, 11 Jun 2023 15:55:47 -0300
Subject: [PATCH 0815/1641] Adding feature to upgrade Oracle Cloud
 Infrastructure's Flexible Load Balancer and adjusting Health Check that were
 critical in the previous configuration (#9961)

* Create deploy.yaml

* Create kustomization.yaml
---
 deploy/static/provider/oci/deploy.yaml        | 648 ++++++++++++++++++
 deploy/static/provider/oci/kustomization.yaml |  11 +
 2 files changed, 659 insertions(+)
 create mode 100644 deploy/static/provider/oci/deploy.yaml
 create mode 100644 deploy/static/provider/oci/kustomization.yaml

diff --git a/deploy/static/provider/oci/deploy.yaml b/deploy/static/provider/oci/deploy.yaml
new file mode 100644
index 000000000..77de50247
--- /dev/null
+++ b/deploy/static/provider/oci/deploy.yaml
@@ -0,0 +1,648 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-nginx-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+  annotations:
+    service.beta.kubernetes.io/oci-load-balancer-shape: "flexible"
+    service.beta.kubernetes.io/oci-load-balancer-shape-flex-min: "10"
+    service.beta.kubernetes.io/oci-load-balancer-shape-flex-max: "100"
+spec:
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.7.1
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-nginx-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.7.1
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.7.1
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.7.1
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/oci/kustomization.yaml b/deploy/static/provider/oci/kustomization.yaml
new file mode 100644
index 000000000..d477ec405
--- /dev/null
+++ b/deploy/static/provider/oci/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud
+# ```
+
+resources:
+  - deploy.yaml

From db49b9da6f61bd477bcaa519bb537f6bfaa71252 Mon Sep 17 00:00:00 2001
From: Gerald Pape <ubergesundheit@users.noreply.github.com>
Date: Sun, 11 Jun 2023 20:59:47 +0200
Subject: [PATCH 0816/1641] Fix mirror-target values without path separator and
 port (#9889)

* Remove variables with $ before feeding into url.Parse

Signed-off-by: Gerald Pape <gerald@giantswarm.io>

* Do not render invalid request mirroring config

Signed-off-by: Gerald Pape <gerald@giantswarm.io>

* Remove additional note from docs again

Signed-off-by: Gerald Pape <gerald@giantswarm.io>

* Include quotes in e2e test for mirror proxy_pass

---------

Signed-off-by: Gerald Pape <gerald@giantswarm.io>
---
 internal/ingress/annotations/mirror/main.go    |  7 ++++---
 .../ingress/annotations/mirror/main_test.go    | 18 ++++++++++++++++++
 .../ingress/controller/template/template.go    |  6 +++---
 test/e2e/annotations/mirror.go                 |  2 +-
 4 files changed, 26 insertions(+), 7 deletions(-)

diff --git a/internal/ingress/annotations/mirror/main.go b/internal/ingress/annotations/mirror/main.go
index cd54a9826..9cb1b0ede 100644
--- a/internal/ingress/annotations/mirror/main.go
+++ b/internal/ingress/annotations/mirror/main.go
@@ -93,12 +93,13 @@ func (a mirror) Parse(ing *networking.Ingress) (interface{}, error) {
 	config.Host, err = parser.GetStringAnnotation("mirror-host", ing)
 	if err != nil {
 		if config.Target != "" {
-			url, err := parser.StringToURL(config.Target)
+			target := strings.Split(config.Target, "$")
+
+			url, err := parser.StringToURL(target[0])
 			if err != nil {
 				config.Host = ""
 			} else {
-				hostname := strings.Split(url.Hostname(), "$")
-				config.Host = hostname[0]
+				config.Host = url.Hostname()
 			}
 		}
 	}
diff --git a/internal/ingress/annotations/mirror/main_test.go b/internal/ingress/annotations/mirror/main_test.go
index f744ab552..add90d768 100644
--- a/internal/ingress/annotations/mirror/main_test.go
+++ b/internal/ingress/annotations/mirror/main_test.go
@@ -48,6 +48,24 @@ func TestParse(t *testing.T) {
 			Target:      "https://test.env.com/$request_uri",
 			Host:        "test.env.com",
 		}},
+		{map[string]string{backendURL: "https://test.env.com$request_uri"}, &Config{
+			Source:      ngxURI,
+			RequestBody: "on",
+			Target:      "https://test.env.com$request_uri",
+			Host:        "test.env.com",
+		}},
+		{map[string]string{backendURL: "https://test.env.com:8080$request_uri"}, &Config{
+			Source:      ngxURI,
+			RequestBody: "on",
+			Target:      "https://test.env.com:8080$request_uri",
+			Host:        "test.env.com",
+		}},
+		{map[string]string{backendURL: "https://test.env.com:8080/$request_uri"}, &Config{
+			Source:      ngxURI,
+			RequestBody: "on",
+			Target:      "https://test.env.com:8080/$request_uri",
+			Host:        "test.env.com",
+		}},
 		{map[string]string{requestBody: "off"}, &Config{
 			Source:      "",
 			RequestBody: "off",
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 6aadab48e..2d941f95d 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -1727,7 +1727,7 @@ func buildMirrorLocations(locs []*ingress.Location) string {
 	mapped := sets.Set[string]{}
 
 	for _, loc := range locs {
-		if loc.Mirror.Source == "" || loc.Mirror.Target == "" {
+		if loc.Mirror.Source == "" || loc.Mirror.Target == "" || loc.Mirror.Host == "" {
 			continue
 		}
 
@@ -1738,8 +1738,8 @@ func buildMirrorLocations(locs []*ingress.Location) string {
 		mapped.Insert(loc.Mirror.Source)
 		buffer.WriteString(fmt.Sprintf(`location = %v {
 internal;
-proxy_set_header Host %v;
-proxy_pass %v;
+proxy_set_header Host "%v";
+proxy_pass "%v";
 }
 
 `, loc.Mirror.Source, loc.Mirror.Host, loc.Mirror.Target))
diff --git a/test/e2e/annotations/mirror.go b/test/e2e/annotations/mirror.go
index ad178a947..787cbfa3b 100644
--- a/test/e2e/annotations/mirror.go
+++ b/test/e2e/annotations/mirror.go
@@ -60,7 +60,7 @@ var _ = framework.DescribeAnnotation("mirror-*", func() {
 			func(server string) bool {
 				return strings.Contains(server, fmt.Sprintf("mirror /_mirror-%v;", ing.UID)) &&
 					strings.Contains(server, "mirror_request_body on;") &&
-					strings.Contains(server, "proxy_pass https://test.env.com/$request_uri;")
+					strings.Contains(server, `proxy_pass "https://test.env.com/$request_uri";`)
 			})
 	})
 

From 90ed0ccdbe4edd55ad4ab16ffec40be64f3308d9 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 11 Jun 2023 17:33:47 -0300
Subject: [PATCH 0817/1641] Remove fastcgi feature (#9864)

---
 .github/workflows/ci.yaml                     |   6 -
 MANUAL_RELEASE.md                             |   2 -
 docs/e2e-tests.md                             | 131 +++++++-
 docs/kubectl-plugin.md                        |   1 -
 docs/user-guide/fcgi-services.md              | 118 +-------
 .../nginx-configuration/annotations.md        |   2 +-
 images/fastcgi-helloserver/Makefile           |  59 ----
 images/fastcgi-helloserver/cloudbuild.yaml    |  22 --
 images/fastcgi-helloserver/rootfs/Dockerfile  |  32 --
 images/fastcgi-helloserver/rootfs/main.go     |  30 --
 internal/ingress/annotations/annotations.go   |  62 ++--
 .../annotations/backendprotocol/main.go       |   2 +-
 internal/ingress/annotations/fastcgi/main.go  | 106 -------
 .../ingress/annotations/fastcgi/main_test.go  | 285 ------------------
 internal/ingress/annotations/parser/main.go   |   1 -
 internal/ingress/controller/controller.go     |   3 +-
 .../ingress/controller/template/template.go   |   3 -
 .../controller/template/template_test.go      |   2 -
 pkg/apis/ingress/types.go                     |   4 -
 pkg/apis/ingress/types_equals.go              |   4 -
 rootfs/etc/nginx/template/nginx.tmpl          |  11 -
 test/e2e/annotations/backendprotocol.go       |  15 -
 test/e2e/annotations/fastcgi.go               | 125 --------
 test/e2e/framework/fastcgi_helloserver.go     | 104 -------
 24 files changed, 156 insertions(+), 974 deletions(-)
 delete mode 100644 images/fastcgi-helloserver/Makefile
 delete mode 100644 images/fastcgi-helloserver/cloudbuild.yaml
 delete mode 100755 images/fastcgi-helloserver/rootfs/Dockerfile
 delete mode 100644 images/fastcgi-helloserver/rootfs/main.go
 delete mode 100644 internal/ingress/annotations/fastcgi/main.go
 delete mode 100644 internal/ingress/annotations/fastcgi/main_test.go
 delete mode 100644 test/e2e/annotations/fastcgi.go
 delete mode 100644 test/e2e/framework/fastcgi_helloserver.go

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 4d443f8d5..3406b250f 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -391,8 +391,6 @@ jobs:
               - 'images/custom-error-pages/**'
             cfssl:
               - 'images/cfssl/**'
-            fastcgi-helloserver:
-              - 'images/fastcgi-helloserver/**'
             echo:
               - 'images/echo/**'
             go-grpc-greeter-server:
@@ -412,10 +410,6 @@ jobs:
         if: ${{ steps.filter-images.outputs.cfssl == 'true' }}
         run: |
           cd images/cfssl && make build
-      - name: fastcgi-helloserver
-        if: ${{ steps.filter-images.outputs.fastcgi-helloserver == 'true' }}
-        run: |
-          cd images/fastcgi-helloserver && make build
       - name: echo image build
         if: ${{ steps.filter-images.outputs.echo == 'true' }}
         run: |
diff --git a/MANUAL_RELEASE.md b/MANUAL_RELEASE.md
index d7144b85d..4b4df0ec6 100644
--- a/MANUAL_RELEASE.md
+++ b/MANUAL_RELEASE.md
@@ -56,8 +56,6 @@
 
   - [cfssl](https://github.com/kubernetes/ingress-nginx/tree/main/images/cfssl)
 
-  - [fastcgi-helloserver](https://github.com/kubernetes/ingress-nginx/tree/main/images/fastcgi-helloserver)
-
   - [httpbin](https://github.com/kubernetes/ingress-nginx/tree/main/images/httpbin)
 
   - [kube-webhook-certgen](https://github.com/kubernetes/ingress-nginx/tree/main/images/kube-webhook-certgen)
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 025ff686d..64d35c79a 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -108,7 +108,6 @@ Do not try to edit it manually.
 - [should set backend protocol to $scheme:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L49)
 - [should set backend protocol to grpc:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L64)
 - [should set backend protocol to grpcs:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L79)
-- [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L94)
 - [should set backend protocol to '' and use ajp_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L109)
 
 ### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
@@ -192,13 +191,6 @@ Do not try to edit it manually.
 - [disable-http-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L53)
 - [disable-stream-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L71)
 
-### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L30)
-
-- [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L37)
-- [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L54)
-- [should add fastcgi_param in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L71)
-- [should return OK for service with backend protocol FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L102)
-
 ### [force-ssl-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L27)
 
 - [should redirect to https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L34)
@@ -350,6 +342,101 @@ Do not try to edit it manually.
 - [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L35)
 - [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L57)
 
+### [denylist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L28)
+
+- [only deny explicitly denied IPs, allow all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L35)
+- [only allow explicitly allowed IPs, deny all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L86)
+
+### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L35)
+
+- [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L42)
+- [should change cookie name on ingress definition change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L64)
+- [should set the path to /something on the generated cookie](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L99)
+- [does not set the path to / on the generated cookie if there's more than one rule referring to the same backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L121)
+- [should set cookie with expires](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L194)
+- [should set cookie with domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L225)
+- [should not set cookie without domain annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L248)
+- [should work with use-regex annotation and session-cookie-path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L270)
+- [should warn user when use-regex is true and session-cookie-path is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L294)
+- [should not set affinity across all server locations when using separate ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L320)
+- [should set sticky cookie without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L352)
+- [should work with server-alias annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L372)
+- [should set secure in cookie with provided true annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L412)
+- [should not set secure in cookie with provided false annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L435)
+- [should set secure in cookie with provided false annotation on https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L458)
+
+### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L30)
+
+- [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L37)
+- [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L66)
+- [should use ~* location modifier if regex annotation is present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L111)
+- [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L158)
+- [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L190)
+
+### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L39)
+
+- [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L46)
+- [should return status code 503 when authentication is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L65)
+- [should return status code 401 when authentication is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L89)
+- [should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L116)
+- [should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L144)
+- [should return status code 200 when authentication is configured and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L172)
+- [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L199)
+- [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L227)
+- [ when external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L266)
+- [ when external auth is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L284)
+- [ when auth-headers are set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L301)
+- [should set cache_key when external auth cache is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L322)
+- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L411)
+- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L422)
+- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L433)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L485)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L494)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L505)
+- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L529)
+- [should not create additional upstream block when auth-keepalive is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L552)
+- [should not create additional upstream block when host part of auth-url contains a variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L570)
+- [should not create additional upstream block when auth-keepalive is negative](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L590)
+- [should not create additional upstream block when auth-keepalive is set with HTTP/2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L609)
+- [should create additional upstream block when auth-keepalive is set with HTTP/1.x](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L623)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L678)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L687)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L698)
+- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L772)
+- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L792)
+- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L820)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L849)
+- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L879)
+- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L887)
+
+### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
+
+- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L48)
+- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L80)
+- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L107)
+- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L161)
+- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L206)
+- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L250)
+- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L307)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L372)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L426)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L490)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L532)
+- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L566)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L604)
+- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L643)
+- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L705)
+- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L743)
+- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L775)
+- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L808)
+- [should route requests split between mainline and canary if canary weight is 100 and weight total is 200](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L834)
+- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L863)
+- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L891)
+- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L915)
+- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L943)
+- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1000)
+- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1058)
+
 ### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L29)
 
 - [should list the backend servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L37)
@@ -398,10 +485,6 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
-
 ### [[Setting] ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L194)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L)
@@ -478,6 +561,30 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
 
+### [[Setting] ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L194)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+
 ### [[Shutdown] Grace period shutdown](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L32)
 
 - [/healthz should return status code 500 during shutdown grace period](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L35)
diff --git a/docs/kubectl-plugin.md b/docs/kubectl-plugin.md
index 9e5a5dcc6..9dc808642 100644
--- a/docs/kubectl-plugin.md
+++ b/docs/kubectl-plugin.md
@@ -200,7 +200,6 @@ kubectl ingress-nginx conf -n ingress-nginx --host testaddr.local
 
 ```console
 $ kubectl ingress-nginx exec -i -n ingress-nginx -- ls /etc/nginx
-fastcgi_params
 geoip
 lua
 mime.types
diff --git a/docs/user-guide/fcgi-services.md b/docs/user-guide/fcgi-services.md
index db4d9428b..d4f1d1f1e 100644
--- a/docs/user-guide/fcgi-services.md
+++ b/docs/user-guide/fcgi-services.md
@@ -2,118 +2,10 @@
 
 # Exposing FastCGI Servers
 
-> **FastCGI** is a [binary protocol](https://en.wikipedia.org/wiki/Binary_protocol "Binary protocol") for interfacing interactive programs with a [web server](https://en.wikipedia.org/wiki/Web_server "Web server"). [...] (It's) aim is to reduce the overhead related to interfacing between web server and CGI programs, allowing a server to handle more web page requests per unit of time.
->
-> &mdash; Wikipedia
+**This feature has been removed from Ingress NGINX**
 
-The _ingress-nginx_ ingress controller can be used to directly expose [FastCGI](https://en.wikipedia.org/wiki/FastCGI) servers.  Enabling FastCGI in your Ingress only requires setting the _backend-protocol_ annotation to `FCGI`, and with a couple more annotations you can customize the way _ingress-nginx_ handles the communication with your FastCGI _server_.
+People willing to use fastcgi servers, should create an NGINX + FastCGI service and expose
+this service via Ingress NGINX. 
 
-
-## Example Objects to Expose a FastCGI Pod
-
-The _Pod_ example object below exposes port `9000`, which is the conventional FastCGI port.
-
-```yaml
-apiVersion: v1
-kind: Pod
-metadata:
-  name: example-app
-labels:
-  app: example-app
-spec:
-  containers:
-  - name: example-app
-    image: example-app:1.0
-    ports:
-    - containerPort: 9000
-      name: fastcgi
-```
-
-The _Service_ object example below matches port `9000` from the _Pod_ object above.
-
-```yaml
-apiVersion: v1
-kind: Service
-metadata:
-  name: example-service
-spec:
-  selector:
-    app: example-app
-  ports:
-  - port: 9000
-    targetPort: 9000
-    name: fastcgi
-```
-
-And the _Ingress_ and _ConfigMap_ objects below demonstrates the supported _FastCGI_ specific annotations (NGINX actually has 50 FastCGI directives, all of which have not been exposed in the ingress yet), and matches the service `example-service`, and the port named `fastcgi` from above. The _ConfigMap_ **must** be created first for the _Ingress Controller_ to be able to find it when the _Ingress_ object is created, otherwise you will need to restart the _Ingress Controller_ pods.
-
-```yaml
-# The ConfigMap MUST be created first for the ingress controller to be able to
-# find it when the Ingress object is created.
-
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  name: example-cm
-data:
-  SCRIPT_FILENAME: "/example/index.php"
-
----
-
-apiVersion: networking.k8s.io/v1
-kind: Ingress
-metadata:
-  annotations:
-    nginx.ingress.kubernetes.io/backend-protocol: "FCGI"
-    nginx.ingress.kubernetes.io/fastcgi-index: "index.php"
-    nginx.ingress.kubernetes.io/fastcgi-params-configmap: "example-cm"
-  name: example-app
-spec:
-  ingressClassName: nginx
-  rules:
-  - host: app.example.com
-    http:
-      paths:
-      - path: /
-        pathType: Prefix
-        backend:
-          service:
-            name: example-service
-            port:
-              name: fastcgi
-```
-
-## FastCGI Ingress Annotations
-
-To enable FastCGI, the `nginx.ingress.kubernetes.io/backend-protocol` annotation needs to be set to `FCGI`, which overrides the default `HTTP` value.
-
-> `nginx.ingress.kubernetes.io/backend-protocol: "FCGI"`
-
-**This enables the _FastCGI_ mode for all paths defined in the _Ingress_ object**
-
-### The `nginx.ingress.kubernetes.io/fastcgi-index` Annotation
-
-To specify an index file, the `fastcgi-index` annotation value can optionally be set.  In the example below, the value is set to `index.php`.  This annotation corresponds to [the _NGINX_ `fastcgi_index` directive](https://nginx.org/en/docs/http/ngx_http_fastcgi_module.html#fastcgi_index).
-
-> `nginx.ingress.kubernetes.io/fastcgi-index: "index.php"`
-
-### The `nginx.ingress.kubernetes.io/fastcgi-params-configmap` Annotation
-
-To specify [_NGINX_ `fastcgi_param` directives](https://nginx.org/en/docs/http/ngx_http_fastcgi_module.html#fastcgi_param), the `fastcgi-params-configmap` annotation is used, which in turn must lead to a _ConfigMap_ object containing the _NGINX_ `fastcgi_param` directives as key/values.
-
-> `nginx.ingress.kubernetes.io/fastcgi-params-configmap: "example-configmap"`
-
-And the _ConfigMap_ object to specify the `SCRIPT_FILENAME` and `HTTP_PROXY`  _NGINX's_ `fastcgi_param` directives will look like the following:
-
-```yaml
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  name: example-configmap
-data:
-  SCRIPT_FILENAME: "/example/index.php"
-  HTTP_PROXY: ""
-```
-Using the _namespace/_ prefix is also supported, for example:
-
-> `nginx.ingress.kubernetes.io/fastcgi-params-configmap: "example-namespace/example-configmap"`
+We recommend using images like `cgr.dev/chainguard/nginx:latest` and expose your fast_cgi application
+as another container on this Pod.
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index b515a9f3b..fc43a47b2 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -894,7 +894,7 @@ Include /etc/nginx/owasp-modsecurity-crs/nginx-modsecurity.conf
 ### Backend Protocol
 
 Using `backend-protocol` annotations is possible to indicate how NGINX should communicate with the backend service. (Replaces `secure-backends` in older versions)
-Valid Values: HTTP, HTTPS, GRPC, GRPCS, AJP and FCGI
+Valid Values: HTTP, HTTPS, GRPC, GRPCS, AJP
 
 By default NGINX uses `HTTP`.
 
diff --git a/images/fastcgi-helloserver/Makefile b/images/fastcgi-helloserver/Makefile
deleted file mode 100644
index 4d277a19d..000000000
--- a/images/fastcgi-helloserver/Makefile
+++ /dev/null
@@ -1,59 +0,0 @@
-# Copyright 2020 The Kubernetes Authors.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-# Docker image for e2e testing.
-
-# set default shell
-SHELL=/bin/bash -o pipefail -o errexit
-
-DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
-INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
-
-SHORT_SHA ?=$(shell git rev-parse --short HEAD)
-TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
-
-REGISTRY ?= local
-
-IMAGE = $(REGISTRY)/e2e-test-fastcgi-helloserver
-
-# required to enable buildx
-export DOCKER_CLI_EXPERIMENTAL=enabled
-
-# build with buildx
-PLATFORMS?=linux/amd64,linux/arm,linux/arm64
-OUTPUT=
-PROGRESS=plain
-
-build: ensure-buildx
-	docker buildx build \
-		--platform=${PLATFORMS} $(OUTPUT) \
-		--progress=$(PROGRESS) \
-		--pull \
-		-t $(IMAGE):$(TAG) rootfs
-
-# push the cross built image
-push: OUTPUT=--push
-push: build
-
-# enable buildx
-ensure-buildx:
-# this is required for cloudbuild
-ifeq ("$(wildcard $(INIT_BUILDX))","")
-	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/hack/init-buildx.sh | bash
-else
-	@exec $(INIT_BUILDX)
-endif
-	@echo "done"
-
-.PHONY: build push ensure-buildx
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
deleted file mode 100644
index a4c9d5eff..000000000
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ /dev/null
@@ -1,22 +0,0 @@
-timeout: 1800s
-options:
-  substitution_option: ALLOW_LOOSE
-steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
-    entrypoint: bash
-    env:
-      - DOCKER_CLI_EXPERIMENTAL=enabled
-      - SHORT_SHA=$SHORT_SHA
-      - BASE_REF=$_PULL_BASE_REF
-      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
-      # set the home to /root explicitly to if using docker buildx
-      - HOME=/root
-    args:
-    - -c
-    - |
-      gcloud auth configure-docker \
-      && cd images/fastcgi-helloserver && make push
-substitutions:
-  _GIT_TAG: "12345"
-  _PULL_BASE_REF: "master"
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
deleted file mode 100755
index a11834373..000000000
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ /dev/null
@@ -1,32 +0,0 @@
-# Copyright 2017 The Kubernetes Authors. All rights reserved.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-FROM golang:1.20.4-alpine3.18 as builder
-
-WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
-
-COPY . .
-
-RUN CGO_ENABLED=0 go build -a -installsuffix cgo \
-	-ldflags "-s -w" \
-	-o fastcgi-helloserver main.go
-
-# Use distroless as minimal base image to package the binary
-# Refer to https://github.com/GoogleContainerTools/distroless for more details
-FROM gcr.io/distroless/static:nonroot
-
-COPY --from=builder /go/src/k8s.io/ingress-nginx/images/fastcgi/fastcgi-helloserver /
-USER nonroot:nonroot
-
-CMD ["/fastcgi-helloserver"]
diff --git a/images/fastcgi-helloserver/rootfs/main.go b/images/fastcgi-helloserver/rootfs/main.go
deleted file mode 100644
index 91db60c26..000000000
--- a/images/fastcgi-helloserver/rootfs/main.go
+++ /dev/null
@@ -1,30 +0,0 @@
-package main
-
-import (
-	"fmt"
-	"net"
-	"net/http"
-	"net/http/fcgi"
-)
-
-func hello(w http.ResponseWriter, r *http.Request) {
-	keys, ok := r.URL.Query()["name"]
-
-	if !ok || len(keys[0]) < 1 {
-		fmt.Fprintf(w, "Hello world!")
-		return
-	}
-
-	key := keys[0]
-	fmt.Fprintf(w, "Hello "+string(key)+"!")
-}
-
-func main() {
-	http.HandleFunc("/hello", hello)
-
-	l, err := net.Listen("tcp", "0.0.0.0:9000")
-	if err != nil {
-		panic(err)
-	}
-	fcgi.Serve(l, nil)
-}
diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index 5bb2bf5e6..ad7dad37d 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -41,7 +41,6 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/cors"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/customhttperrors"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/defaultbackend"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/fastcgi"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/globalratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/http2pushpreload"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipdenylist"
@@ -86,37 +85,35 @@ type Ingress struct {
 	CorsConfig           cors.Config
 	CustomHTTPErrors     []int
 	DefaultBackend       *apiv1.Service
-	//TODO: Change this back into an error when https://github.com/imdario/mergo/issues/100 is resolved
-	FastCGI            fastcgi.Config
-	Denied             *string
-	ExternalAuth       authreq.Config
-	EnableGlobalAuth   bool
-	HTTP2PushPreload   bool
-	Opentracing        opentracing.Config
-	Opentelemetry      opentelemetry.Config
-	Proxy              proxy.Config
-	ProxySSL           proxyssl.Config
-	RateLimit          ratelimit.Config
-	GlobalRateLimit    globalratelimit.Config
-	Redirect           redirect.Config
-	Rewrite            rewrite.Config
-	Satisfy            string
-	ServerSnippet      string
-	ServiceUpstream    bool
-	SessionAffinity    sessionaffinity.Config
-	SSLPassthrough     bool
-	UsePortInRedirects bool
-	UpstreamHashBy     upstreamhashby.Config
-	LoadBalancing      string
-	UpstreamVhost      string
-	Whitelist          ipwhitelist.SourceRange
-	Denylist           ipdenylist.SourceRange
-	XForwardedPrefix   string
-	SSLCipher          sslcipher.Config
-	Logs               log.Config
-	ModSecurity        modsecurity.Config
-	Mirror             mirror.Config
-	StreamSnippet      string
+	Denied               *string
+	ExternalAuth         authreq.Config
+	EnableGlobalAuth     bool
+	HTTP2PushPreload     bool
+	Opentracing          opentracing.Config
+	Opentelemetry        opentelemetry.Config
+	Proxy                proxy.Config
+	ProxySSL             proxyssl.Config
+	RateLimit            ratelimit.Config
+	GlobalRateLimit      globalratelimit.Config
+	Redirect             redirect.Config
+	Rewrite              rewrite.Config
+	Satisfy              string
+	ServerSnippet        string
+	ServiceUpstream      bool
+	SessionAffinity      sessionaffinity.Config
+	SSLPassthrough       bool
+	UsePortInRedirects   bool
+	UpstreamHashBy       upstreamhashby.Config
+	LoadBalancing        string
+	UpstreamVhost        string
+	Whitelist            ipwhitelist.SourceRange
+	Denylist             ipdenylist.SourceRange
+	XForwardedPrefix     string
+	SSLCipher            sslcipher.Config
+	Logs                 log.Config
+	ModSecurity          modsecurity.Config
+	Mirror               mirror.Config
+	StreamSnippet        string
 }
 
 // Extractor defines the annotation parsers to be used in the extraction of annotations
@@ -138,7 +135,6 @@ func NewAnnotationExtractor(cfg resolver.Resolver) Extractor {
 			"CorsConfig":           cors.NewParser(cfg),
 			"CustomHTTPErrors":     customhttperrors.NewParser(cfg),
 			"DefaultBackend":       defaultbackend.NewParser(cfg),
-			"FastCGI":              fastcgi.NewParser(cfg),
 			"ExternalAuth":         authreq.NewParser(cfg),
 			"EnableGlobalAuth":     authreqglobal.NewParser(cfg),
 			"HTTP2PushPreload":     http2pushpreload.NewParser(cfg),
diff --git a/internal/ingress/annotations/backendprotocol/main.go b/internal/ingress/annotations/backendprotocol/main.go
index d8ea72386..0140c30a3 100644
--- a/internal/ingress/annotations/backendprotocol/main.go
+++ b/internal/ingress/annotations/backendprotocol/main.go
@@ -31,7 +31,7 @@ import (
 const HTTP = "HTTP"
 
 var (
-	validProtocols = regexp.MustCompile(`^(AUTO_HTTP|HTTP|HTTPS|AJP|GRPC|GRPCS|FCGI)$`)
+	validProtocols = regexp.MustCompile(`^(AUTO_HTTP|HTTP|HTTPS|AJP|GRPC|GRPCS)$`)
 )
 
 type backendProtocol struct {
diff --git a/internal/ingress/annotations/fastcgi/main.go b/internal/ingress/annotations/fastcgi/main.go
deleted file mode 100644
index 84bac4109..000000000
--- a/internal/ingress/annotations/fastcgi/main.go
+++ /dev/null
@@ -1,106 +0,0 @@
-/*
-Copyright 2018 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package fastcgi
-
-import (
-	"fmt"
-	"reflect"
-
-	networking "k8s.io/api/networking/v1"
-	"k8s.io/client-go/tools/cache"
-
-	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
-	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
-	"k8s.io/ingress-nginx/internal/ingress/resolver"
-)
-
-type fastcgi struct {
-	r resolver.Resolver
-}
-
-// Config describes the per location fastcgi config
-type Config struct {
-	Index  string            `json:"index"`
-	Params map[string]string `json:"params"`
-}
-
-// Equal tests for equality between two Configuration types
-func (l1 *Config) Equal(l2 *Config) bool {
-	if l1 == l2 {
-		return true
-	}
-
-	if l1 == nil || l2 == nil {
-		return false
-	}
-
-	if l1.Index != l2.Index {
-		return false
-	}
-
-	return reflect.DeepEqual(l1.Params, l2.Params)
-}
-
-// NewParser creates a new fastcgiConfig protocol annotation parser
-func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return fastcgi{r}
-}
-
-// ParseAnnotations parses the annotations contained in the ingress
-// rule used to indicate the fastcgiConfig.
-func (a fastcgi) Parse(ing *networking.Ingress) (interface{}, error) {
-
-	fcgiConfig := Config{}
-
-	if ing.GetAnnotations() == nil {
-		return fcgiConfig, nil
-	}
-
-	index, err := parser.GetStringAnnotation("fastcgi-index", ing)
-	if err != nil {
-		index = ""
-	}
-	fcgiConfig.Index = index
-
-	cm, err := parser.GetStringAnnotation("fastcgi-params-configmap", ing)
-	if err != nil {
-		return fcgiConfig, nil
-	}
-
-	cmns, cmn, err := cache.SplitMetaNamespaceKey(cm)
-	if err != nil {
-		return fcgiConfig, ing_errors.LocationDenied{
-			Reason: fmt.Errorf("error reading configmap name from annotation: %w", err),
-		}
-	}
-
-	if cmns != "" && cmns != ing.Namespace {
-		return fcgiConfig, fmt.Errorf("different namespace is not supported on fast_cgi param configmap")
-	}
-
-	cm = fmt.Sprintf("%v/%v", ing.Namespace, cmn)
-	cmap, err := a.r.GetConfigMap(cm)
-	if err != nil {
-		return fcgiConfig, ing_errors.LocationDenied{
-			Reason: fmt.Errorf("unexpected error reading configmap %s: %w", cm, err),
-		}
-	}
-
-	fcgiConfig.Params = cmap.Data
-
-	return fcgiConfig, nil
-}
diff --git a/internal/ingress/annotations/fastcgi/main_test.go b/internal/ingress/annotations/fastcgi/main_test.go
deleted file mode 100644
index 35c5bbc12..000000000
--- a/internal/ingress/annotations/fastcgi/main_test.go
+++ /dev/null
@@ -1,285 +0,0 @@
-/*
-Copyright 2018 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package fastcgi
-
-import (
-	"fmt"
-	"testing"
-
-	api "k8s.io/api/core/v1"
-	networking "k8s.io/api/networking/v1"
-	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-	"k8s.io/client-go/tools/cache"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
-	"k8s.io/ingress-nginx/internal/ingress/resolver"
-)
-
-func buildIngress() *networking.Ingress {
-	return &networking.Ingress{
-		ObjectMeta: meta_v1.ObjectMeta{
-			Name:      "foo",
-			Namespace: api.NamespaceDefault,
-		},
-		Spec: networking.IngressSpec{
-			DefaultBackend: &networking.IngressBackend{
-				Service: &networking.IngressServiceBackend{
-					Name: "default-backend",
-					Port: networking.ServiceBackendPort{
-						Number: 80,
-					},
-				},
-			},
-		},
-	}
-}
-
-type mockConfigMap struct {
-	resolver.Mock
-}
-
-func (m mockConfigMap) GetConfigMap(name string) (*api.ConfigMap, error) {
-	if name != "default/demo-configmap" && name != "otherns/demo-configmap" {
-		return nil, fmt.Errorf("there is no configmap with name %v", name)
-	}
-
-	cmns, cmn, err := cache.SplitMetaNamespaceKey(name)
-	if err != nil {
-		return nil, fmt.Errorf("invalid configmap name")
-	}
-
-	return &api.ConfigMap{
-		ObjectMeta: meta_v1.ObjectMeta{
-			Namespace: cmns,
-			Name:      cmn,
-		},
-		Data: map[string]string{"REDIRECT_STATUS": "200", "SERVER_NAME": "$server_name"},
-	}, nil
-}
-
-func TestParseEmptyFastCGIAnnotations(t *testing.T) {
-	ing := buildIngress()
-
-	i, err := NewParser(&mockConfigMap{}).Parse(ing)
-	if err != nil {
-		t.Errorf("unexpected error parsing ingress without fastcgi")
-	}
-
-	config, ok := i.(Config)
-	if !ok {
-		t.Errorf("Parse do not return a Config object")
-	}
-
-	if config.Index != "" {
-		t.Errorf("Index should be an empty string")
-	}
-
-	if len(config.Params) != 0 {
-		t.Errorf("Params should be an empty slice")
-	}
-}
-
-func TestParseFastCGIIndexAnnotation(t *testing.T) {
-	ing := buildIngress()
-
-	const expectedAnnotation = "index.php"
-
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("fastcgi-index")] = expectedAnnotation
-	ing.SetAnnotations(data)
-
-	i, err := NewParser(&mockConfigMap{}).Parse(ing)
-	if err != nil {
-		t.Errorf("unexpected error parsing ingress without fastcgi")
-	}
-
-	config, ok := i.(Config)
-	if !ok {
-		t.Errorf("Parse do not return a Config object")
-	}
-
-	if config.Index != "index.php" {
-		t.Errorf("expected %s but %v returned", expectedAnnotation, config.Index)
-	}
-}
-
-func TestParseEmptyFastCGIParamsConfigMapAnnotation(t *testing.T) {
-	ing := buildIngress()
-
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("fastcgi-params-configmap")] = ""
-	ing.SetAnnotations(data)
-
-	i, err := NewParser(&mockConfigMap{}).Parse(ing)
-	if err != nil {
-		t.Errorf("unexpected error parsing ingress without fastcgi")
-	}
-
-	config, ok := i.(Config)
-	if !ok {
-		t.Errorf("Parse do not return a Config object")
-	}
-
-	if len(config.Params) != 0 {
-		t.Errorf("Params should be an empty slice")
-	}
-}
-
-func TestParseFastCGIInvalidParamsConfigMapAnnotation(t *testing.T) {
-	ing := buildIngress()
-
-	invalidConfigMapList := []string{"unknown/configMap", "unknown/config/map"}
-	for _, configmap := range invalidConfigMapList {
-
-		data := map[string]string{}
-		data[parser.GetAnnotationWithPrefix("fastcgi-params-configmap")] = configmap
-		ing.SetAnnotations(data)
-
-		i, err := NewParser(&mockConfigMap{}).Parse(ing)
-		if err == nil {
-			t.Errorf("Reading an unexisting configmap should return an error")
-		}
-
-		config, ok := i.(Config)
-		if !ok {
-			t.Errorf("Parse do not return a Config object")
-		}
-
-		if len(config.Params) != 0 {
-			t.Errorf("Params should be an empty slice")
-		}
-	}
-}
-
-func TestParseFastCGIParamsConfigMapAnnotationWithoutNS(t *testing.T) {
-	ing := buildIngress()
-
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("fastcgi-params-configmap")] = "demo-configmap"
-	ing.SetAnnotations(data)
-
-	i, err := NewParser(&mockConfigMap{}).Parse(ing)
-	if err != nil {
-		t.Errorf("unexpected error parsing ingress without fastcgi")
-	}
-
-	config, ok := i.(Config)
-	if !ok {
-		t.Errorf("Parse do not return a Config object")
-	}
-
-	if len(config.Params) != 2 {
-		t.Errorf("Params should have a length of 2")
-	}
-
-	if config.Params["REDIRECT_STATUS"] != "200" || config.Params["SERVER_NAME"] != "$server_name" {
-		t.Errorf("Params value is not the one expected")
-	}
-}
-
-func TestParseFastCGIParamsConfigMapAnnotationWithNS(t *testing.T) {
-	ing := buildIngress()
-
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("fastcgi-params-configmap")] = "default/demo-configmap"
-	ing.SetAnnotations(data)
-
-	i, err := NewParser(&mockConfigMap{}).Parse(ing)
-	if err != nil {
-		t.Errorf("unexpected error parsing ingress without fastcgi")
-	}
-
-	config, ok := i.(Config)
-	if !ok {
-		t.Errorf("Parse do not return a Config object")
-	}
-
-	if len(config.Params) != 2 {
-		t.Errorf("Params should have a length of 2")
-	}
-
-	if config.Params["REDIRECT_STATUS"] != "200" || config.Params["SERVER_NAME"] != "$server_name" {
-		t.Errorf("Params value is not the one expected")
-	}
-}
-
-func TestParseFastCGIParamsConfigMapAnnotationWithDifferentNS(t *testing.T) {
-	ing := buildIngress()
-
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("fastcgi-params-configmap")] = "otherns/demo-configmap"
-	ing.SetAnnotations(data)
-
-	_, err := NewParser(&mockConfigMap{}).Parse(ing)
-	if err == nil {
-		t.Errorf("Different namespace configmap should return an error")
-	}
-
-}
-
-func TestConfigEquality(t *testing.T) {
-
-	var nilConfig *Config
-
-	config := Config{
-		Index:  "index.php",
-		Params: map[string]string{"REDIRECT_STATUS": "200", "SERVER_NAME": "$server_name"},
-	}
-
-	configCopy := Config{
-		Index:  "index.php",
-		Params: map[string]string{"REDIRECT_STATUS": "200", "SERVER_NAME": "$server_name"},
-	}
-
-	config2 := Config{
-		Index:  "index.php",
-		Params: map[string]string{"REDIRECT_STATUS": "200"},
-	}
-
-	config3 := Config{
-		Index:  "index.py",
-		Params: map[string]string{"SERVER_NAME": "$server_name", "REDIRECT_STATUS": "200"},
-	}
-
-	config4 := Config{
-		Index:  "index.php",
-		Params: map[string]string{"SERVER_NAME": "$server_name", "REDIRECT_STATUS": "200"},
-	}
-
-	if !config.Equal(&config) {
-		t.Errorf("config should be equal to itself")
-	}
-
-	if nilConfig.Equal(&config) {
-		t.Errorf("Foo")
-	}
-
-	if !config.Equal(&configCopy) {
-		t.Errorf("config should be equal to configCopy")
-	}
-
-	if config.Equal(&config2) {
-		t.Errorf("config2 should not be equal to config")
-	}
-
-	if config.Equal(&config3) {
-		t.Errorf("config3 should not be equal to config")
-	}
-
-	if !config.Equal(&config4) {
-		t.Errorf("config4 should be equal to config")
-	}
-}
diff --git a/internal/ingress/annotations/parser/main.go b/internal/ingress/annotations/parser/main.go
index 107a278b0..8a0ea4b87 100644
--- a/internal/ingress/annotations/parser/main.go
+++ b/internal/ingress/annotations/parser/main.go
@@ -160,7 +160,6 @@ func normalizeString(input string) string {
 
 var configmapAnnotations = sets.NewString(
 	"auth-proxy-set-header",
-	"fastcgi-params-configmap",
 )
 
 // AnnotationsReferencesConfigmap checks if at least one annotation in the Ingress rule
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 20de63fd1..e93d3b5de 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -608,7 +608,7 @@ func (n *NGINXController) getConfiguration(ingresses []*ingress.Ingress) (sets.S
 
 	for _, server := range servers {
 		// If a location is defined by a prefix string that ends with the slash character, and requests are processed by one of
-		// proxy_pass, fastcgi_pass, uwsgi_pass, scgi_pass, memcached_pass, or grpc_pass, then the special processing is performed.
+		// proxy_pass, uwsgi_pass, scgi_pass, memcached_pass, or grpc_pass, then the special processing is performed.
 		// In response to a request with URI equal to // this string, but without the trailing slash, a permanent redirect with the
 		// code 301 will be returned to the requested URI with the slash appended. If this is not desired, an exact match of the
 		// URIand location could be defined like this:
@@ -1519,7 +1519,6 @@ func locationApplyAnnotations(loc *ingress.Location, anns *annotations.Ingress)
 	loc.Logs = anns.Logs
 	loc.DefaultBackend = anns.DefaultBackend
 	loc.BackendProtocol = anns.BackendProtocol
-	loc.FastCGI = anns.FastCGI
 	loc.CustomHTTPErrors = anns.CustomHTTPErrors
 	loc.ModSecurity = anns.ModSecurity
 	loc.Satisfy = anns.Satisfy
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 2d941f95d..15ae438ab 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -739,9 +739,6 @@ func buildProxyPass(host string, b interface{}, loc interface{}) string {
 	case "AJP":
 		proto = ""
 		proxyPass = "ajp_pass"
-	case "FCGI":
-		proto = ""
-		proxyPass = "fastcgi_pass"
 	}
 
 	upstreamName := "upstream_balancer"
diff --git a/internal/ingress/controller/template/template_test.go b/internal/ingress/controller/template/template_test.go
index 1980d7e52..1b88c3fe7 100644
--- a/internal/ingress/controller/template/template_test.go
+++ b/internal/ingress/controller/template/template_test.go
@@ -1138,7 +1138,6 @@ func TestOpentracingPropagateContext(t *testing.T) {
 		{BackendProtocol: "GRPC"}:      "opentracing_grpc_propagate_context;",
 		{BackendProtocol: "GRPCS"}:     "opentracing_grpc_propagate_context;",
 		{BackendProtocol: "AJP"}:       "opentracing_propagate_context;",
-		{BackendProtocol: "FCGI"}:      "opentracing_propagate_context;",
 		nil:                            "",
 	}
 
@@ -1158,7 +1157,6 @@ func TestOpentelemetryPropagateContext(t *testing.T) {
 		{BackendProtocol: "GRPC"}:      "opentelemetry_propagate;",
 		{BackendProtocol: "GRPCS"}:     "opentelemetry_propagate;",
 		{BackendProtocol: "AJP"}:       "opentelemetry_propagate;",
-		{BackendProtocol: "FCGI"}:      "opentelemetry_propagate;",
 		nil:                            "",
 	}
 
diff --git a/pkg/apis/ingress/types.go b/pkg/apis/ingress/types.go
index e50666c18..68cacc25b 100644
--- a/pkg/apis/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -27,7 +27,6 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/authtls"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/connection"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/cors"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/fastcgi"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/globalratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipdenylist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipwhitelist"
@@ -340,9 +339,6 @@ type Location struct {
 	// BackendProtocol indicates which protocol should be used to communicate with the service
 	// By default this is HTTP
 	BackendProtocol string `json:"backend-protocol"`
-	// FastCGI allows the ingress to act as a FastCGI client for a given location.
-	// +optional
-	FastCGI fastcgi.Config `json:"fastcgi,omitempty"`
 	// CustomHTTPErrors specifies the error codes that should be intercepted.
 	// +optional
 	CustomHTTPErrors []int `json:"custom-http-errors"`
diff --git a/pkg/apis/ingress/types_equals.go b/pkg/apis/ingress/types_equals.go
index 84b1a186a..fee8c31d5 100644
--- a/pkg/apis/ingress/types_equals.go
+++ b/pkg/apis/ingress/types_equals.go
@@ -435,10 +435,6 @@ func (l1 *Location) Equal(l2 *Location) bool {
 		return false
 	}
 
-	if !(&l1.FastCGI).Equal(&l2.FastCGI) {
-		return false
-	}
-
 	match := compareInts(l1.CustomHTTPErrors, l2.CustomHTTPErrors)
 	if !match {
 		return false
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 9b3a47de3..638333407 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -305,7 +305,6 @@ http {
     keepalive_requests {{ $cfg.KeepAliveRequests }};
 
     client_body_temp_path           /tmp/nginx/client-body;
-    fastcgi_temp_path               /tmp/nginx/fastcgi-temp;
     proxy_temp_path                 /tmp/nginx/proxy-temp;
     ajp_temp_path                   /tmp/nginx/ajp-temp;
 
@@ -1489,16 +1488,6 @@ stream {
             {{ range $errCode := $location.CustomHTTPErrors }}
             error_page {{ $errCode }} = @custom_{{ $location.DefaultBackendUpstreamName }}_{{ $errCode }};{{ end }}
 
-            {{ if (eq $location.BackendProtocol "FCGI") }}
-            include /etc/nginx/fastcgi_params;
-            {{ end }}
-            {{- if $location.FastCGI.Index -}}
-            fastcgi_index {{ $location.FastCGI.Index | quote }};
-            {{- end -}}
-            {{ range $k, $v := $location.FastCGI.Params }}
-            fastcgi_param {{ $k }} {{ $v | quote }};
-            {{ end }}
-
             {{ if not (empty $location.Redirect.URL) }}
             return {{ $location.Redirect.Code }} {{ $location.Redirect.URL }};
             {{ end }}
diff --git a/test/e2e/annotations/backendprotocol.go b/test/e2e/annotations/backendprotocol.go
index bccb03afb..8256befd2 100644
--- a/test/e2e/annotations/backendprotocol.go
+++ b/test/e2e/annotations/backendprotocol.go
@@ -91,21 +91,6 @@ var _ = framework.DescribeAnnotation("backend-protocol", func() {
 			})
 	})
 
-	ginkgo.It("should set backend protocol to '' and use fastcgi_pass", func() {
-		host := "backendprotocol.foo.com"
-		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/backend-protocol": "FCGI",
-		}
-
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return strings.Contains(server, "fastcgi_pass upstream_balancer;")
-			})
-	})
-
 	ginkgo.It("should set backend protocol to '' and use ajp_pass", func() {
 		host := "backendprotocol.foo.com"
 		annotations := map[string]string{
diff --git a/test/e2e/annotations/fastcgi.go b/test/e2e/annotations/fastcgi.go
deleted file mode 100644
index 572eca548..000000000
--- a/test/e2e/annotations/fastcgi.go
+++ /dev/null
@@ -1,125 +0,0 @@
-/*
-Copyright 2019 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package annotations
-
-import (
-	"net/http"
-	"strings"
-
-	"github.com/onsi/ginkgo/v2"
-	corev1 "k8s.io/api/core/v1"
-
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-	"k8s.io/ingress-nginx/test/e2e/framework"
-)
-
-var _ = framework.DescribeAnnotation("backend-protocol - FastCGI", func() {
-	f := framework.NewDefaultFramework("fastcgi")
-
-	ginkgo.BeforeEach(func() {
-		f.NewFastCGIHelloServerDeployment()
-	})
-
-	ginkgo.It("should use fastcgi_pass in the configuration file", func() {
-		host := "fastcgi"
-
-		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/backend-protocol": "FCGI",
-		}
-
-		ing := framework.NewSingleIngress(host, "/hello", host, f.Namespace, "fastcgi-helloserver", 9000, annotations)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return strings.Contains(server, "include /etc/nginx/fastcgi_params;") &&
-					strings.Contains(server, "fastcgi_pass")
-			})
-	})
-
-	ginkgo.It("should add fastcgi_index in the configuration file", func() {
-		host := "fastcgi-index"
-
-		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/backend-protocol": "FCGI",
-			"nginx.ingress.kubernetes.io/fastcgi-index":    "index.php",
-		}
-
-		ing := framework.NewSingleIngress(host, "/hello", host, f.Namespace, "fastcgi-helloserver", 9000, annotations)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return strings.Contains(server, "fastcgi_index \"index.php\";")
-			})
-	})
-
-	ginkgo.It("should add fastcgi_param in the configuration file", func() {
-		configuration := &corev1.ConfigMap{
-			ObjectMeta: metav1.ObjectMeta{
-				Name:      "fastcgi-configmap",
-				Namespace: f.Namespace,
-			},
-			Data: map[string]string{
-				"SCRIPT_FILENAME": "/home/www/scripts/php$fastcgi_script_name",
-				"REDIRECT_STATUS": "200",
-			},
-		}
-
-		f.EnsureConfigMap(configuration)
-
-		host := "fastcgi-params-configmap"
-
-		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/backend-protocol":         "FCGI",
-			"nginx.ingress.kubernetes.io/fastcgi-params-configmap": "fastcgi-configmap",
-		}
-
-		ing := framework.NewSingleIngress(host, "/hello", host, f.Namespace, "fastcgi-helloserver", 9000, annotations)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return strings.Contains(server, "fastcgi_param SCRIPT_FILENAME \"/home/www/scripts/php$fastcgi_script_name\";") &&
-					strings.Contains(server, "fastcgi_param REDIRECT_STATUS \"200\";")
-			})
-	})
-
-	ginkgo.It("should return OK for service with backend protocol FastCGI", func() {
-		host := "fastcgi-helloserver"
-		path := "/hello"
-
-		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/backend-protocol": "FCGI",
-		}
-
-		ing := framework.NewSingleIngress(host, path, host, f.Namespace, "fastcgi-helloserver", 9000, annotations)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return strings.Contains(server, "fastcgi_pass")
-			})
-
-		f.HTTPTestClient().
-			GET(path).
-			WithHeader("Host", host).
-			Expect().
-			Status(http.StatusOK).
-			Body().Contains("Hello world!")
-	})
-})
diff --git a/test/e2e/framework/fastcgi_helloserver.go b/test/e2e/framework/fastcgi_helloserver.go
deleted file mode 100644
index 719048c06..000000000
--- a/test/e2e/framework/fastcgi_helloserver.go
+++ /dev/null
@@ -1,104 +0,0 @@
-/*
-Copyright 2017 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package framework
-
-import (
-	"github.com/onsi/ginkgo/v2"
-	"github.com/stretchr/testify/assert"
-	appsv1 "k8s.io/api/apps/v1"
-	corev1 "k8s.io/api/core/v1"
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-	"k8s.io/apimachinery/pkg/fields"
-	"k8s.io/apimachinery/pkg/util/intstr"
-)
-
-// NewFastCGIHelloServerDeployment creates a new single replica
-// deployment of the fortune teller image in a particular namespace
-func (f *Framework) NewFastCGIHelloServerDeployment() {
-	f.NewNewFastCGIHelloServerDeploymentWithReplicas(1)
-}
-
-// NewNewFastCGIHelloServerDeploymentWithReplicas creates a new deployment of the
-// fortune teller image in a particular namespace. Number of replicas is configurable
-func (f *Framework) NewNewFastCGIHelloServerDeploymentWithReplicas(replicas int32) {
-	deployment := &appsv1.Deployment{
-		ObjectMeta: metav1.ObjectMeta{
-			Name:      "fastcgi-helloserver",
-			Namespace: f.Namespace,
-		},
-		Spec: appsv1.DeploymentSpec{
-			Replicas: NewInt32(replicas),
-			Selector: &metav1.LabelSelector{
-				MatchLabels: map[string]string{
-					"app": "fastcgi-helloserver",
-				},
-			},
-			Template: corev1.PodTemplateSpec{
-				ObjectMeta: metav1.ObjectMeta{
-					Labels: map[string]string{
-						"app": "fastcgi-helloserver",
-					},
-				},
-				Spec: corev1.PodSpec{
-					TerminationGracePeriodSeconds: NewInt64(0),
-					Containers: []corev1.Container{
-						{
-							Name:  "fastcgi-helloserver",
-							Image: "registry.k8s.io/ingress-nginx/e2e-test-fastcgi-helloserver@sha256:0e08c836cc58f1ea862578de99b13bc4264fe071e816f96dc1d79857bfba7473",
-							Env:   []corev1.EnvVar{},
-							Ports: []corev1.ContainerPort{
-								{
-									Name:          "fastcgi",
-									ContainerPort: 9000,
-								},
-							},
-						},
-					},
-				},
-			},
-		},
-	}
-
-	d := f.EnsureDeployment(deployment)
-
-	err := waitForPodsReady(f.KubeClientSet, DefaultTimeout, int(replicas), f.Namespace, metav1.ListOptions{
-		LabelSelector: fields.SelectorFromSet(fields.Set(d.Spec.Template.ObjectMeta.Labels)).String(),
-	})
-	assert.Nil(ginkgo.GinkgoT(), err, "failed to wait for to become ready")
-
-	service := &corev1.Service{
-		ObjectMeta: metav1.ObjectMeta{
-			Name:      "fastcgi-helloserver",
-			Namespace: f.Namespace,
-		},
-		Spec: corev1.ServiceSpec{
-			Ports: []corev1.ServicePort{
-				{
-					Name:       "fastcgi",
-					Port:       9000,
-					TargetPort: intstr.FromInt(9000),
-					Protocol:   "TCP",
-				},
-			},
-			Selector: map[string]string{
-				"app": "fastcgi-helloserver",
-			},
-		},
-	}
-
-	f.EnsureService(service)
-}

From 60bf6ba6429feb4a5d8b485d1bcee87187fbc368 Mon Sep 17 00:00:00 2001
From: Brendan Kamp <brendankamp757@gmail.com>
Date: Mon, 12 Jun 2023 12:25:49 +0200
Subject: [PATCH 0818/1641] chore: move httpbun to be part of framework (#9955)

Signed-off-by: Spazzy <brendankamp757@gmail.com>
---
 test/e2e/HTTPBUN_IMAGE                        |   1 +
 test/e2e/annotations/auth.go                  |  53 +-----
 test/e2e/annotations/grpc.go                  |  17 +-
 test/e2e/annotations/satisfy.go               |  17 +-
 test/e2e/framework/deployment.go              | 111 +++++++++----
 test/e2e/framework/framework.go               |  29 +++-
 test/e2e/run-e2e-suite.sh                     |   2 +
 .../servicebackend/service_externalname.go    | 153 +++++++++++-------
 test/e2e/settings/brotli.go                   |   9 +-
 .../settings/disable_service_external_name.go |  16 +-
 test/e2e/settings/global_external_auth.go     |  10 +-
 test/e2e/settings/listen_nondefault_ports.go  |  19 +--
 test/e2e/settings/ssl_passthrough.go          |  32 +++-
 13 files changed, 265 insertions(+), 204 deletions(-)
 create mode 100644 test/e2e/HTTPBUN_IMAGE

diff --git a/test/e2e/HTTPBUN_IMAGE b/test/e2e/HTTPBUN_IMAGE
new file mode 100644
index 000000000..2d95865c7
--- /dev/null
+++ b/test/e2e/HTTPBUN_IMAGE
@@ -0,0 +1 @@
+registry.k8s.io/ingress-nginx/e2e-test-httpbun:v20230505-v0.0.1
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index 4ca034825..8011186a1 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -23,7 +23,6 @@ import (
 	"net/url"
 	"regexp"
 	"strings"
-	"time"
 
 	"golang.org/x/crypto/bcrypt"
 
@@ -38,7 +37,7 @@ import (
 )
 
 var _ = framework.DescribeAnnotation("auth-*", func() {
-	f := framework.NewDefaultFramework("auth")
+	f := framework.NewDefaultFramework("auth", framework.WithHTTPBunEnabled())
 
 	ginkgo.BeforeEach(func() {
 		f.NewEchoDeployment()
@@ -390,10 +389,10 @@ http {
 			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
 			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
 
-			httpbunIP := e.Subsets[0].Addresses[0].IP
+			nginxIP := e.Subsets[0].Addresses[0].IP
 
 			annotations = map[string]string{
-				"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/cookies/set/alma/armud", httpbunIP),
+				"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/cookies/set/alma/armud", nginxIP),
 				"nginx.ingress.kubernetes.io/auth-signin": "http://$host/auth/start",
 			}
 
@@ -457,21 +456,8 @@ http {
 		var ing *networking.Ingress
 
 		ginkgo.BeforeEach(func() {
-			f.NewHttpbunDeployment()
-
-			err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBunService, f.Namespace, 1)
-			assert.Nil(ginkgo.GinkgoT(), err)
-
-			e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBunService, metav1.GetOptions{})
-			assert.Nil(ginkgo.GinkgoT(), err)
-
-			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
-			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
-
-			httpbunIP := e.Subsets[0].Addresses[0].IP
-
 			annotations = map[string]string{
-				"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", httpbunIP),
+				"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", f.HTTPBunIP),
 				"nginx.ingress.kubernetes.io/auth-signin": "http://$host/auth/start",
 			}
 
@@ -650,20 +636,8 @@ http {
 		var ing *networking.Ingress
 
 		ginkgo.BeforeEach(func() {
-			f.NewHttpbunDeployment()
-
-			var httpbunIP string
-
-			err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBunService, f.Namespace, 1)
-			assert.Nil(ginkgo.GinkgoT(), err)
-
-			e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBunService, metav1.GetOptions{})
-			assert.Nil(ginkgo.GinkgoT(), err)
-
-			httpbunIP = e.Subsets[0].Addresses[0].IP
-
 			annotations = map[string]string{
-				"nginx.ingress.kubernetes.io/auth-url":                   fmt.Sprintf("http://%s/basic-auth/user/password", httpbunIP),
+				"nginx.ingress.kubernetes.io/auth-url":                   fmt.Sprintf("http://%s/basic-auth/user/password", f.HTTPBunIP),
 				"nginx.ingress.kubernetes.io/auth-signin":                "http://$host/auth/start",
 				"nginx.ingress.kubernetes.io/auth-signin-redirect-param": "orig",
 			}
@@ -729,23 +703,8 @@ http {
 		barPath := "/bar"
 
 		ginkgo.BeforeEach(func() {
-			f.NewHttpbunDeployment()
-
-			err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBunService, f.Namespace, 1)
-			assert.Nil(ginkgo.GinkgoT(), err)
-
-			framework.Sleep(1 * time.Second)
-
-			e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBunService, metav1.GetOptions{})
-			assert.Nil(ginkgo.GinkgoT(), err)
-
-			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
-			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
-
-			httpbunIP := e.Subsets[0].Addresses[0].IP
-
 			annotations := map[string]string{
-				"nginx.ingress.kubernetes.io/auth-url":            fmt.Sprintf("http://%s/basic-auth/user/password", httpbunIP),
+				"nginx.ingress.kubernetes.io/auth-url":            fmt.Sprintf("http://%s/basic-auth/user/password", f.HTTPBunIP),
 				"nginx.ingress.kubernetes.io/auth-signin":         "http://$host/auth/start",
 				"nginx.ingress.kubernetes.io/auth-cache-key":      "fixed",
 				"nginx.ingress.kubernetes.io/auth-cache-duration": "200 201 401 30m",
diff --git a/test/e2e/annotations/grpc.go b/test/e2e/annotations/grpc.go
index 2bdac553b..c8e530ead 100644
--- a/test/e2e/annotations/grpc.go
+++ b/test/e2e/annotations/grpc.go
@@ -37,7 +37,7 @@ import (
 )
 
 var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
-	f := framework.NewDefaultFramework("grpc")
+	f := framework.NewDefaultFramework("grpc", framework.WithHTTPBunEnabled())
 
 	ginkgo.It("should use grpc_pass in the configuration file", func() {
 		f.NewGRPCFortuneTellerDeployment()
@@ -124,8 +124,6 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 
 	ginkgo.It("authorization metadata should be overwritten by external auth response headers", func() {
 		f.NewGRPCBinDeployment()
-		f.NewHttpbunDeployment()
-
 		host := "echo"
 
 		svc := &corev1.Service{
@@ -148,19 +146,8 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 		}
 		f.EnsureService(svc)
 
-		err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBunService, f.Namespace, 1)
-		assert.Nil(ginkgo.GinkgoT(), err)
-
-		e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBunService, metav1.GetOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err)
-
-		assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
-		assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
-
-		httpbunIP := e.Subsets[0].Addresses[0].IP
-
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/auth-url":              fmt.Sprintf("http://%s/response-headers?authorization=foo", httpbunIP),
+			"nginx.ingress.kubernetes.io/auth-url":              fmt.Sprintf("http://%s/response-headers?authorization=foo", f.HTTPBunIP),
 			"nginx.ingress.kubernetes.io/auth-response-headers": "Authorization",
 			"nginx.ingress.kubernetes.io/backend-protocol":      "GRPC",
 		}
diff --git a/test/e2e/annotations/satisfy.go b/test/e2e/annotations/satisfy.go
index 758ad21a4..6ba6db33e 100644
--- a/test/e2e/annotations/satisfy.go
+++ b/test/e2e/annotations/satisfy.go
@@ -17,7 +17,6 @@ limitations under the License.
 package annotations
 
 import (
-	"context"
 	"fmt"
 	"net/http"
 	"net/url"
@@ -27,13 +26,12 @@ import (
 	"github.com/stretchr/testify/assert"
 
 	networking "k8s.io/api/networking/v1"
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
 var _ = framework.DescribeAnnotation("satisfy", func() {
-	f := framework.NewDefaultFramework("satisfy")
+	f := framework.NewDefaultFramework("satisfy", framework.WithHTTPBunEnabled())
 
 	ginkgo.BeforeEach(func() {
 		f.NewEchoDeployment()
@@ -84,17 +82,6 @@ var _ = framework.DescribeAnnotation("satisfy", func() {
 	ginkgo.It("should allow multiple auth with satisfy any", func() {
 		host := "auth"
 
-		// setup external auth
-		f.NewHttpbunDeployment()
-
-		err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBunService, f.Namespace, 1)
-		assert.Nil(ginkgo.GinkgoT(), err)
-
-		e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBunService, metav1.GetOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err)
-
-		httpbunIP := e.Subsets[0].Addresses[0].IP
-
 		// create basic auth secret at ingress
 		s := f.EnsureSecret(buildSecret("uname", "pwd", "basic-secret", f.Namespace))
 
@@ -105,7 +92,7 @@ var _ = framework.DescribeAnnotation("satisfy", func() {
 			"nginx.ingress.kubernetes.io/auth-realm":  "test basic auth",
 
 			// annotations for external auth
-			"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", httpbunIP),
+			"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", f.HTTPBunIP),
 			"nginx.ingress.kubernetes.io/auth-signin": "http://$host/auth/start",
 
 			// set satisfy any
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 565b8f4ac..d4e20fbf5 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -43,12 +43,28 @@ const HTTPBunService = "httpbun"
 // NipService name of external service using nip.io
 const NIPService = "external-nip"
 
+// HTTPBunImage is the default image that is used to deploy HTTPBun with the framwork
+var HTTPBunImage = os.Getenv("HTTPBUN_IMAGE")
+
+// EchoImage is the default image to be used by the echo service
+const EchoImage = "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:4938d1d91a2b7d19454460a8c1b010b89f6ff92d2987fd889ac3e8fc3b70d91a"
+
+// TODO: change all Deployment functions to use these options
+// in order to reduce complexity and have a unified API accross the
+// framework
 type deploymentOptions struct {
-	namespace      string
 	name           string
-	replicas       int
-	svcAnnotations map[string]string
+	namespace      string
 	image          string
+	port           int32
+	replicas       int
+	command        []string
+	args           []string
+	env            []corev1.EnvVar
+	volumeMounts   []corev1.VolumeMount
+	volumes        []corev1.Volume
+	svcAnnotations map[string]string
+	setProbe       bool
 }
 
 // WithDeploymentNamespace allows configuring the deployment's namespace
@@ -100,22 +116,25 @@ func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
 		namespace: f.Namespace,
 		name:      EchoService,
 		replicas:  1,
-		image:     "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:6fc5aa2994c86575975bb20a5203651207029a0d28e3f491d8a127d08baadab4",
+		image:     EchoImage,
 	}
 	for _, o := range opts {
 		o(options)
 	}
 
-	deployment := newDeployment(options.name, options.namespace, options.image, 80, int32(options.replicas),
+	f.EnsureDeployment(newDeployment(
+		options.name,
+		options.namespace,
+		options.image,
+		80,
+		int32(options.replicas),
 		nil, nil, nil,
 		[]corev1.VolumeMount{},
 		[]corev1.Volume{},
 		true,
-	)
+	))
 
-	f.EnsureDeployment(deployment)
-
-	service := &corev1.Service{
+	f.EnsureService(&corev1.Service{
 		ObjectMeta: metav1.ObjectMeta{
 			Name:        options.name,
 			Namespace:   options.namespace,
@@ -134,11 +153,15 @@ func (f *Framework) NewEchoDeployment(opts ...func(*deploymentOptions)) {
 				"app": options.name,
 			},
 		},
-	}
+	})
 
-	f.EnsureService(service)
-
-	err := WaitForEndpoints(f.KubeClientSet, DefaultTimeout, options.name, options.namespace, options.replicas)
+	err := WaitForEndpoints(
+		f.KubeClientSet,
+		DefaultTimeout,
+		options.name,
+		options.namespace,
+		options.replicas,
+	)
 	assert.Nil(ginkgo.GinkgoT(), err, "waiting for endpoints to become ready")
 }
 
@@ -147,6 +170,12 @@ func BuildNIPHost(ip string) string {
 	return fmt.Sprintf("%s.nip.io", ip)
 }
 
+// GetNipHost used to generate a nip host for external DNS resolving
+// for the instance deployed by the framework
+func (f *Framework) GetNIPHost() string {
+	return BuildNIPHost(f.HTTPBunIP)
+}
+
 // BuildNIPExternalNameService used to generate a service pointing to nip.io to
 // help resolve to an IP address
 func BuildNIPExternalNameService(f *Framework, ip, portName string) *corev1.Service {
@@ -177,22 +206,27 @@ func (f *Framework) NewHttpbunDeployment(opts ...func(*deploymentOptions)) strin
 		namespace: f.Namespace,
 		name:      HTTPBunService,
 		replicas:  1,
-		image:     "registry.k8s.io/ingress-nginx/e2e-test-httpbun:v20230505-v0.0.1",
+		image:     HTTPBunImage,
 	}
 	for _, o := range opts {
 		o(options)
 	}
 
-	deployment := newDeployment(options.name, options.namespace, options.image, 80, int32(options.replicas),
+	// Create the HTTPBun Deployment
+	f.EnsureDeployment(newDeployment(
+		options.name,
+		options.namespace,
+		options.image,
+		80,
+		int32(options.replicas),
 		nil, nil, nil,
 		[]corev1.VolumeMount{},
 		[]corev1.Volume{},
 		true,
-	)
+	))
 
-	f.EnsureDeployment(deployment)
-
-	service := &corev1.Service{
+	// Create a service pointing to deployment
+	f.EnsureService(&corev1.Service{
 		ObjectMeta: metav1.ObjectMeta{
 			Name:        options.name,
 			Namespace:   options.namespace,
@@ -211,14 +245,26 @@ func (f *Framework) NewHttpbunDeployment(opts ...func(*deploymentOptions)) strin
 				"app": options.name,
 			},
 		},
-	}
+	})
 
-	s := f.EnsureService(service)
-
-	err := WaitForEndpoints(f.KubeClientSet, DefaultTimeout, options.name, options.namespace, options.replicas)
+	// Wait for deployment to become available
+	err := WaitForEndpoints(
+		f.KubeClientSet,
+		DefaultTimeout,
+		options.name,
+		options.namespace,
+		options.replicas,
+	)
 	assert.Nil(ginkgo.GinkgoT(), err, "waiting for endpoints to become ready")
 
-	return s.Spec.ClusterIPs[0]
+	// Get cluster ip for HTTPBun to be used in tests
+	e, err := f.KubeClientSet.
+		CoreV1().
+		Endpoints(f.Namespace).
+		Get(context.TODO(), HTTPBunService, metav1.GetOptions{})
+	assert.Nil(ginkgo.GinkgoT(), err, "failed to get httpbun endpoint")
+
+	return e.Subsets[0].Addresses[0].IP
 }
 
 // NewSlowEchoDeployment creates a new deployment of the slow echo server image in a particular namespace.
@@ -276,13 +322,16 @@ func (f *Framework) NGINXDeployment(name string, cfg string, waitendpoint bool)
 		"nginx.conf": cfg,
 	}
 
-	_, err := f.KubeClientSet.CoreV1().ConfigMaps(f.Namespace).Create(context.TODO(), &corev1.ConfigMap{
-		ObjectMeta: metav1.ObjectMeta{
-			Name:      name,
-			Namespace: f.Namespace,
-		},
-		Data: cfgMap,
-	}, metav1.CreateOptions{})
+	_, err := f.KubeClientSet.
+		CoreV1().
+		ConfigMaps(f.Namespace).
+		Create(context.TODO(), &corev1.ConfigMap{
+			ObjectMeta: metav1.ObjectMeta{
+				Name:      name,
+				Namespace: f.Namespace,
+			},
+			Data: cfgMap,
+		}, metav1.CreateOptions{})
 	assert.Nil(ginkgo.GinkgoT(), err, "creating configmap")
 
 	deployment := newDeployment(name, f.Namespace, f.GetNginxBaseImage(), 80, 1,
diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index a3d5ea760..69f6dae78 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -67,16 +67,32 @@ type Framework struct {
 	IngressClass string
 
 	pod *v1.Pod
+	// We use httpbun as a service that we route to in our tests through
+	// the ingress controller. We add it as part of the framework as it
+	// is used extensively
+	HTTPBunIP      string
+	HTTPBunEnabled bool
+}
+
+// WithHTTPBunEnabled deploys an instance of HTTPBun for the specific test
+func WithHTTPBunEnabled() func(*Framework) {
+	return func(f *Framework) {
+		f.HTTPBunEnabled = true
+	}
 }
 
 // NewDefaultFramework makes a new framework and sets up a BeforeEach/AfterEach for
 // you (you can write additional before/after each functions).
-func NewDefaultFramework(baseName string) *Framework {
+func NewDefaultFramework(baseName string, opts ...func(*Framework)) *Framework {
 	defer ginkgo.GinkgoRecover()
 
 	f := &Framework{
 		BaseName: baseName,
 	}
+	// set framework options
+	for _, o := range opts {
+		o(f)
+	}
 
 	ginkgo.BeforeEach(f.BeforeEach)
 	ginkgo.AfterEach(f.AfterEach)
@@ -86,12 +102,16 @@ func NewDefaultFramework(baseName string) *Framework {
 
 // NewSimpleFramework makes a new framework that allows the usage of a namespace
 // for arbitraty tests.
-func NewSimpleFramework(baseName string) *Framework {
+func NewSimpleFramework(baseName string, opts ...func(*Framework)) *Framework {
 	defer ginkgo.GinkgoRecover()
 
 	f := &Framework{
 		BaseName: baseName,
 	}
+	// set framework options
+	for _, o := range opts {
+		o(f)
+	}
 
 	ginkgo.BeforeEach(f.CreateEnvironment)
 	ginkgo.AfterEach(f.DestroyEnvironment)
@@ -140,6 +160,11 @@ func (f *Framework) BeforeEach() {
 	assert.Nil(ginkgo.GinkgoT(), err, "updating ingress controller pod information")
 
 	f.WaitForNginxListening(80)
+
+	// If HTTPBun is enabled deploy an instance to the namespace
+	if f.HTTPBunEnabled {
+		f.HTTPBunIP = f.NewHttpbunDeployment()
+	}
 }
 
 // AfterEach deletes the namespace, after reading its events.
diff --git a/test/e2e/run-e2e-suite.sh b/test/e2e/run-e2e-suite.sh
index a3bf589cd..b56312afd 100755
--- a/test/e2e/run-e2e-suite.sh
+++ b/test/e2e/run-e2e-suite.sh
@@ -51,6 +51,7 @@ fi
 
 BASEDIR=$(dirname "$0")
 NGINX_BASE_IMAGE=$(cat $BASEDIR/../../NGINX_BASE)
+HTTPBUN_IMAGE=$(cat $BASEDIR/HTTPBUN_IMAGE)
 
 echo -e "${BGREEN}Granting permissions to ingress-nginx e2e service account...${NC}"
 kubectl create serviceaccount ingress-nginx-e2e || true
@@ -79,6 +80,7 @@ kubectl run --rm \
   --env="IS_CHROOT=${IS_CHROOT:-false}"\
   --env="E2E_CHECK_LEAKS=${E2E_CHECK_LEAKS}" \
   --env="NGINX_BASE_IMAGE=${NGINX_BASE_IMAGE}" \
+  --env="HTTPBUN_IMAGE=${HTTPBUN_IMAGE}" \
   --overrides='{ "apiVersion": "v1", "spec":{"serviceAccountName": "ingress-nginx-e2e"}}' \
   e2e --image=nginx-ingress-controller:e2e
 
diff --git a/test/e2e/servicebackend/service_externalname.go b/test/e2e/servicebackend/service_externalname.go
index 2fd6cd080..89ae77b10 100644
--- a/test/e2e/servicebackend/service_externalname.go
+++ b/test/e2e/servicebackend/service_externalname.go
@@ -35,7 +35,7 @@ import (
 )
 
 var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
-	f := framework.NewDefaultFramework("type-externalname")
+	f := framework.NewDefaultFramework("type-externalname", framework.WithHTTPBunEnabled())
 
 	ginkgo.It("works with external name set to incomplete fqdn", func() {
 		f.NewEchoDeployment()
@@ -43,7 +43,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 
 		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
-				Name:      framework.HTTPBunService,
+				Name:      framework.NIPService,
 				Namespace: f.Namespace,
 			},
 			Spec: corev1.ServiceSpec{
@@ -51,10 +51,15 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 				Type:         corev1.ServiceTypeExternalName,
 			},
 		}
-
 		f.EnsureService(svc)
 
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, nil)
+		ing := framework.NewSingleIngress(host,
+			"/",
+			host,
+			f.Namespace,
+			framework.NIPService,
+			80,
+			nil)
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -70,10 +75,6 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should return 200 for service type=ExternalName without a port defined", func() {
-		// This is a workaround so we only depend on a self hosted instance of
-		// httpbun
-		ip := f.NewHttpbunDeployment()
-
 		host := "echo"
 
 		svc := &corev1.Service{
@@ -82,17 +83,23 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 				Namespace: f.Namespace,
 			},
 			Spec: corev1.ServiceSpec{
-				ExternalName: framework.BuildNIPHost(ip),
+				ExternalName: f.GetNIPHost(),
 				Type:         corev1.ServiceTypeExternalName,
 			},
 		}
-
 		f.EnsureService(svc)
 
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/upstream-vhost": framework.BuildNIPHost(ip),
+			"nginx.ingress.kubernetes.io/upstream-vhost": f.GetNIPHost(),
 		}
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, annotations)
+
+		ing := framework.NewSingleIngress(host,
+			"/",
+			host,
+			f.Namespace,
+			framework.HTTPBunService,
+			80,
+			annotations)
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -108,19 +115,21 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should return 200 for service type=ExternalName with a port defined", func() {
-		// This is a workaround so we only depend on a self hosted instance of
-		// httpbun
-		ip := f.NewHttpbunDeployment()
-
 		host := "echo"
 
-		svc := framework.BuildNIPExternalNameService(f, ip, host)
+		svc := framework.BuildNIPExternalNameService(f, f.HTTPBunIP, host)
 		f.EnsureService(svc)
 
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/upstream-vhost": framework.BuildNIPHost(ip),
+			"nginx.ingress.kubernetes.io/upstream-vhost": f.GetNIPHost(),
 		}
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, annotations)
+		ing := framework.NewSingleIngress(host,
+			"/",
+			host,
+			f.Namespace,
+			framework.HTTPBunService,
+			80,
+			annotations)
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -140,7 +149,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 
 		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
-				Name:      framework.HTTPBunService,
+				Name:      framework.NIPService,
 				Namespace: f.Namespace,
 			},
 			Spec: corev1.ServiceSpec{
@@ -148,10 +157,15 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 				Type:         corev1.ServiceTypeExternalName,
 			},
 		}
-
 		f.EnsureService(svc)
 
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, nil)
+		ing := framework.NewSingleIngress(host,
+			"/",
+			host,
+			f.Namespace,
+			framework.NIPService,
+			80,
+			nil)
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -167,19 +181,22 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should return 200 for service type=ExternalName using a port name", func() {
-		// This is a workaround so we only depend on a self hosted instance of
-		// httpbun
-		ip := f.NewHttpbunDeployment()
-
 		host := "echo"
 
-		svc := framework.BuildNIPExternalNameService(f, ip, host)
+		svc := framework.BuildNIPExternalNameService(f, f.HTTPBunIP, host)
 		f.EnsureService(svc)
 
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/upstream-vhost": framework.BuildNIPHost(ip),
+			"nginx.ingress.kubernetes.io/upstream-vhost": f.GetNIPHost(),
 		}
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, annotations)
+		ing := framework.NewSingleIngress(host,
+			"/",
+			host,
+			f.Namespace,
+			framework.HTTPBunService,
+			80,
+			annotations)
+
 		namedBackend := networking.IngressBackend{
 			Service: &networking.IngressServiceBackend{
 				Name: framework.NIPService,
@@ -188,6 +205,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 				},
 			},
 		}
+
 		ing.Spec.Rules[0].HTTP.Paths[0].Backend = namedBackend
 		f.EnsureIngress(ing)
 
@@ -204,10 +222,6 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should return 200 for service type=ExternalName using FQDN with trailing dot", func() {
-		// This is a workaround so we only depend on a self hosted instance of
-		// httpbun
-		ip := f.NewHttpbunDeployment()
-
 		host := "echo"
 
 		svc := &corev1.Service{
@@ -216,14 +230,19 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 				Namespace: f.Namespace,
 			},
 			Spec: corev1.ServiceSpec{
-				ExternalName: framework.BuildNIPHost(ip),
+				ExternalName: f.GetNIPHost(),
 				Type:         corev1.ServiceTypeExternalName,
 			},
 		}
-
 		f.EnsureService(svc)
 
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, nil)
+		ing := framework.NewSingleIngress(host,
+			"/",
+			host,
+			f.Namespace,
+			framework.HTTPBunService,
+			80,
+			nil)
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -239,20 +258,23 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should update the external name after a service update", func() {
-		// This is a workaround so we only depend on a self hosted instance of
-		// httpbun
-		ip := f.NewHttpbunDeployment()
-
 		host := "echo"
 
-		svc := framework.BuildNIPExternalNameService(f, ip, host)
+		svc := framework.BuildNIPExternalNameService(f, f.HTTPBunIP, host)
 		f.EnsureService(svc)
 
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/upstream-vhost": framework.BuildNIPHost(ip),
+			"nginx.ingress.kubernetes.io/upstream-vhost": f.GetNIPHost(),
 		}
 
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, annotations)
+		ing := framework.NewSingleIngress(host,
+			"/",
+			host,
+			f.Namespace,
+			framework.HTTPBunService,
+			80,
+			annotations)
+
 		namedBackend := networking.IngressBackend{
 			Service: &networking.IngressServiceBackend{
 				Name: framework.NIPService,
@@ -279,14 +301,20 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 
 		assert.Contains(ginkgo.GinkgoT(), body, `"X-Forwarded-Host": "echo"`)
 
-		svc, err := f.KubeClientSet.CoreV1().Services(f.Namespace).Get(context.TODO(), framework.NIPService, metav1.GetOptions{})
+		svc, err := f.KubeClientSet.
+			CoreV1().
+			Services(f.Namespace).
+			Get(context.TODO(), framework.NIPService, metav1.GetOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error obtaining external service")
 
-		ip = f.NewHttpbunDeployment(framework.WithDeploymentName("eu-server"))
-
+		//Deploy a new instance to switch routing to
+		ip := f.NewHttpbunDeployment(framework.WithDeploymentName("eu-server"))
 		svc.Spec.ExternalName = framework.BuildNIPHost(ip)
 
-		_, err = f.KubeClientSet.CoreV1().Services(f.Namespace).Update(context.Background(), svc, metav1.UpdateOptions{})
+		_, err = f.KubeClientSet.
+			CoreV1().
+			Services(f.Namespace).
+			Update(context.Background(), svc, metav1.UpdateOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error updating external service")
 
 		framework.Sleep()
@@ -302,21 +330,31 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 		assert.Contains(ginkgo.GinkgoT(), body, `"X-Forwarded-Host": "echo"`)
 
 		ginkgo.By("checking the service is updated to use new host")
-		curlCmd := fmt.Sprintf("curl --fail --silent http://localhost:%v/configuration/backends", nginx.StatusPort)
+		curlCmd := fmt.Sprintf(
+			"curl --fail --silent http://localhost:%v/configuration/backends",
+			nginx.StatusPort,
+		)
+
 		output, err := f.ExecIngressPod(curlCmd)
 		assert.Nil(ginkgo.GinkgoT(), err)
-		assert.Contains(ginkgo.GinkgoT(), output, fmt.Sprintf("{\"address\":\"%s\"", framework.BuildNIPHost(ip)))
+		assert.Contains(
+			ginkgo.GinkgoT(),
+			output,
+			fmt.Sprintf("{\"address\":\"%s\"", framework.BuildNIPHost(ip)),
+		)
 	})
 
 	ginkgo.It("should sync ingress on external name service addition/deletion", func() {
-		// This is a workaround so we only depend on a self hosted instance of
-		// httpbun
-		ip := f.NewHttpbunDeployment()
-
 		host := "echo"
 
 		// Create the Ingress first
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.NIPService, 80, nil)
+		ing := framework.NewSingleIngress(host,
+			"/",
+			host,
+			f.Namespace,
+			framework.NIPService,
+			80,
+			nil)
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -332,7 +370,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 			Status(http.StatusServiceUnavailable)
 
 		// Now create the service
-		svc := framework.BuildNIPExternalNameService(f, ip, host)
+		svc := framework.BuildNIPExternalNameService(f, f.HTTPBunIP, host)
 		f.EnsureService(svc)
 
 		framework.Sleep()
@@ -345,7 +383,10 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 			Status(http.StatusOK)
 
 		// And back to 503 after deleting the service
-		err := f.KubeClientSet.CoreV1().Services(f.Namespace).Delete(context.TODO(), framework.NIPService, metav1.DeleteOptions{})
+		err := f.KubeClientSet.
+			CoreV1().
+			Services(f.Namespace).
+			Delete(context.TODO(), framework.NIPService, metav1.DeleteOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error deleting external service")
 
 		framework.Sleep()
diff --git a/test/e2e/settings/brotli.go b/test/e2e/settings/brotli.go
index a13678f66..aacaddec5 100644
--- a/test/e2e/settings/brotli.go
+++ b/test/e2e/settings/brotli.go
@@ -28,14 +28,13 @@ import (
 )
 
 var _ = framework.IngressNginxDescribe("brotli", func() {
-	f := framework.NewDefaultFramework("brotli")
+	f := framework.NewDefaultFramework(
+		"brotli",
+		framework.WithHTTPBunEnabled(),
+	)
 
 	host := "brotli"
 
-	ginkgo.BeforeEach(func() {
-		f.NewHttpbunDeployment()
-	})
-
 	ginkgo.It("should only compress responses that meet the `brotli-min-length` condition", func() {
 		brotliMinLength := 24
 		contentEncoding := "application/octet-stream"
diff --git a/test/e2e/settings/disable_service_external_name.go b/test/e2e/settings/disable_service_external_name.go
index 7f03e5355..4ecf69e81 100644
--- a/test/e2e/settings/disable_service_external_name.go
+++ b/test/e2e/settings/disable_service_external_name.go
@@ -33,7 +33,10 @@ import (
 )
 
 var _ = framework.IngressNginxDescribe("[Flag] disable-service-external-name", func() {
-	f := framework.NewDefaultFramework("disabled-service-external-name")
+	f := framework.NewDefaultFramework(
+		"disabled-service-external-name",
+		framework.WithHTTPBunEnabled(),
+	)
 
 	ginkgo.BeforeEach(func() {
 		f.NewEchoDeployment(framework.WithDeploymentReplicas(2))
@@ -54,21 +57,18 @@ var _ = framework.IngressNginxDescribe("[Flag] disable-service-external-name", f
 
 		externalhost := "echo-external-svc.com"
 
-		ip := f.NewHttpbunDeployment()
-		svc := framework.BuildNIPExternalNameService(f, ip, "echo")
-		f.EnsureService(svc)
+		f.EnsureService(framework.BuildNIPExternalNameService(f, f.HTTPBunIP, "echo"))
 
-		svcexternal := &corev1.Service{
+		f.EnsureService(&corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
 				Name:      "external",
 				Namespace: f.Namespace,
 			},
 			Spec: corev1.ServiceSpec{
-				ExternalName: framework.BuildNIPHost(ip),
+				ExternalName: f.GetNIPHost(),
 				Type:         corev1.ServiceTypeExternalName,
 			},
-		}
-		f.EnsureService(svcexternal)
+		})
 
 		ingexternal := framework.NewSingleIngress(externalhost, "/", externalhost, f.Namespace, "external", 80, nil)
 		f.EnsureIngress(ingexternal)
diff --git a/test/e2e/settings/global_external_auth.go b/test/e2e/settings/global_external_auth.go
index c5964299f..cc98099ae 100644
--- a/test/e2e/settings/global_external_auth.go
+++ b/test/e2e/settings/global_external_auth.go
@@ -32,7 +32,10 @@ import (
 )
 
 var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
-	f := framework.NewDefaultFramework("global-external-auth")
+	f := framework.NewDefaultFramework(
+		"global-external-auth",
+		framework.WithHTTPBunEnabled(),
+	)
 
 	host := "global-external-auth"
 
@@ -50,7 +53,6 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 
 	ginkgo.BeforeEach(func() {
 		f.NewEchoDeployment()
-		f.NewHttpbunDeployment()
 	})
 
 	ginkgo.Context("when global external authentication is configured", func() {
@@ -307,9 +309,9 @@ http {
 			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
 			assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
 
-			httpbunIP := e.Subsets[0].Addresses[0].IP
+			nginxIP := e.Subsets[0].Addresses[0].IP
 
-			f.UpdateNginxConfigMapData(globalExternalAuthURLSetting, fmt.Sprintf("http://%s/cookies/set/alma/armud", httpbunIP))
+			f.UpdateNginxConfigMapData(globalExternalAuthURLSetting, fmt.Sprintf("http://%s/cookies/set/alma/armud", nginxIP))
 
 			ing1 = framework.NewSingleIngress(host, "/", host, f.Namespace, "http-cookie-with-error", 80, nil)
 			f.EnsureIngress(ing1)
diff --git a/test/e2e/settings/listen_nondefault_ports.go b/test/e2e/settings/listen_nondefault_ports.go
index e682cef06..7e3b11b21 100644
--- a/test/e2e/settings/listen_nondefault_ports.go
+++ b/test/e2e/settings/listen_nondefault_ports.go
@@ -17,14 +17,12 @@ limitations under the License.
 package settings
 
 import (
-	"context"
 	"fmt"
 	"net/http"
 	"strings"
 
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
@@ -33,7 +31,7 @@ var _ = framework.IngressNginxDescribe("[Flag] custom HTTP and HTTPS ports", fun
 
 	host := "forwarded-headers"
 
-	f := framework.NewDefaultFramework("forwarded-port-headers")
+	f := framework.NewDefaultFramework("forwarded-port-headers", framework.WithHTTPBunEnabled())
 
 	ginkgo.BeforeEach(func() {
 		f.NewEchoDeployment()
@@ -98,21 +96,8 @@ var _ = framework.IngressNginxDescribe("[Flag] custom HTTP and HTTPS ports", fun
 		ginkgo.Context("when external authentication is configured", func() {
 
 			ginkgo.It("should set the X-Forwarded-Port header to 443", func() {
-				f.NewHttpbunDeployment()
-
-				err := framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, framework.HTTPBunService, f.Namespace, 1)
-				assert.Nil(ginkgo.GinkgoT(), err)
-
-				e, err := f.KubeClientSet.CoreV1().Endpoints(f.Namespace).Get(context.TODO(), framework.HTTPBunService, metav1.GetOptions{})
-				assert.Nil(ginkgo.GinkgoT(), err)
-
-				assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets), 1, "expected at least one endpoint")
-				assert.GreaterOrEqual(ginkgo.GinkgoT(), len(e.Subsets[0].Addresses), 1, "expected at least one address ready in the endpoint")
-
-				httpbunIP := e.Subsets[0].Addresses[0].IP
-
 				annotations := map[string]string{
-					"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", httpbunIP),
+					"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", f.HTTPBunIP),
 					"nginx.ingress.kubernetes.io/auth-signin": "http://$host/auth/start",
 				}
 
diff --git a/test/e2e/settings/ssl_passthrough.go b/test/e2e/settings/ssl_passthrough.go
index a906a2d11..f0859f878 100644
--- a/test/e2e/settings/ssl_passthrough.go
+++ b/test/e2e/settings/ssl_passthrough.go
@@ -34,7 +34,7 @@ import (
 )
 
 var _ = framework.IngressNginxDescribe("[Flag] enable-ssl-passthrough", func() {
-	f := framework.NewDefaultFramework("ssl-passthrough")
+	f := framework.NewDefaultFramework("ssl-passthrough", framework.WithHTTPBunEnabled())
 
 	ginkgo.BeforeEach(func() {
 		err := f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
@@ -86,7 +86,14 @@ var _ = framework.IngressNginxDescribe("[Flag] enable-ssl-passthrough", func() {
 				"nginx.ingress.kubernetes.io/ssl-passthrough": "true",
 			}
 
-			ingressDef := framework.NewSingleIngressWithTLS(host, "/", host, []string{host}, f.Namespace, echoName, 80, annotations)
+			ingressDef := framework.NewSingleIngressWithTLS(host,
+				"/",
+				host,
+				[]string{host},
+				f.Namespace,
+				echoName,
+				80,
+				annotations)
 			tlsConfig, err := framework.CreateIngressTLSSecret(f.KubeClientSet,
 				ingressDef.Spec.TLS[0].Hosts,
 				ingressDef.Spec.TLS[0].SecretName,
@@ -119,7 +126,17 @@ var _ = framework.IngressNginxDescribe("[Flag] enable-ssl-passthrough", func() {
 					Value: "/certs/tls.key",
 				},
 			}
-			f.NewDeploymentWithOpts("echopass", "ghcr.io/sharat87/httpbun:latest", 80, 1, nil, nil, envs, volumeMount, volume, false)
+
+			f.NewDeploymentWithOpts("echopass",
+				framework.HTTPBunImage,
+				80,
+				1,
+				nil,
+				nil,
+				envs,
+				volumeMount,
+				volume,
+				false)
 
 			f.EnsureIngress(ingressDef)
 
@@ -133,7 +150,14 @@ var _ = framework.IngressNginxDescribe("[Flag] enable-ssl-passthrough", func() {
 
 			/* This one should not receive traffic as it does not contain passthrough annotation */
 			hostBad := "noannotationnopassthrough.com"
-			ingBad := f.EnsureIngress(framework.NewSingleIngressWithTLS(hostBad, "/", hostBad, []string{hostBad}, f.Namespace, echoName, 80, nil))
+			ingBad := f.EnsureIngress(framework.NewSingleIngressWithTLS(hostBad,
+				"/",
+				hostBad,
+				[]string{hostBad},
+				f.Namespace,
+				echoName,
+				80,
+				nil))
 			tlsConfigBad, err := framework.CreateIngressTLSSecret(f.KubeClientSet,
 				ingBad.Spec.TLS[0].Hosts,
 				ingBad.Spec.TLS[0].SecretName,

From 436df32c2c50dee5b984e06b86b2660f32a5a384 Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Mon, 12 Jun 2023 12:47:48 +0200
Subject: [PATCH 0819/1641] add distroless otel init (#10035)

add distroless otel init
---
 charts/ingress-nginx/templates/_helpers.tpl   |   6 +-
 .../templates/controller-deployment.yaml      |   2 +-
 images/opentelemetry/rootfs/Dockerfile        |  18 ++-
 images/opentelemetry/rootfs/build.sh          |   3 +
 images/opentelemetry/rootfs/go.mod            |   3 +
 images/opentelemetry/rootfs/init_module.go    | 104 ++++++++++++++++++
 images/opentelemetry/rootfs/init_module.sh    |  22 ----
 7 files changed, 131 insertions(+), 27 deletions(-)
 create mode 100644 images/opentelemetry/rootfs/go.mod
 create mode 100644 images/opentelemetry/rootfs/init_module.go
 delete mode 100755 images/opentelemetry/rootfs/init_module.sh

diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index 7db5b2ca8..548e8cf12 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -201,8 +201,12 @@ Extra modules.
 
 - name: {{ .name }}
   image: {{ .image }}
+  {{- if .distroless | default false }}
+  command: ['/init_module']
+  {{- else }}
   command: ['sh', '-c', '/usr/local/bin/init_module.sh']
-  {{- if (.containerSecurityContext) }}
+  {{- end }}
+  {{- if .containerSecurityContext }}
   securityContext: {{ .containerSecurityContext | toYaml | nindent 4 }}
   {{- end }}
   volumeMounts:
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 323d87623..7fe8804ea 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -190,7 +190,7 @@ spec:
       {{- end }}
       {{- if .Values.controller.opentelemetry.enabled}}
           {{ $otelContainerSecurityContext := $.Values.controller.opentelemetry.containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext) | nindent 8}}
+          {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext "distroless" false) | nindent 8}}
       {{- end}}
     {{- end }}
     {{- if .Values.controller.hostNetwork }}
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index 69d82cda2..d15c28bbf 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -21,9 +21,11 @@ COPY . /opt/third_party/
 # install build tools
 RUN apk update \
 	&& apk upgrade \
-	&& apk add -U bash cmake \
+	&& apk add -U bash cmake ninja \
 	&& bash /opt/third_party/build.sh -p
 
+ENV NINJA_STATUS "[%p/%f/%t]"
+
 # install gRPC
 FROM base as grpc
 RUN bash /opt/third_party/build.sh -g v1.49.2
@@ -39,7 +41,17 @@ COPY --from=grpc /opt/third_party/install/ /usr
 COPY --from=otel-cpp /opt/third_party/install/ /usr
 RUN bash /opt/third_party/build.sh -n
 
-FROM alpine:3.18.0 as final
-COPY --from=base /opt/third_party/init_module.sh /usr/local/bin/init_module.sh
+FROM cgr.dev/chainguard/go:latest as build-init
+
+WORKDIR /go/src/app
+COPY . .
+
+RUN go mod download
+RUN CGO_ENABLED=0 go build -o /go/bin/init_module
+
+FROM cgr.dev/chainguard/static as final
+COPY --from=build-init /go/bin/init_module /
 COPY --from=nginx /etc/nginx/modules /etc/nginx/modules
 COPY --from=nginx /opt/third_party/install/lib /etc/nginx/modules
+
+CMD ["/init_module"]
diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
index 6ad4601c6..30faad304 100755
--- a/images/opentelemetry/rootfs/build.sh
+++ b/images/opentelemetry/rootfs/build.sh
@@ -70,6 +70,7 @@ install_grpc()
   mkdir -p $BUILD_PATH/grpc
   cd ${BUILD_PATH}/grpc
   cmake -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
+    -G Ninja \
     -DGRPC_GIT_TAG=${GRPC_GIT_TAG} /opt/third_party \
     -DgRPC_BUILD_GRPC_NODE_PLUGIN=OFF \
     -DgRPC_BUILD_GRPC_OBJECTIVE_C_PLUGIN=OFF \
@@ -92,6 +93,7 @@ install_otel()
   cd .build
 
   cmake -DCMAKE_BUILD_TYPE=Release \
+        -G Ninja \
         -DCMAKE_POSITION_INDEPENDENT_CODE=TRUE  \
         -DWITH_ZIPKIN=OFF \
         -DWITH_JAEGER=OFF \
@@ -143,6 +145,7 @@ install_nginx()
   mkdir -p build
   cd build
   cmake -DCMAKE_BUILD_TYPE=Release \
+    -G Ninja \
     -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
     -DBUILD_SHARED_LIBS=ON \
     -DNGINX_VERSION=${NGINX_VERSION} \
diff --git a/images/opentelemetry/rootfs/go.mod b/images/opentelemetry/rootfs/go.mod
new file mode 100644
index 000000000..f636c81b7
--- /dev/null
+++ b/images/opentelemetry/rootfs/go.mod
@@ -0,0 +1,3 @@
+module init-otel
+
+go 1.20
diff --git a/images/opentelemetry/rootfs/init_module.go b/images/opentelemetry/rootfs/init_module.go
new file mode 100644
index 000000000..bebec728f
--- /dev/null
+++ b/images/opentelemetry/rootfs/init_module.go
@@ -0,0 +1,104 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package main
+
+import (
+	"fmt"
+	"io"
+	"os"
+	"path/filepath"
+)
+
+func main() {
+	// Enable error handling for all operations
+	err := run()
+	if err != nil {
+		fmt.Fprintf(os.Stderr, "Error: %v\n", err)
+		os.Exit(1)
+	}
+}
+
+func run() error {
+	// Create the target directory if it doesn't exist
+	targetDir := "/modules_mount/etc/nginx/modules/otel"
+	err := os.MkdirAll(targetDir, os.ModePerm)
+	if err != nil {
+		return fmt.Errorf("failed to create target directory: %w", err)
+	}
+
+	// Copy files from source directory to target directory
+	sourceDir := "/etc/nginx/modules/"
+	err = filepath.Walk(sourceDir, func(path string, info os.FileInfo, err error) error {
+		if err != nil {
+			return err
+		}
+
+		// Skip directories
+		if info.IsDir() {
+			return nil
+		}
+
+		// Calculate the destination path
+		relPath, err := filepath.Rel(sourceDir, path)
+		if err != nil {
+			return err
+		}
+		destPath := filepath.Join(targetDir, relPath)
+
+		// Create the destination directory if it doesn't exist
+		destDir := filepath.Dir(destPath)
+		err = os.MkdirAll(destDir, os.ModePerm)
+		if err != nil {
+			return err
+		}
+
+		// Copy the file
+		err = copyFile(path, destPath)
+		if err != nil {
+			return err
+		}
+
+		return nil
+	})
+
+	if err != nil {
+		return fmt.Errorf("failed to copy files: %w", err)
+	}
+
+	return nil
+}
+
+func copyFile(sourcePath, destPath string) error {
+	sourceFile, err := os.Open(sourcePath)
+	if err != nil {
+		return err
+	}
+	defer sourceFile.Close()
+
+	destFile, err := os.Create(destPath)
+	if err != nil {
+		return err
+	}
+	defer destFile.Close()
+
+	_, err = io.Copy(destFile, sourceFile)
+	if err != nil {
+		return err
+	}
+
+	return nil
+}
diff --git a/images/opentelemetry/rootfs/init_module.sh b/images/opentelemetry/rootfs/init_module.sh
deleted file mode 100755
index 5a675aa2b..000000000
--- a/images/opentelemetry/rootfs/init_module.sh
+++ /dev/null
@@ -1,22 +0,0 @@
-#!/bin/sh
-
-# Copyright 2021 The Kubernetes Authors.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-set -o errexit
-set -o nounset
-set -o pipefail
-
-mkdir -p /modules_mount/etc/nginx/modules/otel
-cp -R /etc/nginx/modules/* /modules_mount/etc/nginx/modules/otel

From dd6d8e0d9f3def3bf9a85a1bac972418e67e5212 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 12 Jun 2023 05:03:48 -0700
Subject: [PATCH 0820/1641] Bump docker/setup-buildx-action from 2.5.0 to 2.6.0
 (#10077)

Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.5.0 to 2.6.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/4b4e9c3e2d4531116a6f8ba8e71fc6e2cb6e6c8c...6a58db7e0d21ca03e6c44877909e80e45217eed2)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 3406b250f..756d65c3e 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -158,7 +158,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@4b4e9c3e2d4531116a6f8ba8e71fc6e2cb6e6c8c # v2.5.0
+        uses: docker/setup-buildx-action@6a58db7e0d21ca03e6c44877909e80e45217eed2 # v2.6.0
         with:
           version: latest
 

From 18e6bfdebfcc2ba1bf2f369e7fd10af72bd2f428 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 12 Jun 2023 05:05:47 -0700
Subject: [PATCH 0821/1641] Bump aquasecurity/trivy-action from 0.10.0 to
 0.11.2 (#10078)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.10.0 to 0.11.2.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/e5f43133f6e8736992c9f3c1b3296e24b37e17f2...41f05d9ecffa2ed3f1580af306000f734b733e54)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 069c9f974..9814c2c95 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@e5f43133f6e8736992c9f3c1b3296e24b37e17f2 # v0.10.0
+        uses: aquasecurity/trivy-action@41f05d9ecffa2ed3f1580af306000f734b733e54 # v0.11.2
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'

From 5544c1f1f639e4f13905b927854d4e48e83d5658 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 12 Jun 2023 05:33:49 -0700
Subject: [PATCH 0822/1641] Bump docker/setup-qemu-action from 2.1.0 to 2.2.0
 (#10075)

Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 2.1.0 to 2.2.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](https://github.com/docker/setup-qemu-action/compare/e81a89b1732b9c48d79cd809d8d81d79c4647a18...2b82ce82d56a2a04d2637cd93a637ae1b359c0a7)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 756d65c3e..9e3e97edf 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -154,7 +154,7 @@ jobs:
           check-latest: true
 
       - name: Set up QEMU
-        uses: docker/setup-qemu-action@e81a89b1732b9c48d79cd809d8d81d79c4647a18 # v2.1.0
+        uses: docker/setup-qemu-action@2b82ce82d56a2a04d2637cd93a637ae1b359c0a7 # v2.2.0
 
       - name: Set up Docker Buildx
         id: buildx

From 4eeee031c76ac3403f845c8bf85e95caef87fee0 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 12 Jun 2023 05:35:49 -0700
Subject: [PATCH 0823/1641] Bump actions/checkout from 3.5.2 to 3.5.3 (#10076)

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.2 to 3.5.3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/8e5e7e5ab8b370d6c329ec480221332ada57f0ab...c85c95e3d7251135ab7dc9ce3241c5835cc595a9)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 22 +++++++++++-----------
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  2 +-
 .github/workflows/vulnerability-scans.yaml |  4 ++--
 8 files changed, 21 insertions(+), 21 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 9e3e97edf..abb2af532 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -42,7 +42,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -68,7 +68,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - name: Run Gosec Security Scanner
         uses: securego/gosec@c5ea1b7bdd9efc3792e513258853552b0ae31e06 # v2.16.0
@@ -85,7 +85,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
       
       - name: Set up Go
         id: go
@@ -104,7 +104,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
       
       - name: Set up Go
         id: go
@@ -123,7 +123,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
       
       - name: Set up Go
         id: go
@@ -144,7 +144,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - name: Set up Go
         id: go
@@ -211,7 +211,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - name: Setup Go
         uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
@@ -286,7 +286,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -336,7 +336,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -380,7 +380,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
@@ -447,7 +447,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 4f04bdaed..625c2f461 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@1360a344ccb0ab6e9475edef90ad2f46bf8003b1 # v3.0.6
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 1a2ceaa83..f7aee6610 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 2a82fa124..6303b6a27 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - name: Run Artifact Hub lint
         run: |
@@ -61,7 +61,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 9e87bf1b2..36f1f1ede 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index c5c6fc2b1..6088f77f8 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -17,7 +17,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 72acf608a..72a112ac4 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
         with:
           persist-credentials: false
 
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 9814c2c95..af7d8bda1 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - shell: bash
         id: test

From f1e3f2fa3c38a8a5473bd253175c3f6525bc3f53 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Tue, 13 Jun 2023 10:45:58 +0800
Subject: [PATCH 0824/1641] docs: add netlify configuration (#10073)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 Makefile     |  5 +++++
 netlify.toml | 10 ++++++++++
 2 files changed, 15 insertions(+)
 create mode 100644 netlify.toml

diff --git a/Makefile b/Makefile
index fc40a39bb..7b413141a 100644
--- a/Makefile
+++ b/Makefile
@@ -262,3 +262,8 @@ release: ensure-buildx clean
 		--build-arg COMMIT_SHA="$(COMMIT_SHA)" \
 		--build-arg BUILD_ID="$(BUILD_ID)" \
 		-t $(REGISTRY)/controller-chroot:$(TAG) rootfs -f rootfs/Dockerfile-chroot
+
+.PHONY: build-docs
+build-docs:
+	pip install -U mkdocs-material==6.2.4 mkdocs-awesome-pages-plugin mkdocs-minify-plugin mkdocs-redirects
+	mkdocs build --config-file mkdocs.yml
diff --git a/netlify.toml b/netlify.toml
new file mode 100644
index 000000000..add8d4fc3
--- /dev/null
+++ b/netlify.toml
@@ -0,0 +1,10 @@
+# netlify configuration
+[build]
+publish = "site"
+command = "make build-docs"
+# available here https://github.com/netlify/build-image/blob/focal/included_software.md#languages
+environment = { PYTHON_VERSION = "3.8" }
+
+[context.deploy-preview]
+  publish = "site/"
+  command = "make build-docs"

From cccba35005962f9eee96d2b592cc5b7b1485d965 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Wed, 14 Jun 2023 03:55:59 +0800
Subject: [PATCH 0825/1641] Revert "Remove fastcgi feature" (#10081)

* Revert "Remove fastcgi feature (#9864)"

This reverts commit 90ed0ccdbe4edd55ad4ab16ffec40be64f3308d9.

* revert fastcgi* annotations warning

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

---------

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 .github/workflows/ci.yaml                     |   6 +
 MANUAL_RELEASE.md                             |   2 +
 docs/e2e-tests.md                             | 131 +-------
 docs/kubectl-plugin.md                        |   1 +
 docs/user-guide/fcgi-services.md              | 118 +++++++-
 .../nginx-configuration/annotations.md        |   2 +-
 images/fastcgi-helloserver/Makefile           |  59 ++++
 images/fastcgi-helloserver/cloudbuild.yaml    |  22 ++
 images/fastcgi-helloserver/rootfs/Dockerfile  |  32 ++
 images/fastcgi-helloserver/rootfs/main.go     |  30 ++
 internal/ingress/annotations/annotations.go   |  62 ++--
 .../annotations/backendprotocol/main.go       |   2 +-
 internal/ingress/annotations/fastcgi/main.go  | 106 +++++++
 .../ingress/annotations/fastcgi/main_test.go  | 285 ++++++++++++++++++
 internal/ingress/annotations/parser/main.go   |   1 +
 internal/ingress/controller/controller.go     |   5 +-
 .../ingress/controller/controller_test.go     |   2 +-
 .../ingress/controller/template/template.go   |   3 +
 .../controller/template/template_test.go      |   2 +
 pkg/apis/ingress/types.go                     |   4 +
 pkg/apis/ingress/types_equals.go              |   4 +
 rootfs/etc/nginx/template/nginx.tmpl          |  11 +
 test/e2e/annotations/backendprotocol.go       |  15 +
 test/e2e/annotations/fastcgi.go               | 125 ++++++++
 test/e2e/framework/fastcgi_helloserver.go     | 104 +++++++
 25 files changed, 975 insertions(+), 159 deletions(-)
 create mode 100644 images/fastcgi-helloserver/Makefile
 create mode 100644 images/fastcgi-helloserver/cloudbuild.yaml
 create mode 100755 images/fastcgi-helloserver/rootfs/Dockerfile
 create mode 100644 images/fastcgi-helloserver/rootfs/main.go
 create mode 100644 internal/ingress/annotations/fastcgi/main.go
 create mode 100644 internal/ingress/annotations/fastcgi/main_test.go
 create mode 100644 test/e2e/annotations/fastcgi.go
 create mode 100644 test/e2e/framework/fastcgi_helloserver.go

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index abb2af532..9764a5e74 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -391,6 +391,8 @@ jobs:
               - 'images/custom-error-pages/**'
             cfssl:
               - 'images/cfssl/**'
+            fastcgi-helloserver:
+              - 'images/fastcgi-helloserver/**'
             echo:
               - 'images/echo/**'
             go-grpc-greeter-server:
@@ -410,6 +412,10 @@ jobs:
         if: ${{ steps.filter-images.outputs.cfssl == 'true' }}
         run: |
           cd images/cfssl && make build
+      - name: fastcgi-helloserver
+        if: ${{ steps.filter-images.outputs.fastcgi-helloserver == 'true' }}
+        run: |
+          cd images/fastcgi-helloserver && make build
       - name: echo image build
         if: ${{ steps.filter-images.outputs.echo == 'true' }}
         run: |
diff --git a/MANUAL_RELEASE.md b/MANUAL_RELEASE.md
index 4b4df0ec6..d7144b85d 100644
--- a/MANUAL_RELEASE.md
+++ b/MANUAL_RELEASE.md
@@ -56,6 +56,8 @@
 
   - [cfssl](https://github.com/kubernetes/ingress-nginx/tree/main/images/cfssl)
 
+  - [fastcgi-helloserver](https://github.com/kubernetes/ingress-nginx/tree/main/images/fastcgi-helloserver)
+
   - [httpbin](https://github.com/kubernetes/ingress-nginx/tree/main/images/httpbin)
 
   - [kube-webhook-certgen](https://github.com/kubernetes/ingress-nginx/tree/main/images/kube-webhook-certgen)
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 64d35c79a..025ff686d 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -108,6 +108,7 @@ Do not try to edit it manually.
 - [should set backend protocol to $scheme:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L49)
 - [should set backend protocol to grpc:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L64)
 - [should set backend protocol to grpcs:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L79)
+- [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L94)
 - [should set backend protocol to '' and use ajp_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L109)
 
 ### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
@@ -191,6 +192,13 @@ Do not try to edit it manually.
 - [disable-http-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L53)
 - [disable-stream-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L71)
 
+### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L30)
+
+- [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L37)
+- [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L54)
+- [should add fastcgi_param in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L71)
+- [should return OK for service with backend protocol FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L102)
+
 ### [force-ssl-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L27)
 
 - [should redirect to https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L34)
@@ -342,101 +350,6 @@ Do not try to edit it manually.
 - [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L35)
 - [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L57)
 
-### [denylist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L28)
-
-- [only deny explicitly denied IPs, allow all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L35)
-- [only allow explicitly allowed IPs, deny all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L86)
-
-### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L35)
-
-- [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L42)
-- [should change cookie name on ingress definition change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L64)
-- [should set the path to /something on the generated cookie](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L99)
-- [does not set the path to / on the generated cookie if there's more than one rule referring to the same backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L121)
-- [should set cookie with expires](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L194)
-- [should set cookie with domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L225)
-- [should not set cookie without domain annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L248)
-- [should work with use-regex annotation and session-cookie-path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L270)
-- [should warn user when use-regex is true and session-cookie-path is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L294)
-- [should not set affinity across all server locations when using separate ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L320)
-- [should set sticky cookie without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L352)
-- [should work with server-alias annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L372)
-- [should set secure in cookie with provided true annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L412)
-- [should not set secure in cookie with provided false annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L435)
-- [should set secure in cookie with provided false annotation on https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L458)
-
-### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L30)
-
-- [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L37)
-- [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L66)
-- [should use ~* location modifier if regex annotation is present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L111)
-- [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L158)
-- [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L190)
-
-### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L39)
-
-- [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L46)
-- [should return status code 503 when authentication is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L65)
-- [should return status code 401 when authentication is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L89)
-- [should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L116)
-- [should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L144)
-- [should return status code 200 when authentication is configured and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L172)
-- [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L199)
-- [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L227)
-- [ when external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L266)
-- [ when external auth is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L284)
-- [ when auth-headers are set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L301)
-- [should set cache_key when external auth cache is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L322)
-- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L411)
-- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L422)
-- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L433)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L485)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L494)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L505)
-- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L529)
-- [should not create additional upstream block when auth-keepalive is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L552)
-- [should not create additional upstream block when host part of auth-url contains a variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L570)
-- [should not create additional upstream block when auth-keepalive is negative](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L590)
-- [should not create additional upstream block when auth-keepalive is set with HTTP/2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L609)
-- [should create additional upstream block when auth-keepalive is set with HTTP/1.x](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L623)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L678)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L687)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L698)
-- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L772)
-- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L792)
-- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L820)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L849)
-- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L879)
-- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L887)
-
-### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
-
-- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L48)
-- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L80)
-- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L107)
-- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L161)
-- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L206)
-- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L250)
-- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L307)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L372)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L426)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L490)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L532)
-- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L566)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L604)
-- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L643)
-- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L705)
-- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L743)
-- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L775)
-- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L808)
-- [should route requests split between mainline and canary if canary weight is 100 and weight total is 200](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L834)
-- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L863)
-- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L891)
-- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L915)
-- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L943)
-- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1000)
-- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1058)
-
 ### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L29)
 
 - [should list the backend servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L37)
@@ -485,6 +398,10 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
 
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
+
 ### [[Setting] ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L194)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L)
@@ -561,30 +478,6 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
 
-### [[Setting] ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L194)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
-
 ### [[Shutdown] Grace period shutdown](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L32)
 
 - [/healthz should return status code 500 during shutdown grace period](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L35)
diff --git a/docs/kubectl-plugin.md b/docs/kubectl-plugin.md
index 9dc808642..9e5a5dcc6 100644
--- a/docs/kubectl-plugin.md
+++ b/docs/kubectl-plugin.md
@@ -200,6 +200,7 @@ kubectl ingress-nginx conf -n ingress-nginx --host testaddr.local
 
 ```console
 $ kubectl ingress-nginx exec -i -n ingress-nginx -- ls /etc/nginx
+fastcgi_params
 geoip
 lua
 mime.types
diff --git a/docs/user-guide/fcgi-services.md b/docs/user-guide/fcgi-services.md
index d4f1d1f1e..db4d9428b 100644
--- a/docs/user-guide/fcgi-services.md
+++ b/docs/user-guide/fcgi-services.md
@@ -2,10 +2,118 @@
 
 # Exposing FastCGI Servers
 
-**This feature has been removed from Ingress NGINX**
+> **FastCGI** is a [binary protocol](https://en.wikipedia.org/wiki/Binary_protocol "Binary protocol") for interfacing interactive programs with a [web server](https://en.wikipedia.org/wiki/Web_server "Web server"). [...] (It's) aim is to reduce the overhead related to interfacing between web server and CGI programs, allowing a server to handle more web page requests per unit of time.
+>
+> &mdash; Wikipedia
 
-People willing to use fastcgi servers, should create an NGINX + FastCGI service and expose
-this service via Ingress NGINX. 
+The _ingress-nginx_ ingress controller can be used to directly expose [FastCGI](https://en.wikipedia.org/wiki/FastCGI) servers.  Enabling FastCGI in your Ingress only requires setting the _backend-protocol_ annotation to `FCGI`, and with a couple more annotations you can customize the way _ingress-nginx_ handles the communication with your FastCGI _server_.
 
-We recommend using images like `cgr.dev/chainguard/nginx:latest` and expose your fast_cgi application
-as another container on this Pod.
+
+## Example Objects to Expose a FastCGI Pod
+
+The _Pod_ example object below exposes port `9000`, which is the conventional FastCGI port.
+
+```yaml
+apiVersion: v1
+kind: Pod
+metadata:
+  name: example-app
+labels:
+  app: example-app
+spec:
+  containers:
+  - name: example-app
+    image: example-app:1.0
+    ports:
+    - containerPort: 9000
+      name: fastcgi
+```
+
+The _Service_ object example below matches port `9000` from the _Pod_ object above.
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+  name: example-service
+spec:
+  selector:
+    app: example-app
+  ports:
+  - port: 9000
+    targetPort: 9000
+    name: fastcgi
+```
+
+And the _Ingress_ and _ConfigMap_ objects below demonstrates the supported _FastCGI_ specific annotations (NGINX actually has 50 FastCGI directives, all of which have not been exposed in the ingress yet), and matches the service `example-service`, and the port named `fastcgi` from above. The _ConfigMap_ **must** be created first for the _Ingress Controller_ to be able to find it when the _Ingress_ object is created, otherwise you will need to restart the _Ingress Controller_ pods.
+
+```yaml
+# The ConfigMap MUST be created first for the ingress controller to be able to
+# find it when the Ingress object is created.
+
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: example-cm
+data:
+  SCRIPT_FILENAME: "/example/index.php"
+
+---
+
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  annotations:
+    nginx.ingress.kubernetes.io/backend-protocol: "FCGI"
+    nginx.ingress.kubernetes.io/fastcgi-index: "index.php"
+    nginx.ingress.kubernetes.io/fastcgi-params-configmap: "example-cm"
+  name: example-app
+spec:
+  ingressClassName: nginx
+  rules:
+  - host: app.example.com
+    http:
+      paths:
+      - path: /
+        pathType: Prefix
+        backend:
+          service:
+            name: example-service
+            port:
+              name: fastcgi
+```
+
+## FastCGI Ingress Annotations
+
+To enable FastCGI, the `nginx.ingress.kubernetes.io/backend-protocol` annotation needs to be set to `FCGI`, which overrides the default `HTTP` value.
+
+> `nginx.ingress.kubernetes.io/backend-protocol: "FCGI"`
+
+**This enables the _FastCGI_ mode for all paths defined in the _Ingress_ object**
+
+### The `nginx.ingress.kubernetes.io/fastcgi-index` Annotation
+
+To specify an index file, the `fastcgi-index` annotation value can optionally be set.  In the example below, the value is set to `index.php`.  This annotation corresponds to [the _NGINX_ `fastcgi_index` directive](https://nginx.org/en/docs/http/ngx_http_fastcgi_module.html#fastcgi_index).
+
+> `nginx.ingress.kubernetes.io/fastcgi-index: "index.php"`
+
+### The `nginx.ingress.kubernetes.io/fastcgi-params-configmap` Annotation
+
+To specify [_NGINX_ `fastcgi_param` directives](https://nginx.org/en/docs/http/ngx_http_fastcgi_module.html#fastcgi_param), the `fastcgi-params-configmap` annotation is used, which in turn must lead to a _ConfigMap_ object containing the _NGINX_ `fastcgi_param` directives as key/values.
+
+> `nginx.ingress.kubernetes.io/fastcgi-params-configmap: "example-configmap"`
+
+And the _ConfigMap_ object to specify the `SCRIPT_FILENAME` and `HTTP_PROXY`  _NGINX's_ `fastcgi_param` directives will look like the following:
+
+```yaml
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: example-configmap
+data:
+  SCRIPT_FILENAME: "/example/index.php"
+  HTTP_PROXY: ""
+```
+Using the _namespace/_ prefix is also supported, for example:
+
+> `nginx.ingress.kubernetes.io/fastcgi-params-configmap: "example-namespace/example-configmap"`
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index fc43a47b2..b515a9f3b 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -894,7 +894,7 @@ Include /etc/nginx/owasp-modsecurity-crs/nginx-modsecurity.conf
 ### Backend Protocol
 
 Using `backend-protocol` annotations is possible to indicate how NGINX should communicate with the backend service. (Replaces `secure-backends` in older versions)
-Valid Values: HTTP, HTTPS, GRPC, GRPCS, AJP
+Valid Values: HTTP, HTTPS, GRPC, GRPCS, AJP and FCGI
 
 By default NGINX uses `HTTP`.
 
diff --git a/images/fastcgi-helloserver/Makefile b/images/fastcgi-helloserver/Makefile
new file mode 100644
index 000000000..4d277a19d
--- /dev/null
+++ b/images/fastcgi-helloserver/Makefile
@@ -0,0 +1,59 @@
+# Copyright 2020 The Kubernetes Authors.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# Docker image for e2e testing.
+
+# set default shell
+SHELL=/bin/bash -o pipefail -o errexit
+
+DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
+INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
+
+SHORT_SHA ?=$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
+REGISTRY ?= local
+
+IMAGE = $(REGISTRY)/e2e-test-fastcgi-helloserver
+
+# required to enable buildx
+export DOCKER_CLI_EXPERIMENTAL=enabled
+
+# build with buildx
+PLATFORMS?=linux/amd64,linux/arm,linux/arm64
+OUTPUT=
+PROGRESS=plain
+
+build: ensure-buildx
+	docker buildx build \
+		--platform=${PLATFORMS} $(OUTPUT) \
+		--progress=$(PROGRESS) \
+		--pull \
+		-t $(IMAGE):$(TAG) rootfs
+
+# push the cross built image
+push: OUTPUT=--push
+push: build
+
+# enable buildx
+ensure-buildx:
+# this is required for cloudbuild
+ifeq ("$(wildcard $(INIT_BUILDX))","")
+	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/hack/init-buildx.sh | bash
+else
+	@exec $(INIT_BUILDX)
+endif
+	@echo "done"
+
+.PHONY: build push ensure-buildx
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
new file mode 100644
index 000000000..a4c9d5eff
--- /dev/null
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -0,0 +1,22 @@
+timeout: 1800s
+options:
+  substitution_option: ALLOW_LOOSE
+steps:
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
+    entrypoint: bash
+    env:
+      - DOCKER_CLI_EXPERIMENTAL=enabled
+      - SHORT_SHA=$SHORT_SHA
+      - BASE_REF=$_PULL_BASE_REF
+      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
+      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
+      # set the home to /root explicitly to if using docker buildx
+      - HOME=/root
+    args:
+    - -c
+    - |
+      gcloud auth configure-docker \
+      && cd images/fastcgi-helloserver && make push
+substitutions:
+  _GIT_TAG: "12345"
+  _PULL_BASE_REF: "master"
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
new file mode 100755
index 000000000..a11834373
--- /dev/null
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -0,0 +1,32 @@
+# Copyright 2017 The Kubernetes Authors. All rights reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+FROM golang:1.20.4-alpine3.18 as builder
+
+WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
+
+COPY . .
+
+RUN CGO_ENABLED=0 go build -a -installsuffix cgo \
+	-ldflags "-s -w" \
+	-o fastcgi-helloserver main.go
+
+# Use distroless as minimal base image to package the binary
+# Refer to https://github.com/GoogleContainerTools/distroless for more details
+FROM gcr.io/distroless/static:nonroot
+
+COPY --from=builder /go/src/k8s.io/ingress-nginx/images/fastcgi/fastcgi-helloserver /
+USER nonroot:nonroot
+
+CMD ["/fastcgi-helloserver"]
diff --git a/images/fastcgi-helloserver/rootfs/main.go b/images/fastcgi-helloserver/rootfs/main.go
new file mode 100644
index 000000000..91db60c26
--- /dev/null
+++ b/images/fastcgi-helloserver/rootfs/main.go
@@ -0,0 +1,30 @@
+package main
+
+import (
+	"fmt"
+	"net"
+	"net/http"
+	"net/http/fcgi"
+)
+
+func hello(w http.ResponseWriter, r *http.Request) {
+	keys, ok := r.URL.Query()["name"]
+
+	if !ok || len(keys[0]) < 1 {
+		fmt.Fprintf(w, "Hello world!")
+		return
+	}
+
+	key := keys[0]
+	fmt.Fprintf(w, "Hello "+string(key)+"!")
+}
+
+func main() {
+	http.HandleFunc("/hello", hello)
+
+	l, err := net.Listen("tcp", "0.0.0.0:9000")
+	if err != nil {
+		panic(err)
+	}
+	fcgi.Serve(l, nil)
+}
diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index ad7dad37d..5bb2bf5e6 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -41,6 +41,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/cors"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/customhttperrors"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/defaultbackend"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/fastcgi"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/globalratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/http2pushpreload"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipdenylist"
@@ -85,35 +86,37 @@ type Ingress struct {
 	CorsConfig           cors.Config
 	CustomHTTPErrors     []int
 	DefaultBackend       *apiv1.Service
-	Denied               *string
-	ExternalAuth         authreq.Config
-	EnableGlobalAuth     bool
-	HTTP2PushPreload     bool
-	Opentracing          opentracing.Config
-	Opentelemetry        opentelemetry.Config
-	Proxy                proxy.Config
-	ProxySSL             proxyssl.Config
-	RateLimit            ratelimit.Config
-	GlobalRateLimit      globalratelimit.Config
-	Redirect             redirect.Config
-	Rewrite              rewrite.Config
-	Satisfy              string
-	ServerSnippet        string
-	ServiceUpstream      bool
-	SessionAffinity      sessionaffinity.Config
-	SSLPassthrough       bool
-	UsePortInRedirects   bool
-	UpstreamHashBy       upstreamhashby.Config
-	LoadBalancing        string
-	UpstreamVhost        string
-	Whitelist            ipwhitelist.SourceRange
-	Denylist             ipdenylist.SourceRange
-	XForwardedPrefix     string
-	SSLCipher            sslcipher.Config
-	Logs                 log.Config
-	ModSecurity          modsecurity.Config
-	Mirror               mirror.Config
-	StreamSnippet        string
+	//TODO: Change this back into an error when https://github.com/imdario/mergo/issues/100 is resolved
+	FastCGI            fastcgi.Config
+	Denied             *string
+	ExternalAuth       authreq.Config
+	EnableGlobalAuth   bool
+	HTTP2PushPreload   bool
+	Opentracing        opentracing.Config
+	Opentelemetry      opentelemetry.Config
+	Proxy              proxy.Config
+	ProxySSL           proxyssl.Config
+	RateLimit          ratelimit.Config
+	GlobalRateLimit    globalratelimit.Config
+	Redirect           redirect.Config
+	Rewrite            rewrite.Config
+	Satisfy            string
+	ServerSnippet      string
+	ServiceUpstream    bool
+	SessionAffinity    sessionaffinity.Config
+	SSLPassthrough     bool
+	UsePortInRedirects bool
+	UpstreamHashBy     upstreamhashby.Config
+	LoadBalancing      string
+	UpstreamVhost      string
+	Whitelist          ipwhitelist.SourceRange
+	Denylist           ipdenylist.SourceRange
+	XForwardedPrefix   string
+	SSLCipher          sslcipher.Config
+	Logs               log.Config
+	ModSecurity        modsecurity.Config
+	Mirror             mirror.Config
+	StreamSnippet      string
 }
 
 // Extractor defines the annotation parsers to be used in the extraction of annotations
@@ -135,6 +138,7 @@ func NewAnnotationExtractor(cfg resolver.Resolver) Extractor {
 			"CorsConfig":           cors.NewParser(cfg),
 			"CustomHTTPErrors":     customhttperrors.NewParser(cfg),
 			"DefaultBackend":       defaultbackend.NewParser(cfg),
+			"FastCGI":              fastcgi.NewParser(cfg),
 			"ExternalAuth":         authreq.NewParser(cfg),
 			"EnableGlobalAuth":     authreqglobal.NewParser(cfg),
 			"HTTP2PushPreload":     http2pushpreload.NewParser(cfg),
diff --git a/internal/ingress/annotations/backendprotocol/main.go b/internal/ingress/annotations/backendprotocol/main.go
index 0140c30a3..d8ea72386 100644
--- a/internal/ingress/annotations/backendprotocol/main.go
+++ b/internal/ingress/annotations/backendprotocol/main.go
@@ -31,7 +31,7 @@ import (
 const HTTP = "HTTP"
 
 var (
-	validProtocols = regexp.MustCompile(`^(AUTO_HTTP|HTTP|HTTPS|AJP|GRPC|GRPCS)$`)
+	validProtocols = regexp.MustCompile(`^(AUTO_HTTP|HTTP|HTTPS|AJP|GRPC|GRPCS|FCGI)$`)
 )
 
 type backendProtocol struct {
diff --git a/internal/ingress/annotations/fastcgi/main.go b/internal/ingress/annotations/fastcgi/main.go
new file mode 100644
index 000000000..84bac4109
--- /dev/null
+++ b/internal/ingress/annotations/fastcgi/main.go
@@ -0,0 +1,106 @@
+/*
+Copyright 2018 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package fastcgi
+
+import (
+	"fmt"
+	"reflect"
+
+	networking "k8s.io/api/networking/v1"
+	"k8s.io/client-go/tools/cache"
+
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
+	"k8s.io/ingress-nginx/internal/ingress/resolver"
+)
+
+type fastcgi struct {
+	r resolver.Resolver
+}
+
+// Config describes the per location fastcgi config
+type Config struct {
+	Index  string            `json:"index"`
+	Params map[string]string `json:"params"`
+}
+
+// Equal tests for equality between two Configuration types
+func (l1 *Config) Equal(l2 *Config) bool {
+	if l1 == l2 {
+		return true
+	}
+
+	if l1 == nil || l2 == nil {
+		return false
+	}
+
+	if l1.Index != l2.Index {
+		return false
+	}
+
+	return reflect.DeepEqual(l1.Params, l2.Params)
+}
+
+// NewParser creates a new fastcgiConfig protocol annotation parser
+func NewParser(r resolver.Resolver) parser.IngressAnnotation {
+	return fastcgi{r}
+}
+
+// ParseAnnotations parses the annotations contained in the ingress
+// rule used to indicate the fastcgiConfig.
+func (a fastcgi) Parse(ing *networking.Ingress) (interface{}, error) {
+
+	fcgiConfig := Config{}
+
+	if ing.GetAnnotations() == nil {
+		return fcgiConfig, nil
+	}
+
+	index, err := parser.GetStringAnnotation("fastcgi-index", ing)
+	if err != nil {
+		index = ""
+	}
+	fcgiConfig.Index = index
+
+	cm, err := parser.GetStringAnnotation("fastcgi-params-configmap", ing)
+	if err != nil {
+		return fcgiConfig, nil
+	}
+
+	cmns, cmn, err := cache.SplitMetaNamespaceKey(cm)
+	if err != nil {
+		return fcgiConfig, ing_errors.LocationDenied{
+			Reason: fmt.Errorf("error reading configmap name from annotation: %w", err),
+		}
+	}
+
+	if cmns != "" && cmns != ing.Namespace {
+		return fcgiConfig, fmt.Errorf("different namespace is not supported on fast_cgi param configmap")
+	}
+
+	cm = fmt.Sprintf("%v/%v", ing.Namespace, cmn)
+	cmap, err := a.r.GetConfigMap(cm)
+	if err != nil {
+		return fcgiConfig, ing_errors.LocationDenied{
+			Reason: fmt.Errorf("unexpected error reading configmap %s: %w", cm, err),
+		}
+	}
+
+	fcgiConfig.Params = cmap.Data
+
+	return fcgiConfig, nil
+}
diff --git a/internal/ingress/annotations/fastcgi/main_test.go b/internal/ingress/annotations/fastcgi/main_test.go
new file mode 100644
index 000000000..35c5bbc12
--- /dev/null
+++ b/internal/ingress/annotations/fastcgi/main_test.go
@@ -0,0 +1,285 @@
+/*
+Copyright 2018 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package fastcgi
+
+import (
+	"fmt"
+	"testing"
+
+	api "k8s.io/api/core/v1"
+	networking "k8s.io/api/networking/v1"
+	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/client-go/tools/cache"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/resolver"
+)
+
+func buildIngress() *networking.Ingress {
+	return &networking.Ingress{
+		ObjectMeta: meta_v1.ObjectMeta{
+			Name:      "foo",
+			Namespace: api.NamespaceDefault,
+		},
+		Spec: networking.IngressSpec{
+			DefaultBackend: &networking.IngressBackend{
+				Service: &networking.IngressServiceBackend{
+					Name: "default-backend",
+					Port: networking.ServiceBackendPort{
+						Number: 80,
+					},
+				},
+			},
+		},
+	}
+}
+
+type mockConfigMap struct {
+	resolver.Mock
+}
+
+func (m mockConfigMap) GetConfigMap(name string) (*api.ConfigMap, error) {
+	if name != "default/demo-configmap" && name != "otherns/demo-configmap" {
+		return nil, fmt.Errorf("there is no configmap with name %v", name)
+	}
+
+	cmns, cmn, err := cache.SplitMetaNamespaceKey(name)
+	if err != nil {
+		return nil, fmt.Errorf("invalid configmap name")
+	}
+
+	return &api.ConfigMap{
+		ObjectMeta: meta_v1.ObjectMeta{
+			Namespace: cmns,
+			Name:      cmn,
+		},
+		Data: map[string]string{"REDIRECT_STATUS": "200", "SERVER_NAME": "$server_name"},
+	}, nil
+}
+
+func TestParseEmptyFastCGIAnnotations(t *testing.T) {
+	ing := buildIngress()
+
+	i, err := NewParser(&mockConfigMap{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error parsing ingress without fastcgi")
+	}
+
+	config, ok := i.(Config)
+	if !ok {
+		t.Errorf("Parse do not return a Config object")
+	}
+
+	if config.Index != "" {
+		t.Errorf("Index should be an empty string")
+	}
+
+	if len(config.Params) != 0 {
+		t.Errorf("Params should be an empty slice")
+	}
+}
+
+func TestParseFastCGIIndexAnnotation(t *testing.T) {
+	ing := buildIngress()
+
+	const expectedAnnotation = "index.php"
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix("fastcgi-index")] = expectedAnnotation
+	ing.SetAnnotations(data)
+
+	i, err := NewParser(&mockConfigMap{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error parsing ingress without fastcgi")
+	}
+
+	config, ok := i.(Config)
+	if !ok {
+		t.Errorf("Parse do not return a Config object")
+	}
+
+	if config.Index != "index.php" {
+		t.Errorf("expected %s but %v returned", expectedAnnotation, config.Index)
+	}
+}
+
+func TestParseEmptyFastCGIParamsConfigMapAnnotation(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix("fastcgi-params-configmap")] = ""
+	ing.SetAnnotations(data)
+
+	i, err := NewParser(&mockConfigMap{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error parsing ingress without fastcgi")
+	}
+
+	config, ok := i.(Config)
+	if !ok {
+		t.Errorf("Parse do not return a Config object")
+	}
+
+	if len(config.Params) != 0 {
+		t.Errorf("Params should be an empty slice")
+	}
+}
+
+func TestParseFastCGIInvalidParamsConfigMapAnnotation(t *testing.T) {
+	ing := buildIngress()
+
+	invalidConfigMapList := []string{"unknown/configMap", "unknown/config/map"}
+	for _, configmap := range invalidConfigMapList {
+
+		data := map[string]string{}
+		data[parser.GetAnnotationWithPrefix("fastcgi-params-configmap")] = configmap
+		ing.SetAnnotations(data)
+
+		i, err := NewParser(&mockConfigMap{}).Parse(ing)
+		if err == nil {
+			t.Errorf("Reading an unexisting configmap should return an error")
+		}
+
+		config, ok := i.(Config)
+		if !ok {
+			t.Errorf("Parse do not return a Config object")
+		}
+
+		if len(config.Params) != 0 {
+			t.Errorf("Params should be an empty slice")
+		}
+	}
+}
+
+func TestParseFastCGIParamsConfigMapAnnotationWithoutNS(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix("fastcgi-params-configmap")] = "demo-configmap"
+	ing.SetAnnotations(data)
+
+	i, err := NewParser(&mockConfigMap{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error parsing ingress without fastcgi")
+	}
+
+	config, ok := i.(Config)
+	if !ok {
+		t.Errorf("Parse do not return a Config object")
+	}
+
+	if len(config.Params) != 2 {
+		t.Errorf("Params should have a length of 2")
+	}
+
+	if config.Params["REDIRECT_STATUS"] != "200" || config.Params["SERVER_NAME"] != "$server_name" {
+		t.Errorf("Params value is not the one expected")
+	}
+}
+
+func TestParseFastCGIParamsConfigMapAnnotationWithNS(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix("fastcgi-params-configmap")] = "default/demo-configmap"
+	ing.SetAnnotations(data)
+
+	i, err := NewParser(&mockConfigMap{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error parsing ingress without fastcgi")
+	}
+
+	config, ok := i.(Config)
+	if !ok {
+		t.Errorf("Parse do not return a Config object")
+	}
+
+	if len(config.Params) != 2 {
+		t.Errorf("Params should have a length of 2")
+	}
+
+	if config.Params["REDIRECT_STATUS"] != "200" || config.Params["SERVER_NAME"] != "$server_name" {
+		t.Errorf("Params value is not the one expected")
+	}
+}
+
+func TestParseFastCGIParamsConfigMapAnnotationWithDifferentNS(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix("fastcgi-params-configmap")] = "otherns/demo-configmap"
+	ing.SetAnnotations(data)
+
+	_, err := NewParser(&mockConfigMap{}).Parse(ing)
+	if err == nil {
+		t.Errorf("Different namespace configmap should return an error")
+	}
+
+}
+
+func TestConfigEquality(t *testing.T) {
+
+	var nilConfig *Config
+
+	config := Config{
+		Index:  "index.php",
+		Params: map[string]string{"REDIRECT_STATUS": "200", "SERVER_NAME": "$server_name"},
+	}
+
+	configCopy := Config{
+		Index:  "index.php",
+		Params: map[string]string{"REDIRECT_STATUS": "200", "SERVER_NAME": "$server_name"},
+	}
+
+	config2 := Config{
+		Index:  "index.php",
+		Params: map[string]string{"REDIRECT_STATUS": "200"},
+	}
+
+	config3 := Config{
+		Index:  "index.py",
+		Params: map[string]string{"SERVER_NAME": "$server_name", "REDIRECT_STATUS": "200"},
+	}
+
+	config4 := Config{
+		Index:  "index.php",
+		Params: map[string]string{"SERVER_NAME": "$server_name", "REDIRECT_STATUS": "200"},
+	}
+
+	if !config.Equal(&config) {
+		t.Errorf("config should be equal to itself")
+	}
+
+	if nilConfig.Equal(&config) {
+		t.Errorf("Foo")
+	}
+
+	if !config.Equal(&configCopy) {
+		t.Errorf("config should be equal to configCopy")
+	}
+
+	if config.Equal(&config2) {
+		t.Errorf("config2 should not be equal to config")
+	}
+
+	if config.Equal(&config3) {
+		t.Errorf("config3 should not be equal to config")
+	}
+
+	if !config.Equal(&config4) {
+		t.Errorf("config4 should be equal to config")
+	}
+}
diff --git a/internal/ingress/annotations/parser/main.go b/internal/ingress/annotations/parser/main.go
index 8a0ea4b87..107a278b0 100644
--- a/internal/ingress/annotations/parser/main.go
+++ b/internal/ingress/annotations/parser/main.go
@@ -160,6 +160,7 @@ func normalizeString(input string) string {
 
 var configmapAnnotations = sets.NewString(
 	"auth-proxy-set-header",
+	"fastcgi-params-configmap",
 )
 
 // AnnotationsReferencesConfigmap checks if at least one annotation in the Ingress rule
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index e93d3b5de..4a4417130 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -271,8 +271,6 @@ func (n *NGINXController) CheckWarning(ing *networking.Ingress) ([]string, error
 		"influxdb-host",
 		"influxdb-server-name",
 		"secure-verify-ca-secret",
-		"fastcgi-params-configmap",
-		"fastcgi-index",
 	)
 
 	// Skip checks if the ingress is marked as deleted
@@ -608,7 +606,7 @@ func (n *NGINXController) getConfiguration(ingresses []*ingress.Ingress) (sets.S
 
 	for _, server := range servers {
 		// If a location is defined by a prefix string that ends with the slash character, and requests are processed by one of
-		// proxy_pass, uwsgi_pass, scgi_pass, memcached_pass, or grpc_pass, then the special processing is performed.
+		// proxy_pass, fastcgi_pass, uwsgi_pass, scgi_pass, memcached_pass, or grpc_pass, then the special processing is performed.
 		// In response to a request with URI equal to // this string, but without the trailing slash, a permanent redirect with the
 		// code 301 will be returned to the requested URI with the slash appended. If this is not desired, an exact match of the
 		// URIand location could be defined like this:
@@ -1519,6 +1517,7 @@ func locationApplyAnnotations(loc *ingress.Location, anns *annotations.Ingress)
 	loc.Logs = anns.Logs
 	loc.DefaultBackend = anns.DefaultBackend
 	loc.BackendProtocol = anns.BackendProtocol
+	loc.FastCGI = anns.FastCGI
 	loc.CustomHTTPErrors = anns.CustomHTTPErrors
 	loc.ModSecurity = anns.ModSecurity
 	loc.Satisfy = anns.Satisfy
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index 355f5da95..c631461c0 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -431,7 +431,7 @@ func TestCheckWarning(t *testing.T) {
 		t.Run("adding invalid annotations increases the warning count", func(t *testing.T) {
 			ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("enable-influxdb")] = "true"
 			ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("secure-verify-ca-secret")] = "true"
-			ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("fastcgi-index")] = "blabla"
+			ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("influxdb-host")] = "blabla"
 			defer func() {
 				ing.ObjectMeta.Annotations = map[string]string{}
 			}()
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 15ae438ab..2d941f95d 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -739,6 +739,9 @@ func buildProxyPass(host string, b interface{}, loc interface{}) string {
 	case "AJP":
 		proto = ""
 		proxyPass = "ajp_pass"
+	case "FCGI":
+		proto = ""
+		proxyPass = "fastcgi_pass"
 	}
 
 	upstreamName := "upstream_balancer"
diff --git a/internal/ingress/controller/template/template_test.go b/internal/ingress/controller/template/template_test.go
index 1b88c3fe7..1980d7e52 100644
--- a/internal/ingress/controller/template/template_test.go
+++ b/internal/ingress/controller/template/template_test.go
@@ -1138,6 +1138,7 @@ func TestOpentracingPropagateContext(t *testing.T) {
 		{BackendProtocol: "GRPC"}:      "opentracing_grpc_propagate_context;",
 		{BackendProtocol: "GRPCS"}:     "opentracing_grpc_propagate_context;",
 		{BackendProtocol: "AJP"}:       "opentracing_propagate_context;",
+		{BackendProtocol: "FCGI"}:      "opentracing_propagate_context;",
 		nil:                            "",
 	}
 
@@ -1157,6 +1158,7 @@ func TestOpentelemetryPropagateContext(t *testing.T) {
 		{BackendProtocol: "GRPC"}:      "opentelemetry_propagate;",
 		{BackendProtocol: "GRPCS"}:     "opentelemetry_propagate;",
 		{BackendProtocol: "AJP"}:       "opentelemetry_propagate;",
+		{BackendProtocol: "FCGI"}:      "opentelemetry_propagate;",
 		nil:                            "",
 	}
 
diff --git a/pkg/apis/ingress/types.go b/pkg/apis/ingress/types.go
index 68cacc25b..e50666c18 100644
--- a/pkg/apis/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -27,6 +27,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/authtls"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/connection"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/cors"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/fastcgi"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/globalratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipdenylist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipwhitelist"
@@ -339,6 +340,9 @@ type Location struct {
 	// BackendProtocol indicates which protocol should be used to communicate with the service
 	// By default this is HTTP
 	BackendProtocol string `json:"backend-protocol"`
+	// FastCGI allows the ingress to act as a FastCGI client for a given location.
+	// +optional
+	FastCGI fastcgi.Config `json:"fastcgi,omitempty"`
 	// CustomHTTPErrors specifies the error codes that should be intercepted.
 	// +optional
 	CustomHTTPErrors []int `json:"custom-http-errors"`
diff --git a/pkg/apis/ingress/types_equals.go b/pkg/apis/ingress/types_equals.go
index fee8c31d5..84b1a186a 100644
--- a/pkg/apis/ingress/types_equals.go
+++ b/pkg/apis/ingress/types_equals.go
@@ -435,6 +435,10 @@ func (l1 *Location) Equal(l2 *Location) bool {
 		return false
 	}
 
+	if !(&l1.FastCGI).Equal(&l2.FastCGI) {
+		return false
+	}
+
 	match := compareInts(l1.CustomHTTPErrors, l2.CustomHTTPErrors)
 	if !match {
 		return false
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 638333407..9b3a47de3 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -305,6 +305,7 @@ http {
     keepalive_requests {{ $cfg.KeepAliveRequests }};
 
     client_body_temp_path           /tmp/nginx/client-body;
+    fastcgi_temp_path               /tmp/nginx/fastcgi-temp;
     proxy_temp_path                 /tmp/nginx/proxy-temp;
     ajp_temp_path                   /tmp/nginx/ajp-temp;
 
@@ -1488,6 +1489,16 @@ stream {
             {{ range $errCode := $location.CustomHTTPErrors }}
             error_page {{ $errCode }} = @custom_{{ $location.DefaultBackendUpstreamName }}_{{ $errCode }};{{ end }}
 
+            {{ if (eq $location.BackendProtocol "FCGI") }}
+            include /etc/nginx/fastcgi_params;
+            {{ end }}
+            {{- if $location.FastCGI.Index -}}
+            fastcgi_index {{ $location.FastCGI.Index | quote }};
+            {{- end -}}
+            {{ range $k, $v := $location.FastCGI.Params }}
+            fastcgi_param {{ $k }} {{ $v | quote }};
+            {{ end }}
+
             {{ if not (empty $location.Redirect.URL) }}
             return {{ $location.Redirect.Code }} {{ $location.Redirect.URL }};
             {{ end }}
diff --git a/test/e2e/annotations/backendprotocol.go b/test/e2e/annotations/backendprotocol.go
index 8256befd2..bccb03afb 100644
--- a/test/e2e/annotations/backendprotocol.go
+++ b/test/e2e/annotations/backendprotocol.go
@@ -91,6 +91,21 @@ var _ = framework.DescribeAnnotation("backend-protocol", func() {
 			})
 	})
 
+	ginkgo.It("should set backend protocol to '' and use fastcgi_pass", func() {
+		host := "backendprotocol.foo.com"
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/backend-protocol": "FCGI",
+		}
+
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, "fastcgi_pass upstream_balancer;")
+			})
+	})
+
 	ginkgo.It("should set backend protocol to '' and use ajp_pass", func() {
 		host := "backendprotocol.foo.com"
 		annotations := map[string]string{
diff --git a/test/e2e/annotations/fastcgi.go b/test/e2e/annotations/fastcgi.go
new file mode 100644
index 000000000..572eca548
--- /dev/null
+++ b/test/e2e/annotations/fastcgi.go
@@ -0,0 +1,125 @@
+/*
+Copyright 2019 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package annotations
+
+import (
+	"net/http"
+	"strings"
+
+	"github.com/onsi/ginkgo/v2"
+	corev1 "k8s.io/api/core/v1"
+
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.DescribeAnnotation("backend-protocol - FastCGI", func() {
+	f := framework.NewDefaultFramework("fastcgi")
+
+	ginkgo.BeforeEach(func() {
+		f.NewFastCGIHelloServerDeployment()
+	})
+
+	ginkgo.It("should use fastcgi_pass in the configuration file", func() {
+		host := "fastcgi"
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/backend-protocol": "FCGI",
+		}
+
+		ing := framework.NewSingleIngress(host, "/hello", host, f.Namespace, "fastcgi-helloserver", 9000, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, "include /etc/nginx/fastcgi_params;") &&
+					strings.Contains(server, "fastcgi_pass")
+			})
+	})
+
+	ginkgo.It("should add fastcgi_index in the configuration file", func() {
+		host := "fastcgi-index"
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/backend-protocol": "FCGI",
+			"nginx.ingress.kubernetes.io/fastcgi-index":    "index.php",
+		}
+
+		ing := framework.NewSingleIngress(host, "/hello", host, f.Namespace, "fastcgi-helloserver", 9000, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, "fastcgi_index \"index.php\";")
+			})
+	})
+
+	ginkgo.It("should add fastcgi_param in the configuration file", func() {
+		configuration := &corev1.ConfigMap{
+			ObjectMeta: metav1.ObjectMeta{
+				Name:      "fastcgi-configmap",
+				Namespace: f.Namespace,
+			},
+			Data: map[string]string{
+				"SCRIPT_FILENAME": "/home/www/scripts/php$fastcgi_script_name",
+				"REDIRECT_STATUS": "200",
+			},
+		}
+
+		f.EnsureConfigMap(configuration)
+
+		host := "fastcgi-params-configmap"
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/backend-protocol":         "FCGI",
+			"nginx.ingress.kubernetes.io/fastcgi-params-configmap": "fastcgi-configmap",
+		}
+
+		ing := framework.NewSingleIngress(host, "/hello", host, f.Namespace, "fastcgi-helloserver", 9000, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, "fastcgi_param SCRIPT_FILENAME \"/home/www/scripts/php$fastcgi_script_name\";") &&
+					strings.Contains(server, "fastcgi_param REDIRECT_STATUS \"200\";")
+			})
+	})
+
+	ginkgo.It("should return OK for service with backend protocol FastCGI", func() {
+		host := "fastcgi-helloserver"
+		path := "/hello"
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/backend-protocol": "FCGI",
+		}
+
+		ing := framework.NewSingleIngress(host, path, host, f.Namespace, "fastcgi-helloserver", 9000, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, "fastcgi_pass")
+			})
+
+		f.HTTPTestClient().
+			GET(path).
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK).
+			Body().Contains("Hello world!")
+	})
+})
diff --git a/test/e2e/framework/fastcgi_helloserver.go b/test/e2e/framework/fastcgi_helloserver.go
new file mode 100644
index 000000000..719048c06
--- /dev/null
+++ b/test/e2e/framework/fastcgi_helloserver.go
@@ -0,0 +1,104 @@
+/*
+Copyright 2017 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package framework
+
+import (
+	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
+	appsv1 "k8s.io/api/apps/v1"
+	corev1 "k8s.io/api/core/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/fields"
+	"k8s.io/apimachinery/pkg/util/intstr"
+)
+
+// NewFastCGIHelloServerDeployment creates a new single replica
+// deployment of the fortune teller image in a particular namespace
+func (f *Framework) NewFastCGIHelloServerDeployment() {
+	f.NewNewFastCGIHelloServerDeploymentWithReplicas(1)
+}
+
+// NewNewFastCGIHelloServerDeploymentWithReplicas creates a new deployment of the
+// fortune teller image in a particular namespace. Number of replicas is configurable
+func (f *Framework) NewNewFastCGIHelloServerDeploymentWithReplicas(replicas int32) {
+	deployment := &appsv1.Deployment{
+		ObjectMeta: metav1.ObjectMeta{
+			Name:      "fastcgi-helloserver",
+			Namespace: f.Namespace,
+		},
+		Spec: appsv1.DeploymentSpec{
+			Replicas: NewInt32(replicas),
+			Selector: &metav1.LabelSelector{
+				MatchLabels: map[string]string{
+					"app": "fastcgi-helloserver",
+				},
+			},
+			Template: corev1.PodTemplateSpec{
+				ObjectMeta: metav1.ObjectMeta{
+					Labels: map[string]string{
+						"app": "fastcgi-helloserver",
+					},
+				},
+				Spec: corev1.PodSpec{
+					TerminationGracePeriodSeconds: NewInt64(0),
+					Containers: []corev1.Container{
+						{
+							Name:  "fastcgi-helloserver",
+							Image: "registry.k8s.io/ingress-nginx/e2e-test-fastcgi-helloserver@sha256:0e08c836cc58f1ea862578de99b13bc4264fe071e816f96dc1d79857bfba7473",
+							Env:   []corev1.EnvVar{},
+							Ports: []corev1.ContainerPort{
+								{
+									Name:          "fastcgi",
+									ContainerPort: 9000,
+								},
+							},
+						},
+					},
+				},
+			},
+		},
+	}
+
+	d := f.EnsureDeployment(deployment)
+
+	err := waitForPodsReady(f.KubeClientSet, DefaultTimeout, int(replicas), f.Namespace, metav1.ListOptions{
+		LabelSelector: fields.SelectorFromSet(fields.Set(d.Spec.Template.ObjectMeta.Labels)).String(),
+	})
+	assert.Nil(ginkgo.GinkgoT(), err, "failed to wait for to become ready")
+
+	service := &corev1.Service{
+		ObjectMeta: metav1.ObjectMeta{
+			Name:      "fastcgi-helloserver",
+			Namespace: f.Namespace,
+		},
+		Spec: corev1.ServiceSpec{
+			Ports: []corev1.ServicePort{
+				{
+					Name:       "fastcgi",
+					Port:       9000,
+					TargetPort: intstr.FromInt(9000),
+					Protocol:   "TCP",
+				},
+			},
+			Selector: map[string]string{
+				"app": "fastcgi-helloserver",
+			},
+		},
+	}
+
+	f.EnsureService(service)
+}

From 686aeac5961f37eaf1ddfa2fa320df4ccf0cf005 Mon Sep 17 00:00:00 2001
From: Hansuk Hong <flavono123@gmail.com>
Date: Thu, 15 Jun 2023 16:32:18 +0900
Subject: [PATCH 0826/1641] docs: change Dockefile url ref main (#10087)

---
 docs/examples/grpc/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/examples/grpc/README.md b/docs/examples/grpc/README.md
index cf4597fcd..508b23fb8 100644
--- a/docs/examples/grpc/README.md
+++ b/docs/examples/grpc/README.md
@@ -20,7 +20,7 @@ This example demonstrates how to route traffic to a gRPC service through the Ing
 
 - As an example gRPC application, we can use this app <https://github.com/grpc/grpc-go/blob/91e0aeb192456225adf27966d04ada4cf8599915/examples/features/reflection/server/main.go>.
 
-- To create a container image for this app, you can use [this Dockerfile](https://github.com/kubernetes/ingress-nginx/blob/5a52d99ae85cfe5ef9535291b8326b0006e75066/images/go-grpc-greeter-server/rootfs/Dockerfile). 
+- To create a container image for this app, you can use [this Dockerfile](https://github.com/kubernetes/ingress-nginx/blob/main/images/go-grpc-greeter-server/rootfs/Dockerfile). 
 
 - If you use the Dockerfile mentioned above, to create a image, then you can use the following example Kubernetes manifest to create a deployment resource that uses that image. If necessary edit this manifest to suit your needs.
 

From 30de5999c15fb0dc1581950685f1e027957515d5 Mon Sep 17 00:00:00 2001
From: Brendan Kamp <brendankamp757@gmail.com>
Date: Sun, 18 Jun 2023 21:16:21 +0200
Subject: [PATCH 0827/1641] fix: obsolete warnings (#10029)

Signed-off-by: Spazzy <brendankamp757@gmail.com>
---
 .../nginx-configuration/configmap.md          | 410 +++++++++---------
 internal/ingress/controller/config/config.go  |   9 +-
 rootfs/etc/nginx/template/nginx.tmpl          |   6 +
 3 files changed, 217 insertions(+), 208 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 782b9bc92..c55b7502a 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -25,211 +25,211 @@ data:
 
 The following table shows a configuration option's name, type, and the default value:
 
-|name|type|default|
-|:---|:---|:------|
-|[add-headers](#add-headers)|string|""|
-|[allow-backend-server-header](#allow-backend-server-header)|bool|"false"|
-|[allow-snippet-annotations](#allow-snippet-annotations)|bool|true|
-|[annotation-value-word-blocklist](#annotation-value-word-blocklist)|string array|""|
-|[hide-headers](#hide-headers)|string array|empty|
-|[access-log-params](#access-log-params)|string|""|
-|[access-log-path](#access-log-path)|string|"/var/log/nginx/access.log"|
-|[http-access-log-path](#http-access-log-path)|string|""|
-|[stream-access-log-path](#stream-access-log-path)|string|""|
-|[enable-access-log-for-default-backend](#enable-access-log-for-default-backend)|bool|"false"|
-|[error-log-path](#error-log-path)|string|"/var/log/nginx/error.log"|
-|[enable-modsecurity](#enable-modsecurity)|bool|"false"|
-|[modsecurity-snippet](#modsecurity-snippet)|string|""|
-|[enable-owasp-modsecurity-crs](#enable-owasp-modsecurity-crs)|bool|"false"|
-|[client-header-buffer-size](#client-header-buffer-size)|string|"1k"|
-|[client-header-timeout](#client-header-timeout)|int|60|
-|[client-body-buffer-size](#client-body-buffer-size)|string|"8k"|
-|[client-body-timeout](#client-body-timeout)|int|60|
-|[disable-access-log](#disable-access-log)|bool|false|
-|[disable-ipv6](#disable-ipv6)|bool|false|
-|[disable-ipv6-dns](#disable-ipv6-dns)|bool|false|
-|[enable-underscores-in-headers](#enable-underscores-in-headers)|bool|false|
-|[enable-ocsp](#enable-ocsp)|bool|false|
-|[ignore-invalid-headers](#ignore-invalid-headers)|bool|true|
-|[retry-non-idempotent](#retry-non-idempotent)|bool|"false"|
-|[error-log-level](#error-log-level)|string|"notice"|
-|[http2-max-field-size](#http2-max-field-size)|string|"4k"|
-|[http2-max-header-size](#http2-max-header-size)|string|"16k"|
-|[http2-max-requests](#http2-max-requests)|int|1000|
-|[http2-max-concurrent-streams](#http2-max-concurrent-streams)|int|128|
-|[hsts](#hsts)|bool|"true"|
-|[hsts-include-subdomains](#hsts-include-subdomains)|bool|"true"|
-|[hsts-max-age](#hsts-max-age)|string|"15724800"|
-|[hsts-preload](#hsts-preload)|bool|"false"|
-|[keep-alive](#keep-alive)|int|75|
-|[keep-alive-requests](#keep-alive-requests)|int|1000|
-|[large-client-header-buffers](#large-client-header-buffers)|string|"4 8k"|
-|[log-format-escape-none](#log-format-escape-none)|bool|"false"|
-|[log-format-escape-json](#log-format-escape-json)|bool|"false"|
-|[log-format-upstream](#log-format-upstream)|string|`$remote_addr - $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" $request_length $request_time [$proxy_upstream_name] [$proxy_alternative_upstream_name] $upstream_addr $upstream_response_length $upstream_response_time $upstream_status $req_id`|
-|[log-format-stream](#log-format-stream)|string|`[$remote_addr] [$time_local] $protocol $status $bytes_sent $bytes_received $session_time`|
-|[enable-multi-accept](#enable-multi-accept)|bool|"true"|
-|[max-worker-connections](#max-worker-connections)|int|16384|
-|[max-worker-open-files](#max-worker-open-files)|int|0|
-|[map-hash-bucket-size](#max-hash-bucket-size)|int|64|
-|[nginx-status-ipv4-whitelist](#nginx-status-ipv4-whitelist)|[]string|"127.0.0.1"|
-|[nginx-status-ipv6-whitelist](#nginx-status-ipv6-whitelist)|[]string|"::1"|
-|[proxy-real-ip-cidr](#proxy-real-ip-cidr)|[]string|"0.0.0.0/0"|
-|[proxy-set-headers](#proxy-set-headers)|string|""|
-|[server-name-hash-max-size](#server-name-hash-max-size)|int|1024|
-|[server-name-hash-bucket-size](#server-name-hash-bucket-size)|int|`<size of the processor’s cache line>`
-|[proxy-headers-hash-max-size](#proxy-headers-hash-max-size)|int|512|
-|[proxy-headers-hash-bucket-size](#proxy-headers-hash-bucket-size)|int|64|
-|[plugins](#plugins)|[]string| |
-|[reuse-port](#reuse-port)|bool|"true"|
-|[server-tokens](#server-tokens)|bool|"false"|
-|[ssl-ciphers](#ssl-ciphers)|string|"ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"|
-|[ssl-ecdh-curve](#ssl-ecdh-curve)|string|"auto"|
-|[ssl-dh-param](#ssl-dh-param)|string|""|
-|[ssl-protocols](#ssl-protocols)|string|"TLSv1.2 TLSv1.3"|
-|[ssl-session-cache](#ssl-session-cache)|bool|"true"|
-|[ssl-session-cache-size](#ssl-session-cache-size)|string|"10m"|
-|[ssl-session-tickets](#ssl-session-tickets)|bool|"false"|
-|[ssl-session-ticket-key](#ssl-session-ticket-key)|string|`<Randomly Generated>`
-|[ssl-session-timeout](#ssl-session-timeout)|string|"10m"|
-|[ssl-buffer-size](#ssl-buffer-size)|string|"4k"|
-|[use-proxy-protocol](#use-proxy-protocol)|bool|"false"|
-|[proxy-protocol-header-timeout](#proxy-protocol-header-timeout)|string|"5s"|
-|[use-gzip](#use-gzip)|bool|"false"|
-|[use-geoip](#use-geoip)|bool|"true"|
-|[use-geoip2](#use-geoip2)|bool|"false"|
-|[enable-brotli](#enable-brotli)|bool|"false"|
-|[brotli-level](#brotli-level)|int|4|
-|[brotli-min-length](#brotli-min-length)|int|20|
-|[brotli-types](#brotli-types)|string|"application/xml+rss application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"|
-|[use-http2](#use-http2)|bool|"true"|
-|[gzip-disable](#gzip-disable)|string|""|
-|[gzip-level](#gzip-level)|int|1|
-|[gzip-min-length](#gzip-min-length)|int|256|
-|[gzip-types](#gzip-types)|string|"application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"|
-|[worker-processes](#worker-processes)|string|`<Number of CPUs>`|
-|[worker-cpu-affinity](#worker-cpu-affinity)|string|""|
-|[worker-shutdown-timeout](#worker-shutdown-timeout)|string|"240s"|
-|[load-balance](#load-balance)|string|"round_robin"|
-|[variables-hash-bucket-size](#variables-hash-bucket-size)|int|128|
-|[variables-hash-max-size](#variables-hash-max-size)|int|2048|
-|[upstream-keepalive-connections](#upstream-keepalive-connections)|int|320|
-|[upstream-keepalive-time](#upstream-keepalive-time)|string|"1h"|
-|[upstream-keepalive-timeout](#upstream-keepalive-timeout)|int|60|
-|[upstream-keepalive-requests](#upstream-keepalive-requests)|int|10000|
-|[limit-conn-zone-variable](#limit-conn-zone-variable)|string|"$binary_remote_addr"|
-|[proxy-stream-timeout](#proxy-stream-timeout)|string|"600s"|
-|[proxy-stream-next-upstream](#proxy-stream-next-upstream)|bool|"true"|
-|[proxy-stream-next-upstream-timeout](#proxy-stream-next-upstream-timeout)|string|"600s"|
-|[proxy-stream-next-upstream-tries](#proxy-stream-next-upstream-tries)|int|3|
-|[proxy-stream-responses](#proxy-stream-responses)|int|1|
-|[bind-address](#bind-address)|[]string|""|
-|[use-forwarded-headers](#use-forwarded-headers)|bool|"false"|
-|[enable-real-ip](#enable-real-ip)|bool|"false"|
-|[forwarded-for-header](#forwarded-for-header)|string|"X-Forwarded-For"|
-|[compute-full-forwarded-for](#compute-full-forwarded-for)|bool|"false"|
-|[proxy-add-original-uri-header](#proxy-add-original-uri-header)|bool|"false"|
-|[generate-request-id](#generate-request-id)|bool|"true"|
-|[enable-opentracing](#enable-opentracing)|bool|"false"|
-|[opentracing-operation-name](#opentracing-operation-name)|string|""|
-|[opentracing-location-operation-name](#opentracing-location-operation-name)|string|""|
-|[zipkin-collector-host](#zipkin-collector-host)|string|""|
-|[zipkin-collector-port](#zipkin-collector-port)|int|9411|
-|[zipkin-service-name](#zipkin-service-name)|string|"nginx"|
-|[zipkin-sample-rate](#zipkin-sample-rate)|float|1.0|
-|[jaeger-collector-host](#jaeger-collector-host)|string|""|
-|[jaeger-collector-port](#jaeger-collector-port)|int|6831|
-|[jaeger-endpoint](#jaeger-endpoint)|string|""|
-|[jaeger-service-name](#jaeger-service-name)|string|"nginx"|
-|[jaeger-propagation-format](#jaeger-propagation-format)|string|"jaeger"|
-|[jaeger-sampler-type](#jaeger-sampler-type)|string|"const"|
-|[jaeger-sampler-param](#jaeger-sampler-param)|string|"1"|
-|[jaeger-sampler-host](#jaeger-sampler-host)|string|"http://127.0.0.1"|
-|[jaeger-sampler-port](#jaeger-sampler-port)|int|5778|
-|[jaeger-trace-context-header-name](#jaeger-trace-context-header-name)|string|uber-trace-id|
-|[jaeger-debug-header](#jaeger-debug-header)|string|uber-debug-id|
-|[jaeger-baggage-header](#jaeger-baggage-header)|string|jaeger-baggage|
-|[jaeger-trace-baggage-header-prefix](#jaeger-trace-baggage-header-prefix)|string|uberctx-|
-|[datadog-collector-host](#datadog-collector-host)|string|""|
-|[datadog-collector-port](#datadog-collector-port)|int|8126|
-|[datadog-service-name](#datadog-service-name)|string|"nginx"|
-|[datadog-environment](#datadog-environment)|string|"prod"|
-|[datadog-operation-name-override](#datadog-operation-name-override)|string|"nginx.handle"|
-|[datadog-priority-sampling](#datadog-priority-sampling)|bool|"true"|
-|[datadog-sample-rate](#datadog-sample-rate)|float|1.0|
-|[enable-opentelemetry](#enable-opentelemetry)|bool|"false"|
-|[opentelemetry-trust-incoming-span](#opentelemetry-trust-incoming-span)|bool|"true"|
-|[opentelemetry-operation-name](#opentelemetry-operation-name)|string|""|
-|[opentelemetry-config](#/etc/nginx/opentelemetry.toml)|string|"/etc/nginx/opentelemetry.toml"|
-|[otlp-collector-host](#otlp-collector-host)|string|""|
-|[otlp-collector-port](#otlp-collector-port)|int|4317|
-|[otel-max-queuesize](#otel-max-queuesize)|int||
-|[otel-schedule-delay-millis](#otel-schedule-delay-millis)|int||
-|[otel-max-export-batch-size](#otel-max-export-batch-size)|int||
-|[otel-service-name](#otel-service-name)|string|"nginx"|
-|[otel-sampler](#otel-sampler)|string|"AlwaysOff"|
-|[otel-sampler-parent-based](#otel-sampler-parent-based)|bool|"false"|
-|[otel-sampler-ratio](#otel-sampler-ratio)|float|0.01|
-|[main-snippet](#main-snippet)|string|""|
-|[http-snippet](#http-snippet)|string|""|
-|[server-snippet](#server-snippet)|string|""|
-|[stream-snippet](#stream-snippet)|string|""|
-|[location-snippet](#location-snippet)|string|""|
-|[custom-http-errors](#custom-http-errors)|[]int|[]int{}|
-|[proxy-body-size](#proxy-body-size)|string|"1m"|
-|[proxy-connect-timeout](#proxy-connect-timeout)|int|5|
-|[proxy-read-timeout](#proxy-read-timeout)|int|60|
-|[proxy-send-timeout](#proxy-send-timeout)|int|60|
-|[proxy-buffers-number](#proxy-buffers-number)|int|4|
-|[proxy-buffer-size](#proxy-buffer-size)|string|"4k"|
-|[proxy-cookie-path](#proxy-cookie-path)|string|"off"|
-|[proxy-cookie-domain](#proxy-cookie-domain)|string|"off"|
-|[proxy-next-upstream](#proxy-next-upstream)|string|"error timeout"|
-|[proxy-next-upstream-timeout](#proxy-next-upstream-timeout)|int|0|
-|[proxy-next-upstream-tries](#proxy-next-upstream-tries)|int|3|
-|[proxy-redirect-from](#proxy-redirect-from)|string|"off"|
-|[proxy-request-buffering](#proxy-request-buffering)|string|"on"|
-|[ssl-redirect](#ssl-redirect)|bool|"true"|
-|[force-ssl-redirect](#force-ssl-redirect)|bool|"false"|
-|[denylist-source-range](#denylist-source-range)|[]string|[]string{}|
-|[whitelist-source-range](#whitelist-source-range)|[]string|[]string{}|
-|[skip-access-log-urls](#skip-access-log-urls)|[]string|[]string{}|
-|[limit-rate](#limit-rate)|int|0|
-|[limit-rate-after](#limit-rate-after)|int|0|
-|[lua-shared-dicts](#lua-shared-dicts)|string|""|
-|[http-redirect-code](#http-redirect-code)|int|308|
-|[proxy-buffering](#proxy-buffering)|string|"off"|
-|[limit-req-status-code](#limit-req-status-code)|int|503|
-|[limit-conn-status-code](#limit-conn-status-code)|int|503|
-|[enable-syslog](#enable-syslog)|bool|false|
-|[syslog-host](#syslog-host)|string|""|
-|[syslog-port](#syslog-port)|int|514|
-|[no-tls-redirect-locations](#no-tls-redirect-locations)|string|"/.well-known/acme-challenge"|
-|[global-auth-url](#global-auth-url)|string|""|
-|[global-auth-method](#global-auth-method)|string|""|
-|[global-auth-signin](#global-auth-signin)|string|""|
-|[global-auth-signin-redirect-param](#global-auth-signin-redirect-param)|string|"rd"|
-|[global-auth-response-headers](#global-auth-response-headers)|string|""|
-|[global-auth-request-redirect](#global-auth-request-redirect)|string|""|
-|[global-auth-snippet](#global-auth-snippet)|string|""|
-|[global-auth-cache-key](#global-auth-cache-key)|string|""|
-|[global-auth-cache-duration](#global-auth-cache-duration)|string|"200 202 401 5m"|
-|[no-auth-locations](#no-auth-locations)|string|"/.well-known/acme-challenge"|
-|[block-cidrs](#block-cidrs)|[]string|""|
-|[block-user-agents](#block-user-agents)|[]string|""|
-|[block-referers](#block-referers)|[]string|""|
-|[proxy-ssl-location-only](#proxy-ssl-location-only)|bool|"false"|
-|[default-type](#default-type)|string|"text/html"|
-|[global-rate-limit-memcached-host](#global-rate-limit)|string|""|
-|[global-rate-limit-memcached-port](#global-rate-limit)|int|11211|
-|[global-rate-limit-memcached-connect-timeout](#global-rate-limit)|int|50|
-|[global-rate-limit-memcached-max-idle-timeout](#global-rate-limit)|int|10000|
-|[global-rate-limit-memcached-pool-size](#global-rate-limit)|int|50|
-|[global-rate-limit-status-code](#global-rate-limit)|int|429|
-|[service-upstream](#service-upstream)|bool|"false"|
-|[ssl-reject-handshake](#ssl-reject-handshake)|bool|"false"|
-|[debug-connections](#debug-connections)|[]string|"127.0.0.1,1.1.1.1/24"|
-|[strict-validate-path-type](#strict-validate-path-type)|bool|"false" (v1.7.x)|
+|name|type|default|notes|
+|:---|:---|:------|:----|
+|[add-headers](#add-headers)|string|""||
+|[allow-backend-server-header](#allow-backend-server-header)|bool|"false"||
+|[allow-snippet-annotations](#allow-snippet-annotations)|bool|true||
+|[annotation-value-word-blocklist](#annotation-value-word-blocklist)|string array|""||
+|[hide-headers](#hide-headers)|string array|empty||
+|[access-log-params](#access-log-params)|string|""||
+|[access-log-path](#access-log-path)|string|"/var/log/nginx/access.log"||
+|[http-access-log-path](#http-access-log-path)|string|""||
+|[stream-access-log-path](#stream-access-log-path)|string|""||
+|[enable-access-log-for-default-backend](#enable-access-log-for-default-backend)|bool|"false"||
+|[error-log-path](#error-log-path)|string|"/var/log/nginx/error.log"||
+|[enable-modsecurity](#enable-modsecurity)|bool|"false"||
+|[modsecurity-snippet](#modsecurity-snippet)|string|""||
+|[enable-owasp-modsecurity-crs](#enable-owasp-modsecurity-crs)|bool|"false"||
+|[client-header-buffer-size](#client-header-buffer-size)|string|"1k"||
+|[client-header-timeout](#client-header-timeout)|int|60||
+|[client-body-buffer-size](#client-body-buffer-size)|string|"8k"||
+|[client-body-timeout](#client-body-timeout)|int|60||
+|[disable-access-log](#disable-access-log)|bool|false||
+|[disable-ipv6](#disable-ipv6)|bool|false||
+|[disable-ipv6-dns](#disable-ipv6-dns)|bool|false||
+|[enable-underscores-in-headers](#enable-underscores-in-headers)|bool|false||
+|[enable-ocsp](#enable-ocsp)|bool|false||
+|[ignore-invalid-headers](#ignore-invalid-headers)|bool|true||
+|[retry-non-idempotent](#retry-non-idempotent)|bool|"false"||
+|[error-log-level](#error-log-level)|string|"notice"||
+|[http2-max-field-size](#http2-max-field-size)|string|""|DEPRECATED in favour of [large_client_header_buffers](#large-client-header-buffers)|
+|[http2-max-header-size](#http2-max-header-size)|string|""|DEPRECATED in favour of [large_client_header_buffers](#large-client-header-buffers)|
+|[http2-max-requests](#http2-max-requests)|int|0|DEPRECATED in favour of [keepalive_requests](#keepalive-requests)|
+|[http2-max-concurrent-streams](#http2-max-concurrent-streams)|int|128||
+|[hsts](#hsts)|bool|"true"||
+|[hsts-include-subdomains](#hsts-include-subdomains)|bool|"true"||
+|[hsts-max-age](#hsts-max-age)|string|"15724800"||
+|[hsts-preload](#hsts-preload)|bool|"false"||
+|[keep-alive](#keep-alive)|int|75||
+|[keep-alive-requests](#keep-alive-requests)|int|1000||
+|[large-client-header-buffers](#large-client-header-buffers)|string|"4 8k"||
+|[log-format-escape-none](#log-format-escape-none)|bool|"false"||
+|[log-format-escape-json](#log-format-escape-json)|bool|"false"||
+|[log-format-upstream](#log-format-upstream)|string|`$remote_addr - $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" $request_length $request_time [$proxy_upstream_name] [$proxy_alternative_upstream_name] $upstream_addr $upstream_response_length $upstream_response_time $upstream_status $req_id`||
+|[log-format-stream](#log-format-stream)|string|`[$remote_addr] [$time_local] $protocol $status $bytes_sent $bytes_received $session_time`||
+|[enable-multi-accept](#enable-multi-accept)|bool|"true"||
+|[max-worker-connections](#max-worker-connections)|int|16384||
+|[max-worker-open-files](#max-worker-open-files)|int|0||
+|[map-hash-bucket-size](#max-hash-bucket-size)|int|64||
+|[nginx-status-ipv4-whitelist](#nginx-status-ipv4-whitelist)|[]string|"127.0.0.1"||
+|[nginx-status-ipv6-whitelist](#nginx-status-ipv6-whitelist)|[]string|"::1"||
+|[proxy-real-ip-cidr](#proxy-real-ip-cidr)|[]string|"0.0.0.0/0"||
+|[proxy-set-headers](#proxy-set-headers)|string|""||
+|[server-name-hash-max-size](#server-name-hash-max-size)|int|1024||
+|[server-name-hash-bucket-size](#server-name-hash-bucket-size)|int|`<size of the processor’s cache line>`|
+|[proxy-headers-hash-max-size](#proxy-headers-hash-max-size)|int|512||
+|[proxy-headers-hash-bucket-size](#proxy-headers-hash-bucket-size)|int|64||
+|[plugins](#plugins)|[]string| ||
+|[reuse-port](#reuse-port)|bool|"true"||
+|[server-tokens](#server-tokens)|bool|"false"||
+|[ssl-ciphers](#ssl-ciphers)|string|"ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"||
+|[ssl-ecdh-curve](#ssl-ecdh-curve)|string|"auto"||
+|[ssl-dh-param](#ssl-dh-param)|string|""||
+|[ssl-protocols](#ssl-protocols)|string|"TLSv1.2 TLSv1.3"||
+|[ssl-session-cache](#ssl-session-cache)|bool|"true"||
+|[ssl-session-cache-size](#ssl-session-cache-size)|string|"10m"||
+|[ssl-session-tickets](#ssl-session-tickets)|bool|"false"||
+|[ssl-session-ticket-key](#ssl-session-ticket-key)|string|`<Randomly Generated>`|
+|[ssl-session-timeout](#ssl-session-timeout)|string|"10m"||
+|[ssl-buffer-size](#ssl-buffer-size)|string|"4k"||
+|[use-proxy-protocol](#use-proxy-protocol)|bool|"false"||
+|[proxy-protocol-header-timeout](#proxy-protocol-header-timeout)|string|"5s"||
+|[use-gzip](#use-gzip)|bool|"false"||
+|[use-geoip](#use-geoip)|bool|"true"||
+|[use-geoip2](#use-geoip2)|bool|"false"||
+|[enable-brotli](#enable-brotli)|bool|"false"||
+|[brotli-level](#brotli-level)|int|4||
+|[brotli-min-length](#brotli-min-length)|int|20||
+|[brotli-types](#brotli-types)|string|"application/xml+rss application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"||
+|[use-http2](#use-http2)|bool|"true"||
+|[gzip-disable](#gzip-disable)|string|""||
+|[gzip-level](#gzip-level)|int|1||
+|[gzip-min-length](#gzip-min-length)|int|256||
+|[gzip-types](#gzip-types)|string|"application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"||
+|[worker-processes](#worker-processes)|string|`<Number of CPUs>`||
+|[worker-cpu-affinity](#worker-cpu-affinity)|string|""||
+|[worker-shutdown-timeout](#worker-shutdown-timeout)|string|"240s"||
+|[load-balance](#load-balance)|string|"round_robin"||
+|[variables-hash-bucket-size](#variables-hash-bucket-size)|int|128||
+|[variables-hash-max-size](#variables-hash-max-size)|int|2048||
+|[upstream-keepalive-connections](#upstream-keepalive-connections)|int|320||
+|[upstream-keepalive-time](#upstream-keepalive-time)|string|"1h"||
+|[upstream-keepalive-timeout](#upstream-keepalive-timeout)|int|60||
+|[upstream-keepalive-requests](#upstream-keepalive-requests)|int|10000||
+|[limit-conn-zone-variable](#limit-conn-zone-variable)|string|"$binary_remote_addr"||
+|[proxy-stream-timeout](#proxy-stream-timeout)|string|"600s"||
+|[proxy-stream-next-upstream](#proxy-stream-next-upstream)|bool|"true"||
+|[proxy-stream-next-upstream-timeout](#proxy-stream-next-upstream-timeout)|string|"600s"||
+|[proxy-stream-next-upstream-tries](#proxy-stream-next-upstream-tries)|int|3||
+|[proxy-stream-responses](#proxy-stream-responses)|int|1||
+|[bind-address](#bind-address)|[]string|""||
+|[use-forwarded-headers](#use-forwarded-headers)|bool|"false"||
+|[enable-real-ip](#enable-real-ip)|bool|"false"||
+|[forwarded-for-header](#forwarded-for-header)|string|"X-Forwarded-For"||
+|[compute-full-forwarded-for](#compute-full-forwarded-for)|bool|"false"||
+|[proxy-add-original-uri-header](#proxy-add-original-uri-header)|bool|"false"||
+|[generate-request-id](#generate-request-id)|bool|"true"||
+|[enable-opentracing](#enable-opentracing)|bool|"false"||
+|[opentracing-operation-name](#opentracing-operation-name)|string|""||
+|[opentracing-location-operation-name](#opentracing-location-operation-name)|string|""||
+|[zipkin-collector-host](#zipkin-collector-host)|string|""||
+|[zipkin-collector-port](#zipkin-collector-port)|int|9411||
+|[zipkin-service-name](#zipkin-service-name)|string|"nginx"||
+|[zipkin-sample-rate](#zipkin-sample-rate)|float|1.0||
+|[jaeger-collector-host](#jaeger-collector-host)|string|""||
+|[jaeger-collector-port](#jaeger-collector-port)|int|6831||
+|[jaeger-endpoint](#jaeger-endpoint)|string|""||
+|[jaeger-service-name](#jaeger-service-name)|string|"nginx"||
+|[jaeger-propagation-format](#jaeger-propagation-format)|string|"jaeger"||
+|[jaeger-sampler-type](#jaeger-sampler-type)|string|"const"||
+|[jaeger-sampler-param](#jaeger-sampler-param)|string|"1"||
+|[jaeger-sampler-host](#jaeger-sampler-host)|string|"http://127.0.0.1"||
+|[jaeger-sampler-port](#jaeger-sampler-port)|int|5778||
+|[jaeger-trace-context-header-name](#jaeger-trace-context-header-name)|string|uber-trace-id||
+|[jaeger-debug-header](#jaeger-debug-header)|string|uber-debug-id||
+|[jaeger-baggage-header](#jaeger-baggage-header)|string|jaeger-baggage||
+|[jaeger-trace-baggage-header-prefix](#jaeger-trace-baggage-header-prefix)|string|uberctx-||
+|[datadog-collector-host](#datadog-collector-host)|string|""||
+|[datadog-collector-port](#datadog-collector-port)|int|8126||
+|[datadog-service-name](#datadog-service-name)|string|"nginx"||
+|[datadog-environment](#datadog-environment)|string|"prod"||
+|[datadog-operation-name-override](#datadog-operation-name-override)|string|"nginx.handle"||
+|[datadog-priority-sampling](#datadog-priority-sampling)|bool|"true"||
+|[datadog-sample-rate](#datadog-sample-rate)|float|1.0||
+|[enable-opentelemetry](#enable-opentelemetry)|bool|"false"||
+|[opentelemetry-trust-incoming-span](#opentelemetry-trust-incoming-span)|bool|"true"||
+|[opentelemetry-operation-name](#opentelemetry-operation-name)|string|""||
+|[opentelemetry-config](#/etc/nginx/opentelemetry.toml)|string|"/etc/nginx/opentelemetry.toml"||
+|[otlp-collector-host](#otlp-collector-host)|string|""||
+|[otlp-collector-port](#otlp-collector-port)|int|4317||
+|[otel-max-queuesize](#otel-max-queuesize)|int|||
+|[otel-schedule-delay-millis](#otel-schedule-delay-millis)|int|||
+|[otel-max-export-batch-size](#otel-max-export-batch-size)|int|||
+|[otel-service-name](#otel-service-name)|string|"nginx"||
+|[otel-sampler](#otel-sampler)|string|"AlwaysOff"||
+|[otel-sampler-parent-based](#otel-sampler-parent-based)|bool|"false"||
+|[otel-sampler-ratio](#otel-sampler-ratio)|float|0.01||
+|[main-snippet](#main-snippet)|string|""||
+|[http-snippet](#http-snippet)|string|""||
+|[server-snippet](#server-snippet)|string|""||
+|[stream-snippet](#stream-snippet)|string|""||
+|[location-snippet](#location-snippet)|string|""||
+|[custom-http-errors](#custom-http-errors)|[]int|[]int{}||
+|[proxy-body-size](#proxy-body-size)|string|"1m"||
+|[proxy-connect-timeout](#proxy-connect-timeout)|int|5||
+|[proxy-read-timeout](#proxy-read-timeout)|int|60||
+|[proxy-send-timeout](#proxy-send-timeout)|int|60||
+|[proxy-buffers-number](#proxy-buffers-number)|int|4||
+|[proxy-buffer-size](#proxy-buffer-size)|string|"4k"||
+|[proxy-cookie-path](#proxy-cookie-path)|string|"off"||
+|[proxy-cookie-domain](#proxy-cookie-domain)|string|"off"||
+|[proxy-next-upstream](#proxy-next-upstream)|string|"error timeout"||
+|[proxy-next-upstream-timeout](#proxy-next-upstream-timeout)|int|0||
+|[proxy-next-upstream-tries](#proxy-next-upstream-tries)|int|3||
+|[proxy-redirect-from](#proxy-redirect-from)|string|"off"||
+|[proxy-request-buffering](#proxy-request-buffering)|string|"on"||
+|[ssl-redirect](#ssl-redirect)|bool|"true"||
+|[force-ssl-redirect](#force-ssl-redirect)|bool|"false"||
+|[denylist-source-range](#denylist-source-range)|[]string|[]string{}||
+|[whitelist-source-range](#whitelist-source-range)|[]string|[]string{}||
+|[skip-access-log-urls](#skip-access-log-urls)|[]string|[]string{}||
+|[limit-rate](#limit-rate)|int|0||
+|[limit-rate-after](#limit-rate-after)|int|0||
+|[lua-shared-dicts](#lua-shared-dicts)|string|""||
+|[http-redirect-code](#http-redirect-code)|int|308||
+|[proxy-buffering](#proxy-buffering)|string|"off"||
+|[limit-req-status-code](#limit-req-status-code)|int|503||
+|[limit-conn-status-code](#limit-conn-status-code)|int|503||
+|[enable-syslog](#enable-syslog)|bool|false||
+|[syslog-host](#syslog-host)|string|""||
+|[syslog-port](#syslog-port)|int|514||
+|[no-tls-redirect-locations](#no-tls-redirect-locations)|string|"/.well-known/acme-challenge"||
+|[global-auth-url](#global-auth-url)|string|""||
+|[global-auth-method](#global-auth-method)|string|""||
+|[global-auth-signin](#global-auth-signin)|string|""||
+|[global-auth-signin-redirect-param](#global-auth-signin-redirect-param)|string|"rd"||
+|[global-auth-response-headers](#global-auth-response-headers)|string|""||
+|[global-auth-request-redirect](#global-auth-request-redirect)|string|""||
+|[global-auth-snippet](#global-auth-snippet)|string|""||
+|[global-auth-cache-key](#global-auth-cache-key)|string|""||
+|[global-auth-cache-duration](#global-auth-cache-duration)|string|"200 202 401 5m"||
+|[no-auth-locations](#no-auth-locations)|string|"/.well-known/acme-challenge"||
+|[block-cidrs](#block-cidrs)|[]string|""||
+|[block-user-agents](#block-user-agents)|[]string|""||
+|[block-referers](#block-referers)|[]string|""||
+|[proxy-ssl-location-only](#proxy-ssl-location-only)|bool|"false"||
+|[default-type](#default-type)|string|"text/html"||
+|[global-rate-limit-memcached-host](#global-rate-limit)|string|""||
+|[global-rate-limit-memcached-port](#global-rate-limit)|int|11211||
+|[global-rate-limit-memcached-connect-timeout](#global-rate-limit)|int|50||
+|[global-rate-limit-memcached-max-idle-timeout](#global-rate-limit)|int|10000||
+|[global-rate-limit-memcached-pool-size](#global-rate-limit)|int|50||
+|[global-rate-limit-status-code](#global-rate-limit)|int|429||
+|[service-upstream](#service-upstream)|bool|"false"||
+|[ssl-reject-handshake](#ssl-reject-handshake)|bool|"false"||
+|[debug-connections](#debug-connections)|[]string|"127.0.0.1,1.1.1.1/24"||
+|[strict-validate-path-type](#strict-validate-path-type)|bool|"false" (v1.7.x)||
 
 ## add-headers
 
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index ad4bebde0..ec44b08ed 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -215,16 +215,19 @@ type Configuration struct {
 
 	// https://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_field_size
 	// HTTP2MaxFieldSize Limits the maximum size of an HPACK-compressed request header field
+	// NOTE: Deprecated
 	HTTP2MaxFieldSize string `json:"http2-max-field-size,omitempty"`
 
 	// https://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_header_size
 	// HTTP2MaxHeaderSize Limits the maximum size of the entire request header list after HPACK decompression
+	// NOTE: Deprecated
 	HTTP2MaxHeaderSize string `json:"http2-max-header-size,omitempty"`
 
 	// http://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_requests
 	// HTTP2MaxRequests Sets the maximum number of requests (including push requests) that can be served
 	// through one HTTP/2 connection, after which the next client request will lead to connection closing
 	// and the need of establishing a new connection.
+	// NOTE: Deprecated
 	HTTP2MaxRequests int `json:"http2-max-requests,omitempty"`
 
 	// http://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_concurrent_streams
@@ -882,9 +885,9 @@ func NewDefault() Configuration {
 		ComputeFullForwardedFor:          false,
 		ProxyAddOriginalURIHeader:        false,
 		GenerateRequestID:                true,
-		HTTP2MaxFieldSize:                "4k",
-		HTTP2MaxHeaderSize:               "16k",
-		HTTP2MaxRequests:                 1000,
+		HTTP2MaxFieldSize:                "",
+		HTTP2MaxHeaderSize:               "",
+		HTTP2MaxRequests:                 0,
 		HTTP2MaxConcurrentStreams:        128,
 		HTTPRedirectCode:                 308,
 		HSTS:                             true,
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 9b3a47de3..a1e02aae3 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -315,9 +315,15 @@ http {
     client_body_buffer_size         {{ $cfg.ClientBodyBufferSize }};
     client_body_timeout             {{ $cfg.ClientBodyTimeout }}s;
 
+    {{ if and (ne $cfg.HTTP2MaxHeaderSize "") (ne $cfg.HTTP2MaxFieldSize "") }}
     http2_max_field_size            {{ $cfg.HTTP2MaxFieldSize }};
     http2_max_header_size           {{ $cfg.HTTP2MaxHeaderSize }};
+    {{ end }}
+
+    {{ if (gt $cfg.HTTP2MaxRequests 0) }}
     http2_max_requests              {{ $cfg.HTTP2MaxRequests }};
+    {{ end }}
+
     http2_max_concurrent_streams    {{ $cfg.HTTP2MaxConcurrentStreams }};
 
     types_hash_max_size             2048;

From 910ca9ec0bd55aa651a593425929ebcfba0bf464 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 19 Jun 2023 05:04:22 -0700
Subject: [PATCH 0828/1641] Bump docker/setup-buildx-action from 2.6.0 to 2.7.0
 (#10102)

Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.6.0 to 2.7.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/6a58db7e0d21ca03e6c44877909e80e45217eed2...ecf95283f03858871ff00b787d79c419715afc34)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 9764a5e74..f27ac4f9b 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -158,7 +158,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@6a58db7e0d21ca03e6c44877909e80e45217eed2 # v2.6.0
+        uses: docker/setup-buildx-action@ecf95283f03858871ff00b787d79c419715afc34 # v2.7.0
         with:
           version: latest
 

From 7028bce2f2b9f384bebb1c1f0b044d21ed1a202a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 19 Jun 2023 05:06:22 -0700
Subject: [PATCH 0829/1641] Bump goreleaser/goreleaser-action from 4.2.0 to
 4.3.0 (#10101)

Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 4.2.0 to 4.3.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/f82d6c1c344bcacabba2c841718984797f664a6b...336e29918d653399e599bfca99fadc1d7ffbc9f7)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/plugin.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 6088f77f8..d8769f439 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -28,7 +28,7 @@ jobs:
           check-latest: true
 
       - name: Run GoReleaser
-        uses: goreleaser/goreleaser-action@f82d6c1c344bcacabba2c841718984797f664a6b # v4.2.0
+        uses: goreleaser/goreleaser-action@336e29918d653399e599bfca99fadc1d7ffbc9f7 # v4.3.0
         with:
           version: latest
           args: release --rm-dist

From b47409afe7d75d435d919a84d0ad6011670264d1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 19 Jun 2023 05:08:22 -0700
Subject: [PATCH 0830/1641] Bump google.golang.org/grpc from 1.55.0 to 1.56.0
 (#10103)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.55.0 to 1.56.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.55.0...v1.56.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 1bdcdbc61..d558077f5 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.9.0
-	google.golang.org/grpc v1.55.0
+	google.golang.org/grpc v1.56.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -109,7 +109,7 @@ require (
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.9.1 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/genproto v0.0.0-20230306155012-7f2fa6fef1f4 // indirect
+	google.golang.org/genproto v0.0.0-20230410155749-daa745c078e1 // indirect
 	google.golang.org/protobuf v1.30.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index 9e65d666f..47454259b 100644
--- a/go.sum
+++ b/go.sum
@@ -647,8 +647,8 @@ google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6D
 google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20230306155012-7f2fa6fef1f4 h1:DdoeryqhaXp1LtT/emMP1BRJPHHKFi5akj/nbx/zNTA=
-google.golang.org/genproto v0.0.0-20230306155012-7f2fa6fef1f4/go.mod h1:NWraEVixdDnqcqQ30jipen1STv2r/n24Wb7twVTGR4s=
+google.golang.org/genproto v0.0.0-20230410155749-daa745c078e1 h1:KpwkzHKEF7B9Zxg18WzOa7djJ+Ha5DzthMyZYQfEn2A=
+google.golang.org/genproto v0.0.0-20230410155749-daa745c078e1/go.mod h1:nKE/iIaLqn2bQwXBg8f1g2Ylh6r5MN5CmZvuzZCgsCU=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -661,8 +661,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.55.0 h1:3Oj82/tFSCeUrRTg/5E/7d/W5A1tj6Ky1ABAuZuv5ag=
-google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8=
+google.golang.org/grpc v1.56.0 h1:+y7Bs8rtMd07LeXmL3NxcTLn7mUkbKZqEpPhMNkwJEE=
+google.golang.org/grpc v1.56.0/go.mod h1:I9bI3vqKfayGqPUAwGdOSu7kt6oIJLixfffKrpXqQ9s=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From 22e855d413ce1f30478811cbd0283199454e2b8d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 20 Jun 2023 02:32:23 -0700
Subject: [PATCH 0831/1641] Bump golang.org/x/crypto from 0.9.0 to 0.10.0
 (#10105)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.9.0 to 0.10.0.
- [Commits](https://github.com/golang/crypto/compare/v0.9.0...v0.10.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index d558077f5..a28d70f0b 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.4
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.9.0
+	golang.org/x/crypto v0.10.0
 	google.golang.org/grpc v1.56.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -103,9 +103,9 @@ require (
 	golang.org/x/mod v0.10.0 // indirect
 	golang.org/x/net v0.10.0 // indirect
 	golang.org/x/oauth2 v0.8.0 // indirect
-	golang.org/x/sys v0.8.0 // indirect
-	golang.org/x/term v0.8.0 // indirect
-	golang.org/x/text v0.9.0 // indirect
+	golang.org/x/sys v0.9.0 // indirect
+	golang.org/x/term v0.9.0 // indirect
+	golang.org/x/text v0.10.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.9.1 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
diff --git a/go.sum b/go.sum
index 47454259b..3bc76ed7f 100644
--- a/go.sum
+++ b/go.sum
@@ -390,8 +390,8 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.9.0 h1:LF6fAI+IutBocDJ2OT0Q1g8plpYljMZ4+lty+dsqw3g=
-golang.org/x/crypto v0.9.0/go.mod h1:yrmDGqONDYtNj3tH8X9dzUun2m2lzPa9ngI6/RUPGR0=
+golang.org/x/crypto v0.10.0 h1:LKqV2xt9+kDzSTfOhx4FrkEBcMrAgHSYgzywV9zcGmM=
+golang.org/x/crypto v0.10.0/go.mod h1:o4eNf7Ede1fv+hwOwZsTHl9EsPFO6q6ZvYR8vYfY45I=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -524,19 +524,19 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.8.0 h1:EBmGv8NaZBZTWvrbjNoL6HVt+IVy3QDQpJs7VRIw3tU=
-golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.9.0 h1:KS/R3tvhPqvJvwcKfnBHJwwthS11LRhmM5D59eEXa0s=
+golang.org/x/sys v0.9.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.8.0 h1:n5xxQn2i3PC0yLAbjTpNT85q/Kgzcr2gIoX9OrJUols=
-golang.org/x/term v0.8.0/go.mod h1:xPskH00ivmX89bAKVGSKKtLOWNx2+17Eiy94tnKShWo=
+golang.org/x/term v0.9.0 h1:GRRCnKYhdQrD8kfRAdQ6Zcw1P0OcELxGLKJvtjVMZ28=
+golang.org/x/term v0.9.0/go.mod h1:M6DEAAIenWoTxdKrOltXcmDY3rSplQUkrvaDU5FcQyo=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.9.0 h1:2sjJmO8cDvYveuX97RDLsxlyUxLl+GHoLxBiRdHllBE=
-golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
+golang.org/x/text v0.10.0 h1:UpjohKhiEgNc0CSauXmwYftY1+LlaC75SJwh0SgCX58=
+golang.org/x/text v0.10.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=

From a53cfba348e0424326f33a89bc2a0f05bb24dd52 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 20 Jun 2023 02:34:22 -0700
Subject: [PATCH 0832/1641] Bump github.com/prometheus/client_golang from
 1.15.1 to 1.16.0 (#10106)

Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.15.1 to 1.16.0.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.15.1...v1.16.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index a28d70f0b..cbcc28cc8 100644
--- a/go.mod
+++ b/go.mod
@@ -17,7 +17,7 @@ require (
 	github.com/onsi/ginkgo/v2 v2.9.5
 	github.com/opencontainers/runc v1.1.7
 	github.com/pmezard/go-difflib v1.0.0
-	github.com/prometheus/client_golang v1.15.1
+	github.com/prometheus/client_golang v1.16.0
 	github.com/prometheus/client_model v0.4.0
 	github.com/prometheus/common v0.44.0
 	github.com/spf13/cobra v1.7.0
@@ -93,7 +93,7 @@ require (
 	github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
-	github.com/prometheus/procfs v0.9.0 // indirect
+	github.com/prometheus/procfs v0.10.1 // indirect
 	github.com/sergi/go-diff v1.1.0 // indirect
 	github.com/sirupsen/logrus v1.8.1 // indirect
 	github.com/xlab/treeprint v1.1.0 // indirect
diff --git a/go.sum b/go.sum
index 3bc76ed7f..5924b2d1c 100644
--- a/go.sum
+++ b/go.sum
@@ -306,8 +306,8 @@ github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXP
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
-github.com/prometheus/client_golang v1.15.1 h1:8tXpTmJbyH5lydzFPoxSIJ0J46jdh3tylbvM1xCv0LI=
-github.com/prometheus/client_golang v1.15.1/go.mod h1:e9yaBhRPU2pPNsZwE+JdQl0KEt1N9XgF6zxWmaC0xOk=
+github.com/prometheus/client_golang v1.16.0 h1:yk/hx9hDbrGHovbci4BY+pRMfSuuat626eFsHb7tmT8=
+github.com/prometheus/client_golang v1.16.0/go.mod h1:Zsulrv/L9oM40tJ7T815tM89lFEugiJ9HzIqaAx4LKc=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
@@ -326,8 +326,8 @@ github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsT
 github.com/prometheus/procfs v0.1.3/go.mod h1:lV6e/gmhEcM9IjHGsFOCxxuZ+z1YqCvr4OA4YeYWdaU=
 github.com/prometheus/procfs v0.6.0/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
 github.com/prometheus/procfs v0.7.3/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
-github.com/prometheus/procfs v0.9.0 h1:wzCHvIvM5SxWqYvwgVL7yJY8Lz3PKn49KQtpgMYJfhI=
-github.com/prometheus/procfs v0.9.0/go.mod h1:+pB4zwohETzFnmlpe6yd2lSc+0/46IYZRB/chUwxUZY=
+github.com/prometheus/procfs v0.10.1 h1:kYK1Va/YMlutzCGazswoHKo//tZVlFpKYh+PymziUAg=
+github.com/prometheus/procfs v0.10.1/go.mod h1:nwNm2aOCAYw8uTR/9bWRREkZFxAUcWzPHWJq+XBB/FM=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
 github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTEfhy4qGm1nDQc=
 github.com/rogpeppe/go-internal v1.8.0/go.mod h1:WmiCO8CzOY8rg0OYDC4/i/2WRWAB6poM+XZ2dLUbcbE=

From 1eeabe97b5cf8ad04d25f6b435579dce388da4bd Mon Sep 17 00:00:00 2001
From: Brendan Kamp <brendankamp757@gmail.com>
Date: Tue, 20 Jun 2023 11:42:22 +0200
Subject: [PATCH 0833/1641] chore: remove echo friom canary tests (#10089)

Signed-off-by: Spazzy <brendankamp757@gmail.com>
---
 test/e2e/annotations/canary.go   | 700 +++++++++++++++++++++----------
 test/e2e/framework/deployment.go |   9 +-
 2 files changed, 493 insertions(+), 216 deletions(-)

diff --git a/test/e2e/annotations/canary.go b/test/e2e/annotations/canary.go
index 6dd81fdd8..15cbeffa7 100644
--- a/test/e2e/annotations/canary.go
+++ b/test/e2e/annotations/canary.go
@@ -30,18 +30,15 @@ import (
 )
 
 const (
-	canaryService = "echo-canary"
+	canaryService = "httpbun-canary"
 )
 
 var _ = framework.DescribeAnnotation("canary-*", func() {
-	f := framework.NewDefaultFramework("canary")
+	f := framework.NewDefaultFramework("canary", framework.WithHTTPBunEnabled())
 
 	ginkgo.BeforeEach(func() {
-		// Deployment for main backend
-		f.NewEchoDeployment()
-
 		// Deployment for canary backend
-		f.NewEchoDeployment(framework.WithDeploymentName(canaryService))
+		f.NewHttpbunDeployment(framework.WithDeploymentName(canaryService))
 	})
 
 	ginkgo.Context("when canary is created", func() {
@@ -49,9 +46,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host, f.Namespace,
-				framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -65,16 +67,23 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(framework.EchoService).NotContains(canaryService)
+				Body().
+				Contains(framework.HTTPBunService).
+				NotContains(canaryService)
 		})
 
 		ginkgo.It("should return 404 status for requests to the canary if no matching ingress is found", func() {
@@ -87,13 +96,17 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "always").
 				Expect().
@@ -108,7 +121,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				host := "foo"
 				annotations := map[string]string{}
 
-				ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+				ing := framework.NewSingleIngress(host, "/info", host, f.Namespace, framework.HTTPBunService, 80, annotations)
 				f.EnsureIngress(ing)
 
 				f.WaitForNginxServer(host,
@@ -123,7 +136,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 				canaryIngName := fmt.Sprintf("%v-canary", host)
 
-				canaryIng := framework.NewSingleIngress(canaryIngName, "/", host, f.Namespace, canaryService,
+				canaryIng := framework.NewSingleIngress(canaryIngName, "/info", host, f.Namespace, canaryService,
 					80, canaryAnnotations)
 				f.EnsureIngress(canaryIng)
 
@@ -162,9 +175,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host, f.Namespace,
-				framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -178,29 +196,37 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			ginkgo.By("routing requests destined for the mainline ingress to the maineline upstream")
 
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "never").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(framework.EchoService).NotContains(canaryService)
+				Body().
+				Contains(framework.HTTPBunService).
+				NotContains(canaryService)
 
 			ginkgo.By("routing requests destined for the canary ingress to the canary upstream")
 
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "always").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(canaryService)
+				Body().
+				Contains(canaryService)
 		})
 
 		ginkgo.It("should route requests to the correct upstream if mainline ingress is created after the canary ingress", func() {
@@ -213,15 +239,25 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host, f.Namespace,
-				framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -230,30 +266,38 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			ginkgo.By("routing requests destined for the mainline ingress to the mainelin upstream")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "never").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(framework.EchoService).NotContains(canaryService)
+				Body().
+				Contains(framework.HTTPBunService).
+				NotContains(canaryService)
 
 			ginkgo.By("routing requests destined for the canary ingress to the canary upstream")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "always").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(canaryService)
+				Body().
+				Contains(canaryService)
 		})
 
 		ginkgo.It("should route requests to the correct upstream if the mainline ingress is modified", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host, f.Namespace,
-				framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -267,18 +311,27 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			modAnnotations := map[string]string{
 				"foo": "bar",
 			}
 
-			modIng := framework.NewSingleIngress(host, "/", host, f.Namespace,
-				framework.EchoService, 80, modAnnotations)
-
-			f.UpdateIngress(modIng)
+			f.UpdateIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				modAnnotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -287,30 +340,38 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			ginkgo.By("routing requests destined fro the mainline ingress to the mainline upstream")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "never").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(framework.EchoService).NotContains(canaryService)
+				Body().
+				Contains(framework.HTTPBunService).
+				NotContains(canaryService)
 
 			ginkgo.By("routing requests destined for the canary ingress to the canary upstream")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "always").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(canaryService)
+				Body().
+				Contains(canaryService)
 		})
 
 		ginkgo.It("should route requests to the correct upstream if the canary ingress is modified", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host, f.Namespace,
-				framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -324,9 +385,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -338,10 +404,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				"nginx.ingress.kubernetes.io/canary-by-header": "CanaryByHeader2",
 			}
 
-			modIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, newAnnotations)
-
-			f.UpdateIngress(modIng)
+			f.UpdateIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				newAnnotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -350,21 +420,24 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			ginkgo.By("routing requests destined for the mainline ingress to the mainline upstream")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader2", "never").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(framework.EchoService).NotContains(canaryService)
+				Body().
+				Contains(framework.HTTPBunService).
+				NotContains(canaryService)
 
 			ginkgo.By("routing requests destined for the canary ingress to the canary upstream")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader2", "always").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(canaryService)
+				Body().
+				Contains(canaryService)
 		})
 	})
 
@@ -372,9 +445,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 		ginkgo.It("should route requests to the correct upstream", func() {
 			host := "foo"
 
-			ing := framework.NewSingleIngress(host, "/", host, f.Namespace,
-				framework.EchoService, 80, nil)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				nil))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -388,37 +466,46 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			ginkgo.By("routing requests to the canary upstream when header is set to 'always'")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "always").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(canaryService)
+				Body().
+				Contains(canaryService)
 
 			ginkgo.By("routing requests to the mainline upstream when header is set to 'never'")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "never").
 				Expect().
 				Status(http.StatusOK).
 				Body().
-				Contains(framework.EchoService).NotContains(canaryService)
+				Contains(framework.HTTPBunService).
+				NotContains(canaryService)
 
 			ginkgo.By("routing requests to the mainline upstream when header is set to anything else")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "badheadervalue").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(framework.EchoService).NotContains(canaryService)
+				Body().
+				Contains(framework.HTTPBunService).
+				NotContains(canaryService)
 		})
 	})
 
@@ -427,9 +514,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host,
-				f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -444,45 +536,57 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			ginkgo.By("routing requests to the canary upstream when header is set to 'DoCanary'")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "DoCanary").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(canaryService)
+				Body().
+				Contains(canaryService)
 
 			ginkgo.By("routing requests to the mainline upstream when header is set to 'always'")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "always").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(framework.EchoService).NotContains(canaryService)
+				Body().
+				Contains(framework.HTTPBunService).
+				NotContains(canaryService)
 
 			ginkgo.By("routing requests to the mainline upstream when header is set to 'never'")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "never").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(framework.EchoService).NotContains(canaryService)
+				Body().
+				Contains(framework.HTTPBunService).
+				NotContains(canaryService)
 
 			ginkgo.By("routing requests to the mainline upstream when header is set to anything else")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "otherheadervalue").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(framework.EchoService).NotContains(canaryService)
+				Body().
+				Contains(framework.HTTPBunService).
+				NotContains(canaryService)
 		})
 	})
 
@@ -491,8 +595,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -507,13 +617,18 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host, f.Namespace, canaryService,
-				80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			ginkgo.By("routing requests to the canary upstream when header pattern is matched")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "DoCanary").
 				Expect().
@@ -522,19 +637,25 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			ginkgo.By("routing requests to the mainline upstream when header failed to match header value")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "Docanary").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(framework.EchoService).NotContains(canaryService)
+				Body().Contains(framework.HTTPBunService).NotContains(canaryService)
 		})
 		ginkgo.It("should route requests to the correct upstream", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -550,25 +671,36 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host, f.Namespace, canaryService,
-				80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			ginkgo.By("routing requests to the mainline upstream when header is set to 'DoCananry' and header-value is 'DoCanary'")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "DoCananry").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(framework.EchoService).NotContains(canaryService)
+				Body().Contains(framework.HTTPBunService).NotContains(canaryService)
 		})
 		ginkgo.It("should routes to mainline upstream when the given Regex causes error", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -584,19 +716,24 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host, f.Namespace, canaryService,
-				80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			ginkgo.By("routing requests to the mainline upstream when the given Regex causes error")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "DoCanary").
 				WithCookie("CanaryByCookie", "always").
 				Expect().
 				Status(http.StatusOK).
-				Body().Contains(framework.EchoService).NotContains(canaryService)
+				Body().Contains(framework.HTTPBunService).NotContains(canaryService)
 		})
 	})
 
@@ -605,9 +742,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host,
-				f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -623,13 +765,18 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			ginkgo.By("routing requests to the canary upstream when header value does not match and cookie is set to 'always'")
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("CanaryByHeader", "otherheadervalue").
 				WithCookie("CanaryByCookie", "always").
@@ -644,9 +791,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host,
-				f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -660,14 +812,19 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			ginkgo.By("routing requests to the canary upstream when cookie is set to 'always'")
 			for i := 0; i < 50; i++ {
 				f.HTTPTestClient().
-					GET("/").
+					GET("/info").
 					WithHeader("Host", host).
 					WithCookie("Canary-By-Cookie", "always").
 					Expect().
@@ -678,12 +835,12 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			ginkgo.By("routing requests to the mainline upstream when cookie is set to 'never'")
 			for i := 0; i < 50; i++ {
 				f.HTTPTestClient().
-					GET("/").
+					GET("/info").
 					WithHeader("Host", host).
 					WithCookie("Canary-By-Cookie", "never").
 					Expect().
 					Status(http.StatusOK).
-					Body().Contains(framework.EchoService).NotContains(canaryService)
+					Body().Contains(framework.HTTPBunService).NotContains(canaryService)
 			}
 
 			ginkgo.By("routing requests to the mainline upstream when cookie is set to anything else")
@@ -691,12 +848,12 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				// This test relies on canary cookie not parsing into the valid
 				// affinity data and canary weight not being specified at all.
 				f.HTTPTestClient().
-					GET("/").
+					GET("/info").
 					WithHeader("Host", host).
 					WithCookie("Canary-By-Cookie", "badcookievalue").
 					Expect().
 					Status(http.StatusOK).
-					Body().Contains(framework.EchoService).NotContains(canaryService)
+					Body().Contains(framework.HTTPBunService).NotContains(canaryService)
 			}
 		})
 	})
@@ -706,9 +863,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host,
-				f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -721,9 +883,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				"nginx.ingress.kubernetes.io/canary-weight": "0",
 			}
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -731,12 +898,12 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				})
 
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				Expect().
 				Status(http.StatusOK).
 				Body().
-				Contains(framework.EchoService).
+				Contains(framework.HTTPBunService).
 				NotContains(canaryService)
 		})
 
@@ -744,9 +911,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host,
-				f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -759,12 +931,17 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				"nginx.ingress.kubernetes.io/canary-weight": "100",
 			}
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				Expect().
 				Status(http.StatusOK).
@@ -776,9 +953,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host,
-				f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -792,12 +974,17 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				"nginx.ingress.kubernetes.io/canary-weight-total": "1000",
 			}
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				Expect().
 				Status(http.StatusOK).
@@ -809,9 +996,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host,
-				f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -824,9 +1016,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				"nginx.ingress.kubernetes.io/canary-weight": "50",
 			}
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			TestMainlineCanaryDistribution(f, host)
 		})
@@ -835,9 +1032,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			host := "foo"
 			annotations := map[string]string{}
 
-			ing := framework.NewSingleIngress(host, "/", host,
-				f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -851,9 +1053,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				"nginx.ingress.kubernetes.io/canary-weight-total": "200",
 			}
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			TestMainlineCanaryDistribution(f, host)
 		})
@@ -868,17 +1075,23 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				"nginx.ingress.kubernetes.io/canary-by-header": "CanaryByHeader",
 			}
 
-			ing := framework.NewSingleCatchAllIngress(canaryIngName,
-				f.Namespace, canaryService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleCatchAllIngress(
+				canaryIngName,
+				f.Namespace,
+				canaryService,
+				80,
+				annotations))
 
-			ing = framework.NewSingleCatchAllIngress(host, f.Namespace,
-				framework.EchoService, 80, nil)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleCatchAllIngress(
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				nil))
 
 			f.WaitForNginxServer("_",
 				func(server string) bool {
-					upstreamName := fmt.Sprintf(`set $proxy_upstream_name "%s-%s-%s";`, f.Namespace, framework.EchoService, "80")
+					upstreamName := fmt.Sprintf(`set $proxy_upstream_name "%s-%s-%s";`, f.Namespace, framework.HTTPBunService, "80")
 					canaryUpstreamName := fmt.Sprintf(`set $proxy_upstream_name "%s-%s-%s";`, f.Namespace, canaryService, "80")
 
 					return strings.Contains(server, fmt.Sprintf(`set $ingress_name "%v";`, host)) &&
@@ -896,14 +1109,24 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				"nginx.ingress.kubernetes.io/canary-by-header": "CanaryByHeader",
 			}
 
-			ing := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				annotations))
 
 			otherHost := "bar"
-			ing = framework.NewSingleIngress(otherHost, "/", otherHost,
-				f.Namespace, framework.EchoService, 80, nil)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				otherHost,
+				"/info",
+				otherHost,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				nil))
 
 			f.WaitForNginxConfiguration(func(cfg string) bool {
 				return strings.Contains(cfg, "server_name "+otherHost) &&
@@ -921,13 +1144,22 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 		}
 
 		paths := []string{"/foo", "/bar"}
-		ing := framework.NewSingleIngressWithMultiplePaths(canaryIngName, paths, host,
-			f.Namespace, "httpy-svc-canary", 80, annotations)
-		f.EnsureIngress(ing)
+		f.EnsureIngress(framework.NewSingleIngressWithMultiplePaths(
+			canaryIngName,
+			paths,
+			host,
+			f.Namespace,
+			"httpy-svc-canary",
+			80,
+			annotations))
 
-		ing = framework.NewSingleIngress(host, "/", host, f.Namespace,
-			framework.EchoService, 80, nil)
-		f.EnsureIngress(ing)
+		f.EnsureIngress(framework.NewSingleIngress(
+			host,
+			"/info",
+			host, f.Namespace,
+			framework.HTTPBunService,
+			80,
+			nil))
 
 		f.WaitForNginxServer(host,
 			func(server string) bool {
@@ -946,9 +1178,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				"nginx.ingress.kubernetes.io/session-cookie-name": affinityCookieName,
 			}
 
-			ing := framework.NewSingleIngress(host, "/", host,
-				f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -964,14 +1201,19 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				"nginx.ingress.kubernetes.io/canary-weight":          "1",
 			}
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			// This request will produce affinity cookie coming from the canary
 			// backend.
 			forcedRequestToCanary := f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("ForceCanary", "yes").
 				Expect().
@@ -988,7 +1230,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			// routed to a specific backend.
 			for i := 0; i < 50; i++ {
 				f.HTTPTestClient().
-					GET("/").
+					GET("/info").
 					WithHeader("Host", host).
 					WithCookie(affinityCookieName, affinityCookie.Raw().Value).
 					Expect().
@@ -1003,9 +1245,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				"nginx.ingress.kubernetes.io/session-cookie-name": affinityCookieName,
 			}
 
-			ing := framework.NewSingleIngress(host, "/", host,
-				f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -1022,14 +1269,19 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				"nginx.ingress.kubernetes.io/affinity-canary-behavior": "sticky",
 			}
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			// This request will produce affinity cookie coming from the canary
 			// backend.
 			forcedRequestToCanary := f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("ForceCanary", "yes").
 				Expect().
@@ -1046,7 +1298,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			// routed to a specific backend.
 			for i := 0; i < 50; i++ {
 				f.HTTPTestClient().
-					GET("/").
+					GET("/info").
 					WithHeader("Host", host).
 					WithCookie(affinityCookieName, affinityCookie.Raw().Value).
 					Expect().
@@ -1061,9 +1313,14 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				"nginx.ingress.kubernetes.io/session-cookie-name": affinityCookieName,
 			}
 
-			ing := framework.NewSingleIngress(host, "/", host,
-				f.Namespace, framework.EchoService, 80, annotations)
-			f.EnsureIngress(ing)
+			f.EnsureIngress(framework.NewSingleIngress(
+				host,
+				"/info",
+				host,
+				f.Namespace,
+				framework.HTTPBunService,
+				80,
+				annotations))
 
 			f.WaitForNginxServer(host,
 				func(server string) bool {
@@ -1080,14 +1337,19 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				"nginx.ingress.kubernetes.io/affinity-canary-behavior": "legacy",
 			}
 
-			canaryIng := framework.NewSingleIngress(canaryIngName, "/", host,
-				f.Namespace, canaryService, 80, canaryAnnotations)
-			f.EnsureIngress(canaryIng)
+			f.EnsureIngress(framework.NewSingleIngress(
+				canaryIngName,
+				"/info",
+				host,
+				f.Namespace,
+				canaryService,
+				80,
+				canaryAnnotations))
 
 			// This request will produce affinity cookie coming from the canary
 			// backend.
 			forcedRequestToCanary := f.HTTPTestClient().
-				GET("/").
+				GET("/info").
 				WithHeader("Host", host).
 				WithHeader("ForceCanary", "yes").
 				Expect().
@@ -1113,7 +1375,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 // This method assumes canary weight being configured at 50%.
 func TestMainlineCanaryDistribution(f *framework.Framework, host string) {
-	re := regexp.MustCompile(fmt.Sprintf(`%s.*`, framework.EchoService))
+	re := regexp.MustCompile(fmt.Sprintf(`%s.*`, framework.HTTPBunService))
 	replicaRequestCount := map[string]int{}
 
 	// The implementation of choice by weight doesn't guarantee exact
@@ -1124,7 +1386,7 @@ func TestMainlineCanaryDistribution(f *framework.Framework, host string) {
 
 	for i := 0; i < requestsToGet; i++ {
 		body := f.HTTPTestClient().
-			GET("/").
+			GET("/info").
 			WithHeader("Host", host).
 			Expect().
 			Status(http.StatusOK).Body().Raw()
@@ -1143,6 +1405,14 @@ func TestMainlineCanaryDistribution(f *framework.Framework, host string) {
 
 	assert.Equal(ginkgo.GinkgoT(), 2, len(keys))
 
-	assert.GreaterOrEqual(ginkgo.GinkgoT(), int(replicaRequestCount[keys[0].String()]), requestsNumberToTest)
-	assert.GreaterOrEqual(ginkgo.GinkgoT(), int(replicaRequestCount[keys[1].String()]), requestsNumberToTest)
+	assert.GreaterOrEqual(
+		ginkgo.GinkgoT(),
+		int(replicaRequestCount[keys[0].String()]),
+		requestsNumberToTest,
+	)
+	assert.GreaterOrEqual(
+		ginkgo.GinkgoT(),
+		int(replicaRequestCount[keys[1].String()]),
+		requestsNumberToTest,
+	)
 }
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index d4e20fbf5..04faefc7f 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -219,7 +219,14 @@ func (f *Framework) NewHttpbunDeployment(opts ...func(*deploymentOptions)) strin
 		options.image,
 		80,
 		int32(options.replicas),
-		nil, nil, nil,
+		nil, nil,
+		//Required to get hostname information
+		[]corev1.EnvVar{
+			{
+				Name:  "HTTPBUN_INFO_ENABLED",
+				Value: "1",
+			},
+		},
 		[]corev1.VolumeMount{},
 		[]corev1.Volume{},
 		true,

From 0b4c98b7c31f95e00dc93b7a346bfe3a6526af51 Mon Sep 17 00:00:00 2001
From: LucasBoisserie <LucasBoisserie@users.noreply.github.com>
Date: Thu, 22 Jun 2023 16:59:40 +0200
Subject: [PATCH 0834/1641] feat(helm): Add loadBalancerClass (#9562)

---
 charts/ingress-nginx/README.md                         | 1 +
 charts/ingress-nginx/templates/controller-service.yaml | 3 +++
 charts/ingress-nginx/values.yaml                       | 2 ++
 3 files changed, 6 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 363970f60..a425ca33e 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -414,6 +414,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.service.ipFamilies | list | `["IPv4"]` | List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/ |
 | controller.service.ipFamilyPolicy | string | `"SingleStack"` | Represents the dual-stack-ness requested or required by this Service. Possible values are SingleStack, PreferDualStack or RequireDualStack. The ipFamilies and clusterIPs fields depend on the value of this field. # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/ |
 | controller.service.labels | object | `{}` |  |
+| controller.service.loadBalancerClass | string | `""` | Used by cloud providers to select a load balancer implementation other than the cloud provider default. https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-class |
 | controller.service.loadBalancerIP | string | `""` | Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer |
 | controller.service.loadBalancerSourceRanges | list | `[]` |  |
 | controller.service.nodePorts.http | string | `""` |  |
diff --git a/charts/ingress-nginx/templates/controller-service.yaml b/charts/ingress-nginx/templates/controller-service.yaml
index 2b28196de..36feb06c5 100644
--- a/charts/ingress-nginx/templates/controller-service.yaml
+++ b/charts/ingress-nginx/templates/controller-service.yaml
@@ -28,6 +28,9 @@ spec:
 {{- if .Values.controller.service.loadBalancerSourceRanges }}
   loadBalancerSourceRanges: {{ toYaml .Values.controller.service.loadBalancerSourceRanges | nindent 4 }}
 {{- end }}
+{{- if .Values.controller.service.loadBalancerClass }}
+  loadBalancerClass: {{ toYaml .Values.controller.service.loadBalancerClass }}
+{{- end }}
 {{- if .Values.controller.service.externalTrafficPolicy }}
   externalTrafficPolicy: {{ .Values.controller.service.externalTrafficPolicy }}
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 8080a1fc3..cc8bddf28 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -426,6 +426,8 @@ controller:
     # -- Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
     loadBalancerIP: ""
     loadBalancerSourceRanges: []
+    # -- Used by cloud providers to select a load balancer implementation other than the cloud provider default. https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-class
+    loadBalancerClass: ""
     enableHttp: true
     enableHttps: true
     ## Set external traffic policy to: "Local" to preserve source IP on providers supporting it.

From 8cdbcfa61cefe2bd49ca45bf71b05a57b0a1d30d Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 22 Jun 2023 13:25:41 -0400
Subject: [PATCH 0835/1641] golang 1.20.5 bump (#10120)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/test-runner/Makefile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 1d1f4f638..acf3dd660 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -43,7 +43,7 @@ image:
 		--pull \
 		--push \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=1.20.4 \
+		--build-arg GOLANG_VERSION=1.20.5 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
@@ -64,7 +64,7 @@ build: ensure-buildx
 		--progress=${PROGRESS} \
 		--pull \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=1.20.4 \
+		--build-arg GOLANG_VERSION=1.20.5 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \

From 08158df8c0b9d869247aceed8fdfffe5ac55e929 Mon Sep 17 00:00:00 2001
From: Isaac Wilson <10012479+jukie@users.noreply.github.com>
Date: Thu, 22 Jun 2023 11:35:40 -0600
Subject: [PATCH 0836/1641] Update typo in docs for lb scheme (#10117)

---
 charts/ingress-nginx/README.md        | 2 +-
 charts/ingress-nginx/README.md.gotmpl | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index a425ca33e..808601439 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -144,7 +144,7 @@ controller:
       enabled: true
       annotations:
         # Create internal NLB
-        service.beta.kubernetes.io/aws-load-balancer-scheme: "internet-facing"
+        service.beta.kubernetes.io/aws-load-balancer-scheme: "internal"
         # Create internal ELB(Deprecated)
         # service.beta.kubernetes.io/aws-load-balancer-internal: "true"
         # Any other annotation can be declared here.
diff --git a/charts/ingress-nginx/README.md.gotmpl b/charts/ingress-nginx/README.md.gotmpl
index 9b6f8c9c9..17b029bbf 100644
--- a/charts/ingress-nginx/README.md.gotmpl
+++ b/charts/ingress-nginx/README.md.gotmpl
@@ -141,7 +141,7 @@ controller:
       enabled: true
       annotations:
         # Create internal NLB
-        service.beta.kubernetes.io/aws-load-balancer-scheme: "internet-facing"
+        service.beta.kubernetes.io/aws-load-balancer-scheme: "internal"
         # Create internal ELB(Deprecated)
         # service.beta.kubernetes.io/aws-load-balancer-internal: "true"
         # Any other annotation can be declared here.

From f8bf5a3086fc52114040a60335e2f483e819a14c Mon Sep 17 00:00:00 2001
From: Brendan Kamp <brendankamp757@gmail.com>
Date: Fri, 23 Jun 2023 12:01:24 +0200
Subject: [PATCH 0837/1641] chore: remove echo from snippet tests (#10110)

Signed-off-by: Spazzy <brendankamp757@gmail.com>
---
 test/e2e/annotations/snippet.go | 46 +++++++++++++++++++++------------
 1 file changed, 30 insertions(+), 16 deletions(-)

diff --git a/test/e2e/annotations/snippet.go b/test/e2e/annotations/snippet.go
index 367708302..2bbd3e33a 100644
--- a/test/e2e/annotations/snippet.go
+++ b/test/e2e/annotations/snippet.go
@@ -26,21 +26,25 @@ import (
 )
 
 var _ = framework.DescribeAnnotation("configuration-snippet", func() {
-	f := framework.NewDefaultFramework("configurationsnippet")
+	f := framework.NewDefaultFramework(
+		"configurationsnippet",
+		framework.WithHTTPBunEnabled(),
+	)
 
-	ginkgo.BeforeEach(func() {
-		f.NewEchoDeployment()
-	})
-
-	ginkgo.It(`set snippet "more_set_headers "Foo1: Bar1";" in all locations"`, func() {
+	ginkgo.It("set snippet more_set_headers in all locations", func() {
 		host := "configurationsnippet.foo.com"
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/configuration-snippet": `
-				more_set_headers "Foo1: Bar1";`,
+			"nginx.ingress.kubernetes.io/configuration-snippet": `more_set_headers "Foo1: Bar1";`,
 		}
 
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
-		f.EnsureIngress(ing)
+		f.EnsureIngress(framework.NewSingleIngress(
+			host,
+			"/",
+			host,
+			f.Namespace,
+			framework.HTTPBunService,
+			80,
+			annotations))
 
 		f.WaitForNginxServer(host,
 			func(server string) bool {
@@ -51,23 +55,32 @@ var _ = framework.DescribeAnnotation("configuration-snippet", func() {
 			GET("/").
 			WithHeader("Host", host).
 			Expect().
-			Status(http.StatusOK).Headers().
+			Status(http.StatusOK).
+			Headers().
 			ValueEqual("Foo1", []string{"Bar1"})
 	})
 
-	ginkgo.It(`drops snippet "more_set_headers "Foo1: Bar1";" in all locations if disabled by admin"`, func() {
+	ginkgo.It("drops snippet more_set_header in all locations if disabled by admin", func() {
 		host := "noconfigurationsnippet.foo.com"
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/configuration-snippet": `
-				more_set_headers "Foo1: Bar1";`,
+			"nginx.ingress.kubernetes.io/configuration-snippet": `more_set_headers "Foo1: Bar1";`,
 		}
 
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+		ing := framework.NewSingleIngress(
+			host,
+			"/",
+			host,
+			f.Namespace,
+			framework.HTTPBunService,
+			80,
+			annotations)
+
 		f.UpdateNginxConfigMapData("allow-snippet-annotations", "false")
 		defer func() {
 			// Return to the original value
 			f.UpdateNginxConfigMapData("allow-snippet-annotations", "true")
 		}()
+
 		// Sleep a while just to guarantee that the configmap is applied
 		framework.Sleep()
 		f.EnsureIngress(ing)
@@ -81,7 +94,8 @@ var _ = framework.DescribeAnnotation("configuration-snippet", func() {
 			GET("/").
 			WithHeader("Host", host).
 			Expect().
-			Status(http.StatusOK).Headers().
+			Status(http.StatusOK).
+			Headers().
 			NotContainsKey("Foo1")
 	})
 })

From 44b006719150ac45f05e9fbb7f269110c3f3ec61 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 23 Jun 2023 09:31:00 -0400
Subject: [PATCH 0838/1641] add gcloud ignore

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .gcloudignore                      | 0
 images/test-runner/cloudbuild.yaml | 6 ------
 2 files changed, 6 deletions(-)
 create mode 100644 .gcloudignore

diff --git a/.gcloudignore b/.gcloudignore
new file mode 100644
index 000000000..e69de29bb
diff --git a/images/test-runner/cloudbuild.yaml b/images/test-runner/cloudbuild.yaml
index 761ea7f28..b17de9b31 100644
--- a/images/test-runner/cloudbuild.yaml
+++ b/images/test-runner/cloudbuild.yaml
@@ -6,8 +6,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - SHORT_SHA=$SHORT_SHA
-      - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
       # set the home to /root explicitly to if using docker buildx
@@ -17,7 +15,3 @@ steps:
     - |
       gcloud auth configure-docker \
       && cd images/test-runner && make push
-substitutions:
-  _GIT_TAG: "12345"
-  _PULL_BASE_REF: "master"
-  _PULL_BASE_SHA: '12345'
\ No newline at end of file

From cd610168be182844c8a9d73cd5540de2dc62b5d0 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 23 Jun 2023 14:17:24 -0400
Subject: [PATCH 0839/1641] update test runner (#10125)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 build/run-in-docker.sh  | 2 +-
 test/e2e-image/Makefile | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index d2d6fcdd9..86e0e443f 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20230527@sha256:a98ce8ab90f16bdd8539b168a4d000f366afa4eec23a220b3ce39698c5769bfd}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20230623-d50c7193b@sha256:e5c68dc56934c273850bfb75c0348a2819756669baf59fcdce9e16771537b247}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index f74ea8c74..f68d6ea6e 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20230527@sha256:a98ce8ab90f16bdd8539b168a4d000f366afa4eec23a220b3ce39698c5769bfd"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20230623-d50c7193b@sha256:e5c68dc56934c273850bfb75c0348a2819756669baf59fcdce9e16771537b247"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"

From 58650d6aaab8452d9ceaa010db251c068a1d91f3 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 23 Jun 2023 15:29:48 -0400
Subject: [PATCH 0840/1641] rebuild nginx base container image

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 TAG                          | 2 +-
 images/nginx/TAG             | 2 +-
 images/nginx/cloudbuild.yaml | 6 ------
 3 files changed, 2 insertions(+), 8 deletions(-)

diff --git a/TAG b/TAG
index ba103d909..c9a0c1a83 100644
--- a/TAG
+++ b/TAG
@@ -1,2 +1,2 @@
-v1.8.0
+v1.8.1
 
diff --git a/images/nginx/TAG b/images/nginx/TAG
index 77d6f4ca2..8acdd82b7 100644
--- a/images/nginx/TAG
+++ b/images/nginx/TAG
@@ -1 +1 @@
-0.0.0
+0.0.1
diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index c581700dd..71051f26d 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -8,8 +8,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - SHORT_SHA=$SHORT_SHA
-      - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       - HOME=/root
     args:
@@ -17,7 +15,3 @@ steps:
     - |
       gcloud auth configure-docker \
       && cd images/nginx && make push
-substitutions:
-  _GIT_TAG: "12345"
-  _PULL_BASE_REF: "master"
-  _PULL_BASE_SHA: '12345'

From 643c475db08e216eebd8c17dfc069b1a257d2df1 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Mon, 26 Jun 2023 07:03:11 +0530
Subject: [PATCH 0841/1641] bump pinned golang to 1.20.5 (#10127)

---
 images/custom-error-pages/rootfs/Dockerfile       | 2 +-
 images/ext-auth-example-authsvc/rootfs/Dockerfile | 2 +-
 images/fastcgi-helloserver/rootfs/Dockerfile      | 2 +-
 images/go-grpc-greeter-server/rootfs/Dockerfile   | 2 +-
 images/httpbun/rootfs/Dockerfile                  | 2 +-
 images/kube-webhook-certgen/rootfs/Dockerfile     | 2 +-
 6 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index 30ac54693..04bcb8e08 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.20.4-alpine3.18 as builder
+FROM golang:1.20.5-alpine3.18 as builder
 
 RUN apk update \
     && apk upgrade && apk add git
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index 96dcd9a39..02d92d773 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.20.4-alpine3.18 as builder
+FROM golang:1.20.5-alpine3.18 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
index a11834373..096d31abb 100755
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.20.4-alpine3.18 as builder
+FROM golang:1.20.5-alpine3.18 as builder
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
 
diff --git a/images/go-grpc-greeter-server/rootfs/Dockerfile b/images/go-grpc-greeter-server/rootfs/Dockerfile
index d457b43e5..46f916fb4 100644
--- a/images/go-grpc-greeter-server/rootfs/Dockerfile
+++ b/images/go-grpc-greeter-server/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.20.4-alpine3.18 as build
+FROM golang:1.20.5-alpine3.18 as build
 
 WORKDIR /go/src/greeter-server
 
diff --git a/images/httpbun/rootfs/Dockerfile b/images/httpbun/rootfs/Dockerfile
index a1775d303..e88716bb8 100644
--- a/images/httpbun/rootfs/Dockerfile
+++ b/images/httpbun/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.20 AS builder
+FROM golang:1.20.5 AS builder
 
 ENV LC_ALL=C.UTF-8
 ENV LANG=C.UTF-8
diff --git a/images/kube-webhook-certgen/rootfs/Dockerfile b/images/kube-webhook-certgen/rootfs/Dockerfile
index 40a2c31ac..13226dbe2 100644
--- a/images/kube-webhook-certgen/rootfs/Dockerfile
+++ b/images/kube-webhook-certgen/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM --platform=$BUILDPLATFORM golang:1.20.1 as builder
+FROM --platform=$BUILDPLATFORM golang:1.20.5 as builder
 ARG BUILDPLATFORM
 ARG TARGETARCH
 

From a21b5218a53476015c996e2588ac5837b20d37b0 Mon Sep 17 00:00:00 2001
From: Junrui Chen <chenjunrui93@gmail.com>
Date: Tue, 27 Jun 2023 16:30:30 +1000
Subject: [PATCH 0842/1641] Set grpc :authority header from request header
 (#8912)

This is to fix that the `:authority` header is  set to `upstream_balancer`
---
 rootfs/etc/nginx/template/nginx.tmpl | 2 --
 test/e2e/annotations/grpc.go         | 1 +
 2 files changed, 1 insertion(+), 2 deletions(-)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index a1e02aae3..ccc86702d 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -1388,13 +1388,11 @@ stream {
             {{ end }}
 
             {{/* By default use vhost as Host to upstream, but allow overrides */}}
-            {{ if not (eq $proxySetHeader "grpc_set_header") }}
             {{ if not (empty $location.UpstreamVhost) }}
             {{ $proxySetHeader }} Host                   {{ $location.UpstreamVhost | quote }};
             {{ else }}
             {{ $proxySetHeader }} Host                   $best_http_host;
             {{ end }}
-            {{ end }}
 
             # Pass the extracted client certificate to the backend
             {{ if not (empty $server.CertificateAuth.CAFileName) }}
diff --git a/test/e2e/annotations/grpc.go b/test/e2e/annotations/grpc.go
index c8e530ead..243307df4 100644
--- a/test/e2e/annotations/grpc.go
+++ b/test/e2e/annotations/grpc.go
@@ -120,6 +120,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 
 		metadata := res.GetMetadata()
 		assert.Equal(ginkgo.GinkgoT(), metadata["content-type"].Values[0], "application/grpc")
+		assert.Equal(ginkgo.GinkgoT(), metadata[":authority"].Values[0], host)
 	})
 
 	ginkgo.It("authorization metadata should be overwritten by external auth response headers", func() {

From 0986c33378e8567059ce00d7dc8e7f36c56731e4 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 27 Jun 2023 05:28:30 -0700
Subject: [PATCH 0843/1641] Bump google.golang.org/grpc from 1.56.0 to 1.56.1
 (#10134)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.56.0 to 1.56.1.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.56.0...v1.56.1)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index cbcc28cc8..4b75cbd12 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.10.0
-	google.golang.org/grpc v1.56.0
+	google.golang.org/grpc v1.56.1
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index 5924b2d1c..db879481c 100644
--- a/go.sum
+++ b/go.sum
@@ -661,8 +661,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.56.0 h1:+y7Bs8rtMd07LeXmL3NxcTLn7mUkbKZqEpPhMNkwJEE=
-google.golang.org/grpc v1.56.0/go.mod h1:I9bI3vqKfayGqPUAwGdOSu7kt6oIJLixfffKrpXqQ9s=
+google.golang.org/grpc v1.56.1 h1:z0dNfjIl0VpaZ9iSVjA6daGatAYwPGstTjt5vkRMFkQ=
+google.golang.org/grpc v1.56.1/go.mod h1:I9bI3vqKfayGqPUAwGdOSu7kt6oIJLixfffKrpXqQ9s=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From ef6163a0883e2be47d89a18b571aa128e24a19c1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 27 Jun 2023 05:30:31 -0700
Subject: [PATCH 0844/1641] Bump ossf/scorecard-action from 2.1.3 to 2.2.0
 (#10133)

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.1.3 to 2.2.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](https://github.com/ossf/scorecard-action/compare/80e868c13c90f172d68d1f4501dee99e2479f7af...08b4669551908b1024bb425080c797723083c031)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 72a112ac4..2e276a3f6 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -32,7 +32,7 @@ jobs:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@80e868c13c90f172d68d1f4501dee99e2479f7af # v2.1.3
+        uses: ossf/scorecard-action@08b4669551908b1024bb425080c797723083c031 # v2.2.0
         with:
           results_file: results.sarif
           results_format: sarif

From 002d7e90d76e2588a7b3babc671837e5803656d9 Mon Sep 17 00:00:00 2001
From: Fabio Formosa <fabio.formosa@gmail.com>
Date: Tue, 27 Jun 2023 14:34:32 +0200
Subject: [PATCH 0845/1641] Added a doc line to the missing helm value
 service.internal.loadBalancerIP (#9406)

* Update README.md

#9403 Add documentation for controller.service.internal.loadBalancerIP in Helm chart

* Update README.md

removed a duplicated row in the helm chart values

* #9403 added a doc to the internal loadBalancerIP

removed a comment from an already supported helm value and added a doc line

* #9403 Reverted a manual added line

Removed a manual added line in favour of helm doc

* #9403 re-generated the README with the last doc line added to the value.yaml

* #9403 removed trailing spaces

* removed trail spaces
---
 charts/ingress-nginx/README.md   | 1 +
 charts/ingress-nginx/values.yaml | 4 +++-
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 808601439..8b5d92d37 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -408,6 +408,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.service.externalIPs | list | `[]` | List of IP addresses at which the controller services are available # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips # |
 | controller.service.internal.annotations | object | `{}` | Annotations are mandatory for the load balancer to come up. Varies with the cloud service. |
 | controller.service.internal.enabled | bool | `false` | Enables an additional internal load balancer (besides the external one). |
+| controller.service.internal.loadBalancerIP | string | `""` | Used by cloud providers to connect the resulting internal LoadBalancer to a pre-existing static IP. Make sure to add to the service the needed annotation to specify the subnet which the static IP belongs to. For instance, `networking.gke.io/internal-load-balancer-subnet` for GCP and `service.beta.kubernetes.io/aws-load-balancer-subnets` for AWS. |
 | controller.service.internal.loadBalancerSourceRanges | list | `[]` | Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0. |
 | controller.service.internal.ports | object | `{}` | Custom port mapping for internal service |
 | controller.service.internal.targetPorts | object | `{}` | Custom target port mapping for internal service |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index cc8bddf28..b313643f3 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -478,7 +478,9 @@ controller:
       enabled: false
       # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service.
       annotations: {}
-      # loadBalancerIP: ""
+
+      # -- Used by cloud providers to connect the resulting internal LoadBalancer to a pre-existing static IP. Make sure to add to the service the needed annotation to specify the subnet which the static IP belongs to. For instance, `networking.gke.io/internal-load-balancer-subnet` for GCP and `service.beta.kubernetes.io/aws-load-balancer-subnets` for AWS.
+      loadBalancerIP: ""
 
       # -- Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.
       loadBalancerSourceRanges: []

From 8b24fc98d28dec4e1cdc247fac240cd237c0c8c9 Mon Sep 17 00:00:00 2001
From: kylekluever <39891060+kylekluever@users.noreply.github.com>
Date: Tue, 27 Jun 2023 07:42:32 -0500
Subject: [PATCH 0846/1641] Fix loadBalancerClass value (#10139)

---
 charts/ingress-nginx/templates/controller-service.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/templates/controller-service.yaml b/charts/ingress-nginx/templates/controller-service.yaml
index 36feb06c5..b2735d2e8 100644
--- a/charts/ingress-nginx/templates/controller-service.yaml
+++ b/charts/ingress-nginx/templates/controller-service.yaml
@@ -29,7 +29,7 @@ spec:
   loadBalancerSourceRanges: {{ toYaml .Values.controller.service.loadBalancerSourceRanges | nindent 4 }}
 {{- end }}
 {{- if .Values.controller.service.loadBalancerClass }}
-  loadBalancerClass: {{ toYaml .Values.controller.service.loadBalancerClass }}
+  loadBalancerClass: {{ .Values.controller.service.loadBalancerClass }}
 {{- end }}
 {{- if .Values.controller.service.externalTrafficPolicy }}
   externalTrafficPolicy: {{ .Values.controller.service.externalTrafficPolicy }}

From 1ddecfc09945e265b88e510f8c0787519ab7b476 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Tue, 27 Jun 2023 23:36:33 +0530
Subject: [PATCH 0847/1641] changed to updated baseimage and reverted tag
 (#10143)

---
 NGINX_BASE | 2 +-
 TAG        | 3 +--
 2 files changed, 2 insertions(+), 3 deletions(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index 02a35039a..14a7ee54b 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:v20230527@sha256:cf77c71aa6e4284925ca2233ddf871b5823eaa3ee000347ae25096b07fb52c57
+registry.k8s.io/ingress-nginx/nginx:v20230623-427f3d2fb@sha256:7b479f66872c0b1cb0f1315e305b8a3e9c6da846c7dd3855db99bc8cfd6791e1
diff --git a/TAG b/TAG
index c9a0c1a83..804a616da 100644
--- a/TAG
+++ b/TAG
@@ -1,2 +1 @@
-v1.8.1
-
+v1.8.0

From a2f3036e20bcd500daee9d9eeebf807257c75c7b Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Wed, 28 Jun 2023 02:50:32 +0800
Subject: [PATCH 0848/1641] netlify: Only trigger preview when there are
 changes in docs. (#10144)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 netlify.toml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/netlify.toml b/netlify.toml
index add8d4fc3..dc4b0d1ca 100644
--- a/netlify.toml
+++ b/netlify.toml
@@ -2,6 +2,7 @@
 [build]
 publish = "site"
 command = "make build-docs"
+ignore = "git diff --quiet $CACHED_COMMIT_REF $COMMIT_REF ./docs"
 # available here https://github.com/netlify/build-image/blob/focal/included_software.md#languages
 environment = { PYTHON_VERSION = "3.8" }
 

From b38a2c761283e16bff3f17f56ce135986b9716ab Mon Sep 17 00:00:00 2001
From: z1cheng <imchench@gmail.com>
Date: Fri, 30 Jun 2023 12:37:20 +0000
Subject: [PATCH 0849/1641] Fix OCI manifest templates and regenerate the
 deploy files

Signed-off-by: z1cheng <imchench@gmail.com>
---
 deploy/static/provider/oci/deploy.yaml        | 57 ++++++++++---------
 deploy/static/provider/oci/kustomization.yaml |  2 +-
 .../provider/oci/kustomization.yaml           |  4 ++
 .../provider/oci/values.yaml                  |  8 +++
 4 files changed, 42 insertions(+), 29 deletions(-)
 create mode 100644 hack/manifest-templates/provider/oci/kustomization.yaml
 create mode 100644 hack/manifest-templates/provider/oci/values.yaml

diff --git a/deploy/static/provider/oci/deploy.yaml b/deploy/static/provider/oci/deploy.yaml
index 77de50247..2518201bd 100644
--- a/deploy/static/provider/oci/deploy.yaml
+++ b/deploy/static/provider/oci/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,26 +328,27 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
 apiVersion: v1
 kind: Service
 metadata:
+  annotations:
+    service.beta.kubernetes.io/oci-load-balancer-shape: flexible
+    service.beta.kubernetes.io/oci-load-balancer-shape-flex-max: "100"
+    service.beta.kubernetes.io/oci-load-balancer-shape-flex-min: "10"
   labels:
     app.kubernetes.io/component: controller
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
-  annotations:
-    service.beta.kubernetes.io/oci-load-balancer-shape: "flexible"
-    service.beta.kubernetes.io/oci-load-balancer-shape-flex-min: "10"
-    service.beta.kubernetes.io/oci-load-balancer-shape-flex-max: "100"
 spec:
+  externalTrafficPolicy: Local
   ipFamilies:
   - IPv4
   ipFamilyPolicy: SingleStack
@@ -376,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
     spec:
       containers:
       - args:
@@ -441,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -513,7 +514,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -524,7 +525,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -538,7 +539,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -560,7 +561,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -571,7 +572,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.7.1
+        app.kubernetes.io/version: 1.8.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -587,7 +588,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230312-helm-chart-4.5.2-28-g66a760794@sha256:01d181618f270f2a96c04006f33b2699ad3ccb02da48d0f89b22abce084b292f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -609,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -622,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.7.1
+    app.kubernetes.io/version: 1.8.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oci/kustomization.yaml b/deploy/static/provider/oci/kustomization.yaml
index d477ec405..632c0f80f 100644
--- a/deploy/static/provider/oci/kustomization.yaml
+++ b/deploy/static/provider/oci/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/oci
 # ```
 
 resources:
diff --git a/hack/manifest-templates/provider/oci/kustomization.yaml b/hack/manifest-templates/provider/oci/kustomization.yaml
new file mode 100644
index 000000000..cd6ef95be
--- /dev/null
+++ b/hack/manifest-templates/provider/oci/kustomization.yaml
@@ -0,0 +1,4 @@
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+resources:
+- ../../common
diff --git a/hack/manifest-templates/provider/oci/values.yaml b/hack/manifest-templates/provider/oci/values.yaml
new file mode 100644
index 000000000..b4480531f
--- /dev/null
+++ b/hack/manifest-templates/provider/oci/values.yaml
@@ -0,0 +1,8 @@
+controller:
+  service:
+    type: LoadBalancer
+    externalTrafficPolicy: Local
+    annotations:
+      service.beta.kubernetes.io/oci-load-balancer-shape: "flexible"
+      service.beta.kubernetes.io/oci-load-balancer-shape-flex-min: "10"
+      service.beta.kubernetes.io/oci-load-balancer-shape-flex-max: "100"

From 155fc8daa468fd127b16118832279e0f6f42aa1b Mon Sep 17 00:00:00 2001
From: z1cheng <imchench@gmail.com>
Date: Fri, 30 Jun 2023 12:49:51 +0000
Subject: [PATCH 0850/1641] Rename OCI to oracle

Signed-off-by: z1cheng <imchench@gmail.com>
---
 deploy/static/provider/{oci => oracle}/deploy.yaml              | 0
 deploy/static/provider/{oci => oracle}/kustomization.yaml       | 2 +-
 .../provider/{oci => oracle}/kustomization.yaml                 | 0
 hack/manifest-templates/provider/{oci => oracle}/values.yaml    | 0
 4 files changed, 1 insertion(+), 1 deletion(-)
 rename deploy/static/provider/{oci => oracle}/deploy.yaml (100%)
 rename deploy/static/provider/{oci => oracle}/kustomization.yaml (94%)
 rename hack/manifest-templates/provider/{oci => oracle}/kustomization.yaml (100%)
 rename hack/manifest-templates/provider/{oci => oracle}/values.yaml (100%)

diff --git a/deploy/static/provider/oci/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
similarity index 100%
rename from deploy/static/provider/oci/deploy.yaml
rename to deploy/static/provider/oracle/deploy.yaml
diff --git a/deploy/static/provider/oci/kustomization.yaml b/deploy/static/provider/oracle/kustomization.yaml
similarity index 94%
rename from deploy/static/provider/oci/kustomization.yaml
rename to deploy/static/provider/oracle/kustomization.yaml
index 632c0f80f..5c1dcff96 100644
--- a/deploy/static/provider/oci/kustomization.yaml
+++ b/deploy/static/provider/oracle/kustomization.yaml
@@ -4,7 +4,7 @@
 # ```
 # namespace: ingress-nginx
 # bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/oci
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/oracle
 # ```
 
 resources:
diff --git a/hack/manifest-templates/provider/oci/kustomization.yaml b/hack/manifest-templates/provider/oracle/kustomization.yaml
similarity index 100%
rename from hack/manifest-templates/provider/oci/kustomization.yaml
rename to hack/manifest-templates/provider/oracle/kustomization.yaml
diff --git a/hack/manifest-templates/provider/oci/values.yaml b/hack/manifest-templates/provider/oracle/values.yaml
similarity index 100%
rename from hack/manifest-templates/provider/oci/values.yaml
rename to hack/manifest-templates/provider/oracle/values.yaml

From 652a80042222f881ce56b3b689498e2b6fe4de72 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 30 Jun 2023 17:37:24 -0400
Subject: [PATCH 0851/1641] release notes 1.8.1 (#10161)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 README.md                                     |   7 +-
 changelog/Changelog-1.8.1.md                  |  67 ++++
 charts/ingress-nginx/Chart.yaml               |  11 +-
 charts/ingress-nginx/README.md                |   8 +-
 .../changelog/Changelog-4.7.1.md              |  12 +
 charts/ingress-nginx/values.yaml              |   8 +-
 deploy/static/provider/aws/deploy.yaml        |  44 +--
 .../aws/nlb-with-tls-termination/deploy.yaml  |  44 +--
 deploy/static/provider/baremetal/deploy.yaml  |  44 +--
 deploy/static/provider/cloud/deploy.yaml      |  44 +--
 deploy/static/provider/do/deploy.yaml         |  44 +--
 deploy/static/provider/exoscale/deploy.yaml   |  44 +--
 deploy/static/provider/kind/deploy.yaml       |  44 +--
 deploy/static/provider/oracle/deploy.yaml     |  44 +--
 deploy/static/provider/scw/deploy.yaml        |  44 +--
 docs/deploy/index.md                          |  20 +-
 docs/e2e-tests.md                             | 356 +++++++++---------
 17 files changed, 482 insertions(+), 403 deletions(-)
 create mode 100644 changelog/Changelog-1.8.1.md
 create mode 100644 charts/ingress-nginx/changelog/Changelog-4.7.1.md

diff --git a/README.md b/README.md
index dc7ff3c38..812ddacb6 100644
--- a/README.md
+++ b/README.md
@@ -38,6 +38,7 @@ the versions listed. Ingress-Nginx versions may work on older versions but the p
 
 |    | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
 |:--:|-----------------------|------------------------------|----------------|---------------|--------------------|
+| 🔄 | **v1.8.1**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
 | 🔄 | **v1.8.0**            | 1.27,1.26, 1.25, 1.24        | 3.18.0         | 1.21.6        | 4.7.*              |
 | 🔄 | **v1.7.1**            | 1.27,1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
 | 🔄 | **v1.7.0**            | 1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        | 4.6.*              |
@@ -77,15 +78,15 @@ Thanks for taking the time to join our community and start contributing!
   - Read [`CONTRIBUTING.md`](CONTRIBUTING.md) for information about setting up your environment, the workflow that we
     expect, and instructions on the developer certificate of origin that we require.
   - Join our Kubernetes Slack channel for developer discussion : [#ingress-nginx-dev](https://kubernetes.slack.com/archives/C021E147ZA4).
-  - Submit GitHub issues for any feature enhancements, bugs or documentation problems. 
+  - Submit GitHub issues for any feature enhancements, bugs or documentation problems.
     - Please make sure to read the [Issue Reporting Checklist](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md#issue-reporting-guidelines) before opening an issue. Issues not conforming to the guidelines **may be closed immediately**.
   - Join our [ingress-nginx-dev mailing list](https://groups.google.com/a/kubernetes.io/g/ingress-nginx-dev/c/ebbBMo-zX-w)
 
-- **Support**: 
+- **Support**:
   - Join the [#ingress-nginx-users](https://kubernetes.slack.com/messages/CANQGM8BA/) channel inside the [Kubernetes Slack](http://slack.kubernetes.io/) to ask questions or get support from the maintainers and other users.
   - The [GitHub issues](https://github.com/kubernetes/ingress-nginx/issues) in the repository are **exclusively** for bug reports and feature requests.
   - **Discuss**: Tweet using the `#IngressNginx` hashtag or sharing with us [@IngressNginx](https://twitter.com/IngressNGINX).
 
 ## License
 
-[Apache License 2.0](https://github.com/kubernetes/ingress-nginx/blob/main/LICENSE)
\ No newline at end of file
+[Apache License 2.0](https://github.com/kubernetes/ingress-nginx/blob/main/LICENSE)
diff --git a/changelog/Changelog-1.8.1.md b/changelog/Changelog-1.8.1.md
new file mode 100644
index 000000000..c84a7ce18
--- /dev/null
+++ b/changelog/Changelog-1.8.1.md
@@ -0,0 +1,67 @@
+# Changelog
+
+### 1.8.1
+Images:
+
+ * registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
+ * registry.k8s.io/ingress-nginx/controller-chroot:v1.8.1@sha256:e0d4121e3c5e39de9122e55e331a32d5ebf8d4d257227cb93ab54a1b912a7627
+ 
+### All Changes:
+
+* netlify: Only trigger preview when there are changes in docs. (#10144)
+* changed to updated baseimage and reverted tag (#10143)
+* Fix loadBalancerClass value (#10139)
+* Added a doc line to the missing helm value service.internal.loadBalancerIP (#9406)
+* Set grpc :authority header from request header (#8912)
+* bump pinned golang to 1.20.5 (#10127)
+* update test runner (#10125)
+* chore: remove echo from snippet tests (#10110)
+* Update typo in docs for lb scheme (#10117)
+* golang 1.20.5 bump (#10120)
+* feat(helm): Add loadBalancerClass (#9562)
+* chore: remove echo friom canary tests (#10089)
+* fix: obsolete warnings (#10029)
+* docs: change Dockefile url ref main (#10087)
+* Revert "Remove fastcgi feature" (#10081)
+* docs: add netlify configuration (#10073)
+* add distroless otel init (#10035)
+* chore: move httpbun to be part of framework (#9955)
+* Remove fastcgi feature (#9864)
+* Fix mirror-target values without path separator and port (#9889)
+* Adding feature to upgrade Oracle Cloud Infrastructure's Flexible Load Balancer and adjusting Health Check that were critical in the previous configuration (#9961)
+* add support for keda fallback settings (#9993)
+* unnecessary use of fmt.Sprint (S1039) (#10049)
+* chore: pkg imported more than once (#10048)
+* tracing: upgrade to dd-opentracing-cpp v1.3.7 (#10031)
+* fix: add canary to sidebar in examples (#10068)
+* docs: add lua testing documentation (#10060)
+* docs: canary weighted deployments example (#10067)
+* Update Internal Load Balancer docs (#10062)
+* fix broken kubernetes.io/user-guide/ docs links (#10055)
+* docs: Updated the content of deploy/rbac.md (#10054)
+* ensured hpa mem spec before cpu spec (#10043)
+* Fix typo in controller_test (#10034)
+* chore(dep): upgrade github.com/emicklei/go-restful/v3 to 3.10 (#10028)
+* Upgrade to Golang 1.20.4 (#10016)
+* perf: avoid unnecessary byte/string conversion (#10012)
+* added note on dns for localtesting (#10021)
+* added helmshowvalues example (#10019)
+* release controller 1.8.0 and chart 4.7.0 (#10017)
+
+### Dependencies updates: 
+* Bump ossf/scorecard-action from 2.1.3 to 2.2.0 (#10133)
+* Bump google.golang.org/grpc from 1.56.0 to 1.56.1 (#10134)
+* Bump github.com/prometheus/client_golang from 1.15.1 to 1.16.0 (#10106)
+* Bump golang.org/x/crypto from 0.9.0 to 0.10.0 (#10105)
+* Bump google.golang.org/grpc from 1.55.0 to 1.56.0 (#10103)
+* Bump goreleaser/goreleaser-action from 4.2.0 to 4.3.0 (#10101)
+* Bump docker/setup-buildx-action from 2.6.0 to 2.7.0 (#10102)
+* Bump actions/checkout from 3.5.2 to 3.5.3 (#10076)
+* Bump docker/setup-qemu-action from 2.1.0 to 2.2.0 (#10075)
+* Bump aquasecurity/trivy-action from 0.10.0 to 0.11.2 (#10078)
+* Bump docker/setup-buildx-action from 2.5.0 to 2.6.0 (#10077)
+* Bump actions/dependency-review-action from 3.0.4 to 3.0.6 (#10042)
+* Bump github.com/stretchr/testify from 1.8.3 to 1.8.4 (#10041)
+* Bump github.com/stretchr/testify from 1.8.2 to 1.8.3 (#10005)
+ 
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.8.0...controller-controller-v1.8.1
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 9786f705c..de5fe4df0 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,11 +1,12 @@
 annotations:
   artifacthub.io/changes: |
-     - "helm: Fix opentelemetry module installation for daemonset (#9792)"
-     - "Update charts/* to keep project name display aligned (#9931)"
-     - "Update Ingress-Nginx version controller-v1.8.0"
+     - "Added a doc line to the missing helm value service.internal.loadBalancerIP (#9406)"
+     - "feat(helm): Add loadBalancerClass (#9562)"
+     - "added helmshowvalues example (#10019)"
+     - "Update Ingress-Nginx version controller-v1.8.1"
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.8.0
+appVersion: 1.8.1
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 engine: gotpl
@@ -22,4 +23,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.7.0
+version: 4.7.1
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 8b5d92d37..955091873 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.7.0](https://img.shields.io/badge/Version-4.7.0-informational?style=flat-square) ![AppVersion: 1.8.0](https://img.shields.io/badge/AppVersion-1.8.0-informational?style=flat-square)
+![Version: 4.7.1](https://img.shields.io/badge/Version-4.7.1-informational?style=flat-square) ![AppVersion: 1.8.1](https://img.shields.io/badge/AppVersion-1.8.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -313,13 +313,13 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3"` |  |
-| controller.image.digestChroot | string | `"sha256:a45e41cd2b7670adf829759878f512d4208d0aec1869dae593a0fecd09a5e49e"` |  |
+| controller.image.digest | string | `"sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd"` |  |
+| controller.image.digestChroot | string | `"sha256:e0d4121e3c5e39de9122e55e331a32d5ebf8d4d257227cb93ab54a1b912a7627"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.8.0"` |  |
+| controller.image.tag | string | `"v1.8.1"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/Changelog-4.7.1.md b/charts/ingress-nginx/changelog/Changelog-4.7.1.md
new file mode 100644
index 000000000..4d69a7117
--- /dev/null
+++ b/charts/ingress-nginx/changelog/Changelog-4.7.1.md
@@ -0,0 +1,12 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.7.1
+
+* Added a doc line to the missing helm value service.internal.loadBalancerIP (#9406)
+* feat(helm): Add loadBalancerClass (#9562)
+* added helmshowvalues example (#10019)
+* Update Ingress-Nginx version controller-v1.8.1
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.7.0...helm-chart-4.7.1
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index b313643f3..d091391a8 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -23,9 +23,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.8.0"
-    digest: sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
-    digestChroot: sha256:a45e41cd2b7670adf829759878f512d4208d0aec1869dae593a0fecd09a5e49e
+    tag: "v1.8.1"
+    digest: sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
+    digestChroot: sha256:e0d4121e3c5e39de9122e55e331a32d5ebf8d4d257227cb93ab54a1b912a7627
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
@@ -478,10 +478,8 @@ controller:
       enabled: false
       # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service.
       annotations: {}
-
       # -- Used by cloud providers to connect the resulting internal LoadBalancer to a pre-existing static IP. Make sure to add to the service the needed annotation to specify the subnet which the static IP belongs to. For instance, `networking.gke.io/internal-load-balancer-subnet` for GCP and `service.beta.kubernetes.io/aws-load-balancer-subnets` for AWS.
       loadBalancerIP: ""
-
       # -- Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.
       loadBalancerSourceRanges: []
       ## Set external traffic policy to: "Local" to preserve source IP on
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 48f7f11b1..f22f3a9c1 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -514,7 +514,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -525,7 +525,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -561,7 +561,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -572,7 +572,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -623,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index b4e2cd5f6..e9ae85143 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -427,7 +427,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
     spec:
       containers:
       - args:
@@ -451,7 +451,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -526,7 +526,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -537,7 +537,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -573,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -622,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 74292b82b..b66da7d45 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -413,7 +413,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
     spec:
       containers:
       - args:
@@ -436,7 +436,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -508,7 +508,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -519,7 +519,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -555,7 +555,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -566,7 +566,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -604,7 +604,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -617,7 +617,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 6dac63865..659da1d1b 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -414,7 +414,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
     spec:
       containers:
       - args:
@@ -438,7 +438,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -510,7 +510,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -521,7 +521,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -557,7 +557,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -568,7 +568,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -606,7 +606,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -619,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 0e3f4b46f..434f21ead 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
     spec:
       containers:
       - args:
@@ -441,7 +441,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -513,7 +513,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -524,7 +524,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -560,7 +560,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -571,7 +571,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -609,7 +609,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -622,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index a1bd4ed00..c9dff62cb 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -519,7 +519,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -530,7 +530,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -566,7 +566,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -577,7 +577,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -615,7 +615,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -628,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 41d17d8d1..f9965d0fe 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -620,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -633,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index 2518201bd..72556bb42 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -514,7 +514,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -525,7 +525,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -561,7 +561,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -572,7 +572,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -623,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index e303a52f5..8b4750992 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
     spec:
       containers:
       - args:
@@ -441,7 +441,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -513,7 +513,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -524,7 +524,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -560,7 +560,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -571,7 +571,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.0
+        app.kubernetes.io/version: 1.8.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -609,7 +609,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -622,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.0
+    app.kubernetes.io/version: 1.8.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 76a28b6ad..d719d4a57 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -68,7 +68,7 @@ helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -243,7 +243,7 @@ In AWS, we use a Network load balancer (NLB) to expose the Ingress-Nginx Control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -251,10 +251,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -300,7 +300,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -317,7 +317,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -325,7 +325,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -333,7 +333,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -348,7 +348,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -375,7 +375,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.0/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 025ff686d..ced8eaeaf 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -55,42 +55,6 @@ Do not try to edit it manually.
 
 - [should redirect to /foo](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L35)
 
-### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L40)
-
-- [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L47)
-- [should return status code 503 when authentication is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L66)
-- [should return status code 401 when authentication is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L90)
-- [should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L117)
-- [should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L145)
-- [should return status code 200 when authentication is configured and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L173)
-- [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L200)
-- [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L228)
-- [ when external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L267)
-- [ when external auth is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L285)
-- [ when auth-headers are set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L302)
-- [should set cache_key when external auth cache is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L323)
-- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L412)
-- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L423)
-- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L434)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L486)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L495)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L506)
-- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L530)
-- [should not create additional upstream block when auth-keepalive is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L553)
-- [should not create additional upstream block when host part of auth-url contains a variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L571)
-- [should not create additional upstream block when auth-keepalive is negative](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L591)
-- [should not create additional upstream block when auth-keepalive is set with HTTP/2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L610)
-- [should create additional upstream block when auth-keepalive is set with HTTP/1.x](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L624)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L679)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L688)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L699)
-- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L773)
-- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L793)
-- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L821)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L850)
-- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L880)
-- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L888)
-
 ### [auth-tls-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L29)
 
 - [should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L36)
@@ -111,34 +75,6 @@ Do not try to edit it manually.
 - [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L94)
 - [should set backend protocol to '' and use ajp_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L109)
 
-### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
-
-- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L48)
-- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L80)
-- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L107)
-- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L161)
-- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L206)
-- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L250)
-- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L307)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L372)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L426)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L490)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L532)
-- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L566)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L604)
-- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L643)
-- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L705)
-- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L743)
-- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L775)
-- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L808)
-- [should route requests split between mainline and canary if canary weight is 100 and weight total is 200](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L834)
-- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L863)
-- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L891)
-- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L915)
-- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L943)
-- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1000)
-- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1058)
-
 ### [client-body-buffer-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L28)
 
 - [should set client_body_buffer_size to 1000](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L35)
@@ -148,10 +84,6 @@ Do not try to edit it manually.
 - [should set client_body_buffer_size to 1M](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L123)
 - [should not set client_body_buffer_size to invalid 1b](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L145)
 
-### [connection-proxy-header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L29)
-
-- [set connection header to keep-alive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L36)
-
 ### [cors-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L28)
 
 - [should enable cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L35)
@@ -212,13 +144,6 @@ Do not try to edit it manually.
 
 - [generates correct configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L38)
 
-### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L40)
-
-- [should use grpc_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L43)
-- [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L68)
-- [authorization metadata should be overwritten by external auth response headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L126)
-- [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L199)
-
 ### [http2-push-preload](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L27)
 
 - [enable the http2-push-preload directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L34)
@@ -245,12 +170,6 @@ Do not try to edit it manually.
 - [set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L34)
 - [set rewrite_log on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L49)
 
-### [mirror-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L28)
-
-- [should set mirror-target to http://localhost/mirror](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L36)
-- [should set mirror-target to https://test.env.com/$request_uri](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L51)
-- [should disable mirror-request-body](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L67)
-
 ### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L28)
 
 - [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L35)
@@ -306,11 +225,6 @@ Do not try to edit it manually.
 - [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L158)
 - [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L190)
 
-### [satisfy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L35)
-
-- [should configure satisfy directive correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L42)
-- [should allow multiple auth with satisfy any](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L84)
-
 ### [server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L28)
 
 - [add valid directives to server via server snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L35)
@@ -322,11 +236,6 @@ Do not try to edit it manually.
 - [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L70)
 - [should not use the Service Cluster IP and Port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L99)
 
-### [configuration-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L28)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L35)
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L58)
-
 ### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L28)
 
 - [should change ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L35)
@@ -350,6 +259,97 @@ Do not try to edit it manually.
 - [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L35)
 - [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L57)
 
+### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L39)
+
+- [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L46)
+- [should return status code 503 when authentication is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L65)
+- [should return status code 401 when authentication is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L89)
+- [should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L116)
+- [should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L144)
+- [should return status code 200 when authentication is configured and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L172)
+- [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L199)
+- [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L227)
+- [ when external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L266)
+- [ when external auth is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L284)
+- [ when auth-headers are set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L301)
+- [should set cache_key when external auth cache is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L322)
+- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L411)
+- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L422)
+- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L433)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L472)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L481)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L492)
+- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L516)
+- [should not create additional upstream block when auth-keepalive is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L539)
+- [should not create additional upstream block when host part of auth-url contains a variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L557)
+- [should not create additional upstream block when auth-keepalive is negative](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L577)
+- [should not create additional upstream block when auth-keepalive is set with HTTP/2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L596)
+- [should create additional upstream block when auth-keepalive is set with HTTP/1.x](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L610)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L653)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L662)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L673)
+- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L732)
+- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L752)
+- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L780)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L809)
+- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L839)
+- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L847)
+
+### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
+
+- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L45)
+- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L89)
+- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L120)
+- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L174)
+- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L232)
+- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L289)
+- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L363)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L445)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L513)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L594)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L647)
+- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L692)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L741)
+- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L790)
+- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L862)
+- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L910)
+- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L952)
+- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L995)
+- [should route requests split between mainline and canary if canary weight is 100 and weight total is 200](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1031)
+- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1070)
+- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1104)
+- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1138)
+- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1175)
+- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1242)
+- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1310)
+
+### [connection-proxy-header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L28)
+
+- [set connection header to keep-alive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L35)
+
+### [mirror-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L28)
+
+- [should set mirror-target to http://localhost/mirror](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L36)
+- [should set mirror-target to https://test.env.com/$request_uri](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L51)
+- [should disable mirror-request-body](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L67)
+
+### [satisfy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L33)
+
+- [should configure satisfy directive correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L40)
+- [should allow multiple auth with satisfy any](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L82)
+
+### [configuration-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L28)
+
+- [set snippet more_set_headers in all locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L34)
+- [drops snippet more_set_header in all locations if disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L63)
+
+### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L39)
+
+- [should use grpc_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L42)
+- [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L67)
+- [authorization metadata should be overwritten by external auth response headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L126)
+- [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L186)
+
 ### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L29)
 
 - [should list the backend servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L37)
@@ -390,10 +390,6 @@ Do not try to edit it manually.
 
 - [should return 200 when service has topology hints](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L43)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
-
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
@@ -402,10 +398,6 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
 
-### [[Setting] ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L194)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L)
-
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
@@ -478,6 +470,14 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
 
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+
+### [[Setting] ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L217)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L)
+
 ### [[Shutdown] Grace period shutdown](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L32)
 
 - [/healthz should return status code 500 during shutdown grace period](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L35)
@@ -571,21 +571,21 @@ Do not try to edit it manually.
 - [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L36)
 - [should return 503 when all backend service endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L54)
 
-### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L37)
-
-- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L40)
-- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L72)
-- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L110)
-- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L138)
-- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L169)
-- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L206)
-- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L241)
-- [should sync ingress on external name service addition/deletion](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L311)
-
 ### [[Service] Nil Service Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L31)
 
 - [should return 404 when backend service is nil](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L38)
 
+### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L37)
+
+- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L40)
+- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L77)
+- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L117)
+- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L147)
+- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L183)
+- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L224)
+- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L260)
+- [should sync ingress on external name service addition/deletion](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L347)
+
 ### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L27)
 
 - [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L32)
@@ -601,10 +601,6 @@ Do not try to edit it manually.
 - [[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L102)
 - [[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L133)
 
-### [brotli](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L30)
-
-- [ condition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L39)
-
 ### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
 
 - [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
@@ -626,26 +622,12 @@ Do not try to edit it manually.
 - [should delete Ingress updated to catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L81)
 - [should allow Ingress with rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L123)
 
-### [[Flag] disable-service-external-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L35)
-
-- [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L52)
-
 ### [[Flag] disable-sync-events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L32)
 
 - [should create sync events (default)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L35)
 - [should create sync events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L53)
 - [should not create sync events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L80)
 
-### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L30)
-
-- [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L40)
-- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L78)
-
-### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L30)
-
-- [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L40)
-- [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L92)
-
 ### [Geoip2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L37)
 
 - [should include geoip2 line in config when enabled and db file exists](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L46)
@@ -657,21 +639,6 @@ Do not try to edit it manually.
 - [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L55)
 - [should block Referers defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L88)
 
-### [[Security] global-auth-url](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L34)
-
-- [should return status code 401 when request any protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L85)
-- [should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L102)
-- [should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L126)
-- [should still return status code 200 after auth backend is deleted using cache](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L155)
-- [should proxy_method method when global-auth-method is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L197)
-- [should add custom error page when global-auth-signin url is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L210)
-- [should add auth headers when global-auth-response-headers is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L223)
-- [should set request-redirect when global-auth-request-redirect is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L237)
-- [should set snippet when global external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L250)
-- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L326)
-- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L337)
-- [user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L348)
-
 ### [global-options](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L28)
 
 - [should have worker_rlimit_nofile option](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L31)
@@ -715,25 +682,10 @@ Do not try to edit it manually.
 - [should watch Ingress with correct annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L631)
 - [should ignore Ingress with only IngressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L652)
 
-### [keep-alive keep-alive-requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L28)
-
-- [should set keepalive_timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L40)
-- [should set keepalive_requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L48)
-- [should set keepalive connection to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L59)
-- [should set keep alive connection timeout to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L68)
-- [should set keepalive time to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L77)
-- [should set the request count to upstream server through one keep alive connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L86)
-
 ### [Configmap - limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L28)
 
 - [Check limit-rate config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L36)
 
-### [[Flag] custom HTTP and HTTPS ports](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L32)
-
-- [should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L48)
-- [should set X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L70)
-- [should set the X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L100)
-
 ### [log-format-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L28)
 
 - [should not configure log-format escape by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L40)
@@ -773,10 +725,6 @@ Do not try to edit it manually.
 - [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
 - [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
 
-### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L28)
-
-- [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L31)
-
 ### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
 
 - [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
@@ -822,22 +770,10 @@ Do not try to edit it manually.
 - [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L36)
 - [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L52)
 
-### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L28)
-
-- [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L36)
-- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L57)
-
 ### [proxy-next-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L28)
 
 - [should build proxy next upstream using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L36)
 
-### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L36)
-
-- [should respect port passed by the PROXY Protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L46)
-- [should respect proto passed by the PROXY Protocol server port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L79)
-- [should enable PROXY Protocol for HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L112)
-- [should enable PROXY Protocol for TCP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L155)
-
 ### [proxy-read-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L28)
 
 - [should set valid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L36)
@@ -868,15 +804,79 @@ Do not try to edit it manually.
 
 - [Add ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L31)
 
+### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L35)
+
+- [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L42)
+
+### [brotli](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L30)
+
+- [ condition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L38)
+
+### [[Flag] disable-service-external-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L35)
+
+- [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L55)
+
+### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L30)
+
+- [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L40)
+- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L78)
+
+### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L29)
+
+- [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L39)
+- [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L91)
+
+### [[Security] global-auth-url](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L34)
+
+- [should return status code 401 when request any protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L87)
+- [should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L104)
+- [should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L128)
+- [should still return status code 200 after auth backend is deleted using cache](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L157)
+- [should proxy_method method when global-auth-method is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L199)
+- [should add custom error page when global-auth-signin url is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L212)
+- [should add auth headers when global-auth-response-headers is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L225)
+- [should set request-redirect when global-auth-request-redirect is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L239)
+- [should set snippet when global external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L252)
+- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L328)
+- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L339)
+- [user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L350)
+
+### [keep-alive keep-alive-requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L27)
+
+- [should set keepalive_timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L39)
+- [should set keepalive_requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L47)
+- [should set keepalive connection to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L58)
+- [should set keep alive connection timeout to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L67)
+- [should set keepalive time to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L76)
+- [should set the request count to upstream server through one keep alive connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L85)
+
+### [[Flag] custom HTTP and HTTPS ports](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L30)
+
+- [should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L46)
+- [should set X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L68)
+- [should set the X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L98)
+
+### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L27)
+
+- [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L30)
+
+### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L28)
+
+- [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L36)
+- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L57)
+
+### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L36)
+
+- [should respect port passed by the PROXY Protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L46)
+- [should respect proto passed by the PROXY Protocol server port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L79)
+- [should enable PROXY Protocol for HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L112)
+- [should enable PROXY Protocol for TCP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L155)
+
 ### [With enable-ssl-passthrough enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L36)
 
 - [should enable ssl-passthrough-proxy-port on a different port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L56)
 - [should pass unknown traffic to default backend and handle known traffic](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L79)
 
-### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L35)
-
-- [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L42)
-
 ### [[SSL] TLS protocols, ciphers and headers)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L31)
 
 - [setting cipher suite](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L65)

From ebb631449474d12192304feacd180f1430035188 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 2 Jul 2023 06:26:49 -0300
Subject: [PATCH 0852/1641] Deprecate and remove AJP support (#10158)

---
 docs/e2e-tests.md                                 |  1 -
 .../user-guide/nginx-configuration/annotations.md |  4 ++--
 images/nginx/rootfs/build.sh                      |  9 ---------
 .../ingress/annotations/backendprotocol/main.go   |  2 +-
 internal/ingress/controller/template/template.go  |  3 ---
 .../ingress/controller/template/template_test.go  |  2 --
 rootfs/etc/nginx/template/nginx.tmpl              |  1 -
 test/e2e/annotations/backendprotocol.go           | 15 ---------------
 8 files changed, 3 insertions(+), 34 deletions(-)

diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index ced8eaeaf..c45b1e72c 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -73,7 +73,6 @@ Do not try to edit it manually.
 - [should set backend protocol to grpc:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L64)
 - [should set backend protocol to grpcs:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L79)
 - [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L94)
-- [should set backend protocol to '' and use ajp_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L109)
 
 ### [client-body-buffer-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L28)
 
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index b515a9f3b..0916b4df5 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -38,7 +38,7 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/auth-proxy-set-headers](#external-authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-snippet](#external-authentication)|string|
 |[nginx.ingress.kubernetes.io/enable-global-auth](#external-authentication)|"true" or "false"|
-|[nginx.ingress.kubernetes.io/backend-protocol](#backend-protocol)|string|HTTP,HTTPS,GRPC,GRPCS,AJP|
+|[nginx.ingress.kubernetes.io/backend-protocol](#backend-protocol)|string|HTTP,HTTPS,GRPC,GRPCS|
 |[nginx.ingress.kubernetes.io/canary](#canary)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/canary-by-header](#canary)|string|
 |[nginx.ingress.kubernetes.io/canary-by-header-value](#canary)|string|
@@ -894,7 +894,7 @@ Include /etc/nginx/owasp-modsecurity-crs/nginx-modsecurity.conf
 ### Backend Protocol
 
 Using `backend-protocol` annotations is possible to indicate how NGINX should communicate with the backend service. (Replaces `secure-backends` in older versions)
-Valid Values: HTTP, HTTPS, GRPC, GRPCS, AJP and FCGI
+Valid Values: HTTP, HTTPS, GRPC, GRPCS and FCGI
 
 By default NGINX uses `HTTP`.
 
diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index e2a5fd8c6..5e215bf72 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -80,11 +80,6 @@ export LUA_CJSON_VERSION=2.1.0.10
 # Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/3.3...master
 export GEOIP2_VERSION=a26c6beed77e81553686852dceb6c7fdacc5970d
 
-# Check for recent changes: https://github.com/msva/nginx_ajp_module/compare/fcbb2ccca4901d317ecd7a9dabb3fec9378ff40f...master
-# This is a fork from https://github.com/yaoweibin/nginx_ajp_module
-# Since it has not been updated and is not compatible with NGINX 1.21
-export NGINX_AJP_VERSION=fcbb2ccca4901d317ecd7a9dabb3fec9378ff40f
-
 # Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20220411...v2.1-agentzh
 export LUAJIT_VERSION=2.1-20220411
 
@@ -271,9 +266,6 @@ get_src 8d39c6b23f941a2d11571daaccc04e69539a3fcbcc50a631837560d5861a7b96 \
 get_src 4c1933434572226942c65b2f2b26c8a536ab76aa771a3c7f6c2629faa764976b \
         "https://github.com/leev/ngx_http_geoip2_module/archive/$GEOIP2_VERSION.tar.gz"
 
-get_src 778fcca851bd69dabfb382dc827d2ee07662f7eca36b5e66e67d5512bad75ef8 \
-        "https://github.com/msva/nginx_ajp_module/archive/$NGINX_AJP_VERSION.tar.gz"
-
 get_src 5d16e623d17d4f42cc64ea9cfb69ca960d313e12f5d828f785dd227cc483fcbd \
         "https://github.com/openresty/lua-resty-upload/archive/v$LUA_RESTY_UPLOAD_VERSION.tar.gz"
 
@@ -633,7 +625,6 @@ WITH_MODULES=" \
   --add-module=$BUILD_PATH/lua-nginx-module-$LUA_NGX_VERSION \
   --add-module=$BUILD_PATH/stream-lua-nginx-module-$LUA_STREAM_NGX_VERSION \
   --add-module=$BUILD_PATH/lua-upstream-nginx-module-$LUA_UPSTREAM_VERSION \
-  --add-module=$BUILD_PATH/nginx_ajp_module-${NGINX_AJP_VERSION} \
   --add-dynamic-module=$BUILD_PATH/nginx-http-auth-digest-$NGINX_DIGEST_AUTH \
   --add-dynamic-module=$BUILD_PATH/nginx-opentracing-$NGINX_OPENTRACING_VERSION/opentracing \
   --add-dynamic-module=$BUILD_PATH/ModSecurity-nginx-$MODSECURITY_VERSION \
diff --git a/internal/ingress/annotations/backendprotocol/main.go b/internal/ingress/annotations/backendprotocol/main.go
index d8ea72386..c749072e3 100644
--- a/internal/ingress/annotations/backendprotocol/main.go
+++ b/internal/ingress/annotations/backendprotocol/main.go
@@ -31,7 +31,7 @@ import (
 const HTTP = "HTTP"
 
 var (
-	validProtocols = regexp.MustCompile(`^(AUTO_HTTP|HTTP|HTTPS|AJP|GRPC|GRPCS|FCGI)$`)
+	validProtocols = regexp.MustCompile(`^(AUTO_HTTP|HTTP|HTTPS|GRPC|GRPCS|FCGI)$`)
 )
 
 type backendProtocol struct {
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 2d941f95d..791ab7962 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -736,9 +736,6 @@ func buildProxyPass(host string, b interface{}, loc interface{}) string {
 	case "GRPCS":
 		proto = "grpcs://"
 		proxyPass = "grpc_pass"
-	case "AJP":
-		proto = ""
-		proxyPass = "ajp_pass"
 	case "FCGI":
 		proto = ""
 		proxyPass = "fastcgi_pass"
diff --git a/internal/ingress/controller/template/template_test.go b/internal/ingress/controller/template/template_test.go
index 1980d7e52..f5d68178b 100644
--- a/internal/ingress/controller/template/template_test.go
+++ b/internal/ingress/controller/template/template_test.go
@@ -1137,7 +1137,6 @@ func TestOpentracingPropagateContext(t *testing.T) {
 		{BackendProtocol: "AUTO_HTTP"}: "opentracing_propagate_context;",
 		{BackendProtocol: "GRPC"}:      "opentracing_grpc_propagate_context;",
 		{BackendProtocol: "GRPCS"}:     "opentracing_grpc_propagate_context;",
-		{BackendProtocol: "AJP"}:       "opentracing_propagate_context;",
 		{BackendProtocol: "FCGI"}:      "opentracing_propagate_context;",
 		nil:                            "",
 	}
@@ -1157,7 +1156,6 @@ func TestOpentelemetryPropagateContext(t *testing.T) {
 		{BackendProtocol: "AUTO_HTTP"}: "opentelemetry_propagate;",
 		{BackendProtocol: "GRPC"}:      "opentelemetry_propagate;",
 		{BackendProtocol: "GRPCS"}:     "opentelemetry_propagate;",
-		{BackendProtocol: "AJP"}:       "opentelemetry_propagate;",
 		{BackendProtocol: "FCGI"}:      "opentelemetry_propagate;",
 		nil:                            "",
 	}
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index ccc86702d..6ace87448 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -307,7 +307,6 @@ http {
     client_body_temp_path           /tmp/nginx/client-body;
     fastcgi_temp_path               /tmp/nginx/fastcgi-temp;
     proxy_temp_path                 /tmp/nginx/proxy-temp;
-    ajp_temp_path                   /tmp/nginx/ajp-temp;
 
     client_header_buffer_size       {{ $cfg.ClientHeaderBufferSize }};
     client_header_timeout           {{ $cfg.ClientHeaderTimeout }}s;
diff --git a/test/e2e/annotations/backendprotocol.go b/test/e2e/annotations/backendprotocol.go
index bccb03afb..566a6921e 100644
--- a/test/e2e/annotations/backendprotocol.go
+++ b/test/e2e/annotations/backendprotocol.go
@@ -105,19 +105,4 @@ var _ = framework.DescribeAnnotation("backend-protocol", func() {
 				return strings.Contains(server, "fastcgi_pass upstream_balancer;")
 			})
 	})
-
-	ginkgo.It("should set backend protocol to '' and use ajp_pass", func() {
-		host := "backendprotocol.foo.com"
-		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/backend-protocol": "AJP",
-		}
-
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return strings.Contains(server, "ajp_pass upstream_balancer;")
-			})
-	})
 })

From f50431a9f9b98a7af14604dee6d7d4130d953c5a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 3 Jul 2023 04:40:53 -0700
Subject: [PATCH 0853/1641] Bump docker/setup-buildx-action from 2.7.0 to 2.8.0
 (#10165)

Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.7.0 to 2.8.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/ecf95283f03858871ff00b787d79c419715afc34...16c0bc4a6e6ada2cfd8afd41d22d95379cf7c32a)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index f27ac4f9b..150ec29ae 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -158,7 +158,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@ecf95283f03858871ff00b787d79c419715afc34 # v2.7.0
+        uses: docker/setup-buildx-action@16c0bc4a6e6ada2cfd8afd41d22d95379cf7c32a # v2.8.0
         with:
           version: latest
 

From d44a8e0045728729d6d604ea81f9ef582889d271 Mon Sep 17 00:00:00 2001
From: Chen Chen <imchench@gmail.com>
Date: Mon, 3 Jul 2023 20:50:52 +0800
Subject: [PATCH 0854/1641] Fix golang-ci linter errors (#10128)

* Fix golang-ci linter errors

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix gofmt errors

Signed-off-by: z1cheng <imchench@gmail.com>

* Add nolint comment to defaults.Backend in Configuration

Signed-off-by: z1cheng <imchench@gmail.com>

* Add #nosec comment to rand.New func

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix errcheck warnings

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix gofmt check

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix unit tests and comments

Signed-off-by: z1cheng <imchench@gmail.com>

---------

Signed-off-by: z1cheng <imchench@gmail.com>
---
 cmd/dataplane/main.go                         |  9 +---
 cmd/nginx/main.go                             |  3 --
 cmd/plugin/commands/certs/certs.go            |  6 ++-
 cmd/plugin/kubectl/kubectl.go                 |  4 +-
 images/fastcgi-helloserver/rootfs/main.go     |  4 +-
 .../rootfs/pkg/k8s/k8s_test.go                |  2 +-
 internal/admission/controller/main_test.go    | 14 ++++---
 internal/admission/controller/server.go       |  4 +-
 internal/ingress/controller/checker_test.go   | 24 ++++++++---
 internal/ingress/controller/config/config.go  |  2 +-
 .../ingress/controller/controller_test.go     | 13 ++++--
 internal/ingress/controller/nginx.go          | 42 +------------------
 .../controller/store/endpointslice_test.go    | 20 ++++++---
 internal/ingress/controller/store/store.go    | 31 ++++++++++----
 .../ingress/controller/store/store_test.go    | 36 +++++++++++-----
 .../ingress/controller/template/template.go   | 15 +++----
 .../controller/template/template_test.go      |  4 +-
 .../ingress/metric/collectors/process_test.go |  4 +-
 .../ingress/metric/collectors/socket_test.go  |  4 +-
 internal/ingress/status/status.go             |  5 ++-
 internal/ingress/status/status_test.go        |  4 +-
 internal/net/dns/dns_test.go                  |  5 ++-
 internal/net/ssl/ssl.go                       |  2 +-
 internal/net/ssl/ssl_test.go                  |  8 +++-
 pkg/flags/flags.go                            | 10 ++---
 pkg/tcpproxy/tcp.go                           |  4 +-
 pkg/util/file/file_test.go                    |  8 +++-
 pkg/util/file/file_watcher_test.go            |  4 +-
 pkg/util/process/sigterm_test.go              | 11 +++--
 test/e2e/annotations/affinitymode.go          |  2 +-
 test/e2e/endpointslices/topology.go           |  4 +-
 test/e2e/framework/deployment.go              |  7 ----
 test/e2e/framework/httpexpect/chain.go        | 16 -------
 test/e2e/security/request_smuggling.go        |  4 +-
 test/e2e/settings/proxy_protocol.go           | 25 +++++++----
 test/e2e/ssl/secret_update.go                 |  4 +-
 test/e2e/status/update.go                     |  4 +-
 37 files changed, 206 insertions(+), 162 deletions(-)

diff --git a/cmd/dataplane/main.go b/cmd/dataplane/main.go
index 6fd559e4d..a1c4cbcc6 100644
--- a/cmd/dataplane/main.go
+++ b/cmd/dataplane/main.go
@@ -18,13 +18,10 @@ package main
 
 import (
 	"fmt"
-	"math/rand" // #nosec
-	"net/http"
-	"os"
-	"time"
-
 	"github.com/prometheus/client_golang/prometheus"
 	"github.com/prometheus/client_golang/prometheus/collectors"
+	"net/http"
+	"os"
 
 	"k8s.io/klog/v2"
 
@@ -41,8 +38,6 @@ import (
 func main() {
 	klog.InitFlags(nil)
 
-	rand.Seed(time.Now().UnixNano())
-
 	fmt.Println(version.String())
 	var err error
 	showVersion, conf, err := ingressflags.ParseFlags()
diff --git a/cmd/nginx/main.go b/cmd/nginx/main.go
index 48dd933dc..508e940e1 100644
--- a/cmd/nginx/main.go
+++ b/cmd/nginx/main.go
@@ -19,7 +19,6 @@ package main
 import (
 	"context"
 	"fmt"
-	"math/rand" // #nosec
 	"net/http"
 	"os"
 	"path/filepath"
@@ -54,8 +53,6 @@ import (
 func main() {
 	klog.InitFlags(nil)
 
-	rand.Seed(time.Now().UnixNano())
-
 	fmt.Println(version.String())
 
 	showVersion, conf, err := ingressflags.ParseFlags()
diff --git a/cmd/plugin/commands/certs/certs.go b/cmd/plugin/commands/certs/certs.go
index 88b721ee3..1f08b5216 100644
--- a/cmd/plugin/commands/certs/certs.go
+++ b/cmd/plugin/commands/certs/certs.go
@@ -18,6 +18,7 @@ package certs
 
 import (
 	"fmt"
+	"os"
 
 	"github.com/spf13/cobra"
 
@@ -46,7 +47,10 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	}
 
 	cmd.Flags().String("host", "", "Get the cert for this hostname")
-	cobra.MarkFlagRequired(cmd.Flags(), "host")
+	if err := cobra.MarkFlagRequired(cmd.Flags(), "host"); err != nil {
+		util.PrintError(err)
+		os.Exit(1)
+	}
 	pod = util.AddPodFlag(cmd)
 	deployment = util.AddDeploymentFlag(cmd)
 	selector = util.AddSelectorFlag(cmd)
diff --git a/cmd/plugin/kubectl/kubectl.go b/cmd/plugin/kubectl/kubectl.go
index 3f31a2104..1171e9218 100644
--- a/cmd/plugin/kubectl/kubectl.go
+++ b/cmd/plugin/kubectl/kubectl.go
@@ -77,7 +77,9 @@ func execToWriter(args []string, writer io.Writer) error {
 		return err
 	}
 
-	go io.Copy(writer, op)
+	go func() {
+		io.Copy(writer, op) //nolint:errcheck
+	}()
 	err = cmd.Run()
 	if err != nil {
 		return err
diff --git a/images/fastcgi-helloserver/rootfs/main.go b/images/fastcgi-helloserver/rootfs/main.go
index 91db60c26..a42c9a487 100644
--- a/images/fastcgi-helloserver/rootfs/main.go
+++ b/images/fastcgi-helloserver/rootfs/main.go
@@ -26,5 +26,7 @@ func main() {
 	if err != nil {
 		panic(err)
 	}
-	fcgi.Serve(l, nil)
+	if err := fcgi.Serve(l, nil); err != nil {
+		panic(err)
+	}
 }
diff --git a/images/kube-webhook-certgen/rootfs/pkg/k8s/k8s_test.go b/images/kube-webhook-certgen/rootfs/pkg/k8s/k8s_test.go
index deaeb3540..f11bef981 100644
--- a/images/kube-webhook-certgen/rootfs/pkg/k8s/k8s_test.go
+++ b/images/kube-webhook-certgen/rootfs/pkg/k8s/k8s_test.go
@@ -3,8 +3,8 @@ package k8s
 import (
 	"bytes"
 	"context"
+	"crypto/rand"
 	"errors"
-	"math/rand"
 	"testing"
 	"time"
 
diff --git a/internal/admission/controller/main_test.go b/internal/admission/controller/main_test.go
index 0a547d4be..8c42f87ef 100644
--- a/internal/admission/controller/main_test.go
+++ b/internal/admission/controller/main_test.go
@@ -67,7 +67,7 @@ func TestHandleAdmission(t *testing.T) {
 		Checker: failTestChecker{t: t},
 	}
 
-	result, err := adm.HandleAdmission(&admissionv1.AdmissionReview{
+	_, err := adm.HandleAdmission(&admissionv1.AdmissionReview{
 		Request: &admissionv1.AdmissionRequest{
 			Kind: v1.GroupVersionKind{Group: "", Version: "v1", Kind: "Pod"},
 		},
@@ -76,12 +76,12 @@ func TestHandleAdmission(t *testing.T) {
 		t.Fatalf("with a non ingress resource, the check should not pass")
 	}
 
-	result, err = adm.HandleAdmission(nil)
+	_, err = adm.HandleAdmission(nil)
 	if err == nil {
 		t.Fatalf("with a nil AdmissionReview request, the check should not pass")
 	}
 
-	result, err = adm.HandleAdmission(&admissionv1.AdmissionReview{
+	result, err := adm.HandleAdmission(&admissionv1.AdmissionReview{
 		Request: &admissionv1.AdmissionRequest{
 			Kind: v1.GroupVersionKind{Group: networking.GroupName, Version: "v1", Kind: "Ingress"},
 			Object: runtime.RawExtension{
@@ -114,7 +114,9 @@ func TestHandleAdmission(t *testing.T) {
 		err: fmt.Errorf("this is a test error"),
 	}
 
-	adm.HandleAdmission(review)
+	if _, err := adm.HandleAdmission(review); err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	if review.Response.Allowed {
 		t.Fatalf("when the checker returns an error, the request should not be allowed")
 	}
@@ -124,7 +126,9 @@ func TestHandleAdmission(t *testing.T) {
 		err: nil,
 	}
 
-	adm.HandleAdmission(review)
+	if _, err := adm.HandleAdmission(review); err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	if !review.Response.Allowed {
 		t.Fatalf("when the checker returns no error, the request should be allowed")
 	}
diff --git a/internal/admission/controller/server.go b/internal/admission/controller/server.go
index 29449de50..3fa70971f 100644
--- a/internal/admission/controller/server.go
+++ b/internal/admission/controller/server.go
@@ -31,7 +31,9 @@ var (
 )
 
 func init() {
-	admissionv1.AddToScheme(scheme)
+	if err := admissionv1.AddToScheme(scheme); err != nil {
+		klog.ErrorS(err, "Failed to add scheme")
+	}
 }
 
 // AdmissionController checks if an object
diff --git a/internal/ingress/controller/checker_test.go b/internal/ingress/controller/checker_test.go
index bea1c9cd0..2d63efc09 100644
--- a/internal/ingress/controller/checker_test.go
+++ b/internal/ingress/controller/checker_test.go
@@ -76,7 +76,10 @@ func TestNginxCheck(t *testing.T) {
 			})
 
 			// create pid file
-			os.MkdirAll("/tmp/nginx", file.ReadWriteByUser)
+			if err := os.MkdirAll("/tmp/nginx", file.ReadWriteByUser); err != nil {
+				t.Errorf("unexpected error creating pid file: %v", err)
+			}
+
 			pidFile, err := os.Create(nginx.PID)
 			if err != nil {
 				t.Fatalf("unexpected error: %v", err)
@@ -90,14 +93,23 @@ func TestNginxCheck(t *testing.T) {
 
 			// start dummy process to use the PID
 			cmd := exec.Command("sleep", "3600")
-			cmd.Start()
+			if err := cmd.Start(); err != nil {
+				t.Errorf("unexpected error: %v", err)
+			}
 			pid := cmd.Process.Pid
-			defer cmd.Process.Kill()
+			defer func() {
+				if err := cmd.Process.Kill(); err != nil {
+					t.Errorf("unexpected error killing the process: %v", err)
+				}
+			}()
 			go func() {
-				cmd.Wait()
+				cmd.Wait() //nolint:errcheck
 			}()
 
-			pidFile.Write([]byte(fmt.Sprintf("%v", pid)))
+			if _, err := pidFile.Write([]byte(fmt.Sprintf("%v", pid))); err != nil {
+				t.Errorf("unexpected error writing the pid file: %v", err)
+			}
+
 			pidFile.Close()
 
 			healthz.InstallPathHandler(mux, tt.healthzPath, n)
@@ -109,7 +121,7 @@ func TestNginxCheck(t *testing.T) {
 			})
 
 			// pollute pid file
-			pidFile.Write([]byte("999999"))
+			pidFile.Write([]byte("999999")) //nolint:errcheck
 			pidFile.Close()
 
 			t.Run("bad pid", func(t *testing.T) {
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index ec44b08ed..000bfc730 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -91,7 +91,7 @@ const (
 
 // Configuration represents the content of nginx.conf file
 type Configuration struct {
-	defaults.Backend `json:",squash"`
+	defaults.Backend `json:",squash"` //nolint:staticcheck
 
 	// AllowSnippetAnnotations enable users to add their own snippets via ingress annotation.
 	// If disabled, only snippets added via ConfigMap are added to ingress.
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index c631461c0..44184f6b9 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -158,7 +158,7 @@ func (fakeTemplate) Write(conf ngx_config.TemplateConfig) ([]byte, error) {
 
 func TestCheckIngress(t *testing.T) {
 	defer func() {
-		filepath.Walk(os.TempDir(), func(path string, info os.FileInfo, err error) error {
+		err := filepath.Walk(os.TempDir(), func(path string, info os.FileInfo, err error) error {
 			if info.IsDir() && os.TempDir() != path {
 				return filepath.SkipDir
 			}
@@ -167,6 +167,9 @@ func TestCheckIngress(t *testing.T) {
 			}
 			return nil
 		})
+		if err != nil {
+			t.Errorf("unexpected error: %v", err)
+		}
 	}()
 
 	err := file.CreateRequiredDirectories()
@@ -176,9 +179,13 @@ func TestCheckIngress(t *testing.T) {
 
 	// Ensure no panic with wrong arguments
 	var nginx *NGINXController
-	nginx.CheckIngress(nil)
+	if err := nginx.CheckIngress(nil); err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	nginx = newNGINXController(t)
-	nginx.CheckIngress(nil)
+	if err := nginx.CheckIngress(nil); err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	nginx.metricCollector = metric.DummyCollector{}
 
 	nginx.t = fakeTemplate{}
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 80693db5c..4a5a07625 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -248,8 +248,7 @@ type NGINXController struct {
 
 	store store.Storer
 
-	metricCollector    metric.Collector
-	admissionCollector metric.Collector
+	metricCollector metric.Collector
 
 	validationWebhookServer *http.Server
 
@@ -799,45 +798,6 @@ func (n *NGINXController) setupSSLProxy() {
 	}()
 }
 
-// Helper function to clear Certificates from the ingress configuration since they should be ignored when
-// checking if the new configuration changes can be applied dynamically if dynamic certificates is on
-func clearCertificates(config *ingress.Configuration) {
-	var clearedServers []*ingress.Server
-	for _, server := range config.Servers {
-		copyOfServer := *server
-		copyOfServer.SSLCert = nil
-		clearedServers = append(clearedServers, &copyOfServer)
-	}
-	config.Servers = clearedServers
-}
-
-// Helper function to clear endpoints from the ingress configuration since they should be ignored when
-// checking if the new configuration changes can be applied dynamically.
-func clearL4serviceEndpoints(config *ingress.Configuration) {
-	var clearedTCPL4Services []ingress.L4Service
-	var clearedUDPL4Services []ingress.L4Service
-	for _, service := range config.TCPEndpoints {
-		copyofService := ingress.L4Service{
-			Port:      service.Port,
-			Backend:   service.Backend,
-			Endpoints: []ingress.Endpoint{},
-			Service:   nil,
-		}
-		clearedTCPL4Services = append(clearedTCPL4Services, copyofService)
-	}
-	for _, service := range config.UDPEndpoints {
-		copyofService := ingress.L4Service{
-			Port:      service.Port,
-			Backend:   service.Backend,
-			Endpoints: []ingress.Endpoint{},
-			Service:   nil,
-		}
-		clearedUDPL4Services = append(clearedUDPL4Services, copyofService)
-	}
-	config.TCPEndpoints = clearedTCPL4Services
-	config.UDPEndpoints = clearedUDPL4Services
-}
-
 // configureDynamically encodes new Backends in JSON format and POSTs the
 // payload to an internal HTTP endpoint handled by Lua.
 func (n *NGINXController) configureDynamically(pcfg *ingress.Configuration) error {
diff --git a/internal/ingress/controller/store/endpointslice_test.go b/internal/ingress/controller/store/endpointslice_test.go
index e12a98c2f..1342575ae 100644
--- a/internal/ingress/controller/store/endpointslice_test.go
+++ b/internal/ingress/controller/store/endpointslice_test.go
@@ -59,7 +59,9 @@ func TestEndpointSliceLister(t *testing.T) {
 				},
 			},
 		}
-		el.Add(endpointSlice)
+		if err := el.Add(endpointSlice); err != nil {
+			t.Errorf("unexpected error %v", err)
+		}
 		endpointSlice = &discoveryv1.EndpointSlice{
 			ObjectMeta: metav1.ObjectMeta{
 				Namespace: "namespace",
@@ -69,7 +71,9 @@ func TestEndpointSliceLister(t *testing.T) {
 				},
 			},
 		}
-		el.Add(endpointSlice)
+		if err := el.Add(endpointSlice); err != nil {
+			t.Errorf("unexpected error %v", err)
+		}
 		endpointSlice = &discoveryv1.EndpointSlice{
 			ObjectMeta: metav1.ObjectMeta{
 				Namespace: "namespace",
@@ -79,7 +83,9 @@ func TestEndpointSliceLister(t *testing.T) {
 				},
 			},
 		}
-		el.Add(endpointSlice)
+		if err := el.Add(endpointSlice); err != nil {
+			t.Errorf("unexpected error %v", err)
+		}
 		eps, err := el.MatchByKey(key)
 
 		if err != nil {
@@ -108,7 +114,9 @@ func TestEndpointSliceLister(t *testing.T) {
 				},
 			},
 		}
-		el.Add(endpointSlice)
+		if err := el.Add(endpointSlice); err != nil {
+			t.Errorf("unexpected error %v", err)
+		}
 		endpointSlice2 := &discoveryv1.EndpointSlice{
 			ObjectMeta: metav1.ObjectMeta{
 				Namespace: ns2,
@@ -118,7 +126,9 @@ func TestEndpointSliceLister(t *testing.T) {
 				},
 			},
 		}
-		el.Add(endpointSlice2)
+		if err := el.Add(endpointSlice2); err != nil {
+			t.Errorf("unexpected error %v", err)
+		}
 		eps, err := el.MatchByKey(key)
 		if err != nil {
 			t.Errorf("unexpeted error %v", err)
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 78fab62dc..9b3700739 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -404,7 +404,10 @@ func New(
 			return
 		}
 
-		store.listers.IngressWithAnnotation.Delete(ing)
+		if err := store.listers.IngressWithAnnotation.Delete(ing); err != nil {
+			klog.ErrorS(err, "Error while deleting ingress from store", "ingress", klog.KObj(ing))
+			return
+		}
 
 		key := k8s.MetaNamespaceKey(ing)
 		store.secretIngressMap.Delete(key)
@@ -793,14 +796,26 @@ func New(
 		},
 	}
 
-	store.informers.Ingress.AddEventHandler(ingEventHandler)
-	if !icConfig.IgnoreIngressClass {
-		store.informers.IngressClass.AddEventHandler(ingressClassEventHandler)
+	if _, err := store.informers.Ingress.AddEventHandler(ingEventHandler); err != nil {
+		klog.Errorf("Error adding ingress event handler: %v", err)
+	}
+	if !icConfig.IgnoreIngressClass {
+		if _, err := store.informers.IngressClass.AddEventHandler(ingressClassEventHandler); err != nil {
+			klog.Errorf("Error adding ingress class event handler: %v", err)
+		}
+	}
+	if _, err := store.informers.EndpointSlice.AddEventHandler(epsEventHandler); err != nil {
+		klog.Errorf("Error adding endpoint slice event handler: %v", err)
+	}
+	if _, err := store.informers.Secret.AddEventHandler(secrEventHandler); err != nil {
+		klog.Errorf("Error adding secret event handler: %v", err)
+	}
+	if _, err := store.informers.ConfigMap.AddEventHandler(cmEventHandler); err != nil {
+		klog.Errorf("Error adding configmap event handler: %v", err)
+	}
+	if _, err := store.informers.Service.AddEventHandler(serviceHandler); err != nil {
+		klog.Errorf("Error adding service event handler: %v", err)
 	}
-	store.informers.EndpointSlice.AddEventHandler(epsEventHandler)
-	store.informers.Secret.AddEventHandler(secrEventHandler)
-	store.informers.ConfigMap.AddEventHandler(cmEventHandler)
-	store.informers.Service.AddEventHandler(serviceHandler)
 
 	// do not wait for informers to read the configmap configuration
 	ns, name, _ := k8s.ParseNameNS(configmap)
diff --git a/internal/ingress/controller/store/store_test.go b/internal/ingress/controller/store/store_test.go
index 9fe6e37bb..b91cadc6c 100644
--- a/internal/ingress/controller/store/store_test.go
+++ b/internal/ingress/controller/store/store_test.go
@@ -92,7 +92,7 @@ func TestStore(t *testing.T) {
 
 	emptySelector, _ := labels.Parse("")
 
-	defer te.Stop()
+	defer te.Stop() //nolint:errcheck
 
 	clientSet, err := kubernetes.NewForConfig(cfg)
 	if err != nil {
@@ -1377,14 +1377,18 @@ func TestUpdateSecretIngressMap(t *testing.T) {
 			Namespace: "testns",
 		},
 	}
-	s.listers.Ingress.Add(ingTpl)
+	if err := s.listers.Ingress.Add(ingTpl); err != nil {
+		t.Errorf("error adding the Ingress template: %v", err)
+	}
 
 	t.Run("with TLS secret", func(t *testing.T) {
 		ing := ingTpl.DeepCopy()
 		ing.Spec = networking.IngressSpec{
 			TLS: []networking.IngressTLS{{SecretName: "tls"}},
 		}
-		s.listers.Ingress.Update(ing)
+		if err := s.listers.Ingress.Update(ing); err != nil {
+			t.Errorf("error updating the Ingress: %v", err)
+		}
 		s.updateSecretIngressMap(ing)
 
 		if l := s.secretIngressMap.Len(); !(l == 1 && s.secretIngressMap.Has("testns/tls")) {
@@ -1397,7 +1401,9 @@ func TestUpdateSecretIngressMap(t *testing.T) {
 		ing.ObjectMeta.SetAnnotations(map[string]string{
 			parser.GetAnnotationWithPrefix("auth-secret"): "auth",
 		})
-		s.listers.Ingress.Update(ing)
+		if err := s.listers.Ingress.Update(ing); err != nil {
+			t.Errorf("error updating the Ingress: %v", err)
+		}
 		s.updateSecretIngressMap(ing)
 
 		if l := s.secretIngressMap.Len(); !(l == 1 && s.secretIngressMap.Has("testns/auth")) {
@@ -1410,7 +1416,9 @@ func TestUpdateSecretIngressMap(t *testing.T) {
 		ing.ObjectMeta.SetAnnotations(map[string]string{
 			parser.GetAnnotationWithPrefix("auth-secret"): "otherns/auth",
 		})
-		s.listers.Ingress.Update(ing)
+		if err := s.listers.Ingress.Update(ing); err != nil {
+			t.Errorf("error updating the Ingress: %v", err)
+		}
 		s.updateSecretIngressMap(ing)
 
 		if l := s.secretIngressMap.Len(); !(l == 1 && s.secretIngressMap.Has("otherns/auth")) {
@@ -1423,7 +1431,9 @@ func TestUpdateSecretIngressMap(t *testing.T) {
 		ing.ObjectMeta.SetAnnotations(map[string]string{
 			parser.GetAnnotationWithPrefix("auth-secret"): "ns/name/garbage",
 		})
-		s.listers.Ingress.Update(ing)
+		if err := s.listers.Ingress.Update(ing); err != nil {
+			t.Errorf("error updating the Ingress: %v", err)
+		}
 		s.updateSecretIngressMap(ing)
 
 		if l := s.secretIngressMap.Len(); l != 0 {
@@ -1457,7 +1467,9 @@ func TestListIngresses(t *testing.T) {
 			},
 		},
 	}
-	s.listers.IngressWithAnnotation.Add(ingressToIgnore)
+	if err := s.listers.IngressWithAnnotation.Add(ingressToIgnore); err != nil {
+		t.Errorf("error adding the Ingress: %v", err)
+	}
 
 	ingressWithoutPath := &ingress.Ingress{
 		Ingress: networking.Ingress{
@@ -1492,8 +1504,9 @@ func TestListIngresses(t *testing.T) {
 			},
 		},
 	}
-	s.listers.IngressWithAnnotation.Add(ingressWithoutPath)
-
+	if err := s.listers.IngressWithAnnotation.Add(ingressWithoutPath); err != nil {
+		t.Errorf("error adding the Ingress: %v", err)
+	}
 	ingressWithNginxClassAnnotation := &ingress.Ingress{
 		Ingress: networking.Ingress{
 			ObjectMeta: metav1.ObjectMeta{
@@ -1531,8 +1544,9 @@ func TestListIngresses(t *testing.T) {
 			},
 		},
 	}
-	s.listers.IngressWithAnnotation.Add(ingressWithNginxClassAnnotation)
-
+	if err := s.listers.IngressWithAnnotation.Add(ingressWithNginxClassAnnotation); err != nil {
+		t.Errorf("error adding the Ingress: %v", err)
+	}
 	ingresses := s.ListIngresses()
 
 	if s := len(ingresses); s != 3 {
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 791ab7962..147455771 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -18,13 +18,14 @@ package template
 
 import (
 	"bytes"
+	"crypto/rand"
 	"crypto/sha1" // #nosec
 	"encoding/base64"
 	"encoding/hex"
 	"encoding/json"
 	"fmt"
 	"io"
-	"math/rand" // #nosec
+	"math/big"
 	"net"
 	"net/url"
 	"os"
@@ -34,7 +35,6 @@ import (
 	"strconv"
 	"strings"
 	text_template "text/template"
-	"time"
 
 	networkingv1 "k8s.io/api/networking/v1"
 	"k8s.io/apimachinery/pkg/util/sets"
@@ -1184,14 +1184,15 @@ func buildAuthSignURLLocation(location, authSignURL string) string {
 
 var letters = []rune("abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ")
 
-func init() {
-	rand.Seed(time.Now().UnixNano())
-}
-
 func randomString() string {
 	b := make([]rune, 32)
 	for i := range b {
-		b[i] = letters[rand.Intn(len(letters))] // #nosec
+		idx, err := rand.Int(rand.Reader, big.NewInt(int64(len(letters))))
+		if err != nil {
+			klog.Errorf("unexpected error generating random index: %v", err)
+			return ""
+		}
+		b[i] = letters[idx.Int64()]
 	}
 
 	return string(b)
diff --git a/internal/ingress/controller/template/template_test.go b/internal/ingress/controller/template/template_test.go
index f5d68178b..a2c3b8299 100644
--- a/internal/ingress/controller/template/template_test.go
+++ b/internal/ingress/controller/template/template_test.go
@@ -767,7 +767,9 @@ func BenchmarkTemplateWithData(b *testing.B) {
 	}
 
 	for i := 0; i < b.N; i++ {
-		ngxTpl.Write(dat)
+		if _, err := ngxTpl.Write(dat); err != nil {
+			b.Errorf("unexpected error writing template: %v", err)
+		}
 	}
 }
 
diff --git a/internal/ingress/metric/collectors/process_test.go b/internal/ingress/metric/collectors/process_test.go
index 45170572b..b21d95496 100644
--- a/internal/ingress/metric/collectors/process_test.go
+++ b/internal/ingress/metric/collectors/process_test.go
@@ -48,7 +48,7 @@ func TestProcessCollector(t *testing.T) {
 
 			done := make(chan struct{})
 			go func() {
-				cmd.Wait()
+				cmd.Wait() //nolint:errcheck
 				status := cmd.ProcessState.Sys().(syscall.WaitStatus)
 				if status.Signaled() {
 					t.Logf("Signal: %v", status.Signal())
@@ -69,7 +69,7 @@ func TestProcessCollector(t *testing.T) {
 			defer func() {
 				cm.Stop()
 
-				cmd.Process.Kill()
+				cmd.Process.Kill() //nolint:errcheck
 				<-done
 				close(done)
 			}()
diff --git a/internal/ingress/metric/collectors/socket_test.go b/internal/ingress/metric/collectors/socket_test.go
index fe442aba0..6000f2685 100644
--- a/internal/ingress/metric/collectors/socket_test.go
+++ b/internal/ingress/metric/collectors/socket_test.go
@@ -58,7 +58,9 @@ func TestNewUDPLogListener(t *testing.T) {
 	}()
 
 	conn, _ := net.Dial("unix", tmpFile)
-	conn.Write([]byte("message"))
+	if _, err := conn.Write([]byte("message")); err != nil {
+		t.Errorf("unexpected error writing to unix socket: %v", err)
+	}
 	conn.Close()
 
 	time.Sleep(1 * time.Millisecond)
diff --git a/internal/ingress/status/status.go b/internal/ingress/status/status.go
index a7506705c..62b88da16 100644
--- a/internal/ingress/status/status.go
+++ b/internal/ingress/status/status.go
@@ -95,10 +95,13 @@ func (s statusSync) Run(stopCh chan struct{}) {
 
 	// when this instance is the leader we need to enqueue
 	// an item to trigger the update of the Ingress status.
-	wait.PollUntil(time.Duration(UpdateInterval)*time.Second, func() (bool, error) {
+	err := wait.PollUntil(time.Duration(UpdateInterval)*time.Second, func() (bool, error) {
 		s.syncQueue.EnqueueTask(task.GetDummyObject("sync status"))
 		return false, nil
 	}, stopCh)
+	if err != nil {
+		klog.ErrorS(err, "error running poll")
+	}
 }
 
 // Shutdown stops the sync. In case the instance is the leader it will remove the current IP
diff --git a/internal/ingress/status/status_test.go b/internal/ingress/status/status_test.go
index 3dd56f37d..ce6b6a0bf 100644
--- a/internal/ingress/status/status_test.go
+++ b/internal/ingress/status/status_test.go
@@ -325,7 +325,9 @@ func TestStatusActions(t *testing.T) {
 	//  wait for the election
 	time.Sleep(100 * time.Millisecond)
 	// execute sync
-	fk.sync("just-test")
+	if err := fk.sync("just-test"); err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	// PublishService is empty, so the running address is: ["11.0.0.2"]
 	// after updated, the ingress's ip should only be "11.0.0.2"
 	newIPs := []networking.IngressLoadBalancerIngress{{
diff --git a/internal/net/dns/dns_test.go b/internal/net/dns/dns_test.go
index 708e3c6df..7e030e17a 100644
--- a/internal/net/dns/dns_test.go
+++ b/internal/net/dns/dns_test.go
@@ -40,13 +40,16 @@ func TestGetDNSServers(t *testing.T) {
 	defer f.Close()
 	defer os.Remove(f.Name())
 
-	os.WriteFile(f.Name(), []byte(`
+	err = os.WriteFile(f.Name(), []byte(`
 	# comment
 	; comment
 	nameserver 2001:4860:4860::8844
 	nameserver 2001:4860:4860::8888
 	nameserver 8.8.8.8
 	`), file.ReadWriteByUser)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 
 	defResolvConf = f.Name()
 	s, err = GetSystemNameServers()
diff --git a/internal/net/ssl/ssl.go b/internal/net/ssl/ssl.go
index fdee2f46e..c74537fe9 100644
--- a/internal/net/ssl/ssl.go
+++ b/internal/net/ssl/ssl.go
@@ -228,7 +228,7 @@ func ConfigureCRL(name string, crl []byte, sslCert *ingress.SSLCert) error {
 		return fmt.Errorf("CRL file %v contains invalid data, and must be created only with PEM formatted certificates", name)
 	}
 
-	_, err := x509.ParseCRL(pemCRLBlock.Bytes)
+	_, err := x509.ParseRevocationList(pemCRLBlock.Bytes)
 	if err != nil {
 		return fmt.Errorf(err.Error())
 	}
diff --git a/internal/net/ssl/ssl_test.go b/internal/net/ssl/ssl_test.go
index 9d1aedf16..a86ecb87a 100644
--- a/internal/net/ssl/ssl_test.go
+++ b/internal/net/ssl/ssl_test.go
@@ -397,7 +397,9 @@ func newFakeCertificate(t *testing.T) ([]byte, string, string) {
 		t.Errorf("failed to write test key: %v", err)
 	}
 
-	certFile.Write(cert)
+	if _, err := certFile.Write(cert); err != nil {
+		t.Errorf("failed to write cert: %v", err)
+	}
 	defer certFile.Close()
 
 	keyFile, err := os.CreateTemp("", "key-")
@@ -405,7 +407,9 @@ func newFakeCertificate(t *testing.T) ([]byte, string, string) {
 		t.Errorf("failed to write test key: %v", err)
 	}
 
-	keyFile.Write(key)
+	if _, err := keyFile.Write(key); err != nil {
+		t.Errorf("failed to write key: %v", err)
+	}
 	defer keyFile.Close()
 
 	return cert, certFile.Name(), keyFile.Name()
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index 370510380..489e24886 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -228,14 +228,10 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 	flags.IntVar(&nginx.MaxmindRetriesCount, "maxmind-retries-count", 1, "Number of attempts to download the GeoIP DB.")
 	flags.DurationVar(&nginx.MaxmindRetriesTimeout, "maxmind-retries-timeout", time.Second*0, "Maxmind downloading delay between 1st and 2nd attempt, 0s - do not retry to download if something went wrong.")
 
-	flag.Set("logtostderr", "true")
-
 	flags.AddGoFlagSet(flag.CommandLine)
-	flags.Parse(os.Args)
-
-	// Workaround for this issue:
-	// https://github.com/kubernetes/kubernetes/issues/17162
-	flag.CommandLine.Parse([]string{})
+	if err := flags.Parse(os.Args); err != nil {
+		return false, nil, err
+	}
 
 	pflag.VisitAll(func(flag *pflag.Flag) {
 		klog.V(2).InfoS("FLAG", flag.Name, flag.Value)
diff --git a/pkg/tcpproxy/tcp.go b/pkg/tcpproxy/tcp.go
index 86850ad54..25cc39ee4 100644
--- a/pkg/tcpproxy/tcp.go
+++ b/pkg/tcpproxy/tcp.go
@@ -119,7 +119,9 @@ func (p *TCPProxy) Handle(conn net.Conn) {
 
 func pipe(client, server net.Conn) {
 	doCopy := func(s, c net.Conn, cancel chan<- bool) {
-		io.Copy(s, c)
+		if _, err := io.Copy(s, c); err != nil {
+			klog.Errorf("Error copying data: %v", err)
+		}
 		cancel <- true
 	}
 
diff --git a/pkg/util/file/file_test.go b/pkg/util/file/file_test.go
index 93ec39cf9..9a43946b3 100644
--- a/pkg/util/file/file_test.go
+++ b/pkg/util/file/file_test.go
@@ -35,8 +35,12 @@ func TestSHA1(t *testing.T) {
 		if err != nil {
 			t.Fatal(err)
 		}
-		f.Write(test.content)
-		f.Sync()
+		if _, err := f.Write(test.content); err != nil {
+			t.Error(err)
+		}
+		if err := f.Sync(); err != nil {
+			t.Error(err)
+		}
 
 		sha := SHA1(f.Name())
 		f.Close()
diff --git a/pkg/util/file/file_watcher_test.go b/pkg/util/file/file_watcher_test.go
index 316cb6f1e..dd2755812 100644
--- a/pkg/util/file/file_watcher_test.go
+++ b/pkg/util/file/file_watcher_test.go
@@ -59,7 +59,9 @@ func TestFileWatcher(t *testing.T) {
 		t.Fatalf("expected no events before writing a file")
 	case <-timeoutChan:
 	}
-	os.WriteFile(f.Name(), []byte{}, ReadWriteByUser)
+	if err := os.WriteFile(f.Name(), []byte{}, ReadWriteByUser); err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	select {
 	case <-events:
 	case <-timeoutChan:
diff --git a/pkg/util/process/sigterm_test.go b/pkg/util/process/sigterm_test.go
index 2c2a6ee91..b7413bed4 100644
--- a/pkg/util/process/sigterm_test.go
+++ b/pkg/util/process/sigterm_test.go
@@ -42,9 +42,9 @@ func (f *FakeProcess) exiterFunc(code int) {
 	f.exitCode = code
 }
 
-func sendDelayedSignal(delay time.Duration) {
+func sendDelayedSignal(delay time.Duration) error {
 	time.Sleep(delay * time.Second)
-	syscall.Kill(syscall.Getpid(), syscall.SIGTERM)
+	return syscall.Kill(syscall.Getpid(), syscall.SIGTERM)
 }
 
 func TestHandleSigterm(t *testing.T) {
@@ -66,7 +66,12 @@ func TestHandleSigterm(t *testing.T) {
 	for _, tt := range tests {
 		process := &FakeProcess{shouldError: tt.shouldError}
 		t.Run(tt.name, func(t *testing.T) {
-			go sendDelayedSignal(2) // Send a signal after 2 seconds
+			go func() {
+				err := sendDelayedSignal(2) // Send a signal after 2 seconds
+				if err != nil {
+					t.Errorf("error sending delayed signal: %v", err)
+				}
+			}()
 			HandleSigterm(process, tt.delay, process.exiterFunc)
 		})
 		if tt.shouldError && process.exitCode != 1 {
diff --git a/test/e2e/annotations/affinitymode.go b/test/e2e/annotations/affinitymode.go
index cce2b004d..ad210cfa5 100644
--- a/test/e2e/annotations/affinitymode.go
+++ b/test/e2e/annotations/affinitymode.go
@@ -125,7 +125,7 @@ var _ = framework.DescribeAnnotation("affinitymode", func() {
 		framework.Sleep()
 
 		// validate, there is no backend to serve the request
-		response = request.WithCookies(cookies).Expect().Status(http.StatusServiceUnavailable)
+		request.WithCookies(cookies).Expect().Status(http.StatusServiceUnavailable)
 
 		// create brand new backends
 		replicas = 2
diff --git a/test/e2e/endpointslices/topology.go b/test/e2e/endpointslices/topology.go
index 7cc67cedb..8dd0becfb 100644
--- a/test/e2e/endpointslices/topology.go
+++ b/test/e2e/endpointslices/topology.go
@@ -76,7 +76,9 @@ var _ = framework.IngressNginxDescribeSerial("[TopologyHints] topology aware rou
 		status, err := f.ExecIngressPod(curlCmd)
 		assert.Nil(ginkgo.GinkgoT(), err)
 		var backends []map[string]interface{}
-		json.Unmarshal([]byte(status), &backends)
+		if err := json.Unmarshal([]byte(status), &backends); err != nil {
+			assert.Nil(ginkgo.GinkgoT(), err)
+		}
 		gotBackends := 0
 		for _, bck := range backends {
 			if strings.Contains(bck["name"].(string), "topology") {
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 04faefc7f..bcb1d3960 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -56,15 +56,8 @@ type deploymentOptions struct {
 	name           string
 	namespace      string
 	image          string
-	port           int32
 	replicas       int
-	command        []string
-	args           []string
-	env            []corev1.EnvVar
-	volumeMounts   []corev1.VolumeMount
-	volumes        []corev1.Volume
 	svcAnnotations map[string]string
-	setProbe       bool
 }
 
 // WithDeploymentNamespace allows configuring the deployment's namespace
diff --git a/test/e2e/framework/httpexpect/chain.go b/test/e2e/framework/httpexpect/chain.go
index 79956fb33..33c4d15b7 100644
--- a/test/e2e/framework/httpexpect/chain.go
+++ b/test/e2e/framework/httpexpect/chain.go
@@ -36,19 +36,3 @@ func (c *chain) fail(message string, args ...interface{}) {
 	c.failbit = true
 	c.reporter.Errorf(message, args...)
 }
-
-func (c *chain) reset() {
-	c.failbit = false
-}
-
-func (c *chain) assertFailed(r Reporter) {
-	if !c.failbit {
-		r.Errorf("expected chain is failed, but it's ok")
-	}
-}
-
-func (c *chain) assertOK(r Reporter) {
-	if c.failbit {
-		r.Errorf("expected chain is ok, but it's failed")
-	}
-}
diff --git a/test/e2e/security/request_smuggling.go b/test/e2e/security/request_smuggling.go
index 786a7a397..58b17c4d8 100644
--- a/test/e2e/security/request_smuggling.go
+++ b/test/e2e/security/request_smuggling.go
@@ -79,7 +79,9 @@ func smugglingRequest(host, addr string, port int) (string, error) {
 
 	defer conn.Close()
 
-	conn.SetDeadline(time.Now().Add(time.Second * 10))
+	if err := conn.SetDeadline(time.Now().Add(time.Second * 10)); err != nil {
+		return "", err
+	}
 
 	_, err = fmt.Fprintf(conn, "GET /echo HTTP/1.1\r\nHost: %v\r\nContent-Length: 56\r\n\r\nGET /_hidden/index.html HTTP/1.1\r\nHost: notlocalhost\r\n\r\n", host)
 	if err != nil {
diff --git a/test/e2e/settings/proxy_protocol.go b/test/e2e/settings/proxy_protocol.go
index f48ee5c8c..1567b2267 100644
--- a/test/e2e/settings/proxy_protocol.go
+++ b/test/e2e/settings/proxy_protocol.go
@@ -63,8 +63,12 @@ var _ = framework.DescribeSetting("use-proxy-protocol", func() {
 		defer conn.Close()
 
 		header := "PROXY TCP4 192.168.0.1 192.168.0.11 56324 1234\r\n"
-		conn.Write([]byte(header))
-		conn.Write([]byte("GET / HTTP/1.1\r\nHost: proxy-protocol\r\n\r\n"))
+		if _, err := conn.Write([]byte(header)); err != nil {
+			assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing header")
+		}
+		if _, err := conn.Write([]byte("GET / HTTP/1.1\r\nHost: proxy-protocol\r\n\r\n")); err != nil {
+			assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing request")
+		}
 
 		data, err := io.ReadAll(conn)
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error reading connection data")
@@ -96,8 +100,12 @@ var _ = framework.DescribeSetting("use-proxy-protocol", func() {
 		defer conn.Close()
 
 		header := "PROXY TCP4 192.168.0.1 192.168.0.11 56324 443\r\n"
-		conn.Write([]byte(header))
-		conn.Write([]byte("GET / HTTP/1.1\r\nHost: proxy-protocol\r\n\r\n"))
+		if _, err := conn.Write([]byte(header)); err != nil {
+			assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing header")
+		}
+		if _, err := conn.Write([]byte("GET / HTTP/1.1\r\nHost: proxy-protocol\r\n\r\n")); err != nil {
+			assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing request")
+		}
 
 		data, err := io.ReadAll(conn)
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error reading connection data")
@@ -205,9 +213,12 @@ var _ = framework.DescribeSetting("use-proxy-protocol", func() {
 		defer conn.Close()
 
 		header := "PROXY TCP4 192.168.0.1 192.168.0.11 56324 8080\r\n"
-		conn.Write([]byte(header))
-		conn.Write([]byte("GET / HTTP/1.1\r\nHost: proxy-protocol\r\n\r\n"))
-
+		if _, err := conn.Write([]byte(header)); err != nil {
+			assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing header")
+		}
+		if _, err := conn.Write([]byte("GET / HTTP/1.1\r\nHost: proxy-protocol\r\n\r\n")); err != nil {
+			assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing request")
+		}
 		_, err = io.ReadAll(conn)
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error reading connection data")
 
diff --git a/test/e2e/ssl/secret_update.go b/test/e2e/ssl/secret_update.go
index 77e64c6b2..242b370ee 100644
--- a/test/e2e/ssl/secret_update.go
+++ b/test/e2e/ssl/secret_update.go
@@ -73,7 +73,9 @@ var _ = framework.IngressNginxDescribe("[SSL] secret update", func() {
 
 		dummySecret.Data["some-key"] = []byte("some value")
 
-		f.KubeClientSet.CoreV1().Secrets(f.Namespace).Update(context.TODO(), dummySecret, metav1.UpdateOptions{})
+		if _, err := f.KubeClientSet.CoreV1().Secrets(f.Namespace).Update(context.TODO(), dummySecret, metav1.UpdateOptions{}); err != nil {
+			assert.Nil(ginkgo.GinkgoT(), err, "updating secret")
+		}
 
 		assert.NotContains(ginkgo.GinkgoT(), log, fmt.Sprintf("starting syncing of secret %v/dummy", f.Namespace))
 		assert.NotContains(ginkgo.GinkgoT(), log, fmt.Sprintf("error obtaining PEM from secret %v/dummy", f.Namespace))
diff --git a/test/e2e/status/update.go b/test/e2e/status/update.go
index 5c6ea4977..046752d2b 100644
--- a/test/e2e/status/update.go
+++ b/test/e2e/status/update.go
@@ -71,7 +71,7 @@ var _ = framework.IngressNginxDescribe("[Status] status update", func() {
 
 		f.NewEchoDeployment()
 
-		ing := f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil))
+		f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil))
 
 		f.WaitForNginxConfiguration(
 			func(cfg string) bool {
@@ -84,7 +84,7 @@ var _ = framework.IngressNginxDescribe("[Status] status update", func() {
 		err = cmd.Process.Kill()
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error terminating kubectl proxy")
 
-		ing, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Get(context.TODO(), host, metav1.GetOptions{})
+		ing, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Get(context.TODO(), host, metav1.GetOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error getting %s/%v Ingress", f.Namespace, host)
 
 		ing.Status.LoadBalancer.Ingress = []v1.IngressLoadBalancerIngress{}

From ff0cb504d672c2c576d99adcf7ae9abc98857f6d Mon Sep 17 00:00:00 2001
From: Chen Chen <imchench@gmail.com>
Date: Thu, 6 Jul 2023 19:31:03 +0800
Subject: [PATCH 0855/1641] Cleanup errcheck code (#10166)

Signed-off-by: z1cheng <imchench@gmail.com>
---
 test/e2e/endpointslices/topology.go |  5 ++---
 test/e2e/settings/proxy_protocol.go | 34 ++++++++++++++---------------
 test/e2e/ssl/secret_update.go       |  5 ++---
 3 files changed, 20 insertions(+), 24 deletions(-)

diff --git a/test/e2e/endpointslices/topology.go b/test/e2e/endpointslices/topology.go
index 8dd0becfb..ff66f2ad1 100644
--- a/test/e2e/endpointslices/topology.go
+++ b/test/e2e/endpointslices/topology.go
@@ -76,9 +76,8 @@ var _ = framework.IngressNginxDescribeSerial("[TopologyHints] topology aware rou
 		status, err := f.ExecIngressPod(curlCmd)
 		assert.Nil(ginkgo.GinkgoT(), err)
 		var backends []map[string]interface{}
-		if err := json.Unmarshal([]byte(status), &backends); err != nil {
-			assert.Nil(ginkgo.GinkgoT(), err)
-		}
+		err = json.Unmarshal([]byte(status), &backends)
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error unmarshalling backends")
 		gotBackends := 0
 		for _, bck := range backends {
 			if strings.Contains(bck["name"].(string), "topology") {
diff --git a/test/e2e/settings/proxy_protocol.go b/test/e2e/settings/proxy_protocol.go
index 1567b2267..9939cad9e 100644
--- a/test/e2e/settings/proxy_protocol.go
+++ b/test/e2e/settings/proxy_protocol.go
@@ -63,12 +63,11 @@ var _ = framework.DescribeSetting("use-proxy-protocol", func() {
 		defer conn.Close()
 
 		header := "PROXY TCP4 192.168.0.1 192.168.0.11 56324 1234\r\n"
-		if _, err := conn.Write([]byte(header)); err != nil {
-			assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing header")
-		}
-		if _, err := conn.Write([]byte("GET / HTTP/1.1\r\nHost: proxy-protocol\r\n\r\n")); err != nil {
-			assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing request")
-		}
+		_, err = conn.Write([]byte(header))
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing header")
+
+		_, err = conn.Write([]byte("GET / HTTP/1.1\r\nHost: proxy-protocol\r\n\r\n"))
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing request")
 
 		data, err := io.ReadAll(conn)
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error reading connection data")
@@ -100,12 +99,11 @@ var _ = framework.DescribeSetting("use-proxy-protocol", func() {
 		defer conn.Close()
 
 		header := "PROXY TCP4 192.168.0.1 192.168.0.11 56324 443\r\n"
-		if _, err := conn.Write([]byte(header)); err != nil {
-			assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing header")
-		}
-		if _, err := conn.Write([]byte("GET / HTTP/1.1\r\nHost: proxy-protocol\r\n\r\n")); err != nil {
-			assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing request")
-		}
+		_, err = conn.Write([]byte(header))
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing header")
+
+		_, err = conn.Write([]byte("GET / HTTP/1.1\r\nHost: proxy-protocol\r\n\r\n"))
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing request")
 
 		data, err := io.ReadAll(conn)
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error reading connection data")
@@ -213,12 +211,12 @@ var _ = framework.DescribeSetting("use-proxy-protocol", func() {
 		defer conn.Close()
 
 		header := "PROXY TCP4 192.168.0.1 192.168.0.11 56324 8080\r\n"
-		if _, err := conn.Write([]byte(header)); err != nil {
-			assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing header")
-		}
-		if _, err := conn.Write([]byte("GET / HTTP/1.1\r\nHost: proxy-protocol\r\n\r\n")); err != nil {
-			assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing request")
-		}
+		_, err = conn.Write([]byte(header))
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing header")
+
+		_, err = conn.Write([]byte("GET / HTTP/1.1\r\nHost: proxy-protocol\r\n\r\n"))
+		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error writing request")
+
 		_, err = io.ReadAll(conn)
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error reading connection data")
 
diff --git a/test/e2e/ssl/secret_update.go b/test/e2e/ssl/secret_update.go
index 242b370ee..fe7bfca0c 100644
--- a/test/e2e/ssl/secret_update.go
+++ b/test/e2e/ssl/secret_update.go
@@ -73,9 +73,8 @@ var _ = framework.IngressNginxDescribe("[SSL] secret update", func() {
 
 		dummySecret.Data["some-key"] = []byte("some value")
 
-		if _, err := f.KubeClientSet.CoreV1().Secrets(f.Namespace).Update(context.TODO(), dummySecret, metav1.UpdateOptions{}); err != nil {
-			assert.Nil(ginkgo.GinkgoT(), err, "updating secret")
-		}
+		_, err = f.KubeClientSet.CoreV1().Secrets(f.Namespace).Update(context.TODO(), dummySecret, metav1.UpdateOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "updating secret")
 
 		assert.NotContains(ginkgo.GinkgoT(), log, fmt.Sprintf("starting syncing of secret %v/dummy", f.Namespace))
 		assert.NotContains(ginkgo.GinkgoT(), log, fmt.Sprintf("error obtaining PEM from secret %v/dummy", f.Namespace))

From c8f7cb052af9f6ddbcb3e92c677d88af13204889 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?L=C3=A1z=C3=A1r=20Gy=C3=B6rgy?=
 <55853197+lgyurci@users.noreply.github.com>
Date: Fri, 7 Jul 2023 01:39:04 +0200
Subject: [PATCH 0856/1641] Exposed continent data as  variable in the case of
 Maxmind city files (#10157)

---
 rootfs/etc/nginx/template/nginx.tmpl | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 6ace87448..189c13d6c 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -224,6 +224,8 @@ http {
         $geoip2_subregion_code source=$remote_addr subdivisions 1 iso_code;
         $geoip2_subregion_name source=$remote_addr subdivisions 1 names en;
         $geoip2_subregion_geoname_id source=$remote_addr subdivisions 1 geoname_id;
+        $geoip2_city_continent_code source=$remote_addr continent code;
+        $geoip2_city_continent_name source=$remote_addr continent names en;
     }
     {{ end }}
 
@@ -245,6 +247,8 @@ http {
         $geoip2_subregion_code source=$remote_addr subdivisions 1 iso_code;
         $geoip2_subregion_name source=$remote_addr subdivisions 1 names en;
         $geoip2_subregion_geoname_id source=$remote_addr subdivisions 1 geoname_id;
+        $geoip2_city_continent_code source=$remote_addr continent code;
+        $geoip2_city_continent_name source=$remote_addr continent names en;
     }
     {{ end }}
 

From 125b3be6f9960f86174fbcb842912e87d5f530bd Mon Sep 17 00:00:00 2001
From: Alex Matchneer <machty@gmail.com>
Date: Thu, 6 Jul 2023 19:47:04 -0400
Subject: [PATCH 0857/1641] Clarify TCP/UDP service docs (#10146)

In the current state, the docs on TCP/UDP aren't really clear on exactly whether/how TCP/UDP traffic is supported. This is an attempt to clarify the limitations inherent to k8s Ingress resources vs what can be accomplished with this controller.
---
 docs/user-guide/exposing-tcp-udp-services.md | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/docs/user-guide/exposing-tcp-udp-services.md b/docs/user-guide/exposing-tcp-udp-services.md
index 63293f0e5..089511ff9 100644
--- a/docs/user-guide/exposing-tcp-udp-services.md
+++ b/docs/user-guide/exposing-tcp-udp-services.md
@@ -1,6 +1,8 @@
 # Exposing TCP and UDP services
 
-Ingress does not support TCP or UDP services. For this reason this Ingress controller uses the flags `--tcp-services-configmap` and `--udp-services-configmap` to point to an existing config map where the key is the external port to use and the value indicates the service to expose using the format:
+While the Kubernetes Ingress resource only officially supports routing external HTTP(s) traffic to services, ingress-nginx can be configured to receive external TCP/UDP traffic from non-HTTP protocols and route them to internal services using TCP/UDP port mappings that are specified within a ConfigMap.
+
+To support this, the `--tcp-services-configmap` and `--udp-services-configmap` flags can be used to point to an existing config map where the key is the external port to use and the value indicates the service to expose using the format:
 `<namespace/service name>:<service port>:[PROXY]:[PROXY]`
 
 It is also possible to use a number or the name of the port. The two last fields are optional.

From 6d55e1f3c42925db5e99f61457695778a681c8be Mon Sep 17 00:00:00 2001
From: David Goffredo <david.goffredo@datadoghq.com>
Date: Thu, 6 Jul 2023 19:51:04 -0400
Subject: [PATCH 0858/1641] revise Datadog trace sampling configuration
 (#10151)

* datadog: sample_rate omitted by default

* config: use *float32 with nil instead of float32 with sentinel value

* change some names

* gofmt -s -w internal/ingress/controller/nginx.go
---
 internal/ingress/controller/config/config.go | 14 +---
 internal/ingress/controller/nginx.go         | 80 ++++++++++++--------
 2 files changed, 52 insertions(+), 42 deletions(-)

diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 000bfc730..345ce89b4 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -706,16 +706,9 @@ type Configuration struct {
 	// Default: nginx.handle
 	DatadogOperationNameOverride string `json:"datadog-operation-name-override"`
 
-	// DatadogPrioritySampling specifies to use client-side sampling
-	// If true disables client-side sampling (thus ignoring sample_rate) and enables distributed
-	// priority sampling, where traces are sampled based on a combination of user-assigned
-	// Default: true
-	DatadogPrioritySampling bool `json:"datadog-priority-sampling"`
-
 	// DatadogSampleRate specifies sample rate for any traces created.
-	// This is effective only when datadog-priority-sampling is false
-	// Default: 1.0
-	DatadogSampleRate float32 `json:"datadog-sample-rate"`
+	// Default: use a dynamic rate instead
+	DatadogSampleRate *float32 `json:"datadog-sample-rate",omitempty`
 
 	// MainSnippet adds custom configuration to the main section of the nginx configuration
 	MainSnippet string `json:"main-snippet"`
@@ -1001,8 +994,7 @@ func NewDefault() Configuration {
 		DatadogEnvironment:                     "prod",
 		DatadogCollectorPort:                   8126,
 		DatadogOperationNameOverride:           "nginx.handle",
-		DatadogSampleRate:                      1.0,
-		DatadogPrioritySampling:                true,
+		DatadogSampleRate:                      nil,
 		LimitReqStatusCode:                     503,
 		LimitConnStatusCode:                    503,
 		SyslogPort:                             514,
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 4a5a07625..6c25aa34f 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -1011,16 +1011,6 @@ const jaegerTmpl = `{
   }
 }`
 
-const datadogTmpl = `{
-  "service": "{{ .DatadogServiceName }}",
-  "agent_host": "{{ .DatadogCollectorHost }}",
-  "agent_port": {{ .DatadogCollectorPort }},
-  "environment": "{{ .DatadogEnvironment }}",
-  "operation_name_override": "{{ .DatadogOperationNameOverride }}",
-  "sample_rate": {{ .DatadogSampleRate }},
-  "dd.priority.sampling": {{ .DatadogPrioritySampling }}
-}`
-
 const otelTmpl = `
 exporter = "otlp"
 processor = "batch"
@@ -1044,37 +1034,65 @@ ratio = {{ .OtelSamplerRatio }}
 parent_based = {{ .OtelSamplerParentBased }}
 `
 
-func createOpentracingCfg(cfg ngx_config.Configuration) error {
-	var tmpl *template.Template
-	var err error
+func datadogOpentracingCfg(cfg ngx_config.Configuration) (string, error) {
+	m := map[string]interface{}{
+		"service":                 cfg.DatadogServiceName,
+		"agent_host":              cfg.DatadogCollectorHost,
+		"agent_port":              cfg.DatadogCollectorPort,
+		"environment":             cfg.DatadogEnvironment,
+		"operation_name_override": cfg.DatadogOperationNameOverride,
+	}
 
-	if cfg.ZipkinCollectorHost != "" {
-		tmpl, err = template.New("zipkin").Parse(zipkinTmpl)
-		if err != nil {
-			return err
-		}
-	} else if cfg.JaegerCollectorHost != "" || cfg.JaegerEndpoint != "" {
-		tmpl, err = template.New("jaeger").Parse(jaegerTmpl)
-		if err != nil {
-			return err
-		}
-	} else if cfg.DatadogCollectorHost != "" {
-		tmpl, err = template.New("datadog").Parse(datadogTmpl)
-		if err != nil {
-			return err
-		}
-	} else {
-		tmpl, _ = template.New("empty").Parse("{}")
+	// Omit "sample_rate" if the configuration's sample rate is unset (nil).
+	// Omitting "sample_rate" from the plugin JSON indicates to the tracer that
+	// it should use dynamic rates instead of a configured rate.
+	if cfg.DatadogSampleRate != nil {
+		m["sample_rate"] = *cfg.DatadogSampleRate
+	}
+
+	buf, err := json.Marshal(m)
+	if err != nil {
+		return "", err
+	}
+
+	return string(buf), nil
+}
+
+func opentracingCfgFromTemplate(cfg ngx_config.Configuration, tmplName string, tmplText string) (string, error) {
+	tmpl, err := template.New(tmplName).Parse(tmplText)
+	if err != nil {
+		return "", err
 	}
 
 	tmplBuf := bytes.NewBuffer(make([]byte, 0))
 	err = tmpl.Execute(tmplBuf, cfg)
+	if err != nil {
+		return "", err
+	}
+
+	return tmplBuf.String(), nil
+}
+
+func createOpentracingCfg(cfg ngx_config.Configuration) error {
+	var configData string
+	var err error
+
+	if cfg.ZipkinCollectorHost != "" {
+		configData, err = opentracingCfgFromTemplate(cfg, "zipkin", zipkinTmpl)
+	} else if cfg.JaegerCollectorHost != "" || cfg.JaegerEndpoint != "" {
+		configData, err = opentracingCfgFromTemplate(cfg, "jaeger", jaegerTmpl)
+	} else if cfg.DatadogCollectorHost != "" {
+		configData, err = datadogOpentracingCfg(cfg)
+	} else {
+		configData = "{}"
+	}
+
 	if err != nil {
 		return err
 	}
 
 	// Expand possible environment variables before writing the configuration to file.
-	expanded := os.ExpandEnv(tmplBuf.String())
+	expanded := os.ExpandEnv(configData)
 
 	return os.WriteFile("/etc/nginx/opentracing.json", []byte(expanded), file.ReadWriteByUser)
 }

From b9122e0248a5de64bfb3fd7c321be7e2c5238040 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 10 Jul 2023 05:55:07 -0700
Subject: [PATCH 0859/1641] Bump docker/setup-buildx-action from 2.8.0 to 2.9.0
 (#10191)

Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.8.0 to 2.9.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/16c0bc4a6e6ada2cfd8afd41d22d95379cf7c32a...2a1a44ac4aa01993040736bd95bb470da1a38365)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 150ec29ae..e2ddec049 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -158,7 +158,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@16c0bc4a6e6ada2cfd8afd41d22d95379cf7c32a # v2.8.0
+        uses: docker/setup-buildx-action@2a1a44ac4aa01993040736bd95bb470da1a38365 # v2.9.0
         with:
           version: latest
 

From 5b35651a1a40f5506d06540c1fcd103dc41a16d5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 10 Jul 2023 05:57:06 -0700
Subject: [PATCH 0860/1641] Bump golang.org/x/crypto from 0.10.0 to 0.11.0
 (#10192)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.10.0 to 0.11.0.
- [Commits](https://github.com/golang/crypto/compare/v0.10.0...v0.11.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index 4b75cbd12..2b808ef2b 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.4
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.10.0
+	golang.org/x/crypto v0.11.0
 	google.golang.org/grpc v1.56.1
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -103,9 +103,9 @@ require (
 	golang.org/x/mod v0.10.0 // indirect
 	golang.org/x/net v0.10.0 // indirect
 	golang.org/x/oauth2 v0.8.0 // indirect
-	golang.org/x/sys v0.9.0 // indirect
-	golang.org/x/term v0.9.0 // indirect
-	golang.org/x/text v0.10.0 // indirect
+	golang.org/x/sys v0.10.0 // indirect
+	golang.org/x/term v0.10.0 // indirect
+	golang.org/x/text v0.11.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.9.1 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
diff --git a/go.sum b/go.sum
index db879481c..9fee095bc 100644
--- a/go.sum
+++ b/go.sum
@@ -390,8 +390,8 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.10.0 h1:LKqV2xt9+kDzSTfOhx4FrkEBcMrAgHSYgzywV9zcGmM=
-golang.org/x/crypto v0.10.0/go.mod h1:o4eNf7Ede1fv+hwOwZsTHl9EsPFO6q6ZvYR8vYfY45I=
+golang.org/x/crypto v0.11.0 h1:6Ewdq3tDic1mg5xRO4milcWCfMVQhI4NkqWWvqejpuA=
+golang.org/x/crypto v0.11.0/go.mod h1:xgJhtzW8F9jGdVFWZESrid1U1bjeNy4zgy5cRr/CIio=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -524,19 +524,19 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.9.0 h1:KS/R3tvhPqvJvwcKfnBHJwwthS11LRhmM5D59eEXa0s=
-golang.org/x/sys v0.9.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.10.0 h1:SqMFp9UcQJZa+pmYuAKjd9xq1f0j5rLcDIk0mj4qAsA=
+golang.org/x/sys v0.10.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.9.0 h1:GRRCnKYhdQrD8kfRAdQ6Zcw1P0OcELxGLKJvtjVMZ28=
-golang.org/x/term v0.9.0/go.mod h1:M6DEAAIenWoTxdKrOltXcmDY3rSplQUkrvaDU5FcQyo=
+golang.org/x/term v0.10.0 h1:3R7pNqamzBraeqj/Tj8qt1aQ2HpmlC+Cx/qL/7hn4/c=
+golang.org/x/term v0.10.0/go.mod h1:lpqdcUyK/oCiQxvxVrppt5ggO2KCZ5QblwqPnfZ6d5o=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.10.0 h1:UpjohKhiEgNc0CSauXmwYftY1+LlaC75SJwh0SgCX58=
-golang.org/x/text v0.10.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
+golang.org/x/text v0.11.0 h1:LAntKIrcmeSKERyiOh0XMV39LXS8IE9UL2yP7+f5ij4=
+golang.org/x/text v0.11.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=

From a9f9793a1fbe269660c70ef9ea33c03f541cc689 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Sun, 16 Jul 2023 13:18:32 -0400
Subject: [PATCH 0861/1641] update default value for period when not set

---
 pkg/util/runtime/cpu_linux.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index c72f47f01..dc24a1ad7 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -93,7 +93,7 @@ func readCgroup2FileToInt64Tuple(cgroupFile string) (int64, int64) {
 	}
 
 	if len(values) == 1 {
-		return cpuQuota, 1
+		return cpuQuota, 100000
 	}
 
 	cpuPeriod, err := strconv.ParseInt(values[1], 10, 64)

From 0cd1f16c476ca72c324b8ded07c861ebe0dce4e0 Mon Sep 17 00:00:00 2001
From: lijie <lijiecm@gmail.com>
Date: Mon, 17 Jul 2023 04:45:06 +0800
Subject: [PATCH 0862/1641] Scanning port 10247 lead to tcp connection 502
 error (#9815)

* fix tcp 502 error

* fix tcp 502 error for parse tcp  backend data

* fix tcp 502 error for parse tcp  backend data
---
 rootfs/etc/nginx/lua/tcp_udp_configuration.lua | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/rootfs/etc/nginx/lua/tcp_udp_configuration.lua b/rootfs/etc/nginx/lua/tcp_udp_configuration.lua
index 85864b45b..f191454fa 100644
--- a/rootfs/etc/nginx/lua/tcp_udp_configuration.lua
+++ b/rootfs/etc/nginx/lua/tcp_udp_configuration.lua
@@ -1,5 +1,6 @@
 local ngx = ngx
 local tostring = tostring
+local cjson = require("cjson.safe")
 -- this is the Lua representation of TCP/UDP Configuration
 local tcp_udp_configuration_data = ngx.shared.tcp_udp_configuration_data
 
@@ -37,6 +38,14 @@ function _M.call()
     return
   end
 
+  local _, backends_err = cjson.decode(backends)
+
+  if backends_err then
+    ngx.log(ngx.ERR, "could not parse backends data: ", backends_err)
+    return
+  end
+
+
   local success, err_conf = tcp_udp_configuration_data:set("backends", backends)
   if not success then
     ngx.log(ngx.ERR, "dynamic-configuration: error updating configuration: " .. tostring(err_conf))

From 3814e1f01fbfebe4c8c9f88e57cd424a56578537 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Sun, 16 Jul 2023 18:58:58 -0400
Subject: [PATCH 0863/1641] write e2e tests for cgroups

---
 pkg/util/runtime/cpu_linux.go               |    4 +-
 test/e2e/cgroups/cgroups_linux.go           |   78 +-
 test/e2e/e2e.go                             |   41 +-
 test/junitreports/report-e2e-test-suite.xml | 1294 +------------------
 4 files changed, 92 insertions(+), 1325 deletions(-)

diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index e5e8db40a..e2eff9fec 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -38,7 +38,7 @@ import (
 func NumCPU() int {
 	cpus := runtime.NumCPU()
 
-	cgroupVersion := getCgroupVersion()
+	cgroupVersion := GetCgroupVersion()
 	cpuQuota := int64(-1)
 	cpuPeriod := int64(-1)
 
@@ -64,7 +64,7 @@ func IsCgroupAvaliable() bool {
 	return true
 }
 
-func getCgroupVersion() int64 {
+func GetCgroupVersion() int64 {
 	// /sys/fs/cgroup/cgroup.controllers will not exist with cgroupsv1
 	if _, err := os.Stat("/sys/fs/cgroup/cgroup.controllers"); err == nil {
 		return 2
diff --git a/test/e2e/cgroups/cgroups_linux.go b/test/e2e/cgroups/cgroups_linux.go
index 18b3f837b..b27346dc3 100644
--- a/test/e2e/cgroups/cgroups_linux.go
+++ b/test/e2e/cgroups/cgroups_linux.go
@@ -28,7 +28,10 @@ import (
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 
+	"path/filepath"
 	"k8s.io/ingress-nginx/pkg/util/runtime"
+
+	libcontainercgroups "github.com/opencontainers/runc/libcontainer/cgroups"
 )
 
 var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
@@ -40,26 +43,75 @@ var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
 	})
 
 	ginkgo.It("detects if cgroups is avaliable", func() {
-		assert.Equal(ginkgo.GinkgoT(), runtime.IsCgroupAvaliable(), 1)
+		assert.True(ginkgo.GinkgoT(), runtime.IsCgroupAvaliable())
 	})
 
 	ginkgo.It("detects cgroups version v1", func() {
-		assert.Equal(ginkgo.GinkgoT(), runtime.readCgroupFileToInt64(), 1)
-	})
-
-	ginkgo.It("detects number of CPUs properly in cgroups v1", func() {
-		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), -1)
-	})
-
-	ginkgo.It("detects cgroups version v2", func() {
-		// create cgroups2 files
-		if err := os.MkdirAll("a/b/c/d", os.ModePerm); err != nil {
+		cgroupPath, err := libcontainercgroups.FindCgroupMountpoint("", "cpu")
+		if err != nil {
 			log.Fatal(err)
 		}
 
+		quotaFile, err := os.Create(filepath.Join(cgroupPath,"cpu.cfs_quota_us"))
+
+		if err != nil {
+			log.Fatal(err)
+		}
+
+		periodFile, err := os.Create(filepath.Join(cgroupPath,"cpu.cfs_period_us"))
+
+		if err != nil {
+			log.Fatal(err)
+		}
+
+		quotaFile.WriteString("4");
+		quotaFile.Sync();
+
+		periodFile.WriteString("2");
+		periodFile.Sync();
+		
+		assert.Equal(ginkgo.GinkgoT(), runtime.GetCgroupVersion(), int64(1))	
+		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), 2)
+
+		os.Remove(filepath.Join(cgroupPath,"cpu.cfs_quota_us"))
+		os.Remove(filepath.Join(cgroupPath,"cpu.cfs_period_us"))
 	})
 
-	ginkgo.It("detects number of CPUs properly in cgroups v2", func() {
-		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), -1)
+	ginkgo.It("detect cgroups version v2", func() {
+		if err := os.MkdirAll("/sys/fs/cgroup/", os.ModePerm); err != nil {
+			log.Fatal(err)
+		}
+
+		os.Create("/sys/fs/cgroup/cgroup.controllers")
+		file, err := os.Create("/sys/fs/cgroup/cpu.max")
+
+		if err != nil {
+			log.Fatal(err)
+		}
+
+		file.WriteString("4 2");
+		file.Sync();
+		
+		assert.Equal(ginkgo.GinkgoT(), runtime.GetCgroupVersion(), int64(2))	
+		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), 2)
+
+		os.Remove("/sys/fs/cgroup/cpu.max")
+		os.Remove("/sys/fs/cgroup/cgroup.controllers")
 	})
+
+	// ginkgo.It("detects number of CPUs properly in cgroups v1", func() {
+	// 	assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), -1)
+	// })
+
+	// ginkgo.It("detects cgroups version v2", func() {
+	// 	// create cgroups2 files
+	// 	if err := os.MkdirAll("a/b/c/d", os.ModePerm); err != nil {
+	// 		log.Fatal(err)
+	// 	}
+
+	// })
+
+	// ginkgo.It("detects number of CPUs properly in cgroups v2", func() {
+	// 	assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), -1)
+	// })
 })
diff --git a/test/e2e/e2e.go b/test/e2e/e2e.go
index a671e8793..57b047230 100644
--- a/test/e2e/e2e.go
+++ b/test/e2e/e2e.go
@@ -29,27 +29,26 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 
 	// tests to run
-	// _ "k8s.io/ingress-nginx/test/e2e/admission"
-	// _ "k8s.io/ingress-nginx/test/e2e/annotations"
-	// _ "k8s.io/ingress-nginx/test/e2e/annotations/modsecurity"
-	_ "k8s.io/ingress-nginx/test/e2e/cgroups"
-	// _ "k8s.io/ingress-nginx/test/e2e/dbg"
-	// _ "k8s.io/ingress-nginx/test/e2e/defaultbackend"
-	// _ "k8s.io/ingress-nginx/test/e2e/endpointslices"
-	// _ "k8s.io/ingress-nginx/test/e2e/gracefulshutdown"
-	// _ "k8s.io/ingress-nginx/test/e2e/ingress"
-	// _ "k8s.io/ingress-nginx/test/e2e/leaks"
-	// _ "k8s.io/ingress-nginx/test/e2e/loadbalance"
-	// _ "k8s.io/ingress-nginx/test/e2e/lua"
-	// _ "k8s.io/ingress-nginx/test/e2e/nginx"
-	// _ "k8s.io/ingress-nginx/test/e2e/security"
-	// _ "k8s.io/ingress-nginx/test/e2e/servicebackend"
-	// _ "k8s.io/ingress-nginx/test/e2e/settings"
-	// _ "k8s.io/ingress-nginx/test/e2e/settings/modsecurity"
-	// _ "k8s.io/ingress-nginx/test/e2e/settings/ocsp"
-	// _ "k8s.io/ingress-nginx/test/e2e/ssl"
-	// _ "k8s.io/ingress-nginx/test/e2e/status"
-	// _ "k8s.io/ingress-nginx/test/e2e/tcpudp"
+	_ "k8s.io/ingress-nginx/test/e2e/admission"
+	_ "k8s.io/ingress-nginx/test/e2e/annotations"
+	_ "k8s.io/ingress-nginx/test/e2e/annotations/modsecurity"
+	_ "k8s.io/ingress-nginx/test/e2e/dbg"
+	_ "k8s.io/ingress-nginx/test/e2e/defaultbackend"
+	_ "k8s.io/ingress-nginx/test/e2e/endpointslices"
+	_ "k8s.io/ingress-nginx/test/e2e/gracefulshutdown"
+	_ "k8s.io/ingress-nginx/test/e2e/ingress"
+	_ "k8s.io/ingress-nginx/test/e2e/leaks"
+	_ "k8s.io/ingress-nginx/test/e2e/loadbalance"
+	_ "k8s.io/ingress-nginx/test/e2e/lua"
+	_ "k8s.io/ingress-nginx/test/e2e/nginx"
+	_ "k8s.io/ingress-nginx/test/e2e/security"
+	_ "k8s.io/ingress-nginx/test/e2e/servicebackend"
+	_ "k8s.io/ingress-nginx/test/e2e/settings"
+	_ "k8s.io/ingress-nginx/test/e2e/settings/modsecurity"
+	_ "k8s.io/ingress-nginx/test/e2e/settings/ocsp"
+	_ "k8s.io/ingress-nginx/test/e2e/ssl"
+	_ "k8s.io/ingress-nginx/test/e2e/status"
+	_ "k8s.io/ingress-nginx/test/e2e/tcpudp"
 )
 
 // RunE2ETests checks configuration parameters (specified through flags) and then runs
diff --git a/test/junitreports/report-e2e-test-suite.xml b/test/junitreports/report-e2e-test-suite.xml
index fc919bad2..e48076b5a 100644
--- a/test/junitreports/report-e2e-test-suite.xml
+++ b/test/junitreports/report-e2e-test-suite.xml
@@ -1,12 +1,12 @@
 <?xml version="1.0" encoding="UTF-8"?>
-  <testsuites tests="427" disabled="6" errors="0" failures="0" time="15519.407450685">
-      <testsuite name="nginx-ingress-controller e2e suite" package="/" tests="427" disabled="0" skipped="6" errors="0" failures="0" time="15519.407450685" timestamp="2023-04-04T18:04:19">
+  <testsuites tests="1" disabled="0" errors="0" failures="0" time="19.728293306">
+      <testsuite name="nginx-ingress-controller e2e suite" package="/" tests="1" disabled="0" skipped="0" errors="0" failures="0" time="19.728293306" timestamp="2023-07-16T17:53:35">
           <properties>
               <property name="SuiteSucceeded" value="true"></property>
               <property name="SuiteHasProgrammaticFocus" value="false"></property>
               <property name="SpecialSuiteFailureReason" value=""></property>
               <property name="SuiteLabels" value="[]"></property>
-              <property name="RandomSeed" value="1680631459"></property>
+              <property name="RandomSeed" value="1689530015"></property>
               <property name="RandomizeAllSpecs" value="true"></property>
               <property name="LabelFilter" value=""></property>
               <property name="FocusStrings" value=""></property>
@@ -20,1292 +20,8 @@
               <property name="ParallelTotal" value="7"></property>
               <property name="OutputInterceptorMode" value=""></property>
           </properties>
-          <testcase name="[It] [Annotations] cors-* should set cors methods to only allow POST, GET" classname="nginx-ingress-controller e2e suite" status="passed" time="155.719672151">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.256&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:40.576 (2m21.32s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:06:40.576&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:06:44.629 (4.053s)&#xA;&gt; Enter [It] should set cors methods to only allow POST, GET - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:62 @ 04/04/23 18:06:44.629&#xA;&lt; Exit [It] should set cors methods to only allow POST, GET - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:62 @ 04/04/23 18:06:54.768 (10.139s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:54.768&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:54.976 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Load Balancer] round-robin should evenly distribute requests with round-robin (default algorithm)" classname="nginx-ingress-controller e2e suite" status="passed" time="146.423040301">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:54.976&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:01.906 (6.93s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:34 @ 04/04/23 18:07:01.906&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:34 @ 04/04/23 18:07:12.967 (11.06s)&#xA;&gt; Enter [It] should evenly distribute requests with round-robin (default algorithm) - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:39 @ 04/04/23 18:07:12.967&#xA;&lt; Exit [It] should evenly distribute requests with round-robin (default algorithm) - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:39 @ 04/04/23 18:09:21.17 (2m8.203s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:21.17&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:21.399 (229ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-forwarded-headers should trust X-Forwarded headers when setting is true" classname="nginx-ingress-controller e2e suite" status="passed" time="35.389805466">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:21.4&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:28.324 (6.924s)&#xA;&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 04/04/23 18:09:28.324&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 04/04/23 18:09:39.376 (11.052s)&#xA;&gt; Enter [It] should trust X-Forwarded headers when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:40 @ 04/04/23 18:09:39.376&#xA;STEP: ensuring single values are parsed correctly - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:54 @ 04/04/23 18:09:56.563&#xA;STEP: ensuring that first entry in X-Forwarded-Host is used as the best host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:75 @ 04/04/23 18:09:56.572&#xA;&lt; Exit [It] should trust X-Forwarded headers when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:40 @ 04/04/23 18:09:56.578 (17.202s)&#xA;&gt; Enter [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:56.578&#xA;&lt; Exit [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:56.789 (211ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] from-to-www-redirect should redirect from www HTTPS to HTTPS" classname="nginx-ingress-controller e2e suite" status="passed" time="26.419790469">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:56.79&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:03.662 (6.873s)&#xA;&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 04/04/23 18:10:03.662&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 04/04/23 18:10:07.688 (4.026s)&#xA;&gt; Enter [It] should redirect from www HTTPS to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:64 @ 04/04/23 18:10:07.688&#xA;STEP: setting up server for redirect from www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:65 @ 04/04/23 18:10:07.688&#xA;STEP: sending request to www should redirect to domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:91 @ 04/04/23 18:10:22.913&#xA;STEP: sending request to domain should not redirect to www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:103 @ 04/04/23 18:10:22.941&#xA;&lt; Exit [It] should redirect from www HTTPS to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:64 @ 04/04/23 18:10:22.969 (15.281s)&#xA;&gt; Enter [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:22.969&#xA;&lt; Exit [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:23.209 (240ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set secure in cookie with provided true annotation on http" classname="nginx-ingress-controller e2e suite" status="passed" time="22.314624867">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:23.21&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:31.083 (7.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:10:31.083&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:10:35.101 (4.018s)&#xA;&gt; Enter [It] should set secure in cookie with provided true annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:412 @ 04/04/23 18:10:35.101&#xA;&lt; Exit [It] should set secure in cookie with provided true annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:412 @ 04/04/23 18:10:45.308 (10.206s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:45.308&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:45.524 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should not set cookie without domain annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="21.240386516">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:45.525&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:52.399 (6.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:10:52.399&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:10:56.446 (4.048s)&#xA;&gt; Enter [It] should not set cookie without domain annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:248 @ 04/04/23 18:10:56.446&#xA;&lt; Exit [It] should not set cookie without domain annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:248 @ 04/04/23 18:11:06.571 (10.124s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:06.571&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:06.765 (195ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set sticky cookie without host" classname="nginx-ingress-controller e2e suite" status="passed" time="21.40125451">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:06.765&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:13.684 (6.918s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:11:13.684&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:11:17.714 (4.03s)&#xA;&gt; Enter [It] should set sticky cookie without host - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:352 @ 04/04/23 18:11:17.714&#xA;&lt; Exit [It] should set sticky cookie without host - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:352 @ 04/04/23 18:11:27.946 (10.232s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:27.946&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:28.167 (220ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Security] request smuggling should not return body content from error_page" classname="nginx-ingress-controller e2e suite" status="passed" time="32.363293062">
-              <system-err>&gt; Enter [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:28.167&#xA;&lt; Exit [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:36.071 (7.904s)&#xA;&gt; Enter [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:35 @ 04/04/23 18:11:36.071&#xA;&lt; Exit [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:35 @ 04/04/23 18:11:38.106 (2.035s)&#xA;&gt; Enter [It] should not return body content from error_page - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:39 @ 04/04/23 18:11:38.106&#xA;&lt; Exit [It] should not return body content from error_page - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:39 @ 04/04/23 18:12:00.307 (22.201s)&#xA;&gt; Enter [AfterEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:00.307&#xA;&lt; Exit [AfterEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:00.53 (223ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - GRPC should use grpc_pass in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="24.501632586">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:00.531&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:07.492 (6.961s)&#xA;&gt; Enter [It] should use grpc_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:43 @ 04/04/23 18:12:07.492&#xA;&lt; Exit [It] should use grpc_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:43 @ 04/04/23 18:12:24.818 (17.326s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:24.818&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:25.032 (214ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured with invalid content and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="21.754871768">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:25.033&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:32.425 (7.392s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:12:32.425&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:12:36.448 (4.023s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured with invalid content and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:227 @ 04/04/23 18:12:36.448&#xA;&lt; Exit [It] should return status code 401 when authentication is configured with invalid content and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:227 @ 04/04/23 18:12:46.572 (10.124s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:46.572&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:46.787 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="33.025082751">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:46.788&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:54.215 (7.427s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:12:54.215&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:13:02.279 (8.064s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:490 @ 04/04/23 18:13:02.279&#xA;STEP: routing requests to the canary upstream when header pattern is matched - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:514 @ 04/04/23 18:13:19.503&#xA;STEP: routing requests to the mainline upstream when header failed to match header value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:523 @ 04/04/23 18:13:19.508&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:490 @ 04/04/23 18:13:19.51 (17.231s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:19.51&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:19.813 (303ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-multi-accept should be enabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="10.259806432">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:19.813&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:26.704 (6.89s)&#xA;&gt; Enter [It] should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:31 @ 04/04/23 18:13:26.704&#xA;&lt; Exit [It] should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:31 @ 04/04/23 18:13:29.872 (3.169s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:29.872&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:30.073 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass" classname="nginx-ingress-controller e2e suite" status="passed" time="37.41369791">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:30.073&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:37.948 (7.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:13:37.948&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:13:41.967 (4.019s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:133 @ 04/04/23 18:13:41.967&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:133 @ 04/04/23 18:14:07.32 (25.353s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:07.32&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:07.487 (167ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] disables access logging for default backend" classname="nginx-ingress-controller e2e suite" status="skipped" time="7.073309195">
-              <skipped message="skipped - enable-access-log-for-default-backend"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:07.487&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:14.369 (6.882s)&#xA;&gt; Enter [It] disables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:105 @ 04/04/23 18:14:14.369&#xA;[SKIPPED] enable-access-log-for-default-backend&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:107 @ 04/04/23 18:14:14.37&#xA;&lt; Exit [It] disables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:105 @ 04/04/23 18:14:14.37 (1ms)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:14.37&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:14.561 (191ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by cookie respects always and never values" classname="nginx-ingress-controller e2e suite" status="passed" time="60.518220117">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:14.561&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:21.468 (6.907s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:14:21.468&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:14:29.526 (8.058s)&#xA;&gt; Enter [It] respects always and never values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:643 @ 04/04/23 18:14:29.526&#xA;STEP: routing requests to the canary upstream when cookie is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:667 @ 04/04/23 18:14:46.664&#xA;STEP: routing requests to the mainline upstream when cookie is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:678 @ 04/04/23 18:14:54.864&#xA;STEP: routing requests to the mainline upstream when cookie is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:689 @ 04/04/23 18:15:04.858&#xA;&lt; Exit [It] respects always and never values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:643 @ 04/04/23 18:15:14.862 (45.336s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:14.862&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:15.079 (218ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] default-backend when default backend annotation is enabled should use a custom default backend as upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="22.31198962">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:15.08&#xA;&lt; Exit [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:22.972 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:32 @ 04/04/23 18:15:22.972&#xA;&lt; Exit [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:32 @ 04/04/23 18:15:26.998 (4.026s)&#xA;&gt; Enter [It] should use a custom default backend as upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:37 @ 04/04/23 18:15:26.998&#xA;&lt; Exit [It] should use a custom default backend as upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:37 @ 04/04/23 18:15:37.18 (10.182s)&#xA;&gt; Enter [AfterEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:37.18&#xA;&lt; Exit [AfterEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:37.392 (212ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* canary affinity behavior always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="38.759102087">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:37.392&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:44.321 (6.929s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:15:44.321&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:15:50.372 (6.051s)&#xA;&gt; Enter [It] always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1000 @ 04/04/23 18:15:50.372&#xA;&lt; Exit [It] always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1000 @ 04/04/23 18:16:15.956 (25.584s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:15.956&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:16.151 (195ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should write rewrite logs" classname="nginx-ingress-controller e2e suite" status="passed" time="26.937169082">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:16.152&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:25.575 (9.424s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:16:25.576&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:16:29.621 (4.045s)&#xA;&gt; Enter [It] should write rewrite logs - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:37 @ 04/04/23 18:16:29.621&#xA;STEP: setting enable-rewrite-log annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:38 @ 04/04/23 18:16:29.621&#xA;&lt; Exit [It] should write rewrite logs - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:37 @ 04/04/23 18:16:42.864 (13.243s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:42.864&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:43.089 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret" classname="nginx-ingress-controller e2e suite" status="passed" time="26.69218604">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:43.089&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:50.483 (7.394s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:16:50.483&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:16:54.502 (4.019s)&#xA;&gt; Enter [It] should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:36 @ 04/04/23 18:16:54.502&#xA;&lt; Exit [It] should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:36 @ 04/04/23 18:17:09.564 (15.063s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:09.564&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:09.781 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should propagate the w3c header when configured with jaeger" classname="nginx-ingress-controller e2e suite" status="passed" time="41.394943239">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:09.782&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:16.68 (6.899s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:17:16.68&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:17:20.71 (4.03s)&#xA;&gt; Enter [It] should propagate the w3c header when configured with jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:197 @ 04/04/23 18:17:20.71&#xA;&lt; Exit [It] should propagate the w3c header when configured with jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:197 @ 04/04/23 18:17:50.976 (30.266s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:50.976&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:51.176 (200ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:17:51.176&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:17:51.176 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes" classname="nginx-ingress-controller e2e suite" status="passed" time="32.627892918">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:51.177&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:59.072 (7.895s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:17:59.072&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:18:13.271 (14.199s)&#xA;&gt; Enter [It] handles endpoints only changes - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:62 @ 04/04/23 18:18:13.271&#xA;&lt; Exit [It] handles endpoints only changes - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:62 @ 04/04/23 18:18:23.585 (10.314s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:23.585&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:23.805 (219ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] secret update should not appear references to secret updates not used in ingress rules" classname="nginx-ingress-controller e2e suite" status="passed" time="34.389384875">
-              <system-err>&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:23.805&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:30.696 (6.891s)&#xA;&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 04/04/23 18:18:30.696&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 04/04/23 18:18:34.717 (4.021s)&#xA;&gt; Enter [It] should not appear references to secret updates not used in ingress rules - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:40 @ 04/04/23 18:18:34.717&#xA;&lt; Exit [It] should not appear references to secret updates not used in ingress rules - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:40 @ 04/04/23 18:18:57.987 (23.27s)&#xA;&gt; Enter [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:57.987&#xA;&lt; Exit [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:58.194 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should include opentelemetry_trust_incoming_spans on directive when enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="31.804972504">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:58.195&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:08.072 (9.877s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:19:08.072&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:19:12.096 (4.024s)&#xA;&gt; Enter [It] should include opentelemetry_trust_incoming_spans on directive when enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:74 @ 04/04/23 18:19:12.096&#xA;&lt; Exit [It] should include opentelemetry_trust_incoming_spans on directive when enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:74 @ 04/04/23 18:19:29.486 (17.39s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:29.486&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:30 (514ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:19:30&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:19:30 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] from-to-www-redirect should redirect from www HTTP to HTTP" classname="nginx-ingress-controller e2e suite" status="passed" time="22.301605707">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:30.007&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:37.929 (7.922s)&#xA;&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 04/04/23 18:19:37.929&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 04/04/23 18:19:41.957 (4.027s)&#xA;&gt; Enter [It] should redirect from www HTTP to HTTP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:38 @ 04/04/23 18:19:41.957&#xA;STEP: setting up server for redirect from www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:39 @ 04/04/23 18:19:41.957&#xA;STEP: sending request to www.fromtowwwredirect.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:55 @ 04/04/23 18:19:52.111&#xA;&lt; Exit [It] should redirect from www HTTP to HTTP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:38 @ 04/04/23 18:19:52.114 (10.157s)&#xA;&gt; Enter [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:52.114&#xA;&lt; Exit [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:52.309 (195ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Debug CLI should produce valid JSON for /dbg general" classname="nginx-ingress-controller e2e suite" status="passed" time="19.236570056">
-              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:52.309&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:59.222 (6.912s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:19:59.222&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:20:03.271 (4.049s)&#xA;&gt; Enter [It] should produce valid JSON for /dbg general - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:85 @ 04/04/23 18:20:03.271&#xA;&lt; Exit [It] should produce valid JSON for /dbg general - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:85 @ 04/04/23 18:20:10.739 (7.468s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:10.739&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:11.546 (807ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests split between mainline and canary if canary weight is 50" classname="nginx-ingress-controller e2e suite" status="passed" time="72.6402812">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:11.548&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:20.355 (8.808s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:20:20.355&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:20:28.54 (8.185s)&#xA;&gt; Enter [It] should route requests split between mainline and canary if canary weight is 50 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:808 @ 04/04/23 18:20:28.54&#xA;&lt; Exit [It] should route requests split between mainline and canary if canary weight is 50 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:808 @ 04/04/23 18:21:23.965 (55.425s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:23.965&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:24.188 (223ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] custom-http-errors configures Nginx correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="44.923714382">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:24.188&#xA;&lt; Exit [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:32.093 (7.904s)&#xA;&gt; Enter [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:37 @ 04/04/23 18:21:32.093&#xA;&lt; Exit [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:37 @ 04/04/23 18:21:36.116 (4.023s)&#xA;&gt; Enter [It] configures Nginx correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:41 @ 04/04/23 18:21:36.116&#xA;STEP: turning on proxy_intercept_errors directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:59 @ 04/04/23 18:21:46.348&#xA;STEP: configuring error_page directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:62 @ 04/04/23 18:21:46.348&#xA;STEP: creating error locations - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:67 @ 04/04/23 18:21:46.348&#xA;STEP: updating configuration when only custom-http-error value changes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:72 @ 04/04/23 18:21:46.349&#xA;STEP: ignoring duplicate values (503 in this case) per server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:90 @ 04/04/23 18:21:50.55&#xA;STEP: using the custom default-backend from annotation for upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:102 @ 04/04/23 18:22:00.715&#xA;&lt; Exit [It] configures Nginx correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:41 @ 04/04/23 18:22:08.9 (32.784s)&#xA;&gt; Enter [AfterEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:08.9&#xA;&lt; Exit [AfterEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:09.112 (212ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] connection-proxy-header set connection header to keep-alive" classname="nginx-ingress-controller e2e suite" status="passed" time="22.252976907">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:09.112&#xA;&lt; Exit [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:17.003 (7.891s)&#xA;&gt; Enter [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:32 @ 04/04/23 18:22:17.003&#xA;&lt; Exit [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:32 @ 04/04/23 18:22:21.032 (4.029s)&#xA;&gt; Enter [It] set connection header to keep-alive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:36 @ 04/04/23 18:22:21.032&#xA;&lt; Exit [It] set connection header to keep-alive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:36 @ 04/04/23 18:22:31.159 (10.126s)&#xA;&gt; Enter [AfterEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:31.159&#xA;&lt; Exit [AfterEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:31.365 (206ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName using FQDN with trailing dot" classname="nginx-ingress-controller e2e suite" status="passed" time="17.384809737">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:31.366&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:38.253 (6.887s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName using FQDN with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:217 @ 04/04/23 18:22:38.253&#xA;&lt; Exit [It] should return 200 for service type=ExternalName using FQDN with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:217 @ 04/04/23 18:22:48.533 (10.28s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:48.533&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:48.75 (218ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure TLS protocol setting cipher suite" classname="nginx-ingress-controller e2e suite" status="passed" time="30.336386338">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:48.751&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:55.631 (6.88s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:22:55.631&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:22:59.653 (4.022s)&#xA;&gt; Enter [BeforeEach] should configure TLS protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:47 @ 04/04/23 18:22:59.653&#xA;&lt; Exit [BeforeEach] should configure TLS protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:47 @ 04/04/23 18:23:08.743 (9.09s)&#xA;&gt; Enter [It] setting cipher suite - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:65 @ 04/04/23 18:23:08.743&#xA;&lt; Exit [It] setting cipher suite - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:65 @ 04/04/23 18:23:18.9 (10.157s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:18.9&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:19.087 (187ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should not set client_body_buffer_size to invalid 1b" classname="nginx-ingress-controller e2e suite" status="passed" time="22.345381233">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:19.087&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:27.019 (7.931s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:23:27.019&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:23:31.042 (4.023s)&#xA;&gt; Enter [It] should not set client_body_buffer_size to invalid 1b - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:145 @ 04/04/23 18:23:31.042&#xA;&lt; Exit [It] should not set client_body_buffer_size to invalid 1b - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:145 @ 04/04/23 18:23:41.252 (10.21s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:41.252&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:41.433 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user with annotated ingress retains cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="35.862466475">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:41.433&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:48.317 (6.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:23:48.317&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:23:52.34 (4.023s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:23:52.34&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:24:11.665 (19.325s)&#xA;&gt; Enter [It] user with annotated ingress retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:433 @ 04/04/23 18:24:11.665&#xA;&lt; Exit [It] user with annotated ingress retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:433 @ 04/04/23 18:24:16.916 (5.251s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:16.916&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:17.295 (379ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should accept both Ingresses with default IngressClassName and IngressClass annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="28.849373163">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:17.296&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:24.725 (7.429s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:24:24.725&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:24:28.761 (4.036s)&#xA;&gt; Enter [It] should accept both Ingresses with default IngressClassName and IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:132 @ 04/04/23 18:24:28.761&#xA;&lt; Exit [It] should accept both Ingresses with default IngressClassName and IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:132 @ 04/04/23 18:24:45.952 (17.19s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:45.952&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:46.145 (194ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="62.989242552">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:46.146&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:54.048 (7.903s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:24:54.048&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:24:58.076 (4.028s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:24:58.076&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:25:03.11&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:25:13.321&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:25:23.483&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:25:33.694&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:25:48.897 (50.821s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:849 @ 04/04/23 18:25:48.897&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:849 @ 04/04/23 18:25:48.908 (11ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:48.908&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:49.135 (227ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should enable the log-format-escape-none" classname="nginx-ingress-controller e2e suite" status="passed" time="29.279224113">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:49.135&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:56.988 (7.853s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:25:56.988&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:26:08.04 (11.052s)&#xA;&gt; Enter [It] should enable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:63 @ 04/04/23 18:26:08.04&#xA;&lt; Exit [It] should enable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:63 @ 04/04/23 18:26:18.223 (10.184s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:18.223&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:18.414 (191ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="28.389158726">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:18.415&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:25.316 (6.901s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:26:25.316&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:26:29.352 (4.036s)&#xA;&gt; Enter [It] disable-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:35 @ 04/04/23 18:26:29.352&#xA;&lt; Exit [It] disable-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:35 @ 04/04/23 18:26:46.584 (17.231s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:46.584&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:46.805 (221ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] backend status code 503 should return 503 when backend service does not exist" classname="nginx-ingress-controller e2e suite" status="passed" time="17.252661988">
-              <system-err>&gt; Enter [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:46.805&#xA;&lt; Exit [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:53.714 (6.909s)&#xA;&gt; Enter [It] should return 503 when backend service does not exist - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:36 @ 04/04/23 18:26:53.714&#xA;&lt; Exit [It] should return 503 when backend service does not exist - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:36 @ 04/04/23 18:27:03.859 (10.145s)&#xA;&gt; Enter [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:03.859&#xA;&lt; Exit [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:04.058 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when host part of auth-url contains a variable" classname="nginx-ingress-controller e2e suite" status="passed" time="180.073180671">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:04.058&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:22.496 (2m18.438s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:29:22.496&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:29:26.527 (4.032s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:26.527&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:40.697 (14.169s)&#xA;&gt; Enter [It] should not create additional upstream block when host part of auth-url contains a variable - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:570 @ 04/04/23 18:29:40.697&#xA;&lt; Exit [It] should not create additional upstream block when host part of auth-url contains a variable - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:570 @ 04/04/23 18:30:03.916 (23.219s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:03.916&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:04.131 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should return 403 using auth-tls-match-cn with no matching CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="22.572106725">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:04.131&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:12.003 (7.871s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:30:12.003&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:30:16.028 (4.025s)&#xA;&gt; Enter [It] should return 403 using auth-tls-match-cn with no matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:266 @ 04/04/23 18:30:16.028&#xA;&lt; Exit [It] should return 403 using auth-tls-match-cn with no matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:266 @ 04/04/23 18:30:26.487 (10.459s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:26.487&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:26.704 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check the variable hash size should set variables-hash-max-size" classname="nginx-ingress-controller e2e suite" status="passed" time="28.267138211">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:26.704&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:33.592 (6.888s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:30:33.592&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:30:44.636 (11.044s)&#xA;&gt; Enter [It] should set variables-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:88 @ 04/04/23 18:30:44.636&#xA;&lt; Exit [It] should set variables-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:88 @ 04/04/23 18:30:54.792 (10.156s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:54.792&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:54.971 (179ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] nginx-configuration fails when using alias directive" classname="nginx-ingress-controller e2e suite" status="passed" time="62.037787772">
-              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:30:54.971&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:30:56.98 (2.008s)&#xA;&gt; Enter [It] fails when using alias directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:115 @ 04/04/23 18:30:56.98&#xA;&lt; Exit [It] fails when using alias directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:115 @ 04/04/23 18:31:57.006 (1m0.027s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:31:57.006&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:31:57.009 (3ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] stream-snippet should add value of stream-snippet to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="26.324702674">
-              <system-err>&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:57.009&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:03.889 (6.88s)&#xA;&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 04/04/23 18:32:03.889&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 04/04/23 18:32:07.917 (4.028s)&#xA;&gt; Enter [It] should add value of stream-snippet to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:41 @ 04/04/23 18:32:07.917&#xA;&lt; Exit [It] should add value of stream-snippet to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:41 @ 04/04/23 18:32:23.139 (15.222s)&#xA;&gt; Enter [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:23.139&#xA;&lt; Exit [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:23.334 (195ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] force-ssl-redirect should redirect to https" classname="nginx-ingress-controller e2e suite" status="passed" time="18.161892976">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:23.334&#xA;&lt; Exit [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:30.222 (6.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:30 @ 04/04/23 18:32:30.222&#xA;&lt; Exit [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:30 @ 04/04/23 18:32:34.249 (4.027s)&#xA;&gt; Enter [It] should redirect to https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:34 @ 04/04/23 18:32:34.249&#xA;&lt; Exit [It] should redirect to https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:34 @ 04/04/23 18:32:41.274 (7.025s)&#xA;&gt; Enter [AfterEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:41.274&#xA;&lt; Exit [AfterEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:41.496 (222ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With specific ingress-class flags should ignore Ingress with no class and accept the correctly configured Ingresses" classname="nginx-ingress-controller e2e suite" status="passed" time="43.376544604">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:41.497&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:48.376 (6.879s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:32:48.376&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:32:52.403 (4.027s)&#xA;&gt; Enter [BeforeEach] With specific ingress-class flags - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:392 @ 04/04/23 18:32:52.403&#xA;&lt; Exit [BeforeEach] With specific ingress-class flags - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:392 @ 04/04/23 18:33:00.451 (8.048s)&#xA;&gt; Enter [It] should ignore Ingress with no class and accept the correctly configured Ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:413 @ 04/04/23 18:33:00.451&#xA;&lt; Exit [It] should ignore Ingress with no class and accept the correctly configured Ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:413 @ 04/04/23 18:33:24.697 (24.246s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:24.697&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:24.873 (176ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to canary if canary weight is 100" classname="nginx-ingress-controller e2e suite" status="passed" time="34.835880563">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:24.873&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:32.238 (7.364s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:33:32.238&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:33:42.291 (10.053s)&#xA;&gt; Enter [It] should route requests only to canary if canary weight is 100 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:743 @ 04/04/23 18:33:42.291&#xA;&lt; Exit [It] should route requests only to canary if canary weight is 100 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:743 @ 04/04/23 18:33:59.526 (17.235s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:59.526&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:59.709 (183ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] plugins should exist a x-hello-world header" classname="nginx-ingress-controller e2e suite" status="passed" time="28.296985312">
-              <system-err>&gt; Enter [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:59.71&#xA;&lt; Exit [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:06.602 (6.893s)&#xA;&gt; Enter [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:31 @ 04/04/23 18:34:06.602&#xA;&lt; Exit [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:31 @ 04/04/23 18:34:10.627 (4.025s)&#xA;&gt; Enter [It] should exist a x-hello-world header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:35 @ 04/04/23 18:34:10.627&#xA;&lt; Exit [It] should exist a x-hello-world header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:35 @ 04/04/23 18:34:27.807 (17.179s)&#xA;&gt; Enter [AfterEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:27.807&#xA;&lt; Exit [AfterEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:28.007 (200ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured falls back to using default certificate when secret gets deleted without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="42.494257699">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:28.007&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:35.896 (7.889s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:34:35.896&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:34:39.916 (4.02s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:34:39.916&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:34:57.039&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:35:05.187&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:35:05.197 (25.281s)&#xA;&gt; Enter [It] falls back to using default certificate when secret gets deleted without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:185 @ 04/04/23 18:35:05.197&#xA;STEP: serving the default certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:204 @ 04/04/23 18:35:10.227&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:214 @ 04/04/23 18:35:10.293&#xA;&lt; Exit [It] falls back to using default certificate when secret gets deleted without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:185 @ 04/04/23 18:35:10.293 (5.095s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:10.293&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:10.501 (209ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user retains cookie by default" classname="nginx-ingress-controller e2e suite" status="passed" time="32.330381109">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:10.502&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:17.387 (6.885s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:35:17.387&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:35:21.413 (4.026s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:35:21.413&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:35:42.607 (21.195s)&#xA;&gt; Enter [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:411 @ 04/04/23 18:35:42.607&#xA;&lt; Exit [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:411 @ 04/04/23 18:35:42.616 (9ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:42.616&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:42.832 (216ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - FastCGI should use fastcgi_pass in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="22.329056924">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:42.832&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:49.737 (6.905s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:35:49.737&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:35:54.76 (5.023s)&#xA;&gt; Enter [It] should use fastcgi_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:37 @ 04/04/23 18:35:54.76&#xA;&lt; Exit [It] should use fastcgi_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:37 @ 04/04/23 18:36:04.978 (10.218s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:04.978&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:05.161 (183ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured picks up the updated certificate without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="48.818003036">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:05.162&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:13.068 (7.906s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:36:13.068&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:36:17.096 (4.027s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:36:17.096&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:36:34.288&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:36:42.473&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:36:42.5 (25.405s)&#xA;&gt; Enter [It] picks up the updated certificate without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:149 @ 04/04/23 18:36:42.5&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:163 @ 04/04/23 18:36:47.607&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:169 @ 04/04/23 18:36:50.731&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:180 @ 04/04/23 18:36:53.763&#xA;&lt; Exit [It] picks up the updated certificate without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:149 @ 04/04/23 18:36:53.763 (11.263s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:53.763&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:53.98 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format default escape" classname="nginx-ingress-controller e2e suite" status="passed" time="33.273225638">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:53.981&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:00.852 (6.872s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:37:00.852&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:37:13.899 (13.046s)&#xA;&gt; Enter [It] log-format default escape - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:105 @ 04/04/23 18:37:13.899&#xA;&lt; Exit [It] log-format default escape - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:105 @ 04/04/23 18:37:27.067 (13.169s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:27.067&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:27.254 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] brotli should only compress responses that meet the `brotli-min-length` condition" classname="nginx-ingress-controller e2e suite" status="passed" time="43.280934967">
-              <system-err>&gt; Enter [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:27.254&#xA;&lt; Exit [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:35.134 (7.88s)&#xA;&gt; Enter [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:35 @ 04/04/23 18:37:35.134&#xA;&lt; Exit [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:35 @ 04/04/23 18:37:39.153 (4.019s)&#xA;&gt; Enter [It] should only compress responses that meet the `brotli-min-length` condition - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:39 @ 04/04/23 18:37:39.153&#xA;&lt; Exit [It] should only compress responses that meet the `brotli-min-length` condition - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:39 @ 04/04/23 18:38:10.344 (31.191s)&#xA;&gt; Enter [AfterEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:10.344&#xA;&lt; Exit [AfterEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:10.535 (191ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-http-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="28.299680714">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:10.535&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:17.414 (6.879s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:38:17.414&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:38:21.437 (4.023s)&#xA;&gt; Enter [It] disable-http-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:53 @ 04/04/23 18:38:21.437&#xA;&lt; Exit [It] disable-http-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:53 @ 04/04/23 18:38:38.614 (17.177s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:38.614&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:38.835 (221ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] enable-access-log enable-rewrite-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="21.343128764">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:38.836&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:45.698 (6.862s)&#xA;&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 04/04/23 18:38:45.698&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 04/04/23 18:38:49.734 (4.036s)&#xA;&gt; Enter [It] set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:34 @ 04/04/23 18:38:49.734&#xA;&lt; Exit [It] set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:34 @ 04/04/23 18:38:59.959 (10.225s)&#xA;&gt; Enter [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:59.959&#xA;&lt; Exit [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:00.179 (220ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Geoip2 should only allow requests from specific countries" classname="nginx-ingress-controller e2e suite" status="skipped" time="12.683479458">
-              <skipped message="skipped - GeoIP test are temporarily disabled"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:00.179&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:08.619 (8.44s)&#xA;&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 04/04/23 18:39:08.619&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 04/04/23 18:39:12.644 (4.025s)&#xA;&gt; Enter [It] should only allow requests from specific countries - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:70 @ 04/04/23 18:39:12.644&#xA;[SKIPPED] GeoIP test are temporarily disabled&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:71 @ 04/04/23 18:39:12.645&#xA;&lt; Exit [It] should only allow requests from specific countries - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:70 @ 04/04/23 18:39:12.645 (1ms)&#xA;&gt; Enter [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:12.645&#xA;&lt; Exit [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:12.862 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting includeSubDomains parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="30.581404926">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:12.863&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:19.76 (6.897s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:39:19.76&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:39:23.829 (4.069s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:39:23.829&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:39:33.03 (9.2s)&#xA;&gt; Enter [It] setting includeSubDomains parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:127 @ 04/04/23 18:39:33.03&#xA;&lt; Exit [It] setting includeSubDomains parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:127 @ 04/04/23 18:39:43.259 (10.229s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:43.259&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:43.444 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should add auth headers when global-auth-response-headers is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="55.890075182">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:43.445&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:50.328 (6.883s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:39:50.328&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:39:58.361 (8.034s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:39:58.361&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:39:58.361&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:40:08.534&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:40:18.725&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:40:28.928 (30.567s)&#xA;&gt; Enter [It] should add auth headers when global-auth-response-headers is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:223 @ 04/04/23 18:40:28.928&#xA;STEP: Adding a global-auth-response-headers to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:228 @ 04/04/23 18:40:28.928&#xA;&lt; Exit [It] should add auth headers when global-auth-response-headers is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:223 @ 04/04/23 18:40:39.119 (10.19s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:39.119&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:39.335 (216ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-read-timeout should not set invalid proxy read timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="26.343140938">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:39.335&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:46.231 (6.896s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 04/04/23 18:40:46.231&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 04/04/23 18:40:48.266 (2.035s)&#xA;&gt; Enter [It] should not set invalid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:52 @ 04/04/23 18:40:48.266&#xA;&lt; Exit [It] should not set invalid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:52 @ 04/04/23 18:41:05.463 (17.198s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:05.463&#xA;&lt; Exit [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:05.678 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should not return an error if the Ingress V1 definition is valid with IngressClass annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="43.931079725000004">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:41:24.95&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:41:57.132 (32.182s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:41:57.132&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:42:05.196 (8.064s)&#xA;&gt; Enter [It] should not return an error if the Ingress V1 definition is valid with IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:180 @ 04/04/23 18:42:05.196&#xA;&lt; Exit [It] should not return an error if the Ingress V1 definition is valid with IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:180 @ 04/04/23 18:42:08.558 (3.362s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:42:08.558&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:42:08.881 (323ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should return an error if the Ingress V1 definition contains invalid annotations" classname="nginx-ingress-controller e2e suite" status="passed" time="26.799712273">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:42:08.881&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:42:27.269 (18.388s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:42:27.269&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:42:35.33 (8.061s)&#xA;&gt; Enter [It] should return an error if the Ingress V1 definition contains invalid annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:196 @ 04/04/23 18:42:35.33&#xA;&lt; Exit [It] should return an error if the Ingress V1 definition contains invalid annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:196 @ 04/04/23 18:42:35.482 (152ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:42:35.482&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:42:35.681 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should not allow overlaps of host and paths without canary annotations" classname="nginx-ingress-controller e2e suite" status="passed" time="32.195691651">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:42:35.681&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:42:54.33 (18.649s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 18:42:54.33&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 21:18:55.121 (10.056s)&#xA;&gt; Enter [It] should not allow overlaps of host and paths without canary annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:70 @ 04/04/23 21:18:55.121&#xA;&lt; Exit [It] should not allow overlaps of host and paths without canary annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:70 @ 04/04/23 21:18:58.366 (3.245s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 21:18:58.367&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 21:18:58.612 (246ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [TopologyHints] topology aware routing should return 200 when service has topology hints" classname="nginx-ingress-controller e2e suite" status="passed" time="21.448473937">
-              <system-err>&gt; Enter [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 21:18:58.613&#xA;&lt; Exit [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 21:19:05.487 (6.875s)&#xA;&gt; Enter [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:39 @ 04/04/23 21:19:05.487&#xA;&lt; Exit [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:39 @ 04/04/23 21:19:09.523 (4.036s)&#xA;&gt; Enter [It] should return 200 when service has topology hints - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:43 @ 04/04/23 21:19:09.523&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:53 @ 04/04/23 21:19:19.701&#xA;&lt; Exit [It] should return 200 when service has topology hints - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:43 @ 04/04/23 21:19:19.839 (10.316s)&#xA;&gt; Enter [AfterEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 21:19:19.839&#xA;&lt; Exit [AfterEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 21:19:20.061 (222ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should block ingress with invalid path" classname="nginx-ingress-controller e2e suite" status="passed" time="42.332684214">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 21:19:20.061&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:17:57.17 (30.737s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:17:57.17&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:18:05.234 (8.065s)&#xA;&gt; Enter [It] should block ingress with invalid path - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:108 @ 04/04/23 22:18:05.234&#xA;&lt; Exit [It] should block ingress with invalid path - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:108 @ 04/04/23 22:18:08.53 (3.296s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:18:08.53&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:18:08.765 (235ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] watch namespace selector With specific watch-namespace-selector flags should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar" classname="nginx-ingress-controller e2e suite" status="passed" time="46.527358158">
-              <system-err>&gt; Enter [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:18:08.766&#xA;&lt; Exit [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:18:22.642 (13.877s)&#xA;&gt; Enter [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:51 @ 04/04/23 22:18:22.642&#xA;&lt; Exit [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:51 @ 04/04/23 22:18:48.76 (26.118s)&#xA;&gt; Enter [It] should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:63 @ 04/04/23 22:18:48.76&#xA;&lt; Exit [It] should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:63 @ 04/04/23 22:18:55.044 (6.284s)&#xA;&gt; Enter [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:18:55.044&#xA;&lt; Exit [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:18:55.29 (246ms)&#xA;&gt; Enter [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:56 @ 04/04/23 22:18:55.29&#xA;&lt; Exit [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:56 @ 04/04/23 22:18:55.293 (3ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should not return an error for an invalid Ingress when it has unknown class" classname="nginx-ingress-controller e2e suite" status="passed" time="26.083527499">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:18:55.294&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:19:12.977 (17.683s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:19:12.977&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:19:21.048 (8.072s)&#xA;&gt; Enter [It] should not return an error for an invalid Ingress when it has unknown class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:207 @ 04/04/23 22:19:21.048&#xA;&lt; Exit [It] should not return an error for an invalid Ingress when it has unknown class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:207 @ 04/04/23 22:19:21.18 (132ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:19:21.18&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:19:21.377 (197ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller reject ingress with global-rate-limit annotations when memcached is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="49.765265582">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:19:21.377&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:19:52.511 (31.134s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:19:52.511&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:20:00.575 (8.064s)&#xA;&gt; Enter [It] reject ingress with global-rate-limit annotations when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:43 @ 04/04/23 22:20:00.575&#xA;STEP: rejects ingress when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:52 @ 04/04/23 22:20:00.575&#xA;STEP: accepts ingress when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:57 @ 04/04/23 22:20:00.587&#xA;&lt; Exit [It] reject ingress with global-rate-limit annotations when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:43 @ 04/04/23 22:20:10.885 (10.31s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:20:10.885&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:20:11.143 (257ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should return an error if there is an invalid value in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="33.755788426">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:20:11.143&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:20:29.584 (18.441s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:20:29.584&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:20:37.66 (8.076s)&#xA;&gt; Enter [It] should return an error if there is an invalid value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:136 @ 04/04/23 22:20:37.66&#xA;&lt; Exit [It] should return an error if there is an invalid value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:136 @ 04/04/23 22:20:44.7 (7.04s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:20:44.7&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:20:44.899 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should return an error if there is a forbidden value in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="34.438337938">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:20:44.899&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:21:03.976 (19.078s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:21:03.976&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:21:12.046 (8.07s)&#xA;&gt; Enter [It] should return an error if there is a forbidden value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:150 @ 04/04/23 22:21:12.046&#xA;&lt; Exit [It] should return an error if there is a forbidden value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:150 @ 04/04/23 22:21:19.079 (7.033s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:21:19.079&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:21:19.337 (258ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should return an error if there is an error validating the ingress definition" classname="nginx-ingress-controller e2e suite" status="passed" time="26.71968897">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:21:19.337&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:21:37.731 (18.394s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:21:37.731&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:21:45.791 (8.06s)&#xA;&gt; Enter [It] should return an error if there is an error validating the ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:125 @ 04/04/23 22:21:45.791&#xA;&lt; Exit [It] should return an error if there is an error validating the ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:125 @ 04/04/23 22:21:45.852 (61ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:21:45.852&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:21:46.057 (205ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should not return an error if the Ingress V1 definition is valid with Ingress Class" classname="nginx-ingress-controller e2e suite" status="passed" time="32.534925031">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:21:46.057&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:22:04.907 (18.85s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:22:04.907&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:22:12.968 (8.061s)&#xA;&gt; Enter [It] should not return an error if the Ingress V1 definition is valid with Ingress Class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:164 @ 04/04/23 22:22:12.968&#xA;&lt; Exit [It] should not return an error if the Ingress V1 definition is valid with Ingress Class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:164 @ 04/04/23 22:22:18.358 (5.39s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:22:18.358&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:22:18.592 (234ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should allow overlaps of host and paths with canary annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="40.047809217">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:22:18.592&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 22:22:47.015 (28.422s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:22:47.015&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 04/04/23 22:22:55.073 (8.059s)&#xA;&gt; Enter [It] should allow overlaps of host and paths with canary annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:87 @ 04/04/23 22:22:55.073&#xA;&lt; Exit [It] should allow overlaps of host and paths with canary annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:87 @ 04/04/23 22:22:58.439 (3.366s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:22:58.439&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 22:22:58.64 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured supports requests with domain with trailing dot" classname="nginx-ingress-controller e2e suite" status="passed" time="45.156808474">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.251&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:26.76 (7.509s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:04:26.76&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:04:38.808 (12.048s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:04:38.808&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:04:55.931&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:05:04.12&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:05:04.15 (25.342s)&#xA;&gt; Enter [It] supports requests with domain with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:145 @ 04/04/23 18:05:04.15&#xA;&lt; Exit [It] supports requests with domain with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:145 @ 04/04/23 18:05:04.174 (24ms)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:04.174&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:04.407 (234ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] preserve-trailing-slash should allow preservation of trailing slashes" classname="nginx-ingress-controller e2e suite" status="passed" time="18.218254728">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:04.408&#xA;&lt; Exit [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:11.385 (6.978s)&#xA;&gt; Enter [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:30 @ 04/04/23 18:05:11.385&#xA;&lt; Exit [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:30 @ 04/04/23 18:05:15.42 (4.034s)&#xA;&gt; Enter [It] should allow preservation of trailing slashes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:34 @ 04/04/23 18:05:15.42&#xA;&lt; Exit [It] should allow preservation of trailing slashes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:34 @ 04/04/23 18:05:22.428 (7.008s)&#xA;&gt; Enter [AfterEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:22.428&#xA;&lt; Exit [AfterEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:22.626 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set valid proxy timeouts" classname="nginx-ingress-controller e2e suite" status="passed" time="21.290348562">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:22.626&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:29.568 (6.942s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:05:29.568&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:05:33.606 (4.037s)&#xA;&gt; Enter [It] should set valid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:115 @ 04/04/23 18:05:33.606&#xA;&lt; Exit [It] should set valid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:115 @ 04/04/23 18:05:43.732 (10.127s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:43.732&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:43.917 (184ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Dynamic $proxy_host should exist a proxy_host using the upstream-vhost annotation value" classname="nginx-ingress-controller e2e suite" status="passed" time="22.27109412">
-              <system-err>&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:43.917&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:51.802 (7.885s)&#xA;&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 04/04/23 18:05:51.802&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 04/04/23 18:05:55.831 (4.029s)&#xA;&gt; Enter [It] should exist a proxy_host using the upstream-vhost annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:57 @ 04/04/23 18:05:55.831&#xA;&lt; Exit [It] should exist a proxy_host using the upstream-vhost annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:57 @ 04/04/23 18:06:05.978 (10.147s)&#xA;&gt; Enter [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:05.978&#xA;&lt; Exit [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:06.188 (210ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] server-tokens should not exists Server header in the response" classname="nginx-ingress-controller e2e suite" status="passed" time="29.448501298">
-              <system-err>&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:06.189&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:14.133 (7.945s)&#xA;&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 04/04/23 18:06:14.133&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 04/04/23 18:06:18.165 (4.031s)&#xA;&gt; Enter [It] should not exists Server header in the response - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:38 @ 04/04/23 18:06:18.165&#xA;&lt; Exit [It] should not exists Server header in the response - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:38 @ 04/04/23 18:06:35.378 (17.213s)&#xA;&gt; Enter [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:35.378&#xA;&lt; Exit [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:35.637 (259ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Configmap - limit-rate Check limit-rate config" classname="nginx-ingress-controller e2e suite" status="passed" time="41.582520724">
-              <system-err>&gt; Enter [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:35.637&#xA;&lt; Exit [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:42.521 (6.884s)&#xA;&gt; Enter [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:32 @ 04/04/23 18:06:42.521&#xA;&lt; Exit [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:32 @ 04/04/23 18:06:46.54 (4.019s)&#xA;&gt; Enter [It] Check limit-rate config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:36 @ 04/04/23 18:06:46.54&#xA;&lt; Exit [It] Check limit-rate config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:36 @ 04/04/23 18:07:17.039 (30.499s)&#xA;&gt; Enter [AfterEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:17.039&#xA;&lt; Exit [AfterEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:17.22 (180ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend" classname="nginx-ingress-controller e2e suite" status="passed" time="19.412775362">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:17.22&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:24.225 (7.005s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:07:24.225&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:07:26.256 (2.031s)&#xA;&gt; Enter [It] does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:121 @ 04/04/23 18:07:26.256&#xA;&lt; Exit [It] does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:121 @ 04/04/23 18:07:36.45 (10.194s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:36.45&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:36.633 (183ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should response with a 200 status from the mainline upstream when requests are made to the mainline ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="32.429318493">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:36.633&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:43.537 (6.903s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:43.537&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:51.596 (8.059s)&#xA;&gt; Enter [It] should response with a 200 status from the mainline upstream when requests are made to the mainline ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:48 @ 04/04/23 18:07:51.596&#xA;&lt; Exit [It] should response with a 200 status from the mainline upstream when requests are made to the mainline ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:48 @ 04/04/23 18:08:08.813 (17.217s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:08.813&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:09.063 (249ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should still return status code 200 after auth backend is deleted using cache" classname="nginx-ingress-controller e2e suite" status="passed" time="63.851336918">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:09.063&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:16.959 (7.896s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:08:16.959&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:08:25.017 (8.058s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:08:25.017&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:08:25.017&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:08:35.191&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:08:45.372&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:08:55.507 (30.491s)&#xA;&gt; Enter [It] should still return status code 200 after auth backend is deleted using cache - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:155 @ 04/04/23 18:08:55.507&#xA;STEP: Adding a global-auth-cache-key to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:163 @ 04/04/23 18:08:55.507&#xA;&lt; Exit [It] should still return status code 200 after auth backend is deleted using cache - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:155 @ 04/04/23 18:09:12.69 (17.183s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:12.69&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:12.914 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] DeepInspection should drop whole ingress if one path matches invalid regex" classname="nginx-ingress-controller e2e suite" status="passed" time="28.383842502">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:12.915&#xA;&lt; Exit [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:19.799 (6.884s)&#xA;&gt; Enter [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:30 @ 04/04/23 18:09:19.799&#xA;&lt; Exit [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:30 @ 04/04/23 18:09:23.825 (4.026s)&#xA;&gt; Enter [It] should drop whole ingress if one path matches invalid regex - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:34 @ 04/04/23 18:09:23.825&#xA;&lt; Exit [It] should drop whole ingress if one path matches invalid regex - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:34 @ 04/04/23 18:09:41.065 (17.24s)&#xA;&gt; Enter [AfterEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:41.065&#xA;&lt; Exit [AfterEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:41.299 (233ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Lua] lua-shared-dicts configures lua shared dicts" classname="nginx-ingress-controller e2e suite" status="passed" time="20.303048947">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:41.299&#xA;&lt; Exit [BeforeEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:49.196 (7.896s)&#xA;&gt; Enter [It] configures lua shared dicts - /go/src/k8s.io/ingress-nginx/test/e2e/settings/lua_shared_dicts.go:29 @ 04/04/23 18:09:49.196&#xA;&lt; Exit [It] configures lua shared dicts - /go/src/k8s.io/ingress-nginx/test/e2e/settings/lua_shared_dicts.go:29 @ 04/04/23 18:10:01.416 (12.22s)&#xA;&gt; Enter [AfterEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:01.416&#xA;&lt; Exit [AfterEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:01.602 (187ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should use correct longest path match" classname="nginx-ingress-controller e2e suite" status="passed" time="31.437264514">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:01.603&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:08.48 (6.877s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:10:08.48&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:10:12.502 (4.022s)&#xA;&gt; Enter [It] should use correct longest path match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:66 @ 04/04/23 18:10:12.502&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:69 @ 04/04/23 18:10:12.502&#xA;STEP: making a request to the non-rewritten location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:78 @ 04/04/23 18:10:22.752&#xA;STEP: creating an ingress definition with the rewrite-target annotation set on the &#34;/&#34; location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:88 @ 04/04/23 18:10:22.759&#xA;STEP: making a second request to the non-rewritten location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:102 @ 04/04/23 18:10:32.852&#xA;&lt; Exit [It] should use correct longest path match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:66 @ 04/04/23 18:10:32.86 (20.358s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:32.86&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:33.04 (180ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting max-age parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="33.487300099">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:33.04&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:40.925 (7.885s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:10:40.925&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:10:44.945 (4.02s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:10:44.945&#xA;Apr  4 18:10:54.109: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:10:56.109 (11.164s)&#xA;&gt; Enter [It] setting max-age parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:111 @ 04/04/23 18:10:56.109&#xA;&lt; Exit [It] setting max-age parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:111 @ 04/04/23 18:11:06.315 (10.206s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:06.315&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:06.527 (212ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="50.397964041">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:06.528&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:13.431 (6.904s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:11:13.431&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:11:21.479 (8.048s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:11:21.479&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:11:49.732 (28.253s)&#xA;&gt; Enter [It] user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:348 @ 04/04/23 18:11:49.732&#xA;&lt; Exit [It] user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:348 @ 04/04/23 18:11:56.743 (7.011s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:56.743&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:56.926 (183ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user retains cookie by default" classname="nginx-ingress-controller e2e suite" status="passed" time="43.408433493">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:56.926&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:03.815 (6.889s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:12:03.815&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:12:11.862 (8.047s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:12:11.862&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:12:40.103 (28.241s)&#xA;&gt; Enter [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:326 @ 04/04/23 18:12:40.103&#xA;&lt; Exit [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:326 @ 04/04/23 18:12:40.112 (9ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:40.112&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:40.334 (222ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - portless origin with wildcard origin" classname="nginx-ingress-controller e2e suite" status="passed" time="18.100951563">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:40.335&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:47.184 (6.849s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:12:47.184&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:12:51.214 (4.031s)&#xA;&gt; Enter [It] should not allow - portless origin with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:515 @ 04/04/23 18:12:51.214&#xA;&lt; Exit [It] should not allow - portless origin with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:515 @ 04/04/23 18:12:58.232 (7.018s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:58.232&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:58.436 (203ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 200 when authentication is configured with a map and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="23.202917116">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:58.436&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:05.332 (6.896s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:13:05.332&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:13:09.361 (4.029s)&#xA;&gt; Enter [It] should return status code 200 when authentication is configured with a map and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:199 @ 04/04/23 18:13:09.361&#xA;&lt; Exit [It] should return status code 200 when authentication is configured with a map and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:199 @ 04/04/23 18:13:21.468 (12.107s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:21.468&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:21.639 (171ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should pass URL-encoded certificate to upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="25.893054261">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:21.639&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:29.514 (7.875s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:13:29.514&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:13:33.537 (4.023s)&#xA;&gt; Enter [It] should pass URL-encoded certificate to upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:161 @ 04/04/23 18:13:33.537&#xA;&lt; Exit [It] should pass URL-encoded certificate to upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:161 @ 04/04/23 18:13:47.331 (13.794s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:47.331&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:47.532 (202ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] custom service uses custom default backend that returns 200 as status code" classname="nginx-ingress-controller e2e suite" status="passed" time="23.264944049">
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:47.533&#xA;&lt; Exit [BeforeEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:54.43 (6.897s)&#xA;&gt; Enter [It] uses custom default backend that returns 200 as status code - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/custom_default_backend.go:36 @ 04/04/23 18:13:54.43&#xA;&lt; Exit [It] uses custom default backend that returns 200 as status code - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/custom_default_backend.go:36 @ 04/04/23 18:14:10.603 (16.173s)&#xA;&gt; Enter [AfterEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:10.603&#xA;&lt; Exit [AfterEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:10.797 (195ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] whitelist-source-range should set valid ip whitelist range" classname="nginx-ingress-controller e2e suite" status="passed" time="21.327163771">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:10.798&#xA;&lt; Exit [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:17.742 (6.944s)&#xA;&gt; Enter [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:30 @ 04/04/23 18:14:17.742&#xA;&lt; Exit [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:30 @ 04/04/23 18:14:21.766 (4.024s)&#xA;&gt; Enter [It] should set valid ip whitelist range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:34 @ 04/04/23 18:14:21.766&#xA;&lt; Exit [It] should set valid ip whitelist range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:34 @ 04/04/23 18:14:31.914 (10.148s)&#xA;&gt; Enter [AfterEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:31.914&#xA;&lt; Exit [AfterEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:32.125 (211ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName using a port name" classname="nginx-ingress-controller e2e suite" status="passed" time="18.535847693">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:32.125&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:40.045 (7.92s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName using a port name - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:184 @ 04/04/23 18:14:40.045&#xA;&lt; Exit [It] should return 200 for service type=ExternalName using a port name - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:184 @ 04/04/23 18:14:50.345 (10.299s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:50.345&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:50.661 (317ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is not set" classname="nginx-ingress-controller e2e suite" status="passed" time="48.861086206">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:50.662&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:57.86 (7.198s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:14:57.86&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:15:01.901 (4.041s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:15:01.901&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:15:16.075 (14.174s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:552 @ 04/04/23 18:15:16.075&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:552 @ 04/04/23 18:15:39.289 (23.214s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:39.289&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:39.523 (234ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 401 when accessing &#39;/&#39; unauthentication" classname="nginx-ingress-controller e2e suite" status="passed" time="29.175448236">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:39.523&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:46.413 (6.89s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:15:46.413&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:16:05.358 (18.945s)&#xA;&gt; Enter [It] should return status code 401 when accessing &#39;/&#39; unauthentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:54 @ 04/04/23 18:16:05.358&#xA;&lt; Exit [It] should return status code 401 when accessing &#39;/&#39; unauthentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:54 @ 04/04/23 18:16:08.518 (3.16s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:08.518&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:08.699 (180ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-proxy-protocol should enable PROXY Protocol for HTTPS" classname="nginx-ingress-controller e2e suite" status="passed" time="110.571232421">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:08.699&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:15.641 (6.942s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:16:15.641&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:16:26.725 (11.084s)&#xA;&gt; Enter [It] should enable PROXY Protocol for HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:112 @ 04/04/23 18:16:26.725&#xA;&lt; Exit [It] should enable PROXY Protocol for HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:112 @ 04/04/23 18:17:59.041 (1m32.316s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:59.041&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:59.27 (229ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-catch-all should ignore catch all Ingress with backend" classname="nginx-ingress-controller e2e suite" status="passed" time="40.559995342">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:59.27&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:07.156 (7.885s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:18:07.156&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:18:19.212 (12.057s)&#xA;&gt; Enter [It] should ignore catch all Ingress with backend - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:50 @ 04/04/23 18:18:19.212&#xA;&lt; Exit [It] should ignore catch all Ingress with backend - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:50 @ 04/04/23 18:18:39.618 (20.406s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:39.618&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:39.83 (212ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow headers for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="21.260866655">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:39.831&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:46.716 (6.885s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:46.716&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:50.744 (4.028s)&#xA;&gt; Enter [It] should allow headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:137 @ 04/04/23 18:18:50.744&#xA;&lt; Exit [It] should allow headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:137 @ 04/04/23 18:19:00.902 (10.159s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:00.902&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:01.091 (189ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should return 404 status for requests to the canary if no matching ingress is found" classname="nginx-ingress-controller e2e suite" status="passed" time="23.296431448">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:01.092&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:09.007 (7.915s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:19:09.007&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:19:17.081 (8.074s)&#xA;&gt; Enter [It] should return 404 status for requests to the canary if no matching ingress is found - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:80 @ 04/04/23 18:19:17.081&#xA;&lt; Exit [It] should return 404 status for requests to the canary if no matching ingress is found - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:80 @ 04/04/23 18:19:24.105 (7.024s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:24.105&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:24.388 (283ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes (down scaling of replicas)" classname="nginx-ingress-controller e2e suite" status="passed" time="176.113366498">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:24.389&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:43.748 (2m19.359s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:21:43.748&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:21:57.954 (14.206s)&#xA;&gt; Enter [It] handles endpoints only changes (down scaling of replicas) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:87 @ 04/04/23 18:21:57.954&#xA;&lt; Exit [It] handles endpoints only changes (down scaling of replicas) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:87 @ 04/04/23 18:22:20.304 (22.351s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:20.304&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:20.502 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should not set proxy client-max-body-size to incorrect value" classname="nginx-ingress-controller e2e suite" status="passed" time="21.245320565">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:20.503&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:27.369 (6.866s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:22:27.369&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:22:31.399 (4.03s)&#xA;&gt; Enter [It] should not set proxy client-max-body-size to incorrect value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:100 @ 04/04/23 18:22:31.399&#xA;&lt; Exit [It] should not set proxy client-max-body-size to incorrect value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:100 @ 04/04/23 18:22:41.545 (10.146s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:41.545&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:41.748 (203ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] reuse-port reuse port should be disabled" classname="nginx-ingress-controller e2e suite" status="passed" time="155.972323059">
-              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:41.748&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:58.304 (2m16.556s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:24:58.304&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:25:07.351 (9.047s)&#xA;&gt; Enter [It] reuse port should be disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:44 @ 04/04/23 18:25:07.351&#xA;&lt; Exit [It] reuse port should be disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:44 @ 04/04/23 18:25:17.463 (10.112s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:17.463&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:17.721 (257ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="152.692429605">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:17.721&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:36 (2m18.279s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:27:36&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:27:40.022 (4.023s)&#xA;&gt; Enter [It] should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:266 @ 04/04/23 18:27:40.022&#xA;&lt; Exit [It] should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:266 @ 04/04/23 18:27:50.223 (10.201s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:50.224&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:50.413 (190ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a TLS enabled ingress when external authentication is configured should set the X-Forwarded-Port header to 443" classname="nginx-ingress-controller e2e suite" status="passed" time="39.615463078">
-              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:50.414&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:04.312 (13.898s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:28:04.312&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:28:11.43 (7.118s)&#xA;&gt; Enter [It] should set the X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:100 @ 04/04/23 18:28:11.43&#xA;Apr  4 18:28:24.664: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not forwarded-headers&#xA;&lt; Exit [It] should set the X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:100 @ 04/04/23 18:28:29.799 (18.368s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:29.799&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:30.029 (230ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] configuration-snippet set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34;" classname="nginx-ingress-controller e2e suite" status="passed" time="21.243303661">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:30.03&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:36.888 (6.859s)&#xA;&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 04/04/23 18:28:36.888&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 04/04/23 18:28:40.919 (4.03s)&#xA;&gt; Enter [It] set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:35 @ 04/04/23 18:28:40.919&#xA;&lt; Exit [It] set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:35 @ 04/04/23 18:28:51.095 (10.176s)&#xA;&gt; Enter [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:51.095&#xA;&lt; Exit [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:51.273 (178ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if the canary ingress is modified" classname="nginx-ingress-controller e2e suite" status="passed" time="41.082860994">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:51.273&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:59.672 (8.399s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:28:59.672&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:29:07.713 (8.041s)&#xA;&gt; Enter [It] should route requests to the correct upstream if the canary ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:307 @ 04/04/23 18:29:07.713&#xA;STEP: routing requests destined for the mainline ingress to the mainline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:351 @ 04/04/23 18:29:32.166&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:360 @ 04/04/23 18:29:32.169&#xA;&lt; Exit [It] should route requests to the correct upstream if the canary ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:307 @ 04/04/23 18:29:32.172 (24.459s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:32.172&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:32.356 (184ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is negative" classname="nginx-ingress-controller e2e suite" status="passed" time="48.516222384">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:32.356&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:39.249 (6.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:29:39.249&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:29:43.271 (4.022s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:43.271&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:57.423 (14.152s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is negative - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:590 @ 04/04/23 18:29:57.423&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is negative - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:590 @ 04/04/23 18:30:20.684 (23.26s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:20.684&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:20.873 (189ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-sync-events should create sync events" classname="nginx-ingress-controller e2e suite" status="passed" time="28.393909326">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:20.873&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:27.823 (6.95s)&#xA;&gt; Enter [It] should create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:53 @ 04/04/23 18:30:27.823&#xA;&lt; Exit [It] should create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:53 @ 04/04/23 18:30:49.071 (21.248s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:49.071&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:49.267 (196ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1K" classname="nginx-ingress-controller e2e suite" status="passed" time="21.295000977">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:49.267&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:56.179 (6.912s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:30:56.179&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:31:00.207 (4.028s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1K - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:57 @ 04/04/23 18:31:00.207&#xA;&lt; Exit [It] should set client_body_buffer_size to 1K - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:57 @ 04/04/23 18:31:10.334 (10.127s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:10.334&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:10.562 (228ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured keeps processing new ingresses even if one of the existing ingresses is misconfigured" classname="nginx-ingress-controller e2e suite" status="passed" time="36.595408248">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:10.562&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:17.468 (6.905s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:17.468&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:21.488 (4.02s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:31:21.488&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:31:35.745 (14.257s)&#xA;&gt; Enter [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:505 @ 04/04/23 18:31:35.745&#xA;&lt; Exit [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:505 @ 04/04/23 18:31:46.949 (11.204s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:46.949&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:47.158 (209ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow origin for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="19.176493735">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:47.158&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:55.054 (7.895s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:31:55.054&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:31:59.086 (4.032s)&#xA;&gt; Enter [It] should allow origin for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:110 @ 04/04/23 18:31:59.086&#xA;&lt; Exit [It] should allow origin for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:110 @ 04/04/23 18:32:06.117 (7.031s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:06.117&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:06.335 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 200 when accessing &#39;/&#39;  authentication" classname="nginx-ingress-controller e2e suite" status="passed" time="27.949951743">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:06.335&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:13.216 (6.881s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:32:13.216&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:32:30.126 (16.91s)&#xA;&gt; Enter [It] should return status code 200 when accessing &#39;/&#39;  authentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:68 @ 04/04/23 18:32:30.126&#xA;&lt; Exit [It] should return status code 200 when accessing &#39;/&#39;  authentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:68 @ 04/04/23 18:32:34.111 (3.985s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:34.111&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:34.285 (174ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - single origin without port and origin with required port" classname="nginx-ingress-controller e2e suite" status="passed" time="19.142361956">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:34.285&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:42.164 (7.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:32:42.164&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:32:46.19 (4.026s)&#xA;&gt; Enter [It] should not allow - single origin without port and origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:405 @ 04/04/23 18:32:46.19&#xA;&lt; Exit [It] should not allow - single origin without port and origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:405 @ 04/04/23 18:32:53.221 (7.031s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:53.221&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:53.428 (207ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should set gzip_min_length to 100" classname="nginx-ingress-controller e2e suite" status="passed" time="24.269620195999998">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:53.428&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:00.295 (6.867s)&#xA;&gt; Enter [It] should set gzip_min_length to 100 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:78 @ 04/04/23 18:33:00.295&#xA;&lt; Exit [It] should set gzip_min_length to 100 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:78 @ 04/04/23 18:33:17.519 (17.224s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:17.519&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:17.698 (178ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] global-options should have worker_rlimit_nofile option and be independent on amount of worker processes" classname="nginx-ingress-controller e2e suite" status="passed" time="17.207554955">
-              <system-err>&gt; Enter [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:17.698&#xA;&lt; Exit [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:24.578 (6.881s)&#xA;&gt; Enter [It] should have worker_rlimit_nofile option and be independent on amount of worker processes - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:38 @ 04/04/23 18:33:24.578&#xA;&lt; Exit [It] should have worker_rlimit_nofile option and be independent on amount of worker processes - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:38 @ 04/04/23 18:33:34.73 (10.152s)&#xA;&gt; Enter [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:34.73&#xA;&lt; Exit [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:34.905 (175ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keepalive time to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="31.352569677">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:34.906&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:44.808 (9.902s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:33:44.808&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:33:55.842 (11.034s)&#xA;&gt; Enter [It] should set keepalive time to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:77 @ 04/04/23 18:33:55.842&#xA;&lt; Exit [It] should set keepalive time to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:77 @ 04/04/23 18:34:05.994 (10.152s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:05.994&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:06.258 (264ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Memory Leak] Dynamic Certificates should not leak memory from ingress SSL certificates or configuration updates" classname="nginx-ingress-controller e2e suite" status="skipped" time="0">
-              <skipped message="skipped"></skipped>
-          </testcase>
-          <testcase name="[It] [Shutdown] ingress controller should shutdown in less than 60 secons without pending connections" classname="nginx-ingress-controller e2e suite" status="passed" time="30.340601041">
-              <system-err>&gt; Enter [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:06.259&#xA;&lt; Exit [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:14.168 (7.909s)&#xA;&gt; Enter [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:35 @ 04/04/23 18:34:14.168&#xA;&lt; Exit [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:35 @ 04/04/23 18:34:25.207 (11.04s)&#xA;&gt; Enter [It] should shutdown in less than 60 secons without pending connections - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:40 @ 04/04/23 18:34:25.207&#xA;&lt; Exit [It] should shutdown in less than 60 secons without pending connections - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:40 @ 04/04/23 18:34:36.4 (11.193s)&#xA;&gt; Enter [AfterEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:36.4&#xA;&lt; Exit [AfterEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:36.599 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param should return status code 200 when signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="26.351221493">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:36.6&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:44.48 (7.88s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:34:44.48&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:34:48.503 (4.024s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:34:48.503&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:35:02.728 (14.224s)&#xA;&gt; Enter [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:678 @ 04/04/23 18:35:02.728&#xA;&lt; Exit [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:678 @ 04/04/23 18:35:02.742 (15ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:02.742&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:02.951 (209ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should sync ingress on external name service addition/deletion" classname="nginx-ingress-controller e2e suite" status="passed" time="27.600345816">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:02.951&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:09.829 (6.877s)&#xA;&gt; Enter [It] should sync ingress on external name service addition/deletion - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:311 @ 04/04/23 18:35:09.829&#xA;&lt; Exit [It] should sync ingress on external name service addition/deletion - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:311 @ 04/04/23 18:35:30.35 (20.521s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:30.35&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:30.552 (202ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] enable-ssl-passthrough With enable-ssl-passthrough enabled should pass unknown traffic to default backend and handle known traffic" classname="nginx-ingress-controller e2e suite" status="passed" time="47.050402902">
-              <system-err>&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:30.552&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:37.481 (6.929s)&#xA;&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 04/04/23 18:35:37.481&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 04/04/23 18:35:48.587 (11.106s)&#xA;&gt; Enter [It] should pass unknown traffic to default backend and handle known traffic - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:79 @ 04/04/23 18:35:48.587&#xA;&lt; Exit [It] should pass unknown traffic to default backend and handle known traffic - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:79 @ 04/04/23 18:36:17.402 (28.814s)&#xA;&gt; Enter [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:17.402&#xA;&lt; Exit [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:17.602 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should enable the log-format-escape-json" classname="nginx-ingress-controller e2e suite" status="passed" time="28.304476097">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:17.603&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:24.47 (6.867s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:36:24.47&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:36:35.523 (11.052s)&#xA;&gt; Enter [It] should enable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:47 @ 04/04/23 18:36:35.523&#xA;&lt; Exit [It] should enable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:47 @ 04/04/23 18:36:45.69 (10.167s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:45.69&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:45.908 (218ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should 302 redirect to error page instead of 400 when auth-tls-error-page is set" classname="nginx-ingress-controller e2e suite" status="passed" time="25.063507751">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:45.908&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:52.807 (6.899s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:36:52.807&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:36:56.83 (4.024s)&#xA;&gt; Enter [It] should 302 redirect to error page instead of 400 when auth-tls-error-page is set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:114 @ 04/04/23 18:36:56.83&#xA;&lt; Exit [It] should 302 redirect to error page instead of 400 when auth-tls-error-page is set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:114 @ 04/04/23 18:37:10.803 (13.972s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:10.803&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:10.971 (169ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user does not retain cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="32.349310786">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:10.972&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:17.855 (6.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:37:17.855&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:37:21.879 (4.023s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:37:21.879&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 04/04/23 18:37:43.087 (21.209s)&#xA;&gt; Enter [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:422 @ 04/04/23 18:37:43.087&#xA;&lt; Exit [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:422 @ 04/04/23 18:37:43.095 (8ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:43.095&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:43.321 (225ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* Single canary Ingress should not use canary as a catch-all server" classname="nginx-ingress-controller e2e suite" status="passed" time="32.401910534">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:43.321&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:50.242 (6.92s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:37:50.242&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:37:58.297 (8.055s)&#xA;&gt; Enter [It] should not use canary as a catch-all server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:863 @ 04/04/23 18:37:58.297&#xA;&lt; Exit [It] should not use canary as a catch-all server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:863 @ 04/04/23 18:38:15.503 (17.206s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:15.503&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:15.723 (220ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] should return 404 sending requests when only a default backend is running" classname="nginx-ingress-controller e2e suite" status="passed" time="16.552121031">
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:15.724&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:22.643 (6.92s)&#xA;&gt; Enter [It] should return 404 sending requests when only a default backend is running - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:33 @ 04/04/23 18:38:22.643&#xA;STEP: basic HTTP GET request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.644&#xA;STEP: basic HTTP GET request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.657&#xA;STEP: basic HTTPS GET request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.667&#xA;STEP: basic HTTPS GET request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.695&#xA;STEP: basic HTTP POST request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.708&#xA;STEP: basic HTTP POST request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:27.712&#xA;STEP: basic HTTPS POST request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:28.052&#xA;STEP: basic HTTPS POST request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:28.468&#xA;STEP: basic HTTP GET request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:28.852&#xA;STEP: basic HTTP GET request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:29.25&#xA;STEP: basic HTTPS GET request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:29.647&#xA;STEP: basic HTTPS GET request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:30.07&#xA;STEP: basic HTTP POST request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:30.469&#xA;STEP: basic HTTP POST request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:30.847&#xA;STEP: basic HTTPS POST request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:31.252&#xA;STEP: basic HTTPS POST request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 04/04/23 18:38:31.65&#xA;&lt; Exit [It] should return 404 sending requests when only a default backend is running - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:33 @ 04/04/23 18:38:32.067 (9.424s)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:32.067&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:32.276 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="56.980816149">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:32.276&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:40.184 (7.908s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:38:40.184&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:38:48.25 (8.066s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:38:48.25&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:38:48.25&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:38:58.421&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:39:08.584&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:39:18.813 (30.563s)&#xA;&gt; Enter [It] should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:102 @ 04/04/23 18:39:18.813&#xA;STEP: Adding a no-auth-locations for /bar to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:104 @ 04/04/23 18:39:18.813&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:111 @ 04/04/23 18:39:29.026&#xA;STEP: Sending a request to whitelisted service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:118 @ 04/04/23 18:39:29.042&#xA;&lt; Exit [It] should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:102 @ 04/04/23 18:39:29.049 (10.236s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:29.049&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:29.257 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-alias should return status code 200 for hosts defined in two ingresses, different path with one alias" classname="nginx-ingress-controller e2e suite" status="passed" time="27.220788713">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:29.257&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:37.143 (7.885s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:39:37.143&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:39:39.168 (2.025s)&#xA;&gt; Enter [It] should return status code 200 for hosts defined in two ingresses, different path with one alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:87 @ 04/04/23 18:39:39.168&#xA;&lt; Exit [It] should return status code 200 for hosts defined in two ingresses, different path with one alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:87 @ 04/04/23 18:39:56.292 (17.124s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:56.292&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:56.478 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the keep alive should set keepalive_timeout" classname="nginx-ingress-controller e2e suite" status="passed" time="28.340439622">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:56.478&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:03.36 (6.881s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:40:03.36&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:40:14.407 (11.047s)&#xA;&gt; Enter [It] should set keepalive_timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:40 @ 04/04/23 18:40:14.407&#xA;&lt; Exit [It] should set keepalive_timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:40 @ 04/04/23 18:40:24.598 (10.191s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:24.598&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:24.819 (221ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a plain HTTP ingress should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port" classname="nginx-ingress-controller e2e suite" status="passed" time="32.033196945">
-              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:24.819&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:39.201 (14.382s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:40:39.201&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:40:46.467 (7.266s)&#xA;&gt; Enter [It] should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:48 @ 04/04/23 18:40:46.467&#xA;&lt; Exit [It] should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:48 @ 04/04/23 18:40:56.662 (10.195s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:56.662&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:56.852 (191ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to grpc:// and use grpc_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="30.964751532">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.258&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:27.76 (8.502s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:04:27.76&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:04:39.782 (12.022s)&#xA;&gt; Enter [It] should set backend protocol to grpc:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:64 @ 04/04/23 18:04:39.782&#xA;&lt; Exit [It] should set backend protocol to grpc:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:64 @ 04/04/23 18:04:49.993 (10.211s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:04:49.993&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:04:50.223 (229ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity without using &#39;modsecurity on;&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="29.40122161">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:50.223&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:58.145 (7.922s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:04:58.145&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:05:02.17 (4.025s)&#xA;&gt; Enter [It] should enable modsecurity without using &#39;modsecurity on;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:110 @ 04/04/23 18:05:02.17&#xA;&lt; Exit [It] should enable modsecurity without using &#39;modsecurity on;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:110 @ 04/04/23 18:05:19.394 (17.225s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:19.394&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:19.624 (230ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should create additional upstream block when auth-keepalive is set with HTTP/1.x" classname="nginx-ingress-controller e2e suite" status="passed" time="62.641572065">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:19.625&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:26.544 (6.92s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:05:26.544&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:05:30.589 (4.045s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:05:30.589&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:05:58.841 (28.251s)&#xA;&gt; Enter [It] should create additional upstream block when auth-keepalive is set with HTTP/1.x - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:623 @ 04/04/23 18:05:58.841&#xA;&lt; Exit [It] should create additional upstream block when auth-keepalive is set with HTTP/1.x - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:623 @ 04/04/23 18:06:22.065 (23.224s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:22.065&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:22.266 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] block-* should block User-Agents defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="28.334554031">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:22.267&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:29.196 (6.929s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:06:29.196&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:06:40.24 (11.044s)&#xA;&gt; Enter [It] should block User-Agents defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:55 @ 04/04/23 18:06:40.24&#xA;&lt; Exit [It] should block User-Agents defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:55 @ 04/04/23 18:06:50.425 (10.185s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:50.425&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:50.601 (177ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] x-forwarded-prefix should set the X-Forwarded-Prefix to the annotation value" classname="nginx-ingress-controller e2e suite" status="passed" time="21.281567841">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:50.602&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:57.545 (6.943s)&#xA;&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 04/04/23 18:06:57.545&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 04/04/23 18:07:01.588 (4.043s)&#xA;&gt; Enter [It] should set the X-Forwarded-Prefix to the annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:35 @ 04/04/23 18:07:01.588&#xA;&lt; Exit [It] should set the X-Forwarded-Prefix to the annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:35 @ 04/04/23 18:07:11.685 (10.097s)&#xA;&gt; Enter [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:11.685&#xA;&lt; Exit [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:11.883 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow correct origins - missing subdomain + origin with wildcard origin and correct origin" classname="nginx-ingress-controller e2e suite" status="passed" time="18.188442412">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:11.883&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:18.774 (6.89s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:07:18.774&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:07:22.815 (4.041s)&#xA;&gt; Enter [It] should allow correct origins - missing subdomain + origin with wildcard origin and correct origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:535 @ 04/04/23 18:07:22.815&#xA;&lt; Exit [It] should allow correct origins - missing subdomain + origin with wildcard origin and correct origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:535 @ 04/04/23 18:07:29.864 (7.049s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:29.864&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:30.072 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] mirror-* should set mirror-target to http://localhost/mirror" classname="nginx-ingress-controller e2e suite" status="passed" time="153.373652478">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:30.072&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:48.992 (2m18.92s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:09:48.992&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:09:53.047 (4.055s)&#xA;&gt; Enter [It] should set mirror-target to http://localhost/mirror - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:36 @ 04/04/23 18:09:53.047&#xA;&lt; Exit [It] should set mirror-target to http://localhost/mirror - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:36 @ 04/04/23 18:10:03.229 (10.182s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:03.229&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:03.446 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 200 when no authentication is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="21.374323588">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:03.446&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:10.362 (6.916s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:10:10.362&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:10:14.4 (4.038s)&#xA;&gt; Enter [It] should return status code 200 when no authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:46 @ 04/04/23 18:10:14.4&#xA;&lt; Exit [It] should return status code 200 when no authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:46 @ 04/04/23 18:10:24.616 (10.216s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:24.616&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:24.82 (204ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-proxy-protocol should respect port passed by the PROXY Protocol" classname="nginx-ingress-controller e2e suite" status="passed" time="110.562959663">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:24.821&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:31.7 (6.879s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:10:31.7&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:10:42.759 (11.059s)&#xA;&gt; Enter [It] should respect port passed by the PROXY Protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:46 @ 04/04/23 18:10:42.759&#xA;&lt; Exit [It] should respect port passed by the PROXY Protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:46 @ 04/04/23 18:12:14.993 (1m32.235s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:14.993&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:15.384 (390ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 503 when authentication is configured with an invalid secret" classname="nginx-ingress-controller e2e suite" status="passed" time="19.23986285">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:15.384&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:22.265 (6.881s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:12:22.265&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:12:24.285 (2.02s)&#xA;&gt; Enter [It] should return status code 503 when authentication is configured with an invalid secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:65 @ 04/04/23 18:12:24.285&#xA;&lt; Exit [It] should return status code 503 when authentication is configured with an invalid secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:65 @ 04/04/23 18:12:34.441 (10.156s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:34.441&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:34.624 (183ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Add no tls redirect locations Check no tls redirect locations config" classname="nginx-ingress-controller e2e suite" status="passed" time="27.400615783">
-              <system-err>&gt; Enter [BeforeEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:34.624&#xA;&lt; Exit [BeforeEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:41.556 (6.931s)&#xA;&gt; Enter [It] Check no tls redirect locations config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_tls_redirect_locations.go:31 @ 04/04/23 18:12:41.556&#xA;&lt; Exit [It] Check no tls redirect locations config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_tls_redirect_locations.go:31 @ 04/04/23 18:13:01.842 (20.286s)&#xA;&gt; Enter [AfterEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:01.842&#xA;&lt; Exit [AfterEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:02.025 (183ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - single origin with port and origin without port" classname="nginx-ingress-controller e2e suite" status="passed" time="19.133441454">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:02.025&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:09.923 (7.898s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:13:09.923&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:13:13.962 (4.038s)&#xA;&gt; Enter [It] should not allow - single origin with port and origin without port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:386 @ 04/04/23 18:13:13.962&#xA;&lt; Exit [It] should not allow - single origin with port and origin without port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:386 @ 04/04/23 18:13:20.977 (7.016s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:20.977&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:21.159 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should disable the log-format-escape-json" classname="nginx-ingress-controller e2e suite" status="passed" time="29.267500447">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:21.159&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:29.044 (7.885s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:13:29.044&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:13:40.088 (11.044s)&#xA;&gt; Enter [It] should disable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:55 @ 04/04/23 18:13:40.088&#xA;&lt; Exit [It] should disable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:55 @ 04/04/23 18:13:50.23 (10.141s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:50.23&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:50.426 (197ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should deny login for different servers" classname="nginx-ingress-controller e2e suite" status="passed" time="128.935461321">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:50.427&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:57.36 (6.933s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:13:57.36&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:14:01.385 (4.026s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:14:01.385&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:14:06.428&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:14:16.618&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:14:26.768&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:14:36.897&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:14:52.087 (50.702s)&#xA;&gt; Enter [It] should deny login for different servers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:820 @ 04/04/23 18:14:52.087&#xA;STEP: logging into server thisHost /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:821 @ 04/04/23 18:14:52.087&#xA;STEP: receiving an internal server error without cache on thisHost location /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:833 @ 04/04/23 18:14:59.113&#xA;&lt; Exit [It] should deny login for different servers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:820 @ 04/04/23 18:15:59.128 (1m7.041s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:59.128&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:59.362 (234ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] definition without host should set ingress details variables for ingresses with host without IngressRuleValue, only Backend" classname="nginx-ingress-controller e2e suite" status="passed" time="22.396821642">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:59.363&#xA;&lt; Exit [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:06.334 (6.971s)&#xA;&gt; Enter [It] should set ingress details variables for ingresses with host without IngressRuleValue, only Backend - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:55 @ 04/04/23 18:16:06.334&#xA;&lt; Exit [It] should set ingress details variables for ingresses with host without IngressRuleValue, only Backend - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:55 @ 04/04/23 18:16:20.803 (14.469s)&#xA;&gt; Enter [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:20.803&#xA;&lt; Exit [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:21.76 (957ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] permanent-redirect permanent-redirect-code should respond with a standard redirect code" classname="nginx-ingress-controller e2e suite" status="passed" time="19.639351578">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:21.77&#xA;&lt; Exit [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:31.035 (9.266s)&#xA;&gt; Enter [It] should respond with a standard redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:33 @ 04/04/23 18:16:31.035&#xA;STEP: setting permanent-redirect annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:34 @ 04/04/23 18:16:31.036&#xA;STEP: sending request to redirected URL path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:52 @ 04/04/23 18:16:41.175&#xA;&lt; Exit [It] should respond with a standard redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:33 @ 04/04/23 18:16:41.182 (10.147s)&#xA;&gt; Enter [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:41.182&#xA;&lt; Exit [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:41.409 (227ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-catch-all should allow Ingress with rules" classname="nginx-ingress-controller e2e suite" status="passed" time="159.265969917">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:41.409&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:57.856 (2m16.447s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:18:57.856&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:19:09.919 (12.063s)&#xA;&gt; Enter [It] should allow Ingress with rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:123 @ 04/04/23 18:19:09.919&#xA;&lt; Exit [It] should allow Ingress with rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:123 @ 04/04/23 18:19:20.272 (10.353s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:20.272&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:20.675 (403ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="23.386440713">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:20.677&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:28.892 (8.215s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:19:28.892&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:19:32.924 (4.032s)&#xA;&gt; Enter [It] should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:324 @ 04/04/23 18:19:32.924&#xA;&lt; Exit [It] should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:324 @ 04/04/23 18:19:43.863 (10.939s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:43.863&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:44.064 (200ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should exists opentelemetry directive when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="29.635463259">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:44.064&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:53.434 (9.37s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:19:53.434&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:19:55.451 (2.017s)&#xA;&gt; Enter [It] should exists opentelemetry directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:60 @ 04/04/23 18:19:55.451&#xA;&lt; Exit [It] should exists opentelemetry directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:60 @ 04/04/23 18:20:12.863 (17.412s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:12.863&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:13.699 (836ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:20:13.699&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:20:13.699 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should not set invalid proxy timeouts" classname="nginx-ingress-controller e2e suite" status="passed" time="23.437314841">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:13.7&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:22.723 (9.023s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:20:22.723&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:20:26.762 (4.038s)&#xA;&gt; Enter [It] should not set invalid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:136 @ 04/04/23 18:20:26.762&#xA;&lt; Exit [It] should not set invalid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:136 @ 04/04/23 18:20:36.907 (10.146s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:36.907&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:37.137 (230ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should not exists opentelemetry directive" classname="nginx-ingress-controller e2e suite" status="passed" time="29.375459507">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:37.137&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:45.044 (7.907s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:20:45.044&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:20:49.07 (4.026s)&#xA;&gt; Enter [It] should not exists opentelemetry directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:47 @ 04/04/23 18:20:49.07&#xA;&lt; Exit [It] should not exists opentelemetry directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:47 @ 04/04/23 18:21:06.287 (17.217s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:06.287&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:06.513 (226ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:21:06.513&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:21:06.513 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="20.138129865">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:06.513&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:13.397 (6.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:13.397&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:15.42 (2.023s)&#xA;&gt; Enter [It] should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:144 @ 04/04/23 18:21:15.42&#xA;&lt; Exit [It] should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:144 @ 04/04/23 18:21:26.454 (11.034s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:26.454&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:26.651 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log http-access-log-path &amp; stream-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="17.272214647">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:26.652&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:33.515 (6.863s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:80 @ 04/04/23 18:21:33.515&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:80 @ 04/04/23 18:21:43.707 (10.192s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:43.707&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:43.924 (216ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="18.136904986">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:43.924&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:50.816 (6.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:21:50.816&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:21:54.851 (4.035s)&#xA;&gt; Enter [It] should allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:169 @ 04/04/23 18:21:54.851&#xA;&lt; Exit [It] should allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:169 @ 04/04/23 18:22:01.873 (7.022s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:01.873&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:02.061 (188ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format-escape-json enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="32.345578464">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:02.061&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:09.943 (7.882s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:22:09.943&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:22:20.994 (11.051s)&#xA;&gt; Enter [It] log-format-escape-json enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:82 @ 04/04/23 18:22:20.994&#xA;&lt; Exit [It] log-format-escape-json enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:82 @ 04/04/23 18:22:34.191 (13.197s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:34.191&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:34.407 (216ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] [PathType] mix Exact and Prefix paths should choose the correct location" classname="nginx-ingress-controller e2e suite" status="passed" time="45.509310566">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:34.407&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:41.334 (6.927s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:33 @ 04/04/23 18:22:41.334&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:33 @ 04/04/23 18:22:45.355 (4.021s)&#xA;&gt; Enter [It] should choose the correct location - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:39 @ 04/04/23 18:22:45.355&#xA;STEP: Checking exact request to / - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:63 @ 04/04/23 18:23:02.535&#xA;STEP: Checking prefix request to /bar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:76 @ 04/04/23 18:23:02.543&#xA;STEP: Checking exact request to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:109 @ 04/04/23 18:23:19.72&#xA;STEP: Checking prefix request to /foo/bar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:122 @ 04/04/23 18:23:19.723&#xA;STEP: Checking prefix request to /foobar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:134 @ 04/04/23 18:23:19.724&#xA;&lt; Exit [It] should choose the correct location - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:39 @ 04/04/23 18:23:19.726 (34.371s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:19.726&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:19.917 (190ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1m" classname="nginx-ingress-controller e2e suite" status="passed" time="22.336168959">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:19.917&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:27.858 (7.94s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:23:27.858&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:23:31.884 (4.027s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:101 @ 04/04/23 18:23:31.884&#xA;&lt; Exit [It] should set client_body_buffer_size to 1m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:101 @ 04/04/23 18:23:42.035 (10.15s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:42.035&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:42.253 (218ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-forwarded-headers should not trust X-Forwarded headers when setting is false" classname="nginx-ingress-controller e2e suite" status="passed" time="34.740529941">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:42.254&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:50.152 (7.898s)&#xA;&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 04/04/23 18:23:50.152&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 04/04/23 18:23:59.193 (9.041s)&#xA;&gt; Enter [It] should not trust X-Forwarded headers when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:92 @ 04/04/23 18:23:59.193&#xA;&lt; Exit [It] should not trust X-Forwarded headers when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:92 @ 04/04/23 18:24:16.594 (17.4s)&#xA;&gt; Enter [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:16.594&#xA;&lt; Exit [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:16.994 (401ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests split between mainline and canary if canary weight is 100 and weight total is 200" classname="nginx-ingress-controller e2e suite" status="passed" time="72.078446664">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:16.995&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:25.428 (8.433s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:24:25.428&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:24:33.475 (8.047s)&#xA;&gt; Enter [It] should route requests split between mainline and canary if canary weight is 100 and weight total is 200 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:834 @ 04/04/23 18:24:33.475&#xA;&lt; Exit [It] should route requests split between mainline and canary if canary weight is 100 and weight total is 200 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:834 @ 04/04/23 18:25:28.827 (55.352s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:28.827&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:29.073 (245ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] http2-push-preload enable the http2-push-preload directive" classname="nginx-ingress-controller e2e suite" status="passed" time="21.276652741">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:29.073&#xA;&lt; Exit [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:35.955 (6.882s)&#xA;&gt; Enter [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:30 @ 04/04/23 18:25:35.955&#xA;&lt; Exit [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:30 @ 04/04/23 18:25:39.976 (4.021s)&#xA;&gt; Enter [It] enable the http2-push-preload directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:34 @ 04/04/23 18:25:39.976&#xA;&lt; Exit [It] enable the http2-push-preload directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:34 @ 04/04/23 18:25:50.116 (10.14s)&#xA;&gt; Enter [AfterEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:50.116&#xA;&lt; Exit [AfterEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:50.35 (233ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-real-ip trusts X-Forwarded-For header only when setting is true" classname="nginx-ingress-controller e2e suite" status="passed" time="35.407310527">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:50.35&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:57.262 (6.911s)&#xA;&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 04/04/23 18:25:57.262&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 04/04/23 18:26:08.325 (11.063s)&#xA;&gt; Enter [It] trusts X-Forwarded-For header only when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:40 @ 04/04/23 18:26:08.325&#xA;STEP: ensuring single values are parsed correctly - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:54 @ 04/04/23 18:26:25.541&#xA;&lt; Exit [It] trusts X-Forwarded-For header only when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:40 @ 04/04/23 18:26:25.551 (17.226s)&#xA;&gt; Enter [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:25.551&#xA;&lt; Exit [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:25.758 (207ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should disable modsecurity" classname="nginx-ingress-controller e2e suite" status="passed" time="21.301340903">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:25.758&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:32.641 (6.883s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:26:32.641&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:26:36.668 (4.026s)&#xA;&gt; Enter [It] should disable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:74 @ 04/04/23 18:26:36.668&#xA;&lt; Exit [It] should disable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:74 @ 04/04/23 18:26:46.879 (10.212s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:46.879&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:47.059 (180ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity through the config map but ignore snippet as disabled by admin" classname="nginx-ingress-controller e2e suite" status="passed" time="40.382987384">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:47.06&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:53.958 (6.898s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:26:53.958&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:26:57.986 (4.028s)&#xA;&gt; Enter [It] should enable modsecurity through the config map but ignore snippet as disabled by admin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:305 @ 04/04/23 18:26:57.986&#xA;&lt; Exit [It] should enable modsecurity through the config map but ignore snippet as disabled by admin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:305 @ 04/04/23 18:27:27.257 (29.271s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:27.257&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:27.443 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] denylist-source-range only allow explicitly allowed IPs, deny all others" classname="nginx-ingress-controller e2e suite" status="passed" time="35.459281249">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:27.443&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:34.37 (6.927s)&#xA;&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 04/04/23 18:27:34.37&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 04/04/23 18:27:38.399 (4.029s)&#xA;&gt; Enter [It] only allow explicitly allowed IPs, deny all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:86 @ 04/04/23 18:27:38.399&#xA;STEP: sending request from an explicitly denied IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:115 @ 04/04/23 18:27:55.604&#xA;STEP: sending request from an implicitly denied IP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:123 @ 04/04/23 18:27:55.61&#xA;STEP: sending request from an explicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:131 @ 04/04/23 18:27:55.616&#xA;STEP: sending request from an explicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:139 @ 04/04/23 18:27:55.623&#xA;&lt; Exit [It] only allow explicitly allowed IPs, deny all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:86 @ 04/04/23 18:28:02.653 (24.254s)&#xA;&gt; Enter [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:02.653&#xA;&lt; Exit [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:02.902 (249ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-multi-accept should be disabled when set to false" classname="nginx-ingress-controller e2e suite" status="passed" time="17.373623456">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:02.903&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:09.803 (6.9s)&#xA;&gt; Enter [It] should be disabled when set to false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:49 @ 04/04/23 18:28:09.803&#xA;&lt; Exit [It] should be disabled when set to false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:49 @ 04/04/23 18:28:20.04 (10.238s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:20.041&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:20.276 (236ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to grpcs:// and use grpc_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="20.243088476">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:20.277&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:28.169 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:28:28.169&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:28:30.185 (2.016s)&#xA;&gt; Enter [It] should set backend protocol to grpcs:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:79 @ 04/04/23 18:28:30.185&#xA;&lt; Exit [It] should set backend protocol to grpcs:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:79 @ 04/04/23 18:28:40.334 (10.15s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:40.334&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:40.52 (185ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="25.246171205">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:40.52&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:47.397 (6.877s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:28:47.397&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:28:51.425 (4.028s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:28:51.425&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:29:05.527 (14.103s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:494 @ 04/04/23 18:29:05.527&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:494 @ 04/04/23 18:29:05.539 (12ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:05.539&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:05.766 (227ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-connect-timeout should set valid proxy timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="28.356651539">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:05.767&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:12.664 (6.897s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 04/04/23 18:29:12.664&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 04/04/23 18:29:16.693 (4.029s)&#xA;&gt; Enter [It] should set valid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:36 @ 04/04/23 18:29:16.693&#xA;&lt; Exit [It] should set valid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:36 @ 04/04/23 18:29:33.899 (17.207s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:33.899&#xA;&lt; Exit [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:34.123 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with transaction ID and OWASP rules" classname="nginx-ingress-controller e2e suite" status="passed" time="22.251075828">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:34.124&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:42.012 (7.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:29:42.012&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:29:46.039 (4.027s)&#xA;&gt; Enter [It] should enable modsecurity with transaction ID and OWASP rules - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:53 @ 04/04/23 18:29:46.039&#xA;&lt; Exit [It] should enable modsecurity with transaction ID and OWASP rules - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:53 @ 04/04/23 18:29:56.186 (10.147s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:56.186&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:56.375 (189ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should change the default proxy HTTP version" classname="nginx-ingress-controller e2e suite" status="passed" time="21.310489423">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:56.375&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:03.267 (6.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:30:03.267&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:30:07.298 (4.031s)&#xA;&gt; Enter [It] should change the default proxy HTTP version - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:233 @ 04/04/23 18:30:07.298&#xA;&lt; Exit [It] should change the default proxy HTTP version - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:233 @ 04/04/23 18:30:17.47 (10.172s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:17.47&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:17.686 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] secret update should return the fake SSL certificate if the secret is invalid" classname="nginx-ingress-controller e2e suite" status="passed" time="154.723842483">
-              <system-err>&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:17.686&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:35.008 (2m17.322s)&#xA;&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 04/04/23 18:32:35.008&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 04/04/23 18:32:39.033 (4.025s)&#xA;&gt; Enter [It] should return the fake SSL certificate if the secret is invalid - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:82 @ 04/04/23 18:32:39.033&#xA;&lt; Exit [It] should return the fake SSL certificate if the secret is invalid - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:82 @ 04/04/23 18:32:52.207 (13.174s)&#xA;&gt; Enter [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:52.207&#xA;&lt; Exit [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:52.41 (203ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1000" classname="nginx-ingress-controller e2e suite" status="passed" time="21.380029765">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:52.41&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:59.312 (6.902s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:32:59.312&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:33:03.343 (4.031s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1000 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:35 @ 04/04/23 18:33:03.343&#xA;&lt; Exit [It] should set client_body_buffer_size to 1000 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:35 @ 04/04/23 18:33:13.571 (10.227s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:13.571&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:13.79 (220ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] OCSP should enable OCSP and contain stapling information in the connection" classname="nginx-ingress-controller e2e suite" status="passed" time="52.538209784">
-              <system-err>&gt; Enter [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:13.791&#xA;&lt; Exit [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:20.666 (6.876s)&#xA;&gt; Enter [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:45 @ 04/04/23 18:33:20.666&#xA;&lt; Exit [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:45 @ 04/04/23 18:33:24.686 (4.02s)&#xA;&gt; Enter [It] should enable OCSP and contain stapling information in the connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:49 @ 04/04/23 18:33:24.686&#xA;STEP: running cfssl gencert -initca ca_csr.json | cfssljson -bare ca - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 04/04/23 18:33:31.697&#xA;STEP: running cfssl gencert -ca ca.pem -ca-key ca-key.pem -config=cfssl_config.json -profile=intermediate intermediate_ca_csr.json | cfssljson -bare intermediate_ca - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 04/04/23 18:33:32.042&#xA;STEP: running cfssl gencert -ca intermediate_ca.pem -ca-key intermediate_ca-key.pem -config=cfssl_config.json -profile=ocsp ocsp_csr.json | cfssljson -bare ocsp - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 04/04/23 18:33:32.211&#xA;STEP: running cfssl serve -db-config=db-config.json -ca-key=intermediate_ca-key.pem -ca=intermediate_ca.pem -config=cfssl_config.json -responder=ocsp.pem -responder-key=ocsp-key.pem - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:228 @ 04/04/23 18:33:32.385&#xA;STEP: running cfssl gencert -remote=localhost -profile=server leaf_csr.json | cfssljson -bare leaf - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:238 @ 04/04/23 18:33:37.385&#xA;STEP: running cfssl ocsprefresh -ca intermediate_ca.pem -responder=ocsp.pem -responder-key=ocsp-key.pem -db-config=db-config.json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:252 @ 04/04/23 18:33:37.548&#xA;&lt; Exit [It] should enable OCSP and contain stapling information in the connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:49 @ 04/04/23 18:34:06.016 (41.33s)&#xA;&gt; Enter [AfterEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:06.016&#xA;&lt; Exit [AfterEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:06.329 (312ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] satisfy should allow multiple auth with satisfy any" classname="nginx-ingress-controller e2e suite" status="passed" time="27.083879161">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:06.329&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:13.238 (6.909s)&#xA;&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 04/04/23 18:34:13.238&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 04/04/23 18:34:17.265 (4.027s)&#xA;&gt; Enter [It] should allow multiple auth with satisfy any - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:84 @ 04/04/23 18:34:17.265&#xA;&lt; Exit [It] should allow multiple auth with satisfy any - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:84 @ 04/04/23 18:34:33.244 (15.979s)&#xA;&gt; Enter [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:33.244&#xA;&lt; Exit [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:33.413 (169ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="21.260634154999998">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:33.413&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:40.3 (6.887s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:34:40.3&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:34:44.318 (4.018s)&#xA;&gt; Enter [It] should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:284 @ 04/04/23 18:34:44.318&#xA;&lt; Exit [It] should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:284 @ 04/04/23 18:34:54.489 (10.171s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:54.489&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:54.674 (185ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes consistently (down scaling of replicas vs. empty service)" classname="nginx-ingress-controller e2e suite" status="passed" time="47.623291228">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:54.674&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:01.542 (6.868s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:35:01.542&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:35:15.829 (14.287s)&#xA;&gt; Enter [It] handles endpoints only changes consistently (down scaling of replicas vs. empty service) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:125 @ 04/04/23 18:35:15.829&#xA;&lt; Exit [It] handles endpoints only changes consistently (down scaling of replicas vs. empty service) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:125 @ 04/04/23 18:35:42.1 (26.271s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:42.1&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:42.298 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting preload parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="33.446353768">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:42.298&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:50.176 (7.878s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:35:50.176&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:35:54.197 (4.021s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:35:54.197&#xA;Apr  4 18:36:03.338: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:36:05.327 (11.13s)&#xA;&gt; Enter [It] setting preload parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:146 @ 04/04/23 18:36:05.327&#xA;&lt; Exit [It] setting preload parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:146 @ 04/04/23 18:36:15.512 (10.185s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:15.512&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:15.744 (233ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Endpointslices] long service name should return 200 when service name has max allowed number of characters 63" classname="nginx-ingress-controller e2e suite" status="passed" time="22.305086">
-              <system-err>&gt; Enter [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:15.745&#xA;&lt; Exit [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:23.617 (7.872s)&#xA;&gt; Enter [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:34 @ 04/04/23 18:36:23.617&#xA;&lt; Exit [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:34 @ 04/04/23 18:36:27.64 (4.023s)&#xA;&gt; Enter [It] should return 200 when service name has max allowed number of characters 63 - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:38 @ 04/04/23 18:36:27.64&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:48 @ 04/04/23 18:36:37.807&#xA;&lt; Exit [It] should return 200 when service name has max allowed number of characters 63 - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:38 @ 04/04/23 18:36:37.815 (10.175s)&#xA;&gt; Enter [AfterEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:37.815&#xA;&lt; Exit [AfterEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:38.05 (235ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - FastCGI should add fastcgi_index in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="20.255437009">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:38.05&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:45.936 (7.886s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:36:45.936&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:36:47.961 (2.026s)&#xA;&gt; Enter [It] should add fastcgi_index in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:54 @ 04/04/23 18:36:47.961&#xA;&lt; Exit [It] should add fastcgi_index in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:54 @ 04/04/23 18:36:58.079 (10.118s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:58.079&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:58.306 (226ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity globally and with modsecurity-snippet block requests" classname="nginx-ingress-controller e2e suite" status="passed" time="171.582212664">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:58.306&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:16.416 (2m18.11s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:39:16.416&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:39:20.463 (4.047s)&#xA;&gt; Enter [It] should enable modsecurity globally and with modsecurity-snippet block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:189 @ 04/04/23 18:39:20.463&#xA;&lt; Exit [It] should enable modsecurity globally and with modsecurity-snippet block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:189 @ 04/04/23 18:39:49.668 (29.205s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:49.668&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:49.888 (220ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) ports or X-Forwarded-Host check during HTTP tp HTTPS redirection should not use ports during the HTTP to HTTPS redirection" classname="nginx-ingress-controller e2e suite" status="passed" time="23.299518785">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:49.888&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:57.8 (7.912s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:39:57.8&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:40:01.823 (4.023s)&#xA;&gt; Enter [It] should not use ports during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:187 @ 04/04/23 18:40:01.823&#xA;Apr  4 18:40:10.971: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [It] should not use ports during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:187 @ 04/04/23 18:40:12.979 (11.155s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:12.979&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:13.188 (209ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName with a port defined" classname="nginx-ingress-controller e2e suite" status="passed" time="18.584802653">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:13.188&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:21.087 (7.899s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName with a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:129 @ 04/04/23 18:40:21.087&#xA;&lt; Exit [It] should return 200 for service type=ExternalName with a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:129 @ 04/04/23 18:40:31.585 (10.498s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:31.585&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:31.773 (188ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="25.3240127">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:31.773&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:38.672 (6.898s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:40:38.672&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:40:42.706 (4.034s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:40:42.706&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:40:56.901 (14.195s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:687 @ 04/04/23 18:40:56.901&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:687 @ 04/04/23 18:40:56.912 (10ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:56.912&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:57.097 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Annotation - limit-connections should limit-connections" classname="nginx-ingress-controller e2e suite" status="passed" time="44.225945645">
-              <system-out>I0404 18:04:54.427675      25 request.go:690] Waited for 1.19834838s due to client-side throttling, not priority and fairness, request: GET:https://10.96.0.1:443/api/v1/namespaces/e2e-tests-limit-connections-1680631459257336272-jn44f/services/nginx-ingress-controller&#xA;</system-out>
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.256&#xA;&lt; Exit [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:26.817 (7.56s)&#xA;&gt; Enter [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:34 @ 04/04/23 18:04:26.817&#xA;&lt; Exit [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:34 @ 04/04/23 18:04:38.845 (12.028s)&#xA;&gt; Enter [It] should limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:38 @ 04/04/23 18:04:38.845&#xA;&lt; Exit [It] should limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:38 @ 04/04/23 18:05:03.259 (24.414s)&#xA;&gt; Enter [AfterEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:03.259&#xA;&lt; Exit [AfterEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:03.482 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] [PathType] exact should choose exact location for /exact" classname="nginx-ingress-controller e2e suite" status="passed" time="38.595312029">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:03.483&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:10.366 (6.883s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:33 @ 04/04/23 18:05:10.366&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:33 @ 04/04/23 18:05:14.405 (4.039s)&#xA;&gt; Enter [It] should choose exact location for /exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:37 @ 04/04/23 18:05:14.405&#xA;&lt; Exit [It] should choose exact location for /exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:37 @ 04/04/23 18:05:41.807 (27.402s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:41.807&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:42.078 (271ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="39.725581056">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:42.079&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:50.08 (8.002s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:05:50.08&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:05:54.108 (4.028s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:36 @ 04/04/23 18:05:54.108&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:36 @ 04/04/23 18:06:21.53 (27.422s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:21.53&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:21.804 (274ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not break functionality" classname="nginx-ingress-controller e2e suite" status="passed" time="18.152762201">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:21.804&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:28.705 (6.901s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:06:28.705&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:06:32.732 (4.027s)&#xA;&gt; Enter [It] should not break functionality - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:267 @ 04/04/23 18:06:32.732&#xA;&lt; Exit [It] should not break functionality - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:267 @ 04/04/23 18:06:39.756 (7.024s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:39.756&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:39.957 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] app-root should redirect to /foo" classname="nginx-ingress-controller e2e suite" status="passed" time="22.339253677">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:39.958&#xA;&lt; Exit [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:47.864 (7.907s)&#xA;&gt; Enter [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:31 @ 04/04/23 18:06:47.864&#xA;&lt; Exit [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:31 @ 04/04/23 18:06:51.912 (4.047s)&#xA;&gt; Enter [It] should redirect to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:35 @ 04/04/23 18:06:51.912&#xA;&lt; Exit [It] should redirect to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:35 @ 04/04/23 18:07:02.086 (10.175s)&#xA;&gt; Enter [AfterEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:02.086&#xA;&lt; Exit [AfterEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:02.297 (211ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should return 200 using auth-tls-match-cn with matching CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="22.922113641">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:02.297&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:10.188 (7.891s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:07:10.188&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:07:14.226 (4.037s)&#xA;&gt; Enter [It] should return 200 using auth-tls-match-cn with matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:295 @ 04/04/23 18:07:14.226&#xA;&lt; Exit [It] should return 200 using auth-tls-match-cn with matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:295 @ 04/04/23 18:07:25.018 (10.792s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:25.018&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:25.219 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] denylist-source-range only deny explicitly denied IPs, allow all others" classname="nginx-ingress-controller e2e suite" status="passed" time="34.300425996">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:25.22&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:33.104 (7.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 04/04/23 18:07:33.104&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 04/04/23 18:07:35.129 (2.025s)&#xA;&gt; Enter [It] only deny explicitly denied IPs, allow all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:35 @ 04/04/23 18:07:35.129&#xA;STEP: sending request from an explicitly denied IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:61 @ 04/04/23 18:07:52.29&#xA;STEP: sending request from an explicitly denied IP address - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:69 @ 04/04/23 18:07:52.298&#xA;STEP: sending request from an implicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:77 @ 04/04/23 18:07:52.304&#xA;&lt; Exit [It] only deny explicitly denied IPs, allow all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:35 @ 04/04/23 18:07:59.326 (24.197s)&#xA;&gt; Enter [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:59.326&#xA;&lt; Exit [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:59.52 (194ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* Single canary Ingress should not use canary with domain as a server" classname="nginx-ingress-controller e2e suite" status="passed" time="32.388431935">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:59.52&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:06.412 (6.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:08:06.412&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:08:14.461 (8.049s)&#xA;&gt; Enter [It] should not use canary with domain as a server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:891 @ 04/04/23 18:08:14.461&#xA;&lt; Exit [It] should not use canary with domain as a server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:891 @ 04/04/23 18:08:31.701 (17.24s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:31.701&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:31.909 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set" classname="nginx-ingress-controller e2e suite" status="passed" time="22.408753285">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:31.909&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:39.801 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:08:39.801&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:08:43.836 (4.035s)&#xA;&gt; Enter [It] should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:301 @ 04/04/23 18:08:43.836&#xA;&lt; Exit [It] should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:301 @ 04/04/23 18:08:54.106 (10.269s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:54.106&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:54.318 (212ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should routes to mainline upstream when the given Regex causes error" classname="nginx-ingress-controller e2e suite" status="passed" time="32.339918036">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:54.318&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:01.207 (6.889s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:09:01.207&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:09:09.264 (8.058s)&#xA;&gt; Enter [It] should routes to mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:566 @ 04/04/23 18:09:09.264&#xA;STEP: routing requests to the mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:591 @ 04/04/23 18:09:26.43&#xA;&lt; Exit [It] should routes to mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:566 @ 04/04/23 18:09:26.434 (17.169s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:26.434&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:26.658 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should delete Ingress when class is removed" classname="nginx-ingress-controller e2e suite" status="passed" time="36.529874252">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:26.658&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:33.593 (6.935s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:09:33.593&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:09:37.637 (4.044s)&#xA;&gt; Enter [It] should delete Ingress when class is removed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:192 @ 04/04/23 18:09:37.637&#xA;&lt; Exit [It] should delete Ingress when class is removed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:192 @ 04/04/23 18:10:02.989 (25.352s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:02.989&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:03.188 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should proxy_method method when global-auth-method is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="56.864281316">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:03.189&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:11.089 (7.901s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:10:11.09&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:10:19.123 (8.033s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:10:19.123&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:10:19.123&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:10:29.295&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:10:39.491&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:10:49.631 (30.509s)&#xA;&gt; Enter [It] should proxy_method method when global-auth-method is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:197 @ 04/04/23 18:10:49.631&#xA;STEP: Adding a global-auth-method to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:202 @ 04/04/23 18:10:49.631&#xA;&lt; Exit [It] should proxy_method method when global-auth-method is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:197 @ 04/04/23 18:10:59.844 (10.213s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:59.844&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:00.053 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-connect-timeout should not set invalid proxy timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="159.263240703">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:00.053&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:17.888 (2m17.835s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 04/04/23 18:13:17.888&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 04/04/23 18:13:21.926 (4.038s)&#xA;&gt; Enter [It] should not set invalid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:52 @ 04/04/23 18:13:21.926&#xA;&lt; Exit [It] should not set invalid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:52 @ 04/04/23 18:13:39.103 (17.177s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:39.103&#xA;&lt; Exit [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:39.316 (214ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - FastCGI should add fastcgi_param in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="22.255464666">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:39.317&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:46.2 (6.883s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:13:46.2&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:13:51.228 (5.028s)&#xA;&gt; Enter [It] should add fastcgi_param in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:71 @ 04/04/23 18:13:51.228&#xA;&lt; Exit [It] should add fastcgi_param in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:71 @ 04/04/23 18:14:01.351 (10.123s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:01.351&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:01.572 (222ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should enable cors" classname="nginx-ingress-controller e2e suite" status="passed" time="21.227042773">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:01.573&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:08.451 (6.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:14:08.451&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:14:12.484 (4.033s)&#xA;&gt; Enter [It] should enable cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:35 @ 04/04/23 18:14:12.484&#xA;&lt; Exit [It] should enable cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:35 @ 04/04/23 18:14:22.62 (10.136s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:22.62&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:22.8 (179ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header overriding what&#39;s set from the upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="27.764170353">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:22.8&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:29.697 (6.897s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:14:29.697&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:14:33.724 (4.026s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:14:33.724&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 04/04/23 18:14:43.071 (9.347s)&#xA;&gt; Enter [It] overriding what&#39;s set from the upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:166 @ 04/04/23 18:14:43.071&#xA;&lt; Exit [It] overriding what&#39;s set from the upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:166 @ 04/04/23 18:14:50.277 (7.207s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:50.277&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:50.564 (287ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates picks up the previously missing secret for a given ingress without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="31.607242139">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:50.566&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:57.791 (7.225s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:14:57.791&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:15:01.819 (4.028s)&#xA;&gt; Enter [It] picks up the previously missing secret for a given ingress without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:70 @ 04/04/23 18:15:01.819&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:94 @ 04/04/23 18:15:18.959&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:101 @ 04/04/23 18:15:21.991&#xA;&lt; Exit [It] picks up the previously missing secret for a given ingress without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:70 @ 04/04/23 18:15:22.003 (20.184s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:22.003&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:22.173 (170ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should disable cors allow credentials" classname="nginx-ingress-controller e2e suite" status="passed" time="20.359505705">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:22.173&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:30.052 (7.879s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:15:30.052&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:15:32.076 (2.024s)&#xA;&gt; Enter [It] should disable cors allow credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:94 @ 04/04/23 18:15:32.076&#xA;&lt; Exit [It] should disable cors allow credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:94 @ 04/04/23 18:15:42.292 (10.217s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:42.292&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:42.533 (240ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 200 when accessing &#39;/noauth&#39; unauthenticated" classname="nginx-ingress-controller e2e suite" status="passed" time="29.196807175">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:42.533&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:49.463 (6.93s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:15:49.463&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 04/04/23 18:16:08.363 (18.9s)&#xA;&gt; Enter [It] should return status code 200 when accessing &#39;/noauth&#39; unauthenticated - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:82 @ 04/04/23 18:16:08.363&#xA;&lt; Exit [It] should return status code 200 when accessing &#39;/noauth&#39; unauthenticated - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:82 @ 04/04/23 18:16:11.514 (3.151s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:11.514&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:11.73 (216ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 401 when request any protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="47.840368216">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:11.73&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:18.612 (6.881s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:16:18.612&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:16:28.726 (10.115s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:16:28.726&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:16:28.726&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:16:38.887&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:16:49.114&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:16:59.322 (30.595s)&#xA;&gt; Enter [It] should return status code 401 when request any protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:85 @ 04/04/23 18:16:59.322&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:87 @ 04/04/23 18:16:59.322&#xA;STEP: Sending a request to protected service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:94 @ 04/04/23 18:16:59.333&#xA;&lt; Exit [It] should return status code 401 when request any protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:85 @ 04/04/23 18:16:59.342 (20ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:59.342&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:59.57 (229ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-catch-all should ignore catch all Ingress with backend and rules" classname="nginx-ingress-controller e2e suite" status="passed" time="29.278878474">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:59.571&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:06.433 (6.862s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:17:06.433&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:17:18.505 (12.072s)&#xA;&gt; Enter [It] should ignore catch all Ingress with backend and rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:69 @ 04/04/23 18:17:18.505&#xA;&lt; Exit [It] should ignore catch all Ingress with backend and rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:69 @ 04/04/23 18:17:28.675 (10.171s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:28.675&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:28.85 (174ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] global-options should have worker_rlimit_nofile option" classname="nginx-ingress-controller e2e suite" status="passed" time="12.275994764">
-              <system-err>&gt; Enter [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:28.85&#xA;&lt; Exit [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:37.72 (8.87s)&#xA;&gt; Enter [It] should have worker_rlimit_nofile option - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:31 @ 04/04/23 18:17:37.72&#xA;&lt; Exit [It] should have worker_rlimit_nofile option - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:31 @ 04/04/23 18:17:40.919 (3.199s)&#xA;&gt; Enter [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:40.919&#xA;&lt; Exit [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:41.126 (207ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) ports or X-Forwarded-Host check during HTTP tp HTTPS redirection should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection" classname="nginx-ingress-controller e2e suite" status="passed" time="30.353652292">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:41.126&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:49.014 (7.887s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:17:49.014&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 04/04/23 18:17:53.032 (4.018s)&#xA;&gt; Enter [It] should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:205 @ 04/04/23 18:17:53.032&#xA;Apr  4 18:18:09.269: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [It] should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:205 @ 04/04/23 18:18:11.272 (18.241s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:11.272&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:11.48 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should build proxy next upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="21.256053884">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:11.48&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:18.335 (6.854s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:18:18.335&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:18:22.355 (4.02s)&#xA;&gt; Enter [It] should build proxy next upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:194 @ 04/04/23 18:18:22.355&#xA;&lt; Exit [It] should build proxy next upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:194 @ 04/04/23 18:18:32.501 (10.146s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:32.501&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:32.736 (236ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-proxy-protocol should respect proto passed by the PROXY Protocol server port" classname="nginx-ingress-controller e2e suite" status="passed" time="110.539511063">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:32.737&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:39.632 (6.895s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:18:39.632&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:18:50.669 (11.037s)&#xA;&gt; Enter [It] should respect proto passed by the PROXY Protocol server port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:79 @ 04/04/23 18:18:50.669&#xA;&lt; Exit [It] should respect proto passed by the PROXY Protocol server port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:79 @ 04/04/23 18:20:22.888 (1m32.219s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:22.888&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:23.276 (388ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] ssl-ciphers should change ssl ciphers" classname="nginx-ingress-controller e2e suite" status="passed" time="20.32621915">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:23.277&#xA;&lt; Exit [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:31.164 (7.887s)&#xA;&gt; Enter [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:31 @ 04/04/23 18:20:31.164&#xA;&lt; Exit [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:31 @ 04/04/23 18:20:33.226 (2.062s)&#xA;&gt; Enter [It] should change ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:35 @ 04/04/23 18:20:33.226&#xA;&lt; Exit [It] should change ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:35 @ 04/04/23 18:20:43.402 (10.176s)&#xA;&gt; Enter [AfterEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:43.402&#xA;&lt; Exit [AfterEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:43.603 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1k" classname="nginx-ingress-controller e2e suite" status="passed" time="21.3434496">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:43.603&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:50.486 (6.883s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:20:50.486&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:20:54.514 (4.028s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1k - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:79 @ 04/04/23 18:20:54.514&#xA;&lt; Exit [It] should set client_body_buffer_size to 1k - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:79 @ 04/04/23 18:21:04.738 (10.224s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:04.738&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:04.947 (209ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should turn off proxy-request-buffering" classname="nginx-ingress-controller e2e suite" status="passed" time="21.279526094">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:04.947&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:11.835 (6.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:21:11.835&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:21:15.853 (4.017s)&#xA;&gt; Enter [It] should turn off proxy-request-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:179 @ 04/04/23 18:21:15.853&#xA;&lt; Exit [It] should turn off proxy-request-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:179 @ 04/04/23 18:21:26.03 (10.178s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:26.03&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:26.226 (196ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Debug CLI should get information for a specific backend server" classname="nginx-ingress-controller e2e suite" status="passed" time="22.566428383">
-              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:26.227&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:34.123 (7.896s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:21:34.123&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:21:38.158 (4.035s)&#xA;&gt; Enter [It] should get information for a specific backend server - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:56 @ 04/04/23 18:21:38.158&#xA;&lt; Exit [It] should get information for a specific backend server - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:56 @ 04/04/23 18:21:48.595 (10.437s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:48.595&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:48.793 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] nginx-configuration start nginx with default configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="11.047475387">
-              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:21:48.794&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:21:50.797 (2.003s)&#xA;&gt; Enter [It] start nginx with default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:102 @ 04/04/23 18:21:50.797&#xA;&lt; Exit [It] start nginx with default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:102 @ 04/04/23 18:21:59.838 (9.042s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:21:59.839&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:21:59.841 (3ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should set cors max-age" classname="nginx-ingress-controller e2e suite" status="passed" time="21.882315298">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:59.842&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:07.232 (7.39s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:07.232&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:11.252 (4.02s)&#xA;&gt; Enter [It] should set cors max-age - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:78 @ 04/04/23 18:22:11.252&#xA;&lt; Exit [It] should set cors max-age - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:78 @ 04/04/23 18:22:21.435 (10.182s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:21.435&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:21.724 (289ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - matching origin+port with wildcard origin" classname="nginx-ingress-controller e2e suite" status="passed" time="18.7769524">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:21.725&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:29.212 (7.488s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:29.212&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:33.245 (4.033s)&#xA;&gt; Enter [It] should allow - matching origin+port with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:488 @ 04/04/23 18:22:33.245&#xA;&lt; Exit [It] should allow - matching origin+port with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:488 @ 04/04/23 18:22:40.278 (7.032s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:40.278&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:40.502 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should change cookie name on ingress definition change" classname="nginx-ingress-controller e2e suite" status="passed" time="26.301024226">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:40.502&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:47.367 (6.865s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:22:47.368&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:22:51.389 (4.021s)&#xA;&gt; Enter [It] should change cookie name on ingress definition change - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:64 @ 04/04/23 18:22:51.389&#xA;&lt; Exit [It] should change cookie name on ingress definition change - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:64 @ 04/04/23 18:23:06.598 (15.209s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:06.598&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:06.803 (205ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] configmap server-snippet should add value of server-snippet setting to all ingress config" classname="nginx-ingress-controller e2e suite" status="passed" time="43.5615642">
-              <system-err>&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:06.804&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:13.683 (6.879s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 04/04/23 18:23:13.683&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 04/04/23 18:23:17.702 (4.019s)&#xA;&gt; Enter [It] should add value of server-snippet setting to all ingress config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:35 @ 04/04/23 18:23:17.702&#xA;&lt; Exit [It] should add value of server-snippet setting to all ingress config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:35 @ 04/04/23 18:23:50.157 (32.455s)&#xA;&gt; Enter [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:50.157&#xA;&lt; Exit [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:50.365 (209ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] block-* should block Referers defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="26.650551683">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:50.366&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:57.248 (6.882s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:23:57.248&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:24:06.308 (9.06s)&#xA;&gt; Enter [It] should block Referers defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:88 @ 04/04/23 18:24:06.308&#xA;&lt; Exit [It] should block Referers defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:88 @ 04/04/23 18:24:16.602 (10.294s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:16.602&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:17.016 (414ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should set gzip_types to application/javascript" classname="nginx-ingress-controller e2e suite" status="passed" time="25.977355163">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:17.016&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:25.558 (8.541s)&#xA;&gt; Enter [It] should set gzip_types to application/javascript - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:89 @ 04/04/23 18:24:25.558&#xA;&lt; Exit [It] should set gzip_types to application/javascript - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:89 @ 04/04/23 18:24:42.749 (17.191s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:42.749&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:42.994 (245ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should exists opentracing_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="30.228533662">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:42.994&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:49.859 (6.865s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:24:49.859&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:24:55.885 (6.025s)&#xA;&gt; Enter [It] should exists opentracing_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:115 @ 04/04/23 18:24:55.885&#xA;&lt; Exit [It] should exists opentracing_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:115 @ 04/04/23 18:25:13.047 (17.162s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:13.047&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:13.223 (176ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:25:13.223&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:25:13.223 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="21.147688959">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:13.223&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:21.122 (7.899s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:25:21.122&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:25:27.151 (6.029s)&#xA;&gt; Enter [It] should not allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:196 @ 04/04/23 18:25:27.151&#xA;&lt; Exit [It] should not allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:196 @ 04/04/23 18:25:34.17 (7.019s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:34.17&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:34.371 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should set snippet when global external auth is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="55.823887488">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:34.371&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:41.275 (6.904s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:25:41.275&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:25:49.318 (8.044s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:25:49.318&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:25:49.318&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:25:59.469&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:26:09.647&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:26:19.839 (30.521s)&#xA;&gt; Enter [It] should set snippet when global external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:250 @ 04/04/23 18:26:19.839&#xA;STEP: Adding a global-auth-snippet to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:254 @ 04/04/23 18:26:19.839&#xA;&lt; Exit [It] should set snippet when global external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:250 @ 04/04/23 18:26:29.995 (10.156s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:29.995&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:30.195 (200ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-snippet add valid directives to server via server snippet" classname="nginx-ingress-controller e2e suite" status="passed" time="21.25795177">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:30.195&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:37.066 (6.871s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 04/04/23 18:26:37.066&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 04/04/23 18:26:41.082 (4.015s)&#xA;&gt; Enter [It] add valid directives to server via server snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:35 @ 04/04/23 18:26:41.082&#xA;&lt; Exit [It] add valid directives to server via server snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:35 @ 04/04/23 18:26:51.227 (10.145s)&#xA;&gt; Enter [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:51.227&#xA;&lt; Exit [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:51.453 (226ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should deny login for different location on same server" classname="nginx-ingress-controller e2e suite" status="passed" time="128.860516385">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:51.453&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:58.324 (6.87s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:26:58.324&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:27:02.348 (4.024s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:27:02.348&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:27:07.377&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:27:17.563&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:27:27.77&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:27:37.89&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:27:53.085 (50.737s)&#xA;&gt; Enter [It] should deny login for different location on same server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:792 @ 04/04/23 18:27:53.085&#xA;STEP: receiving an internal server error without cache on location /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:811 @ 04/04/23 18:28:00.105&#xA;&lt; Exit [It] should deny login for different location on same server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:792 @ 04/04/23 18:29:00.109 (1m7.024s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:00.109&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:00.314 (205ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - FastCGI should return OK for service with backend protocol FastCGI" classname="nginx-ingress-controller e2e suite" status="passed" time="20.336008253">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:00.314&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:08.193 (7.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:29:08.193&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 04/04/23 18:29:10.222 (2.029s)&#xA;&gt; Enter [It] should return OK for service with backend protocol FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:102 @ 04/04/23 18:29:10.222&#xA;&lt; Exit [It] should return OK for service with backend protocol FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:102 @ 04/04/23 18:29:20.442 (10.22s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:20.442&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:20.65 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to canary if canary weight is equal to canary weight total" classname="nginx-ingress-controller e2e suite" status="passed" time="32.449934124">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:20.651&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:27.592 (6.941s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:29:27.592&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:29:35.635 (8.044s)&#xA;&gt; Enter [It] should route requests only to canary if canary weight is equal to canary weight total - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:775 @ 04/04/23 18:29:35.635&#xA;&lt; Exit [It] should route requests only to canary if canary weight is equal to canary weight total - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:775 @ 04/04/23 18:29:52.866 (17.23s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:52.866&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:53.101 (235ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] modsecurity-snippet should add value of modsecurity-snippet setting to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="18.334369723000002">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:53.101&#xA;&lt; Exit [BeforeEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:00.998 (7.896s)&#xA;&gt; Enter [It] should add value of modsecurity-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/modsecurity/modsecurity_snippet.go:30 @ 04/04/23 18:30:00.998&#xA;&lt; Exit [It] should add value of modsecurity-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/modsecurity/modsecurity_snippet.go:30 @ 04/04/23 18:30:11.215 (10.217s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:11.215&#xA;&lt; Exit [AfterEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:11.436 (221ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should exists opentracing directive when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="28.327005454">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:11.436&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:18.304 (6.868s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:30:18.304&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:30:22.331 (4.027s)&#xA;&gt; Enter [It] should exists opentracing directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:71 @ 04/04/23 18:30:22.331&#xA;&lt; Exit [It] should exists opentracing directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:71 @ 04/04/23 18:30:39.546 (17.216s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:39.546&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:39.763 (217ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:30:39.763&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:30:39.763 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinitymode Check persistent affinity mode" classname="nginx-ingress-controller e2e suite" status="passed" time="128.063623015">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:39.763&#xA;&lt; Exit [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:47.146 (7.383s)&#xA;&gt; Enter [It] Check persistent affinity mode - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:67 @ 04/04/23 18:30:47.146&#xA;&lt; Exit [It] Check persistent affinity mode - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:67 @ 04/04/23 18:32:47.648 (2m0.502s)&#xA;&gt; Enter [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:47.648&#xA;&lt; Exit [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:47.827 (179ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress with a different class annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="158.132598199">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:47.827&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:04.512 (2m16.685s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:35:04.512&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:35:08.555 (4.042s)&#xA;&gt; Enter [It] should ignore Ingress with a different class annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:68 @ 04/04/23 18:35:08.555&#xA;&lt; Exit [It] should ignore Ingress with a different class annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:68 @ 04/04/23 18:35:25.764 (17.209s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:25.764&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:25.96 (196ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should enable opentracing using jaeger" classname="nginx-ingress-controller e2e suite" status="passed" time="32.14322785">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:25.96&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:33.883 (7.923s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:35:33.883&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:35:37.911 (4.028s)&#xA;&gt; Enter [It] should enable opentracing using jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:172 @ 04/04/23 18:35:37.911&#xA;&lt; Exit [It] should enable opentracing using jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:172 @ 04/04/23 18:35:57.93 (20.019s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:57.93&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:58.103 (173ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:35:58.103&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:35:58.103 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should add custom error page when global-auth-signin url is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="56.818456066">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:58.104&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:05.96 (7.857s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:36:05.96&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:36:14.017 (8.056s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:36:14.017&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:36:14.017&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:36:24.203&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:36:34.361&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:36:44.521 (30.504s)&#xA;&gt; Enter [It] should add custom error page when global-auth-signin url is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:210 @ 04/04/23 18:36:44.521&#xA;STEP: Adding a global-auth-signin to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:215 @ 04/04/23 18:36:44.521&#xA;&lt; Exit [It] should add custom error page when global-auth-signin url is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:210 @ 04/04/23 18:36:54.694 (10.173s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:54.694&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:54.922 (228ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-stream-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="30.946117672">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:54.922&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:02.365 (7.443s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:37:02.365&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 04/04/23 18:37:08.389 (6.023s)&#xA;&gt; Enter [It] disable-stream-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:71 @ 04/04/23 18:37:08.389&#xA;&lt; Exit [It] disable-stream-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:71 @ 04/04/23 18:37:25.61 (17.222s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:25.611&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:25.869 (258ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should enable opentracing using jaeger with sampler host" classname="nginx-ingress-controller e2e suite" status="passed" time="31.172411267">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:25.869&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:32.759 (6.89s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:37:32.759&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:37:36.785 (4.026s)&#xA;&gt; Enter [It] should enable opentracing using jaeger with sampler host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:184 @ 04/04/23 18:37:36.785&#xA;&lt; Exit [It] should enable opentracing using jaeger with sampler host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:184 @ 04/04/23 18:37:56.815 (20.03s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:56.815&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:57.041 (227ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:37:57.041&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:37:57.041 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] add-headers Add a custom header" classname="nginx-ingress-controller e2e suite" status="passed" time="29.429456981">
-              <system-err>&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:57.042&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:04.9 (7.858s)&#xA;&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 04/04/23 18:38:04.9&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 04/04/23 18:38:15.932 (11.032s)&#xA;&gt; Enter [It] Add a custom header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:40 @ 04/04/23 18:38:15.932&#xA;&lt; Exit [It] Add a custom header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:40 @ 04/04/23 18:38:26.137 (10.204s)&#xA;&gt; Enter [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:26.137&#xA;&lt; Exit [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:26.471 (334ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should serve Ingress when class is updated between annotation and ingressClassName" classname="nginx-ingress-controller e2e suite" status="passed" time="36.546449498">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:26.471&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:33.322 (6.851s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:38:33.322&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:38:37.351 (4.029s)&#xA;&gt; Enter [It] should serve Ingress when class is updated between annotation and ingressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:323 @ 04/04/23 18:38:37.351&#xA;&lt; Exit [It] should serve Ingress when class is updated between annotation and ingressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:323 @ 04/04/23 18:39:02.787 (25.436s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:02.787&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:03.018 (231ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] backend status code 503 should return 503 when all backend service endpoints are unavailable" classname="nginx-ingress-controller e2e suite" status="passed" time="18.478587281">
-              <system-err>&gt; Enter [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:03.025&#xA;&lt; Exit [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:11.02 (7.995s)&#xA;&gt; Enter [It] should return 503 when all backend service endpoints are unavailable - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:54 @ 04/04/23 18:39:11.02&#xA;&lt; Exit [It] should return 503 when all backend service endpoints are unavailable - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:54 @ 04/04/23 18:39:21.316 (10.296s)&#xA;&gt; Enter [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:21.316&#xA;&lt; Exit [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:21.504 (188ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should set gzip_disable to msie6" classname="nginx-ingress-controller e2e suite" status="passed" time="25.33065533">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:21.504&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:29.492 (7.988s)&#xA;&gt; Enter [It] should set gzip_disable to msie6 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:67 @ 04/04/23 18:39:29.492&#xA;&lt; Exit [It] should set gzip_disable to msie6 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:67 @ 04/04/23 18:39:46.643 (17.151s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:46.643&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:46.835 (192ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* canary affinity behavior routes traffic to either mainline or canary backend (legacy behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="70.69738704">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:46.835&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:53.72 (6.885s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:39:53.72&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:40:01.768 (8.048s)&#xA;&gt; Enter [It] routes traffic to either mainline or canary backend (legacy behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1058 @ 04/04/23 18:40:01.768&#xA;&lt; Exit [It] routes traffic to either mainline or canary backend (legacy behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1058 @ 04/04/23 18:40:57.335 (55.567s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:57.335&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:57.533 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Status] status update should update status field after client-go reconnection" classname="nginx-ingress-controller e2e suite" status="passed" time="80.044380755">
-              <system-err>&gt; Enter [BeforeEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.249&#xA;&lt; Exit [BeforeEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:26.794 (7.545s)&#xA;&gt; Enter [It] should update status field after client-go reconnection - /go/src/k8s.io/ingress-nginx/test/e2e/status/update.go:43 @ 04/04/23 18:04:26.794&#xA;Apr  4 18:04:26.794: INFO: Asynchronously running &#39;/bin/bash -c /usr/local/bin/kubectl proxy --accept-hosts=.* --address=0.0.0.0 --port=0&#39;&#xA;Apr  4 18:04:49.019: INFO: waiting for leader election and initial status update&#xA;Apr  4 18:05:29.033: INFO: Asynchronously running &#39;/bin/bash -c /usr/local/bin/kubectl proxy --accept-hosts=.* --address=0.0.0.0 --port=42431&#39;&#xA;&lt; Exit [It] should update status field after client-go reconnection - /go/src/k8s.io/ingress-nginx/test/e2e/status/update.go:43 @ 04/04/23 18:05:39.069 (1m12.275s)&#xA;&gt; Enter [AfterEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:39.069&#xA;&lt; Exit [AfterEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:39.293 (225ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1M" classname="nginx-ingress-controller e2e suite" status="passed" time="21.355109571">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:39.294&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:46.218 (6.925s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:05:46.218&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 04/04/23 18:05:50.239 (4.02s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1M - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:123 @ 04/04/23 18:05:50.239&#xA;&lt; Exit [It] should set client_body_buffer_size to 1M - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:123 @ 04/04/23 18:06:00.422 (10.184s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:00.422&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:00.649 (227ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Dynamic $proxy_host should exist a proxy_host" classname="nginx-ingress-controller e2e suite" status="passed" time="21.314347362">
-              <system-err>&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:00.649&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:07.542 (6.893s)&#xA;&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 04/04/23 18:06:07.542&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 04/04/23 18:06:11.569 (4.027s)&#xA;&gt; Enter [It] should exist a proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:36 @ 04/04/23 18:06:11.569&#xA;&lt; Exit [It] should exist a proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:36 @ 04/04/23 18:06:21.772 (10.203s)&#xA;&gt; Enter [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:21.772&#xA;&lt; Exit [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:21.963 (191ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] add-headers Add multiple custom headers" classname="nginx-ingress-controller e2e suite" status="passed" time="28.410685853">
-              <system-err>&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:21.964&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:28.888 (6.924s)&#xA;&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 04/04/23 18:06:28.888&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 04/04/23 18:06:39.938 (11.05s)&#xA;&gt; Enter [It] Add multiple custom headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:65 @ 04/04/23 18:06:39.938&#xA;&lt; Exit [It] Add multiple custom headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:65 @ 04/04/23 18:06:50.151 (10.213s)&#xA;&gt; Enter [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:50.151&#xA;&lt; Exit [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:50.374 (223ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if mainline ingress is created before the canary ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="32.384106483">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:50.375&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:57.307 (6.932s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:06:57.307&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:05.355 (8.048s)&#xA;&gt; Enter [It] should route requests to the correct upstream if mainline ingress is created before the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:161 @ 04/04/23 18:07:05.355&#xA;STEP: routing requests destined for the mainline ingress to the maineline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:185 @ 04/04/23 18:07:22.519&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:195 @ 04/04/23 18:07:22.526&#xA;&lt; Exit [It] should route requests to the correct upstream if mainline ingress is created before the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:161 @ 04/04/23 18:07:22.534 (17.179s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:22.534&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:22.759 (225ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check proxy header hash size should set proxy-headers-hash-max-size" classname="nginx-ingress-controller e2e suite" status="passed" time="28.404384502">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:22.759&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:29.671 (6.912s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:07:29.671&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:07:40.702 (11.031s)&#xA;&gt; Enter [It] should set proxy-headers-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:68 @ 04/04/23 18:07:40.702&#xA;&lt; Exit [It] should set proxy-headers-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:68 @ 04/04/23 18:07:50.922 (10.22s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:50.922&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:51.164 (242ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress with different controller class" classname="nginx-ingress-controller e2e suite" status="passed" time="29.290705972">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:51.164&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:59.041 (7.877s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:07:59.041&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:08:03.067 (4.025s)&#xA;&gt; Enter [It] should ignore Ingress with different controller class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:104 @ 04/04/23 18:08:03.067&#xA;&lt; Exit [It] should ignore Ingress with different controller class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:104 @ 04/04/23 18:08:20.253 (17.187s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:20.253&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:20.455 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format-escape-none enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="31.867930552">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:20.455&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:27.83 (7.375s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:08:27.83&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:08:38.87 (11.04s)&#xA;&gt; Enter [It] log-format-escape-none enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:128 @ 04/04/23 18:08:38.87&#xA;&lt; Exit [It] log-format-escape-none enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:128 @ 04/04/23 18:08:52.098 (13.228s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:52.098&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:52.323 (225ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should return status code 200 when signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="25.339688675">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:52.323&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:59.233 (6.909s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:08:59.233&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:09:03.258 (4.025s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:09:03.258&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:09:17.471 (14.213s)&#xA;&gt; Enter [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:485 @ 04/04/23 18:09:17.471&#xA;&lt; Exit [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:485 @ 04/04/23 18:09:17.477 (6ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:17.477&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:17.663 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] [Flag] default-ssl-certificate uses default ssl certificate for host based ingress when configured certificate does not match host" classname="nginx-ingress-controller e2e suite" status="passed" time="32.685166334">
-              <system-err>&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:17.664&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:24.618 (6.955s)&#xA;&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 04/04/23 18:09:24.618&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 04/04/23 18:09:37.752 (13.134s)&#xA;&gt; Enter [It] uses default ssl certificate for host based ingress when configured certificate does not match host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:80 @ 04/04/23 18:09:37.752&#xA;STEP: making sure new ingress is deployed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:90 @ 04/04/23 18:09:44.916&#xA;STEP: making sure the configured default ssl certificate is being used - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:96 @ 04/04/23 18:09:48.094&#xA;&lt; Exit [It] uses default ssl certificate for host based ingress when configured certificate does not match host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:80 @ 04/04/23 18:09:50.119 (12.367s)&#xA;&gt; Enter [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:50.119&#xA;&lt; Exit [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:50.349 (230ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - GRPC should return OK for service with backend protocol GRPC" classname="nginx-ingress-controller e2e suite" status="passed" time="21.305689365">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:50.349&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:57.22 (6.871s)&#xA;&gt; Enter [It] should return OK for service with backend protocol GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:68 @ 04/04/23 18:09:57.22&#xA;&lt; Exit [It] should return OK for service with backend protocol GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:68 @ 04/04/23 18:10:11.466 (14.247s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:11.466&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:11.655 (189ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should be enabled with default settings" classname="nginx-ingress-controller e2e suite" status="passed" time="17.220763513">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:11.655&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:18.528 (6.872s)&#xA;&gt; Enter [It] should be enabled with default settings - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:39 @ 04/04/23 18:10:18.528&#xA;&lt; Exit [It] should be enabled with default settings - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:39 @ 04/04/23 18:10:28.683 (10.155s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:28.683&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:28.876 (193ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should include opentracing_trust_incoming_span off directive when disabled" classname="nginx-ingress-controller e2e suite" status="passed" time="28.309530893">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:28.876&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:35.756 (6.88s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:10:35.756&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:10:39.781 (4.025s)&#xA;&gt; Enter [It] should include opentracing_trust_incoming_span off directive when disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:85 @ 04/04/23 18:10:39.781&#xA;&lt; Exit [It] should include opentracing_trust_incoming_span off directive when disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:85 @ 04/04/23 18:10:56.965 (17.184s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:56.965&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:57.186 (221ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:10:57.186&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:10:57.186 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should warn user when use-regex is true and session-cookie-path is not set" classname="nginx-ingress-controller e2e suite" status="passed" time="25.399109696">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:57.186&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:05.078 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:11:05.078&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:11:09.104 (4.027s)&#xA;&gt; Enter [It] should warn user when use-regex is true and session-cookie-path is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:294 @ 04/04/23 18:11:09.104&#xA;&lt; Exit [It] should warn user when use-regex is true and session-cookie-path is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:294 @ 04/04/23 18:11:22.32 (13.216s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:22.32&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:22.585 (265ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to &#39;&#39; and use ajp_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="21.471021469">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:22.585&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:29.564 (6.979s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:11:29.564&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:11:33.585 (4.021s)&#xA;&gt; Enter [It] should set backend protocol to &#39;&#39; and use ajp_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:109 @ 04/04/23 18:11:33.585&#xA;&lt; Exit [It] should set backend protocol to &#39;&#39; and use ajp_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:109 @ 04/04/23 18:11:43.812 (10.227s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:43.812&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:44.056 (244ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] stream-snippet should add stream-snippet and drop annotations per admin config" classname="nginx-ingress-controller e2e suite" status="passed" time="39.472773565">
-              <system-err>&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:44.057&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:52.078 (8.021s)&#xA;&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 04/04/23 18:11:52.078&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 04/04/23 18:11:54.141 (2.063s)&#xA;&gt; Enter [It] should add stream-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:85 @ 04/04/23 18:11:54.141&#xA;&lt; Exit [It] should add stream-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:85 @ 04/04/23 18:12:23.359 (29.218s)&#xA;&gt; Enter [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:23.359&#xA;&lt; Exit [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:23.53 (171ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should not set secure in cookie with provided false annotation on http" classname="nginx-ingress-controller e2e suite" status="passed" time="21.302342634">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:23.53&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:30.423 (6.893s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:12:30.423&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:12:34.455 (4.032s)&#xA;&gt; Enter [It] should not set secure in cookie with provided false annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:435 @ 04/04/23 18:12:34.455&#xA;&lt; Exit [It] should not set secure in cookie with provided false annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:435 @ 04/04/23 18:12:44.621 (10.166s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:44.621&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:44.832 (211ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [TCP] tcp-services should expose an ExternalName TCP service" classname="nginx-ingress-controller e2e suite" status="passed" time="11.0379693">
-              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:44.833&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:52.267 (7.434s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:12:52.267&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:12:52.272 (5ms)&#xA;&gt; Enter [It] should expose an ExternalName TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:80 @ 04/04/23 18:12:52.272&#xA;&lt; Exit [It] should expose an ExternalName TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:80 @ 04/04/23 18:12:55.617 (3.345s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:55.617&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:55.87 (253ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured removes HTTPS configuration when we delete TLS spec" classname="nginx-ingress-controller e2e suite" status="passed" time="41.41020715">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:55.871&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:02.782 (6.911s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:13:02.782&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:13:06.807 (4.025s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:13:06.807&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:13:23.944&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:13:32.097&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:13:32.106 (25.299s)&#xA;&gt; Enter [It] removes HTTPS configuration when we delete TLS spec - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:233 @ 04/04/23 18:13:32.106&#xA;&lt; Exit [It] removes HTTPS configuration when we delete TLS spec - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:233 @ 04/04/23 18:13:37.112 (5.005s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:37.112&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:37.281 (169ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should not exists opentracing_location_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="29.339631623">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:37.281&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:45.19 (7.908s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:13:45.19&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:13:49.209 (4.019s)&#xA;&gt; Enter [It] should not exists opentracing_location_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:130 @ 04/04/23 18:13:49.209&#xA;&lt; Exit [It] should not exists opentracing_location_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:130 @ 04/04/23 18:14:06.443 (17.233s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:06.443&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:06.621 (178ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:14:06.621&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:14:06.621 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates picks up the certificate when we add TLS spec to existing ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="26.612276222">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:06.621&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:13.543 (6.921s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:14:13.543&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:14:17.569 (4.026s)&#xA;&gt; Enter [It] picks up the certificate when we add TLS spec to existing ingress - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:45 @ 04/04/23 18:14:17.569&#xA;&lt; Exit [It] picks up the certificate when we add TLS spec to existing ingress - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:45 @ 04/04/23 18:14:33.037 (15.469s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:33.037&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:33.234 (196ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] nginx-configuration fails when using root directive" classname="nginx-ingress-controller e2e suite" status="passed" time="62.038566962">
-              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:14:33.234&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 04/04/23 18:14:35.237 (2.003s)&#xA;&gt; Enter [It] fails when using root directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:124 @ 04/04/23 18:14:35.237&#xA;&lt; Exit [It] fails when using root directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:124 @ 04/04/23 18:15:35.27 (1m0.034s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:15:35.27&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 04/04/23 18:15:35.272 (2ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should fail to use longest match for documented warning" classname="nginx-ingress-controller e2e suite" status="passed" time="27.307439756">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:35.273&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:43.177 (7.905s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:15:43.177&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:15:45.196 (2.019s)&#xA;&gt; Enter [It] should fail to use longest match for documented warning - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:158 @ 04/04/23 18:15:45.196&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:161 @ 04/04/23 18:15:45.196&#xA;STEP: creating an ingress definition with the use-regex annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:165 @ 04/04/23 18:15:52.212&#xA;STEP: check that &#39;/foo/bar/bar&#39; does not match the longest exact path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:179 @ 04/04/23 18:16:02.371&#xA;&lt; Exit [It] should fail to use longest match for documented warning - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:158 @ 04/04/23 18:16:02.374 (17.178s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:02.374&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:02.58 (206ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should not exists opentelemetry_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="32.017142107">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:02.581&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:12.465 (9.885s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:16:12.465&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:16:16.495 (4.03s)&#xA;&gt; Enter [It] should not exists opentelemetry_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:89 @ 04/04/23 18:16:16.495&#xA;&lt; Exit [It] should not exists opentelemetry_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:89 @ 04/04/23 18:16:33.975 (17.48s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:33.975&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:34.598 (623ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:16:34.598&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:16:34.598 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should disable modsecurity using &#39;modsecurity off;&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="26.218874638">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:34.603&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:41.474 (6.871s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:16:41.474&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:16:43.493 (2.019s)&#xA;&gt; Enter [It] should disable modsecurity using &#39;modsecurity off;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:132 @ 04/04/23 18:16:43.493&#xA;&lt; Exit [It] should disable modsecurity using &#39;modsecurity off;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:132 @ 04/04/23 18:17:00.623 (17.13s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:00.623&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:00.822 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set the request count to upstream server through one keep alive connection" classname="nginx-ingress-controller e2e suite" status="passed" time="28.371746836">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:00.823&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:07.712 (6.89s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:17:07.712&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:17:18.751 (11.038s)&#xA;&gt; Enter [It] should set the request count to upstream server through one keep alive connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:86 @ 04/04/23 18:17:18.751&#xA;&lt; Exit [It] should set the request count to upstream server through one keep alive connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:86 @ 04/04/23 18:17:28.957 (10.206s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:28.957&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:29.194 (237ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the keep alive should set keepalive_requests" classname="nginx-ingress-controller e2e suite" status="passed" time="31.301174976">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:29.195&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:39.14 (9.946s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:17:39.14&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:17:50.186 (11.045s)&#xA;&gt; Enter [It] should set keepalive_requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:48 @ 04/04/23 18:17:50.186&#xA;&lt; Exit [It] should set keepalive_requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:48 @ 04/04/23 18:18:00.312 (10.127s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:00.312&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:00.496 (184ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should set gzip_comp_level to 4" classname="nginx-ingress-controller e2e suite" status="passed" time="24.296191576">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:00.496&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:07.399 (6.903s)&#xA;&gt; Enter [It] should set gzip_comp_level to 4 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:56 @ 04/04/23 18:18:07.399&#xA;&lt; Exit [It] should set gzip_comp_level to 4 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:56 @ 04/04/23 18:18:24.593 (17.194s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:24.593&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:24.792 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set sticky cookie SERVERID" classname="nginx-ingress-controller e2e suite" status="passed" time="21.367955213">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:24.793&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:31.73 (6.937s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:18:31.73&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:18:35.753 (4.023s)&#xA;&gt; Enter [It] should set sticky cookie SERVERID - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:42 @ 04/04/23 18:18:35.753&#xA;&lt; Exit [It] should set sticky cookie SERVERID - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:42 @ 04/04/23 18:18:45.94 (10.187s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:45.94&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:46.161 (221ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - missing origins (should allow all origins)" classname="nginx-ingress-controller e2e suite" status="passed" time="19.125716488">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:46.161&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:54.022 (7.861s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:54.022&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:58.047 (4.025s)&#xA;&gt; Enter [It] should allow - missing origins (should allow all origins) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:571 @ 04/04/23 18:18:58.047&#xA;&lt; Exit [It] should allow - missing origins (should allow all origins) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:571 @ 04/04/23 18:19:05.106 (7.059s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:05.106&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:05.287 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should not set affinity across all server locations when using separate ingresses" classname="nginx-ingress-controller e2e suite" status="passed" time="29.276973597">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:05.287&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:13.171 (7.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:19:13.171&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:19:17.198 (4.027s)&#xA;&gt; Enter [It] should not set affinity across all server locations when using separate ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:320 @ 04/04/23 18:19:17.198&#xA;&lt; Exit [It] should not set affinity across all server locations when using separate ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:320 @ 04/04/23 18:19:34.328 (17.129s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:34.328&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:34.564 (236ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName without a port defined" classname="nginx-ingress-controller e2e suite" status="passed" time="18.63305273">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:34.564&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:42.455 (7.891s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName without a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:95 @ 04/04/23 18:19:42.455&#xA;&lt; Exit [It] should return 200 for service type=ExternalName without a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:95 @ 04/04/23 18:19:52.995 (10.54s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:52.995&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:53.197 (202ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] enables access logging for default backend" classname="nginx-ingress-controller e2e suite" status="skipped" time="7.568859087">
-              <skipped message="skipped - enable-access-log-for-default-backend"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:53.198&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:00.144 (6.946s)&#xA;&gt; Enter [It] enables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:88 @ 04/04/23 18:20:00.144&#xA;[SKIPPED] enable-access-log-for-default-backend&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:90 @ 04/04/23 18:20:00.144&#xA;&lt; Exit [It] enables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:88 @ 04/04/23 18:20:00.144 (0s)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:00.144&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:00.767 (622ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should overwrite Foo header with auth response" classname="nginx-ingress-controller e2e suite" status="passed" time="31.890098966">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:00.767&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:09.884 (9.117s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:20:09.884&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:20:13.952 (4.068s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:20:13.952&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:20:28.231 (14.28s)&#xA;&gt; Enter [It] should overwrite Foo header with auth response - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:529 @ 04/04/23 18:20:28.231&#xA;&lt; Exit [It] should overwrite Foo header with auth response - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:529 @ 04/04/23 18:20:32.452 (4.22s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:32.452&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:32.657 (205ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should use ~* location modifier if regex annotation is present" classname="nginx-ingress-controller e2e suite" status="passed" time="31.515497703">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:32.657&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:39.572 (6.914s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:20:39.572&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:20:43.594 (4.022s)&#xA;&gt; Enter [It] should use ~* location modifier if regex annotation is present - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:111 @ 04/04/23 18:20:43.594&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:114 @ 04/04/23 18:20:43.594&#xA;STEP: creating an ingress definition with the use-regex amd rewrite-target annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:123 @ 04/04/23 18:20:53.786&#xA;STEP: ensuring &#39;/foo&#39; matches &#39;~* ^/foo&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:137 @ 04/04/23 18:21:03.945&#xA;STEP: ensuring &#39;/foo/bar&#39; matches &#39;~* ^/foo.+&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:147 @ 04/04/23 18:21:03.953&#xA;&lt; Exit [It] should use ~* location modifier if regex annotation is present - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:111 @ 04/04/23 18:21:03.959 (20.365s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:03.959&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:04.173 (214ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured but Authorization header is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="23.147807317">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:04.173&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:12.085 (7.912s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:12.085&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:16.104 (4.019s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:89 @ 04/04/23 18:21:16.104&#xA;&lt; Exit [It] should return status code 401 when authentication is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:89 @ 04/04/23 18:21:27.134 (11.029s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:27.134&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:27.321 (187ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] mirror-* should disable mirror-request-body" classname="nginx-ingress-controller e2e suite" status="passed" time="21.355247118">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:27.321&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:34.238 (6.917s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:21:34.238&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:21:38.265 (4.026s)&#xA;&gt; Enter [It] should disable mirror-request-body - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:67 @ 04/04/23 18:21:38.265&#xA;&lt; Exit [It] should disable mirror-request-body - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:67 @ 04/04/23 18:21:48.462 (10.197s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:48.462&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:48.677 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* with invalid auth-url should deny whole location should return 503 (location was denied)" classname="nginx-ingress-controller e2e suite" status="passed" time="21.341137941">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:48.677&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:55.595 (6.918s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:55.595&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:21:59.616 (4.02s)&#xA;&gt; Enter [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 04/04/23 18:21:59.616&#xA;&lt; Exit [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 04/04/23 18:22:09.78 (10.165s)&#xA;&gt; Enter [It] should return 503 (location was denied) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:879 @ 04/04/23 18:22:09.78&#xA;&lt; Exit [It] should return 503 (location was denied) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:879 @ 04/04/23 18:22:09.787 (6ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:09.787&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:10.018 (231ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should setup proxy cookies" classname="nginx-ingress-controller e2e suite" status="passed" time="22.293403591">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:10.018&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:17.91 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:22:17.91&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:22:21.937 (4.027s)&#xA;&gt; Enter [It] should setup proxy cookies - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:215 @ 04/04/23 18:22:21.937&#xA;&lt; Exit [It] should setup proxy cookies - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:215 @ 04/04/23 18:22:32.141 (10.205s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:32.141&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:32.312 (170ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class Without IngressClass Cluster scoped Permission should ignore Ingress with only IngressClassName" classname="nginx-ingress-controller e2e suite" status="passed" time="28.459532866">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:32.312&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:39.246 (6.934s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:22:39.246&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:22:43.274 (4.028s)&#xA;&gt; Enter [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 04/04/23 18:22:43.274&#xA;&lt; Exit [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 04/04/23 18:22:50.32 (7.047s)&#xA;&gt; Enter [It] should ignore Ingress with only IngressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:652 @ 04/04/23 18:22:50.32&#xA;&lt; Exit [It] should ignore Ingress with only IngressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:652 @ 04/04/23 18:23:00.536 (10.216s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:00.536&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:00.771 (235ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] enable-ssl-passthrough With enable-ssl-passthrough enabled should enable ssl-passthrough-proxy-port on a different port" classname="nginx-ingress-controller e2e suite" status="passed" time="29.495200538">
-              <system-err>&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:00.772&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:07.648 (6.876s)&#xA;&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 04/04/23 18:23:07.648&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 04/04/23 18:23:18.858 (11.21s)&#xA;&gt; Enter [It] should enable ssl-passthrough-proxy-port on a different port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:56 @ 04/04/23 18:23:18.858&#xA;&lt; Exit [It] should enable ssl-passthrough-proxy-port on a different port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:56 @ 04/04/23 18:23:30.073 (11.215s)&#xA;&gt; Enter [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:30.073&#xA;&lt; Exit [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:30.267 (194ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] change default settings should apply the annotation to the default backend" classname="nginx-ingress-controller e2e suite" status="passed" time="21.28407974">
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:30.267&#xA;&lt; Exit [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:37.168 (6.901s)&#xA;&gt; Enter [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:34 @ 04/04/23 18:23:37.168&#xA;&lt; Exit [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:34 @ 04/04/23 18:23:41.193 (4.024s)&#xA;&gt; Enter [It] should apply the annotation to the default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:38 @ 04/04/23 18:23:41.193&#xA;&lt; Exit [It] should apply the annotation to the default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:38 @ 04/04/23 18:23:51.36 (10.167s)&#xA;&gt; Enter [AfterEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:51.36&#xA;&lt; Exit [AfterEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:51.551 (192ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Geoip2 should include geoip2 line in config when enabled and db file exists" classname="nginx-ingress-controller e2e suite" status="passed" time="31.122649161">
-              <system-err>&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:51.552&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:58.412 (6.86s)&#xA;&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 04/04/23 18:23:58.412&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 04/04/23 18:24:02.44 (4.027s)&#xA;&gt; Enter [It] should include geoip2 line in config when enabled and db file exists - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:46 @ 04/04/23 18:24:02.44&#xA;Apr  4 18:24:11.771: INFO: Connecting to github.com (140.82.113.4:443)&#xA;Connecting to github.com (140.82.113.4:443)&#xA;Connecting to raw.githubusercontent.com (185.199.108.133:443)&#xA;saving to &#39;/etc/nginx/geoip/GeoLite2-Country.mmdb&#39;&#xA;GeoLite2-Country.mmd 100%!|(MISSING)********************************| 17952  0:00:00 ETA&#xA;&#39;/etc/nginx/geoip/GeoLite2-Country.mmdb&#39; saved&#xA;&#xA;&lt; Exit [It] should include geoip2 line in config when enabled and db file exists - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:46 @ 04/04/23 18:24:22.088 (19.648s)&#xA;&gt; Enter [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:22.088&#xA;&lt; Exit [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:22.674 (586ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should allow for custom rewrite parameters" classname="nginx-ingress-controller e2e suite" status="passed" time="22.284349289">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:22.675&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:30.572 (7.897s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:24:30.572&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 04/04/23 18:24:34.603 (4.031s)&#xA;&gt; Enter [It] should allow for custom rewrite parameters - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:190 @ 04/04/23 18:24:34.603&#xA;STEP: creating an ingress definition with the use-regex annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:193 @ 04/04/23 18:24:34.603&#xA;STEP: check that &#39;/foo/bar/bar&#39; redirects to custom rewrite - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:206 @ 04/04/23 18:24:44.755&#xA;&lt; Exit [It] should allow for custom rewrite parameters - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:190 @ 04/04/23 18:24:44.757 (10.154s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:44.757&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:44.959 (202ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check server names hash size should set server_names_hash_bucket_size" classname="nginx-ingress-controller e2e suite" status="passed" time="30.356197074">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:44.96&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:53.864 (8.905s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:24:53.864&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:25:04.899 (11.035s)&#xA;&gt; Enter [It] should set server_names_hash_bucket_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:40 @ 04/04/23 18:25:04.899&#xA;&lt; Exit [It] should set server_names_hash_bucket_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:40 @ 04/04/23 18:25:15.061 (10.162s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:15.061&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:15.316 (255ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a TLS enabled ingress should set X-Forwarded-Port header to 443" classname="nginx-ingress-controller e2e suite" status="passed" time="44.268466762">
-              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:15.316&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:39.846 (24.53s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:25:39.846&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 04/04/23 18:25:47.041 (7.195s)&#xA;&gt; Enter [It] should set X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:70 @ 04/04/23 18:25:47.041&#xA;&lt; Exit [It] should set X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:70 @ 04/04/23 18:25:59.374 (12.333s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:59.374&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:59.585 (211ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-sync-events should create sync events (default)" classname="nginx-ingress-controller e2e suite" status="passed" time="21.291606043">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:59.585&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:06.445 (6.86s)&#xA;&gt; Enter [It] should create sync events (default) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:35 @ 04/04/23 18:26:06.445&#xA;&lt; Exit [It] should create sync events (default) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:35 @ 04/04/23 18:26:20.681 (14.236s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:20.681&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:20.877 (196ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - unmatching origin with wildcard origin (2 subdomains)" classname="nginx-ingress-controller e2e suite" status="passed" time="18.145584685">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:20.877&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:27.751 (6.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:26:27.751&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:26:31.787 (4.036s)&#xA;&gt; Enter [It] should not allow - unmatching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:468 @ 04/04/23 18:26:31.787&#xA;&lt; Exit [It] should not allow - unmatching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:468 @ 04/04/23 18:26:38.82 (7.032s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:38.82&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:39.022 (203ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-send-timeout should not set invalid proxy send timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="29.217298979">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:39.023&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:46.929 (7.906s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 04/04/23 18:26:46.929&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 04/04/23 18:26:50.949 (4.02s)&#xA;&gt; Enter [It] should not set invalid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:52 @ 04/04/23 18:26:50.949&#xA;&lt; Exit [It] should not set invalid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:52 @ 04/04/23 18:27:08.052 (17.103s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:08.052&#xA;&lt; Exit [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:08.24 (188ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check server names hash size should set server_names_hash_max_size" classname="nginx-ingress-controller e2e suite" status="passed" time="29.415884826">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:08.24&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:16.131 (7.891s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:27:16.131&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:27:27.187 (11.056s)&#xA;&gt; Enter [It] should set server_names_hash_max_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:48 @ 04/04/23 18:27:27.187&#xA;&lt; Exit [It] should set server_names_hash_max_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:48 @ 04/04/23 18:27:37.411 (10.224s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:37.411&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:37.656 (245ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set proxy client-max-body-size to 8m" classname="nginx-ingress-controller e2e suite" status="passed" time="21.297633873">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:37.657&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:44.535 (6.879s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:27:44.535&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:27:48.555 (4.02s)&#xA;&gt; Enter [It] should set proxy client-max-body-size to 8m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:85 @ 04/04/23 18:27:48.555&#xA;&lt; Exit [It] should set proxy client-max-body-size to 8m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:85 @ 04/04/23 18:27:58.71 (10.155s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:58.71&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:58.954 (244ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not break functionality with extra domain" classname="nginx-ingress-controller e2e suite" status="passed" time="19.187139443">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:58.955&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:06.864 (7.909s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:28:06.864&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:28:10.897 (4.033s)&#xA;&gt; Enter [It] should not break functionality with extra domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:314 @ 04/04/23 18:28:10.897&#xA;&lt; Exit [It] should not break functionality with extra domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:314 @ 04/04/23 18:28:17.933 (7.036s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:17.933&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:18.142 (209ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* proxy-ssl-location-only flag should change the nginx config server part" classname="nginx-ingress-controller e2e suite" status="passed" time="43.288812125">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:18.142&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:26.105 (7.963s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:28:26.105&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:28:28.133 (2.028s)&#xA;&gt; Enter [It] proxy-ssl-location-only flag should change the nginx config server part - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:150 @ 04/04/23 18:28:28.133&#xA;&lt; Exit [It] proxy-ssl-location-only flag should change the nginx config server part - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:150 @ 04/04/23 18:29:01.214 (33.081s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:01.214&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:01.431 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* with invalid auth-url should deny whole location should add error to the config" classname="nginx-ingress-controller e2e suite" status="passed" time="155.376018795">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:01.431&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:19.232 (2m17.801s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:19.232&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:23.279 (4.047s)&#xA;&gt; Enter [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 04/04/23 18:31:23.279&#xA;&lt; Exit [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 04/04/23 18:31:33.459 (10.18s)&#xA;&gt; Enter [It] should add error to the config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:887 @ 04/04/23 18:31:33.459&#xA;&lt; Exit [It] should add error to the config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:887 @ 04/04/23 18:31:36.583 (3.124s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:36.583&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:36.807 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] SSL should return a self generated SSL certificate" classname="nginx-ingress-controller e2e suite" status="passed" time="12.194301845">
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:36.808&#xA;&lt; Exit [BeforeEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:43.735 (6.927s)&#xA;&gt; Enter [It] should return a self generated SSL certificate - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:29 @ 04/04/23 18:31:43.735&#xA;STEP: checking SSL Certificate using the NGINX IP address - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:30 @ 04/04/23 18:31:43.735&#xA;STEP: checking SSL Certificate using the NGINX catch all server - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:45 @ 04/04/23 18:31:48.771&#xA;&lt; Exit [It] should return a self generated SSL certificate - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:29 @ 04/04/23 18:31:48.798 (5.063s)&#xA;&gt; Enter [AfterEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:48.798&#xA;&lt; Exit [AfterEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:49.002 (204ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should return status code 200 when signed in after auth backend is deleted" classname="nginx-ingress-controller e2e suite" status="passed" time="68.873387156">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:49.002&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:55.884 (6.881s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:55.884&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:31:59.898 (4.014s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:31:59.898&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:32:04.919&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:32:15.067&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 04/04/23 18:32:25.279&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 04/04/23 18:32:35.453&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 04/04/23 18:32:50.643 (50.746s)&#xA;&gt; Enter [It] should return status code 200 when signed in after auth backend is deleted  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:772 @ 04/04/23 18:32:50.643&#xA;&lt; Exit [It] should return status code 200 when signed in after auth backend is deleted  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:772 @ 04/04/23 18:32:57.666 (7.022s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:57.666&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:57.876 (210ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-protocols" classname="nginx-ingress-controller e2e suite" status="passed" time="21.67574864">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:57.876&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:04.793 (6.917s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:33:04.793&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:33:08.814 (4.021s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-protocols - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:122 @ 04/04/23 18:33:08.814&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-protocols - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:122 @ 04/04/23 18:33:19.338 (10.524s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:19.338&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:19.552 (213ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should be disabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="10.227903498">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:19.552&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:26.442 (6.89s)&#xA;&gt; Enter [It] should be disabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:32 @ 04/04/23 18:33:26.442&#xA;&lt; Exit [It] should be disabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:32 @ 04/04/23 18:33:29.606 (3.164s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:29.606&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:29.78 (174ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinitymode Balanced affinity mode should balance" classname="nginx-ingress-controller e2e suite" status="passed" time="25.347106236">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:29.78&#xA;&lt; Exit [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:36.668 (6.887s)&#xA;&gt; Enter [It] Balanced affinity mode should balance - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:34 @ 04/04/23 18:33:36.668&#xA;&lt; Exit [It] Balanced affinity mode should balance - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:34 @ 04/04/23 18:33:54.927 (18.259s)&#xA;&gt; Enter [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:54.927&#xA;&lt; Exit [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:55.127 (200ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-next-upstream should build proxy next upstream using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="29.357042378">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:55.128&#xA;&lt; Exit [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:03.016 (7.888s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:32 @ 04/04/23 18:34:03.016&#xA;&lt; Exit [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:32 @ 04/04/23 18:34:07.036 (4.021s)&#xA;&gt; Enter [It] should build proxy next upstream using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:36 @ 04/04/23 18:34:07.036&#xA;&lt; Exit [It] should build proxy next upstream using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:36 @ 04/04/23 18:34:24.255 (17.219s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:24.255&#xA;&lt; Exit [AfterEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:24.485 (230ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to off" classname="nginx-ingress-controller e2e suite" status="passed" time="21.295257079">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:24.485&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:31.385 (6.9s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:34:31.385&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:34:35.427 (4.042s)&#xA;&gt; Enter [It] should set proxy_redirect to off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:36 @ 04/04/23 18:34:35.427&#xA;&lt; Exit [It] should set proxy_redirect to off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:36 @ 04/04/23 18:34:45.603 (10.176s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:45.603&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:45.78 (178ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should not exists opentracing_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="28.296945502">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:45.781&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:52.66 (6.879s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:34:52.66&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:34:56.689 (4.029s)&#xA;&gt; Enter [It] should not exists opentracing_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:100 @ 04/04/23 18:34:56.689&#xA;&lt; Exit [It] should not exists opentracing_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:100 @ 04/04/23 18:35:13.844 (17.155s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:13.844&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:14.078 (234ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:35:14.078&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:35:14.078 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] influxdb-* when influxdb is enabled should send the request metric to the influxdb server" classname="nginx-ingress-controller e2e suite" status="passed" time="45.55392001">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:14.078&#xA;&lt; Exit [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:22.011 (7.933s)&#xA;&gt; Enter [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:42 @ 04/04/23 18:35:22.011&#xA;&lt; Exit [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:42 @ 04/04/23 18:35:38.056 (16.045s)&#xA;&gt; Enter [It] should send the request metric to the influxdb server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:48 @ 04/04/23 18:35:38.056&#xA;&lt; Exit [It] should send the request metric to the influxdb server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:48 @ 04/04/23 18:35:59.417 (21.362s)&#xA;&gt; Enter [AfterEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:59.417&#xA;&lt; Exit [AfterEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:59.632 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should enable opentracing using datadog" classname="nginx-ingress-controller e2e suite" status="passed" time="31.178047596">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:59.632&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:06.509 (6.876s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:36:06.509&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:36:10.532 (4.023s)&#xA;&gt; Enter [It] should enable opentracing using datadog - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:241 @ 04/04/23 18:36:10.532&#xA;&lt; Exit [It] should enable opentracing using datadog - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:241 @ 04/04/23 18:36:30.574 (20.042s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:30.574&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:30.81 (237ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:36:30.81&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:36:30.81 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] definition without host should set ingress details variables for ingresses without a host" classname="nginx-ingress-controller e2e suite" status="passed" time="21.276931352">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:30.811&#xA;&lt; Exit [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:37.689 (6.878s)&#xA;&gt; Enter [It] should set ingress details variables for ingresses without a host - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:34 @ 04/04/23 18:36:37.689&#xA;&lt; Exit [It] should set ingress details variables for ingresses without a host - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:34 @ 04/04/23 18:36:51.912 (14.223s)&#xA;&gt; Enter [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:51.912&#xA;&lt; Exit [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:52.088 (176ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] main-snippet should add value of main-snippet setting to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="18.324672874">
-              <system-err>&gt; Enter [BeforeEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:52.088&#xA;&lt; Exit [BeforeEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:59.999 (7.911s)&#xA;&gt; Enter [It] should add value of main-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/main_snippet.go:31 @ 04/04/23 18:36:59.999&#xA;&lt; Exit [It] should add value of main-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/main_snippet.go:31 @ 04/04/23 18:37:10.187 (10.188s)&#xA;&gt; Enter [AfterEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:10.187&#xA;&lt; Exit [AfterEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:10.413 (225ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="28.358772993">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:10.413&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:17.279 (6.866s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:37:17.279&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:37:21.337 (4.058s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:532 @ 04/04/23 18:37:21.337&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;DoCananry&#39; and header-value is &#39;DoCanary&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:557 @ 04/04/23 18:37:38.545&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:532 @ 04/04/23 18:37:38.552 (17.215s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:38.552&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:38.772 (219ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should serve Ingress when class is added" classname="nginx-ingress-controller e2e suite" status="passed" time="36.494045555">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:38.772&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:45.664 (6.892s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:37:45.664&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:37:49.681 (4.017s)&#xA;&gt; Enter [It] should serve Ingress when class is added - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:257 @ 04/04/23 18:37:49.681&#xA;&lt; Exit [It] should serve Ingress when class is added - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:257 @ 04/04/23 18:38:15.087 (25.406s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:15.087&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:15.266 (179ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - GRPC should return OK for service with backend protocol GRPCS" classname="nginx-ingress-controller e2e suite" status="passed" time="24.346743802">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:15.266&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:23.144 (7.877s)&#xA;&gt; Enter [It] should return OK for service with backend protocol GRPCS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:199 @ 04/04/23 18:38:23.144&#xA;&lt; Exit [It] should return OK for service with backend protocol GRPCS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:199 @ 04/04/23 18:38:39.406 (16.262s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:39.406&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:39.613 (207ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] annotation-global-rate-limit generates correct configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="44.912006655">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:39.613&#xA;&lt; Exit [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:46.507 (6.894s)&#xA;&gt; Enter [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:34 @ 04/04/23 18:38:46.507&#xA;&lt; Exit [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:34 @ 04/04/23 18:38:50.531 (4.023s)&#xA;&gt; Enter [It] generates correct configuration - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:38 @ 04/04/23 18:38:50.531&#xA;STEP: regenerating the correct configuration after update - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:65 @ 04/04/23 18:39:12.735&#xA;&lt; Exit [It] generates correct configuration - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:38 @ 04/04/23 18:39:23.972 (33.441s)&#xA;&gt; Enter [AfterEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:23.972&#xA;&lt; Exit [AfterEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:24.525 (553ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="44.961262468">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:24.526&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:32.928 (8.402s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:39:32.928&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:39:36.954 (4.026s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:67 @ 04/04/23 18:39:36.954&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:67 @ 04/04/23 18:40:09.289 (32.335s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:09.289&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:09.487 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] x-forwarded-prefix should not add X-Forwarded-Prefix if the annotation value is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="21.334669278">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:09.487&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:16.38 (6.893s)&#xA;&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 04/04/23 18:40:16.38&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 04/04/23 18:40:20.419 (4.039s)&#xA;&gt; Enter [It] should not add X-Forwarded-Prefix if the annotation value is empty - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:57 @ 04/04/23 18:40:20.419&#xA;&lt; Exit [It] should not add X-Forwarded-Prefix if the annotation value is empty - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:57 @ 04/04/23 18:40:30.626 (10.207s)&#xA;&gt; Enter [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:30.626&#xA;&lt; Exit [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:30.822 (196ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress without IngressClass configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="28.41523425">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:30.822&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:37.735 (6.913s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:40:37.735&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:40:41.759 (4.024s)&#xA;&gt; Enter [It] should ignore Ingress without IngressClass configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:164 @ 04/04/23 18:40:41.759&#xA;&lt; Exit [It] should ignore Ingress without IngressClass configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:164 @ 04/04/23 18:40:58.984 (17.225s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:58.984&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:59.238 (254ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set cookie with domain" classname="nginx-ingress-controller e2e suite" status="passed" time="29.966187459">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.257&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:26.759 (7.502s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:04:26.759&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:04:38.804 (12.045s)&#xA;&gt; Enter [It] should set cookie with domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:225 @ 04/04/23 18:04:38.804&#xA;&lt; Exit [It] should set cookie with domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:225 @ 04/04/23 18:04:49.017 (10.213s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:04:49.017&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:04:49.223 (207ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Nil Service Backend should return 404 when backend service is nil" classname="nginx-ingress-controller e2e suite" status="passed" time="29.349579291">
-              <system-err>&gt; Enter [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:49.225&#xA;&lt; Exit [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:57.104 (7.879s)&#xA;&gt; Enter [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:34 @ 04/04/23 18:04:57.104&#xA;&lt; Exit [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:34 @ 04/04/23 18:05:01.132 (4.029s)&#xA;&gt; Enter [It] should return 404 when backend service is nil - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:38 @ 04/04/23 18:05:01.132&#xA;STEP: setting an ingress with a nil backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:39 @ 04/04/23 18:05:01.132&#xA;&lt; Exit [It] should return 404 when backend service is nil - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:38 @ 04/04/23 18:05:18.375 (17.242s)&#xA;&gt; Enter [AfterEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:18.375&#xA;&lt; Exit [AfterEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:18.574 (200ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set the path to /something on the generated cookie" classname="nginx-ingress-controller e2e suite" status="passed" time="21.311039096000002">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:18.575&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:25.47 (6.895s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:05:25.47&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:05:29.501 (4.031s)&#xA;&gt; Enter [It] should set the path to /something on the generated cookie - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:99 @ 04/04/23 18:05:29.501&#xA;&lt; Exit [It] should set the path to /something on the generated cookie - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:99 @ 04/04/23 18:05:39.685 (10.184s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:39.685&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:39.886 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] block-* should block CIDRs defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="28.417865083">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:39.886&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:46.798 (6.912s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:05:46.798&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 04/04/23 18:05:57.853 (11.055s)&#xA;&gt; Enter [It] should block CIDRs defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:38 @ 04/04/23 18:05:57.853&#xA;&lt; Exit [It] should block CIDRs defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:38 @ 04/04/23 18:06:08.065 (10.213s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:08.065&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:08.304 (239ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-read-timeout should set valid proxy read timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="28.373125957">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:08.304&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:15.196 (6.891s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 04/04/23 18:06:15.196&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 04/04/23 18:06:19.22 (4.024s)&#xA;&gt; Enter [It] should set valid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:36 @ 04/04/23 18:06:19.22&#xA;&lt; Exit [It] should set valid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:36 @ 04/04/23 18:06:36.431 (17.211s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:36.431&#xA;&lt; Exit [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:36.678 (246ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-send-timeout should set valid proxy send timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="28.283099319">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:36.678&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:43.562 (6.884s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 04/04/23 18:06:43.562&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 04/04/23 18:06:47.588 (4.026s)&#xA;&gt; Enter [It] should set valid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:36 @ 04/04/23 18:06:47.588&#xA;&lt; Exit [It] should set valid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:36 @ 04/04/23 18:07:04.782 (17.194s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:04.782&#xA;&lt; Exit [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:04.961 (179ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="33.351072485">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:04.961&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:12.853 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:12.853&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:07:20.912 (8.059s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:426 @ 04/04/23 18:07:20.912&#xA;STEP: routing requests to the canary upstream when header is set to &#39;DoCanary&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:451 @ 04/04/23 18:07:38.088&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:460 @ 04/04/23 18:07:38.092&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:469 @ 04/04/23 18:07:38.097&#xA;STEP: routing requests to the mainline upstream when header is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:478 @ 04/04/23 18:07:38.101&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:426 @ 04/04/23 18:07:38.105 (17.192s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:38.105&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:38.312 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param keeps processing new ingresses even if one of the existing ingresses is misconfigured" classname="nginx-ingress-controller e2e suite" status="passed" time="50.940964633">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:38.313&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:45.57 (7.258s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:07:45.57&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:07:49.597 (4.027s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:07:49.597&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 04/04/23 18:08:17.835 (28.238s)&#xA;&gt; Enter [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:698 @ 04/04/23 18:08:17.835&#xA;&lt; Exit [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:698 @ 04/04/23 18:08:29.028 (11.193s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:29.028&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:29.254 (225ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if mainline ingress is created after the canary ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="33.290599437">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:29.254&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:37.146 (7.892s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:08:37.146&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:08:45.193 (8.047s)&#xA;&gt; Enter [It] should route requests to the correct upstream if mainline ingress is created after the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:206 @ 04/04/23 18:08:45.193&#xA;STEP: routing requests destined for the mainline ingress to the mainelin upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:231 @ 04/04/23 18:09:02.324&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:240 @ 04/04/23 18:09:02.332&#xA;&lt; Exit [It] should route requests to the correct upstream if mainline ingress is created after the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:206 @ 04/04/23 18:09:02.337 (17.144s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:02.337&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:02.545 (208ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with snippet" classname="nginx-ingress-controller e2e suite" status="passed" time="21.322032369">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:02.545&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:09.432 (6.887s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:09:09.432&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:09:13.454 (4.022s)&#xA;&gt; Enter [It] should enable modsecurity with snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:91 @ 04/04/23 18:09:13.454&#xA;&lt; Exit [It] should enable modsecurity with snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:91 @ 04/04/23 18:09:23.682 (10.227s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:23.682&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:09:23.867 (185ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] settings-global-rate-limit generates correct NGINX configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="162.380955721">
-              <system-err>&gt; Enter [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:09:23.867&#xA;&lt; Exit [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:41.632 (2m17.765s)&#xA;&gt; Enter [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:34 @ 04/04/23 18:11:41.632&#xA;&lt; Exit [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:34 @ 04/04/23 18:11:45.686 (4.054s)&#xA;&gt; Enter [It] generates correct NGINX configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:38 @ 04/04/23 18:11:45.686&#xA;STEP: generating correct defaults - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:43 @ 04/04/23 18:11:52.711&#xA;STEP: applying customizations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:61 @ 04/04/23 18:11:55.865&#xA;&lt; Exit [It] generates correct NGINX configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:38 @ 04/04/23 18:12:06.074 (20.388s)&#xA;&gt; Enter [AfterEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:06.074&#xA;&lt; Exit [AfterEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:06.248 (175ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Load Balancer] EWMA does not fail requests" classname="nginx-ingress-controller e2e suite" status="passed" time="33.046314908">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:06.248&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:13.645 (7.397s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:34 @ 04/04/23 18:12:13.645&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:34 @ 04/04/23 18:12:24.689 (11.044s)&#xA;&gt; Enter [It] does not fail requests - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:42 @ 04/04/23 18:12:24.689&#xA;Apr  4 18:12:39.085: INFO: Request distribution: map[echo-7b6bf466cc-4gqhv:16 echo-7b6bf466cc-kbjqx:9 echo-7b6bf466cc-scqj9:5]&#xA;&lt; Exit [It] does not fail requests - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:42 @ 04/04/23 18:12:39.085 (14.396s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:39.085&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:39.295 (210ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should expose headers for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="22.277341561">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:39.295&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:47.18 (7.884s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:12:47.18&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:12:51.204 (4.024s)&#xA;&gt; Enter [It] should expose headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:153 @ 04/04/23 18:12:51.204&#xA;&lt; Exit [It] should expose headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:153 @ 04/04/23 18:13:01.392 (10.189s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:01.392&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:01.572 (180ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* canary affinity behavior always routes traffic to canary if first request was affinitized to canary (default behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="40.738608182">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:01.573&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:08.45 (6.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:13:08.45&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:13:16.493 (8.042s)&#xA;&gt; Enter [It] always routes traffic to canary if first request was affinitized to canary (default behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:943 @ 04/04/23 18:13:16.493&#xA;&lt; Exit [It] always routes traffic to canary if first request was affinitized to canary (default behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:943 @ 04/04/23 18:13:42.089 (25.596s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:42.089&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:42.311 (222ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should disable the log-format-escape-none" classname="nginx-ingress-controller e2e suite" status="passed" time="28.271527881">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:42.312&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:49.227 (6.915s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:13:49.227&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:14:00.268 (11.041s)&#xA;&gt; Enter [It] should disable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:71 @ 04/04/23 18:14:00.268&#xA;&lt; Exit [It] should disable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:71 @ 04/04/23 18:14:10.406 (10.138s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:10.406&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:10.583 (177ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to default" classname="nginx-ingress-controller e2e suite" status="passed" time="21.825938851">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:10.584&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:17.985 (7.402s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:14:17.985&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:14:22.015 (4.03s)&#xA;&gt; Enter [It] should set proxy_redirect to default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:52 @ 04/04/23 18:14:22.015&#xA;&lt; Exit [It] should set proxy_redirect to default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:52 @ 04/04/23 18:14:32.238 (10.222s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:32.238&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:32.409 (172ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keepalive connection to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="29.30727806">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:32.41&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:40.329 (7.92s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:14:40.329&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:14:51.355 (11.026s)&#xA;&gt; Enter [It] should set keepalive connection to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:59 @ 04/04/23 18:14:51.356&#xA;&lt; Exit [It] should set keepalive connection to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:59 @ 04/04/23 18:15:01.513 (10.157s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:01.513&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:01.717 (204ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to https:// and use proxy_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="21.399584297">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:01.717&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:08.628 (6.911s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:15:08.628&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:15:12.654 (4.026s)&#xA;&gt; Enter [It] should set backend protocol to https:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:34 @ 04/04/23 18:15:12.654&#xA;&lt; Exit [It] should set backend protocol to https:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:34 @ 04/04/23 18:15:22.863 (10.21s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:22.863&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:23.117 (253ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with no value should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="29.309952801">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:23.117&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:31.017 (7.9s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:15:31.017&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:15:35.052 (4.035s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:372 @ 04/04/23 18:15:35.052&#xA;STEP: routing requests to the canary upstream when header is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:395 @ 04/04/23 18:15:52.235&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:404 @ 04/04/23 18:15:52.237&#xA;STEP: routing requests to the mainline upstream when header is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:414 @ 04/04/23 18:15:52.239&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:372 @ 04/04/23 18:15:52.24 (17.188s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:52.24&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:52.427 (187ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should exists opentracing_location_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="29.742956364">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:52.428&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:59.303 (6.876s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:15:59.303&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:16:03.326 (4.022s)&#xA;&gt; Enter [It] should exists opentracing_location_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:145 @ 04/04/23 18:16:03.326&#xA;&lt; Exit [It] should exists opentracing_location_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:145 @ 04/04/23 18:16:20.959 (17.634s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:20.959&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:22.171 (1.211s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:16:22.171&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:16:22.171 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] limit-rate Check limit-rate annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="27.8652561">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:22.172&#xA;&lt; Exit [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:31.372 (9.2s)&#xA;&gt; Enter [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:33 @ 04/04/23 18:16:31.372&#xA;&lt; Exit [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:33 @ 04/04/23 18:16:35.41 (4.038s)&#xA;&gt; Enter [It] Check limit-rate annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:37 @ 04/04/23 18:16:35.41&#xA;&lt; Exit [It] Check limit-rate annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:37 @ 04/04/23 18:16:49.822 (14.412s)&#xA;&gt; Enter [AfterEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:49.822&#xA;&lt; Exit [AfterEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:50.037 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] configmap stream-snippet should add value of stream-snippet via config map to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="34.311850272">
-              <system-err>&gt; Enter [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:50.037&#xA;&lt; Exit [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:57.908 (7.87s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:38 @ 04/04/23 18:16:57.908&#xA;&lt; Exit [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:38 @ 04/04/23 18:17:01.931 (4.024s)&#xA;&gt; Enter [It] should add value of stream-snippet via config map to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:42 @ 04/04/23 18:17:01.931&#xA;&lt; Exit [It] should add value of stream-snippet via config map to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:42 @ 04/04/23 18:17:24.158 (22.227s)&#xA;&gt; Enter [AfterEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:24.158&#xA;&lt; Exit [AfterEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:24.349 (191ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] upstream-hash-by-* should connect to the same pod" classname="nginx-ingress-controller e2e suite" status="passed" time="45.553942925">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:24.35&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:31.239 (6.889s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 04/04/23 18:17:31.239&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 04/04/23 18:17:39.264 (8.025s)&#xA;&gt; Enter [It] should connect to the same pod - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:83 @ 04/04/23 18:17:39.264&#xA;&lt; Exit [It] should connect to the same pod - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:83 @ 04/04/23 18:18:09.666 (30.402s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:09.666&#xA;&lt; Exit [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:09.903 (237ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is set with HTTP/2" classname="nginx-ingress-controller e2e suite" status="passed" time="31.415945068">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:09.904&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:16.786 (6.882s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:18:16.786&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:18:20.804 (4.018s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:18:20.804&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 04/04/23 18:18:35.029 (14.226s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is set with HTTP/2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:609 @ 04/04/23 18:18:35.029&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is set with HTTP/2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:609 @ 04/04/23 18:18:41.107 (6.078s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:41.107&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:41.32 (212ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret" classname="nginx-ingress-controller e2e suite" status="passed" time="22.937247348">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:41.32&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:49.195 (7.875s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:18:49.195&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:18:53.217 (4.022s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:37 @ 04/04/23 18:18:53.217&#xA;&lt; Exit [It] should set valid proxy-ssl-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:37 @ 04/04/23 18:19:04.077 (10.86s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:04.077&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:04.257 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES" classname="nginx-ingress-controller e2e suite" status="passed" time="23.410135069">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:04.258&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:12.153 (7.895s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:19:12.153&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:19:16.174 (4.021s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:94 @ 04/04/23 18:19:16.174&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:94 @ 04/04/23 18:19:27.319 (11.146s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:27.32&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:27.668 (348ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to &#39;&#39; and use fastcgi_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="21.643801846">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:27.668&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:34.827 (7.159s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:19:34.827&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:19:38.85 (4.023s)&#xA;&gt; Enter [It] should set backend protocol to &#39;&#39; and use fastcgi_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:94 @ 04/04/23 18:19:38.85&#xA;&lt; Exit [It] should set backend protocol to &#39;&#39; and use fastcgi_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:94 @ 04/04/23 18:19:49.066 (10.216s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:49.066&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:49.312 (246ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return status 502 for service type=ExternalName with an invalid host" classname="nginx-ingress-controller e2e suite" status="passed" time="24.223123224">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:49.312&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:57.192 (7.879s)&#xA;&gt; Enter [It] should return status 502 for service type=ExternalName with an invalid host - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:153 @ 04/04/23 18:19:57.192&#xA;&lt; Exit [It] should return status 502 for service type=ExternalName with an invalid host - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:153 @ 04/04/23 18:20:12.695 (15.504s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:12.695&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:13.536 (840ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should set request-redirect when global-auth-request-redirect is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="56.08885726">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:13.536&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:20.628 (7.092s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:20:20.628&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:20:28.704 (8.077s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:20:28.704&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:20:28.704&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:20:38.882&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:20:49.057&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:20:59.272 (30.567s)&#xA;&gt; Enter [It] should set request-redirect when global-auth-request-redirect is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:237 @ 04/04/23 18:20:59.272&#xA;STEP: Adding a global-auth-request-redirect to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:242 @ 04/04/23 18:20:59.272&#xA;&lt; Exit [It] should set request-redirect when global-auth-request-redirect is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:237 @ 04/04/23 18:21:09.45 (10.178s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:09.45&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:09.625 (175ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] service-upstream when enabling in the configmap and disabling in the annotations should not use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="28.500641833">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:09.625&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:16.495 (6.87s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:21:16.495&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:21:20.516 (4.021s)&#xA;&gt; Enter [It] should not use the Service Cluster IP and Port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:99 @ 04/04/23 18:21:20.516&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:113 @ 04/04/23 18:21:37.731&#xA;STEP: checking if the Service Cluster IP and Port are not used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:120 @ 04/04/23 18:21:37.737&#xA;&lt; Exit [It] should not use the Service Cluster IP and Port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:99 @ 04/04/23 18:21:37.9 (17.384s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:37.9&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:21:38.126 (226ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-alias should return status code 200 for host &#39;foo&#39; and &#39;bar&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="22.287533212">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:38.126&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:21:46.024 (7.897s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:21:46.024&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:21:50.044 (4.02s)&#xA;&gt; Enter [It] should return status code 200 for host &#39;foo&#39; and &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:62 @ 04/04/23 18:21:50.044&#xA;&lt; Exit [It] should return status code 200 for host &#39;foo&#39; and &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:62 @ 04/04/23 18:22:00.233 (10.189s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:00.233&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:00.414 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should not configure log-format escape by default" classname="nginx-ingress-controller e2e suite" status="passed" time="21.319101474">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:00.414&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:07.306 (6.892s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:22:07.306&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 04/04/23 18:22:18.341 (11.035s)&#xA;&gt; Enter [It] should not configure log-format escape by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:40 @ 04/04/23 18:22:18.341&#xA;&lt; Exit [It] should not configure log-format escape by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:40 @ 04/04/23 18:22:21.446 (3.105s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:21.446&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:21.733 (287ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if the mainline ingress is modified" classname="nginx-ingress-controller e2e suite" status="passed" time="168.05341063">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:21.733&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:39.876 (2m18.143s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:24:39.876&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:24:47.956 (8.08s)&#xA;&gt; Enter [It] should route requests to the correct upstream if the mainline ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:250 @ 04/04/23 18:24:47.956&#xA;STEP: routing requests destined fro the mainline ingress to the mainline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:288 @ 04/04/23 18:25:09.571&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:297 @ 04/04/23 18:25:09.578&#xA;&lt; Exit [It] should route requests to the correct upstream if the mainline ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:250 @ 04/04/23 18:25:09.586 (21.629s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:09.586&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:09.787 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] upstream-hash-by-* should connect to the same subset of pods" classname="nginx-ingress-controller e2e suite" status="passed" time="45.556284939">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:09.787&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:16.668 (6.881s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 04/04/23 18:25:16.668&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 04/04/23 18:25:24.696 (8.028s)&#xA;&gt; Enter [It] should connect to the same subset of pods - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:92 @ 04/04/23 18:25:24.696&#xA;&lt; Exit [It] should connect to the same subset of pods - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:92 @ 04/04/23 18:25:55.101 (30.405s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:55.101&#xA;&lt; Exit [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:55.343 (242ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] redirect to HTTPS should redirect from HTTP to HTTPS when secret is missing" classname="nginx-ingress-controller e2e suite" status="passed" time="24.373667503">
-              <system-err>&gt; Enter [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:55.344&#xA;&lt; Exit [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:02.277 (6.934s)&#xA;&gt; Enter [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:32 @ 04/04/23 18:26:02.277&#xA;&lt; Exit [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:32 @ 04/04/23 18:26:06.299 (4.021s)&#xA;&gt; Enter [It] should redirect from HTTP to HTTPS when secret is missing - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:36 @ 04/04/23 18:26:06.299&#xA;&lt; Exit [It] should redirect from HTTP to HTTPS when secret is missing - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:36 @ 04/04/23 18:26:19.516 (13.217s)&#xA;&gt; Enter [AfterEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:19.516&#xA;&lt; Exit [AfterEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:19.717 (201ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] configmap server-snippet should add global server-snippet and drop annotations per admin config" classname="nginx-ingress-controller e2e suite" status="passed" time="43.438812584">
-              <system-err>&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:19.718&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:26.668 (6.951s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 04/04/23 18:26:26.668&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 04/04/23 18:26:30.695 (4.027s)&#xA;&gt; Enter [It] should add global server-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:92 @ 04/04/23 18:26:30.695&#xA;&lt; Exit [It] should add global server-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:92 @ 04/04/23 18:27:02.982 (32.287s)&#xA;&gt; Enter [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:02.982&#xA;&lt; Exit [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:03.156 (175ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set cookie with expires" classname="nginx-ingress-controller e2e suite" status="passed" time="22.389477827">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:03.157&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:11.021 (7.864s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:27:11.021&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:27:15.049 (4.028s)&#xA;&gt; Enter [It] should set cookie with expires - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:194 @ 04/04/23 18:27:15.049&#xA;&lt; Exit [It] should set cookie with expires - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:194 @ 04/04/23 18:27:25.315 (10.266s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:25.315&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:25.546 (231ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - matching origin with wildcard origin (2 subdomains)" classname="nginx-ingress-controller e2e suite" status="passed" time="18.14890018">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:25.547&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:32.464 (6.917s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:27:32.464&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:27:36.484 (4.02s)&#xA;&gt; Enter [It] should allow - matching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:425 @ 04/04/23 18:27:36.484&#xA;&lt; Exit [It] should allow - matching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:425 @ 04/04/23 18:27:43.52 (7.037s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:43.52&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:43.695 (175ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-multi-accept should be enabled when set to true" classname="nginx-ingress-controller e2e suite" status="passed" time="17.346789678">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:43.696&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:50.592 (6.896s)&#xA;&gt; Enter [It] should be enabled when set to true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:39 @ 04/04/23 18:27:50.592&#xA;&lt; Exit [It] should be enabled when set to true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:39 @ 04/04/23 18:28:00.821 (10.229s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:00.821&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:01.043 (221ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place" classname="nginx-ingress-controller e2e suite" status="passed" time="30.46844143">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:01.043&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:08.918 (7.875s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:28:08.918&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 04/04/23 18:28:12.942 (4.024s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:102 @ 04/04/23 18:28:12.942&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:102 @ 04/04/23 18:28:31.293 (18.352s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:31.293&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:31.512 (218ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="49.899045109">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:31.512&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:38.394 (6.882s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:28:38.394&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:28:46.454 (8.06s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:28:46.454&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 04/04/23 18:28:46.454&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 04/04/23 18:28:56.618&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 04/04/23 18:29:06.764&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 04/04/23 18:29:16.991 (30.537s)&#xA;&gt; Enter [It] should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:126 @ 04/04/23 18:29:16.991&#xA;STEP: Adding an ingress rule for /bar with annotation enable-global-auth = false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:128 @ 04/04/23 18:29:16.991&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:140 @ 04/04/23 18:29:21.174&#xA;STEP: Sending a request to whitelisted service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:147 @ 04/04/23 18:29:21.184&#xA;&lt; Exit [It] should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:126 @ 04/04/23 18:29:21.191 (4.2s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:21.191&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:21.411 (220ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration when only backends change handles an annotation change" classname="nginx-ingress-controller e2e suite" status="passed" time="28.208007184">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:21.411&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:28.853 (7.441s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:29:28.853&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:29:43.082 (14.23s)&#xA;&gt; Enter [It] handles an annotation change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:171 @ 04/04/23 18:29:43.082&#xA;&lt; Exit [It] handles an annotation change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:171 @ 04/04/23 18:29:49.435 (6.352s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:49.435&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:49.619 (185ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] server-tokens should exists Server header in the response when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="28.239544805">
-              <system-err>&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:49.62&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:56.496 (6.875s)&#xA;&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 04/04/23 18:29:56.496&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 04/04/23 18:30:00.515 (4.019s)&#xA;&gt; Enter [It] should exists Server header in the response when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:50 @ 04/04/23 18:30:00.515&#xA;&lt; Exit [It] should exists Server header in the response when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:50 @ 04/04/23 18:30:17.68 (17.166s)&#xA;&gt; Enter [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:17.68&#xA;&lt; Exit [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:17.86 (179ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName works with external name set to incomplete fqdn" classname="nginx-ingress-controller e2e suite" status="passed" time="21.343180997">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:17.86&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:24.767 (6.907s)&#xA;&gt; Enter [It] works with external name set to incomplete fqdn - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:62 @ 04/04/23 18:30:24.767&#xA;&lt; Exit [It] works with external name set to incomplete fqdn - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:62 @ 04/04/23 18:30:38.985 (14.218s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:38.985&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:39.203 (218ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Debug CLI should list the backend servers" classname="nginx-ingress-controller e2e suite" status="passed" time="22.378504517">
-              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:39.204&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:47.098 (7.895s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:30:47.098&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 04/04/23 18:30:51.122 (4.023s)&#xA;&gt; Enter [It] should list the backend servers - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:37 @ 04/04/23 18:30:51.122&#xA;&lt; Exit [It] should list the backend servers - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:37 @ 04/04/23 18:31:01.391 (10.269s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:01.391&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:01.582 (191ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* does not crash when canary ingress has multiple paths to the same non-matching backend" classname="nginx-ingress-controller e2e suite" status="passed" time="32.459393771">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:01.582&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:08.498 (6.915s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:31:08.498&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:31:16.564 (8.066s)&#xA;&gt; Enter [It] does not crash when canary ingress has multiple paths to the same non-matching backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:915 @ 04/04/23 18:31:16.564&#xA;&lt; Exit [It] does not crash when canary ingress has multiple paths to the same non-matching backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:915 @ 04/04/23 18:31:33.8 (17.236s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:33.8&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:34.042 (242ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] service-upstream when using the default value (false) and enabling in the annotations should use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="21.449933338">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:34.042&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:40.946 (6.904s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:31:40.946&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:31:44.981 (4.035s)&#xA;&gt; Enter [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:41 @ 04/04/23 18:31:44.981&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:53 @ 04/04/23 18:31:55.094&#xA;STEP: checking if the Service Cluster IP and Port are used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:60 @ 04/04/23 18:31:55.098&#xA;&lt; Exit [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:41 @ 04/04/23 18:31:55.252 (10.271s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:55.252&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:31:55.492 (240ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity when enable-owasp-modsecurity-crs is set to true" classname="nginx-ingress-controller e2e suite" status="passed" time="40.260077601">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:31:55.493&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:02.366 (6.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:32:02.366&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:32:06.394 (4.028s)&#xA;&gt; Enter [It] should enable modsecurity when enable-owasp-modsecurity-crs is set to true - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:225 @ 04/04/23 18:32:06.394&#xA;&lt; Exit [It] should enable modsecurity when enable-owasp-modsecurity-crs is set to true - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:225 @ 04/04/23 18:32:35.569 (29.175s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:35.569&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:35.753 (184ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Security] Pod Security Policies with volumes should be running with a Pod Security Policy" classname="nginx-ingress-controller e2e suite" status="skipped" time="7.104968031">
-              <skipped message="skipped - PSP not supported in this version"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:35.753&#xA;&lt; Exit [BeforeEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:42.66 (6.907s)&#xA;&gt; Enter [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:40 @ 04/04/23 18:32:42.66&#xA;[SKIPPED] PSP not supported in this version&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:53 @ 04/04/23 18:32:42.661&#xA;&lt; Exit [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:40 @ 04/04/23 18:32:42.661 (1ms)&#xA;&gt; Enter [AfterEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:42.661&#xA;&lt; Exit [AfterEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:42.858 (197ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] permanent-redirect permanent-redirect-code should respond with a custom redirect code" classname="nginx-ingress-controller e2e suite" status="passed" time="17.246524814">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:42.858&#xA;&lt; Exit [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:32:49.722 (6.864s)&#xA;&gt; Enter [It] should respond with a custom redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:61 @ 04/04/23 18:32:49.722&#xA;STEP: setting permanent-redirect-code annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:62 @ 04/04/23 18:32:49.722&#xA;STEP: sending request to redirected URL path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:82 @ 04/04/23 18:32:59.899&#xA;&lt; Exit [It] should respond with a custom redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:61 @ 04/04/23 18:32:59.901 (10.18s)&#xA;&gt; Enter [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:32:59.901&#xA;&lt; Exit [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:00.105 (203ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check proxy header hash size should set proxy-headers-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="29.32779995">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:00.105&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:07.991 (7.886s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:33:07.991&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:33:19.06 (11.069s)&#xA;&gt; Enter [It] should set proxy-headers-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:60 @ 04/04/23 18:33:19.06&#xA;&lt; Exit [It] should set proxy-headers-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:60 @ 04/04/23 18:33:29.206 (10.146s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:29.206&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:29.433 (227ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow correct origins - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="20.137438453">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:29.433&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:36.312 (6.878s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:33:36.312&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:33:42.335 (6.023s)&#xA;&gt; Enter [It] should allow correct origins - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:216 @ 04/04/23 18:33:42.335&#xA;&lt; Exit [It] should allow correct origins - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:216 @ 04/04/23 18:33:49.381 (7.046s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:49.381&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:33:49.571 (190ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should disable default modsecurity conf setting when modsecurity-snippet is specified" classname="nginx-ingress-controller e2e suite" status="passed" time="33.33883845">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:49.571&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:33:56.527 (6.956s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:33:56.527&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:34:00.557 (4.03s)&#xA;&gt; Enter [It] should disable default modsecurity conf setting when modsecurity-snippet is specified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:347 @ 04/04/23 18:34:00.557&#xA;&lt; Exit [It] should disable default modsecurity conf setting when modsecurity-snippet is specified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:347 @ 04/04/23 18:34:22.694 (22.137s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:22.694&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:22.91 (216ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [TCP] tcp-services should expose a TCP service" classname="nginx-ingress-controller e2e suite" status="passed" time="14.259355858">
-              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:22.91&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:29.807 (6.897s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:34:29.807&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:34:29.814 (6ms)&#xA;&gt; Enter [It] should expose a TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:46 @ 04/04/23 18:34:29.814&#xA;&lt; Exit [It] should expose a TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:46 @ 04/04/23 18:34:36.97 (7.156s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:36.97&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:34:37.169 (200ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity through the config map" classname="nginx-ingress-controller e2e suite" status="passed" time="41.348214262">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:37.17&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:34:45.073 (7.903s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:34:45.073&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:34:49.091 (4.018s)&#xA;&gt; Enter [It] should enable modsecurity through the config map - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:264 @ 04/04/23 18:34:49.091&#xA;&lt; Exit [It] should enable modsecurity through the config map - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:264 @ 04/04/23 18:35:18.316 (29.225s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:18.316&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:18.518 (202ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] reuse-port reuse port should be enabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="21.391567166">
-              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:18.518&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:25.408 (6.889s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:35:25.408&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:35:36.46 (11.052s)&#xA;&gt; Enter [It] reuse port should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:38 @ 04/04/23 18:35:36.46&#xA;&lt; Exit [It] reuse port should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:38 @ 04/04/23 18:35:39.652 (3.192s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:39.652&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:35:39.91 (258ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class Without IngressClass Cluster scoped Permission should watch Ingress with correct annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="29.330715429">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:39.91&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:35:46.843 (6.933s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:35:46.843&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:35:50.861 (4.018s)&#xA;&gt; Enter [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 04/04/23 18:35:50.861&#xA;&lt; Exit [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 04/04/23 18:35:58.882 (8.021s)&#xA;&gt; Enter [It] should watch Ingress with correct annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:631 @ 04/04/23 18:35:58.882&#xA;&lt; Exit [It] should watch Ingress with correct annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:631 @ 04/04/23 18:36:09.027 (10.145s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:09.027&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:09.241 (213ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] [PathType] prefix checks should return 404 when prefix /aaa does not match request /aaaccc" classname="nginx-ingress-controller e2e suite" status="passed" time="22.814127467">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:09.241&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:17.143 (7.901s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:31 @ 04/04/23 18:36:17.143&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:31 @ 04/04/23 18:36:21.166 (4.023s)&#xA;&gt; Enter [It] should return 404 when prefix /aaa does not match request /aaaccc - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:35 @ 04/04/23 18:36:21.166&#xA;&lt; Exit [It] should return 404 when prefix /aaa does not match request /aaaccc - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:35 @ 04/04/23 18:36:31.412 (10.246s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:31.412&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:32.055 (644ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] mirror-* should set mirror-target to https://test.env.com/$request_uri" classname="nginx-ingress-controller e2e suite" status="passed" time="22.284646292">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:32.057&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:39.923 (7.865s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:36:39.923&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 04/04/23 18:36:43.949 (4.026s)&#xA;&gt; Enter [It] should set mirror-target to https://test.env.com/$request_uri - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:51 @ 04/04/23 18:36:43.949&#xA;&lt; Exit [It] should set mirror-target to https://test.env.com/$request_uri - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:51 @ 04/04/23 18:36:54.141 (10.192s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:54.141&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:36:54.342 (200ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2" classname="nginx-ingress-controller e2e suite" status="passed" time="23.733756697">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:36:54.342&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:01.212 (6.87s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:37:01.212&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:37:07.231 (6.019s)&#xA;&gt; Enter [It] should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:84 @ 04/04/23 18:37:07.231&#xA;&lt; Exit [It] should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:84 @ 04/04/23 18:37:17.855 (10.625s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:17.855&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:18.076 (221ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should work with use-regex annotation and session-cookie-path" classname="nginx-ingress-controller e2e suite" status="passed" time="22.376606309">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:18.076&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:25.984 (7.907s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:37:25.984&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:37:30.003 (4.019s)&#xA;&gt; Enter [It] should work with use-regex annotation and session-cookie-path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:270 @ 04/04/23 18:37:30.003&#xA;&lt; Exit [It] should work with use-regex annotation and session-cookie-path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:270 @ 04/04/23 18:37:40.203 (10.201s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:40.203&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:40.453 (250ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] ssl-ciphers Add ssl ciphers" classname="nginx-ingress-controller e2e suite" status="passed" time="17.271588421">
-              <system-err>&gt; Enter [BeforeEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:40.453&#xA;&lt; Exit [BeforeEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:47.317 (6.864s)&#xA;&gt; Enter [It] Add ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_ciphers.go:31 @ 04/04/23 18:37:47.317&#xA;&lt; Exit [It] Add ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_ciphers.go:31 @ 04/04/23 18:37:57.514 (10.197s)&#xA;&gt; Enter [AfterEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:57.514&#xA;&lt; Exit [AfterEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:37:57.725 (211ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 200 when authentication is configured and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="23.036361577">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:37:57.725&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:04.608 (6.883s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:38:04.608&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:38:08.636 (4.028s)&#xA;&gt; Enter [It] should return status code 200 when authentication is configured and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:172 @ 04/04/23 18:38:08.636&#xA;&lt; Exit [It] should return status code 200 when authentication is configured and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:172 @ 04/04/23 18:38:20.58 (11.945s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:20.58&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:20.761 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to hello.com goodbye.com" classname="nginx-ingress-controller e2e suite" status="passed" time="21.346400057">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:20.762&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:27.757 (6.995s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:38:27.757&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:38:31.784 (4.027s)&#xA;&gt; Enter [It] should set proxy_redirect to hello.com goodbye.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:68 @ 04/04/23 18:38:31.784&#xA;&lt; Exit [It] should set proxy_redirect to hello.com goodbye.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:68 @ 04/04/23 18:38:41.901 (10.118s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:41.901&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:42.108 (207ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log access-log-path use the default configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="11.334209829">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:42.108&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:50.04 (7.932s)&#xA;&gt; Enter [It] use the default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:32 @ 04/04/23 18:38:50.04&#xA;&lt; Exit [It] use the default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:32 @ 04/04/23 18:38:53.238 (3.198s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:53.238&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:38:53.443 (205ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should not exists opentracing directive" classname="nginx-ingress-controller e2e suite" status="passed" time="28.224804352">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:38:53.443&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:00.319 (6.876s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:39:00.319&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:39:04.344 (4.026s)&#xA;&gt; Enter [It] should not exists opentracing directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:58 @ 04/04/23 18:39:04.344&#xA;&lt; Exit [It] should not exists opentracing directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:58 @ 04/04/23 18:39:21.438 (17.094s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:21.438&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:21.668 (229ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:39:21.668&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:39:21.668 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-catch-all should delete Ingress updated to catch-all" classname="nginx-ingress-controller e2e suite" status="passed" time="33.741887473">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:21.67&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:29.901 (8.232s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:39:29.901&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 04/04/23 18:39:40.966 (11.065s)&#xA;&gt; Enter [It] should delete Ingress updated to catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:81 @ 04/04/23 18:39:40.966&#xA;&lt; Exit [It] should delete Ingress updated to catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:81 @ 04/04/23 18:39:55.23 (14.264s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:55.23&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:39:55.411 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to mainline if canary weight is 0" classname="nginx-ingress-controller e2e suite" status="passed" time="36.538414445">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:39:55.412&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:03.291 (7.88s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:40:03.291&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:40:11.34 (8.049s)&#xA;&gt; Enter [It] should route requests only to mainline if canary weight is 0 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:705 @ 04/04/23 18:40:11.34&#xA;&lt; Exit [It] should route requests only to mainline if canary weight is 0 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:705 @ 04/04/23 18:40:31.758 (20.417s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:31.758&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:40:31.95 (192ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] single ingress - multiple hosts should set the correct $service_name NGINX variable" classname="nginx-ingress-controller e2e suite" status="passed" time="29.458771949">
-              <system-err>&gt; Enter [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:31.951&#xA;&lt; Exit [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:40:39.859 (7.909s)&#xA;&gt; Enter [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:33 @ 04/04/23 18:40:39.859&#xA;&lt; Exit [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:33 @ 04/04/23 18:40:47.913 (8.054s)&#xA;&gt; Enter [It] should set the correct $service_name NGINX variable - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:38 @ 04/04/23 18:40:47.913&#xA;&lt; Exit [It] should set the correct $service_name NGINX variable - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:38 @ 04/04/23 18:41:01.214 (13.301s)&#xA;&gt; Enter [AfterEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:01.214&#xA;&lt; Exit [AfterEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:01.409 (195ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With watch-ingress-without-class flag should watch Ingress with no class and ignore ingress with a different class" classname="nginx-ingress-controller e2e suite" status="passed" time="45.14197691">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:19.256&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:04:27.796 (8.54s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:04:27.796&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:04:39.83 (12.034s)&#xA;&gt; Enter [BeforeEach] With watch-ingress-without-class flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:462 @ 04/04/23 18:04:39.83&#xA;&lt; Exit [BeforeEach] With watch-ingress-without-class flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:462 @ 04/04/23 18:04:46.871 (7.041s)&#xA;&gt; Enter [It] should watch Ingress with no class and ignore ingress with a different class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:482 @ 04/04/23 18:04:46.871&#xA;&lt; Exit [It] should watch Ingress with no class and ignore ingress with a different class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:482 @ 04/04/23 18:05:04.134 (17.262s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:04.134&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:04.398 (264ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] service-upstream when enabling in the configmap should use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="28.567748572">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:04.398&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:11.399 (7.001s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:05:11.399&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 04/04/23 18:05:15.426 (4.027s)&#xA;&gt; Enter [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:70 @ 04/04/23 18:05:15.426&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:82 @ 04/04/23 18:05:32.603&#xA;STEP: checking if the Service Cluster IP and Port are used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:89 @ 04/04/23 18:05:32.612&#xA;&lt; Exit [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:70 @ 04/04/23 18:05:32.783 (17.357s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:32.783&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:05:32.966 (182ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-service-external-name should ignore services of external-name type" classname="nginx-ingress-controller e2e suite" status="passed" time="40.523434341">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:32.966&#xA;&lt; Exit [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:05:40.858 (7.892s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:38 @ 04/04/23 18:05:40.858&#xA;&lt; Exit [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:38 @ 04/04/23 18:05:52.924 (12.066s)&#xA;&gt; Enter [It] should ignore services of external-name type - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:52 @ 04/04/23 18:05:52.924&#xA;&lt; Exit [It] should ignore services of external-name type - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:52 @ 04/04/23 18:06:13.273 (20.349s)&#xA;&gt; Enter [AfterEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:13.273&#xA;&lt; Exit [AfterEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:13.49 (217ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] satisfy should configure satisfy directive correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="28.489806635">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:13.49&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:20.419 (6.929s)&#xA;&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 04/04/23 18:06:20.419&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 04/04/23 18:06:24.447 (4.029s)&#xA;&gt; Enter [It] should configure satisfy directive correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:42 @ 04/04/23 18:06:24.447&#xA;&lt; Exit [It] should configure satisfy directive correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:42 @ 04/04/23 18:06:41.792 (17.345s)&#xA;&gt; Enter [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:41.792&#xA;&lt; Exit [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:06:41.98 (187ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keep alive connection timeout to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="29.295943095">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:41.98&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:06:49.854 (7.874s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:06:49.854&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 04/04/23 18:07:00.907 (11.052s)&#xA;&gt; Enter [It] should set keep alive connection timeout to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:68 @ 04/04/23 18:07:00.907&#xA;&lt; Exit [It] should set keep alive connection timeout to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:68 @ 04/04/23 18:07:11.072 (10.166s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:11.073&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:11.276 (203ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check the map hash size should set vmap-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="27.335942615">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:11.277&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:19.172 (7.895s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:07:19.172&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:07:28.212 (9.04s)&#xA;&gt; Enter [It] should set vmap-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:100 @ 04/04/23 18:07:28.212&#xA;&lt; Exit [It] should set vmap-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:100 @ 04/04/23 18:07:38.38 (10.168s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:38.38&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:07:38.612 (232ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Load Balancer] load-balance should apply the configmap load-balance setting" classname="nginx-ingress-controller e2e suite" status="passed" time="28.614638536">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:38.613&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:07:45.664 (7.051s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:31 @ 04/04/23 18:07:45.664&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:31 @ 04/04/23 18:07:49.689 (4.025s)&#xA;&gt; Enter [It] should apply the configmap load-balance setting - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:35 @ 04/04/23 18:07:49.689&#xA;&lt; Exit [It] should apply the configmap load-balance setting - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:35 @ 04/04/23 18:08:07.048 (17.358s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:07.048&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:08:07.227 (180ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - GRPC authorization metadata should be overwritten by external auth response headers" classname="nginx-ingress-controller e2e suite" status="passed" time="157.156535928">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:08:07.228&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:25.86 (2m18.633s)&#xA;&gt; Enter [It] authorization metadata should be overwritten by external auth response headers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:126 @ 04/04/23 18:10:25.86&#xA;&lt; Exit [It] authorization metadata should be overwritten by external auth response headers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:126 @ 04/04/23 18:10:44.166 (18.305s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:44.166&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:10:44.384 (218ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should update the external name after a service update" classname="nginx-ingress-controller e2e suite" status="passed" time="22.917038202">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:44.385&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:10:51.27 (6.885s)&#xA;&gt; Enter [It] should update the external name after a service update - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:248 @ 04/04/23 18:10:51.27&#xA;STEP: checking the service is updated to use eu.httpbin.org - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:304 @ 04/04/23 18:11:06.958&#xA;&lt; Exit [It] should update the external name after a service update - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:248 @ 04/04/23 18:11:07.097 (15.827s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:07.097&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:07.302 (205ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on" classname="nginx-ingress-controller e2e suite" status="passed" time="23.058976901">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:07.302&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:15.212 (7.91s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:11:15.212&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 04/04/23 18:11:19.237 (4.025s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:64 @ 04/04/23 18:11:19.237&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:64 @ 04/04/23 18:11:30.15 (10.913s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:30.15&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:30.361 (211ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] enable-access-log enable-rewrite-log set rewrite_log on" classname="nginx-ingress-controller e2e suite" status="passed" time="19.342099122">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:30.361&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:37.259 (6.898s)&#xA;&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 04/04/23 18:11:37.259&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 04/04/23 18:11:39.287 (2.028s)&#xA;&gt; Enter [It] set rewrite_log on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:49 @ 04/04/23 18:11:39.287&#xA;&lt; Exit [It] set rewrite_log on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:49 @ 04/04/23 18:11:49.482 (10.195s)&#xA;&gt; Enter [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:49.482&#xA;&lt; Exit [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:11:49.703 (222ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] reuse-port reuse port should be enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="28.444903559">
-              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:49.704&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:11:56.672 (6.968s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:11:56.672&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 04/04/23 18:12:07.713 (11.041s)&#xA;&gt; Enter [It] reuse port should be enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:52 @ 04/04/23 18:12:07.713&#xA;&lt; Exit [It] reuse port should be enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:52 @ 04/04/23 18:12:17.909 (10.196s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:17.909&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:18.149 (239ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value and cookie should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="33.34510439">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:18.149&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:26.102 (7.953s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:12:26.102&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 04/04/23 18:12:34.143 (8.041s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:604 @ 04/04/23 18:12:34.143&#xA;STEP: routing requests to the canary upstream when header value does not match and cookie is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:630 @ 04/04/23 18:12:51.301&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:604 @ 04/04/23 18:12:51.309 (17.166s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:51.309&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:12:51.494 (185ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-snippet drops server snippet if disabled by the administrator" classname="nginx-ingress-controller e2e suite" status="passed" time="40.379085957">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:51.494&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:12:58.391 (6.897s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 04/04/23 18:12:58.391&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 04/04/23 18:13:02.411 (4.02s)&#xA;&gt; Enter [It] drops server snippet if disabled by the administrator - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:61 @ 04/04/23 18:13:02.411&#xA;&lt; Exit [It] drops server snippet if disabled by the administrator - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:61 @ 04/04/23 18:13:31.674 (29.262s)&#xA;&gt; Enter [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:31.674&#xA;&lt; Exit [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:31.873 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log stream-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="17.302948605">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:31.874&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:38.753 (6.879s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:67 @ 04/04/23 18:13:38.753&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:67 @ 04/04/23 18:13:48.95 (10.197s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:48.95&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:49.177 (226ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Security] Pod Security Policies should be running with a Pod Security Policy" classname="nginx-ingress-controller e2e suite" status="skipped" time="8.138943568">
-              <skipped message="skipped - PSP not supported in this version"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:49.177&#xA;&lt; Exit [BeforeEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:57.081 (7.904s)&#xA;&gt; Enter [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:44 @ 04/04/23 18:13:57.081&#xA;[SKIPPED] PSP not supported in this version&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:56 @ 04/04/23 18:13:57.084&#xA;&lt; Exit [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:44 @ 04/04/23 18:13:57.084 (2ms)&#xA;&gt; Enter [AfterEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:57.084&#xA;&lt; Exit [AfterEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:13:57.316 (232ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with snippet and block requests" classname="nginx-ingress-controller e2e suite" status="passed" time="33.391362002">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:13:57.316&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:04.203 (6.887s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:14:04.203&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:14:08.231 (4.028s)&#xA;&gt; Enter [It] should enable modsecurity with snippet and block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:153 @ 04/04/23 18:14:08.231&#xA;&lt; Exit [It] should enable modsecurity with snippet and block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:153 @ 04/04/23 18:14:30.484 (22.253s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:30.484&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:14:30.708 (223ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-sync-events should not create sync events" classname="nginx-ingress-controller e2e suite" status="passed" time="30.323049827">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:30.708&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:14:37.628 (6.92s)&#xA;&gt; Enter [It] should not create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:80 @ 04/04/23 18:14:37.628&#xA;&lt; Exit [It] should not create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:80 @ 04/04/23 18:15:00.832 (23.203s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:00.832&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:01.031 (199ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should validate auth-tls-verify-client" classname="nginx-ingress-controller e2e suite" status="passed" time="26.051870766">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:01.031&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:07.953 (6.922s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:15:07.953&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 04/04/23 18:15:11.978 (4.025s)&#xA;&gt; Enter [It] should validate auth-tls-verify-client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:206 @ 04/04/23 18:15:11.978&#xA;&lt; Exit [It] should validate auth-tls-verify-client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:206 @ 04/04/23 18:15:26.888 (14.91s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:26.888&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:27.083 (195ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should enable opentracing using zipkin" classname="nginx-ingress-controller e2e suite" status="passed" time="32.217906581">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:27.083&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:34.978 (7.895s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:15:34.978&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 04/04/23 18:15:39.01 (4.032s)&#xA;&gt; Enter [It] should enable opentracing using zipkin - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:160 @ 04/04/23 18:15:39.01&#xA;&lt; Exit [It] should enable opentracing using zipkin - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:160 @ 04/04/23 18:15:59.042 (20.032s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:59.042&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:15:59.301 (259ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:15:59.301&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 04/04/23 18:15:59.301 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured picks up a non-certificate only change" classname="nginx-ingress-controller e2e suite" status="passed" time="42.603077039">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:15:59.302&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:06.324 (7.022s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:16:06.324&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 04/04/23 18:16:10.352 (4.028s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:16:10.352&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 04/04/23 18:16:28.235&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 04/04/23 18:16:36.64&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 04/04/23 18:16:36.649 (26.297s)&#xA;&gt; Enter [It] picks up a non-certificate only change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:218 @ 04/04/23 18:16:36.649&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:229 @ 04/04/23 18:16:41.653&#xA;&lt; Exit [It] picks up a non-certificate only change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:218 @ 04/04/23 18:16:41.686 (5.038s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:41.686&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:16:41.905 (219ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-real-ip should not trust X-Forwarded-For header when setting is false" classname="nginx-ingress-controller e2e suite" status="passed" time="35.362528503">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:41.905&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:16:48.792 (6.887s)&#xA;&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 04/04/23 18:16:48.792&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 04/04/23 18:16:59.851 (11.059s)&#xA;&gt; Enter [It] should not trust X-Forwarded-For header when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:78 @ 04/04/23 18:16:59.851&#xA;&lt; Exit [It] should not trust X-Forwarded-For header when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:78 @ 04/04/23 18:17:17.088 (17.237s)&#xA;&gt; Enter [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:17.088&#xA;&lt; Exit [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:17.268 (179ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration configures balancer Lua middleware correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="28.627555304">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:17.268&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:25.143 (7.875s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:17:25.143&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 04/04/23 18:17:39.338 (14.195s)&#xA;&gt; Enter [It] configures balancer Lua middleware correctly - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:50 @ 04/04/23 18:17:39.338&#xA;&lt; Exit [It] configures balancer Lua middleware correctly - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:50 @ 04/04/23 18:17:45.709 (6.371s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:45.709&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:17:45.895 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user does not retain cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="43.374170474">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:45.896&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:17:52.77 (6.874s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:17:52.77&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 04/04/23 18:18:00.824 (8.054s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:18:00.824&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 04/04/23 18:18:29.039 (28.216s)&#xA;&gt; Enter [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:337 @ 04/04/23 18:18:29.039&#xA;&lt; Exit [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:337 @ 04/04/23 18:18:29.048 (9ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:29.048&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:29.27 (222ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - single origin with required port" classname="nginx-ingress-controller e2e suite" status="passed" time="18.648918317">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:29.27&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:36.638 (7.367s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:36.638&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:18:40.656 (4.018s)&#xA;&gt; Enter [It] should allow - single origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:358 @ 04/04/23 18:18:40.656&#xA;&lt; Exit [It] should allow - single origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:358 @ 04/04/23 18:18:47.695 (7.04s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:47.695&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:18:47.919 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] configuration-snippet drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34;" classname="nginx-ingress-controller e2e suite" status="passed" time="40.641495701">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:47.919&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:18:54.793 (6.873s)&#xA;&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 04/04/23 18:18:54.793&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 04/04/23 18:18:58.818 (4.026s)&#xA;&gt; Enter [It] drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:58 @ 04/04/23 18:18:58.818&#xA;&lt; Exit [It] drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:58 @ 04/04/23 18:19:28.082 (29.263s)&#xA;&gt; Enter [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:28.082&#xA;&lt; Exit [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:28.561 (479ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] upstream-vhost set host to upstreamvhost.bar.com" classname="nginx-ingress-controller e2e suite" status="passed" time="22.366668485">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:28.561&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:36.485 (7.924s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:30 @ 04/04/23 18:19:36.485&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:30 @ 04/04/23 18:19:40.514 (4.029s)&#xA;&gt; Enter [It] set host to upstreamvhost.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:34 @ 04/04/23 18:19:40.514&#xA;&lt; Exit [It] set host to upstreamvhost.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:34 @ 04/04/23 18:19:50.715 (10.201s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:50.715&#xA;&lt; Exit [AfterEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:19:50.928 (213ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should turn on proxy-buffering" classname="nginx-ingress-controller e2e suite" status="passed" time="24.539076289">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:50.928&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:19:59.376 (8.447s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:19:59.376&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 04/04/23 18:20:03.412 (4.036s)&#xA;&gt; Enter [It] should turn on proxy-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:157 @ 04/04/23 18:20:03.412&#xA;&lt; Exit [It] should turn on proxy-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:157 @ 04/04/23 18:20:13.859 (10.448s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:13.859&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:20:15.468 (1.608s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [TCP] tcp-services should reload after an update in the configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="155.065694354">
-              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:20:15.468&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:32.896 (2m17.428s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:22:32.896&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 04/04/23 18:22:32.905 (9ms)&#xA;&gt; Enter [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:169 @ 04/04/23 18:22:32.905&#xA;STEP: setting up a first deployment - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:171 @ 04/04/23 18:22:32.905&#xA;STEP: updating the tcp service to a second deployment - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:196 @ 04/04/23 18:22:40.099&#xA;&lt; Exit [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:169 @ 04/04/23 18:22:50.31 (17.405s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:50.31&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:22:50.534 (224ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not break functionality - without `*`" classname="nginx-ingress-controller e2e suite" status="passed" time="18.076988583">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:50.534&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:22:57.402 (6.868s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:22:57.402&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:23:01.417 (4.015s)&#xA;&gt; Enter [It] should not break functionality - without `*` - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:291 @ 04/04/23 18:23:01.417&#xA;&lt; Exit [It] should not break functionality - without `*` - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:291 @ 04/04/23 18:23:08.429 (7.012s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:08.429&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:08.611 (182ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set secure in cookie with provided false annotation on https" classname="nginx-ingress-controller e2e suite" status="passed" time="21.337074474">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:08.611&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:15.499 (6.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:23:15.499&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:23:19.526 (4.026s)&#xA;&gt; Enter [It] should set secure in cookie with provided false annotation on https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:458 @ 04/04/23 18:23:19.526&#xA;&lt; Exit [It] should set secure in cookie with provided false annotation on https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:458 @ 04/04/23 18:23:29.716 (10.19s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:29.716&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:29.948 (233ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials" classname="nginx-ingress-controller e2e suite" status="passed" time="22.23359748">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:29.949&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:36.837 (6.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:23:36.837&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:23:40.864 (4.027s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:116 @ 04/04/23 18:23:40.864&#xA;&lt; Exit [It] should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:116 @ 04/04/23 18:23:51.976 (11.112s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:51.976&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:23:52.182 (206ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should exists opentelemetry_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="30.105451465">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:23:52.183&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:00.596 (8.414s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:24:00.596&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 04/04/23 18:24:04.625 (4.028s)&#xA;&gt; Enter [It] should exists opentelemetry_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:104 @ 04/04/23 18:24:04.625&#xA;&lt; Exit [It] should exists opentelemetry_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:104 @ 04/04/23 18:24:21.864 (17.239s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:21.864&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:22.288 (424ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:24:22.288&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 04/04/23 18:24:22.288 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should set cache_key when external auth cache is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="20.270369293999998">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:22.289&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:30.179 (7.89s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:24:30.179&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 04/04/23 18:24:32.201 (2.022s)&#xA;&gt; Enter [It] should set cache_key when external auth cache is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:322 @ 04/04/23 18:24:32.201&#xA;&lt; Exit [It] should set cache_key when external auth cache is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:322 @ 04/04/23 18:24:42.391 (10.19s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:42.391&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:24:42.559 (169ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should work with server-alias annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="23.332291638">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:42.559&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:24:49.462 (6.902s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:24:49.462&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 04/04/23 18:24:55.483 (6.021s)&#xA;&gt; Enter [It] should work with server-alias annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:372 @ 04/04/23 18:24:55.483&#xA;&lt; Exit [It] should work with server-alias annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:372 @ 04/04/23 18:25:05.677 (10.194s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:05.677&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:05.892 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log http-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="17.146392503">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:05.892&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:12.767 (6.875s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:54 @ 04/04/23 18:25:12.767&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:54 @ 04/04/23 18:25:22.853 (10.086s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:22.853&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:23.038 (186ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to $scheme:// and use proxy_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="22.339493601">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:23.039&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:30.928 (7.889s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:25:30.928&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 04/04/23 18:25:34.955 (4.027s)&#xA;&gt; Enter [It] should set backend protocol to $scheme:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:49 @ 04/04/23 18:25:34.955&#xA;&lt; Exit [It] should set backend protocol to $scheme:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:49 @ 04/04/23 18:25:45.122 (10.167s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:45.122&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:25:45.378 (256ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With ingress-class-by-name flag should watch Ingress that uses the class name even if spec is different" classname="nginx-ingress-controller e2e suite" status="passed" time="44.416072668">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:45.378&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:25:52.259 (6.88s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:25:52.259&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 04/04/23 18:25:56.284 (4.026s)&#xA;&gt; Enter [BeforeEach] With ingress-class-by-name flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:518 @ 04/04/23 18:25:56.284&#xA;&lt; Exit [BeforeEach] With ingress-class-by-name flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:518 @ 04/04/23 18:26:05.326 (9.041s)&#xA;&gt; Enter [It] should watch Ingress that uses the class name even if spec is different - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:539 @ 04/04/23 18:26:05.326&#xA;&lt; Exit [It] should watch Ingress that uses the class name even if spec is different - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:539 @ 04/04/23 18:26:29.579 (24.254s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:29.579&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:29.795 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not match" classname="nginx-ingress-controller e2e suite" status="passed" time="18.102332549">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:29.795&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:36.671 (6.876s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:26:36.671&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 04/04/23 18:26:40.694 (4.023s)&#xA;&gt; Enter [It] should not match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:338 @ 04/04/23 18:26:40.694&#xA;&lt; Exit [It] should not match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:338 @ 04/04/23 18:26:47.715 (7.021s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:47.715&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:26:47.897 (182ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Configmap change should reload after an update in the configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="41.659966884">
-              <system-err>&gt; Enter [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:47.898&#xA;&lt; Exit [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:26:54.79 (6.892s)&#xA;&gt; Enter [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:32 @ 04/04/23 18:26:54.79&#xA;&lt; Exit [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:32 @ 04/04/23 18:26:58.813 (4.023s)&#xA;&gt; Enter [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:36 @ 04/04/23 18:26:58.813&#xA;STEP: adding a whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:42 @ 04/04/23 18:27:05.828&#xA;STEP: changing error-log-level - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:61 @ 04/04/23 18:27:16.071&#xA;&lt; Exit [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:36 @ 04/04/23 18:27:29.359 (30.546s)&#xA;&gt; Enter [AfterEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:29.359&#xA;&lt; Exit [AfterEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:29.558 (198ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check the variable hash size should set variables-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="28.276887482">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:29.558&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:36.431 (6.873s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:27:36.431&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 04/04/23 18:27:47.466 (11.035s)&#xA;&gt; Enter [It] should set variables-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:80 @ 04/04/23 18:27:47.466&#xA;&lt; Exit [It] should set variables-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:80 @ 04/04/23 18:27:57.638 (10.172s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:57.638&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:27:57.835 (197ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] [Flag] default-ssl-certificate uses default ssl certificate for catch-all ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="34.780183951">
-              <system-err>&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:27:57.835&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:04.708 (6.873s)&#xA;&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 04/04/23 18:28:04.708&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 04/04/23 18:28:20.208 (15.5s)&#xA;&gt; Enter [It] uses default ssl certificate for catch-all ingress - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:64 @ 04/04/23 18:28:20.208&#xA;STEP: making sure new ingress is deployed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:68 @ 04/04/23 18:28:27.228&#xA;STEP: making sure new ingress is responding - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:74 @ 04/04/23 18:28:30.423&#xA;STEP: making sure the configured default ssl certificate is being used - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:76 @ 04/04/23 18:28:30.423&#xA;&lt; Exit [It] uses default ssl certificate for catch-all ingress - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:64 @ 04/04/23 18:28:32.435 (12.227s)&#xA;&gt; Enter [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:32.435&#xA;&lt; Exit [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:32.615 (181ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="17.267999907">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:32.616&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:39.497 (6.882s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:42 @ 04/04/23 18:28:39.497&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:42 @ 04/04/23 18:28:49.668 (10.171s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:49.669&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:28:49.884 (215ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity" classname="nginx-ingress-controller e2e suite" status="passed" time="21.326374759">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:49.884&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:28:56.783 (6.899s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:28:56.783&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 04/04/23 18:29:00.81 (4.027s)&#xA;&gt; Enter [It] should enable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:35 @ 04/04/23 18:29:00.81&#xA;&lt; Exit [It] should enable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:35 @ 04/04/23 18:29:10.998 (10.189s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:10.998&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:29:11.21 (212ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Shutdown] Grace period shutdown /healthz should return status code 500 during shutdown grace period" classname="nginx-ingress-controller e2e suite" status="passed" time="79.134312514">
-              <system-err>&gt; Enter [BeforeEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:11.211&#xA;&lt; Exit [BeforeEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:29:19.1 (7.89s)&#xA;&gt; Enter [It] /healthz should return status code 500 during shutdown grace period - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/grace_period.go:35 @ 04/04/23 18:29:19.1&#xA;&lt; Exit [It] /healthz should return status code 500 during shutdown grace period - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/grace_period.go:35 @ 04/04/23 18:30:30.168 (1m11.068s)&#xA;&gt; Enter [AfterEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:30.168&#xA;&lt; Exit [AfterEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:30.345 (177ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-alias should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="21.338020536">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:30.345&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:37.278 (6.932s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:30:37.278&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 04/04/23 18:30:41.303 (4.025s)&#xA;&gt; Enter [It] should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:36 @ 04/04/23 18:30:41.303&#xA;&lt; Exit [It] should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:36 @ 04/04/23 18:30:51.481 (10.178s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:51.481&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:30:51.683 (202ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-proxy-protocol should enable PROXY Protocol for TCP" classname="nginx-ingress-controller e2e suite" status="passed" time="633.259626659">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:51.684&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 04/04/23 18:30:58.618 (6.934s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:30:58.618&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 04/04/23 18:31:09.663 (11.045s)&#xA;&gt; Enter [It] should enable PROXY Protocol for TCP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155 @ 04/04/23 18:31:09.663&#xA;Automatically polling progress:&#xA;  [Setting] use-proxy-protocol should enable PROXY Protocol for TCP (Spec Runtime: 3m17.98s)&#xA;    /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155&#xA;    In [It] (Node Runtime: 3m0.001s)&#xA;      /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155&#xA;&#xA;    Spec Goroutine&#xA;    goroutine 2932 [IO wait, 3 minutes]&#xA;      internal/poll.runtime_pollWait(0x7f9e883a91b8, 0x72)&#xA;        /usr/local/go/src/runtime/netpoll.go:306&#xA;      internal/poll.(*pollDesc).wait(0xc0000de300?, 0xc00098a926?, 0x0)&#xA;        /usr/local/go/src/internal/poll/fd_poll_runtime.go:84&#xA;      internal/poll.(*pollDesc).waitRead(...)&#xA;        /usr/local/go/src/internal/poll/fd_poll_runtime.go:89&#xA;      internal/poll.(*FD).Read(0xc0000de300, {0xc00098a926, 0x15a, 0x15a})&#xA;        /usr/local/go/src/internal/poll/fd_unix.go:167&#xA;      net.(*netFD).Read(0xc0000de300, {0xc00098a926?, 0x453656?, 0x380?})&#xA;        /usr/local/go/src/net/fd_posix.go:55&#xA;      net.(*conn).Read(0xc000516660, {0xc00098a926?, 0x19913c0?, 0xc00098a700?})&#xA;        /usr/local/go/src/net/net.go:183&#xA;      io.ReadAll({0x1f62de0, 0xc000516660})&#xA;        /usr/local/go/src/io/io.go:701&#xA;    &gt; k8s.io/ingress-nginx/test/e2e/settings.glob..func38.5()&#xA;        /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:211&#xA;      github.com/onsi/ginkgo/v2/internal.extractBodyFunction.func3({0xa0558e, 0xc000300a80})&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/node.go:463&#xA;      github.com/onsi/ginkgo/v2/internal.(*Suite).runNode.func3()&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/suite.go:863&#xA;      github.com/onsi/ginkgo/v2/internal.(*Suite).runNode&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/suite.go:850&#xA;&lt; Exit [It] should enable PROXY Protocol for TCP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155 @ 04/04/23 18:41:24.726 (10m15.064s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:24.726&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 04/04/23 18:41:24.943 (217ms)&#xA;</system-err>
+          <testcase name="[It] [CGroups] cgroups detects if cgroups is avaliable" classname="nginx-ingress-controller e2e suite" status="passed" time="19.672628459">
+              <system-err>&gt; Enter [BeforeEach] [CGroups] cgroups - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 17:53:35.472&#xA;&lt; Exit [BeforeEach] [CGroups] cgroups - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 17:53:42.61 (7.137s)&#xA;&gt; Enter [BeforeEach] [CGroups] cgroups - /go/src/k8s.io/ingress-nginx/test/e2e/cgroups/cgroups_linux.go:37 @ 07/16/23 17:53:42.61&#xA;&lt; Exit [BeforeEach] [CGroups] cgroups - /go/src/k8s.io/ingress-nginx/test/e2e/cgroups/cgroups_linux.go:37 @ 07/16/23 17:53:54.745 (12.135s)&#xA;&gt; Enter [It] detects if cgroups is avaliable - /go/src/k8s.io/ingress-nginx/test/e2e/cgroups/cgroups_linux.go:42 @ 07/16/23 17:53:54.745&#xA;&lt; Exit [It] detects if cgroups is avaliable - /go/src/k8s.io/ingress-nginx/test/e2e/cgroups/cgroups_linux.go:42 @ 07/16/23 17:53:54.745 (0s)&#xA;&gt; Enter [AfterEach] [CGroups] cgroups - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 17:53:54.745&#xA;&lt; Exit [AfterEach] [CGroups] cgroups - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 17:53:55.145 (400ms)&#xA;</system-err>
           </testcase>
       </testsuite>
   </testsuites>
\ No newline at end of file

From 0f4d054c0766cacc3e4fde487f8ac0439f1cd0ac Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Sun, 16 Jul 2023 23:47:43 -0400
Subject: [PATCH 0864/1641] gofmt

---
 pkg/util/runtime/cpu_notlinux.go  |  2 +-
 test/e2e/cgroups/cgroups_linux.go | 30 +++++++++++++++---------------
 2 files changed, 16 insertions(+), 16 deletions(-)

diff --git a/pkg/util/runtime/cpu_notlinux.go b/pkg/util/runtime/cpu_notlinux.go
index 0441af957..2a1b48252 100644
--- a/pkg/util/runtime/cpu_notlinux.go
+++ b/pkg/util/runtime/cpu_notlinux.go
@@ -26,4 +26,4 @@ import (
 // NumCPU ...
 func NumCPU() int {
 	return runtime.NumCPU()
-}
\ No newline at end of file
+}
diff --git a/test/e2e/cgroups/cgroups_linux.go b/test/e2e/cgroups/cgroups_linux.go
index 76a18407d..00d077b2b 100644
--- a/test/e2e/cgroups/cgroups_linux.go
+++ b/test/e2e/cgroups/cgroups_linux.go
@@ -28,8 +28,8 @@ import (
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
 
-	"path/filepath"
 	"k8s.io/ingress-nginx/pkg/util/runtime"
+	"path/filepath"
 
 	libcontainercgroups "github.com/opencontainers/runc/libcontainer/cgroups"
 )
@@ -48,29 +48,29 @@ var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
 			log.Fatal(err)
 		}
 
-		quotaFile, err := os.Create(filepath.Join(cgroupPath,"cpu.cfs_quota_us"))
+		quotaFile, err := os.Create(filepath.Join(cgroupPath, "cpu.cfs_quota_us"))
 
 		if err != nil {
 			log.Fatal(err)
 		}
 
-		periodFile, err := os.Create(filepath.Join(cgroupPath,"cpu.cfs_period_us"))
+		periodFile, err := os.Create(filepath.Join(cgroupPath, "cpu.cfs_period_us"))
 
 		if err != nil {
 			log.Fatal(err)
 		}
 
-		quotaFile.WriteString("4");
-		quotaFile.Sync();
+		quotaFile.WriteString("4")
+		quotaFile.Sync()
 
-		periodFile.WriteString("2");
-		periodFile.Sync();
-		
-		assert.Equal(ginkgo.GinkgoT(), runtime.GetCgroupVersion(), int64(1))	
+		periodFile.WriteString("2")
+		periodFile.Sync()
+
+		assert.Equal(ginkgo.GinkgoT(), runtime.GetCgroupVersion(), int64(1))
 		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), 2)
 
-		os.Remove(filepath.Join(cgroupPath,"cpu.cfs_quota_us"))
-		os.Remove(filepath.Join(cgroupPath,"cpu.cfs_period_us"))
+		os.Remove(filepath.Join(cgroupPath, "cpu.cfs_quota_us"))
+		os.Remove(filepath.Join(cgroupPath, "cpu.cfs_period_us"))
 	})
 
 	ginkgo.It("detect cgroups version v2", func() {
@@ -85,10 +85,10 @@ var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
 			log.Fatal(err)
 		}
 
-		file.WriteString("4 2");
-		file.Sync();
-		
-		assert.Equal(ginkgo.GinkgoT(), runtime.GetCgroupVersion(), int64(2))	
+		file.WriteString("4 2")
+		file.Sync()
+
+		assert.Equal(ginkgo.GinkgoT(), runtime.GetCgroupVersion(), int64(2))
 		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), 2)
 
 		os.Remove("/sys/fs/cgroup/cpu.max")

From b270b4a8bf108dd210b209b1babb61a6bf5b840d Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Sun, 16 Jul 2023 23:53:42 -0400
Subject: [PATCH 0865/1641] remove build flags and rename cgroups_linux.go

---
 .../cgroups/{cgroups_linux.go => cgroups.go}  |    3 -
 test/e2e/e2e.go                               |    1 +
 test/junitreports/report-e2e-test-suite.xml   | 1311 +++++++++++++++++
 3 files changed, 1312 insertions(+), 3 deletions(-)
 rename test/e2e/cgroups/{cgroups_linux.go => cgroups.go} (98%)
 create mode 100644 test/junitreports/report-e2e-test-suite.xml

diff --git a/test/e2e/cgroups/cgroups_linux.go b/test/e2e/cgroups/cgroups.go
similarity index 98%
rename from test/e2e/cgroups/cgroups_linux.go
rename to test/e2e/cgroups/cgroups.go
index 00d077b2b..6ad8558df 100644
--- a/test/e2e/cgroups/cgroups_linux.go
+++ b/test/e2e/cgroups/cgroups.go
@@ -1,6 +1,3 @@
-//go:build linux
-// +build linux
-
 /*
 Copyright 2020 The Kubernetes Authors.
 
diff --git a/test/e2e/e2e.go b/test/e2e/e2e.go
index 57b047230..6a9cb21f8 100644
--- a/test/e2e/e2e.go
+++ b/test/e2e/e2e.go
@@ -49,6 +49,7 @@ import (
 	_ "k8s.io/ingress-nginx/test/e2e/ssl"
 	_ "k8s.io/ingress-nginx/test/e2e/status"
 	_ "k8s.io/ingress-nginx/test/e2e/tcpudp"
+	_ "k8s.io/ingress-nginx/test/e2e/cgroups"
 )
 
 // RunE2ETests checks configuration parameters (specified through flags) and then runs
diff --git a/test/junitreports/report-e2e-test-suite.xml b/test/junitreports/report-e2e-test-suite.xml
new file mode 100644
index 000000000..43f6f3233
--- /dev/null
+++ b/test/junitreports/report-e2e-test-suite.xml
@@ -0,0 +1,1311 @@
+<?xml version="1.0" encoding="UTF-8"?>
+  <testsuites tests="427" disabled="6" errors="0" failures="0" time="2584.0220522">
+      <testsuite name="nginx-ingress-controller e2e suite" package="/" tests="427" disabled="0" skipped="6" errors="0" failures="0" time="2584.0220522" timestamp="2023-07-16T23:07:34">
+          <properties>
+              <property name="SuiteSucceeded" value="true"></property>
+              <property name="SuiteHasProgrammaticFocus" value="false"></property>
+              <property name="SpecialSuiteFailureReason" value=""></property>
+              <property name="SuiteLabels" value="[]"></property>
+              <property name="RandomSeed" value="1689548853"></property>
+              <property name="RandomizeAllSpecs" value="true"></property>
+              <property name="LabelFilter" value=""></property>
+              <property name="FocusStrings" value=""></property>
+              <property name="SkipStrings" value="\[Memory Leak\]"></property>
+              <property name="FocusFiles" value=""></property>
+              <property name="SkipFiles" value=""></property>
+              <property name="FailOnPending" value="false"></property>
+              <property name="FailFast" value="true"></property>
+              <property name="FlakeAttempts" value="2"></property>
+              <property name="DryRun" value="false"></property>
+              <property name="ParallelTotal" value="7"></property>
+              <property name="OutputInterceptorMode" value=""></property>
+          </properties>
+          <testcase name="[It] [Annotations] backend-protocol - GRPC should use grpc_pass in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="38.5399424">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:34.215&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:47.677 (13.462s)&#xA;&gt; Enter [It] should use grpc_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:43 @ 07/16/23 23:07:47.677&#xA;&lt; Exit [It] should use grpc_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:43 @ 07/16/23 23:08:11.636 (23.993s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:11.636&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:12.72 (1.084s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] reuse-port reuse port should be disabled" classname="nginx-ingress-controller e2e suite" status="passed" time="38.2217212">
+              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:12.728&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:26.952 (14.224s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 07/16/23 23:08:26.952&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 07/16/23 23:08:40.053 (13.136s)&#xA;&gt; Enter [It] reuse port should be disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:44 @ 07/16/23 23:08:40.053&#xA;&lt; Exit [It] reuse port should be disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:44 @ 07/16/23 23:08:50.288 (10.235s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:50.289&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:50.915 (626ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] reuse-port reuse port should be enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="31.712009899999998">
+              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:50.916&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:00.386 (9.47s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 07/16/23 23:09:00.386&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 07/16/23 23:09:11.506 (11.154s)&#xA;&gt; Enter [It] reuse port should be enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:52 @ 07/16/23 23:09:11.506&#xA;&lt; Exit [It] reuse port should be enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:52 @ 07/16/23 23:09:21.824 (10.319s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:21.824&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:22.594 (769ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] reuse-port reuse port should be enabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="23.5019204">
+              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:22.602&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:31.342 (8.739s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 07/16/23 23:09:31.342&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 07/16/23 23:09:42.441 (11.134s)&#xA;&gt; Enter [It] reuse port should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:38 @ 07/16/23 23:09:42.441&#xA;&lt; Exit [It] reuse port should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:38 @ 07/16/23 23:09:45.658 (3.217s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:45.658&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:46.07 (411ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should pass URL-encoded certificate to upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="27.9608455">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:46.071&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:55.04 (8.969s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:09:55.04&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:09:59.124 (4.084s)&#xA;&gt; Enter [It] should pass URL-encoded certificate to upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:161 @ 07/16/23 23:09:59.124&#xA;&lt; Exit [It] should pass URL-encoded certificate to upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:161 @ 07/16/23 23:10:13.448 (14.358s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:13.448&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:13.998 (550ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName with a port defined" classname="nginx-ingress-controller e2e suite" status="passed" time="19.7114344">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:13.999&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:22.738 (8.738s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName with a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:129 @ 07/16/23 23:10:22.738&#xA;&lt; Exit [It] should return 200 for service type=ExternalName with a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:129 @ 07/16/23 23:10:33.094 (10.391s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:33.094&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:33.676 (582ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] use-proxy-protocol should enable PROXY Protocol for HTTPS" classname="nginx-ingress-controller e2e suite" status="passed" time="113.2879812">
+              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:33.688&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:42.391 (8.703s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:10:42.391&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:10:53.541 (11.15s)&#xA;&gt; Enter [It] should enable PROXY Protocol for HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:112 @ 07/16/23 23:10:53.541&#xA;&lt; Exit [It] should enable PROXY Protocol for HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:112 @ 07/16/23 23:12:26.01 (1m32.617s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:26.01&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:26.827 (817ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity through the config map but ignore snippet as disabled by admin" classname="nginx-ingress-controller e2e suite" status="passed" time="42.5280758">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:26.829&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:35.094 (8.299s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:12:35.094&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:12:39.241 (4.147s)&#xA;&gt; Enter [It] should enable modsecurity through the config map but ignore snippet as disabled by admin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:305 @ 07/16/23 23:12:39.241&#xA;&lt; Exit [It] should enable modsecurity through the config map but ignore snippet as disabled by admin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:305 @ 07/16/23 23:13:08.762 (29.555s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:08.762&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:09.288 (526ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should not set cookie without domain annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="22.8642912">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:09.289&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:17.226 (7.936s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:13:17.226&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:13:21.294 (4.068s)&#xA;&gt; Enter [It] should not set cookie without domain annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:248 @ 07/16/23 23:13:21.294&#xA;&lt; Exit [It] should not set cookie without domain annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:248 @ 07/16/23 23:13:31.492 (10.198s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:31.492&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:32.119 (661ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Default Backend] enables access logging for default backend" classname="nginx-ingress-controller e2e suite" status="skipped" time="9.1708479">
+              <skipped message="skipped - enable-access-log-for-default-backend"></skipped>
+              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:32.123&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:40.759 (8.636s)&#xA;&gt; Enter [It] enables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:88 @ 07/16/23 23:13:40.759&#xA;[SKIPPED] enable-access-log-for-default-backend&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:90 @ 07/16/23 23:13:40.759&#xA;&lt; Exit [It] enables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:88 @ 07/16/23 23:13:40.759 (0s)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:40.76&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:41.293 (534ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName should return status 502 for service type=ExternalName with an invalid host" classname="nginx-ingress-controller e2e suite" status="passed" time="19.9088799">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:41.296&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:50.342 (9.046s)&#xA;&gt; Enter [It] should return status 502 for service type=ExternalName with an invalid host - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:153 @ 07/16/23 23:13:50.342&#xA;&lt; Exit [It] should return status 502 for service type=ExternalName with an invalid host - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:153 @ 07/16/23 23:14:00.578 (10.237s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:00.578&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:01.204 (626ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should set secure in cookie with provided false annotation on https" classname="nginx-ingress-controller e2e suite" status="passed" time="23.5486766">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:01.205&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:09.622 (8.451s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:14:09.622&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:14:13.746 (4.123s)&#xA;&gt; Enter [It] should set secure in cookie with provided false annotation on https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:458 @ 07/16/23 23:14:13.746&#xA;&lt; Exit [It] should set secure in cookie with provided false annotation on https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:458 @ 07/16/23 23:14:24.227 (10.481s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:24.227&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:24.72 (493ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user retains cookie by default" classname="nginx-ingress-controller e2e suite" status="passed" time="41.6234434">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:24.722&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:35.239 (10.552s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:14:35.239&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:14:43.596 (8.357s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 07/16/23 23:14:43.596&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 07/16/23 23:15:05.851 (22.289s)&#xA;&gt; Enter [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:411 @ 07/16/23 23:15:05.851&#xA;&lt; Exit [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:411 @ 07/16/23 23:15:05.862 (11ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:05.862&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:06.276 (414ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] hash size Check proxy header hash size should set proxy-headers-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="30.4083453">
+              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:06.278&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:14.855 (8.577s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:15:14.855&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:15:25.98 (11.125s)&#xA;&gt; Enter [It] should set proxy-headers-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:60 @ 07/16/23 23:15:25.98&#xA;&lt; Exit [It] should set proxy-headers-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:60 @ 07/16/23 23:15:36.182 (10.236s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:36.182&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:36.652 (469ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should disable cors allow credentials" classname="nginx-ingress-controller e2e suite" status="passed" time="25.3990948">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:36.653&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:45.163 (8.51s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:15:45.163&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:15:51.277 (6.114s)&#xA;&gt; Enter [It] should disable cors allow credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:94 @ 07/16/23 23:15:51.277&#xA;&lt; Exit [It] should disable cors allow credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:94 @ 07/16/23 23:16:01.482 (10.205s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:01.482&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:02.018 (570ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With default ingress class config should serve Ingress when class is added" classname="nginx-ingress-controller e2e suite" status="passed" time="37.7124334">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:02.019&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:09.556 (7.537s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:16:09.556&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:16:13.642 (4.085s)&#xA;&gt; Enter [It] should serve Ingress when class is added - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:257 @ 07/16/23 23:16:13.642&#xA;&lt; Exit [It] should serve Ingress when class is added - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:257 @ 07/16/23 23:16:39.138 (25.531s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:39.138&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:39.697 (559ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With default ingress class config should delete Ingress when class is removed" classname="nginx-ingress-controller e2e suite" status="passed" time="37.9933959">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:39.736&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:47.471 (7.735s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:16:47.471&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:16:51.578 (4.107s)&#xA;&gt; Enter [It] should delete Ingress when class is removed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:192 @ 07/16/23 23:16:51.578&#xA;&lt; Exit [It] should delete Ingress when class is removed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:192 @ 07/16/23 23:17:17.178 (25.634s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:17.178&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:17.695 (517ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] Geoip2 should include geoip2 line in config when enabled and db file exists" classname="nginx-ingress-controller e2e suite" status="passed" time="32.7838107">
+              <system-err>&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:17.697&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:26.222 (8.525s)&#xA;&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 07/16/23 23:17:26.222&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 07/16/23 23:17:30.293 (4.071s)&#xA;&gt; Enter [It] should include geoip2 line in config when enabled and db file exists - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:46 @ 07/16/23 23:17:30.293&#xA;Jul 16 23:17:39.506: INFO: Connecting to github.com (140.82.113.3:443)&#xA;Connecting to github.com (140.82.113.3:443)&#xA;Connecting to raw.githubusercontent.com (185.199.111.133:443)&#xA;saving to &#39;/etc/nginx/geoip/GeoLite2-Country.mmdb&#39;&#xA;GeoLite2-Country.mmd 100%!|(MISSING)********************************| 17952  0:00:00 ETA&#xA;&#39;/etc/nginx/geoip/GeoLite2-Country.mmdb&#39; saved&#xA;&#xA;&lt; Exit [It] should include geoip2 line in config when enabled and db file exists - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:46 @ 07/16/23 23:17:49.758 (19.499s)&#xA;&gt; Enter [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:49.758&#xA;&lt; Exit [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:50.446 (688ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Status] status update should update status field after client-go reconnection" classname="nginx-ingress-controller e2e suite" status="passed" time="79.7267018">
+              <system-err>&gt; Enter [BeforeEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:50.448&#xA;&lt; Exit [BeforeEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:59.09 (8.642s)&#xA;&gt; Enter [It] should update status field after client-go reconnection - /go/src/k8s.io/ingress-nginx/test/e2e/status/update.go:43 @ 07/16/23 23:17:59.09&#xA;Jul 16 23:17:59.090: INFO: Asynchronously running &#39;/bin/bash -c /usr/local/bin/kubectl proxy --accept-hosts=.* --address=0.0.0.0 --port=0&#39;&#xA;Jul 16 23:18:19.484: INFO: waiting for leader election and initial status update&#xA;Jul 16 23:18:59.486: INFO: Asynchronously running &#39;/bin/bash -c /usr/local/bin/kubectl proxy --accept-hosts=.* --address=0.0.0.0 --port=36979&#39;&#xA;&lt; Exit [It] should update status field after client-go reconnection - /go/src/k8s.io/ingress-nginx/test/e2e/status/update.go:43 @ 07/16/23 23:19:09.559 (1m10.572s)&#xA;&gt; Enter [AfterEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:09.559&#xA;&lt; Exit [AfterEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:10.072 (512ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should overwrite Foo header with auth response" classname="nginx-ingress-controller e2e suite" status="passed" time="32.0107057">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:10.074&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:18.758 (8.683s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:19:18.758&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:19:22.852 (4.094s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:19:22.852&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:19:37.243 (14.425s)&#xA;&gt; Enter [It] should overwrite Foo header with auth response - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:529 @ 07/16/23 23:19:37.243&#xA;&lt; Exit [It] should overwrite Foo header with auth response - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:529 @ 07/16/23 23:19:41.445 (4.202s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:41.446&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:42.051 (605ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 200 when authentication is configured with a map and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="25.6516828">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:42.053&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:50.431 (8.379s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:19:50.432&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:19:54.495 (4.064s)&#xA;&gt; Enter [It] should return status code 200 when authentication is configured with a map and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:199 @ 07/16/23 23:19:54.495&#xA;&lt; Exit [It] should return status code 200 when authentication is configured with a map and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:199 @ 07/16/23 23:20:06.914 (12.453s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:06.914&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:07.67 (756ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to https:// and use proxy_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="24.0065656">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:07.684&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:16.699 (9.015s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:20:16.699&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:20:20.747 (4.048s)&#xA;&gt; Enter [It] should set backend protocol to https:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:34 @ 07/16/23 23:20:20.747&#xA;&lt; Exit [It] should set backend protocol to https:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:34 @ 07/16/23 23:20:31.134 (10.387s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:31.134&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:31.656 (556ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity globally and with modsecurity-snippet block requests" classname="nginx-ingress-controller e2e suite" status="passed" time="42.7722447">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:31.657&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:40.453 (8.796s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:20:40.453&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:20:44.53 (4.077s)&#xA;&gt; Enter [It] should enable modsecurity globally and with modsecurity-snippet block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:189 @ 07/16/23 23:20:44.53&#xA;&lt; Exit [It] should enable modsecurity globally and with modsecurity-snippet block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:189 @ 07/16/23 23:21:13.79 (29.294s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:13.79&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:14.395 (605ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Default Backend] change default settings should apply the annotation to the default backend" classname="nginx-ingress-controller e2e suite" status="passed" time="23.7016096">
+              <system-err>&gt; Enter [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:14.4&#xA;&lt; Exit [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:23.168 (8.768s)&#xA;&gt; Enter [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:34 @ 07/16/23 23:21:23.168&#xA;&lt; Exit [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:34 @ 07/16/23 23:21:27.261 (4.093s)&#xA;&gt; Enter [It] should apply the annotation to the default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:38 @ 07/16/23 23:21:27.261&#xA;&lt; Exit [It] should apply the annotation to the default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:38 @ 07/16/23 23:21:37.483 (10.256s)&#xA;&gt; Enter [AfterEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:37.483&#xA;&lt; Exit [AfterEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:38.068 (585ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param should return status code 200 when signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="26.2898035">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:38.069&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:45.534 (7.465s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:45.534&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:49.607 (4.073s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 07/16/23 23:21:49.607&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 07/16/23 23:22:03.839 (14.266s)&#xA;&gt; Enter [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:678 @ 07/16/23 23:22:03.84&#xA;&lt; Exit [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:678 @ 07/16/23 23:22:03.852 (12ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:03.852&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:04.325 (473ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured with invalid content and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="23.2268136">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:04.328&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:12.822 (8.494s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:12.822&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:16.892 (4.07s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured with invalid content and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:227 @ 07/16/23 23:22:16.892&#xA;&lt; Exit [It] should return status code 401 when authentication is configured with invalid content and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:227 @ 07/16/23 23:22:27.117 (10.225s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:27.117&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:27.555 (438ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 200 when authentication is configured and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="25.3392845">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:27.556&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:36.204 (8.682s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:36.204&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:40.282 (4.078s)&#xA;&gt; Enter [It] should return status code 200 when authentication is configured and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:172 @ 07/16/23 23:22:40.283&#xA;&lt; Exit [It] should return status code 200 when authentication is configured and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:172 @ 07/16/23 23:22:52.486 (12.203s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:52.486&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:52.861 (375ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] settings-global-rate-limit generates correct NGINX configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="32.8949623">
+              <system-err>&gt; Enter [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:52.864&#xA;&lt; Exit [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:00.437 (7.573s)&#xA;&gt; Enter [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:34 @ 07/16/23 23:23:00.437&#xA;&lt; Exit [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:34 @ 07/16/23 23:23:04.507 (4.105s)&#xA;&gt; Enter [It] generates correct NGINX configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:38 @ 07/16/23 23:23:04.507&#xA;STEP: generating correct defaults - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:43 @ 07/16/23 23:23:11.537&#xA;STEP: applying customizations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:61 @ 07/16/23 23:23:14.706&#xA;&lt; Exit [It] generates correct NGINX configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:38 @ 07/16/23 23:23:25.01 (20.503s)&#xA;&gt; Enter [AfterEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:25.01&#xA;&lt; Exit [AfterEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:25.724 (714ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] limit-rate Check limit-rate annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="27.5008123">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:25.726&#xA;&lt; Exit [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:34.135 (8.443s)&#xA;&gt; Enter [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:33 @ 07/16/23 23:23:34.135&#xA;&lt; Exit [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:33 @ 07/16/23 23:23:38.193 (4.058s)&#xA;&gt; Enter [It] Check limit-rate annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:37 @ 07/16/23 23:23:38.193&#xA;&lt; Exit [It] Check limit-rate annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:37 @ 07/16/23 23:23:52.705 (14.512s)&#xA;&gt; Enter [AfterEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:52.707&#xA;&lt; Exit [AfterEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:53.193 (486ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] add-headers Add a custom header" classname="nginx-ingress-controller e2e suite" status="passed" time="31.4122919">
+              <system-err>&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:53.194&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:02.76 (9.601s)&#xA;&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 07/16/23 23:24:02.76&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 07/16/23 23:24:13.875 (11.115s)&#xA;&gt; Enter [It] Add a custom header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:40 @ 07/16/23 23:24:13.875&#xA;&lt; Exit [It] Add a custom header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:40 @ 07/16/23 23:24:24.131 (10.255s)&#xA;&gt; Enter [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:24.131&#xA;&lt; Exit [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:24.572 (441ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with transaction ID and OWASP rules" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3040838">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:24.573&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:33.002 (8.463s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:24:33.003&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:24:37.063 (4.061s)&#xA;&gt; Enter [It] should enable modsecurity with transaction ID and OWASP rules - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:53 @ 07/16/23 23:24:37.063&#xA;&lt; Exit [It] should enable modsecurity with transaction ID and OWASP rules - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:53 @ 07/16/23 23:24:47.308 (10.245s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:47.308&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:47.843 (535ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="58.015758">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:47.845&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:56.211 (8.367s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:24:56.212&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:25:04.311 (8.134s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:25:04.312&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:25:04.312&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:25:14.551&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:25:24.781&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:25:34.923 (30.646s)&#xA;&gt; Enter [It] should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:102 @ 07/16/23 23:25:34.923&#xA;STEP: Adding a no-auth-locations for /bar to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:104 @ 07/16/23 23:25:34.924&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:111 @ 07/16/23 23:25:45.117&#xA;STEP: Sending a request to whitelisted service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:118 @ 07/16/23 23:25:45.136&#xA;&lt; Exit [It] should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:102 @ 07/16/23 23:25:45.155 (10.231s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:45.155&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:45.792 (637ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should write rewrite logs" classname="nginx-ingress-controller e2e suite" status="passed" time="25.6974811">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:45.799&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:53.394 (7.595s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:25:53.394&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:25:57.447 (4.052s)&#xA;&gt; Enter [It] should write rewrite logs - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:37 @ 07/16/23 23:25:57.447&#xA;STEP: setting enable-rewrite-log annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:38 @ 07/16/23 23:25:57.447&#xA;&lt; Exit [It] should write rewrite logs - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:37 @ 07/16/23 23:26:10.67 (13.258s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:10.67&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:11.462 (792ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] service-upstream when using the default value (false) and enabling in the annotations should use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="23.5120901">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:11.466&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:19.994 (8.529s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 07/16/23 23:26:19.994&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 07/16/23 23:26:24.057 (4.063s)&#xA;&gt; Enter [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:41 @ 07/16/23 23:26:24.057&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:53 @ 07/16/23 23:26:34.26&#xA;STEP: checking if the Service Cluster IP and Port are used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:60 @ 07/16/23 23:26:34.268&#xA;&lt; Exit [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:41 @ 07/16/23 23:26:34.424 (10.402s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:34.424&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:34.943 (519ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow - single origin with required port" classname="nginx-ingress-controller e2e suite" status="passed" time="20.2488205">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:34.948&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:43.595 (8.647s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:26:43.595&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:26:47.667 (4.072s)&#xA;&gt; Enter [It] should allow - single origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:358 @ 07/16/23 23:26:47.667&#xA;&lt; Exit [It] should allow - single origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:358 @ 07/16/23 23:26:54.707 (7.04s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:54.707&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:55.197 (490ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] client-body-buffer-size should not set client_body_buffer_size to invalid 1b" classname="nginx-ingress-controller e2e suite" status="passed" time="22.4355794">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:55.199&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:02.431 (7.267s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:27:02.431&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:27:06.577 (4.146s)&#xA;&gt; Enter [It] should not set client_body_buffer_size to invalid 1b - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:145 @ 07/16/23 23:27:06.577&#xA;&lt; Exit [It] should not set client_body_buffer_size to invalid 1b - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:145 @ 07/16/23 23:27:16.86 (10.283s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:16.86&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:17.6 (740ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With default ingress class config should accept both Ingresses with default IngressClassName and IngressClass annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="33.8281043">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:17.603&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:29.242 (11.639s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:27:29.242&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:27:33.297 (4.089s)&#xA;&gt; Enter [It] should accept both Ingresses with default IngressClassName and IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:132 @ 07/16/23 23:27:33.297&#xA;&lt; Exit [It] should accept both Ingresses with default IngressClassName and IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:132 @ 07/16/23 23:27:50.62 (17.323s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:50.62&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:51.396 (777ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should proxy_method method when global-auth-method is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="58.1665338">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:51.398&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:59.848 (8.45s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:27:59.848&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:28:07.927 (8.114s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:28:07.927&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:28:07.927&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:28:18.108&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:28:28.311&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:28:38.594 (30.701s)&#xA;&gt; Enter [It] should proxy_method method when global-auth-method is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:197 @ 07/16/23 23:28:38.594&#xA;STEP: Adding a global-auth-method to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:202 @ 07/16/23 23:28:38.594&#xA;&lt; Exit [It] should proxy_method method when global-auth-method is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:197 @ 07/16/23 23:28:48.849 (10.255s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:48.849&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:49.496 (647ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) ports or X-Forwarded-Host check during HTTP tp HTTPS redirection should not use ports during the HTTP to HTTPS redirection" classname="nginx-ingress-controller e2e suite" status="passed" time="20.2293445">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:49.498&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:58.133 (8.635s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:28:58.133&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:29:00.195 (2.062s)&#xA;&gt; Enter [It] should not use ports during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:187 @ 07/16/23 23:29:00.195&#xA;&lt; Exit [It] should not use ports during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:187 @ 07/16/23 23:29:09.273 (9.111s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:09.273&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:09.693 (420ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should warn user when use-regex is true and session-cookie-path is not set" classname="nginx-ingress-controller e2e suite" status="passed" time="27.2522022">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:09.696&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:18.525 (8.83s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:29:18.525&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:29:22.595 (4.069s)&#xA;&gt; Enter [It] should warn user when use-regex is true and session-cookie-path is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:294 @ 07/16/23 23:29:22.595&#xA;&lt; Exit [It] should warn user when use-regex is true and session-cookie-path is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:294 @ 07/16/23 23:29:35.79 (13.229s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:35.79&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:36.912 (1.123s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName should update the external name after a service update" classname="nginx-ingress-controller e2e suite" status="passed" time="24.8001117">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:36.914&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:45.266 (8.352s)&#xA;&gt; Enter [It] should update the external name after a service update - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:248 @ 07/16/23 23:29:45.266&#xA;STEP: checking the service is updated to use eu.httpbin.org - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:304 @ 07/16/23 23:30:01.037&#xA;&lt; Exit [It] should update the external name after a service update - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:248 @ 07/16/23 23:30:01.219 (15.992s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:01.219&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:01.675 (455ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if the canary ingress is modified" classname="nginx-ingress-controller e2e suite" status="passed" time="49.4495519">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:01.676&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:09.223 (7.547s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:30:09.223&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:30:17.344 (8.121s)&#xA;&gt; Enter [It] should route requests to the correct upstream if the canary ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:307 @ 07/16/23 23:30:17.344&#xA;STEP: routing requests destined for the mainline ingress to the mainline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:351 @ 07/16/23 23:30:44.8&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:360 @ 07/16/23 23:30:44.834&#xA;&lt; Exit [It] should route requests to the correct upstream if the canary ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:307 @ 07/16/23 23:30:44.863 (27.584s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:44.863&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:51.061 (6.197s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [SSL] [Flag] default-ssl-certificate uses default ssl certificate for host based ingress when configured certificate does not match host" classname="nginx-ingress-controller e2e suite" status="passed" time="48.0783854">
+              <system-err>&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:51.215&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:08.914 (17.737s)&#xA;&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 07/16/23 23:31:08.914&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 07/16/23 23:31:24.729 (15.815s)&#xA;&gt; Enter [It] uses default ssl certificate for host based ingress when configured certificate does not match host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:80 @ 07/16/23 23:31:24.729&#xA;STEP: making sure new ingress is deployed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:90 @ 07/16/23 23:31:33.588&#xA;STEP: making sure the configured default ssl certificate is being used - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:96 @ 07/16/23 23:31:36.75&#xA;&lt; Exit [It] uses default ssl certificate for host based ingress when configured certificate does not match host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:80 @ 07/16/23 23:31:38.764 (14.071s)&#xA;&gt; Enter [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:38.764&#xA;&lt; Exit [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:39.22 (456ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] Configmap - limit-rate Check limit-rate config" classname="nginx-ingress-controller e2e suite" status="passed" time="43.382621">
+              <system-err>&gt; Enter [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:39.221&#xA;&lt; Exit [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:47.492 (8.271s)&#xA;&gt; Enter [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:32 @ 07/16/23 23:31:47.492&#xA;&lt; Exit [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:32 @ 07/16/23 23:31:51.545 (4.053s)&#xA;&gt; Enter [It] Check limit-rate config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:36 @ 07/16/23 23:31:51.545&#xA;&lt; Exit [It] Check limit-rate config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:36 @ 07/16/23 23:32:22.076 (30.566s)&#xA;&gt; Enter [AfterEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:22.076&#xA;&lt; Exit [AfterEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:22.569 (493ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow - missing origins (should allow all origins)" classname="nginx-ingress-controller e2e suite" status="passed" time="19.9840928">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:22.57&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:30.865 (8.329s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:32:30.865&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:32:34.935 (4.071s)&#xA;&gt; Enter [It] should allow - missing origins (should allow all origins) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:571 @ 07/16/23 23:32:34.936&#xA;&lt; Exit [It] should allow - missing origins (should allow all origins) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:571 @ 07/16/23 23:32:42.001 (7.066s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:42.001&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:42.52 (519ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] hash size Check server names hash size should set server_names_hash_max_size" classname="nginx-ingress-controller e2e suite" status="passed" time="29.0115263">
+              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:42.522&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:49.858 (7.336s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:32:49.859&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:33:00.922 (11.098s)&#xA;&gt; Enter [It] should set server_names_hash_max_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:48 @ 07/16/23 23:33:00.922&#xA;&lt; Exit [It] should set server_names_hash_max_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:48 @ 07/16/23 23:33:11.133 (10.211s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:11.133&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:11.499 (366ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="23.8795169">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:11.501&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:19.977 (8.476s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:33:19.977&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:33:24.088 (4.111s)&#xA;&gt; Enter [It] should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:324 @ 07/16/23 23:33:24.088&#xA;&lt; Exit [It] should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:324 @ 07/16/23 23:33:34.766 (10.712s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:34.766&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:35.346 (580ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] hash size Check the variable hash size should set variables-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="30.2371193">
+              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:35.349&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:43.804 (8.455s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:33:43.804&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:33:54.894 (11.09s)&#xA;&gt; Enter [It] should set variables-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:80 @ 07/16/23 23:33:54.894&#xA;&lt; Exit [It] should set variables-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:80 @ 07/16/23 23:34:05.028 (10.168s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:05.028&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:05.552 (523ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] enable-multi-accept should be disabled when set to false" classname="nginx-ingress-controller e2e suite" status="passed" time="19.2860324">
+              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:05.554&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:14.153 (8.6s)&#xA;&gt; Enter [It] should be disabled when set to false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:49 @ 07/16/23 23:34:14.153&#xA;&lt; Exit [It] should be disabled when set to false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:49 @ 07/16/23 23:34:24.357 (10.204s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:24.358&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:24.84 (482ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] single ingress - multiple hosts should set the correct $service_name NGINX variable" classname="nginx-ingress-controller e2e suite" status="passed" time="36.3159109">
+              <system-err>&gt; Enter [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:24.841&#xA;&lt; Exit [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:33.146 (8.339s)&#xA;&gt; Enter [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:33 @ 07/16/23 23:34:33.146&#xA;&lt; Exit [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:33 @ 07/16/23 23:34:47.325 (14.18s)&#xA;&gt; Enter [It] should set the correct $service_name NGINX variable - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:38 @ 07/16/23 23:34:47.325&#xA;&lt; Exit [It] should set the correct $service_name NGINX variable - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:38 @ 07/16/23 23:35:00.678 (13.387s)&#xA;&gt; Enter [AfterEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:00.678&#xA;&lt; Exit [AfterEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:01.088 (411ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] app-root should redirect to /foo" classname="nginx-ingress-controller e2e suite" status="passed" time="23.4522216">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:01.09&#xA;&lt; Exit [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:09.717 (8.628s)&#xA;&gt; Enter [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:31 @ 07/16/23 23:35:09.717&#xA;&lt; Exit [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:31 @ 07/16/23 23:35:13.774 (4.056s)&#xA;&gt; Enter [It] should redirect to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:35 @ 07/16/23 23:35:13.774&#xA;&lt; Exit [It] should redirect to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:35 @ 07/16/23 23:35:24.001 (10.227s)&#xA;&gt; Enter [AfterEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:24.001&#xA;&lt; Exit [AfterEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:24.542 (541ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] enable-ssl-passthrough With enable-ssl-passthrough enabled should enable ssl-passthrough-proxy-port on a different port" classname="nginx-ingress-controller e2e suite" status="passed" time="32.6082511">
+              <system-err>&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:24.545&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:32.804 (8.293s)&#xA;&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 07/16/23 23:35:32.804&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 07/16/23 23:35:45.013 (12.209s)&#xA;&gt; Enter [It] should enable ssl-passthrough-proxy-port on a different port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:56 @ 07/16/23 23:35:45.013&#xA;&lt; Exit [It] should enable ssl-passthrough-proxy-port on a different port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:56 @ 07/16/23 23:35:56.305 (11.292s)&#xA;&gt; Enter [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:56.305&#xA;&lt; Exit [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:57.119 (814ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should work with use-regex annotation and session-cookie-path" classname="nginx-ingress-controller e2e suite" status="passed" time="24.3634739">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:57.124&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:06.657 (9.567s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:36:06.657&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:36:10.742 (4.085s)&#xA;&gt; Enter [It] should work with use-regex annotation and session-cookie-path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:270 @ 07/16/23 23:36:10.742&#xA;&lt; Exit [It] should work with use-regex annotation and session-cookie-path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:270 @ 07/16/23 23:36:20.937 (10.195s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:20.937&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:21.453 (516ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [SSL] secret update should return the fake SSL certificate if the secret is invalid" classname="nginx-ingress-controller e2e suite" status="passed" time="27.641171">
+              <system-err>&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:21.455&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:31.124 (9.704s)&#xA;&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 07/16/23 23:36:31.124&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 07/16/23 23:36:35.265 (4.141s)&#xA;&gt; Enter [It] should return the fake SSL certificate if the secret is invalid - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:82 @ 07/16/23 23:36:35.265&#xA;&lt; Exit [It] should return the fake SSL certificate if the secret is invalid - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:82 @ 07/16/23 23:36:48.617 (13.352s)&#xA;&gt; Enter [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:48.617&#xA;&lt; Exit [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:49.062 (444ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] upstream-hash-by-* should connect to the same pod" classname="nginx-ingress-controller e2e suite" status="passed" time="47.4783595">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:49.063&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:57.626 (8.563s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 07/16/23 23:36:57.626&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 07/16/23 23:37:05.661 (8.069s)&#xA;&gt; Enter [It] should connect to the same pod - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:83 @ 07/16/23 23:37:05.661&#xA;&lt; Exit [It] should connect to the same pod - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:83 @ 07/16/23 23:37:36.037 (30.41s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:36.037&#xA;&lt; Exit [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:36.473 (436ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="56.9946548">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:36.475&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:45.324 (8.85s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:37:45.324&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:37:57.596 (12.271s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 07/16/23 23:37:57.596&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 07/16/23 23:38:25.91 (28.348s)&#xA;&gt; Enter [It] user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:348 @ 07/16/23 23:38:25.91&#xA;&lt; Exit [It] user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:348 @ 07/16/23 23:38:32.91 (7.035s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:32.91&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:33.401 (490ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should not configure log-format escape by default" classname="nginx-ingress-controller e2e suite" status="passed" time="25.3718209">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:33.402&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:42.01 (8.609s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:38:42.01&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:38:55.207 (13.196s)&#xA;&gt; Enter [It] should not configure log-format escape by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:40 @ 07/16/23 23:38:55.207&#xA;&lt; Exit [It] should not configure log-format escape by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:40 @ 07/16/23 23:38:58.375 (3.169s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:58.375&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:58.773 (398ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param keeps processing new ingresses even if one of the existing ingresses is misconfigured" classname="nginx-ingress-controller e2e suite" status="passed" time="38.6435037">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:58.777&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:07.045 (8.302s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:39:07.045&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:39:11.141 (4.096s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 07/16/23 23:39:11.141&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 07/16/23 23:39:25.521 (14.38s)&#xA;&gt; Enter [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:698 @ 07/16/23 23:39:25.521&#xA;&lt; Exit [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:698 @ 07/16/23 23:39:36.735 (11.248s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:36.735&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:37.352 (617ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canary is created should return 404 status for requests to the canary if no matching ingress is found" classname="nginx-ingress-controller e2e suite" status="passed" time="25.6226958">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:37.354&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:47.228 (9.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:39:47.228&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:39:55.38 (8.152s)&#xA;&gt; Enter [It] should return 404 status for requests to the canary if no matching ingress is found - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:80 @ 07/16/23 23:39:55.38&#xA;&lt; Exit [It] should return 404 status for requests to the canary if no matching ingress is found - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:80 @ 07/16/23 23:40:02.395 (7.05s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:02.395&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:02.942 (547ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] global-options should have worker_rlimit_nofile option" classname="nginx-ingress-controller e2e suite" status="passed" time="14.756124400000001">
+              <system-err>&gt; Enter [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:02.952&#xA;&lt; Exit [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:14.181 (11.229s)&#xA;&gt; Enter [It] should have worker_rlimit_nofile option - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:31 @ 07/16/23 23:40:14.181&#xA;&lt; Exit [It] should have worker_rlimit_nofile option - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:31 @ 07/16/23 23:40:17.314 (3.133s)&#xA;&gt; Enter [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:17.314&#xA;&lt; Exit [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:17.708 (394ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName should sync ingress on external name service addition/deletion" classname="nginx-ingress-controller e2e suite" status="passed" time="29.5690489">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:17.709&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:26.08 (8.371s)&#xA;&gt; Enter [It] should sync ingress on external name service addition/deletion - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:311 @ 07/16/23 23:40:26.08&#xA;&lt; Exit [It] should sync ingress on external name service addition/deletion - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:311 @ 07/16/23 23:40:46.867 (20.821s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:46.867&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:47.244 (376ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] Annotation - limit-connections should limit-connections" classname="nginx-ingress-controller e2e suite" status="passed" time="38.1334074">
+              <system-out>I0716 23:41:15.732712      21 request.go:690] Waited for 1.1995168s due to client-side throttling, not priority and fairness, request: GET:https://10.96.0.1:443/api/v1/namespaces/e2e-tests-limit-connections-1689550847245898400-wb8ks/services/nginx-ingress-controller&#xA;</system-out>
+              <system-err>&gt; Enter [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:47.245&#xA;&lt; Exit [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:56.079 (8.834s)&#xA;&gt; Enter [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:34 @ 07/16/23 23:40:56.079&#xA;&lt; Exit [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:34 @ 07/16/23 23:41:00.171 (4.127s)&#xA;&gt; Enter [It] should limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:38 @ 07/16/23 23:41:00.171&#xA;&lt; Exit [It] should limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:38 @ 07/16/23 23:41:24.568 (24.396s)&#xA;&gt; Enter [AfterEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:24.568&#xA;&lt; Exit [AfterEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:25.344 (776ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Shutdown] Grace period shutdown /healthz should return status code 500 during shutdown grace period" classname="nginx-ingress-controller e2e suite" status="passed" time="80.9274995">
+              <system-err>&gt; Enter [BeforeEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:25.36&#xA;&lt; Exit [BeforeEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:32.695 (7.368s)&#xA;&gt; Enter [It] /healthz should return status code 500 during shutdown grace period - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/grace_period.go:35 @ 07/16/23 23:41:32.695&#xA;&lt; Exit [It] /healthz should return status code 500 during shutdown grace period - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/grace_period.go:35 @ 07/16/23 23:42:45.785 (1m13.158s)&#xA;&gt; Enter [AfterEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:42:45.785&#xA;&lt; Exit [AfterEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:42:46.185 (401ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should return an error if there is an invalid value in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="41.6303006">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:42:46.188&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:43:12.099 (25.945s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:43:12.099&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:43:20.23 (8.131s)&#xA;&gt; Enter [It] should return an error if there is an invalid value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:136 @ 07/16/23 23:43:20.23&#xA;&lt; Exit [It] should return an error if there is an invalid value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:136 @ 07/16/23 23:43:27.268 (7.037s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:43:27.268&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:43:27.784 (516ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller reject ingress with global-rate-limit annotations when memcached is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="49.3381235">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:43:27.785&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:43:58.24 (30.49s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:43:58.24&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:44:06.339 (8.133s)&#xA;&gt; Enter [It] reject ingress with global-rate-limit annotations when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:43 @ 07/16/23 23:44:06.339&#xA;STEP: rejects ingress when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:52 @ 07/16/23 23:44:06.339&#xA;STEP: accepts ingress when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:57 @ 07/16/23 23:44:06.349&#xA;&lt; Exit [It] reject ingress with global-rate-limit annotations when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:43 @ 07/16/23 23:44:16.599 (10.26s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:44:16.599&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:44:17.054 (455ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should not return an error for an invalid Ingress when it has unknown class" classname="nginx-ingress-controller e2e suite" status="passed" time="28.0471116">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:44:17.055&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:44:36.36 (19.339s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:44:36.36&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:44:44.488 (8.128s)&#xA;&gt; Enter [It] should not return an error for an invalid Ingress when it has unknown class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:207 @ 07/16/23 23:44:44.488&#xA;&lt; Exit [It] should not return an error for an invalid Ingress when it has unknown class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:207 @ 07/16/23 23:44:44.642 (153ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:44:44.642&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:44:45.068 (426ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should not allow overlaps of host and paths without canary annotations" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1548957">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:44:45.07&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:45:03.441 (18.405s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:45:03.441&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:45:11.572 (8.131s)&#xA;&gt; Enter [It] should not allow overlaps of host and paths without canary annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:70 @ 07/16/23 23:45:11.572&#xA;&lt; Exit [It] should not allow overlaps of host and paths without canary annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:70 @ 07/16/23 23:45:14.768 (3.197s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:45:14.768&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:45:15.19 (422ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should return an error if the Ingress V1 definition contains invalid annotations" classname="nginx-ingress-controller e2e suite" status="passed" time="27.1581685">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:45:15.191&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:45:33.55 (18.393s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:45:33.55&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:45:41.706 (8.156s)&#xA;&gt; Enter [It] should return an error if the Ingress V1 definition contains invalid annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:196 @ 07/16/23 23:45:41.706&#xA;&lt; Exit [It] should return an error if the Ingress V1 definition contains invalid annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:196 @ 07/16/23 23:45:41.879 (173ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:45:41.879&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:45:42.315 (436ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should not return an error if the Ingress V1 definition is valid with IngressClass annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="37.2712832">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:45:42.316&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:46:05.628 (23.347s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:46:05.629&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:46:13.77 (8.142s)&#xA;&gt; Enter [It] should not return an error if the Ingress V1 definition is valid with IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:180 @ 07/16/23 23:46:13.77&#xA;&lt; Exit [It] should not return an error if the Ingress V1 definition is valid with IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:180 @ 07/16/23 23:46:19.093 (5.323s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:46:19.093&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:46:19.553 (460ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should return an error if there is a forbidden value in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="34.8404317">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:46:19.554&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:46:38.748 (19.229s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:46:38.748&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:46:46.903 (8.154s)&#xA;&gt; Enter [It] should return an error if there is a forbidden value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:150 @ 07/16/23 23:46:46.903&#xA;&lt; Exit [It] should return an error if there is a forbidden value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:150 @ 07/16/23 23:46:53.94 (7.037s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:46:53.94&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:46:54.36 (420ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should not return an error if the Ingress V1 definition is valid with Ingress Class" classname="nginx-ingress-controller e2e suite" status="passed" time="39.4930985">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:46:54.361&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:47:21.846 (27.52s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:47:21.846&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:47:29.967 (8.139s)&#xA;&gt; Enter [It] should not return an error if the Ingress V1 definition is valid with Ingress Class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:164 @ 07/16/23 23:47:29.967&#xA;&lt; Exit [It] should not return an error if the Ingress V1 definition is valid with Ingress Class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:164 @ 07/16/23 23:47:33.332 (3.365s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:47:33.332&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:47:33.801 (469ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should block ingress with invalid path" classname="nginx-ingress-controller e2e suite" status="passed" time="41.2205255">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:47:33.802&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:48:03.021 (29.226s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:48:03.021&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:48:11.191 (8.17s)&#xA;&gt; Enter [It] should block ingress with invalid path - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:108 @ 07/16/23 23:48:11.191&#xA;&lt; Exit [It] should block ingress with invalid path - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:108 @ 07/16/23 23:48:14.438 (3.246s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:48:14.438&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:48:15.015 (577ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [TopologyHints] topology aware routing should return 200 when service has topology hints" classname="nginx-ingress-controller e2e suite" status="passed" time="22.2307844">
+              <system-err>&gt; Enter [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:48:15.017&#xA;&lt; Exit [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:48:22.38 (7.363s)&#xA;&gt; Enter [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:39 @ 07/16/23 23:48:22.38&#xA;&lt; Exit [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:39 @ 07/16/23 23:48:26.446 (4.066s)&#xA;&gt; Enter [It] should return 200 when service has topology hints - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:43 @ 07/16/23 23:48:26.446&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:53 @ 07/16/23 23:48:36.588&#xA;&lt; Exit [It] should return 200 when service has topology hints - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:43 @ 07/16/23 23:48:36.76 (10.343s)&#xA;&gt; Enter [AfterEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:48:36.76&#xA;&lt; Exit [AfterEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:48:37.218 (459ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] watch namespace selector With specific watch-namespace-selector flags should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar" classname="nginx-ingress-controller e2e suite" status="passed" time="57.2946911">
+              <system-err>&gt; Enter [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:48:37.219&#xA;&lt; Exit [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:49:01.506 (24.32s)&#xA;&gt; Enter [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:51 @ 07/16/23 23:49:01.506&#xA;&lt; Exit [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:51 @ 07/16/23 23:49:27.706 (26.2s)&#xA;&gt; Enter [It] should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:63 @ 07/16/23 23:49:27.706&#xA;&lt; Exit [It] should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:63 @ 07/16/23 23:49:34.037 (6.365s)&#xA;&gt; Enter [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:49:34.037&#xA;&lt; Exit [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:49:34.43 (393ms)&#xA;&gt; Enter [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:56 @ 07/16/23 23:49:34.43&#xA;&lt; Exit [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:56 @ 07/16/23 23:49:34.447 (17ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should allow overlaps of host and paths with canary annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="32.8319655">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:49:34.449&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:49:53.407 (18.958s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:49:53.407&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:50:01.525 (8.152s)&#xA;&gt; Enter [It] should allow overlaps of host and paths with canary annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:87 @ 07/16/23 23:50:01.525&#xA;&lt; Exit [It] should allow overlaps of host and paths with canary annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:87 @ 07/16/23 23:50:06.787 (5.263s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:50:06.787&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:50:07.247 (459ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Admission] admission controller should return an error if there is an error validating the ingress definition" classname="nginx-ingress-controller e2e suite" status="passed" time="27.8793348">
+              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:50:07.248&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:50:26.543 (19.295s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:50:26.543&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:50:34.647 (8.138s)&#xA;&gt; Enter [It] should return an error if there is an error validating the ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:125 @ 07/16/23 23:50:34.647&#xA;&lt; Exit [It] should return an error if there is an error validating the ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:125 @ 07/16/23 23:50:34.688 (42ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:50:34.688&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:50:35.093 (404ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should allow for custom rewrite parameters" classname="nginx-ingress-controller e2e suite" status="passed" time="39.3327111">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:34.275&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:48.02 (13.746s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:07:48.02&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:08:02.283 (14.262s)&#xA;&gt; Enter [It] should allow for custom rewrite parameters - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:190 @ 07/16/23 23:08:02.283&#xA;STEP: creating an ingress definition with the use-regex annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:193 @ 07/16/23 23:08:02.283&#xA;STEP: check that &#39;/foo/bar/bar&#39; redirects to custom rewrite - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:206 @ 07/16/23 23:08:12.679&#xA;&lt; Exit [It] should allow for custom rewrite parameters - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:190 @ 07/16/23 23:08:12.703 (10.454s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:12.703&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:13.572 (869ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if mainline ingress is created after the canary ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="40.9961349">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:13.576&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:28.615 (15.039s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:08:28.615&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:08:36.764 (8.184s)&#xA;&gt; Enter [It] should route requests to the correct upstream if mainline ingress is created after the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:206 @ 07/16/23 23:08:36.765&#xA;STEP: routing requests destined for the mainline ingress to the mainelin upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:231 @ 07/16/23 23:08:54.047&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:240 @ 07/16/23 23:08:54.056&#xA;&lt; Exit [It] should route requests to the correct upstream if mainline ingress is created after the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:206 @ 07/16/23 23:08:54.065 (17.301s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:54.065&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:54.538 (473ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret" classname="nginx-ingress-controller e2e suite" status="passed" time="31.4066525">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:54.54&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:05.022 (10.516s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:09:05.022&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:09:09.106 (4.084s)&#xA;&gt; Enter [It] should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:36 @ 07/16/23 23:09:09.106&#xA;&lt; Exit [It] should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:36 @ 07/16/23 23:09:25.238 (16.132s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:25.238&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:25.913 (675ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* canary affinity behavior routes traffic to either mainline or canary backend (legacy behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="72.7751378">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:25.915&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:34.419 (8.538s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:09:34.419&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:09:42.592 (8.174s)&#xA;&gt; Enter [It] routes traffic to either mainline or canary backend (legacy behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1058 @ 07/16/23 23:09:42.592&#xA;&lt; Exit [It] routes traffic to either mainline or canary backend (legacy behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1058 @ 07/16/23 23:10:38.197 (55.673s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:38.197&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:38.587 (391ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not allow - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="20.2393701">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:38.589&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:47.213 (8.624s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:10:47.213&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:10:51.275 (4.063s)&#xA;&gt; Enter [It] should not allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:196 @ 07/16/23 23:10:51.276&#xA;&lt; Exit [It] should not allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:196 @ 07/16/23 23:10:58.316 (7.04s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:58.316&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:58.828 (512ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] influxdb-* when influxdb is enabled should send the request metric to the influxdb server" classname="nginx-ingress-controller e2e suite" status="passed" time="78.7372349">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:58.83&#xA;&lt; Exit [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:06.101 (7.326s)&#xA;&gt; Enter [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:42 @ 07/16/23 23:11:06.101&#xA;&lt; Exit [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:42 @ 07/16/23 23:11:55.28 (49.235s)&#xA;&gt; Enter [It] should send the request metric to the influxdb server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:48 @ 07/16/23 23:11:55.28&#xA;&lt; Exit [It] should send the request metric to the influxdb server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:48 @ 07/16/23 23:12:16.87 (21.626s)&#xA;&gt; Enter [AfterEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:16.87&#xA;&lt; Exit [AfterEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:17.419 (549ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should not set invalid proxy timeouts" classname="nginx-ingress-controller e2e suite" status="passed" time="24.1317913">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:17.421&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:26.489 (9.069s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:12:26.49&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:12:30.699 (4.21s)&#xA;&gt; Enter [It] should not set invalid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:136 @ 07/16/23 23:12:30.699&#xA;&lt; Exit [It] should not set invalid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:136 @ 07/16/23 23:12:41.026 (10.361s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:41.03&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:41.518 (487ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow correct origins - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="20.9412207">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:41.519&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:50.636 (9.117s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:12:50.636&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:12:54.712 (4.076s)&#xA;&gt; Enter [It] should allow correct origins - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:216 @ 07/16/23 23:12:54.712&#xA;&lt; Exit [It] should allow correct origins - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:216 @ 07/16/23 23:13:01.787 (7.076s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:01.787&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:02.426 (673ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Ingress] [PathType] mix Exact and Prefix paths should choose the correct location" classname="nginx-ingress-controller e2e suite" status="passed" time="48.5153405">
+              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:02.429&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:11.216 (8.787s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:33 @ 07/16/23 23:13:11.217&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:33 @ 07/16/23 23:13:15.424 (4.207s)&#xA;&gt; Enter [It] should choose the correct location - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:39 @ 07/16/23 23:13:15.424&#xA;STEP: Checking exact request to / - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:63 @ 07/16/23 23:13:32.733&#xA;STEP: Checking prefix request to /bar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:76 @ 07/16/23 23:13:32.756&#xA;STEP: Checking exact request to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:109 @ 07/16/23 23:13:50.333&#xA;STEP: Checking prefix request to /foo/bar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:122 @ 07/16/23 23:13:50.341&#xA;STEP: Checking prefix request to /foobar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:134 @ 07/16/23 23:13:50.351&#xA;&lt; Exit [It] should choose the correct location - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:39 @ 07/16/23 23:13:50.359 (34.97s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:50.36&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:50.91 (550ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] gzip should set gzip_comp_level to 4" classname="nginx-ingress-controller e2e suite" status="passed" time="25.181318">
+              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:50.913&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:58.322 (7.409s)&#xA;&gt; Enter [It] should set gzip_comp_level to 4 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:56 @ 07/16/23 23:13:58.322&#xA;&lt; Exit [It] should set gzip_comp_level to 4 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:56 @ 07/16/23 23:14:15.594 (17.306s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:15.594&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:16.06 (466ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret" classname="nginx-ingress-controller e2e suite" status="passed" time="37.9162554">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:16.061&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:24.013 (7.951s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:14:24.013&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:14:28.134 (4.121s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:37 @ 07/16/23 23:14:28.134&#xA;&lt; Exit [It] should set valid proxy-ssl-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:37 @ 07/16/23 23:14:47.036 (18.936s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:47.036&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:53.943 (6.907s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should change the default proxy HTTP version" classname="nginx-ingress-controller e2e suite" status="passed" time="24.9681526">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:53.945&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:04.186 (10.275s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:15:04.186&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:15:08.271 (4.085s)&#xA;&gt; Enter [It] should change the default proxy HTTP version - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:233 @ 07/16/23 23:15:08.271&#xA;&lt; Exit [It] should change the default proxy HTTP version - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:233 @ 07/16/23 23:15:18.477 (10.206s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:18.477&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:18.878 (401ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] permanent-redirect permanent-redirect-code should respond with a custom redirect code" classname="nginx-ingress-controller e2e suite" status="passed" time="19.1586459">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:18.88&#xA;&lt; Exit [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:27.307 (8.428s)&#xA;&gt; Enter [It] should respond with a custom redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:61 @ 07/16/23 23:15:27.307&#xA;STEP: setting permanent-redirect-code annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:62 @ 07/16/23 23:15:27.307&#xA;STEP: sending request to redirected URL path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:82 @ 07/16/23 23:15:37.505&#xA;&lt; Exit [It] should respond with a custom redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:61 @ 07/16/23 23:15:37.513 (10.24s)&#xA;&gt; Enter [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:37.513&#xA;&lt; Exit [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:38.004 (491ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should routes to mainline upstream when the given Regex causes error" classname="nginx-ingress-controller e2e suite" status="passed" time="37.114839">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:38.014&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:47.066 (9.052s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:15:47.066&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:15:57.188 (10.122s)&#xA;&gt; Enter [It] should routes to mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:566 @ 07/16/23 23:15:57.188&#xA;STEP: routing requests to the mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:591 @ 07/16/23 23:16:14.422&#xA;&lt; Exit [It] should routes to mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:566 @ 07/16/23 23:16:14.445 (17.291s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:14.445&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:15.095 (650ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3675251">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:15.112&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:23.549 (8.437s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:16:23.549&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:16:27.629 (4.08s)&#xA;&gt; Enter [It] should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:266 @ 07/16/23 23:16:27.629&#xA;&lt; Exit [It] should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:266 @ 07/16/23 23:16:37.862 (10.268s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:37.862&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:38.445 (583ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] block-* should block User-Agents defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="32.3222438">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:38.446&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:49.042 (10.596s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 07/16/23 23:16:49.042&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 07/16/23 23:17:00.129 (11.087s)&#xA;&gt; Enter [It] should block User-Agents defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:55 @ 07/16/23 23:17:00.129&#xA;&lt; Exit [It] should block User-Agents defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:55 @ 07/16/23 23:17:10.352 (10.257s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:10.352&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:10.734 (382ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should not set secure in cookie with provided false annotation on http" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3872978">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:10.736&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:19.354 (8.618s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:17:19.354&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:17:23.429 (4.075s)&#xA;&gt; Enter [It] should not set secure in cookie with provided false annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:435 @ 07/16/23 23:17:23.429&#xA;&lt; Exit [It] should not set secure in cookie with provided false annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:435 @ 07/16/23 23:17:33.591 (10.197s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:33.591&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:34.089 (497ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should add auth headers when global-auth-response-headers is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="58.108191">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:34.09&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:42.368 (8.278s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:17:42.368&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:17:50.549 (8.181s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:17:50.549&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:17:50.549&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:18:01.043&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:18:11.254&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:18:21.423 (30.908s)&#xA;&gt; Enter [It] should add auth headers when global-auth-response-headers is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:223 @ 07/16/23 23:18:21.423&#xA;STEP: Adding a global-auth-response-headers to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:228 @ 07/16/23 23:18:21.423&#xA;&lt; Exit [It] should add auth headers when global-auth-response-headers is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:223 @ 07/16/23 23:18:31.597 (10.208s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:31.597&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:32.129 (532ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should set proxy client-max-body-size to 8m" classname="nginx-ingress-controller e2e suite" status="passed" time="23.0777599">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:32.13&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:40.387 (8.257s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:18:40.387&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:18:44.465 (4.078s)&#xA;&gt; Enter [It] should set proxy client-max-body-size to 8m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:85 @ 07/16/23 23:18:44.465&#xA;&lt; Exit [It] should set proxy client-max-body-size to 8m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:85 @ 07/16/23 23:18:54.781 (10.316s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:54.781&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:55.208 (427ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to default" classname="nginx-ingress-controller e2e suite" status="passed" time="23.1290998">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:55.21&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:03.622 (8.446s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:19:03.622&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:19:07.698 (4.076s)&#xA;&gt; Enter [It] should set proxy_redirect to default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:52 @ 07/16/23 23:19:07.698&#xA;&lt; Exit [It] should set proxy_redirect to default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:52 @ 07/16/23 23:19:17.914 (10.216s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:17.914&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:18.304 (391ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should create additional upstream block when auth-keepalive is set with HTTP/1.x" classname="nginx-ingress-controller e2e suite" status="passed" time="50.5490694">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:18.307&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:26.675 (8.368s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:19:26.675&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:19:30.739 (4.064s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:19:30.739&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:19:45.008 (14.304s)&#xA;&gt; Enter [It] should create additional upstream block when auth-keepalive is set with HTTP/1.x - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:623 @ 07/16/23 23:19:45.008&#xA;&lt; Exit [It] should create additional upstream block when auth-keepalive is set with HTTP/1.x - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:623 @ 07/16/23 23:20:08.248 (23.274s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:08.248&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:08.787 (539ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] server-alias should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="23.7681149">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:08.788&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:17.73 (8.942s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 07/16/23 23:20:17.73&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 07/16/23 23:20:21.833 (4.103s)&#xA;&gt; Enter [It] should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:36 @ 07/16/23 23:20:21.833&#xA;&lt; Exit [It] should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:36 @ 07/16/23 23:20:32.024 (10.226s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:32.024&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:32.522 (498ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] plugins should exist a x-hello-world header" classname="nginx-ingress-controller e2e suite" status="passed" time="32.3017997">
+              <system-err>&gt; Enter [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:32.53&#xA;&lt; Exit [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:40.871 (8.341s)&#xA;&gt; Enter [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:31 @ 07/16/23 23:20:40.871&#xA;&lt; Exit [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:31 @ 07/16/23 23:20:46.94 (6.069s)&#xA;&gt; Enter [It] should exist a x-hello-world header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:35 @ 07/16/23 23:20:46.94&#xA;&lt; Exit [It] should exist a x-hello-world header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:35 @ 07/16/23 23:21:04.258 (17.351s)&#xA;&gt; Enter [AfterEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:04.258&#xA;&lt; Exit [AfterEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:04.797 (540ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] upstream-hash-by-* should connect to the same subset of pods" classname="nginx-ingress-controller e2e suite" status="passed" time="45.3711379">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:04.802&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:13.19 (8.387s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 07/16/23 23:21:13.19&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 07/16/23 23:21:19.32 (6.13s)&#xA;&gt; Enter [It] should connect to the same subset of pods - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:92 @ 07/16/23 23:21:19.32&#xA;&lt; Exit [It] should connect to the same subset of pods - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:92 @ 07/16/23 23:21:49.708 (30.422s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:49.708&#xA;&lt; Exit [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:50.139 (431ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the keep alive should set keepalive_requests" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1447705">
+              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:50.145&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:58.496 (8.351s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:21:58.496&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:22:09.574 (11.112s)&#xA;&gt; Enter [It] should set keepalive_requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:48 @ 07/16/23 23:22:09.574&#xA;&lt; Exit [It] should set keepalive_requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:48 @ 07/16/23 23:22:19.755 (10.181s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:19.755&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:20.256 (501ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes (down scaling of replicas)" classname="nginx-ingress-controller e2e suite" status="passed" time="45.9411528">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:20.257&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:28.894 (8.637s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:22:28.894&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:22:43.112 (14.252s)&#xA;&gt; Enter [It] handles endpoints only changes (down scaling of replicas) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:87 @ 07/16/23 23:22:43.112&#xA;&lt; Exit [It] handles endpoints only changes (down scaling of replicas) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:87 @ 07/16/23 23:23:05.645 (22.568s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:05.645&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:06.129 (484ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a TLS enabled ingress should set X-Forwarded-Port header to 443" classname="nginx-ingress-controller e2e suite" status="passed" time="34.8905681">
+              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:06.131&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:20.599 (14.468s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 07/16/23 23:23:20.6&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 07/16/23 23:23:27.994 (7.394s)&#xA;&gt; Enter [It] should set X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:70 @ 07/16/23 23:23:27.994&#xA;&lt; Exit [It] should set X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:70 @ 07/16/23 23:23:40.522 (12.562s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:40.522&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:40.988 (466ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] upstream-vhost set host to upstreamvhost.bar.com" classname="nginx-ingress-controller e2e suite" status="passed" time="23.4091998">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:40.989&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:49.554 (8.565s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:30 @ 07/16/23 23:23:49.554&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:30 @ 07/16/23 23:23:53.661 (4.107s)&#xA;&gt; Enter [It] set host to upstreamvhost.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:34 @ 07/16/23 23:23:53.661&#xA;&lt; Exit [It] set host to upstreamvhost.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:34 @ 07/16/23 23:24:03.928 (10.302s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:03.928&#xA;&lt; Exit [AfterEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:04.364 (435ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] configmap stream-snippet should add value of stream-snippet via config map to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="35.0935104">
+              <system-err>&gt; Enter [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:04.366&#xA;&lt; Exit [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:12.746 (8.379s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:38 @ 07/16/23 23:24:12.746&#xA;&lt; Exit [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:38 @ 07/16/23 23:24:16.814 (4.069s)&#xA;&gt; Enter [It] should add value of stream-snippet via config map to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:42 @ 07/16/23 23:24:16.814&#xA;&lt; Exit [It] should add value of stream-snippet via config map to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:42 @ 07/16/23 23:24:39.062 (22.282s)&#xA;&gt; Enter [AfterEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:39.062&#xA;&lt; Exit [AfterEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:39.426 (364ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-sync-events should create sync events (default)" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3765979">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:39.427&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:48.131 (8.704s)&#xA;&gt; Enter [It] should create sync events (default) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:35 @ 07/16/23 23:24:48.132&#xA;&lt; Exit [It] should create sync events (default) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:35 @ 07/16/23 23:25:02.405 (14.308s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:02.405&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:02.769 (364ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-service-external-name should ignore services of external-name type" classname="nginx-ingress-controller e2e suite" status="passed" time="42.5381596">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:02.775&#xA;&lt; Exit [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:11.181 (8.406s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:38 @ 07/16/23 23:25:11.181&#xA;&lt; Exit [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:38 @ 07/16/23 23:25:24.327 (13.145s)&#xA;&gt; Enter [It] should ignore services of external-name type - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:52 @ 07/16/23 23:25:24.327&#xA;&lt; Exit [It] should ignore services of external-name type - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:52 @ 07/16/23 23:25:44.763 (20.471s)&#xA;&gt; Enter [AfterEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:44.763&#xA;&lt; Exit [AfterEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:45.279 (515ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] configuration-snippet drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34;" classname="nginx-ingress-controller e2e suite" status="passed" time="42.3957203">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:45.282&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:53.726 (8.444s)&#xA;&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 07/16/23 23:25:53.726&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 07/16/23 23:25:57.802 (4.077s)&#xA;&gt; Enter [It] drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:58 @ 07/16/23 23:25:57.803&#xA;&lt; Exit [It] drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:58 @ 07/16/23 23:26:27.099 (29.331s)&#xA;&gt; Enter [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:27.099&#xA;&lt; Exit [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:27.643 (544ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting max-age parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="35.0574883">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:27.646&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:36.154 (8.542s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:26:36.154&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:26:40.235 (4.081s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:26:40.235&#xA;Jul 16 23:26:49.946: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:26:51.943 (11.709s)&#xA;&gt; Enter [It] setting max-age parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:111 @ 07/16/23 23:26:51.944&#xA;&lt; Exit [It] setting max-age parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:111 @ 07/16/23 23:27:02.135 (10.226s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:02.135&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:02.635 (500ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="27.2388441">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:02.637&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:10.976 (8.339s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:27:10.976&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:27:15.04 (4.064s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 07/16/23 23:27:15.04&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 07/16/23 23:27:29.343 (14.303s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:687 @ 07/16/23 23:27:29.343&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:687 @ 07/16/23 23:27:29.355 (12ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:29.355&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:29.875 (520ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by header with value and cookie should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="33.7956341">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:29.877&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:37.741 (7.898s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:27:37.741&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:27:45.891 (8.149s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:604 @ 07/16/23 23:27:45.891&#xA;STEP: routing requests to the canary upstream when header value does not match and cookie is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:630 @ 07/16/23 23:28:03.119&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:604 @ 07/16/23 23:28:03.125 (17.268s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:03.125&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:03.604 (479ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] enable-real-ip should not trust X-Forwarded-For header when setting is false" classname="nginx-ingress-controller e2e suite" status="passed" time="37.1809584">
+              <system-err>&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:03.605&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:11.902 (8.297s)&#xA;&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 07/16/23 23:28:11.902&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 07/16/23 23:28:23.063 (11.161s)&#xA;&gt; Enter [It] should not trust X-Forwarded-For header when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:78 @ 07/16/23 23:28:23.063&#xA;&lt; Exit [It] should not trust X-Forwarded-For header when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:78 @ 07/16/23 23:28:40.338 (17.309s)&#xA;&gt; Enter [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:40.338&#xA;&lt; Exit [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:40.752 (414ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic certificates picks up the previously missing secret for a given ingress without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="33.2392362">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:40.754&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:49.068 (8.315s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:28:49.068&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:28:53.189 (4.121s)&#xA;&gt; Enter [It] picks up the previously missing secret for a given ingress without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:70 @ 07/16/23 23:28:53.189&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:94 @ 07/16/23 23:29:10.345&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:101 @ 07/16/23 23:29:13.397&#xA;&lt; Exit [It] picks up the previously missing secret for a given ingress without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:70 @ 07/16/23 23:29:13.425 (20.27s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:13.425&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:13.959 (534ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With watch-ingress-without-class flag should watch Ingress with no class and ignore ingress with a different class" classname="nginx-ingress-controller e2e suite" status="passed" time="38.5230922">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:13.961&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:22.387 (8.427s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:29:22.387&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:29:26.497 (4.11s)&#xA;&gt; Enter [BeforeEach] With watch-ingress-without-class flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:462 @ 07/16/23 23:29:26.497&#xA;&lt; Exit [BeforeEach] With watch-ingress-without-class flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:462 @ 07/16/23 23:29:34.509 (8.047s)&#xA;&gt; Enter [It] should watch Ingress with no class and ignore ingress with a different class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:482 @ 07/16/23 23:29:34.509&#xA;&lt; Exit [It] should watch Ingress with no class and ignore ingress with a different class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:482 @ 07/16/23 23:29:51.844 (17.335s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:51.844&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:52.449 (605ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow - matching origin+port with wildcard origin" classname="nginx-ingress-controller e2e suite" status="passed" time="24.0234316">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:52.451&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:02.775 (10.363s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:30:02.775&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:30:08.866 (6.091s)&#xA;&gt; Enter [It] should allow - matching origin+port with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:488 @ 07/16/23 23:30:08.866&#xA;&lt; Exit [It] should allow - matching origin+port with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:488 @ 07/16/23 23:30:15.919 (7.053s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:15.919&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:16.435 (515ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a TLS enabled ingress when external authentication is configured should set the X-Forwarded-Port header to 443" classname="nginx-ingress-controller e2e suite" status="passed" time="58.3528016">
+              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:16.437&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:40.742 (24.37s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 07/16/23 23:30:40.742&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 07/16/23 23:30:57.46 (16.718s)&#xA;&gt; Enter [It] should set the X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:100 @ 07/16/23 23:30:57.46&#xA;&lt; Exit [It] should set the X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:100 @ 07/16/23 23:31:14.185 (16.763s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:14.185&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:14.687 (502ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Default Backend] disables access logging for default backend" classname="nginx-ingress-controller e2e suite" status="skipped" time="8.8057568">
+              <skipped message="skipped - enable-access-log-for-default-backend"></skipped>
+              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:14.689&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:23.074 (8.386s)&#xA;&gt; Enter [It] disables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:105 @ 07/16/23 23:31:23.074&#xA;[SKIPPED] enable-access-log-for-default-backend&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:107 @ 07/16/23 23:31:23.075&#xA;&lt; Exit [It] disables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:105 @ 07/16/23 23:31:23.075 (0s)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:23.075&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:23.495 (420ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes consistently (down scaling of replicas vs. empty service)" classname="nginx-ingress-controller e2e suite" status="passed" time="50.1147385">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:23.497&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:32.125 (8.663s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:31:32.125&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:31:46.863 (14.738s)&#xA;&gt; Enter [It] handles endpoints only changes consistently (down scaling of replicas vs. empty service) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:125 @ 07/16/23 23:31:46.863&#xA;&lt; Exit [It] handles endpoints only changes consistently (down scaling of replicas vs. empty service) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:125 @ 07/16/23 23:32:13.132 (26.303s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:13.132&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:13.542 (410ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-catch-all should allow Ingress with rules" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1741837">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:13.543&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:21.845 (8.301s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:32:21.845&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:32:32.94 (11.13s)&#xA;&gt; Enter [It] should allow Ingress with rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:123 @ 07/16/23 23:32:32.94&#xA;&lt; Exit [It] should allow Ingress with rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:123 @ 07/16/23 23:32:43.229 (10.289s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:43.229&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:43.683 (454ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should validate auth-tls-verify-client" classname="nginx-ingress-controller e2e suite" status="passed" time="28.3321117">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:43.686&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:52.383 (8.697s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:32:52.383&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:32:56.466 (4.083s)&#xA;&gt; Enter [It] should validate auth-tls-verify-client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:206 @ 07/16/23 23:32:56.466&#xA;&lt; Exit [It] should validate auth-tls-verify-client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:206 @ 07/16/23 23:33:11.547 (15.115s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:11.547&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:11.984 (436ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] enable-ssl-passthrough With enable-ssl-passthrough enabled should pass unknown traffic to default backend and handle known traffic" classname="nginx-ingress-controller e2e suite" status="passed" time="56.8061528">
+              <system-err>&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:11.986&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:20.45 (8.464s)&#xA;&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 07/16/23 23:33:20.45&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 07/16/23 23:33:32.659 (12.244s)&#xA;&gt; Enter [It] should pass unknown traffic to default backend and handle known traffic - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:79 @ 07/16/23 23:33:32.659&#xA;Jul 16 23:34:02.788: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not noannotationnopassthrough.com&#xA;&lt; Exit [It] should pass unknown traffic to default backend and handle known traffic - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:79 @ 07/16/23 23:34:08.035 (35.41s)&#xA;&gt; Enter [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:08.036&#xA;&lt; Exit [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:08.724 (688ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity" classname="nginx-ingress-controller e2e suite" status="passed" time="22.996031">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:08.73&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:16.88 (8.151s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:34:16.881&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:34:20.959 (4.078s)&#xA;&gt; Enter [It] should enable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:35 @ 07/16/23 23:34:20.959&#xA;&lt; Exit [It] should enable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:35 @ 07/16/23 23:34:31.272 (10.348s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:31.272&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:31.691 (419ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 401 when accessing &#39;/&#39; unauthentication" classname="nginx-ingress-controller e2e suite" status="passed" time="32.2377172">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:31.694&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:41.1 (9.407s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 07/16/23 23:34:41.1&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 07/16/23 23:35:00.246 (19.146s)&#xA;&gt; Enter [It] should return status code 401 when accessing &#39;/&#39; unauthentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:54 @ 07/16/23 23:35:00.246&#xA;&lt; Exit [It] should return status code 401 when accessing &#39;/&#39; unauthentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:54 @ 07/16/23 23:35:03.378 (3.166s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:03.378&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:03.897 (519ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-ssl-* proxy-ssl-location-only flag should change the nginx config server part" classname="nginx-ingress-controller e2e suite" status="passed" time="46.2279664">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:03.899&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:12.446 (8.548s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:35:12.446&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:35:16.511 (4.065s)&#xA;&gt; Enter [It] proxy-ssl-location-only flag should change the nginx config server part - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:150 @ 07/16/23 23:35:16.511&#xA;&lt; Exit [It] proxy-ssl-location-only flag should change the nginx config server part - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:150 @ 07/16/23 23:35:49.692 (33.215s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:49.692&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:50.092 (400ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] nginx-configuration fails when using alias directive" classname="nginx-ingress-controller e2e suite" status="passed" time="62.1597099">
+              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 07/16/23 23:35:50.093&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 07/16/23 23:35:52.103 (2.01s)&#xA;&gt; Enter [It] fails when using alias directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:115 @ 07/16/23 23:35:52.103&#xA;&lt; Exit [It] fails when using alias directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:115 @ 07/16/23 23:36:52.175 (1m0.14s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 07/16/23 23:36:52.175&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 07/16/23 23:36:52.185 (10ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress with different controller class" classname="nginx-ingress-controller e2e suite" status="passed" time="32.5241451">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:52.186&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:02.922 (10.77s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:37:02.922&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:37:07.012 (4.09s)&#xA;&gt; Enter [It] should ignore Ingress with different controller class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:104 @ 07/16/23 23:37:07.012&#xA;&lt; Exit [It] should ignore Ingress with different controller class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:104 @ 07/16/23 23:37:24.253 (17.242s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:24.253&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:24.676 (423ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] enable-access-log enable-rewrite-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="23.6910715">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:24.678&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:32.973 (8.329s)&#xA;&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 07/16/23 23:37:32.973&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 07/16/23 23:37:37.052 (4.079s)&#xA;&gt; Enter [It] set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:34 @ 07/16/23 23:37:37.052&#xA;&lt; Exit [It] set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:34 @ 07/16/23 23:37:47.815 (10.762s)&#xA;&gt; Enter [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:47.815&#xA;&lt; Exit [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:48.335 (520ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] backend status code 503 should return 503 when all backend service endpoints are unavailable" classname="nginx-ingress-controller e2e suite" status="passed" time="20.6114182">
+              <system-err>&gt; Enter [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:48.336&#xA;&lt; Exit [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:58.16 (9.824s)&#xA;&gt; Enter [It] should return 503 when all backend service endpoints are unavailable - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:54 @ 07/16/23 23:37:58.16&#xA;&lt; Exit [It] should return 503 when all backend service endpoints are unavailable - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:54 @ 07/16/23 23:38:08.445 (10.319s)&#xA;&gt; Enter [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:08.445&#xA;&lt; Exit [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:08.913 (468ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] block-* should block CIDRs defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="29.486236">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:08.914&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:16.27 (7.355s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 07/16/23 23:38:16.27&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 07/16/23 23:38:27.37 (11.1s)&#xA;&gt; Enter [It] should block CIDRs defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:38 @ 07/16/23 23:38:27.37&#xA;&lt; Exit [It] should block CIDRs defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:38 @ 07/16/23 23:38:37.659 (10.323s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:37.659&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:38.366 (708ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - GRPC authorization metadata should be overwritten by external auth response headers" classname="nginx-ingress-controller e2e suite" status="passed" time="31.3305949">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:38.369&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:50.759 (12.39s)&#xA;&gt; Enter [It] authorization metadata should be overwritten by external auth response headers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:126 @ 07/16/23 23:38:50.759&#xA;&lt; Exit [It] authorization metadata should be overwritten by external auth response headers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:126 @ 07/16/23 23:39:09.202 (18.477s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:09.202&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:09.666 (464ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] server-alias should return status code 200 for host &#39;foo&#39; and &#39;bar&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="27.6115644">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:09.667&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:20.364 (10.697s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 07/16/23 23:39:20.364&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 07/16/23 23:39:26.451 (6.087s)&#xA;&gt; Enter [It] should return status code 200 for host &#39;foo&#39; and &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:62 @ 07/16/23 23:39:26.451&#xA;&lt; Exit [It] should return status code 200 for host &#39;foo&#39; and &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:62 @ 07/16/23 23:39:36.677 (10.26s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:36.677&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:37.244 (568ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - FastCGI should add fastcgi_param in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="22.0350729">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:37.246&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:46.548 (9.301s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:39:46.548&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:39:48.593 (2.045s)&#xA;&gt; Enter [It] should add fastcgi_param in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:71 @ 07/16/23 23:39:48.593&#xA;&lt; Exit [It] should add fastcgi_param in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:71 @ 07/16/23 23:39:58.782 (10.188s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:58.782&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:59.281 (499ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should disable default modsecurity conf setting when modsecurity-snippet is specified" classname="nginx-ingress-controller e2e suite" status="passed" time="37.9327472">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:59.283&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:09.944 (10.696s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:40:09.944&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:40:14.019 (4.074s)&#xA;&gt; Enter [It] should disable default modsecurity conf setting when modsecurity-snippet is specified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:347 @ 07/16/23 23:40:14.019&#xA;&lt; Exit [It] should disable default modsecurity conf setting when modsecurity-snippet is specified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:347 @ 07/16/23 23:40:36.276 (22.292s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:36.276&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:37.147 (871ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] access-log http-access-log-path &amp; stream-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="18.9275426">
+              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:37.158&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:45.052 (7.894s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:80 @ 07/16/23 23:40:45.052&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:80 @ 07/16/23 23:40:55.399 (10.347s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:55.399&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:56.086 (686ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] whitelist-source-range should set valid ip whitelist range" classname="nginx-ingress-controller e2e suite" status="passed" time="23.1984008">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:56.088&#xA;&lt; Exit [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:04.49 (8.436s)&#xA;&gt; Enter [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:30 @ 07/16/23 23:41:04.49&#xA;&lt; Exit [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:30 @ 07/16/23 23:41:08.564 (4.074s)&#xA;&gt; Enter [It] should set valid ip whitelist range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:34 @ 07/16/23 23:41:08.564&#xA;&lt; Exit [It] should set valid ip whitelist range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:34 @ 07/16/23 23:41:18.798 (10.233s)&#xA;&gt; Enter [AfterEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:18.798&#xA;&lt; Exit [AfterEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:19.252 (455ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] access-log stream-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="19.3127083">
+              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:19.254&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:27.682 (8.428s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:67 @ 07/16/23 23:41:27.682&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:67 @ 07/16/23 23:41:37.904 (10.256s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:37.904&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:38.533 (629ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Debug CLI should list the backend servers" classname="nginx-ingress-controller e2e suite" status="passed" time="48.4766431">
+              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:34.181&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:48.294 (14.113s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 07/16/23 23:07:48.294&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 07/16/23 23:08:06.535 (18.275s)&#xA;&gt; Enter [It] should list the backend servers - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:37 @ 07/16/23 23:08:06.535&#xA;&lt; Exit [It] should list the backend servers - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:37 @ 07/16/23 23:08:19.035 (12.5s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:19.036&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:22.623 (3.587s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* does not crash when canary ingress has multiple paths to the same non-matching backend" classname="nginx-ingress-controller e2e suite" status="passed" time="36.8228593">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:22.634&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:33.298 (10.698s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:08:33.298&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:08:41.456 (8.158s)&#xA;&gt; Enter [It] does not crash when canary ingress has multiple paths to the same non-matching backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:915 @ 07/16/23 23:08:41.456&#xA;&lt; Exit [It] does not crash when canary ingress has multiple paths to the same non-matching backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:915 @ 07/16/23 23:08:58.789 (17.333s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:58.789&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:59.423 (634ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] denylist-source-range only allow explicitly allowed IPs, deny all others" classname="nginx-ingress-controller e2e suite" status="passed" time="36.4573542">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:59.425&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:07.036 (7.646s)&#xA;&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 07/16/23 23:09:07.036&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 07/16/23 23:09:11.131 (4.095s)&#xA;&gt; Enter [It] only allow explicitly allowed IPs, deny all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:86 @ 07/16/23 23:09:11.131&#xA;STEP: sending request from an explicitly denied IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:115 @ 07/16/23 23:09:28.355&#xA;STEP: sending request from an implicitly denied IP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:123 @ 07/16/23 23:09:28.363&#xA;STEP: sending request from an explicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:131 @ 07/16/23 23:09:28.369&#xA;STEP: sending request from an explicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:139 @ 07/16/23 23:09:28.381&#xA;&lt; Exit [It] only allow explicitly allowed IPs, deny all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:86 @ 07/16/23 23:09:35.394 (24.298s)&#xA;&gt; Enter [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:35.394&#xA;&lt; Exit [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:35.813 (419ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* Single canary Ingress should not use canary with domain as a server" classname="nginx-ingress-controller e2e suite" status="passed" time="33.535639">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:35.815&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:43.362 (7.548s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:09:43.362&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:09:51.533 (8.17s)&#xA;&gt; Enter [It] should not use canary with domain as a server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:891 @ 07/16/23 23:09:51.533&#xA;&lt; Exit [It] should not use canary with domain as a server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:891 @ 07/16/23 23:10:08.703 (17.205s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:08.703&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:09.316 (613ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] use-proxy-protocol should respect port passed by the PROXY Protocol" classname="nginx-ingress-controller e2e suite" status="passed" time="113.0726234">
+              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:09.318&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:18.473 (9.154s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:10:18.473&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:10:29.549 (11.076s)&#xA;&gt; Enter [It] should respect port passed by the PROXY Protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:46 @ 07/16/23 23:10:29.549&#xA;&lt; Exit [It] should respect port passed by the PROXY Protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:46 @ 07/16/23 23:12:01.67 (1m32.267s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:01.67&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:02.208 (575ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] enable-multi-accept should be enabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="12.0758019">
+              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:02.214&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:10.539 (8.324s)&#xA;&gt; Enter [It] should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:31 @ 07/16/23 23:12:10.539&#xA;&lt; Exit [It] should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:31 @ 07/16/23 23:12:13.724 (3.185s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:13.724&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:14.29 (566ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Debug CLI should produce valid JSON for /dbg general" classname="nginx-ingress-controller e2e suite" status="passed" time="20.7471759">
+              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:14.293&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:23.098 (8.805s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 07/16/23 23:12:23.098&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 07/16/23 23:12:27.239 (4.141s)&#xA;&gt; Enter [It] should produce valid JSON for /dbg general - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:85 @ 07/16/23 23:12:27.239&#xA;&lt; Exit [It] should produce valid JSON for /dbg general - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:85 @ 07/16/23 23:12:34.414 (7.21s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:34.414&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:35.005 (591ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure TLS protocol setting cipher suite" classname="nginx-ingress-controller e2e suite" status="passed" time="33.8713166">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:35.039&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:42.388 (7.349s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:12:42.388&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:12:46.475 (4.088s)&#xA;&gt; Enter [BeforeEach] should configure TLS protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:47 @ 07/16/23 23:12:46.475&#xA;Jul 16 23:12:56.021: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [BeforeEach] should configure TLS protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:47 @ 07/16/23 23:12:58.041 (11.565s)&#xA;&gt; Enter [It] setting cipher suite - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:65 @ 07/16/23 23:12:58.041&#xA;&lt; Exit [It] setting cipher suite - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:65 @ 07/16/23 23:13:08.414 (10.408s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:08.414&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:08.876 (461ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not allow - single origin without port and origin with required port" classname="nginx-ingress-controller e2e suite" status="passed" time="21.0101717">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:08.877&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:18.056 (9.178s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:13:18.056&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:13:22.157 (4.101s)&#xA;&gt; Enter [It] should not allow - single origin without port and origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:405 @ 07/16/23 23:13:22.157&#xA;&lt; Exit [It] should not allow - single origin without port and origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:405 @ 07/16/23 23:13:29.225 (7.069s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:29.225&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:29.887 (662ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="41.6951339">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:29.89&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:39.107 (9.251s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:13:39.107&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:13:43.181 (4.074s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:36 @ 07/16/23 23:13:43.181&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:36 @ 07/16/23 23:14:10.942 (27.795s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:10.942&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:11.517 (575ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure Opentelemetry should exists opentelemetry directive when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="45.6981978">
+              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:11.518&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:22.99 (11.472s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:14:22.99&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:14:27.23 (4.24s)&#xA;&gt; Enter [It] should exists opentelemetry directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:60 @ 07/16/23 23:14:27.23&#xA;&lt; Exit [It] should exists opentelemetry directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:60 @ 07/16/23 23:14:49.899 (22.703s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:49.899&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:57.182 (7.283s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:14:57.182&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:14:57.182 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to grpcs:// and use grpc_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="25.9519775">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:57.184&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:08.252 (11.102s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:15:08.252&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:15:12.39 (4.138s)&#xA;&gt; Enter [It] should set backend protocol to grpcs:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:79 @ 07/16/23 23:15:12.39&#xA;&lt; Exit [It] should set backend protocol to grpcs:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:79 @ 07/16/23 23:15:22.633 (10.243s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:22.633&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:23.102 (469ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not break functionality with extra domain" classname="nginx-ingress-controller e2e suite" status="passed" time="20.4639846">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:23.104&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:31.984 (8.914s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:15:31.984&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:15:36.044 (4.06s)&#xA;&gt; Enter [It] should not break functionality with extra domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:314 @ 07/16/23 23:15:36.044&#xA;&lt; Exit [It] should not break functionality with extra domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:314 @ 07/16/23 23:15:43.084 (7.04s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:43.084&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:43.533 (449ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to canary if canary weight is equal to canary weight total" classname="nginx-ingress-controller e2e suite" status="passed" time="35.5842679">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:43.534&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:53.243 (9.708s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:15:53.243&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:16:01.378 (8.135s)&#xA;&gt; Enter [It] should route requests only to canary if canary weight is equal to canary weight total - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:775 @ 07/16/23 23:16:01.378&#xA;&lt; Exit [It] should route requests only to canary if canary weight is equal to canary weight total - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:775 @ 07/16/23 23:16:18.568 (17.224s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:18.568&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:19.084 (516ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user with annotated ingress retains cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="39.746984">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:19.086&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:27.839 (8.752s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:16:27.839&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:16:31.857 (4.053s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 07/16/23 23:16:31.857&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 07/16/23 23:16:53.175 (21.318s)&#xA;&gt; Enter [It] user with annotated ingress retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:433 @ 07/16/23 23:16:53.175&#xA;&lt; Exit [It] user with annotated ingress retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:433 @ 07/16/23 23:16:58.37 (5.195s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:58.37&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:58.799 (429ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user retains cookie by default" classname="nginx-ingress-controller e2e suite" status="passed" time="45.394538">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:58.8&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:07.105 (8.339s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:17:07.105&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:17:15.232 (8.127s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 07/16/23 23:17:15.232&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 07/16/23 23:17:43.549 (28.352s)&#xA;&gt; Enter [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:326 @ 07/16/23 23:17:43.549&#xA;&lt; Exit [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:326 @ 07/16/23 23:17:43.559 (9ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:43.559&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:44.126 (567ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] Geoip2 should only allow requests from specific countries" classname="nginx-ingress-controller e2e suite" status="skipped" time="12.7332633">
+              <skipped message="skipped - GeoIP test are temporarily disabled"></skipped>
+              <system-err>&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:44.132&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:52.272 (8.14s)&#xA;&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 07/16/23 23:17:52.272&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 07/16/23 23:17:56.337 (4.065s)&#xA;&gt; Enter [It] should only allow requests from specific countries - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:70 @ 07/16/23 23:17:56.338&#xA;[SKIPPED] GeoIP test are temporarily disabled&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:71 @ 07/16/23 23:17:56.338&#xA;&lt; Exit [It] should only allow requests from specific countries - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:70 @ 07/16/23 23:17:56.338 (0s)&#xA;&gt; Enter [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:56.338&#xA;&lt; Exit [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:56.866 (528ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured keeps processing new ingresses even if one of the existing ingresses is misconfigured" classname="nginx-ingress-controller e2e suite" status="passed" time="38.8089373">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:56.867&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:05.372 (8.539s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:18:05.372&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:18:09.472 (4.1s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:18:09.472&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:18:23.753 (14.281s)&#xA;&gt; Enter [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:505 @ 07/16/23 23:18:23.753&#xA;&lt; Exit [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:505 @ 07/16/23 23:18:35.016 (11.297s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:35.016&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:35.607 (591ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] use-proxy-protocol should respect proto passed by the PROXY Protocol server port" classname="nginx-ingress-controller e2e suite" status="passed" time="111.3790498">
+              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:35.609&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:43.138 (7.529s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:18:43.138&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:18:54.215 (11.077s)&#xA;&gt; Enter [It] should respect proto passed by the PROXY Protocol server port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:79 @ 07/16/23 23:18:54.216&#xA;&lt; Exit [It] should respect proto passed by the PROXY Protocol server port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:79 @ 07/16/23 23:20:26.407 (1m32.295s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:26.407&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:26.885 (478ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="36.264726">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:26.887&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:37.187 (10.334s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:20:37.187&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:20:45.389 (8.202s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:532 @ 07/16/23 23:20:45.389&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;DoCananry&#39; and header-value is &#39;DoCanary&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:557 @ 07/16/23 23:21:02.659&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:532 @ 07/16/23 23:21:02.665 (17.31s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:02.665&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:03.083 (418ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is not set" classname="nginx-ingress-controller e2e suite" status="passed" time="50.761596">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:03.085&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:11.612 (8.528s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:11.613&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:15.676 (4.064s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:21:15.676&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:21:30.005 (14.329s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:552 @ 07/16/23 23:21:30.005&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:552 @ 07/16/23 23:21:53.323 (23.352s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:53.323&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:53.812 (489ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should setup proxy cookies" classname="nginx-ingress-controller e2e suite" status="passed" time="24.5685705">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:53.814&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:03.724 (9.944s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:22:03.724&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:22:07.799 (4.075s)&#xA;&gt; Enter [It] should setup proxy cookies - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:215 @ 07/16/23 23:22:07.799&#xA;&lt; Exit [It] should setup proxy cookies - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:215 @ 07/16/23 23:22:17.991 (10.193s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:17.992&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:18.348 (357ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="63.0259539">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:18.35&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:25.849 (7.5s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:25.849&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:29.974 (4.125s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:22:29.975&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:22:35.051&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:22:45.228&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:22:55.444&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:23:05.609&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:23:20.804 (50.898s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:849 @ 07/16/23 23:23:20.804&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:849 @ 07/16/23 23:23:20.815 (11ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:20.815&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:21.307 (492ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class Without IngressClass Cluster scoped Permission should watch Ingress with correct annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="30.5078184">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:21.309&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:29.836 (8.527s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:23:29.836&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:23:33.883 (4.082s)&#xA;&gt; Enter [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 07/16/23 23:23:33.883&#xA;&lt; Exit [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 07/16/23 23:23:40.947 (7.064s)&#xA;&gt; Enter [It] should watch Ingress with correct annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:631 @ 07/16/23 23:23:40.947&#xA;&lt; Exit [It] should watch Ingress with correct annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:631 @ 07/16/23 23:23:51.186 (10.238s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:51.186&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:51.782 (596ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With specific ingress-class flags should ignore Ingress with no class and accept the correctly configured Ingresses" classname="nginx-ingress-controller e2e suite" status="passed" time="49.7669884">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:51.784&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:01.236 (9.487s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:24:01.236&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:24:07.344 (6.108s)&#xA;&gt; Enter [BeforeEach] With specific ingress-class flags - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:392 @ 07/16/23 23:24:07.344&#xA;&lt; Exit [BeforeEach] With specific ingress-class flags - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:392 @ 07/16/23 23:24:16.393 (9.049s)&#xA;&gt; Enter [It] should ignore Ingress with no class and accept the correctly configured Ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:413 @ 07/16/23 23:24:16.393&#xA;&lt; Exit [It] should ignore Ingress with no class and accept the correctly configured Ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:413 @ 07/16/23 23:24:40.653 (24.294s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:40.653&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:41.482 (829ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to grpc:// and use grpc_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="23.4733869">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:41.484&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:50.125 (8.641s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:24:50.125&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:24:54.192 (4.067s)&#xA;&gt; Enter [It] should set backend protocol to grpc:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:64 @ 07/16/23 23:24:54.192&#xA;&lt; Exit [It] should set backend protocol to grpc:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:64 @ 07/16/23 23:25:04.321 (10.163s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:04.321&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:04.923 (601ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not break functionality" classname="nginx-ingress-controller e2e suite" status="passed" time="19.8245701">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:04.925&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:13.199 (8.274s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:25:13.199&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:25:17.26 (4.061s)&#xA;&gt; Enter [It] should not break functionality - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:267 @ 07/16/23 23:25:17.26&#xA;&lt; Exit [It] should not break functionality - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:267 @ 07/16/23 23:25:24.298 (7.039s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:24.298&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:24.749 (451ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity through the config map" classname="nginx-ingress-controller e2e suite" status="passed" time="42.5903439">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:24.752&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:33.474 (8.756s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:25:33.474&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:25:37.542 (4.067s)&#xA;&gt; Enter [It] should enable modsecurity through the config map - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:264 @ 07/16/23 23:25:37.542&#xA;&lt; Exit [It] should enable modsecurity through the config map - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:264 @ 07/16/23 23:26:06.773 (29.265s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:06.773&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:07.274 (502ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] access-log access-log-path use the default configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="12.105545">
+              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:07.276&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:15.787 (8.511s)&#xA;&gt; Enter [It] use the default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:32 @ 07/16/23 23:26:15.787&#xA;&lt; Exit [It] use the default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:32 @ 07/16/23 23:26:18.987 (3.2s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:18.987&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:19.381 (394ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not match" classname="nginx-ingress-controller e2e suite" status="passed" time="20.1295472">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:19.383&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:27.733 (8.35s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:26:27.733&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:26:31.801 (4.102s)&#xA;&gt; Enter [It] should not match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:338 @ 07/16/23 23:26:31.801&#xA;&lt; Exit [It] should not match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:338 @ 07/16/23 23:26:38.85 (7.05s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:38.85&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:39.478 (628ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format-escape-json enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="33.5727472">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:39.479&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:48.115 (8.636s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:26:48.115&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:26:59.194 (11.079s)&#xA;&gt; Enter [It] log-format-escape-json enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:82 @ 07/16/23 23:26:59.195&#xA;&lt; Exit [It] log-format-escape-json enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:82 @ 07/16/23 23:27:12.403 (13.243s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:12.403&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:13.018 (615ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Load Balancer] round-robin should evenly distribute requests with round-robin (default algorithm)" classname="nginx-ingress-controller e2e suite" status="passed" time="150.3759678">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:13.019&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:21.582 (8.563s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:34 @ 07/16/23 23:27:21.582&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:34 @ 07/16/23 23:27:34.703 (13.156s)&#xA;&gt; Enter [It] should evenly distribute requests with round-robin (default algorithm) - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:39 @ 07/16/23 23:27:34.703&#xA;&lt; Exit [It] should evenly distribute requests with round-robin (default algorithm) - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:39 @ 07/16/23 23:29:42.768 (2m8.202s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:42.769&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:43.223 (454ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinitymode Check persistent affinity mode" classname="nginx-ingress-controller e2e suite" status="passed" time="136.5576609">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:43.227&#xA;&lt; Exit [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:53.678 (10.45s)&#xA;&gt; Enter [It] Check persistent affinity mode - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:67 @ 07/16/23 23:29:53.678&#xA;&lt; Exit [It] Check persistent affinity mode - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:67 @ 07/16/23 23:31:59.236 (2m5.735s)&#xA;&gt; Enter [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:59.236&#xA;&lt; Exit [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:59.608 (372ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if mainline ingress is created before the canary ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="34.0670579">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:59.609&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:07.878 (8.303s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:32:07.878&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:32:16 (8.122s)&#xA;&gt; Enter [It] should route requests to the correct upstream if mainline ingress is created before the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:161 @ 07/16/23 23:32:16&#xA;STEP: routing requests destined for the mainline ingress to the maineline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:185 @ 07/16/23 23:32:33.194&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:195 @ 07/16/23 23:32:33.2&#xA;&lt; Exit [It] should route requests to the correct upstream if mainline ingress is created before the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:161 @ 07/16/23 23:32:33.205 (17.24s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:33.206&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:33.607 (402ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] server-alias should return status code 200 for hosts defined in two ingresses, different path with one alias" classname="nginx-ingress-controller e2e suite" status="passed" time="28.3347056">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:33.609&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:42.047 (8.438s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 07/16/23 23:32:42.047&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 07/16/23 23:32:44.131 (2.084s)&#xA;&gt; Enter [It] should return status code 200 for hosts defined in two ingresses, different path with one alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:87 @ 07/16/23 23:32:44.131&#xA;&lt; Exit [It] should return status code 200 for hosts defined in two ingresses, different path with one alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:87 @ 07/16/23 23:33:01.382 (17.284s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:01.382&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:01.909 (527ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured supports requests with domain with trailing dot" classname="nginx-ingress-controller e2e suite" status="passed" time="37.4747837">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:01.911&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:09.441 (7.531s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:33:09.441&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:33:13.505 (4.063s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:33:13.505&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 07/16/23 23:33:30.702&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 07/16/23 23:33:38.854&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:33:38.882 (25.412s)&#xA;&gt; Enter [It] supports requests with domain with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:145 @ 07/16/23 23:33:38.883&#xA;&lt; Exit [It] supports requests with domain with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:145 @ 07/16/23 23:33:38.915 (33ms)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:38.915&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:39.351 (436ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] from-to-www-redirect should redirect from www HTTP to HTTP" classname="nginx-ingress-controller e2e suite" status="passed" time="23.0666225">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:39.353&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:47.674 (8.321s)&#xA;&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 07/16/23 23:33:47.674&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 07/16/23 23:33:51.753 (4.079s)&#xA;&gt; Enter [It] should redirect from www HTTP to HTTP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:38 @ 07/16/23 23:33:51.753&#xA;STEP: setting up server for redirect from www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:39 @ 07/16/23 23:33:51.753&#xA;STEP: sending request to www.fromtowwwredirect.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:55 @ 07/16/23 23:34:01.902&#xA;&lt; Exit [It] should redirect from www HTTP to HTTP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:38 @ 07/16/23 23:34:01.908 (10.19s)&#xA;&gt; Enter [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:01.908&#xA;&lt; Exit [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:02.385 (477ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] mirror-* should disable mirror-request-body" classname="nginx-ingress-controller e2e suite" status="passed" time="23.1405183">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:02.387&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:10.798 (8.412s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 07/16/23 23:34:10.798&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 07/16/23 23:34:14.981 (4.183s)&#xA;&gt; Enter [It] should disable mirror-request-body - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:67 @ 07/16/23 23:34:14.981&#xA;&lt; Exit [It] should disable mirror-request-body - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:67 @ 07/16/23 23:34:25.139 (10.158s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:25.139&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:25.527 (388ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] gzip should be disabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="12.2326973">
+              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:25.529&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:34.003 (8.508s)&#xA;&gt; Enter [It] should be disabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:32 @ 07/16/23 23:34:34.003&#xA;&lt; Exit [It] should be disabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:32 @ 07/16/23 23:34:37.287 (3.284s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:37.287&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:37.727 (440ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] service-upstream when enabling in the configmap should use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="30.9028224">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:37.729&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:46.195 (8.467s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 07/16/23 23:34:46.195&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 07/16/23 23:34:50.299 (4.103s)&#xA;&gt; Enter [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:70 @ 07/16/23 23:34:50.299&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:82 @ 07/16/23 23:35:07.674&#xA;STEP: checking if the Service Cluster IP and Port are used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:89 @ 07/16/23 23:35:07.684&#xA;&lt; Exit [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:70 @ 07/16/23 23:35:07.935 (17.671s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:07.935&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:08.597 (662ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] global-options should have worker_rlimit_nofile option and be independent on amount of worker processes" classname="nginx-ingress-controller e2e suite" status="passed" time="19.007426">
+              <system-err>&gt; Enter [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:08.599&#xA;&lt; Exit [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:16.925 (8.326s)&#xA;&gt; Enter [It] should have worker_rlimit_nofile option and be independent on amount of worker processes - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:38 @ 07/16/23 23:35:16.925&#xA;&lt; Exit [It] should have worker_rlimit_nofile option and be independent on amount of worker processes - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:38 @ 07/16/23 23:35:27.115 (10.19s)&#xA;&gt; Enter [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:27.115&#xA;&lt; Exit [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:27.606 (491ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Load Balancer] load-balance should apply the configmap load-balance setting" classname="nginx-ingress-controller e2e suite" status="passed" time="30.9142383">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:27.607&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:36.182 (8.609s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:31 @ 07/16/23 23:35:36.182&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:31 @ 07/16/23 23:35:40.286 (4.104s)&#xA;&gt; Enter [It] should apply the configmap load-balance setting - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:35 @ 07/16/23 23:35:40.286&#xA;&lt; Exit [It] should apply the configmap load-balance setting - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:35 @ 07/16/23 23:35:57.881 (17.595s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:57.882&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:58.487 (606ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [TCP] tcp-services should expose a TCP service" classname="nginx-ingress-controller e2e suite" status="passed" time="22.2822975">
+              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:58.488&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:08.838 (10.384s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 07/16/23 23:36:08.838&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 07/16/23 23:36:08.844 (7ms)&#xA;&gt; Enter [It] should expose a TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:46 @ 07/16/23 23:36:08.844&#xA;&lt; Exit [It] should expose a TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:46 @ 07/16/23 23:36:20.132 (11.288s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:20.132&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:20.736 (604ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a plain HTTP ingress should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port" classname="nginx-ingress-controller e2e suite" status="passed" time="30.4581023">
+              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:20.747&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:35.265 (14.553s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 07/16/23 23:36:35.265&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 07/16/23 23:36:40.48 (5.214s)&#xA;&gt; Enter [It] should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:48 @ 07/16/23 23:36:40.48&#xA;&lt; Exit [It] should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:48 @ 07/16/23 23:36:50.676 (10.196s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:50.676&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:51.171 (494ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="49.5470757">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:51.175&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:05.11 (13.969s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:37:05.11&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:37:07.17 (2.06s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:67 @ 07/16/23 23:37:07.17&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:67 @ 07/16/23 23:37:39.655 (32.519s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:39.655&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:40.653 (998ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-catch-all should ignore catch all Ingress with backend" classname="nginx-ingress-controller e2e suite" status="passed" time="44.0523557">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:40.661&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:51.734 (11.073s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:37:51.734&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:38:03.848 (12.148s)&#xA;&gt; Enter [It] should ignore catch all Ingress with backend - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:50 @ 07/16/23 23:38:03.849&#xA;&lt; Exit [It] should ignore catch all Ingress with backend - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:50 @ 07/16/23 23:38:24.234 (20.386s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:24.234&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:24.679 (445ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName without a port defined" classname="nginx-ingress-controller e2e suite" status="passed" time="19.7847078">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:24.68&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:32.938 (8.292s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName without a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:95 @ 07/16/23 23:38:32.938&#xA;&lt; Exit [It] should return 200 for service type=ExternalName without a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:95 @ 07/16/23 23:38:43.94 (11.002s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:43.94&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:44.431 (490ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Nil Service Backend should return 404 when backend service is nil" classname="nginx-ingress-controller e2e suite" status="passed" time="30.5641053">
+              <system-err>&gt; Enter [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:44.432&#xA;&lt; Exit [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:52.684 (8.252s)&#xA;&gt; Enter [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:34 @ 07/16/23 23:38:52.684&#xA;&lt; Exit [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:34 @ 07/16/23 23:38:56.739 (4.055s)&#xA;&gt; Enter [It] should return 404 when backend service is nil - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:38 @ 07/16/23 23:38:56.739&#xA;STEP: setting an ingress with a nil backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:39 @ 07/16/23 23:38:56.739&#xA;&lt; Exit [It] should return 404 when backend service is nil - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:38 @ 07/16/23 23:39:14.138 (17.433s)&#xA;&gt; Enter [AfterEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:14.138&#xA;&lt; Exit [AfterEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:14.962 (824ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow headers for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="24.1079978">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:14.965&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:24.07 (9.105s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:39:24.07&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:39:28.143 (4.073s)&#xA;&gt; Enter [It] should allow headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:137 @ 07/16/23 23:39:28.143&#xA;&lt; Exit [It] should allow headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:137 @ 07/16/23 23:39:38.36 (10.251s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:38.36&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:39.039 (679ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic configuration configures balancer Lua middleware correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="31.2447458">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:39.042&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:48.893 (9.851s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:39:48.893&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:40:03.237 (14.378s)&#xA;&gt; Enter [It] configures balancer Lua middleware correctly - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:50 @ 07/16/23 23:40:03.237&#xA;&lt; Exit [It] configures balancer Lua middleware correctly - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:50 @ 07/16/23 23:40:09.71 (6.473s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:09.71&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:10.252 (542ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic certificates picks up the certificate when we add TLS spec to existing ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="29.0878012">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:10.253&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:19.088 (8.835s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:40:19.088&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:40:23.173 (4.085s)&#xA;&gt; Enter [It] picks up the certificate when we add TLS spec to existing ingress - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:45 @ 07/16/23 23:40:23.173&#xA;&lt; Exit [It] picks up the certificate when we add TLS spec to existing ingress - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:45 @ 07/16/23 23:40:38.779 (15.64s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:38.779&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:39.307 (527ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by cookie respects always and never values" classname="nginx-ingress-controller e2e suite" status="passed" time="62.6425084">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:39.308&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:47.706 (8.397s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:40:47.706&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:40:55.919 (8.214s)&#xA;&gt; Enter [It] respects always and never values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:643 @ 07/16/23 23:40:55.919&#xA;STEP: routing requests to the canary upstream when cookie is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:667 @ 07/16/23 23:41:13.225&#xA;STEP: routing requests to the mainline upstream when cookie is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:678 @ 07/16/23 23:41:21.42&#xA;STEP: routing requests to the mainline upstream when cookie is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:689 @ 07/16/23 23:41:31.387&#xA;&lt; Exit [It] respects always and never values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:643 @ 07/16/23 23:41:41.387 (45.536s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:41.387&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:41.882 (496ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should set cors max-age" classname="nginx-ingress-controller e2e suite" status="passed" time="44.4955697">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:34.174&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:47.886 (13.712s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:07:47.886&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:08:05.964 (18.112s)&#xA;&gt; Enter [It] should set cors max-age - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:78 @ 07/16/23 23:08:05.964&#xA;&lt; Exit [It] should set cors max-age - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:78 @ 07/16/23 23:08:16.513 (10.55s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:16.513&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:18.635 (2.121s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - FastCGI should add fastcgi_index in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="29.4516908">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:18.644&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:33.277 (14.667s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:08:33.277&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:08:37.346 (4.069s)&#xA;&gt; Enter [It] should add fastcgi_index in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:54 @ 07/16/23 23:08:37.346&#xA;&lt; Exit [It] should add fastcgi_index in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:54 @ 07/16/23 23:08:47.641 (10.296s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:47.641&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:48.061 (420ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Memory Leak] Dynamic Certificates should not leak memory from ingress SSL certificates or configuration updates" classname="nginx-ingress-controller e2e suite" status="skipped" time="0">
+              <skipped message="skipped"></skipped>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to off" classname="nginx-ingress-controller e2e suite" status="passed" time="25.8486686">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:48.065&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:56.738 (8.673s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:08:56.738&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:09:02.831 (6.128s)&#xA;&gt; Enter [It] should set proxy_redirect to off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:36 @ 07/16/23 23:09:02.831&#xA;&lt; Exit [It] should set proxy_redirect to off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:36 @ 07/16/23 23:09:13.19 (10.358s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:13.19&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:13.879 (690ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 503 when authentication is configured with an invalid secret" classname="nginx-ingress-controller e2e suite" status="passed" time="24.7940821">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:13.881&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:23.851 (9.97s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:09:23.851&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:09:27.921 (4.07s)&#xA;&gt; Enter [It] should return status code 503 when authentication is configured with an invalid secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:65 @ 07/16/23 23:09:27.921&#xA;&lt; Exit [It] should return status code 503 when authentication is configured with an invalid secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:65 @ 07/16/23 23:09:38.098 (10.211s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:38.098&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:38.641 (542ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] proxy-send-timeout should set valid proxy send timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="30.2675265">
+              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:38.642&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:47.013 (8.37s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 07/16/23 23:09:47.013&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 07/16/23 23:09:51.1 (4.087s)&#xA;&gt; Enter [It] should set valid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:36 @ 07/16/23 23:09:51.1&#xA;&lt; Exit [It] should set valid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:36 @ 07/16/23 23:10:08.284 (17.218s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:08.284&#xA;&lt; Exit [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:08.876 (592ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] stream-snippet should add value of stream-snippet to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="28.2197321">
+              <system-err>&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:08.879&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:17.058 (8.179s)&#xA;&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 07/16/23 23:10:17.058&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 07/16/23 23:10:21.245 (4.187s)&#xA;&gt; Enter [It] should add value of stream-snippet to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:41 @ 07/16/23 23:10:21.245&#xA;&lt; Exit [It] should add value of stream-snippet to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:41 @ 07/16/23 23:10:36.438 (15.228s)&#xA;&gt; Enter [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:36.438&#xA;&lt; Exit [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:37.064 (626ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should set cache_key when external auth cache is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="23.4640268">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:37.067&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:45.508 (8.441s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:10:45.508&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:10:49.586 (4.077s)&#xA;&gt; Enter [It] should set cache_key when external auth cache is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:322 @ 07/16/23 23:10:49.586&#xA;&lt; Exit [It] should set cache_key when external auth cache is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:322 @ 07/16/23 23:10:59.919 (10.333s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:59.919&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:00.531 (612ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [SSL] redirect to HTTPS should redirect from HTTP to HTTPS when secret is missing" classname="nginx-ingress-controller e2e suite" status="passed" time="26.4065312">
+              <system-err>&gt; Enter [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:00.533&#xA;&lt; Exit [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:09.091 (8.614s)&#xA;&gt; Enter [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:32 @ 07/16/23 23:11:09.091&#xA;&lt; Exit [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:32 @ 07/16/23 23:11:13.182 (4.091s)&#xA;&gt; Enter [It] should redirect from HTTP to HTTPS when secret is missing - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:36 @ 07/16/23 23:11:13.182&#xA;&lt; Exit [It] should redirect from HTTP to HTTPS when secret is missing - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:36 @ 07/16/23 23:11:26.418 (13.236s)&#xA;&gt; Enter [AfterEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:26.418&#xA;&lt; Exit [AfterEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:26.883 (466ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] custom-http-errors configures Nginx correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="50.2990807">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:26.886&#xA;&lt; Exit [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:35.167 (8.337s)&#xA;&gt; Enter [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:37 @ 07/16/23 23:11:35.167&#xA;&lt; Exit [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:37 @ 07/16/23 23:11:39.249 (4.082s)&#xA;&gt; Enter [It] configures Nginx correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:41 @ 07/16/23 23:11:39.249&#xA;STEP: turning on proxy_intercept_errors directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:59 @ 07/16/23 23:11:49.509&#xA;STEP: configuring error_page directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:62 @ 07/16/23 23:11:49.509&#xA;STEP: creating error locations - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:67 @ 07/16/23 23:11:49.509&#xA;STEP: updating configuration when only custom-http-error value changes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:72 @ 07/16/23 23:11:49.509&#xA;STEP: ignoring duplicate values (503 in this case) per server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:90 @ 07/16/23 23:11:55.803&#xA;STEP: using the custom default-backend from annotation for upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:102 @ 07/16/23 23:12:06.081&#xA;&lt; Exit [It] configures Nginx correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:41 @ 07/16/23 23:12:16.315 (37.103s)&#xA;&gt; Enter [AfterEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:16.315&#xA;&lt; Exit [AfterEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:17.092 (777ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* with invalid auth-url should deny whole location should return 503 (location was denied)" classname="nginx-ingress-controller e2e suite" status="passed" time="23.9837494">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:17.094&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:26.253 (9.159s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:12:26.253&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:12:30.38 (4.127s)&#xA;&gt; Enter [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 07/16/23 23:12:30.38&#xA;&lt; Exit [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 07/16/23 23:12:40.55 (10.205s)&#xA;&gt; Enter [It] should return 503 (location was denied) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:879 @ 07/16/23 23:12:40.55&#xA;&lt; Exit [It] should return 503 (location was denied) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:879 @ 07/16/23 23:12:40.557 (7ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:40.557&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:41.043 (485ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity when enable-owasp-modsecurity-crs is set to true" classname="nginx-ingress-controller e2e suite" status="passed" time="42.2364547">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:41.045&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:49.182 (8.137s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:12:49.182&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:12:53.256 (4.074s)&#xA;&gt; Enter [It] should enable modsecurity when enable-owasp-modsecurity-crs is set to true - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:225 @ 07/16/23 23:12:53.256&#xA;&lt; Exit [It] should enable modsecurity when enable-owasp-modsecurity-crs is set to true - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:225 @ 07/16/23 23:13:22.75 (29.529s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:22.751&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:23.247 (496ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] OCSP should enable OCSP and contain stapling information in the connection" classname="nginx-ingress-controller e2e suite" status="passed" time="56.586004">
+              <system-err>&gt; Enter [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:23.249&#xA;&lt; Exit [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:32.429 (9.214s)&#xA;&gt; Enter [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:45 @ 07/16/23 23:13:32.429&#xA;&lt; Exit [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:45 @ 07/16/23 23:13:36.507 (4.079s)&#xA;&gt; Enter [It] should enable OCSP and contain stapling information in the connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:49 @ 07/16/23 23:13:36.507&#xA;STEP: running cfssl gencert -initca ca_csr.json | cfssljson -bare ca - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 07/16/23 23:13:43.545&#xA;STEP: running cfssl gencert -ca ca.pem -ca-key ca-key.pem -config=cfssl_config.json -profile=intermediate intermediate_ca_csr.json | cfssljson -bare intermediate_ca - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 07/16/23 23:13:43.952&#xA;STEP: running cfssl gencert -ca intermediate_ca.pem -ca-key intermediate_ca-key.pem -config=cfssl_config.json -profile=ocsp ocsp_csr.json | cfssljson -bare ocsp - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 07/16/23 23:13:44.496&#xA;STEP: running cfssl serve -db-config=db-config.json -ca-key=intermediate_ca-key.pem -ca=intermediate_ca.pem -config=cfssl_config.json -responder=ocsp.pem -responder-key=ocsp-key.pem - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:228 @ 07/16/23 23:13:44.802&#xA;STEP: running cfssl gencert -remote=localhost -profile=server leaf_csr.json | cfssljson -bare leaf - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:238 @ 07/16/23 23:13:49.804&#xA;STEP: running cfssl ocsprefresh -ca intermediate_ca.pem -responder=ocsp.pem -responder-key=ocsp-key.pem -db-config=db-config.json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:252 @ 07/16/23 23:13:50.312&#xA;&lt; Exit [It] should enable OCSP and contain stapling information in the connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:49 @ 07/16/23 23:14:19.018 (42.545s)&#xA;&gt; Enter [AfterEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:19.019&#xA;&lt; Exit [AfterEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:19.766 (748ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] satisfy should configure satisfy directive correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="39.1485666">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:19.784&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:28.844 (9.06s)&#xA;&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 07/16/23 23:14:28.844&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 07/16/23 23:14:32.923 (4.113s)&#xA;&gt; Enter [It] should configure satisfy directive correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:42 @ 07/16/23 23:14:32.923&#xA;&lt; Exit [It] should configure satisfy directive correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:42 @ 07/16/23 23:14:58.308 (25.386s)&#xA;&gt; Enter [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:58.309&#xA;&lt; Exit [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:58.898 (590ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should enable opentracing using zipkin" classname="nginx-ingress-controller e2e suite" status="passed" time="32.8250242">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:58.904&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:07.074 (8.204s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:15:07.074&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:15:11.143 (4.069s)&#xA;&gt; Enter [It] should enable opentracing using zipkin - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:160 @ 07/16/23 23:15:11.143&#xA;&lt; Exit [It] should enable opentracing using zipkin - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:160 @ 07/16/23 23:15:31.188 (20.046s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:31.189&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:31.695 (506ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:15:31.695&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:15:31.695 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - GRPC should return OK for service with backend protocol GRPC" classname="nginx-ingress-controller e2e suite" status="passed" time="25.1184251">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:31.698&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:40.015 (8.352s)&#xA;&gt; Enter [It] should return OK for service with backend protocol GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:68 @ 07/16/23 23:15:40.015&#xA;&lt; Exit [It] should return OK for service with backend protocol GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:68 @ 07/16/23 23:15:56.386 (16.37s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:56.386&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:56.782 (396ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured falls back to using default certificate when secret gets deleted without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="42.4509444">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:56.784&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:04.113 (7.363s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:16:04.113&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:16:08.211 (4.099s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:16:08.211&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 07/16/23 23:16:25.445&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 07/16/23 23:16:33.599&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:16:33.62 (25.443s)&#xA;&gt; Enter [It] falls back to using default certificate when secret gets deleted without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:185 @ 07/16/23 23:16:33.62&#xA;STEP: serving the default certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:204 @ 07/16/23 23:16:38.67&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:214 @ 07/16/23 23:16:38.72&#xA;&lt; Exit [It] falls back to using default certificate when secret gets deleted without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:185 @ 07/16/23 23:16:38.72 (5.1s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:38.72&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:39.166 (446ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] nginx-configuration fails when using root directive" classname="nginx-ingress-controller e2e suite" status="passed" time="62.166271">
+              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 07/16/23 23:16:39.168&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 07/16/23 23:16:41.179 (2.011s)&#xA;&gt; Enter [It] fails when using root directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:124 @ 07/16/23 23:16:41.179&#xA;&lt; Exit [It] fails when using root directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:124 @ 07/16/23 23:17:41.25 (1m0.14s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 07/16/23 23:17:41.25&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 07/16/23 23:17:41.266 (16ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to hello.com goodbye.com" classname="nginx-ingress-controller e2e suite" status="passed" time="22.8308762">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:41.269&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:49.268 (7.999s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:17:49.268&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:17:53.439 (4.171s)&#xA;&gt; Enter [It] should set proxy_redirect to hello.com goodbye.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:68 @ 07/16/23 23:17:53.439&#xA;&lt; Exit [It] should set proxy_redirect to hello.com goodbye.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:68 @ 07/16/23 23:18:03.611 (10.206s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:03.611&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:04.065 (454ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when host part of auth-url contains a variable" classname="nginx-ingress-controller e2e suite" status="passed" time="49.4074574">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:04.067&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:11.387 (7.321s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:18:11.387&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:18:15.513 (4.126s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:18:15.513&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:18:29.758 (14.244s)&#xA;&gt; Enter [It] should not create additional upstream block when host part of auth-url contains a variable - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:570 @ 07/16/23 23:18:29.758&#xA;&lt; Exit [It] should not create additional upstream block when host part of auth-url contains a variable - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:570 @ 07/16/23 23:18:52.938 (23.215s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:52.938&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:53.44 (502ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not break functionality - without `*`" classname="nginx-ingress-controller e2e suite" status="passed" time="20.0099787">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:53.442&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:01.722 (8.314s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:19:01.722&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:19:05.782 (4.06s)&#xA;&gt; Enter [It] should not break functionality - without `*` - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:291 @ 07/16/23 23:19:05.782&#xA;&lt; Exit [It] should not break functionality - without `*` - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:291 @ 07/16/23 23:19:12.827 (7.045s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:12.827&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:13.418 (591ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-http-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="30.3784723">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:13.419&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:21.929 (8.511s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 07/16/23 23:19:21.93&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 07/16/23 23:19:26.01 (4.081s)&#xA;&gt; Enter [It] disable-http-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:53 @ 07/16/23 23:19:26.011&#xA;&lt; Exit [It] disable-http-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:53 @ 07/16/23 23:19:43.294 (17.318s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:43.294&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:43.763 (468ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure Opentelemetry should not exists opentelemetry_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="32.0100399">
+              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:43.765&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:53.125 (9.36s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:19:53.125&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:19:57.249 (4.124s)&#xA;&gt; Enter [It] should not exists opentelemetry_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:89 @ 07/16/23 23:19:57.249&#xA;&lt; Exit [It] should not exists opentelemetry_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:89 @ 07/16/23 23:20:14.861 (17.646s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:14.861&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:15.741 (880ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:20:15.741&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:20:15.741 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Ingress] DeepInspection should drop whole ingress if one path matches invalid regex" classname="nginx-ingress-controller e2e suite" status="passed" time="30.3802146">
+              <system-err>&gt; Enter [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:15.743&#xA;&lt; Exit [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:24.398 (8.655s)&#xA;&gt; Enter [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:30 @ 07/16/23 23:20:24.398&#xA;&lt; Exit [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:30 @ 07/16/23 23:20:28.465 (4.067s)&#xA;&gt; Enter [It] should drop whole ingress if one path matches invalid regex - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:34 @ 07/16/23 23:20:28.465&#xA;&lt; Exit [It] should drop whole ingress if one path matches invalid regex - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:34 @ 07/16/23 23:20:45.696 (17.265s)&#xA;&gt; Enter [AfterEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:45.696&#xA;&lt; Exit [AfterEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:46.089 (393ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keep alive connection timeout to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="30.472846">
+              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:46.09&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:54.488 (8.398s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:20:54.488&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:21:05.565 (11.111s)&#xA;&gt; Enter [It] should set keep alive connection timeout to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:68 @ 07/16/23 23:21:05.565&#xA;&lt; Exit [It] should set keep alive connection timeout to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:68 @ 07/16/23 23:21:15.847 (10.282s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:15.847&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:16.528 (681ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] http2-push-preload enable the http2-push-preload directive" classname="nginx-ingress-controller e2e suite" status="passed" time="25.0381477">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:16.53&#xA;&lt; Exit [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:26.755 (10.225s)&#xA;&gt; Enter [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:30 @ 07/16/23 23:21:26.755&#xA;&lt; Exit [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:30 @ 07/16/23 23:21:30.816 (4.061s)&#xA;&gt; Enter [It] enable the http2-push-preload directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:34 @ 07/16/23 23:21:30.816&#xA;&lt; Exit [It] enable the http2-push-preload directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:34 @ 07/16/23 23:21:41.003 (10.222s)&#xA;&gt; Enter [AfterEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:41.003&#xA;&lt; Exit [AfterEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:41.534 (531ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName using a port name" classname="nginx-ingress-controller e2e suite" status="passed" time="19.445075">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:41.538&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:50.229 (8.691s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName using a port name - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:184 @ 07/16/23 23:21:50.229&#xA;&lt; Exit [It] should return 200 for service type=ExternalName using a port name - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:184 @ 07/16/23 23:22:00.623 (10.393s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:00.623&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:00.983 (361ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] hash size Check server names hash size should set server_names_hash_bucket_size" classname="nginx-ingress-controller e2e suite" status="passed" time="30.5991629">
+              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:00.985&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:09.37 (8.419s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:22:09.37&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:22:20.486 (11.116s)&#xA;&gt; Enter [It] should set server_names_hash_bucket_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:40 @ 07/16/23 23:22:20.486&#xA;&lt; Exit [It] should set server_names_hash_bucket_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:40 @ 07/16/23 23:22:30.763 (10.277s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:30.763&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:31.515 (787ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName works with external name set to incomplete fqdn" classname="nginx-ingress-controller e2e suite" status="passed" time="23.5813732">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:31.521&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:40.235 (8.714s)&#xA;&gt; Enter [It] works with external name set to incomplete fqdn - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:62 @ 07/16/23 23:22:40.235&#xA;&lt; Exit [It] works with external name set to incomplete fqdn - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:62 @ 07/16/23 23:22:54.509 (14.274s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:54.509&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:55.102 (593ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keepalive connection to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="30.7302203">
+              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:55.104&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:03.655 (8.585s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:23:03.655&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:23:14.739 (11.084s)&#xA;&gt; Enter [It] should set keepalive connection to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:59 @ 07/16/23 23:23:14.739&#xA;&lt; Exit [It] should set keepalive connection to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:59 @ 07/16/23 23:23:25.032 (10.292s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:25.032&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:25.8 (768ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] nginx-configuration start nginx with default configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="11.1702051">
+              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 07/16/23 23:23:25.803&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 07/16/23 23:23:27.816 (2.013s)&#xA;&gt; Enter [It] start nginx with default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:102 @ 07/16/23 23:23:27.816&#xA;&lt; Exit [It] start nginx with default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:102 @ 07/16/23 23:23:36.925 (9.144s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 07/16/23 23:23:36.925&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 07/16/23 23:23:36.938 (13ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should not set proxy client-max-body-size to incorrect value" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3213324">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:36.94&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:45.412 (8.472s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:23:45.412&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:23:49.52 (4.108s)&#xA;&gt; Enter [It] should not set proxy client-max-body-size to incorrect value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:100 @ 07/16/23 23:23:49.52&#xA;&lt; Exit [It] should not set proxy client-max-body-size to incorrect value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:100 @ 07/16/23 23:23:59.723 (10.203s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:59.723&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:00.261 (538ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 200 when no authentication is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="22.5986154">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:00.263&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:07.782 (7.554s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:24:07.782&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:24:11.858 (4.076s)&#xA;&gt; Enter [It] should return status code 200 when no authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:46 @ 07/16/23 23:24:11.858&#xA;&lt; Exit [It] should return status code 200 when no authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:46 @ 07/16/23 23:24:22.095 (10.237s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:22.095&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:22.827 (732ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should not exists opentracing_location_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="28.365788">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:22.835&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:31.215 (8.414s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:24:31.215&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:24:33.268 (2.053s)&#xA;&gt; Enter [It] should not exists opentracing_location_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:130 @ 07/16/23 23:24:33.268&#xA;&lt; Exit [It] should not exists opentracing_location_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:130 @ 07/16/23 23:24:50.51 (17.242s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:50.51&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:51.166 (657ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:24:51.166&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:24:51.166 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="34.7211242">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:51.169&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:00.029 (8.86s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:25:00.029&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:25:08.096 (8.101s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:490 @ 07/16/23 23:25:08.096&#xA;STEP: routing requests to the canary upstream when header pattern is matched - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:514 @ 07/16/23 23:25:25.318&#xA;STEP: routing requests to the mainline upstream when header failed to match header value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:523 @ 07/16/23 23:25:25.328&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:490 @ 07/16/23 23:25:25.338 (17.243s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:25.339&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:25.856 (517ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] hash size Check the map hash size should set vmap-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="30.3484696">
+              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:25.858&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:34.445 (8.622s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:25:34.445&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:25:45.53 (11.085s)&#xA;&gt; Enter [It] should set vmap-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:100 @ 07/16/23 23:25:45.53&#xA;&lt; Exit [It] should set vmap-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:100 @ 07/16/23 23:25:55.715 (10.185s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:55.715&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:56.172 (456ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] permanent-redirect permanent-redirect-code should respond with a standard redirect code" classname="nginx-ingress-controller e2e suite" status="passed" time="19.4250835">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:56.173&#xA;&lt; Exit [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:04.819 (8.68s)&#xA;&gt; Enter [It] should respond with a standard redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:33 @ 07/16/23 23:26:04.819&#xA;STEP: setting permanent-redirect annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:34 @ 07/16/23 23:26:04.819&#xA;STEP: sending request to redirected URL path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:52 @ 07/16/23 23:26:15.073&#xA;&lt; Exit [It] should respond with a standard redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:33 @ 07/16/23 23:26:15.081 (10.263s)&#xA;&gt; Enter [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:15.081&#xA;&lt; Exit [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:15.564 (482ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Default Backend] should return 404 sending requests when only a default backend is running" classname="nginx-ingress-controller e2e suite" status="passed" time="18.352629">
+              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:15.565&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:23.961 (8.396s)&#xA;&gt; Enter [It] should return 404 sending requests when only a default backend is running - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:33 @ 07/16/23 23:26:23.961&#xA;STEP: basic HTTP GET request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:28.963&#xA;STEP: basic HTTP GET request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:28.977&#xA;STEP: basic HTTPS GET request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:28.992&#xA;STEP: basic HTTPS GET request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:29.017&#xA;STEP: basic HTTP POST request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:29.044&#xA;STEP: basic HTTP POST request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:29.06&#xA;STEP: basic HTTPS POST request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:29.371&#xA;STEP: basic HTTPS POST request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:29.776&#xA;STEP: basic HTTP GET request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:30.197&#xA;STEP: basic HTTP GET request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:30.574&#xA;STEP: basic HTTPS GET request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:30.98&#xA;STEP: basic HTTPS GET request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:31.34&#xA;STEP: basic HTTP POST request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:31.743&#xA;STEP: basic HTTP POST request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:32.136&#xA;STEP: basic HTTPS POST request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:32.539&#xA;STEP: basic HTTPS POST request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:32.97&#xA;&lt; Exit [It] should return 404 sending requests when only a default backend is running - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:33 @ 07/16/23 23:26:33.344 (9.418s)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:33.344&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:33.883 (539ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should propagate the w3c header when configured with jaeger" classname="nginx-ingress-controller e2e suite" status="passed" time="42.8786055">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:33.885&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:41.697 (7.812s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:26:41.697&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:26:45.787 (4.089s)&#xA;&gt; Enter [It] should propagate the w3c header when configured with jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:197 @ 07/16/23 23:26:45.787&#xA;&lt; Exit [It] should propagate the w3c header when configured with jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:197 @ 07/16/23 23:27:16.141 (30.389s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:16.141&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:16.729 (588ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:27:16.729&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:27:16.729 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by header with value should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="36.4841509">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:16.734&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:27.28 (10.546s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:27:27.28&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:27:35.372 (8.127s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:426 @ 07/16/23 23:27:35.373&#xA;STEP: routing requests to the canary upstream when header is set to &#39;DoCanary&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:451 @ 07/16/23 23:27:52.596&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:460 @ 07/16/23 23:27:52.607&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:469 @ 07/16/23 23:27:52.618&#xA;STEP: routing requests to the mainline upstream when header is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:478 @ 07/16/23 23:27:52.624&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:426 @ 07/16/23 23:27:52.632 (17.259s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:52.632&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:53.184 (552ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should exists opentracing_location_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1413011">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:53.185&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:01.521 (8.37s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:28:01.521&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:28:05.603 (4.082s)&#xA;&gt; Enter [It] should exists opentracing_location_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:145 @ 07/16/23 23:28:05.603&#xA;&lt; Exit [It] should exists opentracing_location_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:145 @ 07/16/23 23:28:22.87 (17.267s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:22.87&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:23.292 (422ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:28:23.292&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:28:23.292 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] gzip should set gzip_min_length to 100" classname="nginx-ingress-controller e2e suite" status="passed" time="26.156898">
+              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:23.293&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:31.555 (8.296s)&#xA;&gt; Enter [It] should set gzip_min_length to 100 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:78 @ 07/16/23 23:28:31.555&#xA;&lt; Exit [It] should set gzip_min_length to 100 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:78 @ 07/16/23 23:28:48.825 (17.268s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:48.825&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:49.416 (591ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should not exists opentracing_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="30.6103322">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:49.42&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:57.983 (8.563s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:28:57.983&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:29:02.021 (4.072s)&#xA;&gt; Enter [It] should not exists opentracing_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:100 @ 07/16/23 23:29:02.021&#xA;&lt; Exit [It] should not exists opentracing_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:100 @ 07/16/23 23:29:19.271 (17.25s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:19.271&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:19.996 (725ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:29:19.996&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:29:19.996 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] proxy-send-timeout should not set invalid proxy send timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="29.5046748">
+              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:19.999&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:27.495 (7.496s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 07/16/23 23:29:27.495&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 07/16/23 23:29:31.525 (4.064s)&#xA;&gt; Enter [It] should not set invalid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:52 @ 07/16/23 23:29:31.525&#xA;&lt; Exit [It] should not set invalid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:52 @ 07/16/23 23:29:48.787 (17.262s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:48.787&#xA;&lt; Exit [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:49.468 (682ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] hash size Check the variable hash size should set variables-hash-max-size" classname="nginx-ingress-controller e2e suite" status="passed" time="30.3397123">
+              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:49.475&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:58.075 (8.6s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:29:58.075&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:30:09.134 (11.098s)&#xA;&gt; Enter [It] should set variables-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:88 @ 07/16/23 23:30:09.134&#xA;&lt; Exit [It] should set variables-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:88 @ 07/16/23 23:30:19.281 (10.147s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:19.281&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:19.775 (494ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure Opentelemetry should include opentelemetry_trust_incoming_spans on directive when enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="41.069556">
+              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:19.783&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:29.478 (9.696s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:30:29.478&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:30:33.47 (4.057s)&#xA;&gt; Enter [It] should include opentelemetry_trust_incoming_spans on directive when enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:74 @ 07/16/23 23:30:33.471&#xA;&lt; Exit [It] should include opentelemetry_trust_incoming_spans on directive when enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:74 @ 07/16/23 23:30:54.972 (21.502s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:54.973&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:00.749 (5.815s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:31:00.749&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:31:00.749 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* canary affinity behavior always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="42.0865835">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:00.828&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:08.468 (7.64s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:31:08.468&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:31:16.616 (8.148s)&#xA;&gt; Enter [It] always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1000 @ 07/16/23 23:31:16.616&#xA;&lt; Exit [It] always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1000 @ 07/16/23 23:31:42.294 (25.713s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:42.294&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:42.864 (569ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured but Authorization header is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="24.3322977">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:42.867&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:51.421 (8.554s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:31:51.421&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:31:55.49 (4.069s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:89 @ 07/16/23 23:31:55.49&#xA;&lt; Exit [It] should return status code 401 when authentication is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:89 @ 07/16/23 23:32:06.723 (11.267s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:06.723&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:07.164 (442ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] use-forwarded-headers should not trust X-Forwarded headers when setting is false" classname="nginx-ingress-controller e2e suite" status="passed" time="36.0455554">
+              <system-err>&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:07.168&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:14.509 (7.341s)&#xA;&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 07/16/23 23:32:14.509&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 07/16/23 23:32:25.596 (11.087s)&#xA;&gt; Enter [It] should not trust X-Forwarded headers when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:92 @ 07/16/23 23:32:25.596&#xA;&lt; Exit [It] should not trust X-Forwarded headers when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:92 @ 07/16/23 23:32:42.761 (17.199s)&#xA;&gt; Enter [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:42.761&#xA;&lt; Exit [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:43.179 (418ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] access-log http-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="18.853158">
+              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:43.184&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:51.238 (8.053s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:54 @ 07/16/23 23:32:51.238&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:54 @ 07/16/23 23:33:01.441 (10.238s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:01.442&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:02.003 (562ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests split between mainline and canary if canary weight is 100 and weight total is 200" classname="nginx-ingress-controller e2e suite" status="passed" time="73.5377854">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:02.007&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:11.575 (9.568s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:33:11.575&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:33:19.722 (8.147s)&#xA;&gt; Enter [It] should route requests split between mainline and canary if canary weight is 100 and weight total is 200 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:834 @ 07/16/23 23:33:19.722&#xA;&lt; Exit [It] should route requests split between mainline and canary if canary weight is 100 and weight total is 200 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:834 @ 07/16/23 23:34:15.058 (55.405s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:15.058&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:15.476 (418ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] mirror-* should set mirror-target to https://test.env.com/$request_uri" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3580945">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:15.477&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:23.831 (8.354s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 07/16/23 23:34:23.831&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 07/16/23 23:34:27.893 (4.061s)&#xA;&gt; Enter [It] should set mirror-target to https://test.env.com/$request_uri - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:51 @ 07/16/23 23:34:27.893&#xA;&lt; Exit [It] should set mirror-target to https://test.env.com/$request_uri - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:51 @ 07/16/23 23:34:38.318 (10.46s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:38.318&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:38.801 (483ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to $scheme:// and use proxy_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="24.527899">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:38.803&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:48.547 (9.744s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:34:48.547&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:34:52.605 (4.058s)&#xA;&gt; Enter [It] should set backend protocol to $scheme:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:49 @ 07/16/23 23:34:52.605&#xA;&lt; Exit [It] should set backend protocol to $scheme:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:49 @ 07/16/23 23:35:02.751 (10.18s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:02.751&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:03.297 (546ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should disable the log-format-escape-json" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1125385">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:03.312&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:11.68 (8.368s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:35:11.68&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:35:22.776 (11.096s)&#xA;&gt; Enter [It] should disable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:55 @ 07/16/23 23:35:22.776&#xA;&lt; Exit [It] should disable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:55 @ 07/16/23 23:35:32.97 (10.229s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:32.97&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:33.388 (418ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - FastCGI should return OK for service with backend protocol FastCGI" classname="nginx-ingress-controller e2e suite" status="passed" time="21.2464333">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:33.39&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:41.909 (8.519s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:35:41.909&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:35:43.975 (2.066s)&#xA;&gt; Enter [It] should return OK for service with backend protocol FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:102 @ 07/16/23 23:35:43.975&#xA;&lt; Exit [It] should return OK for service with backend protocol FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:102 @ 07/16/23 23:35:54.184 (10.209s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:54.184&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:54.637 (453ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on" classname="nginx-ingress-controller e2e suite" status="passed" time="27.3048214">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:54.638&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:04.492 (9.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:36:04.492&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:36:10.59 (6.098s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:64 @ 07/16/23 23:36:10.59&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:64 @ 07/16/23 23:36:21.417 (10.826s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:21.417&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:21.909 (492ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to canary if canary weight is 100" classname="nginx-ingress-controller e2e suite" status="passed" time="35.3460961">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:21.91&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:31.441 (9.565s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:36:31.441&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:36:39.575 (8.135s)&#xA;&gt; Enter [It] should route requests only to canary if canary weight is 100 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:743 @ 07/16/23 23:36:39.575&#xA;&lt; Exit [It] should route requests only to canary if canary weight is 100 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:743 @ 07/16/23 23:36:56.821 (17.246s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:56.821&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:57.222 (400ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keepalive time to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="32.5033309">
+              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:57.223&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:07.971 (10.783s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:37:07.971&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:37:19.071 (11.099s)&#xA;&gt; Enter [It] should set keepalive time to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:77 @ 07/16/23 23:37:19.071&#xA;&lt; Exit [It] should set keepalive time to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:77 @ 07/16/23 23:37:29.282 (10.212s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:29.283&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:29.692 (409ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 200 when accessing &#39;/&#39;  authentication" classname="nginx-ingress-controller e2e suite" status="passed" time="33.3392887">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:29.693&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:38.006 (8.347s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 07/16/23 23:37:38.006&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 07/16/23 23:37:58.271 (20.264s)&#xA;&gt; Enter [It] should return status code 200 when accessing &#39;/&#39;  authentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:68 @ 07/16/23 23:37:58.271&#xA;&lt; Exit [It] should return status code 200 when accessing &#39;/&#39;  authentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:68 @ 07/16/23 23:38:02.529 (4.293s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:02.529&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:02.964 (434ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] add-headers Add multiple custom headers" classname="nginx-ingress-controller e2e suite" status="passed" time="30.2408119">
+              <system-err>&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:02.971&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:11.459 (8.488s)&#xA;&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 07/16/23 23:38:11.459&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 07/16/23 23:38:22.582 (11.122s)&#xA;&gt; Enter [It] Add multiple custom headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:65 @ 07/16/23 23:38:22.582&#xA;&lt; Exit [It] Add multiple custom headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:65 @ 07/16/23 23:38:32.759 (10.211s)&#xA;&gt; Enter [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:32.759&#xA;&lt; Exit [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:33.178 (419ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity without using &#39;modsecurity on;&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="34.4613293">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:33.18&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:41.812 (8.632s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:38:41.812&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:38:49.899 (8.087s)&#xA;&gt; Enter [It] should enable modsecurity without using &#39;modsecurity on;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:110 @ 07/16/23 23:38:49.899&#xA;&lt; Exit [It] should enable modsecurity without using &#39;modsecurity on;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:110 @ 07/16/23 23:39:07.104 (17.239s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:07.104&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:07.608 (504ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured picks up the updated certificate without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="51.1719674">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:07.617&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:15.244 (7.627s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:39:15.244&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:39:21.419 (6.176s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:39:21.42&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 07/16/23 23:39:38.597&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 07/16/23 23:39:46.821&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:39:46.84 (25.455s)&#xA;&gt; Enter [It] picks up the updated certificate without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:149 @ 07/16/23 23:39:46.841&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:163 @ 07/16/23 23:39:52.033&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:169 @ 07/16/23 23:39:55.176&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:180 @ 07/16/23 23:39:58.206&#xA;&lt; Exit [It] picks up the updated certificate without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:149 @ 07/16/23 23:39:58.206 (11.366s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:58.206&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:58.754 (548ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should exists opentracing directive when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="32.5664912">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:58.76&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:07.505 (8.774s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:40:07.505&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:40:13.578 (6.073s)&#xA;&gt; Enter [It] should exists opentracing directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:71 @ 07/16/23 23:40:13.578&#xA;&lt; Exit [It] should exists opentracing directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:71 @ 07/16/23 23:40:30.774 (17.231s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:30.774&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:31.257 (483ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:40:31.257&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:40:31.258 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should return status code 200 when signed in after auth backend is deleted" classname="nginx-ingress-controller e2e suite" status="passed" time="73.1807948">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:31.26&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:39.618 (8.359s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:40:39.619&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:40:45.749 (6.13s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:40:45.749&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:40:50.946&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:41:01.126&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:41:11.35&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:41:21.559&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:41:36.857 (51.177s)&#xA;&gt; Enter [It] should return status code 200 when signed in after auth backend is deleted  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:772 @ 07/16/23 23:41:36.857&#xA;&lt; Exit [It] should return status code 200 when signed in after auth backend is deleted  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:772 @ 07/16/23 23:41:43.93 (7.073s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:43.93&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:44.372 (442ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to mainline if canary weight is 0" classname="nginx-ingress-controller e2e suite" status="passed" time="54.3242791">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:34.287&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:49.044 (14.757s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:07:49.044&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:08:05.568 (16.559s)&#xA;&gt; Enter [It] should route requests only to mainline if canary weight is 0 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:705 @ 07/16/23 23:08:05.569&#xA;&lt; Exit [It] should route requests only to mainline if canary weight is 0 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:705 @ 07/16/23 23:08:27.887 (22.318s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:27.887&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:28.576 (689ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] Add no tls redirect locations Check no tls redirect locations config" classname="nginx-ingress-controller e2e suite" status="passed" time="29.4005463">
+              <system-err>&gt; Enter [BeforeEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:28.582&#xA;&lt; Exit [BeforeEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:36.857 (8.309s)&#xA;&gt; Enter [It] Check no tls redirect locations config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_tls_redirect_locations.go:31 @ 07/16/23 23:08:36.857&#xA;&lt; Exit [It] Check no tls redirect locations config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_tls_redirect_locations.go:31 @ 07/16/23 23:08:57.345 (20.488s)&#xA;&gt; Enter [AfterEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:57.345&#xA;&lt; Exit [AfterEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:57.948 (603ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should set request-redirect when global-auth-request-redirect is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="68.5104246">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:57.95&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:06.944 (9.028s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:09:06.944&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:09:25.075 (18.131s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:09:25.075&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:09:25.075&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:09:35.276&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:09:45.533&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:09:55.741 (30.7s)&#xA;&gt; Enter [It] should set request-redirect when global-auth-request-redirect is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:237 @ 07/16/23 23:09:55.741&#xA;STEP: Adding a global-auth-request-redirect to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:242 @ 07/16/23 23:09:55.741&#xA;&lt; Exit [It] should set request-redirect when global-auth-request-redirect is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:237 @ 07/16/23 23:10:05.886 (10.18s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:05.886&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:06.357 (471ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format default escape" classname="nginx-ingress-controller e2e suite" status="passed" time="34.3825706">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:06.359&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:15.633 (9.274s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:10:15.633&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:10:26.724 (11.091s)&#xA;&gt; Enter [It] log-format default escape - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:105 @ 07/16/23 23:10:26.724&#xA;&lt; Exit [It] log-format default escape - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:105 @ 07/16/23 23:10:40.107 (13.418s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:40.107&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:40.707 (600ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Load Balancer] EWMA does not fail requests" classname="nginx-ingress-controller e2e suite" status="passed" time="34.6657434">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:40.727&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:49.212 (8.485s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:34 @ 07/16/23 23:10:49.212&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:34 @ 07/16/23 23:11:00.338 (11.126s)&#xA;&gt; Enter [It] does not fail requests - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:42 @ 07/16/23 23:11:00.338&#xA;Jul 16 23:11:14.762: INFO: Request distribution: map[echo-7b6bf466cc-k5lq4:6 echo-7b6bf466cc-xhgrs:9 echo-7b6bf466cc-zm2tc:15]&#xA;&lt; Exit [It] does not fail requests - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:42 @ 07/16/23 23:11:14.762 (14.48s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:14.762&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:15.337 (574ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should not set affinity across all server locations when using separate ingresses" classname="nginx-ingress-controller e2e suite" status="passed" time="30.7649717">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:15.344&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:23.899 (8.554s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:11:23.899&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:11:28.014 (4.115s)&#xA;&gt; Enter [It] should not set affinity across all server locations when using separate ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:320 @ 07/16/23 23:11:28.014&#xA;&lt; Exit [It] should not set affinity across all server locations when using separate ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:320 @ 07/16/23 23:11:45.272 (17.315s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:45.272&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:46.053 (781ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should add custom error page when global-auth-signin url is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="58.6966417">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:46.055&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:54.592 (8.537s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:11:54.592&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:12:02.74 (8.185s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:12:02.741&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:12:02.741&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:12:12.97&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:12:23.365&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:12:33.703 (30.997s)&#xA;&gt; Enter [It] should add custom error page when global-auth-signin url is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:210 @ 07/16/23 23:12:33.703&#xA;STEP: Adding a global-auth-signin to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:215 @ 07/16/23 23:12:33.703&#xA;&lt; Exit [It] should add custom error page when global-auth-signin url is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:210 @ 07/16/23 23:12:43.93 (10.227s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:43.93&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:44.68 (750ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-sync-events should not create sync events" classname="nginx-ingress-controller e2e suite" status="passed" time="32.0337503">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:44.681&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:53.488 (8.807s)&#xA;&gt; Enter [It] should not create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:80 @ 07/16/23 23:12:53.488&#xA;&lt; Exit [It] should not create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:80 @ 07/16/23 23:13:16.154 (22.701s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:16.154&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:16.68 (526ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinitymode Balanced affinity mode should balance" classname="nginx-ingress-controller e2e suite" status="passed" time="26.9087913">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:16.682&#xA;&lt; Exit [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:24.418 (7.736s)&#xA;&gt; Enter [It] Balanced affinity mode should balance - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:34 @ 07/16/23 23:13:24.418&#xA;&lt; Exit [It] Balanced affinity mode should balance - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:34 @ 07/16/23 23:13:43.022 (18.638s)&#xA;&gt; Enter [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:43.022&#xA;&lt; Exit [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:43.557 (535ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should still return status code 200 after auth backend is deleted using cache" classname="nginx-ingress-controller e2e suite" status="passed" time="74.3679894">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:43.569&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:52.109 (8.54s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:13:52.109&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:14:00.22 (8.111s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:14:00.22&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:14:00.221&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:14:10.357&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:14:20.687&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:14:31.22 (31.034s)&#xA;&gt; Enter [It] should still return status code 200 after auth backend is deleted using cache - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:155 @ 07/16/23 23:14:31.221&#xA;STEP: Adding a global-auth-cache-key to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:163 @ 07/16/23 23:14:31.221&#xA;&lt; Exit [It] should still return status code 200 after auth backend is deleted using cache - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:155 @ 07/16/23 23:14:56.908 (25.722s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:56.908&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:57.868 (959ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] mirror-* should set mirror-target to http://localhost/mirror" classname="nginx-ingress-controller e2e suite" status="passed" time="24.7436373">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:57.873&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:07.775 (9.936s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 07/16/23 23:15:07.775&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 07/16/23 23:15:11.846 (4.07s)&#xA;&gt; Enter [It] should set mirror-target to http://localhost/mirror - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:36 @ 07/16/23 23:15:11.846&#xA;&lt; Exit [It] should set mirror-target to http://localhost/mirror - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:36 @ 07/16/23 23:15:22.158 (10.312s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:22.158&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:22.583 (425ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should set sticky cookie SERVERID" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3930481">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:22.584&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:31.03 (8.446s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:15:31.03&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:15:35.048 (4.052s)&#xA;&gt; Enter [It] should set sticky cookie SERVERID - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:42 @ 07/16/23 23:15:35.048&#xA;&lt; Exit [It] should set sticky cookie SERVERID - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:42 @ 07/16/23 23:15:45.303 (10.255s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:45.303&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:45.943 (640ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] service-upstream when enabling in the configmap and disabling in the annotations should not use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="30.4041474">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:45.959&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:54.309 (8.35s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 07/16/23 23:15:54.309&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 07/16/23 23:15:58.369 (4.06s)&#xA;&gt; Enter [It] should not use the Service Cluster IP and Port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:99 @ 07/16/23 23:15:58.369&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:113 @ 07/16/23 23:16:15.745&#xA;STEP: checking if the Service Cluster IP and Port are not used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:120 @ 07/16/23 23:16:15.754&#xA;&lt; Exit [It] should not use the Service Cluster IP and Port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:99 @ 07/16/23 23:16:15.932 (17.597s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:15.932&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:16.329 (396ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] ssl-ciphers should change ssl ciphers" classname="nginx-ingress-controller e2e suite" status="passed" time="23.6848481">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:16.33&#xA;&lt; Exit [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:24.942 (8.612s)&#xA;&gt; Enter [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:31 @ 07/16/23 23:16:24.942&#xA;&lt; Exit [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:31 @ 07/16/23 23:16:29.022 (4.08s)&#xA;&gt; Enter [It] should change ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:35 @ 07/16/23 23:16:29.022&#xA;&lt; Exit [It] should change ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:35 @ 07/16/23 23:16:39.31 (10.323s)&#xA;&gt; Enter [AfterEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:39.31&#xA;&lt; Exit [AfterEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:39.98 (670ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should enable the log-format-escape-none" classname="nginx-ingress-controller e2e suite" status="passed" time="31.6590056">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:39.982&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:49.837 (9.855s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:16:49.837&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:17:00.937 (11.1s)&#xA;&gt; Enter [It] should enable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:63 @ 07/16/23 23:17:00.938&#xA;&lt; Exit [It] should enable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:63 @ 07/16/23 23:17:11.121 (10.218s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:11.121&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:11.607 (486ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests split between mainline and canary if canary weight is 50" classname="nginx-ingress-controller e2e suite" status="passed" time="72.9624279">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:11.608&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:20.212 (8.604s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:17:20.212&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:17:28.342 (8.13s)&#xA;&gt; Enter [It] should route requests split between mainline and canary if canary weight is 50 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:808 @ 07/16/23 23:17:28.342&#xA;&lt; Exit [It] should route requests split between mainline and canary if canary weight is 50 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:808 @ 07/16/23 23:18:23.842 (55.569s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:23.843&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:24.502 (659ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should set valid proxy timeouts" classname="nginx-ingress-controller e2e suite" status="passed" time="22.0752737">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:24.505&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:31.714 (7.243s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:18:31.714&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:18:35.862 (4.148s)&#xA;&gt; Enter [It] should set valid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:115 @ 07/16/23 23:18:35.862&#xA;&lt; Exit [It] should set valid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:115 @ 07/16/23 23:18:46.046 (10.184s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:46.046&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:46.546 (500ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is negative" classname="nginx-ingress-controller e2e suite" status="passed" time="49.775886">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:46.548&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:53.971 (7.423s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:18:53.971&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:18:58.059 (4.088s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:18:58.059&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:19:12.335 (14.31s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is negative - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:590 @ 07/16/23 23:19:12.335&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is negative - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:590 @ 07/16/23 23:19:35.576 (23.275s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:35.576&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:36.255 (679ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic configuration when only backends change handles an annotation change" classname="nginx-ingress-controller e2e suite" status="passed" time="28.7916129">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:36.256&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:43.637 (7.381s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:19:43.637&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:19:57.933 (14.296s)&#xA;&gt; Enter [It] handles an annotation change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:171 @ 07/16/23 23:19:57.933&#xA;&lt; Exit [It] handles an annotation change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:171 @ 07/16/23 23:20:04.479 (6.58s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:04.479&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:05.013 (534ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Security] Pod Security Policies with volumes should be running with a Pod Security Policy" classname="nginx-ingress-controller e2e suite" status="skipped" time="10.6800515">
+              <skipped message="skipped - PSP not supported in this version"></skipped>
+              <system-err>&gt; Enter [BeforeEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:05.015&#xA;&lt; Exit [BeforeEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:14.859 (9.844s)&#xA;&gt; Enter [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:40 @ 07/16/23 23:20:14.859&#xA;[SKIPPED] PSP not supported in this version&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:53 @ 07/16/23 23:20:14.864&#xA;&lt; Exit [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:40 @ 07/16/23 23:20:14.864 (5ms)&#xA;&gt; Enter [AfterEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:14.864&#xA;&lt; Exit [AfterEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:15.695 (831ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should set secure in cookie with provided true annotation on http" classname="nginx-ingress-controller e2e suite" status="passed" time="22.5750295">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:15.697&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:23.308 (7.611s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:20:23.308&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:20:27.397 (4.089s)&#xA;&gt; Enter [It] should set secure in cookie with provided true annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:412 @ 07/16/23 23:20:27.397&#xA;&lt; Exit [It] should set secure in cookie with provided true annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:412 @ 07/16/23 23:20:37.584 (10.221s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:37.584&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:38.237 (653ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should return 200 using auth-tls-match-cn with matching CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="23.9705324">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:38.239&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:46.709 (8.47s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:20:46.709&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:20:50.775 (4.066s)&#xA;&gt; Enter [It] should return 200 using auth-tls-match-cn with matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:295 @ 07/16/23 23:20:50.775&#xA;&lt; Exit [It] should return 200 using auth-tls-match-cn with matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:295 @ 07/16/23 23:21:01.786 (11.046s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:01.786&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:02.175 (389ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should fail to use longest match for documented warning" classname="nginx-ingress-controller e2e suite" status="passed" time="30.318831">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:02.177&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:10.721 (8.544s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:21:10.721&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:21:14.801 (4.08s)&#xA;&gt; Enter [It] should fail to use longest match for documented warning - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:158 @ 07/16/23 23:21:14.801&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:161 @ 07/16/23 23:21:14.801&#xA;STEP: creating an ingress definition with the use-regex annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:165 @ 07/16/23 23:21:21.843&#xA;STEP: check that &#39;/foo/bar/bar&#39; does not match the longest exact path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:179 @ 07/16/23 23:21:32.042&#xA;&lt; Exit [It] should fail to use longest match for documented warning - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:158 @ 07/16/23 23:21:32.048 (17.282s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:32.048&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:32.461 (413ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class Without IngressClass Cluster scoped Permission should ignore Ingress with only IngressClassName" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1356454">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:32.463&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:39.797 (7.334s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:21:39.797&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:21:43.865 (4.068s)&#xA;&gt; Enter [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 07/16/23 23:21:43.865&#xA;&lt; Exit [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 07/16/23 23:21:51.955 (8.09s)&#xA;&gt; Enter [It] should ignore Ingress with only IngressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:652 @ 07/16/23 23:21:51.955&#xA;&lt; Exit [It] should ignore Ingress with only IngressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:652 @ 07/16/23 23:22:02.145 (10.223s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:02.145&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:02.564 (419ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] block-* should block Referers defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="31.1387085">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:02.566&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:11.193 (8.627s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 07/16/23 23:22:11.193&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 07/16/23 23:22:22.303 (11.11s)&#xA;&gt; Enter [It] should block Referers defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:88 @ 07/16/23 23:22:22.303&#xA;&lt; Exit [It] should block Referers defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:88 @ 07/16/23 23:22:32.765 (10.496s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:32.765&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:33.67 (906ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] Configmap change should reload after an update in the configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="43.977068">
+              <system-err>&gt; Enter [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:33.674&#xA;&lt; Exit [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:42.623 (8.949s)&#xA;&gt; Enter [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:32 @ 07/16/23 23:22:42.623&#xA;&lt; Exit [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:32 @ 07/16/23 23:22:46.677 (4.054s)&#xA;&gt; Enter [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:36 @ 07/16/23 23:22:46.677&#xA;STEP: adding a whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:42 @ 07/16/23 23:22:53.713&#xA;STEP: changing error-log-level - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:61 @ 07/16/23 23:23:03.876&#xA;&lt; Exit [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:36 @ 07/16/23 23:23:17.205 (30.562s)&#xA;&gt; Enter [AfterEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:17.205&#xA;&lt; Exit [AfterEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:17.616 (412ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-catch-all should ignore catch all Ingress with backend and rules" classname="nginx-ingress-controller e2e suite" status="passed" time="34.3049437">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:17.617&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:25.915 (8.298s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:23:25.916&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:23:40.996 (15.114s)&#xA;&gt; Enter [It] should ignore catch all Ingress with backend and rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:69 @ 07/16/23 23:23:40.996&#xA;&lt; Exit [It] should ignore catch all Ingress with backend and rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:69 @ 07/16/23 23:23:51.243 (10.247s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:51.243&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:51.888 (645ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set" classname="nginx-ingress-controller e2e suite" status="passed" time="25.2821374">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:51.89&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:02.36 (10.505s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:24:02.36&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:24:06.483 (4.123s)&#xA;&gt; Enter [It] should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:301 @ 07/16/23 23:24:06.483&#xA;&lt; Exit [It] should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:301 @ 07/16/23 23:24:16.671 (10.187s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:16.671&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:17.137 (467ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1m" classname="nginx-ingress-controller e2e suite" status="passed" time="23.0553091">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:17.14&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:25.522 (8.382s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:24:25.522&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:24:29.596 (4.073s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:101 @ 07/16/23 23:24:29.596&#xA;&lt; Exit [It] should set client_body_buffer_size to 1m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:101 @ 07/16/23 23:24:39.753 (10.192s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:39.753&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:40.161 (408ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Shutdown] ingress controller should shutdown in less than 60 secons without pending connections" classname="nginx-ingress-controller e2e suite" status="passed" time="30.8368955">
+              <system-err>&gt; Enter [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:40.163&#xA;&lt; Exit [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:48.151 (7.988s)&#xA;&gt; Enter [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:35 @ 07/16/23 23:24:48.151&#xA;&lt; Exit [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:35 @ 07/16/23 23:24:59.271 (11.12s)&#xA;&gt; Enter [It] should shutdown in less than 60 secons without pending connections - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:40 @ 07/16/23 23:24:59.271&#xA;&lt; Exit [It] should shutdown in less than 60 secons without pending connections - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:40 @ 07/16/23 23:25:10.518 (11.281s)&#xA;&gt; Enter [AfterEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:10.518&#xA;&lt; Exit [AfterEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:10.966 (448ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress with a different class annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="29.2870748">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:10.967&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:18.468 (7.501s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:25:18.468&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:25:22.573 (4.105s)&#xA;&gt; Enter [It] should ignore Ingress with a different class annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:68 @ 07/16/23 23:25:22.573&#xA;&lt; Exit [It] should ignore Ingress with a different class annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:68 @ 07/16/23 23:25:39.828 (17.29s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:39.828&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:40.22 (391ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place" classname="nginx-ingress-controller e2e suite" status="passed" time="30.604903">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:40.221&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:47.582 (7.361s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:25:47.582&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:25:51.699 (4.117s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:102 @ 07/16/23 23:25:51.699&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:102 @ 07/16/23 23:26:10.03 (18.365s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:10.03&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:10.792 (762ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] hash size Check proxy header hash size should set proxy-headers-hash-max-size" classname="nginx-ingress-controller e2e suite" status="passed" time="29.5565465">
+              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:10.796&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:18.517 (7.721s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:26:18.517&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:26:29.612 (11.095s)&#xA;&gt; Enter [It] should set proxy-headers-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:68 @ 07/16/23 23:26:29.612&#xA;&lt; Exit [It] should set proxy-headers-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:68 @ 07/16/23 23:26:39.848 (10.27s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:39.848&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:40.318 (470ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canaried by header with no value should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="34.6947308">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:40.322&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:49.062 (8.74s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:26:49.062&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:26:57.227 (8.165s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:372 @ 07/16/23 23:26:57.227&#xA;STEP: routing requests to the canary upstream when header is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:395 @ 07/16/23 23:27:14.5&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:404 @ 07/16/23 23:27:14.506&#xA;STEP: routing requests to the mainline upstream when header is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:414 @ 07/16/23 23:27:14.512&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:372 @ 07/16/23 23:27:14.518 (17.326s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:14.518&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:14.982 (464ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] proxy-next-upstream should build proxy next upstream using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="30.4059144">
+              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:14.983&#xA;&lt; Exit [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:23.621 (8.637s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:32 @ 07/16/23 23:27:23.621&#xA;&lt; Exit [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:32 @ 07/16/23 23:27:27.678 (4.058s)&#xA;&gt; Enter [It] should build proxy next upstream using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:36 @ 07/16/23 23:27:27.678&#xA;&lt; Exit [It] should build proxy next upstream using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:36 @ 07/16/23 23:27:44.864 (17.219s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:44.864&#xA;&lt; Exit [AfterEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:45.355 (491ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] default-backend when default backend annotation is enabled should use a custom default backend as upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="24.1701154">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:45.356&#xA;&lt; Exit [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:54.361 (9.004s)&#xA;&gt; Enter [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:32 @ 07/16/23 23:27:54.361&#xA;&lt; Exit [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:32 @ 07/16/23 23:27:58.446 (4.085s)&#xA;&gt; Enter [It] should use a custom default backend as upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:37 @ 07/16/23 23:27:58.446&#xA;&lt; Exit [It] should use a custom default backend as upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:37 @ 07/16/23 23:28:08.662 (10.25s)&#xA;&gt; Enter [AfterEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:08.662&#xA;&lt; Exit [AfterEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:09.492 (830ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - FastCGI should use fastcgi_pass in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="21.5885282">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:09.495&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:18.198 (8.703s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:28:18.198&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:28:20.266 (2.068s)&#xA;&gt; Enter [It] should use fastcgi_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:37 @ 07/16/23 23:28:20.266&#xA;&lt; Exit [It] should use fastcgi_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:37 @ 07/16/23 23:28:30.476 (10.21s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:30.476&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:31.049 (608ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] denylist-source-range only deny explicitly denied IPs, allow all others" classname="nginx-ingress-controller e2e suite" status="passed" time="37.2024876">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:31.05&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:39.51 (8.46s)&#xA;&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 07/16/23 23:28:39.51&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 07/16/23 23:28:43.584 (4.073s)&#xA;&gt; Enter [It] only deny explicitly denied IPs, allow all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:35 @ 07/16/23 23:28:43.584&#xA;STEP: sending request from an explicitly denied IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:61 @ 07/16/23 23:29:00.77&#xA;STEP: sending request from an explicitly denied IP address - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:69 @ 07/16/23 23:29:00.776&#xA;STEP: sending request from an implicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:77 @ 07/16/23 23:29:00.783&#xA;&lt; Exit [It] only deny explicitly denied IPs, allow all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:35 @ 07/16/23 23:29:07.785 (24.235s)&#xA;&gt; Enter [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:07.785&#xA;&lt; Exit [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:08.219 (434ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] backend status code 503 should return 503 when backend service does not exist" classname="nginx-ingress-controller e2e suite" status="passed" time="19.0865194">
+              <system-err>&gt; Enter [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:08.222&#xA;&lt; Exit [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:16.588 (8.366s)&#xA;&gt; Enter [It] should return 503 when backend service does not exist - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:36 @ 07/16/23 23:29:16.588&#xA;&lt; Exit [It] should return 503 when backend service does not exist - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:36 @ 07/16/23 23:29:26.783 (10.195s)&#xA;&gt; Enter [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:26.783&#xA;&lt; Exit [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:27.308 (525ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure Opentelemetry should not exists opentelemetry directive" classname="nginx-ingress-controller e2e suite" status="passed" time="29.9809659">
+              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:27.309&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:35.546 (8.271s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:29:35.546&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:29:39.603 (4.057s)&#xA;&gt; Enter [It] should not exists opentelemetry directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:47 @ 07/16/23 23:29:39.603&#xA;&lt; Exit [It] should not exists opentelemetry directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:47 @ 07/16/23 23:29:56.89 (17.287s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:56.89&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:57.255 (365ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:29:57.255&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:29:57.255 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 401 when request any protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="58.7238473">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:57.258&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:07.638 (10.419s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:30:07.638&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:30:15.827 (8.189s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:30:15.827&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:30:15.827&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:30:26.122&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:30:36.224&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:30:48.339 (32.577s)&#xA;&gt; Enter [It] should return status code 401 when request any protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:85 @ 07/16/23 23:30:48.339&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:87 @ 07/16/23 23:30:48.339&#xA;STEP: Sending a request to protected service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:94 @ 07/16/23 23:30:48.391&#xA;&lt; Exit [It] should return status code 401 when request any protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:85 @ 07/16/23 23:30:48.504 (165ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:48.504&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:55.877 (7.373s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should enable opentracing using datadog" classname="nginx-ingress-controller e2e suite" status="passed" time="35.771252">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:55.918&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:09.07 (13.19s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:31:09.07&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:31:11.17 (2.1s)&#xA;&gt; Enter [It] should enable opentracing using datadog - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:241 @ 07/16/23 23:31:11.17&#xA;&lt; Exit [It] should enable opentracing using datadog - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:241 @ 07/16/23 23:31:31.176 (20.041s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:31.176&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:31.616 (439ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:31:31.616&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:31:31.616 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should deny login for different location on same server" classname="nginx-ingress-controller e2e suite" status="passed" time="131.3586144">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:31.67&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:40.298 (8.628s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:31:40.298&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:31:44.4 (4.102s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:31:44.402&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:31:49.602&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:31:59.831&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:32:09.984&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:32:20.215&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:32:35.406 (51.073s)&#xA;&gt; Enter [It] should deny login for different location on same server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:792 @ 07/16/23 23:32:35.406&#xA;STEP: receiving an internal server error without cache on location /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:811 @ 07/16/23 23:32:42.457&#xA;&lt; Exit [It] should deny login for different location on same server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:792 @ 07/16/23 23:33:42.399 (1m7.062s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:42.4&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:42.892 (492ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Security] Pod Security Policies should be running with a Pod Security Policy" classname="nginx-ingress-controller e2e suite" status="skipped" time="8.768991100000001">
+              <skipped message="skipped - PSP not supported in this version"></skipped>
+              <system-err>&gt; Enter [BeforeEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:42.896&#xA;&lt; Exit [BeforeEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:51.181 (8.285s)&#xA;&gt; Enter [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:44 @ 07/16/23 23:33:51.181&#xA;[SKIPPED] PSP not supported in this version&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:56 @ 07/16/23 23:33:51.184&#xA;&lt; Exit [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:44 @ 07/16/23 23:33:51.184 (3ms)&#xA;&gt; Enter [AfterEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:51.184&#xA;&lt; Exit [AfterEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:51.664 (480ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if the mainline ingress is modified" classname="nginx-ingress-controller e2e suite" status="passed" time="38.6161234">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:51.666&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:00.007 (8.341s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:34:00.007&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:34:08.102 (8.129s)&#xA;&gt; Enter [It] should route requests to the correct upstream if the mainline ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:250 @ 07/16/23 23:34:08.102&#xA;STEP: routing requests destined fro the mainline ingress to the mainline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:288 @ 07/16/23 23:34:29.661&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:297 @ 07/16/23 23:34:29.668&#xA;&lt; Exit [It] should route requests to the correct upstream if the mainline ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:250 @ 07/16/23 23:34:29.676 (21.575s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:29.676&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:30.248 (571ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With ingress-class-by-name flag should watch Ingress that uses the class name even if spec is different" classname="nginx-ingress-controller e2e suite" status="passed" time="49.2747739">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:30.253&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:39.68 (9.461s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:34:39.68&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:34:45.772 (6.092s)&#xA;&gt; Enter [BeforeEach] With ingress-class-by-name flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:518 @ 07/16/23 23:34:45.772&#xA;&lt; Exit [BeforeEach] With ingress-class-by-name flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:518 @ 07/16/23 23:34:54.823 (9.051s)&#xA;&gt; Enter [It] should watch Ingress that uses the class name even if spec is different - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:539 @ 07/16/23 23:34:54.823&#xA;&lt; Exit [It] should watch Ingress that uses the class name even if spec is different - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:539 @ 07/16/23 23:35:19.068 (24.279s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:19.068&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:19.459 (391ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow origin for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="20.0703369">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:19.461&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:27.831 (8.37s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:35:27.831&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:35:31.866 (4.07s)&#xA;&gt; Enter [It] should allow origin for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:110 @ 07/16/23 23:35:31.866&#xA;&lt; Exit [It] should allow origin for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:110 @ 07/16/23 23:35:38.908 (7.042s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:38.908&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:39.497 (588ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes" classname="nginx-ingress-controller e2e suite" status="passed" time="35.9511506">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:39.502&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:48.362 (8.86s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:35:48.362&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:36:02.591 (14.263s)&#xA;&gt; Enter [It] handles endpoints only changes - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:62 @ 07/16/23 23:36:02.591&#xA;&lt; Exit [It] handles endpoints only changes - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:62 @ 07/16/23 23:36:15.012 (12.421s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:15.012&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:15.419 (407ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should exists opentracing_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="29.1864807">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:15.421&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:22.799 (7.379s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:36:22.799&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:36:26.895 (4.096s)&#xA;&gt; Enter [It] should exists opentracing_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:115 @ 07/16/23 23:36:26.895&#xA;&lt; Exit [It] should exists opentracing_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:115 @ 07/16/23 23:36:44.072 (17.211s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:44.072&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:44.573 (501ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:36:44.573&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:36:44.573 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format-escape-none enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="33.1573172">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:44.575&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:52.863 (8.288s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:36:52.863&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:37:03.994 (11.165s)&#xA;&gt; Enter [It] log-format-escape-none enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:128 @ 07/16/23 23:37:03.994&#xA;&lt; Exit [It] log-format-escape-none enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:128 @ 07/16/23 23:37:17.209 (13.215s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:17.209&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:17.698 (489ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] x-forwarded-prefix should not add X-Forwarded-Prefix if the annotation value is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="22.5838376">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:17.7&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:25.25 (7.55s)&#xA;&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 07/16/23 23:37:25.25&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 07/16/23 23:37:29.308 (4.058s)&#xA;&gt; Enter [It] should not add X-Forwarded-Prefix if the annotation value is empty - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:57 @ 07/16/23 23:37:29.308&#xA;&lt; Exit [It] should not add X-Forwarded-Prefix if the annotation value is empty - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:57 @ 07/16/23 23:37:39.541 (10.267s)&#xA;&gt; Enter [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:39.541&#xA;&lt; Exit [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:40.249 (708ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow correct origins - missing subdomain + origin with wildcard origin and correct origin" classname="nginx-ingress-controller e2e suite" status="passed" time="24.3587205">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:40.25&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:50.903 (10.653s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:37:50.903&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:37:56.972 (6.069s)&#xA;&gt; Enter [It] should allow correct origins - missing subdomain + origin with wildcard origin and correct origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:535 @ 07/16/23 23:37:56.972&#xA;&lt; Exit [It] should allow correct origins - missing subdomain + origin with wildcard origin and correct origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:535 @ 07/16/23 23:38:04.012 (7.074s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:04.012&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:04.575 (562ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* Single canary Ingress should not use canary as a catch-all server" classname="nginx-ingress-controller e2e suite" status="passed" time="34.4296202">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:04.576&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:13.092 (8.516s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:38:13.092&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:38:21.224 (8.132s)&#xA;&gt; Enter [It] should not use canary as a catch-all server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:863 @ 07/16/23 23:38:21.224&#xA;&lt; Exit [It] should not use canary as a catch-all server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:863 @ 07/16/23 23:38:38.446 (17.256s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:38.446&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:38.972 (525ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should disable the log-format-escape-none" classname="nginx-ingress-controller e2e suite" status="passed" time="32.6154152">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:38.973&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:47.576 (8.603s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:38:47.576&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:39:00.694 (13.151s)&#xA;&gt; Enter [It] should disable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:71 @ 07/16/23 23:39:00.694&#xA;&lt; Exit [It] should disable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:71 @ 07/16/23 23:39:10.972 (10.278s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:10.972&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:11.554 (582ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should set cors methods to only allow POST, GET" classname="nginx-ingress-controller e2e suite" status="passed" time="24.9506285">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:11.557&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:21.757 (10.2s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:39:21.757&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:39:25.828 (4.071s)&#xA;&gt; Enter [It] should set cors methods to only allow POST, GET - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:62 @ 07/16/23 23:39:25.828&#xA;&lt; Exit [It] should set cors methods to only allow POST, GET - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:62 @ 07/16/23 23:39:35.962 (10.168s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:35.962&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:36.474 (511ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] gzip should be enabled with default settings" classname="nginx-ingress-controller e2e suite" status="passed" time="19.370634">
+              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:36.475&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:45.251 (8.776s)&#xA;&gt; Enter [It] should be enabled with default settings - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:39 @ 07/16/23 23:39:45.251&#xA;&lt; Exit [It] should be enabled with default settings - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:39 @ 07/16/23 23:39:55.449 (10.198s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:55.449&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:55.846 (396ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should expose headers for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="27.5362647">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:55.848&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:04.392 (8.579s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:40:04.392&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:40:12.535 (8.142s)&#xA;&gt; Enter [It] should expose headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:153 @ 07/16/23 23:40:12.535&#xA;&lt; Exit [It] should expose headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:153 @ 07/16/23 23:40:22.872 (10.337s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:22.872&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:23.35 (478ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress without IngressClass configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="30.7522369">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:23.353&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:31.723 (8.405s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:40:31.724&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:40:35.786 (4.063s)&#xA;&gt; Enter [It] should ignore Ingress without IngressClass configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:164 @ 07/16/23 23:40:35.786&#xA;&lt; Exit [It] should ignore Ingress without IngressClass configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:164 @ 07/16/23 23:40:53.138 (17.352s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:53.138&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:54.07 (932ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should 302 redirect to error page instead of 400 when auth-tls-error-page is set" classname="nginx-ingress-controller e2e suite" status="passed" time="27.2150254">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:54.097&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:02.625 (8.562s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:41:02.625&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:41:06.715 (4.09s)&#xA;&gt; Enter [It] should 302 redirect to error page instead of 400 when auth-tls-error-page is set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:114 @ 07/16/23 23:41:06.715&#xA;&lt; Exit [It] should 302 redirect to error page instead of 400 when auth-tls-error-page is set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:114 @ 07/16/23 23:41:20.837 (14.122s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:20.837&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:21.278 (441ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] proxy-read-timeout should set valid proxy read timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="27.7274403">
+              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:21.3&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:29.247 (7.948s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 07/16/23 23:41:29.248&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 07/16/23 23:41:31.27 (2.057s)&#xA;&gt; Enter [It] should set valid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:36 @ 07/16/23 23:41:31.27&#xA;&lt; Exit [It] should set valid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:36 @ 07/16/23 23:41:48.597 (17.327s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:48.597&#xA;&lt; Exit [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:48.993 (395ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1M" classname="nginx-ingress-controller e2e suite" status="passed" time="47.7200023">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:34.242&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:51.069 (16.827s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:07:51.069&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:08:07.17 (16.135s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1M - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:123 @ 07/16/23 23:08:07.17&#xA;&lt; Exit [It] should set client_body_buffer_size to 1M - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:123 @ 07/16/23 23:08:18.073 (10.903s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:18.073&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:21.927 (3.855s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="34.1352475">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:21.964&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:34.164 (12.234s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 07/16/23 23:08:34.164&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 07/16/23 23:08:38.275 (4.111s)&#xA;&gt; Enter [It] disable-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:35 @ 07/16/23 23:08:38.275&#xA;&lt; Exit [It] disable-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:35 @ 07/16/23 23:08:55.61 (17.335s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:55.61&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:56.065 (455ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] access-log access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="20.0266119">
+              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:56.067&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:04.727 (8.695s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:42 @ 07/16/23 23:09:04.727&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:42 @ 07/16/23 23:09:15.337 (10.61s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:15.337&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:16.059 (722ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] gzip should set gzip_disable to msie6" classname="nginx-ingress-controller e2e suite" status="passed" time="28.4511687">
+              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:16.064&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:26.631 (10.567s)&#xA;&gt; Enter [It] should set gzip_disable to msie6 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:67 @ 07/16/23 23:09:26.631&#xA;&lt; Exit [It] should set gzip_disable to msie6 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:67 @ 07/16/23 23:09:43.812 (17.216s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:43.816&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:44.481 (664ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured removes HTTPS configuration when we delete TLS spec" classname="nginx-ingress-controller e2e suite" status="passed" time="43.7996681">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:44.483&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:52.854 (8.371s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:09:52.854&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:09:56.947 (4.093s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:09:56.947&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 07/16/23 23:10:14.472&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 07/16/23 23:10:22.717&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:10:22.74 (25.827s)&#xA;&gt; Enter [It] removes HTTPS configuration when we delete TLS spec - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:233 @ 07/16/23 23:10:22.74&#xA;&lt; Exit [It] removes HTTPS configuration when we delete TLS spec - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:233 @ 07/16/23 23:10:27.764 (5.024s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:27.764&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:28.249 (485ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] gzip should set gzip_types to application/javascript" classname="nginx-ingress-controller e2e suite" status="passed" time="26.4027206">
+              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:28.252&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:36.867 (8.65s)&#xA;&gt; Enter [It] should set gzip_types to application/javascript - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:89 @ 07/16/23 23:10:36.867&#xA;&lt; Exit [It] should set gzip_types to application/javascript - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:89 @ 07/16/23 23:10:54.131 (17.264s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:54.131&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:54.62 (489ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] server-snippet drops server snippet if disabled by the administrator" classname="nginx-ingress-controller e2e suite" status="passed" time="42.2234782">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:54.623&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:02.922 (8.355s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 07/16/23 23:11:02.922&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 07/16/23 23:11:07.043 (4.12s)&#xA;&gt; Enter [It] drops server snippet if disabled by the administrator - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:61 @ 07/16/23 23:11:07.043&#xA;&lt; Exit [It] drops server snippet if disabled by the administrator - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:61 @ 07/16/23 23:11:36.273 (29.286s)&#xA;&gt; Enter [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:36.273&#xA;&lt; Exit [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:36.734 (462ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1000" classname="nginx-ingress-controller e2e suite" status="passed" time="23.4842961">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:36.736&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:45.28 (8.543s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:11:45.28&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:11:49.471 (4.191s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1000 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:35 @ 07/16/23 23:11:49.471&#xA;&lt; Exit [It] should set client_body_buffer_size to 1000 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:35 @ 07/16/23 23:11:59.696 (10.224s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:59.696&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:00.22 (525ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] proxy-connect-timeout should set valid proxy timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="29.4130747">
+              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:00.222&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:07.673 (7.488s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 07/16/23 23:12:07.673&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 07/16/23 23:12:11.802 (4.129s)&#xA;&gt; Enter [It] should set valid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:36 @ 07/16/23 23:12:11.802&#xA;&lt; Exit [It] should set valid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:36 @ 07/16/23 23:12:29.118 (17.317s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:29.119&#xA;&lt; Exit [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:29.598 (479ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Debug CLI should get information for a specific backend server" classname="nginx-ingress-controller e2e suite" status="passed" time="24.3579777">
+              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:29.6&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:38.338 (8.773s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 07/16/23 23:12:38.338&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 07/16/23 23:12:42.421 (4.083s)&#xA;&gt; Enter [It] should get information for a specific backend server - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:56 @ 07/16/23 23:12:42.421&#xA;&lt; Exit [It] should get information for a specific backend server - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:56 @ 07/16/23 23:12:53.144 (10.723s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:53.144&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:53.923 (779ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should return status code 200 when signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="27.5322042">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:53.953&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:02.253 (8.335s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:13:02.254&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:13:06.383 (4.13s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:13:06.383&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:13:20.773 (14.39s)&#xA;&gt; Enter [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:485 @ 07/16/23 23:13:20.773&#xA;&lt; Exit [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:485 @ 07/16/23 23:13:20.8 (27ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:20.8&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:21.451 (651ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 200 when accessing &#39;/noauth&#39; unauthenticated" classname="nginx-ingress-controller e2e suite" status="passed" time="34.0313932">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:21.454&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:32.274 (10.854s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 07/16/23 23:13:32.274&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 07/16/23 23:13:51.868 (19.594s)&#xA;&gt; Enter [It] should return status code 200 when accessing &#39;/noauth&#39; unauthenticated - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:82 @ 07/16/23 23:13:51.868&#xA;&lt; Exit [It] should return status code 200 when accessing &#39;/noauth&#39; unauthenticated - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:82 @ 07/16/23 23:13:55.053 (3.185s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:55.053&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:55.451 (398ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] force-ssl-redirect should redirect to https" classname="nginx-ingress-controller e2e suite" status="passed" time="20.1262433">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:55.453&#xA;&lt; Exit [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:03.927 (8.508s)&#xA;&gt; Enter [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:30 @ 07/16/23 23:14:03.927&#xA;&lt; Exit [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:30 @ 07/16/23 23:14:08.019 (4.092s)&#xA;&gt; Enter [It] should redirect to https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:34 @ 07/16/23 23:14:08.019&#xA;&lt; Exit [It] should redirect to https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:34 @ 07/16/23 23:14:15.059 (7.04s)&#xA;&gt; Enter [AfterEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:15.059&#xA;&lt; Exit [AfterEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:15.545 (486ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow - matching origin with wildcard origin (2 subdomains)" classname="nginx-ingress-controller e2e suite" status="passed" time="35.4711634">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:15.546&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:25.303 (9.757s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:14:25.303&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:14:31.39 (6.086s)&#xA;&gt; Enter [It] should allow - matching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:425 @ 07/16/23 23:14:31.39&#xA;&lt; Exit [It] should allow - matching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:425 @ 07/16/23 23:14:38.906 (7.55s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:38.906&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:50.983 (12.078s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [TCP] tcp-services should reload after an update in the configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="32.8432535">
+              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:51.107&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:05.828 (14.755s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 07/16/23 23:15:05.828&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 07/16/23 23:15:05.835 (7ms)&#xA;&gt; Enter [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:169 @ 07/16/23 23:15:05.835&#xA;STEP: setting up a first deployment - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:171 @ 07/16/23 23:15:05.835&#xA;STEP: updating the tcp service to a second deployment - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:196 @ 07/16/23 23:15:13.198&#xA;&lt; Exit [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:169 @ 07/16/23 23:15:23.493 (17.658s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:23.493&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:23.916 (423ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] configmap server-snippet should add global server-snippet and drop annotations per admin config" classname="nginx-ingress-controller e2e suite" status="passed" time="45.5397753">
+              <system-err>&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:23.918&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:32.462 (8.579s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 07/16/23 23:15:32.462&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 07/16/23 23:15:36.539 (4.076s)&#xA;&gt; Enter [It] should add global server-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:92 @ 07/16/23 23:15:36.539&#xA;&lt; Exit [It] should add global server-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:92 @ 07/16/23 23:16:08.955 (32.451s)&#xA;&gt; Enter [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:08.955&#xA;&lt; Exit [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:09.389 (434ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not allow - single origin with port and origin without port" classname="nginx-ingress-controller e2e suite" status="passed" time="19.8859877">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:09.392&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:17.757 (8.366s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:16:17.757&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:16:21.842 (4.084s)&#xA;&gt; Enter [It] should not allow - single origin with port and origin without port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:386 @ 07/16/23 23:16:21.842&#xA;&lt; Exit [It] should not allow - single origin with port and origin without port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:386 @ 07/16/23 23:16:28.878 (7.036s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:28.878&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:29.277 (399ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should set cookie with domain" classname="nginx-ingress-controller e2e suite" status="passed" time="22.134782">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:29.279&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:36.677 (7.433s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:16:36.678&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:16:40.761 (4.083s)&#xA;&gt; Enter [It] should set cookie with domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:225 @ 07/16/23 23:16:40.761&#xA;&lt; Exit [It] should set cookie with domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:225 @ 07/16/23 23:16:50.994 (10.233s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:50.994&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:51.379 (385ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] ssl-ciphers Add ssl ciphers" classname="nginx-ingress-controller e2e suite" status="passed" time="18.9356291">
+              <system-err>&gt; Enter [BeforeEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:51.381&#xA;&lt; Exit [BeforeEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:59.709 (8.329s)&#xA;&gt; Enter [It] Add ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_ciphers.go:31 @ 07/16/23 23:16:59.71&#xA;&lt; Exit [It] Add ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_ciphers.go:31 @ 07/16/23 23:17:09.861 (10.185s)&#xA;&gt; Enter [AfterEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:09.861&#xA;&lt; Exit [AfterEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:10.282 (421ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Ingress] [PathType] exact should choose exact location for /exact" classname="nginx-ingress-controller e2e suite" status="passed" time="40.9304922">
+              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:10.283&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:18.723 (8.44s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:33 @ 07/16/23 23:17:18.724&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:33 @ 07/16/23 23:17:22.807 (4.083s)&#xA;&gt; Enter [It] should choose exact location for /exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:37 @ 07/16/23 23:17:22.807&#xA;&lt; Exit [It] should choose exact location for /exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:37 @ 07/16/23 23:17:50.668 (27.896s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:50.668&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:51.179 (511ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] configmap server-snippet should add value of server-snippet setting to all ingress config" classname="nginx-ingress-controller e2e suite" status="passed" time="45.8906599">
+              <system-err>&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:51.181&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:59.818 (8.637s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 07/16/23 23:17:59.819&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 07/16/23 23:18:03.954 (4.169s)&#xA;&gt; Enter [It] should add value of server-snippet setting to all ingress config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:35 @ 07/16/23 23:18:03.954&#xA;&lt; Exit [It] should add value of server-snippet setting to all ingress config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:35 @ 07/16/23 23:18:36.609 (32.69s)&#xA;&gt; Enter [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:36.609&#xA;&lt; Exit [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:37.003 (394ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should enable the log-format-escape-json" classname="nginx-ingress-controller e2e suite" status="passed" time="30.2295655">
+              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:37.005&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:45.497 (8.492s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:18:45.497&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:18:56.635 (11.138s)&#xA;&gt; Enter [It] should enable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:47 @ 07/16/23 23:18:56.635&#xA;&lt; Exit [It] should enable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:47 @ 07/16/23 23:19:06.818 (10.218s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:06.819&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:07.2 (381ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] server-snippet add valid directives to server via server snippet" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3526123">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:07.202&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:15.79 (8.588s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 07/16/23 23:19:15.79&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 07/16/23 23:19:19.867 (4.077s)&#xA;&gt; Enter [It] add valid directives to server via server snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:35 @ 07/16/23 23:19:19.867&#xA;&lt; Exit [It] add valid directives to server via server snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:35 @ 07/16/23 23:19:30.126 (10.259s)&#xA;&gt; Enter [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:30.126&#xA;&lt; Exit [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:30.554 (428ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Ingress] [PathType] prefix checks should return 404 when prefix /aaa does not match request /aaaccc" classname="nginx-ingress-controller e2e suite" status="passed" time="23.302233">
+              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:30.555&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:38.942 (8.421s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:31 @ 07/16/23 23:19:38.942&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:31 @ 07/16/23 23:19:43.029 (4.087s)&#xA;&gt; Enter [It] should return 404 when prefix /aaa does not match request /aaaccc - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:35 @ 07/16/23 23:19:43.029&#xA;&lt; Exit [It] should return 404 when prefix /aaa does not match request /aaaccc - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:35 @ 07/16/23 23:19:53.271 (10.241s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:53.271&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:53.823 (553ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] server-tokens should not exists Server header in the response" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1654251">
+              <system-err>&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:53.836&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:02.051 (8.25s)&#xA;&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 07/16/23 23:20:02.051&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 07/16/23 23:20:06.14 (4.089s)&#xA;&gt; Enter [It] should not exists Server header in the response - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:38 @ 07/16/23 23:20:06.14&#xA;&lt; Exit [It] should not exists Server header in the response - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:38 @ 07/16/23 23:20:23.477 (17.337s)&#xA;&gt; Enter [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:23.477&#xA;&lt; Exit [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:23.967 (489ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Default Backend] custom service uses custom default backend that returns 200 as status code" classname="nginx-ingress-controller e2e suite" status="passed" time="25.4070472">
+              <system-err>&gt; Enter [BeforeEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:23.968&#xA;&lt; Exit [BeforeEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:32.478 (8.544s)&#xA;&gt; Enter [It] uses custom default backend that returns 200 as status code - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/custom_default_backend.go:36 @ 07/16/23 23:20:32.478&#xA;&lt; Exit [It] uses custom default backend that returns 200 as status code - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/custom_default_backend.go:36 @ 07/16/23 23:20:48.821 (16.343s)&#xA;&gt; Enter [AfterEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:48.821&#xA;&lt; Exit [AfterEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:49.341 (520ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should return 403 using auth-tls-match-cn with no matching CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="24.2762821">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:49.348&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:57.865 (8.517s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:20:57.865&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:21:01.925 (4.094s)&#xA;&gt; Enter [It] should return 403 using auth-tls-match-cn with no matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:266 @ 07/16/23 23:21:01.925&#xA;&lt; Exit [It] should return 403 using auth-tls-match-cn with no matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:266 @ 07/16/23 23:21:13.025 (11.101s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:13.025&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:13.59 (565ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName using FQDN with trailing dot" classname="nginx-ingress-controller e2e suite" status="passed" time="20.6145828">
+              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:13.591&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:23.49 (9.898s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName using FQDN with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:217 @ 07/16/23 23:21:23.49&#xA;&lt; Exit [It] should return 200 for service type=ExternalName using FQDN with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:217 @ 07/16/23 23:21:33.747 (10.292s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:33.747&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:34.172 (424ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] proxy-read-timeout should not set invalid proxy read timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="30.8205755">
+              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:34.173&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:43.009 (8.836s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 07/16/23 23:21:43.009&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 07/16/23 23:21:47.1 (4.091s)&#xA;&gt; Enter [It] should not set invalid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:52 @ 07/16/23 23:21:47.1&#xA;&lt; Exit [It] should not set invalid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:52 @ 07/16/23 23:22:04.345 (17.279s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:04.345&#xA;&lt; Exit [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:04.959 (614ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should set cookie with expires" classname="nginx-ingress-controller e2e suite" status="passed" time="23.2029575">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:04.961&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:13.436 (8.476s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:22:13.436&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:22:17.548 (4.111s)&#xA;&gt; Enter [It] should set cookie with expires - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:194 @ 07/16/23 23:22:17.548&#xA;&lt; Exit [It] should set cookie with expires - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:194 @ 07/16/23 23:22:27.746 (10.199s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:27.746&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:28.164 (417ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="23.630663">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:28.165&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:36.999 (8.868s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:36.999&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:41.09 (4.09s)&#xA;&gt; Enter [It] should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:284 @ 07/16/23 23:22:41.09&#xA;&lt; Exit [It] should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:284 @ 07/16/23 23:22:51.266 (10.177s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:51.266&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:51.761 (495ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should not exists opentracing directive" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1947514">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:51.771&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:00.105 (8.333s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:23:00.105&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:23:04.146 (4.075s)&#xA;&gt; Enter [It] should not exists opentracing directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:58 @ 07/16/23 23:23:04.146&#xA;&lt; Exit [It] should not exists opentracing directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:58 @ 07/16/23 23:23:21.518 (17.372s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:21.518&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:21.932 (414ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:23:21.932&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:23:21.932 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should enable opentracing using jaeger with sampler host" classname="nginx-ingress-controller e2e suite" status="passed" time="34.1749552">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:21.935&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:31.384 (9.483s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:23:31.384&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:23:35.475 (4.091s)&#xA;&gt; Enter [It] should enable opentracing using jaeger with sampler host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:184 @ 07/16/23 23:23:35.475&#xA;&lt; Exit [It] should enable opentracing using jaeger with sampler host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:184 @ 07/16/23 23:23:55.524 (20.049s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:55.524&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:56.075 (551ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:23:56.075&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:23:56.075 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Ingress] definition without host should set ingress details variables for ingresses with host without IngressRuleValue, only Backend" classname="nginx-ingress-controller e2e suite" status="passed" time="23.1853069">
+              <system-err>&gt; Enter [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:56.077&#xA;&lt; Exit [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:04.518 (8.476s)&#xA;&gt; Enter [It] should set ingress details variables for ingresses with host without IngressRuleValue, only Backend - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:55 @ 07/16/23 23:24:04.518&#xA;&lt; Exit [It] should set ingress details variables for ingresses with host without IngressRuleValue, only Backend - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:55 @ 07/16/23 23:24:18.775 (14.257s)&#xA;&gt; Enter [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:18.775&#xA;&lt; Exit [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:19.228 (452ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to &#39;&#39; and use fastcgi_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="23.6797553">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:19.229&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:27.5 (8.272s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:24:27.501&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:24:31.562 (4.096s)&#xA;&gt; Enter [It] should set backend protocol to &#39;&#39; and use fastcgi_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:94 @ 07/16/23 23:24:31.562&#xA;&lt; Exit [It] should set backend protocol to &#39;&#39; and use fastcgi_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:94 @ 07/16/23 23:24:42.129 (10.566s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:42.129&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:42.874 (745ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Security] request smuggling should not return body content from error_page" classname="nginx-ingress-controller e2e suite" status="passed" time="35.7837448">
+              <system-err>&gt; Enter [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:42.875&#xA;&lt; Exit [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:51.845 (8.97s)&#xA;&gt; Enter [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:35 @ 07/16/23 23:24:51.845&#xA;&lt; Exit [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:35 @ 07/16/23 23:24:55.921 (4.076s)&#xA;&gt; Enter [It] should not return body content from error_page - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:39 @ 07/16/23 23:24:55.921&#xA;&lt; Exit [It] should not return body content from error_page - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:39 @ 07/16/23 23:25:18.165 (22.279s)&#xA;&gt; Enter [AfterEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:18.165&#xA;&lt; Exit [AfterEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:18.624 (459ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user does not retain cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="34.2596381">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:18.626&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:26.989 (8.37s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:25:26.996&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:25:31.086 (4.091s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 07/16/23 23:25:31.087&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 07/16/23 23:25:52.393 (21.341s)&#xA;&gt; Enter [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:422 @ 07/16/23 23:25:52.393&#xA;&lt; Exit [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:422 @ 07/16/23 23:25:52.403 (10ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:52.403&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:52.851 (448ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured picks up a non-certificate only change" classname="nginx-ingress-controller e2e suite" status="passed" time="44.2339168">
+              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:52.853&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:01.147 (8.328s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:26:01.147&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:26:05.234 (4.087s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:26:05.234&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 07/16/23 23:26:22.995&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 07/16/23 23:26:31.133&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:26:31.179 (25.98s)&#xA;&gt; Enter [It] picks up a non-certificate only change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:218 @ 07/16/23 23:26:31.179&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:229 @ 07/16/23 23:26:36.206&#xA;&lt; Exit [It] picks up a non-certificate only change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:218 @ 07/16/23 23:26:36.237 (5.058s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:36.237&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:37.018 (782ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-stream-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="30.4588905">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:37.021&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:45.616 (8.596s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 07/16/23 23:26:45.616&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 07/16/23 23:26:49.683 (4.066s)&#xA;&gt; Enter [It] disable-stream-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:71 @ 07/16/23 23:26:49.683&#xA;&lt; Exit [It] disable-stream-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:71 @ 07/16/23 23:27:06.949 (17.301s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:06.949&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:07.445 (496ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-catch-all should delete Ingress updated to catch-all" classname="nginx-ingress-controller e2e suite" status="passed" time="38.3532264">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:07.447&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:15.777 (8.33s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:27:15.778&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:27:30.909 (15.132s)&#xA;&gt; Enter [It] should delete Ingress updated to catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:81 @ 07/16/23 23:27:30.909&#xA;&lt; Exit [It] should delete Ingress updated to catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:81 @ 07/16/23 23:27:45.291 (14.415s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:45.291&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:45.766 (475ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1k" classname="nginx-ingress-controller e2e suite" status="passed" time="23.8919238">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:45.767&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:54.396 (8.629s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:27:54.396&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:27:58.524 (4.127s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1k - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:79 @ 07/16/23 23:27:58.524&#xA;&lt; Exit [It] should set client_body_buffer_size to 1k - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:79 @ 07/16/23 23:28:08.725 (10.235s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:08.725&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:09.625 (900ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should work with server-alias annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="22.7231201">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:09.63&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:17.428 (7.798s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:28:17.428&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:28:21.486 (4.058s)&#xA;&gt; Enter [It] should work with server-alias annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:372 @ 07/16/23 23:28:21.486&#xA;&lt; Exit [It] should work with server-alias annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:372 @ 07/16/23 23:28:31.88 (10.429s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:31.88&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:32.319 (438ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Default Backend] SSL should return a self generated SSL certificate" classname="nginx-ingress-controller e2e suite" status="passed" time="15.0163295">
+              <system-err>&gt; Enter [BeforeEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:32.324&#xA;&lt; Exit [BeforeEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:41.907 (9.584s)&#xA;&gt; Enter [It] should return a self generated SSL certificate - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:29 @ 07/16/23 23:28:41.907&#xA;STEP: checking SSL Certificate using the NGINX IP address - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:30 @ 07/16/23 23:28:41.908&#xA;STEP: checking SSL Certificate using the NGINX catch all server - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:45 @ 07/16/23 23:28:46.925&#xA;&lt; Exit [It] should return a self generated SSL certificate - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:29 @ 07/16/23 23:28:46.943 (5.036s)&#xA;&gt; Enter [AfterEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:46.943&#xA;&lt; Exit [AfterEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:47.34 (397ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] server-tokens should exists Server header in the response when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="30.4229921">
+              <system-err>&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:47.341&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:55.857 (8.516s)&#xA;&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 07/16/23 23:28:55.857&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 07/16/23 23:28:59.917 (4.06s)&#xA;&gt; Enter [It] should exists Server header in the response when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:50 @ 07/16/23 23:28:59.917&#xA;&lt; Exit [It] should exists Server header in the response when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:50 @ 07/16/23 23:29:17.172 (17.289s)&#xA;&gt; Enter [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:17.172&#xA;&lt; Exit [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:17.73 (558ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] modsecurity-snippet should add value of modsecurity-snippet setting to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="20.1582254">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:17.734&#xA;&lt; Exit [BeforeEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:26.783 (9.049s)&#xA;&gt; Enter [It] should add value of modsecurity-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/modsecurity/modsecurity_snippet.go:30 @ 07/16/23 23:29:26.783&#xA;&lt; Exit [It] should add value of modsecurity-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/modsecurity/modsecurity_snippet.go:30 @ 07/16/23 23:29:37.377 (10.63s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:37.377&#xA;&lt; Exit [AfterEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:37.857 (480ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] enable-access-log enable-rewrite-log set rewrite_log on" classname="nginx-ingress-controller e2e suite" status="passed" time="22.3586037">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:37.859&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:45.315 (7.456s)&#xA;&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 07/16/23 23:29:45.315&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 07/16/23 23:29:49.393 (4.078s)&#xA;&gt; Enter [It] set rewrite_log on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:49 @ 07/16/23 23:29:49.393&#xA;&lt; Exit [It] set rewrite_log on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:49 @ 07/16/23 23:29:59.716 (10.323s)&#xA;&gt; Enter [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:59.716&#xA;&lt; Exit [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:00.218 (501ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol - GRPC should return OK for service with backend protocol GRPCS" classname="nginx-ingress-controller e2e suite" status="passed" time="23.5406261">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:00.22&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:08.82 (8.64s)&#xA;&gt; Enter [It] should return OK for service with backend protocol GRPCS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:199 @ 07/16/23 23:30:08.82&#xA;&lt; Exit [It] should return OK for service with backend protocol GRPCS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:199 @ 07/16/23 23:30:23.242 (14.421s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:23.242&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:23.721 (479ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] stream-snippet should add stream-snippet and drop annotations per admin config" classname="nginx-ingress-controller e2e suite" status="passed" time="42.9605084">
+              <system-err>&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:23.724&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:32.155 (8.497s)&#xA;&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 07/16/23 23:30:32.155&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 07/16/23 23:30:36.238 (4.083s)&#xA;&gt; Enter [It] should add stream-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:85 @ 07/16/23 23:30:36.238&#xA;&lt; Exit [It] should add stream-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:85 @ 07/16/23 23:31:06.15 (29.95s)&#xA;&gt; Enter [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:06.15&#xA;&lt; Exit [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:06.581 (431ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should set sticky cookie without host" classname="nginx-ingress-controller e2e suite" status="passed" time="23.2996416">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:06.583&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:15.201 (8.619s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:31:15.201&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:31:19.262 (4.061s)&#xA;&gt; Enter [It] should set sticky cookie without host - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:352 @ 07/16/23 23:31:19.262&#xA;&lt; Exit [It] should set sticky cookie without host - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:352 @ 07/16/23 23:31:29.469 (10.206s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:29.469&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:29.882 (413ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] configuration-snippet set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34;" classname="nginx-ingress-controller e2e suite" status="passed" time="24.9538328">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:29.885&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:40.12 (10.27s)&#xA;&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 07/16/23 23:31:40.12&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 07/16/23 23:31:44.185 (4.066s)&#xA;&gt; Enter [It] set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:35 @ 07/16/23 23:31:44.185&#xA;&lt; Exit [It] set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:35 @ 07/16/23 23:31:54.361 (10.176s)&#xA;&gt; Enter [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:54.361&#xA;&lt; Exit [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:54.803 (442ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should enable opentracing using jaeger" classname="nginx-ingress-controller e2e suite" status="passed" time="32.7940916">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:54.805&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:03.07 (8.3s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:32:03.07&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:32:07.143 (4.072s)&#xA;&gt; Enter [It] should enable opentracing using jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:172 @ 07/16/23 23:32:07.143&#xA;&lt; Exit [It] should enable opentracing using jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:172 @ 07/16/23 23:32:27.197 (20.054s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:27.197&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:27.565 (368ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:32:27.565&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:32:27.565 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to &#39;&#39; and use ajp_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="23.2995558">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:27.566&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:35.926 (8.394s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:32:35.926&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:32:40.026 (4.1s)&#xA;&gt; Enter [It] should set backend protocol to &#39;&#39; and use ajp_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:109 @ 07/16/23 23:32:40.026&#xA;&lt; Exit [It] should set backend protocol to &#39;&#39; and use ajp_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:109 @ 07/16/23 23:32:50.274 (10.248s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:50.274&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:50.832 (558ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] use-forwarded-headers should trust X-Forwarded headers when setting is true" classname="nginx-ingress-controller e2e suite" status="passed" time="37.3268827">
+              <system-err>&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:50.833&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:59.336 (8.503s)&#xA;&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 07/16/23 23:32:59.336&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 07/16/23 23:33:10.405 (11.103s)&#xA;&gt; Enter [It] should trust X-Forwarded headers when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:40 @ 07/16/23 23:33:10.405&#xA;STEP: ensuring single values are parsed correctly - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:54 @ 07/16/23 23:33:27.663&#xA;STEP: ensuring that first entry in X-Forwarded-Host is used as the best host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:75 @ 07/16/23 23:33:27.674&#xA;&lt; Exit [It] should trust X-Forwarded headers when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:40 @ 07/16/23 23:33:27.683 (17.278s)&#xA;&gt; Enter [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:27.683&#xA;&lt; Exit [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:28.126 (443ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Endpointslices] long service name should return 200 when service name has max allowed number of characters 63" classname="nginx-ingress-controller e2e suite" status="passed" time="22.090578">
+              <system-err>&gt; Enter [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:28.128&#xA;&lt; Exit [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:35.418 (7.324s)&#xA;&gt; Enter [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:34 @ 07/16/23 23:33:35.418&#xA;&lt; Exit [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:34 @ 07/16/23 23:33:39.517 (4.099s)&#xA;&gt; Enter [It] should return 200 when service name has max allowed number of characters 63 - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:38 @ 07/16/23 23:33:39.517&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:48 @ 07/16/23 23:33:49.731&#xA;&lt; Exit [It] should return 200 when service name has max allowed number of characters 63 - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:38 @ 07/16/23 23:33:49.739 (10.222s)&#xA;&gt; Enter [AfterEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:49.739&#xA;&lt; Exit [AfterEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:50.184 (444ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES" classname="nginx-ingress-controller e2e suite" status="passed" time="23.7545107">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:50.185&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:58.583 (8.398s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:33:58.583&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:34:02.597 (4.049s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:94 @ 07/16/23 23:34:02.598&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:94 @ 07/16/23 23:34:13.497 (10.899s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:13.497&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:13.905 (409ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] main-snippet should add value of main-snippet setting to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="19.0534585">
+              <system-err>&gt; Enter [BeforeEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:13.907&#xA;&lt; Exit [BeforeEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:22.216 (8.309s)&#xA;&gt; Enter [It] should add value of main-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/main_snippet.go:31 @ 07/16/23 23:34:22.216&#xA;&lt; Exit [It] should add value of main-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/main_snippet.go:31 @ 07/16/23 23:34:32.368 (10.187s)&#xA;&gt; Enter [AfterEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:32.368&#xA;&lt; Exit [AfterEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:32.925 (557ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header overriding what&#39;s set from the upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="31.8430583">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:32.927&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:41.551 (8.624s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:34:41.551&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:34:47.637 (6.086s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:34:47.637&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:34:57.01 (9.372s)&#xA;&gt; Enter [It] overriding what&#39;s set from the upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:166 @ 07/16/23 23:34:57.01&#xA;&lt; Exit [It] overriding what&#39;s set from the upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:166 @ 07/16/23 23:35:04.275 (7.3s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:04.275&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:04.736 (461ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should disable modsecurity" classname="nginx-ingress-controller e2e suite" status="passed" time="24.4810909">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:04.742&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:14.56 (9.817s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:35:14.56&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:35:18.617 (4.057s)&#xA;&gt; Enter [It] should disable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:74 @ 07/16/23 23:35:18.617&#xA;&lt; Exit [It] should disable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:74 @ 07/16/23 23:35:28.832 (10.214s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:28.832&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:29.223 (392ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-tls-* should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2" classname="nginx-ingress-controller e2e suite" status="passed" time="24.8904639">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:29.225&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:38.691 (9.501s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:35:38.692&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:35:42.8 (4.108s)&#xA;&gt; Enter [It] should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:84 @ 07/16/23 23:35:42.8&#xA;&lt; Exit [It] should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:84 @ 07/16/23 23:35:53.62 (10.82s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:53.62&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:54.081 (461ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should change cookie name on ingress definition change" classname="nginx-ingress-controller e2e suite" status="passed" time="31.6513169">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:54.084&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:03.891 (9.841s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:36:03.891&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:36:09.979 (6.088s)&#xA;&gt; Enter [It] should change cookie name on ingress definition change - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:64 @ 07/16/23 23:36:09.979&#xA;&lt; Exit [It] should change cookie name on ingress definition change - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:64 @ 07/16/23 23:36:25.241 (15.261s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:25.241&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:25.701 (460ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should enable cors" classname="nginx-ingress-controller e2e suite" status="passed" time="22.7059893">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:25.703&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:33.605 (7.936s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:36:33.605&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:36:37.682 (4.077s)&#xA;&gt; Enter [It] should enable cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:35 @ 07/16/23 23:36:37.682&#xA;&lt; Exit [It] should enable cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:35 @ 07/16/23 23:36:47.901 (10.219s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:47.901&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:48.375 (474ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-protocols" classname="nginx-ingress-controller e2e suite" status="passed" time="26.3214044">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:48.376&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:56.928 (8.552s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:36:56.928&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:37:03.013 (6.119s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-protocols - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:122 @ 07/16/23 23:37:03.013&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-protocols - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:122 @ 07/16/23 23:37:14.194 (11.181s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:14.194&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:14.663 (469ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1K" classname="nginx-ingress-controller e2e suite" status="passed" time="23.0879898">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:14.665&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:22.951 (8.286s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:37:22.951&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:37:27.087 (4.136s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1K - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:57 @ 07/16/23 23:37:27.087&#xA;&lt; Exit [It] should set client_body_buffer_size to 1K - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:57 @ 07/16/23 23:37:37.286 (10.233s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:37.286&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:37.719 (433ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with snippet" classname="nginx-ingress-controller e2e suite" status="passed" time="24.5298388">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:37.721&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:47.137 (9.416s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:37:47.137&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:37:51.362 (4.225s)&#xA;&gt; Enter [It] should enable modsecurity with snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:91 @ 07/16/23 23:37:51.362&#xA;&lt; Exit [It] should enable modsecurity with snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:91 @ 07/16/23 23:38:01.535 (10.206s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:01.535&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:02.216 (682ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] proxy-connect-timeout should not set invalid proxy timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="29.3663941">
+              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:02.219&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:09.728 (7.509s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 07/16/23 23:38:09.729&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 07/16/23 23:38:13.797 (4.069s)&#xA;&gt; Enter [It] should not set invalid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:52 @ 07/16/23 23:38:13.797&#xA;&lt; Exit [It] should not set invalid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:52 @ 07/16/23 23:38:31.175 (17.412s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:31.175&#xA;&lt; Exit [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:31.552 (376ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is set with HTTP/2" classname="nginx-ingress-controller e2e suite" status="passed" time="36.6293011">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:31.553&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:40.919 (9.366s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:38:40.919&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:38:46.993 (6.074s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:38:46.993&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:39:03.307 (16.348s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is set with HTTP/2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:609 @ 07/16/23 23:39:03.307&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is set with HTTP/2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:609 @ 07/16/23 23:39:07.472 (4.165s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:07.472&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:08.148 (676ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name should set the path to /something on the generated cookie" classname="nginx-ingress-controller e2e suite" status="passed" time="25.1126173">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:08.153&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:16.57 (8.417s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:39:16.57&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:39:22.657 (6.087s)&#xA;&gt; Enter [It] should set the path to /something on the generated cookie - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:99 @ 07/16/23 23:39:22.657&#xA;&lt; Exit [It] should set the path to /something on the generated cookie - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:99 @ 07/16/23 23:39:32.838 (10.215s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:32.838&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:33.231 (394ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) ports or X-Forwarded-Host check during HTTP tp HTTPS redirection should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection" classname="nginx-ingress-controller e2e suite" status="passed" time="30.2725692">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:33.235&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:40.596 (7.361s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:39:40.596&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:39:44.718 (4.122s)&#xA;&gt; Enter [It] should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:205 @ 07/16/23 23:39:44.718&#xA;Jul 16 23:40:00.953: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [It] should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:205 @ 07/16/23 23:40:02.967 (18.283s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:02.967&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:03.473 (506ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Ingress] definition without host should set ingress details variables for ingresses without a host" classname="nginx-ingress-controller e2e suite" status="passed" time="25.5938495">
+              <system-err>&gt; Enter [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:03.475&#xA;&lt; Exit [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:14.008 (10.533s)&#xA;&gt; Enter [It] should set ingress details variables for ingresses without a host - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:34 @ 07/16/23 23:40:14.008&#xA;&lt; Exit [It] should set ingress details variables for ingresses without a host - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:34 @ 07/16/23 23:40:28.273 (14.265s)&#xA;&gt; Enter [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:28.274&#xA;&lt; Exit [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:29.069 (795ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not allow - unmatching origin with wildcard origin (2 subdomains)" classname="nginx-ingress-controller e2e suite" status="passed" time="19.1383321">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:29.07&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:36.48 (7.444s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:40:36.48&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:40:40.607 (4.127s)&#xA;&gt; Enter [It] should not allow - unmatching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:468 @ 07/16/23 23:40:40.607&#xA;&lt; Exit [It] should not allow - unmatching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:468 @ 07/16/23 23:40:47.651 (7.043s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:47.651&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:48.174 (524ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Dynamic $proxy_host should exist a proxy_host using the upstream-vhost annotation value" classname="nginx-ingress-controller e2e suite" status="passed" time="23.4757701">
+              <system-err>&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:48.176&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:56.86 (8.684s)&#xA;&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 07/16/23 23:40:56.86&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 07/16/23 23:41:00.951 (4.125s)&#xA;&gt; Enter [It] should exist a proxy_host using the upstream-vhost annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:57 @ 07/16/23 23:41:00.951&#xA;&lt; Exit [It] should exist a proxy_host using the upstream-vhost annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:57 @ 07/16/23 23:41:11.126 (10.175s)&#xA;&gt; Enter [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:11.126&#xA;&lt; Exit [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:11.617 (491ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] connection-proxy-header set connection header to keep-alive" classname="nginx-ingress-controller e2e suite" status="passed" time="21.2601189">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:11.624&#xA;&lt; Exit [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:20.141 (8.516s)&#xA;&gt; Enter [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:32 @ 07/16/23 23:41:20.141&#xA;&lt; Exit [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:32 @ 07/16/23 23:41:22.214 (2.074s)&#xA;&gt; Enter [It] set connection header to keep-alive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:36 @ 07/16/23 23:41:22.214&#xA;&lt; Exit [It] set connection header to keep-alive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:36 @ 07/16/23 23:41:32.382 (10.202s)&#xA;&gt; Enter [AfterEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:32.382&#xA;&lt; Exit [AfterEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:32.85 (468ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] from-to-www-redirect should redirect from www HTTPS to HTTPS" classname="nginx-ingress-controller e2e suite" status="passed" time="27.3605633">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:32.854&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:40.227 (7.374s)&#xA;&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 07/16/23 23:41:40.227&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 07/16/23 23:41:44.297 (4.07s)&#xA;&gt; Enter [It] should redirect from www HTTPS to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:64 @ 07/16/23 23:41:44.297&#xA;STEP: setting up server for redirect from www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:65 @ 07/16/23 23:41:44.297&#xA;STEP: sending request to www should redirect to domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:91 @ 07/16/23 23:41:59.768&#xA;STEP: sending request to domain should not redirect to www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:103 @ 07/16/23 23:41:59.784&#xA;&lt; Exit [It] should redirect from www HTTPS to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:64 @ 07/16/23 23:41:59.805 (15.508s)&#xA;&gt; Enter [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:59.805&#xA;&lt; Exit [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:42:00.18 (409ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should allow - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="40.8055021">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:34.241&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:48.51 (14.268s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:07:48.51&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:08:06.784 (18.308s)&#xA;&gt; Enter [It] should allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:169 @ 07/16/23 23:08:06.784&#xA;&lt; Exit [It] should allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:169 @ 07/16/23 23:08:13.874 (7.09s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:13.874&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:15.012 (1.138s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should turn off proxy-request-buffering" classname="nginx-ingress-controller e2e suite" status="passed" time="31.5103211">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:15.026&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:31.711 (16.684s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:08:31.711&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:08:35.749 (4.073s)&#xA;&gt; Enter [It] should turn off proxy-request-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:179 @ 07/16/23 23:08:35.749&#xA;&lt; Exit [It] should turn off proxy-request-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:179 @ 07/16/23 23:08:45.914 (10.164s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:45.914&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:46.502 (588ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure Opentelemetry should exists opentelemetry_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="35.2157044">
+              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:46.507&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:58.795 (12.288s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:08:58.795&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:09:02.852 (4.092s)&#xA;&gt; Enter [It] should exists opentelemetry_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:104 @ 07/16/23 23:09:02.852&#xA;&lt; Exit [It] should exists opentelemetry_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:104 @ 07/16/23 23:09:20.835 (17.983s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:20.835&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:21.688 (853ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:09:21.688&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:09:21.688 (0s)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting includeSubDomains parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="33.9353808">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:21.694&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:29.368 (7.675s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:09:29.369&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:09:33.396 (4.061s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:09:33.396&#xA;Jul 16 23:09:42.839: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:09:44.841 (11.445s)&#xA;&gt; Enter [It] setting includeSubDomains parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:127 @ 07/16/23 23:09:44.841&#xA;&lt; Exit [It] setting includeSubDomains parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:127 @ 07/16/23 23:09:55.117 (10.276s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:55.117&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:55.595 (478ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should deny login for different servers" classname="nginx-ingress-controller e2e suite" status="passed" time="141.4069732">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:55.621&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:03.902 (8.315s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:10:03.902&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:10:07.984 (4.082s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:10:07.984&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:10:23.092&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:10:33.264&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:10:43.654&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:10:53.881&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:11:09.227 (1m1.333s)&#xA;&gt; Enter [It] should deny login for different servers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:820 @ 07/16/23 23:11:09.227&#xA;STEP: logging into server thisHost /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:821 @ 07/16/23 23:11:09.227&#xA;STEP: receiving an internal server error without cache on thisHost location /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:833 @ 07/16/23 23:11:16.27&#xA;&lt; Exit [It] should deny login for different servers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:820 @ 07/16/23 23:12:16.192 (1m7.058s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:16.192&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:16.811 (619ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set the request count to upstream server through one keep alive connection" classname="nginx-ingress-controller e2e suite" status="passed" time="30.936815">
+              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:16.817&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:25.674 (8.857s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:12:25.674&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:12:36.81 (11.17s)&#xA;&gt; Enter [It] should set the request count to upstream server through one keep alive connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:86 @ 07/16/23 23:12:36.81&#xA;&lt; Exit [It] should set the request count to upstream server through one keep alive connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:86 @ 07/16/23 23:12:47.088 (10.278s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:47.088&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:47.718 (631ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the keep alive should set keepalive_timeout" classname="nginx-ingress-controller e2e suite" status="passed" time="31.1564128">
+              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:47.72&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:56.863 (9.143s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:12:56.863&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:13:07.932 (11.103s)&#xA;&gt; Enter [It] should set keepalive_timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:40 @ 07/16/23 23:13:07.932&#xA;&lt; Exit [It] should set keepalive_timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:40 @ 07/16/23 23:13:18.203 (10.272s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:18.203&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:18.842 (639ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] enable-multi-accept should be enabled when set to true" classname="nginx-ingress-controller e2e suite" status="passed" time="20.7630135">
+              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:18.844&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:28.621 (9.777s)&#xA;&gt; Enter [It] should be enabled when set to true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:39 @ 07/16/23 23:13:28.621&#xA;&lt; Exit [It] should be enabled when set to true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:39 @ 07/16/23 23:13:39.052 (10.465s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:39.052&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:39.573 (521ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] ingress-class With default ingress class config should serve Ingress when class is updated between annotation and ingressClassName" classname="nginx-ingress-controller e2e suite" status="passed" time="38.8464615">
+              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:39.576&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:47.884 (8.308s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:13:47.884&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:13:51.979 (4.095s)&#xA;&gt; Enter [It] should serve Ingress when class is updated between annotation and ingressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:323 @ 07/16/23 23:13:51.979&#xA;&lt; Exit [It] should serve Ingress when class is updated between annotation and ingressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:323 @ 07/16/23 23:14:17.414 (25.47s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:17.414&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:18.388 (973ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* when canary is created should response with a 200 status from the mainline upstream when requests are made to the mainline ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="39.6534635">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:18.39&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:27.699 (9.309s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:14:27.699&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:14:34.284 (6.619s)&#xA;&gt; Enter [It] should response with a 200 status from the mainline upstream when requests are made to the mainline ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:48 @ 07/16/23 23:14:34.284&#xA;&lt; Exit [It] should response with a 200 status from the mainline upstream when requests are made to the mainline ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:48 @ 07/16/23 23:14:57.094 (22.81s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:57.094&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:58.009 (914ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should use correct longest path match" classname="nginx-ingress-controller e2e suite" status="passed" time="38.056706">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:58.012&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:08.991 (11.014s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:15:08.991&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:15:15.072 (6.08s)&#xA;&gt; Enter [It] should use correct longest path match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:66 @ 07/16/23 23:15:15.072&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:69 @ 07/16/23 23:15:15.072&#xA;STEP: making a request to the non-rewritten location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:78 @ 07/16/23 23:15:25.351&#xA;STEP: creating an ingress definition with the rewrite-target annotation set on the &#34;/&#34; location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:88 @ 07/16/23 23:15:25.361&#xA;STEP: making a second request to the non-rewritten location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:102 @ 07/16/23 23:15:35.543&#xA;&lt; Exit [It] should use correct longest path match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:66 @ 07/16/23 23:15:35.551 (20.514s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:35.551&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:36 (449ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] x-forwarded-prefix should set the X-Forwarded-Prefix to the annotation value" classname="nginx-ingress-controller e2e suite" status="passed" time="25.22843">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:36.002&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:44.55 (8.548s)&#xA;&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 07/16/23 23:15:44.55&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 07/16/23 23:15:50.604 (6.055s)&#xA;&gt; Enter [It] should set the X-Forwarded-Prefix to the annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:35 @ 07/16/23 23:15:50.604&#xA;&lt; Exit [It] should set the X-Forwarded-Prefix to the annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:35 @ 07/16/23 23:16:00.832 (10.227s)&#xA;&gt; Enter [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:00.832&#xA;&lt; Exit [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:01.23 (398ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [SSL] secret update should not appear references to secret updates not used in ingress rules" classname="nginx-ingress-controller e2e suite" status="passed" time="36.6225179">
+              <system-err>&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:01.232&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:09.619 (8.421s)&#xA;&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 07/16/23 23:16:09.619&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 07/16/23 23:16:13.742 (4.123s)&#xA;&gt; Enter [It] should not appear references to secret updates not used in ingress rules - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:40 @ 07/16/23 23:16:13.742&#xA;&lt; Exit [It] should not appear references to secret updates not used in ingress rules - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:40 @ 07/16/23 23:16:37.172 (23.465s)&#xA;&gt; Enter [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:37.172&#xA;&lt; Exit [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:37.786 (614ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should set snippet when global external auth is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="58.0479243">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:37.787&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:46.283 (8.495s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:16:46.283&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:16:54.442 (8.159s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:16:54.442&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:16:54.442&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:17:04.664&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:17:15.032&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:17:25.212 (30.804s)&#xA;&gt; Enter [It] should set snippet when global external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:250 @ 07/16/23 23:17:25.212&#xA;STEP: Adding a global-auth-snippet to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:254 @ 07/16/23 23:17:25.212&#xA;&lt; Exit [It] should set snippet when global external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:250 @ 07/16/23 23:17:35.375 (10.198s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:35.375&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:35.767 (391ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] cors-* should not allow - portless origin with wildcard origin" classname="nginx-ingress-controller e2e suite" status="passed" time="20.021794">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:35.769&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:44.223 (8.454s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:17:44.223&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:17:48.3 (4.077s)&#xA;&gt; Enter [It] should not allow - portless origin with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:515 @ 07/16/23 23:17:48.3&#xA;&lt; Exit [It] should not allow - portless origin with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:515 @ 07/16/23 23:17:55.341 (7.041s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:55.341&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:55.791 (449ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] affinity session-cookie-name does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend" classname="nginx-ingress-controller e2e suite" status="passed" time="23.1537606">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:55.792&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:04.137 (8.379s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:18:04.137&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:18:08.248 (4.112s)&#xA;&gt; Enter [It] does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:121 @ 07/16/23 23:18:08.249&#xA;&lt; Exit [It] does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:121 @ 07/16/23 23:18:18.49 (10.241s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:18.49&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:18.911 (422ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] satisfy should allow multiple auth with satisfy any" classname="nginx-ingress-controller e2e suite" status="passed" time="29.3125471">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:18.912&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:27.287 (8.374s)&#xA;&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 07/16/23 23:18:27.287&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 07/16/23 23:18:31.349 (4.062s)&#xA;&gt; Enter [It] should allow multiple auth with satisfy any - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:84 @ 07/16/23 23:18:31.349&#xA;&lt; Exit [It] should allow multiple auth with satisfy any - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:84 @ 07/16/23 23:18:47.764 (16.45s)&#xA;&gt; Enter [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:47.764&#xA;&lt; Exit [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:48.191 (427ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass" classname="nginx-ingress-controller e2e suite" status="passed" time="38.4002606">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:48.193&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:56.623 (8.43s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:18:56.623&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:19:00.738 (4.115s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:133 @ 07/16/23 23:19:00.738&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:133 @ 07/16/23 23:19:26.161 (25.457s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:26.161&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:26.559 (398ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Dynamic $proxy_host should exist a proxy_host" classname="nginx-ingress-controller e2e suite" status="passed" time="23.2717891">
+              <system-err>&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:26.564&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:35.081 (8.55s)&#xA;&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 07/16/23 23:19:35.081&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 07/16/23 23:19:39.133 (4.052s)&#xA;&gt; Enter [It] should exist a proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:36 @ 07/16/23 23:19:39.133&#xA;&lt; Exit [It] should exist a proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:36 @ 07/16/23 23:19:49.376 (10.244s)&#xA;&gt; Enter [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:49.376&#xA;&lt; Exit [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:49.802 (425ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [SSL] [Flag] default-ssl-certificate uses default ssl certificate for catch-all ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="36.4974907">
+              <system-err>&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:49.804&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:58.14 (8.336s)&#xA;&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 07/16/23 23:19:58.14&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 07/16/23 23:20:13.506 (15.401s)&#xA;&gt; Enter [It] uses default ssl certificate for catch-all ingress - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:64 @ 07/16/23 23:20:13.506&#xA;STEP: making sure new ingress is deployed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:68 @ 07/16/23 23:20:20.544&#xA;STEP: making sure new ingress is responding - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:74 @ 07/16/23 23:20:23.704&#xA;STEP: making sure the configured default ssl certificate is being used - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:76 @ 07/16/23 23:20:23.704&#xA;&lt; Exit [It] uses default ssl certificate for catch-all ingress - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:64 @ 07/16/23 23:20:25.721 (12.215s)&#xA;&gt; Enter [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:25.721&#xA;&lt; Exit [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:26.267 (546ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* with invalid auth-url should deny whole location should add error to the config" classname="nginx-ingress-controller e2e suite" status="passed" time="26.3440155">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:26.269&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:34.686 (8.452s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:20:34.686&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:20:38.757 (4.07s)&#xA;&gt; Enter [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 07/16/23 23:20:38.757&#xA;&lt; Exit [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 07/16/23 23:20:48.932 (10.175s)&#xA;&gt; Enter [It] should add error to the config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:887 @ 07/16/23 23:20:48.932&#xA;&lt; Exit [It] should add error to the config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:887 @ 07/16/23 23:20:52.115 (3.183s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:52.115&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:52.579 (463ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials" classname="nginx-ingress-controller e2e suite" status="passed" time="24.1174672">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:52.58&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:00.264 (7.684s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:00.264&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:04.298 (4.069s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:116 @ 07/16/23 23:21:04.298&#xA;&lt; Exit [It] should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:116 @ 07/16/23 23:21:15.98 (11.682s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:15.98&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:16.663 (683ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="26.1847335">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:16.666&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:26.922 (10.256s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:26.922&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:30.978 (4.056s)&#xA;&gt; Enter [It] should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:144 @ 07/16/23 23:21:30.978&#xA;&lt; Exit [It] should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:144 @ 07/16/23 23:21:42.285 (11.341s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:42.285&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:42.816 (531ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting preload parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="34.6399454">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:42.818&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:51.43 (8.612s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:21:51.43&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:21:55.497 (4.067s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:21:55.497&#xA;Jul 16 23:22:04.729: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:22:06.734 (11.271s)&#xA;&gt; Enter [It] setting preload parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:146 @ 07/16/23 23:22:06.734&#xA;&lt; Exit [It] setting preload parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:146 @ 07/16/23 23:22:16.936 (10.203s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:16.937&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:17.423 (487ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user does not retain cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="45.3711967">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:17.424&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:25.824 (8.4s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:22:25.824&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:22:33.95 (8.16s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 07/16/23 23:22:33.95&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 07/16/23 23:23:02.307 (28.392s)&#xA;&gt; Enter [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:337 @ 07/16/23 23:23:02.308&#xA;&lt; Exit [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:337 @ 07/16/23 23:23:02.317 (10ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:02.317&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:02.727 (409ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] canary-* canary affinity behavior always routes traffic to canary if first request was affinitized to canary (default behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="40.7051869">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:02.729&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:11.096 (8.368s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:23:11.097&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:23:17.255 (6.159s)&#xA;&gt; Enter [It] always routes traffic to canary if first request was affinitized to canary (default behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:943 @ 07/16/23 23:23:17.255&#xA;&lt; Exit [It] always routes traffic to canary if first request was affinitized to canary (default behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:943 @ 07/16/23 23:23:42.874 (25.653s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:42.874&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:43.4 (525ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="52.2325148">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:43.401&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:52.034 (8.633s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:23:52.034&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:24:00.279 (8.245s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:24:00.279&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:24:00.279&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:24:10.446&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:24:20.663&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:24:30.894 (30.65s)&#xA;&gt; Enter [It] should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:126 @ 07/16/23 23:24:30.894&#xA;STEP: Adding an ingress rule for /bar with annotation enable-global-auth = false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:128 @ 07/16/23 23:24:30.894&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:140 @ 07/16/23 23:24:35.071&#xA;STEP: Sending a request to whitelisted service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:147 @ 07/16/23 23:24:35.079&#xA;&lt; Exit [It] should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:126 @ 07/16/23 23:24:35.086 (4.226s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:35.086&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:35.565 (479ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] annotation-global-rate-limit generates correct configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="47.7139774">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:35.566&#xA;&lt; Exit [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:44.981 (9.415s)&#xA;&gt; Enter [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:34 @ 07/16/23 23:24:44.981&#xA;&lt; Exit [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:34 @ 07/16/23 23:24:49.116 (4.135s)&#xA;&gt; Enter [It] generates correct configuration - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:38 @ 07/16/23 23:24:49.116&#xA;STEP: regenerating the correct configuration after update - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:65 @ 07/16/23 23:25:11.373&#xA;&lt; Exit [It] generates correct configuration - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:38 @ 07/16/23 23:25:22.684 (33.602s)&#xA;&gt; Enter [AfterEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:22.684&#xA;&lt; Exit [AfterEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:23.246 (562ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] brotli should only compress responses that meet the `brotli-min-length` condition" classname="nginx-ingress-controller e2e suite" status="passed" time="44.3218287">
+              <system-err>&gt; Enter [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:23.247&#xA;&lt; Exit [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:31.61 (8.398s)&#xA;&gt; Enter [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:35 @ 07/16/23 23:25:31.61&#xA;&lt; Exit [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:35 @ 07/16/23 23:25:35.714 (4.104s)&#xA;&gt; Enter [It] should only compress responses that meet the `brotli-min-length` condition - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:39 @ 07/16/23 23:25:35.715&#xA;&lt; Exit [It] should only compress responses that meet the `brotli-min-length` condition - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:39 @ 07/16/23 23:26:07.011 (31.33s)&#xA;&gt; Enter [AfterEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:07.011&#xA;&lt; Exit [AfterEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:07.5 (489ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] preserve-trailing-slash should allow preservation of trailing slashes" classname="nginx-ingress-controller e2e suite" status="passed" time="20.446374">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:07.503&#xA;&lt; Exit [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:16.195 (8.692s)&#xA;&gt; Enter [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:30 @ 07/16/23 23:26:16.195&#xA;&lt; Exit [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:30 @ 07/16/23 23:26:20.306 (4.111s)&#xA;&gt; Enter [It] should allow preservation of trailing slashes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:34 @ 07/16/23 23:26:20.306&#xA;&lt; Exit [It] should allow preservation of trailing slashes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:34 @ 07/16/23 23:26:27.349 (7.044s)&#xA;&gt; Enter [AfterEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:27.349&#xA;&lt; Exit [AfterEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:27.949 (600ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with snippet and block requests" classname="nginx-ingress-controller e2e suite" status="passed" time="35.6442115">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:27.952&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:36.662 (8.744s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:26:36.662&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:26:40.824 (4.163s)&#xA;&gt; Enter [It] should enable modsecurity with snippet and block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:153 @ 07/16/23 23:26:40.824&#xA;&lt; Exit [It] should enable modsecurity with snippet and block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:153 @ 07/16/23 23:27:03.024 (22.234s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:03.024&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:03.527 (504ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] auth-* when external authentication is configured should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="27.4725007">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:03.528&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:11.896 (8.368s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:27:11.896&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:27:15.977 (4.081s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:27:15.977&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:27:30.444 (14.468s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:494 @ 07/16/23 23:27:30.445&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:494 @ 07/16/23 23:27:30.455 (11ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:30.455&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:31.001 (545ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should turn on proxy-buffering" classname="nginx-ingress-controller e2e suite" status="passed" time="23.203952">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:31.003&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:39.402 (8.434s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:27:39.403&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:27:43.461 (4.058s)&#xA;&gt; Enter [It] should turn on proxy-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:157 @ 07/16/23 23:27:43.461&#xA;&lt; Exit [It] should turn on proxy-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:157 @ 07/16/23 23:27:53.686 (10.226s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:53.687&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:54.173 (486ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should use ~* location modifier if regex annotation is present" classname="nginx-ingress-controller e2e suite" status="passed" time="33.6183721">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:54.174&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:02.854 (8.714s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:28:02.854&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:28:06.916 (4.062s)&#xA;&gt; Enter [It] should use ~* location modifier if regex annotation is present - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:111 @ 07/16/23 23:28:06.916&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:114 @ 07/16/23 23:28:06.917&#xA;STEP: creating an ingress definition with the use-regex amd rewrite-target annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:123 @ 07/16/23 23:28:17.092&#xA;STEP: ensuring &#39;/foo&#39; matches &#39;~* ^/foo&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:137 @ 07/16/23 23:28:27.312&#xA;STEP: ensuring &#39;/foo/bar&#39; matches &#39;~* ^/foo.+&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:147 @ 07/16/23 23:28:27.32&#xA;&lt; Exit [It] should use ~* location modifier if regex annotation is present - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:111 @ 07/16/23 23:28:27.329 (20.413s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:27.329&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:27.758 (429ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [TCP] tcp-services should expose an ExternalName TCP service" classname="nginx-ingress-controller e2e suite" status="passed" time="11.4738193">
+              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:27.76&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:35.027 (7.302s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 07/16/23 23:28:35.027&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 07/16/23 23:28:35.031 (4ms)&#xA;&gt; Enter [It] should expose an ExternalName TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:80 @ 07/16/23 23:28:35.031&#xA;&lt; Exit [It] should expose an ExternalName TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:80 @ 07/16/23 23:28:38.754 (3.722s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:38.754&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:39.199 (446ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] modsecurity owasp should disable modsecurity using &#39;modsecurity off;&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="29.9578012">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:39.205&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:47.511 (8.307s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:28:47.511&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:28:51.575 (4.064s)&#xA;&gt; Enter [It] should disable modsecurity using &#39;modsecurity off;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:132 @ 07/16/23 23:28:51.575&#xA;&lt; Exit [It] should disable modsecurity using &#39;modsecurity off;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:132 @ 07/16/23 23:29:08.745 (17.204s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:08.745&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:09.129 (383ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] use-proxy-protocol should enable PROXY Protocol for TCP" classname="nginx-ingress-controller e2e suite" status="passed" time="635.6501243">
+              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:09.13&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:17.772 (8.641s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:29:17.772&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:29:28.874 (11.102s)&#xA;&gt; Enter [It] should enable PROXY Protocol for TCP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155 @ 07/16/23 23:29:28.874&#xA;Automatically polling progress:&#xA;  [Setting] use-proxy-protocol should enable PROXY Protocol for TCP (Spec Runtime: 3m19.498s)&#xA;    /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155&#xA;    In [It] (Node Runtime: 2m59.754s)&#xA;      /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155&#xA;&#xA;    Spec Goroutine&#xA;    goroutine 2683 [IO wait, 2 minutes]&#xA;      internal/poll.runtime_pollWait(0x7f5468c3dd40, 0x72)&#xA;        /usr/local/go/src/runtime/netpoll.go:306&#xA;      internal/poll.(*pollDesc).wait(0xc000c86a00?, 0xc000daf725?, 0x0)&#xA;        /usr/local/go/src/internal/poll/fd_poll_runtime.go:84&#xA;      internal/poll.(*pollDesc).waitRead(...)&#xA;        /usr/local/go/src/internal/poll/fd_poll_runtime.go:89&#xA;      internal/poll.(*FD).Read(0xc000c86a00, {0xc000daf725, 0x15b, 0x15b})&#xA;        /usr/local/go/src/internal/poll/fd_unix.go:167&#xA;      net.(*netFD).Read(0xc000c86a00, {0xc000daf725?, 0x453656?, 0x380?})&#xA;        /usr/local/go/src/net/fd_posix.go:55&#xA;      net.(*conn).Read(0xc000126120, {0xc000daf725?, 0x19913c0?, 0xc000daf500?})&#xA;        /usr/local/go/src/net/net.go:183&#xA;      io.ReadAll({0x1f62e00, 0xc000126120})&#xA;        /usr/local/go/src/io/io.go:701&#xA;    &gt; k8s.io/ingress-nginx/test/e2e/settings.glob..func38.5()&#xA;        /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:211&#xA;      github.com/onsi/ginkgo/v2/internal.extractBodyFunction.func3({0xa0558e, 0xc000cfc300})&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/node.go:463&#xA;      github.com/onsi/ginkgo/v2/internal.(*Suite).runNode.func3()&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/suite.go:863&#xA;      github.com/onsi/ginkgo/v2/internal.(*Suite).runNode&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/suite.go:850&#xA;&lt; Exit [It] should enable PROXY Protocol for TCP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155 @ 07/16/23 23:39:43.452 (10m15.338s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:43.452&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:44.02 (568ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] enable-real-ip trusts X-Forwarded-For header only when setting is true" classname="nginx-ingress-controller e2e suite" status="passed" time="35.1522824">
+              <system-err>&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:44.023&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:52.324 (8.301s)&#xA;&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 07/16/23 23:39:52.324&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 07/16/23 23:40:01.39 (9.101s)&#xA;&gt; Enter [It] trusts X-Forwarded-For header only when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:40 @ 07/16/23 23:40:01.39&#xA;STEP: ensuring single values are parsed correctly - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:54 @ 07/16/23 23:40:18.685&#xA;&lt; Exit [It] trusts X-Forwarded-For header only when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:40 @ 07/16/23 23:40:18.693 (17.302s)&#xA;&gt; Enter [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:18.693&#xA;&lt; Exit [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:19.14 (448ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Setting] [Lua] lua-shared-dicts configures lua shared dicts" classname="nginx-ingress-controller e2e suite" status="passed" time="21.2409386">
+              <system-err>&gt; Enter [BeforeEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:19.154&#xA;&lt; Exit [BeforeEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:27.75 (8.595s)&#xA;&gt; Enter [It] configures lua shared dicts - /go/src/k8s.io/ingress-nginx/test/e2e/settings/lua_shared_dicts.go:29 @ 07/16/23 23:40:27.75&#xA;&lt; Exit [It] configures lua shared dicts - /go/src/k8s.io/ingress-nginx/test/e2e/settings/lua_shared_dicts.go:29 @ 07/16/23 23:40:39.948 (12.232s)&#xA;&gt; Enter [AfterEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:39.948&#xA;&lt; Exit [AfterEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:40.361 (413ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Flag] disable-sync-events should create sync events" classname="nginx-ingress-controller e2e suite" status="passed" time="31.7558127">
+              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:40.362&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:49.01 (8.647s)&#xA;&gt; Enter [It] should create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:53 @ 07/16/23 23:40:49.01&#xA;&lt; Exit [It] should create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:53 @ 07/16/23 23:41:11.382 (22.406s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:11.382&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:12.084 (702ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] [Annotations] proxy-* should build proxy next upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="22.3846957">
+              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:12.087&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:19.624 (7.537s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:41:19.624&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:41:23.694 (4.07s)&#xA;&gt; Enter [It] should build proxy next upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:194 @ 07/16/23 23:41:23.694&#xA;&lt; Exit [It] should build proxy next upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:194 @ 07/16/23 23:41:33.973 (10.314s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:33.974&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:34.437 (464ms)&#xA;</system-err>
+          </testcase>
+          <testcase name="[It] Configure OpenTracing should include opentracing_trust_incoming_span off directive when disabled" classname="nginx-ingress-controller e2e suite" status="passed" time="30.2536481">
+              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:34.439&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:42.983 (8.544s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:41:42.983&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:41:47.055 (4.073s)&#xA;&gt; Enter [It] should include opentracing_trust_incoming_span off directive when disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:85 @ 07/16/23 23:41:47.055&#xA;&lt; Exit [It] should include opentracing_trust_incoming_span off directive when disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:85 @ 07/16/23 23:42:04.248 (17.227s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:42:04.248&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:42:04.658 (410ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:42:04.658&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:42:04.658 (0s)&#xA;</system-err>
+          </testcase>
+      </testsuite>
+  </testsuites>
\ No newline at end of file

From 30dc62987192e6a6ca797c403148549b86bd30f7 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Sun, 16 Jul 2023 23:54:30 -0400
Subject: [PATCH 0866/1641] remove junit

---
 test/junitreports/report-e2e-test-suite.xml | 1311 -------------------
 1 file changed, 1311 deletions(-)
 delete mode 100644 test/junitreports/report-e2e-test-suite.xml

diff --git a/test/junitreports/report-e2e-test-suite.xml b/test/junitreports/report-e2e-test-suite.xml
deleted file mode 100644
index 43f6f3233..000000000
--- a/test/junitreports/report-e2e-test-suite.xml
+++ /dev/null
@@ -1,1311 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-  <testsuites tests="427" disabled="6" errors="0" failures="0" time="2584.0220522">
-      <testsuite name="nginx-ingress-controller e2e suite" package="/" tests="427" disabled="0" skipped="6" errors="0" failures="0" time="2584.0220522" timestamp="2023-07-16T23:07:34">
-          <properties>
-              <property name="SuiteSucceeded" value="true"></property>
-              <property name="SuiteHasProgrammaticFocus" value="false"></property>
-              <property name="SpecialSuiteFailureReason" value=""></property>
-              <property name="SuiteLabels" value="[]"></property>
-              <property name="RandomSeed" value="1689548853"></property>
-              <property name="RandomizeAllSpecs" value="true"></property>
-              <property name="LabelFilter" value=""></property>
-              <property name="FocusStrings" value=""></property>
-              <property name="SkipStrings" value="\[Memory Leak\]"></property>
-              <property name="FocusFiles" value=""></property>
-              <property name="SkipFiles" value=""></property>
-              <property name="FailOnPending" value="false"></property>
-              <property name="FailFast" value="true"></property>
-              <property name="FlakeAttempts" value="2"></property>
-              <property name="DryRun" value="false"></property>
-              <property name="ParallelTotal" value="7"></property>
-              <property name="OutputInterceptorMode" value=""></property>
-          </properties>
-          <testcase name="[It] [Annotations] backend-protocol - GRPC should use grpc_pass in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="38.5399424">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:34.215&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:47.677 (13.462s)&#xA;&gt; Enter [It] should use grpc_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:43 @ 07/16/23 23:07:47.677&#xA;&lt; Exit [It] should use grpc_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:43 @ 07/16/23 23:08:11.636 (23.993s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:11.636&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:12.72 (1.084s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] reuse-port reuse port should be disabled" classname="nginx-ingress-controller e2e suite" status="passed" time="38.2217212">
-              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:12.728&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:26.952 (14.224s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 07/16/23 23:08:26.952&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 07/16/23 23:08:40.053 (13.136s)&#xA;&gt; Enter [It] reuse port should be disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:44 @ 07/16/23 23:08:40.053&#xA;&lt; Exit [It] reuse port should be disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:44 @ 07/16/23 23:08:50.288 (10.235s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:50.289&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:50.915 (626ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] reuse-port reuse port should be enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="31.712009899999998">
-              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:50.916&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:00.386 (9.47s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 07/16/23 23:09:00.386&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 07/16/23 23:09:11.506 (11.154s)&#xA;&gt; Enter [It] reuse port should be enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:52 @ 07/16/23 23:09:11.506&#xA;&lt; Exit [It] reuse port should be enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:52 @ 07/16/23 23:09:21.824 (10.319s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:21.824&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:22.594 (769ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] reuse-port reuse port should be enabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="23.5019204">
-              <system-err>&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:22.602&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:31.342 (8.739s)&#xA;&gt; Enter [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 07/16/23 23:09:31.342&#xA;&lt; Exit [BeforeEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:32 @ 07/16/23 23:09:42.441 (11.134s)&#xA;&gt; Enter [It] reuse port should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:38 @ 07/16/23 23:09:42.441&#xA;&lt; Exit [It] reuse port should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/reuse-port.go:38 @ 07/16/23 23:09:45.658 (3.217s)&#xA;&gt; Enter [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:45.658&#xA;&lt; Exit [AfterEach] [Setting] reuse-port - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:46.07 (411ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should pass URL-encoded certificate to upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="27.9608455">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:46.071&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:55.04 (8.969s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:09:55.04&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:09:59.124 (4.084s)&#xA;&gt; Enter [It] should pass URL-encoded certificate to upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:161 @ 07/16/23 23:09:59.124&#xA;&lt; Exit [It] should pass URL-encoded certificate to upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:161 @ 07/16/23 23:10:13.448 (14.358s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:13.448&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:13.998 (550ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName with a port defined" classname="nginx-ingress-controller e2e suite" status="passed" time="19.7114344">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:13.999&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:22.738 (8.738s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName with a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:129 @ 07/16/23 23:10:22.738&#xA;&lt; Exit [It] should return 200 for service type=ExternalName with a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:129 @ 07/16/23 23:10:33.094 (10.391s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:33.094&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:33.676 (582ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-proxy-protocol should enable PROXY Protocol for HTTPS" classname="nginx-ingress-controller e2e suite" status="passed" time="113.2879812">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:33.688&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:42.391 (8.703s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:10:42.391&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:10:53.541 (11.15s)&#xA;&gt; Enter [It] should enable PROXY Protocol for HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:112 @ 07/16/23 23:10:53.541&#xA;&lt; Exit [It] should enable PROXY Protocol for HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:112 @ 07/16/23 23:12:26.01 (1m32.617s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:26.01&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:26.827 (817ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity through the config map but ignore snippet as disabled by admin" classname="nginx-ingress-controller e2e suite" status="passed" time="42.5280758">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:26.829&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:35.094 (8.299s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:12:35.094&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:12:39.241 (4.147s)&#xA;&gt; Enter [It] should enable modsecurity through the config map but ignore snippet as disabled by admin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:305 @ 07/16/23 23:12:39.241&#xA;&lt; Exit [It] should enable modsecurity through the config map but ignore snippet as disabled by admin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:305 @ 07/16/23 23:13:08.762 (29.555s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:08.762&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:09.288 (526ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should not set cookie without domain annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="22.8642912">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:09.289&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:17.226 (7.936s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:13:17.226&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:13:21.294 (4.068s)&#xA;&gt; Enter [It] should not set cookie without domain annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:248 @ 07/16/23 23:13:21.294&#xA;&lt; Exit [It] should not set cookie without domain annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:248 @ 07/16/23 23:13:31.492 (10.198s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:31.492&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:32.119 (661ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] enables access logging for default backend" classname="nginx-ingress-controller e2e suite" status="skipped" time="9.1708479">
-              <skipped message="skipped - enable-access-log-for-default-backend"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:32.123&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:40.759 (8.636s)&#xA;&gt; Enter [It] enables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:88 @ 07/16/23 23:13:40.759&#xA;[SKIPPED] enable-access-log-for-default-backend&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:90 @ 07/16/23 23:13:40.759&#xA;&lt; Exit [It] enables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:88 @ 07/16/23 23:13:40.759 (0s)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:40.76&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:41.293 (534ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return status 502 for service type=ExternalName with an invalid host" classname="nginx-ingress-controller e2e suite" status="passed" time="19.9088799">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:41.296&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:50.342 (9.046s)&#xA;&gt; Enter [It] should return status 502 for service type=ExternalName with an invalid host - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:153 @ 07/16/23 23:13:50.342&#xA;&lt; Exit [It] should return status 502 for service type=ExternalName with an invalid host - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:153 @ 07/16/23 23:14:00.578 (10.237s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:00.578&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:01.204 (626ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set secure in cookie with provided false annotation on https" classname="nginx-ingress-controller e2e suite" status="passed" time="23.5486766">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:01.205&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:09.622 (8.451s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:14:09.622&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:14:13.746 (4.123s)&#xA;&gt; Enter [It] should set secure in cookie with provided false annotation on https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:458 @ 07/16/23 23:14:13.746&#xA;&lt; Exit [It] should set secure in cookie with provided false annotation on https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:458 @ 07/16/23 23:14:24.227 (10.481s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:24.227&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:24.72 (493ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user retains cookie by default" classname="nginx-ingress-controller e2e suite" status="passed" time="41.6234434">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:24.722&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:35.239 (10.552s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:14:35.239&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:14:43.596 (8.357s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 07/16/23 23:14:43.596&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 07/16/23 23:15:05.851 (22.289s)&#xA;&gt; Enter [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:411 @ 07/16/23 23:15:05.851&#xA;&lt; Exit [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:411 @ 07/16/23 23:15:05.862 (11ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:05.862&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:06.276 (414ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check proxy header hash size should set proxy-headers-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="30.4083453">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:06.278&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:14.855 (8.577s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:15:14.855&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:15:25.98 (11.125s)&#xA;&gt; Enter [It] should set proxy-headers-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:60 @ 07/16/23 23:15:25.98&#xA;&lt; Exit [It] should set proxy-headers-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:60 @ 07/16/23 23:15:36.182 (10.236s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:36.182&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:36.652 (469ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should disable cors allow credentials" classname="nginx-ingress-controller e2e suite" status="passed" time="25.3990948">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:36.653&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:45.163 (8.51s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:15:45.163&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:15:51.277 (6.114s)&#xA;&gt; Enter [It] should disable cors allow credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:94 @ 07/16/23 23:15:51.277&#xA;&lt; Exit [It] should disable cors allow credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:94 @ 07/16/23 23:16:01.482 (10.205s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:01.482&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:02.018 (570ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should serve Ingress when class is added" classname="nginx-ingress-controller e2e suite" status="passed" time="37.7124334">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:02.019&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:09.556 (7.537s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:16:09.556&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:16:13.642 (4.085s)&#xA;&gt; Enter [It] should serve Ingress when class is added - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:257 @ 07/16/23 23:16:13.642&#xA;&lt; Exit [It] should serve Ingress when class is added - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:257 @ 07/16/23 23:16:39.138 (25.531s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:39.138&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:39.697 (559ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should delete Ingress when class is removed" classname="nginx-ingress-controller e2e suite" status="passed" time="37.9933959">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:39.736&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:47.471 (7.735s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:16:47.471&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:16:51.578 (4.107s)&#xA;&gt; Enter [It] should delete Ingress when class is removed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:192 @ 07/16/23 23:16:51.578&#xA;&lt; Exit [It] should delete Ingress when class is removed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:192 @ 07/16/23 23:17:17.178 (25.634s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:17.178&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:17.695 (517ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Geoip2 should include geoip2 line in config when enabled and db file exists" classname="nginx-ingress-controller e2e suite" status="passed" time="32.7838107">
-              <system-err>&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:17.697&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:26.222 (8.525s)&#xA;&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 07/16/23 23:17:26.222&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 07/16/23 23:17:30.293 (4.071s)&#xA;&gt; Enter [It] should include geoip2 line in config when enabled and db file exists - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:46 @ 07/16/23 23:17:30.293&#xA;Jul 16 23:17:39.506: INFO: Connecting to github.com (140.82.113.3:443)&#xA;Connecting to github.com (140.82.113.3:443)&#xA;Connecting to raw.githubusercontent.com (185.199.111.133:443)&#xA;saving to &#39;/etc/nginx/geoip/GeoLite2-Country.mmdb&#39;&#xA;GeoLite2-Country.mmd 100%!|(MISSING)********************************| 17952  0:00:00 ETA&#xA;&#39;/etc/nginx/geoip/GeoLite2-Country.mmdb&#39; saved&#xA;&#xA;&lt; Exit [It] should include geoip2 line in config when enabled and db file exists - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:46 @ 07/16/23 23:17:49.758 (19.499s)&#xA;&gt; Enter [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:49.758&#xA;&lt; Exit [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:50.446 (688ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Status] status update should update status field after client-go reconnection" classname="nginx-ingress-controller e2e suite" status="passed" time="79.7267018">
-              <system-err>&gt; Enter [BeforeEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:50.448&#xA;&lt; Exit [BeforeEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:59.09 (8.642s)&#xA;&gt; Enter [It] should update status field after client-go reconnection - /go/src/k8s.io/ingress-nginx/test/e2e/status/update.go:43 @ 07/16/23 23:17:59.09&#xA;Jul 16 23:17:59.090: INFO: Asynchronously running &#39;/bin/bash -c /usr/local/bin/kubectl proxy --accept-hosts=.* --address=0.0.0.0 --port=0&#39;&#xA;Jul 16 23:18:19.484: INFO: waiting for leader election and initial status update&#xA;Jul 16 23:18:59.486: INFO: Asynchronously running &#39;/bin/bash -c /usr/local/bin/kubectl proxy --accept-hosts=.* --address=0.0.0.0 --port=36979&#39;&#xA;&lt; Exit [It] should update status field after client-go reconnection - /go/src/k8s.io/ingress-nginx/test/e2e/status/update.go:43 @ 07/16/23 23:19:09.559 (1m10.572s)&#xA;&gt; Enter [AfterEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:09.559&#xA;&lt; Exit [AfterEach] [Status] status update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:10.072 (512ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should overwrite Foo header with auth response" classname="nginx-ingress-controller e2e suite" status="passed" time="32.0107057">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:10.074&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:18.758 (8.683s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:19:18.758&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:19:22.852 (4.094s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:19:22.852&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:19:37.243 (14.425s)&#xA;&gt; Enter [It] should overwrite Foo header with auth response - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:529 @ 07/16/23 23:19:37.243&#xA;&lt; Exit [It] should overwrite Foo header with auth response - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:529 @ 07/16/23 23:19:41.445 (4.202s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:41.446&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:42.051 (605ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 200 when authentication is configured with a map and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="25.6516828">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:42.053&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:50.431 (8.379s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:19:50.432&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:19:54.495 (4.064s)&#xA;&gt; Enter [It] should return status code 200 when authentication is configured with a map and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:199 @ 07/16/23 23:19:54.495&#xA;&lt; Exit [It] should return status code 200 when authentication is configured with a map and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:199 @ 07/16/23 23:20:06.914 (12.453s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:06.914&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:07.67 (756ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to https:// and use proxy_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="24.0065656">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:07.684&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:16.699 (9.015s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:20:16.699&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:20:20.747 (4.048s)&#xA;&gt; Enter [It] should set backend protocol to https:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:34 @ 07/16/23 23:20:20.747&#xA;&lt; Exit [It] should set backend protocol to https:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:34 @ 07/16/23 23:20:31.134 (10.387s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:31.134&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:31.656 (556ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity globally and with modsecurity-snippet block requests" classname="nginx-ingress-controller e2e suite" status="passed" time="42.7722447">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:31.657&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:40.453 (8.796s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:20:40.453&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:20:44.53 (4.077s)&#xA;&gt; Enter [It] should enable modsecurity globally and with modsecurity-snippet block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:189 @ 07/16/23 23:20:44.53&#xA;&lt; Exit [It] should enable modsecurity globally and with modsecurity-snippet block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:189 @ 07/16/23 23:21:13.79 (29.294s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:13.79&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:14.395 (605ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] change default settings should apply the annotation to the default backend" classname="nginx-ingress-controller e2e suite" status="passed" time="23.7016096">
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:14.4&#xA;&lt; Exit [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:23.168 (8.768s)&#xA;&gt; Enter [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:34 @ 07/16/23 23:21:23.168&#xA;&lt; Exit [BeforeEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:34 @ 07/16/23 23:21:27.261 (4.093s)&#xA;&gt; Enter [It] should apply the annotation to the default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:38 @ 07/16/23 23:21:27.261&#xA;&lt; Exit [It] should apply the annotation to the default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/with_hosts.go:38 @ 07/16/23 23:21:37.483 (10.256s)&#xA;&gt; Enter [AfterEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:37.483&#xA;&lt; Exit [AfterEach] [Default Backend] change default settings - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:38.068 (585ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param should return status code 200 when signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="26.2898035">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:38.069&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:45.534 (7.465s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:45.534&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:49.607 (4.073s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 07/16/23 23:21:49.607&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 07/16/23 23:22:03.839 (14.266s)&#xA;&gt; Enter [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:678 @ 07/16/23 23:22:03.84&#xA;&lt; Exit [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:678 @ 07/16/23 23:22:03.852 (12ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:03.852&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:04.325 (473ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured with invalid content and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="23.2268136">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:04.328&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:12.822 (8.494s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:12.822&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:16.892 (4.07s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured with invalid content and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:227 @ 07/16/23 23:22:16.892&#xA;&lt; Exit [It] should return status code 401 when authentication is configured with invalid content and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:227 @ 07/16/23 23:22:27.117 (10.225s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:27.117&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:27.555 (438ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 200 when authentication is configured and Authorization header is sent" classname="nginx-ingress-controller e2e suite" status="passed" time="25.3392845">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:27.556&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:36.204 (8.682s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:36.204&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:40.282 (4.078s)&#xA;&gt; Enter [It] should return status code 200 when authentication is configured and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:172 @ 07/16/23 23:22:40.283&#xA;&lt; Exit [It] should return status code 200 when authentication is configured and Authorization header is sent - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:172 @ 07/16/23 23:22:52.486 (12.203s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:52.486&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:52.861 (375ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] settings-global-rate-limit generates correct NGINX configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="32.8949623">
-              <system-err>&gt; Enter [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:52.864&#xA;&lt; Exit [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:00.437 (7.573s)&#xA;&gt; Enter [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:34 @ 07/16/23 23:23:00.437&#xA;&lt; Exit [BeforeEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:34 @ 07/16/23 23:23:04.507 (4.105s)&#xA;&gt; Enter [It] generates correct NGINX configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:38 @ 07/16/23 23:23:04.507&#xA;STEP: generating correct defaults - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:43 @ 07/16/23 23:23:11.537&#xA;STEP: applying customizations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:61 @ 07/16/23 23:23:14.706&#xA;&lt; Exit [It] generates correct NGINX configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/globalratelimit.go:38 @ 07/16/23 23:23:25.01 (20.503s)&#xA;&gt; Enter [AfterEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:25.01&#xA;&lt; Exit [AfterEach] [Setting] settings-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:25.724 (714ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] limit-rate Check limit-rate annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="27.5008123">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:25.726&#xA;&lt; Exit [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:34.135 (8.443s)&#xA;&gt; Enter [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:33 @ 07/16/23 23:23:34.135&#xA;&lt; Exit [BeforeEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:33 @ 07/16/23 23:23:38.193 (4.058s)&#xA;&gt; Enter [It] Check limit-rate annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:37 @ 07/16/23 23:23:38.193&#xA;&lt; Exit [It] Check limit-rate annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitrate.go:37 @ 07/16/23 23:23:52.705 (14.512s)&#xA;&gt; Enter [AfterEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:52.707&#xA;&lt; Exit [AfterEach] [Annotations] limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:53.193 (486ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] add-headers Add a custom header" classname="nginx-ingress-controller e2e suite" status="passed" time="31.4122919">
-              <system-err>&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:53.194&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:02.76 (9.601s)&#xA;&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 07/16/23 23:24:02.76&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 07/16/23 23:24:13.875 (11.115s)&#xA;&gt; Enter [It] Add a custom header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:40 @ 07/16/23 23:24:13.875&#xA;&lt; Exit [It] Add a custom header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:40 @ 07/16/23 23:24:24.131 (10.255s)&#xA;&gt; Enter [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:24.131&#xA;&lt; Exit [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:24.572 (441ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with transaction ID and OWASP rules" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3040838">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:24.573&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:33.002 (8.463s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:24:33.003&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:24:37.063 (4.061s)&#xA;&gt; Enter [It] should enable modsecurity with transaction ID and OWASP rules - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:53 @ 07/16/23 23:24:37.063&#xA;&lt; Exit [It] should enable modsecurity with transaction ID and OWASP rules - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:53 @ 07/16/23 23:24:47.308 (10.245s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:47.308&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:47.843 (535ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="58.015758">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:47.845&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:56.211 (8.367s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:24:56.212&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:25:04.311 (8.134s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:25:04.312&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:25:04.312&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:25:14.551&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:25:24.781&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:25:34.923 (30.646s)&#xA;&gt; Enter [It] should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:102 @ 07/16/23 23:25:34.923&#xA;STEP: Adding a no-auth-locations for /bar to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:104 @ 07/16/23 23:25:34.924&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:111 @ 07/16/23 23:25:45.117&#xA;STEP: Sending a request to whitelisted service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:118 @ 07/16/23 23:25:45.136&#xA;&lt; Exit [It] should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:102 @ 07/16/23 23:25:45.155 (10.231s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:45.155&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:45.792 (637ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should write rewrite logs" classname="nginx-ingress-controller e2e suite" status="passed" time="25.6974811">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:45.799&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:53.394 (7.595s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:25:53.394&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:25:57.447 (4.052s)&#xA;&gt; Enter [It] should write rewrite logs - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:37 @ 07/16/23 23:25:57.447&#xA;STEP: setting enable-rewrite-log annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:38 @ 07/16/23 23:25:57.447&#xA;&lt; Exit [It] should write rewrite logs - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:37 @ 07/16/23 23:26:10.67 (13.258s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:10.67&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:11.462 (792ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] service-upstream when using the default value (false) and enabling in the annotations should use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="23.5120901">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:11.466&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:19.994 (8.529s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 07/16/23 23:26:19.994&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 07/16/23 23:26:24.057 (4.063s)&#xA;&gt; Enter [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:41 @ 07/16/23 23:26:24.057&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:53 @ 07/16/23 23:26:34.26&#xA;STEP: checking if the Service Cluster IP and Port are used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:60 @ 07/16/23 23:26:34.268&#xA;&lt; Exit [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:41 @ 07/16/23 23:26:34.424 (10.402s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:34.424&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:34.943 (519ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - single origin with required port" classname="nginx-ingress-controller e2e suite" status="passed" time="20.2488205">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:34.948&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:43.595 (8.647s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:26:43.595&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:26:47.667 (4.072s)&#xA;&gt; Enter [It] should allow - single origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:358 @ 07/16/23 23:26:47.667&#xA;&lt; Exit [It] should allow - single origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:358 @ 07/16/23 23:26:54.707 (7.04s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:54.707&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:55.197 (490ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should not set client_body_buffer_size to invalid 1b" classname="nginx-ingress-controller e2e suite" status="passed" time="22.4355794">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:55.199&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:02.431 (7.267s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:27:02.431&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:27:06.577 (4.146s)&#xA;&gt; Enter [It] should not set client_body_buffer_size to invalid 1b - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:145 @ 07/16/23 23:27:06.577&#xA;&lt; Exit [It] should not set client_body_buffer_size to invalid 1b - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:145 @ 07/16/23 23:27:16.86 (10.283s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:16.86&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:17.6 (740ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should accept both Ingresses with default IngressClassName and IngressClass annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="33.8281043">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:17.603&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:29.242 (11.639s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:27:29.242&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:27:33.297 (4.089s)&#xA;&gt; Enter [It] should accept both Ingresses with default IngressClassName and IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:132 @ 07/16/23 23:27:33.297&#xA;&lt; Exit [It] should accept both Ingresses with default IngressClassName and IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:132 @ 07/16/23 23:27:50.62 (17.323s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:50.62&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:51.396 (777ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should proxy_method method when global-auth-method is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="58.1665338">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:51.398&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:59.848 (8.45s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:27:59.848&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:28:07.927 (8.114s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:28:07.927&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:28:07.927&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:28:18.108&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:28:28.311&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:28:38.594 (30.701s)&#xA;&gt; Enter [It] should proxy_method method when global-auth-method is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:197 @ 07/16/23 23:28:38.594&#xA;STEP: Adding a global-auth-method to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:202 @ 07/16/23 23:28:38.594&#xA;&lt; Exit [It] should proxy_method method when global-auth-method is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:197 @ 07/16/23 23:28:48.849 (10.255s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:48.849&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:49.496 (647ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) ports or X-Forwarded-Host check during HTTP tp HTTPS redirection should not use ports during the HTTP to HTTPS redirection" classname="nginx-ingress-controller e2e suite" status="passed" time="20.2293445">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:49.498&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:58.133 (8.635s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:28:58.133&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:29:00.195 (2.062s)&#xA;&gt; Enter [It] should not use ports during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:187 @ 07/16/23 23:29:00.195&#xA;&lt; Exit [It] should not use ports during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:187 @ 07/16/23 23:29:09.273 (9.111s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:09.273&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:09.693 (420ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should warn user when use-regex is true and session-cookie-path is not set" classname="nginx-ingress-controller e2e suite" status="passed" time="27.2522022">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:09.696&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:18.525 (8.83s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:29:18.525&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:29:22.595 (4.069s)&#xA;&gt; Enter [It] should warn user when use-regex is true and session-cookie-path is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:294 @ 07/16/23 23:29:22.595&#xA;&lt; Exit [It] should warn user when use-regex is true and session-cookie-path is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:294 @ 07/16/23 23:29:35.79 (13.229s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:35.79&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:36.912 (1.123s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should update the external name after a service update" classname="nginx-ingress-controller e2e suite" status="passed" time="24.8001117">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:36.914&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:45.266 (8.352s)&#xA;&gt; Enter [It] should update the external name after a service update - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:248 @ 07/16/23 23:29:45.266&#xA;STEP: checking the service is updated to use eu.httpbin.org - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:304 @ 07/16/23 23:30:01.037&#xA;&lt; Exit [It] should update the external name after a service update - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:248 @ 07/16/23 23:30:01.219 (15.992s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:01.219&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:01.675 (455ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if the canary ingress is modified" classname="nginx-ingress-controller e2e suite" status="passed" time="49.4495519">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:01.676&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:09.223 (7.547s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:30:09.223&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:30:17.344 (8.121s)&#xA;&gt; Enter [It] should route requests to the correct upstream if the canary ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:307 @ 07/16/23 23:30:17.344&#xA;STEP: routing requests destined for the mainline ingress to the mainline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:351 @ 07/16/23 23:30:44.8&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:360 @ 07/16/23 23:30:44.834&#xA;&lt; Exit [It] should route requests to the correct upstream if the canary ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:307 @ 07/16/23 23:30:44.863 (27.584s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:44.863&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:51.061 (6.197s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] [Flag] default-ssl-certificate uses default ssl certificate for host based ingress when configured certificate does not match host" classname="nginx-ingress-controller e2e suite" status="passed" time="48.0783854">
-              <system-err>&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:51.215&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:08.914 (17.737s)&#xA;&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 07/16/23 23:31:08.914&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 07/16/23 23:31:24.729 (15.815s)&#xA;&gt; Enter [It] uses default ssl certificate for host based ingress when configured certificate does not match host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:80 @ 07/16/23 23:31:24.729&#xA;STEP: making sure new ingress is deployed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:90 @ 07/16/23 23:31:33.588&#xA;STEP: making sure the configured default ssl certificate is being used - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:96 @ 07/16/23 23:31:36.75&#xA;&lt; Exit [It] uses default ssl certificate for host based ingress when configured certificate does not match host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:80 @ 07/16/23 23:31:38.764 (14.071s)&#xA;&gt; Enter [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:38.764&#xA;&lt; Exit [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:39.22 (456ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Configmap - limit-rate Check limit-rate config" classname="nginx-ingress-controller e2e suite" status="passed" time="43.382621">
-              <system-err>&gt; Enter [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:39.221&#xA;&lt; Exit [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:47.492 (8.271s)&#xA;&gt; Enter [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:32 @ 07/16/23 23:31:47.492&#xA;&lt; Exit [BeforeEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:32 @ 07/16/23 23:31:51.545 (4.053s)&#xA;&gt; Enter [It] Check limit-rate config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:36 @ 07/16/23 23:31:51.545&#xA;&lt; Exit [It] Check limit-rate config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/limit_rate.go:36 @ 07/16/23 23:32:22.076 (30.566s)&#xA;&gt; Enter [AfterEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:22.076&#xA;&lt; Exit [AfterEach] [Setting] Configmap - limit-rate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:22.569 (493ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - missing origins (should allow all origins)" classname="nginx-ingress-controller e2e suite" status="passed" time="19.9840928">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:22.57&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:30.865 (8.329s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:32:30.865&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:32:34.935 (4.071s)&#xA;&gt; Enter [It] should allow - missing origins (should allow all origins) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:571 @ 07/16/23 23:32:34.936&#xA;&lt; Exit [It] should allow - missing origins (should allow all origins) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:571 @ 07/16/23 23:32:42.001 (7.066s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:42.001&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:42.52 (519ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check server names hash size should set server_names_hash_max_size" classname="nginx-ingress-controller e2e suite" status="passed" time="29.0115263">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:42.522&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:49.858 (7.336s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:32:49.859&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:33:00.922 (11.098s)&#xA;&gt; Enter [It] should set server_names_hash_max_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:48 @ 07/16/23 23:33:00.922&#xA;&lt; Exit [It] should set server_names_hash_max_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:48 @ 07/16/23 23:33:11.133 (10.211s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:11.133&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:11.499 (366ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="23.8795169">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:11.501&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:19.977 (8.476s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:33:19.977&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:33:24.088 (4.111s)&#xA;&gt; Enter [It] should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:324 @ 07/16/23 23:33:24.088&#xA;&lt; Exit [It] should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:324 @ 07/16/23 23:33:34.766 (10.712s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:34.766&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:35.346 (580ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check the variable hash size should set variables-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="30.2371193">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:35.349&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:43.804 (8.455s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:33:43.804&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:33:54.894 (11.09s)&#xA;&gt; Enter [It] should set variables-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:80 @ 07/16/23 23:33:54.894&#xA;&lt; Exit [It] should set variables-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:80 @ 07/16/23 23:34:05.028 (10.168s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:05.028&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:05.552 (523ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-multi-accept should be disabled when set to false" classname="nginx-ingress-controller e2e suite" status="passed" time="19.2860324">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:05.554&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:14.153 (8.6s)&#xA;&gt; Enter [It] should be disabled when set to false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:49 @ 07/16/23 23:34:14.153&#xA;&lt; Exit [It] should be disabled when set to false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:49 @ 07/16/23 23:34:24.357 (10.204s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:24.358&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:24.84 (482ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] single ingress - multiple hosts should set the correct $service_name NGINX variable" classname="nginx-ingress-controller e2e suite" status="passed" time="36.3159109">
-              <system-err>&gt; Enter [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:24.841&#xA;&lt; Exit [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:33.146 (8.339s)&#xA;&gt; Enter [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:33 @ 07/16/23 23:34:33.146&#xA;&lt; Exit [BeforeEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:33 @ 07/16/23 23:34:47.325 (14.18s)&#xA;&gt; Enter [It] should set the correct $service_name NGINX variable - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:38 @ 07/16/23 23:34:47.325&#xA;&lt; Exit [It] should set the correct $service_name NGINX variable - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/multiple_rules.go:38 @ 07/16/23 23:35:00.678 (13.387s)&#xA;&gt; Enter [AfterEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:00.678&#xA;&lt; Exit [AfterEach] single ingress - multiple hosts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:01.088 (411ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] app-root should redirect to /foo" classname="nginx-ingress-controller e2e suite" status="passed" time="23.4522216">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:01.09&#xA;&lt; Exit [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:09.717 (8.628s)&#xA;&gt; Enter [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:31 @ 07/16/23 23:35:09.717&#xA;&lt; Exit [BeforeEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:31 @ 07/16/23 23:35:13.774 (4.056s)&#xA;&gt; Enter [It] should redirect to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:35 @ 07/16/23 23:35:13.774&#xA;&lt; Exit [It] should redirect to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/approot.go:35 @ 07/16/23 23:35:24.001 (10.227s)&#xA;&gt; Enter [AfterEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:24.001&#xA;&lt; Exit [AfterEach] [Annotations] app-root - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:24.542 (541ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] enable-ssl-passthrough With enable-ssl-passthrough enabled should enable ssl-passthrough-proxy-port on a different port" classname="nginx-ingress-controller e2e suite" status="passed" time="32.6082511">
-              <system-err>&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:24.545&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:32.804 (8.293s)&#xA;&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 07/16/23 23:35:32.804&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 07/16/23 23:35:45.013 (12.209s)&#xA;&gt; Enter [It] should enable ssl-passthrough-proxy-port on a different port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:56 @ 07/16/23 23:35:45.013&#xA;&lt; Exit [It] should enable ssl-passthrough-proxy-port on a different port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:56 @ 07/16/23 23:35:56.305 (11.292s)&#xA;&gt; Enter [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:56.305&#xA;&lt; Exit [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:57.119 (814ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should work with use-regex annotation and session-cookie-path" classname="nginx-ingress-controller e2e suite" status="passed" time="24.3634739">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:57.124&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:06.657 (9.567s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:36:06.657&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:36:10.742 (4.085s)&#xA;&gt; Enter [It] should work with use-regex annotation and session-cookie-path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:270 @ 07/16/23 23:36:10.742&#xA;&lt; Exit [It] should work with use-regex annotation and session-cookie-path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:270 @ 07/16/23 23:36:20.937 (10.195s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:20.937&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:21.453 (516ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] secret update should return the fake SSL certificate if the secret is invalid" classname="nginx-ingress-controller e2e suite" status="passed" time="27.641171">
-              <system-err>&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:21.455&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:31.124 (9.704s)&#xA;&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 07/16/23 23:36:31.124&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 07/16/23 23:36:35.265 (4.141s)&#xA;&gt; Enter [It] should return the fake SSL certificate if the secret is invalid - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:82 @ 07/16/23 23:36:35.265&#xA;&lt; Exit [It] should return the fake SSL certificate if the secret is invalid - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:82 @ 07/16/23 23:36:48.617 (13.352s)&#xA;&gt; Enter [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:48.617&#xA;&lt; Exit [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:49.062 (444ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] upstream-hash-by-* should connect to the same pod" classname="nginx-ingress-controller e2e suite" status="passed" time="47.4783595">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:49.063&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:57.626 (8.563s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 07/16/23 23:36:57.626&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 07/16/23 23:37:05.661 (8.069s)&#xA;&gt; Enter [It] should connect to the same pod - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:83 @ 07/16/23 23:37:05.661&#xA;&lt; Exit [It] should connect to the same pod - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:83 @ 07/16/23 23:37:36.037 (30.41s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:36.037&#xA;&lt; Exit [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:36.473 (436ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="56.9946548">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:36.475&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:45.324 (8.85s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:37:45.324&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:37:57.596 (12.271s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 07/16/23 23:37:57.596&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 07/16/23 23:38:25.91 (28.348s)&#xA;&gt; Enter [It] user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:348 @ 07/16/23 23:38:25.91&#xA;&lt; Exit [It] user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:348 @ 07/16/23 23:38:32.91 (7.035s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:32.91&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:33.401 (490ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should not configure log-format escape by default" classname="nginx-ingress-controller e2e suite" status="passed" time="25.3718209">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:33.402&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:42.01 (8.609s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:38:42.01&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:38:55.207 (13.196s)&#xA;&gt; Enter [It] should not configure log-format escape by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:40 @ 07/16/23 23:38:55.207&#xA;&lt; Exit [It] should not configure log-format escape by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:40 @ 07/16/23 23:38:58.375 (3.169s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:58.375&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:58.773 (398ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param keeps processing new ingresses even if one of the existing ingresses is misconfigured" classname="nginx-ingress-controller e2e suite" status="passed" time="38.6435037">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:58.777&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:07.045 (8.302s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:39:07.045&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:39:11.141 (4.096s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 07/16/23 23:39:11.141&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 07/16/23 23:39:25.521 (14.38s)&#xA;&gt; Enter [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:698 @ 07/16/23 23:39:25.521&#xA;&lt; Exit [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:698 @ 07/16/23 23:39:36.735 (11.248s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:36.735&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:37.352 (617ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should return 404 status for requests to the canary if no matching ingress is found" classname="nginx-ingress-controller e2e suite" status="passed" time="25.6226958">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:37.354&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:47.228 (9.874s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:39:47.228&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:39:55.38 (8.152s)&#xA;&gt; Enter [It] should return 404 status for requests to the canary if no matching ingress is found - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:80 @ 07/16/23 23:39:55.38&#xA;&lt; Exit [It] should return 404 status for requests to the canary if no matching ingress is found - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:80 @ 07/16/23 23:40:02.395 (7.05s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:02.395&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:02.942 (547ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] global-options should have worker_rlimit_nofile option" classname="nginx-ingress-controller e2e suite" status="passed" time="14.756124400000001">
-              <system-err>&gt; Enter [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:02.952&#xA;&lt; Exit [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:14.181 (11.229s)&#xA;&gt; Enter [It] should have worker_rlimit_nofile option - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:31 @ 07/16/23 23:40:14.181&#xA;&lt; Exit [It] should have worker_rlimit_nofile option - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:31 @ 07/16/23 23:40:17.314 (3.133s)&#xA;&gt; Enter [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:17.314&#xA;&lt; Exit [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:17.708 (394ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should sync ingress on external name service addition/deletion" classname="nginx-ingress-controller e2e suite" status="passed" time="29.5690489">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:17.709&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:26.08 (8.371s)&#xA;&gt; Enter [It] should sync ingress on external name service addition/deletion - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:311 @ 07/16/23 23:40:26.08&#xA;&lt; Exit [It] should sync ingress on external name service addition/deletion - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:311 @ 07/16/23 23:40:46.867 (20.821s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:46.867&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:47.244 (376ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Annotation - limit-connections should limit-connections" classname="nginx-ingress-controller e2e suite" status="passed" time="38.1334074">
-              <system-out>I0716 23:41:15.732712      21 request.go:690] Waited for 1.1995168s due to client-side throttling, not priority and fairness, request: GET:https://10.96.0.1:443/api/v1/namespaces/e2e-tests-limit-connections-1689550847245898400-wb8ks/services/nginx-ingress-controller&#xA;</system-out>
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:47.245&#xA;&lt; Exit [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:56.079 (8.834s)&#xA;&gt; Enter [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:34 @ 07/16/23 23:40:56.079&#xA;&lt; Exit [BeforeEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:34 @ 07/16/23 23:41:00.171 (4.127s)&#xA;&gt; Enter [It] should limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:38 @ 07/16/23 23:41:00.171&#xA;&lt; Exit [It] should limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/limitconnections.go:38 @ 07/16/23 23:41:24.568 (24.396s)&#xA;&gt; Enter [AfterEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:24.568&#xA;&lt; Exit [AfterEach] [Annotations] Annotation - limit-connections - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:25.344 (776ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Shutdown] Grace period shutdown /healthz should return status code 500 during shutdown grace period" classname="nginx-ingress-controller e2e suite" status="passed" time="80.9274995">
-              <system-err>&gt; Enter [BeforeEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:25.36&#xA;&lt; Exit [BeforeEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:32.695 (7.368s)&#xA;&gt; Enter [It] /healthz should return status code 500 during shutdown grace period - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/grace_period.go:35 @ 07/16/23 23:41:32.695&#xA;&lt; Exit [It] /healthz should return status code 500 during shutdown grace period - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/grace_period.go:35 @ 07/16/23 23:42:45.785 (1m13.158s)&#xA;&gt; Enter [AfterEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:42:45.785&#xA;&lt; Exit [AfterEach] [Shutdown] Grace period shutdown - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:42:46.185 (401ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should return an error if there is an invalid value in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="41.6303006">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:42:46.188&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:43:12.099 (25.945s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:43:12.099&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:43:20.23 (8.131s)&#xA;&gt; Enter [It] should return an error if there is an invalid value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:136 @ 07/16/23 23:43:20.23&#xA;&lt; Exit [It] should return an error if there is an invalid value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:136 @ 07/16/23 23:43:27.268 (7.037s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:43:27.268&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:43:27.784 (516ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller reject ingress with global-rate-limit annotations when memcached is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="49.3381235">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:43:27.785&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:43:58.24 (30.49s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:43:58.24&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:44:06.339 (8.133s)&#xA;&gt; Enter [It] reject ingress with global-rate-limit annotations when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:43 @ 07/16/23 23:44:06.339&#xA;STEP: rejects ingress when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:52 @ 07/16/23 23:44:06.339&#xA;STEP: accepts ingress when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:57 @ 07/16/23 23:44:06.349&#xA;&lt; Exit [It] reject ingress with global-rate-limit annotations when memcached is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:43 @ 07/16/23 23:44:16.599 (10.26s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:44:16.599&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:44:17.054 (455ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should not return an error for an invalid Ingress when it has unknown class" classname="nginx-ingress-controller e2e suite" status="passed" time="28.0471116">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:44:17.055&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:44:36.36 (19.339s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:44:36.36&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:44:44.488 (8.128s)&#xA;&gt; Enter [It] should not return an error for an invalid Ingress when it has unknown class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:207 @ 07/16/23 23:44:44.488&#xA;&lt; Exit [It] should not return an error for an invalid Ingress when it has unknown class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:207 @ 07/16/23 23:44:44.642 (153ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:44:44.642&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:44:45.068 (426ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should not allow overlaps of host and paths without canary annotations" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1548957">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:44:45.07&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:45:03.441 (18.405s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:45:03.441&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:45:11.572 (8.131s)&#xA;&gt; Enter [It] should not allow overlaps of host and paths without canary annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:70 @ 07/16/23 23:45:11.572&#xA;&lt; Exit [It] should not allow overlaps of host and paths without canary annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:70 @ 07/16/23 23:45:14.768 (3.197s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:45:14.768&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:45:15.19 (422ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should return an error if the Ingress V1 definition contains invalid annotations" classname="nginx-ingress-controller e2e suite" status="passed" time="27.1581685">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:45:15.191&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:45:33.55 (18.393s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:45:33.55&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:45:41.706 (8.156s)&#xA;&gt; Enter [It] should return an error if the Ingress V1 definition contains invalid annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:196 @ 07/16/23 23:45:41.706&#xA;&lt; Exit [It] should return an error if the Ingress V1 definition contains invalid annotations - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:196 @ 07/16/23 23:45:41.879 (173ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:45:41.879&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:45:42.315 (436ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should not return an error if the Ingress V1 definition is valid with IngressClass annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="37.2712832">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:45:42.316&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:46:05.628 (23.347s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:46:05.629&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:46:13.77 (8.142s)&#xA;&gt; Enter [It] should not return an error if the Ingress V1 definition is valid with IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:180 @ 07/16/23 23:46:13.77&#xA;&lt; Exit [It] should not return an error if the Ingress V1 definition is valid with IngressClass annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:180 @ 07/16/23 23:46:19.093 (5.323s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:46:19.093&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:46:19.553 (460ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should return an error if there is a forbidden value in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="34.8404317">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:46:19.554&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:46:38.748 (19.229s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:46:38.748&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:46:46.903 (8.154s)&#xA;&gt; Enter [It] should return an error if there is a forbidden value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:150 @ 07/16/23 23:46:46.903&#xA;&lt; Exit [It] should return an error if there is a forbidden value in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:150 @ 07/16/23 23:46:53.94 (7.037s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:46:53.94&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:46:54.36 (420ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should not return an error if the Ingress V1 definition is valid with Ingress Class" classname="nginx-ingress-controller e2e suite" status="passed" time="39.4930985">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:46:54.361&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:47:21.846 (27.52s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:47:21.846&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:47:29.967 (8.139s)&#xA;&gt; Enter [It] should not return an error if the Ingress V1 definition is valid with Ingress Class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:164 @ 07/16/23 23:47:29.967&#xA;&lt; Exit [It] should not return an error if the Ingress V1 definition is valid with Ingress Class - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:164 @ 07/16/23 23:47:33.332 (3.365s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:47:33.332&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:47:33.801 (469ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should block ingress with invalid path" classname="nginx-ingress-controller e2e suite" status="passed" time="41.2205255">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:47:33.802&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:48:03.021 (29.226s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:48:03.021&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:48:11.191 (8.17s)&#xA;&gt; Enter [It] should block ingress with invalid path - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:108 @ 07/16/23 23:48:11.191&#xA;&lt; Exit [It] should block ingress with invalid path - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:108 @ 07/16/23 23:48:14.438 (3.246s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:48:14.438&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:48:15.015 (577ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [TopologyHints] topology aware routing should return 200 when service has topology hints" classname="nginx-ingress-controller e2e suite" status="passed" time="22.2307844">
-              <system-err>&gt; Enter [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:48:15.017&#xA;&lt; Exit [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:48:22.38 (7.363s)&#xA;&gt; Enter [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:39 @ 07/16/23 23:48:22.38&#xA;&lt; Exit [BeforeEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:39 @ 07/16/23 23:48:26.446 (4.066s)&#xA;&gt; Enter [It] should return 200 when service has topology hints - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:43 @ 07/16/23 23:48:26.446&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:53 @ 07/16/23 23:48:36.588&#xA;&lt; Exit [It] should return 200 when service has topology hints - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/topology.go:43 @ 07/16/23 23:48:36.76 (10.343s)&#xA;&gt; Enter [AfterEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:48:36.76&#xA;&lt; Exit [AfterEach] [TopologyHints] topology aware routing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:48:37.218 (459ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] watch namespace selector With specific watch-namespace-selector flags should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar" classname="nginx-ingress-controller e2e suite" status="passed" time="57.2946911">
-              <system-err>&gt; Enter [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:48:37.219&#xA;&lt; Exit [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:49:01.506 (24.32s)&#xA;&gt; Enter [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:51 @ 07/16/23 23:49:01.506&#xA;&lt; Exit [BeforeEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:51 @ 07/16/23 23:49:27.706 (26.2s)&#xA;&gt; Enter [It] should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:63 @ 07/16/23 23:49:27.706&#xA;&lt; Exit [It] should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:63 @ 07/16/23 23:49:34.037 (6.365s)&#xA;&gt; Enter [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:49:34.037&#xA;&lt; Exit [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:49:34.43 (393ms)&#xA;&gt; Enter [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:56 @ 07/16/23 23:49:34.43&#xA;&lt; Exit [AfterEach] [Flag] watch namespace selector - /go/src/k8s.io/ingress-nginx/test/e2e/settings/namespace_selector.go:56 @ 07/16/23 23:49:34.447 (17ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should allow overlaps of host and paths with canary annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="32.8319655">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:49:34.449&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:49:53.407 (18.958s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:49:53.407&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:50:01.525 (8.152s)&#xA;&gt; Enter [It] should allow overlaps of host and paths with canary annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:87 @ 07/16/23 23:50:01.525&#xA;&lt; Exit [It] should allow overlaps of host and paths with canary annotation - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:87 @ 07/16/23 23:50:06.787 (5.263s)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:50:06.787&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:50:07.247 (459ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Admission] admission controller should return an error if there is an error validating the ingress definition" classname="nginx-ingress-controller e2e suite" status="passed" time="27.8793348">
-              <system-err>&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:50:07.248&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:50:26.543 (19.295s)&#xA;&gt; Enter [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:50:26.543&#xA;&lt; Exit [BeforeEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:38 @ 07/16/23 23:50:34.647 (8.138s)&#xA;&gt; Enter [It] should return an error if there is an error validating the ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:125 @ 07/16/23 23:50:34.647&#xA;&lt; Exit [It] should return an error if there is an error validating the ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/admission/admission.go:125 @ 07/16/23 23:50:34.688 (42ms)&#xA;&gt; Enter [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:50:34.688&#xA;&lt; Exit [AfterEach] [Admission] admission controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:50:35.093 (404ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should allow for custom rewrite parameters" classname="nginx-ingress-controller e2e suite" status="passed" time="39.3327111">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:34.275&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:48.02 (13.746s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:07:48.02&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:08:02.283 (14.262s)&#xA;&gt; Enter [It] should allow for custom rewrite parameters - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:190 @ 07/16/23 23:08:02.283&#xA;STEP: creating an ingress definition with the use-regex annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:193 @ 07/16/23 23:08:02.283&#xA;STEP: check that &#39;/foo/bar/bar&#39; redirects to custom rewrite - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:206 @ 07/16/23 23:08:12.679&#xA;&lt; Exit [It] should allow for custom rewrite parameters - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:190 @ 07/16/23 23:08:12.703 (10.454s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:12.703&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:13.572 (869ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if mainline ingress is created after the canary ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="40.9961349">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:13.576&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:28.615 (15.039s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:08:28.615&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:08:36.764 (8.184s)&#xA;&gt; Enter [It] should route requests to the correct upstream if mainline ingress is created after the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:206 @ 07/16/23 23:08:36.765&#xA;STEP: routing requests destined for the mainline ingress to the mainelin upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:231 @ 07/16/23 23:08:54.047&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:240 @ 07/16/23 23:08:54.056&#xA;&lt; Exit [It] should route requests to the correct upstream if mainline ingress is created after the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:206 @ 07/16/23 23:08:54.065 (17.301s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:54.065&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:54.538 (473ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret" classname="nginx-ingress-controller e2e suite" status="passed" time="31.4066525">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:54.54&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:05.022 (10.516s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:09:05.022&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:09:09.106 (4.084s)&#xA;&gt; Enter [It] should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:36 @ 07/16/23 23:09:09.106&#xA;&lt; Exit [It] should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:36 @ 07/16/23 23:09:25.238 (16.132s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:25.238&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:25.913 (675ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* canary affinity behavior routes traffic to either mainline or canary backend (legacy behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="72.7751378">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:25.915&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:34.419 (8.538s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:09:34.419&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:09:42.592 (8.174s)&#xA;&gt; Enter [It] routes traffic to either mainline or canary backend (legacy behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1058 @ 07/16/23 23:09:42.592&#xA;&lt; Exit [It] routes traffic to either mainline or canary backend (legacy behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1058 @ 07/16/23 23:10:38.197 (55.673s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:38.197&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:38.587 (391ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="20.2393701">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:38.589&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:47.213 (8.624s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:10:47.213&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:10:51.275 (4.063s)&#xA;&gt; Enter [It] should not allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:196 @ 07/16/23 23:10:51.276&#xA;&lt; Exit [It] should not allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:196 @ 07/16/23 23:10:58.316 (7.04s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:58.316&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:58.828 (512ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] influxdb-* when influxdb is enabled should send the request metric to the influxdb server" classname="nginx-ingress-controller e2e suite" status="passed" time="78.7372349">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:58.83&#xA;&lt; Exit [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:06.101 (7.326s)&#xA;&gt; Enter [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:42 @ 07/16/23 23:11:06.101&#xA;&lt; Exit [BeforeEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:42 @ 07/16/23 23:11:55.28 (49.235s)&#xA;&gt; Enter [It] should send the request metric to the influxdb server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:48 @ 07/16/23 23:11:55.28&#xA;&lt; Exit [It] should send the request metric to the influxdb server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/influxdb.go:48 @ 07/16/23 23:12:16.87 (21.626s)&#xA;&gt; Enter [AfterEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:16.87&#xA;&lt; Exit [AfterEach] [Annotations] influxdb-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:17.419 (549ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should not set invalid proxy timeouts" classname="nginx-ingress-controller e2e suite" status="passed" time="24.1317913">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:17.421&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:26.489 (9.069s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:12:26.49&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:12:30.699 (4.21s)&#xA;&gt; Enter [It] should not set invalid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:136 @ 07/16/23 23:12:30.699&#xA;&lt; Exit [It] should not set invalid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:136 @ 07/16/23 23:12:41.026 (10.361s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:41.03&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:41.518 (487ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow correct origins - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="20.9412207">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:41.519&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:50.636 (9.117s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:12:50.636&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:12:54.712 (4.076s)&#xA;&gt; Enter [It] should allow correct origins - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:216 @ 07/16/23 23:12:54.712&#xA;&lt; Exit [It] should allow correct origins - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:216 @ 07/16/23 23:13:01.787 (7.076s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:01.787&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:02.426 (673ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] [PathType] mix Exact and Prefix paths should choose the correct location" classname="nginx-ingress-controller e2e suite" status="passed" time="48.5153405">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:02.429&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:11.216 (8.787s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:33 @ 07/16/23 23:13:11.217&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:33 @ 07/16/23 23:13:15.424 (4.207s)&#xA;&gt; Enter [It] should choose the correct location - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:39 @ 07/16/23 23:13:15.424&#xA;STEP: Checking exact request to / - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:63 @ 07/16/23 23:13:32.733&#xA;STEP: Checking prefix request to /bar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:76 @ 07/16/23 23:13:32.756&#xA;STEP: Checking exact request to /foo - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:109 @ 07/16/23 23:13:50.333&#xA;STEP: Checking prefix request to /foo/bar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:122 @ 07/16/23 23:13:50.341&#xA;STEP: Checking prefix request to /foobar - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:134 @ 07/16/23 23:13:50.351&#xA;&lt; Exit [It] should choose the correct location - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_mixed.go:39 @ 07/16/23 23:13:50.359 (34.97s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:50.36&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] mix Exact and Prefix paths - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:50.91 (550ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should set gzip_comp_level to 4" classname="nginx-ingress-controller e2e suite" status="passed" time="25.181318">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:50.913&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:58.322 (7.409s)&#xA;&gt; Enter [It] should set gzip_comp_level to 4 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:56 @ 07/16/23 23:13:58.322&#xA;&lt; Exit [It] should set gzip_comp_level to 4 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:56 @ 07/16/23 23:14:15.594 (17.306s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:15.594&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:16.06 (466ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret" classname="nginx-ingress-controller e2e suite" status="passed" time="37.9162554">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:16.061&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:24.013 (7.951s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:14:24.013&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:14:28.134 (4.121s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:37 @ 07/16/23 23:14:28.134&#xA;&lt; Exit [It] should set valid proxy-ssl-secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:37 @ 07/16/23 23:14:47.036 (18.936s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:47.036&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:53.943 (6.907s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should change the default proxy HTTP version" classname="nginx-ingress-controller e2e suite" status="passed" time="24.9681526">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:53.945&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:04.186 (10.275s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:15:04.186&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:15:08.271 (4.085s)&#xA;&gt; Enter [It] should change the default proxy HTTP version - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:233 @ 07/16/23 23:15:08.271&#xA;&lt; Exit [It] should change the default proxy HTTP version - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:233 @ 07/16/23 23:15:18.477 (10.206s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:18.477&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:18.878 (401ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] permanent-redirect permanent-redirect-code should respond with a custom redirect code" classname="nginx-ingress-controller e2e suite" status="passed" time="19.1586459">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:18.88&#xA;&lt; Exit [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:27.307 (8.428s)&#xA;&gt; Enter [It] should respond with a custom redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:61 @ 07/16/23 23:15:27.307&#xA;STEP: setting permanent-redirect-code annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:62 @ 07/16/23 23:15:27.307&#xA;STEP: sending request to redirected URL path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:82 @ 07/16/23 23:15:37.505&#xA;&lt; Exit [It] should respond with a custom redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:61 @ 07/16/23 23:15:37.513 (10.24s)&#xA;&gt; Enter [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:37.513&#xA;&lt; Exit [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:38.004 (491ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should routes to mainline upstream when the given Regex causes error" classname="nginx-ingress-controller e2e suite" status="passed" time="37.114839">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:38.014&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:47.066 (9.052s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:15:47.066&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:15:57.188 (10.122s)&#xA;&gt; Enter [It] should routes to mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:566 @ 07/16/23 23:15:57.188&#xA;STEP: routing requests to the mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:591 @ 07/16/23 23:16:14.422&#xA;&lt; Exit [It] should routes to mainline upstream when the given Regex causes error - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:566 @ 07/16/23 23:16:14.445 (17.291s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:14.445&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:15.095 (650ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3675251">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:15.112&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:23.549 (8.437s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:16:23.549&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:16:27.629 (4.08s)&#xA;&gt; Enter [It] should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:266 @ 07/16/23 23:16:27.629&#xA;&lt; Exit [It] should set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:266 @ 07/16/23 23:16:37.862 (10.268s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:37.862&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:38.445 (583ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] block-* should block User-Agents defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="32.3222438">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:38.446&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:49.042 (10.596s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 07/16/23 23:16:49.042&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 07/16/23 23:17:00.129 (11.087s)&#xA;&gt; Enter [It] should block User-Agents defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:55 @ 07/16/23 23:17:00.129&#xA;&lt; Exit [It] should block User-Agents defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:55 @ 07/16/23 23:17:10.352 (10.257s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:10.352&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:10.734 (382ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should not set secure in cookie with provided false annotation on http" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3872978">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:10.736&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:19.354 (8.618s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:17:19.354&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:17:23.429 (4.075s)&#xA;&gt; Enter [It] should not set secure in cookie with provided false annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:435 @ 07/16/23 23:17:23.429&#xA;&lt; Exit [It] should not set secure in cookie with provided false annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:435 @ 07/16/23 23:17:33.591 (10.197s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:33.591&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:34.089 (497ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should add auth headers when global-auth-response-headers is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="58.108191">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:34.09&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:42.368 (8.278s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:17:42.368&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:17:50.549 (8.181s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:17:50.549&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:17:50.549&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:18:01.043&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:18:11.254&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:18:21.423 (30.908s)&#xA;&gt; Enter [It] should add auth headers when global-auth-response-headers is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:223 @ 07/16/23 23:18:21.423&#xA;STEP: Adding a global-auth-response-headers to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:228 @ 07/16/23 23:18:21.423&#xA;&lt; Exit [It] should add auth headers when global-auth-response-headers is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:223 @ 07/16/23 23:18:31.597 (10.208s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:31.597&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:32.129 (532ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set proxy client-max-body-size to 8m" classname="nginx-ingress-controller e2e suite" status="passed" time="23.0777599">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:32.13&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:40.387 (8.257s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:18:40.387&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:18:44.465 (4.078s)&#xA;&gt; Enter [It] should set proxy client-max-body-size to 8m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:85 @ 07/16/23 23:18:44.465&#xA;&lt; Exit [It] should set proxy client-max-body-size to 8m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:85 @ 07/16/23 23:18:54.781 (10.316s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:54.781&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:55.208 (427ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to default" classname="nginx-ingress-controller e2e suite" status="passed" time="23.1290998">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:55.21&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:03.622 (8.446s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:19:03.622&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:19:07.698 (4.076s)&#xA;&gt; Enter [It] should set proxy_redirect to default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:52 @ 07/16/23 23:19:07.698&#xA;&lt; Exit [It] should set proxy_redirect to default - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:52 @ 07/16/23 23:19:17.914 (10.216s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:17.914&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:18.304 (391ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should create additional upstream block when auth-keepalive is set with HTTP/1.x" classname="nginx-ingress-controller e2e suite" status="passed" time="50.5490694">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:18.307&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:26.675 (8.368s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:19:26.675&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:19:30.739 (4.064s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:19:30.739&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:19:45.008 (14.304s)&#xA;&gt; Enter [It] should create additional upstream block when auth-keepalive is set with HTTP/1.x - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:623 @ 07/16/23 23:19:45.008&#xA;&lt; Exit [It] should create additional upstream block when auth-keepalive is set with HTTP/1.x - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:623 @ 07/16/23 23:20:08.248 (23.274s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:08.248&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:08.787 (539ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-alias should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="23.7681149">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:08.788&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:17.73 (8.942s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 07/16/23 23:20:17.73&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 07/16/23 23:20:21.833 (4.103s)&#xA;&gt; Enter [It] should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:36 @ 07/16/23 23:20:21.833&#xA;&lt; Exit [It] should return status code 200 for host &#39;foo&#39; and 404 for &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:36 @ 07/16/23 23:20:32.024 (10.226s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:32.024&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:32.522 (498ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] plugins should exist a x-hello-world header" classname="nginx-ingress-controller e2e suite" status="passed" time="32.3017997">
-              <system-err>&gt; Enter [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:32.53&#xA;&lt; Exit [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:40.871 (8.341s)&#xA;&gt; Enter [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:31 @ 07/16/23 23:20:40.871&#xA;&lt; Exit [BeforeEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:31 @ 07/16/23 23:20:46.94 (6.069s)&#xA;&gt; Enter [It] should exist a x-hello-world header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:35 @ 07/16/23 23:20:46.94&#xA;&lt; Exit [It] should exist a x-hello-world header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/plugins.go:35 @ 07/16/23 23:21:04.258 (17.351s)&#xA;&gt; Enter [AfterEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:04.258&#xA;&lt; Exit [AfterEach] plugins - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:04.797 (540ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] upstream-hash-by-* should connect to the same subset of pods" classname="nginx-ingress-controller e2e suite" status="passed" time="45.3711379">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:04.802&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:13.19 (8.387s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 07/16/23 23:21:13.19&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:79 @ 07/16/23 23:21:19.32 (6.13s)&#xA;&gt; Enter [It] should connect to the same subset of pods - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:92 @ 07/16/23 23:21:19.32&#xA;&lt; Exit [It] should connect to the same subset of pods - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamhashby.go:92 @ 07/16/23 23:21:49.708 (30.422s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:49.708&#xA;&lt; Exit [AfterEach] [Annotations] upstream-hash-by-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:50.139 (431ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the keep alive should set keepalive_requests" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1447705">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:50.145&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:58.496 (8.351s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:21:58.496&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:22:09.574 (11.112s)&#xA;&gt; Enter [It] should set keepalive_requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:48 @ 07/16/23 23:22:09.574&#xA;&lt; Exit [It] should set keepalive_requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:48 @ 07/16/23 23:22:19.755 (10.181s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:19.755&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:20.256 (501ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes (down scaling of replicas)" classname="nginx-ingress-controller e2e suite" status="passed" time="45.9411528">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:20.257&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:28.894 (8.637s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:22:28.894&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:22:43.112 (14.252s)&#xA;&gt; Enter [It] handles endpoints only changes (down scaling of replicas) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:87 @ 07/16/23 23:22:43.112&#xA;&lt; Exit [It] handles endpoints only changes (down scaling of replicas) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:87 @ 07/16/23 23:23:05.645 (22.568s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:05.645&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:06.129 (484ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a TLS enabled ingress should set X-Forwarded-Port header to 443" classname="nginx-ingress-controller e2e suite" status="passed" time="34.8905681">
-              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:06.131&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:20.599 (14.468s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 07/16/23 23:23:20.6&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 07/16/23 23:23:27.994 (7.394s)&#xA;&gt; Enter [It] should set X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:70 @ 07/16/23 23:23:27.994&#xA;&lt; Exit [It] should set X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:70 @ 07/16/23 23:23:40.522 (12.562s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:40.522&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:40.988 (466ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] upstream-vhost set host to upstreamvhost.bar.com" classname="nginx-ingress-controller e2e suite" status="passed" time="23.4091998">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:40.989&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:49.554 (8.565s)&#xA;&gt; Enter [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:30 @ 07/16/23 23:23:49.554&#xA;&lt; Exit [BeforeEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:30 @ 07/16/23 23:23:53.661 (4.107s)&#xA;&gt; Enter [It] set host to upstreamvhost.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:34 @ 07/16/23 23:23:53.661&#xA;&lt; Exit [It] set host to upstreamvhost.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/upstreamvhost.go:34 @ 07/16/23 23:24:03.928 (10.302s)&#xA;&gt; Enter [AfterEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:03.928&#xA;&lt; Exit [AfterEach] [Annotations] upstream-vhost - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:04.364 (435ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] configmap stream-snippet should add value of stream-snippet via config map to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="35.0935104">
-              <system-err>&gt; Enter [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:04.366&#xA;&lt; Exit [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:12.746 (8.379s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:38 @ 07/16/23 23:24:12.746&#xA;&lt; Exit [BeforeEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:38 @ 07/16/23 23:24:16.814 (4.069s)&#xA;&gt; Enter [It] should add value of stream-snippet via config map to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:42 @ 07/16/23 23:24:16.814&#xA;&lt; Exit [It] should add value of stream-snippet via config map to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/stream_snippet.go:42 @ 07/16/23 23:24:39.062 (22.282s)&#xA;&gt; Enter [AfterEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:39.062&#xA;&lt; Exit [AfterEach] [Setting] configmap stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:39.426 (364ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-sync-events should create sync events (default)" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3765979">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:39.427&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:48.131 (8.704s)&#xA;&gt; Enter [It] should create sync events (default) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:35 @ 07/16/23 23:24:48.132&#xA;&lt; Exit [It] should create sync events (default) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:35 @ 07/16/23 23:25:02.405 (14.308s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:02.405&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:02.769 (364ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-service-external-name should ignore services of external-name type" classname="nginx-ingress-controller e2e suite" status="passed" time="42.5381596">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:02.775&#xA;&lt; Exit [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:11.181 (8.406s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:38 @ 07/16/23 23:25:11.181&#xA;&lt; Exit [BeforeEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:38 @ 07/16/23 23:25:24.327 (13.145s)&#xA;&gt; Enter [It] should ignore services of external-name type - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:52 @ 07/16/23 23:25:24.327&#xA;&lt; Exit [It] should ignore services of external-name type - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_service_external_name.go:52 @ 07/16/23 23:25:44.763 (20.471s)&#xA;&gt; Enter [AfterEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:44.763&#xA;&lt; Exit [AfterEach] [Flag] disable-service-external-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:45.279 (515ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] configuration-snippet drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34;" classname="nginx-ingress-controller e2e suite" status="passed" time="42.3957203">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:45.282&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:53.726 (8.444s)&#xA;&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 07/16/23 23:25:53.726&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 07/16/23 23:25:57.802 (4.077s)&#xA;&gt; Enter [It] drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:58 @ 07/16/23 23:25:57.803&#xA;&lt; Exit [It] drops snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations if disabled by admin&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:58 @ 07/16/23 23:26:27.099 (29.331s)&#xA;&gt; Enter [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:27.099&#xA;&lt; Exit [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:27.643 (544ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting max-age parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="35.0574883">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:27.646&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:36.154 (8.542s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:26:36.154&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:26:40.235 (4.081s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:26:40.235&#xA;Jul 16 23:26:49.946: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:26:51.943 (11.709s)&#xA;&gt; Enter [It] setting max-age parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:111 @ 07/16/23 23:26:51.944&#xA;&lt; Exit [It] setting max-age parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:111 @ 07/16/23 23:27:02.135 (10.226s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:02.135&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:02.635 (500ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured with a custom redirect param should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="27.2388441">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:02.637&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:10.976 (8.339s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:27:10.976&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:27:15.04 (4.064s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 07/16/23 23:27:15.04&#xA;&lt; Exit [BeforeEach] when external authentication is configured with a custom redirect param - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:651 @ 07/16/23 23:27:29.343 (14.303s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:687 @ 07/16/23 23:27:29.343&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:687 @ 07/16/23 23:27:29.355 (12ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:29.355&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:29.875 (520ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value and cookie should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="33.7956341">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:29.877&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:37.741 (7.898s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:27:37.741&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:27:45.891 (8.149s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:604 @ 07/16/23 23:27:45.891&#xA;STEP: routing requests to the canary upstream when header value does not match and cookie is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:630 @ 07/16/23 23:28:03.119&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:604 @ 07/16/23 23:28:03.125 (17.268s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:03.125&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:03.604 (479ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-real-ip should not trust X-Forwarded-For header when setting is false" classname="nginx-ingress-controller e2e suite" status="passed" time="37.1809584">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:03.605&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:11.902 (8.297s)&#xA;&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 07/16/23 23:28:11.902&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 07/16/23 23:28:23.063 (11.161s)&#xA;&gt; Enter [It] should not trust X-Forwarded-For header when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:78 @ 07/16/23 23:28:23.063&#xA;&lt; Exit [It] should not trust X-Forwarded-For header when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:78 @ 07/16/23 23:28:40.338 (17.309s)&#xA;&gt; Enter [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:40.338&#xA;&lt; Exit [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:40.752 (414ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates picks up the previously missing secret for a given ingress without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="33.2392362">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:40.754&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:49.068 (8.315s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:28:49.068&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:28:53.189 (4.121s)&#xA;&gt; Enter [It] picks up the previously missing secret for a given ingress without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:70 @ 07/16/23 23:28:53.189&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:94 @ 07/16/23 23:29:10.345&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:101 @ 07/16/23 23:29:13.397&#xA;&lt; Exit [It] picks up the previously missing secret for a given ingress without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:70 @ 07/16/23 23:29:13.425 (20.27s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:13.425&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:13.959 (534ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With watch-ingress-without-class flag should watch Ingress with no class and ignore ingress with a different class" classname="nginx-ingress-controller e2e suite" status="passed" time="38.5230922">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:13.961&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:22.387 (8.427s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:29:22.387&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:29:26.497 (4.11s)&#xA;&gt; Enter [BeforeEach] With watch-ingress-without-class flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:462 @ 07/16/23 23:29:26.497&#xA;&lt; Exit [BeforeEach] With watch-ingress-without-class flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:462 @ 07/16/23 23:29:34.509 (8.047s)&#xA;&gt; Enter [It] should watch Ingress with no class and ignore ingress with a different class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:482 @ 07/16/23 23:29:34.509&#xA;&lt; Exit [It] should watch Ingress with no class and ignore ingress with a different class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:482 @ 07/16/23 23:29:51.844 (17.335s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:51.844&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:52.449 (605ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - matching origin+port with wildcard origin" classname="nginx-ingress-controller e2e suite" status="passed" time="24.0234316">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:52.451&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:02.775 (10.363s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:30:02.775&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:30:08.866 (6.091s)&#xA;&gt; Enter [It] should allow - matching origin+port with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:488 @ 07/16/23 23:30:08.866&#xA;&lt; Exit [It] should allow - matching origin+port with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:488 @ 07/16/23 23:30:15.919 (7.053s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:15.919&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:16.435 (515ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a TLS enabled ingress when external authentication is configured should set the X-Forwarded-Port header to 443" classname="nginx-ingress-controller e2e suite" status="passed" time="58.3528016">
-              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:16.437&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:40.742 (24.37s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 07/16/23 23:30:40.742&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 07/16/23 23:30:57.46 (16.718s)&#xA;&gt; Enter [It] should set the X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:100 @ 07/16/23 23:30:57.46&#xA;&lt; Exit [It] should set the X-Forwarded-Port header to 443 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:100 @ 07/16/23 23:31:14.185 (16.763s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:14.185&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:14.687 (502ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] disables access logging for default backend" classname="nginx-ingress-controller e2e suite" status="skipped" time="8.8057568">
-              <skipped message="skipped - enable-access-log-for-default-backend"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:14.689&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:23.074 (8.386s)&#xA;&gt; Enter [It] disables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:105 @ 07/16/23 23:31:23.074&#xA;[SKIPPED] enable-access-log-for-default-backend&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:107 @ 07/16/23 23:31:23.075&#xA;&lt; Exit [It] disables access logging for default backend - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:105 @ 07/16/23 23:31:23.075 (0s)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:23.075&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:23.495 (420ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes consistently (down scaling of replicas vs. empty service)" classname="nginx-ingress-controller e2e suite" status="passed" time="50.1147385">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:23.497&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:32.125 (8.663s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:31:32.125&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:31:46.863 (14.738s)&#xA;&gt; Enter [It] handles endpoints only changes consistently (down scaling of replicas vs. empty service) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:125 @ 07/16/23 23:31:46.863&#xA;&lt; Exit [It] handles endpoints only changes consistently (down scaling of replicas vs. empty service) - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:125 @ 07/16/23 23:32:13.132 (26.303s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:13.132&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:13.542 (410ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-catch-all should allow Ingress with rules" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1741837">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:13.543&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:21.845 (8.301s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:32:21.845&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:32:32.94 (11.13s)&#xA;&gt; Enter [It] should allow Ingress with rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:123 @ 07/16/23 23:32:32.94&#xA;&lt; Exit [It] should allow Ingress with rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:123 @ 07/16/23 23:32:43.229 (10.289s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:43.229&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:43.683 (454ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should validate auth-tls-verify-client" classname="nginx-ingress-controller e2e suite" status="passed" time="28.3321117">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:43.686&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:52.383 (8.697s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:32:52.383&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:32:56.466 (4.083s)&#xA;&gt; Enter [It] should validate auth-tls-verify-client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:206 @ 07/16/23 23:32:56.466&#xA;&lt; Exit [It] should validate auth-tls-verify-client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:206 @ 07/16/23 23:33:11.547 (15.115s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:11.547&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:11.984 (436ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] enable-ssl-passthrough With enable-ssl-passthrough enabled should pass unknown traffic to default backend and handle known traffic" classname="nginx-ingress-controller e2e suite" status="passed" time="56.8061528">
-              <system-err>&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:11.986&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:20.45 (8.464s)&#xA;&gt; Enter [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 07/16/23 23:33:20.45&#xA;&lt; Exit [BeforeEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:39 @ 07/16/23 23:33:32.659 (12.244s)&#xA;&gt; Enter [It] should pass unknown traffic to default backend and handle known traffic - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:79 @ 07/16/23 23:33:32.659&#xA;Jul 16 23:34:02.788: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not noannotationnopassthrough.com&#xA;&lt; Exit [It] should pass unknown traffic to default backend and handle known traffic - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_passthrough.go:79 @ 07/16/23 23:34:08.035 (35.41s)&#xA;&gt; Enter [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:08.036&#xA;&lt; Exit [AfterEach] [Flag] enable-ssl-passthrough - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:08.724 (688ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity" classname="nginx-ingress-controller e2e suite" status="passed" time="22.996031">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:08.73&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:16.88 (8.151s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:34:16.881&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:34:20.959 (4.078s)&#xA;&gt; Enter [It] should enable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:35 @ 07/16/23 23:34:20.959&#xA;&lt; Exit [It] should enable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:35 @ 07/16/23 23:34:31.272 (10.348s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:31.272&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:31.691 (419ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 401 when accessing &#39;/&#39; unauthentication" classname="nginx-ingress-controller e2e suite" status="passed" time="32.2377172">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:31.694&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:41.1 (9.407s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 07/16/23 23:34:41.1&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 07/16/23 23:35:00.246 (19.146s)&#xA;&gt; Enter [It] should return status code 401 when accessing &#39;/&#39; unauthentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:54 @ 07/16/23 23:35:00.246&#xA;&lt; Exit [It] should return status code 401 when accessing &#39;/&#39; unauthentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:54 @ 07/16/23 23:35:03.378 (3.166s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:03.378&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:03.897 (519ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* proxy-ssl-location-only flag should change the nginx config server part" classname="nginx-ingress-controller e2e suite" status="passed" time="46.2279664">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:03.899&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:12.446 (8.548s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:35:12.446&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:35:16.511 (4.065s)&#xA;&gt; Enter [It] proxy-ssl-location-only flag should change the nginx config server part - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:150 @ 07/16/23 23:35:16.511&#xA;&lt; Exit [It] proxy-ssl-location-only flag should change the nginx config server part - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:150 @ 07/16/23 23:35:49.692 (33.215s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:49.692&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:50.092 (400ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] nginx-configuration fails when using alias directive" classname="nginx-ingress-controller e2e suite" status="passed" time="62.1597099">
-              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 07/16/23 23:35:50.093&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 07/16/23 23:35:52.103 (2.01s)&#xA;&gt; Enter [It] fails when using alias directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:115 @ 07/16/23 23:35:52.103&#xA;&lt; Exit [It] fails when using alias directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:115 @ 07/16/23 23:36:52.175 (1m0.14s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 07/16/23 23:36:52.175&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 07/16/23 23:36:52.185 (10ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress with different controller class" classname="nginx-ingress-controller e2e suite" status="passed" time="32.5241451">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:52.186&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:02.922 (10.77s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:37:02.922&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:37:07.012 (4.09s)&#xA;&gt; Enter [It] should ignore Ingress with different controller class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:104 @ 07/16/23 23:37:07.012&#xA;&lt; Exit [It] should ignore Ingress with different controller class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:104 @ 07/16/23 23:37:24.253 (17.242s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:24.253&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:24.676 (423ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] enable-access-log enable-rewrite-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="23.6910715">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:24.678&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:32.973 (8.329s)&#xA;&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 07/16/23 23:37:32.973&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 07/16/23 23:37:37.052 (4.079s)&#xA;&gt; Enter [It] set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:34 @ 07/16/23 23:37:37.052&#xA;&lt; Exit [It] set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:34 @ 07/16/23 23:37:47.815 (10.762s)&#xA;&gt; Enter [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:47.815&#xA;&lt; Exit [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:48.335 (520ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] backend status code 503 should return 503 when all backend service endpoints are unavailable" classname="nginx-ingress-controller e2e suite" status="passed" time="20.6114182">
-              <system-err>&gt; Enter [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:48.336&#xA;&lt; Exit [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:58.16 (9.824s)&#xA;&gt; Enter [It] should return 503 when all backend service endpoints are unavailable - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:54 @ 07/16/23 23:37:58.16&#xA;&lt; Exit [It] should return 503 when all backend service endpoints are unavailable - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:54 @ 07/16/23 23:38:08.445 (10.319s)&#xA;&gt; Enter [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:08.445&#xA;&lt; Exit [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:08.913 (468ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] block-* should block CIDRs defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="29.486236">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:08.914&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:16.27 (7.355s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 07/16/23 23:38:16.27&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 07/16/23 23:38:27.37 (11.1s)&#xA;&gt; Enter [It] should block CIDRs defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:38 @ 07/16/23 23:38:27.37&#xA;&lt; Exit [It] should block CIDRs defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:38 @ 07/16/23 23:38:37.659 (10.323s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:37.659&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:38.366 (708ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - GRPC authorization metadata should be overwritten by external auth response headers" classname="nginx-ingress-controller e2e suite" status="passed" time="31.3305949">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:38.369&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:50.759 (12.39s)&#xA;&gt; Enter [It] authorization metadata should be overwritten by external auth response headers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:126 @ 07/16/23 23:38:50.759&#xA;&lt; Exit [It] authorization metadata should be overwritten by external auth response headers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:126 @ 07/16/23 23:39:09.202 (18.477s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:09.202&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:09.666 (464ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-alias should return status code 200 for host &#39;foo&#39; and &#39;bar&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="27.6115644">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:09.667&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:20.364 (10.697s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 07/16/23 23:39:20.364&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 07/16/23 23:39:26.451 (6.087s)&#xA;&gt; Enter [It] should return status code 200 for host &#39;foo&#39; and &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:62 @ 07/16/23 23:39:26.451&#xA;&lt; Exit [It] should return status code 200 for host &#39;foo&#39; and &#39;bar&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:62 @ 07/16/23 23:39:36.677 (10.26s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:36.677&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:37.244 (568ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - FastCGI should add fastcgi_param in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="22.0350729">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:37.246&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:46.548 (9.301s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:39:46.548&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:39:48.593 (2.045s)&#xA;&gt; Enter [It] should add fastcgi_param in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:71 @ 07/16/23 23:39:48.593&#xA;&lt; Exit [It] should add fastcgi_param in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:71 @ 07/16/23 23:39:58.782 (10.188s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:58.782&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:59.281 (499ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should disable default modsecurity conf setting when modsecurity-snippet is specified" classname="nginx-ingress-controller e2e suite" status="passed" time="37.9327472">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:59.283&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:09.944 (10.696s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:40:09.944&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:40:14.019 (4.074s)&#xA;&gt; Enter [It] should disable default modsecurity conf setting when modsecurity-snippet is specified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:347 @ 07/16/23 23:40:14.019&#xA;&lt; Exit [It] should disable default modsecurity conf setting when modsecurity-snippet is specified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:347 @ 07/16/23 23:40:36.276 (22.292s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:36.276&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:37.147 (871ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log http-access-log-path &amp; stream-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="18.9275426">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:37.158&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:45.052 (7.894s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:80 @ 07/16/23 23:40:45.052&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:80 @ 07/16/23 23:40:55.399 (10.347s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:55.399&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:56.086 (686ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] whitelist-source-range should set valid ip whitelist range" classname="nginx-ingress-controller e2e suite" status="passed" time="23.1984008">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:56.088&#xA;&lt; Exit [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:04.49 (8.436s)&#xA;&gt; Enter [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:30 @ 07/16/23 23:41:04.49&#xA;&lt; Exit [BeforeEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:30 @ 07/16/23 23:41:08.564 (4.074s)&#xA;&gt; Enter [It] should set valid ip whitelist range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:34 @ 07/16/23 23:41:08.564&#xA;&lt; Exit [It] should set valid ip whitelist range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipwhitelist.go:34 @ 07/16/23 23:41:18.798 (10.233s)&#xA;&gt; Enter [AfterEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:18.798&#xA;&lt; Exit [AfterEach] [Annotations] whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:19.252 (455ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log stream-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="19.3127083">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:19.254&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:27.682 (8.428s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:67 @ 07/16/23 23:41:27.682&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:67 @ 07/16/23 23:41:37.904 (10.256s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:37.904&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:38.533 (629ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Debug CLI should list the backend servers" classname="nginx-ingress-controller e2e suite" status="passed" time="48.4766431">
-              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:34.181&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:48.294 (14.113s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 07/16/23 23:07:48.294&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 07/16/23 23:08:06.535 (18.275s)&#xA;&gt; Enter [It] should list the backend servers - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:37 @ 07/16/23 23:08:06.535&#xA;&lt; Exit [It] should list the backend servers - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:37 @ 07/16/23 23:08:19.035 (12.5s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:19.036&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:22.623 (3.587s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* does not crash when canary ingress has multiple paths to the same non-matching backend" classname="nginx-ingress-controller e2e suite" status="passed" time="36.8228593">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:22.634&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:33.298 (10.698s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:08:33.298&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:08:41.456 (8.158s)&#xA;&gt; Enter [It] does not crash when canary ingress has multiple paths to the same non-matching backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:915 @ 07/16/23 23:08:41.456&#xA;&lt; Exit [It] does not crash when canary ingress has multiple paths to the same non-matching backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:915 @ 07/16/23 23:08:58.789 (17.333s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:58.789&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:59.423 (634ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] denylist-source-range only allow explicitly allowed IPs, deny all others" classname="nginx-ingress-controller e2e suite" status="passed" time="36.4573542">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:59.425&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:07.036 (7.646s)&#xA;&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 07/16/23 23:09:07.036&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 07/16/23 23:09:11.131 (4.095s)&#xA;&gt; Enter [It] only allow explicitly allowed IPs, deny all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:86 @ 07/16/23 23:09:11.131&#xA;STEP: sending request from an explicitly denied IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:115 @ 07/16/23 23:09:28.355&#xA;STEP: sending request from an implicitly denied IP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:123 @ 07/16/23 23:09:28.363&#xA;STEP: sending request from an explicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:131 @ 07/16/23 23:09:28.369&#xA;STEP: sending request from an explicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:139 @ 07/16/23 23:09:28.381&#xA;&lt; Exit [It] only allow explicitly allowed IPs, deny all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:86 @ 07/16/23 23:09:35.394 (24.298s)&#xA;&gt; Enter [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:35.394&#xA;&lt; Exit [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:35.813 (419ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* Single canary Ingress should not use canary with domain as a server" classname="nginx-ingress-controller e2e suite" status="passed" time="33.535639">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:35.815&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:43.362 (7.548s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:09:43.362&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:09:51.533 (8.17s)&#xA;&gt; Enter [It] should not use canary with domain as a server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:891 @ 07/16/23 23:09:51.533&#xA;&lt; Exit [It] should not use canary with domain as a server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:891 @ 07/16/23 23:10:08.703 (17.205s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:08.703&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:09.316 (613ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-proxy-protocol should respect port passed by the PROXY Protocol" classname="nginx-ingress-controller e2e suite" status="passed" time="113.0726234">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:09.318&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:18.473 (9.154s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:10:18.473&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:10:29.549 (11.076s)&#xA;&gt; Enter [It] should respect port passed by the PROXY Protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:46 @ 07/16/23 23:10:29.549&#xA;&lt; Exit [It] should respect port passed by the PROXY Protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:46 @ 07/16/23 23:12:01.67 (1m32.267s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:01.67&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:02.208 (575ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-multi-accept should be enabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="12.0758019">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:02.214&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:10.539 (8.324s)&#xA;&gt; Enter [It] should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:31 @ 07/16/23 23:12:10.539&#xA;&lt; Exit [It] should be enabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:31 @ 07/16/23 23:12:13.724 (3.185s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:13.724&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:14.29 (566ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Debug CLI should produce valid JSON for /dbg general" classname="nginx-ingress-controller e2e suite" status="passed" time="20.7471759">
-              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:14.293&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:23.098 (8.805s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 07/16/23 23:12:23.098&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 07/16/23 23:12:27.239 (4.141s)&#xA;&gt; Enter [It] should produce valid JSON for /dbg general - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:85 @ 07/16/23 23:12:27.239&#xA;&lt; Exit [It] should produce valid JSON for /dbg general - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:85 @ 07/16/23 23:12:34.414 (7.21s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:34.414&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:35.005 (591ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure TLS protocol setting cipher suite" classname="nginx-ingress-controller e2e suite" status="passed" time="33.8713166">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:35.039&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:42.388 (7.349s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:12:42.388&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:12:46.475 (4.088s)&#xA;&gt; Enter [BeforeEach] should configure TLS protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:47 @ 07/16/23 23:12:46.475&#xA;Jul 16 23:12:56.021: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [BeforeEach] should configure TLS protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:47 @ 07/16/23 23:12:58.041 (11.565s)&#xA;&gt; Enter [It] setting cipher suite - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:65 @ 07/16/23 23:12:58.041&#xA;&lt; Exit [It] setting cipher suite - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:65 @ 07/16/23 23:13:08.414 (10.408s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:08.414&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:08.876 (461ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - single origin without port and origin with required port" classname="nginx-ingress-controller e2e suite" status="passed" time="21.0101717">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:08.877&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:18.056 (9.178s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:13:18.056&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:13:22.157 (4.101s)&#xA;&gt; Enter [It] should not allow - single origin without port and origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:405 @ 07/16/23 23:13:22.157&#xA;&lt; Exit [It] should not allow - single origin without port and origin with required port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:405 @ 07/16/23 23:13:29.225 (7.069s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:29.225&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:29.887 (662ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="41.6951339">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:29.89&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:39.107 (9.251s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:13:39.107&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:13:43.181 (4.074s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:36 @ 07/16/23 23:13:43.181&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:36 @ 07/16/23 23:14:10.942 (27.795s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:10.942&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:11.517 (575ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should exists opentelemetry directive when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="45.6981978">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:11.518&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:22.99 (11.472s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:14:22.99&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:14:27.23 (4.24s)&#xA;&gt; Enter [It] should exists opentelemetry directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:60 @ 07/16/23 23:14:27.23&#xA;&lt; Exit [It] should exists opentelemetry directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:60 @ 07/16/23 23:14:49.899 (22.703s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:49.899&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:57.182 (7.283s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:14:57.182&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:14:57.182 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to grpcs:// and use grpc_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="25.9519775">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:57.184&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:08.252 (11.102s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:15:08.252&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:15:12.39 (4.138s)&#xA;&gt; Enter [It] should set backend protocol to grpcs:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:79 @ 07/16/23 23:15:12.39&#xA;&lt; Exit [It] should set backend protocol to grpcs:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:79 @ 07/16/23 23:15:22.633 (10.243s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:22.633&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:23.102 (469ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not break functionality with extra domain" classname="nginx-ingress-controller e2e suite" status="passed" time="20.4639846">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:23.104&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:31.984 (8.914s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:15:31.984&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:15:36.044 (4.06s)&#xA;&gt; Enter [It] should not break functionality with extra domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:314 @ 07/16/23 23:15:36.044&#xA;&lt; Exit [It] should not break functionality with extra domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:314 @ 07/16/23 23:15:43.084 (7.04s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:43.084&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:43.533 (449ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to canary if canary weight is equal to canary weight total" classname="nginx-ingress-controller e2e suite" status="passed" time="35.5842679">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:43.534&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:53.243 (9.708s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:15:53.243&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:16:01.378 (8.135s)&#xA;&gt; Enter [It] should route requests only to canary if canary weight is equal to canary weight total - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:775 @ 07/16/23 23:16:01.378&#xA;&lt; Exit [It] should route requests only to canary if canary weight is equal to canary weight total - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:775 @ 07/16/23 23:16:18.568 (17.224s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:18.568&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:19.084 (516ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user with annotated ingress retains cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="39.746984">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:19.086&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:27.839 (8.752s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:16:27.839&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:16:31.857 (4.053s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 07/16/23 23:16:31.857&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 07/16/23 23:16:53.175 (21.318s)&#xA;&gt; Enter [It] user with annotated ingress retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:433 @ 07/16/23 23:16:53.175&#xA;&lt; Exit [It] user with annotated ingress retains cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:433 @ 07/16/23 23:16:58.37 (5.195s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:58.37&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:58.799 (429ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user retains cookie by default" classname="nginx-ingress-controller e2e suite" status="passed" time="45.394538">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:58.8&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:07.105 (8.339s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:17:07.105&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:17:15.232 (8.127s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 07/16/23 23:17:15.232&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 07/16/23 23:17:43.549 (28.352s)&#xA;&gt; Enter [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:326 @ 07/16/23 23:17:43.549&#xA;&lt; Exit [It] user retains cookie by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:326 @ 07/16/23 23:17:43.559 (9ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:43.559&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:44.126 (567ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Geoip2 should only allow requests from specific countries" classname="nginx-ingress-controller e2e suite" status="skipped" time="12.7332633">
-              <skipped message="skipped - GeoIP test are temporarily disabled"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:44.132&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:52.272 (8.14s)&#xA;&gt; Enter [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 07/16/23 23:17:52.272&#xA;&lt; Exit [BeforeEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:42 @ 07/16/23 23:17:56.337 (4.065s)&#xA;&gt; Enter [It] should only allow requests from specific countries - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:70 @ 07/16/23 23:17:56.338&#xA;[SKIPPED] GeoIP test are temporarily disabled&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:71 @ 07/16/23 23:17:56.338&#xA;&lt; Exit [It] should only allow requests from specific countries - /go/src/k8s.io/ingress-nginx/test/e2e/settings/geoip2.go:70 @ 07/16/23 23:17:56.338 (0s)&#xA;&gt; Enter [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:56.338&#xA;&lt; Exit [AfterEach] [Setting] Geoip2 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:56.866 (528ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured keeps processing new ingresses even if one of the existing ingresses is misconfigured" classname="nginx-ingress-controller e2e suite" status="passed" time="38.8089373">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:56.867&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:05.372 (8.539s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:18:05.372&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:18:09.472 (4.1s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:18:09.472&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:18:23.753 (14.281s)&#xA;&gt; Enter [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:505 @ 07/16/23 23:18:23.753&#xA;&lt; Exit [It] keeps processing new ingresses even if one of the existing ingresses is misconfigured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:505 @ 07/16/23 23:18:35.016 (11.297s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:35.016&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:35.607 (591ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-proxy-protocol should respect proto passed by the PROXY Protocol server port" classname="nginx-ingress-controller e2e suite" status="passed" time="111.3790498">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:35.609&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:43.138 (7.529s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:18:43.138&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:18:54.215 (11.077s)&#xA;&gt; Enter [It] should respect proto passed by the PROXY Protocol server port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:79 @ 07/16/23 23:18:54.216&#xA;&lt; Exit [It] should respect proto passed by the PROXY Protocol server port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:79 @ 07/16/23 23:20:26.407 (1m32.295s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:26.407&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:26.885 (478ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="36.264726">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:26.887&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:37.187 (10.334s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:20:37.187&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:20:45.389 (8.202s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:532 @ 07/16/23 23:20:45.389&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;DoCananry&#39; and header-value is &#39;DoCanary&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:557 @ 07/16/23 23:21:02.659&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:532 @ 07/16/23 23:21:02.665 (17.31s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:02.665&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:03.083 (418ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is not set" classname="nginx-ingress-controller e2e suite" status="passed" time="50.761596">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:03.085&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:11.612 (8.528s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:11.613&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:15.676 (4.064s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:21:15.676&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:21:30.005 (14.329s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:552 @ 07/16/23 23:21:30.005&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is not set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:552 @ 07/16/23 23:21:53.323 (23.352s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:53.323&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:53.812 (489ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should setup proxy cookies" classname="nginx-ingress-controller e2e suite" status="passed" time="24.5685705">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:53.814&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:03.724 (9.944s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:22:03.724&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:22:07.799 (4.075s)&#xA;&gt; Enter [It] should setup proxy cookies - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:215 @ 07/16/23 23:22:07.799&#xA;&lt; Exit [It] should setup proxy cookies - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:215 @ 07/16/23 23:22:17.991 (10.193s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:17.992&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:18.348 (357ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="63.0259539">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:18.35&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:25.849 (7.5s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:25.849&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:29.974 (4.125s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:22:29.975&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:22:35.051&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:22:45.228&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:22:55.444&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:23:05.609&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:23:20.804 (50.898s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:849 @ 07/16/23 23:23:20.804&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:849 @ 07/16/23 23:23:20.815 (11ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:20.815&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:21.307 (492ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class Without IngressClass Cluster scoped Permission should watch Ingress with correct annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="30.5078184">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:21.309&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:29.836 (8.527s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:23:29.836&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:23:33.883 (4.082s)&#xA;&gt; Enter [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 07/16/23 23:23:33.883&#xA;&lt; Exit [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 07/16/23 23:23:40.947 (7.064s)&#xA;&gt; Enter [It] should watch Ingress with correct annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:631 @ 07/16/23 23:23:40.947&#xA;&lt; Exit [It] should watch Ingress with correct annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:631 @ 07/16/23 23:23:51.186 (10.238s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:51.186&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:51.782 (596ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With specific ingress-class flags should ignore Ingress with no class and accept the correctly configured Ingresses" classname="nginx-ingress-controller e2e suite" status="passed" time="49.7669884">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:51.784&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:01.236 (9.487s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:24:01.236&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:24:07.344 (6.108s)&#xA;&gt; Enter [BeforeEach] With specific ingress-class flags - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:392 @ 07/16/23 23:24:07.344&#xA;&lt; Exit [BeforeEach] With specific ingress-class flags - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:392 @ 07/16/23 23:24:16.393 (9.049s)&#xA;&gt; Enter [It] should ignore Ingress with no class and accept the correctly configured Ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:413 @ 07/16/23 23:24:16.393&#xA;&lt; Exit [It] should ignore Ingress with no class and accept the correctly configured Ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:413 @ 07/16/23 23:24:40.653 (24.294s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:40.653&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:41.482 (829ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to grpc:// and use grpc_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="23.4733869">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:41.484&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:50.125 (8.641s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:24:50.125&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:24:54.192 (4.067s)&#xA;&gt; Enter [It] should set backend protocol to grpc:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:64 @ 07/16/23 23:24:54.192&#xA;&lt; Exit [It] should set backend protocol to grpc:// and use grpc_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:64 @ 07/16/23 23:25:04.321 (10.163s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:04.321&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:04.923 (601ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not break functionality" classname="nginx-ingress-controller e2e suite" status="passed" time="19.8245701">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:04.925&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:13.199 (8.274s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:25:13.199&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:25:17.26 (4.061s)&#xA;&gt; Enter [It] should not break functionality - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:267 @ 07/16/23 23:25:17.26&#xA;&lt; Exit [It] should not break functionality - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:267 @ 07/16/23 23:25:24.298 (7.039s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:24.298&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:24.749 (451ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity through the config map" classname="nginx-ingress-controller e2e suite" status="passed" time="42.5903439">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:24.752&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:33.474 (8.756s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:25:33.474&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:25:37.542 (4.067s)&#xA;&gt; Enter [It] should enable modsecurity through the config map - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:264 @ 07/16/23 23:25:37.542&#xA;&lt; Exit [It] should enable modsecurity through the config map - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:264 @ 07/16/23 23:26:06.773 (29.265s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:06.773&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:07.274 (502ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log access-log-path use the default configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="12.105545">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:07.276&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:15.787 (8.511s)&#xA;&gt; Enter [It] use the default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:32 @ 07/16/23 23:26:15.787&#xA;&lt; Exit [It] use the default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:32 @ 07/16/23 23:26:18.987 (3.2s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:18.987&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:19.381 (394ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not match" classname="nginx-ingress-controller e2e suite" status="passed" time="20.1295472">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:19.383&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:27.733 (8.35s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:26:27.733&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:26:31.801 (4.102s)&#xA;&gt; Enter [It] should not match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:338 @ 07/16/23 23:26:31.801&#xA;&lt; Exit [It] should not match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:338 @ 07/16/23 23:26:38.85 (7.05s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:38.85&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:39.478 (628ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format-escape-json enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="33.5727472">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:39.479&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:48.115 (8.636s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:26:48.115&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:26:59.194 (11.079s)&#xA;&gt; Enter [It] log-format-escape-json enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:82 @ 07/16/23 23:26:59.195&#xA;&lt; Exit [It] log-format-escape-json enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:82 @ 07/16/23 23:27:12.403 (13.243s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:12.403&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:13.018 (615ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Load Balancer] round-robin should evenly distribute requests with round-robin (default algorithm)" classname="nginx-ingress-controller e2e suite" status="passed" time="150.3759678">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:13.019&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:21.582 (8.563s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:34 @ 07/16/23 23:27:21.582&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:34 @ 07/16/23 23:27:34.703 (13.156s)&#xA;&gt; Enter [It] should evenly distribute requests with round-robin (default algorithm) - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:39 @ 07/16/23 23:27:34.703&#xA;&lt; Exit [It] should evenly distribute requests with round-robin (default algorithm) - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/round_robin.go:39 @ 07/16/23 23:29:42.768 (2m8.202s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:42.769&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] round-robin - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:43.223 (454ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinitymode Check persistent affinity mode" classname="nginx-ingress-controller e2e suite" status="passed" time="136.5576609">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:43.227&#xA;&lt; Exit [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:53.678 (10.45s)&#xA;&gt; Enter [It] Check persistent affinity mode - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:67 @ 07/16/23 23:29:53.678&#xA;&lt; Exit [It] Check persistent affinity mode - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:67 @ 07/16/23 23:31:59.236 (2m5.735s)&#xA;&gt; Enter [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:59.236&#xA;&lt; Exit [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:59.608 (372ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if mainline ingress is created before the canary ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="34.0670579">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:59.609&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:07.878 (8.303s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:32:07.878&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:32:16 (8.122s)&#xA;&gt; Enter [It] should route requests to the correct upstream if mainline ingress is created before the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:161 @ 07/16/23 23:32:16&#xA;STEP: routing requests destined for the mainline ingress to the maineline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:185 @ 07/16/23 23:32:33.194&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:195 @ 07/16/23 23:32:33.2&#xA;&lt; Exit [It] should route requests to the correct upstream if mainline ingress is created before the canary ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:161 @ 07/16/23 23:32:33.205 (17.24s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:33.206&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:33.607 (402ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-alias should return status code 200 for hosts defined in two ingresses, different path with one alias" classname="nginx-ingress-controller e2e suite" status="passed" time="28.3347056">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:33.609&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:42.047 (8.438s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 07/16/23 23:32:42.047&#xA;&lt; Exit [BeforeEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:32 @ 07/16/23 23:32:44.131 (2.084s)&#xA;&gt; Enter [It] should return status code 200 for hosts defined in two ingresses, different path with one alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:87 @ 07/16/23 23:32:44.131&#xA;&lt; Exit [It] should return status code 200 for hosts defined in two ingresses, different path with one alias - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/alias.go:87 @ 07/16/23 23:33:01.382 (17.284s)&#xA;&gt; Enter [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:01.382&#xA;&lt; Exit [AfterEach] [Annotations] server-alias - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:01.909 (527ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured supports requests with domain with trailing dot" classname="nginx-ingress-controller e2e suite" status="passed" time="37.4747837">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:01.911&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:09.441 (7.531s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:33:09.441&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:33:13.505 (4.063s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:33:13.505&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 07/16/23 23:33:30.702&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 07/16/23 23:33:38.854&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:33:38.882 (25.412s)&#xA;&gt; Enter [It] supports requests with domain with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:145 @ 07/16/23 23:33:38.883&#xA;&lt; Exit [It] supports requests with domain with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:145 @ 07/16/23 23:33:38.915 (33ms)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:38.915&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:39.351 (436ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] from-to-www-redirect should redirect from www HTTP to HTTP" classname="nginx-ingress-controller e2e suite" status="passed" time="23.0666225">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:39.353&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:47.674 (8.321s)&#xA;&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 07/16/23 23:33:47.674&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 07/16/23 23:33:51.753 (4.079s)&#xA;&gt; Enter [It] should redirect from www HTTP to HTTP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:38 @ 07/16/23 23:33:51.753&#xA;STEP: setting up server for redirect from www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:39 @ 07/16/23 23:33:51.753&#xA;STEP: sending request to www.fromtowwwredirect.bar.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:55 @ 07/16/23 23:34:01.902&#xA;&lt; Exit [It] should redirect from www HTTP to HTTP - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:38 @ 07/16/23 23:34:01.908 (10.19s)&#xA;&gt; Enter [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:01.908&#xA;&lt; Exit [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:02.385 (477ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] mirror-* should disable mirror-request-body" classname="nginx-ingress-controller e2e suite" status="passed" time="23.1405183">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:02.387&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:10.798 (8.412s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 07/16/23 23:34:10.798&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 07/16/23 23:34:14.981 (4.183s)&#xA;&gt; Enter [It] should disable mirror-request-body - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:67 @ 07/16/23 23:34:14.981&#xA;&lt; Exit [It] should disable mirror-request-body - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:67 @ 07/16/23 23:34:25.139 (10.158s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:25.139&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:25.527 (388ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should be disabled by default" classname="nginx-ingress-controller e2e suite" status="passed" time="12.2326973">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:25.529&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:34.003 (8.508s)&#xA;&gt; Enter [It] should be disabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:32 @ 07/16/23 23:34:34.003&#xA;&lt; Exit [It] should be disabled by default - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:32 @ 07/16/23 23:34:37.287 (3.284s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:37.287&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:37.727 (440ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] service-upstream when enabling in the configmap should use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="30.9028224">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:37.729&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:46.195 (8.467s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 07/16/23 23:34:46.195&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 07/16/23 23:34:50.299 (4.103s)&#xA;&gt; Enter [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:70 @ 07/16/23 23:34:50.299&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:82 @ 07/16/23 23:35:07.674&#xA;STEP: checking if the Service Cluster IP and Port are used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:89 @ 07/16/23 23:35:07.684&#xA;&lt; Exit [It] should use the Service Cluster IP and Port  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:70 @ 07/16/23 23:35:07.935 (17.671s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:07.935&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:08.597 (662ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] global-options should have worker_rlimit_nofile option and be independent on amount of worker processes" classname="nginx-ingress-controller e2e suite" status="passed" time="19.007426">
-              <system-err>&gt; Enter [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:08.599&#xA;&lt; Exit [BeforeEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:16.925 (8.326s)&#xA;&gt; Enter [It] should have worker_rlimit_nofile option and be independent on amount of worker processes - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:38 @ 07/16/23 23:35:16.925&#xA;&lt; Exit [It] should have worker_rlimit_nofile option and be independent on amount of worker processes - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_options.go:38 @ 07/16/23 23:35:27.115 (10.19s)&#xA;&gt; Enter [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:27.115&#xA;&lt; Exit [AfterEach] global-options - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:27.606 (491ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Load Balancer] load-balance should apply the configmap load-balance setting" classname="nginx-ingress-controller e2e suite" status="passed" time="30.9142383">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:27.607&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:36.182 (8.609s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:31 @ 07/16/23 23:35:36.182&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:31 @ 07/16/23 23:35:40.286 (4.104s)&#xA;&gt; Enter [It] should apply the configmap load-balance setting - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:35 @ 07/16/23 23:35:40.286&#xA;&lt; Exit [It] should apply the configmap load-balance setting - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/configmap.go:35 @ 07/16/23 23:35:57.881 (17.595s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:57.882&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] load-balance - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:58.487 (606ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [TCP] tcp-services should expose a TCP service" classname="nginx-ingress-controller e2e suite" status="passed" time="22.2822975">
-              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:58.488&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:08.838 (10.384s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 07/16/23 23:36:08.838&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 07/16/23 23:36:08.844 (7ms)&#xA;&gt; Enter [It] should expose a TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:46 @ 07/16/23 23:36:08.844&#xA;&lt; Exit [It] should expose a TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:46 @ 07/16/23 23:36:20.132 (11.288s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:20.132&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:20.736 (604ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] custom HTTP and HTTPS ports with a plain HTTP ingress should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port" classname="nginx-ingress-controller e2e suite" status="passed" time="30.4581023">
-              <system-err>&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:20.747&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:35.265 (14.553s)&#xA;&gt; Enter [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 07/16/23 23:36:35.265&#xA;&lt; Exit [BeforeEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:38 @ 07/16/23 23:36:40.48 (5.214s)&#xA;&gt; Enter [It] should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:48 @ 07/16/23 23:36:40.48&#xA;&lt; Exit [It] should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port - /go/src/k8s.io/ingress-nginx/test/e2e/settings/listen_nondefault_ports.go:48 @ 07/16/23 23:36:50.676 (10.196s)&#xA;&gt; Enter [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:50.676&#xA;&lt; Exit [AfterEach] [Flag] custom HTTP and HTTPS ports - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:51.171 (494ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="49.5470757">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:51.175&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:05.11 (13.969s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:37:05.11&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:37:07.17 (2.06s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:67 @ 07/16/23 23:37:07.17&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:67 @ 07/16/23 23:37:39.655 (32.519s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:39.655&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:40.653 (998ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-catch-all should ignore catch all Ingress with backend" classname="nginx-ingress-controller e2e suite" status="passed" time="44.0523557">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:40.661&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:51.734 (11.073s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:37:51.734&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:38:03.848 (12.148s)&#xA;&gt; Enter [It] should ignore catch all Ingress with backend - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:50 @ 07/16/23 23:38:03.849&#xA;&lt; Exit [It] should ignore catch all Ingress with backend - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:50 @ 07/16/23 23:38:24.234 (20.386s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:24.234&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:24.679 (445ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName without a port defined" classname="nginx-ingress-controller e2e suite" status="passed" time="19.7847078">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:24.68&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:32.938 (8.292s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName without a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:95 @ 07/16/23 23:38:32.938&#xA;&lt; Exit [It] should return 200 for service type=ExternalName without a port defined - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:95 @ 07/16/23 23:38:43.94 (11.002s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:43.94&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:44.431 (490ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Nil Service Backend should return 404 when backend service is nil" classname="nginx-ingress-controller e2e suite" status="passed" time="30.5641053">
-              <system-err>&gt; Enter [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:44.432&#xA;&lt; Exit [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:52.684 (8.252s)&#xA;&gt; Enter [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:34 @ 07/16/23 23:38:52.684&#xA;&lt; Exit [BeforeEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:34 @ 07/16/23 23:38:56.739 (4.055s)&#xA;&gt; Enter [It] should return 404 when backend service is nil - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:38 @ 07/16/23 23:38:56.739&#xA;STEP: setting an ingress with a nil backend - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:39 @ 07/16/23 23:38:56.739&#xA;&lt; Exit [It] should return 404 when backend service is nil - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_nil_backend.go:38 @ 07/16/23 23:39:14.138 (17.433s)&#xA;&gt; Enter [AfterEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:14.138&#xA;&lt; Exit [AfterEach] [Service] Nil Service Backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:14.962 (824ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow headers for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="24.1079978">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:14.965&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:24.07 (9.105s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:39:24.07&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:39:28.143 (4.073s)&#xA;&gt; Enter [It] should allow headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:137 @ 07/16/23 23:39:28.143&#xA;&lt; Exit [It] should allow headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:137 @ 07/16/23 23:39:38.36 (10.251s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:38.36&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:39.039 (679ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration configures balancer Lua middleware correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="31.2447458">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:39.042&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:48.893 (9.851s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:39:48.893&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:40:03.237 (14.378s)&#xA;&gt; Enter [It] configures balancer Lua middleware correctly - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:50 @ 07/16/23 23:40:03.237&#xA;&lt; Exit [It] configures balancer Lua middleware correctly - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:50 @ 07/16/23 23:40:09.71 (6.473s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:09.71&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:10.252 (542ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates picks up the certificate when we add TLS spec to existing ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="29.0878012">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:10.253&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:19.088 (8.835s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:40:19.088&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:40:23.173 (4.085s)&#xA;&gt; Enter [It] picks up the certificate when we add TLS spec to existing ingress - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:45 @ 07/16/23 23:40:23.173&#xA;&lt; Exit [It] picks up the certificate when we add TLS spec to existing ingress - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:45 @ 07/16/23 23:40:38.779 (15.64s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:38.779&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:39.307 (527ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by cookie respects always and never values" classname="nginx-ingress-controller e2e suite" status="passed" time="62.6425084">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:39.308&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:47.706 (8.397s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:40:47.706&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:40:55.919 (8.214s)&#xA;&gt; Enter [It] respects always and never values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:643 @ 07/16/23 23:40:55.919&#xA;STEP: routing requests to the canary upstream when cookie is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:667 @ 07/16/23 23:41:13.225&#xA;STEP: routing requests to the mainline upstream when cookie is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:678 @ 07/16/23 23:41:21.42&#xA;STEP: routing requests to the mainline upstream when cookie is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:689 @ 07/16/23 23:41:31.387&#xA;&lt; Exit [It] respects always and never values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:643 @ 07/16/23 23:41:41.387 (45.536s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:41.387&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:41.882 (496ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should set cors max-age" classname="nginx-ingress-controller e2e suite" status="passed" time="44.4955697">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:34.174&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:47.886 (13.712s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:07:47.886&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:08:05.964 (18.112s)&#xA;&gt; Enter [It] should set cors max-age - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:78 @ 07/16/23 23:08:05.964&#xA;&lt; Exit [It] should set cors max-age - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:78 @ 07/16/23 23:08:16.513 (10.55s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:16.513&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:18.635 (2.121s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - FastCGI should add fastcgi_index in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="29.4516908">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:18.644&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:33.277 (14.667s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:08:33.277&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:08:37.346 (4.069s)&#xA;&gt; Enter [It] should add fastcgi_index in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:54 @ 07/16/23 23:08:37.346&#xA;&lt; Exit [It] should add fastcgi_index in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:54 @ 07/16/23 23:08:47.641 (10.296s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:47.641&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:48.061 (420ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Memory Leak] Dynamic Certificates should not leak memory from ingress SSL certificates or configuration updates" classname="nginx-ingress-controller e2e suite" status="skipped" time="0">
-              <skipped message="skipped"></skipped>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to off" classname="nginx-ingress-controller e2e suite" status="passed" time="25.8486686">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:48.065&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:56.738 (8.673s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:08:56.738&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:09:02.831 (6.128s)&#xA;&gt; Enter [It] should set proxy_redirect to off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:36 @ 07/16/23 23:09:02.831&#xA;&lt; Exit [It] should set proxy_redirect to off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:36 @ 07/16/23 23:09:13.19 (10.358s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:13.19&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:13.879 (690ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 503 when authentication is configured with an invalid secret" classname="nginx-ingress-controller e2e suite" status="passed" time="24.7940821">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:13.881&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:23.851 (9.97s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:09:23.851&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:09:27.921 (4.07s)&#xA;&gt; Enter [It] should return status code 503 when authentication is configured with an invalid secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:65 @ 07/16/23 23:09:27.921&#xA;&lt; Exit [It] should return status code 503 when authentication is configured with an invalid secret - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:65 @ 07/16/23 23:09:38.098 (10.211s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:38.098&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:38.641 (542ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-send-timeout should set valid proxy send timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="30.2675265">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:38.642&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:47.013 (8.37s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 07/16/23 23:09:47.013&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 07/16/23 23:09:51.1 (4.087s)&#xA;&gt; Enter [It] should set valid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:36 @ 07/16/23 23:09:51.1&#xA;&lt; Exit [It] should set valid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:36 @ 07/16/23 23:10:08.284 (17.218s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:08.284&#xA;&lt; Exit [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:08.876 (592ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] stream-snippet should add value of stream-snippet to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="28.2197321">
-              <system-err>&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:08.879&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:17.058 (8.179s)&#xA;&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 07/16/23 23:10:17.058&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 07/16/23 23:10:21.245 (4.187s)&#xA;&gt; Enter [It] should add value of stream-snippet to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:41 @ 07/16/23 23:10:21.245&#xA;&lt; Exit [It] should add value of stream-snippet to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:41 @ 07/16/23 23:10:36.438 (15.228s)&#xA;&gt; Enter [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:36.438&#xA;&lt; Exit [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:37.064 (626ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should set cache_key when external auth cache is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="23.4640268">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:37.067&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:45.508 (8.441s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:10:45.508&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:10:49.586 (4.077s)&#xA;&gt; Enter [It] should set cache_key when external auth cache is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:322 @ 07/16/23 23:10:49.586&#xA;&lt; Exit [It] should set cache_key when external auth cache is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:322 @ 07/16/23 23:10:59.919 (10.333s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:59.919&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:00.531 (612ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] redirect to HTTPS should redirect from HTTP to HTTPS when secret is missing" classname="nginx-ingress-controller e2e suite" status="passed" time="26.4065312">
-              <system-err>&gt; Enter [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:00.533&#xA;&lt; Exit [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:09.091 (8.614s)&#xA;&gt; Enter [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:32 @ 07/16/23 23:11:09.091&#xA;&lt; Exit [BeforeEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:32 @ 07/16/23 23:11:13.182 (4.091s)&#xA;&gt; Enter [It] should redirect from HTTP to HTTPS when secret is missing - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:36 @ 07/16/23 23:11:13.182&#xA;&lt; Exit [It] should redirect from HTTP to HTTPS when secret is missing - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/http_redirect.go:36 @ 07/16/23 23:11:26.418 (13.236s)&#xA;&gt; Enter [AfterEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:26.418&#xA;&lt; Exit [AfterEach] [SSL] redirect to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:26.883 (466ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] custom-http-errors configures Nginx correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="50.2990807">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:26.886&#xA;&lt; Exit [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:35.167 (8.337s)&#xA;&gt; Enter [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:37 @ 07/16/23 23:11:35.167&#xA;&lt; Exit [BeforeEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:37 @ 07/16/23 23:11:39.249 (4.082s)&#xA;&gt; Enter [It] configures Nginx correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:41 @ 07/16/23 23:11:39.249&#xA;STEP: turning on proxy_intercept_errors directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:59 @ 07/16/23 23:11:49.509&#xA;STEP: configuring error_page directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:62 @ 07/16/23 23:11:49.509&#xA;STEP: creating error locations - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:67 @ 07/16/23 23:11:49.509&#xA;STEP: updating configuration when only custom-http-error value changes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:72 @ 07/16/23 23:11:49.509&#xA;STEP: ignoring duplicate values (503 in this case) per server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:90 @ 07/16/23 23:11:55.803&#xA;STEP: using the custom default-backend from annotation for upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:102 @ 07/16/23 23:12:06.081&#xA;&lt; Exit [It] configures Nginx correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/customhttperrors.go:41 @ 07/16/23 23:12:16.315 (37.103s)&#xA;&gt; Enter [AfterEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:16.315&#xA;&lt; Exit [AfterEach] [Annotations] custom-http-errors - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:17.092 (777ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* with invalid auth-url should deny whole location should return 503 (location was denied)" classname="nginx-ingress-controller e2e suite" status="passed" time="23.9837494">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:17.094&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:26.253 (9.159s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:12:26.253&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:12:30.38 (4.127s)&#xA;&gt; Enter [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 07/16/23 23:12:30.38&#xA;&lt; Exit [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 07/16/23 23:12:40.55 (10.205s)&#xA;&gt; Enter [It] should return 503 (location was denied) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:879 @ 07/16/23 23:12:40.55&#xA;&lt; Exit [It] should return 503 (location was denied) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:879 @ 07/16/23 23:12:40.557 (7ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:40.557&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:41.043 (485ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity when enable-owasp-modsecurity-crs is set to true" classname="nginx-ingress-controller e2e suite" status="passed" time="42.2364547">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:41.045&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:49.182 (8.137s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:12:49.182&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:12:53.256 (4.074s)&#xA;&gt; Enter [It] should enable modsecurity when enable-owasp-modsecurity-crs is set to true - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:225 @ 07/16/23 23:12:53.256&#xA;&lt; Exit [It] should enable modsecurity when enable-owasp-modsecurity-crs is set to true - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:225 @ 07/16/23 23:13:22.75 (29.529s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:22.751&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:23.247 (496ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] OCSP should enable OCSP and contain stapling information in the connection" classname="nginx-ingress-controller e2e suite" status="passed" time="56.586004">
-              <system-err>&gt; Enter [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:23.249&#xA;&lt; Exit [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:32.429 (9.214s)&#xA;&gt; Enter [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:45 @ 07/16/23 23:13:32.429&#xA;&lt; Exit [BeforeEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:45 @ 07/16/23 23:13:36.507 (4.079s)&#xA;&gt; Enter [It] should enable OCSP and contain stapling information in the connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:49 @ 07/16/23 23:13:36.507&#xA;STEP: running cfssl gencert -initca ca_csr.json | cfssljson -bare ca - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 07/16/23 23:13:43.545&#xA;STEP: running cfssl gencert -ca ca.pem -ca-key ca-key.pem -config=cfssl_config.json -profile=intermediate intermediate_ca_csr.json | cfssljson -bare intermediate_ca - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 07/16/23 23:13:43.952&#xA;STEP: running cfssl gencert -ca intermediate_ca.pem -ca-key intermediate_ca-key.pem -config=cfssl_config.json -profile=ocsp ocsp_csr.json | cfssljson -bare ocsp - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:216 @ 07/16/23 23:13:44.496&#xA;STEP: running cfssl serve -db-config=db-config.json -ca-key=intermediate_ca-key.pem -ca=intermediate_ca.pem -config=cfssl_config.json -responder=ocsp.pem -responder-key=ocsp-key.pem - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:228 @ 07/16/23 23:13:44.802&#xA;STEP: running cfssl gencert -remote=localhost -profile=server leaf_csr.json | cfssljson -bare leaf - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:238 @ 07/16/23 23:13:49.804&#xA;STEP: running cfssl ocsprefresh -ca intermediate_ca.pem -responder=ocsp.pem -responder-key=ocsp-key.pem -db-config=db-config.json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:252 @ 07/16/23 23:13:50.312&#xA;&lt; Exit [It] should enable OCSP and contain stapling information in the connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ocsp/ocsp.go:49 @ 07/16/23 23:14:19.018 (42.545s)&#xA;&gt; Enter [AfterEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:19.019&#xA;&lt; Exit [AfterEach] [Setting] OCSP - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:19.766 (748ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] satisfy should configure satisfy directive correctly" classname="nginx-ingress-controller e2e suite" status="passed" time="39.1485666">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:19.784&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:28.844 (9.06s)&#xA;&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 07/16/23 23:14:28.844&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 07/16/23 23:14:32.923 (4.113s)&#xA;&gt; Enter [It] should configure satisfy directive correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:42 @ 07/16/23 23:14:32.923&#xA;&lt; Exit [It] should configure satisfy directive correctly - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:42 @ 07/16/23 23:14:58.308 (25.386s)&#xA;&gt; Enter [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:58.309&#xA;&lt; Exit [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:58.898 (590ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should enable opentracing using zipkin" classname="nginx-ingress-controller e2e suite" status="passed" time="32.8250242">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:58.904&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:07.074 (8.204s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:15:07.074&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:15:11.143 (4.069s)&#xA;&gt; Enter [It] should enable opentracing using zipkin - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:160 @ 07/16/23 23:15:11.143&#xA;&lt; Exit [It] should enable opentracing using zipkin - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:160 @ 07/16/23 23:15:31.188 (20.046s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:31.189&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:31.695 (506ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:15:31.695&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:15:31.695 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - GRPC should return OK for service with backend protocol GRPC" classname="nginx-ingress-controller e2e suite" status="passed" time="25.1184251">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:31.698&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:40.015 (8.352s)&#xA;&gt; Enter [It] should return OK for service with backend protocol GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:68 @ 07/16/23 23:15:40.015&#xA;&lt; Exit [It] should return OK for service with backend protocol GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:68 @ 07/16/23 23:15:56.386 (16.37s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:56.386&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:56.782 (396ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured falls back to using default certificate when secret gets deleted without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="42.4509444">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:56.784&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:04.113 (7.363s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:16:04.113&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:16:08.211 (4.099s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:16:08.211&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 07/16/23 23:16:25.445&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 07/16/23 23:16:33.599&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:16:33.62 (25.443s)&#xA;&gt; Enter [It] falls back to using default certificate when secret gets deleted without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:185 @ 07/16/23 23:16:33.62&#xA;STEP: serving the default certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:204 @ 07/16/23 23:16:38.67&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:214 @ 07/16/23 23:16:38.72&#xA;&lt; Exit [It] falls back to using default certificate when secret gets deleted without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:185 @ 07/16/23 23:16:38.72 (5.1s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:38.72&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:39.166 (446ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] nginx-configuration fails when using root directive" classname="nginx-ingress-controller e2e suite" status="passed" time="62.166271">
-              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 07/16/23 23:16:39.168&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 07/16/23 23:16:41.179 (2.011s)&#xA;&gt; Enter [It] fails when using root directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:124 @ 07/16/23 23:16:41.179&#xA;&lt; Exit [It] fails when using root directive - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:124 @ 07/16/23 23:17:41.25 (1m0.14s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 07/16/23 23:17:41.25&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 07/16/23 23:17:41.266 (16ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set proxy_redirect to hello.com goodbye.com" classname="nginx-ingress-controller e2e suite" status="passed" time="22.8308762">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:41.269&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:49.268 (7.999s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:17:49.268&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:17:53.439 (4.171s)&#xA;&gt; Enter [It] should set proxy_redirect to hello.com goodbye.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:68 @ 07/16/23 23:17:53.439&#xA;&lt; Exit [It] should set proxy_redirect to hello.com goodbye.com - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:68 @ 07/16/23 23:18:03.611 (10.206s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:03.611&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:04.065 (454ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when host part of auth-url contains a variable" classname="nginx-ingress-controller e2e suite" status="passed" time="49.4074574">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:04.067&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:11.387 (7.321s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:18:11.387&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:18:15.513 (4.126s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:18:15.513&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:18:29.758 (14.244s)&#xA;&gt; Enter [It] should not create additional upstream block when host part of auth-url contains a variable - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:570 @ 07/16/23 23:18:29.758&#xA;&lt; Exit [It] should not create additional upstream block when host part of auth-url contains a variable - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:570 @ 07/16/23 23:18:52.938 (23.215s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:52.938&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:53.44 (502ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not break functionality - without `*`" classname="nginx-ingress-controller e2e suite" status="passed" time="20.0099787">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:53.442&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:01.722 (8.314s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:19:01.722&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:19:05.782 (4.06s)&#xA;&gt; Enter [It] should not break functionality - without `*` - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:291 @ 07/16/23 23:19:05.782&#xA;&lt; Exit [It] should not break functionality - without `*` - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:291 @ 07/16/23 23:19:12.827 (7.045s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:12.827&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:13.418 (591ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-http-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="30.3784723">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:13.419&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:21.929 (8.511s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 07/16/23 23:19:21.93&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 07/16/23 23:19:26.01 (4.081s)&#xA;&gt; Enter [It] disable-http-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:53 @ 07/16/23 23:19:26.011&#xA;&lt; Exit [It] disable-http-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:53 @ 07/16/23 23:19:43.294 (17.318s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:43.294&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:43.763 (468ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should not exists opentelemetry_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="32.0100399">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:43.765&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:53.125 (9.36s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:19:53.125&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:19:57.249 (4.124s)&#xA;&gt; Enter [It] should not exists opentelemetry_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:89 @ 07/16/23 23:19:57.249&#xA;&lt; Exit [It] should not exists opentelemetry_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:89 @ 07/16/23 23:20:14.861 (17.646s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:14.861&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:15.741 (880ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:20:15.741&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:20:15.741 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] DeepInspection should drop whole ingress if one path matches invalid regex" classname="nginx-ingress-controller e2e suite" status="passed" time="30.3802146">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:15.743&#xA;&lt; Exit [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:24.398 (8.655s)&#xA;&gt; Enter [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:30 @ 07/16/23 23:20:24.398&#xA;&lt; Exit [BeforeEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:30 @ 07/16/23 23:20:28.465 (4.067s)&#xA;&gt; Enter [It] should drop whole ingress if one path matches invalid regex - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:34 @ 07/16/23 23:20:28.465&#xA;&lt; Exit [It] should drop whole ingress if one path matches invalid regex - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/deep_inspection.go:34 @ 07/16/23 23:20:45.696 (17.265s)&#xA;&gt; Enter [AfterEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:45.696&#xA;&lt; Exit [AfterEach] [Ingress] DeepInspection - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:46.089 (393ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keep alive connection timeout to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="30.472846">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:46.09&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:54.488 (8.398s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:20:54.488&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:21:05.565 (11.111s)&#xA;&gt; Enter [It] should set keep alive connection timeout to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:68 @ 07/16/23 23:21:05.565&#xA;&lt; Exit [It] should set keep alive connection timeout to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:68 @ 07/16/23 23:21:15.847 (10.282s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:15.847&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:16.528 (681ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] http2-push-preload enable the http2-push-preload directive" classname="nginx-ingress-controller e2e suite" status="passed" time="25.0381477">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:16.53&#xA;&lt; Exit [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:26.755 (10.225s)&#xA;&gt; Enter [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:30 @ 07/16/23 23:21:26.755&#xA;&lt; Exit [BeforeEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:30 @ 07/16/23 23:21:30.816 (4.061s)&#xA;&gt; Enter [It] enable the http2-push-preload directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:34 @ 07/16/23 23:21:30.816&#xA;&lt; Exit [It] enable the http2-push-preload directive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/http2pushpreload.go:34 @ 07/16/23 23:21:41.003 (10.222s)&#xA;&gt; Enter [AfterEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:41.003&#xA;&lt; Exit [AfterEach] [Annotations] http2-push-preload - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:41.534 (531ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName using a port name" classname="nginx-ingress-controller e2e suite" status="passed" time="19.445075">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:41.538&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:50.229 (8.691s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName using a port name - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:184 @ 07/16/23 23:21:50.229&#xA;&lt; Exit [It] should return 200 for service type=ExternalName using a port name - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:184 @ 07/16/23 23:22:00.623 (10.393s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:00.623&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:00.983 (361ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check server names hash size should set server_names_hash_bucket_size" classname="nginx-ingress-controller e2e suite" status="passed" time="30.5991629">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:00.985&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:09.37 (8.419s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:22:09.37&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:22:20.486 (11.116s)&#xA;&gt; Enter [It] should set server_names_hash_bucket_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:40 @ 07/16/23 23:22:20.486&#xA;&lt; Exit [It] should set server_names_hash_bucket_size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:40 @ 07/16/23 23:22:30.763 (10.277s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:30.763&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:31.515 (787ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName works with external name set to incomplete fqdn" classname="nginx-ingress-controller e2e suite" status="passed" time="23.5813732">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:31.521&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:40.235 (8.714s)&#xA;&gt; Enter [It] works with external name set to incomplete fqdn - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:62 @ 07/16/23 23:22:40.235&#xA;&lt; Exit [It] works with external name set to incomplete fqdn - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:62 @ 07/16/23 23:22:54.509 (14.274s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:54.509&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:55.102 (593ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keepalive connection to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="30.7302203">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:55.104&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:03.655 (8.585s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:23:03.655&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:23:14.739 (11.084s)&#xA;&gt; Enter [It] should set keepalive connection to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:59 @ 07/16/23 23:23:14.739&#xA;&lt; Exit [It] should set keepalive connection to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:59 @ 07/16/23 23:23:25.032 (10.292s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:25.032&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:25.8 (768ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] nginx-configuration start nginx with default configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="11.1702051">
-              <system-err>&gt; Enter [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 07/16/23 23:23:25.803&#xA;&lt; Exit [BeforeEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:98 @ 07/16/23 23:23:27.816 (2.013s)&#xA;&gt; Enter [It] start nginx with default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:102 @ 07/16/23 23:23:27.816&#xA;&lt; Exit [It] start nginx with default configuration - /go/src/k8s.io/ingress-nginx/test/e2e/nginx/nginx.go:102 @ 07/16/23 23:23:36.925 (9.144s)&#xA;&gt; Enter [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 07/16/23 23:23:36.925&#xA;&lt; Exit [AfterEach] [Setting] nginx-configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:99 @ 07/16/23 23:23:36.938 (13ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should not set proxy client-max-body-size to incorrect value" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3213324">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:36.94&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:45.412 (8.472s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:23:45.412&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:23:49.52 (4.108s)&#xA;&gt; Enter [It] should not set proxy client-max-body-size to incorrect value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:100 @ 07/16/23 23:23:49.52&#xA;&lt; Exit [It] should not set proxy client-max-body-size to incorrect value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:100 @ 07/16/23 23:23:59.723 (10.203s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:59.723&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:00.261 (538ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 200 when no authentication is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="22.5986154">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:00.263&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:07.782 (7.554s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:24:07.782&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:24:11.858 (4.076s)&#xA;&gt; Enter [It] should return status code 200 when no authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:46 @ 07/16/23 23:24:11.858&#xA;&lt; Exit [It] should return status code 200 when no authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:46 @ 07/16/23 23:24:22.095 (10.237s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:22.095&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:22.827 (732ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should not exists opentracing_location_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="28.365788">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:22.835&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:31.215 (8.414s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:24:31.215&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:24:33.268 (2.053s)&#xA;&gt; Enter [It] should not exists opentracing_location_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:130 @ 07/16/23 23:24:33.268&#xA;&lt; Exit [It] should not exists opentracing_location_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:130 @ 07/16/23 23:24:50.51 (17.242s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:50.51&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:51.166 (657ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:24:51.166&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:24:51.166 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value and pattern should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="34.7211242">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:51.169&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:00.029 (8.86s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:25:00.029&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:25:08.096 (8.101s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:490 @ 07/16/23 23:25:08.096&#xA;STEP: routing requests to the canary upstream when header pattern is matched - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:514 @ 07/16/23 23:25:25.318&#xA;STEP: routing requests to the mainline upstream when header failed to match header value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:523 @ 07/16/23 23:25:25.328&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:490 @ 07/16/23 23:25:25.338 (17.243s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:25.339&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:25.856 (517ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check the map hash size should set vmap-hash-bucket-size" classname="nginx-ingress-controller e2e suite" status="passed" time="30.3484696">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:25.858&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:34.445 (8.622s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:25:34.445&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:25:45.53 (11.085s)&#xA;&gt; Enter [It] should set vmap-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:100 @ 07/16/23 23:25:45.53&#xA;&lt; Exit [It] should set vmap-hash-bucket-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:100 @ 07/16/23 23:25:55.715 (10.185s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:55.715&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:56.172 (456ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] permanent-redirect permanent-redirect-code should respond with a standard redirect code" classname="nginx-ingress-controller e2e suite" status="passed" time="19.4250835">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:56.173&#xA;&lt; Exit [BeforeEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:04.819 (8.68s)&#xA;&gt; Enter [It] should respond with a standard redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:33 @ 07/16/23 23:26:04.819&#xA;STEP: setting permanent-redirect annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:34 @ 07/16/23 23:26:04.819&#xA;STEP: sending request to redirected URL path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:52 @ 07/16/23 23:26:15.073&#xA;&lt; Exit [It] should respond with a standard redirect code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/redirect.go:33 @ 07/16/23 23:26:15.081 (10.263s)&#xA;&gt; Enter [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:15.081&#xA;&lt; Exit [AfterEach] [Annotations] permanent-redirect permanent-redirect-code - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:15.564 (482ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] should return 404 sending requests when only a default backend is running" classname="nginx-ingress-controller e2e suite" status="passed" time="18.352629">
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:15.565&#xA;&lt; Exit [BeforeEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:23.961 (8.396s)&#xA;&gt; Enter [It] should return 404 sending requests when only a default backend is running - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:33 @ 07/16/23 23:26:23.961&#xA;STEP: basic HTTP GET request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:28.963&#xA;STEP: basic HTTP GET request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:28.977&#xA;STEP: basic HTTPS GET request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:28.992&#xA;STEP: basic HTTPS GET request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:29.017&#xA;STEP: basic HTTP POST request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:29.044&#xA;STEP: basic HTTP POST request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:29.06&#xA;STEP: basic HTTPS POST request without host to path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:29.371&#xA;STEP: basic HTTPS POST request without host to path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:29.776&#xA;STEP: basic HTTP GET request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:30.197&#xA;STEP: basic HTTP GET request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:30.574&#xA;STEP: basic HTTPS GET request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:30.98&#xA;STEP: basic HTTPS GET request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:31.34&#xA;STEP: basic HTTP POST request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:31.743&#xA;STEP: basic HTTP POST request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:32.136&#xA;STEP: basic HTTPS POST request to host foo.bar.com and path / should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:32.539&#xA;STEP: basic HTTPS POST request to host foo.bar.com and path /demo should return 404 - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:66 @ 07/16/23 23:26:32.97&#xA;&lt; Exit [It] should return 404 sending requests when only a default backend is running - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/default_backend.go:33 @ 07/16/23 23:26:33.344 (9.418s)&#xA;&gt; Enter [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:33.344&#xA;&lt; Exit [AfterEach] [Default Backend] - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:33.883 (539ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should propagate the w3c header when configured with jaeger" classname="nginx-ingress-controller e2e suite" status="passed" time="42.8786055">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:33.885&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:41.697 (7.812s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:26:41.697&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:26:45.787 (4.089s)&#xA;&gt; Enter [It] should propagate the w3c header when configured with jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:197 @ 07/16/23 23:26:45.787&#xA;&lt; Exit [It] should propagate the w3c header when configured with jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:197 @ 07/16/23 23:27:16.141 (30.389s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:16.141&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:16.729 (588ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:27:16.729&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:27:16.729 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with value should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="36.4841509">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:16.734&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:27.28 (10.546s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:27:27.28&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:27:35.372 (8.127s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:426 @ 07/16/23 23:27:35.373&#xA;STEP: routing requests to the canary upstream when header is set to &#39;DoCanary&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:451 @ 07/16/23 23:27:52.596&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:460 @ 07/16/23 23:27:52.607&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:469 @ 07/16/23 23:27:52.618&#xA;STEP: routing requests to the mainline upstream when header is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:478 @ 07/16/23 23:27:52.624&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:426 @ 07/16/23 23:27:52.632 (17.259s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:52.632&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:53.184 (552ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should exists opentracing_location_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1413011">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:53.185&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:01.521 (8.37s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:28:01.521&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:28:05.603 (4.082s)&#xA;&gt; Enter [It] should exists opentracing_location_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:145 @ 07/16/23 23:28:05.603&#xA;&lt; Exit [It] should exists opentracing_location_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:145 @ 07/16/23 23:28:22.87 (17.267s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:22.87&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:23.292 (422ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:28:23.292&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:28:23.292 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should set gzip_min_length to 100" classname="nginx-ingress-controller e2e suite" status="passed" time="26.156898">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:23.293&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:31.555 (8.296s)&#xA;&gt; Enter [It] should set gzip_min_length to 100 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:78 @ 07/16/23 23:28:31.555&#xA;&lt; Exit [It] should set gzip_min_length to 100 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:78 @ 07/16/23 23:28:48.825 (17.268s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:48.825&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:49.416 (591ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should not exists opentracing_operation_name directive when is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="30.6103322">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:49.42&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:57.983 (8.563s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:28:57.983&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:29:02.021 (4.072s)&#xA;&gt; Enter [It] should not exists opentracing_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:100 @ 07/16/23 23:29:02.021&#xA;&lt; Exit [It] should not exists opentracing_operation_name directive when is empty - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:100 @ 07/16/23 23:29:19.271 (17.25s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:19.271&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:19.996 (725ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:29:19.996&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:29:19.996 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-send-timeout should not set invalid proxy send timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="29.5046748">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:19.999&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:27.495 (7.496s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 07/16/23 23:29:27.495&#xA;&lt; Exit [BeforeEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:32 @ 07/16/23 23:29:31.525 (4.064s)&#xA;&gt; Enter [It] should not set invalid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:52 @ 07/16/23 23:29:31.525&#xA;&lt; Exit [It] should not set invalid proxy send timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_send_timeout.go:52 @ 07/16/23 23:29:48.787 (17.262s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:48.787&#xA;&lt; Exit [AfterEach] [Setting] proxy-send-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:49.468 (682ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check the variable hash size should set variables-hash-max-size" classname="nginx-ingress-controller e2e suite" status="passed" time="30.3397123">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:49.475&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:58.075 (8.6s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:29:58.075&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:30:09.134 (11.098s)&#xA;&gt; Enter [It] should set variables-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:88 @ 07/16/23 23:30:09.134&#xA;&lt; Exit [It] should set variables-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:88 @ 07/16/23 23:30:19.281 (10.147s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:19.281&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:19.775 (494ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should include opentelemetry_trust_incoming_spans on directive when enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="41.069556">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:19.783&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:29.478 (9.696s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:30:29.478&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:30:33.47 (4.057s)&#xA;&gt; Enter [It] should include opentelemetry_trust_incoming_spans on directive when enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:74 @ 07/16/23 23:30:33.471&#xA;&lt; Exit [It] should include opentelemetry_trust_incoming_spans on directive when enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:74 @ 07/16/23 23:30:54.972 (21.502s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:54.973&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:00.749 (5.815s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:31:00.749&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:31:00.749 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* canary affinity behavior always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="42.0865835">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:00.828&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:08.468 (7.64s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:31:08.468&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:31:16.616 (8.148s)&#xA;&gt; Enter [It] always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1000 @ 07/16/23 23:31:16.616&#xA;&lt; Exit [It] always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:1000 @ 07/16/23 23:31:42.294 (25.713s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:42.294&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:42.864 (569ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured but Authorization header is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="24.3322977">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:42.867&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:51.421 (8.554s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:31:51.421&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:31:55.49 (4.069s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:89 @ 07/16/23 23:31:55.49&#xA;&lt; Exit [It] should return status code 401 when authentication is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:89 @ 07/16/23 23:32:06.723 (11.267s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:06.723&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:07.164 (442ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-forwarded-headers should not trust X-Forwarded headers when setting is false" classname="nginx-ingress-controller e2e suite" status="passed" time="36.0455554">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:07.168&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:14.509 (7.341s)&#xA;&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 07/16/23 23:32:14.509&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 07/16/23 23:32:25.596 (11.087s)&#xA;&gt; Enter [It] should not trust X-Forwarded headers when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:92 @ 07/16/23 23:32:25.596&#xA;&lt; Exit [It] should not trust X-Forwarded headers when setting is false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:92 @ 07/16/23 23:32:42.761 (17.199s)&#xA;&gt; Enter [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:42.761&#xA;&lt; Exit [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:43.179 (418ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log http-access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="18.853158">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:43.184&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:51.238 (8.053s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:54 @ 07/16/23 23:32:51.238&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:54 @ 07/16/23 23:33:01.441 (10.238s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:01.442&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:02.003 (562ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests split between mainline and canary if canary weight is 100 and weight total is 200" classname="nginx-ingress-controller e2e suite" status="passed" time="73.5377854">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:02.007&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:11.575 (9.568s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:33:11.575&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:33:19.722 (8.147s)&#xA;&gt; Enter [It] should route requests split between mainline and canary if canary weight is 100 and weight total is 200 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:834 @ 07/16/23 23:33:19.722&#xA;&lt; Exit [It] should route requests split between mainline and canary if canary weight is 100 and weight total is 200 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:834 @ 07/16/23 23:34:15.058 (55.405s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:15.058&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:15.476 (418ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] mirror-* should set mirror-target to https://test.env.com/$request_uri" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3580945">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:15.477&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:23.831 (8.354s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 07/16/23 23:34:23.831&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 07/16/23 23:34:27.893 (4.061s)&#xA;&gt; Enter [It] should set mirror-target to https://test.env.com/$request_uri - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:51 @ 07/16/23 23:34:27.893&#xA;&lt; Exit [It] should set mirror-target to https://test.env.com/$request_uri - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:51 @ 07/16/23 23:34:38.318 (10.46s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:38.318&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:38.801 (483ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to $scheme:// and use proxy_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="24.527899">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:38.803&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:48.547 (9.744s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:34:48.547&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:34:52.605 (4.058s)&#xA;&gt; Enter [It] should set backend protocol to $scheme:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:49 @ 07/16/23 23:34:52.605&#xA;&lt; Exit [It] should set backend protocol to $scheme:// and use proxy_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:49 @ 07/16/23 23:35:02.751 (10.18s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:02.751&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:03.297 (546ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should disable the log-format-escape-json" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1125385">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:03.312&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:11.68 (8.368s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:35:11.68&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:35:22.776 (11.096s)&#xA;&gt; Enter [It] should disable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:55 @ 07/16/23 23:35:22.776&#xA;&lt; Exit [It] should disable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:55 @ 07/16/23 23:35:32.97 (10.229s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:32.97&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:33.388 (418ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - FastCGI should return OK for service with backend protocol FastCGI" classname="nginx-ingress-controller e2e suite" status="passed" time="21.2464333">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:33.39&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:41.909 (8.519s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:35:41.909&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:35:43.975 (2.066s)&#xA;&gt; Enter [It] should return OK for service with backend protocol FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:102 @ 07/16/23 23:35:43.975&#xA;&lt; Exit [It] should return OK for service with backend protocol FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:102 @ 07/16/23 23:35:54.184 (10.209s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:54.184&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:54.637 (453ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on" classname="nginx-ingress-controller e2e suite" status="passed" time="27.3048214">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:54.638&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:04.492 (9.888s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:36:04.492&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:36:10.59 (6.098s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:64 @ 07/16/23 23:36:10.59&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:64 @ 07/16/23 23:36:21.417 (10.826s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:21.417&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:21.909 (492ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to canary if canary weight is 100" classname="nginx-ingress-controller e2e suite" status="passed" time="35.3460961">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:21.91&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:31.441 (9.565s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:36:31.441&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:36:39.575 (8.135s)&#xA;&gt; Enter [It] should route requests only to canary if canary weight is 100 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:743 @ 07/16/23 23:36:39.575&#xA;&lt; Exit [It] should route requests only to canary if canary weight is 100 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:743 @ 07/16/23 23:36:56.821 (17.246s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:56.821&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:57.222 (400ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set keepalive time to upstream server" classname="nginx-ingress-controller e2e suite" status="passed" time="32.5033309">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:57.223&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:07.971 (10.783s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:37:07.971&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:37:19.071 (11.099s)&#xA;&gt; Enter [It] should set keepalive time to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:77 @ 07/16/23 23:37:19.071&#xA;&lt; Exit [It] should set keepalive time to upstream server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:77 @ 07/16/23 23:37:29.282 (10.212s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:29.283&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:29.692 (409ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 200 when accessing &#39;/&#39;  authentication" classname="nginx-ingress-controller e2e suite" status="passed" time="33.3392887">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:29.693&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:38.006 (8.347s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 07/16/23 23:37:38.006&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 07/16/23 23:37:58.271 (20.264s)&#xA;&gt; Enter [It] should return status code 200 when accessing &#39;/&#39;  authentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:68 @ 07/16/23 23:37:58.271&#xA;&lt; Exit [It] should return status code 200 when accessing &#39;/&#39;  authentication - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:68 @ 07/16/23 23:38:02.529 (4.293s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:02.529&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:02.964 (434ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] add-headers Add multiple custom headers" classname="nginx-ingress-controller e2e suite" status="passed" time="30.2408119">
-              <system-err>&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:02.971&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:11.459 (8.488s)&#xA;&gt; Enter [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 07/16/23 23:38:11.459&#xA;&lt; Exit [BeforeEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:34 @ 07/16/23 23:38:22.582 (11.122s)&#xA;&gt; Enter [It] Add multiple custom headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:65 @ 07/16/23 23:38:22.582&#xA;&lt; Exit [It] Add multiple custom headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/custom_header.go:65 @ 07/16/23 23:38:32.759 (10.211s)&#xA;&gt; Enter [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:32.759&#xA;&lt; Exit [AfterEach] [Setting] add-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:33.178 (419ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity without using &#39;modsecurity on;&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="34.4613293">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:33.18&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:41.812 (8.632s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:38:41.812&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:38:49.899 (8.087s)&#xA;&gt; Enter [It] should enable modsecurity without using &#39;modsecurity on;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:110 @ 07/16/23 23:38:49.899&#xA;&lt; Exit [It] should enable modsecurity without using &#39;modsecurity on;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:110 @ 07/16/23 23:39:07.104 (17.239s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:07.104&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:07.608 (504ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured picks up the updated certificate without reloading" classname="nginx-ingress-controller e2e suite" status="passed" time="51.1719674">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:07.617&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:15.244 (7.627s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:39:15.244&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:39:21.419 (6.176s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:39:21.42&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 07/16/23 23:39:38.597&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 07/16/23 23:39:46.821&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:39:46.84 (25.455s)&#xA;&gt; Enter [It] picks up the updated certificate without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:149 @ 07/16/23 23:39:46.841&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:163 @ 07/16/23 23:39:52.033&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:169 @ 07/16/23 23:39:55.176&#xA;STEP: skipping Nginx reload - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:180 @ 07/16/23 23:39:58.206&#xA;&lt; Exit [It] picks up the updated certificate without reloading - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:149 @ 07/16/23 23:39:58.206 (11.366s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:58.206&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:58.754 (548ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should exists opentracing directive when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="32.5664912">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:58.76&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:07.505 (8.774s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:40:07.505&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:40:13.578 (6.073s)&#xA;&gt; Enter [It] should exists opentracing directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:71 @ 07/16/23 23:40:13.578&#xA;&lt; Exit [It] should exists opentracing directive when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:71 @ 07/16/23 23:40:30.774 (17.231s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:30.774&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:31.257 (483ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:40:31.257&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:40:31.258 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should return status code 200 when signed in after auth backend is deleted" classname="nginx-ingress-controller e2e suite" status="passed" time="73.1807948">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:31.26&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:39.618 (8.359s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:40:39.619&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:40:45.749 (6.13s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:40:45.749&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:40:50.946&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:41:01.126&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:41:11.35&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:41:21.559&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:41:36.857 (51.177s)&#xA;&gt; Enter [It] should return status code 200 when signed in after auth backend is deleted  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:772 @ 07/16/23 23:41:36.857&#xA;&lt; Exit [It] should return status code 200 when signed in after auth backend is deleted  - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:772 @ 07/16/23 23:41:43.93 (7.073s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:43.93&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:44.372 (442ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests only to mainline if canary weight is 0" classname="nginx-ingress-controller e2e suite" status="passed" time="54.3242791">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:34.287&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:49.044 (14.757s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:07:49.044&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:08:05.568 (16.559s)&#xA;&gt; Enter [It] should route requests only to mainline if canary weight is 0 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:705 @ 07/16/23 23:08:05.569&#xA;&lt; Exit [It] should route requests only to mainline if canary weight is 0 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:705 @ 07/16/23 23:08:27.887 (22.318s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:27.887&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:28.576 (689ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Add no tls redirect locations Check no tls redirect locations config" classname="nginx-ingress-controller e2e suite" status="passed" time="29.4005463">
-              <system-err>&gt; Enter [BeforeEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:28.582&#xA;&lt; Exit [BeforeEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:36.857 (8.309s)&#xA;&gt; Enter [It] Check no tls redirect locations config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_tls_redirect_locations.go:31 @ 07/16/23 23:08:36.857&#xA;&lt; Exit [It] Check no tls redirect locations config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_tls_redirect_locations.go:31 @ 07/16/23 23:08:57.345 (20.488s)&#xA;&gt; Enter [AfterEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:57.345&#xA;&lt; Exit [AfterEach] [Setting] Add no tls redirect locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:57.948 (603ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should set request-redirect when global-auth-request-redirect is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="68.5104246">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:57.95&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:06.944 (9.028s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:09:06.944&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:09:25.075 (18.131s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:09:25.075&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:09:25.075&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:09:35.276&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:09:45.533&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:09:55.741 (30.7s)&#xA;&gt; Enter [It] should set request-redirect when global-auth-request-redirect is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:237 @ 07/16/23 23:09:55.741&#xA;STEP: Adding a global-auth-request-redirect to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:242 @ 07/16/23 23:09:55.741&#xA;&lt; Exit [It] should set request-redirect when global-auth-request-redirect is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:237 @ 07/16/23 23:10:05.886 (10.18s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:05.886&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:06.357 (471ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format default escape" classname="nginx-ingress-controller e2e suite" status="passed" time="34.3825706">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:06.359&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:15.633 (9.274s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:10:15.633&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:10:26.724 (11.091s)&#xA;&gt; Enter [It] log-format default escape - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:105 @ 07/16/23 23:10:26.724&#xA;&lt; Exit [It] log-format default escape - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:105 @ 07/16/23 23:10:40.107 (13.418s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:40.107&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:40.707 (600ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Load Balancer] EWMA does not fail requests" classname="nginx-ingress-controller e2e suite" status="passed" time="34.6657434">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:40.727&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:49.212 (8.485s)&#xA;&gt; Enter [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:34 @ 07/16/23 23:10:49.212&#xA;&lt; Exit [BeforeEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:34 @ 07/16/23 23:11:00.338 (11.126s)&#xA;&gt; Enter [It] does not fail requests - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:42 @ 07/16/23 23:11:00.338&#xA;Jul 16 23:11:14.762: INFO: Request distribution: map[echo-7b6bf466cc-k5lq4:6 echo-7b6bf466cc-xhgrs:9 echo-7b6bf466cc-zm2tc:15]&#xA;&lt; Exit [It] does not fail requests - /go/src/k8s.io/ingress-nginx/test/e2e/loadbalance/ewma.go:42 @ 07/16/23 23:11:14.762 (14.48s)&#xA;&gt; Enter [AfterEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:14.762&#xA;&lt; Exit [AfterEach] [Setting] [Load Balancer] EWMA - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:15.337 (574ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should not set affinity across all server locations when using separate ingresses" classname="nginx-ingress-controller e2e suite" status="passed" time="30.7649717">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:15.344&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:23.899 (8.554s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:11:23.899&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:11:28.014 (4.115s)&#xA;&gt; Enter [It] should not set affinity across all server locations when using separate ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:320 @ 07/16/23 23:11:28.014&#xA;&lt; Exit [It] should not set affinity across all server locations when using separate ingresses - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:320 @ 07/16/23 23:11:45.272 (17.315s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:45.272&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:46.053 (781ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should add custom error page when global-auth-signin url is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="58.6966417">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:46.055&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:54.592 (8.537s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:11:54.592&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:12:02.74 (8.185s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:12:02.741&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:12:02.741&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:12:12.97&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:12:23.365&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:12:33.703 (30.997s)&#xA;&gt; Enter [It] should add custom error page when global-auth-signin url is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:210 @ 07/16/23 23:12:33.703&#xA;STEP: Adding a global-auth-signin to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:215 @ 07/16/23 23:12:33.703&#xA;&lt; Exit [It] should add custom error page when global-auth-signin url is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:210 @ 07/16/23 23:12:43.93 (10.227s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:43.93&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:44.68 (750ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-sync-events should not create sync events" classname="nginx-ingress-controller e2e suite" status="passed" time="32.0337503">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:44.681&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:53.488 (8.807s)&#xA;&gt; Enter [It] should not create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:80 @ 07/16/23 23:12:53.488&#xA;&lt; Exit [It] should not create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:80 @ 07/16/23 23:13:16.154 (22.701s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:16.154&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:16.68 (526ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinitymode Balanced affinity mode should balance" classname="nginx-ingress-controller e2e suite" status="passed" time="26.9087913">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:16.682&#xA;&lt; Exit [BeforeEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:24.418 (7.736s)&#xA;&gt; Enter [It] Balanced affinity mode should balance - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:34 @ 07/16/23 23:13:24.418&#xA;&lt; Exit [It] Balanced affinity mode should balance - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinitymode.go:34 @ 07/16/23 23:13:43.022 (18.638s)&#xA;&gt; Enter [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:43.022&#xA;&lt; Exit [AfterEach] [Annotations] affinitymode - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:43.557 (535ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should still return status code 200 after auth backend is deleted using cache" classname="nginx-ingress-controller e2e suite" status="passed" time="74.3679894">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:43.569&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:52.109 (8.54s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:13:52.109&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:14:00.22 (8.111s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:14:00.22&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:14:00.221&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:14:10.357&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:14:20.687&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:14:31.22 (31.034s)&#xA;&gt; Enter [It] should still return status code 200 after auth backend is deleted using cache - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:155 @ 07/16/23 23:14:31.221&#xA;STEP: Adding a global-auth-cache-key to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:163 @ 07/16/23 23:14:31.221&#xA;&lt; Exit [It] should still return status code 200 after auth backend is deleted using cache - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:155 @ 07/16/23 23:14:56.908 (25.722s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:56.908&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:57.868 (959ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] mirror-* should set mirror-target to http://localhost/mirror" classname="nginx-ingress-controller e2e suite" status="passed" time="24.7436373">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:57.873&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:07.775 (9.936s)&#xA;&gt; Enter [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 07/16/23 23:15:07.775&#xA;&lt; Exit [BeforeEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:32 @ 07/16/23 23:15:11.846 (4.07s)&#xA;&gt; Enter [It] should set mirror-target to http://localhost/mirror - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:36 @ 07/16/23 23:15:11.846&#xA;&lt; Exit [It] should set mirror-target to http://localhost/mirror - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/mirror.go:36 @ 07/16/23 23:15:22.158 (10.312s)&#xA;&gt; Enter [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:22.158&#xA;&lt; Exit [AfterEach] [Annotations] mirror-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:22.583 (425ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set sticky cookie SERVERID" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3930481">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:22.584&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:31.03 (8.446s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:15:31.03&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:15:35.048 (4.052s)&#xA;&gt; Enter [It] should set sticky cookie SERVERID - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:42 @ 07/16/23 23:15:35.048&#xA;&lt; Exit [It] should set sticky cookie SERVERID - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:42 @ 07/16/23 23:15:45.303 (10.255s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:45.303&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:45.943 (640ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] service-upstream when enabling in the configmap and disabling in the annotations should not use the Service Cluster IP and Port" classname="nginx-ingress-controller e2e suite" status="passed" time="30.4041474">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:45.959&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:54.309 (8.35s)&#xA;&gt; Enter [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 07/16/23 23:15:54.309&#xA;&lt; Exit [BeforeEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:36 @ 07/16/23 23:15:58.369 (4.06s)&#xA;&gt; Enter [It] should not use the Service Cluster IP and Port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:99 @ 07/16/23 23:15:58.369&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:113 @ 07/16/23 23:16:15.745&#xA;STEP: checking if the Service Cluster IP and Port are not used - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:120 @ 07/16/23 23:16:15.754&#xA;&lt; Exit [It] should not use the Service Cluster IP and Port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serviceupstream.go:99 @ 07/16/23 23:16:15.932 (17.597s)&#xA;&gt; Enter [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:15.932&#xA;&lt; Exit [AfterEach] [Annotations] service-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:16.329 (396ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] ssl-ciphers should change ssl ciphers" classname="nginx-ingress-controller e2e suite" status="passed" time="23.6848481">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:16.33&#xA;&lt; Exit [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:24.942 (8.612s)&#xA;&gt; Enter [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:31 @ 07/16/23 23:16:24.942&#xA;&lt; Exit [BeforeEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:31 @ 07/16/23 23:16:29.022 (4.08s)&#xA;&gt; Enter [It] should change ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:35 @ 07/16/23 23:16:29.022&#xA;&lt; Exit [It] should change ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/sslciphers.go:35 @ 07/16/23 23:16:39.31 (10.323s)&#xA;&gt; Enter [AfterEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:39.31&#xA;&lt; Exit [AfterEach] [Annotations] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:39.98 (670ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should enable the log-format-escape-none" classname="nginx-ingress-controller e2e suite" status="passed" time="31.6590056">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:39.982&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:49.837 (9.855s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:16:49.837&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:17:00.937 (11.1s)&#xA;&gt; Enter [It] should enable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:63 @ 07/16/23 23:17:00.938&#xA;&lt; Exit [It] should enable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:63 @ 07/16/23 23:17:11.121 (10.218s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:11.121&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:11.607 (486ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by weight should route requests split between mainline and canary if canary weight is 50" classname="nginx-ingress-controller e2e suite" status="passed" time="72.9624279">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:11.608&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:20.212 (8.604s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:17:20.212&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:17:28.342 (8.13s)&#xA;&gt; Enter [It] should route requests split between mainline and canary if canary weight is 50 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:808 @ 07/16/23 23:17:28.342&#xA;&lt; Exit [It] should route requests split between mainline and canary if canary weight is 50 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:808 @ 07/16/23 23:18:23.842 (55.569s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:23.843&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:24.502 (659ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should set valid proxy timeouts" classname="nginx-ingress-controller e2e suite" status="passed" time="22.0752737">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:24.505&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:31.714 (7.243s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:18:31.714&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:18:35.862 (4.148s)&#xA;&gt; Enter [It] should set valid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:115 @ 07/16/23 23:18:35.862&#xA;&lt; Exit [It] should set valid proxy timeouts - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:115 @ 07/16/23 23:18:46.046 (10.184s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:46.046&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:46.546 (500ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is negative" classname="nginx-ingress-controller e2e suite" status="passed" time="49.775886">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:46.548&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:53.971 (7.423s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:18:53.971&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:18:58.059 (4.088s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:18:58.059&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:19:12.335 (14.31s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is negative - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:590 @ 07/16/23 23:19:12.335&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is negative - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:590 @ 07/16/23 23:19:35.576 (23.275s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:35.576&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:36.255 (679ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration when only backends change handles an annotation change" classname="nginx-ingress-controller e2e suite" status="passed" time="28.7916129">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:36.256&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:43.637 (7.381s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:19:43.637&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:19:57.933 (14.296s)&#xA;&gt; Enter [It] handles an annotation change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:171 @ 07/16/23 23:19:57.933&#xA;&lt; Exit [It] handles an annotation change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:171 @ 07/16/23 23:20:04.479 (6.58s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:04.479&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:05.013 (534ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Security] Pod Security Policies with volumes should be running with a Pod Security Policy" classname="nginx-ingress-controller e2e suite" status="skipped" time="10.6800515">
-              <skipped message="skipped - PSP not supported in this version"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:05.015&#xA;&lt; Exit [BeforeEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:14.859 (9.844s)&#xA;&gt; Enter [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:40 @ 07/16/23 23:20:14.859&#xA;[SKIPPED] PSP not supported in this version&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:53 @ 07/16/23 23:20:14.864&#xA;&lt; Exit [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy_volumes.go:40 @ 07/16/23 23:20:14.864 (5ms)&#xA;&gt; Enter [AfterEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:14.864&#xA;&lt; Exit [AfterEach] [Security] Pod Security Policies with volumes - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:15.695 (831ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set secure in cookie with provided true annotation on http" classname="nginx-ingress-controller e2e suite" status="passed" time="22.5750295">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:15.697&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:23.308 (7.611s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:20:23.308&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:20:27.397 (4.089s)&#xA;&gt; Enter [It] should set secure in cookie with provided true annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:412 @ 07/16/23 23:20:27.397&#xA;&lt; Exit [It] should set secure in cookie with provided true annotation on http - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:412 @ 07/16/23 23:20:37.584 (10.221s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:37.584&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:38.237 (653ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should return 200 using auth-tls-match-cn with matching CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="23.9705324">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:38.239&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:46.709 (8.47s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:20:46.709&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:20:50.775 (4.066s)&#xA;&gt; Enter [It] should return 200 using auth-tls-match-cn with matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:295 @ 07/16/23 23:20:50.775&#xA;&lt; Exit [It] should return 200 using auth-tls-match-cn with matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:295 @ 07/16/23 23:21:01.786 (11.046s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:01.786&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:02.175 (389ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should fail to use longest match for documented warning" classname="nginx-ingress-controller e2e suite" status="passed" time="30.318831">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:02.177&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:10.721 (8.544s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:21:10.721&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:21:14.801 (4.08s)&#xA;&gt; Enter [It] should fail to use longest match for documented warning - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:158 @ 07/16/23 23:21:14.801&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:161 @ 07/16/23 23:21:14.801&#xA;STEP: creating an ingress definition with the use-regex annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:165 @ 07/16/23 23:21:21.843&#xA;STEP: check that &#39;/foo/bar/bar&#39; does not match the longest exact path - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:179 @ 07/16/23 23:21:32.042&#xA;&lt; Exit [It] should fail to use longest match for documented warning - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:158 @ 07/16/23 23:21:32.048 (17.282s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:32.048&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:32.461 (413ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class Without IngressClass Cluster scoped Permission should ignore Ingress with only IngressClassName" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1356454">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:32.463&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:39.797 (7.334s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:21:39.797&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:21:43.865 (4.068s)&#xA;&gt; Enter [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 07/16/23 23:21:43.865&#xA;&lt; Exit [BeforeEach] Without IngressClass Cluster scoped Permission - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:587 @ 07/16/23 23:21:51.955 (8.09s)&#xA;&gt; Enter [It] should ignore Ingress with only IngressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:652 @ 07/16/23 23:21:51.955&#xA;&lt; Exit [It] should ignore Ingress with only IngressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:652 @ 07/16/23 23:22:02.145 (10.223s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:02.145&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:02.564 (419ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] block-* should block Referers defined in the ConfigMap" classname="nginx-ingress-controller e2e suite" status="passed" time="31.1387085">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:02.566&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:11.193 (8.627s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 07/16/23 23:22:11.193&#xA;&lt; Exit [BeforeEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:33 @ 07/16/23 23:22:22.303 (11.11s)&#xA;&gt; Enter [It] should block Referers defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:88 @ 07/16/23 23:22:22.303&#xA;&lt; Exit [It] should block Referers defined in the ConfigMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_access_block.go:88 @ 07/16/23 23:22:32.765 (10.496s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:32.765&#xA;&lt; Exit [AfterEach] [Setting] [Security] block-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:33.67 (906ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] Configmap change should reload after an update in the configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="43.977068">
-              <system-err>&gt; Enter [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:33.674&#xA;&lt; Exit [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:42.623 (8.949s)&#xA;&gt; Enter [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:32 @ 07/16/23 23:22:42.623&#xA;&lt; Exit [BeforeEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:32 @ 07/16/23 23:22:46.677 (4.054s)&#xA;&gt; Enter [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:36 @ 07/16/23 23:22:46.677&#xA;STEP: adding a whitelist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:42 @ 07/16/23 23:22:53.713&#xA;STEP: changing error-log-level - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:61 @ 07/16/23 23:23:03.876&#xA;&lt; Exit [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/configmap_change.go:36 @ 07/16/23 23:23:17.205 (30.562s)&#xA;&gt; Enter [AfterEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:17.205&#xA;&lt; Exit [AfterEach] [Setting] Configmap change - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:17.616 (412ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-catch-all should ignore catch all Ingress with backend and rules" classname="nginx-ingress-controller e2e suite" status="passed" time="34.3049437">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:17.617&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:25.915 (8.298s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:23:25.916&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:23:40.996 (15.114s)&#xA;&gt; Enter [It] should ignore catch all Ingress with backend and rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:69 @ 07/16/23 23:23:40.996&#xA;&lt; Exit [It] should ignore catch all Ingress with backend and rules - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:69 @ 07/16/23 23:23:51.243 (10.247s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:51.243&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:51.888 (645ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set" classname="nginx-ingress-controller e2e suite" status="passed" time="25.2821374">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:51.89&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:02.36 (10.505s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:24:02.36&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:24:06.483 (4.123s)&#xA;&gt; Enter [It] should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:301 @ 07/16/23 23:24:06.483&#xA;&lt; Exit [It] should set &#34;proxy_set_header &#39;My-Custom-Header&#39; &#39;42&#39;;&#34; when auth-headers are set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:301 @ 07/16/23 23:24:16.671 (10.187s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:16.671&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:17.137 (467ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1m" classname="nginx-ingress-controller e2e suite" status="passed" time="23.0553091">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:17.14&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:25.522 (8.382s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:24:25.522&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:24:29.596 (4.073s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:101 @ 07/16/23 23:24:29.596&#xA;&lt; Exit [It] should set client_body_buffer_size to 1m - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:101 @ 07/16/23 23:24:39.753 (10.192s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:39.753&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:40.161 (408ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Shutdown] ingress controller should shutdown in less than 60 secons without pending connections" classname="nginx-ingress-controller e2e suite" status="passed" time="30.8368955">
-              <system-err>&gt; Enter [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:40.163&#xA;&lt; Exit [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:48.151 (7.988s)&#xA;&gt; Enter [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:35 @ 07/16/23 23:24:48.151&#xA;&lt; Exit [BeforeEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:35 @ 07/16/23 23:24:59.271 (11.12s)&#xA;&gt; Enter [It] should shutdown in less than 60 secons without pending connections - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:40 @ 07/16/23 23:24:59.271&#xA;&lt; Exit [It] should shutdown in less than 60 secons without pending connections - /go/src/k8s.io/ingress-nginx/test/e2e/gracefulshutdown/shutdown.go:40 @ 07/16/23 23:25:10.518 (11.281s)&#xA;&gt; Enter [AfterEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:10.518&#xA;&lt; Exit [AfterEach] [Shutdown] ingress controller - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:10.966 (448ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress with a different class annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="29.2870748">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:10.967&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:18.468 (7.501s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:25:18.468&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:25:22.573 (4.105s)&#xA;&gt; Enter [It] should ignore Ingress with a different class annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:68 @ 07/16/23 23:25:22.573&#xA;&lt; Exit [It] should ignore Ingress with a different class annotation - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:68 @ 07/16/23 23:25:39.828 (17.29s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:39.828&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:40.22 (391ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place" classname="nginx-ingress-controller e2e suite" status="passed" time="30.604903">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:40.221&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:47.582 (7.361s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:25:47.582&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:25:51.699 (4.117s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:102 @ 07/16/23 23:25:51.699&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:102 @ 07/16/23 23:26:10.03 (18.365s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:10.03&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:10.792 (762ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] hash size Check proxy header hash size should set proxy-headers-hash-max-size" classname="nginx-ingress-controller e2e suite" status="passed" time="29.5565465">
-              <system-err>&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:10.796&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:18.517 (7.721s)&#xA;&gt; Enter [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:26:18.517&#xA;&lt; Exit [BeforeEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:32 @ 07/16/23 23:26:29.612 (11.095s)&#xA;&gt; Enter [It] should set proxy-headers-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:68 @ 07/16/23 23:26:29.612&#xA;&lt; Exit [It] should set proxy-headers-hash-max-size - /go/src/k8s.io/ingress-nginx/test/e2e/settings/hash-size.go:68 @ 07/16/23 23:26:39.848 (10.27s)&#xA;&gt; Enter [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:39.848&#xA;&lt; Exit [AfterEach] [Setting] hash size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:40.318 (470ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canaried by header with no value should route requests to the correct upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="34.6947308">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:40.322&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:49.062 (8.74s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:26:49.062&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:26:57.227 (8.165s)&#xA;&gt; Enter [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:372 @ 07/16/23 23:26:57.227&#xA;STEP: routing requests to the canary upstream when header is set to &#39;always&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:395 @ 07/16/23 23:27:14.5&#xA;STEP: routing requests to the mainline upstream when header is set to &#39;never&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:404 @ 07/16/23 23:27:14.506&#xA;STEP: routing requests to the mainline upstream when header is set to anything else - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:414 @ 07/16/23 23:27:14.512&#xA;&lt; Exit [It] should route requests to the correct upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:372 @ 07/16/23 23:27:14.518 (17.326s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:14.518&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:14.982 (464ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-next-upstream should build proxy next upstream using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="30.4059144">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:14.983&#xA;&lt; Exit [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:23.621 (8.637s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:32 @ 07/16/23 23:27:23.621&#xA;&lt; Exit [BeforeEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:32 @ 07/16/23 23:27:27.678 (4.058s)&#xA;&gt; Enter [It] should build proxy next upstream using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:36 @ 07/16/23 23:27:27.678&#xA;&lt; Exit [It] should build proxy next upstream using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_next_upstream.go:36 @ 07/16/23 23:27:44.864 (17.219s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:44.864&#xA;&lt; Exit [AfterEach] [Setting] proxy-next-upstream - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:45.355 (491ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] default-backend when default backend annotation is enabled should use a custom default backend as upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="24.1701154">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:45.356&#xA;&lt; Exit [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:54.361 (9.004s)&#xA;&gt; Enter [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:32 @ 07/16/23 23:27:54.361&#xA;&lt; Exit [BeforeEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:32 @ 07/16/23 23:27:58.446 (4.085s)&#xA;&gt; Enter [It] should use a custom default backend as upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:37 @ 07/16/23 23:27:58.446&#xA;&lt; Exit [It] should use a custom default backend as upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/default_backend.go:37 @ 07/16/23 23:28:08.662 (10.25s)&#xA;&gt; Enter [AfterEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:08.662&#xA;&lt; Exit [AfterEach] [Annotations] default-backend - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:09.492 (830ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - FastCGI should use fastcgi_pass in the configuration file" classname="nginx-ingress-controller e2e suite" status="passed" time="21.5885282">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:09.495&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:18.198 (8.703s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:28:18.198&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:33 @ 07/16/23 23:28:20.266 (2.068s)&#xA;&gt; Enter [It] should use fastcgi_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:37 @ 07/16/23 23:28:20.266&#xA;&lt; Exit [It] should use fastcgi_pass in the configuration file - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fastcgi.go:37 @ 07/16/23 23:28:30.476 (10.21s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:30.476&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - FastCGI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:31.049 (608ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] denylist-source-range only deny explicitly denied IPs, allow all others" classname="nginx-ingress-controller e2e suite" status="passed" time="37.2024876">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:31.05&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:39.51 (8.46s)&#xA;&gt; Enter [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 07/16/23 23:28:39.51&#xA;&lt; Exit [BeforeEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:31 @ 07/16/23 23:28:43.584 (4.073s)&#xA;&gt; Enter [It] only deny explicitly denied IPs, allow all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:35 @ 07/16/23 23:28:43.584&#xA;STEP: sending request from an explicitly denied IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:61 @ 07/16/23 23:29:00.77&#xA;STEP: sending request from an explicitly denied IP address - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:69 @ 07/16/23 23:29:00.776&#xA;STEP: sending request from an implicitly allowed IP range - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:77 @ 07/16/23 23:29:00.783&#xA;&lt; Exit [It] only deny explicitly denied IPs, allow all others - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/ipdenylist.go:35 @ 07/16/23 23:29:07.785 (24.235s)&#xA;&gt; Enter [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:07.785&#xA;&lt; Exit [AfterEach] [Annotations] denylist-source-range - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:08.219 (434ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] backend status code 503 should return 503 when backend service does not exist" classname="nginx-ingress-controller e2e suite" status="passed" time="19.0865194">
-              <system-err>&gt; Enter [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:08.222&#xA;&lt; Exit [BeforeEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:16.588 (8.366s)&#xA;&gt; Enter [It] should return 503 when backend service does not exist - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:36 @ 07/16/23 23:29:16.588&#xA;&lt; Exit [It] should return 503 when backend service does not exist - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_backend.go:36 @ 07/16/23 23:29:26.783 (10.195s)&#xA;&gt; Enter [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:26.783&#xA;&lt; Exit [AfterEach] [Service] backend status code 503 - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:27.308 (525ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should not exists opentelemetry directive" classname="nginx-ingress-controller e2e suite" status="passed" time="29.9809659">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:27.309&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:35.546 (8.271s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:29:35.546&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:29:39.603 (4.057s)&#xA;&gt; Enter [It] should not exists opentelemetry directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:47 @ 07/16/23 23:29:39.603&#xA;&lt; Exit [It] should not exists opentelemetry directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:47 @ 07/16/23 23:29:56.89 (17.287s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:56.89&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:57.255 (365ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:29:57.255&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:29:57.255 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 401 when request any protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="58.7238473">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:57.258&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:07.638 (10.419s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:30:07.638&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:30:15.827 (8.189s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:30:15.827&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:30:15.827&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:30:26.122&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:30:36.224&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:30:48.339 (32.577s)&#xA;&gt; Enter [It] should return status code 401 when request any protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:85 @ 07/16/23 23:30:48.339&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:87 @ 07/16/23 23:30:48.339&#xA;STEP: Sending a request to protected service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:94 @ 07/16/23 23:30:48.391&#xA;&lt; Exit [It] should return status code 401 when request any protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:85 @ 07/16/23 23:30:48.504 (165ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:48.504&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:55.877 (7.373s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should enable opentracing using datadog" classname="nginx-ingress-controller e2e suite" status="passed" time="35.771252">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:55.918&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:09.07 (13.19s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:31:09.07&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:31:11.17 (2.1s)&#xA;&gt; Enter [It] should enable opentracing using datadog - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:241 @ 07/16/23 23:31:11.17&#xA;&lt; Exit [It] should enable opentracing using datadog - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:241 @ 07/16/23 23:31:31.176 (20.041s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:31.176&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:31.616 (439ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:31:31.616&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:31:31.616 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should deny login for different location on same server" classname="nginx-ingress-controller e2e suite" status="passed" time="131.3586144">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:31.67&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:40.298 (8.628s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:31:40.298&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:31:44.4 (4.102s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:31:44.402&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:31:49.602&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:31:59.831&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:32:09.984&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:32:20.215&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:32:35.406 (51.073s)&#xA;&gt; Enter [It] should deny login for different location on same server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:792 @ 07/16/23 23:32:35.406&#xA;STEP: receiving an internal server error without cache on location /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:811 @ 07/16/23 23:32:42.457&#xA;&lt; Exit [It] should deny login for different location on same server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:792 @ 07/16/23 23:33:42.399 (1m7.062s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:42.4&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:42.892 (492ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Security] Pod Security Policies should be running with a Pod Security Policy" classname="nginx-ingress-controller e2e suite" status="skipped" time="8.768991100000001">
-              <skipped message="skipped - PSP not supported in this version"></skipped>
-              <system-err>&gt; Enter [BeforeEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:42.896&#xA;&lt; Exit [BeforeEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:51.181 (8.285s)&#xA;&gt; Enter [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:44 @ 07/16/23 23:33:51.181&#xA;[SKIPPED] PSP not supported in this version&#xA;In [It] at: /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:56 @ 07/16/23 23:33:51.184&#xA;&lt; Exit [It] should be running with a Pod Security Policy - /go/src/k8s.io/ingress-nginx/test/e2e/settings/pod_security_policy.go:44 @ 07/16/23 23:33:51.184 (3ms)&#xA;&gt; Enter [AfterEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:51.184&#xA;&lt; Exit [AfterEach] [Security] Pod Security Policies - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:51.664 (480ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should route requests to the correct upstream if the mainline ingress is modified" classname="nginx-ingress-controller e2e suite" status="passed" time="38.6161234">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:51.666&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:00.007 (8.341s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:34:00.007&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:34:08.102 (8.129s)&#xA;&gt; Enter [It] should route requests to the correct upstream if the mainline ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:250 @ 07/16/23 23:34:08.102&#xA;STEP: routing requests destined fro the mainline ingress to the mainline upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:288 @ 07/16/23 23:34:29.661&#xA;STEP: routing requests destined for the canary ingress to the canary upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:297 @ 07/16/23 23:34:29.668&#xA;&lt; Exit [It] should route requests to the correct upstream if the mainline ingress is modified - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:250 @ 07/16/23 23:34:29.676 (21.575s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:29.676&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:30.248 (571ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With ingress-class-by-name flag should watch Ingress that uses the class name even if spec is different" classname="nginx-ingress-controller e2e suite" status="passed" time="49.2747739">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:30.253&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:39.68 (9.461s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:34:39.68&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:34:45.772 (6.092s)&#xA;&gt; Enter [BeforeEach] With ingress-class-by-name flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:518 @ 07/16/23 23:34:45.772&#xA;&lt; Exit [BeforeEach] With ingress-class-by-name flag - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:518 @ 07/16/23 23:34:54.823 (9.051s)&#xA;&gt; Enter [It] should watch Ingress that uses the class name even if spec is different - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:539 @ 07/16/23 23:34:54.823&#xA;&lt; Exit [It] should watch Ingress that uses the class name even if spec is different - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:539 @ 07/16/23 23:35:19.068 (24.279s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:19.068&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:19.459 (391ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow origin for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="20.0703369">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:19.461&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:27.831 (8.37s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:35:27.831&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:35:31.866 (4.07s)&#xA;&gt; Enter [It] should allow origin for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:110 @ 07/16/23 23:35:31.866&#xA;&lt; Exit [It] should allow origin for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:110 @ 07/16/23 23:35:38.908 (7.042s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:38.908&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:39.497 (588ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic configuration when only backends change handles endpoints only changes" classname="nginx-ingress-controller e2e suite" status="passed" time="35.9511506">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:39.502&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:48.362 (8.86s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:35:48.362&#xA;&lt; Exit [BeforeEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:45 @ 07/16/23 23:36:02.591 (14.263s)&#xA;&gt; Enter [It] handles endpoints only changes - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:62 @ 07/16/23 23:36:02.591&#xA;&lt; Exit [It] handles endpoints only changes - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_configuration.go:62 @ 07/16/23 23:36:15.012 (12.421s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:15.012&#xA;&lt; Exit [AfterEach] [Lua] dynamic configuration - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:15.419 (407ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should exists opentracing_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="29.1864807">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:15.421&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:22.799 (7.379s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:36:22.799&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:36:26.895 (4.096s)&#xA;&gt; Enter [It] should exists opentracing_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:115 @ 07/16/23 23:36:26.895&#xA;&lt; Exit [It] should exists opentracing_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:115 @ 07/16/23 23:36:44.072 (17.211s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:44.072&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:44.573 (501ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:36:44.573&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:36:44.573 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-upstream with log-format-escape-json and log-format-escape-none log-format-escape-none enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="33.1573172">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:44.575&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:52.863 (8.288s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:36:52.863&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:37:03.994 (11.165s)&#xA;&gt; Enter [It] log-format-escape-none enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:128 @ 07/16/23 23:37:03.994&#xA;&lt; Exit [It] log-format-escape-none enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:128 @ 07/16/23 23:37:17.209 (13.215s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:17.209&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:17.698 (489ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] x-forwarded-prefix should not add X-Forwarded-Prefix if the annotation value is empty" classname="nginx-ingress-controller e2e suite" status="passed" time="22.5838376">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:17.7&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:25.25 (7.55s)&#xA;&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 07/16/23 23:37:25.25&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 07/16/23 23:37:29.308 (4.058s)&#xA;&gt; Enter [It] should not add X-Forwarded-Prefix if the annotation value is empty - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:57 @ 07/16/23 23:37:29.308&#xA;&lt; Exit [It] should not add X-Forwarded-Prefix if the annotation value is empty - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:57 @ 07/16/23 23:37:39.541 (10.267s)&#xA;&gt; Enter [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:39.541&#xA;&lt; Exit [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:40.249 (708ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow correct origins - missing subdomain + origin with wildcard origin and correct origin" classname="nginx-ingress-controller e2e suite" status="passed" time="24.3587205">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:40.25&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:50.903 (10.653s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:37:50.903&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:37:56.972 (6.069s)&#xA;&gt; Enter [It] should allow correct origins - missing subdomain + origin with wildcard origin and correct origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:535 @ 07/16/23 23:37:56.972&#xA;&lt; Exit [It] should allow correct origins - missing subdomain + origin with wildcard origin and correct origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:535 @ 07/16/23 23:38:04.012 (7.074s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:04.012&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:04.575 (562ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* Single canary Ingress should not use canary as a catch-all server" classname="nginx-ingress-controller e2e suite" status="passed" time="34.4296202">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:04.576&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:13.092 (8.516s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:38:13.092&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:38:21.224 (8.132s)&#xA;&gt; Enter [It] should not use canary as a catch-all server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:863 @ 07/16/23 23:38:21.224&#xA;&lt; Exit [It] should not use canary as a catch-all server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:863 @ 07/16/23 23:38:38.446 (17.256s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:38.446&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:38.972 (525ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should disable the log-format-escape-none" classname="nginx-ingress-controller e2e suite" status="passed" time="32.6154152">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:38.973&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:47.576 (8.603s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:38:47.576&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:39:00.694 (13.151s)&#xA;&gt; Enter [It] should disable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:71 @ 07/16/23 23:39:00.694&#xA;&lt; Exit [It] should disable the log-format-escape-none - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:71 @ 07/16/23 23:39:10.972 (10.278s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:10.972&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:11.554 (582ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should set cors methods to only allow POST, GET" classname="nginx-ingress-controller e2e suite" status="passed" time="24.9506285">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:11.557&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:21.757 (10.2s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:39:21.757&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:39:25.828 (4.071s)&#xA;&gt; Enter [It] should set cors methods to only allow POST, GET - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:62 @ 07/16/23 23:39:25.828&#xA;&lt; Exit [It] should set cors methods to only allow POST, GET - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:62 @ 07/16/23 23:39:35.962 (10.168s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:35.962&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:36.474 (511ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should be enabled with default settings" classname="nginx-ingress-controller e2e suite" status="passed" time="19.370634">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:36.475&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:45.251 (8.776s)&#xA;&gt; Enter [It] should be enabled with default settings - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:39 @ 07/16/23 23:39:45.251&#xA;&lt; Exit [It] should be enabled with default settings - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:39 @ 07/16/23 23:39:55.449 (10.198s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:55.449&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:55.846 (396ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should expose headers for cors" classname="nginx-ingress-controller e2e suite" status="passed" time="27.5362647">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:55.848&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:04.392 (8.579s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:40:04.392&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:40:12.535 (8.142s)&#xA;&gt; Enter [It] should expose headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:153 @ 07/16/23 23:40:12.535&#xA;&lt; Exit [It] should expose headers for cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:153 @ 07/16/23 23:40:22.872 (10.337s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:22.872&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:23.35 (478ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should ignore Ingress without IngressClass configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="30.7522369">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:23.353&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:31.723 (8.405s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:40:31.724&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:40:35.786 (4.063s)&#xA;&gt; Enter [It] should ignore Ingress without IngressClass configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:164 @ 07/16/23 23:40:35.786&#xA;&lt; Exit [It] should ignore Ingress without IngressClass configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:164 @ 07/16/23 23:40:53.138 (17.352s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:53.138&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:54.07 (932ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should 302 redirect to error page instead of 400 when auth-tls-error-page is set" classname="nginx-ingress-controller e2e suite" status="passed" time="27.2150254">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:54.097&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:02.625 (8.562s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:41:02.625&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:41:06.715 (4.09s)&#xA;&gt; Enter [It] should 302 redirect to error page instead of 400 when auth-tls-error-page is set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:114 @ 07/16/23 23:41:06.715&#xA;&lt; Exit [It] should 302 redirect to error page instead of 400 when auth-tls-error-page is set - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:114 @ 07/16/23 23:41:20.837 (14.122s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:20.837&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:21.278 (441ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-read-timeout should set valid proxy read timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="27.7274403">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:21.3&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:29.247 (7.948s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 07/16/23 23:41:29.248&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 07/16/23 23:41:31.27 (2.057s)&#xA;&gt; Enter [It] should set valid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:36 @ 07/16/23 23:41:31.27&#xA;&lt; Exit [It] should set valid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:36 @ 07/16/23 23:41:48.597 (17.327s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:48.597&#xA;&lt; Exit [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:48.993 (395ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1M" classname="nginx-ingress-controller e2e suite" status="passed" time="47.7200023">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:34.242&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:51.069 (16.827s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:07:51.069&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:08:07.17 (16.135s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1M - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:123 @ 07/16/23 23:08:07.17&#xA;&lt; Exit [It] should set client_body_buffer_size to 1M - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:123 @ 07/16/23 23:08:18.073 (10.903s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:18.073&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:21.927 (3.855s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="34.1352475">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:21.964&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:34.164 (12.234s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 07/16/23 23:08:34.164&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 07/16/23 23:08:38.275 (4.111s)&#xA;&gt; Enter [It] disable-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:35 @ 07/16/23 23:08:38.275&#xA;&lt; Exit [It] disable-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:35 @ 07/16/23 23:08:55.61 (17.335s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:55.61&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:56.065 (455ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] access-log access-log-path use the specified configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="20.0266119">
-              <system-err>&gt; Enter [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:56.067&#xA;&lt; Exit [BeforeEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:04.727 (8.695s)&#xA;&gt; Enter [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:42 @ 07/16/23 23:09:04.727&#xA;&lt; Exit [It] use the specified configuration - /go/src/k8s.io/ingress-nginx/test/e2e/settings/access_log.go:42 @ 07/16/23 23:09:15.337 (10.61s)&#xA;&gt; Enter [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:15.337&#xA;&lt; Exit [AfterEach] [Setting] access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:16.059 (722ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should set gzip_disable to msie6" classname="nginx-ingress-controller e2e suite" status="passed" time="28.4511687">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:16.064&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:26.631 (10.567s)&#xA;&gt; Enter [It] should set gzip_disable to msie6 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:67 @ 07/16/23 23:09:26.631&#xA;&lt; Exit [It] should set gzip_disable to msie6 - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:67 @ 07/16/23 23:09:43.812 (17.216s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:43.816&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:44.481 (664ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured removes HTTPS configuration when we delete TLS spec" classname="nginx-ingress-controller e2e suite" status="passed" time="43.7996681">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:44.483&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:52.854 (8.371s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:09:52.854&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:09:56.947 (4.093s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:09:56.947&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 07/16/23 23:10:14.472&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 07/16/23 23:10:22.717&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:10:22.74 (25.827s)&#xA;&gt; Enter [It] removes HTTPS configuration when we delete TLS spec - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:233 @ 07/16/23 23:10:22.74&#xA;&lt; Exit [It] removes HTTPS configuration when we delete TLS spec - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:233 @ 07/16/23 23:10:27.764 (5.024s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:27.764&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:28.249 (485ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] gzip should set gzip_types to application/javascript" classname="nginx-ingress-controller e2e suite" status="passed" time="26.4027206">
-              <system-err>&gt; Enter [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:28.252&#xA;&lt; Exit [BeforeEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:36.867 (8.65s)&#xA;&gt; Enter [It] should set gzip_types to application/javascript - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:89 @ 07/16/23 23:10:36.867&#xA;&lt; Exit [It] should set gzip_types to application/javascript - /go/src/k8s.io/ingress-nginx/test/e2e/settings/gzip.go:89 @ 07/16/23 23:10:54.131 (17.264s)&#xA;&gt; Enter [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:54.131&#xA;&lt; Exit [AfterEach] [Setting] gzip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:10:54.62 (489ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-snippet drops server snippet if disabled by the administrator" classname="nginx-ingress-controller e2e suite" status="passed" time="42.2234782">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:54.623&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:02.922 (8.355s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 07/16/23 23:11:02.922&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 07/16/23 23:11:07.043 (4.12s)&#xA;&gt; Enter [It] drops server snippet if disabled by the administrator - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:61 @ 07/16/23 23:11:07.043&#xA;&lt; Exit [It] drops server snippet if disabled by the administrator - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:61 @ 07/16/23 23:11:36.273 (29.286s)&#xA;&gt; Enter [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:36.273&#xA;&lt; Exit [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:36.734 (462ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1000" classname="nginx-ingress-controller e2e suite" status="passed" time="23.4842961">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:36.736&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:11:45.28 (8.543s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:11:45.28&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:11:49.471 (4.191s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1000 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:35 @ 07/16/23 23:11:49.471&#xA;&lt; Exit [It] should set client_body_buffer_size to 1000 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:35 @ 07/16/23 23:11:59.696 (10.224s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:11:59.696&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:00.22 (525ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-connect-timeout should set valid proxy timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="29.4130747">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:00.222&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:07.673 (7.488s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 07/16/23 23:12:07.673&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 07/16/23 23:12:11.802 (4.129s)&#xA;&gt; Enter [It] should set valid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:36 @ 07/16/23 23:12:11.802&#xA;&lt; Exit [It] should set valid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:36 @ 07/16/23 23:12:29.118 (17.317s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:29.119&#xA;&lt; Exit [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:29.598 (479ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Debug CLI should get information for a specific backend server" classname="nginx-ingress-controller e2e suite" status="passed" time="24.3579777">
-              <system-err>&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:29.6&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:38.338 (8.773s)&#xA;&gt; Enter [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 07/16/23 23:12:38.338&#xA;&lt; Exit [BeforeEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:33 @ 07/16/23 23:12:42.421 (4.083s)&#xA;&gt; Enter [It] should get information for a specific backend server - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:56 @ 07/16/23 23:12:42.421&#xA;&lt; Exit [It] should get information for a specific backend server - /go/src/k8s.io/ingress-nginx/test/e2e/dbg/main.go:56 @ 07/16/23 23:12:53.144 (10.723s)&#xA;&gt; Enter [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:53.144&#xA;&lt; Exit [AfterEach] Debug CLI - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:53.923 (779ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should return status code 200 when signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="27.5322042">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:53.953&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:02.253 (8.335s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:13:02.254&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:13:06.383 (4.13s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:13:06.383&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:13:20.773 (14.39s)&#xA;&gt; Enter [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:485 @ 07/16/23 23:13:20.773&#xA;&lt; Exit [It] should return status code 200 when signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:485 @ 07/16/23 23:13:20.8 (27ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:20.8&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:21.451 (651ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] no-auth-locations should return status code 200 when accessing &#39;/noauth&#39; unauthenticated" classname="nginx-ingress-controller e2e suite" status="passed" time="34.0313932">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:21.454&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:32.274 (10.854s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 07/16/23 23:13:32.274&#xA;&lt; Exit [BeforeEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:43 @ 07/16/23 23:13:51.868 (19.594s)&#xA;&gt; Enter [It] should return status code 200 when accessing &#39;/noauth&#39; unauthenticated - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:82 @ 07/16/23 23:13:51.868&#xA;&lt; Exit [It] should return status code 200 when accessing &#39;/noauth&#39; unauthenticated - /go/src/k8s.io/ingress-nginx/test/e2e/settings/no_auth_locations.go:82 @ 07/16/23 23:13:55.053 (3.185s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:55.053&#xA;&lt; Exit [AfterEach] [Setting] [Security] no-auth-locations - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:55.451 (398ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] force-ssl-redirect should redirect to https" classname="nginx-ingress-controller e2e suite" status="passed" time="20.1262433">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:55.453&#xA;&lt; Exit [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:03.927 (8.508s)&#xA;&gt; Enter [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:30 @ 07/16/23 23:14:03.927&#xA;&lt; Exit [BeforeEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:30 @ 07/16/23 23:14:08.019 (4.092s)&#xA;&gt; Enter [It] should redirect to https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:34 @ 07/16/23 23:14:08.019&#xA;&lt; Exit [It] should redirect to https - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/forcesslredirect.go:34 @ 07/16/23 23:14:15.059 (7.04s)&#xA;&gt; Enter [AfterEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:15.059&#xA;&lt; Exit [AfterEach] [Annotations] force-ssl-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:15.545 (486ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - matching origin with wildcard origin (2 subdomains)" classname="nginx-ingress-controller e2e suite" status="passed" time="35.4711634">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:15.546&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:25.303 (9.757s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:14:25.303&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:14:31.39 (6.086s)&#xA;&gt; Enter [It] should allow - matching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:425 @ 07/16/23 23:14:31.39&#xA;&lt; Exit [It] should allow - matching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:425 @ 07/16/23 23:14:38.906 (7.55s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:38.906&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:50.983 (12.078s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [TCP] tcp-services should reload after an update in the configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="32.8432535">
-              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:51.107&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:05.828 (14.755s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 07/16/23 23:15:05.828&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 07/16/23 23:15:05.835 (7ms)&#xA;&gt; Enter [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:169 @ 07/16/23 23:15:05.835&#xA;STEP: setting up a first deployment - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:171 @ 07/16/23 23:15:05.835&#xA;STEP: updating the tcp service to a second deployment - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:196 @ 07/16/23 23:15:13.198&#xA;&lt; Exit [It] should reload after an update in the configuration - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:169 @ 07/16/23 23:15:23.493 (17.658s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:23.493&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:23.916 (423ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] configmap server-snippet should add global server-snippet and drop annotations per admin config" classname="nginx-ingress-controller e2e suite" status="passed" time="45.5397753">
-              <system-err>&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:23.918&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:32.462 (8.579s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 07/16/23 23:15:32.462&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 07/16/23 23:15:36.539 (4.076s)&#xA;&gt; Enter [It] should add global server-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:92 @ 07/16/23 23:15:36.539&#xA;&lt; Exit [It] should add global server-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:92 @ 07/16/23 23:16:08.955 (32.451s)&#xA;&gt; Enter [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:08.955&#xA;&lt; Exit [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:09.389 (434ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - single origin with port and origin without port" classname="nginx-ingress-controller e2e suite" status="passed" time="19.8859877">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:09.392&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:17.757 (8.366s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:16:17.757&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:16:21.842 (4.084s)&#xA;&gt; Enter [It] should not allow - single origin with port and origin without port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:386 @ 07/16/23 23:16:21.842&#xA;&lt; Exit [It] should not allow - single origin with port and origin without port - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:386 @ 07/16/23 23:16:28.878 (7.036s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:28.878&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:29.277 (399ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set cookie with domain" classname="nginx-ingress-controller e2e suite" status="passed" time="22.134782">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:29.279&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:36.677 (7.433s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:16:36.678&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:16:40.761 (4.083s)&#xA;&gt; Enter [It] should set cookie with domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:225 @ 07/16/23 23:16:40.761&#xA;&lt; Exit [It] should set cookie with domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:225 @ 07/16/23 23:16:50.994 (10.233s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:50.994&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:51.379 (385ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] ssl-ciphers Add ssl ciphers" classname="nginx-ingress-controller e2e suite" status="passed" time="18.9356291">
-              <system-err>&gt; Enter [BeforeEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:51.381&#xA;&lt; Exit [BeforeEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:59.709 (8.329s)&#xA;&gt; Enter [It] Add ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_ciphers.go:31 @ 07/16/23 23:16:59.71&#xA;&lt; Exit [It] Add ssl ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ssl_ciphers.go:31 @ 07/16/23 23:17:09.861 (10.185s)&#xA;&gt; Enter [AfterEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:09.861&#xA;&lt; Exit [AfterEach] [Setting] ssl-ciphers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:10.282 (421ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] [PathType] exact should choose exact location for /exact" classname="nginx-ingress-controller e2e suite" status="passed" time="40.9304922">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:10.283&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:18.723 (8.44s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:33 @ 07/16/23 23:17:18.724&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:33 @ 07/16/23 23:17:22.807 (4.083s)&#xA;&gt; Enter [It] should choose exact location for /exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:37 @ 07/16/23 23:17:22.807&#xA;&lt; Exit [It] should choose exact location for /exact - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_exact.go:37 @ 07/16/23 23:17:50.668 (27.896s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:50.668&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] exact - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:51.179 (511ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] configmap server-snippet should add value of server-snippet setting to all ingress config" classname="nginx-ingress-controller e2e suite" status="passed" time="45.8906599">
-              <system-err>&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:51.181&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:59.818 (8.637s)&#xA;&gt; Enter [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 07/16/23 23:17:59.819&#xA;&lt; Exit [BeforeEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:31 @ 07/16/23 23:18:03.954 (4.169s)&#xA;&gt; Enter [It] should add value of server-snippet setting to all ingress config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:35 @ 07/16/23 23:18:03.954&#xA;&lt; Exit [It] should add value of server-snippet setting to all ingress config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_snippet.go:35 @ 07/16/23 23:18:36.609 (32.69s)&#xA;&gt; Enter [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:36.609&#xA;&lt; Exit [AfterEach] [Setting] configmap server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:37.003 (394ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] log-format-* Check log-format-escape-json and log-format-escape-none should enable the log-format-escape-json" classname="nginx-ingress-controller e2e suite" status="passed" time="30.2295655">
-              <system-err>&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:37.005&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:45.497 (8.492s)&#xA;&gt; Enter [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:18:45.497&#xA;&lt; Exit [BeforeEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:33 @ 07/16/23 23:18:56.635 (11.138s)&#xA;&gt; Enter [It] should enable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:47 @ 07/16/23 23:18:56.635&#xA;&lt; Exit [It] should enable the log-format-escape-json - /go/src/k8s.io/ingress-nginx/test/e2e/settings/log-format.go:47 @ 07/16/23 23:19:06.818 (10.218s)&#xA;&gt; Enter [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:06.819&#xA;&lt; Exit [AfterEach] [Setting] log-format-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:07.2 (381ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] server-snippet add valid directives to server via server snippet" classname="nginx-ingress-controller e2e suite" status="passed" time="23.3526123">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:07.202&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:15.79 (8.588s)&#xA;&gt; Enter [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 07/16/23 23:19:15.79&#xA;&lt; Exit [BeforeEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:31 @ 07/16/23 23:19:19.867 (4.077s)&#xA;&gt; Enter [It] add valid directives to server via server snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:35 @ 07/16/23 23:19:19.867&#xA;&lt; Exit [It] add valid directives to server via server snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/serversnippet.go:35 @ 07/16/23 23:19:30.126 (10.259s)&#xA;&gt; Enter [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:30.126&#xA;&lt; Exit [AfterEach] [Annotations] server-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:30.554 (428ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] [PathType] prefix checks should return 404 when prefix /aaa does not match request /aaaccc" classname="nginx-ingress-controller e2e suite" status="passed" time="23.302233">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:30.555&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:38.942 (8.421s)&#xA;&gt; Enter [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:31 @ 07/16/23 23:19:38.942&#xA;&lt; Exit [BeforeEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:31 @ 07/16/23 23:19:43.029 (4.087s)&#xA;&gt; Enter [It] should return 404 when prefix /aaa does not match request /aaaccc - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:35 @ 07/16/23 23:19:43.029&#xA;&lt; Exit [It] should return 404 when prefix /aaa does not match request /aaaccc - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/pathtype_prefix.go:35 @ 07/16/23 23:19:53.271 (10.241s)&#xA;&gt; Enter [AfterEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:53.271&#xA;&lt; Exit [AfterEach] [Ingress] [PathType] prefix checks - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:53.823 (553ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] server-tokens should not exists Server header in the response" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1654251">
-              <system-err>&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:53.836&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:02.051 (8.25s)&#xA;&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 07/16/23 23:20:02.051&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 07/16/23 23:20:06.14 (4.089s)&#xA;&gt; Enter [It] should not exists Server header in the response - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:38 @ 07/16/23 23:20:06.14&#xA;&lt; Exit [It] should not exists Server header in the response - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:38 @ 07/16/23 23:20:23.477 (17.337s)&#xA;&gt; Enter [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:23.477&#xA;&lt; Exit [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:23.967 (489ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] custom service uses custom default backend that returns 200 as status code" classname="nginx-ingress-controller e2e suite" status="passed" time="25.4070472">
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:23.968&#xA;&lt; Exit [BeforeEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:32.478 (8.544s)&#xA;&gt; Enter [It] uses custom default backend that returns 200 as status code - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/custom_default_backend.go:36 @ 07/16/23 23:20:32.478&#xA;&lt; Exit [It] uses custom default backend that returns 200 as status code - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/custom_default_backend.go:36 @ 07/16/23 23:20:48.821 (16.343s)&#xA;&gt; Enter [AfterEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:48.821&#xA;&lt; Exit [AfterEach] [Default Backend] custom service - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:49.341 (520ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should return 403 using auth-tls-match-cn with no matching CN from client" classname="nginx-ingress-controller e2e suite" status="passed" time="24.2762821">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:49.348&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:57.865 (8.517s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:20:57.865&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:21:01.925 (4.094s)&#xA;&gt; Enter [It] should return 403 using auth-tls-match-cn with no matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:266 @ 07/16/23 23:21:01.925&#xA;&lt; Exit [It] should return 403 using auth-tls-match-cn with no matching CN from client - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:266 @ 07/16/23 23:21:13.025 (11.101s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:13.025&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:13.59 (565ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Service] Type ExternalName should return 200 for service type=ExternalName using FQDN with trailing dot" classname="nginx-ingress-controller e2e suite" status="passed" time="20.6145828">
-              <system-err>&gt; Enter [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:13.591&#xA;&lt; Exit [BeforeEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:23.49 (9.898s)&#xA;&gt; Enter [It] should return 200 for service type=ExternalName using FQDN with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:217 @ 07/16/23 23:21:23.49&#xA;&lt; Exit [It] should return 200 for service type=ExternalName using FQDN with trailing dot - /go/src/k8s.io/ingress-nginx/test/e2e/servicebackend/service_externalname.go:217 @ 07/16/23 23:21:33.747 (10.292s)&#xA;&gt; Enter [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:33.747&#xA;&lt; Exit [AfterEach] [Service] Type ExternalName - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:34.172 (424ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-read-timeout should not set invalid proxy read timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="30.8205755">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:34.173&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:43.009 (8.836s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 07/16/23 23:21:43.009&#xA;&lt; Exit [BeforeEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:32 @ 07/16/23 23:21:47.1 (4.091s)&#xA;&gt; Enter [It] should not set invalid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:52 @ 07/16/23 23:21:47.1&#xA;&lt; Exit [It] should not set invalid proxy read timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_read_timeout.go:52 @ 07/16/23 23:22:04.345 (17.279s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:04.345&#xA;&lt; Exit [AfterEach] [Setting] proxy-read-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:04.959 (614ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set cookie with expires" classname="nginx-ingress-controller e2e suite" status="passed" time="23.2029575">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:04.961&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:13.436 (8.476s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:22:13.436&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:22:17.548 (4.111s)&#xA;&gt; Enter [It] should set cookie with expires - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:194 @ 07/16/23 23:22:17.548&#xA;&lt; Exit [It] should set cookie with expires - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:194 @ 07/16/23 23:22:27.746 (10.199s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:27.746&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:28.164 (417ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="23.630663">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:28.165&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:36.999 (8.868s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:36.999&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:22:41.09 (4.09s)&#xA;&gt; Enter [It] should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:284 @ 07/16/23 23:22:41.09&#xA;&lt; Exit [It] should not set snippet &#34;proxy_set_header My-Custom-Header 42;&#34; when external auth is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:284 @ 07/16/23 23:22:51.266 (10.177s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:51.266&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:51.761 (495ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should not exists opentracing directive" classname="nginx-ingress-controller e2e suite" status="passed" time="30.1947514">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:51.771&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:00.105 (8.333s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:23:00.105&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:23:04.146 (4.075s)&#xA;&gt; Enter [It] should not exists opentracing directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:58 @ 07/16/23 23:23:04.146&#xA;&lt; Exit [It] should not exists opentracing directive - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:58 @ 07/16/23 23:23:21.518 (17.372s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:21.518&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:21.932 (414ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:23:21.932&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:23:21.932 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should enable opentracing using jaeger with sampler host" classname="nginx-ingress-controller e2e suite" status="passed" time="34.1749552">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:21.935&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:31.384 (9.483s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:23:31.384&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:23:35.475 (4.091s)&#xA;&gt; Enter [It] should enable opentracing using jaeger with sampler host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:184 @ 07/16/23 23:23:35.475&#xA;&lt; Exit [It] should enable opentracing using jaeger with sampler host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:184 @ 07/16/23 23:23:55.524 (20.049s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:55.524&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:56.075 (551ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:23:56.075&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:23:56.075 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] definition without host should set ingress details variables for ingresses with host without IngressRuleValue, only Backend" classname="nginx-ingress-controller e2e suite" status="passed" time="23.1853069">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:56.077&#xA;&lt; Exit [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:04.518 (8.476s)&#xA;&gt; Enter [It] should set ingress details variables for ingresses with host without IngressRuleValue, only Backend - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:55 @ 07/16/23 23:24:04.518&#xA;&lt; Exit [It] should set ingress details variables for ingresses with host without IngressRuleValue, only Backend - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:55 @ 07/16/23 23:24:18.775 (14.257s)&#xA;&gt; Enter [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:18.775&#xA;&lt; Exit [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:19.228 (452ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to &#39;&#39; and use fastcgi_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="23.6797553">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:19.229&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:27.5 (8.272s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:24:27.501&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:24:31.562 (4.096s)&#xA;&gt; Enter [It] should set backend protocol to &#39;&#39; and use fastcgi_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:94 @ 07/16/23 23:24:31.562&#xA;&lt; Exit [It] should set backend protocol to &#39;&#39; and use fastcgi_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:94 @ 07/16/23 23:24:42.129 (10.566s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:42.129&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:42.874 (745ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Security] request smuggling should not return body content from error_page" classname="nginx-ingress-controller e2e suite" status="passed" time="35.7837448">
-              <system-err>&gt; Enter [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:42.875&#xA;&lt; Exit [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:51.845 (8.97s)&#xA;&gt; Enter [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:35 @ 07/16/23 23:24:51.845&#xA;&lt; Exit [BeforeEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:35 @ 07/16/23 23:24:55.921 (4.076s)&#xA;&gt; Enter [It] should not return body content from error_page - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:39 @ 07/16/23 23:24:55.921&#xA;&lt; Exit [It] should not return body content from error_page - /go/src/k8s.io/ingress-nginx/test/e2e/security/request_smuggling.go:39 @ 07/16/23 23:25:18.165 (22.279s)&#xA;&gt; Enter [AfterEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:18.165&#xA;&lt; Exit [AfterEach] [Security] request smuggling - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:18.624 (459ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* cookie set by external authentication server user does not retain cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="34.2596381">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:18.626&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:26.989 (8.37s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:25:26.996&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:25:31.086 (4.091s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 07/16/23 23:25:31.087&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:383 @ 07/16/23 23:25:52.393 (21.341s)&#xA;&gt; Enter [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:422 @ 07/16/23 23:25:52.393&#xA;&lt; Exit [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:422 @ 07/16/23 23:25:52.403 (10ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:52.403&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:52.851 (448ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Lua] dynamic certificates given an ingress with TLS correctly configured picks up a non-certificate only change" classname="nginx-ingress-controller e2e suite" status="passed" time="44.2339168">
-              <system-err>&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:52.853&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:01.147 (8.328s)&#xA;&gt; Enter [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:26:01.147&#xA;&lt; Exit [BeforeEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:41 @ 07/16/23 23:26:05.234 (4.087s)&#xA;&gt; Enter [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:26:05.234&#xA;STEP: configuring certificate_by_lua and skipping Nginx configuration of the new certificate - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:128 @ 07/16/23 23:26:22.995&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:136 @ 07/16/23 23:26:31.133&#xA;&lt; Exit [BeforeEach] given an ingress with TLS correctly configured - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:113 @ 07/16/23 23:26:31.179 (25.98s)&#xA;&gt; Enter [It] picks up a non-certificate only change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:218 @ 07/16/23 23:26:31.179&#xA;STEP: serving the configured certificate on HTTPS endpoint - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:229 @ 07/16/23 23:26:36.206&#xA;&lt; Exit [It] picks up a non-certificate only change - /go/src/k8s.io/ingress-nginx/test/e2e/lua/dynamic_certificates.go:218 @ 07/16/23 23:26:36.237 (5.058s)&#xA;&gt; Enter [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:36.237&#xA;&lt; Exit [AfterEach] [Lua] dynamic certificates - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:37.018 (782ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log disable-stream-access-log set access_log off" classname="nginx-ingress-controller e2e suite" status="passed" time="30.4588905">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:37.021&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:45.616 (8.596s)&#xA;&gt; Enter [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 07/16/23 23:26:45.616&#xA;&lt; Exit [BeforeEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:31 @ 07/16/23 23:26:49.683 (4.066s)&#xA;&gt; Enter [It] disable-stream-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:71 @ 07/16/23 23:26:49.683&#xA;&lt; Exit [It] disable-stream-access-log set access_log off - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/disableaccesslog.go:71 @ 07/16/23 23:27:06.949 (17.301s)&#xA;&gt; Enter [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:06.949&#xA;&lt; Exit [AfterEach] [Annotations] disable-access-log disable-http-access-log disable-stream-access-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:07.445 (496ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-catch-all should delete Ingress updated to catch-all" classname="nginx-ingress-controller e2e suite" status="passed" time="38.3532264">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:07.447&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:15.777 (8.33s)&#xA;&gt; Enter [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:27:15.778&#xA;&lt; Exit [BeforeEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:36 @ 07/16/23 23:27:30.909 (15.132s)&#xA;&gt; Enter [It] should delete Ingress updated to catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:81 @ 07/16/23 23:27:30.909&#xA;&lt; Exit [It] should delete Ingress updated to catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_catch_all.go:81 @ 07/16/23 23:27:45.291 (14.415s)&#xA;&gt; Enter [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:45.291&#xA;&lt; Exit [AfterEach] [Flag] disable-catch-all - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:45.766 (475ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1k" classname="nginx-ingress-controller e2e suite" status="passed" time="23.8919238">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:45.767&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:54.396 (8.629s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:27:54.396&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:27:58.524 (4.127s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1k - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:79 @ 07/16/23 23:27:58.524&#xA;&lt; Exit [It] should set client_body_buffer_size to 1k - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:79 @ 07/16/23 23:28:08.725 (10.235s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:08.725&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:09.625 (900ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should work with server-alias annotation" classname="nginx-ingress-controller e2e suite" status="passed" time="22.7231201">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:09.63&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:17.428 (7.798s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:28:17.428&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:28:21.486 (4.058s)&#xA;&gt; Enter [It] should work with server-alias annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:372 @ 07/16/23 23:28:21.486&#xA;&lt; Exit [It] should work with server-alias annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:372 @ 07/16/23 23:28:31.88 (10.429s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:31.88&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:32.319 (438ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Default Backend] SSL should return a self generated SSL certificate" classname="nginx-ingress-controller e2e suite" status="passed" time="15.0163295">
-              <system-err>&gt; Enter [BeforeEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:32.324&#xA;&lt; Exit [BeforeEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:41.907 (9.584s)&#xA;&gt; Enter [It] should return a self generated SSL certificate - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:29 @ 07/16/23 23:28:41.907&#xA;STEP: checking SSL Certificate using the NGINX IP address - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:30 @ 07/16/23 23:28:41.908&#xA;STEP: checking SSL Certificate using the NGINX catch all server - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:45 @ 07/16/23 23:28:46.925&#xA;&lt; Exit [It] should return a self generated SSL certificate - /go/src/k8s.io/ingress-nginx/test/e2e/defaultbackend/ssl.go:29 @ 07/16/23 23:28:46.943 (5.036s)&#xA;&gt; Enter [AfterEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:46.943&#xA;&lt; Exit [AfterEach] [Default Backend] SSL - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:47.34 (397ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] server-tokens should exists Server header in the response when is enabled" classname="nginx-ingress-controller e2e suite" status="passed" time="30.4229921">
-              <system-err>&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:47.341&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:55.857 (8.516s)&#xA;&gt; Enter [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 07/16/23 23:28:55.857&#xA;&lt; Exit [BeforeEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:34 @ 07/16/23 23:28:59.917 (4.06s)&#xA;&gt; Enter [It] should exists Server header in the response when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:50 @ 07/16/23 23:28:59.917&#xA;&lt; Exit [It] should exists Server header in the response when is enabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/server_tokens.go:50 @ 07/16/23 23:29:17.172 (17.289s)&#xA;&gt; Enter [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:17.172&#xA;&lt; Exit [AfterEach] [Setting] server-tokens - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:17.73 (558ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] modsecurity-snippet should add value of modsecurity-snippet setting to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="20.1582254">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:17.734&#xA;&lt; Exit [BeforeEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:26.783 (9.049s)&#xA;&gt; Enter [It] should add value of modsecurity-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/modsecurity/modsecurity_snippet.go:30 @ 07/16/23 23:29:26.783&#xA;&lt; Exit [It] should add value of modsecurity-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/modsecurity/modsecurity_snippet.go:30 @ 07/16/23 23:29:37.377 (10.63s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:37.377&#xA;&lt; Exit [AfterEach] [Setting] [Security] modsecurity-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:37.857 (480ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] enable-access-log enable-rewrite-log set rewrite_log on" classname="nginx-ingress-controller e2e suite" status="passed" time="22.3586037">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:37.859&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:45.315 (7.456s)&#xA;&gt; Enter [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 07/16/23 23:29:45.315&#xA;&lt; Exit [BeforeEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:30 @ 07/16/23 23:29:49.393 (4.078s)&#xA;&gt; Enter [It] set rewrite_log on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:49 @ 07/16/23 23:29:49.393&#xA;&lt; Exit [It] set rewrite_log on - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/log.go:49 @ 07/16/23 23:29:59.716 (10.323s)&#xA;&gt; Enter [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:59.716&#xA;&lt; Exit [AfterEach] [Annotations] enable-access-log enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:00.218 (501ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol - GRPC should return OK for service with backend protocol GRPCS" classname="nginx-ingress-controller e2e suite" status="passed" time="23.5406261">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:00.22&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:08.82 (8.64s)&#xA;&gt; Enter [It] should return OK for service with backend protocol GRPCS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:199 @ 07/16/23 23:30:08.82&#xA;&lt; Exit [It] should return OK for service with backend protocol GRPCS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/grpc.go:199 @ 07/16/23 23:30:23.242 (14.421s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:23.242&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - GRPC - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:30:23.721 (479ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] stream-snippet should add stream-snippet and drop annotations per admin config" classname="nginx-ingress-controller e2e suite" status="passed" time="42.9605084">
-              <system-err>&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:23.724&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:30:32.155 (8.497s)&#xA;&gt; Enter [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 07/16/23 23:30:32.155&#xA;&lt; Exit [BeforeEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:37 @ 07/16/23 23:30:36.238 (4.083s)&#xA;&gt; Enter [It] should add stream-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:85 @ 07/16/23 23:30:36.238&#xA;&lt; Exit [It] should add stream-snippet and drop annotations per admin config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/streamsnippet.go:85 @ 07/16/23 23:31:06.15 (29.95s)&#xA;&gt; Enter [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:06.15&#xA;&lt; Exit [AfterEach] [Setting] stream-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:06.581 (431ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set sticky cookie without host" classname="nginx-ingress-controller e2e suite" status="passed" time="23.2996416">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:06.583&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:15.201 (8.619s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:31:15.201&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:31:19.262 (4.061s)&#xA;&gt; Enter [It] should set sticky cookie without host - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:352 @ 07/16/23 23:31:19.262&#xA;&lt; Exit [It] should set sticky cookie without host - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:352 @ 07/16/23 23:31:29.469 (10.206s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:29.469&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:29.882 (413ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] configuration-snippet set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34;" classname="nginx-ingress-controller e2e suite" status="passed" time="24.9538328">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:29.885&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:40.12 (10.27s)&#xA;&gt; Enter [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 07/16/23 23:31:40.12&#xA;&lt; Exit [BeforeEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:31 @ 07/16/23 23:31:44.185 (4.066s)&#xA;&gt; Enter [It] set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:35 @ 07/16/23 23:31:44.185&#xA;&lt; Exit [It] set snippet &#34;more_set_headers &#34;Foo1: Bar1&#34;;&#34; in all locations&#34; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/snippet.go:35 @ 07/16/23 23:31:54.361 (10.176s)&#xA;&gt; Enter [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:54.361&#xA;&lt; Exit [AfterEach] [Annotations] configuration-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:31:54.803 (442ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should enable opentracing using jaeger" classname="nginx-ingress-controller e2e suite" status="passed" time="32.7940916">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:31:54.805&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:03.07 (8.3s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:32:03.07&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:32:07.143 (4.072s)&#xA;&gt; Enter [It] should enable opentracing using jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:172 @ 07/16/23 23:32:07.143&#xA;&lt; Exit [It] should enable opentracing using jaeger - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:172 @ 07/16/23 23:32:27.197 (20.054s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:27.197&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:27.565 (368ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:32:27.565&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:32:27.565 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] backend-protocol should set backend protocol to &#39;&#39; and use ajp_pass" classname="nginx-ingress-controller e2e suite" status="passed" time="23.2995558">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:27.566&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:35.926 (8.394s)&#xA;&gt; Enter [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:32:35.926&#xA;&lt; Exit [BeforeEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:30 @ 07/16/23 23:32:40.026 (4.1s)&#xA;&gt; Enter [It] should set backend protocol to &#39;&#39; and use ajp_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:109 @ 07/16/23 23:32:40.026&#xA;&lt; Exit [It] should set backend protocol to &#39;&#39; and use ajp_pass - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/backendprotocol.go:109 @ 07/16/23 23:32:50.274 (10.248s)&#xA;&gt; Enter [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:50.274&#xA;&lt; Exit [AfterEach] [Annotations] backend-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:32:50.832 (558ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-forwarded-headers should trust X-Forwarded headers when setting is true" classname="nginx-ingress-controller e2e suite" status="passed" time="37.3268827">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:50.833&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:32:59.336 (8.503s)&#xA;&gt; Enter [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 07/16/23 23:32:59.336&#xA;&lt; Exit [BeforeEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:35 @ 07/16/23 23:33:10.405 (11.103s)&#xA;&gt; Enter [It] should trust X-Forwarded headers when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:40 @ 07/16/23 23:33:10.405&#xA;STEP: ensuring single values are parsed correctly - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:54 @ 07/16/23 23:33:27.663&#xA;STEP: ensuring that first entry in X-Forwarded-Host is used as the best host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:75 @ 07/16/23 23:33:27.674&#xA;&lt; Exit [It] should trust X-Forwarded headers when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/forwarded_headers.go:40 @ 07/16/23 23:33:27.683 (17.278s)&#xA;&gt; Enter [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:27.683&#xA;&lt; Exit [AfterEach] [Setting] use-forwarded-headers - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:28.126 (443ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Endpointslices] long service name should return 200 when service name has max allowed number of characters 63" classname="nginx-ingress-controller e2e suite" status="passed" time="22.090578">
-              <system-err>&gt; Enter [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:28.128&#xA;&lt; Exit [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:35.418 (7.324s)&#xA;&gt; Enter [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:34 @ 07/16/23 23:33:35.418&#xA;&lt; Exit [BeforeEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:34 @ 07/16/23 23:33:39.517 (4.099s)&#xA;&gt; Enter [It] should return 200 when service name has max allowed number of characters 63 - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:38 @ 07/16/23 23:33:39.517&#xA;STEP: checking if the service is reached - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:48 @ 07/16/23 23:33:49.731&#xA;&lt; Exit [It] should return 200 when service name has max allowed number of characters 63 - /go/src/k8s.io/ingress-nginx/test/e2e/endpointslices/longname.go:38 @ 07/16/23 23:33:49.739 (10.222s)&#xA;&gt; Enter [AfterEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:49.739&#xA;&lt; Exit [AfterEach] [Endpointslices] long service name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:33:50.184 (444ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES" classname="nginx-ingress-controller e2e suite" status="passed" time="23.7545107">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:50.185&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:33:58.583 (8.398s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:33:58.583&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:34:02.597 (4.049s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:94 @ 07/16/23 23:34:02.598&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:94 @ 07/16/23 23:34:13.497 (10.899s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:13.497&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:13.905 (409ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] main-snippet should add value of main-snippet setting to nginx config" classname="nginx-ingress-controller e2e suite" status="passed" time="19.0534585">
-              <system-err>&gt; Enter [BeforeEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:13.907&#xA;&lt; Exit [BeforeEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:22.216 (8.309s)&#xA;&gt; Enter [It] should add value of main-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/main_snippet.go:31 @ 07/16/23 23:34:22.216&#xA;&lt; Exit [It] should add value of main-snippet setting to nginx config - /go/src/k8s.io/ingress-nginx/test/e2e/settings/main_snippet.go:31 @ 07/16/23 23:34:32.368 (10.187s)&#xA;&gt; Enter [AfterEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:32.368&#xA;&lt; Exit [AfterEach] [Setting] main-snippet - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:34:32.925 (557ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header overriding what&#39;s set from the upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="31.8430583">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:32.927&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:34:41.551 (8.624s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:34:41.551&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:34:47.637 (6.086s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:34:47.637&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:34:57.01 (9.372s)&#xA;&gt; Enter [It] overriding what&#39;s set from the upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:166 @ 07/16/23 23:34:57.01&#xA;&lt; Exit [It] overriding what&#39;s set from the upstream - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:166 @ 07/16/23 23:35:04.275 (7.3s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:04.275&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:04.736 (461ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should disable modsecurity" classname="nginx-ingress-controller e2e suite" status="passed" time="24.4810909">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:04.742&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:14.56 (9.817s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:35:14.56&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:35:18.617 (4.057s)&#xA;&gt; Enter [It] should disable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:74 @ 07/16/23 23:35:18.617&#xA;&lt; Exit [It] should disable modsecurity - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:74 @ 07/16/23 23:35:28.832 (10.214s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:28.832&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:29.223 (392ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-tls-* should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2" classname="nginx-ingress-controller e2e suite" status="passed" time="24.8904639">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:29.225&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:38.691 (9.501s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:35:38.692&#xA;&lt; Exit [BeforeEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:32 @ 07/16/23 23:35:42.8 (4.108s)&#xA;&gt; Enter [It] should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:84 @ 07/16/23 23:35:42.8&#xA;&lt; Exit [It] should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/authtls.go:84 @ 07/16/23 23:35:53.62 (10.82s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:53.62&#xA;&lt; Exit [AfterEach] [Annotations] auth-tls-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:35:54.081 (461ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should change cookie name on ingress definition change" classname="nginx-ingress-controller e2e suite" status="passed" time="31.6513169">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:35:54.084&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:03.891 (9.841s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:36:03.891&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:36:09.979 (6.088s)&#xA;&gt; Enter [It] should change cookie name on ingress definition change - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:64 @ 07/16/23 23:36:09.979&#xA;&lt; Exit [It] should change cookie name on ingress definition change - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:64 @ 07/16/23 23:36:25.241 (15.261s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:25.241&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:25.701 (460ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should enable cors" classname="nginx-ingress-controller e2e suite" status="passed" time="22.7059893">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:25.703&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:33.605 (7.936s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:36:33.605&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:36:37.682 (4.077s)&#xA;&gt; Enter [It] should enable cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:35 @ 07/16/23 23:36:37.682&#xA;&lt; Exit [It] should enable cors - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:35 @ 07/16/23 23:36:47.901 (10.219s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:47.901&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:36:48.375 (474ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-ssl-* should set valid proxy-ssl-secret, proxy-ssl-protocols" classname="nginx-ingress-controller e2e suite" status="passed" time="26.3214044">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:48.376&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:36:56.928 (8.552s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:36:56.928&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:33 @ 07/16/23 23:37:03.013 (6.119s)&#xA;&gt; Enter [It] should set valid proxy-ssl-secret, proxy-ssl-protocols - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:122 @ 07/16/23 23:37:03.013&#xA;&lt; Exit [It] should set valid proxy-ssl-secret, proxy-ssl-protocols - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxyssl.go:122 @ 07/16/23 23:37:14.194 (11.181s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:14.194&#xA;&lt; Exit [AfterEach] [Annotations] proxy-ssl-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:14.663 (469ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] client-body-buffer-size should set client_body_buffer_size to 1K" classname="nginx-ingress-controller e2e suite" status="passed" time="23.0879898">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:14.665&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:22.951 (8.286s)&#xA;&gt; Enter [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:37:22.951&#xA;&lt; Exit [BeforeEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:31 @ 07/16/23 23:37:27.087 (4.136s)&#xA;&gt; Enter [It] should set client_body_buffer_size to 1K - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:57 @ 07/16/23 23:37:27.087&#xA;&lt; Exit [It] should set client_body_buffer_size to 1K - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/clientbodybuffersize.go:57 @ 07/16/23 23:37:37.286 (10.233s)&#xA;&gt; Enter [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:37.286&#xA;&lt; Exit [AfterEach] [Annotations] client-body-buffer-size - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:37:37.719 (433ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with snippet" classname="nginx-ingress-controller e2e suite" status="passed" time="24.5298388">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:37.721&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:37:47.137 (9.416s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:37:47.137&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:37:51.362 (4.225s)&#xA;&gt; Enter [It] should enable modsecurity with snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:91 @ 07/16/23 23:37:51.362&#xA;&lt; Exit [It] should enable modsecurity with snippet - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:91 @ 07/16/23 23:38:01.535 (10.206s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:01.535&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:02.216 (682ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] proxy-connect-timeout should not set invalid proxy timeouts using configmap values" classname="nginx-ingress-controller e2e suite" status="passed" time="29.3663941">
-              <system-err>&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:02.219&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:09.728 (7.509s)&#xA;&gt; Enter [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 07/16/23 23:38:09.729&#xA;&lt; Exit [BeforeEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:32 @ 07/16/23 23:38:13.797 (4.069s)&#xA;&gt; Enter [It] should not set invalid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:52 @ 07/16/23 23:38:13.797&#xA;&lt; Exit [It] should not set invalid proxy timeouts using configmap values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_connect_timeout.go:52 @ 07/16/23 23:38:31.175 (17.412s)&#xA;&gt; Enter [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:31.175&#xA;&lt; Exit [AfterEach] [Setting] proxy-connect-timeout - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:38:31.552 (376ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should not create additional upstream block when auth-keepalive is set with HTTP/2" classname="nginx-ingress-controller e2e suite" status="passed" time="36.6293011">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:31.553&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:38:40.919 (9.366s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:38:40.919&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:38:46.993 (6.074s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:38:46.993&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:39:03.307 (16.348s)&#xA;&gt; Enter [It] should not create additional upstream block when auth-keepalive is set with HTTP/2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:609 @ 07/16/23 23:39:03.307&#xA;&lt; Exit [It] should not create additional upstream block when auth-keepalive is set with HTTP/2 - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:609 @ 07/16/23 23:39:07.472 (4.165s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:07.472&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:08.148 (676ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name should set the path to /something on the generated cookie" classname="nginx-ingress-controller e2e suite" status="passed" time="25.1126173">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:08.153&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:16.57 (8.417s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:39:16.57&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:39:22.657 (6.087s)&#xA;&gt; Enter [It] should set the path to /something on the generated cookie - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:99 @ 07/16/23 23:39:22.657&#xA;&lt; Exit [It] should set the path to /something on the generated cookie - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:99 @ 07/16/23 23:39:32.838 (10.215s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:32.838&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:33.231 (394ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) ports or X-Forwarded-Host check during HTTP tp HTTPS redirection should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection" classname="nginx-ingress-controller e2e suite" status="passed" time="30.2725692">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:33.235&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:40.596 (7.361s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:39:40.596&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:39:44.718 (4.122s)&#xA;&gt; Enter [It] should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:205 @ 07/16/23 23:39:44.718&#xA;Jul 16 23:40:00.953: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [It] should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:205 @ 07/16/23 23:40:02.967 (18.283s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:02.967&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:03.473 (506ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Ingress] definition without host should set ingress details variables for ingresses without a host" classname="nginx-ingress-controller e2e suite" status="passed" time="25.5938495">
-              <system-err>&gt; Enter [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:03.475&#xA;&lt; Exit [BeforeEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:14.008 (10.533s)&#xA;&gt; Enter [It] should set ingress details variables for ingresses without a host - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:34 @ 07/16/23 23:40:14.008&#xA;&lt; Exit [It] should set ingress details variables for ingresses without a host - /go/src/k8s.io/ingress-nginx/test/e2e/ingress/without_host.go:34 @ 07/16/23 23:40:28.273 (14.265s)&#xA;&gt; Enter [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:28.274&#xA;&lt; Exit [AfterEach] [Ingress] definition without host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:29.069 (795ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - unmatching origin with wildcard origin (2 subdomains)" classname="nginx-ingress-controller e2e suite" status="passed" time="19.1383321">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:29.07&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:36.48 (7.444s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:40:36.48&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:40:40.607 (4.127s)&#xA;&gt; Enter [It] should not allow - unmatching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:468 @ 07/16/23 23:40:40.607&#xA;&lt; Exit [It] should not allow - unmatching origin with wildcard origin (2 subdomains) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:468 @ 07/16/23 23:40:47.651 (7.043s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:47.651&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:48.174 (524ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Dynamic $proxy_host should exist a proxy_host using the upstream-vhost annotation value" classname="nginx-ingress-controller e2e suite" status="passed" time="23.4757701">
-              <system-err>&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:48.176&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:56.86 (8.684s)&#xA;&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 07/16/23 23:40:56.86&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 07/16/23 23:41:00.951 (4.125s)&#xA;&gt; Enter [It] should exist a proxy_host using the upstream-vhost annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:57 @ 07/16/23 23:41:00.951&#xA;&lt; Exit [It] should exist a proxy_host using the upstream-vhost annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:57 @ 07/16/23 23:41:11.126 (10.175s)&#xA;&gt; Enter [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:11.126&#xA;&lt; Exit [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:11.617 (491ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] connection-proxy-header set connection header to keep-alive" classname="nginx-ingress-controller e2e suite" status="passed" time="21.2601189">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:11.624&#xA;&lt; Exit [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:20.141 (8.516s)&#xA;&gt; Enter [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:32 @ 07/16/23 23:41:20.141&#xA;&lt; Exit [BeforeEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:32 @ 07/16/23 23:41:22.214 (2.074s)&#xA;&gt; Enter [It] set connection header to keep-alive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:36 @ 07/16/23 23:41:22.214&#xA;&lt; Exit [It] set connection header to keep-alive - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/connection.go:36 @ 07/16/23 23:41:32.382 (10.202s)&#xA;&gt; Enter [AfterEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:32.382&#xA;&lt; Exit [AfterEach] [Annotations] connection-proxy-header - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:32.85 (468ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] from-to-www-redirect should redirect from www HTTPS to HTTPS" classname="nginx-ingress-controller e2e suite" status="passed" time="27.3605633">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:32.854&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:40.227 (7.374s)&#xA;&gt; Enter [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 07/16/23 23:41:40.227&#xA;&lt; Exit [BeforeEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:34 @ 07/16/23 23:41:44.297 (4.07s)&#xA;&gt; Enter [It] should redirect from www HTTPS to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:64 @ 07/16/23 23:41:44.297&#xA;STEP: setting up server for redirect from www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:65 @ 07/16/23 23:41:44.297&#xA;STEP: sending request to www should redirect to domain - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:91 @ 07/16/23 23:41:59.768&#xA;STEP: sending request to domain should not redirect to www - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:103 @ 07/16/23 23:41:59.784&#xA;&lt; Exit [It] should redirect from www HTTPS to HTTPS - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/fromtowwwredirect.go:64 @ 07/16/23 23:41:59.805 (15.508s)&#xA;&gt; Enter [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:59.805&#xA;&lt; Exit [AfterEach] [Annotations] from-to-www-redirect - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:42:00.18 (409ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should allow - single origin for multiple cors values" classname="nginx-ingress-controller e2e suite" status="passed" time="40.8055021">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:34.241&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:07:48.51 (14.268s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:07:48.51&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:08:06.784 (18.308s)&#xA;&gt; Enter [It] should allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:169 @ 07/16/23 23:08:06.784&#xA;&lt; Exit [It] should allow - single origin for multiple cors values - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:169 @ 07/16/23 23:08:13.874 (7.09s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:13.874&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:15.012 (1.138s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should turn off proxy-request-buffering" classname="nginx-ingress-controller e2e suite" status="passed" time="31.5103211">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:15.026&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:31.711 (16.684s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:08:31.711&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:08:35.749 (4.073s)&#xA;&gt; Enter [It] should turn off proxy-request-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:179 @ 07/16/23 23:08:35.749&#xA;&lt; Exit [It] should turn off proxy-request-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:179 @ 07/16/23 23:08:45.914 (10.164s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:45.914&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:08:46.502 (588ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure Opentelemetry should exists opentelemetry_operation_name directive when is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="35.2157044">
-              <system-err>&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:46.507&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:08:58.795 (12.288s)&#xA;&gt; Enter [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:08:58.795&#xA;&lt; Exit [BeforeEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:40 @ 07/16/23 23:09:02.852 (4.092s)&#xA;&gt; Enter [It] should exists opentelemetry_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:104 @ 07/16/23 23:09:02.852&#xA;&lt; Exit [It] should exists opentelemetry_operation_name directive when is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:104 @ 07/16/23 23:09:20.835 (17.983s)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:20.835&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:21.688 (853ms)&#xA;&gt; Enter [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:09:21.688&#xA;&lt; Exit [AfterEach] Configure Opentelemetry - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentelemetry.go:44 @ 07/16/23 23:09:21.688 (0s)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting includeSubDomains parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="33.9353808">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:21.694&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:29.368 (7.675s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:09:29.369&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:09:33.396 (4.061s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:09:33.396&#xA;Jul 16 23:09:42.839: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:09:44.841 (11.445s)&#xA;&gt; Enter [It] setting includeSubDomains parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:127 @ 07/16/23 23:09:44.841&#xA;&lt; Exit [It] setting includeSubDomains parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:127 @ 07/16/23 23:09:55.117 (10.276s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:55.117&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:09:55.595 (478ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication with caching is configured should deny login for different servers" classname="nginx-ingress-controller e2e suite" status="passed" time="141.4069732">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:09:55.621&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:10:03.902 (8.315s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:10:03.902&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:10:07.984 (4.082s)&#xA;&gt; Enter [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:10:07.984&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:10:23.092&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:10:33.264&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:754 @ 07/16/23 23:10:43.654&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:761 @ 07/16/23 23:10:53.881&#xA;&lt; Exit [BeforeEach] when external authentication with caching is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:730 @ 07/16/23 23:11:09.227 (1m1.333s)&#xA;&gt; Enter [It] should deny login for different servers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:820 @ 07/16/23 23:11:09.227&#xA;STEP: logging into server thisHost /foo - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:821 @ 07/16/23 23:11:09.227&#xA;STEP: receiving an internal server error without cache on thisHost location /bar - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:833 @ 07/16/23 23:11:16.27&#xA;&lt; Exit [It] should deny login for different servers - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:820 @ 07/16/23 23:12:16.192 (1m7.058s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:16.192&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:16.811 (619ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the upstream keep alive should set the request count to upstream server through one keep alive connection" classname="nginx-ingress-controller e2e suite" status="passed" time="30.936815">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:16.817&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:25.674 (8.857s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:12:25.674&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:12:36.81 (11.17s)&#xA;&gt; Enter [It] should set the request count to upstream server through one keep alive connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:86 @ 07/16/23 23:12:36.81&#xA;&lt; Exit [It] should set the request count to upstream server through one keep alive connection - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:86 @ 07/16/23 23:12:47.088 (10.278s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:47.088&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:12:47.718 (631ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] keep-alive keep-alive-requests Check the keep alive should set keepalive_timeout" classname="nginx-ingress-controller e2e suite" status="passed" time="31.1564128">
-              <system-err>&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:47.72&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:12:56.863 (9.143s)&#xA;&gt; Enter [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:12:56.863&#xA;&lt; Exit [BeforeEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:33 @ 07/16/23 23:13:07.932 (11.103s)&#xA;&gt; Enter [It] should set keepalive_timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:40 @ 07/16/23 23:13:07.932&#xA;&lt; Exit [It] should set keepalive_timeout - /go/src/k8s.io/ingress-nginx/test/e2e/settings/keep-alive.go:40 @ 07/16/23 23:13:18.203 (10.272s)&#xA;&gt; Enter [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:18.203&#xA;&lt; Exit [AfterEach] [Setting] keep-alive keep-alive-requests - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:18.842 (639ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-multi-accept should be enabled when set to true" classname="nginx-ingress-controller e2e suite" status="passed" time="20.7630135">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:18.844&#xA;&lt; Exit [BeforeEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:28.621 (9.777s)&#xA;&gt; Enter [It] should be enabled when set to true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:39 @ 07/16/23 23:13:28.621&#xA;&lt; Exit [It] should be enabled when set to true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/multi_accept.go:39 @ 07/16/23 23:13:39.052 (10.465s)&#xA;&gt; Enter [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:39.052&#xA;&lt; Exit [AfterEach] [Setting] enable-multi-accept - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:13:39.573 (521ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] ingress-class With default ingress class config should serve Ingress when class is updated between annotation and ingressClassName" classname="nginx-ingress-controller e2e suite" status="passed" time="38.8464615">
-              <system-err>&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:39.576&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:13:47.884 (8.308s)&#xA;&gt; Enter [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:13:47.884&#xA;&lt; Exit [BeforeEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:47 @ 07/16/23 23:13:51.979 (4.095s)&#xA;&gt; Enter [It] should serve Ingress when class is updated between annotation and ingressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:323 @ 07/16/23 23:13:51.979&#xA;&lt; Exit [It] should serve Ingress when class is updated between annotation and ingressClassName - /go/src/k8s.io/ingress-nginx/test/e2e/settings/ingress_class.go:323 @ 07/16/23 23:14:17.414 (25.47s)&#xA;&gt; Enter [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:17.414&#xA;&lt; Exit [AfterEach] [Flag] ingress-class - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:18.388 (973ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* when canary is created should response with a 200 status from the mainline upstream when requests are made to the mainline ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="39.6534635">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:18.39&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:27.699 (9.309s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:14:27.699&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:14:34.284 (6.619s)&#xA;&gt; Enter [It] should response with a 200 status from the mainline upstream when requests are made to the mainline ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:48 @ 07/16/23 23:14:34.284&#xA;&lt; Exit [It] should response with a 200 status from the mainline upstream when requests are made to the mainline ingress - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:48 @ 07/16/23 23:14:57.094 (22.81s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:57.094&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:14:58.009 (914ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should use correct longest path match" classname="nginx-ingress-controller e2e suite" status="passed" time="38.056706">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:14:58.012&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:08.991 (11.014s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:15:08.991&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:15:15.072 (6.08s)&#xA;&gt; Enter [It] should use correct longest path match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:66 @ 07/16/23 23:15:15.072&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:69 @ 07/16/23 23:15:15.072&#xA;STEP: making a request to the non-rewritten location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:78 @ 07/16/23 23:15:25.351&#xA;STEP: creating an ingress definition with the rewrite-target annotation set on the &#34;/&#34; location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:88 @ 07/16/23 23:15:25.361&#xA;STEP: making a second request to the non-rewritten location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:102 @ 07/16/23 23:15:35.543&#xA;&lt; Exit [It] should use correct longest path match - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:66 @ 07/16/23 23:15:35.551 (20.514s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:35.551&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:15:36 (449ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] x-forwarded-prefix should set the X-Forwarded-Prefix to the annotation value" classname="nginx-ingress-controller e2e suite" status="passed" time="25.22843">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:36.002&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:15:44.55 (8.548s)&#xA;&gt; Enter [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 07/16/23 23:15:44.55&#xA;&lt; Exit [BeforeEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:31 @ 07/16/23 23:15:50.604 (6.055s)&#xA;&gt; Enter [It] should set the X-Forwarded-Prefix to the annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:35 @ 07/16/23 23:15:50.604&#xA;&lt; Exit [It] should set the X-Forwarded-Prefix to the annotation value - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/xforwardedprefix.go:35 @ 07/16/23 23:16:00.832 (10.227s)&#xA;&gt; Enter [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:00.832&#xA;&lt; Exit [AfterEach] [Annotations] x-forwarded-prefix - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:01.23 (398ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] secret update should not appear references to secret updates not used in ingress rules" classname="nginx-ingress-controller e2e suite" status="passed" time="36.6225179">
-              <system-err>&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:01.232&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:09.619 (8.421s)&#xA;&gt; Enter [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 07/16/23 23:16:09.619&#xA;&lt; Exit [BeforeEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:36 @ 07/16/23 23:16:13.742 (4.123s)&#xA;&gt; Enter [It] should not appear references to secret updates not used in ingress rules - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:40 @ 07/16/23 23:16:13.742&#xA;&lt; Exit [It] should not appear references to secret updates not used in ingress rules - /go/src/k8s.io/ingress-nginx/test/e2e/ssl/secret_update.go:40 @ 07/16/23 23:16:37.172 (23.465s)&#xA;&gt; Enter [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:37.172&#xA;&lt; Exit [AfterEach] [SSL] secret update - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:16:37.786 (614ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should set snippet when global external auth is configured" classname="nginx-ingress-controller e2e suite" status="passed" time="58.0479243">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:37.787&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:16:46.283 (8.495s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:16:46.283&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:16:54.442 (8.159s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:16:54.442&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:16:54.442&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:17:04.664&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:17:15.032&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:17:25.212 (30.804s)&#xA;&gt; Enter [It] should set snippet when global external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:250 @ 07/16/23 23:17:25.212&#xA;STEP: Adding a global-auth-snippet to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:254 @ 07/16/23 23:17:25.212&#xA;&lt; Exit [It] should set snippet when global external auth is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:250 @ 07/16/23 23:17:35.375 (10.198s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:35.375&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:35.767 (391ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] cors-* should not allow - portless origin with wildcard origin" classname="nginx-ingress-controller e2e suite" status="passed" time="20.021794">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:35.769&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:44.223 (8.454s)&#xA;&gt; Enter [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:17:44.223&#xA;&lt; Exit [BeforeEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:31 @ 07/16/23 23:17:48.3 (4.077s)&#xA;&gt; Enter [It] should not allow - portless origin with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:515 @ 07/16/23 23:17:48.3&#xA;&lt; Exit [It] should not allow - portless origin with wildcard origin - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/cors.go:515 @ 07/16/23 23:17:55.341 (7.041s)&#xA;&gt; Enter [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:55.341&#xA;&lt; Exit [AfterEach] [Annotations] cors-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:17:55.791 (449ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] affinity session-cookie-name does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend" classname="nginx-ingress-controller e2e suite" status="passed" time="23.1537606">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:17:55.792&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:04.137 (8.379s)&#xA;&gt; Enter [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:18:04.137&#xA;&lt; Exit [BeforeEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:38 @ 07/16/23 23:18:08.248 (4.112s)&#xA;&gt; Enter [It] does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:121 @ 07/16/23 23:18:08.249&#xA;&lt; Exit [It] does not set the path to / on the generated cookie if there&#39;s more than one rule referring to the same backend - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/affinity.go:121 @ 07/16/23 23:18:18.49 (10.241s)&#xA;&gt; Enter [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:18.49&#xA;&lt; Exit [AfterEach] [Annotations] affinity session-cookie-name - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:18.911 (422ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] satisfy should allow multiple auth with satisfy any" classname="nginx-ingress-controller e2e suite" status="passed" time="29.3125471">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:18.912&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:27.287 (8.374s)&#xA;&gt; Enter [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 07/16/23 23:18:27.287&#xA;&lt; Exit [BeforeEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:38 @ 07/16/23 23:18:31.349 (4.062s)&#xA;&gt; Enter [It] should allow multiple auth with satisfy any - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:84 @ 07/16/23 23:18:31.349&#xA;&lt; Exit [It] should allow multiple auth with satisfy any - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/satisfy.go:84 @ 07/16/23 23:18:47.764 (16.45s)&#xA;&gt; Enter [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:47.764&#xA;&lt; Exit [AfterEach] [Annotations] satisfy - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:18:48.191 (427ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] Bad annotation values [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass" classname="nginx-ingress-controller e2e suite" status="passed" time="38.4002606">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:48.193&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:18:56.623 (8.43s)&#xA;&gt; Enter [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:18:56.623&#xA;&lt; Exit [BeforeEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:32 @ 07/16/23 23:19:00.738 (4.115s)&#xA;&gt; Enter [It] [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:133 @ 07/16/23 23:19:00.738&#xA;&lt; Exit [It] [BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass - /go/src/k8s.io/ingress-nginx/test/e2e/settings/badannotationvalues.go:133 @ 07/16/23 23:19:26.161 (25.457s)&#xA;&gt; Enter [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:26.161&#xA;&lt; Exit [AfterEach] [Annotations] Bad annotation values - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:26.559 (398ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Dynamic $proxy_host should exist a proxy_host" classname="nginx-ingress-controller e2e suite" status="passed" time="23.2717891">
-              <system-err>&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:26.564&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:35.081 (8.55s)&#xA;&gt; Enter [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 07/16/23 23:19:35.081&#xA;&lt; Exit [BeforeEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:32 @ 07/16/23 23:19:39.133 (4.052s)&#xA;&gt; Enter [It] should exist a proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:36 @ 07/16/23 23:19:39.133&#xA;&lt; Exit [It] should exist a proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_host.go:36 @ 07/16/23 23:19:49.376 (10.244s)&#xA;&gt; Enter [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:49.376&#xA;&lt; Exit [AfterEach] Dynamic $proxy_host - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:19:49.802 (425ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [SSL] [Flag] default-ssl-certificate uses default ssl certificate for catch-all ingress" classname="nginx-ingress-controller e2e suite" status="passed" time="36.4974907">
-              <system-err>&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:49.804&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:19:58.14 (8.336s)&#xA;&gt; Enter [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 07/16/23 23:19:58.14&#xA;&lt; Exit [BeforeEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:40 @ 07/16/23 23:20:13.506 (15.401s)&#xA;&gt; Enter [It] uses default ssl certificate for catch-all ingress - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:64 @ 07/16/23 23:20:13.506&#xA;STEP: making sure new ingress is deployed - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:68 @ 07/16/23 23:20:20.544&#xA;STEP: making sure new ingress is responding - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:74 @ 07/16/23 23:20:23.704&#xA;STEP: making sure the configured default ssl certificate is being used - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:76 @ 07/16/23 23:20:23.704&#xA;&lt; Exit [It] uses default ssl certificate for catch-all ingress - /go/src/k8s.io/ingress-nginx/test/e2e/settings/default_ssl_certificate.go:64 @ 07/16/23 23:20:25.721 (12.215s)&#xA;&gt; Enter [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:25.721&#xA;&lt; Exit [AfterEach] [SSL] [Flag] default-ssl-certificate - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:26.267 (546ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* with invalid auth-url should deny whole location should add error to the config" classname="nginx-ingress-controller e2e suite" status="passed" time="26.3440155">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:26.269&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:34.686 (8.452s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:20:34.686&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:20:38.757 (4.07s)&#xA;&gt; Enter [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 07/16/23 23:20:38.757&#xA;&lt; Exit [BeforeEach] with invalid auth-url should deny whole location - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:866 @ 07/16/23 23:20:48.932 (10.175s)&#xA;&gt; Enter [It] should add error to the config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:887 @ 07/16/23 23:20:48.932&#xA;&lt; Exit [It] should add error to the config - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:887 @ 07/16/23 23:20:52.115 (3.183s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:52.115&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:20:52.579 (463ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials" classname="nginx-ingress-controller e2e suite" status="passed" time="24.1174672">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:20:52.58&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:00.264 (7.684s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:00.264&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:04.298 (4.069s)&#xA;&gt; Enter [It] should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:116 @ 07/16/23 23:21:04.298&#xA;&lt; Exit [It] should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:116 @ 07/16/23 23:21:15.98 (11.682s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:15.98&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:16.663 (683ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured" classname="nginx-ingress-controller e2e suite" status="passed" time="26.1847335">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:16.666&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:26.922 (10.256s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:26.922&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:21:30.978 (4.056s)&#xA;&gt; Enter [It] should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:144 @ 07/16/23 23:21:30.978&#xA;&lt; Exit [It] should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:144 @ 07/16/23 23:21:42.285 (11.341s)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:42.285&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:21:42.816 (531ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [SSL] TLS protocols, ciphers and headers) should configure HSTS policy header setting preload parameter" classname="nginx-ingress-controller e2e suite" status="passed" time="34.6399454">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:42.818&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:21:51.43 (8.612s)&#xA;&gt; Enter [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:21:51.43&#xA;&lt; Exit [BeforeEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:35 @ 07/16/23 23:21:55.497 (4.067s)&#xA;&gt; Enter [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:21:55.497&#xA;Jul 16 23:22:04.729: INFO: Unexpected TLS error: tls: failed to verify certificate: x509: certificate is valid for ingress.local, not settings-tls&#xA;&lt; Exit [BeforeEach] should configure HSTS policy header - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:100 @ 07/16/23 23:22:06.734 (11.271s)&#xA;&gt; Enter [It] setting preload parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:146 @ 07/16/23 23:22:06.734&#xA;&lt; Exit [It] setting preload parameter - /go/src/k8s.io/ingress-nginx/test/e2e/settings/tls.go:146 @ 07/16/23 23:22:16.936 (10.203s)&#xA;&gt; Enter [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:16.937&#xA;&lt; Exit [AfterEach] [Setting] [SSL] TLS protocols, ciphers and headers) - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:22:17.423 (487ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url cookie set by external authentication server user does not retain cookie if upstream returns error status code" classname="nginx-ingress-controller e2e suite" status="passed" time="45.3711967">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:17.424&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:22:25.824 (8.4s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:22:25.824&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:22:33.95 (8.16s)&#xA;&gt; Enter [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 07/16/23 23:22:33.95&#xA;&lt; Exit [BeforeEach] cookie set by external authentication server - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:301 @ 07/16/23 23:23:02.307 (28.392s)&#xA;&gt; Enter [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:337 @ 07/16/23 23:23:02.308&#xA;&lt; Exit [It] user does not retain cookie if upstream returns error status code - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:337 @ 07/16/23 23:23:02.317 (10ms)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:02.317&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:02.727 (409ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] canary-* canary affinity behavior always routes traffic to canary if first request was affinitized to canary (default behavior)" classname="nginx-ingress-controller e2e suite" status="passed" time="40.7051869">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:02.729&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:11.096 (8.368s)&#xA;&gt; Enter [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:23:11.097&#xA;&lt; Exit [BeforeEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:39 @ 07/16/23 23:23:17.255 (6.159s)&#xA;&gt; Enter [It] always routes traffic to canary if first request was affinitized to canary (default behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:943 @ 07/16/23 23:23:17.255&#xA;&lt; Exit [It] always routes traffic to canary if first request was affinitized to canary (default behavior) - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/canary.go:943 @ 07/16/23 23:23:42.874 (25.653s)&#xA;&gt; Enter [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:42.874&#xA;&lt; Exit [AfterEach] [Annotations] canary-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:23:43.4 (525ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Security] global-auth-url when global external authentication is configured should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service" classname="nginx-ingress-controller e2e suite" status="passed" time="52.2325148">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:43.401&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:23:52.034 (8.633s)&#xA;&gt; Enter [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:23:52.034&#xA;&lt; Exit [BeforeEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:51 @ 07/16/23 23:24:00.279 (8.245s)&#xA;&gt; Enter [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:24:00.279&#xA;STEP: Adding an ingress rule for /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:61 @ 07/16/23 23:24:00.279&#xA;STEP: Adding an ingress rule for /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:69 @ 07/16/23 23:24:10.446&#xA;STEP: Adding a global-auth-url to configMap - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:77 @ 07/16/23 23:24:20.663&#xA;&lt; Exit [BeforeEach] when global external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:58 @ 07/16/23 23:24:30.894 (30.65s)&#xA;&gt; Enter [It] should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:126 @ 07/16/23 23:24:30.894&#xA;STEP: Adding an ingress rule for /bar with annotation enable-global-auth = false - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:128 @ 07/16/23 23:24:30.894&#xA;STEP: Sending a request to protected service /foo - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:140 @ 07/16/23 23:24:35.071&#xA;STEP: Sending a request to whitelisted service /bar - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:147 @ 07/16/23 23:24:35.079&#xA;&lt; Exit [It] should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service - /go/src/k8s.io/ingress-nginx/test/e2e/settings/global_external_auth.go:126 @ 07/16/23 23:24:35.086 (4.226s)&#xA;&gt; Enter [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:35.086&#xA;&lt; Exit [AfterEach] [Setting] [Security] global-auth-url - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:24:35.565 (479ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] annotation-global-rate-limit generates correct configuration" classname="nginx-ingress-controller e2e suite" status="passed" time="47.7139774">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:35.566&#xA;&lt; Exit [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:24:44.981 (9.415s)&#xA;&gt; Enter [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:34 @ 07/16/23 23:24:44.981&#xA;&lt; Exit [BeforeEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:34 @ 07/16/23 23:24:49.116 (4.135s)&#xA;&gt; Enter [It] generates correct configuration - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:38 @ 07/16/23 23:24:49.116&#xA;STEP: regenerating the correct configuration after update - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:65 @ 07/16/23 23:25:11.373&#xA;&lt; Exit [It] generates correct configuration - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/globalratelimit.go:38 @ 07/16/23 23:25:22.684 (33.602s)&#xA;&gt; Enter [AfterEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:22.684&#xA;&lt; Exit [AfterEach] [Annotations] annotation-global-rate-limit - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:25:23.246 (562ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] brotli should only compress responses that meet the `brotli-min-length` condition" classname="nginx-ingress-controller e2e suite" status="passed" time="44.3218287">
-              <system-err>&gt; Enter [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:23.247&#xA;&lt; Exit [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:25:31.61 (8.398s)&#xA;&gt; Enter [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:35 @ 07/16/23 23:25:31.61&#xA;&lt; Exit [BeforeEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:35 @ 07/16/23 23:25:35.714 (4.104s)&#xA;&gt; Enter [It] should only compress responses that meet the `brotli-min-length` condition - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:39 @ 07/16/23 23:25:35.715&#xA;&lt; Exit [It] should only compress responses that meet the `brotli-min-length` condition - /go/src/k8s.io/ingress-nginx/test/e2e/settings/brotli.go:39 @ 07/16/23 23:26:07.011 (31.33s)&#xA;&gt; Enter [AfterEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:07.011&#xA;&lt; Exit [AfterEach] brotli - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:07.5 (489ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] preserve-trailing-slash should allow preservation of trailing slashes" classname="nginx-ingress-controller e2e suite" status="passed" time="20.446374">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:07.503&#xA;&lt; Exit [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:16.195 (8.692s)&#xA;&gt; Enter [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:30 @ 07/16/23 23:26:16.195&#xA;&lt; Exit [BeforeEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:30 @ 07/16/23 23:26:20.306 (4.111s)&#xA;&gt; Enter [It] should allow preservation of trailing slashes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:34 @ 07/16/23 23:26:20.306&#xA;&lt; Exit [It] should allow preservation of trailing slashes - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/preservetrailingslash.go:34 @ 07/16/23 23:26:27.349 (7.044s)&#xA;&gt; Enter [AfterEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:27.349&#xA;&lt; Exit [AfterEach] [Annotations] preserve-trailing-slash - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:26:27.949 (600ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should enable modsecurity with snippet and block requests" classname="nginx-ingress-controller e2e suite" status="passed" time="35.6442115">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:27.952&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:26:36.662 (8.744s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:26:36.662&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:26:40.824 (4.163s)&#xA;&gt; Enter [It] should enable modsecurity with snippet and block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:153 @ 07/16/23 23:26:40.824&#xA;&lt; Exit [It] should enable modsecurity with snippet and block requests - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:153 @ 07/16/23 23:27:03.024 (22.234s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:03.024&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:03.527 (504ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] auth-* when external authentication is configured should redirect to signin url when not signed in" classname="nginx-ingress-controller e2e suite" status="passed" time="27.4725007">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:03.528&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:11.896 (8.368s)&#xA;&gt; Enter [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:27:11.896&#xA;&lt; Exit [BeforeEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:42 @ 07/16/23 23:27:15.977 (4.081s)&#xA;&gt; Enter [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:27:15.977&#xA;&lt; Exit [BeforeEach] when external authentication is configured - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:458 @ 07/16/23 23:27:30.444 (14.468s)&#xA;&gt; Enter [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:494 @ 07/16/23 23:27:30.445&#xA;&lt; Exit [It] should redirect to signin url when not signed in - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/auth.go:494 @ 07/16/23 23:27:30.455 (11ms)&#xA;&gt; Enter [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:30.455&#xA;&lt; Exit [AfterEach] [Annotations] auth-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:31.001 (545ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should turn on proxy-buffering" classname="nginx-ingress-controller e2e suite" status="passed" time="23.203952">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:31.003&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:39.402 (8.434s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:27:39.403&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:27:43.461 (4.058s)&#xA;&gt; Enter [It] should turn on proxy-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:157 @ 07/16/23 23:27:43.461&#xA;&lt; Exit [It] should turn on proxy-buffering - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:157 @ 07/16/23 23:27:53.686 (10.226s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:53.687&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:27:54.173 (486ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] rewrite-target use-regex enable-rewrite-log should use ~* location modifier if regex annotation is present" classname="nginx-ingress-controller e2e suite" status="passed" time="33.6183721">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:27:54.174&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:02.854 (8.714s)&#xA;&gt; Enter [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:28:02.854&#xA;&lt; Exit [BeforeEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:33 @ 07/16/23 23:28:06.916 (4.062s)&#xA;&gt; Enter [It] should use ~* location modifier if regex annotation is present - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:111 @ 07/16/23 23:28:06.916&#xA;STEP: creating a regular ingress definition - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:114 @ 07/16/23 23:28:06.917&#xA;STEP: creating an ingress definition with the use-regex amd rewrite-target annotation - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:123 @ 07/16/23 23:28:17.092&#xA;STEP: ensuring &#39;/foo&#39; matches &#39;~* ^/foo&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:137 @ 07/16/23 23:28:27.312&#xA;STEP: ensuring &#39;/foo/bar&#39; matches &#39;~* ^/foo.+&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:147 @ 07/16/23 23:28:27.32&#xA;&lt; Exit [It] should use ~* location modifier if regex annotation is present - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/rewrite.go:111 @ 07/16/23 23:28:27.329 (20.413s)&#xA;&gt; Enter [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:27.329&#xA;&lt; Exit [AfterEach] [Annotations] rewrite-target use-regex enable-rewrite-log - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:27.758 (429ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [TCP] tcp-services should expose an ExternalName TCP service" classname="nginx-ingress-controller e2e suite" status="passed" time="11.4738193">
-              <system-err>&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:27.76&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:35.027 (7.302s)&#xA;&gt; Enter [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 07/16/23 23:28:35.027&#xA;&lt; Exit [BeforeEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:42 @ 07/16/23 23:28:35.031 (4ms)&#xA;&gt; Enter [It] should expose an ExternalName TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:80 @ 07/16/23 23:28:35.031&#xA;&lt; Exit [It] should expose an ExternalName TCP service - /go/src/k8s.io/ingress-nginx/test/e2e/tcpudp/tcp.go:80 @ 07/16/23 23:28:38.754 (3.722s)&#xA;&gt; Enter [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:38.754&#xA;&lt; Exit [AfterEach] [TCP] tcp-services - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:28:39.199 (446ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] modsecurity owasp should disable modsecurity using &#39;modsecurity off;&#39;" classname="nginx-ingress-controller e2e suite" status="passed" time="29.9578012">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:39.205&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:28:47.511 (8.307s)&#xA;&gt; Enter [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:28:47.511&#xA;&lt; Exit [BeforeEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:31 @ 07/16/23 23:28:51.575 (4.064s)&#xA;&gt; Enter [It] should disable modsecurity using &#39;modsecurity off;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:132 @ 07/16/23 23:28:51.575&#xA;&lt; Exit [It] should disable modsecurity using &#39;modsecurity off;&#39; - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/modsecurity/modsecurity.go:132 @ 07/16/23 23:29:08.745 (17.204s)&#xA;&gt; Enter [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:08.745&#xA;&lt; Exit [AfterEach] [Annotations] modsecurity owasp - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:29:09.129 (383ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] use-proxy-protocol should enable PROXY Protocol for TCP" classname="nginx-ingress-controller e2e suite" status="passed" time="635.6501243">
-              <system-err>&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:09.13&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:29:17.772 (8.641s)&#xA;&gt; Enter [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:29:17.772&#xA;&lt; Exit [BeforeEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:41 @ 07/16/23 23:29:28.874 (11.102s)&#xA;&gt; Enter [It] should enable PROXY Protocol for TCP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155 @ 07/16/23 23:29:28.874&#xA;Automatically polling progress:&#xA;  [Setting] use-proxy-protocol should enable PROXY Protocol for TCP (Spec Runtime: 3m19.498s)&#xA;    /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155&#xA;    In [It] (Node Runtime: 2m59.754s)&#xA;      /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155&#xA;&#xA;    Spec Goroutine&#xA;    goroutine 2683 [IO wait, 2 minutes]&#xA;      internal/poll.runtime_pollWait(0x7f5468c3dd40, 0x72)&#xA;        /usr/local/go/src/runtime/netpoll.go:306&#xA;      internal/poll.(*pollDesc).wait(0xc000c86a00?, 0xc000daf725?, 0x0)&#xA;        /usr/local/go/src/internal/poll/fd_poll_runtime.go:84&#xA;      internal/poll.(*pollDesc).waitRead(...)&#xA;        /usr/local/go/src/internal/poll/fd_poll_runtime.go:89&#xA;      internal/poll.(*FD).Read(0xc000c86a00, {0xc000daf725, 0x15b, 0x15b})&#xA;        /usr/local/go/src/internal/poll/fd_unix.go:167&#xA;      net.(*netFD).Read(0xc000c86a00, {0xc000daf725?, 0x453656?, 0x380?})&#xA;        /usr/local/go/src/net/fd_posix.go:55&#xA;      net.(*conn).Read(0xc000126120, {0xc000daf725?, 0x19913c0?, 0xc000daf500?})&#xA;        /usr/local/go/src/net/net.go:183&#xA;      io.ReadAll({0x1f62e00, 0xc000126120})&#xA;        /usr/local/go/src/io/io.go:701&#xA;    &gt; k8s.io/ingress-nginx/test/e2e/settings.glob..func38.5()&#xA;        /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:211&#xA;      github.com/onsi/ginkgo/v2/internal.extractBodyFunction.func3({0xa0558e, 0xc000cfc300})&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/node.go:463&#xA;      github.com/onsi/ginkgo/v2/internal.(*Suite).runNode.func3()&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/suite.go:863&#xA;      github.com/onsi/ginkgo/v2/internal.(*Suite).runNode&#xA;        /go/src/k8s.io/ingress-nginx/.modcache/github.com/onsi/ginkgo/v2@v2.9.0/internal/suite.go:850&#xA;&lt; Exit [It] should enable PROXY Protocol for TCP - /go/src/k8s.io/ingress-nginx/test/e2e/settings/proxy_protocol.go:155 @ 07/16/23 23:39:43.452 (10m15.338s)&#xA;&gt; Enter [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:43.452&#xA;&lt; Exit [AfterEach] [Setting] use-proxy-protocol - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:39:44.02 (568ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] enable-real-ip trusts X-Forwarded-For header only when setting is true" classname="nginx-ingress-controller e2e suite" status="passed" time="35.1522824">
-              <system-err>&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:44.023&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:39:52.324 (8.301s)&#xA;&gt; Enter [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 07/16/23 23:39:52.324&#xA;&lt; Exit [BeforeEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:35 @ 07/16/23 23:40:01.39 (9.101s)&#xA;&gt; Enter [It] trusts X-Forwarded-For header only when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:40 @ 07/16/23 23:40:01.39&#xA;STEP: ensuring single values are parsed correctly - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:54 @ 07/16/23 23:40:18.685&#xA;&lt; Exit [It] trusts X-Forwarded-For header only when setting is true - /go/src/k8s.io/ingress-nginx/test/e2e/settings/enable_real_ip.go:40 @ 07/16/23 23:40:18.693 (17.302s)&#xA;&gt; Enter [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:18.693&#xA;&lt; Exit [AfterEach] [Setting] enable-real-ip - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:19.14 (448ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Setting] [Lua] lua-shared-dicts configures lua shared dicts" classname="nginx-ingress-controller e2e suite" status="passed" time="21.2409386">
-              <system-err>&gt; Enter [BeforeEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:19.154&#xA;&lt; Exit [BeforeEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:27.75 (8.595s)&#xA;&gt; Enter [It] configures lua shared dicts - /go/src/k8s.io/ingress-nginx/test/e2e/settings/lua_shared_dicts.go:29 @ 07/16/23 23:40:27.75&#xA;&lt; Exit [It] configures lua shared dicts - /go/src/k8s.io/ingress-nginx/test/e2e/settings/lua_shared_dicts.go:29 @ 07/16/23 23:40:39.948 (12.232s)&#xA;&gt; Enter [AfterEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:39.948&#xA;&lt; Exit [AfterEach] [Setting] [Lua] lua-shared-dicts - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:40:40.361 (413ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Flag] disable-sync-events should create sync events" classname="nginx-ingress-controller e2e suite" status="passed" time="31.7558127">
-              <system-err>&gt; Enter [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:40.362&#xA;&lt; Exit [BeforeEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:40:49.01 (8.647s)&#xA;&gt; Enter [It] should create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:53 @ 07/16/23 23:40:49.01&#xA;&lt; Exit [It] should create sync events - /go/src/k8s.io/ingress-nginx/test/e2e/settings/disable_sync_events.go:53 @ 07/16/23 23:41:11.382 (22.406s)&#xA;&gt; Enter [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:11.382&#xA;&lt; Exit [AfterEach] [Flag] disable-sync-events - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:12.084 (702ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] [Annotations] proxy-* should build proxy next upstream" classname="nginx-ingress-controller e2e suite" status="passed" time="22.3846957">
-              <system-err>&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:12.087&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:19.624 (7.537s)&#xA;&gt; Enter [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:41:19.624&#xA;&lt; Exit [BeforeEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:32 @ 07/16/23 23:41:23.694 (4.07s)&#xA;&gt; Enter [It] should build proxy next upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:194 @ 07/16/23 23:41:23.694&#xA;&lt; Exit [It] should build proxy next upstream - /go/src/k8s.io/ingress-nginx/test/e2e/annotations/proxy.go:194 @ 07/16/23 23:41:33.973 (10.314s)&#xA;&gt; Enter [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:33.974&#xA;&lt; Exit [AfterEach] [Annotations] proxy-* - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:41:34.437 (464ms)&#xA;</system-err>
-          </testcase>
-          <testcase name="[It] Configure OpenTracing should include opentracing_trust_incoming_span off directive when disabled" classname="nginx-ingress-controller e2e suite" status="passed" time="30.2536481">
-              <system-err>&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:34.439&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:83 @ 07/16/23 23:41:42.983 (8.544s)&#xA;&gt; Enter [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:41:42.983&#xA;&lt; Exit [BeforeEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:51 @ 07/16/23 23:41:47.055 (4.073s)&#xA;&gt; Enter [It] should include opentracing_trust_incoming_span off directive when disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:85 @ 07/16/23 23:41:47.055&#xA;&lt; Exit [It] should include opentracing_trust_incoming_span off directive when disabled - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:85 @ 07/16/23 23:42:04.248 (17.227s)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:42:04.248&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/framework/framework.go:84 @ 07/16/23 23:42:04.658 (410ms)&#xA;&gt; Enter [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:42:04.658&#xA;&lt; Exit [AfterEach] Configure OpenTracing - /go/src/k8s.io/ingress-nginx/test/e2e/settings/opentracing.go:55 @ 07/16/23 23:42:04.658 (0s)&#xA;</system-err>
-          </testcase>
-      </testsuite>
-  </testsuites>
\ No newline at end of file

From be6f1d54c75af5c7ce6db646fe99deb0f77b6570 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Mon, 17 Jul 2023 00:04:41 -0400
Subject: [PATCH 0867/1641] gofmt

---
 test/e2e/e2e.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/test/e2e/e2e.go b/test/e2e/e2e.go
index a61c368ee..5d410248a 100644
--- a/test/e2e/e2e.go
+++ b/test/e2e/e2e.go
@@ -32,6 +32,7 @@ import (
 	_ "k8s.io/ingress-nginx/test/e2e/admission"
 	_ "k8s.io/ingress-nginx/test/e2e/annotations"
 	_ "k8s.io/ingress-nginx/test/e2e/annotations/modsecurity"
+	_ "k8s.io/ingress-nginx/test/e2e/cgroups"
 	_ "k8s.io/ingress-nginx/test/e2e/dbg"
 	_ "k8s.io/ingress-nginx/test/e2e/defaultbackend"
 	_ "k8s.io/ingress-nginx/test/e2e/endpointslices"
@@ -50,7 +51,6 @@ import (
 	_ "k8s.io/ingress-nginx/test/e2e/ssl"
 	_ "k8s.io/ingress-nginx/test/e2e/status"
 	_ "k8s.io/ingress-nginx/test/e2e/tcpudp"
-	_ "k8s.io/ingress-nginx/test/e2e/cgroups"
 )
 
 // RunE2ETests checks configuration parameters (specified through flags) and then runs

From 8f8f471422f0ec4ef8dc09dd22d317b9ee1814de Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 17 Jul 2023 04:47:08 -0700
Subject: [PATCH 0868/1641] Bump docker/setup-buildx-action from 2.9.0 to 2.9.1
 (#10207)

Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.9.0 to 2.9.1.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/2a1a44ac4aa01993040736bd95bb470da1a38365...4c0219f9ac95b02789c1075625400b2acbff50b1)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index e2ddec049..097e77276 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -158,7 +158,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@2a1a44ac4aa01993040736bd95bb470da1a38365 # v2.9.0
+        uses: docker/setup-buildx-action@4c0219f9ac95b02789c1075625400b2acbff50b1 # v2.9.1
         with:
           version: latest
 

From 49674631ef52ef3b37f0ec0ec3210f8cfe3aa951 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 17 Jul 2023 05:49:09 -0700
Subject: [PATCH 0869/1641] Bump google.golang.org/grpc from 1.56.1 to 1.56.2
 (#10193)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.56.1 to 1.56.2.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.56.1...v1.56.2)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 2b808ef2b..8864e3a83 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.11.0
-	google.golang.org/grpc v1.56.1
+	google.golang.org/grpc v1.56.2
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index 9fee095bc..acd310e3a 100644
--- a/go.sum
+++ b/go.sum
@@ -661,8 +661,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.56.1 h1:z0dNfjIl0VpaZ9iSVjA6daGatAYwPGstTjt5vkRMFkQ=
-google.golang.org/grpc v1.56.1/go.mod h1:I9bI3vqKfayGqPUAwGdOSu7kt6oIJLixfffKrpXqQ9s=
+google.golang.org/grpc v1.56.2 h1:fVRFRnXvU+x6C4IlHZewvJOVHoOv1TUuQyoRsYnB4bI=
+google.golang.org/grpc v1.56.2/go.mod h1:I9bI3vqKfayGqPUAwGdOSu7kt6oIJLixfffKrpXqQ9s=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From 6416ed821d726d78d8988ed1ae189bc243903471 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Thu, 20 Jul 2023 23:36:09 +0800
Subject: [PATCH 0870/1641] chore: bump OpenResty to v1.21.4.2 (#10219)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 images/nginx/rootfs/build.sh | 66 ++++++++++++++++++------------------
 1 file changed, 33 insertions(+), 33 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 5e215bf72..a99ebd292 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -20,14 +20,14 @@ set -o pipefail
 
 export NGINX_VERSION=1.21.6
 
-# Check for recent changes: https://github.com/vision5/ngx_devel_kit/compare/v0.3.1...master
-export NDK_VERSION=0.3.1
+# Check for recent changes: https://github.com/vision5/ngx_devel_kit/compare/v0.3.2...master
+export NDK_VERSION=0.3.2
 
 # Check for recent changes: https://github.com/openresty/set-misc-nginx-module/compare/v0.33...master
 export SETMISC_VERSION=0.33
 
-# Check for recent changes: https://github.com/openresty/headers-more-nginx-module/compare/v0.33...master
-export MORE_HEADERS_VERSION=0.33
+# Check for recent changes: https://github.com/openresty/headers-more-nginx-module/compare/v0.34...master
+export MORE_HEADERS_VERSION=0.34
 
 # Check for recent changes: https://github.com/atomx/nginx-http-auth-digest/compare/v1.0.0...atomx:master
 export NGINX_DIGEST_AUTH=1.0.0
@@ -65,32 +65,32 @@ export MODSECURITY_LIB_VERSION=e9a7ba4a60be48f761e0328c6dfcc668d70e35a0
 # Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.2...v3.3/master
 export OWASP_MODSECURITY_CRS_VERSION=v3.3.4
 
-# Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.21...master
-export LUA_NGX_VERSION=0.10.21
+# Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.25...master
+export LUA_NGX_VERSION=0.10.25
 
-# Check for recent changes: https://github.com/openresty/stream-lua-nginx-module/compare/v0.0.11...master
-export LUA_STREAM_NGX_VERSION=0.0.11
+# Check for recent changes: https://github.com/openresty/stream-lua-nginx-module/compare/v0.0.13...master
+export LUA_STREAM_NGX_VERSION=0.0.13
 
 # Check for recent changes: https://github.com/openresty/lua-upstream-nginx-module/compare/8aa93ead98ba2060d4efd594ae33a35d153589bf...master
 export LUA_UPSTREAM_VERSION=8aa93ead98ba2060d4efd594ae33a35d153589bf
 
-# Check for recent changes: https://github.com/openresty/lua-cjson/compare/2.1.0.10...openresty:master
-export LUA_CJSON_VERSION=2.1.0.10
+# Check for recent changes: https://github.com/openresty/lua-cjson/compare/2.1.0.11...openresty:master
+export LUA_CJSON_VERSION=2.1.0.11
 
 # Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/3.3...master
 export GEOIP2_VERSION=a26c6beed77e81553686852dceb6c7fdacc5970d
 
-# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20220411...v2.1-agentzh
-export LUAJIT_VERSION=2.1-20220411
+# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20230410...v2.1-agentzh
+export LUAJIT_VERSION=2.1-20230410
 
 # Check for recent changes: https://github.com/openresty/lua-resty-balancer/compare/v0.04...master
 export LUA_RESTY_BALANCER=0.04
 
-# Check for recent changes: https://github.com/openresty/lua-resty-lrucache/compare/v0.11...master
-export LUA_RESTY_CACHE=0.11
+# Check for recent changes: https://github.com/openresty/lua-resty-lrucache/compare/v0.13...master
+export LUA_RESTY_CACHE=0.13
 
-# Check for recent changes: https://github.com/openresty/lua-resty-core/compare/v0.1.23...master
-export LUA_RESTY_CORE=0.1.23
+# Check for recent changes: https://github.com/openresty/lua-resty-core/compare/v0.1.27...master
+export LUA_RESTY_CORE=0.1.27
 
 # Check for recent changes: https://github.com/cloudflare/lua-resty-cookie/compare/v0.1.0...master
 export LUA_RESTY_COOKIE_VERSION=303e32e512defced053a6484bc0745cf9dc0d39e
@@ -101,17 +101,17 @@ export LUA_RESTY_DNS=0.22
 # Check for recent changes: https://github.com/ledgetech/lua-resty-http/compare/v0.16.1...master
 export LUA_RESTY_HTTP=0ce55d6d15da140ecc5966fa848204c6fd9074e8
 
-# Check for recent changes: https://github.com/openresty/lua-resty-lock/compare/v0.08...master
-export LUA_RESTY_LOCK=0.08
+# Check for recent changes: https://github.com/openresty/lua-resty-lock/compare/v0.09...master
+export LUA_RESTY_LOCK=0.09
 
-# Check for recent changes: https://github.com/openresty/lua-resty-upload/compare/v0.10...master
-export LUA_RESTY_UPLOAD_VERSION=0.10
+# Check for recent changes: https://github.com/openresty/lua-resty-upload/compare/v0.11...master
+export LUA_RESTY_UPLOAD_VERSION=0.11
 
 # Check for recent changes: https://github.com/openresty/lua-resty-string/compare/v0.15...master
 export LUA_RESTY_STRING_VERSION=0.15
 
-# Check for recent changes: https://github.com/openresty/lua-resty-memcached/compare/v0.16...master
-export LUA_RESTY_MEMCACHED_VERSION=0.16
+# Check for recent changes: https://github.com/openresty/lua-resty-memcached/compare/v0.17...master
+export LUA_RESTY_MEMCACHED_VERSION=0.17
 
 # Check for recent changes: https://github.com/openresty/lua-resty-redis/compare/v0.30...master
 export LUA_RESTY_REDIS_VERSION=0.30
@@ -199,13 +199,13 @@ cd "$BUILD_PATH"
 get_src 66dc7081488811e9f925719e34d1b4504c2801c81dee2920e5452a86b11405ae \
         "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
 
-get_src 0e971105e210d272a497567fa2e2c256f4e39b845a5ba80d373e26ba1abfbd85 \
+get_src 09fec34ff3ef1baf23dd0eaf04307fd73db865cdf99294687de45bf80c58f146 \
         "https://github.com/simpl/ngx_devel_kit/archive/v$NDK_VERSION.tar.gz"
 
 get_src cd5e2cc834bcfa30149e7511f2b5a2183baf0b70dc091af717a89a64e44a2985 \
         "https://github.com/openresty/set-misc-nginx-module/archive/v$SETMISC_VERSION.tar.gz"
 
-get_src a3dcbab117a9c103bc1ea5200fc00a7b7d2af97ff7fd525f16f8ac2632e30fbf \
+get_src 2a86088a37932a4a9812d2e552cc3847e11470a753ed78a18510b196344c2734 \
         "https://github.com/openresty/headers-more-nginx-module/archive/v$MORE_HEADERS_VERSION.tar.gz"
 
 get_src f09851e6309560a8ff3e901548405066c83f1f6ff88aa7171e0763bd9514762b \
@@ -241,10 +241,10 @@ get_src 7d5f3439c8df56046d0564b5857fd8a30296ab1bd6df0f048aed7afb56a0a4c2 \
 get_src 99c47c75c159795c9faf76bbb9fa58e5a50b75286c86565ffcec8514b1c74bf9 \
         "https://github.com/openresty/stream-lua-nginx-module/archive/v$LUA_STREAM_NGX_VERSION.tar.gz"
 else
-get_src 9db756000578efaecb43bea4fc6cf631aaa80988d86ffe5d3afeb9927895ffad \
+get_src bc764db42830aeaf74755754b900253c233ad57498debe7a441cee2c6f4b07c2 \
         "https://github.com/openresty/lua-nginx-module/archive/v$LUA_NGX_VERSION.tar.gz"
 
-get_src c7924f28cb014a99636e747ea907724dd55f60e180cb92cde6e8ed48d2278f27 \
+get_src c4df29aeee1ec648a2d2d527c2b27312617a1f1a4033e492e8cf8e6ecbbc269d \
         "https://github.com/openresty/stream-lua-nginx-module/archive/v$LUA_STREAM_NGX_VERSION.tar.gz"
 
 fi
@@ -256,7 +256,7 @@ if [[ ${ARCH} == "s390x" ]]; then
 get_src 266ed1abb70a9806d97cb958537a44b67db6afb33d3b32292a2d68a2acedea75 \
         "https://github.com/openresty/luajit2/archive/$LUAJIT_VERSION.tar.gz"
 else
-get_src d3f2c870f8f88477b01726b32accab30f6e5d57ae59c5ec87374ff73d0794316 \
+get_src 77bbcbb24c3c78f51560017288f3118d995fe71240aa379f5818ff6b166712ff \
         "https://github.com/openresty/luajit2/archive/v$LUAJIT_VERSION.tar.gz"
 fi
 
@@ -266,7 +266,7 @@ get_src 8d39c6b23f941a2d11571daaccc04e69539a3fcbcc50a631837560d5861a7b96 \
 get_src 4c1933434572226942c65b2f2b26c8a536ab76aa771a3c7f6c2629faa764976b \
         "https://github.com/leev/ngx_http_geoip2_module/archive/$GEOIP2_VERSION.tar.gz"
 
-get_src 5d16e623d17d4f42cc64ea9cfb69ca960d313e12f5d828f785dd227cc483fcbd \
+get_src c7e94aefd32ed04068642fd5da2dcc41aa41a63a8dfac6d73b203bc73f1a3232 \
         "https://github.com/openresty/lua-resty-upload/archive/v$LUA_RESTY_UPLOAD_VERSION.tar.gz"
 
 get_src bdbf271003d95aa91cab0a92f24dca129e99b33f79c13ebfcdbbcbb558129491 \
@@ -279,20 +279,20 @@ if [[ ${ARCH} == "s390x" ]]; then
 get_src 8f5f76d2689a3f6b0782f0a009c56a65e4c7a4382be86422c9b3549fe95b0dc4 \
         "https://github.com/openresty/lua-resty-core/archive/v$LUA_RESTY_CORE.tar.gz"
 else
-get_src efd6b51520429e64b1bcc10f477d370ebed1631c190f7e4dc270d959a743ad7d \
+get_src 5249631c2f493fc41a9e85b1e7214675d2e31d5bb52cac7a1e99d9a5eb873ba9 \
         "https://github.com/openresty/lua-resty-core/archive/v$LUA_RESTY_CORE.tar.gz"
 fi
 
-get_src 0c551d6898f89f876e48730f9b55790d0ba07d5bc0aa6c76153277f63c19489f \
+get_src a77b9de160d81712f2f442e1de8b78a5a7ef0d08f13430ff619f79235db974d4 \
         "https://github.com/openresty/lua-cjson/archive/$LUA_CJSON_VERSION.tar.gz"
 
 get_src 5ed48c36231e2622b001308622d46a0077525ac2f751e8cc0c9905914254baa4 \
         "https://github.com/cloudflare/lua-resty-cookie/archive/$LUA_RESTY_COOKIE_VERSION.tar.gz"
 
-get_src e810ed124fe788b8e4aac2c8960dda1b9a6f8d0ca94ce162f28d3f4d877df8af \
+get_src b38ba9620a08cf3e0b3cc17f85bde285dca6441fe5a6bd982ef732f4b6036e66 \
         "https://github.com/openresty/lua-resty-lrucache/archive/v$LUA_RESTY_CACHE.tar.gz"
 
-get_src 2b4683f9abe73e18ca00345c65010c9056777970907a311d6e1699f753141de2 \
+get_src 6aebf4412639a84eedc8b140aa48e065d625453859699a6712a62fa8085f2704 \
         "https://github.com/openresty/lua-resty-lock/archive/v$LUA_RESTY_LOCK.tar.gz"
 
 get_src 70e9a01eb32ccade0d5116a25bcffde0445b94ad35035ce06b94ccd260ad1bf0 \
@@ -301,7 +301,7 @@ get_src 70e9a01eb32ccade0d5116a25bcffde0445b94ad35035ce06b94ccd260ad1bf0 \
 get_src 9fcb6db95bc37b6fce77d3b3dc740d593f9d90dce0369b405eb04844d56ac43f \
         "https://github.com/ledgetech/lua-resty-http/archive/$LUA_RESTY_HTTP.tar.gz"
 
-get_src 42893da0e3de4ec180c9bf02f82608d78787290a70c5644b538f29d243147396 \
+get_src 0513e2be4e9d6dd59c5575432c8a28e5f7a105b373009fa5058f685f0759f28f \
         "https://github.com/openresty/lua-resty-memcached/archive/v$LUA_RESTY_MEMCACHED_VERSION.tar.gz"
 
 get_src c15aed1a01c88a3a6387d9af67a957dff670357f5fdb4ee182beb44635eef3f1 \

From 1dd8d0cfd70b13aeb3220ab2f5157302bebf7418 Mon Sep 17 00:00:00 2001
From: amirschw <24677563+amirschw@users.noreply.github.com>
Date: Thu, 20 Jul 2023 20:34:11 +0300
Subject: [PATCH 0871/1641] Ignore deployment template's replicas if KEDA is
 enabled (#9534)

---
 charts/ingress-nginx/templates/controller-deployment.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 7fe8804ea..c4a1a37e1 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -19,7 +19,7 @@ spec:
     matchLabels:
       {{- include "ingress-nginx.selectorLabels" . | nindent 6 }}
       app.kubernetes.io/component: controller
-  {{- if not .Values.controller.autoscaling.enabled }}
+  {{- if not (or .Values.controller.autoscaling.enabled .Values.controller.keda.enabled) }}
   replicas: {{ .Values.controller.replicaCount }}
   {{- end }}
   revisionHistoryLimit: {{ .Values.revisionHistoryLimit }}

From a297cedb7abdff51e1afbb286e4bd008e9715c69 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jan-Otto=20Kr=C3=B6pke?= <joe@cloudeteer.de>
Date: Thu, 20 Jul 2023 20:00:10 +0200
Subject: [PATCH 0872/1641] [helm] pass service annotations through helm tpl
 engine (#10084)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Jan-Otto Kröpke <joe@cloudeteer.de>
---
 charts/ingress-nginx/README.md                                | 4 ++--
 .../ingress-nginx/templates/controller-service-internal.yaml  | 2 +-
 charts/ingress-nginx/templates/controller-service.yaml        | 2 +-
 charts/ingress-nginx/values.yaml                              | 3 ++-
 4 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 955091873..953eff685 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -399,14 +399,14 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.scope.enabled | bool | `false` | Enable 'scope' or not |
 | controller.scope.namespace | string | `""` | Namespace to limit the controller to; defaults to $(POD_NAMESPACE) |
 | controller.scope.namespaceSelector | string | `""` | When scope.enabled == false, instead of watching all namespaces, we watching namespaces whose labels only match with namespaceSelector. Format like foo=bar. Defaults to empty, means watching all namespaces. |
-| controller.service.annotations | object | `{}` |  |
+| controller.service.annotations | object | `{}` | Annotations are mandatory for the load balancer to come up. Varies with the cloud service. Values passed through helm tpl engine. |
 | controller.service.appProtocol | bool | `true` | If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http It allows choosing the protocol for each backend specified in the Kubernetes service. See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244 Will be ignored for Kubernetes versions older than 1.20 # |
 | controller.service.enableHttp | bool | `true` |  |
 | controller.service.enableHttps | bool | `true` |  |
 | controller.service.enabled | bool | `true` |  |
 | controller.service.external.enabled | bool | `true` |  |
 | controller.service.externalIPs | list | `[]` | List of IP addresses at which the controller services are available # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips # |
-| controller.service.internal.annotations | object | `{}` | Annotations are mandatory for the load balancer to come up. Varies with the cloud service. |
+| controller.service.internal.annotations | object | `{}` | Annotations are mandatory for the load balancer to come up. Varies with the cloud service. Values passed through helm tpl engine. |
 | controller.service.internal.enabled | bool | `false` | Enables an additional internal load balancer (besides the external one). |
 | controller.service.internal.loadBalancerIP | string | `""` | Used by cloud providers to connect the resulting internal LoadBalancer to a pre-existing static IP. Make sure to add to the service the needed annotation to specify the subnet which the static IP belongs to. For instance, `networking.gke.io/internal-load-balancer-subnet` for GCP and `service.beta.kubernetes.io/aws-load-balancer-subnets` for AWS. |
 | controller.service.internal.loadBalancerSourceRanges | list | `[]` | Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0. |
diff --git a/charts/ingress-nginx/templates/controller-service-internal.yaml b/charts/ingress-nginx/templates/controller-service-internal.yaml
index 87146b746..3966b3260 100644
--- a/charts/ingress-nginx/templates/controller-service-internal.yaml
+++ b/charts/ingress-nginx/templates/controller-service-internal.yaml
@@ -4,7 +4,7 @@ kind: Service
 metadata:
   annotations:
   {{- range $key, $value := .Values.controller.service.internal.annotations }}
-    {{ $key }}: {{ $value | quote }}
+    {{ $key }}: {{ tpl ($value | toString) $ | quote }}
   {{- end }}
   labels:
     {{- include "ingress-nginx.labels" . | nindent 4 }}
diff --git a/charts/ingress-nginx/templates/controller-service.yaml b/charts/ingress-nginx/templates/controller-service.yaml
index b2735d2e8..f079fd4d8 100644
--- a/charts/ingress-nginx/templates/controller-service.yaml
+++ b/charts/ingress-nginx/templates/controller-service.yaml
@@ -4,7 +4,7 @@ kind: Service
 metadata:
   annotations:
   {{- range $key, $value := .Values.controller.service.annotations }}
-    {{ $key }}: {{ $value | quote }}
+    {{ $key }}: {{ tpl ($value | toString) $ | quote }}
   {{- end }}
   labels:
     {{- include "ingress-nginx.labels" . | nindent 4 }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index d091391a8..6fd113b67 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -415,6 +415,7 @@ controller:
     # Will be ignored for Kubernetes versions older than 1.20
     ##
     appProtocol: true
+    # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service. Values passed through helm tpl engine.
     annotations: {}
     labels: {}
     # clusterIP: ""
@@ -476,7 +477,7 @@ controller:
     internal:
       # -- Enables an additional internal load balancer (besides the external one).
       enabled: false
-      # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service.
+      # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service. Values passed through helm tpl engine.
       annotations: {}
       # -- Used by cloud providers to connect the resulting internal LoadBalancer to a pre-existing static IP. Make sure to add to the service the needed annotation to specify the subnet which the static IP belongs to. For instance, `networking.gke.io/internal-load-balancer-subnet` for GCP and `service.beta.kubernetes.io/aws-load-balancer-subnets` for AWS.
       loadBalancerIP: ""

From 24fda9da20e3045de54c92ef64016d801c370bc9 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 20 Jul 2023 17:34:12 -0400
Subject: [PATCH 0873/1641] Golang 1.20.6 for test runner (#10230)

* Golang 1.20.6 for test runner

* alpine 3.18.2 as well

Signed-off-by: James Strong <strong.james.e@gmail.com>

---------

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/cfssl/rootfs/Dockerfile         | 2 +-
 images/nginx/rootfs/Dockerfile         | 4 ++--
 images/opentelemetry/rootfs/Dockerfile | 2 +-
 images/test-runner/Makefile            | 4 ++--
 rootfs/Dockerfile-chroot               | 2 +-
 test/e2e-image/Dockerfile              | 2 +-
 6 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index e8d6c617a..89a5eef9c 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.18.0
+FROM alpine:3.18.2
 
 
 RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 9b4abf244..7627870ba 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.18.0 as builder
+FROM alpine:3.18.2 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.18.0
+FROM alpine:3.18.2
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index d15c28bbf..f3628b1f3 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.18.0 as base
+FROM alpine:3.18.2 as base
 
 RUN mkdir -p /opt/third_party/install
 COPY . /opt/third_party/
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index acf3dd660..3cd378937 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -43,7 +43,7 @@ image:
 		--pull \
 		--push \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=1.20.5 \
+		--build-arg GOLANG_VERSION=1.20.6 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
@@ -64,7 +64,7 @@ build: ensure-buildx
 		--progress=${PROGRESS} \
 		--pull \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=1.20.5 \
+		--build-arg GOLANG_VERSION=1.20.6 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index a4123fe87..48facd44f 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.18.0
+FROM alpine:3.18.2
 
 ARG TARGETARCH
 ARG VERSION
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 97986ec95..2ee5716ed 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,7 +1,7 @@
 ARG E2E_BASE_IMAGE
 FROM ${E2E_BASE_IMAGE} AS BASE
 
-FROM alpine:3.18.0
+FROM alpine:3.18.2
 
 RUN apk update \
 	&& apk upgrade && apk add -U --no-cache \

From e8097d8b8ff4aa4573a8d25e4bb98093323e6302 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 20 Jul 2023 21:04:21 -0400
Subject: [PATCH 0874/1641] fix gcloud builds

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/cfssl/Makefile                           | 2 --
 images/cfssl/cloudbuild.yaml                    | 5 -----
 images/custom-error-pages/cloudbuild.yaml       | 5 -----
 images/echo/cloudbuild.yaml                     | 5 -----
 images/ext-auth-example-authsvc/Makefile        | 4 +++-
 images/ext-auth-example-authsvc/cloudbuild.yaml | 5 -----
 images/fastcgi-helloserver/cloudbuild.yaml      | 6 +-----
 images/go-grpc-greeter-server/cloudbuild.yaml   | 5 -----
 images/httpbun/cloudbuild.yaml                  | 5 -----
 images/kube-webhook-certgen/cloudbuild.yaml     | 5 -----
 images/opentelemetry/cloudbuild.yaml            | 5 -----
 images/test-runner/Makefile                     | 2 +-
 12 files changed, 5 insertions(+), 49 deletions(-)

diff --git a/images/cfssl/Makefile b/images/cfssl/Makefile
index 8d8e597a4..31c37fbc5 100644
--- a/images/cfssl/Makefile
+++ b/images/cfssl/Makefile
@@ -23,8 +23,6 @@ TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
 
 REGISTRY ?= local
 
-
-
 IMAGE = $(REGISTRY)/e2e-test-cfssl
 
 # required to enable buildx
diff --git a/images/cfssl/cloudbuild.yaml b/images/cfssl/cloudbuild.yaml
index 4976a3f67..5fed3b712 100644
--- a/images/cfssl/cloudbuild.yaml
+++ b/images/cfssl/cloudbuild.yaml
@@ -6,8 +6,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - SHORT_SHA=$SHORT_SHA
-      - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
       # set the home to /root explicitly to if using docker buildx
@@ -17,6 +15,3 @@ steps:
     - |
       gcloud auth configure-docker \
       && cd images/cfssl && make push
-substitutions:
-  _GIT_TAG: "12345"
-  _PULL_BASE_REF: "master"
diff --git a/images/custom-error-pages/cloudbuild.yaml b/images/custom-error-pages/cloudbuild.yaml
index e38d4bcdc..a443d2b11 100644
--- a/images/custom-error-pages/cloudbuild.yaml
+++ b/images/custom-error-pages/cloudbuild.yaml
@@ -6,8 +6,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - SHORT_SHA=$SHORT_SHA
-      - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
       # set the home to /root explicitly to if using docker buildx
@@ -17,6 +15,3 @@ steps:
     - |
       gcloud auth configure-docker \
       && cd images/custom-error-pages && make push
-substitutions:
-  _GIT_TAG: "12345"
-  _PULL_BASE_REF: "master"
diff --git a/images/echo/cloudbuild.yaml b/images/echo/cloudbuild.yaml
index f07be825a..811d8d3f0 100644
--- a/images/echo/cloudbuild.yaml
+++ b/images/echo/cloudbuild.yaml
@@ -6,8 +6,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - SHORT_SHA=$SHORT_SHA
-      - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
       # set the home to /root explicitly to if using docker buildx
@@ -17,6 +15,3 @@ steps:
     - |
       gcloud auth configure-docker \
       && cd images/echo && make push
-substitutions:
-  _GIT_TAG: "12345"
-  _PULL_BASE_REF: "master"
diff --git a/images/ext-auth-example-authsvc/Makefile b/images/ext-auth-example-authsvc/Makefile
index 85d2f8e6b..63f261ec3 100644
--- a/images/ext-auth-example-authsvc/Makefile
+++ b/images/ext-auth-example-authsvc/Makefile
@@ -18,7 +18,9 @@ SHELL=/bin/bash -o pipefail -o errexit
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
 INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
-TAG ?=v1.0.0
+SHORT_SHA ?=$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
 REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/ext-auth-example-authsvc
diff --git a/images/ext-auth-example-authsvc/cloudbuild.yaml b/images/ext-auth-example-authsvc/cloudbuild.yaml
index c5bb5db6a..4a436e012 100644
--- a/images/ext-auth-example-authsvc/cloudbuild.yaml
+++ b/images/ext-auth-example-authsvc/cloudbuild.yaml
@@ -8,8 +8,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - SHORT_SHA=$SHORT_SHA
-      - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
       # set the home to /root explicitly to if using docker buildx
@@ -19,6 +17,3 @@ steps:
     - |
       gcloud auth configure-docker \
       && cd images/ext-auth-example-authsvc && make push
-substitutions:
-  _GIT_TAG: "12345"
-  _PULL_BASE_REF: "master"
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index a4c9d5eff..80623a197 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -6,8 +6,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - SHORT_SHA=$SHORT_SHA
-      - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
       # set the home to /root explicitly to if using docker buildx
@@ -17,6 +15,4 @@ steps:
     - |
       gcloud auth configure-docker \
       && cd images/fastcgi-helloserver && make push
-substitutions:
-  _GIT_TAG: "12345"
-  _PULL_BASE_REF: "master"
+
diff --git a/images/go-grpc-greeter-server/cloudbuild.yaml b/images/go-grpc-greeter-server/cloudbuild.yaml
index 6f32bcf50..20740eb27 100644
--- a/images/go-grpc-greeter-server/cloudbuild.yaml
+++ b/images/go-grpc-greeter-server/cloudbuild.yaml
@@ -8,8 +8,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - SHORT_SHA=$SHORT_SHA
-      - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
       # set the home to /root explicitly to if using docker buildx
@@ -19,6 +17,3 @@ steps:
     - |
       gcloud auth configure-docker \
       && cd images/go-grpc-greeter-server && make push
-substitutions:
-  _GIT_TAG: "12345"
-  _PULL_BASE_REF: "master"
diff --git a/images/httpbun/cloudbuild.yaml b/images/httpbun/cloudbuild.yaml
index 9e3af5935..68afbe873 100644
--- a/images/httpbun/cloudbuild.yaml
+++ b/images/httpbun/cloudbuild.yaml
@@ -8,8 +8,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - SHORT_SHA=$SHORT_SHA
-      - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
       # set the home to /root explicitly to if using docker buildx
@@ -19,6 +17,3 @@ steps:
     - |
       gcloud auth configure-docker \
       && cd images/httpbun && make push
-substitutions:
-  _GIT_TAG: "12345"
-  _PULL_BASE_REF: "master"
diff --git a/images/kube-webhook-certgen/cloudbuild.yaml b/images/kube-webhook-certgen/cloudbuild.yaml
index bf0bd3ce1..88d7400d0 100644
--- a/images/kube-webhook-certgen/cloudbuild.yaml
+++ b/images/kube-webhook-certgen/cloudbuild.yaml
@@ -21,8 +21,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - SHORT_SHA=$SHORT_SHA
-      - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
       # set the home to /root explicitly to if using docker buildx
@@ -32,6 +30,3 @@ steps:
     - |
       gcloud auth configure-docker \
       && cd images/kube-webhook-certgen && make push
-substitutions:
-  _GIT_TAG: "12345"
-  _PULL_BASE_REF: "main"
diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
index 9556ccba9..baf29a051 100644
--- a/images/opentelemetry/cloudbuild.yaml
+++ b/images/opentelemetry/cloudbuild.yaml
@@ -8,8 +8,6 @@ steps:
     entrypoint: bash
     env:
       - DOCKER_CLI_EXPERIMENTAL=enabled
-      - SHORT_SHA=$SHORT_SHA
-      - BASE_REF=$_PULL_BASE_REF
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
       # set the home to /root explicitly to if using docker buildx
@@ -19,6 +17,3 @@ steps:
     - |
       gcloud auth configure-docker \
       && cd images/opentelemetry && make push
-substitutions:
-  _GIT_TAG: "12345"
-  _PULL_BASE_REF: "main"
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 3cd378937..97133045e 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -21,7 +21,7 @@ INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 SHORT_SHA ?=$(shell git rev-parse --short HEAD)
 TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
 
-REGISTRY ?= local
+REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
 IMAGE = $(REGISTRY)/e2e-test-runner
 

From b0081a574ab46d5477544294836da0746953af17 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 20 Jul 2023 21:05:38 -0400
Subject: [PATCH 0875/1641] update reg

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/test-runner/Makefile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 97133045e..3cd378937 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -21,7 +21,7 @@ INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 SHORT_SHA ?=$(shell git rev-parse --short HEAD)
 TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
 
-REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
+REGISTRY ?= local
 
 IMAGE = $(REGISTRY)/e2e-test-runner
 

From c83422fd6592b7b6aea2f58b5688929a5170875a Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Sat, 22 Jul 2023 06:41:22 +0800
Subject: [PATCH 0876/1641] fix deps sha

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 images/nginx/rootfs/build.sh | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index a99ebd292..db1eebfb8 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -199,13 +199,13 @@ cd "$BUILD_PATH"
 get_src 66dc7081488811e9f925719e34d1b4504c2801c81dee2920e5452a86b11405ae \
         "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
 
-get_src 09fec34ff3ef1baf23dd0eaf04307fd73db865cdf99294687de45bf80c58f146 \
-        "https://github.com/simpl/ngx_devel_kit/archive/v$NDK_VERSION.tar.gz"
+get_src aa961eafb8317e0eb8da37eb6e2c9ff42267edd18b56947384e719b85188f58b \
+        "https://github.com/vision5/ngx_devel_kit/archive/v$NDK_VERSION.tar.gz"
 
 get_src cd5e2cc834bcfa30149e7511f2b5a2183baf0b70dc091af717a89a64e44a2985 \
         "https://github.com/openresty/set-misc-nginx-module/archive/v$SETMISC_VERSION.tar.gz"
 
-get_src 2a86088a37932a4a9812d2e552cc3847e11470a753ed78a18510b196344c2734 \
+get_src 0c0d2ced2ce895b3f45eb2b230cd90508ab2a773299f153de14a43e44c1209b3 \
         "https://github.com/openresty/headers-more-nginx-module/archive/v$MORE_HEADERS_VERSION.tar.gz"
 
 get_src f09851e6309560a8ff3e901548405066c83f1f6ff88aa7171e0763bd9514762b \
@@ -244,7 +244,7 @@ else
 get_src bc764db42830aeaf74755754b900253c233ad57498debe7a441cee2c6f4b07c2 \
         "https://github.com/openresty/lua-nginx-module/archive/v$LUA_NGX_VERSION.tar.gz"
 
-get_src c4df29aeee1ec648a2d2d527c2b27312617a1f1a4033e492e8cf8e6ecbbc269d \
+get_src 01b715754a8248cc7228e0c8f97f7488ae429d90208de0481394e35d24cef32f \
         "https://github.com/openresty/stream-lua-nginx-module/archive/v$LUA_STREAM_NGX_VERSION.tar.gz"
 
 fi
@@ -266,7 +266,7 @@ get_src 8d39c6b23f941a2d11571daaccc04e69539a3fcbcc50a631837560d5861a7b96 \
 get_src 4c1933434572226942c65b2f2b26c8a536ab76aa771a3c7f6c2629faa764976b \
         "https://github.com/leev/ngx_http_geoip2_module/archive/$GEOIP2_VERSION.tar.gz"
 
-get_src c7e94aefd32ed04068642fd5da2dcc41aa41a63a8dfac6d73b203bc73f1a3232 \
+get_src deb4ab1ffb9f3d962c4b4a2c4bdff692b86a209e3835ae71ebdf3b97189e40a9 \
         "https://github.com/openresty/lua-resty-upload/archive/v$LUA_RESTY_UPLOAD_VERSION.tar.gz"
 
 get_src bdbf271003d95aa91cab0a92f24dca129e99b33f79c13ebfcdbbcbb558129491 \
@@ -279,7 +279,7 @@ if [[ ${ARCH} == "s390x" ]]; then
 get_src 8f5f76d2689a3f6b0782f0a009c56a65e4c7a4382be86422c9b3549fe95b0dc4 \
         "https://github.com/openresty/lua-resty-core/archive/v$LUA_RESTY_CORE.tar.gz"
 else
-get_src 5249631c2f493fc41a9e85b1e7214675d2e31d5bb52cac7a1e99d9a5eb873ba9 \
+get_src 39baab9e2b31cc48cecf896cea40ef6e80559054fd8a6e440cc804a858ea84d4 \
         "https://github.com/openresty/lua-resty-core/archive/v$LUA_RESTY_CORE.tar.gz"
 fi
 
@@ -289,10 +289,10 @@ get_src a77b9de160d81712f2f442e1de8b78a5a7ef0d08f13430ff619f79235db974d4 \
 get_src 5ed48c36231e2622b001308622d46a0077525ac2f751e8cc0c9905914254baa4 \
         "https://github.com/cloudflare/lua-resty-cookie/archive/$LUA_RESTY_COOKIE_VERSION.tar.gz"
 
-get_src b38ba9620a08cf3e0b3cc17f85bde285dca6441fe5a6bd982ef732f4b6036e66 \
+get_src 573184006b98ccee2594b0d134fa4d05e5d2afd5141cbad315051ccf7e9b6403 \
         "https://github.com/openresty/lua-resty-lrucache/archive/v$LUA_RESTY_CACHE.tar.gz"
 
-get_src 6aebf4412639a84eedc8b140aa48e065d625453859699a6712a62fa8085f2704 \
+get_src b4ddcd47db347e9adf5c1e1491a6279a6ae2a3aff3155ef77ea0a65c998a69c1 \
         "https://github.com/openresty/lua-resty-lock/archive/v$LUA_RESTY_LOCK.tar.gz"
 
 get_src 70e9a01eb32ccade0d5116a25bcffde0445b94ad35035ce06b94ccd260ad1bf0 \
@@ -301,7 +301,7 @@ get_src 70e9a01eb32ccade0d5116a25bcffde0445b94ad35035ce06b94ccd260ad1bf0 \
 get_src 9fcb6db95bc37b6fce77d3b3dc740d593f9d90dce0369b405eb04844d56ac43f \
         "https://github.com/ledgetech/lua-resty-http/archive/$LUA_RESTY_HTTP.tar.gz"
 
-get_src 0513e2be4e9d6dd59c5575432c8a28e5f7a105b373009fa5058f685f0759f28f \
+get_src 02733575c4aed15f6cab662378e4b071c0a4a4d07940c4ef19a7319e9be943d4 \
         "https://github.com/openresty/lua-resty-memcached/archive/v$LUA_RESTY_MEMCACHED_VERSION.tar.gz"
 
 get_src c15aed1a01c88a3a6387d9af67a957dff670357f5fdb4ee182beb44635eef3f1 \

From c5f348ea2eec5f15ab0d5c5e976b29d6787fd3dc Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sat, 22 Jul 2023 00:32:07 -0300
Subject: [PATCH 0877/1641] Implement annotation validation (#9673)

* Add validation to all annotations

* Add annotation validation for fcgi

* Fix reviews and fcgi e2e

* Add flag to disable cross namespace validation

* Add risk, flag for validation, tests

* Add missing formating

* Enable validation by default on tests

* Test validation flag

* remove ajp from list

* Finalize validation changes

* Add validations to CI

* Update helm docs

* Fix code review

* Use a better name for annotation risk
---
 .github/workflows/ci.yaml                     |  49 +++
 charts/ingress-nginx/README.md                |   1 +
 charts/ingress-nginx/templates/_params.tpl    |   3 +
 charts/ingress-nginx/values.yaml              |   1 +
 docs/user-guide/cli-arguments.md              |   1 +
 .../nginx-configuration/configmap.md          |  26 ++
 internal/ingress/annotations/alias/main.go    |  36 +-
 .../ingress/annotations/alias/main_test.go    |  35 +-
 internal/ingress/annotations/annotations.go   |  17 +-
 .../ingress/annotations/annotations_test.go   |  32 +-
 internal/ingress/annotations/auth/main.go     |  86 ++++-
 .../ingress/annotations/auth/main_test.go     | 114 ++++++-
 internal/ingress/annotations/authreq/main.go  | 221 +++++++++++--
 .../ingress/annotations/authreq/main_test.go  |   6 +-
 .../ingress/annotations/authreqglobal/main.go |  35 +-
 internal/ingress/annotations/authtls/main.go  | 105 +++++-
 .../ingress/annotations/authtls/main_test.go  |  66 +++-
 .../annotations/backendprotocol/main.go       |  59 +++-
 .../annotations/backendprotocol/main_test.go  |   4 +-
 internal/ingress/annotations/canary/main.go   | 121 ++++++-
 .../annotations/clientbodybuffersize/main.go  |  38 ++-
 .../clientbodybuffersize/main_test.go         |   3 +
 .../ingress/annotations/connection/main.go    |  41 ++-
 .../annotations/connection/main_test.go       |  20 +-
 internal/ingress/annotations/cors/main.go     | 120 ++++++-
 .../ingress/annotations/cors/main_test.go     |  42 +--
 .../annotations/customhttperrors/main.go      |  43 ++-
 .../annotations/defaultbackend/main.go        |  36 +-
 .../annotations/defaultbackend/main_test.go   |  58 +++-
 internal/ingress/annotations/fastcgi/main.go  |  71 +++-
 .../ingress/annotations/fastcgi/main_test.go  | 124 ++++++-
 .../annotations/globalratelimit/main.go       |  81 ++++-
 .../annotations/globalratelimit/main_test.go  |  22 +-
 .../annotations/http2pushpreload/main.go      |  35 +-
 .../annotations/http2pushpreload/main_test.go |  20 +-
 .../{ipwhitelist => ipallowlist}/main.go      |  64 +++-
 .../{ipwhitelist => ipallowlist}/main_test.go |  83 ++++-
 .../ingress/annotations/ipdenylist/main.go    |  47 ++-
 .../annotations/ipdenylist/main_test.go       |  30 +-
 .../ingress/annotations/loadbalancing/main.go |  44 ++-
 .../annotations/loadbalancing/main_test.go    |   3 +-
 internal/ingress/annotations/log/main.go      |  44 ++-
 internal/ingress/annotations/log/main_test.go |  22 +-
 internal/ingress/annotations/mirror/main.go   |  74 ++++-
 .../ingress/annotations/mirror/main_test.go   |  11 +-
 .../ingress/annotations/modsecurity/main.go   |  73 ++++-
 .../ingress/annotations/opentelemetry/main.go |  67 +++-
 .../annotations/opentelemetry/main_test.go    |  30 +-
 .../ingress/annotations/opentracing/main.go   |  45 ++-
 .../annotations/opentracing/main_test.go      |   8 +-
 internal/ingress/annotations/parser/main.go   | 109 ++++--
 .../ingress/annotations/parser/main_test.go   |  21 +-
 .../ingress/annotations/parser/validators.go  | 239 ++++++++++++++
 .../annotations/parser/validators_test.go     | 310 ++++++++++++++++++
 .../annotations/portinredirect/main.go        |  35 +-
 .../annotations/portinredirect/main_test.go   |  28 +-
 internal/ingress/annotations/proxy/main.go    | 188 +++++++++--
 .../ingress/annotations/proxy/main_test.go    |  68 ++++
 internal/ingress/annotations/proxyssl/main.go | 115 ++++++-
 .../ingress/annotations/proxyssl/main_test.go |   2 +-
 .../ingress/annotations/ratelimit/main.go     | 120 ++++++-
 .../annotations/ratelimit/main_test.go        |  93 +++++-
 .../ingress/annotations/redirect/redirect.go  |  67 +++-
 .../annotations/redirect/redirect_test.go     |  10 +-
 internal/ingress/annotations/rewrite/main.go  | 103 +++++-
 .../ingress/annotations/rewrite/main_test.go  |  24 ++
 internal/ingress/annotations/satisfy/main.go  |  37 ++-
 .../ingress/annotations/satisfy/main_test.go  |   2 +-
 .../ingress/annotations/serversnippet/main.go |  35 +-
 .../annotations/serversnippet/main_test.go    |   2 +-
 .../annotations/serviceupstream/main.go       |  35 +-
 .../annotations/serviceupstream/main_test.go  |   6 +-
 .../annotations/sessionaffinity/main.go       | 125 ++++++-
 internal/ingress/annotations/snippet/main.go  |  35 +-
 .../ingress/annotations/snippet/main_test.go  |   2 +-
 .../ingress/annotations/sslcipher/main.go     |  56 +++-
 .../annotations/sslcipher/main_test.go        |  27 +-
 .../annotations/sslpassthrough/main.go        |  34 +-
 .../annotations/sslpassthrough/main_test.go   |   2 +-
 .../ingress/annotations/streamsnippet/main.go |  35 +-
 .../annotations/streamsnippet/main_test.go    |   2 +-
 .../annotations/upstreamhashby/main.go        |  71 +++-
 .../annotations/upstreamhashby/main_test.go   |  32 +-
 .../ingress/annotations/upstreamvhost/main.go |  36 +-
 .../annotations/upstreamvhost/main_test.go    |   2 +-
 .../annotations/xforwardedprefix/main.go      |  35 +-
 .../annotations/xforwardedprefix/main_test.go |   2 +-
 internal/ingress/controller/config/config.go  |  15 +-
 internal/ingress/controller/controller.go     |  15 +-
 .../ingress/controller/controller_test.go     |  13 +-
 internal/ingress/controller/store/store.go    |  35 +-
 .../ingress/controller/store/store_test.go    |  17 +-
 internal/ingress/defaults/main.go             |  12 +
 internal/ingress/errors/errors.go             |  44 +++
 internal/ingress/resolver/main.go             |   3 +
 internal/ingress/resolver/mock.go             |  15 +-
 pkg/apis/ingress/types.go                     |   8 +-
 pkg/apis/ingress/types_equals.go              |   2 +-
 pkg/flags/flags.go                            |   4 +
 rootfs/etc/nginx/template/nginx.tmpl          |  10 +-
 .../validations/values.yaml                   |  38 +++
 test/e2e/annotations/fastcgi.go               |   4 +-
 .../{ipwhitelist.go => ipallowlist.go}        |  10 +-
 test/e2e/e2e.go                               |   2 +
 test/e2e/framework/exec.go                    |   7 +-
 test/e2e/run-e2e-suite.sh                     |   1 +
 test/e2e/run-kind-e2e.sh                      |   1 +
 test/e2e/settings/validations/validations.go  |  86 +++++
 test/e2e/wait-for-nginx.sh                    |   2 +
 109 files changed, 4320 insertions(+), 586 deletions(-)
 rename internal/ingress/annotations/{ipwhitelist => ipallowlist}/main.go (53%)
 rename internal/ingress/annotations/{ipwhitelist => ipallowlist}/main_test.go (64%)
 create mode 100644 internal/ingress/annotations/parser/validators.go
 create mode 100644 internal/ingress/annotations/parser/validators_test.go
 create mode 100644 test/e2e-image/namespace-overlays/validations/values.yaml
 rename test/e2e/annotations/{ipwhitelist.go => ipallowlist.go} (81%)
 create mode 100644 test/e2e/settings/validations/validations.go

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 097e77276..453775379 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -319,6 +319,55 @@ jobs:
           name: e2e-test-reports-${{ matrix.k8s }}
           path: 'test/junitreports/report*.xml'
 
+  kubernetes-validations:
+    name: Kubernetes with Validations
+    runs-on: ubuntu-latest
+    needs:
+      - changes
+      - build
+    if: |
+      (needs.changes.outputs.go == 'true') || ${{ inputs.run_e2e }}
+
+    strategy:
+      matrix:
+        k8s: [v1.27.1]
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+
+      - name: cache
+        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        with:
+          name: docker.tar.gz
+
+      - name: Create Kubernetes ${{ matrix.k8s }} cluster
+        id: kind
+        run: |
+          kind create cluster --image=kindest/node:${{ matrix.k8s }} --config test/e2e/kind.yaml
+
+      - name: Load images from cache
+        run: |
+          echo "loading docker images..."
+          pigz -dc docker.tar.gz | docker load
+
+      - name: Run e2e tests
+        env:
+          KIND_CLUSTER_NAME: kind
+          SKIP_CLUSTER_CREATION: true
+          SKIP_IMAGE_CREATION: true
+          ENABLE_VALIDATIONS: true
+        run: |
+          kind get kubeconfig > $HOME/.kube/kind-config-kind
+          make kind-e2e-test
+
+      - name: Upload e2e junit-reports
+        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
+        if: success() || failure()
+        with:
+          name: e2e-test-reports-${{ matrix.k8s }}
+          path: 'test/junitreports/report*.xml'
+
 
   kubernetes-chroot:
     name: Kubernetes chroot
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 953eff685..17547912d 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -294,6 +294,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.dnsConfig | object | `{}` | Optionally customize the pod dnsConfig. |
 | controller.dnsPolicy | string | `"ClusterFirst"` | Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'. By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller to keep resolving names inside the k8s network, use ClusterFirstWithHostNet. |
 | controller.electionID | string | `""` | Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader' |
+| controller.enableAnnotationValidations | bool | `false` |  |
 | controller.enableMimalloc | bool | `true` | Enable mimalloc as a drop-in replacement for malloc. # ref: https://github.com/microsoft/mimalloc # |
 | controller.enableTopologyAwareRouting | bool | `false` | This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-aware-hints="auto" Defaults to false |
 | controller.existingPsp | string | `""` | Use an existing PSP instead of creating one |
diff --git a/charts/ingress-nginx/templates/_params.tpl b/charts/ingress-nginx/templates/_params.tpl
index a1aef01ae..47d024e85 100644
--- a/charts/ingress-nginx/templates/_params.tpl
+++ b/charts/ingress-nginx/templates/_params.tpl
@@ -1,5 +1,8 @@
 {{- define "ingress-nginx.params" -}}
 - /nginx-ingress-controller
+{{- if .Values.controller.enableAnnotationValidations }}
+- --enable-annotation-validation=true
+{{- end }}
 {{- if .Values.defaultBackend.enabled }}
 - --default-backend-service=$(POD_NAMESPACE)/{{ include "ingress-nginx.defaultBackend.fullname" . }}
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 6fd113b67..1cd74dad0 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -15,6 +15,7 @@ commonLabels: {}
 
 controller:
   name: controller
+  enableAnnotationValidations: false
   image:
     ## Keep false as default for now!
     chroot: false
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index bc0894a52..be6e1dd50 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -15,6 +15,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--default-backend-service`        | Service used to serve HTTP requests not matching any known server name (catch-all). Takes the form "namespace/name". The controller configures NGINX to forward requests to the first port of this Service. |
 | `--default-server-port`            | Port to use for exposing the default server (catch-all). (default 8181) |
 | `--default-ssl-certificate`        | Secret containing a SSL certificate to be used by the default HTTPS server (catch-all). Takes the form "namespace/name". |
+| `--enable-annotation-validation`  | If true, will enable the annotation validation feature. This value will be defaulted to true on a future release. |
 | `--disable-catch-all`              | Disable support for catch-all Ingresses. (default false) |
 | `--disable-full-test` | Disable full test of all merged ingresses at the admission stage and tests the template of the ingress being created or updated  (full test of all ingresses is enabled by default). |
 | `--disable-svc-external-name` | Disable support for Services of type ExternalName. (default false) |
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index c55b7502a..0a7e44dce 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -29,7 +29,9 @@ The following table shows a configuration option's name, type, and the default v
 |:---|:---|:------|:----|
 |[add-headers](#add-headers)|string|""||
 |[allow-backend-server-header](#allow-backend-server-header)|bool|"false"||
+|[allow-cross-namespace-resources](#allow-cross-namespace-resources)|bool|"true"||
 |[allow-snippet-annotations](#allow-snippet-annotations)|bool|true||
+|[annotations-risk-level](#annotations-risk-level)|string|Critical||
 |[annotation-value-word-blocklist](#annotation-value-word-blocklist)|string array|""||
 |[hide-headers](#hide-headers)|string array|empty||
 |[access-log-params](#access-log-params)|string|""||
@@ -239,6 +241,20 @@ Sets custom headers from named configmap before sending traffic to the client. S
 
 Enables the return of the header Server from the backend instead of the generic nginx string. _**default:**_ is disabled
 
+## allow-cross-namespace-resources
+
+Enables users to consume cross namespace resource on annotations, when was previously enabled . _**default:**_ true
+
+**Annotations that may be impacted with this change**:
+* `auth-secret`
+* `auth-proxy-set-header`
+* `auth-tls-secret`
+* `fastcgi-params-configmap`
+* `proxy-ssl-secret`
+
+
+**This option will be defaulted to false in the next major release**
+
 ## allow-snippet-annotations
 
 Enables Ingress to parse and add *-snippet annotations/directives created by the user. _**default:**_ `true`
@@ -246,6 +262,16 @@ Enables Ingress to parse and add *-snippet annotations/directives created by the
 Warning: We recommend enabling this option only if you TRUST users with permission to create Ingress objects, as this
 may allow a user to add restricted configurations to the final nginx.conf file
 
+**This option will be defaulted to false in the next major release**
+
+## annotations-risk-level
+
+Represents the risk accepted on an annotation. If the risk is, for instance `Medium`, annotations with risk High and Critical will not be accepted.
+
+Accepted values are `Critical`, `High`, `Medium` and `Low`.
+
+Defaults to `Critical` but will be changed to `High` on the next minor release
+
 ## annotation-value-word-blocklist
 
 Contains a comma-separated value of chars/words that are well known of being used to abuse Ingress configuration
diff --git a/internal/ingress/annotations/alias/main.go b/internal/ingress/annotations/alias/main.go
index bd2067c9f..4a5e6f188 100644
--- a/internal/ingress/annotations/alias/main.go
+++ b/internal/ingress/annotations/alias/main.go
@@ -27,19 +27,44 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	serverAliasAnnotation = "server-alias"
+)
+
+var aliasAnnotation = parser.Annotation{
+	Group: "alias",
+	Annotations: parser.AnnotationFields{
+		serverAliasAnnotation: {
+			Validator: parser.ValidateArrayOfServerName,
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskHigh, // High as this allows regex chars
+			Documentation: `this annotation can be used to define additional server 
+			aliases for this Ingress`,
+		},
+	},
+}
+
 type alias struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new Alias annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return alias{r}
+	return alias{
+		r:                r,
+		annotationConfig: aliasAnnotation,
+	}
+}
+
+func (a alias) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
 }
 
 // Parse parses the annotations contained in the ingress rule
 // used to add an alias to the provided hosts
 func (a alias) Parse(ing *networking.Ingress) (interface{}, error) {
-	val, err := parser.GetStringAnnotation("server-alias", ing)
+	val, err := parser.GetStringAnnotation(serverAliasAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		return []string{}, err
 	}
@@ -61,3 +86,8 @@ func (a alias) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	return l, nil
 }
+
+func (a alias) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, aliasAnnotation.Annotations)
+}
diff --git a/internal/ingress/annotations/alias/main_test.go b/internal/ingress/annotations/alias/main_test.go
index 8e6fca447..1965f2630 100644
--- a/internal/ingress/annotations/alias/main_test.go
+++ b/internal/ingress/annotations/alias/main_test.go
@@ -27,7 +27,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
-var annotation = parser.GetAnnotationWithPrefix("server-alias")
+var annotation = parser.GetAnnotationWithPrefix(serverAliasAnnotation)
 
 func TestParse(t *testing.T) {
 	ap := NewParser(&resolver.Mock{})
@@ -36,16 +36,20 @@ func TestParse(t *testing.T) {
 	}
 
 	testCases := []struct {
-		annotations map[string]string
-		expected    []string
+		annotations    map[string]string
+		expected       []string
+		skipValidation bool
+		wantErr        bool
 	}{
-		{map[string]string{annotation: "a.com, b.com, ,    c.com"}, []string{"a.com", "b.com", "c.com"}},
-		{map[string]string{annotation: "www.example.com"}, []string{"www.example.com"}},
-		{map[string]string{annotation: "*.example.com,www.example.*"}, []string{"*.example.com", "www.example.*"}},
-		{map[string]string{annotation: `~^www\d+\.example\.com$`}, []string{`~^www\d+\.example\.com$`}},
-		{map[string]string{annotation: ""}, []string{}},
-		{map[string]string{}, []string{}},
-		{nil, []string{}},
+		{map[string]string{annotation: "a.com, b.com, ,    c.com"}, []string{"a.com", "b.com", "c.com"}, false, false},
+		{map[string]string{annotation: "www.example.com"}, []string{"www.example.com"}, false, false},
+		{map[string]string{annotation: "*.example.com,www.example.*"}, []string{"*.example.com", "www.example.*"}, false, false},
+		{map[string]string{annotation: `~^www\d+\.example\.com$`}, []string{`~^www\d+\.example\.com$`}, false, false},
+		{map[string]string{annotation: `www.xpto;lala`}, []string{}, false, true},
+		{map[string]string{annotation: `www.xpto;lala`}, []string{"www.xpto;lala"}, true, false}, // When we skip validation no error should happen
+		{map[string]string{annotation: ""}, []string{}, false, true},
+		{map[string]string{}, []string{}, false, true},
+		{nil, []string{}, false, true},
 	}
 
 	ing := &networking.Ingress{
@@ -58,7 +62,16 @@ func TestParse(t *testing.T) {
 
 	for _, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
-		result, _ := ap.Parse(ing)
+		if testCase.skipValidation {
+			parser.EnableAnnotationValidation = false
+		}
+		defer func() {
+			parser.EnableAnnotationValidation = true
+		}()
+		result, err := ap.Parse(ing)
+		if (err != nil) != testCase.wantErr {
+			t.Errorf("ParseAliasAnnotation() annotation: %s, error = %v, wantErr %v", testCase.annotations, err, testCase.wantErr)
+		}
 		if !reflect.DeepEqual(result, testCase.expected) {
 			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
 		}
diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index 5bb2bf5e6..5371e6eb7 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -44,8 +44,8 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/fastcgi"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/globalratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/http2pushpreload"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/ipallowlist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipdenylist"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/ipwhitelist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/loadbalancing"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/log"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/mirror"
@@ -109,7 +109,6 @@ type Ingress struct {
 	UpstreamHashBy     upstreamhashby.Config
 	LoadBalancing      string
 	UpstreamVhost      string
-	Whitelist          ipwhitelist.SourceRange
 	Denylist           ipdenylist.SourceRange
 	XForwardedPrefix   string
 	SSLCipher          sslcipher.Config
@@ -117,6 +116,7 @@ type Ingress struct {
 	ModSecurity        modsecurity.Config
 	Mirror             mirror.Config
 	StreamSnippet      string
+	Allowlist          ipallowlist.SourceRange
 }
 
 // Extractor defines the annotation parsers to be used in the extraction of annotations
@@ -159,7 +159,7 @@ func NewAnnotationExtractor(cfg resolver.Resolver) Extractor {
 			"UpstreamHashBy":       upstreamhashby.NewParser(cfg),
 			"LoadBalancing":        loadbalancing.NewParser(cfg),
 			"UpstreamVhost":        upstreamvhost.NewParser(cfg),
-			"Whitelist":            ipwhitelist.NewParser(cfg),
+			"Allowlist":            ipallowlist.NewParser(cfg),
 			"Denylist":             ipdenylist.NewParser(cfg),
 			"XForwardedPrefix":     xforwardedprefix.NewParser(cfg),
 			"SSLCipher":            sslcipher.NewParser(cfg),
@@ -173,16 +173,23 @@ func NewAnnotationExtractor(cfg resolver.Resolver) Extractor {
 }
 
 // Extract extracts the annotations from an Ingress
-func (e Extractor) Extract(ing *networking.Ingress) *Ingress {
+func (e Extractor) Extract(ing *networking.Ingress) (*Ingress, error) {
 	pia := &Ingress{
 		ObjectMeta: ing.ObjectMeta,
 	}
 
 	data := make(map[string]interface{})
 	for name, annotationParser := range e.annotations {
+		if err := annotationParser.Validate(ing.GetAnnotations()); err != nil {
+			return nil, errors.NewRiskyAnnotations(name)
+		}
 		val, err := annotationParser.Parse(ing)
 		klog.V(5).InfoS("Parsing Ingress annotation", "name", name, "ingress", klog.KObj(ing), "value", val)
 		if err != nil {
+			if errors.IsValidationError(err) {
+				klog.ErrorS(err, "ingress contains invalid annotation value")
+				return nil, err
+			}
 			if errors.IsMissingAnnotations(err) {
 				continue
 			}
@@ -220,5 +227,5 @@ func (e Extractor) Extract(ing *networking.Ingress) *Ingress {
 		klog.ErrorS(err, "unexpected error merging extracted annotations")
 	}
 
-	return pia
+	return pia, nil
 }
diff --git a/internal/ingress/annotations/annotations_test.go b/internal/ingress/annotations/annotations_test.go
index d792801bc..2b2a64268 100644
--- a/internal/ingress/annotations/annotations_test.go
+++ b/internal/ingress/annotations/annotations_test.go
@@ -134,8 +134,11 @@ func TestSSLPassthrough(t *testing.T) {
 
 	for _, foo := range fooAnns {
 		ing.SetAnnotations(foo.annotations)
-		r := ec.Extract(ing).SSLPassthrough
-		if r != foo.er {
+		r, err := ec.Extract(ing)
+		if err != nil {
+			t.Errorf("Errors should be null: %v", err)
+		}
+		if r.SSLPassthrough != foo.er {
 			t.Errorf("Returned %v but expected %v", r, foo.er)
 		}
 	}
@@ -158,8 +161,11 @@ func TestUpstreamHashBy(t *testing.T) {
 
 	for _, foo := range fooAnns {
 		ing.SetAnnotations(foo.annotations)
-		r := ec.Extract(ing).UpstreamHashBy.UpstreamHashBy
-		if r != foo.er {
+		r, err := ec.Extract(ing)
+		if err != nil {
+			t.Errorf("error should be null: %v", err)
+		}
+		if r.UpstreamHashBy.UpstreamHashBy != foo.er {
 			t.Errorf("Returned %v but expected %v", r, foo.er)
 		}
 	}
@@ -185,7 +191,11 @@ func TestAffinitySession(t *testing.T) {
 
 	for _, foo := range fooAnns {
 		ing.SetAnnotations(foo.annotations)
-		r := ec.Extract(ing).SessionAffinity
+		rann, err := ec.Extract(ing)
+		if err != nil {
+			t.Errorf("error should be null: %v", err)
+		}
+		r := rann.SessionAffinity
 		t.Logf("Testing pass %v %v", foo.affinitytype, foo.cookiename)
 
 		if r.Type != foo.affinitytype {
@@ -228,7 +238,11 @@ func TestCors(t *testing.T) {
 
 	for _, foo := range fooAnns {
 		ing.SetAnnotations(foo.annotations)
-		r := ec.Extract(ing).CorsConfig
+		rann, err := ec.Extract(ing)
+		if err != nil {
+			t.Errorf("error should be null: %v", err)
+		}
+		r := rann.CorsConfig
 		t.Logf("Testing pass %v %v %v %v %v", foo.corsenabled, foo.methods, foo.headers, foo.origin, foo.credentials)
 
 		if r.CorsEnabled != foo.corsenabled {
@@ -277,7 +291,11 @@ func TestCustomHTTPErrors(t *testing.T) {
 
 	for _, foo := range fooAnns {
 		ing.SetAnnotations(foo.annotations)
-		r := ec.Extract(ing).CustomHTTPErrors
+		rann, err := ec.Extract(ing)
+		if err != nil {
+			t.Errorf("error should be null: %v", err)
+		}
+		r := rann.CustomHTTPErrors
 
 		// Check that expected codes were created
 		for i := range foo.er {
diff --git a/internal/ingress/annotations/auth/main.go b/internal/ingress/annotations/auth/main.go
index 62d70873e..beecebdb1 100644
--- a/internal/ingress/annotations/auth/main.go
+++ b/internal/ingress/annotations/auth/main.go
@@ -32,13 +32,56 @@ import (
 	"k8s.io/ingress-nginx/pkg/util/file"
 )
 
+const (
+	authSecretTypeAnnotation = "auth-secret-type" //#nosec G101
+	authRealmAnnotation      = "auth-realm"
+	authTypeAnnotation       = "auth-type"
+	// This should be exported as it is imported by other packages
+	AuthSecretAnnotation = "auth-secret" //#nosec G101
+)
+
 var (
-	authTypeRegex = regexp.MustCompile(`basic|digest`)
+	authTypeRegex       = regexp.MustCompile(`basic|digest`)
+	authSecretTypeRegex = regexp.MustCompile(`auth-file|auth-map`)
+
 	// AuthDirectory default directory used to store files
 	// to authenticate request
 	AuthDirectory = "/etc/ingress-controller/auth"
 )
 
+var AuthSecretConfig = parser.AnnotationConfig{
+	Validator:     parser.ValidateRegex(*parser.BasicCharsRegex, true),
+	Scope:         parser.AnnotationScopeLocation,
+	Risk:          parser.AnnotationRiskMedium, // Medium as it allows a subset of chars
+	Documentation: `This annotation defines the name of the Secret that contains the usernames and passwords which are granted access to the paths defined in the Ingress rules. `,
+}
+
+var authSecretAnnotations = parser.Annotation{
+	Group: "authentication",
+	Annotations: parser.AnnotationFields{
+		AuthSecretAnnotation: AuthSecretConfig,
+		authSecretTypeAnnotation: {
+			Validator: parser.ValidateRegex(*authSecretTypeRegex, true),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `This annotation what is the format of auth-secret value. Can be "auth-file" that defines the content of an htpasswd file, or "auth-map" where each key
+			is a user and each value is the password.`,
+		},
+		authRealmAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.CharsWithSpace, false),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium, // Medium as it allows a subset of chars
+			Documentation: `This annotation defines the realm (message) that should be shown to user when authentication is requested.`,
+		},
+		authTypeAnnotation: {
+			Validator:     parser.ValidateRegex(*authTypeRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation defines the basic authentication type. Should be "basic" or "digest"`,
+		},
+	},
+}
+
 const (
 	fileAuth = "auth-file"
 	mapAuth  = "auth-map"
@@ -85,13 +128,18 @@ func (bd1 *Config) Equal(bd2 *Config) bool {
 }
 
 type auth struct {
-	r             resolver.Resolver
-	authDirectory string
+	r                resolver.Resolver
+	authDirectory    string
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new authentication annotation parser
 func NewParser(authDirectory string, r resolver.Resolver) parser.IngressAnnotation {
-	return auth{r, authDirectory}
+	return auth{
+		r:                r,
+		authDirectory:    authDirectory,
+		annotationConfig: authSecretAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress
@@ -99,7 +147,7 @@ func NewParser(authDirectory string, r resolver.Resolver) parser.IngressAnnotati
 // and generated an htpasswd compatible file to be used as source
 // during the authentication process
 func (a auth) Parse(ing *networking.Ingress) (interface{}, error) {
-	at, err := parser.GetStringAnnotation("auth-type", ing)
+	at, err := parser.GetStringAnnotation(authTypeAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		return nil, err
 	}
@@ -109,12 +157,15 @@ func (a auth) Parse(ing *networking.Ingress) (interface{}, error) {
 	}
 
 	var secretType string
-	secretType, err = parser.GetStringAnnotation("auth-secret-type", ing)
+	secretType, err = parser.GetStringAnnotation(authSecretTypeAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if ing_errors.IsValidationError(err) {
+			return nil, err
+		}
 		secretType = fileAuth
 	}
 
-	s, err := parser.GetStringAnnotation("auth-secret", ing)
+	s, err := parser.GetStringAnnotation(AuthSecretAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		return nil, ing_errors.LocationDenied{
 			Reason: fmt.Errorf("error reading secret name from annotation: %w", err),
@@ -131,6 +182,13 @@ func (a auth) Parse(ing *networking.Ingress) (interface{}, error) {
 	if sns == "" {
 		sns = ing.Namespace
 	}
+	secCfg := a.r.GetSecurityConfiguration()
+	// We don't accept different namespaces for secrets.
+	if !secCfg.AllowCrossNamespaceResources && sns != ing.Namespace {
+		return nil, ing_errors.LocationDenied{
+			Reason: fmt.Errorf("cross namespace usage of secrets is not allowed"),
+		}
+	}
 
 	name := fmt.Sprintf("%v/%v", sns, sname)
 	secret, err := a.r.GetSecret(name)
@@ -140,7 +198,10 @@ func (a auth) Parse(ing *networking.Ingress) (interface{}, error) {
 		}
 	}
 
-	realm, _ := parser.GetStringAnnotation("auth-realm", ing)
+	realm, err := parser.GetStringAnnotation(authRealmAnnotation, ing, a.annotationConfig.Annotations)
+	if ing_errors.IsValidationError(err) {
+		return nil, err
+	}
 
 	passFilename := fmt.Sprintf("%v/%v-%v-%v.passwd", a.authDirectory, ing.GetNamespace(), ing.UID, secret.UID)
 
@@ -210,3 +271,12 @@ func dumpSecretAuthMap(filename string, secret *api.Secret) error {
 
 	return nil
 }
+
+func (a auth) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a auth) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, authSecretAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/auth/main_test.go b/internal/ingress/annotations/auth/main_test.go
index d4ec53459..2a9dc7c72 100644
--- a/internal/ingress/annotations/auth/main_test.go
+++ b/internal/ingress/annotations/auth/main_test.go
@@ -26,6 +26,7 @@ import (
 	api "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/client-go/tools/cache"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
@@ -79,13 +80,18 @@ type mockSecret struct {
 }
 
 func (m mockSecret) GetSecret(name string) (*api.Secret, error) {
-	if name != "default/demo-secret" {
+	if name != "default/demo-secret" && name != "otherns/demo-secret" {
 		return nil, fmt.Errorf("there is no secret with name %v", name)
 	}
 
+	ns, _, err := cache.SplitMetaNamespaceKey(name)
+	if err != nil {
+		return nil, err
+	}
+
 	return &api.Secret{
 		ObjectMeta: meta_v1.ObjectMeta{
-			Namespace: api.NamespaceDefault,
+			Namespace: ns,
 			Name:      "demo-secret",
 		},
 		Data: map[string][]byte{"auth": []byte("foo:$apr1$OFG3Xybp$ckL0FHDAkoXYIlH9.cysT0")},
@@ -106,13 +112,91 @@ func TestIngressAuthBadAuthType(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("auth-type")] = "invalid"
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "invalid"
 	ing.SetAnnotations(data)
 
 	_, dir, _ := dummySecretContent(t)
 	defer os.RemoveAll(dir)
 
-	expected := ing_errors.NewLocationDenied("invalid authentication type")
+	expected := ing_errors.NewValidationError("nginx.ingress.kubernetes.io/auth-type")
+	_, err := NewParser(dir, &mockSecret{}).Parse(ing)
+	if err.Error() != expected.Error() {
+		t.Errorf("expected '%v' but got '%v'", expected, err)
+	}
+}
+
+func TestIngressInvalidRealm(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
+	data[parser.GetAnnotationWithPrefix(authRealmAnnotation)] = "something weird ; location trying to { break }"
+	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = "demo-secret"
+	ing.SetAnnotations(data)
+
+	_, dir, _ := dummySecretContent(t)
+	defer os.RemoveAll(dir)
+
+	expected := ing_errors.NewValidationError("nginx.ingress.kubernetes.io/auth-realm")
+	_, err := NewParser(dir, &mockSecret{}).Parse(ing)
+	if err.Error() != expected.Error() {
+		t.Errorf("expected '%v' but got '%v'", expected, err)
+	}
+}
+
+func TestIngressInvalidDifferentNamespace(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
+	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = "otherns/demo-secret"
+	ing.SetAnnotations(data)
+
+	_, dir, _ := dummySecretContent(t)
+	defer os.RemoveAll(dir)
+
+	expected := ing_errors.LocationDenied{
+		Reason: errors.New("cross namespace usage of secrets is not allowed"),
+	}
+	_, err := NewParser(dir, &mockSecret{}).Parse(ing)
+	if err.Error() != expected.Error() {
+		t.Errorf("expected '%v' but got '%v'", expected, err)
+	}
+}
+
+func TestIngressInvalidDifferentNamespaceAllowed(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
+	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = "otherns/demo-secret"
+	ing.SetAnnotations(data)
+
+	_, dir, _ := dummySecretContent(t)
+	defer os.RemoveAll(dir)
+
+	r := mockSecret{}
+	r.AllowCrossNamespace = true
+	_, err := NewParser(dir, r).Parse(ing)
+	if err != nil {
+		t.Errorf("not expecting an error")
+	}
+}
+
+func TestIngressInvalidSecretName(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
+	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = "demo-secret;xpto"
+	ing.SetAnnotations(data)
+
+	_, dir, _ := dummySecretContent(t)
+	defer os.RemoveAll(dir)
+
+	expected := ing_errors.LocationDenied{
+		Reason: errors.New("error reading secret name from annotation: annotation nginx.ingress.kubernetes.io/auth-secret contains invalid value"),
+	}
 	_, err := NewParser(dir, &mockSecret{}).Parse(ing)
 	if err.Error() != expected.Error() {
 		t.Errorf("expected '%v' but got '%v'", expected, err)
@@ -123,7 +207,7 @@ func TestInvalidIngressAuthNoSecret(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("auth-type")] = "basic"
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
 	ing.SetAnnotations(data)
 
 	_, dir, _ := dummySecretContent(t)
@@ -142,9 +226,9 @@ func TestIngressAuth(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("auth-type")] = "basic"
-	data[parser.GetAnnotationWithPrefix("auth-secret")] = "demo-secret"
-	data[parser.GetAnnotationWithPrefix("auth-realm")] = "-realm-"
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
+	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = "demo-secret"
+	data[parser.GetAnnotationWithPrefix(authRealmAnnotation)] = "-realm-"
 	ing.SetAnnotations(data)
 
 	_, dir, _ := dummySecretContent(t)
@@ -173,9 +257,9 @@ func TestIngressAuthWithoutSecret(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("auth-type")] = "basic"
-	data[parser.GetAnnotationWithPrefix("auth-secret")] = "invalid-secret"
-	data[parser.GetAnnotationWithPrefix("auth-realm")] = "-realm-"
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
+	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = "invalid-secret"
+	data[parser.GetAnnotationWithPrefix(authRealmAnnotation)] = "-realm-"
 	ing.SetAnnotations(data)
 
 	_, dir, _ := dummySecretContent(t)
@@ -191,10 +275,10 @@ func TestIngressAuthInvalidSecretKey(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("auth-type")] = "basic"
-	data[parser.GetAnnotationWithPrefix("auth-secret")] = "demo-secret"
-	data[parser.GetAnnotationWithPrefix("auth-secret-type")] = "invalid-type"
-	data[parser.GetAnnotationWithPrefix("auth-realm")] = "-realm-"
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
+	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = "demo-secret"
+	data[parser.GetAnnotationWithPrefix(authSecretTypeAnnotation)] = "invalid-type"
+	data[parser.GetAnnotationWithPrefix(authRealmAnnotation)] = "-realm-"
 	ing.SetAnnotations(data)
 
 	_, dir, _ := dummySecretContent(t)
diff --git a/internal/ingress/annotations/authreq/main.go b/internal/ingress/annotations/authreq/main.go
index 2ab389146..2ab98ace0 100644
--- a/internal/ingress/annotations/authreq/main.go
+++ b/internal/ingress/annotations/authreq/main.go
@@ -24,6 +24,7 @@ import (
 	"k8s.io/klog/v2"
 
 	networking "k8s.io/api/networking/v1"
+	"k8s.io/client-go/tools/cache"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
@@ -31,6 +32,118 @@ import (
 	"k8s.io/ingress-nginx/pkg/util/sets"
 )
 
+const (
+	authReqURLAnnotation               = "auth-url"
+	authReqMethodAnnotation            = "auth-method"
+	authReqSigninAnnotation            = "auth-signin"
+	authReqSigninRedirParamAnnotation  = "auth-signin-redirect-param"
+	authReqSnippetAnnotation           = "auth-snippet"
+	authReqCacheKeyAnnotation          = "auth-cache-key"
+	authReqKeepaliveAnnotation         = "auth-keepalive"
+	authReqKeepaliveRequestsAnnotation = "auth-keepalive-requests"
+	authReqKeepaliveTimeout            = "auth-keepalive-timeout"
+	authReqCacheDuration               = "auth-cache-duration"
+	authReqResponseHeadersAnnotation   = "auth-response-headers"
+	authReqProxySetHeadersAnnotation   = "auth-proxy-set-headers"
+	authReqRequestRedirectAnnotation   = "auth-request-redirect"
+	authReqAlwaysSetCookieAnnotation   = "auth-always-set-cookie"
+
+	// This should be exported as it is imported by other packages
+	AuthSecretAnnotation = "auth-secret"
+)
+
+var authReqAnnotations = parser.Annotation{
+	Group: "authentication",
+	Annotations: parser.AnnotationFields{
+		authReqURLAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.URLWithNginxVariableRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskHigh,
+			Documentation: `This annotation allows to indicate the URL where the HTTP request should be sent`,
+		},
+		authReqMethodAnnotation: {
+			Validator:     parser.ValidateRegex(*methodsRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation allows to specify the HTTP method to use`,
+		},
+		authReqSigninAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.URLWithNginxVariableRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskHigh,
+			Documentation: `This annotation allows to specify the location of the error page`,
+		},
+		authReqSigninRedirParamAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.URLIsValidRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation allows to specify the URL parameter in the error page which should contain the original URL for a failed signin request`,
+		},
+		authReqSnippetAnnotation: {
+			Validator:     parser.ValidateNull,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskCritical,
+			Documentation: `This annotation allows to specify a custom snippet to use with external authentication`,
+		},
+		authReqCacheKeyAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.NGINXVariable, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation enables caching for auth requests.`,
+		},
+		authReqKeepaliveAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation specifies the maximum number of keepalive connections to auth-url. Only takes effect when no variables are used in the host part of the URL`,
+		},
+		authReqKeepaliveRequestsAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation defines the maximum number of requests that can be served through one keepalive connection`,
+		},
+		authReqKeepaliveTimeout: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation specifies a duration in seconds which an idle keepalive connection to an upstream server will stay open`,
+		},
+		authReqCacheDuration: {
+			Validator:     parser.ValidateRegex(*parser.ExtendedCharsRegex, false),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation allows to specify a caching time for auth responses based on their response codes, e.g. 200 202 30m`,
+		},
+		authReqResponseHeadersAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.HeadersVariable, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation sets the headers to pass to backend once authentication request completes. They should be separated by comma.`,
+		},
+		authReqProxySetHeadersAnnotation: {
+			Validator: parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation sets the name of a ConfigMap that specifies headers to pass to the authentication service.
+			Only ConfigMaps on the same namespace are allowed`,
+		},
+		authReqRequestRedirectAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.URLIsValidRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation allows to specify the X-Auth-Request-Redirect header value`,
+		},
+		authReqAlwaysSetCookieAnnotation: {
+			Validator: parser.ValidateBool,
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `This annotation enables setting a cookie returned by auth request. 
+			By default, the cookie will be set only if an upstream reports with the code 200, 201, 204, 206, 301, 302, 303, 304, 307, or 308`,
+		},
+	},
+}
+
 // Config returns external authentication configuration for an Ingress rule
 type Config struct {
 	URL string `json:"url"`
@@ -121,7 +234,7 @@ func (e1 *Config) Equal(e2 *Config) bool {
 }
 
 var (
-	methods         = []string{"GET", "HEAD", "POST", "PUT", "PATCH", "DELETE", "CONNECT", "OPTIONS", "TRACE"}
+	methodsRegex    = regexp.MustCompile("(GET|HEAD|POST|PUT|PATCH|DELETE|CONNECT|OPTIONS|TRACE)")
 	headerRegexp    = regexp.MustCompile(`^[a-zA-Z\d\-_]+$`)
 	statusCodeRegex = regexp.MustCompile(`^[\d]{3}$`)
 	durationRegex   = regexp.MustCompile(`^[\d]+(ms|s|m|h|d|w|M|y)$`) // see http://nginx.org/en/docs/syntax.html
@@ -129,16 +242,7 @@ var (
 
 // ValidMethod checks is the provided string a valid HTTP method
 func ValidMethod(method string) bool {
-	if len(method) == 0 {
-		return false
-	}
-
-	for _, m := range methods {
-		if method == m {
-			return true
-		}
-	}
-	return false
+	return methodsRegex.MatchString(method)
 }
 
 // ValidHeader checks is the provided string satisfies the header's name regex
@@ -173,19 +277,23 @@ func ValidCacheDuration(duration string) bool {
 }
 
 type authReq struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new authentication request annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return authReq{r}
+	return authReq{
+		r:                r,
+		annotationConfig: authReqAnnotations,
+	}
 }
 
 // ParseAnnotations parses the annotations contained in the ingress
 // rule used to use an Config URL as source for authentication
 func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 	// Required Parameters
-	urlString, err := parser.GetStringAnnotation("auth-url", ing)
+	urlString, err := parser.GetStringAnnotation(authReqURLAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		return nil, err
 	}
@@ -195,33 +303,44 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 		return nil, ing_errors.LocationDenied{Reason: fmt.Errorf("could not parse auth-url annotation: %v", err)}
 	}
 
-	authMethod, _ := parser.GetStringAnnotation("auth-method", ing)
-	if len(authMethod) != 0 && !ValidMethod(authMethod) {
-		return nil, ing_errors.NewLocationDenied("invalid HTTP method")
+	authMethod, err := parser.GetStringAnnotation(authReqMethodAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil {
+		if ing_errors.IsValidationError(err) {
+			return nil, ing_errors.NewLocationDenied("invalid HTTP method")
+		}
 	}
 
 	// Optional Parameters
-	signIn, err := parser.GetStringAnnotation("auth-signin", ing)
+	signIn, err := parser.GetStringAnnotation(authReqSigninAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if ing_errors.IsValidationError(err) {
+			klog.Warningf("%s value is invalid: %s", authReqSigninAnnotation, err)
+		}
 		klog.V(3).InfoS("auth-signin annotation is undefined and will not be set")
 	}
 
-	signInRedirectParam, err := parser.GetStringAnnotation("auth-signin-redirect-param", ing)
+	signInRedirectParam, err := parser.GetStringAnnotation(authReqSigninRedirParamAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if ing_errors.IsValidationError(err) {
+			klog.Warningf("%s value is invalid: %s", authReqSigninRedirParamAnnotation, err)
+		}
 		klog.V(3).Infof("auth-signin-redirect-param annotation is undefined and will not be set")
 	}
 
-	authSnippet, err := parser.GetStringAnnotation("auth-snippet", ing)
+	authSnippet, err := parser.GetStringAnnotation(authReqSnippetAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		klog.V(3).InfoS("auth-snippet annotation is undefined and will not be set")
 	}
 
-	authCacheKey, err := parser.GetStringAnnotation("auth-cache-key", ing)
+	authCacheKey, err := parser.GetStringAnnotation(authReqCacheKeyAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if ing_errors.IsValidationError(err) {
+			klog.Warningf("%s value is invalid: %s", authReqCacheKeyAnnotation, err)
+		}
 		klog.V(3).InfoS("auth-cache-key annotation is undefined and will not be set")
 	}
 
-	keepaliveConnections, err := parser.GetIntAnnotation("auth-keepalive", ing)
+	keepaliveConnections, err := parser.GetIntAnnotation(authReqKeepaliveAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		klog.V(3).InfoS("auth-keepalive annotation is undefined and will be set to its default value")
 		keepaliveConnections = defaultKeepaliveConnections
@@ -238,9 +357,9 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 		}
 	}
 
-	keepaliveRequests, err := parser.GetIntAnnotation("auth-keepalive-requests", ing)
+	keepaliveRequests, err := parser.GetIntAnnotation(authReqKeepaliveRequestsAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
-		klog.V(3).InfoS("auth-keepalive-requests annotation is undefined and will be set to its default value")
+		klog.V(3).InfoS("auth-keepalive-requests annotation is undefined or invalid and will be set to its default value")
 		keepaliveRequests = defaultKeepaliveRequests
 	}
 	if keepaliveRequests <= 0 {
@@ -248,7 +367,7 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 		keepaliveConnections = 0
 	}
 
-	keepaliveTimeout, err := parser.GetIntAnnotation("auth-keepalive-timeout", ing)
+	keepaliveTimeout, err := parser.GetIntAnnotation(authReqKeepaliveTimeout, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		klog.V(3).InfoS("auth-keepalive-timeout annotation is undefined and will be set to its default value")
 		keepaliveTimeout = defaultKeepaliveTimeout
@@ -258,14 +377,20 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 		keepaliveConnections = 0
 	}
 
-	durstr, _ := parser.GetStringAnnotation("auth-cache-duration", ing)
+	durstr, err := parser.GetStringAnnotation(authReqCacheDuration, ing, a.annotationConfig.Annotations)
+	if err != nil && ing_errors.IsValidationError(err) {
+		return nil, fmt.Errorf("%s contains invalid value", authReqCacheDuration)
+	}
 	authCacheDuration, err := ParseStringToCacheDurations(durstr)
 	if err != nil {
 		return nil, err
 	}
 
 	responseHeaders := []string{}
-	hstr, _ := parser.GetStringAnnotation("auth-response-headers", ing)
+	hstr, err := parser.GetStringAnnotation(authReqResponseHeadersAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil && ing_errors.IsValidationError(err) {
+		return nil, ing_errors.NewLocationDenied("validation error")
+	}
 	if len(hstr) != 0 {
 		harr := strings.Split(hstr, ",")
 		for _, header := range harr {
@@ -279,9 +404,28 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 		}
 	}
 
-	proxySetHeaderMap, err := parser.GetStringAnnotation("auth-proxy-set-headers", ing)
+	proxySetHeaderMap, err := parser.GetStringAnnotation(authReqProxySetHeadersAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
-		klog.V(3).InfoS("auth-set-proxy-headers annotation is undefined and will not be set")
+		klog.V(3).InfoS("auth-set-proxy-headers annotation is undefined and will not be set", "err", err)
+	}
+
+	cns, _, err := cache.SplitMetaNamespaceKey(proxySetHeaderMap)
+	if err != nil {
+		return nil, ing_errors.LocationDenied{
+			Reason: fmt.Errorf("error reading configmap name %s from annotation: %w", proxySetHeaderMap, err),
+		}
+	}
+
+	if cns == "" {
+		cns = ing.Namespace
+	}
+
+	secCfg := a.r.GetSecurityConfiguration()
+	// We don't accept different namespaces for secrets.
+	if !secCfg.AllowCrossNamespaceResources && cns != ing.Namespace {
+		return nil, ing_errors.LocationDenied{
+			Reason: fmt.Errorf("cross namespace usage of secrets is not allowed"),
+		}
 	}
 
 	var proxySetHeaders map[string]string
@@ -301,9 +445,15 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 		proxySetHeaders = proxySetHeadersMapContents.Data
 	}
 
-	requestRedirect, _ := parser.GetStringAnnotation("auth-request-redirect", ing)
+	requestRedirect, err := parser.GetStringAnnotation(authReqRequestRedirectAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil && ing_errors.IsValidationError(err) {
+		return nil, fmt.Errorf("%s is invalid: %w", authReqRequestRedirectAnnotation, err)
+	}
 
-	alwaysSetCookie, _ := parser.GetBoolAnnotation("auth-always-set-cookie", ing)
+	alwaysSetCookie, err := parser.GetBoolAnnotation(authReqAlwaysSetCookieAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil && ing_errors.IsValidationError(err) {
+		return nil, fmt.Errorf("%s is invalid: %w", authReqAlwaysSetCookieAnnotation, err)
+	}
 
 	return &Config{
 		URL:                    urlString,
@@ -348,3 +498,12 @@ func ParseStringToCacheDurations(input string) ([]string, error) {
 	}
 	return authCacheDuration, nil
 }
+
+func (a authReq) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a authReq) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, authReqAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/authreq/main_test.go b/internal/ingress/annotations/authreq/main_test.go
index e1325235b..833bebe78 100644
--- a/internal/ingress/annotations/authreq/main_test.go
+++ b/internal/ingress/annotations/authreq/main_test.go
@@ -192,11 +192,13 @@ func TestHeaderAnnotations(t *testing.T) {
 		i, err := NewParser(&resolver.Mock{}).Parse(ing)
 		if test.expErr {
 			if err == nil {
-				t.Error("expected error but retuned nil")
+				t.Errorf("%v expected error but retuned nil", test.title)
 			}
 			continue
 		}
-
+		if err != nil {
+			t.Errorf("no error was expected but %v happened in %s", err, test.title)
+		}
 		u, ok := i.(*Config)
 		if !ok {
 			t.Errorf("%v: expected an External type", test.title)
diff --git a/internal/ingress/annotations/authreqglobal/main.go b/internal/ingress/annotations/authreqglobal/main.go
index 78dd7d6a5..a1641e085 100644
--- a/internal/ingress/annotations/authreqglobal/main.go
+++ b/internal/ingress/annotations/authreqglobal/main.go
@@ -23,23 +23,52 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	enableGlobalAuthAnnotation = "enable-global-auth"
+)
+
+var globalAuthAnnotations = parser.Annotation{
+	Group: "authentication",
+	Annotations: parser.AnnotationFields{
+		enableGlobalAuthAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `Defines if the global external authentication should be enabled.`,
+		},
+	},
+}
+
 type authReqGlobal struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new authentication request annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return authReqGlobal{r}
+	return authReqGlobal{
+		r:                r,
+		annotationConfig: globalAuthAnnotations,
+	}
 }
 
 // ParseAnnotations parses the annotations contained in the ingress
 // rule used to enable or disable global external authentication
 func (a authReqGlobal) Parse(ing *networking.Ingress) (interface{}, error) {
 
-	enableGlobalAuth, err := parser.GetBoolAnnotation("enable-global-auth", ing)
+	enableGlobalAuth, err := parser.GetBoolAnnotation(enableGlobalAuthAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		enableGlobalAuth = true
 	}
 
 	return enableGlobalAuth, nil
 }
+
+func (a authReqGlobal) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a authReqGlobal) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, globalAuthAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/authtls/main.go b/internal/ingress/annotations/authtls/main.go
index 2efd6d176..5d6763e8b 100644
--- a/internal/ingress/annotations/authtls/main.go
+++ b/internal/ingress/annotations/authtls/main.go
@@ -32,13 +32,64 @@ import (
 const (
 	defaultAuthTLSDepth     = 1
 	defaultAuthVerifyClient = "on"
+
+	annotationAuthTLSSecret             = "auth-tls-secret" //#nosec G101
+	annotationAuthTLSVerifyClient       = "auth-tls-verify-client"
+	annotationAuthTLSVerifyDepth        = "auth-tls-verify-depth"
+	annotationAuthTLSErrorPage          = "auth-tls-error-page"
+	annotationAuthTLSPassCertToUpstream = "auth-tls-pass-certificate-to-upstream" //#nosec G101
+	annotationAuthTLSMatchCN            = "auth-tls-match-cn"
 )
 
 var (
+	regexChars            = regexp.QuoteMeta(`()|=`)
 	authVerifyClientRegex = regexp.MustCompile(`on|off|optional|optional_no_ca`)
-	commonNameRegex       = regexp.MustCompile(`CN=`)
+	commonNameRegex       = regexp.MustCompile(`^CN=[/\-.\_\~a-zA-Z0-9` + regexChars + `]*$`)
+	redirectRegex         = regexp.MustCompile(`^((https?://)?[A-Za-z0-9\-\.]*(:[0-9]+)?/[A-Za-z0-9\-\.]*)?$`)
 )
 
+var authTLSAnnotations = parser.Annotation{
+	Group: "authentication",
+	Annotations: parser.AnnotationFields{
+		annotationAuthTLSSecret: {
+			Validator:     parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium, // Medium as it allows a subset of chars
+			Documentation: `This annotation defines the secret that contains the certificate chain of allowed certs`,
+		},
+		annotationAuthTLSVerifyClient: {
+			Validator:     parser.ValidateRegex(*authVerifyClientRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium, // Medium as it allows a subset of chars
+			Documentation: `This annotation enables verification of client certificates. Can be "on", "off", "optional" or "optional_no_ca"`,
+		},
+		annotationAuthTLSVerifyDepth: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation defines validation depth between the provided client certificate and the Certification Authority chain.`,
+		},
+		annotationAuthTLSErrorPage: {
+			Validator:     parser.ValidateRegex(*redirectRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskHigh,
+			Documentation: `This annotation defines the URL/Page that user should be redirected in case of a Certificate Authentication Error`,
+		},
+		annotationAuthTLSPassCertToUpstream: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation defines if the received certificates should be passed or not to the upstream server in the header "ssl-client-cert"`,
+		},
+		annotationAuthTLSMatchCN: {
+			Validator:     parser.ValidateRegex(*commonNameRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskHigh,
+			Documentation: `This annotation adds a sanity check for the CN of the client certificate that is sent over using a string / regex starting with "CN="`,
+		},
+	},
+}
+
 // Config contains the AuthSSLCert used for mutual authentication
 // and the configured ValidationDepth
 type Config struct {
@@ -80,11 +131,15 @@ func (assl1 *Config) Equal(assl2 *Config) bool {
 
 // NewParser creates a new TLS authentication annotation parser
 func NewParser(resolver resolver.Resolver) parser.IngressAnnotation {
-	return authTLS{resolver}
+	return authTLS{
+		r:                resolver,
+		annotationConfig: authTLSAnnotations,
+	}
 }
 
 type authTLS struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // Parse parses the annotations contained in the ingress
@@ -93,15 +148,23 @@ func (a authTLS) Parse(ing *networking.Ingress) (interface{}, error) {
 	var err error
 	config := &Config{}
 
-	tlsauthsecret, err := parser.GetStringAnnotation("auth-tls-secret", ing)
+	tlsauthsecret, err := parser.GetStringAnnotation(annotationAuthTLSSecret, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		return &Config{}, err
 	}
 
-	_, _, err = k8s.ParseNameNS(tlsauthsecret)
+	ns, _, err := k8s.ParseNameNS(tlsauthsecret)
 	if err != nil {
 		return &Config{}, ing_errors.NewLocationDenied(err.Error())
 	}
+	if ns == "" {
+		ns = ing.Namespace
+	}
+	secCfg := a.r.GetSecurityConfiguration()
+	// We don't accept different namespaces for secrets.
+	if !secCfg.AllowCrossNamespaceResources && ns != ing.Namespace {
+		return &Config{}, ing_errors.NewLocationDenied("cross namespace secrets are not supported")
+	}
 
 	authCert, err := a.r.GetAuthCertificate(tlsauthsecret)
 	if err != nil {
@@ -110,30 +173,50 @@ func (a authTLS) Parse(ing *networking.Ingress) (interface{}, error) {
 	}
 	config.AuthSSLCert = *authCert
 
-	config.VerifyClient, err = parser.GetStringAnnotation("auth-tls-verify-client", ing)
+	config.VerifyClient, err = parser.GetStringAnnotation(annotationAuthTLSVerifyClient, ing, a.annotationConfig.Annotations)
+	// We can set a default value here in case of validation error
 	if err != nil || !authVerifyClientRegex.MatchString(config.VerifyClient) {
 		config.VerifyClient = defaultAuthVerifyClient
 	}
 
-	config.ValidationDepth, err = parser.GetIntAnnotation("auth-tls-verify-depth", ing)
+	config.ValidationDepth, err = parser.GetIntAnnotation(annotationAuthTLSVerifyDepth, ing, a.annotationConfig.Annotations)
+	// We can set a default value here in case of validation error
 	if err != nil || config.ValidationDepth == 0 {
 		config.ValidationDepth = defaultAuthTLSDepth
 	}
 
-	config.ErrorPage, err = parser.GetStringAnnotation("auth-tls-error-page", ing)
+	config.ErrorPage, err = parser.GetStringAnnotation(annotationAuthTLSErrorPage, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if ing_errors.IsValidationError(err) {
+			return &Config{}, err
+		}
 		config.ErrorPage = ""
 	}
 
-	config.PassCertToUpstream, err = parser.GetBoolAnnotation("auth-tls-pass-certificate-to-upstream", ing)
+	config.PassCertToUpstream, err = parser.GetBoolAnnotation(annotationAuthTLSPassCertToUpstream, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if ing_errors.IsValidationError(err) {
+			return &Config{}, err
+		}
 		config.PassCertToUpstream = false
 	}
 
-	config.MatchCN, err = parser.GetStringAnnotation("auth-tls-match-cn", ing)
-	if err != nil || !commonNameRegex.MatchString(config.MatchCN) {
+	config.MatchCN, err = parser.GetStringAnnotation(annotationAuthTLSMatchCN, ing, a.annotationConfig.Annotations)
+	if err != nil {
+		if ing_errors.IsValidationError(err) {
+			return &Config{}, err
+		}
 		config.MatchCN = ""
 	}
 
 	return config, nil
 }
+
+func (a authTLS) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a authTLS) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, authTLSAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/authtls/main_test.go b/internal/ingress/annotations/authtls/main_test.go
index 569f3865b..a1f3f0f92 100644
--- a/internal/ingress/annotations/authtls/main_test.go
+++ b/internal/ingress/annotations/authtls/main_test.go
@@ -93,7 +93,7 @@ func TestAnnotations(t *testing.T) {
 	ing := buildIngress()
 	data := map[string]string{}
 
-	data[parser.GetAnnotationWithPrefix("auth-tls-secret")] = "default/demo-secret"
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSSecret)] = "default/demo-secret"
 
 	ing.SetAnnotations(data)
 
@@ -132,11 +132,11 @@ func TestAnnotations(t *testing.T) {
 		t.Errorf("expected empty string, but got %v", u.MatchCN)
 	}
 
-	data[parser.GetAnnotationWithPrefix("auth-tls-verify-client")] = "off"
-	data[parser.GetAnnotationWithPrefix("auth-tls-verify-depth")] = "2"
-	data[parser.GetAnnotationWithPrefix("auth-tls-error-page")] = "ok.com/error"
-	data[parser.GetAnnotationWithPrefix("auth-tls-pass-certificate-to-upstream")] = "true"
-	data[parser.GetAnnotationWithPrefix("auth-tls-match-cn")] = "CN=hello-app"
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSVerifyClient)] = "off"
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSVerifyDepth)] = "2"
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSErrorPage)] = "ok.com/error"
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSPassCertToUpstream)] = "true"
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSMatchCN)] = "CN=(hello-app|ok|goodbye)"
 
 	ing.SetAnnotations(data)
 
@@ -165,8 +165,8 @@ func TestAnnotations(t *testing.T) {
 	if u.PassCertToUpstream != true {
 		t.Errorf("expected %v but got %v", true, u.PassCertToUpstream)
 	}
-	if u.MatchCN != "CN=hello-app" {
-		t.Errorf("expected %v but got %v", "CN=hello-app", u.MatchCN)
+	if u.MatchCN != "CN=(hello-app|ok|goodbye)" {
+		t.Errorf("expected %v but got %v", "CN=(hello-app|ok|goodbye)", u.MatchCN)
 	}
 }
 
@@ -182,15 +182,24 @@ func TestInvalidAnnotations(t *testing.T) {
 	}
 
 	// Invalid NameSpace
-	data[parser.GetAnnotationWithPrefix("auth-tls-secret")] = "demo-secret"
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSSecret)] = "demo-secret"
 	ing.SetAnnotations(data)
 	_, err = NewParser(fakeSecret).Parse(ing)
 	if err == nil {
 		t.Errorf("Expected error with ingress but got nil")
 	}
 
+	// Invalid Cross NameSpace
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSSecret)] = "nondefault/demo-secret"
+	ing.SetAnnotations(data)
+	_, err = NewParser(fakeSecret).Parse(ing)
+	expErr := errors.NewLocationDenied("cross namespace secrets are not supported")
+	if err.Error() != expErr.Error() {
+		t.Errorf("received error is different from cross namespace error: %s Expected %s", err, expErr)
+	}
+
 	// Invalid Auth Certificate
-	data[parser.GetAnnotationWithPrefix("auth-tls-secret")] = "default/invalid-demo-secret"
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSSecret)] = "default/invalid-demo-secret"
 	ing.SetAnnotations(data)
 	_, err = NewParser(fakeSecret).Parse(ing)
 	if err == nil {
@@ -198,11 +207,38 @@ func TestInvalidAnnotations(t *testing.T) {
 	}
 
 	// Invalid optional Annotations
-	data[parser.GetAnnotationWithPrefix("auth-tls-secret")] = "default/demo-secret"
-	data[parser.GetAnnotationWithPrefix("auth-tls-verify-client")] = "w00t"
-	data[parser.GetAnnotationWithPrefix("auth-tls-verify-depth")] = "abcd"
-	data[parser.GetAnnotationWithPrefix("auth-tls-pass-certificate-to-upstream")] = "nahh"
-	data[parser.GetAnnotationWithPrefix("auth-tls-match-cn")] = "<script>nope</script>"
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSSecret)] = "default/demo-secret"
+
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSVerifyClient)] = "w00t"
+	ing.SetAnnotations(data)
+	_, err = NewParser(fakeSecret).Parse(ing)
+	if err != nil {
+		t.Errorf("Error should be nil and verify client should be defaulted")
+	}
+
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSVerifyDepth)] = "abcd"
+	ing.SetAnnotations(data)
+	_, err = NewParser(fakeSecret).Parse(ing)
+	if err != nil {
+		t.Errorf("Error should be nil and verify depth should be defaulted")
+	}
+
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSPassCertToUpstream)] = "nahh"
+	ing.SetAnnotations(data)
+	_, err = NewParser(fakeSecret).Parse(ing)
+	if err == nil {
+		t.Errorf("Expected error with ingress but got nil")
+	}
+	delete(data, parser.GetAnnotationWithPrefix(annotationAuthTLSPassCertToUpstream))
+
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSMatchCN)] = "<script>nope</script>"
+	ing.SetAnnotations(data)
+	_, err = NewParser(fakeSecret).Parse(ing)
+	if err == nil {
+		t.Errorf("Expected error with ingress CN but got nil")
+	}
+	delete(data, parser.GetAnnotationWithPrefix(annotationAuthTLSMatchCN))
+
 	ing.SetAnnotations(data)
 
 	i, err := NewParser(fakeSecret).Parse(ing)
diff --git a/internal/ingress/annotations/backendprotocol/main.go b/internal/ingress/annotations/backendprotocol/main.go
index c749072e3..2704ce9f6 100644
--- a/internal/ingress/annotations/backendprotocol/main.go
+++ b/internal/ingress/annotations/backendprotocol/main.go
@@ -17,49 +17,72 @@ limitations under the License.
 package backendprotocol
 
 import (
-	"regexp"
-	"strings"
-
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/klog/v2"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
-// HTTP protocol
-const HTTP = "HTTP"
-
 var (
-	validProtocols = regexp.MustCompile(`^(AUTO_HTTP|HTTP|HTTPS|GRPC|GRPCS|FCGI)$`)
+	validProtocols = []string{"auto_http", "http", "https", "grpc", "grpcs", "fcgi"}
 )
 
+const (
+	http                      = "HTTP"
+	backendProtocolAnnotation = "backend-protocol"
+)
+
+var backendProtocolConfig = parser.Annotation{
+	Group: "backend",
+	Annotations: parser.AnnotationFields{
+		backendProtocolAnnotation: {
+			Validator: parser.ValidateOptions(validProtocols, false, true),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow, // Low, as it allows just a set of options
+			Documentation: `this annotation can be used to define which protocol should 
+			be used to communicate with backends`,
+		},
+	},
+}
+
 type backendProtocol struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new backend protocol annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return backendProtocol{r}
+	return backendProtocol{
+		r:                r,
+		annotationConfig: backendProtocolConfig,
+	}
+}
+
+func (a backendProtocol) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
 }
 
 // ParseAnnotations parses the annotations contained in the ingress
 // rule used to indicate the backend protocol.
 func (a backendProtocol) Parse(ing *networking.Ingress) (interface{}, error) {
 	if ing.GetAnnotations() == nil {
-		return HTTP, nil
+		return http, nil
 	}
 
-	proto, err := parser.GetStringAnnotation("backend-protocol", ing)
+	proto, err := parser.GetStringAnnotation(backendProtocolAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
-		return HTTP, nil
-	}
-
-	proto = strings.TrimSpace(strings.ToUpper(proto))
-	if !validProtocols.MatchString(proto) {
-		klog.Warningf("Protocol %v is not a valid value for the backend-protocol annotation. Using HTTP as protocol", proto)
-		return HTTP, nil
+		if errors.IsValidationError(err) {
+			klog.Warningf("validation error %s. Using HTTP as protocol", err)
+		}
+		return http, nil
 	}
 
 	return proto, nil
 }
+
+func (a backendProtocol) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, backendProtocolConfig.Annotations)
+}
diff --git a/internal/ingress/annotations/backendprotocol/main_test.go b/internal/ingress/annotations/backendprotocol/main_test.go
index e8c018998..490be447b 100644
--- a/internal/ingress/annotations/backendprotocol/main_test.go
+++ b/internal/ingress/annotations/backendprotocol/main_test.go
@@ -77,7 +77,7 @@ func TestParseInvalidAnnotations(t *testing.T) {
 	}
 
 	// Test invalid annotation set
-	data[parser.GetAnnotationWithPrefix("backend-protocol")] = "INVALID"
+	data[parser.GetAnnotationWithPrefix(backendProtocolAnnotation)] = "INVALID"
 	ing.SetAnnotations(data)
 
 	i, err = NewParser(&resolver.Mock{}).Parse(ing)
@@ -97,7 +97,7 @@ func TestParseAnnotations(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("backend-protocol")] = "HTTPS"
+	data[parser.GetAnnotationWithPrefix(backendProtocolAnnotation)] = "  HTTPS  "
 	ing.SetAnnotations(data)
 
 	i, err := NewParser(&resolver.Mock{}).Parse(ing)
diff --git a/internal/ingress/annotations/canary/main.go b/internal/ingress/annotations/canary/main.go
index d9e53b3b8..119f09181 100644
--- a/internal/ingress/annotations/canary/main.go
+++ b/internal/ingress/annotations/canary/main.go
@@ -18,14 +18,82 @@ package canary
 
 import (
 	networking "k8s.io/api/networking/v1"
+	"k8s.io/klog/v2"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	canaryAnnotation                = "canary"
+	canaryWeightAnnotation          = "canary-weight"
+	canaryWeightTotalAnnotation     = "canary-weight-total"
+	canaryByHeaderAnnotation        = "canary-by-header"
+	canaryByHeaderValueAnnotation   = "canary-by-header-value"
+	canaryByHeaderPatternAnnotation = "canary-by-header-pattern"
+	canaryByCookieAnnotation        = "canary-by-cookie"
+)
+
+var CanaryAnnotations = parser.Annotation{
+	Group: "canary",
+	Annotations: parser.AnnotationFields{
+		canaryAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation enables the Ingress spec to act as an alternative service for requests to route to depending on the rules applied`,
+		},
+		canaryWeightAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation defines the integer based (0 - ) percent of random requests that should be routed to the service specified in the canary Ingress`,
+		},
+		canaryWeightTotalAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation The total weight of traffic. If unspecified, it defaults to 100`,
+		},
+		canaryByHeaderAnnotation: {
+			Validator: parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation defines the header that should be used for notifying the Ingress to route the request to the service specified in the Canary Ingress.
+			When the request header is set to 'always', it will be routed to the canary. When the header is set to 'never', it will never be routed to the canary.
+			For any other value, the header will be ignored and the request compared against the other canary rules by precedence`,
+		},
+		canaryByHeaderValueAnnotation: {
+			Validator: parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation defines the header value to match for notifying the Ingress to route the request to the service specified in the Canary Ingress. 
+			When the request header is set to this value, it will be routed to the canary. For any other header value, the header will be ignored and the request compared against the other canary rules by precedence. 
+			This annotation has to be used together with 'canary-by-header'. The annotation is an extension of the 'canary-by-header' to allow customizing the header value instead of using hardcoded values. 
+			It doesn't have any effect if the 'canary-by-header' annotation is not defined`,
+		},
+		canaryByHeaderPatternAnnotation: {
+			Validator: parser.ValidateRegex(*parser.IsValidRegex, false),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation works the same way as canary-by-header-value except it does PCRE Regex matching. 
+			Note that when 'canary-by-header-value' is set this annotation will be ignored. 
+			When the given Regex causes error during request processing, the request will be considered as not matching.`,
+		},
+		canaryByCookieAnnotation: {
+			Validator: parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation defines the cookie that should be used for notifying the Ingress to route the request to the service specified in the Canary Ingress.
+			When the cookie is set to 'always', it will be routed to the canary. When the cookie is set to 'never', it will never be routed to the canary`,
+		},
+	},
+}
+
 type canary struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // Config returns the configuration rules for setting up the Canary
@@ -41,7 +109,10 @@ type Config struct {
 
 // NewParser parses the ingress for canary related annotations
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return canary{r}
+	return canary{
+		r:                r,
+		annotationConfig: CanaryAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress
@@ -50,45 +121,75 @@ func (c canary) Parse(ing *networking.Ingress) (interface{}, error) {
 	config := &Config{}
 	var err error
 
-	config.Enabled, err = parser.GetBoolAnnotation("canary", ing)
+	config.Enabled, err = parser.GetBoolAnnotation(canaryAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("%s is invalid, defaulting to 'false'", canaryAnnotation)
+		}
 		config.Enabled = false
 	}
 
-	config.Weight, err = parser.GetIntAnnotation("canary-weight", ing)
+	config.Weight, err = parser.GetIntAnnotation(canaryWeightAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("%s is invalid, defaulting to '0'", canaryWeightAnnotation)
+		}
 		config.Weight = 0
 	}
 
-	config.WeightTotal, err = parser.GetIntAnnotation("canary-weight-total", ing)
+	config.WeightTotal, err = parser.GetIntAnnotation(canaryWeightTotalAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("%s is invalid, defaulting to '100'", canaryWeightTotalAnnotation)
+		}
 		config.WeightTotal = 100
 	}
 
-	config.Header, err = parser.GetStringAnnotation("canary-by-header", ing)
+	config.Header, err = parser.GetStringAnnotation(canaryByHeaderAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("%s is invalid, defaulting to ''", canaryByHeaderAnnotation)
+		}
 		config.Header = ""
 	}
 
-	config.HeaderValue, err = parser.GetStringAnnotation("canary-by-header-value", ing)
+	config.HeaderValue, err = parser.GetStringAnnotation(canaryByHeaderValueAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("%s is invalid, defaulting to ''", canaryByHeaderValueAnnotation)
+		}
 		config.HeaderValue = ""
 	}
 
-	config.HeaderPattern, err = parser.GetStringAnnotation("canary-by-header-pattern", ing)
+	config.HeaderPattern, err = parser.GetStringAnnotation(canaryByHeaderPatternAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("%s is invalid, defaulting to ''", canaryByHeaderPatternAnnotation)
+		}
 		config.HeaderPattern = ""
 	}
 
-	config.Cookie, err = parser.GetStringAnnotation("canary-by-cookie", ing)
+	config.Cookie, err = parser.GetStringAnnotation(canaryByCookieAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("%s is invalid, defaulting to ''", canaryByCookieAnnotation)
+		}
 		config.Cookie = ""
 	}
 
 	if !config.Enabled && (config.Weight > 0 || len(config.Header) > 0 || len(config.HeaderValue) > 0 || len(config.Cookie) > 0 ||
 		len(config.HeaderPattern) > 0) {
-		return nil, errors.NewInvalidAnnotationConfiguration("canary", "configured but not enabled")
+		return nil, errors.NewInvalidAnnotationConfiguration(canaryAnnotation, "configured but not enabled")
 	}
 
 	return config, nil
 }
+
+func (c canary) GetDocumentation() parser.AnnotationFields {
+	return c.annotationConfig.Annotations
+}
+
+func (a canary) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, CanaryAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/clientbodybuffersize/main.go b/internal/ingress/annotations/clientbodybuffersize/main.go
index 9020ee594..aa1485df2 100644
--- a/internal/ingress/annotations/clientbodybuffersize/main.go
+++ b/internal/ingress/annotations/clientbodybuffersize/main.go
@@ -23,17 +23,49 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	clientBodyBufferSizeAnnotation = "client-body-buffer-size"
+)
+
+var clientBodyBufferSizeConfig = parser.Annotation{
+	Group: "backend",
+	Annotations: parser.AnnotationFields{
+		clientBodyBufferSizeAnnotation: {
+			Validator: parser.ValidateRegex(*parser.SizeRegex, true),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow, // Low, as it allows just a set of options
+			Documentation: `Sets buffer size for reading client request body per location. 
+			In case the request body is larger than the buffer, the whole body or only its part is written to a temporary file. 
+			By default, buffer size is equal to two memory pages. This is 8K on x86, other 32-bit platforms, and x86-64. 
+			It is usually 16K on other 64-bit platforms. This annotation is applied to each location provided in the ingress rule.`,
+		},
+	},
+}
+
 type clientBodyBufferSize struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new clientBodyBufferSize annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return clientBodyBufferSize{r}
+	return clientBodyBufferSize{
+		r:                r,
+		annotationConfig: clientBodyBufferSizeConfig,
+	}
+}
+
+func (cbbs clientBodyBufferSize) GetDocumentation() parser.AnnotationFields {
+	return cbbs.annotationConfig.Annotations
 }
 
 // Parse parses the annotations contained in the ingress rule
 // used to add an client-body-buffer-size to the provided locations
 func (cbbs clientBodyBufferSize) Parse(ing *networking.Ingress) (interface{}, error) {
-	return parser.GetStringAnnotation("client-body-buffer-size", ing)
+	return parser.GetStringAnnotation(clientBodyBufferSizeAnnotation, ing, cbbs.annotationConfig.Annotations)
+}
+
+func (a clientBodyBufferSize) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, clientBodyBufferSizeConfig.Annotations)
 }
diff --git a/internal/ingress/annotations/clientbodybuffersize/main_test.go b/internal/ingress/annotations/clientbodybuffersize/main_test.go
index 9932f8314..0f2c8474a 100644
--- a/internal/ingress/annotations/clientbodybuffersize/main_test.go
+++ b/internal/ingress/annotations/clientbodybuffersize/main_test.go
@@ -39,6 +39,9 @@ func TestParse(t *testing.T) {
 	}{
 		{map[string]string{annotation: "8k"}, "8k"},
 		{map[string]string{annotation: "16k"}, "16k"},
+		{map[string]string{annotation: "10000"}, "10000"},
+		{map[string]string{annotation: "16R"}, ""},
+		{map[string]string{annotation: "16kkk"}, ""},
 		{map[string]string{annotation: ""}, ""},
 		{map[string]string{}, ""},
 		{nil, ""},
diff --git a/internal/ingress/annotations/connection/main.go b/internal/ingress/annotations/connection/main.go
index e9b0c1865..9e96b6ab1 100644
--- a/internal/ingress/annotations/connection/main.go
+++ b/internal/ingress/annotations/connection/main.go
@@ -17,12 +17,34 @@ limitations under the License.
 package connection
 
 import (
+	"regexp"
+
 	networking "k8s.io/api/networking/v1"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	connectionProxyHeaderAnnotation = "connection-proxy-header"
+)
+
+var (
+	validConnectionHeaderValue = regexp.MustCompile(`^(close|keep-alive)$`)
+)
+
+var connectionHeadersAnnotations = parser.Annotation{
+	Group: "backend",
+	Annotations: parser.AnnotationFields{
+		connectionProxyHeaderAnnotation: {
+			Validator:     parser.ValidateRegex(*validConnectionHeaderValue, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation allows setting a specific value for "proxy_set_header Connection" directive. Right now it is restricted to "close" or "keep-alive"`,
+		},
+	},
+}
+
 // Config returns the connection header configuration for an Ingress rule
 type Config struct {
 	Header  string `json:"header"`
@@ -30,18 +52,22 @@ type Config struct {
 }
 
 type connection struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new port in redirect annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return connection{r}
+	return connection{
+		r:                r,
+		annotationConfig: connectionHeadersAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress
 // rule used to indicate if the connection header should be overridden.
 func (a connection) Parse(ing *networking.Ingress) (interface{}, error) {
-	cp, err := parser.GetStringAnnotation("connection-proxy-header", ing)
+	cp, err := parser.GetStringAnnotation(connectionProxyHeaderAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		return &Config{
 			Enabled: false,
@@ -70,3 +96,12 @@ func (r1 *Config) Equal(r2 *Config) bool {
 
 	return true
 }
+
+func (a connection) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a connection) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, connectionHeadersAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/connection/main_test.go b/internal/ingress/annotations/connection/main_test.go
index 011a2948c..a95288385 100644
--- a/internal/ingress/annotations/connection/main_test.go
+++ b/internal/ingress/annotations/connection/main_test.go
@@ -37,10 +37,12 @@ func TestParse(t *testing.T) {
 	testCases := []struct {
 		annotations map[string]string
 		expected    *Config
+		expectErr   bool
 	}{
-		{map[string]string{annotation: "keep-alive"}, &Config{Enabled: true, Header: "keep-alive"}},
-		{map[string]string{}, &Config{Enabled: false}},
-		{nil, &Config{Enabled: false}},
+		{map[string]string{annotation: "keep-alive"}, &Config{Enabled: true, Header: "keep-alive"}, false},
+		{map[string]string{annotation: "not-allowed-value"}, &Config{Enabled: false}, true},
+		{map[string]string{}, &Config{Enabled: false}, true},
+		{nil, &Config{Enabled: false}, true},
 	}
 
 	ing := &networking.Ingress{
@@ -53,11 +55,17 @@ func TestParse(t *testing.T) {
 
 	for _, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
-		i, _ := ap.Parse(ing)
-		p, _ := i.(*Config)
-
+		i, err := ap.Parse(ing)
+		if (err != nil) != testCase.expectErr {
+			t.Fatalf("expected error: %t got error: %t err value: %s. %+v", testCase.expectErr, err != nil, err, testCase.annotations)
+		}
+		p, ok := i.(*Config)
+		if !ok {
+			t.Fatalf("expected a Config type")
+		}
 		if !p.Equal(testCase.expected) {
 			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, p, testCase.annotations)
 		}
+
 	}
 }
diff --git a/internal/ingress/annotations/cors/main.go b/internal/ingress/annotations/cors/main.go
index 3888f2909..cc30b8405 100644
--- a/internal/ingress/annotations/cors/main.go
+++ b/internal/ingress/annotations/cors/main.go
@@ -24,6 +24,7 @@ import (
 	"k8s.io/klog/v2"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
@@ -38,20 +39,87 @@ var (
 	// Regex are defined here to prevent information leak, if user tries to set anything not valid
 	// that could cause the Response to contain some internal value/variable (like returning $pid, $upstream_addr, etc)
 	// Origin must contain a http/s Origin (including or not the port) or the value '*'
+	// This Regex is composed of the following:
+	// * Sets a group that can be (https?://)?*?.something.com:port?
+	// * Allows this to be repeated as much as possible, and separated by comma
+	// Otherwise it should be '*'
+	corsOriginRegexValidator = regexp.MustCompile(`^((((https?://)?(\*\.)?[A-Za-z0-9\-\.]*(:[0-9]+)?,?)+)|\*)?$`)
+	// corsOriginRegex defines the regex for validation inside Parse
 	corsOriginRegex = regexp.MustCompile(`^(https?://(\*\.)?[A-Za-z0-9\-\.]*(:[0-9]+)?|\*)?$`)
 	// Method must contain valid methods list (PUT, GET, POST, BLA)
 	// May contain or not spaces between each verb
 	corsMethodsRegex = regexp.MustCompile(`^([A-Za-z]+,?\s?)+$`)
-	// Headers must contain valid values only (X-HEADER12, X-ABC)
-	// May contain or not spaces between each Header
-	corsHeadersRegex = regexp.MustCompile(`^([A-Za-z0-9\-\_]+,?\s?)+$`)
 	// Expose Headers must contain valid values only (*, X-HEADER12, X-ABC)
 	// May contain or not spaces between each Header
 	corsExposeHeadersRegex = regexp.MustCompile(`^(([A-Za-z0-9\-\_]+|\*),?\s?)+$`)
 )
 
+const (
+	corsEnableAnnotation           = "enable-cors"
+	corsAllowOriginAnnotation      = "cors-allow-origin"
+	corsAllowHeadersAnnotation     = "cors-allow-headers"
+	corsAllowMethodsAnnotation     = "cors-allow-methods"
+	corsAllowCredentialsAnnotation = "cors-allow-credentials" //#nosec G101
+	corsExposeHeadersAnnotation    = "cors-expose-headers"
+	corsMaxAgeAnnotation           = "cors-max-age"
+)
+
+var corsAnnotation = parser.Annotation{
+	Group: "cors",
+	Annotations: parser.AnnotationFields{
+		corsEnableAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation enables Cross-Origin Resource Sharing (CORS) in an Ingress rule`,
+		},
+		corsAllowOriginAnnotation: {
+			Validator: parser.ValidateRegex(*corsOriginRegexValidator, true),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation controls what's the accepted Origin for CORS.
+			This is a multi-valued field, separated by ','. It must follow this format: http(s)://origin-site.com or http(s)://origin-site.com:port
+			It also supports single level wildcard subdomains and follows this format: http(s)://*.foo.bar, http(s)://*.bar.foo:8080 or http(s)://*.abc.bar.foo:9000`,
+		},
+		corsAllowHeadersAnnotation: {
+			Validator: parser.ValidateRegex(*parser.HeadersVariable, true),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation controls which headers are accepted.
+			This is a multi-valued field, separated by ',' and accepts letters, numbers, _ and -`,
+		},
+		corsAllowMethodsAnnotation: {
+			Validator: parser.ValidateRegex(*corsMethodsRegex, true),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation controls which methods are accepted.
+			This is a multi-valued field, separated by ',' and accepts only letters (upper and lower case)`,
+		},
+		corsAllowCredentialsAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation controls if credentials can be passed during CORS operations.`,
+		},
+		corsExposeHeadersAnnotation: {
+			Validator: parser.ValidateRegex(*corsExposeHeadersRegex, true),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation controls which headers are exposed to response.
+			This is a multi-valued field, separated by ',' and accepts letters, numbers, _, - and *.`,
+		},
+		corsMaxAgeAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation controls how long, in seconds, preflight requests can be cached.`,
+		},
+	},
+}
+
 type cors struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // Config contains the Cors configuration to be used in the Ingress
@@ -67,7 +135,10 @@ type Config struct {
 
 // NewParser creates a new CORS annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return cors{r}
+	return cors{
+		r:                r,
+		annotationConfig: corsAnnotation,
+	}
 }
 
 // Equal tests for equality between two External types
@@ -116,13 +187,16 @@ func (c cors) Parse(ing *networking.Ingress) (interface{}, error) {
 	var err error
 	config := &Config{}
 
-	config.CorsEnabled, err = parser.GetBoolAnnotation("enable-cors", ing)
+	config.CorsEnabled, err = parser.GetBoolAnnotation(corsEnableAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("enable-cors is invalid, defaulting to 'false'")
+		}
 		config.CorsEnabled = false
 	}
 
 	config.CorsAllowOrigin = []string{}
-	unparsedOrigins, err := parser.GetStringAnnotation("cors-allow-origin", ing)
+	unparsedOrigins, err := parser.GetStringAnnotation(corsAllowOriginAnnotation, ing, c.annotationConfig.Annotations)
 	if err == nil {
 		origins := strings.Split(unparsedOrigins, ",")
 		for _, origin := range origins {
@@ -140,33 +214,53 @@ func (c cors) Parse(ing *networking.Ingress) (interface{}, error) {
 			klog.Infof("Current config.corsAllowOrigin %v", config.CorsAllowOrigin)
 		}
 	} else {
+		if errors.IsValidationError(err) {
+			klog.Warningf("cors-allow-origin is invalid, defaulting to '*'")
+		}
 		config.CorsAllowOrigin = []string{"*"}
 	}
 
-	config.CorsAllowHeaders, err = parser.GetStringAnnotation("cors-allow-headers", ing)
-	if err != nil || !corsHeadersRegex.MatchString(config.CorsAllowHeaders) {
+	config.CorsAllowHeaders, err = parser.GetStringAnnotation(corsAllowHeadersAnnotation, ing, c.annotationConfig.Annotations)
+	if err != nil || !parser.HeadersVariable.MatchString(config.CorsAllowHeaders) {
 		config.CorsAllowHeaders = defaultCorsHeaders
 	}
 
-	config.CorsAllowMethods, err = parser.GetStringAnnotation("cors-allow-methods", ing)
+	config.CorsAllowMethods, err = parser.GetStringAnnotation(corsAllowMethodsAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil || !corsMethodsRegex.MatchString(config.CorsAllowMethods) {
 		config.CorsAllowMethods = defaultCorsMethods
 	}
 
-	config.CorsAllowCredentials, err = parser.GetBoolAnnotation("cors-allow-credentials", ing)
+	config.CorsAllowCredentials, err = parser.GetBoolAnnotation(corsAllowCredentialsAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			if errors.IsValidationError(err) {
+				klog.Warningf("cors-allow-credentials is invalid, defaulting to 'true'")
+			}
+		}
 		config.CorsAllowCredentials = true
 	}
 
-	config.CorsExposeHeaders, err = parser.GetStringAnnotation("cors-expose-headers", ing)
+	config.CorsExposeHeaders, err = parser.GetStringAnnotation(corsExposeHeadersAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil || !corsExposeHeadersRegex.MatchString(config.CorsExposeHeaders) {
 		config.CorsExposeHeaders = ""
 	}
 
-	config.CorsMaxAge, err = parser.GetIntAnnotation("cors-max-age", ing)
+	config.CorsMaxAge, err = parser.GetIntAnnotation(corsMaxAgeAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("cors-max-age is invalid, defaulting to %d", defaultCorsMaxAge)
+		}
 		config.CorsMaxAge = defaultCorsMaxAge
 	}
 
 	return config, nil
 }
+
+func (c cors) GetDocumentation() parser.AnnotationFields {
+	return c.annotationConfig.Annotations
+}
+
+func (a cors) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, corsAnnotation.Annotations)
+}
diff --git a/internal/ingress/annotations/cors/main_test.go b/internal/ingress/annotations/cors/main_test.go
index 086a59d89..d371d183b 100644
--- a/internal/ingress/annotations/cors/main_test.go
+++ b/internal/ingress/annotations/cors/main_test.go
@@ -75,13 +75,13 @@ func TestIngressCorsConfigValid(t *testing.T) {
 	data := map[string]string{}
 
 	// Valid
-	data[parser.GetAnnotationWithPrefix("enable-cors")] = "true"
-	data[parser.GetAnnotationWithPrefix("cors-allow-headers")] = "DNT,X-CustomHeader, Keep-Alive,User-Agent"
-	data[parser.GetAnnotationWithPrefix("cors-allow-credentials")] = "false"
-	data[parser.GetAnnotationWithPrefix("cors-allow-methods")] = "GET, PATCH"
-	data[parser.GetAnnotationWithPrefix("cors-allow-origin")] = "https://origin123.test.com:4443"
-	data[parser.GetAnnotationWithPrefix("cors-expose-headers")] = "*, X-CustomResponseHeader"
-	data[parser.GetAnnotationWithPrefix("cors-max-age")] = "600"
+	data[parser.GetAnnotationWithPrefix(corsEnableAnnotation)] = "true"
+	data[parser.GetAnnotationWithPrefix(corsAllowHeadersAnnotation)] = "DNT,X-CustomHeader, Keep-Alive,User-Agent"
+	data[parser.GetAnnotationWithPrefix(corsAllowCredentialsAnnotation)] = "false"
+	data[parser.GetAnnotationWithPrefix(corsAllowMethodsAnnotation)] = "GET, PATCH"
+	data[parser.GetAnnotationWithPrefix(corsAllowOriginAnnotation)] = "https://origin123.test.com:4443"
+	data[parser.GetAnnotationWithPrefix(corsExposeHeadersAnnotation)] = "*, X-CustomResponseHeader"
+	data[parser.GetAnnotationWithPrefix(corsMaxAgeAnnotation)] = "600"
 	ing.SetAnnotations(data)
 
 	corst, err := NewParser(&resolver.Mock{}).Parse(ing)
@@ -95,31 +95,31 @@ func TestIngressCorsConfigValid(t *testing.T) {
 	}
 
 	if !nginxCors.CorsEnabled {
-		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix("enable-cors")], nginxCors.CorsEnabled)
+		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix(corsEnableAnnotation)], nginxCors.CorsEnabled)
 	}
 
 	if nginxCors.CorsAllowCredentials {
-		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix("cors-allow-credentials")], nginxCors.CorsAllowCredentials)
+		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix(corsAllowCredentialsAnnotation)], nginxCors.CorsAllowCredentials)
 	}
 
 	if nginxCors.CorsAllowHeaders != "DNT,X-CustomHeader, Keep-Alive,User-Agent" {
-		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix("cors-allow-headers")], nginxCors.CorsAllowHeaders)
+		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix(corsAllowHeadersAnnotation)], nginxCors.CorsAllowHeaders)
 	}
 
 	if nginxCors.CorsAllowMethods != "GET, PATCH" {
-		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix("cors-allow-methods")], nginxCors.CorsAllowMethods)
+		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix(corsAllowMethodsAnnotation)], nginxCors.CorsAllowMethods)
 	}
 
 	if nginxCors.CorsAllowOrigin[0] != "https://origin123.test.com:4443" {
-		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix("cors-allow-origin")], nginxCors.CorsAllowOrigin)
+		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix(corsAllowOriginAnnotation)], nginxCors.CorsAllowOrigin)
 	}
 
 	if nginxCors.CorsExposeHeaders != "*, X-CustomResponseHeader" {
-		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix("cors-expose-headers")], nginxCors.CorsExposeHeaders)
+		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix(corsExposeHeadersAnnotation)], nginxCors.CorsExposeHeaders)
 	}
 
 	if nginxCors.CorsMaxAge != 600 {
-		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix("cors-max-age")], nginxCors.CorsMaxAge)
+		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix(corsMaxAgeAnnotation)], nginxCors.CorsMaxAge)
 	}
 }
 
@@ -129,13 +129,13 @@ func TestIngressCorsConfigInvalid(t *testing.T) {
 	data := map[string]string{}
 
 	// Valid
-	data[parser.GetAnnotationWithPrefix("enable-cors")] = "yes"
-	data[parser.GetAnnotationWithPrefix("cors-allow-headers")] = "@alright, #ingress"
-	data[parser.GetAnnotationWithPrefix("cors-allow-credentials")] = "no"
-	data[parser.GetAnnotationWithPrefix("cors-allow-methods")] = "GET, PATCH, $nginx"
-	data[parser.GetAnnotationWithPrefix("cors-allow-origin")] = "origin123.test.com:4443"
-	data[parser.GetAnnotationWithPrefix("cors-expose-headers")] = "@alright, #ingress"
-	data[parser.GetAnnotationWithPrefix("cors-max-age")] = "abcd"
+	data[parser.GetAnnotationWithPrefix(corsEnableAnnotation)] = "yes"
+	data[parser.GetAnnotationWithPrefix(corsAllowHeadersAnnotation)] = "@alright, #ingress"
+	data[parser.GetAnnotationWithPrefix(corsAllowCredentialsAnnotation)] = "no"
+	data[parser.GetAnnotationWithPrefix(corsAllowMethodsAnnotation)] = "GET, PATCH, $nginx"
+	data[parser.GetAnnotationWithPrefix(corsAllowOriginAnnotation)] = "origin123.test.com:4443"
+	data[parser.GetAnnotationWithPrefix(corsExposeHeadersAnnotation)] = "@alright, #ingress"
+	data[parser.GetAnnotationWithPrefix(corsMaxAgeAnnotation)] = "abcd"
 	ing.SetAnnotations(data)
 
 	corst, err := NewParser(&resolver.Mock{}).Parse(ing)
diff --git a/internal/ingress/annotations/customhttperrors/main.go b/internal/ingress/annotations/customhttperrors/main.go
index a05fb16c8..c3c9b5be3 100644
--- a/internal/ingress/annotations/customhttperrors/main.go
+++ b/internal/ingress/annotations/customhttperrors/main.go
@@ -17,6 +17,7 @@ limitations under the License.
 package customhttperrors
 
 import (
+	"regexp"
 	"strconv"
 	"strings"
 
@@ -26,19 +27,46 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	customHTTPErrorsAnnotation = "custom-http-errors"
+)
+
+var (
+	// We accept anything between 400 and 599, on a comma separated.
+	arrayOfHTTPErrors = regexp.MustCompile(`^(?:[4,5][0-9][0-9],?)*$`)
+)
+
+var customHTTPErrorsAnnotations = parser.Annotation{
+	Group: "backend",
+	Annotations: parser.AnnotationFields{
+		customHTTPErrorsAnnotation: {
+			Validator: parser.ValidateRegex(*arrayOfHTTPErrors, true),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `If a default backend annotation is specified on the ingress, the errors code specified on this annotation 
+			will be routed to that annotation's default backend service. Otherwise they will be routed to the global default backend.
+			A comma-separated list of error codes is accepted (anything between 400 and 599, like 403, 503)`,
+		},
+	},
+}
+
 type customhttperrors struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new custom http errors annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return customhttperrors{r}
+	return customhttperrors{
+		r:                r,
+		annotationConfig: customHTTPErrorsAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress to use
 // custom http errors
 func (e customhttperrors) Parse(ing *networking.Ingress) (interface{}, error) {
-	c, err := parser.GetStringAnnotation("custom-http-errors", ing)
+	c, err := parser.GetStringAnnotation(customHTTPErrorsAnnotation, ing, e.annotationConfig.Annotations)
 	if err != nil {
 		return nil, err
 	}
@@ -55,3 +83,12 @@ func (e customhttperrors) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	return codes, nil
 }
+
+func (e customhttperrors) GetDocumentation() parser.AnnotationFields {
+	return e.annotationConfig.Annotations
+}
+
+func (a customhttperrors) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, customHTTPErrorsAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/defaultbackend/main.go b/internal/ingress/annotations/defaultbackend/main.go
index b1685015e..f3ca004dd 100644
--- a/internal/ingress/annotations/defaultbackend/main.go
+++ b/internal/ingress/annotations/defaultbackend/main.go
@@ -25,19 +25,40 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	defaultBackendAnnotation = "default-backend"
+)
+
+var defaultBackendAnnotations = parser.Annotation{
+	Group: "backend",
+	Annotations: parser.AnnotationFields{
+		defaultBackendAnnotation: {
+			Validator: parser.ValidateServiceName,
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `This service will be used to handle the response when the configured service in the Ingress rule does not have any active endpoints. 
+			It will also be used to handle the error responses if both this annotation and the custom-http-errors annotation are set.`,
+		},
+	},
+}
+
 type backend struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new default backend annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return backend{r}
+	return backend{
+		r:                r,
+		annotationConfig: defaultBackendAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress to use
 // a custom default backend
 func (db backend) Parse(ing *networking.Ingress) (interface{}, error) {
-	s, err := parser.GetStringAnnotation("default-backend", ing)
+	s, err := parser.GetStringAnnotation(defaultBackendAnnotation, ing, db.annotationConfig.Annotations)
 	if err != nil {
 		return nil, err
 	}
@@ -50,3 +71,12 @@ func (db backend) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	return svc, nil
 }
+
+func (db backend) GetDocumentation() parser.AnnotationFields {
+	return db.annotationConfig.Annotations
+}
+
+func (a backend) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, defaultBackendAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/defaultbackend/main_test.go b/internal/ingress/annotations/defaultbackend/main_test.go
index ec23d32c2..214d07803 100644
--- a/internal/ingress/annotations/defaultbackend/main_test.go
+++ b/internal/ingress/annotations/defaultbackend/main_test.go
@@ -91,21 +91,51 @@ func (m mockService) GetService(name string) (*api.Service, error) {
 func TestAnnotations(t *testing.T) {
 	ing := buildIngress()
 
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("default-backend")] = "demo-service"
-	ing.SetAnnotations(data)
-
-	fakeService := &mockService{}
-	i, err := NewParser(fakeService).Parse(ing)
-	if err != nil {
-		t.Errorf("unexpected error %v", err)
+	tests := map[string]struct {
+		expectErr   bool
+		serviceName string
+	}{
+		"valid name": {
+			serviceName: "demo-service",
+			expectErr:   false,
+		},
+		"not in backend": {
+			serviceName: "demo1-service",
+			expectErr:   true,
+		},
+		"invalid dns name": {
+			serviceName: "demo-service.something.tld",
+			expectErr:   true,
+		},
+		"invalid name": {
+			serviceName: "something/xpto",
+			expectErr:   true,
+		},
+		"invalid characters": {
+			serviceName: "something;xpto",
+			expectErr:   true,
+		},
 	}
 
-	svc, ok := i.(*api.Service)
-	if !ok {
-		t.Errorf("expected *api.Service but got %v", svc)
-	}
-	if svc.Name != "demo-service" {
-		t.Errorf("expected %v but got %v", "demo-service", svc.Name)
+	for _, test := range tests {
+		data := map[string]string{}
+		data[parser.GetAnnotationWithPrefix(defaultBackendAnnotation)] = test.serviceName
+		ing.SetAnnotations(data)
+
+		fakeService := &mockService{}
+		i, err := NewParser(fakeService).Parse(ing)
+		if (err != nil) != test.expectErr {
+			t.Errorf("expected error: %t got error: %t err value: %s. %+v", test.expectErr, err != nil, err, i)
+		}
+
+		if !test.expectErr {
+			svc, ok := i.(*api.Service)
+			if !ok {
+				t.Errorf("expected *api.Service but got %v", svc)
+			}
+			if svc.Name != test.serviceName {
+				t.Errorf("expected %v but got %v", test.serviceName, svc.Name)
+			}
+		}
 	}
 }
diff --git a/internal/ingress/annotations/fastcgi/main.go b/internal/ingress/annotations/fastcgi/main.go
index 84bac4109..96dbc7159 100644
--- a/internal/ingress/annotations/fastcgi/main.go
+++ b/internal/ingress/annotations/fastcgi/main.go
@@ -19,17 +19,49 @@ package fastcgi
 import (
 	"fmt"
 	"reflect"
+	"regexp"
 
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/client-go/tools/cache"
+	"k8s.io/klog/v2"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	fastCGIIndexAnnotation  = "fastcgi-index"
+	fastCGIParamsAnnotation = "fastcgi-params-configmap"
+)
+
+var (
+	// fast-cgi valid parameters is just a single file name (like index.php)
+	regexValidIndexAnnotationAndKey = regexp.MustCompile(`^[A-Za-z0-9\.\-\_]+$`)
+)
+
+var fastCGIAnnotations = parser.Annotation{
+	Group: "fastcgi",
+	Annotations: parser.AnnotationFields{
+		fastCGIIndexAnnotation: {
+			Validator:     parser.ValidateRegex(*regexValidIndexAnnotationAndKey, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation can be used to specify an index file`,
+		},
+		fastCGIParamsAnnotation: {
+			Validator: parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation can be used to specify a ConfigMap containing the fastcgi parameters as a key/value.
+			Only ConfigMaps on the same namespace of ingress can be used. They key and value from ConfigMap are validated for unauthorized characters.`,
+		},
+	},
+}
+
 type fastcgi struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // Config describes the per location fastcgi config
@@ -57,7 +89,10 @@ func (l1 *Config) Equal(l2 *Config) bool {
 
 // NewParser creates a new fastcgiConfig protocol annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return fastcgi{r}
+	return fastcgi{
+		r:                r,
+		annotationConfig: fastCGIAnnotations,
+	}
 }
 
 // ParseAnnotations parses the annotations contained in the ingress
@@ -70,14 +105,21 @@ func (a fastcgi) Parse(ing *networking.Ingress) (interface{}, error) {
 		return fcgiConfig, nil
 	}
 
-	index, err := parser.GetStringAnnotation("fastcgi-index", ing)
+	index, err := parser.GetStringAnnotation(fastCGIIndexAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if ing_errors.IsValidationError(err) {
+			return fcgiConfig, err
+		}
 		index = ""
 	}
+
 	fcgiConfig.Index = index
 
-	cm, err := parser.GetStringAnnotation("fastcgi-params-configmap", ing)
+	cm, err := parser.GetStringAnnotation(fastCGIParamsAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if ing_errors.IsValidationError(err) {
+			return fcgiConfig, err
+		}
 		return fcgiConfig, nil
 	}
 
@@ -87,8 +129,10 @@ func (a fastcgi) Parse(ing *networking.Ingress) (interface{}, error) {
 			Reason: fmt.Errorf("error reading configmap name from annotation: %w", err),
 		}
 	}
+	secCfg := a.r.GetSecurityConfiguration()
 
-	if cmns != "" && cmns != ing.Namespace {
+	// We don't accept different namespaces for secrets.
+	if cmns != "" && !secCfg.AllowCrossNamespaceResources && cmns != ing.Namespace {
 		return fcgiConfig, fmt.Errorf("different namespace is not supported on fast_cgi param configmap")
 	}
 
@@ -100,7 +144,24 @@ func (a fastcgi) Parse(ing *networking.Ingress) (interface{}, error) {
 		}
 	}
 
+	for k, v := range cmap.Data {
+		if !regexValidIndexAnnotationAndKey.MatchString(k) || !parser.NGINXVariable.MatchString(v) {
+			klog.ErrorS(fmt.Errorf("fcgi contains invalid key or value"), "fcgi annotation error", "configmap", cmap.Name, "namespace", cmap.Namespace, "key", k, "value", v)
+			return fcgiConfig, ing_errors.NewValidationError(fastCGIParamsAnnotation)
+		}
+	}
+
+	fcgiConfig.Index = index
 	fcgiConfig.Params = cmap.Data
 
 	return fcgiConfig, nil
 }
+
+func (a fastcgi) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a fastcgi) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, fastCGIAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/fastcgi/main_test.go b/internal/ingress/annotations/fastcgi/main_test.go
index 35c5bbc12..3296ded65 100644
--- a/internal/ingress/annotations/fastcgi/main_test.go
+++ b/internal/ingress/annotations/fastcgi/main_test.go
@@ -18,6 +18,7 @@ package fastcgi
 
 import (
 	"fmt"
+	"reflect"
 	"testing"
 
 	api "k8s.io/api/core/v1"
@@ -49,10 +50,16 @@ func buildIngress() *networking.Ingress {
 
 type mockConfigMap struct {
 	resolver.Mock
+	extraConfigMap map[string]map[string]string
 }
 
 func (m mockConfigMap) GetConfigMap(name string) (*api.ConfigMap, error) {
-	if name != "default/demo-configmap" && name != "otherns/demo-configmap" {
+	if m.extraConfigMap == nil {
+		m.extraConfigMap = make(map[string]map[string]string)
+	}
+	cmdata, ok := m.extraConfigMap[name]
+
+	if name != "default/demo-configmap" && name != "otherns/demo-configmap" && !ok {
 		return nil, fmt.Errorf("there is no configmap with name %v", name)
 	}
 
@@ -61,12 +68,17 @@ func (m mockConfigMap) GetConfigMap(name string) (*api.ConfigMap, error) {
 		return nil, fmt.Errorf("invalid configmap name")
 	}
 
+	data := map[string]string{"REDIRECT_STATUS": "200", "SERVER_NAME": "$server_name"}
+	if ok {
+		data = cmdata
+	}
+
 	return &api.ConfigMap{
 		ObjectMeta: meta_v1.ObjectMeta{
 			Namespace: cmns,
 			Name:      cmn,
 		},
-		Data: map[string]string{"REDIRECT_STATUS": "200", "SERVER_NAME": "$server_name"},
+		Data: data,
 	}, nil
 }
 
@@ -283,3 +295,111 @@ func TestConfigEquality(t *testing.T) {
 		t.Errorf("config4 should be equal to config")
 	}
 }
+
+func Test_fastcgi_Parse(t *testing.T) {
+
+	tests := []struct {
+		name          string
+		index         string
+		configmapname string
+		configmap     map[string]string
+		want          interface{}
+		wantErr       bool
+	}{
+		{
+			name:          "valid configuration",
+			index:         "indexxpto-92123.php",
+			configmapname: "default/fcgiconfig",
+			configmap: map[string]string{
+				"REQUEST_METHOD":  "$request_method",
+				"SCRIPT_FILENAME": "$document_root$fastcgi_script_name",
+			},
+			want: Config{
+				Index: "indexxpto-92123.php",
+				Params: map[string]string{
+					"REQUEST_METHOD":  "$request_method",
+					"SCRIPT_FILENAME": "$document_root$fastcgi_script_name",
+				},
+			},
+		},
+		{
+			name:          "invalid index name",
+			index:         "indexxpto-92123$xx.php",
+			configmapname: "default/fcgiconfig",
+			configmap: map[string]string{
+				"REQUEST_METHOD":  "$request_method",
+				"SCRIPT_FILENAME": "$document_root$fastcgi_script_name",
+			},
+			want:    Config{},
+			wantErr: true,
+		},
+		{
+			name:          "invalid configmap namespace",
+			index:         "indexxpto-92123.php",
+			configmapname: "otherns/fcgiconfig",
+			configmap: map[string]string{
+				"REQUEST_METHOD":  "$request_method",
+				"SCRIPT_FILENAME": "$document_root$fastcgi_script_name",
+			},
+			want:    Config{Index: "indexxpto-92123.php"},
+			wantErr: true,
+		},
+		{
+			name:          "invalid configmap namespace name",
+			index:         "indexxpto-92123.php",
+			configmapname: "otherns/fcgicon;{fig",
+			configmap: map[string]string{
+				"REQUEST_METHOD":  "$request_method",
+				"SCRIPT_FILENAME": "$document_root$fastcgi_script_name",
+			},
+			want:    Config{Index: "indexxpto-92123.php"},
+			wantErr: true,
+		},
+		{
+			name:          "invalid configmap values key",
+			index:         "indexxpto-92123.php",
+			configmapname: "default/fcgiconfig",
+			configmap: map[string]string{
+				"REQUEST_METHOD$XPTO": "$request_method",
+			},
+			want:    Config{Index: "indexxpto-92123.php"},
+			wantErr: true,
+		},
+		{
+			name:          "invalid configmap values val",
+			index:         "indexxpto-92123.php",
+			configmapname: "default/fcgiconfig",
+			configmap: map[string]string{
+				"REQUEST_METHOD_XPTO": "$request_method{test};a",
+			},
+			want:    Config{Index: "indexxpto-92123.php"},
+			wantErr: true,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+
+			ing := buildIngress()
+
+			data := map[string]string{}
+			data[parser.GetAnnotationWithPrefix("fastcgi-index")] = tt.index
+			data[parser.GetAnnotationWithPrefix("fastcgi-params-configmap")] = tt.configmapname
+			ing.SetAnnotations(data)
+
+			m := &mockConfigMap{
+				extraConfigMap: map[string]map[string]string{
+					tt.configmapname: tt.configmap,
+				},
+			}
+
+			got, err := NewParser(m).Parse(ing)
+			if (err != nil) != tt.wantErr {
+				t.Errorf("fastcgi.Parse() error = %v, wantErr %v", err, tt.wantErr)
+				return
+			}
+			if !reflect.DeepEqual(got, tt.want) {
+				t.Errorf("fastcgi.Parse() = %v, want %v", got, tt.want)
+			}
+		})
+	}
+}
diff --git a/internal/ingress/annotations/globalratelimit/main.go b/internal/ingress/annotations/globalratelimit/main.go
index ea9fc4678..41f58fd57 100644
--- a/internal/ingress/annotations/globalratelimit/main.go
+++ b/internal/ingress/annotations/globalratelimit/main.go
@@ -22,8 +22,10 @@ import (
 	"time"
 
 	networking "k8s.io/api/networking/v1"
+	"k8s.io/klog/v2"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/errors"
 	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 	"k8s.io/ingress-nginx/internal/net"
@@ -32,6 +34,46 @@ import (
 
 const defaultKey = "$remote_addr"
 
+const (
+	globalRateLimitAnnotation             = "global-rate-limit"
+	globalRateLimitWindowAnnotation       = "global-rate-limit-window"
+	globalRateLimitKeyAnnotation          = "global-rate-limit-key"
+	globalRateLimitIgnoredCidrsAnnotation = "global-rate-limit-ignored-cidrs"
+)
+
+var globalRateLimitAnnotationConfig = parser.Annotation{
+	Group: "ratelimit",
+	Annotations: parser.AnnotationFields{
+		globalRateLimitAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation configures maximum allowed number of requests per window`,
+		},
+		globalRateLimitWindowAnnotation: {
+			Validator:     parser.ValidateDuration,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `Configures a time window (i.e 1m) that the limit is applied`,
+		},
+		globalRateLimitKeyAnnotation: {
+			Validator: parser.ValidateRegex(*parser.NGINXVariable, true),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskHigh,
+			Documentation: `This annotation Configures a key for counting the samples. Defaults to $remote_addr. 
+			You can also combine multiple NGINX variables here, like ${remote_addr}-${http_x_api_client} which would mean the limit will be applied to 
+			requests coming from the same API client (indicated by X-API-Client HTTP request header) with the same source IP address`,
+		},
+		globalRateLimitIgnoredCidrsAnnotation: {
+			Validator: parser.ValidateCIDRs,
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation defines a comma separated list of IPs and CIDRs to match client IP against. 
+			When there's a match request is not considered for rate limiting.`,
+		},
+	},
+}
+
 // Config encapsulates all global rate limit attributes
 type Config struct {
 	Namespace    string   `json:"namespace"`
@@ -63,12 +105,16 @@ func (l *Config) Equal(r *Config) bool {
 }
 
 type globalratelimit struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new globalratelimit annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return globalratelimit{r}
+	return globalratelimit{
+		r:                r,
+		annotationConfig: globalRateLimitAnnotationConfig,
+	}
 }
 
 // Parse extracts globalratelimit annotations from the given ingress
@@ -76,8 +122,16 @@ func NewParser(r resolver.Resolver) parser.IngressAnnotation {
 func (a globalratelimit) Parse(ing *networking.Ingress) (interface{}, error) {
 	config := &Config{}
 
-	limit, _ := parser.GetIntAnnotation("global-rate-limit", ing)
-	rawWindowSize, _ := parser.GetStringAnnotation("global-rate-limit-window", ing)
+	limit, err := parser.GetIntAnnotation(globalRateLimitAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil && errors.IsInvalidContent(err) {
+		return nil, err
+	}
+	rawWindowSize, err := parser.GetStringAnnotation(globalRateLimitWindowAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil && errors.IsValidationError(err) {
+		return config, ing_errors.LocationDenied{
+			Reason: fmt.Errorf("failed to parse 'global-rate-limit-window' value: %w", err),
+		}
+	}
 
 	if limit == 0 || len(rawWindowSize) == 0 {
 		return config, nil
@@ -90,12 +144,18 @@ func (a globalratelimit) Parse(ing *networking.Ingress) (interface{}, error) {
 		}
 	}
 
-	key, _ := parser.GetStringAnnotation("global-rate-limit-key", ing)
+	key, err := parser.GetStringAnnotation(globalRateLimitKeyAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil {
+		klog.Warningf("invalid %s, defaulting to %s", globalRateLimitKeyAnnotation, defaultKey)
+	}
 	if len(key) == 0 {
 		key = defaultKey
 	}
 
-	rawIgnoredCIDRs, _ := parser.GetStringAnnotation("global-rate-limit-ignored-cidrs", ing)
+	rawIgnoredCIDRs, err := parser.GetStringAnnotation(globalRateLimitIgnoredCidrsAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil && errors.IsInvalidContent(err) {
+		return nil, err
+	}
 	ignoredCIDRs, err := net.ParseCIDRs(rawIgnoredCIDRs)
 	if err != nil {
 		return nil, err
@@ -109,3 +169,12 @@ func (a globalratelimit) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	return config, nil
 }
+
+func (a globalratelimit) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a globalratelimit) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, globalRateLimitAnnotationConfig.Annotations)
+}
diff --git a/internal/ingress/annotations/globalratelimit/main_test.go b/internal/ingress/annotations/globalratelimit/main_test.go
index 815d6cfff..5d7922666 100644
--- a/internal/ingress/annotations/globalratelimit/main_test.go
+++ b/internal/ingress/annotations/globalratelimit/main_test.go
@@ -149,6 +149,22 @@ func TestGlobalRateLimiting(t *testing.T) {
 			},
 			nil,
 		},
+		{
+			"global-rate-limit-complex-key",
+			map[string]string{
+				annRateLimit:       "100",
+				annRateLimitWindow: "2m",
+				annRateLimitKey:    "${http_x_api_user}${otherinfo}",
+			},
+			&Config{
+				Namespace:    expectedUID,
+				Limit:        100,
+				WindowSize:   120,
+				Key:          "${http_x_api_user}${otherinfo}",
+				IgnoredCIDRs: make([]string, 0),
+			},
+			nil,
+		},
 		{
 			"incorrect duration for window",
 			map[string]string{
@@ -157,8 +173,8 @@ func TestGlobalRateLimiting(t *testing.T) {
 				annRateLimitKey:    "$http_x_api_user",
 			},
 			&Config{},
-			ing_errors.LocationDenied{
-				Reason: fmt.Errorf("failed to parse 'global-rate-limit-window' value: time: unknown unit \"mb\" in duration \"2mb\""),
+			ing_errors.ValidationError{
+				Reason: fmt.Errorf("failed to parse 'global-rate-limit-window' value: annotation nginx.ingress.kubernetes.io/global-rate-limit-window contains invalid value"),
 			},
 		},
 	}
@@ -168,7 +184,7 @@ func TestGlobalRateLimiting(t *testing.T) {
 
 		i, actualErr := NewParser(mockBackend{}).Parse(ing)
 		if (testCase.expectedErr == nil || actualErr == nil) && testCase.expectedErr != actualErr {
-			t.Errorf("expected error 'nil' but got '%v'", actualErr)
+			t.Errorf("%s expected error '%v' but got '%v'", testCase.title, testCase.expectedErr, actualErr)
 		} else if testCase.expectedErr != nil && actualErr != nil &&
 			testCase.expectedErr.Error() != actualErr.Error() {
 			t.Errorf("expected error '%v' but got '%v'", testCase.expectedErr, actualErr)
diff --git a/internal/ingress/annotations/http2pushpreload/main.go b/internal/ingress/annotations/http2pushpreload/main.go
index 27d3368f4..af9f90aa9 100644
--- a/internal/ingress/annotations/http2pushpreload/main.go
+++ b/internal/ingress/annotations/http2pushpreload/main.go
@@ -23,17 +23,46 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	http2PushPreloadAnnotation = "http2-push-preload"
+)
+
+var http2PushPreloadAnnotations = parser.Annotation{
+	Group: "http2",
+	Annotations: parser.AnnotationFields{
+		http2PushPreloadAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `Enables automatic conversion of preload links specified in the “Link” response header fields into push requests`,
+		},
+	},
+}
+
 type http2PushPreload struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new http2PushPreload annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return http2PushPreload{r}
+	return http2PushPreload{
+		r:                r,
+		annotationConfig: http2PushPreloadAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress rule
 // used to add http2 push preload to the server
 func (h2pp http2PushPreload) Parse(ing *networking.Ingress) (interface{}, error) {
-	return parser.GetBoolAnnotation("http2-push-preload", ing)
+	return parser.GetBoolAnnotation(http2PushPreloadAnnotation, ing, h2pp.annotationConfig.Annotations)
+}
+
+func (h2pp http2PushPreload) GetDocumentation() parser.AnnotationFields {
+	return h2pp.annotationConfig.Annotations
+}
+
+func (a http2PushPreload) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, http2PushPreloadAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/http2pushpreload/main_test.go b/internal/ingress/annotations/http2pushpreload/main_test.go
index bb98af93f..eb6e9111d 100644
--- a/internal/ingress/annotations/http2pushpreload/main_test.go
+++ b/internal/ingress/annotations/http2pushpreload/main_test.go
@@ -23,11 +23,12 @@ import (
 	networking "k8s.io/api/networking/v1"
 	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
 func TestParse(t *testing.T) {
-	annotation := parser.GetAnnotationWithPrefix("http2-push-preload")
+	annotation := parser.GetAnnotationWithPrefix(http2PushPreloadAnnotation)
 	ap := NewParser(&resolver.Mock{})
 	if ap == nil {
 		t.Fatalf("expected a parser.IngressAnnotation but returned nil")
@@ -36,12 +37,14 @@ func TestParse(t *testing.T) {
 	testCases := []struct {
 		annotations map[string]string
 		expected    bool
+		expectErr   bool
 	}{
-		{map[string]string{annotation: "true"}, true},
-		{map[string]string{annotation: "1"}, true},
-		{map[string]string{annotation: ""}, false},
-		{map[string]string{}, false},
-		{nil, false},
+		{map[string]string{annotation: "true"}, true, false},
+		{map[string]string{annotation: "1"}, true, false},
+		{map[string]string{annotation: "xpto"}, false, true},
+		{map[string]string{annotation: ""}, false, false},
+		{map[string]string{}, false, false},
+		{nil, false, false},
 	}
 
 	ing := &networking.Ingress{
@@ -54,7 +57,10 @@ func TestParse(t *testing.T) {
 
 	for _, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
-		result, _ := ap.Parse(ing)
+		result, err := ap.Parse(ing)
+		if ((err != nil) != testCase.expectErr) && !errors.IsInvalidContent(err) && !errors.IsMissingAnnotations(err) {
+			t.Fatalf("expected error: %t got error: %t err value: %s. %+v", testCase.expectErr, err != nil, err, testCase.annotations)
+		}
 		if result != testCase.expected {
 			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
 		}
diff --git a/internal/ingress/annotations/ipwhitelist/main.go b/internal/ingress/annotations/ipallowlist/main.go
similarity index 53%
rename from internal/ingress/annotations/ipwhitelist/main.go
rename to internal/ingress/annotations/ipallowlist/main.go
index 63c049fef..d9d454c97 100644
--- a/internal/ingress/annotations/ipwhitelist/main.go
+++ b/internal/ingress/annotations/ipallowlist/main.go
@@ -14,7 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
-package ipwhitelist
+package ipallowlist
 
 import (
 	"fmt"
@@ -30,6 +30,24 @@ import (
 	"k8s.io/ingress-nginx/pkg/util/sets"
 )
 
+const (
+	ipWhitelistAnnotation = "whitelist-source-range"
+	ipAllowlistAnnotation = "allowlist-source-range"
+)
+
+var allowlistAnnotations = parser.Annotation{
+	Group: "acl",
+	Annotations: parser.AnnotationFields{
+		ipAllowlistAnnotation: {
+			Validator:         parser.ValidateCIDRs,
+			Scope:             parser.AnnotationScopeLocation,
+			Risk:              parser.AnnotationRiskMedium, // Failure on parsing this may cause undesired access
+			Documentation:     `This annotation allows setting a list of IPs and networks allowed to access this Location`,
+			AnnotationAliases: []string{ipWhitelistAnnotation},
+		},
+	},
+}
+
 // SourceRange returns the CIDR
 type SourceRange struct {
 	CIDR []string `json:"cidr,omitempty"`
@@ -47,36 +65,47 @@ func (sr1 *SourceRange) Equal(sr2 *SourceRange) bool {
 	return sets.StringElementsMatch(sr1.CIDR, sr2.CIDR)
 }
 
-type ipwhitelist struct {
-	r resolver.Resolver
+type ipallowlist struct {
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
-// NewParser creates a new whitelist annotation parser
+// NewParser creates a new ipallowlist annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return ipwhitelist{r}
+	return ipallowlist{
+		r:                r,
+		annotationConfig: allowlistAnnotations,
+	}
 }
 
 // ParseAnnotations parses the annotations contained in the ingress
 // rule used to limit access to certain client addresses or networks.
 // Multiple ranges can specified using commas as separator
 // e.g. `18.0.0.0/8,56.0.0.0/8`
-func (a ipwhitelist) Parse(ing *networking.Ingress) (interface{}, error) {
+func (a ipallowlist) Parse(ing *networking.Ingress) (interface{}, error) {
 	defBackend := a.r.GetDefaultBackend()
 
-	defaultWhitelistSourceRange := make([]string, len(defBackend.WhitelistSourceRange))
-	copy(defaultWhitelistSourceRange, defBackend.WhitelistSourceRange)
-	sort.Strings(defaultWhitelistSourceRange)
+	defaultAllowlistSourceRange := make([]string, len(defBackend.WhitelistSourceRange))
+	copy(defaultAllowlistSourceRange, defBackend.WhitelistSourceRange)
+	sort.Strings(defaultAllowlistSourceRange)
 
-	val, err := parser.GetStringAnnotation("whitelist-source-range", ing)
+	val, err := parser.GetStringAnnotation(ipAllowlistAnnotation, ing, a.annotationConfig.Annotations)
 	// A missing annotation is not a problem, just use the default
-	if err == ing_errors.ErrMissingAnnotations {
-		return &SourceRange{CIDR: defaultWhitelistSourceRange}, nil
+	if err != nil {
+		if err == ing_errors.ErrMissingAnnotations {
+			return &SourceRange{CIDR: defaultAllowlistSourceRange}, nil
+		}
+
+		return &SourceRange{CIDR: defaultAllowlistSourceRange}, ing_errors.LocationDenied{
+			Reason: err,
+		}
+
 	}
 
 	values := strings.Split(val, ",")
 	ipnets, ips, err := net.ParseIPNets(values...)
 	if err != nil && len(ips) == 0 {
-		return &SourceRange{CIDR: defaultWhitelistSourceRange}, ing_errors.LocationDenied{
+		return &SourceRange{CIDR: defaultAllowlistSourceRange}, ing_errors.LocationDenied{
 			Reason: fmt.Errorf("the annotation does not contain a valid IP address or network: %w", err),
 		}
 	}
@@ -93,3 +122,12 @@ func (a ipwhitelist) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	return &SourceRange{cidrs}, nil
 }
+
+func (a ipallowlist) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a ipallowlist) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, allowlistAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/ipwhitelist/main_test.go b/internal/ingress/annotations/ipallowlist/main_test.go
similarity index 64%
rename from internal/ingress/annotations/ipwhitelist/main_test.go
rename to internal/ingress/annotations/ipallowlist/main_test.go
index 5042bb200..b16b25a5b 100644
--- a/internal/ingress/annotations/ipwhitelist/main_test.go
+++ b/internal/ingress/annotations/ipallowlist/main_test.go
@@ -14,7 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
-package ipwhitelist
+package ipallowlist
 
 import (
 	"testing"
@@ -86,12 +86,12 @@ func TestParseAnnotations(t *testing.T) {
 		"test parse a invalid net": {
 			net:       "ww",
 			expectErr: true,
-			errOut:    "the annotation does not contain a valid IP address or network: invalid CIDR address: ww",
+			errOut:    "annotation nginx.ingress.kubernetes.io/allowlist-source-range contains invalid value",
 		},
 		"test parse a empty net": {
 			net:       "",
 			expectErr: true,
-			errOut:    "the annotation does not contain a valid IP address or network: invalid CIDR address: ",
+			errOut:    "the annotation nginx.ingress.kubernetes.io/allowlist-source-range does not contain a valid value ()",
 		},
 		"test parse multiple valid cidr": {
 			net:        "2.2.2.2/32,1.1.1.1/32,3.3.3.0/24",
@@ -102,16 +102,16 @@ func TestParseAnnotations(t *testing.T) {
 
 	for testName, test := range tests {
 		data := map[string]string{}
-		data[parser.GetAnnotationWithPrefix("whitelist-source-range")] = test.net
+		data[parser.GetAnnotationWithPrefix(ipAllowlistAnnotation)] = test.net
 		ing.SetAnnotations(data)
 		p := NewParser(&resolver.Mock{})
 		i, err := p.Parse(ing)
-		if err != nil && !test.expectErr {
-			t.Errorf("%v:unexpected error: %v", testName, err)
+		if (err != nil) != test.expectErr {
+			t.Errorf("%s expected error: %t got error: %t err value: %s. %+v", testName, test.expectErr, err != nil, err, i)
 		}
-		if test.expectErr {
+		if test.expectErr && err != nil {
 			if err.Error() != test.errOut {
-				t.Errorf("%v:expected error: %v but %v return", testName, test.errOut, err.Error())
+				t.Errorf("expected error %s but got %s", test.errOut, err)
 			}
 		}
 		if !test.expectErr {
@@ -137,7 +137,7 @@ func (m mockBackend) GetDefaultBackend() defaults.Backend {
 	}
 }
 
-// Test that when we have a whitelist set on the Backend that is used when we
+// Test that when we have a allowlist set on the Backend that is used when we
 // don't have the annotation
 func TestParseAnnotationsWithDefaultConfig(t *testing.T) {
 	ing := buildIngress()
@@ -158,12 +158,12 @@ func TestParseAnnotationsWithDefaultConfig(t *testing.T) {
 		"test parse a invalid net": {
 			net:       "ww",
 			expectErr: true,
-			errOut:    "the annotation does not contain a valid IP address or network: invalid CIDR address: ww",
+			errOut:    "annotation nginx.ingress.kubernetes.io/allowlist-source-range contains invalid value",
 		},
 		"test parse a empty net": {
 			net:       "",
 			expectErr: true,
-			errOut:    "the annotation does not contain a valid IP address or network: invalid CIDR address: ",
+			errOut:    "the annotation nginx.ingress.kubernetes.io/allowlist-source-range does not contain a valid value ()",
 		},
 		"test parse multiple valid cidr": {
 			net:        "2.2.2.2/32,1.1.1.1/32,3.3.3.0/24",
@@ -174,16 +174,67 @@ func TestParseAnnotationsWithDefaultConfig(t *testing.T) {
 
 	for testName, test := range tests {
 		data := map[string]string{}
-		data[parser.GetAnnotationWithPrefix("whitelist-source-range")] = test.net
+		data[parser.GetAnnotationWithPrefix(ipAllowlistAnnotation)] = test.net
 		ing.SetAnnotations(data)
 		p := NewParser(mockBackend)
 		i, err := p.Parse(ing)
-		if err != nil && !test.expectErr {
-			t.Errorf("%v:unexpected error: %v", testName, err)
+		if (err != nil) != test.expectErr {
+			t.Errorf("expected error: %t got error: %t err value: %s. %+v", test.expectErr, err != nil, err, i)
 		}
-		if test.expectErr {
+		if test.expectErr && err != nil {
 			if err.Error() != test.errOut {
-				t.Errorf("%v:expected error: %v but %v return", testName, test.errOut, err.Error())
+				t.Errorf("expected error %s but got %s", test.errOut, err)
+			}
+		}
+		if !test.expectErr {
+			sr, ok := i.(*SourceRange)
+			if !ok {
+				t.Errorf("%v:expected a SourceRange type", testName)
+			}
+			if !strsEquals(sr.CIDR, test.expectCidr) {
+				t.Errorf("%v:expected %v CIDR but %v returned", testName, test.expectCidr, sr.CIDR)
+			}
+		}
+	}
+}
+
+// Test that when we have a whitelist set on the Backend that is used when we
+// don't have the annotation
+func TestLegacyAnnotation(t *testing.T) {
+	ing := buildIngress()
+
+	mockBackend := mockBackend{}
+
+	tests := map[string]struct {
+		net        string
+		expectCidr []string
+		expectErr  bool
+		errOut     string
+	}{
+		"test parse a valid net": {
+			net:        "10.0.0.0/24",
+			expectCidr: []string{"10.0.0.0/24"},
+			expectErr:  false,
+		},
+		"test parse multiple valid cidr": {
+			net:        "2.2.2.2/32,1.1.1.1/32,3.3.3.0/24",
+			expectCidr: []string{"1.1.1.1/32", "2.2.2.2/32", "3.3.3.0/24"},
+			expectErr:  false,
+		},
+	}
+
+	for testName, test := range tests {
+		data := map[string]string{}
+		data[parser.GetAnnotationWithPrefix(ipWhitelistAnnotation)] = test.net
+		ing.SetAnnotations(data)
+		p := NewParser(mockBackend)
+		i, err := p.Parse(ing)
+		if (err != nil) != test.expectErr {
+			t.Errorf("expected error: %t got error: %t err value: %s. %+v", test.expectErr, err != nil, err, i)
+		}
+		if test.expectErr && err != nil {
+			if err.Error() != test.errOut {
+				t.Errorf("expected error %s but got %s", test.errOut, err)
 			}
 		}
 		if !test.expectErr {
diff --git a/internal/ingress/annotations/ipdenylist/main.go b/internal/ingress/annotations/ipdenylist/main.go
index f6a0e10f1..f17ce079a 100644
--- a/internal/ingress/annotations/ipdenylist/main.go
+++ b/internal/ingress/annotations/ipdenylist/main.go
@@ -30,6 +30,22 @@ import (
 	"k8s.io/ingress-nginx/pkg/util/sets"
 )
 
+const (
+	ipDenylistAnnotation = "denylist-source-range"
+)
+
+var denylistAnnotations = parser.Annotation{
+	Group: "acl",
+	Annotations: parser.AnnotationFields{
+		ipDenylistAnnotation: {
+			Validator:     parser.ValidateCIDRs,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium, // Failure on parsing this may cause undesired access
+			Documentation: `This annotation allows setting a list of IPs and networks that should be blocked to access this Location`,
+		},
+	},
+}
+
 // SourceRange returns the CIDR
 type SourceRange struct {
 	CIDR []string `json:"cidr,omitempty"`
@@ -48,12 +64,16 @@ func (sr1 *SourceRange) Equal(sr2 *SourceRange) bool {
 }
 
 type ipdenylist struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new denylist annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return ipdenylist{r}
+	return ipdenylist{
+		r:                r,
+		annotationConfig: denylistAnnotations,
+	}
 }
 
 // ParseAnnotations parses the annotations contained in the ingress
@@ -67,10 +87,16 @@ func (a ipdenylist) Parse(ing *networking.Ingress) (interface{}, error) {
 	copy(defaultDenylistSourceRange, defBackend.DenylistSourceRange)
 	sort.Strings(defaultDenylistSourceRange)
 
-	val, err := parser.GetStringAnnotation("denylist-source-range", ing)
-	// A missing annotation is not a problem, just use the default
-	if err == ing_errors.ErrMissingAnnotations {
-		return &SourceRange{CIDR: defaultDenylistSourceRange}, nil
+	val, err := parser.GetStringAnnotation(ipDenylistAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil {
+		if err == ing_errors.ErrMissingAnnotations {
+			return &SourceRange{CIDR: defaultDenylistSourceRange}, nil
+		}
+
+		return &SourceRange{CIDR: defaultDenylistSourceRange}, ing_errors.LocationDenied{
+			Reason: err,
+		}
+
 	}
 
 	values := strings.Split(val, ",")
@@ -93,3 +119,12 @@ func (a ipdenylist) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	return &SourceRange{cidrs}, nil
 }
+
+func (a ipdenylist) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a ipdenylist) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, denylistAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/ipdenylist/main_test.go b/internal/ingress/annotations/ipdenylist/main_test.go
index eb69aa520..ebd81179a 100644
--- a/internal/ingress/annotations/ipdenylist/main_test.go
+++ b/internal/ingress/annotations/ipdenylist/main_test.go
@@ -86,17 +86,17 @@ func TestParseAnnotations(t *testing.T) {
 		"test parse a invalid net": {
 			net:       "ww",
 			expectErr: true,
-			errOut:    "the annotation does not contain a valid IP address or network: invalid CIDR address: ww",
+			errOut:    "annotation nginx.ingress.kubernetes.io/denylist-source-range contains invalid value",
 		},
 		"test parse a empty net": {
 			net:       "",
 			expectErr: true,
-			errOut:    "the annotation does not contain a valid IP address or network: invalid CIDR address: ",
+			errOut:    "the annotation nginx.ingress.kubernetes.io/denylist-source-range does not contain a valid value ()",
 		},
 		"test parse a malicious escaped string": {
 			net:       `10.0.0.0/8"rm /tmp",11.0.0.0/8`,
 			expectErr: true,
-			errOut:    `the annotation does not contain a valid IP address or network: invalid CIDR address: 10.0.0.0/8"rm /tmp"`,
+			errOut:    `annotation nginx.ingress.kubernetes.io/denylist-source-range contains invalid value`,
 		},
 		"test parse multiple valid cidr": {
 			net:        "2.2.2.2/32,1.1.1.1/32,3.3.3.0/24",
@@ -107,16 +107,16 @@ func TestParseAnnotations(t *testing.T) {
 
 	for testName, test := range tests {
 		data := map[string]string{}
-		data[parser.GetAnnotationWithPrefix("denylist-source-range")] = test.net
+		data[parser.GetAnnotationWithPrefix(ipDenylistAnnotation)] = test.net
 		ing.SetAnnotations(data)
 		p := NewParser(&resolver.Mock{})
 		i, err := p.Parse(ing)
-		if err != nil && !test.expectErr {
-			t.Errorf("%v:unexpected error: %v", testName, err)
+		if (err != nil) != test.expectErr {
+			t.Errorf("expected error: %t got error: %t err value: %s. %+v", test.expectErr, err != nil, err, i)
 		}
-		if test.expectErr {
+		if test.expectErr && err != nil {
 			if err.Error() != test.errOut {
-				t.Errorf("%v:expected error: %v but %v return", testName, test.errOut, err.Error())
+				t.Errorf("expected error %s but got %s", test.errOut, err)
 			}
 		}
 		if !test.expectErr {
@@ -163,12 +163,12 @@ func TestParseAnnotationsWithDefaultConfig(t *testing.T) {
 		"test parse a invalid net": {
 			net:       "ww",
 			expectErr: true,
-			errOut:    "the annotation does not contain a valid IP address or network: invalid CIDR address: ww",
+			errOut:    "annotation nginx.ingress.kubernetes.io/denylist-source-range contains invalid value",
 		},
 		"test parse a empty net": {
 			net:       "",
 			expectErr: true,
-			errOut:    "the annotation does not contain a valid IP address or network: invalid CIDR address: ",
+			errOut:    "the annotation nginx.ingress.kubernetes.io/denylist-source-range does not contain a valid value ()",
 		},
 		"test parse multiple valid cidr": {
 			net:        "2.2.2.2/32,1.1.1.1/32,3.3.3.0/24",
@@ -179,16 +179,16 @@ func TestParseAnnotationsWithDefaultConfig(t *testing.T) {
 
 	for testName, test := range tests {
 		data := map[string]string{}
-		data[parser.GetAnnotationWithPrefix("denylist-source-range")] = test.net
+		data[parser.GetAnnotationWithPrefix(ipDenylistAnnotation)] = test.net
 		ing.SetAnnotations(data)
 		p := NewParser(mockBackend)
 		i, err := p.Parse(ing)
-		if err != nil && !test.expectErr {
-			t.Errorf("%v:unexpected error: %v", testName, err)
+		if (err != nil) != test.expectErr {
+			t.Errorf("expected error: %t got error: %t err value: %s. %+v", test.expectErr, err != nil, err, i)
 		}
-		if test.expectErr {
+		if test.expectErr && err != nil {
 			if err.Error() != test.errOut {
-				t.Errorf("%v:expected error: %v but %v return", testName, test.errOut, err.Error())
+				t.Errorf("expected error %s but got %s", test.errOut, err)
 			}
 		}
 		if !test.expectErr {
diff --git a/internal/ingress/annotations/loadbalancing/main.go b/internal/ingress/annotations/loadbalancing/main.go
index a8b4335e6..ee89d2c1b 100644
--- a/internal/ingress/annotations/loadbalancing/main.go
+++ b/internal/ingress/annotations/loadbalancing/main.go
@@ -23,18 +23,52 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
-type loadbalancing struct {
-	r resolver.Resolver
+// LB Alghorithms are defined in https://github.com/kubernetes/ingress-nginx/blob/d3e75b056f77be54e01bdb18675f1bb46caece31/rootfs/etc/nginx/lua/balancer.lua#L28
+
+const (
+	loadBalanceAlghoritmAnnotation = "load-balance"
+)
+
+var loadBalanceAlghoritms = []string{"round_robin", "chash", "chashsubset", "sticky_balanced", "sticky_persistent", "ewma"}
+
+var loadBalanceAnnotations = parser.Annotation{
+	Group: "backend",
+	Annotations: parser.AnnotationFields{
+		loadBalanceAlghoritmAnnotation: {
+			Validator: parser.ValidateOptions(loadBalanceAlghoritms, true, true),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `This annotation allows setting the load balancing alghorithm that should be used. If none is specified, defaults to 
+			the default configured by Ingress admin, otherwise to round_robin`,
+		},
+	},
 }
 
-// NewParser creates a new CORS annotation parser
+type loadbalancing struct {
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
+}
+
+// NewParser creates a new Load Balancer annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return loadbalancing{r}
+	return loadbalancing{
+		r:                r,
+		annotationConfig: loadBalanceAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress rule
 // used to indicate if the location/s contains a fragment of
 // configuration to be included inside the paths of the rules
 func (a loadbalancing) Parse(ing *networking.Ingress) (interface{}, error) {
-	return parser.GetStringAnnotation("load-balance", ing)
+	return parser.GetStringAnnotation(loadBalanceAlghoritmAnnotation, ing, a.annotationConfig.Annotations)
+}
+
+func (a loadbalancing) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a loadbalancing) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, loadBalanceAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/loadbalancing/main_test.go b/internal/ingress/annotations/loadbalancing/main_test.go
index e2be5c0ae..b0442c37f 100644
--- a/internal/ingress/annotations/loadbalancing/main_test.go
+++ b/internal/ingress/annotations/loadbalancing/main_test.go
@@ -38,7 +38,8 @@ func TestParse(t *testing.T) {
 		annotations map[string]string
 		expected    string
 	}{
-		{map[string]string{annotation: "ip_hash"}, "ip_hash"},
+		{map[string]string{annotation: "ewma"}, "ewma"},
+		{map[string]string{annotation: "ip_hash"}, ""}, // This is invalid and should not return anything
 		{map[string]string{}, ""},
 		{nil, ""},
 	}
diff --git a/internal/ingress/annotations/log/main.go b/internal/ingress/annotations/log/main.go
index 4bc76dcf7..ec08292a9 100644
--- a/internal/ingress/annotations/log/main.go
+++ b/internal/ingress/annotations/log/main.go
@@ -23,8 +23,32 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	enableAccessLogAnnotation  = "enable-access-log"
+	enableRewriteLogAnnotation = "enable-rewrite-log"
+)
+
+var logAnnotations = parser.Annotation{
+	Group: "log",
+	Annotations: parser.AnnotationFields{
+		enableAccessLogAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This configuration setting allows you to control if this location should generate an access_log`,
+		},
+		enableRewriteLogAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This configuration setting allows you to control if this location should generate logs from the rewrite feature usage`,
+		},
+	},
+}
+
 type log struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // Config contains the configuration to be used in the Ingress
@@ -48,7 +72,10 @@ func (bd1 *Config) Equal(bd2 *Config) bool {
 
 // NewParser creates a new log annotations parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return log{r}
+	return log{
+		r:                r,
+		annotationConfig: logAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress
@@ -57,15 +84,24 @@ func (l log) Parse(ing *networking.Ingress) (interface{}, error) {
 	var err error
 	config := &Config{}
 
-	config.Access, err = parser.GetBoolAnnotation("enable-access-log", ing)
+	config.Access, err = parser.GetBoolAnnotation(enableAccessLogAnnotation, ing, l.annotationConfig.Annotations)
 	if err != nil {
 		config.Access = true
 	}
 
-	config.Rewrite, err = parser.GetBoolAnnotation("enable-rewrite-log", ing)
+	config.Rewrite, err = parser.GetBoolAnnotation(enableRewriteLogAnnotation, ing, l.annotationConfig.Annotations)
 	if err != nil {
 		config.Rewrite = false
 	}
 
 	return config, nil
 }
+
+func (l log) GetDocumentation() parser.AnnotationFields {
+	return l.annotationConfig.Annotations
+}
+
+func (a log) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, logAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/log/main_test.go b/internal/ingress/annotations/log/main_test.go
index c4632b010..df97c2e5b 100644
--- a/internal/ingress/annotations/log/main_test.go
+++ b/internal/ingress/annotations/log/main_test.go
@@ -73,7 +73,7 @@ func TestIngressAccessLogConfig(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("enable-access-log")] = "false"
+	data[parser.GetAnnotationWithPrefix(enableAccessLogAnnotation)] = "false"
 	ing.SetAnnotations(data)
 
 	log, _ := NewParser(&resolver.Mock{}).Parse(ing)
@@ -91,7 +91,7 @@ func TestIngressRewriteLogConfig(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("enable-rewrite-log")] = "true"
+	data[parser.GetAnnotationWithPrefix(enableRewriteLogAnnotation)] = "true"
 	ing.SetAnnotations(data)
 
 	log, _ := NewParser(&resolver.Mock{}).Parse(ing)
@@ -104,3 +104,21 @@ func TestIngressRewriteLogConfig(t *testing.T) {
 		t.Errorf("expected rewrite log to be enabled but it is disabled")
 	}
 }
+
+func TestInvalidBoolConfig(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix(enableRewriteLogAnnotation)] = "blo"
+	ing.SetAnnotations(data)
+
+	log, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	nginxLogs, ok := log.(*Config)
+	if !ok {
+		t.Errorf("expected a Config type")
+	}
+
+	if !nginxLogs.Access {
+		t.Errorf("expected access log to be enabled due to invalid config, but it is disabled")
+	}
+}
diff --git a/internal/ingress/annotations/mirror/main.go b/internal/ingress/annotations/mirror/main.go
index 9cb1b0ede..2d417dece 100644
--- a/internal/ingress/annotations/mirror/main.go
+++ b/internal/ingress/annotations/mirror/main.go
@@ -18,13 +18,50 @@ package mirror
 
 import (
 	"fmt"
+	"regexp"
 	"strings"
 
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
+	"k8s.io/klog/v2"
 )
 
+const (
+	mirrorRequestBodyAnnotation = "mirror-request-body"
+	mirrorTargetAnnotation      = "mirror-target"
+	mirrorHostAnnotation        = "mirror-host"
+)
+
+var (
+	OnOffRegex = regexp.MustCompile(`^(on|off)$`)
+)
+
+var mirrorAnnotation = parser.Annotation{
+	Group: "mirror",
+	Annotations: parser.AnnotationFields{
+		mirrorRequestBodyAnnotation: {
+			Validator:     parser.ValidateRegex(*OnOffRegex, true),
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation defines if the request-body should be sent to the mirror backend. Can be 'on' or 'off'`,
+		},
+		mirrorTargetAnnotation: {
+			Validator:     parser.ValidateServerName,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskHigh,
+			Documentation: `This annotation enables a request to be mirrored to a mirror backend.`,
+		},
+		mirrorHostAnnotation: {
+			Validator:     parser.ValidateServerName,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskHigh,
+			Documentation: `This annotation defines if a specific Host header should be set for mirrored request.`,
+		},
+	},
+}
+
 // Config returns the mirror to use in a given location
 type Config struct {
 	Source      string `json:"source"`
@@ -63,12 +100,16 @@ func (m1 *Config) Equal(m2 *Config) bool {
 }
 
 type mirror struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new mirror configuration annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return mirror{r}
+	return mirror{
+		r:                r,
+		annotationConfig: mirrorAnnotation,
+	}
 }
 
 // ParseAnnotations parses the annotations contained in the ingress
@@ -79,19 +120,29 @@ func (a mirror) Parse(ing *networking.Ingress) (interface{}, error) {
 	}
 
 	var err error
-	config.RequestBody, err = parser.GetStringAnnotation("mirror-request-body", ing)
+	config.RequestBody, err = parser.GetStringAnnotation(mirrorRequestBodyAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil || config.RequestBody != "off" {
+		if errors.IsValidationError(err) {
+			klog.Warningf("annotation %s contains invalid value", mirrorRequestBodyAnnotation)
+		}
 		config.RequestBody = "on"
 	}
 
-	config.Target, err = parser.GetStringAnnotation("mirror-target", ing)
+	config.Target, err = parser.GetStringAnnotation(mirrorTargetAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
-		config.Target = ""
-		config.Source = ""
+		if errors.IsValidationError(err) {
+			klog.Warningf("annotation %s contains invalid value, defaulting", mirrorTargetAnnotation)
+		} else {
+			config.Target = ""
+			config.Source = ""
+		}
 	}
 
-	config.Host, err = parser.GetStringAnnotation("mirror-host", ing)
+	config.Host, err = parser.GetStringAnnotation(mirrorHostAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("annotation %s contains invalid value, defaulting", mirrorHostAnnotation)
+		}
 		if config.Target != "" {
 			target := strings.Split(config.Target, "$")
 
@@ -106,3 +157,12 @@ func (a mirror) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	return config, nil
 }
+
+func (a mirror) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a mirror) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, mirrorAnnotation.Annotations)
+}
diff --git a/internal/ingress/annotations/mirror/main_test.go b/internal/ingress/annotations/mirror/main_test.go
index add90d768..1f6b44d61 100644
--- a/internal/ingress/annotations/mirror/main_test.go
+++ b/internal/ingress/annotations/mirror/main_test.go
@@ -94,13 +94,13 @@ func TestParse(t *testing.T) {
 			Source:      ngxURI,
 			RequestBody: "on",
 			Target:      "http://some.test.env.com",
-			Host:        "someInvalidParm.%^&*()_=!@#'\"",
+			Host:        "some.test.env.com",
 		}},
 		{map[string]string{backendURL: "http://some.test.env.com", host: "_sbrubles-i\"@xpto:12345"}, &Config{
 			Source:      ngxURI,
 			RequestBody: "on",
 			Target:      "http://some.test.env.com",
-			Host:        "_sbrubles-i\"@xpto:12345",
+			Host:        "some.test.env.com",
 		}},
 	}
 
@@ -115,9 +115,12 @@ func TestParse(t *testing.T) {
 
 	for _, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
-		result, _ := ap.Parse(ing)
+		result, err := ap.Parse(ing)
+		if err != nil {
+			t.Errorf(err.Error())
+		}
 		if !reflect.DeepEqual(result, testCase.expected) {
-			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
+			t.Errorf("expected %+v but returned %+v, annotations: %s", testCase.expected, result, testCase.annotations)
 		}
 	}
 }
diff --git a/internal/ingress/annotations/modsecurity/main.go b/internal/ingress/annotations/modsecurity/main.go
index c53739441..5a9aaa729 100644
--- a/internal/ingress/annotations/modsecurity/main.go
+++ b/internal/ingress/annotations/modsecurity/main.go
@@ -19,9 +19,48 @@ package modsecurity
 import (
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
+	"k8s.io/klog/v2"
 )
 
+const (
+	modsecEnableAnnotation          = "enable-modsecurity"
+	modsecEnableOwaspCoreAnnotation = "enable-owasp-core-rules"
+	modesecTransactionIdAnnotation  = "modsecurity-transaction-id"
+	modsecSnippetAnnotation         = "modsecurity-snippet"
+)
+
+var modsecurityAnnotation = parser.Annotation{
+	Group: "modsecurity",
+	Annotations: parser.AnnotationFields{
+		modsecEnableAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation enables ModSecurity`,
+		},
+		modsecEnableOwaspCoreAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation enables the OWASP Core Rule Set`,
+		},
+		modesecTransactionIdAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.NGINXVariable, true),
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskHigh,
+			Documentation: `This annotation enables passing an NGINX variable to ModSecurity.`,
+		},
+		modsecSnippetAnnotation: {
+			Validator:     parser.ValidateNull,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskCritical,
+			Documentation: `This annotation enables adding a specific snippet configuration for ModSecurity`,
+		},
+	},
+}
+
 // Config contains ModSecurity Configuration items
 type Config struct {
 	Enable        bool   `json:"enable-modsecurity"`
@@ -60,11 +99,15 @@ func (modsec1 *Config) Equal(modsec2 *Config) bool {
 
 // NewParser creates a new ModSecurity annotation parser
 func NewParser(resolver resolver.Resolver) parser.IngressAnnotation {
-	return modSecurity{resolver}
+	return modSecurity{
+		r:                resolver,
+		annotationConfig: modsecurityAnnotation,
+	}
 }
 
 type modSecurity struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // Parse parses the annotations contained in the ingress
@@ -74,26 +117,44 @@ func (a modSecurity) Parse(ing *networking.Ingress) (interface{}, error) {
 	config := &Config{}
 
 	config.EnableSet = true
-	config.Enable, err = parser.GetBoolAnnotation("enable-modsecurity", ing)
+	config.Enable, err = parser.GetBoolAnnotation(modsecEnableAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsInvalidContent(err) {
+			klog.Warningf("annotation %s contains invalid directive, defaulting to false", modsecEnableAnnotation)
+		}
 		config.Enable = false
 		config.EnableSet = false
 	}
 
-	config.OWASPRules, err = parser.GetBoolAnnotation("enable-owasp-core-rules", ing)
+	config.OWASPRules, err = parser.GetBoolAnnotation(modsecEnableOwaspCoreAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsInvalidContent(err) {
+			klog.Warningf("annotation %s contains invalid directive, defaulting to false", modsecEnableOwaspCoreAnnotation)
+		}
 		config.OWASPRules = false
 	}
 
-	config.TransactionID, err = parser.GetStringAnnotation("modsecurity-transaction-id", ing)
+	config.TransactionID, err = parser.GetStringAnnotation(modesecTransactionIdAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsInvalidContent(err) {
+			klog.Warningf("annotation %s contains invalid directive, defaulting", modesecTransactionIdAnnotation)
+		}
 		config.TransactionID = ""
 	}
 
-	config.Snippet, err = parser.GetStringAnnotation("modsecurity-snippet", ing)
+	config.Snippet, err = parser.GetStringAnnotation("modsecurity-snippet", ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.Snippet = ""
 	}
 
 	return config, nil
 }
+
+func (a modSecurity) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a modSecurity) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, modsecurityAnnotation.Annotations)
+}
diff --git a/internal/ingress/annotations/opentelemetry/main.go b/internal/ingress/annotations/opentelemetry/main.go
index 7dd292322..a029087da 100644
--- a/internal/ingress/annotations/opentelemetry/main.go
+++ b/internal/ingress/annotations/opentelemetry/main.go
@@ -17,14 +17,51 @@ limitations under the License.
 package opentelemetry
 
 import (
+	"regexp"
+
 	networking "k8s.io/api/networking/v1"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	enableOpenTelemetryAnnotation = "enable-opentelemetry"
+	otelTrustSpanAnnotation       = "opentelemetry-trust-incoming-span"
+	otelOperationNameAnnotation   = "opentelemetry-operation-name"
+)
+
+var regexOperationName = regexp.MustCompile(`^[A-Za-z0-9_\-]*$`)
+
+var otelAnnotations = parser.Annotation{
+	Group: "opentelemetry",
+	Annotations: parser.AnnotationFields{
+		enableOpenTelemetryAnnotation: {
+			Validator: parser.ValidateBool,
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `This annotation defines if Open Telemetry collector should be enable for this location. OpenTelemetry should 
+			already be configured by Ingress administrator`,
+		},
+		otelTrustSpanAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation enables or disables using spans from incoming requests as parent for created ones`,
+		},
+		otelOperationNameAnnotation: {
+			Validator:     parser.ValidateRegex(*regexOperationName, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation defines what operation name should be added to the span`,
+		},
+	},
+}
+
 type opentelemetry struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // Config contains the configuration to be used in the Ingress
@@ -64,13 +101,16 @@ func (bd1 *Config) Equal(bd2 *Config) bool {
 
 // NewParser creates a new serviceUpstream annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return opentelemetry{r}
+	return opentelemetry{
+		r:                r,
+		annotationConfig: otelAnnotations,
+	}
 }
 
 // Parse parses the annotations to look for opentelemetry configurations
 func (c opentelemetry) Parse(ing *networking.Ingress) (interface{}, error) {
 	cfg := Config{}
-	enabled, err := parser.GetBoolAnnotation("enable-opentelemetry", ing)
+	enabled, err := parser.GetBoolAnnotation(enableOpenTelemetryAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil {
 		return &cfg, nil
 	}
@@ -80,10 +120,13 @@ func (c opentelemetry) Parse(ing *networking.Ingress) (interface{}, error) {
 		return &cfg, nil
 	}
 
-	trustEnabled, err := parser.GetBoolAnnotation("opentelemetry-trust-incoming-span", ing)
+	trustEnabled, err := parser.GetBoolAnnotation(otelTrustSpanAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil {
-		operationName, err := parser.GetStringAnnotation("opentelemetry-operation-name", ing)
+		operationName, err := parser.GetStringAnnotation(otelOperationNameAnnotation, ing, c.annotationConfig.Annotations)
 		if err != nil {
+			if errors.IsValidationError(err) {
+				return nil, err
+			}
 			return &cfg, nil
 		}
 		cfg.OperationName = operationName
@@ -92,10 +135,22 @@ func (c opentelemetry) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	cfg.TrustSet = true
 	cfg.TrustEnabled = trustEnabled
-	operationName, err := parser.GetStringAnnotation("opentelemetry-operation-name", ing)
+	operationName, err := parser.GetStringAnnotation(otelOperationNameAnnotation, ing, c.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			return nil, err
+		}
 		return &cfg, nil
 	}
 	cfg.OperationName = operationName
 	return &cfg, nil
 }
+
+func (c opentelemetry) GetDocumentation() parser.AnnotationFields {
+	return c.annotationConfig.Annotations
+}
+
+func (a opentelemetry) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, otelAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/opentelemetry/main_test.go b/internal/ingress/annotations/opentelemetry/main_test.go
index 619108fa6..c78ebc8b3 100644
--- a/internal/ingress/annotations/opentelemetry/main_test.go
+++ b/internal/ingress/annotations/opentelemetry/main_test.go
@@ -73,7 +73,7 @@ func TestIngressAnnotationOpentelemetrySetTrue(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("enable-opentelemetry")] = "true"
+	data[parser.GetAnnotationWithPrefix(enableOpenTelemetryAnnotation)] = "true"
 	ing.SetAnnotations(data)
 
 	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
@@ -100,7 +100,7 @@ func TestIngressAnnotationOpentelemetrySetFalse(t *testing.T) {
 
 	// Test with explicitly set to false
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("enable-opentelemetry")] = "false"
+	data[parser.GetAnnotationWithPrefix(enableOpenTelemetryAnnotation)] = "false"
 	ing.SetAnnotations(data)
 
 	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
@@ -123,12 +123,15 @@ func TestIngressAnnotationOpentelemetryTrustSetTrue(t *testing.T) {
 
 	data := map[string]string{}
 	opName := "foo-op"
-	data[parser.GetAnnotationWithPrefix("enable-opentelemetry")] = "true"
-	data[parser.GetAnnotationWithPrefix("opentelemetry-trust-incoming-span")] = "true"
-	data[parser.GetAnnotationWithPrefix("opentelemetry-operation-name")] = opName
+	data[parser.GetAnnotationWithPrefix(enableOpenTelemetryAnnotation)] = "true"
+	data[parser.GetAnnotationWithPrefix(otelTrustSpanAnnotation)] = "true"
+	data[parser.GetAnnotationWithPrefix(otelOperationNameAnnotation)] = opName
 	ing.SetAnnotations(data)
 
-	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	val, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Fatal(err)
+	}
 	openTelemetry, ok := val.(*Config)
 	if !ok {
 		t.Errorf("expected a Config type")
@@ -155,6 +158,21 @@ func TestIngressAnnotationOpentelemetryTrustSetTrue(t *testing.T) {
 	}
 }
 
+func TestIngressAnnotationOpentelemetryWithBadOpName(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	opName := "fooxpto_123$la;"
+	data[parser.GetAnnotationWithPrefix(enableOpenTelemetryAnnotation)] = "true"
+	data[parser.GetAnnotationWithPrefix(otelOperationNameAnnotation)] = opName
+	ing.SetAnnotations(data)
+
+	_, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err == nil {
+		t.Fatalf("This operation should return an error but no error was returned")
+	}
+}
+
 func TestIngressAnnotationOpentelemetryUnset(t *testing.T) {
 	ing := buildIngress()
 
diff --git a/internal/ingress/annotations/opentracing/main.go b/internal/ingress/annotations/opentracing/main.go
index 17ba7eb9f..7c8671f9d 100644
--- a/internal/ingress/annotations/opentracing/main.go
+++ b/internal/ingress/annotations/opentracing/main.go
@@ -23,8 +23,33 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	enableOpentracingAnnotation    = "enable-opentracing"
+	opentracingTrustSpanAnnotation = "opentracing-trust-incoming-span"
+)
+
+var opentracingAnnotations = parser.Annotation{
+	Group: "opentracing",
+	Annotations: parser.AnnotationFields{
+		enableOpentracingAnnotation: {
+			Validator: parser.ValidateBool,
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `This annotation defines if Opentracing collector should be enable for this location. Opentracing should 
+			already be configured by Ingress administrator`,
+		},
+		opentracingTrustSpanAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation enables or disables using spans from incoming requests as parent for created ones`,
+		},
+	},
+}
+
 type opentracing struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // Config contains the configuration to be used in the Ingress
@@ -58,19 +83,31 @@ func (bd1 *Config) Equal(bd2 *Config) bool {
 
 // NewParser creates a new serviceUpstream annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return opentracing{r}
+	return opentracing{
+		r:                r,
+		annotationConfig: opentracingAnnotations,
+	}
 }
 
 func (s opentracing) Parse(ing *networking.Ingress) (interface{}, error) {
-	enabled, err := parser.GetBoolAnnotation("enable-opentracing", ing)
+	enabled, err := parser.GetBoolAnnotation(enableOpentracingAnnotation, ing, s.annotationConfig.Annotations)
 	if err != nil {
 		return &Config{}, nil
 	}
 
-	trustSpan, err := parser.GetBoolAnnotation("opentracing-trust-incoming-span", ing)
+	trustSpan, err := parser.GetBoolAnnotation(opentracingTrustSpanAnnotation, ing, s.annotationConfig.Annotations)
 	if err != nil {
 		return &Config{Set: true, Enabled: enabled}, nil
 	}
 
 	return &Config{Set: true, Enabled: enabled, TrustSet: true, TrustEnabled: trustSpan}, nil
 }
+
+func (s opentracing) GetDocumentation() parser.AnnotationFields {
+	return s.annotationConfig.Annotations
+}
+
+func (a opentracing) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, opentracingAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/opentracing/main_test.go b/internal/ingress/annotations/opentracing/main_test.go
index 7bd9d31ff..b7b62ac9d 100644
--- a/internal/ingress/annotations/opentracing/main_test.go
+++ b/internal/ingress/annotations/opentracing/main_test.go
@@ -73,7 +73,7 @@ func TestIngressAnnotationOpentracingSetTrue(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("enable-opentracing")] = "true"
+	data[parser.GetAnnotationWithPrefix(enableOpentracingAnnotation)] = "true"
 	ing.SetAnnotations(data)
 
 	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
@@ -92,7 +92,7 @@ func TestIngressAnnotationOpentracingSetFalse(t *testing.T) {
 
 	// Test with explicitly set to false
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("enable-opentracing")] = "false"
+	data[parser.GetAnnotationWithPrefix(enableOpentracingAnnotation)] = "false"
 	ing.SetAnnotations(data)
 
 	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
@@ -110,8 +110,8 @@ func TestIngressAnnotationOpentracingTrustSetTrue(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("enable-opentracing")] = "true"
-	data[parser.GetAnnotationWithPrefix("opentracing-trust-incoming-span")] = "true"
+	data[parser.GetAnnotationWithPrefix(enableOpentracingAnnotation)] = "true"
+	data[parser.GetAnnotationWithPrefix(opentracingTrustSpanAnnotation)] = "true"
 	ing.SetAnnotations(data)
 
 	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
diff --git a/internal/ingress/annotations/parser/main.go b/internal/ingress/annotations/parser/main.go
index 107a278b0..951970e27 100644
--- a/internal/ingress/annotations/parser/main.go
+++ b/internal/ingress/annotations/parser/main.go
@@ -29,20 +29,79 @@ import (
 )
 
 // DefaultAnnotationsPrefix defines the common prefix used in the nginx ingress controller
-const DefaultAnnotationsPrefix = "nginx.ingress.kubernetes.io"
+const (
+	DefaultAnnotationsPrefix          = "nginx.ingress.kubernetes.io"
+	DefaultEnableAnnotationValidation = true
+)
 
 var (
 	// AnnotationsPrefix is the mutable attribute that the controller explicitly refers to
 	AnnotationsPrefix = DefaultAnnotationsPrefix
+	// Enable is the mutable attribute for enabling or disabling the validation functions
+	EnableAnnotationValidation = DefaultEnableAnnotationValidation
 )
 
+// AnnotationGroup defines the group that this annotation may belong
+// eg.: Security, Snippets, Rewrite, etc
+type AnnotationGroup string
+
+// AnnotationScope defines which scope this annotation applies. May be to the whole
+// ingress, per location, etc
+type AnnotationScope string
+
+var (
+	AnnotationScopeLocation AnnotationScope = "location"
+	AnnotationScopeIngress  AnnotationScope = "ingress"
+)
+
+// AnnotationRisk is a subset of risk that an annotation may represent.
+// Based on the Risk, the admin will be able to allow or disallow users to set it
+// on their ingress objects
+type AnnotationRisk int
+
+type AnnotationFields map[string]AnnotationConfig
+
+// AnnotationConfig defines the configuration that a single annotation field
+// has, with the Validator and the documentation of this field.
+type AnnotationConfig struct {
+	// Validator defines a function to validate the annotation value
+	Validator AnnotationValidator
+	// Documentation defines a user facing documentation for this annotation. This
+	// field will be used to auto generate documentations
+	Documentation string
+	// Risk defines a risk of this annotation being exposed to the user. Annotations
+	// with bool fields, or to set timeout are usually low risk. Annotations that allows
+	// string input without a limited set of options may represent a high risk
+	Risk AnnotationRisk
+
+	// Scope defines which scope this annotation applies, may be to location, to an Ingress object, etc
+	Scope AnnotationScope
+
+	// AnnotationAliases defines other names this annotation may have.
+	AnnotationAliases []string
+}
+
+// Annotation defines an annotation feature an Ingress may have.
+// It should contain the internal resolver, and all the annotations
+// with configs and Validators that should be used for each Annotation
+type Annotation struct {
+	// Annotations contains all the annotations that belong to this feature
+	Annotations AnnotationFields
+	// Group defines which annotation group this feature belongs to
+	Group AnnotationGroup
+}
+
 // IngressAnnotation has a method to parse annotations located in Ingress
 type IngressAnnotation interface {
 	Parse(ing *networking.Ingress) (interface{}, error)
+	GetDocumentation() AnnotationFields
+	Validate(anns map[string]string) error
 }
 
 type ingAnnotations map[string]string
 
+// TODO: We already parse all of this on checkAnnotation and can just do a parse over the
+// value
 func (a ingAnnotations) parseBool(name string) (bool, error) {
 	val, ok := a[name]
 	if ok {
@@ -92,21 +151,9 @@ func (a ingAnnotations) parseFloat32(name string) (float32, error) {
 	return 0, errors.ErrMissingAnnotations
 }
 
-func checkAnnotation(name string, ing *networking.Ingress) error {
-	if ing == nil || len(ing.GetAnnotations()) == 0 {
-		return errors.ErrMissingAnnotations
-	}
-	if name == "" {
-		return errors.ErrInvalidAnnotationName
-	}
-
-	return nil
-}
-
 // GetBoolAnnotation extracts a boolean from an Ingress annotation
-func GetBoolAnnotation(name string, ing *networking.Ingress) (bool, error) {
-	v := GetAnnotationWithPrefix(name)
-	err := checkAnnotation(v, ing)
+func GetBoolAnnotation(name string, ing *networking.Ingress, fields AnnotationFields) (bool, error) {
+	v, err := checkAnnotation(name, ing, fields)
 	if err != nil {
 		return false, err
 	}
@@ -114,9 +161,8 @@ func GetBoolAnnotation(name string, ing *networking.Ingress) (bool, error) {
 }
 
 // GetStringAnnotation extracts a string from an Ingress annotation
-func GetStringAnnotation(name string, ing *networking.Ingress) (string, error) {
-	v := GetAnnotationWithPrefix(name)
-	err := checkAnnotation(v, ing)
+func GetStringAnnotation(name string, ing *networking.Ingress, fields AnnotationFields) (string, error) {
+	v, err := checkAnnotation(name, ing, fields)
 	if err != nil {
 		return "", err
 	}
@@ -125,9 +171,8 @@ func GetStringAnnotation(name string, ing *networking.Ingress) (string, error) {
 }
 
 // GetIntAnnotation extracts an int from an Ingress annotation
-func GetIntAnnotation(name string, ing *networking.Ingress) (int, error) {
-	v := GetAnnotationWithPrefix(name)
-	err := checkAnnotation(v, ing)
+func GetIntAnnotation(name string, ing *networking.Ingress, fields AnnotationFields) (int, error) {
+	v, err := checkAnnotation(name, ing, fields)
 	if err != nil {
 		return 0, err
 	}
@@ -135,9 +180,8 @@ func GetIntAnnotation(name string, ing *networking.Ingress) (int, error) {
 }
 
 // GetFloatAnnotation extracts a float32 from an Ingress annotation
-func GetFloatAnnotation(name string, ing *networking.Ingress) (float32, error) {
-	v := GetAnnotationWithPrefix(name)
-	err := checkAnnotation(v, ing)
+func GetFloatAnnotation(name string, ing *networking.Ingress, fields AnnotationFields) (float32, error) {
+	v, err := checkAnnotation(name, ing, fields)
 	if err != nil {
 		return 0, err
 	}
@@ -149,6 +193,23 @@ func GetAnnotationWithPrefix(suffix string) string {
 	return fmt.Sprintf("%v/%v", AnnotationsPrefix, suffix)
 }
 
+func TrimAnnotationPrefix(annotation string) string {
+	return strings.TrimPrefix(annotation, AnnotationsPrefix+"/")
+}
+
+func StringRiskToRisk(risk string) AnnotationRisk {
+	switch strings.ToLower(risk) {
+	case "critical":
+		return AnnotationRiskCritical
+	case "high":
+		return AnnotationRiskHigh
+	case "medium":
+		return AnnotationRiskMedium
+	default:
+		return AnnotationRiskLow
+	}
+}
+
 func normalizeString(input string) string {
 	trimmedContent := []string{}
 	for _, line := range strings.Split(input, "\n") {
diff --git a/internal/ingress/annotations/parser/main_test.go b/internal/ingress/annotations/parser/main_test.go
index 318e024d3..beca49370 100644
--- a/internal/ingress/annotations/parser/main_test.go
+++ b/internal/ingress/annotations/parser/main_test.go
@@ -38,7 +38,7 @@ func buildIngress() *networking.Ingress {
 func TestGetBoolAnnotation(t *testing.T) {
 	ing := buildIngress()
 
-	_, err := GetBoolAnnotation("", nil)
+	_, err := GetBoolAnnotation("", nil, nil)
 	if err == nil {
 		t.Errorf("expected error but retuned nil")
 	}
@@ -59,8 +59,8 @@ func TestGetBoolAnnotation(t *testing.T) {
 
 	for _, test := range tests {
 		data[GetAnnotationWithPrefix(test.field)] = test.value
-
-		u, err := GetBoolAnnotation(test.field, ing)
+		ing.SetAnnotations(data)
+		u, err := GetBoolAnnotation(test.field, ing, nil)
 		if test.expErr {
 			if err == nil {
 				t.Errorf("%v: expected error but retuned nil", test.name)
@@ -68,7 +68,7 @@ func TestGetBoolAnnotation(t *testing.T) {
 			continue
 		}
 		if u != test.exp {
-			t.Errorf("%v: expected \"%v\" but \"%v\" was returned", test.name, test.exp, u)
+			t.Errorf("%v: expected \"%v\" but \"%v\" was returned, %+v", test.name, test.exp, u, ing)
 		}
 
 		delete(data, test.field)
@@ -78,7 +78,7 @@ func TestGetBoolAnnotation(t *testing.T) {
 func TestGetStringAnnotation(t *testing.T) {
 	ing := buildIngress()
 
-	_, err := GetStringAnnotation("", nil)
+	_, err := GetStringAnnotation("", nil, nil)
 	if err == nil {
 		t.Errorf("expected error but none returned")
 	}
@@ -109,7 +109,7 @@ rewrite (?i)/arcgis/services/Utilities/Geometry/GeometryServer(.*)$ /arcgis/serv
 	for _, test := range tests {
 		data[GetAnnotationWithPrefix(test.field)] = test.value
 
-		s, err := GetStringAnnotation(test.field, ing)
+		s, err := GetStringAnnotation(test.field, ing, nil)
 		if test.expErr {
 			if err == nil {
 				t.Errorf("%v: expected error but none returned", test.name)
@@ -133,7 +133,7 @@ rewrite (?i)/arcgis/services/Utilities/Geometry/GeometryServer(.*)$ /arcgis/serv
 func TestGetFloatAnnotation(t *testing.T) {
 	ing := buildIngress()
 
-	_, err := GetFloatAnnotation("", nil)
+	_, err := GetFloatAnnotation("", nil, nil)
 	if err == nil {
 		t.Errorf("expected error but retuned nil")
 	}
@@ -156,7 +156,7 @@ func TestGetFloatAnnotation(t *testing.T) {
 	for _, test := range tests {
 		data[GetAnnotationWithPrefix(test.field)] = test.value
 
-		s, err := GetFloatAnnotation(test.field, ing)
+		s, err := GetFloatAnnotation(test.field, ing, nil)
 		if test.expErr {
 			if err == nil {
 				t.Errorf("%v: expected error but retuned nil", test.name)
@@ -174,7 +174,7 @@ func TestGetFloatAnnotation(t *testing.T) {
 func TestGetIntAnnotation(t *testing.T) {
 	ing := buildIngress()
 
-	_, err := GetIntAnnotation("", nil)
+	_, err := GetIntAnnotation("", nil, nil)
 	if err == nil {
 		t.Errorf("expected error but retuned nil")
 	}
@@ -196,7 +196,7 @@ func TestGetIntAnnotation(t *testing.T) {
 	for _, test := range tests {
 		data[GetAnnotationWithPrefix(test.field)] = test.value
 
-		s, err := GetIntAnnotation(test.field, ing)
+		s, err := GetIntAnnotation(test.field, ing, nil)
 		if test.expErr {
 			if err == nil {
 				t.Errorf("%v: expected error but retuned nil", test.name)
@@ -224,6 +224,7 @@ func TestStringToURL(t *testing.T) {
 	}{
 		{"empty", "", "url scheme is empty", nil, true},
 		{"no scheme", "bar", "url scheme is empty", nil, true},
+		{"invalid parse", "://lala.com", "://lala.com is not a valid URL: parse \"://lala.com\": missing protocol scheme", nil, true},
 		{"invalid host", "http://", "url host is empty", nil, true},
 		{"invalid host (multiple dots)", "http://foo..bar.com", "invalid url host", nil, true},
 		{"valid URL", validURL, "", validParsedURL, false},
diff --git a/internal/ingress/annotations/parser/validators.go b/internal/ingress/annotations/parser/validators.go
new file mode 100644
index 000000000..e14b486eb
--- /dev/null
+++ b/internal/ingress/annotations/parser/validators.go
@@ -0,0 +1,239 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package parser
+
+import (
+	"errors"
+	"fmt"
+	"regexp"
+	"strconv"
+	"strings"
+	"time"
+
+	networking "k8s.io/api/networking/v1"
+	machineryvalidation "k8s.io/apimachinery/pkg/api/validation"
+	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
+	"k8s.io/ingress-nginx/internal/net"
+	"k8s.io/klog/v2"
+)
+
+type AnnotationValidator func(string) error
+
+const (
+	AnnotationRiskLow AnnotationRisk = iota
+	AnnotationRiskMedium
+	AnnotationRiskHigh
+	AnnotationRiskCritical
+)
+
+var (
+	alphaNumericChars    = `\-\.\_\~a-zA-Z0-9\/:`
+	extendedAlphaNumeric = alphaNumericChars + ", "
+	regexEnabledChars    = regexp.QuoteMeta(`^$[](){}*+?|&=\`)
+	urlEnabledChars      = regexp.QuoteMeta(`:?&=`)
+)
+
+// IsValidRegex checks if the tested string can be used as a regex, but without any weird character.
+// It includes regex characters for paths that may contain regexes
+var IsValidRegex = regexp.MustCompile("^[/" + alphaNumericChars + regexEnabledChars + "]*$")
+
+// SizeRegex validates sizes understood by NGINX, like 1000, 100k, 1000M
+var SizeRegex = regexp.MustCompile("^(?i)[0-9]+[bkmg]?$")
+
+// URLRegex is used to validate a URL but with only a specific set of characters:
+// It is alphanumericChar + ":", "?", "&"
+// A valid URL would be proto://something.com:port/something?arg=param
+var (
+	// URLIsValidRegex is used on full URLs, containing query strings (:, ? and &)
+	URLIsValidRegex = regexp.MustCompile("^[" + alphaNumericChars + urlEnabledChars + "]*$")
+	// BasicChars is alphanumeric and ".", "-", "_", "~" and ":", usually used on simple host:port/path composition.
+	// This combination can also be used on fields that may contain characters like / (as ns/name)
+	BasicCharsRegex = regexp.MustCompile("^[/" + alphaNumericChars + "]*$")
+	// ExtendedChars is alphanumeric and ".", "-", "_", "~" and ":" plus "," and spaces, usually used on simple host:port/path composition
+	ExtendedCharsRegex = regexp.MustCompile("^[/" + extendedAlphaNumeric + "]*$")
+	// CharsWithSpace is like basic chars, but includes the space character
+	CharsWithSpace = regexp.MustCompile("^[/" + alphaNumericChars + " ]*$")
+	// NGINXVariable allows entries with alphanumeric characters, -, _ and the special "$"
+	NGINXVariable = regexp.MustCompile(`^[A-Za-z0-9\-\_\$\{\}]*$`)
+	// RegexPathWithCapture allows entries that SHOULD start with "/" and may contain alphanumeric + capture
+	// character for regex based paths, like /something/$1/anything/$2
+	RegexPathWithCapture = regexp.MustCompile(`^/[` + alphaNumericChars + `\/\$]*$`)
+	// HeadersVariable defines a regex that allows headers separated by comma
+	HeadersVariable = regexp.MustCompile(`^[A-Za-z0-9-_, ]*$`)
+	// URLWithNginxVariableRegex defines a url that can contain nginx variables.
+	// It is a risky operation
+	URLWithNginxVariableRegex = regexp.MustCompile("^[" + alphaNumericChars + urlEnabledChars + "$]*$")
+)
+
+// ValidateArrayOfServerName validates if all fields on a Server name annotation are
+// regexes. They can be *.something*, ~^www\d+\.example\.com$ but not fancy character
+func ValidateArrayOfServerName(value string) error {
+	for _, fqdn := range strings.Split(value, ",") {
+		if err := ValidateServerName(fqdn); err != nil {
+			return err
+		}
+	}
+	return nil
+}
+
+// ValidateServerName validates if the passed value is an acceptable server name. The server name
+// can contain regex characters, as those are accepted values on nginx configuration
+func ValidateServerName(value string) error {
+	value = strings.TrimSpace(value)
+	if !IsValidRegex.MatchString(value) {
+		return fmt.Errorf("value %s is invalid server name", value)
+	}
+	return nil
+}
+
+// ValidateRegex receives a regex as an argument and uses it to validate
+// the value of the field.
+// Annotation can define if the spaces should be trimmed before validating the value
+func ValidateRegex(regex regexp.Regexp, removeSpace bool) AnnotationValidator {
+	return func(s string) error {
+		if removeSpace {
+			s = strings.ReplaceAll(s, " ", "")
+		}
+		if !regex.MatchString(s) {
+			return fmt.Errorf("value %s is invalid", s)
+		}
+		return nil
+	}
+}
+
+// ValidateOptions receives an array of valid options that can be the value of annotation.
+// If no valid option is found, it will return an error
+func ValidateOptions(options []string, caseSensitive bool, trimSpace bool) AnnotationValidator {
+	return func(s string) error {
+		if trimSpace {
+			s = strings.TrimSpace(s)
+		}
+		if !caseSensitive {
+			s = strings.ToLower(s)
+		}
+		for _, option := range options {
+			if s == option {
+				return nil
+			}
+		}
+		return fmt.Errorf("value does not match any valid option")
+	}
+}
+
+// ValidateBool validates if the specified value is a bool
+func ValidateBool(value string) error {
+	_, err := strconv.ParseBool(value)
+	return err
+}
+
+// ValidateInt validates if the specified value is an integer
+func ValidateInt(value string) error {
+	_, err := strconv.Atoi(value)
+	return err
+}
+
+// ValidateCIDRs validates if the specified value is an array of IPs and CIDRs
+func ValidateCIDRs(value string) error {
+	_, err := net.ParseCIDRs(value)
+	return err
+}
+
+// ValidateDuration validates if the specified value is a valid time
+func ValidateDuration(value string) error {
+	_, err := time.ParseDuration(value)
+	return err
+}
+
+// ValidateNull always return null values and should not be widely used.
+// It is used on the "snippet" annotations, as it is up to the admin to allow its
+// usage, knowing it can be critical!
+func ValidateNull(value string) error {
+	return nil
+}
+
+// ValidateServiceName validates if a provided service name is a valid string
+func ValidateServiceName(value string) error {
+	errs := machineryvalidation.NameIsDNS1035Label(value, false)
+	if len(errs) != 0 {
+		return fmt.Errorf("annotation does not contain a valid service name: %+v", errs)
+	}
+	return nil
+}
+
+// checkAnnotations will check each annotation for:
+// 1 - Does it contain the internal validation and docs config?
+// 2 - Does the ingress contains annotations? (validate null pointers)
+// 3 - Does it contains a validator? Should it contain a validator (not containing is a bug!)
+// 4 - Does the annotation contain aliases? So we should use if the alias is defined an the annotation not.
+// 4 - Runs the validator on the value
+// It will return the full annotation name if all is fine
+func checkAnnotation(name string, ing *networking.Ingress, fields AnnotationFields) (string, error) {
+	var validateFunc AnnotationValidator
+	if fields != nil {
+		config, ok := fields[name]
+		if !ok {
+			return "", fmt.Errorf("annotation does not contain a valid internal configuration, this is an Ingress Controller issue! Please raise an issue on github.com/kubernetes/ingress-nginx")
+		}
+		validateFunc = config.Validator
+	}
+
+	if ing == nil || len(ing.GetAnnotations()) == 0 {
+		return "", ing_errors.ErrMissingAnnotations
+	}
+
+	annotationFullName := GetAnnotationWithPrefix(name)
+	if annotationFullName == "" {
+		return "", ing_errors.ErrInvalidAnnotationName
+	}
+
+	annotationValue := ing.GetAnnotations()[annotationFullName]
+	if fields != nil {
+		if validateFunc == nil {
+			return "", fmt.Errorf("annotation does not contain a validator. This is an ingress-controller bug. Please open an issue")
+		}
+		if annotationValue == "" {
+			for _, annotationAlias := range fields[name].AnnotationAliases {
+				tempAnnotationFullName := GetAnnotationWithPrefix(annotationAlias)
+				if aliasVal := ing.GetAnnotations()[tempAnnotationFullName]; aliasVal != "" {
+					annotationValue = aliasVal
+					annotationFullName = tempAnnotationFullName
+					break
+				}
+			}
+		}
+		// We don't run validation against empty values
+		if EnableAnnotationValidation && annotationValue != "" {
+			if err := validateFunc(annotationValue); err != nil {
+				klog.Warningf("validation error on ingress %s/%s: annotation %s contains invalid value %s", ing.GetNamespace(), ing.GetName(), name, annotationValue)
+				return "", ing_errors.NewValidationError(annotationFullName)
+			}
+		}
+	}
+
+	return annotationFullName, nil
+}
+
+func CheckAnnotationRisk(annotations map[string]string, maxrisk AnnotationRisk, config AnnotationFields) error {
+	var err error
+	for annotation := range annotations {
+		annPure := TrimAnnotationPrefix(annotation)
+		if cfg, ok := config[annPure]; ok && cfg.Risk > maxrisk {
+			err = errors.Join(err, fmt.Errorf("annotation %s is too risky for environment", annotation))
+		}
+	}
+	return err
+}
diff --git a/internal/ingress/annotations/parser/validators_test.go b/internal/ingress/annotations/parser/validators_test.go
new file mode 100644
index 000000000..2aa6cec37
--- /dev/null
+++ b/internal/ingress/annotations/parser/validators_test.go
@@ -0,0 +1,310 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package parser
+
+import (
+	"fmt"
+	"testing"
+
+	networking "k8s.io/api/networking/v1"
+	v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+)
+
+func TestValidateArrayOfServerName(t *testing.T) {
+	tests := []struct {
+		name    string
+		value   string
+		wantErr bool
+	}{
+		{
+			name:    "should accept common name",
+			value:   "something.com,anything.com",
+			wantErr: false,
+		},
+		{
+			name:    "should accept wildcard name",
+			value:   "*.something.com,otherthing.com",
+			wantErr: false,
+		},
+		{
+			name:    "should allow names with spaces between array and some regexes",
+			value:   `~^www\d+\.example\.com$,something.com`,
+			wantErr: false,
+		},
+		{
+			name:    "should allow names with regexes",
+			value:   `http://some.test.env.com:2121/$someparam=1&$someotherparam=2`,
+			wantErr: false,
+		},
+		{
+			name:    "should allow names with wildcard in middle common name",
+			value:   "*.so*mething.com,bla.com",
+			wantErr: false,
+		},
+		{
+			name:    "should deny names with weird characters",
+			value:   "something.com,lolo;xpto.com,nothing.com",
+			wantErr: true,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			if err := ValidateArrayOfServerName(tt.value); (err != nil) != tt.wantErr {
+				t.Errorf("ValidateArrayOfServerName() error = %v, wantErr %v", err, tt.wantErr)
+			}
+		})
+	}
+}
+
+func Test_checkAnnotation(t *testing.T) {
+	type args struct {
+		name   string
+		ing    *networking.Ingress
+		fields AnnotationFields
+	}
+	tests := []struct {
+		name    string
+		args    args
+		want    string
+		wantErr bool
+	}{
+		{
+			name: "null ingress should error",
+			want: "",
+			args: args{
+				name: "some-random-annotation",
+			},
+			wantErr: true,
+		},
+		{
+			name: "not having a validator for a specific annotation is a bug",
+			want: "",
+			args: args{
+				name: "some-new-invalid-annotation",
+				ing: &networking.Ingress{
+					ObjectMeta: v1.ObjectMeta{
+						Annotations: map[string]string{
+							GetAnnotationWithPrefix("some-new-invalid-annotation"): "xpto",
+						},
+					},
+				},
+				fields: AnnotationFields{
+					"otherannotation": AnnotationConfig{
+						Validator: func(value string) error { return nil },
+					},
+				},
+			},
+			wantErr: true,
+		},
+		{
+			name: "annotationconfig found and no validation func defined on annotation is a bug",
+			want: "",
+			args: args{
+				name: "some-new-invalid-annotation",
+				ing: &networking.Ingress{
+					ObjectMeta: v1.ObjectMeta{
+						Annotations: map[string]string{
+							GetAnnotationWithPrefix("some-new-invalid-annotation"): "xpto",
+						},
+					},
+				},
+				fields: AnnotationFields{
+					"some-new-invalid-annotation": AnnotationConfig{},
+				},
+			},
+			wantErr: true,
+		},
+		{
+			name: "no annotation can turn into a null pointer and should fail",
+			want: "",
+			args: args{
+				name: "some-new-invalid-annotation",
+				ing: &networking.Ingress{
+					ObjectMeta: v1.ObjectMeta{},
+				},
+				fields: AnnotationFields{
+					"some-new-invalid-annotation": AnnotationConfig{},
+				},
+			},
+			wantErr: true,
+		},
+		{
+			name: "no AnnotationField config should bypass validations",
+			want: GetAnnotationWithPrefix("some-valid-annotation"),
+			args: args{
+				name: "some-valid-annotation",
+				ing: &networking.Ingress{
+					ObjectMeta: v1.ObjectMeta{
+						Annotations: map[string]string{
+							GetAnnotationWithPrefix("some-valid-annotation"): "xpto",
+						},
+					},
+				},
+			},
+			wantErr: false,
+		},
+		{
+			name: "annotation with invalid value should fail",
+			want: "",
+			args: args{
+				name: "some-new-annotation",
+				ing: &networking.Ingress{
+					ObjectMeta: v1.ObjectMeta{
+						Annotations: map[string]string{
+							GetAnnotationWithPrefix("some-new-annotation"): "xpto1",
+						},
+					},
+				},
+				fields: AnnotationFields{
+					"some-new-annotation": AnnotationConfig{
+						Validator: func(value string) error {
+							if value != "xpto" {
+								return fmt.Errorf("this is an error")
+							}
+							return nil
+						},
+					},
+				},
+			},
+			wantErr: true,
+		},
+		{
+			name: "annotation with valid value should pass",
+			want: GetAnnotationWithPrefix("some-other-annotation"),
+			args: args{
+				name: "some-other-annotation",
+				ing: &networking.Ingress{
+					ObjectMeta: v1.ObjectMeta{
+						Annotations: map[string]string{
+							GetAnnotationWithPrefix("some-other-annotation"): "xpto",
+						},
+					},
+				},
+				fields: AnnotationFields{
+					"some-other-annotation": AnnotationConfig{
+						Validator: func(value string) error {
+							if value != "xpto" {
+								return fmt.Errorf("this is an error")
+							}
+							return nil
+						},
+					},
+				},
+			},
+			wantErr: false,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			got, err := checkAnnotation(tt.args.name, tt.args.ing, tt.args.fields)
+			if (err != nil) != tt.wantErr {
+				t.Errorf("checkAnnotation() error = %v, wantErr %v", err, tt.wantErr)
+				return
+			}
+			if got != tt.want {
+				t.Errorf("checkAnnotation() = %v, want %v", got, tt.want)
+			}
+		})
+	}
+}
+
+func TestCheckAnnotationRisk(t *testing.T) {
+
+	tests := []struct {
+		name        string
+		annotations map[string]string
+		maxrisk     AnnotationRisk
+		config      AnnotationFields
+		wantErr     bool
+	}{
+		{
+			name:    "high risk should not be accepted with maximum medium",
+			maxrisk: AnnotationRiskMedium,
+			annotations: map[string]string{
+				"nginx.ingress.kubernetes.io/bla": "blo",
+				"nginx.ingress.kubernetes.io/bli": "bl3",
+			},
+			config: AnnotationFields{
+				"bla": {
+					Risk: AnnotationRiskHigh,
+				},
+				"bli": {
+					Risk: AnnotationRiskMedium,
+				},
+			},
+			wantErr: true,
+		},
+		{
+			name:    "high risk should  be accepted with maximum critical",
+			maxrisk: AnnotationRiskCritical,
+			annotations: map[string]string{
+				"nginx.ingress.kubernetes.io/bla": "blo",
+				"nginx.ingress.kubernetes.io/bli": "bl3",
+			},
+			config: AnnotationFields{
+				"bla": {
+					Risk: AnnotationRiskHigh,
+				},
+				"bli": {
+					Risk: AnnotationRiskMedium,
+				},
+			},
+			wantErr: false,
+		},
+		{
+			name:    "low risk should  be accepted with maximum low",
+			maxrisk: AnnotationRiskLow,
+			annotations: map[string]string{
+				"nginx.ingress.kubernetes.io/bla": "blo",
+				"nginx.ingress.kubernetes.io/bli": "bl3",
+			},
+			config: AnnotationFields{
+				"bla": {
+					Risk: AnnotationRiskLow,
+				},
+				"bli": {
+					Risk: AnnotationRiskLow,
+				},
+			},
+			wantErr: false,
+		},
+		{
+			name:    "critical risk should  be accepted with maximum critical",
+			maxrisk: AnnotationRiskCritical,
+			annotations: map[string]string{
+				"nginx.ingress.kubernetes.io/bla": "blo",
+				"nginx.ingress.kubernetes.io/bli": "bl3",
+			},
+			config: AnnotationFields{
+				"bla": {
+					Risk: AnnotationRiskCritical,
+				},
+				"bli": {
+					Risk: AnnotationRiskCritical,
+				},
+			},
+			wantErr: false,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			if err := CheckAnnotationRisk(tt.annotations, tt.maxrisk, tt.config); (err != nil) != tt.wantErr {
+				t.Errorf("CheckAnnotationRisk() error = %v, wantErr %v", err, tt.wantErr)
+			}
+		})
+	}
+}
diff --git a/internal/ingress/annotations/portinredirect/main.go b/internal/ingress/annotations/portinredirect/main.go
index 25d665558..7392ea3a6 100644
--- a/internal/ingress/annotations/portinredirect/main.go
+++ b/internal/ingress/annotations/portinredirect/main.go
@@ -23,22 +23,51 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	portsInRedirectAnnotation = "use-port-in-redirects"
+)
+
+var portsInRedirectAnnotations = parser.Annotation{
+	Group: "redirect",
+	Annotations: parser.AnnotationFields{
+		portsInRedirectAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow, // Low, as it allows just a set of options
+			Documentation: `Enables or disables specifying the port in absolute redirects issued by nginx.`,
+		},
+	},
+}
+
 type portInRedirect struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new port in redirect annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return portInRedirect{r}
+	return portInRedirect{
+		r:                r,
+		annotationConfig: portsInRedirectAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress
 // rule used to indicate if the redirects must
 func (a portInRedirect) Parse(ing *networking.Ingress) (interface{}, error) {
-	up, err := parser.GetBoolAnnotation("use-port-in-redirects", ing)
+	up, err := parser.GetBoolAnnotation(portsInRedirectAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		return a.r.GetDefaultBackend().UsePortInRedirects, nil
 	}
 
 	return up, nil
 }
+
+func (a portInRedirect) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a portInRedirect) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, portsInRedirectAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/portinredirect/main_test.go b/internal/ingress/annotations/portinredirect/main_test.go
index 71afd4cdf..f5806e01a 100644
--- a/internal/ingress/annotations/portinredirect/main_test.go
+++ b/internal/ingress/annotations/portinredirect/main_test.go
@@ -17,7 +17,6 @@ limitations under the License.
 package portinredirect
 
 import (
-	"fmt"
 	"testing"
 
 	api "k8s.io/api/core/v1"
@@ -84,23 +83,24 @@ func (m mockBackend) GetDefaultBackend() defaults.Backend {
 func TestPortInRedirect(t *testing.T) {
 	tests := []struct {
 		title   string
-		usePort *bool
+		usePort string
 		def     bool
 		exp     bool
 	}{
-		{"false - default false", newFalse(), false, false},
-		{"false - default true", newFalse(), true, false},
-		{"no annotation - default false", nil, false, false},
-		{"no annotation - default true", nil, true, true},
-		{"true - default true", newTrue(), true, true},
+		{"false - default false", "false", false, false},
+		{"false - default true", "false", true, false},
+		{"no annotation - default false", "", false, false},
+		{"no annotation - default false", "not-a-bool", false, false},
+		{"no annotation - default true", "", true, true},
+		{"true - default true", "true", true, true},
 	}
 
 	for _, test := range tests {
 		ing := buildIngress()
 
 		data := map[string]string{}
-		if test.usePort != nil {
-			data[parser.GetAnnotationWithPrefix("use-port-in-redirects")] = fmt.Sprintf("%v", *test.usePort)
+		if test.usePort != "" {
+			data[parser.GetAnnotationWithPrefix(portsInRedirectAnnotation)] = test.usePort
 		}
 		ing.SetAnnotations(data)
 
@@ -118,13 +118,3 @@ func TestPortInRedirect(t *testing.T) {
 		}
 	}
 }
-
-func newTrue() *bool {
-	b := true
-	return &b
-}
-
-func newFalse() *bool {
-	b := false
-	return &b
-}
diff --git a/internal/ingress/annotations/proxy/main.go b/internal/ingress/annotations/proxy/main.go
index 3a89b8855..a2d10ca90 100644
--- a/internal/ingress/annotations/proxy/main.go
+++ b/internal/ingress/annotations/proxy/main.go
@@ -17,12 +17,150 @@ limitations under the License.
 package proxy
 
 import (
+	"regexp"
+
 	networking "k8s.io/api/networking/v1"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	proxyConnectTimeoutAnnotation      = "proxy-connect-timeout"
+	proxySendTimeoutAnnotation         = "proxy-send-timeout"
+	proxyReadTimeoutAnnotation         = "proxy-read-timeout"
+	proxyBuffersNumberAnnotation       = "proxy-buffers-number"
+	proxyBufferSizeAnnotation          = "proxy-buffer-size"
+	proxyCookiePathAnnotation          = "proxy-cookie-path"
+	proxyCookieDomainAnnotation        = "proxy-cookie-domain"
+	proxyBodySizeAnnotation            = "proxy-body-size"
+	proxyNextUpstreamAnnotation        = "proxy-next-upstream"
+	proxyNextUpstreamTimeoutAnnotation = "proxy-next-upstream-timeout"
+	proxyNextUpstreamTriesAnnotation   = "proxy-next-upstream-tries"
+	proxyRequestBufferingAnnotation    = "proxy-request-buffering"
+	proxyRedirectFromAnnotation        = "proxy-redirect-from"
+	proxyRedirectToAnnotation          = "proxy-redirect-to"
+	proxyBufferingAnnotation           = "proxy-buffering"
+	proxyHTTPVersionAnnotation         = "proxy-http-version"
+	proxyMaxTempFileSizeAnnotation     = "proxy-max-temp-file-size"
+)
+
+var (
+	validUpstreamAnnotation = regexp.MustCompile(`^((error|timeout|invalid_header|http_500|http_502|http_503|http_504|http_403|http_404|http_429|non_idempotent|off)\s?)+$`)
+)
+
+var proxyAnnotations = parser.Annotation{
+	Group: "backend",
+	Annotations: parser.AnnotationFields{
+		proxyConnectTimeoutAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation allows setting the timeout in seconds of the connect operation to the backend.`,
+		},
+		proxySendTimeoutAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation allows setting the timeout in seconds of the send operation to the backend.`,
+		},
+		proxyReadTimeoutAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation allows setting the timeout in seconds of the read operation to the backend.`,
+		},
+		proxyBuffersNumberAnnotation: {
+			Validator: parser.ValidateInt,
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `This annotation sets the number of the buffers in proxy_buffers used for reading the first part of the response received from the proxied server. 
+			By default proxy buffers number is set as 4`,
+		},
+		proxyBufferSizeAnnotation: {
+			Validator: parser.ValidateRegex(*parser.SizeRegex, true),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `This annotation sets the size of the buffer proxy_buffer_size used for reading the first part of the response received from the proxied server. 
+			By default proxy buffer size is set as "4k".`,
+		},
+		proxyCookiePathAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.URLIsValidRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation sets a text that should be changed in the path attribute of the "Set-Cookie" header fields of a proxied server response.`,
+		},
+		proxyCookieDomainAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation ets a text that should be changed in the domain attribute of the "Set-Cookie" header fields of a proxied server response.`,
+		},
+		proxyBodySizeAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.SizeRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation allows setting the maximum allowed size of a client request body.`,
+		},
+		proxyNextUpstreamAnnotation: {
+			Validator: parser.ValidateRegex(*validUpstreamAnnotation, false),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation defines when the next upstream should be used. 
+			This annotation reflect the directive https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_next_upstream 
+			and only the allowed values on upstream are allowed here.`,
+		},
+		proxyNextUpstreamTimeoutAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation limits the time during which a request can be passed to the next server`,
+		},
+		proxyNextUpstreamTriesAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation limits the number of possible tries for passing a request to the next server`,
+		},
+		proxyRequestBufferingAnnotation: {
+			Validator:     parser.ValidateOptions([]string{"on", "off"}, true, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation enables or disables buffering of a client request body.`,
+		},
+		proxyRedirectFromAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.URLIsValidRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `The annotations proxy-redirect-from and proxy-redirect-to will set the first and second parameters of NGINX's proxy_redirect directive respectively`,
+		},
+		proxyRedirectToAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.URLIsValidRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `The annotations proxy-redirect-from and proxy-redirect-to will set the first and second parameters of NGINX's proxy_redirect directive respectively`,
+		},
+		proxyBufferingAnnotation: {
+			Validator:     parser.ValidateOptions([]string{"on", "off"}, true, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation enables or disables buffering of responses from the proxied server. It can be "on" or "off"`,
+		},
+		proxyHTTPVersionAnnotation: {
+			Validator:     parser.ValidateOptions([]string{"1.0", "1.1"}, true, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotations sets the HTTP protocol version for proxying. Can be "1.0" or "1.1".`,
+		},
+		proxyMaxTempFileSizeAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.SizeRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation defines the maximum size of a temporary file when buffering responses.`,
+		},
+	},
+}
+
 // Config returns the proxy timeout to use in the upstream server/s
 type Config struct {
 	BodySize             string `json:"bodySize"`
@@ -109,12 +247,15 @@ func (l1 *Config) Equal(l2 *Config) bool {
 }
 
 type proxy struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new reverse proxy configuration annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return proxy{r}
+	return proxy{r: r,
+		annotationConfig: proxyAnnotations,
+	}
 }
 
 // ParseAnnotations parses the annotations contained in the ingress
@@ -125,90 +266,99 @@ func (a proxy) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	var err error
 
-	config.ConnectTimeout, err = parser.GetIntAnnotation("proxy-connect-timeout", ing)
+	config.ConnectTimeout, err = parser.GetIntAnnotation(proxyConnectTimeoutAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.ConnectTimeout = defBackend.ProxyConnectTimeout
 	}
 
-	config.SendTimeout, err = parser.GetIntAnnotation("proxy-send-timeout", ing)
+	config.SendTimeout, err = parser.GetIntAnnotation(proxySendTimeoutAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.SendTimeout = defBackend.ProxySendTimeout
 	}
 
-	config.ReadTimeout, err = parser.GetIntAnnotation("proxy-read-timeout", ing)
+	config.ReadTimeout, err = parser.GetIntAnnotation(proxyReadTimeoutAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.ReadTimeout = defBackend.ProxyReadTimeout
 	}
 
-	config.BuffersNumber, err = parser.GetIntAnnotation("proxy-buffers-number", ing)
+	config.BuffersNumber, err = parser.GetIntAnnotation(proxyBuffersNumberAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.BuffersNumber = defBackend.ProxyBuffersNumber
 	}
 
-	config.BufferSize, err = parser.GetStringAnnotation("proxy-buffer-size", ing)
+	config.BufferSize, err = parser.GetStringAnnotation(proxyBufferSizeAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.BufferSize = defBackend.ProxyBufferSize
 	}
 
-	config.CookiePath, err = parser.GetStringAnnotation("proxy-cookie-path", ing)
+	config.CookiePath, err = parser.GetStringAnnotation(proxyCookiePathAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.CookiePath = defBackend.ProxyCookiePath
 	}
 
-	config.CookieDomain, err = parser.GetStringAnnotation("proxy-cookie-domain", ing)
+	config.CookieDomain, err = parser.GetStringAnnotation(proxyCookieDomainAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.CookieDomain = defBackend.ProxyCookieDomain
 	}
 
-	config.BodySize, err = parser.GetStringAnnotation("proxy-body-size", ing)
+	config.BodySize, err = parser.GetStringAnnotation(proxyBodySizeAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.BodySize = defBackend.ProxyBodySize
 	}
 
-	config.NextUpstream, err = parser.GetStringAnnotation("proxy-next-upstream", ing)
+	config.NextUpstream, err = parser.GetStringAnnotation(proxyNextUpstreamAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.NextUpstream = defBackend.ProxyNextUpstream
 	}
 
-	config.NextUpstreamTimeout, err = parser.GetIntAnnotation("proxy-next-upstream-timeout", ing)
+	config.NextUpstreamTimeout, err = parser.GetIntAnnotation(proxyNextUpstreamTimeoutAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.NextUpstreamTimeout = defBackend.ProxyNextUpstreamTimeout
 	}
 
-	config.NextUpstreamTries, err = parser.GetIntAnnotation("proxy-next-upstream-tries", ing)
+	config.NextUpstreamTries, err = parser.GetIntAnnotation(proxyNextUpstreamTriesAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.NextUpstreamTries = defBackend.ProxyNextUpstreamTries
 	}
 
-	config.RequestBuffering, err = parser.GetStringAnnotation("proxy-request-buffering", ing)
+	config.RequestBuffering, err = parser.GetStringAnnotation(proxyRequestBufferingAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.RequestBuffering = defBackend.ProxyRequestBuffering
 	}
 
-	config.ProxyRedirectFrom, err = parser.GetStringAnnotation("proxy-redirect-from", ing)
+	config.ProxyRedirectFrom, err = parser.GetStringAnnotation(proxyRedirectFromAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.ProxyRedirectFrom = defBackend.ProxyRedirectFrom
 	}
 
-	config.ProxyRedirectTo, err = parser.GetStringAnnotation("proxy-redirect-to", ing)
+	config.ProxyRedirectTo, err = parser.GetStringAnnotation(proxyRedirectToAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.ProxyRedirectTo = defBackend.ProxyRedirectTo
 	}
 
-	config.ProxyBuffering, err = parser.GetStringAnnotation("proxy-buffering", ing)
+	config.ProxyBuffering, err = parser.GetStringAnnotation(proxyBufferingAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.ProxyBuffering = defBackend.ProxyBuffering
 	}
 
-	config.ProxyHTTPVersion, err = parser.GetStringAnnotation("proxy-http-version", ing)
+	config.ProxyHTTPVersion, err = parser.GetStringAnnotation(proxyHTTPVersionAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.ProxyHTTPVersion = defBackend.ProxyHTTPVersion
 	}
 
-	config.ProxyMaxTempFileSize, err = parser.GetStringAnnotation("proxy-max-temp-file-size", ing)
+	config.ProxyMaxTempFileSize, err = parser.GetStringAnnotation(proxyMaxTempFileSizeAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.ProxyMaxTempFileSize = defBackend.ProxyMaxTempFileSize
 	}
 
 	return config, nil
 }
+
+func (a proxy) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a proxy) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, proxyAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/proxy/main_test.go b/internal/ingress/annotations/proxy/main_test.go
index e377ccb19..fa185551b 100644
--- a/internal/ingress/annotations/proxy/main_test.go
+++ b/internal/ingress/annotations/proxy/main_test.go
@@ -161,6 +161,74 @@ func TestProxy(t *testing.T) {
 	}
 }
 
+func TestProxyComplex(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix("proxy-connect-timeout")] = "1"
+	data[parser.GetAnnotationWithPrefix("proxy-send-timeout")] = "2"
+	data[parser.GetAnnotationWithPrefix("proxy-read-timeout")] = "3"
+	data[parser.GetAnnotationWithPrefix("proxy-buffers-number")] = "8"
+	data[parser.GetAnnotationWithPrefix("proxy-buffer-size")] = "1k"
+	data[parser.GetAnnotationWithPrefix("proxy-body-size")] = "2k"
+	data[parser.GetAnnotationWithPrefix("proxy-next-upstream")] = "error http_502"
+	data[parser.GetAnnotationWithPrefix("proxy-next-upstream-timeout")] = "5"
+	data[parser.GetAnnotationWithPrefix("proxy-next-upstream-tries")] = "3"
+	data[parser.GetAnnotationWithPrefix("proxy-request-buffering")] = "off"
+	data[parser.GetAnnotationWithPrefix("proxy-buffering")] = "on"
+	data[parser.GetAnnotationWithPrefix("proxy-http-version")] = "1.0"
+	data[parser.GetAnnotationWithPrefix("proxy-max-temp-file-size")] = "128k"
+	ing.SetAnnotations(data)
+
+	i, err := NewParser(mockBackend{}).Parse(ing)
+	if err != nil {
+		t.Fatalf("unexpected error parsing a valid")
+	}
+	p, ok := i.(*Config)
+	if !ok {
+		t.Fatalf("expected a Config type")
+	}
+	if p.ConnectTimeout != 1 {
+		t.Errorf("expected 1 as connect-timeout but returned %v", p.ConnectTimeout)
+	}
+	if p.SendTimeout != 2 {
+		t.Errorf("expected 2 as send-timeout but returned %v", p.SendTimeout)
+	}
+	if p.ReadTimeout != 3 {
+		t.Errorf("expected 3 as read-timeout but returned %v", p.ReadTimeout)
+	}
+	if p.BuffersNumber != 8 {
+		t.Errorf("expected 8 as proxy-buffers-number but returned %v", p.BuffersNumber)
+	}
+	if p.BufferSize != "1k" {
+		t.Errorf("expected 1k as buffer-size but returned %v", p.BufferSize)
+	}
+	if p.BodySize != "2k" {
+		t.Errorf("expected 2k as body-size but returned %v", p.BodySize)
+	}
+	if p.NextUpstream != "error http_502" {
+		t.Errorf("expected off as next-upstream but returned %v", p.NextUpstream)
+	}
+	if p.NextUpstreamTimeout != 5 {
+		t.Errorf("expected 5 as next-upstream-timeout but returned %v", p.NextUpstreamTimeout)
+	}
+	if p.NextUpstreamTries != 3 {
+		t.Errorf("expected 3 as next-upstream-tries but returned %v", p.NextUpstreamTries)
+	}
+	if p.RequestBuffering != "off" {
+		t.Errorf("expected off as request-buffering but returned %v", p.RequestBuffering)
+	}
+	if p.ProxyBuffering != "on" {
+		t.Errorf("expected on as proxy-buffering but returned %v", p.ProxyBuffering)
+	}
+	if p.ProxyHTTPVersion != "1.0" {
+		t.Errorf("expected 1.0 as proxy-http-version but returned %v", p.ProxyHTTPVersion)
+	}
+	if p.ProxyMaxTempFileSize != "128k" {
+		t.Errorf("expected 128k as proxy-max-temp-file-size but returned %v", p.ProxyMaxTempFileSize)
+	}
+}
+
 func TestProxyWithNoAnnotation(t *testing.T) {
 	ing := buildIngress()
 
diff --git a/internal/ingress/annotations/proxyssl/main.go b/internal/ingress/annotations/proxyssl/main.go
index 22f49b3eb..40ee18aa0 100644
--- a/internal/ingress/annotations/proxyssl/main.go
+++ b/internal/ingress/annotations/proxyssl/main.go
@@ -24,9 +24,11 @@ import (
 
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/errors"
 	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 	"k8s.io/ingress-nginx/internal/k8s"
+	"k8s.io/klog/v2"
 )
 
 const (
@@ -39,9 +41,73 @@ const (
 
 var (
 	proxySSLOnOffRegex    = regexp.MustCompile(`^(on|off)$`)
-	proxySSLProtocolRegex = regexp.MustCompile(`^(SSLv2|SSLv3|TLSv1|TLSv1\.1|TLSv1\.2|TLSv1\.3)$`)
+	proxySSLProtocolRegex = regexp.MustCompile(`^(SSLv2|SSLv3|TLSv1|TLSv1\.1|TLSv1\.2|TLSv1\.3| )*$`)
+	proxySSLCiphersRegex  = regexp.MustCompile(`^[A-Za-z0-9\+\:\_\-\!]*$`)
 )
 
+const (
+	proxySSLSecretAnnotation      = "proxy-ssl-secret"
+	proxySSLCiphersAnnotation     = "proxy-ssl-ciphers"
+	proxySSLProtocolsAnnotation   = "proxy-ssl-protocols"
+	proxySSLNameAnnotation        = "proxy-ssl-name"
+	proxySSLVerifyAnnotation      = "proxy-ssl-verify"
+	proxySSLVerifyDepthAnnotation = "proxy-ssl-verify-depth"
+	proxySSLServerNameAnnotation  = "proxy-ssl-server-name"
+)
+
+var proxySSLAnnotation = parser.Annotation{
+	Group: "proxy",
+	Annotations: parser.AnnotationFields{
+		proxySSLSecretAnnotation: {
+			Validator: parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation specifies a Secret with the certificate tls.crt, key tls.key in PEM format used for authentication to a proxied HTTPS server. 
+			It should also contain trusted CA certificates ca.crt in PEM format used to verify the certificate of the proxied HTTPS server. 
+			This annotation expects the Secret name in the form "namespace/secretName"
+			Just secrets on the same namespace of the ingress can be used.`,
+		},
+		proxySSLCiphersAnnotation: {
+			Validator: parser.ValidateRegex(*proxySSLCiphersRegex, true),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation Specifies the enabled ciphers for requests to a proxied HTTPS server. 
+			The ciphers are specified in the format understood by the OpenSSL library.`,
+		},
+		proxySSLProtocolsAnnotation: {
+			Validator:     parser.ValidateRegex(*proxySSLProtocolRegex, true),
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation enables the specified protocols for requests to a proxied HTTPS server.`,
+		},
+		proxySSLNameAnnotation: {
+			Validator: parser.ValidateServerName,
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskHigh,
+			Documentation: `This annotation allows to set proxy_ssl_name. This allows overriding the server name used to verify the certificate of the proxied HTTPS server. 
+			This value is also passed through SNI when a connection is established to the proxied HTTPS server.`,
+		},
+		proxySSLVerifyAnnotation: {
+			Validator:     parser.ValidateRegex(*proxySSLOnOffRegex, true),
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation enables or disables verification of the proxied HTTPS server certificate. (default: off)`,
+		},
+		proxySSLVerifyDepthAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation Sets the verification depth in the proxied HTTPS server certificates chain. (default: 1).`,
+		},
+		proxySSLServerNameAnnotation: {
+			Validator:     parser.ValidateRegex(*proxySSLOnOffRegex, true),
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation enables passing of the server name through TLS Server Name Indication extension (SNI, RFC 6066) when establishing a connection with the proxied HTTPS server.`,
+		},
+	},
+}
+
 // Config contains the AuthSSLCert used for mutual authentication
 // and the configured VerifyDepth
 type Config struct {
@@ -85,11 +151,14 @@ func (pssl1 *Config) Equal(pssl2 *Config) bool {
 
 // NewParser creates a new TLS authentication annotation parser
 func NewParser(resolver resolver.Resolver) parser.IngressAnnotation {
-	return proxySSL{resolver}
+	return proxySSL{
+		r:                resolver,
+		annotationConfig: proxySSLAnnotation}
 }
 
 type proxySSL struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 func sortProtocols(protocols string) string {
@@ -120,16 +189,22 @@ func (p proxySSL) Parse(ing *networking.Ingress) (interface{}, error) {
 	var err error
 	config := &Config{}
 
-	proxysslsecret, err := parser.GetStringAnnotation("proxy-ssl-secret", ing)
+	proxysslsecret, err := parser.GetStringAnnotation(proxySSLSecretAnnotation, ing, p.annotationConfig.Annotations)
 	if err != nil {
 		return &Config{}, err
 	}
 
-	_, _, err = k8s.ParseNameNS(proxysslsecret)
+	ns, _, err := k8s.ParseNameNS(proxysslsecret)
 	if err != nil {
 		return &Config{}, ing_errors.NewLocationDenied(err.Error())
 	}
 
+	secCfg := p.r.GetSecurityConfiguration()
+	// We don't accept different namespaces for secrets.
+	if !secCfg.AllowCrossNamespaceResources && ns != ing.Namespace {
+		return &Config{}, ing_errors.NewLocationDenied("cross namespace secrets are not supported")
+	}
+
 	proxyCert, err := p.r.GetAuthCertificate(proxysslsecret)
 	if err != nil {
 		e := fmt.Errorf("error obtaining certificate: %w", err)
@@ -137,37 +212,55 @@ func (p proxySSL) Parse(ing *networking.Ingress) (interface{}, error) {
 	}
 	config.AuthSSLCert = *proxyCert
 
-	config.Ciphers, err = parser.GetStringAnnotation("proxy-ssl-ciphers", ing)
+	config.Ciphers, err = parser.GetStringAnnotation(proxySSLCiphersAnnotation, ing, p.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("invalid value passed to proxy-ssl-ciphers, defaulting to %s", defaultProxySSLCiphers)
+		}
 		config.Ciphers = defaultProxySSLCiphers
 	}
 
-	config.Protocols, err = parser.GetStringAnnotation("proxy-ssl-protocols", ing)
+	config.Protocols, err = parser.GetStringAnnotation(proxySSLProtocolsAnnotation, ing, p.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("invalid value passed to proxy-ssl-protocols, defaulting to %s", defaultProxySSLProtocols)
+		}
 		config.Protocols = defaultProxySSLProtocols
 	} else {
 		config.Protocols = sortProtocols(config.Protocols)
 	}
 
-	config.ProxySSLName, err = parser.GetStringAnnotation("proxy-ssl-name", ing)
+	config.ProxySSLName, err = parser.GetStringAnnotation(proxySSLNameAnnotation, ing, p.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("invalid value passed to proxy-ssl-name, defaulting to empty")
+		}
 		config.ProxySSLName = ""
 	}
 
-	config.Verify, err = parser.GetStringAnnotation("proxy-ssl-verify", ing)
+	config.Verify, err = parser.GetStringAnnotation(proxySSLVerifyAnnotation, ing, p.annotationConfig.Annotations)
 	if err != nil || !proxySSLOnOffRegex.MatchString(config.Verify) {
 		config.Verify = defaultProxySSLVerify
 	}
 
-	config.VerifyDepth, err = parser.GetIntAnnotation("proxy-ssl-verify-depth", ing)
+	config.VerifyDepth, err = parser.GetIntAnnotation(proxySSLVerifyDepthAnnotation, ing, p.annotationConfig.Annotations)
 	if err != nil || config.VerifyDepth == 0 {
 		config.VerifyDepth = defaultProxySSLVerifyDepth
 	}
 
-	config.ProxySSLServerName, err = parser.GetStringAnnotation("proxy-ssl-server-name", ing)
+	config.ProxySSLServerName, err = parser.GetStringAnnotation(proxySSLServerNameAnnotation, ing, p.annotationConfig.Annotations)
 	if err != nil || !proxySSLOnOffRegex.MatchString(config.ProxySSLServerName) {
 		config.ProxySSLServerName = defaultProxySSLServerName
 	}
 
 	return config, nil
 }
+
+func (p proxySSL) GetDocumentation() parser.AnnotationFields {
+	return p.annotationConfig.Annotations
+}
+
+func (a proxySSL) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, proxySSLAnnotation.Annotations)
+}
diff --git a/internal/ingress/annotations/proxyssl/main_test.go b/internal/ingress/annotations/proxyssl/main_test.go
index 29949796c..edd65343e 100644
--- a/internal/ingress/annotations/proxyssl/main_test.go
+++ b/internal/ingress/annotations/proxyssl/main_test.go
@@ -93,7 +93,7 @@ func TestAnnotations(t *testing.T) {
 	ing := buildIngress()
 	data := map[string]string{}
 
-	data[parser.GetAnnotationWithPrefix("proxy-ssl-secret")] = "default/demo-secret"
+	data[parser.GetAnnotationWithPrefix(proxySSLSecretAnnotation)] = "default/demo-secret"
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-ciphers")] = "HIGH:-SHA"
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-name")] = "$host"
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-protocols")] = "TLSv1.3 SSLv2 TLSv1   TLSv1.2"
diff --git a/internal/ingress/annotations/ratelimit/main.go b/internal/ingress/annotations/ratelimit/main.go
index 84a5f10f0..39161a2c0 100644
--- a/internal/ingress/annotations/ratelimit/main.go
+++ b/internal/ingress/annotations/ratelimit/main.go
@@ -24,6 +24,7 @@ import (
 	networking "k8s.io/api/networking/v1"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 	"k8s.io/ingress-nginx/internal/net"
 	"k8s.io/ingress-nginx/pkg/util/sets"
@@ -58,7 +59,7 @@ type Config struct {
 
 	ID string `json:"id"`
 
-	Whitelist []string `json:"whitelist"`
+	Allowlist []string `json:"allowlist"`
 }
 
 // Equal tests for equality between two RateLimit types
@@ -90,11 +91,11 @@ func (rt1 *Config) Equal(rt2 *Config) bool {
 	if rt1.Name != rt2.Name {
 		return false
 	}
-	if len(rt1.Whitelist) != len(rt2.Whitelist) {
+	if len(rt1.Allowlist) != len(rt2.Allowlist) {
 		return false
 	}
 
-	return sets.StringElementsMatch(rt1.Whitelist, rt2.Whitelist)
+	return sets.StringElementsMatch(rt1.Allowlist, rt2.Allowlist)
 }
 
 // Zone returns information about the NGINX rate limit (limit_req_zone)
@@ -131,43 +132,121 @@ func (z1 *Zone) Equal(z2 *Zone) bool {
 	return true
 }
 
+const (
+	limitRateAnnotation                = "limit-rate"
+	limitRateAfterAnnotation           = "limit-rate-after"
+	limitRateRPMAnnotation             = "limit-rpm"
+	limitRateRPSAnnotation             = "limit-rps"
+	limitRateConnectionsAnnotation     = "limit-connections"
+	limitRateBurstMultiplierAnnotation = "limit-burst-multiplier"
+	limitWhitelistAnnotation           = "limit-whitelist" // This annotation is an alias for limit-allowlist
+	limitAllowlistAnnotation           = "limit-allowlist"
+)
+
+var rateLimitAnnotations = parser.Annotation{
+	Group: "rate-limit",
+	Annotations: parser.AnnotationFields{
+		limitRateAnnotation: {
+			Validator: parser.ValidateInt,
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow, // Low, as it allows just a set of options
+			Documentation: `Limits the rate of response transmission to a client. The rate is specified in bytes per second. 
+			The zero value disables rate limiting. The limit is set per a request, and so if a client simultaneously opens two connections, the overall rate will be twice as much as the specified limit.
+			References: https://nginx.org/en/docs/http/ngx_http_core_module.html#limit_rate`,
+		},
+		limitRateAfterAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow, // Low, as it allows just a set of options
+			Documentation: `Sets the initial amount after which the further transmission of a response to a client will be rate limited.`,
+		},
+		limitRateRPMAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow, // Low, as it allows just a set of options
+			Documentation: `Requests per minute that will be allowed.`,
+		},
+		limitRateRPSAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow, // Low, as it allows just a set of options
+			Documentation: `Requests per second that will be allowed.`,
+		},
+		limitRateConnectionsAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow, // Low, as it allows just a set of options
+			Documentation: `Number of connections that will be allowed`,
+		},
+		limitRateBurstMultiplierAnnotation: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow, // Low, as it allows just a set of options
+			Documentation: `Burst multiplier for a limit-rate enabled location.`,
+		},
+		limitAllowlistAnnotation: {
+			Validator:         parser.ValidateCIDRs,
+			Scope:             parser.AnnotationScopeLocation,
+			Risk:              parser.AnnotationRiskLow, // Low, as it allows just a set of options
+			Documentation:     `List of CIDR/IP addresses that will not be rate-limited.`,
+			AnnotationAliases: []string{limitWhitelistAnnotation},
+		},
+	},
+}
+
 type ratelimit struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new ratelimit annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return ratelimit{r}
+	return ratelimit{
+		r:                r,
+		annotationConfig: rateLimitAnnotations,
+	}
 }
 
 // ParseAnnotations parses the annotations contained in the ingress
 // rule used to rewrite the defined paths
 func (a ratelimit) Parse(ing *networking.Ingress) (interface{}, error) {
 	defBackend := a.r.GetDefaultBackend()
-	lr, err := parser.GetIntAnnotation("limit-rate", ing)
+	lr, err := parser.GetIntAnnotation(limitRateAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		lr = defBackend.LimitRate
 	}
-	lra, err := parser.GetIntAnnotation("limit-rate-after", ing)
+	lra, err := parser.GetIntAnnotation(limitRateAfterAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		lra = defBackend.LimitRateAfter
 	}
 
-	rpm, _ := parser.GetIntAnnotation("limit-rpm", ing)
-	rps, _ := parser.GetIntAnnotation("limit-rps", ing)
-	conn, _ := parser.GetIntAnnotation("limit-connections", ing)
-	burstMultiplier, err := parser.GetIntAnnotation("limit-burst-multiplier", ing)
+	rpm, err := parser.GetIntAnnotation(limitRateRPMAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil && errors.IsValidationError(err) {
+		return nil, err
+	}
+	rps, err := parser.GetIntAnnotation(limitRateRPSAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil && errors.IsValidationError(err) {
+		return nil, err
+	}
+	conn, err := parser.GetIntAnnotation(limitRateConnectionsAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil && errors.IsValidationError(err) {
+		return nil, err
+	}
+	burstMultiplier, err := parser.GetIntAnnotation(limitRateBurstMultiplierAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		burstMultiplier = defBurst
 	}
 
-	val, _ := parser.GetStringAnnotation("limit-whitelist", ing)
-
-	cidrs, err := net.ParseCIDRs(val)
-	if err != nil {
+	val, err := parser.GetStringAnnotation(limitAllowlistAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil && errors.IsValidationError(err) {
 		return nil, err
 	}
 
+	cidrs, errCidr := net.ParseCIDRs(val)
+	if errCidr != nil {
+		return nil, errCidr
+	}
+
 	if rpm == 0 && rps == 0 && conn == 0 {
 		return &Config{
 			Connections:    Zone{},
@@ -203,7 +282,7 @@ func (a ratelimit) Parse(ing *networking.Ingress) (interface{}, error) {
 		LimitRateAfter: lra,
 		Name:           zoneName,
 		ID:             encode(zoneName),
-		Whitelist:      cidrs,
+		Allowlist:      cidrs,
 	}, nil
 }
 
@@ -211,3 +290,12 @@ func encode(s string) string {
 	str := base64.URLEncoding.EncodeToString([]byte(s))
 	return strings.Replace(str, "=", "", -1)
 }
+
+func (a ratelimit) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a ratelimit) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, rateLimitAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/ratelimit/main_test.go b/internal/ingress/annotations/ratelimit/main_test.go
index 9f101cc3b..d3a2cc0e9 100644
--- a/internal/ingress/annotations/ratelimit/main_test.go
+++ b/internal/ingress/annotations/ratelimit/main_test.go
@@ -25,6 +25,7 @@ import (
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/defaults"
+	"k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
@@ -85,8 +86,8 @@ func (m mockBackend) GetDefaultBackend() defaults.Backend {
 func TestWithoutAnnotations(t *testing.T) {
 	ing := buildIngress()
 	_, err := NewParser(mockBackend{}).Parse(ing)
-	if err != nil {
-		t.Error("unexpected error with ingress without annotations")
+	if err != nil && !errors.IsMissingAnnotations(err) {
+		t.Errorf("unexpected error with ingress without annotations: %s", err)
 	}
 }
 
@@ -94,22 +95,22 @@ func TestRateLimiting(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("limit-connections")] = "0"
-	data[parser.GetAnnotationWithPrefix("limit-rps")] = "0"
-	data[parser.GetAnnotationWithPrefix("limit-rpm")] = "0"
+	data[parser.GetAnnotationWithPrefix(limitRateConnectionsAnnotation)] = "0"
+	data[parser.GetAnnotationWithPrefix(limitRateRPSAnnotation)] = "0"
+	data[parser.GetAnnotationWithPrefix(limitRateRPMAnnotation)] = "0"
 	ing.SetAnnotations(data)
 
 	_, err := NewParser(mockBackend{}).Parse(ing)
 	if err != nil {
-		t.Errorf("unexpected error with invalid limits (0)")
+		t.Errorf("unexpected error with invalid limits (0): %s", err)
 	}
 
 	data = map[string]string{}
-	data[parser.GetAnnotationWithPrefix("limit-connections")] = "5"
-	data[parser.GetAnnotationWithPrefix("limit-rps")] = "100"
-	data[parser.GetAnnotationWithPrefix("limit-rpm")] = "10"
-	data[parser.GetAnnotationWithPrefix("limit-rate-after")] = "100"
-	data[parser.GetAnnotationWithPrefix("limit-rate")] = "10"
+	data[parser.GetAnnotationWithPrefix(limitRateConnectionsAnnotation)] = "5"
+	data[parser.GetAnnotationWithPrefix(limitRateRPSAnnotation)] = "100"
+	data[parser.GetAnnotationWithPrefix(limitRateRPMAnnotation)] = "10"
+	data[parser.GetAnnotationWithPrefix(limitRateAfterAnnotation)] = "100"
+	data[parser.GetAnnotationWithPrefix(limitRateAnnotation)] = "10"
 
 	ing.SetAnnotations(data)
 
@@ -147,12 +148,12 @@ func TestRateLimiting(t *testing.T) {
 	}
 
 	data = map[string]string{}
-	data[parser.GetAnnotationWithPrefix("limit-connections")] = "5"
-	data[parser.GetAnnotationWithPrefix("limit-rps")] = "100"
-	data[parser.GetAnnotationWithPrefix("limit-rpm")] = "10"
-	data[parser.GetAnnotationWithPrefix("limit-rate-after")] = "100"
-	data[parser.GetAnnotationWithPrefix("limit-rate")] = "10"
-	data[parser.GetAnnotationWithPrefix("limit-burst-multiplier")] = "3"
+	data[parser.GetAnnotationWithPrefix(limitRateConnectionsAnnotation)] = "5"
+	data[parser.GetAnnotationWithPrefix(limitRateRPSAnnotation)] = "100"
+	data[parser.GetAnnotationWithPrefix(limitRateRPMAnnotation)] = "10"
+	data[parser.GetAnnotationWithPrefix(limitRateAfterAnnotation)] = "100"
+	data[parser.GetAnnotationWithPrefix(limitRateAnnotation)] = "10"
+	data[parser.GetAnnotationWithPrefix(limitRateBurstMultiplierAnnotation)] = "3"
 
 	ing.SetAnnotations(data)
 
@@ -189,3 +190,61 @@ func TestRateLimiting(t *testing.T) {
 		t.Errorf("expected 10 in limit by limitrate but %v was returned", rateLimit.LimitRate)
 	}
 }
+
+func TestAnnotationCIDR(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix(limitRateConnectionsAnnotation)] = "5"
+	data[parser.GetAnnotationWithPrefix(limitAllowlistAnnotation)] = "192.168.0.5, 192.168.50.32/24"
+	ing.SetAnnotations(data)
+
+	i, err := NewParser(mockBackend{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
+
+	rateLimit, ok := i.(*Config)
+	if !ok {
+		t.Errorf("expected a RateLimit type")
+	}
+	if len(rateLimit.Allowlist) != 2 {
+		t.Errorf("expected 2 cidrs in limit by ip but %v was returned", len(rateLimit.Allowlist))
+	}
+
+	data = map[string]string{}
+	data[parser.GetAnnotationWithPrefix(limitRateConnectionsAnnotation)] = "5"
+	data[parser.GetAnnotationWithPrefix(limitWhitelistAnnotation)] = "192.168.0.5, 192.168.50.32/24, 10.10.10.1"
+	ing.SetAnnotations(data)
+
+	i, err = NewParser(mockBackend{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
+	rateLimit, ok = i.(*Config)
+	if !ok {
+		t.Errorf("expected a RateLimit type")
+	}
+	if len(rateLimit.Allowlist) != 3 {
+		t.Errorf("expected 3 cidrs in limit by ip but %v was returned", len(rateLimit.Allowlist))
+	}
+
+	// Parent annotation surpasses any alias
+	data = map[string]string{}
+	data[parser.GetAnnotationWithPrefix(limitRateConnectionsAnnotation)] = "5"
+	data[parser.GetAnnotationWithPrefix(limitWhitelistAnnotation)] = "192.168.0.5, 192.168.50.32/24, 10.10.10.1"
+	data[parser.GetAnnotationWithPrefix(limitAllowlistAnnotation)] = "192.168.0.9"
+	ing.SetAnnotations(data)
+
+	i, err = NewParser(mockBackend{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
+	rateLimit, ok = i.(*Config)
+	if !ok {
+		t.Errorf("expected a RateLimit type")
+	}
+	if len(rateLimit.Allowlist) != 1 {
+		t.Errorf("expected 1 cidrs in limit by ip but %v was returned", len(rateLimit.Allowlist))
+	}
+}
diff --git a/internal/ingress/annotations/redirect/redirect.go b/internal/ingress/annotations/redirect/redirect.go
index 11b08a4a2..89513c83c 100644
--- a/internal/ingress/annotations/redirect/redirect.go
+++ b/internal/ingress/annotations/redirect/redirect.go
@@ -37,13 +37,56 @@ type Config struct {
 	FromToWWW bool   `json:"fromToWWW"`
 }
 
+const (
+	fromToWWWRedirAnnotation        = "from-to-www-redirect"
+	temporalRedirectAnnotation      = "temporal-redirect"
+	permanentRedirectAnnotation     = "permanent-redirect"
+	permanentRedirectAnnotationCode = "permanent-redirect-code"
+)
+
+var redirectAnnotations = parser.Annotation{
+	Group: "redirect",
+	Annotations: parser.AnnotationFields{
+		fromToWWWRedirAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow, // Low, as it allows just a set of options
+			Documentation: `In some scenarios is required to redirect from www.domain.com to domain.com or vice versa. To enable this feature use this annotation.`,
+		},
+		temporalRedirectAnnotation: {
+			Validator: parser.ValidateRegex(*parser.URLIsValidRegex, false),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskMedium, // Medium, as it allows arbitrary URLs that needs to be validated
+			Documentation: `This annotation allows you to return a temporal redirect (Return Code 302) instead of sending data to the upstream. 
+			For example setting this annotation to https://www.google.com would redirect everything to Google with a Return Code of 302 (Moved Temporarily).`,
+		},
+		permanentRedirectAnnotation: {
+			Validator: parser.ValidateRegex(*parser.URLIsValidRegex, false),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskMedium, // Medium, as it allows arbitrary URLs that needs to be validated
+			Documentation: `This annotation allows to return a permanent redirect (Return Code 301) instead of sending data to the upstream. 
+			For example setting this annotation https://www.google.com would redirect everything to Google with a code 301`,
+		},
+		permanentRedirectAnnotationCode: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow, // Low, as it allows just a set of options
+			Documentation: `This annotation allows you to modify the status code used for permanent redirects.`,
+		},
+	},
+}
+
 type redirect struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new redirect annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return redirect{r}
+	return redirect{
+		r:                r,
+		annotationConfig: redirectAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress
@@ -51,9 +94,12 @@ func NewParser(r resolver.Resolver) parser.IngressAnnotation {
 // If the Ingress contains both annotations the execution order is
 // temporal and then permanent
 func (r redirect) Parse(ing *networking.Ingress) (interface{}, error) {
-	r3w, _ := parser.GetBoolAnnotation("from-to-www-redirect", ing)
+	r3w, err := parser.GetBoolAnnotation(fromToWWWRedirAnnotation, ing, r.annotationConfig.Annotations)
+	if err != nil && !errors.IsMissingAnnotations(err) {
+		return nil, err
+	}
 
-	tr, err := parser.GetStringAnnotation("temporal-redirect", ing)
+	tr, err := parser.GetStringAnnotation(temporalRedirectAnnotation, ing, r.annotationConfig.Annotations)
 	if err != nil && !errors.IsMissingAnnotations(err) {
 		return nil, err
 	}
@@ -70,12 +116,12 @@ func (r redirect) Parse(ing *networking.Ingress) (interface{}, error) {
 		}, nil
 	}
 
-	pr, err := parser.GetStringAnnotation("permanent-redirect", ing)
+	pr, err := parser.GetStringAnnotation(permanentRedirectAnnotation, ing, r.annotationConfig.Annotations)
 	if err != nil && !errors.IsMissingAnnotations(err) {
 		return nil, err
 	}
 
-	prc, err := parser.GetIntAnnotation("permanent-redirect-code", ing)
+	prc, err := parser.GetIntAnnotation(permanentRedirectAnnotationCode, ing, r.annotationConfig.Annotations)
 	if err != nil && !errors.IsMissingAnnotations(err) {
 		return nil, err
 	}
@@ -127,3 +173,12 @@ func isValidURL(s string) error {
 
 	return nil
 }
+
+func (a redirect) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a redirect) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, redirectAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/redirect/redirect_test.go b/internal/ingress/annotations/redirect/redirect_test.go
index b5a87a5d3..5a61f364d 100644
--- a/internal/ingress/annotations/redirect/redirect_test.go
+++ b/internal/ingress/annotations/redirect/redirect_test.go
@@ -43,7 +43,7 @@ func TestPermanentRedirectWithDefaultCode(t *testing.T) {
 	ing := new(networking.Ingress)
 
 	data := make(map[string]string, 1)
-	data[parser.GetAnnotationWithPrefix("permanent-redirect")] = defRedirectURL
+	data[parser.GetAnnotationWithPrefix(permanentRedirectAnnotation)] = defRedirectURL
 	ing.SetAnnotations(data)
 
 	i, err := rp.Parse(ing)
@@ -81,8 +81,8 @@ func TestPermanentRedirectWithCustomCode(t *testing.T) {
 			ing := new(networking.Ingress)
 
 			data := make(map[string]string, 2)
-			data[parser.GetAnnotationWithPrefix("permanent-redirect")] = defRedirectURL
-			data[parser.GetAnnotationWithPrefix("permanent-redirect-code")] = strconv.Itoa(tc.input)
+			data[parser.GetAnnotationWithPrefix(permanentRedirectAnnotation)] = defRedirectURL
+			data[parser.GetAnnotationWithPrefix(permanentRedirectAnnotationCode)] = strconv.Itoa(tc.input)
 			ing.SetAnnotations(data)
 
 			i, err := rp.Parse(ing)
@@ -112,8 +112,8 @@ func TestTemporalRedirect(t *testing.T) {
 	ing := new(networking.Ingress)
 
 	data := make(map[string]string, 1)
-	data[parser.GetAnnotationWithPrefix("from-to-www-redirect")] = "true"
-	data[parser.GetAnnotationWithPrefix("temporal-redirect")] = defRedirectURL
+	data[parser.GetAnnotationWithPrefix(fromToWWWRedirAnnotation)] = "true"
+	data[parser.GetAnnotationWithPrefix(temporalRedirectAnnotation)] = defRedirectURL
 	ing.SetAnnotations(data)
 
 	i, err := rp.Parse(ing)
diff --git a/internal/ingress/annotations/rewrite/main.go b/internal/ingress/annotations/rewrite/main.go
index f92d508dc..84dc93bf0 100644
--- a/internal/ingress/annotations/rewrite/main.go
+++ b/internal/ingress/annotations/rewrite/main.go
@@ -27,6 +27,59 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	rewriteTargetAnnotation         = "rewrite-target"
+	sslRedirectAnnotation           = "ssl-redirect"
+	preserveTrailingSlashAnnotation = "preserve-trailing-slash"
+	forceSSLRedirectAnnotation      = "force-ssl-redirect"
+	useRegexAnnotation              = "use-regex"
+	appRootAnnotation               = "app-root"
+)
+
+var rewriteAnnotations = parser.Annotation{
+	Group: "rewrite",
+	Annotations: parser.AnnotationFields{
+		rewriteTargetAnnotation: {
+			Validator: parser.ValidateRegex(*parser.RegexPathWithCapture, false),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation allows to specify the target URI where the traffic must be redirected. It can contain regular characters and captured 
+			groups specified as '$1', '$2', etc.`,
+		},
+		sslRedirectAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation defines if the location section is only accessible via SSL`,
+		},
+		preserveTrailingSlashAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation defines if the trailing slash should be preserved in the URI with 'ssl-redirect'`,
+		},
+		forceSSLRedirectAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation forces the redirection to HTTPS even if the Ingress is not TLS Enabled`,
+		},
+		useRegexAnnotation: {
+			Validator: parser.ValidateBool,
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `This annotation defines if the paths defined on an Ingress use regular expressions. To use regex on path
+			the pathType should also be defined as 'ImplementationSpecific'.`,
+		},
+		appRootAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.RegexPathWithCapture, false),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation defines the Application Root that the Controller must redirect if it's in / context`,
+		},
+	},
+}
+
 // Config describes the per location redirect config
 type Config struct {
 	// Target URI where the traffic must be redirected
@@ -71,12 +124,16 @@ func (r1 *Config) Equal(r2 *Config) bool {
 }
 
 type rewrite struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new rewrite annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return rewrite{r}
+	return rewrite{
+		r:                r,
+		annotationConfig: rewriteAnnotations,
+	}
 }
 
 // ParseAnnotations parses the annotations contained in the ingress
@@ -85,24 +142,45 @@ func (a rewrite) Parse(ing *networking.Ingress) (interface{}, error) {
 	var err error
 	config := &Config{}
 
-	config.Target, _ = parser.GetStringAnnotation("rewrite-target", ing)
-	config.SSLRedirect, err = parser.GetBoolAnnotation("ssl-redirect", ing)
+	config.Target, err = parser.GetStringAnnotation(rewriteTargetAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("%sis invalid, defaulting to empty", rewriteTargetAnnotation)
+		}
+		config.Target = ""
+	}
+	config.SSLRedirect, err = parser.GetBoolAnnotation(sslRedirectAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("%sis invalid, defaulting to '%s'", sslRedirectAnnotation, a.r.GetDefaultBackend().SSLRedirect)
+		}
 		config.SSLRedirect = a.r.GetDefaultBackend().SSLRedirect
 	}
-	config.PreserveTrailingSlash, err = parser.GetBoolAnnotation("preserve-trailing-slash", ing)
+	config.PreserveTrailingSlash, err = parser.GetBoolAnnotation(preserveTrailingSlashAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("%sis invalid, defaulting to '%s'", preserveTrailingSlashAnnotation, a.r.GetDefaultBackend().PreserveTrailingSlash)
+		}
 		config.PreserveTrailingSlash = a.r.GetDefaultBackend().PreserveTrailingSlash
 	}
 
-	config.ForceSSLRedirect, err = parser.GetBoolAnnotation("force-ssl-redirect", ing)
+	config.ForceSSLRedirect, err = parser.GetBoolAnnotation(forceSSLRedirectAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("%sis invalid, defaulting to '%s'", forceSSLRedirectAnnotation, a.r.GetDefaultBackend().ForceSSLRedirect)
+		}
 		config.ForceSSLRedirect = a.r.GetDefaultBackend().ForceSSLRedirect
 	}
 
-	config.UseRegex, _ = parser.GetBoolAnnotation("use-regex", ing)
+	config.UseRegex, err = parser.GetBoolAnnotation(useRegexAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil {
+		if errors.IsValidationError(err) {
+			klog.Warningf("%sis invalid, defaulting to 'false'", useRegexAnnotation)
+		}
+		config.UseRegex = false
+	}
 
-	config.AppRoot, err = parser.GetStringAnnotation("app-root", ing)
+	config.AppRoot, err = parser.GetStringAnnotation(appRootAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		if !errors.IsMissingAnnotations(err) && !errors.IsInvalidContent(err) {
 			klog.Warningf("Annotation app-root contains an invalid value: %v", err)
@@ -126,3 +204,12 @@ func (a rewrite) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	return config, nil
 }
+
+func (a rewrite) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a rewrite) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, rewriteAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/rewrite/main_test.go b/internal/ingress/annotations/rewrite/main_test.go
index c2cb42c78..6b97d2e01 100644
--- a/internal/ingress/annotations/rewrite/main_test.go
+++ b/internal/ingress/annotations/rewrite/main_test.go
@@ -129,6 +129,30 @@ func TestSSLRedirect(t *testing.T) {
 		t.Errorf("Expected true but returned false")
 	}
 
+	data[parser.GetAnnotationWithPrefix("rewrite-target")] = "/xpto/$1/abc/$2"
+	ing.SetAnnotations(data)
+
+	i, _ = NewParser(mockBackend{redirect: true}).Parse(ing)
+	redirect, ok = i.(*Config)
+	if !ok {
+		t.Errorf("expected a Redirect type")
+	}
+	if redirect.Target != "/xpto/$1/abc/$2" {
+		t.Errorf("Expected /xpto/$1/abc/$2 but returned %s", redirect.Target)
+	}
+
+	data[parser.GetAnnotationWithPrefix("rewrite-target")] = "/xpto/xas{445}"
+	ing.SetAnnotations(data)
+
+	i, _ = NewParser(mockBackend{redirect: true}).Parse(ing)
+	redirect, ok = i.(*Config)
+	if !ok {
+		t.Errorf("expected a Redirect type")
+	}
+	if redirect.Target != "" {
+		t.Errorf("Expected empty rewrite target but returned %s", redirect.Target)
+	}
+
 	data[parser.GetAnnotationWithPrefix("ssl-redirect")] = "false"
 	ing.SetAnnotations(data)
 
diff --git a/internal/ingress/annotations/satisfy/main.go b/internal/ingress/annotations/satisfy/main.go
index 0d4fd4ff6..45187fe5c 100644
--- a/internal/ingress/annotations/satisfy/main.go
+++ b/internal/ingress/annotations/satisfy/main.go
@@ -23,18 +23,40 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	satisfyAnnotation = "satisfy"
+)
+
+var satisfyAnnotations = parser.Annotation{
+	Group: "authentication",
+	Annotations: parser.AnnotationFields{
+		satisfyAnnotation: {
+			Validator: parser.ValidateOptions([]string{"any", "all"}, true, true),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `By default, a request would need to satisfy all authentication requirements in order to be allowed. 
+			By using this annotation, requests that satisfy either any or all authentication requirements are allowed, based on the configuration value.
+			Valid options are "all" and "any"`,
+		},
+	},
+}
+
 type satisfy struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new SATISFY annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return satisfy{r}
+	return satisfy{
+		r:                r,
+		annotationConfig: satisfyAnnotations,
+	}
 }
 
 // Parse parses annotation contained in the ingress
 func (s satisfy) Parse(ing *networking.Ingress) (interface{}, error) {
-	satisfy, err := parser.GetStringAnnotation("satisfy", ing)
+	satisfy, err := parser.GetStringAnnotation(satisfyAnnotation, ing, s.annotationConfig.Annotations)
 
 	if err != nil || (satisfy != "any" && satisfy != "all") {
 		satisfy = ""
@@ -42,3 +64,12 @@ func (s satisfy) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	return satisfy, nil
 }
+
+func (s satisfy) GetDocumentation() parser.AnnotationFields {
+	return s.annotationConfig.Annotations
+}
+
+func (a satisfy) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, satisfyAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/satisfy/main_test.go b/internal/ingress/annotations/satisfy/main_test.go
index b45205d9f..c8d5782f9 100644
--- a/internal/ingress/annotations/satisfy/main_test.go
+++ b/internal/ingress/annotations/satisfy/main_test.go
@@ -83,7 +83,7 @@ func TestSatisfyParser(t *testing.T) {
 	annotations := map[string]string{}
 
 	for input, expected := range data {
-		annotations[parser.GetAnnotationWithPrefix("satisfy")] = input
+		annotations[parser.GetAnnotationWithPrefix(satisfyAnnotation)] = input
 		ing.SetAnnotations(annotations)
 
 		satisfyt, err := NewParser(&resolver.Mock{}).Parse(ing)
diff --git a/internal/ingress/annotations/serversnippet/main.go b/internal/ingress/annotations/serversnippet/main.go
index 70f0af8e5..aa15608d0 100644
--- a/internal/ingress/annotations/serversnippet/main.go
+++ b/internal/ingress/annotations/serversnippet/main.go
@@ -23,18 +23,47 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	serverSnippetAnnotation = "server-snippet"
+)
+
+var serverSnippetAnnotations = parser.Annotation{
+	Group: "snippets",
+	Annotations: parser.AnnotationFields{
+		serverSnippetAnnotation: {
+			Validator:     parser.ValidateNull,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskCritical, // Critical, this annotation is not validated at all and allows arbitrary configutations
+			Documentation: `This annotation allows setting a custom NGINX configuration on a server block. This annotation does not contain any validation and it's usage is not recommended!`,
+		},
+	},
+}
+
 type serverSnippet struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new server snippet annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return serverSnippet{r}
+	return serverSnippet{
+		r:                r,
+		annotationConfig: serverSnippetAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress rule
 // used to indicate if the location/s contains a fragment of
 // configuration to be included inside the paths of the rules
 func (a serverSnippet) Parse(ing *networking.Ingress) (interface{}, error) {
-	return parser.GetStringAnnotation("server-snippet", ing)
+	return parser.GetStringAnnotation(serverSnippetAnnotation, ing, a.annotationConfig.Annotations)
+}
+
+func (a serverSnippet) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a serverSnippet) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, serverSnippetAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/serversnippet/main_test.go b/internal/ingress/annotations/serversnippet/main_test.go
index c9e0979ad..601e11a42 100644
--- a/internal/ingress/annotations/serversnippet/main_test.go
+++ b/internal/ingress/annotations/serversnippet/main_test.go
@@ -27,7 +27,7 @@ import (
 )
 
 func TestParse(t *testing.T) {
-	annotation := parser.GetAnnotationWithPrefix("server-snippet")
+	annotation := parser.GetAnnotationWithPrefix(serverSnippetAnnotation)
 
 	ap := NewParser(&resolver.Mock{})
 	if ap == nil {
diff --git a/internal/ingress/annotations/serviceupstream/main.go b/internal/ingress/annotations/serviceupstream/main.go
index 4a4879682..e662f73c3 100644
--- a/internal/ingress/annotations/serviceupstream/main.go
+++ b/internal/ingress/annotations/serviceupstream/main.go
@@ -24,19 +24,39 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	serviceUpstreamAnnotation = "service-upstream"
+)
+
+var serviceUpstreamAnnotations = parser.Annotation{
+	Group: "backend",
+	Annotations: parser.AnnotationFields{
+		serviceUpstreamAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow, // Critical, this annotation is not validated at all and allows arbitrary configutations
+			Documentation: `This annotation makes NGINX use Service's Cluster IP and Port instead of Endpoints as the backend endpoints`,
+		},
+	},
+}
+
 type serviceUpstream struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new serviceUpstream annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return serviceUpstream{r}
+	return serviceUpstream{
+		r:                r,
+		annotationConfig: serviceUpstreamAnnotations,
+	}
 }
 
 func (s serviceUpstream) Parse(ing *networking.Ingress) (interface{}, error) {
 	defBackend := s.r.GetDefaultBackend()
 
-	val, err := parser.GetBoolAnnotation("service-upstream", ing)
+	val, err := parser.GetBoolAnnotation(serviceUpstreamAnnotation, ing, s.annotationConfig.Annotations)
 	// A missing annotation is not a problem, just use the default
 	if err == errors.ErrMissingAnnotations {
 		return defBackend.ServiceUpstream, nil
@@ -44,3 +64,12 @@ func (s serviceUpstream) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	return val, nil
 }
+
+func (s serviceUpstream) GetDocumentation() parser.AnnotationFields {
+	return s.annotationConfig.Annotations
+}
+
+func (a serviceUpstream) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, serviceUpstreamAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/serviceupstream/main_test.go b/internal/ingress/annotations/serviceupstream/main_test.go
index b773e9723..2751208ec 100644
--- a/internal/ingress/annotations/serviceupstream/main_test.go
+++ b/internal/ingress/annotations/serviceupstream/main_test.go
@@ -74,7 +74,7 @@ func TestIngressAnnotationServiceUpstreamEnabled(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("service-upstream")] = "true"
+	data[parser.GetAnnotationWithPrefix(serviceUpstreamAnnotation)] = "true"
 	ing.SetAnnotations(data)
 
 	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
@@ -93,7 +93,7 @@ func TestIngressAnnotationServiceUpstreamSetFalse(t *testing.T) {
 
 	// Test with explicitly set to false
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("service-upstream")] = "false"
+	data[parser.GetAnnotationWithPrefix(serviceUpstreamAnnotation)] = "false"
 	ing.SetAnnotations(data)
 
 	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
@@ -155,7 +155,7 @@ func TestParseAnnotationsOverridesDefaultConfig(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("service-upstream")] = "false"
+	data[parser.GetAnnotationWithPrefix(serviceUpstreamAnnotation)] = "false"
 	ing.SetAnnotations(data)
 
 	val, _ := NewParser(mockBackend{}).Parse(ing)
diff --git a/internal/ingress/annotations/sessionaffinity/main.go b/internal/ingress/annotations/sessionaffinity/main.go
index 98a0d64f8..0a4a59dbc 100644
--- a/internal/ingress/annotations/sessionaffinity/main.go
+++ b/internal/ingress/annotations/sessionaffinity/main.go
@@ -65,6 +65,90 @@ const (
 	annotationAffinityCookieChangeOnFailure = "session-cookie-change-on-failure"
 )
 
+var sessionAffinityAnnotations = parser.Annotation{
+	Group: "affinity",
+	Annotations: parser.AnnotationFields{
+		annotationAffinityType: {
+			Validator:     parser.ValidateOptions([]string{"cookie"}, true, true),
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation enables and sets the affinity type in all Upstreams of an Ingress. This way, a request will always be directed to the same upstream server. The only affinity type available for NGINX is cookie`,
+		},
+		annotationAffinityMode: {
+			Validator: parser.ValidateOptions([]string{"balanced", "persistent"}, true, true),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation defines the stickiness of a session. 
+			Setting this to balanced (default) will redistribute some sessions if a deployment gets scaled up, therefore rebalancing the load on the servers. 
+			Setting this to persistent will not rebalance sessions to new servers, therefore providing maximum stickiness.`,
+		},
+		annotationAffinityCanaryBehavior: {
+			Validator: parser.ValidateOptions([]string{"sticky", "legacy"}, true, true),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `This annotation defines the behavior of canaries when session affinity is enabled.
+			Setting this to sticky (default) will ensure that users that were served by canaries, will continue to be served by canaries.
+			Setting this to legacy will restore original canary behavior, when session affinity was ignored.`,
+		},
+		annotationAffinityCookieName: {
+			Validator:     parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation allows to specify the name of the cookie that will be used to route the requests`,
+		},
+		annotationAffinityCookieSecure: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation set the cookie as secure regardless the protocol of the incoming request`,
+		},
+		annotationAffinityCookieExpires: {
+			Validator:     parser.ValidateRegex(*affinityCookieExpiresRegex, true),
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation is a legacy version of "session-cookie-max-age" for compatibility with older browsers, generates an "Expires" cookie directive by adding the seconds to the current date`,
+		},
+		annotationAffinityCookieMaxAge: {
+			Validator:     parser.ValidateRegex(*affinityCookieExpiresRegex, false),
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation sets the time until the cookie expires`,
+		},
+		annotationAffinityCookiePath: {
+			Validator:     parser.ValidateRegex(*parser.URLIsValidRegex, true),
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation defines the Path that will be set on the cookie (required if your Ingress paths use regular expressions)`,
+		},
+		annotationAffinityCookieDomain: {
+			Validator:     parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskMedium,
+			Documentation: `This annotation defines the Domain attribute of the sticky cookie.`,
+		},
+		annotationAffinityCookieSameSite: {
+			Validator: parser.ValidateOptions([]string{"None", "Lax", "Strict"}, false, true),
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `This annotation is used to apply a SameSite attribute to the sticky cookie. 
+			Browser accepted values are None, Lax, and Strict`,
+		},
+		annotationAffinityCookieConditionalSameSiteNone: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation is used to omit SameSite=None from browsers with SameSite attribute incompatibilities`,
+		},
+		annotationAffinityCookieChangeOnFailure: {
+			Validator: parser.ValidateBool,
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `This annotation, when set to false will send request to upstream pointed by sticky cookie even if previous attempt failed. 
+			When set to true and previous attempt failed, sticky cookie will be changed to point to another upstream.`,
+		},
+	},
+}
+
 var (
 	affinityCookieExpiresRegex = regexp.MustCompile(`(^0|-?[1-9]\d*$)`)
 )
@@ -109,50 +193,50 @@ func (a affinity) cookieAffinityParse(ing *networking.Ingress) *Cookie {
 
 	cookie := &Cookie{}
 
-	cookie.Name, err = parser.GetStringAnnotation(annotationAffinityCookieName, ing)
+	cookie.Name, err = parser.GetStringAnnotation(annotationAffinityCookieName, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		klog.V(3).InfoS("Invalid or no annotation value found. Ignoring", "ingress", klog.KObj(ing), "annotation", annotationAffinityCookieName, "default", defaultAffinityCookieName)
 		cookie.Name = defaultAffinityCookieName
 	}
 
-	cookie.Expires, err = parser.GetStringAnnotation(annotationAffinityCookieExpires, ing)
+	cookie.Expires, err = parser.GetStringAnnotation(annotationAffinityCookieExpires, ing, a.annotationConfig.Annotations)
 	if err != nil || !affinityCookieExpiresRegex.MatchString(cookie.Expires) {
 		klog.V(3).InfoS("Invalid or no annotation value found. Ignoring", "ingress", klog.KObj(ing), "annotation", annotationAffinityCookieExpires)
 		cookie.Expires = ""
 	}
 
-	cookie.MaxAge, err = parser.GetStringAnnotation(annotationAffinityCookieMaxAge, ing)
+	cookie.MaxAge, err = parser.GetStringAnnotation(annotationAffinityCookieMaxAge, ing, a.annotationConfig.Annotations)
 	if err != nil || !affinityCookieExpiresRegex.MatchString(cookie.MaxAge) {
 		klog.V(3).InfoS("Invalid or no annotation value found. Ignoring", "ingress", klog.KObj(ing), "annotation", annotationAffinityCookieMaxAge)
 		cookie.MaxAge = ""
 	}
 
-	cookie.Path, err = parser.GetStringAnnotation(annotationAffinityCookiePath, ing)
+	cookie.Path, err = parser.GetStringAnnotation(annotationAffinityCookiePath, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		klog.V(3).InfoS("Invalid or no annotation value found. Ignoring", "ingress", klog.KObj(ing), "annotation", annotationAffinityCookiePath)
 	}
 
-	cookie.Domain, err = parser.GetStringAnnotation(annotationAffinityCookieDomain, ing)
+	cookie.Domain, err = parser.GetStringAnnotation(annotationAffinityCookieDomain, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		klog.V(3).InfoS("Invalid or no annotation value found. Ignoring", "ingress", klog.KObj(ing), "annotation", annotationAffinityCookieDomain)
 	}
 
-	cookie.SameSite, err = parser.GetStringAnnotation(annotationAffinityCookieSameSite, ing)
+	cookie.SameSite, err = parser.GetStringAnnotation(annotationAffinityCookieSameSite, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		klog.V(3).InfoS("Invalid or no annotation value found. Ignoring", "ingress", klog.KObj(ing), "annotation", annotationAffinityCookieSameSite)
 	}
 
-	cookie.Secure, err = parser.GetBoolAnnotation(annotationAffinityCookieSecure, ing)
+	cookie.Secure, err = parser.GetBoolAnnotation(annotationAffinityCookieSecure, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		klog.V(3).InfoS("Invalid or no annotation value found. Ignoring", "ingress", klog.KObj(ing), "annotation", annotationAffinityCookieSecure)
 	}
 
-	cookie.ConditionalSameSiteNone, err = parser.GetBoolAnnotation(annotationAffinityCookieConditionalSameSiteNone, ing)
+	cookie.ConditionalSameSiteNone, err = parser.GetBoolAnnotation(annotationAffinityCookieConditionalSameSiteNone, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		klog.V(3).InfoS("Invalid or no annotation value found. Ignoring", "ingress", klog.KObj(ing), "annotation", annotationAffinityCookieConditionalSameSiteNone)
 	}
 
-	cookie.ChangeOnFailure, err = parser.GetBoolAnnotation(annotationAffinityCookieChangeOnFailure, ing)
+	cookie.ChangeOnFailure, err = parser.GetBoolAnnotation(annotationAffinityCookieChangeOnFailure, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		klog.V(3).InfoS("Invalid or no annotation value found. Ignoring", "ingress", klog.KObj(ing), "annotation", annotationAffinityCookieChangeOnFailure)
 	}
@@ -162,11 +246,15 @@ func (a affinity) cookieAffinityParse(ing *networking.Ingress) *Cookie {
 
 // NewParser creates a new Affinity annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return affinity{r}
+	return affinity{
+		r:                r,
+		annotationConfig: sessionAffinityAnnotations,
+	}
 }
 
 type affinity struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // ParseAnnotations parses the annotations contained in the ingress
@@ -174,18 +262,18 @@ type affinity struct {
 func (a affinity) Parse(ing *networking.Ingress) (interface{}, error) {
 	cookie := &Cookie{}
 	// Check the type of affinity that will be used
-	at, err := parser.GetStringAnnotation(annotationAffinityType, ing)
+	at, err := parser.GetStringAnnotation(annotationAffinityType, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		at = ""
 	}
 
 	// Check the affinity mode that will be used
-	am, err := parser.GetStringAnnotation(annotationAffinityMode, ing)
+	am, err := parser.GetStringAnnotation(annotationAffinityMode, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		am = ""
 	}
 
-	cb, err := parser.GetStringAnnotation(annotationAffinityCanaryBehavior, ing)
+	cb, err := parser.GetStringAnnotation(annotationAffinityCanaryBehavior, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		cb = ""
 	}
@@ -205,3 +293,12 @@ func (a affinity) Parse(ing *networking.Ingress) (interface{}, error) {
 		Cookie:         *cookie,
 	}, nil
 }
+
+func (a affinity) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a affinity) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, sessionAffinityAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/snippet/main.go b/internal/ingress/annotations/snippet/main.go
index 93ec70cf9..2406093c5 100644
--- a/internal/ingress/annotations/snippet/main.go
+++ b/internal/ingress/annotations/snippet/main.go
@@ -23,18 +23,47 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	configurationSnippetAnnotation = "configuration-snippet"
+)
+
+var configurationSnippetAnnotations = parser.Annotation{
+	Group: "snippets",
+	Annotations: parser.AnnotationFields{
+		configurationSnippetAnnotation: {
+			Validator:     parser.ValidateNull,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskCritical, // Critical, this annotation is not validated at all and allows arbitrary configutations
+			Documentation: `This annotation allows setting a custom NGINX configuration on a location block. This annotation does not contain any validation and it's usage is not recommended!`,
+		},
+	},
+}
+
 type snippet struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new CORS annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return snippet{r}
+	return snippet{
+		r:                r,
+		annotationConfig: configurationSnippetAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress rule
 // used to indicate if the location/s contains a fragment of
 // configuration to be included inside the paths of the rules
 func (a snippet) Parse(ing *networking.Ingress) (interface{}, error) {
-	return parser.GetStringAnnotation("configuration-snippet", ing)
+	return parser.GetStringAnnotation(configurationSnippetAnnotation, ing, a.annotationConfig.Annotations)
+}
+
+func (a snippet) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a snippet) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, configurationSnippetAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/snippet/main_test.go b/internal/ingress/annotations/snippet/main_test.go
index 0defc3c1f..921afeea8 100644
--- a/internal/ingress/annotations/snippet/main_test.go
+++ b/internal/ingress/annotations/snippet/main_test.go
@@ -27,7 +27,7 @@ import (
 )
 
 func TestParse(t *testing.T) {
-	annotation := parser.GetAnnotationWithPrefix("configuration-snippet")
+	annotation := parser.GetAnnotationWithPrefix(configurationSnippetAnnotation)
 
 	ap := NewParser(&resolver.Mock{})
 	if ap == nil {
diff --git a/internal/ingress/annotations/sslcipher/main.go b/internal/ingress/annotations/sslcipher/main.go
index e4e5baad2..c30f12424 100644
--- a/internal/ingress/annotations/sslcipher/main.go
+++ b/internal/ingress/annotations/sslcipher/main.go
@@ -17,14 +17,47 @@ limitations under the License.
 package sslcipher
 
 import (
+	"regexp"
+
 	networking "k8s.io/api/networking/v1"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	sslPreferServerCipherAnnotation = "ssl-prefer-server-ciphers"
+	sslCipherAnnotation             = "ssl-ciphers"
+)
+
+var (
+	// Should cover something like "ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP"
+	regexValidSSLCipher = regexp.MustCompile(`^[A-Za-z0-9!:+\-]*$`)
+)
+
+var sslCipherAnnotations = parser.Annotation{
+	Group: "backend",
+	Annotations: parser.AnnotationFields{
+		sslPreferServerCipherAnnotation: {
+			Validator: parser.ValidateBool,
+			Scope:     parser.AnnotationScopeIngress,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `The following annotation will set the ssl_prefer_server_ciphers directive at the server level. 
+			This configuration specifies that server ciphers should be preferred over client ciphers when using the SSLv3 and TLS protocols.`,
+		},
+		sslCipherAnnotation: {
+			Validator:     parser.ValidateRegex(*regexValidSSLCipher, true),
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `Using this annotation will set the ssl_ciphers directive at the server level. This configuration is active for all the paths in the host.`,
+		},
+	},
+}
+
 type sslCipher struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // Config contains the ssl-ciphers & ssl-prefer-server-ciphers configuration
@@ -35,7 +68,10 @@ type Config struct {
 
 // NewParser creates a new sslCipher annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return sslCipher{r}
+	return sslCipher{
+		r:                r,
+		annotationConfig: sslCipherAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress rule
@@ -45,7 +81,7 @@ func (sc sslCipher) Parse(ing *networking.Ingress) (interface{}, error) {
 	var err error
 	var sslPreferServerCiphers bool
 
-	sslPreferServerCiphers, err = parser.GetBoolAnnotation("ssl-prefer-server-ciphers", ing)
+	sslPreferServerCiphers, err = parser.GetBoolAnnotation(sslPreferServerCipherAnnotation, ing, sc.annotationConfig.Annotations)
 	if err != nil {
 		config.SSLPreferServerCiphers = ""
 	} else {
@@ -56,7 +92,19 @@ func (sc sslCipher) Parse(ing *networking.Ingress) (interface{}, error) {
 		}
 	}
 
-	config.SSLCiphers, _ = parser.GetStringAnnotation("ssl-ciphers", ing)
+	config.SSLCiphers, err = parser.GetStringAnnotation(sslCipherAnnotation, ing, sc.annotationConfig.Annotations)
+	if err != nil && !errors.IsInvalidContent(err) && !errors.IsMissingAnnotations(err) {
+		return config, err
+	}
 
 	return config, nil
 }
+
+func (sc sslCipher) GetDocumentation() parser.AnnotationFields {
+	return sc.annotationConfig.Annotations
+}
+
+func (a sslCipher) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, sslCipherAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/sslcipher/main_test.go b/internal/ingress/annotations/sslcipher/main_test.go
index 6eb9ec0c2..ac6808e06 100644
--- a/internal/ingress/annotations/sslcipher/main_test.go
+++ b/internal/ingress/annotations/sslcipher/main_test.go
@@ -33,22 +33,24 @@ func TestParse(t *testing.T) {
 		t.Fatalf("expected a parser.IngressAnnotation but returned nil")
 	}
 
-	annotationSSLCiphers := parser.GetAnnotationWithPrefix("ssl-ciphers")
-	annotationSSLPreferServerCiphers := parser.GetAnnotationWithPrefix("ssl-prefer-server-ciphers")
+	annotationSSLCiphers := parser.GetAnnotationWithPrefix(sslCipherAnnotation)
+	annotationSSLPreferServerCiphers := parser.GetAnnotationWithPrefix(sslPreferServerCipherAnnotation)
 
 	testCases := []struct {
 		annotations map[string]string
 		expected    Config
+		expectErr   bool
 	}{
-		{map[string]string{annotationSSLCiphers: "ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP"}, Config{"ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP", ""}},
+		{map[string]string{annotationSSLCiphers: "ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP"}, Config{"ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP", ""}, false},
 		{map[string]string{annotationSSLCiphers: "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256"},
-			Config{"ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256", ""}},
-		{map[string]string{annotationSSLCiphers: ""}, Config{"", ""}},
-		{map[string]string{annotationSSLPreferServerCiphers: "true"}, Config{"", "on"}},
-		{map[string]string{annotationSSLPreferServerCiphers: "false"}, Config{"", "off"}},
-		{map[string]string{annotationSSLCiphers: "ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP", annotationSSLPreferServerCiphers: "true"}, Config{"ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP", "on"}},
-		{map[string]string{}, Config{"", ""}},
-		{nil, Config{"", ""}},
+			Config{"ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256", ""}, false},
+		{map[string]string{annotationSSLCiphers: ""}, Config{"", ""}, false},
+		{map[string]string{annotationSSLPreferServerCiphers: "true"}, Config{"", "on"}, false},
+		{map[string]string{annotationSSLPreferServerCiphers: "false"}, Config{"", "off"}, false},
+		{map[string]string{annotationSSLCiphers: "ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP", annotationSSLPreferServerCiphers: "true"}, Config{"ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP", "on"}, false},
+		{map[string]string{annotationSSLCiphers: "ALL:SOMETHING:;locationXPTO"}, Config{"", ""}, true},
+		{map[string]string{}, Config{"", ""}, false},
+		{nil, Config{"", ""}, false},
 	}
 
 	ing := &networking.Ingress{
@@ -61,7 +63,10 @@ func TestParse(t *testing.T) {
 
 	for _, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
-		result, _ := ap.Parse(ing)
+		result, err := ap.Parse(ing)
+		if (err != nil) != testCase.expectErr {
+			t.Fatalf("expected error: %t got error: %t err value: %s. %+v", testCase.expectErr, err != nil, err, testCase.annotations)
+		}
 		if !reflect.DeepEqual(result, &testCase.expected) {
 			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
 		}
diff --git a/internal/ingress/annotations/sslpassthrough/main.go b/internal/ingress/annotations/sslpassthrough/main.go
index d1def7172..1557d4243 100644
--- a/internal/ingress/annotations/sslpassthrough/main.go
+++ b/internal/ingress/annotations/sslpassthrough/main.go
@@ -24,13 +24,32 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	sslPassthroughAnnotation = "ssl-passthrough"
+)
+
+var sslPassthroughAnnotations = parser.Annotation{
+	Group: "", // TBD
+	Annotations: parser.AnnotationFields{
+		sslPassthroughAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskLow, // Low, as it allows regexes but on a very limited set
+			Documentation: `This annotation instructs the controller to send TLS connections directly to the backend instead of letting NGINX decrypt the communication.`,
+		},
+	},
+}
+
 type sslpt struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new SSL passthrough annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return sslpt{r}
+	return sslpt{r: r,
+		annotationConfig: sslPassthroughAnnotations,
+	}
 }
 
 // ParseAnnotations parses the annotations contained in the ingress
@@ -40,5 +59,14 @@ func (a sslpt) Parse(ing *networking.Ingress) (interface{}, error) {
 		return false, ing_errors.ErrMissingAnnotations
 	}
 
-	return parser.GetBoolAnnotation("ssl-passthrough", ing)
+	return parser.GetBoolAnnotation(sslPassthroughAnnotation, ing, a.annotationConfig.Annotations)
+}
+
+func (a sslpt) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a sslpt) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, sslPassthroughAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/sslpassthrough/main_test.go b/internal/ingress/annotations/sslpassthrough/main_test.go
index 5cf2f979a..b712fda19 100644
--- a/internal/ingress/annotations/sslpassthrough/main_test.go
+++ b/internal/ingress/annotations/sslpassthrough/main_test.go
@@ -54,7 +54,7 @@ func TestParseAnnotations(t *testing.T) {
 	}
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("ssl-passthrough")] = "true"
+	data[parser.GetAnnotationWithPrefix(sslPassthroughAnnotation)] = "true"
 	ing.SetAnnotations(data)
 	// test ingress using the annotation without a TLS section
 	_, err = NewParser(&resolver.Mock{}).Parse(ing)
diff --git a/internal/ingress/annotations/streamsnippet/main.go b/internal/ingress/annotations/streamsnippet/main.go
index fb22f754c..71ff3b140 100644
--- a/internal/ingress/annotations/streamsnippet/main.go
+++ b/internal/ingress/annotations/streamsnippet/main.go
@@ -23,18 +23,47 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	streamSnippetAnnotation = "stream-snippet"
+)
+
+var streamSnippetAnnotations = parser.Annotation{
+	Group: "snippets",
+	Annotations: parser.AnnotationFields{
+		streamSnippetAnnotation: {
+			Validator:     parser.ValidateNull,
+			Scope:         parser.AnnotationScopeIngress,
+			Risk:          parser.AnnotationRiskCritical, // Critical, this annotation is not validated at all and allows arbitrary configutations
+			Documentation: `This annotation allows setting a custom NGINX configuration on a stream block. This annotation does not contain any validation and it's usage is not recommended!`,
+		},
+	},
+}
+
 type streamSnippet struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new server snippet annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return streamSnippet{r}
+	return streamSnippet{
+		r:                r,
+		annotationConfig: streamSnippetAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress rule
 // used to indicate if the location/s contains a fragment of
 // configuration to be included inside the paths of the rules
 func (a streamSnippet) Parse(ing *networking.Ingress) (interface{}, error) {
-	return parser.GetStringAnnotation("stream-snippet", ing)
+	return parser.GetStringAnnotation("stream-snippet", ing, a.annotationConfig.Annotations)
+}
+
+func (a streamSnippet) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a streamSnippet) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, streamSnippetAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/streamsnippet/main_test.go b/internal/ingress/annotations/streamsnippet/main_test.go
index 0b8e3e3aa..997b7be70 100644
--- a/internal/ingress/annotations/streamsnippet/main_test.go
+++ b/internal/ingress/annotations/streamsnippet/main_test.go
@@ -27,7 +27,7 @@ import (
 )
 
 func TestParse(t *testing.T) {
-	annotation := parser.GetAnnotationWithPrefix("stream-snippet")
+	annotation := parser.GetAnnotationWithPrefix(streamSnippetAnnotation)
 
 	ap := NewParser(&resolver.Mock{})
 	if ap == nil {
diff --git a/internal/ingress/annotations/upstreamhashby/main.go b/internal/ingress/annotations/upstreamhashby/main.go
index e6bbca6c3..bc07f70fb 100644
--- a/internal/ingress/annotations/upstreamhashby/main.go
+++ b/internal/ingress/annotations/upstreamhashby/main.go
@@ -17,14 +17,54 @@ limitations under the License.
 package upstreamhashby
 
 import (
+	"regexp"
+
 	networking "k8s.io/api/networking/v1"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	upstreamHashByAnnotation       = "upstream-hash-by"
+	upstreamHashBySubsetAnnotation = "upstream-hash-by-subset"
+	upstreamHashBySubsetSize       = "upstream-hash-by-subset-size"
+)
+
+var (
+	specialChars = regexp.QuoteMeta("_${}")
+	hashByRegex  = regexp.MustCompilePOSIX(`^[A-Za-z0-9\-` + specialChars + `]*$`)
+)
+
+var upstreamHashByAnnotations = parser.Annotation{
+	Group: "backend",
+	Annotations: parser.AnnotationFields{
+		upstreamHashByAnnotation: {
+			Validator: parser.ValidateRegex(*hashByRegex, true),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskHigh, // High, this annotation allows accessing NGINX variables
+			Documentation: `This annotation defines the nginx variable, text value or any combination thereof to use for consistent hashing. 
+			For example: nginx.ingress.kubernetes.io/upstream-hash-by: "$request_uri" or nginx.ingress.kubernetes.io/upstream-hash-by: "$request_uri$host" or nginx.ingress.kubernetes.io/upstream-hash-by: "${request_uri}-text-value" to consistently hash upstream requests by the current request URI.`,
+		},
+		upstreamHashBySubsetAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation maps requests to subset of nodes instead of a single one.`,
+		},
+		upstreamHashBySubsetSize: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation determines the size of each subset (default 3)`,
+		},
+	},
+}
+
 type upstreamhashby struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // Config contains the Consistent hash configuration to be used in the Ingress
@@ -36,14 +76,26 @@ type Config struct {
 
 // NewParser creates a new UpstreamHashBy annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return upstreamhashby{r}
+	return upstreamhashby{
+		r:                r,
+		annotationConfig: upstreamHashByAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress rule
 func (a upstreamhashby) Parse(ing *networking.Ingress) (interface{}, error) {
-	upstreamHashBy, _ := parser.GetStringAnnotation("upstream-hash-by", ing)
-	upstreamHashBySubset, _ := parser.GetBoolAnnotation("upstream-hash-by-subset", ing)
-	upstreamHashbySubsetSize, _ := parser.GetIntAnnotation("upstream-hash-by-subset-size", ing)
+	upstreamHashBy, err := parser.GetStringAnnotation(upstreamHashByAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil && !errors.IsMissingAnnotations(err) {
+		return nil, err
+	}
+	upstreamHashBySubset, err := parser.GetBoolAnnotation(upstreamHashBySubsetAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil && !errors.IsMissingAnnotations(err) {
+		return nil, err
+	}
+	upstreamHashbySubsetSize, err := parser.GetIntAnnotation(upstreamHashBySubsetSize, ing, a.annotationConfig.Annotations)
+	if err != nil && !errors.IsMissingAnnotations(err) {
+		return nil, err
+	}
 
 	if upstreamHashbySubsetSize == 0 {
 		upstreamHashbySubsetSize = 3
@@ -51,3 +103,12 @@ func (a upstreamhashby) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	return &Config{upstreamHashBy, upstreamHashBySubset, upstreamHashbySubsetSize}, nil
 }
+
+func (a upstreamhashby) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a upstreamhashby) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, upstreamHashByAnnotations.Annotations)
+}
diff --git a/internal/ingress/annotations/upstreamhashby/main_test.go b/internal/ingress/annotations/upstreamhashby/main_test.go
index d2c2644ca..bdbd9c350 100644
--- a/internal/ingress/annotations/upstreamhashby/main_test.go
+++ b/internal/ingress/annotations/upstreamhashby/main_test.go
@@ -27,7 +27,7 @@ import (
 )
 
 func TestParse(t *testing.T) {
-	annotation := parser.GetAnnotationWithPrefix("upstream-hash-by")
+	annotation := parser.GetAnnotationWithPrefix(upstreamHashByAnnotation)
 
 	ap := NewParser(&resolver.Mock{})
 	if ap == nil {
@@ -37,12 +37,15 @@ func TestParse(t *testing.T) {
 	testCases := []struct {
 		annotations map[string]string
 		expected    string
+		expectErr   bool
 	}{
-		{map[string]string{annotation: "$request_uri"}, "$request_uri"},
-		{map[string]string{annotation: "$request_uri$scheme"}, "$request_uri$scheme"},
-		{map[string]string{annotation: "false"}, "false"},
-		{map[string]string{}, ""},
-		{nil, ""},
+		{map[string]string{annotation: "$request_URI"}, "$request_URI", false},
+		{map[string]string{annotation: "$request_uri$scheme"}, "$request_uri$scheme", false},
+		{map[string]string{annotation: "xpto;[]"}, "", true},
+		{map[string]string{annotation: "lalal${scheme_test}"}, "lalal${scheme_test}", false},
+		{map[string]string{annotation: "false"}, "false", false},
+		{map[string]string{}, "", false},
+		{nil, "", false},
 	}
 
 	ing := &networking.Ingress{
@@ -55,14 +58,19 @@ func TestParse(t *testing.T) {
 
 	for _, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
-		result, _ := ap.Parse(ing)
-		uc, ok := result.(*Config)
-		if !ok {
-			t.Fatalf("expected a Config type")
+		result, err := ap.Parse(ing)
+		if (err != nil) != testCase.expectErr {
+			t.Fatalf("expected error: %t got error: %t err value: %s. %+v", testCase.expectErr, err != nil, err, testCase.annotations)
 		}
+		if !testCase.expectErr {
+			uc, ok := result.(*Config)
+			if !ok {
+				t.Fatalf("expected a Config type")
+			}
 
-		if uc.UpstreamHashBy != testCase.expected {
-			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
+			if uc.UpstreamHashBy != testCase.expected {
+				t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
+			}
 		}
 	}
 }
diff --git a/internal/ingress/annotations/upstreamvhost/main.go b/internal/ingress/annotations/upstreamvhost/main.go
index 2eed5607e..052ca2344 100644
--- a/internal/ingress/annotations/upstreamvhost/main.go
+++ b/internal/ingress/annotations/upstreamvhost/main.go
@@ -23,18 +23,48 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	upstreamVhostAnnotation = "upstream-vhost"
+)
+
+var upstreamVhostAnnotations = parser.Annotation{
+	Group: "backend",
+	Annotations: parser.AnnotationFields{
+		upstreamVhostAnnotation: {
+			Validator: parser.ValidateServerName,
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow, // Low, as it allows regexes but on a very limited set
+			Documentation: `This configuration setting allows you to control the value for host in the following statement: proxy_set_header Host $host, which forms part of the location block. 
+			This is useful if you need to call the upstream server by something other than $host`,
+		},
+	},
+}
+
 type upstreamVhost struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new upstream VHost annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return upstreamVhost{r}
+	return upstreamVhost{
+		r:                r,
+		annotationConfig: upstreamVhostAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress rule
 // used to indicate if the location/s contains a fragment of
 // configuration to be included inside the paths of the rules
 func (a upstreamVhost) Parse(ing *networking.Ingress) (interface{}, error) {
-	return parser.GetStringAnnotation("upstream-vhost", ing)
+	return parser.GetStringAnnotation(upstreamVhostAnnotation, ing, a.annotationConfig.Annotations)
+}
+
+func (a upstreamVhost) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+func (a upstreamVhost) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, upstreamVhostAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/upstreamvhost/main_test.go b/internal/ingress/annotations/upstreamvhost/main_test.go
index 130d745ee..87324b181 100644
--- a/internal/ingress/annotations/upstreamvhost/main_test.go
+++ b/internal/ingress/annotations/upstreamvhost/main_test.go
@@ -36,7 +36,7 @@ func TestParse(t *testing.T) {
 	}
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix("upstream-vhost")] = "ok.com"
+	data[parser.GetAnnotationWithPrefix(upstreamVhostAnnotation)] = "ok.com"
 
 	ing.SetAnnotations(data)
 
diff --git a/internal/ingress/annotations/xforwardedprefix/main.go b/internal/ingress/annotations/xforwardedprefix/main.go
index 60eed8773..fc4d5798d 100644
--- a/internal/ingress/annotations/xforwardedprefix/main.go
+++ b/internal/ingress/annotations/xforwardedprefix/main.go
@@ -23,17 +23,46 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	xForwardedForPrefixAnnotation = "x-forwarded-prefix"
+)
+
+var xForwardedForAnnotations = parser.Annotation{
+	Group: "backend",
+	Annotations: parser.AnnotationFields{
+		xForwardedForPrefixAnnotation: {
+			Validator:     parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow, // Low, as it allows regexes but on a very limited set
+			Documentation: `This annotation can be used to add the non-standard X-Forwarded-Prefix header to the upstream request with a string value`,
+		},
+	},
+}
+
 type xforwardedprefix struct {
-	r resolver.Resolver
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
 }
 
 // NewParser creates a new xforwardedprefix annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return xforwardedprefix{r}
+	return xforwardedprefix{
+		r:                r,
+		annotationConfig: xForwardedForAnnotations,
+	}
 }
 
 // Parse parses the annotations contained in the ingress rule
 // used to add an x-forwarded-prefix header to the request
 func (cbbs xforwardedprefix) Parse(ing *networking.Ingress) (interface{}, error) {
-	return parser.GetStringAnnotation("x-forwarded-prefix", ing)
+	return parser.GetStringAnnotation(xForwardedForPrefixAnnotation, ing, cbbs.annotationConfig.Annotations)
+}
+
+func (cbbs xforwardedprefix) GetDocumentation() parser.AnnotationFields {
+	return cbbs.annotationConfig.Annotations
+}
+
+func (a xforwardedprefix) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, xForwardedForAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/xforwardedprefix/main_test.go b/internal/ingress/annotations/xforwardedprefix/main_test.go
index a78c63d04..d873a4412 100644
--- a/internal/ingress/annotations/xforwardedprefix/main_test.go
+++ b/internal/ingress/annotations/xforwardedprefix/main_test.go
@@ -27,7 +27,7 @@ import (
 )
 
 func TestParse(t *testing.T) {
-	annotation := parser.GetAnnotationWithPrefix("x-forwarded-prefix")
+	annotation := parser.GetAnnotationWithPrefix(xForwardedForPrefixAnnotation)
 	ap := NewParser(&resolver.Mock{})
 	if ap == nil {
 		t.Fatalf("expected a parser.IngressAnnotation but returned nil")
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 345ce89b4..6e78964ed 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -97,6 +97,17 @@ type Configuration struct {
 	// If disabled, only snippets added via ConfigMap are added to ingress.
 	AllowSnippetAnnotations bool `json:"allow-snippet-annotations"`
 
+	// AllowCrossNamespaceResources enables users to consume cross namespace resource on annotations
+	// Case disabled, attempts to use secrets or configmaps from a namespace different from Ingress will
+	// be denied
+	// This value will default to `false` on future releases
+	AllowCrossNamespaceResources bool `json:"allow-cross-namespace-resources"`
+
+	// AnnotationsRiskLevel represents the risk accepted on an annotation. If the risk is, for instance `Medium`, annotations
+	// with risk High and Critical will not be accepted.
+	// Default Risk is Critical by default, but this may be changed in future releases
+	AnnotationsRiskLevel string `json:"annotations-risk-level"`
+
 	// AnnotationValueWordBlocklist defines words that should not be part of an user annotation value
 	// (can be used to run arbitrary code or configs, for example) and that should be dropped.
 	// This list should be separated by "," character
@@ -708,7 +719,7 @@ type Configuration struct {
 
 	// DatadogSampleRate specifies sample rate for any traces created.
 	// Default: use a dynamic rate instead
-	DatadogSampleRate *float32 `json:"datadog-sample-rate",omitempty`
+	DatadogSampleRate *float32 `json:"datadog-sample-rate,omitempty"`
 
 	// MainSnippet adds custom configuration to the main section of the nginx configuration
 	MainSnippet string `json:"main-snippet"`
@@ -853,8 +864,10 @@ func NewDefault() Configuration {
 
 	cfg := Configuration{
 		AllowSnippetAnnotations:          true,
+		AllowCrossNamespaceResources:     true,
 		AllowBackendServerHeader:         false,
 		AnnotationValueWordBlocklist:     "",
+		AnnotationsRiskLevel:             "Critical",
 		AccessLogPath:                    "/var/log/nginx/access.log",
 		AccessLogParams:                  "",
 		EnableAccessLogForDefaultBackend: false,
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 4a4417130..7dc1a5292 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -389,14 +389,19 @@ func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
 			toCheck.ObjectMeta.Name == ing.ObjectMeta.Name
 	}
 	ings := store.FilterIngresses(allIngresses, filter)
+	parsed, err := annotations.NewAnnotationExtractor(n.store).Extract(ing)
+	if err != nil {
+		n.metricCollector.IncCheckErrorCount(ing.ObjectMeta.Namespace, ing.Name)
+		return err
+	}
 	ings = append(ings, &ingress.Ingress{
 		Ingress:           *ing,
-		ParsedAnnotations: annotations.NewAnnotationExtractor(n.store).Extract(ing),
+		ParsedAnnotations: parsed,
 	})
 	startTest := time.Now().UnixNano() / 1000000
 	_, servers, pcfg := n.getConfiguration(ings)
 
-	err := checkOverlap(ing, allIngresses, servers)
+	err = checkOverlap(ing, allIngresses, servers)
 	if err != nil {
 		n.metricCollector.IncCheckErrorCount(ing.ObjectMeta.Namespace, ing.Name)
 		return err
@@ -1509,7 +1514,7 @@ func locationApplyAnnotations(loc *ingress.Location, anns *annotations.Ingress)
 	loc.Rewrite = anns.Rewrite
 	loc.UpstreamVhost = anns.UpstreamVhost
 	loc.Denylist = anns.Denylist
-	loc.Whitelist = anns.Whitelist
+	loc.Allowlist = anns.Allowlist
 	loc.Denied = anns.Denied
 	loc.XForwardedPrefix = anns.XForwardedPrefix
 	loc.UsePortInRedirects = anns.UsePortInRedirects
@@ -1808,9 +1813,9 @@ func checkOverlap(ing *networking.Ingress, ingresses []*ingress.Ingress, servers
 			}
 
 			// path overlap. Check if one of the ingresses has a canary annotation
-			isCanaryEnabled, annotationErr := parser.GetBoolAnnotation("canary", ing)
+			isCanaryEnabled, annotationErr := parser.GetBoolAnnotation("canary", ing, canary.CanaryAnnotations.Annotations)
 			for _, existing := range existingIngresses {
-				isExistingCanaryEnabled, existingAnnotationErr := parser.GetBoolAnnotation("canary", existing)
+				isExistingCanaryEnabled, existingAnnotationErr := parser.GetBoolAnnotation("canary", existing, canary.CanaryAnnotations.Annotations)
 
 				if isCanaryEnabled && isExistingCanaryEnabled {
 					return fmt.Errorf(`host "%s" and path "%s" is already defined in ingress %s/%s`, rule.Host, path.Path, existing.Namespace, existing.Name)
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index 44184f6b9..c353d1b5e 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -44,7 +44,7 @@ import (
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/canary"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/ipwhitelist"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/ipallowlist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/proxyssl"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/sessionaffinity"
@@ -73,6 +73,13 @@ func (fis fakeIngressStore) GetBackendConfiguration() ngx_config.Configuration {
 	return fis.configuration
 }
 
+func (fis fakeIngressStore) GetSecurityConfiguration() defaults.SecurityConfiguration {
+	return defaults.SecurityConfiguration{
+		AnnotationsRiskLevel:         fis.configuration.AnnotationsRiskLevel,
+		AllowCrossNamespaceResources: fis.configuration.AllowCrossNamespaceResources,
+	}
+}
+
 func (fakeIngressStore) GetConfigMap(key string) (*corev1.ConfigMap, error) {
 	return nil, fmt.Errorf("test error")
 }
@@ -2418,7 +2425,7 @@ func TestGetBackendServers(t *testing.T) {
 						},
 					},
 					ParsedAnnotations: &annotations.Ingress{
-						Whitelist:            ipwhitelist.SourceRange{CIDR: []string{"10.0.0.0/24"}},
+						Allowlist:            ipallowlist.SourceRange{CIDR: []string{"10.0.0.0/24"}},
 						ServerSnippet:        "bla",
 						ConfigurationSnippet: "blo",
 					},
@@ -2439,7 +2446,7 @@ func TestGetBackendServers(t *testing.T) {
 					t.Errorf("config snippet should be empty, got '%s'", s.Locations[0].ConfigurationSnippet)
 				}
 
-				if len(s.Locations[0].Whitelist.CIDR) != 1 || s.Locations[0].Whitelist.CIDR[0] != "10.0.0.0/24" {
+				if len(s.Locations[0].Allowlist.CIDR) != 1 || s.Locations[0].Allowlist.CIDR[0] != "10.0.0.0/24" {
 					t.Errorf("allow list was incorrectly dropped, len should be 1 and contain 10.0.0.0/24")
 				}
 
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 9b3700739..c11e35d76 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -69,6 +69,9 @@ type Storer interface {
 	// GetBackendConfiguration returns the nginx configuration stored in a configmap
 	GetBackendConfiguration() ngx_config.Configuration
 
+	// GetSecurityConfiguration returns the configuration options from Ingress
+	GetSecurityConfiguration() defaults.SecurityConfiguration
+
 	// GetConfigMap returns the ConfigMap matching key.
 	GetConfigMap(key string) (*corev1.ConfigMap, error)
 
@@ -882,9 +885,14 @@ func (s *k8sStore) syncIngress(ing *networkingv1.Ingress) {
 
 	k8s.SetDefaultNGINXPathType(copyIng)
 
-	err := s.listers.IngressWithAnnotation.Update(&ingress.Ingress{
+	parsed, err := s.annotations.Extract(ing)
+	if err != nil {
+		klog.Error(err)
+		return
+	}
+	err = s.listers.IngressWithAnnotation.Update(&ingress.Ingress{
 		Ingress:           *copyIng,
-		ParsedAnnotations: s.annotations.Extract(ing),
+		ParsedAnnotations: parsed,
 	})
 	if err != nil {
 		klog.Error(err)
@@ -920,8 +928,10 @@ func (s *k8sStore) updateSecretIngressMap(ing *networkingv1.Ingress) {
 		"proxy-ssl-secret",
 		"secure-verify-ca-secret",
 	}
+
+	secConfig := s.GetSecurityConfiguration().AllowCrossNamespaceResources
 	for _, ann := range secretAnnotations {
-		secrKey, err := objectRefAnnotationNsKey(ann, ing)
+		secrKey, err := objectRefAnnotationNsKey(ann, ing, secConfig)
 		if err != nil && !errors.IsMissingAnnotations(err) {
 			klog.Errorf("error reading secret reference in annotation %q: %s", ann, err)
 			continue
@@ -937,8 +947,9 @@ func (s *k8sStore) updateSecretIngressMap(ing *networkingv1.Ingress) {
 
 // objectRefAnnotationNsKey returns an object reference formatted as a
 // 'namespace/name' key from the given annotation name.
-func objectRefAnnotationNsKey(ann string, ing *networkingv1.Ingress) (string, error) {
-	annValue, err := parser.GetStringAnnotation(ann, ing)
+func objectRefAnnotationNsKey(ann string, ing *networkingv1.Ingress, allowCrossNamespace bool) (string, error) {
+	// We pass nil fields, as this is an internal process and we don't need to validate it.
+	annValue, err := parser.GetStringAnnotation(ann, ing, nil)
 	if err != nil {
 		return "", err
 	}
@@ -951,6 +962,9 @@ func objectRefAnnotationNsKey(ann string, ing *networkingv1.Ingress) (string, er
 	if secrNs == "" {
 		return fmt.Sprintf("%v/%v", ing.Namespace, secrName), nil
 	}
+	if !allowCrossNamespace && secrNs != ing.Namespace {
+		return "", fmt.Errorf("cross namespace secret is not supported")
+	}
 	return annValue, nil
 }
 
@@ -1125,6 +1139,17 @@ func (s *k8sStore) GetBackendConfiguration() ngx_config.Configuration {
 	return s.backendConfig
 }
 
+func (s *k8sStore) GetSecurityConfiguration() defaults.SecurityConfiguration {
+	s.backendConfigMu.RLock()
+	defer s.backendConfigMu.RUnlock()
+
+	secConfig := defaults.SecurityConfiguration{
+		AllowCrossNamespaceResources: s.backendConfig.AllowCrossNamespaceResources,
+		AnnotationsRiskLevel:         s.backendConfig.AnnotationsRiskLevel,
+	}
+	return secConfig
+}
+
 func (s *k8sStore) setConfig(cmap *corev1.ConfigMap) {
 	s.backendConfigMu.Lock()
 	defer s.backendConfigMu.Unlock()
diff --git a/internal/ingress/controller/store/store_test.go b/internal/ingress/controller/store/store_test.go
index b91cadc6c..774a45676 100644
--- a/internal/ingress/controller/store/store_test.go
+++ b/internal/ingress/controller/store/store_test.go
@@ -1414,18 +1414,31 @@ func TestUpdateSecretIngressMap(t *testing.T) {
 	t.Run("with annotation in namespace/name format", func(t *testing.T) {
 		ing := ingTpl.DeepCopy()
 		ing.ObjectMeta.SetAnnotations(map[string]string{
-			parser.GetAnnotationWithPrefix("auth-secret"): "otherns/auth",
+			parser.GetAnnotationWithPrefix("auth-secret"): "testns/auth",
 		})
 		if err := s.listers.Ingress.Update(ing); err != nil {
 			t.Errorf("error updating the Ingress: %v", err)
 		}
 		s.updateSecretIngressMap(ing)
 
-		if l := s.secretIngressMap.Len(); !(l == 1 && s.secretIngressMap.Has("otherns/auth")) {
+		if l := s.secretIngressMap.Len(); !(l == 1 && s.secretIngressMap.Has("testns/auth")) {
 			t.Errorf("Expected \"otherns/auth\" to be the only referenced Secret (got %d)", l)
 		}
 	})
 
+	t.Run("with annotation in namespace/name format should not be supported", func(t *testing.T) {
+		ing := ingTpl.DeepCopy()
+		ing.ObjectMeta.SetAnnotations(map[string]string{
+			parser.GetAnnotationWithPrefix("auth-secret"): "anotherns/auth",
+		})
+		s.listers.Ingress.Update(ing)
+		s.updateSecretIngressMap(ing)
+
+		if l := s.secretIngressMap.Len(); l != 0 {
+			t.Errorf("Expected \"otherns/auth\" to be denied as it contains a different namespace (got %d)", l)
+		}
+	})
+
 	t.Run("with annotation in invalid format", func(t *testing.T) {
 		ing := ingTpl.DeepCopy()
 		ing.ObjectMeta.SetAnnotations(map[string]string{
diff --git a/internal/ingress/defaults/main.go b/internal/ingress/defaults/main.go
index 0aab2ff47..8cd0e8ba5 100644
--- a/internal/ingress/defaults/main.go
+++ b/internal/ingress/defaults/main.go
@@ -170,3 +170,15 @@ type Backend struct {
 	// It disables that behavior and instead uses a single upstream in NGINX, the service's Cluster IP and port.
 	ServiceUpstream bool `json:"service-upstream"`
 }
+
+type SecurityConfiguration struct {
+	// AllowCrossNamespaceResources enables users to consume cross namespace resource on annotations
+	// Case disabled, attempts to use secrets or configmaps from a namespace different from Ingress will
+	// be denied
+	// This valid will default to `false` on future releases
+	AllowCrossNamespaceResources bool `json:"allow-cross-namespace-resources"`
+
+	// AnnotationsRiskLevel represents the risk accepted on an annotation. If the risk is, for instance `Medium`, annotations
+	// with risk High and Critical will not be accepted
+	AnnotationsRiskLevel string `json:"annotations-risk-level"`
+}
diff --git a/internal/ingress/errors/errors.go b/internal/ingress/errors/errors.go
index 93c9ee5e0..e6f7fb52c 100644
--- a/internal/ingress/errors/errors.go
+++ b/internal/ingress/errors/errors.go
@@ -110,3 +110,47 @@ func New(m string) error {
 func Errorf(format string, args ...interface{}) error {
 	return fmt.Errorf(format, args...)
 }
+
+type ValidationError struct {
+	Reason error
+}
+
+type RiskyAnnotationError struct {
+	Reason error
+}
+
+func (e ValidationError) Error() string {
+	return e.Reason.Error()
+}
+
+// NewValidationError returns a new LocationDenied error
+func NewValidationError(annotation string) error {
+	return ValidationError{
+		Reason: fmt.Errorf("annotation %s contains invalid value", annotation),
+	}
+}
+
+// IsValidationError checks if the err is an error which
+// indicates that some annotation value is invalid
+func IsValidationError(e error) bool {
+	_, ok := e.(ValidationError)
+	return ok
+}
+
+// NewValidationError returns a new LocationDenied error
+func NewRiskyAnnotations(name string) error {
+	return RiskyAnnotationError{
+		Reason: fmt.Errorf("annotation group %s contains risky annotation based on ingress configuration", name),
+	}
+}
+
+// IsRiskyAnnotationError checks if the err is an error which
+// indicates that some annotation value is invalid
+func IsRiskyAnnotationError(e error) bool {
+	_, ok := e.(ValidationError)
+	return ok
+}
+
+func (e RiskyAnnotationError) Error() string {
+	return e.Reason.Error()
+}
diff --git a/internal/ingress/resolver/main.go b/internal/ingress/resolver/main.go
index e05a2aaae..7d17f4e16 100644
--- a/internal/ingress/resolver/main.go
+++ b/internal/ingress/resolver/main.go
@@ -26,6 +26,9 @@ type Resolver interface {
 	// GetDefaultBackend returns the backend that must be used as default
 	GetDefaultBackend() defaults.Backend
 
+	// GetSecurityConfiguration returns the configuration options from Ingress
+	GetSecurityConfiguration() defaults.SecurityConfiguration
+
 	// GetConfigMap searches for configmap containing the namespace and name usting the character /
 	GetConfigMap(string) (*apiv1.ConfigMap, error)
 
diff --git a/internal/ingress/resolver/mock.go b/internal/ingress/resolver/mock.go
index 62c5c6db9..679c3b13c 100644
--- a/internal/ingress/resolver/mock.go
+++ b/internal/ingress/resolver/mock.go
@@ -26,7 +26,9 @@ import (
 
 // Mock implements the Resolver interface
 type Mock struct {
-	ConfigMaps map[string]*apiv1.ConfigMap
+	ConfigMaps           map[string]*apiv1.ConfigMap
+	AnnotationsRiskLevel string
+	AllowCrossNamespace  bool
 }
 
 // GetDefaultBackend returns the backend that must be used as default
@@ -34,6 +36,17 @@ func (m Mock) GetDefaultBackend() defaults.Backend {
 	return defaults.Backend{}
 }
 
+func (m Mock) GetSecurityConfiguration() defaults.SecurityConfiguration {
+	defRisk := m.AnnotationsRiskLevel
+	if defRisk == "" {
+		defRisk = "Critical"
+	}
+	return defaults.SecurityConfiguration{
+		AnnotationsRiskLevel:         defRisk,
+		AllowCrossNamespaceResources: m.AllowCrossNamespace,
+	}
+}
+
 // GetSecret searches for secrets contenating the namespace and name using a the character /
 func (m Mock) GetSecret(string) (*apiv1.Secret, error) {
 	return nil, nil
diff --git a/pkg/apis/ingress/types.go b/pkg/apis/ingress/types.go
index e50666c18..284e9b427 100644
--- a/pkg/apis/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -29,8 +29,8 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/cors"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/fastcgi"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/globalratelimit"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/ipallowlist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipdenylist"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/ipwhitelist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/log"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/mirror"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/modsecurity"
@@ -224,7 +224,7 @@ type Server struct {
 // is required.
 // The chain in the execution order of annotations should be:
 // - Denylist
-// - Whitelist
+// - Allowlist
 // - RateLimit
 // - BasicDigestAuth
 // - ExternalAuth
@@ -298,10 +298,10 @@ type Location struct {
 	// addresses or networks are allowed.
 	// +optional
 	Denylist ipdenylist.SourceRange `json:"denylist,omitempty"`
-	// Whitelist indicates only connections from certain client
+	// Allowlist indicates only connections from certain client
 	// addresses or networks are allowed.
 	// +optional
-	Whitelist ipwhitelist.SourceRange `json:"whitelist,omitempty"`
+	Allowlist ipallowlist.SourceRange `json:"allowlist,omitempty"`
 	// Proxy contains information about timeouts and buffer sizes
 	// to be used in connections against endpoints
 	// +optional
diff --git a/pkg/apis/ingress/types_equals.go b/pkg/apis/ingress/types_equals.go
index 84b1a186a..c87f5ba3e 100644
--- a/pkg/apis/ingress/types_equals.go
+++ b/pkg/apis/ingress/types_equals.go
@@ -400,7 +400,7 @@ func (l1 *Location) Equal(l2 *Location) bool {
 	if !(&l1.Denylist).Equal(&l2.Denylist) {
 		return false
 	}
-	if !(&l1.Whitelist).Equal(&l2.Whitelist) {
+	if !(&l1.Allowlist).Equal(&l2.Allowlist) {
 		return false
 	}
 	if !(&l1.Proxy).Equal(&l2.Proxy) {
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index 489e24886..2c926a35f 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -152,6 +152,9 @@ Requires the update-status parameter.`)
 		annotationsPrefix = flags.String("annotations-prefix", parser.DefaultAnnotationsPrefix,
 			`Prefix of the Ingress annotations specific to the NGINX controller.`)
 
+		enableAnnotationValidation = flags.Bool("enable-annotation-validation", false,
+			`If true, will enable the annotation validation feature. This value will be defaulted to true on a future release`)
+
 		enableSSLChainCompletion = flags.Bool("enable-ssl-chain-completion", false,
 			`Autocomplete SSL certificate chains with missing intermediate CA certificates.
 Certificates uploaded to Kubernetes must have the "Authority Information Access" X.509 v3
@@ -249,6 +252,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 	}
 
 	parser.AnnotationsPrefix = *annotationsPrefix
+	parser.EnableAnnotationValidation = *enableAnnotationValidation
 
 	// check port collisions
 	if !ing_net.IsPortAvailable(*httpPort) {
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 189c13d6c..02b5309cd 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -548,14 +548,14 @@ http {
 
     {{ range $rl := (filterRateLimits $servers ) }}
     # Ratelimit {{ $rl.Name }}
-    geo $remote_addr $whitelist_{{ $rl.ID }} {
+    geo $remote_addr $allowlist_{{ $rl.ID }} {
         default 0;
-        {{ range $ip := $rl.Whitelist }}
+        {{ range $ip := $rl.Allowlist }}
         {{ $ip }} 1;{{ end }}
     }
 
     # Ratelimit {{ $rl.Name }}
-    map $whitelist_{{ $rl.ID }} $limit_{{ $rl.ID }} {
+    map $allowlist_{{ $rl.ID }} $limit_{{ $rl.ID }} {
         0 {{ $cfg.LimitConnZoneVariable }};
         1 "";
     }
@@ -1312,8 +1312,8 @@ stream {
             {{ range $ip := $location.Denylist.CIDR }}
             deny {{ $ip }};{{ end }}
             {{ end }}
-            {{ if gt (len $location.Whitelist.CIDR) 0 }}
-            {{ range $ip := $location.Whitelist.CIDR }}
+            {{ if gt (len $location.Allowlist.CIDR) 0 }}
+            {{ range $ip := $location.Allowlist.CIDR }}
             allow {{ $ip }};{{ end }}
             deny all;
             {{ end }}
diff --git a/test/e2e-image/namespace-overlays/validations/values.yaml b/test/e2e-image/namespace-overlays/validations/values.yaml
new file mode 100644
index 000000000..d423217db
--- /dev/null
+++ b/test/e2e-image/namespace-overlays/validations/values.yaml
@@ -0,0 +1,38 @@
+# TODO: remove the need to use fullnameOverride
+fullnameOverride: nginx-ingress
+controller:
+  image:
+    repository: ingress-controller/controller
+    chroot: true
+    tag: 1.0.0-dev
+    digest:
+    digestChroot:
+  containerPort:
+    http: "1080"
+    https: "1443"
+
+  extraArgs:
+    http-port: "1080"
+    https-port: "1443"
+    # e2e tests do not require information about ingress status
+    update-status: "false"
+
+  scope:
+    enabled: true
+
+  config:
+    worker-processes: "1"
+  service:
+    type: NodePort
+
+  admissionWebhooks:
+    enabled: true
+    certificate: "/usr/local/certificates/cert"
+    key: "/usr/local/certificates/key"
+
+defaultBackend:
+  enabled: false
+
+rbac:
+  create: true
+  scope: true
diff --git a/test/e2e/annotations/fastcgi.go b/test/e2e/annotations/fastcgi.go
index 572eca548..7ed35cb76 100644
--- a/test/e2e/annotations/fastcgi.go
+++ b/test/e2e/annotations/fastcgi.go
@@ -75,7 +75,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - FastCGI", func() {
 				Namespace: f.Namespace,
 			},
 			Data: map[string]string{
-				"SCRIPT_FILENAME": "/home/www/scripts/php$fastcgi_script_name",
+				"SCRIPT_FILENAME": "$fastcgi_script_name",
 				"REDIRECT_STATUS": "200",
 			},
 		}
@@ -94,7 +94,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - FastCGI", func() {
 
 		f.WaitForNginxServer(host,
 			func(server string) bool {
-				return strings.Contains(server, "fastcgi_param SCRIPT_FILENAME \"/home/www/scripts/php$fastcgi_script_name\";") &&
+				return strings.Contains(server, "fastcgi_param SCRIPT_FILENAME \"$fastcgi_script_name\";") &&
 					strings.Contains(server, "fastcgi_param REDIRECT_STATUS \"200\";")
 			})
 	})
diff --git a/test/e2e/annotations/ipwhitelist.go b/test/e2e/annotations/ipallowlist.go
similarity index 81%
rename from test/e2e/annotations/ipwhitelist.go
rename to test/e2e/annotations/ipallowlist.go
index 71f026c7f..79c77b4d0 100644
--- a/test/e2e/annotations/ipwhitelist.go
+++ b/test/e2e/annotations/ipallowlist.go
@@ -24,19 +24,19 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
-var _ = framework.DescribeAnnotation("whitelist-source-range", func() {
-	f := framework.NewDefaultFramework("ipwhitelist")
+var _ = framework.DescribeAnnotation("allowlist-source-range", func() {
+	f := framework.NewDefaultFramework("ipallowlist")
 
 	ginkgo.BeforeEach(func() {
 		f.NewEchoDeployment()
 	})
 
-	ginkgo.It("should set valid ip whitelist range", func() {
-		host := "ipwhitelist.foo.com"
+	ginkgo.It("should set valid ip allowlist range", func() {
+		host := "ipallowlist.foo.com"
 		nameSpace := f.Namespace
 
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/whitelist-source-range": "18.0.0.0/8, 56.0.0.0/8",
+			"nginx.ingress.kubernetes.io/allowlist-source-range": "18.0.0.0/8, 56.0.0.0/8",
 		}
 
 		ing := framework.NewSingleIngress(host, "/", host, nameSpace, framework.EchoService, 80, annotations)
diff --git a/test/e2e/e2e.go b/test/e2e/e2e.go
index 614dd166a..28adf297d 100644
--- a/test/e2e/e2e.go
+++ b/test/e2e/e2e.go
@@ -47,6 +47,8 @@ import (
 	_ "k8s.io/ingress-nginx/test/e2e/settings"
 	_ "k8s.io/ingress-nginx/test/e2e/settings/modsecurity"
 	_ "k8s.io/ingress-nginx/test/e2e/settings/ocsp"
+	_ "k8s.io/ingress-nginx/test/e2e/settings/validations"
+
 	_ "k8s.io/ingress-nginx/test/e2e/ssl"
 	_ "k8s.io/ingress-nginx/test/e2e/status"
 	_ "k8s.io/ingress-nginx/test/e2e/tcpudp"
diff --git a/test/e2e/framework/exec.go b/test/e2e/framework/exec.go
index d91d36551..07bf09be8 100644
--- a/test/e2e/framework/exec.go
+++ b/test/e2e/framework/exec.go
@@ -116,7 +116,12 @@ func (f *Framework) newIngressController(namespace string, namespaceOverlay stri
 	if !ok {
 		isChroot = "false"
 	}
-	cmd := exec.Command("./wait-for-nginx.sh", namespace, namespaceOverlay, isChroot)
+
+	enableAnnotationValidations, ok := os.LookupEnv("ENABLE_VALIDATIONS")
+	if !ok {
+		enableAnnotationValidations = "false"
+	}
+	cmd := exec.Command("./wait-for-nginx.sh", namespace, namespaceOverlay, isChroot, enableAnnotationValidations)
 	out, err := cmd.CombinedOutput()
 	if err != nil {
 		return fmt.Errorf("unexpected error waiting for ingress controller deployment: %v.\nLogs:\n%v", err, string(out))
diff --git a/test/e2e/run-e2e-suite.sh b/test/e2e/run-e2e-suite.sh
index b56312afd..015895e56 100755
--- a/test/e2e/run-e2e-suite.sh
+++ b/test/e2e/run-e2e-suite.sh
@@ -78,6 +78,7 @@ kubectl run --rm \
   --env="E2E_NODES=${E2E_NODES}" \
   --env="FOCUS=${FOCUS}" \
   --env="IS_CHROOT=${IS_CHROOT:-false}"\
+  --env="ENABLE_VALIDATIONS=${ENABLE_VALIDATIONS:-false}"\
   --env="E2E_CHECK_LEAKS=${E2E_CHECK_LEAKS}" \
   --env="NGINX_BASE_IMAGE=${NGINX_BASE_IMAGE}" \
   --env="HTTPBUN_IMAGE=${HTTPBUN_IMAGE}" \
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index e6e4e086b..4dc1bddd0 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -39,6 +39,7 @@ fi
 
 KIND_LOG_LEVEL="1"
 IS_CHROOT="${IS_CHROOT:-false}"
+ENABLE_VALIDATIONS="${ENABLE_VALIDATIONS:-false}"
 export KIND_CLUSTER_NAME=${KIND_CLUSTER_NAME:-ingress-nginx-dev}
 DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
 # Use 1.0.0-dev to make sure we use the latest configuration in the helm template
diff --git a/test/e2e/settings/validations/validations.go b/test/e2e/settings/validations/validations.go
new file mode 100644
index 000000000..6f1715ada
--- /dev/null
+++ b/test/e2e/settings/validations/validations.go
@@ -0,0 +1,86 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package annotations
+
+import (
+	"context"
+
+	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
+
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.IngressNginxDescribeSerial("annotation validations", func() {
+	f := framework.NewDefaultFramework("validations")
+
+	ginkgo.It("should allow ingress based on their risk on webhooks", func() {
+		host := "annotation-validations"
+
+		// Low and Medium Risk annotations should be allowed, the rest should be denied
+		f.UpdateNginxConfigMapData("annotations-risk-level", "Medium")
+		// Sleep a while just to guarantee that the configmap is applied
+		framework.Sleep()
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/default-backend":       "default/bla", // low risk
+			"nginx.ingress.kubernetes.io/denylist-source-range": "1.1.1.1/32",  // medium risk
+		}
+
+		ginkgo.By("allow ingress with low/medium risk annotations")
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+		_, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), ing, metav1.CreateOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "creating ingress with allowed annotations should not trigger an error")
+
+		ginkgo.By("block ingress with risky annotations")
+		annotations["nginx.ingress.kubernetes.io/modsecurity-transaction-id"] = "bla123"      // High should be blocked
+		annotations["nginx.ingress.kubernetes.io/modsecurity-snippet"] = "some random stuff;" // High should be blocked
+		ing = framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Update(context.TODO(), ing, metav1.UpdateOptions{})
+		assert.NotNil(ginkgo.GinkgoT(), err, "creating ingress with risky annotations should trigger an error")
+
+	})
+
+	ginkgo.It("should allow ingress based on their risk on webhooks", func() {
+		host := "annotation-validations"
+
+		// Low and Medium Risk annotations should be allowed, the rest should be denied
+		f.UpdateNginxConfigMapData("annotations-risk-level", "Medium")
+		// Sleep a while just to guarantee that the configmap is applied
+		framework.Sleep()
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/default-backend":       "default/bla", // low risk
+			"nginx.ingress.kubernetes.io/denylist-source-range": "1.1.1.1/32",  // medium risk
+		}
+
+		ginkgo.By("allow ingress with low/medium risk annotations")
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+		_, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), ing, metav1.CreateOptions{})
+		assert.Nil(ginkgo.GinkgoT(), err, "creating ingress with allowed annotations should not trigger an error")
+
+		ginkgo.By("block ingress with risky annotations")
+		annotations["nginx.ingress.kubernetes.io/modsecurity-transaction-id"] = "bla123"      // High should be blocked
+		annotations["nginx.ingress.kubernetes.io/modsecurity-snippet"] = "some random stuff;" // High should be blocked
+		ing = framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Update(context.TODO(), ing, metav1.UpdateOptions{})
+		assert.NotNil(ginkgo.GinkgoT(), err, "creating ingress with risky annotations should trigger an error")
+
+	})
+})
diff --git a/test/e2e/wait-for-nginx.sh b/test/e2e/wait-for-nginx.sh
index 153d348c2..0726bde10 100755
--- a/test/e2e/wait-for-nginx.sh
+++ b/test/e2e/wait-for-nginx.sh
@@ -24,6 +24,7 @@ DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
 export NAMESPACE=$1
 export NAMESPACE_OVERLAY=$2
 export IS_CHROOT=$3
+export ENABLE_VALIDATIONS=$4
 
 echo "deploying NGINX Ingress controller in namespace $NAMESPACE"
 
@@ -68,6 +69,7 @@ else
 # TODO: remove the need to use fullnameOverride
 fullnameOverride: nginx-ingress
 controller:
+  enableAnnotationValidations: ${ENABLE_VALIDATIONS}
   image:
     repository: ingress-controller/controller
     chroot: ${IS_CHROOT}

From ee9c6246f25799677a67a93c4913a70cf756c174 Mon Sep 17 00:00:00 2001
From: Chen Chen <imchench@gmail.com>
Date: Mon, 24 Jul 2023 23:26:13 +0800
Subject: [PATCH 0878/1641] Add rolling update strategy to each static
 deployment file (#10129)

* Add rollingUpdate strategy to each static deployment file

Signed-off-by: z1cheng <imchench@gmail.com>

* Update the templates and regenerate

Signed-off-by: z1cheng <imchench@gmail.com>

* Upgrade k8s version and add rolling update for exoscale

Signed-off-by: z1cheng <imchench@gmail.com>

* Add rolling update strategy to Oracle template

Signed-off-by: z1cheng <imchench@gmail.com>

* Revert the k8s version in generate-deploy-scripts.sh

Signed-off-by: z1cheng <imchench@gmail.com>

---------

Signed-off-by: z1cheng <imchench@gmail.com>
---
 deploy/static/provider/aws/deploy.yaml                        | 4 ++++
 .../static/provider/aws/nlb-with-tls-termination/deploy.yaml  | 4 ++++
 deploy/static/provider/baremetal/deploy.yaml                  | 4 ++++
 deploy/static/provider/cloud/deploy.yaml                      | 4 ++++
 deploy/static/provider/do/deploy.yaml                         | 4 ++++
 deploy/static/provider/exoscale/deploy.yaml                   | 4 ++++
 deploy/static/provider/oracle/deploy.yaml                     | 4 ++++
 deploy/static/provider/scw/deploy.yaml                        | 4 ++++
 .../provider/aws/nlb-with-tls-termination/values.yaml         | 4 ++++
 hack/manifest-templates/provider/aws/values.yaml              | 4 ++++
 hack/manifest-templates/provider/baremetal/values.yaml        | 4 ++++
 hack/manifest-templates/provider/cloud/values.yaml            | 4 ++++
 hack/manifest-templates/provider/do/values.yaml               | 4 ++++
 hack/manifest-templates/provider/exoscale/values.yaml         | 4 ++++
 hack/manifest-templates/provider/oracle/values.yaml           | 4 ++++
 hack/manifest-templates/provider/scw/values.yaml              | 4 ++++
 16 files changed, 64 insertions(+)

diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index f22f3a9c1..2c785fab2 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -411,6 +411,10 @@ spec:
       app.kubernetes.io/component: controller
       app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/name: ingress-nginx
+  strategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
   template:
     metadata:
       labels:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index e9ae85143..7eb2a4c12 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -420,6 +420,10 @@ spec:
       app.kubernetes.io/component: controller
       app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/name: ingress-nginx
+  strategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
   template:
     metadata:
       labels:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index b66da7d45..ba5b71838 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -406,6 +406,10 @@ spec:
       app.kubernetes.io/component: controller
       app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/name: ingress-nginx
+  strategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
   template:
     metadata:
       labels:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 659da1d1b..0bb95331f 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -407,6 +407,10 @@ spec:
       app.kubernetes.io/component: controller
       app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/name: ingress-nginx
+  strategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
   template:
     metadata:
       labels:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 434f21ead..9ef7f86ee 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -410,6 +410,10 @@ spec:
       app.kubernetes.io/component: controller
       app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/name: ingress-nginx
+  strategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
   template:
     metadata:
       labels:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index c9dff62cb..d09c9bbb4 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -510,6 +510,10 @@ spec:
       - name: webhook-cert
         secret:
           secretName: ingress-nginx-admission
+  updateStrategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
 ---
 apiVersion: batch/v1
 kind: Job
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index 72556bb42..4c93acfb2 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -411,6 +411,10 @@ spec:
       app.kubernetes.io/component: controller
       app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/name: ingress-nginx
+  strategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
   template:
     metadata:
       labels:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 8b4750992..a57ef5ded 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -410,6 +410,10 @@ spec:
       app.kubernetes.io/component: controller
       app.kubernetes.io/instance: ingress-nginx
       app.kubernetes.io/name: ingress-nginx
+  strategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
   template:
     metadata:
       labels:
diff --git a/hack/manifest-templates/provider/aws/nlb-with-tls-termination/values.yaml b/hack/manifest-templates/provider/aws/nlb-with-tls-termination/values.yaml
index 5b36b3dd2..46f8417c7 100644
--- a/hack/manifest-templates/provider/aws/nlb-with-tls-termination/values.yaml
+++ b/hack/manifest-templates/provider/aws/nlb-with-tls-termination/values.yaml
@@ -1,5 +1,9 @@
 # AWS NLB with TLS termination
 controller:
+  updateStrategy:
+    type: RollingUpdate
+    rollingUpdate:
+      maxUnavailable: 1
   service:
     type: LoadBalancer
     externalTrafficPolicy: Local
diff --git a/hack/manifest-templates/provider/aws/values.yaml b/hack/manifest-templates/provider/aws/values.yaml
index 743721fc4..37eac03c2 100644
--- a/hack/manifest-templates/provider/aws/values.yaml
+++ b/hack/manifest-templates/provider/aws/values.yaml
@@ -1,5 +1,9 @@
 # AWS - NLB
 controller:
+  updateStrategy:
+    type: RollingUpdate
+    rollingUpdate:
+      maxUnavailable: 1
   service:
     type: LoadBalancer
     externalTrafficPolicy: Local
diff --git a/hack/manifest-templates/provider/baremetal/values.yaml b/hack/manifest-templates/provider/baremetal/values.yaml
index 3c5a0840b..205a7430c 100644
--- a/hack/manifest-templates/provider/baremetal/values.yaml
+++ b/hack/manifest-templates/provider/baremetal/values.yaml
@@ -1,5 +1,9 @@
 # Baremetal
 controller:
+  updateStrategy:
+    type: RollingUpdate
+    rollingUpdate:
+      maxUnavailable: 1
   service:
     type: NodePort
 
diff --git a/hack/manifest-templates/provider/cloud/values.yaml b/hack/manifest-templates/provider/cloud/values.yaml
index 7d8266c0f..edc5662dd 100644
--- a/hack/manifest-templates/provider/cloud/values.yaml
+++ b/hack/manifest-templates/provider/cloud/values.yaml
@@ -1,4 +1,8 @@
 controller:
+  updateStrategy:
+    type: RollingUpdate
+    rollingUpdate:
+      maxUnavailable: 1
   service:
     type: LoadBalancer
     externalTrafficPolicy: Local
diff --git a/hack/manifest-templates/provider/do/values.yaml b/hack/manifest-templates/provider/do/values.yaml
index 2b0578414..aeee47ad6 100644
--- a/hack/manifest-templates/provider/do/values.yaml
+++ b/hack/manifest-templates/provider/do/values.yaml
@@ -1,5 +1,9 @@
 # Digital Ocean
 controller:
+  updateStrategy:
+    type: RollingUpdate
+    rollingUpdate:
+      maxUnavailable: 1
   service:
     type: LoadBalancer
     externalTrafficPolicy: Local
diff --git a/hack/manifest-templates/provider/exoscale/values.yaml b/hack/manifest-templates/provider/exoscale/values.yaml
index 17458cac9..867ecc57e 100644
--- a/hack/manifest-templates/provider/exoscale/values.yaml
+++ b/hack/manifest-templates/provider/exoscale/values.yaml
@@ -1,6 +1,10 @@
 # Exoscale
 controller:
   kind: DaemonSet
+  updateStrategy:
+    type: RollingUpdate
+    rollingUpdate:
+      maxUnavailable: 1
   service:
     type: LoadBalancer
     externalTrafficPolicy: Local
diff --git a/hack/manifest-templates/provider/oracle/values.yaml b/hack/manifest-templates/provider/oracle/values.yaml
index b4480531f..600dbfe5c 100644
--- a/hack/manifest-templates/provider/oracle/values.yaml
+++ b/hack/manifest-templates/provider/oracle/values.yaml
@@ -1,4 +1,8 @@
 controller:
+  updateStrategy:
+    type: RollingUpdate
+    rollingUpdate:
+      maxUnavailable: 1
   service:
     type: LoadBalancer
     externalTrafficPolicy: Local
diff --git a/hack/manifest-templates/provider/scw/values.yaml b/hack/manifest-templates/provider/scw/values.yaml
index cee5e2b1e..56d351dcd 100644
--- a/hack/manifest-templates/provider/scw/values.yaml
+++ b/hack/manifest-templates/provider/scw/values.yaml
@@ -1,5 +1,9 @@
 # Scaleway
 controller:
+  updateStrategy:
+    type: RollingUpdate
+    rollingUpdate:
+      maxUnavailable: 1
   service:
     type: LoadBalancer
     externalTrafficPolicy: Local

From 0ec08bd1d06a2fbb797e6ee9116102599ad9f0e1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Jul 2023 10:22:13 -0700
Subject: [PATCH 0879/1641] Bump github.com/opencontainers/runc from 1.1.7 to
 1.1.8 (#10244)

Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.7 to 1.1.8.
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/v1.1.8/CHANGELOG.md)
- [Commits](https://github.com/opencontainers/runc/compare/v1.1.7...v1.1.8)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 8864e3a83..13d0fcf04 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo/v2 v2.9.5
-	github.com/opencontainers/runc v1.1.7
+	github.com/opencontainers/runc v1.1.8
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.16.0
 	github.com/prometheus/client_model v0.4.0
diff --git a/go.sum b/go.sum
index acd310e3a..6e1495776 100644
--- a/go.sum
+++ b/go.sum
@@ -289,8 +289,8 @@ github.com/onsi/ginkgo/v2 v2.9.5/go.mod h1:tvAoo1QUJwNEU2ITftXTpR7R1RbCzoZUOs3Ro
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.27.6 h1:ENqfyGeS5AX/rlXDd/ETokDz93u0YufY1Pgxuy/PvWE=
-github.com/opencontainers/runc v1.1.7 h1:y2EZDS8sNng4Ksf0GUYNhKbTShZJPJg1FiXJNH/uoCk=
-github.com/opencontainers/runc v1.1.7/go.mod h1:CbUumNnWCuTGFukNXahoo/RFBZvDAgRh/smNYNOhA50=
+github.com/opencontainers/runc v1.1.8 h1:zICRlc+C1XzivLc3nzE+cbJV4LIi8tib6YG0MqC6OqA=
+github.com/opencontainers/runc v1.1.8/go.mod h1:CbUumNnWCuTGFukNXahoo/RFBZvDAgRh/smNYNOhA50=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=

From afd1311f8529c21fdf6621bf683bec814e698f1d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jan-Otto=20Kr=C3=B6pke?= <joe@cloudeteer.de>
Date: Fri, 28 Jul 2023 13:41:56 +0200
Subject: [PATCH 0880/1641] [helm] configure allow to configure hostAliases
 (#10180)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Jan-Otto Kröpke <joe@cloudeteer.de>
---
 charts/ingress-nginx/README.md                            | 1 +
 charts/ingress-nginx/templates/controller-deployment.yaml | 3 +++
 charts/ingress-nginx/values.yaml                          | 2 ++
 3 files changed, 6 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 17547912d..6288da3e3 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -307,6 +307,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.extraVolumes | list | `[]` | Additional volumes to the controller pod. |
 | controller.healthCheckHost | string | `""` | Address to bind the health check endpoint. It is better to set this option to the internal node address if the Ingress-Nginx Controller is running in the `hostNetwork: true` mode. |
 | controller.healthCheckPath | string | `"/healthz"` | Path of the health check endpoint. All requests received on the port defined by the healthz-port parameter are forwarded internally to this path. |
+| controller.hostAliases | object | `{}` | Optionally customize the pod hostAliases. |
 | controller.hostNetwork | bool | `false` | Required for use with CNI based kubernetes installations (such as ones set up by kubeadm), since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920 is merged |
 | controller.hostPort.enabled | bool | `false` | Enable 'hostPort' or not |
 | controller.hostPort.ports.http | int | `80` | 'hostPort' http port |
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index c4a1a37e1..537c3feef 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -49,6 +49,9 @@ spec:
     {{- if .Values.controller.dnsConfig }}
       dnsConfig: {{ toYaml .Values.controller.dnsConfig | nindent 8 }}
     {{- end }}
+    {{- if .Values.controller.hostAliases }}
+      hostAliases: {{ tpl (toYaml .Values.controller.hostAliases) $ | nindent 8 }}
+    {{- end }}
     {{- if .Values.controller.hostname }}
       hostname: {{ toYaml .Values.controller.hostname | nindent 8 }}
     {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 1cd74dad0..8205b3506 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -49,6 +49,8 @@ controller:
   addHeaders: {}
   # -- Optionally customize the pod dnsConfig.
   dnsConfig: {}
+  # -- Optionally customize the pod hostAliases.
+  hostAliases: {}
   # -- Optionally customize the pod hostname.
   hostname: {}
   # -- Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'.

From 3baa591bb5720c8009b1f575e83b913533d7bc98 Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Wed, 2 Aug 2023 12:34:49 +0200
Subject: [PATCH 0881/1641] promote distroless otel init image (#10257)

---
 charts/ingress-nginx/README.md                            | 2 +-
 charts/ingress-nginx/templates/controller-deployment.yaml | 2 +-
 charts/ingress-nginx/values.yaml                          | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 6288da3e3..c9ce4e3bc 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -377,7 +377,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment # Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ # |
 | controller.opentelemetry.containerSecurityContext.allowPrivilegeEscalation | bool | `false` |  |
 | controller.opentelemetry.enabled | bool | `false` |  |
-| controller.opentelemetry.image | string | `"registry.k8s.io/ingress-nginx/opentelemetry:v20230527@sha256:fd7ec835f31b7b37187238eb4fdad4438806e69f413a203796263131f4f02ed0"` |  |
+| controller.opentelemetry.image | string | `"registry.k8s.io/ingress-nginx/opentelemetry:v20230721-3e2062ee5@sha256:13bee3f5223883d3ca62fee7309ad02d22ec00ff0d7033e3e9aca7a9f60fd472"` |  |
 | controller.podAnnotations | object | `{}` | Annotations to be added to controller pods # |
 | controller.podLabels | object | `{}` | Labels to add to the pod container metadata |
 | controller.podSecurityContext | object | `{}` | Security Context policies for controller pods |
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 537c3feef..69cb734a0 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -193,7 +193,7 @@ spec:
       {{- end }}
       {{- if .Values.controller.opentelemetry.enabled}}
           {{ $otelContainerSecurityContext := $.Values.controller.opentelemetry.containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext "distroless" false) | nindent 8}}
+          {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext "distroless" true) | nindent 8}}
       {{- end}}
     {{- end }}
     {{- if .Values.controller.hostNetwork }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 8205b3506..3b156a6bf 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -556,7 +556,7 @@ controller:
 
   opentelemetry:
     enabled: false
-    image: registry.k8s.io/ingress-nginx/opentelemetry:v20230527@sha256:fd7ec835f31b7b37187238eb4fdad4438806e69f413a203796263131f4f02ed0
+    image: registry.k8s.io/ingress-nginx/opentelemetry:v20230721-3e2062ee5@sha256:13bee3f5223883d3ca62fee7309ad02d22ec00ff0d7033e3e9aca7a9f60fd472
     containerSecurityContext:
       allowPrivilegeEscalation: false
   admissionWebhooks:

From d712dd9d92f1f46eab5f55d4643f3a45a7a97f90 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 2 Aug 2023 10:12:42 -0400
Subject: [PATCH 0882/1641] test kind updates (#10272)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/ci.yaml | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 453775379..5c08ba0da 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -207,7 +207,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.12, v1.25.8, v1.26.3,v1.27.1]
+        k8s: [v1.24.15, v1.25.11, v1.26.6, v1.27.3]
 
     steps:
       - name: Checkout
@@ -282,7 +282,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.12, v1.25.8, v1.26.3,v1.27.1]
+        k8s: [v1.24.15, v1.25.11, v1.26.6, v1.27.3]
 
     steps:
       - name: Checkout
@@ -330,7 +330,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.27.1]
+        k8s: [v1.24.15, v1.25.11, v1.26.6, v1.27.3]
 
     steps:
       - name: Checkout
@@ -380,7 +380,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.12, v1.25.8, v1.26.3,v1.27.1]
+        k8s: [v1.24.15, v1.25.11, v1.26.6, v1.27.3]
 
     steps:
 
@@ -498,7 +498,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.12, v1.25.8, v1.26.3,v1.27.1]
+        k8s: [v1.24.15, v1.25.11, v1.26.6, v1.27.3]
 
     steps:
       - name: Checkout

From e8b8778f74b4b01c56398147844370e78f2047c3 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 7 Aug 2023 05:52:31 -0700
Subject: [PATCH 0883/1641] Bump golang.org/x/crypto from 0.11.0 to 0.12.0
 (#10280)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.11.0 to 0.12.0.
- [Commits](https://github.com/golang/crypto/compare/v0.11.0...v0.12.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index 13d0fcf04..1579513bc 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.4
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.11.0
+	golang.org/x/crypto v0.12.0
 	google.golang.org/grpc v1.56.2
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -103,9 +103,9 @@ require (
 	golang.org/x/mod v0.10.0 // indirect
 	golang.org/x/net v0.10.0 // indirect
 	golang.org/x/oauth2 v0.8.0 // indirect
-	golang.org/x/sys v0.10.0 // indirect
-	golang.org/x/term v0.10.0 // indirect
-	golang.org/x/text v0.11.0 // indirect
+	golang.org/x/sys v0.11.0 // indirect
+	golang.org/x/term v0.11.0 // indirect
+	golang.org/x/text v0.12.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.9.1 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
diff --git a/go.sum b/go.sum
index 6e1495776..a6ae8cdcf 100644
--- a/go.sum
+++ b/go.sum
@@ -390,8 +390,8 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.11.0 h1:6Ewdq3tDic1mg5xRO4milcWCfMVQhI4NkqWWvqejpuA=
-golang.org/x/crypto v0.11.0/go.mod h1:xgJhtzW8F9jGdVFWZESrid1U1bjeNy4zgy5cRr/CIio=
+golang.org/x/crypto v0.12.0 h1:tFM/ta59kqch6LlvYnPa0yx5a83cL2nHflFhYKvv9Yk=
+golang.org/x/crypto v0.12.0/go.mod h1:NF0Gs7EO5K4qLn+Ylc+fih8BSTeIjAP05siRnAh98yw=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -524,19 +524,19 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.10.0 h1:SqMFp9UcQJZa+pmYuAKjd9xq1f0j5rLcDIk0mj4qAsA=
-golang.org/x/sys v0.10.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.11.0 h1:eG7RXZHdqOJ1i+0lgLgCpSXAp6M3LYlAo6osgSi0xOM=
+golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.10.0 h1:3R7pNqamzBraeqj/Tj8qt1aQ2HpmlC+Cx/qL/7hn4/c=
-golang.org/x/term v0.10.0/go.mod h1:lpqdcUyK/oCiQxvxVrppt5ggO2KCZ5QblwqPnfZ6d5o=
+golang.org/x/term v0.11.0 h1:F9tnn/DA/Im8nCwm+fX+1/eBwi4qFjRT++MhtVC4ZX0=
+golang.org/x/term v0.11.0/go.mod h1:zC9APTIj3jG3FdV/Ons+XE1riIZXG4aZ4GTHiPZJPIU=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.11.0 h1:LAntKIrcmeSKERyiOh0XMV39LXS8IE9UL2yP7+f5ij4=
-golang.org/x/text v0.11.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
+golang.org/x/text v0.12.0 h1:k+n5B8goJNdU7hSvEtMUz3d1Q6D/XW4COJSJR6fN0mc=
+golang.org/x/text v0.12.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=

From 5d8185c9d725359de3fd6f2f77bfdd3e8bc44c8d Mon Sep 17 00:00:00 2001
From: Gabor Lekeny <gabor.lekeny@gmail.com>
Date: Mon, 7 Aug 2023 15:16:32 +0200
Subject: [PATCH 0884/1641] Handle request_id variable correctly in auth
 requests (#9219)

* Handle $request_id variable correctly in auth requests

* Make share_all_vars configurable

* Fix test name
---
 .../nginx-configuration/annotations.md        |  4 ++
 internal/ingress/annotations/authreq/main.go  | 48 +++++++++++++------
 .../ingress/annotations/authreq/main_test.go  | 29 ++++++-----
 rootfs/etc/nginx/template/nginx.tmpl          |  2 +-
 test/e2e/annotations/auth.go                  | 39 +++++++++++++++
 5 files changed, 96 insertions(+), 26 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 0916b4df5..877654d12 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -33,6 +33,7 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/auth-cache-key](#external-authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-cache-duration](#external-authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-keepalive](#external-authentication)|number|
+|[nginx.ingress.kubernetes.io/auth-keepalive-share-vars](#external-authentication)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/auth-keepalive-requests](#external-authentication)|number|
 |[nginx.ingress.kubernetes.io/auth-keepalive-timeout](#external-authentication)|number|
 |[nginx.ingress.kubernetes.io/auth-proxy-set-headers](#external-authentication)|string|
@@ -467,6 +468,9 @@ Additionally it is possible to set:
 > Note: does not work with HTTP/2 listener because of a limitation in Lua [subrequests](https://github.com/openresty/lua-nginx-module#spdy-mode-not-fully-supported).
 > [UseHTTP2](./configmap.md#use-http2) configuration should be disabled!
 
+* `nginx.ingress.kubernetes.io/auth-keepalive-share-vars`:
+  Whether to share Nginx variables among the current request and the auth request. Example use case is to track requests: when set to "true" X-Request-ID HTTP header will be the same for the backend and the auth request.
+  Defaults to "false".
 * `nginx.ingress.kubernetes.io/auth-keepalive-requests`:
   `<Requests>` to specify the maximum number of requests that can be served through one keepalive connection.
   Defaults to `1000` and only applied if `auth-keepalive` is set to higher than `0`.
diff --git a/internal/ingress/annotations/authreq/main.go b/internal/ingress/annotations/authreq/main.go
index 2ab98ace0..b8ba4f125 100644
--- a/internal/ingress/annotations/authreq/main.go
+++ b/internal/ingress/annotations/authreq/main.go
@@ -33,20 +33,21 @@ import (
 )
 
 const (
-	authReqURLAnnotation               = "auth-url"
-	authReqMethodAnnotation            = "auth-method"
-	authReqSigninAnnotation            = "auth-signin"
-	authReqSigninRedirParamAnnotation  = "auth-signin-redirect-param"
-	authReqSnippetAnnotation           = "auth-snippet"
-	authReqCacheKeyAnnotation          = "auth-cache-key"
-	authReqKeepaliveAnnotation         = "auth-keepalive"
-	authReqKeepaliveRequestsAnnotation = "auth-keepalive-requests"
-	authReqKeepaliveTimeout            = "auth-keepalive-timeout"
-	authReqCacheDuration               = "auth-cache-duration"
-	authReqResponseHeadersAnnotation   = "auth-response-headers"
-	authReqProxySetHeadersAnnotation   = "auth-proxy-set-headers"
-	authReqRequestRedirectAnnotation   = "auth-request-redirect"
-	authReqAlwaysSetCookieAnnotation   = "auth-always-set-cookie"
+	authReqURLAnnotation                = "auth-url"
+	authReqMethodAnnotation             = "auth-method"
+	authReqSigninAnnotation             = "auth-signin"
+	authReqSigninRedirParamAnnotation   = "auth-signin-redirect-param"
+	authReqSnippetAnnotation            = "auth-snippet"
+	authReqCacheKeyAnnotation           = "auth-cache-key"
+	authReqKeepaliveAnnotation          = "auth-keepalive"
+	authReqKeepaliveShareVarsAnnotation = "auth-keepalive-share-vars"
+	authReqKeepaliveRequestsAnnotation  = "auth-keepalive-requests"
+	authReqKeepaliveTimeout             = "auth-keepalive-timeout"
+	authReqCacheDuration                = "auth-cache-duration"
+	authReqResponseHeadersAnnotation    = "auth-response-headers"
+	authReqProxySetHeadersAnnotation    = "auth-proxy-set-headers"
+	authReqRequestRedirectAnnotation    = "auth-request-redirect"
+	authReqAlwaysSetCookieAnnotation    = "auth-always-set-cookie"
 
 	// This should be exported as it is imported by other packages
 	AuthSecretAnnotation = "auth-secret"
@@ -97,6 +98,12 @@ var authReqAnnotations = parser.Annotation{
 			Risk:          parser.AnnotationRiskLow,
 			Documentation: `This annotation specifies the maximum number of keepalive connections to auth-url. Only takes effect when no variables are used in the host part of the URL`,
 		},
+		authReqKeepaliveShareVarsAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation specifies whether to share Nginx variables among the current request and the auth request`,
+		},
 		authReqKeepaliveRequestsAnnotation: {
 			Validator:     parser.ValidateInt,
 			Scope:         parser.AnnotationScopeLocation,
@@ -158,6 +165,7 @@ type Config struct {
 	AuthCacheKey           string            `json:"authCacheKey"`
 	AuthCacheDuration      []string          `json:"authCacheDuration"`
 	KeepaliveConnections   int               `json:"keepaliveConnections"`
+	KeepaliveShareVars     bool              `json:"keepaliveShareVars"`
 	KeepaliveRequests      int               `json:"keepaliveRequests"`
 	KeepaliveTimeout       int               `json:"keepaliveTimeout"`
 	ProxySetHeaders        map[string]string `json:"proxySetHeaders,omitempty"`
@@ -170,6 +178,7 @@ const DefaultCacheDuration = "200 202 401 5m"
 // fallback values when no keepalive parameters are set
 const (
 	defaultKeepaliveConnections = 0
+	defaultKeepaliveShareVars   = false
 	defaultKeepaliveRequests    = 1000
 	defaultKeepaliveTimeout     = 60
 )
@@ -218,6 +227,10 @@ func (e1 *Config) Equal(e2 *Config) bool {
 		return false
 	}
 
+	if e1.KeepaliveShareVars != e2.KeepaliveShareVars {
+		return false
+	}
+
 	if e1.KeepaliveRequests != e2.KeepaliveRequests {
 		return false
 	}
@@ -357,6 +370,12 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 		}
 	}
 
+	keepaliveShareVars, err := parser.GetBoolAnnotation(authReqKeepaliveShareVarsAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil {
+		klog.V(3).InfoS("auth-keepalive-share-vars annotation is undefined and will be set to its default value")
+		keepaliveShareVars = defaultKeepaliveShareVars
+	}
+
 	keepaliveRequests, err := parser.GetIntAnnotation(authReqKeepaliveRequestsAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		klog.V(3).InfoS("auth-keepalive-requests annotation is undefined or invalid and will be set to its default value")
@@ -467,6 +486,7 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 		AuthCacheKey:           authCacheKey,
 		AuthCacheDuration:      authCacheDuration,
 		KeepaliveConnections:   keepaliveConnections,
+		KeepaliveShareVars:     keepaliveShareVars,
 		KeepaliveRequests:      keepaliveRequests,
 		KeepaliveTimeout:       keepaliveTimeout,
 		ProxySetHeaders:        proxySetHeaders,
diff --git a/internal/ingress/annotations/authreq/main_test.go b/internal/ingress/annotations/authreq/main_test.go
index 833bebe78..dc5188c8a 100644
--- a/internal/ingress/annotations/authreq/main_test.go
+++ b/internal/ingress/annotations/authreq/main_test.go
@@ -268,28 +268,31 @@ func TestKeepaliveAnnotations(t *testing.T) {
 		title                string
 		url                  string
 		keepaliveConnections string
+		keepaliveShareVars   string
 		keepaliveRequests    string
 		keepaliveTimeout     string
 		expectedConnections  int
+		expectedShareVars    bool
 		expectedRequests     int
 		expectedTimeout      int
 	}{
-		{"all set", "http://goog.url", "5", "500", "50", 5, 500, 50},
-		{"no annotation", "http://goog.url", "", "", "", defaultKeepaliveConnections, defaultKeepaliveRequests, defaultKeepaliveTimeout},
-		{"default for connections", "http://goog.url", "x", "500", "50", defaultKeepaliveConnections, 500, 50},
-		{"default for requests", "http://goog.url", "5", "x", "50", 5, defaultKeepaliveRequests, 50},
-		{"default for invalid timeout", "http://goog.url", "5", "500", "x", 5, 500, defaultKeepaliveTimeout},
-		{"variable in host", "http://$host:5000/a/b", "5", "", "", 0, defaultKeepaliveRequests, defaultKeepaliveTimeout},
-		{"variable in path", "http://goog.url:5000/$path", "5", "", "", 5, defaultKeepaliveRequests, defaultKeepaliveTimeout},
-		{"negative connections", "http://goog.url", "-2", "", "", 0, defaultKeepaliveRequests, defaultKeepaliveTimeout},
-		{"negative requests", "http://goog.url", "5", "-1", "", 0, -1, defaultKeepaliveTimeout},
-		{"negative timeout", "http://goog.url", "5", "", "-1", 0, defaultKeepaliveRequests, -1},
-		{"negative request and timeout", "http://goog.url", "5", "-2", "-3", 0, -2, -3},
+		{"all set", "http://goog.url", "5", "false", "500", "50", 5, false, 500, 50},
+		{"no annotation", "http://goog.url", "", "", "", "", defaultKeepaliveConnections, defaultKeepaliveShareVars, defaultKeepaliveRequests, defaultKeepaliveTimeout},
+		{"default for connections", "http://goog.url", "x", "true", "500", "50", defaultKeepaliveConnections, true, 500, 50},
+		{"default for requests", "http://goog.url", "5", "x", "dummy", "50", 5, defaultKeepaliveShareVars, defaultKeepaliveRequests, 50},
+		{"default for invalid timeout", "http://goog.url", "5", "t", "500", "x", 5, true, 500, defaultKeepaliveTimeout},
+		{"variable in host", "http://$host:5000/a/b", "5", "1", "", "", 0, true, defaultKeepaliveRequests, defaultKeepaliveTimeout},
+		{"variable in path", "http://goog.url:5000/$path", "5", "t", "", "", 5, true, defaultKeepaliveRequests, defaultKeepaliveTimeout},
+		{"negative connections", "http://goog.url", "-2", "f", "", "", 0, false, defaultKeepaliveRequests, defaultKeepaliveTimeout},
+		{"negative requests", "http://goog.url", "5", "True", "-1", "", 0, true, -1, defaultKeepaliveTimeout},
+		{"negative timeout", "http://goog.url", "5", "0", "", "-1", 0, false, defaultKeepaliveRequests, -1},
+		{"negative request and timeout", "http://goog.url", "5", "False", "-2", "-3", 0, false, -2, -3},
 	}
 
 	for _, test := range tests {
 		data[parser.GetAnnotationWithPrefix("auth-url")] = test.url
 		data[parser.GetAnnotationWithPrefix("auth-keepalive")] = test.keepaliveConnections
+		data[parser.GetAnnotationWithPrefix("auth-keepalive-share-vars")] = test.keepaliveShareVars
 		data[parser.GetAnnotationWithPrefix("auth-keepalive-timeout")] = test.keepaliveTimeout
 		data[parser.GetAnnotationWithPrefix("auth-keepalive-requests")] = test.keepaliveRequests
 
@@ -313,6 +316,10 @@ func TestKeepaliveAnnotations(t *testing.T) {
 			t.Errorf("%v: expected \"%v\" but \"%v\" was returned", test.title, test.expectedConnections, u.KeepaliveConnections)
 		}
 
+		if u.KeepaliveShareVars != test.expectedShareVars {
+			t.Errorf("%v: expected \"%v\" but \"%v\" was returned", test.title, test.expectedShareVars, u.KeepaliveShareVars)
+		}
+
 		if u.KeepaliveRequests != test.expectedRequests {
 			t.Errorf("%v: expected \"%v\" but \"%v\" was returned", test.title, test.expectedRequests, u.KeepaliveRequests)
 		}
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 02b5309cd..0f44efc3d 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -1334,7 +1334,7 @@ stream {
             # `auth_request` module does not support HTTP keepalives in upstream block:
             # https://trac.nginx.org/nginx/ticket/1579
             access_by_lua_block {
-                local res = ngx.location.capture('{{ $authPath }}', { method = ngx.HTTP_GET, body = '' })
+                local res = ngx.location.capture('{{ $authPath }}', { method = ngx.HTTP_GET, body = '', share_all_vars = {{ $externalAuth.KeepaliveShareVars }} })
                 if res.status == ngx.HTTP_OK then
                     ngx.var.auth_cookie = res.header['Set-Cookie']
                     {{- range $line := buildAuthUpstreamLuaHeaders $externalAuth.ResponseHeaders }}
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index 8011186a1..56246828a 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -628,6 +628,45 @@ http {
 						strings.Contains(server, `keepalive_timeout 789s;`)
 				})
 		})
+
+		ginkgo.It(`should disable set_all_vars when auth-keepalive-share-vars is not set`, func() {
+			f.UpdateNginxConfigMapData("use-http2", "false")
+			defer func() {
+				f.UpdateNginxConfigMapData("use-http2", "true")
+			}()
+			// Sleep a while just to guarantee that the configmap is applied
+			framework.Sleep()
+
+			annotations["nginx.ingress.kubernetes.io/auth-keepalive"] = "10"
+			f.UpdateIngress(ing)
+
+			f.WaitForNginxServer("",
+				func(server string) bool {
+					return strings.Contains(server, `upstream auth-external-auth`) &&
+						strings.Contains(server, `keepalive 10;`) &&
+						strings.Contains(server, `share_all_vars = false`)
+				})
+		})
+
+		ginkgo.It(`should enable set_all_vars when auth-keepalive-share-vars is true`, func() {
+			f.UpdateNginxConfigMapData("use-http2", "false")
+			defer func() {
+				f.UpdateNginxConfigMapData("use-http2", "true")
+			}()
+			// Sleep a while just to guarantee that the configmap is applied
+			framework.Sleep()
+
+			annotations["nginx.ingress.kubernetes.io/auth-keepalive"] = "10"
+			annotations["nginx.ingress.kubernetes.io/auth-keepalive-share-vars"] = "true"
+			f.UpdateIngress(ing)
+
+			f.WaitForNginxServer("",
+				func(server string) bool {
+					return strings.Contains(server, `upstream auth-external-auth`) &&
+						strings.Contains(server, `keepalive 10;`) &&
+						strings.Contains(server, `share_all_vars = true`)
+				})
+		})
 	})
 
 	ginkgo.Context("when external authentication is configured with a custom redirect param", func() {

From 42610df2a31a3be9bad9c73b76ed76764edc95fd Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 11 Aug 2023 07:05:28 -0700
Subject: [PATCH 0885/1641] Bump google.golang.org/grpc from 1.56.2 to 1.57.0
 (#10258)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.56.2 to 1.57.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.56.2...v1.57.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 1579513bc..0ba9fa71b 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.12.0
-	google.golang.org/grpc v1.56.2
+	google.golang.org/grpc v1.57.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -109,7 +109,7 @@ require (
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.9.1 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/genproto v0.0.0-20230410155749-daa745c078e1 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234030-28d5490b6b19 // indirect
 	google.golang.org/protobuf v1.30.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index a6ae8cdcf..5ecec5625 100644
--- a/go.sum
+++ b/go.sum
@@ -647,8 +647,8 @@ google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6D
 google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20230410155749-daa745c078e1 h1:KpwkzHKEF7B9Zxg18WzOa7djJ+Ha5DzthMyZYQfEn2A=
-google.golang.org/genproto v0.0.0-20230410155749-daa745c078e1/go.mod h1:nKE/iIaLqn2bQwXBg8f1g2Ylh6r5MN5CmZvuzZCgsCU=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234030-28d5490b6b19 h1:0nDDozoAU19Qb2HwhXadU8OcsiO/09cnTqhUtq2MEOM=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234030-28d5490b6b19/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -661,8 +661,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.56.2 h1:fVRFRnXvU+x6C4IlHZewvJOVHoOv1TUuQyoRsYnB4bI=
-google.golang.org/grpc v1.56.2/go.mod h1:I9bI3vqKfayGqPUAwGdOSu7kt6oIJLixfffKrpXqQ9s=
+google.golang.org/grpc v1.57.0 h1:kfzNeI/klCGD2YPMUlaGNT3pxvYfga7smW3Vth8Zsiw=
+google.golang.org/grpc v1.57.0/go.mod h1:Sd+9RMTACXwmub0zcNY2c4arhtrbBYD1AUHI/dt16Mo=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From 411edd717ba96cfc8f7584596bcb6b2b68e24310 Mon Sep 17 00:00:00 2001
From: Altif <mohlatif227@gmail.com>
Date: Fri, 11 Aug 2023 19:37:27 +0530
Subject: [PATCH 0886/1641] Updated index.md - Fix typos (#10256)

---
 docs/examples/index.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/examples/index.md b/docs/examples/index.md
index 3af4266ff..59745e014 100644
--- a/docs/examples/index.md
+++ b/docs/examples/index.md
@@ -23,7 +23,7 @@ Customization | [External authentication with response header propagation](custo
 Customization | [Sysctl tuning](customization/sysctl/README.md) | TODO | TODO
 Features | [Rewrite](rewrite/README.md) | TODO | TODO
 Features | [Session stickiness](affinity/cookie/README.md) | route requests consistently to the same endpoint | Advanced
-Features | [Canary Deployments](canary/README.md) | weigthed canary routing to a seperate deployment | Intermediate
+Features | [Canary Deployments](canary/README.md) | weighted canary routing to a seperate deployment | Intermediate
 Scaling | [Static IP](static-ip/README.md) | a single ingress gets a single static IP |  Intermediate
 TLS | [Multi TLS certificate termination](multi-tls/README.md) | TODO | TODO
 TLS | [TLS termination](tls-termination/README.md) | TODO | TODO

From e17927ba52e852c3a604f257838ad1c00a2a8e86 Mon Sep 17 00:00:00 2001
From: Kazuki Suda <230185+superbrothers@users.noreply.github.com>
Date: Fri, 11 Aug 2023 23:09:27 +0900
Subject: [PATCH 0887/1641] helm: Use .Release.Namespace as default for
 ServiceMonitor namespace (#10249)

Signed-off-by: Kazuki Suda <kazuki.suda@gmail.com>
---
 charts/ingress-nginx/templates/controller-servicemonitor.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/charts/ingress-nginx/templates/controller-servicemonitor.yaml b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
index 8ab16f0b2..482fe7f3c 100644
--- a/charts/ingress-nginx/templates/controller-servicemonitor.yaml
+++ b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
@@ -5,6 +5,8 @@ metadata:
   name: {{ include "ingress-nginx.controller.fullname" . }}
 {{- if .Values.controller.metrics.serviceMonitor.namespace }}
   namespace: {{ .Values.controller.metrics.serviceMonitor.namespace | quote }}
+{{- else }}
+  namespace: {{ .Release.Namespace }}
 {{- end }}
   labels:
     {{- include "ingress-nginx.labels" . | nindent 4 }}

From 868df87bb31478fe239e3cd426eb6c1d4bb3ae04 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Fri, 11 Aug 2023 22:11:27 +0800
Subject: [PATCH 0888/1641] ci(helm): fix Helm Chart release action 422 error
 (#10237)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 .github/workflows/helm.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 6303b6a27..e6bd4f101 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -75,7 +75,7 @@ jobs:
       - name: Helm Chart Releaser
         uses: helm/chart-releaser-action@be16258da8010256c6e82849661221415f031968 # v1.5.0
         env:
-          CR_SKIP_EXISTING: "false"
+          CR_SKIP_EXISTING: true
           CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
           CR_RELEASE_NAME_TEMPLATE: "helm-chart-{{ .Version }}"
         with:

From d9baff90d7d9fa451331882acb6af3a6c0cde14a Mon Sep 17 00:00:00 2001
From: Jack <56563911+jdockerty@users.noreply.github.com>
Date: Fri, 11 Aug 2023 15:13:27 +0100
Subject: [PATCH 0889/1641] docs: swap explanation to match example (#10220)

---
 docs/user-guide/exposing-tcp-udp-services.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/exposing-tcp-udp-services.md b/docs/user-guide/exposing-tcp-udp-services.md
index 089511ff9..dbc143ff1 100644
--- a/docs/user-guide/exposing-tcp-udp-services.md
+++ b/docs/user-guide/exposing-tcp-udp-services.md
@@ -3,7 +3,7 @@
 While the Kubernetes Ingress resource only officially supports routing external HTTP(s) traffic to services, ingress-nginx can be configured to receive external TCP/UDP traffic from non-HTTP protocols and route them to internal services using TCP/UDP port mappings that are specified within a ConfigMap.
 
 To support this, the `--tcp-services-configmap` and `--udp-services-configmap` flags can be used to point to an existing config map where the key is the external port to use and the value indicates the service to expose using the format:
-`<namespace/service name>:<service port>:[PROXY]:[PROXY]`
+`<service port>:<namespace/service name>:[PROXY]:[PROXY]`
 
 It is also possible to use a number or the name of the port. The two last fields are optional.
 Adding `PROXY` in either or both of the two last fields we can use [Proxy Protocol](https://www.nginx.com/resources/admin-guide/proxy-protocol) decoding (listen) and/or encoding (proxy_pass) in a TCP service. 

From dd6145b2d38491be60b2fadad69524163429cdf0 Mon Sep 17 00:00:00 2001
From: logica <84759675+logica0419@users.noreply.github.com>
Date: Fri, 11 Aug 2023 23:17:27 +0900
Subject: [PATCH 0890/1641] Bump k8s.io/component-base from 0.26.4 to 0.27.4
 (Replace Topology Aware Hints with Topology Aware Routing) (#10282)

* Bump k8s.io/component-base from 0.26.4 to 0.27.4

Bumps [k8s.io/component-base](https://github.com/kubernetes/component-base) from 0.26.4 to 0.27.4.
- [Commits](https://github.com/kubernetes/component-base/compare/v0.26.4...v0.27.4)

---
updated-dependencies:
- dependency-name: k8s.io/component-base
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* changed annotation to TopologyMode

* fixed documents

* fixed test

* using api constraint for test deployment options

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 charts/ingress-nginx/README.md            |  2 +-
 charts/ingress-nginx/values.yaml          |  2 +-
 docs/user-guide/cli-arguments.md          |  2 +-
 go.mod                                    | 24 ++++-----
 go.sum                                    | 61 +++++++++++------------
 internal/ingress/controller/controller.go |  2 +-
 pkg/flags/flags.go                        |  2 +-
 test/e2e/framework/deployment.go          |  6 +--
 8 files changed, 50 insertions(+), 51 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index c9ce4e3bc..4deed599b 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -296,7 +296,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.electionID | string | `""` | Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader' |
 | controller.enableAnnotationValidations | bool | `false` |  |
 | controller.enableMimalloc | bool | `true` | Enable mimalloc as a drop-in replacement for malloc. # ref: https://github.com/microsoft/mimalloc # |
-| controller.enableTopologyAwareRouting | bool | `false` | This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-aware-hints="auto" Defaults to false |
+| controller.enableTopologyAwareRouting | bool | `false` | This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-mode="auto" Defaults to false |
 | controller.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | controller.extraArgs | object | `{}` | Additional command line arguments to pass to Ingress-Nginx Controller E.g. to specify the default SSL certificate you can use |
 | controller.extraContainers | list | `[]` | Additional containers to be added to the controller pod. See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example. |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 3b156a6bf..4e8ddb4fc 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -66,7 +66,7 @@ controller:
   watchIngressWithoutClass: false
   # -- Process IngressClass per name (additionally as per spec.controller).
   ingressClassByName: false
-  # -- This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-aware-hints="auto"
+  # -- This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-mode="auto"
   # Defaults to false
   enableTopologyAwareRouting: false
   # -- This configuration defines if Ingress Controller should allow users to set
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index be6e1dd50..07a17a271 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -25,7 +25,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--enable-metrics`                 | Enables the collection of NGINX metrics. (default true) |
 | `--enable-ssl-chain-completion`    | Autocomplete SSL certificate chains with missing intermediate CA certificates. Certificates uploaded to Kubernetes must have the "Authority Information Access" X.509 v3 extension for this to succeed. (default false)|
 | `--enable-ssl-passthrough`         | Enable SSL Passthrough. (default false) |
-| `--enable-topology-aware-routing`  | Enable topology aware hints feature, needs service object annotation service.kubernetes.io/topology-aware-hints sets to auto. (default false) |
+| `--enable-topology-aware-routing`  | Enable topology aware routing feature, needs service object annotation service.kubernetes.io/topology-mode sets to auto. (default false) |
 | `--exclude-socket-metrics`         | Set of socket request metrics to exclude which won't be exported nor being calculated. The possible socket request metrics to exclude are documented in the monitoring guide e.g. 'nginx_ingress_controller_request_duration_seconds,nginx_ingress_controller_response_size'|
 | `--health-check-path`              | URL path of the health check endpoint. Configured inside the NGINX status server. All requests received on the port defined by the healthz-port parameter are forwarded internally to this path. (default "/healthz") |
 | `--health-check-timeout`           | Time limit, in seconds, for a probe to health-check-path to succeed. (default 10) |
diff --git a/go.mod b/go.mod
index 0ba9fa71b..3ed0e77e0 100644
--- a/go.mod
+++ b/go.mod
@@ -30,14 +30,14 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.26.4
+	k8s.io/api v0.27.4
 	k8s.io/apiextensions-apiserver v0.26.4
-	k8s.io/apimachinery v0.26.4
+	k8s.io/apimachinery v0.27.4
 	k8s.io/apiserver v0.26.4
 	k8s.io/cli-runtime v0.26.4
-	k8s.io/client-go v0.26.4
+	k8s.io/client-go v0.27.4
 	k8s.io/code-generator v0.26.4
-	k8s.io/component-base v0.26.4
+	k8s.io/component-base v0.27.4
 	k8s.io/klog/v2 v2.100.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.14.6
@@ -59,9 +59,9 @@ require (
 	github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b // indirect
 	github.com/go-errors/errors v1.0.1 // indirect
 	github.com/go-logr/logr v1.2.4 // indirect
-	github.com/go-openapi/jsonpointer v0.19.5 // indirect
-	github.com/go-openapi/jsonreference v0.20.0 // indirect
-	github.com/go-openapi/swag v0.19.14 // indirect
+	github.com/go-openapi/jsonpointer v0.19.6 // indirect
+	github.com/go-openapi/jsonreference v0.20.1 // indirect
+	github.com/go-openapi/swag v0.22.3 // indirect
 	github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 // indirect
 	github.com/godbus/dbus/v5 v5.0.6 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
@@ -72,14 +72,14 @@ require (
 	github.com/google/gnostic v0.5.7-v3refs // indirect
 	github.com/google/go-cmp v0.5.9 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
-	github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38 // indirect
+	github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.3.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 // indirect
 	github.com/inconshreveable/mousetrap v1.1.0 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
-	github.com/mailru/easyjson v0.7.6 // indirect
+	github.com/mailru/easyjson v0.7.7 // indirect
 	github.com/mattn/go-colorable v0.1.13 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.4 // indirect
 	github.com/mmarkdown/mmark v2.0.40+incompatible // indirect
@@ -116,9 +116,9 @@ require (
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 	k8s.io/gengo v0.0.0-20220902162205-c0856e24416d // indirect
-	k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 // indirect
-	k8s.io/utils v0.0.0-20221128185143-99ec85e7a448 // indirect
-	sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 // indirect
+	k8s.io/kube-openapi v0.0.0-20230501164219-8b0f38b5fd1f // indirect
+	k8s.io/utils v0.0.0-20230209194617-a36077c30491 // indirect
+	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
 	sigs.k8s.io/kustomize/api v0.12.1 // indirect
 	sigs.k8s.io/kustomize/kyaml v0.13.9 // indirect
 	sigs.k8s.io/structured-merge-diff/v4 v4.2.3 // indirect
diff --git a/go.sum b/go.sum
index 5ecec5625..eb703a707 100644
--- a/go.sum
+++ b/go.sum
@@ -103,14 +103,12 @@ github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbV
 github.com/go-logr/logr v1.2.4 h1:g01GSCwiDw2xSZfjJ2/T9M+S6pFdcNtFYsp+Y43HYDQ=
 github.com/go-logr/logr v1.2.4/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/zapr v1.2.3 h1:a9vnzlIBPQBBkeaR9IuMUfmVOrQlkoC4YfPoFkX3T7A=
-github.com/go-openapi/jsonpointer v0.19.3/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
-github.com/go-openapi/jsonpointer v0.19.5 h1:gZr+CIYByUqjcgeLXnQu2gHYQC9o73G2XUeOFYEICuY=
-github.com/go-openapi/jsonpointer v0.19.5/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
-github.com/go-openapi/jsonreference v0.20.0 h1:MYlu0sBgChmCfJxxUKZ8g1cPWFOB37YSZqewK7OKeyA=
-github.com/go-openapi/jsonreference v0.20.0/go.mod h1:Ag74Ico3lPc+zR+qjn4XBUmXymS4zJbYVCZmcgkasdo=
-github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh66Z9tfKk=
-github.com/go-openapi/swag v0.19.14 h1:gm3vOOXfiuw5i9p5N9xJvfjvuofpyvLA9Wr6QfK5Fng=
-github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
+github.com/go-openapi/jsonpointer v0.19.6 h1:eCs3fxoIi3Wh6vtgmLTOjdhSpiqphQ+DaPn38N2ZdrE=
+github.com/go-openapi/jsonpointer v0.19.6/go.mod h1:osyAmYz/mB/C3I+WsTTSgw1ONzaLJoLCyoi6/zppojs=
+github.com/go-openapi/jsonreference v0.20.1 h1:FBLnyygC4/IZZr893oiomc9XaghoveYTrLC1F86HID8=
+github.com/go-openapi/jsonreference v0.20.1/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
+github.com/go-openapi/swag v0.22.3 h1:yMBqmnQ0gyZvEb/+KzuWZOXgllrXT4SADYbvDaXHv/g=
+github.com/go-openapi/swag v0.22.3/go.mod h1:UzaqsxGiab7freDnrUUra0MwWfN/q7tE4j+VcZ0yl14=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
 github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
 github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 h1:tfuBGBXKqDEevZMzYi5KSi8KkcZtzBcTgAUUtapy0OI=
@@ -184,8 +182,8 @@ github.com/google/pprof v0.0.0-20200212024743-f11f1df84d12/go.mod h1:ZgVRPoUq/hf
 github.com/google/pprof v0.0.0-20200229191704-1ebb73c60ed3/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200430221834-fc25d7d30c6d/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200708004538-1a94d8640e99/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38 h1:yAJXTCF9TqKcTiHJAE8dj7HMvPfh66eeA2JYW7eFpSE=
-github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1 h1:K6RDEckDVWvDI9JAJYCmNdQXq6neHJOYx3V6jnqNEec=
+github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
@@ -235,10 +233,8 @@ github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
-github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
-github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
-github.com/mailru/easyjson v0.7.6 h1:8yTIVnZgCoiM1TgqoeTl+LfU5Jg6/xL3QhGQnimLYnA=
-github.com/mailru/easyjson v0.7.6/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
+github.com/mailru/easyjson v0.7.7 h1:UGYAvKxe3sBsEDzO8ZeWOSlIQfWFlxbzLZe7hwFURr0=
+github.com/mailru/easyjson v0.7.7/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
 github.com/mattn/go-colorable v0.1.13 h1:fFA4WZxdEF4tXPZVKMLwD8oUnCTTo08duU7wxecdEvA=
 github.com/mattn/go-colorable v0.1.13/go.mod h1:7S9/ev0klgBDR4GtXTXX8a3vIGJpMovkB8vQcUbaXHg=
 github.com/mattn/go-isatty v0.0.16 h1:bq3VjFmv/sOjHtdEhmkEV4x1AJtvUvOJ2PFAZ5+peKQ=
@@ -276,7 +272,6 @@ github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 h1:t4WWQ9I797y7QU
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833/go.mod h1:0CznHmXSjMEqs5Tezj/w2emQoM41wzYM9KpDKUHPYag=
 github.com/ncabatoff/process-exporter v0.7.10 h1:+Ere7+3se6QqP54gg7aBRagWcL8bq3u5zNi/GRSWeKQ=
 github.com/ncabatoff/process-exporter v0.7.10/go.mod h1:DHZRZjqxw9LCOpLlX0DjBuyn6d5plh41Jv6Tmttj7Ek=
-github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
 github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
 github.com/nxadm/tail v1.4.8/go.mod h1:+ncqLTQzXmGhMZNUePPaPqPvBxHAIsmXswZKocGu+AU=
@@ -331,7 +326,7 @@ github.com/prometheus/procfs v0.10.1/go.mod h1:nwNm2aOCAYw8uTR/9bWRREkZFxAUcWzPH
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
 github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTEfhy4qGm1nDQc=
 github.com/rogpeppe/go-internal v1.8.0/go.mod h1:WmiCO8CzOY8rg0OYDC4/i/2WRWAB6poM+XZ2dLUbcbE=
-github.com/rogpeppe/go-internal v1.10.0 h1:TMyTOH3F/DB16zRVcYyreMH6GnZZrwQVAoYjRBZyWFQ=
+github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
 github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=
@@ -347,7 +342,9 @@ github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
+github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
 github.com/stretchr/objx v0.5.0 h1:1zr/of2m5FGMsad5YfcqgdqdWrIhu+EBEJRhR1U7z/c=
+github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
 github.com/stretchr/testify v1.1.3/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
@@ -355,6 +352,9 @@ github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81P
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
+github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
 github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
@@ -683,7 +683,6 @@ gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLks
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
 gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
@@ -717,31 +716,31 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.26.4 h1:qSG2PmtcD23BkYiWfoYAcak870eF/hE7NNYBYavTT94=
-k8s.io/api v0.26.4/go.mod h1:WwKEXU3R1rgCZ77AYa7DFksd9/BAIKyOmRlbVxgvjCk=
+k8s.io/api v0.27.4 h1:0pCo/AN9hONazBKlNUdhQymmnfLRbSZjd5H5H3f0bSs=
+k8s.io/api v0.27.4/go.mod h1:O3smaaX15NfxjzILfiln1D8Z3+gEYpjEpiNA/1EVK1Y=
 k8s.io/apiextensions-apiserver v0.26.4 h1:9D2RTxYGxrG5uYg6D7QZRcykXvavBvcA59j5kTaedQI=
 k8s.io/apiextensions-apiserver v0.26.4/go.mod h1:cd4uGFGIgzEqUghWpRsr9KE8j2KNTjY8Ji8pnMMazyw=
-k8s.io/apimachinery v0.26.4 h1:rZccKdBLg9vP6J09JD+z8Yr99Ce8gk3Lbi9TCx05Jzs=
-k8s.io/apimachinery v0.26.4/go.mod h1:ats7nN1LExKHvJ9TmwootT00Yz05MuYqPXEXaVeOy5I=
+k8s.io/apimachinery v0.27.4 h1:CdxflD4AF61yewuid0fLl6bM4a3q04jWel0IlP+aYjs=
+k8s.io/apimachinery v0.27.4/go.mod h1:XNfZ6xklnMCOGGFNqXG7bUrQCoR04dh/E7FprV6pb+E=
 k8s.io/apiserver v0.26.4 h1:3Oq4mnJv0mzVX7BR/Nod+8KjlELf/3Ljvu9ZWDyLUoA=
 k8s.io/apiserver v0.26.4/go.mod h1:yAY3O1vBM4/0OIGAGeWcdfzQvgdwJ188VirLcuSAVnw=
 k8s.io/cli-runtime v0.26.4 h1:MgSU871KDzBDX7V9GtuqS6Ai9lhQCHgRzkurnXOWtZ0=
 k8s.io/cli-runtime v0.26.4/go.mod h1:MjJ2DXMChw2zcG0/agzm17xwKpfVxOfuoCdfY9iOCOE=
-k8s.io/client-go v0.26.4 h1:/7P/IbGBuT73A+G97trf44NTPSNqvuBREpOfdLbHvD4=
-k8s.io/client-go v0.26.4/go.mod h1:6qOItWm3EwxJdl/8p5t7FWtWUOwyMdA8N9ekbW4idpI=
+k8s.io/client-go v0.27.4 h1:vj2YTtSJ6J4KxaC88P4pMPEQECWMY8gqPqsTgUKzvjk=
+k8s.io/client-go v0.27.4/go.mod h1:ragcly7lUlN0SRPk5/ZkGnDjPknzb37TICq07WhI6Xc=
 k8s.io/code-generator v0.26.4 h1:zgDD0qX13p/jtrAoYRRiYeQ5ibnriwmo2cMkMZAtJxc=
 k8s.io/code-generator v0.26.4/go.mod h1:ryaiIKwfxEJEaywEzx3dhWOydpVctKYbqLajJf0O8dI=
-k8s.io/component-base v0.26.4 h1:Bg2xzyXNKL3eAuiTEu3XE198d6z22ENgFgGQv2GGOUk=
-k8s.io/component-base v0.26.4/go.mod h1:lTuWL1Xz/a4e80gmIC3YZG2JCO4xNwtKWHJWeJmsq20=
+k8s.io/component-base v0.27.4 h1:Wqc0jMKEDGjKXdae8hBXeskRP//vu1m6ypC+gwErj4c=
+k8s.io/component-base v0.27.4/go.mod h1:hoiEETnLc0ioLv6WPeDt8vD34DDeB35MfQnxCARq3kY=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d h1:U9tB195lKdzwqicbJvyJeOXV7Klv+wNAWENRnXEGi08=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
 k8s.io/klog/v2 v2.100.1 h1:7WCHKK6K8fNhTqfBhISHQ97KrnJNFZMcQvKp7gP/tmg=
 k8s.io/klog/v2 v2.100.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
-k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280 h1:+70TFaan3hfJzs+7VK2o+OGxg8HsuBr/5f6tVAjDu6E=
-k8s.io/kube-openapi v0.0.0-20221012153701-172d655c2280/go.mod h1:+Axhij7bCpeqhklhUTe3xmOn6bWxolyZEeyaFpjGtl4=
-k8s.io/utils v0.0.0-20221128185143-99ec85e7a448 h1:KTgPnR10d5zhztWptI952TNtt/4u5h3IzDXkdIMuo2Y=
-k8s.io/utils v0.0.0-20221128185143-99ec85e7a448/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
+k8s.io/kube-openapi v0.0.0-20230501164219-8b0f38b5fd1f h1:2kWPakN3i/k81b0gvD5C5FJ2kxm1WrQFanWchyKuqGg=
+k8s.io/kube-openapi v0.0.0-20230501164219-8b0f38b5fd1f/go.mod h1:byini6yhqGC14c3ebc/QwanvYwhuMWF6yz2F8uwW8eg=
+k8s.io/utils v0.0.0-20230209194617-a36077c30491 h1:r0BAOLElQnnFhE/ApUsg3iHdVYYPBjNSSOMowRZxxsY=
+k8s.io/utils v0.0.0-20230209194617-a36077c30491/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
@@ -749,8 +748,8 @@ rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
 sigs.k8s.io/controller-runtime v0.14.6 h1:oxstGVvXGNnMvY7TAESYk+lzr6S3V5VFxQ6d92KcwQA=
 sigs.k8s.io/controller-runtime v0.14.6/go.mod h1:WqIdsAY6JBsjfc/CqO0CORmNtoCtE4S6qbPc9s68h+0=
-sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2 h1:iXTIw73aPyC+oRdyqqvVJuloN1p0AC/kzH07hu3NE+k=
-sigs.k8s.io/json v0.0.0-20220713155537-f223a00ba0e2/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
+sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
+sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/kustomize/api v0.12.1 h1:7YM7gW3kYBwtKvoY216ZzY+8hM+lV53LUayghNRJ0vM=
 sigs.k8s.io/kustomize/api v0.12.1/go.mod h1:y3JUhimkZkR6sbLNwfJHxvo1TCLwuwm14sCYnkH6S1s=
 sigs.k8s.io/kustomize/kyaml v0.13.9 h1:Qz53EAaFFANyNgyOEJbT/yoIHygK40/ZcvU3rgry2Tk=
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 7dc1a5292..f405bdcbb 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -142,7 +142,7 @@ type Configuration struct {
 
 func getIngressPodZone(svc *apiv1.Service) string {
 	svcKey := k8s.MetaNamespaceKey(svc)
-	if svcZoneAnnotation, ok := svc.ObjectMeta.GetAnnotations()[apiv1.AnnotationTopologyAwareHints]; ok {
+	if svcZoneAnnotation, ok := svc.ObjectMeta.GetAnnotations()[apiv1.AnnotationTopologyMode]; ok {
 		if strings.ToLower(svcZoneAnnotation) == "auto" {
 			if foundZone, ok := k8s.IngressNodeDetails.GetLabels()[apiv1.LabelTopologyZone]; ok {
 				klog.V(3).Infof("Svc has topology aware annotation enabled, try to use zone %q where controller pod is running for Service %q ", foundZone, svcKey)
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index 2c926a35f..55d24f690 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -221,7 +221,7 @@ Takes the form "<host>:port". If not provided, no admission controller is starte
 
 		disableSyncEvents = flags.Bool("disable-sync-events", false, "Disables the creation of 'Sync' event resources")
 
-		enableTopologyAwareRouting = flags.Bool("enable-topology-aware-routing", false, "Enable topology aware hints feature, needs service object annotation service.kubernetes.io/topology-aware-hints sets to auto.")
+		enableTopologyAwareRouting = flags.Bool("enable-topology-aware-routing", false, "Enable topology aware routing feature, needs service object annotation service.kubernetes.io/topology-mode sets to auto.")
 	)
 
 	flags.StringVar(&nginx.MaxmindMirror, "maxmind-mirror", "", `Maxmind mirror url (example: http://geoip.local/databases.`)
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index bcb1d3960..93e1811ec 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -67,11 +67,11 @@ func WithDeploymentNamespace(n string) func(*deploymentOptions) {
 	}
 }
 
-// WithSvcTopologyAnnotations create svc with topology aware hints sets to auto
+// WithSvcTopologyAnnotations create svc with topology mode sets to auto
 func WithSvcTopologyAnnotations() func(*deploymentOptions) {
 	return func(o *deploymentOptions) {
 		o.svcAnnotations = map[string]string{
-			"service.kubernetes.io/topology-aware-hints": "auto",
+			corev1.AnnotationTopologyMode: "auto",
 		}
 	}
 }
@@ -213,7 +213,7 @@ func (f *Framework) NewHttpbunDeployment(opts ...func(*deploymentOptions)) strin
 		80,
 		int32(options.replicas),
 		nil, nil,
-		//Required to get hostname information
+		// Required to get hostname information
 		[]corev1.EnvVar{
 			{
 				Name:  "HTTPBUN_INFO_ENABLED",

From 53c2f2742fa49648ade7ed3d150e01d19be91fa5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 11 Aug 2023 13:11:22 -0700
Subject: [PATCH 0891/1641] Bump github.com/opencontainers/runc from 1.1.8 to
 1.1.9 (#10298)

Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.8 to 1.1.9.
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/v1.1.9/CHANGELOG.md)
- [Commits](https://github.com/opencontainers/runc/compare/v1.1.8...v1.1.9)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 3ed0e77e0..e78ca245e 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo/v2 v2.9.5
-	github.com/opencontainers/runc v1.1.8
+	github.com/opencontainers/runc v1.1.9
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.16.0
 	github.com/prometheus/client_model v0.4.0
diff --git a/go.sum b/go.sum
index eb703a707..bbfacc71e 100644
--- a/go.sum
+++ b/go.sum
@@ -284,8 +284,8 @@ github.com/onsi/ginkgo/v2 v2.9.5/go.mod h1:tvAoo1QUJwNEU2ITftXTpR7R1RbCzoZUOs3Ro
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.27.6 h1:ENqfyGeS5AX/rlXDd/ETokDz93u0YufY1Pgxuy/PvWE=
-github.com/opencontainers/runc v1.1.8 h1:zICRlc+C1XzivLc3nzE+cbJV4LIi8tib6YG0MqC6OqA=
-github.com/opencontainers/runc v1.1.8/go.mod h1:CbUumNnWCuTGFukNXahoo/RFBZvDAgRh/smNYNOhA50=
+github.com/opencontainers/runc v1.1.9 h1:XR0VIHTGce5eWPkaPesqTBrhW2yAcaraWfsEalNwQLM=
+github.com/opencontainers/runc v1.1.9/go.mod h1:CbUumNnWCuTGFukNXahoo/RFBZvDAgRh/smNYNOhA50=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=

From a92e7b4857b3cd7fb152f1ade5f6c3db462311b2 Mon Sep 17 00:00:00 2001
From: Son Bui <sonbv00@gmail.com>
Date: Sat, 12 Aug 2023 11:21:19 +0800
Subject: [PATCH 0892/1641] Remove curl dependencies in e2e tests #9716
 (#10296)

* fix: Replace curl list backend with dbg command #9716

Signed-off-by: Son Bui <sonbv00@gmail.com>

* fix: Remove curl dependencies in e2e tests #9716

Signed-off-by: Son Bui <sonbv00@gmail.com>

---------

Signed-off-by: Son Bui <sonbv00@gmail.com>
---
 test/e2e/annotations/serviceupstream.go       | 20 +++++++++----------
 test/e2e/endpointslices/topology.go           |  5 ++---
 .../servicebackend/service_externalname.go    | 11 +++-------
 test/e2e/settings/tls.go                      | 20 ++++++++++---------
 4 files changed, 25 insertions(+), 31 deletions(-)

diff --git a/test/e2e/annotations/serviceupstream.go b/test/e2e/annotations/serviceupstream.go
index 94ad6d346..0606a2d61 100644
--- a/test/e2e/annotations/serviceupstream.go
+++ b/test/e2e/annotations/serviceupstream.go
@@ -25,8 +25,6 @@ import (
 	"github.com/stretchr/testify/assert"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
-
-	"k8s.io/ingress-nginx/internal/nginx"
 )
 
 var _ = framework.DescribeAnnotation("service-upstream", func() {
@@ -59,10 +57,10 @@ var _ = framework.DescribeAnnotation("service-upstream", func() {
 
 			ginkgo.By("checking if the Service Cluster IP and Port are used")
 			s := f.GetService(f.Namespace, framework.EchoService)
-			curlCmd := fmt.Sprintf("curl --fail --silent http://localhost:%v/configuration/backends", nginx.StatusPort)
-			output, err := f.ExecIngressPod(curlCmd)
+			dbgCmd := "/dbg backends all"
+			output, err := f.ExecIngressPod(dbgCmd)
 			assert.Nil(ginkgo.GinkgoT(), err)
-			assert.Contains(ginkgo.GinkgoT(), output, fmt.Sprintf(`{"address":"%s"`, s.Spec.ClusterIP))
+			assert.Contains(ginkgo.GinkgoT(), output, fmt.Sprintf(`"address": "%s"`, s.Spec.ClusterIP))
 		})
 	})
 
@@ -88,10 +86,10 @@ var _ = framework.DescribeAnnotation("service-upstream", func() {
 
 			ginkgo.By("checking if the Service Cluster IP and Port are used")
 			s := f.GetService(f.Namespace, framework.EchoService)
-			curlCmd := fmt.Sprintf("curl --fail --silent http://localhost:%v/configuration/backends", nginx.StatusPort)
-			output, err := f.ExecIngressPod(curlCmd)
+			dbgCmd := "/dbg backends all"
+			output, err := f.ExecIngressPod(dbgCmd)
 			assert.Nil(ginkgo.GinkgoT(), err)
-			assert.Contains(ginkgo.GinkgoT(), output, fmt.Sprintf(`{"address":"%s"`, s.Spec.ClusterIP))
+			assert.Contains(ginkgo.GinkgoT(), output, fmt.Sprintf(`"address": "%s"`, s.Spec.ClusterIP))
 		})
 	})
 
@@ -119,10 +117,10 @@ var _ = framework.DescribeAnnotation("service-upstream", func() {
 
 			ginkgo.By("checking if the Service Cluster IP and Port are not used")
 			s := f.GetService(f.Namespace, framework.EchoService)
-			curlCmd := fmt.Sprintf("curl --fail --silent http://localhost:%v/configuration/backends", nginx.StatusPort)
-			output, err := f.ExecIngressPod(curlCmd)
+			dbgCmd := "/dbg backends all"
+			output, err := f.ExecIngressPod(dbgCmd)
 			assert.Nil(ginkgo.GinkgoT(), err)
-			assert.NotContains(ginkgo.GinkgoT(), output, fmt.Sprintf(`{"address":"%s"`, s.Spec.ClusterIP))
+			assert.NotContains(ginkgo.GinkgoT(), output, fmt.Sprintf(`"address": "%s"`, s.Spec.ClusterIP))
 		})
 	})
 })
diff --git a/test/e2e/endpointslices/topology.go b/test/e2e/endpointslices/topology.go
index ff66f2ad1..2197bcb53 100644
--- a/test/e2e/endpointslices/topology.go
+++ b/test/e2e/endpointslices/topology.go
@@ -28,7 +28,6 @@ import (
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
-	"k8s.io/ingress-nginx/internal/nginx"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
@@ -72,8 +71,8 @@ var _ = framework.IngressNginxDescribeSerial("[TopologyHints] topology aware rou
 			}
 		}
 
-		curlCmd := fmt.Sprintf("curl --fail --silent http://localhost:%v/configuration/backends", nginx.StatusPort)
-		status, err := f.ExecIngressPod(curlCmd)
+		dbgCmd := "/dbg backends all"
+		status, err := f.ExecIngressPod(dbgCmd)
 		assert.Nil(ginkgo.GinkgoT(), err)
 		var backends []map[string]interface{}
 		err = json.Unmarshal([]byte(status), &backends)
diff --git a/test/e2e/servicebackend/service_externalname.go b/test/e2e/servicebackend/service_externalname.go
index 89ae77b10..429690ff1 100644
--- a/test/e2e/servicebackend/service_externalname.go
+++ b/test/e2e/servicebackend/service_externalname.go
@@ -30,7 +30,6 @@ import (
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
-	"k8s.io/ingress-nginx/internal/nginx"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
@@ -330,17 +329,13 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 		assert.Contains(ginkgo.GinkgoT(), body, `"X-Forwarded-Host": "echo"`)
 
 		ginkgo.By("checking the service is updated to use new host")
-		curlCmd := fmt.Sprintf(
-			"curl --fail --silent http://localhost:%v/configuration/backends",
-			nginx.StatusPort,
-		)
-
-		output, err := f.ExecIngressPod(curlCmd)
+		dbgCmd := "/dbg backends all"
+		output, err := f.ExecIngressPod(dbgCmd)
 		assert.Nil(ginkgo.GinkgoT(), err)
 		assert.Contains(
 			ginkgo.GinkgoT(),
 			output,
-			fmt.Sprintf("{\"address\":\"%s\"", framework.BuildNIPHost(ip)),
+			fmt.Sprintf(`"address": "%s"`, framework.BuildNIPHost(ip)),
 		)
 	})
 
diff --git a/test/e2e/settings/tls.go b/test/e2e/settings/tls.go
index a820e41dd..2cead4a94 100644
--- a/test/e2e/settings/tls.go
+++ b/test/e2e/settings/tls.go
@@ -170,15 +170,17 @@ var _ = framework.DescribeSetting("[SSL] TLS protocols, ciphers and headers)", f
 				hstsIncludeSubdomains: "false",
 			})
 
-			// we can not use gorequest here because it flattens the duplicate headers
-			// and specifically in case of Strict-Transport-Security it ignore extra headers
-			// intead of concatenating, rightfully. And I don't know of any API it provides for getting raw headers.
-			curlCmd := fmt.Sprintf("curl -I -k --fail --silent --resolve settings-tls:443:127.0.0.1 https://settings-tls%v", "?hsts=true")
-			output, err := f.ExecIngressPod(curlCmd)
-			assert.Nil(ginkgo.GinkgoT(), err)
-			assert.Contains(ginkgo.GinkgoT(), output, "strict-transport-security: max-age=86400; preload")
-			// this is what the upstream sets
-			assert.NotContains(ginkgo.GinkgoT(), output, "strict-transport-security: max-age=3600; preload")
+			expectResponse := f.HTTPTestClientWithTLSConfig(tlsConfig).
+				GET("/").
+				WithURL(f.GetURL(framework.HTTPS)).
+				WithHeader("Host", host).
+				WithQuery("hsts", "true").
+				Expect()
+
+			expectResponse.Header("Strict-Transport-Security").Equal("max-age=86400; preload")
+			header := expectResponse.Raw().Header
+			got := header["Strict-Transport-Security"]
+			assert.Equal(ginkgo.GinkgoT(), 1, len(got))
 		})
 
 	})

From 6b05e9b06e3a61062a33c6c8338f2e253c881aec Mon Sep 17 00:00:00 2001
From: Lucas Fernando Cardoso Nunes <lucasfc.nunes@gmail.com>
Date: Sun, 13 Aug 2023 12:27:20 -0300
Subject: [PATCH 0893/1641] fix: add /etc/mime.types #10309 (#10310)

Signed-off-by: Lucas Fernando Cardoso Nunes <lucasfc.nunes@gmail.com>
---
 images/custom-error-pages/rootfs/Dockerfile | 1 +
 1 file changed, 1 insertion(+)

diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index 04bcb8e08..4560e9ed5 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -32,6 +32,7 @@ FROM gcr.io/distroless/static:nonroot
 
 COPY --from=builder /go/src/k8s.io/ingress-nginx/images/custom-error-pages/nginx-errors /
 COPY --from=builder /go/src/k8s.io/ingress-nginx/images/custom-error-pages/www /www
+COPY --from=builder /go/src/k8s.io/ingress-nginx/images/custom-error-pages/etc /etc
 USER nonroot:nonroot
 
 CMD ["/nginx-errors"]

From 8a578c9f4a268cba2d75fc40d4e5f4bb3e17a714 Mon Sep 17 00:00:00 2001
From: Mark Ley <markhley@users.noreply.github.com>
Date: Mon, 14 Aug 2023 10:35:21 -0700
Subject: [PATCH 0894/1641] Disable Modsecurity from internal processing which
 affects large ingresses  (#10316)

* Disable Modsecurity from interanl processing

* Fix modsecurity check logic
---
 rootfs/etc/nginx/template/nginx.tmpl | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 0f44efc3d..0a031442c 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -709,6 +709,11 @@ http {
 
     # default server, used for NGINX healthcheck and access to nginx stats
     server {
+        # Ensure that modsecurity will not run on an internal location as this is not accessible from outside
+        {{ if $all.Cfg.EnableModsecurity }}
+        modsecurity off;
+        {{ end }}
+
         listen 127.0.0.1:{{ .StatusPort }};
         set $proxy_upstream_name "internal";
 

From 1a8ba5e2f26c16064888be869ce978bbaaffda32 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 16 Aug 2023 02:44:27 -0700
Subject: [PATCH 0895/1641] Bump goreleaser/goreleaser-action from 4.3.0 to
 4.4.0 (#10314)

Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 4.3.0 to 4.4.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/336e29918d653399e599bfca99fadc1d7ffbc9f7...3fa32b8bb5620a2c1afe798654bbad59f9da4906)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/plugin.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index d8769f439..a7ce737ac 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -28,7 +28,7 @@ jobs:
           check-latest: true
 
       - name: Run GoReleaser
-        uses: goreleaser/goreleaser-action@336e29918d653399e599bfca99fadc1d7ffbc9f7 # v4.3.0
+        uses: goreleaser/goreleaser-action@3fa32b8bb5620a2c1afe798654bbad59f9da4906 # v4.4.0
         with:
           version: latest
           args: release --rm-dist

From cee39f68ef1053057f14c88443605a80a180c769 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 21 Aug 2023 06:21:23 -0700
Subject: [PATCH 0896/1641] Bump securego/gosec from 2.16.0 to 2.17.0 (#10332)

Bumps [securego/gosec](https://github.com/securego/gosec) from 2.16.0 to 2.17.0.
- [Release notes](https://github.com/securego/gosec/releases)
- [Changelog](https://github.com/securego/gosec/blob/master/.goreleaser.yml)
- [Commits](https://github.com/securego/gosec/compare/c5ea1b7bdd9efc3792e513258853552b0ae31e06...a89e9d5a7acb4457f3891ac18532b142b1bf9221)

---
updated-dependencies:
- dependency-name: securego/gosec
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 5c08ba0da..54ad661cc 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -71,7 +71,7 @@ jobs:
         uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - name: Run Gosec Security Scanner
-        uses: securego/gosec@c5ea1b7bdd9efc3792e513258853552b0ae31e06 # v2.16.0
+        uses: securego/gosec@a89e9d5a7acb4457f3891ac18532b142b1bf9221 # v2.17.0
         with:
           # G601 for zz_generated.deepcopy.go
           # G306 TODO: Expect WriteFile permissions to be 0600 or less

From ac3ff59ea42a8c7defd84f5b5bf0e2c6e71ac133 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 23 Aug 2023 15:26:00 -0700
Subject: [PATCH 0897/1641] Bump actions/setup-go from 4.0.1 to 4.1.0 (#10313)

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4.0.1 to 4.1.0.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/fac708d6674e30b6ba41289acaab6d4b75aa0753...93397bea11091df50f3d7e59dc26a7711a8bcfbe)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml     | 12 ++++++------
 .github/workflows/plugin.yaml |  2 +-
 2 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 54ad661cc..09de92680 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -89,7 +89,7 @@ jobs:
       
       - name: Set up Go
         id: go
-        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
+        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
           go-version: '1.20'
           check-latest: true
@@ -108,7 +108,7 @@ jobs:
       
       - name: Set up Go
         id: go
-        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
+        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
           go-version: '1.20'
           check-latest: true
@@ -127,7 +127,7 @@ jobs:
       
       - name: Set up Go
         id: go
-        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
+        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
           go-version: '1.20'
           check-latest: true
@@ -148,7 +148,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
+        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
           go-version: '1.20'
           check-latest: true
@@ -214,7 +214,7 @@ jobs:
         uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
 
       - name: Setup Go
-        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
+        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
           go-version: '1.20'
           check-latest: true
@@ -521,7 +521,7 @@ jobs:
       - name: Set up Go
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
+        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
           go-version: '1.20'
           check-latest: true
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index a7ce737ac..40fed1d9b 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -22,7 +22,7 @@ jobs:
           fetch-depth: 0
 
       - name: Set up Go
-        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
+        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
           go-version: 1.20
           check-latest: true

From 40e0849b16f1e9c07d8f5a1554ef2a7f79c9224a Mon Sep 17 00:00:00 2001
From: Ciprian Hacman <ciprian@hakman.dev>
Date: Fri, 25 Aug 2023 07:33:19 +0300
Subject: [PATCH 0898/1641] Use gzip instead of pigz in CI (#10348)

Signed-off-by: Ciprian Hacman <chacman@microsoft.com>
---
 .github/workflows/ci.yaml | 12 +++++-------
 1 file changed, 5 insertions(+), 7 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 09de92680..796e81844 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -167,8 +167,6 @@ jobs:
 
       - name: Prepare Host
         run: |
-          sudo apt-get -qq update || true
-          sudo apt-get install -y pigz
           curl -LO https://dl.k8s.io/release/v1.25.5/bin/linux/amd64/kubectl
           chmod +x ./kubectl
           sudo mv ./kubectl /usr/local/bin/kubectl
@@ -188,7 +186,7 @@ jobs:
             nginx-ingress-controller:e2e \
             ingress-controller/controller:1.0.0-dev \
             ingress-controller/controller-chroot:1.0.0-dev \
-            | pigz > docker.tar.gz
+            | gzip > docker.tar.gz
 
       - name: cache
         uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
@@ -260,7 +258,7 @@ jobs:
       - name: Load images from cache
         run: |
           echo "loading docker images..."
-          pigz -dc docker.tar.gz | docker load
+          gzip -dc docker.tar.gz | docker load
 
       - name: Test
         env:
@@ -301,7 +299,7 @@ jobs:
       - name: Load images from cache
         run: |
           echo "loading docker images..."
-          pigz -dc docker.tar.gz | docker load
+          gzip -dc docker.tar.gz | docker load
 
       - name: Run e2e tests
         env:
@@ -349,7 +347,7 @@ jobs:
       - name: Load images from cache
         run: |
           echo "loading docker images..."
-          pigz -dc docker.tar.gz | docker load
+          gzip -dc docker.tar.gz | docker load
 
       - name: Run e2e tests
         env:
@@ -400,7 +398,7 @@ jobs:
       - name: Load images from cache
         run: |
           echo "loading docker images..."
-          pigz -dc docker.tar.gz | docker load
+          gzip -dc docker.tar.gz | docker load
 
       - name: Run e2e tests
         env:

From 8d0b00dd263b32f179460ab881095c3e95efbcbc Mon Sep 17 00:00:00 2001
From: Son Bui <sonbv00@gmail.com>
Date: Fri, 25 Aug 2023 21:00:53 +0800
Subject: [PATCH 0899/1641] fix: update action file to auto release plugin
 #10197 (#10321)

Signed-off-by: Son Bui <sonbv00@gmail.com>
---
 .github/workflows/plugin.yaml | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 40fed1d9b..1eeb1d102 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -4,10 +4,8 @@ on:
   push:
     branches:
       - "main"
-    paths:
-      - "cmd/plugin/**"
     tags:
-      - "v*"
+      - 'v*.*.*\+plugin'
 
 permissions:
   contents: write # for goreleaser/goreleaser-action
@@ -24,14 +22,14 @@ jobs:
       - name: Set up Go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
-          go-version: 1.20
+          go-version: '1.20'
           check-latest: true
 
       - name: Run GoReleaser
         uses: goreleaser/goreleaser-action@3fa32b8bb5620a2c1afe798654bbad59f9da4906 # v4.4.0
         with:
           version: latest
-          args: release --rm-dist
+          args: release --clean
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 

From 9487907fa1ba3451d2f4440b550f9cfffe11fd65 Mon Sep 17 00:00:00 2001
From: Marcelo Cyreno <812725+marcelocyreno@users.noreply.github.com>
Date: Sat, 26 Aug 2023 00:25:21 -0300
Subject: [PATCH 0900/1641] =?UTF-8?q?Fix=20=E2=80=9Cdev-env=E2=80=9D=20Mak?=
 =?UTF-8?q?efile=20target=20to=20work=20with=20kubectl=201.28+=20(#10350)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 build/dev-env.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/build/dev-env.sh b/build/dev-env.sh
index 3d21b7e15..d79238b7d 100755
--- a/build/dev-env.sh
+++ b/build/dev-env.sh
@@ -52,7 +52,7 @@ if [[ ${HELM_VERSION} -lt 3.10.0 ]]; then
   exit 1
 fi
 
-KUBE_CLIENT_VERSION=$(kubectl version --client --short 2>/dev/null | grep Client | awk '{print $3}' | cut -d. -f2) || true
+KUBE_CLIENT_VERSION=$(kubectl version --client -oyaml 2>/dev/null | grep "minor:" | awk '{print $2}' | tr -d '"') || true
 if [[ ${KUBE_CLIENT_VERSION} -lt 24 ]]; then
   echo "Please update kubectl to 1.24.2 or higher"
   exit 1

From 300a60f7244cb056701177989a1a09135626f930 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 26 Aug 2023 16:59:22 -0700
Subject: [PATCH 0901/1641] Bump actions/dependency-review-action from 3.0.6 to
 3.0.8 (#10333)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3.0.6 to 3.0.8.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/1360a344ccb0ab6e9475edef90ad2f46bf8003b1...f6fff72a3217f580d5afd49a46826795305b63c7)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 625c2f461..45d796088 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@1360a344ccb0ab6e9475edef90ad2f46bf8003b1 # v3.0.6
+        uses: actions/dependency-review-action@f6fff72a3217f580d5afd49a46826795305b63c7 # v3.0.8

From 1ce25127bd39179bfaba6f0b7ef5b40ec2dc4bbb Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 28 Aug 2023 04:55:43 -0700
Subject: [PATCH 0902/1641] Bump actions/checkout from 3.5.3 to 3.6.0 (#10354)

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.3 to 3.6.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/c85c95e3d7251135ab7dc9ce3241c5835cc595a9...f43a0e5ff2bd294095638e18286ca9a3d1956744)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 24 +++++++++++-----------
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  2 +-
 .github/workflows/vulnerability-scans.yaml |  4 ++--
 8 files changed, 22 insertions(+), 22 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 796e81844..596ef0427 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -42,7 +42,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -68,7 +68,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - name: Run Gosec Security Scanner
         uses: securego/gosec@a89e9d5a7acb4457f3891ac18532b142b1bf9221 # v2.17.0
@@ -85,7 +85,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
       
       - name: Set up Go
         id: go
@@ -104,7 +104,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
       
       - name: Set up Go
         id: go
@@ -123,7 +123,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
       
       - name: Set up Go
         id: go
@@ -144,7 +144,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - name: Set up Go
         id: go
@@ -209,7 +209,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - name: Setup Go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
@@ -284,7 +284,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -332,7 +332,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -383,7 +383,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -427,7 +427,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
@@ -500,7 +500,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 45d796088..f93869c79 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@f6fff72a3217f580d5afd49a46826795305b63c7 # v3.0.8
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index f7aee6610..d4b81e62a 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index e6bd4f101..5b0f98f1b 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - name: Run Artifact Hub lint
         run: |
@@ -61,7 +61,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 36f1f1ede..154ab6e47 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 1eeb1d102..16974e906 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 2e276a3f6..d06fa1528 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
         with:
           persist-credentials: false
 
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index af7d8bda1..1acc6c163 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
 
       - shell: bash
         id: test

From 93f9ac2521519404a442fa2660b79c1ba672adea Mon Sep 17 00:00:00 2001
From: Marcelo Cyreno <812725+marcelocyreno@users.noreply.github.com>
Date: Mon, 28 Aug 2023 11:37:44 -0300
Subject: [PATCH 0903/1641] Making auth access logs optional (#10335)

---
 internal/ingress/controller/config/config.go | 5 +++++
 rootfs/etc/nginx/template/nginx.tmpl         | 2 ++
 2 files changed, 7 insertions(+)

diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 6e78964ed..60cef489a 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -131,6 +131,10 @@ type Configuration struct {
 	// By default this is disabled
 	EnableAccessLogForDefaultBackend bool `json:"enable-access-log-for-default-backend"`
 
+	// EnableAuthAccessLog enable auth access log
+	// By default this is disabled
+	EnableAuthAccessLog bool `json:"enable-auth-access-log"`
+
 	// AccessLogPath sets the path of the access logs for both http and stream contexts if enabled
 	// http://nginx.org/en/docs/http/ngx_http_log_module.html#access_log
 	// http://nginx.org/en/docs/stream/ngx_stream_log_module.html#access_log
@@ -871,6 +875,7 @@ func NewDefault() Configuration {
 		AccessLogPath:                    "/var/log/nginx/access.log",
 		AccessLogParams:                  "",
 		EnableAccessLogForDefaultBackend: false,
+		EnableAuthAccessLog:              false,
 		WorkerCPUAffinity:                "",
 		ErrorLogPath:                     "/var/log/nginx/error.log",
 		BlockCIDRs:                       defBlockEntity,
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 0a031442c..3d7235bcc 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -1102,7 +1102,9 @@ stream {
             opentelemetry_propagate;
             {{ end }}
 
+            {{ if not $all.Cfg.EnableAuthAccessLog }}
             access_log off;
+            {{ end }}
 
             # Ensure that modsecurity will not run on an internal location as this is not accessible from outside
             {{ if $all.Cfg.EnableModsecurity }}

From 616d7e97d006cb0d054706dd0db5639497abee54 Mon Sep 17 00:00:00 2001
From: Rudolf Byker <rudolfbyker@users.noreply.github.com>
Date: Tue, 29 Aug 2023 09:17:22 +0200
Subject: [PATCH 0904/1641] Add firewall configuration to quick start
 documentation (#10357)

---
 docs/deploy/index.md | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index d719d4a57..df11d710c 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -80,6 +80,12 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
     Because of api deprecations, the default manifest may not work on your cluster.
     Specific manifests for supported Kubernetes versions are available within a sub-folder of each provider.
 
+### Firewall configuration
+
+To check which ports are used by your installation of ingress-nginx, look at the output of `kubectl -n ingress-nginx get pod -o yaml`. In general, you need:
+- Port 8443 open between all hosts on which the kubernetes nodes are running. This is used for the ingress-nginx [admission controller](https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/).
+- Port 80 (for HTTP) and/or 443 (for HTTPS) open to the public on the kubernetes nodes to which the DNS of your apps are pointing.
+
 ### Pre-flight check
 
 A few pods should start in the `ingress-nginx` namespace:

From 46d87d3462014d7e188bff0082f0c4de044d9bc0 Mon Sep 17 00:00:00 2001
From: Son Bui <sonbv00@gmail.com>
Date: Thu, 31 Aug 2023 10:06:47 +0800
Subject: [PATCH 0905/1641] chore(build): Fix Run make dev-env syntax error
 (#10294)

* fix: Run make dev-env syntax error #10293

Signed-off-by: Son Bui <sonbv00@gmail.com>

* fix: Run make dev-env value too great for base #10294

---------

Signed-off-by: Son Bui <sonbv00@gmail.com>
---
 build/dev-env.sh | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/build/dev-env.sh b/build/dev-env.sh
index d79238b7d..93ed3de40 100755
--- a/build/dev-env.sh
+++ b/build/dev-env.sh
@@ -45,9 +45,11 @@ if ! command -v helm &> /dev/null; then
   exit 1
 fi
 
+function ver { printf "%d%03d%03d" $(echo "$1" | tr '.' ' '); }
+
 HELM_VERSION=$(helm version 2>&1 | cut -f1 -d"," | grep -oE '[0-9]+\.[0-9]+\.[0-9]+') || true
 echo $HELM_VERSION
-if [[ ${HELM_VERSION} -lt 3.10.0 ]]; then
+if [[ $(ver $HELM_VERSION) -lt $(ver "3.10.0") ]]; then
   echo "Please upgrade helm to v3.10.0 or higher"
   exit 1
 fi

From b3060bfbd09825993081f60b56df8201f1246702 Mon Sep 17 00:00:00 2001
From: Chen Chen <imchench@gmail.com>
Date: Thu, 31 Aug 2023 15:36:48 +0800
Subject: [PATCH 0906/1641] Fix golangci-lint errors (#10196)

* Fix golangci-lint errors

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix dupl errors

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix comments

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix errcheck lint errors

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix assert in e2e test

Signed-off-by: z1cheng <imchench@gmail.com>

* Not interrupt the waitForPodsReady

Signed-off-by: z1cheng <imchench@gmail.com>

* Replace string with constant

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix comments

Signed-off-by: z1cheng <imchench@gmail.com>

* Revert write file permision

Signed-off-by: z1cheng <imchench@gmail.com>

---------

Signed-off-by: z1cheng <imchench@gmail.com>
---
 cmd/dataplane/main.go                         |   5 +-
 cmd/dbg/main.go                               |  40 ++-
 cmd/nginx/logger.go                           |   1 -
 cmd/nginx/main.go                             |   5 +-
 cmd/nginx/main_test.go                        |  10 +-
 cmd/plugin/commands/backends/backends.go      |   9 +-
 cmd/plugin/commands/certs/certs.go            |   2 +-
 cmd/plugin/commands/conf/conf.go              |   2 +-
 cmd/plugin/commands/exec/exec.go              |   2 +-
 cmd/plugin/commands/general/general.go        |   2 +-
 cmd/plugin/commands/ingresses/ingresses.go    |  15 +-
 .../commands/ingresses/ingresses_test.go      |   1 -
 cmd/plugin/commands/lint/main.go              |  10 +-
 cmd/plugin/commands/logs/logs.go              |   2 +-
 cmd/plugin/commands/ssh/ssh.go                |   2 +-
 cmd/plugin/kubectl/kubectl.go                 |  18 +-
 cmd/plugin/lints/deployment.go                |  20 +-
 cmd/plugin/lints/ingress.go                   |  21 +-
 cmd/plugin/main.go                            |   2 +-
 cmd/plugin/request/request.go                 |  49 ++-
 cmd/plugin/util/util.go                       |  22 +-
 docs/e2e-tests.md                             |   2 +-
 images/fastcgi-helloserver/rootfs/main.go     |   4 +-
 images/go-grpc-greeter-server/rootfs/main.go  |   4 +-
 internal/admission/controller/main.go         |  13 +-
 internal/admission/controller/main_test.go    |   4 +-
 internal/admission/controller/server.go       |   4 +-
 internal/ingress/annotations/alias/main.go    |   2 +-
 .../ingress/annotations/alias/main_test.go    |   4 +-
 internal/ingress/annotations/annotations.go   |  61 ++--
 .../ingress/annotations/annotations_test.go   |   8 +-
 internal/ingress/annotations/auth/main.go     |  24 +-
 .../ingress/annotations/auth/main_test.go     |  62 ++--
 internal/ingress/annotations/authreq/main.go  |  36 +-
 .../ingress/annotations/authreq/main_test.go  |   5 +-
 .../ingress/annotations/authreqglobal/main.go |   1 -
 .../annotations/authreqglobal/main_test.go    |   5 +-
 internal/ingress/annotations/authtls/main.go  |  19 +-
 .../ingress/annotations/authtls/main_test.go  |  33 +-
 .../annotations/backendprotocol/main.go       |   4 +-
 .../annotations/backendprotocol/main_test.go  |   7 +-
 internal/ingress/annotations/canary/main.go   |  12 +-
 .../ingress/annotations/canary/main_test.go   |  11 +-
 .../annotations/clientbodybuffersize/main.go  |   6 +-
 .../clientbodybuffersize/main_test.go         |   1 +
 .../ingress/annotations/connection/main.go    |   6 +-
 .../annotations/connection/main_test.go       |   1 -
 internal/ingress/annotations/cors/main.go     |  16 +-
 .../annotations/customhttperrors/main.go      |  14 +-
 .../annotations/defaultbackend/main.go        |  14 +-
 internal/ingress/annotations/fastcgi/main.go  |  15 +-
 .../ingress/annotations/fastcgi/main_test.go  |   5 -
 .../annotations/globalratelimit/main.go       |  19 +-
 .../annotations/globalratelimit/main_test.go  |  21 +-
 .../annotations/http2pushpreload/main.go      |   4 +-
 .../ingress/annotations/ipallowlist/main.go   |   5 +-
 .../ingress/annotations/ipdenylist/main.go    |   5 +-
 .../annotations/loadbalancing/main_test.go    |   1 +
 internal/ingress/annotations/log/main.go      |   4 +-
 internal/ingress/annotations/log/main_test.go |  15 +-
 internal/ingress/annotations/mirror/main.go   |   6 +-
 .../ingress/annotations/modsecurity/main.go   |  14 +-
 .../annotations/modsecurity/main_test.go      |  10 +-
 .../ingress/annotations/opentelemetry/main.go |   7 +-
 .../annotations/opentelemetry/main_test.go    |  25 +-
 .../ingress/annotations/opentracing/main.go   |  14 +-
 .../annotations/opentracing/main_test.go      |  29 +-
 internal/ingress/annotations/parser/main.go   |  13 +-
 .../ingress/annotations/parser/main_test.go   |  12 +-
 .../ingress/annotations/parser/validators.go  |   8 +-
 .../annotations/parser/validators_test.go     |   1 -
 internal/ingress/annotations/proxy/main.go    |  23 +-
 .../ingress/annotations/proxy/main_test.go    |  32 +-
 internal/ingress/annotations/proxyssl/main.go |  32 +-
 .../ingress/annotations/proxyssl/main_test.go |  62 ++--
 .../ingress/annotations/ratelimit/main.go     |   2 +-
 .../ingress/annotations/redirect/redirect.go  |  12 +-
 .../annotations/redirect/redirect_test.go     |   1 -
 internal/ingress/annotations/rewrite/main.go  |   4 +-
 .../ingress/annotations/rewrite/main_test.go  |  36 +-
 internal/ingress/annotations/satisfy/main.go  |   4 +-
 .../annotations/serversnippet/main_test.go    |   1 +
 .../annotations/serviceupstream/main.go       |   4 +-
 .../annotations/serviceupstream/main_test.go  |  25 +-
 .../annotations/sessionaffinity/main.go       |  31 +-
 .../annotations/sessionaffinity/main_test.go  |   6 +-
 .../ingress/annotations/snippet/main_test.go  |   1 +
 .../ingress/annotations/sslcipher/main.go     |  12 +-
 .../annotations/sslcipher/main_test.go        |   7 +-
 .../annotations/sslpassthrough/main.go        |   3 +-
 .../annotations/streamsnippet/main_test.go    |   4 +-
 .../annotations/upstreamhashby/main.go        |   2 +-
 .../annotations/xforwardedprefix/main.go      |  14 +-
 .../annotations/xforwardedprefix/main_test.go |   1 +
 internal/ingress/controller/certificate.go    |   2 +-
 internal/ingress/controller/checker.go        |   2 +-
 internal/ingress/controller/checker_test.go   |  13 +-
 internal/ingress/controller/config/config.go  |  84 +++--
 internal/ingress/controller/controller.go     |  76 ++---
 .../ingress/controller/controller_test.go     |  69 ++--
 internal/ingress/controller/endpointslices.go |   6 +-
 .../ingress/controller/endpointslices_test.go |   1 +
 .../controller/ingressclass/ingressclass.go   |   6 +-
 internal/ingress/controller/nginx.go          |  65 ++--
 internal/ingress/controller/nginx_test.go     |  23 +-
 internal/ingress/controller/process/nginx.go  |   5 +-
 internal/ingress/controller/status.go         |  10 +-
 .../ingress/controller/store/backend_ssl.go   |   9 +-
 .../ingress/controller/store/endpointslice.go |   2 +-
 .../controller/store/endpointslice_test.go    |   1 -
 internal/ingress/controller/store/store.go    | 113 +++++--
 .../ingress/controller/store/store_test.go    | 178 ++++++----
 .../ingress/controller/template/configmap.go  |  38 ++-
 .../ingress/controller/template/template.go   | 309 +++++++++---------
 .../controller/template/template_test.go      |  94 +++---
 internal/ingress/controller/util.go           |   2 +
 internal/ingress/defaults/main.go             |   2 +-
 internal/ingress/errors/errors.go             |  32 +-
 internal/ingress/inspector/ingress_test.go    |   1 -
 internal/ingress/inspector/inspector.go       |   4 +-
 internal/ingress/inspector/rules.go           |   6 +-
 internal/ingress/inspector/rules_test.go      |   1 -
 internal/ingress/inspector/service.go         |   2 +-
 .../ingress/metric/collectors/admission.go    |   6 +-
 .../ingress/metric/collectors/controller.go   |  66 ++--
 .../metric/collectors/controller_test.go      |  20 +-
 .../ingress/metric/collectors/nginx_status.go |   1 -
 .../metric/collectors/nginx_status_test.go    |   2 +-
 internal/ingress/metric/collectors/process.go |  23 +-
 .../ingress/metric/collectors/process_test.go |   9 +-
 internal/ingress/metric/collectors/socket.go  |  73 ++---
 .../ingress/metric/collectors/socket_test.go  |   7 +-
 .../ingress/metric/collectors/testutils.go    |   6 +-
 internal/ingress/metric/dummy.go              |  40 +--
 internal/ingress/metric/main.go               |  14 +-
 internal/ingress/status/status.go             |  34 +-
 internal/ingress/status/status_test.go        | 287 ++++++++--------
 internal/k8s/main.go                          |   7 +-
 internal/k8s/main_test.go                     |  20 +-
 internal/net/dns/dns.go                       |   2 +-
 internal/net/ipnet_test.go                    |   8 +-
 internal/net/net.go                           |  16 +-
 internal/net/net_test.go                      |   2 +-
 internal/net/ssl/ssl.go                       |  53 +--
 internal/net/ssl/ssl_test.go                  |  37 +--
 internal/nginx/main.go                        |  17 +-
 internal/nginx/maxmind.go                     |  10 +-
 internal/task/queue.go                        |  11 +-
 pkg/apis/ingress/sslcert.go                   |   6 +-
 pkg/apis/ingress/types.go                     |   7 +-
 pkg/apis/ingress/types_equals.go              |  62 ++--
 pkg/apis/ingress/types_equals_test.go         |  25 +-
 pkg/flags/flags.go                            |  10 +-
 pkg/flags/flags_test.go                       |   7 +-
 pkg/metrics/handler.go                        |   3 +-
 pkg/tcpproxy/tcp.go                           |  12 +-
 pkg/util/file/file_watcher.go                 |   6 +-
 pkg/util/file/filesystem.go                   |   2 +-
 pkg/util/file/structure.go                    |  10 +-
 pkg/util/ingress/ingress.go                   |  28 +-
 pkg/util/process/controller.go                |   4 +-
 pkg/util/process/sigterm.go                   |   2 +-
 pkg/util/process/sigterm_test.go              |   4 +-
 pkg/util/runtime/cpu_notlinux.go              |   2 +-
 pkg/util/sets/match_test.go                   |  27 +-
 rootfs/etc/nginx/template/nginx.tmpl          |   6 +-
 test/e2e/admission/admission.go               |  17 +-
 test/e2e/annotations/affinity.go              |  86 ++---
 test/e2e/annotations/affinitymode.go          |   8 +-
 test/e2e/annotations/alias.go                 |  12 +-
 test/e2e/annotations/auth.go                  |  84 ++---
 test/e2e/annotations/authtls.go               |  22 +-
 test/e2e/annotations/backendprotocol.go       |  12 +-
 test/e2e/annotations/canary.go                |  53 ++-
 test/e2e/annotations/clientbodybuffersize.go  |  14 +-
 test/e2e/annotations/cors.go                  |  57 ++--
 test/e2e/annotations/customhttperrors.go      |   2 +-
 test/e2e/annotations/default_backend.go       |   6 +-
 test/e2e/annotations/fromtowwwredirect.go     |   4 +-
 test/e2e/annotations/globalratelimit.go       |   2 +-
 test/e2e/annotations/grpc.go                  |  34 +-
 .../annotations/modsecurity/modsecurity.go    |  65 ++--
 test/e2e/annotations/proxy.go                 |   9 +-
 test/e2e/annotations/proxyssl.go              |  15 +-
 test/e2e/annotations/rewrite.go               |  16 +-
 test/e2e/annotations/serversnippet.go         |   1 -
 test/e2e/annotations/serviceupstream.go       |  11 +-
 test/e2e/annotations/upstreamhashby.go        |   7 +-
 test/e2e/dbg/main.go                          |   4 +-
 test/e2e/e2e.go                               |   1 -
 test/e2e/e2e_test.go                          |   1 +
 test/e2e/endpointslices/longname.go           |   1 -
 test/e2e/endpointslices/topology.go           |   3 +-
 test/e2e/framework/deployment.go              |  15 +-
 test/e2e/framework/exec.go                    |  12 +-
 test/e2e/framework/fastcgi_helloserver.go     |   3 +-
 test/e2e/framework/framework.go               |  41 +--
 test/e2e/framework/grpc_fortune_teller.go     |   3 +-
 test/e2e/framework/healthz.go                 |   2 +-
 test/e2e/framework/httpexpect/match.go        |   2 +-
 test/e2e/framework/httpexpect/object.go       |  17 +-
 test/e2e/framework/httpexpect/request.go      |   3 +-
 test/e2e/framework/k8s.go                     |  55 ++--
 test/e2e/framework/metrics.go                 |   3 +-
 test/e2e/framework/ssl.go                     |  10 +-
 test/e2e/framework/test_context.go            |   3 +-
 test/e2e/framework/util.go                    |  40 ++-
 test/e2e/gracefulshutdown/grace_period.go     |   2 -
 test/e2e/ingress/pathtype_exact.go            |   3 +-
 test/e2e/ingress/pathtype_mixed.go            |   3 +-
 test/e2e/leaks/lua_ssl.go                     |   4 +-
 test/e2e/loadbalance/configmap.go             |   4 +-
 test/e2e/loadbalance/ewma.go                  |   9 +-
 test/e2e/loadbalance/round_robin.go           |   6 +-
 test/e2e/lua/dynamic_certificates.go          |   2 -
 test/e2e/lua/dynamic_configuration.go         |  19 +-
 test/e2e/nginx/nginx.go                       |   5 -
 test/e2e/security/request_smuggling.go        |   8 +-
 test/e2e/servicebackend/service_backend.go    |  91 +++---
 .../servicebackend/service_externalname.go    |  22 +-
 .../e2e/servicebackend/service_nil_backend.go |   1 -
 test/e2e/settings/access_log.go               |   4 -
 test/e2e/settings/badannotationvalues.go      |   2 -
 test/e2e/settings/default_ssl_certificate.go  |   6 +-
 test/e2e/settings/disable_catch_all.go        |   8 +-
 .../settings/disable_service_external_name.go |   1 -
 test/e2e/settings/disable_sync_events.go      |   3 +-
 test/e2e/settings/forwarded_headers.go        |   6 +-
 test/e2e/settings/geoip2.go                   |   9 +-
 test/e2e/settings/global_external_auth.go     |  22 +-
 test/e2e/settings/global_options.go           |   1 -
 test/e2e/settings/hash-size.go                |   9 -
 test/e2e/settings/ingress_class.go            |  24 +-
 test/e2e/settings/keep-alive.go               |  14 +-
 test/e2e/settings/listen_nondefault_ports.go  |   5 -
 test/e2e/settings/log-format.go               |   2 -
 test/e2e/settings/namespace_selector.go       |  16 +-
 test/e2e/settings/no_auth_locations.go        |   8 +-
 .../e2e/settings/no_tls_redirect_locations.go |   1 -
 test/e2e/settings/ocsp/ocsp.go                |   5 +-
 test/e2e/settings/opentelemetry.go            |  15 +-
 test/e2e/settings/opentracing.go              |  60 ++--
 .../settings/pod_security_policy_volumes.go   |   1 -
 test/e2e/settings/proxy_connect_timeout.go    |   2 +-
 test/e2e/settings/proxy_protocol.go           |  19 +-
 test/e2e/settings/proxy_read_timeout.go       |   2 +-
 test/e2e/settings/proxy_send_timeout.go       |   2 +-
 test/e2e/settings/ssl_passthrough.go          |  11 +-
 test/e2e/settings/tls.go                      |   5 +-
 test/e2e/settings/validations/validations.go  |   6 +-
 test/e2e/ssl/secret_update.go                 |   2 +-
 test/e2e/status/update.go                     |   4 +-
 test/e2e/tcpudp/tcp.go                        |  12 +-
 253 files changed, 2434 insertions(+), 2113 deletions(-)

diff --git a/cmd/dataplane/main.go b/cmd/dataplane/main.go
index a1c4cbcc6..65f898df6 100644
--- a/cmd/dataplane/main.go
+++ b/cmd/dataplane/main.go
@@ -18,11 +18,12 @@ package main
 
 import (
 	"fmt"
-	"github.com/prometheus/client_golang/prometheus"
-	"github.com/prometheus/client_golang/prometheus/collectors"
 	"net/http"
 	"os"
 
+	"github.com/prometheus/client_golang/prometheus"
+	"github.com/prometheus/client_golang/prometheus/collectors"
+
 	"k8s.io/klog/v2"
 
 	"k8s.io/ingress-nginx/internal/ingress/controller"
diff --git a/cmd/dbg/main.go b/cmd/dbg/main.go
index 41a3c2772..b63bcf5fe 100644
--- a/cmd/dbg/main.go
+++ b/cmd/dbg/main.go
@@ -114,7 +114,6 @@ func main() {
 		fmt.Println(err)
 		os.Exit(1)
 	}
-
 }
 
 func backendsAll() {
@@ -155,10 +154,16 @@ func backendsList() {
 		fmt.Println(unmarshalErr)
 		return
 	}
-	backends := f.([]interface{})
+	backends, ok := f.([]interface{})
+	if !ok {
+		fmt.Printf("unexpected type: %T", f)
+	}
 
 	for _, backendi := range backends {
-		backend := backendi.(map[string]interface{})
+		backend, ok := backendi.(map[string]interface{})
+		if !ok {
+			fmt.Printf("unexpected type: %T", backendi)
+		}
 		fmt.Println(backend["name"].(string))
 	}
 }
@@ -180,12 +185,22 @@ func backendsGet(name string) {
 		fmt.Println(unmarshalErr)
 		return
 	}
-	backends := f.([]interface{})
+	backends, ok := f.([]interface{})
+	if !ok {
+		fmt.Printf("unexpected type: %T", f)
+	}
 
 	for _, backendi := range backends {
-		backend := backendi.(map[string]interface{})
+		backend, ok := backendi.(map[string]interface{})
+		if !ok {
+			fmt.Printf("unexpected type: %T", backendi)
+		}
 		if backend["name"].(string) == name {
-			printed, _ := json.MarshalIndent(backend, "", "  ")
+			printed, err := json.MarshalIndent(backend, "", "  ")
+			if err != nil {
+				fmt.Println(err)
+				return
+			}
 			fmt.Println(string(printed))
 			return
 		}
@@ -213,18 +228,7 @@ func certGet(host string) {
 }
 
 func general() {
-	//TODO: refactor to obtain ingress-nginx pod count from the api server
-	/*
-		statusCode, body, requestErr := nginx.NewGetStatusRequest(generalPath)
-		if requestErr != nil {
-			fmt.Println(requestErr)
-			return
-		}
-		if statusCode != 200 {
-			fmt.Printf("Nginx returned code %v\n", statusCode)
-			return
-		}
-	*/
+	// TODO: refactor to obtain ingress-nginx pod count from the api server
 
 	var prettyBuffer bytes.Buffer
 	indentErr := json.Indent(&prettyBuffer, []byte("{}"), "", "  ")
diff --git a/cmd/nginx/logger.go b/cmd/nginx/logger.go
index 13ec095fa..323085c83 100644
--- a/cmd/nginx/logger.go
+++ b/cmd/nginx/logger.go
@@ -47,5 +47,4 @@ func logger(address string) {
 
 	server.Wait()
 	klog.Infof("Stopping logger")
-
 }
diff --git a/cmd/nginx/main.go b/cmd/nginx/main.go
index 508e940e1..1d30091ef 100644
--- a/cmd/nginx/main.go
+++ b/cmd/nginx/main.go
@@ -153,7 +153,6 @@ func main() {
 	if errExists == nil {
 		conf.IsChroot = true
 		go logger(conf.InternalLoggerAddress)
-
 	}
 
 	go metrics.StartHTTPServer(conf.HealthCheckHost, conf.ListenPorts.Health, mux)
@@ -282,10 +281,10 @@ func checkService(key string, kubeClient *kubernetes.Clientset) error {
 		}
 
 		if errors.IsNotFound(err) {
-			return fmt.Errorf("No service with name %v found in namespace %v: %v", name, ns, err)
+			return fmt.Errorf("no service with name %v found in namespace %v: %v", name, ns, err)
 		}
 
-		return fmt.Errorf("Unexpected error searching service with name %v in namespace %v: %v", name, ns, err)
+		return fmt.Errorf("unexpected error searching service with name %v in namespace %v: %v", name, ns, err)
 	}
 
 	return nil
diff --git a/cmd/nginx/main_test.go b/cmd/nginx/main_test.go
index f57c02c5e..13f1e9eec 100644
--- a/cmd/nginx/main_test.go
+++ b/cmd/nginx/main_test.go
@@ -47,7 +47,7 @@ func TestCreateApiserverClient(t *testing.T) {
 func init() {
 	// the default value of nginx.TemplatePath assumes the template exists in
 	// the root filesystem and not in the rootfs directory
-	path, err := filepath.Abs(filepath.Join("../../rootfs/", nginx.TemplatePath))
+	path, err := filepath.Abs(filepath.Join("..", "..", "rootfs", nginx.TemplatePath))
 	if err == nil {
 		nginx.TemplatePath = path
 	}
@@ -87,14 +87,14 @@ func TestHandleSigterm(t *testing.T) {
 
 	ingressflags.ResetForTesting(func() { t.Fatal("bad parse") })
 
-	os.Setenv("POD_NAME", podName)
-	os.Setenv("POD_NAMESPACE", namespace)
+	t.Setenv("POD_NAME", podName)
+	t.Setenv("POD_NAMESPACE", namespace)
 
 	oldArgs := os.Args
 
 	defer func() {
-		os.Setenv("POD_NAME", "")
-		os.Setenv("POD_NAMESPACE", "")
+		t.Setenv("POD_NAME", "")
+		t.Setenv("POD_NAMESPACE", "")
 		os.Args = oldArgs
 	}()
 
diff --git a/cmd/plugin/commands/backends/backends.go b/cmd/plugin/commands/backends/backends.go
index afc98e4d6..ff44fd9c2 100644
--- a/cmd/plugin/commands/backends/backends.go
+++ b/cmd/plugin/commands/backends/backends.go
@@ -63,13 +63,14 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	return cmd
 }
 
-func backends(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, container string, backend string, onlyList bool) error {
+func backends(flags *genericclioptions.ConfigFlags, podName, deployment, selector, container, backend string, onlyList bool) error {
 	var command []string
-	if onlyList {
+	switch {
+	case onlyList:
 		command = []string{"/dbg", "backends", "list"}
-	} else if backend != "" {
+	case backend != "":
 		command = []string{"/dbg", "backends", "get", backend}
-	} else {
+	default:
 		command = []string{"/dbg", "backends", "all"}
 	}
 
diff --git a/cmd/plugin/commands/certs/certs.go b/cmd/plugin/commands/certs/certs.go
index 1f08b5216..ee27cf1b1 100644
--- a/cmd/plugin/commands/certs/certs.go
+++ b/cmd/plugin/commands/certs/certs.go
@@ -59,7 +59,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	return cmd
 }
 
-func certs(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, container string, host string) error {
+func certs(flags *genericclioptions.ConfigFlags, podName, deployment, selector, container, host string) error {
 	command := []string{"/dbg", "certs", "get", host}
 
 	pod, err := request.ChoosePod(flags, podName, deployment, selector)
diff --git a/cmd/plugin/commands/conf/conf.go b/cmd/plugin/commands/conf/conf.go
index a7f03a062..090fb40bb 100644
--- a/cmd/plugin/commands/conf/conf.go
+++ b/cmd/plugin/commands/conf/conf.go
@@ -55,7 +55,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	return cmd
 }
 
-func conf(flags *genericclioptions.ConfigFlags, host string, podName string, deployment string, selector string, container string) error {
+func conf(flags *genericclioptions.ConfigFlags, host, podName, deployment, selector, container string) error {
 	pod, err := request.ChoosePod(flags, podName, deployment, selector)
 	if err != nil {
 		return err
diff --git a/cmd/plugin/commands/exec/exec.go b/cmd/plugin/commands/exec/exec.go
index f06aaeb23..8e853c534 100644
--- a/cmd/plugin/commands/exec/exec.go
+++ b/cmd/plugin/commands/exec/exec.go
@@ -55,7 +55,7 @@ type execFlags struct {
 	Stdin bool
 }
 
-func exec(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, container string, cmd []string, opts execFlags) error {
+func exec(flags *genericclioptions.ConfigFlags, podName, deployment, selector, container string, cmd []string, opts execFlags) error {
 	pod, err := request.ChoosePod(flags, podName, deployment, selector)
 	if err != nil {
 		return err
diff --git a/cmd/plugin/commands/general/general.go b/cmd/plugin/commands/general/general.go
index fa6c1301f..cea403562 100644
--- a/cmd/plugin/commands/general/general.go
+++ b/cmd/plugin/commands/general/general.go
@@ -47,7 +47,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	return cmd
 }
 
-func general(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, container string) error {
+func general(flags *genericclioptions.ConfigFlags, podName, deployment, selector, container string) error {
 	pod, err := request.ChoosePod(flags, podName, deployment, selector)
 	if err != nil {
 		return err
diff --git a/cmd/plugin/commands/ingresses/ingresses.go b/cmd/plugin/commands/ingresses/ingresses.go
index dff967103..8a25418db 100644
--- a/cmd/plugin/commands/ingresses/ingresses.go
+++ b/cmd/plugin/commands/ingresses/ingresses.go
@@ -74,9 +74,9 @@ func ingresses(flags *genericclioptions.ConfigFlags, host string, allNamespaces
 
 	if host != "" {
 		rowsWithHost := make([]ingressRow, 0)
-		for _, row := range rows {
-			if row.Host == host {
-				rowsWithHost = append(rowsWithHost, row)
+		for i := range rows {
+			if rows[i].Host == host {
+				rowsWithHost = append(rowsWithHost, rows[i])
 			}
 		}
 		rows = rowsWithHost
@@ -91,7 +91,8 @@ func ingresses(flags *genericclioptions.ConfigFlags, host string, allNamespaces
 		fmt.Fprintln(printer, "INGRESS NAME\tHOST+PATH\tADDRESSES\tTLS\tSERVICE\tSERVICE PORT\tENDPOINTS")
 	}
 
-	for _, row := range rows {
+	for i := range rows {
+		row := &rows[i]
 		var tlsMsg string
 		if row.TLS {
 			tlsMsg = "YES"
@@ -134,8 +135,8 @@ type ingressRow struct {
 func getIngressRows(ingresses *[]networking.Ingress) []ingressRow {
 	rows := make([]ingressRow, 0)
 
-	for _, ing := range *ingresses {
-
+	for i := range *ingresses {
+		ing := &(*ingresses)[i]
 		address := ""
 		for _, lbIng := range ing.Status.LoadBalancer.Ingress {
 			if len(lbIng.IP) > 0 {
@@ -182,7 +183,7 @@ func getIngressRows(ingresses *[]networking.Ingress) []ingressRow {
 		for _, rule := range ing.Spec.Rules {
 			_, hasTLS := tlsHosts[rule.Host]
 
-			//Handle ingress with no paths
+			// Handle ingress with no paths
 			if rule.HTTP == nil {
 				row := ingressRow{
 					Namespace:   ing.Namespace,
diff --git a/cmd/plugin/commands/ingresses/ingresses_test.go b/cmd/plugin/commands/ingresses/ingresses_test.go
index 6a8d8837f..7a90efe46 100644
--- a/cmd/plugin/commands/ingresses/ingresses_test.go
+++ b/cmd/plugin/commands/ingresses/ingresses_test.go
@@ -24,7 +24,6 @@ import (
 )
 
 func TestGetIngressInformation(t *testing.T) {
-
 	testcases := map[string]struct {
 		ServiceBackend *networking.IngressServiceBackend
 		wantName       string
diff --git a/cmd/plugin/commands/lint/main.go b/cmd/plugin/commands/lint/main.go
index 2daf8eb87..847fe86c9 100644
--- a/cmd/plugin/commands/lint/main.go
+++ b/cmd/plugin/commands/lint/main.go
@@ -111,11 +111,13 @@ type lintOptions struct {
 }
 
 func (opts *lintOptions) Validate() error {
+	//nolint:dogsled // Ignore 3 blank identifiers
 	_, _, _, err := util.ParseVersionString(opts.versionFrom)
 	if err != nil {
 		return err
 	}
 
+	//nolint:dogsled // Ignore 3 blank identifiers
 	_, _, _, err = util.ParseVersionString(opts.versionTo)
 	if err != nil {
 		return err
@@ -131,9 +133,9 @@ type lint interface {
 	Version() string
 }
 
-func checkObjectArray(lints []lint, objects []kmeta.Object, opts lintOptions) {
+func checkObjectArray(allLints []lint, objects []kmeta.Object, opts lintOptions) {
 	usedLints := make([]lint, 0)
-	for _, lint := range lints {
+	for _, lint := range allLints {
 		lintVersion := lint.Version()
 		if lint.Version() == "" {
 			lintVersion = "0.0.0"
@@ -189,7 +191,7 @@ func ingresses(opts lintOptions) error {
 		return err
 	}
 
-	var iLints []lints.IngressLint = lints.GetIngressLints()
+	iLints := lints.GetIngressLints()
 	genericLints := make([]lint, len(iLints))
 	for i := range iLints {
 		genericLints[i] = iLints[i]
@@ -216,7 +218,7 @@ func deployments(opts lintOptions) error {
 		return err
 	}
 
-	var iLints []lints.DeploymentLint = lints.GetDeploymentLints()
+	iLints := lints.GetDeploymentLints()
 	genericLints := make([]lint, len(iLints))
 	for i := range iLints {
 		genericLints[i] = iLints[i]
diff --git a/cmd/plugin/commands/logs/logs.go b/cmd/plugin/commands/logs/logs.go
index 56f4fc640..22068d469 100644
--- a/cmd/plugin/commands/logs/logs.go
+++ b/cmd/plugin/commands/logs/logs.go
@@ -95,7 +95,7 @@ func (o *logsFlags) toStrings() []string {
 	return r
 }
 
-func logs(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, container string, opts logsFlags) error {
+func logs(flags *genericclioptions.ConfigFlags, podName, deployment, selector, container string, opts logsFlags) error {
 	pod, err := request.ChoosePod(flags, podName, deployment, selector)
 	if err != nil {
 		return err
diff --git a/cmd/plugin/commands/ssh/ssh.go b/cmd/plugin/commands/ssh/ssh.go
index fe1b3e9fe..a4762d781 100644
--- a/cmd/plugin/commands/ssh/ssh.go
+++ b/cmd/plugin/commands/ssh/ssh.go
@@ -45,7 +45,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	return cmd
 }
 
-func ssh(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string, container string) error {
+func ssh(flags *genericclioptions.ConfigFlags, podName, deployment, selector, container string) error {
 	pod, err := request.ChoosePod(flags, podName, deployment, selector)
 	if err != nil {
 		return err
diff --git a/cmd/plugin/kubectl/kubectl.go b/cmd/plugin/kubectl/kubectl.go
index 1171e9218..cb33243fc 100644
--- a/cmd/plugin/kubectl/kubectl.go
+++ b/cmd/plugin/kubectl/kubectl.go
@@ -38,11 +38,11 @@ func PodExecString(flags *genericclioptions.ConfigFlags, pod *apiv1.Pod, contain
 
 // ExecToString runs a kubectl subcommand and returns stdout as a string
 func ExecToString(flags *genericclioptions.ConfigFlags, args []string) (string, error) {
-	kArgs := getKubectlConfigFlags(flags)
-	kArgs = append(kArgs, args...)
+	kubectlArgs := getKubectlConfigFlags(flags)
+	kubectlArgs = append(kubectlArgs, args...)
 
 	buf := bytes.NewBuffer(make([]byte, 0))
-	err := execToWriter(append([]string{"kubectl"}, kArgs...), buf)
+	err := execToWriter(append([]string{"kubectl"}, kubectlArgs...), buf)
 	if err != nil {
 		return "", err
 	}
@@ -51,9 +51,9 @@ func ExecToString(flags *genericclioptions.ConfigFlags, args []string) (string,
 
 // Exec replaces the current process with a kubectl invocation
 func Exec(flags *genericclioptions.ConfigFlags, args []string) error {
-	kArgs := getKubectlConfigFlags(flags)
-	kArgs = append(kArgs, args...)
-	return execCommand(append([]string{"kubectl"}, kArgs...))
+	kubectlArgs := getKubectlConfigFlags(flags)
+	kubectlArgs = append(kubectlArgs, args...)
+	return execCommand(append([]string{"kubectl"}, kubectlArgs...))
 }
 
 // Replaces the currently running process with the given command
@@ -70,6 +70,7 @@ func execCommand(args []string) error {
 
 // Runs a command and returns stdout
 func execToWriter(args []string, writer io.Writer) error {
+	//nolint:gosec // Ignore G204 error
 	cmd := exec.Command(args[0], args[1:]...)
 
 	op, err := cmd.StdoutPipe()
@@ -78,7 +79,7 @@ func execToWriter(args []string, writer io.Writer) error {
 	}
 
 	go func() {
-		io.Copy(writer, op) //nolint:errcheck
+		io.Copy(writer, op) //nolint:errcheck // Ignore the error
 	}()
 	err = cmd.Run()
 	if err != nil {
@@ -106,7 +107,6 @@ func getKubectlConfigFlags(flags *genericclioptions.ConfigFlags) []string {
 	appendStringFlag(o, flags.Password, "password")
 	appendStringFlag(o, flags.ClusterName, "cluster")
 	appendStringFlag(o, flags.AuthInfoName, "user")
-	//appendStringFlag(o, flags.Namespace, "namespace")
 	appendStringFlag(o, flags.Context, "context")
 	appendStringFlag(o, flags.APIServer, "server")
 	appendBoolFlag(o, flags.Insecure, "insecure-skip-tls-verify")
@@ -128,7 +128,7 @@ func appendBoolFlag(out *[]string, in *bool, flag string) {
 	}
 }
 
-func appendStringArrayFlag(out *[]string, in *[]string, flag string) {
+func appendStringArrayFlag(out, in *[]string, flag string) {
 	if in != nil && len(*in) > 0 {
 		*out = append(*out, fmt.Sprintf("--%v=%v'", flag, strings.Join(*in, ",")))
 	}
diff --git a/cmd/plugin/lints/deployment.go b/cmd/plugin/lints/deployment.go
index a1c473f1e..ce1712284 100644
--- a/cmd/plugin/lints/deployment.go
+++ b/cmd/plugin/lints/deployment.go
@@ -35,7 +35,10 @@ type DeploymentLint struct {
 
 // Check returns true if the lint detects an issue
 func (lint DeploymentLint) Check(obj kmeta.Object) bool {
-	cmp := obj.(*v1.Deployment)
+	cmp, ok := obj.(*v1.Deployment)
+	if !ok {
+		util.PrintError(fmt.Errorf("unexpected type: %T", obj))
+	}
 	return lint.f(*cmp)
 }
 
@@ -72,11 +75,11 @@ func removedFlag(flag string, issueNumber int, version string) DeploymentLint {
 		issue:   issueNumber,
 		version: version,
 		f: func(dep v1.Deployment) bool {
-			if !isIngressNginxDeployment(dep) {
+			if !isIngressNginxDeployment(&dep) {
 				return false
 			}
 
-			args := getNginxArgs(dep)
+			args := getNginxArgs(&dep)
 			for _, arg := range args {
 				if strings.HasPrefix(arg, fmt.Sprintf("--%v", flag)) {
 					return true
@@ -88,8 +91,9 @@ func removedFlag(flag string, issueNumber int, version string) DeploymentLint {
 	}
 }
 
-func getNginxArgs(dep v1.Deployment) []string {
-	for _, container := range dep.Spec.Template.Spec.Containers {
+func getNginxArgs(dep *v1.Deployment) []string {
+	for i := range dep.Spec.Template.Spec.Containers {
+		container := &dep.Spec.Template.Spec.Containers[i]
 		if len(container.Args) > 0 && container.Args[0] == "/nginx-ingress-controller" {
 			return container.Args
 		}
@@ -97,10 +101,10 @@ func getNginxArgs(dep v1.Deployment) []string {
 	return make([]string, 0)
 }
 
-func isIngressNginxDeployment(dep v1.Deployment) bool {
+func isIngressNginxDeployment(dep *v1.Deployment) bool {
 	containers := dep.Spec.Template.Spec.Containers
-	for _, container := range containers {
-		if len(container.Args) > 0 && container.Args[0] == "/nginx-ingress-controller" {
+	for i := range containers {
+		if len(containers[i].Args) > 0 && containers[i].Args[0] == "/nginx-ingress-controller" {
 			return true
 		}
 	}
diff --git a/cmd/plugin/lints/ingress.go b/cmd/plugin/lints/ingress.go
index ea08bfd8b..d5ad42e2c 100644
--- a/cmd/plugin/lints/ingress.go
+++ b/cmd/plugin/lints/ingress.go
@@ -30,13 +30,16 @@ type IngressLint struct {
 	message string
 	issue   int
 	version string
-	f       func(ing networking.Ingress) bool
+	f       func(ing *networking.Ingress) bool
 }
 
 // Check returns true if the lint detects an issue
 func (lint IngressLint) Check(obj kmeta.Object) bool {
-	ing := obj.(*networking.Ingress)
-	return lint.f(*ing)
+	ing, ok := obj.(*networking.Ingress)
+	if !ok {
+		util.PrintError(fmt.Errorf("unexpected type: %T", obj))
+	}
+	return lint.f(ing)
 }
 
 // Message is a description of the lint
@@ -94,7 +97,7 @@ func GetIngressLints() []IngressLint {
 	}
 }
 
-func xForwardedPrefixIsBool(ing networking.Ingress) bool {
+func xForwardedPrefixIsBool(ing *networking.Ingress) bool {
 	for name, val := range ing.Annotations {
 		if strings.HasSuffix(name, "/x-forwarded-prefix") && (val == "true" || val == "false") {
 			return true
@@ -103,7 +106,7 @@ func xForwardedPrefixIsBool(ing networking.Ingress) bool {
 	return false
 }
 
-func annotationPrefixIsNginxCom(ing networking.Ingress) bool {
+func annotationPrefixIsNginxCom(ing *networking.Ingress) bool {
 	for name := range ing.Annotations {
 		if strings.HasPrefix(name, "nginx.com/") {
 			return true
@@ -112,7 +115,7 @@ func annotationPrefixIsNginxCom(ing networking.Ingress) bool {
 	return false
 }
 
-func annotationPrefixIsNginxOrg(ing networking.Ingress) bool {
+func annotationPrefixIsNginxOrg(ing *networking.Ingress) bool {
 	for name := range ing.Annotations {
 		if strings.HasPrefix(name, "nginx.org/") {
 			return true
@@ -121,7 +124,7 @@ func annotationPrefixIsNginxOrg(ing networking.Ingress) bool {
 	return false
 }
 
-func rewriteTargetWithoutCaptureGroup(ing networking.Ingress) bool {
+func rewriteTargetWithoutCaptureGroup(ing *networking.Ingress) bool {
 	for name, val := range ing.Annotations {
 		if strings.HasSuffix(name, "/rewrite-target") && !strings.Contains(val, "$1") {
 			return true
@@ -135,7 +138,7 @@ func removedAnnotation(annotationName string, issueNumber int, version string) I
 		message: fmt.Sprintf("Contains the removed %v annotation.", annotationName),
 		issue:   issueNumber,
 		version: version,
-		f: func(ing networking.Ingress) bool {
+		f: func(ing *networking.Ingress) bool {
 			for annotation := range ing.Annotations {
 				if strings.HasSuffix(annotation, "/"+annotationName) {
 					return true
@@ -146,7 +149,7 @@ func removedAnnotation(annotationName string, issueNumber int, version string) I
 	}
 }
 
-func satisfyDirective(ing networking.Ingress) bool {
+func satisfyDirective(ing *networking.Ingress) bool {
 	for name, val := range ing.Annotations {
 		if strings.HasSuffix(name, "/configuration-snippet") {
 			return strings.Contains(val, "satisfy")
diff --git a/cmd/plugin/main.go b/cmd/plugin/main.go
index f3a809715..e9a8ea59a 100644
--- a/cmd/plugin/main.go
+++ b/cmd/plugin/main.go
@@ -24,7 +24,7 @@ import (
 
 	"k8s.io/cli-runtime/pkg/genericclioptions"
 
-	//Just importing this is supposed to allow cloud authentication
+	// Just importing this is supposed to allow cloud authentication
 	// eg GCP, AWS, Azure ...
 	_ "k8s.io/client-go/plugin/pkg/client/auth"
 
diff --git a/cmd/plugin/request/request.go b/cmd/plugin/request/request.go
index fd47564a9..55df85d5e 100644
--- a/cmd/plugin/request/request.go
+++ b/cmd/plugin/request/request.go
@@ -35,7 +35,7 @@ import (
 )
 
 // ChoosePod finds a pod either by deployment or by name
-func ChoosePod(flags *genericclioptions.ConfigFlags, podName string, deployment string, selector string) (apiv1.Pod, error) {
+func ChoosePod(flags *genericclioptions.ConfigFlags, podName, deployment, selector string) (apiv1.Pod, error) {
 	if podName != "" {
 		return GetNamedPod(flags, podName)
 	}
@@ -54,9 +54,9 @@ func GetNamedPod(flags *genericclioptions.ConfigFlags, name string) (apiv1.Pod,
 		return apiv1.Pod{}, err
 	}
 
-	for _, pod := range allPods {
-		if pod.Name == name {
-			return pod, nil
+	for i := range allPods {
+		if allPods[i].Name == name {
+			return allPods[i], nil
 		}
 	}
 
@@ -132,7 +132,7 @@ func GetIngressDefinitions(flags *genericclioptions.ConfigFlags, namespace strin
 }
 
 // GetNumEndpoints counts the number of endpointslices adresses for the service with the given name
-func GetNumEndpoints(flags *genericclioptions.ConfigFlags, namespace string, serviceName string) (*int, error) {
+func GetNumEndpoints(flags *genericclioptions.ConfigFlags, namespace, serviceName string) (*int, error) {
 	epss, err := GetEndpointSlicesByName(flags, namespace, serviceName)
 	if err != nil {
 		return nil, err
@@ -143,25 +143,26 @@ func GetNumEndpoints(flags *genericclioptions.ConfigFlags, namespace string, ser
 	}
 
 	ret := 0
-	for _, eps := range epss {
-		for _, ep := range eps.Endpoints {
-			ret += len(ep.Addresses)
+	for i := range epss {
+		eps := &epss[i]
+		for j := range eps.Endpoints {
+			ret += len(eps.Endpoints[j].Addresses)
 		}
 	}
 	return &ret, nil
 }
 
 // GetEndpointSlicesByName returns the endpointSlices for the service with the given name
-func GetEndpointSlicesByName(flags *genericclioptions.ConfigFlags, namespace string, name string) ([]discoveryv1.EndpointSlice, error) {
+func GetEndpointSlicesByName(flags *genericclioptions.ConfigFlags, namespace, name string) ([]discoveryv1.EndpointSlice, error) {
 	allEndpointsSlices, err := getEndpointSlices(flags, namespace)
 	if err != nil {
 		return nil, err
 	}
 	var eps []discoveryv1.EndpointSlice
-	for _, slice := range allEndpointsSlices {
-		if svcName, ok := slice.ObjectMeta.GetLabels()[discoveryv1.LabelServiceName]; ok {
+	for i := range allEndpointsSlices {
+		if svcName, ok := allEndpointsSlices[i].ObjectMeta.GetLabels()[discoveryv1.LabelServiceName]; ok {
 			if svcName == name {
-				eps = append(eps, slice)
+				eps = append(eps, allEndpointsSlices[i])
 			}
 		}
 	}
@@ -182,7 +183,7 @@ func getEndpointSlices(flags *genericclioptions.ConfigFlags, namespace string) (
 		tryAllNamespacesEndpointSlicesCache(flags)
 	}
 
-	cachedEndpointSlices = tryFilteringEndpointSlicesFromAllNamespacesCache(flags, namespace)
+	cachedEndpointSlices = tryFilteringEndpointSlicesFromAllNamespacesCache(namespace)
 
 	if cachedEndpointSlices != nil {
 		return *cachedEndpointSlices, nil
@@ -217,13 +218,13 @@ func tryAllNamespacesEndpointSlicesCache(flags *genericclioptions.ConfigFlags) {
 	}
 }
 
-func tryFilteringEndpointSlicesFromAllNamespacesCache(flags *genericclioptions.ConfigFlags, namespace string) *[]discoveryv1.EndpointSlice {
+func tryFilteringEndpointSlicesFromAllNamespacesCache(namespace string) *[]discoveryv1.EndpointSlice {
 	allEndpointSlices := endpointSlicesCache[""]
 	if allEndpointSlices != nil {
 		endpointSlices := make([]discoveryv1.EndpointSlice, 0)
-		for _, slice := range *allEndpointSlices {
-			if slice.Namespace == namespace {
-				endpointSlices = append(endpointSlices, slice)
+		for i := range *allEndpointSlices {
+			if (*allEndpointSlices)[i].Namespace == namespace {
+				endpointSlices = append(endpointSlices, (*allEndpointSlices)[i])
 			}
 		}
 		endpointSlicesCache[namespace] = &endpointSlices
@@ -242,9 +243,9 @@ func GetServiceByName(flags *genericclioptions.ConfigFlags, name string, service
 		services = &servicesArray
 	}
 
-	for _, svc := range *services {
-		if svc.Name == name {
-			return svc, nil
+	for i := range *services {
+		if (*services)[i].Name == name {
+			return (*services)[i], nil
 		}
 	}
 
@@ -288,7 +289,6 @@ func getLabeledPods(flags *genericclioptions.ConfigFlags, label string) ([]apiv1
 	pods, err := api.Pods(namespace).List(context.TODO(), metav1.ListOptions{
 		LabelSelector: label,
 	})
-
 	if err != nil {
 		return make([]apiv1.Pod, 0), err
 	}
@@ -303,9 +303,9 @@ func getDeploymentPods(flags *genericclioptions.ConfigFlags, deployment string)
 	}
 
 	ingressPods := make([]apiv1.Pod, 0)
-	for _, pod := range pods {
-		if util.PodInDeployment(pod, deployment) {
-			ingressPods = append(ingressPods, pod)
+	for i := range pods {
+		if util.PodInDeployment(&pods[i], deployment) {
+			ingressPods = append(ingressPods, pods[i])
 		}
 	}
 
@@ -331,5 +331,4 @@ func getServices(flags *genericclioptions.ConfigFlags) ([]apiv1.Service, error)
 	}
 
 	return services.Items, nil
-
 }
diff --git a/cmd/plugin/util/util.go b/cmd/plugin/util/util.go
index e1910140d..aa753689a 100644
--- a/cmd/plugin/util/util.go
+++ b/cmd/plugin/util/util.go
@@ -47,17 +47,25 @@ func PrintError(e error) {
 }
 
 // ParseVersionString returns the major, minor, and patch numbers of a version string
-func ParseVersionString(v string) (int, int, int, error) {
+func ParseVersionString(v string) (major, minor, patch int, err error) {
 	parts := versionRegex.FindStringSubmatch(v)
 
 	if len(parts) != 4 {
 		return 0, 0, 0, fmt.Errorf("could not parse %v as a version string (like 0.20.3)", v)
 	}
 
-	major, _ := strconv.Atoi(parts[1])
-	minor, _ := strconv.Atoi(parts[2])
-	patch, _ := strconv.Atoi(parts[3])
-
+	major, err = strconv.Atoi(parts[1])
+	if err != nil {
+		return 0, 0, 0, err
+	}
+	minor, err = strconv.Atoi(parts[2])
+	if err != nil {
+		return 0, 0, 0, err
+	}
+	patch, err = strconv.Atoi(parts[3])
+	if err != nil {
+		return 0, 0, 0, err
+	}
 	return major, minor, patch, nil
 }
 
@@ -90,7 +98,7 @@ func isVersionLessThan(a, b string) bool {
 
 // PodInDeployment returns whether a pod is part of a deployment with the given name
 // a pod is considered to be in {deployment} if it is owned by a replicaset with a name of format {deployment}-otherchars
-func PodInDeployment(pod apiv1.Pod, deployment string) bool {
+func PodInDeployment(pod *apiv1.Pod, deployment string) bool {
 	for _, owner := range pod.OwnerReferences {
 		if owner.Controller == nil || !*owner.Controller || owner.Kind != "ReplicaSet" {
 			continue
@@ -138,7 +146,7 @@ func AddContainerFlag(cmd *cobra.Command) *string {
 // GetNamespace takes a set of kubectl flag values and returns the namespace we should be operating in
 func GetNamespace(flags *genericclioptions.ConfigFlags) string {
 	namespace, _, err := flags.ToRawKubeConfigLoader().Namespace()
-	if err != nil || len(namespace) == 0 {
+	if err != nil || namespace == "" {
 		namespace = apiv1.NamespaceDefault
 	}
 	return namespace
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index c45b1e72c..398304c57 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -716,7 +716,7 @@ Do not try to edit it manually.
 
 ### [[Flag] watch namespace selector](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L30)
 
-- [should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L63)
+- [should ignore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L63)
 
 ### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
 
diff --git a/images/fastcgi-helloserver/rootfs/main.go b/images/fastcgi-helloserver/rootfs/main.go
index a42c9a487..710f90f2c 100644
--- a/images/fastcgi-helloserver/rootfs/main.go
+++ b/images/fastcgi-helloserver/rootfs/main.go
@@ -16,13 +16,13 @@ func hello(w http.ResponseWriter, r *http.Request) {
 	}
 
 	key := keys[0]
-	fmt.Fprintf(w, "Hello "+string(key)+"!")
+	fmt.Fprintf(w, "Hello "+key+"!")
 }
 
 func main() {
 	http.HandleFunc("/hello", hello)
 
-	l, err := net.Listen("tcp", "0.0.0.0:9000")
+	l, err := net.Listen("tcp", "0.0.0.0:9000") //nolint:gosec // Ignore the gosec error since it's a hello server
 	if err != nil {
 		panic(err)
 	}
diff --git a/images/go-grpc-greeter-server/rootfs/main.go b/images/go-grpc-greeter-server/rootfs/main.go
index 569273dfd..d7fc36208 100644
--- a/images/go-grpc-greeter-server/rootfs/main.go
+++ b/images/go-grpc-greeter-server/rootfs/main.go
@@ -41,7 +41,7 @@ type hwServer struct {
 }
 
 // SayHello implements helloworld.GreeterServer
-func (s *hwServer) SayHello(ctx context.Context, in *hwpb.HelloRequest) (*hwpb.HelloReply, error) {
+func (s *hwServer) SayHello(_ context.Context, in *hwpb.HelloRequest) (*hwpb.HelloReply, error) {
 	return &hwpb.HelloReply{Message: "Hello " + in.Name}, nil
 }
 
@@ -49,7 +49,7 @@ type ecServer struct {
 	ecpb.UnimplementedEchoServer
 }
 
-func (s *ecServer) UnaryEcho(ctx context.Context, req *ecpb.EchoRequest) (*ecpb.EchoResponse, error) {
+func (s *ecServer) UnaryEcho(_ context.Context, req *ecpb.EchoRequest) (*ecpb.EchoResponse, error) {
 	return &ecpb.EchoResponse{Message: req.Message}, nil
 }
 
diff --git a/internal/admission/controller/main.go b/internal/admission/controller/main.go
index f59bf2091..888818c89 100644
--- a/internal/admission/controller/main.go
+++ b/internal/admission/controller/main.go
@@ -42,19 +42,16 @@ type IngressAdmission struct {
 	Checker Checker
 }
 
-var (
-	ingressResource = metav1.GroupVersionKind{
-		Group:   networking.GroupName,
-		Version: "v1",
-		Kind:    "Ingress",
-	}
-)
+var ingressResource = metav1.GroupVersionKind{
+	Group:   networking.GroupName,
+	Version: "v1",
+	Kind:    "Ingress",
+}
 
 // HandleAdmission populates the admission Response
 // with Allowed=false if the Object is an ingress that would prevent nginx to reload the configuration
 // with Allowed=true otherwise
 func (ia *IngressAdmission) HandleAdmission(obj runtime.Object) (runtime.Object, error) {
-
 	review, isV1 := obj.(*admissionv1.AdmissionReview)
 	if !isV1 {
 		return nil, fmt.Errorf("request is not of type AdmissionReview v1 or v1beta1")
diff --git a/internal/admission/controller/main_test.go b/internal/admission/controller/main_test.go
index 8c42f87ef..1d223cc9e 100644
--- a/internal/admission/controller/main_test.go
+++ b/internal/admission/controller/main_test.go
@@ -33,12 +33,12 @@ type failTestChecker struct {
 	t *testing.T
 }
 
-func (ftc failTestChecker) CheckIngress(ing *networking.Ingress) error {
+func (ftc failTestChecker) CheckIngress(_ *networking.Ingress) error {
 	ftc.t.Error("checker should not be called")
 	return nil
 }
 
-func (ftc failTestChecker) CheckWarning(ing *networking.Ingress) ([]string, error) {
+func (ftc failTestChecker) CheckWarning(_ *networking.Ingress) ([]string, error) {
 	ftc.t.Error("checker should not be called")
 	return nil, nil
 }
diff --git a/internal/admission/controller/server.go b/internal/admission/controller/server.go
index 3fa70971f..7fc61bcbb 100644
--- a/internal/admission/controller/server.go
+++ b/internal/admission/controller/server.go
@@ -26,9 +26,7 @@ import (
 	"k8s.io/klog/v2"
 )
 
-var (
-	scheme = runtime.NewScheme()
-)
+var scheme = runtime.NewScheme()
 
 func init() {
 	if err := admissionv1.AddToScheme(scheme); err != nil {
diff --git a/internal/ingress/annotations/alias/main.go b/internal/ingress/annotations/alias/main.go
index 4a5e6f188..7a33e648e 100644
--- a/internal/ingress/annotations/alias/main.go
+++ b/internal/ingress/annotations/alias/main.go
@@ -72,7 +72,7 @@ func (a alias) Parse(ing *networking.Ingress) (interface{}, error) {
 	aliases := sets.NewString()
 	for _, alias := range strings.Split(val, ",") {
 		alias = strings.TrimSpace(alias)
-		if len(alias) == 0 {
+		if alias == "" {
 			continue
 		}
 
diff --git a/internal/ingress/annotations/alias/main_test.go b/internal/ingress/annotations/alias/main_test.go
index 1965f2630..f1d68c1f7 100644
--- a/internal/ingress/annotations/alias/main_test.go
+++ b/internal/ingress/annotations/alias/main_test.go
@@ -65,9 +65,9 @@ func TestParse(t *testing.T) {
 		if testCase.skipValidation {
 			parser.EnableAnnotationValidation = false
 		}
-		defer func() {
+		t.Cleanup(func() {
 			parser.EnableAnnotationValidation = true
-		}()
+		})
 		result, err := ap.Parse(ing)
 		if (err != nil) != testCase.wantErr {
 			t.Errorf("ParseAliasAnnotation() annotation: %s, error = %v, wantErr %v", testCase.annotations, err, testCase.wantErr)
diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index 5371e6eb7..38843c2db 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -86,37 +86,36 @@ type Ingress struct {
 	CorsConfig           cors.Config
 	CustomHTTPErrors     []int
 	DefaultBackend       *apiv1.Service
-	//TODO: Change this back into an error when https://github.com/imdario/mergo/issues/100 is resolved
-	FastCGI            fastcgi.Config
-	Denied             *string
-	ExternalAuth       authreq.Config
-	EnableGlobalAuth   bool
-	HTTP2PushPreload   bool
-	Opentracing        opentracing.Config
-	Opentelemetry      opentelemetry.Config
-	Proxy              proxy.Config
-	ProxySSL           proxyssl.Config
-	RateLimit          ratelimit.Config
-	GlobalRateLimit    globalratelimit.Config
-	Redirect           redirect.Config
-	Rewrite            rewrite.Config
-	Satisfy            string
-	ServerSnippet      string
-	ServiceUpstream    bool
-	SessionAffinity    sessionaffinity.Config
-	SSLPassthrough     bool
-	UsePortInRedirects bool
-	UpstreamHashBy     upstreamhashby.Config
-	LoadBalancing      string
-	UpstreamVhost      string
-	Denylist           ipdenylist.SourceRange
-	XForwardedPrefix   string
-	SSLCipher          sslcipher.Config
-	Logs               log.Config
-	ModSecurity        modsecurity.Config
-	Mirror             mirror.Config
-	StreamSnippet      string
-	Allowlist          ipallowlist.SourceRange
+	FastCGI              fastcgi.Config
+	Denied               *string
+	ExternalAuth         authreq.Config
+	EnableGlobalAuth     bool
+	HTTP2PushPreload     bool
+	Opentracing          opentracing.Config
+	Opentelemetry        opentelemetry.Config
+	Proxy                proxy.Config
+	ProxySSL             proxyssl.Config
+	RateLimit            ratelimit.Config
+	GlobalRateLimit      globalratelimit.Config
+	Redirect             redirect.Config
+	Rewrite              rewrite.Config
+	Satisfy              string
+	ServerSnippet        string
+	ServiceUpstream      bool
+	SessionAffinity      sessionaffinity.Config
+	SSLPassthrough       bool
+	UsePortInRedirects   bool
+	UpstreamHashBy       upstreamhashby.Config
+	LoadBalancing        string
+	UpstreamVhost        string
+	Denylist             ipdenylist.SourceRange
+	XForwardedPrefix     string
+	SSLCipher            sslcipher.Config
+	Logs                 log.Config
+	ModSecurity          modsecurity.Config
+	Mirror               mirror.Config
+	StreamSnippet        string
+	Allowlist            ipallowlist.SourceRange
 }
 
 // Extractor defines the annotation parsers to be used in the extraction of annotations
diff --git a/internal/ingress/annotations/annotations_test.go b/internal/ingress/annotations/annotations_test.go
index 2b2a64268..5f8128e0d 100644
--- a/internal/ingress/annotations/annotations_test.go
+++ b/internal/ingress/annotations/annotations_test.go
@@ -64,7 +64,11 @@ func (m mockCfg) GetService(name string) (*apiv1.Service, error) {
 }
 
 func (m mockCfg) GetAuthCertificate(name string) (*resolver.AuthSSLCert, error) {
-	if secret, _ := m.GetSecret(name); secret != nil {
+	secret, err := m.GetSecret(name)
+	if err != nil {
+		return nil, err
+	}
+	if secret != nil {
 		return &resolver.AuthSSLCert{
 			Secret:     name,
 			CAFileName: "/opt/ca.pem",
@@ -270,9 +274,9 @@ func TestCors(t *testing.T) {
 		if r.CorsAllowCredentials != foo.credentials {
 			t.Errorf("Returned %v but expected %v for Cors Credentials", r.CorsAllowCredentials, foo.credentials)
 		}
-
 	}
 }
+
 func TestCustomHTTPErrors(t *testing.T) {
 	ec := NewAnnotationExtractor(mockCfg{})
 	ing := buildIngress()
diff --git a/internal/ingress/annotations/auth/main.go b/internal/ingress/annotations/auth/main.go
index beecebdb1..7c7fde7b8 100644
--- a/internal/ingress/annotations/auth/main.go
+++ b/internal/ingress/annotations/auth/main.go
@@ -50,7 +50,7 @@ var (
 )
 
 var AuthSecretConfig = parser.AnnotationConfig{
-	Validator:     parser.ValidateRegex(*parser.BasicCharsRegex, true),
+	Validator:     parser.ValidateRegex(parser.BasicCharsRegex, true),
 	Scope:         parser.AnnotationScopeLocation,
 	Risk:          parser.AnnotationRiskMedium, // Medium as it allows a subset of chars
 	Documentation: `This annotation defines the name of the Secret that contains the usernames and passwords which are granted access to the paths defined in the Ingress rules. `,
@@ -61,20 +61,20 @@ var authSecretAnnotations = parser.Annotation{
 	Annotations: parser.AnnotationFields{
 		AuthSecretAnnotation: AuthSecretConfig,
 		authSecretTypeAnnotation: {
-			Validator: parser.ValidateRegex(*authSecretTypeRegex, true),
+			Validator: parser.ValidateRegex(authSecretTypeRegex, true),
 			Scope:     parser.AnnotationScopeLocation,
 			Risk:      parser.AnnotationRiskLow,
 			Documentation: `This annotation what is the format of auth-secret value. Can be "auth-file" that defines the content of an htpasswd file, or "auth-map" where each key
 			is a user and each value is the password.`,
 		},
 		authRealmAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.CharsWithSpace, false),
+			Validator:     parser.ValidateRegex(parser.CharsWithSpace, false),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium, // Medium as it allows a subset of chars
 			Documentation: `This annotation defines the realm (message) that should be shown to user when authentication is requested.`,
 		},
 		authTypeAnnotation: {
-			Validator:     parser.ValidateRegex(*authTypeRegex, true),
+			Validator:     parser.ValidateRegex(authTypeRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskLow,
 			Documentation: `This annotation defines the basic authentication type. Should be "basic" or "digest"`,
@@ -167,14 +167,14 @@ func (a auth) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	s, err := parser.GetStringAnnotation(AuthSecretAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
-		return nil, ing_errors.LocationDenied{
+		return nil, ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("error reading secret name from annotation: %w", err),
 		}
 	}
 
 	sns, sname, err := cache.SplitMetaNamespaceKey(s)
 	if err != nil {
-		return nil, ing_errors.LocationDenied{
+		return nil, ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("error reading secret name from annotation: %w", err),
 		}
 	}
@@ -185,7 +185,7 @@ func (a auth) Parse(ing *networking.Ingress) (interface{}, error) {
 	secCfg := a.r.GetSecurityConfiguration()
 	// We don't accept different namespaces for secrets.
 	if !secCfg.AllowCrossNamespaceResources && sns != ing.Namespace {
-		return nil, ing_errors.LocationDenied{
+		return nil, ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("cross namespace usage of secrets is not allowed"),
 		}
 	}
@@ -193,7 +193,7 @@ func (a auth) Parse(ing *networking.Ingress) (interface{}, error) {
 	name := fmt.Sprintf("%v/%v", sns, sname)
 	secret, err := a.r.GetSecret(name)
 	if err != nil {
-		return nil, ing_errors.LocationDenied{
+		return nil, ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("unexpected error reading secret %s: %w", name, err),
 		}
 	}
@@ -217,7 +217,7 @@ func (a auth) Parse(ing *networking.Ingress) (interface{}, error) {
 			return nil, err
 		}
 	default:
-		return nil, ing_errors.LocationDenied{
+		return nil, ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("invalid auth-secret-type in annotation, must be 'auth-file' or 'auth-map': %w", err),
 		}
 	}
@@ -238,14 +238,14 @@ func (a auth) Parse(ing *networking.Ingress) (interface{}, error) {
 func dumpSecretAuthFile(filename string, secret *api.Secret) error {
 	val, ok := secret.Data["auth"]
 	if !ok {
-		return ing_errors.LocationDenied{
+		return ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("the secret %s does not contain a key with value auth", secret.Name),
 		}
 	}
 
 	err := os.WriteFile(filename, val, file.ReadWriteByUser)
 	if err != nil {
-		return ing_errors.LocationDenied{
+		return ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("unexpected error creating password file: %w", err),
 		}
 	}
@@ -264,7 +264,7 @@ func dumpSecretAuthMap(filename string, secret *api.Secret) error {
 
 	err := os.WriteFile(filename, []byte(builder.String()), file.ReadWriteByUser)
 	if err != nil {
-		return ing_errors.LocationDenied{
+		return ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("unexpected error creating password file: %w", err),
 		}
 	}
diff --git a/internal/ingress/annotations/auth/main_test.go b/internal/ingress/annotations/auth/main_test.go
index 2a9dc7c72..868f31a05 100644
--- a/internal/ingress/annotations/auth/main_test.go
+++ b/internal/ingress/annotations/auth/main_test.go
@@ -32,6 +32,15 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+//nolint:gosec // Ignore hardcoded credentials error in testing
+const (
+	authType          = "basic"
+	authRealm         = "-realm-"
+	defaultDemoSecret = "default/demo-secret"
+	othernsDemoSecret = "otherns/demo-secret"
+	demoSecret        = "demo-secret"
+)
+
 func buildIngress() *networking.Ingress {
 	defaultBackend := networking.IngressBackend{
 		Service: &networking.IngressServiceBackend{
@@ -80,7 +89,7 @@ type mockSecret struct {
 }
 
 func (m mockSecret) GetSecret(name string) (*api.Secret, error) {
-	if name != "default/demo-secret" && name != "otherns/demo-secret" {
+	if name != defaultDemoSecret && name != othernsDemoSecret {
 		return nil, fmt.Errorf("there is no secret with name %v", name)
 	}
 
@@ -92,7 +101,7 @@ func (m mockSecret) GetSecret(name string) (*api.Secret, error) {
 	return &api.Secret{
 		ObjectMeta: meta_v1.ObjectMeta{
 			Namespace: ns,
-			Name:      "demo-secret",
+			Name:      demoSecret,
 		},
 		Data: map[string][]byte{"auth": []byte("foo:$apr1$OFG3Xybp$ckL0FHDAkoXYIlH9.cysT0")},
 	}, nil
@@ -129,9 +138,9 @@ func TestIngressInvalidRealm(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = authType
 	data[parser.GetAnnotationWithPrefix(authRealmAnnotation)] = "something weird ; location trying to { break }"
-	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = "demo-secret"
+	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = demoSecret
 	ing.SetAnnotations(data)
 
 	_, dir, _ := dummySecretContent(t)
@@ -148,14 +157,14 @@ func TestIngressInvalidDifferentNamespace(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
-	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = "otherns/demo-secret"
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = authType
+	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = othernsDemoSecret
 	ing.SetAnnotations(data)
 
 	_, dir, _ := dummySecretContent(t)
 	defer os.RemoveAll(dir)
 
-	expected := ing_errors.LocationDenied{
+	expected := ing_errors.LocationDeniedError{
 		Reason: errors.New("cross namespace usage of secrets is not allowed"),
 	}
 	_, err := NewParser(dir, &mockSecret{}).Parse(ing)
@@ -168,8 +177,8 @@ func TestIngressInvalidDifferentNamespaceAllowed(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
-	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = "otherns/demo-secret"
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = authType
+	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = othernsDemoSecret
 	ing.SetAnnotations(data)
 
 	_, dir, _ := dummySecretContent(t)
@@ -187,14 +196,14 @@ func TestIngressInvalidSecretName(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = authType
 	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = "demo-secret;xpto"
 	ing.SetAnnotations(data)
 
 	_, dir, _ := dummySecretContent(t)
 	defer os.RemoveAll(dir)
 
-	expected := ing_errors.LocationDenied{
+	expected := ing_errors.LocationDeniedError{
 		Reason: errors.New("error reading secret name from annotation: annotation nginx.ingress.kubernetes.io/auth-secret contains invalid value"),
 	}
 	_, err := NewParser(dir, &mockSecret{}).Parse(ing)
@@ -207,13 +216,13 @@ func TestInvalidIngressAuthNoSecret(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = authType
 	ing.SetAnnotations(data)
 
 	_, dir, _ := dummySecretContent(t)
 	defer os.RemoveAll(dir)
 
-	expected := ing_errors.LocationDenied{
+	expected := ing_errors.LocationDeniedError{
 		Reason: errors.New("error reading secret name from annotation: ingress rule without annotations"),
 	}
 	_, err := NewParser(dir, &mockSecret{}).Parse(ing)
@@ -226,9 +235,9 @@ func TestIngressAuth(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
-	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = "demo-secret"
-	data[parser.GetAnnotationWithPrefix(authRealmAnnotation)] = "-realm-"
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = authType
+	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = demoSecret
+	data[parser.GetAnnotationWithPrefix(authRealmAnnotation)] = authRealm
 	ing.SetAnnotations(data)
 
 	_, dir, _ := dummySecretContent(t)
@@ -242,10 +251,10 @@ func TestIngressAuth(t *testing.T) {
 	if !ok {
 		t.Errorf("expected a BasicDigest type")
 	}
-	if auth.Type != "basic" {
+	if auth.Type != authType {
 		t.Errorf("Expected basic as auth type but returned %s", auth.Type)
 	}
-	if auth.Realm != "-realm-" {
+	if auth.Realm != authRealm {
 		t.Errorf("Expected -realm- as realm but returned %s", auth.Realm)
 	}
 	if !auth.Secured {
@@ -257,9 +266,9 @@ func TestIngressAuthWithoutSecret(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = authType
 	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = "invalid-secret"
-	data[parser.GetAnnotationWithPrefix(authRealmAnnotation)] = "-realm-"
+	data[parser.GetAnnotationWithPrefix(authRealmAnnotation)] = authRealm
 	ing.SetAnnotations(data)
 
 	_, dir, _ := dummySecretContent(t)
@@ -275,10 +284,10 @@ func TestIngressAuthInvalidSecretKey(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = "basic"
-	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = "demo-secret"
+	data[parser.GetAnnotationWithPrefix(authTypeAnnotation)] = authType
+	data[parser.GetAnnotationWithPrefix(AuthSecretAnnotation)] = demoSecret
 	data[parser.GetAnnotationWithPrefix(authSecretTypeAnnotation)] = "invalid-type"
-	data[parser.GetAnnotationWithPrefix(authRealmAnnotation)] = "-realm-"
+	data[parser.GetAnnotationWithPrefix(authRealmAnnotation)] = authRealm
 	ing.SetAnnotations(data)
 
 	_, dir, _ := dummySecretContent(t)
@@ -290,7 +299,7 @@ func TestIngressAuthInvalidSecretKey(t *testing.T) {
 	}
 }
 
-func dummySecretContent(t *testing.T) (string, string, *api.Secret) {
+func dummySecretContent(t *testing.T) (fileName, dir string, s *api.Secret) {
 	dir, err := os.MkdirTemp("", fmt.Sprintf("%v", time.Now().Unix()))
 	if err != nil {
 		t.Error(err)
@@ -301,7 +310,10 @@ func dummySecretContent(t *testing.T) (string, string, *api.Secret) {
 		t.Error(err)
 	}
 	defer tmpfile.Close()
-	s, _ := mockSecret{}.GetSecret("default/demo-secret")
+	s, err = mockSecret{}.GetSecret(defaultDemoSecret)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	return tmpfile.Name(), dir, s
 }
 
diff --git a/internal/ingress/annotations/authreq/main.go b/internal/ingress/annotations/authreq/main.go
index b8ba4f125..c66b0ed47 100644
--- a/internal/ingress/annotations/authreq/main.go
+++ b/internal/ingress/annotations/authreq/main.go
@@ -57,25 +57,25 @@ var authReqAnnotations = parser.Annotation{
 	Group: "authentication",
 	Annotations: parser.AnnotationFields{
 		authReqURLAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.URLWithNginxVariableRegex, true),
+			Validator:     parser.ValidateRegex(parser.URLWithNginxVariableRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskHigh,
 			Documentation: `This annotation allows to indicate the URL where the HTTP request should be sent`,
 		},
 		authReqMethodAnnotation: {
-			Validator:     parser.ValidateRegex(*methodsRegex, true),
+			Validator:     parser.ValidateRegex(methodsRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskLow,
 			Documentation: `This annotation allows to specify the HTTP method to use`,
 		},
 		authReqSigninAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.URLWithNginxVariableRegex, true),
+			Validator:     parser.ValidateRegex(parser.URLWithNginxVariableRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskHigh,
 			Documentation: `This annotation allows to specify the location of the error page`,
 		},
 		authReqSigninRedirParamAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.URLIsValidRegex, true),
+			Validator:     parser.ValidateRegex(parser.URLIsValidRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation allows to specify the URL parameter in the error page which should contain the original URL for a failed signin request`,
@@ -87,7 +87,7 @@ var authReqAnnotations = parser.Annotation{
 			Documentation: `This annotation allows to specify a custom snippet to use with external authentication`,
 		},
 		authReqCacheKeyAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.NGINXVariable, true),
+			Validator:     parser.ValidateRegex(parser.NGINXVariable, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation enables caching for auth requests.`,
@@ -117,26 +117,26 @@ var authReqAnnotations = parser.Annotation{
 			Documentation: `This annotation specifies a duration in seconds which an idle keepalive connection to an upstream server will stay open`,
 		},
 		authReqCacheDuration: {
-			Validator:     parser.ValidateRegex(*parser.ExtendedCharsRegex, false),
+			Validator:     parser.ValidateRegex(parser.ExtendedCharsRegex, false),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation allows to specify a caching time for auth responses based on their response codes, e.g. 200 202 30m`,
 		},
 		authReqResponseHeadersAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.HeadersVariable, true),
+			Validator:     parser.ValidateRegex(parser.HeadersVariable, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation sets the headers to pass to backend once authentication request completes. They should be separated by comma.`,
 		},
 		authReqProxySetHeadersAnnotation: {
-			Validator: parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Validator: parser.ValidateRegex(parser.BasicCharsRegex, true),
 			Scope:     parser.AnnotationScopeLocation,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation sets the name of a ConfigMap that specifies headers to pass to the authentication service.
 			Only ConfigMaps on the same namespace are allowed`,
 		},
 		authReqRequestRedirectAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.URLIsValidRegex, true),
+			Validator:     parser.ValidateRegex(parser.URLIsValidRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation allows to specify the X-Auth-Request-Redirect header value`,
@@ -249,8 +249,8 @@ func (e1 *Config) Equal(e2 *Config) bool {
 var (
 	methodsRegex    = regexp.MustCompile("(GET|HEAD|POST|PUT|PATCH|DELETE|CONNECT|OPTIONS|TRACE)")
 	headerRegexp    = regexp.MustCompile(`^[a-zA-Z\d\-_]+$`)
-	statusCodeRegex = regexp.MustCompile(`^[\d]{3}$`)
-	durationRegex   = regexp.MustCompile(`^[\d]+(ms|s|m|h|d|w|M|y)$`) // see http://nginx.org/en/docs/syntax.html
+	statusCodeRegex = regexp.MustCompile(`^\d{3}$`)
+	durationRegex   = regexp.MustCompile(`^\d+(ms|s|m|h|d|w|M|y)$`) // see http://nginx.org/en/docs/syntax.html
 )
 
 // ValidMethod checks is the provided string a valid HTTP method
@@ -273,7 +273,7 @@ func ValidCacheDuration(duration string) bool {
 	seenDuration := false
 
 	for _, element := range elements {
-		if len(element) == 0 {
+		if element == "" {
 			continue
 		}
 		if statusCodeRegex.MatchString(element) {
@@ -304,6 +304,8 @@ func NewParser(r resolver.Resolver) parser.IngressAnnotation {
 
 // ParseAnnotations parses the annotations contained in the ingress
 // rule used to use an Config URL as source for authentication
+//
+//nolint:gocyclo // Ignore function complexity error
 func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 	// Required Parameters
 	urlString, err := parser.GetStringAnnotation(authReqURLAnnotation, ing, a.annotationConfig.Annotations)
@@ -313,7 +315,7 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	authURL, err := parser.StringToURL(urlString)
 	if err != nil {
-		return nil, ing_errors.LocationDenied{Reason: fmt.Errorf("could not parse auth-url annotation: %v", err)}
+		return nil, ing_errors.LocationDeniedError{Reason: fmt.Errorf("could not parse auth-url annotation: %v", err)}
 	}
 
 	authMethod, err := parser.GetStringAnnotation(authReqMethodAnnotation, ing, a.annotationConfig.Annotations)
@@ -410,7 +412,7 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 	if err != nil && ing_errors.IsValidationError(err) {
 		return nil, ing_errors.NewLocationDenied("validation error")
 	}
-	if len(hstr) != 0 {
+	if hstr != "" {
 		harr := strings.Split(hstr, ",")
 		for _, header := range harr {
 			header = strings.TrimSpace(header)
@@ -430,7 +432,7 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	cns, _, err := cache.SplitMetaNamespaceKey(proxySetHeaderMap)
 	if err != nil {
-		return nil, ing_errors.LocationDenied{
+		return nil, ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("error reading configmap name %s from annotation: %w", proxySetHeaderMap, err),
 		}
 	}
@@ -442,7 +444,7 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 	secCfg := a.r.GetSecurityConfiguration()
 	// We don't accept different namespaces for secrets.
 	if !secCfg.AllowCrossNamespaceResources && cns != ing.Namespace {
-		return nil, ing_errors.LocationDenied{
+		return nil, ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("cross namespace usage of secrets is not allowed"),
 		}
 	}
@@ -499,7 +501,7 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 // It will always return at least one duration (the default duration)
 func ParseStringToCacheDurations(input string) ([]string, error) {
 	authCacheDuration := []string{}
-	if len(input) != 0 {
+	if input != "" {
 		arr := strings.Split(input, ",")
 		for _, duration := range arr {
 			duration = strings.TrimSpace(duration)
diff --git a/internal/ingress/annotations/authreq/main_test.go b/internal/ingress/annotations/authreq/main_test.go
index dc5188c8a..3e6df3d3b 100644
--- a/internal/ingress/annotations/authreq/main_test.go
+++ b/internal/ingress/annotations/authreq/main_test.go
@@ -17,7 +17,6 @@ limitations under the License.
 package authreq
 
 import (
-	"fmt"
 	"reflect"
 	"testing"
 
@@ -113,7 +112,7 @@ func TestAnnotations(t *testing.T) {
 		data[parser.GetAnnotationWithPrefix("auth-url")] = test.url
 		data[parser.GetAnnotationWithPrefix("auth-signin")] = test.signinURL
 		data[parser.GetAnnotationWithPrefix("auth-signin-redirect-param")] = test.signinURLRedirectParam
-		data[parser.GetAnnotationWithPrefix("auth-method")] = fmt.Sprintf("%v", test.method)
+		data[parser.GetAnnotationWithPrefix("auth-method")] = test.method
 		data[parser.GetAnnotationWithPrefix("auth-request-redirect")] = test.requestRedirect
 		data[parser.GetAnnotationWithPrefix("auth-snippet")] = test.authSnippet
 		data[parser.GetAnnotationWithPrefix("auth-cache-key")] = test.authCacheKey
@@ -331,7 +330,6 @@ func TestKeepaliveAnnotations(t *testing.T) {
 }
 
 func TestParseStringToCacheDurations(t *testing.T) {
-
 	tests := []struct {
 		title             string
 		duration          string
@@ -346,7 +344,6 @@ func TestParseStringToCacheDurations(t *testing.T) {
 	}
 
 	for _, test := range tests {
-
 		dur, err := ParseStringToCacheDurations(test.duration)
 		if test.expErr {
 			if err == nil {
diff --git a/internal/ingress/annotations/authreqglobal/main.go b/internal/ingress/annotations/authreqglobal/main.go
index a1641e085..e8a259047 100644
--- a/internal/ingress/annotations/authreqglobal/main.go
+++ b/internal/ingress/annotations/authreqglobal/main.go
@@ -55,7 +55,6 @@ func NewParser(r resolver.Resolver) parser.IngressAnnotation {
 // ParseAnnotations parses the annotations contained in the ingress
 // rule used to enable or disable global external authentication
 func (a authReqGlobal) Parse(ing *networking.Ingress) (interface{}, error) {
-
 	enableGlobalAuth, err := parser.GetBoolAnnotation(enableGlobalAuthAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		enableGlobalAuth = true
diff --git a/internal/ingress/annotations/authreqglobal/main_test.go b/internal/ingress/annotations/authreqglobal/main_test.go
index 0313edcf5..734f97c0f 100644
--- a/internal/ingress/annotations/authreqglobal/main_test.go
+++ b/internal/ingress/annotations/authreqglobal/main_test.go
@@ -77,7 +77,10 @@ func TestAnnotation(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix("enable-global-auth")] = "false"
 	ing.SetAnnotations(data)
 
-	i, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	i, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	u, ok := i.(bool)
 	if !ok {
 		t.Errorf("expected a Config type")
diff --git a/internal/ingress/annotations/authtls/main.go b/internal/ingress/annotations/authtls/main.go
index 5d6763e8b..adedb084a 100644
--- a/internal/ingress/annotations/authtls/main.go
+++ b/internal/ingress/annotations/authtls/main.go
@@ -18,11 +18,10 @@ package authtls
 
 import (
 	"fmt"
+	"regexp"
 
 	networking "k8s.io/api/networking/v1"
 
-	"regexp"
-
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
@@ -45,20 +44,20 @@ var (
 	regexChars            = regexp.QuoteMeta(`()|=`)
 	authVerifyClientRegex = regexp.MustCompile(`on|off|optional|optional_no_ca`)
 	commonNameRegex       = regexp.MustCompile(`^CN=[/\-.\_\~a-zA-Z0-9` + regexChars + `]*$`)
-	redirectRegex         = regexp.MustCompile(`^((https?://)?[A-Za-z0-9\-\.]*(:[0-9]+)?/[A-Za-z0-9\-\.]*)?$`)
+	redirectRegex         = regexp.MustCompile(`^((https?://)?[A-Za-z0-9\-.]*(:\d+)?/[A-Za-z0-9\-.]*)?$`)
 )
 
 var authTLSAnnotations = parser.Annotation{
 	Group: "authentication",
 	Annotations: parser.AnnotationFields{
 		annotationAuthTLSSecret: {
-			Validator:     parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Validator:     parser.ValidateRegex(parser.BasicCharsRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium, // Medium as it allows a subset of chars
 			Documentation: `This annotation defines the secret that contains the certificate chain of allowed certs`,
 		},
 		annotationAuthTLSVerifyClient: {
-			Validator:     parser.ValidateRegex(*authVerifyClientRegex, true),
+			Validator:     parser.ValidateRegex(authVerifyClientRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium, // Medium as it allows a subset of chars
 			Documentation: `This annotation enables verification of client certificates. Can be "on", "off", "optional" or "optional_no_ca"`,
@@ -70,7 +69,7 @@ var authTLSAnnotations = parser.Annotation{
 			Documentation: `This annotation defines validation depth between the provided client certificate and the Certification Authority chain.`,
 		},
 		annotationAuthTLSErrorPage: {
-			Validator:     parser.ValidateRegex(*redirectRegex, true),
+			Validator:     parser.ValidateRegex(redirectRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskHigh,
 			Documentation: `This annotation defines the URL/Page that user should be redirected in case of a Certificate Authentication Error`,
@@ -82,7 +81,7 @@ var authTLSAnnotations = parser.Annotation{
 			Documentation: `This annotation defines if the received certificates should be passed or not to the upstream server in the header "ssl-client-cert"`,
 		},
 		annotationAuthTLSMatchCN: {
-			Validator:     parser.ValidateRegex(*commonNameRegex, true),
+			Validator:     parser.ValidateRegex(commonNameRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskHigh,
 			Documentation: `This annotation adds a sanity check for the CN of the client certificate that is sent over using a string / regex starting with "CN="`,
@@ -130,9 +129,9 @@ func (assl1 *Config) Equal(assl2 *Config) bool {
 }
 
 // NewParser creates a new TLS authentication annotation parser
-func NewParser(resolver resolver.Resolver) parser.IngressAnnotation {
+func NewParser(r resolver.Resolver) parser.IngressAnnotation {
 	return authTLS{
-		r:                resolver,
+		r:                r,
 		annotationConfig: authTLSAnnotations,
 	}
 }
@@ -169,7 +168,7 @@ func (a authTLS) Parse(ing *networking.Ingress) (interface{}, error) {
 	authCert, err := a.r.GetAuthCertificate(tlsauthsecret)
 	if err != nil {
 		e := fmt.Errorf("error obtaining certificate: %w", err)
-		return &Config{}, ing_errors.LocationDenied{Reason: e}
+		return &Config{}, ing_errors.LocationDeniedError{Reason: e}
 	}
 	config.AuthSSLCert = *authCert
 
diff --git a/internal/ingress/annotations/authtls/main_test.go b/internal/ingress/annotations/authtls/main_test.go
index a1f3f0f92..0dd442e4f 100644
--- a/internal/ingress/annotations/authtls/main_test.go
+++ b/internal/ingress/annotations/authtls/main_test.go
@@ -27,6 +27,11 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	defaultDemoSecret = "default/demo-secret"
+	off               = "off"
+)
+
 func buildIngress() *networking.Ingress {
 	defaultBackend := networking.IngressBackend{
 		Service: &networking.IngressServiceBackend{
@@ -77,23 +82,22 @@ type mockSecret struct {
 
 // GetAuthCertificate from mockSecret mocks the GetAuthCertificate for authTLS
 func (m mockSecret) GetAuthCertificate(name string) (*resolver.AuthSSLCert, error) {
-	if name != "default/demo-secret" {
+	if name != defaultDemoSecret {
 		return nil, errors.Errorf("there is no secret with name %v", name)
 	}
 
 	return &resolver.AuthSSLCert{
-		Secret:     "default/demo-secret",
+		Secret:     defaultDemoSecret,
 		CAFileName: "/ssl/ca.crt",
 		CASHA:      "abc",
 	}, nil
-
 }
 
 func TestAnnotations(t *testing.T) {
 	ing := buildIngress()
 	data := map[string]string{}
 
-	data[parser.GetAnnotationWithPrefix(annotationAuthTLSSecret)] = "default/demo-secret"
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSSecret)] = defaultDemoSecret
 
 	ing.SetAnnotations(data)
 
@@ -108,7 +112,7 @@ func TestAnnotations(t *testing.T) {
 		t.Errorf("expected *Config but got %v", u)
 	}
 
-	secret, err := fakeSecret.GetAuthCertificate("default/demo-secret")
+	secret, err := fakeSecret.GetAuthCertificate(defaultDemoSecret)
 	if err != nil {
 		t.Errorf("unexpected error getting secret %v", err)
 	}
@@ -132,7 +136,7 @@ func TestAnnotations(t *testing.T) {
 		t.Errorf("expected empty string, but got %v", u.MatchCN)
 	}
 
-	data[parser.GetAnnotationWithPrefix(annotationAuthTLSVerifyClient)] = "off"
+	data[parser.GetAnnotationWithPrefix(annotationAuthTLSVerifyClient)] = off
 	data[parser.GetAnnotationWithPrefix(annotationAuthTLSVerifyDepth)] = "2"
 	data[parser.GetAnnotationWithPrefix(annotationAuthTLSErrorPage)] = "ok.com/error"
 	data[parser.GetAnnotationWithPrefix(annotationAuthTLSPassCertToUpstream)] = "true"
@@ -153,8 +157,8 @@ func TestAnnotations(t *testing.T) {
 	if u.AuthSSLCert.Secret != secret.Secret {
 		t.Errorf("expected %v but got %v", secret.Secret, u.AuthSSLCert.Secret)
 	}
-	if u.VerifyClient != "off" {
-		t.Errorf("expected %v but got %v", "off", u.VerifyClient)
+	if u.VerifyClient != off {
+		t.Errorf("expected %v but got %v", off, u.VerifyClient)
 	}
 	if u.ValidationDepth != 2 {
 		t.Errorf("expected %v but got %v", 2, u.ValidationDepth)
@@ -262,28 +266,21 @@ func TestInvalidAnnotations(t *testing.T) {
 	if u.MatchCN != "" {
 		t.Errorf("expected empty string but got %v", u.MatchCN)
 	}
-
 }
 
 func TestEquals(t *testing.T) {
 	cfg1 := &Config{}
 	cfg2 := &Config{}
 
-	// Same config
-	result := cfg1.Equal(cfg1)
-	if result != true {
-		t.Errorf("Expected true")
-	}
-
 	// compare nil
-	result = cfg1.Equal(nil)
+	result := cfg1.Equal(nil)
 	if result != false {
 		t.Errorf("Expected false")
 	}
 
 	// Different Certs
 	sslCert1 := resolver.AuthSSLCert{
-		Secret:     "default/demo-secret",
+		Secret:     defaultDemoSecret,
 		CAFileName: "/ssl/ca.crt",
 		CASHA:      "abc",
 	}
@@ -302,7 +299,7 @@ func TestEquals(t *testing.T) {
 
 	// Different Verify Client
 	cfg1.VerifyClient = "on"
-	cfg2.VerifyClient = "off"
+	cfg2.VerifyClient = off
 	result = cfg1.Equal(cfg2)
 	if result != false {
 		t.Errorf("Expected false")
diff --git a/internal/ingress/annotations/backendprotocol/main.go b/internal/ingress/annotations/backendprotocol/main.go
index 2704ce9f6..62674c4e5 100644
--- a/internal/ingress/annotations/backendprotocol/main.go
+++ b/internal/ingress/annotations/backendprotocol/main.go
@@ -25,9 +25,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
-var (
-	validProtocols = []string{"auto_http", "http", "https", "grpc", "grpcs", "fcgi"}
-)
+var validProtocols = []string{"auto_http", "http", "https", "grpc", "grpcs", "fcgi"}
 
 const (
 	http                      = "HTTP"
diff --git a/internal/ingress/annotations/backendprotocol/main_test.go b/internal/ingress/annotations/backendprotocol/main_test.go
index 490be447b..cb1ec779f 100644
--- a/internal/ingress/annotations/backendprotocol/main_test.go
+++ b/internal/ingress/annotations/backendprotocol/main_test.go
@@ -44,6 +44,7 @@ func buildIngress() *networking.Ingress {
 		},
 	}
 }
+
 func TestParseInvalidAnnotations(t *testing.T) {
 	ing := buildIngress()
 
@@ -56,7 +57,7 @@ func TestParseInvalidAnnotations(t *testing.T) {
 	if !ok {
 		t.Errorf("expected a string type")
 	}
-	if val != "HTTP" {
+	if val != http {
 		t.Errorf("expected HTTPS but %v returned", val)
 	}
 
@@ -72,7 +73,7 @@ func TestParseInvalidAnnotations(t *testing.T) {
 	if !ok {
 		t.Errorf("expected a string type")
 	}
-	if val != "HTTP" {
+	if val != http {
 		t.Errorf("expected HTTPS but %v returned", val)
 	}
 
@@ -88,7 +89,7 @@ func TestParseInvalidAnnotations(t *testing.T) {
 	if !ok {
 		t.Errorf("expected a string type")
 	}
-	if val != "HTTP" {
+	if val != http {
 		t.Errorf("expected HTTPS but %v returned", val)
 	}
 }
diff --git a/internal/ingress/annotations/canary/main.go b/internal/ingress/annotations/canary/main.go
index 119f09181..be5761675 100644
--- a/internal/ingress/annotations/canary/main.go
+++ b/internal/ingress/annotations/canary/main.go
@@ -57,7 +57,7 @@ var CanaryAnnotations = parser.Annotation{
 			Documentation: `This annotation The total weight of traffic. If unspecified, it defaults to 100`,
 		},
 		canaryByHeaderAnnotation: {
-			Validator: parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Validator: parser.ValidateRegex(parser.BasicCharsRegex, true),
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation defines the header that should be used for notifying the Ingress to route the request to the service specified in the Canary Ingress.
@@ -65,7 +65,7 @@ var CanaryAnnotations = parser.Annotation{
 			For any other value, the header will be ignored and the request compared against the other canary rules by precedence`,
 		},
 		canaryByHeaderValueAnnotation: {
-			Validator: parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Validator: parser.ValidateRegex(parser.BasicCharsRegex, true),
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation defines the header value to match for notifying the Ingress to route the request to the service specified in the Canary Ingress. 
@@ -74,7 +74,7 @@ var CanaryAnnotations = parser.Annotation{
 			It doesn't have any effect if the 'canary-by-header' annotation is not defined`,
 		},
 		canaryByHeaderPatternAnnotation: {
-			Validator: parser.ValidateRegex(*parser.IsValidRegex, false),
+			Validator: parser.ValidateRegex(parser.IsValidRegex, false),
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation works the same way as canary-by-header-value except it does PCRE Regex matching. 
@@ -82,7 +82,7 @@ var CanaryAnnotations = parser.Annotation{
 			When the given Regex causes error during request processing, the request will be considered as not matching.`,
 		},
 		canaryByCookieAnnotation: {
-			Validator: parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Validator: parser.ValidateRegex(parser.BasicCharsRegex, true),
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation defines the cookie that should be used for notifying the Ingress to route the request to the service specified in the Canary Ingress.
@@ -189,7 +189,7 @@ func (c canary) GetDocumentation() parser.AnnotationFields {
 	return c.annotationConfig.Annotations
 }
 
-func (a canary) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (c canary) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(c.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, CanaryAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/canary/main_test.go b/internal/ingress/annotations/canary/main_test.go
index ddfc0a9c4..1787ddb85 100644
--- a/internal/ingress/annotations/canary/main_test.go
+++ b/internal/ingress/annotations/canary/main_test.go
@@ -17,6 +17,7 @@ limitations under the License.
 package canary
 
 import (
+	"strconv"
 	"testing"
 
 	api "k8s.io/api/core/v1"
@@ -24,8 +25,6 @@ import (
 	metaV1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 
-	"strconv"
-
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
@@ -93,7 +92,6 @@ func TestCanaryInvalid(t *testing.T) {
 	if val.Weight != 0 {
 		t.Errorf("Expected %v but got %v", 0, val.Weight)
 	}
-
 }
 
 func TestAnnotations(t *testing.T) {
@@ -133,10 +131,9 @@ func TestAnnotations(t *testing.T) {
 			}
 
 			continue
-		} else {
-			if err != nil {
-				t.Errorf("%v: expected nil but returned error %v", test.title, err)
-			}
+		}
+		if err != nil {
+			t.Errorf("%v: expected nil but returned error %v", test.title, err)
 		}
 
 		canaryConfig, ok := i.(*Config)
diff --git a/internal/ingress/annotations/clientbodybuffersize/main.go b/internal/ingress/annotations/clientbodybuffersize/main.go
index aa1485df2..c0fa79713 100644
--- a/internal/ingress/annotations/clientbodybuffersize/main.go
+++ b/internal/ingress/annotations/clientbodybuffersize/main.go
@@ -31,7 +31,7 @@ var clientBodyBufferSizeConfig = parser.Annotation{
 	Group: "backend",
 	Annotations: parser.AnnotationFields{
 		clientBodyBufferSizeAnnotation: {
-			Validator: parser.ValidateRegex(*parser.SizeRegex, true),
+			Validator: parser.ValidateRegex(parser.SizeRegex, true),
 			Scope:     parser.AnnotationScopeLocation,
 			Risk:      parser.AnnotationRiskLow, // Low, as it allows just a set of options
 			Documentation: `Sets buffer size for reading client request body per location. 
@@ -65,7 +65,7 @@ func (cbbs clientBodyBufferSize) Parse(ing *networking.Ingress) (interface{}, er
 	return parser.GetStringAnnotation(clientBodyBufferSizeAnnotation, ing, cbbs.annotationConfig.Annotations)
 }
 
-func (a clientBodyBufferSize) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (cbbs clientBodyBufferSize) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(cbbs.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, clientBodyBufferSizeConfig.Annotations)
 }
diff --git a/internal/ingress/annotations/clientbodybuffersize/main_test.go b/internal/ingress/annotations/clientbodybuffersize/main_test.go
index 0f2c8474a..62257aeb9 100644
--- a/internal/ingress/annotations/clientbodybuffersize/main_test.go
+++ b/internal/ingress/annotations/clientbodybuffersize/main_test.go
@@ -57,6 +57,7 @@ func TestParse(t *testing.T) {
 
 	for _, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
+		//nolint:errcheck // Ignore the error since invalid cases will be checked with expected results
 		result, _ := ap.Parse(ing)
 		if result != testCase.expected {
 			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
diff --git a/internal/ingress/annotations/connection/main.go b/internal/ingress/annotations/connection/main.go
index 9e96b6ab1..b0242ac23 100644
--- a/internal/ingress/annotations/connection/main.go
+++ b/internal/ingress/annotations/connection/main.go
@@ -29,15 +29,13 @@ const (
 	connectionProxyHeaderAnnotation = "connection-proxy-header"
 )
 
-var (
-	validConnectionHeaderValue = regexp.MustCompile(`^(close|keep-alive)$`)
-)
+var validConnectionHeaderValue = regexp.MustCompile(`^(close|keep-alive)$`)
 
 var connectionHeadersAnnotations = parser.Annotation{
 	Group: "backend",
 	Annotations: parser.AnnotationFields{
 		connectionProxyHeaderAnnotation: {
-			Validator:     parser.ValidateRegex(*validConnectionHeaderValue, true),
+			Validator:     parser.ValidateRegex(validConnectionHeaderValue, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskLow,
 			Documentation: `This annotation allows setting a specific value for "proxy_set_header Connection" directive. Right now it is restricted to "close" or "keep-alive"`,
diff --git a/internal/ingress/annotations/connection/main_test.go b/internal/ingress/annotations/connection/main_test.go
index a95288385..1b9361f31 100644
--- a/internal/ingress/annotations/connection/main_test.go
+++ b/internal/ingress/annotations/connection/main_test.go
@@ -66,6 +66,5 @@ func TestParse(t *testing.T) {
 		if !p.Equal(testCase.expected) {
 			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, p, testCase.annotations)
 		}
-
 	}
 }
diff --git a/internal/ingress/annotations/cors/main.go b/internal/ingress/annotations/cors/main.go
index cc30b8405..39e02f21b 100644
--- a/internal/ingress/annotations/cors/main.go
+++ b/internal/ingress/annotations/cors/main.go
@@ -43,9 +43,9 @@ var (
 	// * Sets a group that can be (https?://)?*?.something.com:port?
 	// * Allows this to be repeated as much as possible, and separated by comma
 	// Otherwise it should be '*'
-	corsOriginRegexValidator = regexp.MustCompile(`^((((https?://)?(\*\.)?[A-Za-z0-9\-\.]*(:[0-9]+)?,?)+)|\*)?$`)
+	corsOriginRegexValidator = regexp.MustCompile(`^((((https?://)?(\*\.)?[A-Za-z0-9\-.]*(:\d+)?,?)+)|\*)?$`)
 	// corsOriginRegex defines the regex for validation inside Parse
-	corsOriginRegex = regexp.MustCompile(`^(https?://(\*\.)?[A-Za-z0-9\-\.]*(:[0-9]+)?|\*)?$`)
+	corsOriginRegex = regexp.MustCompile(`^(https?://(\*\.)?[A-Za-z0-9\-.]*(:\d+)?|\*)?$`)
 	// Method must contain valid methods list (PUT, GET, POST, BLA)
 	// May contain or not spaces between each verb
 	corsMethodsRegex = regexp.MustCompile(`^([A-Za-z]+,?\s?)+$`)
@@ -74,7 +74,7 @@ var corsAnnotation = parser.Annotation{
 			Documentation: `This annotation enables Cross-Origin Resource Sharing (CORS) in an Ingress rule`,
 		},
 		corsAllowOriginAnnotation: {
-			Validator: parser.ValidateRegex(*corsOriginRegexValidator, true),
+			Validator: parser.ValidateRegex(corsOriginRegexValidator, true),
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation controls what's the accepted Origin for CORS.
@@ -82,14 +82,14 @@ var corsAnnotation = parser.Annotation{
 			It also supports single level wildcard subdomains and follows this format: http(s)://*.foo.bar, http(s)://*.bar.foo:8080 or http(s)://*.abc.bar.foo:9000`,
 		},
 		corsAllowHeadersAnnotation: {
-			Validator: parser.ValidateRegex(*parser.HeadersVariable, true),
+			Validator: parser.ValidateRegex(parser.HeadersVariable, true),
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation controls which headers are accepted.
 			This is a multi-valued field, separated by ',' and accepts letters, numbers, _ and -`,
 		},
 		corsAllowMethodsAnnotation: {
-			Validator: parser.ValidateRegex(*corsMethodsRegex, true),
+			Validator: parser.ValidateRegex(corsMethodsRegex, true),
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation controls which methods are accepted.
@@ -102,7 +102,7 @@ var corsAnnotation = parser.Annotation{
 			Documentation: `This annotation controls if credentials can be passed during CORS operations.`,
 		},
 		corsExposeHeadersAnnotation: {
-			Validator: parser.ValidateRegex(*corsExposeHeadersRegex, true),
+			Validator: parser.ValidateRegex(corsExposeHeadersRegex, true),
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation controls which headers are exposed to response.
@@ -260,7 +260,7 @@ func (c cors) GetDocumentation() parser.AnnotationFields {
 	return c.annotationConfig.Annotations
 }
 
-func (a cors) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (c cors) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(c.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, corsAnnotation.Annotations)
 }
diff --git a/internal/ingress/annotations/customhttperrors/main.go b/internal/ingress/annotations/customhttperrors/main.go
index c3c9b5be3..f3c72a22f 100644
--- a/internal/ingress/annotations/customhttperrors/main.go
+++ b/internal/ingress/annotations/customhttperrors/main.go
@@ -31,16 +31,14 @@ const (
 	customHTTPErrorsAnnotation = "custom-http-errors"
 )
 
-var (
-	// We accept anything between 400 and 599, on a comma separated.
-	arrayOfHTTPErrors = regexp.MustCompile(`^(?:[4,5][0-9][0-9],?)*$`)
-)
+// We accept anything between 400 and 599, on a comma separated.
+var arrayOfHTTPErrors = regexp.MustCompile(`^(?:[4,5]\d{2},?)*$`)
 
 var customHTTPErrorsAnnotations = parser.Annotation{
 	Group: "backend",
 	Annotations: parser.AnnotationFields{
 		customHTTPErrorsAnnotation: {
-			Validator: parser.ValidateRegex(*arrayOfHTTPErrors, true),
+			Validator: parser.ValidateRegex(arrayOfHTTPErrors, true),
 			Scope:     parser.AnnotationScopeLocation,
 			Risk:      parser.AnnotationRiskLow,
 			Documentation: `If a default backend annotation is specified on the ingress, the errors code specified on this annotation 
@@ -72,7 +70,7 @@ func (e customhttperrors) Parse(ing *networking.Ingress) (interface{}, error) {
 	}
 
 	cSplit := strings.Split(c, ",")
-	var codes []int
+	codes := make([]int, 0, len(cSplit))
 	for _, i := range cSplit {
 		num, err := strconv.Atoi(i)
 		if err != nil {
@@ -88,7 +86,7 @@ func (e customhttperrors) GetDocumentation() parser.AnnotationFields {
 	return e.annotationConfig.Annotations
 }
 
-func (a customhttperrors) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (e customhttperrors) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(e.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, customHTTPErrorsAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/defaultbackend/main.go b/internal/ingress/annotations/defaultbackend/main.go
index f3ca004dd..9ae44f052 100644
--- a/internal/ingress/annotations/defaultbackend/main.go
+++ b/internal/ingress/annotations/defaultbackend/main.go
@@ -57,14 +57,14 @@ func NewParser(r resolver.Resolver) parser.IngressAnnotation {
 
 // Parse parses the annotations contained in the ingress to use
 // a custom default backend
-func (db backend) Parse(ing *networking.Ingress) (interface{}, error) {
-	s, err := parser.GetStringAnnotation(defaultBackendAnnotation, ing, db.annotationConfig.Annotations)
+func (b backend) Parse(ing *networking.Ingress) (interface{}, error) {
+	s, err := parser.GetStringAnnotation(defaultBackendAnnotation, ing, b.annotationConfig.Annotations)
 	if err != nil {
 		return nil, err
 	}
 
 	name := fmt.Sprintf("%v/%v", ing.Namespace, s)
-	svc, err := db.r.GetService(name)
+	svc, err := b.r.GetService(name)
 	if err != nil {
 		return nil, fmt.Errorf("unexpected error reading service %s: %w", name, err)
 	}
@@ -72,11 +72,11 @@ func (db backend) Parse(ing *networking.Ingress) (interface{}, error) {
 	return svc, nil
 }
 
-func (db backend) GetDocumentation() parser.AnnotationFields {
-	return db.annotationConfig.Annotations
+func (b backend) GetDocumentation() parser.AnnotationFields {
+	return b.annotationConfig.Annotations
 }
 
-func (a backend) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (b backend) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(b.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, defaultBackendAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/fastcgi/main.go b/internal/ingress/annotations/fastcgi/main.go
index 96dbc7159..882de5b1c 100644
--- a/internal/ingress/annotations/fastcgi/main.go
+++ b/internal/ingress/annotations/fastcgi/main.go
@@ -35,22 +35,20 @@ const (
 	fastCGIParamsAnnotation = "fastcgi-params-configmap"
 )
 
-var (
-	// fast-cgi valid parameters is just a single file name (like index.php)
-	regexValidIndexAnnotationAndKey = regexp.MustCompile(`^[A-Za-z0-9\.\-\_]+$`)
-)
+// fast-cgi valid parameters is just a single file name (like index.php)
+var regexValidIndexAnnotationAndKey = regexp.MustCompile(`^[A-Za-z0-9.\-\_]+$`)
 
 var fastCGIAnnotations = parser.Annotation{
 	Group: "fastcgi",
 	Annotations: parser.AnnotationFields{
 		fastCGIIndexAnnotation: {
-			Validator:     parser.ValidateRegex(*regexValidIndexAnnotationAndKey, true),
+			Validator:     parser.ValidateRegex(regexValidIndexAnnotationAndKey, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation can be used to specify an index file`,
 		},
 		fastCGIParamsAnnotation: {
-			Validator: parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Validator: parser.ValidateRegex(parser.BasicCharsRegex, true),
 			Scope:     parser.AnnotationScopeLocation,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation can be used to specify a ConfigMap containing the fastcgi parameters as a key/value.
@@ -98,7 +96,6 @@ func NewParser(r resolver.Resolver) parser.IngressAnnotation {
 // ParseAnnotations parses the annotations contained in the ingress
 // rule used to indicate the fastcgiConfig.
 func (a fastcgi) Parse(ing *networking.Ingress) (interface{}, error) {
-
 	fcgiConfig := Config{}
 
 	if ing.GetAnnotations() == nil {
@@ -125,7 +122,7 @@ func (a fastcgi) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	cmns, cmn, err := cache.SplitMetaNamespaceKey(cm)
 	if err != nil {
-		return fcgiConfig, ing_errors.LocationDenied{
+		return fcgiConfig, ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("error reading configmap name from annotation: %w", err),
 		}
 	}
@@ -139,7 +136,7 @@ func (a fastcgi) Parse(ing *networking.Ingress) (interface{}, error) {
 	cm = fmt.Sprintf("%v/%v", ing.Namespace, cmn)
 	cmap, err := a.r.GetConfigMap(cm)
 	if err != nil {
-		return fcgiConfig, ing_errors.LocationDenied{
+		return fcgiConfig, ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("unexpected error reading configmap %s: %w", cm, err),
 		}
 	}
diff --git a/internal/ingress/annotations/fastcgi/main_test.go b/internal/ingress/annotations/fastcgi/main_test.go
index 3296ded65..bc5e2755f 100644
--- a/internal/ingress/annotations/fastcgi/main_test.go
+++ b/internal/ingress/annotations/fastcgi/main_test.go
@@ -155,7 +155,6 @@ func TestParseFastCGIInvalidParamsConfigMapAnnotation(t *testing.T) {
 
 	invalidConfigMapList := []string{"unknown/configMap", "unknown/config/map"}
 	for _, configmap := range invalidConfigMapList {
-
 		data := map[string]string{}
 		data[parser.GetAnnotationWithPrefix("fastcgi-params-configmap")] = configmap
 		ing.SetAnnotations(data)
@@ -239,11 +238,9 @@ func TestParseFastCGIParamsConfigMapAnnotationWithDifferentNS(t *testing.T) {
 	if err == nil {
 		t.Errorf("Different namespace configmap should return an error")
 	}
-
 }
 
 func TestConfigEquality(t *testing.T) {
-
 	var nilConfig *Config
 
 	config := Config{
@@ -297,7 +294,6 @@ func TestConfigEquality(t *testing.T) {
 }
 
 func Test_fastcgi_Parse(t *testing.T) {
-
 	tests := []struct {
 		name          string
 		index         string
@@ -378,7 +374,6 @@ func Test_fastcgi_Parse(t *testing.T) {
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
-
 			ing := buildIngress()
 
 			data := map[string]string{}
diff --git a/internal/ingress/annotations/globalratelimit/main.go b/internal/ingress/annotations/globalratelimit/main.go
index 41f58fd57..0aec29f66 100644
--- a/internal/ingress/annotations/globalratelimit/main.go
+++ b/internal/ingress/annotations/globalratelimit/main.go
@@ -25,7 +25,6 @@ import (
 	"k8s.io/klog/v2"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
-	"k8s.io/ingress-nginx/internal/ingress/errors"
 	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 	"k8s.io/ingress-nginx/internal/net"
@@ -57,7 +56,7 @@ var globalRateLimitAnnotationConfig = parser.Annotation{
 			Documentation: `Configures a time window (i.e 1m) that the limit is applied`,
 		},
 		globalRateLimitKeyAnnotation: {
-			Validator: parser.ValidateRegex(*parser.NGINXVariable, true),
+			Validator: parser.ValidateRegex(parser.NGINXVariable, true),
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskHigh,
 			Documentation: `This annotation Configures a key for counting the samples. Defaults to $remote_addr. 
@@ -123,23 +122,23 @@ func (a globalratelimit) Parse(ing *networking.Ingress) (interface{}, error) {
 	config := &Config{}
 
 	limit, err := parser.GetIntAnnotation(globalRateLimitAnnotation, ing, a.annotationConfig.Annotations)
-	if err != nil && errors.IsInvalidContent(err) {
+	if err != nil && ing_errors.IsInvalidContent(err) {
 		return nil, err
 	}
 	rawWindowSize, err := parser.GetStringAnnotation(globalRateLimitWindowAnnotation, ing, a.annotationConfig.Annotations)
-	if err != nil && errors.IsValidationError(err) {
-		return config, ing_errors.LocationDenied{
+	if err != nil && ing_errors.IsValidationError(err) {
+		return config, ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("failed to parse 'global-rate-limit-window' value: %w", err),
 		}
 	}
 
-	if limit == 0 || len(rawWindowSize) == 0 {
+	if limit == 0 || rawWindowSize == "" {
 		return config, nil
 	}
 
 	windowSize, err := time.ParseDuration(rawWindowSize)
 	if err != nil {
-		return config, ing_errors.LocationDenied{
+		return config, ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("failed to parse 'global-rate-limit-window' value: %w", err),
 		}
 	}
@@ -148,12 +147,12 @@ func (a globalratelimit) Parse(ing *networking.Ingress) (interface{}, error) {
 	if err != nil {
 		klog.Warningf("invalid %s, defaulting to %s", globalRateLimitKeyAnnotation, defaultKey)
 	}
-	if len(key) == 0 {
+	if key == "" {
 		key = defaultKey
 	}
 
 	rawIgnoredCIDRs, err := parser.GetStringAnnotation(globalRateLimitIgnoredCidrsAnnotation, ing, a.annotationConfig.Annotations)
-	if err != nil && errors.IsInvalidContent(err) {
+	if err != nil && ing_errors.IsInvalidContent(err) {
 		return nil, err
 	}
 	ignoredCIDRs, err := net.ParseCIDRs(rawIgnoredCIDRs)
@@ -161,7 +160,7 @@ func (a globalratelimit) Parse(ing *networking.Ingress) (interface{}, error) {
 		return nil, err
 	}
 
-	config.Namespace = strings.Replace(string(ing.UID), "-", "", -1)
+	config.Namespace = strings.ReplaceAll(string(ing.UID), "-", "")
 	config.Limit = limit
 	config.WindowSize = int(windowSize.Seconds())
 	config.Key = key
diff --git a/internal/ingress/annotations/globalratelimit/main_test.go b/internal/ingress/annotations/globalratelimit/main_test.go
index 5d7922666..b1a7ab71b 100644
--- a/internal/ingress/annotations/globalratelimit/main_test.go
+++ b/internal/ingress/annotations/globalratelimit/main_test.go
@@ -30,8 +30,10 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
-const UID = "31285d47-b150-4dcf-bd6f-12c46d769f6e"
-const expectedUID = "31285d47b1504dcfbd6f12c46d769f6e"
+const (
+	UID         = "31285d47-b150-4dcf-bd6f-12c46d769f6e"
+	expectedUID = "31285d47b1504dcfbd6f12c46d769f6e"
+)
 
 func buildIngress() *networking.Ingress {
 	defaultBackend := networking.IngressBackend{
@@ -190,10 +192,19 @@ func TestGlobalRateLimiting(t *testing.T) {
 			t.Errorf("expected error '%v' but got '%v'", testCase.expectedErr, actualErr)
 		}
 
-		actualConfig := i.(*Config)
+		actualConfig, ok := i.(*Config)
+		if !ok {
+			t.Errorf("expected Config type but got %T", i)
+		}
 		if !testCase.expectedConfig.Equal(actualConfig) {
-			expectedJSON, _ := json.Marshal(testCase.expectedConfig)
-			actualJSON, _ := json.Marshal(actualConfig)
+			expectedJSON, err := json.Marshal(testCase.expectedConfig)
+			if err != nil {
+				t.Errorf("failed to marshal expected config: %v", err)
+			}
+			actualJSON, err := json.Marshal(actualConfig)
+			if err != nil {
+				t.Errorf("failed to marshal actual config: %v", err)
+			}
 			t.Errorf("%v: expected config '%s' but got '%s'", testCase.title, expectedJSON, actualJSON)
 		}
 	}
diff --git a/internal/ingress/annotations/http2pushpreload/main.go b/internal/ingress/annotations/http2pushpreload/main.go
index af9f90aa9..123940d9d 100644
--- a/internal/ingress/annotations/http2pushpreload/main.go
+++ b/internal/ingress/annotations/http2pushpreload/main.go
@@ -62,7 +62,7 @@ func (h2pp http2PushPreload) GetDocumentation() parser.AnnotationFields {
 	return h2pp.annotationConfig.Annotations
 }
 
-func (a http2PushPreload) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (h2pp http2PushPreload) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(h2pp.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, http2PushPreloadAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/ipallowlist/main.go b/internal/ingress/annotations/ipallowlist/main.go
index d9d454c97..23a3bd9e7 100644
--- a/internal/ingress/annotations/ipallowlist/main.go
+++ b/internal/ingress/annotations/ipallowlist/main.go
@@ -96,16 +96,15 @@ func (a ipallowlist) Parse(ing *networking.Ingress) (interface{}, error) {
 			return &SourceRange{CIDR: defaultAllowlistSourceRange}, nil
 		}
 
-		return &SourceRange{CIDR: defaultAllowlistSourceRange}, ing_errors.LocationDenied{
+		return &SourceRange{CIDR: defaultAllowlistSourceRange}, ing_errors.LocationDeniedError{
 			Reason: err,
 		}
-
 	}
 
 	values := strings.Split(val, ",")
 	ipnets, ips, err := net.ParseIPNets(values...)
 	if err != nil && len(ips) == 0 {
-		return &SourceRange{CIDR: defaultAllowlistSourceRange}, ing_errors.LocationDenied{
+		return &SourceRange{CIDR: defaultAllowlistSourceRange}, ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("the annotation does not contain a valid IP address or network: %w", err),
 		}
 	}
diff --git a/internal/ingress/annotations/ipdenylist/main.go b/internal/ingress/annotations/ipdenylist/main.go
index f17ce079a..e8f02fe50 100644
--- a/internal/ingress/annotations/ipdenylist/main.go
+++ b/internal/ingress/annotations/ipdenylist/main.go
@@ -93,16 +93,15 @@ func (a ipdenylist) Parse(ing *networking.Ingress) (interface{}, error) {
 			return &SourceRange{CIDR: defaultDenylistSourceRange}, nil
 		}
 
-		return &SourceRange{CIDR: defaultDenylistSourceRange}, ing_errors.LocationDenied{
+		return &SourceRange{CIDR: defaultDenylistSourceRange}, ing_errors.LocationDeniedError{
 			Reason: err,
 		}
-
 	}
 
 	values := strings.Split(val, ",")
 	ipnets, ips, err := net.ParseIPNets(values...)
 	if err != nil && len(ips) == 0 {
-		return &SourceRange{CIDR: defaultDenylistSourceRange}, ing_errors.LocationDenied{
+		return &SourceRange{CIDR: defaultDenylistSourceRange}, ing_errors.LocationDeniedError{
 			Reason: fmt.Errorf("the annotation does not contain a valid IP address or network: %w", err),
 		}
 	}
diff --git a/internal/ingress/annotations/loadbalancing/main_test.go b/internal/ingress/annotations/loadbalancing/main_test.go
index b0442c37f..a5205e523 100644
--- a/internal/ingress/annotations/loadbalancing/main_test.go
+++ b/internal/ingress/annotations/loadbalancing/main_test.go
@@ -54,6 +54,7 @@ func TestParse(t *testing.T) {
 
 	for _, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
+		//nolint:errcheck // Ignore the error since invalid cases will be checked with expected results
 		result, _ := ap.Parse(ing)
 		if result != testCase.expected {
 			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
diff --git a/internal/ingress/annotations/log/main.go b/internal/ingress/annotations/log/main.go
index ec08292a9..82d50bac3 100644
--- a/internal/ingress/annotations/log/main.go
+++ b/internal/ingress/annotations/log/main.go
@@ -101,7 +101,7 @@ func (l log) GetDocumentation() parser.AnnotationFields {
 	return l.annotationConfig.Annotations
 }
 
-func (a log) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (l log) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(l.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, logAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/log/main_test.go b/internal/ingress/annotations/log/main_test.go
index df97c2e5b..950612b5b 100644
--- a/internal/ingress/annotations/log/main_test.go
+++ b/internal/ingress/annotations/log/main_test.go
@@ -76,7 +76,10 @@ func TestIngressAccessLogConfig(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix(enableAccessLogAnnotation)] = "false"
 	ing.SetAnnotations(data)
 
-	log, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	log, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	nginxLogs, ok := log.(*Config)
 	if !ok {
 		t.Errorf("expected a Config type")
@@ -94,7 +97,10 @@ func TestIngressRewriteLogConfig(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix(enableRewriteLogAnnotation)] = "true"
 	ing.SetAnnotations(data)
 
-	log, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	log, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error parsing annotations %v", err)
+	}
 	nginxLogs, ok := log.(*Config)
 	if !ok {
 		t.Errorf("expected a Config type")
@@ -112,7 +118,10 @@ func TestInvalidBoolConfig(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix(enableRewriteLogAnnotation)] = "blo"
 	ing.SetAnnotations(data)
 
-	log, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	log, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	nginxLogs, ok := log.(*Config)
 	if !ok {
 		t.Errorf("expected a Config type")
diff --git a/internal/ingress/annotations/mirror/main.go b/internal/ingress/annotations/mirror/main.go
index 2d417dece..d51bdd27c 100644
--- a/internal/ingress/annotations/mirror/main.go
+++ b/internal/ingress/annotations/mirror/main.go
@@ -34,15 +34,13 @@ const (
 	mirrorHostAnnotation        = "mirror-host"
 )
 
-var (
-	OnOffRegex = regexp.MustCompile(`^(on|off)$`)
-)
+var OnOffRegex = regexp.MustCompile(`^(on|off)$`)
 
 var mirrorAnnotation = parser.Annotation{
 	Group: "mirror",
 	Annotations: parser.AnnotationFields{
 		mirrorRequestBodyAnnotation: {
-			Validator:     parser.ValidateRegex(*OnOffRegex, true),
+			Validator:     parser.ValidateRegex(OnOffRegex, true),
 			Scope:         parser.AnnotationScopeIngress,
 			Risk:          parser.AnnotationRiskLow,
 			Documentation: `This annotation defines if the request-body should be sent to the mirror backend. Can be 'on' or 'off'`,
diff --git a/internal/ingress/annotations/modsecurity/main.go b/internal/ingress/annotations/modsecurity/main.go
index 5a9aaa729..80ae78937 100644
--- a/internal/ingress/annotations/modsecurity/main.go
+++ b/internal/ingress/annotations/modsecurity/main.go
@@ -27,7 +27,7 @@ import (
 const (
 	modsecEnableAnnotation          = "enable-modsecurity"
 	modsecEnableOwaspCoreAnnotation = "enable-owasp-core-rules"
-	modesecTransactionIdAnnotation  = "modsecurity-transaction-id"
+	modesecTransactionIDAnnotation  = "modsecurity-transaction-id"
 	modsecSnippetAnnotation         = "modsecurity-snippet"
 )
 
@@ -46,8 +46,8 @@ var modsecurityAnnotation = parser.Annotation{
 			Risk:          parser.AnnotationRiskLow,
 			Documentation: `This annotation enables the OWASP Core Rule Set`,
 		},
-		modesecTransactionIdAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.NGINXVariable, true),
+		modesecTransactionIDAnnotation: {
+			Validator:     parser.ValidateRegex(parser.NGINXVariable, true),
 			Scope:         parser.AnnotationScopeIngress,
 			Risk:          parser.AnnotationRiskHigh,
 			Documentation: `This annotation enables passing an NGINX variable to ModSecurity.`,
@@ -98,9 +98,9 @@ func (modsec1 *Config) Equal(modsec2 *Config) bool {
 }
 
 // NewParser creates a new ModSecurity annotation parser
-func NewParser(resolver resolver.Resolver) parser.IngressAnnotation {
+func NewParser(r resolver.Resolver) parser.IngressAnnotation {
 	return modSecurity{
-		r:                resolver,
+		r:                r,
 		annotationConfig: modsecurityAnnotation,
 	}
 }
@@ -134,10 +134,10 @@ func (a modSecurity) Parse(ing *networking.Ingress) (interface{}, error) {
 		config.OWASPRules = false
 	}
 
-	config.TransactionID, err = parser.GetStringAnnotation(modesecTransactionIdAnnotation, ing, a.annotationConfig.Annotations)
+	config.TransactionID, err = parser.GetStringAnnotation(modesecTransactionIDAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		if errors.IsInvalidContent(err) {
-			klog.Warningf("annotation %s contains invalid directive, defaulting", modesecTransactionIdAnnotation)
+			klog.Warningf("annotation %s contains invalid directive, defaulting", modesecTransactionIDAnnotation)
 		}
 		config.TransactionID = ""
 	}
diff --git a/internal/ingress/annotations/modsecurity/main_test.go b/internal/ingress/annotations/modsecurity/main_test.go
index 2ddbdf7e3..0c9b3a9c7 100644
--- a/internal/ingress/annotations/modsecurity/main_test.go
+++ b/internal/ingress/annotations/modsecurity/main_test.go
@@ -69,8 +69,14 @@ func TestParse(t *testing.T) {
 
 	for _, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
-		result, _ := ap.Parse(ing)
-		config := result.(*Config)
+		result, err := ap.Parse(ing)
+		if err != nil {
+			t.Errorf("unexpected error: %v", err)
+		}
+		config, ok := result.(*Config)
+		if !ok {
+			t.Errorf("unexpected type: %T", result)
+		}
 		if !config.Equal(&testCase.expected) {
 			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
 		}
diff --git a/internal/ingress/annotations/opentelemetry/main.go b/internal/ingress/annotations/opentelemetry/main.go
index a029087da..ca9108548 100644
--- a/internal/ingress/annotations/opentelemetry/main.go
+++ b/internal/ingress/annotations/opentelemetry/main.go
@@ -51,7 +51,7 @@ var otelAnnotations = parser.Annotation{
 			Documentation: `This annotation enables or disables using spans from incoming requests as parent for created ones`,
 		},
 		otelOperationNameAnnotation: {
-			Validator:     parser.ValidateRegex(*regexOperationName, true),
+			Validator:     parser.ValidateRegex(regexOperationName, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation defines what operation name should be added to the span`,
@@ -75,7 +75,6 @@ type Config struct {
 
 // Equal tests for equality between two Config types
 func (bd1 *Config) Equal(bd2 *Config) bool {
-
 	if bd1.Set != bd2.Set {
 		return false
 	}
@@ -150,7 +149,7 @@ func (c opentelemetry) GetDocumentation() parser.AnnotationFields {
 	return c.annotationConfig.Annotations
 }
 
-func (a opentelemetry) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (c opentelemetry) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(c.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, otelAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/opentelemetry/main_test.go b/internal/ingress/annotations/opentelemetry/main_test.go
index c78ebc8b3..e5c1de0b3 100644
--- a/internal/ingress/annotations/opentelemetry/main_test.go
+++ b/internal/ingress/annotations/opentelemetry/main_test.go
@@ -26,6 +26,8 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const enableAnnotation = "true"
+
 func buildIngress() *networking.Ingress {
 	defaultBackend := networking.IngressBackend{
 		Service: &networking.IngressServiceBackend{
@@ -73,10 +75,13 @@ func TestIngressAnnotationOpentelemetrySetTrue(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(enableOpenTelemetryAnnotation)] = "true"
+	data[parser.GetAnnotationWithPrefix(enableOpenTelemetryAnnotation)] = enableAnnotation
 	ing.SetAnnotations(data)
 
-	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	val, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	openTelemetry, ok := val.(*Config)
 	if !ok {
 		t.Errorf("expected a Config type")
@@ -103,7 +108,10 @@ func TestIngressAnnotationOpentelemetrySetFalse(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix(enableOpenTelemetryAnnotation)] = "false"
 	ing.SetAnnotations(data)
 
-	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	val, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	openTelemetry, ok := val.(*Config)
 	if !ok {
 		t.Errorf("expected a Config type")
@@ -123,8 +131,8 @@ func TestIngressAnnotationOpentelemetryTrustSetTrue(t *testing.T) {
 
 	data := map[string]string{}
 	opName := "foo-op"
-	data[parser.GetAnnotationWithPrefix(enableOpenTelemetryAnnotation)] = "true"
-	data[parser.GetAnnotationWithPrefix(otelTrustSpanAnnotation)] = "true"
+	data[parser.GetAnnotationWithPrefix(enableOpenTelemetryAnnotation)] = enableAnnotation
+	data[parser.GetAnnotationWithPrefix(otelTrustSpanAnnotation)] = enableAnnotation
 	data[parser.GetAnnotationWithPrefix(otelOperationNameAnnotation)] = opName
 	ing.SetAnnotations(data)
 
@@ -163,7 +171,7 @@ func TestIngressAnnotationOpentelemetryWithBadOpName(t *testing.T) {
 
 	data := map[string]string{}
 	opName := "fooxpto_123$la;"
-	data[parser.GetAnnotationWithPrefix(enableOpenTelemetryAnnotation)] = "true"
+	data[parser.GetAnnotationWithPrefix(enableOpenTelemetryAnnotation)] = enableAnnotation
 	data[parser.GetAnnotationWithPrefix(otelOperationNameAnnotation)] = opName
 	ing.SetAnnotations(data)
 
@@ -180,7 +188,10 @@ func TestIngressAnnotationOpentelemetryUnset(t *testing.T) {
 	data := map[string]string{}
 	ing.SetAnnotations(data)
 
-	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	val, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	_, ok := val.(*Config)
 	if !ok {
 		t.Errorf("expected a Config type")
diff --git a/internal/ingress/annotations/opentracing/main.go b/internal/ingress/annotations/opentracing/main.go
index 7c8671f9d..9d7995a8a 100644
--- a/internal/ingress/annotations/opentracing/main.go
+++ b/internal/ingress/annotations/opentracing/main.go
@@ -89,13 +89,13 @@ func NewParser(r resolver.Resolver) parser.IngressAnnotation {
 	}
 }
 
-func (s opentracing) Parse(ing *networking.Ingress) (interface{}, error) {
-	enabled, err := parser.GetBoolAnnotation(enableOpentracingAnnotation, ing, s.annotationConfig.Annotations)
+func (o opentracing) Parse(ing *networking.Ingress) (interface{}, error) {
+	enabled, err := parser.GetBoolAnnotation(enableOpentracingAnnotation, ing, o.annotationConfig.Annotations)
 	if err != nil {
 		return &Config{}, nil
 	}
 
-	trustSpan, err := parser.GetBoolAnnotation(opentracingTrustSpanAnnotation, ing, s.annotationConfig.Annotations)
+	trustSpan, err := parser.GetBoolAnnotation(opentracingTrustSpanAnnotation, ing, o.annotationConfig.Annotations)
 	if err != nil {
 		return &Config{Set: true, Enabled: enabled}, nil
 	}
@@ -103,11 +103,11 @@ func (s opentracing) Parse(ing *networking.Ingress) (interface{}, error) {
 	return &Config{Set: true, Enabled: enabled, TrustSet: true, TrustEnabled: trustSpan}, nil
 }
 
-func (s opentracing) GetDocumentation() parser.AnnotationFields {
-	return s.annotationConfig.Annotations
+func (o opentracing) GetDocumentation() parser.AnnotationFields {
+	return o.annotationConfig.Annotations
 }
 
-func (a opentracing) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (o opentracing) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(o.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, opentracingAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/opentracing/main_test.go b/internal/ingress/annotations/opentracing/main_test.go
index b7b62ac9d..f59e60438 100644
--- a/internal/ingress/annotations/opentracing/main_test.go
+++ b/internal/ingress/annotations/opentracing/main_test.go
@@ -26,6 +26,8 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const enableAnnotation = "true"
+
 func buildIngress() *networking.Ingress {
 	defaultBackend := networking.IngressBackend{
 		Service: &networking.IngressServiceBackend{
@@ -73,10 +75,13 @@ func TestIngressAnnotationOpentracingSetTrue(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(enableOpentracingAnnotation)] = "true"
+	data[parser.GetAnnotationWithPrefix(enableOpentracingAnnotation)] = enableAnnotation
 	ing.SetAnnotations(data)
 
-	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	val, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error %v", err)
+	}
 	openTracing, ok := val.(*Config)
 	if !ok {
 		t.Errorf("expected a Config type")
@@ -95,7 +100,10 @@ func TestIngressAnnotationOpentracingSetFalse(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix(enableOpentracingAnnotation)] = "false"
 	ing.SetAnnotations(data)
 
-	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	val, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error %v", err)
+	}
 	openTracing, ok := val.(*Config)
 	if !ok {
 		t.Errorf("expected a Config type")
@@ -110,11 +118,14 @@ func TestIngressAnnotationOpentracingTrustSetTrue(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(enableOpentracingAnnotation)] = "true"
-	data[parser.GetAnnotationWithPrefix(opentracingTrustSpanAnnotation)] = "true"
+	data[parser.GetAnnotationWithPrefix(enableOpentracingAnnotation)] = enableAnnotation
+	data[parser.GetAnnotationWithPrefix(opentracingTrustSpanAnnotation)] = enableAnnotation
 	ing.SetAnnotations(data)
 
-	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	val, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error %v", err)
+	}
 	openTracing, ok := val.(*Config)
 	if !ok {
 		t.Errorf("expected a Config type")
@@ -136,7 +147,11 @@ func TestIngressAnnotationOpentracingUnset(t *testing.T) {
 	data := map[string]string{}
 	ing.SetAnnotations(data)
 
-	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	val, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
+
 	_, ok := val.(*Config)
 	if !ok {
 		t.Errorf("expected a Config type")
diff --git a/internal/ingress/annotations/parser/main.go b/internal/ingress/annotations/parser/main.go
index 951970e27..554ad9dde 100644
--- a/internal/ingress/annotations/parser/main.go
+++ b/internal/ingress/annotations/parser/main.go
@@ -118,7 +118,7 @@ func (a ingAnnotations) parseString(name string) (string, error) {
 	val, ok := a[name]
 	if ok {
 		s := normalizeString(val)
-		if len(s) == 0 {
+		if s == "" {
 			return "", errors.NewInvalidAnnotationContent(name, val)
 		}
 
@@ -248,13 +248,14 @@ func StringToURL(input string) (*url.URL, error) {
 		return nil, fmt.Errorf("%v is not a valid URL: %v", input, err)
 	}
 
-	if parsedURL.Scheme == "" {
+	switch {
+	case parsedURL.Scheme == "":
 		return nil, fmt.Errorf("url scheme is empty")
-	} else if parsedURL.Host == "" {
+	case parsedURL.Host == "":
 		return nil, fmt.Errorf("url host is empty")
-	} else if strings.Contains(parsedURL.Host, "..") {
+	case strings.Contains(parsedURL.Host, ".."):
 		return nil, fmt.Errorf("invalid url host")
+	default:
+		return parsedURL, nil
 	}
-
-	return parsedURL, nil
 }
diff --git a/internal/ingress/annotations/parser/main_test.go b/internal/ingress/annotations/parser/main_test.go
index beca49370..0f7ecb459 100644
--- a/internal/ingress/annotations/parser/main_test.go
+++ b/internal/ingress/annotations/parser/main_test.go
@@ -93,14 +93,16 @@ func TestGetStringAnnotation(t *testing.T) {
 		{"valid - A", "string", "A ", "A", false},
 		{"valid - B", "string", "	B", "B", false},
 		{"empty", "string", " ", "", true},
-		{"valid multiline", "string", `
+		{
+			"valid multiline", "string", `
 		rewrite (?i)/arcgis/rest/services/Utilities/Geometry/GeometryServer(.*)$ /arcgis/rest/services/Utilities/Geometry/GeometryServer$1 break;
 		rewrite (?i)/arcgis/services/Utilities/Geometry/GeometryServer(.*)$ /arcgis/services/Utilities/Geometry/GeometryServer$1 break;
 		`, `
 rewrite (?i)/arcgis/rest/services/Utilities/Geometry/GeometryServer(.*)$ /arcgis/rest/services/Utilities/Geometry/GeometryServer$1 break;
 rewrite (?i)/arcgis/services/Utilities/Geometry/GeometryServer(.*)$ /arcgis/services/Utilities/Geometry/GeometryServer$1 break;
 `,
-			false},
+			false,
+		},
 	}
 
 	data := map[string]string{}
@@ -213,8 +215,10 @@ func TestGetIntAnnotation(t *testing.T) {
 
 func TestStringToURL(t *testing.T) {
 	validURL := "http://bar.foo.com/external-auth"
-	validParsedURL, _ := url.Parse(validURL)
-
+	validParsedURL, err := url.Parse(validURL)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	tests := []struct {
 		title   string
 		url     string
diff --git a/internal/ingress/annotations/parser/validators.go b/internal/ingress/annotations/parser/validators.go
index e14b486eb..ab9b4799f 100644
--- a/internal/ingress/annotations/parser/validators.go
+++ b/internal/ingress/annotations/parser/validators.go
@@ -52,7 +52,7 @@ var (
 var IsValidRegex = regexp.MustCompile("^[/" + alphaNumericChars + regexEnabledChars + "]*$")
 
 // SizeRegex validates sizes understood by NGINX, like 1000, 100k, 1000M
-var SizeRegex = regexp.MustCompile("^(?i)[0-9]+[bkmg]?$")
+var SizeRegex = regexp.MustCompile(`^(?i)\d+[bkmg]?$`)
 
 // URLRegex is used to validate a URL but with only a specific set of characters:
 // It is alphanumericChar + ":", "?", "&"
@@ -103,7 +103,7 @@ func ValidateServerName(value string) error {
 // ValidateRegex receives a regex as an argument and uses it to validate
 // the value of the field.
 // Annotation can define if the spaces should be trimmed before validating the value
-func ValidateRegex(regex regexp.Regexp, removeSpace bool) AnnotationValidator {
+func ValidateRegex(regex *regexp.Regexp, removeSpace bool) AnnotationValidator {
 	return func(s string) error {
 		if removeSpace {
 			s = strings.ReplaceAll(s, " ", "")
@@ -117,7 +117,7 @@ func ValidateRegex(regex regexp.Regexp, removeSpace bool) AnnotationValidator {
 
 // ValidateOptions receives an array of valid options that can be the value of annotation.
 // If no valid option is found, it will return an error
-func ValidateOptions(options []string, caseSensitive bool, trimSpace bool) AnnotationValidator {
+func ValidateOptions(options []string, caseSensitive, trimSpace bool) AnnotationValidator {
 	return func(s string) error {
 		if trimSpace {
 			s = strings.TrimSpace(s)
@@ -161,7 +161,7 @@ func ValidateDuration(value string) error {
 // ValidateNull always return null values and should not be widely used.
 // It is used on the "snippet" annotations, as it is up to the admin to allow its
 // usage, knowing it can be critical!
-func ValidateNull(value string) error {
+func ValidateNull(_ string) error {
 	return nil
 }
 
diff --git a/internal/ingress/annotations/parser/validators_test.go b/internal/ingress/annotations/parser/validators_test.go
index 2aa6cec37..e7aeb15ca 100644
--- a/internal/ingress/annotations/parser/validators_test.go
+++ b/internal/ingress/annotations/parser/validators_test.go
@@ -223,7 +223,6 @@ func Test_checkAnnotation(t *testing.T) {
 }
 
 func TestCheckAnnotationRisk(t *testing.T) {
-
 	tests := []struct {
 		name        string
 		annotations map[string]string
diff --git a/internal/ingress/annotations/proxy/main.go b/internal/ingress/annotations/proxy/main.go
index a2d10ca90..7fb1c814e 100644
--- a/internal/ingress/annotations/proxy/main.go
+++ b/internal/ingress/annotations/proxy/main.go
@@ -45,9 +45,7 @@ const (
 	proxyMaxTempFileSizeAnnotation     = "proxy-max-temp-file-size"
 )
 
-var (
-	validUpstreamAnnotation = regexp.MustCompile(`^((error|timeout|invalid_header|http_500|http_502|http_503|http_504|http_403|http_404|http_429|non_idempotent|off)\s?)+$`)
-)
+var validUpstreamAnnotation = regexp.MustCompile(`^((error|timeout|invalid_header|http_500|http_502|http_503|http_504|http_403|http_404|http_429|non_idempotent|off)\s?)+$`)
 
 var proxyAnnotations = parser.Annotation{
 	Group: "backend",
@@ -78,32 +76,32 @@ var proxyAnnotations = parser.Annotation{
 			By default proxy buffers number is set as 4`,
 		},
 		proxyBufferSizeAnnotation: {
-			Validator: parser.ValidateRegex(*parser.SizeRegex, true),
+			Validator: parser.ValidateRegex(parser.SizeRegex, true),
 			Scope:     parser.AnnotationScopeLocation,
 			Risk:      parser.AnnotationRiskLow,
 			Documentation: `This annotation sets the size of the buffer proxy_buffer_size used for reading the first part of the response received from the proxied server. 
 			By default proxy buffer size is set as "4k".`,
 		},
 		proxyCookiePathAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.URLIsValidRegex, true),
+			Validator:     parser.ValidateRegex(parser.URLIsValidRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation sets a text that should be changed in the path attribute of the "Set-Cookie" header fields of a proxied server response.`,
 		},
 		proxyCookieDomainAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Validator:     parser.ValidateRegex(parser.BasicCharsRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation ets a text that should be changed in the domain attribute of the "Set-Cookie" header fields of a proxied server response.`,
 		},
 		proxyBodySizeAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.SizeRegex, true),
+			Validator:     parser.ValidateRegex(parser.SizeRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation allows setting the maximum allowed size of a client request body.`,
 		},
 		proxyNextUpstreamAnnotation: {
-			Validator: parser.ValidateRegex(*validUpstreamAnnotation, false),
+			Validator: parser.ValidateRegex(validUpstreamAnnotation, false),
 			Scope:     parser.AnnotationScopeLocation,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation defines when the next upstream should be used. 
@@ -129,13 +127,13 @@ var proxyAnnotations = parser.Annotation{
 			Documentation: `This annotation enables or disables buffering of a client request body.`,
 		},
 		proxyRedirectFromAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.URLIsValidRegex, true),
+			Validator:     parser.ValidateRegex(parser.URLIsValidRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `The annotations proxy-redirect-from and proxy-redirect-to will set the first and second parameters of NGINX's proxy_redirect directive respectively`,
 		},
 		proxyRedirectToAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.URLIsValidRegex, true),
+			Validator:     parser.ValidateRegex(parser.URLIsValidRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `The annotations proxy-redirect-from and proxy-redirect-to will set the first and second parameters of NGINX's proxy_redirect directive respectively`,
@@ -153,7 +151,7 @@ var proxyAnnotations = parser.Annotation{
 			Documentation: `This annotations sets the HTTP protocol version for proxying. Can be "1.0" or "1.1".`,
 		},
 		proxyMaxTempFileSizeAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.SizeRegex, true),
+			Validator:     parser.ValidateRegex(parser.SizeRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskLow,
 			Documentation: `This annotation defines the maximum size of a temporary file when buffering responses.`,
@@ -253,7 +251,8 @@ type proxy struct {
 
 // NewParser creates a new reverse proxy configuration annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return proxy{r: r,
+	return proxy{
+		r:                r,
 		annotationConfig: proxyAnnotations,
 	}
 }
diff --git a/internal/ingress/annotations/proxy/main_test.go b/internal/ingress/annotations/proxy/main_test.go
index fa185551b..9446ae970 100644
--- a/internal/ingress/annotations/proxy/main_test.go
+++ b/internal/ingress/annotations/proxy/main_test.go
@@ -28,6 +28,12 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	off                  = "off"
+	proxyHTTPVersion     = "1.0"
+	proxyMaxTempFileSize = "128k"
+)
+
 func buildIngress() *networking.Ingress {
 	defaultBackend := networking.IngressBackend{
 		Service: &networking.IngressServiceBackend{
@@ -87,7 +93,7 @@ func (m mockBackend) GetDefaultBackend() defaults.Backend {
 		ProxyNextUpstreamTimeout: 0,
 		ProxyNextUpstreamTries:   3,
 		ProxyRequestBuffering:    "on",
-		ProxyBuffering:           "off",
+		ProxyBuffering:           off,
 		ProxyHTTPVersion:         "1.1",
 		ProxyMaxTempFileSize:     "1024m",
 	}
@@ -103,13 +109,13 @@ func TestProxy(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix("proxy-buffers-number")] = "8"
 	data[parser.GetAnnotationWithPrefix("proxy-buffer-size")] = "1k"
 	data[parser.GetAnnotationWithPrefix("proxy-body-size")] = "2k"
-	data[parser.GetAnnotationWithPrefix("proxy-next-upstream")] = "off"
+	data[parser.GetAnnotationWithPrefix("proxy-next-upstream")] = off
 	data[parser.GetAnnotationWithPrefix("proxy-next-upstream-timeout")] = "5"
 	data[parser.GetAnnotationWithPrefix("proxy-next-upstream-tries")] = "3"
-	data[parser.GetAnnotationWithPrefix("proxy-request-buffering")] = "off"
+	data[parser.GetAnnotationWithPrefix("proxy-request-buffering")] = off
 	data[parser.GetAnnotationWithPrefix("proxy-buffering")] = "on"
-	data[parser.GetAnnotationWithPrefix("proxy-http-version")] = "1.0"
-	data[parser.GetAnnotationWithPrefix("proxy-max-temp-file-size")] = "128k"
+	data[parser.GetAnnotationWithPrefix("proxy-http-version")] = proxyHTTPVersion
+	data[parser.GetAnnotationWithPrefix("proxy-max-temp-file-size")] = proxyMaxTempFileSize
 	ing.SetAnnotations(data)
 
 	i, err := NewParser(mockBackend{}).Parse(ing)
@@ -138,7 +144,7 @@ func TestProxy(t *testing.T) {
 	if p.BodySize != "2k" {
 		t.Errorf("expected 2k as body-size but returned %v", p.BodySize)
 	}
-	if p.NextUpstream != "off" {
+	if p.NextUpstream != off {
 		t.Errorf("expected off as next-upstream but returned %v", p.NextUpstream)
 	}
 	if p.NextUpstreamTimeout != 5 {
@@ -147,16 +153,16 @@ func TestProxy(t *testing.T) {
 	if p.NextUpstreamTries != 3 {
 		t.Errorf("expected 3 as next-upstream-tries but returned %v", p.NextUpstreamTries)
 	}
-	if p.RequestBuffering != "off" {
+	if p.RequestBuffering != off {
 		t.Errorf("expected off as request-buffering but returned %v", p.RequestBuffering)
 	}
 	if p.ProxyBuffering != "on" {
 		t.Errorf("expected on as proxy-buffering but returned %v", p.ProxyBuffering)
 	}
-	if p.ProxyHTTPVersion != "1.0" {
+	if p.ProxyHTTPVersion != proxyHTTPVersion {
 		t.Errorf("expected 1.0 as proxy-http-version but returned %v", p.ProxyHTTPVersion)
 	}
-	if p.ProxyMaxTempFileSize != "128k" {
+	if p.ProxyMaxTempFileSize != proxyMaxTempFileSize {
 		t.Errorf("expected 128k as proxy-max-temp-file-size but returned %v", p.ProxyMaxTempFileSize)
 	}
 }
@@ -176,8 +182,8 @@ func TestProxyComplex(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix("proxy-next-upstream-tries")] = "3"
 	data[parser.GetAnnotationWithPrefix("proxy-request-buffering")] = "off"
 	data[parser.GetAnnotationWithPrefix("proxy-buffering")] = "on"
-	data[parser.GetAnnotationWithPrefix("proxy-http-version")] = "1.0"
-	data[parser.GetAnnotationWithPrefix("proxy-max-temp-file-size")] = "128k"
+	data[parser.GetAnnotationWithPrefix("proxy-http-version")] = proxyHTTPVersion
+	data[parser.GetAnnotationWithPrefix("proxy-max-temp-file-size")] = proxyMaxTempFileSize
 	ing.SetAnnotations(data)
 
 	i, err := NewParser(mockBackend{}).Parse(ing)
@@ -221,10 +227,10 @@ func TestProxyComplex(t *testing.T) {
 	if p.ProxyBuffering != "on" {
 		t.Errorf("expected on as proxy-buffering but returned %v", p.ProxyBuffering)
 	}
-	if p.ProxyHTTPVersion != "1.0" {
+	if p.ProxyHTTPVersion != proxyHTTPVersion {
 		t.Errorf("expected 1.0 as proxy-http-version but returned %v", p.ProxyHTTPVersion)
 	}
-	if p.ProxyMaxTempFileSize != "128k" {
+	if p.ProxyMaxTempFileSize != proxyMaxTempFileSize {
 		t.Errorf("expected 128k as proxy-max-temp-file-size but returned %v", p.ProxyMaxTempFileSize)
 	}
 }
diff --git a/internal/ingress/annotations/proxyssl/main.go b/internal/ingress/annotations/proxyssl/main.go
index 40ee18aa0..0e854cd21 100644
--- a/internal/ingress/annotations/proxyssl/main.go
+++ b/internal/ingress/annotations/proxyssl/main.go
@@ -24,7 +24,6 @@ import (
 
 	networking "k8s.io/api/networking/v1"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
-	"k8s.io/ingress-nginx/internal/ingress/errors"
 	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 	"k8s.io/ingress-nginx/internal/k8s"
@@ -42,7 +41,7 @@ const (
 var (
 	proxySSLOnOffRegex    = regexp.MustCompile(`^(on|off)$`)
 	proxySSLProtocolRegex = regexp.MustCompile(`^(SSLv2|SSLv3|TLSv1|TLSv1\.1|TLSv1\.2|TLSv1\.3| )*$`)
-	proxySSLCiphersRegex  = regexp.MustCompile(`^[A-Za-z0-9\+\:\_\-\!]*$`)
+	proxySSLCiphersRegex  = regexp.MustCompile(`^[A-Za-z0-9\+:\_\-!]*$`)
 )
 
 const (
@@ -59,7 +58,7 @@ var proxySSLAnnotation = parser.Annotation{
 	Group: "proxy",
 	Annotations: parser.AnnotationFields{
 		proxySSLSecretAnnotation: {
-			Validator: parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Validator: parser.ValidateRegex(parser.BasicCharsRegex, true),
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation specifies a Secret with the certificate tls.crt, key tls.key in PEM format used for authentication to a proxied HTTPS server. 
@@ -68,14 +67,14 @@ var proxySSLAnnotation = parser.Annotation{
 			Just secrets on the same namespace of the ingress can be used.`,
 		},
 		proxySSLCiphersAnnotation: {
-			Validator: parser.ValidateRegex(*proxySSLCiphersRegex, true),
+			Validator: parser.ValidateRegex(proxySSLCiphersRegex, true),
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation Specifies the enabled ciphers for requests to a proxied HTTPS server. 
 			The ciphers are specified in the format understood by the OpenSSL library.`,
 		},
 		proxySSLProtocolsAnnotation: {
-			Validator:     parser.ValidateRegex(*proxySSLProtocolRegex, true),
+			Validator:     parser.ValidateRegex(proxySSLProtocolRegex, true),
 			Scope:         parser.AnnotationScopeIngress,
 			Risk:          parser.AnnotationRiskLow,
 			Documentation: `This annotation enables the specified protocols for requests to a proxied HTTPS server.`,
@@ -88,7 +87,7 @@ var proxySSLAnnotation = parser.Annotation{
 			This value is also passed through SNI when a connection is established to the proxied HTTPS server.`,
 		},
 		proxySSLVerifyAnnotation: {
-			Validator:     parser.ValidateRegex(*proxySSLOnOffRegex, true),
+			Validator:     parser.ValidateRegex(proxySSLOnOffRegex, true),
 			Scope:         parser.AnnotationScopeIngress,
 			Risk:          parser.AnnotationRiskLow,
 			Documentation: `This annotation enables or disables verification of the proxied HTTPS server certificate. (default: off)`,
@@ -100,7 +99,7 @@ var proxySSLAnnotation = parser.Annotation{
 			Documentation: `This annotation Sets the verification depth in the proxied HTTPS server certificates chain. (default: 1).`,
 		},
 		proxySSLServerNameAnnotation: {
-			Validator:     parser.ValidateRegex(*proxySSLOnOffRegex, true),
+			Validator:     parser.ValidateRegex(proxySSLOnOffRegex, true),
 			Scope:         parser.AnnotationScopeIngress,
 			Risk:          parser.AnnotationRiskLow,
 			Documentation: `This annotation enables passing of the server name through TLS Server Name Indication extension (SNI, RFC 6066) when establishing a connection with the proxied HTTPS server.`,
@@ -150,10 +149,11 @@ func (pssl1 *Config) Equal(pssl2 *Config) bool {
 }
 
 // NewParser creates a new TLS authentication annotation parser
-func NewParser(resolver resolver.Resolver) parser.IngressAnnotation {
+func NewParser(r resolver.Resolver) parser.IngressAnnotation {
 	return proxySSL{
-		r:                resolver,
-		annotationConfig: proxySSLAnnotation}
+		r:                r,
+		annotationConfig: proxySSLAnnotation,
+	}
 }
 
 type proxySSL struct {
@@ -208,13 +208,13 @@ func (p proxySSL) Parse(ing *networking.Ingress) (interface{}, error) {
 	proxyCert, err := p.r.GetAuthCertificate(proxysslsecret)
 	if err != nil {
 		e := fmt.Errorf("error obtaining certificate: %w", err)
-		return &Config{}, ing_errors.LocationDenied{Reason: e}
+		return &Config{}, ing_errors.LocationDeniedError{Reason: e}
 	}
 	config.AuthSSLCert = *proxyCert
 
 	config.Ciphers, err = parser.GetStringAnnotation(proxySSLCiphersAnnotation, ing, p.annotationConfig.Annotations)
 	if err != nil {
-		if errors.IsValidationError(err) {
+		if ing_errors.IsValidationError(err) {
 			klog.Warningf("invalid value passed to proxy-ssl-ciphers, defaulting to %s", defaultProxySSLCiphers)
 		}
 		config.Ciphers = defaultProxySSLCiphers
@@ -222,7 +222,7 @@ func (p proxySSL) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	config.Protocols, err = parser.GetStringAnnotation(proxySSLProtocolsAnnotation, ing, p.annotationConfig.Annotations)
 	if err != nil {
-		if errors.IsValidationError(err) {
+		if ing_errors.IsValidationError(err) {
 			klog.Warningf("invalid value passed to proxy-ssl-protocols, defaulting to %s", defaultProxySSLProtocols)
 		}
 		config.Protocols = defaultProxySSLProtocols
@@ -232,7 +232,7 @@ func (p proxySSL) Parse(ing *networking.Ingress) (interface{}, error) {
 
 	config.ProxySSLName, err = parser.GetStringAnnotation(proxySSLNameAnnotation, ing, p.annotationConfig.Annotations)
 	if err != nil {
-		if errors.IsValidationError(err) {
+		if ing_errors.IsValidationError(err) {
 			klog.Warningf("invalid value passed to proxy-ssl-name, defaulting to empty")
 		}
 		config.ProxySSLName = ""
@@ -260,7 +260,7 @@ func (p proxySSL) GetDocumentation() parser.AnnotationFields {
 	return p.annotationConfig.Annotations
 }
 
-func (a proxySSL) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (p proxySSL) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(p.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, proxySSLAnnotation.Annotations)
 }
diff --git a/internal/ingress/annotations/proxyssl/main_test.go b/internal/ingress/annotations/proxyssl/main_test.go
index edd65343e..a20c6813d 100644
--- a/internal/ingress/annotations/proxyssl/main_test.go
+++ b/internal/ingress/annotations/proxyssl/main_test.go
@@ -27,6 +27,14 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const (
+	defaultDemoSecret = "default/demo-secret"
+	proxySslCiphers   = "HIGH:-SHA"
+	off               = "off"
+	sslServerName     = "w00t"
+	defaultProtocol   = "SSLv2 TLSv1 TLSv1.2 TLSv1.3"
+)
+
 func buildIngress() *networking.Ingress {
 	defaultBackend := networking.IngressBackend{
 		Service: &networking.IngressServiceBackend{
@@ -77,28 +85,27 @@ type mockSecret struct {
 
 // GetAuthCertificate from mockSecret mocks the GetAuthCertificate for backend certificate authentication
 func (m mockSecret) GetAuthCertificate(name string) (*resolver.AuthSSLCert, error) {
-	if name != "default/demo-secret" {
+	if name != defaultDemoSecret {
 		return nil, errors.Errorf("there is no secret with name %v", name)
 	}
 
 	return &resolver.AuthSSLCert{
-		Secret:     "default/demo-secret",
+		Secret:     defaultDemoSecret,
 		CAFileName: "/ssl/ca.crt",
 		CASHA:      "abc",
 	}, nil
-
 }
 
 func TestAnnotations(t *testing.T) {
 	ing := buildIngress()
 	data := map[string]string{}
 
-	data[parser.GetAnnotationWithPrefix(proxySSLSecretAnnotation)] = "default/demo-secret"
-	data[parser.GetAnnotationWithPrefix("proxy-ssl-ciphers")] = "HIGH:-SHA"
+	data[parser.GetAnnotationWithPrefix(proxySSLSecretAnnotation)] = defaultDemoSecret
+	data[parser.GetAnnotationWithPrefix("proxy-ssl-ciphers")] = proxySslCiphers
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-name")] = "$host"
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-protocols")] = "TLSv1.3 SSLv2 TLSv1   TLSv1.2"
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-server-name")] = "on"
-	data[parser.GetAnnotationWithPrefix("proxy-ssl-session-reuse")] = "off"
+	data[parser.GetAnnotationWithPrefix("proxy-ssl-session-reuse")] = off
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-verify")] = "on"
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-verify-depth")] = "3"
 
@@ -115,7 +122,7 @@ func TestAnnotations(t *testing.T) {
 		t.Errorf("expected *Config but got %v", u)
 	}
 
-	secret, err := fakeSecret.GetAuthCertificate("default/demo-secret")
+	secret, err := fakeSecret.GetAuthCertificate(defaultDemoSecret)
 	if err != nil {
 		t.Errorf("unexpected error getting secret %v", err)
 	}
@@ -123,11 +130,11 @@ func TestAnnotations(t *testing.T) {
 	if u.AuthSSLCert.Secret != secret.Secret {
 		t.Errorf("expected %v but got %v", secret.Secret, u.AuthSSLCert.Secret)
 	}
-	if u.Ciphers != "HIGH:-SHA" {
-		t.Errorf("expected %v but got %v", "HIGH:-SHA", u.Ciphers)
+	if u.Ciphers != proxySslCiphers {
+		t.Errorf("expected %v but got %v", proxySslCiphers, u.Ciphers)
 	}
-	if u.Protocols != "SSLv2 TLSv1 TLSv1.2 TLSv1.3" {
-		t.Errorf("expected %v but got %v", "SSLv2 TLSv1 TLSv1.2 TLSv1.3", u.Protocols)
+	if u.Protocols != defaultProtocol {
+		t.Errorf("expected %v but got %v", defaultProtocol, u.Protocols)
 	}
 	if u.Verify != "on" {
 		t.Errorf("expected %v but got %v", "on", u.Verify)
@@ -141,7 +148,6 @@ func TestAnnotations(t *testing.T) {
 	if u.ProxySSLServerName != "on" {
 		t.Errorf("expected %v but got %v", "on", u.ProxySSLServerName)
 	}
-
 }
 
 func TestInvalidAnnotations(t *testing.T) {
@@ -172,11 +178,11 @@ func TestInvalidAnnotations(t *testing.T) {
 	}
 
 	// Invalid optional Annotations
-	data[parser.GetAnnotationWithPrefix("proxy-ssl-secret")] = "default/demo-secret"
+	data[parser.GetAnnotationWithPrefix("proxy-ssl-secret")] = defaultDemoSecret
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-protocols")] = "TLSv111 SSLv1"
-	data[parser.GetAnnotationWithPrefix("proxy-ssl-server-name")] = "w00t"
-	data[parser.GetAnnotationWithPrefix("proxy-ssl-session-reuse")] = "w00t"
-	data[parser.GetAnnotationWithPrefix("proxy-ssl-verify")] = "w00t"
+	data[parser.GetAnnotationWithPrefix("proxy-ssl-server-name")] = sslServerName
+	data[parser.GetAnnotationWithPrefix("proxy-ssl-session-reuse")] = sslServerName
+	data[parser.GetAnnotationWithPrefix("proxy-ssl-verify")] = sslServerName
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-verify-depth")] = "abcd"
 	ing.SetAnnotations(data)
 
@@ -207,21 +213,15 @@ func TestEquals(t *testing.T) {
 	cfg1 := &Config{}
 	cfg2 := &Config{}
 
-	// Same config
-	result := cfg1.Equal(cfg1)
-	if result != true {
-		t.Errorf("Expected true")
-	}
-
 	// compare nil
-	result = cfg1.Equal(nil)
+	result := cfg1.Equal(nil)
 	if result != false {
 		t.Errorf("Expected false")
 	}
 
 	// Different Certs
 	sslCert1 := resolver.AuthSSLCert{
-		Secret:     "default/demo-secret",
+		Secret:     defaultDemoSecret,
 		CAFileName: "/ssl/ca.crt",
 		CASHA:      "abc",
 	}
@@ -240,7 +240,7 @@ func TestEquals(t *testing.T) {
 
 	// Different Ciphers
 	cfg1.Ciphers = "DEFAULT"
-	cfg2.Ciphers = "HIGH:-SHA"
+	cfg2.Ciphers = proxySslCiphers
 	result = cfg1.Equal(cfg2)
 	if result != false {
 		t.Errorf("Expected false")
@@ -248,22 +248,22 @@ func TestEquals(t *testing.T) {
 	cfg2.Ciphers = "DEFAULT"
 
 	// Different Protocols
-	cfg1.Protocols = "SSLv2 TLSv1 TLSv1.2 TLSv1.3"
+	cfg1.Protocols = defaultProtocol
 	cfg2.Protocols = "SSLv3 TLSv1 TLSv1.2 TLSv1.3"
 	result = cfg1.Equal(cfg2)
 	if result != false {
 		t.Errorf("Expected false")
 	}
-	cfg2.Protocols = "SSLv2 TLSv1 TLSv1.2 TLSv1.3"
+	cfg2.Protocols = defaultProtocol
 
 	// Different Verify
-	cfg1.Verify = "off"
+	cfg1.Verify = off
 	cfg2.Verify = "on"
 	result = cfg1.Equal(cfg2)
 	if result != false {
 		t.Errorf("Expected false")
 	}
-	cfg2.Verify = "off"
+	cfg2.Verify = off
 
 	// Different VerifyDepth
 	cfg1.VerifyDepth = 1
@@ -275,13 +275,13 @@ func TestEquals(t *testing.T) {
 	cfg2.VerifyDepth = 1
 
 	// Different ProxySSLServerName
-	cfg1.ProxySSLServerName = "off"
+	cfg1.ProxySSLServerName = off
 	cfg2.ProxySSLServerName = "on"
 	result = cfg1.Equal(cfg2)
 	if result != false {
 		t.Errorf("Expected false")
 	}
-	cfg2.ProxySSLServerName = "off"
+	cfg2.ProxySSLServerName = off
 
 	// Equal Configs
 	result = cfg1.Equal(cfg2)
diff --git a/internal/ingress/annotations/ratelimit/main.go b/internal/ingress/annotations/ratelimit/main.go
index 39161a2c0..e79c698bf 100644
--- a/internal/ingress/annotations/ratelimit/main.go
+++ b/internal/ingress/annotations/ratelimit/main.go
@@ -288,7 +288,7 @@ func (a ratelimit) Parse(ing *networking.Ingress) (interface{}, error) {
 
 func encode(s string) string {
 	str := base64.URLEncoding.EncodeToString([]byte(s))
-	return strings.Replace(str, "=", "", -1)
+	return strings.ReplaceAll(str, "=", "")
 }
 
 func (a ratelimit) GetDocumentation() parser.AnnotationFields {
diff --git a/internal/ingress/annotations/redirect/redirect.go b/internal/ingress/annotations/redirect/redirect.go
index 89513c83c..b58e35171 100644
--- a/internal/ingress/annotations/redirect/redirect.go
+++ b/internal/ingress/annotations/redirect/redirect.go
@@ -54,14 +54,14 @@ var redirectAnnotations = parser.Annotation{
 			Documentation: `In some scenarios is required to redirect from www.domain.com to domain.com or vice versa. To enable this feature use this annotation.`,
 		},
 		temporalRedirectAnnotation: {
-			Validator: parser.ValidateRegex(*parser.URLIsValidRegex, false),
+			Validator: parser.ValidateRegex(parser.URLIsValidRegex, false),
 			Scope:     parser.AnnotationScopeLocation,
 			Risk:      parser.AnnotationRiskMedium, // Medium, as it allows arbitrary URLs that needs to be validated
 			Documentation: `This annotation allows you to return a temporal redirect (Return Code 302) instead of sending data to the upstream. 
 			For example setting this annotation to https://www.google.com would redirect everything to Google with a Return Code of 302 (Moved Temporarily).`,
 		},
 		permanentRedirectAnnotation: {
-			Validator: parser.ValidateRegex(*parser.URLIsValidRegex, false),
+			Validator: parser.ValidateRegex(parser.URLIsValidRegex, false),
 			Scope:     parser.AnnotationScopeLocation,
 			Risk:      parser.AnnotationRiskMedium, // Medium, as it allows arbitrary URLs that needs to be validated
 			Documentation: `This annotation allows to return a permanent redirect (Return Code 301) instead of sending data to the upstream. 
@@ -174,11 +174,11 @@ func isValidURL(s string) error {
 	return nil
 }
 
-func (a redirect) GetDocumentation() parser.AnnotationFields {
-	return a.annotationConfig.Annotations
+func (r redirect) GetDocumentation() parser.AnnotationFields {
+	return r.annotationConfig.Annotations
 }
 
-func (a redirect) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (r redirect) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(r.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, redirectAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/redirect/redirect_test.go b/internal/ingress/annotations/redirect/redirect_test.go
index 5a61f364d..bd2f98211 100644
--- a/internal/ingress/annotations/redirect/redirect_test.go
+++ b/internal/ingress/annotations/redirect/redirect_test.go
@@ -136,7 +136,6 @@ func TestTemporalRedirect(t *testing.T) {
 }
 
 func TestIsValidURL(t *testing.T) {
-
 	invalid := "ok.com"
 	urlParse, err := url.Parse(invalid)
 	if err != nil {
diff --git a/internal/ingress/annotations/rewrite/main.go b/internal/ingress/annotations/rewrite/main.go
index 84dc93bf0..cd9ed3993 100644
--- a/internal/ingress/annotations/rewrite/main.go
+++ b/internal/ingress/annotations/rewrite/main.go
@@ -40,7 +40,7 @@ var rewriteAnnotations = parser.Annotation{
 	Group: "rewrite",
 	Annotations: parser.AnnotationFields{
 		rewriteTargetAnnotation: {
-			Validator: parser.ValidateRegex(*parser.RegexPathWithCapture, false),
+			Validator: parser.ValidateRegex(parser.RegexPathWithCapture, false),
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation allows to specify the target URI where the traffic must be redirected. It can contain regular characters and captured 
@@ -72,7 +72,7 @@ var rewriteAnnotations = parser.Annotation{
 			the pathType should also be defined as 'ImplementationSpecific'.`,
 		},
 		appRootAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.RegexPathWithCapture, false),
+			Validator:     parser.ValidateRegex(parser.RegexPathWithCapture, false),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation defines the Application Root that the Controller must redirect if it's in / context`,
diff --git a/internal/ingress/annotations/rewrite/main_test.go b/internal/ingress/annotations/rewrite/main_test.go
index 6b97d2e01..b68b901b4 100644
--- a/internal/ingress/annotations/rewrite/main_test.go
+++ b/internal/ingress/annotations/rewrite/main_test.go
@@ -120,7 +120,10 @@ func TestSSLRedirect(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix("rewrite-target")] = defRoute
 	ing.SetAnnotations(data)
 
-	i, _ := NewParser(mockBackend{redirect: true}).Parse(ing)
+	i, err := NewParser(mockBackend{redirect: true}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	redirect, ok := i.(*Config)
 	if !ok {
 		t.Errorf("expected a Redirect type")
@@ -132,7 +135,10 @@ func TestSSLRedirect(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix("rewrite-target")] = "/xpto/$1/abc/$2"
 	ing.SetAnnotations(data)
 
-	i, _ = NewParser(mockBackend{redirect: true}).Parse(ing)
+	i, err = NewParser(mockBackend{redirect: true}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	redirect, ok = i.(*Config)
 	if !ok {
 		t.Errorf("expected a Redirect type")
@@ -144,7 +150,10 @@ func TestSSLRedirect(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix("rewrite-target")] = "/xpto/xas{445}"
 	ing.SetAnnotations(data)
 
-	i, _ = NewParser(mockBackend{redirect: true}).Parse(ing)
+	i, err = NewParser(mockBackend{redirect: true}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	redirect, ok = i.(*Config)
 	if !ok {
 		t.Errorf("expected a Redirect type")
@@ -156,7 +165,10 @@ func TestSSLRedirect(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix("ssl-redirect")] = "false"
 	ing.SetAnnotations(data)
 
-	i, _ = NewParser(mockBackend{redirect: false}).Parse(ing)
+	i, err = NewParser(mockBackend{redirect: false}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	redirect, ok = i.(*Config)
 	if !ok {
 		t.Errorf("expected a Redirect type")
@@ -173,7 +185,10 @@ func TestForceSSLRedirect(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix("rewrite-target")] = defRoute
 	ing.SetAnnotations(data)
 
-	i, _ := NewParser(mockBackend{redirect: true}).Parse(ing)
+	i, err := NewParser(mockBackend{redirect: true}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	redirect, ok := i.(*Config)
 	if !ok {
 		t.Errorf("expected a Redirect type")
@@ -185,7 +200,10 @@ func TestForceSSLRedirect(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix("force-ssl-redirect")] = "true"
 	ing.SetAnnotations(data)
 
-	i, _ = NewParser(mockBackend{redirect: false}).Parse(ing)
+	i, err = NewParser(mockBackend{redirect: false}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	redirect, ok = i.(*Config)
 	if !ok {
 		t.Errorf("expected a Redirect type")
@@ -194,6 +212,7 @@ func TestForceSSLRedirect(t *testing.T) {
 		t.Errorf("Expected true but returned false")
 	}
 }
+
 func TestAppRoot(t *testing.T) {
 	ap := NewParser(mockBackend{redirect: true})
 
@@ -241,7 +260,10 @@ func TestUseRegex(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix("use-regex")] = "true"
 	ing.SetAnnotations(data)
 
-	i, _ := NewParser(mockBackend{redirect: true}).Parse(ing)
+	i, err := NewParser(mockBackend{redirect: true}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	redirect, ok := i.(*Config)
 	if !ok {
 		t.Errorf("expected a App Context")
diff --git a/internal/ingress/annotations/satisfy/main.go b/internal/ingress/annotations/satisfy/main.go
index 45187fe5c..13a4532c1 100644
--- a/internal/ingress/annotations/satisfy/main.go
+++ b/internal/ingress/annotations/satisfy/main.go
@@ -69,7 +69,7 @@ func (s satisfy) GetDocumentation() parser.AnnotationFields {
 	return s.annotationConfig.Annotations
 }
 
-func (a satisfy) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (s satisfy) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(s.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, satisfyAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/serversnippet/main_test.go b/internal/ingress/annotations/serversnippet/main_test.go
index 601e11a42..72e757dc1 100644
--- a/internal/ingress/annotations/serversnippet/main_test.go
+++ b/internal/ingress/annotations/serversnippet/main_test.go
@@ -54,6 +54,7 @@ func TestParse(t *testing.T) {
 
 	for _, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
+		//nolint:errcheck // Ignore the error since invalid cases will be checked with expected results
 		result, _ := ap.Parse(ing)
 		if result != testCase.expected {
 			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
diff --git a/internal/ingress/annotations/serviceupstream/main.go b/internal/ingress/annotations/serviceupstream/main.go
index e662f73c3..d1851bc7b 100644
--- a/internal/ingress/annotations/serviceupstream/main.go
+++ b/internal/ingress/annotations/serviceupstream/main.go
@@ -69,7 +69,7 @@ func (s serviceUpstream) GetDocumentation() parser.AnnotationFields {
 	return s.annotationConfig.Annotations
 }
 
-func (a serviceUpstream) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (s serviceUpstream) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(s.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, serviceUpstreamAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/serviceupstream/main_test.go b/internal/ingress/annotations/serviceupstream/main_test.go
index 2751208ec..e6216ee5a 100644
--- a/internal/ingress/annotations/serviceupstream/main_test.go
+++ b/internal/ingress/annotations/serviceupstream/main_test.go
@@ -77,7 +77,10 @@ func TestIngressAnnotationServiceUpstreamEnabled(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix(serviceUpstreamAnnotation)] = "true"
 	ing.SetAnnotations(data)
 
-	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	val, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	enabled, ok := val.(bool)
 	if !ok {
 		t.Errorf("expected a bool type")
@@ -96,7 +99,10 @@ func TestIngressAnnotationServiceUpstreamSetFalse(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix(serviceUpstreamAnnotation)] = "false"
 	ing.SetAnnotations(data)
 
-	val, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	val, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	enabled, ok := val.(bool)
 	if !ok {
 		t.Errorf("expected a bool type")
@@ -110,7 +116,10 @@ func TestIngressAnnotationServiceUpstreamSetFalse(t *testing.T) {
 	data = map[string]string{}
 	ing.SetAnnotations(data)
 
-	val, _ = NewParser(&resolver.Mock{}).Parse(ing)
+	val, err = NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	enabled, ok = val.(bool)
 	if !ok {
 		t.Errorf("expected a bool type")
@@ -137,7 +146,10 @@ func (m mockBackend) GetDefaultBackend() defaults.Backend {
 func TestParseAnnotationsWithDefaultConfig(t *testing.T) {
 	ing := buildIngress()
 
-	val, _ := NewParser(mockBackend{}).Parse(ing)
+	val, err := NewParser(mockBackend{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	enabled, ok := val.(bool)
 
 	if !ok {
@@ -158,7 +170,10 @@ func TestParseAnnotationsOverridesDefaultConfig(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix(serviceUpstreamAnnotation)] = "false"
 	ing.SetAnnotations(data)
 
-	val, _ := NewParser(mockBackend{}).Parse(ing)
+	val, err := NewParser(mockBackend{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	enabled, ok := val.(bool)
 
 	if !ok {
diff --git a/internal/ingress/annotations/sessionaffinity/main.go b/internal/ingress/annotations/sessionaffinity/main.go
index 0a4a59dbc..cc2095de4 100644
--- a/internal/ingress/annotations/sessionaffinity/main.go
+++ b/internal/ingress/annotations/sessionaffinity/main.go
@@ -63,13 +63,15 @@ const (
 
 	// This is used to control the cookie change after request failure
 	annotationAffinityCookieChangeOnFailure = "session-cookie-change-on-failure"
+
+	cookieAffinity = "cookie"
 )
 
 var sessionAffinityAnnotations = parser.Annotation{
 	Group: "affinity",
 	Annotations: parser.AnnotationFields{
 		annotationAffinityType: {
-			Validator:     parser.ValidateOptions([]string{"cookie"}, true, true),
+			Validator:     parser.ValidateOptions([]string{cookieAffinity}, true, true),
 			Scope:         parser.AnnotationScopeIngress,
 			Risk:          parser.AnnotationRiskLow,
 			Documentation: `This annotation enables and sets the affinity type in all Upstreams of an Ingress. This way, a request will always be directed to the same upstream server. The only affinity type available for NGINX is cookie`,
@@ -91,7 +93,7 @@ var sessionAffinityAnnotations = parser.Annotation{
 			Setting this to legacy will restore original canary behavior, when session affinity was ignored.`,
 		},
 		annotationAffinityCookieName: {
-			Validator:     parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Validator:     parser.ValidateRegex(parser.BasicCharsRegex, true),
 			Scope:         parser.AnnotationScopeIngress,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation allows to specify the name of the cookie that will be used to route the requests`,
@@ -103,25 +105,25 @@ var sessionAffinityAnnotations = parser.Annotation{
 			Documentation: `This annotation set the cookie as secure regardless the protocol of the incoming request`,
 		},
 		annotationAffinityCookieExpires: {
-			Validator:     parser.ValidateRegex(*affinityCookieExpiresRegex, true),
+			Validator:     parser.ValidateRegex(affinityCookieExpiresRegex, true),
 			Scope:         parser.AnnotationScopeIngress,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation is a legacy version of "session-cookie-max-age" for compatibility with older browsers, generates an "Expires" cookie directive by adding the seconds to the current date`,
 		},
 		annotationAffinityCookieMaxAge: {
-			Validator:     parser.ValidateRegex(*affinityCookieExpiresRegex, false),
+			Validator:     parser.ValidateRegex(affinityCookieExpiresRegex, false),
 			Scope:         parser.AnnotationScopeIngress,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation sets the time until the cookie expires`,
 		},
 		annotationAffinityCookiePath: {
-			Validator:     parser.ValidateRegex(*parser.URLIsValidRegex, true),
+			Validator:     parser.ValidateRegex(parser.URLIsValidRegex, true),
 			Scope:         parser.AnnotationScopeIngress,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation defines the Path that will be set on the cookie (required if your Ingress paths use regular expressions)`,
 		},
 		annotationAffinityCookieDomain: {
-			Validator:     parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Validator:     parser.ValidateRegex(parser.BasicCharsRegex, true),
 			Scope:         parser.AnnotationScopeIngress,
 			Risk:          parser.AnnotationRiskMedium,
 			Documentation: `This annotation defines the Domain attribute of the sticky cookie.`,
@@ -149,9 +151,7 @@ var sessionAffinityAnnotations = parser.Annotation{
 	},
 }
 
-var (
-	affinityCookieExpiresRegex = regexp.MustCompile(`(^0|-?[1-9]\d*$)`)
-)
+var affinityCookieExpiresRegex = regexp.MustCompile(`(^0|-?[1-9]\d*$)`)
 
 // Config describes the per ingress session affinity config
 type Config struct {
@@ -186,6 +186,11 @@ type Cookie struct {
 	ConditionalSameSiteNone bool `json:"conditional-samesite-none"`
 }
 
+type affinity struct {
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
+}
+
 // cookieAffinityParse gets the annotation values related to Cookie Affinity
 // It also sets default values when no value or incorrect value is found
 func (a affinity) cookieAffinityParse(ing *networking.Ingress) *Cookie {
@@ -252,11 +257,6 @@ func NewParser(r resolver.Resolver) parser.IngressAnnotation {
 	}
 }
 
-type affinity struct {
-	r                resolver.Resolver
-	annotationConfig parser.Annotation
-}
-
 // ParseAnnotations parses the annotations contained in the ingress
 // rule used to configure the affinity directives
 func (a affinity) Parse(ing *networking.Ingress) (interface{}, error) {
@@ -279,11 +279,10 @@ func (a affinity) Parse(ing *networking.Ingress) (interface{}, error) {
 	}
 
 	switch at {
-	case "cookie":
+	case cookieAffinity:
 		cookie = a.cookieAffinityParse(ing)
 	default:
 		klog.V(3).InfoS("No default affinity found", "ingress", ing.Name)
-
 	}
 
 	return &Config{
diff --git a/internal/ingress/annotations/sessionaffinity/main_test.go b/internal/ingress/annotations/sessionaffinity/main_test.go
index cffe57fec..cecf8cf8f 100644
--- a/internal/ingress/annotations/sessionaffinity/main_test.go
+++ b/internal/ingress/annotations/sessionaffinity/main_test.go
@@ -83,7 +83,11 @@ func TestIngressAffinityCookieConfig(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix(annotationAffinityCookieSecure)] = "true"
 	ing.SetAnnotations(data)
 
-	affin, _ := NewParser(&resolver.Mock{}).Parse(ing)
+	affin, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error parsing annotations: %v", err)
+	}
+
 	nginxAffinity, ok := affin.(*Config)
 	if !ok {
 		t.Errorf("expected a Config type")
diff --git a/internal/ingress/annotations/snippet/main_test.go b/internal/ingress/annotations/snippet/main_test.go
index 921afeea8..b29b2950d 100644
--- a/internal/ingress/annotations/snippet/main_test.go
+++ b/internal/ingress/annotations/snippet/main_test.go
@@ -54,6 +54,7 @@ func TestParse(t *testing.T) {
 
 	for _, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
+		//nolint:errcheck // Ignore the error since invalid cases will be checked with expected results
 		result, _ := ap.Parse(ing)
 		if result != testCase.expected {
 			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
diff --git a/internal/ingress/annotations/sslcipher/main.go b/internal/ingress/annotations/sslcipher/main.go
index c30f12424..685ef90bf 100644
--- a/internal/ingress/annotations/sslcipher/main.go
+++ b/internal/ingress/annotations/sslcipher/main.go
@@ -31,10 +31,8 @@ const (
 	sslCipherAnnotation             = "ssl-ciphers"
 )
 
-var (
-	// Should cover something like "ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP"
-	regexValidSSLCipher = regexp.MustCompile(`^[A-Za-z0-9!:+\-]*$`)
-)
+// Should cover something like "ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP"
+var regexValidSSLCipher = regexp.MustCompile(`^[A-Za-z0-9!:+\-]*$`)
 
 var sslCipherAnnotations = parser.Annotation{
 	Group: "backend",
@@ -47,7 +45,7 @@ var sslCipherAnnotations = parser.Annotation{
 			This configuration specifies that server ciphers should be preferred over client ciphers when using the SSLv3 and TLS protocols.`,
 		},
 		sslCipherAnnotation: {
-			Validator:     parser.ValidateRegex(*regexValidSSLCipher, true),
+			Validator:     parser.ValidateRegex(regexValidSSLCipher, true),
 			Scope:         parser.AnnotationScopeIngress,
 			Risk:          parser.AnnotationRiskLow,
 			Documentation: `Using this annotation will set the ssl_ciphers directive at the server level. This configuration is active for all the paths in the host.`,
@@ -104,7 +102,7 @@ func (sc sslCipher) GetDocumentation() parser.AnnotationFields {
 	return sc.annotationConfig.Annotations
 }
 
-func (a sslCipher) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (sc sslCipher) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(sc.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, sslCipherAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/sslcipher/main_test.go b/internal/ingress/annotations/sslcipher/main_test.go
index ac6808e06..167466fef 100644
--- a/internal/ingress/annotations/sslcipher/main_test.go
+++ b/internal/ingress/annotations/sslcipher/main_test.go
@@ -42,8 +42,11 @@ func TestParse(t *testing.T) {
 		expectErr   bool
 	}{
 		{map[string]string{annotationSSLCiphers: "ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP"}, Config{"ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP", ""}, false},
-		{map[string]string{annotationSSLCiphers: "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256"},
-			Config{"ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256", ""}, false},
+		{
+			map[string]string{annotationSSLCiphers: "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256"},
+			Config{"ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256", ""},
+			false,
+		},
 		{map[string]string{annotationSSLCiphers: ""}, Config{"", ""}, false},
 		{map[string]string{annotationSSLPreferServerCiphers: "true"}, Config{"", "on"}, false},
 		{map[string]string{annotationSSLPreferServerCiphers: "false"}, Config{"", "off"}, false},
diff --git a/internal/ingress/annotations/sslpassthrough/main.go b/internal/ingress/annotations/sslpassthrough/main.go
index 1557d4243..c06db8715 100644
--- a/internal/ingress/annotations/sslpassthrough/main.go
+++ b/internal/ingress/annotations/sslpassthrough/main.go
@@ -47,7 +47,8 @@ type sslpt struct {
 
 // NewParser creates a new SSL passthrough annotation parser
 func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return sslpt{r: r,
+	return sslpt{
+		r:                r,
 		annotationConfig: sslPassthroughAnnotations,
 	}
 }
diff --git a/internal/ingress/annotations/streamsnippet/main_test.go b/internal/ingress/annotations/streamsnippet/main_test.go
index 997b7be70..e8a1ff8d0 100644
--- a/internal/ingress/annotations/streamsnippet/main_test.go
+++ b/internal/ingress/annotations/streamsnippet/main_test.go
@@ -38,7 +38,8 @@ func TestParse(t *testing.T) {
 		annotations map[string]string
 		expected    string
 	}{
-		{map[string]string{annotation: "server { listen: 8000; proxy_pass 127.0.0.1:80}"},
+		{
+			map[string]string{annotation: "server { listen: 8000; proxy_pass 127.0.0.1:80}"},
 			"server { listen: 8000; proxy_pass 127.0.0.1:80}",
 		},
 		{map[string]string{annotation: "false"}, "false"},
@@ -56,6 +57,7 @@ func TestParse(t *testing.T) {
 
 	for _, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
+		//nolint:errcheck // Ignore the error since invalid cases will be checked with expected results
 		result, _ := ap.Parse(ing)
 		if result != testCase.expected {
 			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
diff --git a/internal/ingress/annotations/upstreamhashby/main.go b/internal/ingress/annotations/upstreamhashby/main.go
index bc07f70fb..25cc88b8e 100644
--- a/internal/ingress/annotations/upstreamhashby/main.go
+++ b/internal/ingress/annotations/upstreamhashby/main.go
@@ -41,7 +41,7 @@ var upstreamHashByAnnotations = parser.Annotation{
 	Group: "backend",
 	Annotations: parser.AnnotationFields{
 		upstreamHashByAnnotation: {
-			Validator: parser.ValidateRegex(*hashByRegex, true),
+			Validator: parser.ValidateRegex(hashByRegex, true),
 			Scope:     parser.AnnotationScopeLocation,
 			Risk:      parser.AnnotationRiskHigh, // High, this annotation allows accessing NGINX variables
 			Documentation: `This annotation defines the nginx variable, text value or any combination thereof to use for consistent hashing. 
diff --git a/internal/ingress/annotations/xforwardedprefix/main.go b/internal/ingress/annotations/xforwardedprefix/main.go
index fc4d5798d..530afbb01 100644
--- a/internal/ingress/annotations/xforwardedprefix/main.go
+++ b/internal/ingress/annotations/xforwardedprefix/main.go
@@ -31,7 +31,7 @@ var xForwardedForAnnotations = parser.Annotation{
 	Group: "backend",
 	Annotations: parser.AnnotationFields{
 		xForwardedForPrefixAnnotation: {
-			Validator:     parser.ValidateRegex(*parser.BasicCharsRegex, true),
+			Validator:     parser.ValidateRegex(parser.BasicCharsRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskLow, // Low, as it allows regexes but on a very limited set
 			Documentation: `This annotation can be used to add the non-standard X-Forwarded-Prefix header to the upstream request with a string value`,
@@ -54,15 +54,15 @@ func NewParser(r resolver.Resolver) parser.IngressAnnotation {
 
 // Parse parses the annotations contained in the ingress rule
 // used to add an x-forwarded-prefix header to the request
-func (cbbs xforwardedprefix) Parse(ing *networking.Ingress) (interface{}, error) {
-	return parser.GetStringAnnotation(xForwardedForPrefixAnnotation, ing, cbbs.annotationConfig.Annotations)
+func (x xforwardedprefix) Parse(ing *networking.Ingress) (interface{}, error) {
+	return parser.GetStringAnnotation(xForwardedForPrefixAnnotation, ing, x.annotationConfig.Annotations)
 }
 
-func (cbbs xforwardedprefix) GetDocumentation() parser.AnnotationFields {
-	return cbbs.annotationConfig.Annotations
+func (x xforwardedprefix) GetDocumentation() parser.AnnotationFields {
+	return x.annotationConfig.Annotations
 }
 
-func (a xforwardedprefix) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+func (x xforwardedprefix) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(x.r.GetSecurityConfiguration().AnnotationsRiskLevel)
 	return parser.CheckAnnotationRisk(anns, maxrisk, xForwardedForAnnotations.Annotations)
 }
diff --git a/internal/ingress/annotations/xforwardedprefix/main_test.go b/internal/ingress/annotations/xforwardedprefix/main_test.go
index d873a4412..f28b6b10e 100644
--- a/internal/ingress/annotations/xforwardedprefix/main_test.go
+++ b/internal/ingress/annotations/xforwardedprefix/main_test.go
@@ -54,6 +54,7 @@ func TestParse(t *testing.T) {
 
 	for _, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
+		//nolint:errcheck // Ignore the error since invalid cases will be checked with expected results
 		result, _ := ap.Parse(ing)
 		if result != testCase.expected {
 			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
diff --git a/internal/ingress/controller/certificate.go b/internal/ingress/controller/certificate.go
index e8707c716..76aafec3c 100644
--- a/internal/ingress/controller/certificate.go
+++ b/internal/ingress/controller/certificate.go
@@ -100,7 +100,7 @@ func matchHostnames(pattern, host string) bool {
 	host = strings.TrimSuffix(host, ".")
 	pattern = strings.TrimSuffix(pattern, ".")
 
-	if len(pattern) == 0 || len(host) == 0 {
+	if pattern == "" || host == "" {
 		return false
 	}
 
diff --git a/internal/ingress/controller/checker.go b/internal/ingress/controller/checker.go
index 3229778bb..d1bf19ddf 100644
--- a/internal/ingress/controller/checker.go
+++ b/internal/ingress/controller/checker.go
@@ -29,7 +29,7 @@ import (
 )
 
 // Name returns the healthcheck name
-func (n NGINXController) Name() string {
+func (n *NGINXController) Name() string {
 	return "nginx-ingress-controller"
 }
 
diff --git a/internal/ingress/controller/checker_test.go b/internal/ingress/controller/checker_test.go
index 2d63efc09..5fb6b09fd 100644
--- a/internal/ingress/controller/checker_test.go
+++ b/internal/ingress/controller/checker_test.go
@@ -32,7 +32,7 @@ import (
 )
 
 func TestNginxCheck(t *testing.T) {
-	var tests = []struct {
+	tests := []struct {
 		healthzPath string
 	}{
 		{"/healthz"},
@@ -42,7 +42,6 @@ func TestNginxCheck(t *testing.T) {
 	for _, tt := range tests {
 		testName := fmt.Sprintf("health path: %s", tt.healthzPath)
 		t.Run(testName, func(t *testing.T) {
-
 			mux := http.NewServeMux()
 
 			listener, err := tryListen("tcp", fmt.Sprintf(":%v", nginx.StatusPort))
@@ -50,7 +49,7 @@ func TestNginxCheck(t *testing.T) {
 				t.Fatalf("creating tcp listener: %s", err)
 			}
 			defer listener.Close()
-
+			//nolint:gosec // Ignore not configured ReadHeaderTimeout in testing
 			server := &httptest.Server{
 				Listener: listener,
 				Config: &http.Server{
@@ -103,10 +102,10 @@ func TestNginxCheck(t *testing.T) {
 				}
 			}()
 			go func() {
-				cmd.Wait() //nolint:errcheck
+				cmd.Wait() //nolint:errcheck // Ignore the error
 			}()
 
-			if _, err := pidFile.Write([]byte(fmt.Sprintf("%v", pid))); err != nil {
+			if _, err := fmt.Fprintf(pidFile, "%v", pid); err != nil {
 				t.Errorf("unexpected error writing the pid file: %v", err)
 			}
 
@@ -121,7 +120,7 @@ func TestNginxCheck(t *testing.T) {
 			})
 
 			// pollute pid file
-			pidFile.Write([]byte("999999")) //nolint:errcheck
+			pidFile.WriteString("999999") //nolint:errcheck // Ignore the error
 			pidFile.Close()
 
 			t.Run("bad pid", func(t *testing.T) {
@@ -134,7 +133,7 @@ func TestNginxCheck(t *testing.T) {
 }
 
 func callHealthz(expErr bool, healthzPath string, mux *http.ServeMux) error {
-	req, err := http.NewRequest(http.MethodGet, healthzPath, nil)
+	req, err := http.NewRequest(http.MethodGet, healthzPath, http.NoBody)
 	if err != nil {
 		return fmt.Errorf("healthz error: %v", err)
 	}
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 60cef489a..0dafa78a2 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -29,10 +29,8 @@ import (
 	"k8s.io/ingress-nginx/pkg/util/runtime"
 )
 
-var (
-	// EnableSSLChainCompletion Autocomplete SSL certificate chains with missing intermediate CA certificates.
-	EnableSSLChainCompletion = false
-)
+// EnableSSLChainCompletion Autocomplete SSL certificate chains with missing intermediate CA certificates.
+var EnableSSLChainCompletion = false
 
 const (
 	// http://nginx.org/en/docs/http/ngx_http_core_module.html#client_max_body_size
@@ -91,7 +89,7 @@ const (
 
 // Configuration represents the content of nginx.conf file
 type Configuration struct {
-	defaults.Backend `json:",squash"` //nolint:staticcheck
+	defaults.Backend `json:",squash"` //nolint:staticcheck // Ignore unknown JSON option "squash" error
 
 	// AllowSnippetAnnotations enable users to add their own snippets via ingress annotation.
 	// If disabled, only snippets added via ConfigMap are added to ingress.
@@ -141,9 +139,9 @@ type Configuration struct {
 	// By default access logs go to /var/log/nginx/access.log
 	AccessLogPath string `json:"access-log-path,omitempty"`
 
-	// HttpAccessLogPath sets the path of the access logs for http context globally if enabled
+	// HTTPAccessLogPath sets the path of the access logs for http context globally if enabled
 	// http://nginx.org/en/docs/http/ngx_http_log_module.html#access_log
-	HttpAccessLogPath string `json:"http-access-log-path,omitempty"`
+	HTTPAccessLogPath string `json:"http-access-log-path,omitempty"`
 
 	// StreamAccessLogPath sets the path of the access logs for stream context globally if enabled
 	// http://nginx.org/en/docs/stream/ngx_stream_log_module.html#access_log
@@ -230,19 +228,19 @@ type Configuration struct {
 
 	// https://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_field_size
 	// HTTP2MaxFieldSize Limits the maximum size of an HPACK-compressed request header field
-	// NOTE: Deprecated
+	// Deprecated: HTTP2MaxFieldSize is deprecated.
 	HTTP2MaxFieldSize string `json:"http2-max-field-size,omitempty"`
 
 	// https://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_header_size
 	// HTTP2MaxHeaderSize Limits the maximum size of the entire request header list after HPACK decompression
-	// NOTE: Deprecated
+	// Deprecated: HTTP2MaxHeaderSize is deprecated.
 	HTTP2MaxHeaderSize string `json:"http2-max-header-size,omitempty"`
 
 	// http://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_requests
 	// HTTP2MaxRequests Sets the maximum number of requests (including push requests) that can be served
 	// through one HTTP/2 connection, after which the next client request will lead to connection closing
 	// and the need of establishing a new connection.
-	// NOTE: Deprecated
+	// Deprecated: HTTP2MaxRequests is deprecated.
 	HTTP2MaxRequests int `json:"http2-max-requests,omitempty"`
 
 	// http://nginx.org/en/docs/http/ngx_http_v2_module.html#http2_max_concurrent_streams
@@ -552,7 +550,7 @@ type Configuration struct {
 	UseForwardedHeaders bool `json:"use-forwarded-headers"`
 
 	// Sets whether to enable the real ip module
-	EnableRealIp bool `json:"enable-real-ip"`
+	EnableRealIP bool `json:"enable-real-ip"`
 
 	// Sets the header field for identifying the originating IP address of a client
 	// Default is X-Forwarded-For
@@ -621,7 +619,7 @@ type Configuration struct {
 	// Default: 0.01
 	OtelSamplerRatio float32 `json:"otel-sampler-ratio"`
 
-	//OtelSamplerParentBased specifies the parent based sampler to be use for any traces created
+	// OtelSamplerParentBased specifies the parent based sampler to be use for any traces created
 	// Default: true
 	OtelSamplerParentBased bool `json:"otel-sampler-parent-based"`
 
@@ -891,7 +889,7 @@ func NewDefault() Configuration {
 		EnableUnderscoresInHeaders:       false,
 		ErrorLogLevel:                    errorLevel,
 		UseForwardedHeaders:              false,
-		EnableRealIp:                     false,
+		EnableRealIP:                     false,
 		ForwardedForHeader:               "X-Forwarded-For",
 		ComputeFullForwardedFor:          false,
 		ProxyAddOriginalURIHeader:        false,
@@ -1039,41 +1037,41 @@ func NewDefault() Configuration {
 
 // TemplateConfig contains the nginx configuration to render the file nginx.conf
 type TemplateConfig struct {
-	ProxySetHeaders          map[string]string
-	AddHeaders               map[string]string
-	BacklogSize              int
-	Backends                 []*ingress.Backend
-	PassthroughBackends      []*ingress.SSLPassthroughBackend
-	Servers                  []*ingress.Server
-	TCPBackends              []ingress.L4Service
-	UDPBackends              []ingress.L4Service
-	HealthzURI               string
-	Cfg                      Configuration
-	IsIPV6Enabled            bool
-	IsSSLPassthroughEnabled  bool
-	NginxStatusIpv4Whitelist []string
-	NginxStatusIpv6Whitelist []string
-	RedirectServers          interface{}
-	ListenPorts              *ListenPorts
-	PublishService           *apiv1.Service
-	EnableMetrics            bool
-	MaxmindEditionFiles      *[]string
-	MonitorMaxBatchSize      int
-	PID                      string
-	StatusPath               string
-	StatusPort               int
-	StreamPort               int
-	StreamSnippets           []string
+	ProxySetHeaders          map[string]string                `json:"ProxySetHeaders"`
+	AddHeaders               map[string]string                `json:"AddHeaders"`
+	BacklogSize              int                              `json:"BacklogSize"`
+	Backends                 []*ingress.Backend               `json:"Backends"`
+	PassthroughBackends      []*ingress.SSLPassthroughBackend `json:"PassthroughBackends"`
+	Servers                  []*ingress.Server                `json:"Servers"`
+	TCPBackends              []ingress.L4Service              `json:"TCPBackends"`
+	UDPBackends              []ingress.L4Service              `json:"UDPBackends"`
+	HealthzURI               string                           `json:"HealthzURI"`
+	Cfg                      Configuration                    `json:"Cfg"`
+	IsIPV6Enabled            bool                             `json:"IsIPV6Enabled"`
+	IsSSLPassthroughEnabled  bool                             `json:"IsSSLPassthroughEnabled"`
+	NginxStatusIpv4Whitelist []string                         `json:"NginxStatusIpv4Whitelist"`
+	NginxStatusIpv6Whitelist []string                         `json:"NginxStatusIpv6Whitelist"`
+	RedirectServers          interface{}                      `json:"RedirectServers"`
+	ListenPorts              *ListenPorts                     `json:"ListenPorts"`
+	PublishService           *apiv1.Service                   `json:"PublishService"`
+	EnableMetrics            bool                             `json:"EnableMetrics"`
+	MaxmindEditionFiles      *[]string                        `json:"MaxmindEditionFiles"`
+	MonitorMaxBatchSize      int                              `json:"MonitorMaxBatchSize"`
+	PID                      string                           `json:"PID"`
+	StatusPath               string                           `json:"StatusPath"`
+	StatusPort               int                              `json:"StatusPort"`
+	StreamPort               int                              `json:"StreamPort"`
+	StreamSnippets           []string                         `json:"StreamSnippets"`
 }
 
 // ListenPorts describe the ports required to run the
 // NGINX Ingress controller
 type ListenPorts struct {
-	HTTP     int
-	HTTPS    int
-	Health   int
-	Default  int
-	SSLProxy int
+	HTTP     int `json:"HTTP"`
+	HTTPS    int `json:"HTTPS"`
+	Health   int `json:"Health"`
+	Default  int `json:"Default"`
+	SSLProxy int `json:"SSLProxy"`
 }
 
 // GlobalExternalAuth describe external authentication configuration for the
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index f405bdcbb..f2ad4639b 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -114,7 +114,7 @@ type Configuration struct {
 
 	DisableCatchAll bool
 
-	IngressClassConfiguration *ingressclass.IngressClassConfiguration
+	IngressClassConfiguration *ingressclass.Configuration
 
 	ValidationWebhook         string
 	ValidationWebhookCertPath string
@@ -143,7 +143,7 @@ type Configuration struct {
 func getIngressPodZone(svc *apiv1.Service) string {
 	svcKey := k8s.MetaNamespaceKey(svc)
 	if svcZoneAnnotation, ok := svc.ObjectMeta.GetAnnotations()[apiv1.AnnotationTopologyMode]; ok {
-		if strings.ToLower(svcZoneAnnotation) == "auto" {
+		if strings.EqualFold(svcZoneAnnotation, "auto") {
 			if foundZone, ok := k8s.IngressNodeDetails.GetLabels()[apiv1.LabelTopologyZone]; ok {
 				klog.V(3).Infof("Svc has topology aware annotation enabled, try to use zone %q where controller pod is running for Service %q ", foundZone, svcKey)
 				return foundZone
@@ -154,7 +154,7 @@ func getIngressPodZone(svc *apiv1.Service) string {
 }
 
 // GetPublishService returns the Service used to set the load-balancer status of Ingresses.
-func (n NGINXController) GetPublishService() *apiv1.Service {
+func (n *NGINXController) GetPublishService() *apiv1.Service {
 	s, err := n.store.GetService(n.cfg.PublishService)
 	if err != nil {
 		return nil
@@ -189,13 +189,16 @@ func (n *NGINXController) syncIngress(interface{}) error {
 	if !utilingress.IsDynamicConfigurationEnough(pcfg, n.runningConfig) {
 		klog.InfoS("Configuration changes detected, backend reload required")
 
-		hash, _ := hashstructure.Hash(pcfg, hashstructure.FormatV1, &hashstructure.HashOptions{
+		hash, err := hashstructure.Hash(pcfg, hashstructure.FormatV1, &hashstructure.HashOptions{
 			TagName: "json",
 		})
+		if err != nil {
+			klog.Errorf("unexpected error hashing configuration: %v", err)
+		}
 
 		pcfg.ConfigurationChecksum = fmt.Sprintf("%v", hash)
 
-		err := n.OnUpdate(*pcfg)
+		err = n.OnUpdate(*pcfg)
 		if err != nil {
 			n.metricCollector.IncReloadErrorCount()
 			n.metricCollector.ConfigSuccess(hash, false)
@@ -263,7 +266,7 @@ func (n *NGINXController) syncIngress(interface{}) error {
 func (n *NGINXController) CheckWarning(ing *networking.Ingress) ([]string, error) {
 	warnings := make([]string, 0)
 
-	var deprecatedAnnotations = sets.NewString()
+	deprecatedAnnotations := sets.NewString()
 	deprecatedAnnotations.Insert(
 		"enable-influxdb",
 		"influxdb-measurement",
@@ -335,7 +338,7 @@ func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
 	}
 
 	if n.cfg.DisableCatchAll && ing.Spec.DefaultBackend != nil {
-		return fmt.Errorf("This deployment is trying to create a catch-all ingress while DisableCatchAll flag is set to true. Remove '.spec.defaultBackend' or set DisableCatchAll flag to false.")
+		return fmt.Errorf("this deployment is trying to create a catch-all ingress while DisableCatchAll flag is set to true. Remove '.spec.defaultBackend' or set DisableCatchAll flag to false")
 	}
 	startRender := time.Now().UnixNano() / 1000000
 	cfg := n.store.GetBackendConfiguration()
@@ -355,10 +358,9 @@ func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
 	}
 
 	for key, value := range ing.ObjectMeta.GetAnnotations() {
-
 		if parser.AnnotationsPrefix != parser.DefaultAnnotationsPrefix {
 			if strings.HasPrefix(key, fmt.Sprintf("%s/", parser.DefaultAnnotationsPrefix)) {
-				return fmt.Errorf("This deployment has a custom annotation prefix defined. Use '%s' instead of '%s'", parser.AnnotationsPrefix, parser.DefaultAnnotationsPrefix)
+				return fmt.Errorf("this deployment has a custom annotation prefix defined. Use '%s' instead of '%s'", parser.AnnotationsPrefix, parser.DefaultAnnotationsPrefix)
 			}
 		}
 
@@ -374,10 +376,9 @@ func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
 			return fmt.Errorf("%s annotation cannot be used. Snippet directives are disabled by the Ingress administrator", key)
 		}
 
-		if len(cfg.GlobalRateLimitMemcachedHost) == 0 && strings.HasPrefix(key, fmt.Sprintf("%s/%s", parser.AnnotationsPrefix, "global-rate-limit")) {
+		if cfg.GlobalRateLimitMemcachedHost == "" && strings.HasPrefix(key, fmt.Sprintf("%s/%s", parser.AnnotationsPrefix, "global-rate-limit")) {
 			return fmt.Errorf("'global-rate-limit*' annotations require 'global-rate-limit-memcached-host' settings configured in the global configmap")
 		}
-
 	}
 
 	k8s.SetDefaultNGINXPathType(ing)
@@ -401,7 +402,7 @@ func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
 	startTest := time.Now().UnixNano() / 1000000
 	_, servers, pcfg := n.getConfiguration(ings)
 
-	err = checkOverlap(ing, allIngresses, servers)
+	err = checkOverlap(ing, servers)
 	if err != nil {
 		n.metricCollector.IncCheckErrorCount(ing.ObjectMeta.Namespace, ing.Name)
 		return err
@@ -452,7 +453,7 @@ func (n *NGINXController) getStreamServices(configmapName string, proto apiv1.Pr
 		return []ingress.L4Service{}
 	}
 
-	var svcs []ingress.L4Service
+	svcs := make([]ingress.L4Service, 0, len(configmap.Data))
 	var svcProxyProtocol ingress.ProxyProtocol
 
 	rp := []int{
@@ -489,10 +490,10 @@ func (n *NGINXController) getStreamServices(configmapName string, proto apiv1.Pr
 		svcProxyProtocol.Encode = false
 		// Proxy Protocol is only compatible with TCP Services
 		if len(nsSvcPort) >= 3 && proto == apiv1.ProtocolTCP {
-			if len(nsSvcPort) >= 3 && strings.ToUpper(nsSvcPort[2]) == "PROXY" {
+			if len(nsSvcPort) >= 3 && strings.EqualFold(nsSvcPort[2], "PROXY") {
 				svcProxyProtocol.Decode = true
 			}
-			if len(nsSvcPort) == 4 && strings.ToUpper(nsSvcPort[3]) == "PROXY" {
+			if len(nsSvcPort) == 4 && strings.EqualFold(nsSvcPort[3], "PROXY") {
 				svcProxyProtocol.Encode = true
 			}
 		}
@@ -532,6 +533,7 @@ func (n *NGINXController) getStreamServices(configmapName string, proto apiv1.Pr
 			klog.V(3).Infof("Searching Endpoints with %v port number %d for Service %q", proto, targetPort, nsName)
 			for i := range svc.Spec.Ports {
 				sp := svc.Spec.Ports[i]
+				//nolint:gosec // Ignore G109 error
 				if sp.Port == int32(targetPort) {
 					if sp.Protocol == proto {
 						endps = getEndpointsFromSlices(svc, &sp, proto, zone, n.store.GetServiceEndpointsSlices)
@@ -574,7 +576,7 @@ func (n *NGINXController) getDefaultUpstream() *ingress.Backend {
 	}
 	svcKey := n.cfg.DefaultService
 
-	if len(svcKey) == 0 {
+	if svcKey == "" {
 		upstream.Endpoints = append(upstream.Endpoints, n.DefaultEndpoint())
 		return upstream
 	}
@@ -690,13 +692,14 @@ func dropSnippetDirectives(anns *annotations.Ingress, ingKey string) {
 			klog.V(3).Infof("Ingress %q tried to use stream-snippet and the annotation is disabled by the admin. Removing the annotation", ingKey)
 			anns.StreamSnippet = ""
 		}
-
 	}
 }
 
 // getBackendServers returns a list of Upstream and Server to be used by the
 // backend.  An upstream can be used in multiple servers if the namespace,
 // service name and port are the same.
+//
+//nolint:gocyclo // Ignore function complexity error
 func (n *NGINXController) getBackendServers(ingresses []*ingress.Ingress) ([]*ingress.Backend, []*ingress.Server) {
 	du := n.getDefaultUpstream()
 	upstreams := n.createUpstreams(ingresses, du)
@@ -1030,7 +1033,7 @@ func (n *NGINXController) createUpstreams(data []*ingress.Ingress, du *ingress.B
 			// configure traffic shaping for canary
 			if anns.Canary.Enabled {
 				upstreams[defBackend].NoServer = true
-				upstreams[defBackend].TrafficShapingPolicy = newTrafficShapingPolicy(anns.Canary)
+				upstreams[defBackend].TrafficShapingPolicy = newTrafficShapingPolicy(&anns.Canary)
 			}
 
 			if len(upstreams[defBackend].Endpoints) == 0 {
@@ -1095,7 +1098,7 @@ func (n *NGINXController) createUpstreams(data []*ingress.Ingress, du *ingress.B
 				// configure traffic shaping for canary
 				if anns.Canary.Enabled {
 					upstreams[name].NoServer = true
-					upstreams[name].TrafficShapingPolicy = newTrafficShapingPolicy(anns.Canary)
+					upstreams[name].TrafficShapingPolicy = newTrafficShapingPolicy(&anns.Canary)
 				}
 
 				if len(upstreams[name].Endpoints) == 0 {
@@ -1206,7 +1209,6 @@ func (n *NGINXController) serviceEndpoints(svcKey, backendPort string) ([]ingres
 		if strconv.Itoa(int(servicePort.Port)) == backendPort ||
 			servicePort.TargetPort.String() == backendPort ||
 			servicePort.Name == backendPort {
-
 			endps := getEndpointsFromSlices(svc, &servicePort, apiv1.ProtocolTCP, zone, n.store.GetServiceEndpointsSlices)
 			if len(endps) == 0 {
 				klog.Warningf("Service %q does not have any active Endpoint.", svcKey)
@@ -1239,8 +1241,8 @@ func (n *NGINXController) getDefaultSSLCertificate() *ingress.SSLCert {
 // one root location, which uses a default backend if left unspecified.
 func (n *NGINXController) createServers(data []*ingress.Ingress,
 	upstreams map[string]*ingress.Backend,
-	du *ingress.Backend) map[string]*ingress.Server {
-
+	du *ingress.Backend,
+) map[string]*ingress.Server {
 	servers := make(map[string]*ingress.Server, len(data))
 	allAliases := make(map[string][]string, len(data))
 
@@ -1282,7 +1284,8 @@ func (n *NGINXController) createServers(data []*ingress.Ingress,
 					Rewrite: false,
 				},
 			},
-		}}
+		},
+	}
 
 	// initialize all other servers
 	for _, ing := range data {
@@ -1532,7 +1535,7 @@ func locationApplyAnnotations(loc *ingress.Location, anns *annotations.Ingress)
 }
 
 // OK to merge canary ingresses iff there exists one or more ingresses to potentially merge into
-func nonCanaryIngressExists(ingresses []*ingress.Ingress, canaryIngresses []*ingress.Ingress) bool {
+func nonCanaryIngressExists(ingresses, canaryIngresses []*ingress.Ingress) bool {
 	return len(ingresses)-len(canaryIngresses) > 0
 }
 
@@ -1540,12 +1543,12 @@ func nonCanaryIngressExists(ingresses []*ingress.Ingress, canaryIngresses []*ing
 // 1) names of backends do not match and canary doesn't merge into itself
 // 2) primary name is not the default upstream
 // 3) the primary has a server
-func canMergeBackend(primary *ingress.Backend, alternative *ingress.Backend) bool {
+func canMergeBackend(primary, alternative *ingress.Backend) bool {
 	return alternative != nil && primary.Name != alternative.Name && primary.Name != defUpstreamName && !primary.NoServer
 }
 
 // Performs the merge action and checks to ensure that one two alternative backends do not merge into each other
-func mergeAlternativeBackend(ing *ingress.Ingress, priUps *ingress.Backend, altUps *ingress.Backend) bool {
+func mergeAlternativeBackend(ing *ingress.Ingress, priUps, altUps *ingress.Backend) bool {
 	if priUps.NoServer {
 		klog.Warningf("unable to merge alternative backend %v into primary backend %v because %v is a primary backend",
 			altUps.Name, priUps.Name, priUps.Name)
@@ -1563,8 +1566,7 @@ func mergeAlternativeBackend(ing *ingress.Ingress, priUps *ingress.Backend, altU
 		priUps.SessionAffinity.DeepCopyInto(&altUps.SessionAffinity)
 	}
 
-	priUps.AlternativeBackends =
-		append(priUps.AlternativeBackends, altUps.Name)
+	priUps.AlternativeBackends = append(priUps.AlternativeBackends, altUps.Name)
 
 	return true
 }
@@ -1574,8 +1576,8 @@ func mergeAlternativeBackend(ing *ingress.Ingress, priUps *ingress.Backend, altU
 // to a backend's alternative list.
 // If no match is found, then the serverless backend is deleted.
 func mergeAlternativeBackends(ing *ingress.Ingress, upstreams map[string]*ingress.Backend,
-	servers map[string]*ingress.Server) {
-
+	servers map[string]*ingress.Server,
+) {
 	// merge catch-all alternative backends
 	if ing.Spec.DefaultBackend != nil {
 		upsName := upstreamName(ing.Namespace, ing.Spec.DefaultBackend.Service)
@@ -1585,7 +1587,6 @@ func mergeAlternativeBackends(ing *ingress.Ingress, upstreams map[string]*ingres
 		if altUps == nil {
 			klog.Warningf("alternative backend %s has already been removed", upsName)
 		} else {
-
 			merged := false
 			altEqualsPri := false
 
@@ -1676,8 +1677,8 @@ func mergeAlternativeBackends(ing *ingress.Ingress, upstreams map[string]*ingres
 // extractTLSSecretName returns the name of the Secret containing a SSL
 // certificate for the given host name, or an empty string.
 func extractTLSSecretName(host string, ing *ingress.Ingress,
-	getLocalSSLCert func(string) (*ingress.SSLCert, error)) string {
-
+	getLocalSSLCert func(string) (*ingress.SSLCert, error),
+) string {
 	if ing == nil {
 		return ""
 	}
@@ -1694,7 +1695,6 @@ func extractTLSSecretName(host string, ing *ingress.Ingress,
 
 	// no TLS host matching host name, try each TLS host for matching SAN or CN
 	for _, tls := range ing.Spec.TLS {
-
 		if tls.SecretName == "" {
 			// There's no secretName specified, so it will never be available
 			continue
@@ -1753,6 +1753,7 @@ func externalNamePorts(name string, svc *apiv1.Service) *apiv1.ServicePort {
 	}
 
 	for _, svcPort := range svc.Spec.Ports {
+		//nolint:gosec // Ignore G109 error
 		if svcPort.Port != int32(port) {
 			continue
 		}
@@ -1771,13 +1772,14 @@ func externalNamePorts(name string, svc *apiv1.Service) *apiv1.ServicePort {
 
 	// ExternalName without port
 	return &apiv1.ServicePort{
-		Protocol:   "TCP",
+		Protocol: "TCP",
+		//nolint:gosec // Ignore G109 error
 		Port:       int32(port),
 		TargetPort: intstr.FromInt(port),
 	}
 }
 
-func checkOverlap(ing *networking.Ingress, ingresses []*ingress.Ingress, servers []*ingress.Server) error {
+func checkOverlap(ing *networking.Ingress, servers []*ingress.Server) error {
 	for _, rule := range ing.Spec.Rules {
 		if rule.HTTP == nil {
 			continue
@@ -1870,7 +1872,7 @@ func (n *NGINXController) getStreamSnippets(ingresses []*ingress.Ingress) []stri
 }
 
 // newTrafficShapingPolicy creates new ingress.TrafficShapingPolicy instance using canary configuration
-func newTrafficShapingPolicy(cfg canary.Config) ingress.TrafficShapingPolicy {
+func newTrafficShapingPolicy(cfg *canary.Config) ingress.TrafficShapingPolicy {
 	return ingress.TrafficShapingPolicy{
 		Weight:        cfg.Weight,
 		WeightTotal:   cfg.WeightTotal,
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index c353d1b5e..c07fcfadf 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -60,51 +60,56 @@ import (
 	"k8s.io/ingress-nginx/pkg/util/file"
 )
 
+const (
+	exampleBackend = "example-http-svc-1-80"
+	TRUE           = "true"
+)
+
 type fakeIngressStore struct {
 	ingresses     []*ingress.Ingress
 	configuration ngx_config.Configuration
 }
 
-func (fakeIngressStore) GetIngressClass(ing *networking.Ingress, icConfig *ingressclass.IngressClassConfiguration) (string, error) {
+func (fakeIngressStore) GetIngressClass(_ *networking.Ingress, _ *ingressclass.Configuration) (string, error) {
 	return "nginx", nil
 }
 
-func (fis fakeIngressStore) GetBackendConfiguration() ngx_config.Configuration {
+func (fis *fakeIngressStore) GetBackendConfiguration() ngx_config.Configuration {
 	return fis.configuration
 }
 
-func (fis fakeIngressStore) GetSecurityConfiguration() defaults.SecurityConfiguration {
+func (fis *fakeIngressStore) GetSecurityConfiguration() defaults.SecurityConfiguration {
 	return defaults.SecurityConfiguration{
 		AnnotationsRiskLevel:         fis.configuration.AnnotationsRiskLevel,
 		AllowCrossNamespaceResources: fis.configuration.AllowCrossNamespaceResources,
 	}
 }
 
-func (fakeIngressStore) GetConfigMap(key string) (*corev1.ConfigMap, error) {
+func (fakeIngressStore) GetConfigMap(_ string) (*corev1.ConfigMap, error) {
 	return nil, fmt.Errorf("test error")
 }
 
-func (fakeIngressStore) GetSecret(key string) (*corev1.Secret, error) {
+func (fakeIngressStore) GetSecret(_ string) (*corev1.Secret, error) {
 	return nil, fmt.Errorf("test error")
 }
 
-func (fakeIngressStore) GetService(key string) (*corev1.Service, error) {
+func (fakeIngressStore) GetService(_ string) (*corev1.Service, error) {
 	return nil, fmt.Errorf("test error")
 }
 
-func (fakeIngressStore) GetServiceEndpointsSlices(key string) ([]*discoveryv1.EndpointSlice, error) {
+func (fakeIngressStore) GetServiceEndpointsSlices(_ string) ([]*discoveryv1.EndpointSlice, error) {
 	return nil, fmt.Errorf("test error")
 }
 
-func (fis fakeIngressStore) ListIngresses() []*ingress.Ingress {
+func (fis *fakeIngressStore) ListIngresses() []*ingress.Ingress {
 	return fis.ingresses
 }
 
-func (fis fakeIngressStore) FilterIngresses(ingresses []*ingress.Ingress, filterFunc store.IngressFilterFunc) []*ingress.Ingress {
+func (fis *fakeIngressStore) FilterIngresses(ingresses []*ingress.Ingress, _ store.IngressFilterFunc) []*ingress.Ingress {
 	return ingresses
 }
 
-func (fakeIngressStore) GetLocalSSLCert(name string) (*ingress.SSLCert, error) {
+func (fakeIngressStore) GetLocalSSLCert(_ string) (*ingress.SSLCert, error) {
 	return nil, fmt.Errorf("test error")
 }
 
@@ -120,7 +125,7 @@ func (fakeIngressStore) GetDefaultBackend() defaults.Backend {
 	return defaults.Backend{}
 }
 
-func (fakeIngressStore) Run(stopCh chan struct{}) {}
+func (fakeIngressStore) Run(_ chan struct{}) {}
 
 type testNginxTestCommand struct {
 	t        *testing.T
@@ -129,7 +134,7 @@ type testNginxTestCommand struct {
 	err      error
 }
 
-func (ntc testNginxTestCommand) ExecCommand(args ...string) *exec.Cmd {
+func (ntc testNginxTestCommand) ExecCommand(_ ...string) *exec.Cmd {
 	return nil
 }
 
@@ -152,7 +157,7 @@ func (ntc testNginxTestCommand) Test(cfg string) ([]byte, error) {
 
 type fakeTemplate struct{}
 
-func (fakeTemplate) Write(conf ngx_config.TemplateConfig) ([]byte, error) {
+func (fakeTemplate) Write(conf *ngx_config.TemplateConfig) ([]byte, error) {
 	r := []byte{}
 	for _, s := range conf.Servers {
 		if len(r) > 0 {
@@ -196,7 +201,7 @@ func TestCheckIngress(t *testing.T) {
 	nginx.metricCollector = metric.DummyCollector{}
 
 	nginx.t = fakeTemplate{}
-	nginx.store = fakeIngressStore{
+	nginx.store = &fakeIngressStore{
 		ingresses: []*ingress.Ingress{},
 	}
 
@@ -226,7 +231,7 @@ func TestCheckIngress(t *testing.T) {
 		}
 
 		t.Run("When the hostname is updated", func(t *testing.T) {
-			nginx.store = fakeIngressStore{
+			nginx.store = &fakeIngressStore{
 				ingresses: []*ingress.Ingress{
 					{
 						Ingress:           *ing,
@@ -273,7 +278,7 @@ func TestCheckIngress(t *testing.T) {
 		})
 
 		t.Run("When snippets are disabled and user tries to use snippet annotation", func(t *testing.T) {
-			nginx.store = fakeIngressStore{
+			nginx.store = &fakeIngressStore{
 				ingresses: []*ingress.Ingress{},
 				configuration: ngx_config.Configuration{
 					AllowSnippetAnnotations: false,
@@ -290,7 +295,7 @@ func TestCheckIngress(t *testing.T) {
 		})
 
 		t.Run("When invalid directives are used in annotation values", func(t *testing.T) {
-			nginx.store = fakeIngressStore{
+			nginx.store = &fakeIngressStore{
 				ingresses: []*ingress.Ingress{},
 				configuration: ngx_config.Configuration{
 					AnnotationValueWordBlocklist: "invalid_directive, another_directive",
@@ -366,12 +371,11 @@ func TestCheckIngress(t *testing.T) {
 }
 
 func TestCheckWarning(t *testing.T) {
-
 	// Ensure no panic with wrong arguments
-	var nginx = &NGINXController{}
+	nginx := &NGINXController{}
 
 	nginx.t = fakeTemplate{}
-	nginx.store = fakeIngressStore{
+	nginx.store = &fakeIngressStore{
 		ingresses: []*ingress.Ingress{},
 	}
 
@@ -390,7 +394,7 @@ func TestCheckWarning(t *testing.T) {
 		},
 	}
 	t.Run("when a deprecated annotation is used a warning should be returned", func(t *testing.T) {
-		ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("enable-influxdb")] = "true"
+		ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("enable-influxdb")] = TRUE
 		defer func() {
 			ing.ObjectMeta.Annotations = map[string]string{}
 		}()
@@ -407,7 +411,6 @@ func TestCheckWarning(t *testing.T) {
 	})
 
 	t.Run("When an invalid pathType is used, a warning should be returned", func(t *testing.T) {
-
 		rules := ing.Spec.DeepCopy().Rules
 		ing.Spec.Rules = []networking.IngressRule{
 			{
@@ -443,8 +446,8 @@ func TestCheckWarning(t *testing.T) {
 		}
 
 		t.Run("adding invalid annotations increases the warning count", func(t *testing.T) {
-			ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("enable-influxdb")] = "true"
-			ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("secure-verify-ca-secret")] = "true"
+			ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("enable-influxdb")] = TRUE
+			ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("secure-verify-ca-secret")] = TRUE
 			ing.ObjectMeta.Annotations[parser.GetAnnotationWithPrefix("influxdb-host")] = "blabla"
 			defer func() {
 				ing.ObjectMeta.Annotations = map[string]string{}
@@ -472,6 +475,7 @@ func TestCheckWarning(t *testing.T) {
 	})
 }
 
+//nolint:dupl // Ignore dupl errors for similar test case
 func TestMergeAlternativeBackends(t *testing.T) {
 	testCases := map[string]struct {
 		ingress      *ingress.Ingress
@@ -1537,8 +1541,8 @@ func TestExtractTLSSecretName(t *testing.T) {
 	}
 }
 
+//nolint:gocyclo // Ignore function complexity error
 func TestGetBackendServers(t *testing.T) {
-
 	testCases := []struct {
 		Ingresses    []*ingress.Ingress
 		Validate     func(ingresses []*ingress.Ingress, upstreams []*ingress.Backend, servers []*ingress.Server)
@@ -2078,7 +2082,7 @@ func TestGetBackendServers(t *testing.T) {
 					t.Errorf("server hostname should be 'example.com', got '%s'", s.Hostname)
 				}
 
-				if s.Locations[0].Backend != "example-http-svc-1-80" || s.Locations[1].Backend != "example-http-svc-1-80" || s.Locations[2].Backend != "example-http-svc-1-80" {
+				if s.Locations[0].Backend != exampleBackend || s.Locations[1].Backend != exampleBackend || s.Locations[2].Backend != exampleBackend {
 					t.Errorf("all location backend should be 'example-http-svc-1-80'")
 				}
 
@@ -2087,7 +2091,7 @@ func TestGetBackendServers(t *testing.T) {
 					return
 				}
 
-				if upstreams[0].Name != "example-http-svc-1-80" {
+				if upstreams[0].Name != exampleBackend {
 					t.Errorf("example-http-svc-1-80 should be first upstream, got %s", upstreams[0].Name)
 					return
 				}
@@ -2101,6 +2105,7 @@ func TestGetBackendServers(t *testing.T) {
 			SetConfigMap: testConfigMap,
 		},
 		{
+			//nolint:dupl // Ignore dupl errors for similar test case
 			Ingresses: []*ingress.Ingress{
 				{
 					Ingress: networking.Ingress{
@@ -2208,6 +2213,7 @@ func TestGetBackendServers(t *testing.T) {
 			SetConfigMap: testConfigMap,
 		},
 		{
+			//nolint:dupl // Ignore dupl errors for similar test case
 			Ingresses: []*ingress.Ingress{
 				{
 					Ingress: networking.Ingress{
@@ -2319,7 +2325,7 @@ func TestGetBackendServers(t *testing.T) {
 						SelfLink: fmt.Sprintf("/api/v1/namespaces/%s/configmaps/config", ns),
 					},
 					Data: map[string]string{
-						"proxy-ssl-location-only": "true",
+						"proxy-ssl-location-only": TRUE,
 					},
 				}
 			},
@@ -2380,7 +2386,7 @@ func TestGetBackendServers(t *testing.T) {
 						SelfLink: fmt.Sprintf("/api/v1/namespaces/%s/configmaps/config", ns),
 					},
 					Data: map[string]string{
-						"proxy-ssl-location-only": "true",
+						"proxy-ssl-location-only": TRUE,
 					},
 				}
 			},
@@ -2449,7 +2455,6 @@ func TestGetBackendServers(t *testing.T) {
 				if len(s.Locations[0].Allowlist.CIDR) != 1 || s.Locations[0].Allowlist.CIDR[0] != "10.0.0.0/24" {
 					t.Errorf("allow list was incorrectly dropped, len should be 1 and contain 10.0.0.0/24")
 				}
-
 			},
 			SetConfigMap: func(ns string) *corev1.ConfigMap {
 				return &corev1.ConfigMap{
@@ -2520,7 +2525,7 @@ func newNGINXController(t *testing.T) *NGINXController {
 		channels.NewRingChannel(10),
 		false,
 		true,
-		&ingressclass.IngressClassConfiguration{
+		&ingressclass.Configuration{
 			Controller:      "k8s.io/ingress-nginx",
 			AnnotationValue: "nginx",
 		},
@@ -2586,7 +2591,7 @@ func newDynamicNginxController(t *testing.T, setConfigMap func(string) *corev1.C
 		channels.NewRingChannel(10),
 		false,
 		true,
-		&ingressclass.IngressClassConfiguration{
+		&ingressclass.Configuration{
 			Controller:      "k8s.io/ingress-nginx",
 			AnnotationValue: "nginx",
 		},
diff --git a/internal/ingress/controller/endpointslices.go b/internal/ingress/controller/endpointslices.go
index ca6e595c8..4f98e3ce7 100644
--- a/internal/ingress/controller/endpointslices.go
+++ b/internal/ingress/controller/endpointslices.go
@@ -36,8 +36,8 @@ import (
 
 // getEndpointsFromSlices returns a list of Endpoint structs for a given service/target port combination.
 func getEndpointsFromSlices(s *corev1.Service, port *corev1.ServicePort, proto corev1.Protocol, zoneForHints string,
-	getServiceEndpointsSlices func(string) ([]*discoveryv1.EndpointSlice, error)) []ingress.Endpoint {
-
+	getServiceEndpointsSlices func(string) ([]*discoveryv1.EndpointSlice, error),
+) []ingress.Endpoint {
 	upsServers := []ingress.Endpoint{}
 
 	if s == nil || port == nil {
@@ -94,7 +94,7 @@ func getEndpointsFromSlices(s *corev1.Service, port *corev1.ServicePort, proto c
 				if !reflect.DeepEqual(*epPort.Protocol, proto) {
 					continue
 				}
-				var targetPort int32 = 0
+				var targetPort int32
 				if port.Name == "" {
 					// port.Name is optional if there is only one port
 					targetPort = *epPort.Port
diff --git a/internal/ingress/controller/endpointslices_test.go b/internal/ingress/controller/endpointslices_test.go
index b61e9a4f3..69ef3ef1b 100644
--- a/internal/ingress/controller/endpointslices_test.go
+++ b/internal/ingress/controller/endpointslices_test.go
@@ -27,6 +27,7 @@ import (
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
+//nolint:dupl // Ignore dupl errors for similar test case
 func TestGetEndpointsFromSlices(t *testing.T) {
 	tests := []struct {
 		name   string
diff --git a/internal/ingress/controller/ingressclass/ingressclass.go b/internal/ingress/controller/ingressclass/ingressclass.go
index 95bd98d0f..90c6a4d67 100644
--- a/internal/ingress/controller/ingressclass/ingressclass.go
+++ b/internal/ingress/controller/ingressclass/ingressclass.go
@@ -29,9 +29,9 @@ const (
 	DefaultAnnotationValue = "nginx"
 )
 
-// IngressClassConfiguration defines the various aspects of IngressClass parsing
+// Configuration defines the various aspects of IngressClass parsing
 // and how the controller should behave in each case
-type IngressClassConfiguration struct {
+type Configuration struct {
 	// Controller defines the controller value this daemon watch to.
 	// Defaults to "k8s.io/ingress-nginx" defined in flags
 	Controller string
@@ -45,7 +45,7 @@ type IngressClassConfiguration struct {
 	// IgnoreIngressClass defines if Controller should ignore the IngressClass Object if no permissions are
 	// granted on IngressClass
 	IgnoreIngressClass bool
-	//IngressClassByName defines if the Controller should watch for Ingress Classes by
+	// IngressClassByName defines if the Controller should watch for Ingress Classes by
 	// .metadata.name together with .spec.Controller
 	IngressClassByName bool
 }
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 6c25aa34f..30f785586 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -113,7 +113,7 @@ func NewNGINXController(config *Configuration, mc metric.Collector) *NGINXContro
 	if n.cfg.ValidationWebhook != "" {
 		n.validationWebhookServer = &http.Server{
 			Addr: config.ValidationWebhook,
-			//G112 (CWE-400): Potential Slowloris Attack
+			// G112 (CWE-400): Potential Slowloris Attack
 			ReadHeaderTimeout: 10 * time.Second,
 			Handler:           adm_controller.NewAdmissionControllerServer(&adm_controller.IngressAdmission{Checker: n}),
 			TLSConfig:         ssl.NewTLSListener(n.cfg.ValidationWebhookCertPath, n.cfg.ValidationWebhookKeyPath).TLSConfig(),
@@ -429,7 +429,7 @@ func (n *NGINXController) start(cmd *exec.Cmd) {
 }
 
 // DefaultEndpoint returns the default endpoint to be use as default server that returns 404.
-func (n NGINXController) DefaultEndpoint() ingress.Endpoint {
+func (n *NGINXController) DefaultEndpoint() ingress.Endpoint {
 	return ingress.Endpoint{
 		Address: "127.0.0.1",
 		Port:    fmt.Sprintf("%v", n.cfg.ListenPorts.Default),
@@ -438,8 +438,9 @@ func (n NGINXController) DefaultEndpoint() ingress.Endpoint {
 }
 
 // generateTemplate returns the nginx configuration file content
-func (n NGINXController) generateTemplate(cfg ngx_config.Configuration, ingressCfg ingress.Configuration) ([]byte, error) {
-
+//
+//nolint:gocritic // the cfg shouldn't be changed, and shouldn't be mutated by other processes while being rendered.
+func (n *NGINXController) generateTemplate(cfg ngx_config.Configuration, ingressCfg ingress.Configuration) ([]byte, error) {
 	if n.cfg.EnableSSLPassthrough {
 		servers := []*tcpproxy.TCPServer{}
 		for _, pb := range ingressCfg.PassthroughBackends {
@@ -458,6 +459,7 @@ func (n NGINXController) generateTemplate(cfg ngx_config.Configuration, ingressC
 				}
 			} else {
 				for _, sp := range svc.Spec.Ports {
+					//nolint:gosec // Ignore G109 error
 					if sp.Port == int32(port) {
 						port = int(sp.Port)
 						break
@@ -563,7 +565,7 @@ func (n NGINXController) generateTemplate(cfg ngx_config.Configuration, ingressC
 		if err != nil {
 			klog.Warningf("Error reading Secret %q from local store: %v", secretName, err)
 		} else {
-			nsSecName := strings.Replace(secretName, "/", "-", -1)
+			nsSecName := strings.ReplaceAll(secretName, "/", "-")
 			dh, ok := secret.Data["dhparam.pem"]
 			if ok {
 				pemFileName, err := ssl.AddOrUpdateDHParam(nsSecName, dh)
@@ -589,7 +591,7 @@ func (n NGINXController) generateTemplate(cfg ngx_config.Configuration, ingressC
 		}
 	}
 
-	tc := ngx_config.TemplateConfig{
+	tc := &ngx_config.TemplateConfig{
 		ProxySetHeaders:          setHeaders,
 		AddHeaders:               addHeaders,
 		BacklogSize:              sysctlSomaxconn(),
@@ -623,7 +625,7 @@ func (n NGINXController) generateTemplate(cfg ngx_config.Configuration, ingressC
 
 // testTemplate checks if the NGINX configuration inside the byte array is valid
 // running the command "nginx -t" using a temporal file.
-func (n NGINXController) testTemplate(cfg []byte) error {
+func (n *NGINXController) testTemplate(cfg []byte) error {
 	if len(cfg) == 0 {
 		return fmt.Errorf("invalid NGINX configuration (empty)")
 	}
@@ -658,6 +660,8 @@ Error: %v
 // changes were detected. The received backend Configuration is merged with the
 // configuration ConfigMap before generating the final configuration file.
 // Returns nil in case the backend was successfully reloaded.
+//
+//nolint:gocritic // the cfg shouldn't be changed, and shouldn't be mutated by other processes while being rendered.
 func (n *NGINXController) OnUpdate(ingressCfg ingress.Configuration) error {
 	cfg := n.store.GetBackendConfiguration()
 	cfg.Resolver = n.resolver
@@ -667,12 +671,12 @@ func (n *NGINXController) OnUpdate(ingressCfg ingress.Configuration) error {
 		return err
 	}
 
-	err = createOpentracingCfg(cfg)
+	err = createOpentracingCfg(&cfg)
 	if err != nil {
 		return err
 	}
 
-	err = createOpentelemetryCfg(cfg)
+	err = createOpentelemetryCfg(&cfg)
 	if err != nil {
 		return err
 	}
@@ -683,7 +687,10 @@ func (n *NGINXController) OnUpdate(ingressCfg ingress.Configuration) error {
 	}
 
 	if klog.V(2).Enabled() {
-		src, _ := os.ReadFile(cfgPath)
+		src, err := os.ReadFile(cfgPath)
+		if err != nil {
+			return err
+		}
 		if !bytes.Equal(src, content) {
 			tmpfile, err := os.CreateTemp("", "new-nginx-cfg")
 			if err != nil {
@@ -694,11 +701,14 @@ func (n *NGINXController) OnUpdate(ingressCfg ingress.Configuration) error {
 			if err != nil {
 				return err
 			}
-
+			//nolint:gosec //Ignore G204 error
 			diffOutput, err := exec.Command("diff", "-I", "'# Configuration.*'", "-u", cfgPath, tmpfile.Name()).CombinedOutput()
 			if err != nil {
 				if exitError, ok := err.(*exec.ExitError); ok {
-					ws := exitError.Sys().(syscall.WaitStatus)
+					ws, ok := exitError.Sys().(syscall.WaitStatus)
+					if !ok {
+						klog.Errorf("unexpected type: %T", exitError.Sys())
+					}
 					if ws.ExitStatus() == 2 {
 						klog.Warningf("Failed to executing diff command: %v", err)
 					}
@@ -828,9 +838,10 @@ func (n *NGINXController) configureDynamically(pcfg *ingress.Configuration) erro
 	return nil
 }
 
-func updateStreamConfiguration(TCPEndpoints []ingress.L4Service, UDPEndpoints []ingress.L4Service) error {
+func updateStreamConfiguration(tcpEndpoints, udpEndpoints []ingress.L4Service) error {
 	streams := make([]ingress.Backend, 0)
-	for _, ep := range TCPEndpoints {
+	for i := range tcpEndpoints {
+		ep := &tcpEndpoints[i]
 		var service *apiv1.Service
 		if ep.Service != nil {
 			service = &apiv1.Service{Spec: ep.Service.Spec}
@@ -844,7 +855,8 @@ func updateStreamConfiguration(TCPEndpoints []ingress.L4Service, UDPEndpoints []
 			Service:   service,
 		})
 	}
-	for _, ep := range UDPEndpoints {
+	for i := range udpEndpoints {
+		ep := &udpEndpoints[i]
 		var service *apiv1.Service
 		if ep.Service != nil {
 			service = &apiv1.Service{Spec: ep.Service.Spec}
@@ -1034,7 +1046,7 @@ ratio = {{ .OtelSamplerRatio }}
 parent_based = {{ .OtelSamplerParentBased }}
 `
 
-func datadogOpentracingCfg(cfg ngx_config.Configuration) (string, error) {
+func datadogOpentracingCfg(cfg *ngx_config.Configuration) (string, error) {
 	m := map[string]interface{}{
 		"service":                 cfg.DatadogServiceName,
 		"agent_host":              cfg.DatadogCollectorHost,
@@ -1058,7 +1070,7 @@ func datadogOpentracingCfg(cfg ngx_config.Configuration) (string, error) {
 	return string(buf), nil
 }
 
-func opentracingCfgFromTemplate(cfg ngx_config.Configuration, tmplName string, tmplText string) (string, error) {
+func opentracingCfgFromTemplate(cfg *ngx_config.Configuration, tmplName, tmplText string) (string, error) {
 	tmpl, err := template.New(tmplName).Parse(tmplText)
 	if err != nil {
 		return "", err
@@ -1073,17 +1085,18 @@ func opentracingCfgFromTemplate(cfg ngx_config.Configuration, tmplName string, t
 	return tmplBuf.String(), nil
 }
 
-func createOpentracingCfg(cfg ngx_config.Configuration) error {
+func createOpentracingCfg(cfg *ngx_config.Configuration) error {
 	var configData string
 	var err error
 
-	if cfg.ZipkinCollectorHost != "" {
+	switch {
+	case cfg.ZipkinCollectorHost != "":
 		configData, err = opentracingCfgFromTemplate(cfg, "zipkin", zipkinTmpl)
-	} else if cfg.JaegerCollectorHost != "" || cfg.JaegerEndpoint != "" {
+	case cfg.JaegerCollectorHost != "" || cfg.JaegerEndpoint != "":
 		configData, err = opentracingCfgFromTemplate(cfg, "jaeger", jaegerTmpl)
-	} else if cfg.DatadogCollectorHost != "" {
+	case cfg.DatadogCollectorHost != "":
 		configData, err = datadogOpentracingCfg(cfg)
-	} else {
+	default:
 		configData = "{}"
 	}
 
@@ -1097,8 +1110,7 @@ func createOpentracingCfg(cfg ngx_config.Configuration) error {
 	return os.WriteFile("/etc/nginx/opentracing.json", []byte(expanded), file.ReadWriteByUser)
 }
 
-func createOpentelemetryCfg(cfg ngx_config.Configuration) error {
-
+func createOpentelemetryCfg(cfg *ngx_config.Configuration) error {
 	tmpl, err := template.New("otel").Parse(otelTmpl)
 	if err != nil {
 		return err
@@ -1123,7 +1135,10 @@ func cleanTempNginxCfg() error {
 			return filepath.SkipDir
 		}
 
-		dur, _ := time.ParseDuration("-5m")
+		dur, err := time.ParseDuration("-5m")
+		if err != nil {
+			return err
+		}
 		fiveMinutesAgo := time.Now().Add(dur)
 		if strings.HasPrefix(info.Name(), tempNginxPattern) && info.ModTime().Before(fiveMinutesAgo) {
 			files = append(files, path)
diff --git a/internal/ingress/controller/nginx_test.go b/internal/ingress/controller/nginx_test.go
index 56eb0f324..c68b0b188 100644
--- a/internal/ingress/controller/nginx_test.go
+++ b/internal/ingress/controller/nginx_test.go
@@ -58,6 +58,7 @@ func TestConfigureDynamically(t *testing.T) {
 
 	server := &httptest.Server{
 		Listener: listener,
+		//nolint:gosec // Ignore not configured ReadHeaderTimeout in testing
 		Config: &http.Server{
 			Handler: http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 				w.WriteHeader(http.StatusCreated)
@@ -76,23 +77,17 @@ func TestConfigureDynamically(t *testing.T) {
 
 				switch r.URL.Path {
 				case "/configuration/backends":
-					{
-						if strings.Contains(body, "target") {
-							t.Errorf("unexpected target reference in JSON content: %v", body)
-						}
+					if strings.Contains(body, "target") {
+						t.Errorf("unexpected target reference in JSON content: %v", body)
+					}
 
-						if !strings.Contains(body, "service") {
-							t.Errorf("service reference should be present in JSON content: %v", body)
-						}
+					if !strings.Contains(body, "service") {
+						t.Errorf("service reference should be present in JSON content: %v", body)
 					}
 				case "/configuration/general":
-					{
-					}
 				case "/configuration/servers":
-					{
-						if !strings.Contains(body, `{"certificates":{},"servers":{"myapp.fake":"-1"}}`) {
-							t.Errorf("should be present in JSON content: %v", body)
-						}
+					if !strings.Contains(body, `{"certificates":{},"servers":{"myapp.fake":"-1"}}`) {
+						t.Errorf("should be present in JSON content: %v", body)
 					}
 				default:
 					t.Errorf("unknown request to %s", r.URL.Path)
@@ -218,6 +213,7 @@ func TestConfigureCertificates(t *testing.T) {
 
 	server := &httptest.Server{
 		Listener: listener,
+		//nolint:gosec // Ignore not configured ReadHeaderTimeout in testing
 		Config: &http.Server{
 			Handler: http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
 				w.WriteHeader(http.StatusCreated)
@@ -414,6 +410,7 @@ func TestCleanTempNginxCfg(t *testing.T) {
 	}
 }
 
+//nolint:unparam // Ingnore `network` always receives `"tcp"` error
 func tryListen(network, address string) (l net.Listener, err error) {
 	condFunc := func() (bool, error) {
 		l, err = net.Listen(network, address)
diff --git a/internal/ingress/controller/process/nginx.go b/internal/ingress/controller/process/nginx.go
index 70227ac2e..fdf501616 100644
--- a/internal/ingress/controller/process/nginx.go
+++ b/internal/ingress/controller/process/nginx.go
@@ -30,7 +30,10 @@ func IsRespawnIfRequired(err error) bool {
 		return false
 	}
 
-	waitStatus := exitError.Sys().(syscall.WaitStatus)
+	waitStatus, ok := exitError.Sys().(syscall.WaitStatus)
+	if !ok {
+		return false
+	}
 	klog.Warningf(`
 -------------------------------------------------------------------------------
 NGINX master process died (%v): %v
diff --git a/internal/ingress/controller/status.go b/internal/ingress/controller/status.go
index 3b0a41ab8..e061b2cb7 100644
--- a/internal/ingress/controller/status.go
+++ b/internal/ingress/controller/status.go
@@ -50,7 +50,7 @@ func setupLeaderElection(config *leaderElectionConfig) {
 
 	var cancelContext context.CancelFunc
 
-	var newLeaderCtx = func(ctx context.Context) context.CancelFunc {
+	newLeaderCtx := func(ctx context.Context) context.CancelFunc {
 		// allow to cancel the context in case we stop being the leader
 		leaderCtx, cancel := context.WithCancel(ctx)
 		go elector.Run(leaderCtx)
@@ -86,8 +86,10 @@ func setupLeaderElection(config *leaderElectionConfig) {
 	}
 
 	broadcaster := record.NewBroadcaster()
-	hostname, _ := os.Hostname()
-
+	hostname, err := os.Hostname()
+	if err != nil {
+		klog.Errorf("unexpected error getting hostname: %v", err)
+	}
 	recorder := broadcaster.NewRecorder(scheme.Scheme, apiv1.EventSource{
 		Component: "ingress-leader-elector",
 		Host:      hostname,
@@ -107,7 +109,7 @@ func setupLeaderElection(config *leaderElectionConfig) {
 
 	ttl := 30 * time.Second
 
-	elector, err := leaderelection.NewLeaderElector(leaderelection.LeaderElectionConfig{
+	elector, err = leaderelection.NewLeaderElector(leaderelection.LeaderElectionConfig{
 		Lock:          lock,
 		LeaseDuration: ttl,
 		RenewDeadline: ttl / 2,
diff --git a/internal/ingress/controller/store/backend_ssl.go b/internal/ingress/controller/store/backend_ssl.go
index 6f0fcf189..81b508cd2 100644
--- a/internal/ingress/controller/store/backend_ssl.go
+++ b/internal/ingress/controller/store/backend_ssl.go
@@ -88,10 +88,11 @@ func (s *k8sStore) getPemCertificate(secretName string) (*ingress.SSLCert, error
 	auth := secret.Data["auth"]
 
 	// namespace/secretName -> namespace-secretName
-	nsSecName := strings.Replace(secretName, "/", "-", -1)
+	nsSecName := strings.ReplaceAll(secretName, "/", "-")
 
 	var sslCert *ingress.SSLCert
-	if okcert && okkey {
+	switch {
+	case okcert && okkey:
 		if cert == nil {
 			return nil, fmt.Errorf("key 'tls.crt' missing from Secret %q", secretName)
 		}
@@ -144,7 +145,7 @@ func (s *k8sStore) getPemCertificate(secretName string) (*ingress.SSLCert, error
 		}
 
 		klog.V(3).InfoS(msg)
-	} else if len(ca) > 0 {
+	case len(ca) > 0:
 		sslCert, err = ssl.CreateCACert(ca)
 		if err != nil {
 			return nil, fmt.Errorf("unexpected error creating SSL Cert: %v", err)
@@ -166,7 +167,7 @@ func (s *k8sStore) getPemCertificate(secretName string) (*ingress.SSLCert, error
 		// makes this secret in 'syncSecret' to be used for Certificate Authentication
 		// this does not enable Certificate Authentication
 		klog.V(3).InfoS("Configuring Secret for TLS authentication", "secret", secretName)
-	} else {
+	default:
 		if auth != nil {
 			return nil, ErrSecretForAuth
 		}
diff --git a/internal/ingress/controller/store/endpointslice.go b/internal/ingress/controller/store/endpointslice.go
index 78d088695..61bc63ae7 100644
--- a/internal/ingress/controller/store/endpointslice.go
+++ b/internal/ingress/controller/store/endpointslice.go
@@ -38,7 +38,7 @@ func (s *EndpointSliceLister) MatchByKey(key string) ([]*discoveryv1.EndpointSli
 		keyNsLen = 0
 	} else {
 		// count '/' char
-		keyNsLen += 1
+		keyNsLen++
 	}
 	// filter endpointSlices owned by svc
 	for _, listKey := range s.ListKeys() {
diff --git a/internal/ingress/controller/store/endpointslice_test.go b/internal/ingress/controller/store/endpointslice_test.go
index 1342575ae..5d423a3a6 100644
--- a/internal/ingress/controller/store/endpointslice_test.go
+++ b/internal/ingress/controller/store/endpointslice_test.go
@@ -87,7 +87,6 @@ func TestEndpointSliceLister(t *testing.T) {
 			t.Errorf("unexpected error %v", err)
 		}
 		eps, err := el.MatchByKey(key)
-
 		if err != nil {
 			t.Errorf("unexpeted error %v", err)
 		}
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index c11e35d76..918dfd41a 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -105,7 +105,7 @@ type Storer interface {
 	Run(stopCh chan struct{})
 
 	// GetIngressClass validates given ingress against ingress class configuration and returns the ingress class.
-	GetIngressClass(ing *networkingv1.Ingress, icConfig *ingressclass.IngressClassConfiguration) (string, error)
+	GetIngressClass(ing *networkingv1.Ingress, icConfig *ingressclass.Configuration) (string, error)
 }
 
 // EventType type of event associated with an informer
@@ -242,7 +242,9 @@ type k8sStore struct {
 	defaultSSLCertificate string
 }
 
-// New creates a new object store to be used in the ingress controller
+// New creates a new object store to be used in the ingress controller.
+//
+//nolint:gocyclo // Ignore function complexity error.
 func New(
 	namespace string,
 	namespaceSelector labels.Selector,
@@ -252,9 +254,9 @@ func New(
 	updateCh *channels.RingChannel,
 	disableCatchAll bool,
 	deepInspector bool,
-	icConfig *ingressclass.IngressClassConfiguration,
-	disableSyncEvents bool) Storer {
-
+	icConfig *ingressclass.Configuration,
+	disableSyncEvents bool,
+) Storer {
 	store := &k8sStore{
 		informers:             &Informer{},
 		listers:               &Lister{},
@@ -474,7 +476,8 @@ func New(
 				_, errOld = store.GetIngressClass(oldIng, icConfig)
 				classCur, errCur = store.GetIngressClass(curIng, icConfig)
 			}
-			if errOld != nil && errCur == nil {
+			switch {
+			case errOld != nil && errCur == nil:
 				if hasCatchAllIngressRule(curIng.Spec) && disableCatchAll {
 					klog.InfoS("ignoring update for catch-all ingress because of --disable-catch-all", "ingress", klog.KObj(curIng))
 					return
@@ -482,11 +485,11 @@ func New(
 
 				klog.InfoS("creating ingress", "ingress", klog.KObj(curIng), "ingressclass", classCur)
 				recorder.Eventf(curIng, corev1.EventTypeNormal, "Sync", "Scheduled for sync")
-			} else if errOld == nil && errCur != nil {
+			case errOld == nil && errCur != nil:
 				klog.InfoS("removing ingress because of unknown ingressclass", "ingress", klog.KObj(curIng))
 				ingDeleteHandler(old)
 				return
-			} else if errCur == nil && !reflect.DeepEqual(old, cur) {
+			case errCur == nil && !reflect.DeepEqual(old, cur):
 				if hasCatchAllIngressRule(curIng.Spec) && disableCatchAll {
 					klog.InfoS("ignoring update for catch-all ingress and delete old one because of --disable-catch-all", "ingress", klog.KObj(curIng))
 					ingDeleteHandler(old)
@@ -494,7 +497,7 @@ func New(
 				}
 
 				recorder.Eventf(curIng, corev1.EventTypeNormal, "Sync", "Scheduled for sync")
-			} else {
+			default:
 				klog.V(3).InfoS("No changes on ingress. Skipping update", "ingress", klog.KObj(curIng))
 				return
 			}
@@ -519,7 +522,10 @@ func New(
 
 	ingressClassEventHandler := cache.ResourceEventHandlerFuncs{
 		AddFunc: func(obj interface{}) {
-			ingressclass := obj.(*networkingv1.IngressClass)
+			ingressclass, ok := obj.(*networkingv1.IngressClass)
+			if !ok {
+				klog.Errorf("unexpected type: %T", obj)
+			}
 			foundClassByName := false
 			if icConfig.IngressClassByName && ingressclass.Name == icConfig.AnnotationValue {
 				klog.InfoS("adding ingressclass as ingress-class-by-name is configured", "ingressclass", klog.KObj(ingressclass))
@@ -541,7 +547,10 @@ func New(
 			}
 		},
 		DeleteFunc: func(obj interface{}) {
-			ingressclass := obj.(*networkingv1.IngressClass)
+			ingressclass, ok := obj.(*networkingv1.IngressClass)
+			if !ok {
+				klog.Errorf("unexpected type: %T", obj)
+			}
 			if ingressclass.Spec.Controller != icConfig.Controller {
 				klog.InfoS("ignoring ingressclass as the spec.controller is not the same of this ingress", "ingressclass", klog.KObj(ingressclass))
 				return
@@ -557,8 +566,14 @@ func New(
 			}
 		},
 		UpdateFunc: func(old, cur interface{}) {
-			oic := old.(*networkingv1.IngressClass)
-			cic := cur.(*networkingv1.IngressClass)
+			oic, ok := old.(*networkingv1.IngressClass)
+			if !ok {
+				klog.Errorf("unexpected type: %T", old)
+			}
+			cic, ok := cur.(*networkingv1.IngressClass)
+			if !ok {
+				klog.Errorf("unexpected type: %T", cur)
+			}
 			if cic.Spec.Controller != icConfig.Controller {
 				klog.InfoS("ignoring ingressclass as the spec.controller is not the same of this ingress", "ingressclass", klog.KObj(cic))
 				return
@@ -581,7 +596,10 @@ func New(
 
 	secrEventHandler := cache.ResourceEventHandlerFuncs{
 		AddFunc: func(obj interface{}) {
-			sec := obj.(*corev1.Secret)
+			sec, ok := obj.(*corev1.Secret)
+			if !ok {
+				klog.Errorf("unexpected type: %T", obj)
+			}
 			key := k8s.MetaNamespaceKey(sec)
 
 			if store.defaultSSLCertificate == key {
@@ -608,7 +626,10 @@ func New(
 		},
 		UpdateFunc: func(old, cur interface{}) {
 			if !reflect.DeepEqual(old, cur) {
-				sec := cur.(*corev1.Secret)
+				sec, ok := cur.(*corev1.Secret)
+				if !ok {
+					klog.Errorf("unexpected type: %T", cur)
+				}
 				key := k8s.MetaNamespaceKey(sec)
 
 				if !watchedNamespace(sec.Namespace) {
@@ -695,8 +716,14 @@ func New(
 			}
 		},
 		UpdateFunc: func(old, cur interface{}) {
-			oeps := old.(*discoveryv1.EndpointSlice)
-			ceps := cur.(*discoveryv1.EndpointSlice)
+			oeps, ok := old.(*discoveryv1.EndpointSlice)
+			if !ok {
+				klog.Errorf("unexpected type: %T", old)
+			}
+			ceps, ok := cur.(*discoveryv1.EndpointSlice)
+			if !ok {
+				klog.Errorf("unexpected type: %T", cur)
+			}
 			if !reflect.DeepEqual(ceps.Endpoints, oeps.Endpoints) {
 				updateCh.In() <- Event{
 					Type: UpdateEvent,
@@ -750,7 +777,10 @@ func New(
 
 	cmEventHandler := cache.ResourceEventHandlerFuncs{
 		AddFunc: func(obj interface{}) {
-			cfgMap := obj.(*corev1.ConfigMap)
+			cfgMap, ok := obj.(*corev1.ConfigMap)
+			if !ok {
+				klog.Errorf("unexpected type: %T", obj)
+			}
 			key := k8s.MetaNamespaceKey(cfgMap)
 			handleCfgMapEvent(key, cfgMap, "CREATE")
 		},
@@ -759,7 +789,10 @@ func New(
 				return
 			}
 
-			cfgMap := cur.(*corev1.ConfigMap)
+			cfgMap, ok := cur.(*corev1.ConfigMap)
+			if !ok {
+				klog.Errorf("unexpected type: %T", cur)
+			}
 			key := k8s.MetaNamespaceKey(cfgMap)
 			handleCfgMapEvent(key, cfgMap, "UPDATE")
 		},
@@ -767,7 +800,10 @@ func New(
 
 	serviceHandler := cache.ResourceEventHandlerFuncs{
 		AddFunc: func(obj interface{}) {
-			svc := obj.(*corev1.Service)
+			svc, ok := obj.(*corev1.Service)
+			if !ok {
+				klog.Errorf("unexpected type: %T", obj)
+			}
 			if svc.Spec.Type == corev1.ServiceTypeExternalName {
 				updateCh.In() <- Event{
 					Type: CreateEvent,
@@ -776,7 +812,10 @@ func New(
 			}
 		},
 		DeleteFunc: func(obj interface{}) {
-			svc := obj.(*corev1.Service)
+			svc, ok := obj.(*corev1.Service)
+			if !ok {
+				klog.Errorf("unexpected type: %T", obj)
+			}
 			if svc.Spec.Type == corev1.ServiceTypeExternalName {
 				updateCh.In() <- Event{
 					Type: DeleteEvent,
@@ -785,8 +824,14 @@ func New(
 			}
 		},
 		UpdateFunc: func(old, cur interface{}) {
-			oldSvc := old.(*corev1.Service)
-			curSvc := cur.(*corev1.Service)
+			oldSvc, ok := old.(*corev1.Service)
+			if !ok {
+				klog.Errorf("unexpected type: %T", old)
+			}
+			curSvc, ok := cur.(*corev1.Service)
+			if !ok {
+				klog.Errorf("unexpected type: %T", cur)
+			}
 
 			if reflect.DeepEqual(oldSvc, curSvc) {
 				return
@@ -821,7 +866,10 @@ func New(
 	}
 
 	// do not wait for informers to read the configmap configuration
-	ns, name, _ := k8s.ParseNameNS(configmap)
+	ns, name, err := k8s.ParseNameNS(configmap)
+	if err != nil {
+		klog.Errorf("unexpected error parsing name and ns: %v", err)
+	}
 	cm, err := client.CoreV1().ConfigMaps(ns).Get(context.TODO(), name, metav1.GetOptions{})
 	if err != nil {
 		klog.Warningf("Unexpected error reading configuration configmap: %v", err)
@@ -837,10 +885,10 @@ func hasCatchAllIngressRule(spec networkingv1.IngressSpec) bool {
 	return spec.DefaultBackend != nil
 }
 
-func checkBadAnnotationValue(annotations map[string]string, badwords string) error {
+func checkBadAnnotationValue(annotationMap map[string]string, badwords string) error {
 	arraybadWords := strings.Split(strings.TrimSpace(badwords), ",")
 
-	for annotation, value := range annotations {
+	for annotation, value := range annotationMap {
 		if strings.HasPrefix(annotation, fmt.Sprintf("%s/", parser.AnnotationsPrefix)) {
 			for _, forbiddenvalue := range arraybadWords {
 				if strings.Contains(value, forbiddenvalue) {
@@ -999,7 +1047,7 @@ func (s *k8sStore) GetService(key string) (*corev1.Service, error) {
 	return s.listers.Service.ByKey(key)
 }
 
-func (s *k8sStore) GetIngressClass(ing *networkingv1.Ingress, icConfig *ingressclass.IngressClassConfiguration) (string, error) {
+func (s *k8sStore) GetIngressClass(ing *networkingv1.Ingress, icConfig *ingressclass.Configuration) (string, error) {
 	// First we try ingressClassName
 	if !icConfig.IgnoreIngressClass && ing.Spec.IngressClassName != nil {
 		iclass, err := s.listers.IngressClass.ByKey(*ing.Spec.IngressClassName)
@@ -1010,11 +1058,11 @@ func (s *k8sStore) GetIngressClass(ing *networkingv1.Ingress, icConfig *ingressc
 	}
 
 	// Then we try annotation
-	if ingressclass, ok := ing.GetAnnotations()[ingressclass.IngressKey]; ok {
-		if ingressclass != icConfig.AnnotationValue {
+	if class, ok := ing.GetAnnotations()[ingressclass.IngressKey]; ok {
+		if class != icConfig.AnnotationValue {
 			return "", fmt.Errorf("ingress class annotation is not equal to the expected by Ingress Controller")
 		}
-		return ingressclass, nil
+		return class, nil
 	}
 
 	// Then we accept if the WithoutClass is enabled
@@ -1055,7 +1103,10 @@ func (s *k8sStore) ListIngresses() []*ingress.Ingress {
 	// filter ingress rules
 	ingresses := make([]*ingress.Ingress, 0)
 	for _, item := range s.listers.IngressWithAnnotation.List() {
-		ing := item.(*ingress.Ingress)
+		ing, ok := item.(*ingress.Ingress)
+		if !ok {
+			klog.Errorf("unexpected type: %T", item)
+		}
 		ingresses = append(ingresses, ing)
 	}
 
diff --git a/internal/ingress/controller/store/store_test.go b/internal/ingress/controller/store/store_test.go
index 774a45676..317c0f36c 100644
--- a/internal/ingress/controller/store/store_test.go
+++ b/internal/ingress/controller/store/store_test.go
@@ -44,29 +44,27 @@ import (
 
 var pathPrefix networking.PathType = networking.PathTypePrefix
 
-var DefaultClassConfig = &ingressclass.IngressClassConfiguration{
+var DefaultClassConfig = &ingressclass.Configuration{
 	Controller:        ingressclass.DefaultControllerName,
 	AnnotationValue:   ingressclass.DefaultAnnotationValue,
 	WatchWithoutClass: false,
 }
 
-var (
-	commonIngressSpec = networking.IngressSpec{
-		Rules: []networking.IngressRule{
-			{
-				Host: "dummy",
-				IngressRuleValue: networking.IngressRuleValue{
-					HTTP: &networking.HTTPIngressRuleValue{
-						Paths: []networking.HTTPIngressPath{
-							{
-								Path:     "/",
-								PathType: &pathPrefix,
-								Backend: networking.IngressBackend{
-									Service: &networking.IngressServiceBackend{
-										Name: "http-svc",
-										Port: networking.ServiceBackendPort{
-											Number: 80,
-										},
+var commonIngressSpec = networking.IngressSpec{
+	Rules: []networking.IngressRule{
+		{
+			Host: "dummy",
+			IngressRuleValue: networking.IngressRuleValue{
+				HTTP: &networking.HTTPIngressRuleValue{
+					Paths: []networking.HTTPIngressPath{
+						{
+							Path:     "/",
+							PathType: &pathPrefix,
+							Backend: networking.IngressBackend{
+								Service: &networking.IngressServiceBackend{
+									Name: "http-svc",
+									Port: networking.ServiceBackendPort{
+										Number: 80,
 									},
 								},
 							},
@@ -75,12 +73,15 @@ var (
 				},
 			},
 		},
-	}
-)
+	},
+}
 
+const updateDummyHost = "update-dummy"
+
+//nolint:gocyclo // Ignore function complexity error
 func TestStore(t *testing.T) {
-	//TODO: move env definition to docker image?
-	os.Setenv("KUBEBUILDER_ASSETS", "/usr/local/bin")
+	// TODO: move env definition to docker image?
+	t.Setenv("KUBEBUILDER_ASSETS", "/usr/local/bin")
 
 	pathPrefix = networking.PathTypePrefix
 
@@ -90,9 +91,12 @@ func TestStore(t *testing.T) {
 		t.Fatalf("error: %v", err)
 	}
 
-	emptySelector, _ := labels.Parse("")
+	emptySelector, err := labels.Parse("")
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
 
-	defer te.Stop() //nolint:errcheck
+	defer te.Stop() //nolint:errcheck // Ignore the error
 
 	clientSet, err := kubernetes.NewForConfig(cfg)
 	if err != nil {
@@ -176,7 +180,11 @@ func TestStore(t *testing.T) {
 					return
 				}
 
-				e := evt.(Event)
+				e, ok := evt.(Event)
+				if !ok {
+					return
+				}
+
 				if e.Obj == nil {
 					continue
 				}
@@ -230,7 +238,7 @@ func TestStore(t *testing.T) {
 		time.Sleep(1 * time.Second)
 
 		ni := ing.DeepCopy()
-		ni.Spec.Rules[0].Host = "update-dummy"
+		ni.Spec.Rules[0].Host = updateDummyHost
 		_ = ensureIngress(ni, clientSet, t)
 		if err != nil {
 			t.Errorf("error creating ingress: %v", err)
@@ -281,7 +289,10 @@ func TestStore(t *testing.T) {
 					return
 				}
 
-				e := evt.(Event)
+				e, ok := evt.(Event)
+				if !ok {
+					return
+				}
 				if e.Obj == nil {
 					continue
 				}
@@ -343,7 +354,7 @@ func TestStore(t *testing.T) {
 		defer deleteIngress(invalidIngress, clientSet, t)
 
 		ni := ing.DeepCopy()
-		ni.Spec.Rules[0].Host = "update-dummy"
+		ni.Spec.Rules[0].Host = updateDummyHost
 		_ = ensureIngress(ni, clientSet, t)
 		if err != nil {
 			t.Errorf("error creating ingress: %v", err)
@@ -392,7 +403,10 @@ func TestStore(t *testing.T) {
 					return
 				}
 
-				e := evt.(Event)
+				e, ok := evt.(Event)
+				if !ok {
+					return
+				}
 				if e.Obj == nil {
 					continue
 				}
@@ -411,7 +425,7 @@ func TestStore(t *testing.T) {
 			}
 		}(updateCh)
 
-		ingressClassconfig := &ingressclass.IngressClassConfiguration{
+		ingressClassconfig := &ingressclass.Configuration{
 			Controller:        ingressclass.DefaultControllerName,
 			AnnotationValue:   ingressclass.DefaultAnnotationValue,
 			WatchWithoutClass: true,
@@ -463,7 +477,7 @@ func TestStore(t *testing.T) {
 		time.Sleep(1 * time.Second)
 
 		validIngressUpdated := validIngress1.DeepCopy()
-		validIngressUpdated.Spec.Rules[0].Host = "update-dummy"
+		validIngressUpdated.Spec.Rules[0].Host = updateDummyHost
 		_ = ensureIngress(validIngressUpdated, clientSet, t)
 		if err != nil {
 			t.Errorf("error updating ingress: %v", err)
@@ -523,7 +537,10 @@ func TestStore(t *testing.T) {
 					return
 				}
 
-				e := evt.(Event)
+				e, ok := evt.(Event)
+				if !ok {
+					return
+				}
 				if e.Obj == nil {
 					continue
 				}
@@ -542,7 +559,7 @@ func TestStore(t *testing.T) {
 			}
 		}(updateCh)
 
-		ingressClassconfig := &ingressclass.IngressClassConfiguration{
+		ingressClassconfig := &ingressclass.Configuration{
 			Controller:         ingressclass.DefaultControllerName,
 			AnnotationValue:    ic,
 			IngressClassByName: true,
@@ -581,7 +598,7 @@ func TestStore(t *testing.T) {
 		time.Sleep(1 * time.Second)
 
 		ingressUpdated := ing.DeepCopy()
-		ingressUpdated.Spec.Rules[0].Host = "update-dummy"
+		ingressUpdated.Spec.Rules[0].Host = updateDummyHost
 		_ = ensureIngress(ingressUpdated, clientSet, t)
 		if err != nil {
 			t.Errorf("error updating ingress: %v", err)
@@ -630,7 +647,10 @@ func TestStore(t *testing.T) {
 					return
 				}
 
-				e := evt.(Event)
+				e, ok := evt.(Event)
+				if !ok {
+					return
+				}
 				if e.Obj == nil {
 					continue
 				}
@@ -684,7 +704,7 @@ func TestStore(t *testing.T) {
 		time.Sleep(1 * time.Second)
 
 		invalidIngressUpdated := invalidIngress.DeepCopy()
-		invalidIngressUpdated.Spec.Rules[0].Host = "update-dummy"
+		invalidIngressUpdated.Spec.Rules[0].Host = updateDummyHost
 		_ = ensureIngress(invalidIngressUpdated, clientSet, t)
 		if err != nil {
 			t.Errorf("error creating ingress: %v", err)
@@ -725,7 +745,10 @@ func TestStore(t *testing.T) {
 					return
 				}
 
-				e := evt.(Event)
+				e, ok := evt.(Event)
+				if !ok {
+					return
+				}
 				if e.Obj == nil {
 					continue
 				}
@@ -778,7 +801,7 @@ func TestStore(t *testing.T) {
 		time.Sleep(1 * time.Second)
 
 		invalidIngressUpdated := invalidIngress.DeepCopy()
-		invalidIngressUpdated.Spec.Rules[0].Host = "update-dummy"
+		invalidIngressUpdated.Spec.Rules[0].Host = updateDummyHost
 		_ = ensureIngress(invalidIngressUpdated, clientSet, t)
 		if err != nil {
 			t.Errorf("error creating ingress: %v", err)
@@ -816,7 +839,10 @@ func TestStore(t *testing.T) {
 					return
 				}
 
-				e := evt.(Event)
+				e, ok := evt.(Event)
+				if !ok {
+					return
+				}
 				if e.Obj == nil {
 					continue
 				}
@@ -908,7 +934,10 @@ func TestStore(t *testing.T) {
 					return
 				}
 
-				e := evt.(Event)
+				e, ok := evt.(Event)
+				if !ok {
+					return
+				}
 				if e.Obj == nil {
 					continue
 				}
@@ -1008,7 +1037,6 @@ func TestStore(t *testing.T) {
 		if atomic.LoadUint64(&del) != 1 {
 			t.Errorf("expected 1 events of type Delete but %v occurred", del)
 		}
-
 	})
 
 	t.Run("should create an ingress with a secret which does not exist", func(t *testing.T) {
@@ -1032,7 +1060,10 @@ func TestStore(t *testing.T) {
 					return
 				}
 
-				e := evt.(Event)
+				e, ok := evt.(Event)
+				if !ok {
+					return
+				}
 				if e.Obj == nil {
 					continue
 				}
@@ -1159,7 +1190,10 @@ func TestStore(t *testing.T) {
 					return
 				}
 
-				e := evt.(Event)
+				e, ok := evt.(Event)
+				if !ok {
+					return
+				}
 				if e.Obj == nil {
 					continue
 				}
@@ -1174,7 +1208,10 @@ func TestStore(t *testing.T) {
 			}
 		}(updateCh)
 
-		namesapceSelector, _ := labels.Parse("foo=bar")
+		namesapceSelector, err := labels.Parse("foo=bar")
+		if err != nil {
+			t.Errorf("unexpected error: %v", err)
+		}
 		storer := New(
 			ns,
 			namesapceSelector,
@@ -1236,7 +1273,6 @@ func TestStore(t *testing.T) {
 		if atomic.LoadUint64(&del) != 0 {
 			t.Errorf("expected 0 events of type Delete but %v occurred", del)
 		}
-
 	})
 	// test add ingress with secret it doesn't exists and then add secret
 	// check secret is generated on fs
@@ -1274,16 +1310,16 @@ func deleteNamespace(ns string, clientSet kubernetes.Interface, t *testing.T) {
 
 func createIngressClass(clientSet kubernetes.Interface, t *testing.T, controller string) string {
 	t.Helper()
-	ingressclass := &networking.IngressClass{
+	class := &networking.IngressClass{
 		ObjectMeta: metav1.ObjectMeta{
 			Name: fmt.Sprintf("ingress-nginx-%v", time.Now().Unix()),
-			//Namespace: "xpto" // TODO: We don't support namespaced ingress-class yet
+			// Namespace: "xpto" // TODO: We don't support namespaced ingress-class yet
 		},
 		Spec: networking.IngressClassSpec{
 			Controller: controller,
 		},
 	}
-	ic, err := clientSet.NetworkingV1().IngressClasses().Create(context.TODO(), ingressclass, metav1.CreateOptions{})
+	ic, err := clientSet.NetworkingV1().IngressClasses().Create(context.TODO(), class, metav1.CreateOptions{})
 	if err != nil {
 		t.Errorf("error creating ingress class: %v", err)
 	}
@@ -1299,7 +1335,7 @@ func deleteIngressClass(ic string, clientSet kubernetes.Interface, t *testing.T)
 	}
 }
 
-func createConfigMap(clientSet kubernetes.Interface, ns string, t *testing.T) string {
+func createConfigMap(clientSet kubernetes.Interface, ns string, t *testing.T) {
 	t.Helper()
 
 	configMap := &v1.ConfigMap{
@@ -1308,51 +1344,47 @@ func createConfigMap(clientSet kubernetes.Interface, ns string, t *testing.T) st
 		},
 	}
 
-	cm, err := clientSet.CoreV1().ConfigMaps(ns).Create(context.TODO(), configMap, metav1.CreateOptions{})
+	_, err := clientSet.CoreV1().ConfigMaps(ns).Create(context.TODO(), configMap, metav1.CreateOptions{})
 	if err != nil {
 		t.Errorf("error creating the configuration map: %v", err)
 	}
-
-	return cm.Name
 }
 
-func ensureIngress(ingress *networking.Ingress, clientSet kubernetes.Interface, t *testing.T) *networking.Ingress {
+func ensureIngress(ing *networking.Ingress, clientSet kubernetes.Interface, t *testing.T) *networking.Ingress {
 	t.Helper()
-	ing, err := clientSet.NetworkingV1().Ingresses(ingress.Namespace).Update(context.TODO(), ingress, metav1.UpdateOptions{})
-
+	newIngress, err := clientSet.NetworkingV1().Ingresses(ing.Namespace).Update(context.TODO(), ing, metav1.UpdateOptions{})
 	if err != nil {
 		if k8sErrors.IsNotFound(err) {
-			t.Logf("Ingress %v not found, creating", ingress)
+			t.Logf("Ingress %v not found, creating", ing)
 
-			ing, err = clientSet.NetworkingV1().Ingresses(ingress.Namespace).Create(context.TODO(), ingress, metav1.CreateOptions{})
+			newIngress, err = clientSet.NetworkingV1().Ingresses(ing.Namespace).Create(context.TODO(), ing, metav1.CreateOptions{})
 			if err != nil {
-				t.Fatalf("error creating ingress %+v: %v", ingress, err)
+				t.Fatalf("error creating ingress %+v: %v", ing, err)
 			}
 
-			t.Logf("Ingress %+v created", ingress)
-			return ing
+			t.Logf("Ingress %+v created", ing)
+			return newIngress
 		}
 
-		t.Fatalf("error updating ingress %+v: %v", ingress, err)
+		t.Fatalf("error updating ingress %+v: %v", ing, err)
 	}
 
-	return ing
+	return newIngress
 }
 
-func deleteIngress(ingress *networking.Ingress, clientSet kubernetes.Interface, t *testing.T) {
+func deleteIngress(ing *networking.Ingress, clientSet kubernetes.Interface, t *testing.T) {
 	t.Helper()
-	err := clientSet.NetworkingV1().Ingresses(ingress.Namespace).Delete(context.TODO(), ingress.Name, metav1.DeleteOptions{})
-
+	err := clientSet.NetworkingV1().Ingresses(ing.Namespace).Delete(context.TODO(), ing.Name, metav1.DeleteOptions{})
 	if err != nil {
-		t.Errorf("failed to delete ingress %+v: %v", ingress, err)
+		t.Errorf("failed to delete ingress %+v: %v", ing, err)
 	}
 
-	t.Logf("Ingress %+v deleted", ingress)
+	t.Logf("Ingress %+v deleted", ing)
 }
 
 // newStore creates a new mock object store for tests which do not require the
 // use of Informers.
-func newStore(t *testing.T) *k8sStore {
+func newStore() *k8sStore {
 	return &k8sStore{
 		listers: &Lister{
 			// add more listers if needed
@@ -1369,7 +1401,7 @@ func newStore(t *testing.T) *k8sStore {
 }
 
 func TestUpdateSecretIngressMap(t *testing.T) {
-	s := newStore(t)
+	s := newStore()
 
 	ingTpl := &networking.Ingress{
 		ObjectMeta: metav1.ObjectMeta{
@@ -1431,7 +1463,9 @@ func TestUpdateSecretIngressMap(t *testing.T) {
 		ing.ObjectMeta.SetAnnotations(map[string]string{
 			parser.GetAnnotationWithPrefix("auth-secret"): "anotherns/auth",
 		})
-		s.listers.Ingress.Update(ing)
+		if err := s.listers.Ingress.Update(ing); err != nil {
+			t.Errorf("error updating the Ingress: %v", err)
+		}
 		s.updateSecretIngressMap(ing)
 
 		if l := s.secretIngressMap.Len(); l != 0 {
@@ -1456,7 +1490,7 @@ func TestUpdateSecretIngressMap(t *testing.T) {
 }
 
 func TestListIngresses(t *testing.T) {
-	s := newStore(t)
+	s := newStore()
 	invalidIngressClass := "something"
 	validIngressClass := ingressclass.DefaultControllerName
 
@@ -1586,7 +1620,7 @@ func TestWriteSSLSessionTicketKey(t *testing.T) {
 	}
 
 	for _, test := range tests {
-		s := newStore(t)
+		s := newStore()
 
 		cmap := &v1.ConfigMap{
 			Data: map[string]string{
diff --git a/internal/ingress/controller/template/configmap.go b/internal/ingress/controller/template/configmap.go
index c73f3b6c0..9dc019bcc 100644
--- a/internal/ingress/controller/template/configmap.go
+++ b/internal/ingress/controller/template/configmap.go
@@ -91,6 +91,8 @@ const (
 )
 
 // ReadConfig obtains the configuration defined by the user merged with the defaults.
+//
+//nolint:gocyclo // Ignore function complexity error
 func ReadConfig(src map[string]string) config.Configuration {
 	conf := map[string]string{}
 	// we need to copy the configmap data because the content is altered
@@ -116,12 +118,12 @@ func ReadConfig(src map[string]string) config.Configuration {
 	luaSharedDicts := make(map[string]int)
 	debugConnectionsList := make([]string, 0)
 
-	//parse lua shared dict values
+	// parse lua shared dict values
 	if val, ok := conf[luaSharedDictsKey]; ok {
 		delete(conf, luaSharedDictsKey)
 		lsd := splitAndTrimSpace(val, ",")
 		for _, v := range lsd {
-			v = strings.Replace(v, " ", "", -1)
+			v = strings.ReplaceAll(v, " ", "")
 			results := strings.SplitN(v, ":", 2)
 			dictName := results[0]
 			size := dictStrToKb(results[1])
@@ -196,7 +198,7 @@ func ReadConfig(src map[string]string) config.Configuration {
 				if ing_net.IsIPV6(ns) {
 					bindAddressIpv6List = append(bindAddressIpv6List, fmt.Sprintf("[%v]", ns))
 				} else {
-					bindAddressIpv4List = append(bindAddressIpv4List, fmt.Sprintf("%v", ns))
+					bindAddressIpv4List = append(bindAddressIpv4List, ns.String())
 				}
 			} else {
 				klog.Warningf("%v is not a valid textual representation of an IP address", i)
@@ -250,7 +252,7 @@ func ReadConfig(src map[string]string) config.Configuration {
 	if val, ok := conf[globalAuthMethod]; ok {
 		delete(conf, globalAuthMethod)
 
-		if len(val) != 0 && !authreq.ValidMethod(val) {
+		if val != "" && !authreq.ValidMethod(val) {
 			klog.Warningf("Global auth location denied - %v.", "invalid HTTP method")
 		} else {
 			to.GlobalExternalAuth.Method = val
@@ -261,7 +263,10 @@ func ReadConfig(src map[string]string) config.Configuration {
 	if val, ok := conf[globalAuthSignin]; ok {
 		delete(conf, globalAuthSignin)
 
-		signinURL, _ := parser.StringToURL(val)
+		signinURL, err := parser.StringToURL(val)
+		if err != nil {
+			klog.Errorf("string to URL conversion failed: %v", err)
+		}
 		if signinURL == nil {
 			klog.Warningf("Global auth location denied - %v.", "global-auth-signin setting is undefined and will not be set")
 		} else {
@@ -274,7 +279,10 @@ func ReadConfig(src map[string]string) config.Configuration {
 		delete(conf, globalAuthSigninRedirectParam)
 
 		redirectParam := strings.TrimSpace(val)
-		dummySigninURL, _ := parser.StringToURL(fmt.Sprintf("%s?%s=dummy", to.GlobalExternalAuth.SigninURL, redirectParam))
+		dummySigninURL, err := parser.StringToURL(fmt.Sprintf("%s?%s=dummy", to.GlobalExternalAuth.SigninURL, redirectParam))
+		if err != nil {
+			klog.Errorf("string to URL conversion failed: %v", err)
+		}
 		if dummySigninURL == nil {
 			klog.Warningf("Global auth redirect parameter denied - %v.", "global-auth-signin-redirect-param setting is invalid and will not be set")
 		} else {
@@ -286,7 +294,7 @@ func ReadConfig(src map[string]string) config.Configuration {
 	if val, ok := conf[globalAuthResponseHeaders]; ok {
 		delete(conf, globalAuthResponseHeaders)
 
-		if len(val) != 0 {
+		if val != "" {
 			harr := splitAndTrimSpace(val, ",")
 			for _, header := range harr {
 				if !authreq.ValidHeader(header) {
@@ -385,8 +393,8 @@ func ReadConfig(src map[string]string) config.Configuration {
 	if val, ok := conf[debugConnections]; ok {
 		delete(conf, debugConnections)
 		for _, i := range splitAndTrimSpace(val, ",") {
-			validIp := net.ParseIP(i)
-			if validIp != nil {
+			validIP := net.ParseIP(i)
+			if validIP != nil {
 				debugConnectionsList = append(debugConnectionsList, i)
 			} else {
 				_, _, err := net.ParseCIDR(i)
@@ -415,14 +423,14 @@ func ReadConfig(src map[string]string) config.Configuration {
 	to.DisableIpv6DNS = !ing_net.IsIPv6Enabled()
 	to.LuaSharedDicts = luaSharedDicts
 
-	config := &mapstructure.DecoderConfig{
+	decoderConfig := &mapstructure.DecoderConfig{
 		Metadata:         nil,
 		WeaklyTypedInput: true,
 		Result:           &to,
 		TagName:          "json",
 	}
 
-	decoder, err := mapstructure.NewDecoder(config)
+	decoder, err := mapstructure.NewDecoder(decoderConfig)
 	if err != nil {
 		klog.Warningf("unexpected error merging defaults: %v", err)
 	}
@@ -456,6 +464,7 @@ func filterErrors(codes []int) []int {
 	return fa
 }
 
+//nolint:unparam // Ignore `sep` always receives `,` error
 func splitAndTrimSpace(s, sep string) []string {
 	f := func(c rune) bool {
 		return strings.EqualFold(string(c), sep)
@@ -474,8 +483,11 @@ func dictStrToKb(sizeStr string) int {
 	if sizeMatch == nil {
 		return -1
 	}
-	size, _ := strconv.Atoi(sizeMatch[1]) // validated already with regex
-	if sizeMatch[2] == "" || strings.ToLower(sizeMatch[2]) == "m" {
+	size, err := strconv.Atoi(sizeMatch[1]) // validated already with regex
+	if err != nil {
+		klog.Errorf("unexpected error converting size string %s to int: %v", sizeStr, err)
+	}
+	if sizeMatch[2] == "" || strings.EqualFold(sizeMatch[2], "m") {
 		size *= 1024
 	}
 	return size
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 147455771..4e51ac665 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -52,6 +52,12 @@ const (
 	nonIdempotent           = "non_idempotent"
 	defBufferSize           = 65535
 	writeIndentOnEmptyLines = true // backward-compatibility
+	httpProtocol            = "HTTP"
+	autoHTTPProtocol        = "AUTO_HTTP"
+	httpsProtocol           = "HTTPS"
+	grpcProtocol            = "GRPC"
+	grpcsProtocol           = "GRPCS"
+	fcgiProtocol            = "FCGI"
 )
 
 const (
@@ -64,13 +70,13 @@ type Writer interface {
 	// Write renders the template.
 	// NOTE: Implementors must ensure that the content of the returned slice is not modified by the implementation
 	// after the return of this function.
-	Write(conf config.TemplateConfig) ([]byte, error)
+	Write(conf *config.TemplateConfig) ([]byte, error)
 }
 
-// Template ...
+// Template ingress template
 type Template struct {
 	tmpl *text_template.Template
-	//fw   watch.FileWatcher
+
 	bp *BufferPool
 }
 
@@ -97,7 +103,7 @@ func NewTemplate(file string) (*Template, error) {
 // 2. Collapses multiple empty lines to single one
 // 3. Re-indent
 // (ATW: always returns nil)
-func cleanConf(in *bytes.Buffer, out *bytes.Buffer) error {
+func cleanConf(in, out *bytes.Buffer) error {
 	depth := 0
 	lineStarted := false
 	emptyLineWritten := false
@@ -176,7 +182,7 @@ func cleanConf(in *bytes.Buffer, out *bytes.Buffer) error {
 
 // Write populates a buffer using a template with NGINX configuration
 // and the servers and upstreams created by Ingress rules
-func (t *Template) Write(conf config.TemplateConfig) ([]byte, error) {
+func (t *Template) Write(conf *config.TemplateConfig) ([]byte, error) {
 	tmplBuf := t.bp.Get()
 	defer t.bp.Put(tmplBuf)
 
@@ -184,14 +190,14 @@ func (t *Template) Write(conf config.TemplateConfig) ([]byte, error) {
 	defer t.bp.Put(outCmdBuf)
 
 	if klog.V(3).Enabled() {
-		b, err := json.Marshal(conf)
+		b, err := json.Marshal(*conf)
 		if err != nil {
 			klog.Errorf("unexpected error: %v", err)
 		}
 		klog.InfoS("NGINX", "configuration", string(b))
 	}
 
-	err := t.tmpl.Execute(tmplBuf, conf)
+	err := t.tmpl.Execute(tmplBuf, *conf)
 	if err != nil {
 		return nil, err
 	}
@@ -211,78 +217,76 @@ func (t *Template) Write(conf config.TemplateConfig) ([]byte, error) {
 	return res, nil
 }
 
-var (
-	funcMap = text_template.FuncMap{
-		"empty": func(input interface{}) bool {
-			check, ok := input.(string)
-			if ok {
-				return len(check) == 0
-			}
-			return true
-		},
-		"escapeLiteralDollar":             escapeLiteralDollar,
-		"buildLuaSharedDictionaries":      buildLuaSharedDictionaries,
-		"luaConfigurationRequestBodySize": luaConfigurationRequestBodySize,
-		"buildLocation":                   buildLocation,
-		"buildAuthLocation":               buildAuthLocation,
-		"shouldApplyGlobalAuth":           shouldApplyGlobalAuth,
-		"buildAuthResponseHeaders":        buildAuthResponseHeaders,
-		"buildAuthUpstreamLuaHeaders":     buildAuthUpstreamLuaHeaders,
-		"buildAuthProxySetHeaders":        buildAuthProxySetHeaders,
-		"buildAuthUpstreamName":           buildAuthUpstreamName,
-		"shouldApplyAuthUpstream":         shouldApplyAuthUpstream,
-		"extractHostPort":                 extractHostPort,
-		"changeHostPort":                  changeHostPort,
-		"buildProxyPass":                  buildProxyPass,
-		"filterRateLimits":                filterRateLimits,
-		"buildRateLimitZones":             buildRateLimitZones,
-		"buildRateLimit":                  buildRateLimit,
-		"configForLua":                    configForLua,
-		"locationConfigForLua":            locationConfigForLua,
-		"buildResolvers":                  buildResolvers,
-		"buildUpstreamName":               buildUpstreamName,
-		"isLocationInLocationList":        isLocationInLocationList,
-		"isLocationAllowed":               isLocationAllowed,
-		"buildDenyVariable":               buildDenyVariable,
-		"getenv":                          os.Getenv,
-		"contains":                        strings.Contains,
-		"split":                           strings.Split,
-		"hasPrefix":                       strings.HasPrefix,
-		"hasSuffix":                       strings.HasSuffix,
-		"trimSpace":                       strings.TrimSpace,
-		"toUpper":                         strings.ToUpper,
-		"toLower":                         strings.ToLower,
-		"formatIP":                        formatIP,
-		"quote":                           quote,
-		"buildNextUpstream":               buildNextUpstream,
-		"getIngressInformation":           getIngressInformation,
-		"serverConfig": func(all config.TemplateConfig, server *ingress.Server) interface{} {
-			return struct{ First, Second interface{} }{all, server}
-		},
-		"isValidByteSize":                    isValidByteSize,
-		"buildForwardedFor":                  buildForwardedFor,
-		"buildAuthSignURL":                   buildAuthSignURL,
-		"buildAuthSignURLLocation":           buildAuthSignURLLocation,
-		"buildOpentracing":                   buildOpentracing,
-		"buildOpentelemetry":                 buildOpentelemetry,
-		"proxySetHeader":                     proxySetHeader,
-		"enforceRegexModifier":               enforceRegexModifier,
-		"buildCustomErrorDeps":               buildCustomErrorDeps,
-		"buildCustomErrorLocationsPerServer": buildCustomErrorLocationsPerServer,
-		"shouldLoadModSecurityModule":        shouldLoadModSecurityModule,
-		"buildHTTPListener":                  buildHTTPListener,
-		"buildHTTPSListener":                 buildHTTPSListener,
-		"buildOpentracingForLocation":        buildOpentracingForLocation,
-		"buildOpentelemetryForLocation":      buildOpentelemetryForLocation,
-		"shouldLoadOpentracingModule":        shouldLoadOpentracingModule,
-		"shouldLoadOpentelemetryModule":      shouldLoadOpentelemetryModule,
-		"buildModSecurityForLocation":        buildModSecurityForLocation,
-		"buildMirrorLocations":               buildMirrorLocations,
-		"shouldLoadAuthDigestModule":         shouldLoadAuthDigestModule,
-		"buildServerName":                    buildServerName,
-		"buildCorsOriginRegex":               buildCorsOriginRegex,
-	}
-)
+var funcMap = text_template.FuncMap{
+	"empty": func(input interface{}) bool {
+		check, ok := input.(string)
+		if ok {
+			return check == ""
+		}
+		return true
+	},
+	"escapeLiteralDollar":             escapeLiteralDollar,
+	"buildLuaSharedDictionaries":      buildLuaSharedDictionaries,
+	"luaConfigurationRequestBodySize": luaConfigurationRequestBodySize,
+	"buildLocation":                   buildLocation,
+	"buildAuthLocation":               buildAuthLocation,
+	"shouldApplyGlobalAuth":           shouldApplyGlobalAuth,
+	"buildAuthResponseHeaders":        buildAuthResponseHeaders,
+	"buildAuthUpstreamLuaHeaders":     buildAuthUpstreamLuaHeaders,
+	"buildAuthProxySetHeaders":        buildAuthProxySetHeaders,
+	"buildAuthUpstreamName":           buildAuthUpstreamName,
+	"shouldApplyAuthUpstream":         shouldApplyAuthUpstream,
+	"extractHostPort":                 extractHostPort,
+	"changeHostPort":                  changeHostPort,
+	"buildProxyPass":                  buildProxyPass,
+	"filterRateLimits":                filterRateLimits,
+	"buildRateLimitZones":             buildRateLimitZones,
+	"buildRateLimit":                  buildRateLimit,
+	"configForLua":                    configForLua,
+	"locationConfigForLua":            locationConfigForLua,
+	"buildResolvers":                  buildResolvers,
+	"buildUpstreamName":               buildUpstreamName,
+	"isLocationInLocationList":        isLocationInLocationList,
+	"isLocationAllowed":               isLocationAllowed,
+	"buildDenyVariable":               buildDenyVariable,
+	"getenv":                          os.Getenv,
+	"contains":                        strings.Contains,
+	"split":                           strings.Split,
+	"hasPrefix":                       strings.HasPrefix,
+	"hasSuffix":                       strings.HasSuffix,
+	"trimSpace":                       strings.TrimSpace,
+	"toUpper":                         strings.ToUpper,
+	"toLower":                         strings.ToLower,
+	"formatIP":                        formatIP,
+	"quote":                           quote,
+	"buildNextUpstream":               buildNextUpstream,
+	"getIngressInformation":           getIngressInformation,
+	"serverConfig": func(all config.TemplateConfig, server *ingress.Server) interface{} {
+		return struct{ First, Second interface{} }{all, server}
+	},
+	"isValidByteSize":                    isValidByteSize,
+	"buildForwardedFor":                  buildForwardedFor,
+	"buildAuthSignURL":                   buildAuthSignURL,
+	"buildAuthSignURLLocation":           buildAuthSignURLLocation,
+	"buildOpentracing":                   buildOpentracing,
+	"buildOpentelemetry":                 buildOpentelemetry,
+	"proxySetHeader":                     proxySetHeader,
+	"enforceRegexModifier":               enforceRegexModifier,
+	"buildCustomErrorDeps":               buildCustomErrorDeps,
+	"buildCustomErrorLocationsPerServer": buildCustomErrorLocationsPerServer,
+	"shouldLoadModSecurityModule":        shouldLoadModSecurityModule,
+	"buildHTTPListener":                  buildHTTPListener,
+	"buildHTTPSListener":                 buildHTTPSListener,
+	"buildOpentracingForLocation":        buildOpentracingForLocation,
+	"buildOpentelemetryForLocation":      buildOpentelemetryForLocation,
+	"shouldLoadOpentracingModule":        shouldLoadOpentracingModule,
+	"shouldLoadOpentelemetryModule":      shouldLoadOpentelemetryModule,
+	"buildModSecurityForLocation":        buildModSecurityForLocation,
+	"buildMirrorLocations":               buildMirrorLocations,
+	"shouldLoadAuthDigestModule":         shouldLoadAuthDigestModule,
+	"buildServerName":                    buildServerName,
+	"buildCorsOriginRegex":               buildCorsOriginRegex,
+}
 
 // escapeLiteralDollar will replace the $ character with ${literal_dollar}
 // which is made to work via the following configuration in the http section of
@@ -296,7 +300,7 @@ func escapeLiteralDollar(input interface{}) string {
 	if !ok {
 		return ""
 	}
-	return strings.Replace(inputStr, `$`, `${literal_dollar}`, -1)
+	return strings.ReplaceAll(inputStr, `$`, `${literal_dollar}`)
 }
 
 // formatIP will wrap IPv6 addresses in [] and return IPv4 addresses
@@ -328,9 +332,7 @@ func quote(input interface{}) string {
 	return fmt.Sprintf("%q", inputStr)
 }
 
-func buildLuaSharedDictionaries(c interface{}, s interface{}) string {
-	var out []string
-
+func buildLuaSharedDictionaries(c, s interface{}) string {
 	cfg, ok := c.(config.Configuration)
 	if !ok {
 		klog.Errorf("expected a 'config.Configuration' type but %T was returned", c)
@@ -343,6 +345,7 @@ func buildLuaSharedDictionaries(c interface{}, s interface{}) string {
 		return ""
 	}
 
+	out := make([]string, 0, len(cfg.LuaSharedDicts))
 	for name, size := range cfg.LuaSharedDicts {
 		sizeStr := dictKbToStr(size)
 		out = append(out, fmt.Sprintf("lua_shared_dict %s %s", name, sizeStr))
@@ -364,7 +367,7 @@ func luaConfigurationRequestBodySize(c interface{}) string {
 	if size < cfg.LuaSharedDicts["certificate_data"] {
 		size = cfg.LuaSharedDicts["certificate_data"]
 	}
-	size = size + 1024
+	size += 1024
 
 	return dictKbToStr(size)
 }
@@ -418,7 +421,7 @@ func configForLua(input interface{}) string {
 }
 
 // locationConfigForLua formats some location specific configuration into Lua table represented as string
-func locationConfigForLua(l interface{}, a interface{}) string {
+func locationConfigForLua(l, a interface{}) string {
 	location, ok := l.(*ingress.Location)
 	if !ok {
 		klog.Errorf("expected an '*ingress.Location' type but %T was given", l)
@@ -459,7 +462,7 @@ func locationConfigForLua(l interface{}, a interface{}) string {
 }
 
 // buildResolvers returns the resolvers reading the /etc/resolv.conf file
-func buildResolvers(res interface{}, disableIpv6 interface{}) string {
+func buildResolvers(res, disableIpv6 interface{}) string {
 	// NGINX need IPV6 addresses to be surrounded by brackets
 	nss, ok := res.([]net.IP)
 	if !ok {
@@ -484,7 +487,7 @@ func buildResolvers(res interface{}, disableIpv6 interface{}) string {
 			}
 			r = append(r, fmt.Sprintf("[%v]", ns))
 		} else {
-			r = append(r, fmt.Sprintf("%v", ns))
+			r = append(r, ns.String())
 		}
 	}
 	r = append(r, "valid=30s")
@@ -554,7 +557,7 @@ func buildAuthLocation(input interface{}, globalExternalAuthURL string) string {
 
 	str := base64.URLEncoding.EncodeToString([]byte(location.Path))
 	// removes "=" after encoding
-	str = strings.Replace(str, "=", "", -1)
+	str = strings.ReplaceAll(str, "=", "")
 
 	pathType := "default"
 	if location.PathType != nil {
@@ -644,7 +647,7 @@ func buildAuthUpstreamName(input interface{}, host string) string {
 
 // shouldApplyAuthUpstream returns true only in case when ExternalAuth.URL and
 // ExternalAuth.KeepaliveConnections are all set
-func shouldApplyAuthUpstream(l interface{}, c interface{}) bool {
+func shouldApplyAuthUpstream(l, c interface{}) bool {
 	location, ok := l.(*ingress.Location)
 	if !ok {
 		klog.Errorf("expected an '*ingress.Location' type but %T was returned", l)
@@ -672,14 +675,14 @@ func shouldApplyAuthUpstream(l interface{}, c interface{}) bool {
 }
 
 // extractHostPort will extract the host:port part from the URL specified by url
-func extractHostPort(url string) string {
-	if url == "" {
+func extractHostPort(newURL string) string {
+	if newURL == "" {
 		return ""
 	}
 
-	authURL, err := parser.StringToURL(url)
+	authURL, err := parser.StringToURL(newURL)
 	if err != nil {
-		klog.Errorf("expected a valid URL but %s was returned", url)
+		klog.Errorf("expected a valid URL but %s was returned", newURL)
 		return ""
 	}
 
@@ -687,14 +690,14 @@ func extractHostPort(url string) string {
 }
 
 // changeHostPort will change the host:port part of the url to value
-func changeHostPort(url string, value string) string {
-	if url == "" {
+func changeHostPort(newURL, value string) string {
+	if newURL == "" {
 		return ""
 	}
 
-	authURL, err := parser.StringToURL(url)
+	authURL, err := parser.StringToURL(newURL)
 	if err != nil {
-		klog.Errorf("expected a valid URL but %s was returned", url)
+		klog.Errorf("expected a valid URL but %s was returned", newURL)
 		return ""
 	}
 
@@ -707,7 +710,7 @@ func changeHostPort(url string, value string) string {
 // (specified through the nginx.ingress.kubernetes.io/rewrite-target annotation)
 // If the annotation nginx.ingress.kubernetes.io/add-base-url:"true" is specified it will
 // add a base tag in the head of the response from the service
-func buildProxyPass(host string, b interface{}, loc interface{}) string {
+func buildProxyPass(_ string, b, loc interface{}) string {
 	backends, ok := b.([]*ingress.Backend)
 	if !ok {
 		klog.Errorf("expected an '[]*ingress.Backend' type but %T was returned", b)
@@ -726,17 +729,17 @@ func buildProxyPass(host string, b interface{}, loc interface{}) string {
 	proxyPass := "proxy_pass"
 
 	switch location.BackendProtocol {
-	case "AUTO_HTTP":
+	case autoHTTPProtocol:
 		proto = "$scheme://"
-	case "HTTPS":
+	case httpsProtocol:
 		proto = "https://"
-	case "GRPC":
+	case grpcProtocol:
 		proto = "grpc://"
 		proxyPass = "grpc_pass"
-	case "GRPCS":
+	case grpcsProtocol:
 		proto = "grpcs://"
 		proxyPass = "grpc_pass"
-	case "FCGI":
+	case fcgiProtocol:
 		proto = ""
 		proxyPass = "fastcgi_pass"
 	}
@@ -748,7 +751,7 @@ func buildProxyPass(host string, b interface{}, loc interface{}) string {
 			if backend.SSLPassthrough {
 				proto = "https://"
 
-				if location.BackendProtocol == "GRPCS" {
+				if location.BackendProtocol == grpcsProtocol {
 					proto = "grpcs://"
 				}
 			}
@@ -775,7 +778,7 @@ func buildProxyPass(host string, b interface{}, loc interface{}) string {
 		var xForwardedPrefix string
 
 		if len(location.XForwardedPrefix) > 0 {
-			xForwardedPrefix = fmt.Sprintf("%s X-Forwarded-Prefix \"%s\";\n", proxySetHeader(location), location.XForwardedPrefix)
+			xForwardedPrefix = fmt.Sprintf("%s X-Forwarded-Prefix %q;\n", proxySetHeader(location), location.XForwardedPrefix)
 		}
 
 		return fmt.Sprintf(`
@@ -935,9 +938,7 @@ func isLocationAllowed(input interface{}) bool {
 	return loc.Denied == nil
 }
 
-var (
-	denyPathSlugMap = map[string]string{}
-)
+var denyPathSlugMap = map[string]string{}
 
 // buildDenyVariable returns a nginx variable for a location in a
 // server to be used in the whitelist check
@@ -977,7 +978,11 @@ func buildNextUpstream(i, r interface{}) string {
 		return ""
 	}
 
-	retryNonIdempotent := r.(bool)
+	retryNonIdempotent, ok := r.(bool)
+	if !ok {
+		klog.Errorf("expected a 'bool' type but %T was returned", i)
+		return ""
+	}
 
 	parts := strings.Split(nextUpstream, " ")
 
@@ -1002,8 +1007,10 @@ func buildNextUpstream(i, r interface{}) string {
 // refer to http://nginx.org/en/docs/syntax.html
 // Nginx differentiates between size and offset
 // offset directives support gigabytes in addition
-var nginxSizeRegex = regexp.MustCompile("^[0-9]+[kKmM]{0,1}$")
-var nginxOffsetRegex = regexp.MustCompile("^[0-9]+[kKmMgG]{0,1}$")
+var (
+	nginxSizeRegex   = regexp.MustCompile(`^\d+[kKmM]?$`)
+	nginxOffsetRegex = regexp.MustCompile(`^\d+[kKmMgG]?$`)
+)
 
 // isValidByteSize validates size units valid in nginx
 // http://nginx.org/en/docs/syntax.html
@@ -1153,13 +1160,17 @@ func buildForwardedFor(input interface{}) string {
 		return ""
 	}
 
-	ffh := strings.Replace(s, "-", "_", -1)
+	ffh := strings.ReplaceAll(s, "-", "_")
 	ffh = strings.ToLower(ffh)
 	return fmt.Sprintf("$http_%v", ffh)
 }
 
 func buildAuthSignURL(authSignURL, authRedirectParam string) string {
-	u, _ := url.Parse(authSignURL)
+	u, err := url.Parse(authSignURL)
+	if err != nil {
+		klog.Errorf("error parsing authSignURL: %v", err)
+		return ""
+	}
 	q := u.Query()
 	if authRedirectParam == "" {
 		authRedirectParam = defaultGlobalAuthRedirectParam
@@ -1198,7 +1209,7 @@ func randomString() string {
 	return string(b)
 }
 
-func buildOpentracing(c interface{}, s interface{}) string {
+func buildOpentracing(c, s interface{}) string {
 	cfg, ok := c.(config.Configuration)
 	if !ok {
 		klog.Errorf("expected a 'config.Configuration' type but %T was returned", c)
@@ -1217,6 +1228,7 @@ func buildOpentracing(c interface{}, s interface{}) string {
 
 	buf := bytes.NewBufferString("")
 
+	//nolint:gocritic // rewriting if-else to switch statement is not more readable
 	if cfg.DatadogCollectorHost != "" {
 		buf.WriteString("opentracing_load_tracer /usr/local/lib/libdd_opentracing.so /etc/nginx/opentracing.json;")
 	} else if cfg.ZipkinCollectorHost != "" {
@@ -1228,16 +1240,16 @@ func buildOpentracing(c interface{}, s interface{}) string {
 	buf.WriteString("\r\n")
 
 	if cfg.OpentracingOperationName != "" {
-		buf.WriteString(fmt.Sprintf("opentracing_operation_name \"%s\";\n", cfg.OpentracingOperationName))
+		fmt.Fprintf(buf, "opentracing_operation_name \"%s\";\n", cfg.OpentracingOperationName)
 	}
 	if cfg.OpentracingLocationOperationName != "" {
-		buf.WriteString(fmt.Sprintf("opentracing_location_operation_name \"%s\";\n", cfg.OpentracingLocationOperationName))
+		fmt.Fprintf(buf, "opentracing_location_operation_name \"%s\";\n", cfg.OpentracingLocationOperationName)
 	}
 
 	return buf.String()
 }
 
-func buildOpentelemetry(c interface{}, s interface{}) string {
+func buildOpentelemetry(c, s interface{}) string {
 	cfg, ok := c.(config.Configuration)
 	if !ok {
 		klog.Errorf("expected a 'config.Configuration' type but %T was returned", c)
@@ -1259,7 +1271,7 @@ func buildOpentelemetry(c interface{}, s interface{}) string {
 	buf.WriteString("\r\n")
 
 	if cfg.OpentelemetryOperationName != "" {
-		buf.WriteString(fmt.Sprintf("opentelemetry_operation_name \"%s\";\n", cfg.OpentelemetryOperationName))
+		fmt.Fprintf(buf, "opentelemetry_operation_name \"%s\";\n", cfg.OpentelemetryOperationName)
 	}
 	return buf.String()
 }
@@ -1271,7 +1283,7 @@ func proxySetHeader(loc interface{}) string {
 		return "proxy_set_header"
 	}
 
-	if location.BackendProtocol == "GRPC" || location.BackendProtocol == "GRPCS" {
+	if location.BackendProtocol == grpcProtocol || location.BackendProtocol == grpcsProtocol {
 		return "grpc_set_header"
 	}
 
@@ -1280,7 +1292,7 @@ func proxySetHeader(loc interface{}) string {
 
 // buildCustomErrorDeps is a utility function returning a struct wrapper with
 // the data required to build the 'CUSTOM_ERRORS' template
-func buildCustomErrorDeps(upstreamName string, errorCodes []int, enableMetrics bool, modsecurityEnabled bool) interface{} {
+func buildCustomErrorDeps(upstreamName string, errorCodes []int, enableMetrics, modsecurityEnabled bool) interface{} {
 	return struct {
 		UpstreamName       string
 		ErrorCodes         []int
@@ -1355,7 +1367,7 @@ func opentracingPropagateContext(location *ingress.Location) string {
 		return ""
 	}
 
-	if location.BackendProtocol == "GRPC" || location.BackendProtocol == "GRPCS" {
+	if location.BackendProtocol == grpcProtocol || location.BackendProtocol == grpcsProtocol {
 		return "opentracing_grpc_propagate_context;"
 	}
 
@@ -1372,7 +1384,7 @@ func opentelemetryPropagateContext(location *ingress.Location) string {
 // shouldLoadModSecurityModule determines whether or not the ModSecurity module needs to be loaded.
 // First, it checks if `enable-modsecurity` is set in the ConfigMap. If it is not, it iterates over all locations to
 // check if ModSecurity is enabled by the annotation `nginx.ingress.kubernetes.io/enable-modsecurity`.
-func shouldLoadModSecurityModule(c interface{}, s interface{}) bool {
+func shouldLoadModSecurityModule(c, s interface{}) bool {
 	cfg, ok := c.(config.Configuration)
 	if !ok {
 		klog.Errorf("expected a 'config.Configuration' type but %T was returned", c)
@@ -1403,7 +1415,7 @@ func shouldLoadModSecurityModule(c interface{}, s interface{}) bool {
 	return false
 }
 
-func buildHTTPListener(t interface{}, s interface{}) string {
+func buildHTTPListener(t, s interface{}) string {
 	var out []string
 
 	tc, ok := t.(config.TemplateConfig)
@@ -1423,9 +1435,9 @@ func buildHTTPListener(t interface{}, s interface{}) string {
 		addrV4 = tc.Cfg.BindAddressIpv4
 	}
 
-	co := commonListenOptions(tc, hostname)
+	co := commonListenOptions(&tc, hostname)
 
-	out = append(out, httpListener(addrV4, co, tc)...)
+	out = append(out, httpListener(addrV4, co, &tc)...)
 
 	if !tc.IsIPV6Enabled {
 		return strings.Join(out, "\n")
@@ -1436,12 +1448,12 @@ func buildHTTPListener(t interface{}, s interface{}) string {
 		addrV6 = tc.Cfg.BindAddressIpv6
 	}
 
-	out = append(out, httpListener(addrV6, co, tc)...)
+	out = append(out, httpListener(addrV6, co, &tc)...)
 
 	return strings.Join(out, "\n")
 }
 
-func buildHTTPSListener(t interface{}, s interface{}) string {
+func buildHTTPSListener(t, s interface{}) string {
 	var out []string
 
 	tc, ok := t.(config.TemplateConfig)
@@ -1456,14 +1468,14 @@ func buildHTTPSListener(t interface{}, s interface{}) string {
 		return ""
 	}
 
-	co := commonListenOptions(tc, hostname)
+	co := commonListenOptions(&tc, hostname)
 
 	addrV4 := []string{""}
 	if len(tc.Cfg.BindAddressIpv4) > 0 {
 		addrV4 = tc.Cfg.BindAddressIpv4
 	}
 
-	out = append(out, httpsListener(addrV4, co, tc)...)
+	out = append(out, httpsListener(addrV4, co, &tc)...)
 
 	if !tc.IsIPV6Enabled {
 		return strings.Join(out, "\n")
@@ -1474,12 +1486,12 @@ func buildHTTPSListener(t interface{}, s interface{}) string {
 		addrV6 = tc.Cfg.BindAddressIpv6
 	}
 
-	out = append(out, httpsListener(addrV6, co, tc)...)
+	out = append(out, httpsListener(addrV6, co, &tc)...)
 
 	return strings.Join(out, "\n")
 }
 
-func commonListenOptions(template config.TemplateConfig, hostname string) string {
+func commonListenOptions(template *config.TemplateConfig, hostname string) string {
 	var out []string
 
 	if template.Cfg.UseProxyProtocol {
@@ -1503,7 +1515,7 @@ func commonListenOptions(template config.TemplateConfig, hostname string) string
 	return strings.Join(out, " ")
 }
 
-func httpListener(addresses []string, co string, tc config.TemplateConfig) []string {
+func httpListener(addresses []string, co string, tc *config.TemplateConfig) []string {
 	out := make([]string, 0)
 	for _, address := range addresses {
 		lo := []string{"listen"}
@@ -1514,15 +1526,14 @@ func httpListener(addresses []string, co string, tc config.TemplateConfig) []str
 			lo = append(lo, fmt.Sprintf("%v:%v", address, tc.ListenPorts.HTTP))
 		}
 
-		lo = append(lo, co)
-		lo = append(lo, ";")
+		lo = append(lo, co, ";")
 		out = append(out, strings.Join(lo, " "))
 	}
 
 	return out
 }
 
-func httpsListener(addresses []string, co string, tc config.TemplateConfig) []string {
+func httpsListener(addresses []string, co string, tc *config.TemplateConfig) []string {
 	out := make([]string, 0)
 	for _, address := range addresses {
 		lo := []string{"listen"}
@@ -1545,8 +1556,7 @@ func httpsListener(addresses []string, co string, tc config.TemplateConfig) []st
 			}
 		}
 
-		lo = append(lo, co)
-		lo = append(lo, "ssl")
+		lo = append(lo, co, "ssl")
 
 		if tc.Cfg.UseHTTP2 {
 			lo = append(lo, "http2")
@@ -1559,7 +1569,7 @@ func httpsListener(addresses []string, co string, tc config.TemplateConfig) []st
 	return out
 }
 
-func buildOpentracingForLocation(isOTEnabled bool, isOTTrustSet bool, location *ingress.Location) string {
+func buildOpentracingForLocation(isOTEnabled, isOTTrustSet bool, location *ingress.Location) string {
 	isOTEnabledInLoc := location.Opentracing.Enabled
 	isOTSetInLoc := location.Opentracing.Set
 
@@ -1578,13 +1588,13 @@ func buildOpentracingForLocation(isOTEnabled bool, isOTTrustSet bool, location *
 
 	if (!isOTTrustSet && !location.Opentracing.TrustSet) ||
 		(location.Opentracing.TrustSet && !location.Opentracing.TrustEnabled) {
-		opc = opc + "\nopentracing_trust_incoming_span off;"
+		opc += "\nopentracing_trust_incoming_span off;"
 	}
 
 	return opc
 }
 
-func buildOpentelemetryForLocation(isOTEnabled bool, isOTTrustSet bool, location *ingress.Location) string {
+func buildOpentelemetryForLocation(isOTEnabled, isOTTrustSet bool, location *ingress.Location) string {
 	isOTEnabledInLoc := location.Opentelemetry.Enabled
 	isOTSetInLoc := location.Opentelemetry.Set
 
@@ -1602,14 +1612,14 @@ func buildOpentelemetryForLocation(isOTEnabled bool, isOTTrustSet bool, location
 	}
 
 	if location.Opentelemetry.OperationName != "" {
-		opc = opc + "\nopentelemetry_operation_name " + location.Opentelemetry.OperationName + ";"
+		opc += "\nopentelemetry_operation_name " + location.Opentelemetry.OperationName + ";"
 	}
 
 	if (!isOTTrustSet && !location.Opentelemetry.TrustSet) ||
 		(location.Opentelemetry.TrustSet && !location.Opentelemetry.TrustEnabled) {
-		opc = opc + "\nopentelemetry_trust_incoming_spans off;"
+		opc += "\nopentelemetry_trust_incoming_spans off;"
 	} else {
-		opc = opc + "\nopentelemetry_trust_incoming_spans on;"
+		opc += "\nopentelemetry_trust_incoming_spans on;"
 	}
 	return opc
 }
@@ -1617,7 +1627,7 @@ func buildOpentelemetryForLocation(isOTEnabled bool, isOTTrustSet bool, location
 // shouldLoadOpentracingModule determines whether or not the Opentracing module needs to be loaded.
 // First, it checks if `enable-opentracing` is set in the ConfigMap. If it is not, it iterates over all locations to
 // check if Opentracing is enabled by the annotation `nginx.ingress.kubernetes.io/enable-opentracing`.
-func shouldLoadOpentracingModule(c interface{}, s interface{}) bool {
+func shouldLoadOpentracingModule(c, s interface{}) bool {
 	cfg, ok := c.(config.Configuration)
 	if !ok {
 		klog.Errorf("expected a 'config.Configuration' type but %T was returned", c)
@@ -1647,7 +1657,7 @@ func shouldLoadOpentracingModule(c interface{}, s interface{}) bool {
 
 // shouldLoadOpentelemetryModule determines whether or not the Opentelemetry module needs to be loaded.
 // It checks if `enable-opentelemetry` is set in the ConfigMap.
-func shouldLoadOpentelemetryModule(c interface{}, s interface{}) bool {
+func shouldLoadOpentelemetryModule(c, s interface{}) bool {
 	cfg, ok := c.(config.Configuration)
 	if !ok {
 		klog.Errorf("expected a 'config.Configuration' type but %T was returned", c)
@@ -1674,6 +1684,7 @@ func shouldLoadOpentelemetryModule(c interface{}, s interface{}) bool {
 	return false
 }
 
+//nolint:gocritic // Ignore passing cfg by pointer error
 func buildModSecurityForLocation(cfg config.Configuration, location *ingress.Location) string {
 	isMSEnabledInLoc := location.ModSecurity.Enable
 	isMSEnableSetInLoc := location.ModSecurity.EnableSet
@@ -1807,7 +1818,7 @@ func convertGoSliceIntoLuaTable(goSliceInterface interface{}, emptyStringAsNil b
 
 	switch kind {
 	case reflect.String:
-		if emptyStringAsNil && len(goSlice.Interface().(string)) == 0 {
+		if emptyStringAsNil && goSlice.Interface().(string) == "" {
 			return "nil", nil
 		}
 		return fmt.Sprintf(`"%v"`, goSlice.Interface()), nil
@@ -1840,17 +1851,17 @@ func buildCorsOriginRegex(corsOrigins []string) string {
 		return "set $http_origin *;\nset $cors 'true';"
 	}
 
-	var originsRegex string = "if ($http_origin ~* ("
+	originsRegex := "if ($http_origin ~* ("
 	for i, origin := range corsOrigins {
 		originTrimmed := strings.TrimSpace(origin)
 		if len(originTrimmed) > 0 {
 			builtOrigin := buildOriginRegex(originTrimmed)
 			originsRegex += builtOrigin
 			if i != len(corsOrigins)-1 {
-				originsRegex = originsRegex + "|"
+				originsRegex += "|"
 			}
 		}
 	}
-	originsRegex = originsRegex + ")$ ) { set $cors 'true'; }"
+	originsRegex += ")$ ) { set $cors 'true'; }"
 	return originsRegex
 }
diff --git a/internal/ingress/controller/template/template_test.go b/internal/ingress/controller/template/template_test.go
index a2c3b8299..110967711 100644
--- a/internal/ingress/controller/template/template_test.go
+++ b/internal/ingress/controller/template/template_test.go
@@ -48,9 +48,9 @@ import (
 func init() {
 	// the default value of nginx.TemplatePath assumes the template exists in
 	// the root filesystem and not in the rootfs directory
-	path, err := filepath.Abs(filepath.Join("../../../../rootfs/", nginx.TemplatePath))
+	absPath, err := filepath.Abs(filepath.Join("..", "..", "..", "..", "rootfs", nginx.TemplatePath))
 	if err == nil {
-		nginx.TemplatePath = path
+		nginx.TemplatePath = absPath
 	}
 }
 
@@ -63,7 +63,7 @@ var (
 		Target            string
 		Location          string
 		ProxyPass         string
-		AutoHttpProxyPass string
+		AutoHTTPProxyPass string
 		Sticky            bool
 		XForwardedPrefix  string
 		SecureBackend     bool
@@ -200,6 +200,12 @@ proxy_pass $scheme://upstream_balancer;`,
 	}
 )
 
+const (
+	defaultBackend = "upstream-name"
+	defaultHost    = "example.com"
+	fooAuthHost    = "foo.com/auth"
+)
+
 func getTestDataDir() (string, error) {
 	pwd, err := os.Getwd()
 	if err != nil {
@@ -326,9 +332,6 @@ func TestBuildLocation(t *testing.T) {
 }
 
 func TestBuildProxyPass(t *testing.T) {
-	defaultBackend := "upstream-name"
-	defaultHost := "example.com"
-
 	for k, tc := range tmplFuncTestcases {
 		loc := &ingress.Location{
 			Path:             tc.Path,
@@ -339,7 +342,7 @@ func TestBuildProxyPass(t *testing.T) {
 		}
 
 		if tc.SecureBackend {
-			loc.BackendProtocol = "HTTPS"
+			loc.BackendProtocol = httpsProtocol
 		}
 
 		backend := &ingress.Backend{
@@ -367,9 +370,6 @@ func TestBuildProxyPass(t *testing.T) {
 }
 
 func TestBuildProxyPassAutoHttp(t *testing.T) {
-	defaultBackend := "upstream-name"
-	defaultHost := "example.com"
-
 	for k, tc := range tmplFuncTestcases {
 		loc := &ingress.Location{
 			Path:             tc.Path,
@@ -379,9 +379,9 @@ func TestBuildProxyPassAutoHttp(t *testing.T) {
 		}
 
 		if tc.SecureBackend {
-			loc.BackendProtocol = "HTTPS"
+			loc.BackendProtocol = httpsProtocol
 		} else {
-			loc.BackendProtocol = "AUTO_HTTP"
+			loc.BackendProtocol = autoHTTPProtocol
 		}
 
 		backend := &ingress.Backend{
@@ -402,7 +402,7 @@ func TestBuildProxyPassAutoHttp(t *testing.T) {
 		backends := []*ingress.Backend{backend}
 
 		pp := buildProxyPass(defaultHost, backends, loc)
-		if !strings.EqualFold(tc.AutoHttpProxyPass, pp) {
+		if !strings.EqualFold(tc.AutoHTTPProxyPass, pp) {
 			t.Errorf("%s: expected \n'%v'\nbut returned \n'%v'", k, tc.ProxyPass, pp)
 		}
 	}
@@ -417,7 +417,7 @@ func TestBuildAuthLocation(t *testing.T) {
 		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
 	}
 
-	authURL := "foo.com/auth"
+	authURL := fooAuthHost
 	globalAuthURL := "foo.com/global-auth"
 
 	loc := &ingress.Location{
@@ -428,7 +428,7 @@ func TestBuildAuthLocation(t *testing.T) {
 		EnableGlobalAuth: true,
 	}
 
-	encodedAuthURL := strings.Replace(base64.URLEncoding.EncodeToString([]byte(loc.Path)), "=", "", -1)
+	encodedAuthURL := strings.ReplaceAll(base64.URLEncoding.EncodeToString([]byte(loc.Path)), "=", "")
 	externalAuthPath := fmt.Sprintf("/_external-auth-%v-default", encodedAuthURL)
 
 	testCases := []struct {
@@ -460,8 +460,7 @@ func TestBuildAuthLocation(t *testing.T) {
 }
 
 func TestShouldApplyGlobalAuth(t *testing.T) {
-
-	authURL := "foo.com/auth"
+	authURL := fooAuthHost
 	globalAuthURL := "foo.com/global-auth"
 
 	loc := &ingress.Location{
@@ -579,12 +578,12 @@ func TestBuildAuthUpstreamName(t *testing.T) {
 
 	loc := &ingress.Location{
 		ExternalAuth: authreq.Config{
-			URL: "foo.com/auth",
+			URL: fooAuthHost,
 		},
 		Path: "/cat",
 	}
 
-	encodedAuthURL := strings.Replace(base64.URLEncoding.EncodeToString([]byte(loc.Path)), "=", "", -1)
+	encodedAuthURL := strings.ReplaceAll(base64.URLEncoding.EncodeToString([]byte(loc.Path)), "=", "")
 	externalAuthPath := fmt.Sprintf("external-auth-%v-default", encodedAuthURL)
 
 	testCases := []struct {
@@ -606,7 +605,7 @@ func TestBuildAuthUpstreamName(t *testing.T) {
 }
 
 func TestShouldApplyAuthUpstream(t *testing.T) {
-	authURL := "foo.com/auth"
+	authURL := fooAuthHost
 
 	loc := &ingress.Location{
 		ExternalAuth: authreq.Config{
@@ -702,7 +701,10 @@ func TestChangeHostPort(t *testing.T) {
 }
 
 func TestTemplateWithData(t *testing.T) {
-	pwd, _ := os.Getwd()
+	pwd, err := os.Getwd()
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	f, err := os.Open(path.Join(pwd, "../../../../test/data/config.json"))
 	if err != nil {
 		t.Errorf("unexpected error reading json file: %v", err)
@@ -727,7 +729,7 @@ func TestTemplateWithData(t *testing.T) {
 
 	dat.Cfg.DefaultSSLCertificate = &ingress.SSLCert{}
 
-	rt, err := ngxTpl.Write(dat)
+	rt, err := ngxTpl.Write(&dat)
 	if err != nil {
 		t.Errorf("invalid NGINX template: %v", err)
 	}
@@ -746,7 +748,10 @@ func TestTemplateWithData(t *testing.T) {
 }
 
 func BenchmarkTemplateWithData(b *testing.B) {
-	pwd, _ := os.Getwd()
+	pwd, err := os.Getwd()
+	if err != nil {
+		b.Errorf("unexpected error: %v", err)
+	}
 	f, err := os.Open(path.Join(pwd, "../../../../test/data/config.json"))
 	if err != nil {
 		b.Errorf("unexpected error reading json file: %v", err)
@@ -767,7 +772,7 @@ func BenchmarkTemplateWithData(b *testing.B) {
 	}
 
 	for i := 0; i < b.N; i++ {
-		if _, err := ngxTpl.Write(dat); err != nil {
+		if _, err := ngxTpl.Write(&dat); err != nil {
 			b.Errorf("unexpected error writing template: %v", err)
 		}
 	}
@@ -1066,9 +1071,6 @@ func TestBuildUpstreamName(t *testing.T) {
 		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
 	}
 
-	defaultBackend := "upstream-name"
-	defaultHost := "example.com"
-
 	for k, tc := range tmplFuncTestcases {
 		loc := &ingress.Location{
 			Path:             tc.Path,
@@ -1079,7 +1081,7 @@ func TestBuildUpstreamName(t *testing.T) {
 		}
 
 		if tc.SecureBackend {
-			loc.BackendProtocol = "HTTPS"
+			loc.BackendProtocol = httpsProtocol
 		}
 
 		backend := &ingress.Backend{
@@ -1134,13 +1136,13 @@ func TestEscapeLiteralDollar(t *testing.T) {
 
 func TestOpentracingPropagateContext(t *testing.T) {
 	tests := map[*ingress.Location]string{
-		{BackendProtocol: "HTTP"}:      "opentracing_propagate_context;",
-		{BackendProtocol: "HTTPS"}:     "opentracing_propagate_context;",
-		{BackendProtocol: "AUTO_HTTP"}: "opentracing_propagate_context;",
-		{BackendProtocol: "GRPC"}:      "opentracing_grpc_propagate_context;",
-		{BackendProtocol: "GRPCS"}:     "opentracing_grpc_propagate_context;",
-		{BackendProtocol: "FCGI"}:      "opentracing_propagate_context;",
-		nil:                            "",
+		{BackendProtocol: httpProtocol}:     "opentracing_propagate_context;",
+		{BackendProtocol: httpsProtocol}:    "opentracing_propagate_context;",
+		{BackendProtocol: autoHTTPProtocol}: "opentracing_propagate_context;",
+		{BackendProtocol: grpcProtocol}:     "opentracing_grpc_propagate_context;",
+		{BackendProtocol: grpcsProtocol}:    "opentracing_grpc_propagate_context;",
+		{BackendProtocol: fcgiProtocol}:     "opentracing_propagate_context;",
+		nil:                                 "",
 	}
 
 	for loc, expectedDirective := range tests {
@@ -1153,13 +1155,13 @@ func TestOpentracingPropagateContext(t *testing.T) {
 
 func TestOpentelemetryPropagateContext(t *testing.T) {
 	tests := map[*ingress.Location]string{
-		{BackendProtocol: "HTTP"}:      "opentelemetry_propagate;",
-		{BackendProtocol: "HTTPS"}:     "opentelemetry_propagate;",
-		{BackendProtocol: "AUTO_HTTP"}: "opentelemetry_propagate;",
-		{BackendProtocol: "GRPC"}:      "opentelemetry_propagate;",
-		{BackendProtocol: "GRPCS"}:     "opentelemetry_propagate;",
-		{BackendProtocol: "FCGI"}:      "opentelemetry_propagate;",
-		nil:                            "",
+		{BackendProtocol: httpProtocol}:     "opentelemetry_propagate;",
+		{BackendProtocol: httpsProtocol}:    "opentelemetry_propagate;",
+		{BackendProtocol: autoHTTPProtocol}: "opentelemetry_propagate;",
+		{BackendProtocol: grpcProtocol}:     "opentelemetry_propagate;",
+		{BackendProtocol: grpcsProtocol}:    "opentelemetry_propagate;",
+		{BackendProtocol: fcgiProtocol}:     "opentelemetry_propagate;",
+		nil:                                 "",
 	}
 
 	for loc, expectedDirective := range tests {
@@ -1171,7 +1173,6 @@ func TestOpentelemetryPropagateContext(t *testing.T) {
 }
 
 func TestGetIngressInformation(t *testing.T) {
-
 	testcases := map[string]struct {
 		Ingress  interface{}
 		Host     string
@@ -1625,7 +1626,7 @@ func TestProxySetHeader(t *testing.T) {
 		{
 			name: "gRPC backend",
 			loc: &ingress.Location{
-				BackendProtocol: "GRPC",
+				BackendProtocol: grpcProtocol,
 			},
 			expected: "grpc_set_header",
 		},
@@ -1716,7 +1717,6 @@ func TestBuildOpenTracing(t *testing.T) {
 	if expected != actual {
 		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
 	}
-
 }
 
 func TestBuildOpenTelemetry(t *testing.T) {
@@ -1777,6 +1777,7 @@ func TestEnforceRegexModifier(t *testing.T) {
 	}
 }
 
+//nolint:dupl // Ignore dupl errors for similar test case
 func TestShouldLoadModSecurityModule(t *testing.T) {
 	// ### Invalid argument type tests ###
 	// The first tests should return false.
@@ -1877,6 +1878,7 @@ opentracing_trust_incoming_span off;`
 	}
 }
 
+//nolint:dupl // Ignore dupl errors for similar test case
 func TestShouldLoadOpentracingModule(t *testing.T) {
 	// ### Invalid argument type tests ###
 	// The first tests should return false.
@@ -1978,6 +1980,7 @@ opentelemetry_trust_incoming_spans off;`
 	}
 }
 
+//nolint:dupl // Ignore dupl errors for similar test case
 func TestShouldLoadOpentelemetryModule(t *testing.T) {
 	// ### Invalid argument type tests ###
 	// The first tests should return false.
@@ -2104,7 +2107,6 @@ func TestModSecurityForLocation(t *testing.T) {
 }
 
 func TestBuildServerName(t *testing.T) {
-
 	testCases := []struct {
 		title    string
 		hostname string
diff --git a/internal/ingress/controller/util.go b/internal/ingress/controller/util.go
index 6562dd17c..8851f323f 100644
--- a/internal/ingress/controller/util.go
+++ b/internal/ingress/controller/util.go
@@ -135,11 +135,13 @@ func (nc NginxCommand) ExecCommand(args ...string) *exec.Cmd {
 
 	cmdArgs = append(cmdArgs, "-c", cfgPath)
 	cmdArgs = append(cmdArgs, args...)
+	//nolint:gosec // Ignore G204 error
 	return exec.Command(nc.Binary, cmdArgs...)
 }
 
 // Test checks if config file is a syntax valid nginx configuration
 func (nc NginxCommand) Test(cfg string) ([]byte, error) {
+	//nolint:gosec // Ignore G204 error
 	return exec.Command(nc.Binary, "-c", cfg, "-t").CombinedOutput()
 }
 
diff --git a/internal/ingress/defaults/main.go b/internal/ingress/defaults/main.go
index 8cd0e8ba5..0526d443e 100644
--- a/internal/ingress/defaults/main.go
+++ b/internal/ingress/defaults/main.go
@@ -100,7 +100,7 @@ type Backend struct {
 
 	// Name server/s used to resolve names of upstream servers into IP addresses.
 	// The file /etc/resolv.conf is used as DNS resolution configuration.
-	Resolver []net.IP
+	Resolver []net.IP `json:"Resolver"`
 
 	// SkipAccessLogURLs sets a list of URLs that should not appear in the NGINX access log
 	// This is useful with urls like `/health` or `health-check` that make "complex" reading the logs
diff --git a/internal/ingress/errors/errors.go b/internal/ingress/errors/errors.go
index e6f7fb52c..d70218334 100644
--- a/internal/ingress/errors/errors.go
+++ b/internal/ingress/errors/errors.go
@@ -33,57 +33,57 @@ var (
 
 // NewInvalidAnnotationConfiguration returns a new InvalidConfiguration error for use when
 // annotations are not correctly configured
-func NewInvalidAnnotationConfiguration(name string, reason string) error {
-	return InvalidConfiguration{
+func NewInvalidAnnotationConfiguration(name, reason string) error {
+	return InvalidConfigurationError{
 		Name: fmt.Sprintf("the annotation %v does not contain a valid configuration: %v", name, reason),
 	}
 }
 
 // NewInvalidAnnotationContent returns a new InvalidContent error
 func NewInvalidAnnotationContent(name string, val interface{}) error {
-	return InvalidContent{
+	return InvalidContentError{
 		Name: fmt.Sprintf("the annotation %v does not contain a valid value (%v)", name, val),
 	}
 }
 
 // NewLocationDenied returns a new LocationDenied error
 func NewLocationDenied(reason string) error {
-	return LocationDenied{
-		Reason: fmt.Errorf("Location denied, reason: %v", reason),
+	return LocationDeniedError{
+		Reason: fmt.Errorf("location denied, reason: %v", reason),
 	}
 }
 
-// InvalidConfiguration Error
-type InvalidConfiguration struct {
+// InvalidConfigurationError
+type InvalidConfigurationError struct {
 	Name string
 }
 
-func (e InvalidConfiguration) Error() string {
+func (e InvalidConfigurationError) Error() string {
 	return e.Name
 }
 
-// InvalidContent error
-type InvalidContent struct {
+// InvalidContentError
+type InvalidContentError struct {
 	Name string
 }
 
-func (e InvalidContent) Error() string {
+func (e InvalidContentError) Error() string {
 	return e.Name
 }
 
-// LocationDenied error
-type LocationDenied struct {
+// LocationDeniedError
+type LocationDeniedError struct {
 	Reason error
 }
 
-func (e LocationDenied) Error() string {
+func (e LocationDeniedError) Error() string {
 	return e.Reason.Error()
 }
 
 // IsLocationDenied checks if the err is an error which
 // indicates a location should return HTTP code 503
 func IsLocationDenied(e error) bool {
-	_, ok := e.(LocationDenied)
+	_, ok := e.(LocationDeniedError)
 	return ok
 }
 
@@ -96,7 +96,7 @@ func IsMissingAnnotations(e error) bool {
 // IsInvalidContent checks if the err is an error which
 // indicates an annotations value is not valid
 func IsInvalidContent(e error) bool {
-	_, ok := e.(InvalidContent)
+	_, ok := e.(InvalidContentError)
 	return ok
 }
 
diff --git a/internal/ingress/inspector/ingress_test.go b/internal/ingress/inspector/ingress_test.go
index bfd9f6b93..52ad8d431 100644
--- a/internal/ingress/inspector/ingress_test.go
+++ b/internal/ingress/inspector/ingress_test.go
@@ -24,7 +24,6 @@ import (
 )
 
 func makeSimpleIngress(hostname string, paths ...string) *networking.Ingress {
-
 	newIngress := networking.Ingress{
 		ObjectMeta: v1.ObjectMeta{
 			Name:      "test1",
diff --git a/internal/ingress/inspector/inspector.go b/internal/ingress/inspector/inspector.go
index 23b57e538..b41e18d9e 100644
--- a/internal/ingress/inspector/inspector.go
+++ b/internal/ingress/inspector/inspector.go
@@ -40,9 +40,7 @@ func DeepInspect(obj interface{}) error {
 	}
 }
 
-var (
-	implSpecific = networking.PathTypeImplementationSpecific
-)
+var implSpecific = networking.PathTypeImplementationSpecific
 
 func ValidatePathType(ing *networking.Ingress) error {
 	if ing == nil {
diff --git a/internal/ingress/inspector/rules.go b/internal/ingress/inspector/rules.go
index c9714e680..8388efdd5 100644
--- a/internal/ingress/inspector/rules.go
+++ b/internal/ingress/inspector/rules.go
@@ -34,7 +34,7 @@ var (
 	// the group [[:alnum:]\_\-\/]* says that any amount of characters (A-Za-z0-9), _, - and /
 	// are accepted until the end of the line
 	// Nothing else is accepted.
-	validPathType = regexp.MustCompile(`(?i)^/[[:alnum:]\_\-\/]*$`)
+	validPathType = regexp.MustCompile(`(?i)^/[[:alnum:]\_\-/]*$`)
 
 	invalidRegex = []regexp.Regexp{}
 )
@@ -52,8 +52,8 @@ func init() {
 // CheckRegex receives a value/configuration and validates if it matches with one of the
 // forbidden regexes.
 func CheckRegex(value string) error {
-	for _, regex := range invalidRegex {
-		if regex.MatchString(value) {
+	for i := range invalidRegex {
+		if invalidRegex[i].MatchString(value) {
 			return fmt.Errorf("invalid value found: %s", value)
 		}
 	}
diff --git a/internal/ingress/inspector/rules_test.go b/internal/ingress/inspector/rules_test.go
index 6ed6dbe87..3945a3bd4 100644
--- a/internal/ingress/inspector/rules_test.go
+++ b/internal/ingress/inspector/rules_test.go
@@ -19,7 +19,6 @@ package inspector
 import "testing"
 
 func TestCheckRegex(t *testing.T) {
-
 	tests := []struct {
 		name    string
 		value   string
diff --git a/internal/ingress/inspector/service.go b/internal/ingress/inspector/service.go
index 27ed27a8c..8be08490b 100644
--- a/internal/ingress/inspector/service.go
+++ b/internal/ingress/inspector/service.go
@@ -21,6 +21,6 @@ import (
 )
 
 // InspectService will be used to inspect service objects for possible invalid configurations
-func InspectService(svc *corev1.Service) error {
+func InspectService(_ *corev1.Service) error {
 	return nil
 }
diff --git a/internal/ingress/metric/collectors/admission.go b/internal/ingress/metric/collectors/admission.go
index cf42fbaa1..7b84325c0 100644
--- a/internal/ingress/metric/collectors/admission.go
+++ b/internal/ingress/metric/collectors/admission.go
@@ -104,7 +104,7 @@ func NewAdmissionCollector(pod, namespace, class string) *AdmissionCollector {
 }
 
 // Describe implements prometheus.Collector
-func (am AdmissionCollector) Describe(ch chan<- *prometheus.Desc) {
+func (am *AdmissionCollector) Describe(ch chan<- *prometheus.Desc) {
 	am.testedIngressLength.Describe(ch)
 	am.testedIngressTime.Describe(ch)
 	am.renderingIngressLength.Describe(ch)
@@ -114,7 +114,7 @@ func (am AdmissionCollector) Describe(ch chan<- *prometheus.Desc) {
 }
 
 // Collect implements the prometheus.Collector interface.
-func (am AdmissionCollector) Collect(ch chan<- prometheus.Metric) {
+func (am *AdmissionCollector) Collect(ch chan<- prometheus.Metric) {
 	am.testedIngressLength.Collect(ch)
 	am.testedIngressTime.Collect(ch)
 	am.renderingIngressLength.Collect(ch)
@@ -139,7 +139,7 @@ func ByteFormat(bytes int64) string {
 }
 
 // SetAdmissionMetrics sets the values for AdmissionMetrics that can be called externally
-func (am *AdmissionCollector) SetAdmissionMetrics(testedIngressLength float64, testedIngressTime float64, renderingIngressLength float64, renderingIngressTime float64, testedConfigurationSize float64, admissionTime float64) {
+func (am *AdmissionCollector) SetAdmissionMetrics(testedIngressLength, testedIngressTime, renderingIngressLength, renderingIngressTime, testedConfigurationSize, admissionTime float64) {
 	am.testedIngressLength.Set(testedIngressLength)
 	am.testedIngressTime.Set(testedIngressTime)
 	am.renderingIngressLength.Set(renderingIngressLength)
diff --git a/internal/ingress/metric/collectors/controller.go b/internal/ingress/metric/collectors/controller.go
index 3a65a1a99..e1d6789bb 100644
--- a/internal/ingress/metric/collectors/controller.go
+++ b/internal/ingress/metric/collectors/controller.go
@@ -226,7 +226,7 @@ func (cm *Controller) IncCheckErrorCount(namespace, name string) {
 }
 
 // IncOrphanIngress sets the the orphaned ingress gauge to one
-func (cm *Controller) IncOrphanIngress(namespace string, name string, orphanityType string) {
+func (cm *Controller) IncOrphanIngress(namespace, name, orphanityType string) {
 	labels := prometheus.Labels{
 		"namespace": namespace,
 		"ingress":   name,
@@ -236,7 +236,7 @@ func (cm *Controller) IncOrphanIngress(namespace string, name string, orphanityT
 }
 
 // DecOrphanIngress sets the the orphaned ingress gauge to zero (all services has their endpoints)
-func (cm *Controller) DecOrphanIngress(namespace string, name string, orphanityType string) {
+func (cm *Controller) DecOrphanIngress(namespace, name, orphanityType string) {
 	labels := prometheus.Labels{
 		"namespace": namespace,
 		"ingress":   name,
@@ -261,7 +261,7 @@ func (cm *Controller) ConfigSuccess(hash uint64, success bool) {
 }
 
 // Describe implements prometheus.Collector
-func (cm Controller) Describe(ch chan<- *prometheus.Desc) {
+func (cm *Controller) Describe(ch chan<- *prometheus.Desc) {
 	cm.configHash.Describe(ch)
 	cm.configSuccess.Describe(ch)
 	cm.configSuccessTime.Describe(ch)
@@ -277,7 +277,7 @@ func (cm Controller) Describe(ch chan<- *prometheus.Desc) {
 }
 
 // Collect implements the prometheus.Collector interface.
-func (cm Controller) Collect(ch chan<- prometheus.Metric) {
+func (cm *Controller) Collect(ch chan<- prometheus.Metric) {
 	cm.configHash.Collect(ch)
 	cm.configSuccess.Collect(ch)
 	cm.configSuccessTime.Collect(ch)
@@ -295,41 +295,45 @@ func (cm Controller) Collect(ch chan<- prometheus.Metric) {
 // SetSSLExpireTime sets the expiration time of SSL Certificates
 func (cm *Controller) SetSSLExpireTime(servers []*ingress.Server) {
 	for _, s := range servers {
-		if s.Hostname != "" && s.SSLCert != nil && s.SSLCert.ExpireTime.Unix() > 0 {
-			labels := make(prometheus.Labels, len(cm.labels)+1)
-			for k, v := range cm.labels {
-				labels[k] = v
-			}
-			labels["host"] = s.Hostname
-			labels["secret_name"] = s.SSLCert.Name
-
-			cm.sslExpireTime.With(labels).Set(float64(s.SSLCert.ExpireTime.Unix()))
+		if !(s.Hostname != "" && s.SSLCert != nil && s.SSLCert.ExpireTime.Unix() > 0) {
+			continue
 		}
+
+		labels := make(prometheus.Labels, len(cm.labels)+1)
+		for k, v := range cm.labels {
+			labels[k] = v
+		}
+		labels["host"] = s.Hostname
+		labels["secret_name"] = s.SSLCert.Name
+
+		cm.sslExpireTime.With(labels).Set(float64(s.SSLCert.ExpireTime.Unix()))
 	}
 }
 
 // SetSSLInfo creates a metric with all certificates informations
 func (cm *Controller) SetSSLInfo(servers []*ingress.Server) {
 	for _, s := range servers {
-		if s.SSLCert != nil && s.SSLCert.Certificate != nil && s.SSLCert.Certificate.SerialNumber != nil {
-			labels := make(prometheus.Labels, len(cm.labels)+1)
-			for k, v := range cm.labels {
-				labels[k] = v
-			}
-			labels["identifier"] = s.SSLCert.Identifier()
-			labels["host"] = s.Hostname
-			labels["secret_name"] = s.SSLCert.Name
-			labels["namespace"] = s.SSLCert.Namespace
-			labels["issuer_common_name"] = s.SSLCert.Certificate.Issuer.CommonName
-			labels["issuer_organization"] = ""
-			if len(s.SSLCert.Certificate.Issuer.Organization) > 0 {
-				labels["issuer_organization"] = s.SSLCert.Certificate.Issuer.Organization[0]
-			}
-			labels["serial_number"] = s.SSLCert.Certificate.SerialNumber.String()
-			labels["public_key_algorithm"] = s.SSLCert.Certificate.PublicKeyAlgorithm.String()
-
-			cm.sslInfo.With(labels).Set(1)
+		if s.SSLCert == nil || s.SSLCert.Certificate == nil || s.SSLCert.Certificate.SerialNumber == nil {
+			continue
 		}
+
+		labels := make(prometheus.Labels, len(cm.labels)+1)
+		for k, v := range cm.labels {
+			labels[k] = v
+		}
+		labels["identifier"] = s.SSLCert.Identifier()
+		labels["host"] = s.Hostname
+		labels["secret_name"] = s.SSLCert.Name
+		labels["namespace"] = s.SSLCert.Namespace
+		labels["issuer_common_name"] = s.SSLCert.Certificate.Issuer.CommonName
+		labels["issuer_organization"] = ""
+		if len(s.SSLCert.Certificate.Issuer.Organization) > 0 {
+			labels["issuer_organization"] = s.SSLCert.Certificate.Issuer.Organization[0]
+		}
+		labels["serial_number"] = s.SSLCert.Certificate.SerialNumber.String()
+		labels["public_key_algorithm"] = s.SSLCert.Certificate.PublicKeyAlgorithm.String()
+
+		cm.sslInfo.With(labels).Set(1)
 	}
 }
 
diff --git a/internal/ingress/metric/collectors/controller_test.go b/internal/ingress/metric/collectors/controller_test.go
index ef80bc96a..15735df42 100644
--- a/internal/ingress/metric/collectors/controller_test.go
+++ b/internal/ingress/metric/collectors/controller_test.go
@@ -76,9 +76,12 @@ func TestControllerCounters(t *testing.T) {
 		{
 			name: "should set SSL certificates metrics",
 			test: func(cm *Controller) {
-				t1, _ := time.Parse(
+				t1, err := time.Parse(
 					time.RFC3339,
 					"2012-11-01T22:08:41+00:00")
+				if err != nil {
+					t.Errorf("unexpected error: %v", err)
+				}
 
 				servers := []*ingress.Server{
 					{
@@ -106,7 +109,6 @@ func TestControllerCounters(t *testing.T) {
 		{
 			name: "should set SSL certificates infos metrics",
 			test: func(cm *Controller) {
-
 				servers := []*ingress.Server{
 					{
 						Hostname: "demo",
@@ -143,7 +145,6 @@ func TestControllerCounters(t *testing.T) {
 		{
 			name: "should ignore certificates without serial number",
 			test: func(cm *Controller) {
-
 				servers := []*ingress.Server{
 					{
 						Hostname: "demo",
@@ -168,7 +169,6 @@ func TestControllerCounters(t *testing.T) {
 		{
 			name: "should ignore certificates with nil x509 pointer",
 			test: func(cm *Controller) {
-
 				servers := []*ingress.Server{
 					{
 						Hostname: "demo",
@@ -193,7 +193,6 @@ func TestControllerCounters(t *testing.T) {
 		{
 			name: "should ignore servers without certificates",
 			test: func(cm *Controller) {
-
 				servers := []*ingress.Server{
 					{
 						Hostname: "demo",
@@ -232,9 +231,12 @@ func TestRemoveMetrics(t *testing.T) {
 		t.Errorf("registering collector failed: %s", err)
 	}
 
-	t1, _ := time.Parse(
+	t1, err := time.Parse(
 		time.RFC3339,
 		"2012-11-01T22:08:41+00:00")
+	if err != nil {
+		t.Errorf("Unexpected error: %v", err)
+	}
 
 	servers := []*ingress.Server{
 		{
@@ -279,10 +281,12 @@ func TestRemoveAllSSLMetrics(t *testing.T) {
 		t.Errorf("registering collector failed: %s", err)
 	}
 
-	t1, _ := time.Parse(
+	t1, err := time.Parse(
 		time.RFC3339,
 		"2012-11-01T22:08:41+00:00")
-
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	servers := []*ingress.Server{
 		{
 			Hostname: "demo",
diff --git a/internal/ingress/metric/collectors/nginx_status.go b/internal/ingress/metric/collectors/nginx_status.go
index 5aaa787de..f3afdc334 100644
--- a/internal/ingress/metric/collectors/nginx_status.go
+++ b/internal/ingress/metric/collectors/nginx_status.go
@@ -75,7 +75,6 @@ type NGINXStatusCollector interface {
 
 // NewNGINXStatus returns a new prometheus collector the default nginx status module
 func NewNGINXStatus(podName, namespace, ingressClass string) (NGINXStatusCollector, error) {
-
 	p := nginxStatusCollector{
 		scrapeChan: make(chan scrapeRequest),
 	}
diff --git a/internal/ingress/metric/collectors/nginx_status_test.go b/internal/ingress/metric/collectors/nginx_status_test.go
index 4dc67c425..ec535745d 100644
--- a/internal/ingress/metric/collectors/nginx_status_test.go
+++ b/internal/ingress/metric/collectors/nginx_status_test.go
@@ -106,7 +106,7 @@ func TestStatusCollector(t *testing.T) {
 
 			server := &httptest.Server{
 				Listener: listener,
-				Config: &http.Server{Handler: http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+				Config: &http.Server{Handler: http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { //nolint:gosec // Ignore the gosec error in testing
 					w.WriteHeader(http.StatusOK)
 
 					if r.URL.Path == "/nginx_status" {
diff --git a/internal/ingress/metric/collectors/process.go b/internal/ingress/metric/collectors/process.go
index 23f533876..3803a47ae 100644
--- a/internal/ingress/metric/collectors/process.go
+++ b/internal/ingress/metric/collectors/process.go
@@ -53,6 +53,8 @@ type BinaryNameMatcher struct {
 
 // MatchAndName returns false if the match failed, otherwise
 // true and the resulting name.
+//
+//nolint:gocritic // nacl param cannot be a pointer since it's to implement common.MatchNamer interface
 func (em BinaryNameMatcher) MatchAndName(nacl common.ProcAttributes) (bool, string) {
 	if len(nacl.Cmdline) == 0 {
 		return false, ""
@@ -94,8 +96,10 @@ type NGINXProcessCollector interface {
 	Stop()
 }
 
-var name = "nginx"
-var binary = "/usr/bin/nginx"
+var (
+	name   = "nginx"
+	binary = "/usr/bin/nginx"
+)
 
 // NewNGINXProcess returns a new prometheus collector for the nginx process
 func NewNGINXProcess(pod, namespace, ingressClass string) (NGINXProcessCollector, error) {
@@ -106,7 +110,7 @@ func NewNGINXProcess(pod, namespace, ingressClass string) (NGINXProcessCollector
 
 	nm := newBinaryNameMatcher(name, binary)
 
-	p := namedProcess{
+	p := &namedProcess{
 		scrapeChan: make(chan scrapeRequest),
 		Grouper:    proc.NewGrouper(nm, true, false, false, false),
 		fs:         fs,
@@ -164,7 +168,7 @@ func NewNGINXProcess(pod, namespace, ingressClass string) (NGINXProcessCollector
 }
 
 // Describe implements prometheus.Collector.
-func (p namedProcess) Describe(ch chan<- *prometheus.Desc) {
+func (p *namedProcess) Describe(ch chan<- *prometheus.Desc) {
 	ch <- p.data.cpuSecs
 	ch <- p.data.numProcs
 	ch <- p.data.readBytes
@@ -175,13 +179,13 @@ func (p namedProcess) Describe(ch chan<- *prometheus.Desc) {
 }
 
 // Collect implements prometheus.Collector.
-func (p namedProcess) Collect(ch chan<- prometheus.Metric) {
+func (p *namedProcess) Collect(ch chan<- prometheus.Metric) {
 	req := scrapeRequest{results: ch, done: make(chan struct{})}
 	p.scrapeChan <- req
 	<-req.done
 }
 
-func (p namedProcess) Start() {
+func (p *namedProcess) Start() {
 	for req := range p.scrapeChan {
 		ch := req.results
 		p.scrape(ch)
@@ -189,18 +193,19 @@ func (p namedProcess) Start() {
 	}
 }
 
-func (p namedProcess) Stop() {
+func (p *namedProcess) Stop() {
 	close(p.scrapeChan)
 }
 
-func (p namedProcess) scrape(ch chan<- prometheus.Metric) {
+func (p *namedProcess) scrape(ch chan<- prometheus.Metric) {
 	_, groups, err := p.Update(p.fs.AllProcs())
 	if err != nil {
 		klog.Warningf("unexpected error obtaining nginx process info: %v", err)
 		return
 	}
 
-	for _, gcounts := range groups {
+	for i := range groups {
+		gcounts := groups[i]
 		ch <- prometheus.MustNewConstMetric(p.data.numProcs,
 			prometheus.GaugeValue, float64(gcounts.Procs))
 		ch <- prometheus.MustNewConstMetric(p.data.memResidentbytes,
diff --git a/internal/ingress/metric/collectors/process_test.go b/internal/ingress/metric/collectors/process_test.go
index b21d95496..588cbafef 100644
--- a/internal/ingress/metric/collectors/process_test.go
+++ b/internal/ingress/metric/collectors/process_test.go
@@ -48,8 +48,11 @@ func TestProcessCollector(t *testing.T) {
 
 			done := make(chan struct{})
 			go func() {
-				cmd.Wait() //nolint:errcheck
-				status := cmd.ProcessState.Sys().(syscall.WaitStatus)
+				cmd.Wait() //nolint:errcheck // Ignore the error
+				status, ok := cmd.ProcessState.Sys().(syscall.WaitStatus)
+				if !ok {
+					t.Errorf("unexpected type: %T", cmd.ProcessState.Sys())
+				}
 				if status.Signaled() {
 					t.Logf("Signal: %v", status.Signal())
 				} else {
@@ -69,7 +72,7 @@ func TestProcessCollector(t *testing.T) {
 			defer func() {
 				cm.Stop()
 
-				cmd.Process.Kill() //nolint:errcheck
+				cmd.Process.Kill() //nolint:errcheck // Ignore the error
 				<-done
 				close(done)
 			}()
diff --git a/internal/ingress/metric/collectors/socket.go b/internal/ingress/metric/collectors/socket.go
index 508cc6bc8..a70024c57 100644
--- a/internal/ingress/metric/collectors/socket.go
+++ b/internal/ingress/metric/collectors/socket.go
@@ -44,14 +44,11 @@ type socketData struct {
 	Latency      float64 `json:"upstreamLatency"`
 	HeaderTime   float64 `json:"upstreamHeaderTime"`
 	ResponseTime float64 `json:"upstreamResponseTime"`
-	//ResponseLength float64 `json:"upstreamResponseLength"`
-	//Status         string  `json:"upstreamStatus"`
-
-	Namespace string `json:"namespace"`
-	Ingress   string `json:"ingress"`
-	Service   string `json:"service"`
-	Canary    string `json:"canary"`
-	Path      string `json:"path"`
+	Namespace    string  `json:"namespace"`
+	Ingress      string  `json:"ingress"`
+	Service      string  `json:"service"`
+	Canary       string  `json:"canary"`
+	Path         string  `json:"path"`
 }
 
 // HistogramBuckets allow customizing prometheus histogram buckets values
@@ -89,19 +86,17 @@ type SocketCollector struct {
 	reportStatusClasses bool
 }
 
-var (
-	requestTags = []string{
-		"status",
+var requestTags = []string{
+	"status",
 
-		"method",
-		"path",
+	"method",
+	"path",
 
-		"namespace",
-		"ingress",
-		"service",
-		"canary",
-	}
-)
+	"namespace",
+	"ingress",
+	"service",
+	"canary",
+}
 
 // DefObjectives was removed in https://github.com/prometheus/client_golang/pull/262
 // updating the library to latest version changed the output of the metrics
@@ -112,6 +107,7 @@ var defObjectives = map[float64]float64{0.5: 0.05, 0.9: 0.01, 0.99: 0.001}
 func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStatusClasses bool, buckets HistogramBuckets, excludeMetrics []string) (*SocketCollector, error) {
 	socket := "/tmp/nginx/prometheus-nginx.socket"
 	// unix sockets must be unlink()ed before being used
+	//nolint:errcheck // Ignore unlink error
 	_ = syscall.Unlink(socket)
 
 	listener, err := net.Listen("unix", socket)
@@ -119,7 +115,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 		return nil, err
 	}
 
-	err = os.Chmod(socket, 0777) // #nosec
+	err = os.Chmod(socket, 0o777) // #nosec
 	if err != nil {
 		return nil, err
 	}
@@ -152,7 +148,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 		reportStatusClasses: reportStatusClasses,
 
 		connectTime: histogramMetric(
-			prometheus.HistogramOpts{
+			&prometheus.HistogramOpts{
 				Name:        "connect_duration_seconds",
 				Help:        "The time spent on establishing a connection with the upstream server",
 				Namespace:   PrometheusNamespace,
@@ -165,7 +161,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 		),
 
 		headerTime: histogramMetric(
-			prometheus.HistogramOpts{
+			&prometheus.HistogramOpts{
 				Name:        "header_duration_seconds",
 				Help:        "The time spent on receiving first header from the upstream server",
 				Namespace:   PrometheusNamespace,
@@ -177,7 +173,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 			mm,
 		),
 		responseTime: histogramMetric(
-			prometheus.HistogramOpts{
+			&prometheus.HistogramOpts{
 				Name:        "response_duration_seconds",
 				Help:        "The time spent on receiving the response from the upstream server",
 				Namespace:   PrometheusNamespace,
@@ -190,7 +186,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 		),
 
 		requestTime: histogramMetric(
-			prometheus.HistogramOpts{
+			&prometheus.HistogramOpts{
 				Name:        "request_duration_seconds",
 				Help:        "The request processing time in milliseconds",
 				Namespace:   PrometheusNamespace,
@@ -203,7 +199,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 		),
 
 		responseLength: histogramMetric(
-			prometheus.HistogramOpts{
+			&prometheus.HistogramOpts{
 				Name:        "response_size",
 				Help:        "The response length (including request line, header, and request body)",
 				Namespace:   PrometheusNamespace,
@@ -216,7 +212,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 		),
 
 		requestLength: histogramMetric(
-			prometheus.HistogramOpts{
+			&prometheus.HistogramOpts{
 				Name:        "request_size",
 				Help:        "The request length (including request line, header, and request body)",
 				Namespace:   PrometheusNamespace,
@@ -229,7 +225,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 		),
 
 		requests: counterMetric(
-			prometheus.CounterOpts{
+			&prometheus.CounterOpts{
 				Name:        "requests",
 				Help:        "The total number of client requests",
 				Namespace:   PrometheusNamespace,
@@ -241,7 +237,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 		),
 
 		bytesSent: histogramMetric(
-			prometheus.HistogramOpts{
+			&prometheus.HistogramOpts{
 				Name:        "bytes_sent",
 				Help:        "DEPRECATED The number of bytes sent to a client",
 				Namespace:   PrometheusNamespace,
@@ -254,7 +250,7 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 		),
 
 		upstreamLatency: summaryMetric(
-			prometheus.SummaryOpts{
+			&prometheus.SummaryOpts{
 				Name:        "ingress_upstream_latency_seconds",
 				Help:        "DEPRECATED Upstream service latency per Ingress",
 				Namespace:   PrometheusNamespace,
@@ -279,36 +275,36 @@ func containsMetric(excludeMetrics map[string]struct{}, name string) bool {
 	return false
 }
 
-func summaryMetric(opts prometheus.SummaryOpts, requestTags []string, excludeMetrics map[string]struct{}, metricMapping metricMapping) *prometheus.SummaryVec {
+func summaryMetric(opts *prometheus.SummaryOpts, requestTags []string, excludeMetrics map[string]struct{}, metricMapping metricMapping) *prometheus.SummaryVec {
 	if containsMetric(excludeMetrics, opts.Name) {
 		return nil
 	}
 	m := prometheus.NewSummaryVec(
-		opts,
+		*opts,
 		requestTags,
 	)
 	metricMapping[prometheus.BuildFQName(PrometheusNamespace, "", opts.Name)] = m
 	return m
 }
 
-func counterMetric(opts prometheus.CounterOpts, requestTags []string, excludeMetrics map[string]struct{}, metricMapping metricMapping) *prometheus.CounterVec {
+func counterMetric(opts *prometheus.CounterOpts, requestTags []string, excludeMetrics map[string]struct{}, metricMapping metricMapping) *prometheus.CounterVec {
 	if containsMetric(excludeMetrics, opts.Name) {
 		return nil
 	}
 	m := prometheus.NewCounterVec(
-		opts,
+		*opts,
 		requestTags,
 	)
 	metricMapping[prometheus.BuildFQName(PrometheusNamespace, "", opts.Name)] = m
 	return m
 }
 
-func histogramMetric(opts prometheus.HistogramOpts, requestTags []string, excludeMetrics map[string]struct{}, metricMapping metricMapping) *prometheus.HistogramVec {
+func histogramMetric(opts *prometheus.HistogramOpts, requestTags []string, excludeMetrics map[string]struct{}, metricMapping metricMapping) *prometheus.HistogramVec {
 	if containsMetric(excludeMetrics, opts.Name) {
 		return nil
 	}
 	m := prometheus.NewHistogramVec(
-		opts,
+		*opts,
 		requestTags,
 	)
 	metricMapping[prometheus.BuildFQName(PrometheusNamespace, "", opts.Name)] = m
@@ -326,7 +322,8 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 		return
 	}
 
-	for _, stats := range statsBatch {
+	for i := range statsBatch {
+		stats := &statsBatch[i]
 		if sc.metricsPerHost && !sc.hosts.Has(stats.Host) {
 			klog.V(3).InfoS("Skipping metric for host not being served", "host", stats.Host)
 			continue
@@ -543,14 +540,14 @@ func (sc *SocketCollector) RemoveMetrics(ingresses []string, registry prometheus
 }
 
 // Describe implements prometheus.Collector
-func (sc SocketCollector) Describe(ch chan<- *prometheus.Desc) {
+func (sc *SocketCollector) Describe(ch chan<- *prometheus.Desc) {
 	for _, metric := range sc.metricMapping {
 		metric.Describe(ch)
 	}
 }
 
 // Collect implements the prometheus.Collector interface.
-func (sc SocketCollector) Collect(ch chan<- prometheus.Metric) {
+func (sc *SocketCollector) Collect(ch chan<- prometheus.Metric) {
 	for _, metric := range sc.metricMapping {
 		metric.Collect(ch)
 	}
diff --git a/internal/ingress/metric/collectors/socket_test.go b/internal/ingress/metric/collectors/socket_test.go
index 6000f2685..71e9097c9 100644
--- a/internal/ingress/metric/collectors/socket_test.go
+++ b/internal/ingress/metric/collectors/socket_test.go
@@ -30,6 +30,7 @@ import (
 func TestNewUDPLogListener(t *testing.T) {
 	var count uint64
 
+	//nolint:unparam // Unused `message` param is required by the handleMessages function
 	fn := func(message []byte) {
 		atomic.AddUint64(&count, 1)
 	}
@@ -57,7 +58,10 @@ func TestNewUDPLogListener(t *testing.T) {
 		}
 	}()
 
-	conn, _ := net.Dial("unix", tmpFile)
+	conn, err := net.Dial("unix", tmpFile)
+	if err != nil {
+		t.Errorf("unexpected error connecting to unix socket: %v", err)
+	}
 	if _, err := conn.Write([]byte("message")); err != nil {
 		t.Errorf("unexpected error writing to unix socket: %v", err)
 	}
@@ -70,7 +74,6 @@ func TestNewUDPLogListener(t *testing.T) {
 }
 
 func TestCollector(t *testing.T) {
-
 	buckets := struct {
 		TimeBuckets   []float64
 		LengthBuckets []float64
diff --git a/internal/ingress/metric/collectors/testutils.go b/internal/ingress/metric/collectors/testutils.go
index 8c5c27b62..669e89e17 100644
--- a/internal/ingress/metric/collectors/testutils.go
+++ b/internal/ingress/metric/collectors/testutils.go
@@ -31,7 +31,7 @@ import (
 // GatherAndCompare retrieves all metrics exposed by a collector and compares it
 // to an expected output in the Prometheus text exposition format.
 // metricNames allows only comparing the given metrics. All are compared if it's nil.
-func GatherAndCompare(c prometheus.Collector, expected string, metricNames []string, reg prometheus.Gatherer) error {
+func GatherAndCompare(_ prometheus.Collector, expected string, metricNames []string, reg prometheus.Gatherer) error {
 	expected = removeUnusedWhitespace(expected)
 
 	metrics, err := reg.Gather()
@@ -77,9 +77,7 @@ metric output does not match expectation; want:
 
 got:
 
-'%s'
-
-`, buf2.String(), buf1.String())
+'%s'`, buf2.String(), buf1.String())
 	}
 	return nil
 }
diff --git a/internal/ingress/metric/dummy.go b/internal/ingress/metric/dummy.go
index d8ae0155a..a619ccbd8 100644
--- a/internal/ingress/metric/dummy.go
+++ b/internal/ingress/metric/dummy.go
@@ -29,50 +29,50 @@ func NewDummyCollector() Collector {
 // DummyCollector dummy implementation for mocks in tests
 type DummyCollector struct{}
 
-// ConfigSuccess ...
+// ConfigSuccess dummy implementation
 func (dc DummyCollector) ConfigSuccess(uint64, bool) {}
 
-// SetAdmissionMetrics ...
+// SetAdmissionMetrics dummy implementation
 func (dc DummyCollector) SetAdmissionMetrics(float64, float64, float64, float64, float64, float64) {}
 
-// IncReloadCount ...
+// IncReloadCount dummy implementation
 func (dc DummyCollector) IncReloadCount() {}
 
-// IncReloadErrorCount ...
+// IncReloadErrorCount dummy implementation
 func (dc DummyCollector) IncReloadErrorCount() {}
 
-// IncOrphanIngress ...
+// IncOrphanIngress dummy implementation
 func (dc DummyCollector) IncOrphanIngress(string, string, string) {}
 
-// DecOrphanIngress ...
+// DecOrphanIngress dummy implementation
 func (dc DummyCollector) DecOrphanIngress(string, string, string) {}
 
-// IncCheckCount ...
+// IncCheckCount dummy implementation
 func (dc DummyCollector) IncCheckCount(string, string) {}
 
-// IncCheckErrorCount ...
+// IncCheckErrorCount dummy implementation
 func (dc DummyCollector) IncCheckErrorCount(string, string) {}
 
-// RemoveMetrics ...
-func (dc DummyCollector) RemoveMetrics(ingresses, endpoints, certificates []string) {}
+// RemoveMetrics dummy implementation
+func (dc DummyCollector) RemoveMetrics(_, _, _ []string) {}
 
-// Start ...
-func (dc DummyCollector) Start(admissionStatus string) {}
+// Start dummy implementation
+func (dc DummyCollector) Start(_ string) {}
 
-// Stop ...
-func (dc DummyCollector) Stop(admissionStatus string) {}
+// Stop dummy implementation
+func (dc DummyCollector) Stop(_ string) {}
 
-// SetSSLInfo ...
+// SetSSLInfo dummy implementation
 func (dc DummyCollector) SetSSLInfo([]*ingress.Server) {}
 
-// SetSSLExpireTime ...
+// SetSSLExpireTime dummy implementation
 func (dc DummyCollector) SetSSLExpireTime([]*ingress.Server) {}
 
-// SetHosts ...
-func (dc DummyCollector) SetHosts(hosts sets.Set[string]) {}
+// SetHosts dummy implementation
+func (dc DummyCollector) SetHosts(_ sets.Set[string]) {}
 
 // OnStartedLeading indicates the pod is not the current leader
-func (dc DummyCollector) OnStartedLeading(electionID string) {}
+func (dc DummyCollector) OnStartedLeading(_ string) {}
 
 // OnStoppedLeading indicates the pod is not the current leader
-func (dc DummyCollector) OnStoppedLeading(electionID string) {}
+func (dc DummyCollector) OnStoppedLeading(_ string) {}
diff --git a/internal/ingress/metric/main.go b/internal/ingress/metric/main.go
index b2f721f62..aa35a5c51 100644
--- a/internal/ingress/metric/main.go
+++ b/internal/ingress/metric/main.go
@@ -115,11 +115,11 @@ func (c *collector) ConfigSuccess(hash uint64, success bool) {
 	c.ingressController.ConfigSuccess(hash, success)
 }
 
-func (c *collector) IncCheckCount(namespace string, name string) {
+func (c *collector) IncCheckCount(namespace, name string) {
 	c.ingressController.IncCheckCount(namespace, name)
 }
 
-func (c *collector) IncCheckErrorCount(namespace string, name string) {
+func (c *collector) IncCheckErrorCount(namespace, name string) {
 	c.ingressController.IncCheckErrorCount(namespace, name)
 }
 
@@ -183,11 +183,11 @@ func (c *collector) SetSSLInfo(servers []*ingress.Server) {
 	c.ingressController.SetSSLInfo(servers)
 }
 
-func (c *collector) IncOrphanIngress(namespace string, name string, orphanityType string) {
+func (c *collector) IncOrphanIngress(namespace, name, orphanityType string) {
 	c.ingressController.IncOrphanIngress(namespace, name, orphanityType)
 }
 
-func (c *collector) DecOrphanIngress(namespace string, name string, orphanityType string) {
+func (c *collector) DecOrphanIngress(namespace, name, orphanityType string) {
 	c.ingressController.DecOrphanIngress(namespace, name, orphanityType)
 }
 
@@ -195,7 +195,7 @@ func (c *collector) SetHosts(hosts sets.Set[string]) {
 	c.socket.SetHosts(hosts)
 }
 
-func (c *collector) SetAdmissionMetrics(testedIngressLength float64, testedIngressTime float64, renderingIngressLength float64, renderingIngressTime float64, testedConfigurationSize float64, admissionTime float64) {
+func (c *collector) SetAdmissionMetrics(testedIngressLength, testedIngressTime, renderingIngressLength, renderingIngressTime, testedConfigurationSize, admissionTime float64) {
 	c.admissionController.SetAdmissionMetrics(
 		testedIngressLength,
 		testedIngressTime,
@@ -219,9 +219,7 @@ func (c *collector) OnStoppedLeading(electionID string) {
 	c.ingressController.RemoveAllSSLMetrics(c.registry)
 }
 
-var (
-	currentLeader uint32
-)
+var currentLeader uint32
 
 func setLeader(leader bool) {
 	var i uint32
diff --git a/internal/ingress/status/status.go b/internal/ingress/status/status.go
index 62b88da16..81fb9044a 100644
--- a/internal/ingress/status/status.go
+++ b/internal/ingress/status/status.go
@@ -44,7 +44,7 @@ import (
 // which the status should check if an update is required.
 var UpdateInterval = 60
 
-// Syncer ...
+// Syncer is an interface that implements syncer
 type Syncer interface {
 	Run(chan struct{})
 
@@ -56,7 +56,7 @@ type ingressLister interface {
 	ListIngresses() []*ingress.Ingress
 }
 
-// Config ...
+// Config is a structure that implements Client interfaces
 type Config struct {
 	Client clientset.Interface
 
@@ -87,7 +87,7 @@ type statusSync struct {
 }
 
 // Start starts the loop to keep the status in sync
-func (s statusSync) Run(stopCh chan struct{}) {
+func (s *statusSync) Run(stopCh chan struct{}) {
 	go s.syncQueue.Run(time.Second, stopCh)
 
 	// trigger initial sync
@@ -95,6 +95,7 @@ func (s statusSync) Run(stopCh chan struct{}) {
 
 	// when this instance is the leader we need to enqueue
 	// an item to trigger the update of the Ingress status.
+	//nolint:staticcheck // TODO: will replace it since wait.PollUntil is deprecated
 	err := wait.PollUntil(time.Duration(UpdateInterval)*time.Second, func() (bool, error) {
 		s.syncQueue.EnqueueTask(task.GetDummyObject("sync status"))
 		return false, nil
@@ -106,7 +107,7 @@ func (s statusSync) Run(stopCh chan struct{}) {
 
 // Shutdown stops the sync. In case the instance is the leader it will remove the current IP
 // if there is no other instances running.
-func (s statusSync) Shutdown() {
+func (s *statusSync) Shutdown() {
 	go s.syncQueue.Shutdown()
 
 	if !s.UpdateStatusOnShutdown {
@@ -135,7 +136,7 @@ func (s statusSync) Shutdown() {
 	s.updateStatus([]v1.IngressLoadBalancerIngress{})
 }
 
-func (s *statusSync) sync(key interface{}) error {
+func (s *statusSync) sync(_ interface{}) error {
 	if s.syncQueue.IsShuttingDown() {
 		klog.V(2).InfoS("skipping Ingress status update (shutting down in progress)")
 		return nil
@@ -150,13 +151,13 @@ func (s *statusSync) sync(key interface{}) error {
 	return nil
 }
 
-func (s statusSync) keyfunc(input interface{}) (interface{}, error) {
+func (s *statusSync) keyfunc(input interface{}) (interface{}, error) {
 	return input, nil
 }
 
 // NewStatusSyncer returns a new Syncer instance
 func NewStatusSyncer(config Config) Syncer {
-	st := statusSync{
+	st := &statusSync{
 		Config: config,
 	}
 	st.syncQueue = task.NewCustomTaskQueue(st.sync, st.keyfunc)
@@ -229,7 +230,6 @@ func (s *statusSync) runningAddresses() ([]v1.IngressLoadBalancerIngress, error)
 }
 
 func (s *statusSync) isRunningMultiplePods() bool {
-
 	// As a standard, app.kubernetes.io are "reserved well-known" labels.
 	// In our case, we add those labels as identifiers of the Ingress
 	// deployment in this namespace, so we can select it as a set of Ingress instances.
@@ -288,7 +288,8 @@ func (s *statusSync) updateStatus(newIngressPoint []v1.IngressLoadBalancerIngres
 }
 
 func runUpdate(ing *ingress.Ingress, status []v1.IngressLoadBalancerIngress,
-	client clientset.Interface) pool.WorkFunc {
+	client clientset.Interface,
+) pool.WorkFunc {
 	return func(wu pool.WorkUnit) (interface{}, error) {
 		if wu.IsCancelled() {
 			return nil, nil
@@ -341,7 +342,10 @@ func ingressSliceEqual(lhs, rhs []v1.IngressLoadBalancerIngress) bool {
 }
 
 func statusAddressFromService(service string, kubeClient clientset.Interface) ([]v1.IngressLoadBalancerIngress, error) {
-	ns, name, _ := k8s.ParseNameNS(service)
+	ns, name, err := k8s.ParseNameNS(service)
+	if err != nil {
+		return nil, err
+	}
 	svc, err := kubeClient.CoreV1().Services(ns).Get(context.TODO(), name, metav1.GetOptions{})
 	if err != nil {
 		return nil, err
@@ -362,15 +366,15 @@ func statusAddressFromService(service string, kubeClient clientset.Interface) ([
 				IP: svc.Spec.ClusterIP,
 			}}, nil
 		}
-		addrs := make([]v1.IngressLoadBalancerIngress, len(svc.Spec.ExternalIPs))
-		for i, ip := range svc.Spec.ExternalIPs {
-			addrs[i] = v1.IngressLoadBalancerIngress{IP: ip}
+		addrs := make([]v1.IngressLoadBalancerIngress, 0, len(svc.Spec.ExternalIPs))
+		for _, ip := range svc.Spec.ExternalIPs {
+			addrs = append(addrs, v1.IngressLoadBalancerIngress{IP: ip})
 		}
 		return addrs, nil
 	case apiv1.ServiceTypeLoadBalancer:
-		addrs := make([]v1.IngressLoadBalancerIngress, len(svc.Status.LoadBalancer.Ingress))
+		addrs := make([]v1.IngressLoadBalancerIngress, 0, len(svc.Status.LoadBalancer.Ingress))
 		for i, ingress := range svc.Status.LoadBalancer.Ingress {
-			addrs[i] = v1.IngressLoadBalancerIngress{}
+			addrs = append(addrs, v1.IngressLoadBalancerIngress{})
 			if ingress.Hostname != "" {
 				addrs[i].Hostname = ingress.Hostname
 			}
diff --git a/internal/ingress/status/status_test.go b/internal/ingress/status/status_test.go
index ce6b6a0bf..01419708b 100644
--- a/internal/ingress/status/status_test.go
+++ b/internal/ingress/status/status_test.go
@@ -18,7 +18,6 @@ package status
 
 import (
 	"context"
-	"os"
 	"reflect"
 	"testing"
 	"time"
@@ -34,6 +33,8 @@ import (
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
 )
 
+const localhost = "127.0.0.1"
+
 func buildLoadBalancerIngressByIP() []networking.IngressLoadBalancerIngress {
 	return []networking.IngressLoadBalancerIngress{
 		{
@@ -126,17 +127,6 @@ func buildSimpleClientSet() *testclient.Clientset {
 			// This is commented out as the ServiceStatus.LoadBalancer field expects a LoadBalancerStatus object
 			// which is incompatible with the current Ingress struct which expects a IngressLoadBalancerStatus object
 			// TODO: update this service when the ServiceStatus struct gets updated
-			//{
-			//	ObjectMeta: metav1.ObjectMeta{
-			//		Name:      "foo",
-			//		Namespace: apiv1.NamespaceDefault,
-			//	},
-			//	Status: apiv1.ServiceStatus{
-			//		LoadBalancer: apiv1.LoadBalancerStatus{
-			//			Ingress: buildLoadBalancerIngressByIP(),
-			//		},
-			//	},
-			//},
 			{
 				ObjectMeta: metav1.ObjectMeta{
 					Name:      "foo_non_exist",
@@ -185,7 +175,8 @@ func buildSimpleClientSet() *testclient.Clientset {
 					Name:      "ingress-controller-leader",
 					Namespace: apiv1.NamespaceDefault,
 				},
-			}}},
+			},
+		}},
 		&networking.IngressList{Items: buildExtensionsIngresses()},
 	)
 }
@@ -245,30 +236,33 @@ func buildExtensionsIngresses() []networking.Ingress {
 	}
 }
 
-type testIngressLister struct {
-}
+type testIngressLister struct{}
 
 func (til *testIngressLister) ListIngresses() []*ingress.Ingress {
 	var ingresses []*ingress.Ingress
-	ingresses = append(ingresses, &ingress.Ingress{
-		Ingress: networking.Ingress{
-			ObjectMeta: metav1.ObjectMeta{
-				Name:      "foo_ingress_non_01",
-				Namespace: apiv1.NamespaceDefault,
-			}}})
-
-	ingresses = append(ingresses, &ingress.Ingress{
-		Ingress: networking.Ingress{
-			ObjectMeta: metav1.ObjectMeta{
-				Name:      "foo_ingress_1",
-				Namespace: apiv1.NamespaceDefault,
-			},
-			Status: networking.IngressStatus{
-				LoadBalancer: networking.IngressLoadBalancerStatus{
-					Ingress: buildLoadBalancerIngressByIP(),
+	ingresses = append(ingresses,
+		&ingress.Ingress{
+			Ingress: networking.Ingress{
+				ObjectMeta: metav1.ObjectMeta{
+					Name:      "foo_ingress_non_01",
+					Namespace: apiv1.NamespaceDefault,
 				},
 			},
-		}})
+		},
+		&ingress.Ingress{
+			Ingress: networking.Ingress{
+				ObjectMeta: metav1.ObjectMeta{
+					Name:      "foo_ingress_1",
+					Namespace: apiv1.NamespaceDefault,
+				},
+				Status: networking.IngressStatus{
+					LoadBalancer: networking.IngressLoadBalancerStatus{
+						Ingress: buildLoadBalancerIngressByIP(),
+					},
+				},
+			},
+		},
+	)
 
 	return ingresses
 }
@@ -290,8 +284,8 @@ func buildStatusSync() statusSync {
 
 func TestStatusActions(t *testing.T) {
 	// make sure election can be created
-	os.Setenv("POD_NAME", "foo1")
-	os.Setenv("POD_NAMESPACE", apiv1.NamespaceDefault)
+	t.Setenv("POD_NAME", "foo1")
+	t.Setenv("POD_NAMESPACE", apiv1.NamespaceDefault)
 	c := Config{
 		Client:                 buildSimpleClientSet(),
 		PublishService:         "",
@@ -315,7 +309,10 @@ func TestStatusActions(t *testing.T) {
 		t.Fatalf("expected a valid Sync")
 	}
 
-	fk := fkSync.(statusSync)
+	fk, ok := fkSync.(*statusSync)
+	if !ok {
+		t.Errorf("unexpected type: %T", fkSync)
+	}
 
 	// start it and wait for the election and syn actions
 	stopCh := make(chan struct{})
@@ -366,7 +363,7 @@ func TestStatusActions(t *testing.T) {
 	}
 }
 
-func TestCallback(t *testing.T) {
+func TestCallback(_ *testing.T) {
 	buildStatusSync()
 }
 
@@ -375,7 +372,6 @@ func TestKeyfunc(t *testing.T) {
 
 	i := "foo_base_pod"
 	r, err := fk.keyfunc(i)
-
 	if err != nil {
 		t.Fatalf("unexpected error")
 	}
@@ -392,34 +388,36 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 	}{
 		"service type ClusterIP": {
 			testclient.NewSimpleClientset(
-				&apiv1.PodList{Items: []apiv1.Pod{
-					{
-						ObjectMeta: metav1.ObjectMeta{
-							Name:      "foo",
-							Namespace: apiv1.NamespaceDefault,
-						},
-						Spec: apiv1.PodSpec{
-							NodeName: "foo_node",
-						},
-						Status: apiv1.PodStatus{
-							Phase: apiv1.PodRunning,
+				&apiv1.PodList{
+					Items: []apiv1.Pod{
+						{
+							ObjectMeta: metav1.ObjectMeta{
+								Name:      "foo",
+								Namespace: apiv1.NamespaceDefault,
+							},
+							Spec: apiv1.PodSpec{
+								NodeName: "foo_node",
+							},
+							Status: apiv1.PodStatus{
+								Phase: apiv1.PodRunning,
+							},
 						},
 					},
 				},
-				},
-				&apiv1.ServiceList{Items: []apiv1.Service{
-					{
-						ObjectMeta: metav1.ObjectMeta{
-							Name:      "foo",
-							Namespace: apiv1.NamespaceDefault,
-						},
-						Spec: apiv1.ServiceSpec{
-							Type:      apiv1.ServiceTypeClusterIP,
-							ClusterIP: "1.1.1.1",
+				&apiv1.ServiceList{
+					Items: []apiv1.Service{
+						{
+							ObjectMeta: metav1.ObjectMeta{
+								Name:      "foo",
+								Namespace: apiv1.NamespaceDefault,
+							},
+							Spec: apiv1.ServiceSpec{
+								Type:      apiv1.ServiceTypeClusterIP,
+								ClusterIP: "1.1.1.1",
+							},
 						},
 					},
 				},
-				},
 			),
 			[]networking.IngressLoadBalancerIngress{
 				{IP: "1.1.1.1"},
@@ -428,19 +426,20 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 		},
 		"service type NodePort": {
 			testclient.NewSimpleClientset(
-				&apiv1.ServiceList{Items: []apiv1.Service{
-					{
-						ObjectMeta: metav1.ObjectMeta{
-							Name:      "foo",
-							Namespace: apiv1.NamespaceDefault,
-						},
-						Spec: apiv1.ServiceSpec{
-							Type:      apiv1.ServiceTypeNodePort,
-							ClusterIP: "1.1.1.1",
+				&apiv1.ServiceList{
+					Items: []apiv1.Service{
+						{
+							ObjectMeta: metav1.ObjectMeta{
+								Name:      "foo",
+								Namespace: apiv1.NamespaceDefault,
+							},
+							Spec: apiv1.ServiceSpec{
+								Type:      apiv1.ServiceTypeNodePort,
+								ClusterIP: "1.1.1.1",
+							},
 						},
 					},
 				},
-				},
 			),
 			[]networking.IngressLoadBalancerIngress{
 				{IP: "1.1.1.1"},
@@ -449,19 +448,20 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 		},
 		"service type ExternalName": {
 			testclient.NewSimpleClientset(
-				&apiv1.ServiceList{Items: []apiv1.Service{
-					{
-						ObjectMeta: metav1.ObjectMeta{
-							Name:      "foo",
-							Namespace: apiv1.NamespaceDefault,
-						},
-						Spec: apiv1.ServiceSpec{
-							Type:         apiv1.ServiceTypeExternalName,
-							ExternalName: "foo.bar",
+				&apiv1.ServiceList{
+					Items: []apiv1.Service{
+						{
+							ObjectMeta: metav1.ObjectMeta{
+								Name:      "foo",
+								Namespace: apiv1.NamespaceDefault,
+							},
+							Spec: apiv1.ServiceSpec{
+								Type:         apiv1.ServiceTypeExternalName,
+								ExternalName: "foo.bar",
+							},
 						},
 					},
 				},
-				},
 			),
 			[]networking.IngressLoadBalancerIngress{
 				{Hostname: "foo.bar"},
@@ -470,35 +470,36 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 		},
 		"service type LoadBalancer": {
 			testclient.NewSimpleClientset(
-				&apiv1.ServiceList{Items: []apiv1.Service{
-					{
-						ObjectMeta: metav1.ObjectMeta{
-							Name:      "foo",
-							Namespace: apiv1.NamespaceDefault,
-						},
-						Spec: apiv1.ServiceSpec{
-							Type: apiv1.ServiceTypeLoadBalancer,
-						},
-						Status: apiv1.ServiceStatus{
-							LoadBalancer: apiv1.LoadBalancerStatus{
-								Ingress: []apiv1.LoadBalancerIngress{
-									{
-										IP: "10.0.0.1",
-									},
-									{
-										IP:       "",
-										Hostname: "foo",
-									},
-									{
-										IP:       "10.0.0.2",
-										Hostname: "10-0-0-2.cloudprovider.example.net",
+				&apiv1.ServiceList{
+					Items: []apiv1.Service{
+						{
+							ObjectMeta: metav1.ObjectMeta{
+								Name:      "foo",
+								Namespace: apiv1.NamespaceDefault,
+							},
+							Spec: apiv1.ServiceSpec{
+								Type: apiv1.ServiceTypeLoadBalancer,
+							},
+							Status: apiv1.ServiceStatus{
+								LoadBalancer: apiv1.LoadBalancerStatus{
+									Ingress: []apiv1.LoadBalancerIngress{
+										{
+											IP: "10.0.0.1",
+										},
+										{
+											IP:       "",
+											Hostname: "foo",
+										},
+										{
+											IP:       "10.0.0.2",
+											Hostname: "10-0-0-2.cloudprovider.example.net",
+										},
 									},
 								},
 							},
 						},
 					},
 				},
-				},
 			),
 			[]networking.IngressLoadBalancerIngress{
 				{IP: "10.0.0.1"},
@@ -512,28 +513,29 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 		},
 		"service type LoadBalancer with same externalIP and ingress IP": {
 			testclient.NewSimpleClientset(
-				&apiv1.ServiceList{Items: []apiv1.Service{
-					{
-						ObjectMeta: metav1.ObjectMeta{
-							Name:      "foo",
-							Namespace: apiv1.NamespaceDefault,
-						},
-						Spec: apiv1.ServiceSpec{
-							Type:        apiv1.ServiceTypeLoadBalancer,
-							ExternalIPs: []string{"10.0.0.1"},
-						},
-						Status: apiv1.ServiceStatus{
-							LoadBalancer: apiv1.LoadBalancerStatus{
-								Ingress: []apiv1.LoadBalancerIngress{
-									{
-										IP: "10.0.0.1",
+				&apiv1.ServiceList{
+					Items: []apiv1.Service{
+						{
+							ObjectMeta: metav1.ObjectMeta{
+								Name:      "foo",
+								Namespace: apiv1.NamespaceDefault,
+							},
+							Spec: apiv1.ServiceSpec{
+								Type:        apiv1.ServiceTypeLoadBalancer,
+								ExternalIPs: []string{"10.0.0.1"},
+							},
+							Status: apiv1.ServiceStatus{
+								LoadBalancer: apiv1.LoadBalancerStatus{
+									Ingress: []apiv1.LoadBalancerIngress{
+										{
+											IP: "10.0.0.1",
+										},
 									},
 								},
 							},
 						},
 					},
 				},
-				},
 			),
 			[]networking.IngressLoadBalancerIngress{
 				{IP: "10.0.0.1"},
@@ -542,15 +544,16 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 		},
 		"invalid service type": {
 			testclient.NewSimpleClientset(
-				&apiv1.ServiceList{Items: []apiv1.Service{
-					{
-						ObjectMeta: metav1.ObjectMeta{
-							Name:      "foo",
-							Namespace: apiv1.NamespaceDefault,
+				&apiv1.ServiceList{
+					Items: []apiv1.Service{
+						{
+							ObjectMeta: metav1.ObjectMeta{
+								Name:      "foo",
+								Namespace: apiv1.NamespaceDefault,
+							},
 						},
 					},
 				},
-				},
 			),
 			nil,
 			true,
@@ -559,7 +562,6 @@ func TestRunningAddressesWithPublishService(t *testing.T) {
 
 	for title, tc := range testCases {
 		t.Run(title, func(t *testing.T) {
-
 			fk := buildStatusSync()
 			fk.Config.Client = tc.fakeClient
 
@@ -587,7 +589,11 @@ func TestRunningAddressesWithPods(t *testing.T) {
 	fk := buildStatusSync()
 	fk.PublishService = ""
 
-	r, _ := fk.runningAddresses()
+	r, err := fk.runningAddresses()
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
+
 	if r == nil {
 		t.Fatalf("returned nil but expected valid []networking.IngressLoadBalancerIngress")
 	}
@@ -603,9 +609,12 @@ func TestRunningAddressesWithPods(t *testing.T) {
 
 func TestRunningAddressesWithPublishStatusAddress(t *testing.T) {
 	fk := buildStatusSync()
-	fk.PublishStatusAddress = "127.0.0.1"
+	fk.PublishStatusAddress = localhost
 
-	ra, _ := fk.runningAddresses()
+	ra, err := fk.runningAddresses()
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	if ra == nil {
 		t.Fatalf("returned nil but expected valid []networking.IngressLoadBalancerIngress")
 	}
@@ -614,8 +623,8 @@ func TestRunningAddressesWithPublishStatusAddress(t *testing.T) {
 		t.Errorf("returned %v but expected %v", rl, 1)
 	}
 	rv := ra[0]
-	if rv.IP != "127.0.0.1" {
-		t.Errorf("returned %v but expected %v", rv, networking.IngressLoadBalancerIngress{IP: "127.0.0.1"})
+	if rv.IP != localhost {
+		t.Errorf("returned %v but expected %v", rv, networking.IngressLoadBalancerIngress{IP: localhost})
 	}
 }
 
@@ -623,7 +632,10 @@ func TestRunningAddressesWithPublishStatusAddresses(t *testing.T) {
 	fk := buildStatusSync()
 	fk.PublishStatusAddress = "127.0.0.1,1.1.1.1"
 
-	ra, _ := fk.runningAddresses()
+	ra, err := fk.runningAddresses()
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	if ra == nil {
 		t.Fatalf("returned nil but expected valid []networking.IngressLoadBalancerIngress")
 	}
@@ -633,8 +645,8 @@ func TestRunningAddressesWithPublishStatusAddresses(t *testing.T) {
 	}
 	rv := ra[0]
 	rv2 := ra[1]
-	if rv.IP != "127.0.0.1" {
-		t.Errorf("returned %v but expected %v", rv, networking.IngressLoadBalancerIngress{IP: "127.0.0.1"})
+	if rv.IP != localhost {
+		t.Errorf("returned %v but expected %v", rv, networking.IngressLoadBalancerIngress{IP: localhost})
 	}
 	if rv2.IP != "1.1.1.1" {
 		t.Errorf("returned %v but expected %v", rv2, networking.IngressLoadBalancerIngress{IP: "1.1.1.1"})
@@ -645,7 +657,10 @@ func TestRunningAddressesWithPublishStatusAddressesAndSpaces(t *testing.T) {
 	fk := buildStatusSync()
 	fk.PublishStatusAddress = "127.0.0.1,  1.1.1.1"
 
-	ra, _ := fk.runningAddresses()
+	ra, err := fk.runningAddresses()
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	if ra == nil {
 		t.Fatalf("returned nil but expected valid []networking.IngressLoadBalancerIngresst")
 	}
@@ -655,8 +670,8 @@ func TestRunningAddressesWithPublishStatusAddressesAndSpaces(t *testing.T) {
 	}
 	rv := ra[0]
 	rv2 := ra[1]
-	if rv.IP != "127.0.0.1" {
-		t.Errorf("returned %v but expected %v", rv, networking.IngressLoadBalancerIngress{IP: "127.0.0.1"})
+	if rv.IP != localhost {
+		t.Errorf("returned %v but expected %v", rv, networking.IngressLoadBalancerIngress{IP: localhost})
 	}
 	if rv2.IP != "1.1.1.1" {
 		t.Errorf("returned %v but expected %v", rv2, networking.IngressLoadBalancerIngress{IP: "1.1.1.1"})
diff --git a/internal/k8s/main.go b/internal/k8s/main.go
index d61013a9f..5e93e560d 100644
--- a/internal/k8s/main.go
+++ b/internal/k8s/main.go
@@ -33,7 +33,7 @@ import (
 )
 
 // ParseNameNS parses a string searching a namespace and name
-func ParseNameNS(input string) (string, string, error) {
+func ParseNameNS(input string) (ns, name string, err error) {
 	nsName := strings.Split(input, "/")
 	if len(nsName) != 2 {
 		return "", "", fmt.Errorf("invalid format (namespace/name) found in '%v'", input)
@@ -148,7 +148,10 @@ const IngressNGINXController = "k8s.io/ingress-nginx"
 // NetworkingIngressAvailable checks if the package "k8s.io/api/networking/v1"
 // is available or not and if Ingress V1 is supported (k8s >= v1.19.0)
 func NetworkingIngressAvailable(client clientset.Interface) bool {
-	version119, _ := version.ParseGeneric("v1.19.0")
+	version119, err := version.ParseGeneric("v1.19.0")
+	if err != nil {
+		return false
+	}
 
 	serverVersion, err := client.Discovery().ServerVersion()
 	if err != nil {
diff --git a/internal/k8s/main_test.go b/internal/k8s/main_test.go
index f3f8b652e..1721c1fb2 100644
--- a/internal/k8s/main_test.go
+++ b/internal/k8s/main_test.go
@@ -17,7 +17,6 @@ limitations under the License.
 package k8s
 
 import (
-	"os"
 	"testing"
 
 	apiv1 "k8s.io/api/core/v1"
@@ -203,7 +202,8 @@ func TestGetNodeIP(t *testing.T) {
 					},
 				},
 			}}}),
-			"demo", "10.0.0.2", true},
+			"demo", "10.0.0.2", true,
+		},
 	}
 
 	for _, fk := range fKNodes {
@@ -216,32 +216,32 @@ func TestGetNodeIP(t *testing.T) {
 
 func TestGetIngressPod(t *testing.T) {
 	// POD_NAME & POD_NAMESPACE not exist
-	os.Setenv("POD_NAME", "")
-	os.Setenv("POD_NAMESPACE", "")
+	t.Setenv("POD_NAME", "")
+	t.Setenv("POD_NAMESPACE", "")
 	err := GetIngressPod(testclient.NewSimpleClientset())
 	if err == nil {
 		t.Errorf("expected an error but returned nil")
 	}
 
 	// POD_NAME not exist
-	os.Setenv("POD_NAME", "")
-	os.Setenv("POD_NAMESPACE", apiv1.NamespaceDefault)
+	t.Setenv("POD_NAME", "")
+	t.Setenv("POD_NAMESPACE", apiv1.NamespaceDefault)
 	err = GetIngressPod(testclient.NewSimpleClientset())
 	if err == nil {
 		t.Errorf("expected an error but returned nil")
 	}
 
 	// POD_NAMESPACE not exist
-	os.Setenv("POD_NAME", "testpod")
-	os.Setenv("POD_NAMESPACE", "")
+	t.Setenv("POD_NAME", "testpod")
+	t.Setenv("POD_NAMESPACE", "")
 	err = GetIngressPod(testclient.NewSimpleClientset())
 	if err == nil {
 		t.Errorf("expected an error but returned nil")
 	}
 
 	// POD not exist
-	os.Setenv("POD_NAME", "testpod")
-	os.Setenv("POD_NAMESPACE", apiv1.NamespaceDefault)
+	t.Setenv("POD_NAME", "testpod")
+	t.Setenv("POD_NAMESPACE", apiv1.NamespaceDefault)
 	err = GetIngressPod(testclient.NewSimpleClientset())
 	if err == nil {
 		t.Errorf("expected an error but returned nil")
diff --git a/internal/net/dns/dns.go b/internal/net/dns/dns.go
index 7dfbbd177..6b250e8cb 100644
--- a/internal/net/dns/dns.go
+++ b/internal/net/dns/dns.go
@@ -38,7 +38,7 @@ func GetSystemNameServers() ([]net.IP, error) {
 	lines := strings.Split(string(file), "\n")
 	for l := range lines {
 		trimmed := strings.TrimSpace(lines[l])
-		if len(trimmed) == 0 || trimmed[0] == '#' || trimmed[0] == ';' {
+		if trimmed == "" || trimmed[0] == '#' || trimmed[0] == ';' {
 			continue
 		}
 		fields := strings.Fields(trimmed)
diff --git a/internal/net/ipnet_test.go b/internal/net/ipnet_test.go
index 95e6b9c32..8e460aae9 100644
--- a/internal/net/ipnet_test.go
+++ b/internal/net/ipnet_test.go
@@ -36,13 +36,17 @@ func TestNewIPSet(t *testing.T) {
 }
 
 func TestParseCIDRs(t *testing.T) {
-	cidr, _ := ParseCIDRs("invalid.com")
+	cidr, err := ParseCIDRs("invalid.com")
+	if err == nil {
+		t.Errorf("expected error but got nil")
+	}
+
 	if cidr != nil {
 		t.Errorf("expected %v but got %v", nil, cidr)
 	}
 
 	expected := []string{"192.0.0.1", "192.0.1.0/24"}
-	cidr, err := ParseCIDRs("192.0.0.1, 192.0.1.0/24")
+	cidr, err = ParseCIDRs("192.0.0.1, 192.0.1.0/24")
 	if err != nil {
 		t.Errorf("unexpected error %v", err)
 	}
diff --git a/internal/net/net.go b/internal/net/net.go
index 712262f3a..b0952d9cc 100644
--- a/internal/net/net.go
+++ b/internal/net/net.go
@@ -30,11 +30,12 @@ func IsIPV6(ip _net.IP) bool {
 // IsPortAvailable checks if a TCP port is available or not
 func IsPortAvailable(p int) bool {
 	ln, err := _net.Listen("tcp", fmt.Sprintf(":%v", p))
-	if err != nil {
-		return false
-	}
-	defer ln.Close()
-	return true
+	defer func() {
+		if ln != nil {
+			ln.Close()
+		}
+	}()
+	return err == nil
 }
 
 // IsIPv6Enabled checks if IPV6 is enabled or not and we have
@@ -51,7 +52,10 @@ func IsIPv6Enabled() bool {
 	}
 
 	for _, addr := range addrs {
-		ip, _, _ := _net.ParseCIDR(addr.String())
+		ip, _, err := _net.ParseCIDR(addr.String())
+		if err != nil {
+			return false
+		}
 		if IsIPV6(ip) {
 			return true
 		}
diff --git a/internal/net/net_test.go b/internal/net/net_test.go
index f2f37a838..f7a4f52e1 100644
--- a/internal/net/net_test.go
+++ b/internal/net/net_test.go
@@ -47,7 +47,7 @@ func TestIsPortAvailable(t *testing.T) {
 		t.Fatal("expected port 0 to be available (random port) but returned false")
 	}
 
-	ln, err := net.Listen("tcp", ":0")
+	ln, err := net.Listen("tcp", ":0") //nolint:gosec // Ignore the gosec error in testing
 	if err != nil {
 		t.Fatalf("unexpected error: %v", err)
 	}
diff --git a/internal/net/ssl/ssl.go b/internal/net/ssl/ssl.go
index c74537fe9..516b1ec9c 100644
--- a/internal/net/ssl/ssl.go
+++ b/internal/net/ssl/ssl.go
@@ -52,17 +52,15 @@ import (
 // certificate generated by the ingress controller
 var FakeSSLCertificateUID = "00000000-0000-0000-0000-000000000000"
 
-var (
-	oidExtensionSubjectAltName = asn1.ObjectIdentifier{2, 5, 29, 17}
-)
+var oidExtensionSubjectAltName = asn1.ObjectIdentifier{2, 5, 29, 17}
 
 const (
 	fakeCertificateName = "default-fake-certificate"
 )
 
 // getPemFileName returns absolute file path and file name of pem cert related to given fullSecretName
-func getPemFileName(fullSecretName string) (string, string) {
-	pemName := fmt.Sprintf("%v.pem", fullSecretName)
+func getPemFileName(fullSecretName string) (filePath, pemName string) {
+	pemName = fmt.Sprintf("%v.pem", fullSecretName)
 	return fmt.Sprintf("%v/%v", file.DefaultSSLDirectory, pemName), pemName
 }
 
@@ -192,7 +190,7 @@ func StoreSSLCertOnDisk(name string, sslCert *ingress.SSLCert) (string, error) {
 
 // ConfigureCACertWithCertAndKey appends ca into existing PEM file consisting of cert and key
 // and sets relevant fields in sslCert object
-func ConfigureCACertWithCertAndKey(name string, ca []byte, sslCert *ingress.SSLCert) error {
+func ConfigureCACertWithCertAndKey(_ string, ca []byte, sslCert *ingress.SSLCert) error {
 	var buffer bytes.Buffer
 
 	_, err := buffer.WriteString(sslCert.PemCertKey)
@@ -210,12 +208,12 @@ func ConfigureCACertWithCertAndKey(name string, ca []byte, sslCert *ingress.SSLC
 		return fmt.Errorf("could not write ca data to cert file %v: %v", sslCert.CAFileName, err)
 	}
 
-	return os.WriteFile(sslCert.CAFileName, buffer.Bytes(), 0644)
+	//nolint:gosec // Not change permission to avoid possible issues
+	return os.WriteFile(sslCert.CAFileName, buffer.Bytes(), 0o644)
 }
 
 // ConfigureCRL creates a CRL file and append it into the SSLCert
 func ConfigureCRL(name string, crl []byte, sslCert *ingress.SSLCert) error {
-
 	crlName := fmt.Sprintf("crl-%v.pem", name)
 	crlFileName := fmt.Sprintf("%v/%v", file.DefaultSSLDirectory, crlName)
 
@@ -230,10 +228,11 @@ func ConfigureCRL(name string, crl []byte, sslCert *ingress.SSLCert) error {
 
 	_, err := x509.ParseRevocationList(pemCRLBlock.Bytes)
 	if err != nil {
-		return fmt.Errorf(err.Error())
+		return err
 	}
 
-	err = os.WriteFile(crlFileName, crl, 0644)
+	//nolint:gosec // Not change permission to avoid possible issues
+	err = os.WriteFile(crlFileName, crl, 0o644)
 	if err != nil {
 		return fmt.Errorf("could not write CRL file %v: %v", crlFileName, err)
 	}
@@ -242,7 +241,6 @@ func ConfigureCRL(name string, crl []byte, sslCert *ingress.SSLCert) error {
 	sslCert.CRLSHA = file.SHA1(crlFileName)
 
 	return nil
-
 }
 
 // ConfigureCACert is similar to ConfigureCACertWithCertAndKey but it creates a separate file
@@ -251,7 +249,8 @@ func ConfigureCACert(name string, ca []byte, sslCert *ingress.SSLCert) error {
 	caName := fmt.Sprintf("ca-%v.pem", name)
 	fileName := fmt.Sprintf("%v/%v", file.DefaultSSLDirectory, caName)
 
-	err := os.WriteFile(fileName, ca, 0644)
+	//nolint:gosec // Not change permission to avoid possible issues
+	err := os.WriteFile(fileName, ca, 0o644)
 	if err != nil {
 		return fmt.Errorf("could not write CA file %v: %v", fileName, err)
 	}
@@ -293,14 +292,14 @@ func parseSANExtension(value []byte) (dnsNames, emailAddresses []string, ipAddre
 	var seq asn1.RawValue
 	var rest []byte
 	if rest, err = asn1.Unmarshal(value, &seq); err != nil {
-		return
+		return dnsNames, emailAddresses, ipAddresses, err
 	} else if len(rest) != 0 {
 		err = errors.New("x509: trailing data after X.509 extension")
-		return
+		return dnsNames, emailAddresses, ipAddresses, err
 	}
 	if !seq.IsCompound || seq.Tag != 16 || seq.Class != 0 {
 		err = asn1.StructuralError{Msg: "bad SAN sequence"}
-		return
+		return dnsNames, emailAddresses, ipAddresses, err
 	}
 
 	rest = seq.Bytes
@@ -308,7 +307,7 @@ func parseSANExtension(value []byte) (dnsNames, emailAddresses []string, ipAddre
 		var v asn1.RawValue
 		rest, err = asn1.Unmarshal(rest, &v)
 		if err != nil {
-			return
+			return dnsNames, emailAddresses, ipAddresses, err
 		}
 		switch v.Tag {
 		case 1:
@@ -321,12 +320,12 @@ func parseSANExtension(value []byte) (dnsNames, emailAddresses []string, ipAddre
 				ipAddresses = append(ipAddresses, v.Bytes)
 			default:
 				err = errors.New("x509: certificate contained IP address of length " + strconv.Itoa(len(v.Bytes)))
-				return
+				return dnsNames, emailAddresses, ipAddresses, err
 			}
 		}
 	}
 
-	return
+	return dnsNames, emailAddresses, ipAddresses, err
 }
 
 // AddOrUpdateDHParam creates a dh parameters file with the specified name
@@ -396,7 +395,7 @@ func GetFakeSSLCert() *ingress.SSLCert {
 	return sslCert
 }
 
-func getFakeHostSSLCert(host string) ([]byte, []byte) {
+func getFakeHostSSLCert(host string) (cert, key []byte) {
 	var priv interface{}
 	var err error
 
@@ -412,7 +411,6 @@ func getFakeHostSSLCert(host string) ([]byte, []byte) {
 
 	serialNumberLimit := new(big.Int).Lsh(big.NewInt(1), 128)
 	serialNumber, err := rand.Int(rand.Reader, serialNumberLimit)
-
 	if err != nil {
 		klog.Fatalf("failed to generate fake serial number: %v", err)
 	}
@@ -436,9 +434,9 @@ func getFakeHostSSLCert(host string) ([]byte, []byte) {
 		klog.Fatalf("Failed to create fake certificate: %v", err)
 	}
 
-	cert := pem.EncodeToMemory(&pem.Block{Type: "CERTIFICATE", Bytes: derBytes})
+	cert = pem.EncodeToMemory(&pem.Block{Type: "CERTIFICATE", Bytes: derBytes})
 
-	key := pem.EncodeToMemory(&pem.Block{Type: "RSA PRIVATE KEY", Bytes: x509.MarshalPKCS1PrivateKey(priv.(*rsa.PrivateKey))})
+	key = pem.EncodeToMemory(&pem.Block{Type: "RSA PRIVATE KEY", Bytes: x509.MarshalPKCS1PrivateKey(priv.(*rsa.PrivateKey))})
 
 	return cert, key
 }
@@ -508,9 +506,14 @@ func NewTLSListener(certificate, key string) *TLSListener {
 
 	l.load()
 
-	_, _ = file.NewFileWatcher(certificate, l.load)
-	_, _ = file.NewFileWatcher(key, l.load)
-
+	_, err := file.NewFileWatcher(certificate, l.load)
+	if err != nil {
+		klog.Errorf("unexpected error: %v", err)
+	}
+	_, err = file.NewFileWatcher(key, l.load)
+	if err != nil {
+		klog.Errorf("unexpected error: %v", err)
+	}
 	return &l
 }
 
diff --git a/internal/net/ssl/ssl_test.go b/internal/net/ssl/ssl_test.go
index a86ecb87a..9f8c5eeae 100644
--- a/internal/net/ssl/ssl_test.go
+++ b/internal/net/ssl/ssl_test.go
@@ -42,7 +42,7 @@ import (
 )
 
 // generateRSACerts generates a self signed certificate using a self generated ca
-func generateRSACerts(host string) (*keyPair, *keyPair, error) {
+func generateRSACerts(host string) (newCert, newCa *keyPair, err error) {
 	ca, err := newCA("self-sign-ca")
 	if err != nil {
 		return nil, nil, err
@@ -57,7 +57,7 @@ func generateRSACerts(host string) (*keyPair, *keyPair, error) {
 		CommonName: host,
 		Usages:     []x509.ExtKeyUsage{x509.ExtKeyUsageAny},
 	}
-	cert, err := newSignedCert(config, key, ca.Cert, ca.Key)
+	cert, err := newSignedCert(&config, key, ca.Cert, ca.Key)
 	if err != nil {
 		return nil, nil, fmt.Errorf("unable to sign the server certificate: %v", err)
 	}
@@ -139,11 +139,11 @@ func TestCACert(t *testing.T) {
 func TestGetFakeSSLCert(t *testing.T) {
 	sslCert := GetFakeSSLCert()
 
-	if len(sslCert.PemCertKey) == 0 {
+	if sslCert.PemCertKey == "" {
 		t.Fatalf("expected PemCertKey to not be empty")
 	}
 
-	if len(sslCert.PemFileName) == 0 {
+	if sslCert.PemFileName == "" {
 		t.Fatalf("expected PemFileName to not be empty")
 	}
 
@@ -195,7 +195,7 @@ func TestConfigureCRL(t *testing.T) {
 	// Demo CRL from https://csrc.nist.gov/projects/pki-testing/sample-certificates-and-crls
 	// Converted to PEM to be tested
 	// SHA: ef21f9c97ec2ef84ba3b2ab007c858a6f760d813
-	var crl = []byte(`-----BEGIN X509 CRL-----
+	crl := []byte(`-----BEGIN X509 CRL-----
 MIIBYDCBygIBATANBgkqhkiG9w0BAQUFADBDMRMwEQYKCZImiZPyLGQBGRYDY29t
 MRcwFQYKCZImiZPyLGQBGRYHZXhhbXBsZTETMBEGA1UEAxMKRXhhbXBsZSBDQRcN
 MDUwMjA1MTIwMDAwWhcNMDUwMjA2MTIwMDAwWjAiMCACARIXDTA0MTExOTE1NTcw
@@ -237,6 +237,7 @@ fUNCdMGmr8FVF6IzTNYGmCuk/C4=
 		t.Fatalf("the expected CRL SHA wasn't found")
 	}
 }
+
 func TestCreateSSLCert(t *testing.T) {
 	cert, _, err := generateRSACerts("echoheaders")
 	if err != nil {
@@ -339,12 +340,12 @@ func newPrivateKey() (*rsa.PrivateKey, error) {
 }
 
 // newSignedCert creates a signed certificate using the given CA certificate and key
-func newSignedCert(cfg certutil.Config, key crypto.Signer, caCert *x509.Certificate, caKey crypto.Signer) (*x509.Certificate, error) {
+func newSignedCert(cfg *certutil.Config, key crypto.Signer, caCert *x509.Certificate, caKey crypto.Signer) (*x509.Certificate, error) {
 	serial, err := rand.Int(rand.Reader, new(big.Int).SetInt64(math.MaxInt64))
 	if err != nil {
 		return nil, err
 	}
-	if len(cfg.CommonName) == 0 {
+	if cfg.CommonName == "" {
 		return nil, errors.New("must specify a CommonName")
 	}
 	if len(cfg.Usages) == 0 {
@@ -389,7 +390,7 @@ func encodeCertPEM(cert *x509.Certificate) []byte {
 	return pem.EncodeToMemory(&block)
 }
 
-func newFakeCertificate(t *testing.T) ([]byte, string, string) {
+func newFakeCertificate(t *testing.T) (sslCert []byte, certFileName, keyFileName string) {
 	cert, key := getFakeHostSSLCert("localhost")
 
 	certFile, err := os.CreateTemp("", "crt-")
@@ -423,10 +424,9 @@ func dialTestServer(port string, rootCertificates ...[]byte) error {
 			return fmt.Errorf("failed to add root certificate")
 		}
 	}
-	resp, err := tls.Dial("tcp", "localhost:"+port, &tls.Config{
+	resp, err := tls.Dial("tcp", "localhost:"+port, &tls.Config{ //nolint:gosec // Ignore the gosec error in testing
 		RootCAs: roots,
 	})
-
 	if err != nil {
 		return err
 	}
@@ -473,15 +473,14 @@ func TestTLSKeyReloader(t *testing.T) {
 			}
 		})
 
-		//TODO: fix
-		/*
-			// simulate watch.NewFileWatcher to call the load function
-			watcher.load()
-			t.Run("when the certificate is reloaded", func(t *testing.T) {
-				if err := dialTestServer(port, cert); err != nil {
-					t.Errorf("TLS dial should succeed, got error: %v", err)
-				}
-			})
+		/*TODO: fix
+		// simulate watch.NewFileWatcher to call the load function
+		watcher.load()
+		t.Run("when the certificate is reloaded", func(t *testing.T) {
+			if err := dialTestServer(port, cert); err != nil {
+				t.Errorf("TLS dial should succeed, got error: %v", err)
+			}
+		})
 		*/
 	})
 }
diff --git a/internal/nginx/main.go b/internal/nginx/main.go
index ae319fe1f..fc586e9e8 100644
--- a/internal/nginx/main.go
+++ b/internal/nginx/main.go
@@ -62,7 +62,7 @@ var StatusPath = "/nginx_status"
 var StreamPort = 10247
 
 // NewGetStatusRequest creates a new GET request to the internal NGINX status server
-func NewGetStatusRequest(path string) (int, []byte, error) {
+func NewGetStatusRequest(path string) (statusCode int, data []byte, err error) {
 	url := fmt.Sprintf("http://127.0.0.1:%v%v", StatusPort, path)
 
 	client := http.Client{}
@@ -72,7 +72,7 @@ func NewGetStatusRequest(path string) (int, []byte, error) {
 	}
 	defer res.Body.Close()
 
-	data, err := io.ReadAll(res.Body)
+	data, err = io.ReadAll(res.Body)
 	if err != nil {
 		return 0, nil, err
 	}
@@ -81,7 +81,7 @@ func NewGetStatusRequest(path string) (int, []byte, error) {
 }
 
 // NewPostStatusRequest creates a new POST request to the internal NGINX status server
-func NewPostStatusRequest(path, contentType string, data interface{}) (int, []byte, error) {
+func NewPostStatusRequest(path, contentType string, data interface{}) (statusCode int, body []byte, err error) {
 	url := fmt.Sprintf("http://127.0.0.1:%v%v", StatusPort, path)
 
 	buf, err := json.Marshal(data)
@@ -96,7 +96,7 @@ func NewPostStatusRequest(path, contentType string, data interface{}) (int, []by
 	}
 	defer res.Body.Close()
 
-	body, err := io.ReadAll(res.Body)
+	body, err = io.ReadAll(res.Body)
 	if err != nil {
 		return 0, nil, err
 	}
@@ -105,7 +105,7 @@ func NewPostStatusRequest(path, contentType string, data interface{}) (int, []by
 }
 
 // GetServerBlock takes an nginx.conf file and a host and tries to find the server block for that host
-func GetServerBlock(conf string, host string) (string, error) {
+func GetServerBlock(conf, host string) (string, error) {
 	startMsg := fmt.Sprintf("## start server %v\n", host)
 	endMsg := fmt.Sprintf("## end server %v", host)
 
@@ -113,7 +113,7 @@ func GetServerBlock(conf string, host string) (string, error) {
 	if blockStart < 0 {
 		return "", fmt.Errorf("host %v was not found in the controller's nginx.conf", host)
 	}
-	blockStart = blockStart + len(startMsg)
+	blockStart += len(startMsg)
 
 	blockEnd := strings.Index(conf, endMsg)
 	if blockEnd < 0 {
@@ -163,7 +163,10 @@ func Version() string {
 
 // IsRunning returns true if a process with the name 'nginx' is found
 func IsRunning() bool {
-	processes, _ := ps.Processes()
+	processes, err := ps.Processes()
+	if err != nil {
+		klog.ErrorS(err, "unexpected error obtaining process list")
+	}
 	for _, p := range processes {
 		if p.Executable() == "nginx" {
 			return true
diff --git a/internal/nginx/maxmind.go b/internal/nginx/maxmind.go
index 5aee414cd..bd6bc1048 100644
--- a/internal/nginx/maxmind.go
+++ b/internal/nginx/maxmind.go
@@ -101,7 +101,7 @@ func DownloadGeoLite2DB(attempts int, period time.Duration) error {
 	var lastErr error
 	retries := 0
 
-	_ = wait.ExponentialBackoff(defaultRetry, func() (bool, error) {
+	lastErr = wait.ExponentialBackoff(defaultRetry, func() (bool, error) {
 		var dlError error
 		for _, dbName := range strings.Split(MaxmindEditionIDs, ",") {
 			dlError = downloadDatabase(dbName)
@@ -139,8 +139,8 @@ func createURL(mirror, licenseKey, dbName string) string {
 }
 
 func downloadDatabase(dbName string) error {
-	url := createURL(MaxmindMirror, MaxmindLicenseKey, dbName)
-	req, err := http.NewRequest(http.MethodGet, url, nil)
+	newURL := createURL(MaxmindMirror, MaxmindLicenseKey, dbName)
+	req, err := http.NewRequest(http.MethodGet, newURL, http.NoBody)
 	if err != nil {
 		return err
 	}
@@ -175,8 +175,7 @@ func downloadDatabase(dbName string) error {
 			return err
 		}
 
-		switch header.Typeflag {
-		case tar.TypeReg:
+		if header.Typeflag == tar.TypeReg {
 			if !strings.HasSuffix(header.Name, mmdbFile) {
 				continue
 			}
@@ -186,6 +185,7 @@ func downloadDatabase(dbName string) error {
 				return err
 			}
 
+			//nolint:gocritic // TODO: will fix it on a followup PR
 			defer outFile.Close()
 
 			if _, err := io.CopyN(outFile, tarReader, header.Size); err != nil {
diff --git a/internal/task/queue.go b/internal/task/queue.go
index ff6b20f62..f92f2a501 100644
--- a/internal/task/queue.go
+++ b/internal/task/queue.go
@@ -28,9 +28,7 @@ import (
 	"k8s.io/client-go/util/workqueue"
 )
 
-var (
-	keyFunc = cache.DeletionHandlingMetaNamespaceKeyFunc
-)
+var keyFunc = cache.DeletionHandlingMetaNamespaceKeyFunc
 
 // Queue manages a time work queue through an independent worker that invokes the
 // given sync function for every work item inserted.
@@ -117,7 +115,10 @@ func (t *Queue) worker() {
 		}
 		ts := time.Now().UnixNano()
 
-		item := key.(Element)
+		item, ok := key.(Element)
+		if !ok {
+			klog.ErrorS(nil, "invalid item type", "key", key)
+		}
 		if item.Timestamp != 0 && t.lastSync > item.Timestamp {
 			klog.V(3).InfoS("skipping sync", "key", item.Key, "last", t.lastSync, "now", item.Timestamp)
 			t.queue.Forget(key)
@@ -168,7 +169,7 @@ func NewTaskQueue(syncFn func(interface{}) error) *Queue {
 	return NewCustomTaskQueue(syncFn, nil)
 }
 
-// NewCustomTaskQueue ...
+// NewCustomTaskQueue creates a new custom task queue with the given sync function.
 func NewCustomTaskQueue(syncFn func(interface{}) error, fn func(interface{}) (interface{}, error)) *Queue {
 	q := &Queue{
 		queue:      workqueue.NewRateLimitingQueue(workqueue.DefaultControllerRateLimiter()),
diff --git a/pkg/apis/ingress/sslcert.go b/pkg/apis/ingress/sslcert.go
index 7dee3880d..b340b2d9a 100644
--- a/pkg/apis/ingress/sslcert.go
+++ b/pkg/apis/ingress/sslcert.go
@@ -66,12 +66,12 @@ type SSLCert struct {
 }
 
 // GetObjectKind implements the ObjectKind interface as a noop
-func (s SSLCert) GetObjectKind() schema.ObjectKind {
+func (s *SSLCert) GetObjectKind() schema.ObjectKind {
 	return schema.EmptyObjectKind
 }
 
 // Identifier returns a the couple issuer / serial number if they both exist, an empty string otherwise
-func (s SSLCert) Identifier() string {
+func (s *SSLCert) Identifier() string {
 	if s.Certificate != nil {
 		if s.Certificate.SerialNumber != nil {
 			return fmt.Sprintf("%s-%s", s.Certificate.Issuer.SerialNumber, s.Certificate.SerialNumber.String())
@@ -81,7 +81,7 @@ func (s SSLCert) Identifier() string {
 }
 
 // HashInclude defines if a field should be used or not to calculate the hash
-func (s SSLCert) HashInclude(field string, v interface{}) (bool, error) {
+func (s *SSLCert) HashInclude(field string, _ interface{}) (bool, error) {
 	switch field {
 	case "PemSHA", "CASHA", "ExpireTime":
 		return true, nil
diff --git a/pkg/apis/ingress/types.go b/pkg/apis/ingress/types.go
index 284e9b427..0742e9f3b 100644
--- a/pkg/apis/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -73,7 +73,7 @@ type Configuration struct {
 
 	DefaultSSLCertificate *SSLCert `json:"-"`
 
-	StreamSnippets []string
+	StreamSnippets []string `json:"StreamSnippets"`
 }
 
 // Backend describes one or more remote server/s (endpoints) associated with a service
@@ -129,7 +129,7 @@ type TrafficShapingPolicy struct {
 }
 
 // HashInclude defines if a field should be used or not to calculate the hash
-func (s Backend) HashInclude(field string, v interface{}) (bool, error) {
+func (b *Backend) HashInclude(field string, _ interface{}) (bool, error) {
 	switch field {
 	case "Endpoints":
 		return false, nil
@@ -410,5 +410,4 @@ type Ingress struct {
 }
 
 // GeneralConfig holds the definition of lua general configuration data
-type GeneralConfig struct {
-}
+type GeneralConfig struct{}
diff --git a/pkg/apis/ingress/types_equals.go b/pkg/apis/ingress/types_equals.go
index c87f5ba3e..45f0eedba 100644
--- a/pkg/apis/ingress/types_equals.go
+++ b/pkg/apis/ingress/types_equals.go
@@ -80,58 +80,58 @@ func (c1 *Configuration) Equal(c2 *Configuration) bool {
 }
 
 // Equal tests for equality between two Backend types
-func (b1 *Backend) Equal(b2 *Backend) bool {
-	if b1 == b2 {
+func (b *Backend) Equal(newB *Backend) bool {
+	if b == newB {
 		return true
 	}
-	if b1 == nil || b2 == nil {
+	if b == nil || newB == nil {
 		return false
 	}
-	if b1.Name != b2.Name {
+	if b.Name != newB.Name {
 		return false
 	}
-	if b1.NoServer != b2.NoServer {
+	if b.NoServer != newB.NoServer {
 		return false
 	}
 
-	if b1.Service != b2.Service {
-		if b1.Service == nil || b2.Service == nil {
+	if b.Service != newB.Service {
+		if b.Service == nil || newB.Service == nil {
 			return false
 		}
-		if b1.Service.GetNamespace() != b2.Service.GetNamespace() {
+		if b.Service.GetNamespace() != newB.Service.GetNamespace() {
 			return false
 		}
-		if b1.Service.GetName() != b2.Service.GetName() {
+		if b.Service.GetName() != newB.Service.GetName() {
 			return false
 		}
 	}
 
-	if b1.Port != b2.Port {
+	if b.Port != newB.Port {
 		return false
 	}
-	if b1.SSLPassthrough != b2.SSLPassthrough {
+	if b.SSLPassthrough != newB.SSLPassthrough {
 		return false
 	}
-	if !(&b1.SessionAffinity).Equal(&b2.SessionAffinity) {
+	if !(&b.SessionAffinity).Equal(&newB.SessionAffinity) {
 		return false
 	}
-	if b1.UpstreamHashBy != b2.UpstreamHashBy {
+	if b.UpstreamHashBy != newB.UpstreamHashBy {
 		return false
 	}
-	if b1.LoadBalancing != b2.LoadBalancing {
+	if b.LoadBalancing != newB.LoadBalancing {
 		return false
 	}
 
-	match := compareEndpoints(b1.Endpoints, b2.Endpoints)
+	match := compareEndpoints(b.Endpoints, newB.Endpoints)
 	if !match {
 		return false
 	}
 
-	if !b1.TrafficShapingPolicy.Equal(b2.TrafficShapingPolicy) {
+	if !b.TrafficShapingPolicy.Equal(&newB.TrafficShapingPolicy) {
 		return false
 	}
 
-	return sets.StringElementsMatch(b1.AlternativeBackends, b2.AlternativeBackends)
+	return sets.StringElementsMatch(b.AlternativeBackends, newB.AlternativeBackends)
 }
 
 // Equal tests for equality between two SessionAffinityConfig types
@@ -243,7 +243,7 @@ func (e1 *Endpoint) Equal(e2 *Endpoint) bool {
 }
 
 // Equal checks for equality between two TrafficShapingPolicies
-func (tsp1 TrafficShapingPolicy) Equal(tsp2 TrafficShapingPolicy) bool {
+func (tsp1 *TrafficShapingPolicy) Equal(tsp2 *TrafficShapingPolicy) bool {
 	if tsp1.Weight != tsp2.Weight {
 		return false
 	}
@@ -335,6 +335,8 @@ func (s1 *Server) Equal(s2 *Server) bool {
 }
 
 // Equal tests for equality between two Location types
+//
+//nolint:gocyclo // Ignore function complexity error
 func (l1 *Location) Equal(l2 *Location) bool {
 	if l1 == l2 {
 		return true
@@ -550,39 +552,39 @@ func (l4b1 *L4Backend) Equal(l4b2 *L4Backend) bool {
 }
 
 // Equal tests for equality between two SSLCert types
-func (s1 *SSLCert) Equal(s2 *SSLCert) bool {
-	if s1 == s2 {
+func (s *SSLCert) Equal(newS *SSLCert) bool {
+	if s == newS {
 		return true
 	}
-	if s1 == nil || s2 == nil {
+	if s == nil || newS == nil {
 		return false
 	}
-	if s1.CASHA != s2.CASHA {
+	if s.CASHA != newS.CASHA {
 		return false
 	}
-	if s1.CRLSHA != s2.CRLSHA {
+	if s.CRLSHA != newS.CRLSHA {
 		return false
 	}
-	if s1.PemSHA != s2.PemSHA {
+	if s.PemSHA != newS.PemSHA {
 		return false
 	}
-	if s1.CAFileName != s2.CAFileName {
+	if s.CAFileName != newS.CAFileName {
 		return false
 	}
-	if s1.CRLFileName != s2.CRLFileName {
+	if s.CRLFileName != newS.CRLFileName {
 		return false
 	}
-	if !s1.ExpireTime.Equal(s2.ExpireTime) {
+	if !s.ExpireTime.Equal(newS.ExpireTime) {
 		return false
 	}
-	if s1.PemCertKey != s2.PemCertKey {
+	if s.PemCertKey != newS.PemCertKey {
 		return false
 	}
-	if s1.UID != s2.UID {
+	if s.UID != newS.UID {
 		return false
 	}
 
-	return sets.StringElementsMatch(s1.CN, s2.CN)
+	return sets.StringElementsMatch(s.CN, newS.CN)
 }
 
 var compareEndpointsFunc = func(e1, e2 interface{}) bool {
diff --git a/pkg/apis/ingress/types_equals_test.go b/pkg/apis/ingress/types_equals_test.go
index 78d29d46c..53643f912 100644
--- a/pkg/apis/ingress/types_equals_test.go
+++ b/pkg/apis/ingress/types_equals_test.go
@@ -25,19 +25,29 @@ import (
 )
 
 func TestEqualConfiguration(t *testing.T) {
-	ap, _ := filepath.Abs("../../../test/manifests/configuration-a.json")
+	ap, err := filepath.Abs("../../../test/manifests/configuration-a.json")
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	a, err := readJSON(ap)
 	if err != nil {
 		t.Errorf("unexpected error reading JSON file: %v", err)
 	}
 
-	bp, _ := filepath.Abs("../../../test/manifests/configuration-b.json")
+	bp, err := filepath.Abs("../../../test/manifests/configuration-b.json")
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
+
 	b, err := readJSON(bp)
 	if err != nil {
 		t.Errorf("unexpected error reading JSON file: %v", err)
 	}
 
-	cp, _ := filepath.Abs("../../../test/manifests/configuration-c.json")
+	cp, err := filepath.Abs("../../../test/manifests/configuration-c.json")
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
 	c, err := readJSON(cp)
 	if err != nil {
 		t.Errorf("unexpected error reading JSON file: %v", err)
@@ -84,15 +94,18 @@ func TestL4ServiceElementsMatch(t *testing.T) {
 		{[]L4Service{{Port: 80}}, []L4Service{{Port: 80}}, true},
 		{
 			[]L4Service{
-				{Port: 80, Endpoints: []Endpoint{{Address: "1.1.1.1"}}}},
+				{Port: 80, Endpoints: []Endpoint{{Address: "1.1.1.1"}}},
+			},
 			[]L4Service{{Port: 80}},
 			false,
 		},
 		{
 			[]L4Service{
-				{Port: 80, Endpoints: []Endpoint{{Address: "1.1.1.1"}, {Address: "1.1.1.2"}}}},
+				{Port: 80, Endpoints: []Endpoint{{Address: "1.1.1.1"}, {Address: "1.1.1.2"}}},
+			},
 			[]L4Service{
-				{Port: 80, Endpoints: []Endpoint{{Address: "1.1.1.2"}, {Address: "1.1.1.1"}}}},
+				{Port: 80, Endpoints: []Endpoint{{Address: "1.1.1.2"}, {Address: "1.1.1.1"}}},
+			},
 			true,
 		},
 		{
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index 55d24f690..d3bc4ee86 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -298,12 +298,12 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		nginx.HealthCheckTimeout = time.Duration(*defHealthCheckTimeout) * time.Second
 	}
 
-	if len(*watchNamespace) != 0 && len(*watchNamespaceSelector) != 0 {
+	if *watchNamespace != "" && *watchNamespaceSelector != "" {
 		return false, nil, fmt.Errorf("flags --watch-namespace and --watch-namespace-selector are mutually exclusive")
 	}
 
 	var namespaceSelector labels.Selector
-	if len(*watchNamespaceSelector) != 0 {
+	if *watchNamespaceSelector != "" {
 		var err error
 		namespaceSelector, err = labels.Parse(*watchNamespaceSelector)
 		if err != nil {
@@ -311,7 +311,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		}
 	}
 
-	var histogramBuckets = &collectors.HistogramBuckets{
+	histogramBuckets := &collectors.HistogramBuckets{
 		TimeBuckets:   *timeBuckets,
 		LengthBuckets: *lengthBuckets,
 		SizeBuckets:   *sizeBuckets,
@@ -360,7 +360,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 			HTTPS:    *httpsPort,
 			SSLProxy: *sslProxyPort,
 		},
-		IngressClassConfiguration: &ingressclass.IngressClassConfiguration{
+		IngressClassConfiguration: &ingressclass.Configuration{
 			Controller:         *ingressClassController,
 			AnnotationValue:    *ingressClassAnnotation,
 			WatchWithoutClass:  *watchWithoutClass,
@@ -380,7 +380,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 
 	var err error
 	if nginx.MaxmindEditionIDs != "" {
-		if err = nginx.ValidateGeoLite2DBEditions(); err != nil {
+		if err := nginx.ValidateGeoLite2DBEditions(); err != nil {
 			return false, nil, err
 		}
 		if nginx.MaxmindLicenseKey != "" || nginx.MaxmindMirror != "" {
diff --git a/pkg/flags/flags_test.go b/pkg/flags/flags_test.go
index 2a33d73dd..bffe2b16d 100644
--- a/pkg/flags/flags_test.go
+++ b/pkg/flags/flags_test.go
@@ -33,7 +33,8 @@ func TestDefaults(t *testing.T) {
 
 	oldArgs := os.Args
 	defer func() { os.Args = oldArgs }()
-	os.Args = []string{"cmd",
+	os.Args = []string{
+		"cmd",
 		"--default-backend-service", "namespace/test",
 		"--http-port", "0",
 		"--https-port", "0",
@@ -53,8 +54,8 @@ func TestDefaults(t *testing.T) {
 	}
 }
 
-func TestSetupSSLProxy(t *testing.T) {
-	// TODO
+func TestSetupSSLProxy(_ *testing.T) {
+	// TODO TestSetupSSLProxy
 }
 
 func TestFlagConflict(t *testing.T) {
diff --git a/pkg/metrics/handler.go b/pkg/metrics/handler.go
index c37c1760c..73c7d328f 100644
--- a/pkg/metrics/handler.go
+++ b/pkg/metrics/handler.go
@@ -29,7 +29,6 @@ import (
 )
 
 func RegisterHealthz(healthPath string, mux *http.ServeMux, checks ...healthz.HealthChecker) {
-
 	healthCheck := []healthz.HealthChecker{healthz.PingHealthz}
 	if len(checks) > 0 {
 		healthCheck = append(healthCheck, checks...)
@@ -67,7 +66,7 @@ func RegisterProfiler(host string, port int) {
 
 	server := &http.Server{
 		Addr: fmt.Sprintf("%s:%d", host, port),
-		//G112 (CWE-400): Potential Slowloris Attack
+		// G112 (CWE-400): Potential Slowloris Attack
 		ReadHeaderTimeout: 10 * time.Second,
 		Handler:           mux,
 	}
diff --git a/pkg/tcpproxy/tcp.go b/pkg/tcpproxy/tcp.go
index 25cc39ee4..eda4a2746 100644
--- a/pkg/tcpproxy/tcp.go
+++ b/pkg/tcpproxy/tcp.go
@@ -69,7 +69,7 @@ func (p *TCPProxy) Handle(conn net.Conn) {
 	}
 
 	proxy := p.Default
-	hostname, err := parser.GetHostname(data[:])
+	hostname, err := parser.GetHostname(data)
 	if err == nil {
 		klog.V(4).InfoS("TLS Client Hello", "host", hostname)
 		proxy = p.Get(hostname)
@@ -91,8 +91,14 @@ func (p *TCPProxy) Handle(conn net.Conn) {
 
 	if proxy.ProxyProtocol {
 		// write out the Proxy Protocol header
-		localAddr := conn.LocalAddr().(*net.TCPAddr)
-		remoteAddr := conn.RemoteAddr().(*net.TCPAddr)
+		localAddr, ok := conn.LocalAddr().(*net.TCPAddr)
+		if !ok {
+			klog.Errorf("unexpected type: %T", conn.LocalAddr())
+		}
+		remoteAddr, ok := conn.RemoteAddr().(*net.TCPAddr)
+		if !ok {
+			klog.Errorf("unexpected type: %T", conn.RemoteAddr())
+		}
 		protocol := "UNKNOWN"
 		if remoteAddr.IP.To4() != nil {
 			protocol = "TCP4"
diff --git a/pkg/util/file/file_watcher.go b/pkg/util/file/file_watcher.go
index daf955e52..3899e41f8 100644
--- a/pkg/util/file/file_watcher.go
+++ b/pkg/util/file/file_watcher.go
@@ -26,8 +26,8 @@ import (
 	"github.com/fsnotify/fsnotify"
 )
 
-// FileWatcher is an interface we use to watch changes in files
-type FileWatcher interface {
+// Watcher is an interface we use to watch changes in files
+type Watcher interface {
 	Close() error
 }
 
@@ -40,7 +40,7 @@ type OSFileWatcher struct {
 }
 
 // NewFileWatcher creates a new FileWatcher
-func NewFileWatcher(file string, onEvent func()) (FileWatcher, error) {
+func NewFileWatcher(file string, onEvent func()) (Watcher, error) {
 	fw := OSFileWatcher{
 		file:    file,
 		onEvent: onEvent,
diff --git a/pkg/util/file/filesystem.go b/pkg/util/file/filesystem.go
index 7c0db9f12..ccb93ed06 100644
--- a/pkg/util/file/filesystem.go
+++ b/pkg/util/file/filesystem.go
@@ -17,4 +17,4 @@ limitations under the License.
 package file
 
 // ReadWriteByUser defines linux permission to read and write files for the owner user
-const ReadWriteByUser = 0700
+const ReadWriteByUser = 0o700
diff --git a/pkg/util/file/structure.go b/pkg/util/file/structure.go
index d109e8c03..7d4f26da9 100644
--- a/pkg/util/file/structure.go
+++ b/pkg/util/file/structure.go
@@ -33,12 +33,10 @@ const (
 	DefaultSSLDirectory = "/etc/ingress-controller/ssl"
 )
 
-var (
-	directories = []string{
-		DefaultSSLDirectory,
-		AuthDirectory,
-	}
-)
+var directories = []string{
+	DefaultSSLDirectory,
+	AuthDirectory,
+}
 
 // CreateRequiredDirectories verifies if the required directories to
 // start the ingress controller exist and creates the missing ones.
diff --git a/pkg/util/ingress/ingress.go b/pkg/util/ingress/ingress.go
index e69ca7b29..881d5a001 100644
--- a/pkg/util/ingress/ingress.go
+++ b/pkg/util/ingress/ingress.go
@@ -114,7 +114,7 @@ func GetRemovedIngresses(rucfg, newcfg *ingress.Configuration) []string {
 
 // IsDynamicConfigurationEnough returns whether a Configuration can be
 // dynamically applied, without reloading the backend.
-func IsDynamicConfigurationEnough(newcfg *ingress.Configuration, oldcfg *ingress.Configuration) bool {
+func IsDynamicConfigurationEnough(newcfg, oldcfg *ingress.Configuration) bool {
 	copyOfRunningConfig := *oldcfg
 	copyOfPcfg := *newcfg
 
@@ -133,21 +133,21 @@ func IsDynamicConfigurationEnough(newcfg *ingress.Configuration, oldcfg *ingress
 // clearL4serviceEndpoints is a helper function to clear endpoints from the ingress configuration since they should be ignored when
 // checking if the new configuration changes can be applied dynamically.
 func clearL4serviceEndpoints(config *ingress.Configuration) {
-	var clearedTCPL4Services []ingress.L4Service
-	var clearedUDPL4Services []ingress.L4Service
-	for _, service := range config.TCPEndpoints {
+	clearedTCPL4Services := make([]ingress.L4Service, 0, len(config.TCPEndpoints))
+	clearedUDPL4Services := make([]ingress.L4Service, 0, len(config.UDPEndpoints))
+	for i := range config.TCPEndpoints {
 		copyofService := ingress.L4Service{
-			Port:      service.Port,
-			Backend:   service.Backend,
+			Port:      config.TCPEndpoints[i].Port,
+			Backend:   config.TCPEndpoints[i].Backend,
 			Endpoints: []ingress.Endpoint{},
 			Service:   nil,
 		}
 		clearedTCPL4Services = append(clearedTCPL4Services, copyofService)
 	}
-	for _, service := range config.UDPEndpoints {
+	for i := range config.UDPEndpoints {
 		copyofService := ingress.L4Service{
-			Port:      service.Port,
-			Backend:   service.Backend,
+			Port:      config.UDPEndpoints[i].Port,
+			Backend:   config.UDPEndpoints[i].Backend,
 			Endpoints: []ingress.Endpoint{},
 			Service:   nil,
 		}
@@ -160,7 +160,7 @@ func clearL4serviceEndpoints(config *ingress.Configuration) {
 // clearCertificates is a helper function to clear Certificates from the ingress configuration since they should be ignored when
 // checking if the new configuration changes can be applied dynamically if dynamic certificates is on
 func clearCertificates(config *ingress.Configuration) {
-	var clearedServers []*ingress.Server
+	clearedServers := make([]*ingress.Server, 0, len(config.Servers))
 	for _, server := range config.Servers {
 		copyOfServer := *server
 		copyOfServer.SSLCert = nil
@@ -169,16 +169,16 @@ func clearCertificates(config *ingress.Configuration) {
 	config.Servers = clearedServers
 }
 
-type redirect struct {
+type Redirect struct {
 	From    string
 	To      string
 	SSLCert *ingress.SSLCert
 }
 
 // BuildRedirects build the redirects of servers based on configurations and certificates
-func BuildRedirects(servers []*ingress.Server) []*redirect {
+func BuildRedirects(servers []*ingress.Server) []*Redirect {
 	names := sets.Set[string]{}
-	redirectServers := make([]*redirect, 0)
+	redirectServers := make([]*Redirect, 0)
 
 	for _, srv := range servers {
 		if !srv.RedirectFromToWWW {
@@ -212,7 +212,7 @@ func BuildRedirects(servers []*ingress.Server) []*redirect {
 			continue
 		}
 
-		r := &redirect{
+		r := &Redirect{
 			From: from,
 			To:   to,
 		}
diff --git a/pkg/util/process/controller.go b/pkg/util/process/controller.go
index ae9bc9356..a73e81934 100644
--- a/pkg/util/process/controller.go
+++ b/pkg/util/process/controller.go
@@ -16,9 +16,9 @@ limitations under the License.
 
 package process
 
-// ProcessController defines a common interface for a process to be controlled,
+// Controller defines a common interface for a process to be controlled,
 // like the configurer, the webhook or the proper ingress controller
-type ProcessController interface {
+type Controller interface {
 	Start()
 	Stop() error
 }
diff --git a/pkg/util/process/sigterm.go b/pkg/util/process/sigterm.go
index 77c0ad58c..1c0d729c1 100644
--- a/pkg/util/process/sigterm.go
+++ b/pkg/util/process/sigterm.go
@@ -29,7 +29,7 @@ type exiter func(code int)
 
 // HandleSigterm receives a ProcessController interface and deals with
 // the graceful shutdown
-func HandleSigterm(ngx ProcessController, delay int, exit exiter) {
+func HandleSigterm(ngx Controller, delay int, exit exiter) {
 	signalChan := make(chan os.Signal, 1)
 	signal.Notify(signalChan, syscall.SIGTERM)
 	<-signalChan
diff --git a/pkg/util/process/sigterm_test.go b/pkg/util/process/sigterm_test.go
index b7413bed4..08c8275c3 100644
--- a/pkg/util/process/sigterm_test.go
+++ b/pkg/util/process/sigterm_test.go
@@ -43,7 +43,7 @@ func (f *FakeProcess) exiterFunc(code int) {
 }
 
 func sendDelayedSignal(delay time.Duration) error {
-	time.Sleep(delay * time.Second)
+	time.Sleep(delay)
 	return syscall.Kill(syscall.Getpid(), syscall.SIGTERM)
 }
 
@@ -67,7 +67,7 @@ func TestHandleSigterm(t *testing.T) {
 		process := &FakeProcess{shouldError: tt.shouldError}
 		t.Run(tt.name, func(t *testing.T) {
 			go func() {
-				err := sendDelayedSignal(2) // Send a signal after 2 seconds
+				err := sendDelayedSignal(2 * time.Second) // Send a signal after 2 seconds
 				if err != nil {
 					t.Errorf("error sending delayed signal: %v", err)
 				}
diff --git a/pkg/util/runtime/cpu_notlinux.go b/pkg/util/runtime/cpu_notlinux.go
index 2a1b48252..97c72cd5a 100644
--- a/pkg/util/runtime/cpu_notlinux.go
+++ b/pkg/util/runtime/cpu_notlinux.go
@@ -23,7 +23,7 @@ import (
 	"runtime"
 )
 
-// NumCPU ...
+// NumCPU returns the number of logical CPUs usable by the current process.
 func NumCPU() int {
 	return runtime.NumCPU()
 }
diff --git a/pkg/util/sets/match_test.go b/pkg/util/sets/match_test.go
index e2366d2c7..a65c5a05f 100644
--- a/pkg/util/sets/match_test.go
+++ b/pkg/util/sets/match_test.go
@@ -20,23 +20,20 @@ import (
 	"testing"
 )
 
-var (
-	testCasesElementMatch = []struct {
-		listA    []string
-		listB    []string
-		expected bool
-	}{
-		{nil, nil, true},
-		{[]string{"1"}, nil, false},
-		{[]string{"1"}, []string{"1"}, true},
-		{[]string{"1", "2", "1"}, []string{"1", "1", "2"}, true},
-		{[]string{"1", "3", "1"}, []string{"1", "1", "2"}, false},
-		{[]string{"1", "1"}, []string{"1", "2"}, false},
-	}
-)
+var testCasesElementMatch = []struct {
+	listA    []string
+	listB    []string
+	expected bool
+}{
+	{nil, nil, true},
+	{[]string{"1"}, nil, false},
+	{[]string{"1"}, []string{"1"}, true},
+	{[]string{"1", "2", "1"}, []string{"1", "1", "2"}, true},
+	{[]string{"1", "3", "1"}, []string{"1", "1", "2"}, false},
+	{[]string{"1", "1"}, []string{"1", "2"}, false},
+}
 
 func TestElementsMatch(t *testing.T) {
-
 	for _, testCase := range testCasesElementMatch {
 		result := StringElementsMatch(testCase.listA, testCase.listB)
 		if result != testCase.expected {
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 3d7235bcc..ccd7b4411 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -140,7 +140,7 @@ http {
 
     {{/* Enable the real_ip module only if we use either X-Forwarded headers or Proxy Protocol. */}}
     {{/* we use the value of the real IP for the geo_ip module */}}
-    {{ if or (or $cfg.UseForwardedHeaders $cfg.UseProxyProtocol) $cfg.EnableRealIp }}
+    {{ if or (or $cfg.UseForwardedHeaders $cfg.UseProxyProtocol) $cfg.EnableRealIP }}
     {{ if $cfg.UseProxyProtocol }}
     real_ip_header      proxy_protocol;
     {{ else }}
@@ -406,7 +406,7 @@ http {
     {{ if $cfg.EnableSyslog }}
     access_log syslog:server={{ $cfg.SyslogHost }}:{{ $cfg.SyslogPort }} upstreaminfo if=$loggable;
     {{ else }}
-    access_log {{ or $cfg.HttpAccessLogPath $cfg.AccessLogPath }} upstreaminfo {{ $cfg.AccessLogParams }} if=$loggable;
+    access_log {{ or $cfg.HTTPAccessLogPath $cfg.AccessLogPath }} upstreaminfo {{ $cfg.AccessLogParams }} if=$loggable;
     {{ end }}
     {{ end }}
 
@@ -822,7 +822,7 @@ stream {
 
 
     error_log  {{ $cfg.ErrorLogPath }} {{ $cfg.ErrorLogLevel }};
-    {{ if $cfg.EnableRealIp }}
+    {{ if $cfg.EnableRealIP }}
     {{ range $trusted_ip := $cfg.ProxyRealIPCIDR }}
     set_real_ip_from    {{ $trusted_ip }};
     {{ end }}
diff --git a/test/e2e/admission/admission.go b/test/e2e/admission/admission.go
index 0ee8248b0..726e16f0b 100644
--- a/test/e2e/admission/admission.go
+++ b/test/e2e/admission/admission.go
@@ -34,6 +34,8 @@ import (
 	networking "k8s.io/api/networking/v1"
 )
 
+const admissionTestHost = "admission-test"
+
 var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller", func() {
 	f := framework.NewDefaultFramework("admission")
 
@@ -43,7 +45,7 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 	})
 
 	ginkgo.It("reject ingress with global-rate-limit annotations when memcached is not configured", func() {
-		host := "admission-test"
+		host := admissionTestHost
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/global-rate-limit":        "100",
@@ -70,7 +72,7 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 	})
 
 	ginkgo.It("should not allow overlaps of host and paths without canary annotations", func() {
-		host := "admission-test"
+		host := admissionTestHost
 
 		firstIngress := framework.NewSingleIngress("first-ingress", "/", host, f.Namespace, framework.EchoService, 80, nil)
 		_, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), firstIngress, metav1.CreateOptions{})
@@ -87,7 +89,7 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 	})
 
 	ginkgo.It("should allow overlaps of host and paths with canary annotation", func() {
-		host := "admission-test"
+		host := admissionTestHost
 
 		firstIngress := framework.NewSingleIngress("first-ingress", "/", host, f.Namespace, framework.EchoService, 80, nil)
 		_, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), firstIngress, metav1.CreateOptions{})
@@ -125,7 +127,7 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 	})
 
 	ginkgo.It("should return an error if there is an error validating the ingress definition", func() {
-		host := "admission-test"
+		host := admissionTestHost
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/configuration-snippet": "something invalid",
@@ -136,7 +138,7 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 	})
 
 	ginkgo.It("should return an error if there is an invalid value in some annotation", func() {
-		host := "admission-test"
+		host := admissionTestHost
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/connection-proxy-header": "a;}",
@@ -150,7 +152,7 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 	})
 
 	ginkgo.It("should return an error if there is a forbidden value in some annotation", func() {
-		host := "admission-test"
+		host := admissionTestHost
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/connection-proxy-header": "set_by_lua",
@@ -195,7 +197,6 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 		validPath := framework.NewSingleIngress("second-ingress", "/bloblo", host, f.Namespace, framework.EchoService, 80, nil)
 		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), validPath, metav1.CreateOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err, "creating an ingress with valid path should not return an error")
-
 	})
 
 	ginkgo.It("should not return an error if the Ingress V1 definition is valid with Ingress Class", func() {
@@ -346,7 +347,7 @@ func createIngress(namespace, ingressDefinition string) (string, error) {
 		execOut bytes.Buffer
 		execErr bytes.Buffer
 	)
-
+	//nolint:gosec // Ignore G204 error
 	cmd := exec.Command("/bin/bash", "-c", fmt.Sprintf("%v --warnings-as-errors=false apply --namespace %s -f -", framework.KubectlPath, namespace))
 	cmd.Stdin = strings.NewReader(ingressDefinition)
 	cmd.Stdout = &execOut
diff --git a/test/e2e/annotations/affinity.go b/test/e2e/annotations/affinity.go
index 3e1e9e969..b64581ef6 100644
--- a/test/e2e/annotations/affinity.go
+++ b/test/e2e/annotations/affinity.go
@@ -32,6 +32,14 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const (
+	affinityAnnotation = "cookie"
+	cookieName         = "SERVERID"
+	enableAnnotation   = "true"
+	disableAnnotation  = "false"
+	defaultHost        = "foo.com"
+)
+
 var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	f := framework.NewDefaultFramework("affinity")
 
@@ -42,8 +50,8 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	ginkgo.It("should set sticky cookie SERVERID", func() {
 		host := "sticky.foo.com"
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
-		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "SERVERID"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = cookieName
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
@@ -64,8 +72,8 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	ginkgo.It("should change cookie name on ingress definition change", func() {
 		host := "change.foo.com"
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
-		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "SERVERID"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = cookieName
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
@@ -80,7 +88,7 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 			WithHeader("Host", host).
 			Expect().
 			Status(http.StatusOK).
-			Header("Set-Cookie").Contains("SERVERID")
+			Header("Set-Cookie").Contains(cookieName)
 
 		ing.ObjectMeta.Annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "OTHERCOOKIENAME"
 
@@ -99,8 +107,8 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	ginkgo.It("should set the path to /something on the generated cookie", func() {
 		host := "path.foo.com"
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
-		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "SERVERID"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = cookieName
 
 		ing := framework.NewSingleIngress(host, "/something", host, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
@@ -122,8 +130,8 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 		pathtype := networking.PathTypePrefix
 		host := "morethanonerule.foo.com"
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
-		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "SERVERID"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = cookieName
 
 		f.EnsureIngress(&networking.Ingress{
 			ObjectMeta: metav1.ObjectMeta{
@@ -194,7 +202,7 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	ginkgo.It("should set cookie with expires", func() {
 		host := "cookieexpires.foo.com"
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
 		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "ExpiresCookie"
 		annotations["nginx.ingress.kubernetes.io/session-cookie-expires"] = "172800"
 		annotations["nginx.ingress.kubernetes.io/session-cookie-max-age"] = "259200"
@@ -211,7 +219,8 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 		assert.Nil(ginkgo.GinkgoT(), err, "loading GMT location")
 		assert.NotNil(ginkgo.GinkgoT(), local, "expected a location but none returned")
 
-		duration, _ := time.ParseDuration("48h")
+		duration, err := time.ParseDuration("48h")
+		assert.Nil(ginkgo.GinkgoT(), err, "parsing duration")
 		expected := time.Now().In(local).Add(duration).Format("Mon, 02-Jan-06 15:04")
 
 		f.HTTPTestClient().
@@ -225,7 +234,7 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	ginkgo.It("should set cookie with domain", func() {
 		host := "cookiedomain.foo.com"
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
 		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "DomainCookie"
 		annotations["nginx.ingress.kubernetes.io/session-cookie-domain"] = "foo.bar"
 
@@ -248,7 +257,7 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	ginkgo.It("should not set cookie without domain annotation", func() {
 		host := "cookienodomain.foo.com"
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
 		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "NoDomainCookie"
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
@@ -270,9 +279,9 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	ginkgo.It("should work with use-regex annotation and session-cookie-path", func() {
 		host := "useregex.foo.com"
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
-		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "SERVERID"
-		annotations["nginx.ingress.kubernetes.io/use-regex"] = "true"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = cookieName
+		annotations["nginx.ingress.kubernetes.io/use-regex"] = enableAnnotation
 		annotations["nginx.ingress.kubernetes.io/session-cookie-path"] = "/foo/bar"
 
 		ing := framework.NewSingleIngress(host, "/foo/.*", host, f.Namespace, framework.EchoService, 80, annotations)
@@ -294,9 +303,9 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	ginkgo.It("should warn user when use-regex is true and session-cookie-path is not set", func() {
 		host := "useregexwarn.foo.com"
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
-		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "SERVERID"
-		annotations["nginx.ingress.kubernetes.io/use-regex"] = "true"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = cookieName
+		annotations["nginx.ingress.kubernetes.io/use-regex"] = enableAnnotation
 
 		ing := framework.NewSingleIngress(host, "/foo/.*", host, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
@@ -321,7 +330,7 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 		host := "separate.foo.com"
 
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
 
 		ing1 := framework.NewSingleIngress("ingress1", "/foo/bar", host, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing1)
@@ -351,8 +360,8 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 
 	ginkgo.It("should set sticky cookie without host", func() {
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
-		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "SERVERID"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = cookieName
 
 		ing := framework.NewSingleIngress("default-no-host", "/", "", f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
@@ -370,12 +379,12 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	})
 
 	ginkgo.It("should work with server-alias annotation", func() {
-		host := "foo.com"
+		host := defaultHost
 		alias1 := "a1.foo.com"
 		alias2 := "a2.foo.com"
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
-		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "SERVERID"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = cookieName
 		annotations["nginx.ingress.kubernetes.io/server-alias"] = fmt.Sprintf("%s,%s", alias1, alias2)
 
 		ing := framework.NewSingleIngress(host, "/bar", host, f.Namespace, framework.EchoService, 80, annotations)
@@ -383,7 +392,7 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 
 		f.WaitForNginxServer(host,
 			func(server string) bool {
-				//server alias sort by sort.Strings(), see: internal/ingress/annotations/alias/main.go:60
+				// server alias sort by sort.Strings(), see: internal/ingress/annotations/alias/main.go:60
 				return strings.Contains(server, fmt.Sprintf("server_name %s %s %s ;", host, alias1, alias2))
 			})
 
@@ -410,11 +419,11 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	})
 
 	ginkgo.It("should set secure in cookie with provided true annotation on http", func() {
-		host := "foo.com"
+		host := defaultHost
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
-		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "SERVERID"
-		annotations["nginx.ingress.kubernetes.io/session-cookie-secure"] = "true"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = cookieName
+		annotations["nginx.ingress.kubernetes.io/session-cookie-secure"] = enableAnnotation
 
 		ing := framework.NewSingleIngress(host, "/bar", host, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
@@ -433,11 +442,11 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	})
 
 	ginkgo.It("should not set secure in cookie with provided false annotation on http", func() {
-		host := "foo.com"
+		host := defaultHost
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
-		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "SERVERID"
-		annotations["nginx.ingress.kubernetes.io/session-cookie-secure"] = "false"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = cookieName
+		annotations["nginx.ingress.kubernetes.io/session-cookie-secure"] = disableAnnotation
 
 		ing := framework.NewSingleIngress(host, "/bar", host, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
@@ -456,11 +465,11 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 	})
 
 	ginkgo.It("should set secure in cookie with provided false annotation on https", func() {
-		host := "foo.com"
+		host := defaultHost
 		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/affinity"] = "cookie"
-		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "SERVERID"
-		annotations["nginx.ingress.kubernetes.io/session-cookie-secure"] = "false"
+		annotations["nginx.ingress.kubernetes.io/affinity"] = affinityAnnotation
+		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = cookieName
+		annotations["nginx.ingress.kubernetes.io/session-cookie-secure"] = disableAnnotation
 
 		f.EnsureIngress(framework.NewSingleIngressWithTLS(host, "/", host, []string{host}, f.Namespace, framework.EchoService, 80, annotations))
 
@@ -470,6 +479,7 @@ var _ = framework.DescribeAnnotation("affinity session-cookie-name", func() {
 					strings.Contains(server, "listen 443")
 			})
 
+		//nolint:gosec // Ignore the gosec error in testing
 		f.HTTPTestClientWithTLSConfig(&tls.Config{ServerName: host, InsecureSkipVerify: true}).
 			GET("/").
 			WithURL(f.GetURL(framework.HTTPS)).
diff --git a/test/e2e/annotations/affinitymode.go b/test/e2e/annotations/affinitymode.go
index ad210cfa5..e6253b6ff 100644
--- a/test/e2e/annotations/affinitymode.go
+++ b/test/e2e/annotations/affinitymode.go
@@ -28,6 +28,8 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const sslRedirectValue = "false"
+
 var _ = framework.DescribeAnnotation("affinitymode", func() {
 	f := framework.NewDefaultFramework("affinity")
 
@@ -45,7 +47,7 @@ var _ = framework.DescribeAnnotation("affinitymode", func() {
 		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "hello-cookie"
 		annotations["nginx.ingress.kubernetes.io/session-cookie-expires"] = "172800"
 		annotations["nginx.ingress.kubernetes.io/session-cookie-max-age"] = "172800"
-		annotations["nginx.ingress.kubernetes.io/ssl-redirect"] = "false"
+		annotations["nginx.ingress.kubernetes.io/ssl-redirect"] = sslRedirectValue
 		annotations["nginx.ingress.kubernetes.io/affinity-mode"] = "balanced"
 		annotations["nginx.ingress.kubernetes.io/session-cookie-hash"] = "sha1"
 
@@ -78,7 +80,7 @@ var _ = framework.DescribeAnnotation("affinitymode", func() {
 		annotations["nginx.ingress.kubernetes.io/session-cookie-name"] = "hello-cookie"
 		annotations["nginx.ingress.kubernetes.io/session-cookie-expires"] = "172800"
 		annotations["nginx.ingress.kubernetes.io/session-cookie-max-age"] = "172800"
-		annotations["nginx.ingress.kubernetes.io/ssl-redirect"] = "false"
+		annotations["nginx.ingress.kubernetes.io/ssl-redirect"] = sslRedirectValue
 		annotations["nginx.ingress.kubernetes.io/affinity-mode"] = "persistent"
 		annotations["nginx.ingress.kubernetes.io/session-cookie-hash"] = "sha1"
 
@@ -106,7 +108,7 @@ var _ = framework.DescribeAnnotation("affinitymode", func() {
 		// Send new requests and add new backends. Check which backend responded to the sent request
 		cookies := getCookiesFromHeader(response.Header("Set-Cookie").Raw())
 		for sendRequestNumber := 0; sendRequestNumber < 10; sendRequestNumber++ {
-			replicas = replicas + 1
+			replicas++
 			err := framework.UpdateDeployment(f.KubeClientSet, f.Namespace, deploymentName, replicas, nil)
 			assert.Nil(ginkgo.GinkgoT(), err)
 			framework.Sleep()
diff --git a/test/e2e/annotations/alias.go b/test/e2e/annotations/alias.go
index de829507d..ca4fe9c31 100644
--- a/test/e2e/annotations/alias.go
+++ b/test/e2e/annotations/alias.go
@@ -26,6 +26,8 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const fooHost = "foo"
+
 var _ = framework.DescribeAnnotation("server-alias", func() {
 	f := framework.NewDefaultFramework("alias")
 
@@ -34,7 +36,7 @@ var _ = framework.DescribeAnnotation("server-alias", func() {
 	})
 
 	ginkgo.It("should return status code 200 for host 'foo' and 404 for 'bar'", func() {
-		host := "foo"
+		host := fooHost
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil)
 		f.EnsureIngress(ing)
@@ -60,7 +62,7 @@ var _ = framework.DescribeAnnotation("server-alias", func() {
 	})
 
 	ginkgo.It("should return status code 200 for host 'foo' and 'bar'", func() {
-		host := "foo"
+		host := fooHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/server-alias": "bar",
 		}
@@ -73,7 +75,7 @@ var _ = framework.DescribeAnnotation("server-alias", func() {
 				return strings.Contains(server, fmt.Sprintf("server_name %v", host))
 			})
 
-		hosts := []string{"foo", "bar"}
+		hosts := []string{fooHost, "bar"}
 		for _, host := range hosts {
 			f.HTTPTestClient().
 				GET("/").
@@ -85,7 +87,7 @@ var _ = framework.DescribeAnnotation("server-alias", func() {
 	})
 
 	ginkgo.It("should return status code 200 for hosts defined in two ingresses, different path with one alias", func() {
-		host := "foo"
+		host := fooHost
 
 		ing := framework.NewSingleIngress("app-a", "/app-a", host, f.Namespace, framework.EchoService, 80, nil)
 		f.EnsureIngress(ing)
@@ -101,7 +103,7 @@ var _ = framework.DescribeAnnotation("server-alias", func() {
 				return strings.Contains(server, fmt.Sprintf("server_name %v bar", host))
 			})
 
-		hosts := []string{"foo", "bar"}
+		hosts := []string{fooHost, "bar"}
 		for _, host := range hosts {
 			f.HTTPTestClient().
 				GET("/app-a").
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index 56246828a..be915a722 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -36,6 +36,12 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const (
+	differentHost = "different"
+	authHost      = "auth"
+	authURL       = "http://foo.bar.baz:5000/path"
+)
+
 var _ = framework.DescribeAnnotation("auth-*", func() {
 	f := framework.NewDefaultFramework("auth", framework.WithHTTPBunEnabled())
 
@@ -44,7 +50,7 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 	})
 
 	ginkgo.It("should return status code 200 when no authentication is configured", func() {
-		host := "auth"
+		host := authHost
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil)
 		f.EnsureIngress(ing)
@@ -63,7 +69,7 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 	})
 
 	ginkgo.It("should return status code 503 when authentication is configured with an invalid secret", func() {
-		host := "auth"
+		host := authHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/auth-type":   "basic",
 			"nginx.ingress.kubernetes.io/auth-secret": "something",
@@ -87,9 +93,9 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 	})
 
 	ginkgo.It("should return status code 401 when authentication is configured but Authorization header is not configured", func() {
-		host := "auth"
+		host := authHost
 
-		s := f.EnsureSecret(buildSecret("foo", "bar", "test", f.Namespace))
+		s := f.EnsureSecret(buildSecret(fooHost, "bar", "test", f.Namespace))
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/auth-type":   "basic",
@@ -114,9 +120,9 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 	})
 
 	ginkgo.It("should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials", func() {
-		host := "auth"
+		host := authHost
 
-		s := f.EnsureSecret(buildSecret("foo", "bar", "test", f.Namespace))
+		s := f.EnsureSecret(buildSecret(fooHost, "bar", "test", f.Namespace))
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/auth-type":   "basic",
@@ -142,9 +148,9 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 	})
 
 	ginkgo.It("should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured", func() {
-		host := "auth"
+		host := authHost
 
-		s := f.EnsureSecret(buildSecret("foo", "bar", "test", f.Namespace))
+		s := f.EnsureSecret(buildSecret(fooHost, "bar", "test", f.Namespace))
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/auth-type":   "basic",
@@ -170,9 +176,9 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 	})
 
 	ginkgo.It("should return status code 200 when authentication is configured and Authorization header is sent", func() {
-		host := "auth"
+		host := authHost
 
-		s := f.EnsureSecret(buildSecret("foo", "bar", "test", f.Namespace))
+		s := f.EnsureSecret(buildSecret(fooHost, "bar", "test", f.Namespace))
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/auth-type":   "basic",
@@ -191,15 +197,15 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 		f.HTTPTestClient().
 			GET("/").
 			WithHeader("Host", host).
-			WithBasicAuth("foo", "bar").
+			WithBasicAuth(fooHost, "bar").
 			Expect().
 			Status(http.StatusOK)
 	})
 
 	ginkgo.It("should return status code 200 when authentication is configured with a map and Authorization header is sent", func() {
-		host := "auth"
+		host := authHost
 
-		s := f.EnsureSecret(buildMapSecret("foo", "bar", "test", f.Namespace))
+		s := f.EnsureSecret(buildMapSecret(fooHost, "bar", "test", f.Namespace))
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/auth-type":        "basic",
@@ -219,13 +225,13 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 		f.HTTPTestClient().
 			GET("/").
 			WithHeader("Host", host).
-			WithBasicAuth("foo", "bar").
+			WithBasicAuth(fooHost, "bar").
 			Expect().
 			Status(http.StatusOK)
 	})
 
 	ginkgo.It("should return status code 401 when authentication is configured with invalid content and Authorization header is sent", func() {
-		host := "auth"
+		host := authHost
 
 		s := f.EnsureSecret(
 			&corev1.Secret{
@@ -258,13 +264,13 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 		f.HTTPTestClient().
 			GET("/").
 			WithHeader("Host", host).
-			WithBasicAuth("foo", "bar").
+			WithBasicAuth(fooHost, "bar").
 			Expect().
 			Status(http.StatusUnauthorized)
 	})
 
 	ginkgo.It(`should set snippet "proxy_set_header My-Custom-Header 42;" when external auth is configured`, func() {
-		host := "auth"
+		host := authHost
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/auth-url": "http://foo.bar/basic-auth/user/password",
@@ -282,7 +288,7 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 	})
 
 	ginkgo.It(`should not set snippet "proxy_set_header My-Custom-Header 42;" when external auth is not configured`, func() {
-		host := "auth"
+		host := authHost
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/auth-snippet": `
@@ -299,7 +305,7 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 	})
 
 	ginkgo.It(`should set "proxy_set_header 'My-Custom-Header' '42';" when auth-headers are set`, func() {
-		host := "auth"
+		host := authHost
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/auth-url":               "http://foo.bar/basic-auth/user/password",
@@ -320,11 +326,11 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 	})
 
 	ginkgo.It(`should set cache_key when external auth cache is configured`, func() {
-		host := "auth"
+		host := authHost
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/auth-url":            "http://foo.bar/basic-auth/user/password",
-			"nginx.ingress.kubernetes.io/auth-cache-key":      "foo",
+			"nginx.ingress.kubernetes.io/auth-cache-key":      fooHost,
 			"nginx.ingress.kubernetes.io/auth-cache-duration": "200 202 401 30m",
 		}
 
@@ -337,7 +343,6 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 			func(server string) bool {
 				return cacheRegex.MatchString(server) &&
 					strings.Contains(server, `proxy_cache_valid 200 202 401 30m;`)
-
 			})
 	})
 
@@ -405,7 +410,6 @@ http {
 			f.WaitForNginxServer(host, func(server string) bool {
 				return strings.Contains(server, "server_name "+host)
 			})
-
 		})
 
 		ginkgo.It("user retains cookie by default", func() {
@@ -431,7 +435,7 @@ http {
 		})
 
 		ginkgo.It("user with annotated ingress retains cookie if upstream returns error status code", func() {
-			annotations["nginx.ingress.kubernetes.io/auth-always-set-cookie"] = "true"
+			annotations["nginx.ingress.kubernetes.io/auth-always-set-cookie"] = enableAnnotation
 			f.UpdateIngress(ing1)
 			f.UpdateIngress(ing2)
 
@@ -451,7 +455,7 @@ http {
 	})
 
 	ginkgo.Context("when external authentication is configured", func() {
-		host := "auth"
+		host := authHost
 		var annotations map[string]string
 		var ing *networking.Ingress
 
@@ -495,7 +499,7 @@ http {
 			annotations["nginx.ingress.kubernetes.io/auth-realm"] = "test auth"
 			f.UpdateIngress(ing)
 
-			anotherHost := "different"
+			anotherHost := differentHost
 			anotherAnnotations := map[string]string{}
 
 			anotherIng := framework.NewSingleIngress(anotherHost, "/", anotherHost, f.Namespace, framework.EchoService, 80, anotherAnnotations)
@@ -544,12 +548,12 @@ http {
 			// Sleep a while just to guarantee that the configmap is applied
 			framework.Sleep()
 
-			annotations["nginx.ingress.kubernetes.io/auth-url"] = "http://foo.bar.baz:5000/path"
+			annotations["nginx.ingress.kubernetes.io/auth-url"] = authURL
 			f.UpdateIngress(ing)
 
 			f.WaitForNginxServer("",
 				func(server string) bool {
-					return strings.Contains(server, "http://foo.bar.baz:5000/path") &&
+					return strings.Contains(server, authURL) &&
 						!strings.Contains(server, `upstream auth-external-auth`)
 				})
 		})
@@ -582,19 +586,19 @@ http {
 			// Sleep a while just to guarantee that the configmap is applied
 			framework.Sleep()
 
-			annotations["nginx.ingress.kubernetes.io/auth-url"] = "http://foo.bar.baz:5000/path"
+			annotations["nginx.ingress.kubernetes.io/auth-url"] = authURL
 			annotations["nginx.ingress.kubernetes.io/auth-keepalive"] = "-1"
 			f.UpdateIngress(ing)
 
 			f.WaitForNginxServer("",
 				func(server string) bool {
-					return strings.Contains(server, "http://foo.bar.baz:5000/path") &&
+					return strings.Contains(server, authURL) &&
 						!strings.Contains(server, `upstream auth-external-auth`)
 				})
 		})
 
 		ginkgo.It(`should not create additional upstream block when auth-keepalive is set with HTTP/2`, func() {
-			annotations["nginx.ingress.kubernetes.io/auth-url"] = "http://foo.bar.baz:5000/path"
+			annotations["nginx.ingress.kubernetes.io/auth-url"] = authURL
 			annotations["nginx.ingress.kubernetes.io/auth-keepalive"] = "123"
 			annotations["nginx.ingress.kubernetes.io/auth-keepalive-requests"] = "456"
 			annotations["nginx.ingress.kubernetes.io/auth-keepalive-timeout"] = "789"
@@ -602,7 +606,7 @@ http {
 
 			f.WaitForNginxServer("",
 				func(server string) bool {
-					return strings.Contains(server, "http://foo.bar.baz:5000/path") &&
+					return strings.Contains(server, authURL) &&
 						!strings.Contains(server, `upstream auth-external-auth`)
 				})
 		})
@@ -657,7 +661,7 @@ http {
 			framework.Sleep()
 
 			annotations["nginx.ingress.kubernetes.io/auth-keepalive"] = "10"
-			annotations["nginx.ingress.kubernetes.io/auth-keepalive-share-vars"] = "true"
+			annotations["nginx.ingress.kubernetes.io/auth-keepalive-share-vars"] = enableAnnotation
 			f.UpdateIngress(ing)
 
 			f.WaitForNginxServer("",
@@ -670,7 +674,7 @@ http {
 	})
 
 	ginkgo.Context("when external authentication is configured with a custom redirect param", func() {
-		host := "auth"
+		host := authHost
 		var annotations map[string]string
 		var ing *networking.Ingress
 
@@ -715,7 +719,7 @@ http {
 			annotations["nginx.ingress.kubernetes.io/auth-realm"] = "test auth"
 			f.UpdateIngress(ing)
 
-			anotherHost := "different"
+			anotherHost := differentHost
 			anotherAnnotations := map[string]string{}
 
 			anotherIng := framework.NewSingleIngress(anotherHost, "/", anotherHost, f.Namespace, framework.EchoService, 80, anotherAnnotations)
@@ -735,8 +739,8 @@ http {
 	})
 
 	ginkgo.Context("when external authentication with caching is configured", func() {
-		thisHost := "auth"
-		thatHost := "different"
+		thisHost := authHost
+		thatHost := differentHost
 
 		fooPath := "/foo"
 		barPath := "/bar"
@@ -858,7 +862,7 @@ http {
 	})
 
 	ginkgo.Context("with invalid auth-url should deny whole location", func() {
-		host := "auth"
+		host := authHost
 		var annotations map[string]string
 		var ing *networking.Ingress
 
@@ -898,7 +902,6 @@ http {
 //   Auth error
 
 func buildSecret(username, password, name, namespace string) *corev1.Secret {
-	//out, err := exec.Command("openssl", "passwd", "-crypt", password).CombinedOutput()
 	out, err := bcrypt.GenerateFromPassword([]byte(password), 14)
 	encpass := fmt.Sprintf("%v:%s\n", username, out)
 	assert.Nil(ginkgo.GinkgoT(), err)
@@ -917,7 +920,6 @@ func buildSecret(username, password, name, namespace string) *corev1.Secret {
 }
 
 func buildMapSecret(username, password, name, namespace string) *corev1.Secret {
-	//out, err := exec.Command("openssl", "passwd", "-crypt", password).CombinedOutput()
 	out, err := bcrypt.GenerateFromPassword([]byte(password), 14)
 	assert.Nil(ginkgo.GinkgoT(), err)
 
@@ -928,7 +930,7 @@ func buildMapSecret(username, password, name, namespace string) *corev1.Secret {
 			DeletionGracePeriodSeconds: framework.NewInt64(1),
 		},
 		Data: map[string][]byte{
-			username: []byte(out),
+			username: out,
 		},
 		Type: corev1.SecretTypeOpaque,
 	}
diff --git a/test/e2e/annotations/authtls.go b/test/e2e/annotations/authtls.go
index e96835aa0..c7a05c053 100644
--- a/test/e2e/annotations/authtls.go
+++ b/test/e2e/annotations/authtls.go
@@ -26,6 +26,8 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const authTLSFooHost = "authtls.foo.com"
+
 var _ = framework.DescribeAnnotation("auth-tls-*", func() {
 	f := framework.NewDefaultFramework("authtls")
 
@@ -34,7 +36,7 @@ var _ = framework.DescribeAnnotation("auth-tls-*", func() {
 	})
 
 	ginkgo.It("should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret", func() {
-		host := "authtls.foo.com"
+		host := authTLSFooHost
 		nameSpace := f.Namespace
 
 		clientConfig, err := framework.CreateIngressMASecret(
@@ -82,7 +84,7 @@ var _ = framework.DescribeAnnotation("auth-tls-*", func() {
 	})
 
 	ginkgo.It("should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2", func() {
-		host := "authtls.foo.com"
+		host := authTLSFooHost
 		nameSpace := f.Namespace
 
 		_, err := framework.CreateIngressMASecret(
@@ -112,7 +114,7 @@ var _ = framework.DescribeAnnotation("auth-tls-*", func() {
 	})
 
 	ginkgo.It("should 302 redirect to error page instead of 400 when auth-tls-error-page is set", func() {
-		host := "authtls.foo.com"
+		host := authTLSFooHost
 		nameSpace := f.Namespace
 
 		errorPath := "/error"
@@ -159,7 +161,7 @@ var _ = framework.DescribeAnnotation("auth-tls-*", func() {
 	})
 
 	ginkgo.It("should pass URL-encoded certificate to upstream", func() {
-		host := "authtls.foo.com"
+		host := authTLSFooHost
 		nameSpace := f.Namespace
 
 		clientConfig, err := framework.CreateIngressMASecret(
@@ -204,7 +206,7 @@ var _ = framework.DescribeAnnotation("auth-tls-*", func() {
 	})
 
 	ginkgo.It("should validate auth-tls-verify-client", func() {
-		host := "authtls.foo.com"
+		host := authTLSFooHost
 		nameSpace := f.Namespace
 
 		clientConfig, err := framework.CreateIngressMASecret(
@@ -260,11 +262,10 @@ var _ = framework.DescribeAnnotation("auth-tls-*", func() {
 			WithHeader("Host", host).
 			Expect().
 			Status(http.StatusOK)
-
 	})
 
 	ginkgo.It("should return 403 using auth-tls-match-cn with no matching CN from client", func() {
-		host := "authtls.foo.com"
+		host := authTLSFooHost
 		nameSpace := f.Namespace
 
 		clientConfig, err := framework.CreateIngressMASecret(
@@ -293,7 +294,7 @@ var _ = framework.DescribeAnnotation("auth-tls-*", func() {
 	})
 
 	ginkgo.It("should return 200 using auth-tls-match-cn with matching CN from client", func() {
-		host := "authtls.foo.com"
+		host := authTLSFooHost
 		nameSpace := f.Namespace
 
 		clientConfig, err := framework.CreateIngressMASecret(
@@ -322,7 +323,7 @@ var _ = framework.DescribeAnnotation("auth-tls-*", func() {
 	})
 
 	ginkgo.It("should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client", func() {
-		host := "authtls.foo.com"
+		host := authTLSFooHost
 		nameSpace := f.Namespace
 
 		clientConfig, err := framework.CreateIngressMASecret(
@@ -351,7 +352,8 @@ var _ = framework.DescribeAnnotation("auth-tls-*", func() {
 	})
 })
 
-func assertSslClientCertificateConfig(f *framework.Framework, host string, verifyClient string, verifyDepth string) {
+//nolint:unparam // Ignore the invariant param: host
+func assertSslClientCertificateConfig(f *framework.Framework, host, verifyClient, verifyDepth string) {
 	sslClientCertDirective := fmt.Sprintf("ssl_client_certificate /etc/ingress-controller/ssl/%s-%s.pem;", f.Namespace, host)
 	sslVerify := fmt.Sprintf("ssl_verify_client %s;", verifyClient)
 	sslVerifyDepth := fmt.Sprintf("ssl_verify_depth %s;", verifyDepth)
diff --git a/test/e2e/annotations/backendprotocol.go b/test/e2e/annotations/backendprotocol.go
index 566a6921e..d0a08c767 100644
--- a/test/e2e/annotations/backendprotocol.go
+++ b/test/e2e/annotations/backendprotocol.go
@@ -24,6 +24,8 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const backendProtocolHost = "backendprotocol.foo.com"
+
 var _ = framework.DescribeAnnotation("backend-protocol", func() {
 	f := framework.NewDefaultFramework("backendprotocol")
 
@@ -32,7 +34,7 @@ var _ = framework.DescribeAnnotation("backend-protocol", func() {
 	})
 
 	ginkgo.It("should set backend protocol to https:// and use proxy_pass", func() {
-		host := "backendprotocol.foo.com"
+		host := backendProtocolHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/backend-protocol": "HTTPS",
 		}
@@ -47,7 +49,7 @@ var _ = framework.DescribeAnnotation("backend-protocol", func() {
 	})
 
 	ginkgo.It("should set backend protocol to $scheme:// and use proxy_pass", func() {
-		host := "backendprotocol.foo.com"
+		host := backendProtocolHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/backend-protocol": "AUTO_HTTP",
 		}
@@ -62,7 +64,7 @@ var _ = framework.DescribeAnnotation("backend-protocol", func() {
 	})
 
 	ginkgo.It("should set backend protocol to grpc:// and use grpc_pass", func() {
-		host := "backendprotocol.foo.com"
+		host := backendProtocolHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/backend-protocol": "GRPC",
 		}
@@ -77,7 +79,7 @@ var _ = framework.DescribeAnnotation("backend-protocol", func() {
 	})
 
 	ginkgo.It("should set backend protocol to grpcs:// and use grpc_pass", func() {
-		host := "backendprotocol.foo.com"
+		host := backendProtocolHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/backend-protocol": "GRPCS",
 		}
@@ -92,7 +94,7 @@ var _ = framework.DescribeAnnotation("backend-protocol", func() {
 	})
 
 	ginkgo.It("should set backend protocol to '' and use fastcgi_pass", func() {
-		host := "backendprotocol.foo.com"
+		host := backendProtocolHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/backend-protocol": "FCGI",
 		}
diff --git a/test/e2e/annotations/canary.go b/test/e2e/annotations/canary.go
index 15cbeffa7..ea733dbf4 100644
--- a/test/e2e/annotations/canary.go
+++ b/test/e2e/annotations/canary.go
@@ -43,7 +43,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 	ginkgo.Context("when canary is created", func() {
 		ginkgo.It("should response with a 200 status from the mainline upstream when requests are made to the mainline ingress", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -87,7 +87,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 		})
 
 		ginkgo.It("should return 404 status for requests to the canary if no matching ingress is found", func() {
-			host := "foo"
+			host := fooHost
 
 			canaryAnnotations := map[string]string{
 				"nginx.ingress.kubernetes.io/canary":           "true",
@@ -118,7 +118,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			TODO: This test needs improvements made to the e2e framework so that deployment updates work in order to successfully run
 
 			It("should return the correct status codes when endpoints are unavailable", func() {
-				host := "foo"
+				host := fooHost
 				annotations := map[string]string{}
 
 				ing := framework.NewSingleIngress(host, "/info", host, f.Namespace, framework.HTTPBunService, 80, annotations)
@@ -172,7 +172,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 		*/
 
 		ginkgo.It("should route requests to the correct upstream if mainline ingress is created before the canary ingress", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -230,7 +230,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 		})
 
 		ginkgo.It("should route requests to the correct upstream if mainline ingress is created after the canary ingress", func() {
-			host := "foo"
+			host := fooHost
 
 			canaryAnnotations := map[string]string{
 				"nginx.ingress.kubernetes.io/canary":           "true",
@@ -287,7 +287,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 		})
 
 		ginkgo.It("should route requests to the correct upstream if the mainline ingress is modified", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -321,7 +321,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				canaryAnnotations))
 
 			modAnnotations := map[string]string{
-				"foo": "bar",
+				fooHost: "bar",
 			}
 
 			f.UpdateIngress(framework.NewSingleIngress(
@@ -361,7 +361,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 		})
 
 		ginkgo.It("should route requests to the correct upstream if the canary ingress is modified", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -443,7 +443,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 	ginkgo.Context("when canaried by header with no value", func() {
 		ginkgo.It("should route requests to the correct upstream", func() {
-			host := "foo"
+			host := fooHost
 
 			f.EnsureIngress(framework.NewSingleIngress(
 				host,
@@ -511,7 +511,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 	ginkgo.Context("when canaried by header with value", func() {
 		ginkgo.It("should route requests to the correct upstream", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -592,7 +592,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 	ginkgo.Context("when canaried by header with value and pattern", func() {
 		ginkgo.It("should route requests to the correct upstream", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -645,7 +645,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				Body().Contains(framework.HTTPBunService).NotContains(canaryService)
 		})
 		ginkgo.It("should route requests to the correct upstream", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -690,7 +690,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 				Body().Contains(framework.HTTPBunService).NotContains(canaryService)
 		})
 		ginkgo.It("should routes to mainline upstream when the given Regex causes error", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -739,7 +739,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 	ginkgo.Context("when canaried by header with value and cookie", func() {
 		ginkgo.It("should route requests to the correct upstream", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -788,7 +788,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 	ginkgo.Context("when canaried by cookie", func() {
 		ginkgo.It("respects always and never values", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -860,7 +860,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 	ginkgo.Context("when canaried by weight", func() {
 		ginkgo.It("should route requests only to mainline if canary weight is 0", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -908,7 +908,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 		})
 
 		ginkgo.It("should route requests only to canary if canary weight is 100", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -950,7 +950,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 		})
 
 		ginkgo.It("should route requests only to canary if canary weight is equal to canary weight total", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -993,7 +993,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 		})
 
 		ginkgo.It("should route requests split between mainline and canary if canary weight is 50", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -1029,7 +1029,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 		})
 
 		ginkgo.It("should route requests split between mainline and canary if canary weight is 100 and weight total is 200", func() {
-			host := "foo"
+			host := fooHost
 			annotations := map[string]string{}
 
 			f.EnsureIngress(framework.NewSingleIngress(
@@ -1068,7 +1068,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 
 	ginkgo.Context("Single canary Ingress", func() {
 		ginkgo.It("should not use canary as a catch-all server", func() {
-			host := "foo"
+			host := fooHost
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 			annotations := map[string]string{
 				"nginx.ingress.kubernetes.io/canary":           "true",
@@ -1102,7 +1102,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 		})
 
 		ginkgo.It("should not use canary with domain as a server", func() {
-			host := "foo"
+			host := fooHost
 			canaryIngName := fmt.Sprintf("%v-canary", host)
 			annotations := map[string]string{
 				"nginx.ingress.kubernetes.io/canary":           "true",
@@ -1136,7 +1136,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 	})
 
 	ginkgo.It("does not crash when canary ingress has multiple paths to the same non-matching backend", func() {
-		host := "foo"
+		host := fooHost
 		canaryIngName := fmt.Sprintf("%v-canary", host)
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/canary":           "true",
@@ -1168,7 +1168,7 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 	})
 
 	ginkgo.Context("canary affinity behavior", func() {
-		host := "foo"
+		host := fooHost
 		affinityCookieName := "aff"
 		canaryIngName := fmt.Sprintf("%v-canary", host)
 
@@ -1370,7 +1370,6 @@ var _ = framework.DescribeAnnotation("canary-*", func() {
 			TestMainlineCanaryDistribution(f, host)
 		})
 	})
-
 })
 
 // This method assumes canary weight being configured at 50%.
@@ -1407,12 +1406,12 @@ func TestMainlineCanaryDistribution(f *framework.Framework, host string) {
 
 	assert.GreaterOrEqual(
 		ginkgo.GinkgoT(),
-		int(replicaRequestCount[keys[0].String()]),
+		replicaRequestCount[keys[0].String()],
 		requestsNumberToTest,
 	)
 	assert.GreaterOrEqual(
 		ginkgo.GinkgoT(),
-		int(replicaRequestCount[keys[1].String()]),
+		replicaRequestCount[keys[1].String()],
 		requestsNumberToTest,
 	)
 }
diff --git a/test/e2e/annotations/clientbodybuffersize.go b/test/e2e/annotations/clientbodybuffersize.go
index 4ea1943bd..15a3530f3 100644
--- a/test/e2e/annotations/clientbodybuffersize.go
+++ b/test/e2e/annotations/clientbodybuffersize.go
@@ -25,6 +25,8 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const clientBodyBufferSizeHost = "client-body-buffer-size.com"
+
 var _ = framework.DescribeAnnotation("client-body-buffer-size", func() {
 	f := framework.NewDefaultFramework("clientbodybuffersize")
 
@@ -33,7 +35,7 @@ var _ = framework.DescribeAnnotation("client-body-buffer-size", func() {
 	})
 
 	ginkgo.It("should set client_body_buffer_size to 1000", func() {
-		host := "client-body-buffer-size.com"
+		host := clientBodyBufferSizeHost
 
 		clientBodyBufferSize := "1000"
 		annotations := make(map[string]string)
@@ -55,7 +57,7 @@ var _ = framework.DescribeAnnotation("client-body-buffer-size", func() {
 	})
 
 	ginkgo.It("should set client_body_buffer_size to 1K", func() {
-		host := "client-body-buffer-size.com"
+		host := clientBodyBufferSizeHost
 
 		clientBodyBufferSize := "1K"
 		annotations := make(map[string]string)
@@ -77,7 +79,7 @@ var _ = framework.DescribeAnnotation("client-body-buffer-size", func() {
 	})
 
 	ginkgo.It("should set client_body_buffer_size to 1k", func() {
-		host := "client-body-buffer-size.com"
+		host := clientBodyBufferSizeHost
 
 		clientBodyBufferSize := "1k"
 		annotations := make(map[string]string)
@@ -99,7 +101,7 @@ var _ = framework.DescribeAnnotation("client-body-buffer-size", func() {
 	})
 
 	ginkgo.It("should set client_body_buffer_size to 1m", func() {
-		host := "client-body-buffer-size.com"
+		host := clientBodyBufferSizeHost
 
 		clientBodyBufferSize := "1m"
 		annotations := make(map[string]string)
@@ -121,7 +123,7 @@ var _ = framework.DescribeAnnotation("client-body-buffer-size", func() {
 	})
 
 	ginkgo.It("should set client_body_buffer_size to 1M", func() {
-		host := "client-body-buffer-size.com"
+		host := clientBodyBufferSizeHost
 
 		clientBodyBufferSize := "1M"
 		annotations := make(map[string]string)
@@ -143,7 +145,7 @@ var _ = framework.DescribeAnnotation("client-body-buffer-size", func() {
 	})
 
 	ginkgo.It("should not set client_body_buffer_size to invalid 1b", func() {
-		host := "client-body-buffer-size.com"
+		host := clientBodyBufferSizeHost
 
 		clientBodyBufferSize := "1b"
 		annotations := make(map[string]string)
diff --git a/test/e2e/annotations/cors.go b/test/e2e/annotations/cors.go
index f53bd8e9e..dd28f5dd4 100644
--- a/test/e2e/annotations/cors.go
+++ b/test/e2e/annotations/cors.go
@@ -25,6 +25,11 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const (
+	originHost = "http://origin.com:8080"
+	corsHost   = "cors.foo.com"
+)
+
 var _ = framework.DescribeAnnotation("cors-*", func() {
 	f := framework.NewDefaultFramework("cors")
 
@@ -33,7 +38,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should enable cors", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors": "true",
 		}
@@ -60,7 +65,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should set cors methods to only allow POST, GET", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":        "true",
 			"nginx.ingress.kubernetes.io/cors-allow-methods": "POST, GET",
@@ -76,7 +81,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should set cors max-age", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":  "true",
 			"nginx.ingress.kubernetes.io/cors-max-age": "200",
@@ -92,7 +97,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should disable cors allow credentials", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":            "true",
 			"nginx.ingress.kubernetes.io/cors-allow-credentials": "false",
@@ -108,7 +113,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should allow origin for cors", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		origin := "https://origin.cors.com:8080"
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":       "true",
@@ -135,7 +140,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should allow headers for cors", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":        "true",
 			"nginx.ingress.kubernetes.io/cors-allow-headers": "DNT, User-Agent",
@@ -151,7 +156,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should expose headers for cors", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":         "true",
 			"nginx.ingress.kubernetes.io/cors-expose-headers": "X-CustomResponseHeader, X-CustomSecondHeader",
@@ -167,7 +172,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should allow - single origin for multiple cors values", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		origin := "https://origin.cors.com:8080"
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":       "true",
@@ -194,7 +199,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should not allow - single origin for multiple cors values", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		origin := "http://no.origin.com"
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":       "true",
@@ -214,7 +219,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should allow correct origins - single origin for multiple cors values", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		badOrigin := "origin.cors.com:8080"
 		origin1 := "https://origin2.cors.com"
 		origin2 := "https://origin.com"
@@ -265,7 +270,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should not break functionality", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":       "true",
 			"nginx.ingress.kubernetes.io/cors-allow-origin": "*",
@@ -289,7 +294,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should not break functionality - without `*`", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors": "true",
 		}
@@ -312,7 +317,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should not break functionality with extra domain", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":       "true",
 			"nginx.ingress.kubernetes.io/cors-allow-origin": "*, foo.bar.com",
@@ -336,7 +341,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should not match", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		origin := "https://fooxbar.com"
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":       "true",
@@ -356,8 +361,8 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should allow - single origin with required port", func() {
-		host := "cors.foo.com"
-		origin := "http://origin.com:8080"
+		host := corsHost
+		origin := originHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":       "true",
 			"nginx.ingress.kubernetes.io/cors-allow-origin": "http://origin.cors.com:8080, http://origin.com:8080",
@@ -384,8 +389,8 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should not allow - single origin with port and origin without port", func() {
-		host := "cors.foo.com"
-		origin := "http://origin.com:8080"
+		host := corsHost
+		origin := originHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":       "true",
 			"nginx.ingress.kubernetes.io/cors-allow-origin": "https://origin2.cors.com, http://origin.com",
@@ -403,7 +408,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should not allow - single origin without port and origin with required port", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		origin := "http://origin.com"
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":       "true",
@@ -423,7 +428,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should allow - matching origin with wildcard origin (2 subdomains)", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		origin := "http://foo.origin.cors.com"
 		origin2 := "http://bar-foo.origin.cors.com"
 		annotations := map[string]string{
@@ -466,7 +471,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should not allow - unmatching origin with wildcard origin (2 subdomains)", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		origin := "http://bar.foo.origin.cors.com"
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":       "true",
@@ -486,7 +491,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should allow - matching origin+port with wildcard origin", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		origin := "http://abc.origin.com:8080"
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":       "true",
@@ -513,7 +518,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should not allow - portless origin with wildcard origin", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		origin := "http://abc.origin.com"
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":       "true",
@@ -533,8 +538,8 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should allow correct origins - missing subdomain + origin with wildcard origin and correct origin", func() {
-		host := "cors.foo.com"
-		badOrigin := "http://origin.com:8080"
+		host := corsHost
+		badOrigin := originHost
 		origin := "http://bar.origin.com:8080"
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-cors":       "true",
@@ -569,7 +574,7 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 	})
 
 	ginkgo.It("should allow - missing origins (should allow all origins)", func() {
-		host := "cors.foo.com"
+		host := corsHost
 		origin := "http://origin.com"
 		origin2 := "http://book.origin.com"
 		origin3 := "test.origin.com"
diff --git a/test/e2e/annotations/customhttperrors.go b/test/e2e/annotations/customhttperrors.go
index 3862f817b..37a3e9695 100644
--- a/test/e2e/annotations/customhttperrors.go
+++ b/test/e2e/annotations/customhttperrors.go
@@ -27,7 +27,7 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
-func errorBlockName(upstreamName string, errorCode string) string {
+func errorBlockName(upstreamName, errorCode string) string {
 	return fmt.Sprintf("@custom_%s_%s", upstreamName, errorCode)
 }
 
diff --git a/test/e2e/annotations/default_backend.go b/test/e2e/annotations/default_backend.go
index 53c98a307..72ca303b5 100644
--- a/test/e2e/annotations/default_backend.go
+++ b/test/e2e/annotations/default_backend.go
@@ -48,18 +48,18 @@ var _ = framework.DescribeAnnotation("default-backend", func() {
 					return strings.Contains(server, fmt.Sprintf("server_name %v", host))
 				})
 
-			requestId := "something-unique"
+			requestID := "something-unique"
 
 			f.HTTPTestClient().
 				GET("/alma/armud").
 				WithHeader("Host", host).
-				WithHeader("x-request-id", requestId).
+				WithHeader("x-request-id", requestID).
 				Expect().
 				Status(http.StatusOK).
 				Body().Contains("x-code=503").
 				Contains(fmt.Sprintf("x-ingress-name=%s", host)).
 				Contains("x-service-name=invalid").
-				Contains(fmt.Sprintf("x-request-id=%s", requestId))
+				Contains(fmt.Sprintf("x-request-id=%s", requestID))
 		})
 	})
 })
diff --git a/test/e2e/annotations/fromtowwwredirect.go b/test/e2e/annotations/fromtowwwredirect.go
index 9201bedb7..4ee3d313c 100644
--- a/test/e2e/annotations/fromtowwwredirect.go
+++ b/test/e2e/annotations/fromtowwwredirect.go
@@ -90,7 +90,7 @@ var _ = framework.DescribeAnnotation("from-to-www-redirect", func() {
 
 		ginkgo.By("sending request to www should redirect to domain")
 		f.HTTPTestClientWithTLSConfig(&tls.Config{
-			InsecureSkipVerify: true,
+			InsecureSkipVerify: true, //nolint:gosec // Ignore the gosec error in testing
 			ServerName:         toHost,
 		}).
 			GET("/").
@@ -102,7 +102,7 @@ var _ = framework.DescribeAnnotation("from-to-www-redirect", func() {
 
 		ginkgo.By("sending request to domain should not redirect to www")
 		f.HTTPTestClientWithTLSConfig(&tls.Config{
-			InsecureSkipVerify: true,
+			InsecureSkipVerify: true, //nolint:gosec // Ignore the gosec error in testing
 			ServerName:         fromHost,
 		}).
 			GET("/").
diff --git a/test/e2e/annotations/globalratelimit.go b/test/e2e/annotations/globalratelimit.go
index 2efcc3558..96be467fe 100644
--- a/test/e2e/annotations/globalratelimit.go
+++ b/test/e2e/annotations/globalratelimit.go
@@ -47,7 +47,7 @@ var _ = framework.DescribeAnnotation("annotation-global-rate-limit", func() {
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
 		ing = f.EnsureIngress(ing)
-		namespace := strings.Replace(string(ing.UID), "-", "", -1)
+		namespace := strings.ReplaceAll(string(ing.UID), "-", "")
 
 		serverConfig := ""
 		f.WaitForNginxServer(host, func(server string) bool {
diff --git a/test/e2e/annotations/grpc.go b/test/e2e/annotations/grpc.go
index 243307df4..4c121df49 100644
--- a/test/e2e/annotations/grpc.go
+++ b/test/e2e/annotations/grpc.go
@@ -17,12 +17,11 @@ limitations under the License.
 package annotations
 
 import (
+	"context"
 	"crypto/tls"
 	"fmt"
 	"strings"
 
-	"context"
-
 	pb "github.com/moul/pb/grpcbin/go-grpc"
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
@@ -36,6 +35,8 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const echoHost = "echo"
+
 var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 	f := framework.NewDefaultFramework("grpc", framework.WithHTTPBunEnabled())
 
@@ -67,7 +68,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 	ginkgo.It("should return OK for service with backend protocol GRPC", func() {
 		f.NewGRPCBinDeployment()
 
-		host := "echo"
+		host := echoHost
 
 		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
@@ -102,14 +103,15 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 				return strings.Contains(server, "grpc_pass grpc://upstream_balancer;")
 			})
 
-		conn, _ := grpc.Dial(f.GetNginxIP()+":443",
+		conn, err := grpc.Dial(f.GetNginxIP()+":443",
 			grpc.WithTransportCredentials(
 				credentials.NewTLS(&tls.Config{
-					ServerName:         "echo",
-					InsecureSkipVerify: true,
+					ServerName:         echoHost,
+					InsecureSkipVerify: true, //nolint:gosec // Ignore certificate validation in testing
 				}),
 			),
 		)
+		assert.Nil(ginkgo.GinkgoT(), err, "error creating a connection")
 		defer conn.Close()
 
 		client := pb.NewGRPCBinClient(conn)
@@ -125,7 +127,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 
 	ginkgo.It("authorization metadata should be overwritten by external auth response headers", func() {
 		f.NewGRPCBinDeployment()
-		host := "echo"
+		host := echoHost
 
 		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
@@ -162,14 +164,15 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 				return strings.Contains(server, "grpc_pass grpc://upstream_balancer;")
 			})
 
-		conn, _ := grpc.Dial(f.GetNginxIP()+":443",
+		conn, err := grpc.Dial(f.GetNginxIP()+":443",
 			grpc.WithTransportCredentials(
 				credentials.NewTLS(&tls.Config{
-					ServerName:         "echo",
-					InsecureSkipVerify: true,
+					ServerName:         echoHost,
+					InsecureSkipVerify: true, //nolint:gosec // Ignore certificate validation in testing
 				}),
 			),
 		)
+		assert.Nil(ginkgo.GinkgoT(), err)
 		defer conn.Close()
 
 		client := pb.NewGRPCBinClient(conn)
@@ -180,13 +183,13 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 		assert.Nil(ginkgo.GinkgoT(), err)
 
 		metadata := res.GetMetadata()
-		assert.Equal(ginkgo.GinkgoT(), "foo", metadata["authorization"].Values[0])
+		assert.Equal(ginkgo.GinkgoT(), fooHost, metadata["authorization"].Values[0])
 	})
 
 	ginkgo.It("should return OK for service with backend protocol GRPCS", func() {
 		f.NewGRPCBinDeployment()
 
-		host := "echo"
+		host := echoHost
 
 		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
@@ -226,14 +229,15 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 				return strings.Contains(server, "grpc_pass grpcs://upstream_balancer;")
 			})
 
-		conn, _ := grpc.Dial(f.GetNginxIP()+":443",
+		conn, err := grpc.Dial(f.GetNginxIP()+":443",
 			grpc.WithTransportCredentials(
 				credentials.NewTLS(&tls.Config{
-					ServerName:         "echo",
-					InsecureSkipVerify: true,
+					ServerName:         echoHost,
+					InsecureSkipVerify: true, //nolint:gosec // Ignore the gosec error in testing
 				}),
 			),
 		)
+		assert.Nil(ginkgo.GinkgoT(), err)
 		defer conn.Close()
 
 		client := pb.NewGRPCBinClient(conn)
diff --git a/test/e2e/annotations/modsecurity/modsecurity.go b/test/e2e/annotations/modsecurity/modsecurity.go
index 62c9bc843..71e8963e3 100644
--- a/test/e2e/annotations/modsecurity/modsecurity.go
+++ b/test/e2e/annotations/modsecurity/modsecurity.go
@@ -25,6 +25,17 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const (
+	modSecurityFooHost = "modsecurity.foo.com"
+	defaultSnippet     = `SecRuleEngine On
+		SecRequestBodyAccess On
+		SecAuditEngine RelevantOnly
+		SecAuditLogParts ABIJDEFHZ
+		SecAuditLog /dev/stdout
+		SecAuditLogType Serial
+		SecRule REQUEST_HEADERS:User-Agent \"block-ua\" \"log,deny,id:107,status:403,msg:\'UA blocked\'\"`
+)
+
 var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	f := framework.NewDefaultFramework("modsecuritylocation")
 
@@ -33,7 +44,7 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity", func() {
-		host := "modsecurity.foo.com"
+		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
 		annotations := map[string]string{
@@ -51,7 +62,7 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity with transaction ID and OWASP rules", func() {
-		host := "modsecurity.foo.com"
+		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
 		annotations := map[string]string{
@@ -72,7 +83,7 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should disable modsecurity", func() {
-		host := "modsecurity.foo.com"
+		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
 		annotations := map[string]string{
@@ -89,7 +100,7 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity with snippet", func() {
-		host := "modsecurity.foo.com"
+		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
 		annotations := map[string]string{
@@ -109,10 +120,11 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 
 	ginkgo.It("should enable modsecurity without using 'modsecurity on;'", func() {
 		f.SetNginxConfigMapData(map[string]string{
-			"enable-modsecurity": "true"},
+			"enable-modsecurity": "true",
+		},
 		)
 
-		host := "modsecurity.foo.com"
+		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
 		annotations := map[string]string{
@@ -131,10 +143,11 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 
 	ginkgo.It("should disable modsecurity using 'modsecurity off;'", func() {
 		f.SetNginxConfigMapData(map[string]string{
-			"enable-modsecurity": "true"},
+			"enable-modsecurity": "true",
+		},
 		)
 
-		host := "modsecurity.foo.com"
+		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
 		annotations := map[string]string{
@@ -151,16 +164,10 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity with snippet and block requests", func() {
-		host := "modsecurity.foo.com"
+		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
-		snippet := `SecRuleEngine On
-		SecRequestBodyAccess On
-		SecAuditEngine RelevantOnly
-		SecAuditLogParts ABIJDEFHZ
-		SecAuditLog /dev/stdout
-		SecAuditLogType Serial
-		SecRule REQUEST_HEADERS:User-Agent \"block-ua\" \"log,deny,id:107,status:403,msg:\'UA blocked\'\"`
+		snippet := defaultSnippet
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/enable-modsecurity":  "true",
@@ -187,16 +194,10 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity globally and with modsecurity-snippet block requests", func() {
-		host := "modsecurity.foo.com"
+		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
-		snippet := `SecRuleEngine On
-		SecRequestBodyAccess On
-		SecAuditEngine RelevantOnly
-		SecAuditLogParts ABIJDEFHZ
-		SecAuditLog /dev/stdout
-		SecAuditLogType Serial
-		SecRule REQUEST_HEADERS:User-Agent \"block-ua\" \"log,deny,id:107,status:403,msg:\'UA blocked\'\"`
+		snippet := defaultSnippet
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/modsecurity-snippet": snippet,
@@ -223,16 +224,10 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity when enable-owasp-modsecurity-crs is set to true", func() {
-		host := "modsecurity.foo.com"
+		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
-		snippet := `SecRuleEngine On
-		SecRequestBodyAccess On
-		SecAuditEngine RelevantOnly
-		SecAuditLogParts ABIJDEFHZ
-		SecAuditLog /dev/stdout
-		SecAuditLogType Serial
-		SecRule REQUEST_HEADERS:User-Agent \"block-ua\" \"log,deny,id:107,status:403,msg:\'UA blocked\'\"`
+		snippet := defaultSnippet
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/modsecurity-snippet": snippet,
@@ -262,7 +257,7 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity through the config map", func() {
-		host := "modsecurity.foo.com"
+		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
 		snippet := `SecRequestBodyAccess On
@@ -303,7 +298,7 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity through the config map but ignore snippet as disabled by admin", func() {
-		host := "modsecurity.foo.com"
+		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
 		snippet := `SecRequestBodyAccess On
@@ -345,7 +340,7 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should disable default modsecurity conf setting when modsecurity-snippet is specified", func() {
-		host := "modsecurity.foo.com"
+		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
 		snippet := `SecRuleEngine On
diff --git a/test/e2e/annotations/proxy.go b/test/e2e/annotations/proxy.go
index c0c89eb43..235b828e7 100644
--- a/test/e2e/annotations/proxy.go
+++ b/test/e2e/annotations/proxy.go
@@ -25,6 +25,8 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const proxyRedirectToHost = "goodbye.com"
+
 var _ = framework.DescribeAnnotation("proxy-*", func() {
 	f := framework.NewDefaultFramework("proxy")
 	host := "proxy.foo.com"
@@ -38,7 +40,7 @@ var _ = framework.DescribeAnnotation("proxy-*", func() {
 
 		annotations := make(map[string]string)
 		annotations["nginx.ingress.kubernetes.io/proxy-redirect-from"] = proxyRedirectFrom
-		annotations["nginx.ingress.kubernetes.io/proxy-redirect-to"] = "goodbye.com"
+		annotations["nginx.ingress.kubernetes.io/proxy-redirect-to"] = proxyRedirectToHost
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
@@ -54,7 +56,7 @@ var _ = framework.DescribeAnnotation("proxy-*", func() {
 
 		annotations := make(map[string]string)
 		annotations["nginx.ingress.kubernetes.io/proxy-redirect-from"] = proxyRedirectFrom
-		annotations["nginx.ingress.kubernetes.io/proxy-redirect-to"] = "goodbye.com"
+		annotations["nginx.ingress.kubernetes.io/proxy-redirect-to"] = proxyRedirectToHost
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
@@ -67,7 +69,7 @@ var _ = framework.DescribeAnnotation("proxy-*", func() {
 
 	ginkgo.It("should set proxy_redirect to hello.com goodbye.com", func() {
 		proxyRedirectFrom := "hello.com"
-		proxyRedirectTo := "goodbye.com"
+		proxyRedirectTo := proxyRedirectToHost
 
 		annotations := make(map[string]string)
 		annotations["nginx.ingress.kubernetes.io/proxy-redirect-from"] = proxyRedirectFrom
@@ -244,5 +246,4 @@ var _ = framework.DescribeAnnotation("proxy-*", func() {
 				return strings.Contains(server, fmt.Sprintf("proxy_http_version %s;", proxyHTTPVersion))
 			})
 	})
-
 })
diff --git a/test/e2e/annotations/proxyssl.go b/test/e2e/annotations/proxyssl.go
index 7f14c3393..989d681c1 100644
--- a/test/e2e/annotations/proxyssl.go
+++ b/test/e2e/annotations/proxyssl.go
@@ -27,6 +27,8 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const proxySSLHost = "proxyssl.foo.com"
+
 var _ = framework.DescribeAnnotation("proxy-ssl-*", func() {
 	f := framework.NewDefaultFramework("proxyssl")
 
@@ -35,7 +37,7 @@ var _ = framework.DescribeAnnotation("proxy-ssl-*", func() {
 	})
 
 	ginkgo.It("should set valid proxy-ssl-secret", func() {
-		host := "proxyssl.foo.com"
+		host := proxySSLHost
 		annotations := make(map[string]string)
 		annotations["nginx.ingress.kubernetes.io/proxy-ssl-secret"] = f.Namespace + "/" + host
 
@@ -62,7 +64,7 @@ var _ = framework.DescribeAnnotation("proxy-ssl-*", func() {
 	})
 
 	ginkgo.It("should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on", func() {
-		host := "proxyssl.foo.com"
+		host := proxySSLHost
 		annotations := make(map[string]string)
 		annotations["nginx.ingress.kubernetes.io/proxy-ssl-secret"] = f.Namespace + "/" + host
 		annotations["nginx.ingress.kubernetes.io/proxy-ssl-verify"] = "on"
@@ -90,9 +92,9 @@ var _ = framework.DescribeAnnotation("proxy-ssl-*", func() {
 			Expect().
 			Status(http.StatusOK)
 	})
-
+	//nolint:dupl // Ignore dupl errors for similar test case
 	ginkgo.It("should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES", func() {
-		host := "proxyssl.foo.com"
+		host := proxySSLHost
 		annotations := make(map[string]string)
 		annotations["nginx.ingress.kubernetes.io/proxy-ssl-secret"] = f.Namespace + "/" + host
 		annotations["nginx.ingress.kubernetes.io/proxy-ssl-ciphers"] = "HIGH:!AES"
@@ -118,9 +120,9 @@ var _ = framework.DescribeAnnotation("proxy-ssl-*", func() {
 			Expect().
 			Status(http.StatusOK)
 	})
-
+	//nolint:dupl // Ignore dupl errors for similar test case
 	ginkgo.It("should set valid proxy-ssl-secret, proxy-ssl-protocols", func() {
-		host := "proxyssl.foo.com"
+		host := proxySSLHost
 		annotations := make(map[string]string)
 		annotations["nginx.ingress.kubernetes.io/proxy-ssl-secret"] = f.Namespace + "/" + host
 		annotations["nginx.ingress.kubernetes.io/proxy-ssl-protocols"] = "TLSv1.2 TLSv1.3"
@@ -195,7 +197,6 @@ var _ = framework.DescribeAnnotation("proxy-ssl-*", func() {
 				strings.Contains(server, "proxy_ssl_certificate_key"))
 		})
 	})
-
 })
 
 func assertProxySSL(f *framework.Framework, host, sslName, ciphers, protocols, verify string, depth int, proxySSLServerName string) {
diff --git a/test/e2e/annotations/rewrite.go b/test/e2e/annotations/rewrite.go
index 79738b984..173df29f0 100644
--- a/test/e2e/annotations/rewrite.go
+++ b/test/e2e/annotations/rewrite.go
@@ -27,6 +27,8 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const rewriteHost = "rewrite.bar.com"
+
 var _ = framework.DescribeAnnotation("rewrite-target use-regex enable-rewrite-log", func() {
 	f := framework.NewDefaultFramework("rewrite")
 
@@ -37,7 +39,7 @@ var _ = framework.DescribeAnnotation("rewrite-target use-regex enable-rewrite-lo
 	ginkgo.It("should write rewrite logs", func() {
 		ginkgo.By("setting enable-rewrite-log annotation")
 
-		host := "rewrite.bar.com"
+		host := rewriteHost
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/rewrite-target":     "/",
 			"nginx.ingress.kubernetes.io/enable-rewrite-log": "true",
@@ -64,7 +66,7 @@ var _ = framework.DescribeAnnotation("rewrite-target use-regex enable-rewrite-lo
 	})
 
 	ginkgo.It("should use correct longest path match", func() {
-		host := "rewrite.bar.com"
+		host := rewriteHost
 
 		ginkgo.By("creating a regular ingress definition")
 		ing := framework.NewSingleIngress("kube-lego", "/.well-known/acme/challenge", host, f.Namespace, framework.EchoService, 80, nil)
@@ -109,10 +111,10 @@ var _ = framework.DescribeAnnotation("rewrite-target use-regex enable-rewrite-lo
 	})
 
 	ginkgo.It("should use ~* location modifier if regex annotation is present", func() {
-		host := "rewrite.bar.com"
+		host := rewriteHost
 
 		ginkgo.By("creating a regular ingress definition")
-		ing := framework.NewSingleIngress("foo", "/foo", host, f.Namespace, framework.EchoService, 80, nil)
+		ing := framework.NewSingleIngress(fooHost, "/foo", host, f.Namespace, framework.EchoService, 80, nil)
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxServer(host,
@@ -156,10 +158,10 @@ var _ = framework.DescribeAnnotation("rewrite-target use-regex enable-rewrite-lo
 	})
 
 	ginkgo.It("should fail to use longest match for documented warning", func() {
-		host := "rewrite.bar.com"
+		host := rewriteHost
 
 		ginkgo.By("creating a regular ingress definition")
-		ing := framework.NewSingleIngress("foo", "/foo/bar/bar", host, f.Namespace, framework.EchoService, 80, nil)
+		ing := framework.NewSingleIngress(fooHost, "/foo/bar/bar", host, f.Namespace, framework.EchoService, 80, nil)
 		f.EnsureIngress(ing)
 
 		ginkgo.By(`creating an ingress definition with the use-regex annotation`)
@@ -188,7 +190,7 @@ var _ = framework.DescribeAnnotation("rewrite-target use-regex enable-rewrite-lo
 	})
 
 	ginkgo.It("should allow for custom rewrite parameters", func() {
-		host := "rewrite.bar.com"
+		host := rewriteHost
 
 		ginkgo.By(`creating an ingress definition with the use-regex annotation`)
 		annotations := map[string]string{
diff --git a/test/e2e/annotations/serversnippet.go b/test/e2e/annotations/serversnippet.go
index df1383bdb..e74fa37f5 100644
--- a/test/e2e/annotations/serversnippet.go
+++ b/test/e2e/annotations/serversnippet.go
@@ -89,6 +89,5 @@ var _ = framework.DescribeAnnotation("server-snippet", func() {
 			Status(http.StatusOK).Headers().
 			NotContainsKey("Foo").
 			NotContainsKey("Xpto")
-
 	})
 })
diff --git a/test/e2e/annotations/serviceupstream.go b/test/e2e/annotations/serviceupstream.go
index 0606a2d61..1d80f304a 100644
--- a/test/e2e/annotations/serviceupstream.go
+++ b/test/e2e/annotations/serviceupstream.go
@@ -27,6 +27,8 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const dbgCmd = "/dbg backends all"
+
 var _ = framework.DescribeAnnotation("service-upstream", func() {
 	f := framework.NewDefaultFramework("serviceupstream")
 	host := "serviceupstream"
@@ -57,10 +59,9 @@ var _ = framework.DescribeAnnotation("service-upstream", func() {
 
 			ginkgo.By("checking if the Service Cluster IP and Port are used")
 			s := f.GetService(f.Namespace, framework.EchoService)
-			dbgCmd := "/dbg backends all"
 			output, err := f.ExecIngressPod(dbgCmd)
 			assert.Nil(ginkgo.GinkgoT(), err)
-			assert.Contains(ginkgo.GinkgoT(), output, fmt.Sprintf(`"address": "%s"`, s.Spec.ClusterIP))
+			assert.Contains(ginkgo.GinkgoT(), output, fmt.Sprintf(`"address": %q`, s.Spec.ClusterIP))
 		})
 	})
 
@@ -86,10 +87,9 @@ var _ = framework.DescribeAnnotation("service-upstream", func() {
 
 			ginkgo.By("checking if the Service Cluster IP and Port are used")
 			s := f.GetService(f.Namespace, framework.EchoService)
-			dbgCmd := "/dbg backends all"
 			output, err := f.ExecIngressPod(dbgCmd)
 			assert.Nil(ginkgo.GinkgoT(), err)
-			assert.Contains(ginkgo.GinkgoT(), output, fmt.Sprintf(`"address": "%s"`, s.Spec.ClusterIP))
+			assert.Contains(ginkgo.GinkgoT(), output, fmt.Sprintf(`"address": %q`, s.Spec.ClusterIP))
 		})
 	})
 
@@ -117,10 +117,9 @@ var _ = framework.DescribeAnnotation("service-upstream", func() {
 
 			ginkgo.By("checking if the Service Cluster IP and Port are not used")
 			s := f.GetService(f.Namespace, framework.EchoService)
-			dbgCmd := "/dbg backends all"
 			output, err := f.ExecIngressPod(dbgCmd)
 			assert.Nil(ginkgo.GinkgoT(), err)
-			assert.NotContains(ginkgo.GinkgoT(), output, fmt.Sprintf(`"address": "%s"`, s.Spec.ClusterIP))
+			assert.NotContains(ginkgo.GinkgoT(), output, fmt.Sprintf(`"address": %q`, s.Spec.ClusterIP))
 		})
 	})
 })
diff --git a/test/e2e/annotations/upstreamhashby.go b/test/e2e/annotations/upstreamhashby.go
index 023a094aa..1b8106662 100644
--- a/test/e2e/annotations/upstreamhashby.go
+++ b/test/e2e/annotations/upstreamhashby.go
@@ -39,12 +39,13 @@ func startIngress(f *framework.Framework, annotations map[string]string) map[str
 			return strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
 		})
 
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	err := wait.Poll(framework.Poll, framework.DefaultTimeout, func() (bool, error) {
-
 		resp := f.HTTPTestClient().
 			GET("/").
 			WithHeader("Host", host).
 			Expect().Raw()
+		defer resp.Body.Close()
 
 		if resp.StatusCode == http.StatusOK {
 			return true, nil
@@ -55,7 +56,9 @@ func startIngress(f *framework.Framework, annotations map[string]string) map[str
 
 	assert.Nil(ginkgo.GinkgoT(), err)
 
-	re, _ := regexp.Compile(fmt.Sprintf(`Hostname: %v.*`, framework.EchoService))
+	re, err := regexp.Compile(fmt.Sprintf(`Hostname: %v.*`, framework.EchoService))
+	assert.Nil(ginkgo.GinkgoT(), err, "error compiling regex")
+
 	podMap := map[string]bool{}
 
 	for i := 0; i < 100; i++ {
diff --git a/test/e2e/dbg/main.go b/test/e2e/dbg/main.go
index 2df57469d..6c0a22f69 100644
--- a/test/e2e/dbg/main.go
+++ b/test/e2e/dbg/main.go
@@ -49,7 +49,7 @@ var _ = framework.IngressNginxDescribe("Debug CLI", func() {
 		assert.Nil(ginkgo.GinkgoT(), err)
 
 		// Should be 2: the default and the echo deployment
-		numUpstreams := len(strings.Split(strings.Trim(string(output), "\n"), "\n"))
+		numUpstreams := len(strings.Split(strings.Trim(output, "\n"), "\n"))
 		assert.Equal(ginkgo.GinkgoT(), numUpstreams, 2)
 	})
 
@@ -67,7 +67,7 @@ var _ = framework.IngressNginxDescribe("Debug CLI", func() {
 		output, err := f.ExecIngressPod(cmd)
 		assert.Nil(ginkgo.GinkgoT(), err)
 
-		backends := strings.Split(string(output), "\n")
+		backends := strings.Split(output, "\n")
 		assert.Greater(ginkgo.GinkgoT(), len(backends), 0)
 
 		getCmd := "/dbg backends get " + backends[0]
diff --git a/test/e2e/e2e.go b/test/e2e/e2e.go
index 28adf297d..25d714f88 100644
--- a/test/e2e/e2e.go
+++ b/test/e2e/e2e.go
@@ -48,7 +48,6 @@ import (
 	_ "k8s.io/ingress-nginx/test/e2e/settings/modsecurity"
 	_ "k8s.io/ingress-nginx/test/e2e/settings/ocsp"
 	_ "k8s.io/ingress-nginx/test/e2e/settings/validations"
-
 	_ "k8s.io/ingress-nginx/test/e2e/ssl"
 	_ "k8s.io/ingress-nginx/test/e2e/status"
 	_ "k8s.io/ingress-nginx/test/e2e/tcpudp"
diff --git a/test/e2e/e2e_test.go b/test/e2e/e2e_test.go
index 4a7a48d92..2e556cf6d 100644
--- a/test/e2e/e2e_test.go
+++ b/test/e2e/e2e_test.go
@@ -26,6 +26,7 @@ func init() {
 	testing.Init()
 	framework.RegisterParseFlags()
 }
+
 func TestE2E(t *testing.T) {
 	RunE2ETests(t)
 }
diff --git a/test/e2e/endpointslices/longname.go b/test/e2e/endpointslices/longname.go
index 0adb66767..b2242daac 100644
--- a/test/e2e/endpointslices/longname.go
+++ b/test/e2e/endpointslices/longname.go
@@ -36,7 +36,6 @@ var _ = framework.IngressNginxDescribe("[Endpointslices] long service name", fun
 	})
 
 	ginkgo.It("should return 200 when service name has max allowed number of characters 63", func() {
-
 		annotations := make(map[string]string)
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, name, 80, annotations)
 		f.EnsureIngress(ing)
diff --git a/test/e2e/endpointslices/topology.go b/test/e2e/endpointslices/topology.go
index 2197bcb53..38c5f8b76 100644
--- a/test/e2e/endpointslices/topology.go
+++ b/test/e2e/endpointslices/topology.go
@@ -40,7 +40,6 @@ var _ = framework.IngressNginxDescribeSerial("[TopologyHints] topology aware rou
 	})
 
 	ginkgo.It("should return 200 when service has topology hints", func() {
-
 		annotations := make(map[string]string)
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
@@ -85,7 +84,7 @@ var _ = framework.IngressNginxDescribeSerial("[TopologyHints] topology aware rou
 		}
 
 		if gotHints {
-			//we have 2 replics, if there is just one backend it means that we are routing according slices hints to same zone as controller is
+			// we have 2 replics, if there is just one backend it means that we are routing according slices hints to same zone as controller is
 			assert.Equal(ginkgo.GinkgoT(), 1, gotBackends)
 		} else {
 			// two replicas should have two endpoints without topology hints
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 93e1811ec..7ac150dcf 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -50,7 +50,7 @@ var HTTPBunImage = os.Getenv("HTTPBUN_IMAGE")
 const EchoImage = "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:4938d1d91a2b7d19454460a8c1b010b89f6ff92d2987fd889ac3e8fc3b70d91a"
 
 // TODO: change all Deployment functions to use these options
-// in order to reduce complexity and have a unified API accross the
+// in order to reduce complexity and have a unified API across the
 // framework
 type deploymentOptions struct {
 	name           string
@@ -317,7 +317,7 @@ func (f *Framework) GetNginxBaseImage() string {
 
 // NGINXDeployment creates a new simple NGINX Deployment using NGINX base image
 // and passing the desired configuration
-func (f *Framework) NGINXDeployment(name string, cfg string, waitendpoint bool) {
+func (f *Framework) NGINXDeployment(name, cfg string, waitendpoint bool) {
 	cfgMap := map[string]string{
 		"nginx.conf": cfg,
 	}
@@ -389,7 +389,7 @@ func (f *Framework) NGINXDeployment(name string, cfg string, waitendpoint bool)
 }
 
 // NGINXWithConfigDeployment creates an NGINX deployment using a configmap containing the nginx.conf configuration
-func (f *Framework) NGINXWithConfigDeployment(name string, cfg string) {
+func (f *Framework) NGINXWithConfigDeployment(name, cfg string) {
 	f.NGINXDeployment(name, cfg, true)
 }
 
@@ -487,7 +487,8 @@ func (f *Framework) NewGRPCBinDeployment() {
 }
 
 func newDeployment(name, namespace, image string, port int32, replicas int32, command []string, args []string, env []corev1.EnvVar,
-	volumeMounts []corev1.VolumeMount, volumes []corev1.Volume, setProbe bool) *appsv1.Deployment {
+	volumeMounts []corev1.VolumeMount, volumes []corev1.Volume, setProbe bool,
+) *appsv1.Deployment {
 	probe := &corev1.Probe{
 		InitialDelaySeconds: 2,
 		PeriodSeconds:       1,
@@ -559,12 +560,12 @@ func newDeployment(name, namespace, image string, port int32, replicas int32, co
 	return d
 }
 
-func (f *Framework) NewDeployment(name, image string, port int32, replicas int32) {
+func (f *Framework) NewDeployment(name, image string, port, replicas int32) {
 	f.NewDeploymentWithOpts(name, image, port, replicas, nil, nil, nil, nil, nil, true)
 }
 
 // NewDeployment creates a new deployment in a particular namespace.
-func (f *Framework) NewDeploymentWithOpts(name, image string, port int32, replicas int32, command []string, args []string, env []corev1.EnvVar, volumeMounts []corev1.VolumeMount, volumes []corev1.Volume, setProbe bool) {
+func (f *Framework) NewDeploymentWithOpts(name, image string, port, replicas int32, command, args []string, env []corev1.EnvVar, volumeMounts []corev1.VolumeMount, volumes []corev1.Volume, setProbe bool) {
 	deployment := newDeployment(name, f.Namespace, image, port, replicas, command, args, env, volumeMounts, volumes, setProbe)
 
 	f.EnsureDeployment(deployment)
@@ -606,7 +607,7 @@ func (f *Framework) DeleteDeployment(name string) error {
 	})
 	assert.Nil(ginkgo.GinkgoT(), err, "deleting deployment")
 
-	return waitForPodsDeleted(f.KubeClientSet, 2*time.Minute, f.Namespace, metav1.ListOptions{
+	return waitForPodsDeleted(f.KubeClientSet, 2*time.Minute, f.Namespace, &metav1.ListOptions{
 		LabelSelector: labelSelectorToString(d.Spec.Selector.MatchLabels),
 	})
 }
diff --git a/test/e2e/framework/exec.go b/test/e2e/framework/exec.go
index 07bf09be8..9e4b55122 100644
--- a/test/e2e/framework/exec.go
+++ b/test/e2e/framework/exec.go
@@ -66,6 +66,7 @@ func (f *Framework) ExecCommand(pod *corev1.Pod, command string) (string, error)
 		execErr bytes.Buffer
 	)
 
+	//nolint:gosec // Ignore G204 error
 	cmd := exec.Command("/bin/bash", "-c", fmt.Sprintf("%v exec --namespace %s %s --container controller -- %s", KubectlPath, pod.Namespace, pod.Name, command))
 	cmd.Stdout = &execOut
 	cmd.Stderr = &execErr
@@ -73,7 +74,6 @@ func (f *Framework) ExecCommand(pod *corev1.Pod, command string) (string, error)
 	err := cmd.Run()
 	if err != nil {
 		return "", fmt.Errorf("could not execute '%s %s': %v", cmd.Path, cmd.Args, err)
-
 	}
 
 	if execErr.Len() > 0 {
@@ -91,6 +91,7 @@ func (f *Framework) NamespaceContent() (string, error) {
 		execErr bytes.Buffer
 	)
 
+	//nolint:gosec // Ignore G204 error
 	cmd := exec.Command("/bin/bash", "-c", fmt.Sprintf("%v get pods,services,endpoints,deployments --namespace %s", KubectlPath, f.Namespace))
 	cmd.Stdout = &execOut
 	cmd.Stderr = &execErr
@@ -98,7 +99,6 @@ func (f *Framework) NamespaceContent() (string, error) {
 	err := cmd.Run()
 	if err != nil {
 		return "", fmt.Errorf("could not execute '%s %s': %v", cmd.Path, cmd.Args, err)
-
 	}
 
 	eout := strings.TrimSpace(execErr.String())
@@ -110,7 +110,7 @@ func (f *Framework) NamespaceContent() (string, error) {
 }
 
 // newIngressController deploys a new NGINX Ingress controller in a namespace
-func (f *Framework) newIngressController(namespace string, namespaceOverlay string) error {
+func (f *Framework) newIngressController(namespace, namespaceOverlay string) error {
 	// Creates an nginx deployment
 	isChroot, ok := os.LookupEnv("IS_CHROOT")
 	if !ok {
@@ -130,12 +130,11 @@ func (f *Framework) newIngressController(namespace string, namespaceOverlay stri
 	return nil
 }
 
-var (
-	proxyRegexp = regexp.MustCompile("Starting to serve on .*:([0-9]+)")
-)
+var proxyRegexp = regexp.MustCompile(`Starting to serve on .*:(\d+)`)
 
 // KubectlProxy creates a proxy to kubernetes apiserver
 func (f *Framework) KubectlProxy(port int) (int, *exec.Cmd, error) {
+	//nolint:gosec // Ignore G204 error
 	cmd := exec.Command("/bin/bash", "-c", fmt.Sprintf("%s proxy --accept-hosts=.* --address=0.0.0.0 --port=%d", KubectlPath, port))
 	stdout, stderr, err := startCmdAndStreamOutput(cmd)
 	if err != nil {
@@ -163,6 +162,7 @@ func (f *Framework) KubectlProxy(port int) (int, *exec.Cmd, error) {
 }
 
 func (f *Framework) UninstallChart() error {
+	//nolint:gosec //Ignore G204 error
 	cmd := exec.Command("helm", "uninstall", "--namespace", f.Namespace, "nginx-ingress")
 	_, err := cmd.CombinedOutput()
 	if err != nil {
diff --git a/test/e2e/framework/fastcgi_helloserver.go b/test/e2e/framework/fastcgi_helloserver.go
index 719048c06..73f9ef340 100644
--- a/test/e2e/framework/fastcgi_helloserver.go
+++ b/test/e2e/framework/fastcgi_helloserver.go
@@ -14,6 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
+//nolint:dupl // Ignore dupl errors for similar test case
 package framework
 
 import (
@@ -75,7 +76,7 @@ func (f *Framework) NewNewFastCGIHelloServerDeploymentWithReplicas(replicas int3
 
 	d := f.EnsureDeployment(deployment)
 
-	err := waitForPodsReady(f.KubeClientSet, DefaultTimeout, int(replicas), f.Namespace, metav1.ListOptions{
+	err := waitForPodsReady(f.KubeClientSet, DefaultTimeout, int(replicas), f.Namespace, &metav1.ListOptions{
 		LabelSelector: fields.SelectorFromSet(fields.Set(d.Spec.Template.ObjectMeta.Labels)).String(),
 	})
 	assert.Nil(ginkgo.GinkgoT(), err, "failed to wait for to become ready")
diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index 69f6dae78..b62ad691c 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -49,10 +49,8 @@ const (
 	HTTPS RequestScheme = "https"
 )
 
-var (
-	// KubectlPath defines the full path of the kubectl binary
-	KubectlPath = "/usr/local/bin/kubectl"
-)
+// KubectlPath defines the full path of the kubectl binary
+var KubectlPath = "/usr/local/bin/kubectl"
 
 // Framework supports common operations used by e2e tests; it will keep a client & a namespace for you.
 type Framework struct {
@@ -131,7 +129,6 @@ func (f *Framework) CreateEnvironment() {
 
 		f.KubeClientSet, err = kubernetes.NewForConfig(f.KubeConfig)
 		assert.Nil(ginkgo.GinkgoT(), err, "creating a kubernetes client")
-
 	}
 
 	f.Namespace, err = CreateKubeNamespace(f.BaseName, f.KubeClientSet)
@@ -250,9 +247,9 @@ func (f *Framework) GetNginxPodIP() string {
 }
 
 // GetURL returns the URL should be used to make a request to NGINX
-func (f *Framework) GetURL(scheme RequestScheme) string {
+func (f *Framework) GetURL(requestScheme RequestScheme) string {
 	ip := f.GetNginxIP()
-	return fmt.Sprintf("%v://%v", scheme, ip)
+	return fmt.Sprintf("%v://%v", requestScheme, ip)
 }
 
 // GetIngressNGINXPod returns the ingress controller running pod
@@ -270,6 +267,7 @@ func (f *Framework) updateIngressNGINXPod() error {
 // WaitForNginxServer waits until the nginx configuration contains a particular server section.
 // `cfg` passed to matcher is normalized by replacing all tabs and spaces with single space.
 func (f *Framework) WaitForNginxServer(name string, matcher func(cfg string) bool) {
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	err := wait.Poll(Poll, DefaultTimeout, f.matchNginxConditions(name, matcher))
 	assert.Nil(ginkgo.GinkgoT(), err, "waiting for nginx server condition/s")
 	Sleep(1 * time.Second)
@@ -278,13 +276,15 @@ func (f *Framework) WaitForNginxServer(name string, matcher func(cfg string) boo
 // WaitForNginxConfiguration waits until the nginx configuration contains a particular configuration
 // `cfg` passed to matcher is normalized by replacing all tabs and spaces with single space.
 func (f *Framework) WaitForNginxConfiguration(matcher func(cfg string) bool) {
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	err := wait.Poll(Poll, DefaultTimeout, f.matchNginxConditions("", matcher))
 	assert.Nil(ginkgo.GinkgoT(), err, "waiting for nginx server condition/s")
 	Sleep(1 * time.Second)
 }
 
 // WaitForNginxCustomConfiguration waits until the nginx configuration given part (from, to) contains a particular configuration
-func (f *Framework) WaitForNginxCustomConfiguration(from string, to string, matcher func(cfg string) bool) {
+func (f *Framework) WaitForNginxCustomConfiguration(from, to string, matcher func(cfg string) bool) {
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	err := wait.Poll(Poll, DefaultTimeout, f.matchNginxCustomConditions(from, to, matcher))
 	assert.Nil(ginkgo.GinkgoT(), err, "waiting for nginx server condition/s")
 }
@@ -325,7 +325,7 @@ func (f *Framework) matchNginxConditions(name string, matcher func(cfg string) b
 	}
 }
 
-func (f *Framework) matchNginxCustomConditions(from string, to string, matcher func(cfg string) bool) wait.ConditionFunc {
+func (f *Framework) matchNginxCustomConditions(from, to string, matcher func(cfg string) bool) wait.ConditionFunc {
 	return func() (bool, error) {
 		cmd := fmt.Sprintf("cat /etc/nginx/nginx.conf| awk '/%v/,/%v/'", from, to)
 
@@ -395,7 +395,7 @@ func (f *Framework) CreateConfigMap(name string, data map[string]string) {
 }
 
 // UpdateNginxConfigMapData updates single field in ingress-nginx's nginx-ingress-controller map data
-func (f *Framework) UpdateNginxConfigMapData(key string, value string) {
+func (f *Framework) UpdateNginxConfigMapData(key, value string) {
 	config, err := f.getConfigMap("nginx-ingress-controller")
 	assert.Nil(ginkgo.GinkgoT(), err)
 	assert.NotNil(ginkgo.GinkgoT(), config, "expected a configmap but none returned")
@@ -421,6 +421,7 @@ func (f *Framework) WaitForReload(fn func()) {
 	fn()
 
 	count := 0
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	err := wait.Poll(1*time.Second, DefaultTimeout, func() (bool, error) {
 		reloads := getReloadCount(f.pod, f.Namespace, f.KubeClientSet)
 		// most of the cases reload the ingress controller
@@ -441,8 +442,8 @@ func getReloadCount(pod *v1.Pod, namespace string, client kubernetes.Interface)
 	assert.Nil(ginkgo.GinkgoT(), err, "obtaining NGINX Pod")
 
 	reloadCount := 0
-	for _, e := range events.Items {
-		if e.Reason == "RELOAD" && e.Type == v1.EventTypeNormal {
+	for i := range events.Items {
+		if events.Items[i].Reason == "RELOAD" && events.Items[i].Type == v1.EventTypeNormal {
 			reloadCount++
 		}
 	}
@@ -457,7 +458,7 @@ func (f *Framework) DeleteNGINXPod(grace int64) {
 
 	err := f.KubeClientSet.CoreV1().Pods(ns).Delete(context.TODO(), f.pod.GetName(), *metav1.NewDeleteOptions(grace))
 	assert.Nil(ginkgo.GinkgoT(), err, "deleting ingress nginx pod")
-
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	err = wait.Poll(Poll, DefaultTimeout, func() (bool, error) {
 		err := f.updateIngressNGINXPod()
 		if err != nil || f.pod == nil {
@@ -487,7 +488,7 @@ func (f *Framework) HTTPTestClientWithTLSConfig(config *tls.Config) *httpexpect.
 func (f *Framework) newHTTPTestClient(config *tls.Config, setIngressURL bool) *httpexpect.HTTPRequest {
 	if config == nil {
 		config = &tls.Config{
-			InsecureSkipVerify: true,
+			InsecureSkipVerify: true, //nolint:gosec // Ignore the gosec error in testing
 		}
 	}
 	var baseURL string
@@ -507,12 +508,13 @@ func (f *Framework) newHTTPTestClient(config *tls.Config, setIngressURL bool) *h
 
 // WaitForNginxListening waits until NGINX starts accepting connections on a port
 func (f *Framework) WaitForNginxListening(port int) {
-	err := waitForPodsReady(f.KubeClientSet, DefaultTimeout, 1, f.Namespace, metav1.ListOptions{
+	err := waitForPodsReady(f.KubeClientSet, DefaultTimeout, 1, f.Namespace, &metav1.ListOptions{
 		LabelSelector: "app.kubernetes.io/name=ingress-nginx",
 	})
 	assert.Nil(ginkgo.GinkgoT(), err, "waiting for ingress pods to be ready")
 
 	podIP := f.GetNginxIP()
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	err = wait.Poll(500*time.Millisecond, DefaultTimeout, func() (bool, error) {
 		hostPort := net.JoinHostPort(podIP, fmt.Sprintf("%v", port))
 		conn, err := net.Dial("tcp", hostPort)
@@ -529,7 +531,7 @@ func (f *Framework) WaitForNginxListening(port int) {
 
 // WaitForPod waits for a specific Pod to be ready, using a label selector
 func (f *Framework) WaitForPod(selector string, timeout time.Duration, shouldFail bool) {
-	err := waitForPodsReady(f.KubeClientSet, timeout, 1, f.Namespace, metav1.ListOptions{
+	err := waitForPodsReady(f.KubeClientSet, timeout, 1, f.Namespace, &metav1.ListOptions{
 		LabelSelector: selector,
 	})
 
@@ -541,7 +543,7 @@ func (f *Framework) WaitForPod(selector string, timeout time.Duration, shouldFai
 }
 
 // UpdateDeployment runs the given updateFunc on the deployment and waits for it to be updated
-func UpdateDeployment(kubeClientSet kubernetes.Interface, namespace string, name string, replicas int, updateFunc func(d *appsv1.Deployment) error) error {
+func UpdateDeployment(kubeClientSet kubernetes.Interface, namespace, name string, replicas int, updateFunc func(d *appsv1.Deployment) error) error {
 	deployment, err := kubeClientSet.AppsV1().Deployments(namespace).Get(context.TODO(), name, metav1.GetOptions{})
 	if err != nil {
 		return err
@@ -571,7 +573,7 @@ func UpdateDeployment(kubeClientSet kubernetes.Interface, namespace string, name
 		}
 	}
 
-	err = waitForPodsReady(kubeClientSet, DefaultTimeout, replicas, namespace, metav1.ListOptions{
+	err = waitForPodsReady(kubeClientSet, DefaultTimeout, replicas, namespace, &metav1.ListOptions{
 		LabelSelector: fields.SelectorFromSet(fields.Set(deployment.Spec.Template.ObjectMeta.Labels)).String(),
 	})
 	if err != nil {
@@ -582,6 +584,7 @@ func UpdateDeployment(kubeClientSet kubernetes.Interface, namespace string, name
 }
 
 func waitForDeploymentRollout(kubeClientSet kubernetes.Interface, resource *appsv1.Deployment) error {
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	return wait.Poll(Poll, 5*time.Minute, func() (bool, error) {
 		d, err := kubeClientSet.AppsV1().Deployments(resource.Namespace).Get(context.TODO(), resource.Name, metav1.GetOptions{})
 		if apierrors.IsNotFound(err) {
@@ -605,7 +608,7 @@ func waitForDeploymentRollout(kubeClientSet kubernetes.Interface, resource *apps
 }
 
 // UpdateIngress runs the given updateFunc on the ingress
-func UpdateIngress(kubeClientSet kubernetes.Interface, namespace string, name string, updateFunc func(d *networking.Ingress) error) error {
+func UpdateIngress(kubeClientSet kubernetes.Interface, namespace, name string, updateFunc func(d *networking.Ingress) error) error {
 	ingress, err := kubeClientSet.NetworkingV1().Ingresses(namespace).Get(context.TODO(), name, metav1.GetOptions{})
 	if err != nil {
 		return err
diff --git a/test/e2e/framework/grpc_fortune_teller.go b/test/e2e/framework/grpc_fortune_teller.go
index 02ff3aae2..a7be46327 100644
--- a/test/e2e/framework/grpc_fortune_teller.go
+++ b/test/e2e/framework/grpc_fortune_teller.go
@@ -14,6 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
+//nolint:dupl // Ignore dupl errors for similar test case
 package framework
 
 import (
@@ -75,7 +76,7 @@ func (f *Framework) NewNewGRPCFortuneTellerDeploymentWithReplicas(replicas int32
 
 	d := f.EnsureDeployment(deployment)
 
-	err := waitForPodsReady(f.KubeClientSet, DefaultTimeout, int(replicas), f.Namespace, metav1.ListOptions{
+	err := waitForPodsReady(f.KubeClientSet, DefaultTimeout, int(replicas), f.Namespace, &metav1.ListOptions{
 		LabelSelector: fields.SelectorFromSet(fields.Set(d.Spec.Template.ObjectMeta.Labels)).String(),
 	})
 	assert.Nil(ginkgo.GinkgoT(), err, "failed to wait for to become ready")
diff --git a/test/e2e/framework/healthz.go b/test/e2e/framework/healthz.go
index b52c3ffde..3ee297b27 100644
--- a/test/e2e/framework/healthz.go
+++ b/test/e2e/framework/healthz.go
@@ -26,7 +26,7 @@ func (f *Framework) VerifyHealthz(ip string, statusCode int) error {
 	url := fmt.Sprintf("http://%v:10254/healthz", ip)
 
 	client := &http.Client{}
-	req, err := http.NewRequest(http.MethodGet, url, nil)
+	req, err := http.NewRequest(http.MethodGet, url, http.NoBody)
 	if err != nil {
 		return fmt.Errorf("creating GET request for URL %q failed: %v", url, err)
 	}
diff --git a/test/e2e/framework/httpexpect/match.go b/test/e2e/framework/httpexpect/match.go
index b031510c4..aad10b02e 100644
--- a/test/e2e/framework/httpexpect/match.go
+++ b/test/e2e/framework/httpexpect/match.go
@@ -23,7 +23,7 @@ type Match struct {
 	names      map[string]int
 }
 
-func makeMatch(chain chain, submatches []string, names []string) *Match {
+func makeMatch(chain chain, submatches, names []string) *Match {
 	if submatches == nil {
 		submatches = []string{}
 	}
diff --git a/test/e2e/framework/httpexpect/object.go b/test/e2e/framework/httpexpect/object.go
index f7c27faaf..49dcf5659 100644
--- a/test/e2e/framework/httpexpect/object.go
+++ b/test/e2e/framework/httpexpect/object.go
@@ -23,6 +23,8 @@ import (
 	"github.com/yudai/gojsondiff/formatter"
 )
 
+const unavailableMsg = " (unavailable)"
+
 // Object provides methods to inspect attached map[string]interface{} object
 // (Go representation of JSON object).
 type Object struct {
@@ -81,20 +83,21 @@ func diffValues(expected, actual interface{}) string {
 
 	var diff gojsondiff.Diff
 
-	if ve, ok := expected.(map[string]interface{}); ok {
+	switch ve := expected.(type) {
+	case map[string]interface{}:
 		if va, ok := actual.(map[string]interface{}); ok {
 			diff = differ.CompareObjects(ve, va)
 		} else {
-			return " (unavailable)"
+			return unavailableMsg
 		}
-	} else if ve, ok := expected.([]interface{}); ok {
+	case []interface{}:
 		if va, ok := actual.([]interface{}); ok {
 			diff = differ.CompareArrays(ve, va)
 		} else {
-			return " (unavailable)"
+			return unavailableMsg
 		}
-	} else {
-		return " (unavailable)"
+	default:
+		return unavailableMsg
 	}
 
 	config := formatter.AsciiFormatterConfig{
@@ -104,7 +107,7 @@ func diffValues(expected, actual interface{}) string {
 
 	str, err := f.Format(diff)
 	if err != nil {
-		return " (unavailable)"
+		return unavailableMsg
 	}
 
 	return "--- expected\n+++ actual\n" + str
diff --git a/test/e2e/framework/httpexpect/request.go b/test/e2e/framework/httpexpect/request.go
index d8edb42ce..0ae85dd79 100644
--- a/test/e2e/framework/httpexpect/request.go
+++ b/test/e2e/framework/httpexpect/request.go
@@ -65,7 +65,7 @@ func (h *HTTPRequest) DoRequest(method, rpath string) *HTTPRequest {
 
 	var request *http.Request
 	uri.Path = path.Join(uri.Path, rpath)
-	if request, err = http.NewRequest(method, uri.String(), nil); err != nil {
+	if request, err = http.NewRequest(method, uri.String(), http.NoBody); err != nil {
 		h.chain.fail(err.Error())
 	}
 
@@ -110,6 +110,7 @@ func (h *HTTPRequest) Expect() *HTTPResponse {
 	if err != nil {
 		h.chain.fail(err.Error())
 	}
+	defer response.Body.Close()
 
 	h.HTTPResponse.Response = response // set the HTTP response
 
diff --git a/test/e2e/framework/k8s.go b/test/e2e/framework/k8s.go
index fc3e59b08..7c067421d 100644
--- a/test/e2e/framework/k8s.go
+++ b/test/e2e/framework/k8s.go
@@ -47,7 +47,7 @@ func (f *Framework) EnsureSecret(secret *core.Secret) *core.Secret {
 }
 
 // GetConfigMap gets a ConfigMap object from the given namespace, name and returns it, throws error if it does not exist.
-func (f *Framework) GetConfigMap(namespace string, name string) *core.ConfigMap {
+func (f *Framework) GetConfigMap(namespace, name string) *core.ConfigMap {
 	cm, err := f.KubeClientSet.CoreV1().ConfigMaps(namespace).Get(context.TODO(), name, metav1.GetOptions{})
 	assert.Nil(ginkgo.GinkgoT(), err, "getting configmap")
 	assert.NotNil(ginkgo.GinkgoT(), cm, "expected a configmap but none returned")
@@ -73,7 +73,7 @@ func (f *Framework) EnsureConfigMap(configMap *core.ConfigMap) *core.ConfigMap {
 }
 
 // GetIngress gets an Ingress object from the given namespace, name and returns it, throws error if it does not exists.
-func (f *Framework) GetIngress(namespace string, name string) *networking.Ingress {
+func (f *Framework) GetIngress(namespace, name string) *networking.Ingress {
 	ing, err := f.KubeClientSet.NetworkingV1().Ingresses(namespace).Get(context.TODO(), name, metav1.GetOptions{})
 	assert.Nil(ginkgo.GinkgoT(), err, "getting ingress")
 	assert.NotNil(ginkgo.GinkgoT(), ing, "expected an ingress but none returned")
@@ -114,7 +114,7 @@ func (f *Framework) UpdateIngress(ingress *networking.Ingress) *networking.Ingre
 }
 
 // GetService gets a Service object from the given namespace, name and returns it, throws error if it does not exist.
-func (f *Framework) GetService(namespace string, name string) *core.Service {
+func (f *Framework) GetService(namespace, name string) *core.Service {
 	s, err := f.KubeClientSet.CoreV1().Services(namespace).Get(context.TODO(), name, metav1.GetOptions{})
 	assert.Nil(ginkgo.GinkgoT(), err, "getting service")
 	assert.NotNil(ginkgo.GinkgoT(), s, "expected a service but none returned")
@@ -143,16 +143,21 @@ func (f *Framework) EnsureDeployment(deployment *appsv1.Deployment) *appsv1.Depl
 }
 
 // waitForPodsReady waits for a given amount of time until a group of Pods is running in the given namespace.
-func waitForPodsReady(kubeClientSet kubernetes.Interface, timeout time.Duration, expectedReplicas int, namespace string, opts metav1.ListOptions) error {
+func waitForPodsReady(kubeClientSet kubernetes.Interface, timeout time.Duration, expectedReplicas int, namespace string, opts *metav1.ListOptions) error {
+	//nolint:staticcheck // TODO: will replace it since wait.PollImmediate is deprecated
 	return wait.PollImmediate(1*time.Second, timeout, func() (bool, error) {
-		pl, err := kubeClientSet.CoreV1().Pods(namespace).List(context.TODO(), opts)
+		pl, err := kubeClientSet.CoreV1().Pods(namespace).List(context.TODO(), *opts)
 		if err != nil {
 			return false, nil
 		}
 
 		r := 0
-		for _, p := range pl.Items {
-			if isRunning, _ := podRunningReady(&p); isRunning {
+		for i := range pl.Items {
+			isRunning, err := podRunningReady(&pl.Items[i])
+			if err != nil {
+				Logf("error checking if pod is running : %v", err)
+			}
+			if isRunning {
 				r++
 			}
 		}
@@ -166,9 +171,10 @@ func waitForPodsReady(kubeClientSet kubernetes.Interface, timeout time.Duration,
 }
 
 // waitForPodsDeleted waits for a given amount of time until a group of Pods are deleted in the given namespace.
-func waitForPodsDeleted(kubeClientSet kubernetes.Interface, timeout time.Duration, namespace string, opts metav1.ListOptions) error {
+func waitForPodsDeleted(kubeClientSet kubernetes.Interface, timeout time.Duration, namespace string, opts *metav1.ListOptions) error {
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	return wait.Poll(Poll, timeout, func() (bool, error) {
-		pl, err := kubeClientSet.CoreV1().Pods(namespace).List(context.TODO(), opts)
+		pl, err := kubeClientSet.CoreV1().Pods(namespace).List(context.TODO(), *opts)
 		if err != nil {
 			return false, nil
 		}
@@ -186,7 +192,7 @@ func WaitForEndpoints(kubeClientSet kubernetes.Interface, timeout time.Duration,
 	if expectedEndpoints == 0 {
 		return nil
 	}
-
+	//nolint:staticcheck // TODO: will replace it since wait.PollImmediate is deprecated
 	return wait.PollImmediate(Poll, timeout, func() (bool, error) {
 		endpoint, err := kubeClientSet.CoreV1().Endpoints(ns).Get(context.TODO(), name, metav1.GetOptions{})
 		if k8sErrors.IsNotFound(err) {
@@ -248,6 +254,7 @@ func isPodReady(p *core.Pod) bool {
 // getIngressNGINXPod returns the ingress controller running pod
 func getIngressNGINXPod(ns string, kubeClientSet kubernetes.Interface) (*core.Pod, error) {
 	var pod *core.Pod
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	err := wait.Poll(1*time.Second, DefaultTimeout, func() (bool, error) {
 		l, err := kubeClientSet.CoreV1().Pods(ns).List(context.TODO(), metav1.ListOptions{
 			LabelSelector: "app.kubernetes.io/name=ingress-nginx",
@@ -256,15 +263,16 @@ func getIngressNGINXPod(ns string, kubeClientSet kubernetes.Interface) (*core.Po
 			return false, nil
 		}
 
-		for _, p := range l.Items {
+		for i := range l.Items {
+			p := &l.Items[i]
 			if strings.HasPrefix(p.GetName(), "nginx-ingress-controller") {
-				isRunning, err := podRunningReady(&p)
+				isRunning, err := podRunningReady(p)
 				if err != nil {
 					continue
 				}
 
 				if isRunning {
-					pod = &p
+					pod = p
 					return true, nil
 				}
 			}
@@ -273,6 +281,7 @@ func getIngressNGINXPod(ns string, kubeClientSet kubernetes.Interface) (*core.Po
 		return false, nil
 	})
 	if err != nil {
+		//nolint:staticcheck // TODO: will replace it since wait.ErrWaitTimeout is deprecated
 		if err == wait.ErrWaitTimeout {
 			return nil, fmt.Errorf("timeout waiting at least one ingress-nginx pod running in namespace %v", ns)
 		}
@@ -285,7 +294,7 @@ func getIngressNGINXPod(ns string, kubeClientSet kubernetes.Interface) (*core.Po
 
 func createDeploymentWithRetries(c kubernetes.Interface, namespace string, obj *appsv1.Deployment) error {
 	if obj == nil {
-		return fmt.Errorf("Object provided to create is empty")
+		return fmt.Errorf("object provided to create is empty")
 	}
 	createFunc := func() (bool, error) {
 		_, err := c.AppsV1().Deployments(namespace).Create(context.TODO(), obj, metav1.CreateOptions{})
@@ -298,7 +307,7 @@ func createDeploymentWithRetries(c kubernetes.Interface, namespace string, obj *
 		if isRetryableAPIError(err) {
 			return false, nil
 		}
-		return false, fmt.Errorf("Failed to create object with non-retriable error: %v", err)
+		return false, fmt.Errorf("failed to create object with non-retriable error: %v", err)
 	}
 
 	return retryWithExponentialBackOff(createFunc)
@@ -306,7 +315,7 @@ func createDeploymentWithRetries(c kubernetes.Interface, namespace string, obj *
 
 func createSecretWithRetries(c kubernetes.Interface, namespace string, obj *core.Secret) error {
 	if obj == nil {
-		return fmt.Errorf("Object provided to create is empty")
+		return fmt.Errorf("object provided to create is empty")
 	}
 	createFunc := func() (bool, error) {
 		_, err := c.CoreV1().Secrets(namespace).Create(context.TODO(), obj, metav1.CreateOptions{})
@@ -319,14 +328,14 @@ func createSecretWithRetries(c kubernetes.Interface, namespace string, obj *core
 		if isRetryableAPIError(err) {
 			return false, nil
 		}
-		return false, fmt.Errorf("Failed to create object with non-retriable error: %v", err)
+		return false, fmt.Errorf("failed to create object with non-retriable error: %v", err)
 	}
 	return retryWithExponentialBackOff(createFunc)
 }
 
 func createServiceWithRetries(c kubernetes.Interface, namespace string, obj *core.Service) error {
 	if obj == nil {
-		return fmt.Errorf("Object provided to create is empty")
+		return fmt.Errorf("object provided to create is empty")
 	}
 	createFunc := func() (bool, error) {
 		_, err := c.CoreV1().Services(namespace).Create(context.TODO(), obj, metav1.CreateOptions{})
@@ -339,7 +348,7 @@ func createServiceWithRetries(c kubernetes.Interface, namespace string, obj *cor
 		if isRetryableAPIError(err) {
 			return false, nil
 		}
-		return false, fmt.Errorf("Failed to create object with non-retriable error: %v", err)
+		return false, fmt.Errorf("failed to create object with non-retriable error: %v", err)
 	}
 
 	return retryWithExponentialBackOff(createFunc)
@@ -347,7 +356,7 @@ func createServiceWithRetries(c kubernetes.Interface, namespace string, obj *cor
 
 func createIngressWithRetries(c kubernetes.Interface, namespace string, obj *networking.Ingress) error {
 	if obj == nil {
-		return fmt.Errorf("Object provided to create is empty")
+		return fmt.Errorf("object provided to create is empty")
 	}
 	createFunc := func() (bool, error) {
 		_, err := c.NetworkingV1().Ingresses(namespace).Create(context.TODO(), obj, metav1.CreateOptions{})
@@ -360,7 +369,7 @@ func createIngressWithRetries(c kubernetes.Interface, namespace string, obj *net
 		if isRetryableAPIError(err) {
 			return false, nil
 		}
-		return false, fmt.Errorf("Failed to create object with non-retriable error: %v", err)
+		return false, fmt.Errorf("failed to create object with non-retriable error: %v", err)
 	}
 
 	return retryWithExponentialBackOff(createFunc)
@@ -368,7 +377,7 @@ func createIngressWithRetries(c kubernetes.Interface, namespace string, obj *net
 
 func updateIngressWithRetries(c kubernetes.Interface, namespace string, obj *networking.Ingress) error {
 	if obj == nil {
-		return fmt.Errorf("Object provided to create is empty")
+		return fmt.Errorf("object provided to create is empty")
 	}
 	updateFunc := func() (bool, error) {
 		_, err := c.NetworkingV1().Ingresses(namespace).Update(context.TODO(), obj, metav1.UpdateOptions{})
@@ -378,7 +387,7 @@ func updateIngressWithRetries(c kubernetes.Interface, namespace string, obj *net
 		if isRetryableAPIError(err) {
 			return false, nil
 		}
-		return false, fmt.Errorf("Failed to update object with non-retriable error: %v", err)
+		return false, fmt.Errorf("failed to update object with non-retriable error: %v", err)
 	}
 
 	return retryWithExponentialBackOff(updateFunc)
diff --git a/test/e2e/framework/metrics.go b/test/e2e/framework/metrics.go
index 830237540..774f1bd7e 100644
--- a/test/e2e/framework/metrics.go
+++ b/test/e2e/framework/metrics.go
@@ -29,7 +29,7 @@ func (f *Framework) GetMetric(metricName, ip string) (*dto.MetricFamily, error)
 	url := fmt.Sprintf("http://%v:10254/metrics", ip)
 
 	client := &http.Client{}
-	req, err := http.NewRequest(http.MethodGet, url, nil)
+	req, err := http.NewRequest(http.MethodGet, url, http.NoBody)
 	if err != nil {
 		return nil, fmt.Errorf("creating GET request for URL %q failed: %v", url, err)
 	}
@@ -44,7 +44,6 @@ func (f *Framework) GetMetric(metricName, ip string) (*dto.MetricFamily, error)
 
 	var parser expfmt.TextParser
 	metrics, err := parser.TextToMetricFamilies(resp.Body)
-
 	if err != nil {
 		return nil, fmt.Errorf("reading text format failed: %v", err)
 	}
diff --git a/test/e2e/framework/ssl.go b/test/e2e/framework/ssl.go
index 52ceffc57..d6252fe47 100644
--- a/test/e2e/framework/ssl.go
+++ b/test/e2e/framework/ssl.go
@@ -93,8 +93,8 @@ func CreateIngressTLSSecret(client kubernetes.Interface, hosts []string, secretN
 // CreateIngressMASecret creates or updates a Secret containing a Mutual Auth
 // certificate-chain for the given Ingress and returns a TLS configuration suitable
 // for HTTP clients to use against that particular Ingress.
-func CreateIngressMASecret(client kubernetes.Interface, host string, secretName, namespace string) (*tls.Config, error) {
-	if len(host) == 0 {
+func CreateIngressMASecret(client kubernetes.Interface, host, secretName, namespace string) (*tls.Config, error) {
+	if host == "" {
 		return nil, fmt.Errorf("requires a non-empty host")
 	}
 
@@ -138,12 +138,13 @@ func CreateIngressMASecret(client kubernetes.Interface, host string, secretName,
 	return &tls.Config{
 		ServerName:         host,
 		Certificates:       []tls.Certificate{clientPair},
-		InsecureSkipVerify: true,
+		InsecureSkipVerify: true, //nolint:gosec // Ignore the gosec error in testing
 	}, nil
 }
 
 // WaitForTLS waits until the TLS handshake with a given server completes successfully.
 func WaitForTLS(url string, tlsConfig *tls.Config) {
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	err := wait.Poll(Poll, DefaultTimeout, matchTLSServerName(url, tlsConfig))
 	assert.Nil(ginkgo.GinkgoT(), err, "waiting for TLS configuration in URL %s", url)
 }
@@ -160,7 +161,6 @@ func generateRSACert(host string, isCA bool, keyOut, certOut io.Writer) error {
 
 	serialNumberLimit := new(big.Int).Lsh(big.NewInt(1), 128)
 	serialNumber, err := rand.Int(rand.Reader, serialNumberLimit)
-
 	if err != nil {
 		return fmt.Errorf("failed to generate serial number: %s", err)
 	}
@@ -329,7 +329,7 @@ func tlsConfig(serverName string, pemCA []byte) (*tls.Config, error) {
 	if !rootCAPool.AppendCertsFromPEM(pemCA) {
 		return nil, fmt.Errorf("error creating CA certificate pool (%s)", serverName)
 	}
-	return &tls.Config{
+	return &tls.Config{ //nolint:gosec // Ignore the gosec error in testing
 		ServerName: serverName,
 		RootCAs:    rootCAPool,
 	}, nil
diff --git a/test/e2e/framework/test_context.go b/test/e2e/framework/test_context.go
index be4cd6e5e..961357885 100644
--- a/test/e2e/framework/test_context.go
+++ b/test/e2e/framework/test_context.go
@@ -23,7 +23,7 @@ import (
 // TestContextType describes the client context to use in communications with the Kubernetes API.
 type TestContextType struct {
 	KubeHost string
-	//KubeConfig  string
+	// KubeConfig  string
 	KubeContext string
 }
 
@@ -33,7 +33,6 @@ var TestContext TestContextType
 // registerCommonFlags registers flags common to all e2e test suites.
 func registerCommonFlags() {
 	flag.StringVar(&TestContext.KubeHost, "kubernetes-host", "http://127.0.0.1:8080", "The kubernetes host, or apiserver, to connect to")
-	//flag.StringVar(&TestContext.KubeConfig, "kubernetes-config", os.Getenv(clientcmd.RecommendedConfigPathEnvVar), "Path to config containing embedded authinfo for kubernetes. Default value is from environment variable "+clientcmd.RecommendedConfigPathEnvVar)
 	flag.StringVar(&TestContext.KubeContext, "kubernetes-context", "", "config context to use for kubernetes. If unset, will use value from 'current-context'")
 }
 
diff --git a/test/e2e/framework/util.go b/test/e2e/framework/util.go
index 90f15eb1b..abdb168e1 100644
--- a/test/e2e/framework/util.go
+++ b/test/e2e/framework/util.go
@@ -49,24 +49,24 @@ func nowStamp() string {
 	return time.Now().Format(time.StampMilli)
 }
 
-func log(level string, format string, args ...interface{}) {
+func logf(level, format string, args ...interface{}) {
 	fmt.Fprintf(ginkgo.GinkgoWriter, nowStamp()+": "+level+": "+format+"\n", args...)
 }
 
 // Logf logs to the INFO logs.
 func Logf(format string, args ...interface{}) {
-	log("INFO", format, args...)
+	logf("INFO", format, args...)
 }
 
 // Failf logs to the INFO logs and fails the test.
 func Failf(format string, args ...interface{}) {
 	msg := fmt.Sprintf(format, args...)
-	log("INFO", msg)
+	logf("INFO", msg)
 	ginkgo.Fail(nowStamp()+": "+msg, 1)
 }
 
 // RestclientConfig deserializes the contents of a kubeconfig file into a Config object.
-func RestclientConfig(config, context string) (*api.Config, error) {
+func RestclientConfig(config, newContext string) (*api.Config, error) {
 	Logf(">>> config: %s\n", config)
 	if config == "" {
 		return nil, fmt.Errorf("config file must be specified to load client config")
@@ -75,9 +75,9 @@ func RestclientConfig(config, context string) (*api.Config, error) {
 	if err != nil {
 		return nil, fmt.Errorf("error loading config: %v", err.Error())
 	}
-	if context != "" {
-		Logf(">>> context: %s\n", context)
-		c.CurrentContext = context
+	if newContext != "" {
+		Logf(">>> context: %s\n", newContext)
+		c.CurrentContext = newContext
 	}
 	return c, nil
 }
@@ -98,6 +98,7 @@ func createNamespace(baseName string, labels map[string]string, c kubernetes.Int
 	var got *corev1.Namespace
 	var err error
 
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	err = wait.Poll(Poll, DefaultTimeout, func() (bool, error) {
 		got, err = c.CoreV1().Namespaces().Create(context.TODO(), ns, metav1.CreateOptions{})
 		if err != nil {
@@ -114,13 +115,11 @@ func createNamespace(baseName string, labels map[string]string, c kubernetes.Int
 
 // CreateKubeNamespace creates a new namespace in the cluster
 func CreateKubeNamespace(baseName string, c kubernetes.Interface) (string, error) {
-
 	return createNamespace(baseName, nil, c)
 }
 
 // CreateKubeNamespaceWithLabel creates a new namespace with given labels in the cluster
 func CreateKubeNamespaceWithLabel(baseName string, labels map[string]string, c kubernetes.Interface) (string, error) {
-
 	return createNamespace(baseName, labels, c)
 }
 
@@ -150,7 +149,7 @@ func CreateIngressClass(namespace string, c kubernetes.Interface) (string, error
 			},
 		}, metav1.CreateOptions{})
 	if err != nil {
-		return "", fmt.Errorf("Unexpected error creating IngressClass %s: %v", icname, err)
+		return "", fmt.Errorf("unexpected error creating IngressClass %s: %v", icname, err)
 	}
 
 	_, err = c.RbacV1().ClusterRoles().Create(context.TODO(), &rbacv1.ClusterRole{
@@ -162,7 +161,7 @@ func CreateIngressClass(namespace string, c kubernetes.Interface) (string, error
 		}},
 	}, metav1.CreateOptions{})
 	if err != nil {
-		return "", fmt.Errorf("Unexpected error creating IngressClass ClusterRole %s: %v", icname, err)
+		return "", fmt.Errorf("unexpected error creating IngressClass ClusterRole %s: %v", icname, err)
 	}
 
 	_, err = c.RbacV1().ClusterRoleBindings().Create(context.TODO(), &rbacv1.ClusterRoleBinding{
@@ -184,7 +183,7 @@ func CreateIngressClass(namespace string, c kubernetes.Interface) (string, error
 		},
 	}, metav1.CreateOptions{})
 	if err != nil {
-		return "", fmt.Errorf("Unexpected error creating IngressClass ClusterRoleBinding %s: %v", icname, err)
+		return "", fmt.Errorf("unexpected error creating IngressClass ClusterRoleBinding %s: %v", icname, err)
 	}
 	return ic.Name, nil
 }
@@ -200,16 +199,16 @@ func deleteIngressClass(c kubernetes.Interface, ingressclass string) error {
 	}
 	err = c.NetworkingV1().IngressClasses().Delete(context.TODO(), ingressclass, deleteOptions)
 	if err != nil {
-		return fmt.Errorf("Unexpected error deleting IngressClass %s: %v", ingressclass, err)
+		return fmt.Errorf("unexpected error deleting IngressClass %s: %v", ingressclass, err)
 	}
 
 	err = c.RbacV1().ClusterRoleBindings().Delete(context.TODO(), ingressclass, deleteOptions)
 	if err != nil {
-		return fmt.Errorf("Unexpected error deleting IngressClass ClusterRoleBinding %s: %v", ingressclass, err)
+		return fmt.Errorf("unexpected error deleting IngressClass ClusterRoleBinding %s: %v", ingressclass, err)
 	}
 	err = c.RbacV1().ClusterRoles().Delete(context.TODO(), ingressclass, deleteOptions)
 	if err != nil {
-		return fmt.Errorf("Unexpected error deleting IngressClass ClusterRole %s: %v", ingressclass, err)
+		return fmt.Errorf("unexpected error deleting IngressClass ClusterRole %s: %v", ingressclass, err)
 	}
 
 	return nil
@@ -223,6 +222,7 @@ func GetIngressClassName(namespace string) *string {
 
 // WaitForKubeNamespaceNotExist waits until a namespaces is not present in the cluster
 func WaitForKubeNamespaceNotExist(c kubernetes.Interface, namespace string) error {
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	return wait.Poll(Poll, DefaultTimeout, namespaceNotExist(c, namespace))
 }
 
@@ -241,6 +241,7 @@ func namespaceNotExist(c kubernetes.Interface, namespace string) wait.ConditionF
 
 // WaitForNoPodsInNamespace waits until there are no pods running in a namespace
 func WaitForNoPodsInNamespace(c kubernetes.Interface, namespace string) error {
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	return wait.Poll(Poll, DefaultTimeout, noPodsInNamespace(c, namespace))
 }
 
@@ -267,15 +268,17 @@ func WaitForPodRunningInNamespace(c kubernetes.Interface, pod *corev1.Pod) error
 	if pod.Status.Phase == corev1.PodRunning {
 		return nil
 	}
-	return waitTimeoutForPodRunningInNamespace(c, pod.Name, pod.Namespace, DefaultTimeout)
+	return waitTimeoutForPodRunningInNamespace(c, pod.Name, pod.Namespace)
 }
 
-func waitTimeoutForPodRunningInNamespace(c kubernetes.Interface, podName, namespace string, timeout time.Duration) error {
+func waitTimeoutForPodRunningInNamespace(c kubernetes.Interface, podName, namespace string) error {
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	return wait.Poll(Poll, DefaultTimeout, podRunning(c, podName, namespace))
 }
 
 // WaitForSecretInNamespace waits a default amount of time for the specified secret is present in a particular namespace
 func WaitForSecretInNamespace(c kubernetes.Interface, namespace, name string) error {
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	return wait.Poll(Poll, DefaultTimeout, secretInNamespace(c, namespace, name))
 }
 
@@ -298,6 +301,7 @@ func secretInNamespace(c kubernetes.Interface, namespace, name string) wait.Cond
 
 // WaitForFileInFS waits a default amount of time for the specified file is present in the filesystem
 func WaitForFileInFS(file string) error {
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	return wait.Poll(Poll, DefaultTimeout, fileInFS(file))
 }
 
@@ -322,6 +326,7 @@ func fileInFS(file string) wait.ConditionFunc {
 
 // WaitForNoIngressInNamespace waits until there is no ingress object in a particular namespace
 func WaitForNoIngressInNamespace(c kubernetes.Interface, namespace, name string) error {
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	return wait.Poll(Poll, DefaultTimeout, noIngressInNamespace(c, namespace, name))
 }
 
@@ -344,6 +349,7 @@ func noIngressInNamespace(c kubernetes.Interface, namespace, name string) wait.C
 
 // WaitForIngressInNamespace waits until a particular ingress object exists namespace
 func WaitForIngressInNamespace(c kubernetes.Interface, namespace, name string) error {
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 	return wait.Poll(Poll, DefaultTimeout, ingressInNamespace(c, namespace, name))
 }
 
diff --git a/test/e2e/gracefulshutdown/grace_period.go b/test/e2e/gracefulshutdown/grace_period.go
index 12e2f3d67..123892f3a 100644
--- a/test/e2e/gracefulshutdown/grace_period.go
+++ b/test/e2e/gracefulshutdown/grace_period.go
@@ -33,7 +33,6 @@ var _ = framework.IngressNginxDescribe("[Shutdown] Grace period shutdown", func(
 	f := framework.NewDefaultFramework("shutdown-grace-period")
 
 	ginkgo.It("/healthz should return status code 500 during shutdown grace period", func() {
-
 		f.NewSlowEchoDeployment()
 
 		err := f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
@@ -83,6 +82,5 @@ var _ = framework.IngressNginxDescribe("[Shutdown] Grace period shutdown", func(
 		for _, err := range <-result {
 			assert.Nil(ginkgo.GinkgoT(), err)
 		}
-
 	})
 })
diff --git a/test/e2e/ingress/pathtype_exact.go b/test/e2e/ingress/pathtype_exact.go
index ae2902e9f..ccc76b5bc 100644
--- a/test/e2e/ingress/pathtype_exact.go
+++ b/test/e2e/ingress/pathtype_exact.go
@@ -35,14 +35,13 @@ var _ = framework.IngressNginxDescribe("[Ingress] [PathType] exact", func() {
 	})
 
 	ginkgo.It("should choose exact location for /exact", func() {
-
 		host := "exact.path"
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/configuration-snippet": `more_set_input_headers "pathType: exact";`,
 		}
 
-		var exactPathType = networking.PathTypeExact
+		exactPathType := networking.PathTypeExact
 		ing := framework.NewSingleIngress("exact", "/exact", host, f.Namespace, framework.EchoService, 80, annotations)
 		ing.Spec.Rules[0].IngressRuleValue.HTTP.Paths[0].PathType = &exactPathType
 		f.EnsureIngress(ing)
diff --git a/test/e2e/ingress/pathtype_mixed.go b/test/e2e/ingress/pathtype_mixed.go
index dd183bbb4..c55a2c32a 100644
--- a/test/e2e/ingress/pathtype_mixed.go
+++ b/test/e2e/ingress/pathtype_mixed.go
@@ -34,10 +34,9 @@ var _ = framework.IngressNginxDescribe("[Ingress] [PathType] mix Exact and Prefi
 		f.NewEchoDeployment()
 	})
 
-	var exactPathType = networking.PathTypeExact
+	exactPathType := networking.PathTypeExact
 
 	ginkgo.It("should choose the correct location", func() {
-
 		host := "mixed.path"
 
 		annotations := map[string]string{
diff --git a/test/e2e/leaks/lua_ssl.go b/test/e2e/leaks/lua_ssl.go
index e63a1e353..88285ba4b 100644
--- a/test/e2e/leaks/lua_ssl.go
+++ b/test/e2e/leaks/lua_ssl.go
@@ -87,14 +87,14 @@ func provisionIngress(hostname string, f *framework.Framework) {
 func checkIngress(hostname string, f *framework.Framework) {
 	resp := f.HTTPTestClientWithTLSConfig(&tls.Config{
 		ServerName:         hostname,
-		InsecureSkipVerify: true,
+		InsecureSkipVerify: true, //nolint:gosec // Ignore the gosec error in testing
 	}).
 		GET("/").
 		WithURL(f.GetURL(framework.HTTPS)).
 		WithHeader("Host", hostname).
 		Expect().
 		Raw()
-
+	defer resp.Body.Close()
 	assert.Equal(ginkgo.GinkgoT(), resp.StatusCode, http.StatusOK)
 
 	// check the returned secret is not the fake one
diff --git a/test/e2e/loadbalance/configmap.go b/test/e2e/loadbalance/configmap.go
index 8cd47286b..737cd06dd 100644
--- a/test/e2e/loadbalance/configmap.go
+++ b/test/e2e/loadbalance/configmap.go
@@ -25,6 +25,8 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const loadBalanceHost = "load-balance.com"
+
 var _ = framework.DescribeSetting("[Load Balancer] load-balance", func() {
 	f := framework.NewDefaultFramework("lb-configmap")
 
@@ -33,7 +35,7 @@ var _ = framework.DescribeSetting("[Load Balancer] load-balance", func() {
 	})
 
 	ginkgo.It("should apply the configmap load-balance setting", func() {
-		host := "load-balance.com"
+		host := loadBalanceHost
 
 		f.UpdateNginxConfigMapData("load-balance", "ewma")
 
diff --git a/test/e2e/loadbalance/ewma.go b/test/e2e/loadbalance/ewma.go
index e2750a09a..f457e6357 100644
--- a/test/e2e/loadbalance/ewma.go
+++ b/test/e2e/loadbalance/ewma.go
@@ -35,12 +35,13 @@ var _ = framework.DescribeSetting("[Load Balancer] EWMA", func() {
 		f.NewEchoDeployment(framework.WithDeploymentReplicas(3))
 		f.SetNginxConfigMapData(map[string]string{
 			"worker-processes": "2",
-			"load-balance":     "ewma"},
+			"load-balance":     "ewma",
+		},
 		)
 	})
 
 	ginkgo.It("does not fail requests", func() {
-		host := "load-balance.com"
+		host := loadBalanceHost
 
 		f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil))
 		f.WaitForNginxServer(host,
@@ -52,7 +53,9 @@ var _ = framework.DescribeSetting("[Load Balancer] EWMA", func() {
 		assert.Nil(ginkgo.GinkgoT(), err)
 		assert.Equal(ginkgo.GinkgoT(), algorithm, "ewma")
 
-		re, _ := regexp.Compile(fmt.Sprintf(`%v.*`, framework.EchoService))
+		re, err := regexp.Compile(fmt.Sprintf(`%v.*`, framework.EchoService))
+		assert.Nil(ginkgo.GinkgoT(), err, "error compiling regex")
+
 		replicaRequestCount := map[string]int{}
 
 		for i := 0; i < 30; i++ {
diff --git a/test/e2e/loadbalance/round_robin.go b/test/e2e/loadbalance/round_robin.go
index 2d0582e9a..5f6667143 100644
--- a/test/e2e/loadbalance/round_robin.go
+++ b/test/e2e/loadbalance/round_robin.go
@@ -37,7 +37,7 @@ var _ = framework.DescribeSetting("[Load Balancer] round-robin", func() {
 	})
 
 	ginkgo.It("should evenly distribute requests with round-robin (default algorithm)", func() {
-		host := "load-balance.com"
+		host := loadBalanceHost
 
 		f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil))
 		f.WaitForNginxServer(host,
@@ -45,7 +45,9 @@ var _ = framework.DescribeSetting("[Load Balancer] round-robin", func() {
 				return strings.Contains(server, "server_name load-balance.com")
 			})
 
-		re, _ := regexp.Compile(fmt.Sprintf(`%v.*`, framework.EchoService))
+		re, err := regexp.Compile(fmt.Sprintf(`%v.*`, framework.EchoService))
+		assert.Nil(ginkgo.GinkgoT(), err, "error compiling regex")
+
 		replicaRequestCount := map[string]int{}
 
 		for i := 0; i < 600; i++ {
diff --git a/test/e2e/lua/dynamic_certificates.go b/test/e2e/lua/dynamic_certificates.go
index 0160cc9e7..8c9df5e71 100644
--- a/test/e2e/lua/dynamic_certificates.go
+++ b/test/e2e/lua/dynamic_certificates.go
@@ -245,7 +245,6 @@ var _ = framework.IngressNginxDescribe("[Lua] dynamic certificates", func() {
 				WithHeader("Host", host).
 				Expect().
 				Status(http.StatusOK)
-
 		})
 	})
 })
@@ -254,7 +253,6 @@ func extractReloadCount(mf *dto.MetricFamily) (float64, error) {
 	vec, err := expfmt.ExtractSamples(&expfmt.DecodeOptions{
 		Timestamp: model.Now(),
 	}, mf)
-
 	if err != nil {
 		return 0, err
 	}
diff --git a/test/e2e/lua/dynamic_configuration.go b/test/e2e/lua/dynamic_configuration.go
index 8e9804545..8ec1ef839 100644
--- a/test/e2e/lua/dynamic_configuration.go
+++ b/test/e2e/lua/dynamic_configuration.go
@@ -26,7 +26,6 @@ import (
 
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
-	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
@@ -199,20 +198,18 @@ var _ = framework.IngressNginxDescribe("[Lua] dynamic configuration", func() {
 	})
 })
 
-func ensureIngress(f *framework.Framework, host string, deploymentName string) *networking.Ingress {
-	ing := createIngress(f, host, deploymentName)
+func ensureIngress(f *framework.Framework, host, deploymentName string) {
+	createIngress(f, host, deploymentName)
 
 	f.HTTPTestClient().
 		GET("/").
 		WithHeader("Host", host).
 		Expect().
 		Status(http.StatusOK)
-
-	return ing
 }
 
-func createIngress(f *framework.Framework, host string, deploymentName string) *networking.Ingress {
-	ing := f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, deploymentName, 80,
+func createIngress(f *framework.Framework, host, deploymentName string) {
+	f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, deploymentName, 80,
 		map[string]string{
 			"nginx.ingress.kubernetes.io/load-balance": "ewma",
 		},
@@ -223,21 +220,19 @@ func createIngress(f *framework.Framework, host string, deploymentName string) *
 			return strings.Contains(server, fmt.Sprintf("server_name %s ;", host)) &&
 				strings.Contains(server, "proxy_pass http://upstream_balancer;")
 		})
-
-	return ing
 }
 
-func ensureHTTPSRequest(f *framework.Framework, url string, host string, expectedDNSName string) {
+func ensureHTTPSRequest(f *framework.Framework, url, host, expectedDNSName string) {
 	resp := f.HTTPTestClientWithTLSConfig(&tls.Config{
 		ServerName:         host,
-		InsecureSkipVerify: true,
+		InsecureSkipVerify: true, //nolint:gosec // Ignore the gosec error in testing
 	}).
 		GET("/").
 		WithURL(url).
 		WithHeader("Host", host).
 		Expect().
 		Raw()
-
+	defer resp.Body.Close()
 	assert.Equal(ginkgo.GinkgoT(), resp.StatusCode, http.StatusOK)
 	assert.Equal(ginkgo.GinkgoT(), len(resp.TLS.PeerCertificates), 1)
 	assert.Equal(ginkgo.GinkgoT(), resp.TLS.PeerCertificates[0].DNSNames[0], expectedDNSName)
diff --git a/test/e2e/nginx/nginx.go b/test/e2e/nginx/nginx.go
index cd14a931c..7e572a976 100644
--- a/test/e2e/nginx/nginx.go
+++ b/test/e2e/nginx/nginx.go
@@ -100,7 +100,6 @@ var _ = framework.DescribeSetting("nginx-configuration", func() {
 	f := framework.NewSimpleFramework("nginxconfiguration")
 
 	ginkgo.It("start nginx with default configuration", func() {
-
 		f.NGINXWithConfigDeployment("default-nginx", cfgOK)
 		f.WaitForPod("app=default-nginx", 60*time.Second, false)
 		framework.Sleep(5 * time.Second)
@@ -113,20 +112,16 @@ var _ = framework.DescribeSetting("nginx-configuration", func() {
 	})
 
 	ginkgo.It("fails when using alias directive", func() {
-
 		f.NGINXDeployment("alias-nginx", cfgAlias, false)
 		// This should fail with a crashloopback because our NGINX does not have
 		// alias directive!
 		f.WaitForPod("app=alias-nginx", 60*time.Second, true)
-
 	})
 
 	ginkgo.It("fails when using root directive", func() {
-
 		f.NGINXDeployment("root-nginx", cfgRoot, false)
 		// This should fail with a crashloopback because our NGINX does not have
 		// root directive!
 		f.WaitForPod("app=root-nginx", 60*time.Second, true)
-
 	})
 })
diff --git a/test/e2e/security/request_smuggling.go b/test/e2e/security/request_smuggling.go
index 58b17c4d8..5ede02d4b 100644
--- a/test/e2e/security/request_smuggling.go
+++ b/test/e2e/security/request_smuggling.go
@@ -50,9 +50,9 @@ server {
 
 		f.UpdateNginxConfigMapData("http-snippet", snippet)
 
-		//TODO: currently using a self hosted HTTPBun instance results in a 499, we
-		//should move away from using httpbun.com once we have the httpbun
-		//deployment as part of the framework
+		// TODO: currently using a self hosted HTTPBun instance results in a 499, we
+		// should move away from using httpbun.com once we have the httpbun
+		// deployment as part of the framework
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, map[string]string{
 			"nginx.ingress.kubernetes.io/auth-signin": "https://httpbun.com/bearer/d4bcba7a-0def-4a31-91a7-47e420adf44b",
 			"nginx.ingress.kubernetes.io/auth-url":    "https://httpbun.com/basic-auth/user/passwd",
@@ -91,7 +91,7 @@ func smugglingRequest(host, addr string, port int) (string, error) {
 	// wait for /_hidden/index.html response
 	framework.Sleep()
 
-	var buf = make([]byte, 1024)
+	buf := make([]byte, 1024)
 	r := bufio.NewReader(conn)
 	_, err = r.Read(buf)
 	if err != nil {
diff --git a/test/e2e/servicebackend/service_backend.go b/test/e2e/servicebackend/service_backend.go
index 44f3d36a5..6ab2f8ad1 100644
--- a/test/e2e/servicebackend/service_backend.go
+++ b/test/e2e/servicebackend/service_backend.go
@@ -29,48 +29,50 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
-var pathtype = networking.PathTypePrefix
-var _ = framework.IngressNginxDescribe("[Service] backend status code 503", func() {
-	f := framework.NewDefaultFramework("service-backend")
+var (
+	pathtype = networking.PathTypePrefix
+	_        = framework.IngressNginxDescribe("[Service] backend status code 503", func() {
+		f := framework.NewDefaultFramework("service-backend")
 
-	ginkgo.It("should return 503 when backend service does not exist", func() {
-		host := "nonexistent.svc.com"
+		ginkgo.It("should return 503 when backend service does not exist", func() {
+			host := "nonexistent.svc.com"
 
-		bi := buildIngressWithNonexistentService(host, f.Namespace, "/")
-		f.EnsureIngress(bi)
+			bi := buildIngressWithNonexistentService(host, f.Namespace, "/")
+			f.EnsureIngress(bi)
 
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return strings.Contains(server, "proxy_pass http://upstream_balancer;")
-			})
+			f.WaitForNginxServer(host,
+				func(server string) bool {
+					return strings.Contains(server, "proxy_pass http://upstream_balancer;")
+				})
 
-		f.HTTPTestClient().
-			GET("/").
-			WithHeader("Host", host).
-			Expect().
-			Status(http.StatusServiceUnavailable)
+			f.HTTPTestClient().
+				GET("/").
+				WithHeader("Host", host).
+				Expect().
+				Status(http.StatusServiceUnavailable)
+		})
+
+		ginkgo.It("should return 503 when all backend service endpoints are unavailable", func() {
+			host := "unavailable.svc.com"
+
+			bi, bs := buildIngressWithUnavailableServiceEndpoints(host, f.Namespace, "/")
+
+			f.EnsureService(bs)
+			f.EnsureIngress(bi)
+
+			f.WaitForNginxServer(host,
+				func(server string) bool {
+					return strings.Contains(server, "proxy_pass http://upstream_balancer;")
+				})
+
+			f.HTTPTestClient().
+				GET("/").
+				WithHeader("Host", host).
+				Expect().
+				Status(http.StatusServiceUnavailable)
+		})
 	})
-
-	ginkgo.It("should return 503 when all backend service endpoints are unavailable", func() {
-		host := "unavailable.svc.com"
-
-		bi, bs := buildIngressWithUnavailableServiceEndpoints(host, f.Namespace, "/")
-
-		f.EnsureService(bs)
-		f.EnsureIngress(bi)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return strings.Contains(server, "proxy_pass http://upstream_balancer;")
-			})
-
-		f.HTTPTestClient().
-			GET("/").
-			WithHeader("Host", host).
-			Expect().
-			Status(http.StatusServiceUnavailable)
-	})
-})
+)
 
 func buildIngressWithNonexistentService(host, namespace, path string) *networking.Ingress {
 	backendService := "nonexistent-svc"
@@ -146,14 +148,15 @@ func buildIngressWithUnavailableServiceEndpoints(host, namespace, path string) (
 				Name:      backendService,
 				Namespace: namespace,
 			},
-			Spec: corev1.ServiceSpec{Ports: []corev1.ServicePort{
-				{
-					Name:       "tcp",
-					Port:       80,
-					TargetPort: intstr.FromInt(80),
-					Protocol:   "TCP",
+			Spec: corev1.ServiceSpec{
+				Ports: []corev1.ServicePort{
+					{
+						Name:       "tcp",
+						Port:       80,
+						TargetPort: intstr.FromInt(80),
+						Protocol:   "TCP",
+					},
 				},
-			},
 				Selector: map[string]string{
 					"app": backendService,
 				},
diff --git a/test/e2e/servicebackend/service_externalname.go b/test/e2e/servicebackend/service_externalname.go
index 429690ff1..fccd1cd19 100644
--- a/test/e2e/servicebackend/service_externalname.go
+++ b/test/e2e/servicebackend/service_externalname.go
@@ -33,12 +33,14 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const echoHost = "echo"
+
 var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	f := framework.NewDefaultFramework("type-externalname", framework.WithHTTPBunEnabled())
 
 	ginkgo.It("works with external name set to incomplete fqdn", func() {
 		f.NewEchoDeployment()
-		host := "echo"
+		host := echoHost
 
 		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
@@ -74,7 +76,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should return 200 for service type=ExternalName without a port defined", func() {
-		host := "echo"
+		host := echoHost
 
 		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
@@ -114,7 +116,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should return 200 for service type=ExternalName with a port defined", func() {
-		host := "echo"
+		host := echoHost
 
 		svc := framework.BuildNIPExternalNameService(f, f.HTTPBunIP, host)
 		f.EnsureService(svc)
@@ -144,7 +146,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should return status 502 for service type=ExternalName with an invalid host", func() {
-		host := "echo"
+		host := echoHost
 
 		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
@@ -180,7 +182,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should return 200 for service type=ExternalName using a port name", func() {
-		host := "echo"
+		host := echoHost
 
 		svc := framework.BuildNIPExternalNameService(f, f.HTTPBunIP, host)
 		f.EnsureService(svc)
@@ -221,7 +223,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should return 200 for service type=ExternalName using FQDN with trailing dot", func() {
-		host := "echo"
+		host := echoHost
 
 		svc := &corev1.Service{
 			ObjectMeta: metav1.ObjectMeta{
@@ -257,7 +259,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 	})
 
 	ginkgo.It("should update the external name after a service update", func() {
-		host := "echo"
+		host := echoHost
 
 		svc := framework.BuildNIPExternalNameService(f, f.HTTPBunIP, host)
 		f.EnsureService(svc)
@@ -306,7 +308,7 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 			Get(context.TODO(), framework.NIPService, metav1.GetOptions{})
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error obtaining external service")
 
-		//Deploy a new instance to switch routing to
+		// Deploy a new instance to switch routing to
 		ip := f.NewHttpbunDeployment(framework.WithDeploymentName("eu-server"))
 		svc.Spec.ExternalName = framework.BuildNIPHost(ip)
 
@@ -335,12 +337,12 @@ var _ = framework.IngressNginxDescribe("[Service] Type ExternalName", func() {
 		assert.Contains(
 			ginkgo.GinkgoT(),
 			output,
-			fmt.Sprintf(`"address": "%s"`, framework.BuildNIPHost(ip)),
+			fmt.Sprintf(`"address": %q`, framework.BuildNIPHost(ip)),
 		)
 	})
 
 	ginkgo.It("should sync ingress on external name service addition/deletion", func() {
-		host := "echo"
+		host := echoHost
 
 		// Create the Ingress first
 		ing := framework.NewSingleIngress(host,
diff --git a/test/e2e/servicebackend/service_nil_backend.go b/test/e2e/servicebackend/service_nil_backend.go
index c44601c88..9b5b4c7e6 100644
--- a/test/e2e/servicebackend/service_nil_backend.go
+++ b/test/e2e/servicebackend/service_nil_backend.go
@@ -64,7 +64,6 @@ var _ = framework.IngressNginxDescribe("[Service] Nil Service Backend", func() {
 			WithHeader("Host", invalidHost).
 			Expect().
 			Status(http.StatusNotFound)
-
 	})
 })
 
diff --git a/test/e2e/settings/access_log.go b/test/e2e/settings/access_log.go
index 7c7e2b9e3..65b9dfda4 100644
--- a/test/e2e/settings/access_log.go
+++ b/test/e2e/settings/access_log.go
@@ -28,7 +28,6 @@ var _ = framework.DescribeSetting("access-log", func() {
 	f := framework.NewDefaultFramework("access-log")
 
 	ginkgo.Context("access-log-path", func() {
-
 		ginkgo.It("use the default configuration", func() {
 			f.WaitForNginxConfiguration(
 				func(cfg string) bool {
@@ -50,7 +49,6 @@ var _ = framework.DescribeSetting("access-log", func() {
 	})
 
 	ginkgo.Context("http-access-log-path", func() {
-
 		ginkgo.It("use the specified configuration", func() {
 			f.UpdateNginxConfigMapData("http-access-log-path", "/tmp/nginx/http-access.log")
 			f.WaitForNginxConfiguration(
@@ -63,7 +61,6 @@ var _ = framework.DescribeSetting("access-log", func() {
 	})
 
 	ginkgo.Context("stream-access-log-path", func() {
-
 		ginkgo.It("use the specified configuration", func() {
 			f.UpdateNginxConfigMapData("stream-access-log-path", "/tmp/nginx/stream-access.log")
 			f.WaitForNginxConfiguration(
@@ -76,7 +73,6 @@ var _ = framework.DescribeSetting("access-log", func() {
 	})
 
 	ginkgo.Context("http-access-log-path & stream-access-log-path", func() {
-
 		ginkgo.It("use the specified configuration", func() {
 			f.SetNginxConfigMapData(map[string]string{
 				"http-access-log-path":   "/tmp/nginx/http-access.log",
diff --git a/test/e2e/settings/badannotationvalues.go b/test/e2e/settings/badannotationvalues.go
index b4b6def4a..68a122e76 100644
--- a/test/e2e/settings/badannotationvalues.go
+++ b/test/e2e/settings/badannotationvalues.go
@@ -100,7 +100,6 @@ var _ = framework.DescribeAnnotation("Bad annotation values", func() {
 	})
 
 	ginkgo.It("[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place", func() {
-
 		hostValid := "custom-allowed-value-test"
 		annotationsValid := map[string]string{
 			"nginx.ingress.kubernetes.io/configuration-snippet": `
@@ -159,6 +158,5 @@ var _ = framework.DescribeAnnotation("Bad annotation values", func() {
 			WithHeader("Host", host).
 			Expect().
 			Status(http.StatusNotFound)
-
 	})
 })
diff --git a/test/e2e/settings/default_ssl_certificate.go b/test/e2e/settings/default_ssl_certificate.go
index ea97d4895..c48a1e87f 100644
--- a/test/e2e/settings/default_ssl_certificate.go
+++ b/test/e2e/settings/default_ssl_certificate.go
@@ -30,10 +30,12 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const fooHost = "foo"
+
 var _ = framework.IngressNginxDescribe("[SSL] [Flag] default-ssl-certificate", func() {
 	f := framework.NewDefaultFramework("default-ssl-certificate")
 	var tlsConfig *tls.Config
-	secretName := "my-custom-cert"
+	secretName := "my-custom-cert" //nolint:gosec // Ignore the gosec error in testing
 	service := framework.EchoService
 	port := 80
 
@@ -78,7 +80,7 @@ var _ = framework.IngressNginxDescribe("[SSL] [Flag] default-ssl-certificate", f
 	})
 
 	ginkgo.It("uses default ssl certificate for host based ingress when configured certificate does not match host", func() {
-		host := "foo"
+		host := fooHost
 
 		ing := f.EnsureIngress(framework.NewSingleIngressWithTLS(host, "/", host, []string{host}, f.Namespace, service, port, nil))
 		_, err := framework.CreateIngressTLSSecret(f.KubeClientSet,
diff --git a/test/e2e/settings/disable_catch_all.go b/test/e2e/settings/disable_catch_all.go
index 0d1a14493..4e7a16f4d 100644
--- a/test/e2e/settings/disable_catch_all.go
+++ b/test/e2e/settings/disable_catch_all.go
@@ -48,7 +48,7 @@ var _ = framework.IngressNginxDescribe("[Flag] disable-catch-all", func() {
 	})
 
 	ginkgo.It("should ignore catch all Ingress with backend", func() {
-		host := "foo"
+		host := fooHost
 
 		ing := framework.NewSingleCatchAllIngress("catch-all", f.Namespace, framework.EchoService, 80, nil)
 		f.EnsureIngress(ing)
@@ -67,7 +67,7 @@ var _ = framework.IngressNginxDescribe("[Flag] disable-catch-all", func() {
 	})
 
 	ginkgo.It("should ignore catch all Ingress with backend and rules", func() {
-		host := "foo"
+		host := fooHost
 
 		ing := framework.NewSingleIngressWithBackendAndRules(host, "/", host, f.Namespace, framework.EchoService, 80, framework.EchoService, 80, nil)
 		f.EnsureIngress(ing)
@@ -79,7 +79,7 @@ var _ = framework.IngressNginxDescribe("[Flag] disable-catch-all", func() {
 	})
 
 	ginkgo.It("should delete Ingress updated to catch-all", func() {
-		host := "foo"
+		host := fooHost
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil)
 		f.EnsureIngress(ing)
@@ -121,7 +121,7 @@ var _ = framework.IngressNginxDescribe("[Flag] disable-catch-all", func() {
 	})
 
 	ginkgo.It("should allow Ingress with rules", func() {
-		host := "foo"
+		host := fooHost
 
 		ing := framework.NewSingleIngress("not-catch-all", "/", host, f.Namespace, framework.EchoService, 80, nil)
 		f.EnsureIngress(ing)
diff --git a/test/e2e/settings/disable_service_external_name.go b/test/e2e/settings/disable_service_external_name.go
index 4ecf69e81..602828089 100644
--- a/test/e2e/settings/disable_service_external_name.go
+++ b/test/e2e/settings/disable_service_external_name.go
@@ -95,6 +95,5 @@ var _ = framework.IngressNginxDescribe("[Flag] disable-service-external-name", f
 			WithHeader("Host", externalhost).
 			Expect().
 			StatusRange(httpexpect.Status5xx)
-
 	})
 })
diff --git a/test/e2e/settings/disable_sync_events.go b/test/e2e/settings/disable_sync_events.go
index 7d1298087..033fd9194 100644
--- a/test/e2e/settings/disable_sync_events.go
+++ b/test/e2e/settings/disable_sync_events.go
@@ -50,6 +50,7 @@ var _ = framework.IngressNginxDescribe("[Flag] disable-sync-events", func() {
 		assert.NotEmpty(ginkgo.GinkgoT(), events.Items, "got events")
 	})
 
+	//nolint:dupl // Ignore dupl errors for similar test case
 	ginkgo.It("should create sync events", func() {
 		host := "disable-sync-events-false"
 		f.NewEchoDeployment(framework.WithDeploymentReplicas(1))
@@ -77,6 +78,7 @@ var _ = framework.IngressNginxDescribe("[Flag] disable-sync-events", func() {
 		assert.NotEmpty(ginkgo.GinkgoT(), events.Items, "got events")
 	})
 
+	//nolint:dupl // Ignore dupl errors for similar test case
 	ginkgo.It("should not create sync events", func() {
 		host := "disable-sync-events-true"
 		f.NewEchoDeployment(framework.WithDeploymentReplicas(1))
@@ -103,5 +105,4 @@ var _ = framework.IngressNginxDescribe("[Flag] disable-sync-events", func() {
 
 		assert.Empty(ginkgo.GinkgoT(), events.Items, "got events")
 	})
-
 })
diff --git a/test/e2e/settings/forwarded_headers.go b/test/e2e/settings/forwarded_headers.go
index d4ffee545..44460aca6 100644
--- a/test/e2e/settings/forwarded_headers.go
+++ b/test/e2e/settings/forwarded_headers.go
@@ -26,6 +26,8 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const forwardedHeadersHost = "forwarded-headers"
+
 var _ = framework.DescribeSetting("use-forwarded-headers", func() {
 	f := framework.NewDefaultFramework("forwarded-headers")
 
@@ -37,7 +39,7 @@ var _ = framework.DescribeSetting("use-forwarded-headers", func() {
 	})
 
 	ginkgo.It("should trust X-Forwarded headers when setting is true", func() {
-		host := "forwarded-headers"
+		host := forwardedHeadersHost
 
 		f.UpdateNginxConfigMapData(setting, "true")
 
@@ -89,7 +91,7 @@ var _ = framework.DescribeSetting("use-forwarded-headers", func() {
 	})
 
 	ginkgo.It("should not trust X-Forwarded headers when setting is false", func() {
-		host := "forwarded-headers"
+		host := forwardedHeadersHost
 
 		f.UpdateNginxConfigMapData(setting, "false")
 
diff --git a/test/e2e/settings/geoip2.go b/test/e2e/settings/geoip2.go
index 9b2ca8624..6dd48b2ad 100644
--- a/test/e2e/settings/geoip2.go
+++ b/test/e2e/settings/geoip2.go
@@ -19,11 +19,10 @@ package settings
 import (
 	"context"
 	"fmt"
+	"net/http"
 	"path/filepath"
 	"strings"
 
-	"net/http"
-
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
@@ -72,8 +71,7 @@ var _ = framework.DescribeSetting("Geoip2", func() {
 
 		f.UpdateNginxConfigMapData("use-geoip2", "true")
 
-		httpSnippetAllowingOnlyAustralia :=
-			`map $geoip2_city_country_code $blocked_country {
+		httpSnippetAllowingOnlyAustralia := `map $geoip2_city_country_code $blocked_country {
   default 1;
   AU 0;
 }`
@@ -85,8 +83,7 @@ var _ = framework.DescribeSetting("Geoip2", func() {
 				return strings.Contains(cfg, "map $geoip2_city_country_code $blocked_country")
 			})
 
-		configSnippet :=
-			`if ($blocked_country) {
+		configSnippet := `if ($blocked_country) {
   return 403;
 }`
 
diff --git a/test/e2e/settings/global_external_auth.go b/test/e2e/settings/global_external_auth.go
index cc98099ae..741e6f955 100644
--- a/test/e2e/settings/global_external_auth.go
+++ b/test/e2e/settings/global_external_auth.go
@@ -31,6 +31,11 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const (
+	disable                = "false"
+	noAuthLocaltionSetting = "no-auth-locations"
+)
+
 var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 	f := framework.NewDefaultFramework(
 		"global-external-auth",
@@ -46,7 +51,7 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 	fooPath := "/foo"
 	barPath := "/bar"
 
-	noAuthSetting := "no-auth-locations"
+	noAuthSetting := noAuthLocaltionSetting
 	noAuthLocations := barPath
 
 	enableGlobalExternalAuthAnnotation := "nginx.ingress.kubernetes.io/enable-global-auth"
@@ -56,7 +61,6 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 	})
 
 	ginkgo.Context("when global external authentication is configured", func() {
-
 		ginkgo.BeforeEach(func() {
 			globalExternalAuthURL := fmt.Sprintf("http://%s.%s.svc.cluster.local:80/status/401", framework.HTTPBunService, f.Namespace)
 
@@ -85,7 +89,6 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 		})
 
 		ginkgo.It("should return status code 401 when request any protected service", func() {
-
 			ginkgo.By("Sending a request to protected service /foo")
 			f.HTTPTestClient().
 				GET(fooPath).
@@ -102,7 +105,6 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 		})
 
 		ginkgo.It("should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service", func() {
-
 			ginkgo.By("Adding a no-auth-locations for /bar to configMap")
 			f.UpdateNginxConfigMapData(noAuthSetting, noAuthLocations)
 			f.WaitForNginxServer(host,
@@ -126,10 +128,9 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 		})
 
 		ginkgo.It("should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service", func() {
-
 			ginkgo.By("Adding an ingress rule for /bar with annotation enable-global-auth = false")
 			err := framework.UpdateIngress(f.KubeClientSet, f.Namespace, "bar-ingress", func(ingress *networking.Ingress) error {
-				ingress.ObjectMeta.Annotations[enableGlobalExternalAuthAnnotation] = "false"
+				ingress.ObjectMeta.Annotations[enableGlobalExternalAuthAnnotation] = disable
 				return nil
 			})
 			assert.Nil(ginkgo.GinkgoT(), err)
@@ -155,9 +156,8 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 		})
 
 		ginkgo.It("should still return status code 200 after auth backend is deleted using cache", func() {
-
 			globalExternalAuthCacheKeySetting := "global-auth-cache-key"
-			globalExternalAuthCacheKey := "foo"
+			globalExternalAuthCacheKey := fooHost
 			globalExternalAuthCacheDurationSetting := "global-auth-cache-duration"
 			globalExternalAuthCacheDuration := "200 201 401 30m"
 			globalExternalAuthURL := fmt.Sprintf("http://%s.%s.svc.cluster.local:80/status/200", framework.HTTPBunService, f.Namespace)
@@ -197,7 +197,6 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 		})
 
 		ginkgo.It(`should proxy_method method when global-auth-method is configured`, func() {
-
 			globalExternalAuthMethodSetting := "global-auth-method"
 			globalExternalAuthMethod := "GET"
 
@@ -210,7 +209,6 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 		})
 
 		ginkgo.It(`should add custom error page when global-auth-signin url is configured`, func() {
-
 			globalExternalAuthSigninSetting := "global-auth-signin"
 			globalExternalAuthSignin := "http://foo.com/global-error-page"
 
@@ -223,7 +221,6 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 		})
 
 		ginkgo.It(`should add auth headers when global-auth-response-headers is configured`, func() {
-
 			globalExternalAuthResponseHeadersSetting := "global-auth-response-headers"
 			globalExternalAuthResponseHeaders := "Foo, Bar"
 
@@ -237,7 +234,6 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 		})
 
 		ginkgo.It(`should set request-redirect when global-auth-request-redirect is configured`, func() {
-
 			globalExternalAuthRequestRedirectSetting := "global-auth-request-redirect"
 			globalExternalAuthRequestRedirect := "Foo-Redirect"
 
@@ -260,7 +256,6 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 					return strings.Contains(server, globalExternalAuthSnippet)
 				})
 		})
-
 	})
 
 	ginkgo.Context("cookie set by external authentication server", func() {
@@ -322,7 +317,6 @@ http {
 			f.WaitForNginxServer(host, func(server string) bool {
 				return strings.Contains(server, "server_name "+host)
 			})
-
 		})
 
 		ginkgo.It("user retains cookie by default", func() {
diff --git a/test/e2e/settings/global_options.go b/test/e2e/settings/global_options.go
index 117860d59..1f84ef5d7 100644
--- a/test/e2e/settings/global_options.go
+++ b/test/e2e/settings/global_options.go
@@ -31,7 +31,6 @@ var _ = framework.IngressNginxDescribe("global-options", func() {
 	ginkgo.It("should have worker_rlimit_nofile option", func() {
 		f.WaitForNginxConfiguration(func(server string) bool {
 			return strings.Contains(server, fmt.Sprintf("worker_rlimit_nofile %d;", rlimitMaxNumFiles()-1024))
-
 		})
 	})
 
diff --git a/test/e2e/settings/hash-size.go b/test/e2e/settings/hash-size.go
index 6e3e0480c..5aa5f7c95 100644
--- a/test/e2e/settings/hash-size.go
+++ b/test/e2e/settings/hash-size.go
@@ -36,7 +36,6 @@ var _ = framework.DescribeSetting("hash size", func() {
 	})
 
 	ginkgo.Context("Check server names hash size", func() {
-
 		ginkgo.It("should set server_names_hash_bucket_size", func() {
 			f.UpdateNginxConfigMapData("server-name-hash-bucket-size", "512")
 
@@ -52,11 +51,9 @@ var _ = framework.DescribeSetting("hash size", func() {
 				return strings.Contains(server, "server_names_hash_max_size 4096;")
 			})
 		})
-
 	})
 
 	ginkgo.Context("Check proxy header hash size", func() {
-
 		ginkgo.It("should set proxy-headers-hash-bucket-size", func() {
 			f.UpdateNginxConfigMapData("proxy-headers-hash-bucket-size", "512")
 
@@ -72,11 +69,9 @@ var _ = framework.DescribeSetting("hash size", func() {
 				return strings.Contains(server, "proxy_headers_hash_max_size 4096;")
 			})
 		})
-
 	})
 
 	ginkgo.Context("Check the variable hash size", func() {
-
 		ginkgo.It("should set variables-hash-bucket-size", func() {
 			f.UpdateNginxConfigMapData("variables-hash-bucket-size", "512")
 
@@ -92,11 +87,9 @@ var _ = framework.DescribeSetting("hash size", func() {
 				return strings.Contains(server, "variables_hash_max_size 512;")
 			})
 		})
-
 	})
 
 	ginkgo.Context("Check the map hash size", func() {
-
 		ginkgo.It("should set vmap-hash-bucket-size", func() {
 			f.UpdateNginxConfigMapData("map-hash-bucket-size", "512")
 
@@ -104,7 +97,5 @@ var _ = framework.DescribeSetting("hash size", func() {
 				return strings.Contains(server, "map_hash_bucket_size 512;")
 			})
 		})
-
 	})
-
 })
diff --git a/test/e2e/settings/ingress_class.go b/test/e2e/settings/ingress_class.go
index 232045f3a..80c09f80c 100644
--- a/test/e2e/settings/ingress_class.go
+++ b/test/e2e/settings/ingress_class.go
@@ -36,6 +36,8 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const barHost = "bar"
+
 var _ = framework.IngressNginxDescribe("[Flag] ingress-class", func() {
 	f := framework.NewDefaultFramework("ingress-class")
 
@@ -66,7 +68,7 @@ var _ = framework.IngressNginxDescribe("[Flag] ingress-class", func() {
 
 	ginkgo.Context("With default ingress class config", func() {
 		ginkgo.It("should ignore Ingress with a different class annotation", func() {
-			invalidHost := "foo"
+			invalidHost := fooHost
 			annotations := map[string]string{
 				ingressclass.IngressKey: "testclass",
 			}
@@ -75,7 +77,7 @@ var _ = framework.IngressNginxDescribe("[Flag] ingress-class", func() {
 			ing.Spec.IngressClassName = nil
 			f.EnsureIngress(ing)
 
-			validHost := "bar"
+			validHost := barHost
 			annotationClass := map[string]string{
 				ingressclass.IngressKey: ingressclass.DefaultAnnotationValue,
 			}
@@ -385,7 +387,6 @@ var _ = framework.IngressNginxDescribe("[Flag] ingress-class", func() {
 				Expect().
 				Status(http.StatusOK)
 		})
-
 	})
 
 	ginkgo.Context("With specific ingress-class flags", func() {
@@ -411,13 +412,13 @@ var _ = framework.IngressNginxDescribe("[Flag] ingress-class", func() {
 		})
 
 		ginkgo.It("should ignore Ingress with no class and accept the correctly configured Ingresses", func() {
-			invalidHost := "bar"
+			invalidHost := barHost
 
 			ing := framework.NewSingleIngress(invalidHost, "/", invalidHost, f.Namespace, framework.EchoService, 80, nil)
 			ing.Spec.IngressClassName = nil
 			f.EnsureIngress(ing)
 
-			validHost := "foo"
+			validHost := fooHost
 			annotations := map[string]string{
 				ingressclass.IngressKey: "testclass",
 			}
@@ -455,7 +456,6 @@ var _ = framework.IngressNginxDescribe("[Flag] ingress-class", func() {
 				Expect().
 				Status(http.StatusNotFound)
 		})
-
 	})
 
 	ginkgo.Context("With watch-ingress-without-class flag", func() {
@@ -480,13 +480,13 @@ var _ = framework.IngressNginxDescribe("[Flag] ingress-class", func() {
 		})
 
 		ginkgo.It("should watch Ingress with no class and ignore ingress with a different class", func() {
-			validHost := "bar"
+			validHost := barHost
 
 			ing := framework.NewSingleIngress(validHost, "/", validHost, f.Namespace, framework.EchoService, 80, nil)
 			ing.Spec.IngressClassName = nil
 			f.EnsureIngress(ing)
 
-			invalidHost := "foo"
+			invalidHost := fooHost
 			annotations := map[string]string{
 				ingressclass.IngressKey: "testclass123",
 			}
@@ -511,7 +511,6 @@ var _ = framework.IngressNginxDescribe("[Flag] ingress-class", func() {
 				Expect().
 				Status(http.StatusNotFound)
 		})
-
 	})
 
 	ginkgo.Context("With ingress-class-by-name flag", func() {
@@ -579,11 +578,9 @@ var _ = framework.IngressNginxDescribe("[Flag] ingress-class", func() {
 				Expect().
 				Status(http.StatusNotFound)
 		})
-
 	})
 
 	ginkgo.Context("Without IngressClass Cluster scoped Permission", func() {
-
 		ginkgo.BeforeEach(func() {
 			icname := fmt.Sprintf("ic-%s", f.Namespace)
 
@@ -629,8 +626,7 @@ var _ = framework.IngressNginxDescribe("[Flag] ingress-class", func() {
 		})
 
 		ginkgo.It("should watch Ingress with correct annotation", func() {
-
-			validHost := "foo"
+			validHost := fooHost
 			annotations := map[string]string{
 				ingressclass.IngressKey: "testclass",
 			}
@@ -650,7 +646,6 @@ var _ = framework.IngressNginxDescribe("[Flag] ingress-class", func() {
 		})
 
 		ginkgo.It("should ignore Ingress with only IngressClassName", func() {
-
 			invalidHost := "noclassforyou"
 
 			ing := framework.NewSingleIngress(invalidHost, "/", invalidHost, f.Namespace, framework.EchoService, 80, nil)
@@ -666,6 +661,5 @@ var _ = framework.IngressNginxDescribe("[Flag] ingress-class", func() {
 				Expect().
 				Status(http.StatusNotFound)
 		})
-
 	})
 })
diff --git a/test/e2e/settings/keep-alive.go b/test/e2e/settings/keep-alive.go
index d139f61c0..167f5ac18 100644
--- a/test/e2e/settings/keep-alive.go
+++ b/test/e2e/settings/keep-alive.go
@@ -21,6 +21,7 @@ import (
 	"strings"
 
 	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
@@ -50,7 +51,6 @@ var _ = framework.DescribeSetting("keep-alive keep-alive-requests", func() {
 			f.WaitForNginxConfiguration(func(server string) bool {
 				return strings.Contains(server, `keepalive_requests 200;`)
 			})
-
 		})
 	})
 
@@ -59,7 +59,8 @@ var _ = framework.DescribeSetting("keep-alive keep-alive-requests", func() {
 			f.UpdateNginxConfigMapData("upstream-keepalive-connections", "128")
 
 			f.WaitForNginxConfiguration(func(server string) bool {
-				match, _ := regexp.MatchString(`upstream\supstream_balancer\s\{[\s\S]*keepalive 128;`, server)
+				match, err := regexp.MatchString(`upstream\supstream_balancer\s\{[\s\S]*keepalive 128;`, server)
+				assert.Nil(ginkgo.GinkgoT(), err, "unexpected error matching the upstream keepalive time")
 				return match
 			})
 		})
@@ -68,7 +69,8 @@ var _ = framework.DescribeSetting("keep-alive keep-alive-requests", func() {
 			f.UpdateNginxConfigMapData("upstream-keepalive-timeout", "120")
 
 			f.WaitForNginxConfiguration(func(server string) bool {
-				match, _ := regexp.MatchString(`upstream\supstream_balancer\s\{[\s\S]*keepalive_timeout\s*120s;`, server)
+				match, err := regexp.MatchString(`upstream\supstream_balancer\s\{[\s\S]*keepalive_timeout\s*120s;`, server)
+				assert.Nil(ginkgo.GinkgoT(), err, "unexpected error matching the upstream keepalive time")
 				return match
 			})
 		})
@@ -77,7 +79,8 @@ var _ = framework.DescribeSetting("keep-alive keep-alive-requests", func() {
 			f.UpdateNginxConfigMapData("upstream-keepalive-time", "75s")
 
 			f.WaitForNginxConfiguration(func(server string) bool {
-				match, _ := regexp.MatchString(`upstream\supstream_balancer\s\{[\s\S]*keepalive_time\s*75s;`, server)
+				match, err := regexp.MatchString(`upstream\supstream_balancer\s\{[\s\S]*keepalive_time\s*75s;`, server)
+				assert.Nil(ginkgo.GinkgoT(), err, "unexpected error matching the upstream keepalive time")
 				return match
 			})
 		})
@@ -86,7 +89,8 @@ var _ = framework.DescribeSetting("keep-alive keep-alive-requests", func() {
 			f.UpdateNginxConfigMapData("upstream-keepalive-requests", "200")
 
 			f.WaitForNginxConfiguration(func(server string) bool {
-				match, _ := regexp.MatchString(`upstream\supstream_balancer\s\{[\s\S]*keepalive_requests\s*200;`, server)
+				match, err := regexp.MatchString(`upstream\supstream_balancer\s\{[\s\S]*keepalive_requests\s*200;`, server)
+				assert.Nil(ginkgo.GinkgoT(), err, "unexpected error matching the upstream keepalive time")
 				return match
 			})
 		})
diff --git a/test/e2e/settings/listen_nondefault_ports.go b/test/e2e/settings/listen_nondefault_ports.go
index 7e3b11b21..9d3952227 100644
--- a/test/e2e/settings/listen_nondefault_ports.go
+++ b/test/e2e/settings/listen_nondefault_ports.go
@@ -28,7 +28,6 @@ import (
 )
 
 var _ = framework.IngressNginxDescribe("[Flag] custom HTTP and HTTPS ports", func() {
-
 	host := "forwarded-headers"
 
 	f := framework.NewDefaultFramework("forwarded-port-headers", framework.WithHTTPBunEnabled())
@@ -44,7 +43,6 @@ var _ = framework.IngressNginxDescribe("[Flag] custom HTTP and HTTPS ports", fun
 
 	ginkgo.Context("with a plain HTTP ingress", func() {
 		ginkgo.It("should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port", func() {
-
 			ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil)
 			f.EnsureIngress(ing)
 
@@ -64,9 +62,7 @@ var _ = framework.IngressNginxDescribe("[Flag] custom HTTP and HTTPS ports", fun
 	})
 
 	ginkgo.Context("with a TLS enabled ingress", func() {
-
 		ginkgo.It("should set X-Forwarded-Port header to 443", func() {
-
 			ing := framework.NewSingleIngressWithTLS(host, "/", host, []string{host}, f.Namespace, framework.EchoService, 80, nil)
 			f.EnsureIngress(ing)
 
@@ -94,7 +90,6 @@ var _ = framework.IngressNginxDescribe("[Flag] custom HTTP and HTTPS ports", fun
 		})
 
 		ginkgo.Context("when external authentication is configured", func() {
-
 			ginkgo.It("should set the X-Forwarded-Port header to 443", func() {
 				annotations := map[string]string{
 					"nginx.ingress.kubernetes.io/auth-url":    fmt.Sprintf("http://%s/basic-auth/user/password", f.HTTPBunIP),
diff --git a/test/e2e/settings/log-format.go b/test/e2e/settings/log-format.go
index 24877818d..18835cb66 100644
--- a/test/e2e/settings/log-format.go
+++ b/test/e2e/settings/log-format.go
@@ -36,7 +36,6 @@ var _ = framework.DescribeSetting("log-format-*", func() {
 	})
 
 	ginkgo.Context("Check log-format-escape-json and log-format-escape-none", func() {
-
 		ginkgo.It("should not configure log-format escape by default", func() {
 			f.WaitForNginxConfiguration(
 				func(cfg string) bool {
@@ -78,7 +77,6 @@ var _ = framework.DescribeSetting("log-format-*", func() {
 	})
 
 	ginkgo.Context("Check log-format-upstream with log-format-escape-json and log-format-escape-none", func() {
-
 		ginkgo.It("log-format-escape-json enabled", func() {
 			f.SetNginxConfigMapData(map[string]string{
 				"log-format-escape-json": "true",
diff --git a/test/e2e/settings/namespace_selector.go b/test/e2e/settings/namespace_selector.go
index 3bf856566..1da62ee86 100644
--- a/test/e2e/settings/namespace_selector.go
+++ b/test/e2e/settings/namespace_selector.go
@@ -29,12 +29,12 @@ import (
 
 var _ = framework.IngressNginxDescribeSerial("[Flag] watch namespace selector", func() {
 	f := framework.NewDefaultFramework("namespace-selector")
-	notMatchedHost, matchedHost := "bar", "foo"
+	notMatchedHost, matchedHost := barHost, fooHost
 	var notMatchedNs string
 	var matchedNs string
 
 	// create a test namespace, under which create an ingress and backend deployment
-	prepareTestIngress := func(baseName string, host string, labels map[string]string) string {
+	prepareTestIngress := func(host string, labels map[string]string) string {
 		ns, err := framework.CreateKubeNamespaceWithLabel(f.BaseName, labels, f.KubeClientSet)
 		assert.Nil(ginkgo.GinkgoT(), err, "creating test namespace")
 		f.NewEchoDeployment(framework.WithDeploymentNamespace(ns))
@@ -49,8 +49,8 @@ var _ = framework.IngressNginxDescribeSerial("[Flag] watch namespace selector",
 	}
 
 	ginkgo.BeforeEach(func() {
-		notMatchedNs = prepareTestIngress(notMatchedHost, notMatchedHost, nil) // create namespace without label "foo=bar"
-		matchedNs = prepareTestIngress(matchedHost, matchedHost, map[string]string{"foo": "bar"})
+		notMatchedNs = prepareTestIngress(notMatchedHost, nil) // create namespace without label "foo=bar"
+		matchedNs = prepareTestIngress(matchedHost, map[string]string{fooHost: barHost})
 	})
 
 	ginkgo.AfterEach(func() {
@@ -59,9 +59,7 @@ var _ = framework.IngressNginxDescribeSerial("[Flag] watch namespace selector",
 	})
 
 	ginkgo.Context("With specific watch-namespace-selector flags", func() {
-
-		ginkgo.It("should ingore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar", func() {
-
+		ginkgo.It("should ignore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar", func() {
 			f.WaitForNginxConfiguration(func(cfg string) bool {
 				return !strings.Contains(cfg, "server_name bar") &&
 					strings.Contains(cfg, "server_name foo")
@@ -86,7 +84,7 @@ var _ = framework.IngressNginxDescribeSerial("[Flag] watch namespace selector",
 			if ns.Labels == nil {
 				ns.Labels = make(map[string]string)
 			}
-			ns.Labels["foo"] = "bar"
+			ns.Labels[fooHost] = barHost
 
 			_, err = f.KubeClientSet.CoreV1().Namespaces().Update(context.TODO(), ns, metav1.UpdateOptions{})
 			assert.Nil(ginkgo.GinkgoT(), err, "labeling not matched namespace")
@@ -97,7 +95,7 @@ var _ = framework.IngressNginxDescribeSerial("[Flag] watch namespace selector",
 			if ing.Labels == nil {
 				ing.Labels = make(map[string]string)
 			}
-			ing.Labels["foo"] = "bar"
+			ing.Labels[fooHost] = barHost
 
 			_, err = f.KubeClientSet.NetworkingV1().Ingresses(notMatchedNs).Update(context.TODO(), ing, metav1.UpdateOptions{})
 			assert.Nil(ginkgo.GinkgoT(), err, "updating ingress")
diff --git a/test/e2e/settings/no_auth_locations.go b/test/e2e/settings/no_auth_locations.go
index 2fc4b6455..103c057d7 100644
--- a/test/e2e/settings/no_auth_locations.go
+++ b/test/e2e/settings/no_auth_locations.go
@@ -18,12 +18,12 @@ package settings
 
 import (
 	"fmt"
-	"golang.org/x/crypto/bcrypt"
 	"net/http"
 	"strings"
 
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
+	"golang.org/x/crypto/bcrypt"
 	corev1 "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
@@ -34,7 +34,7 @@ var _ = framework.DescribeSetting("[Security] no-auth-locations", func() {
 	f := framework.NewDefaultFramework("no-auth-locations")
 
 	setting := "no-auth-locations"
-	username := "foo"
+	username := fooHost
 	password := "bar"
 	secretName := "test-secret"
 	host := "no-auth-locations"
@@ -100,7 +100,8 @@ func buildBasicAuthIngressWithSecondPath(host, namespace, secretName, pathName s
 		ObjectMeta: metav1.ObjectMeta{
 			Name:      host,
 			Namespace: namespace,
-			Annotations: map[string]string{"nginx.ingress.kubernetes.io/auth-type": "basic",
+			Annotations: map[string]string{
+				"nginx.ingress.kubernetes.io/auth-type":   "basic",
 				"nginx.ingress.kubernetes.io/auth-secret": secretName,
 				"nginx.ingress.kubernetes.io/auth-realm":  "test auth",
 			},
@@ -147,7 +148,6 @@ func buildBasicAuthIngressWithSecondPath(host, namespace, secretName, pathName s
 }
 
 func buildSecret(username, password, name, namespace string) *corev1.Secret {
-	//out, err := exec.Command("openssl", "passwd", "-crypt", password).CombinedOutput()
 	out, err := bcrypt.GenerateFromPassword([]byte(password), 14)
 	assert.Nil(ginkgo.GinkgoT(), err, "creating password")
 
diff --git a/test/e2e/settings/no_tls_redirect_locations.go b/test/e2e/settings/no_tls_redirect_locations.go
index 332d764d6..8339eb23e 100644
--- a/test/e2e/settings/no_tls_redirect_locations.go
+++ b/test/e2e/settings/no_tls_redirect_locations.go
@@ -44,6 +44,5 @@ var _ = framework.DescribeSetting("Add no tls redirect locations", func() {
 		f.WaitForNginxConfiguration(func(server string) bool {
 			return strings.Contains(server, "force_no_ssl_redirect = true,")
 		})
-
 	})
 })
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index 0173f41ac..0ec15db58 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -112,7 +112,7 @@ var _ = framework.DescribeSetting("OCSP", func() {
 				return strings.Contains(server, fmt.Sprintf(`server_name %v`, host))
 			})
 
-		tlsConfig := &tls.Config{ServerName: host, InsecureSkipVerify: true}
+		tlsConfig := &tls.Config{ServerName: host, InsecureSkipVerify: true} //nolint:gosec // Ignore the gosec error in testing
 		f.HTTPTestClientWithTLSConfig(tlsConfig).
 			GET("/").
 			WithURL(f.GetURL(framework.HTTPS)).
@@ -195,7 +195,8 @@ const configTemplate = `
 
 func prepareCertificates(namespace string) error {
 	config := fmt.Sprintf(configTemplate, namespace)
-	err := os.WriteFile("cfssl_config.json", []byte(config), 0644)
+	//nolint:gosec // Not change permission to avoid possible issues
+	err := os.WriteFile("cfssl_config.json", []byte(config), 0o644)
 	if err != nil {
 		return fmt.Errorf("creating cfssl_config.json file: %v", err)
 	}
diff --git a/test/e2e/settings/opentelemetry.go b/test/e2e/settings/opentelemetry.go
index 92d202cb3..15b5d165e 100644
--- a/test/e2e/settings/opentelemetry.go
+++ b/test/e2e/settings/opentelemetry.go
@@ -32,6 +32,8 @@ const (
 	opentelemetryLocationOperationName = "opentelemetry-location-operation-name"
 	opentelemetryConfig                = "opentelemetry-config"
 	opentelemetryConfigPath            = "/etc/nginx/opentelemetry.toml"
+
+	enable = "true"
 )
 
 var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
@@ -46,7 +48,7 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 
 	ginkgo.It("should not exists opentelemetry directive", func() {
 		config := map[string]string{}
-		config[enableOpentelemetry] = "false"
+		config[enableOpentelemetry] = disable
 		f.SetNginxConfigMapData(config)
 
 		f.EnsureIngress(framework.NewSingleIngress(enableOpentelemetry, "/", enableOpentelemetry, f.Namespace, "http-svc", 80, nil))
@@ -59,7 +61,7 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 
 	ginkgo.It("should exists opentelemetry directive when is enabled", func() {
 		config := map[string]string{}
-		config[enableOpentelemetry] = "true"
+		config[enableOpentelemetry] = enable
 		config[opentelemetryConfig] = opentelemetryConfigPath
 		f.SetNginxConfigMapData(config)
 
@@ -73,9 +75,9 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 
 	ginkgo.It("should include opentelemetry_trust_incoming_spans on directive when enabled", func() {
 		config := map[string]string{}
-		config[enableOpentelemetry] = "true"
+		config[enableOpentelemetry] = enable
 		config[opentelemetryConfig] = opentelemetryConfigPath
-		config[opentelemetryTrustIncomingSpan] = "true"
+		config[opentelemetryTrustIncomingSpan] = enable
 		f.SetNginxConfigMapData(config)
 
 		f.EnsureIngress(framework.NewSingleIngress(enableOpentelemetry, "/", enableOpentelemetry, f.Namespace, "http-svc", 80, nil))
@@ -88,7 +90,7 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 
 	ginkgo.It("should not exists opentelemetry_operation_name directive when is empty", func() {
 		config := map[string]string{}
-		config[enableOpentelemetry] = "true"
+		config[enableOpentelemetry] = enable
 		config[opentelemetryConfig] = opentelemetryConfigPath
 		config[opentelemetryOperationName] = ""
 		f.SetNginxConfigMapData(config)
@@ -103,7 +105,7 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 
 	ginkgo.It("should exists opentelemetry_operation_name directive when is configured", func() {
 		config := map[string]string{}
-		config[enableOpentelemetry] = "true"
+		config[enableOpentelemetry] = enable
 		config[opentelemetryConfig] = opentelemetryConfigPath
 		config[opentelemetryOperationName] = "HTTP $request_method $uri"
 		f.SetNginxConfigMapData(config)
@@ -115,5 +117,4 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 				return strings.Contains(cfg, `opentelemetry_operation_name "HTTP $request_method $uri"`)
 			})
 	})
-
 })
diff --git a/test/e2e/settings/opentracing.go b/test/e2e/settings/opentracing.go
index aee01ea60..76d96498d 100644
--- a/test/e2e/settings/opentracing.go
+++ b/test/e2e/settings/opentracing.go
@@ -41,8 +41,12 @@ const (
 
 	datadogCollectorHost = "datadog-collector-host"
 
-	opentracingOperationName         = "opentracing-operation-name"
+	opentracingOperationName  = "opentracing-operation-name"
+	opentracingOperationValue = "HTTP $request_method $uri"
+
 	opentracingLocationOperationName = "opentracing-location-operation-name"
+
+	localhost = "127.0.0.1"
 )
 
 var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
@@ -57,7 +61,7 @@ var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
 
 	ginkgo.It("should not exists opentracing directive", func() {
 		config := map[string]string{}
-		config[enableOpentracing] = "false"
+		config[enableOpentracing] = disable
 		f.SetNginxConfigMapData(config)
 
 		f.EnsureIngress(framework.NewSingleIngress(enableOpentracing, "/", enableOpentracing, f.Namespace, "http-svc", 80, nil))
@@ -70,8 +74,8 @@ var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
 
 	ginkgo.It("should exists opentracing directive when is enabled", func() {
 		config := map[string]string{}
-		config[enableOpentracing] = "true"
-		config[zipkinCollectorHost] = "127.0.0.1"
+		config[enableOpentracing] = enable
+		config[zipkinCollectorHost] = localhost
 		f.SetNginxConfigMapData(config)
 
 		f.EnsureIngress(framework.NewSingleIngress(enableOpentracing, "/", enableOpentracing, f.Namespace, "http-svc", 80, nil))
@@ -84,9 +88,9 @@ var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
 
 	ginkgo.It("should include opentracing_trust_incoming_span off directive when disabled", func() {
 		config := map[string]string{}
-		config[enableOpentracing] = "true"
-		config[opentracingTrustIncomingSpan] = "false"
-		config[zipkinCollectorHost] = "127.0.0.1"
+		config[enableOpentracing] = enable
+		config[opentracingTrustIncomingSpan] = disable
+		config[zipkinCollectorHost] = localhost
 		f.SetNginxConfigMapData(config)
 
 		f.EnsureIngress(framework.NewSingleIngress(enableOpentracing, "/", enableOpentracing, f.Namespace, "http-svc", 80, nil))
@@ -99,8 +103,8 @@ var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
 
 	ginkgo.It("should not exists opentracing_operation_name directive when is empty", func() {
 		config := map[string]string{}
-		config[enableOpentracing] = "true"
-		config[zipkinCollectorHost] = "127.0.0.1"
+		config[enableOpentracing] = enable
+		config[zipkinCollectorHost] = localhost
 		config[opentracingOperationName] = ""
 		f.SetNginxConfigMapData(config)
 
@@ -114,9 +118,9 @@ var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
 
 	ginkgo.It("should exists opentracing_operation_name directive when is configured", func() {
 		config := map[string]string{}
-		config[enableOpentracing] = "true"
-		config[zipkinCollectorHost] = "127.0.0.1"
-		config[opentracingOperationName] = "HTTP $request_method $uri"
+		config[enableOpentracing] = enable
+		config[zipkinCollectorHost] = localhost
+		config[opentracingOperationName] = opentracingOperationValue
 		f.SetNginxConfigMapData(config)
 
 		f.EnsureIngress(framework.NewSingleIngress(enableOpentracing, "/", enableOpentracing, f.Namespace, "http-svc", 80, nil))
@@ -129,8 +133,8 @@ var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
 
 	ginkgo.It("should not exists opentracing_location_operation_name directive when is empty", func() {
 		config := map[string]string{}
-		config[enableOpentracing] = "true"
-		config[zipkinCollectorHost] = "127.0.0.1"
+		config[enableOpentracing] = enable
+		config[zipkinCollectorHost] = localhost
 		config[opentracingLocationOperationName] = ""
 		f.SetNginxConfigMapData(config)
 
@@ -144,9 +148,9 @@ var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
 
 	ginkgo.It("should exists opentracing_location_operation_name directive when is configured", func() {
 		config := map[string]string{}
-		config[enableOpentracing] = "true"
-		config[zipkinCollectorHost] = "127.0.0.1"
-		config[opentracingLocationOperationName] = "HTTP $request_method $uri"
+		config[enableOpentracing] = enable
+		config[zipkinCollectorHost] = localhost
+		config[opentracingLocationOperationName] = opentracingOperationValue
 		f.SetNginxConfigMapData(config)
 
 		f.EnsureIngress(framework.NewSingleIngress(enableOpentracing, "/", enableOpentracing, f.Namespace, "http-svc", 80, nil))
@@ -159,8 +163,8 @@ var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
 
 	ginkgo.It("should enable opentracing using zipkin", func() {
 		config := map[string]string{}
-		config[enableOpentracing] = "true"
-		config[zipkinCollectorHost] = "127.0.0.1"
+		config[enableOpentracing] = enable
+		config[zipkinCollectorHost] = localhost
 		f.SetNginxConfigMapData(config)
 
 		framework.Sleep(10 * time.Second)
@@ -171,8 +175,8 @@ var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
 
 	ginkgo.It("should enable opentracing using jaeger", func() {
 		config := map[string]string{}
-		config[enableOpentracing] = "true"
-		config[jaegerCollectorHost] = "127.0.0.1"
+		config[enableOpentracing] = enable
+		config[jaegerCollectorHost] = localhost
 		f.SetNginxConfigMapData(config)
 
 		framework.Sleep(10 * time.Second)
@@ -183,9 +187,9 @@ var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
 
 	ginkgo.It("should enable opentracing using jaeger with sampler host", func() {
 		config := map[string]string{}
-		config[enableOpentracing] = "true"
-		config[jaegerCollectorHost] = "127.0.0.1"
-		config[jaegerSamplerHost] = "127.0.0.1"
+		config[enableOpentracing] = enable
+		config[jaegerCollectorHost] = localhost
+		config[jaegerSamplerHost] = localhost
 		f.SetNginxConfigMapData(config)
 
 		framework.Sleep(10 * time.Second)
@@ -197,8 +201,8 @@ var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
 	ginkgo.It("should propagate the w3c header when configured with jaeger", func() {
 		host := "jaeger-w3c"
 		config := map[string]string{}
-		config[enableOpentracing] = "true"
-		config[jaegerCollectorHost] = "127.0.0.1"
+		config[enableOpentracing] = enable
+		config[jaegerCollectorHost] = localhost
 		config[jaegerPropagationFormat] = "w3c"
 		f.SetNginxConfigMapData(config)
 
@@ -227,7 +231,7 @@ var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
 	/*
 		ginkgo.It("should enable opentracing using jaeger with an HTTP endpoint", func() {
 			config := map[string]string{}
-			config[enableOpentracing] = "true"
+			config[enableOpentracing] = TRUE
 			config[jaegerEndpoint] = "http://127.0.0.1/api/traces"
 			f.SetNginxConfigMapData(config)
 
@@ -240,7 +244,7 @@ var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
 
 	ginkgo.It("should enable opentracing using datadog", func() {
 		config := map[string]string{}
-		config[enableOpentracing] = "true"
+		config[enableOpentracing] = enable
 		config[datadogCollectorHost] = "http://127.0.0.1"
 		f.SetNginxConfigMapData(config)
 
diff --git a/test/e2e/settings/pod_security_policy_volumes.go b/test/e2e/settings/pod_security_policy_volumes.go
index dd4df3bd9..f8fc58300 100644
--- a/test/e2e/settings/pod_security_policy_volumes.go
+++ b/test/e2e/settings/pod_security_policy_volumes.go
@@ -38,7 +38,6 @@ var _ = framework.IngressNginxDescribe("[Security] Pod Security Policies with vo
 	f := framework.NewDefaultFramework("pod-security-policies-volumes")
 
 	ginkgo.It("should be running with a Pod Security Policy", func() {
-
 		k8sversion, err := f.KubeClientSet.Discovery().ServerVersion()
 		if err != nil {
 			assert.Nil(ginkgo.GinkgoT(), err, "getting version")
diff --git a/test/e2e/settings/proxy_connect_timeout.go b/test/e2e/settings/proxy_connect_timeout.go
index 1290775a5..185ac1dd1 100644
--- a/test/e2e/settings/proxy_connect_timeout.go
+++ b/test/e2e/settings/proxy_connect_timeout.go
@@ -14,6 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
+//nolint:dupl // Ignore dupl errors for similar test case
 package settings
 
 import (
@@ -64,5 +65,4 @@ var _ = framework.DescribeSetting("proxy-connect-timeout", func() {
 				return !strings.Contains(server, fmt.Sprintf("proxy_connect_timeout %ss;", proxyConnectTimeout))
 			})
 	})
-
 })
diff --git a/test/e2e/settings/proxy_protocol.go b/test/e2e/settings/proxy_protocol.go
index 9939cad9e..cfce68bf8 100644
--- a/test/e2e/settings/proxy_protocol.go
+++ b/test/e2e/settings/proxy_protocol.go
@@ -33,8 +33,10 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
+const proxyProtocol = "proxy-protocol"
+
 var _ = framework.DescribeSetting("use-proxy-protocol", func() {
-	f := framework.NewDefaultFramework("proxy-protocol")
+	f := framework.NewDefaultFramework(proxyProtocol)
 
 	setting := "use-proxy-protocol"
 
@@ -42,9 +44,9 @@ var _ = framework.DescribeSetting("use-proxy-protocol", func() {
 		f.NewEchoDeployment()
 		f.UpdateNginxConfigMapData(setting, "false")
 	})
-
+	//nolint:dupl // Ignore dupl errors for similar test case
 	ginkgo.It("should respect port passed by the PROXY Protocol", func() {
-		host := "proxy-protocol"
+		host := proxyProtocol
 
 		f.UpdateNginxConfigMapData(setting, "true")
 
@@ -73,14 +75,15 @@ var _ = framework.DescribeSetting("use-proxy-protocol", func() {
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error reading connection data")
 
 		body := string(data)
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=%v", "proxy-protocol"))
+		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=%v", proxyProtocol))
 		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-port=1234")
 		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-proto=http")
 		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-for=192.168.0.1")
 	})
 
+	//nolint:dupl // Ignore dupl errors for similar test case
 	ginkgo.It("should respect proto passed by the PROXY Protocol server port", func() {
-		host := "proxy-protocol"
+		host := proxyProtocol
 
 		f.UpdateNginxConfigMapData(setting, "true")
 
@@ -109,14 +112,14 @@ var _ = framework.DescribeSetting("use-proxy-protocol", func() {
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error reading connection data")
 
 		body := string(data)
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=%v", "proxy-protocol"))
+		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=%v", proxyProtocol))
 		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-port=443")
 		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-proto=https")
 		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-for=192.168.0.1")
 	})
 
 	ginkgo.It("should enable PROXY Protocol for HTTPS", func() {
-		host := "proxy-protocol"
+		host := proxyProtocol
 
 		f.UpdateNginxConfigMapData(setting, "true")
 
@@ -151,7 +154,7 @@ var _ = framework.DescribeSetting("use-proxy-protocol", func() {
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error reading connection data")
 
 		body := string(data)
-		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=%v", "proxy-protocol"))
+		assert.Contains(ginkgo.GinkgoT(), body, fmt.Sprintf("host=%v", proxyProtocol))
 		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-port=1234")
 		assert.Contains(ginkgo.GinkgoT(), body, "x-forwarded-proto=https")
 		assert.Contains(ginkgo.GinkgoT(), body, "x-scheme=https")
diff --git a/test/e2e/settings/proxy_read_timeout.go b/test/e2e/settings/proxy_read_timeout.go
index c84956cc9..484b44f24 100644
--- a/test/e2e/settings/proxy_read_timeout.go
+++ b/test/e2e/settings/proxy_read_timeout.go
@@ -14,6 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
+//nolint:dupl // Ignore dupl errors for similar test case
 package settings
 
 import (
@@ -64,5 +65,4 @@ var _ = framework.DescribeSetting("proxy-read-timeout", func() {
 				return !strings.Contains(server, fmt.Sprintf("proxy_read_timeout %ss;", proxyReadtimeout))
 			})
 	})
-
 })
diff --git a/test/e2e/settings/proxy_send_timeout.go b/test/e2e/settings/proxy_send_timeout.go
index 886642bc0..bdcd46f0f 100644
--- a/test/e2e/settings/proxy_send_timeout.go
+++ b/test/e2e/settings/proxy_send_timeout.go
@@ -14,6 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
+//nolint:dupl // Ignore dupl errors for similar test case
 package settings
 
 import (
@@ -64,5 +65,4 @@ var _ = framework.DescribeSetting("proxy-send-timeout", func() {
 				return !strings.Contains(server, fmt.Sprintf("proxy_send_timeout %ss;", proxySendTimeout))
 			})
 	})
-
 })
diff --git a/test/e2e/settings/ssl_passthrough.go b/test/e2e/settings/ssl_passthrough.go
index f0859f878..b10511bde 100644
--- a/test/e2e/settings/ssl_passthrough.go
+++ b/test/e2e/settings/ssl_passthrough.go
@@ -19,7 +19,7 @@ package settings
 import (
 	"context"
 	"crypto/tls"
-	"fmt"
+	"net"
 	"net/http"
 	"strings"
 
@@ -54,7 +54,6 @@ var _ = framework.IngressNginxDescribe("[Flag] enable-ssl-passthrough", func() {
 
 	ginkgo.Describe("With enable-ssl-passthrough enabled", func() {
 		ginkgo.It("should enable ssl-passthrough-proxy-port on a different port", func() {
-
 			err := f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
 				args := deployment.Spec.Template.Spec.Containers[0].Args
 				args = append(args, "--ssl-passthrough-proxy-port=1442")
@@ -77,7 +76,6 @@ var _ = framework.IngressNginxDescribe("[Flag] enable-ssl-passthrough", func() {
 		})
 
 		ginkgo.It("should pass unknown traffic to default backend and handle known traffic", func() {
-
 			host := "testpassthrough.com"
 			echoName := "echopass"
 
@@ -170,20 +168,21 @@ var _ = framework.IngressNginxDescribe("[Flag] enable-ssl-passthrough", func() {
 					return strings.Contains(server, "listen 442")
 				})
 
+			//nolint:gosec // Ignore the gosec error in testing
 			f.HTTPTestClientWithTLSConfig(&tls.Config{ServerName: host, InsecureSkipVerify: true}).
 				GET("/").
-				WithURL(fmt.Sprintf("https://%s:443", host)).
+				WithURL("https://"+net.JoinHostPort(host, "443")).
 				ForceResolve(f.GetNginxIP(), 443).
 				Expect().
 				Status(http.StatusOK)
 
+			//nolint:gosec // Ignore the gosec error in testing
 			f.HTTPTestClientWithTLSConfig(&tls.Config{ServerName: hostBad, InsecureSkipVerify: true}).
 				GET("/").
-				WithURL(fmt.Sprintf("https://%s:443", hostBad)).
+				WithURL("https://"+net.JoinHostPort(hostBad, "443")).
 				ForceResolve(f.GetNginxIP(), 443).
 				Expect().
 				Status(http.StatusNotFound)
-
 		})
 	})
 })
diff --git a/test/e2e/settings/tls.go b/test/e2e/settings/tls.go
index 2cead4a94..51f760df8 100644
--- a/test/e2e/settings/tls.go
+++ b/test/e2e/settings/tls.go
@@ -87,9 +87,7 @@ var _ = framework.DescribeSetting("[SSL] TLS protocols, ciphers and headers)", f
 	})
 
 	ginkgo.Context("should configure HSTS policy header", func() {
-		var (
-			tlsConfig *tls.Config
-		)
+		var tlsConfig *tls.Config
 
 		const (
 			hstsMaxAge            = "hsts-max-age"
@@ -182,7 +180,6 @@ var _ = framework.DescribeSetting("[SSL] TLS protocols, ciphers and headers)", f
 			got := header["Strict-Transport-Security"]
 			assert.Equal(ginkgo.GinkgoT(), 1, len(got))
 		})
-
 	})
 
 	ginkgo.Context("ports or X-Forwarded-Host check during HTTP tp HTTPS redirection", func() {
diff --git a/test/e2e/settings/validations/validations.go b/test/e2e/settings/validations/validations.go
index 6f1715ada..19488d247 100644
--- a/test/e2e/settings/validations/validations.go
+++ b/test/e2e/settings/validations/validations.go
@@ -29,7 +29,7 @@ import (
 
 var _ = framework.IngressNginxDescribeSerial("annotation validations", func() {
 	f := framework.NewDefaultFramework("validations")
-
+	//nolint:dupl // Ignore dupl errors for similar test case
 	ginkgo.It("should allow ingress based on their risk on webhooks", func() {
 		host := "annotation-validations"
 
@@ -54,9 +54,8 @@ var _ = framework.IngressNginxDescribeSerial("annotation validations", func() {
 		ing = framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
 		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Update(context.TODO(), ing, metav1.UpdateOptions{})
 		assert.NotNil(ginkgo.GinkgoT(), err, "creating ingress with risky annotations should trigger an error")
-
 	})
-
+	//nolint:dupl // Ignore dupl errors for similar test case
 	ginkgo.It("should allow ingress based on their risk on webhooks", func() {
 		host := "annotation-validations"
 
@@ -81,6 +80,5 @@ var _ = framework.IngressNginxDescribeSerial("annotation validations", func() {
 		ing = framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
 		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Update(context.TODO(), ing, metav1.UpdateOptions{})
 		assert.NotNil(ginkgo.GinkgoT(), err, "creating ingress with risky annotations should trigger an error")
-
 	})
 })
diff --git a/test/e2e/ssl/secret_update.go b/test/e2e/ssl/secret_update.go
index fe7bfca0c..8e81f09f9 100644
--- a/test/e2e/ssl/secret_update.go
+++ b/test/e2e/ssl/secret_update.go
@@ -98,7 +98,7 @@ var _ = framework.IngressNginxDescribe("[SSL] secret update", func() {
 				return strings.Contains(server, "server_name invalid-ssl") &&
 					strings.Contains(server, "listen 443")
 			})
-
+		//nolint:gosec // Ignore certificate validation in testing
 		resp := f.HTTPTestClientWithTLSConfig(&tls.Config{ServerName: host, InsecureSkipVerify: true}).
 			GET("/").
 			WithURL(f.GetURL(framework.HTTPS)).
diff --git a/test/e2e/status/update.go b/test/e2e/status/update.go
index 046752d2b..c3c48f8d2 100644
--- a/test/e2e/status/update.go
+++ b/test/e2e/status/update.go
@@ -108,6 +108,7 @@ var _ = framework.IngressNginxDescribe("[Status] status update", func() {
 			}
 		}()
 
+		//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
 		err = wait.Poll(5*time.Second, 4*time.Minute, func() (done bool, err error) {
 			ing, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Get(context.TODO(), host, metav1.GetOptions{})
 			if err != nil {
@@ -134,7 +135,8 @@ func getHostIP() net.IP {
 	}
 	defer conn.Close()
 
-	localAddr := conn.LocalAddr().(*net.UDPAddr)
+	localAddr, ok := conn.LocalAddr().(*net.UDPAddr)
+	assert.True(ginkgo.GinkgoT(), ok, "unexpected type: %T", conn.LocalAddr())
 
 	return localAddr.IP
 }
diff --git a/test/e2e/tcpudp/tcp.go b/test/e2e/tcpudp/tcp.go
index 16a633b63..f06d6c9a3 100644
--- a/test/e2e/tcpudp/tcp.go
+++ b/test/e2e/tcpudp/tcp.go
@@ -148,18 +148,18 @@ var _ = framework.IngressNginxDescribe("[TCP] tcp-services", func() {
 		}
 
 		var ips []string
-		var retryErr error
+		var errRetry error
 		err = wait.ExponentialBackoff(retry, func() (bool, error) {
-			ips, retryErr = resolver.LookupHost(context.Background(), "google-public-dns-b.google.com")
-			if retryErr == nil {
+			ips, errRetry = resolver.LookupHost(context.Background(), "google-public-dns-b.google.com")
+			if errRetry == nil {
 				return true, nil
 			}
 
 			return false, nil
 		})
-
+		//nolint:staticcheck // TODO: will replace it since wait.ErrWaitTimeout is deprecated
 		if err == wait.ErrWaitTimeout {
-			err = retryErr
+			err = errRetry
 		}
 
 		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error from DNS resolver")
@@ -167,7 +167,6 @@ var _ = framework.IngressNginxDescribe("[TCP] tcp-services", func() {
 	})
 
 	ginkgo.It("should reload after an update in the configuration", func() {
-
 		ginkgo.By("setting up a first deployment")
 		f.NewEchoDeployment(framework.WithDeploymentName("first-service"))
 
@@ -217,5 +216,4 @@ var _ = framework.IngressNginxDescribe("[TCP] tcp-services", func() {
 		assert.Nil(ginkgo.GinkgoT(), err, "obtaining nginx logs")
 		assert.Contains(ginkgo.GinkgoT(), logs, "Backend successfully reloaded")
 	})
-
 })

From a687343fedbb26c3e2cef0608a975d6bfe31a0f7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 31 Aug 2023 00:52:48 -0700
Subject: [PATCH 0907/1641] Bump docker/setup-buildx-action from 2.9.1 to
 2.10.0 (#10353)

Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.9.1 to 2.10.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/4c0219f9ac95b02789c1075625400b2acbff50b1...885d1462b80bc1c1c7f0b00334ad271f09369c55)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 596ef0427..a5dd136ae 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -158,7 +158,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@4c0219f9ac95b02789c1075625400b2acbff50b1 # v2.9.1
+        uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2.10.0
         with:
           version: latest
 

From c3a28ab45da2360ac5b590b640f6b5e6a20055b0 Mon Sep 17 00:00:00 2001
From: Son Bui <sonbv00@gmail.com>
Date: Mon, 4 Sep 2023 05:09:47 +0800
Subject: [PATCH 0908/1641] fix: path with sepecial characters warning #10281
 #10308 (#10330)

---
 docs/examples/rewrite/README.md          | 5 ++++-
 docs/user-guide/ingress-path-matching.md | 9 ++++++---
 2 files changed, 10 insertions(+), 4 deletions(-)

diff --git a/docs/examples/rewrite/README.md b/docs/examples/rewrite/README.md
index 5b42e1fc7..aadcc1e4b 100644
--- a/docs/examples/rewrite/README.md
+++ b/docs/examples/rewrite/README.md
@@ -30,6 +30,9 @@ Rewriting can be controlled using the following annotations:
 !!! note
     [Captured groups](https://www.regular-expressions.info/refcapture.html) are saved in numbered placeholders, chronologically, in the form `$1`, `$2` ... `$n`. These placeholders can be used as parameters in the `rewrite-target` annotation.
 
+!!! note
+    Please see the [FAQ](../faq.md#validation-of-path) for Validation Of __`path`__
+
 Create an Ingress rule with a rewrite annotation:
 
 ```console
@@ -49,7 +52,7 @@ spec:
     http:
       paths:
       - path: /something(/|$)(.*)
-        pathType: Prefix
+        pathType: ImplementationSpecific
         backend:
           service:
             name: http-svc
diff --git a/docs/user-guide/ingress-path-matching.md b/docs/user-guide/ingress-path-matching.md
index 321ddfa8e..dd618e08b 100644
--- a/docs/user-guide/ingress-path-matching.md
+++ b/docs/user-guide/ingress-path-matching.md
@@ -5,6 +5,9 @@
 !!! important
     Regular expressions and wild cards are not supported in the `spec.rules.host` field. Full hostnames must be used.
 
+!!! note
+    Please see the [FAQ](../faq.md#validation-of-path) for Validation Of __`path`__
+
 The ingress controller supports **case insensitive** regular expressions in the `spec.rules.http.paths.path` field.
 This can be enabled by setting the `nginx.ingress.kubernetes.io/use-regex` annotation to `true` (the default is false).
 
@@ -28,7 +31,7 @@ spec:
     http:
       paths:
       - path: /foo/.*
-        pathType: Prefix
+        pathType: ImplementationSpecific
         backend:
           service:
             name: test
@@ -95,7 +98,7 @@ spec:
     http:
       paths:
       - path: /foo/bar/(.+)
-        pathType: Prefix
+        pathType: ImplementationSpecific
         backend:
           service:
             name: service3
@@ -160,7 +163,7 @@ spec:
             port: 
               number: 80
       - path: /foo/bar/[A-Z0-9]{3}
-        pathType: Prefix
+        pathType: ImplementationSpecific
         backend:
           service:
             name: test

From 02236ca96595c1303c5f7dca06ae95c16cf41ffa Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Sun, 3 Sep 2023 23:13:47 +0200
Subject: [PATCH 0909/1641] Upgrade OpenTelemetry to v1.11.0 and gRPC to
 v1.57.0 (#10352)

* Upgrade OpenTelemetry to v1.11.0 and gRPC to v1.57

* upgrade module
---
 images/opentelemetry/rootfs/CMakeLists.txt | 17 ++++--
 images/opentelemetry/rootfs/Dockerfile     | 14 +++--
 images/opentelemetry/rootfs/build.sh       | 66 +++++++++++++++-------
 3 files changed, 67 insertions(+), 30 deletions(-)

diff --git a/images/opentelemetry/rootfs/CMakeLists.txt b/images/opentelemetry/rootfs/CMakeLists.txt
index ef90b5805..2a816ebf7 100644
--- a/images/opentelemetry/rootfs/CMakeLists.txt
+++ b/images/opentelemetry/rootfs/CMakeLists.txt
@@ -25,6 +25,7 @@ set(CMAKE_CXX_STANDARD 17)
 set(CMAKE_CXX_EXTENSIONS OFF)
 set(CMAKE_CXX_STANDARD_REQUIRED ON)
 set(CMAKE_CXX_FLAGS "-O2")
+set(CMAKE_VERBOSE_MAKEFILE ON CACHE BOOL "ON" FORCE)
 
 set(CMAKE_BUILD_TYPE
     Release
@@ -82,12 +83,18 @@ ExternalProject_Add(
              -DgRPC_BUILD_TESTS=OFF
              -DBUILD_SHARED_LIBS=OFF
              -DgRPC_INSTALL=ON
+             -DgRPC_BUILD_GRPC_NODE_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_OBJECTIVE_C_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_PHP_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_PYTHON_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_RUBY_PLUGIN=OFF
   CMAKE_CACHE_ARGS -DCMAKE_CXX_FLAGS:STRING=${CMAKE_CXX_FLAGS}
-  TEST_AFTER_INSTALL 0
-  DOWNLOAD_NO_PROGRESS 1
-  LOG_CONFIGURE 1
-  LOG_BUILD 0
-  LOG_INSTALL 1)
+  TEST_AFTER_INSTALL FALSE
+  USES_TERMINAL_BUILD TRUE
+  DOWNLOAD_NO_PROGRESS TRUE
+  LOG_CONFIGURE TRUE
+  LOG_BUILD TRUE
+  LOG_INSTALL TRUE)
 
 install(
   DIRECTORY ${STAGED_INSTALL_PREFIX}/
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index f3628b1f3..819c0d42c 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -21,19 +21,24 @@ COPY . /opt/third_party/
 # install build tools
 RUN apk update \
 	&& apk upgrade \
-	&& apk add -U bash cmake ninja \
+	&& apk add -U bash \
 	&& bash /opt/third_party/build.sh -p
 
-ENV NINJA_STATUS "[%p/%f/%t]"
+ENV NINJA_STATUS "[%p/%f/%t] "
 
 # install gRPC
 FROM base as grpc
-RUN bash /opt/third_party/build.sh -g v1.49.2
+RUN bash /opt/third_party/build.sh -g v1.57.0
+
+# install abseil-cpp
+FROM base as absl-cpp
+RUN bash /opt/third_party/build.sh -a 20230802.0
 
 # install OpenTelemetry-cpp
 FROM base as otel-cpp
 COPY --from=grpc /opt/third_party/install/ /usr
-RUN bash /opt/third_party/build.sh -o v1.8.1
+COPY --from=absl-cpp /opt/third_party/install/ /usr
+RUN bash /opt/third_party/build.sh -o v1.11.0
 
 # install otel_ngx_module.so
 FROM base as nginx
@@ -52,6 +57,5 @@ RUN CGO_ENABLED=0 go build -o /go/bin/init_module
 FROM cgr.dev/chainguard/static as final
 COPY --from=build-init /go/bin/init_module /
 COPY --from=nginx /etc/nginx/modules /etc/nginx/modules
-COPY --from=nginx /opt/third_party/install/lib /etc/nginx/modules
 
 CMD ["/init_module"]
diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
index 30faad304..ebf95e219 100755
--- a/images/opentelemetry/rootfs/build.sh
+++ b/images/opentelemetry/rootfs/build.sh
@@ -21,6 +21,7 @@ set -o pipefail
 export GRPC_GIT_TAG=${GRPC_GIT_TAG:="v1.43.2"}
 # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp/compare/v1.2.0...main
 export OPENTELEMETRY_CPP_VERSION=${OPENTELEMETRY_CPP_VERSION:="1.2.0"}
+export ABSL_CPP_VERSION=${ABSL_CPP_VERSION:="20230802.0"}
 export INSTAL_DIR=/opt/third_party/install
 # improve compilation times
 CORES=$(($(grep -c ^processor /proc/cpuinfo) - 1))
@@ -54,6 +55,8 @@ prepare()
 {
   apk add \
     linux-headers \
+    cmake \
+    ninja \
     openssl \
     curl-dev \
     openssl-dev \
@@ -71,14 +74,32 @@ install_grpc()
   cd ${BUILD_PATH}/grpc
   cmake -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
     -G Ninja \
-    -DGRPC_GIT_TAG=${GRPC_GIT_TAG} /opt/third_party \
-    -DgRPC_BUILD_GRPC_NODE_PLUGIN=OFF \
-    -DgRPC_BUILD_GRPC_OBJECTIVE_C_PLUGIN=OFF \
-    -DgRPC_BUILD_GRPC_PHP_PLUGIN=OFF \
-    -DgRPC_BUILD_GRPC_PHP_PLUGIN=OFF \
-    -DgRPC_BUILD_GRPC_PYTHON_PLUGIN=OFF \
-    -DgRPC_BUILD_GRPC_RUBY_PLUGIN=OFF
-  cmake --build . -j ${CORES} --target all install
+    -DGRPC_GIT_TAG=${GRPC_GIT_TAG} /opt/third_party
+
+  cmake --build . -j ${CORES} --target all install --verbose
+}
+
+install_absl()
+{
+  cd ${BUILD_PATH}
+  export LD_LIBRARY_PATH="${LD_LIBRARY_PATH:+LD_LIBRARY_PATH:}${INSTAL_DIR}/lib:/usr/local"
+  export PATH="${PATH}:${INSTAL_DIR}/bin"
+  git clone --recurse-submodules -j ${CORES} --depth=1 -b \
+    ${ABSL_CPP_VERSION} https://github.com/abseil/abseil-cpp.git abseil-cpp-${ABSL_CPP_VERSION}
+  cd "abseil-cpp-${ABSL_CPP_VERSION}"
+  mkdir -p .build
+  cd .build
+
+  cmake -DCMAKE_BUILD_TYPE=Release \
+        -G Ninja \
+        -DCMAKE_CXX_STANDARD=17 \
+        -DCMAKE_POSITION_INDEPENDENT_CODE=TRUE \
+        -DBUILD_TESTING=OFF \
+        -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
+        -DABSL_PROPAGATE_CXX_STD=ON \
+        -DBUILD_SHARED_LIBS=OFF \
+        ..
+  cmake --build . -j ${CORES} --target install
 }
 
 install_otel()
@@ -94,17 +115,19 @@ install_otel()
 
   cmake -DCMAKE_BUILD_TYPE=Release \
         -G Ninja \
+        -DCMAKE_CXX_STANDARD=17 \
         -DCMAKE_POSITION_INDEPENDENT_CODE=TRUE  \
         -DWITH_ZIPKIN=OFF \
-        -DWITH_JAEGER=OFF \
         -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
         -DBUILD_TESTING=OFF \
+        -DWITH_BENCHMARK=OFF \
+        -DWITH_FUNC_TESTS=OFF \
         -DBUILD_SHARED_LIBS=OFF \
-        -DWITH_OTLP=ON \
         -DWITH_OTLP_GRPC=ON \
         -DWITH_OTLP_HTTP=OFF \
-        -DWITH_ABSEIL=OFF \
+        -DWITH_ABSEIL=ON \
         -DWITH_EXAMPLES=OFF \
+        -DWITH_NO_DEPRECATED_CODE=ON \
         ..
   cmake --build . -j ${CORES} --target install
 }
@@ -128,7 +151,7 @@ install_nginx()
   export NGINX_VERSION=1.21.6
 
   # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/2656a4...main
-  export OPENTELEMETRY_CONTRIB_COMMIT=1ec94c82095bab61f06c7393b6f3272469d285af
+  export OPENTELEMETRY_CONTRIB_COMMIT=aaa51e2297bcb34297f3c7aa44fa790497d2f7f3
 
   mkdir -p /etc/nginx
   cd "$BUILD_PATH"
@@ -145,20 +168,19 @@ install_nginx()
   mkdir -p build
   cd build
   cmake -DCMAKE_BUILD_TYPE=Release \
-    -G Ninja \
-    -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
-    -DBUILD_SHARED_LIBS=ON \
-    -DNGINX_VERSION=${NGINX_VERSION} \
-    ..
+        -G Ninja \
+        -DCMAKE_CXX_STANDARD=17 \
+        -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
+        -DBUILD_SHARED_LIBS=ON \
+        -DNGINX_VERSION=${NGINX_VERSION} \
+        ..
   cmake --build . -j ${CORES} --target install
 
   mkdir -p /etc/nginx/modules
   cp ${INSTAL_DIR}/otel_ngx_module.so /etc/nginx/modules/otel_ngx_module.so
-
-  mkdir -p ${INSTAL_DIR}/lib
 }
 
-while getopts ":hpng:o:" option; do
+while getopts ":pha:g:o:n" option; do
    case $option in
     h) # display Help
          Help
@@ -177,6 +199,10 @@ while getopts ":hpng:o:" option; do
     n) # install nginx
         install_nginx
         exit;;
+    a) # install abseil
+        ABSL_CPP_VERSION=${OPTARG}
+        install_absl
+        exit;;
     \?)
         Help
         exit;;

From d45a0c3287247120865306657c6a195a52e95a85 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 4 Sep 2023 05:37:48 -0700
Subject: [PATCH 0910/1641] Bump aquasecurity/trivy-action from 0.11.2 to
 0.12.0 (#10365)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.11.2 to 0.12.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/41f05d9ecffa2ed3f1580af306000f734b733e54...fbd16365eb88e12433951383f5e99bd901fc618f)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 1acc6c163..253d36690 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@41f05d9ecffa2ed3f1580af306000f734b733e54 # v0.11.2
+        uses: aquasecurity/trivy-action@fbd16365eb88e12433951383f5e99bd901fc618f # v0.12.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'

From c9ca1683645f099dc968e96abb8972d5e0208348 Mon Sep 17 00:00:00 2001
From: Matt Clegg <m@cle.gg>
Date: Tue, 5 Sep 2023 12:42:51 +0545
Subject: [PATCH 0911/1641] BUGFIX incorrect indentation (#10254)

Error: Failed to render chart: exit status 1: Error: YAML parse error on ingress-nginx/templates/controller-serviceaccount.yaml: error converting YAML to JSON: yaml: line 14: mapping values are not allowed in this context
  Use --debug flag to render out invalid YAML
  Error: plugin "diff" exited with error
---
 charts/ingress-nginx/templates/controller-serviceaccount.yaml | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-serviceaccount.yaml b/charts/ingress-nginx/templates/controller-serviceaccount.yaml
index e6e776d09..e9e9f32ef 100644
--- a/charts/ingress-nginx/templates/controller-serviceaccount.yaml
+++ b/charts/ingress-nginx/templates/controller-serviceaccount.yaml
@@ -11,8 +11,7 @@ metadata:
   name: {{ template "ingress-nginx.serviceAccountName" . }}
   namespace: {{ .Release.Namespace }}
   {{- if .Values.serviceAccount.annotations }}
-  annotations:
-  {{- toYaml .Values.serviceAccount.annotations | nindent 4 }}
+  annotations: {{ toYaml .Values.serviceAccount.annotations | nindent 4 }}
   {{- end }}
 automountServiceAccountToken: {{ .Values.serviceAccount.automountServiceAccountToken }}
 {{- end }}

From 8a6af6068d3f4b850cdcca15f96ce56f49315f91 Mon Sep 17 00:00:00 2001
From: Chen Chen <imchench@gmail.com>
Date: Thu, 7 Sep 2023 01:06:53 +0800
Subject: [PATCH 0912/1641] Add golangci github action and replace the
 deprecated golint (#10187)

* Add golangci github action and replace the deprecated golint

Signed-off-by: z1cheng <imchench@gmail.com>

* Install if golangci-lint not exists

Signed-off-by: z1cheng <imchench@gmail.com>

* Use -z operator

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix json tag for DatadogSampleRate field in config.go

Signed-off-by: z1cheng <imchench@gmail.com>

* Add golangci linters

Signed-off-by: z1cheng <imchench@gmail.com>

* Revert DatadogSampleRate fix

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix comments

Signed-off-by: z1cheng <imchench@gmail.com>

* Add a new line

Signed-off-by: z1cheng <imchench@gmail.com>

* fixup! Add a new line

Signed-off-by: z1cheng <imchench@gmail.com>

* Add trigger condition

Signed-off-by: z1cheng <imchench@gmail.com>

* Add golint-check entry in makefile

Signed-off-by: Chen Chen <imchench@gmail.com>

* Run golint-check in a container

Signed-off-by: Chen Chen <imchench@gmail.com>

---------

Signed-off-by: z1cheng <imchench@gmail.com>
Signed-off-by: Chen Chen <imchench@gmail.com>
---
 .github/workflows/ci.yaml           |  19 ---
 .github/workflows/golangci-lint.yml |  34 ++++
 .golangci.yml                       | 241 ++++++++++++++++++++++++++++
 Makefile                            |   6 +
 hack/verify-golint.sh               |  22 +--
 5 files changed, 289 insertions(+), 33 deletions(-)
 create mode 100644 .github/workflows/golangci-lint.yml
 create mode 100644 .golangci.yml

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index a5dd136ae..e96993366 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -78,25 +78,6 @@ jobs:
           # G307 TODO: Deferring unsafe method "Close"
           args: -exclude=G109,G601,G104,G204,G304,G306,G307 -tests=false -exclude-dir=test -exclude-dir=images/  -exclude-dir=docs/ ./...
 
-  lint:
-    runs-on: ubuntu-latest
-    needs: changes
-    if: |
-      (needs.changes.outputs.go == 'true')
-    steps:
-      - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
-      
-      - name: Set up Go
-        id: go
-        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
-        with:
-          go-version: '1.20'
-          check-latest: true
-
-      - name: Run Lint
-        run: ./hack/verify-golint.sh
-
   gofmt:
     runs-on: ubuntu-latest
     needs: changes
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
new file mode 100644
index 000000000..d601d69dd
--- /dev/null
+++ b/.github/workflows/golangci-lint.yml
@@ -0,0 +1,34 @@
+name: golangci-lint
+
+on:
+  pull_request:
+  push:
+    branches:
+      - main
+    paths-ignore:
+      - 'docs/**'
+      - 'deploy/**'
+      - '**.md'
+
+permissions:
+  contents: read
+
+jobs:
+  golangci:
+    name: lint
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+      
+      - name: Set up Go
+        id: go
+        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
+        with:
+          go-version: '1.20'
+          check-latest: true
+      
+      - name: golangci-lint
+        uses: golangci/golangci-lint-action@639cd343e1d3b897ff35927a75193d57cfcba299 # v3.6.0
+        with:
+          version: v1.53
diff --git a/.golangci.yml b/.golangci.yml
new file mode 100644
index 000000000..5da8f0399
--- /dev/null
+++ b/.golangci.yml
@@ -0,0 +1,241 @@
+run:
+  timeout: 10m
+  allow-parallel-runners: true
+
+  # Maximum issues count per one linter. Set to 0 to disable. Default is 50.
+  max-issues-per-linter: 0
+
+  # Maximum count of issues with the same text. Set to 0 to disable. Default is 3.
+  max-same-issues: 0
+linters:
+  disable-all: true
+  enable:
+    - asasalint
+    - asciicheck
+    - bidichk
+    - bodyclose
+    - contextcheck
+    - decorder
+    - dogsled
+    - dupl
+    - durationcheck
+    - errcheck
+    - errchkjson
+    - errname
+    - execinquery
+    - ginkgolinter
+    - gocheckcompilerdirectives
+    - goconst
+    - gocritic
+    - gocyclo
+    - godox
+    - gofmt
+    - gofumpt
+    - goheader
+    - goimports
+    - gomoddirectives
+    - gomodguard
+    - goprintffuncname
+    - gosec
+    - gosimple
+    - govet
+    - grouper
+    - importas
+    - ineffassign
+    - loggercheck
+    - makezero
+    - misspell
+    - musttag
+    - nakedret
+    - nolintlint
+    - nosprintfhostport
+    - prealloc
+    - predeclared
+    - promlinter
+    - reassign
+    - revive
+    - rowserrcheck
+    - sqlclosecheck
+    - staticcheck
+    - stylecheck
+    - tenv
+    - testableexamples
+    - typecheck
+    - unconvert
+    - unparam
+    - unused
+    - usestdlibvars
+    - whitespace
+    # - containedctx
+    # - cyclop
+    # - dupword
+    # - errorlint
+    # - exhaustive
+    # - exhaustruct
+    # - exportloopref
+    # - forbidigo
+    # - forcetypeassert
+    # - funlen
+    # - gci
+    # - gochecknoglobals
+    # - gochecknoinits
+    # - gocognit
+    # - godot
+    # - goerr113
+    # - gomnd
+    # - interfacebloat
+    # - ireturn
+    # - lll
+    # - maintidx
+    # - nestif
+    # - nilerr
+    # - nilnil
+    # - nlreturn
+    # - noctx
+    # - nonamedreturns
+    # - paralleltest
+    # - tagliatelle
+    # - testpackage
+    # - thelper
+    # - tparallel
+    # - varnamelen
+    # - wastedassign
+    # - wrapcheck
+    # - wsl
+linters-settings:
+  gocyclo:
+    min-complexity: 40
+  godox:
+    keywords:
+      - BUG
+      - FIXME
+      - HACK
+  errcheck:
+    check-type-assertions: true
+    check-blank: true
+  gocritic:
+    enabled-checks:
+      # Diagnostic
+      - appendAssign
+      - argOrder
+      - badCall
+      - badCond
+      - badLock
+      - badRegexp
+      - badSorting
+      - builtinShadowDecl
+      - caseOrder
+      - codegenComment
+      - commentedOutCode
+      - deferInLoop
+      - deprecatedComment
+      - dupArg
+      - dupBranchBody
+      - dupCase
+      - dupSubExpr
+      - dynamicFmtString
+      - emptyDecl
+      - evalOrder
+      - exitAfterDefer
+      - externalErrorReassign
+      - filepathJoin
+      - flagDeref
+      - flagName
+      - mapKey
+      - nilValReturn
+      - offBy1
+      - regexpPattern
+      - returnAfterHttpError
+      - sloppyReassign
+      - sloppyTypeAssert
+      - sortSlice
+      - sprintfQuotedString
+      - sqlQuery
+      - syncMapLoadAndDelete
+      - truncateCmp
+      - unnecessaryDefer
+      - weakCond
+
+      # Performance
+      - appendCombine
+      - equalFold
+      - hugeParam
+      - indexAlloc
+      - preferDecodeRune
+      - preferFprint
+      - preferStringWriter
+      - preferWriteByte
+      - rangeExprCopy
+      - rangeValCopy
+      - sliceClear
+      - stringXbytes
+
+      # Style
+      - assignOp
+      - boolExprSimplify
+      - captLocal
+      - commentFormatting
+      - commentedOutImport
+      - defaultCaseOrder
+      - deferUnlambda
+      - docStub
+      - dupImport
+      - elseif
+      - emptyFallthrough
+      - emptyStringTest
+      - exposedSyncMutex
+      - hexLiteral
+      - httpNoBody
+      - ifElseChain
+      - methodExprCall
+      - newDeref
+      - octalLiteral
+      - preferFilepathJoin
+      - redundantSprint
+      - regexpMust
+      - regexpSimplify
+      - ruleguard
+      - singleCaseSwitch
+      - sloppyLen
+      - stringConcatSimplify
+      - stringsCompare
+      - switchTrue
+      - timeCmpSimplify
+      - timeExprSimplify
+      - todoCommentWithoutDetail
+      - tooManyResultsChecker
+      - typeAssertChain
+      - typeDefFirst
+      - typeSwitchVar
+      - underef
+      - unlabelStmt
+      - unlambda
+      - unslice
+      - valSwap
+      - whyNoLint
+      - wrapperFunc
+      - yodaStyleExpr
+
+      # Opinionated
+      - builtinShadow
+      - importShadow
+      - initClause
+      - nestingReduce
+      - paramTypeCombine
+      - ptrToRefParam
+      - typeUnparen
+      - unnamedResult
+      - unnecessaryBlock
+  nolintlint:
+    # Enable to ensure that nolint directives are all used. Default is true.
+    allow-unused: false
+    # Disable to ensure that nolint directives don't have a leading space. Default is true.
+    # TODO(lint): Enforce machine-readable `nolint` directives
+    allow-leading-space: true
+    # Exclude following linters from requiring an explanation.  Default is [].
+    allow-no-explanation: []
+    # Enable to require an explanation of nonzero length after each nolint directive. Default is false.
+    # TODO(lint): Enforce explanations for `nolint` directives
+    require-explanation: false
+    # Enable to require nolint directives to mention the specific linter being suppressed. Default is false.
+    require-specific: true
diff --git a/Makefile b/Makefile
index 7b413141a..792cd56a7 100644
--- a/Makefile
+++ b/Makefile
@@ -128,6 +128,12 @@ static-check: ## Run verification script for boilerplate, codegen, gofmt, golint
 	    MAC_OS=$(MAC_OS) \
 		hack/verify-all.sh
 
+.PHONY: golint-check
+golint-check:
+	@build/run-in-docker.sh \
+	    MAC_OS=$(MAC_OS) \
+		hack/verify-golint.sh
+
 ###############################
 # Tests for ingress-nginx
 ###############################
diff --git a/hack/verify-golint.sh b/hack/verify-golint.sh
index 7c9284880..17bcedd9f 100755
--- a/hack/verify-golint.sh
+++ b/hack/verify-golint.sh
@@ -22,19 +22,13 @@ KUBE_ROOT=$(dirname "${BASH_SOURCE}")/..
 
 cd "${KUBE_ROOT}"
 
-GOLINT=${GOLINT:-"golint"}
-PACKAGES=($(go list ./internal/... | grep -v /vendor/))
-bad_files=()
-for package in "${PACKAGES[@]}"; do
-  out=$("${GOLINT}" -min_confidence=0.9 "${package}" | grep -v -E '(should not use dot imports|internal/file/bindata.go)' || :)
-  if [[ -n "${out}" ]]; then
-    bad_files+=("${out}")
-  fi
-done
-if [[ "${#bad_files[@]}" -ne 0 ]]; then
-  echo "!!! '$GOLINT' problems: "
-  echo "${bad_files[@]}"
-  exit 1
+LINT=${LINT:-golangci-lint}
+
+if [[ -z "$(command -v ${LINT})" ]]; then
+  echo "${LINT} is missing. Installing it now."
+  # See: https://golangci-lint.run/usage/install/#local-installation
+  curl -sSfL https://raw.githubusercontent.com/golangci/golangci-lint/master/install.sh | sh -s -- -b $(go env GOPATH)/bin v1.53.3
+  LINT=$(go env GOPATH)/bin/golangci-lint
 fi
 
-# ex: ts=2 sw=2 et filetype=sh
+${LINT} run

From 5bb82dcb7e0cdf51a78ed4ca2f20a32eb75ae456 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Thu, 7 Sep 2023 16:55:06 -0300
Subject: [PATCH 0913/1641] Bump Go version to 1.21.1 on testrunner (#10378)

---
 images/test-runner/Makefile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 3cd378937..dc83dd4a2 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -43,7 +43,7 @@ image:
 		--pull \
 		--push \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=1.20.6 \
+		--build-arg GOLANG_VERSION=1.21.1 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
@@ -64,7 +64,7 @@ build: ensure-buildx
 		--progress=${PROGRESS} \
 		--pull \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=1.20.6 \
+		--build-arg GOLANG_VERSION=1.21.1 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \

From 8b85bada8232b1a49eda429862a7801a5fec8d41 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Thu, 7 Sep 2023 17:40:58 -0300
Subject: [PATCH 0914/1641] Bump Go version to 1.21.1 (#10377)

* Bump Go version to 1.21.1

* Bump testrunner image
---
 .github/workflows/ci.yaml                     | 28 ++++---------------
 .github/workflows/golangci-lint.yml           |  2 +-
 .github/workflows/plugin.yaml                 |  2 +-
 build/run-in-docker.sh                        |  2 +-
 go.mod                                        |  2 +-
 go.sum                                        |  8 ++++++
 images/custom-error-pages/rootfs/Dockerfile   |  2 +-
 images/custom-error-pages/rootfs/go.mod       |  2 +-
 .../rootfs/Dockerfile                         |  2 +-
 images/ext-auth-example-authsvc/rootfs/go.mod |  2 +-
 images/fastcgi-helloserver/rootfs/Dockerfile  |  2 +-
 .../go-grpc-greeter-server/rootfs/Dockerfile  |  2 +-
 images/httpbun/rootfs/Dockerfile              |  2 +-
 images/kube-webhook-certgen/rootfs/Dockerfile |  2 +-
 images/kube-webhook-certgen/rootfs/go.mod     |  2 +-
 images/opentelemetry/rootfs/go.mod            |  6 ++--
 magefiles/go.mod                              |  2 +-
 magefiles/go.sum                              |  7 +++++
 test/e2e-image/Makefile                       |  2 +-
 19 files changed, 39 insertions(+), 40 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index e96993366..3465a5264 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -62,23 +62,7 @@ jobs:
               - 'charts/ingress-nginx/**/*'
               - 'NGINX_BASE'
 
-
-  security:
-    runs-on: ubuntu-latest
-    steps:
-
-      - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
-
-      - name: Run Gosec Security Scanner
-        uses: securego/gosec@a89e9d5a7acb4457f3891ac18532b142b1bf9221 # v2.17.0
-        with:
-          # G601 for zz_generated.deepcopy.go
-          # G306 TODO: Expect WriteFile permissions to be 0600 or less
-          # G307 TODO: Deferring unsafe method "Close"
-          args: -exclude=G109,G601,G104,G204,G304,G306,G307 -tests=false -exclude-dir=test -exclude-dir=images/  -exclude-dir=docs/ ./...
-
-  gofmt:
+    gofmt:
     runs-on: ubuntu-latest
     needs: changes
     if: |
@@ -91,7 +75,7 @@ jobs:
         id: go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
-          go-version: '1.20'
+          go-version: '1.21.1'
           check-latest: true
 
       - name: Run go-fmt
@@ -110,7 +94,7 @@ jobs:
         id: go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
-          go-version: '1.20'
+          go-version: '1.21.1'
           check-latest: true
 
       - name: Run test
@@ -131,7 +115,7 @@ jobs:
         id: go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
-          go-version: '1.20'
+          go-version: '1.21.1'
           check-latest: true
 
       - name: Set up QEMU
@@ -195,7 +179,7 @@ jobs:
       - name: Setup Go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
-          go-version: '1.20'
+          go-version: '1.21.1'
           check-latest: true
 
       - name: cache
@@ -502,7 +486,7 @@ jobs:
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
-          go-version: '1.20'
+          go-version: '1.21.1'
           check-latest: true
 
       - name: kube-webhook-certgen image build
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index d601d69dd..09301af58 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -25,7 +25,7 @@ jobs:
         id: go
         uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
         with:
-          go-version: '1.20'
+          go-version: '1.21.1'
           check-latest: true
       
       - name: golangci-lint
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 16974e906..ba8fb2111 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -22,7 +22,7 @@ jobs:
       - name: Set up Go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
-          go-version: '1.20'
+          go-version: '1.21.1'
           check-latest: true
 
       - name: Run GoReleaser
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 86e0e443f..7e7974f0f 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20230623-d50c7193b@sha256:e5c68dc56934c273850bfb75c0348a2819756669baf59fcdce9e16771537b247}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20230907-5bb82dcb7@sha256:421cda0f65a949b8b67b5e62a45071702d19ed458a3e2ba753171b0e66943210}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/go.mod b/go.mod
index e78ca245e..de0287d40 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx
 
-go 1.20
+go 1.21.1
 
 require (
 	github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a
diff --git a/go.sum b/go.sum
index bbfacc71e..27b7bd039 100644
--- a/go.sum
+++ b/go.sum
@@ -103,6 +103,7 @@ github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbV
 github.com/go-logr/logr v1.2.4 h1:g01GSCwiDw2xSZfjJ2/T9M+S6pFdcNtFYsp+Y43HYDQ=
 github.com/go-logr/logr v1.2.4/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/zapr v1.2.3 h1:a9vnzlIBPQBBkeaR9IuMUfmVOrQlkoC4YfPoFkX3T7A=
+github.com/go-logr/zapr v1.2.3/go.mod h1:eIauM6P8qSvTw5o2ez6UEAfGjQKrxQTl5EoK+Qa2oG4=
 github.com/go-openapi/jsonpointer v0.19.6 h1:eCs3fxoIi3Wh6vtgmLTOjdhSpiqphQ+DaPn38N2ZdrE=
 github.com/go-openapi/jsonpointer v0.19.6/go.mod h1:osyAmYz/mB/C3I+WsTTSgw1ONzaLJoLCyoi6/zppojs=
 github.com/go-openapi/jsonreference v0.20.1 h1:FBLnyygC4/IZZr893oiomc9XaghoveYTrLC1F86HID8=
@@ -225,6 +226,7 @@ github.com/kr/pretty v0.2.0/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfn
 github.com/kr/pretty v0.2.1/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
 github.com/kr/pretty v0.3.0/go.mod h1:640gp4NfQd8pI5XOwp5fnNeVWj67G7CFk/SaSQn7NBk=
 github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
+github.com/kr/pretty v0.3.1/go.mod h1:hoEshYVHaxMs3cyo3Yncou5ZscifuDolrwPKZanG3xk=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
@@ -284,6 +286,7 @@ github.com/onsi/ginkgo/v2 v2.9.5/go.mod h1:tvAoo1QUJwNEU2ITftXTpR7R1RbCzoZUOs3Ro
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.27.6 h1:ENqfyGeS5AX/rlXDd/ETokDz93u0YufY1Pgxuy/PvWE=
+github.com/onsi/gomega v1.27.6/go.mod h1:PIQNjfQwkP3aQAH7lf7j87O/5FiNr+ZR8+ipb+qQlhg=
 github.com/opencontainers/runc v1.1.9 h1:XR0VIHTGce5eWPkaPesqTBrhW2yAcaraWfsEalNwQLM=
 github.com/opencontainers/runc v1.1.9/go.mod h1:CbUumNnWCuTGFukNXahoo/RFBZvDAgRh/smNYNOhA50=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
@@ -327,6 +330,7 @@ github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFR
 github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTEfhy4qGm1nDQc=
 github.com/rogpeppe/go-internal v1.8.0/go.mod h1:WmiCO8CzOY8rg0OYDC4/i/2WRWAB6poM+XZ2dLUbcbE=
 github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
+github.com/rogpeppe/go-internal v1.11.0/go.mod h1:ddIwULY96R17DhadqLgMfk9H9tvdUzkipdSkR5nkCZA=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
 github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=
@@ -380,8 +384,11 @@ go.opencensus.io v0.22.4/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
 go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 h1:+FNtrFTmVw0YZGpBGX56XDee331t6JAXeK2bcyhLOOc=
 go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5/go.mod h1:nmDLcffg48OtT/PSW0Hg7FvpRQsQh5OSqIylirxKC7o=
 go.uber.org/atomic v1.7.0 h1:ADUqmZGgLDDfbSL9ZmPxKTybcoEYHgpYfELNoN+7hsw=
+go.uber.org/atomic v1.7.0/go.mod h1:fEN4uk6kAWBTFdckzkM89CLk9XfWZrxpCo0nPH17wJc=
 go.uber.org/multierr v1.6.0 h1:y6IPFStTAIT5Ytl7/XYmHvzXQ7S3g/IeZW9hyZ5thw4=
+go.uber.org/multierr v1.6.0/go.mod h1:cdWPpRnG4AhwMwsgIHip0KRBQjJy5kYEpYjJxpXp9iU=
 go.uber.org/zap v1.24.0 h1:FiJd5l1UOLj0wCgbSE0rwwXHzEdAZS6hiiSnxJN/D60=
+go.uber.org/zap v1.24.0/go.mod h1:2kMP+WWQ8aoFoedH3T2sq6iJ2yDWpHbP0f6MQbS9Gkg=
 golang.org/dl v0.0.0-20190829154251-82a15e2f2ead/go.mod h1:IUMfjQLJQd4UTqG1Z90tenwKoCX93Gn3MAQJMOSBsDQ=
 golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
@@ -593,6 +600,7 @@ golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8T
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 gomodules.xyz/jsonpatch/v2 v2.2.0 h1:4pT439QV83L+G9FkcCriY6EkpcK6r6bK+A5FBUMI7qY=
+gomodules.xyz/jsonpatch/v2 v2.2.0/go.mod h1:WXp+iVDkoLQqPudfQ9GBlwB2eZ5DKOnjQZCYdOS8GPY=
 google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
 google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M=
 google.golang.org/api v0.8.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index 4560e9ed5..8ae42317d 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.20.5-alpine3.18 as builder
+FROM golang:1.21.1-alpine3.18 as builder
 
 RUN apk update \
     && apk upgrade && apk add git
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 89e47a4b5..1fc8f9939 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.20
+go 1.21.1
 
 require github.com/prometheus/client_golang v1.11.1
 
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index 02d92d773..f0b51374b 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.20.5-alpine3.18 as builder
+FROM golang:1.21.1-alpine3.18 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index cc5124072..df99c08b0 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,6 +1,6 @@
 module example.com/authsvc
 
-go 1.20
+go 1.21.1
 
 require k8s.io/apimachinery v0.23.1
 
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
index 096d31abb..d4ed8305f 100755
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.20.5-alpine3.18 as builder
+FROM golang:1.21.1-alpine3.18 as builder
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
 
diff --git a/images/go-grpc-greeter-server/rootfs/Dockerfile b/images/go-grpc-greeter-server/rootfs/Dockerfile
index 46f916fb4..6460ce154 100644
--- a/images/go-grpc-greeter-server/rootfs/Dockerfile
+++ b/images/go-grpc-greeter-server/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.20.5-alpine3.18 as build
+FROM golang:1.21.1-alpine3.18 as build
 
 WORKDIR /go/src/greeter-server
 
diff --git a/images/httpbun/rootfs/Dockerfile b/images/httpbun/rootfs/Dockerfile
index e88716bb8..dd2d04502 100644
--- a/images/httpbun/rootfs/Dockerfile
+++ b/images/httpbun/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.20.5 AS builder
+FROM golang:1.21.1 AS builder
 
 ENV LC_ALL=C.UTF-8
 ENV LANG=C.UTF-8
diff --git a/images/kube-webhook-certgen/rootfs/Dockerfile b/images/kube-webhook-certgen/rootfs/Dockerfile
index 13226dbe2..4a7e32ced 100644
--- a/images/kube-webhook-certgen/rootfs/Dockerfile
+++ b/images/kube-webhook-certgen/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM --platform=$BUILDPLATFORM golang:1.20.5 as builder
+FROM --platform=$BUILDPLATFORM golang:1.21.1 as builder
 ARG BUILDPLATFORM
 ARG TARGETARCH
 
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 49f95828f..b2870f840 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,6 +1,6 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.20
+go 1.21.1
 
 require (
 	github.com/onrik/logrus v0.9.0
diff --git a/images/opentelemetry/rootfs/go.mod b/images/opentelemetry/rootfs/go.mod
index f636c81b7..2ca85f584 100644
--- a/images/opentelemetry/rootfs/go.mod
+++ b/images/opentelemetry/rootfs/go.mod
@@ -1,3 +1,3 @@
-module init-otel
-
-go 1.20
+module init-otel
+
+go 1.21.1
diff --git a/magefiles/go.mod b/magefiles/go.mod
index 40b909600..3282bc68b 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -1,6 +1,6 @@
 module github.com/kubernetes/ingress-nginx/magefiles
 
-go 1.20
+go 1.21.1
 
 require (
 	github.com/blang/semver/v4 v4.0.0
diff --git a/magefiles/go.sum b/magefiles/go.sum
index 9c0c8ee7f..733486e9e 100644
--- a/magefiles/go.sum
+++ b/magefiles/go.sum
@@ -24,6 +24,7 @@ github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiu
 github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.9 h1:O2Tfq5qg4qc4AmwVlvv0oLiVAGB7enBSJ2x2DqQFi38=
+github.com/google/go-cmp v0.5.9/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/go-github/v48 v48.2.0 h1:68puzySE6WqUY9KWmpOsDEQfDZsso98rT6pZcz9HqcE=
 github.com/google/go-github/v48 v48.2.0/go.mod h1:dDlehKBDo850ZPvCTK0sEqTCVWcrGl2LcDiajkYi89Y=
 github.com/google/go-querystring v1.1.0 h1:AnCroh3fv4ZBgVIf1Iwtovgjaw/GiKJo8M8yD/fhyJ8=
@@ -36,14 +37,17 @@ github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORN
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
+github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
 github.com/magefile/mage v1.14.0 h1:6QDX3g6z1YvJ4olPhT1wksUcSa/V0a1B+pJb73fBjyo=
 github.com/magefile/mage v1.14.0/go.mod h1:z5UZb/iS3GoOSn0JgWuiw7dxlurVYTu+/jHXqQg881A=
 github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e h1:fD57ERR4JtEqsWbfPhv4DMiApHyliiK5xCTNVSPiaAs=
+github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
 github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.10.2 h1:uqH7bpe+ERSiDa34FDOF7RikN6RzXgduUF8yarlZp94=
 github.com/onsi/ginkgo v1.10.2/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
 github.com/onsi/gomega v1.20.1 h1:PA/3qinGoukvymdIDV8pii6tiZgC8kbmJO6Z5+b002Q=
+github.com/onsi/gomega v1.20.1/go.mod h1:DtrZpjmvpn2mPm4YWQa0/ALMDj9v4YxLgojwPeREyVo=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
@@ -72,9 +76,11 @@ golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJ
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.5.0 h1:MUK/U/4lj1t1oPg0HfuXDN/Z1wv31ZJ/YcPiGccS4DU=
+golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.7.0 h1:4BRB4x83lYWy72KwLD/qYDuTu7q9PjSagHvijDw7cLo=
+golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/appengine v1.6.7 h1:FZR1q0exgwxzPzp/aF+VccGrSfxfPpkBqjIIEq3ru6c=
@@ -86,6 +92,7 @@ google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqw
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f h1:BLraFXnmrev5lT+xlilqcH8XK9/i0At2xKjWk4p6zsU=
+gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/fsnotify.v1 v1.4.7 h1:xOHLXZwVvI9hhs+cLKq5+I5onOuwQLhQwiu63xxlHs4=
 gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index f68d6ea6e..bd3453253 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20230623-d50c7193b@sha256:e5c68dc56934c273850bfb75c0348a2819756669baf59fcdce9e16771537b247"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20230907-5bb82dcb7@sha256:421cda0f65a949b8b67b5e62a45071702d19ed458a3e2ba753171b0e66943210"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"

From 373b1d1741f19ccce7522d526ec7df7d10d1502b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 7 Sep 2023 17:42:52 -0300
Subject: [PATCH 0915/1641] Bump github.com/cyphar/filepath-securejoin in
 /magefiles (#10374)

Bumps [github.com/cyphar/filepath-securejoin](https://github.com/cyphar/filepath-securejoin) from 0.2.3 to 0.2.4.
- [Release notes](https://github.com/cyphar/filepath-securejoin/releases)
- [Commits](https://github.com/cyphar/filepath-securejoin/compare/v0.2.3...v0.2.4)

---
updated-dependencies:
- dependency-name: github.com/cyphar/filepath-securejoin
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 magefiles/go.mod | 2 +-
 magefiles/go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/magefiles/go.mod b/magefiles/go.mod
index 3282bc68b..051e88de7 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -15,7 +15,7 @@ require (
 require (
 	github.com/BurntSushi/toml v1.2.1 // indirect
 	github.com/Masterminds/semver v1.5.0 // indirect
-	github.com/cyphar/filepath-securejoin v0.2.3 // indirect
+	github.com/cyphar/filepath-securejoin v0.2.4 // indirect
 	github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960 // indirect
 	github.com/ghodss/yaml v1.0.0 // indirect
 	github.com/gobwas/glob v0.2.3 // indirect
diff --git a/magefiles/go.sum b/magefiles/go.sum
index 733486e9e..380e194e7 100644
--- a/magefiles/go.sum
+++ b/magefiles/go.sum
@@ -4,8 +4,8 @@ github.com/Masterminds/semver v1.5.0 h1:H65muMkzWKEuNDnfl9d70GUjFniHKHRbFPGBuZ3Q
 github.com/Masterminds/semver v1.5.0/go.mod h1:MB6lktGJrhw8PrUyiEoblNEGEQ+RzHPF078ddwwvV3Y=
 github.com/blang/semver/v4 v4.0.0 h1:1PFHFE6yCCTv8C1TeyNNarDzntLi7wMI5i/pzqYIsAM=
 github.com/blang/semver/v4 v4.0.0/go.mod h1:IbckMUScFkM3pff0VJDNKRiT6TG/YpiHIM2yvyW5YoQ=
-github.com/cyphar/filepath-securejoin v0.2.3 h1:YX6ebbZCZP7VkM3scTTokDgBL2TY741X51MTk3ycuNI=
-github.com/cyphar/filepath-securejoin v0.2.3/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
+github.com/cyphar/filepath-securejoin v0.2.4 h1:Ugdm7cg7i6ZK6x3xDF1oEu1nfkyfH53EtKeQYTC3kyg=
+github.com/cyphar/filepath-securejoin v0.2.4/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=

From 0729935fbc113b197acff03d922f12f3db6e8ae0 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 7 Sep 2023 14:08:58 -0700
Subject: [PATCH 0916/1641] Bump github.com/cyphar/filepath-securejoin from
 0.2.3 to 0.2.4 (#10373)

Bumps [github.com/cyphar/filepath-securejoin](https://github.com/cyphar/filepath-securejoin) from 0.2.3 to 0.2.4.
- [Release notes](https://github.com/cyphar/filepath-securejoin/releases)
- [Commits](https://github.com/cyphar/filepath-securejoin/compare/v0.2.3...v0.2.4)

---
updated-dependencies:
- dependency-name: github.com/cyphar/filepath-securejoin
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index de0287d40..bd52b5cb2 100644
--- a/go.mod
+++ b/go.mod
@@ -50,7 +50,7 @@ require (
 	github.com/blang/semver/v4 v4.0.0 // indirect
 	github.com/cespare/xxhash/v2 v2.2.0 // indirect
 	github.com/coreos/go-systemd/v22 v22.3.2 // indirect
-	github.com/cyphar/filepath-securejoin v0.2.3 // indirect
+	github.com/cyphar/filepath-securejoin v0.2.4 // indirect
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/eapache/queue v1.1.0 // indirect
 	github.com/emicklei/go-restful/v3 v3.10.2 // indirect
diff --git a/go.sum b/go.sum
index 27b7bd039..36ec1043d 100644
--- a/go.sum
+++ b/go.sum
@@ -61,8 +61,8 @@ github.com/coreos/go-systemd/v22 v22.3.2 h1:D9/bQk5vlXQFZ6Kwuu6zaiXJ9oTPe68++AzA
 github.com/coreos/go-systemd/v22 v22.3.2/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
 github.com/cpuguy83/go-md2man/v2 v2.0.2/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
-github.com/cyphar/filepath-securejoin v0.2.3 h1:YX6ebbZCZP7VkM3scTTokDgBL2TY741X51MTk3ycuNI=
-github.com/cyphar/filepath-securejoin v0.2.3/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
+github.com/cyphar/filepath-securejoin v0.2.4 h1:Ugdm7cg7i6ZK6x3xDF1oEu1nfkyfH53EtKeQYTC3kyg=
+github.com/cyphar/filepath-securejoin v0.2.4/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=

From e5f524268ecc9f0180049aed25d936b6c89706a0 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Fri, 8 Sep 2023 08:04:15 -0300
Subject: [PATCH 0917/1641] Fix http default backend test (#10382)

---
 .github/workflows/ci.yaml                  |  2 +-
 test/e2e/defaultbackend/default_backend.go | 16 ++++++++--------
 test/e2e/settings/ocsp/ocsp.go             |  1 +
 3 files changed, 10 insertions(+), 9 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 3465a5264..6413174a0 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -62,7 +62,7 @@ jobs:
               - 'charts/ingress-nginx/**/*'
               - 'NGINX_BASE'
 
-    gofmt:
+  gofmt:
     runs-on: ubuntu-latest
     needs: changes
     if: |
diff --git a/test/e2e/defaultbackend/default_backend.go b/test/e2e/defaultbackend/default_backend.go
index e589024b4..936878000 100644
--- a/test/e2e/defaultbackend/default_backend.go
+++ b/test/e2e/defaultbackend/default_backend.go
@@ -49,15 +49,15 @@ var _ = framework.IngressNginxDescribe("[Default Backend]", func() {
 			{"basic HTTPS POST request without host to path / should return 404", "", framework.HTTPS, "POST", "/", http.StatusNotFound},
 			{"basic HTTPS POST request without host to path /demo should return 404", "", framework.HTTPS, "POST", "/demo", http.StatusNotFound},
 
-			{"basic HTTP GET request to host foo.bar.com and path / should return 404", " foo.bar.com", framework.HTTP, "GET", "/", http.StatusNotFound},
-			{"basic HTTP GET request to host foo.bar.com and path /demo should return 404", " foo.bar.com", framework.HTTP, "GET", "/demo", http.StatusNotFound},
-			{"basic HTTPS GET request to host foo.bar.com and path / should return 404", " foo.bar.com", framework.HTTPS, "GET", "/", http.StatusNotFound},
-			{"basic HTTPS GET request to host foo.bar.com and path /demo should return 404", " foo.bar.com", framework.HTTPS, "GET", "/demo", http.StatusNotFound},
+			{"basic HTTP GET request to host foo.bar.com and path / should return 404", "foo.bar.com", framework.HTTP, "GET", "/", http.StatusNotFound},
+			{"basic HTTP GET request to host foo.bar.com and path /demo should return 404", "foo.bar.com", framework.HTTP, "GET", "/demo", http.StatusNotFound},
+			{"basic HTTPS GET request to host foo.bar.com and path / should return 404", "foo.bar.com", framework.HTTPS, "GET", "/", http.StatusNotFound},
+			{"basic HTTPS GET request to host foo.bar.com and path /demo should return 404", "foo.bar.com", framework.HTTPS, "GET", "/demo", http.StatusNotFound},
 
-			{"basic HTTP POST request to host foo.bar.com and path / should return 404", " foo.bar.com", framework.HTTP, "POST", "/", http.StatusNotFound},
-			{"basic HTTP POST request to host foo.bar.com and path /demo should return 404", " foo.bar.com", framework.HTTP, "POST", "/demo", http.StatusNotFound},
-			{"basic HTTPS POST request to host foo.bar.com and path / should return 404", " foo.bar.com", framework.HTTPS, "POST", "/", http.StatusNotFound},
-			{"basic HTTPS POST request to host foo.bar.com and path /demo should return 404", " foo.bar.com", framework.HTTPS, "POST", "/demo", http.StatusNotFound},
+			{"basic HTTP POST request to host foo.bar.com and path / should return 404", "foo.bar.com", framework.HTTP, "POST", "/", http.StatusNotFound},
+			{"basic HTTP POST request to host foo.bar.com and path /demo should return 404", "foo.bar.com", framework.HTTP, "POST", "/demo", http.StatusNotFound},
+			{"basic HTTPS POST request to host foo.bar.com and path / should return 404", "foo.bar.com", framework.HTTPS, "POST", "/", http.StatusNotFound},
+			{"basic HTTPS POST request to host foo.bar.com and path /demo should return 404", "foo.bar.com", framework.HTTPS, "POST", "/demo", http.StatusNotFound},
 		}
 
 		framework.Sleep()
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index 0ec15db58..4d419c5d0 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -47,6 +47,7 @@ var _ = framework.DescribeSetting("OCSP", func() {
 	})
 
 	ginkgo.It("should enable OCSP and contain stapling information in the connection", func() {
+		ginkgo.Skip("Skipped due to a bug with cfssl and Alpine")
 		host := "www.example.com"
 
 		f.UpdateNginxConfigMapData("enable-ocsp", "true")

From 4664b741ff789817ed32923cf0391cb0a4bc77df Mon Sep 17 00:00:00 2001
From: Son Bui <sonbv00@gmail.com>
Date: Sat, 9 Sep 2023 01:34:15 +0800
Subject: [PATCH 0918/1641] fix: remove curl on base container #9716 (#10306)

* fix: remove curl on base container #9716

* fix: remove curl on chroot container #9716

Signed-off-by: Son Bui <sonbv00@gmail.com>

* fix: remove curl on test runner image #9716

Signed-off-by: Son Bui <sonbv00@gmail.com>

* fix: remove curl on e2e runner container #9716

Signed-off-by: Son Bui <sonbv00@gmail.com>

---------

Signed-off-by: Son Bui <sonbv00@gmail.com>
---
 images/nginx/rootfs/Dockerfile       | 1 -
 images/test-runner/rootfs/Dockerfile | 1 -
 rootfs/Dockerfile-chroot             | 1 -
 test/e2e-image/Dockerfile            | 1 -
 4 files changed, 4 deletions(-)

diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 7627870ba..d5cd8c143 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -40,7 +40,6 @@ RUN apk update \
   pcre \
   zlib \
   geoip \
-  curl \
   ca-certificates \
   patch \
   yajl \
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 40017f775..161b6caf4 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -65,7 +65,6 @@ RUN apk update && apk upgrade && apk add --no-cache \
   unzip \
   openssl \
   cfssl@testing \
-  curl \
   tzdata \
   libc6-compat
 
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index 48facd44f..945304ad2 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -50,7 +50,6 @@ RUN apk update \
   && apk add -U --no-cache \
      bash \
      openssl \
-     curl \
      ca-certificates \
      dumb-init \
      tzdata \
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 2ee5716ed..28609d23d 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -7,7 +7,6 @@ RUN apk update \
 	&& apk upgrade && apk add -U --no-cache \
   ca-certificates \
   bash \
-  curl \
   tzdata \
   libc6-compat \
   openssl

From da9c5730f669d4bcad5c7146a644796cb7c24ee5 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Sat, 9 Sep 2023 11:44:09 -0400
Subject: [PATCH 0919/1641] release notes 1.8.2 (#10389)

* release notes 1.8.2

Signed-off-by: James Strong <strong.james.e@gmail.com>

* fix yaml error

Signed-off-by: James Strong <strong.james.e@gmail.com>

* supdate docs

* Rolling back to v1.21.1

---------

Signed-off-by: James Strong <strong.james.e@gmail.com>
Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>
---
 README.md                                     |   1 +
 TAG                                           |   2 +-
 changelog/Changelog-1.8.2.md                  |  19 +
 charts/ingress-nginx/Chart.yaml               |   9 +-
 charts/ingress-nginx/README.md                |   8 +-
 .../changelog/Changelog-4.7.2.md              |   9 +
 charts/ingress-nginx/values.yaml              |   6 +-
 deploy/static/provider/aws/deploy.yaml        |  44 +-
 .../aws/nlb-with-tls-termination/deploy.yaml  |  44 +-
 deploy/static/provider/baremetal/deploy.yaml  |  44 +-
 deploy/static/provider/cloud/deploy.yaml      |  44 +-
 deploy/static/provider/do/deploy.yaml         |  44 +-
 deploy/static/provider/exoscale/deploy.yaml   |  44 +-
 deploy/static/provider/kind/deploy.yaml       |  44 +-
 deploy/static/provider/oracle/deploy.yaml     |  44 +-
 deploy/static/provider/scw/deploy.yaml        |  44 +-
 docs/deploy/index.md                          |  20 +-
 docs/e2e-tests.md                             | 924 ++++++------------
 18 files changed, 560 insertions(+), 834 deletions(-)
 create mode 100644 changelog/Changelog-1.8.2.md
 create mode 100644 charts/ingress-nginx/changelog/Changelog-4.7.2.md

diff --git a/README.md b/README.md
index 812ddacb6..b6e2dafe7 100644
--- a/README.md
+++ b/README.md
@@ -38,6 +38,7 @@ the versions listed. Ingress-Nginx versions may work on older versions but the p
 
 |    | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
 |:--:|-----------------------|------------------------------|----------------|---------------|--------------------|
+| 🔄 | **v1.8.2**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
 | 🔄 | **v1.8.1**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
 | 🔄 | **v1.8.0**            | 1.27,1.26, 1.25, 1.24        | 3.18.0         | 1.21.6        | 4.7.*              |
 | 🔄 | **v1.7.1**            | 1.27,1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
diff --git a/TAG b/TAG
index 804a616da..57f52717b 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.8.0
+v1.8.2
diff --git a/changelog/Changelog-1.8.2.md b/changelog/Changelog-1.8.2.md
new file mode 100644
index 000000000..12a273af2
--- /dev/null
+++ b/changelog/Changelog-1.8.2.md
@@ -0,0 +1,19 @@
+# Changelog
+
+### 1.8.2
+Images:
+
+ * registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
+ * registry.k8s.io/ingress-nginx/controller-chroot:v1.8.2@sha256:1317a563219f755a6094d990057c78e5c4dcea5e31f4ce1db8641e732a7d6133
+ 
+### All Changes:
+
+* Release v1.8.2 and Update Go to v1.21.1 (#10379)
+* Making auth access logs optional (#10380)
+* [release-1.8] Disable Modsecurity from internal processing which affects large ingresses  (#10375)
+* promote distroless otel init image (#10270)
+* [release-1.8] Update images tags after adding git data in gcloud (#10233)
+* [release-1.8] Golang 1.20.6 for test runner (#10231)
+
+### Dependencies updates: 
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.8.1...controller-controller-v1.8.2
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index de5fe4df0..4e1fc67a5 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,12 +1,9 @@
 annotations:
   artifacthub.io/changes: |
-     - "Added a doc line to the missing helm value service.internal.loadBalancerIP (#9406)"
-     - "feat(helm): Add loadBalancerClass (#9562)"
-     - "added helmshowvalues example (#10019)"
-     - "Update Ingress-Nginx version controller-v1.8.1"
+     - "Update Ingress-Nginx version controller-v1.8.2"
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.8.1
+appVersion: 1.8.2
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 engine: gotpl
@@ -23,4 +20,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.7.1
+version: 4.7.2
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 4deed599b..77f711042 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.7.1](https://img.shields.io/badge/Version-4.7.1-informational?style=flat-square) ![AppVersion: 1.8.1](https://img.shields.io/badge/AppVersion-1.8.1-informational?style=flat-square)
+![Version: 4.7.2](https://img.shields.io/badge/Version-4.7.2-informational?style=flat-square) ![AppVersion: 1.8.2](https://img.shields.io/badge/AppVersion-1.8.2-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -315,13 +315,13 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd"` |  |
-| controller.image.digestChroot | string | `"sha256:e0d4121e3c5e39de9122e55e331a32d5ebf8d4d257227cb93ab54a1b912a7627"` |  |
+| controller.image.digest | string | `"sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2"` |  |
+| controller.image.digestChroot | string | `"sha256:1317a563219f755a6094d990057c78e5c4dcea5e31f4ce1db8641e732a7d6133"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.8.1"` |  |
+| controller.image.tag | string | `"v1.8.2"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/Changelog-4.7.2.md b/charts/ingress-nginx/changelog/Changelog-4.7.2.md
new file mode 100644
index 000000000..57b17b982
--- /dev/null
+++ b/charts/ingress-nginx/changelog/Changelog-4.7.2.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.7.2
+
+* Update Ingress-Nginx version controller-v1.8.2
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.7.1...helm-chart-4.7.2
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 4e8ddb4fc..7ba4fa896 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -24,9 +24,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.8.1"
-    digest: sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
-    digestChroot: sha256:e0d4121e3c5e39de9122e55e331a32d5ebf8d4d257227cb93ab54a1b912a7627
+    tag: "v1.8.2"
+    digest: sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
+    digestChroot: sha256:1317a563219f755a6094d990057c78e5c4dcea5e31f4ce1db8641e732a7d6133
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 2c785fab2..6ac6b2847 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -565,7 +565,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -576,7 +576,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -614,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 7eb2a4c12..eebac4dbc 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -431,7 +431,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
     spec:
       containers:
       - args:
@@ -455,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -577,7 +577,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -588,7 +588,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -639,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index ba5b71838..d503b5db2 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
     spec:
       containers:
       - args:
@@ -440,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -512,7 +512,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -523,7 +523,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -559,7 +559,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -570,7 +570,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -608,7 +608,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -621,7 +621,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 0bb95331f..ce08314fc 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -514,7 +514,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -525,7 +525,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -561,7 +561,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -572,7 +572,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -623,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 9ef7f86ee..db6609024 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -564,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -613,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index d09c9bbb4..2eaabad4f 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -570,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -619,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -632,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index f9965d0fe..aefad5a33 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -620,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -633,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index 4c93acfb2..c52d3a24e 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -565,7 +565,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -576,7 +576,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -614,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index a57ef5ded..8f64241ec 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
+        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -564,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.1
+        app.kubernetes.io/version: 1.8.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -613,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.1
+    app.kubernetes.io/version: 1.8.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index df11d710c..ae28c2502 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -68,7 +68,7 @@ helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -249,7 +249,7 @@ In AWS, we use a Network load balancer (NLB) to expose the Ingress-Nginx Control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -257,10 +257,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -306,7 +306,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -323,7 +323,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -331,7 +331,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -339,7 +339,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -354,7 +354,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -381,7 +381,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.1/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 398304c57..9a1661de0 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -7,407 +7,263 @@ Do not try to edit it manually.
 
 
 
-### [[Admission] admission controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L37)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L)
 
-- [reject ingress with global-rate-limit annotations when memcached is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L45)
-- [should not allow overlaps of host and paths without canary annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L72)
-- [should allow overlaps of host and paths with canary annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L89)
-- [should block ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L110)
-- [should return an error if there is an error validating the ingress definition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L127)
-- [should return an error if there is an invalid value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L138)
-- [should return an error if there is a forbidden value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L152)
-- [should return an error if there is an invalid path and wrong pathType is set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L166)
-- [should not return an error if the Ingress V1 definition is valid with Ingress Class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L201)
-- [should not return an error if the Ingress V1 definition is valid with IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L217)
-- [should return an error if the Ingress V1 definition contains invalid annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L233)
-- [should not return an error for an invalid Ingress when it has unknown class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L244)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L)
 
-### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L35)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L)
 
-- [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L42)
-- [should change cookie name on ingress definition change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L64)
-- [should set the path to /something on the generated cookie](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L99)
-- [does not set the path to / on the generated cookie if there's more than one rule referring to the same backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L121)
-- [should set cookie with expires](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L194)
-- [should set cookie with domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L225)
-- [should not set cookie without domain annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L248)
-- [should work with use-regex annotation and session-cookie-path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L270)
-- [should warn user when use-regex is true and session-cookie-path is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L294)
-- [should not set affinity across all server locations when using separate ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L320)
-- [should set sticky cookie without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L352)
-- [should work with server-alias annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L372)
-- [should set secure in cookie with provided true annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L412)
-- [should not set secure in cookie with provided false annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L435)
-- [should set secure in cookie with provided false annotation on https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L458)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L)
 
-### [affinitymode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L31)
-
-- [Balanced affinity mode should balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L34)
-- [Check persistent affinity mode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L67)
-
-### [server-alias](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L29)
-
-- [should return status code 200 for host 'foo' and 404 for 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L36)
-- [should return status code 200 for host 'foo' and 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L62)
-- [should return status code 200 for hosts defined in two ingresses, different path with one alias](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L87)
-
-### [app-root](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L28)
-
-- [should redirect to /foo](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L35)
-
-### [auth-tls-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L29)
-
-- [should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L36)
-- [should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L84)
-- [should 302 redirect to error page instead of 400 when auth-tls-error-page is set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L114)
-- [should pass URL-encoded certificate to upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L161)
-- [should validate auth-tls-verify-client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L206)
-- [should return 403 using auth-tls-match-cn with no matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L266)
-- [should return 200 using auth-tls-match-cn with matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L295)
-- [should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L324)
-
-### [backend-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L)
 
 - [should set backend protocol to https:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L34)
 - [should set backend protocol to $scheme:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L49)
 - [should set backend protocol to grpc:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L64)
 - [should set backend protocol to grpcs:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L79)
 - [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L94)
+=======
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L)
 
-### [client-body-buffer-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L)
 
-- [should set client_body_buffer_size to 1000](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L35)
-- [should set client_body_buffer_size to 1K](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L57)
-- [should set client_body_buffer_size to 1k](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L79)
-- [should set client_body_buffer_size to 1m](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L101)
-- [should set client_body_buffer_size to 1M](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L123)
-- [should not set client_body_buffer_size to invalid 1b](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L145)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L)
 
-### [cors-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L)
 
-- [should enable cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L35)
-- [should set cors methods to only allow POST, GET](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L62)
-- [should set cors max-age](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L78)
-- [should disable cors allow credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L94)
-- [should allow origin for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L110)
-- [should allow headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L137)
-- [should expose headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L153)
-- [should allow - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L169)
-- [should not allow - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L196)
-- [should allow correct origins - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L216)
-- [should not break functionality](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L267)
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L291)
-- [should not break functionality with extra domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L314)
-- [should not match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L338)
-- [should allow - single origin with required port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L358)
-- [should not allow - single origin with port and origin without port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L386)
-- [should not allow - single origin without port and origin with required port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L405)
-- [should allow - matching origin with wildcard origin (2 subdomains)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L425)
-- [should not allow - unmatching origin with wildcard origin (2 subdomains)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L468)
-- [should allow - matching origin+port with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L488)
-- [should not allow - portless origin with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L515)
-- [should allow correct origins - missing subdomain + origin with wildcard origin and correct origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L535)
-- [should allow - missing origins (should allow all origins)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L571)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L)
 
-### [custom-http-errors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L34)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L)
 
-- [configures Nginx correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L41)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L)
 
-### [default-backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L29)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L)
 
-- [should use a custom default backend as upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L37)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L)
 
-### [disable-access-log disable-http-access-log disable-stream-access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L)
 
-- [disable-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L35)
-- [disable-http-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L53)
-- [disable-stream-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L71)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L)
 
-### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L)
 
-- [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L37)
-- [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L54)
-- [should add fastcgi_param in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L71)
-- [should return OK for service with backend protocol FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L102)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L)
 
-### [force-ssl-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L)
 
-- [should redirect to https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L34)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L)
 
-### [from-to-www-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L31)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L)
 
-- [should redirect from www HTTP to HTTP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L38)
-- [should redirect from www HTTPS to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L64)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L)
 
-### [annotation-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L)
 
-- [generates correct configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L38)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L)
 
-### [http2-push-preload](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L)
 
-- [enable the http2-push-preload directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L34)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L)
 
-### [denylist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L)
 
-- [only deny explicitly denied IPs, allow all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L35)
-- [only allow explicitly allowed IPs, deny all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L86)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L)
 
-### [whitelist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L)
 
-- [should set valid ip whitelist range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L34)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L)
 
-### [Annotation - limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L31)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L)
 
-- [should limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L38)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L)
 
-### [limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L29)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L)
 
-- [Check limit-rate annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L37)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L)
 
-### [enable-access-log enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L)
 
-- [set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L34)
-- [set rewrite_log on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L49)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L)
 
-### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L)
 
-- [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L35)
-- [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L53)
-- [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L74)
-- [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L91)
-- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L110)
-- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L132)
-- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L153)
-- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L189)
-- [should enable modsecurity when enable-owasp-modsecurity-crs is set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L225)
-- [should enable modsecurity through the config map](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L264)
-- [should enable modsecurity through the config map but ignore snippet as disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L305)
-- [should disable default modsecurity conf setting when modsecurity-snippet is specified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L347)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L)
 
-### [preserve-trailing-slash](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L)
 
-- [should allow preservation of trailing slashes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L34)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L)
 
-### [proxy-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L)
 
-- [should set proxy_redirect to off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L36)
-- [should set proxy_redirect to default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L52)
-- [should set proxy_redirect to hello.com goodbye.com](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L68)
-- [should set proxy client-max-body-size to 8m](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L85)
-- [should not set proxy client-max-body-size to incorrect value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L100)
-- [should set valid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L115)
-- [should not set invalid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L136)
-- [should turn on proxy-buffering](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L157)
-- [should turn off proxy-request-buffering](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L179)
-- [should build proxy next upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L194)
-- [should setup proxy cookies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L215)
-- [should change the default proxy HTTP version](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L233)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L)
 
-### [proxy-ssl-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L)
 
-- [should set valid proxy-ssl-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L37)
-- [should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L64)
-- [should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L94)
-- [should set valid proxy-ssl-secret, proxy-ssl-protocols](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L122)
-- [proxy-ssl-location-only flag should change the nginx config server part](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L150)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L)
 
-### [permanent-redirect permanent-redirect-code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L)
 
-- [should respond with a standard redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L33)
-- [should respond with a custom redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L61)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L)
 
-### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L)
 
-- [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L37)
-- [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L66)
-- [should use ~* location modifier if regex annotation is present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L111)
-- [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L158)
-- [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L190)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L)
 
-### [server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L)
 
-- [add valid directives to server via server snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L35)
-- [drops server snippet if disabled by the administrator](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L61)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L)
 
-### [service-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L32)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L)
 
-- [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L41)
-- [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L70)
-- [should not use the Service Cluster IP and Port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L99)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L)
 
-### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L)
 
-- [should change ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L35)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L)
 
-### [stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L34)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L)
 
-- [should add value of stream-snippet to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L41)
-- [should add stream-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L85)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L)
 
-### [upstream-hash-by-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L76)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L)
 
-- [should connect to the same pod](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L83)
-- [should connect to the same subset of pods](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L92)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L)
 
-### [upstream-vhost](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L)
 
-- [set host to upstreamvhost.bar.com](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L34)
-
-### [x-forwarded-prefix](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L28)
-
-- [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L35)
-- [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L57)
-
-### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L39)
-
-- [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L46)
-- [should return status code 503 when authentication is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L65)
-- [should return status code 401 when authentication is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L89)
-- [should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L116)
-- [should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L144)
-- [should return status code 200 when authentication is configured and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L172)
-- [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L199)
-- [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L227)
-- [ when external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L266)
-- [ when external auth is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L284)
-- [ when auth-headers are set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L301)
-- [should set cache_key when external auth cache is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L322)
-- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L411)
-- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L422)
-- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L433)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L472)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L481)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L492)
-- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L516)
-- [should not create additional upstream block when auth-keepalive is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L539)
-- [should not create additional upstream block when host part of auth-url contains a variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L557)
-- [should not create additional upstream block when auth-keepalive is negative](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L577)
-- [should not create additional upstream block when auth-keepalive is set with HTTP/2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L596)
-- [should create additional upstream block when auth-keepalive is set with HTTP/1.x](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L610)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L653)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L662)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L673)
-- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L732)
-- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L752)
-- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L780)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L809)
-- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L839)
-- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L847)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L)
 
-### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L)
 
-- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L45)
-- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L89)
-- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L120)
-- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L174)
-- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L232)
-- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L289)
-- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L363)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L445)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L513)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L594)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L647)
-- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L692)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L741)
-- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L790)
-- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L862)
-- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L910)
-- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L952)
-- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L995)
-- [should route requests split between mainline and canary if canary weight is 100 and weight total is 200](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1031)
-- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1070)
-- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1104)
-- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1138)
-- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1175)
-- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1242)
-- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1310)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L)
 
-### [connection-proxy-header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L)
 
-- [set connection header to keep-alive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L35)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L)
 
-### [mirror-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L)
 
-- [should set mirror-target to http://localhost/mirror](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L36)
-- [should set mirror-target to https://test.env.com/$request_uri](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L51)
-- [should disable mirror-request-body](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L67)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L)
 
-### [satisfy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L33)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L)
 
-- [should configure satisfy directive correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L40)
-- [should allow multiple auth with satisfy any](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L82)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L)
 
-### [configuration-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L)
 
-- [set snippet more_set_headers in all locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L34)
-- [drops snippet more_set_header in all locations if disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L63)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L)
 
-### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L39)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L)
 
-- [should use grpc_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L42)
-- [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L67)
-- [authorization metadata should be overwritten by external auth response headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L126)
-- [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L186)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L)
 
-### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L29)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L)
 
-- [should list the backend servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L37)
-- [should get information for a specific backend server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L56)
-- [should produce valid JSON for /dbg general](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L85)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L)
 
-### [[Default Backend] custom service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L33)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L)
 
-- [uses custom default backend that returns 200 as status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L36)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L)
 
-### [[Default Backend]](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L)
 
-- [should return 404 sending requests when only a default backend is running](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L33)
-- [enables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L88)
-- [disables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L105)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L)
 
-### [[Default Backend] SSL](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L26)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L)
 
-- [should return a self generated SSL certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L29)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L)
 
-### [[Default Backend] change default settings](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L)
 
-- [should apply the annotation to the default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L38)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L)
 
-### [[Endpointslices] long service name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L29)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L)
 
-- [should return 200 when service name has max allowed number of characters 63](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L38)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L)
 
-### [[TopologyHints] topology aware routing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L35)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L)
 
-- [should return 200 when service has topology hints](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L43)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/object.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/object.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/response.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/response.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/reporter.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/reporter.go#L)
 
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/chain.go#L)
 
@@ -421,21 +277,9 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/match.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/object.go#L)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/object.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/reporter.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/reporter.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/response.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/response.go#L)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
 
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/string.go#L)
 
@@ -445,462 +289,318 @@ Do not try to edit it manually.
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/value.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
-
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/test_context.go#L)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/test_context.go#L)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
+
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
 
 ### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
 
 - [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/test_context.go#L)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/test_context.go#L)
 
-### [[Setting] ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L217)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
 
-### [[Shutdown] Grace period shutdown](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L32)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
 
-- [/healthz should return status code 500 during shutdown grace period](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L35)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
 
-### [[Shutdown] ingress controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
 
-- [should shutdown in less than 60 secons without pending connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L40)
-- [should shutdown after waiting 60 seconds for pending connections to be closed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L61)
-- [should shutdown after waiting 150 seconds for pending connections to be closed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L106)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
 
-### [[Shutdown] Graceful shutdown with pending request](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L25)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
 
-- [should let slow requests finish before shutting down](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L33)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
 
-### [[Ingress] DeepInspection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
 
-- [should drop whole ingress if one path matches invalid regex](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L34)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
 
-### [single ingress - multiple hosts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
 
-- [should set the correct $service_name NGINX variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L38)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
 
-### [[Ingress] [PathType] exact](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L)
 
-- [should choose exact location for /exact](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L37)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L)
 
-### [[Ingress] [PathType] mix Exact and Prefix paths](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L)
 
-- [should choose the correct location](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L39)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L)
 
-### [[Ingress] [PathType] prefix checks](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L)
 
-- [should return 404 when prefix /aaa does not match request /aaaccc](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L35)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L)
 
-### [[Ingress] definition without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L31)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L)
 
-- [should set ingress details variables for ingresses without a host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L34)
-- [should set ingress details variables for ingresses with host without IngressRuleValue, only Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L55)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L)
 
-### [[Memory Leak] Dynamic Certificates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L35)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L)
 
-- [should not leak memory from ingress SSL certificates or configuration updates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L42)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L)
 
-### [[Load Balancer] load-balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L)
 
-- [should apply the configmap load-balance setting](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L35)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L)
 
-### [[Load Balancer] EWMA](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L31)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L)
 
-- [does not fail requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L42)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L)
 
-### [[Load Balancer] round-robin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L31)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L)
 
-- [should evenly distribute requests with round-robin (default algorithm)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L39)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L)
 
-### [[Lua] dynamic certificates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L37)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L)
 
-- [picks up the certificate when we add TLS spec to existing ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L45)
-- [picks up the previously missing secret for a given ingress without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L70)
-- [supports requests with domain with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L145)
-- [picks up the updated certificate without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L149)
-- [falls back to using default certificate when secret gets deleted without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L185)
-- [picks up a non-certificate only change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L218)
-- [removes HTTPS configuration when we delete TLS spec](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L233)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L)
 
-### [[Lua] dynamic configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L42)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L)
 
-- [configures balancer Lua middleware correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L50)
-- [handles endpoints only changes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L62)
-- [handles endpoints only changes (down scaling of replicas)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L87)
-- [handles endpoints only changes consistently (down scaling of replicas vs. empty service)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L125)
-- [handles an annotation change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L171)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L)
 
-### [[metrics] exported prometheus metrics](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L36)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L)
 
-- [exclude socket request metrics are absent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L50)
-- [exclude socket request metrics are present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L72)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L)
 
-### [nginx-configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L99)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L)
 
-- [start nginx with default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L102)
-- [fails when using alias directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L115)
-- [fails when using root directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L124)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L)
 
-### [[Security] request smuggling](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L32)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L)
 
-- [should not return body content from error_page](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L39)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L)
 
-### [[Service] backend status code 503](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L33)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L)
 
-- [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L36)
-- [should return 503 when all backend service endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L54)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L)
 
-### [[Service] Nil Service Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L31)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L)
 
-- [should return 404 when backend service is nil](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L38)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L)
 
-### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L37)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L)
 
-- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L40)
-- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L77)
-- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L117)
-- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L147)
-- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L183)
-- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L224)
-- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L260)
-- [should sync ingress on external name service addition/deletion](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L347)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L)
 
-### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L)
 
-- [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L32)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L42)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L54)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L67)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L80)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L)
 
-### [Bad annotation values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L29)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L)
 
-- [[BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L36)
-- [[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L67)
-- [[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L102)
-- [[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L133)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L)
 
-### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L)
 
-- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L)
 
-### [add-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L)
 
-- [Add a custom header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L40)
-- [Add multiple custom headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L65)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L)
 
-### [[SSL] [Flag] default-ssl-certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L33)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L)
 
-- [uses default ssl certificate for catch-all ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L64)
-- [uses default ssl certificate for host based ingress when configured certificate does not match host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L80)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L)
 
-### [[Flag] disable-catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L33)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L)
 
-- [should ignore catch all Ingress with backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L50)
-- [should ignore catch all Ingress with backend and rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L69)
-- [should delete Ingress updated to catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L81)
-- [should allow Ingress with rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L123)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L)
 
-### [[Flag] disable-sync-events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L32)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L)
 
-- [should create sync events (default)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L35)
-- [should create sync events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L53)
-- [should not create sync events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L80)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L)
 
-### [Geoip2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L37)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L)
 
-- [should include geoip2 line in config when enabled and db file exists](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L46)
-- [should only allow requests from specific countries](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L70)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L)
 
-### [[Security] block-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L)
 
-- [should block CIDRs defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L38)
-- [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L55)
-- [should block Referers defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L88)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L)
 
-### [global-options](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L)
 
-- [should have worker_rlimit_nofile option](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L31)
-- [should have worker_rlimit_nofile option and be independent on amount of worker processes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L38)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L)
 
-### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L)
 
-- [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L38)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L)
 
-### [gzip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L29)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L)
 
-- [should be disabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L32)
-- [should be enabled with default settings](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L39)
-- [should set gzip_comp_level to 4](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L56)
-- [should set gzip_disable to msie6](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L67)
-- [should set gzip_min_length to 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L78)
-- [should set gzip_types to application/javascript](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L89)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L)
 
-### [hash size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L)
 
-- [should set server_names_hash_bucket_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L40)
-- [should set server_names_hash_max_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L48)
-- [should set proxy-headers-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L60)
-- [should set proxy-headers-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L68)
-- [should set variables-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L80)
-- [should set variables-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L88)
-- [should set vmap-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L100)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L)
 
-### [[Flag] ingress-class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L39)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L)
 
-- [should ignore Ingress with a different class annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L68)
-- [should ignore Ingress with different controller class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L104)
-- [should accept both Ingresses with default IngressClassName and IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L132)
-- [should ignore Ingress without IngressClass configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L164)
-- [should delete Ingress when class is removed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L192)
-- [should serve Ingress when class is added](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L257)
-- [should serve Ingress when class is updated between annotation and ingressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L323)
-- [should ignore Ingress with no class and accept the correctly configured Ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L413)
-- [should watch Ingress with no class and ignore ingress with a different class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L482)
-- [should watch Ingress that uses the class name even if spec is different](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L539)
-- [should watch Ingress with correct annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L631)
-- [should ignore Ingress with only IngressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L652)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L)
 
-### [Configmap - limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L)
 
-- [Check limit-rate config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L36)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L)
 
-### [log-format-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L)
 
-- [should not configure log-format escape by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L40)
-- [should enable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L47)
-- [should disable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L55)
-- [should enable the log-format-escape-none](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L63)
-- [should disable the log-format-escape-none](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L71)
-- [log-format-escape-json enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L82)
-- [log-format default escape](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L105)
-- [log-format-escape-none enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L128)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L)
 
-### [[Lua] lua-shared-dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L26)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L)
 
-- [configures lua shared dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L29)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L)
 
-### [main-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L)
 
-- [should add value of main-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L31)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L)
 
-### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L)
 
-- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L)
 
-### [enable-multi-accept](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L)
 
-- [should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L31)
-- [should be enabled when set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L39)
-- [should be disabled when set to false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L49)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L)
 
-### [[Flag] watch namespace selector](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L)
 
+<<<<<<< Updated upstream
 - [should ignore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L63)
+=======
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L)
+>>>>>>> Stashed changes
 
-### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L)
 
-- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L54)
-- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
-- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L)
 
-### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L)
 
-- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L)
 
-### [Configure Opentelemetry](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L37)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L)
 
-- [should not exists opentelemetry directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L47)
-- [should exists opentelemetry directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L60)
-- [should include opentelemetry_trust_incoming_spans on directive when enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L74)
-- [should not exists opentelemetry_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L89)
-- [should exists opentelemetry_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L104)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L)
 
-### [Configure OpenTracing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L48)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L)
 
-- [should not exists opentracing directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L58)
-- [should exists opentracing directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L71)
-- [should include opentracing_trust_incoming_span off directive when disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L85)
-- [should not exists opentracing_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L100)
-- [should exists opentracing_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L115)
-- [should not exists opentracing_location_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L130)
-- [should exists opentracing_location_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L145)
-- [should enable opentracing using zipkin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L160)
-- [should enable opentracing using jaeger](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L172)
-- [should enable opentracing using jaeger with sampler host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L184)
-- [should propagate the w3c header when configured with jaeger](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L197)
-- [should enable opentracing using jaeger with an HTTP endpoint](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L228)
-- [should enable opentracing using datadog](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L241)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L)
 
-### [plugins](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L)
 
-- [should exist a x-hello-world header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L35)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L)
 
-### [[Security] Pod Security Policies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L41)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L)
 
-- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L44)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L)
 
-### [[Security] Pod Security Policies with volumes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L37)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L)
 
-- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L40)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L)
 
-### [proxy-connect-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L)
 
-- [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L36)
-- [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L52)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L)
 
-### [proxy-next-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L)
 
-- [should build proxy next upstream using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L36)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L)
 
-### [proxy-read-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L)
 
-- [should set valid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L36)
-- [should not set invalid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L52)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L)
 
-### [proxy-send-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L)
 
-- [should set valid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L36)
-- [should not set invalid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L52)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L)
 
-### [reuse-port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L)
 
-- [reuse port should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L38)
-- [reuse port should be disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L44)
-- [reuse port should be enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L52)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L)
 
-### [configmap server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L)
 
-- [should add value of server-snippet setting to all ingress config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L35)
-- [should add global server-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L92)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L)
 
-### [server-tokens](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L29)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L)
 
-- [should not exists Server header in the response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L38)
-- [should exists Server header in the response when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L50)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L)
 
-### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L)
 
-- [Add ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L31)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L)
 
-### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L35)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L)
 
-- [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L42)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L)
 
-### [brotli](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L)
 
-- [ condition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L38)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L)
 
-### [[Flag] disable-service-external-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L35)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L)
 
-- [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L55)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L)
 
-### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L)
 
-- [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L40)
-- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L78)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L)
 
-### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L29)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L)
 
-- [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L39)
-- [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L91)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L)
 
-### [[Security] global-auth-url](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L34)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L)
 
-- [should return status code 401 when request any protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L87)
-- [should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L104)
-- [should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L128)
-- [should still return status code 200 after auth backend is deleted using cache](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L157)
-- [should proxy_method method when global-auth-method is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L199)
-- [should add custom error page when global-auth-signin url is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L212)
-- [should add auth headers when global-auth-response-headers is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L225)
-- [should set request-redirect when global-auth-request-redirect is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L239)
-- [should set snippet when global external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L252)
-- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L328)
-- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L339)
-- [user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L350)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L)
 
-### [keep-alive keep-alive-requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L)
 
-- [should set keepalive_timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L39)
-- [should set keepalive_requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L47)
-- [should set keepalive connection to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L58)
-- [should set keep alive connection timeout to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L67)
-- [should set keepalive time to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L76)
-- [should set the request count to upstream server through one keep alive connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L85)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L)
 
-### [[Flag] custom HTTP and HTTPS ports](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L30)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L)
 
-- [should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L46)
-- [should set X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L68)
-- [should set the X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L98)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L)
 
-### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L27)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L)
 
-- [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L30)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L)
 
-### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L28)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
 
-- [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L36)
-- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L57)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
 
-### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L36)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L)
 
-- [should respect port passed by the PROXY Protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L46)
-- [should respect proto passed by the PROXY Protocol server port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L79)
-- [should enable PROXY Protocol for HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L112)
-- [should enable PROXY Protocol for TCP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L155)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L)
 
-### [With enable-ssl-passthrough enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L36)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L)
 
-- [should enable ssl-passthrough-proxy-port on a different port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L56)
-- [should pass unknown traffic to default backend and handle known traffic](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L79)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L)
 
-### [[SSL] TLS protocols, ciphers and headers)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L31)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L)
 
-- [setting cipher suite](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L65)
-- [setting max-age parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L111)
-- [setting includeSubDomains parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L127)
-- [setting preload parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L146)
-- [overriding what's set from the upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L166)
-- [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L187)
-- [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L205)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L)
 
-### [[SSL] redirect to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L29)
+### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L)
 
-- [should redirect from HTTP to HTTPS when secret is missing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L36)
-
-### [[SSL] secret update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L33)
-
-- [should not appear references to secret updates not used in ingress rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L40)
-- [should return the fake SSL certificate if the secret is invalid](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L82)
-
-### [[Status] status update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L38)
-
-- [should update status field after client-go reconnection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L43)
-
-### [[TCP] tcp-services](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L38)
-
-- [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L46)
-- [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L80)
-- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L169)
\ No newline at end of file
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L)

From 4869c8b462e1c02597ce978051a694992c8417ae Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Sun, 10 Sep 2023 14:38:10 +0200
Subject: [PATCH 0920/1641] Deployment/DaemonSet: Template
 `topologySpreadConstraints`. (#10259)

---
 .../templates/controller-daemonset.yaml       |  2 +-
 .../templates/controller-deployment.yaml      |  2 +-
 charts/ingress-nginx/values.yaml              | 20 ++++++++++++++-----
 3 files changed, 17 insertions(+), 7 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 82abe7564..54bb2b6a5 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -202,7 +202,7 @@ spec:
       affinity: {{ toYaml .Values.controller.affinity | nindent 8 }}
     {{- end }}
     {{- if .Values.controller.topologySpreadConstraints }}
-      topologySpreadConstraints: {{ toYaml .Values.controller.topologySpreadConstraints | nindent 8 }}
+      topologySpreadConstraints: {{ tpl (toYaml .Values.controller.topologySpreadConstraints) $ | nindent 8 }}
     {{- end }}
       serviceAccountName: {{ template "ingress-nginx.serviceAccountName" . }}
       terminationGracePeriodSeconds: {{ .Values.controller.terminationGracePeriodSeconds }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 69cb734a0..bc33fecf1 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -209,7 +209,7 @@ spec:
       affinity: {{ toYaml .Values.controller.affinity | nindent 8 }}
     {{- end }}
     {{- if .Values.controller.topologySpreadConstraints }}
-      topologySpreadConstraints: {{ toYaml .Values.controller.topologySpreadConstraints | nindent 8 }}
+      topologySpreadConstraints: {{ tpl (toYaml .Values.controller.topologySpreadConstraints) $ | nindent 8 }}
     {{- end }}
       serviceAccountName: {{ template "ingress-nginx.serviceAccountName" . }}
       terminationGracePeriodSeconds: {{ .Values.controller.terminationGracePeriodSeconds }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 7ba4fa896..6762c0d85 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -248,12 +248,22 @@ controller:
   ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
   ##
   topologySpreadConstraints: []
-  # - maxSkew: 1
-  #   topologyKey: topology.kubernetes.io/zone
-  #   whenUnsatisfiable: DoNotSchedule
-  #   labelSelector:
+  # - labelSelector:
   #     matchLabels:
-  #       app.kubernetes.io/instance: ingress-nginx-internal
+  #       app.kubernetes.io/name: '{{ include "ingress-nginx.name" . }}'
+  #       app.kubernetes.io/instance: '{{ .Release.Name }}'
+  #       app.kubernetes.io/component: controller
+  #   topologyKey: topology.kubernetes.io/zone
+  #   maxSkew: 1
+  #   whenUnsatisfiable: ScheduleAnyway
+  # - labelSelector:
+  #     matchLabels:
+  #       app.kubernetes.io/name: '{{ include "ingress-nginx.name" . }}'
+  #       app.kubernetes.io/instance: '{{ .Release.Name }}'
+  #       app.kubernetes.io/component: controller
+  #   topologyKey: kubernetes.io/hostname
+  #   maxSkew: 1
+  #   whenUnsatisfiable: ScheduleAnyway
 
   # -- `terminationGracePeriodSeconds` to avoid killing pods before we are ready
   ## wait up to five minutes for the drain of connections

From fb7f92a7d5e0cac0ce8a9bab8247ccc0805a0239 Mon Sep 17 00:00:00 2001
From: Chen Chen <imchench@gmail.com>
Date: Sun, 10 Sep 2023 20:46:09 +0800
Subject: [PATCH 0921/1641] Remove gofmt (#10385)

Signed-off-by: z1cheng <imchench@gmail.com>
---
 .github/workflows/ci.yaml | 19 -------------------
 1 file changed, 19 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 6413174a0..2b416311b 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -62,25 +62,6 @@ jobs:
               - 'charts/ingress-nginx/**/*'
               - 'NGINX_BASE'
 
-  gofmt:
-    runs-on: ubuntu-latest
-    needs: changes
-    if: |
-      (needs.changes.outputs.go == 'true')
-    steps:
-      - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
-      
-      - name: Set up Go
-        id: go
-        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
-        with:
-          go-version: '1.21.1'
-          check-latest: true
-
-      - name: Run go-fmt
-        run: ./hack/verify-gofmt.sh
-
   test-go:
     runs-on: ubuntu-latest
     needs: changes

From 93e006c2cedd3c7836c6edd0a46d71f63fa9d0f5 Mon Sep 17 00:00:00 2001
From: Chen Chen <imchench@gmail.com>
Date: Sun, 10 Sep 2023 21:48:10 +0800
Subject: [PATCH 0922/1641] Fix deferInLoop error (#10387)

Signed-off-by: z1cheng <imchench@gmail.com>
---
 internal/nginx/maxmind.go | 23 +++++++++++------------
 1 file changed, 11 insertions(+), 12 deletions(-)

diff --git a/internal/nginx/maxmind.go b/internal/nginx/maxmind.go
index bd6bc1048..4719a22c1 100644
--- a/internal/nginx/maxmind.go
+++ b/internal/nginx/maxmind.go
@@ -179,20 +179,19 @@ func downloadDatabase(dbName string) error {
 			if !strings.HasSuffix(header.Name, mmdbFile) {
 				continue
 			}
+			return func() error {
+				outFile, err := os.Create(path.Join(geoIPPath, mmdbFile))
+				if err != nil {
+					return err
+				}
 
-			outFile, err := os.Create(path.Join(geoIPPath, mmdbFile))
-			if err != nil {
-				return err
-			}
+				defer outFile.Close()
 
-			//nolint:gocritic // TODO: will fix it on a followup PR
-			defer outFile.Close()
-
-			if _, err := io.CopyN(outFile, tarReader, header.Size); err != nil {
-				return err
-			}
-
-			return nil
+				if _, err := io.CopyN(outFile, tarReader, header.Size); err != nil {
+					return err
+				}
+				return nil
+			}()
 		}
 	}
 

From 2d03da63344b63544f8f8f108c54b326fecb7c36 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Sun, 10 Sep 2023 16:20:09 +0200
Subject: [PATCH 0923/1641] Deployment/DaemonSet: Fix templating & value.
 (#10240)

---
 charts/ingress-nginx/README.md                        |  2 +-
 charts/ingress-nginx/templates/_helpers.tpl           |  2 --
 .../ingress-nginx/templates/controller-daemonset.yaml | 11 +++++++----
 .../templates/controller-deployment.yaml              |  9 ++++-----
 charts/ingress-nginx/values.yaml                      | 10 +++++++++-
 5 files changed, 21 insertions(+), 13 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 77f711042..fe8892412 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -307,7 +307,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.extraVolumes | list | `[]` | Additional volumes to the controller pod. |
 | controller.healthCheckHost | string | `""` | Address to bind the health check endpoint. It is better to set this option to the internal node address if the Ingress-Nginx Controller is running in the `hostNetwork: true` mode. |
 | controller.healthCheckPath | string | `"/healthz"` | Path of the health check endpoint. All requests received on the port defined by the healthz-port parameter are forwarded internally to this path. |
-| controller.hostAliases | object | `{}` | Optionally customize the pod hostAliases. |
+| controller.hostAliases | list | `[]` | Optionally customize the pod hostAliases. |
 | controller.hostNetwork | bool | `false` | Required for use with CNI based kubernetes installations (such as ones set up by kubeadm), since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920 is merged |
 | controller.hostPort.enabled | bool | `false` | Enable 'hostPort' or not |
 | controller.hostPort.ports.http | int | `80` | 'hostPort' http port |
diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index 548e8cf12..7206fe5ba 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -198,7 +198,6 @@ IngressClass parameters.
 Extra modules.
 */}}
 {{- define "extraModules" -}}
-
 - name: {{ .name }}
   image: {{ .image }}
   {{- if .distroless | default false }}
@@ -212,5 +211,4 @@ Extra modules.
   volumeMounts:
     - name: {{ toYaml "modules"}}
       mountPath: {{ toYaml "/modules_mount"}}
-
 {{- end -}}
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 54bb2b6a5..5d94eb2f5 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -45,6 +45,9 @@ spec:
     {{- if .Values.controller.dnsConfig }}
       dnsConfig: {{ toYaml .Values.controller.dnsConfig | nindent 8 }}
     {{- end }}
+    {{- if .Values.controller.hostAliases }}
+      hostAliases: {{ tpl (toYaml .Values.controller.hostAliases) $ | nindent 8 }}
+    {{- end }}
     {{- if .Values.controller.hostname }}
       hostname: {{ toYaml .Values.controller.hostname | nindent 8 }}
     {{- end }}
@@ -180,13 +183,13 @@ spec:
       {{- end }}
       {{- if .Values.controller.extraModules }}
         {{- range .Values.controller.extraModules }}
-          {{ $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-{{ include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext) | indent 8 }}
+          {{- $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
+          {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext) | nindent 8 }}
         {{- end }}
       {{- end }}
       {{- if .Values.controller.opentelemetry.enabled}}
-          {{ $otelContainerSecurityContext := $.Values.controller.opentelemetry.containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext) | nindent 8}}
+          {{- $otelContainerSecurityContext := $.Values.controller.opentelemetry.containerSecurityContext | default $.Values.controller.containerSecurityContext }}
+          {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext "distroless" true) | nindent 8}}
       {{- end}}
     {{- end }}
     {{- if .Values.controller.hostNetwork }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index bc33fecf1..e23414ec9 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -24,8 +24,7 @@ spec:
   {{- end }}
   revisionHistoryLimit: {{ .Values.revisionHistoryLimit }}
   {{- if .Values.controller.updateStrategy }}
-  strategy:
-    {{ toYaml .Values.controller.updateStrategy | nindent 4 }}
+  strategy: {{ toYaml .Values.controller.updateStrategy | nindent 4 }}
   {{- end }}
   minReadySeconds: {{ .Values.controller.minReadySeconds }}
   template:
@@ -187,12 +186,12 @@ spec:
       {{- end }}
       {{- if .Values.controller.extraModules }}
         {{- range .Values.controller.extraModules }}
-          {{ $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-{{ include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext) | indent 8 }}
+          {{- $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
+          {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext) | nindent 8 }}
         {{- end }}
       {{- end }}
       {{- if .Values.controller.opentelemetry.enabled}}
-          {{ $otelContainerSecurityContext := $.Values.controller.opentelemetry.containerSecurityContext | default $.Values.controller.containerSecurityContext }}
+          {{- $otelContainerSecurityContext := $.Values.controller.opentelemetry.containerSecurityContext | default $.Values.controller.containerSecurityContext }}
           {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext "distroless" true) | nindent 8}}
       {{- end}}
     {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 6762c0d85..4816758fa 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -50,7 +50,15 @@ controller:
   # -- Optionally customize the pod dnsConfig.
   dnsConfig: {}
   # -- Optionally customize the pod hostAliases.
-  hostAliases: {}
+  hostAliases: []
+  # - ip: 127.0.0.1
+  #   hostnames:
+  #   - foo.local
+  #   - bar.local
+  # - ip: 10.1.2.3
+  #   hostnames:
+  #   - foo.remote
+  #   - bar.remote
   # -- Optionally customize the pod hostname.
   hostname: {}
   # -- Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'.

From cf889c6c47fda30a59e1d08665bbb3d3931a5b4e Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Mon, 11 Sep 2023 00:02:10 -0300
Subject: [PATCH 0924/1641] Disable user snippets per default (#10393)

* Disable user snippets per default

* Enable snippet on tests
---
 .gitignore                                    |   1 +
 charts/ingress-nginx/README.md                |   2 +-
 charts/ingress-nginx/values.yaml              |   2 +-
 cmd/plugin/util/util.go                       |   4 +-
 .../nginx-configuration/configmap.md          |   4 +-
 internal/ingress/annotations/fastcgi/main.go  |   2 +-
 .../annotations/modsecurity/main_test.go      |   4 +-
 internal/ingress/annotations/proxy/main.go    |   2 +-
 .../annotations/sslcipher/main_test.go        |   4 +-
 internal/ingress/controller/config/config.go  |   2 +-
 internal/ingress/controller/controller.go     |   8 +-
 internal/ingress/metric/collectors/main.go    |   2 +-
 internal/net/ssl/ssl.go                       |   2 +-
 magefiles/helm.go                             | 328 ++++++++----------
 magefiles/mage.go                             |   3 +-
 magefiles/release.go                          | 122 +++----
 magefiles/tags.go                             |  11 +-
 test/e2e/admission/admission.go               |  26 ++
 test/e2e/annotations/auth.go                  |  17 +
 test/e2e/annotations/fastcgi.go               |   2 +-
 test/e2e/annotations/fromtowwwredirect.go     |   9 +
 test/e2e/annotations/grpc.go                  |   9 +
 .../annotations/modsecurity/modsecurity.go    |  58 +++-
 test/e2e/annotations/serversnippet.go         |  18 +
 test/e2e/annotations/snippet.go               |  14 +-
 test/e2e/annotations/streamsnippet.go         |   9 +
 test/e2e/framework/deployment.go              |   2 +-
 test/e2e/ingress/multiple_rules.go            |   9 +
 test/e2e/ingress/pathtype_exact.go            |   9 +
 test/e2e/ingress/pathtype_mixed.go            |   9 +
 test/e2e/settings/badannotationvalues.go      |  33 ++
 test/e2e/settings/geoip2.go                   |  10 +-
 test/e2e/settings/proxy_host.go               |  17 +
 test/e2e/settings/server_snippet.go           |  11 +
 test/e2e/settings/validations/validations.go  |  17 +
 35 files changed, 494 insertions(+), 288 deletions(-)

diff --git a/.gitignore b/.gitignore
index 2c0accad7..60bf6a304 100644
--- a/.gitignore
+++ b/.gitignore
@@ -60,3 +60,4 @@ cmd/plugin/release/ingress-nginx.yaml
 cmd/plugin/release/*.tar.gz
 cmd/plugin/release/LICENSE
 tmp/
+test/junitreports/
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index fe8892412..5487ca218 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -274,7 +274,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.service.servicePort | int | `443` |  |
 | controller.admissionWebhooks.service.type | string | `"ClusterIP"` |  |
 | controller.affinity | object | `{}` | Affinity and anti-affinity rules for server scheduling to nodes # Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity # |
-| controller.allowSnippetAnnotations | bool | `true` | This configuration defines if Ingress Controller should allow users to set their own *-snippet annotations, otherwise this is forbidden / dropped when users add those annotations. Global snippets in ConfigMap are still respected |
+| controller.allowSnippetAnnotations | bool | `false` | This configuration defines if Ingress Controller should allow users to set their own *-snippet annotations, otherwise this is forbidden / dropped when users add those annotations. Global snippets in ConfigMap are still respected |
 | controller.annotations | object | `{}` | Annotations to be added to the controller Deployment or DaemonSet # |
 | controller.autoscaling.annotations | object | `{}` |  |
 | controller.autoscaling.behavior | object | `{}` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 4816758fa..fffbe90b2 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -81,7 +81,7 @@ controller:
   # their own *-snippet annotations, otherwise this is forbidden / dropped
   # when users add those annotations.
   # Global snippets in ConfigMap are still respected
-  allowSnippetAnnotations: true
+  allowSnippetAnnotations: false
   # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
   # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
   # is merged
diff --git a/cmd/plugin/util/util.go b/cmd/plugin/util/util.go
index aa753689a..7457b8c53 100644
--- a/cmd/plugin/util/util.go
+++ b/cmd/plugin/util/util.go
@@ -29,8 +29,8 @@ import (
 
 // The default deployment and service names for ingress-nginx
 const (
-	DefaultIngressDeploymentName = "ingress-nginx-controller"
-	DefaultIngressServiceName    = "ingress-nginx-controller"
+	DefaultIngressDeploymentName = "ingress-nginx-controller" //#nosec G101
+	DefaultIngressServiceName    = "ingress-nginx-controller" //#nosec G101
 	DefaultIngressContainerName  = "controller"
 )
 
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 0a7e44dce..d771d16b2 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -30,7 +30,7 @@ The following table shows a configuration option's name, type, and the default v
 |[add-headers](#add-headers)|string|""||
 |[allow-backend-server-header](#allow-backend-server-header)|bool|"false"||
 |[allow-cross-namespace-resources](#allow-cross-namespace-resources)|bool|"true"||
-|[allow-snippet-annotations](#allow-snippet-annotations)|bool|true||
+|[allow-snippet-annotations](#allow-snippet-annotations)|bool|false||
 |[annotations-risk-level](#annotations-risk-level)|string|Critical||
 |[annotation-value-word-blocklist](#annotation-value-word-blocklist)|string array|""||
 |[hide-headers](#hide-headers)|string array|empty||
@@ -257,7 +257,7 @@ Enables users to consume cross namespace resource on annotations, when was previ
 
 ## allow-snippet-annotations
 
-Enables Ingress to parse and add *-snippet annotations/directives created by the user. _**default:**_ `true`
+Enables Ingress to parse and add *-snippet annotations/directives created by the user. _**default:**_ `false`
 
 Warning: We recommend enabling this option only if you TRUST users with permission to create Ingress objects, as this
 may allow a user to add restricted configurations to the final nginx.conf file
diff --git a/internal/ingress/annotations/fastcgi/main.go b/internal/ingress/annotations/fastcgi/main.go
index 882de5b1c..52384a969 100644
--- a/internal/ingress/annotations/fastcgi/main.go
+++ b/internal/ingress/annotations/fastcgi/main.go
@@ -32,7 +32,7 @@ import (
 
 const (
 	fastCGIIndexAnnotation  = "fastcgi-index"
-	fastCGIParamsAnnotation = "fastcgi-params-configmap"
+	fastCGIParamsAnnotation = "fastcgi-params-configmap" //#nosec G101
 )
 
 // fast-cgi valid parameters is just a single file name (like index.php)
diff --git a/internal/ingress/annotations/modsecurity/main_test.go b/internal/ingress/annotations/modsecurity/main_test.go
index 0c9b3a9c7..5cb05f201 100644
--- a/internal/ingress/annotations/modsecurity/main_test.go
+++ b/internal/ingress/annotations/modsecurity/main_test.go
@@ -67,7 +67,7 @@ func TestParse(t *testing.T) {
 		Spec: networking.IngressSpec{},
 	}
 
-	for _, testCase := range testCases {
+	for i, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
 		result, err := ap.Parse(ing)
 		if err != nil {
@@ -77,7 +77,7 @@ func TestParse(t *testing.T) {
 		if !ok {
 			t.Errorf("unexpected type: %T", result)
 		}
-		if !config.Equal(&testCase.expected) {
+		if !config.Equal(&testCases[i].expected) {
 			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
 		}
 	}
diff --git a/internal/ingress/annotations/proxy/main.go b/internal/ingress/annotations/proxy/main.go
index 7fb1c814e..9d2646261 100644
--- a/internal/ingress/annotations/proxy/main.go
+++ b/internal/ingress/annotations/proxy/main.go
@@ -42,7 +42,7 @@ const (
 	proxyRedirectToAnnotation          = "proxy-redirect-to"
 	proxyBufferingAnnotation           = "proxy-buffering"
 	proxyHTTPVersionAnnotation         = "proxy-http-version"
-	proxyMaxTempFileSizeAnnotation     = "proxy-max-temp-file-size"
+	proxyMaxTempFileSizeAnnotation     = "proxy-max-temp-file-size" //#nosec G101
 )
 
 var validUpstreamAnnotation = regexp.MustCompile(`^((error|timeout|invalid_header|http_500|http_502|http_503|http_504|http_403|http_404|http_429|non_idempotent|off)\s?)+$`)
diff --git a/internal/ingress/annotations/sslcipher/main_test.go b/internal/ingress/annotations/sslcipher/main_test.go
index 167466fef..20cb4d7af 100644
--- a/internal/ingress/annotations/sslcipher/main_test.go
+++ b/internal/ingress/annotations/sslcipher/main_test.go
@@ -64,13 +64,13 @@ func TestParse(t *testing.T) {
 		Spec: networking.IngressSpec{},
 	}
 
-	for _, testCase := range testCases {
+	for i, testCase := range testCases {
 		ing.SetAnnotations(testCase.annotations)
 		result, err := ap.Parse(ing)
 		if (err != nil) != testCase.expectErr {
 			t.Fatalf("expected error: %t got error: %t err value: %s. %+v", testCase.expectErr, err != nil, err, testCase.annotations)
 		}
-		if !reflect.DeepEqual(result, &testCase.expected) {
+		if !reflect.DeepEqual(result, &testCases[i].expected) {
 			t.Errorf("expected %v but returned %v, annotations: %s", testCase.expected, result, testCase.annotations)
 		}
 	}
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 0dafa78a2..09983308e 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -865,7 +865,7 @@ func NewDefault() Configuration {
 	defGlobalExternalAuth := GlobalExternalAuth{"", "", "", "", "", append(defResponseHeaders, ""), "", "", "", []string{}, map[string]string{}, false}
 
 	cfg := Configuration{
-		AllowSnippetAnnotations:          true,
+		AllowSnippetAnnotations:          false,
 		AllowCrossNamespaceResources:     true,
 		AllowBackendServerHeader:         false,
 		AnnotationValueWordBlocklist:     "",
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index f2ad4639b..bbcde1d4f 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -1057,7 +1057,7 @@ func (n *NGINXController) createUpstreams(data []*ingress.Ingress, du *ingress.B
 				continue
 			}
 
-			for _, path := range rule.HTTP.Paths {
+			for i, path := range rule.HTTP.Paths {
 				if path.Backend.Service == nil {
 					// skip non-service backends
 					klog.V(3).Infof("Ingress %q and path %q does not contain a service backend, using default backend", ingKey, path.Path)
@@ -1087,7 +1087,7 @@ func (n *NGINXController) createUpstreams(data []*ingress.Ingress, du *ingress.B
 
 				// add the service ClusterIP as a single Endpoint instead of individual Endpoints
 				if anns.ServiceUpstream {
-					endpoint, err := n.getServiceClusterEndpoint(svcKey, &path.Backend)
+					endpoint, err := n.getServiceClusterEndpoint(svcKey, &rule.HTTP.Paths[i].Backend)
 					if err != nil {
 						klog.Errorf("Failed to determine a suitable ClusterIP Endpoint for Service %q: %v", svcKey, err)
 					} else {
@@ -1844,7 +1844,7 @@ func ingressForHostPath(hostname, path string, servers []*ingress.Server) []*net
 			continue
 		}
 
-		for _, location := range server.Locations {
+		for i, location := range server.Locations {
 			if location.Path != path {
 				continue
 			}
@@ -1853,7 +1853,7 @@ func ingressForHostPath(hostname, path string, servers []*ingress.Server) []*net
 				continue
 			}
 
-			ingresses = append(ingresses, &location.Ingress.Ingress)
+			ingresses = append(ingresses, &server.Locations[i].Ingress.Ingress)
 		}
 	}
 
diff --git a/internal/ingress/metric/collectors/main.go b/internal/ingress/metric/collectors/main.go
index 2c57ad774..b2479929b 100644
--- a/internal/ingress/metric/collectors/main.go
+++ b/internal/ingress/metric/collectors/main.go
@@ -17,4 +17,4 @@ limitations under the License.
 package collectors
 
 // PrometheusNamespace default metric namespace
-var PrometheusNamespace = "nginx_ingress_controller"
+var PrometheusNamespace = "nginx_ingress_controller" //#nosec G101
diff --git a/internal/net/ssl/ssl.go b/internal/net/ssl/ssl.go
index 516b1ec9c..26fd706e1 100644
--- a/internal/net/ssl/ssl.go
+++ b/internal/net/ssl/ssl.go
@@ -55,7 +55,7 @@ var FakeSSLCertificateUID = "00000000-0000-0000-0000-000000000000"
 var oidExtensionSubjectAltName = asn1.ObjectIdentifier{2, 5, 29, 17}
 
 const (
-	fakeCertificateName = "default-fake-certificate"
+	fakeCertificateName = "default-fake-certificate" //#nosec G101
 )
 
 // getPemFileName returns absolute file path and file name of pem cert related to given fullSecretName
diff --git a/magefiles/helm.go b/magefiles/helm.go
index 585a93413..c11fc9ec2 100644
--- a/magefiles/helm.go
+++ b/magefiles/helm.go
@@ -32,8 +32,10 @@ import (
 	"gopkg.in/yaml.v3"
 )
 
-const HelmChartPath = "charts/ingress-nginx/Chart.yaml"
-const HelmChartValues = "charts/ingress-nginx/values.yaml"
+const (
+	HelmChartPath   = "charts/ingress-nginx/Chart.yaml"
+	HelmChartValues = "charts/ingress-nginx/values.yaml"
+)
 
 type Helm mg.Namespace
 
@@ -43,7 +45,6 @@ func (Helm) UpdateAppVersion() {
 }
 
 func updateAppVersion() {
-
 }
 
 // UpdateVersion Update Helm Version of the Chart
@@ -69,11 +70,11 @@ func updateVersion(version string) {
 	chart, err := chartutil.LoadChartfile(HelmChartPath)
 	CheckIfError(err, "HELM Could not Load Chart")
 
-	//Get the current tag
-	//appVersionV, err := getIngressNGINXVersion()
-	//CheckIfError(err, "HELM Issue Retrieving the Current Ingress Nginx Version")
+	// Get the current tag
+	// appVersionV, err := getIngressNGINXVersion()
+	// CheckIfError(err, "HELM Issue Retrieving the Current Ingress Nginx Version")
 
-	//remove the v from TAG
+	// remove the v from TAG
 	appVersion := version
 
 	Info("HELM Ingress-Nginx App Version: %s Chart AppVersion: %s", appVersion, chart.AppVersion)
@@ -82,7 +83,7 @@ func updateVersion(version string) {
 		return
 	}
 
-	//Update the helm chart
+	// Update the helm chart
 	chart.AppVersion = appVersion
 	cTag, err := semver.Make(chart.Version)
 	CheckIfError(err, "HELM Creating Chart Version: %v", err)
@@ -113,7 +114,6 @@ func updateChartReleaseNotes(releasesNotes []string) {
 }
 
 func UpdateChartChangelog() {
-
 }
 
 // UpdateChartValue Updates the Helm ChartValue
@@ -124,16 +124,16 @@ func (Helm) UpdateChartValue(key, value string) {
 func updateChartValue(key, value string) {
 	Info("HELM Updating Chart %s %s:%s", HelmChartValues, key, value)
 
-	//read current values.yaml
+	// read current values.yaml
 	data, err := os.ReadFile(HelmChartValues)
 	CheckIfError(err, "HELM Could not Load Helm Chart Values files %s", HelmChartValues)
 
-	//var valuesStruct IngressChartValue
+	// var valuesStruct IngressChartValue
 	var n yaml.Node
 	CheckIfError(yaml.Unmarshal(data, &n), "HELM Could not Unmarshal %s", HelmChartValues)
 
-	//update value
-	//keyParse := parsePath(key)
+	// update value
+	// keyParse := parsePath(key)
 	p, err := yamlpath.NewPath(key)
 	CheckIfError(err, "HELM cannot create path")
 
@@ -152,7 +152,7 @@ func updateChartValue(key, value string) {
 	yamlEncoder.SetIndent(2)
 	err = yamlEncoder.Encode(&n)
 	CheckIfError(err, "HELM Could not Marshal new Values file")
-	err = os.WriteFile(HelmChartValues, b.Bytes(), 0644)
+	err = os.WriteFile(HelmChartValues, b.Bytes(), 0o644)
 	CheckIfError(err, "HELM Could not write new Values file to %s", HelmChartValues)
 
 	Info("HELM Ingress Nginx Helm Chart update %s %s", key, value)
@@ -161,6 +161,7 @@ func updateChartValue(key, value string) {
 func (Helm) Helmdocs() error {
 	return runHelmDocs()
 }
+
 func runHelmDocs() error {
 	err := installHelmDocs()
 	if err != nil {
@@ -175,7 +176,7 @@ func runHelmDocs() error {
 
 func installHelmDocs() error {
 	Info("HELM Install HelmDocs")
-	var g0 = sh.RunCmd("go")
+	g0 := sh.RunCmd("go")
 
 	err := g0("install", "github.com/norwoodj/helm-docs/cmd/helm-docs@v1.11.0")
 	if err != nil {
@@ -186,13 +187,11 @@ func installHelmDocs() error {
 func parsePath(key string) []string { return strings.Split(key, ".") }
 
 func updateHelmDocs() {
-
 }
 
 type IngressChartValue struct {
-	CommonLabels struct {
-	} `yaml:"commonLabels"`
-	Controller struct {
+	CommonLabels struct{} `yaml:"commonLabels"`
+	Controller   struct {
 		Name  string `yaml:"name"`
 		Image struct {
 			Chroot                   bool   `yaml:"chroot"`
@@ -211,24 +210,18 @@ type IngressChartValue struct {
 			HTTP  int `yaml:"http"`
 			HTTPS int `yaml:"https"`
 		} `yaml:"containerPort"`
-		Config struct {
-		} `yaml:"config"`
-		ConfigAnnotations struct {
-		} `yaml:"configAnnotations"`
-		ProxySetHeaders struct {
-		} `yaml:"proxySetHeaders"`
-		AddHeaders struct {
-		} `yaml:"addHeaders"`
-		DNSConfig struct {
-		} `yaml:"dnsConfig"`
-		Hostname struct {
-		} `yaml:"hostname"`
-		DNSPolicy                string `yaml:"dnsPolicy"`
-		ReportNodeInternalIP     bool   `yaml:"reportNodeInternalIp"`
-		WatchIngressWithoutClass bool   `yaml:"watchIngressWithoutClass"`
-		IngressClassByName       bool   `yaml:"ingressClassByName"`
-		AllowSnippetAnnotations  bool   `yaml:"allowSnippetAnnotations"`
-		HostNetwork              bool   `yaml:"hostNetwork"`
+		Config                   struct{} `yaml:"config"`
+		ConfigAnnotations        struct{} `yaml:"configAnnotations"`
+		ProxySetHeaders          struct{} `yaml:"proxySetHeaders"`
+		AddHeaders               struct{} `yaml:"addHeaders"`
+		DNSConfig                struct{} `yaml:"dnsConfig"`
+		Hostname                 struct{} `yaml:"hostname"`
+		DNSPolicy                string   `yaml:"dnsPolicy"`
+		ReportNodeInternalIP     bool     `yaml:"reportNodeInternalIp"`
+		WatchIngressWithoutClass bool     `yaml:"watchIngressWithoutClass"`
+		IngressClassByName       bool     `yaml:"ingressClassByName"`
+		AllowSnippetAnnotations  bool     `yaml:"allowSnippetAnnotations"`
+		HostNetwork              bool     `yaml:"hostNetwork"`
 		HostPort                 struct {
 			Enabled bool `yaml:"enabled"`
 			Ports   struct {
@@ -238,21 +231,17 @@ type IngressChartValue struct {
 		} `yaml:"hostPort"`
 		ElectionID           string `yaml:"electionID"`
 		IngressClassResource struct {
-			Name            string `yaml:"name"`
-			Enabled         bool   `yaml:"enabled"`
-			Default         bool   `yaml:"default"`
-			ControllerValue string `yaml:"controllerValue"`
-			Parameters      struct {
-			} `yaml:"parameters"`
+			Name            string   `yaml:"name"`
+			Enabled         bool     `yaml:"enabled"`
+			Default         bool     `yaml:"default"`
+			ControllerValue string   `yaml:"controllerValue"`
+			Parameters      struct{} `yaml:"parameters"`
 		} `yaml:"ingressClassResource"`
-		IngressClass string `yaml:"ingressClass"`
-		PodLabels    struct {
-		} `yaml:"podLabels"`
-		PodSecurityContext struct {
-		} `yaml:"podSecurityContext"`
-		Sysctls struct {
-		} `yaml:"sysctls"`
-		PublishService struct {
+		IngressClass       string   `yaml:"ingressClass"`
+		PodLabels          struct{} `yaml:"podLabels"`
+		PodSecurityContext struct{} `yaml:"podSecurityContext"`
+		Sysctls            struct{} `yaml:"sysctls"`
+		PublishService     struct {
 			Enabled      bool   `yaml:"enabled"`
 			PathOverride string `yaml:"pathOverride"`
 		} `yaml:"publishService"`
@@ -263,30 +252,23 @@ type IngressChartValue struct {
 		} `yaml:"scope"`
 		ConfigMapNamespace string `yaml:"configMapNamespace"`
 		TCP                struct {
-			ConfigMapNamespace string `yaml:"configMapNamespace"`
-			Annotations        struct {
-			} `yaml:"annotations"`
+			ConfigMapNamespace string   `yaml:"configMapNamespace"`
+			Annotations        struct{} `yaml:"annotations"`
 		} `yaml:"tcp"`
 		UDP struct {
-			ConfigMapNamespace string `yaml:"configMapNamespace"`
-			Annotations        struct {
-			} `yaml:"annotations"`
+			ConfigMapNamespace string   `yaml:"configMapNamespace"`
+			Annotations        struct{} `yaml:"annotations"`
 		} `yaml:"udp"`
-		MaxmindLicenseKey string `yaml:"maxmindLicenseKey"`
-		ExtraArgs         struct {
-		} `yaml:"extraArgs"`
-		ExtraEnvs   []interface{} `yaml:"extraEnvs"`
-		Kind        string        `yaml:"kind"`
-		Annotations struct {
-		} `yaml:"annotations"`
-		Labels struct {
-		} `yaml:"labels"`
-		UpdateStrategy struct {
-		} `yaml:"updateStrategy"`
-		MinReadySeconds int           `yaml:"minReadySeconds"`
-		Tolerations     []interface{} `yaml:"tolerations"`
-		Affinity        struct {
-		} `yaml:"affinity"`
+		MaxmindLicenseKey             string        `yaml:"maxmindLicenseKey"`
+		ExtraArgs                     struct{}      `yaml:"extraArgs"`
+		ExtraEnvs                     []interface{} `yaml:"extraEnvs"`
+		Kind                          string        `yaml:"kind"`
+		Annotations                   struct{}      `yaml:"annotations"`
+		Labels                        struct{}      `yaml:"labels"`
+		UpdateStrategy                struct{}      `yaml:"updateStrategy"`
+		MinReadySeconds               int           `yaml:"minReadySeconds"`
+		Tolerations                   []interface{} `yaml:"tolerations"`
+		Affinity                      struct{}      `yaml:"affinity"`
 		TopologySpreadConstraints     []interface{} `yaml:"topologySpreadConstraints"`
 		TerminationGracePeriodSeconds int           `yaml:"terminationGracePeriodSeconds"`
 		NodeSelector                  struct {
@@ -316,29 +298,26 @@ type IngressChartValue struct {
 			SuccessThreshold    int `yaml:"successThreshold"`
 			FailureThreshold    int `yaml:"failureThreshold"`
 		} `yaml:"readinessProbe"`
-		HealthCheckPath string `yaml:"healthCheckPath"`
-		HealthCheckHost string `yaml:"healthCheckHost"`
-		PodAnnotations  struct {
-		} `yaml:"podAnnotations"`
-		ReplicaCount int `yaml:"replicaCount"`
-		MinAvailable int `yaml:"minAvailable"`
-		Resources    struct {
+		HealthCheckPath string   `yaml:"healthCheckPath"`
+		HealthCheckHost string   `yaml:"healthCheckHost"`
+		PodAnnotations  struct{} `yaml:"podAnnotations"`
+		ReplicaCount    int      `yaml:"replicaCount"`
+		MinAvailable    int      `yaml:"minAvailable"`
+		Resources       struct {
 			Requests struct {
 				CPU    string `yaml:"cpu"`
 				Memory string `yaml:"memory"`
 			} `yaml:"requests"`
 		} `yaml:"resources"`
 		Autoscaling struct {
-			APIVersion  string `yaml:"apiVersion"`
-			Enabled     bool   `yaml:"enabled"`
-			Annotations struct {
-			} `yaml:"annotations"`
-			MinReplicas                       int `yaml:"minReplicas"`
-			MaxReplicas                       int `yaml:"maxReplicas"`
-			TargetCPUUtilizationPercentage    int `yaml:"targetCPUUtilizationPercentage"`
-			TargetMemoryUtilizationPercentage int `yaml:"targetMemoryUtilizationPercentage"`
-			Behavior                          struct {
-			} `yaml:"behavior"`
+			APIVersion                        string   `yaml:"apiVersion"`
+			Enabled                           bool     `yaml:"enabled"`
+			Annotations                       struct{} `yaml:"annotations"`
+			MinReplicas                       int      `yaml:"minReplicas"`
+			MaxReplicas                       int      `yaml:"maxReplicas"`
+			TargetCPUUtilizationPercentage    int      `yaml:"targetCPUUtilizationPercentage"`
+			TargetMemoryUtilizationPercentage int      `yaml:"targetMemoryUtilizationPercentage"`
+			Behavior                          struct{} `yaml:"behavior"`
 		} `yaml:"autoscaling"`
 		AutoscalingTemplate []interface{} `yaml:"autoscalingTemplate"`
 		Keda                struct {
@@ -350,12 +329,10 @@ type IngressChartValue struct {
 			CooldownPeriod                int    `yaml:"cooldownPeriod"`
 			RestoreToOriginalReplicaCount bool   `yaml:"restoreToOriginalReplicaCount"`
 			ScaledObject                  struct {
-				Annotations struct {
-				} `yaml:"annotations"`
+				Annotations struct{} `yaml:"annotations"`
 			} `yaml:"scaledObject"`
 			Triggers []interface{} `yaml:"triggers"`
-			Behavior struct {
-			} `yaml:"behavior"`
+			Behavior struct{}      `yaml:"behavior"`
 		} `yaml:"keda"`
 		EnableMimalloc bool `yaml:"enableMimalloc"`
 		CustomTemplate struct {
@@ -363,12 +340,10 @@ type IngressChartValue struct {
 			ConfigMapKey  string `yaml:"configMapKey"`
 		} `yaml:"customTemplate"`
 		Service struct {
-			Enabled     bool `yaml:"enabled"`
-			AppProtocol bool `yaml:"appProtocol"`
-			Annotations struct {
-			} `yaml:"annotations"`
-			Labels struct {
-			} `yaml:"labels"`
+			Enabled                  bool          `yaml:"enabled"`
+			AppProtocol              bool          `yaml:"appProtocol"`
+			Annotations              struct{}      `yaml:"annotations"`
+			Labels                   struct{}      `yaml:"labels"`
 			ExternalIPs              []interface{} `yaml:"externalIPs"`
 			LoadBalancerIP           string        `yaml:"loadBalancerIP"`
 			LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
@@ -386,20 +361,17 @@ type IngressChartValue struct {
 			} `yaml:"targetPorts"`
 			Type      string `yaml:"type"`
 			NodePorts struct {
-				HTTP  string `yaml:"http"`
-				HTTPS string `yaml:"https"`
-				TCP   struct {
-				} `yaml:"tcp"`
-				UDP struct {
-				} `yaml:"udp"`
+				HTTP  string   `yaml:"http"`
+				HTTPS string   `yaml:"https"`
+				TCP   struct{} `yaml:"tcp"`
+				UDP   struct{} `yaml:"udp"`
 			} `yaml:"nodePorts"`
 			External struct {
 				Enabled bool `yaml:"enabled"`
 			} `yaml:"external"`
 			Internal struct {
-				Enabled     bool `yaml:"enabled"`
-				Annotations struct {
-				} `yaml:"annotations"`
+				Enabled                  bool          `yaml:"enabled"`
+				Annotations              struct{}      `yaml:"annotations"`
 				LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
 			} `yaml:"internal"`
 		} `yaml:"service"`
@@ -417,25 +389,20 @@ type IngressChartValue struct {
 			} `yaml:"containerSecurityContext"`
 		} `yaml:"opentelemetry"`
 		AdmissionWebhooks struct {
-			Annotations struct {
-			} `yaml:"annotations"`
-			Enabled           bool          `yaml:"enabled"`
-			ExtraEnvs         []interface{} `yaml:"extraEnvs"`
-			FailurePolicy     string        `yaml:"failurePolicy"`
-			Port              int           `yaml:"port"`
-			Certificate       string        `yaml:"certificate"`
-			Key               string        `yaml:"key"`
-			NamespaceSelector struct {
-			} `yaml:"namespaceSelector"`
-			ObjectSelector struct {
-			} `yaml:"objectSelector"`
-			Labels struct {
-			} `yaml:"labels"`
-			ExistingPsp          string `yaml:"existingPsp"`
-			NetworkPolicyEnabled bool   `yaml:"networkPolicyEnabled"`
+			Annotations          struct{}      `yaml:"annotations"`
+			Enabled              bool          `yaml:"enabled"`
+			ExtraEnvs            []interface{} `yaml:"extraEnvs"`
+			FailurePolicy        string        `yaml:"failurePolicy"`
+			Port                 int           `yaml:"port"`
+			Certificate          string        `yaml:"certificate"`
+			Key                  string        `yaml:"key"`
+			NamespaceSelector    struct{}      `yaml:"namespaceSelector"`
+			ObjectSelector       struct{}      `yaml:"objectSelector"`
+			Labels               struct{}      `yaml:"labels"`
+			ExistingPsp          string        `yaml:"existingPsp"`
+			NetworkPolicyEnabled bool          `yaml:"networkPolicyEnabled"`
 			Service              struct {
-				Annotations struct {
-				} `yaml:"annotations"`
+				Annotations              struct{}      `yaml:"annotations"`
 				ExternalIPs              []interface{} `yaml:"externalIPs"`
 				LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
 				ServicePort              int           `yaml:"servicePort"`
@@ -445,15 +412,13 @@ type IngressChartValue struct {
 				SecurityContext struct {
 					AllowPrivilegeEscalation bool `yaml:"allowPrivilegeEscalation"`
 				} `yaml:"securityContext"`
-				Resources struct {
-				} `yaml:"resources"`
+				Resources struct{} `yaml:"resources"`
 			} `yaml:"createSecretJob"`
 			PatchWebhookJob struct {
 				SecurityContext struct {
 					AllowPrivilegeEscalation bool `yaml:"allowPrivilegeEscalation"`
 				} `yaml:"securityContext"`
-				Resources struct {
-				} `yaml:"resources"`
+				Resources struct{} `yaml:"resources"`
 			} `yaml:"patchWebhookJob"`
 			Patch struct {
 				Enabled bool `yaml:"enabled"`
@@ -464,15 +429,13 @@ type IngressChartValue struct {
 					Digest     string `yaml:"digest"`
 					PullPolicy string `yaml:"pullPolicy"`
 				} `yaml:"image"`
-				PriorityClassName string `yaml:"priorityClassName"`
-				PodAnnotations    struct {
-				} `yaml:"podAnnotations"`
-				NodeSelector struct {
+				PriorityClassName string   `yaml:"priorityClassName"`
+				PodAnnotations    struct{} `yaml:"podAnnotations"`
+				NodeSelector      struct {
 					KubernetesIoOs string `yaml:"kubernetes.io/os"`
 				} `yaml:"nodeSelector"`
-				Tolerations []interface{} `yaml:"tolerations"`
-				Labels      struct {
-				} `yaml:"labels"`
+				Tolerations     []interface{} `yaml:"tolerations"`
+				Labels          struct{}      `yaml:"labels"`
 				SecurityContext struct {
 					RunAsNonRoot bool `yaml:"runAsNonRoot"`
 					RunAsUser    int  `yaml:"runAsUser"`
@@ -494,30 +457,26 @@ type IngressChartValue struct {
 			PortName string `yaml:"portName"`
 			Enabled  bool   `yaml:"enabled"`
 			Service  struct {
-				Annotations struct {
-				} `yaml:"annotations"`
+				Annotations              struct{}      `yaml:"annotations"`
 				ExternalIPs              []interface{} `yaml:"externalIPs"`
 				LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
 				ServicePort              int           `yaml:"servicePort"`
 				Type                     string        `yaml:"type"`
 			} `yaml:"service"`
 			ServiceMonitor struct {
-				Enabled          bool `yaml:"enabled"`
-				AdditionalLabels struct {
-				} `yaml:"additionalLabels"`
-				Namespace         string `yaml:"namespace"`
-				NamespaceSelector struct {
-				} `yaml:"namespaceSelector"`
+				Enabled           bool          `yaml:"enabled"`
+				AdditionalLabels  struct{}      `yaml:"additionalLabels"`
+				Namespace         string        `yaml:"namespace"`
+				NamespaceSelector struct{}      `yaml:"namespaceSelector"`
 				ScrapeInterval    string        `yaml:"scrapeInterval"`
 				TargetLabels      []interface{} `yaml:"targetLabels"`
 				Relabelings       []interface{} `yaml:"relabelings"`
 				MetricRelabelings []interface{} `yaml:"metricRelabelings"`
 			} `yaml:"serviceMonitor"`
 			PrometheusRule struct {
-				Enabled          bool `yaml:"enabled"`
-				AdditionalLabels struct {
-				} `yaml:"additionalLabels"`
-				Rules []interface{} `yaml:"rules"`
+				Enabled          bool          `yaml:"enabled"`
+				AdditionalLabels struct{}      `yaml:"additionalLabels"`
+				Rules            []interface{} `yaml:"rules"`
 			} `yaml:"prometheusRule"`
 		} `yaml:"metrics"`
 		Lifecycle struct {
@@ -543,9 +502,8 @@ type IngressChartValue struct {
 			ReadOnlyRootFilesystem   bool   `yaml:"readOnlyRootFilesystem"`
 			AllowPrivilegeEscalation bool   `yaml:"allowPrivilegeEscalation"`
 		} `yaml:"image"`
-		ExistingPsp string `yaml:"existingPsp"`
-		ExtraArgs   struct {
-		} `yaml:"extraArgs"`
+		ExistingPsp    string   `yaml:"existingPsp"`
+		ExtraArgs      struct{} `yaml:"extraArgs"`
 		ServiceAccount struct {
 			Create                       bool   `yaml:"create"`
 			Name                         string `yaml:"name"`
@@ -567,46 +525,37 @@ type IngressChartValue struct {
 			SuccessThreshold    int `yaml:"successThreshold"`
 			TimeoutSeconds      int `yaml:"timeoutSeconds"`
 		} `yaml:"readinessProbe"`
-		Tolerations []interface{} `yaml:"tolerations"`
-		Affinity    struct {
-		} `yaml:"affinity"`
-		PodSecurityContext struct {
-		} `yaml:"podSecurityContext"`
-		ContainerSecurityContext struct {
-		} `yaml:"containerSecurityContext"`
-		PodLabels struct {
-		} `yaml:"podLabels"`
-		NodeSelector struct {
+		Tolerations              []interface{} `yaml:"tolerations"`
+		Affinity                 struct{}      `yaml:"affinity"`
+		PodSecurityContext       struct{}      `yaml:"podSecurityContext"`
+		ContainerSecurityContext struct{}      `yaml:"containerSecurityContext"`
+		PodLabels                struct{}      `yaml:"podLabels"`
+		NodeSelector             struct {
 			KubernetesIoOs string `yaml:"kubernetes.io/os"`
 		} `yaml:"nodeSelector"`
-		PodAnnotations struct {
-		} `yaml:"podAnnotations"`
-		ReplicaCount int `yaml:"replicaCount"`
-		MinAvailable int `yaml:"minAvailable"`
-		Resources    struct {
-		} `yaml:"resources"`
+		PodAnnotations    struct{}      `yaml:"podAnnotations"`
+		ReplicaCount      int           `yaml:"replicaCount"`
+		MinAvailable      int           `yaml:"minAvailable"`
+		Resources         struct{}      `yaml:"resources"`
 		ExtraVolumeMounts []interface{} `yaml:"extraVolumeMounts"`
 		ExtraVolumes      []interface{} `yaml:"extraVolumes"`
 		Autoscaling       struct {
-			Annotations struct {
-			} `yaml:"annotations"`
-			Enabled                           bool `yaml:"enabled"`
-			MinReplicas                       int  `yaml:"minReplicas"`
-			MaxReplicas                       int  `yaml:"maxReplicas"`
-			TargetCPUUtilizationPercentage    int  `yaml:"targetCPUUtilizationPercentage"`
-			TargetMemoryUtilizationPercentage int  `yaml:"targetMemoryUtilizationPercentage"`
+			Annotations                       struct{} `yaml:"annotations"`
+			Enabled                           bool     `yaml:"enabled"`
+			MinReplicas                       int      `yaml:"minReplicas"`
+			MaxReplicas                       int      `yaml:"maxReplicas"`
+			TargetCPUUtilizationPercentage    int      `yaml:"targetCPUUtilizationPercentage"`
+			TargetMemoryUtilizationPercentage int      `yaml:"targetMemoryUtilizationPercentage"`
 		} `yaml:"autoscaling"`
 		Service struct {
-			Annotations struct {
-			} `yaml:"annotations"`
+			Annotations              struct{}      `yaml:"annotations"`
 			ExternalIPs              []interface{} `yaml:"externalIPs"`
 			LoadBalancerSourceRanges []interface{} `yaml:"loadBalancerSourceRanges"`
 			ServicePort              int           `yaml:"servicePort"`
 			Type                     string        `yaml:"type"`
 		} `yaml:"service"`
-		PriorityClassName string `yaml:"priorityClassName"`
-		Labels            struct {
-		} `yaml:"labels"`
+		PriorityClassName string   `yaml:"priorityClassName"`
+		Labels            struct{} `yaml:"labels"`
 	} `yaml:"defaultBackend"`
 	Rbac struct {
 		Create bool `yaml:"create"`
@@ -616,17 +565,14 @@ type IngressChartValue struct {
 		Enabled bool `yaml:"enabled"`
 	} `yaml:"podSecurityPolicy"`
 	ServiceAccount struct {
-		Create                       bool   `yaml:"create"`
-		Name                         string `yaml:"name"`
-		AutomountServiceAccountToken bool   `yaml:"automountServiceAccountToken"`
-		Annotations                  struct {
-		} `yaml:"annotations"`
+		Create                       bool     `yaml:"create"`
+		Name                         string   `yaml:"name"`
+		AutomountServiceAccountToken bool     `yaml:"automountServiceAccountToken"`
+		Annotations                  struct{} `yaml:"annotations"`
 	} `yaml:"serviceAccount"`
 	ImagePullSecrets []interface{} `yaml:"imagePullSecrets"`
-	TCP              struct {
-	} `yaml:"tcp"`
-	UDP struct {
-	} `yaml:"udp"`
-	PortNamePrefix string      `yaml:"portNamePrefix"`
-	DhParam        interface{} `yaml:"dhParam"`
+	TCP              struct{}      `yaml:"tcp"`
+	UDP              struct{}      `yaml:"udp"`
+	PortNamePrefix   string        `yaml:"portNamePrefix"`
+	DhParam          interface{}   `yaml:"dhParam"`
 }
diff --git a/magefiles/mage.go b/magefiles/mage.go
index 605d687a9..ef54ee0f7 100644
--- a/magefiles/mage.go
+++ b/magefiles/mage.go
@@ -20,8 +20,9 @@ limitations under the License.
 package main
 
 import (
-	"github.com/magefile/mage/mage"
 	"os"
+
+	"github.com/magefile/mage/mage"
 )
 
 func main() {
diff --git a/magefiles/release.go b/magefiles/release.go
index 6e5efb490..e6dc6401d 100644
--- a/magefiles/release.go
+++ b/magefiles/release.go
@@ -22,39 +22,45 @@ import (
 	"context"
 	"errors"
 	"fmt"
+	"io"
+	"net"
+	"net/http"
+	"os"
+	"regexp"
+	"strings"
+	"text/template"
+	"time"
+
 	"github.com/google/go-github/v48/github"
 	"github.com/magefile/mage/mg"
 	"github.com/magefile/mage/sh"
 	"golang.org/x/oauth2"
 	"gopkg.in/yaml.v3"
-	"io"
-	"net"
-	"net/http"
-	"os"
-	"text/template"
-
-	"regexp"
-	"strings"
-	"time"
 )
 
 type Release mg.Namespace
 
-var INGRESS_ORG = "kubernetes"                                              // the owner so we can test from forks
-var INGRESS_REPO = "ingress-nginx"                                          // the repo to pull from
-var RELEASE_BRANCH = "main"                                                 //we only release from main
-var GITHUB_TOKEN string                                                     // the Google/gogithub lib needs an PAT to access the GitHub API
-var K8S_IO_ORG = "kubernetes"                                               //the owner or organization for the k8s.io repo
-var K8S_IO_REPO = "k8s.io"                                                  //the repo that holds the images yaml for production promotion
-var INGRESS_REGISTRY = "registry.k8s.io"                                    //Container registry for storage Ingress-nginx images
-var KUSTOMIZE_INSTALL_VERSION = "sigs.k8s.io/kustomize/kustomize/v4@v4.5.4" //static deploys needs kustomize to generate the template
+var (
+	INGRESS_ORG               = "kubernetes"                                // the owner so we can test from forks
+	INGRESS_REPO              = "ingress-nginx"                             // the repo to pull from
+	RELEASE_BRANCH            = "main"                                      // we only release from main
+	GITHUB_TOKEN              string                                        // the Google/gogithub lib needs an PAT to access the GitHub API
+	K8S_IO_ORG                = "kubernetes"                                // the owner or organization for the k8s.io repo
+	K8S_IO_REPO               = "k8s.io"                                    // the repo that holds the images yaml for production promotion
+	INGRESS_REGISTRY          = "registry.k8s.io"                           // Container registry for storage Ingress-nginx images
+	KUSTOMIZE_INSTALL_VERSION = "sigs.k8s.io/kustomize/kustomize/v4@v4.5.4" // static deploys needs kustomize to generate the template
+)
 
 // ingress-nginx releases start with a TAG then a cloudbuild, then a promotion through a PR, this the location of that PR
-var IMAGES_YAML = "https://raw.githubusercontent.com/kubernetes/k8s.io/main/registry.k8s.io/images/k8s-staging-ingress-nginx/images.yaml"
-var ctx = context.Background() // Context used for GitHub Client
+var (
+	IMAGES_YAML = "https://raw.githubusercontent.com/kubernetes/k8s.io/main/registry.k8s.io/images/k8s-staging-ingress-nginx/images.yaml"
+	ctx         = context.Background() // Context used for GitHub Client
+)
 
-const INDEX_DOCS = "docs/deploy/index.md" //index.md has a version of the controller and needs to updated
-const CHANGELOG = "Changelog.md"          //Name of the changelog
+const (
+	INDEX_DOCS = "docs/deploy/index.md" // index.md has a version of the controller and needs to updated
+	CHANGELOG  = "Changelog.md"         // Name of the changelog
+)
 
 // ControllerImage - struct with info about controllers
 type ControllerImage struct {
@@ -101,81 +107,80 @@ func init() {
 
 // PromoteImage Creates PR into the k8s.io repo for promotion of ingress from staging to production
 func (Release) PromoteImage(version, sha string) {
-
 }
 
 // Release Create a new release of ingress nginx controller
 func (Release) NewRelease(version string) {
-	//newRelease := Release{}
+	// newRelease := Release{}
 
-	//update ingress-nginx version
-	//This is the step that kicks all the release process
-	//it is already done, so it kicks off the gcloud build of the controller images
-	//mg.Deps(mg.F(Tag.BumpNginx, version))
+	// update ingress-nginx version
+	// This is the step that kicks all the release process
+	// it is already done, so it kicks off the gcloud build of the controller images
+	// mg.Deps(mg.F(Tag.BumpNginx, version))
 
 	tag, err := getIngressNGINXVersion()
 	CheckIfError(err, "RELEASE Retrieving the current Ingress Nginx Version")
 
 	Info("RELEASE Checking Current Version %s to New Version %s", tag, version)
-	//if the version were upgrading does not match the TAG file, lets update the TAG file
+	// if the version were upgrading does not match the TAG file, lets update the TAG file
 	if tag[1:] != version {
 		Warning("RELEASE Ingress Nginx TAG %s and new version %s do not match", tag, version)
 		mg.Deps(mg.F(Tag.BumpNginx, fmt.Sprintf("v%s", version)))
 	}
 
-	//update git controller tag controller-v$version
+	// update git controller tag controller-v$version
 	mg.Deps(mg.F(Tag.NewControllerTag, version))
 
-	//make release notes
+	// make release notes
 	releaseNotes, err := makeReleaseNotes(version)
 	CheckIfError(err, "RELEASE Creating Release Notes for version %s", version)
 	Info("RELEASE Release Notes %s completed", releaseNotes.Version)
 
-	//update chart values.yaml new controller tag and image digest
+	// update chart values.yaml new controller tag and image digest
 	releaseNotes.PreviousHelmChartVersion = currentChartVersion()
 
-	//controller tag
+	// controller tag
 	updateChartValue("controller.image.tag", fmt.Sprintf("v%s", releaseNotes.Version))
 	Debug("releaseNotes.ControllerImages[0].Name %s", releaseNotes.ControllerImages[0].Name)
 	Debug("releaseNotes.ControllerImages[1].Name %s", releaseNotes.ControllerImages[1].Name)
-	//controller digest
+	// controller digest
 	if releaseNotes.ControllerImages[0].Name == "ingress-nginx/controller" {
 		Debug("Updating Chart Value %s with %s", "controller.image.digest", releaseNotes.ControllerImages[0].Digest)
 		updateChartValue("controller.image.digest", releaseNotes.ControllerImages[0].Digest)
 	}
-	//controller chroot digest
+	// controller chroot digest
 	if releaseNotes.ControllerImages[1].Name == "ingress-nginx/controller-chroot" {
 		Debug("Updating Chart Value %s with %s", "controller.image.digestChroot", releaseNotes.ControllerImages[1].Digest)
 		updateChartValue("controller.image.digestChroot", releaseNotes.ControllerImages[1].Digest)
 	}
 
-	//update helm chart app version
+	// update helm chart app version
 	mg.Deps(mg.F(Helm.UpdateVersion, version))
 
 	releaseNotes.NewHelmChartVersion = currentChartVersion()
 
-	//update helm chart release notes
+	// update helm chart release notes
 	updateChartReleaseNotes(releaseNotes.HelmUpdates)
 
-	//Run helm docs update
+	// Run helm docs update
 	CheckIfError(runHelmDocs(), "Error Updating Helm Docs ")
 
 	releaseNotes.helmTemplate()
 
-	//update static manifest
+	// update static manifest
 	CheckIfError(updateStaticManifest(), "Error Updating Static manifests")
 
 	////update e2e docs
 	updateE2EDocs()
 
-	//update documentation with ingress-nginx version
+	// update documentation with ingress-nginx version
 	CheckIfError(updateIndexMD(releaseNotes.PreviousControllerVersion, releaseNotes.NewControllerVersion), "Error Updating %s", INDEX_DOCS)
 
-	//keeping these manual for now
-	//git commit TODO
-	//make Pull Request TODO
-	//make release TODO
-	//mg.Deps(mg.F(Release.CreateRelease, version))
+	// keeping these manual for now
+	// git commit TODO
+	// make Pull Request TODO
+	// make release TODO
+	// mg.Deps(mg.F(Release.CreateRelease, version))
 }
 
 // the index.md doc needs the controller version updated
@@ -204,7 +209,7 @@ func updateE2EDocs() {
 // The static deploy scripts use kustomize to generate them, this function ensures kustomize is installed
 func installKustomize() error {
 	Info("Install Kustomize")
-	var g0 = sh.RunCmd("go")
+	g0 := sh.RunCmd("go")
 	// somewhere in your main code
 	err := g0("install", KUSTOMIZE_INSTALL_VERSION)
 	if err != nil {
@@ -215,7 +220,7 @@ func installKustomize() error {
 
 func updateStaticManifest() error {
 	CheckIfError(installKustomize(), "error installing kustomize")
-	//hack/generate-deploy-scripts.sh
+	// hack/generate-deploy-scripts.sh
 	err := sh.RunV("./hack/generate-deploy-scripts.sh")
 	if err != nil {
 		return err
@@ -270,28 +275,28 @@ func (Release) ReleaseNotes(newVersion string) error {
 }
 
 func makeReleaseNotes(newVersion string) (*ReleaseNote, error) {
-	var newReleaseNotes = ReleaseNote{}
+	newReleaseNotes := ReleaseNote{}
 
 	newReleaseNotes.Version = newVersion
 	allControllerTags := getAllControllerTags()
 
-	//new version
+	// new version
 	newReleaseNotes.NewControllerVersion = allControllerTags[0]
 	newControllerVersion := fmt.Sprintf("controller-v%s", newVersion)
 
-	//the newControllerVersion should match the latest tag
+	// the newControllerVersion should match the latest tag
 	if newControllerVersion != allControllerTags[0] {
 		return nil, errors.New(fmt.Sprintf("Generating release new version %s didnt match the current latest tag %s", newControllerVersion, allControllerTags[0]))
 	}
-	//previous version
+	// previous version
 	newReleaseNotes.PreviousControllerVersion = allControllerTags[1]
 
 	Info("New Version: %s Old Version: %s", newReleaseNotes.NewControllerVersion, newReleaseNotes.PreviousControllerVersion)
 
 	commits := commitsBetweenTags()
 
-	//dependency_updates
-	//all_updates
+	// dependency_updates
+	// all_updates
 	var allUpdates []string
 	var depUpdates []string
 	var helmUpdates []string
@@ -299,9 +304,9 @@ func makeReleaseNotes(newVersion string) (*ReleaseNote, error) {
 	depBot := regexp.MustCompile("^(\\w){1,10} Bump ")
 	helmRegex := regexp.MustCompile("helm|chart")
 	for i, s := range commits {
-		//matches on PR
+		// matches on PR
 		if prRegex.Match([]byte(s)) {
-			//matches a dependant bot update
+			// matches a dependant bot update
 			if depBot.Match([]byte(s)) { //
 				Debug("#%v DEPENDABOT %v", i, s)
 				u := strings.SplitN(s, " ", 2)
@@ -311,13 +316,12 @@ func makeReleaseNotes(newVersion string) (*ReleaseNote, error) {
 				u := strings.SplitN(s, " ", 2)
 				allUpdates = append(allUpdates, u[1])
 
-				//helm chart updates
+				// helm chart updates
 				if helmRegex.Match([]byte(s)) {
 					u := strings.SplitN(s, " ", 2)
 					helmUpdates = append(helmUpdates, u[1])
 				}
 			}
-
 		}
 	}
 	helmUpdates = append(helmUpdates, fmt.Sprintf("Update Ingress-Nginx version %s", newReleaseNotes.NewControllerVersion))
@@ -326,7 +330,7 @@ func makeReleaseNotes(newVersion string) (*ReleaseNote, error) {
 	newReleaseNotes.DepUpdates = depUpdates
 	newReleaseNotes.HelmUpdates = helmUpdates
 
-	//controller_image_digests
+	// controller_image_digests
 	imagesYaml, err := downloadFile(IMAGES_YAML)
 	if err != nil {
 		ErrorF("Could not download file %s : %s", IMAGES_YAML, err)
@@ -342,7 +346,7 @@ func makeReleaseNotes(newVersion string) (*ReleaseNote, error) {
 		return nil, err
 	}
 
-	//controller
+	// controller
 	controllerDigest := findImageDigest(data, "controller", newVersion)
 	if len(controllerDigest) == 0 {
 		ErrorF("Controller Digest could not be found")
@@ -379,7 +383,7 @@ func makeReleaseNotes(newVersion string) (*ReleaseNote, error) {
 		newReleaseNotes.printRelease()
 	}
 
-	//write it all out to the changelog file
+	// write it all out to the changelog file
 	newReleaseNotes.template()
 
 	return &newReleaseNotes, nil
diff --git a/magefiles/tags.go b/magefiles/tags.go
index 02bbbcb37..ca02c2cc3 100644
--- a/magefiles/tags.go
+++ b/magefiles/tags.go
@@ -20,11 +20,12 @@ package main
 
 import (
 	"fmt"
+	"os"
+	"strings"
+
 	semver "github.com/blang/semver/v4"
 	"github.com/magefile/mage/mg"
 	"github.com/magefile/mage/sh"
-	"os"
-	"strings"
 )
 
 type Tag mg.Namespace
@@ -42,7 +43,7 @@ func getIngressNGINXVersion() (string, error) {
 	dat, err := os.ReadFile("TAG")
 	CheckIfError(err, "Could not read TAG file")
 	datString := string(dat)
-	//remove newline
+	// remove newline
 	datString = strings.Replace(datString, "\n", "", -1)
 	return datString, nil
 }
@@ -88,14 +89,14 @@ func (Tag) BumpNginx(newTag string) {
 }
 
 func bump(currentTag, newTag string) {
-	//check if semver is valid
+	// check if semver is valid
 	if !checkSemVer(currentTag, newTag) {
 		ErrorF("ERROR: Semver is not valid %v", newTag)
 		os.Exit(1)
 	}
 
 	Info("Updating Tag %v to %v", currentTag, newTag)
-	err := os.WriteFile("TAG", []byte(newTag), 0666)
+	err := os.WriteFile("TAG", []byte(newTag), 0o666)
 	CheckIfError(err, "Error Writing New Tag File")
 }
 
diff --git a/test/e2e/admission/admission.go b/test/e2e/admission/admission.go
index 726e16f0b..c41105e2d 100644
--- a/test/e2e/admission/admission.go
+++ b/test/e2e/admission/admission.go
@@ -127,6 +127,15 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 	})
 
 	ginkgo.It("should return an error if there is an error validating the ingress definition", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		host := admissionTestHost
 
 		annotations := map[string]string{
@@ -232,6 +241,15 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 	})
 
 	ginkgo.It("should return an error if the Ingress V1 definition contains invalid annotations", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		out, err := createIngress(f.Namespace, invalidV1Ingress)
 		assert.Empty(ginkgo.GinkgoT(), out)
 		assert.NotNil(ginkgo.GinkgoT(), err, "creating an ingress using kubectl")
@@ -243,6 +261,14 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 	})
 
 	ginkgo.It("should not return an error for an invalid Ingress when it has unknown class", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
 		out, err := createIngress(f.Namespace, invalidV1IngressWithOtherClass)
 		assert.Equal(ginkgo.GinkgoT(), "ingress.networking.k8s.io/extensions-invalid-other created\n", out)
 		assert.Nil(ginkgo.GinkgoT(), err, "creating an invalid ingress with unknown class using kubectl")
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index be915a722..415ffd951 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -277,6 +277,14 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 			"nginx.ingress.kubernetes.io/auth-snippet": `
 				proxy_set_header My-Custom-Header 42;`,
 		}
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
@@ -290,6 +298,15 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 	ginkgo.It(`should not set snippet "proxy_set_header My-Custom-Header 42;" when external auth is not configured`, func() {
 		host := authHost
 
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/auth-snippet": `
 				proxy_set_header My-Custom-Header 42;`,
diff --git a/test/e2e/annotations/fastcgi.go b/test/e2e/annotations/fastcgi.go
index 7ed35cb76..bcf1c3487 100644
--- a/test/e2e/annotations/fastcgi.go
+++ b/test/e2e/annotations/fastcgi.go
@@ -82,7 +82,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - FastCGI", func() {
 
 		f.EnsureConfigMap(configuration)
 
-		host := "fastcgi-params-configmap"
+		host := "fastcgi-params-configmap" //#nosec G101
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/backend-protocol":         "FCGI",
diff --git a/test/e2e/annotations/fromtowwwredirect.go b/test/e2e/annotations/fromtowwwredirect.go
index 4ee3d313c..b69cce93e 100644
--- a/test/e2e/annotations/fromtowwwredirect.go
+++ b/test/e2e/annotations/fromtowwwredirect.go
@@ -62,6 +62,15 @@ var _ = framework.DescribeAnnotation("from-to-www-redirect", func() {
 	})
 
 	ginkgo.It("should redirect from www HTTPS to HTTPS", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		ginkgo.By("setting up server for redirect from www")
 
 		fromHost := fmt.Sprintf("%s.nip.io", f.GetNginxIP())
diff --git a/test/e2e/annotations/grpc.go b/test/e2e/annotations/grpc.go
index 4c121df49..b256b8ae4 100644
--- a/test/e2e/annotations/grpc.go
+++ b/test/e2e/annotations/grpc.go
@@ -189,6 +189,15 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 	ginkgo.It("should return OK for service with backend protocol GRPCS", func() {
 		f.NewGRPCBinDeployment()
 
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		host := echoHost
 
 		svc := &corev1.Service{
diff --git a/test/e2e/annotations/modsecurity/modsecurity.go b/test/e2e/annotations/modsecurity/modsecurity.go
index 71e8963e3..a3e7d80ba 100644
--- a/test/e2e/annotations/modsecurity/modsecurity.go
+++ b/test/e2e/annotations/modsecurity/modsecurity.go
@@ -100,6 +100,15 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity with snippet", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
@@ -164,6 +173,15 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity with snippet and block requests", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
@@ -194,6 +212,15 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity globally and with modsecurity-snippet block requests", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
@@ -224,6 +251,17 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity when enable-owasp-modsecurity-crs is set to true", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations":    "true",
+			"enable-modsecurity":           "true",
+			"enable-owasp-modsecurity-crs": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
@@ -238,11 +276,6 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 		ing := framework.NewSingleIngress(host, "/", host, nameSpace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
 
-		f.SetNginxConfigMapData(map[string]string{
-			"enable-modsecurity":           "true",
-			"enable-owasp-modsecurity-crs": "true",
-		})
-
 		f.WaitForNginxServer(host,
 			func(server string) bool {
 				return strings.Contains(server, "SecRuleEngine On")
@@ -277,12 +310,17 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 		f.EnsureIngress(ing)
 
 		expectedComment := "SecRuleEngine On"
-
 		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations":    "true",
 			"enable-modsecurity":           "true",
 			"enable-owasp-modsecurity-crs": "true",
 			"modsecurity-snippet":          expectedComment,
 		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
 
 		f.WaitForNginxServer(host,
 			func(server string) bool {
@@ -340,6 +378,14 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should disable default modsecurity conf setting when modsecurity-snippet is specified", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
 		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
diff --git a/test/e2e/annotations/serversnippet.go b/test/e2e/annotations/serversnippet.go
index e74fa37f5..1195b728a 100644
--- a/test/e2e/annotations/serversnippet.go
+++ b/test/e2e/annotations/serversnippet.go
@@ -33,6 +33,15 @@ var _ = framework.DescribeAnnotation("server-snippet", func() {
 	})
 
 	ginkgo.It(`add valid directives to server via server snippet`, func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		host := "serversnippet.foo.com"
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/server-snippet": `
@@ -59,6 +68,15 @@ var _ = framework.DescribeAnnotation("server-snippet", func() {
 	})
 
 	ginkgo.It(`drops server snippet if disabled by the administrator`, func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		host := "noserversnippet.foo.com"
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/server-snippet": `
diff --git a/test/e2e/annotations/snippet.go b/test/e2e/annotations/snippet.go
index 2bbd3e33a..0c6148a4f 100644
--- a/test/e2e/annotations/snippet.go
+++ b/test/e2e/annotations/snippet.go
@@ -33,6 +33,16 @@ var _ = framework.DescribeAnnotation("configuration-snippet", func() {
 
 	ginkgo.It("set snippet more_set_headers in all locations", func() {
 		host := "configurationsnippet.foo.com"
+
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/configuration-snippet": `more_set_headers "Foo1: Bar1";`,
 		}
@@ -76,10 +86,6 @@ var _ = framework.DescribeAnnotation("configuration-snippet", func() {
 			annotations)
 
 		f.UpdateNginxConfigMapData("allow-snippet-annotations", "false")
-		defer func() {
-			// Return to the original value
-			f.UpdateNginxConfigMapData("allow-snippet-annotations", "true")
-		}()
 
 		// Sleep a while just to guarantee that the configmap is applied
 		framework.Sleep()
diff --git a/test/e2e/annotations/streamsnippet.go b/test/e2e/annotations/streamsnippet.go
index b5df50975..432537b4a 100644
--- a/test/e2e/annotations/streamsnippet.go
+++ b/test/e2e/annotations/streamsnippet.go
@@ -39,6 +39,15 @@ var _ = framework.DescribeSetting("stream-snippet", func() {
 	})
 
 	ginkgo.It("should add value of stream-snippet to nginx config", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		host := "foo.com"
 
 		snippet := `server {listen 8000; proxy_pass 127.0.0.1:80;}`
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 7ac150dcf..08a5353b2 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -47,7 +47,7 @@ const NIPService = "external-nip"
 var HTTPBunImage = os.Getenv("HTTPBUN_IMAGE")
 
 // EchoImage is the default image to be used by the echo service
-const EchoImage = "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:4938d1d91a2b7d19454460a8c1b010b89f6ff92d2987fd889ac3e8fc3b70d91a"
+const EchoImage = "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:4938d1d91a2b7d19454460a8c1b010b89f6ff92d2987fd889ac3e8fc3b70d91a" //#nosec G101
 
 // TODO: change all Deployment functions to use these options
 // in order to reduce complexity and have a unified API across the
diff --git a/test/e2e/ingress/multiple_rules.go b/test/e2e/ingress/multiple_rules.go
index c08f36374..f44b2f8dd 100644
--- a/test/e2e/ingress/multiple_rules.go
+++ b/test/e2e/ingress/multiple_rules.go
@@ -36,6 +36,15 @@ var _ = framework.IngressNginxDescribe("single ingress - multiple hosts", func()
 	})
 
 	ginkgo.It("should set the correct $service_name NGINX variable", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/configuration-snippet": `more_set_input_headers "service-name: $service_name";`,
 		}
diff --git a/test/e2e/ingress/pathtype_exact.go b/test/e2e/ingress/pathtype_exact.go
index ccc76b5bc..d0564cbf6 100644
--- a/test/e2e/ingress/pathtype_exact.go
+++ b/test/e2e/ingress/pathtype_exact.go
@@ -35,6 +35,15 @@ var _ = framework.IngressNginxDescribe("[Ingress] [PathType] exact", func() {
 	})
 
 	ginkgo.It("should choose exact location for /exact", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		host := "exact.path"
 
 		annotations := map[string]string{
diff --git a/test/e2e/ingress/pathtype_mixed.go b/test/e2e/ingress/pathtype_mixed.go
index c55a2c32a..e7bf2532e 100644
--- a/test/e2e/ingress/pathtype_mixed.go
+++ b/test/e2e/ingress/pathtype_mixed.go
@@ -37,6 +37,15 @@ var _ = framework.IngressNginxDescribe("[Ingress] [PathType] mix Exact and Prefi
 	exactPathType := networking.PathTypeExact
 
 	ginkgo.It("should choose the correct location", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		host := "mixed.path"
 
 		annotations := map[string]string{
diff --git a/test/e2e/settings/badannotationvalues.go b/test/e2e/settings/badannotationvalues.go
index 68a122e76..f61b5bada 100644
--- a/test/e2e/settings/badannotationvalues.go
+++ b/test/e2e/settings/badannotationvalues.go
@@ -34,6 +34,14 @@ var _ = framework.DescribeAnnotation("Bad annotation values", func() {
 	})
 
 	ginkgo.It("[BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
 		host := "invalid-value-test"
 
 		annotations := map[string]string{
@@ -65,6 +73,15 @@ var _ = framework.DescribeAnnotation("Bad annotation values", func() {
 	})
 
 	ginkgo.It("[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		host := "forbidden-value-test"
 
 		annotations := map[string]string{
@@ -100,6 +117,14 @@ var _ = framework.DescribeAnnotation("Bad annotation values", func() {
 	})
 
 	ginkgo.It("[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
 		hostValid := "custom-allowed-value-test"
 		annotationsValid := map[string]string{
 			"nginx.ingress.kubernetes.io/configuration-snippet": `
@@ -130,6 +155,14 @@ var _ = framework.DescribeAnnotation("Bad annotation values", func() {
 	})
 
 	ginkgo.It("[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
 		host := "custom-forbidden-value-test"
 
 		annotations := map[string]string{
diff --git a/test/e2e/settings/geoip2.go b/test/e2e/settings/geoip2.go
index 6dd48b2ad..e37286d5c 100644
--- a/test/e2e/settings/geoip2.go
+++ b/test/e2e/settings/geoip2.go
@@ -69,7 +69,15 @@ var _ = framework.DescribeSetting("Geoip2", func() {
 	ginkgo.It("should only allow requests from specific countries", func() {
 		ginkgo.Skip("GeoIP test are temporarily disabled")
 
-		f.UpdateNginxConfigMapData("use-geoip2", "true")
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+			"use-geoip2":                "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
 
 		httpSnippetAllowingOnlyAustralia := `map $geoip2_city_country_code $blocked_country {
   default 1;
diff --git a/test/e2e/settings/proxy_host.go b/test/e2e/settings/proxy_host.go
index efc254e45..35aafc53d 100644
--- a/test/e2e/settings/proxy_host.go
+++ b/test/e2e/settings/proxy_host.go
@@ -34,6 +34,14 @@ var _ = framework.IngressNginxDescribe("Dynamic $proxy_host", func() {
 	})
 
 	ginkgo.It("should exist a proxy_host", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
 		upstreamName := fmt.Sprintf("%v-%v-80", f.Namespace, framework.EchoService)
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/configuration-snippet": `more_set_headers "Custom-Header: $proxy_host"`,
@@ -55,6 +63,15 @@ var _ = framework.IngressNginxDescribe("Dynamic $proxy_host", func() {
 	})
 
 	ginkgo.It("should exist a proxy_host using the upstream-vhost annotation value", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		upstreamName := fmt.Sprintf("%v-%v-80", f.Namespace, framework.EchoService)
 		upstreamVHost := "different.host"
 		annotations := map[string]string{
diff --git a/test/e2e/settings/server_snippet.go b/test/e2e/settings/server_snippet.go
index 1577c927c..8ddf10fd9 100644
--- a/test/e2e/settings/server_snippet.go
+++ b/test/e2e/settings/server_snippet.go
@@ -37,10 +37,16 @@ var _ = framework.DescribeSetting("configmap server-snippet", func() {
 		hostAnnots := "serverannotssnippet1.foo.com"
 
 		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
 			"server-snippet": `
 			more_set_headers "Globalfoo: Foooo";`,
 		})
 
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/server-snippet": `
 				more_set_headers "Foo: Bar";
@@ -99,6 +105,11 @@ var _ = framework.DescribeSetting("configmap server-snippet", func() {
 			more_set_headers "Globalfoo: Foooo";`,
 		})
 
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/server-snippet": `
 				more_set_headers "Foo: Bar";
diff --git a/test/e2e/settings/validations/validations.go b/test/e2e/settings/validations/validations.go
index 19488d247..ac95a453a 100644
--- a/test/e2e/settings/validations/validations.go
+++ b/test/e2e/settings/validations/validations.go
@@ -31,6 +31,15 @@ var _ = framework.IngressNginxDescribeSerial("annotation validations", func() {
 	f := framework.NewDefaultFramework("validations")
 	//nolint:dupl // Ignore dupl errors for similar test case
 	ginkgo.It("should allow ingress based on their risk on webhooks", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
+
 		host := "annotation-validations"
 
 		// Low and Medium Risk annotations should be allowed, the rest should be denied
@@ -57,6 +66,14 @@ var _ = framework.IngressNginxDescribeSerial("annotation validations", func() {
 	})
 	//nolint:dupl // Ignore dupl errors for similar test case
 	ginkgo.It("should allow ingress based on their risk on webhooks", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "true",
+		})
+		defer func() {
+			f.SetNginxConfigMapData(map[string]string{
+				"allow-snippet-annotations": "false",
+			})
+		}()
 		host := "annotation-validations"
 
 		// Low and Medium Risk annotations should be allowed, the rest should be denied

From 3d69d9a88b7ba70671b4fb9d15bb148f7e053fd2 Mon Sep 17 00:00:00 2001
From: Chen Chen <imchench@gmail.com>
Date: Mon, 11 Sep 2023 16:24:11 +0800
Subject: [PATCH 0925/1641] Fix e2e test suite doc (#10396)

* Fix e2e test suite doc

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix doc script and regenerate

Signed-off-by: z1cheng <imchench@gmail.com>

* Add skip files to the script and regenerate

Signed-off-by: z1cheng <imchench@gmail.com>

---------

Signed-off-by: z1cheng <imchench@gmail.com>
---
 docs/e2e-tests.md              | 991 ++++++++++++++++++++-------------
 hack/generate-e2e-suite-doc.sh |  14 +
 2 files changed, 615 insertions(+), 390 deletions(-)

diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 9a1661de0..9a3e727fd 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -7,600 +7,811 @@ Do not try to edit it manually.
 
 
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L)
+### [[Admission] admission controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L39)
+
+- [reject ingress with global-rate-limit annotations when memcached is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L47)
+- [should not allow overlaps of host and paths without canary annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L74)
+- [should allow overlaps of host and paths with canary annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L91)
+- [should block ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L112)
+- [should return an error if there is an error validating the ingress definition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L129)
+- [should return an error if there is an invalid value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L149)
+- [should return an error if there is a forbidden value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L163)
+- [should return an error if there is an invalid path and wrong pathType is set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L177)
+- [should not return an error if the Ingress V1 definition is valid with Ingress Class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L211)
+- [should not return an error if the Ingress V1 definition is valid with IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L227)
+- [should return an error if the Ingress V1 definition contains invalid annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L243)
+- [should not return an error for an invalid Ingress when it has unknown class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L263)
+
+### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L43)
+
+- [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L50)
+- [should change cookie name on ingress definition change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L72)
+- [should set the path to /something on the generated cookie](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L107)
+- [does not set the path to / on the generated cookie if there's more than one rule referring to the same backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L129)
+- [should set cookie with expires](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L202)
+- [should set cookie with domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L234)
+- [should not set cookie without domain annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L257)
+- [should work with use-regex annotation and session-cookie-path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L279)
+- [should warn user when use-regex is true and session-cookie-path is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L303)
+- [should not set affinity across all server locations when using separate ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L329)
+- [should set sticky cookie without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L361)
+- [should work with server-alias annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L381)
+- [should set secure in cookie with provided true annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L421)
+- [should not set secure in cookie with provided false annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L444)
+- [should set secure in cookie with provided false annotation on https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L467)
+
+### [affinitymode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L33)
+
+- [Balanced affinity mode should balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L36)
+- [Check persistent affinity mode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L69)
+
+### [backend-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L29)
+
+- [should set backend protocol to https:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L36)
+- [should set backend protocol to $scheme:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L51)
+- [should set backend protocol to grpc:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L66)
+- [should set backend protocol to grpcs:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L81)
+- [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L96)
+
+### [client-body-buffer-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L30)
+
+- [should set client_body_buffer_size to 1000](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L37)
+- [should set client_body_buffer_size to 1K](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L59)
+- [should set client_body_buffer_size to 1k](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L81)
+- [should set client_body_buffer_size to 1m](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L103)
+- [should set client_body_buffer_size to 1M](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L125)
+- [should not set client_body_buffer_size to invalid 1b](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L147)
+
+### [default-backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L29)
+
+- [should use a custom default backend as upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L37)
+
+### [proxy-ssl-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L32)
+
+- [should set valid proxy-ssl-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L39)
+- [should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L66)
+- [should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L96)
+- [should set valid proxy-ssl-secret, proxy-ssl-protocols](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L124)
+- [proxy-ssl-location-only flag should change the nginx config server part](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L152)
+
+### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L45)
+
+- [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L52)
+- [should return status code 503 when authentication is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L71)
+- [should return status code 401 when authentication is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L95)
+- [should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L122)
+- [should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L150)
+- [should return status code 200 when authentication is configured and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L178)
+- [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L205)
+- [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L233)
+- [ when external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L272)
+- [ when external auth is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L298)
+- [ when auth-headers are set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L324)
+- [should set cache_key when external auth cache is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L345)
+- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L432)
+- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L443)
+- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L454)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L493)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L502)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L513)
+- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L537)
+- [should not create additional upstream block when auth-keepalive is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L560)
+- [should not create additional upstream block when host part of auth-url contains a variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L578)
+- [should not create additional upstream block when auth-keepalive is negative](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L598)
+- [should not create additional upstream block when auth-keepalive is set with HTTP/2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L617)
+- [should create additional upstream block when auth-keepalive is set with HTTP/1.x](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L631)
+- [should disable set_all_vars when auth-keepalive-share-vars is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L653)
+- [should enable set_all_vars when auth-keepalive-share-vars is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L672)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L713)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L722)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L733)
+- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L792)
+- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L812)
+- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L840)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L869)
+- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L899)
+- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L907)
+
+### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L39)
+
+- [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L46)
+- [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L64)
+- [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L85)
+- [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L102)
+- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L130)
+- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L153)
+- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L175)
+- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L214)
+- [should enable modsecurity when enable-owasp-modsecurity-crs is set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L253)
+- [should enable modsecurity through the config map](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L292)
+- [should enable modsecurity through the config map but ignore snippet as disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L338)
+- [should disable default modsecurity conf setting when modsecurity-snippet is specified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L380)
+
+### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L30)
+
+- [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L37)
+- [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L54)
+- [should add fastcgi_param in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L71)
+- [should return OK for service with backend protocol FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L102)
+
+### [from-to-www-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L31)
+
+- [should redirect from www HTTP to HTTP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L38)
+- [should redirect from www HTTPS to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L64)
+
+### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L40)
+
+- [should use grpc_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L43)
+- [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L68)
+- [authorization metadata should be overwritten by external auth response headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L128)
+- [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L189)
+
+### [configuration-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L28)
+
+- [set snippet more_set_headers in all locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L34)
+- [drops snippet more_set_header in all locations if disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L73)
+
+### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L28)
+
+- [should change ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L35)
+
+### [upstream-vhost](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L27)
+
+- [set host to upstreamvhost.bar.com](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L34)
+
+### [x-forwarded-prefix](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L28)
+
+- [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L35)
+- [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L57)
+
+### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L32)
+
+- [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L39)
+- [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L68)
+- [should use ~* location modifier if regex annotation is present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L113)
+- [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L160)
+- [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L192)
+
+### [service-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L32)
+
+- [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L41)
+- [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L69)
+- [should not use the Service Cluster IP and Port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L97)
+
+### [server-alias](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L31)
+
+- [should return status code 200 for host 'foo' and 404 for 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L38)
+- [should return status code 200 for host 'foo' and 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L64)
+- [should return status code 200 for hosts defined in two ingresses, different path with one alias](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L89)
+
+### [auth-tls-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L31)
+
+- [should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L38)
+- [should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L86)
+- [should 302 redirect to error page instead of 400 when auth-tls-error-page is set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L116)
+- [should pass URL-encoded certificate to upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L163)
+- [should validate auth-tls-verify-client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L208)
+- [should return 403 using auth-tls-match-cn with no matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L267)
+- [should return 200 using auth-tls-match-cn with matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L296)
+- [should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L325)
+
+### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L)
+- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L45)
+- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L89)
+- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L120)
+- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L174)
+- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L232)
+- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L289)
+- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L363)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L445)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L513)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L594)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L647)
+- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L692)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L741)
+- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L790)
+- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L862)
+- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L910)
+- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L952)
+- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L995)
+- [should route requests split between mainline and canary if canary weight is 100 and weight total is 200](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1031)
+- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1070)
+- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1104)
+- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1138)
+- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1175)
+- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1242)
+- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1310)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L)
+### [cors-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L33)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L)
+- [should enable cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L40)
+- [should set cors methods to only allow POST, GET](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L67)
+- [should set cors max-age](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L83)
+- [should disable cors allow credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L99)
+- [should allow origin for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L115)
+- [should allow headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L142)
+- [should expose headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L158)
+- [should allow - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L174)
+- [should not allow - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L201)
+- [should allow correct origins - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L221)
+- [should not break functionality](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L272)
+- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L296)
+- [should not break functionality with extra domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L319)
+- [should not match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L343)
+- [should allow - single origin with required port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L363)
+- [should not allow - single origin with port and origin without port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L391)
+- [should not allow - single origin without port and origin with required port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L410)
+- [should allow - matching origin with wildcard origin (2 subdomains)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L430)
+- [should not allow - unmatching origin with wildcard origin (2 subdomains)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L473)
+- [should allow - matching origin+port with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L493)
+- [should not allow - portless origin with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L520)
+- [should allow correct origins - missing subdomain + origin with wildcard origin and correct origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L540)
+- [should allow - missing origins (should allow all origins)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L576)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L)
+### [custom-http-errors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L34)
 
-- [should set backend protocol to https:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L34)
-- [should set backend protocol to $scheme:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L49)
-- [should set backend protocol to grpc:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L64)
-- [should set backend protocol to grpcs:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L79)
-- [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L94)
-=======
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L)
+- [configures Nginx correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L41)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L)
+### [server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L)
+- [add valid directives to server via server snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L35)
+- [drops server snippet if disabled by the administrator](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L70)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L)
+### [stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L34)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L)
+- [should add value of stream-snippet to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L41)
+- [should add stream-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L94)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L)
+### [app-root](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L)
+- [should redirect to /foo](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L35)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L)
+### [connection-proxy-header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L)
+- [set connection header to keep-alive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L35)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L)
+### [disable-access-log disable-http-access-log disable-stream-access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L)
+- [disable-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L35)
+- [disable-http-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L53)
+- [disable-stream-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L71)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L)
+### [force-ssl-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L27)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L)
+- [should redirect to https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L34)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L)
+### [http2-push-preload](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L27)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L)
+- [enable the http2-push-preload directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L34)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L)
+### [denylist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L)
+- [only deny explicitly denied IPs, allow all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L35)
+- [only allow explicitly allowed IPs, deny all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L86)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L)
+### [Annotation - limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L31)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L)
+- [should limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L38)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L)
+### [limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L29)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L)
+- [Check limit-rate annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L37)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L)
+### [enable-access-log enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L27)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L)
+- [set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L34)
+- [set rewrite_log on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L49)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L)
+### [mirror-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L)
+- [should set mirror-target to http://localhost/mirror](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L36)
+- [should set mirror-target to https://test.env.com/$request_uri](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L51)
+- [should disable mirror-request-body](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L67)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L)
+### [preserve-trailing-slash](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L27)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L)
+- [should allow preservation of trailing slashes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L34)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L)
+### [permanent-redirect permanent-redirect-code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L)
+- [should respond with a standard redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L33)
+- [should respond with a custom redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L61)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L)
+### [satisfy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L33)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L)
+- [should configure satisfy directive correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L40)
+- [should allow multiple auth with satisfy any](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L82)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L)
+### [annotation-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L)
+- [generates correct configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L38)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L)
+### [proxy-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L)
+- [should set proxy_redirect to off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L38)
+- [should set proxy_redirect to default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L54)
+- [should set proxy_redirect to hello.com goodbye.com](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L70)
+- [should set proxy client-max-body-size to 8m](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L87)
+- [should not set proxy client-max-body-size to incorrect value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L102)
+- [should set valid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L117)
+- [should not set invalid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L138)
+- [should turn on proxy-buffering](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L159)
+- [should turn off proxy-request-buffering](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L181)
+- [should build proxy next upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L196)
+- [should setup proxy cookies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L217)
+- [should change the default proxy HTTP version](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L235)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L)
+### [upstream-hash-by-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L79)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L)
+- [should connect to the same pod](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L86)
+- [should connect to the same subset of pods](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L95)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L)
+### [allowlist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipallowlist.go#L27)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L)
+- [should set valid ip allowlist range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipallowlist.go#L34)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L)
+### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L29)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L)
+- [should list the backend servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L37)
+- [should get information for a specific backend server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L56)
+- [should produce valid JSON for /dbg general](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L85)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L)
+### [[Default Backend] custom service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L33)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L)
+- [uses custom default backend that returns 200 as status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L36)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L)
+### [[Default Backend] SSL](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L26)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L)
+- [should return a self generated SSL certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L29)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L)
+### [[Default Backend] change default settings](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L)
+- [should apply the annotation to the default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L38)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L)
+### [[Default Backend]](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L)
+- [should return 404 sending requests when only a default backend is running](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L33)
+- [enables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L88)
+- [disables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L105)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L)
+### [[Endpointslices] long service name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L29)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L)
+- [should return 200 when service name has max allowed number of characters 63](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L38)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L)
+### [[TopologyHints] topology aware routing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L34)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L)
+- [should return 200 when service has topology hints](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L42)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L)
+### [[Shutdown] ingress controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L)
+- [should shutdown in less than 60 secons without pending connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L40)
+- [should shutdown after waiting 60 seconds for pending connections to be closed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L61)
+- [should shutdown after waiting 150 seconds for pending connections to be closed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L106)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L)
+### [[Shutdown] Graceful shutdown with pending request](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L25)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L)
+- [should let slow requests finish before shutting down](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L33)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L)
+### [[Shutdown] Grace period shutdown](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L32)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L)
+- [/healthz should return status code 500 during shutdown grace period](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L35)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L)
+### [[Ingress] DeepInspection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L27)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L)
+- [should drop whole ingress if one path matches invalid regex](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L34)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L)
+### [[Ingress] [PathType] prefix checks](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L)
+- [should return 404 when prefix /aaa does not match request /aaaccc](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L35)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L)
+### [[Ingress] definition without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L31)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L)
+- [should set ingress details variables for ingresses without a host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L34)
+- [should set ingress details variables for ingresses with host without IngressRuleValue, only Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L55)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L)
+### [single ingress - multiple hosts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L)
+- [should set the correct $service_name NGINX variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L38)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L)
+### [[Ingress] [PathType] exact](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L)
+- [should choose exact location for /exact](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L37)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L)
+### [[Ingress] [PathType] mix Exact and Prefix paths](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L)
+- [should choose the correct location](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L39)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L)
+### [[Memory Leak] Dynamic Certificates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L35)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L)
+- [should not leak memory from ingress SSL certificates or configuration updates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L42)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L)
+### [[Load Balancer] load-balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L)
+- [should apply the configmap load-balance setting](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L37)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L)
+### [[Load Balancer] EWMA](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L31)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L)
+- [does not fail requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L43)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L)
+### [[Load Balancer] round-robin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L31)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L)
+- [should evenly distribute requests with round-robin (default algorithm)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L39)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L)
+### [[Lua] dynamic certificates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L37)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L)
+- [picks up the certificate when we add TLS spec to existing ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L45)
+- [picks up the previously missing secret for a given ingress without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L70)
+- [supports requests with domain with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L145)
+- [picks up the updated certificate without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L149)
+- [falls back to using default certificate when secret gets deleted without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L185)
+- [picks up a non-certificate only change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L218)
+- [removes HTTPS configuration when we delete TLS spec](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L233)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L)
+### [[Lua] dynamic configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L41)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L)
+- [configures balancer Lua middleware correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L49)
+- [handles endpoints only changes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L61)
+- [handles endpoints only changes (down scaling of replicas)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L86)
+- [handles endpoints only changes consistently (down scaling of replicas vs. empty service)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L124)
+- [handles an annotation change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L170)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L)
+### [[metrics] exported prometheus metrics](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L36)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L)
+- [exclude socket request metrics are absent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L50)
+- [exclude socket request metrics are present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L72)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L)
+### [nginx-configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L99)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L)
+- [start nginx with default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L102)
+- [fails when using alias directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L114)
+- [fails when using root directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L121)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L)
+### [[Security] request smuggling](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L32)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L)
+- [should not return body content from error_page](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L39)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L)
+### [[Service] backend status code 503](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L34)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L)
+- [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L37)
+- [should return 503 when all backend service endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L55)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L)
+### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L38)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L)
+- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L41)
+- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L78)
+- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L118)
+- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L148)
+- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L184)
+- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L225)
+- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L261)
+- [should sync ingress on external name service addition/deletion](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L344)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L)
+### [[Service] Nil Service Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L31)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L)
+- [should return 404 when backend service is nil](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L38)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L)
+### [proxy-next-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L)
+- [should build proxy next upstream using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L36)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L)
+### [reuse-port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L27)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L)
+- [reuse port should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L38)
+- [reuse port should be disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L44)
+- [reuse port should be enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L52)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L)
+### [server-tokens](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L29)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L)
+- [should not exists Server header in the response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L38)
+- [should exists Server header in the response when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L50)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L)
+### [keep-alive keep-alive-requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L)
+- [should set keepalive_timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L40)
+- [should set keepalive_requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L48)
+- [should set keepalive connection to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L58)
+- [should set keep alive connection timeout to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L68)
+- [should set keepalive time to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L78)
+- [should set the request count to upstream server through one keep alive connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L88)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L)
+### [log-format-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L)
+- [should not configure log-format escape by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L39)
+- [should enable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L46)
+- [should disable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L54)
+- [should enable the log-format-escape-none](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L62)
+- [should disable the log-format-escape-none](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L70)
+- [log-format-escape-json enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L80)
+- [log-format default escape](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L103)
+- [log-format-escape-none enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L126)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L)
+### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L)
+- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L54)
+- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
+- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L)
+### [Configure Opentelemetry](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L39)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L)
+- [should not exists opentelemetry directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L49)
+- [should exists opentelemetry directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L62)
+- [should include opentelemetry_trust_incoming_spans on directive when enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L76)
+- [should not exists opentelemetry_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L91)
+- [should exists opentelemetry_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L106)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L)
+### [Configure OpenTracing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L52)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L)
+- [should not exists opentracing directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L62)
+- [should exists opentracing directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L75)
+- [should include opentracing_trust_incoming_span off directive when disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L89)
+- [should not exists opentracing_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L104)
+- [should exists opentracing_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L119)
+- [should not exists opentracing_location_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L134)
+- [should exists opentracing_location_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L149)
+- [should enable opentracing using zipkin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L164)
+- [should enable opentracing using jaeger](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L176)
+- [should enable opentracing using jaeger with sampler host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L188)
+- [should propagate the w3c header when configured with jaeger](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L201)
+- [should enable opentracing using jaeger with an HTTP endpoint](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L232)
+- [should enable opentracing using datadog](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L245)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+### [[Security] Pod Security Policies with volumes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L37)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/deployment.go#L)
+- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L40)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/object.go#L)
+### [[SSL] TLS protocols, ciphers and headers)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L31)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/object.go#L)
+- [setting cipher suite](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L65)
+- [setting max-age parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L109)
+- [setting includeSubDomains parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L125)
+- [setting preload parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L144)
+- [overriding what's set from the upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L164)
+- [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L186)
+- [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L204)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/response.go#L)
+### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/response.go#L)
+- [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L38)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
+### [proxy-connect-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L29)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/request.go#L)
+- [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L37)
+- [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L53)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/reporter.go#L)
+### [With enable-ssl-passthrough enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L36)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/reporter.go#L)
+- [should enable ssl-passthrough-proxy-port on a different port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L56)
+- [should pass unknown traffic to default backend and handle known traffic](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L78)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/chain.go#L)
+### [[Lua] lua-shared-dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L26)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/chain.go#L)
+- [configures lua shared dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L29)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/cookie.go#L)
+### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/cookie.go#L)
+- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/match.go#L)
+### [[Flag] ingress-class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L41)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/match.go#L)
+- [should ignore Ingress with a different class annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L70)
+- [should ignore Ingress with different controller class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L106)
+- [should accept both Ingresses with default IngressClassName and IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L134)
+- [should ignore Ingress without IngressClass configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L166)
+- [should delete Ingress when class is removed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L194)
+- [should serve Ingress when class is added](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L259)
+- [should serve Ingress when class is updated between annotation and ingressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L325)
+- [should ignore Ingress with no class and accept the correctly configured Ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L414)
+- [should watch Ingress with no class and ignore ingress with a different class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L482)
+- [should watch Ingress that uses the class name even if spec is different](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L538)
+- [should watch Ingress with correct annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L628)
+- [should ignore Ingress with only IngressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L648)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
+### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/array.go#L)
+- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/string.go#L)
+### [plugins](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/string.go#L)
+- [should exist a x-hello-world header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L35)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/value.go#L)
+### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/httpexpect/value.go#L)
+- [Add ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L31)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
+### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L35)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/metrics.go#L)
+- [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L42)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L)
+### [[Flag] watch namespace selector](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/framework.go#L)
+- [should ignore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L62)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L27)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/exec.go#L)
+- [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L30)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
+### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L38)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/fastcgi_helloserver.go#L)
+- [should respect port passed by the PROXY Protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L48)
+- [should respect proto passed by the PROXY Protocol server port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L85)
+- [should enable PROXY Protocol for HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L121)
+- [should enable PROXY Protocol for TCP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L164)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
+### [proxy-read-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L29)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/util.go#L)
+- [should set valid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L37)
+- [should not set invalid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L53)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/test_context.go#L)
+### [proxy-send-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L29)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/test_context.go#L)
+- [should set valid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L37)
+- [should not set invalid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L53)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
+### [Bad annotation values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L29)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/logs.go#L)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L36)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L75)
+- [[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L119)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L157)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
+### [Geoip2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L36)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/grpc_fortune_teller.go#L)
+- [should include geoip2 line in config when enabled and db file exists](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L45)
+- [should only allow requests from specific countries](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L69)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
+### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/ssl.go#L)
+- [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L36)
+- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L65)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
+### [annotation validations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/validations/validations.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/k8s.go#L)
+- [should allow ingress based on their risk on webhooks](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/validations/validations.go#L33)
+- [should allow ingress based on their risk on webhooks](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/validations/validations.go#L68)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L31)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/framework/healthz.go#L)
+- [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L41)
+- [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L93)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
+### [global-options](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e_test.go#L)
+- [should have worker_rlimit_nofile option](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L31)
+- [should have worker_rlimit_nofile option and be independent on amount of worker processes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L37)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L)
+### [hash size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L27)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L)
+- [should set server_names_hash_bucket_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L39)
+- [should set server_names_hash_max_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L47)
+- [should set proxy-headers-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L57)
+- [should set proxy-headers-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L65)
+- [should set variables-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L75)
+- [should set variables-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L83)
+- [should set vmap-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L93)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L)
+### [[Flag] custom HTTP and HTTPS ports](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L)
+- [should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L45)
+- [should set X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L65)
+- [should set the X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L93)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L)
+### [brotli](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L)
+- [ condition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L38)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L)
+### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L)
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L)
+### [add-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L)
+- [Add a custom header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L40)
+- [Add multiple custom headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L65)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L)
+### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L30)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L)
+- [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L40)
+- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L78)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L)
+### [[Security] block-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L)
+- [should block CIDRs defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L38)
+- [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L55)
+- [should block Referers defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L88)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L)
+### [gzip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L29)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L)
+- [should be disabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L32)
+- [should be enabled with default settings](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L39)
+- [should set gzip_comp_level to 4](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L56)
+- [should set gzip_disable to msie6](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L67)
+- [should set gzip_min_length to 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L78)
+- [should set gzip_types to application/javascript](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L89)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L)
+### [Configmap - limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L)
+- [Check limit-rate config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L36)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L)
+### [main-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L27)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L)
+- [should add value of main-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L31)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L)
+### [enable-multi-accept](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L27)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L)
+- [should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L31)
+- [should be enabled when set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L39)
+- [should be disabled when set to false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L49)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L)
+### [[Security] Pod Security Policies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L41)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L)
+- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L44)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L)
+### [configmap server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L28)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L)
+- [should add value of server-snippet setting to all ingress config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L35)
+- [should add global server-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L98)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L)
+### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L27)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L)
+- [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L31)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L41)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L52)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L64)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L76)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L)
+### [[SSL] [Flag] default-ssl-certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L35)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L)
+- [uses default ssl certificate for catch-all ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L66)
+- [uses default ssl certificate for host based ingress when configured certificate does not match host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L82)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L)
+### [[Flag] disable-catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L33)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L)
+- [should ignore catch all Ingress with backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L50)
+- [should ignore catch all Ingress with backend and rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L69)
+- [should delete Ingress updated to catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L81)
+- [should allow Ingress with rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L123)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L)
+### [[Flag] disable-service-external-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L35)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L)
+- [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L55)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L)
+### [[Flag] disable-sync-events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L32)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L)
+- [should create sync events (default)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L35)
+- [should create sync events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L54)
+- [should not create sync events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L82)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L)
+### [[Security] global-auth-url](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L39)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L)
+- [should return status code 401 when request any protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L91)
+- [should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L107)
+- [should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L130)
+- [should still return status code 200 after auth backend is deleted using cache](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L158)
+- [should proxy_method method when global-auth-method is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L199)
+- [should add custom error page when global-auth-signin url is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L211)
+- [should add auth headers when global-auth-response-headers is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L223)
+- [should set request-redirect when global-auth-request-redirect is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L236)
+- [should set snippet when global external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L248)
+- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L322)
+- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L333)
+- [user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L344)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L)
+### [[SSL] redirect to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L29)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L)
+- [should redirect from HTTP to HTTPS when secret is missing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L36)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L)
+### [[SSL] secret update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L33)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L)
+- [should not appear references to secret updates not used in ingress rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L40)
+- [should return the fake SSL certificate if the secret is invalid](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L83)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L)
+### [[Status] status update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L38)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L)
+- [should update status field after client-go reconnection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L43)
 
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L)
+### [[TCP] tcp-services](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L38)
 
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L)
-
-<<<<<<< Updated upstream
-- [should ignore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L63)
-=======
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L)
->>>>>>> Stashed changes
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipwhitelist.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/e2e.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L)
-
-### [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L)
-
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L)
+- [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L46)
+- [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L80)
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L169)
diff --git a/hack/generate-e2e-suite-doc.sh b/hack/generate-e2e-suite-doc.sh
index a4ccc8fc2..a63354c25 100755
--- a/hack/generate-e2e-suite-doc.sh
+++ b/hack/generate-e2e-suite-doc.sh
@@ -21,6 +21,12 @@ fi
 URL="https://github.com/kubernetes/ingress-nginx/tree/main/"
 DIR=$(cd $(dirname "${BASH_SOURCE}")/.. && pwd -P)
 
+declare -A skip_files=(
+    ["$DIR/test/e2e/framework/framework.go"]=1
+    ["$DIR/test/e2e/e2e.go"]=1
+    ["$DIR/test/e2e/e2e_test.go"]=1
+)
+
 echo "<!---
 This file is autogenerated!
 Do not try to edit it manually.
@@ -31,8 +37,16 @@ Do not try to edit it manually.
 "
 
 for FILE in $(find $DIR/test/e2e -name "*.go");do
+    # skip files
+    if [ ${skip_files[$FILE]} ]; then
+        continue
+    fi
+
     # describe definition
     DESCRIBE=$(cat $FILE | grep -n -oP 'Describe.*')
+    if [ -z "$DESCRIBE" ]; then
+        continue
+    fi
     # line number
     DESCRIBE_LINE=$(echo $DESCRIBE | cut -f1 -d ':')
     # clean describe, extracting the string

From adfb27af8dd8240d12224f9383755daab3440a4d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 Sep 2023 05:00:11 -0700
Subject: [PATCH 0926/1641] Bump actions/dependency-review-action from 3.0.8 to
 3.1.0 (#10401)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3.0.8 to 3.1.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/f6fff72a3217f580d5afd49a46826795305b63c7...6c5ccdad469c9f8a2996bfecaec55a631a347034)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index f93869c79..58c36a2f2 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@f6fff72a3217f580d5afd49a46826795305b63c7 # v3.0.8
+        uses: actions/dependency-review-action@6c5ccdad469c9f8a2996bfecaec55a631a347034 # v3.1.0

From 2bbf7b19cb89f466710148a5cced4340d2a10be7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 Sep 2023 05:40:11 -0700
Subject: [PATCH 0927/1641] Bump google.golang.org/grpc from 1.57.0 to 1.58.0
 (#10398)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.57.0 to 1.58.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.57.0...v1.58.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 10 +++++-----
 go.sum | 20 ++++++++++----------
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/go.mod b/go.mod
index bd52b5cb2..167fcf0b8 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.12.0
-	google.golang.org/grpc v1.57.0
+	google.golang.org/grpc v1.58.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -101,16 +101,16 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.10.0 // indirect
-	golang.org/x/net v0.10.0 // indirect
-	golang.org/x/oauth2 v0.8.0 // indirect
+	golang.org/x/net v0.12.0 // indirect
+	golang.org/x/oauth2 v0.10.0 // indirect
 	golang.org/x/sys v0.11.0 // indirect
 	golang.org/x/term v0.11.0 // indirect
 	golang.org/x/text v0.12.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.9.1 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234030-28d5490b6b19 // indirect
-	google.golang.org/protobuf v1.30.0 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20230711160842-782d3b101e98 // indirect
+	google.golang.org/protobuf v1.31.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
diff --git a/go.sum b/go.sum
index 36ec1043d..7c31395da 100644
--- a/go.sum
+++ b/go.sum
@@ -464,16 +464,16 @@ golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81R
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.10.0 h1:X2//UzNDwYmtCLn7To6G58Wr6f5ahEAQgKNzv9Y951M=
-golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg=
+golang.org/x/net v0.12.0 h1:cfawfvKITfUsFCeJIHJrbSxpeu/E81khclypR0GVT50=
+golang.org/x/net v0.12.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.8.0 h1:6dkIjl3j3LtZ/O3sTgZTMsLKSftL/B8Zgq4huOIIUu8=
-golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE=
+golang.org/x/oauth2 v0.10.0 h1:zHCpF2Khkwy4mMB4bv0U37YtJdTGW8jI0glAApi0Kh8=
+golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -655,8 +655,8 @@ google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6D
 google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234030-28d5490b6b19 h1:0nDDozoAU19Qb2HwhXadU8OcsiO/09cnTqhUtq2MEOM=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234030-28d5490b6b19/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20230711160842-782d3b101e98 h1:bVf09lpb+OJbByTj913DRJioFFAjf/ZGxEz7MajTp2U=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20230711160842-782d3b101e98/go.mod h1:TUfxEVdsvPg18p6AslUXFoLdpED4oBnGwyqk3dV1XzM=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -669,8 +669,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.57.0 h1:kfzNeI/klCGD2YPMUlaGNT3pxvYfga7smW3Vth8Zsiw=
-google.golang.org/grpc v1.57.0/go.mod h1:Sd+9RMTACXwmub0zcNY2c4arhtrbBYD1AUHI/dt16Mo=
+google.golang.org/grpc v1.58.0 h1:32JY8YpPMSR45K+c3o6b8VL73V+rR8k+DeMIr4vRH8o=
+google.golang.org/grpc v1.58.0/go.mod h1:tgX3ZQDlNJGU96V6yHh1T/JeoBQ2TXdr43YbYSsCJk0=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
@@ -685,8 +685,8 @@ google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGj
 google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.30.0 h1:kPPoIgf3TsEvrm0PFe15JQ+570QVxYzEvvHqChK+cng=
-google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.31.0 h1:g0LDEJHgrBl9N9r17Ru3sqWhkIx2NB67okBHPwC7hs8=
+google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=

From 082266e7a2610aa2b9b023c783dbb060bc1ce8d1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 Sep 2023 05:42:11 -0700
Subject: [PATCH 0928/1641] Bump golangci/golangci-lint-action from 3.6.0 to
 3.7.0 (#10400)

Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 3.6.0 to 3.7.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/639cd343e1d3b897ff35927a75193d57cfcba299...3a919529898de77ec3da873e3063ca4b10e7f5cc)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/golangci-lint.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 09301af58..eb3683573 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -29,6 +29,6 @@ jobs:
           check-latest: true
       
       - name: golangci-lint
-        uses: golangci/golangci-lint-action@639cd343e1d3b897ff35927a75193d57cfcba299 # v3.6.0
+        uses: golangci/golangci-lint-action@3a919529898de77ec3da873e3063ca4b10e7f5cc # v3.7.0
         with:
           version: v1.53

From 5be7302b511965b36240f2449963d4d5b5523f99 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 Sep 2023 05:44:11 -0700
Subject: [PATCH 0929/1641] Bump actions/upload-artifact from 3.1.2 to 3.1.3
 (#10404)

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.2 to 3.1.3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/0b7f8abb1508181956e8e162db84b466c27e18ce...a8a3f3ad30e3422c9c7b888a15615d19a852ae32)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml        | 8 ++++----
 .github/workflows/scorecards.yml | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 2b416311b..9a28c5739 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -135,7 +135,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
+        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
         with:
           name: docker.tar.gz
           path: docker.tar.gz
@@ -257,7 +257,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports
-        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
+        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ matrix.k8s }}
@@ -306,7 +306,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports
-        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
+        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ matrix.k8s }}
@@ -357,7 +357,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports
-        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
+        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
         if: success() || failure()
         with:
           name: e2e-test-reports-chroot-${{ matrix.k8s }}
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index d06fa1528..1cd9d0d39 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3.1.2
+        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
         with:
           name: SARIF file
           path: results.sarif

From 1bb8a9bba017be13de3152a9bbbd98b281bc6a39 Mon Sep 17 00:00:00 2001
From: Mathieu Benoit <mathieu-benoit@hotmail.fr>
Date: Mon, 11 Sep 2023 08:48:11 -0400
Subject: [PATCH 0930/1641] Update external-articles.md - advanced setup with
 GKE/Cloud Armor/IAP (#10372)

* Update external-articles.md

* Update external-articles.md - article publicly available
---
 docs/user-guide/external-articles.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/user-guide/external-articles.md b/docs/user-guide/external-articles.md
index 27a3f4447..8a60ad567 100644
--- a/docs/user-guide/external-articles.md
+++ b/docs/user-guide/external-articles.md
@@ -4,3 +4,4 @@
 - [Accessing Kubernetes Pods from Outside of the Cluster](http://alesnosek.com/blog/2017/02/14/accessing-kubernetes-pods-from-outside-of-the-cluster)
 - [Kubernetes - Redirect HTTP to HTTPS with ELB and the Ingress-Nginx Controller](https://dev.to/tomhoule/kubernetes---redirect-http-to-https-with-elb-and-the-nginx-ingress-controller)
 - [Configure Nginx Ingress Controller for TLS termination on Kubernetes on Azure](https://blogs.technet.microsoft.com/livedevopsinjapan/2017/02/28/configure-nginx-ingress-controller-for-tls-termination-on-kubernetes-on-azure-2/)
+- [Secure your Nginx Ingress controller behind Google Cloud Armor or Identity-Aware Proxy (IAP)](https://medium.com/google-cloud/secure-your-nginx-ingress-controller-behind-cloud-armor-805d6109af86?sk=f64029bb5624b4ad5cd2828f4c358af3)

From 06a0aa3b6e9198d28f5f4140cc8dbc8ada8802a6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 Sep 2023 05:50:14 -0700
Subject: [PATCH 0931/1641] Bump goreleaser/goreleaser-action from 4.4.0 to
 4.6.0 (#10402)

Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 4.4.0 to 4.6.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/3fa32b8bb5620a2c1afe798654bbad59f9da4906...5fdedb94abba051217030cc86d4523cf3f02243d)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/plugin.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index ba8fb2111..33f5a4dc3 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -26,7 +26,7 @@ jobs:
           check-latest: true
 
       - name: Run GoReleaser
-        uses: goreleaser/goreleaser-action@3fa32b8bb5620a2c1afe798654bbad59f9da4906 # v4.4.0
+        uses: goreleaser/goreleaser-action@5fdedb94abba051217030cc86d4523cf3f02243d # v4.6.0
         with:
           version: latest
           args: release --clean

From ac2923bf4413c5376eb38725c1534de4218a041f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 Sep 2023 05:52:12 -0700
Subject: [PATCH 0932/1641] Bump actions/setup-go from 4.0.1 to 4.1.0 (#10403)

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4.0.1 to 4.1.0.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v4.0.1...93397bea11091df50f3d7e59dc26a7711a8bcfbe)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/golangci-lint.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index eb3683573..557c00210 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -23,7 +23,7 @@ jobs:
       
       - name: Set up Go
         id: go
-        uses: actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753 # v4.0.1
+        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
           go-version: '1.21.1'
           check-latest: true

From d96b3f0082886e7e748adea985d4b12625e9a0cc Mon Sep 17 00:00:00 2001
From: Chen Chen <imchench@gmail.com>
Date: Mon, 11 Sep 2023 20:56:12 +0800
Subject: [PATCH 0933/1641] Add a flag to enable or disable aio_write (#10394)

* Add a flag to enable or disable aio_write

Signed-off-by: z1cheng <imchench@gmail.com>

* Fix e2e test for aio_write

Signed-off-by: z1cheng <imchench@gmail.com>

* Remove redundant spaces to fix the 2e test

Signed-off-by: z1cheng <imchench@gmail.com>

---------

Signed-off-by: z1cheng <imchench@gmail.com>
---
 .../nginx-configuration/configmap.md          |  5 ++
 internal/ingress/controller/config/config.go  |  5 ++
 rootfs/etc/nginx/template/nginx.tmpl          |  3 ++
 test/e2e/settings/aio_write.go                | 54 +++++++++++++++++++
 4 files changed, 67 insertions(+)
 create mode 100644 test/e2e/settings/aio_write.go

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index d771d16b2..1bb205ad3 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -97,6 +97,7 @@ The following table shows a configuration option's name, type, and the default v
 |[ssl-buffer-size](#ssl-buffer-size)|string|"4k"||
 |[use-proxy-protocol](#use-proxy-protocol)|bool|"false"||
 |[proxy-protocol-header-timeout](#proxy-protocol-header-timeout)|string|"5s"||
+|[enable-aio-write](#enable-aio-write)|bool|"true"||
 |[use-gzip](#use-gzip)|bool|"false"||
 |[use-geoip](#use-geoip)|bool|"true"||
 |[use-geoip2](#use-geoip2)|bool|"false"||
@@ -709,6 +710,10 @@ Enables or disables the [PROXY protocol](https://www.nginx.com/resources/admin-g
 Sets the timeout value for receiving the proxy-protocol headers. The default of 5 seconds prevents the TLS passthrough handler from waiting indefinitely on a dropped connection.
 _**default:**_ 5s
 
+## enable-aio-write
+
+Enables or disables the directive [aio_write](https://nginx.org/en/docs/http/ngx_http_core_module.html#aio_write) that writes files asynchronously. _**default:**_ true
+
 ## use-gzip
 
 Enables or disables compression of HTTP responses using the ["gzip" module](https://nginx.org/en/docs/http/ngx_http_gzip_module.html). MIME types to compress are controlled by [gzip-types](#gzip-types). _**default:**_ false
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 09983308e..56fd2699f 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -424,6 +424,10 @@ type Configuration struct {
 	// Example '60s'
 	ProxyProtocolHeaderTimeout time.Duration `json:"proxy-protocol-header-timeout,omitempty"`
 
+	// Enables or disables the directive aio_write that writes files files asynchronously
+	// https://nginx.org/en/docs/http/ngx_http_core_module.html#aio_write
+	EnableAioWrite bool `json:"enable-aio-write,omitempty"`
+
 	// Enables or disables the use of the nginx module that compresses responses using the "gzip" method
 	// http://nginx.org/en/docs/http/ngx_http_gzip_module.html
 	UseGzip bool `json:"use-gzip,omitempty"`
@@ -938,6 +942,7 @@ func NewDefault() Configuration {
 		SSLSessionTickets:                false,
 		SSLSessionTimeout:                sslSessionTimeout,
 		EnableBrotli:                     false,
+		EnableAioWrite:                   true,
 		UseGzip:                          false,
 		UseGeoIP:                         true,
 		UseGeoIP2:                        false,
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index ccd7b4411..e3145e6a5 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -296,7 +296,10 @@ http {
     {{ end }}
 
     aio                 threads;
+
+    {{ if $cfg.EnableAioWrite }}
     aio_write           on;
+    {{ end }}
 
     tcp_nopush          on;
     tcp_nodelay         on;
diff --git a/test/e2e/settings/aio_write.go b/test/e2e/settings/aio_write.go
new file mode 100644
index 000000000..bcfe2a4de
--- /dev/null
+++ b/test/e2e/settings/aio_write.go
@@ -0,0 +1,54 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package settings
+
+import (
+	"strings"
+
+	"github.com/onsi/ginkgo/v2"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.DescribeSetting("aio-write", func() {
+	f := framework.NewDefaultFramework("aio-write")
+
+	ginkgo.It("should be enabled by default", func() {
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return strings.Contains(cfg, "aio_write on")
+			})
+	})
+
+	ginkgo.It("should be enabled when setting is true", func() {
+		f.UpdateNginxConfigMapData("enable-aio-write", "true")
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return strings.Contains(cfg, "aio_write on")
+			})
+	})
+
+	ginkgo.It("should be disabled when setting is false", func() {
+		f.UpdateNginxConfigMapData("enable-aio-write", "false")
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return !strings.Contains(cfg, "aio_write on")
+			})
+	})
+})

From 14b8979d5a127a532ece305b0c126b045da5ead6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 Sep 2023 06:50:13 -0700
Subject: [PATCH 0934/1641] Bump golang.org/x/crypto from 0.12.0 to 0.13.0
 (#10399)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.12.0 to 0.13.0.
- [Commits](https://github.com/golang/crypto/compare/v0.12.0...v0.13.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index 167fcf0b8..d9c2b94f8 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.4
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.12.0
+	golang.org/x/crypto v0.13.0
 	google.golang.org/grpc v1.58.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -103,9 +103,9 @@ require (
 	golang.org/x/mod v0.10.0 // indirect
 	golang.org/x/net v0.12.0 // indirect
 	golang.org/x/oauth2 v0.10.0 // indirect
-	golang.org/x/sys v0.11.0 // indirect
-	golang.org/x/term v0.11.0 // indirect
-	golang.org/x/text v0.12.0 // indirect
+	golang.org/x/sys v0.12.0 // indirect
+	golang.org/x/term v0.12.0 // indirect
+	golang.org/x/text v0.13.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.9.1 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
diff --git a/go.sum b/go.sum
index 7c31395da..30062f06c 100644
--- a/go.sum
+++ b/go.sum
@@ -397,8 +397,8 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.12.0 h1:tFM/ta59kqch6LlvYnPa0yx5a83cL2nHflFhYKvv9Yk=
-golang.org/x/crypto v0.12.0/go.mod h1:NF0Gs7EO5K4qLn+Ylc+fih8BSTeIjAP05siRnAh98yw=
+golang.org/x/crypto v0.13.0 h1:mvySKfSWJ+UKUii46M40LOvyWfN0s2U+46/jDd0e6Ck=
+golang.org/x/crypto v0.13.0/go.mod h1:y6Z2r+Rw4iayiXXAIxJIDAJ1zMW4yaTpebo8fPOliYc=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -531,19 +531,19 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.11.0 h1:eG7RXZHdqOJ1i+0lgLgCpSXAp6M3LYlAo6osgSi0xOM=
-golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.12.0 h1:CM0HF96J0hcLAwsHPJZjfdNzs0gftsLfgKt57wWHJ0o=
+golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.11.0 h1:F9tnn/DA/Im8nCwm+fX+1/eBwi4qFjRT++MhtVC4ZX0=
-golang.org/x/term v0.11.0/go.mod h1:zC9APTIj3jG3FdV/Ons+XE1riIZXG4aZ4GTHiPZJPIU=
+golang.org/x/term v0.12.0 h1:/ZfYdc3zq+q02Rv9vGqTeSItdzZTSNDmfTi0mBAuidU=
+golang.org/x/term v0.12.0/go.mod h1:owVbMEjm3cBLCHdkQu9b1opXd4ETQWc3BhuQGKgXgvU=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.12.0 h1:k+n5B8goJNdU7hSvEtMUz3d1Q6D/XW4COJSJR6fN0mc=
-golang.org/x/text v0.12.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
+golang.org/x/text v0.13.0 h1:ablQoSUd0tRdKxZewP80B+BaqeKJuVhuRxj/dkrun3k=
+golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=

From c7c5407efbf2cb27fc71d441d4c4ae40aecaf565 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Mon, 11 Sep 2023 12:36:11 -0300
Subject: [PATCH 0935/1641] Update k8s versions on CI (#10406)

---
 .github/workflows/ci.yaml | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 9a28c5739..bfba95cf4 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -113,7 +113,7 @@ jobs:
 
       - name: Prepare Host
         run: |
-          curl -LO https://dl.k8s.io/release/v1.25.5/bin/linux/amd64/kubectl
+          curl -LO https://dl.k8s.io/release/v1.27.3/bin/linux/amd64/kubectl
           chmod +x ./kubectl
           sudo mv ./kubectl /usr/local/bin/kubectl
 
@@ -151,7 +151,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.15, v1.25.11, v1.26.6, v1.27.3]
+        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
 
     steps:
       - name: Checkout
@@ -226,7 +226,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.15, v1.25.11, v1.26.6, v1.27.3]
+        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
 
     steps:
       - name: Checkout
@@ -274,7 +274,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.15, v1.25.11, v1.26.6, v1.27.3]
+        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
 
     steps:
       - name: Checkout
@@ -324,7 +324,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.15, v1.25.11, v1.26.6, v1.27.3]
+        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
 
     steps:
 
@@ -442,7 +442,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.24.15, v1.25.11, v1.26.6, v1.27.3]
+        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
 
     steps:
       - name: Checkout

From 300cff1437a9c9f98eb725ddcc573e62b296a8f2 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 Sep 2023 09:56:11 -0700
Subject: [PATCH 0936/1641] Bump github.com/onsi/ginkgo/v2 from 2.9.5 to 2.12.0
 (#10355)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.9.5 to 2.12.0.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.9.5...v2.12.0)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 20 ++++++++++----------
 2 files changed, 14 insertions(+), 14 deletions(-)

diff --git a/go.mod b/go.mod
index d9c2b94f8..9423c5bf0 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.9.5
+	github.com/onsi/ginkgo/v2 v2.12.0
 	github.com/opencontainers/runc v1.1.9
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.16.0
@@ -100,14 +100,14 @@ require (
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
-	golang.org/x/mod v0.10.0 // indirect
-	golang.org/x/net v0.12.0 // indirect
+	golang.org/x/mod v0.12.0 // indirect
+	golang.org/x/net v0.14.0 // indirect
 	golang.org/x/oauth2 v0.10.0 // indirect
 	golang.org/x/sys v0.12.0 // indirect
 	golang.org/x/term v0.12.0 // indirect
 	golang.org/x/text v0.13.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
-	golang.org/x/tools v0.9.1 // indirect
+	golang.org/x/tools v0.12.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20230711160842-782d3b101e98 // indirect
 	google.golang.org/protobuf v1.31.0 // indirect
diff --git a/go.sum b/go.sum
index 30062f06c..61c31f0d8 100644
--- a/go.sum
+++ b/go.sum
@@ -281,12 +281,12 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.9.5 h1:+6Hr4uxzP4XIUyAkg61dWBw8lb/gc4/X5luuxN/EC+Q=
-github.com/onsi/ginkgo/v2 v2.9.5/go.mod h1:tvAoo1QUJwNEU2ITftXTpR7R1RbCzoZUOs3RonqW57k=
+github.com/onsi/ginkgo/v2 v2.12.0 h1:UIVDowFPwpg6yMUpPjGkYvf06K3RAiJXUhCxEwQVHRI=
+github.com/onsi/ginkgo/v2 v2.12.0/go.mod h1:ZNEzXISYlqpb8S36iN71ifqLi3vVD1rVJGvWRCJOUpQ=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.27.6 h1:ENqfyGeS5AX/rlXDd/ETokDz93u0YufY1Pgxuy/PvWE=
-github.com/onsi/gomega v1.27.6/go.mod h1:PIQNjfQwkP3aQAH7lf7j87O/5FiNr+ZR8+ipb+qQlhg=
+github.com/onsi/gomega v1.27.10 h1:naR28SdDFlqrG6kScpT8VWpu1xWY5nJRCF3XaYyBjhI=
+github.com/onsi/gomega v1.27.10/go.mod h1:RsS8tutOdbdgzbPtzzATp12yT7kM5I5aElG3evPbQ0M=
 github.com/opencontainers/runc v1.1.9 h1:XR0VIHTGce5eWPkaPesqTBrhW2yAcaraWfsEalNwQLM=
 github.com/opencontainers/runc v1.1.9/go.mod h1:CbUumNnWCuTGFukNXahoo/RFBZvDAgRh/smNYNOhA50=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
@@ -429,8 +429,8 @@ golang.org/x/mod v0.1.1-0.20191105210325-c90efee705ee/go.mod h1:QqPTAvyqsEbceGzB
 golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.10.0 h1:lFO9qtOdlre5W1jxS3r/4szv2/6iXxScdzjoBMXNhYk=
-golang.org/x/mod v0.10.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/mod v0.12.0 h1:rmsUpXtvNzj340zd98LZ4KntptpfRHwpFOHG188oHXc=
+golang.org/x/mod v0.12.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -464,8 +464,8 @@ golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81R
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.12.0 h1:cfawfvKITfUsFCeJIHJrbSxpeu/E81khclypR0GVT50=
-golang.org/x/net v0.12.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA=
+golang.org/x/net v0.14.0 h1:BONx9s002vGdD9umnlX1Po8vOZmrgH34qlHcD1MfK14=
+golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -593,8 +593,8 @@ golang.org/x/tools v0.0.0-20200804011535-6c149bb5ef0d/go.mod h1:njjCfa9FT2d7l9Bc
 golang.org/x/tools v0.0.0-20200825202427-b303f430e36d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.9.1 h1:8WMNJAz3zrtPmnYC7ISf5dEn3MT0gY7jBJfw27yrrLo=
-golang.org/x/tools v0.9.1/go.mod h1:owI94Op576fPu3cIGQeHs3joujW/2Oc6MtlxbF5dfNc=
+golang.org/x/tools v0.12.0 h1:YW6HUoUmYBpwSgyaGaZq1fHjrBjX1rlpZ54T6mu2kss=
+golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=

From 06c64bf5672ed7167f0c030b750ec9062bc86c83 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Franti=C5=A1ek=20H=C3=A1na?= <sinacek@gmail.com>
Date: Tue, 12 Sep 2023 04:36:12 +0200
Subject: [PATCH 0937/1641] helm: add resources to opentelemetry init container
 (#10300)

---
 charts/ingress-nginx/README.md                            | 1 +
 charts/ingress-nginx/templates/_helpers.tpl               | 3 +++
 charts/ingress-nginx/templates/controller-deployment.yaml | 3 ++-
 charts/ingress-nginx/values.yaml                          | 1 +
 4 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 5487ca218..ab16eb9ca 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -378,6 +378,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.opentelemetry.containerSecurityContext.allowPrivilegeEscalation | bool | `false` |  |
 | controller.opentelemetry.enabled | bool | `false` |  |
 | controller.opentelemetry.image | string | `"registry.k8s.io/ingress-nginx/opentelemetry:v20230721-3e2062ee5@sha256:13bee3f5223883d3ca62fee7309ad02d22ec00ff0d7033e3e9aca7a9f60fd472"` |  |
+| controller.opentelemetry.resources | object | `{}` |  |
 | controller.podAnnotations | object | `{}` | Annotations to be added to controller pods # |
 | controller.podLabels | object | `{}` | Labels to add to the pod container metadata |
 | controller.podSecurityContext | object | `{}` | Security Context policies for controller pods |
diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index 7206fe5ba..bd268cfb2 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -208,6 +208,9 @@ Extra modules.
   {{- if .containerSecurityContext }}
   securityContext: {{ .containerSecurityContext | toYaml | nindent 4 }}
   {{- end }}
+  {{- if .resources }}
+  resources: {{ .resources | toYaml | nindent 4 }}
+  {{- end }}
   volumeMounts:
     - name: {{ toYaml "modules"}}
       mountPath: {{ toYaml "/modules_mount"}}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index e23414ec9..df597076a 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -192,7 +192,8 @@ spec:
       {{- end }}
       {{- if .Values.controller.opentelemetry.enabled}}
           {{- $otelContainerSecurityContext := $.Values.controller.opentelemetry.containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext "distroless" true) | nindent 8}}
+          {{ $otelResources := $.Values.controller.opentelemetry.resources | default dict }}
+          {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext "distroless" true "resources" $otelResources) | nindent 8}}
       {{- end}}
     {{- end }}
     {{- if .Values.controller.hostNetwork }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index fffbe90b2..6a1031223 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -577,6 +577,7 @@ controller:
     image: registry.k8s.io/ingress-nginx/opentelemetry:v20230721-3e2062ee5@sha256:13bee3f5223883d3ca62fee7309ad02d22ec00ff0d7033e3e9aca7a9f60fd472
     containerSecurityContext:
       allowPrivilegeEscalation: false
+    resources: {}
   admissionWebhooks:
     annotations: {}
     # ignore-check.kube-linter.io/no-read-only-rootfs: "This deployment needs write access to root filesystem".

From 8f54b538d9b32649411d9e507ca38fbee55ce51c Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Wed, 13 Sep 2023 08:02:14 +0200
Subject: [PATCH 0938/1641] DaemonSet: Implement OpenTelemetry resources.
 (#10409)

---
 charts/ingress-nginx/templates/controller-daemonset.yaml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 5d94eb2f5..b55db1761 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -189,7 +189,8 @@ spec:
       {{- end }}
       {{- if .Values.controller.opentelemetry.enabled}}
           {{- $otelContainerSecurityContext := $.Values.controller.opentelemetry.containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext "distroless" true) | nindent 8}}
+          {{ $otelResources := $.Values.controller.opentelemetry.resources | default dict }}
+          {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext "distroless" true "resources" $otelResources) | nindent 8}}
       {{- end}}
     {{- end }}
     {{- if .Values.controller.hostNetwork }}

From 9635ece4c0655a979fa9ebfa1b904fcf420bb600 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 17 Sep 2023 21:36:30 -0300
Subject: [PATCH 0939/1641] Rework mage (#10417)

---
 go.work                               |   6 +
 go.work.sum                           | 253 +++++++++++++++++++
 hack/generate-e2e-suite-doc.sh        |  67 -----
 magefiles/docker.go                   |  19 --
 magefiles/{yaml.go => exec.go}        |  10 +-
 magefiles/go.go                       |  31 ---
 magefiles/go.mod                      |  20 +-
 magefiles/go.sum                      |  60 +++--
 magefiles/mage.go                     |  14 +-
 magefiles/steps/helm.go               | 187 ++++++++++++++
 magefiles/{ => steps}/release.go      | 341 +++++++-------------------
 magefiles/{ => steps}/tags.go         |  54 ++--
 magefiles/{ => utils}/common.go       |  37 ++-
 magefiles/utils/controller.go         |  68 +++++
 magefiles/utils/e2edocs.go            | 140 +++++++++++
 magefiles/{ => utils}/helm.go         | 175 +------------
 magefiles/utils/releasenote.go        |  91 +++++++
 magefiles/utils/templates/e2edocs.tpl |  10 +
 18 files changed, 959 insertions(+), 624 deletions(-)
 create mode 100644 go.work
 create mode 100644 go.work.sum
 delete mode 100755 hack/generate-e2e-suite-doc.sh
 delete mode 100644 magefiles/docker.go
 rename magefiles/{yaml.go => exec.go} (84%)
 delete mode 100644 magefiles/go.go
 create mode 100644 magefiles/steps/helm.go
 rename magefiles/{ => steps}/release.go (50%)
 rename magefiles/{ => steps}/tags.go (67%)
 rename magefiles/{ => utils}/common.go (73%)
 create mode 100644 magefiles/utils/controller.go
 create mode 100644 magefiles/utils/e2edocs.go
 rename magefiles/{ => utils}/helm.go (79%)
 create mode 100644 magefiles/utils/releasenote.go
 create mode 100644 magefiles/utils/templates/e2edocs.tpl

diff --git a/go.work b/go.work
new file mode 100644
index 000000000..84cc6ca96
--- /dev/null
+++ b/go.work
@@ -0,0 +1,6 @@
+go 1.21.1
+
+use (
+	.
+	./magefiles
+)
diff --git a/go.work.sum b/go.work.sum
new file mode 100644
index 000000000..7eb8379b8
--- /dev/null
+++ b/go.work.sum
@@ -0,0 +1,253 @@
+cloud.google.com/go v0.110.2/go.mod h1:k04UEeEtb6ZBRTv3dZz4CeJC3jKGxyhl0sAiVVquxiw=
+cloud.google.com/go v0.110.4/go.mod h1:+EYjdK8e5RME/VY/qLCAtuyALQ9q67dvuum8i+H5xsI=
+cloud.google.com/go/accessapproval v1.7.1/go.mod h1:JYczztsHRMK7NTXb6Xw+dwbs/WnOJxbo/2mTI+Kgg68=
+cloud.google.com/go/accesscontextmanager v1.8.1/go.mod h1:JFJHfvuaTC+++1iL1coPiG1eu5D24db2wXCDWDjIrxo=
+cloud.google.com/go/aiplatform v1.45.0/go.mod h1:Iu2Q7sC7QGhXUeOhAj/oCK9a+ULz1O4AotZiqjQ8MYA=
+cloud.google.com/go/analytics v0.21.2/go.mod h1:U8dcUtmDmjrmUTnnnRnI4m6zKn/yaA5N9RlEkYFHpQo=
+cloud.google.com/go/apigateway v1.6.1/go.mod h1:ufAS3wpbRjqfZrzpvLC2oh0MFlpRJm2E/ts25yyqmXA=
+cloud.google.com/go/apigeeconnect v1.6.1/go.mod h1:C4awq7x0JpLtrlQCr8AzVIzAaYgngRqWf9S5Uhg+wWs=
+cloud.google.com/go/apigeeregistry v0.7.1/go.mod h1:1XgyjZye4Mqtw7T9TsY4NW10U7BojBvG4RMD+vRDrIw=
+cloud.google.com/go/appengine v1.8.1/go.mod h1:6NJXGLVhZCN9aQ/AEDvmfzKEfoYBlfB80/BHiKVputY=
+cloud.google.com/go/area120 v0.8.1/go.mod h1:BVfZpGpB7KFVNxPiQBuHkX6Ed0rS51xIgmGyjrAfzsg=
+cloud.google.com/go/artifactregistry v1.14.1/go.mod h1:nxVdG19jTaSTu7yA7+VbWL346r3rIdkZ142BSQqhn5E=
+cloud.google.com/go/asset v1.14.1/go.mod h1:4bEJ3dnHCqWCDbWJ/6Vn7GVI9LerSi7Rfdi03hd+WTQ=
+cloud.google.com/go/assuredworkloads v1.11.1/go.mod h1:+F04I52Pgn5nmPG36CWFtxmav6+7Q+c5QyJoL18Lry0=
+cloud.google.com/go/automl v1.13.1/go.mod h1:1aowgAHWYZU27MybSCFiukPO7xnyawv7pt3zK4bheQE=
+cloud.google.com/go/baremetalsolution v0.5.0/go.mod h1:dXGxEkmR9BMwxhzBhV0AioD0ULBmuLZI8CdwalUxuss=
+cloud.google.com/go/batch v0.7.0/go.mod h1:vLZN95s6teRUqRQ4s3RLDsH8PvboqBK+rn1oevL159g=
+cloud.google.com/go/beyondcorp v0.6.1/go.mod h1:YhxDWw946SCbmcWo3fAhw3V4XZMSpQ/VYfcKGAEU8/4=
+cloud.google.com/go/bigquery v1.52.0/go.mod h1:3b/iXjRQGU4nKa87cXeg6/gogLjO8C6PmuM8i5Bi/u4=
+cloud.google.com/go/billing v1.16.0/go.mod h1:y8vx09JSSJG02k5QxbycNRrN7FGZB6F3CAcgum7jvGA=
+cloud.google.com/go/binaryauthorization v1.6.1/go.mod h1:TKt4pa8xhowwffiBmbrbcxijJRZED4zrqnwZ1lKH51U=
+cloud.google.com/go/certificatemanager v1.7.1/go.mod h1:iW8J3nG6SaRYImIa+wXQ0g8IgoofDFRp5UMzaNk1UqI=
+cloud.google.com/go/channel v1.16.0/go.mod h1:eN/q1PFSl5gyu0dYdmxNXscY/4Fi7ABmeHCJNf/oHmc=
+cloud.google.com/go/cloudbuild v1.10.1/go.mod h1:lyJg7v97SUIPq4RC2sGsz/9tNczhyv2AjML/ci4ulzU=
+cloud.google.com/go/clouddms v1.6.1/go.mod h1:Ygo1vL52Ov4TBZQquhz5fiw2CQ58gvu+PlS6PVXCpZI=
+cloud.google.com/go/cloudtasks v1.11.1/go.mod h1:a9udmnou9KO2iulGscKR0qBYjreuX8oHwpmFsKspEvM=
+cloud.google.com/go/compute v1.19.3/go.mod h1:qxvISKp/gYnXkSAD1ppcSOveRAmzxicEv/JlizULFrI=
+cloud.google.com/go/compute v1.20.1/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
+cloud.google.com/go/compute v1.21.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
+cloud.google.com/go/compute/metadata v0.2.3/go.mod h1:VAV5nSsACxMJvgaAuX6Pk2AawlZn8kiOGuCv6gTkwuA=
+cloud.google.com/go/contactcenterinsights v1.9.1/go.mod h1:bsg/R7zGLYMVxFFzfh9ooLTruLRCG9fnzhH9KznHhbM=
+cloud.google.com/go/container v1.22.1/go.mod h1:lTNExE2R7f+DLbAN+rJiKTisauFCaoDq6NURZ83eVH4=
+cloud.google.com/go/containeranalysis v0.10.1/go.mod h1:Ya2jiILITMY68ZLPaogjmOMNkwsDrWBSTyBubGXO7j0=
+cloud.google.com/go/datacatalog v1.14.1/go.mod h1:d2CevwTG4yedZilwe+v3E3ZBDRMobQfSG/a6cCCN5R4=
+cloud.google.com/go/dataflow v0.9.1/go.mod h1:Wp7s32QjYuQDWqJPFFlnBKhkAtiFpMTdg00qGbnIHVw=
+cloud.google.com/go/dataform v0.8.1/go.mod h1:3BhPSiw8xmppbgzeBbmDvmSWlwouuJkXsXsb8UBih9M=
+cloud.google.com/go/datafusion v1.7.1/go.mod h1:KpoTBbFmoToDExJUso/fcCiguGDk7MEzOWXUsJo0wsI=
+cloud.google.com/go/datalabeling v0.8.1/go.mod h1:XS62LBSVPbYR54GfYQsPXZjTW8UxCK2fkDciSrpRFdY=
+cloud.google.com/go/dataplex v1.8.1/go.mod h1:7TyrDT6BCdI8/38Uvp0/ZxBslOslP2X2MPDucliyvSE=
+cloud.google.com/go/dataproc v1.12.0/go.mod h1:zrF3aX0uV3ikkMz6z4uBbIKyhRITnxvr4i3IjKsKrw4=
+cloud.google.com/go/dataqna v0.8.1/go.mod h1:zxZM0Bl6liMePWsHA8RMGAfmTG34vJMapbHAxQ5+WA8=
+cloud.google.com/go/datastore v1.12.1/go.mod h1:KjdB88W897MRITkvWWJrg2OUtrR5XVj1EoLgSp6/N70=
+cloud.google.com/go/datastream v1.9.1/go.mod h1:hqnmr8kdUBmrnk65k5wNRoHSCYksvpdZIcZIEl8h43Q=
+cloud.google.com/go/deploy v1.11.0/go.mod h1:tKuSUV5pXbn67KiubiUNUejqLs4f5cxxiCNCeyl0F2g=
+cloud.google.com/go/dialogflow v1.38.0/go.mod h1:L7jnH+JL2mtmdChzAIcXQHXMvQkE3U4hTaNltEuxXn4=
+cloud.google.com/go/dlp v1.10.1/go.mod h1:IM8BWz1iJd8njcNcG0+Kyd9OPnqnRNkDV8j42VT5KOI=
+cloud.google.com/go/documentai v1.20.0/go.mod h1:yJkInoMcK0qNAEdRnqY/D5asy73tnPe88I1YTZT+a8E=
+cloud.google.com/go/domains v0.9.1/go.mod h1:aOp1c0MbejQQ2Pjf1iJvnVyT+z6R6s8pX66KaCSDYfE=
+cloud.google.com/go/edgecontainer v1.1.1/go.mod h1:O5bYcS//7MELQZs3+7mabRqoWQhXCzenBu0R8bz2rwk=
+cloud.google.com/go/errorreporting v0.3.0/go.mod h1:xsP2yaAp+OAW4OIm60An2bbLpqIhKXdWR/tawvl7QzU=
+cloud.google.com/go/essentialcontacts v1.6.2/go.mod h1:T2tB6tX+TRak7i88Fb2N9Ok3PvY3UNbUsMag9/BARh4=
+cloud.google.com/go/eventarc v1.12.1/go.mod h1:mAFCW6lukH5+IZjkvrEss+jmt2kOdYlN8aMx3sRJiAI=
+cloud.google.com/go/filestore v1.7.1/go.mod h1:y10jsorq40JJnjR/lQ8AfFbbcGlw3g+Dp8oN7i7FjV4=
+cloud.google.com/go/firestore v1.11.0/go.mod h1:b38dKhgzlmNNGTNZZwe7ZRFEuRab1Hay3/DBsIGKKy4=
+cloud.google.com/go/functions v1.15.1/go.mod h1:P5yNWUTkyU+LvW/S9O6V+V423VZooALQlqoXdoPz5AE=
+cloud.google.com/go/gkebackup v0.4.0/go.mod h1:byAyBGUwYGEEww7xsbnUTBHIYcOPy/PgUWUtOeRm9Vg=
+cloud.google.com/go/gkeconnect v0.8.1/go.mod h1:KWiK1g9sDLZqhxB2xEuPV8V9NYzrqTUmQR9shJHpOZw=
+cloud.google.com/go/gkehub v0.14.1/go.mod h1:VEXKIJZ2avzrbd7u+zeMtW00Y8ddk/4V9511C9CQGTY=
+cloud.google.com/go/gkemulticloud v0.6.1/go.mod h1:kbZ3HKyTsiwqKX7Yw56+wUGwwNZViRnxWK2DVknXWfw=
+cloud.google.com/go/gsuiteaddons v1.6.1/go.mod h1:CodrdOqRZcLp5WOwejHWYBjZvfY0kOphkAKpF/3qdZY=
+cloud.google.com/go/iam v0.13.0/go.mod h1:ljOg+rcNfzZ5d6f1nAUJ8ZIxOaZUVoS14bKCtaLZ/D0=
+cloud.google.com/go/iam v1.1.1/go.mod h1:A5avdyVL2tCppe4unb0951eI9jreack+RJ0/d+KUZOU=
+cloud.google.com/go/iap v1.8.1/go.mod h1:sJCbeqg3mvWLqjZNsI6dfAtbbV1DL2Rl7e1mTyXYREQ=
+cloud.google.com/go/ids v1.4.1/go.mod h1:np41ed8YMU8zOgv53MMMoCntLTn2lF+SUzlM+O3u/jw=
+cloud.google.com/go/iot v1.7.1/go.mod h1:46Mgw7ev1k9KqK1ao0ayW9h0lI+3hxeanz+L1zmbbbk=
+cloud.google.com/go/kms v1.12.1/go.mod h1:c9J991h5DTl+kg7gi3MYomh12YEENGrf48ee/N/2CDM=
+cloud.google.com/go/language v1.10.1/go.mod h1:CPp94nsdVNiQEt1CNjF5WkTcisLiHPyIbMhvR8H2AW0=
+cloud.google.com/go/lifesciences v0.9.1/go.mod h1:hACAOd1fFbCGLr/+weUKRAJas82Y4vrL3O5326N//Wc=
+cloud.google.com/go/logging v1.7.0/go.mod h1:3xjP2CjkM3ZkO73aj4ASA5wRPGGCRrPIAeNqVNkzY8M=
+cloud.google.com/go/longrunning v0.5.0/go.mod h1:0JNuqRShmscVAhIACGtskSAWtqtOoPkwP0YF1oVEchc=
+cloud.google.com/go/longrunning v0.5.1/go.mod h1:spvimkwdz6SPWKEt/XBij79E9fiTkHSQl/fRUUQJYJc=
+cloud.google.com/go/managedidentities v1.6.1/go.mod h1:h/irGhTN2SkZ64F43tfGPMbHnypMbu4RB3yl8YcuEak=
+cloud.google.com/go/maps v0.7.0/go.mod h1:3GnvVl3cqeSvgMcpRlQidXsPYuDGQ8naBis7MVzpXsY=
+cloud.google.com/go/mediatranslation v0.8.1/go.mod h1:L/7hBdEYbYHQJhX2sldtTO5SZZ1C1vkapubj0T2aGig=
+cloud.google.com/go/memcache v1.10.1/go.mod h1:47YRQIarv4I3QS5+hoETgKO40InqzLP6kpNLvyXuyaA=
+cloud.google.com/go/metastore v1.11.1/go.mod h1:uZuSo80U3Wd4zi6C22ZZliOUJ3XeM/MlYi/z5OAOWRA=
+cloud.google.com/go/monitoring v1.15.1/go.mod h1:lADlSAlFdbqQuwwpaImhsJXu1QSdd3ojypXrFSMr2rM=
+cloud.google.com/go/networkconnectivity v1.12.1/go.mod h1:PelxSWYM7Sh9/guf8CFhi6vIqf19Ir/sbfZRUwXh92E=
+cloud.google.com/go/networkmanagement v1.8.0/go.mod h1:Ho/BUGmtyEqrttTgWEe7m+8vDdK74ibQc+Be0q7Fof0=
+cloud.google.com/go/networksecurity v0.9.1/go.mod h1:MCMdxOKQ30wsBI1eI659f9kEp4wuuAueoC9AJKSPWZQ=
+cloud.google.com/go/notebooks v1.9.1/go.mod h1:zqG9/gk05JrzgBt4ghLzEepPHNwE5jgPcHZRKhlC1A8=
+cloud.google.com/go/optimization v1.4.1/go.mod h1:j64vZQP7h9bO49m2rVaTVoNM0vEBEN5eKPUPbZyXOrk=
+cloud.google.com/go/orchestration v1.8.1/go.mod h1:4sluRF3wgbYVRqz7zJ1/EUNc90TTprliq9477fGobD8=
+cloud.google.com/go/orgpolicy v1.11.1/go.mod h1:8+E3jQcpZJQliP+zaFfayC2Pg5bmhuLK755wKhIIUCE=
+cloud.google.com/go/osconfig v1.12.1/go.mod h1:4CjBxND0gswz2gfYRCUoUzCm9zCABp91EeTtWXyz0tE=
+cloud.google.com/go/oslogin v1.10.1/go.mod h1:x692z7yAue5nE7CsSnoG0aaMbNoRJRXO4sn73R+ZqAs=
+cloud.google.com/go/phishingprotection v0.8.1/go.mod h1:AxonW7GovcA8qdEk13NfHq9hNx5KPtfxXNeUxTDxB6I=
+cloud.google.com/go/policytroubleshooter v1.7.1/go.mod h1:0NaT5v3Ag1M7U5r0GfDCpUFkWd9YqpubBWsQlhanRv0=
+cloud.google.com/go/privatecatalog v0.9.1/go.mod h1:0XlDXW2unJXdf9zFz968Hp35gl/bhF4twwpXZAW50JA=
+cloud.google.com/go/pubsub v1.32.0/go.mod h1:f+w71I33OMyxf9VpMVcZbnG5KSUkCOUHYpFd5U1GdRc=
+cloud.google.com/go/pubsublite v1.8.1/go.mod h1:fOLdU4f5xldK4RGJrBMm+J7zMWNj/k4PxwEZXy39QS0=
+cloud.google.com/go/recaptchaenterprise/v2 v2.7.2/go.mod h1:kR0KjsJS7Jt1YSyWFkseQ756D45kaYNTlDPPaRAvDBU=
+cloud.google.com/go/recommendationengine v0.8.1/go.mod h1:MrZihWwtFYWDzE6Hz5nKcNz3gLizXVIDI/o3G1DLcrE=
+cloud.google.com/go/recommender v1.10.1/go.mod h1:XFvrE4Suqn5Cq0Lf+mCP6oBHD/yRMA8XxP5sb7Q7gpA=
+cloud.google.com/go/redis v1.13.1/go.mod h1:VP7DGLpE91M6bcsDdMuyCm2hIpB6Vp2hI090Mfd1tcg=
+cloud.google.com/go/resourcemanager v1.9.1/go.mod h1:dVCuosgrh1tINZ/RwBufr8lULmWGOkPS8gL5gqyjdT8=
+cloud.google.com/go/resourcesettings v1.6.1/go.mod h1:M7mk9PIZrC5Fgsu1kZJci6mpgN8o0IUzVx3eJU3y4Jw=
+cloud.google.com/go/retail v1.14.1/go.mod h1:y3Wv3Vr2k54dLNIrCzenyKG8g8dhvhncT2NcNjb/6gE=
+cloud.google.com/go/run v0.9.0/go.mod h1:Wwu+/vvg8Y+JUApMwEDfVfhetv30hCG4ZwDR/IXl2Qg=
+cloud.google.com/go/scheduler v1.10.1/go.mod h1:R63Ldltd47Bs4gnhQkmNDse5w8gBRrhObZ54PxgR2Oo=
+cloud.google.com/go/secretmanager v1.11.1/go.mod h1:znq9JlXgTNdBeQk9TBW/FnR/W4uChEKGeqQWAJ8SXFw=
+cloud.google.com/go/security v1.15.1/go.mod h1:MvTnnbsWnehoizHi09zoiZob0iCHVcL4AUBj76h9fXA=
+cloud.google.com/go/securitycenter v1.23.0/go.mod h1:8pwQ4n+Y9WCWM278R8W3nF65QtY172h4S8aXyI9/hsQ=
+cloud.google.com/go/servicedirectory v1.10.1/go.mod h1:Xv0YVH8s4pVOwfM/1eMTl0XJ6bzIOSLDt8f8eLaGOxQ=
+cloud.google.com/go/shell v1.7.1/go.mod h1:u1RaM+huXFaTojTbW4g9P5emOrrmLE69KrxqQahKn4g=
+cloud.google.com/go/spanner v1.47.0/go.mod h1:IXsJwVW2j4UKs0eYDqodab6HgGuA1bViSqW4uH9lfUI=
+cloud.google.com/go/speech v1.17.1/go.mod h1:8rVNzU43tQvxDaGvqOhpDqgkJTFowBpDvCJ14kGlJYo=
+cloud.google.com/go/storage v1.30.1/go.mod h1:NfxhC0UJE1aXSx7CIIbCf7y9HKT7BiccwkR7+P7gN8E=
+cloud.google.com/go/storagetransfer v1.10.0/go.mod h1:DM4sTlSmGiNczmV6iZyceIh2dbs+7z2Ayg6YAiQlYfA=
+cloud.google.com/go/talent v1.6.2/go.mod h1:CbGvmKCG61mkdjcqTcLOkb2ZN1SrQI8MDyma2l7VD24=
+cloud.google.com/go/texttospeech v1.7.1/go.mod h1:m7QfG5IXxeneGqTapXNxv2ItxP/FS0hCZBwXYqucgSk=
+cloud.google.com/go/tpu v1.6.1/go.mod h1:sOdcHVIgDEEOKuqUoi6Fq53MKHJAtOwtz0GuKsWSH3E=
+cloud.google.com/go/trace v1.10.1/go.mod h1:gbtL94KE5AJLH3y+WVpfWILmqgc6dXcqgNXdOPAQTYk=
+cloud.google.com/go/translate v1.8.1/go.mod h1:d1ZH5aaOA0CNhWeXeC8ujd4tdCFw8XoNWRljklu5RHs=
+cloud.google.com/go/video v1.17.1/go.mod h1:9qmqPqw/Ib2tLqaeHgtakU+l5TcJxCJbhFXM7UJjVzU=
+cloud.google.com/go/videointelligence v1.11.1/go.mod h1:76xn/8InyQHarjTWsBR058SmlPCwQjgcvoW0aZykOvo=
+cloud.google.com/go/vision/v2 v2.7.2/go.mod h1:jKa8oSYBWhYiXarHPvP4USxYANYUEdEsQrloLjrSwJU=
+cloud.google.com/go/vmmigration v1.7.1/go.mod h1:WD+5z7a/IpZ5bKK//YmT9E047AD+rjycCAvyMxGJbro=
+cloud.google.com/go/vmwareengine v0.4.1/go.mod h1:Px64x+BvjPZwWuc4HdmVhoygcXqEkGHXoa7uyfTgSI0=
+cloud.google.com/go/vpcaccess v1.7.1/go.mod h1:FogoD46/ZU+JUBX9D606X21EnxiszYi2tArQwLY4SXs=
+cloud.google.com/go/webrisk v1.9.1/go.mod h1:4GCmXKcOa2BZcZPn6DCEvE7HypmEJcJkr4mtM+sqYPc=
+cloud.google.com/go/websecurityscanner v1.6.1/go.mod h1:Njgaw3rttgRHXzwCB8kgCYqv5/rGpFCsBOvPbYgszpg=
+cloud.google.com/go/workflows v1.11.1/go.mod h1:Z+t10G1wF7h8LgdY/EmRcQY8ptBD/nvofaL6FqlET6g=
+github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
+github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
+github.com/PuerkitoBio/purell v1.1.1/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
+github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578/go.mod h1:uGdkoq3SwY9Y+13GIhn11/XLaGBb4BfwItxLd5jeuXE=
+github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
+github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5/go.mod h1:wHh0iHkYZB8zMSxRWpUBQtwG5a7fFgvEO+odwuTv2gs=
+github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
+github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
+github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
+github.com/cncf/udpa/go v0.0.0-20210930031921-04548b0d99d4/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
+github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
+github.com/cncf/xds/go v0.0.0-20210805033703-aa0b78936158/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20230607035331-e9ce68804cb4/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/coreos/go-semver v0.3.0/go.mod h1:nnelYz7RCh+5ahJtPPxZlU+153eP4D4r3EedlOD2RNk=
+github.com/emicklei/go-restful/v3 v3.8.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
+github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
+github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
+github.com/envoyproxy/go-control-plane v0.9.10-0.20210907150352-cf90f659a021/go.mod h1:AFq3mo9L8Lqqiid3OhADV3RfLJnjiw63cSpi+fDTRC0=
+github.com/envoyproxy/go-control-plane v0.11.1/go.mod h1:uhMcXKCQMEJHiAb0w+YGefQLaTEw+YhGluxZkrTmD0g=
+github.com/envoyproxy/protoc-gen-validate v1.0.2/go.mod h1:GpiZQP3dDbg4JouG/NNS7QWXpgx6x8QiMKdmN72jogE=
+github.com/felixge/httpsnoop v1.0.3/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
+github.com/go-logr/logr v0.1.0/go.mod h1:ixOQHD9gLJUVQQ2ZOR7zLEifBX6tGkNJF4QyIY7sIas=
+github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE=
+github.com/go-openapi/jsonreference v0.20.2 h1:3sVjiK66+uXK/6oQ8xgcRKcFgQ5KXa2KvnJRumpMGbE=
+github.com/go-openapi/jsonreference v0.20.2/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
+github.com/golang/glog v1.1.0/go.mod h1:pfYeQZ3JWZoXTV5sFc986z3HTpwQs9At6P4ImfuP3NQ=
+github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
+github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
+github.com/google/gnostic-models v0.6.8 h1:yo/ABAfM5IMRsS1VnXjTBvUb61tFIHozhlYvRgGre9I=
+github.com/google/gnostic-models v0.6.8/go.mod h1:5n7qKqH0f5wFt+aWF8CW6pZLLNOfYuF5OpfBSENuI8U=
+github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
+github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
+github.com/google/martian/v3 v3.3.2/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
+github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/s2a-go v0.1.4/go.mod h1:Ej+mSEMGRnqRzjc7VtF+jdBwYG5fuJfiZ8ELkjEwM0A=
+github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/googleapis/enterprise-certificate-proxy v0.2.3/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
+github.com/googleapis/gax-go/v2 v2.11.0/go.mod h1:DxmR61SGKkGLa2xigwuZIQpkCI2S5iydzRfb3peWZJI=
+github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
+github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgfV/d3M/q6VIi02HzZEHgUlZvzk=
+github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
+github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
+github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
+github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
+github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
+github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
+github.com/onsi/ginkgo/v2 v2.9.4/go.mod h1:gCQYp2Q+kSoIj7ykSVb9nskRSsR6PUj4AiLywzIhbKM=
+github.com/onsi/ginkgo/v2 v2.11.0/go.mod h1:ZhrRA5XmEE3x3rhlzamx/JJvujdZoJ2uvgI7kR0iZvM=
+github.com/onsi/gomega v1.19.0/go.mod h1:LY+I3pBVzYsTBU1AnDwOSxaYi9WoWiqgwooUqq9yPro=
+github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ=
+github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
+github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
+github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
+github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
+github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
+go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo=
+go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI=
+go.opentelemetry.io/proto/otlp v0.19.0/go.mod h1:H7XAot3MsfNsj7EXtrA2q5xSNQ10UqI405h3+duxN4U=
+golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/crypto v0.0.0-20220314234659-1baeb1ce4c0b/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
+golang.org/x/crypto v0.9.0/go.mod h1:yrmDGqONDYtNj3tH8X9dzUun2m2lzPa9ngI6/RUPGR0=
+golang.org/x/exp v0.0.0-20200224162631-6cc2880d07d6 h1:QE6XYQK6naiK1EPAe1g/ILLxN5RBoH5xkJk3CqlMI/Y=
+golang.org/x/lint v0.0.0-20210508222113-6edffad5e616/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
+golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
+golang.org/x/mod v0.7.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/mod v0.9.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
+golang.org/x/net v0.7.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
+golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg=
+golang.org/x/net v0.12.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA=
+golang.org/x/net v0.13.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA=
+golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE=
+golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.3.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
+golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.10.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
+golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
+golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
+golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
+golang.org/x/text v0.11.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
+golang.org/x/text v0.12.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
+golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
+golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
+golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
+golang.org/x/tools v0.8.0/go.mod h1:JxBZ99ISMI5ViVkT1tr6tdNmXeTrcpVSD3vZ1RsRdN4=
+golang.org/x/tools v0.9.3/go.mod h1:owI94Op576fPu3cIGQeHs3joujW/2Oc6MtlxbF5dfNc=
+golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
+google.golang.org/api v0.126.0/go.mod h1:mBwVAtz+87bEN6CbA1GtZPDOqY2R5ONPqJeIlvyo4Aw=
+google.golang.org/genproto v0.0.0-20200513103714-09dca8ec2884/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
+google.golang.org/genproto v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:xZnkP7mREFX5MORlOPEzLMr+90PPZQ2QWzrVTWfAq64=
+google.golang.org/genproto v0.0.0-20230706204954-ccb25ca9f130/go.mod h1:O9kGHb51iE/nOGvQaDUuadVYqovW56s5emA88lQnj6Y=
+google.golang.org/genproto v0.0.0-20230711160842-782d3b101e98 h1:Z0hjGZePRE0ZBWotvtrwxFNrNE9CUAGtplaDK5NNI/g=
+google.golang.org/genproto v0.0.0-20230711160842-782d3b101e98/go.mod h1:S7mY02OqCJTD0E1OiQy1F72PWFB4bZJ87cAtLPYgDR0=
+google.golang.org/genproto/googleapis/api v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
+google.golang.org/genproto/googleapis/api v0.0.0-20230706204954-ccb25ca9f130/go.mod h1:mPBs5jNgx2GuQGvFwUvVKqtn6HsUw9nP64BedgvqEsQ=
+google.golang.org/genproto/googleapis/api v0.0.0-20230711160842-782d3b101e98/go.mod h1:rsr7RhLuwsDKL7RmgDDCUc6yaGr1iqceVb5Wv6f6YvQ=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20230706204954-ccb25ca9f130/go.mod h1:8mL13HKkDa+IuJ8yruA3ci0q+0vsUz4m//+ottjwS5o=
+google.golang.org/grpc v1.33.1/go.mod h1:fr5YgcSWrqhRRxogOsw7RzIpsmvOZ6IcH4kBYTpR3n0=
+google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
+google.golang.org/grpc v1.36.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
+google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
+google.golang.org/grpc v1.45.0/go.mod h1:lN7owxKUQEqMfSyQikvvk5tf/6zMPsrK+ONuO11+0rQ=
+google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8=
+google.golang.org/grpc v1.56.2/go.mod h1:I9bI3vqKfayGqPUAwGdOSu7kt6oIJLixfffKrpXqQ9s=
+google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
+google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
+google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+gopkg.in/yaml.v2 v2.2.3/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
+k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
+k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/kube-openapi v0.0.0-20230717233707-2695361300d9 h1:LyMgNKD2P8Wn1iAwQU5OhxCKlKJy0sHc+PcDwFB24dQ=
+k8s.io/kube-openapi v0.0.0-20230717233707-2695361300d9/go.mod h1:wZK2AVp1uHCp4VamDVgBP2COHZjqD1T68Rf0CM3YjSM=
+k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+k8s.io/utils v0.0.0-20230406110748-d93618cff8a2 h1:qY1Ad8PODbnymg2pRbkyMT/ylpTrCM8P2RJ0yroCyIk=
+k8s.io/utils v0.0.0-20230406110748-d93618cff8a2/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
diff --git a/hack/generate-e2e-suite-doc.sh b/hack/generate-e2e-suite-doc.sh
deleted file mode 100755
index a63354c25..000000000
--- a/hack/generate-e2e-suite-doc.sh
+++ /dev/null
@@ -1,67 +0,0 @@
-#!/bin/bash
-
-# Copyright 2020 The Kubernetes Authors.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-if [ -n "$DEBUG" ]; then
-	set -x
-fi
-
-URL="https://github.com/kubernetes/ingress-nginx/tree/main/"
-DIR=$(cd $(dirname "${BASH_SOURCE}")/.. && pwd -P)
-
-declare -A skip_files=(
-    ["$DIR/test/e2e/framework/framework.go"]=1
-    ["$DIR/test/e2e/e2e.go"]=1
-    ["$DIR/test/e2e/e2e_test.go"]=1
-)
-
-echo "<!---
-This file is autogenerated!
-Do not try to edit it manually.
--->
-
-# e2e test suite for [Ingress NGINX Controller]($URL)
-
-"
-
-for FILE in $(find $DIR/test/e2e -name "*.go");do
-    # skip files
-    if [ ${skip_files[$FILE]} ]; then
-        continue
-    fi
-
-    # describe definition
-    DESCRIBE=$(cat $FILE | grep -n -oP 'Describe.*')
-    if [ -z "$DESCRIBE" ]; then
-        continue
-    fi
-    # line number
-    DESCRIBE_LINE=$(echo $DESCRIBE | cut -f1 -d ':')
-    # clean describe, extracting the string
-    DESCRIBE=$(echo $DESCRIBE | sed -En 's/.*("|`)(.*)("|`).*/\2/p')
-
-    FILE_URL=$(echo $FILE | sed "s|${DIR}/|${URL}|g")
-    echo "
-### [$DESCRIBE]($FILE_URL#L$DESCRIBE_LINE)
-"
-
-    # extract Tests
-    ITS=$(cat $FILE | grep -n -oP 'It\(.*')
-    while IFS= read -r line; do
-        IT_LINE=$(echo $line | cut -f1 -d ':')
-        IT=$(echo $line | sed -En 's/.*("|`)(.*)("|`).*/\2/p')
-        echo "- [$IT]($FILE_URL#L$IT_LINE)"
-    done <<< "$ITS"
-done
diff --git a/magefiles/docker.go b/magefiles/docker.go
deleted file mode 100644
index d7c7f588e..000000000
--- a/magefiles/docker.go
+++ /dev/null
@@ -1,19 +0,0 @@
-//go:build mage
-
-/*
-Copyright 2023 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package main
diff --git a/magefiles/yaml.go b/magefiles/exec.go
similarity index 84%
rename from magefiles/yaml.go
rename to magefiles/exec.go
index d7c7f588e..0acd557c6 100644
--- a/magefiles/yaml.go
+++ b/magefiles/exec.go
@@ -1,4 +1,4 @@
-//go:build mage
+//go:build ignore
 
 /*
 Copyright 2023 The Kubernetes Authors.
@@ -17,3 +17,11 @@ limitations under the License.
 */
 
 package main
+
+import (
+	"os"
+
+	"github.com/magefile/mage/mage"
+)
+
+func main() { os.Exit(mage.Main()) }
diff --git a/magefiles/go.go b/magefiles/go.go
deleted file mode 100644
index 2385b089e..000000000
--- a/magefiles/go.go
+++ /dev/null
@@ -1,31 +0,0 @@
-//go:build mage
-
-/*
-Copyright 2023 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package main
-
-//import (
-//	"github.com/magefile/mage/mg"
-//	"github.com/mysteriumnetwork/go-ci/commands"
-//)
-//
-//type Go mg.Namespace
-//
-//// Checks for issues with go imports
-//func (Go) CheckGoImports() error {
-//	return commands.GoImports("./...")
-//}
diff --git a/magefiles/go.mod b/magefiles/go.mod
index 051e88de7..ac05f6b89 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -1,4 +1,4 @@
-module github.com/kubernetes/ingress-nginx/magefiles
+module k8s.io/ingress-nginx/magefiles
 
 go 1.21.1
 
@@ -6,27 +6,27 @@ require (
 	github.com/blang/semver/v4 v4.0.0
 	github.com/google/go-github/v48 v48.2.0
 	github.com/helm/helm v2.17.0+incompatible
-	github.com/magefile/mage v1.14.0
+	github.com/magefile/mage v1.15.0
 	github.com/vmware-labs/yaml-jsonpath v0.3.2
-	golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be
+	golang.org/x/oauth2 v0.12.0
 	gopkg.in/yaml.v3 v3.0.1
 )
 
 require (
-	github.com/BurntSushi/toml v1.2.1 // indirect
+	github.com/BurntSushi/toml v1.3.2 // indirect
 	github.com/Masterminds/semver v1.5.0 // indirect
 	github.com/cyphar/filepath-securejoin v0.2.4 // indirect
 	github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960 // indirect
 	github.com/ghodss/yaml v1.0.0 // indirect
 	github.com/gobwas/glob v0.2.3 // indirect
-	github.com/golang/protobuf v1.5.2 // indirect
+	github.com/golang/protobuf v1.5.3 // indirect
 	github.com/google/go-querystring v1.1.0 // indirect
-	github.com/stretchr/testify v1.8.1 // indirect
-	golang.org/x/crypto v0.1.0 // indirect
-	golang.org/x/net v0.7.0 // indirect
+	github.com/rogpeppe/go-internal v1.11.0 // indirect
+	golang.org/x/crypto v0.13.0 // indirect
+	golang.org/x/net v0.15.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/protobuf v1.28.0 // indirect
+	google.golang.org/protobuf v1.31.0 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
-	k8s.io/apimachinery v0.25.4 // indirect
+	k8s.io/apimachinery v0.27.4 // indirect
 	k8s.io/helm v2.17.0+incompatible // indirect
 )
diff --git a/magefiles/go.sum b/magefiles/go.sum
index 380e194e7..8cd8c9420 100644
--- a/magefiles/go.sum
+++ b/magefiles/go.sum
@@ -1,5 +1,5 @@
-github.com/BurntSushi/toml v1.2.1 h1:9F2/+DoOYIOksmaJFPw1tGFy1eDnIJXg+UHjuD8lTak=
-github.com/BurntSushi/toml v1.2.1/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
+github.com/BurntSushi/toml v1.3.2 h1:o7IhLm0Msx3BaB+n3Ag7L8EVlByGnpq14C4YWiu/gL8=
+github.com/BurntSushi/toml v1.3.2/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
 github.com/Masterminds/semver v1.5.0 h1:H65muMkzWKEuNDnfl9d70GUjFniHKHRbFPGBuZ3QEww=
 github.com/Masterminds/semver v1.5.0/go.mod h1:MB6lktGJrhw8PrUyiEoblNEGEQ+RzHPF078ddwwvV3Y=
 github.com/blang/semver/v4 v4.0.0 h1:1PFHFE6yCCTv8C1TeyNNarDzntLi7wMI5i/pzqYIsAM=
@@ -19,8 +19,8 @@ github.com/gobwas/glob v0.2.3/go.mod h1:d3Ez4x06l9bZtSvzIay5+Yzi0fmZzPgnTbPcKjJA
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
-github.com/golang/protobuf v1.5.2 h1:ROPKBNFfQgOUMifHyP+KYbvpjbdoFNs+aK7DXlji0Tw=
-github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
+github.com/golang/protobuf v1.5.3 h1:KhyjKVUg7Usr/dYsdSqoFveMYd5ko72D+zANwlG1mmg=
+github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.9 h1:O2Tfq5qg4qc4AmwVlvv0oLiVAGB7enBSJ2x2DqQFi38=
@@ -34,65 +34,61 @@ github.com/helm/helm v2.17.0+incompatible/go.mod h1:ahXhuvluW4YnSL6W6hDVetZsVK8P
 github.com/hpcloud/tail v1.0.0 h1:nfCOvKYfkgYP8hkirhJocXT2+zOD8yUNjXaWfTlyFKI=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
+github.com/kr/pretty v0.3.0 h1:WgNl7dwNpEZ6jJ9k1snq4pZsg7DOEN8hP9Xw0Tsjwk0=
+github.com/kr/pretty v0.3.0/go.mod h1:640gp4NfQd8pI5XOwp5fnNeVWj67G7CFk/SaSQn7NBk=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
+github.com/kr/text v0.1.0 h1:45sCR5RtlFHMR4UwH9sdQ5TC8v0qDQCHnXt+kaKSTVE=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
-github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
-github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
-github.com/magefile/mage v1.14.0 h1:6QDX3g6z1YvJ4olPhT1wksUcSa/V0a1B+pJb73fBjyo=
-github.com/magefile/mage v1.14.0/go.mod h1:z5UZb/iS3GoOSn0JgWuiw7dxlurVYTu+/jHXqQg881A=
-github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e h1:fD57ERR4JtEqsWbfPhv4DMiApHyliiK5xCTNVSPiaAs=
-github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
+github.com/magefile/mage v1.15.0 h1:BvGheCMAsG3bWUDbZ8AyXXpCNwU9u5CB6sM+HNb9HYg=
+github.com/magefile/mage v1.15.0/go.mod h1:z5UZb/iS3GoOSn0JgWuiw7dxlurVYTu+/jHXqQg881A=
 github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.10.2 h1:uqH7bpe+ERSiDa34FDOF7RikN6RzXgduUF8yarlZp94=
 github.com/onsi/ginkgo v1.10.2/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
-github.com/onsi/gomega v1.20.1 h1:PA/3qinGoukvymdIDV8pii6tiZgC8kbmJO6Z5+b002Q=
-github.com/onsi/gomega v1.20.1/go.mod h1:DtrZpjmvpn2mPm4YWQa0/ALMDj9v4YxLgojwPeREyVo=
+github.com/onsi/gomega v1.27.4 h1:Z2AnStgsdSayCMDiCU42qIz+HLqEPcgiOCXjAU/w+8E=
+github.com/onsi/gomega v1.27.4/go.mod h1:riYq/GJKh8hhoM01HN6Vmuy93AarCXCBGpvFDK3q3fQ=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
+github.com/rogpeppe/go-internal v1.11.0/go.mod h1:ddIwULY96R17DhadqLgMfk9H9tvdUzkipdSkR5nkCZA=
 github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
 github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
-github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
-github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/stretchr/testify v1.8.1 h1:w7B6lhMri9wdJUVmEZPGGhZzrYTPvgJArz7wNPgYKsk=
 github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/vmware-labs/yaml-jsonpath v0.3.2 h1:/5QKeCBGdsInyDCyVNLbXyilb61MXGi9NP674f9Hobk=
 github.com/vmware-labs/yaml-jsonpath v0.3.2/go.mod h1:U6whw1z03QyqgWdgXxvVnQ90zN1BWz5V+51Ewf8k+rQ=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
-golang.org/x/crypto v0.1.0 h1:MDRAIl0xIo9Io2xV565hzXHw3zVseKrJKodhohM5CjU=
-golang.org/x/crypto v0.1.0/go.mod h1:RecgLatLF4+eUMCP1PoPZQb+cVrJcOPbHkTkbkB9sbw=
+golang.org/x/crypto v0.13.0 h1:mvySKfSWJ+UKUii46M40LOvyWfN0s2U+46/jDd0e6Ck=
+golang.org/x/crypto v0.13.0/go.mod h1:y6Z2r+Rw4iayiXXAIxJIDAJ1zMW4yaTpebo8fPOliYc=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
-golang.org/x/net v0.7.0 h1:rJrUqqhjsgNp7KqAIc25s9pZnjU7TUcSY7HcVZjdn1g=
-golang.org/x/net v0.7.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
-golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be h1:vEDujvNQGv4jgYKudGeI/+DAX4Jffq6hpD55MmoEvKs=
-golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
+golang.org/x/net v0.15.0 h1:ugBLEUaxABaB5AJqW9enI0ACdci2RUd4eP51NTBvuJ8=
+golang.org/x/net v0.15.0/go.mod h1:idbUs1IY1+zTqbi8yxTbhexhEEk5ur9LInksu6HrEpk=
+golang.org/x/oauth2 v0.12.0 h1:smVPGxink+n1ZI5pkQa8y6fZT0RW0MgCO5bFpepy4B4=
+golang.org/x/oauth2 v0.12.0/go.mod h1:A74bZ3aGXgCY0qaIC9Ahg6Lglin4AMAco8cIv9baba4=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.5.0 h1:MUK/U/4lj1t1oPg0HfuXDN/Z1wv31ZJ/YcPiGccS4DU=
-golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.12.0 h1:CM0HF96J0hcLAwsHPJZjfdNzs0gftsLfgKt57wWHJ0o=
+golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
-golang.org/x/text v0.7.0 h1:4BRB4x83lYWy72KwLD/qYDuTu7q9PjSagHvijDw7cLo=
-golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.13.0 h1:ablQoSUd0tRdKxZewP80B+BaqeKJuVhuRxj/dkrun3k=
+golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/appengine v1.6.7 h1:FZR1q0exgwxzPzp/aF+VccGrSfxfPpkBqjIIEq3ru6c=
 google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.28.0 h1:w43yiav+6bVFTBQFZX0r7ipe9JQ1QsbMgHwbBziscLw=
-google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.31.0 h1:g0LDEJHgrBl9N9r17Ru3sqWhkIx2NB67okBHPwC7hs8=
+google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15 h1:YR8cESwS4TdDjEe65xsg0ogRM/Nc3DYOhEAlW+xobZo=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f h1:BLraFXnmrev5lT+xlilqcH8XK9/i0At2xKjWk4p6zsU=
-gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/fsnotify.v1 v1.4.7 h1:xOHLXZwVvI9hhs+cLKq5+I5onOuwQLhQwiu63xxlHs4=
 gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
@@ -106,7 +102,7 @@ gopkg.in/yaml.v3 v3.0.0-20191026110619-0b21df46bc1d/go.mod h1:K4uyk7z7BCEPqu6E+C
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/apimachinery v0.25.4 h1:CtXsuaitMESSu339tfhVXhQrPET+EiWnIY1rcurKnAc=
-k8s.io/apimachinery v0.25.4/go.mod h1:jaF9C/iPNM1FuLl7Zuy5b9v+n35HGSh6AQ4HYRkCqwo=
+k8s.io/apimachinery v0.27.4 h1:CdxflD4AF61yewuid0fLl6bM4a3q04jWel0IlP+aYjs=
+k8s.io/apimachinery v0.27.4/go.mod h1:XNfZ6xklnMCOGGFNqXG7bUrQCoR04dh/E7FprV6pb+E=
 k8s.io/helm v2.17.0+incompatible h1:Bpn6o1wKLYqKM3+Osh8e+1/K2g/GsQJ4F4yNF2+deao=
 k8s.io/helm v2.17.0+incompatible/go.mod h1:LZzlS4LQBHfciFOurYBFkCMTaZ0D1l+p0teMg7TSULI=
diff --git a/magefiles/mage.go b/magefiles/mage.go
index ef54ee0f7..1dfaa4dbd 100644
--- a/magefiles/mage.go
+++ b/magefiles/mage.go
@@ -1,8 +1,7 @@
-//go:build ignore
-// +build ignore
+//go:build mage
 
 /*
-Copyright 2021 The Kubernetes Authors.
+Copyright 2023 The Kubernetes Authors.
 
 Licensed under the Apache License, Version 2.0 (the "License");
 you may not use this file except in compliance with the License.
@@ -20,11 +19,6 @@ limitations under the License.
 package main
 
 import (
-	"os"
-
-	"github.com/magefile/mage/mage"
+	//mage:import
+	_ "k8s.io/ingress-nginx/magefiles/steps"
 )
-
-func main() {
-	os.Exit(mage.Main())
-}
diff --git a/magefiles/steps/helm.go b/magefiles/steps/helm.go
new file mode 100644
index 000000000..b4cdc6d81
--- /dev/null
+++ b/magefiles/steps/helm.go
@@ -0,0 +1,187 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package steps
+
+import (
+	"bytes"
+	"fmt"
+	"os"
+
+	semver "github.com/blang/semver/v4"
+	"github.com/helm/helm/pkg/chartutil"
+	"github.com/magefile/mage/mg"
+	"github.com/magefile/mage/sh"
+	yamlpath "github.com/vmware-labs/yaml-jsonpath/pkg/yamlpath"
+	"gopkg.in/yaml.v3"
+
+	utils "k8s.io/ingress-nginx/magefiles/utils"
+)
+
+const (
+	HelmChartPath   = "charts/ingress-nginx/Chart.yaml"
+	HelmChartValues = "charts/ingress-nginx/values.yaml"
+)
+
+type Helm mg.Namespace
+
+// UpdateVersion Update Helm Version of the Chart
+func (Helm) UpdateVersion(version string) {
+	updateVersion(version)
+}
+
+func currentChartVersion() string {
+	chart, err := chartutil.LoadChartfile(HelmChartPath)
+	utils.CheckIfError(err, "HELM Could not Load Chart")
+	return chart.Version
+}
+
+func updateVersion(version string) {
+	utils.Info("HELM Reading File %v", HelmChartPath)
+
+	chart, err := chartutil.LoadChartfile(HelmChartPath)
+	utils.CheckIfError(err, "HELM Could not Load Chart")
+
+	// Get the current tag
+	// appVersionV, err := getIngressNGINXVersion()
+	// utils.CheckIfError(err, "HELM Issue Retrieving the Current Ingress Nginx Version")
+
+	// remove the v from TAG
+	appVersion := version
+
+	utils.Info("HELM Ingress-Nginx App Version: %s Chart AppVersion: %s", appVersion, chart.AppVersion)
+	if appVersion == chart.AppVersion {
+		utils.Warning("HELM Ingress NGINX Version didnt change Ingress-Nginx App Version: %s Chart AppVersion: %s", appVersion, chart.AppVersion)
+		return
+	}
+
+	controllerSemVer, err := semver.Parse(version)
+	utils.CheckIfError(err, "error parsing semver of new app")
+	isPreRelease := len(controllerSemVer.Pre) > 0
+	oldControllerSemVer, err := semver.Parse(chart.AppVersion)
+	utils.CheckIfError(err, "error parsing semver of old chart")
+	isBreakingChange := controllerSemVer.Major > oldControllerSemVer.Major || controllerSemVer.Minor > oldControllerSemVer.Minor
+
+	// Update the helm chart
+	chart.AppVersion = appVersion
+	cTag, err := semver.Make(chart.Version)
+	utils.CheckIfError(err, "HELM Creating Chart Version: %v", err)
+
+	incrFunc := cTag.IncrementPatch
+	if isBreakingChange {
+		cTag.Patch = 0
+		incrFunc = cTag.IncrementMinor
+
+	}
+
+	if isPreRelease {
+		chart.Annotations["artifacthub.io/prerelease"] = "true"
+		cTag.Pre = controllerSemVer.Pre
+	}
+
+	if err = incrFunc(); err != nil {
+		utils.ErrorF("HELM Incrementing Chart Version: %v", err)
+		os.Exit(1)
+	}
+	chart.Version = cTag.String()
+	utils.Debug("HELM Updated Chart Version: %v", chart.Version)
+
+	err = chartutil.SaveChartfile(HelmChartPath, chart)
+	utils.CheckIfError(err, "HELM Saving new Chart")
+}
+
+func updateChartReleaseNotes(releasesNotes []string) {
+	utils.Info("HELM Updating the Chart Release notes")
+	chart, err := chartutil.LoadChartfile(HelmChartPath)
+	utils.CheckIfError(err, "HELM Could not Load Chart to update release notes %s", HelmChartPath)
+	var releaseNoteString string
+	for i := range releasesNotes {
+		releaseNoteString = fmt.Sprintf("%s - \"%s\"\n", releaseNoteString, releasesNotes[i])
+	}
+	utils.Info("HELM Release note string %s", releaseNoteString)
+	chart.Annotations["artifacthub.io/changes"] = releaseNoteString
+	err = chartutil.SaveChartfile(HelmChartPath, chart)
+	utils.CheckIfError(err, "HELM Saving updated release notes for Chart")
+}
+
+// UpdateChartValue Updates the Helm ChartValue
+func (Helm) UpdateChartValue(key, value string) {
+	updateChartValue(key, value)
+}
+
+func updateChartValue(key, value string) {
+	utils.Info("HELM Updating Chart %s %s:%s", HelmChartValues, key, value)
+
+	// read current values.yaml
+	data, err := os.ReadFile(HelmChartValues)
+	utils.CheckIfError(err, "HELM Could not Load Helm Chart Values files %s", HelmChartValues)
+
+	// var valuesStruct IngressChartValue
+	var n yaml.Node
+	utils.CheckIfError(yaml.Unmarshal(data, &n), "HELM Could not Unmarshal %s", HelmChartValues)
+
+	// update value
+	// keyParse := parsePath(key)
+	p, err := yamlpath.NewPath(key)
+	utils.CheckIfError(err, "HELM cannot create path")
+
+	q, err := p.Find(&n)
+	utils.CheckIfError(err, "HELM unexpected error finding path")
+
+	for _, i := range q {
+		utils.Info("HELM Found %s at %s", i.Value, key)
+		i.Value = value
+		utils.Info("HELM Updated %s at %s", i.Value, key)
+	}
+
+	//// write to file
+	var b bytes.Buffer
+	yamlEncoder := yaml.NewEncoder(&b)
+	yamlEncoder.SetIndent(2)
+	err = yamlEncoder.Encode(&n)
+	utils.CheckIfError(err, "HELM Could not Marshal new Values file")
+	err = os.WriteFile(HelmChartValues, b.Bytes(), 0o644)
+	utils.CheckIfError(err, "HELM Could not write new Values file to %s", HelmChartValues)
+
+	utils.Info("HELM Ingress Nginx Helm Chart update %s %s", key, value)
+}
+
+func (Helm) Helmdocs() error {
+	return runHelmDocs()
+}
+
+func runHelmDocs() error {
+	err := installHelmDocs()
+	if err != nil {
+		return err
+	}
+	err = sh.RunV("helm-docs", "--chart-search-root=${PWD}/charts")
+	if err != nil {
+		return err
+	}
+	return nil
+}
+
+func installHelmDocs() error {
+	utils.Info("HELM Install HelmDocs")
+	g0 := sh.RunCmd("go")
+
+	err := g0("install", "github.com/norwoodj/helm-docs/cmd/helm-docs@v1.11.0")
+	if err != nil {
+		return err
+	}
+	return nil
+}
diff --git a/magefiles/release.go b/magefiles/steps/release.go
similarity index 50%
rename from magefiles/release.go
rename to magefiles/steps/release.go
index e6dc6401d..1ed09850f 100644
--- a/magefiles/release.go
+++ b/magefiles/steps/release.go
@@ -1,5 +1,3 @@
-//go:build mage
-
 /*
 Copyright 2023 The Kubernetes Authors.
 
@@ -16,26 +14,23 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
-package main
+package steps
 
 import (
 	"context"
 	"errors"
 	"fmt"
-	"io"
-	"net"
-	"net/http"
 	"os"
 	"regexp"
 	"strings"
-	"text/template"
-	"time"
 
 	"github.com/google/go-github/v48/github"
 	"github.com/magefile/mage/mg"
 	"github.com/magefile/mage/sh"
 	"golang.org/x/oauth2"
 	"gopkg.in/yaml.v3"
+
+	utils "k8s.io/ingress-nginx/magefiles/utils"
 )
 
 type Release mg.Namespace
@@ -62,55 +57,28 @@ const (
 	CHANGELOG  = "Changelog.md"         // Name of the changelog
 )
 
-// ControllerImage - struct with info about controllers
-type ControllerImage struct {
-	Tag      string
-	Digest   string
-	Registry string
-	Name     string
-}
-
-// IngressRelease All the information about an ingress-nginx release that gets updated
-type IngressRelease struct {
-	ControllerVersion string
-	ControllerImage   ControllerImage
-	ReleaseNote       ReleaseNote
-	Release           *github.RepositoryRelease
-}
-
-// ReleaseNote - All the pieces of information/documents that get updated during a release
-type ReleaseNote struct {
-	Version                   string
-	NewControllerVersion      string
-	PreviousControllerVersion string
-	ControllerImages          []ControllerImage
-	DepUpdates                []string
-	Updates                   []string
-	HelmUpdates               []string
-	NewHelmChartVersion       string
-	PreviousHelmChartVersion  string
-}
-
-// IMAGES_YAML returns this data structure
-type ImageYamls []ImageElement
-
-// ImageElement - a specific image and it's data structure the dmap is a list of shas and container versions
-type ImageElement struct {
-	Name string              `json:"name"`
-	Dmap map[string][]string `json:"dmap"`
-}
-
 // init will set the GitHub token from the committers/releasers env var
 func init() {
 	GITHUB_TOKEN = os.Getenv("GITHUB_TOKEN")
 }
 
-// PromoteImage Creates PR into the k8s.io repo for promotion of ingress from staging to production
-func (Release) PromoteImage(version, sha string) {
-}
-
 // Release Create a new release of ingress nginx controller
 func (Release) NewRelease(version string) {
+	newRelease(version, "")
+}
+
+func (Release) NewReleaseFromOld(version, oldversion string) {
+	newRelease(version, oldversion)
+}
+
+func (Release) E2EDocs() {
+	e2edocs, err := utils.GenerateE2EDocs()
+	utils.CheckIfError(err, "error on template")
+	err = os.WriteFile("docs/e2e-tests.md", []byte(e2edocs), 644)
+	utils.CheckIfError(err, "Could not write new e2e test file ")
+}
+
+func newRelease(version, oldversion string) {
 	// newRelease := Release{}
 
 	// update ingress-nginx version
@@ -119,12 +87,12 @@ func (Release) NewRelease(version string) {
 	// mg.Deps(mg.F(Tag.BumpNginx, version))
 
 	tag, err := getIngressNGINXVersion()
-	CheckIfError(err, "RELEASE Retrieving the current Ingress Nginx Version")
+	utils.CheckIfError(err, "RELEASE Retrieving the current Ingress Nginx Version")
 
-	Info("RELEASE Checking Current Version %s to New Version %s", tag, version)
+	utils.Info("RELEASE Checking Current Version %s to New Version %s", tag, version)
 	// if the version were upgrading does not match the TAG file, lets update the TAG file
 	if tag[1:] != version {
-		Warning("RELEASE Ingress Nginx TAG %s and new version %s do not match", tag, version)
+		utils.Warning("RELEASE Ingress Nginx TAG %s and new version %s do not match", tag, version)
 		mg.Deps(mg.F(Tag.BumpNginx, fmt.Sprintf("v%s", version)))
 	}
 
@@ -132,25 +100,25 @@ func (Release) NewRelease(version string) {
 	mg.Deps(mg.F(Tag.NewControllerTag, version))
 
 	// make release notes
-	releaseNotes, err := makeReleaseNotes(version)
-	CheckIfError(err, "RELEASE Creating Release Notes for version %s", version)
-	Info("RELEASE Release Notes %s completed", releaseNotes.Version)
+	releaseNotes, err := makeReleaseNotes(version, oldversion)
+	utils.CheckIfError(err, "RELEASE Creating Release Notes for version %s", version)
+	utils.Info("RELEASE Release Notes %s completed", releaseNotes.Version)
 
 	// update chart values.yaml new controller tag and image digest
 	releaseNotes.PreviousHelmChartVersion = currentChartVersion()
 
 	// controller tag
 	updateChartValue("controller.image.tag", fmt.Sprintf("v%s", releaseNotes.Version))
-	Debug("releaseNotes.ControllerImages[0].Name %s", releaseNotes.ControllerImages[0].Name)
-	Debug("releaseNotes.ControllerImages[1].Name %s", releaseNotes.ControllerImages[1].Name)
+	utils.Debug("releaseNotes.ControllerImages[0].Name %s", releaseNotes.ControllerImages[0].Name)
+	utils.Debug("releaseNotes.ControllerImages[1].Name %s", releaseNotes.ControllerImages[1].Name)
 	// controller digest
 	if releaseNotes.ControllerImages[0].Name == "ingress-nginx/controller" {
-		Debug("Updating Chart Value %s with %s", "controller.image.digest", releaseNotes.ControllerImages[0].Digest)
+		utils.Debug("Updating Chart Value %s with %s", "controller.image.digest", releaseNotes.ControllerImages[0].Digest)
 		updateChartValue("controller.image.digest", releaseNotes.ControllerImages[0].Digest)
 	}
 	// controller chroot digest
 	if releaseNotes.ControllerImages[1].Name == "ingress-nginx/controller-chroot" {
-		Debug("Updating Chart Value %s with %s", "controller.image.digestChroot", releaseNotes.ControllerImages[1].Digest)
+		utils.Debug("Updating Chart Value %s with %s", "controller.image.digestChroot", releaseNotes.ControllerImages[1].Digest)
 		updateChartValue("controller.image.digestChroot", releaseNotes.ControllerImages[1].Digest)
 	}
 
@@ -163,18 +131,18 @@ func (Release) NewRelease(version string) {
 	updateChartReleaseNotes(releaseNotes.HelmUpdates)
 
 	// Run helm docs update
-	CheckIfError(runHelmDocs(), "Error Updating Helm Docs ")
+	utils.CheckIfError(runHelmDocs(), "Error Updating Helm Docs ")
 
-	releaseNotes.helmTemplate()
+	releaseNotes.HelmTemplate()
 
 	// update static manifest
-	CheckIfError(updateStaticManifest(), "Error Updating Static manifests")
+	utils.CheckIfError(updateStaticManifest(), "Error Updating Static manifests")
 
 	////update e2e docs
-	updateE2EDocs()
+	mg.Deps(mg.F(Release.E2EDocs))
 
 	// update documentation with ingress-nginx version
-	CheckIfError(updateIndexMD(releaseNotes.PreviousControllerVersion, releaseNotes.NewControllerVersion), "Error Updating %s", INDEX_DOCS)
+	utils.CheckIfError(updateIndexMD(releaseNotes.PreviousControllerVersion, releaseNotes.NewControllerVersion), "Error Updating %s", INDEX_DOCS)
 
 	// keeping these manual for now
 	// git commit TODO
@@ -185,30 +153,22 @@ func (Release) NewRelease(version string) {
 
 // the index.md doc needs the controller version updated
 func updateIndexMD(old, new string) error {
-	Info("Updating Deploy docs with new version")
+	utils.Info("Updating Deploy docs with new version")
 	data, err := os.ReadFile(INDEX_DOCS)
-	CheckIfError(err, "Could not read INDEX_DOCS file %s", INDEX_DOCS)
+	utils.CheckIfError(err, "Could not read INDEX_DOCS file %s", INDEX_DOCS)
 	datString := string(data)
 	datString = strings.Replace(datString, old, new, -1)
 	err = os.WriteFile(INDEX_DOCS, []byte(datString), 644)
 	if err != nil {
-		ErrorF("Could not write new %s %s", INDEX_DOCS, err)
+		utils.ErrorF("Could not write new %s %s", INDEX_DOCS, err)
 		return err
 	}
 	return nil
 }
 
-// runs the hack/generate-deploy-scripts.sh
-func updateE2EDocs() {
-	updates, err := sh.Output("./hack/generate-e2e-suite-doc.sh")
-	CheckIfError(err, "Could not run update hack script")
-	err = os.WriteFile("docs/e2e-tests.md", []byte(updates), 644)
-	CheckIfError(err, "Could not write new e2e test file ")
-}
-
 // The static deploy scripts use kustomize to generate them, this function ensures kustomize is installed
 func installKustomize() error {
-	Info("Install Kustomize")
+	utils.Info("Install Kustomize")
 	g0 := sh.RunCmd("go")
 	// somewhere in your main code
 	err := g0("install", KUSTOMIZE_INSTALL_VERSION)
@@ -219,7 +179,7 @@ func installKustomize() error {
 }
 
 func updateStaticManifest() error {
-	CheckIfError(installKustomize(), "error installing kustomize")
+	utils.CheckIfError(installKustomize(), "error installing kustomize")
 	// hack/generate-deploy-scripts.sh
 	err := sh.RunV("./hack/generate-deploy-scripts.sh")
 	if err != nil {
@@ -231,10 +191,10 @@ func updateStaticManifest() error {
 //// CreateRelease Creates a new GitHub Release
 //func (Release) CreateRelease(name string) {
 //	releaser, err := gh_release.NewReleaser(INGRESS_ORG, INGRESS_REPO, GITHUB_TOKEN)
-//	CheckIfError(err, "GitHub Release Client error")
+//	utils.CheckIfError(err, "GitHub Release Client error")
 //	newRelease, err := releaser.Create(fmt.Sprintf("controller-%s", name))
-//	CheckIfError(err, "Create release error")
-//	Info("New Release: Tag %v, ID: %v", newRelease.TagName, newRelease.ID)
+//	utils.CheckIfError(err, "Create release error")
+//	utils.Info("New Release: Tag %v, ID: %v", newRelease.TagName, newRelease.ID)
 //}
 
 // Returns a GitHub client ready for use
@@ -248,34 +208,44 @@ func githubClient() *github.Client {
 
 // LatestCommitLogs Retrieves the commit log between the latest two controller versions.
 func (Release) LatestCommitLogs() {
-	commitLog := commitsBetweenTags()
+	commitLog := commitsBetweenTags("", "")
 	for i, s := range commitLog {
-		Info("#%v Version %v", i, s)
+		utils.Info("#%v Version %v", i, s)
 	}
 }
 
-func commitsBetweenTags() []string {
+func commitsBetweenTags(newversion, oldversion string) []string {
+
+	var newTag, oldTag string
 	tags := getAllControllerTags()
-	Info("Getting Commits between %v and %v", tags[0], tags[1])
-	commitLog, err := git("log", "--full-history", "--pretty", "--oneline", fmt.Sprintf("%v..%v", tags[1], tags[0]))
+	newTag, oldTag = tags[0], tags[1]
+	if newversion != "" {
+		newTag = newversion
+	}
+	if oldversion != "" {
+		oldTag = oldversion
+	}
+
+	utils.Info("Getting Commits between %v and %v", newTag, oldTag)
+	commitLog, err := git("log", "--full-history", "--pretty", "--oneline", fmt.Sprintf("%v..%v", oldTag, newTag))
 
 	if commitLog == "" {
-		Warning("All Controller Tags is empty")
+		utils.Warning("All Controller Tags is empty")
 	}
-	CheckIfError(err, "Retrieving Commit log")
+	utils.CheckIfError(err, "Retrieving Commit log")
 	return strings.Split(commitLog, "\n")
 }
 
 // Generate Release Notes
 func (Release) ReleaseNotes(newVersion string) error {
-	notes, err := makeReleaseNotes(newVersion)
-	CheckIfError(err, "Creating Release Notes for version %s", newVersion)
-	Info("Release Notes %s completed", notes.Version)
+	notes, err := makeReleaseNotes(newVersion, "")
+	utils.CheckIfError(err, "Creating Release Notes for version %s", newVersion)
+	utils.Info("Release Notes %s completed", notes.Version)
 	return nil
 }
 
-func makeReleaseNotes(newVersion string) (*ReleaseNote, error) {
-	newReleaseNotes := ReleaseNote{}
+func makeReleaseNotes(newVersion, oldVersion string) (*utils.ReleaseNote, error) {
+	newReleaseNotes := utils.ReleaseNote{}
 
 	newReleaseNotes.Version = newVersion
 	allControllerTags := getAllControllerTags()
@@ -290,10 +260,13 @@ func makeReleaseNotes(newVersion string) (*ReleaseNote, error) {
 	}
 	// previous version
 	newReleaseNotes.PreviousControllerVersion = allControllerTags[1]
+	if oldVersion != "" {
+		newReleaseNotes.PreviousControllerVersion = oldVersion
+	}
 
-	Info("New Version: %s Old Version: %s", newReleaseNotes.NewControllerVersion, newReleaseNotes.PreviousControllerVersion)
+	utils.Info("New Version: %s Old Version: %s", newReleaseNotes.NewControllerVersion, newReleaseNotes.PreviousControllerVersion)
 
-	commits := commitsBetweenTags()
+	commits := commitsBetweenTags(newReleaseNotes.NewControllerVersion, newReleaseNotes.PreviousControllerVersion)
 
 	// dependency_updates
 	// all_updates
@@ -308,11 +281,11 @@ func makeReleaseNotes(newVersion string) (*ReleaseNote, error) {
 		if prRegex.Match([]byte(s)) {
 			// matches a dependant bot update
 			if depBot.Match([]byte(s)) { //
-				Debug("#%v DEPENDABOT %v", i, s)
+				utils.Debug("#%v DEPENDABOT %v", i, s)
 				u := strings.SplitN(s, " ", 2)
 				depUpdates = append(depUpdates, u[1])
 			} else { // add it to the all updates slice
-				Debug("#%v ALL UPDATES %v", i, s)
+				utils.Debug("#%v ALL UPDATES %v", i, s)
 				u := strings.SplitN(s, " ", 2)
 				allUpdates = append(allUpdates, u[1])
 
@@ -331,44 +304,44 @@ func makeReleaseNotes(newVersion string) (*ReleaseNote, error) {
 	newReleaseNotes.HelmUpdates = helmUpdates
 
 	// controller_image_digests
-	imagesYaml, err := downloadFile(IMAGES_YAML)
+	imagesYaml, err := utils.DownloadFile(IMAGES_YAML)
 	if err != nil {
-		ErrorF("Could not download file %s : %s", IMAGES_YAML, err)
+		utils.ErrorF("Could not download file %s : %s", IMAGES_YAML, err)
 		return nil, err
 	}
-	Debug("%s", imagesYaml)
+	utils.Debug("%s", imagesYaml)
 
-	data := ImageYamls{}
+	data := utils.ImageYamls{}
 
 	err = yaml.Unmarshal([]byte(imagesYaml), &data)
 	if err != nil {
-		ErrorF("Could not unmarshal images yaml %s", err)
+		utils.ErrorF("Could not unmarshal images yaml %s", err)
 		return nil, err
 	}
 
 	// controller
-	controllerDigest := findImageDigest(data, "controller", newVersion)
+	controllerDigest := utils.FindImageDigest(data, "controller", newVersion)
 	if len(controllerDigest) == 0 {
-		ErrorF("Controller Digest could not be found")
+		utils.ErrorF("Controller Digest could not be found")
 		return nil, errors.New("Controller digest could not be found")
 	}
 
-	controllerChrootDigest := findImageDigest(data, "controller-chroot", newVersion)
+	controllerChrootDigest := utils.FindImageDigest(data, "controller-chroot", newVersion)
 	if len(controllerChrootDigest) == 0 {
-		ErrorF("Controller Chroot Digest could not be found")
+		utils.ErrorF("Controller Chroot Digest could not be found")
 		return nil, errors.New("Controller Chroot digest could not be found")
 	}
 
-	Debug("Latest Controller Digest %v", controllerDigest)
-	Debug("Latest Controller Chroot Digest %v", controllerChrootDigest)
-	c1 := ControllerImage{
+	utils.Debug("Latest Controller Digest %v", controllerDigest)
+	utils.Debug("Latest Controller Chroot Digest %v", controllerChrootDigest)
+	c1 := utils.ControllerImage{
 		Digest:   controllerDigest,
 		Registry: INGRESS_REGISTRY,
 		Name:     "ingress-nginx/controller",
 		Tag:      fmt.Sprintf("v%s", newReleaseNotes.Version),
 	}
 
-	c2 := ControllerImage{
+	c2 := utils.ControllerImage{
 		Digest:   controllerChrootDigest,
 		Registry: INGRESS_REGISTRY,
 		Name:     "ingress-nginx/controller-chroot",
@@ -377,141 +350,37 @@ func makeReleaseNotes(newVersion string) (*ReleaseNote, error) {
 
 	newReleaseNotes.ControllerImages = append(newReleaseNotes.ControllerImages, c1)
 	newReleaseNotes.ControllerImages = append(newReleaseNotes.ControllerImages, c2)
-	Debug("New Release Controller Images %s %s", newReleaseNotes.ControllerImages[0].Digest, newReleaseNotes.ControllerImages[1].Digest)
+	utils.Debug("New Release Controller Images %s %s", newReleaseNotes.ControllerImages[0].Digest, newReleaseNotes.ControllerImages[1].Digest)
 
-	if DEBUG {
-		newReleaseNotes.printRelease()
+	if utils.DEBUG {
+		newReleaseNotes.PrintRelease()
 	}
 
 	// write it all out to the changelog file
-	newReleaseNotes.template()
+	newReleaseNotes.Template()
 
 	return &newReleaseNotes, nil
 }
 
-func (i ControllerImage) print() string {
-	return fmt.Sprintf("%s/%s:%s@%s", i.Registry, i.Name, i.Tag, i.Digest)
-}
-
-func (r ReleaseNote) template() {
-	// Files are provided as a slice of strings.
-	changelogTemplate, err := os.ReadFile("Changelog.md.gotmpl")
-	if err != nil {
-		ErrorF("Could not read changelog template file %s", err)
-	}
-	Debug("ChangeLog Templates %s", string(changelogTemplate))
-	t := template.Must(template.New("changelog").Parse(string(changelogTemplate)))
-	// create a new file
-	file, err := os.Create(fmt.Sprintf("changelog/Changelog-%s.md", r.Version))
-	if err != nil {
-		ErrorF("Could not create changelog file %s", err)
-	}
-	defer file.Close()
-
-	err = t.Execute(file, r)
-	if err != nil {
-		ErrorF("executing template:", err)
-	}
-}
-
-func (r ReleaseNote) helmTemplate() {
-	// Files are provided as a slice of strings.
-	changelogTemplate, err := os.ReadFile("charts/ingress-nginx/changelog.md.gotmpl")
-	if err != nil {
-		ErrorF("Could not read changelog template file %s", err)
-	}
-	Debug("ChangeLog Templates %s", string(changelogTemplate))
-	t := template.Must(template.New("changelog").Parse(string(changelogTemplate)))
-	// create a new file
-	file, err := os.Create(fmt.Sprintf("charts/ingress-nginx/changelog/Changelog-%s.md", r.NewHelmChartVersion))
-	if err != nil {
-		ErrorF("Could not create changelog file %s", err)
-	}
-	defer file.Close()
-
-	err = t.Execute(file, r)
-	if err != nil {
-		ErrorF("executing template:", err)
-	}
-}
-
-func (r ReleaseNote) printRelease() {
-	Info("Release Version: %v", r.NewControllerVersion)
-	Info("Previous Version: %v", r.PreviousControllerVersion)
-	Info("Controller Image: %v", r.ControllerImages[0].print())
-	Info("Controller Chroot Image: %v", r.ControllerImages[1].print())
-	for i := range r.Updates {
-		Info("Update #%v - %v", i, r.Updates[i])
-	}
-	for j := range r.DepUpdates {
-		Info("Dependabot Update #%v - %v", j, r.DepUpdates[j])
-	}
-}
-
-func findImageDigest(yaml ImageYamls, image, version string) string {
-	version = fmt.Sprintf("v%s", version)
-	Info("Searching Digest for %s:%s", image, version)
-	for i := range yaml {
-		if yaml[i].Name == image {
-			for k, v := range yaml[i].Dmap {
-				if v[0] == version {
-					return k
-				}
-			}
-			return ""
-		}
-	}
-	return ""
-}
-
-func downloadFile(url string) (string, error) {
-	client := &http.Client{
-		Transport: &http.Transport{
-			DialContext: (&net.Dialer{
-				Timeout:   5 * time.Second,
-				KeepAlive: 5 * time.Second,
-			}).DialContext,
-			TLSHandshakeTimeout:   5 * time.Second,
-			ResponseHeaderTimeout: 5 * time.Second,
-			ExpectContinueTimeout: 1 * time.Second,
-			MaxIdleConnsPerHost:   -1,
-		},
-	}
-	resp, err := client.Get(url)
-	if err != nil {
-		return "", nil
-	}
-	defer resp.Body.Close()
-
-	if resp.StatusCode != http.StatusOK {
-		return "", errors.New(fmt.Sprintf("Could not retrieve file, response from server %s for file %s", resp.StatusCode, url))
-	}
-	bodyBytes, err := io.ReadAll(resp.Body)
-	if err != nil {
-		return "", nil
-	}
-	return string(bodyBytes), nil
-}
-
 // Latest returns latest Github Release
 func (Release) Latest() error {
 	r, _, err := latestRelease()
 	if err != nil {
-		ErrorF("Latest Release error %s", err)
+		utils.ErrorF("Latest Release error %s", err)
 		return err
 	}
-	Info("Latest Release %v", r.String())
+	utils.Info("Latest Release %v", r.String())
 	return nil
 }
 
 func (Release) ReleaseByTag(tag string) error {
 	r, _, err := releaseByTag(tag)
 	if err != nil {
-		ErrorF("Release retrieve tag error %s", tag, err)
+		utils.ErrorF("Release retrieve tag %s error %s", tag, err)
 		return err
 	}
 
-	Info("Latest Release %v", r.String())
+	utils.Info("Latest Release %v", r.String())
 
 	return nil
 }
@@ -525,31 +394,3 @@ func latestRelease() (*github.RepositoryRelease, *github.Response, error) {
 	ghClient := githubClient()
 	return ghClient.Repositories.GetLatestRelease(ctx, INGRESS_ORG, INGRESS_REPO)
 }
-
-// Copy Test function to copy a release
-func (Release) Copy() error {
-	ghClient := githubClient()
-	kRelease, _, err := ghClient.Repositories.GetLatestRelease(ctx, "kubernetes", "ingress-nginx")
-	if err != nil {
-		ErrorF("Get Release from kubernetes %s", err)
-		return err
-	}
-
-	sRelease := &github.RepositoryRelease{
-		TagName:                kRelease.TagName,
-		Name:                   kRelease.Name,
-		Body:                   kRelease.Body,
-		Draft:                  kRelease.Draft,
-		Prerelease:             kRelease.GenerateReleaseNotes,
-		DiscussionCategoryName: kRelease.DiscussionCategoryName,
-		GenerateReleaseNotes:   kRelease.GenerateReleaseNotes,
-	}
-
-	sRelease, _, err = ghClient.Repositories.CreateRelease(ctx, "strongjz", "ingress-nginx", sRelease)
-	if err != nil {
-		ErrorF("Creating Strongjz release %s", err)
-		return err
-	}
-	Info("Copied over Kubernetes Release %v to Strongjz %v", &kRelease.Name, &sRelease.Name)
-	return nil
-}
diff --git a/magefiles/tags.go b/magefiles/steps/tags.go
similarity index 67%
rename from magefiles/tags.go
rename to magefiles/steps/tags.go
index ca02c2cc3..e3c811f8c 100644
--- a/magefiles/tags.go
+++ b/magefiles/steps/tags.go
@@ -1,5 +1,3 @@
-//go:build mage
-
 /*
 Copyright 2023 The Kubernetes Authors.
 
@@ -16,7 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
-package main
+package steps
 
 import (
 	"fmt"
@@ -26,6 +24,8 @@ import (
 	semver "github.com/blang/semver/v4"
 	"github.com/magefile/mage/mg"
 	"github.com/magefile/mage/sh"
+
+	utils "k8s.io/ingress-nginx/magefiles/utils"
 )
 
 type Tag mg.Namespace
@@ -35,13 +35,13 @@ var git = sh.OutCmd("git")
 // Nginx returns the ingress-nginx current version
 func (Tag) Nginx() {
 	tag, err := getIngressNGINXVersion()
-	CheckIfError(err, "")
+	utils.CheckIfError(err, "")
 	fmt.Printf("%v", tag)
 }
 
 func getIngressNGINXVersion() (string, error) {
 	dat, err := os.ReadFile("TAG")
-	CheckIfError(err, "Could not read TAG file")
+	utils.CheckIfError(err, "Could not read TAG file")
 	datString := string(dat)
 	// remove newline
 	datString = strings.Replace(datString, "\n", "", -1)
@@ -49,21 +49,21 @@ func getIngressNGINXVersion() (string, error) {
 }
 
 func checkSemVer(currentVersion, newVersion string) bool {
-	Info("Checking Sem Ver between current %s and new %s", currentVersion, newVersion)
+	utils.Info("Checking Sem Ver between current %s and new %s", currentVersion, newVersion)
 	cVersion, err := semver.Make(currentVersion[1:])
 	if err != nil {
-		ErrorF("TAG Error Current Tag %v Making Semver : %v", currentVersion[1:], err)
+		utils.ErrorF("TAG Error Current Tag %v Making Semver : %v", currentVersion[1:], err)
 		return false
 	}
 	nVersion, err := semver.Make(newVersion)
 	if err != nil {
-		ErrorF("TAG %v Error Making Semver %v \n", newVersion, err)
+		utils.ErrorF("TAG %v Error Making Semver %v \n", newVersion, err)
 		return false
 	}
 
 	err = nVersion.Validate()
 	if err != nil {
-		ErrorF("TAG %v not a valid Semver %v \n", newVersion, err)
+		utils.ErrorF("TAG %v not a valid Semver %v \n", newVersion, err)
 		return false
 	}
 
@@ -71,10 +71,10 @@ func checkSemVer(currentVersion, newVersion string) bool {
 	//0 if newVersion == currentVersion
 	//-1 if newVersion < currentVersion
 	//+1 if newVersion > currentVersion.
-	Info("TAG Comparing Old %s to New %s", cVersion.String(), nVersion.String())
+	utils.Info("TAG Comparing Old %s to New %s", cVersion.String(), nVersion.String())
 	comp := nVersion.Compare(cVersion)
 	if comp <= 0 {
-		Warning("SemVer:%v is not an update\n", newVersion)
+		utils.Warning("SemVer:%v is not an update\n", newVersion)
 		return false
 	}
 	return true
@@ -82,29 +82,29 @@ func checkSemVer(currentVersion, newVersion string) bool {
 
 // BumpNginx will update the nginx TAG
 func (Tag) BumpNginx(newTag string) {
-	Info("TAG BumpNginx version %v", newTag)
+	utils.Info("TAG BumpNginx version %v", newTag)
 	currentTag, err := getIngressNGINXVersion()
-	CheckIfError(err, "Getting Ingress-nginx Version")
+	utils.CheckIfError(err, "Getting Ingress-nginx Version")
 	bump(currentTag, newTag)
 }
 
 func bump(currentTag, newTag string) {
 	// check if semver is valid
 	if !checkSemVer(currentTag, newTag) {
-		ErrorF("ERROR: Semver is not valid %v", newTag)
+		utils.ErrorF("ERROR: Semver is not valid %v", newTag)
 		os.Exit(1)
 	}
 
-	Info("Updating Tag %v to %v", currentTag, newTag)
+	utils.Info("Updating Tag %v to %v", currentTag, newTag)
 	err := os.WriteFile("TAG", []byte(newTag), 0o666)
-	CheckIfError(err, "Error Writing New Tag File")
+	utils.CheckIfError(err, "Error Writing New Tag File")
 }
 
 // Git Returns the latest git tag
 func (Tag) Git() {
 	tag, err := getGitTag()
-	CheckIfError(err, "Retrieving Git Tag")
-	Info("Git tag: %v", tag)
+	utils.CheckIfError(err, "Retrieving Git Tag")
+	utils.Info("Git tag: %v", tag)
 }
 
 func getGitTag() (string, error) {
@@ -113,10 +113,10 @@ func getGitTag() (string, error) {
 
 // ControllerTag Creates a new Git Tag for the ingress controller
 func (Tag) NewControllerTag(version string) {
-	Info("Create Ingress Nginx Controller Tag v%s", version)
+	utils.Info("Create Ingress Nginx Controller Tag v%s", version)
 	tag, err := controllerTag(version)
-	CheckIfError(err, "Creating git tag")
-	Debug("Git Tag: %s", tag)
+	utils.CheckIfError(err, "Creating git tag")
+	utils.Debug("Git Tag: %s", tag)
 }
 
 func controllerTag(version string) (string, error) {
@@ -126,22 +126,22 @@ func controllerTag(version string) (string, error) {
 func (Tag) AllControllerTags() {
 	tags := getAllControllerTags()
 	for i, s := range tags {
-		Info("#%v Version %v", i, s)
+		utils.Info("#%v Version %v", i, s)
 	}
 }
 
 func getAllControllerTags() []string {
 	allControllerTags, err := git("tag", "-l", "--sort=-v:refname", "controller-v*")
-	CheckIfError(err, "Retrieving git tags")
+	utils.CheckIfError(err, "Retrieving git tags")
 	if !sh.CmdRan(err) {
-		Warning("Issue Running Command")
+		utils.Warning("Issue Running Command")
 	}
 	if allControllerTags == "" {
-		Warning("All Controller Tags is empty")
+		utils.Warning("All Controller Tags is empty")
 	}
-	Debug("Controller Tags: %v", allControllerTags)
+	utils.Debug("Controller Tags: %v", allControllerTags)
 
 	temp := strings.Split(allControllerTags, "\n")
-	Debug("There are %v controller tags", len(temp))
+	utils.Debug("There are %v controller tags", len(temp))
 	return temp
 }
diff --git a/magefiles/common.go b/magefiles/utils/common.go
similarity index 73%
rename from magefiles/common.go
rename to magefiles/utils/common.go
index c5c33f989..19cad7bba 100644
--- a/magefiles/common.go
+++ b/magefiles/utils/common.go
@@ -1,5 +1,3 @@
-//go:build mage
-
 /*
 Copyright 2023 The Kubernetes Authors.
 
@@ -16,10 +14,14 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
-package main
+package utils
 
 import (
+	"errors"
 	"fmt"
+	"io"
+	"net"
+	"net/http"
 	"os"
 	"strings"
 	"time"
@@ -80,3 +82,32 @@ func Debug(format string, args ...interface{}) {
 func ErrorF(format string, args ...interface{}) {
 	fmt.Printf("\x1b[31;1m%s ERROR: %s\x1b[0m\n", timeStamp(), fmt.Sprintf(format, args...))
 }
+
+func DownloadFile(url string) (string, error) {
+	client := &http.Client{
+		Transport: &http.Transport{
+			DialContext: (&net.Dialer{
+				Timeout:   5 * time.Second,
+				KeepAlive: 5 * time.Second,
+			}).DialContext,
+			TLSHandshakeTimeout:   5 * time.Second,
+			ResponseHeaderTimeout: 5 * time.Second,
+			ExpectContinueTimeout: 1 * time.Second,
+			MaxIdleConnsPerHost:   -1,
+		},
+	}
+	resp, err := client.Get(url)
+	if err != nil {
+		return "", nil
+	}
+	defer resp.Body.Close()
+
+	if resp.StatusCode != http.StatusOK {
+		return "", errors.New(fmt.Sprintf("could not retrieve file, response from server %d for file %s", resp.StatusCode, url))
+	}
+	bodyBytes, err := io.ReadAll(resp.Body)
+	if err != nil {
+		return "", nil
+	}
+	return string(bodyBytes), nil
+}
diff --git a/magefiles/utils/controller.go b/magefiles/utils/controller.go
new file mode 100644
index 000000000..c8e250a36
--- /dev/null
+++ b/magefiles/utils/controller.go
@@ -0,0 +1,68 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package utils
+
+import (
+	"fmt"
+
+	"github.com/google/go-github/v48/github"
+)
+
+// ControllerImage - struct with info about controllers
+type ControllerImage struct {
+	Tag      string
+	Digest   string
+	Registry string
+	Name     string
+}
+
+// IngressRelease All the information about an ingress-nginx release that gets updated
+type IngressRelease struct {
+	ControllerVersion string
+	ControllerImage   ControllerImage
+	ReleaseNote       ReleaseNote
+	Release           *github.RepositoryRelease
+}
+
+// IMAGES_YAML returns this data structure
+type ImageYamls []ImageElement
+
+// ImageElement - a specific image and it's data structure the dmap is a list of shas and container versions
+type ImageElement struct {
+	Name string              `json:"name"`
+	Dmap map[string][]string `json:"dmap"`
+}
+
+func (i ControllerImage) print() string {
+	return fmt.Sprintf("%s/%s:%s@%s", i.Registry, i.Name, i.Tag, i.Digest)
+}
+
+func FindImageDigest(yaml ImageYamls, image, version string) string {
+	version = fmt.Sprintf("v%s", version)
+	Info("Searching Digest for %s:%s", image, version)
+	for i := range yaml {
+		if yaml[i].Name == image {
+			for k, v := range yaml[i].Dmap {
+				if v[0] == version {
+					return k
+				}
+			}
+			return ""
+		}
+	}
+	return ""
+}
diff --git a/magefiles/utils/e2edocs.go b/magefiles/utils/e2edocs.go
new file mode 100644
index 000000000..2edc2ca40
--- /dev/null
+++ b/magefiles/utils/e2edocs.go
@@ -0,0 +1,140 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package utils
+
+import (
+	"bufio"
+	"bytes"
+	"embed"
+	"fmt"
+	"io/fs"
+	"os"
+	"path/filepath"
+	"regexp"
+	"strings"
+	"text/template"
+
+	"slices"
+)
+
+//go:embed templates/e2edocs.tpl
+var tplContent embed.FS
+
+var (
+	skipFiles = []string{
+		"test/e2e/framework/framework.go",
+		"test/e2e/e2e.go",
+		"test/e2e/e2e_test.go",
+	}
+)
+
+const (
+	testDir  = "test/e2e"
+	describe = "Describe"
+	URL      = "https://github.com/kubernetes/ingress-nginx/tree/main/"
+)
+
+var (
+	betweenquotes = regexp.MustCompile(`("|\')(?P<TestDescription>.*)("|\')`)
+)
+
+type E2ETemplate struct {
+	URL   string
+	Tests []string
+}
+
+func getDescription(linetext, path, url string, lineN int, isDescription bool) string {
+	var descriptionLine string
+	prefix := "-"
+	if isDescription {
+		prefix = "###"
+	}
+
+	matches := betweenquotes.FindStringSubmatch(linetext)
+	contentIndex := betweenquotes.SubexpIndex("TestDescription")
+	if len(matches) < 2 || contentIndex == -1 {
+		return ""
+	}
+
+	fileName := fmt.Sprintf("%s/%s", url, path)
+	descriptionLine = fmt.Sprintf("%s [%s](%s#L%d)", prefix, matches[contentIndex], fileName, lineN)
+
+	return descriptionLine
+}
+
+func containsGinkgoTest(line string) bool {
+	if !strings.Contains(line, describe) && !strings.Contains(line, "It") {
+		return false
+	}
+	return strings.Contains(line, "func() {")
+}
+
+func (t *E2ETemplate) walkE2eDir(path string, d fs.DirEntry, errAggregated error) error {
+	if errAggregated != nil {
+		return errAggregated
+	}
+	// Remove ignored files or non .go files
+	if d.IsDir() || slices.Contains(skipFiles, path) || !strings.HasSuffix(path, ".go") {
+		return nil
+	}
+
+	content, err := os.ReadFile(path)
+	if err != nil {
+		return err
+	}
+
+	fileScanner := bufio.NewScanner(bytes.NewReader(content))
+
+	fileScanner.Split(bufio.ScanLines)
+
+	tests := make([]string, 0)
+	var lineN = 0
+	for fileScanner.Scan() {
+		lineN = lineN + 1
+		if !containsGinkgoTest(fileScanner.Text()) {
+			continue
+		}
+
+		line := getDescription(fileScanner.Text(), path, t.URL, lineN, strings.Contains(fileScanner.Text(), describe))
+		if line != "" {
+			tests = append(tests, line)
+		}
+	}
+	t.Tests = append(t.Tests, tests...)
+	return nil
+}
+
+func GenerateE2EDocs() (string, error) {
+	e2etpl := &E2ETemplate{URL: URL}
+	err := filepath.WalkDir(testDir, e2etpl.walkE2eDir)
+	if err != nil {
+		return "", err
+	}
+
+	tmpl, err := template.New("e2edocs.tpl").ParseFS(tplContent, "templates/e2edocs.tpl")
+	if err != nil {
+		return "", fmt.Errorf("error parsing the template file: %s", err)
+	}
+
+	tplBuff := new(bytes.Buffer)
+	err = tmpl.Execute(tplBuff, e2etpl)
+	if err != nil {
+		return "", err
+	}
+	return tplBuff.String(), nil
+
+}
diff --git a/magefiles/helm.go b/magefiles/utils/helm.go
similarity index 79%
rename from magefiles/helm.go
rename to magefiles/utils/helm.go
index c11fc9ec2..dea68caab 100644
--- a/magefiles/helm.go
+++ b/magefiles/utils/helm.go
@@ -1,5 +1,3 @@
-//go:build mage
-
 /*
 Copyright 2023 The Kubernetes Authors.
 
@@ -16,178 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
-package main
-
-import (
-	"bytes"
-	"fmt"
-	"os"
-	"strings"
-
-	semver "github.com/blang/semver/v4"
-	"github.com/helm/helm/pkg/chartutil"
-	"github.com/magefile/mage/mg"
-	"github.com/magefile/mage/sh"
-	yamlpath "github.com/vmware-labs/yaml-jsonpath/pkg/yamlpath"
-	"gopkg.in/yaml.v3"
-)
-
-const (
-	HelmChartPath   = "charts/ingress-nginx/Chart.yaml"
-	HelmChartValues = "charts/ingress-nginx/values.yaml"
-)
-
-type Helm mg.Namespace
-
-// UpdateAppVersion Updates the Helm App Version of Ingress Nginx Controller
-func (Helm) UpdateAppVersion() {
-	updateAppVersion()
-}
-
-func updateAppVersion() {
-}
-
-// UpdateVersion Update Helm Version of the Chart
-func (Helm) UpdateVersion(version string) {
-	updateVersion(version)
-}
-
-func currentChartVersion() string {
-	chart, err := chartutil.LoadChartfile(HelmChartPath)
-	CheckIfError(err, "HELM Could not Load Chart")
-	return chart.Version
-}
-
-func currentChartAppVersion() string {
-	chart, err := chartutil.LoadChartfile(HelmChartPath)
-	CheckIfError(err, "HELM Could not Load Chart")
-	return chart.AppVersion
-}
-
-func updateVersion(version string) {
-	Info("HELM Reading File %v", HelmChartPath)
-
-	chart, err := chartutil.LoadChartfile(HelmChartPath)
-	CheckIfError(err, "HELM Could not Load Chart")
-
-	// Get the current tag
-	// appVersionV, err := getIngressNGINXVersion()
-	// CheckIfError(err, "HELM Issue Retrieving the Current Ingress Nginx Version")
-
-	// remove the v from TAG
-	appVersion := version
-
-	Info("HELM Ingress-Nginx App Version: %s Chart AppVersion: %s", appVersion, chart.AppVersion)
-	if appVersion == chart.AppVersion {
-		Warning("HELM Ingress NGINX Version didnt change Ingress-Nginx App Version: %s Chart AppVersion: %s", appVersion, chart.AppVersion)
-		return
-	}
-
-	// Update the helm chart
-	chart.AppVersion = appVersion
-	cTag, err := semver.Make(chart.Version)
-	CheckIfError(err, "HELM Creating Chart Version: %v", err)
-
-	if err = cTag.IncrementPatch(); err != nil {
-		ErrorF("HELM Incrementing Chart Version: %v", err)
-		os.Exit(1)
-	}
-	chart.Version = cTag.String()
-	Debug("HELM Updated Chart Version: %v", chart.Version)
-
-	err = chartutil.SaveChartfile(HelmChartPath, chart)
-	CheckIfError(err, "HELM Saving new Chart")
-}
-
-func updateChartReleaseNotes(releasesNotes []string) {
-	Info("HELM Updating the Chart Release notes")
-	chart, err := chartutil.LoadChartfile(HelmChartPath)
-	CheckIfError(err, "HELM Could not Load Chart to update release notes %s", HelmChartPath)
-	var releaseNoteString string
-	for i := range releasesNotes {
-		releaseNoteString = fmt.Sprintf("%s - \"%s\"\n", releaseNoteString, releasesNotes[i])
-	}
-	Info("HELM Release note string %s", releaseNoteString)
-	chart.Annotations["artifacthub.io/changes"] = releaseNoteString
-	err = chartutil.SaveChartfile(HelmChartPath, chart)
-	CheckIfError(err, "HELM Saving updated release notes for Chart")
-}
-
-func UpdateChartChangelog() {
-}
-
-// UpdateChartValue Updates the Helm ChartValue
-func (Helm) UpdateChartValue(key, value string) {
-	updateChartValue(key, value)
-}
-
-func updateChartValue(key, value string) {
-	Info("HELM Updating Chart %s %s:%s", HelmChartValues, key, value)
-
-	// read current values.yaml
-	data, err := os.ReadFile(HelmChartValues)
-	CheckIfError(err, "HELM Could not Load Helm Chart Values files %s", HelmChartValues)
-
-	// var valuesStruct IngressChartValue
-	var n yaml.Node
-	CheckIfError(yaml.Unmarshal(data, &n), "HELM Could not Unmarshal %s", HelmChartValues)
-
-	// update value
-	// keyParse := parsePath(key)
-	p, err := yamlpath.NewPath(key)
-	CheckIfError(err, "HELM cannot create path")
-
-	q, err := p.Find(&n)
-	CheckIfError(err, "HELM unexpected error finding path")
-
-	for _, i := range q {
-		Info("HELM Found %s at %s", i.Value, key)
-		i.Value = value
-		Info("HELM Updated %s at %s", i.Value, key)
-	}
-
-	//// write to file
-	var b bytes.Buffer
-	yamlEncoder := yaml.NewEncoder(&b)
-	yamlEncoder.SetIndent(2)
-	err = yamlEncoder.Encode(&n)
-	CheckIfError(err, "HELM Could not Marshal new Values file")
-	err = os.WriteFile(HelmChartValues, b.Bytes(), 0o644)
-	CheckIfError(err, "HELM Could not write new Values file to %s", HelmChartValues)
-
-	Info("HELM Ingress Nginx Helm Chart update %s %s", key, value)
-}
-
-func (Helm) Helmdocs() error {
-	return runHelmDocs()
-}
-
-func runHelmDocs() error {
-	err := installHelmDocs()
-	if err != nil {
-		return err
-	}
-	err = sh.RunV("helm-docs", "--chart-search-root=${PWD}/charts")
-	if err != nil {
-		return err
-	}
-	return nil
-}
-
-func installHelmDocs() error {
-	Info("HELM Install HelmDocs")
-	g0 := sh.RunCmd("go")
-
-	err := g0("install", "github.com/norwoodj/helm-docs/cmd/helm-docs@v1.11.0")
-	if err != nil {
-		return err
-	}
-	return nil
-}
-func parsePath(key string) []string { return strings.Split(key, ".") }
-
-func updateHelmDocs() {
-}
+package utils
 
 type IngressChartValue struct {
 	CommonLabels struct{} `yaml:"commonLabels"`
diff --git a/magefiles/utils/releasenote.go b/magefiles/utils/releasenote.go
new file mode 100644
index 000000000..fa883104f
--- /dev/null
+++ b/magefiles/utils/releasenote.go
@@ -0,0 +1,91 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package utils
+
+import (
+	"fmt"
+	"os"
+	"text/template"
+)
+
+// ReleaseNote - All the pieces of information/documents that get updated during a release
+type ReleaseNote struct {
+	Version                   string
+	NewControllerVersion      string
+	PreviousControllerVersion string
+	ControllerImages          []ControllerImage
+	DepUpdates                []string
+	Updates                   []string
+	HelmUpdates               []string
+	NewHelmChartVersion       string
+	PreviousHelmChartVersion  string
+}
+
+func (r ReleaseNote) Template() {
+	// Files are provided as a slice of strings.
+	changelogTemplate, err := os.ReadFile("Changelog.md.gotmpl")
+	if err != nil {
+		ErrorF("Could not read changelog template file %s", err)
+	}
+	Debug("ChangeLog Templates %s", string(changelogTemplate))
+	t := template.Must(template.New("changelog").Parse(string(changelogTemplate)))
+	// create a new file
+	file, err := os.Create(fmt.Sprintf("changelog/Changelog-%s.md", r.Version))
+	if err != nil {
+		ErrorF("Could not create changelog file %s", err)
+	}
+	defer file.Close()
+
+	err = t.Execute(file, r)
+	if err != nil {
+		ErrorF("executing template: %s", err)
+	}
+}
+
+func (r ReleaseNote) HelmTemplate() {
+	// Files are provided as a slice of strings.
+	changelogTemplate, err := os.ReadFile("charts/ingress-nginx/changelog.md.gotmpl")
+	if err != nil {
+		ErrorF("Could not read changelog template file %s", err)
+	}
+	Debug("ChangeLog Templates %s", string(changelogTemplate))
+	t := template.Must(template.New("changelog").Parse(string(changelogTemplate)))
+	// create a new file
+	file, err := os.Create(fmt.Sprintf("charts/ingress-nginx/changelog/Changelog-%s.md", r.NewHelmChartVersion))
+	if err != nil {
+		ErrorF("Could not create changelog file %s", err)
+	}
+	defer file.Close()
+
+	err = t.Execute(file, r)
+	if err != nil {
+		ErrorF("executing template: %s", err)
+	}
+}
+
+func (r ReleaseNote) PrintRelease() {
+	Info("Release Version: %v", r.NewControllerVersion)
+	Info("Previous Version: %v", r.PreviousControllerVersion)
+	Info("Controller Image: %v", r.ControllerImages[0].print())
+	Info("Controller Chroot Image: %v", r.ControllerImages[1].print())
+	for i := range r.Updates {
+		Info("Update #%v - %v", i, r.Updates[i])
+	}
+	for j := range r.DepUpdates {
+		Info("Dependabot Update #%v - %v", j, r.DepUpdates[j])
+	}
+}
diff --git a/magefiles/utils/templates/e2edocs.tpl b/magefiles/utils/templates/e2edocs.tpl
new file mode 100644
index 000000000..8757c10bd
--- /dev/null
+++ b/magefiles/utils/templates/e2edocs.tpl
@@ -0,0 +1,10 @@
+<!---
+This file is autogenerated!
+Do not try to edit it manually.
+-->
+
+# e2e test suite for [Ingress NGINX Controller]({{.URL}})
+
+{{ range $test := .Tests }}
+{{ $test }}
+{{- end }}
\ No newline at end of file

From d1dc763c7ec1d4be1096520a6db048e734d32f60 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 18 Sep 2023 04:24:30 -0700
Subject: [PATCH 0940/1641] Bump google.golang.org/grpc from 1.58.0 to 1.58.1
 (#10419)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.58.0 to 1.58.1.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.58.0...v1.58.1)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 9423c5bf0..63228c8ae 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.13.0
-	google.golang.org/grpc v1.58.0
+	google.golang.org/grpc v1.58.1
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index 61c31f0d8..c5be5c64d 100644
--- a/go.sum
+++ b/go.sum
@@ -669,8 +669,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.58.0 h1:32JY8YpPMSR45K+c3o6b8VL73V+rR8k+DeMIr4vRH8o=
-google.golang.org/grpc v1.58.0/go.mod h1:tgX3ZQDlNJGU96V6yHh1T/JeoBQ2TXdr43YbYSsCJk0=
+google.golang.org/grpc v1.58.1 h1:OL+Vz23DTtrrldqHK49FUOPHyY75rvFqJfXC84NYW58=
+google.golang.org/grpc v1.58.1/go.mod h1:tgX3ZQDlNJGU96V6yHh1T/JeoBQ2TXdr43YbYSsCJk0=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From cb7090060921603568badac269bef8dc1c412609 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Mon, 18 Sep 2023 08:52:31 -0300
Subject: [PATCH 0941/1641] Release v1.9.0-beta.0 (#10422)

---
 changelog/Changelog-1.9.0-beta.0.md           |   93 ++
 charts/ingress-nginx/Chart.yaml               |   14 +-
 charts/ingress-nginx/README.md                |    8 +-
 .../changelog/Changelog-4.8.0-beta.0.md       |   13 +
 charts/ingress-nginx/values.yaml              |    6 +-
 deploy/static/provider/aws/deploy.yaml        |   46 +-
 .../aws/nlb-with-tls-termination/deploy.yaml  |   46 +-
 deploy/static/provider/baremetal/deploy.yaml  |   46 +-
 deploy/static/provider/cloud/deploy.yaml      |   46 +-
 deploy/static/provider/do/deploy.yaml         |   46 +-
 deploy/static/provider/exoscale/deploy.yaml   |   46 +-
 deploy/static/provider/kind/deploy.yaml       |   46 +-
 deploy/static/provider/oracle/deploy.yaml     |   46 +-
 deploy/static/provider/scw/deploy.yaml        |   46 +-
 docs/e2e-tests.md                             | 1358 +++++++----------
 15 files changed, 878 insertions(+), 1028 deletions(-)
 create mode 100644 changelog/Changelog-1.9.0-beta.0.md
 create mode 100644 charts/ingress-nginx/changelog/Changelog-4.8.0-beta.0.md

diff --git a/changelog/Changelog-1.9.0-beta.0.md b/changelog/Changelog-1.9.0-beta.0.md
new file mode 100644
index 000000000..d1ffe148f
--- /dev/null
+++ b/changelog/Changelog-1.9.0-beta.0.md
@@ -0,0 +1,93 @@
+# Changelog
+
+### 1.9.0-beta.0
+Images:
+
+ * registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
+ * registry.k8s.io/ingress-nginx/controller-chroot:v1.9.0-beta.0@sha256:60b4c95349ce2a81a3b2a76423ee483b847b89d3fa8cb148468434f606f3fa0c
+ 
+### All Changes:
+
+* Rework mage (#10418)
+* Start release of v1.9.0 beta0 (#10407)
+* Update k8s versions on CI (#10406)
+* Add a flag to enable or disable aio_write (#10394)
+* Update external-articles.md - advanced setup with GKE/Cloud Armor/IAP (#10372)
+* Fix e2e test suite doc (#10396)
+* Disable user snippets per default (#10393)
+* Deployment/DaemonSet: Fix templating & value. (#10240)
+* Fix deferInLoop error (#10387)
+* Remove gofmt (#10385)
+* Deployment/DaemonSet: Template `topologySpreadConstraints`. (#10259)
+* release notes 1.8.2 (#10389)
+* fix: remove curl on base container #9716 (#10306)
+* Fix http default backend test (#10382)
+* Add golangci github action and replace the deprecated golint (#10187)
+* BUGFIX incorrect indentation (#10254)
+* Upgrade OpenTelemetry to v1.11.0 and gRPC to v1.57.0 (#10352)
+* fix: path with sepecial characters warning #10281 #10308 (#10330)
+* Fix golangci-lint errors (#10196)
+* chore(build): Fix Run make dev-env syntax error (#10294)
+* Add firewall configuration to quick start documentation (#10357)
+* Making auth access logs optional (#10335)
+* Fix “dev-env” Makefile target to work with kubectl 1.28+ (#10350)
+* fix: update action file to auto release plugin #10197 (#10321)
+* Use gzip instead of pigz in CI (#10348)
+* Disable Modsecurity from internal processing which affects large ingresses  (#10316)
+* fix: add /etc/mime.types #10309 (#10310)
+* Remove curl dependencies in e2e tests #9716 (#10296)
+* docs: swap explanation to match example (#10220)
+* ci(helm): fix Helm Chart release action 422 error (#10237)
+* helm: Use .Release.Namespace as default for ServiceMonitor namespace (#10249)
+* Updated index.md - Fix typos (#10256)
+* Handle request_id variable correctly in auth requests (#9219)
+* test kind updates (#10272)
+* promote distroless otel init image (#10257)
+* [helm] configure allow to configure hostAliases (#10180)
+* Add rolling update strategy to each static deployment file (#10129)
+* Implement annotation validation (#9673)
+* Golang 1.20.6 for test runner (#10230)
+* [helm] pass service annotations through helm tpl engine (#10084)
+* Ignore deployment template's replicas if KEDA is enabled (#9534)
+* chore: bump OpenResty to v1.21.4.2 (#10219)
+* Scanning port 10247 lead to tcp connection 502 error (#9815)
+* revise Datadog trace sampling configuration (#10151)
+* Clarify TCP/UDP service docs (#10146)
+* Exposed continent data as  variable in the case of Maxmind city files (#10157)
+* Cleanup errcheck code (#10166)
+* Fix golang-ci linter errors (#10128)
+* Deprecate and remove AJP support (#10158)
+* release notes 1.8.1 (#10161)
+
+### Dependencies updates: 
+* Bump github.com/onsi/ginkgo/v2 from 2.9.5 to 2.12.0 (#10355)
+* Bump golang.org/x/crypto from 0.12.0 to 0.13.0 (#10399)
+* Bump actions/setup-go from 4.0.1 to 4.1.0 (#10403)
+* Bump goreleaser/goreleaser-action from 4.4.0 to 4.6.0 (#10402)
+* Bump actions/upload-artifact from 3.1.2 to 3.1.3 (#10404)
+* Bump golangci/golangci-lint-action from 3.6.0 to 3.7.0 (#10400)
+* Bump google.golang.org/grpc from 1.57.0 to 1.58.0 (#10398)
+* Bump actions/dependency-review-action from 3.0.8 to 3.1.0 (#10401)
+* Bump github.com/cyphar/filepath-securejoin from 0.2.3 to 0.2.4 (#10373)
+* Bump github.com/cyphar/filepath-securejoin in /magefiles (#10374)
+* Bump Go version to 1.21.1 (#10377)
+* Bump Go version to 1.21.1 on testrunner (#10378)
+* Bump aquasecurity/trivy-action from 0.11.2 to 0.12.0 (#10365)
+* Bump docker/setup-buildx-action from 2.9.1 to 2.10.0 (#10353)
+* Bump actions/checkout from 3.5.3 to 3.6.0 (#10354)
+* Bump actions/dependency-review-action from 3.0.6 to 3.0.8 (#10333)
+* Bump actions/setup-go from 4.0.1 to 4.1.0 (#10313)
+* Bump securego/gosec from 2.16.0 to 2.17.0 (#10332)
+* Bump goreleaser/goreleaser-action from 4.3.0 to 4.4.0 (#10314)
+* Bump github.com/opencontainers/runc from 1.1.8 to 1.1.9 (#10298)
+* Bump k8s.io/component-base from 0.26.4 to 0.27.4 (Replace Topology Aware Hints with Topology Aware Routing) (#10282)
+* Bump google.golang.org/grpc from 1.56.2 to 1.57.0 (#10258)
+* Bump golang.org/x/crypto from 0.11.0 to 0.12.0 (#10280)
+* Bump github.com/opencontainers/runc from 1.1.7 to 1.1.8 (#10244)
+* Bump google.golang.org/grpc from 1.56.1 to 1.56.2 (#10193)
+* Bump docker/setup-buildx-action from 2.9.0 to 2.9.1 (#10207)
+* Bump golang.org/x/crypto from 0.10.0 to 0.11.0 (#10192)
+* Bump docker/setup-buildx-action from 2.8.0 to 2.9.0 (#10191)
+* Bump docker/setup-buildx-action from 2.7.0 to 2.8.0 (#10165)
+ 
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-release-1.8...controller-controller-v1.9.0-beta.0
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 4e1fc67a5..b692069a1 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,9 +1,13 @@
 annotations:
-  artifacthub.io/changes: |
-     - "Update Ingress-Nginx version controller-v1.8.2"
-  artifacthub.io/prerelease: "false"
+  artifacthub.io/changes: |2
+     - "ci(helm): fix Helm Chart release action 422 error (#10237)"
+     - "helm: Use .Release.Namespace as default for ServiceMonitor namespace (#10249)"
+     - "[helm] configure allow to configure hostAliases (#10180)"
+     - "[helm] pass service annotations through helm tpl engine (#10084)"
+     - "Update Ingress-Nginx version controller-v1.9.0-beta.0"
+  artifacthub.io/prerelease: "true"
 apiVersion: v2
-appVersion: 1.8.2
+appVersion: 1.9.0-beta.0
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 engine: gotpl
@@ -20,4 +24,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.7.2
+version: 4.8.0-beta.0
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index ab16eb9ca..aa489a65b 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.7.2](https://img.shields.io/badge/Version-4.7.2-informational?style=flat-square) ![AppVersion: 1.8.2](https://img.shields.io/badge/AppVersion-1.8.2-informational?style=flat-square)
+![Version: 4.8.0-beta.0](https://img.shields.io/badge/Version-4.8.0--beta.0-informational?style=flat-square) ![AppVersion: 1.9.0-beta.0](https://img.shields.io/badge/AppVersion-1.9.0--beta.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -315,13 +315,13 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2"` |  |
-| controller.image.digestChroot | string | `"sha256:1317a563219f755a6094d990057c78e5c4dcea5e31f4ce1db8641e732a7d6133"` |  |
+| controller.image.digest | string | `"sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9"` |  |
+| controller.image.digestChroot | string | `"sha256:60b4c95349ce2a81a3b2a76423ee483b847b89d3fa8cb148468434f606f3fa0c"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.8.2"` |  |
+| controller.image.tag | string | `"v1.9.0-beta.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/Changelog-4.8.0-beta.0.md b/charts/ingress-nginx/changelog/Changelog-4.8.0-beta.0.md
new file mode 100644
index 000000000..9072a75b4
--- /dev/null
+++ b/charts/ingress-nginx/changelog/Changelog-4.8.0-beta.0.md
@@ -0,0 +1,13 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.8.0-beta.0
+
+* ci(helm): fix Helm Chart release action 422 error (#10237)
+* helm: Use .Release.Namespace as default for ServiceMonitor namespace (#10249)
+* [helm] configure allow to configure hostAliases (#10180)
+* [helm] pass service annotations through helm tpl engine (#10084)
+* Update Ingress-Nginx version controller-v1.9.0-beta.0
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.7.2...helm-chart-4.8.0-beta.0
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 6a1031223..0b6091bb7 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -24,9 +24,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.8.2"
-    digest: sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
-    digestChroot: sha256:1317a563219f755a6094d990057c78e5c4dcea5e31f4ce1db8641e732a7d6133
+    tag: "v1.9.0-beta.0"
+    digest: sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
+    digestChroot: sha256:60b4c95349ce2a81a3b2a76423ee483b847b89d3fa8cb148468434f606f3fa0c
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 6ac6b2847..a5247d8be 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,7 +320,7 @@ subjects:
 ---
 apiVersion: v1
 data:
-  allow-snippet-annotations: "true"
+  allow-snippet-annotations: "false"
 kind: ConfigMap
 metadata:
   labels:
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -565,7 +565,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -576,7 +576,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -614,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index eebac4dbc..a5e35c02a 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,7 +320,7 @@ subjects:
 ---
 apiVersion: v1
 data:
-  allow-snippet-annotations: "true"
+  allow-snippet-annotations: "false"
   http-snippet: |
     server {
       listen 2443;
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -431,7 +431,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
     spec:
       containers:
       - args:
@@ -455,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -577,7 +577,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -588,7 +588,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -639,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index d503b5db2..4a0914121 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,7 +320,7 @@ subjects:
 ---
 apiVersion: v1
 data:
-  allow-snippet-annotations: "true"
+  allow-snippet-annotations: "false"
 kind: ConfigMap
 metadata:
   labels:
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
     spec:
       containers:
       - args:
@@ -440,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -512,7 +512,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -523,7 +523,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -559,7 +559,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -570,7 +570,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -608,7 +608,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -621,7 +621,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index ce08314fc..13ec5db40 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,7 +320,7 @@ subjects:
 ---
 apiVersion: v1
 data:
-  allow-snippet-annotations: "true"
+  allow-snippet-annotations: "false"
 kind: ConfigMap
 metadata:
   labels:
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -514,7 +514,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -525,7 +525,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -561,7 +561,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -572,7 +572,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -623,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index db6609024..8ed58f056 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,7 +320,7 @@ subjects:
 ---
 apiVersion: v1
 data:
-  allow-snippet-annotations: "true"
+  allow-snippet-annotations: "false"
   use-proxy-protocol: "true"
 kind: ConfigMap
 metadata:
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -564,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -613,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 2eaabad4f..8fbade4e2 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,7 +320,7 @@ subjects:
 ---
 apiVersion: v1
 data:
-  allow-snippet-annotations: "true"
+  allow-snippet-annotations: "false"
 kind: ConfigMap
 metadata:
   labels:
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -570,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -619,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -632,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index aefad5a33..3d12be236 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,7 +320,7 @@ subjects:
 ---
 apiVersion: v1
 data:
-  allow-snippet-annotations: "true"
+  allow-snippet-annotations: "false"
 kind: ConfigMap
 metadata:
   labels:
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -620,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -633,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index c52d3a24e..fc1ceb566 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,7 +320,7 @@ subjects:
 ---
 apiVersion: v1
 data:
-  allow-snippet-annotations: "true"
+  allow-snippet-annotations: "false"
 kind: ConfigMap
 metadata:
   labels:
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -565,7 +565,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -576,7 +576,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -614,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 8f64241ec..0d4f4baf0 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,7 +320,7 @@ subjects:
 ---
 apiVersion: v1
 data:
-  allow-snippet-annotations: "true"
+  allow-snippet-annotations: "false"
   use-proxy-protocol: "true"
 kind: ConfigMap
 metadata:
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -564,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.8.2
+        app.kubernetes.io/version: 1.9.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -613,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.8.2
+    app.kubernetes.io/version: 1.9.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 9a3e727fd..bd3936801 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -6,812 +6,552 @@ Do not try to edit it manually.
 # e2e test suite for [Ingress NGINX Controller](https://github.com/kubernetes/ingress-nginx/tree/main/)
 
 
-
-### [[Admission] admission controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L39)
-
-- [reject ingress with global-rate-limit annotations when memcached is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L47)
-- [should not allow overlaps of host and paths without canary annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L74)
-- [should allow overlaps of host and paths with canary annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L91)
-- [should block ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L112)
-- [should return an error if there is an error validating the ingress definition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L129)
-- [should return an error if there is an invalid value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L149)
-- [should return an error if there is a forbidden value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L163)
-- [should return an error if there is an invalid path and wrong pathType is set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L177)
-- [should not return an error if the Ingress V1 definition is valid with Ingress Class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L211)
-- [should not return an error if the Ingress V1 definition is valid with IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L227)
-- [should return an error if the Ingress V1 definition contains invalid annotations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L243)
-- [should not return an error for an invalid Ingress when it has unknown class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/admission/admission.go#L263)
-
-### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L43)
-
-- [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L50)
-- [should change cookie name on ingress definition change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L72)
-- [should set the path to /something on the generated cookie](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L107)
-- [does not set the path to / on the generated cookie if there's more than one rule referring to the same backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L129)
-- [should set cookie with expires](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L202)
-- [should set cookie with domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L234)
-- [should not set cookie without domain annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L257)
-- [should work with use-regex annotation and session-cookie-path](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L279)
-- [should warn user when use-regex is true and session-cookie-path is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L303)
-- [should not set affinity across all server locations when using separate ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L329)
-- [should set sticky cookie without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L361)
-- [should work with server-alias annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L381)
-- [should set secure in cookie with provided true annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L421)
-- [should not set secure in cookie with provided false annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L444)
-- [should set secure in cookie with provided false annotation on https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinity.go#L467)
-
-### [affinitymode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L33)
-
-- [Balanced affinity mode should balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L36)
-- [Check persistent affinity mode](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/affinitymode.go#L69)
-
-### [backend-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L29)
-
-- [should set backend protocol to https:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L36)
-- [should set backend protocol to $scheme:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L51)
-- [should set backend protocol to grpc:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L66)
-- [should set backend protocol to grpcs:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L81)
-- [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/backendprotocol.go#L96)
-
-### [client-body-buffer-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L30)
-
-- [should set client_body_buffer_size to 1000](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L37)
-- [should set client_body_buffer_size to 1K](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L59)
-- [should set client_body_buffer_size to 1k](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L81)
-- [should set client_body_buffer_size to 1m](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L103)
-- [should set client_body_buffer_size to 1M](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L125)
-- [should not set client_body_buffer_size to invalid 1b](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/clientbodybuffersize.go#L147)
-
-### [default-backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L29)
-
-- [should use a custom default backend as upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/default_backend.go#L37)
-
-### [proxy-ssl-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L32)
-
-- [should set valid proxy-ssl-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L39)
-- [should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L66)
-- [should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L96)
-- [should set valid proxy-ssl-secret, proxy-ssl-protocols](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L124)
-- [proxy-ssl-location-only flag should change the nginx config server part](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxyssl.go#L152)
-
-### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L45)
-
-- [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L52)
-- [should return status code 503 when authentication is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L71)
-- [should return status code 401 when authentication is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L95)
-- [should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L122)
-- [should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L150)
-- [should return status code 200 when authentication is configured and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L178)
-- [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L205)
-- [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L233)
-- [ when external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L272)
-- [ when external auth is not configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L298)
-- [ when auth-headers are set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L324)
-- [should set cache_key when external auth cache is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L345)
-- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L432)
-- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L443)
-- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L454)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L493)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L502)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L513)
-- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L537)
-- [should not create additional upstream block when auth-keepalive is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L560)
-- [should not create additional upstream block when host part of auth-url contains a variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L578)
-- [should not create additional upstream block when auth-keepalive is negative](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L598)
-- [should not create additional upstream block when auth-keepalive is set with HTTP/2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L617)
-- [should create additional upstream block when auth-keepalive is set with HTTP/1.x](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L631)
-- [should disable set_all_vars when auth-keepalive-share-vars is not set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L653)
-- [should enable set_all_vars when auth-keepalive-share-vars is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L672)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L713)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L722)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L733)
-- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L792)
-- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L812)
-- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L840)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L869)
-- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L899)
-- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/auth.go#L907)
-
-### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L39)
-
-- [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L46)
-- [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L64)
-- [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L85)
-- [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L102)
-- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L130)
-- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L153)
-- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L175)
-- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L214)
-- [should enable modsecurity when enable-owasp-modsecurity-crs is set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L253)
-- [should enable modsecurity through the config map](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L292)
-- [should enable modsecurity through the config map but ignore snippet as disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L338)
-- [should disable default modsecurity conf setting when modsecurity-snippet is specified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/modsecurity/modsecurity.go#L380)
-
-### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L30)
-
-- [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L37)
-- [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L54)
-- [should add fastcgi_param in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L71)
-- [should return OK for service with backend protocol FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fastcgi.go#L102)
-
-### [from-to-www-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L31)
-
-- [should redirect from www HTTP to HTTP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L38)
-- [should redirect from www HTTPS to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/fromtowwwredirect.go#L64)
-
-### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L40)
-
-- [should use grpc_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L43)
-- [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L68)
-- [authorization metadata should be overwritten by external auth response headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L128)
-- [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/grpc.go#L189)
-
-### [configuration-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L28)
-
-- [set snippet more_set_headers in all locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L34)
-- [drops snippet more_set_header in all locations if disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/snippet.go#L73)
-
-### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L28)
-
-- [should change ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/sslciphers.go#L35)
-
-### [upstream-vhost](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L27)
-
-- [set host to upstreamvhost.bar.com](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamvhost.go#L34)
-
-### [x-forwarded-prefix](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L28)
-
-- [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L35)
-- [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/xforwardedprefix.go#L57)
-
-### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L32)
-
-- [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L39)
-- [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L68)
-- [should use ~* location modifier if regex annotation is present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L113)
-- [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L160)
-- [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/rewrite.go#L192)
-
-### [service-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L32)
-
-- [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L41)
-- [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L69)
-- [should not use the Service Cluster IP and Port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serviceupstream.go#L97)
-
-### [server-alias](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L31)
-
-- [should return status code 200 for host 'foo' and 404 for 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L38)
-- [should return status code 200 for host 'foo' and 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L64)
-- [should return status code 200 for hosts defined in two ingresses, different path with one alias](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/alias.go#L89)
-
-### [auth-tls-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L31)
-
-- [should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L38)
-- [should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L86)
-- [should 302 redirect to error page instead of 400 when auth-tls-error-page is set](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L116)
-- [should pass URL-encoded certificate to upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L163)
-- [should validate auth-tls-verify-client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L208)
-- [should return 403 using auth-tls-match-cn with no matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L267)
-- [should return 200 using auth-tls-match-cn with matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L296)
-- [should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/authtls.go#L325)
-
-### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L36)
-
-- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L45)
-- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L89)
-- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L120)
-- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L174)
-- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L232)
-- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L289)
-- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L363)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L445)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L513)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L594)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L647)
-- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L692)
-- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L741)
-- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L790)
-- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L862)
-- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L910)
-- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L952)
-- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L995)
-- [should route requests split between mainline and canary if canary weight is 100 and weight total is 200](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1031)
-- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1070)
-- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1104)
-- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1138)
-- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1175)
-- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1242)
-- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/canary.go#L1310)
-
-### [cors-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L33)
-
-- [should enable cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L40)
-- [should set cors methods to only allow POST, GET](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L67)
-- [should set cors max-age](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L83)
-- [should disable cors allow credentials](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L99)
-- [should allow origin for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L115)
-- [should allow headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L142)
-- [should expose headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L158)
-- [should allow - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L174)
-- [should not allow - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L201)
-- [should allow correct origins - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L221)
-- [should not break functionality](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L272)
-- [](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L296)
-- [should not break functionality with extra domain](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L319)
-- [should not match](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L343)
-- [should allow - single origin with required port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L363)
-- [should not allow - single origin with port and origin without port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L391)
-- [should not allow - single origin without port and origin with required port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L410)
-- [should allow - matching origin with wildcard origin (2 subdomains)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L430)
-- [should not allow - unmatching origin with wildcard origin (2 subdomains)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L473)
-- [should allow - matching origin+port with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L493)
-- [should not allow - portless origin with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L520)
-- [should allow correct origins - missing subdomain + origin with wildcard origin and correct origin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L540)
-- [should allow - missing origins (should allow all origins)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/cors.go#L576)
-
-### [custom-http-errors](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L34)
-
-- [configures Nginx correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/customhttperrors.go#L41)
-
-### [server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L28)
-
-- [add valid directives to server via server snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L35)
-- [drops server snippet if disabled by the administrator](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/serversnippet.go#L70)
-
-### [stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L34)
-
-- [should add value of stream-snippet to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L41)
-- [should add stream-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/streamsnippet.go#L94)
-
-### [app-root](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L28)
-
-- [should redirect to /foo](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/approot.go#L35)
-
-### [connection-proxy-header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L28)
-
-- [set connection header to keep-alive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/connection.go#L35)
-
-### [disable-access-log disable-http-access-log disable-stream-access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L28)
-
-- [disable-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L35)
-- [disable-http-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L53)
-- [disable-stream-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/disableaccesslog.go#L71)
-
-### [force-ssl-redirect](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L27)
-
-- [should redirect to https](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/forcesslredirect.go#L34)
-
-### [http2-push-preload](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L27)
-
-- [enable the http2-push-preload directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/http2pushpreload.go#L34)
-
-### [denylist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L28)
-
-- [only deny explicitly denied IPs, allow all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L35)
-- [only allow explicitly allowed IPs, deny all others](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipdenylist.go#L86)
-
-### [Annotation - limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L31)
-
-- [should limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitconnections.go#L38)
-
-### [limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L29)
-
-- [Check limit-rate annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/limitrate.go#L37)
-
-### [enable-access-log enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L27)
-
-- [set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L34)
-- [set rewrite_log on](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/log.go#L49)
-
-### [mirror-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L28)
-
-- [should set mirror-target to http://localhost/mirror](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L36)
-- [should set mirror-target to https://test.env.com/$request_uri](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L51)
-- [should disable mirror-request-body](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/mirror.go#L67)
-
-### [preserve-trailing-slash](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L27)
-
-- [should allow preservation of trailing slashes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/preservetrailingslash.go#L34)
-
-### [permanent-redirect permanent-redirect-code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L30)
-
-- [should respond with a standard redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L33)
-- [should respond with a custom redirect code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/redirect.go#L61)
-
-### [satisfy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L33)
-
-- [should configure satisfy directive correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L40)
-- [should allow multiple auth with satisfy any](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/satisfy.go#L82)
-
-### [annotation-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L30)
-
-- [generates correct configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/globalratelimit.go#L38)
-
-### [proxy-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L30)
-
-- [should set proxy_redirect to off](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L38)
-- [should set proxy_redirect to default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L54)
-- [should set proxy_redirect to hello.com goodbye.com](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L70)
-- [should set proxy client-max-body-size to 8m](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L87)
-- [should not set proxy client-max-body-size to incorrect value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L102)
-- [should set valid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L117)
-- [should not set invalid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L138)
-- [should turn on proxy-buffering](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L159)
-- [should turn off proxy-request-buffering](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L181)
-- [should build proxy next upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L196)
-- [should setup proxy cookies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L217)
-- [should change the default proxy HTTP version](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/proxy.go#L235)
-
-### [upstream-hash-by-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L79)
-
-- [should connect to the same pod](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L86)
-- [should connect to the same subset of pods](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/upstreamhashby.go#L95)
-
-### [allowlist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipallowlist.go#L27)
-
-- [should set valid ip allowlist range](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/annotations/ipallowlist.go#L34)
-
-### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L29)
-
-- [should list the backend servers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L37)
-- [should get information for a specific backend server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L56)
-- [should produce valid JSON for /dbg general](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/dbg/main.go#L85)
-
-### [[Default Backend] custom service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L33)
-
-- [uses custom default backend that returns 200 as status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/custom_default_backend.go#L36)
-
-### [[Default Backend] SSL](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L26)
-
-- [should return a self generated SSL certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/ssl.go#L29)
-
-### [[Default Backend] change default settings](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L30)
-
-- [should apply the annotation to the default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/with_hosts.go#L38)
-
-### [[Default Backend]](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L30)
-
-- [should return 404 sending requests when only a default backend is running](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L33)
-- [enables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L88)
-- [disables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/defaultbackend/default_backend.go#L105)
-
-### [[Endpointslices] long service name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L29)
-
-- [should return 200 when service name has max allowed number of characters 63](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/longname.go#L38)
-
-### [[TopologyHints] topology aware routing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L34)
-
-- [should return 200 when service has topology hints](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/endpointslices/topology.go#L42)
-
-### [[Shutdown] ingress controller](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L30)
-
-- [should shutdown in less than 60 secons without pending connections](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L40)
-- [should shutdown after waiting 60 seconds for pending connections to be closed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L61)
-- [should shutdown after waiting 150 seconds for pending connections to be closed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/shutdown.go#L106)
-
-### [[Shutdown] Graceful shutdown with pending request](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L25)
-
-- [should let slow requests finish before shutting down](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/slow_requests.go#L33)
-
-### [[Shutdown] Grace period shutdown](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L32)
-
-- [/healthz should return status code 500 during shutdown grace period](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/gracefulshutdown/grace_period.go#L35)
-
-### [[Ingress] DeepInspection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L27)
-
-- [should drop whole ingress if one path matches invalid regex](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/deep_inspection.go#L34)
-
-### [[Ingress] [PathType] prefix checks](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L28)
-
-- [should return 404 when prefix /aaa does not match request /aaaccc](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_prefix.go#L35)
-
-### [[Ingress] definition without host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L31)
-
-- [should set ingress details variables for ingresses without a host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L34)
-- [should set ingress details variables for ingresses with host without IngressRuleValue, only Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/without_host.go#L55)
-
-### [single ingress - multiple hosts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L30)
-
-- [should set the correct $service_name NGINX variable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/multiple_rules.go#L38)
-
-### [[Ingress] [PathType] exact](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L30)
-
-- [should choose exact location for /exact](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_exact.go#L37)
-
-### [[Ingress] [PathType] mix Exact and Prefix paths](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L30)
-
-- [should choose the correct location](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ingress/pathtype_mixed.go#L39)
-
-### [[Memory Leak] Dynamic Certificates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L35)
-
-- [should not leak memory from ingress SSL certificates or configuration updates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/leaks/lua_ssl.go#L42)
-
-### [[Load Balancer] load-balance](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L30)
-
-- [should apply the configmap load-balance setting](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/configmap.go#L37)
-
-### [[Load Balancer] EWMA](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L31)
-
-- [does not fail requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/ewma.go#L43)
-
-### [[Load Balancer] round-robin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L31)
-
-- [should evenly distribute requests with round-robin (default algorithm)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/loadbalance/round_robin.go#L39)
-
-### [[Lua] dynamic certificates](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L37)
-
-- [picks up the certificate when we add TLS spec to existing ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L45)
-- [picks up the previously missing secret for a given ingress without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L70)
-- [supports requests with domain with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L145)
-- [picks up the updated certificate without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L149)
-- [falls back to using default certificate when secret gets deleted without reloading](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L185)
-- [picks up a non-certificate only change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L218)
-- [removes HTTPS configuration when we delete TLS spec](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_certificates.go#L233)
-
-### [[Lua] dynamic configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L41)
-
-- [configures balancer Lua middleware correctly](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L49)
-- [handles endpoints only changes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L61)
-- [handles endpoints only changes (down scaling of replicas)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L86)
-- [handles endpoints only changes consistently (down scaling of replicas vs. empty service)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L124)
-- [handles an annotation change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/lua/dynamic_configuration.go#L170)
-
-### [[metrics] exported prometheus metrics](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L36)
-
-- [exclude socket request metrics are absent](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L50)
-- [exclude socket request metrics are present](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/metrics/metrics.go#L72)
-
-### [nginx-configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L99)
-
-- [start nginx with default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L102)
-- [fails when using alias directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L114)
-- [fails when using root directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/nginx/nginx.go#L121)
-
-### [[Security] request smuggling](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L32)
-
-- [should not return body content from error_page](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/security/request_smuggling.go#L39)
-
-### [[Service] backend status code 503](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L34)
-
-- [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L37)
-- [should return 503 when all backend service endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_backend.go#L55)
-
-### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L38)
-
-- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L41)
-- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L78)
-- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L118)
-- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L148)
-- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L184)
-- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L225)
-- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L261)
-- [should sync ingress on external name service addition/deletion](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_externalname.go#L344)
-
-### [[Service] Nil Service Backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L31)
-
-- [should return 404 when backend service is nil](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/servicebackend/service_nil_backend.go#L38)
-
-### [proxy-next-upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L28)
-
-- [should build proxy next upstream using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_next_upstream.go#L36)
-
-### [reuse-port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L27)
-
-- [reuse port should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L38)
-- [reuse port should be disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L44)
-- [reuse port should be enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/reuse-port.go#L52)
-
-### [server-tokens](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L29)
-
-- [should not exists Server header in the response](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L38)
-- [should exists Server header in the response when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_tokens.go#L50)
-
-### [keep-alive keep-alive-requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L28)
-
-- [should set keepalive_timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L40)
-- [should set keepalive_requests](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L48)
-- [should set keepalive connection to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L58)
-- [should set keep alive connection timeout to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L68)
-- [should set keepalive time to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L78)
-- [should set the request count to upstream server through one keep alive connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/keep-alive.go#L88)
-
-### [log-format-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L28)
-
-- [should not configure log-format escape by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L39)
-- [should enable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L46)
-- [should disable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L54)
-- [should enable the log-format-escape-none](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L62)
-- [should disable the log-format-escape-none](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L70)
-- [log-format-escape-json enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L80)
-- [log-format default escape](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L103)
-- [log-format-escape-none enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/log-format.go#L126)
-
-### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L33)
-
-- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L54)
-- [should return status code 200 when accessing '/' authentication](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L68)
-- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_auth_locations.go#L82)
-
-### [Configure Opentelemetry](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L39)
-
-- [should not exists opentelemetry directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L49)
-- [should exists opentelemetry directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L62)
-- [should include opentelemetry_trust_incoming_spans on directive when enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L76)
-- [should not exists opentelemetry_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L91)
-- [should exists opentelemetry_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentelemetry.go#L106)
-
-### [Configure OpenTracing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L52)
-
-- [should not exists opentracing directive](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L62)
-- [should exists opentracing directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L75)
-- [should include opentracing_trust_incoming_span off directive when disabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L89)
-- [should not exists opentracing_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L104)
-- [should exists opentracing_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L119)
-- [should not exists opentracing_location_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L134)
-- [should exists opentracing_location_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L149)
-- [should enable opentracing using zipkin](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L164)
-- [should enable opentracing using jaeger](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L176)
-- [should enable opentracing using jaeger with sampler host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L188)
-- [should propagate the w3c header when configured with jaeger](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L201)
-- [should enable opentracing using jaeger with an HTTP endpoint](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L232)
-- [should enable opentracing using datadog](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/opentracing.go#L245)
-
-### [[Security] Pod Security Policies with volumes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L37)
-
-- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy_volumes.go#L40)
-
-### [[SSL] TLS protocols, ciphers and headers)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L31)
-
-- [setting cipher suite](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L65)
-- [setting max-age parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L109)
-- [setting includeSubDomains parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L125)
-- [setting preload parameter](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L144)
-- [overriding what's set from the upstream](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L164)
-- [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L186)
-- [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/tls.go#L204)
-
-### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L30)
-
-- [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/globalratelimit.go#L38)
-
-### [proxy-connect-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L29)
-
-- [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L37)
-- [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_connect_timeout.go#L53)
-
-### [With enable-ssl-passthrough enabled](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L36)
-
-- [should enable ssl-passthrough-proxy-port on a different port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L56)
-- [should pass unknown traffic to default backend and handle known traffic](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_passthrough.go#L78)
-
-### [[Lua] lua-shared-dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L26)
-
-- [configures lua shared dicts](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/lua_shared_dicts.go#L29)
-
-### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
-
-- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
-
-### [[Flag] ingress-class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L41)
-
-- [should ignore Ingress with a different class annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L70)
-- [should ignore Ingress with different controller class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L106)
-- [should accept both Ingresses with default IngressClassName and IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L134)
-- [should ignore Ingress without IngressClass configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L166)
-- [should delete Ingress when class is removed](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L194)
-- [should serve Ingress when class is added](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L259)
-- [should serve Ingress when class is updated between annotation and ingressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L325)
-- [should ignore Ingress with no class and accept the correctly configured Ingresses](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L414)
-- [should watch Ingress with no class and ignore ingress with a different class](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L482)
-- [should watch Ingress that uses the class name even if spec is different](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L538)
-- [should watch Ingress with correct annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L628)
-- [should ignore Ingress with only IngressClassName](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ingress_class.go#L648)
-
-### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L42)
-
-- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ocsp/ocsp.go#L49)
-
-### [plugins](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L28)
-
-- [should exist a x-hello-world header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/plugins.go#L35)
-
-### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L28)
-
-- [Add ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/ssl_ciphers.go#L31)
-
-### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L35)
-
-- [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/stream_snippet.go#L42)
-
-### [[Flag] watch namespace selector](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L30)
-
-- [should ignore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/namespace_selector.go#L62)
-
-### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L27)
-
-- [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/no_tls_redirect_locations.go#L30)
-
-### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L38)
-
-- [should respect port passed by the PROXY Protocol](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L48)
-- [should respect proto passed by the PROXY Protocol server port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L85)
-- [should enable PROXY Protocol for HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L121)
-- [should enable PROXY Protocol for TCP](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_protocol.go#L164)
-
-### [proxy-read-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L29)
-
-- [should set valid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L37)
-- [should not set invalid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_read_timeout.go#L53)
-
-### [proxy-send-timeout](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L29)
-
-- [should set valid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L37)
-- [should not set invalid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_send_timeout.go#L53)
-
-### [Bad annotation values](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L29)
-
-- [[BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L36)
-- [[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L75)
-- [[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L119)
-- [[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/badannotationvalues.go#L157)
-
-### [Geoip2](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L36)
-
-- [should include geoip2 line in config when enabled and db file exists](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L45)
-- [should only allow requests from specific countries](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/geoip2.go#L69)
-
-### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L28)
-
-- [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L36)
-- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/proxy_host.go#L65)
-
-### [annotation validations](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/validations/validations.go#L30)
-
-- [should allow ingress based on their risk on webhooks](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/validations/validations.go#L33)
-- [should allow ingress based on their risk on webhooks](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/validations/validations.go#L68)
-
-### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L31)
-
-- [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L41)
-- [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/forwarded_headers.go#L93)
-
-### [global-options](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L28)
-
-- [should have worker_rlimit_nofile option](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L31)
-- [should have worker_rlimit_nofile option and be independent on amount of worker processes](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_options.go#L37)
-
-### [hash size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L27)
-
-- [should set server_names_hash_bucket_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L39)
-- [should set server_names_hash_max_size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L47)
-- [should set proxy-headers-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L57)
-- [should set proxy-headers-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L65)
-- [should set variables-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L75)
-- [should set variables-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L83)
-- [should set vmap-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/hash-size.go#L93)
-
-### [[Flag] custom HTTP and HTTPS ports](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L30)
-
-- [should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L45)
-- [should set X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L65)
-- [should set the X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/listen_nondefault_ports.go#L93)
-
-### [brotli](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L30)
-
-- [ condition](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/brotli.go#L38)
-
-### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L29)
-
-- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/configmap_change.go#L36)
-
-### [add-headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L30)
-
-- [Add a custom header](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L40)
-- [Add multiple custom headers](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/custom_header.go#L65)
-
-### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L30)
-
-- [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L40)
-- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/enable_real_ip.go#L78)
-
-### [[Security] block-*](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L28)
-
-- [should block CIDRs defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L38)
-- [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L55)
-- [should block Referers defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_access_block.go#L88)
-
-### [gzip](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L29)
-
-- [should be disabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L32)
-- [should be enabled with default settings](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L39)
-- [should set gzip_comp_level to 4](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L56)
-- [should set gzip_disable to msie6](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L67)
-- [should set gzip_min_length to 100](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L78)
-- [should set gzip_types to application/javascript](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/gzip.go#L89)
-
-### [Configmap - limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L28)
-
-- [Check limit-rate config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/limit_rate.go#L36)
-
-### [main-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L27)
-
-- [should add value of main-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/main_snippet.go#L31)
-
-### [enable-multi-accept](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L27)
-
-- [should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L31)
-- [should be enabled when set to true](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L39)
-- [should be disabled when set to false](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/multi_accept.go#L49)
-
-### [[Security] Pod Security Policies](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L41)
-
-- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/pod_security_policy.go#L44)
-
-### [configmap server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L28)
-
-- [should add value of server-snippet setting to all ingress config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L35)
-- [should add global server-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/server_snippet.go#L98)
-
-### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L27)
-
-- [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L31)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L41)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L52)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L64)
-- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/access_log.go#L76)
-
-### [[SSL] [Flag] default-ssl-certificate](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L35)
-
-- [uses default ssl certificate for catch-all ingress](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L66)
-- [uses default ssl certificate for host based ingress when configured certificate does not match host](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/default_ssl_certificate.go#L82)
-
-### [[Flag] disable-catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L33)
-
-- [should ignore catch all Ingress with backend](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L50)
-- [should ignore catch all Ingress with backend and rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L69)
-- [should delete Ingress updated to catch-all](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L81)
-- [should allow Ingress with rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_catch_all.go#L123)
-
-### [[Flag] disable-service-external-name](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L35)
-
-- [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_service_external_name.go#L55)
-
-### [[Flag] disable-sync-events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L32)
-
-- [should create sync events (default)](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L35)
-- [should create sync events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L54)
-- [should not create sync events](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/disable_sync_events.go#L82)
-
-### [[Security] global-auth-url](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L39)
-
-- [should return status code 401 when request any protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L91)
-- [should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L107)
-- [should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L130)
-- [should still return status code 200 after auth backend is deleted using cache](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L158)
-- [should proxy_method method when global-auth-method is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L199)
-- [should add custom error page when global-auth-signin url is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L211)
-- [should add auth headers when global-auth-response-headers is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L223)
-- [should set request-redirect when global-auth-request-redirect is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L236)
-- [should set snippet when global external auth is configured](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L248)
-- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L322)
-- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L333)
-- [user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/settings/global_external_auth.go#L344)
-
-### [[SSL] redirect to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L29)
-
-- [should redirect from HTTP to HTTPS when secret is missing](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/http_redirect.go#L36)
-
-### [[SSL] secret update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L33)
-
-- [should not appear references to secret updates not used in ingress rules](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L40)
-- [should return the fake SSL certificate if the secret is invalid](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/ssl/secret_update.go#L83)
-
-### [[Status] status update](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L38)
-
-- [should update status field after client-go reconnection](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/status/update.go#L43)
-
-### [[TCP] tcp-services](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L38)
-
-- [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L46)
-- [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L80)
-- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main/test/e2e/tcpudp/tcp.go#L169)
+### [[Admission] admission controller](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L39)
+- [reject ingress with global-rate-limit annotations when memcached is not configured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L47)
+- [should not allow overlaps of host and paths without canary annotations](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L74)
+- [should allow overlaps of host and paths with canary annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L91)
+- [should block ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L112)
+- [should return an error if there is an error validating the ingress definition](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L129)
+- [should return an error if there is an invalid value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L149)
+- [should return an error if there is a forbidden value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L163)
+- [should return an error if there is an invalid path and wrong pathType is set](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L177)
+- [should not return an error if the Ingress V1 definition is valid with Ingress Class](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L211)
+- [should not return an error if the Ingress V1 definition is valid with IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L227)
+- [should return an error if the Ingress V1 definition contains invalid annotations](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L243)
+- [should not return an error for an invalid Ingress when it has unknown class](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L263)
+### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L43)
+- [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L50)
+- [should change cookie name on ingress definition change](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L72)
+- [should set the path to /something on the generated cookie](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L107)
+- [does not set the path to / on the generated cookie if there's more than one rule referring to the same backend](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L129)
+- [should set cookie with expires](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L202)
+- [should set cookie with domain](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L234)
+- [should not set cookie without domain annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L257)
+- [should work with use-regex annotation and session-cookie-path](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L279)
+- [should warn user when use-regex is true and session-cookie-path is not set](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L303)
+- [should not set affinity across all server locations when using separate ingresses](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L329)
+- [should set sticky cookie without host](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L361)
+- [should work with server-alias annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L381)
+- [should set secure in cookie with provided true annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L421)
+- [should not set secure in cookie with provided false annotation on http](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L444)
+- [should set secure in cookie with provided false annotation on https](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L467)
+### [affinitymode](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinitymode.go#L33)
+- [Balanced affinity mode should balance](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinitymode.go#L36)
+- [Check persistent affinity mode](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinitymode.go#L69)
+### [server-alias](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/alias.go#L31)
+- [should return status code 200 for host 'foo' and 404 for 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/alias.go#L38)
+- [should return status code 200 for host 'foo' and 'bar'](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/alias.go#L64)
+- [should return status code 200 for hosts defined in two ingresses, different path with one alias](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/alias.go#L89)
+### [app-root](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/approot.go#L28)
+- [should redirect to /foo](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/approot.go#L35)
+### [auth-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L45)
+- [should return status code 200 when no authentication is configured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L52)
+- [should return status code 503 when authentication is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L71)
+- [should return status code 401 when authentication is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L95)
+- [should return status code 401 when authentication is configured and Authorization header is sent with invalid credentials](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L122)
+- [should return status code 401 and cors headers when authentication and cors is configured but Authorization header is not configured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L150)
+- [should return status code 200 when authentication is configured and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L178)
+- [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L205)
+- [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L233)
+- [proxy_set_header My-Custom-Header 42;](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L272)
+- [proxy_set_header My-Custom-Header 42;](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L298)
+- [proxy_set_header 'My-Custom-Header' '42';](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L324)
+- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L432)
+- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L443)
+- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L454)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L493)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L502)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L513)
+- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L537)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L713)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L722)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L733)
+- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L792)
+- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L812)
+- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L840)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L869)
+- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L899)
+- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L907)
+### [auth-tls-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L31)
+- [should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L38)
+- [should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L86)
+- [should 302 redirect to error page instead of 400 when auth-tls-error-page is set](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L116)
+- [should pass URL-encoded certificate to upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L163)
+- [should validate auth-tls-verify-client](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L208)
+- [should return 403 using auth-tls-match-cn with no matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L267)
+- [should return 200 using auth-tls-match-cn with matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L296)
+- [should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L325)
+### [backend-protocol](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L29)
+- [should set backend protocol to https:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L36)
+- [should set backend protocol to $scheme:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L51)
+- [should set backend protocol to grpc:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L66)
+- [should set backend protocol to grpcs:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L81)
+- [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L96)
+### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L36)
+- [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L45)
+- [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L89)
+- [should return the correct status codes when endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L120)
+- [should route requests to the correct upstream if mainline ingress is created before the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L174)
+- [should route requests to the correct upstream if mainline ingress is created after the canary ingress](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L232)
+- [should route requests to the correct upstream if the mainline ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L289)
+- [should route requests to the correct upstream if the canary ingress is modified](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L363)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L445)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L513)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L594)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L647)
+- [should routes to mainline upstream when the given Regex causes error](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L692)
+- [should route requests to the correct upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L741)
+- [respects always and never values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L790)
+- [should route requests only to mainline if canary weight is 0](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L862)
+- [should route requests only to canary if canary weight is 100](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L910)
+- [should route requests only to canary if canary weight is equal to canary weight total](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L952)
+- [should route requests split between mainline and canary if canary weight is 50](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L995)
+- [should route requests split between mainline and canary if canary weight is 100 and weight total is 200](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L1031)
+- [should not use canary as a catch-all server](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L1070)
+- [should not use canary with domain as a server](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L1104)
+- [does not crash when canary ingress has multiple paths to the same non-matching backend](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L1138)
+- [always routes traffic to canary if first request was affinitized to canary (default behavior)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L1175)
+- [always routes traffic to canary if first request was affinitized to canary (explicit sticky behavior)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L1242)
+- [routes traffic to either mainline or canary backend (legacy behavior)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L1310)
+### [client-body-buffer-size](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/clientbodybuffersize.go#L30)
+- [should set client_body_buffer_size to 1000](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/clientbodybuffersize.go#L37)
+- [should set client_body_buffer_size to 1K](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/clientbodybuffersize.go#L59)
+- [should set client_body_buffer_size to 1k](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/clientbodybuffersize.go#L81)
+- [should set client_body_buffer_size to 1m](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/clientbodybuffersize.go#L103)
+- [should set client_body_buffer_size to 1M](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/clientbodybuffersize.go#L125)
+- [should not set client_body_buffer_size to invalid 1b](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/clientbodybuffersize.go#L147)
+### [connection-proxy-header](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/connection.go#L28)
+- [set connection header to keep-alive](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/connection.go#L35)
+### [cors-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L33)
+- [should enable cors](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L40)
+- [should set cors methods to only allow POST, GET](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L67)
+- [should set cors max-age](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L83)
+- [should disable cors allow credentials](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L99)
+- [should allow origin for cors](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L115)
+- [should allow headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L142)
+- [should expose headers for cors](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L158)
+- [should allow - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L174)
+- [should not allow - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L201)
+- [should allow correct origins - single origin for multiple cors values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L221)
+- [should not break functionality](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L272)
+- [should not break functionality - without `*`](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L296)
+- [should not break functionality with extra domain](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L319)
+- [should not match](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L343)
+- [should allow - single origin with required port](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L363)
+- [should not allow - single origin with port and origin without port](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L391)
+- [should not allow - single origin without port and origin with required port](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L410)
+- [should allow - matching origin with wildcard origin (2 subdomains)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L430)
+- [should not allow - unmatching origin with wildcard origin (2 subdomains)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L473)
+- [should allow - matching origin+port with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L493)
+- [should not allow - portless origin with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L520)
+- [should allow correct origins - missing subdomain + origin with wildcard origin and correct origin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L540)
+- [should allow - missing origins (should allow all origins)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L576)
+### [custom-http-errors](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/customhttperrors.go#L34)
+- [configures Nginx correctly](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/customhttperrors.go#L41)
+### [default-backend](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/default_backend.go#L29)
+- [should use a custom default backend as upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/default_backend.go#L37)
+### [disable-access-log disable-http-access-log disable-stream-access-log](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/disableaccesslog.go#L28)
+- [disable-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/disableaccesslog.go#L35)
+- [disable-http-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/disableaccesslog.go#L53)
+- [disable-stream-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/disableaccesslog.go#L71)
+### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fastcgi.go#L30)
+- [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fastcgi.go#L37)
+- [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fastcgi.go#L54)
+- [should add fastcgi_param in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fastcgi.go#L71)
+- [should return OK for service with backend protocol FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fastcgi.go#L102)
+### [force-ssl-redirect](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/forcesslredirect.go#L27)
+- [should redirect to https](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/forcesslredirect.go#L34)
+### [from-to-www-redirect](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fromtowwwredirect.go#L31)
+- [should redirect from www HTTP to HTTP](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fromtowwwredirect.go#L38)
+- [should redirect from www HTTPS to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fromtowwwredirect.go#L64)
+### [annotation-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/globalratelimit.go#L30)
+- [generates correct configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/globalratelimit.go#L38)
+### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L40)
+- [should use grpc_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L43)
+- [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L68)
+- [authorization metadata should be overwritten by external auth response headers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L128)
+- [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L189)
+### [http2-push-preload](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/http2pushpreload.go#L27)
+- [enable the http2-push-preload directive](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/http2pushpreload.go#L34)
+### [allowlist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/ipallowlist.go#L27)
+- [should set valid ip allowlist range](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/ipallowlist.go#L34)
+### [denylist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/ipdenylist.go#L28)
+- [only deny explicitly denied IPs, allow all others](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/ipdenylist.go#L35)
+- [only allow explicitly allowed IPs, deny all others](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/ipdenylist.go#L86)
+### [Annotation - limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/limitconnections.go#L31)
+- [should limit-connections](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/limitconnections.go#L38)
+### [limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/limitrate.go#L29)
+- [Check limit-rate annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/limitrate.go#L37)
+### [enable-access-log enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/log.go#L27)
+- [set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/log.go#L34)
+- [set rewrite_log on](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/log.go#L49)
+### [mirror-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/mirror.go#L28)
+- [should set mirror-target to http://localhost/mirror](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/mirror.go#L36)
+- [should set mirror-target to https://test.env.com/$request_uri](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/mirror.go#L51)
+- [should disable mirror-request-body](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/mirror.go#L67)
+### [modsecurity owasp](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L39)
+- [should enable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L46)
+- [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L64)
+- [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L85)
+- [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L102)
+- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L130)
+- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L153)
+- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L175)
+- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L214)
+- [should enable modsecurity when enable-owasp-modsecurity-crs is set to true](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L253)
+- [should enable modsecurity through the config map](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L292)
+- [should enable modsecurity through the config map but ignore snippet as disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L338)
+- [should disable default modsecurity conf setting when modsecurity-snippet is specified](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L380)
+### [preserve-trailing-slash](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/preservetrailingslash.go#L27)
+- [should allow preservation of trailing slashes](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/preservetrailingslash.go#L34)
+### [proxy-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L30)
+- [should set proxy_redirect to off](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L38)
+- [should set proxy_redirect to default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L54)
+- [should set proxy_redirect to hello.com goodbye.com](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L70)
+- [should set proxy client-max-body-size to 8m](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L87)
+- [should not set proxy client-max-body-size to incorrect value](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L102)
+- [should set valid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L117)
+- [should not set invalid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L138)
+- [should turn on proxy-buffering](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L159)
+- [should turn off proxy-request-buffering](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L181)
+- [should build proxy next upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L196)
+- [should setup proxy cookies](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L217)
+- [should change the default proxy HTTP version](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L235)
+### [proxy-ssl-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxyssl.go#L32)
+- [should set valid proxy-ssl-secret](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxyssl.go#L39)
+- [should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxyssl.go#L66)
+- [should set valid proxy-ssl-secret, proxy-ssl-ciphers to HIGH:!AES](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxyssl.go#L96)
+- [should set valid proxy-ssl-secret, proxy-ssl-protocols](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxyssl.go#L124)
+- [proxy-ssl-location-only flag should change the nginx config server part](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxyssl.go#L152)
+### [permanent-redirect permanent-redirect-code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/redirect.go#L30)
+- [should respond with a standard redirect code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/redirect.go#L33)
+- [should respond with a custom redirect code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/redirect.go#L61)
+### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/rewrite.go#L32)
+- [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/rewrite.go#L39)
+- [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/rewrite.go#L68)
+- [should use ~* location modifier if regex annotation is present](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/rewrite.go#L113)
+- [should fail to use longest match for documented warning](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/rewrite.go#L160)
+- [should allow for custom rewrite parameters](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/rewrite.go#L192)
+### [satisfy](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/satisfy.go#L33)
+- [should configure satisfy directive correctly](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/satisfy.go#L40)
+- [should allow multiple auth with satisfy any](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/satisfy.go#L82)
+### [server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/serversnippet.go#L28)
+### [service-upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/serviceupstream.go#L32)
+- [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/serviceupstream.go#L41)
+- [should use the Service Cluster IP and Port ](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/serviceupstream.go#L69)
+- [should not use the Service Cluster IP and Port](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/serviceupstream.go#L97)
+### [configuration-snippet](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/snippet.go#L28)
+- [set snippet more_set_headers in all locations](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/snippet.go#L34)
+- [drops snippet more_set_header in all locations if disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/snippet.go#L73)
+### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/sslciphers.go#L28)
+- [should change ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/sslciphers.go#L35)
+### [stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/streamsnippet.go#L34)
+- [should add value of stream-snippet to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/streamsnippet.go#L41)
+- [should add stream-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/streamsnippet.go#L94)
+### [upstream-hash-by-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/upstreamhashby.go#L79)
+- [should connect to the same pod](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/upstreamhashby.go#L86)
+- [should connect to the same subset of pods](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/upstreamhashby.go#L95)
+### [upstream-vhost](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/upstreamvhost.go#L27)
+- [set host to upstreamvhost.bar.com](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/upstreamvhost.go#L34)
+### [x-forwarded-prefix](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/xforwardedprefix.go#L28)
+- [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/xforwardedprefix.go#L35)
+- [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/xforwardedprefix.go#L57)
+### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/dbg/main.go#L29)
+- [should list the backend servers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/dbg/main.go#L37)
+- [should get information for a specific backend server](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/dbg/main.go#L56)
+- [should produce valid JSON for /dbg general](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/dbg/main.go#L85)
+### [[Default Backend] custom service](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/defaultbackend/custom_default_backend.go#L33)
+- [uses custom default backend that returns 200 as status code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/defaultbackend/custom_default_backend.go#L36)
+### [[Default Backend]](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/defaultbackend/default_backend.go#L30)
+- [should return 404 sending requests when only a default backend is running](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/defaultbackend/default_backend.go#L33)
+- [enables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/defaultbackend/default_backend.go#L88)
+- [disables access logging for default backend](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/defaultbackend/default_backend.go#L105)
+### [[Default Backend] SSL](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/defaultbackend/ssl.go#L26)
+- [should return a self generated SSL certificate](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/defaultbackend/ssl.go#L29)
+### [[Default Backend] change default settings](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/defaultbackend/with_hosts.go#L30)
+- [should apply the annotation to the default backend](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/defaultbackend/with_hosts.go#L38)
+### [[Endpointslices] long service name](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/endpointslices/longname.go#L29)
+- [should return 200 when service name has max allowed number of characters 63](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/endpointslices/longname.go#L38)
+### [[TopologyHints] topology aware routing](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/endpointslices/topology.go#L34)
+- [should return 200 when service has topology hints](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/endpointslices/topology.go#L42)
+### [[Shutdown] Grace period shutdown](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/gracefulshutdown/grace_period.go#L32)
+- [/healthz should return status code 500 during shutdown grace period](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/gracefulshutdown/grace_period.go#L35)
+### [[Shutdown] ingress controller](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/gracefulshutdown/shutdown.go#L30)
+- [should shutdown in less than 60 secons without pending connections](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/gracefulshutdown/shutdown.go#L40)
+### [[Shutdown] Graceful shutdown with pending request](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/gracefulshutdown/slow_requests.go#L25)
+- [should let slow requests finish before shutting down](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/gracefulshutdown/slow_requests.go#L33)
+### [[Ingress] DeepInspection](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/deep_inspection.go#L27)
+- [should drop whole ingress if one path matches invalid regex](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/deep_inspection.go#L34)
+### [single ingress - multiple hosts](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/multiple_rules.go#L30)
+- [should set the correct $service_name NGINX variable](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/multiple_rules.go#L38)
+### [[Ingress] [PathType] exact](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/pathtype_exact.go#L30)
+- [should choose exact location for /exact](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/pathtype_exact.go#L37)
+### [[Ingress] [PathType] mix Exact and Prefix paths](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/pathtype_mixed.go#L30)
+- [should choose the correct location](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/pathtype_mixed.go#L39)
+### [[Ingress] [PathType] prefix checks](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/pathtype_prefix.go#L28)
+- [should return 404 when prefix /aaa does not match request /aaaccc](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/pathtype_prefix.go#L35)
+### [[Ingress] definition without host](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/without_host.go#L31)
+- [should set ingress details variables for ingresses without a host](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/without_host.go#L34)
+- [should set ingress details variables for ingresses with host without IngressRuleValue, only Backend](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/without_host.go#L55)
+### [[Memory Leak] Dynamic Certificates](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/leaks/lua_ssl.go#L35)
+- [should not leak memory from ingress SSL certificates or configuration updates](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/leaks/lua_ssl.go#L42)
+### [[Load Balancer] load-balance](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/loadbalance/configmap.go#L30)
+- [should apply the configmap load-balance setting](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/loadbalance/configmap.go#L37)
+### [[Load Balancer] EWMA](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/loadbalance/ewma.go#L31)
+- [does not fail requests](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/loadbalance/ewma.go#L43)
+### [[Load Balancer] round-robin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/loadbalance/round_robin.go#L31)
+- [should evenly distribute requests with round-robin (default algorithm)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/loadbalance/round_robin.go#L39)
+### [[Lua] dynamic certificates](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_certificates.go#L37)
+- [picks up the certificate when we add TLS spec to existing ingress](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_certificates.go#L45)
+- [picks up the previously missing secret for a given ingress without reloading](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_certificates.go#L70)
+- [supports requests with domain with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_certificates.go#L145)
+- [picks up the updated certificate without reloading](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_certificates.go#L149)
+- [falls back to using default certificate when secret gets deleted without reloading](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_certificates.go#L185)
+- [picks up a non-certificate only change](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_certificates.go#L218)
+- [removes HTTPS configuration when we delete TLS spec](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_certificates.go#L233)
+### [[Lua] dynamic configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L41)
+- [configures balancer Lua middleware correctly](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L49)
+- [handles endpoints only changes](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L61)
+- [handles endpoints only changes (down scaling of replicas)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L86)
+- [handles endpoints only changes consistently (down scaling of replicas vs. empty service)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L124)
+- [handles an annotation change](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L170)
+### [[metrics] exported prometheus metrics](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/metrics/metrics.go#L36)
+- [exclude socket request metrics are absent](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/metrics/metrics.go#L50)
+- [exclude socket request metrics are present](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/metrics/metrics.go#L72)
+### [nginx-configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/nginx/nginx.go#L99)
+- [start nginx with default configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/nginx/nginx.go#L102)
+- [fails when using alias directive](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/nginx/nginx.go#L114)
+- [fails when using root directive](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/nginx/nginx.go#L121)
+### [[Security] request smuggling](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/security/request_smuggling.go#L32)
+- [should not return body content from error_page](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/security/request_smuggling.go#L39)
+### [[Service] backend status code 503](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/servicebackend/service_backend.go#L34)
+- [should return 503 when backend service does not exist](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/servicebackend/service_backend.go#L37)
+- [should return 503 when all backend service endpoints are unavailable](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/servicebackend/service_backend.go#L55)
+### [[Service] Type ExternalName](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/servicebackend/service_externalname.go#L38)
+- [works with external name set to incomplete fqdn](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/servicebackend/service_externalname.go#L41)
+- [should return 200 for service type=ExternalName without a port defined](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/servicebackend/service_externalname.go#L78)
+- [should return 200 for service type=ExternalName with a port defined](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/servicebackend/service_externalname.go#L118)
+- [should return status 502 for service type=ExternalName with an invalid host](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/servicebackend/service_externalname.go#L148)
+- [should return 200 for service type=ExternalName using a port name](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/servicebackend/service_externalname.go#L184)
+- [should return 200 for service type=ExternalName using FQDN with trailing dot](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/servicebackend/service_externalname.go#L225)
+- [should update the external name after a service update](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/servicebackend/service_externalname.go#L261)
+- [should sync ingress on external name service addition/deletion](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/servicebackend/service_externalname.go#L344)
+### [[Service] Nil Service Backend](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/servicebackend/service_nil_backend.go#L31)
+- [should return 404 when backend service is nil](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/servicebackend/service_nil_backend.go#L38)
+### [access-log](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/access_log.go#L27)
+- [use the default configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/access_log.go#L31)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/access_log.go#L41)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/access_log.go#L52)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/access_log.go#L64)
+- [use the specified configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/access_log.go#L76)
+### [aio-write](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/aio_write.go#L27)
+- [should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/aio_write.go#L30)
+- [should be enabled when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/aio_write.go#L37)
+- [should be disabled when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/aio_write.go#L46)
+### [Bad annotation values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/badannotationvalues.go#L29)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/badannotationvalues.go#L36)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/badannotationvalues.go#L75)
+- [[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/badannotationvalues.go#L119)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/badannotationvalues.go#L157)
+### [brotli](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/brotli.go#L30)
+- [should only compress responses that meet the `brotli-min-length` condition](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/brotli.go#L38)
+### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/configmap_change.go#L29)
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/configmap_change.go#L36)
+### [add-headers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/custom_header.go#L30)
+- [Add a custom header](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/custom_header.go#L40)
+- [Add multiple custom headers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/custom_header.go#L65)
+### [[SSL] [Flag] default-ssl-certificate](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/default_ssl_certificate.go#L35)
+- [uses default ssl certificate for catch-all ingress](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/default_ssl_certificate.go#L66)
+- [uses default ssl certificate for host based ingress when configured certificate does not match host](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/default_ssl_certificate.go#L82)
+### [[Flag] disable-catch-all](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_catch_all.go#L33)
+- [should ignore catch all Ingress with backend](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_catch_all.go#L50)
+- [should ignore catch all Ingress with backend and rules](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_catch_all.go#L69)
+- [should delete Ingress updated to catch-all](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_catch_all.go#L81)
+- [should allow Ingress with rules](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_catch_all.go#L123)
+### [[Flag] disable-service-external-name](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_service_external_name.go#L35)
+- [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_service_external_name.go#L55)
+### [[Flag] disable-sync-events](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_sync_events.go#L32)
+- [should create sync events (default)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_sync_events.go#L35)
+- [should create sync events](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_sync_events.go#L54)
+- [should not create sync events](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_sync_events.go#L82)
+### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/enable_real_ip.go#L30)
+- [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/enable_real_ip.go#L40)
+- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/enable_real_ip.go#L78)
+### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/forwarded_headers.go#L31)
+- [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/forwarded_headers.go#L41)
+- [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/forwarded_headers.go#L93)
+### [Geoip2](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/geoip2.go#L36)
+- [should include geoip2 line in config when enabled and db file exists](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/geoip2.go#L45)
+- [should only allow requests from specific countries](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/geoip2.go#L69)
+### [[Security] block-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_access_block.go#L28)
+- [should block CIDRs defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_access_block.go#L38)
+- [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_access_block.go#L55)
+- [should block Referers defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_access_block.go#L88)
+### [[Security] global-auth-url](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_external_auth.go#L39)
+- [should return status code 401 when request any protected service](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_external_auth.go#L91)
+- [should return status code 200 when request whitelisted (via no-auth-locations) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_external_auth.go#L107)
+- [should return status code 200 when request whitelisted (via ingress annotation) service and 401 when request protected service](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_external_auth.go#L130)
+- [should still return status code 200 after auth backend is deleted using cache](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_external_auth.go#L158)
+- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_external_auth.go#L322)
+- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_external_auth.go#L333)
+- [user with global-auth-always-set-cookie key in configmap retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_external_auth.go#L344)
+### [global-options](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_options.go#L28)
+- [should have worker_rlimit_nofile option](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_options.go#L31)
+- [should have worker_rlimit_nofile option and be independent on amount of worker processes](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_options.go#L37)
+### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/globalratelimit.go#L30)
+- [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/globalratelimit.go#L38)
+### [gzip](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L29)
+- [should be disabled by default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L32)
+- [should be enabled with default settings](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L39)
+- [should set gzip_comp_level to 4](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L56)
+- [should set gzip_disable to msie6](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L67)
+- [should set gzip_min_length to 100](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L78)
+- [should set gzip_types to application/javascript](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L89)
+### [hash size](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/hash-size.go#L27)
+- [should set server_names_hash_bucket_size](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/hash-size.go#L39)
+- [should set server_names_hash_max_size](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/hash-size.go#L47)
+- [should set proxy-headers-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/hash-size.go#L57)
+- [should set proxy-headers-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/hash-size.go#L65)
+- [should set variables-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/hash-size.go#L75)
+- [should set variables-hash-max-size](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/hash-size.go#L83)
+- [should set vmap-hash-bucket-size](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/hash-size.go#L93)
+### [[Flag] ingress-class](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ingress_class.go#L41)
+- [should ignore Ingress with a different class annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ingress_class.go#L70)
+- [should ignore Ingress with different controller class](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ingress_class.go#L106)
+- [should accept both Ingresses with default IngressClassName and IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ingress_class.go#L134)
+- [should ignore Ingress without IngressClass configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ingress_class.go#L166)
+- [should delete Ingress when class is removed](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ingress_class.go#L194)
+- [should serve Ingress when class is added](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ingress_class.go#L259)
+- [should serve Ingress when class is updated between annotation and ingressClassName](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ingress_class.go#L325)
+- [should ignore Ingress with no class and accept the correctly configured Ingresses](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ingress_class.go#L414)
+- [should watch Ingress with no class and ignore ingress with a different class](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ingress_class.go#L482)
+- [should watch Ingress that uses the class name even if spec is different](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ingress_class.go#L538)
+- [should watch Ingress with correct annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ingress_class.go#L628)
+- [should ignore Ingress with only IngressClassName](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ingress_class.go#L648)
+### [keep-alive keep-alive-requests](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/keep-alive.go#L28)
+- [should set keepalive_timeout](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/keep-alive.go#L40)
+- [should set keepalive_requests](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/keep-alive.go#L48)
+- [should set keepalive connection to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/keep-alive.go#L58)
+- [should set keep alive connection timeout to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/keep-alive.go#L68)
+- [should set keepalive time to upstream server](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/keep-alive.go#L78)
+- [should set the request count to upstream server through one keep alive connection](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/keep-alive.go#L88)
+### [Configmap - limit-rate](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/limit_rate.go#L28)
+- [Check limit-rate config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/limit_rate.go#L36)
+### [[Flag] custom HTTP and HTTPS ports](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/listen_nondefault_ports.go#L30)
+- [should set X-Forwarded-Port headers accordingly when listening on a non-default HTTP port](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/listen_nondefault_ports.go#L45)
+- [should set X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/listen_nondefault_ports.go#L65)
+- [should set the X-Forwarded-Port header to 443](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/listen_nondefault_ports.go#L93)
+### [log-format-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/log-format.go#L28)
+- [should not configure log-format escape by default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/log-format.go#L39)
+- [should enable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/log-format.go#L46)
+- [should disable the log-format-escape-json](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/log-format.go#L54)
+- [should enable the log-format-escape-none](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/log-format.go#L62)
+- [should disable the log-format-escape-none](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/log-format.go#L70)
+- [log-format-escape-json enabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/log-format.go#L80)
+- [log-format default escape](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/log-format.go#L103)
+- [log-format-escape-none enabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/log-format.go#L126)
+### [[Lua] lua-shared-dicts](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/lua_shared_dicts.go#L26)
+- [configures lua shared dicts](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/lua_shared_dicts.go#L29)
+### [main-snippet](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/main_snippet.go#L27)
+- [should add value of main-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/main_snippet.go#L31)
+### [[Security] modsecurity-snippet](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/modsecurity/modsecurity_snippet.go#L27)
+- [should add value of modsecurity-snippet setting to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/modsecurity/modsecurity_snippet.go#L30)
+### [enable-multi-accept](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/multi_accept.go#L27)
+- [should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/multi_accept.go#L31)
+- [should be enabled when set to true](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/multi_accept.go#L39)
+- [should be disabled when set to false](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/multi_accept.go#L49)
+### [[Flag] watch namespace selector](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/namespace_selector.go#L30)
+- [should ignore Ingress of namespace without label foo=bar and accept those of namespace with label foo=bar](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/namespace_selector.go#L62)
+### [[Security] no-auth-locations](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/no_auth_locations.go#L33)
+- [should return status code 401 when accessing '/' unauthentication](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/no_auth_locations.go#L54)
+- [should return status code 200 when accessing '/'  authentication](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/no_auth_locations.go#L68)
+- [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/no_auth_locations.go#L82)
+### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/no_tls_redirect_locations.go#L27)
+- [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/no_tls_redirect_locations.go#L30)
+### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ocsp/ocsp.go#L42)
+- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ocsp/ocsp.go#L49)
+### [Configure Opentelemetry](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L39)
+- [should not exists opentelemetry directive](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L49)
+- [should exists opentelemetry directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L62)
+- [should include opentelemetry_trust_incoming_spans on directive when enabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L76)
+- [should not exists opentelemetry_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L91)
+- [should exists opentelemetry_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L106)
+### [Configure OpenTracing](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L52)
+- [should not exists opentracing directive](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L62)
+- [should exists opentracing directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L75)
+- [should include opentracing_trust_incoming_span off directive when disabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L89)
+- [should not exists opentracing_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L104)
+- [should exists opentracing_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L119)
+- [should not exists opentracing_location_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L134)
+- [should exists opentracing_location_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L149)
+- [should enable opentracing using zipkin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L164)
+- [should enable opentracing using jaeger](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L176)
+- [should enable opentracing using jaeger with sampler host](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L188)
+- [should propagate the w3c header when configured with jaeger](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L201)
+- [should enable opentracing using jaeger with an HTTP endpoint](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L232)
+- [should enable opentracing using datadog](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L245)
+### [plugins](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/plugins.go#L28)
+- [should exist a x-hello-world header](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/plugins.go#L35)
+### [[Security] Pod Security Policies](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/pod_security_policy.go#L41)
+- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/pod_security_policy.go#L44)
+### [[Security] Pod Security Policies with volumes](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/pod_security_policy_volumes.go#L37)
+- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/pod_security_policy_volumes.go#L40)
+### [proxy-connect-timeout](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_connect_timeout.go#L29)
+- [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_connect_timeout.go#L37)
+- [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_connect_timeout.go#L53)
+### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_host.go#L28)
+- [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_host.go#L36)
+- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_host.go#L65)
+### [proxy-next-upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_next_upstream.go#L28)
+- [should build proxy next upstream using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_next_upstream.go#L36)
+### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_protocol.go#L38)
+- [should respect port passed by the PROXY Protocol](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_protocol.go#L48)
+- [should respect proto passed by the PROXY Protocol server port](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_protocol.go#L85)
+- [should enable PROXY Protocol for HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_protocol.go#L121)
+- [should enable PROXY Protocol for TCP](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_protocol.go#L164)
+### [proxy-read-timeout](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_read_timeout.go#L29)
+- [should set valid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_read_timeout.go#L37)
+- [should not set invalid proxy read timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_read_timeout.go#L53)
+### [proxy-send-timeout](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_send_timeout.go#L29)
+- [should set valid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_send_timeout.go#L37)
+- [should not set invalid proxy send timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_send_timeout.go#L53)
+### [reuse-port](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/reuse-port.go#L27)
+- [reuse port should be enabled by default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/reuse-port.go#L38)
+- [reuse port should be disabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/reuse-port.go#L44)
+- [reuse port should be enabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/reuse-port.go#L52)
+### [configmap server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/server_snippet.go#L28)
+- [should add value of server-snippet setting to all ingress config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/server_snippet.go#L35)
+- [should add global server-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/server_snippet.go#L98)
+### [server-tokens](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/server_tokens.go#L29)
+- [should not exists Server header in the response](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/server_tokens.go#L38)
+- [should exists Server header in the response when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/server_tokens.go#L50)
+### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ssl_ciphers.go#L28)
+- [Add ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ssl_ciphers.go#L31)
+### [[Flag] enable-ssl-passthrough](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ssl_passthrough.go#L36)
+### [With enable-ssl-passthrough enabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ssl_passthrough.go#L55)
+- [should enable ssl-passthrough-proxy-port on a different port](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ssl_passthrough.go#L56)
+- [should pass unknown traffic to default backend and handle known traffic](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ssl_passthrough.go#L78)
+### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/stream_snippet.go#L35)
+- [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/stream_snippet.go#L42)
+### [[SSL] TLS protocols, ciphers and headers)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L31)
+- [setting cipher suite](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L65)
+- [setting max-age parameter](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L109)
+- [setting includeSubDomains parameter](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L125)
+- [setting preload parameter](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L144)
+- [overriding what's set from the upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L164)
+- [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L186)
+- [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L204)
+### [annotation validations](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/validations/validations.go#L30)
+- [should allow ingress based on their risk on webhooks](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/validations/validations.go#L33)
+- [should allow ingress based on their risk on webhooks](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/validations/validations.go#L68)
+### [[SSL] redirect to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ssl/http_redirect.go#L29)
+- [should redirect from HTTP to HTTPS when secret is missing](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ssl/http_redirect.go#L36)
+### [[SSL] secret update](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ssl/secret_update.go#L33)
+- [should not appear references to secret updates not used in ingress rules](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ssl/secret_update.go#L40)
+- [should return the fake SSL certificate if the secret is invalid](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ssl/secret_update.go#L83)
+### [[Status] status update](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/status/update.go#L38)
+- [should update status field after client-go reconnection](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/status/update.go#L43)
+### [[TCP] tcp-services](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/tcpudp/tcp.go#L38)
+- [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/tcpudp/tcp.go#L46)
+- [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/tcpudp/tcp.go#L80)
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/tcpudp/tcp.go#L169)
\ No newline at end of file

From 36d5bbb92797a59ed33db0c0a99b5894829e7d1f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 18 Sep 2023 04:56:32 -0700
Subject: [PATCH 0942/1641] Bump docker/setup-qemu-action from 2.2.0 to 3.0.0
 (#10426)

Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 2.2.0 to 3.0.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](https://github.com/docker/setup-qemu-action/compare/2b82ce82d56a2a04d2637cd93a637ae1b359c0a7...68827325e0b33c7199eb31dd4e31fbe9023e06e3)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index bfba95cf4..e94d8eb53 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -100,7 +100,7 @@ jobs:
           check-latest: true
 
       - name: Set up QEMU
-        uses: docker/setup-qemu-action@2b82ce82d56a2a04d2637cd93a637ae1b359c0a7 # v2.2.0
+        uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
 
       - name: Set up Docker Buildx
         id: buildx

From e80521ee88ed263c4d7153d48dfb85dd84bcbd9d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 18 Sep 2023 05:06:31 -0700
Subject: [PATCH 0943/1641] Bump goreleaser/goreleaser-action from 4.6.0 to
 5.0.0 (#10423)

Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 4.6.0 to 5.0.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/5fdedb94abba051217030cc86d4523cf3f02243d...7ec5c2b0c6cdda6e8bbb49444bc797dd33d74dd8)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/plugin.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 33f5a4dc3..5fbbfe0b1 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -26,7 +26,7 @@ jobs:
           check-latest: true
 
       - name: Run GoReleaser
-        uses: goreleaser/goreleaser-action@5fdedb94abba051217030cc86d4523cf3f02243d # v4.6.0
+        uses: goreleaser/goreleaser-action@7ec5c2b0c6cdda6e8bbb49444bc797dd33d74dd8 # v5.0.0
         with:
           version: latest
           args: release --clean

From 68afabbb601b2fda400523e8f083c5bd0a48619a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 18 Sep 2023 05:26:32 -0700
Subject: [PATCH 0944/1641] Bump docker/setup-buildx-action from 2.10.0 to
 3.0.0 (#10424)

Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.10.0 to 3.0.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/885d1462b80bc1c1c7f0b00334ad271f09369c55...f95db51fddba0c2d1ec667646a06c2ce06100226)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index e94d8eb53..225e96330 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -104,7 +104,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2.10.0
+        uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
         with:
           version: latest
 

From 64e55d461fe1839931dd86008e86d06b8661b499 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 18 Sep 2023 06:40:33 -0700
Subject: [PATCH 0945/1641] Bump actions/checkout from 3.5.3 to 4.0.0 (#10425)

* Bump actions/checkout from 3.5.3 to 4.0.0

Bumps [actions/checkout](https://github.com/actions/checkout) from 3.5.3 to 4.0.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3.5.3...3df4ab11eba7bda6032a0b82a6bb43b11571feac)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

* fix vesion comments

Signed-off-by: cpanato <ctadeu@gmail.com>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: cpanato <ctadeu@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: cpanato <ctadeu@gmail.com>
---
 .github/workflows/ci.yaml                  | 18 +++++++++---------
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/golangci-lint.yml        |  2 +-
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  2 +-
 .github/workflows/vulnerability-scans.yaml |  4 ++--
 9 files changed, 20 insertions(+), 20 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 225e96330..efed2ba46 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -42,7 +42,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -69,7 +69,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
       
       - name: Set up Go
         id: go
@@ -90,7 +90,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
 
       - name: Set up Go
         id: go
@@ -155,7 +155,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
 
       - name: Setup Go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
@@ -230,7 +230,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -278,7 +278,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -329,7 +329,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -373,7 +373,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
@@ -446,7 +446,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 58c36a2f2..57874e9da 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@6c5ccdad469c9f8a2996bfecaec55a631a347034 # v3.1.0
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index d4b81e62a..4f1279731 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 557c00210..c32f8e729 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -19,7 +19,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
       
       - name: Set up Go
         id: go
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 5b0f98f1b..e855566de 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
 
       - name: Run Artifact Hub lint
         run: |
@@ -61,7 +61,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 154ab6e47..2e031361b 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 5fbbfe0b1..f0c29f02f 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 1cd9d0d39..268914f2c 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
         with:
           persist-credentials: false
 
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 253d36690..1b8ea4160 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
 
       - shell: bash
         id: test

From fcda809ab034fffd14d8ff9b39441b2d12da420e Mon Sep 17 00:00:00 2001
From: Thomas Burguiere <thomas.burguiere@gmail.com>
Date: Mon, 18 Sep 2023 17:28:32 +0200
Subject: [PATCH 0946/1641] fix path to faq.md in examples/rewrite/README.md
 (#10383)

---
 docs/examples/rewrite/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/examples/rewrite/README.md b/docs/examples/rewrite/README.md
index aadcc1e4b..16889e0bc 100644
--- a/docs/examples/rewrite/README.md
+++ b/docs/examples/rewrite/README.md
@@ -31,7 +31,7 @@ Rewriting can be controlled using the following annotations:
     [Captured groups](https://www.regular-expressions.info/refcapture.html) are saved in numbered placeholders, chronologically, in the form `$1`, `$2` ... `$n`. These placeholders can be used as parameters in the `rewrite-target` annotation.
 
 !!! note
-    Please see the [FAQ](../faq.md#validation-of-path) for Validation Of __`path`__
+    Please see the [FAQ](../../faq.md#validation-of-path) for Validation Of __`path`__
 
 Create an Ingress rule with a rewrite annotation:
 

From 82e24cb3991707838e0f864289f9dd3ff95ef618 Mon Sep 17 00:00:00 2001
From: arukiidou <arukiidou@yahoo.co.jp>
Date: Fri, 22 Sep 2023 20:08:50 +0900
Subject: [PATCH 0947/1641] Helm - Fix Chart.yaml - add license annotations,
 add type keyword, remove gotpl (#10287)

* Helm - add license annotations, add type keyword, remove gotpl

Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>

* Helm - run helm-docs

Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>

---------

Signed-off-by: junya koyama <arukiidou@yahoo.co.jp>
---
 charts/ingress-nginx/Chart.yaml | 3 ++-
 charts/ingress-nginx/README.md  | 2 +-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index b692069a1..155acb4f9 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -5,12 +5,12 @@ annotations:
      - "[helm] configure allow to configure hostAliases (#10180)"
      - "[helm] pass service annotations through helm tpl engine (#10084)"
      - "Update Ingress-Nginx version controller-v1.9.0-beta.0"
+  artifacthub.io/license: Apache-2.0
   artifacthub.io/prerelease: "true"
 apiVersion: v2
 appVersion: 1.9.0-beta.0
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
-engine: gotpl
 home: https://github.com/kubernetes/ingress-nginx
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
 keywords:
@@ -24,4 +24,5 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
+type: application
 version: 4.8.0-beta.0
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index aa489a65b..988a4c7d7 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.8.0-beta.0](https://img.shields.io/badge/Version-4.8.0--beta.0-informational?style=flat-square) ![AppVersion: 1.9.0-beta.0](https://img.shields.io/badge/AppVersion-1.9.0--beta.0-informational?style=flat-square)
+![Version: 4.8.0-beta.0](https://img.shields.io/badge/Version-4.8.0--beta.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.9.0-beta.0](https://img.shields.io/badge/AppVersion-1.9.0--beta.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 

From 8ab35777f639d132921a5fba4a23fcc609692f4a Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sat, 23 Sep 2023 13:45:00 -0300
Subject: [PATCH 0948/1641] Fix release notes on helm (#10434)

---
 magefiles/steps/helm.go | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/magefiles/steps/helm.go b/magefiles/steps/helm.go
index b4cdc6d81..b53283f78 100644
--- a/magefiles/steps/helm.go
+++ b/magefiles/steps/helm.go
@@ -20,6 +20,7 @@ import (
 	"bytes"
 	"fmt"
 	"os"
+	"strings"
 
 	semver "github.com/blang/semver/v4"
 	"github.com/helm/helm/pkg/chartutil"
@@ -107,10 +108,10 @@ func updateChartReleaseNotes(releasesNotes []string) {
 	utils.Info("HELM Updating the Chart Release notes")
 	chart, err := chartutil.LoadChartfile(HelmChartPath)
 	utils.CheckIfError(err, "HELM Could not Load Chart to update release notes %s", HelmChartPath)
-	var releaseNoteString string
 	for i := range releasesNotes {
-		releaseNoteString = fmt.Sprintf("%s - \"%s\"\n", releaseNoteString, releasesNotes[i])
+		releasesNotes[i] = fmt.Sprintf("- %q", releasesNotes[i])
 	}
+	releaseNoteString := strings.Join(releasesNotes, "\n")
 	utils.Info("HELM Release note string %s", releaseNoteString)
 	chart.Annotations["artifacthub.io/changes"] = releaseNoteString
 	err = chartutil.SaveChartfile(HelmChartPath, chart)

From 6107346590f1f7e64749e0977deb4f639e145a17 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sat, 23 Sep 2023 17:46:56 -0300
Subject: [PATCH 0949/1641] Release v1.9.0 (#10433)

---
 changelog/Changelog-1.9.0.md                  | 93 +++++++++++++++++++
 charts/ingress-nginx/Chart.yaml               | 12 +--
 charts/ingress-nginx/README.md                |  8 +-
 .../changelog/Changelog-4.8.0.md              | 13 +++
 charts/ingress-nginx/values.yaml              |  6 +-
 deploy/static/provider/aws/deploy.yaml        | 44 ++++-----
 .../aws/nlb-with-tls-termination/deploy.yaml  | 44 ++++-----
 deploy/static/provider/baremetal/deploy.yaml  | 44 ++++-----
 deploy/static/provider/cloud/deploy.yaml      | 44 ++++-----
 deploy/static/provider/do/deploy.yaml         | 44 ++++-----
 deploy/static/provider/exoscale/deploy.yaml   | 44 ++++-----
 deploy/static/provider/kind/deploy.yaml       | 44 ++++-----
 deploy/static/provider/oracle/deploy.yaml     | 44 ++++-----
 deploy/static/provider/scw/deploy.yaml        | 44 ++++-----
 14 files changed, 316 insertions(+), 212 deletions(-)
 create mode 100644 changelog/Changelog-1.9.0.md
 create mode 100644 charts/ingress-nginx/changelog/Changelog-4.8.0.md

diff --git a/changelog/Changelog-1.9.0.md b/changelog/Changelog-1.9.0.md
new file mode 100644
index 000000000..cd5396f05
--- /dev/null
+++ b/changelog/Changelog-1.9.0.md
@@ -0,0 +1,93 @@
+# Changelog
+
+### 1.9.0
+Images:
+
+ * registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
+ * registry.k8s.io/ingress-nginx/controller-chroot:v1.9.0@sha256:d9fa7a136de2104fb2ecfcf1666978bfab927f4a125b75c0fb471e6104366ab5
+ 
+### All Changes:
+
+* Rework mage (#10418)
+* Start release of v1.9.0 beta0 (#10407)
+* Update k8s versions on CI (#10406)
+* Add a flag to enable or disable aio_write (#10394)
+* Update external-articles.md - advanced setup with GKE/Cloud Armor/IAP (#10372)
+* Fix e2e test suite doc (#10396)
+* Disable user snippets per default (#10393)
+* Deployment/DaemonSet: Fix templating & value. (#10240)
+* Fix deferInLoop error (#10387)
+* Remove gofmt (#10385)
+* Deployment/DaemonSet: Template `topologySpreadConstraints`. (#10259)
+* release notes 1.8.2 (#10389)
+* fix: remove curl on base container #9716 (#10306)
+* Fix http default backend test (#10382)
+* Add golangci github action and replace the deprecated golint (#10187)
+* BUGFIX incorrect indentation (#10254)
+* Upgrade OpenTelemetry to v1.11.0 and gRPC to v1.57.0 (#10352)
+* fix: path with sepecial characters warning #10281 #10308 (#10330)
+* Fix golangci-lint errors (#10196)
+* chore(build): Fix Run make dev-env syntax error (#10294)
+* Add firewall configuration to quick start documentation (#10357)
+* Making auth access logs optional (#10335)
+* Fix “dev-env” Makefile target to work with kubectl 1.28+ (#10350)
+* fix: update action file to auto release plugin #10197 (#10321)
+* Use gzip instead of pigz in CI (#10348)
+* Disable Modsecurity from internal processing which affects large ingresses  (#10316)
+* fix: add /etc/mime.types #10309 (#10310)
+* Remove curl dependencies in e2e tests #9716 (#10296)
+* docs: swap explanation to match example (#10220)
+* ci(helm): fix Helm Chart release action 422 error (#10237)
+* helm: Use .Release.Namespace as default for ServiceMonitor namespace (#10249)
+* Updated index.md - Fix typos (#10256)
+* Handle request_id variable correctly in auth requests (#9219)
+* test kind updates (#10272)
+* promote distroless otel init image (#10257)
+* [helm] configure allow to configure hostAliases (#10180)
+* Add rolling update strategy to each static deployment file (#10129)
+* Implement annotation validation (#9673)
+* Golang 1.20.6 for test runner (#10230)
+* [helm] pass service annotations through helm tpl engine (#10084)
+* Ignore deployment template's replicas if KEDA is enabled (#9534)
+* chore: bump OpenResty to v1.21.4.2 (#10219)
+* Scanning port 10247 lead to tcp connection 502 error (#9815)
+* revise Datadog trace sampling configuration (#10151)
+* Clarify TCP/UDP service docs (#10146)
+* Exposed continent data as  variable in the case of Maxmind city files (#10157)
+* Cleanup errcheck code (#10166)
+* Fix golang-ci linter errors (#10128)
+* Deprecate and remove AJP support (#10158)
+* release notes 1.8.1 (#10161)
+
+### Dependencies updates: 
+* Bump github.com/onsi/ginkgo/v2 from 2.9.5 to 2.12.0 (#10355)
+* Bump golang.org/x/crypto from 0.12.0 to 0.13.0 (#10399)
+* Bump actions/setup-go from 4.0.1 to 4.1.0 (#10403)
+* Bump goreleaser/goreleaser-action from 4.4.0 to 4.6.0 (#10402)
+* Bump actions/upload-artifact from 3.1.2 to 3.1.3 (#10404)
+* Bump golangci/golangci-lint-action from 3.6.0 to 3.7.0 (#10400)
+* Bump google.golang.org/grpc from 1.57.0 to 1.58.0 (#10398)
+* Bump actions/dependency-review-action from 3.0.8 to 3.1.0 (#10401)
+* Bump github.com/cyphar/filepath-securejoin from 0.2.3 to 0.2.4 (#10373)
+* Bump github.com/cyphar/filepath-securejoin in /magefiles (#10374)
+* Bump Go version to 1.21.1 (#10377)
+* Bump Go version to 1.21.1 on testrunner (#10378)
+* Bump aquasecurity/trivy-action from 0.11.2 to 0.12.0 (#10365)
+* Bump docker/setup-buildx-action from 2.9.1 to 2.10.0 (#10353)
+* Bump actions/checkout from 3.5.3 to 3.6.0 (#10354)
+* Bump actions/dependency-review-action from 3.0.6 to 3.0.8 (#10333)
+* Bump actions/setup-go from 4.0.1 to 4.1.0 (#10313)
+* Bump securego/gosec from 2.16.0 to 2.17.0 (#10332)
+* Bump goreleaser/goreleaser-action from 4.3.0 to 4.4.0 (#10314)
+* Bump github.com/opencontainers/runc from 1.1.8 to 1.1.9 (#10298)
+* Bump k8s.io/component-base from 0.26.4 to 0.27.4 (Replace Topology Aware Hints with Topology Aware Routing) (#10282)
+* Bump google.golang.org/grpc from 1.56.2 to 1.57.0 (#10258)
+* Bump golang.org/x/crypto from 0.11.0 to 0.12.0 (#10280)
+* Bump github.com/opencontainers/runc from 1.1.7 to 1.1.8 (#10244)
+* Bump google.golang.org/grpc from 1.56.1 to 1.56.2 (#10193)
+* Bump docker/setup-buildx-action from 2.9.0 to 2.9.1 (#10207)
+* Bump golang.org/x/crypto from 0.10.0 to 0.11.0 (#10192)
+* Bump docker/setup-buildx-action from 2.8.0 to 2.9.0 (#10191)
+* Bump docker/setup-buildx-action from 2.7.0 to 2.8.0 (#10165)
+ 
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-release-1.8...controller-controller-v1.9.0
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 155acb4f9..058e4c862 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,14 +1,13 @@
 annotations:
-  artifacthub.io/changes: |2
+  artifacthub.io/changes: |
      - "ci(helm): fix Helm Chart release action 422 error (#10237)"
      - "helm: Use .Release.Namespace as default for ServiceMonitor namespace (#10249)"
      - "[helm] configure allow to configure hostAliases (#10180)"
      - "[helm] pass service annotations through helm tpl engine (#10084)"
-     - "Update Ingress-Nginx version controller-v1.9.0-beta.0"
-  artifacthub.io/license: Apache-2.0
-  artifacthub.io/prerelease: "true"
+     - "Update Ingress-Nginx version controller-v1.9.0"
+  artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.9.0-beta.0
+appVersion: 1.9.0
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 home: https://github.com/kubernetes/ingress-nginx
@@ -24,5 +23,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-type: application
-version: 4.8.0-beta.0
+version: 4.8.0
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 988a4c7d7..35e74268d 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.8.0-beta.0](https://img.shields.io/badge/Version-4.8.0--beta.0-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.9.0-beta.0](https://img.shields.io/badge/AppVersion-1.9.0--beta.0-informational?style=flat-square)
+![Version: 4.8.0](https://img.shields.io/badge/Version-4.8.0-informational?style=flat-square) ![AppVersion: 1.9.0](https://img.shields.io/badge/AppVersion-1.9.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -315,13 +315,13 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9"` |  |
-| controller.image.digestChroot | string | `"sha256:60b4c95349ce2a81a3b2a76423ee483b847b89d3fa8cb148468434f606f3fa0c"` |  |
+| controller.image.digest | string | `"sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60"` |  |
+| controller.image.digestChroot | string | `"sha256:d9fa7a136de2104fb2ecfcf1666978bfab927f4a125b75c0fb471e6104366ab5"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.9.0-beta.0"` |  |
+| controller.image.tag | string | `"v1.9.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/Changelog-4.8.0.md b/charts/ingress-nginx/changelog/Changelog-4.8.0.md
new file mode 100644
index 000000000..af8f1241f
--- /dev/null
+++ b/charts/ingress-nginx/changelog/Changelog-4.8.0.md
@@ -0,0 +1,13 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.8.0
+
+* ci(helm): fix Helm Chart release action 422 error (#10237)
+* helm: Use .Release.Namespace as default for ServiceMonitor namespace (#10249)
+* [helm] configure allow to configure hostAliases (#10180)
+* [helm] pass service annotations through helm tpl engine (#10084)
+* Update Ingress-Nginx version controller-v1.9.0
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.7.2...helm-chart-4.8.0
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 0b6091bb7..d476f8088 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -24,9 +24,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.9.0-beta.0"
-    digest: sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
-    digestChroot: sha256:60b4c95349ce2a81a3b2a76423ee483b847b89d3fa8cb148468434f606f3fa0c
+    tag: "v1.9.0"
+    digest: sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
+    digestChroot: sha256:d9fa7a136de2104fb2ecfcf1666978bfab927f4a125b75c0fb471e6104366ab5
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index a5247d8be..854d50e37 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -565,7 +565,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -576,7 +576,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -614,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index a5e35c02a..28dbe82a5 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -431,7 +431,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
     spec:
       containers:
       - args:
@@ -455,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -577,7 +577,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -588,7 +588,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -639,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 4a0914121..a757ff71e 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
     spec:
       containers:
       - args:
@@ -440,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -512,7 +512,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -523,7 +523,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -559,7 +559,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -570,7 +570,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -608,7 +608,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -621,7 +621,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 13ec5db40..9c55fb0de 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -514,7 +514,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -525,7 +525,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -561,7 +561,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -572,7 +572,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -623,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 8ed58f056..c44569512 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -564,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -613,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 8fbade4e2..5ddda1a2f 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -570,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -619,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -632,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 3d12be236..e26cdc070 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -620,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -633,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index fc1ceb566..8733ee83b 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -565,7 +565,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -576,7 +576,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -614,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 0d4f4baf0..fceda01a7 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -564,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0-beta.0
+        app.kubernetes.io/version: 1.9.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -613,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0-beta.0
+    app.kubernetes.io/version: 1.9.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:

From c3194dd3880c03db6477e8b146d9ce1b80bb523f Mon Sep 17 00:00:00 2001
From: Rashad Mammadli <mammadli.reshad@gmail.com>
Date: Sun, 24 Sep 2023 16:54:56 +0200
Subject: [PATCH 0950/1641] upgrade owasp modsecurity core rule set to v3.3.5
 (#10323)

---
 images/nginx/rootfs/build.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index db1eebfb8..e35fde7f4 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -63,7 +63,7 @@ export MODSECURITY_VERSION=1.0.3
 export MODSECURITY_LIB_VERSION=e9a7ba4a60be48f761e0328c6dfcc668d70e35a0
 
 # Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.2...v3.3/master
-export OWASP_MODSECURITY_CRS_VERSION=v3.3.4
+export OWASP_MODSECURITY_CRS_VERSION=v3.3.5
 
 # Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.25...master
 export LUA_NGX_VERSION=0.10.25

From 0b0ce031ac11b2738f85f42d38fdd1fe10fde120 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Sun, 24 Sep 2023 17:02:57 +0200
Subject: [PATCH 0951/1641] Chart: Rework network policies. (#10238)

---
 charts/ingress-nginx/README.md                |  3 +-
 .../job-patch/networkpolicy.yaml              | 10 ++---
 .../templates/controller-networkpolicy.yaml   | 45 +++++++++++++++++++
 .../controller-webhooks-networkpolicy.yaml    | 19 --------
 .../default-backend-networkpolicy.yaml        | 25 +++++++++++
 charts/ingress-nginx/values.yaml              | 11 ++++-
 6 files changed, 87 insertions(+), 26 deletions(-)
 create mode 100644 charts/ingress-nginx/templates/controller-networkpolicy.yaml
 delete mode 100644 charts/ingress-nginx/templates/controller-webhooks-networkpolicy.yaml
 create mode 100644 charts/ingress-nginx/templates/default-backend-networkpolicy.yaml

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 35e74268d..40ee83137 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -249,7 +249,6 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.key | string | `"/usr/local/certificates/key"` |  |
 | controller.admissionWebhooks.labels | object | `{}` | Labels to be added to admission webhooks |
 | controller.admissionWebhooks.namespaceSelector | object | `{}` |  |
-| controller.admissionWebhooks.networkPolicyEnabled | bool | `false` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
 | controller.admissionWebhooks.patch.image.digest | string | `"sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b"` |  |
@@ -374,6 +373,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.minAvailable | int | `1` | Minimum available pods set in PodDisruptionBudget. Define either 'minAvailable' or 'maxUnavailable', never both. |
 | controller.minReadySeconds | int | `0` | `minReadySeconds` to avoid killing pods before we are ready # |
 | controller.name | string | `"controller"` |  |
+| controller.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
 | controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment # Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ # |
 | controller.opentelemetry.containerSecurityContext.allowPrivilegeEscalation | bool | `false` |  |
 | controller.opentelemetry.enabled | bool | `false` |  |
@@ -472,6 +472,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.minAvailable | int | `1` |  |
 | defaultBackend.minReadySeconds | int | `0` | `minReadySeconds` to avoid killing pods before we are ready # |
 | defaultBackend.name | string | `"defaultbackend"` |  |
+| defaultBackend.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
 | defaultBackend.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for default backend pod assignment # Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ # |
 | defaultBackend.podAnnotations | object | `{}` | Annotations to be added to default backend pods # |
 | defaultBackend.podLabels | object | `{}` | Labels to add to the pod container metadata |
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml
index 08b32257c..d59da7c9c 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.networkPolicyEnabled }}
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
 apiVersion: networking.k8s.io/v1
 kind: NetworkPolicy
 metadata:
@@ -16,11 +16,11 @@ metadata:
 spec:
   podSelector:
     matchLabels:
-      {{- include "ingress-nginx.labels" . | nindent 6 }}
+      {{- include "ingress-nginx.selectorLabels" . | nindent 6 }}
       app.kubernetes.io/component: admission-webhook
   policyTypes:
-  - Ingress
-  - Egress
+    - Ingress
+    - Egress
   egress:
-  - {}
+    - {}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-networkpolicy.yaml b/charts/ingress-nginx/templates/controller-networkpolicy.yaml
new file mode 100644
index 000000000..15d6012f7
--- /dev/null
+++ b/charts/ingress-nginx/templates/controller-networkpolicy.yaml
@@ -0,0 +1,45 @@
+{{- if .Values.controller.networkPolicy.enabled }}
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  labels:
+    {{- include "ingress-nginx.labels" . | nindent 4 }}
+    app.kubernetes.io/component: controller
+    {{- with .Values.controller.labels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  name: {{ include "ingress-nginx.controller.fullname" . }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  podSelector:
+    matchLabels:
+      {{- include "ingress-nginx.selectorLabels" . | nindent 6 }}
+      app.kubernetes.io/component: controller
+  policyTypes:
+    - Ingress
+    - Egress
+  ingress:
+    - ports:
+      {{- range $key, $value := .Values.controller.containerPort }}
+        - protocol: TCP
+          port: {{ $value }}
+      {{- end }}
+      {{- if .Values.controller.metrics.enabled }}
+        - protocol: TCP
+          port: {{ .Values.controller.metrics.port }}
+      {{- end }}
+      {{- if .Values.controller.admissionWebhooks.enabled }}
+        - protocol: TCP
+          port: {{ .Values.controller.admissionWebhooks.port }}
+      {{- end }}
+      {{- range $key, $value := .Values.tcp }}
+        - protocol: TCP
+          port: {{ $key }}
+      {{- end }}
+      {{- range $key, $value := .Values.udp }}
+        - protocol: UDP
+          port: {{ $key }}
+      {{- end }}
+  egress:
+    - {}
+{{- end }}
diff --git a/charts/ingress-nginx/templates/controller-webhooks-networkpolicy.yaml b/charts/ingress-nginx/templates/controller-webhooks-networkpolicy.yaml
deleted file mode 100644
index f74c2fbf3..000000000
--- a/charts/ingress-nginx/templates/controller-webhooks-networkpolicy.yaml
+++ /dev/null
@@ -1,19 +0,0 @@
-{{- if .Values.controller.admissionWebhooks.enabled }}
-{{- if .Values.controller.admissionWebhooks.networkPolicyEnabled }}
-
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  name: {{ include "ingress-nginx.fullname" . }}-webhooks-allow
-  namespace: {{ .Release.Namespace }}
-spec:
-  ingress:
-  - {}
-  podSelector:
-    matchLabels:
-      app.kubernetes.io/name: {{ include "ingress-nginx.name" . }}
-  policyTypes:
-    - Ingress
-
-{{- end }}
-{{- end }}
diff --git a/charts/ingress-nginx/templates/default-backend-networkpolicy.yaml b/charts/ingress-nginx/templates/default-backend-networkpolicy.yaml
new file mode 100644
index 000000000..f3a012657
--- /dev/null
+++ b/charts/ingress-nginx/templates/default-backend-networkpolicy.yaml
@@ -0,0 +1,25 @@
+{{- if and .Values.defaultBackend.enabled .Values.defaultBackend.networkPolicy.enabled }}
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  labels:
+    {{- include "ingress-nginx.labels" . | nindent 4 }}
+    app.kubernetes.io/component: default-backend
+    {{- with .Values.defaultBackend.labels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  name: {{ include "ingress-nginx.defaultBackend.fullname" . }}
+  namespace: {{ .Release.Namespace }}
+spec:
+  podSelector:
+    matchLabels:
+      {{- include "ingress-nginx.selectorLabels" . | nindent 6 }}
+      app.kubernetes.io/component: default-backend
+  policyTypes:
+    - Ingress
+    - Egress
+  ingress:
+    - ports:
+        - protocol: TCP
+          port: {{ .Values.defaultBackend.port }}
+{{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index d476f8088..2541f268d 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -96,6 +96,10 @@ controller:
       http: 80
       # -- 'hostPort' https port
       https: 443
+  # NetworkPolicy for controller component.
+  networkPolicy:
+    # -- Enable 'networkPolicy' or not
+    enabled: false
   # -- Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader'
   electionID: ""
   ## This section refers to the creation of the IngressClass resource
@@ -606,7 +610,6 @@ controller:
     labels: {}
     # -- Use an existing PSP instead of creating one
     existingPsp: ""
-    networkPolicyEnabled: false
     service:
       annotations: {}
       # clusterIP: ""
@@ -872,6 +875,12 @@ defaultBackend:
     maxReplicas: 2
     targetCPUUtilizationPercentage: 50
     targetMemoryUtilizationPercentage: 50
+
+  # NetworkPolicy for default backend component.
+  networkPolicy:
+    # -- Enable 'networkPolicy' or not
+    enabled: false
+
   service:
     annotations: {}
     # clusterIP: ""

From fe4c15d7ba73986c8662920c0e9c0cec00872776 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 25 Sep 2023 05:00:58 -0700
Subject: [PATCH 0952/1641] Bump actions/checkout from 4.0.0 to 4.1.0 (#10441)

Bumps [actions/checkout](https://github.com/actions/checkout) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/3df4ab11eba7bda6032a0b82a6bb43b11571feac...8ade135a41bc03ea155e62e844d188df1ea18608)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 18 +++++++++---------
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/golangci-lint.yml        |  2 +-
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  2 +-
 .github/workflows/vulnerability-scans.yaml |  4 ++--
 9 files changed, 20 insertions(+), 20 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index efed2ba46..b53ec3c46 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -42,7 +42,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -69,7 +69,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
       
       - name: Set up Go
         id: go
@@ -90,7 +90,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
       - name: Set up Go
         id: go
@@ -155,7 +155,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
       - name: Setup Go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
@@ -230,7 +230,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -278,7 +278,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -329,7 +329,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -373,7 +373,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
@@ -446,7 +446,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 57874e9da..c6e1d2f93 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@6c5ccdad469c9f8a2996bfecaec55a631a347034 # v3.1.0
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 4f1279731..15ac29758 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index c32f8e729..a58850dd2 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -19,7 +19,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
       
       - name: Set up Go
         id: go
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index e855566de..837b95b71 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
       - name: Run Artifact Hub lint
         run: |
@@ -61,7 +61,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 2e031361b..de33d5b64 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index f0c29f02f..a1a185608 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 268914f2c..d066f5363 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
         with:
           persist-credentials: false
 
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 1b8ea4160..5f988be83 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
       - shell: bash
         id: test

From f7b096488c4b94dfc20a5622acff44b1d183a190 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 25 Sep 2023 05:02:58 -0700
Subject: [PATCH 0953/1641] Bump google.golang.org/grpc from 1.58.1 to 1.58.2
 (#10442)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.58.1 to 1.58.2.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.58.1...v1.58.2)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 63228c8ae..7643d4ef0 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.13.0
-	google.golang.org/grpc v1.58.1
+	google.golang.org/grpc v1.58.2
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index c5be5c64d..e5207da08 100644
--- a/go.sum
+++ b/go.sum
@@ -669,8 +669,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.58.1 h1:OL+Vz23DTtrrldqHK49FUOPHyY75rvFqJfXC84NYW58=
-google.golang.org/grpc v1.58.1/go.mod h1:tgX3ZQDlNJGU96V6yHh1T/JeoBQ2TXdr43YbYSsCJk0=
+google.golang.org/grpc v1.58.2 h1:SXUpjxeVF3FKrTYQI4f4KvbGD5u2xccdYdurwowix5I=
+google.golang.org/grpc v1.58.2/go.mod h1:tgX3ZQDlNJGU96V6yHh1T/JeoBQ2TXdr43YbYSsCJk0=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From 4bac1200bfe4c95f654ffb86bea18ce9fc1c8630 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 25 Sep 2023 15:48:12 -0400
Subject: [PATCH 0954/1641] Update README.md for release 1.9.0 (#10447)

---
 README.md | 38 ++++++++++++--------------------------
 1 file changed, 12 insertions(+), 26 deletions(-)

diff --git a/README.md b/README.md
index b6e2dafe7..34b898a54 100644
--- a/README.md
+++ b/README.md
@@ -26,43 +26,29 @@ If you encounter issues, review the [troubleshooting docs](docs/troubleshooting.
 
 ## Changelog
 
-See [the list of releases](https://github.com/kubernetes/ingress-nginx/releases) to find out about feature changes.
-For detailed changes for each release; please check the [Changelog.md](Changelog.md) file.
-For detailed changes on the `ingress-nginx` helm chart, please check the following
-[CHANGELOG.md](charts/ingress-nginx/CHANGELOG.md) file.
+See [the list of releases](https://github.com/kubernetes/ingress-nginx/releases) for all changes.
+For detailed changes for each release, please check the [changelog-$version.md](./changelog) file for the release version.
+For detailed changes on the `ingress-nginx` helm chart, please check the changelog folder for a specific version
+[CHANGELOG-$current-version.md](./charts/ingress-nginx/changelog) file.
 
 ### Supported Versions table
 
 Supported versions for the ingress-nginx project mean that we have completed E2E tests, and they are passing for
-the versions listed. Ingress-Nginx versions may work on older versions but the project does not make that guarantee.
+the versions listed. Ingress-Nginx versions **may** work on older versions, but the project does not make that guarantee.
 
-|    | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
-|:--:|-----------------------|------------------------------|----------------|---------------|--------------------|
-| 🔄 | **v1.8.2**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
+|  Supported  | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
+|:--:|-----------------------|------------------------------|----------------|---------------|------------------------------|
+| 🔄 | **v1.9.0**            | 1.28, 1.27,1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
+| 🔄 | **v1.8.2**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
 | 🔄 | **v1.8.1**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
 | 🔄 | **v1.8.0**            | 1.27,1.26, 1.25, 1.24        | 3.18.0         | 1.21.6        | 4.7.*              |
 | 🔄 | **v1.7.1**            | 1.27,1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
 | 🔄 | **v1.7.0**            | 1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        | 4.6.*              |
-| 🔄 | **v1.6.4**            | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        | 4.5.*              |
+|    | **v1.6.4**            | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        | 4.5.*              |
 |    | v1.5.1                | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        | 4.4.*              |
 |    | v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      | 4.3.0              |
 |    | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      | 4.2.5              |
 |    | v1.3.0                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.0         | 1.19.10†      | 4.2.3              |
-|    | v1.2.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.6         | 1.19.10†      | 4.1.4              |
-|    | v1.1.3                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.4         | 1.19.10†      | 4.0.19             |
-|    | v1.1.2                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       | 4.0.18             |
-|    | v1.1.1                | 1.23, 1.22, 1.21, 1.20, 1.19 | 3.14.2         | 1.19.9†       | 4.0.17             |
-|    | v1.1.0                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.13             |
-|    | v1.0.5                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.9              |
-|    | v1.0.4                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.6              |
-|    | v1.0.3                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.5              |
-|    | v1.0.2                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.3              |
-|    | v1.0.1                | 1.22, 1.21, 1.20, 1.19       | 3.14.2         | 1.19.9†       | 4.0.2              |
-|    | v1.0.0                | 1.22, 1.21, 1.20, 1.19       | 3.13.5         | 1.20.1        | 4.0.1              |
-
-
-† _This build is
-[patched against CVE-2021-23017](https://github.com/openresty/openresty/commit/4b5ec7edd78616f544abc194308e0cf4b788725b#diff-42ef841dc27fe0b5aa2d06bd31308bb63a59cdcddcbcddd917248349d22020a3)._
 
 See [this article](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/) if you want upgrade to the stable
 Ingress API.
@@ -74,12 +60,12 @@ Thanks for taking the time to join our community and start contributing!
 - This project adheres to the [Kubernetes Community Code of Conduct](https://git.k8s.io/community/code-of-conduct.md).
   By participating in this project, you agree to abide by its terms.
 
-- **Contributing**: Contributions of all kind are welcome!
+- **Contributing**: Contributions of all kinds are welcome!
 
   - Read [`CONTRIBUTING.md`](CONTRIBUTING.md) for information about setting up your environment, the workflow that we
     expect, and instructions on the developer certificate of origin that we require.
   - Join our Kubernetes Slack channel for developer discussion : [#ingress-nginx-dev](https://kubernetes.slack.com/archives/C021E147ZA4).
-  - Submit GitHub issues for any feature enhancements, bugs or documentation problems.
+  - Submit GitHub issues for any feature enhancements, bugs, or documentation problems.
     - Please make sure to read the [Issue Reporting Checklist](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md#issue-reporting-guidelines) before opening an issue. Issues not conforming to the guidelines **may be closed immediately**.
   - Join our [ingress-nginx-dev mailing list](https://groups.google.com/a/kubernetes.io/g/ingress-nginx-dev/c/ebbBMo-zX-w)
 

From e2ee3346db6ce667c4b9e79c6944ba405c741db1 Mon Sep 17 00:00:00 2001
From: Stefan Lobbenmeier <stefan.lobbenmeier@objego.de>
Date: Thu, 28 Sep 2023 17:38:34 +0200
Subject: [PATCH 0955/1641] Link configuration snippet to
 allow-snippet-annotations (#10456)

---
 docs/user-guide/nginx-configuration/annotations.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 877654d12..cd48c1f69 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -316,7 +316,7 @@ nginx.ingress.kubernetes.io/configuration-snippet: |
   more_set_headers "Request-Id: $req_id";
 ```
 
-Be aware this can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. The recommended mitigation for this threat is to disable this feature, so it may not work for you. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
+Since version 1.9.0 this annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md/#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
 
 ### Custom HTTP Errors
 

From ae86c07298e9f910a904f671a97b54635c24cfb8 Mon Sep 17 00:00:00 2001
From: Stefan Lobbenmeier <stefan.lobbenmeier@objego.de>
Date: Thu, 28 Sep 2023 18:02:34 +0200
Subject: [PATCH 0956/1641] Fix link from #10456 (#10458)

---
 docs/user-guide/nginx-configuration/annotations.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index cd48c1f69..c2da56291 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -316,7 +316,7 @@ nginx.ingress.kubernetes.io/configuration-snippet: |
   more_set_headers "Request-Id: $req_id";
 ```
 
-Since version 1.9.0 this annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md/#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
+Since version 1.9.0 this annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
 
 ### Custom HTTP Errors
 

From 1fbfcbd9078475f53f51c036d514dbe53d1efc35 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Thu, 28 Sep 2023 22:20:42 -0300
Subject: [PATCH 0957/1641] Accept backend protocol on any case (#10460)

---
 go.work.sum                                   | 24 +++++++++++++++++++
 .../ingress/controller/template/template.go   |  2 +-
 test/e2e/annotations/backendprotocol.go       | 15 ++++++++++++
 3 files changed, 40 insertions(+), 1 deletion(-)

diff --git a/go.work.sum b/go.work.sum
index 7eb8379b8..93c6eaa89 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -121,6 +121,7 @@ cloud.google.com/go/vpcaccess v1.7.1/go.mod h1:FogoD46/ZU+JUBX9D606X21EnxiszYi2t
 cloud.google.com/go/webrisk v1.9.1/go.mod h1:4GCmXKcOa2BZcZPn6DCEvE7HypmEJcJkr4mtM+sqYPc=
 cloud.google.com/go/websecurityscanner v1.6.1/go.mod h1:Njgaw3rttgRHXzwCB8kgCYqv5/rGpFCsBOvPbYgszpg=
 cloud.google.com/go/workflows v1.11.1/go.mod h1:Z+t10G1wF7h8LgdY/EmRcQY8ptBD/nvofaL6FqlET6g=
+github.com/Azure/go-ansiterm v0.0.0-20210617225240-d185dfc1b5a1/go.mod h1:xomTg63KZ2rFqZQzSB4Vz2SUXa1BpHTVz9L5PTmPC4E=
 github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
 github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
 github.com/PuerkitoBio/purell v1.1.1/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
@@ -129,6 +130,8 @@ github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kd
 github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5/go.mod h1:wHh0iHkYZB8zMSxRWpUBQtwG5a7fFgvEO+odwuTv2gs=
 github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
 github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
+github.com/checkpoint-restore/go-criu/v5 v5.3.0/go.mod h1:E/eQpaFtUKGOOSEBZgmKAcn+zUUwWxqcaKZlF54wK8E=
+github.com/cilium/ebpf v0.7.0/go.mod h1:/oI2+1shJiTGAMgl6/RgJr36Eo1jzrRcAWbcXO2usCA=
 github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
 github.com/cncf/udpa/go v0.0.0-20210930031921-04548b0d99d4/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
 github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
@@ -136,7 +139,11 @@ github.com/cncf/xds/go v0.0.0-20210805033703-aa0b78936158/go.mod h1:eXthEFrGJvWH
 github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20230607035331-e9ce68804cb4/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
+github.com/coreos/go-oidc v2.1.0+incompatible/go.mod h1:CgnwVTmzoESiwO9qyAFEMiHoZ1nMCKZlZ9V6mm3/LKc=
 github.com/coreos/go-semver v0.3.0/go.mod h1:nnelYz7RCh+5ahJtPPxZlU+153eP4D4r3EedlOD2RNk=
+github.com/docker/go-units v0.4.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
+github.com/dustin/go-humanize v1.0.0/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25KnS6fMYU6eOk=
 github.com/emicklei/go-restful/v3 v3.8.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
 github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
 github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
@@ -144,6 +151,8 @@ github.com/envoyproxy/go-control-plane v0.9.10-0.20210907150352-cf90f659a021/go.
 github.com/envoyproxy/go-control-plane v0.11.1/go.mod h1:uhMcXKCQMEJHiAb0w+YGefQLaTEw+YhGluxZkrTmD0g=
 github.com/envoyproxy/protoc-gen-validate v1.0.2/go.mod h1:GpiZQP3dDbg4JouG/NNS7QWXpgx6x8QiMKdmN72jogE=
 github.com/felixge/httpsnoop v1.0.3/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
+github.com/form3tech-oss/jwt-go v3.2.3+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
+github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
 github.com/go-logr/logr v0.1.0/go.mod h1:ixOQHD9gLJUVQQ2ZOR7zLEifBX6tGkNJF4QyIY7sIas=
 github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE=
 github.com/go-openapi/jsonreference v0.20.2 h1:3sVjiK66+uXK/6oQ8xgcRKcFgQ5KXa2KvnJRumpMGbE=
@@ -163,9 +172,13 @@ github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+
 github.com/googleapis/enterprise-certificate-proxy v0.2.3/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
 github.com/googleapis/gax-go/v2 v2.11.0/go.mod h1:DxmR61SGKkGLa2xigwuZIQpkCI2S5iydzRfb3peWZJI=
 github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
+github.com/grpc-ecosystem/go-grpc-middleware v1.3.0/go.mod h1:z0ButlSOZa5vEBq9m2m2hlwIgKw+rp3sdCBRoJY+30Y=
 github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgfV/d3M/q6VIi02HzZEHgUlZvzk=
 github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
+github.com/jonboulle/clockwork v0.2.2/go.mod h1:Pkfl5aHPm1nk2H9h0bjmnJD/BcgbGXUBGnn1kMkgxc8=
 github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
+github.com/moby/term v0.0.0-20221205130635-1aeaba878587/go.mod h1:8FzsFHVUBGZdbDsJw/ot+X+d5HLUbvklYLJ9uGfcI3Y=
+github.com/mrunalp/fileutils v0.5.0/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
 github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
 github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
@@ -173,12 +186,21 @@ github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47
 github.com/onsi/ginkgo/v2 v2.9.4/go.mod h1:gCQYp2Q+kSoIj7ykSVb9nskRSsR6PUj4AiLywzIhbKM=
 github.com/onsi/ginkgo/v2 v2.11.0/go.mod h1:ZhrRA5XmEE3x3rhlzamx/JJvujdZoJ2uvgI7kR0iZvM=
 github.com/onsi/gomega v1.19.0/go.mod h1:LY+I3pBVzYsTBU1AnDwOSxaYi9WoWiqgwooUqq9yPro=
+github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
 github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ=
 github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
+github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
 github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
+github.com/soheilhy/cmux v0.1.5/go.mod h1:T7TcVDs9LWfQgPlPsdngu6I6QIoyIFZDDC6sNE1GqG0=
 github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
+github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
+github.com/tmc/grpc-websocket-proxy v0.0.0-20201229170055-e5319fda7802/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
+github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
+github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
+github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
 github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
 github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
+go.etcd.io/bbolt v1.3.6/go.mod h1:qXsaaIqmgQH0T+OPdb99Bf+PKfBBQVAdyD6TY9G8XM4=
 go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo=
 go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI=
 go.opentelemetry.io/proto/otlp v0.19.0/go.mod h1:H7XAot3MsfNsj7EXtrA2q5xSNQ10UqI405h3+duxN4U=
@@ -242,6 +264,8 @@ google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBt
 google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
 google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+gopkg.in/natefinch/lumberjack.v2 v2.0.0/go.mod h1:l0ndWWf7gzL7RNwBG7wST/UCcT4T24xpD6X8LsfU/+k=
+gopkg.in/square/go-jose.v2 v2.2.2/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
 gopkg.in/yaml.v2 v2.2.3/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 4e51ac665..6702e08db 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -728,7 +728,7 @@ func buildProxyPass(_ string, b, loc interface{}) string {
 
 	proxyPass := "proxy_pass"
 
-	switch location.BackendProtocol {
+	switch strings.ToUpper(location.BackendProtocol) {
 	case autoHTTPProtocol:
 		proto = "$scheme://"
 	case httpsProtocol:
diff --git a/test/e2e/annotations/backendprotocol.go b/test/e2e/annotations/backendprotocol.go
index d0a08c767..0a181d3c7 100644
--- a/test/e2e/annotations/backendprotocol.go
+++ b/test/e2e/annotations/backendprotocol.go
@@ -48,6 +48,21 @@ var _ = framework.DescribeAnnotation("backend-protocol", func() {
 			})
 	})
 
+	ginkgo.It("should set backend protocol to https:// and use proxy_pass with lowercase annotation", func() {
+		host := backendProtocolHost
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/backend-protocol": "https",
+		}
+
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, "proxy_pass https://upstream_balancer;")
+			})
+	})
+
 	ginkgo.It("should set backend protocol to $scheme:// and use proxy_pass", func() {
 		host := backendProtocolHost
 		annotations := map[string]string{

From 362ec37778146520374e82c594d3aeae82c7f617 Mon Sep 17 00:00:00 2001
From: Nicolas Woerner <69248573+niwoerner@users.noreply.github.com>
Date: Sun, 1 Oct 2023 20:18:44 +0200
Subject: [PATCH 0958/1641] images: upgrade to Alpine 3.18.4 (#10466)

---
 images/cfssl/rootfs/Dockerfile         | 2 +-
 images/nginx/rootfs/Dockerfile         | 4 ++--
 images/opentelemetry/rootfs/Dockerfile | 2 +-
 rootfs/Dockerfile-chroot               | 2 +-
 test/e2e-image/Dockerfile              | 2 +-
 5 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index 89a5eef9c..4ad69d362 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.18.2
+FROM alpine:3.18.4
 
 
 RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index d5cd8c143..aba0ab70b 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.18.2 as builder
+FROM alpine:3.18.4 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.18.2
+FROM alpine:3.18.4
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index 819c0d42c..b46b116e0 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.18.2 as base
+FROM alpine:3.18.4 as base
 
 RUN mkdir -p /opt/third_party/install
 COPY . /opt/third_party/
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index 945304ad2..09e0ba7ce 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.18.2
+FROM alpine:3.18.4
 
 ARG TARGETARCH
 ARG VERSION
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 28609d23d..cd0bcb715 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,7 +1,7 @@
 ARG E2E_BASE_IMAGE
 FROM ${E2E_BASE_IMAGE} AS BASE
 
-FROM alpine:3.18.2
+FROM alpine:3.18.4
 
 RUN apk update \
 	&& apk upgrade && apk add -U --no-cache \

From 3a28016a6461d029253d9c6bb1c013f2d59efd5d Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Sun, 1 Oct 2023 14:51:48 -0400
Subject: [PATCH 0959/1641] fix brotli build issues

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/nginx/rootfs/build.sh | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index e35fde7f4..dc1d12547 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -466,8 +466,10 @@ make install
 
 # Get Brotli source and deps
 cd "$BUILD_PATH"
-git clone --depth=1 https://github.com/google/ngx_brotli.git
+git clone --depth=100 https://github.com/google/ngx_brotli.git
 cd ngx_brotli
+# https://github.com/google/ngx_brotli/issues/156
+git reset --hard 63ca02abdcf79c9e788d2eedcc388d2335902e52
 git submodule init
 git submodule update
 

From 24b139424dd632b02a40e64872ee3410f76297bf Mon Sep 17 00:00:00 2001
From: Ricardo Katz <ricardo.katz@gmail.com>
Date: Sun, 1 Oct 2023 17:58:44 -0300
Subject: [PATCH 0960/1641] Release v1.9.1

---
 changelog/Changelog-1.9.1.md                  | 19 ++++++
 charts/ingress-nginx/Chart.yaml               | 10 +--
 charts/ingress-nginx/README.md                |  8 +--
 .../changelog/Changelog-4.8.1.md              |  9 +++
 charts/ingress-nginx/values.yaml              |  8 +--
 deploy/static/provider/aws/deploy.yaml        | 67 +++++++++++++------
 .../aws/nlb-with-tls-termination/deploy.yaml  | 67 +++++++++++++------
 deploy/static/provider/baremetal/deploy.yaml  | 67 +++++++++++++------
 deploy/static/provider/cloud/deploy.yaml      | 67 +++++++++++++------
 deploy/static/provider/do/deploy.yaml         | 67 +++++++++++++------
 deploy/static/provider/exoscale/deploy.yaml   | 67 +++++++++++++------
 deploy/static/provider/kind/deploy.yaml       | 67 +++++++++++++------
 deploy/static/provider/oracle/deploy.yaml     | 67 +++++++++++++------
 deploy/static/provider/scw/deploy.yaml        | 67 +++++++++++++------
 docs/e2e-tests.md                             | 11 +--
 15 files changed, 449 insertions(+), 219 deletions(-)
 create mode 100644 changelog/Changelog-1.9.1.md
 create mode 100644 charts/ingress-nginx/changelog/Changelog-4.8.1.md

diff --git a/changelog/Changelog-1.9.1.md b/changelog/Changelog-1.9.1.md
new file mode 100644
index 000000000..07790098f
--- /dev/null
+++ b/changelog/Changelog-1.9.1.md
@@ -0,0 +1,19 @@
+# Changelog
+
+### 1.9.1
+Images:
+
+ * registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
+ * registry.k8s.io/ingress-nginx/controller-chroot:v1.9.1@sha256:2ac744ef08850ee86ad7162451a6879f47c1a41c6a757f6b6f913c52103b8836
+ 
+### All Changes:
+
+* upgrade owasp modsecurity core rule set to v3.3.5 (#10437)
+* Start v1.9.1 release (#10463)
+* Accept backend protocol on any case (#10461)
+* Chart: Rework network policies. (#10438)
+
+### Dependencies updates: 
+* Bump google.golang.org/grpc from 1.58.0 to 1.58.1 (#10436)
+ 
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.9.0...controller-controller-v1.9.1
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 058e4c862..d49b3f7cc 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,13 +1,9 @@
 annotations:
   artifacthub.io/changes: |
-     - "ci(helm): fix Helm Chart release action 422 error (#10237)"
-     - "helm: Use .Release.Namespace as default for ServiceMonitor namespace (#10249)"
-     - "[helm] configure allow to configure hostAliases (#10180)"
-     - "[helm] pass service annotations through helm tpl engine (#10084)"
-     - "Update Ingress-Nginx version controller-v1.9.0"
+     - "Update Ingress-Nginx version controller-v1.9.1"
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.9.0
+appVersion: 1.9.1
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 home: https://github.com/kubernetes/ingress-nginx
@@ -23,4 +19,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.8.0
+version: 4.8.1
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 40ee83137..9016e9290 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.8.0](https://img.shields.io/badge/Version-4.8.0-informational?style=flat-square) ![AppVersion: 1.9.0](https://img.shields.io/badge/AppVersion-1.9.0-informational?style=flat-square)
+![Version: 4.8.1](https://img.shields.io/badge/Version-4.8.1-informational?style=flat-square) ![AppVersion: 1.9.1](https://img.shields.io/badge/AppVersion-1.9.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -314,13 +314,13 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60"` |  |
-| controller.image.digestChroot | string | `"sha256:d9fa7a136de2104fb2ecfcf1666978bfab927f4a125b75c0fb471e6104366ab5"` |  |
+| controller.image.digest | string | `"sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25"` |  |
+| controller.image.digestChroot | string | `"sha256:2ac744ef08850ee86ad7162451a6879f47c1a41c6a757f6b6f913c52103b8836"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.9.0"` |  |
+| controller.image.tag | string | `"v1.9.1"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/Changelog-4.8.1.md b/charts/ingress-nginx/changelog/Changelog-4.8.1.md
new file mode 100644
index 000000000..53a4493de
--- /dev/null
+++ b/charts/ingress-nginx/changelog/Changelog-4.8.1.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.8.1
+
+* Update Ingress-Nginx version controller-v1.9.1
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.8.0...helm-chart-4.8.1
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 2541f268d..196e14017 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -24,9 +24,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.9.0"
-    digest: sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
-    digestChroot: sha256:d9fa7a136de2104fb2ecfcf1666978bfab927f4a125b75c0fb471e6104366ab5
+    tag: "v1.9.1"
+    digest: sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
+    digestChroot: sha256:2ac744ef08850ee86ad7162451a6879f47c1a41c6a757f6b6f913c52103b8836
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
@@ -875,12 +875,10 @@ defaultBackend:
     maxReplicas: 2
     targetCPUUtilizationPercentage: 50
     targetMemoryUtilizationPercentage: 50
-
   # NetworkPolicy for default backend component.
   networkPolicy:
     # -- Enable 'networkPolicy' or not
     enabled: false
-
   service:
     annotations: {}
     # clusterIP: ""
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 854d50e37..6bfeeefcb 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -565,7 +565,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -576,7 +576,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -614,11 +614,34 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.9.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+spec:
+  egress:
+  - {}
+  podSelector:
+    matchLabels:
+      app.kubernetes.io/component: admission-webhook
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  policyTypes:
+  - Ingress
+  - Egress
+---
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -627,7 +650,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 28dbe82a5..a132f38e1 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -431,7 +431,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
     spec:
       containers:
       - args:
@@ -455,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -577,7 +577,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -588,7 +588,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -626,11 +626,34 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.9.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+spec:
+  egress:
+  - {}
+  podSelector:
+    matchLabels:
+      app.kubernetes.io/component: admission-webhook
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  policyTypes:
+  - Ingress
+  - Egress
+---
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -639,7 +662,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index a757ff71e..b35870f51 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
     spec:
       containers:
       - args:
@@ -440,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -512,7 +512,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -523,7 +523,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -559,7 +559,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -570,7 +570,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -608,11 +608,34 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.9.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+spec:
+  egress:
+  - {}
+  podSelector:
+    matchLabels:
+      app.kubernetes.io/component: admission-webhook
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  policyTypes:
+  - Ingress
+  - Egress
+---
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -621,7 +644,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 9c55fb0de..f1a023d23 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -514,7 +514,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -525,7 +525,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -561,7 +561,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -572,7 +572,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -610,11 +610,34 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.9.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+spec:
+  egress:
+  - {}
+  podSelector:
+    matchLabels:
+      app.kubernetes.io/component: admission-webhook
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  policyTypes:
+  - Ingress
+  - Egress
+---
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -623,7 +646,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index c44569512..21d9e7d79 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -564,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -613,11 +613,34 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.9.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+spec:
+  egress:
+  - {}
+  podSelector:
+    matchLabels:
+      app.kubernetes.io/component: admission-webhook
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  policyTypes:
+  - Ingress
+  - Egress
+---
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -626,7 +649,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 5ddda1a2f..720d6a855 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -570,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -619,11 +619,34 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.9.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+spec:
+  egress:
+  - {}
+  podSelector:
+    matchLabels:
+      app.kubernetes.io/component: admission-webhook
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  policyTypes:
+  - Ingress
+  - Egress
+---
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -632,7 +655,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index e26cdc070..f162a4ce0 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -620,11 +620,34 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.9.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+spec:
+  egress:
+  - {}
+  podSelector:
+    matchLabels:
+      app.kubernetes.io/component: admission-webhook
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  policyTypes:
+  - Ingress
+  - Egress
+---
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -633,7 +656,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index 8733ee83b..8aa6a4c55 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -565,7 +565,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -576,7 +576,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -614,11 +614,34 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.9.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+spec:
+  egress:
+  - {}
+  podSelector:
+    matchLabels:
+      app.kubernetes.io/component: admission-webhook
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  policyTypes:
+  - Ingress
+  - Egress
+---
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -627,7 +650,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index fceda01a7..2ffcd28f8 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -564,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.0
+        app.kubernetes.io/version: 1.9.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -613,11 +613,34 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.9.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+spec:
+  egress:
+  - {}
+  podSelector:
+    matchLabels:
+      app.kubernetes.io/component: admission-webhook
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  policyTypes:
+  - Ingress
+  - Egress
+---
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -626,7 +649,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.0
+    app.kubernetes.io/version: 1.9.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index bd3936801..0a6ca0a7d 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -83,10 +83,11 @@ Do not try to edit it manually.
 - [should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L325)
 ### [backend-protocol](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L29)
 - [should set backend protocol to https:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L36)
-- [should set backend protocol to $scheme:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L51)
-- [should set backend protocol to grpc:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L66)
-- [should set backend protocol to grpcs:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L81)
-- [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L96)
+- [should set backend protocol to https:// and use proxy_pass with lowercase annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L51)
+- [should set backend protocol to $scheme:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L66)
+- [should set backend protocol to grpc:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L81)
+- [should set backend protocol to grpcs:// and use grpc_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L96)
+- [should set backend protocol to '' and use fastcgi_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L111)
 ### [canary-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L36)
 - [should response with a 200 status from the mainline upstream when requests are made to the mainline ingress](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L45)
 - [should return 404 status for requests to the canary if no matching ingress is found](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/canary.go#L89)
@@ -554,4 +555,4 @@ Do not try to edit it manually.
 ### [[TCP] tcp-services](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/tcpudp/tcp.go#L38)
 - [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/tcpudp/tcp.go#L46)
 - [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/tcpudp/tcp.go#L80)
-- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/tcpudp/tcp.go#L169)
\ No newline at end of file
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/tcpudp/tcp.go#L169)

From fb64ba6384472ec574e07cacd018bce27d3eab34 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 2 Oct 2023 04:22:47 -0700
Subject: [PATCH 0961/1641] Bump github.com/prometheus/client_golang from
 1.16.0 to 1.17.0 (#10472)

Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.16.0 to 1.17.0.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.16.0...v1.17.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 7643d4ef0..e04f22320 100644
--- a/go.mod
+++ b/go.mod
@@ -17,8 +17,8 @@ require (
 	github.com/onsi/ginkgo/v2 v2.12.0
 	github.com/opencontainers/runc v1.1.9
 	github.com/pmezard/go-difflib v1.0.0
-	github.com/prometheus/client_golang v1.16.0
-	github.com/prometheus/client_model v0.4.0
+	github.com/prometheus/client_golang v1.17.0
+	github.com/prometheus/client_model v0.4.1-0.20230718164431-9a2bf3000d16
 	github.com/prometheus/common v0.44.0
 	github.com/spf13/cobra v1.7.0
 	github.com/spf13/pflag v1.0.5
@@ -93,7 +93,7 @@ require (
 	github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
-	github.com/prometheus/procfs v0.10.1 // indirect
+	github.com/prometheus/procfs v0.11.1 // indirect
 	github.com/sergi/go-diff v1.1.0 // indirect
 	github.com/sirupsen/logrus v1.8.1 // indirect
 	github.com/xlab/treeprint v1.1.0 // indirect
diff --git a/go.sum b/go.sum
index e5207da08..5943586e0 100644
--- a/go.sum
+++ b/go.sum
@@ -304,14 +304,14 @@ github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXP
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
-github.com/prometheus/client_golang v1.16.0 h1:yk/hx9hDbrGHovbci4BY+pRMfSuuat626eFsHb7tmT8=
-github.com/prometheus/client_golang v1.16.0/go.mod h1:Zsulrv/L9oM40tJ7T815tM89lFEugiJ9HzIqaAx4LKc=
+github.com/prometheus/client_golang v1.17.0 h1:rl2sfwZMtSthVU752MqfjQozy7blglC+1SOtjMAMh+Q=
+github.com/prometheus/client_golang v1.17.0/go.mod h1:VeL+gMmOAxkS2IqfCq0ZmHSL+LjWfWDUmp1mBz9JgUY=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/client_model v0.4.0 h1:5lQXD3cAg1OXBf4Wq03gTrXHeaV0TQvGfUooCfx1yqY=
-github.com/prometheus/client_model v0.4.0/go.mod h1:oMQmHW1/JoDwqLtg57MGgP/Fb1CJEYF2imWWhWtMkYU=
+github.com/prometheus/client_model v0.4.1-0.20230718164431-9a2bf3000d16 h1:v7DLqVdK4VrYkVD5diGdl4sxJurKJEMnODWRJlxV9oM=
+github.com/prometheus/client_model v0.4.1-0.20230718164431-9a2bf3000d16/go.mod h1:oMQmHW1/JoDwqLtg57MGgP/Fb1CJEYF2imWWhWtMkYU=
 github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
@@ -324,8 +324,8 @@ github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsT
 github.com/prometheus/procfs v0.1.3/go.mod h1:lV6e/gmhEcM9IjHGsFOCxxuZ+z1YqCvr4OA4YeYWdaU=
 github.com/prometheus/procfs v0.6.0/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
 github.com/prometheus/procfs v0.7.3/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
-github.com/prometheus/procfs v0.10.1 h1:kYK1Va/YMlutzCGazswoHKo//tZVlFpKYh+PymziUAg=
-github.com/prometheus/procfs v0.10.1/go.mod h1:nwNm2aOCAYw8uTR/9bWRREkZFxAUcWzPHWJq+XBB/FM=
+github.com/prometheus/procfs v0.11.1 h1:xRC8Iq1yyca5ypa9n1EZnWZkt7dwcoRPQwX/5gwaUuI=
+github.com/prometheus/procfs v0.11.1/go.mod h1:eesXgaPo1q7lBpVMoMy0ZOFTth9hBn4W/y0/p/ScXhY=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
 github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTEfhy4qGm1nDQc=
 github.com/rogpeppe/go-internal v1.8.0/go.mod h1:WmiCO8CzOY8rg0OYDC4/i/2WRWAB6poM+XZ2dLUbcbE=

From a4de4debecfd6fc96c564b286a6dee04f5398e3a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?ChangZhuo=20Chen=20=28=E9=99=B3=E6=98=8C=E5=80=AC=29?=
 <czchen@czchen.org>
Date: Tue, 3 Oct 2023 21:56:07 +0800
Subject: [PATCH 0962/1641] docs(tls): add warning for not supporting TLSv1,
 TLSv1.1 (#10473)

---
 docs/user-guide/tls.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/docs/user-guide/tls.md b/docs/user-guide/tls.md
index 11338981b..f6fee6895 100644
--- a/docs/user-guide/tls.md
+++ b/docs/user-guide/tls.md
@@ -127,6 +127,9 @@ ingress-nginx defaults to using TLS 1.2 and 1.3 only, with a [secure set of TLS
 
 ### Legacy TLS
 
+!!! warning
+    TLSv1, TLSv1.1 are not supported in ingress-nginx v1.6.0 and above.
+
 The default configuration, though secure, does not support some older browsers and operating systems.
 
 For instance, TLS 1.1+ is only enabled by default from Android 5.0 on. At the time of writing,

From 5b5dc6027a76dc2f1cd9b962b38eb5d1227d0a36 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 3 Oct 2023 16:18:40 -0400
Subject: [PATCH 0963/1641] update readme and TAG

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 README.md | 1 +
 TAG       | 2 +-
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 34b898a54..9892b08a8 100644
--- a/README.md
+++ b/README.md
@@ -38,6 +38,7 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 
 |  Supported  | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
 |:--:|-----------------------|------------------------------|----------------|---------------|------------------------------|
+| 🔄 | **v1.9.1**            | 1.28, 1.27,1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
 | 🔄 | **v1.9.0**            | 1.28, 1.27,1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
 | 🔄 | **v1.8.2**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
 | 🔄 | **v1.8.1**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
diff --git a/TAG b/TAG
index 57f52717b..ba1e8bf0b 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.8.2
+v1.9.1

From 8bd33d29e742c2b26070a8362eb11dee5ad0a0d2 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 4 Oct 2023 16:48:34 -0300
Subject: [PATCH 0964/1641] Remove curl from nginx base image (#10477)

---
 images/nginx/rootfs/Dockerfile | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index aba0ab70b..9c5304790 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -65,7 +65,10 @@ RUN apk update \
   for dir in "${writeDirs[@]}"; do \
   mkdir -p ${dir}; \
   chown -R www-data.www-data ${dir}; \
-  done'
+  done' \
+  # Why we do this? Because apk package of the library requests curl and we dont want curl
+  && mv /usr/lib/libmaxminddb.so.* /usr/local/lib/ \
+  && apk del --purge libmaxminddb curl
 
 EXPOSE 80 443
 

From 223c70bd090d7fa29ca6e004deaf05d206c386a0 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 5 Oct 2023 01:42:21 -0400
Subject: [PATCH 0965/1641] update error and otel to have all the arch we
 support (#10476)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/custom-error-pages/Makefile | 2 +-
 images/opentelemetry/Makefile      | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/custom-error-pages/Makefile b/images/custom-error-pages/Makefile
index 810736cca..98f7104a7 100644
--- a/images/custom-error-pages/Makefile
+++ b/images/custom-error-pages/Makefile
@@ -31,7 +31,7 @@ IMAGE = $(REGISTRY)/nginx-errors
 export DOCKER_CLI_EXPERIMENTAL=enabled
 
 # build with buildx
-PLATFORMS?=linux/amd64
+PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
 OUTPUT=
 PROGRESS=plain
 
diff --git a/images/opentelemetry/Makefile b/images/opentelemetry/Makefile
index 07a66beed..03d92a298 100644
--- a/images/opentelemetry/Makefile
+++ b/images/opentelemetry/Makefile
@@ -32,7 +32,7 @@ IMAGE = $(REGISTRY)/opentelemetry
 export DOCKER_CLI_EXPERIMENTAL=enabled
 
 # build with buildx
-PLATFORMS?=linux/amd64,linux/arm64
+PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
 OUTPUT=
 PROGRESS=plain
 build: ensure-buildx

From 3e26fc3740a6a36fdfb6cfbd4feacde6a527b60d Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Fri, 6 Oct 2023 23:04:58 -0300
Subject: [PATCH 0966/1641] Revert "Remove curl from nginx base image (#10477)"
 (#10479)

This reverts commit 8bd33d29e742c2b26070a8362eb11dee5ad0a0d2.
---
 images/nginx/rootfs/Dockerfile | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 9c5304790..aba0ab70b 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -65,10 +65,7 @@ RUN apk update \
   for dir in "${writeDirs[@]}"; do \
   mkdir -p ${dir}; \
   chown -R www-data.www-data ${dir}; \
-  done' \
-  # Why we do this? Because apk package of the library requests curl and we dont want curl
-  && mv /usr/lib/libmaxminddb.so.* /usr/local/lib/ \
-  && apk del --purge libmaxminddb curl
+  done'
 
 EXPOSE 80 443
 

From c43c3dd65655eb104d446eb7cec69a7dc553c489 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Oct 2023 13:45:37 +0200
Subject: [PATCH 0967/1641] Bump golang.org/x/crypto from 0.13.0 to 0.14.0
 (#10485)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.13.0 to 0.14.0.
- [Commits](https://github.com/golang/crypto/compare/v0.13.0...v0.14.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index e04f22320..a4581a08c 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.4
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
-	golang.org/x/crypto v0.13.0
+	golang.org/x/crypto v0.14.0
 	google.golang.org/grpc v1.58.2
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -103,8 +103,8 @@ require (
 	golang.org/x/mod v0.12.0 // indirect
 	golang.org/x/net v0.14.0 // indirect
 	golang.org/x/oauth2 v0.10.0 // indirect
-	golang.org/x/sys v0.12.0 // indirect
-	golang.org/x/term v0.12.0 // indirect
+	golang.org/x/sys v0.13.0 // indirect
+	golang.org/x/term v0.13.0 // indirect
 	golang.org/x/text v0.13.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.12.0 // indirect
diff --git a/go.sum b/go.sum
index 5943586e0..7307335eb 100644
--- a/go.sum
+++ b/go.sum
@@ -397,8 +397,8 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.13.0 h1:mvySKfSWJ+UKUii46M40LOvyWfN0s2U+46/jDd0e6Ck=
-golang.org/x/crypto v0.13.0/go.mod h1:y6Z2r+Rw4iayiXXAIxJIDAJ1zMW4yaTpebo8fPOliYc=
+golang.org/x/crypto v0.14.0 h1:wBqGXzWJW6m1XrIKlAH0Hs1JJ7+9KBwnIO8v66Q9cHc=
+golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -531,11 +531,11 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.12.0 h1:CM0HF96J0hcLAwsHPJZjfdNzs0gftsLfgKt57wWHJ0o=
-golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.13.0 h1:Af8nKPmuFypiUBjVoU9V20FiaFXOcuZI21p0ycVYYGE=
+golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.12.0 h1:/ZfYdc3zq+q02Rv9vGqTeSItdzZTSNDmfTi0mBAuidU=
-golang.org/x/term v0.12.0/go.mod h1:owVbMEjm3cBLCHdkQu9b1opXd4ETQWc3BhuQGKgXgvU=
+golang.org/x/term v0.13.0 h1:bb+I9cTfFazGW51MZqBVmZy7+JEJMouUHTUSKVQLBek=
+golang.org/x/term v0.13.0/go.mod h1:LTmsnFJwVN6bCy1rVCoS+qHT1HhALEFxKncY3WNNh4U=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=

From 921ca509d24c99b967f5121134dd7d93e0d5c208 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 10 Oct 2023 18:22:02 +0200
Subject: [PATCH 0968/1641] Bump ossf/scorecard-action from 2.2.0 to 2.3.0
 (#10487)

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.2.0 to 2.3.0.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](https://github.com/ossf/scorecard-action/compare/08b4669551908b1024bb425080c797723083c031...483ef80eb98fb506c348f7d62e28055e49fe2398)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index d066f5363..1c8f8d00b 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -32,7 +32,7 @@ jobs:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@08b4669551908b1024bb425080c797723083c031 # v2.2.0
+        uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398 # v2.3.0
         with:
           results_file: results.sarif
           results_format: sarif

From 371a3859f878806c9d45264fbfdf4ff8e7566ae6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 10 Oct 2023 23:04:47 +0200
Subject: [PATCH 0969/1641] Bump github.com/prometheus/client_model (#10486)

Bumps [github.com/prometheus/client_model](https://github.com/prometheus/client_model) from 0.4.1-0.20230718164431-9a2bf3000d16 to 0.5.0.
- [Release notes](https://github.com/prometheus/client_model/releases)
- [Commits](https://github.com/prometheus/client_model/commits/v0.5.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_model
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index a4581a08c..eef1ab989 100644
--- a/go.mod
+++ b/go.mod
@@ -18,7 +18,7 @@ require (
 	github.com/opencontainers/runc v1.1.9
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.17.0
-	github.com/prometheus/client_model v0.4.1-0.20230718164431-9a2bf3000d16
+	github.com/prometheus/client_model v0.5.0
 	github.com/prometheus/common v0.44.0
 	github.com/spf13/cobra v1.7.0
 	github.com/spf13/pflag v1.0.5
diff --git a/go.sum b/go.sum
index 7307335eb..8f7bbb6a6 100644
--- a/go.sum
+++ b/go.sum
@@ -310,8 +310,8 @@ github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/client_model v0.4.1-0.20230718164431-9a2bf3000d16 h1:v7DLqVdK4VrYkVD5diGdl4sxJurKJEMnODWRJlxV9oM=
-github.com/prometheus/client_model v0.4.1-0.20230718164431-9a2bf3000d16/go.mod h1:oMQmHW1/JoDwqLtg57MGgP/Fb1CJEYF2imWWhWtMkYU=
+github.com/prometheus/client_model v0.5.0 h1:VQw1hfvPvk3Uv6Qf29VrPF32JB6rtbgI6cYPYQjL0Qw=
+github.com/prometheus/client_model v0.5.0/go.mod h1:dTiFglRmd66nLR9Pv9f0mZi7B7fk5Pm3gvsjB5tr+kI=
 github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=

From a0eac185af2b543e948482f4df0ea748c1ea5e01 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 11 Oct 2023 01:14:23 +0200
Subject: [PATCH 0970/1641] Bump google.golang.org/grpc from 1.58.2 to 1.58.3
 (#10496)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.58.2 to 1.58.3.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.58.2...v1.58.3)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index eef1ab989..dcbe4017f 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
 	golang.org/x/crypto v0.14.0
-	google.golang.org/grpc v1.58.2
+	google.golang.org/grpc v1.58.3
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index 8f7bbb6a6..516a1822b 100644
--- a/go.sum
+++ b/go.sum
@@ -669,8 +669,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.58.2 h1:SXUpjxeVF3FKrTYQI4f4KvbGD5u2xccdYdurwowix5I=
-google.golang.org/grpc v1.58.2/go.mod h1:tgX3ZQDlNJGU96V6yHh1T/JeoBQ2TXdr43YbYSsCJk0=
+google.golang.org/grpc v1.58.3 h1:BjnpXut1btbtgN/6sp+brB2Kbm2LjNXnidYujAVbSoQ=
+google.golang.org/grpc v1.58.3/go.mod h1:tgX3ZQDlNJGU96V6yHh1T/JeoBQ2TXdr43YbYSsCJk0=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From 86f1cedcadd8bb86585f4ef8ee89e6645cbb325e Mon Sep 17 00:00:00 2001
From: "Mark D. Gray" <markdaltongray@gmail.com>
Date: Tue, 10 Oct 2023 19:36:13 -0500
Subject: [PATCH 0971/1641] add upstream patch for CVE-2023-44487 (#10494)

* add upstream patch

* add source

* remove auto-added depend
---
 .../rootfs/patches/nginx-1.21.4-http2.patch   | 57 +++++++++++++++++++
 1 file changed, 57 insertions(+)
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-http2.patch

diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-http2.patch b/images/nginx/rootfs/patches/nginx-1.21.4-http2.patch
new file mode 100644
index 000000000..3b9d57736
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-http2.patch
@@ -0,0 +1,57 @@
+#commit 6ceef192e7af1c507826ac38a2d43f08bf265fb9
+#repository: https://github.com/nginx/nginx
+#Author: Maxim Dounin <mdounin@mdounin.ru>
+#Date:   Tue Oct 10 15:13:39 2023 +0300
+diff --git a/src/http/v2/ngx_http_v2.c b/src/http/v2/ngx_http_v2.c
+index 7c05ff1e7..410a8be24 100644
+--- a/src/http/v2/ngx_http_v2.c
++++ b/src/http/v2/ngx_http_v2.c
+@@ -347,6 +347,7 @@ ngx_http_v2_read_handler(ngx_event_t *rev)
+     ngx_log_debug0(NGX_LOG_DEBUG_HTTP, c->log, 0, "http2 read handler");
+
+     h2c->blocked = 1;
++    h2c->new_streams = 0;
+
+     if (c->close) {
+         c->close = 0;
+@@ -1284,6 +1285,14 @@ ngx_http_v2_state_headers(ngx_http_v2_connection_t *h2c, u_char *pos,
+         goto rst_stream;
+     }
+
++    if (h2c->new_streams++ >= 2 * h2scf->concurrent_streams) {
++        ngx_log_error(NGX_LOG_INFO, h2c->connection->log, 0,
++                      "client sent too many streams at once");
++
++        status = NGX_HTTP_V2_REFUSED_STREAM;
++        goto rst_stream;
++    }
++
+     if (!h2c->settings_ack
+         && !(h2c->state.flags & NGX_HTTP_V2_END_STREAM_FLAG)
+         && h2scf->preread_size < NGX_HTTP_V2_DEFAULT_WINDOW)
+@@ -1349,6 +1358,12 @@ ngx_http_v2_state_headers(ngx_http_v2_connection_t *h2c, u_char *pos,
+
+ rst_stream:
+
++    if (h2c->refused_streams++ > ngx_max(h2scf->concurrent_streams, 100)) {
++        ngx_log_error(NGX_LOG_INFO, h2c->connection->log, 0,
++                      "client sent too many refused streams");
++        return ngx_http_v2_connection_error(h2c, NGX_HTTP_V2_NO_ERROR);
++    }
++
+     if (ngx_http_v2_send_rst_stream(h2c, h2c->state.sid, status) != NGX_OK) {
+         return ngx_http_v2_connection_error(h2c, NGX_HTTP_V2_INTERNAL_ERROR);
+     }
+diff --git a/src/http/v2/ngx_http_v2.h b/src/http/v2/ngx_http_v2.h
+index cb9014ccf..6751b3026 100644
+--- a/src/http/v2/ngx_http_v2.h
++++ b/src/http/v2/ngx_http_v2.h
+@@ -131,6 +131,8 @@ struct ngx_http_v2_connection_s {
+     ngx_uint_t                       processing;
+     ngx_uint_t                       frames;
+     ngx_uint_t                       idle;
++    ngx_uint_t                       new_streams;
++    ngx_uint_t                       refused_streams;
+     ngx_uint_t                       priority_limit;
+
+     size_t                           send_window;
\ No newline at end of file

From cbed4c683196d216def64ef035dc0273fa61e69f Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 11 Oct 2023 03:53:55 -0300
Subject: [PATCH 0972/1641] Remove legacy GeoIP from controller (#10495)

---
 .../nginx-configuration/configmap.md           |  3 +++
 go.work.sum                                    | 18 ++++++++++++++++++
 internal/ingress/controller/config/config.go   |  5 -----
 rootfs/etc/nginx/template/nginx.tmpl           | 10 ----------
 4 files changed, 21 insertions(+), 15 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 1bb205ad3..f7ee3c120 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -720,6 +720,9 @@ Enables or disables compression of HTTP responses using the ["gzip" module](http
 
 ## use-geoip
 
+!!! attention
+   GeoIP is deprecated and removed on v1.10. Users willing to use GeoIP should use GeoIP2
+
 Enables or disables ["geoip" module](https://nginx.org/en/docs/http/ngx_http_geoip_module.html) that creates variables with values depending on the client IP address, using the precompiled MaxMind databases.
 _**default:**_ true
 
diff --git a/go.work.sum b/go.work.sum
index 93c6eaa89..f27920f61 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -127,8 +127,10 @@ github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMo
 github.com/PuerkitoBio/purell v1.1.1/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
 github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578/go.mod h1:uGdkoq3SwY9Y+13GIhn11/XLaGBb4BfwItxLd5jeuXE=
 github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
+github.com/antlr/antlr4/runtime/Go/antlr v1.4.10/go.mod h1:F7bn7fEU90QkQ3tnmaTx3LTKLEDqnwWODIYppRQ5hnY=
 github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5/go.mod h1:wHh0iHkYZB8zMSxRWpUBQtwG5a7fFgvEO+odwuTv2gs=
 github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
+github.com/cenkalti/backoff/v4 v4.1.3/go.mod h1:scbssz8iZGpm3xbr14ovlUdkxfGXNInqkPWOWmG2CLw=
 github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
 github.com/checkpoint-restore/go-criu/v5 v5.3.0/go.mod h1:E/eQpaFtUKGOOSEBZgmKAcn+zUUwWxqcaKZlF54wK8E=
 github.com/cilium/ebpf v0.7.0/go.mod h1:/oI2+1shJiTGAMgl6/RgJr36Eo1jzrRcAWbcXO2usCA=
@@ -160,6 +162,7 @@ github.com/go-openapi/jsonreference v0.20.2/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En
 github.com/golang/glog v1.1.0/go.mod h1:pfYeQZ3JWZoXTV5sFc986z3HTpwQs9At6P4ImfuP3NQ=
 github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
+github.com/google/cel-go v0.12.6/go.mod h1:Jk7ljRzLBhkmiAwBoUxB1sZSCVBAzkqPF25olK/iRDw=
 github.com/google/gnostic-models v0.6.8 h1:yo/ABAfM5IMRsS1VnXjTBvUb61tFIHozhlYvRgGre9I=
 github.com/google/gnostic-models v0.6.8/go.mod h1:5n7qKqH0f5wFt+aWF8CW6pZLLNOfYuF5OpfBSENuI8U=
 github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
@@ -175,7 +178,10 @@ github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/ad
 github.com/grpc-ecosystem/go-grpc-middleware v1.3.0/go.mod h1:z0ButlSOZa5vEBq9m2m2hlwIgKw+rp3sdCBRoJY+30Y=
 github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgfV/d3M/q6VIi02HzZEHgUlZvzk=
 github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
+github.com/grpc-ecosystem/grpc-gateway/v2 v2.11.3/go.mod h1:o//XUCC/F+yRGJoPO/VU0GSB0f8Nhgmxx0VIRUvaC0w=
+github.com/iancoleman/strcase v0.2.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
 github.com/jonboulle/clockwork v0.2.2/go.mod h1:Pkfl5aHPm1nk2H9h0bjmnJD/BcgbGXUBGnn1kMkgxc8=
+github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
 github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
 github.com/moby/term v0.0.0-20221205130635-1aeaba878587/go.mod h1:8FzsFHVUBGZdbDsJw/ot+X+d5HLUbvklYLJ9uGfcI3Y=
 github.com/mrunalp/fileutils v0.5.0/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
@@ -193,6 +199,7 @@ github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod
 github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
 github.com/soheilhy/cmux v0.1.5/go.mod h1:T7TcVDs9LWfQgPlPsdngu6I6QIoyIFZDDC6sNE1GqG0=
 github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
+github.com/spf13/afero v1.3.3/go.mod h1:5KUK8ByomD5Ti5Artl0RtHeI5pTF7MIDuXL3yY520V4=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20201229170055-e5319fda7802/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
@@ -202,8 +209,18 @@ github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q
 github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
 go.etcd.io/bbolt v1.3.6/go.mod h1:qXsaaIqmgQH0T+OPdb99Bf+PKfBBQVAdyD6TY9G8XM4=
 go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo=
+go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.35.0/go.mod h1:h8TWwRAhQpOd0aM5nYsRD8+flnkj+526GEIVlarH7eY=
+go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.35.1/go.mod h1:9NiG9I2aHTKkcxqCILhjtyNA1QEiCjdBACv4IvrFQ+c=
+go.opentelemetry.io/otel v1.10.0/go.mod h1:NbvWjCthWHKBEUMpf0/v8ZRZlni86PpGFEMA9pnQSnQ=
+go.opentelemetry.io/otel/exporters/otlp/internal/retry v1.10.0/go.mod h1:78XhIg8Ht9vR4tbLNUhXsiOnE2HOuSeKAiAcoVQEpOY=
+go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.10.0/go.mod h1:Krqnjl22jUJ0HgMzw5eveuCvFDXY4nSYb4F8t5gdrag=
+go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.10.0/go.mod h1:OfUCyyIiDvNXHWpcWgbF+MWvqPZiNa3YDEnivcnYsV0=
+go.opentelemetry.io/otel/metric v0.31.0/go.mod h1:ohmwj9KTSIeBnDBm/ZwH2PSZxZzoOaG2xZeekTRzL5A=
+go.opentelemetry.io/otel/sdk v1.10.0/go.mod h1:vO06iKzD5baltJz1zarxMCNHFpUlUiOy4s65ECtn6kE=
+go.opentelemetry.io/otel/trace v1.10.0/go.mod h1:Sij3YYczqAdz+EhmGhE6TpTxUO5/F/AzrK+kxfGqySM=
 go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI=
 go.opentelemetry.io/proto/otlp v0.19.0/go.mod h1:H7XAot3MsfNsj7EXtrA2q5xSNQ10UqI405h3+duxN4U=
+go.uber.org/goleak v1.2.1/go.mod h1:qlT2yGI9QafXHhZZLxlSuNsMw3FFLxBr+tBRlmO1xH4=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20220314234659-1baeb1ce4c0b/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.9.0/go.mod h1:yrmDGqONDYtNj3tH8X9dzUun2m2lzPa9ngI6/RUPGR0=
@@ -230,6 +247,7 @@ golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.10.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
+golang.org/x/term v0.12.0/go.mod h1:owVbMEjm3cBLCHdkQu9b1opXd4ETQWc3BhuQGKgXgvU=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
 golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 56fd2699f..71c022e3e 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -432,10 +432,6 @@ type Configuration struct {
 	// http://nginx.org/en/docs/http/ngx_http_gzip_module.html
 	UseGzip bool `json:"use-gzip,omitempty"`
 
-	// Enables or disables the use of the nginx geoip module that creates variables with values depending on the client IP
-	// http://nginx.org/en/docs/http/ngx_http_geoip_module.html
-	UseGeoIP bool `json:"use-geoip,omitempty"`
-
 	// UseGeoIP2 enables the geoip2 module for NGINX
 	// By default this is disabled
 	UseGeoIP2 bool `json:"use-geoip2,omitempty"`
@@ -944,7 +940,6 @@ func NewDefault() Configuration {
 		EnableBrotli:                     false,
 		EnableAioWrite:                   true,
 		UseGzip:                          false,
-		UseGeoIP:                         true,
 		UseGeoIP2:                        false,
 		WorkerProcesses:                  strconv.Itoa(runtime.NumCPU()),
 		WorkerShutdownTimeout:            "240s",
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index e3145e6a5..a6ebe5d2a 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -170,16 +170,6 @@ http {
 
     {{ end }}
 
-    {{ if $cfg.UseGeoIP }}
-    {{/* databases used to determine the country depending on the client IP address */}}
-    {{/* http://nginx.org/en/docs/http/ngx_http_geoip_module.html */}}
-    {{/* this is require to calculate traffic for individual country using GeoIP in the status page */}}
-    geoip_country       /etc/nginx/geoip/GeoIP.dat;
-    geoip_city          /etc/nginx/geoip/GeoLiteCity.dat;
-    geoip_org           /etc/nginx/geoip/GeoIPASNum.dat;
-    geoip_proxy_recursive on;
-    {{ end }}
-
     {{ if $cfg.UseGeoIP2 }}
     # https://github.com/leev/ngx_http_geoip2_module#example-usage
 

From 3732fc6ab672ab2cbb9b3e3d5b405869430c27cd Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 11 Oct 2023 18:46:47 +0530
Subject: [PATCH 0973/1641] added warning for configuration-snippets usage
 (#10492)

---
 .../user-guide/nginx-configuration/annotations.md | 15 ++++++++++++++-
 docs/user-guide/nginx-configuration/configmap.md  |  2 +-
 2 files changed, 15 insertions(+), 2 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index c2da56291..7cd34d344 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -316,7 +316,8 @@ nginx.ingress.kubernetes.io/configuration-snippet: |
   more_set_headers "Request-Id: $req_id";
 ```
 
-Since version 1.9.0 this annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
+!!! attention
+Since version 1.9.0, `"configuration-snippet"` annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
 
 ### Custom HTTP Errors
 
@@ -428,6 +429,9 @@ metadata:
         }
 ```
 
+!!! attention
+Since version 1.9.0, `"server-snippet"` annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
+
 !!! attention
     This annotation can be used only once per host.
 
@@ -505,6 +509,9 @@ nginx.ingress.kubernetes.io/auth-snippet: |
 ```
 > Note: `nginx.ingress.kubernetes.io/auth-snippet` is an optional annotation. However, it may only be used in conjunction with `nginx.ingress.kubernetes.io/auth-url` and will be ignored if `nginx.ingress.kubernetes.io/auth-url` is not set
 
+!!! attention
+Since version 1.9.0, `"auth-snippet"` annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
+
 !!! example
     Please check the [external-auth](../../examples/auth/external-auth/README.md) example.
 
@@ -895,6 +902,9 @@ nginx.ingress.kubernetes.io/modsecurity-snippet: |
 Include /etc/nginx/owasp-modsecurity-crs/nginx-modsecurity.conf
 ```
 
+!!! attention
+Since version 1.9.0, `"modsecurity-snippet"` annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
+
 ### Backend Protocol
 
 Using `backend-protocol` annotations is possible to indicate how NGINX should communicate with the backend service. (Replaces `secure-backends` in older versions)
@@ -984,3 +994,6 @@ metadata:
         proxy_pass 127.0.0.1:80;
       }
 ```
+
+!!! attention
+Since version 1.9.0, `"stream-snippet"` annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
\ No newline at end of file
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index f7ee3c120..16a3ef28b 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -263,7 +263,7 @@ Enables Ingress to parse and add *-snippet annotations/directives created by the
 Warning: We recommend enabling this option only if you TRUST users with permission to create Ingress objects, as this
 may allow a user to add restricted configurations to the final nginx.conf file
 
-**This option will be defaulted to false in the next major release**
+**This option is defaulted to false since v1.9.0**
 
 ## annotations-risk-level
 

From 8b53cabe03fdccdca06fa0080430bd68b7b9b00f Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 11 Oct 2023 11:16:11 -0300
Subject: [PATCH 0974/1641] Bump curl and Go version (#10503)

* Bump curl and Go version

* Add NGINX BAse image scanning

* Try again
---
 .github/workflows/ci.yaml                     |  46 +++++-
 .github/workflows/golangci-lint.yml           |   2 +-
 .github/workflows/plugin.yaml                 |   2 +-
 build/run-in-docker.sh                        |   2 +-
 go.mod                                        |  49 +++---
 go.sum                                        |  96 ++++++------
 go.work                                       |   3 +-
 go.work.sum                                   | 103 +++++++------
 images/custom-error-pages/rootfs/Dockerfile   |   2 +-
 images/custom-error-pages/rootfs/go.mod       |   2 +-
 .../rootfs/Dockerfile                         |   2 +-
 images/ext-auth-example-authsvc/rootfs/go.mod |   2 +-
 images/fastcgi-helloserver/rootfs/Dockerfile  |   2 +-
 .../go-grpc-greeter-server/rootfs/Dockerfile  |   2 +-
 images/httpbun/rootfs/Dockerfile              |   2 +-
 images/kube-webhook-certgen/rootfs/Dockerfile |   2 +-
 images/kube-webhook-certgen/rootfs/go.mod     |  73 +++++----
 images/kube-webhook-certgen/rootfs/go.sum     | 144 +++++++++++++-----
 images/nginx/TAG                              |   2 +-
 images/opentelemetry/rootfs/go.mod            |   2 +-
 images/test-runner/Makefile                   |   8 +-
 internal/ingress/annotations/annotations.go   |   3 +-
 magefiles/go.mod                              |  14 +-
 magefiles/go.sum                              |  31 ++--
 test/e2e/run-chart-test.sh                    |   2 +-
 test/e2e/run-kind-e2e.sh                      |   2 +-
 26 files changed, 360 insertions(+), 240 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index b53ec3c46..21e425cdd 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -75,7 +75,7 @@ jobs:
         id: go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
-          go-version: '1.21.1'
+          go-version: '1.21.3'
           check-latest: true
 
       - name: Run test
@@ -96,7 +96,7 @@ jobs:
         id: go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
-          go-version: '1.21.1'
+          go-version: '1.21.3'
           check-latest: true
 
       - name: Set up QEMU
@@ -160,7 +160,7 @@ jobs:
       - name: Setup Go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
-          go-version: '1.21.1'
+          go-version: '1.21.3'
           check-latest: true
 
       - name: cache
@@ -363,6 +363,42 @@ jobs:
           name: e2e-test-reports-chroot-${{ matrix.k8s }}
           path: 'test/junitreports/report*.xml'
 
+  test-nginx-image-build:
+    permissions:
+      contents: read  # for dorny/paths-filter to fetch a list of changed files
+      pull-requests: read  # for dorny/paths-filter to read pull requests
+    runs-on: ubuntu-latest
+    env:
+      PLATFORMS: linux/amd64,linux/arm64
+    steps:
+      - name: Checkout
+        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+
+      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
+        id: filter-images
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+          filters: |
+            nginx-base:
+              - 'images/nginx/**'
+      - name: nginx-base-image
+        if: ${{ steps.filter-images.outputs.nginx-base == 'true' }}
+        run: |
+          cd images/nginx/rootfs && docker build -t docker.io/nginx-test-workflow/nginx:${{ github.sha }} .
+      - name: Run Trivy on NGINX Image
+        if: ${{ steps.filter-images.outputs.nginx-base == 'true' }}
+        uses: aquasecurity/trivy-action@master
+        with:
+          image-ref: 'docker.io/nginx-test-workflow/nginx:${{ github.sha }}'
+          format: 'sarif'
+          ignore-unfixed: true
+          output: 'trivy-results.sarif'
+      - name: Upload Trivy scan results to GitHub Security tab
+        if: ${{ steps.filter-images.outputs.nginx-base == 'true' && always() }}
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          sarif_file: 'trivy-results.sarif'
+
 
   test-image-build:
     permissions:
@@ -396,7 +432,6 @@ jobs:
               - 'images/kube-webhook-certgen/**'
             ext-auth-example-authsvc:
               - 'images/ext-auth-example-authsvc/**'
-
       - name: custom-error-pages image build
         if: ${{ steps.filter-images.outputs.custom-error-pages == 'true' }}
         run: |
@@ -467,10 +502,11 @@ jobs:
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
-          go-version: '1.21.1'
+          go-version: '1.21.3'
           check-latest: true
 
       - name: kube-webhook-certgen image build
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
         run: |
           cd images/kube-webhook-certgen && make test test-e2e
+
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index a58850dd2..d2ecea1db 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -25,7 +25,7 @@ jobs:
         id: go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
-          go-version: '1.21.1'
+          go-version: '1.21.3'
           check-latest: true
       
       - name: golangci-lint
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index a1a185608..ae616077c 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -22,7 +22,7 @@ jobs:
       - name: Set up Go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
         with:
-          go-version: '1.21.1'
+          go-version: '1.21.3'
           check-latest: true
 
       - name: Run GoReleaser
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 7e7974f0f..2ac7220a8 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -87,7 +87,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.9.5
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.13.0
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/go.mod b/go.mod
index dcbe4017f..8ea342f31 100644
--- a/go.mod
+++ b/go.mod
@@ -1,12 +1,12 @@
 module k8s.io/ingress-nginx
 
-go 1.21.1
+go 1.21.3
 
 require (
+	dario.cat/mergo v1.0.0
 	github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a
 	github.com/eapache/channels v1.1.0
 	github.com/fsnotify/fsnotify v1.6.0
-	github.com/imdario/mergo v0.3.16
 	github.com/json-iterator/go v1.1.12
 	github.com/kylelemons/godebug v1.1.0
 	github.com/mitchellh/go-ps v1.0.0
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.12.0
+	github.com/onsi/ginkgo/v2 v2.13.0
 	github.com/opencontainers/runc v1.1.9
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.17.0
@@ -24,20 +24,20 @@ require (
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.4
 	github.com/yudai/gojsondiff v1.0.0
-	github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a
+	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.14.0
 	google.golang.org/grpc v1.58.3
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.27.4
-	k8s.io/apiextensions-apiserver v0.26.4
-	k8s.io/apimachinery v0.27.4
-	k8s.io/apiserver v0.26.4
-	k8s.io/cli-runtime v0.26.4
-	k8s.io/client-go v0.27.4
-	k8s.io/code-generator v0.26.4
-	k8s.io/component-base v0.27.4
+	k8s.io/api v0.27.6
+	k8s.io/apiextensions-apiserver v0.27.6
+	k8s.io/apimachinery v0.27.6
+	k8s.io/apiserver v0.27.6
+	k8s.io/cli-runtime v0.27.6
+	k8s.io/client-go v0.27.6
+	k8s.io/code-generator v0.27.6
+	k8s.io/component-base v0.27.6
 	k8s.io/klog/v2 v2.100.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.14.6
@@ -45,19 +45,19 @@ require (
 )
 
 require (
-	github.com/BurntSushi/toml v1.0.0 // indirect
+	github.com/BurntSushi/toml v1.3.2 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/blang/semver/v4 v4.0.0 // indirect
 	github.com/cespare/xxhash/v2 v2.2.0 // indirect
-	github.com/coreos/go-systemd/v22 v22.3.2 // indirect
+	github.com/coreos/go-systemd/v22 v22.4.0 // indirect
 	github.com/cyphar/filepath-securejoin v0.2.4 // indirect
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/eapache/queue v1.1.0 // indirect
 	github.com/emicklei/go-restful/v3 v3.10.2 // indirect
 	github.com/evanphx/json-patch v4.12.0+incompatible // indirect
 	github.com/evanphx/json-patch/v5 v5.6.0 // indirect
-	github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b // indirect
-	github.com/go-errors/errors v1.0.1 // indirect
+	github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa // indirect
+	github.com/go-errors/errors v1.4.2 // indirect
 	github.com/go-logr/logr v1.2.4 // indirect
 	github.com/go-openapi/jsonpointer v0.19.6 // indirect
 	github.com/go-openapi/jsonreference v0.20.1 // indirect
@@ -72,10 +72,11 @@ require (
 	github.com/google/gnostic v0.5.7-v3refs // indirect
 	github.com/google/go-cmp v0.5.9 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
-	github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1 // indirect
+	github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.3.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 // indirect
+	github.com/imdario/mergo v0.3.6 // indirect
 	github.com/inconshreveable/mousetrap v1.1.0 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
@@ -95,19 +96,19 @@ require (
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/prometheus/procfs v0.11.1 // indirect
 	github.com/sergi/go-diff v1.1.0 // indirect
-	github.com/sirupsen/logrus v1.8.1 // indirect
+	github.com/sirupsen/logrus v1.9.0 // indirect
 	github.com/xlab/treeprint v1.1.0 // indirect
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
-	golang.org/x/mod v0.12.0 // indirect
-	golang.org/x/net v0.14.0 // indirect
-	golang.org/x/oauth2 v0.10.0 // indirect
+	golang.org/x/mod v0.13.0 // indirect
+	golang.org/x/net v0.16.0 // indirect
+	golang.org/x/oauth2 v0.12.0 // indirect
 	golang.org/x/sys v0.13.0 // indirect
 	golang.org/x/term v0.13.0 // indirect
 	golang.org/x/text v0.13.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
-	golang.org/x/tools v0.12.0 // indirect
+	golang.org/x/tools v0.14.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20230711160842-782d3b101e98 // indirect
 	google.golang.org/protobuf v1.31.0 // indirect
@@ -119,8 +120,8 @@ require (
 	k8s.io/kube-openapi v0.0.0-20230501164219-8b0f38b5fd1f // indirect
 	k8s.io/utils v0.0.0-20230209194617-a36077c30491 // indirect
 	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
-	sigs.k8s.io/kustomize/api v0.12.1 // indirect
-	sigs.k8s.io/kustomize/kyaml v0.13.9 // indirect
+	sigs.k8s.io/kustomize/api v0.13.2 // indirect
+	sigs.k8s.io/kustomize/kyaml v0.14.1 // indirect
 	sigs.k8s.io/structured-merge-diff/v4 v4.2.3 // indirect
 	sigs.k8s.io/yaml v1.3.0 // indirect
 )
diff --git a/go.sum b/go.sum
index 516a1822b..ea572e4b3 100644
--- a/go.sum
+++ b/go.sum
@@ -30,10 +30,12 @@ cloud.google.com/go/storage v1.5.0/go.mod h1:tpKbwo567HUNpVclU5sGELwQWBDZ8gh0Zeo
 cloud.google.com/go/storage v1.6.0/go.mod h1:N7U0C8pVQ/+NIKOBQyamJIeKQKkZ+mxpohlUTyfDhBk=
 cloud.google.com/go/storage v1.8.0/go.mod h1:Wv1Oy7z6Yz3DshWRJFhqM/UCfaWIRTdp0RXyy7KQOVs=
 cloud.google.com/go/storage v1.10.0/go.mod h1:FLPqc6j+Ki4BU591ie1oL6qBQGu2Bl/tZ9ullr3+Kg0=
+dario.cat/mergo v1.0.0 h1:AGCNq9Evsj31mOgNPcLyXc+4PNABt905YmuqPYYpBWk=
+dario.cat/mergo v1.0.0/go.mod h1:uNxQE+84aUszobStD9th8a29P2fMDhsBdgRYvZOxGmk=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
-github.com/BurntSushi/toml v1.0.0 h1:dtDWrepsVPfW9H/4y7dDgFc2MBUSeJhlaDtK13CxFlU=
-github.com/BurntSushi/toml v1.0.0/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
+github.com/BurntSushi/toml v1.3.2 h1:o7IhLm0Msx3BaB+n3Ag7L8EVlByGnpq14C4YWiu/gL8=
+github.com/BurntSushi/toml v1.3.2/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
 github.com/alecthomas/template v0.0.0-20160405071501-a0175ee3bccc/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
 github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
@@ -57,8 +59,8 @@ github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5P
 github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
 github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc=
-github.com/coreos/go-systemd/v22 v22.3.2 h1:D9/bQk5vlXQFZ6Kwuu6zaiXJ9oTPe68++AzAJc1DzSI=
-github.com/coreos/go-systemd/v22 v22.3.2/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
+github.com/coreos/go-systemd/v22 v22.4.0 h1:y9YHcjnjynCd/DVbg5j9L/33jQM3MxJlbj/zWskzfGU=
+github.com/coreos/go-systemd/v22 v22.4.0/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
 github.com/cpuguy83/go-md2man/v2 v2.0.2/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/cyphar/filepath-securejoin v0.2.4 h1:Ugdm7cg7i6ZK6x3xDF1oEu1nfkyfH53EtKeQYTC3kyg=
@@ -85,10 +87,11 @@ github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMo
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
 github.com/fsnotify/fsnotify v1.6.0 h1:n+5WquG0fcWoWp6xPWfHdbskMCQaFnG6PfBrh1Ky4HY=
 github.com/fsnotify/fsnotify v1.6.0/go.mod h1:sl3t1tCWJFWoRz9R8WJCbQihKKwmorjAbSClcnxKAGw=
-github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b h1:074/xhloHUBOpTZwlIzQ28rbPY8pNJvzY7Gcx5KnNOk=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
-github.com/go-errors/errors v1.0.1 h1:LUHzmkK3GUKUrL/1gfBUxAHzcev3apQlezX/+O7ma6w=
-github.com/go-errors/errors v1.0.1/go.mod h1:f4zRHt4oKfwPJE5k8C9vpYG+aDHdBFUsgrm6/TyX73Q=
+github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa h1:RDBNVkRviHZtvDvId8XSGPu3rmpmSe+wKRcEWNgsfWU=
+github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
+github.com/go-errors/errors v1.4.2 h1:J6MZopCL4uSllY1OfXM374weqZFFItUbrImctkmUxIA=
+github.com/go-errors/errors v1.4.2/go.mod h1:sIVyrIiJhuEF+Pj9Ebtd6P/rEYROXFi3BopGUQ5a5Og=
 github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1/go.mod h1:vR7hzQXu2zJy9AVAgeJqvqgH9Q5CA+iKCZ2gyEVpxRU=
 github.com/go-gl/glfw/v3.3/glfw v0.0.0-20191125211704-12ad95a8df72/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8=
 github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8=
@@ -183,8 +186,8 @@ github.com/google/pprof v0.0.0-20200212024743-f11f1df84d12/go.mod h1:ZgVRPoUq/hf
 github.com/google/pprof v0.0.0-20200229191704-1ebb73c60ed3/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200430221834-fc25d7d30c6d/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200708004538-1a94d8640e99/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1 h1:K6RDEckDVWvDI9JAJYCmNdQXq6neHJOYx3V6jnqNEec=
-github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98 h1:pUa4ghanp6q4IJHwE9RwLgmVFfReJN+KbQ8ExNEUUoQ=
+github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98/go.mod h1:czg5+yv1E0ZGTi6S6vVK1mke0fV+FaUhNGcd6VRS9Ik=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
@@ -198,9 +201,8 @@ github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
-github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
-github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4=
-github.com/imdario/mergo v0.3.16/go.mod h1:WBLT9ZmE3lPoWsEzCh9LPo3TiwVN+ZKEjmz+hD27ysY=
+github.com/imdario/mergo v0.3.6 h1:xTNEAn+kxVO7dTZGu0CegyqKZmoWFI0rF8UxjlB2d28=
+github.com/imdario/mergo v0.3.6/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
 github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
 github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
@@ -281,8 +283,8 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.12.0 h1:UIVDowFPwpg6yMUpPjGkYvf06K3RAiJXUhCxEwQVHRI=
-github.com/onsi/ginkgo/v2 v2.12.0/go.mod h1:ZNEzXISYlqpb8S36iN71ifqLi3vVD1rVJGvWRCJOUpQ=
+github.com/onsi/ginkgo/v2 v2.13.0 h1:0jY9lJquiL8fcf3M4LAXN5aMlS/b2BV86HFFPCPMgE4=
+github.com/onsi/ginkgo/v2 v2.13.0/go.mod h1:TE309ZR8s5FsKKpuB1YAQYBzCaAfUgatB/xlT/ETL/o=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.27.10 h1:naR28SdDFlqrG6kScpT8VWpu1xWY5nJRCF3XaYyBjhI=
@@ -337,8 +339,8 @@ github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNX
 github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
 github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE=
 github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
-github.com/sirupsen/logrus v1.8.1 h1:dJKuHgqk1NNQlqoA6BTlM1Wf9DOH3NBjQyu0h9+AZZE=
-github.com/sirupsen/logrus v1.8.1/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
+github.com/sirupsen/logrus v1.9.0 h1:trlNQbNUG3OdDrDil03MCb1H2o9nJ1x4/5LYw7byDE0=
+github.com/sirupsen/logrus v1.9.0/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
 github.com/spf13/cobra v1.7.0 h1:hyqWnYt1ZQShIddO5kBpj3vu05/++x6tJ6dg8EC572I=
 github.com/spf13/cobra v1.7.0/go.mod h1:uLxZILRyS/50WlhOIKD7W6V5bgeIt+4sICxh6uRMrb0=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
@@ -374,8 +376,8 @@ github.com/yuin/goldmark v1.1.25/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9de
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.1.32/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
-github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a h1:CbXWHAnmrtTKgX+yMVVANuRJP8ld88ELbAYAYnBdLJ4=
-github.com/zakjan/cert-chain-resolver v0.0.0-20211122211144-c6b0b792af9a/go.mod h1:/Hzu8ych2oXCs1iNI+MeASyFzWTncQ6nlu/wgqbqC2A=
+github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30 h1:rzHvkiukOVYcf840FqAsHqBMhfLofvQIxWtczkGRklU=
+github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30/go.mod h1:/Hzu8ych2oXCs1iNI+MeASyFzWTncQ6nlu/wgqbqC2A=
 go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
 go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8=
 go.opencensus.io v0.22.2/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
@@ -429,8 +431,8 @@ golang.org/x/mod v0.1.1-0.20191105210325-c90efee705ee/go.mod h1:QqPTAvyqsEbceGzB
 golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.12.0 h1:rmsUpXtvNzj340zd98LZ4KntptpfRHwpFOHG188oHXc=
-golang.org/x/mod v0.12.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/mod v0.13.0 h1:I/DsJXRlw/8l/0c24sM9yb0T4z9liZTduXvdAWYiysY=
+golang.org/x/mod v0.13.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -464,16 +466,16 @@ golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81R
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.14.0 h1:BONx9s002vGdD9umnlX1Po8vOZmrgH34qlHcD1MfK14=
-golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
+golang.org/x/net v0.16.0 h1:7eBu7KsSvFDtSXUIDbh3aqlK4DPsZ1rByC8PFfBThos=
+golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.10.0 h1:zHCpF2Khkwy4mMB4bv0U37YtJdTGW8jI0glAApi0Kh8=
-golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI=
+golang.org/x/oauth2 v0.12.0 h1:smVPGxink+n1ZI5pkQa8y6fZT0RW0MgCO5bFpepy4B4=
+golang.org/x/oauth2 v0.12.0/go.mod h1:A74bZ3aGXgCY0qaIC9Ahg6Lglin4AMAco8cIv9baba4=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -501,7 +503,6 @@ golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20191001151750-bb3f8db39f24/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191002063906-3421d5a6bb1c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191026070338-33540a1f6037/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191228213918-04cbcbbfeed8/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -529,6 +530,7 @@ golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.13.0 h1:Af8nKPmuFypiUBjVoU9V20FiaFXOcuZI21p0ycVYYGE=
@@ -593,8 +595,8 @@ golang.org/x/tools v0.0.0-20200804011535-6c149bb5ef0d/go.mod h1:njjCfa9FT2d7l9Bc
 golang.org/x/tools v0.0.0-20200825202427-b303f430e36d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.12.0 h1:YW6HUoUmYBpwSgyaGaZq1fHjrBjX1rlpZ54T6mu2kss=
-golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM=
+golang.org/x/tools v0.14.0 h1:jvNa2pY0M4r62jkRQ6RwEZZyPcymeL9XZMLBbV7U2nc=
+golang.org/x/tools v0.14.0/go.mod h1:uYBEerGOWcJyEORxN+Ek8+TT266gXkNlHdJBwexUsBg=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
@@ -724,22 +726,22 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.27.4 h1:0pCo/AN9hONazBKlNUdhQymmnfLRbSZjd5H5H3f0bSs=
-k8s.io/api v0.27.4/go.mod h1:O3smaaX15NfxjzILfiln1D8Z3+gEYpjEpiNA/1EVK1Y=
-k8s.io/apiextensions-apiserver v0.26.4 h1:9D2RTxYGxrG5uYg6D7QZRcykXvavBvcA59j5kTaedQI=
-k8s.io/apiextensions-apiserver v0.26.4/go.mod h1:cd4uGFGIgzEqUghWpRsr9KE8j2KNTjY8Ji8pnMMazyw=
-k8s.io/apimachinery v0.27.4 h1:CdxflD4AF61yewuid0fLl6bM4a3q04jWel0IlP+aYjs=
-k8s.io/apimachinery v0.27.4/go.mod h1:XNfZ6xklnMCOGGFNqXG7bUrQCoR04dh/E7FprV6pb+E=
-k8s.io/apiserver v0.26.4 h1:3Oq4mnJv0mzVX7BR/Nod+8KjlELf/3Ljvu9ZWDyLUoA=
-k8s.io/apiserver v0.26.4/go.mod h1:yAY3O1vBM4/0OIGAGeWcdfzQvgdwJ188VirLcuSAVnw=
-k8s.io/cli-runtime v0.26.4 h1:MgSU871KDzBDX7V9GtuqS6Ai9lhQCHgRzkurnXOWtZ0=
-k8s.io/cli-runtime v0.26.4/go.mod h1:MjJ2DXMChw2zcG0/agzm17xwKpfVxOfuoCdfY9iOCOE=
-k8s.io/client-go v0.27.4 h1:vj2YTtSJ6J4KxaC88P4pMPEQECWMY8gqPqsTgUKzvjk=
-k8s.io/client-go v0.27.4/go.mod h1:ragcly7lUlN0SRPk5/ZkGnDjPknzb37TICq07WhI6Xc=
-k8s.io/code-generator v0.26.4 h1:zgDD0qX13p/jtrAoYRRiYeQ5ibnriwmo2cMkMZAtJxc=
-k8s.io/code-generator v0.26.4/go.mod h1:ryaiIKwfxEJEaywEzx3dhWOydpVctKYbqLajJf0O8dI=
-k8s.io/component-base v0.27.4 h1:Wqc0jMKEDGjKXdae8hBXeskRP//vu1m6ypC+gwErj4c=
-k8s.io/component-base v0.27.4/go.mod h1:hoiEETnLc0ioLv6WPeDt8vD34DDeB35MfQnxCARq3kY=
+k8s.io/api v0.27.6 h1:PBWu/lywJe2qQcshMjubzcBg7+XDZOo7O8JJAWuYtUo=
+k8s.io/api v0.27.6/go.mod h1:AQYj0UsFCp3qJE7bOVnUuy4orCsXVkvHefnbYQiNWgk=
+k8s.io/apiextensions-apiserver v0.27.6 h1:mOwSBJtThZhpJr+8gEkc3wFDIjq87E3JspR5mtZxIg8=
+k8s.io/apiextensions-apiserver v0.27.6/go.mod h1:AVNlLYRrESG5Poo6ASRUhY2pvoKPcNt8y/IuZ4lx3o8=
+k8s.io/apimachinery v0.27.6 h1:mGU8jmBq5o8mWBov+mLjdTBcU+etTE19waies4AQ6NE=
+k8s.io/apimachinery v0.27.6/go.mod h1:XNfZ6xklnMCOGGFNqXG7bUrQCoR04dh/E7FprV6pb+E=
+k8s.io/apiserver v0.27.6 h1:r/eHN8r3lG2buggHrVMy++kKhHlHn1HWSX1dqDtes54=
+k8s.io/apiserver v0.27.6/go.mod h1:Xeo9OEXn2kDLK5pqspjdXQx7YKgDyKSpwIB4p0BmpAQ=
+k8s.io/cli-runtime v0.27.6 h1:ik1+20C0AvxYcqEzwebH2PHOlqBTKUHZnOuPtG2CCl8=
+k8s.io/cli-runtime v0.27.6/go.mod h1:+qSBK08EJL1fFvsfVNlETzsgGtxIhascIGZSuaQXQro=
+k8s.io/client-go v0.27.6 h1:vzI8804gpUtpMCNaFjIFyJrifH7u//LJCJPy8fQuYQg=
+k8s.io/client-go v0.27.6/go.mod h1:PMsXcDKiJTW7PHJ64oEsIUJF319wm+EFlCj76oE5QXM=
+k8s.io/code-generator v0.27.6 h1:1zkSDvylcA11s91aYg5U7fZ24EXMZ+KIDOj/Z3Ti4c8=
+k8s.io/code-generator v0.27.6/go.mod h1:DPung1sI5vBgn4AGKtlPRQAyagj/ir/4jI55ipZHVww=
+k8s.io/component-base v0.27.6 h1:hF5WxX7Tpi9/dXAbLjPVkIA6CA6Pi6r9JOHyo0uCDYI=
+k8s.io/component-base v0.27.6/go.mod h1:NvjLtaneUeb0GgMPpCBF+4LNB9GuhDHi16uUTjBhQfU=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d h1:U9tB195lKdzwqicbJvyJeOXV7Klv+wNAWENRnXEGi08=
 k8s.io/gengo v0.0.0-20220902162205-c0856e24416d/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
@@ -758,10 +760,10 @@ sigs.k8s.io/controller-runtime v0.14.6 h1:oxstGVvXGNnMvY7TAESYk+lzr6S3V5VFxQ6d92
 sigs.k8s.io/controller-runtime v0.14.6/go.mod h1:WqIdsAY6JBsjfc/CqO0CORmNtoCtE4S6qbPc9s68h+0=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
-sigs.k8s.io/kustomize/api v0.12.1 h1:7YM7gW3kYBwtKvoY216ZzY+8hM+lV53LUayghNRJ0vM=
-sigs.k8s.io/kustomize/api v0.12.1/go.mod h1:y3JUhimkZkR6sbLNwfJHxvo1TCLwuwm14sCYnkH6S1s=
-sigs.k8s.io/kustomize/kyaml v0.13.9 h1:Qz53EAaFFANyNgyOEJbT/yoIHygK40/ZcvU3rgry2Tk=
-sigs.k8s.io/kustomize/kyaml v0.13.9/go.mod h1:QsRbD0/KcU+wdk0/L0fIp2KLnohkVzs6fQ85/nOXac4=
+sigs.k8s.io/kustomize/api v0.13.2 h1:kejWfLeJhUsTGioDoFNJET5LQe/ajzXhJGYoU+pJsiA=
+sigs.k8s.io/kustomize/api v0.13.2/go.mod h1:DUp325VVMFVcQSq+ZxyDisA8wtldwHxLZbr1g94UHsw=
+sigs.k8s.io/kustomize/kyaml v0.14.1 h1:c8iibius7l24G2wVAGZn/Va2wNys03GXLjYVIcFVxKA=
+sigs.k8s.io/kustomize/kyaml v0.14.1/go.mod h1:AN1/IpawKilWD7V+YvQwRGUvuUOOWpjsHu6uHwonSF4=
 sigs.k8s.io/mdtoc v1.1.0 h1:q3YtqYzmC2e0hgLXRIOm7/QLuPux1CX3ZHCwlbABxZo=
 sigs.k8s.io/mdtoc v1.1.0/go.mod h1:QZLVEdHH2iNIR4uHAZyvFRtjloHgVItk8lo/mzCtq3w=
 sigs.k8s.io/structured-merge-diff/v4 v4.2.3 h1:PRbqxJClWWYMNV1dhaG4NsibJbArud9kFxnAMREiWFE=
diff --git a/go.work b/go.work
index 84cc6ca96..249976119 100644
--- a/go.work
+++ b/go.work
@@ -1,6 +1,7 @@
-go 1.21.1
+go 1.21.3
 
 use (
 	.
+	./images/kube-webhook-certgen/rootfs
 	./magefiles
 )
diff --git a/go.work.sum b/go.work.sum
index f27920f61..2ce1176bb 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -121,20 +121,22 @@ cloud.google.com/go/vpcaccess v1.7.1/go.mod h1:FogoD46/ZU+JUBX9D606X21EnxiszYi2t
 cloud.google.com/go/webrisk v1.9.1/go.mod h1:4GCmXKcOa2BZcZPn6DCEvE7HypmEJcJkr4mtM+sqYPc=
 cloud.google.com/go/websecurityscanner v1.6.1/go.mod h1:Njgaw3rttgRHXzwCB8kgCYqv5/rGpFCsBOvPbYgszpg=
 cloud.google.com/go/workflows v1.11.1/go.mod h1:Z+t10G1wF7h8LgdY/EmRcQY8ptBD/nvofaL6FqlET6g=
-github.com/Azure/go-ansiterm v0.0.0-20210617225240-d185dfc1b5a1/go.mod h1:xomTg63KZ2rFqZQzSB4Vz2SUXa1BpHTVz9L5PTmPC4E=
-github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
-github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
-github.com/PuerkitoBio/purell v1.1.1/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
-github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578/go.mod h1:uGdkoq3SwY9Y+13GIhn11/XLaGBb4BfwItxLd5jeuXE=
-github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
+github.com/andybalholm/brotli v1.0.4/go.mod h1:fO7iG3H7G2nSZ7m0zPUDn85XEX2GTukHGRSepvi9Eig=
 github.com/antlr/antlr4/runtime/Go/antlr v1.4.10/go.mod h1:F7bn7fEU90QkQ3tnmaTx3LTKLEDqnwWODIYppRQ5hnY=
+github.com/apache/thrift v0.16.0/go.mod h1:PHK3hniurgQaNMZYaCLEqXKsYK8upmhPbmdP2FXSqgU=
 github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5/go.mod h1:wHh0iHkYZB8zMSxRWpUBQtwG5a7fFgvEO+odwuTv2gs=
-github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
+github.com/blang/semver v3.5.1+incompatible h1:cQNTCjp13qL8KC3Nbxr/y2Bqb63oX6wdnnjpJbkM4JQ=
 github.com/cenkalti/backoff/v4 v4.1.3/go.mod h1:scbssz8iZGpm3xbr14ovlUdkxfGXNInqkPWOWmG2CLw=
 github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
+github.com/cespare/xxhash v1.1.0 h1:a6HrQnmkObjyL+Gs60czilIUGqrzKutQD6XZog3p+ko=
 github.com/checkpoint-restore/go-criu/v5 v5.3.0/go.mod h1:E/eQpaFtUKGOOSEBZgmKAcn+zUUwWxqcaKZlF54wK8E=
+github.com/chromedp/cdproto v0.0.0-20230802225258-3cf4e6d46a89/go.mod h1:GKljq0VrfU4D5yc+2qA6OVr8pmO/MBbPEWqWQ/oqGEs=
+github.com/chromedp/chromedp v0.9.2/go.mod h1:LkSXJKONWTCHAfQasKFUZI+mxqS4tZqhmtGzzhLsnLs=
+github.com/chromedp/sysutil v1.0.0/go.mod h1:kgWmDdq8fTzXYcKIBqIYvRRTnYb9aNS9moAV0xufSww=
+github.com/chzyer/logex v1.2.1/go.mod h1:JLbx6lG2kDbNRFnfkgvh4eRJRPX1QCoOIWomwysCBrQ=
+github.com/chzyer/readline v1.5.1/go.mod h1:Eh+b79XXUwfKfcPLepksvw2tcLE/Ct21YObkaSkeBlk=
+github.com/chzyer/test v1.0.0/go.mod h1:2JlltgoNkt4TW/z9V/IzDdFaMTM2JPIi26O1pF38GC8=
 github.com/cilium/ebpf v0.7.0/go.mod h1:/oI2+1shJiTGAMgl6/RgJr36Eo1jzrRcAWbcXO2usCA=
-github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
 github.com/cncf/udpa/go v0.0.0-20210930031921-04548b0d99d4/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
 github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
 github.com/cncf/xds/go v0.0.0-20210805033703-aa0b78936158/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
@@ -142,72 +144,66 @@ github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWH
 github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20230607035331-e9ce68804cb4/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
-github.com/coreos/go-oidc v2.1.0+incompatible/go.mod h1:CgnwVTmzoESiwO9qyAFEMiHoZ1nMCKZlZ9V6mm3/LKc=
-github.com/coreos/go-semver v0.3.0/go.mod h1:nnelYz7RCh+5ahJtPPxZlU+153eP4D4r3EedlOD2RNk=
+github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e h1:Wf6HqHfScWJN9/ZjdUKyjop4mf3Qdd+1TvvltAvM3m8=
 github.com/docker/go-units v0.4.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
-github.com/dustin/go-humanize v1.0.0/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25KnS6fMYU6eOk=
+github.com/emicklei/go-restful v2.9.5+incompatible h1:spTtZBk5DYEvbxMVutUuTyh1Ao2r4iyvLdACqsl/Ljk=
 github.com/emicklei/go-restful/v3 v3.8.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
-github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
-github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
+github.com/emicklei/go-restful/v3 v3.9.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
 github.com/envoyproxy/go-control-plane v0.9.10-0.20210907150352-cf90f659a021/go.mod h1:AFq3mo9L8Lqqiid3OhADV3RfLJnjiw63cSpi+fDTRC0=
 github.com/envoyproxy/go-control-plane v0.11.1/go.mod h1:uhMcXKCQMEJHiAb0w+YGefQLaTEw+YhGluxZkrTmD0g=
 github.com/envoyproxy/protoc-gen-validate v1.0.2/go.mod h1:GpiZQP3dDbg4JouG/NNS7QWXpgx6x8QiMKdmN72jogE=
 github.com/felixge/httpsnoop v1.0.3/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
-github.com/form3tech-oss/jwt-go v3.2.3+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
 github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
-github.com/go-logr/logr v0.1.0/go.mod h1:ixOQHD9gLJUVQQ2ZOR7zLEifBX6tGkNJF4QyIY7sIas=
+github.com/go-logr/logr v1.2.3/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE=
-github.com/go-openapi/jsonreference v0.20.2 h1:3sVjiK66+uXK/6oQ8xgcRKcFgQ5KXa2KvnJRumpMGbE=
-github.com/go-openapi/jsonreference v0.20.2/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
+github.com/gobwas/httphead v0.1.0/go.mod h1:O/RXo79gxV8G+RqlR/otEwx4Q36zl9rqC5u12GKvMCM=
+github.com/gobwas/pool v0.2.1/go.mod h1:q8bcK0KcYlCgd9e7WYLm9LpyS+YeLd8JVDW6WezmKEw=
+github.com/gobwas/ws v1.2.1/go.mod h1:hRKAFb8wOxFROYNsT1bqfWnhX+b5MFeJM9r2ZSwg/KY=
+github.com/goccy/go-json v0.9.11/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
 github.com/golang/glog v1.1.0/go.mod h1:pfYeQZ3JWZoXTV5sFc986z3HTpwQs9At6P4ImfuP3NQ=
 github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/google/cel-go v0.12.6/go.mod h1:Jk7ljRzLBhkmiAwBoUxB1sZSCVBAzkqPF25olK/iRDw=
+github.com/google/flatbuffers v2.0.8+incompatible/go.mod h1:1AeVuKshWv4vARoZatz6mlQ0JxURH0Kv5+zNeJKJCa8=
 github.com/google/gnostic-models v0.6.8 h1:yo/ABAfM5IMRsS1VnXjTBvUb61tFIHozhlYvRgGre9I=
 github.com/google/gnostic-models v0.6.8/go.mod h1:5n7qKqH0f5wFt+aWF8CW6pZLLNOfYuF5OpfBSENuI8U=
 github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
-github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/martian/v3 v3.3.2/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
 github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/s2a-go v0.1.4/go.mod h1:Ej+mSEMGRnqRzjc7VtF+jdBwYG5fuJfiZ8ELkjEwM0A=
-github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/enterprise-certificate-proxy v0.2.3/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
 github.com/googleapis/gax-go/v2 v2.11.0/go.mod h1:DxmR61SGKkGLa2xigwuZIQpkCI2S5iydzRfb3peWZJI=
-github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
-github.com/grpc-ecosystem/go-grpc-middleware v1.3.0/go.mod h1:z0ButlSOZa5vEBq9m2m2hlwIgKw+rp3sdCBRoJY+30Y=
-github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgfV/d3M/q6VIi02HzZEHgUlZvzk=
-github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
 github.com/grpc-ecosystem/grpc-gateway/v2 v2.11.3/go.mod h1:o//XUCC/F+yRGJoPO/VU0GSB0f8Nhgmxx0VIRUvaC0w=
 github.com/iancoleman/strcase v0.2.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
-github.com/jonboulle/clockwork v0.2.2/go.mod h1:Pkfl5aHPm1nk2H9h0bjmnJD/BcgbGXUBGnn1kMkgxc8=
+github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
+github.com/ianlancetaylor/demangle v0.0.0-20230524184225-eabc099b10ab/go.mod h1:gx7rwoVhcfuVKG5uya9Hs3Sxj7EIvldVofAWIUtGouw=
+github.com/klauspost/asmfmt v1.3.2/go.mod h1:AG8TuvYojzulgDAMCnYn50l/5QV3Bs/tp6j0HLHbNSE=
+github.com/klauspost/compress v1.15.9/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU=
 github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
-github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
+github.com/ledongthuc/pdf v0.0.0-20220302134840-0c2507a12d80/go.mod h1:imJHygn/1yfhB7XSJJKlFZKl/J+dCPAknuiaGOshXAs=
+github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8/go.mod h1:mC1jAcsrzbxHt8iiaC+zU4b1ylILSosueou12R++wfY=
+github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3/go.mod h1:RagcQ7I8IeTMnF8JTXieKnO4Z6JCsikNEzj0DwauVzE=
 github.com/moby/term v0.0.0-20221205130635-1aeaba878587/go.mod h1:8FzsFHVUBGZdbDsJw/ot+X+d5HLUbvklYLJ9uGfcI3Y=
 github.com/mrunalp/fileutils v0.5.0/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
-github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
-github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
-github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
 github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
+github.com/onsi/ginkgo/v2 v2.9.1/go.mod h1:FEcmzVcCHl+4o9bQZVab+4dC9+j+91t2FHSzmGAPfuo=
 github.com/onsi/ginkgo/v2 v2.9.4/go.mod h1:gCQYp2Q+kSoIj7ykSVb9nskRSsR6PUj4AiLywzIhbKM=
 github.com/onsi/ginkgo/v2 v2.11.0/go.mod h1:ZhrRA5XmEE3x3rhlzamx/JJvujdZoJ2uvgI7kR0iZvM=
 github.com/onsi/gomega v1.19.0/go.mod h1:LY+I3pBVzYsTBU1AnDwOSxaYi9WoWiqgwooUqq9yPro=
+github.com/onsi/gomega v1.27.4/go.mod h1:riYq/GJKh8hhoM01HN6Vmuy93AarCXCBGpvFDK3q3fQ=
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
-github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ=
+github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde/go.mod h1:nZgzbfBr3hhjoZnS66nKrHmduYNpc34ny7RK4z5/HM0=
+github.com/pierrec/lz4/v4 v4.1.15/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4=
 github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
 github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
-github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
-github.com/soheilhy/cmux v0.1.5/go.mod h1:T7TcVDs9LWfQgPlPsdngu6I6QIoyIFZDDC6sNE1GqG0=
-github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
 github.com/spf13/afero v1.3.3/go.mod h1:5KUK8ByomD5Ti5Artl0RtHeI5pTF7MIDuXL3yY520V4=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
-github.com/tmc/grpc-websocket-proxy v0.0.0-20201229170055-e5319fda7802/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
 github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
 github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
-github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
 github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
-go.etcd.io/bbolt v1.3.6/go.mod h1:qXsaaIqmgQH0T+OPdb99Bf+PKfBBQVAdyD6TY9G8XM4=
+github.com/zeebo/xxh3 v1.0.2/go.mod h1:5NWz9Sef7zIDm2JHfFlcQvNekmcEl9ekUZQQKCYaDcA=
 go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo=
 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.35.0/go.mod h1:h8TWwRAhQpOd0aM5nYsRD8+flnkj+526GEIVlarH7eY=
 go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.35.1/go.mod h1:9NiG9I2aHTKkcxqCILhjtyNA1QEiCjdBACv4IvrFQ+c=
@@ -218,50 +214,64 @@ go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.10.0/go.mod h
 go.opentelemetry.io/otel/metric v0.31.0/go.mod h1:ohmwj9KTSIeBnDBm/ZwH2PSZxZzoOaG2xZeekTRzL5A=
 go.opentelemetry.io/otel/sdk v1.10.0/go.mod h1:vO06iKzD5baltJz1zarxMCNHFpUlUiOy4s65ECtn6kE=
 go.opentelemetry.io/otel/trace v1.10.0/go.mod h1:Sij3YYczqAdz+EhmGhE6TpTxUO5/F/AzrK+kxfGqySM=
-go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI=
 go.opentelemetry.io/proto/otlp v0.19.0/go.mod h1:H7XAot3MsfNsj7EXtrA2q5xSNQ10UqI405h3+duxN4U=
 go.uber.org/goleak v1.2.1/go.mod h1:qlT2yGI9QafXHhZZLxlSuNsMw3FFLxBr+tBRlmO1xH4=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20220314234659-1baeb1ce4c0b/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.9.0/go.mod h1:yrmDGqONDYtNj3tH8X9dzUun2m2lzPa9ngI6/RUPGR0=
 golang.org/x/exp v0.0.0-20200224162631-6cc2880d07d6 h1:QE6XYQK6naiK1EPAe1g/ILLxN5RBoH5xkJk3CqlMI/Y=
-golang.org/x/lint v0.0.0-20210508222113-6edffad5e616/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
 golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
 golang.org/x/mod v0.7.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/mod v0.9.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.7.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
+golang.org/x/net v0.4.0/go.mod h1:MBQ8lrhLObU/6UmLb4fmbmk5OcyYmqtbGd/9yIeKjEE=
+golang.org/x/net v0.8.0/go.mod h1:QVkue5JL9kW//ek3r6jTKnTFis1tRmNAW2P1shuFdJc=
 golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg=
 golang.org/x/net v0.12.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA=
 golang.org/x/net v0.13.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA=
+golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
+golang.org/x/net v0.15.0/go.mod h1:idbUs1IY1+zTqbi8yxTbhexhEEk5ur9LInksu6HrEpk=
+golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
 golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE=
+golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI=
 golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.3.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
+golang.org/x/sync v0.4.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
+golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.3.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.10.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
+golang.org/x/term v0.6.0/go.mod h1:m6U89DPEgQRMq3DNkDClhWw02AUbt2daBVO4cn4Hv9U=
 golang.org/x/term v0.12.0/go.mod h1:owVbMEjm3cBLCHdkQu9b1opXd4ETQWc3BhuQGKgXgvU=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
-golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.5.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.8.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
 golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
 golang.org/x/text v0.11.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 golang.org/x/text v0.12.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
+golang.org/x/time v0.0.0-20220210224613-90d013bbcef8/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
 golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
 golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
+golang.org/x/tools v0.7.0/go.mod h1:4pg6aUX35JBAogB10C9AtvVL+qowtN4pT3CGSQex14s=
 golang.org/x/tools v0.8.0/go.mod h1:JxBZ99ISMI5ViVkT1tr6tdNmXeTrcpVSD3vZ1RsRdN4=
 golang.org/x/tools v0.9.3/go.mod h1:owI94Op576fPu3cIGQeHs3joujW/2Oc6MtlxbF5dfNc=
+golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM=
+golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
 golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
 google.golang.org/api v0.126.0/go.mod h1:mBwVAtz+87bEN6CbA1GtZPDOqY2R5ONPqJeIlvyo4Aw=
-google.golang.org/genproto v0.0.0-20200513103714-09dca8ec2884/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:xZnkP7mREFX5MORlOPEzLMr+90PPZQ2QWzrVTWfAq64=
 google.golang.org/genproto v0.0.0-20230706204954-ccb25ca9f130/go.mod h1:O9kGHb51iE/nOGvQaDUuadVYqovW56s5emA88lQnj6Y=
 google.golang.org/genproto v0.0.0-20230711160842-782d3b101e98 h1:Z0hjGZePRE0ZBWotvtrwxFNrNE9CUAGtplaDK5NNI/g=
@@ -271,23 +281,18 @@ google.golang.org/genproto/googleapis/api v0.0.0-20230706204954-ccb25ca9f130/go.
 google.golang.org/genproto/googleapis/api v0.0.0-20230711160842-782d3b101e98/go.mod h1:rsr7RhLuwsDKL7RmgDDCUc6yaGr1iqceVb5Wv6f6YvQ=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20230706204954-ccb25ca9f130/go.mod h1:8mL13HKkDa+IuJ8yruA3ci0q+0vsUz4m//+ottjwS5o=
-google.golang.org/grpc v1.33.1/go.mod h1:fr5YgcSWrqhRRxogOsw7RzIpsmvOZ6IcH4kBYTpR3n0=
 google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
-google.golang.org/grpc v1.36.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
-google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
 google.golang.org/grpc v1.45.0/go.mod h1:lN7owxKUQEqMfSyQikvvk5tf/6zMPsrK+ONuO11+0rQ=
 google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8=
 google.golang.org/grpc v1.56.2/go.mod h1:I9bI3vqKfayGqPUAwGdOSu7kt6oIJLixfffKrpXqQ9s=
 google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
 google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.28.1/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
-gopkg.in/natefinch/lumberjack.v2 v2.0.0/go.mod h1:l0ndWWf7gzL7RNwBG7wST/UCcT4T24xpD6X8LsfU/+k=
-gopkg.in/square/go-jose.v2 v2.2.2/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
-gopkg.in/yaml.v2 v2.2.3/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
-k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
 k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/klog/v2 v2.90.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/kube-openapi v0.0.0-20230717233707-2695361300d9 h1:LyMgNKD2P8Wn1iAwQU5OhxCKlKJy0sHc+PcDwFB24dQ=
 k8s.io/kube-openapi v0.0.0-20230717233707-2695361300d9/go.mod h1:wZK2AVp1uHCp4VamDVgBP2COHZjqD1T68Rf0CM3YjSM=
 k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index 8ae42317d..54b2a5cc7 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.21.1-alpine3.18 as builder
+FROM golang:1.21.3-alpine3.18 as builder
 
 RUN apk update \
     && apk upgrade && apk add git
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 1fc8f9939..50cfc2a19 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.21.1
+go 1.21.3
 
 require github.com/prometheus/client_golang v1.11.1
 
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index f0b51374b..96da802ce 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.21.1-alpine3.18 as builder
+FROM golang:1.21.3-alpine3.18 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index df99c08b0..e910e360c 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,6 +1,6 @@
 module example.com/authsvc
 
-go 1.21.1
+go 1.21.3
 
 require k8s.io/apimachinery v0.23.1
 
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
index d4ed8305f..92a5e8196 100755
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.21.1-alpine3.18 as builder
+FROM golang:1.21.3-alpine3.18 as builder
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
 
diff --git a/images/go-grpc-greeter-server/rootfs/Dockerfile b/images/go-grpc-greeter-server/rootfs/Dockerfile
index 6460ce154..33cb35923 100644
--- a/images/go-grpc-greeter-server/rootfs/Dockerfile
+++ b/images/go-grpc-greeter-server/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.21.1-alpine3.18 as build
+FROM golang:1.21.3-alpine3.18 as build
 
 WORKDIR /go/src/greeter-server
 
diff --git a/images/httpbun/rootfs/Dockerfile b/images/httpbun/rootfs/Dockerfile
index dd2d04502..c84f17fd1 100644
--- a/images/httpbun/rootfs/Dockerfile
+++ b/images/httpbun/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.21.1 AS builder
+FROM golang:1.21.3 AS builder
 
 ENV LC_ALL=C.UTF-8
 ENV LANG=C.UTF-8
diff --git a/images/kube-webhook-certgen/rootfs/Dockerfile b/images/kube-webhook-certgen/rootfs/Dockerfile
index 4a7e32ced..846e37aee 100644
--- a/images/kube-webhook-certgen/rootfs/Dockerfile
+++ b/images/kube-webhook-certgen/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM --platform=$BUILDPLATFORM golang:1.21.1 as builder
+FROM --platform=$BUILDPLATFORM golang:1.21.3 as builder
 ARG BUILDPLATFORM
 ARG TARGETARCH
 
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index b2870f840..6c426f274 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,48 +1,63 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.21.1
+go 1.21.3
 
 require (
 	github.com/onrik/logrus v0.9.0
-	github.com/sirupsen/logrus v1.8.1
-	github.com/spf13/cobra v1.1.3
-	k8s.io/api v0.22.6
-	k8s.io/apimachinery v0.22.6
-	k8s.io/client-go v0.22.6
+	github.com/sirupsen/logrus v1.9.0
+	github.com/spf13/cobra v1.7.0
+	k8s.io/api v0.27.6
+	k8s.io/apimachinery v0.27.6
+	k8s.io/client-go v0.27.6
 	k8s.io/kube-aggregator v0.22.6
 )
 
 require (
 	github.com/davecgh/go-spew v1.1.1 // indirect
-	github.com/evanphx/json-patch v4.11.0+incompatible // indirect
-	github.com/go-logr/logr v0.4.0 // indirect
+	github.com/emicklei/go-restful/v3 v3.10.2 // indirect
+	github.com/evanphx/json-patch v4.12.0+incompatible // indirect
+	github.com/go-logr/logr v1.2.4 // indirect
+	github.com/go-openapi/jsonpointer v0.19.6 // indirect
+	github.com/go-openapi/jsonreference v0.20.1 // indirect
+	github.com/go-openapi/swag v0.22.3 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
-	github.com/golang/protobuf v1.5.2 // indirect
-	github.com/google/go-cmp v0.5.5 // indirect
+	github.com/golang/protobuf v1.5.3 // indirect
+	github.com/google/gnostic v0.5.7-v3refs // indirect
+	github.com/google/go-cmp v0.5.9 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
-	github.com/googleapis/gnostic v0.5.5 // indirect
-	github.com/imdario/mergo v0.3.5 // indirect
-	github.com/inconshreveable/mousetrap v1.0.0 // indirect
-	github.com/json-iterator/go v1.1.11 // indirect
+	github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98 // indirect
+	github.com/google/uuid v1.3.0 // indirect
+	github.com/imdario/mergo v0.3.6 // indirect
+	github.com/inconshreveable/mousetrap v1.1.0 // indirect
+	github.com/josharian/intern v1.0.0 // indirect
+	github.com/json-iterator/go v1.1.12 // indirect
+	github.com/kr/pretty v0.3.1 // indirect
+	github.com/mailru/easyjson v0.7.7 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
-	github.com/modern-go/reflect2 v1.0.1 // indirect
+	github.com/modern-go/reflect2 v1.0.2 // indirect
+	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
+	github.com/onsi/ginkgo/v2 v2.13.0 // indirect
+	github.com/onsi/gomega v1.27.10 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
+	github.com/stretchr/testify v1.8.4 // indirect
 	github.com/tidwall/gjson v1.14.0 // indirect
-	golang.org/x/net v0.7.0 // indirect
-	golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d // indirect
-	golang.org/x/sys v0.5.0 // indirect
-	golang.org/x/term v0.5.0 // indirect
-	golang.org/x/text v0.7.0 // indirect
-	golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac // indirect
-	google.golang.org/appengine v1.6.5 // indirect
-	google.golang.org/protobuf v1.26.0 // indirect
+	golang.org/x/net v0.16.0 // indirect
+	golang.org/x/oauth2 v0.12.0 // indirect
+	golang.org/x/sys v0.13.0 // indirect
+	golang.org/x/term v0.13.0 // indirect
+	golang.org/x/text v0.13.0 // indirect
+	golang.org/x/time v0.3.0 // indirect
+	golang.org/x/tools v0.14.0 // indirect
+	google.golang.org/appengine v1.6.7 // indirect
+	google.golang.org/protobuf v1.31.0 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
-	gopkg.in/yaml.v3 v3.0.0 // indirect
-	k8s.io/klog/v2 v2.9.0 // indirect
-	k8s.io/kube-openapi v0.0.0-20211109043538-20434351676c // indirect
-	k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a // indirect
-	sigs.k8s.io/structured-merge-diff/v4 v4.2.1 // indirect
-	sigs.k8s.io/yaml v1.2.0 // indirect
+	gopkg.in/yaml.v3 v3.0.1 // indirect
+	k8s.io/klog/v2 v2.100.1 // indirect
+	k8s.io/kube-openapi v0.0.0-20230501164219-8b0f38b5fd1f // indirect
+	k8s.io/utils v0.0.0-20230209194617-a36077c30491 // indirect
+	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
+	sigs.k8s.io/structured-merge-diff/v4 v4.2.3 // indirect
+	sigs.k8s.io/yaml v1.3.0 // indirect
 )
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 7817b7f29..29bcb59ac 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -77,6 +77,7 @@ github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e/go.mod h1:F5haX7
 github.com/coreos/go-systemd/v22 v22.3.2/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
 github.com/coreos/pkg v0.0.0-20180928190104-399ea9e2e55f/go.mod h1:E3G3o1h8I7cfcXa63jLwjI0eiQQMgzzUDFVpN/nH/eA=
 github.com/cpuguy83/go-md2man/v2 v2.0.0/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
+github.com/cpuguy83/go-md2man/v2 v2.0.2/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/creack/pty v1.1.11/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
@@ -89,20 +90,22 @@ github.com/dustin/go-humanize v1.0.0/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25Kn
 github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153/go.mod h1:/Zj4wYkgs4iZTTu3o/KG3Itv/qCCa8VVMlb3i9OVuzc=
 github.com/emicklei/go-restful v0.0.0-20170410110728-ff4f55a20633/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
 github.com/emicklei/go-restful v2.9.5+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
+github.com/emicklei/go-restful/v3 v3.10.2 h1:hIovbnmBTLjHXkqEBUz3HGpXZdM7ZrE9fJIZIqlJLqE=
+github.com/emicklei/go-restful/v3 v3.10.2/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=
 github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
 github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
-github.com/evanphx/json-patch v4.11.0+incompatible h1:glyUF9yIYtMHzn8xaKw5rMhdWcwsYV8dZHIq5567/xs=
 github.com/evanphx/json-patch v4.11.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
+github.com/evanphx/json-patch v4.12.0+incompatible h1:4onqiflcdA9EOZ4RxV643DvftH5pOlLGNtQ5lPWQu84=
+github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/fatih/color v1.7.0/go.mod h1:Zm6kSWBoL9eyXnKyktHP6abPY2pDugNf5KwzbycvMj4=
 github.com/felixge/httpsnoop v1.0.1/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
 github.com/form3tech-oss/jwt-go v3.2.2+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
 github.com/form3tech-oss/jwt-go v3.2.3+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
-github.com/fsnotify/fsnotify v1.4.9 h1:hsms1Qyu0jgnwNXIxa+/V/PDsU6CfLf6CNO8H7IWoS4=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
 github.com/getsentry/raven-go v0.2.0/go.mod h1:KungGk8q33+aIAZUIVWZDr2OfAEBsO49PX4NzFV5kcQ=
 github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
@@ -117,15 +120,25 @@ github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V
 github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A=
 github.com/go-logr/logr v0.1.0/go.mod h1:ixOQHD9gLJUVQQ2ZOR7zLEifBX6tGkNJF4QyIY7sIas=
 github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
-github.com/go-logr/logr v0.4.0 h1:K7/B1jt6fIBQVd4Owv2MqGQClcgf0R266+7C/QjRcLc=
 github.com/go-logr/logr v0.4.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
+github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
+github.com/go-logr/logr v1.2.4 h1:g01GSCwiDw2xSZfjJ2/T9M+S6pFdcNtFYsp+Y43HYDQ=
+github.com/go-logr/logr v1.2.4/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-openapi/jsonpointer v0.19.3/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
 github.com/go-openapi/jsonpointer v0.19.5/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
+github.com/go-openapi/jsonpointer v0.19.6 h1:eCs3fxoIi3Wh6vtgmLTOjdhSpiqphQ+DaPn38N2ZdrE=
+github.com/go-openapi/jsonpointer v0.19.6/go.mod h1:osyAmYz/mB/C3I+WsTTSgw1ONzaLJoLCyoi6/zppojs=
 github.com/go-openapi/jsonreference v0.19.3/go.mod h1:rjx6GuL8TTa9VaixXglHmQmIL98+wF9xc8zWvFonSJ8=
 github.com/go-openapi/jsonreference v0.19.5/go.mod h1:RdybgQwPxbL4UEjuAruzK1x3nE69AqPYEJeo/TWfEeg=
+github.com/go-openapi/jsonreference v0.20.1 h1:FBLnyygC4/IZZr893oiomc9XaghoveYTrLC1F86HID8=
+github.com/go-openapi/jsonreference v0.20.1/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
 github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh66Z9tfKk=
 github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
+github.com/go-openapi/swag v0.22.3 h1:yMBqmnQ0gyZvEb/+KzuWZOXgllrXT4SADYbvDaXHv/g=
+github.com/go-openapi/swag v0.22.3/go.mod h1:UzaqsxGiab7freDnrUUra0MwWfN/q7tE4j+VcZ0yl14=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
+github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 h1:tfuBGBXKqDEevZMzYi5KSi8KkcZtzBcTgAUUtapy0OI=
+github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572/go.mod h1:9Pwr4B2jHnOSGXyyzV8ROjYa2ojvAY6HCGYYfMoC3Ls=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
 github.com/gogo/protobuf v1.2.1/go.mod h1:hp+jE20tsWTFYpLwKvXlhS1hjn+gTNwPg2I6zVXpSg4=
@@ -158,19 +171,23 @@ github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw
 github.com/golang/protobuf v1.4.3/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
 github.com/golang/protobuf v1.5.1/go.mod h1:DopwsBzvsk0Fs44TXzsVbJyPhcCPeIwnvohx4u74HPM=
-github.com/golang/protobuf v1.5.2 h1:ROPKBNFfQgOUMifHyP+KYbvpjbdoFNs+aK7DXlji0Tw=
 github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
+github.com/golang/protobuf v1.5.3 h1:KhyjKVUg7Usr/dYsdSqoFveMYd5ko72D+zANwlG1mmg=
+github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/btree v1.0.0/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/btree v1.0.1/go.mod h1:xXMiIv4Fb/0kKde4SpL7qlzvu5cMJDRkFDxJfI9uaxA=
+github.com/google/gnostic v0.5.7-v3refs h1:FhTMOKj2VhjpouxvWJAV1TL304uMlb9zcDqkl6cEI54=
+github.com/google/gnostic v0.5.7-v3refs/go.mod h1:73MKFl6jIHelAJNaBGFzt3SPtZULs9dYrGFt8OiIsHQ=
 github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.4/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.5 h1:Khx7svrCpmxxtHBq5j2mp/xVjsi8hQMfNLvJFAlrGgU=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.5.9 h1:O2Tfq5qg4qc4AmwVlvv0oLiVAGB7enBSJ2x2DqQFi38=
+github.com/google/go-cmp v0.5.9/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.1.0 h1:Hsa8mG0dQ46ij8Sl2AYJDUv1oA9/d6Vk+3LG99Oe02g=
 github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
@@ -180,13 +197,16 @@ github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OI
 github.com/google/pprof v0.0.0-20191218002539-d4f498aebedc/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200212024743-f11f1df84d12/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200229191704-1ebb73c60ed3/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
+github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98 h1:pUa4ghanp6q4IJHwE9RwLgmVFfReJN+KbQ8ExNEUUoQ=
+github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98/go.mod h1:czg5+yv1E0ZGTi6S6vVK1mke0fV+FaUhNGcd6VRS9Ik=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/uuid v1.1.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/google/uuid v1.3.0 h1:t6JiXgmwXMjEs8VusXIJk2BXHsn+wx8BZdTaoZ5fu7I=
+github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
 github.com/googleapis/gnostic v0.5.1/go.mod h1:6U4PtQXGIEt/Z3h5MAT7FNofLnw9vXk2cUuW7uA/OeU=
-github.com/googleapis/gnostic v0.5.5 h1:9fHAtK0uDfpveeqqo1hkEZJcFvYXAiCN3UutL8F9xHw=
 github.com/googleapis/gnostic v0.5.5/go.mod h1:7+EbHbldMins07ALC74bsA81Ovc97DwqyJO1AENw9kA=
 github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY=
 github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
@@ -218,18 +238,22 @@ github.com/hashicorp/memberlist v0.1.3/go.mod h1:ajVTdAv/9Im8oMAAj5G31PhhMCZJV2p
 github.com/hashicorp/serf v0.8.2/go.mod h1:6hOLApaqBFA1NXqRQAsxw9QxuDEvNxSQRwA/JwenrHc=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
-github.com/imdario/mergo v0.3.5 h1:JboBksRwiiAJWvIYJVo46AfV+IAIKZpfrSzVKj42R4Q=
 github.com/imdario/mergo v0.3.5/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
-github.com/inconshreveable/mousetrap v1.0.0 h1:Z8tu5sraLXCXIcARxBp/8cbvlwVa7Z1NHg9XEKhtSvM=
+github.com/imdario/mergo v0.3.6 h1:xTNEAn+kxVO7dTZGu0CegyqKZmoWFI0rF8UxjlB2d28=
+github.com/imdario/mergo v0.3.6/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
 github.com/inconshreveable/mousetrap v1.0.0/go.mod h1:PxqpIevigyE2G7u3NXJIT2ANytuPF1OarO4DADm73n8=
+github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
+github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/jonboulle/clockwork v0.1.0/go.mod h1:Ii8DK3G1RaLaWxj9trq07+26W01tbo22gdxWY5EU2bo=
 github.com/jonboulle/clockwork v0.2.2/go.mod h1:Pkfl5aHPm1nk2H9h0bjmnJD/BcgbGXUBGnn1kMkgxc8=
+github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
 github.com/jpillora/backoff v1.0.0/go.mod h1:J/6gKK9jxlEcS3zixgDgUAsiuZ7yrSoa/FX5e0EB2j4=
 github.com/json-iterator/go v1.1.6/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
 github.com/json-iterator/go v1.1.10/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
-github.com/json-iterator/go v1.1.11 h1:uVUAXhF2To8cbw/3xN3pxj6kk7TYKs98NIrTqPlMWAQ=
 github.com/json-iterator/go v1.1.11/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
+github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
+github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
 github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024/go.mod h1:6v2b51hI/fHJwM22ozAgKL4VKDeJcHhJFhtBdhmNjmU=
 github.com/jstemmer/go-junit-report v0.9.1/go.mod h1:Brl9GWCQeLvo8nXZwPNNblvFj/XSXhF0NWZEnDohbsk=
 github.com/jtolds/gls v4.20.0+incompatible/go.mod h1:QJZ7F/aHp+rZTRtaJ1ow/lLfFfVYBRgL+9YlvaHOwJU=
@@ -244,6 +268,9 @@ github.com/konsorten/go-windows-terminal-sequences v1.0.3/go.mod h1:T0+1ngSBFLxv
 github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515/go.mod h1:+0opPa2QZZtGFBFZlji/RkVcI2GknAs/DXo4wKdlNEc=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
 github.com/kr/pretty v0.2.0/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
+github.com/kr/pretty v0.2.1/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
+github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
+github.com/kr/pretty v0.3.1/go.mod h1:hoEshYVHaxMs3cyo3Yncou5ZscifuDolrwPKZanG3xk=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
@@ -252,6 +279,8 @@ github.com/magiconair/properties v1.8.1/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czP
 github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.7.6/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
+github.com/mailru/easyjson v0.7.7 h1:UGYAvKxe3sBsEDzO8ZeWOSlIQfWFlxbzLZe7hwFURr0=
+github.com/mailru/easyjson v0.7.7/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
 github.com/mattn/go-colorable v0.0.9/go.mod h1:9vuHe8Xs5qXnSaW/c/ABM9alt+Vo+STaOChaDxuIBZU=
 github.com/mattn/go-isatty v0.0.3/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNxMWT7Zi4=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
@@ -271,16 +300,16 @@ github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJ
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w8PVh93nsPXa1VrQ6jlwL5oN8l14QlcNfg=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/reflect2 v0.0.0-20180701023420-4b7aa43c6742/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0=
-github.com/modern-go/reflect2 v1.0.1 h1:9f412s+6RmYXLWZSEzVVgPGK7C2PphHj5RJrvfx9AWI=
 github.com/modern-go/reflect2 v1.0.1/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0=
+github.com/modern-go/reflect2 v1.0.2 h1:xBagoLtFs94CBntxluKeaWgTMpvLxC4ur3nMaC9Gz0M=
+github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
 github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
+github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq1c1nUAm88MOHcQC9l5mIlSMApZMrHA=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/mwitkow/go-conntrack v0.0.0-20161129095857-cc309e4a2223/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
 github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
 github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
-github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e h1:fD57ERR4JtEqsWbfPhv4DMiApHyliiK5xCTNVSPiaAs=
 github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
-github.com/nxadm/tail v1.4.4 h1:DQuhQpB1tVlglWS2hLQ5OV6B5r8aGxSrPc5Qo6uTN78=
 github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
 github.com/oklog/ulid v1.3.1/go.mod h1:CirwcVhetQ6Lv90oh/F+FBtV6XMibvdAFo93nm5qn4U=
 github.com/onrik/logrus v0.9.0 h1:oT7VstCUxWBoX7fswYK61fi9bzRBSpROq5CR2b7wxQo=
@@ -288,16 +317,19 @@ github.com/onrik/logrus v0.9.0/go.mod h1:qfe9NeZVAJfIxviw3cYkZo3kvBtLoPRJriAO8zl
 github.com/onsi/ginkgo v0.0.0-20170829012221-11459a886d9c/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
-github.com/onsi/ginkgo v1.14.0 h1:2mOpI4JVVPBN+WQRa0WKH2eXR+Ey+uK4n7Zj0aYpIQA=
 github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
+github.com/onsi/ginkgo/v2 v2.13.0 h1:0jY9lJquiL8fcf3M4LAXN5aMlS/b2BV86HFFPCPMgE4=
+github.com/onsi/ginkgo/v2 v2.13.0/go.mod h1:TE309ZR8s5FsKKpuB1YAQYBzCaAfUgatB/xlT/ETL/o=
 github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
-github.com/onsi/gomega v1.10.1 h1:o0+MgICZLuZ7xjH7Vx6zS/zcu93/BEp1VwkIW1mEXCE=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
+github.com/onsi/gomega v1.27.10 h1:naR28SdDFlqrG6kScpT8VWpu1xWY5nJRCF3XaYyBjhI=
+github.com/onsi/gomega v1.27.10/go.mod h1:RsS8tutOdbdgzbPtzzATp12yT7kM5I5aElG3evPbQ0M=
 github.com/opentracing/opentracing-go v1.1.0/go.mod h1:UkNAQd3GIcIGf0SeVgPpRdFStlNbqXla1AfSYxPUl2o=
 github.com/pascaldekloe/goe v0.0.0-20180627143212-57f6aae5913c/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
 github.com/pelletier/go-toml v1.2.0/go.mod h1:5z9KED0ma1S8pY6P1sdut58dfprrGBbd/94hg7ilaic=
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
+github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
 github.com/pkg/errors v0.8.0/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkg/errors v0.8.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
@@ -329,7 +361,11 @@ github.com/prometheus/tsdb v0.7.1/go.mod h1:qhTCs0VvXwvX/y3TZrWD7rabWM+ijKTux40T
 github.com/rogpeppe/fastuuid v0.0.0-20150106093220-6724a57986af/go.mod h1:XWv6SoW27p1b0cqNHllgS5HIMJraePCO15w5zCzIWYg=
 github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
+github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
+github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
+github.com/rogpeppe/go-internal v1.11.0/go.mod h1:ddIwULY96R17DhadqLgMfk9H9tvdUzkipdSkR5nkCZA=
 github.com/russross/blackfriday/v2 v2.0.1/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
+github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/ryanuber/columnize v0.0.0-20160712163229-9b3edd62028f/go.mod h1:sm1tb6uqfes/u+d4ooFouqFdy9/2g9QGwK3SQygK0Ts=
 github.com/sean-/seed v0.0.0-20170313163322-e2103e2c3529/go.mod h1:DxrIzT+xaE7yg65j358z/aeFdxmN0P9QXhEzd20vsDc=
 github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
@@ -337,8 +373,9 @@ github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPx
 github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE=
 github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
 github.com/sirupsen/logrus v1.7.0/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
-github.com/sirupsen/logrus v1.8.1 h1:dJKuHgqk1NNQlqoA6BTlM1Wf9DOH3NBjQyu0h9+AZZE=
 github.com/sirupsen/logrus v1.8.1/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
+github.com/sirupsen/logrus v1.9.0 h1:trlNQbNUG3OdDrDil03MCb1H2o9nJ1x4/5LYw7byDE0=
+github.com/sirupsen/logrus v1.9.0/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
 github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d/go.mod h1:OnSkiWE9lh6wB0YB77sQom3nweQdgAjqCqsofrRNTgc=
 github.com/smartystreets/goconvey v1.6.4/go.mod h1:syvi0/a8iFYH4r/RixwvyeAJjdLS9QV7WQ/tjFTllLA=
 github.com/soheilhy/cmux v0.1.4/go.mod h1:IM3LyeVVIOuxMH7sFAkER9+bJ4dT7Ms6E4xg4kGIyLM=
@@ -347,8 +384,9 @@ github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasO
 github.com/spf13/afero v1.1.2/go.mod h1:j4pytiNVoe2o6bmDsKpLACNPDBIoEAkihy7loJ1B0CQ=
 github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
 github.com/spf13/cast v1.3.0/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
-github.com/spf13/cobra v1.1.3 h1:xghbfqPkxzxP3C/f3n5DdpAbdKLj4ZE4BWQI362l53M=
 github.com/spf13/cobra v1.1.3/go.mod h1:pGADOWyqRD/YMrPZigI/zbliZ2wVD/23d+is3pSWzOo=
+github.com/spf13/cobra v1.7.0 h1:hyqWnYt1ZQShIddO5kBpj3vu05/++x6tJ6dg8EC572I=
+github.com/spf13/cobra v1.7.0/go.mod h1:uLxZILRyS/50WlhOIKD7W6V5bgeIt+4sICxh6uRMrb0=
 github.com/spf13/jwalterweatherman v1.0.0/go.mod h1:cQK4TGJAtQXfYWX+Ddv3mKDzgVb68N+wFjFa4jdeBTo=
 github.com/spf13/pflag v0.0.0-20170130214245-9ff6c6923cff/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
 github.com/spf13/pflag v1.0.3/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
@@ -358,13 +396,19 @@ github.com/spf13/viper v1.7.0/go.mod h1:8WkrPz2fc9jxqZNCJI/76HCieCp4Q8HaLFoCha5q
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
+github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
+github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
 github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.7.0 h1:nwc3DEeHmmLAfoZucVR881uASk0Mfjw8xYJ99tb5CcY=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
+github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
+github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
+github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
 github.com/subosito/gotenv v1.2.0/go.mod h1:N0PQaV/YGNqwC0u51sEeR/aUtSLEXKX9iv69rRypqCw=
 github.com/tidwall/gjson v1.14.0 h1:6aeJ0bzojgWLa82gDQHcx3S0Lr/O51I9bJ5nv6JFx5w=
 github.com/tidwall/gjson v1.14.0/go.mod h1:/wbyibRr2FHMks5tjHJ5F8dMZh3AcwJEMf5vlfC0lxk=
@@ -483,14 +527,15 @@ golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20201202161906-c7110b5ffcbb/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
 golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.7.0 h1:rJrUqqhjsgNp7KqAIc25s9pZnjU7TUcSY7HcVZjdn1g=
-golang.org/x/net v0.7.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
+golang.org/x/net v0.16.0 h1:7eBu7KsSvFDtSXUIDbh3aqlK4DPsZ1rByC8PFfBThos=
+golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
-golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d h1:TzXSXBo42m9gQenoE3b9BGiEpg5IG2JkU5FkPIawgtw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
+golang.org/x/oauth2 v0.12.0 h1:smVPGxink+n1ZI5pkQa8y6fZT0RW0MgCO5bFpepy4B4=
+golang.org/x/oauth2 v0.12.0/go.mod h1:A74bZ3aGXgCY0qaIC9Ahg6Lglin4AMAco8cIv9baba4=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -545,13 +590,14 @@ golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.5.0 h1:MUK/U/4lj1t1oPg0HfuXDN/Z1wv31ZJ/YcPiGccS4DU=
-golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.13.0 h1:Af8nKPmuFypiUBjVoU9V20FiaFXOcuZI21p0ycVYYGE=
+golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.5.0 h1:n2a8QNdAb0sZNpU9R1ALUXBbY+w51fCQDN+7EdxNBsY=
-golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k=
+golang.org/x/term v0.13.0 h1:bb+I9cTfFazGW51MZqBVmZy7+JEJMouUHTUSKVQLBek=
+golang.org/x/term v0.13.0/go.mod h1:LTmsnFJwVN6bCy1rVCoS+qHT1HhALEFxKncY3WNNh4U=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -559,14 +605,15 @@ golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.7.0 h1:4BRB4x83lYWy72KwLD/qYDuTu7q9PjSagHvijDw7cLo=
-golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.13.0 h1:ablQoSUd0tRdKxZewP80B+BaqeKJuVhuRxj/dkrun3k=
+golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20210220033141-f8bda1e9f3ba/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac h1:7zkz7BUtwNFFqcowJ+RIgu2MaV/MapERkDIy+mwPyjs=
 golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
+golang.org/x/time v0.3.0 h1:rg5rLMjNzMS1RkNLzCG38eapWhnYLFYXDXj2gOlr8j4=
+golang.org/x/time v0.3.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/tools v0.0.0-20180221164845-07fd8470d635/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20181030221726-6c7e314b6563/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
@@ -607,10 +654,11 @@ golang.org/x/tools v0.0.0-20200505023115-26f46d2f7ef8/go.mod h1:EkVYQZoAsY45+roY
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.1.2/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.14.0 h1:jvNa2pY0M4r62jkRQ6RwEZZyPcymeL9XZMLBbV7U2nc=
+golang.org/x/tools v0.14.0/go.mod h1:uYBEerGOWcJyEORxN+Ek8+TT266gXkNlHdJBwexUsBg=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 h1:go1bK/D/BFZV2I8cIQd1NKEZ+0owSTG1fDTci4IqFcE=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
 google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M=
@@ -626,8 +674,9 @@ google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9Ywl
 google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.6.1/go.mod h1:i06prIuMbXzDqacNJfV5OdTW448YApPu5ww/cMBSeb0=
-google.golang.org/appengine v1.6.5 h1:tycE03LOZYQNhDpS27tcQdAzLCVMaj7QT2SXxebnpCM=
 google.golang.org/appengine v1.6.5/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
+google.golang.org/appengine v1.6.7 h1:FZR1q0exgwxzPzp/aF+VccGrSfxfPpkBqjIIEq3ru6c=
+google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
 google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc=
 google.golang.org/genproto v0.0.0-20190307195333-5fe7a883aa19/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190418145605-e7d98fc518a7/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
@@ -675,14 +724,16 @@ google.golang.org/protobuf v1.23.1-0.20200526195155-81db48ad09cc/go.mod h1:EGpAD
 google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGjtUeSXeh4=
 google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
-google.golang.org/protobuf v1.26.0 h1:bxAC2xTBsZGibn2RTntX0oH50xLsqy1OxA9tTL3p/lk=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
+google.golang.org/protobuf v1.31.0 h1:g0LDEJHgrBl9N9r17Ru3sqWhkIx2NB67okBHPwC7hs8=
+google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f h1:BLraFXnmrev5lT+xlilqcH8XK9/i0At2xKjWk4p6zsU=
 gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
+gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
 gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
 gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
 gopkg.in/inf.v0 v0.9.1 h1:73M5CoZyi3ZLMOyDlQh031Cx6N9NDJ2Vvfl76EDAgDc=
@@ -691,7 +742,6 @@ gopkg.in/ini.v1 v1.51.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
 gopkg.in/natefinch/lumberjack.v2 v2.0.0/go.mod h1:l0ndWWf7gzL7RNwBG7wST/UCcT4T24xpD6X8LsfU/+k=
 gopkg.in/resty.v1 v1.12.0/go.mod h1:mDo4pnntr5jdWRML875a/NmxYqAlA73dVijT2AXvQQo=
 gopkg.in/square/go-jose.v2 v2.2.2/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
-gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
 gopkg.in/yaml.v2 v2.0.0-20170812160011-eb3733d160e7/go.mod h1:JAlM8MvJe8wmxCU4Bli9HhUf9+ttbYbLASfIpnQbh74=
 gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
@@ -706,8 +756,8 @@ gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.0-20200615113413-eeeca48fe776/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-gopkg.in/yaml.v3 v3.0.0 h1:hjy8E9ON/egN1tAYqKb61G10WtihqetD4sz2H+8nIeA=
-gopkg.in/yaml.v3 v3.0.0/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
+gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gotest.tools/v3 v3.0.2/go.mod h1:3SzNCllyD9/Y+b5r9JIKQ474KzkZyqLqEfYqMsX94Bk=
 gotest.tools/v3 v3.0.3/go.mod h1:Z7Lb0S5l+klDB31fvDQX8ss/FlKDxtlFlw3Oa8Ymbl8=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
@@ -716,33 +766,43 @@ honnef.co/go/tools v0.0.0-20190418001031-e561f6794a2a/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.22.6 h1:acjE5ABt0KpsBI9QCtLqaQEPSF94jOtE/LoFxSYasSE=
 k8s.io/api v0.22.6/go.mod h1:q1F7IfaNrbi/83ebLy3YFQYLjPSNyunZ/IXQxMmbwCg=
-k8s.io/apimachinery v0.22.6 h1:z7vxNRkFX0NToA+8D17kzLZ/T4t+DqwzUlqqbqRepRs=
+k8s.io/api v0.27.6 h1:PBWu/lywJe2qQcshMjubzcBg7+XDZOo7O8JJAWuYtUo=
+k8s.io/api v0.27.6/go.mod h1:AQYj0UsFCp3qJE7bOVnUuy4orCsXVkvHefnbYQiNWgk=
 k8s.io/apimachinery v0.22.6/go.mod h1:ZvVLP5iLhwVFg2Yx9Gh5W0um0DUauExbRhe+2Z8I1EU=
+k8s.io/apimachinery v0.27.6 h1:mGU8jmBq5o8mWBov+mLjdTBcU+etTE19waies4AQ6NE=
+k8s.io/apimachinery v0.27.6/go.mod h1:XNfZ6xklnMCOGGFNqXG7bUrQCoR04dh/E7FprV6pb+E=
 k8s.io/apiserver v0.22.6/go.mod h1:OlL1rGa2kKWGj2JEXnwBcul/BwC9Twe95gm4ohtiIIs=
-k8s.io/client-go v0.22.6 h1:ugAXeC312xeGXsn7zTRz+btgtLBnW3qYhtUUpVQL7YE=
 k8s.io/client-go v0.22.6/go.mod h1:TffU4AV2idZGeP+g3kdFZP+oHVHWPL1JYFySOALriw0=
+k8s.io/client-go v0.27.6 h1:vzI8804gpUtpMCNaFjIFyJrifH7u//LJCJPy8fQuYQg=
+k8s.io/client-go v0.27.6/go.mod h1:PMsXcDKiJTW7PHJ64oEsIUJF319wm+EFlCj76oE5QXM=
 k8s.io/code-generator v0.22.6/go.mod h1:iOZwYADSgFPNGWfqHFfg1V0TNJnl1t0WyZluQp4baqU=
 k8s.io/component-base v0.22.6/go.mod h1:ngHLefY4J5fq2fApNdbWyj4yh0lvw36do4aAjNN8rc8=
 k8s.io/gengo v0.0.0-20200413195148-3a45101e95ac/go.mod h1:ezvh/TsK7cY6rbqRK0oQQ8IAqLxYwwyPxAX1Pzy0ii0=
 k8s.io/gengo v0.0.0-20201214224949-b6c5ce23f027/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
-k8s.io/klog/v2 v2.9.0 h1:D7HV+n1V57XeZ0m6tdRkfknthUaM06VFbWldOFh8kzM=
 k8s.io/klog/v2 v2.9.0/go.mod h1:hy9LJ/NvuK+iVyP4Ehqva4HxZG/oXyIS3n3Jmire4Ec=
+k8s.io/klog/v2 v2.100.1 h1:7WCHKK6K8fNhTqfBhISHQ97KrnJNFZMcQvKp7gP/tmg=
+k8s.io/klog/v2 v2.100.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/kube-aggregator v0.22.6 h1:/iaXzOWia2dqOQkIA9eJtkmfTveJMLz3Dci9ZA/WgmU=
 k8s.io/kube-aggregator v0.22.6/go.mod h1:0RSTzxqiwsj5HUlov195Z72ZKyE4qgedKXCl6sLKAjM=
-k8s.io/kube-openapi v0.0.0-20211109043538-20434351676c h1:jvamsI1tn9V0S8jicyX82qaFC0H/NKxv2e5mbqsgR80=
 k8s.io/kube-openapi v0.0.0-20211109043538-20434351676c/go.mod h1:vHXdDvt9+2spS2Rx9ql3I8tycm3H9FDfdUoIuKCefvw=
-k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a h1:8dYfu/Fc9Gz2rNJKB9IQRGgQOh2clmRzNIPPY1xLY5g=
+k8s.io/kube-openapi v0.0.0-20230501164219-8b0f38b5fd1f h1:2kWPakN3i/k81b0gvD5C5FJ2kxm1WrQFanWchyKuqGg=
+k8s.io/kube-openapi v0.0.0-20230501164219-8b0f38b5fd1f/go.mod h1:byini6yhqGC14c3ebc/QwanvYwhuMWF6yz2F8uwW8eg=
 k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+k8s.io/utils v0.0.0-20230209194617-a36077c30491 h1:r0BAOLElQnnFhE/ApUsg3iHdVYYPBjNSSOMowRZxxsY=
+k8s.io/utils v0.0.0-20230209194617-a36077c30491/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
 sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.27/go.mod h1:tq2nT0Kx7W+/f2JVE+zxYtUhdjuELJkVpNz+x/QN5R4=
+sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
+sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/structured-merge-diff/v4 v4.0.2/go.mod h1:bJZC9H9iH24zzfZ/41RGcq60oK1F7G282QMXDPYydCw=
-sigs.k8s.io/structured-merge-diff/v4 v4.2.1 h1:bKCqE9GvQ5tiVHn5rfn1r+yao3aLQEaLzkkmAkf+A6Y=
 sigs.k8s.io/structured-merge-diff/v4 v4.2.1/go.mod h1:j/nl6xW8vLS49O8YvXW1ocPhZawJtm+Yrr7PPRQ0Vg4=
-sigs.k8s.io/yaml v1.2.0 h1:kr/MCeFWJWTwyaHoR9c8EjH9OumOmoF9YGiZd7lFm/Q=
+sigs.k8s.io/structured-merge-diff/v4 v4.2.3 h1:PRbqxJClWWYMNV1dhaG4NsibJbArud9kFxnAMREiWFE=
+sigs.k8s.io/structured-merge-diff/v4 v4.2.3/go.mod h1:qjx8mGObPmV2aSZepjQjbmb2ihdVs8cGKBraizNC69E=
 sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=
+sigs.k8s.io/yaml v1.3.0 h1:a2VclLzOGrwOHDiV8EfBGhvjHvP46CtW5j6POvhYGGo=
+sigs.k8s.io/yaml v1.3.0/go.mod h1:GeOyir5tyXNByN85N/dRIT9es5UQNerPYEKK56eTBm8=
diff --git a/images/nginx/TAG b/images/nginx/TAG
index 8acdd82b7..4e379d2bf 100644
--- a/images/nginx/TAG
+++ b/images/nginx/TAG
@@ -1 +1 @@
-0.0.1
+0.0.2
diff --git a/images/opentelemetry/rootfs/go.mod b/images/opentelemetry/rootfs/go.mod
index 2ca85f584..0f48b0988 100644
--- a/images/opentelemetry/rootfs/go.mod
+++ b/images/opentelemetry/rootfs/go.mod
@@ -1,3 +1,3 @@
 module init-otel
 
-go 1.21.1
+go 1.21.3
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index dc83dd4a2..b70c57b7b 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -43,7 +43,7 @@ image:
 		--pull \
 		--push \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=1.21.1 \
+		--build-arg GOLANG_VERSION=1.21.3 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
@@ -54,7 +54,7 @@ image:
 		--build-arg YAML_LINT_VERSION=1.27.1 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.11.2 \
-		--build-arg GINKGO_VERSION=2.9.5 \
+		--build-arg GINKGO_VERSION=2.13.0 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -64,7 +64,7 @@ build: ensure-buildx
 		--progress=${PROGRESS} \
 		--pull \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=1.21.1 \
+		--build-arg GOLANG_VERSION=1.21.3 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
@@ -75,7 +75,7 @@ build: ensure-buildx
 		--build-arg YAML_LINT_VERSION=1.27.1 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.11.2 \
-		--build-arg GINKGO_VERSION=2.9.5 \
+		--build-arg GINKGO_VERSION=2.13.0 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index 38843c2db..a513334a2 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -17,7 +17,8 @@ limitations under the License.
 package annotations
 
 import (
-	"github.com/imdario/mergo"
+	"dario.cat/mergo"
+
 	"k8s.io/ingress-nginx/internal/ingress/annotations/canary"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/modsecurity"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/opentelemetry"
diff --git a/magefiles/go.mod b/magefiles/go.mod
index ac05f6b89..f2c56c79c 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/magefiles
 
-go 1.21.1
+go 1.21.3
 
 require (
 	github.com/blang/semver/v4 v4.0.0
@@ -17,16 +17,22 @@ require (
 	github.com/Masterminds/semver v1.5.0 // indirect
 	github.com/cyphar/filepath-securejoin v0.2.4 // indirect
 	github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960 // indirect
+	github.com/fsnotify/fsnotify v1.6.0 // indirect
 	github.com/ghodss/yaml v1.0.0 // indirect
 	github.com/gobwas/glob v0.2.3 // indirect
 	github.com/golang/protobuf v1.5.3 // indirect
 	github.com/google/go-querystring v1.1.0 // indirect
+	github.com/kr/pretty v0.3.1 // indirect
+	github.com/onsi/ginkgo v1.16.5 // indirect
+	github.com/onsi/gomega v1.27.10 // indirect
 	github.com/rogpeppe/go-internal v1.11.0 // indirect
-	golang.org/x/crypto v0.13.0 // indirect
-	golang.org/x/net v0.15.0 // indirect
+	github.com/stretchr/testify v1.8.4 // indirect
+	golang.org/x/crypto v0.14.0 // indirect
+	golang.org/x/net v0.16.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/protobuf v1.31.0 // indirect
+	gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
-	k8s.io/apimachinery v0.27.4 // indirect
+	k8s.io/apimachinery v0.27.6 // indirect
 	k8s.io/helm v2.17.0+incompatible // indirect
 )
diff --git a/magefiles/go.sum b/magefiles/go.sum
index 8cd8c9420..32da55ddc 100644
--- a/magefiles/go.sum
+++ b/magefiles/go.sum
@@ -12,6 +12,7 @@ github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSs
 github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960 h1:aRd8M7HJVZOqn/vhOzrGcQH0lNAMkqMn+pXUYkatmcA=
 github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960/go.mod h1:9HQzr9D/0PGwMEbC3d5AB7oi67+h4TsQqItC1GVYG58=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
+github.com/fsnotify/fsnotify v1.6.0 h1:n+5WquG0fcWoWp6xPWfHdbskMCQaFnG6PfBrh1Ky4HY=
 github.com/ghodss/yaml v1.0.0 h1:wQHKEahhL6wmXdzwWG11gIVCkOv05bNOh+Rxn0yngAk=
 github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
 github.com/gobwas/glob v0.2.3 h1:A4xDbljILXROh+kObIiy5kIaPYD8e96x1tgBhUI5J+Y=
@@ -31,22 +32,20 @@ github.com/google/go-querystring v1.1.0 h1:AnCroh3fv4ZBgVIf1Iwtovgjaw/GiKJo8M8yD
 github.com/google/go-querystring v1.1.0/go.mod h1:Kcdr2DB4koayq7X8pmAG4sNG59So17icRSOU623lUBU=
 github.com/helm/helm v2.17.0+incompatible h1:0iy95yMXrfWpwaoOA9XRP+cTvitTrq+LcJV9DvR5n1Y=
 github.com/helm/helm v2.17.0+incompatible/go.mod h1:ahXhuvluW4YnSL6W6hDVetZsVK8Pv4BP8OwKli7aMqo=
-github.com/hpcloud/tail v1.0.0 h1:nfCOvKYfkgYP8hkirhJocXT2+zOD8yUNjXaWfTlyFKI=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
-github.com/kr/pretty v0.3.0 h1:WgNl7dwNpEZ6jJ9k1snq4pZsg7DOEN8hP9Xw0Tsjwk0=
-github.com/kr/pretty v0.3.0/go.mod h1:640gp4NfQd8pI5XOwp5fnNeVWj67G7CFk/SaSQn7NBk=
+github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
-github.com/kr/text v0.1.0 h1:45sCR5RtlFHMR4UwH9sdQ5TC8v0qDQCHnXt+kaKSTVE=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
+github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
 github.com/magefile/mage v1.15.0 h1:BvGheCMAsG3bWUDbZ8AyXXpCNwU9u5CB6sM+HNb9HYg=
 github.com/magefile/mage v1.15.0/go.mod h1:z5UZb/iS3GoOSn0JgWuiw7dxlurVYTu+/jHXqQg881A=
+github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
 github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
-github.com/onsi/ginkgo v1.10.2 h1:uqH7bpe+ERSiDa34FDOF7RikN6RzXgduUF8yarlZp94=
 github.com/onsi/ginkgo v1.10.2/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
+github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
-github.com/onsi/gomega v1.27.4 h1:Z2AnStgsdSayCMDiCU42qIz+HLqEPcgiOCXjAU/w+8E=
-github.com/onsi/gomega v1.27.4/go.mod h1:riYq/GJKh8hhoM01HN6Vmuy93AarCXCBGpvFDK3q3fQ=
+github.com/onsi/gomega v1.27.10 h1:naR28SdDFlqrG6kScpT8VWpu1xWY5nJRCF3XaYyBjhI=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
@@ -56,24 +55,20 @@ github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNX
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
-github.com/stretchr/testify v1.8.1 h1:w7B6lhMri9wdJUVmEZPGGhZzrYTPvgJArz7wNPgYKsk=
-github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
+github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
 github.com/vmware-labs/yaml-jsonpath v0.3.2 h1:/5QKeCBGdsInyDCyVNLbXyilb61MXGi9NP674f9Hobk=
 github.com/vmware-labs/yaml-jsonpath v0.3.2/go.mod h1:U6whw1z03QyqgWdgXxvVnQ90zN1BWz5V+51Ewf8k+rQ=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
-golang.org/x/crypto v0.13.0 h1:mvySKfSWJ+UKUii46M40LOvyWfN0s2U+46/jDd0e6Ck=
-golang.org/x/crypto v0.13.0/go.mod h1:y6Z2r+Rw4iayiXXAIxJIDAJ1zMW4yaTpebo8fPOliYc=
+golang.org/x/crypto v0.14.0 h1:wBqGXzWJW6m1XrIKlAH0Hs1JJ7+9KBwnIO8v66Q9cHc=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
-golang.org/x/net v0.15.0 h1:ugBLEUaxABaB5AJqW9enI0ACdci2RUd4eP51NTBvuJ8=
-golang.org/x/net v0.15.0/go.mod h1:idbUs1IY1+zTqbi8yxTbhexhEEk5ur9LInksu6HrEpk=
+golang.org/x/net v0.16.0 h1:7eBu7KsSvFDtSXUIDbh3aqlK4DPsZ1rByC8PFfBThos=
 golang.org/x/oauth2 v0.12.0 h1:smVPGxink+n1ZI5pkQa8y6fZT0RW0MgCO5bFpepy4B4=
 golang.org/x/oauth2 v0.12.0/go.mod h1:A74bZ3aGXgCY0qaIC9Ahg6Lglin4AMAco8cIv9baba4=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.12.0 h1:CM0HF96J0hcLAwsHPJZjfdNzs0gftsLfgKt57wWHJ0o=
-golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.13.0 h1:Af8nKPmuFypiUBjVoU9V20FiaFXOcuZI21p0ycVYYGE=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.13.0 h1:ablQoSUd0tRdKxZewP80B+BaqeKJuVhuRxj/dkrun3k=
@@ -87,9 +82,8 @@ google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQ
 google.golang.org/protobuf v1.31.0 h1:g0LDEJHgrBl9N9r17Ru3sqWhkIx2NB67okBHPwC7hs8=
 google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15 h1:YR8cESwS4TdDjEe65xsg0ogRM/Nc3DYOhEAlW+xobZo=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/fsnotify.v1 v1.4.7 h1:xOHLXZwVvI9hhs+cLKq5+I5onOuwQLhQwiu63xxlHs4=
+gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
@@ -102,7 +96,6 @@ gopkg.in/yaml.v3 v3.0.0-20191026110619-0b21df46bc1d/go.mod h1:K4uyk7z7BCEPqu6E+C
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/apimachinery v0.27.4 h1:CdxflD4AF61yewuid0fLl6bM4a3q04jWel0IlP+aYjs=
-k8s.io/apimachinery v0.27.4/go.mod h1:XNfZ6xklnMCOGGFNqXG7bUrQCoR04dh/E7FprV6pb+E=
+k8s.io/apimachinery v0.27.6 h1:mGU8jmBq5o8mWBov+mLjdTBcU+etTE19waies4AQ6NE=
 k8s.io/helm v2.17.0+incompatible h1:Bpn6o1wKLYqKM3+Osh8e+1/K2g/GsQJ4F4yNF2+deao=
 k8s.io/helm v2.17.0+incompatible/go.mod h1:LZzlS4LQBHfciFOurYBFkCMTaZ0D1l+p0teMg7TSULI=
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 6df4fb1e7..425d043e9 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.9.5
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.13.0
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index 4dc1bddd0..5c4ba5c1e 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -96,7 +96,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.9.5
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.13.0
   fi
 
   echo "[dev-env] .. done building controller images"

From 2d3ee50949ae6f15ed34c365b426b7d452ab6600 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 11 Oct 2023 17:53:19 -0400
Subject: [PATCH 0975/1641] update nginx base, httpbun, e2e, helm webhook cert
 gen (#10506)

* update nginx base, httpbun, e2e, helm webhook cert gen

Signed-off-by: James Strong <strong.james.e@gmail.com>

* fix helm docs

Signed-off-by: James Strong <strong.james.e@gmail.com>

---------

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 NGINX_BASE                       | 2 +-
 build/run-in-docker.sh           | 2 +-
 charts/ingress-nginx/README.md   | 4 ++--
 charts/ingress-nginx/values.yaml | 4 ++--
 test/e2e-image/Makefile          | 2 +-
 test/e2e/HTTPBUN_IMAGE           | 2 +-
 6 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index 14a7ee54b..d6cecf76b 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:v20230623-427f3d2fb@sha256:7b479f66872c0b1cb0f1315e305b8a3e9c6da846c7dd3855db99bc8cfd6791e1
+registry.k8s.io/ingress-nginx/nginx:v20231011-8b53cabe0@sha256:34881d62f71e8573fb765c40585dba28a1148206fbbe2c3871ad3f4e8c6e360f
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 2ac7220a8..bec825291 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20230907-5bb82dcb7@sha256:421cda0f65a949b8b67b5e62a45071702d19ed458a3e2ba753171b0e66943210}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20231011-8b53cabe0@sha256:ed0dad805c635e66469b4ac376010eebdd0b3fe62d753f58db1632d6f12f451d}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 9016e9290..c86db7480 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -251,11 +251,11 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.namespaceSelector | object | `{}` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
-| controller.admissionWebhooks.patch.image.digest | string | `"sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b"` |  |
+| controller.admissionWebhooks.patch.image.digest | string | `"sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.admissionWebhooks.patch.image.registry | string | `"registry.k8s.io"` |  |
-| controller.admissionWebhooks.patch.image.tag | string | `"v20230407"` |  |
+| controller.admissionWebhooks.patch.image.tag | string | `"v20231011-8b53cabe0"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
 | controller.admissionWebhooks.patch.podAnnotations | object | `{}` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 196e14017..8b8356656 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -640,8 +640,8 @@ controller:
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
         ## repository:
-        tag: v20230407
-        digest: sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        tag: v20231011-8b53cabe0
+        digest: sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         pullPolicy: IfNotPresent
       # -- Provide a priority class name to the webhook patching job
       ##
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index bd3453253..ff5aa8fb6 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20230907-5bb82dcb7@sha256:421cda0f65a949b8b67b5e62a45071702d19ed458a3e2ba753171b0e66943210"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20231011-8b53cabe0@sha256:ed0dad805c635e66469b4ac376010eebdd0b3fe62d753f58db1632d6f12f451d"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/HTTPBUN_IMAGE b/test/e2e/HTTPBUN_IMAGE
index 2d95865c7..7e83b49fe 100644
--- a/test/e2e/HTTPBUN_IMAGE
+++ b/test/e2e/HTTPBUN_IMAGE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/e2e-test-httpbun:v20230505-v0.0.1
+registry.k8s.io/ingress-nginx/e2e-test-httpbun:v20231011-8b53cabe0

From b473801a4c206cf163be7f7b45003872eaf8a692 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Thu, 12 Oct 2023 08:20:45 -0300
Subject: [PATCH 0976/1641] Bump x/net (#10514)

---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 8ea342f31..8444772d1 100644
--- a/go.mod
+++ b/go.mod
@@ -102,7 +102,7 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.13.0 // indirect
-	golang.org/x/net v0.16.0 // indirect
+	golang.org/x/net v0.17.0 // indirect
 	golang.org/x/oauth2 v0.12.0 // indirect
 	golang.org/x/sys v0.13.0 // indirect
 	golang.org/x/term v0.13.0 // indirect
diff --git a/go.sum b/go.sum
index ea572e4b3..9253735f5 100644
--- a/go.sum
+++ b/go.sum
@@ -466,8 +466,8 @@ golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81R
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.16.0 h1:7eBu7KsSvFDtSXUIDbh3aqlK4DPsZ1rByC8PFfBThos=
-golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
+golang.org/x/net v0.17.0 h1:pVaXccu2ozPjCXewfr1S7xza/zcXTity9cCdXQYSjIM=
+golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=

From 6f2ad83b0d914ae9c0a33bebf3630f296ffb228d Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 12 Oct 2023 09:51:50 -0400
Subject: [PATCH 0977/1641] release 1.9.3

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 README.md                                     |  2 +
 TAG                                           |  2 +-
 changelog/Changelog-1.9.3.md                  | 27 ++++++++++
 charts/ingress-nginx/Chart.yaml               |  9 ++--
 charts/ingress-nginx/README.md                |  8 +--
 .../changelog/Changelog-4.8.2.md              | 10 ++++
 charts/ingress-nginx/values.yaml              |  6 +--
 deploy/static/provider/aws/deploy.yaml        | 50 +++++++++----------
 .../aws/nlb-with-tls-termination/deploy.yaml  | 50 +++++++++----------
 deploy/static/provider/baremetal/deploy.yaml  | 50 +++++++++----------
 deploy/static/provider/cloud/deploy.yaml      | 50 +++++++++----------
 deploy/static/provider/do/deploy.yaml         | 50 +++++++++----------
 deploy/static/provider/exoscale/deploy.yaml   | 50 +++++++++----------
 deploy/static/provider/kind/deploy.yaml       | 50 +++++++++----------
 deploy/static/provider/oracle/deploy.yaml     | 50 +++++++++----------
 deploy/static/provider/scw/deploy.yaml        | 50 +++++++++----------
 docs/e2e-tests.md                             |  2 +-
 17 files changed, 278 insertions(+), 238 deletions(-)
 create mode 100644 changelog/Changelog-1.9.3.md
 create mode 100644 charts/ingress-nginx/changelog/Changelog-4.8.2.md

diff --git a/README.md b/README.md
index 9892b08a8..071ee69ff 100644
--- a/README.md
+++ b/README.md
@@ -38,9 +38,11 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 
 |  Supported  | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
 |:--:|-----------------------|------------------------------|----------------|---------------|------------------------------|
+| 🔄 | **v1.9.3**            | 1.28, 1.27,1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
 | 🔄 | **v1.9.1**            | 1.28, 1.27,1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
 | 🔄 | **v1.9.0**            | 1.28, 1.27,1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
 | 🔄 | **v1.8.2**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
+| 🔄 | **v1.8.4**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
 | 🔄 | **v1.8.1**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
 | 🔄 | **v1.8.0**            | 1.27,1.26, 1.25, 1.24        | 3.18.0         | 1.21.6        | 4.7.*              |
 | 🔄 | **v1.7.1**            | 1.27,1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
diff --git a/TAG b/TAG
index ba1e8bf0b..7517f6876 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.9.1
+v1.9.3
diff --git a/changelog/Changelog-1.9.3.md b/changelog/Changelog-1.9.3.md
new file mode 100644
index 000000000..45dfaa371
--- /dev/null
+++ b/changelog/Changelog-1.9.3.md
@@ -0,0 +1,27 @@
+# Changelog
+
+### 1.9.3
+Images:
+
+ * registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
+ * registry.k8s.io/ingress-nginx/controller-chroot:v1.9.3@sha256:df4931fd6859fbf1a71e785f02a44b2f9a16f010ae852c442e9bb779cbefdc86
+ 
+### All Changes:
+
+* update nginx base, httpbun, e2e, helm webhook cert gen (#10506)
+* added warning for configuration-snippets usage (#10492)
+* Remove legacy GeoIP from controller (#10495)
+* add upstream patch for CVE-2023-44487 (#10494)
+* Revert "Remove curl from nginx base image (#10477)" (#10479)
+* update error and otel to have all the arch we support (#10476)
+* Remove curl from nginx base image (#10477)
+
+### Dependencies updates: 
+* Bump x/net (#10514)
+* Bump curl and Go version (#10503)
+* Bump google.golang.org/grpc from 1.58.2 to 1.58.3 (#10496)
+* Bump github.com/prometheus/client_model (#10486)
+* Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#10487)
+* Bump golang.org/x/crypto from 0.13.0 to 0.14.0 (#10485)
+ 
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.9.1...controller-controller-v1.9.3
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index d49b3f7cc..c23daa33e 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,9 +1,10 @@
 annotations:
-  artifacthub.io/changes: |
-     - "Update Ingress-Nginx version controller-v1.9.1"
+  artifacthub.io/changes: |-
+    - "update nginx base, httpbun, e2e, helm webhook cert gen (#10506)"
+    - "Update Ingress-Nginx version controller-v1.9.3"
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.9.1
+appVersion: 1.9.3
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 home: https://github.com/kubernetes/ingress-nginx
@@ -19,4 +20,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.8.1
+version: 4.8.2
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index c86db7480..31890e175 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.8.1](https://img.shields.io/badge/Version-4.8.1-informational?style=flat-square) ![AppVersion: 1.9.1](https://img.shields.io/badge/AppVersion-1.9.1-informational?style=flat-square)
+![Version: 4.8.2](https://img.shields.io/badge/Version-4.8.2-informational?style=flat-square) ![AppVersion: 1.9.3](https://img.shields.io/badge/AppVersion-1.9.3-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -314,13 +314,13 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25"` |  |
-| controller.image.digestChroot | string | `"sha256:2ac744ef08850ee86ad7162451a6879f47c1a41c6a757f6b6f913c52103b8836"` |  |
+| controller.image.digest | string | `"sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98"` |  |
+| controller.image.digestChroot | string | `"sha256:df4931fd6859fbf1a71e785f02a44b2f9a16f010ae852c442e9bb779cbefdc86"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.9.1"` |  |
+| controller.image.tag | string | `"v1.9.3"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/Changelog-4.8.2.md b/charts/ingress-nginx/changelog/Changelog-4.8.2.md
new file mode 100644
index 000000000..3fbb19f53
--- /dev/null
+++ b/charts/ingress-nginx/changelog/Changelog-4.8.2.md
@@ -0,0 +1,10 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.8.2
+
+* - "update nginx base, httpbun, e2e, helm webhook cert gen (#10506)"
+* - "Update Ingress-Nginx version controller-v1.9.3"
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.8.1...helm-chart-4.8.2
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 8b8356656..890282233 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -24,9 +24,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.9.1"
-    digest: sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
-    digestChroot: sha256:2ac744ef08850ee86ad7162451a6879f47c1a41c6a757f6b6f913c52103b8836
+    tag: "v1.9.3"
+    digest: sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
+    digestChroot: sha256:df4931fd6859fbf1a71e785f02a44b2f9a16f010ae852c442e9bb779cbefdc86
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 6bfeeefcb..bb210d43d 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -543,7 +543,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -565,7 +565,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -576,7 +576,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -592,7 +592,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -614,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -650,7 +650,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index a132f38e1..71d7fba18 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -431,7 +431,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
     spec:
       containers:
       - args:
@@ -455,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -555,7 +555,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -577,7 +577,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -588,7 +588,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -604,7 +604,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -639,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -662,7 +662,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index b35870f51..c801a86d4 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
     spec:
       containers:
       - args:
@@ -440,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -512,7 +512,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -523,7 +523,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -537,7 +537,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -559,7 +559,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -570,7 +570,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -586,7 +586,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -608,7 +608,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -621,7 +621,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -644,7 +644,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index f1a023d23..af94f2db1 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -514,7 +514,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -525,7 +525,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -539,7 +539,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -561,7 +561,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -572,7 +572,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -588,7 +588,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -623,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -646,7 +646,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 21d9e7d79..500d33c8d 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +542,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -564,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,7 +591,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -613,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -649,7 +649,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 720d6a855..27e1029a1 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -570,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -597,7 +597,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -619,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -632,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -655,7 +655,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index f162a4ce0..52c312d40 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -549,7 +549,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -571,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -598,7 +598,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -620,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -633,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -656,7 +656,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index 8aa6a4c55..fe31765bc 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -543,7 +543,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -565,7 +565,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -576,7 +576,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -592,7 +592,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -614,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -650,7 +650,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 2ffcd28f8..5f962a478 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +542,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -564,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.1
+        app.kubernetes.io/version: 1.9.3
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,7 +591,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20230407@sha256:543c40fd093964bc9ab509d3e791f9989963021f1e9e4c9c7b6700b02bfb227b
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -613,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -649,7 +649,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.1
+    app.kubernetes.io/version: 1.9.3
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 0a6ca0a7d..8418d7b31 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -555,4 +555,4 @@ Do not try to edit it manually.
 ### [[TCP] tcp-services](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/tcpudp/tcp.go#L38)
 - [should expose a TCP service](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/tcpudp/tcp.go#L46)
 - [should expose an ExternalName TCP service](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/tcpudp/tcp.go#L80)
-- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/tcpudp/tcp.go#L169)
+- [should reload after an update in the configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/tcpudp/tcp.go#L169)
\ No newline at end of file

From 2f7486b70931648dccd0e6a5cbd97ae12fe86726 Mon Sep 17 00:00:00 2001
From: Tyler Brewer <tyler@hadrian.co>
Date: Thu, 12 Oct 2023 12:02:46 -0400
Subject: [PATCH 0978/1641] explicitly state TLS termination location (#10516)

---
 docs/examples/grpc/README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/examples/grpc/README.md b/docs/examples/grpc/README.md
index 508b23fb8..f6bd96e20 100644
--- a/docs/examples/grpc/README.md
+++ b/docs/examples/grpc/README.md
@@ -9,6 +9,7 @@ This example demonstrates how to route traffic to a gRPC service through the Ing
 3. You have the ingress-nginx-controller installed as per docs.
 4. You have a backend application running a gRPC server listening for TCP traffic.  If you want, you can use <https://github.com/grpc/grpc-go/blob/91e0aeb192456225adf27966d04ada4cf8599915/examples/features/reflection/server/main.go> as an example.
 5. You're also responsible for provisioning an SSL certificate for the ingress. So you need to have a valid SSL certificate, deployed as a Kubernetes secret of type `tls`, in the same namespace as the gRPC application.
+   - Note: To use gRPC with ingress-nginx, TLS _must_ be terminated by the ingress or gRPC server (using the `backend-protocol: "GRPCS"` annotation described below). 
 
 ### Step 1: Create a Kubernetes `Deployment` for gRPC app
 

From b9d8bb406ceadcdbb240223842ec61ee42cb3360 Mon Sep 17 00:00:00 2001
From: Matt Clegg <m@cle.gg>
Date: Thu, 12 Oct 2023 18:51:40 +0100
Subject: [PATCH 0979/1641] DOCS Remove support for running Both (#10255)

---
 charts/ingress-nginx/templates/controller-daemonset.yaml  | 2 +-
 charts/ingress-nginx/templates/controller-deployment.yaml | 2 +-
 charts/ingress-nginx/templates/controller-hpa.yaml        | 2 +-
 charts/ingress-nginx/templates/controller-keda.yaml       | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index b55db1761..6a06c3215 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -1,4 +1,4 @@
-{{- if or (eq .Values.controller.kind "DaemonSet") (eq .Values.controller.kind "Both") -}}
+{{- if eq .Values.controller.kind "DaemonSet" -}}
 {{- include  "isControllerTagValid" . -}}
 apiVersion: apps/v1
 kind: DaemonSet
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index df597076a..7347ee8b8 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -1,4 +1,4 @@
-{{- if or (eq .Values.controller.kind "Deployment") (eq .Values.controller.kind "Both") -}}
+{{- if eq .Values.controller.kind "Deployment" -}}
 {{- include  "isControllerTagValid" . -}}
 apiVersion: apps/v1
 kind: Deployment
diff --git a/charts/ingress-nginx/templates/controller-hpa.yaml b/charts/ingress-nginx/templates/controller-hpa.yaml
index f212bc4f5..e531df2e6 100644
--- a/charts/ingress-nginx/templates/controller-hpa.yaml
+++ b/charts/ingress-nginx/templates/controller-hpa.yaml
@@ -1,4 +1,4 @@
-{{- if and (or (eq .Values.controller.kind "Deployment") (eq .Values.controller.kind "Both")) .Values.controller.autoscaling.enabled (not .Values.controller.keda.enabled) -}}
+{{- if and (eq .Values.controller.kind "Deployment") .Values.controller.autoscaling.enabled (not .Values.controller.keda.enabled) -}}
 apiVersion: {{ ternary "autoscaling/v2" "autoscaling/v2beta2" (.Capabilities.APIVersions.Has "autoscaling/v2") }}
 kind: HorizontalPodAutoscaler
 metadata:
diff --git a/charts/ingress-nginx/templates/controller-keda.yaml b/charts/ingress-nginx/templates/controller-keda.yaml
index c0d95a98e..bbd2237f0 100644
--- a/charts/ingress-nginx/templates/controller-keda.yaml
+++ b/charts/ingress-nginx/templates/controller-keda.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.keda.enabled (or (eq .Values.controller.kind "Deployment") (eq .Values.controller.kind "Both")) -}}
+{{- if and .Values.controller.keda.enabled (eq .Values.controller.kind "Deployment") -}}
 # https://keda.sh/docs/
 
 apiVersion: {{ .Values.controller.keda.apiVersion }}

From 9db8fe51c86631d2a21d9e6cd0c21f8e134741d0 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Thu, 12 Oct 2023 16:30:12 -0300
Subject: [PATCH 0980/1641] Update mkdocs version (#10522)

---
 .github/actions/mkdocs/Dockerfile | 4 +---
 .github/actions/mkdocs/action.sh  | 2 +-
 Makefile                          | 2 +-
 docs/requirements.txt             | 4 ++++
 mkdocs.yml                        | 1 -
 5 files changed, 7 insertions(+), 6 deletions(-)
 create mode 100644 docs/requirements.txt

diff --git a/.github/actions/mkdocs/Dockerfile b/.github/actions/mkdocs/Dockerfile
index b5b564d3e..378128978 100644
--- a/.github/actions/mkdocs/Dockerfile
+++ b/.github/actions/mkdocs/Dockerfile
@@ -1,6 +1,4 @@
-FROM squidfunk/mkdocs-material:6.2.4
-
-RUN pip install mkdocs-awesome-pages-plugin
+FROM squidfunk/mkdocs-material:9.4.5 
 
 COPY action.sh /action.sh
 
diff --git a/.github/actions/mkdocs/action.sh b/.github/actions/mkdocs/action.sh
index 07ddbddb9..d9f8ecbfc 100644
--- a/.github/actions/mkdocs/action.sh
+++ b/.github/actions/mkdocs/action.sh
@@ -16,7 +16,7 @@
 
 set -e
 
-REQUIREMENTS="${GITHUB_WORKSPACE}/requirements.txt"
+REQUIREMENTS="${GITHUB_WORKSPACE}/docs/requirements.txt"
 
 if [ -f "${REQUIREMENTS}" ]; then
     pip install -r "${REQUIREMENTS}"
diff --git a/Makefile b/Makefile
index 792cd56a7..cbda4dafb 100644
--- a/Makefile
+++ b/Makefile
@@ -271,5 +271,5 @@ release: ensure-buildx clean
 
 .PHONY: build-docs
 build-docs:
-	pip install -U mkdocs-material==6.2.4 mkdocs-awesome-pages-plugin mkdocs-minify-plugin mkdocs-redirects
+	pip install -r docs/requirements.txt
 	mkdocs build --config-file mkdocs.yml
diff --git a/docs/requirements.txt b/docs/requirements.txt
new file mode 100644
index 000000000..5d5943b84
--- /dev/null
+++ b/docs/requirements.txt
@@ -0,0 +1,4 @@
+mkdocs-material==9.4.5
+mkdocs-awesome-pages-plugin==2.9.2
+mkdocs-minify-plugin==0.7.1
+mkdocs-redirects==1.2.1
\ No newline at end of file
diff --git a/mkdocs.yml b/mkdocs.yml
index 3243f8247..80f4acdf3 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -65,7 +65,6 @@ plugins:
 
 extra_css: [extra.css]
 
-google_analytics: ["UA-118407822-1", "kubernetes.github.io"]
 
 nav:
   - Welcome:

From 0055ba3ea6565340d31ba3d5c761db926da3dddb Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Mon, 16 Oct 2023 06:41:51 +0800
Subject: [PATCH 0981/1641] Remove legacy GeoIP from image (#10500)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>
---
 images/nginx/rootfs/Dockerfile                |   1 -
 images/nginx/rootfs/build.sh                  |   8 +++-----
 images/nginx/rootfs/etc/nginx/geoip/GeoIP.dat | Bin 1242574 -> 0 bytes
 .../rootfs/etc/nginx/geoip/GeoIPASNum.dat     | Bin 4638365 -> 0 bytes
 .../rootfs/etc/nginx/geoip/GeoLiteCity.dat    | Bin 20539238 -> 0 bytes
 5 files changed, 3 insertions(+), 6 deletions(-)
 delete mode 100644 images/nginx/rootfs/etc/nginx/geoip/GeoIP.dat
 delete mode 100644 images/nginx/rootfs/etc/nginx/geoip/GeoIPASNum.dat
 delete mode 100644 images/nginx/rootfs/etc/nginx/geoip/GeoLiteCity.dat

diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index aba0ab70b..95f7a0288 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -39,7 +39,6 @@ RUN apk update \
   openssl \
   pcre \
   zlib \
-  geoip \
   ca-certificates \
   patch \
   yajl \
diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index dc1d12547..06d60ae54 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -77,8 +77,8 @@ export LUA_UPSTREAM_VERSION=8aa93ead98ba2060d4efd594ae33a35d153589bf
 # Check for recent changes: https://github.com/openresty/lua-cjson/compare/2.1.0.11...openresty:master
 export LUA_CJSON_VERSION=2.1.0.11
 
-# Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/3.3...master
-export GEOIP2_VERSION=a26c6beed77e81553686852dceb6c7fdacc5970d
+# Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/3.4...master
+export GEOIP2_VERSION=a607a41a8115fecfc05b5c283c81532a3d605425
 
 # Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20230410...v2.1-agentzh
 export LUAJIT_VERSION=2.1-20230410
@@ -164,7 +164,6 @@ apk add \
   linux-headers \
   libxslt-dev \
   gd-dev \
-  geoip-dev \
   perl-dev \
   libedit-dev \
   mercurial \
@@ -263,7 +262,7 @@ fi
 get_src 8d39c6b23f941a2d11571daaccc04e69539a3fcbcc50a631837560d5861a7b96 \
         "https://github.com/DataDog/dd-opentracing-cpp/archive/v$DATADOG_CPP_VERSION.tar.gz"
 
-get_src 4c1933434572226942c65b2f2b26c8a536ab76aa771a3c7f6c2629faa764976b \
+get_src b6c9c09fd43eb34a71e706ad780b2ead26549a9a9f59280fe558f5b7b980b7c6 \
         "https://github.com/leev/ngx_http_geoip2_module/archive/$GEOIP2_VERSION.tar.gz"
 
 get_src deb4ab1ffb9f3d962c4b4a2c4bdff692b86a209e3835ae71ebdf3b97189e40a9 \
@@ -583,7 +582,6 @@ WITH_FLAGS="--with-debug \
   --with-http_realip_module \
   --with-http_auth_request_module \
   --with-http_addition_module \
-  --with-http_geoip_module \
   --with-http_gzip_static_module \
   --with-http_sub_module \
   --with-http_v2_module \
diff --git a/images/nginx/rootfs/etc/nginx/geoip/GeoIP.dat b/images/nginx/rootfs/etc/nginx/geoip/GeoIP.dat
deleted file mode 100644
index be8b031f7d11a1ff394a9840d114f12d5cae2e29..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 1242574
zcmZUc1+*Qt_x(TD#;(gN6n87`6f5p-g#rbNyBD|O?(XjH?(XjH?hg0AXHSRU`>y|5
zckQ)va&nTKBxh!lnfD4%gc6kDnk5U@E?KBR06UIjr*VW3!O636%521tz<LufY67ZI
zgU`Es(WMRz*rvd?1?cyia2|Zn@3){09q7Uda3b_z0FH#CU<gbAE5M2{Aq<6OVfKE1
zBA6H!F`on`g?V9%et$BU9A>qA3V5;KpWZkn?9lH|W%<<R)0j^St$u$xa}imd!MQV9
zGLvzbac1KzMyW}8Hd~(Ek~xfX8s{?3ZItFbChF;YwmiQ}Enwkr<ATP8j0+pH_ACk`
zoIIo7Ukt|f`-{8m5*99LT*|0gmWE|=uHsT&4wko1<OKD7C0H4bu+A#5syjXwR)f`H
zcWbWU7H$r2_xq}JO}M|`UklcTbzmf{3!A}){r-9|%4(`;eb@jtf{mTEA&fSW5ozit
zB0HPFrZzYR^vi@I%2M-$TUfZIaVz82#%+w-8n-iUZ`{GSqj4wW&c<DgyBc>h%0F3S
zuJ%~(0ejk$dl~mO%1is0>}%Z5xIY|Va-i`b<2d8N#zTyU8V@rbZj?1us^1s={?Yci
z9CaKVV-Fu|i9Dl@AMb$>k#eiwKMBtA@TtKk!zpkooM!zqb33QI$Qj10BF+4>T}npI
zfpe{?!BX;kxBxDMi!_b})+ul?Tmo|zn5)3@{r;t}ttNAU%V4E`|8lqju7s=L6ZjOa
z){=+U;B~kbu7l^`dAJ^KfCu0~xDjrGyA&n*{hN)q8E-L4c&o|${r>H_<PNygT)kGk
zcbne>_nO?NiII_hU(J(+3;O+s;9+>i@<)u1!xQkRxpW=_RUx9^lkk+~s#@}=bDfdS
zebz|{U&!SzYv6MJ5@ZdQomVV;)hOW`@Fu*k*k#FE#<vIAf5(z{;XRYA7ay9-+Q;xw
z&a-~W=4T3$3Y7)w1-^hU;V<|bzOv@`#;@TU_%<*5-5@(zQ-5&QkMI-x48Opy@JFuy
zn?3WplS?T4+UI{-D33|<5B%%gQX%!BCPp79qyt(gAbt5?yl9@u%g(J72nvJ+q5`pJ
zRJAaE>|`Xder8avXee1=78h(4Xcw5gz!U{K1-ce$CiDsnm``Ao&X7Dy4VbXN&;k<`
znAmkqYD^o}?@wa2A-W2f+-IQ-su}uCSzxLHQx}+~z_bO16_~lebOoj_Fq8GAGlR*D
zwyA=0i_B&tD591K)nMVQM$Mnu3(QfV-0yELhxPk+^!sxcn5V#E1r{$bZ-Kq~{Y49m
zD4_PtXPn=-fN^+%1x=K@kjcUY7Rj>ueF<;s_cdehvgIWT4EJ(S+w@zqz*2>D%`R;e
zS;l190?U~!pUYP$uwurID;rlau4-J(xVmu-<C?~`j0!I@KC-~N1x6RxsK9y!MtPoW
zt@vL+j@qEWhHjqvE8&Iqo@V&Q1vb$|zuzBY)J)J%)`Xk7o0}OoH*R6v(zumzYoi8q
zy8_!6(i?_Xy6j+bdx1L&>{wu@0y|rBkx@Fk6xg-EZUuJFB_|XZTVRg@ds=d&ajyb<
z7ud&q|6Frlll?R|`hA%?pumBa98};ilX1p_jZ!$Iz@g?UqNIL@7dT>&<fvSJbb({c
zk2M}=JU-7oz285vz)1y8w&aXleoBE;%}+C)p3Af5omt>4OU^c)ljojW;JlolU*H1s
z3yoPjFE+m<*SS>jKj)X5Tv6akldE$1)h5>zxYp#lTz<XD4aOS_++=dI@fPE)#@meY
z&jtPdodxbHaC*WS33nH`N6SB<mvFC!yTI8+&M9(#fd@2ii>y@SK~J{N3f!)%K!Jw~
zJl*d<Qs6z!fqwr{=RQ{8@dEGm`%e^jsldwxo-FW`C+E{vo3G!0rogiWo-6QtffowA
zs43yaHB?vseqXEj)_(u8et&ySvjVRcct-{cyk`4v6nN9*buS7{;J2K7+o+`Gxw1rt
z_4`{H#ou?EKPd2FfsfpbPh4Cp;$su79XaIF0&jT9e6CACfiDYur3-YCxr=;V;F|(T
zk!q1|3w)<&Q>0Q%JN|uvLNQ%jKNR?}z)uB!b`}2?_{BszzZLk^KY2zK{a)aY0)H0x
ztH9p{{?RDtqOY)~nAY#t`~5lk{c9a$RJLy;y7d>=zzK`yr6Mw=q?{I55*b6IdZetl
zh@7C1C@0j4Ojk@jQ#Uq>G)-E@iH&Vzr%2aC%Do~3IUiy&L6He_$xxGtj7ur_n@nn)
z%qR<!n@nMx(m0iI>LSyaNM~C2MMS^pi_Bp8jCt-%MTVKrY@8*R&uTJTk=b*}942!b
zWpkb)^A=gMm=5cF5*Aso$U?<57%t!%6$6J`c@<Z^u=yfI7F8QOF-BOjM3Ii}|BGpi
zU0l_95QXxsEG$)I=_1P%S+>Xuo(a0dOTJu@<(<6I#z%TY)CP^q%5Kt$MOG=YYLSCH
z;a4lNdJ)C#HHvIpMAy(Yi>y^-?IPbfo^McOogyQP=rSk!^3}RU)+?sVZB&u<i)eAl
z_`}8xi;UK??e{lw7c^CLA=4FMlOkh^Y+7WqBHQTJSJsMbQRL_%#}wI86Q;;+MRqTy
zSJ<tK?Cf4|qmC5W&cZRiB5!ZLgK<aWPDU*R72KuBuI{7wI7`MB*`t`=GaPEQJ&Wji
zdO(rAoZQ>Ek5P@>x5$3xy43DpL|u@b1C0k6#~BYc9%9sbm(F44hZ~PD9%($vIHPYE
z)I!~699u*)_BaoRoF-=qPq6>r&?7)Gy`4DOu0Ey6sYOn+8|8To(CJ0aC~~IDo@FP?
zCo-!n**Uk!c|~rhaASq@HO*wR!ZsByEOJp1MYd;(TwF}=BCaWNtt+~u$feG@tjOg>
zt|)S4k*kVat+m$gKj^k)BYt?lf0S#{CH^`$;O-*Vt2z(Ujc)&KMQ$o`a}iBEHTV`!
zLQRreJ?BL<F>Y5`IoY$~&LWx{cNsV9_wOlkuPxtK<VpAX{vr=3{=0ZKk^a;rpos8c
z<0C~LHF?bVxKX)J*f}Ck6?wXtUYfOnZZ|$#<T>|Uu6w@73q@Wm@=}pe71pota*<cG
zd^BUryjtWn*)Q=}iPtr$v}#JMTH?(jZz(#J7*gWxBJZfuB7eEmyG1^6)$cj^zVU-1
z9~Sw@T$VpBruV%fTIs@1i+on(^E~&PB43z)Y5Yo;0DD-P`l%P+YE>5b-nl;)`K5?-
zez4AuMSe1onx^Hi)=}|4G%mUp6#3l}MR=K#!!@#h7x|}1Tp}s)uXBqfN+tT{Qq#Uq
zp_H~$KUGvV4{}MxL~`YZ=8;jAR&$+ZiCQTQ2z5(Td!v-LIkVX+(Js+(R@c}wW(ry<
z6O@>+#E24$l^9xLq7pNe7*=9pt4&^F3X@4nOll&tljRns%q7#8n5x9oPEJ!|x?DbO
z3AIP=Qgv#x%Fa+?#ynTTnM=%4Vu2FFOUzngwi0udnA-}o8|N%Bhsl3E5}C)6`AW=h
zGH>4BY{XTICcuKuTEr;HLM0Z?d1h)+C$m;9ZoWc^B}yz=VyWEVvL%*w)-pz|5t-6&
zIVYF5nk=m7<VwbsjhWfiN~~Vu&=QB0Sfj+6CHBe+YUiiK=n@;1SUZ=jQ(~m~x+T^#
z8D-qC#QG&RD50lFRh^-TBGSesHYu@liCs#JDY0pZ?ObFt<5nfMb_+Lmatq^@xg9xS
z8%wq|W<F6}+n3m(#EurKmYqygX||>$+0~LgO6->F>|SDQ&ULAh&Yn)n347=AeM;<G
zVm~MMH;ywNP~t#0=^!Vw-W^=x5GS)%sp`W^98u!J5*Jy1WQk)+9BY15iK9(aZ#Dsr
zD{)4NGfNy_;sj@%SmI=plZ-v%DJ4!VrS}6Wcv^|mEmXAET9)K2C(kW$p2^w9bBt=F
zx^}*KrhI|9mjA^iE-7(+i5o1rw8YgW(!Z?4<t46g^2!odnaJU)OYO;;bdA=FB@$j|
zqJlS;xT(ZFCGIV8bBS9lzrDn*xu!zRZ8=wK@5uR`CU+U{&c|Jr?<;YCi3dvQ{fUzL
zJ!qYWOFWd9%|h8Dxqlun@kEKq%S=(`$r4YM__oA%C7v$vOo{hPd{E-q63>-*Ew}J|
ziI>e^$R#h9c*#7QORwbeS4-oA!|Ns9u<*?i@0h%m>%47}wd!51(|-Rw4_P*RA3FE5
z5+CLIAD8&V{L@?_4}YHXFG_r=rQzh)CBDh!^0t0*$oD0FC=rwi%lug4Cq-`s?Giti
z_@%_3CH``eUrYRvm;KG;ccYA`VgJqEza5|d$+I$_Yr9{hXe^Y+&qGN{Wy<C8&8U>e
z8;PveDbp<zmr0zgmT8*QjH<3)PCe5wW;3(pthQ0D>XjMDx#}8HW)deSFiu!zsL4cw
z+B0!ET>{zanAEwG88r{5EHhP^^~#JYGj*A1$}Cc5(K6GPnXb&7R-3+zCiyI7W|hq{
zGnSdj@|lfl(l8V0WNUw{t^$^b%x<D~&QVTt)xo*S%w1-lGV?lXLF0U7<}b5=ohG+u
zc2sJ3-iw8DI}4j+Lp-9)%4Jq5vsjtM<*_nLI(G%*Qe~DgS=uOT%amBQoZgCyFDIep
zSzRmUIxCrE(|c9(wT!D7S1+@Mi7c#HPH$61*0y9F<H$1W+Fgq6ndSA%Y*6OFG6zXs
zW^|d&%WP3*BkON!+}J2no0QRQ$(VfdNU~XZe7M-M%vNP~E3><mw=T1NnH|ixF>YIC
zJCl)lOxV%MopNhCJGqNdmUs1th>R_>N0|dG-!sqMugqR$_Re*rwojRTotyP*e{&6l
zrmJ#A#+5nP!qdwfQs&Sy$CWw0%wc5?FLP{e`3RFE^WrLdRGFilJjR&W&u%%CdqSC$
z%ben@6U&@rB6+qpb#rp6C8rINpHb#aC(kN#uF2WPb8?-miu0U2-*`bjF)k`|ahXfX
zTw11Bp;Y0rGMATmyUaUft|)V5nY+u}Q|2lcyv}&FQLVbB%(XesT6le#8_L{R<|fN;
zEpuC$n{%C8$|(4&pnkVoc*h{0-&y7^3l;h@oqH9%%RE))zB2chdBC|3mU+lTPo`3P
zxXhzYK4Q#5uH=t7`FNQpOfn}tZT@nZSIRt7=GijOSt9-C%bezVU&tjdmU+oM>)Na3
z@wW|cSooUpb)%-SEWBCfEhoh_L*6a(o@Qg2Z_2!1<^#n>=YCk`qcWf6njf2}*`Jtv
zYRqc<-24lpY<}svA(CB0zAf{eyyx8S%luI0_cDJd{#)`(Ug{^4pN)!ID*kJk-<-@A
z{+|xNS&e_?rT#X_BG13({W4U>kBd%xWk)f#T%l57#tJi42r7gXrf^nNA+9i?d19<p
zsGC$P>9s>;8x@)r+7&vMw~R;oN+jdm3cU(LD&xbB7R7)Sl$G^j0^3n?XoZO?Ok82j
z^7y;HNvt_(u0NT{<dyM}cFGD<Su%BnX(~)x8Gp+(orP+EY))@JgHcI2XIO=qD=buD
z;R>@<n6<)u&Yi8o>?YY2XAbkZE6iy!mr)inSI^_*yvA&z&R<~xCx;ssG|KG?2#Zu$
zw8GLAmZ>npa@kqjWHI+$m$@Z!`I06}<vv-q!g3YXkWVs&3M*Auxxxxgu4v5MxJstb
z@2_UEs!{!2-9#g$ZOpZDoslMMS6Ig+TT^P)x=yZVysyN@Is&M$QH6~wY*=A*CEaV%
z!-yXGgqu_tW6ez~>C=|7)LF@O5!tN5<`uT6u%#Mo{jE$sFuz8d8x^*zuuo<D2C24g
zwy&^*?eAD&w+g#g*r~$K6?SnI+8LA1u9b9KNss@kLbn-RT?H!a;Zhs-``Vq@v%+2#
z_STr@yPdkP-nYVj751-iK!tNPNh%yz;h+j9RXDklZj6kpaCn6yDjaN6+L}A0!l4xo
zb5aWGyLxw|TYFR`z1Usoo*rG{m`b_@stpiz?br&(IeEPC1mlUuTioVTDx6y3%nD~!
zIL+2huW&{M?G_Gq<WVi!Ia$<rwmo)^7FWN2uyzIQy7MbsP~mE~=fVmXRk%W3sGw87
zi!13n7?*gMGzxP2rS`*RDx%$Bque5Xm7Anm)UQ&JYczZnw%471C7rI<+m1S@erYRM
zv*M--4^?=$!p#*%dROX}3b!gO=>EUL?P^RV-DXsc_gA>nZM(}=%i7%)?y=c>jrSQf
zZItyug$FC?wwU~>O(gaGkqVDim^@&LfX6C4UP-qi%K=YRcv9}F@MeXlG*}Aq?!wa*
zp3%(I{(pt%DroOrZB~&nZuScmUaas^CEXc&-TE)PZEET(6<)3ITHb86TtYQT<gE&C
zdp`eD;T<)g!q*kPsqkKf_cd_ZmeIV`^Qkt^-3$5i!wMhSy&oH8<dX`Yntx{e-1vp@
zOXK|B`%=TC{H+K2y9(dCzuKGqp~8<9{_xEIslv|{el`Eas1eD?ZQA^?MCA7hLS_9~
z;japr!ryr*W&K;BuaONX1QY{G!T3WB`Cp#bh-7n5-Khiw0bxKCq(?3DY1=;_3DO~(
zFrXSx3upzjgS1H9a*>9UQf>x3Z2xoux&cFEO85T(13`LhDoy=HIXGv7K7k8rCJYVI
zx+V&kIA9VBC$nTy^Ov;c?!gr*+DsWRPr$qZQw2;NFipU;?$PW4)0xZ~Fk8U%0W$>Y
zVM<o-i~%zR3=7ifI&;7*CgLA>U5Ko!V`%S@YHw|hfH{M7QfY$C6)?97X1=oWe5yq*
zN{AB{2pAsFk5jV?1}qftQ_RnC8u}IvST11sfJK7wk#Ny~5$3w>SxlbPwLm^JS<<+a
zQSzk&mN8$}C~Fd~5U^s9Mw{JbBw*#hN3j8`1gvUzZR`=z@$PB?s|TzRq;KP_XI#^`
zR>0Z;>jaDpSl1FMNPkoNLAB^4VwC0U2W$|qVZi8sjdD%ps&=W3^&38#Fq;Hvgc)Pp
zG+?uU&CRz6*h(G_*izHLP7~^<;=*lmp_1FVN81~BFz#sF$+&aCE+)GM>=tmkk8v{`
z8?Z;fo|;+#4~9GxvUk8f0gHz$5wdT<ej4R4b=Up@2L!wk@Mge)0S5(K6>xRHxPXHL
zPLtVyLjn#BI40m&S9e&z5dlXA93IecvxP@#KI{D-tr1JaWnBEYfa3#B3OG67gn+tE
zeziuND=r=JQxw^B=O56sL|k(5GXl;GxG3P_fU^S54mdC1{D5;btF`~H<zP*5>5E?w
zFqy7F0iRhSF1h$60hhYvR|H%pw<zof%<5cm>4;w$pwmEc;WYu*20Ww%8*p8~^;&2F
zcLv-LaAUwN0k;O+BnRsKAFTzK5?5LA+XCj&&40jxmWWF(epkTV0rzRP1l*&w(C^=?
z$?sfo>4-m|z@p6`O>axYB^Q4r;L(8R0-jg=4|rT^0Z%Lb2Q00Ze>B^zDK35SXEc-h
z{bvJ4St2gE_zM9q2D}pRYQReY>-GCDYbHBaTsq>fY2oO)powjXxa8t*1-u;)ha@5I
z1iY)Y9Po3%djanUd=c=aJRI<0z$XEp27DB-oi_h9MQuS`cEmr^Wa#%l*O*!&F1h$u
z0bd7v7w~<+HyUfje~q<s#ib+uL%=2d{*M9YS|TpF_%8v!D$WGx?abc-eh>I7;O~Gx
z0(MvA54hQy;?fuYCqSpb|7xmRA}+ajA*2{m2?;_<A-Xv!hg{)Yap{PMAy@bNQONa{
zh)XVB4XK4p88TH!J){vbLCAz5&5%||H>4NR4!NP<?}Y5;QsOErKA<J3wIA|{CE}8c
z4-J_pWYUnyLM9IRT9Z8FZs&?iM||>-C;I&<LY}ciT=I-h9WsO0_%tEYhD;aortbVh
zp0$p+G{t8OnJHvg$Xg2jAs<>Uu3Yh1LuLz^J!B4>S}<fz6XnipGFQmlCi8^prBia@
zeBu@^5Hj2(i%X*&;TN)GVdEkpi-wE{`BGs&<WpM^mmTpXLzW7;-I_~>EE6&=<lvBH
zLzWBKEM)VL<wI5oStn#<$ciB=g{&5`x{ItFvP#IR;rK{3I7Y1zvS!FyA!~>K6PE_Z
zqIE;o3mF}<QOKx}^+PrY*)aT{_%k@>Y#g#l$e55#!~cmhS!~H7#ug!4Y667p9<o))
z)*(BD>=?35$hINdg=`;^MU}ykB#Rh3h3p)%OUSMvS@akjF|uedHe?S?r;z<Z_6*re
zkw0XgkSt1Mkzw%K-#_GlkOM;w3K_ii2e02lLJkeNIOLL$!{p46Q$kJ+IU?l9kmEv*
z4>>C2=#XPVjtv>S#s{zE6GBc5IVt4ikily?TaVd_J1yjNc{t?UkTXKg3^^<0?2xio
zV&rw#9<+|m3pqdJ!jOwX2E2|g2)WMlM>xc5YGSXQOEoAVH-_94a=EO9ToZC_$dw^i
zX;FK^Oyc!5`Twq|>r|;~{NEKc%<JW5m%7z>i*e?B1>F`hk5|MUA$L0KE{&SW-Nt*2
z)A^p^zL5K!91-$>NwyFk4tXTx;fO~f9u0X+gB5XL#N%qALQTZf5l@CZ74oY>U&zyn
z10nCrf|hy6b0M#4SZ(n6kQYN<3VA`n&HfR-98%S7e@JYJxYnKc>mhH1ysc2Lpb@5T
zWxN$K)Vbo)5r0<>*S3GiG?s`<F8*Q2M{;<`Hz6O({~@1;e4(YSAg1`QAZbl;>5G4<
z@TmA7GPNb*l8b*E@?FS}AwPwDuP~_iuZZegap{QvtT3ziuQ+Lmxa8u$hy0;{98r(>
zGvqJLpNLAt-y#2m=^Oloh<~-3`U>dG=2GG+D_)G4TigB-Gg=}pxp)wz_e)Vk91%u5
zXSpzmm`CwHVtPx&r6%5pXhuvJF*KqT(T?av3`BGycGW|A#0=IHm%jLrh?#Z%8!@jX
z;*yI`6ftqcWD%1`OcF7o-=8#M9p{QmM|_Hi#pTQhJ-tdIE)<_8V%mt+B36%>PA!aB
zC}Lq%t=>h<88KJHOcBE(W{sFl4TxB>-=8I7Ia?5y9r4*CR@ALg#G00fOD;aQ`W`WV
z!~$w|ls>S}r|O(5E*<gVs$I80QTmK5iMUXF5w$jAnTTc8sffiQmQd~LNW>b0?q0-~
zidbK_{Sj-qthg+QFBh?V#7Yq>N30N~PZ=vl>5Ev(6&H%HqE<z$8l?~Nl5A!aUqgLS
zk%(<%He&6FjUqOdW7W=xQK~Uw-6(xDTQ6cqmlBr+@eLw2j2IoUlO=of`}!$MKS?%;
z7!$F1#1;{oM(nLhBMx@1xOBv~jM9hYt+bXc5tm$i+lcKVc8?gV21o1=v2(;OYCyyR
zG9Gb=HN~YbzH5}eTe4e}9vw;|E)?G*Voy~Ov9G!iaa_N@cf?W76_<|qei29L{y*Y0
zOT;A?KPX~c#KjSpsM)G9;^c@^A`Xo>EaF&Mi#S|mBaV(ZCgN1x_G=d?;zXI1vNnA5
zN{{a9^>(P<6ms(Th!dm`aZ<#O{r;i-{+a#$F*?=l_b<|G{QdrUy8l;8BF>FCFXHrw
zGa}B8I49!FD1Djd8sE8{CFl5oS9qiE*{=3`jORyO5OHC|MVgBJ{!D)R<xbsE>xD_(
zA$ynXQrU^PIpUUx%OkFcxHjUth$|zminu!Bnuy2x{qJ<Y?U%bA?Drp+e{`d+8@z}c
zB5sVhDdM4i|LK1JrGEdNe*Z<?RQLO@Duk*T5w}I$9dS>@?GblG+!=9K#Cv``FZcT&
z>3-N>NqnPFCbJRuMLZ~j5kKkW0X;S<Mybu3Ja(Ee(vz}wGn{->&C>#jSt{o7h$o~R
z6U00j@l?cT5uZmq9q~-W8xe0tJgXQL@lwRg4qVSiyb$rC(D8q8<bNgN)ri+3URS|E
z(SC4*e=Fi`*@^ft;+=?h)vt*6qyLHOgCqGz5g$i<B8BLGqW9p4{YAu=5x+(J9`RMg
z*AYKxdPIB^@omI+D)_%qx;Q8@{}l0a#4i!Q=FvDA6o)&Gv41G|NAx4~rPf~x{t^Gk
zU_{rkcgUc4JBj0JA*L8piYdoT>KHr4ptw4-V`CT-#Y`JBT}&L4#7qz~VN5lq7SoRD
z#MEONG0m7(%q)(jvk!`&^Eys;V|p<IF+*bJbIcq*C{8Z!7&tU$qL|5Jriht1W)ih3
zW-?8HLGf^fL2+-&n5kl>j+rJ-gWhKS{;H09>kf)z)5pvZGk459F*C-@6f<kgY%#-P
zW>#xsHjCIGN?#Qo?f8~Ou-Rkgh?z5Hu9z(c#jYI(#ie=Gk(h;I7LJ)eW`UUDF$>1*
zIw(f%H7FJ>60>N`h?vD<_8Sz77LU`AvP6uciXxJ@P<-i_WnwOfxiDtgnB`)2j~N@Y
ze9Q_l8^vrKv!XVaV%CmXCuU_iA!hZMHDXqc)3~%+oW>|w6BmlF8KW?@R-EpgN+K>4
z9~rZ5%=$4K#H<&iAT}ySVNJQ>Lh%jbG?a~wQ8bf8TqwRt%$S&MW44RgRQ{C5Vz!Fe
zJVrrpix|Z{X^IQQw~kR5+$KhmP!e&W`1Ub7#OxfiOU#Zj3X(g;C{8L@TqwS4oW{o8
zViX=F5f_T@5woW%Qk!G;irG8n;Fv>V_KDdy=75+3<?}dwadH2cTU|<AWyKHD*y(Lj
z%?(S$B^N(beuz0T<|w%<PTx*HB1SP*x#B|cqhlV>K1_ZGE`D6h@iC{xoF4P2&VOT0
z(pYF96u4YUcuJhUq<U(chF{qc7mA-DkE!D^=gLKK`gZQwF$&Jg6&H%17pL2*=f@~q
zOCl~5zbNM7nCD`ikGUk~QdJRix7-zTdCU#!d(0IvSITuU*T!6>pxW<W9ixCR3*tiY
z>tfRQAE#ko5^<sUO))pe+$KN7+!Cj+=-(Qni-K~+h2nR_=o)cnoPL`riMUYw9@$i9
zRb$M3G55>3dLh@v=xXv{%&XQEm%jKTF}l7y8uOkd;*yI$5vO;gPpNh}GfrQ6R8sg%
zoE{K}KWhc?vXd{UB{3hze4?htysYL)Q^r+e%o{Op#=I8uk?#Mc<|5*<BmP#*7y7g?
z<{L}IB^Q4$=6w}$MIXfIy7pn5Ue1&&E)>t&_G!##G2dGAbK{pWU&*Xit~G^U$LSUD
z8^u^l#AQMJyO{4~T(Lz9Ek+ka$;E}@zr_5in4{M_joV5X^Lxx6{r(?Xfc^eoF@HMw
zyCl8^6-xgf>;G$fLoa_O={@9D+6YS0+sI-<DWRO`Q!y$DVUj-31xdQSf3SDFRr~U~
z|4-7p#CpOQJq09bGiphCP<x2)LK_LqBt3d-CA1SdNxI!F3$ah)q<pRRe-efy%<kHi
zJ3+!^NxC_&#!Q$nG+`oFF|idUO_)Tx>)NsO`^KYvLNU4ZRd$LbT}o3XOqDQo!ZZof
zx=FJnOqVcylAcz~B#DlplXMBsn50u>xKDYO(vefb%x<A-*PIc`=Bx>`C8--Pbbsea
znA6qGm9U4an_Heqm^Wd*giVw5Txou7{;RHpC0)DvJ3L{*goP3oR;&8`5tc8KuxLVN
z_A^f>Rkv8e;z_!5uG;aN)k`HTov>QM>URDz2`eY8lCW&Ta+WNwHYe$+iYi(mVZ|gp
z<CbsLK}j?^!c}c^QF9&et&y;1!dfmaPil1ZwL+G=wtccr!pMYm6V^)@l`uMCBP*|;
zutCCxNxDoXw6*iSs7LA+PDV5hthS0L$-MpkTpnx1)y)z%PuL=1%Y<FU-NCIirb!xy
z)zkTO6|nO)CAM`JwoBMPVTXhrojk$*-^pAZ+&N(v^R+GCEn#=nUP%vS)R(bxh=*@a
zO&-lacS<u#!@5txz6tv!?4NK%!jTCFIQPJWgOc><d9MoN5)M{3OX)xyq9x#y)?t1R
z>d=J45)RkI_JQnuuH~pCeKtQX;rN836OKvJkf^fr>sslt)}ZKA_k@HK6Hf9>R&gn4
zbWTpvgYr`nPE9z?p83GzE*FWMnQ&IZlr5%eadyHv2|<&v$+`CP)D5O-q~m^G!uc9v
zO{av55@xJ2Q#Eb;#R>N%+@ElX=jx?y_GJl|CtQ(mWx`DfHz!<`aCO3U3D+lF<H?|-
zu4|L@vLaVM?6JN<D@aEG@~4kY)qd40pWKpgtBmXOu7umPtkkfCJ6(~Mo4R(B9|6Ys
z1Xk|7M<0L5;RR$+$?rTUa?}I%^J58*tKNi%5*|)?B;ipnH;txDX@O|As8SJ0o=A8~
zu1<K;GiMdcpGkODp+>t3RWv%!sjh_g<OdxPC%lmGV!}%aFRS*1HxpiQ)@uo`C%kGd
zw@W$WBKj)ft%SD|-f`|=dB)#Q_(0LJO1a91S{eyICj6A}al$7FUnP8<@Ttpwp74ch
z`OL|Z4kJvyG^!$1_l@~?3Ex}u+dS*PdVf$|I!w|2Pr@$=e<%Et@N2?v34bK~nfKy%
z7tA#OEBjYo_TPklLZM2rI=&71BMw<-h5zZRc%@2EWr8XbRtc*_Rhm^=RpKg1m0Fd$
zEmW)N=Nl@k-+%oQZ{+fJl}?pjm4Up*?*CWg5KFQ)53Mp$l_{!BS!LoXlT?|s%4B)j
z|N1p~Za=GcDqEPQ%Cy#;I<I0nlj)6vd#8z{c{Qxc%vBbsGQ7$xRc5WGm%@3g%vNRg
zDsxtutI8bJ^q^c*T2pI?XPOGmU1gqXdKRoplCBY2ESk^rRnz4^f0a%AE`j)hRTir9
zYmMJ(EL>%gDofW`rpBUGMpSvE%A-{ltFm~NgQ|?HvP6|7Wwy%bDoa(<c)miF6-|~l
zE@NEQxSY^LYI?b7r79~|S-Z+Q7OqldHIr2b>8xI5jVfynlBn!j)&F~2b!3(GoV%_u
zd%;OMqnupdxIuONd%_!4*|^HyRrXPrtBk3pSNUD7v#C5;Wt%FSIk~xU3*(l?t<>54
z{ZiTAw#p8cZ)cQb`|9|&j(4<VC*#g}?k<Dcyqkr)8^>1J!(>n6UdHT=rhU!#H|}Rt
zEqdEZctDi{Em7puJ81`3Ii$+9Rj#XYXqCgNoLc3yDu-7&qRR2sJkoe<Zs({fN1Gp$
zOS0Gbj&oA)DV<Q|#40D{xpM5uIX}fjjXb@|8C5Q-a&eV2tDI%|dB(Ginay*moNMP~
zZ<MM1=R5a;Di@k$FQG|(NtMeixzw2X;qoe1RJqcUtBumU%0vaP$tBqv{?}KzxymgT
z-caSnJolz5dKFm(Z>@4$mHREf-FUb04&$93<-5%FDz)_QF&DYl<UY;z{H5y$EP1fX
zL%Ghw)$y;OKUU>&g`*l_jVG!+sd!uEBda}C<)tbwn?GIUnJUj#c`mo`VwLA}{z7go
zd*k#K%ilG=TIDs9*Q>mh>%U?0W?o8de!I#$7H02NO7dQn_jCOZOf<3|SNWvMFIxES
z{-+u&8FB7sRX)%4zp&*moy<n|n<_sz`K|Fg<M+n@R^pFN{#4~>6SYB&`K`+DRr-ol
zwbaRfIO}iYpT@t8nlQ@!$Nb+xl7dTBY7|YRQ!**n{_l$b&5fu=Tx0SYQ#d!N(X7#`
zQLRz4q+T2UwrwM~lhxREa-tfY8r>SbJa+<<ff_?hve#}^`-HXh)@Z1O2le|CyBU)>
zIcaTtSeVSo%>I-$W~?z&jj3ws^PntD?c8aM)7F^IWO}1=XQ+*T>v&j=nQJVffLvpi
z8nf0|z&f+ln7zhaHRg75j=a)2|Fhr^cIK%uZ;kmZ)Ce~82|z7<wN+PytYO1zELdY9
zD`f9KFZ{n2MmV{6jm2`g{JccYmo!<bHhvW>TVpwSxW?&{*I1#(9yRu?v0{ytYHU?w
zYwNFEW6c_CnXgh~Rg=|>>ig;@YveszyT&>-HmI>-jgh&|x+Z$}bv=_&#`W`Db!~Jl
zeKOjl#+Vu#S-$b0T-CCvlM1Keo7LFd$t{dq8nalmjrsO9cBrwfx%9Ww3~{X3vBpj{
zcFW~E*T%ooyGt(F)g*KE?&f22$zC<~Hb1$>J~j5OadeGiYV22I{~8B5>j0x_%vRrl
zPU?y<uExPN4ykcyjUz0~6r_2WlZPACg(FQQKPn%iV{05|;fcoV`f|Ma2}YSZ$wYnB
z<?<ABSvWPfa7K+YYdlut@fv5<IJ?GmHLkC5PK|SGTxtFDYMgI!iSdFO7v**?%tux>
zFSalXR+rYe%*o4*R~WN?U1cu)t4*#kURz5q(DLmKHEyhNca3|rxN6*7<4!BwQbS)H
z+?tnF7{AT@cH<q!>}}+`%vG1(BEGlAeNH}@kLLYOK44TE^uD+7AtxWM@rcQzd9K3X
z6E&W!@llPBYdlrs=^7t8_n8{c)_9}Fn>C)R@qCR}Eq}rIlJP~O>}NiCxyCEGM3!GO
ze?6B-=dBuVJNcebqxnvacNMQZv1KRwxZr)~exOj0FMNFy@kxzOYkX7V+Zvx);d5g)
zUB9UDrAEpU+4(vjeN`$)eV5CBHu>K8gYie>Pm041LBBZpUypvTF|^J^b^fUFr?dVt
zMs@zK@lTC^YxHYW>I8N4C))~jO7+y?`V~#aSYLNR<y@W(Vm4Jm3$rf7=83Udr&gz4
zPoGH}#;&nxY#G~iIwsQ5Lvhc1z&OM>fpJ2kbkwAY>r7JT-a7ZynY7Mib#|{aw$9{r
zrl_+-oh9o`S!b#`^VXTK&eV0LsWU^J8S6}2XSzDmyLswP)@I#=WcMvI)frY#FC}x<
znb|tC8CB^lCbP<pJuJ!Wmds(4H|EMU=Qf$gn9Zp9>n!Nx0><IS?0#&aItx3wNS(#%
z<D0RlB_rzN@4y##GHc;db(XHPVV%)ZuCr{NRqL!)XF2Prx|K!DSE#e1$x8L~NK_Xf
zwORLXtK^zWu3l%2IwR|>TW3wnC0r|4SUZ=jQy(8=*UKfN<Y(WguW!i)xm^C-$b9oU
zTh!UO&L&Qdsi$E<#y53xvs_=%a?3hf)!D_8t?O)KvSXcXO|<a0ud|)`e|I}O3`*`~
zzOzO@AD3M%+0Emq8uzHPXPtA^g*toH*}KjObxy3akJS#UGtOk+I{Vexzs><ps-T>C
zV9vFo4>mut&QWy^F+a4<VRa7Ab&ik^-N$TF$->djI>wmAgk#N*Gag@0Lwz<bC)GK<
z&KZ`UT;~)MZG)Uz=QQ)ovTUAN=WI*Ps*k^2(Iw-YK|1Hl)lS}Qys*w?buKr*$fI_#
z`6YEOHOX3gMV%|1yuQv=CaUY&I#-)tlS|~}>vEp;=!QBsT5?k^*O=Z?=hiy6<&wMV
z+-`n{@lIo^rZ3LS?=faRzhC{T^J$&WEPSxeb9J7t^H80K>pWuNV|5;{^Jrd55%>x7
zr*g@YCfVwH+WeV1&zfkLSQWis{zjcQ>%3U!B`04tzGBqp5>k8B{59k2_3?j2LGrgO
z`Jm3*b>1<5*O<l0_srk-s?jp}&`Fj0sLsdcpBOXGe_rPc1>Oc>gD*8{o%KtmQ0E7e
zZ;am>W#>DS?~U1G%a7(i8Gklvx&2z_H?>(|Us1h5p^^6JPem0g{AHBn?|S+jqKJO~
z*6CZGt)`-jNM31B%6YjlJ}znENiAv+H<+lw#0`=L)dsy>vu4sV){Tt@%{*75*3NmS
zK{w~wm1Us8kOmVp(p&clot54G4Q-4M+G^D#4W@L~q{hjNlQ$TuhY|Dt`ZZN!{Aa?`
zHkhu#(G8AiFnuFEp;)ECstsmnFk^$68VqYNSA)45%-mp>2D3HNcXhPKIBO&Q4oDXu
zac#!V-e8Ufb2iXtBifuF=3QJhNxAbhSisw`;`26`PqoOb_q4b6M)&Xr3%crsH0b_o
zCkr>yo&QA|EZRu--$pc8x{;n|EoNNYxP);@<5EWLaY;wNWt?2L!Ez?c8&@zYcSVzx
zj4L<z#YI+YuzG{t8tmR+jRtEr7}H?WMjDaUYOslt`u^8RN!F1Q%-1!pm&->rSU=|*
zG}tibqfItyu<?Hqzw9a}Y}R1&23t4Srok3=i*|0eY^3|T%GF8JRt?5^i+I}x+cns+
z!A=dfw?B9Am};w8H(GiUOrJIUIgAEzXE%5kc~yS}NJH%HbhUh}8?ax4JsRxUU@s@-
zw|yGvsO{~f=J39abgyzF?^vqT{tXUjaG-M!YH+a0IHPh^h47FDhvt&QOb$05(cs8j
zew2yyk8N<As%UV3gX0^V(BQg8x+|zX>JuBB-{67<Cp9?Ptvbb}&S@~M{t85c(>!pe
zH#nognGMcraCSDJ{v)dwcr;taa~qte)_OBsz0>K2axZLfNrOvm^P&b9+vjS(=9^Bt
zF0=fK2A4O|!!LbeBfQeXA)TulT;1RrJ4a_6*P6&ta=yaa^$l)laHE!h{`i|)erJQ5
z8{Fc#eQP5<Q@g#vZ6+G!G^t|(ClA-rc7wYc+~efExmu>IDs*!9K!fiZeBa<f>paxp
z;RcVWZ4JJ0b&oZ8yuoW~K!Yb5JlWv+1}`*t%I$on!LxF5-e%o|>yL{rQb-?BpKGM3
zTJ(Fd!OIO^Y4DOY6>TKUO1)}{{2<924c=_<d4n$+yk+^P4L)n|c7u21I?qq3DL&};
zUW4~75&xjUhdKYq<YVI}S_oEFDK$*)RdruB_)3x1pT=l5e(j3x^0ZWJ`BwA9Tg?yZ
zK)Jz>4SsL%ha==q_W3UjeztLqzT(oa4SrJu)6qjAJ=BwhKO6kjNblTe^0&gcOZDY^
zom3Y2SF_6>oyj?Bxx!tcNwJx(sZx`2lS(t4`C6XBF`ff&=t#Or+~m3@*EdO;X@smb
zsW;O-^J+7FB|}5mXr{|;@+MO>X__n9YSK3E7`wT=*JQwaNG_ScWWpvxO(x3a6PrxZ
zWKxsKjE_3TPT5R1i}ahN$y80IZZeH?r*ATY8#!&0>D(P{(aWndHkql(Fqcvw(r~Dc
zx_pe(hX5`pomrdA)@1f3bI2!677*$?mnL)D;9Sl0FMq0Ea_>CN^s7nnd0lqCCOi4B
zfeml6V3R|d9NJ`|CJQ%Nqsf|07HP6*lckz0-DE_Q#hNV9WXb0Ezbm-7D^gur=3Dx>
zO}wB_W11}6WaTESG&#=Kk>#2!Z{-!5tf=1Q9aLWw4OHq@9sV}c56bjg-MOndsVuEx
zsfn!BWP>IfHd(vLI<}ToI<lEwlGbgqo`s{FT;Hft${O8dqb9pI8QWyzCYv<buF3XI
z#x&W~b#2{bv&^7za}9ys0y4^i_*R2#ZeyKo2T69YM2+0J$&Thb4a!vmc4@M!<+8S$
zNus~>*ksQp`!~}MjrX!}Z=>w&;hDUTjqKZGKNG!!q2dQL(>EMs^S~wt<u=Ee9NbKw
z^rdrHlfx~!u*nfkj%;#blarbp)#PZ6NR#88s{`m`njC8`o2pkRp@_V9Lf(awo1D_*
z^d@ICIo0ku%|)b>{Z!+bo)YI;uC|@k<ZNr6V~I{trE{M7`Nj*3(|T@P)a2qOmsldT
zOHDNB;+L6U-sB3CD~(qfuQp2O8k1{{YX1$*^c?)LCXYAMbK4u6+|=aeCbwudDxfvF
zzsaplZfkP8R!5V2n%vt=&tVma?rf&-DP5q*;MH+=zHoG6sFy?Jmc<etX!4+QA8Dpn
zG)1I`RH~W&K{LHmAsxlWN8K3RE~<H2=}$CyvB^u#RN=`cPif*Qk~ev#$+JzK^CDea
z$G-MhE#L(gS8G*POaA31uQ+O{k*_v+&H7=B*VVx$UpM)t$(v2yYVxtO-fr@a$@|84
zwS*P<HTnJZuDBwhejhmZ!zLe@NTMt3Crv(W@|h)HI9BNB|8pl5U8VD-`Bz#mPJY|u
zyC%P@`%S)Y@<WrKoBU#(AB}q7<0lhc!Bt$rN7emm$!|tI&gj|X&nAB<q_@(ybTohd
zb{4I)$UjZ~ZPK^ocIQf1aF(p4Hd~Zi=>@3LB50AdR&S3eS3eCw)FN(?w5YbIx!|P6
zx^bcwjTX%otrqPTLt0GGqSK<=qSs=e#rOVPbc8=Ly~ghb-|uG3957*vp{?}BSRq1J
zF|~Xt?E<yZdzDFA={i-b)MhnuGS@YEiz!;^osus4%9^^BUW{(<a7Tw}T1=~sDB85R
zti$CUrf)Griy74zZQOM@y~9i`hP9Zv#VjqNHgTI-Tg=u<FQ69~XK%4!i-lUu;iTkq
zwwTL&?p!iYi+RoG%O&%-SipR^F?%>&xWytZc5bmti$z<EXfdY6rY#n0v3QHMTCCk-
zi55$`$jZj0S}Z5hVreIrF{%yAn&`25g<PT$U(tLeWA<k&q`8WdtF~CpWObwDYnZHQ
z)YJVsChN5r)na6>vu^AEo)*`)aHAF*<hdJ~jBbs8+LFzUE!jjP=q<#}oZQ~Hd5bMt
zY-ujdty^qmo;`a?vQ3L^^W5!P|92j}gM~Y`*eTD|=Gd++c588Di=!;uy~Tbl_HQw^
z#U3s8%r*DX<ZrRJ2HpEb+2ixR&dvODfcas@1C0l@7}w%pbG7PFlS5kR8Ksi?X($iR
zbB{2Q@uN+SZ*hXjF~(z!$F;_vh^g#}mYmk&Boj$aHaW$3YVPgRTb$A2OwH;R=eN>F
z;ImttGpG&cTK~KZ-7wv~WG%d~#YHVHZgEMAk6L`(;!;ii7EiT!y2a%!u5hWlTU^=V
zsunl3xVgpE7G7^utFAG*w#9Y1MDEh>1}ATHlN6Svd5hLyu5)XP+stpzCE2FOoh|ON
zBwGddw7A#F`-~5_xZmUf<AW_88Z`Qv)sI;IXp6^MJZ}D^QMEsz#p^qET_BWvCYQh7
z;@K9@wRk?4ylnD<@kQfH#;k>}n7`WMH4~ZA%6g;4n=RgI@wSEUwRp$mU1K(vq^Z$=
zKQHxx$%n?Qv!As1vc*>|KDF>O<L5?|{UV>4U$^+C#cwTsZ}Dx5@2v2%;-txs#vhD2
zeNe%l%tem&dG0SQe$6Fn*dHzaY|*zQ>)>DJe;fbFHUBly&W!#$OQD^bEw(9}h?m;`
zH*YI#f;M6M|Mp$gyQEFE&3kR$Z&PbiZ?jvQ-P<(UG}|oIX6ZJqHtjYuw3)F@r%kub
z)VAMiGhi}Vn;|9>w3#rkacG-~+DzPL5|!2e0?^T<C;5MCa8lX#9*f#Jd7CNnHcx3X
zm2s?#Ok+N6o9RrZH>#9k$V}$*w3)Zfur@QdnZ=UX+RSb;t5FV|!$hU#Hks2nS36yp
z`ehMpzBcn)zF3<DOcpi{H>&J{CJPx=WD%1^jU$ZGQ3n@qvxJjNw#UcbY^E*KX4y9D
zx7nc0a#CnB(rPOhS2fDQifvXhUpbeo(oT2P)-1D{C9Aht!(`1iYv(#^wf}Foa~%sa
zSFhV<Jts#Qvnjn{o6&8yY_nCHjVvEy+}Nl#Y+@qMY?@0pYqNRIw=hw>+S+87T)s`4
zZQE?;<o0cLXtSd|EQ9*()MjUAWpVog?_ut0Nw!ruw#^=GE@^XVn?2j?)#k7^hqu|=
zI$6v2X|r#e{VX}qD9ihs9AMO1I4GBoGdb9JNSi}Vvavp*&5><RY;%%@N3}UVUm8bS
za*XlVHpiK$7A@Noa<0al+~yP~FKBbB$?0v*(EQgd%3n!3v&~s;&TVs^739yeP0q=a
zGMlyMd`py+<qPe!i!=@Fw~KQhUe@OFHji5KiZ)l8+}`G@HdnW~QIo`yYuemka;@<?
z<MqbOhgmJcn{&&zI9HNeO>Q%4{@l^#PV>9k+}-9LbB+7GZSHIHpp*YuyWhzNj9G|#
z$oygBBkgpbP}BIaHjlS?!oug<ywK)J^QVkY8=q<OY<v9S+H;oZwoteIFPgvJ<_(jV
zj4!u&rOm76y4JjAqB}`F^u1}WDe+F5x6I!*Y6j}5UoC&vNlnEM+I*<B&|%{aAGP^d
z;Z8S}9X@IEX`84++~Kn}pSSs`&ChMVaKUelUm8<C$e-rl7_(LXo%#31AKLtAk`09F
z{iV&XZT@Z3Z}Xe8{%G^3$?rz3dRhLf&EHODhd7e_<D_Pk{wbG|Wn;luG)h=9k&bw!
zL(m}{B*~&{(qW<w6L+X~sCB4!Xmsdx7_eruL&v0LY#Z-$Snit3vKH@<oKMghfATn?
zB}0u_119M(X@{wE&B;tA?~Fekn8L{^^W3RSGy|vUFl~qFoSZ%vs#5)C=!}1fXjq4t
zJFMPejSjPPn6<;=9hT@YTZh>@EYxA)4s*EdTpi{%nbVksoq0OU@8rBjS)Q*me(s4c
z&|!Fo1)cS~J*oLG`63-g<ob)6XzneROEkVqny+MBs>9N<nddIwVOjI#jJl9%daq!<
zqERzeRjh0-vPy?lbH191E~#sptleRq4r`fbkwp3<JFIWXy2ka4l8?$gwn2vtJLB*0
zN9VcOFm2Ldn-1GrIL5eXhs`={ZoWk)eM>)^gj;slDlfaWiN<TY4%>G)*~uL`?AT%d
z4hMADsl(0|?ql4g!)_gR@35<rYFl=-8tdd<9rnoOdz#4Sd*_m)Jqr6ext~#G4>UQt
z!!aEW$~DJzIJm<hP9ADJ!gyGR!%ebfc%-@7a8&M}V>=wz;RMT%H)bOuoy<!oT6j`E
zdrxulRAY8sQ|LaUlLqkfJDl0!tPW>)(x+NkIJd(&o%90)#V9Fg*YP|#&HRE67k1Kr
z%5ae$e)Z<3`l9!LG(Y{3#ib?+TzZbaqQjLPuI+GLhpReVZQ~<#+i#*!sk-!-FC3F?
z{&&)+Z`r&-BdGnK4mWkUxx+1;bne|MQ~s1jt-7s~eyt{<V)dQ2wqcjiUGC~|x0aP&
z{_OB{hi5w6>qg$!;r<Q}*uq1dbaP2Ada#r3it7)uJ>21u4v%)yFFPLVq&wTHNWIo^
z#^W8H=<sBRr`)d$W&Z=WQ+A&1@LY%IJG{{0?+*WTc+r~g8ecNLY<#7|s~ukJ@VX|p
z_m|$V{4Jxr_hx7OU$hW^yOZt{zLQJd>+rrL9X{;vv-LkRe&68-HCUH`4xd``Rc`IG
z4xih|7e-n8($+-2_Mm@b&2Nq08I`4d57n-xk{>(#)Jb;~mCW`Pf5|QXYVuo$-%b87
z{%QQns67^y`nN;h$#uKwe`G9lS)|LNU5Z^wT^8)7mdjl#U8e6cLzkdS*rn5@+a+>t
zP5<h#o6gU;OVUjpQnftWU~F{%Zx6HS+?I3OM%}l|ey__wmx;PeY&%1`>BvexK{ws@
znb0`YxUu(&C+RY&O-<cpGLtEdliTJLMvcBKOl6+6WE$&CYsqv*oxezD#x65;nWxLV
zu6<aS*}KfqWoEa07HiIGoXx0xIh9)9d$S^QcA3kTC7IhK+vA<DoBrKJDQIoZ-(>-3
z4Y!4?JqwvHY}B`V(i~yFwo%E&x-8yh2`88AvZB_G{!nU{rMoO+;qu01jmsIe>8*k*
z<n7T|tkh-YE~_|qb>phW)r{KEmi`*%YZ})w%FmLo(`96L{7Hn8*)&_P%P8wevcAa%
z-SIO}{?v)jMqM_Rq{|r1D82vRO~b{eUAF6{dyfhQn|0Z|%NE`Alw`|p8lAL+x9X-J
z8ExH7AK|xARu@@Qe>KTP6nwVVe*x>VqmAsO8K^z~E<1b3G>c?JhjCizyLH*U%h)b^
zbh)+5ZC&<MkuEoO)6=@WyX@2D;4X)B*|+OsO6~KT>}TBHcz{tIyj>pxn~&=vq5OGh
zm&3YT)aBwXhj%%m%Q;=n?Q&$7qq>~g<*Y78yNJqa`~8?M$96f+l9P<b8&Ak}PBf9_
zlTA)Bo|@;L*5!2bGjfUgc($tcr=vR8P%RfI>~}f8%Z1jtpqqYCrAep>sUR%N>WK8E
zc}bURw79xl>b_iN?<x0kkK+|xt~9wSAK$A@v@v^~Elcx;F4w!P*1HVqb2i!60NvE(
z<}SC`pf=$(9IE>EZhA$yr^~$><t}$B^1G~x=wE}~ZLaR57CcEF@A8C}o<1Mw@_@@e
zsQK@U&O==uHh(0SJlajqVjeSU&OGUfq<UZI@|5}0x#Ss>XS+OS^1M;?N?E@byS$WZ
zzU(IHOW0RUUdvnide&6qn_b>Ac{|U2M~%<<dtKhocrN*{%SSo?*yNKgpPGD@%e4@`
z?DCbmHo%eteBI?6ubl}8_|`h#_EJB8*X8>zKXm!A%bS+`)aB<cr<(uL<<~CD_gJCF
zZ(V+O!KHirp+IE5NRPkr8W-sCxA{L^{_WCNbv81KvCv~ilVXojkFxm;Mop?pkH9?a
z5%q|BBt0hRF<~zaCe<Fz9<3fVCnc$yG<xH&o9$fQ>(R-1x0g;=DG%h5A-QB|kBNFr
zY5Bx??qnvD7$?m&ReW+wrf^*{I8~3SEt$qRU5{x^q?uJWeO^{eNk2JxrXIuGyP1u;
zO77q(I%|*FERoLaJ?1c<(>RxLZsR=0d5!ZK=QpZ46&!9ZvY^RA#)W$v@4rka`J$GL
zFfL|X+_*%KB~7HWRFD1g|E#x6k7aZDawf;?Kj`&XsmBgIcC=*W9_yK`l54KoV>R>D
zd#ur8P4jh(YxUA=?%L-6)iTn_b@O^h$!R?{uyAvuTD76c=pGyO*w}oN9-HR5V@xuG
zoAt>4GvF3^?v_2a>ale%{p+3E^w`ewZH<!1`1ZM`k~{U-xyM00#`W06^0CHUjk_6l
zH)dt`FyFJsUOo0U-_Izs`}Ek?{BsYnB>Ovgfbl@1+I(=2LwcO(<e^4s9^K<G^TUlt
z7>~?zkLsm=7FBBc9b@6KJ&rRu-gtuj{GW$Uvhd^{r<kaevQ9HUy~i0n&NRQa$8{!W
z^*Fo7Ip*i~INwC2&dbN>0!uD5YCtdQak2R&x#Ute;IbZ<n@HyhlPh~%WpZ^czowTy
zLP|mQukUexj|Xhz2IGy!n|j=ABAr`$+-iPXF1fwO9XY?V$6YzUyT?7|_vVuOOy1Y~
zNV(+c9uJv6oJ$_*@o3H;GkM(jM2{ym^YynNj3Qdm&p7MZT>rTq&zrwse9`!l@nz#H
z##fE68P%iLd%R(utzt>u>hX4-`;N)G#`lcx3r#*Weq>ask9&M#{;BaZ<L7zq7d^f-
z|H}Ba@tZtX4>jMJe{cMu$B!mI^%xjPXWGwB{$l)9mw+C>n}^Q*!~9R<U&g<UD)^7d
zzs7zq{a@@77K}w>$yhcjt6~xiq_aZF$jR84<T}*>YUcG^(ios=-ZHk0ojkWYK+in%
z9fiye8DIiSvameVd?Mq-#z_X4)MT;&<}gvI$p@Gs=Ti<amHE`hX^hk6xzm|UZ=At6
z;{Y?63^UGbl+9TNnALnX<LtRyH}=Y%)5*C8nA>C?<Glar3^2d>0><IS1@qj623Xj9
zkzBIq03&j~n91S;$knQ7sR5QAVACONHiTscSayK>2DpEK<unij95%q=1FSH>idNoo
zfR#)}8dZE{lT`*-HJ7Y5!0P5}7}qqemFKQ)vW_tuf^`R2&&g4_&iW=B46vceXyZo4
zjg6{z6O%D&xycQ>{~uuUJa>zM^pC+xO~0)M*m{6%oVBfSH{*5#Y@h4zFu;yE-)VrI
z&37>>hVPn_-A%?C_b|%-o&)S<zIQI!$7J6D_RA&v4{(6_fyRT3<BSIz4>2BU+#+xJ
z5d&Og$&p6Yb<_Yy4{*!?$L5lgO^*A2biE1qP1PSgyv$Q(-#ec>pF65F7)pZ@p;03m
z6pflFDwR}(MpGz-%tNM#C@D%5Q4x~qXRIhg8dP}KS=;Xa{Xg&fKF@j9v-W4+`|Pvt
zx#ygFu5gfWuyBZQsE}*^FcC%=E;2&+y6}w>j4Z*MC3wr)j1w7Eg3%&lgl`MS3K@rE
zQd^HRO|X)QB9lrmS!7BHrj}ru_<Z3z!s)^pLdKa{f>|ZtAkVgvcS|rwd~ONeD>?Z|
zI!}^bc5QjT1Pe;AP<#1<5-gJTLmPpGeI&kE24*rWDZx?+uk+#45`0Epf*q196K*ZR
z=OW8Xu%ZNCi2oq`vIHwdR+V6r$XCME!Zkwn<?9lBBmS+GtS!Mh@$ZD|g&VAPV+p>u
zysUP*`EcJ{f-P1~$u`Tkmw1n?@IkwsCD>JhIzH6(VRs4kl%Sjs<$c)8ku1UC68t8Y
zpGxp^3HFJX)bb8?K9IS;1i$e7zXS(Lz?pWCN0}bpV_05-I3#19n(}k`NC|!~0emRq
z!yhI1v&4ILh>nc&R|$@m;BRqC{wcw~CEk~^V<j-BwX|VCK39Ca1Se!hEmb`4E$j2_
z8H!q(@u8XuK2-9dvd?Q)6mn&#B2vSLnm$w&r?#5NDLz#9dFPWn-(&G6NG+dNKy4v~
zj8Azz<+{d)5*xwigI_%0L(qqi4`Cn9^Wl6SB0e}i6nrT95cMJEL)r(|hqw<3ACmIo
zh}GxWg&w*~Ny761)8&j0IUn*qa166PuP_>$GcgVhJ6qp}Q++tghqHY+&4<(F-arNO
zg>t4BXZUa?mtsA+^q9KP(1%7oH1Xja*|W=yeJ5W)N0)PbXzKF@pWF-u3G2DQhYNkU
zTrSOgxX6bVKD6XG^Zh?QG?$!L^|{gh5})_Felud1`q0XU);_SCtg4L<m-)Qnxy!gi
z&A>AL6+T?aGNiiN=apn87^AgSa8t~+KCl-YhwFW~LGl}YxXFi`eQ2j<dtnEk7o1^f
zd<%z8!j3|gL3e6zQ}cF}+DW{#kcBbnT|V6H!&V=*`EZX9_xdp2hY3D(Q2`7)$cOuU
z-oGB-@AIbU1Cl>T?n74}y4eCA){g7z!yCL1B%AI&^zh+PpZA6?uR;YG1U&9TPamG}
z;YlB!_Mx{APx;VG?i@_In~oEo@!?q?p7WuP51Xa>R`0lDzxdeLbYAb}!~Z_?^P#^F
zllUMd*LfcX`0#=cFREJZg@*8oX8|w!@QM$w`Y_Pv{htDZP+r38>LP<x-Vh;GL$x1Y
z^I@2k4EJG#53jR>K8#fGaX!4s{piDJAI2ynN1OGJ^5G7}e4A6$2X>jWnlV`eYv!1f
zb1zTS$Sf01QkKa+Oz~l=T;}*N*N176zoYS-E}Ws%GqpEoiO=@oT@iMl;{)FO^?~!}
zeI;e0dD=(w&7SgMf#eH?9|&2`ha!uFANjD@%0CwQM7YF<r6QkN?Pnsr`4%|Ux!i{p
zK78TBm&&!-hm|tmIJ1mZD)K8IR{OBVhp&D3L9^u>AHMZrqqJ*%SSRwG4;)^O8<FL$
z_hEz2yLw4ZWWet=8XWCSKJSJ3lyE<C{7JS*#i8I(Z`V|ZAO91fWQWL3A9jiC_F<36
zULTHFn;*GTEdSYued7C7$uB~d@v9F9#1Cp;91<QD{wCyPE~6TL=cj;;_NNbji60gI
z%_T)P|8Omm<d`JKg(rmk-)h>F@uRFC<@_k`$Cd03Py79-=tq4&PW7XbB(;Q8RTilt
ztm;QKD?de~y0C^HHAVjWB(1Gx9bsKR>iJRPhtChcBso6<B4Hu31pNq!n+Op<96zFx
zWUWoikGOb3m=vb0HZ9@`GwhC5r2oFB=Or)rQ4}%q)5OmgvWC+|8VJwu<4lpW{5V^r
zp&#e?PkyjA@}seYO@#C<qeJpsKbp$sJRuKK%Bj6TW)}*Z2`}>FV!yZEHurmTlG`PI
zv=DD;C71fq%JSBJw6Xj$KQ0%)!l2x*QrN47%-B}s8sW9V>x9<}ZxG(-M>~=BLVCq`
z>CBH?{J1TL+jF?pkB)xq3Sf5txA}3q9|Hpz6!0cYCqMf7@w^|M{kTK!cM6~I<1UfA
zZOnT_?)9UKmE7mY{gyxA$AjVz3A<W(H<5?^c*IJ&`_aSlM@1g<<8dqL=|A~`Xx8?m
zA5Tf%%W9wYqqpVHh&(HN&W}D;&Rx*YkN#@5RUZfV@tK-0`0=91OMZN8?O*oe6+d3(
znD{YB!uN%P{dmofVd6vl80z=VkysTkSPl1Mgdd~*7~{w5e!StwC>w302(RzG>Bn2*
z<^mVdoV~p5$5=n+)3FT3`7z#)N!E9QAN>CXrl93Sr8`X-C;KtQ+DxU5_&ZiIU1WwI
zGyRw)KHHBuR{O39!_F0X&yRV2aC*GX-^<wUFyjJg7YaWRekfcdq`^miEEcCPo1cg;
z5iS*eDl|6B{P^6D<$kQ-u@=C&0es=dmwxQ?W53@!A6x0iHrcQ8<0~G6TIE*zvBr<D
z{rJZ3T_9TT$G0rC4A%Maos8ECdD6}TcsIe24SsC&<9k0g`Mo7^s~<o3vDuF;e(zfG
zSY1PItlKNR6TveC`fk+a%I%Ei#|}SsD(o&lb}KKJls$g$N&CHi{HP#wVLiOF_LCn!
zbFo$Pd)-I-MZPrys1?Ak;s<PZ4*GG(kHdca=Eo5R^aBC>?#CZ~{OiXt8UN|WQ9u6n
z<1fE=i;anRV~92Ly?p=BzO46zJcZ`2@o~AZ$*W9d0w^0m^?-K@S}uU{0aOj3S^yOS
zs2K3>u(!}p5i12yIe;nw@8_#@<V_#qSgkXs1kkU<ySqnWAIWP3ygz&5Rd=(F)eayV
zKrVnf0n`nkUH~NlgaQZ$;0wSXKu`x419Geama}rRCPxBr0?0@n6~+Tdh{S|EV3Pr)
z#7zwx(sbZt0dBy%*TCR3BM#?l5(79ZfU^VM@A3)(6a%Oqz^MUmFE>z-(}XlWJ#eyy
zGpyvyz{#uG4JBzL9HEKSSiFhQ%&4XToEN}llJLxd=gjA`Bm8k<02c<(O!7+u-U%dg
zT@=8@k~9}ma*0R_VM`%D^jihcTAXK|Z7iWNo0qG3MF3ZdP<WNd)dBBo0-M~f3E<iQ
zu9N(F;Vl8&VC`=dX(wzSK!*Ts3gAw7Uu1Z5_GWVZCYo_><;d_OK$f=)p9-LpNaq0V
z5V<pet|E5@a5sln{JsG0=ky4mi<%sBZk%He1n^)04@qeD7r%j$7~U;_hXZ&dfbIeG
zlueHS9u45J03KJ<d=)a?Br+x)p9tVdY567ST%WhG@?MfWE$l6PM)+*NTPvOmpicmO
z19+ZCqP`cu81TL`_6wlD2>E~jUJxIsGtZY~N#mCTc*XKp*%zHLGUMO?rUo!AfFS`4
z4dAr^h6V6;0Am9fuGF-7Gk_5RydJ<Cl8m%+cEo&xdn<rZ0gMh{jGfQ)YN{TwzvE;-
zNjN@$34xP$geOX3R>jFS=9GZ90=M_$odBjw_^oh8086aR%m8MI&$g0x1DGQ|SNNWl
z&l8z1d_RB%R=zNR55zwdE)srZwTlDz*z!*T-bV?$vs98#t^Bh9mWh8ZTyEtn_$eU%
zrIoA{Sta~RxH^C}R{OQcH$tv*Yem*s?RNpJw|s-hM&b9uO~M}n*et>#w}@;NZWC@N
zitG^X6w;DQ&7J`EavXyAFo+)m_=%G|h=+psSvE(k<-P#+i~nLJzXotX{GjlVl^@mw
z`%O*G`QHQhBY;1xwp9>+1#nc&zqzgk5eniTtNk~CW8%k!CjvkaWrE(wR~MEIdWS%{
zAj${f)9)55NK#QqRiz**i&wFdszFo}KgCMuSVO#~V%8GY7S<8g71k3nbqRBc`>iAp
zgt_cSZCJv_K}3RZf`|qY3*xjOP7fk(?YU1A;>jRVLGRe7V_Fi|+GK*risw{Y-d0->
zDF#tr<WwuKT?P$;I72SxGR~Pn?_-XU&yw(LVM8H>jYRl`u}Ki;1aYpFUo6s8c%Jb5
zAT9{vLh)unTqMFSGl+>#(p=3;ge`(-DRSxmZPPl4HbGn##O16xh^vEW8^o2eVT7xK
zC)bU(S|Y9q;@Ti?2;#;dt_ylA8|7R*u4izqRJ^&<E{OI)?+oez1?dpPO(Oizq5aL`
zw*+x(5FLZKEr`1$xn0;Ph|WRp!W2{UQW(!j?+D@p;7-o=6W-NDE}M6A*938I5M6@a
z#WY&p7sUNR@5_$4wZv;OJSSw6D;_g;4WgTZ&j{k-ARY<gbv5bOU8H{yJ*?zWk;j5~
zT%@P)3E`7MdOa0HFUy}6=`DOFh-XEf6ZR3(zOTsh-0vdh`y=H8f_Ooa7lkhgUlzV1
zd{sD5Nc%xS3>F_^B}0RFO?;S@3=d+2IM1W#!tD(;M+Whx$XnKOR1l-Z#|YmRj<wox
zL5#P2g2+VSq#!1XOc72MGRw3e-m!eTh&jQVDLzX$JBW8h<_PIESLD4Q=84P~zAs!L
zq|L%0R_d>i7fJF}5UYdu$Z8jhd>q6lB1^1%X%L@^e`Y1ig81C><svJB_(J4M;YzDr
zCBjv4O%PuPQ8kKcQG64`w?X(L2t=?ph;>1{6vE3Pd>6#}Ai9UpBZLh>Yz(472xo-w
zeGr?1s24&>2tNd|nJa1#M}ycB#MU5w3F6lvwkgqeq6kk^*xwyo;e+@oh@BGd3SxH<
zd&H^T8$5a5NN((ZmTF%q`F_g}1aVN>--0+KVq6Z3^Y~&AZb#JoJ%~R<{<PY$eE$QN
zeXi9Z&+^|Oj!9K1gyTV+ux3;tgmNL251~v5Wo67nCRYVDO|FVoMHfnFP$h(_AykvR
zw(t~T^$===P*a@7wM0x1gLNdS8#*}}z7YH&q(Vqb9ta^6LRdU#Z6YB!Aw(rK1rSY<
zu@K^tCuE!yr)n%8#<TVXk&G}a%!Rxz<mEz3Mk`8EU)ocJr-g932n|^InIW7NLh}$V
z3E}Jz8cKCu2#rLVgm6v>jm1r2=ZZHiB{6d5I$y#IgcpX;OoZ}_Lb$k;eTxuUhH!ld
zH-vDh<ZVK@EQD4ev{torG5g|jX|D+3%2MuEg>a1>z^g-OE0u8}UaRJHHqMP9v<snA
z2%SS{A3}!^ZY>q+ChL2%$Sro<I;we_@OFhVyZ8=C9th#V5bg}&t`P2)q>GT*?-99|
ziOi>fmESMIfqKYF9uA?acsDCC!}y4rO!uhBV<9{q@-C|ImLlW#3}Jw^e<Fk@LwG8L
zURLs42v3XmwvuN=p5<=Uol{2WBT3&7p0_srLg+8f%LO#x_JW!(3VE63l@MO#90;RH
z7z0BX6vB=Wc7`xGgdrh(8p3BG3=QG65Z(=8P6)$77#_mJ5GI8%B81l!XG{ohh`bf@
z=I}_4s+#Pz*_d~f#(%WkcW={DHsgfjg&dg)me6H#2vb6MCxq$pnreNinpTR>P~=&1
zoGEU0=<HH9b3<4d!UrL|C$o7nn=j62?}xBJoYjuiC^5o^AuI~vBgvOo%f%slY%M=g
z5V~_)YWcDdJ`Z7S2<v3FJcKnNd>z7y5WbMjm%>#VsFgO<S0bw=WC6_1?VAw3m7MX-
z{2_i9!uk-lgs@e{8)UFqd?P;vLfFLhzmylF(aQ|THkoawRtEpYGzPmu*d0Q}Fe-(y
zCxpEr{1L*RA^aG^Pazx(;ZO)ahp;b%Uqd)hYHat1@QWgwfTmj0g~PUz-|YAtv69~<
zVR?Ura5RJyAs~#urTr&_f35woQl&ETahs@27-hq#5cUon<|-HVW*SL(N&f2^wUxuD
z5=JtNR2WsItrbRXk!r$I!l)kh_InLsO`!=}CycsbM8a^ws3&7z82&Iy#7)M4INgI*
zNZ*inSfN-|R87j`BC)VnD%}&Ma;3v?!#E?1GsDP)k(FirFml$HF8MGDYLYWrQN3pB
zQ?1QuVVo}BK#|QjoF&QGLP}`g(AqZ=VYG9?I5&*JVGIeQX&C2)aZ4DthH-uv7ld(5
z7}thzVHnNAxGapz<#kaQmxR$GjEilw<|0hdQlyoYUuxy7xpf$AR5m&DUSVz8id-qY
zN_e$KiDsr3*U77W7#+g6K8zc}xUrN$JGq!)F_DQkg>iGK5$+hqZDBkc#&coZ9!94y
z9uDJ?Fgk~EM;H$%!kuB<C30^Vcgy#lQV~ogU1Y%c_l0r4<tFumVLW6dUBl>RIUT!;
zKM}^0Vf0YUM}?1t@wiA&b!V)Gg~<3%$>r%VdWkTFk@r^f8Qc9nVf2+`U>MJb(Jzb_
z)il-8tH0t82;&9G8HB2rEPq+#72&HwY6pp!P7Mv?wJ<&kV{sV6!WbULJ7G)@V?-FQ
zhcUrgzQHWwtb8PQmiSv?j8gW|VT=jmZ98L4WP`LHC*$$bGW*0ZCWSFs!l@EYQIP-a
zr>RNH8DY!}V}Z>(OXR&UW?RX-B6Eau?TF2@+W8{ymkPcxj1O$^4`shd1+d7E!}uhO
z4Pk5yV@ViG!}uzU)nR-Z#%E!CQ7XtXh5cN(+~!(gvoq9}VXU<BRU+)#8Y}rWjIYJN
zu`0T7TdNf7RL^%|tS_bgK8#IV-y*0M!4F|<4r5;!`@`50##Wi_31gcG<LnG$JGrfA
zN2xf}?oxBN)$Uc&AH(=blArBpaPY_S|6gQGeq3h1hH)T_gQbSzP#A}0^PBL9@OR-K
zVf-obm++r3j*75`zr!b=LiyK9j*0MF(g_hnyalj~u&j{HauJjluOO@_tR$=~tRnpH
z*^*Nts4GeJ2x^GbjG%VJ>sKuyV{*ULk&2w%tS3%`k_dd3Qyz>U6u}-z!VyFw=oP`!
z5jc|E5W$TRL?ehr5RV`c!37aq7(p_ER0L;4aApK)Sr#LxAAuV|CW5SLV6K8xIbmLC
z4g}(<w#gb!6F)tI1`+SWg#~k?%~=tgE!FuEG!&t{sYs&;8b{DX{2bxALb}tDscCs$
z<mCB-iP<cIiz2u*f>se+EMwX<w>IRLM9{*@TUvSR2--w&y_H`U!8PKS3$KXaN|CD~
zxH^Ki;w+$aFRqo4@vr-TY1>6`TLia9&|azz!kdIQ3+Z)>$gL4{6!|Z5rwHzk-~kCc
z3-5^F&Is;`;O+?SiQqnU;ob<k{NJN$BCtpXe^8Dj56O6}#;vP_-6D86f=43g9zl-?
zo|N#>2p)@|r}&M!+VHrIz#0C8_?ZgAm`|z6M7>4&M=(I-8R4@LJQqP9@xH=-5j?Ll
zOohCt#UR{Xh~TvdhRNo|2wsZdW${-y*>qQzHm^o7P{KhG3>M)9H{O6462VY4`PdT8
zhKo;$U}^*-B6wZRH#p(TV2t=k;hVy@grkI`m5aAy-d2;L#zrvC^6?@QgcBo}Br;iO
z?x{_S;GGD*kYsuUGeka#V5Z3XLdKjWGF$kraE@?p1n-H^W?lsI#m!ym1y;UL<bw!4
z6j@~DA4RZO{9~c1hjErfu+-XoD)O0dSp=VpEEld2nrpmYim!}dRRmv&e;2{}2v&<T
z<{FW&Blt$-Tj5%(T_<8fZHQp2nj5Y5`v^8!{zC+tE#D$SuWeScoy77TB0D44WhJ{K
zC;tj_Zv;O^@KXdoN3hbtDhK-_*dM{a5ge28FA*Gy;BW-LYP~uT!9mG+g_f63d1>@F
zHUAMFiFgkOvX8$<@J9rHMm(Fpr21R@XvCXuoVx$r`{N8e9>IwSsye9V0FHODw}OL;
z4$3$v>v+bzgj>!*dB>aTwCBZJF7lNeRF<TQ<2_bK8*@bP!Z@$fp5maov~?Ws{-8-$
z!$D2QE2)-Lj8@w@c>}JlgL)219QdTV!GYgF!0~dma1eA5a&V@DvmAsSL>v?y)OWxe
zYL0`n16MriAm$*h2nh!%n<c3lI5OPEYJ4&d@(v0z$U4Y5;GJ>S*+N?G$N#SDp6cLq
z8|O3;_N9S?GsMlsd0x0aTg~$wT;QOgcq5LagC-8nanRJkdF-ji){K%##1SyJ;S65r
zpt*c0Z|2}42N&D%;RsX6?GoqYlO8P{Tq@&M!YhQW9kg+9nfiM<$5Rgyk5$L7ba0hy
zu6A&ZNL!(?xz@pTjyHKYued9(SE+2?=%Ag0_6|BY80z3P2RAvmS&okgZ*g$DgHGbN
z3OfpKQw>br*})wSx=MJbgS#Abad4jl8r<#R9tZczlEcFB{}1nX@PLB{IRXB^w8pZV
zVm_==jikGS9u6LL@R);s4*ENI+(AzVy&XK`;0aDt2fa9e4xXYH{{=?KQLV`jf>M%a
z9X#ituY>2UCC8+X<Go{wmWCS~;NS%ZuW<S~c+tU2D(Phowd@U=PqBdx200k)V2E?_
z6W_>7<1h!q9n5kt+rbEhVr}Cbyzbx)2P1hfI(S?1w;YUeFxtVG|Nm%XWohD%cQ8TC
zi4LYZnC4)TgURxpVv$|rFuvnpx`P=GW?DHT{AXkMyHb733FBangSiggb1=`r2M#`T
zFrQin3mh!`|Bt|aEpo6}CEdwe0NiDIkd<=sB@UK4ST60ST7s5|f5zjKMFu_O5%IZJ
z9@^7ug@Z2~eCc@aG3K5!_?3gz4t6-$DVsG8Hi&%f;2Q_uiqn@*m=M=GSSQJM!u3M)
zL9o$UelN1g!4D2Li*IqTT?fuq2iw$NhB9M5mIthr>~gSM_GO}8u00O+t1skx9sFqH
z|K#9j$?3aKgrUfPaqz2^9}qd{;E>2+2fsNuVztK{{O;fnHUD&Q)WP54f2k6N;`Wau
z|7u{_G%1ctctS`aq9@N$%SKTyit<rZQ00}Qs2KI0ChD$tO;?I~<#FS>L17g&c@&=#
zMfE6J$I&K^8d21Y;<^~FkD*o+wWIhXiX~ChiK1>4w?uJk6!jFmVHAy`D2c)sg<q2Y
z@#PFr1fmE=5sG?`<0hj>MG=l75``lPh4Cn&;xQr5xF}4Bdwt=ZUu&6-!ZkKR#;2BB
zPEEQLq9{gDU(GXwrwUIKo-S-4<h^e?o+*Bo@N8j5*f@$N>Ox!LIZ-qhIX8-?QJg26
zX2SD@7YHvDng|z(Uo15Jx+IDgQM8n#mGDxbv2QKjMtGU<a^V%iE2G|tD7UMkxLTa&
zu55Ayu8HDW?w}~Hmt}k54Z<6R?Sv*v2l1PPHw#T|9izA{ijh&gsczmL#p6-*jG|K%
zoujxTiaVotFp7twxJzDLgm(+?5#B2_(e4w!U-*E~WbZ28UD!?du<#L~vFRcHsPHkN
ziTOknPpY<oQ9KnzuPFLO(Lai(W%Hb{x9}O^vqBTIk9c3<^FkAIfcQ(o7lbdC(!MPI
zittsTi8d&T!BGs6WVmps@HOEup@~02{B_|QLKESwC`Lu`p1Lzy$o)7qiZM~V&0|oO
z6NTf1<AoE1Ch{cl$-*f@6M0$`??f?OlG(x;!kNNZLKER#@j1e|LK9)0>Y2|4B#H%+
zFA^>kejxl%XySY%zF7FN(8O69#ivnJjiFi$pGC1Oimg#>i{f*||JL?;c@!(6_#%og
z<-1zAQn*U^mC)o`BmTAU8==X?(OVnEx+uPjV!h;>gd2n#h2IN}{SV@sg<FIsK98yG
zQ5=rqH<lO04ykrV@naM}MX^iG-NHS>y+RZ7XYpT!`-J<2zX(nI1L6mThlIxWh(_at
zj_co}_#=uxrTs_vm++|YZ=s3yulO<HaiNKZ7|O&@Hs-Cj6@}%5<%Jc5CPF3g%EBr_
z6XBE?s>i%fx=V#MVsK-~#88tT0Ws8$p-v3p7$Py$m6u;wPgo-K2~D(scu*J;n(U5v
zLKro2Vcc-_C@G#2riCVEmi3%CaYhVh#*m94A45UfQ-wugeWA&9n)vC$20|0(tQgLY
z;rtjbh@qk6=Lj1K8w;BVjs3aeO@-$PP5cYRn+ux>FA`oXG&Yxrw-B}znwYIL$Q<p~
zF|>){vKTIx_G;l3!YhSW2~D)N;@1eT6`E)_#BgH_^J92FhITQuk6~mCZ^qCehMSb=
zS>eqw+!MpSG2Ei&tub_r;Wov&LwLKeld!YU#J^MgF5%rmQ%@J$i$`O)FNXVLctF~2
z!Uu&93A+kSw1>qX5q1~$5b`(0oV}05@OTV8CFv!6LinWcDWQq;w0LjfGeT3<b20RZ
zp|5HiD11JKelhfy%}c@o!WV=u3XSi};;#r_6`EXwVi+955J`p$hYDX44ig&75#p~4
z-w>L}+}CfZn5n{1!qG8|iQ(-S#>#S{aGY?waDvc8m?S<~I7MhOGV(M<dnbnJG0ccz
zrnGZ}vxKvS?+Q({x#I5$=Lt=;1u-n-Q6ERGI6jEs!x;XEd0$``DaG0t*2VBq42xs<
zIEGJR_#%ccV_2dH%Y;jXp9(({nv9=|FBh&5nv5&O*9cb$zY?w%8k?`hzY%^bG%>j#
ze8<9K*b&3}7&gSPQQFPI?}eL$KL|~<E#g~++l1SNy-s*DaAyp=V%Q(UFEQ+v{72y)
z;a;K1{*(C6!hJ#$|5x$D!UMvC!b3u1^PBh);qSs8!arm9D~6*QZSL9far_;_KQa6(
zE#lq^e@y(i@PyFBEF*1MVL73xvqBsd<ESJ_HDP686=7AOu{=e*y0C`OL}n$m<A}u(
zkE2f9`<SR3N4+>oWD^qlgnnT_7!;bwVeyF25k`e3enK%%kE1~x$v9GRq@^tgU1KTC
z3Uk7|u&4G~QM|tJRN-kt6aS1j&Wz*yI4+3eEXkV)&lWZmHWD@#ntgGO__@NS!t;ct
zM;D4;B5WqSNO-ZZxzJ>9A>LAWsj!vM#JMbv%j0-0fnf<;5yzEr?2cnk99PA0bsR6p
z@k$(R<G3b{`{KAij%(w%E{@yd=%hirK8_A?+!V(RYI4`y7)Lwt_CoXB_Ga;0tc|&-
zb!!|QCArPYjdABV?vCRg3GayGPLaEWG%z;z#?hsemkIbl91q6vL>x~_^-vt$<LDvY
zRoE?#hvVKi&`07YFF!Kcqc+ZCR>)pFE@4k0ZJrY87f1g%dd2Z{9K9uBs6KH#qnPx1
zHjd{cH}&)tf4-E2HUrdrDUKIJD0$Hun6AAV$G|ui#IZ1rL2(R@W3mi}#4$9Ex8fM3
z=4)}h9>*JT46|hq=TTM_BY3#!5vGxnn@ZkPg(f~Tj*eq|91|30OdM~EP(C(}aW)!_
zC(4Tv#_D_DB$=@}C61|aOpD_k8PAn`x^Q+JGi<b(BD3NrcNycqD?Z1jpya(c<|)g3
z>-E01{~(SJ<M<|yZ>3rk$I>`HjpHLV7YjeOUZ2FVM4Y9XZhjWW7jb;4Xv?JfT(~@r
z71qmGu8d=~YFH&?RbPo1?HU<>Eo9%<#<5O(YaHLjv0nU#I5wzLblDWgM!B<+?`==X
z&5qa{#}*rkiMGYDUCsZgPTK6SHSCOIS1HTAar_uZ>jc^)@KYQ=b0timZo*p(_r-A}
zj^E?hZ$k0<PaMC-aUhO^aU6={H_2JsVLP^_7}LQ&;`lR;atV}A;4d5DcpOK$_^bI(
z9RG^Yiyb+p3JpII2NEcwGFS-%mK7(VWrYMPCQx0HO4g=I0+q#SV9KbPK()ll<M9;h
zUPF?aiIa1$Rsyx9q6@cr36vyIKY>#d@Fn0+Af14lKp=sj%n}KNL|9ccfv|W)=m=RM
z<HW2@T*TCqOdzGEsW2m+x0YFvoRIbfk)qWy>}d&{p1?T?oSX1wegk#k>;%pbIaA2U
zXW1?{ly4)+8%s!S6E*4H)JDD}f%6hLKY<Hugo~uQP}s~yyEuX7GBAB1wy+UeCUB|c
ztwb3AvIH(q;K>A@;`*P!l?mLFz`Y4vmB7^rT%W)V){-OHHi2u@scUVV>(peyHzv?7
zflg|+PoRSgZcX4OYk9L&tmhUHMq~Dl(%vS??cxkYdFKS~NZ?NEdv^kNiBrXmzNU9w
zBzz=+`x3Z6fd|xaYP(AQU;+=>VWC$y38{V97SLUi9>PZxcr1a(6X>ZX<3C{ueOZ;s
z*eiiP3G|ifX~pTCz%wGxO8A_(v41{+ehCarU{C`66Br<aR}*+ab-t`7EnifTFR95~
zuZWm*td?Z3?1v;Uv{Z1aXiV+!1V$vVIgKr8yq>@t3EY;#?I~}RMkcV-L`&eU1V$w=
zI)Uj4%t&C2<g}S6@-|ag$+!f@i%$^p$GJ3{WVMqMn3BNM1g1&yj_~O+UOH~C>xUa8
zGZUC4)$D}#Qw~brO<+y}a}#(kfe)pcCwxDF1tRm=5j|LL-g3E6LOOn6<%=ZwNVwQ)
zKThBi%a<hZ-y1SNP2e-hmnHCd0?QLvk-&i@4kqzM0$*}>C-Ha^D-&3iKrxB>Nqm*S
z>ID8s;LilsB=B_tKXS26;G2Z^-G5ucdt2<c39L<ET>{^+nZPEg)+ewbfsNwqER8uJ
zL~@cJ64)XYC7ZcM>9Q*MRvvNU+gWD<I})Dpt^{@`uv3+rAbV`sy&6dqoGSYMoWO6=
z?n_{Q0>32itC|O`C5;a#tO<1}fy1^E)^;R;-=#G%iGL+<l&fVDktF_3;GYDlBvCbq
ze-k*ybv}u*NgTKJAc+$;nu$*=mqhs_DklHWAW&E#>2-}6D<x4`oVnQKRxOEBlBknJ
zUCFB_Q6uTi7TObQCQ-}U)1|h;e$1EuBvF!tKZ$@OJ|Uz1*O8!tP!f`ga^8$1I!UCG
z-q1yph{-0NL?U@|iZW@kRH$?kE}J$&UX^5pxg=PINmsDBPEF#pBra$CBu-CyuM(oc
z`AIa8!5K-MnZ#L1oSj6IB+f~qp&~a*qOl0Gn}DVx=O)oq^7CwbV_>uwBynL9&62n%
ziIz!Rn#9F2yF}PrjvPQ56I-Zel2%EyPNGc`m)VRoVA%hV1zefLRY}~L#9az?brS88
zXrDyeB(6!~+9a+^;s(1@uD7+BL^mp|=|zVmZc5_zBswK=a}u{Cahr^9O`@Z9rzIV^
zkr>|D7IufV`Oo0)B<@S%ei_`OQ1@!bbrEMT9!TQBBpy!Ukt80Hs+&|@h3r0UxRG>M
z5JrAfq=#*q%6lg9L=xkZn2^MiNj#OrOG&(}fW4CFr^232qPNI1N%R$YHi_qw=u@g}
z6OHMfR{>1dUqL7zki-kNsu$%#vsaRMHHkNp7@5RCSyDJOi9xa)Y$Zdi{cA}KOJca>
zBh&@jo56ftO?H;K-b`Y&E#R#rMp<`Sj!EKesm3NTPI5j=V-_X)PE2A_5}zfpOg58~
zn3u%-B&H-WHHm3TF(ZkYBJU(IU4$7Kd6xJb;p`;dwH-HOGB=6$q@pD^vs2zzmXDHH
zki^0yK9IqONi4FKraPvOi+KPh@ktU(lK51PjJ(uZnk>fh^CXrl`}QPOaPd##+a%T|
z@uj@JN@6uX1(H~$?$gouu2HCOc<}P&Z{jAqDRo^E-zBjri64?!FYSgTHrfa#FY$Y&
zFpitWw<fVgBquN0Y_q%Le@W~}VrLS&lGvBT{v>wG=Eo#{N@7nEdu{yx#=#WxvyJeJ
z>^Ytc`>VLIJe0&?E=oEj_$`SeT;5Y~QusZIKa!}DLe&)hR8{3tD4)V#NgP%4?<9_K
z!B65JJNN#zxlYKSOzPypi<Gw$Ido-33}>@~l~=T+Qpz){EM%$GQaB|ApR_EydJ45u
zsFOmC6lzLnx>HNVGi+V!$RPD3ERn=y^os|C!4yI^DT9P9kERey;k*>iPa!VLd<q4H
zN~DlXA(cW}%}fee5!aTNQ<HU?s+hE>2rQ;a3iVSsHHFhsI6Z|kQ#ebi2EsFhrby!1
zDKwO%k&w|C!Dt(&yyr&P<aUmR_gp1ysv2l>K?)a2POoNCwNj9aQn)yU=He|<Xqmz#
z;*3K}Q!p#P)b^!y3T@<mnanP?a;Bi!l_^}6!qq9XO`&}X9a6X^g=<r|(T>1%DO_)P
zLwGJXsLA7{os}EOv5L4Ug_~2jg~Ot=#EvQNp|4woe8!Rw1JJ!w3Y}9}pTdR|?odes
zQg}h3?o8pX6z)#po)qp)p?eBFQs|PxeJOO4!Tl*bAktO%U<wb3{P$}t^N65%d&9$0
zJz@<WP2n-|r&4%agvC6WLeCVQNO@OO*fejDAYq(d94MLfPT{!}`lRqo3eTo6l|LBd
z>y%HNILe>>rto|U{Zi<k0{`G(&xsRp{xqAvqT($iy|CpMp7txqYMb$;6kbl@l@wl0
zVPFdLQ+PjxK`9JQVO$F1Wj2KSJ%u;KhYDX44igSfVT6e3EUO)v!YE1J6jJh*2p>}!
zEi%T+-xe9m5!Nr?C#X3sg?CbzXl*8mOcqWNP8BlUbdh(3%rZk{rf`;UwvhXJj>uf$
zd%}4_dNK6^@lS;dQ}}?RC%)L)EE4%h$h;q0`6nVvQdnwL4ER|J%ToB<+N?}rx#cTT
z_(J?kD`9P`#J>`nAMCG5;cGR&u}8<Z)_!dY>r(hG<vkn!ei`rWoy@o~h3{psDUD4j
z{E)&|X-~d6g)J!@PT{u{w#r~z3fohtr^DfYlI%%gZwfn7*s12O6n2ZyoljAkM}L1z
z;inW1O8#>S`%?HNg<rMT%rlewrQ%x$5AcYy{}#<AgK#?}Eg#`K!o{D*avJT@_=Af-
z7p^o;OXIH;j`FBXqjnm9r|^$@T_cTuQ#h7F<+Qg<G0t(tDVN3x9jB1IOd4fH%sR#e
zr+gX})cuM=v#?Z3gP(m2Qbop9)2JqL3ctN-<*9CsnX9IR&FooCoisvegwv>-M!hsj
zWJxnR`qJ>LNghzZVEW{Fg$Wy>P;y5YO(P}}Pa~N|DvgAiG-klGeBDwKBhN~bOCv8*
zNTa@z7Hw+wi`}I0>1i}bqjef>(l{fHGt;;zjf>@VRvJyxI7j?!VMAdfVPmCc4cyLE
z*z?k8DitLRetsGksCi);&17H()}$sjPkY}@Ou?5ZT8lJVrg3R0<5qTXE=%Kb4e|{_
zrno}EuM}RD#?@)GP2-w0u9t*iuTA4R%S}lXnsf%+r_mve7nJU%G;U6#a~gNZ<(4#V
zO`~He_uItT1%|pkjZSKk^E2hnH11NfXBu~>agX>TY1}Jvzp#t&K6S?gc_57k(|9QD
zy;rkq8r|%8a%3L1BVb0XyL@}3@u=jF$?|cb=?Kl9NaIPFJtgduMlTwq(ObjyY#Ps{
z@r>NfQ2e(S=-W4q=hNtyMt>WV+5xr(WBFnlFQxHv8n2`=H;wmX`Dz-&(ipCc1Jf9k
z#^5xDDC5vHUX$E(;XfQfZ5k8On3%>JX^c!`Od4;e@us}kozcqsRvM#hwdO4ij4;-g
zG(L@S;-)qed{P>d)0ipwlr*NM@lG1kRVU53O;bHgK|aHVGQP9Yn4QMEGM*zdj*_vY
z!92++`7Dk3X}q7tf;1MUv6vG$jStfJFpWiNd}RA;Vj5%+6X%mOmZY)N<~4hP_^CQh
zvMi0y(^#IyiZs4VW2NL@l&YC=R!PXnv^RZUt$=IN_*&$fG}fi@T^ir2Nt?AIgY}BM
z^=WLh@(m&k^}QuD{z2Rn%;wfK0xp8CH)7kQ+AjQG8avY1nZ~X(cBk<V7v41XNOdrc
zLuu?y<Ht09O5^7=_NVcSRJ`5Op)&TRv5I5MGygOWNY2kwhrfj7WfOJka2mgHwNK;E
zG>({beDYs}pQOC<##5cY)I7??U&IVG;~R1;jpJ!lby3a5i8SD%f{ThS%D5=&qMVEJ
z>QO+Ck@H;ZKX-Psl8eeNs>r~|DP&|bCa1Wl?xK#1x-M$CsOh4Xi`wqVvoB-M7ktr$
z8~+BVo{JKN^3#%U{&!EtA?JHw%sE@gMcBom3=U@yapAaV<)XFg?c%75(_EbHBBmge
z#9bs@BweIjq+R4)6kND8cD*;{=G>ESo5{+azcPsF5mu^-F6z5D)%D(l!_V1vnhz_>
zVs(|1cP<*ZID_tTWM_GA_beAJ)I3|r9yJtcBy22f;^G_^=ZZHKHgj>F$oawxg!H{o
z#0=3z;upJUE^>*rp_YAY>Eco=;T~@zzCDBgWpJ5`%UxXI;!2K82B&9mm5ZxgY;dvB
zMOzowxESYRyo+mHT<79R7f-pk-o*_r9@UWE=%SsA`&``bqP>d_E^c?xNvfM%+~VR^
z7dNZfxYW0jjxKJ~zGHc&3!OROF79!0uZuff+~wkKd2#4y!;M!>O?M1-k(P2AJmBI%
z7u{Su?BXHUGwUiXN67@I4GHlP7v0r;Bkv(&nms1_$EE72!k#E)){AB?Mp@(DE(W-G
z!NoH!o|WTsF8aE7-bJ5MRk5~y3f15B&U}KkypAyMi!NSr@tTWaE?#!=ii?3R2Fa1y
zS4B*(2fG-e=1`?J?xxE`Zo?Vh#Tzb0l=2$s;!PKCSr>*f(G1dSw2Lt+>}?_CW3BN7
z7ZY84;$n%5Ns2kc#Y`8IT}*K?Rb%pwaGD(-);wL7j7(0P<zk+T`7UO=cvq@9GJem+
zTs3RkYamShzH0bL25c^Hu~3{l<pYrqT`aPat(CA?{Nqv?m%8}W#aeaYGig^#yUfMs
zE|$Ak;o?gdE2UzEjQoX?vQ$&^Di>eb5nv76*0}gu_TMO!5q`@#pyiQX>s)*%gY^n!
zX4>~IHgRptpkl@whaX%VaB<MZW*1vrY<00s(e}I8F5lfQ_K>*P;bNzYU8;eh=xZ{P
z?{)E`i=SNlTq+TJu}=|<nX&&x5~_Z+mWNy%cJYske_i~h)PK16)5Q^4{w@jaxiQXP
z5*}3zZ2qkvR5AE57su^5u%r{REW-ta&%k6(9+hP?C?`%KxAM|5PNfVgXOPSwl|hvZ
zs%B6#gIdy7%bc8<v_B<->Jrw_&@m}f*Uq3$2EhzMQq|4CCsHqi5}TL4wDe0JkZ(w{
zixI+V#`r0afs;X0O_pR_h_s2zF(G7}v}|%2<TG%^J+ln5GBAz>ar!b;QM|tJRN0%#
z8)R@s2KQueZw6;(a8?GFWY9teXJ>Fu2Is2p4KrwDy&5Y>6CopWV<>J-GdM4U^E0?W
zs*5tXID-r2)y(>`^5){KkdAE9v1JCAW^i)`w@B40gUd6xB7@e7L(4XjUnZo>m0bKY
zXs0IKug>5`@wORUlfkv(*9)%`nk=-uK~3g0+1o3A2MKQ~WqGUJWt}DLn89rs+-`k4
zX+X>f-yz|higTCv-9nSGO9uC4Fd>798Qh=20~tJ?K~DvLP(dD+@k1GO6=7lBZ16`E
zvwH?TGI&&4*8iBDx8zLmL<Uc0@Ja@+%J``a`eyKa2EAyOLGKKn$>2Hpn*Kg3GgEmV
z$xWU8GU%VdOBuW@;eZTYlqIvgV26U7<(Z)~d|(EHSZxMx$ZK#0uVpYSgCVvHLlwk$
z(Pg;IMo4J#j?CcA3`S=#CWE(>$iyF2%I0l(vF33ZjFpY?rR8{QHYtP28GM?-XBkY%
zU}^@lGk90pX>y+>d?$nHwmUO2m?<F(<Mlw3caAE5KZ6As%$4@N4CcvY{{NkNVFn*$
zusDN{mE}VjFOoY$G3H0&B%frkMB1f77H<qpFP3HSc?RESuqlJ(8LY@)z0BC(FEUu2
z!I})d%wS~(tE~JhRbqB1<1^0J8GNTQ*!(7gZ)LewxK2nplbX~UGT3MbfkJK!^@EMM
zIfE^>@~zf)n~1U8AuV0F?aW|T2D_DdPX<3_@U!?{;g1>bx2`<@+^6RL41VD;UekMB
z9)IulYX%20ILOJPQ2ebNjTw{nzsbH*7L~I&BK~^@e~7RPe~SDiJetAZ8T^yMzx*J}
zdL7|r{(|$E42}y=2qA+q!m`40!t%ljLf$<$?p4(MU05}XYFV6;MfEJ+&0<a#HL|Fg
z#eG@apGB=KYG=_di}qR6$)au+O|v*Ji+Wj<WYHjtGqUhy;m;zIMK+5-7QrmyStKao
zn}4!!vWR98&LWciKWiyR+w8TN%*fgIWELrv<Vu(pn%!!Q+5MahidodpA}>y1p_JvR
z5}qccFSVy<y}3bhW)^2<agJ1H3mcX)Ym`M}#c5JX$U4upO$IqXiwm;2CW~vcxG;-m
zSzMOI<yl;m#l=~)%;HkzYA%-+!b`H=9dOeN)?lVtt1MdEu<TkJaih8-iz~CZN^vOR
zc6AnQOBt9T*Gcl<uw1X^4XXdftao-qRfjBY%Hpmp?#|+71-xAbjBra9w`S4NhNbas
z+B;Nr%A&L6cL?vaqsK~Uc8_&o^Imbfbg_H(fh-=(Vt5uKvUn(qu37ZV;t8weAau*(
z;Vd4>qI(uS6!}rR?-+;Iiyl++aUoNfaeFe0m$G;{i>I>aMXxM+EA<OmJd?$<S@g}~
z`7EB37mMs;W73^lzbyJoGQi4t-ph2fr1nMIadHY@$zos@gB1T&+xNj)49Q}cEQd-(
z-`A{`b<)wezn;Y#Sxi)-kusp=m@M9u<Sjd5qp}!nxp913#$&S>m&JIgD4!r934=_^
zVsaK!6o=_%WHD9RX<59J#dNv+SBdG`%q(Wfezxr+4d!O?UKabZ*q_C`EaqqNt$g3l
zVnG(GvsjbG!Yn?>;!F8{n8l(jmSyp|%s$HElPs2qFP6c_DuX30mGCp=`cx`YIg@f*
zE;%LSEN?{?U&w}z{8F}3zN;kpiVKUz)3|?a2jLspm<VgLSSR^+67I-ieHI(C*qFul
zS!~W?i|sPwZ_45ao1Lk*%7tWm7Tau0Hfi}k+a%wa#jY%NXR$}ZAG7#LWUuWnU4FJ%
zSQTA<$>P^64yzXjvN$O1A=$In#)e)UE8;gU{x*&okUz5cGmF2nIGV-jIW)-O?=1ew
zB9=ou=LP>ai*h-X7eA&-jtfr+kwY1&XjxW-_fyC#<WMb#QzWS<tdv7#kt)KfLStM#
zhZ<`7g*9`iE5bOnL~7?y$4c(0;Ki?}W{J=zWbY^s<Pgjultb9sJ2^xwr*Bl;1W8zV
zP9!Nz3DY^aR-4HoD{j1)C7(mVYKuA47eCcXPRrRh|L1UK4y~;GtQ^kGp=l0hOVUu-
z$Z8vlG|Ax{5py5vJgdDphx5fR5MC&3X0;cIa0Hr*Tq0~?wJk+1&7Hi**E)wbl3bR<
z_15O{9InXW${ene<Qn1C!nQ(F5Bq*?4%bOy2K<H`Zp@*bB-GxVLwoTKR&rC$`>!#o
zZjt0xVMnXwkao(UvzqT0a7PYzieH<@T{+y%Ugy2%Qtrv&-W)#3VTrU|au|`r>p9$)
z!~Hotki&yHJdwkb(ms?!cM;C{t~qoQX8{lA@Q65PKASyqcvQ{Da_A}Yc<$t1Owz!-
z4)m!UdgU-&+NX2qox@8xyqv=`IXs)g^Evd(d8^8EGU%H_pHdN+f^quiFd&B)a(Iyi
z+tUyJ=!{1tZw(upS8{kYhaou(RUDcP%wdos50->~KWBVj%Xxp%$ZeRk3_{KVsAZ@(
zau}Jz%p7J(`=)Rr$6sVr4x@7zqkuFXC*j*UjFrT!5|oe6VS=?`*hx7|&S8oq)2w`|
z`a<nHRx&+@8R8|Cyh>(s9CBEc!$%U%$>IH+w-C+E;k_K@NjTs7GLFf<K$3+yd?50n
zvM`$I-C_wpwqC}CxHN}Pb2yg6@f<$OVOb7;$>#GMmgn$e4nO6vB8M+>_&SGga`;l(
z)j6yYSt(p4{7OYK=2$+%qrYo8z$ZU*SewHSIc%2Ax*Rs<@O=*7<*?rFQx>^F<H<eC
z-9f%dGl8Kf*&@}p9JVXMR-xA^5&F`MUON<Rr-Zw5*e$XrhrJ^FD=V}9{G7wS9Dd2+
zSIPGa8G#!^9Z>U#@L&#ya^6q3C_ik?ezSxH{GP)fs_jo9=MpWs9p$Hh%*g){`BzAT
z6AYL~-8|~$J>xQYRLkR(yjOqOJj&%!K934gRnDI*sbU_LWWbCxt0HYxp*aK?r@EST
z@~DwVO&Qmcgq^A_LL1XTVo4spJQ_&u&m)jWIuAFGU>+d}oxFFvm~`PhA`+S-I+{l;
zkGKpHlADJ^l6j<5FiT>Q%#z6?D}(xZRM)VuhFl(bl~+)NqB!NeO;0>EkJIFGy3iC%
z`5Aefna5dqoSjF*Jeo?|D38V>=O{=MR;AR;&dTX^t_^aYh^dN;;RRX}FU+Hv2qhQg
zak1siMJ~ysg_X1vxipVfR?<3;HkMx|ayijTuFT^q%dgI(t>xE<TwDg%<#Bx;H{@|+
z9<LQJtblfTw9jLC9xL+bz+H3VME^Vn<Z+Yu&3W%d{kP=3|69B@@4dpMV;;BVaeE$}
z@_3YzJUZubN8Y=q!~Z?JGw*%L<wmc&=&L5b(%z#8_vX<h@4bWQzC5~#+%J4U_@MA1
zA#J+m!GI(WOY(@YyRb(oo5%C$na5Lk^vYu-@PzP5m3=F`;`z^vPfPf09?#{`JCA4b
z-Ycs3&6-;Fm)IwdesbxnK0dD=(Wd5!6YMw*UeIXFlFf_a?C(o?ye#|i{1%YMt9cAm
ze+LO?3J2#gB#)sSZPh&5Rz56`;o>8N4|C?^@rL+F;hVy@grkJC;b?FhlgHb6jLl=5
z<Wq#>g%gAmg_DGnh4f{Rsg_U6;~nwo!Wlx7C8I%`oyWWC?3}!JkL<%d=8C+hzRzRV
ze3+ld`*|$jSn-0thIFCi{69*L7)Os|yD0Cy2JNFf7AwWad3>e_pX9NG#}2${!`ZSl
zj~{u#DvudzE>mi%KGz&z9PS00eUZnPd92K1RUZBV0tI}P$Lc%|=kZ$}Yx4M-hg%*y
z^7uv(wkpN9d92N2T^`?QXKl%2y>`t;mBg?c)Lh38jyyKy@q?P2(wp<%AAr(;-C<#@
zheN^UHW_TsgS}>LI~A6P2Kg@W-5RSsdF*AsIP>#3AeWytul8~G>Ax&-;>7+ue$mi%
z1P1a(FsG1q@j;Cna~;x=#eelZlE?3P{F}!ymCZ{2P#;;_pDN?8JdP^M-+BBaFAgsw
zaCdM!&gH#;3I&`{3LXL|fbud0lr5lK!L#hZf85~zRsa>Hs#-ub$tx95xqvDK@2KIi
zOiTVf=qUwMFQB9VUja3E`o~}R7QFSLW&u1LI99a^UbNZ;?`f+#1#cv|+|?_1dz>3b
zfN>a*Z+T+gU;&{5&M)AC0>TAE3OKER(+hA4h!#*Rpnd@{#b=6a!5j8?0f_>V1*Ft;
z3&^O9v{JAh4jNO?lDUXE^(8MX7#j`Osd8u7;Trh{%5skI4B?r=vkEv{zKqtefJOy0
zE_f>m$G-{7tLOEr0v9VT{<3c>Jg?vxunbP%3kzsg!2Jb0P{2h6TwK6q1zcY6uKUrT
zxq_2iQb3CWTCzL9r3JJSVRv}MwJxBIMv^g^j{D*YWx1h%8w<FyfU63)x`4I{#aHKD
zQ}F)AlrgU>;9Bjhx74KM`hxdPKgMaN3S06?o&wqz(4l~v3b?s|+qApAyj=e^T(>H9
z$AWi6bK^q9f5K%MoeJn&04MMr3{}8A1>9M{U8V*dI}CDf!Ta;v`wHGhmo5eG?_3#~
z1#ppnkj4e{DWGowUDYG*j;B>vH_oC09?^tk9Qt-wgdW02X)Hqd;|25-f5J+hEZ`~e
zUP6ACp&85W%^g?pF0?)?`Ev#Dc-$uy_r>$7d`JQP3g}<J0FB#A1-vZz3vzi;^)SLK
z1-x3oK#dhAvpFH*83p;E0tQQN&N0~8q4MQ^9A3Z(&AOQdyv|D0Wv*Hym12riZ;ChI
z^Pd{<Q3Z@HU<^xD5RU(Z0>-Kr<7COf885=|oX9;TK3T}6mE+9mG*ywOaaM>h2)i)7
zfEnzgUEF3BFk3r|yMT+#yV?tL3Yc5Kdzt{OpN{him@gF<Mq09u3kq0Rzy}3<Sn$60
z4X%$N^|7dcj|x~^z{dq#SRc*m<C6lG6tJ|2Pm5Suz^6Qli%1qRlg|_tu)cr|9NRir
zR>0>4EH7Y10bdlbrhu<GXA1a?|M|;hzkrnm?5yeiylX6fl3W+7IT}2ObmspOFZ=UA
z<EtK2$+rcp<r<>rOq%fiFN@)ON6TWXRwTMC;8UOld|$w(f>%aK5xydRC}48|TMF1(
zK)s@8ysd!k1svxRs$Bo$kz2sQ0(P*H0(KR!yMR3f?4^tTU$Pkwt`jGI<gh3O@h9=0
zg>3FCV88e;R`M$+Oa;&WPyvSv_^W`U1^iaP5q0O!0-omcKLz~3LyRX;`ajC@BJ6Bm
zzV^9*e>j)Q;TV@?jwdexaWT=D%vDMJpF|W<ridy<R4t-x5#@@gR7B+>$`_HTi{n*L
zq3Ded-76NoKg4XT?^7GggTwemE$~^LYDJt<M9m^<6}={7RxhGP5q*^CIh{4tE}~8m
zb&K9ipq$UGah@#I>jwk;Sg+&lIDZjcPMnAo;S>=lB3ML|vR<{JBEm(_fct{o<c@1n
z15wTvuK7j8XvS|MJp1CG4RP<6N2-W)5oZ>0R?!=}RlLj1z7&xydON+ordCd>d=Ui^
z4kHUI7QIQr4xU;BqtW=ZqW4tQ=|wasdeiBQBIa|ssN&(-MKmnp(IOrzqLJo9n<6eN
zqA}|!;v7}gRQ)|y(Q5L~&H3`@BF-=3f};0Tjv1SAYVm_WcyC2qB>Rhn&4o;QNf9l?
zTM91~wi31$a+DbAa`GbX=FsuUe|75WqBkqn^KGtblDC!Qnj)?(;<_TPFXGms_u|SM
zB<Cwh$!T_D5$z;tFYF+^NqDo6Hn)h-rK6SHR>bY%orIl*cNnekF2nT()O(7!w}>Yz
zpi2?mi|C;W@8kHZM-K=e6h0(m2fG&0P5fcuBSL<UrfQC68uv9v_3<Kl7V&|m#}iCZ
z#G6IDRm4+8^eSR-5krc2x`^II^edvjX6!RXEZ~)&BAyi?f2*!1=~G1CBA(Z*V3Qkj
z4JhJ;B3>zCRav}f?O*0D7U%v7a1Ph<=H#nI3@n12yLgbaoWl$<RP%g<@HI~0G8k6G
za3x~=<Gce{2d~@6Z-|T(a+w`f#ONYs6*0SrF^cd`5z~u!TSan$jV)rF<>QN(AU@Gb
zCKWMRe2SG!6`3YH!lRPAo(GzmES1L&kKX|#W$~_Rm?HzKXg0Tq_llUugQAG{rCnGA
zS2=1Ih;TLVxIWfDEMid+A89f9xQI`RSj@Rv{p6DJdlm0c<rmT=Mck)fdN$#DRm8d?
zzSE(%tccGwNtPGEwQEHYUlj3W5i7YPiuj60XcT>GVp>^L*8khCE@Dj)U(2_VmX3}U
z@QoIwc064vVy!yD0cUf)`dhC)O6p@n5gWPM6tSs@<3*g{%3s9hA`TUCxQH!0(u>$#
z#GWEL)xfqQc9p?ZRk2;Q{jZ1}MeNkEzpIGOd>5`}Ci_CNw}>C<RR#x(_(|iy>}lQt
zFk`~?zli;o|043M@Bmi;t(lxi&3XT~h$BV(S;SvO{9eT0e2TLy{@{Ms3d2R7xsGz&
zxcF;&dmjWm+<2D7^<Q)5n2w!R6}`W6MSYa1kE-=itv<@uN4ff_P#+cR|37rS2h<cr
zv^BcPIp>^nPwGiMJu^K$C@6v;ISEKIfS?!<5kv*E0_KDuiinB{#S924X2Ap|%$NnU
zVB+oCO?$cjTX(Hld+j=P>QvRKQ`Obg{q<+2Rb>kkE0_jzN$2QPvryeaq$+Ay;1z+B
zj_Uwz9<QacwuL$t>RV`Fp)Roz>REV~6P%kpO&kV){hC-+7Y!{mvdnNZi^x^IsfA{i
z`QOC0h2|DoScplXB@ObwI$Gw+-b#|z!ZyOT!gfO1X)m&+im}ttLMO{yb~_8Z2)ha?
z>?YFPLXS|=(?YM1TkK=VqZT^yaS!hrEF>(<QkyGl=a96JvXHirvEW+BTi`UwT5wdh
zT+>`@Ug1B2VXj7vV^^?HR5$Ohiyzc?kNO7=%$32ie7@8|ZwrT6INU-X3o|X8Vxg~v
zBP>j{aJ+>hE%dW6)WR?eM_K4^;TX$YO$LO17(_c323p4RbPF5*Ie+zx!-<0}3<-P3
z<ZufkER3@--oi)=qb!WEFjfv99s0Am#)x)~m7E^tkTE&I!f_TRTbRN)u`o%)I;o0r
zI~Dk&yXXOy3Woax3n!}T85T}r^DLaKDyYepOqX$%Ww<^r`{b0LO1HBX{spdu(=42B
znK+-wZNG&xEzGxYu4S$x$*P!b;Vg!zdOe56wRW9tVJ;Oc%(L(%pCL9f<HCsLATF?Q
zo`ppgcGWfi1DZ37Mb1}~F0inqA{JU^7sq+@o(AY53m0>gEnF&{E7>o_!)5eXMO<#-
z3JzJg=cN6`8r&t8xq@(i!YRWMVP~(ga4n-EYKHzg3)eGvA}B;~g9RRC|7_tG3pZN0
z$->PRZn5y9g_kTWvv4c>Zs86K%Pp+1aGQmdbh{i*NAbrY=I8``m4!Pk+;8ClwRW|I
zyDY2`XAx@NZQ))EYc1TPP<c)}pZhdeUAb6k3)-2t_8OOGEj(x8Aq(p)JZ#|+3tMPh
zmj({jdJB(gWFM`F$1FT9{)A;tKA#jP;qNI)p0=<-gp!RSn|K!>vRN1u<ml5fyYsx-
z{DOt87HU^D*Jakr)^@9kmo2<v;bRM*Sa{XKYZl(Iu!C;2uuY}jvansV;|(Qwjo{+&
zCPP9-I4EyR&dWU=vXkqTWsbFXS$I#)W*a`V@V<o))LE8g)oeh5t0LX5vUC)!eQMz|
z3*T7ymhNKM1X;pHGPRrGC&HG~?AOZT-o9;Bd?ye8U}2Ai??aoch-!N+{3r>NbOrGz
zDl4#mweTAQEMnsPcME@5*k@sa?qV3OgEU9>GeWrdTlmYu-xmJi(i%a_2>!KjKxUgn
zfCwr?O!pf`P*J3E1XUuaB+kHQ7JpSEs2@Rt2&zR;J%Sp_Wyjgbnh`VQYYA%$nXDsH
zS6D9sHlD&DL`i72k+K>KX`fk5WwV*Exsa;|HCshYNOy>!V+5@uXcIx(2#&6a_7U^v
z64YrIF>9}}ucmg2pmW6RE362*M9?*Y?h*8mgyBtt-DEJ(=Vh*E1id0yQw6_Q00Wo`
z+?hloh^lQdTI2dJObBgZQpl`S1ZnY1D9MVjQ@IG-h}lqa2f`KRJ$_0e0xyCWB6u-^
zQUrbk10xs|L0SFf(!@VC<&gDeYa?dt4j1+j_7zfigvgN*^b<Ks*gwo2K<9*<*Y{&0
z7#zVF5feOY!;lC@M=&OWp%F6|hD9(uVgh(X#H?~7BW62#Srv?mm<<)L?~Jao5gZ#q
zLte)t7#G3#2&P0ZHG&Bd92YS+;FBU)Ul|i4+RtkN=UO*8Vm4#EFgY5U<0EFdqmdIL
z#=|G7zn|(aMyEwEonfqIoEE|95zL5SW(21ww&@ct>Fo8X5zLC1C51nJGlz4BTan4y
zdz>k2vm-bwf;kbK9l_-hTtS0ulIp#TL&;CTMX-Qlts?UyI9FMy%JWT}$B9rC=PUOD
z;X>geAzOZ71Q&^4EWAW`sgMO}llG~0Wdw`Wn5z_HOCne*&o9)T_9)$<TphtRtWMXI
zYa_TWg6p~XN3bq}ha<Q#f}0qP97O){uW)$;D@1OIV3`QBZWZB%nf$g0Zjay&4*DTN
z%2!3OI@G^2f<T$_yVz{*Pio?B<=zv)y%DSxzdwQpBDn7mI}e5y9#Sb5=Z|HHkFci^
zJSm0s!bc-`EYyEogq1!O!P5~utK^0-_n8Pbif<AI1~-SfTf(}YljM2fR$<VKmm+3U
zu|pB^vON3>R|CZ`FUqfpydJ@}2)0M?hDPL_2;Pj~EzY%?cw3SS)ECYIt`(#B;(ArH
z-Q5|%yDT2T`w@H>!S{^wiufRc-Kw2e@DEjX7b7Zyj~PPT{Bx`&{8Y$^|5*e-Yc2Xh
zYX~>76n+`OR}p+IJ1)2VQvOC=Fk2da7=iEqM6icTbkxlKy%GG#IEkV{)XdGFBKReO
zU%8&pIOl@w)9h~%{2sv{asus8!oKWNZ10cYPp<#`iTow}JA!{i{ta^vh;Tqzwqn%G
z=*nt9r6{<`r+=zMQ8kKcQB;qjSrpBqs1Y>*z+X*~cli~FC~8MhN6GqOZrv#Ag`6*$
zG>Do5qJ~0}Mk0-)Xc9`AM$P)eELv_61<eMv@Q8zJQL89gN6{vVwp5Fn)rK>!eH0y{
zXju_f6dj}HZiVYZuP8c2(OJFdqK#JfD7r?`EsDxIdg3z6!%RB4M-)A!Q0KsbH9RS*
zXl(Kqi6R<BOcvroCyGQAb`;4dQc+~1X5Yx>rK8BG{oFaU<6}E*61Z$~4a`N&%0O#e
zBJxobq9{h;MX@Z3TcapN&9(dVD9(t&7cWQAJBq`iI6R7>Q4EWM*YQ446Fh^W=o`fm
zte2kvieiA8MBY!5qlEp196sYTl^Pg5cz$?H6oaE+lUni~wl0QfP#8kPqZkpz2~nKL
zrq;yBD5gX)HHuMD+)xRlqvq^ljM_F<$Oa!9#W?Ztp=3f7$Ax^N$fPJHhmx&2M&Q-<
zcvh-?6y3hF3Qme*I(4Gh2TW5%oD?&nm>I>aC{Bxl(~}LR15aU-xc&?GS2S04YBETe
zdu9}~qnH=P{3y<nPgv0$U25k@|LiE{GF0S^O4`hDnxCugzsEN)qgW8ddCEOMiX~Aq
zZ7(3<=0A!>QCt``w;QaB3;0EflZ&IcB#KL;xGah*CAnO9g^**-P$csHckv;TrK*A*
zzbcBW)y`{#2b!3few}i!r_ZA%dT)&47J2WcC~j70@j6a5exrbqz`K~`QLJFh$IvQ<
z+h|7>A%@$dxFd@9qxc|-RT}PfQ9K;Qo#J%Y>L~6KUn9Ibl;0zAuW+sKKH>es2ZRqs
z@sJ4Zcoj@6JrczZ4kGveQ9P>gV#gm-V;*OZqIfcjr=oa`6NFEGh0hB&2sa8h37-*e
z7H$zfD|}AKk)nmI;x7na6uu;US@??ZRbf!-b@6S&?ZP*NZwlWMzAb!57?j${Wrypn
z`o-?>44hMdef*H~UBmQG6d!3p{w<2%qxe|-6Aqk4>a*y<qutM=_#%qkQG6N2Ptsv8
zzKY_TD85zlYax$?zZ2OT>U<x?4<X;f^;5z8qa;ky2!B6E@k_{mjUtf$!KtJc{v9>P
zCi|oKGiq*Zxzk_~_T?|F2Al;vmf697F{#mPet^f^=2(X3NEKpcd7Q(mKn#`0W2h2C
z)fk$@&@_f>F;tIXH2*+}=j}1njG=A}^<t<M!z~q2JBB*c?`DF(VNG<YgeHv)uOHKN
zh@l~WHO-+!qZk^;Fj=cN8^$GtLfUL5%@(SH1)Iw(32P*_R@?f;a8wL!VrUyfyBONX
zFp)d(7&^pEj9D>6V(1t{r<hrpJIBx~hVHe{g{3r$yT;H>yt}Z6u&0oJ$V?qZH5Z&{
z3^7?w#t@Go5i|47j+v3A0+#}|nG#;FpQ>oq@HA_WAsaJW{ljDE!;Yu{IiVXvK4#t{
z<*y(~F$OP&l6YC@3)$uk)zDk~uu#HMePg()CXR^VNE%n|bJQKKifmH<m^p-85W{&f
z3}C4k2F5TbhB+~u9m6p(436RS7|w`cNDM<`m=!aN%&-`S$1pC2@iB~uVWfn|vI{YE
z(c`euF|+27kBOPdK32*0jA6ynj+&Sd!*LQ$j2(QREqJSK5(hViDKSiqVVV?r)Wq=&
z9&Y~SYCd&6F@}@W!7sS)Qjey`aB>VYVwf4jDKVU?g7@*5Lf7lQ;kA_yK-u`y=+BDg
z%bEOR8Ai^TiX4*JF`T82P=}3~tAV3e&!KY~nR|Bfc`?ja)#v`_;VL*kh6`e5a$On2
z!Wb4Q>+%>bjNzgfE{mC3E{@@idbm_syz*Yc5$BuXx{qepSRHk)VEcLRQ`=OuIEE!L
zv#DFk;fvvF^@tm)xr&@?*k9clP3D^hG29SCZXDckxG{#CVz7%y7I8DDKn!COI5vT0
z>er??o{8gD@#QhB5V=k0#j%o?0P#D7U&gRXgx<I_hSlPC#jqxZyT#uT-oskz;@%k6
z#&BN@_s8&L3{R=G4+x)#;X#pyglzD-7#`**^AaFjFML$^n2=eI$52sc(cHW-km!)7
zW7rbIvvS}D;YQ)67@iT?ETm?l7M>G-DU>`fvNeVmL|zQ#!4~mlC0~i*)firj;q@4{
z#qhR-+c|16ycxq=Y_smdctPjD1zU*2bch|?Q{3JZJ7QQ2?2O@E215+*$IKf7p9wz@
zGWlT)yF&g^3?GO56FM{GtMz8W=bV_5><;C82ji<4zLwj+iQ#vVZ)5mQ<og)*a#>S^
z{}96-2D#plA79A`e~jTL<^C-EMfj`mH(?#kkw0W=pKyN+e~SFYH8YO3ar_;_KlC;q
zGsV!1v2=ic-2}u@A&!c1G?j$HN+Q+bs2obF#8Fk8pB|z@^*Cz8Q8Ub~A4e_m+QK@a
zylx!z;+W9W6nRrGR5ValLt&#h8jCa$@|^^#RS=Rim#{?~Ek!746-Vok^MhmU;%FZ?
zuZCvh=nyw+TDLg5i*$^mlL&>KMY;&P3WJw9d&FUfIz2^t#bJp=gi&Ek7#Gr7B7X2y
zSn{NVsW{Ri86n%lEJr*iWYQJM$599+#n4VE4nK}^9KGXM5#}Bi#|ZJm<LD#OH;zGJ
z?h$buDc(<bl(2ss14ND%4ivI6L3`MSW8xSr;Sk|a;V>a{hl@~oWE`X77_H=S!ZE_J
z!efQh9~Z}X@d?7Nd>5DZuyIU^V{#l*;<zA=g>g)c<M=pc$8lC1C&Y1L9H+)HD~^-m
zm=?#$am<LDzj;hoGdMjksQvRy@l%A%WsStslsrSoEy3w3%d9gQWBTYN*ReT_WUjGs
zoFlcf8MjT$Z(bbp<5=6mTr$p$V?i9}OMwN?<I35{RKb;p+bwPYE^diMaa<V34Gge2
zE{fygI2OmTB#ui|>asX4kK<DDD)kWjQREd$UKuynYp(6p^i8~_5?&L>wIWxk4Oi32
zn&zzZI?1mW2LBb5`}~!B6(^2m>dVc_qUJ3k)2rfEk>x_}PWk4*ZQ?8AxIK<L#Hqhd
zWK|q@imVRhcZsZt<L*#$PaOA#d~F=}iQgZ`193bk{*W-Zz6bblsQ-w_df}sSJSOsZ
znEON=Pl`V!d^(hGh-0JpfAP6l$&ZCwgwG0}V-)cdK*FtYydd&o950Ey9LIYiuLxfi
zz9wX;*W=h0^6esT#PKGVJFPQs#qoB?-x1jn$4-%VLphDSuYw;4KNRi~ek7y<?@2#l
zQ{(t7j?d$0ltANz38ydA{;!0)<M=Xe_OX;-)C6D0@lD)p624XLcZ$-keE(BP>iiJL
zo{;a2<HtCDisR=veu<;Hj8o^=IQ|WFev9MxkpCgFPq<(Br|>V~-@<={9LfVC2yIqK
zprUxCP*Pc>im<A%TH@e-uSTd-Q>0b`wL?jr1nP>{3nldvXb|#-BCNfM$Vg$+1ezt#
zJb@Mo^dZrQ#9JoNDuLDsIL*wwX0O{MaCm5^ZNdy?y9C-N&>?}233N&z$1d;|hAY2F
zEP*Z}U4`Ak-0lhV5bqgEdWl#GL`0&YoI@NBc_INj<jDk5;^|P5Ngylkgpvk)dM=(1
zC4~fvA@>p}iTk0XEYe$e7(K>+$Dm%b`+e2xBh+Q~`bd#}!lQ)!g#!{eT7)_SMFt6v
z5e`mZNSHfRWLN^jL&=DQc{7j&M};09oxqrovkl`C7@xosE}nETA%Wu(Sd+lr2~14j
zR=rg_H-SkBOio}*!n|ZVGl5eQm`ddNk0d9EpD2EkaGG$s@MPf(A&cL^V;^z8EXpK*
zvl2KhVcshyKRtmnnB@A;>Li)XEa}e?jz4hVY!SZeNd0pX=H2yqYQTKS&rO(@lNX4e
zm%#Z6T#&%R1QsQ5eF8Vg8y6;UMFLkQa8UvmCvZu^yp;Y?HC!%osjOX=FmFDykE{{g
z`6sX>fu#vtl>m2@^|>?QE1>+h?=r~7Oa-n{@oN*fPOVz2SL|r{#sqFkU_}DAC2(^B
zx6rW(EGGw+k@GJ#s+#vLZ_<m|eBYSz>3si?6(w+I0;>~XU3buC5Ae-xj^-+kV2gwA
z*7Cj9yAs%;7kyddJqg^Kz-L)}p2b?WCxJFuw9VrF1Rh9Wu8nhSJea^k2{g3P$i}(^
z9!}tcgt^msB!Nx36MR2`^$9$hz+(wKp1{@wUSNbI@Fb&x4{8&5Dq&7RpH5%{1BU-7
zxh6Iy%mt1&t(y|&z>W9a&m^#!bDX<TJ&N5z3;h0@uu)Y!&vDTMO(NwlCh&Fw?<DY2
z0xwJFm4w+Uvp92KP2e?70WSW+Z3%1_c|*9TF5VP*OZcu%n0F+wGl6##cu&@N!}1UR
zG>Uh)70u2hIFaV{norO^Okh_6A0_Z{0>8@->-bl|34ETw7n~*u^OWtgggHszeIFaM
zTL!;L;9HR|6Zk4&o{KT-Ye^2&!*>aMpTMsP{KiGEj>-BVfjx2&&vN(5Ek7pk6MdDy
zFG8MmaDzb{B&^yCsj6nn(U1><)vA37>`&lN8L4EWvW>qI_*=<;5`b+kPyZ@;K*+e|
zh*Ypq(KenWXWxlcY-6^%jT$zp+GgCRabsf}SMv~wSkp!w8+9eAWuvx8pjOXDeI*;%
z=2)Jt4sz*I7Hn*ro*rqVpN%Fqn%Zb)qq&VPHoDqqVVjTccIIktqos{jwrLC{t!;Av
z!qGXi7uworXPft$+S}-8qmylJNITf(X(mUXx8W?pgZIw1dGyR!?PjC9jgpc*RC|`q
zv(Zz$myk`eY(&KA+o)|$;A1x8A_<`_ObS!Nw9t%&2#w@yxHgJ5JR5l%-_<iAQLxPk
z(td3(*+Tk(t=ggoPri+^jozyFaQ2a|wsEW8)8GcLuWioFj<C&X9`$LTm!!R%I5zs*
zINdf;N0$z;ahx=dwlR<`v2l!z;WkF7%Y$tU6&Yfi@TN~Vf+WLi^Rg>jHPXf?8)I!8
zYh$!+o`sFk@X<1><Bt;JIAu++G2TY|Mn=NnW{~jydLjqfHcyHt+c=R!V`GYqscg1>
zC#d~ADq-JQBXOFI={9EAm}#3Q_$S-oyBTy8yGhUR{P1=j{@eJzB2JZOX4yE+HdCA7
z#4{F-?-@3#Rm5Gq1lX8un;ZPIq&dgN*|sUp+kF1$pLsUs+xXYU0UPJqSYYFI8{2H0
zXXAVu8*R+t$-koOGCIV@LVAPGvTa-_mtJJ!Vm4AdR@3y6UA|OFjw$&Svar;~RW`1)
zvDh}JNme~9QP;*-Fptu%wsDP(hcu6_wau$6*V(w<M!J@XYI=zyeuHgROSbt&8#jsH
zETr%jk!4h~vE0TA8@JiG!^SGfR|;<rxUMF>Vz|@BY8&@S$eWtGY}{kxUK?v{+%0!;
z>}+~ZM+aO4*4pM)o#aP4O{E^-C4fV~X9xPR87#6+U3l2WBO;Wn7kO0pnDB89gvgV^
zr-ame+Qx>E^R-gCeG@B{_cjYD*<#~a@#jLx^ES4I`~@2?ioX;}UbgXy_^YAhH4bhC
zW1O+Eonv9+eJv?(FvdjQ622{bN4P_{Q^=*}T@jAa2ex?w<O|KR4{hw?B$9;D^|_6Y
zZG6Htv!Xc+{M5#03}($x4k+g=mnnwFZW~|P_{zrDHh#77n~iU5?5>M%xiWBVX$#&#
z+}{x2+xWr89^06rqZsF0Quf;T(Z)|&04r5BG5@oTUu<xKEY!=!l>DybKFw~v7x9PI
z8CuwH<4>;qnliNckBt1S#h(v4xdJrj3Yj#dP7-yKsE{-(bHyYoCDFb<Dl1t%X<oCb
zBCMK3wWN8tz_v}~Q-CCDCQ&PCR&xGoC(XN#d=_v-CDXim)J)>r48F^l#hkS?NTOj9
zjgn@LH&3EP5{;9lM@^Dwnl#Uyn<dS<$2M^8u!@#Rv`S)s5`QMqTBW)R+X!i-Z4&Lo
z+Y38{@{UP#3VCOdF2b%!bQ8I+v1vn(Bzh*%D+w!!Wl7wcL?nr55+@{aViK_=;z<lo
zVnh;&B<v(gN%%=5lSn0z5ACPvCGm_f8_M@pG*#r3bcNk3pdeBddct6LQBI;alS%Za
z2a-6P$OS(M7NHUT`Xtd;`s94shIpis{pbPd3{Y~2@aQB4iVRBPm?Q=#@tqpOQh~vs
z$j~H)NsS9EvqmN{Dv9w)OptJN65~Y12&phOiDM7Zr=&$~94E=7Bqk>@Q9NiKbAwu@
zs4r8Mb$rq+=FB=NiD^lko5X@7rYCW75@#hbCy5zJ%#`NoNt_}=<x@ohYqP{p6VlWf
zq0X5ivqNvN)Y(bQlW?x^oKW-H%9x+TdWL8v(~|R&I6sN&lDIyJ3zArv#Ns5DB(X^P
zmnO|6^1>u8Qu5*?E)i+0vVk)%OXBh*u8{mnA<gm+WLS_bT&gZ#E%{YpE{Ee9@oR<u
zjm`~9-XgqFcvBKLi_jp=^2ZlVmnX3ziRY8pn#66KK}kH$Ihe%l(!4*32a>oWiB(D5
zDao27?oML0I4#_DNL<~M#M)4PuShUJ_t8bF@j(e65k3@Zt`m7!SW7RNuTSDpB_9iQ
zXy?f!o=W0bNuCyNNMfT%(B)0yn}yFX2ISQ(O0u0C@#n->Nd7_+FDCIt61$UlDT$Yp
zcrS_flX!(olhoc3z9xJ#iPw|ZCca(k*c;+}tAUmo18*t$wvZCW1969vJB9CR;8^ts
zNqm^ZXA<t>YMI2x;=$+#9r;9(Pld)>Wqd9k#MqZfe5K^CNqjBxeG)$;@s0Sm!tVmP
zo@eb5r=6cf_9pS8$bYNB&r1Fx494p>@!ym9Lu8+j7MS~25`QN#D~;3A_$P^fxzeWa
zd<qAWKnlmFa6$?dQmB~1;VJY<p;8K!Q)rt)yOi-sl@#iy&>)4XDO8iBy0A_PHBzW4
zUQ1Y8cq5-ygsWEF6zWOHKg*)2hAA{svYD`P3d1CCq9hfXroiGP%~NP0VapU+hq<j%
z|Fe#@Ve?c=`xH8)kV+vfwT>xtOQCxTol@wWLKg`GzjY1maL9V3&@+Wt3ULX038O+Q
zg@_1OVD20Lo12LgY{>(MvysU#nGtbQ$fuAMcZ4}1AKy^9kU}wqvLv36LO+F4$Z0m{
zd+$(kSjsF@RO_3<5h)B$VMGc?rqGXm3v^QGFES*B0Vy1vI=H5>$Uw=D5e`b3hx-%`
z4oaz0Lqi^Phus`0$+4k)R0^ZT$AprxDRWig+!>d`_!K5cK2dm_ke372GAV`0DNK=M
zs*pl<Em%)ZOyQ&yu1n$i6sDyxJ%w{qSdhZWDa=UW%oJv;$jlT@<v8*S^ObRmB*FD`
zRtl%3aJnRC91;&fFV0F~uCnF`S?}2*%soeBo^ZbKzmYvp$t5YApTY$xEKFfh3YVvF
zMG6-xi*_y(xkz}i@RAfR72y_<3jev0{7T6e3+XOOmWp2`Wb*11u1VoqC4++W&kYRz
z6jr8iyW}?sm!)uXSn8Hg|JD?ii?0ygCgde4Fm*=?t5SF@g~wC4GlkVD+@Hb&DcmKs
zH7VSkI;eS%B=@GUR<35l_@i6ylboCe9~6H$g-1jl60Q^S0=Hg-nn9pG8ji>ll5a?1
zV+v1-KP7xx7_@Vf_%kVN772!fSzDB(&1XYvTT^&}6E=-rX}p-iON{3f{z~EH6kbW;
z;}kwg;nlFz&J<ot;q?@@h12Jq6t<`Eh7{fuzAb!<Q${zoLDf4X{BP}gH--07ct3>?
zBxieerSPG6u&Pt?5hsFX=%*=sMz5yuLkgcu=c^RHPT>o6VYeh-hIZJ;Z^XX~CEs$4
z^lUm<srE?zYYM-mus4MtmHbKgvyf`Ph_DT8!0#d7pTZyF`$9?39d_{V6#hw}aT-n1
z_?L@6m-MuWO#Y9J3TaeNqlS_d)2Jd+NmyCP26InN<*I2^lZ2e72Q|~ErDWYSYKL;x
zRY#oRK{fvBrBVNoTuK_I(MXbDO=y}%vozYK(Jp;3GMlH-B8`^PX_ZE65%#)G8oO%$
z&#stJ*FLn|C5;YgbX2la+MEvrwRcV<xcV^JRk_{L=$=N8^ug7Ya$e=FG$Lt?Ok-3U
z(KKRdxM}329~Y+6NQl_Nq%b86oSYHQ3LPOW=h6uFiiI?aX&jx#z%)GN9+t-8X_V6N
z!(LOroJMcu26LoOXy>Rj`lfM28b?afFO<{UfoA_uGC+jFL7`-*$T7mfX$%SFLBU~Z
z43}htFqp`r(-@=V^fbnbOcAn$$EGnZjqzzrkYr*gKTd?BGl|YWq(^kl)HIGy<AhLi
zn#hU5lY|k4YcLH@PGg3IGli`2lr&Bi4;p-W8fS2zGw77TnQ6>U<CQdCP2;RI=A^MK
zja$<=JB_(%T%5)wX`G|73)1G|MQiiYm>*g`H#B=*8t12Rfs%`a3x&b#W~mF)xJVLm
zHsez9YlN4jad{e7q;X{$OC?!+h~|=zGa#=LzdDpKp07>gIwh}9<EBu4LmD@RoORut
zKDh0<g%d=3p5<w*NMl_Z52tZksCk#jO5yEk+>yqrH114e^&w-y?r?zEg*9p1EzNs`
z52SH#8f(+IPs#g*ywRX0rv}^bpd=3ogJF7v(?`i?g^#AON#wCK9v68+_;eairtuU5
zM(bqI{tantRBm933&k@^ZWglAEot-mG0Ah1JfFtaG+qdEUlMtdvsm7EIh3=Vuch%i
z7qkp2W=!#IX?&8#r)g|Y<Bc@lOyeynzb|}SxHFA+LJK=YxU#()O5O{d|3Mm?E8|1S
zcZInhrSWmddFb(38lR`}OB%nX@kJWDS(eUE<4fs$Bm7GEwJ_Myd@CNf;)gW$r16s^
zZ2w*b?T<>bca#u+K1BaF@%?H1De`+7e~9o@c3(K|e@Vi!|D^GE$XVULX&g{Q@zj*L
z$Q<-%r3@-(&?JMV@?jNW{S2yRP%VS%8Pv$2u7oUAGlSaVwS+-0D6gYr(B^tP0t(L`
z8f4HgEZZo9#)qf{%FQxpo<R%ATW8QFgO=j04$*9zK|3V_v+cu{caV^^bFOvHpi2f9
zW^hpkT{GyGLEj9Hpk@X=GRS0*&7i0B?F^C`^vb|eGLk`Dgv&)#Bqn6@5+cEsC1`C*
z64sc`nD8Ls&&i;-<hcyo4DuNiGAK(@6qdqLo=DIOKlD<tyErU^!$V1*L)4DUpkD?j
zWN;#d8T8L!WCo)$7?8oy84Qu;K;dBFAmK4`5oaGe6-3?842CI-vv0V_2qD|gu8kHS
zo58UnV}z8C%V50t)C?wMaGdz$3?_<964D@lL8qoj66}GG7Z2v_Nf}JbU~UHIWH3F0
zlev;-Fgt@8(m72yGlNqyI5mS=nS*ymY+JA#1%5s~gEOSbPmxe^mN-dpQ#nV;voi;G
z0`rtSH`JLg!bUF0;JggZ59JFpxImm;ps7WnoPEDIgG(}aAcF@pxHN;yl(kZLc?L@}
zxGH0o$}1$fQn)ySB_hF{-PIXflfkW$(D=0(+`z6Wd7bcj&Iql0H-$R4h};}T!m=>b
z1NSah?ura<6A6U3XK+Ubt1`GVgZm_3oxxp)D6Glgo(%5I;BE=oW;SN6I7yHs-XBW1
zC3q-<bs0RL!PX2Omi$Q`>WVxfTrYf7_*e#yi##FZ$um#3Y58d-w`8y(gN@>wGI&OW
z!%7AIHp_=3&r1HBkd5I+{e=u(%;4<|-jVR73|<p?S;!)<h`cHb471lW*e1Vim;6oP
z8yU0fqodvmOL4W|k-<(SzsTTSkzE;ll)-x$yr01bVUs=#M<H<0$I|>v_(=wzitxR6
zwuJUSS27rp-QtvgDe_eYUyE=uexr4R7v=9W_<>6<A8}@}Cxg9QCwU%{#gClVeAOp|
z-!k|qgP${Ia`A89evt(}c;dsd-!u3lgTFHPJA-{0?9bp&uA+6!^Y`ZZPy?&3-rVfr
zdF;=F`hVD3KL5?&fC#cCSwmPMi;5zYRLY{Vc$H96HH&H?uP(xO)u>rBi&~+)b{2KS
z>t<0;q<$8S!rTTT4YTGSZn9uwC7Xn~e1ET57R|HfyrM<cG`MBfJQrBs2(7Yaa$T=S
z5A4)59uG=kRu-pajnCU>(IJbDS#-*xa~8w1rl(!9=IKW7EDp<}YZl$I=$=K7EFvmG
z|M!%dl|`?td0<C>Qhz1S$!j5+MJ#JZA)ZAd3tQFg)04HNN_knNvPfsm>(ea4UnYwz
z)w0N`M}@4ByW)8vH9yt+JjF0s%EHf@$0f&AL|KG<6#tGuWsl0De-?ejX{v7)M~EL8
zO8T)nJ*gj%HIGmSW-%y>qqDe{FG4gll4G*wq0EphhGsFC{?QZadU{?nOlA2uS$s6f
zUXRFPWY#=GAC<+JEXJyjqq8QLk8h66Vq6x}vY0MMjnCr5EKZUeCy=oHSxi)`CWURA
zoW&IJsiEX}krRY`&48sil>9?}y8YxVW@K?H9mp4Ts$gaor?4a3mgp3Y3VhzpR|rT>
z&*BXFJd0&noS8KeHg9njv$Hr$ot=}#{4CDR;%rsK?$1>_&k@ecng_41Ry2>)7i7)b
z0+(fRUKZzPae=zLD2of}b3R{F1K#2bdweB^Pwkb<p<zL`{1VO-J_2UAwlF`o;qol5
zP<yUqq*XPKj~z9BNft}9xJt#Z&f-e`VQ&`KaEv73GrsGxxIPP>@ZTT_-w*kmCuUjm
zZ2cx7pAX)rFXP=R`)jheTbj$WSfL2NjXllc_AKsD#Il8}6s~s)=}*pu)mhvn4=^^^
zJBHIeS=^g7Eq{ma|A;)C#Um<mAAQmY_sdrg2p<$aBwUw8KYa;-X4hx2A&ZS!JjzMU
z+^l(}=cz27W(%`;k~2$>^BC1!skj5-<4#Vr@2VKwl*RK|Y|WZyrq5)tIg2fdF8b|R
zHRCxA0U!6X;0u}^Z)WjU7B7mwB)t8=ftT5LuK&VUg|7);7j6@7&*BXcYO*nJXTf)G
zD)%yf7R?v5IKK45jx2V{5AO=!6TUC}KuDbrMRo~45`HZFMEI%jx*GT*i`|T(9Qx+)
zWfottn+{%Z@O2j7a27i_(!sY}m-yub2elo1$Mr3XA2`Lho@eogLT*nMdwB`S;wO4F
zi(j(%mHw=WZ4JyHSZ%F|-xTnVD<&B&T&(tGu|JCzJgad`(9+3&X7N`Re=DT_$>Lu*
zmM<h6$bwkWK_v%pOubL=6(Gli3ZL*+cFgQ+uII2-#JSE;Qq4hiS*{_?n&N!T#^nt~
z4fFWBj)P7PIy+|duIr$lgZd5{IB4jgor*B<8aZg@pt+Kb9W)VPy-it4e=FU>F@N66
zMX9ZWma3wagVuCfRWs?9)kPZzQT>qx-zT9D+dD?NgM*Iji(;F7=O}k^On5W!997ZP
zK{p589rRE#?I0u4Q`pOa<sd@K4q^_H4pI){4ib)Wl<k<84C#S(n%6gKyK-nQFSuF9
z>^5i0?QBNQf$Jdepy1#z_Ltv(aNs%c9h4oER4K2>)Z}%a-S6#~4^WVBzf{uS&K&Nb
zk7NF{u&-lQEw0-fCaxIN>E~dSgV7F-a?B#upM6p801lRefer>aIL5&U2O}Nxg{Z*}
zhBz4Nn3>|pMT=DLFbBgObDiSf#d9qsX~rkHnx|tNGfB@;_s2Ro*1<S(2PZl>$-x8%
z$1!yEcELmklN=oHn2R+pF?2p1HCbUZ#Q_ImDm$WU-wAYu{-BZ{Y-BH{IXFeNPj_&#
zV_uD$;b5j?7LDLl6SjxsR0p#hoaUIXkj+u7p6=ibkux1^tc$Z8JlF`cIfD8$BGvfm
z$Wc81m+`r31N}eG!F&hjI#@vGJ9yH;c@EBZu*|`&4lZ!8(81*nu5hqO#xD_GD5U2v
z(kNW4S~wh+DoJvg$e%p<SJ+=C{lyNJI9Tf7DhF4q*YpWLjP^ub^9h}699+xj(kjZ9
z)5!G>ZlDu1h&M|ACI>e==4Dr2Zf>E^<yGQx2P+)hO?RoH+t^1AE32++W-)(vIJncn
zYFS(5m=6%qKIO!_WZ7<tH5^C%c@anFUOLvnItOgSS_k*h6<iV>JiyV>*Jd7+gzcyN
zVO9F5gU1{^BKNLW_nXVUsYMDLI9A6|eu|;aPyKKR96aq{gJb?0i$l+=Ial>(G%ucI
z<T%*uU<>0}%ML4A$k+ZI^Xa4;c_70-^U*5(q7>+*_Z_?>PW_i1yb|(P9lR#~x^SCt
zdzkx%$eY5qgl`Mqaj-*Vr|?}NEx#wSuL?eJ@S$V&=eryfbMSKb$ic@BK9Q5D`7`IK
zTFXiLnS;+cmk%7^?+cOL4!#umO8B*dZ>Z1r{~i3`U=P=SCBGN46tno-%RsGR)P9uw
zCn1wm`^CYpYTIuPs^w5UXZ-fNB!4*A=U~71pIi@fsF1^7N>b-<2mgrw8%hpvW!6br
zMH!(^)f_5`R~A+g26sKo<w;kK9BN8v=TIw$+Bvk%p`9dka;Tp}gB<EASx*?8jqn_R
z_hk)pXp}=^$!V=c4o$?H3Y&%U<|4e=X&FjdiL}n4jR^0Qd8gk#hYm`1&6yx!Be_<0
zl%$iev#?9<;E6=H9J=SwL&AuVZRnXpubdfNE0hGCjVc+-Auf`TksvD>YNm2Xi)Vz{
zQ10ZA6L&*NK8J#MV4;*V?<?|F?ywyEoC$AEigFIUbLKj`lBbtdaCpuv*OR$3se&VN
zIFfsb9KOn-AMNCDQ4Sa9%v9nO?w`W|7R+H_4%2d&p2MJ=xdac*VOS2w<jhNwG&NZI
zLvrRWl2`fRROa43hjBTK$eAnG$Q(woU`_DLBwWTv=gcKwjG8evcW?(ao+B8n@SFvF
zRXB&^_-liSYWbubcx7SL#3?yUrPJ!+_?%hU*44xbIdiQ!F^7|K<|7XrL^ggCOfOEB
z&g>j!h|J94lpIdYVV2r_2K95W`M1nDbD3bP=&|X#3Qy#Vb~LEhCeKn?)-^}u>>TEb
zoD<6DiOkR8T#*H#{Jb2_7r#KbP`D_E3q`(aWZHj23tW;jZv!sN;no~3&6zoVSq_)y
zaD_N~eQgd`=CC+t`n4p7t8%zHhow1lJV>YUO3j{LlQW-~;9uf%pc!@7<#2t@c>9JN
zZpz{29ByPl%7M*!`O`fwOWh(r%+pSFIR`XnuB0n+=2nH|Had!7!;#A2j-1&H@W$=+
ziddDyor(myeYKqb46r7LyXnRp?#<zY96ropZ4UQw2Ib5RAX{~R4iDt;V9tCkhZAHk
zZx;9oP({c(jq<}eJd(qD_Bw}Wb9hd|$8vZoho^IRT*)VdwDu&UI{cQ)h8&)ed}Elq
ziJes+sku3aEuox6p3h-x4%-=cIlPd=i#fa&=DsBIituG2jl3G>1_ocxVOuB(8t`Tg
z?@02N@NHqByhD7akS(G9dpW!>hj65V?=W++aJROLVXw&lIET-2_&kSCNFwGU`zfbk
zO|xQi27QskZq4h!rHls-)7LqC!-?#opNnrfHFB_A6T06k%znsW4}GXB-Ck8u#WioS
z{+Pp0ijbdk_?>f#UjfbG*BpLRNW9X}gcC!HL;Q!vdY^EA&U~5SPcHsBY|w`k{?3^X
zIQ*ko&shCeY6o(FYt{<>Du`5cQ7M#EcFi)ytg0@mxv1`<hKo8b>Plgfj+AS<=F^3>
zT-0{WD#}=;yXv{9@0xkt-9-bD<}O;eXy~F5|9Yqj8oOvFc@vg$&HUQJ9h$tvQmBZQ
zE?T*0=c2uf*3xX_qOE)IQ-=$+?mfeXH9-d#9bI&G(M5JRciaO9I=SYf?rr$k*EQeN
z?dD=(8?&5pOGEqIR}g#1Y)==xL@42x<svSkE;2S^u9*&L7jf78Apnn45-w~PN!QHo
zlxyZJ*EE*m9L&f<mTqy8bK$z^?cy+(pVcsHERPxUE()&sphwY#=c2?)`3jJWvg~jv
zi>mL8z5P19;dS<KTGOk=eO&Z)afE9w6TwEB7ZJwEQ7+DQG1o<Z7Xw@z?V2xmu$_}#
z40O!_;2;Wl3gntu%->)aLtG41l71T|GF&)9IMT%^7o%OXN{<(g5i&W}#j)b!ID9&E
z;%&u*F!wl-i7qCIFpDuWMO~Zf;&^%N1cthcX;L^*BSi;NZMtjL^Rry=JHRKqnBiik
zYpzgiFi!$cadE1GZI<vf;pxINgtTy`i`n9f>X~}y(DS+rtEVpxo#SFL>s7$aQ|<Fz
zoa<tNYv$~EE-rF$vH1BeE?}IvSmYi&sk_iM|FPmz?Z<fId5P3m#pNQGy0}c5fzA~Y
zUKy69aEWU|ZmEl_TwLwq8W*>?SmxqdjSGYDW*67F=8AT`iyK_r820EUg%jsBrxKmt
zzLEJZ9|PuA7b{%c=9(Mf<?1FQiu<>fE>^p^i`6mYcnjcSm72j#(Vix_(=|JJwq%Wq
zyE!N>9$=*|?sc)&#eMwMG>>Sh!?$Ai2hk7JG=bWV-~V*+kc;&$9(A#fOM#0=SiGh=
zGob>1{FAz~^gY$b*ms7#zJyHwj8`s0`Y9JryJ%BH+afl&*y!Tfg7N33pm`j6k!M_N
zcCm%IE}nDo8kZEwpLg++$X4MCE?yKl_mIDBf0+|p!dHbi>TH=+Y;*CBB->rQ;o?p4
zw}o&0Z%taG{tg#A50Ss`;sX~`^Ef__4_)kHFY;)c$44$c=Gv7vMLv;!ZShZCe8$zu
z#TOD*$z!+3w=TXD`O?K#B3}zx{2LM0{=JJI7-<Z97kgan<y>&_yNe$gs1@+D)P52M
zz5B&ApDN|=SH_I~8`mE$_DM+n{UU!VE9lx^p+1xU$|h^Cl*a+dkw=BRsfY$CuP9DZ
zId3FEjaAjhYI#)8qedP#@{F;A@j%TyYALyt|8KN|kyBVl%60Romq-0P8iWR$=Fu>Z
zM#^n0Y{If~J}Y7aIK^0;zvg+gkU~pgD`D%fJydR&NBcaE%A<cC9hA#b(L6eecM2t)
z^XS4-d34L8yM(>M#`KW2o)QLLvcx08pjELv;z}m+DCOac+j%5KQo^(_Bg_gNVNS?a
zxq0Np3&Nt1UGPL$QBXTI%aZiY<FGsq&!bQN;Qui^GLOD_9FaF4I_TTnxQHu5KPeB^
zKP(#{K2CVFa9|#T@;D}s!FdeNV?-W9BoF*NRD76_)`HHCRC0`PR34*6{%hOVJdXX}
zlJQDT5FRI-D4dkXWD#1PlE?hUrokuVaU%Owz~Kd)l*hC@-pb=`sZG!0jyzV0pPa{x
zJZ6fYlE;~O%oaaYI4h6SL}>8zJpSgNfU#@5tK}+`$DBN_$>Z8Q&dy_Q9t$<T?C&{w
z%wsdc2xpIs6Y^M)$9bVn(9QFeyg*2wEXw0T@rzXHW#ShLFUjN5P>t63yIeX~<Z-3Q
zV&M|uQsGs?tA&BXuM=lqR_1ZN_zj#6VSL^c=H8sgEg@efa%&#TMOK9J+eFxl+eKd2
zKT)OSI~hWGtdnrH@UA@8h%oo=JnqTk-aOWZk_ScZ6W*W410w%Dx8fXsIFCmpd`-As
z_*5Q`=JA;L<3hIN36Up-L4ThX-yqy5+$5y;p2=gg_!fEf**u=h<9YFygw)w8@<JXj
zh7y{6S^Sky@~Q~suglstA$z)A<c&Pu3^l3qP98hB2IheRcINS}bbb@Qm&aa__w)FG
z>%aIeF8(4c`*9wh<ne7D-%%pr=fcl~K{$OOzFWxle<|{n8t}F7o3ORtD~s*?AzTml
zNW$fm1%DL(Db)E{<QL(uTw9vruO|3Ck3S^Ym&czX`-Qa0|MvKo_}`)AACZ3*X>4kR
z0xA~Jw18#>RMOR%rD}^*E})7?)dH#&P`zLlt6Bv!gK88|vvBb0Lx-?PfOSF(bqlB`
zUSHTi$_<5$3TP}Ltu+y$LGtF}oeSt9(xQNt1+*%lwQ8hJhXUFZ(6)eflCaYDY7z;5
zw9rxVPAdLile!j=4kg_R=w3jN0(z<?snBvS5vzcRNL2bUVO*FH+QOtTsFA&9!!n^H
zTYw{;6S|>1UqGQ?ZWf9{uYi)W{DOHDMR{5B-a_8~P|~M>z6G3Jz}y0kkn%*~kp=WC
z;Hc2@@B;c5Fra{=B^jpn4-_9%z%d037H2z$sLLcnC84_lzfm$m5++9$Fsgvj1&ooM
zaRrQ5)>tKvmABbnYECHNxX?0_fgdInFj>MW1xyQVPA%Yg@e_n63Qv;3|JpFUfRhWD
zQNYXsPATAwu<WTKrxh?u`awmfhl9@IXBIG9I%gFyCu|<&f#q`wm{-7~1w1C5`2}25
zz{ON6V1Xp(2`?<*e31)O3p=<_$wl%QD-G(sq<~8cSY5zf1zc9Z<pta%HRfJXz>)%%
z7I0-KSzJIci?0eL*A;Me$ge5j+K|(Av~azWH?T&LV1GsV%}U-PTvouXBFlwr=ZXSu
zQ=3<YEx)~hJH%Iok~>9$TGpuG{RP}Da*y!d0@ku#er>OCa2FTs<sMM(gTjZTuulBp
z0v;(~y*MulY-E6sGkPU_M)+g_8$_OxS*krv7ll!`v4Bm=<?$M`Hj9&N2?zH%NuC#O
zE#QR$UM%1xCI2em<pN$Q;Cm%sE#S2RJ|S1~^#a}$p|x!y+Y5Lj^acatEeYQiz9ZZr
zr2ftV-W7jO_<kt=pnwm>cZHIV3ivqW^zCOM|61g8;TOW)1$-IS{*@$b!#5(V@mpnm
zr%2;~{=l#)V6Srb34aVVe=6YT0)8pr*8+Yk;13m~h2KMuu{bRUxL>8n{}iG8?*jfQ
z;9n&h6^+ji6o4Ws6j4#h+C@|<qOy36BC3c~6H>Wq@qfN2R$W5&x~532P=~eD33*+S
zdcyieG$@*e@z+p<Wg9E2NfAwpXjVk?B3en(LdY6h7XN2&97JzxWwDlaMYJ!PCumc6
zQ7D=hB*-I0bS#=jW}S-WV=tY>yA;ihZC6RUsYrKW4`EMXFQFymSGQ>@s<I?83FAd1
zWQUS-nj%$1x`-qDp<h2_ipVnA2bn%_ipUkQt&HtuxJBgE+NaAXh#Xl&zaom_p0FhJ
zg=JxHA^U!q$l*ow5$P*DLfBj%M>?vA{za_taGQq#MI2qk4@K-LVqg)2iny|f#YG%b
z#NZ+>Q7PISQpC_AhAG*kK86=DLj2+)s_EQvWD%o^7+u7eBF<OV*dmTCVxIW8BE}bS
zQW4XNm{7!VMNBSYN)Z!_m?Q<>p0F0)l8kO<2%j)cE#ibCPGpm+<M^UERp40}>*CoC
zpOx?Fis?n1Ove^+Y7sMvm|29YJDTAwj1G@bxcQt_#A!v$=7`YM%00b^Ggz>NIfyuu
zeb*@jaZV9u7tMjm%0~F9i8(2qTf{j<^I3zNq(lArYU;Vd1x1`E!c7#<Jy_QTN-h*G
z5?)xuMMdzLDdURBe)0FOUi!MUh|7w&yl5)ALdt9&IfI;WvZRP>i@2_crOG<c1XmSt
zwfHqch9#A0?fN2KDB?v4Z{RE|;wFCovxr+HdAx{aBCCtItB6~RSgz!XB5o6*Z|Ss^
z;<pR$5UwiXP6j|z<2359qBTX_UBtu6y+=sl14Y~`$FAi(D&l^QGH+V-Z!1}roH`Gx
zj}NKHI?m<L506N)zKBOf9t&-<x+lb+EaIsmp620C5t}#=5^hvH(CmM9HW%@nvbKa4
zo(*exUXrcCVDwq=B_-bzzFfpBMZC&kYJ%5_2XByH=QJ#0dl7F)=iMUSEP|u9u#Gv;
zd#h+7=k225?}*dpjv{tSnL_4L!h7xai}-*`M-jV<__&BqiY6?1c1neh#5stc7V(*S
z#L;B(^CG@1;;SOQkkfV-!BaJcALH}uBEBi&yCS~VV#1@jZ;KeNcaZq8CWg(?%}kiF
zioHer$U`#^?L7Qc#Lq?4^-#~lFGc*yCE7z355E=hdlB$Z!NVUi_-_#hir81g{v!S?
z;;$n9(R5f^2W$q<3IA4`ISpA0tK*FWyU8EbDte|Rl|1wRyE*Q30vp_^DXMy?<{1gq
zs(WT~QMrzX8sasDwLH}J4!+e%1v-a6PH+~f@1c>0#-5oM4LmgT%vIpOaST@VCLWr4
zXeOQJ9$I>6<(aZAgdDZjo^ezgCAs|4$!sbW+I#5WVZP){cJ$DN_C0j+(Ahh9?VvM*
zY1_@i*=l5W>G$x=ve45*FAtW7h==1Ok9vrC=;NWUhq#A?heBxI_K@<BRx&AMM=~C=
zo;jIeEslqr<gVPp<1D(74a<9&*1~k0ZYg^3Jd~u?+rwcVd=F*sU|a<wayV@^1(#@+
zU8$4UBRm|*0rD`yLq95e806s?4oyw;_i(g_fxHTM=3AHSFJ~X^usDN?b_RPG61H%t
zhhd&MXIt3J3?-YyAN?@W!zd5q)T+_KF&@TxV9PnJ_`dG3^iLZzxp*whp&U<xo~h-(
zK2G#7$-`vEkB3t|%;IQzIG!E%FkJ>u@NlAslf;7#vUhAG$M<9pGd!FkC(M+>0M!+|
zC(Iz>=%41{bPs1Kmj%!8Fk1n0CL5{XWKRQc&yh}WmN-}ZoUqh9`mMU@&bb~IcsS3)
z`5u;fxJn8a2ru`rP-KztLVCc%#U3v4aH%}py^VRS!<B?BKc1HWHG^}Ct-3-*t`sg7
zE)fP1c(wS=9<C9&R(PF<>pk4y;YJTP{U7#e`4%ZJ6W%IZE~Mp^9&YzAw~TYjxWmIL
z54FmuUB;bKXzZhjkJaLL3D<bI+rvE`?)6Z~H!-%>!+jjA5>6=Leh&{Yu1ct0!h;?j
z^6;*Q_dKlg@UVxMJiP4T5fAG<Jn7*n50A<wjXdUIuddhRk85&0;h7+0bUp21gNH31
zo|SwfkwdA#+awA3W=TlcqjPvUklC#sp7+dR%Si6SzXI^^BIl-_F9a7UUZ-C1u+77E
z53hQ7&BN>ewWosFZ}6J_h9qx!cw6L6#Q<aY9VK^$`a48g)Hm~jZFt|q2OjpYQ<8t^
z;d2jPc-ZCPBS}6cdic!4Cz|Z+wc7^ETbm%Haqdxfd-&4BcU;328((?&Mg_mt8ptSO
zM>zYwRdJT3h3}>CgJ*V7EcGK7e-D3hqIvk4i@!8~_wcLKsLx3LO`OUbo8b=+`#kKI
zgqtfWtklluZx8=)tV^g|!oMC4@RCt7uTW;RlcXAy<VC7tNSIrtWX6uasuEHs*hSPR
zp=Jq*66_Lcl~B8c4kdIfp-u^POK4F-%aZY7y%HLg(71&9B{YzP4Qoi!$XpFMG)+n-
z2AY-3o5^&0(~@yWuup5QEDmw2lG%Z@DWPo%txKjy!D(c>(!sll_EMl5TXr<X>Bdea
zbSt5I37t#mLbZ|!1O7N?slaK=w)H5%Dj`xr&k}l-%*KzFIb>Ylq9w#ih?mULM{5i`
z#u$f#xztIPkSbwt2}4Rqmyju;zgm?o!6~7435O|}WAPFS;;xXcE|%bx;LDkOn#Ly4
z$tCrg5nh&@Eu`>p3QOo$!cip?OMOemIY+1?^afpYWXbrDS-}d-hVcSDpoF7K7^ou5
z8dNg(YYfO^)BsAjLJloqSP5fGIJSi0C5%wk=n_VTUJBxHl;j+gF>)`Bv)*y!l24X!
zg80M|juT;bII?~C35b&M8=Evm@~P?|leBhX2`80sM+vJ+m{!8{5-us>(h^QCVMYma
zOE{;5nI)W3!s#WPLHD-6sWNh!`a4U=z@{lybY>7{+{~zo*$SkUybCDdY;}k2p$8Zn
z9J_fXoL9p6CCo43+!7XqUJCZ@L115?x-KkXVF`=G|0{lxlI+FB%xz=Fj{LF`mXxrx
zgv;sqVEr%QO7X=)?g}WsO8iDPzJ#kwxTb__Lu=P7>$=jxw=r)}l9pNUX6f8o!g2|3
zDPfr;G{_sP6`CNNJ}XPOO?<lM^6hfbhBhWV?kr(-2|G)8m!2tM4X1Mnn@hO6gnLR@
zU&5m$+^eB{fJ?m!t`*)VykE$1e<)lB9+vVt4pURJGCU&xlXTLYdaQ&eOL(e;$JNd!
zgu%>uI*hK35^fN35b4HEiWZLMmJ*&V;q?->DfhV&UM%6I5}sFbYY8uCl(|*}HtD68
zmGx=~uY?9y^8bH{2NAfPvBZbklDr}QrjQ#3%K3X+$#+WF!DUJkw&cAM-Y;QK342TU
zpo9-g__BnrO4wDxM<sl&W_(=2C!FK5^Qnx`8fPwzd?tm!{ud?e=8{<7*k^;kmLI;8
z-@Xz5R>(?&p!#0PAB0@5ek|dq68<XT?-G74;TIX%SHiDh^!_eWzj0NsYZi(>q(H)%
zzF*DwQ<|)rZTLsZ@Qo&G{8tJGG;6rZRgk=*kZz>G%Gw)L5mpse6IS<8!$(aYwS3f*
zga&K-sOy_qNnS@rc!A5-Hj?^28Yruwk4Dm`Fc=`Vs;Q4=KKlC@;G?;Z7CtgQvOZc$
zGa_u|qqUDVKHB<d=cB!U@D_ER;?Qc04n8{i=p;EO1%I9WgC_}Hd=su+eRT8D-8bXj
zOEyV*DB06D``BQ-EJ>J*`iS|6`$+iUzh$8V`Llf_r9gLaSDf-q%<z{M;fB-kk@L|{
z_FW%&AHI*WkAjb)d{Xk^`Q`$|ANx+Mr=jO{ytj|T=p`S0eY3)FS9!Q^KBh;Vz^g&n
zAEDw$`ewu_KT35quW#CawD?frK;a-C$M_g5K13Lt%&gb>%rHrY`xxP4q>oWP?(uQ2
zkI_EH__)%?Vjp9D94oasKE{ch>|+M~>|=tD<9tl?alDTcd`$8&*~b)iQ*C1x*uwt@
zPxNt;k7+)p|KB>F^7E}eW~nanQ$$XcK7DeUkJEje;p0pnvwfTu%2^k4=__Ku&-O8w
zL+@jrk4t4_zK?V1TOW&jEbwujkMn(8z+kIw_VfRLywJx*J}&lg$^X`2=>DgFnJi!K
z<BI>S!<H{m)-A%NKCbd{wU29jT<hZ|39s{Uy^kAw+^DEv0~j0s58f=zK)%e!tv;6f
zSRvtEK5k<$__$L^)_A**JAAC-xKu^;p8pG1ODB+1bB&UB`v=2pt&jU8`QFF<J{}O?
z>El5k5BYf3$8$c``FPmJGs=3z$9f-6`gqF6qdp$<@wksCLTf?j9*R$M68YHZW7Gew
zvssq62!pb0=kq>Z_3@gItv+7x@uH8He7x-A70zxhFHOy@9F=)d_zz$AvCYTZva{XC
z8$RCj@m8pRsAj<5@v+1IUl!i=@t%+OeSF|!x9qSbANu&%$0t5^`S{4knl`3LfS>yK
z%*W?GzWCqrLv_CN@s*FSeSG8NTOZ&3-<m)8*rQ7K`Z(YNW&G&lCm%oi_{GP5AAkDz
z)yHo>{_wFcwDY^Vz{P~ueb!6o1hxO=<8L4TaGHdghyVYEphEfJ`c|ckisF^Zs9ZMd
z&wqnhwTx<IR4=1O88xNToEtVC+8=`SQk^m)p|!eY)GMQY84b#4C}Ep28i}+NHWoH1
zqiGq<%4l9j3rScn=NGH)&V5BAvx90Sd21oJWUQ!d8STnwFG)9HhcY^r(W#8iWppW{
zYuQXCu0OQKQxTGt`Zxer(e7pRD5GZ?y~?mume-5m4xJla-jLFMRPtCE@iG$PZW;M9
zY;h_i%Sef*%gC^<vN;~fN#c|bUXCdV7VSbA#WF^fF}e(|j8Yi`$~d|Vzl?Gjeah&o
zg1yT)jBXd_-5hIScuzfWfOg1_DC5X7`YD(4qu58j`A-k)Y7$)as64QYL1hdrV^|r-
zlrgxBAu7Tw?kb5qjpW3k!IeBlD`P|%Bg+T(pA_;c_E85jt;Uowmhv)AD&yEP#+5O#
zj7epTFJl5bE1R@HP2TYGKs&HGxr`}gOfBR1u$}Y(hwKE7R|WHrz-XTX%1z_6GNzX?
ztBljiIJt}&Wt>vRscd|8^lyrp@*y{$!FHDo<5hk!aC#YMlrg)Ev&yEC^vs!MbI8Dc
zQJF2Fa84O#vkf{o3!F2rjQRf`Q|AFbHSzra7bsN)1V!uxML`sMK~X<RF3H{HQZDyV
zu_5-}d+!BB?7erf_ljM_-W7ZAy?6P)caHo1f6tR=p2_U&?9A-!WV6{MU0mA5WnCQB
z#o?ygC0!iR#gSc{(#4c6jxyrpF4tv8TW?CjF<l&M^y3UljpMsGp^FoZVNw?-b#bz(
zs)kgm*4uLf)ou6Msa;$w)6CnaNdbNT&EOeboN0(CXBl#~!E+3rYw)}-&NoCn7Z`G3
z7Z-IXYD@J0ExCNC{I4~iF0M9JuP}I}LG21w=`~$k+r@QVJm1ef;hNgT^<CU&j=Di{
zZZjD<@J6e0Qx`XPaZ4Asc5#<cZZmj$7k5}6NuU%^&)z8^u&w=N;O;K&>Ehllx7yhr
zP`WG8V;V8vZ-Lqll4&ODL4yw&e7K8840+VxV+J2LsJc%WGTq>lUCc1#DT7ZNe8!+S
zpEcw;*=Wd{w)*-~7cY0Qs?TaZKPdjyUtP@7=+pdP*;NZcUA*4K8(qxo;>|8T>f&Rg
zztzPh+VHQhKzH$uQQkFJXz{;`_q+Ic)~qA+exf#l8pDUiFXAU%eA?wU;{M&mXI*^W
z#V=Oz3#;;F7hiSpqqgzuRcJ$mf8WJ7hJV|kd}oN%`=LYmv5TL&ILli6xr6*_l7BP!
zyFpd?!;n9__{)&d5;AL+1pd>-zlw0Zy{K1@XU)Q+hsQW8?ddUx$6%i!K685X@)+PT
z&~skuZE!A+J|2BNCsW?&=h5He!CAA!ATN#4Er7>79_N^3H7DXAk9j?|^4MCEJ%*?)
zkM%s}^O)abEswQ5q{dK>MLibtSio~`k-%Zr;(`Vj@>tkok+u#dTnv)GxX02S$*fsR
zc<iC4zy^gZ<uSa2OZYM#BRrP%Sk7Z*&v{Qr+j}EDMs+C58#3D93LYzV=wm!qGF*~X
zaTUW?HMm-bXLUo?@L01$QI)YC>v%4l*7aNzNnr)j$p&@0zRdCH_Sn#)%fs`?JaP};
zBk-trgtFSY=>^?i>l0*J;n5|)LqcNDg;v#|keWx`@Wf!FLr)D+yM;&7qx5KbtY(_r
zXHZ2713`IdBae+eHuu=VW4y;E9-De>CQm9zEZ)@mDC<-4tBWUiY-!d_^xO#AW7e$q
z4GLEeZsW17$E6;Zd2Hvgy~mLrM|tevv7^U+9{YRj<gv5I-X8mS?BcPj$8H|Gdz`P!
z^sHG&n!Qf4ha?Nxv*X*n4AFH#Zj^gfw6E!)NI1abK#xN`4)Zw3<6w_NJfy04q`V}n
zO4}Uuj);eQ9ASuvvQ(u<dmQ6&n#buL$9f#+aiYg0kK;W~FoCKi1Lc9X>rV1G*(6N%
zkc*_M27*MLVv#vT5_GGm?J){ML(cFx)8jmuDJwkA)_Cza*R0;a0!;Fyj5N`x>{i<M
zxX|Nbg^+c<N+tgy>)GWjmYy@aRONDyD?C2%_|W4@kE=YM@_5?gYL9C?Zt=L)<64jF
zJZ|u~(L<7_+OWFb;!_g#=tRX$8i{%?Y!-<wV>i&NE*`gg-0g9X#~mJbdfa6a6p-SX
zVcAS-KcP2kJnr*&(qo3l{U-bgOB4^7Pt;A*bZYoR1|K%~NT>8skH<Rr;~uhCRi<}L
zR$KD_MY?&n2zkciS&!E}-tc(N<9Ux)JYMxs&%WUCqQ^@*%r5ngta#b<kwD2wJvTOA
zv+k4aqRdoCd%Po8D_!U<V;jY98-vu4ALM^Uj)cFburwt_5nYCV<ngh`pGuD&pLl$#
zTFPb~pLu-l@s-Ed*4JN{v@b0|DgXaxe*4DbTaWKNzPAx4nK~BIs8j$L!!*5O?D4b5
zFCM?zxD$iakZ!-3z~4Rou>MkaNUZdcWDWMeJ^oQ*S4#K!*W*9A(Wi&cEF0#sMTbmN
zW|Kfgf=+w-F3CtpFQ48%bNS5e)5oW;Pd}gjb`4c`D>&7PT&jx7RD$#P4DcD~Gss8E
z@1d8!j7>!vdh_}&OH1+v%Ktv|`z-G>+K5l;65z9d&oG|_eU|iD%34{-;9|b(qlJAI
z@lmud>br!XV@r?4eU>mDDIkT_&~TrneMa~!>$8j%DMg6w2t}Rr@fqne%INAf^|(xs
z?HZvPvn%+l=rhJ=CEs23q^%AiEBmbCyS((Eamrn?LgBQ!&l*0r``qEPrq5bFg-_GG
zw6-<T@EPm746u&Ry1u*g2p{LOp3nMf!Y48FyL>#K&?hp}F4E>7c|%VDd@3eKy4|N&
zEqqQlg=3$p^^u$)t!gHuZt!SROh%<X`+Clb%p~MKBI;BwDt*TLY-045!ES>a`fOx~
z<_Q}cBA0IJvzgBpJ`>EYwuH@nH-(TWMaz~x6MeSwk%lVW+GiV|qkN9`*;Z`I|32IM
zC|gST9eg)-cJ$fF^cihkAWtezcJ^6YZvp%4>a&~A?lQ-B^Tq=W9%V1W?`im62KP3&
zkIXb=KZE-lJiuVPiX<Flrw98SV#uKeML$f+7=A>Da-<=uc#O}n>T&5WN*BlZoZ>UZ
z=Xf*x1exPA$>$`WlYJ)p?n*5ybcs=q$QC(ArwXuBEo?+Q)8{k`fYW`>FhoQh3W>9P
z&h|OS=Ukujd=!KVFvWo6$Z1$)%CQ$(k4*Ks$me2t&*xH~D}Ao=xy<KspDWC_3Ke-(
zQ6b@~CB?4xxyI*OpX(H#cKJBM#7gpyHYn7O*ZbVybED5qKDYSXYO!>ra;(qIzMBJR
zuuE0NgCyMMqa;60AOG>WOXI!5pbB^U+@rx8uu#Cg3I?C|6wIdc{XQ@HyyWwMolZ0O
zpwB}-5Bogg^NdlX#-oz#Gu=)fGx)fVqESUp+UY#HqWR1){3(Mf+Q&js?s~REdCuqg
z4*r71yD`Wc3elHsXuo2muPU+lyl#Cu(PO618-{CYA+c}z?nd=3qr7eK9Su5*TlKGw
zOUwx$NJF3R6(>F)`F!m2iSMStU-*2g{HAUHKA)TCB~z!$A?jcC&X+!4sW){C;PZ{o
zx2BSOezK(<4gYCU!{<kzf0Vj?e)9R*=Xak!e17ry)#o>BNGY-1t%{a+t?r*bf0?R(
zTP$gIrxs<tl8-v>KP7)9^MHN<1oRMMkt1{VFb#VK%n`U`HK#!#y#jg%^a*Asa2X<E
z|A4sy1_ulYoSAA})#o;zc?=E+7#J`pU|u_IL-D9PRQ)AuYrcT_1BM1H5V*OJ^dBaz
zY(^@5WY@w0iv)}dSTA7FfW-n<3>Xuzc)$_?%LI%FSTbO#fZ+j42QE}JRn`SXh}x33
zB~7+38?ao!$beCS8wKO63*?#QrF`ISB33ZEoGIPpF4fY+Y$Y85D+jD%lJ7Rja-$@#
z8n9Zx>H%v6tQoLYz}jYJyE}d~9$kMm#~2&1PQbc>%f>QF@)fJ=>oj1;fSm%m0=$4N
z111Le0YTt$^+o}efH0sIP!HT~k;bxM6u3+q8>|}Cs7wMH0nLEY^i=RjLK=_-<gzPp
z3k7nBUNqQlMfcjW@K!*#xmu%JZr?CKVI$L&wG=!X2aFHcBw*8k%>pI_E^q75d};H5
zEdqBnlp$i4D`eOEdh8ppb-)g$yxhKx*(+CX8?asAt{2-Il+R^_PSr<(I|u9%aCyKL
z0lNn57I137X#u;-nF0F*>>IFWz+NVH?*KI<d)2xmPqWtd3)o*0d=3a){HSMDD&#=x
zj)MXY4mc#>Pz&Z`3?63iD1(O^Ji_3S2G!{@?dT4EY`}2=$D1@6ds4s&hM#C~l0n^0
zs_0~^GTGoM2B#QQkz}48aE4A5=K*J$s?vEm8}-upoPcu!&XZ%!Z?aK6s8n!)b?7A;
zYq|s|<ZM!Rks%iwRF1mTcrG*egUu7J47e)bv4F<|t`4{+;I@F<1Fj9YF5rfM8v~^C
z)WBt`>n*zEG1V2kDd1)sjJKN4Z?PZ|{XbJ_BV)TG;Ld=1l<F;eXc}-=z}=>Rf<ep*
zjQaxa4|pix;eZDMrUh<p`C#C#m5P6vGtCe+s^gJ>N6kicYdb;|<WB@l5BM$M_kbq@
zW(2$y@OHpc0Z#`!8}OW|s<3=UMV39(x}-fH@IruQvl1mYcI*AGfS1g%Vt6^=6~kXO
z_?p4jJEd;~%<SNA8ghdc|J7ds9|n9BxSOW;6o&yHDCgKHP#7yLmDZFuJ`VUK;8UeO
zo2^L!89PH)0dw-_0bf|ad};8ffUg3+HvF4_?+y9Z;2v78F^34z@q?-xUD9;=bBE`b
zfL}ZKaNPoE6f1jIn6tuP0e=Vl7ceVucWVDww*S}qRBCICNH;3(My5xFo)x!}Bg#1I
zzL925uL`{@%vE9T3VkZ{t<bMR|BAC(ZWO<I5W8C!q9HR+g#qHRdjy@ntGzuY@O4f8
zD=boB(F%hrE)5PbIG@4!4GuN9fWct~7c?m5g$!BPpv+&a!r~Q|sg&oX!x9x%tGKkk
zWX0XGEhY6TEL~xl3S*2uqQbHjMpal|3>8#M>sN{jxp8F0WeibtI=bTKs4G<51f#ER
z1S&4`D;mGk;8lx0D_2;h!gP;SD=t6CaFr@b)#<uYtf|fa6&|YaaD}xijID4@g=;IU
zQ(@f-+g8}F!nlgt@1!HCu%6-Ts}(u3;vQ#rRq!hKMu`mu755fH#qh8~RN<7)pK#ZQ
zYK1RtpLxv~>IOxZz=q*zg{(p@m85EgEsfZ;)6!teV7I{y4T^IkLpC-z-ryz%H#NAK
z!Of+xA>yB4$k3HsyAvyHrP-iqwY4?3O=b44fn~_{751#KSA`v{Xh(ypwUfDG=L)+R
zW%pULcCD~mr*!uUdvx#{_1bU6EwEou;lc|07=7Og`$>Y~a^oQt4lrEKIna=UDjaNx
z+ByLat#Fu~9$w+7id&f%{RpERsopmaA6?-Xg^I$g!a2rse1#J#oM!lm2B#QQ^+|@D
zRN-VpCU@wk7}EYV@TuxMX74dLy}}tCo--9ohM(P`Tso9<JNS7O&Np1{RYMn9k6&sO
zS$DCWULu!jGHF&^W>#EY;R-{pG$`w?s&KX8r&@SiS7B;}yEJJx;`Ih^G_f~S+{PhQ
z(Q#9Sn>(ks7|*R0ZZkxsw;OVY!8;938p=JL(gzH=x59mf+;335qpqB0_=5&lFnwg&
zBNbk)@S5rHsKLi7JZ{Jn2B#Yo=aYuaF!+?grz<>T$g>8YGx&Uk7b?71;iU>MS9qo3
zzMV2m_owzbqetx*y%Y6|0o(KQx>fnW;2Q>K8hq2>TL$0OU^L`igYOxXKJOc%9U~uB
z_^86i6+Wr3dc+zLpH}$HN(V%IUf~PHf5=`TUsm|4LOmo2`MSb4N-rTxgnV1!y9zx*
zdWL+j+*RR^3V&AkvBFOkeyQ+l#r;uQ|9$@10#&a*X;}SM;dl9YByy(oIauEzwC?+>
z!rvACt?*yR)&D5P4RhmE3=%S{!u-l(p-W0auGWH*J_->sXUO~^LqmFn^bVOfWN_#P
zog!1Cqfba*J5_J?3ti&sA2L_ylFZx&=P@|I;6Q_e47T@-ov-g#hX~FWBK;*+`l#sz
zLWYGb6tZy0f}vAVhuAK(=Xz>)k<hiisI{m(u$bu}^Hq1rkflP_4H*|QJY?yR)kD?@
zSteve$g&~J$)c6qhfvg<99SF5$dFN?qbzFjmzUML1cbBq^Q;iEqTyo<u4Hg!gR2-^
z)!=FdrNAI<xC&V-WbKf#p)*kK)uA^j){(nLxy|-6M{3Jm>xHZzQV9t|HVEko@k4^p
zY2}4%HPSswlUCxFwh}VJJQjt-=9XIMVxVe16pvb0-w6?CBP0!(C?O$PNN)Tag%lls
zc84_O5bXjDX@zc6z2-KOpadcb8ycIOym82Q!#4@ptW$T>5OJQZU7+fM(A}d=2;JpL
z6}Jr0My&5gIPYz(ZVlNfWap4=J9W1=WV?3Qzz!ih8buMiq_*hjO|A~-ZsxjOL-)BD
zN!~qV59>Q=rC*<mvUkWnA@_vb8?tZ6ej(?{6;^%!kfTD54mlv?z>tGN4h}gq<S;9h
ze-1I*U$!x#)5F`{6uMEP$d~XVEl}nEV?vG%IX&czkmEv*4>=`dO2`T3_BV!dq9|5H
zwI+p}6mqipN26f)SSDLwsJl-MInDZO!{Kg}$!Y3S!81e73OOg_+>o<Fw9|5rk@o9$
z%}$L+#wu)-iZ2McFy#7>8$vD$xj5vCkSjwj3Ar@nG6~nf(N5Y?&SMG;U2dk1awA2)
zy-F&DTpMzoyad;nC#8T6wW7f#eg))I^UsosPiYczTgdGpH;3F3a;p^$w2QmMY6$Dk
z@-q33kUK-}4*6n)JKb&+cNwQbQ37SMi1&ruuNYH`3wa=9TF6@=Z-+b>@{q=I$TRYG
z$Ri<7hRg_g)P}b5*b|nK9<%)LxQw-TJg3{K+$&|IxlGu7C{J16DSDp`c`oGnkQX%M
zai4+xXr#*+8sIOQ*y$r(m6xnvUJiN1kXH@9X7F``gY^Dy$jlD@X6W`di1<#(yCEN&
zUGIgwAM!!Shc?pXY7M9%*2_}tBSTb0s(upkX~<_r`8;$gNmZ%wg$;x+)g8)RT3yk$
ze<gpl74oliR`L(|HRQLDA3}b#Mt`w1BLDvs^0Qf_x@tw^Q3BN|zZ=_1n%su`5%Q-l
zG{&G166fF6q9Rtz|Aov_Zjb04LF9T$$D9#84DT5^M=3MU5xJBu-BhZnOP`3o5pzY%
z9nmjxsiS{{t_aErVz|O2&tr8(lmxY_+@hj^CU#K7yb*&VhD6L4v1G(jMxQ@ofrw#-
z4~=H`?1B*sMJyVzSmb=WaO47Yk;u7Al69!j#UqzpHHzhPoi1V8%K5`1mW~)5u|mW$
z5hEf-MJ#WMEgLb?L@7j<i`<e(zhO>Q&7DM%sQGkhHu)<?jFC!KOI3~=$;yVW8nKEY
z?XkI9<VNU+rq7xYYw3ttTSvs$i0KheMywODZp2X$M@Ni{STACuh>auGkJun0i^wCo
zBD{z=q8i~x1QC^p(7YkT)z%j3sEBt*&Yu6vUMXCQs7Ev+(#ZKiuD(dG07PtRrMiwN
zIoGuD6$*2&7`h{x5v85BA`TzvGP&qqDft^w{Vx9T5t~Hp6S1$PMQj$ad&C~bAa8FT
zu|>p$h%M!0*e!Am$&C{uwu;zV{h|)FjpB07wh=p-$F?)Ly}=y}?r3n3S|7*GhVNo<
zSA!x-rqYz)p4RkU5qn#aQiKww(rG&n>=&_r#9=Zg;(&+)BMy!@#5fO%P->E|G|D9B
zP?IBjrM7hbMxEZF9BDq3yChQ#$3z?(afu>ay&rLW#OV=dM4S+DV#LW2lOrZs-IEM%
z+1u4ptjc?*7-dStspcQiHR(M~ZntqEHRP5vBhHGrAmYM^vyJ~eb$7%$3UX8UT)D9`
zkyD15qD0-Bi%dy{#Kl%ce$cp9i<c>?Bkqp4C*q2TD<f`*xH00Yh^r&6i<qi`V0K*-
z&A!38HsZrEZs17g>(!wa!@Fs7m!|y@H%HtSal6sQaEsNF=C>-|?9<J6Skavk`+>&3
zYU#Kua;b8Y1-UokK8?qSM<VWzcpze0#DkHG-u7i(f%=ezw@eVOyrk-nMm!erc*GN?
zumV_3E0Dya{t}#E^V=CpTrquOo|0A(&qO>M@rfqe5zj?DuV~ariFhI6#fX<9Ua?4c
zN#m}!Q%@IV8KMmNYQ$?1uba-3mG<Q;y=WurBA3IZ&zq5(i75xZWx3^TgWB;ZA@9k1
zVvBe`;sdMLPJn`HMOCEy$Cj_u*Pm(fAMstp_Yq%2e5vFa@pZ)8L)}$-H_N4x`Hd3S
zDA(!Vnn0y`5r2sIF`{S895Fvd{2cLH#P25gm&j#!nWOyktLdh?GVMZ}&ixVbXT)FD
zO@FIVyHohb^3}fv|1&ttAhFA1Jq%8=S%*9@XY3}Ky<(SjWtW7@uD&t-Vit{AEOr6k
zKW0G8K*Q&XnLB2lcy<m~&`Oy>G4sYO5Hl=haLkaH`6N)sC|9aOgF-_?-qr+iXpF|Y
z2Ihh>3&kuFJ08u=G__FgFC4ouD|<B-lpGe1St4ePnvPjAW~rEwF{5IJ$1EK)B4*jx
z)l$6eHHu|ordV^bqJ7C&&e}Rv>;EyMV^)Y+QMKTv5wk~%tkd;cfv0X-IcAlZHO$Oa
zV^)h<-EgG~Y1kI1QF)7Av^Tmcs`}WNbz)wNc|B&`m~k<O#T*{9Ud;M28^vrKvq4N(
zOg$!v@nU@W+$01sm6$LlveQKrkedEkbEgb*TE(%Ofy-|-W6(&E8jYAVrWsQjF^ee-
zkuteCGuC9l(u*jqnC_Sj)s^~&!${{Vr9KIfsPQqI#OxBYYs{uGo5gG$vrWwAF<ZoJ
z8M~RJBuvn$-odd26UD~Fn61pK3SCVb)N$L!Y!|a*%uYt%UY(-BuKB-JlqT(grcU2E
zc6mw2AZ`AS**)ffm;+<>F#Y$9*)L{KQ*|$+>>aaD?Cv;pY%<gx(nk{ZH#4VNUmp~6
zaLgewhbrnqcL7x}tDD+g=G0q|BVvw>xi#jtn4@BjjyXN%jF@9$j*U4f=H!^;VvdhF
zA?8G>-P<`zZMD<sq}a_c<pjx8a88an#ne01=yL27QHHq@q_|bB(@Z_3yE9|Xin%K0
z>X@@*&XHm<SJ>D&*Cc3MoEN(cAWxnjb3yD}dZEFK3|?&T5`&i-6vJhPeA93CRqRUh
zv)WatToZF`%yltS74Y-95K>>O==zu&Vs47LS%~%8ji!K_R(Q8>i*7NswQ*O(+hgvC
zc|7Kcm^)+cig_^Rp_sd4?$L;gxj&vQ`Cbi7y>v6w1?mH_yS<ew<fUmQUtypCc-SOA
z8uM7pBi1|8L05K#x*V&;DEVP}%#$%M#Jm_YLup^367!74yWKa*^OF3m$<Zr0isZHQ
z3Rvut@bl(CW$c#}ewGbhwJ_6#?-k=$(o=PH<w+~^hN4cB-YRoenHlqD%v&*U$9x_0
zjWSQnyD=Zfd=m3s%=<AP#(WgJMD#)I=G&5^+#+`=n`y$PP}FGpH0HCIFU6*go;B<9
zm@lkdamtg*-ijPa5M6NRm~Ry}F@MMWqu7r5A?D|pU(9v7zxYv?01ZQ{CC%H&uQ9(X
zuj*#O`dR|zSiwJH{#069&F!H0OJi9br|&kz{HMH8rAO5%tgex&vn=gvnk1bizh{*#
zY>XVN*sIdJ%2HK^SLsuwZ<V1{7O2v%O8+W@s?1wut}1g^nWxHtstYGgbr!RGWJOo|
z7$|?*=onmONR|1j%wKgmM=RCpWmVCwS$oo@)`wMDu*#xhsIrg=T)4_2Rd-7(P7Pi`
zi4|PD$`Zz~q(Mp0p|Po3Kb0<BWf^^$r^=dDMpRk0${4X#S+2^+D$7?HZMF8*Y;7o`
zs;p+$pmvDL4=b2|R;;>=q<)dWmBmwK^(w1WT@0^k)wk1xd>9ifwA8c8duvr$yGmCT
zugcge>r@$6WxcBFUmfdK-Hbxg-q7yNQO*NWV0{y{f!s36ePqM05>%;F3C&Al)^YDh
zS1YQb<!g-&;TJ0GtJJIP(`4VK>*b`%p;Zp6(x|%Av`SVbuTt3QUR9b^$|^h9X{$<i
zmF;Avoo=X3H$)XTs<N@+;|*?NaMModW`=BTa0mN=$OOZ;G&s@VR#mn(MAEjA$%a4E
z(`lt0<AUu^Snp``oeb{W;oqgou7>Z{q3m8|55xB~IHB`p%f0P%AA|c=+0T&u4IW_d
zK!XPvJlNnN2Bm;rDmlE$5mlF(;+!L^993mf!bu578&9tqy=xp}498YE&WOj0r^-o+
zC_P80a-tCrGmB2HGP%mDRbH!dN|h;9?yPcGl~b#nR^^&1*H$^b%HmqIuX0J1GYmh|
z;8_M&)V+Mwy^?=Um2(X_&!8yhSGk~rUs&a$4t{NKC-BlLSD1v$s$6c!mRe)f!#I7R
z*G{j}@YM8P;bbpF2)|APs>;n(ZmDv;@!V+ehAKK#U1G&{lQlH6H@8-~%^2>eqE>D<
z{MRw4l{T}4-(BUNDo<5;y2`y(?yK@xmB*{xU*!Sgf24}4OsgX1hpVishj&#TveRd@
zoNFyg+8qn<XqD@<(OS=ct4z1LPbw|<aZO7xG0ZT<gm0o>%v5={%1c%x%5znoukwP4
zRdXxr$!`@MLR8v@FB|hKRW3E+>s8*U@?Dkhm8q({S>=-|pH_LR%G*^wP%mr9Ta|aK
zyw{N|Y44l6q>pTo<{uf)#|CAi7<5R7&kX;f%9m9>@06;RO24Y|b(L>SrcS@@)cVMJ
zP?R64{8;6mD*smbsmjk)eyj4kvHc={cKF-U+VGDme^vS0Wd3PguMm<NlBPq7{b#j$
z)aY4bmf`XbHTU&D`CL46)R?p8Vy0c|Z@p%s{9mJQ%?;jV>hv>YVvVh8^f!F28gr{k
zjRAJLNsWOu_br9BYOGyjP|aOi=dCfg#t_4Gx@wL2YRq3_XpIGGEN2ym8N5t4>@^mw
zu~3bLYb;W8Yc-1-T(st1&sof%h{`8Al~zmC+>1Y=ELCH;30b<v2&=M;L9vNp+5dx&
zG`3MSmaj3o#tJpY)L5y;ipC>R?JBCZa;MfR9i-istXR#=S-r*@hOF7KPSwZOSf@r_
zqo}cNjd9joW^lb4LCsB6r1|<r*`P*O4bSXqTjU#E4b_w|YYv7rB1447hE&_92I~eB
zgN+)gAusAOVXsilZ7;Po%}ZK1ElqgKV7I{yYiv|wW5cD@c+*6!3m4q9#%47(x6*dT
z6MYLiols*-L-dlJh+Eg#M#;18@NH{sSL2i#Q)+BqV}}}h)!4hnjx~0&D!VG`da!ft
z|9|Cg7e&rWZe4LV^@XOR2KO+yr@?-<^s$dsJh;XoHTE@8`x)Hd-~lxbtZ|UxniEPB
z&AtQ=HOi4Sj#7(;A1=EFI))?cbe*9bt+Zd`Bs)E}#&I=HG+aE#8*)Nz_E*ZqETWD{
zM%NTV_{lXUcla+G%BeL@tMQLfPOou>>ejfZ#+fzFl7|(dO8Yg=sd2vXoNE-xk(19e
zioTxxMd!=9@|B7%u5n3?88x1&aj62b#+^0ps&RRZD{9<O<Hj0S*0`$1H8rlS;rE-Z
z=hbS+6uz#;)EfWx=K301Kvo!Q)~&r0r)bGqX}`wJHEykOTa8;xhnr1;wj`-_9k<uG
zqeiQr+vBa%Wewh4<DMFi)OfVUy*2KuF|EdfHD2oDTED->12wm6RJi&=OO%iF<Eh>}
zRO4ag5Zxf?mn&BKn6>zX!N)ar`nmOg)tX-8$(q~6E&O<cPuF;+#^*J@sPSx#=W4uB
zV`h!#YrIh7Rg>_dK~;I#ke3wXR`(S<J<@QMzGkPd*WC6hoxWM)tr{PQSmW&)@6>qD
z7~VBF-FQYC)I{!mg-}P%M>RgF@o9~Zjk9I+w>zbu)!4`IFKc{N<F^{W*Z8`|H#L5!
z@nel|t=4ynfst;b`zSrCHp<gh>nFpd-Y<sytQau*uXcL4;eQzZcZc&&L;g}=Sn0yn
z7ys7y&*-yi^ssS?L4D;$!h6=;uO;R%IH$p0b%xqURPM2_74@mRpzW)xfYs_>XRbPP
z*O{lzLUk6dGoa4EI`gYmok4ZxHMaTc3^rs)oz?reI}~L<1zy8`wWD?ys58tM7Br}t
zu!x#rw&#0`)LFF7l697<vzRd~US|nIG{F1xcg$@#+=xpX{J-=Ob(XEOT%D11R!vwf
zVN{*v>wF+iV;*gAojNPjS+UNTIxE##tIpa+U)kWAbyiXJI;+{~>UGvIL?d03f9arC
z9hF^$w6lr^?AW^d5uuLD^s&`C<LazeXZ<=S)H$)v26ejX>|AG;I$j;W&W3e1G7krJ
zazo_pN}aGyR41-et<&hxYju(iUaz|>DrOx*(hfZ{q@6m7I!!y3hNU4b)4$v5inwu|
z@pZPYvrU~%>TGIs)!nQkZOb~F*V)2qiLSOLbnuCWY*lwDU81DJwub9;N2|VFo$WiV
z@6cfr=T4ngcCE8pog?cURcH4)dx&1=a4X%j&i-`{uqO7Zvv-|+jILHBVc$CYS<ymE
zxl?I%V4XucZ5>qS;7)Vm*Kw%T6<b@?BaE|+3m#qP_)gtp>Kt3=IOA85>i&;yQk|3P
zJXYuNIw#keT<82c7t}eW&J;CQ=e#<n);X=tStjlDI%k-Y)66+-X=ipMOYO7koMU>n
zd$8S>*mQbfor~&RU+0F7su$O}q|T*vE~|4*ookJLdB?6R>RegpDr@d)gOa8ubhHIt
zXPi^5Xmy-Xy4v1Y=cbMVH`lqP&OLSRt#hjhml}7}xvkFa9Uj$^z&q>QRp)LK^*@)Y
z=)OAl*LkSU!*w38QZYYRXIe*ETP4A^y{htvu{~-~^e5^}uk&u5_pHj3b)Kv9yx}wI
zJk^o&wDCVv=UFpKt*Gt`bzZD9(|BGohSv<fY|4x0l{&8)MYx)Nz0MoPth#cDRC?1&
z->UO=r^-7We(|W*`~Sxe;{T}5$8~<I^Lw37>U>(~OA{#JpBblWeQpxI_&;*KGW_cf
z<(oR+8vdPP$!50S+vyK=el+AKgFhRT4!_j-wS$ZQk2-(WnPrr}4F1<C{o9a#>ilbn
zn5B<&lMoVmB=k&}BVnP0g%jpX=#?-}!hnR{34Id!CG<~t&8{G?_MvaWlJ>`8tqRVS
zFupHyCvFGnB>U6o^?K}^FeqXEgrN!ZCJas(k}zLFV5=Wm``WX8!Lo_RW6J*t!_-h8
z7F46!Mr*rvrJF8-ug#jZNW!8CBbBrh7E4$>VR*vQ2}?+gguD8&RKf(?8vUb*JxmL6
zx>ZRSk+5vSa*5lozM-bFws`Wjy)*Kp?hUp6pD;RMrG%9eR!CSeVNAlFeYw_lu3n^X
zChHU8CiC8Y9M+dr66Y~3j=gTg)f3W$EMX0!ubHq`;vBnnLOmf#7%Lt0{#U}f3F8vh
zlLrzi#=L&Q1_@ni+P=*zv7Q{&7eC=-y>f1z(WO63h!Uz+B{nF|P5Zf-o9@wO_M?`#
z_t4vu0c|vD$ehjvC{HL7_On{egfd~9gl+A#Wr}T;(4DYh!bS-jCv29mxs{Gj*u)SC
zbj=xlqnW&gT%E9G!bGi>Sn0l<8Rq|G-rB0PV|Y7jYbT>@Z*T{LJ0@->pszQ`MLQ?#
zVr;t_6lFI<c2C%&L)p`iy$tT1uuq4+uOa*BN5BaOBpjG<kjX#9ptf)vY={hzK8LD<
z5)L=Y7WUJtBNF#mQ^%1BM;U%}hjNS|$0i(S$ngeGFnFRt)jCAe{=_XM4NX}fWpctP
z2~!eIReUyBvcYLq`hi+ZI6dKvgfkP)N_Z&Y;e@jj&Pli_;pT*M6V6MxG~qIh7p<cv
zT$FHe!UYKzCT`7kiaknrM?01i^wdueHME+o(?MDtO}HZAs)VZ(w|IVK!o9ZX<(H9e
z8S|RNJ^Q#WVQRv)3Ina~+G6tc;<x#~hNSx9hJ+iXjGo47OPfCXoN%k;B;1#9Tf*%c
zYYBHJ+>vl+;x=w+eg0wFVWMXo`|GoxiQ5VG&PexIQ*%xc?>Ds{NSJ0wbrgDNGQpNx
zAG91IO&&4-Je}}N!lMa~B|L61JU!vbgeMdv){6AhlC|c0^23aTr<7rA0bdV3o=td8
z*(u@mgy$1pNO(En6(tIdaT%xuB8@Uz+&I_Zt5&2^t!!v{M93RPc{|}9LuMwt*{S}P
zGNCQVXgx&I-c5K<i9*vkt)%HHppF>h(uD%xql8ZqK27-8ELv$X7Zsl+e6G~mV9o|#
zBz&3hlLl<UR|#LMrxLzT_@<-Jw}z-isnlK$`oZuY4XUB`%F-`tG~us=zm5J|!tV)x
zba>iU|7nT|UrgUcN%%Kmmb7Z{UqV}QThw}b@@vGN4cDlSW$X~rt3mGu^EVjUpihIo
z#xSTszXtsq%+p{%gSi^WneDHYO4Qs9r=b><1~zCf97$(+Nk#KE7;F-TG-fL>U#CU!
zEYM(BgGCxFYQzN%E^KfiwWVjxwv;E$7wgno+}diddCI7z8VqmnVS|qvEZtz422&dh
z(IvRy(u<BO8!X#kxdtN}jB2o7gZ&#U-(Ylu9UJV_V1))NHYgjk8jNYMQUkAn-(cki
zt4Ol8=r>r^q^;FpZ9`UTuzG_v8ndsYYZ{w4bqP?5V~uD12J0BIuEB8))-yym1v<ng
z{tc|6Y6;gxS;U}0Vr;@I4Z;RdgSg=?F4YD#LsV3^itX!oyL!WFr42GG$_*AB4VzZ_
zKMlJZY~ElCBW`GLqXru{7;pF{R(G=on;O!t^}o6k8f<H9TN<2bJX<x`y1_Pvx3y~X
zZ`V;^`vyB0f7?Yn8!kikYOqU(zN;a-8Qi_W9u4+1fvVD$xp#wotaRUwAKKCmFyh$_
z&S`L9gM%6z+~AM~CpMU5MTZ*yk%k}E;BXUrL`OFXIjX_Y4URDeX?0wKV~wY6#qk}^
z6HJbXCp9>^!CA&Xxxpz7&M<t6)jG{^%_mPaq^<nv9b3-qNEW@Vzgj%kI4?1HUW4-u
z5&eP&7dE)4!NpcfRUC7t;-$uRnZe5&TwzF?=c-OCS2wt(!L@dJoqE9@-?SxMZ~Qkj
zxUs=a4Q}pu^_B*=Hh8JQ%MEU`igz}+tHJFJ?vT~}IB1dC3ut#YxTnG64W4LlZ-e_9
zJlNnNt8#yX2O3Ok;Fjxcsr*t)N_T2YNrOikJlf!~22W{gu{PW2(Us;)vu4ew^*YP3
z(;Gb5;MoSxHJBl`22VG5romQv!fR8$12sR?UzPQl8a?<EQ5m2gFEn^jqu4$Zp*dk<
zuj&lfv|stkw0f_>YYkp+@J@qw8@$nAW@GmE!{2Q1R)e>VP4mX*>~*$<Y=!DbTa?g@
zLeH>tyx-shW0N!GNx_dBe4@0Ix`F&@gU=d}(j(<_CI1G$H~7Q&zf|7n<DMRVr93&m
zTe$wZ!8b~b4Zdr*)9*FLZP7q8mLCk)>5qo|)Zk}BelhrKr}VeR>{Z|GyZBRLt)agf
zc7e7p$^X-E>+m}MRl+xXR)?a+%$_N8q|B2tAZ5;!UMc;}3KjKEosfPhebU(y`ljxA
zr9>42-FLm_N|`&I9SJgAei)cC$f^%cnb#0K4rqU7bD5sRwo7V039%x%t{tnxQulV)
z@RX%f7BqYzg9{r}(ISQ{nzEQ7iyK^`Q@UizQik7aZ>TMkG9qPk#tIqBrYx6ocgj5}
zBU47D>?T`MmKQ@xBPC5)A!WssaVhJij7eE3WsQ_IQ&vt{C1ur=)zaD156wU{7128d
ztEX-@vWV?5(+p~@l(kd$h<07c*Ph9djJ4BsQa9t054F&$QqA1fm!2t=lrW_$<xp+@
zPw`XqhK_dEh(|N4Aa&2sC)@t3Ncw2mKc$+w9aEai)r?X%1wy;8*+Oxi&fc+{rQ|6S
zQ?^PeQkp3nrEHv1TCG+}cj~s{XgOVT#nHB3dP6Ic+T&9;N!dJQi_|rw2kV;(AIfH_
zn@MV&Q0mEQ=_UyiQnpOp|98~7n75XtDLba@l(KEgc2X~8ht%y`R;f(T^iQ0VOspjD
zY>n=cvTN!z5rf2TWjn8g?2)pkd?J%m_Db11<*1aSQ}#*OH|3y|gH!gChf@wnIWV35
zEdKA2ZexRl>ruXhNL3w&$jK>(rEb%mc9gYWlsjA=wvawD<stK-wj^m{d`!x*DU(u8
zQjeR5Pe?g2<@nTzmHFyNJ@J<zlBQ97vZnp=XUY`oGVQL}Mtf_m_35U7)HprmjFjtA
zrly>ka#qTvDVL?3opMgfg((+VLlUTp=cb%zr{||!U~X5VbD5Jh?(Q4O#a4QW!O5ZP
zm&;SGNVzKIYGs?4D^oWQm*F!zohAI5)cHiy@@q9bb%zykeaa0fx1`*vPE5He<z|zq
zT`}$kL>t;|Z<y-dmU4T_ohf&v+@Zl@JBY-fB!KPWP!%aA%DpM~rTmrhcgp=K52U;;
zWm2Z4JecxK%CqveQcBA7lqXXjNqIEo@sua5>BlT2BuDO5fGH$2)+Ai<Gb80GnP6;g
z0FH9|i?p3dJaXD|DbJ_8mhyVa3n?$Aypr;2%1esg-i}k-PF}X|)-8jAO-3nB+IxY7
zzmYOC<xO*uc73P^-%>B=y?bq@wOzaKro5N(P0F_^@27l_@@dLv%3vuUrF?9mB{>>R
z8pYc0@kweM-t3Xb=P6&Le3kOGMaW3)$&_NYGgBQQONFbhwmf~8@_ouLDZi%tkn&^d
zc5nV{ChNJFtoTVCZM)Ww8|hNeZ&vh2%AYB}8!l<5+D;@T3S|bx-aje-rVPv&l<{B6
zEM@YHzL{&0j5#vq%;=HPGvk_-o#CP@4tp7c@ZOmll0p;`>V<w8{jF%8jJYzmJzhm~
zXHFTZDyVx>Q3hmgtVx-9GX`fYnz2~Mkc{~<7RVT;oNOD7=Fb>v(v<O}s*VLS7Rp#S
zW0B1D?1?zBYFFEsg^NMsckzrRGM3I*#_BGau~bKh((G`<)prWc5o#!7RL1f~TrT77
ze$M$LGZ(ts;x28{R`Di7)XIt(V=|^@T(8zMR?ave<G_qnGFHtPpRq~CY8k6%L>Y0$
z8X0S5te3IAS+rKh+8JZ5ElFD^b27)-sajb#bAh1&s3D`++aRMW!_NpZmsP~+8K<14
zw6D}r$q0?2AW_ay#jCY<D5I89WHdAC8A(Q#k!Q$iIY<6)WX|nrhK7$05#{RkU@0?N
z)@2)KZWMQ$&KkBGT9u6y6{DOcT2jzpk;0p1Y$gRVcF5RVJc@*jtxcr~8CzydGy~;2
zRaAIrpX!bpI~m(%Y-eohLHSnCN3_XMh>jgIcFNc%V_!u`#x5DVX6z>6_BxWRkhI;+
zmOV1|%v|qFCCS+<bAw%4$s2pCq9L+$KY7nWrJc3Ju)3}e83$*aoH04$kc>k!j?Os7
z*bXyzRL0?I#c*kLWac)cDUs?*-PZY7D>@<LM5&Z<yjj`~TJ@B8CS{yt>Iqk5>Ovq@
zPsx~)aY4p~8K-8PmT_jrS>}q<GtMxXs;*8^Ep@Tr*%{|#oZHdlJPVTZ6;T%X3S-&$
zrglYUT%2*Wv0ajJX~tzzsZ*;huni^i3Zq|X-Fj8VQ6}V?jBAZ@U54Ib)86$dX6y|a
zH)i~r@mt1C88>G<pYcM*Eg83FJe=`J#%&q5XWW}{pCTvY&WyV=?#Wz->f(Nv=p)?@
zQZ=nZ9iiU5UfV%49>|!M@t`q?r#+md=R+2ILeyVkel+8;j3+Z@WIS%}dLm=G`CJ)E
zTQub>wI$}KGM+YuXAJ6zn=VEg%PM--tbR@dP@D1k^J2zJ86RYPnDKJPD;YC0-pqJ4
z<F$;}<plGFw9+m<sV(`^N2fyGGEwhkyswO5vGI;Ir@naC{HYdIMb}e>#2_vHWPF_Q
zb;dUtpBU%o8DC_4YA*WBC|3@4D?(ppXdO)2DxXW*R~pNPe4FuI#`hUN$mg95FW>%{
z@l(dna{frS4Ok(n;h;#90>3C1Y0wSj_l!T35_6W!`7`4$W#*i@bN<fwN4Y(xXU@M$
z{u#3}$X&Y%Lg}D%Bq#~8MKhl{a^}qGlhZeMbSc&=r+4nAuj*WdqT213&yL>yxeItz
z)S>I?JUIh$=Fb_LGcadR&XAn>a^}q$oVzLRrlZ_qqeMyaqIRVaA~lpZ7RVWvvvAHL
zxyz8EFPOWISSWXj>E1!N6^oim^7dl68>ccsY>Ve^B~ZvxIm2_-%vmdE>6~S9R>@g4
zXGG4jIm_jYlu@IcG%-8R_ja{(aUW%3m(LlUvqH{_Ib+ml&dRxqXSE`Q<#4qqV~1&@
zyGd9rXZ4&ltgcLGN2Xr$RQ#-+Gd5>~oUWX8a@NgRFK7MSO+VUx9+$g!H>8PPpV9j=
za-EFwa(t5(8r;qzB*>}Qsa&Dds_SVa51S^{oLWvjC&}46XP=x#?!JSuralCeljdYO
zxg8=FRwP@5%ah0H{vxN9)19+n&PF-A<<7$!x7l(g<c!amX8fBNanqd54B1?@v>f5N
zk3MagGtr2<<ZNZg4mrwHTPt8>xIW{f4}s=vm%A@!X!^RnoUBWmZ(o5k{+)8(*JQ(R
zeT(K2ef&XTVDhEv?z#H}#~wL*8pAvGDX_idUi;?ZzB&8J&$_WH*gxlhobw7dz7EVe
zC}*yMxeE@?IV9(?oW~V`Ifvz3m~&Ci;fmp$NjWEJ|7XroIa=^MF6Zc+V+=pm;ICuc
zda0H)b%^2koD*`l&9Y5DQPE;gVNTAOoO4FbnK`HAOtHGB8dSxBjoCXhPs=$ypS`nA
zE6HaW!+AO98*+BeIfkgAa}~WN`GO8bE7hWFH|E7Tm*m`@b4SjlIhW;Jn{%DC%DE!v
zO5>M$V%E`C`>LF)6@(`68VwEmQ_0kv>vL|+xlM7Nb7Srna&NKfqx6v|Gffh1mV8^T
zQFR$B$y$SLub<zUb63uTIS=LBopX=XotATNN9X$uxz9vN<^yK?b*7jkOUT1HkK{bs
z;n#|>6rRTx?Zxm!&h(s5b3V&?GG~TDE9WhZ_nfD5UXj8%&*VIt^IXpJCZuh+guKv^
z`J%?1wfItp^0KLMt{yBJ<&B(~Ij<WopG&>A)6_xI;q9Dvaz4uW*cjf;c~23Wy8uwB
z4#mI+8augL-MUjN?L8d*6J!1#k3#74oG+A_bN*7!REo>_Ip>$0uXDaJY2W93Yl_KB
zZOPx|ZXsQ`<osa7A9H>(XR0G))UP?e<@{kqQlnk#cO@?C=(ZJq=lqj1N5Py0|K|Lc
z)1#ng!K@Cygj388<3BrFh1>nxtDtv5--3RH>z6*oY-Qx7wpN0o_cywNWS)Wn1>*}g
zDHvEVs9;RNN(J*43@%utV9|mh1@jdwXjN2w{(_+e3ly{c+1|n`cMU6C7|5Rs8Rx=w
z`jN(k3>T$f*@EQ?mMB=VV3~pu#<rBf;RUKF;gYbljO{!xkXSufk-{SjMis1J%wk)<
zaPchq=nkdbaVyFYle2QcDg}N)P_SyjY6a^W=jsJ(6s%dWR^hUQM5&_WtX(j+aKmIB
zahe*EBW0Y6^jNuIJ*&QcL6;#L7*wyd+x5&?sah!r3$lW|AS#Fp8U?93tDss?vs&$*
zQqy&7D=}ibgX9e<qcK$&Q9P}JrV-1+4QjQhheX{48ydq#)~@O*v^JK>Hr_Wa*sS2t
zg2M_nFW91B&w{-QCKPO0uyesKCU9cGwguZ2Y}ILN>w;}MaiyHReZdaq=bZ|6G`jTp
z%%17UC&I<EYr$?-eGiKVd1H4w6@v^BPdhyJF4#{AzhIwETl*GBlw#w6f&-0sNWnp-
zm}(tt6pd^3g-+Ek8e)eR98qvm!O2#7WWlio#}yn^aCG4qlqHU_B8@e<;`o9S3QjbN
zgor_h5FL}u^J;x^!6^l27Mx{lQwmNmIKyJ&RHK|`9&Y!to=B>0JIS0~a8ALw#-n!I
z3@R0JzFpBSD7diTqJoPH?k$iHFDbaR;KqWR3N9<Syx<!3X~7i*R~B4lqEuaeYfEzx
zZbbFCBwtrBwcvWAC_=<@LxF-vZ0ZOx++1*r#!<mt*4(WHw;S_qh2vC@wDaU0rk)&o
zx0R~mJ?6dt+h6w;+;6216ih34&?HF6LpHwDoDN-F9w~UV;IV?o3s!EjN|PrFrWgEO
z@K3>$1v3iXDtNo#se-2qUXiv1&lEgc@M7U6V9yn9M)!O%djcuS3+hu_=g~^YO9d~>
zQTB7mm29g2n(@z6j?#9Hf;SA&3~hd!7QWdz)zs^qf_DpkDEP79y@K}(J}UUQ-~;1P
zLmwKVS5u{cn)syP(}FJwzAXO#d*7cGd~R&ICD(h+Uln|<EMYoqq1e__V8ivieo%Wx
zUGTlRS2yEwktF}5aZ&JF!OsQ1bR=uS*}jYX-Kzg(P5hxutFJ&5Y~0%&Qc2bSRVWrL
z++>j^vn096TutU~(xXYwCViUpZ8ArbIh*uq(!1%ZNVwjR8gH++x2L!g)vxJ1*59Cb
zH0jmMR+M>~3}`Z>$$VBcu*tkl1{*%epqoycGJ20m{PQ;%+GJRh1)FYJa)GAvm2MLz
z+k9JdUERem)O3?xQPj|)O%`i1s>$+A7H_gdlVzHWXtHFJrJ4+Hva}fV<7^Y&-u$56
zmkFBWFWY1}Yh`59O}6D6(WQfy8U#n1dP2rDS;6oX4Js1cU7oo@evl5UHd(Dn(WKdA
z^(JdH37bSs)@-s?ll7XcZxz>WvQ9_l*rxNL?xfajGOp>K3$z`p=5%aeY=Ob9rc>Ut
z_qlx48s@%wA)ZRp-DhddN_gC)Va(MgHACtK6N7izO{-paP3<%@m>c}cEG?U~nrz)<
zn<m{xm(1~oY}jNYLpE-rPerN4hfTvxnrzx+Gb_?q*u2RWhEFg!QIXS!Et_sX(j+~%
z8o^dgcbBK2mE>)k?4%wv&g~3tZ*T{LJ2u@1WEA|n*s1vUYO<^0yBXZQ$sSENgmrJ?
z^<+;4YP(0Y{$mVUA=$6V{!Jd=j3+kZfF=hvSztWF#&b}UgPX7+JvQW!CWkh8v*fLk
z!<ro4WNMS^n;g;P$R<ZMIl9TSgL!d?dnx0UF&xw6*e2IDxlXM&x!msi&eT<)$q7wP
zY;v#m;WxRY$)qMH+3CqmPBlbDlht=krl_a-JI+UYIe1!=)0>>p<V<5b%V0X1-&Sy?
zXLstJ)8t&k&og*_hkk(}7aF`s<Fu!%b!n&cN<%I)c)7tV47L@x%J8e3T%+OHn=MSA
zjctd|^2%4bwQq7`6JI-NOKxg%v&K=$;w85<xwXmX>ZT^QHMw0QsL3-;?r3snlLwnT
z)a0%vcQ?7O$^A_R_2(Xq%^uvVv8?wNO}NBP>B;i_d7#NO)8u=-_F}C++~g7Uol<?1
zN1HsRq21r9r*yZ5KHROjnU=_!%+#KTwRuvx!YDJE?g{BoEd(in=oWQ(o^A46llPl^
z(B%0hFEn|v$xFsIsTW@lWNJ@dRtD(7D@|V2z_DFhuc?FdzJq-cP6A(V@`hCrKGTpl
zo4jSn+Xmk;_->Q;I{ufcV*aqnM@>Fy@@bRLdhoF#b1_~YfXv)QA#H!K`b-Ausi=Lu
z_RA(;HTh3TxXIT|zG?DXli!<s+vK|@KQ#HV$!nwdUik9P_S;O(PfdO{6Xf2(`b4}I
zf6S0y%?j<4mo0xZ`BQ_p$-hm`nS;NY{B7QQ+_tyfZ}8k+&JQXb-vdf|l=Lr|tE6Yi
z93{O<dY8;uGNwPL_h(`c=ix`SyS}7vNxza|^SHp9Qy+b@J^cM_Jz?&Wc}j+sEKo9_
zWMIjBC2B~19#nFSan4&ZxMWC)`cy|7`9)WO()m!zpFe<MrTe4Pf+cqh;Sha>Mf3mC
zE%Wx(6}e;)>0tPxhRD53lq^}YNy(-qOO*^SS+!)flBG+QDOt8;xsoqdWN?2D?!}1G
z$y7t<>9?@G7+Er^<P|;GGUD<jqdU5-P_m*tP%^zgE0wHVIzy!MRs)>!s~Fp=y;;3v
zjgoar)-9noYs$dUtW`4BqIYepHMZm-{p3{9)t_-CUH!>Qaw}S|Wc`v2%>1qrza%K}
zN|)>8kQe5qQWBP=rP~P{8NFsOHYm2LAu6pKl62^e(!K1~mZQ=_gW6<nSkknnOM@+g
z-3Gtz>1<TbZd9^y>AG0Q_>%W#&Dv4BNlP{_*{Njbk}XOmlx$bBeaUV8-74#rB@;`w
zGC4b&v0ImHQ=)f%w=G%A-u&%7Kl-J6w2J!x^$sOF8ncpsB3TXXQnG8wUL|{%>{haS
z$sQ$pmMHL)kQD}N>O}(^YvSKcPbGS?*AN$+`;=~gNb~(l_Afc0<iL`vORgz7sN~?1
zQ%g=$zn2_Za$L#r%Ks&YmmF1cbjc25U0@tha-{UMl%nuZbI0hkKgX8*+Ru4lC)-#e
z9Zo1Yv1D?|DJ7FiPAZY#PBwQbiqy+8Ux`biJ{iT7(p^)g4|aKVYyJM9<cyN@)te<}
zmYk&lQgU9&*(K*_4EA7VFQ$%mo>yln0ZIW4UMZjvcVWpzC6_8xBxDR*_2S}^ORU|K
z^r>p|j|{n71ED96*rnl$k}FGh<<fDLAxr5FwB)*yX(bPqOf9)y1FhuFk{e2HRFIV1
ztbXjl5<{FCa_l<`a7)Rp>S*(iJRtwvZn%P6c0DtgyA*8Fq~ty+*~=+#Psy5VIlpP-
zDp}oM@_>zERS`wuBsmY2JY4cz$@3+TsH00BD|uYe)r&bt^G8pf8^secc5R*(!<tOj
z5Yxv$OJ-=$Df5@^r*A@ZNTp{?zB1CYicDQh`}0D{iyGY}ua>+de27bWFB{uL>khf)
zH8nSfd%5X#i^f0o2-p~Ami(bysxK#K{io!ek|(>F(apOW4)RhrH+S=X$p<B6i&l#d
zOFmNeXt6?zk4ru&`L5*ql21!MEBU76Ta6uUoUl;;Tp3A0ZejeTAzvB%+Mvd)*c9Xn
zC)xEw$&b1a_h9*!OYd^&Px7rUA|=0AFZ^2aTgmT+{|kSV{8_S4i-lYKRr0sus^vz<
zKW5+@hU@fSJN?h#EQ454j}|=*(P$OhoE`pNZKA<GE&3YL&!D_2&beC5-C`c23^h2Q
z#lRMW44==S*ye39*zh48ieAy0zk^Hv1v>b!77H5Qman>tv>0KOMGY=yaB+i67+lie
zQZ0tJSlaMq3`(r3>$r1HmNm+921gnceN>y+gP+X9E4CQZB5jei_(bo;NaxWsTCCi1
zow!PiRa>mqa)Ww}7HhUx-MU8CeNonGxoeqkrE41;YjB+w>$VtY_<9D#tOyre-%d9$
z*ww-_MD405Xt}lYN{2se5t;nhpc<+gQfpD~P!dCW+T7`J-EGZ5-lAyHZ1JrP*dd*-
z;3}57TWr|ks&20CW}_Axx45F4E4z872jg3uHik`F?zy3?-n8YeAe*(=+>G6#<*sqc
z-V+Sjvc<#}Tea9)f!EC<-E7lh+ZNBXc(%oMEw*oQL5mAp?9gJz7Du-@M$T-pbBhC7
z9N1!)7Q43CtHs_ecC#k-XdzX1H~bSD3yS|e?NoFf`?TD;?tU%yHAEDh>e$~-pHhmD
z6IvYF;;<G6s|ii{42mxNaE(@d2u^$cjd+AXogURe#B*$m<64|5SF|`@j?xWIi<6Au
z1cN6U6#Zmt^puvnh)gzI#I`<D>{RsATb$8yiRD~lJF~@$%2X}RGDHkI)p3rUitW6X
zdnNyTgRYjI|F*ce#qBNbXmLr4OIu8BalLxH#pNxok%#rzSK8XkFIQQ`D-DWrb&Kze
zE~w*LJH5`JYTeM{M&&Vm;Y}T_fu^1Rc6zhnVh}}#HmQo|HY+++e|~InSBr;RJksLs
z7WcHcuf_e=qB={*z1CkBYq_lDZYSr``(H9ap8zr_%0tSZMi+dv#bYg=Xfa(`w8rBa
z$TqiBi(mKQ$rdwOJY`K!=*yn=0?~=~+mWYR?#u0Bd#=UvvZ%%PEnbitTfE)kofa=y
zEiue&@p6k-TD+>T?8oa0cwGgoR52!o^K}Vmxp##`f79r1wcLfw3AdMA-fi)L=vMSz
zi}%exDm}LcA4%;NU$yvJd85UrR`f-S&rHJSb}AoAn%Zjn^GhS@NvMw3^a;2YpAX?%
z6RuN<{h`H=%E{f#(aldSes1xvmHyJ=*A{=8dw*+jkTL&Z(fGSTQTq1b7G1(x{M~ZM
zbUXf$d#!8!YcZ<@-R@7RJ-Xe`Qne>@kj)bR)1TkF>DA5L-OSVNdc1eH3&noj^y#Lr
zaNBz<6GT)m_wQz|Zhkjha6mT$yBXZgkZuNbGjBJK*-PRos@kE``MR0En+3WV*3D4m
z9Bt0mY}44<$b#K`pviwXA_~zVr!CseV%==t%?{lx-pvx-)Vis6vt&0*bu+FT@eJ=~
z>26l;W|eN1>2{-jxo$>wGs5s?4T?>49izHgp_>)ES-zXmRwRpb9A<EgS-p}3+NtR0
zY5k|0)w)@;o3*;#-Nforz)IJUZnj7zxOTU@QmkVXwKdih6J=ea+-R9$y>8a;{(p46
z3HVmS`v!iuYSX@=XwklFp|qihDAl{2bKZS_qlgqm`@W)8d!kZNw1^fWWJ^Lqw(M)!
zDf-`YpU?62`(OY6b-mYp-Sf;d&&)jY%$#k`dC}8nPPBUa(8q^fK3pM%D}`72%sp*d
z<BvL5`%D~O<1^o>K2gbV{`yKtNk1R1r>}gle7Hd!Veba|&|iFj(BV^HpLtiES%Z8S
zETPY5u7CnQ_(hn-B!59Auj0zjB3#eag|H719}=pRSzWmP`w;UX&S>H00iJzHNRpHe
zld0B7`@omf*xHPQyILYo|M)Q9hXp<iVKaP~s>a;x!%!dY@?o?O!+f~KhueJ^;lr&A
zBwk1RaLAjjOx`9TB~5u0@L?1q*@uxn^Cx1I5czASA79%a<HOxPjQ3%J;`t1R*oUz`
zjPv1h?$hS&Zk{8FO!VQj_McDYX&x^Ggp^ESV<aa|^I^IVGkloo!(1Qc`7q0e**?6i
zDL{qe`pw}PBlm}J)%D?OuK((zdlkdv{SwmQ3w>DR!)keWu@6gpSn0zmA0F^wsShiB
z_=oTR@`O{H`rg&>Ete@uzSUn~{H?cRXsSQY_T_C7PTMPV7QtH|JRx7_!+IY!`LJ0b
z*RvQlaDo)aBa9sPolPHj)x#)dur+FLZq!sLjV(TG^<ke6&-n1T4^Q~8!-t(dZ1Z6|
zr$9Mus%q|X)Yj0i<IR6sD~AKT>!n)iaM!&Et9V)!?H2A4?iFsUhG%`)@5A#x9N=2P
ziBJyJTADL<wuHAV8130=c)@3`EGS`J2kC0g4j;bcxrz_3a!h^rR29AE!|RL_M!w2E
zq3*ol!(ktu<Q5JsbRRLcm3&M1wvf5+_;6JGT~BgM<UJqW7x_SV+{^t?<e^LPF~gO&
zIynvNf{s1Gp=4aKVY+Obulpy{)bg)<_?iRi!&$8=-}vyY58rXYlmow4kw55I9;1Eu
z(T9^hbHno&A;~Eo1;l?APA+b8e--~t_`C2}4I}5(=${-r9s(HBBIIX$_}k;L;^xAH
zF6H?x?@bl=n|janqoN-r{3z+i+KMRU$M$Ndp<7s`{V2;DL4K4W@uQrQ6@-+R_Zw49
zx`00>EBR5`kE$V53!w^$AA|fD?8p9=sOCo_KQ8v0HK97K@fMJ<rm&W<wy=&L=ZR3~
ze31+Ms4G&>lV2!ukstL%8hG-CtV=hG7}AaXXyG^CVQ8X0G8&uu(M-I#-^4#Jb%`zg
zXyrF?(%O&C%oT6rM_WJI`O)5wOZ=GB!pxBlesuJslN9E)FhzD(Gsqur%wFb47n!}z
zuLFS}J^kqA$9>gsxgXtBs=FUO*eVra<gnlseq8Ct)qY&#$5rG!|7?Lie)JZ1FBYC`
zfi2b0*N<yunT_F11GfA~2UB}LR_ZqwAU6mHsG|PDWz}$_-<0KVpd@_Y;`77rN0pG7
z$j5jT@EfcULeP(pAC@1sACLI4(GQ0;axwQKEfV%4;zv|G=10Phq~F{LiAz$wgyFn!
zTUi3zOCaM%R`Qj8<V0@vW2i`;y$~59yh&K6f~jkmAGi21!;hJM+$#B9evI~GxF5GE
zdAlDYMMn5>hsf~?;3b}W!8po~J0+wkHfD?;cPlwfc#j|76~`n$#`-Z%lJR~_^yAr*
zrs@fj@S@u-OPuV-6hEd)?lzBIo9@Rf-87@AS$@n`?m|E2_%YXydpX>63!7BJ*qNtX
zmLjL+`~8?N$>I`NAW~Bc`yyB9#}bhT{8+9)VyUH)EOQlPXNCC45?Cd&TDV5|ppd23
z`tgwX!@_l*e7(p9`GIPi{MgKi6GYh{9`)lf&ei}12e8GDt$v&vK*aza_u~maKJeqX
zAKSPr`0=VAulcdVkDY!z=g0GmE17-DkEca;QBA?HTQR)Pk7xYY<F#S0SNpS`gqN%P
zJx(tj@Z$wP4*K!3gfIH>lERD)-pA0=V3EHf7tL3a{-oq}=^ypukRNY|9~Qpl$D1P5
zIpQx074o<Jc*m2w@$;^d$As_s@xF)~5+C~UksrVL@w*=%`|$~z#EwYeQ$IfU;|uW<
z!q0?^K-Ti5_&36@{P<dg@|i8od?ESXk01Q_)sz3|$4}xXh3xMs&tp{nS;AlZV3*nE
z!6jkt|M>AISMLBy2Jn|3r=@e&bJ`gt{}$51KO&4?1WfJ4gvEtSQeH~DbO7gwxbwP9
z0A&M3uA@#lPrrP?Ttrj|fX7^tN&!?3pkn}?0;m!|)d1=T&>(<n(ytLf%>b%<WnG`w
zQu6!&YJ2iJ0h}l9-ov>-ysogG@Iv85LRY7uINRSmfJPp_Sfp_PO+=asn|Zl(ev1HF
z2GGirv=wO`KpRiO7PbqZeE^q8!VY!_nEP^Eds!DPbPnLs04@)pn-ne!psPq1A=hO3
z$_>u$l3XL~5kSuXdWrWI(%KaPTp7Ss0kcLi>Duq3+^dCd9QGww^11-758#FX`YB0$
z&Ld*~0B-ao14OtSQ9e+d#(e?!1K7%`9Y7#}U;tACm=-`N04soe0EGZ-DLVm#Md;*+
zNJ>a+(Ews{1$jJxgycz~yPT#y&5TG^%DDh~>qhsG0B#E4_5el%aI>d*O8`T~hY8);
zaccm>mAp;p8fVrW0gRMnVgRE8xHEupO0qq71u!~*F-p45ygPt<0vP)r-*RMK`_vyV
z%?V!aB+t&|0H$zIG|*I=9>9zMRw;L80JB6M5Y7%@ZUFNFn4_c{*er5y0P_P_5Wszs
z-!G(`ty&l;YQSO%7X{2+M`rQ2#B=P@0G26txzKI!iU3x6c6h^lbpUGucrbvq0c=!j
zA5!jm;lsjpo<1#X5N7~CBEsO@q*9xOj|v|XZV^(GCmT-$uq}Z11NcCtwg>P+051lx
zBY>R&JQ=_)$@dAL3Sf`O)56_C_KR-WEA9@;GXXrS<bF^1oTvG`$N{buCCn1{QUC`f
zIV^lRfY&|ER|0rd{57F#`H+|Uh6tC?Hv>2#{#F3*io6}bJ0eGg^vu7bb}WGRBy<nr
z#{>8<fG-31O2Ur<_(J4k;ibIh3gFWKPH+Sz`CQ0@zS|fV*^#dU_=Zb#(2Vl847LD%
z3*h$vz7ODs0De-bAB86aI3?naI6c53uAQF)_$7c}17_JbcC=Rf5x}1T{1d=guKy~?
ztTQ5~y)gURle>1HW)v3|3z{{JMM@}1GD~Jl1yMSPbAm-H80GF#RxXIvL9_{?d=M3a
zI5&ujLDZv>ASwk>Sw?CHQN^=XJ&39vuNH)RDn)BGB&-=kEfGGOrjWlnN}eY?KZpxN
z>IzrO6&D3jKZvH1P`^PCjXmB_q>=Dqq3gXSLAYh9-%Rr6L9`HQDQqQlm(aFBv<qTZ
z5VM15AH*d=*g-f!bO@qj5IutE8AK=P(^{7xItOv7lJxCmp4>g_>l(!6l5`Vx7rKjB
zuOO}n;`$(NknqYNt`6dwAg)r9mV1lz37W@MO!igsIxqKH5spYd5qDVoiw_RM7sP-d
zZdB4OJ}`(uN-}1+rqQ53h=3&S=m&!cDQO9LUhUcpvjIVjl`tAaEQs5JxIKt?5Q!je
z3gYG<lFH2lkqsgxo))qe8p#FCT33)H@5$ZJ9ik+s-cV0|YY@Xcev6k&JHvxT?HM8A
zUBWv&&5=Qj3gS*BUCYGLL5z{)Zbdi`$Fy^gXJ=dx<AazG#Ka(`No|sFa<J%%fEK1m
zGF9lBrG@E1%#eh9rn*KlCy2R0Jj1d<%nRb)ARY{2t<>%dVqp-A#P1Jceh>@986oam
zSRBNXAXZ5DfRF~4i!2RdnTR_UTt=9+GKf_YuKrKf8m}b}1@UkYTZ4E!h;>1%=efPq
zSa3rSo5ddqV&i|xZt{HM+JDT`-y*_^`9u)gg4nI(_8@kM><VJ1h}$;We^N<zA$>~x
zY0guvEqj!t&R&syUTgOU@mvsJ1@Uzd&j)cJh!27|9>fblycooxAl{JvOF_KiSvVNP
z%N}QJzZ%4AO1>`SG0`2V!$G_$$*~}g1o4*mQQ_M`yd%Q)P}$XgR}xMQcIQ1W_k9s6
zd>F(>L45AXKNk5kh);rMHn~?NC%oLxMA-2!M7|Wd>(4jhKL_y(JwUgs`1cZ?4B`h7
zw(3U_w_&G(_(@6E&%XxoTM+*QaW;tGJ^j-`{1L>TLHy-Oc<^#Pf5wyi?fD!b6bqqL
z2&F?P9x7UOONel_EGfe2&t{w>UQSphgtDRkb5Nr~`B0JflDvr&0<og7QV5kr2J-o!
z?rBWof?o~QL#Po#&5(IsZ*C6jE*bBG@s>!P5Y7u>k%h$;&JW>&5N-`&cnEbvs24)d
z5PF4hVF(w6&@hBXAw-L#eh3Xhc(0|o_0)q4rfgmuLgNs6gv?GS4o#DgxkJS^G^KJ~
zbG6beWUzS%Eks%hDQOi#>k!(6&{mR5J$XBk_90v%(!rB=455?9JB#rC8|_>s-bL6|
zczFojM3~z>1Xr0|=FMB)IJzQ)VIkZS!j&Oh6+-V2`tWWH+aJQ!AzTx}jUfySp)W@v
zgaPV~!)Mbi&BNL2l<XJ6^&xX(?FJ$5w)Llz<qh6b<-U<YAq)<|A3`7mUkJRp%3r=5
zc%zl8B6V1nyJC3L*b2c8Asj*^1V`5BJ%{nHk&1>8<Jg6e4Iv&vB7_wCr8cmZn_40%
z{=97R?qZKi&Az)_2>B3(gm6;`g^;=H_+@j%Tbg^w?840qs>?7`tzs<<2Hw=-O+2=Z
zH>TF;UhZun+|J0cP}9PQ5bg+>zMlwTWC)`|SQo<j5bosW&k*hl;eMH7vqv*jT3}4b
zJmSAQgnQJsu^~(dVWRjr;dmh*f3wIW@hKrp7GYB<oEpNk5T=JPBZN62%ng}c#4|&f
z6~gS0xqCKDtz|It2?h0e3w<7MftJR-?6vk6@jfu+yum&{gasjV=wc=pgLWbB!tvp6
z2#Z5lLeHq<%R+cSe5o)l;qnkxgs?J%RUte`<9ZstI)pXSVbWD|aV<xO`+q`sSh@5w
zEpG_nkr18=;pq@IQeMhzG1?@Bf;KO0rdQRT$AoOymJqgzKQ4SixXsJm9>Nasox&$Q
z`7XMsxak+Wznj8x_%wt)^5<%<{~_!PncJ1mgzzkD=Wy_GNeHiqJSTiUgaaZkgz#br
zFNrtiJv#jkhVZ4xt0BC`=^w)TA-pb~w}pp<ZwL>E@TSO-5Z)5uLgCuU^5(xJM}_YS
zj|r*3>OK(vSa@9cq3|Oib=u3+CyW6}mhy%GA6bU*c?e&yks+K6;Zz7;h43}kNyfPs
zRCN9~np`Cm7@UmXhwy_td9|79N3H{!2tS4Ja|k6Yl(g_m2)~AKI)pPJ{1(FRA^Z`-
zpPYuJaNtt&poB5ZX~jtUOH+X3PX2cY|8T*#P~1ZOdN|A2Xvr5)&8=g$mh-4MZwgfc
zmlSd~tdxb)7Ajh(WZ@hOWh_*%aIS^2mWdgz6})ZE30}@J_p!@cX3=0l&fI#XO)eW#
z*+Lb|G=nzTwW=1XS*UKAHH5plh>cV=Ni7StE%diAz%n=Lxn!|a9Si625Mbc~3w14Y
zws5J1dKNCU(8@w<3m35?tldIO%iL*XfHknt&_W~2Oe-31Y~f<d+=S<^dK)yc%pDv4
znp$Wk-dyP3|DV*-JSpP_#dV$0#zI>QmssdvnHc6ayml7aTV^acTN$*R&K)gtgSQh~
zr3Uly%6_fnms#jy;VLRy=xX6|3*9aBkbk;a<{X~)Y}rTZ_q5Q<!W9;-Wbbs?Vz0S+
z&>&C6dCcO2k3JTzw$P95v~Z1uzLt3$Hll^`Dxbh!tJ<%#%sk>&Pa=DFgJt&jl5;pF
z@v*OkffoE00u}~Y7;M4EfoN&g{5l$iq0$`1%`>GCv@ng0X@!twZsl1PYzvNR$yvyY
zgoP1d)Iv-oE@aCSB1sD=Pm;Ef5zl&(NtICW_&pYeh~MN%ZWbA8VVH$m#BUYeVPUw1
z+r)3@`fuS#E8~1_zRi_3579<i7^U1hE!<^cwD`Zd^voCwcT4y|EmM%cu@=TjGG0i@
z1Pc=_OtLVUk*^a5j?@$jQ#l3n6pte{Q{V2JZefOnnHFYwadp3i*%sz7aw=i2g?lBR
zC*()5*ns=Q`GqcW{^l#WK)6uIjoeEtJisYt;W-OSEi7Z?SlDP`xrG&)I~y#lw7^y!
z<0pL->Z^pSg=>Tl%Gz2B4_SCv5}pLQ*LUl!qMegLjXV3e$--tDwD63Dqoweug}oMD
zXlc&P9<#7Tm2#496?t6vgoSM)+l4!X)Y-}PM0}Sgc}nDI;cnp`t_eERSfl5j&swNa
z8b7o)`%XD$>D%Wm9I&v##v?Xfu<)XV8*KEq%|w35!ao+yS~zIoWecxZc-6vp7QVOe
znuXUbd~D$p3x_PcVc|Hdv&?hM!<=G#{;OHWN{?v1yd@WL6yCP*j>nIRyem9r;XRS}
zg&zp1&%OOz>v-Dvk!7~aawbk{jZZC{u<(_IuPw8~`7_P;FIDg77QV2|zFZDjy<%ol
z%Afr3f`xCn8gSEZakCmw$W2W&{)2@dE&OWXHwz~%oU-tfg`c^~wJ^KZxt;h(3uA}N
z2)DKW!UaKJOa9%$9~S<yaGFjiWnQD;A>dETtk2vFbViHV>h}2CGFyUK3s;6QoH#a$
z*{ErwmW|>zO4ulGqk@f+HcHtjZQ~r<*r5ZtT(FyEY?QT8&c@%x%u2}cpsA{wN37^v
z8x?I-vQgPKlZ(yZo@5qh*|U{U#YR=zyum>`RIX;5Gn4AV8p5_ZcdBjUd>a?osAHRM
zvbE>gINaIrx;E<BxXMOv8yDKR$VPn|4Q%ralzRqRR>IKEW<lVthK4p8*{1KG@LQ&~
z8T!UHn%HP+qnVA)Y@UtgHd@$b8eSr7X``(OC9Q0<w$VmOdXoDnC~T)>drwG72l0-=
zPC{4nGVyLgs&%o^)#I15(sIUHcN;xy^mI#kxxKvHD_yzj?PKF=8`s$AYnx-o{F3G^
z8%Euva^|${S{v8d=6Fhn_p`PB+h)twa(*_UEC$%P(Z(Vhi){?FF~~;FM&33<IoO6n
zpOl8rhTlfOM$m?3!`9%2IP^T#SFCc#SYx|lCa!qgVKU5?sD)8sjKe3Au#pi-3faw+
zZ8mbJH3U4SXC*IR+jyX0V~CBrZQNtyCL1@~*xSNPjbq#zt$4W8#xOdB9kFq%jp5>V
z*cfT!Hij#=fC@=Q*l_nk5UEcbr7Uu;)pyw#%|U0t3s2WFe5{ReHm2K{VPm|F2{tC$
zn8fI9X`IYmI()TZvW+P=rZH~y8rM|YY_#J+)67#{v(V==ZOpPU-^KzPvu(`blEnu-
zrOZB0_Js|YYh#{`dl|9CaG#C)ZF4Tcf{f>qI^vTrw9V^6JbS65*|EgN12!JA@vx1h
zwmJRa?icqIWtolTningCD}^+*N@TT-HJ;=_k+n9s&4UV|mRM(FJ)^D*{F?r}QlNaJ
zjZG9f=;>gyjYn<#Y~vRjk1;m7n3=o9Hs=XEf!u22aT`zA*v2*4#)~$#+t^{_IZiZA
z`EuB4n>o1O#*>P}U5qsD{}Dbd+%4QA+$-ECq}nqg&)Vo$#+2d!@%-?BmXYo~F|L}K
z%apui<DiZAY`kydWiCyM<YP8oWtiD`Q}y!7`p@Ec-NqpsZ^%MN3x_#IJc#S?9pw6N
z<1HI+)9p5nasjdNr;bEi5_j;B%15y}H5#Ph;1d0TjpH`HwDFay_|V43oMkpX(p=+}
zJI}Q~wQ<76XEr{U=bJV#+h`~9C3m{_QnQPuhxU7L7I1ogZR1-T-)TC0qek**^1Y28
zY@D=l%EphjDc-ev(Vk2;{wGd4F8jI;rI8-o`D5cZE`tvEn!xWe!sFw44*p<wZ2V;_
zjJeV}rg^7roZ-~A@sGMd$ypJ;Zw065b)jMoiaRLbprnIR4k|jR<e;>Ja~xD~aIRzC
zjIOWUs%0FMmDzH_@<J})G&@`$%o(k3l~;DmM=Yy2sOp$6=`GaP%QxzeGO1ae1|1VK
zH67HJ1qy44a6PZ%n01Vjt4rW~2NyV~>!6;43mtPii*HRHtZX)k@$8PLLv5;|zGDuf
z4IDId(8w_{-^M{(k&A_mg-wJ_h0Po^7il4EDP+M`4qA(USJBvMCw{rGz3>tT9h{;A
zdPhk*2|Eif6|&%EB3&GG72#osLjJlr=q?Etgzm-A%fS^6hB_GL;7WSTf$hL?(Az;D
z2ZJ08c5t<WYuNGfSXmW)9djbIUkBf79bD(2pM&ci+~A<UV_uozmJ%*veQINXV?Hi)
zql1BtdFhx9;252&OWIwEC7%P!F~|4Xd<x(oAj?6=L|sVy#!7}Kb$J_h5OEN75Od50
zATQ{+KJe6n7UB*P4w8;JvUJiS$rf^*OgTt9$gp+?ImfJfH#x|Q6dVk3z$<0`DChdd
z+jJy1(+Rw8g*h9%#lfu(#ygncV7P<Z_=c~8J00BaV1$D^9E^0(xEgqJ&I1aA!F^k5
zM{#ore3ygK4(@R<*1;IZSi9RXFEp{ItcAbF&z>FU;Kgcqw4%x7vP0oS2a_Dkcd)?0
zWCv3m%yuxx!Bhv+9L#hu%fWPYlgs-I`auJFOvAxTZ+5>=8?#o=buiDty$<eE?VWU{
z=bj!6uV${!?w66jI4K+~a`2FYhaD{DG;y%P!Ai%R$?)CP2k0Wl9N(8Y=8~36({heA
zFS2xQ(6p7AK3o%4Nx0g<8V3(Ls8t4QIZ~yI&ht5s);U<uh-HIWODSw{@NP*w;+QKM
zE|?n~Y?A%Wa{f*Sk1F|?gDnoWavk7nUk<i8cwGEUHzRS8WV?hrglr^-?@9Jfrk)Z~
z^0b59Y#ulN3-=2537-*Chq=7%9O8=roDs#$VVVcr7dS>-AHt{;#!C(kIylOC%{xU7
zUeOZqrtnqa8xCG`@VcV?kR%gpnT3?WPbVC9%s*C;A93)Oa^I#AJq3G*fy5c1qxQQF
zjwwXnlg=Lw-WU16!Ep|g;^adIA2Bd$n-8^ptlUpr<blA!3GvSyeD2^2@gKe1FCBd4
z@vj|x<MD4Dd?)_B@CQ%cr6x{#{FKN~4t^H-Mfj`mH{tI>7GY=ql$ZW;aGJ|VZJcq;
zH}PtQ@wasTad6fF!seJ#A&hfHiV2GgON3EUgbJm?C@p@Du#B**ms>83^5W(jW%6^y
zuxUV*Fe-_VR}L5bS4h<`s)fxER1c$ua`~aN6t`aR8+}~-Wrtp!)e`50alRDVhH-&s
zr*7DMDV>`2JjsP37YXZ!(Lki3u#xa$VPjzvVN+o<VRK;%VM}2vVQXO<;bPUuO526e
zK8#Bw>>%tYWKc1;Qy87YCW^=}4V$HG36J1mTpq@WA^2<vx`oj_j6W0jD`E6|gmE;C
zcf;rzMz1ig2;<5yZVqE;7*~bSJ8XhH7e=3O(f5`IhH-V+d?Mo-W%Ui4mHArbUKhq3
zp8to<XYsD5V|fcGjQ(K^kj^mP0ty=^Q%+<64^pYYvcn?2F#KTz!U%>Dk}wg5rC}P$
z9X?^$(szVmj*$pW@y9;WU@VMy*h~%nmbF7tMpDAGFeA(g=^1v7t;#D|5Dp2OGlZMM
z=9L`wYgpL)y~q<`YzyO-Fm4TFco?^Zaeo-|!?-<M^u5RNVT@4B+#$)xFh+%OXBc;d
zF-{gnhs_LSSl%7R80oNTs}Al7o4-wA8^*GCS|7+6ip-s$-c1xv5>6IQ31ey)(>UU7
zFkPm;>4q8d@XRn~sTs4wnCr%{koEHTJ5T&x;eEnu^}WXh;i3;_J}j~@j71`gg-e8+
z_)?O{QsJ^NmV5FQVXPEi<w;hHtPwsK##)hwgst^4!*%NQdPz2f@kkgOHOi}M8h>sI
zV{;gfhVdA^%@h7Gwy2wpnwv<YggTEakRH+(2-*GZVeF%a!`Q)o^)cSt8OD>IZ+C_9
zl=#zO^ZwUv)kUA|(V*;=E7EoFY#95)I26Vk3Lyq0?K~I8^I;qa;{`?at6{trHXnz1
zQDgB^7zY{iwN1>t9L6hZ6{}$Iye@?qHO-f+`QcCoFq?fiZ2naA9hwT`h+>RU@s>2H
z@V1&)c7SmLqwZK3?}c$Pf>RN^&-QDMzZt=Cky|4e9>IrUd=$pVl3W!*?+88#<5MM1
z2x~;}Ss0&(@kJP4hEX<xauKs8e8m+wjDJ{T7~h2PZ5ZEiP0(`jz3@lj4??GsDRNSr
z<dn!y!k@$VMdVj6_qQ;9_xK+oEdH0sX-|G8Z2otErp`)IOihB2LS_|@phTodr=%w@
z6+vn7b392IPlu(-OISIA3SREHA{B*|gl?r(BB-ilH6hDZ7hyZO9@dPYRs^-_NnU(K
z&?<t~5u6vn`4L<YL0!q43hPD82^+7NsCl6z7e!ECq=As~h7mOK_{AcPBWNP>i<anS
z5j2mWMa2AV!D?>)k6>##jB9J0L(6R<Xd6MVh&c&iZo7!l=@tPmM%qVkiJHyRunrM(
zGS)GIPSg~?G=eT7lwTGxe+j`GK3yf@-hj&^TB2pMdjvgXwx_U?E_<&~jaLfSmn!;r
zLLW7|A8Yq|bd5;g2(FFbx`;U@x`#y<uaDq{2>M4bAc7mEnT}wfNX)Y^D1yP_K2PG0
zARrzThJ=>T7SgMZNH~J!{ESQlQ6(>yKjWTGLL?bMO2lmv%Vw0!(kBt*#S0PK5<yp;
zt_+dnCgIJ(p%Dxdald78T3-RWErQ!4m=(e7h&j}bh+t#{qawINn*Y{yr;;-wxJ!h!
zkB(rB$M1HPg=2-|A{g)GP7s+G!6cE%o_tCKQ^ltVrwh01&_7e0?O_Avh_4dP)zHjS
zQ`v@lBe+lU`-Ss`lrM;2q4*+CvRGtE1P_QT_2kRwdGQs(m7biZcB>;;qvV4Ttczg1
z_*&sZ5j^Z^x+gQl4H0u=hqXTv!Nv$SMX))7M<dwdX+9RgQ{r2MTZNB%xlcr}&Ewl6
z*x~V=5j^SfT_W_!(;~Y)dF?vb8^OK^o{8Yu2wsceb!F`rzAAh!g6BmJ2wxDsC}f*o
zir}EfUyk4vaXzkMmcOA{77j)5Mg)hsO!4Dv61v1iN{&SEmP)-Xd`Eax$lP}$I41s{
zCwX7w1L1MuhY@__<$g>e{%Hg!xblmCCH!3Yg^-rN)Ph68-`5d*6T!C;d>6s@5&RIr
zkDOC{m{khTUWy1mOrd|ar6$*?pCb5~%T5%RMe$1nzjCRJqD~aQMeuus|HFY|QT!3X
zpAr1ytv|d-{40Xf5p%nk%MpKPl=ZjPF<z;i{f}nxsL?4cBq<R^$tX%iO_1;kk;){L
zpA$tH>68_g6PEW%RS-Ehii)13QWTXvUL}gE;?+D!b&(oT)bu2^M0khiyeQ6(;u0k<
zh@x&3^`mH@WW6XZjN+oGxe>%B@yDC1?ysQ~+6x;|tr#wjnhWQ~l2Ee=OL@GRNONHe
zVaq65dAY4c+C<UTleF_{bnBwE4pDSeZYN=9A>YPgR+lKcM&XOXAI0TSbc>=NbEVKd
zimRizCW;<W^o*jHgjYs!Rn#11t`PDTG>!CDmiuw1K2Z}G6!w+yI`!^aah7uR>5v<u
z=pV&E$p;8;jG8+<Y%|O9$L0-^oP4mH!)xt86u~HBQN*JNDc6p|iNf+USv)Kri6Sb(
z*q{Y|qlW16ge2)Gk|LC+MBK>9D3-G9MHKlc3Q-K9bK(fZaZ?mGM`6d{#4t39VNo29
z;=?FziQ-nZaC;QPqqr@K=~2v(<n|~=M=>Uf5lY?>E!uuIGKx`Aa}d8%at{4nB7AOg
zcNF)CPmW@&$T;D@yB5bsF+q}vLYAE*!VP;<qL|87X)he*)1pQD-)2TJD~e@NERSM#
z6mz7%B#OBr^P;#nYR*;Yiu)v47{wxy`-StPSRg{1+{nGy<Gevc3END3Ad01)ocjP*
zM6oi8%~3oW#VUr1vL1<IO%xACu|8^U{jt>AsM);wka9^L_AIOuaV>8UA6Wt$z1&Sv
zv(ui%ACqK@0-i~3uGkvI<6f^Rc|r=?R11?kqSzV5lTqx7;?*c#i{dE`cNEV@aUhD_
zQr;WIz9{yHvx5xUXT<jlY2;bi=NZ>?k}%{b<nIL~Uy9;IPtzT;gHgP!{=VYL_o?x(
zNAXS+N253-`5RFj7U4eIH={Tr{+94<&O{aYHwNB~;(cY&jmJdZ^Fr$bB{>A#_3=>@
zA9Hnzp+gLxMDZzC#Td%Qa6&pKqc|1CXHk3}#TRZVb}fo8qxdR{uQ`IM^c!~y^IJoD
zg7CdG*<X&%4<7%~tNkY_|IS4|il2E1h~igobbgaETjhq$pHci3#otl<!(dZIw0T-O
zXS^EEMu8Yg#)>>#EQaDSvl)__ZjlnoV&s&HnftM&l|0AOA6WwBVkjTO1u@i(p+XGj
zDywD;6+N9wB6Mu!7^=ij)st6`p_(`sD^|x}4KG<sq;?E-VmQy!XBeCxGd?e^uM$ze
zUJMt-P(OwXrNb)N<_6*y$Iv*2hT@Gp3$yeVLlY(2$Ivu}W-&C66|IM@MOwtr(v!4`
znWHf0Y#UF~HimZM?h%J=V5J>n=p>sr3OmQpGlpI<T&m<{!Y)GUcNMu@*iG17*dtc-
zR>c)cULC_Vba)I`#n79kbnxXU^ieJ=rK!H;G4zjNKn&N#&@YA?VnwSTgZBEEnORhG
zCo)Hh&T(I0ad#09l&L|&!7=zmsP7jE2!q0q&=T_ff^ZCx7=DZ4cS)i#+#ADvF~nks
z$B^I{#c*2;x5toTEJ^2<7&0+rW4KvK){=`MFV5yMt|%!eIV6UgMBJ!gn}^0Q%qzuS
z+{%F~hT)!sQ86NhJ7Sm|!;~0C#xN>|yJNT~W>#j7-JLPqCFRjEj8R$FA+8S@P9$SJ
zYvV-5$1p);qHvPXT~4Qp&xm2B$g~)yi@5vtXT>l(_P@C{M_Ft$dpB2nUd(*cjLG|B
zm><KdF}xPTf*2OY@MH|TSe9YHfs0{{^q0i2OoT-q5Lp^CFF-N5oTDJiD`HrwtW};S
zd-PxoYh&0V$wM(b9K)mH>x7R8*T>Axt_|WexVj`Z#;_@d&62oFs9P7a9+Qv<zO6Al
zF8)LeJ4Ch#w+sKB%R4zMHLstF;prHjkKuq6cE_+sgf+TDus4Q%F+3B)vy!{Q{V_Zj
zLuc<eJB!c0V|Y;tuLxff9+bDaiRERj41dFThCh1d^%xGt@Ocbh#PCK8hhun8Mc!1y
z-W5NhAbCst?HJyP;ixz*aE`c>h5VR=?ArS=d=SHNB|nMb(-=PV^goK>V~?}r?x3^m
z2?;;*qT)*>zmMUE7`_t!TKJ9dTj6&?mSw2?7{kdJev#yqkc$9a^pi&aXGz?buznSH
z-#aj6V<-_v$vFO$oRYs{IPLK>B7Y12iQ%jW;>LT$gvEudi;_}tl#ZiS9IfLxCyp|4
z)QzKF9A)Du7f0ndsz|xKu%fU+9OsI-OHCzlnqso5c=b4H#8J(YyOCTojyjUm64v%|
z+28X#e!j>BLN~xJjH6K;7fW(c9Q8fT1|kjPMQ3P@<7g5`O9`6_IrrJ5X5!6x@~Oya
z;VNhZ&B`A~+c>U|<Ayle#nC>Fu5ny0olD~ABtjz{L^=xDm(FoqDt?);i;%rwRB-X>
z7Dx9uddJa6@*Z(Bk$c6_GhVb3GI@ovX!%Ok&QHK8=??VO<Vs#6>?`C9r80llDcMiR
z8vBdfC}i#ckwqmiFpfduoY8|t7~VcFHyB5VUQOWQ1gto0$={B{i6bojDBB!IG>$28
zOpPNJM?8+(;<!DIL>$RD@^KWTnTjJLk`}TSHiL1MjUyK~M=1BaYlw1hj$<eXLY!)B
z=P>bG<RVJgBjT-b4EJ>C&k=Fl5y$vACd4sP@-bfSs5tHvze_mUle>%X-ErLGNydtd
z6S~njF^<V`bF7)<>F{igYXaLaEsp7NtcYV}95dpW8OQuM7D#PY9QVd?UmUaJn8WsX
z=UsE-nCID{h5J43PBC|67fQG+jzw`Sju#!u+219SKM==KuM|UfxyRje$W=-{Oqa&7
zCXNS{qyt%eEu)c}|GkMokFASieH<I4vr+hn7kjj}N#nwTo7oascr1=BQrjBGQ*k^U
z$K!E45y!STwoCqG96RDghqj%PaHhL`-=!q2x$WE?$Lo^piDR$GzBu;B@mw7HO5hnu
zp7n<N`8W<p@`~^UHS9%kF7+=dc~JPW&<&?orNA0r6LFhyD2_McI2^~DUhZ3Q91(Y&
zPkoO2J8>M1<J~xpapjETuQ=X|<NY|k;c&$9K^({9_$rRC<M=R+kK*{kv-WWupNW6s
zNj?=hA#7R<pUcDlzU%s><n)Of|E!%l-^KC0<i84kh~wuteu?8pC8={#<dpCyc3HFD
z4I$<-u6~Q-_qe&@<ALB0uM`LIbR1{msGdNL1pbcWA7!1Bz*&*v36w|xiJ~>6SmJ+i
zTQXr*r&7vtuNF&-v$bUsD4Q@R<mD2m=#?!mQbBkw>q3#uN(of<bgGC{O`w{HdyJ@=
zKrJO3Bv3nnItg5mKwU}Luk%FM$MZ$pLvuax`Uza924AG4JKSzl8z#*Bbv@HKfhGwo
zO<);?2{cP!iu9W&&>{gl0Vjc$3A9S!>IAMypmhRm61X&h%MxgtKszaS64D{<MJ^H2
zeg~0`LbkTECucLdB+xa1o(c3y;Bv{kCD1)#mXQmKp+}<VxWi_<zPds>eS}v^?JDu!
z!as_e?r;jb=gfT*=%2s<W-0f&1p0|wpTG?X^TL<w2hJ?605>X&4hbbNFo8h{3{Jq8
zKtOW8&^;!)Ga{HU=ZCHZOS!C<u@q)VByb0Po<KB#SOSFvh9nSAAdx`EwUa<fgd>$!
zA6+|aJR3vIDmRxvUW66#Ebb=pn-dr+!n%efa7zNWCNNwQdY+DA-)~Ep<&ic=NPfGJ
zvx%1J*ii}GnZP{>j7{J!WsOc?jG~bisN=f&ZZAA287H*~35*w^gszyFz$7JE(d0yt
z&uM>Z0@D(huB`h!{TT_&6rUxW?aAke%oWZP-YeuJy<dcN%@<i9Tqs;5T%5oX5$ZgU
zD0&T<e0c(IO1>h2l?kj$V08j}64;x-ngkw9U~2-8C$LsJk0h`$frk=!Sjlz5^_*fA
z%<*?a!nlz(>Ag(}Y))W{6exK#fycb~q%svaMnuNa6A5ff;3;Wt7e48g+99&jGfO+W
z5=F<6rxV!i@&Cm`0xu@;QUcGggX-h{1fEaeKmyNsHaSxmdu;6so`hj=FoBm7IF!H}
z3B012!n$7d>U~X`9O%~-D$H_+{;=e<#&JB7z*`BtoxnQ@e3ii02^>}K@dQ3h;9ak-
zV+p(`KfEu=2g1Q}+D8d|%v~G_d@3Ph#$B3DDEYbYGoicke<A**kPTp~zG3qc_$h&(
z*#*hJ7qYcH@%urX6XC}MPKvY0DX&MrNb;+v&n*6aOW=1o`46uwg{KoZLqBKmQU-q~
z@DC#-W5)3;m;EHdX++W}mPGL+`X+I0(mX3EkwoVtE={6j5~Y$TEg|KNlja7|IZ2dB
zqO5qiBx;LLUOtHm;^%sjib+%wuk1;xh*V9Ynn-nF4Pi}TEg`LSu8BJ0=XsLzlej><
zuCSi)Lg7Wi`a+g%kVHfAM#76ddH*t|<4uxiDoHb8b72clr=>_MVQXQVB-)C!6ViTr
zkxP>3AktCT$;;*4b^7Wu`miSY$aP(WU6Z(+9_B;jB)Ut&+gUx5=qcVSiK|4eNa9M7
zkRB}Zxexb?_D&k)!=S5^xF%_~7qTPw6f?Uru1lg{64g_vk;3&!+>kU6yap!GKM6iC
zy^#gAg?K>H?76y7Po4PTbhdC%5`&ZQCE-sZki^;~9!esZM2MPdfR%(Tl1idI|NK3P
zxRT){B1uHm-!uI0`0B=5%xiNZiDVM(F2&wjI90<uuwZUlxf$UU3X{kuQAlElBukRG
zDT$lK=O!^UX+G_KtCGW#xJ90%GZ$+Y*6<{5OXBt<MkFy!IvkNZk{FZ3-ARm;WR&nu
zA#1-YiP7RT!X$t9C^<2Sv7XL2k?~1P5Mijenv;~AoWvAQbE=5z!|6%PP;#blmT<O^
z#pj67)I5=Uh4%^X7tR+h5H1w5)S@I7dz`x_D0v`>rIIWYE*Gv4t`x2kQgd|@Ys4QE
zy1jTfiFHYQki_vM)+ez+S-X>XBx%-}9ZBp=Vq+4UlGvQYqe(m=htt|)No-BxamG>^
zY@u%zKMX3fnXm@-oP%viY-cc(Fi-F~tc=emljfm3e@`c|OBInn#h6q_++f&~#9oG_
z%(9kOlXxbHXQjM9iI<ajMGbf^iRUFeki-i~yqLsGNgR}fQ-cP%5sv$~*bEwR_XcoM
zxDozZ60b}1knoKp4kz(u5=W9aCdpe#yq&~RP9-(tog{|UG&Z>@h!(h=Z%7?{Sl?KF
zFNycL0`La7wjZ#f50m&PiSLv6A&HM^O*89jnf)}0&yx6D{DhF6`9g%IzDnZDq?xni
zY5id_1M(ZqBYN*!k?*9;+J8*qWD;kSKnkal_$i6Ml*QsdC-G|%za{aDBy2F}+V4sH
zkpw@d|0m-|-)H9F(%~O=Gn<-DCvhf;zv=l}_{VDx-N+%^r$5^&mO}9qN~Fx-vUw#_
z21}=KP70;O*%2z2Nug{C<x{ATLb;Tg`|g}#8`!XlwaqS+5#4ZZ$}DshQ>c_e<rJ!<
zP&I{Wvh&|kS#6Z6nL@1;9#7$k6l$kXCxvk-j8Eab6wXiKc9psyg}Nz(#On#0rqC>f
z3&k%I))zJqHWW4zUMy@ZY$9}**5)a+Na6Any0IgYcM!G`widP#wiUJ$wijL^q%-NI
zj^dq!o!KOA{uEv&Nf%*PA?sysckzM39x3!pp;ro5q%c5|D^s|NqmaVYDf|I5Lwl#p
z`A=`&*@Ge1q|lE`eF}Xg=jwMY{mcV_lB=tkKhR;4zZ)d!pE7?R!*<>%`~0{!`5^JZ
zLSG906arFqHCangrARF4*eN(EgvHY-WKxKTM};wAJcVTykq{<1?tJ(wIfbk-D}IYG
zmqI>;LJFJ(LnRrK!c8gMoH7%TLB%bC{I`1I98Qyz0=NclmF93Evu;b7{mdjZJ|cxX
zQW&YMQ7McOxl?$TkUFD9IE(KVxyO@__2d&oW_a?6DNGWdESw^oDx4;qE~G!{@R=#h
zN?~>ib5dAEPo^+exvY0l3iDF9SIM1x1uTX8Q#g46=BKbw!UZg%KM?0q$+^Q8E>2;I
zvL2u_Q$<s3sU)1>%Trj9!pfA{+}O3d@fd@Ii}RWk9!%jesjW@np%gZx@Q9KRr?4)C
z_2TY>Ef(iLwegf-V+xy6*qp+n9FaQaBz9t54C-zsvOB3q*TfbT+$wCSecIbn*v_C$
z<H|I4q_9(2t<!iig<YKKX;e?+sT7`0;ag?xPGL_9ucq)?3VT!7m%@vZKO=lj_^gl~
z+b_aJ?0Jy`!WTRt6<!iQD12E+;VYiP>nR*c;R7Y#5WXusEPOMCBPqO<!rLjllfuyy
zID&K_(H+XwI{Bo*W72<5$jue+GhC&1JcSQa_(<|Eg&zw)N#WBJPNeWz3ZJL&#s9zM
zucZIAke0vkEPt26_bL3qq2X$rHnZlWbj}D*rSMY<Kd10Z3V%uRYYM+H<Z9!0uADtg
zBoKMN$6@^=g+Dn-8TLBoIW2wnq~&k%e^NM`0%u^cv^l$DU0nG&=}5S(w?rBx(<r4j
zoGUCXJSUAZX_QT)T-wxIKK=i$w?Z0jjTNO|DUHf$R7s=i|5q(F(x{on#nP-rQ)x65
zuam}kX<V4bMY6{BoS()8X|oRSKv_49dQ#)`cY9PnZAOqsq6TTRLUJ5A(cA-5qjb^6
z$i^ztB#owNG)tp-8Z9KDJ{LWXEcIKa(JF1+NV9Yu?b91=(rBATJGNi?ozu89jZ4Hk
z2&vOCjZPkSPg5^TqiY(MOV~wtx+=P*(OsN%@z*1bUg{Jr^h_5Wd3k2V<W*7|EbJ}p
zBfMHjg=<9mrg5z&xh{=<9=~4X24R2UfHZFOatDeGN@IO#Q<qOkzc7$C=WoF@Lg}LO
zZ7Nt2+EQ?YTpXfl#5m0}sF6WDjYJx!(>RkxGL2LkE7Mq&Mq0{a(zrW~4Bg11KpMF;
z@@W*(xJ9``gskPpnz+g1H>WXFe3+2cQQ=nc;c48K#_eg0NaL<Fwrc&qBaKmN@JQ*f
z3+^b~>Gfi?<gW0ZG{&YeD~;J{j7wvD8Z*+EnZ^V*zCzKla-#GnrOi}g)sxehlE&0D
ze8tRZ;j}cS^TJu-$K{#|Y#~F4^)mS9q%k**d1>6M;#}L^`Ngy7Xend=K8_k61g9}y
zwJb<uVH%6XA4p><+nmM{B^k+XgfB~Dc^WJJuaL(A+Tr1KbsB5Zcp;4!(|9nAwP`$?
z#{M)Ol0NI*m&U_stmBBYqB^F*o732!T=GXmHm0%3lh9F*rtz4PThiDivQ_xF@QF0G
zrLmohe;PZv?5E8&0zHr@X70OgFKOP#bT@TBCH<#`yM=qw*vn9<VY=3}rnyReMsl7o
zST*rn8qX_vKr@09nLjp?hb<z1FQxHH8m~&{U>Ywo%;f*;YT~stUQgrAG>)WkD2+GR
zwqj;MI4ot>=#CMW5t6skcw2J!{N$Z9j;8T$8pqQ3L2}mhUK*cy{C$xRgvZnP(35{8
z@-b25Q%`<^rW6~WOY(*AOW{|-uZ67T8<B6*_|B7j&&5!~^rJ%Pr0|sRC*jY+UxW<N
zUqyaP<9CriJo%p@e+i58=4TrJa8=KsbOvX6?v+8Y42oxrW4ZWqMPhJr9GT=YTOwmz
zS2AN(LXOcn8I;MOLI&qbzpSua#vC-M&tG{-Sg>LSl`^QRB$v?2B2|QDto8N{^{Yw3
zL7}i_2CXt^oiPJcD}&k@)KTtv8Kd7cW7>9p1{X+JH-mZ^T$sT{8C)z02ef_$4Kiq$
zG1h3DrMTXbG|HIkR$eMLmL?}-6W#uz0&|;5*j(5mgO(zzbv@N4gSHur%V4~O?K0??
zL8lDbXK+cz98)@Q>8osvbF$DyooP0MJ{eq{!DShAQK{bYVOQzX?Bx=66Y|Whdj>r+
z=$S#U46exF$_%bjYyUlXaY^K5Dci|TxoaR#HLp?ez8MVeZYB|Pug&1P4EkkoeFisV
zFeHPUGU%VdfDD`r!WrC{G3TfO6&#qspo}?2bGq?2IAhijUk3h+S?kD&^k*=Gkn}B~
zE#x}JB`zY)dQ&1%8W)LYkPva3nq*59!|4n%l4mo>Wsn!YUaw)&T0uz?dh+HBhGsA-
zgF7=AmccC<+(CzAaBBv`Gq^p25mM%odz%Pb>y9I%&W&5PiZSfE<*p3Y_QDuxju!G&
ztWW#kZVpEVV>LAH6&z1=X=*|S6Ej$r!Ez~2%3xXs(=(Wy!4!=kjZak;S1r1Z$r%|e
zkz}TDRtB>(n3KWW4DQchzJ&8KxHp6QGNuSag=>*J(Kt00WUw%UMHwunXG)nDBm<?v
zb&PL0(fD`W%<+iifee<)6pL_ZR*0|8V2#Mi3|5IylYSsRsN`epeg+STKb*n34AwI~
zYa0vH*^t2|Wj&I?Mh!iuM(1nMt|m5T@F?#UcQY3kbQde#B2Cw;yvOpmX3!JDZNlvt
z>=0q@&J3RP_%4yBGI&~Kw{VY_yElV<;?D@574G+PpUdER@dKXZ1(6qlgBiT6CcQTV
zuVnCQ233Zj>JZcS*E0CEV94uII3#59jSLQF@MZ=_GI)zqxPT4?yq&>289bH4(>WZ?
z;9Ytti}hI?%iuju$t<qS;{6Oh;8K${)8u#tA7*fd&dK1T3_i}_WCo{LMFyW{@J$Ba
zYBrq^exAW+B8y9y4Srv6R&w*dBwq<>@M{s?KueY~4*|dP<lkrTgU5f&m<JYA=I<v7
zf6w6OOwoT&{KEcvn!kzc({rvrGWautzqlTHxqOmB3w#*y4;TLo%4JbrokAAHvM4Uj
z!*>Z0YL*fyDP;Rgd-8L#D3e9mY*DNJZCiyb&ds8t)V?i_N?BCS;=C-*&!S2eRVA;L
zMKzHcp0(<-L;cQt|I4#kTe)>S9agcL|Nof9g;{feVB6|uQBS!n$RvL&OQ3!h4YFvM
zMWZa*WYIQ@i>1?C*f?ACz`co*O@+<88e1qyJ1s?8Wzky1wcjp__E}t>MYk+2@$7WY
zqC?i)hi9pdQtp&3+PQIQ)?ANVmPMB=x_XxB`G0-IzjfwtbXQgnVb3gjd74zaDvRD(
zJe)OA(T6o=F*1u$SzMDv-z-w}1C_J5E{mv2^~>Tf{*6NxK~|l`4O#ThVn7xHvl!&H
zitW77>o57>EPUCb&knOjzgIiE9P+p$VhL@}PT0$hNHRelh-DF%JRwYaI<%b0BAdl<
zNpiv=!n~(b@GRey#m!j^_2jo^F)WK)lw_;iA6rgO&MJ=EI6e6Zpe#ms`ge%1#yhjP
zD~sh>tjJ=tgwwN_k;RxS?#|+#EXHOrSz|OVi}6yJn8gGUclxjvRyRo!mru!Js^`6F
zlCvUa&CFs}7WZc{U&7g0%u`fw;O1m8H*21xQ;o{^W{Y-x-{<vrK^6<MSdzs9S+lp3
zA+bnC7JK!&RV-C<wH`Yz^UAKwVijjZF+9YWtYp4<wOVRxvUpHreo3qqVMo}2cIAs^
z3RjyASv-<O%^YgwurZ5GS@T_yiaBh~;?XQV&f=3S9?N1&7SCsKAd9V8Jf6kQES_X{
zWRnJIXPd{jXR+fyJ>4bwUQR$&{gjeVXR$krJ!(Hci{$!bUlz|O_gUe7A$$EC<6k;#
z{0mvUn8i_Ly_ChlERKl3oW(0y9LnMiC11_rH4$27guL!?TBxoi@vtX(Q-rlJe%{LB
zZ6)9Fa;g6=4*^-TT)!vbhdc_1e2~R)F9uw%e)OMGpNgN%;#3wVviMBN&xK!S@rA;b
zZTnJ^uY_#FH*^SXD#_d*M85ZGq2xzT^QSC+&f;tq$l;ePe$C=EV^1FbEsH;-_PdbX
zXTd+kN&fPzosr~kCI1m;1E^3ehvGS$lS7%DNtVc=q=*}Gl$6S$v?Szik+L~dkffZj
zywJ^}&bc|Wu((sHQVx}sTP268IaCv`o<ohC*?#bc8sHM{F{sUgIgHL>Ob+MeaDEPh
zau}S$1v%8sp-T>3bEucYg)-7Hhl_HkpF@irT1wI&hl_J)oI^t;*^)-NqBXfm&dk21
zIW$w-nAKc5|85haguhlfw9BD=4y|)&BL%k?ZN)#+G4zt$|8_}r$o+3s@03Glsa-0(
zOcl9ta(NEja_E!8)j4$cnsikTJ#y$N<z6{lk;9YaidxH-T<NLx&Y7bL8&BaiQtn4d
z&KwH+GAYS*LMpJj8$5nv4*fkoK*SxOfoz7X`6Nu_kQDLf5Xd2zLnsF;hp2=cAX_9X
zbpF%dh{t2fV(oEHl4A36DC96iS?+67nH;i8<~;qpr+-rpH|KDB4kMH`G-qbtEjbKR
z(j5ZYzg5ZMIou|~(_;$xyCa7?B_SV~!zholzg!{jQgUPo+?~TcIXslZ!#Rx2VO$Qg
zbC{FE_#7tWFg=GEIZX7*P7#@u!(<WKq4BBW9FA$Zq77yg&dgz!SBl}}M%3IK=H;*?
zhX-=FSGfyv=4|0U@%tJ4B3woJqmhL<Ll#N6SV$ocBE+RREX!fJgsz0RLdlgmtP)u*
zd@zSKA}mE~Yduc=b>f>n$@&~N<jjW?sriV68-<&M^xLC3JSM(HxFd(HIXs@j6H0Cu
zvg|eyH?BBLJ3aZ6BD*+M<+t5A?8)KLJRZwqZw~wDy*!%bP3|)}Je$LQPxHAPp3mXe
z9Dd8;Kn^eD@OBRG$l8lJydm;Z4hKbE7QU9lD<ZE7*(!I^y`IA%N!;cg7JoBmP9~2K
zOX4k0-&Hu8!-*U|qg!$~rU-m5hvPYXD7E)<_`uUITKseP#FKpN&DKvniL3Lul0W9~
zMGjx)@Kp|9=kUFR-w40;^x1~*#1|<Ze(>b9b5i_N4nO7avnT&Wgr(dN`aOp~xF+Xu
zZXSOs>z^FXiu{$sX|L27k-vp*3z0|3JWAzFBoq@C7naBut!$;0WNx`U&JiyoEbGZ#
zJLQ#R3{=dcQXaMQs3S?`JgR$|RYa=hQBA}xNXs?ys3}P;Pm@{aiPvM0<Z*t!=uG<p
z3F`{oQM)LQhIur~qrQX<g#TK;Sji@NG!|i9ZYds~=(py1bjYKlvRdTPGLKfOsC6D~
z^Jtexo4h##cPCwYsa@jPafLL}DUZ&1+?L1fEStw=dHC}P<k2OMu6bOSM?V$0Jdd7v
z^vavFj&6B$_w4lW{LHppAz>ft<juyptMcfb|KAaTEx$UCYx3xuFFLkfn=e{D+)mNL
z^?3}C5w1};<k4T;J$5kn#yke*F-XF}dH6(JpSax#<`K#xnMW!Q%gc@AVT(J$u+XhB
znnz5@cpeFne?33%T%;w*=TXQbBhI?AA~{cah{(-(3>CR4Uvz95rsS={TZFD<o=y)}
z^1JpJk;ff*%**56JVxd*DvybIOv>X<Dcmh&jd$fST6~NraT|Y69%J(um&bU?CwRGT
zMbw#`#}o-?=P^}*F~ifDmdAAQe?31lk6DuNf`}I8<S|!C*ZDlXzb}vb^H`k6l04@B
z-?9soTqs=RWj&C`Qt^lLSeD0f@dxu*A+jou)gmi}tZ|J9C*XfiY1ZcPkmU3Ob=Kvv
zUdau4Y|LYm_#;B*ZuT_UDYsu+^4OY3u>y)0@VIjK<?&1&Pvo&p$?bWwHT3B`cI2@$
zk0<lkmB&-c;z=DV<&UQj?r9$R?mYJJ5Rm`hi64c}=CPk~&WVu6b9p?U$FV%#%i};E
zFXZuB9<S%|V!o(fyjAj29tZPy*=y~qBCmM!h#jHLLtgG%dAy;qJ1ohYc^naOJ4k$6
z$#?QND#C{s?~2fftMh&yU*z#+9v|d!JdY2(+!J|xl*h+;d?LxG!hg*&3_g?ObD`U+
z2*1D#d__AI@U`UM2;I8A&*KLr|IXvbJWl5EI~~ROSOKT<_=N$+_rLP^SvqtnLyO3n
z{%hV`KmNvX;f-kd{Leg2dzSwap#p0;BhGUn@_+JXU-8*IP$(KHMox(WN)~W&0gVeN
zRY2(i&R6a^1(YeEN&!`sEL%YN0xA?xPDyw5IJba`1ym}avL|%qtjj$}kyI<7x^in5
zP(!3<0ksNdd8ZB)ScE_FIt8331y}Ck1qIZVu%3|m7Zz|)0riz^AZ%DDx-4p>q<cK2
zW|IP1Ny3P2T0pY`nk(6&fR-X|l)7=-x_~wkwk;SBw-cv-+KaenH607+RKR!i72VD*
z6tJ{_Wd&STK$imUF5sR5x)yM`ilhqYRzUXxd<FOm=utq=0{Sb9ZR=G)?*jTLc|`$N
zid-dhr}NdGX1@Zi@pxYnk6$O^hS~MvHwamLfTwd~0Rsydq@)`Ig9}B|Do{XB@`NxX
zj22*t*h03`DIo0eNTKNLE+$Fble?CaN;1yV1!M}y7R*9%YXQRx$Q6)RvQWTH1>9V~
zki!2K1dhT`l^x~@Z&A`6o!bhyy?{{#+*!bg0`4eaq;mgVZAe%V@vZ_!tClf^qAN`|
z%e6CBrP!mHBI61eU%-R{CKfQMfax0a$;z5iz*Nsm)TckENzSMspW)eYhiO&;vkRD0
zz}y1n6>vYRmcqS^6Rk_Ma39;OP+w3e`k=&;0v3997Ktn_6z!aUKuK4Bc>ya5c(Z^b
z1*|M!RRPZ_cXa`43fRgex_}1@SgT%dR@OrWtSex>_`~uiyT74;M+(?jz$VYbuJ@Ql
z;`)c}e6)ba3fQ8uZWe`46tJy;y_&Gw3)oS>Qw2O-z|I1mEMS+EIXmbaDwDWw*)91V
zp(}A`(7pnmk*Q}3*sokpb1nt$BJg|x2MTzhfESf@sDPIWI9R~zO49zzBCq~GR9yws
zRYlv~bVws94blxtNH>BsNQZ>Nz2|o4OG+xzQU)rbU<abug)OKciYO>31_&sq$oucv
zm-&|eT4(LG=b2}o={R%doFjbS*3pM@=1Pn@EOy5A$sBwtc`o+PxcNT^KT7h&92}g3
zZ|2~r%I(k`d?h)<emMt+#aS%8zP9osw%n-m?HnARgYWs!L2c%kl99{!57Iv&%#CR$
z#dCT5$yz%#2S1DFTF9>&PdKFfHV3E0&j^1Pp0&Q`M9vHM7Q>%&aDl0sgTM6nqqGZu
zi*T3VDi{9YxWwmTbIj8pUjNR)W$}C=Tt;3%SWs9<NMT`-BEq7=V#4Asln|j#NfAC2
zV_c<N26Iox%D7P0g>sC&lBrWZWutOM7p`_;qzj|;yrz;1&0T2WLS+}KNK(~>>LPq<
zQ%#on(CQi&YDmb3P_$oDvD6aQ7S<8gb)lXJb?S>W5MJv-Ly<<-x3LRN#G4A6S$XdC
zeoGgIE4o%Lw05D5e3_n}N>5vtc`Dt`h4v!k*ST=L<sDq;Xn7|WI$M5&NEcyOVK-rS
z7kY@$4j=#ZQoOxw3G@-^>q0*(=`S)sI8b<_3xh-k3z^QFTo_{cP?2G-D^HL|SUI2n
zk9J{<3zJ=#;=;`?jFs0!mwA>tPJFzOHA|ZlSe2?oKE9mfG7m9Z^Vq)&(_Gl#!rjum
z#bpi{yHs4$C7B_dDg9Y4b0*|gwTIhW=IQxt*_`77jWY^fZk4d(f=3ds3qBY8E(GLU
z;6hM@vCnlOBpzmga|=j3>O#zgxC;pvvXUfSNV$+^_T^;O*dTdsd`x}t_%RO#Oeu;y
zc~#YMlzFnol+0I3XnCOvi(I(fg~cxOM4Qj4m$=O1+NBD`woRMVU*^Jc7gk7khj6v<
zPT@-7UBXqu-0_$-;%kNLgzK&EMi(}@@Vd)9gxxG5W7+A#7R$Ga+~dN%F5KtB{Vr^C
z;b9kcxbT1r56ai%mmg(yVY`Z&PWC3Inf>SyDdf&VKPt|OW+P<Z+2z7xE<CP!e8Poi
zZSQze<SF6P!e@jn+n8SYocQy?-NF}ydt7)?<Ru|B_p+T>{t6qv_-n#(ZH*}o6mO{f
z-*n+E^^Uh~A9=@xcg6P!-xIzs{J@0|MLu%jGZALzW06mUpSrML<bd^MX?$+^7a|9R
zhg|qlgbFnBmCEO9A#34?3*U$zwUTd1#E%Kf>#c+zTsYyvLmq7Rm=<!<g;yNB>flEg
zesbZI3qQNC-oXaPys-I;3%|Q?mLnnmKH$P{BBzCCgtS1fb1s}`3wO*?`41QVbm0>>
zK6T@Q3m4gI-0-@M*I!D;WH<h1cXQ#A3;(*%&5iDETy`O!<D?t)-DaAG8-?8{B3?jP
z(2YVO<u#8N6~EezN^TT$qqrL-+$bqwMK`Vzsaya#<x*~xmZXfZtgxK0ys(0h@iNH&
zLRFTqj<AXwRYj@^tGmsgKCTgx)NrGwcr7cbEyCFAN}r#jr||}ET<b<>w;3543Y)so
zOr((;jooM>{+#YLsKcwd8!g>vC3y=WPa06(+Ko<flDBcAt#~_Od*OA$>xI<mkRw9c
z&l$Nv&Mv~PIR*YVrzCo)vIe*@(2btrth-(!y@h>*eck9M(qFh<tH&GN800pane+MO
zXXf3FF>c)K#t=7#x-m*#^d08L2scK`Ib3*#hct99Zty4*e6;m?6&UL_&2OS`oEzia
zn4qf$D@)CfRWM1ulv6Urjj3)k!c24HR;BG0H>SJIhoEP;G1HA%ZUlKwhEFc|IRYLt
z<Bl<3OL1ei8*|)nx#4!haf82v_=TGT`S}Og*LWh1#~QVO^ts`8<1IJdb|XMjZahL|
zH$rUZ9CF=Q?nc;+h#OJ2IfZq*Fy=<wjf5LXHx@`juap}Z%hPWB!TU{q{Mn5>H|AP-
z0j`305Xg=BZjhX-Y>;XTrLagsIv2~iM7Y$3rSA&287nrs!J|8OxN)Z&E8V!ujk_gZ
z<;H3^*1EAy&NV_t!63x-a&8b(Qn@uK9Mc9HCE4^J<t=XW<?5|8%cnv@l6zT+mf!Ej
zHYN1|;e$eE<RLe<TmG;cJ1l2#uFZD3@t7NryYbgR>~f<Ge_X=fKDzNFqjuvp>ht7}
z8&A9Oj2qqf4K98Zj+Yz5_-3~o&$)4o?Mk>?_=0ec@I~QELbmX|ZoF(cLru!h-^XMB
zZoG68-f-hhHaz~eiAVbL^B>l)6&d7#y5>MKpLD;&j?7b_ZtQd8J*J0hZhYXzhi<&W
zgP?2!JpALv_Z<1zY`6)-2bvP@cjJH?H5}A*%xL_X8)w}3-Hp%P_`;2YZX9ysJEqEw
zFWoro#y3>p34At47PuQn+~~@+G{+*YEqP3le_F}UKkCM}95nbH03Ie}jQs2mqjuvb
zH%__ngBvH@IO)cZZuH>lj$NBayV+a06U%<bj>b(nwiY*jb>lZTn)8_#zl6_s(%Iy=
z%;3XcH&*c#68?vshkx8S$KlsO2?yudfI04I7Wk8czZ;j__}7h#tUiwUZv3NwYxT>U
zjeLZpA41*3ck#IG<3_$4a8SU(d-?hAusZmw9Tq9iJ@Nn*XE&CZgTfAqI4H{5swav$
z7{z0>d<B(RW~)=*Ea~7X$Ncc3s)JGvN;|0Nm@07b%`XR?^*4vUd=be(ImbNBFE1pi
zAX1QDGmw5IVPzqMS8-6QfU#4}L3Ib$P+rLVHIi+hyZ&Za%Ry}iQyffnP{%=C2kjiR
zcTmqkeFv>oCJh{1>!7KFW)2!UXyl-=gC;CG{jIDT&)etc57kd0XX`I!%^kFG(9%IG
z2cG==n0}77T|WbQQ9lOyoP)nCw-pxFAA+uPaJ_?J4u(7E;GiSD91L>MiP?A1-@yRK
z{9mIiKmO*J-;Q)~%$r$Vh24a7c6ZDK*F)ITK`)Ws!ahR!_I1!toceSQWOVxf;B@`$
zwIW-TgRh$7CI>?tEaL#h+&Si#Nw4d7TBq4~^7BVH80lcFgK?})2csQ~ad0!Mm=(d>
z877h`<WmEl;^t9I9@BL&!NEialN^Nk{rvp=AM*3-@K6N549`(f<xpNNVVZ+m97H6U
z?qG%kpZH7%vmDHE;Bs)QgWDX;cCZmB!Y4lVM?x#~VR^R$hb8a8%i#L!ho5KZ^~0b$
z^ilU++&gj*a1eA5VtQnMr+y@KfdBQ=FYtci!(Yezgf}Lfsk|qonRJkHkam!9aHk|$
z2YC*biq91;63%ll-@yXM%qF9&q4Krnt*C`uwkfA<gtt3b>|lw5e+rm)wK$R#D~V+a
zd#C`GJ6Pf14mIZKrOf}lIDo8_?_I)G4puu@Bfi$bI>#8NSsEecp38G$y<5VkwKCi&
z+$7xWV2gvT4(^e2yMu=v+$(;ckYVo^*(Q8I_@MA1A<y^jV87s-Uk-LUctqUO(MWbl
z;R)em!pDVqBh6g@r1(?9+=`UKXXJd=!E+*%Jnvw)<u8cr5xyvV$-!Rh`!XAtRuQi`
zc%5CwgBv_}gYA}sj|W9Oc#GYc!;XXf4&HX~j)Qj{?33_)j$JJ0s^)9zEA=id&#!*q
z;6wR-<lqyLyE!I1W};;Kc}QoB4><VD!CwykcJR4l?&iK_tK-P#;Gly;3iXYHqnsv&
z;Y$aH*|Qw;qAN9N<ZB1SBTP>doE%{O{>(<m;7gn0I|s*P>bQd+9Gr0Qy{s_{G<8y5
zoVfqwi0a@c2d6kNYOCZA2R}Rb#lf!*esgff!S4=EvmI8!fdTlsiTQN`TjN=_;mYXW
z-<;EC_c_NwuRqSq2!|t@`l<;oD3*(gmq*8$=6|G6&|~-|W~3?pb#U21zQcDfO~xnp
zGs!66F(pZ}{4)icdLfS~dHOQJMLj4c=dmUz?m-EU(QhD0Ne{|+P}YO1WS<sFc~IJ8
z3Y=lb^O&^cdzzSt%6m{jp(=V%%Y)kTy4r(E9#odiDoRgP4}NTjZB0>4&gvdq;{i7-
zYIso7W70-W%#k`C^S&G7tt;gjO;AsSBTRjdF*0cquJxdy$NUDXkq6D>+t_oZLYsKd
zR2gUCtmud49#hohEj(!HK`TYq+Joyv+6WnMTMyb<-d-fPio4!}4sv!BcKVMOi>`|Y
zgOvTQ9&{7w?m=IVS<ChCm^x*F_f+zFdC*&gh1SPo8ab2H&x8I_8{ol>3eH*>=)sXD
zra{sOd%<82Zc@M@9&BJOcret1VIK2(>2ME5$%_qXgi3y-jBrC^G|LAV<H5}yjP+og
z2T2c79*p;3f;7Dz)7mF`aGM9SJ(%RdWQCpLL8HoWH8qK!>OlmUrmDZigXtd35WmzH
zGd-Bal*<&0m%}@|1Czo0&SCBIZ;u|hL}<tDG5g*QOF&JUIy}?vV~pwoevyDM=t0QJ
z!y*wzAriClxCaT#^V~>#kYRaxaHj`Z5Ar-%<iYJ8%=KWN2Mat{NMRH3eZzi3F`ohT
zCml{$tOzE6&3Lf~OFUTS!SY-Q48T$kF7!2X7UwAz#R?A=_rt!yrird#rFd|c2W!=?
zR(U`RYZP#`2mC<^LmiS?W^)}g?!kMN(Q*V@4>Rp>qX(>0mdR$-`z9e91K$qV!aAyq
zt*X#_Wbj_``_zx_7jBdM0pWu}8h_Y>9UfHip{fs$c<`tPUwUxZgPjV_=$@A5E;%3b
z;BgP0P(3~=$y4Gx`<eow@-rSh>%nshvfG0fJa}H5UN;Xlqr@H$Uh-hC2QMl(vst1)
zUS^+FvwuzLWNE+3R1Gy9fn(9@oC0LzO}09bw}k8h?8_{TcRYAk*7mWuw6F5M2Oo)i
zAmohvp-Ap+h>yiT@!(VIyWfKY;-6W`=N^0^e$Yw|iSSb@Uooj3{NTk2FOGQd4YTaU
zb6y<v;9C!3UWEC70S}I`UwARuYf^aJgWo+k>%sR7=)nmOPI_?KgEJi2*b>+^c(<!&
zdCG&I)i2nDa$_co?zyJ;mE)E2$Z>45ez8=)vng{9bmu%c&jHhmDqj5I!Jo2I(TfWn
zTx30}*Zk$d-yDa%DC0G?@DDq({@`=TgMU4^tYR-NuY7TMQNW9Wl2E^h7lkY@>@^9a
zu&9+36XE1iLZqbdD(hRyYc^M@&vIx1l=WU2tILU$7gi8*%%slMUX!m%Ud+-o$B~L1
zrz%U5>whn*dvT2nHt^zFFKT#E(~DYOv*@bpMLjQSd(H4z$7^OQZfWve722%t#qeQ9
zhu0bI|9H{Ji?Lpe^P;gAO}yysMISGkdeO{_E=oXiFItFn5VrK9ok%MoQ`p*zHeR%q
zvr<#@qBMoP+Iw-G)w!PKrdp%CqZged?<~B*>ag6pdeKeJ?q2i|DIilltxhkmneS+%
zuNVEi7$JFo;V@>+ivd=1pcgla4-yU*-Xt6%94a(lQBV|*4p3<~#Yo919OcDm@iD@i
zg}L0l&;;YXnBc`kulbb{OPC81j!PuJ55N>Jrb_u1FQ$1hdjNK+O!x?cRWRLay7LUL
znOUem(`#DhEcOnsv2Yvpy_n;Lix#}_dExfL@xr54#O>~K%==KY_MX+saK9G;FGB2V
zQV6oLVC1~`67J?Qh)BK%h<eTLA0@1Mju>&TnK~0*B)v#^k@g~^G_Up|E5Z_3A(H3C
zT#<Rg`PO%V7Yi+4<i+i3do;dSWQi9`tz?-O%Pr?ddTY)I3V5d)=SuOryjb<0Jg)JY
z_1Ic3)_Jksiw#~p=EdXeab9fn;z2JS@?w)0o4vTli+jD;qK3f^vQ>nOQgY&bUfl1+
zHZLBaK`Uev;zegpLe1@7?C|0d^}dId9x6P_s_|l%gw$k#<d9wr@`MaNE#D^<<SB8g
zQQ;Z+=AwAsi``!A_u_yTFR0k}c=4i|0hcJOg_pee*o#l(wO6KI_Tm*<^Wrr*KT<)_
z^6Or_Aqn}LUc6=b+am9H@vg`|;d{dOg&zn%6f!J7eZ!W_;fS4%BPWNHPrYXB<&4Ah
zeCEYh(j@;}srtf;gCdk168X}L!&Y*-A-=Yjk9hHo<wr%n6@Di?COj_uUfA7>lgiyc
zUR)CSksU#V?c|gfKa2ljCBKUNCOj=X<HhgR_pBG^#LrvFA0mHp7O;|wB7b@Dw+JUP
zM#M7t*Nfsll<?uQs)mw$FW|c}J`@ls=tChZDJ)XNhoV+e%!e*jj6OSfNguBAnZl%T
zt}ckBd?@Wh8J`)z%lgbvP*DNP`B2^mb4S1(7$36go~?%AY9A{3%wsqjsq8a@1{Z|Y
ze5me2AcJ5A*Z5GwhwCD^K7yJ))be4eAItox?L!?O-t}Rh4|RR0N8>(B@S(mB4SeY7
zLoXk$^`W5;t$b!on57L9-sCp&p|KB5d}u29WBU3BH+h=*(A;N!cGE)GQaD4uENSgC
zzqfAVGk3vleQ4)1x9Vs0)Sx}n<}<r7yspm?A3BP35_T5eAnYRSD(oigF6<%Xjt7nO
z_L-ya{e5Nu+{b60h4rODwqE|v*9V_I_A<bSflPzX+_Q6|Y_t!9d>HIAoB22S%r9R@
z`7p$1w%~>ehxssEWQ1^}&uquhccAcPw*Ow{CuL)NxLNU*Wm)+!&UfWILaCaV=))u*
zcKh%GYgQ@D^I@(JQ+$}}!!#dmQBwUr^IzcU<UY*uVFvZ}o81qz8F;JD{QlJ~yiGXU
zhdCmYyF}jL){}_G%Do~!ALvE3fFcSCLq3Fkh_D6v5SN4%%_sOV@!UhnggA>a=|jru
zq<zS!_Om`vpP~NJPts?##5^D7`>;Uez*=76!$NUZ$08qY_hGRQOC(ul<xAO|3Yhxh
zwcPSMe7Mtxl|J0%!)710_^?XNhBoi^VYTIJd{`^K&Pvw%ut7ZclxL%rZxZ1Vk*z-5
z<HNI7elN?%hi$BVE8$U-2Yh(YhbJU?$cODdJTCsQ)p^v19hN`BI@J@UomR5ThsP|Z
zS3&K4J!vIR`S7&m&)BffN%Fk#QdiSK_Nd*yqjG-HhnIZVE8ejnUiIN+A6}6H>y*u&
z4f{1V9-q0d;fjtm@`jY(6u#xd+Zs|R-&n@%`B!g-_k4KYhnjxW^5X*^KJ?+Z58wOn
zk<!4ra0=sNwZKnQQ=jsdr=aOF`&sEeeCEUFK765G^R@7x4~KmCQk;ooZ#wM5Q0}Wp
zLc)teUPmPPMtD^Ct?)bHF&~~&@E;U!Rln&+Cww^R!;k7y1^vc2pLGAEj(^IBpMChn
zhhLRh=JBErzgd3Thcn{8Tgh3Gb3UB6l0SU-)A9?f9gPyERr~O_<o^gSS)G4HF8h!#
z0>3Hn0zwj6DC9?BKZ+=w6@*3oDCS3T@sfUA<wpr|W`vuT#8Q5}gs5kWrTr))-?GAT
z!tz3X0)@&I#YwLAqmp=KVHF{tOR~vT6R+;aHGcEk?izkGpmE@03b~hF+mAYa4D{nh
zKkE8X&ySvdGfvi5F0NJB27Xf%-N%`K#5eS#kspoyXyP|N!=e$!-jp^Ks+rAubCDK)
zwDhBucxyk}`O#jyjUR2TCf}8&k?Z8_;K%hM+ySPrqaU5*q)tw9gALWikFJ(?6Y1_p
z50SS^Dl8uo`O#ac>Lctc>?iCm93W(7X@8I(gZ-HA#{wE*KsI|nJTf@MkD-1H^JBOl
zBm5Ze#{|ho`Z30DR>(~1C`m^9agUrg%SriIKgNkSm3*R=PgTH4O2A~{6u)_v%EV0b
z;}$=rOY^8ET-ur8$4p6PSqr!Nahv6{{g@-}vJ$t*Wz~*Xl^78EgnmC<MNRwR6_g|-
z3=1QEL`CQu6N&qg@FVF*O3sWQSwGTN=Qf`F@nf!>^MsV}%GqZ`2a8~#-;A6~{8;42
z?SAvWd$z#Eemt+Kb2|sFahTQu%l%lvHXlUUAnx$vPCuRv;JE-+`f-;Z<pL-lz$!mh
z`*FmNZ~R!}$6B@LC;eEbEU))tgCA8(n_s=(?FXmzC;aHn;Z8{BCO<a&u|-~6h1-Sq
z2=8V3MW}hd$Tr~vemp4hkoEnvgE9WFoICt@MC4K7PT?-$W5UOUQ#Cnq<b0E}Is23!
z&nV3w`|$~L>c?{|5J_I9z8|~AUl8sQvL(Fe$4i#)Wm8d4q5M@pUiae-KVGxG^m<dA
z<U>E+5`SCxj@5ZrWS<}JiM%iT!20r#CoO;Ezta22Kb6-ZKTdP}7akCPCj4CZh47$|
z{pd?S4$Hz<LMG;GYoDF^s2|^QJPerj@SPvWIA8`)B!J_7eDB8(ew<M6Sg2)ZMScpK
z=YRajXJ_Y!K>hg1k5hhJ<WSFJJbwHv{)->Kiu~rs-|{+bb<T+V?#Ee?b5?#{<j_cC
z>Q6r|SouYfzl4AL@sG$Q;lD!aU(WfKFw+wPC=f8DU;u>z=1;if#EyJDP_Gyi4VYuq
z#R8^x^eTX-MxsQ(EayrJuM*N(N~E-~3=N7D)XJ?w02Kq+7Qh1mTpd8A0LJp~NC8w1
zph^Jg05Sno4WL>8XGWq=4^$7}nt(|_rvPdMP&0sr0W=Djn&p|jS^?A!ppKlB)D_7M
zw)Mp82hbp3n%T8N>W~u~2hb*9&hJsVNdQd)Xcj<oMbui@Lcv=G&`RXGVkQ*BQlE)w
z8$i1N+Dnu2jsaXJe!Z}RFsDghlFk9#5I~mzx&|;jfDr+73!r-dH_AA5dWiH5pr@7e
z3ZS>;eVE#-Oal5@Nq><60SvT~oWdYE2NSJ)h{#akFyZP>7#YB*0A>d;CxFobj0s?J
z08`|9a{%K-7~NQraRD$0ofG7oD4b+<a`8@;bEa?_i`x257nxx#%#!m~>wBA(y8>`a
z7!JS@@e4gduaF7w*>VU-614J=l~X4YKs10@0CD*yg$ZGyvL+Y2Qr4MeW8-lGwa+~D
z;<>C8Ep+DvFkk$<oD8*4p%w{m4`8v#65&!Ib(RIN-0~Fx+#${v#yOI#4B#%c_Ej>w
zfq9p6jc~1So$%KZSRXKF2G}*sok9Q`ZK^f}uvvVIaI2Ny6TrQe-^c8T=hpKN2Jlb-
zPX)}vX?wuji|t}B4&Y(&9l}S1^m<feXTaRS(aHNkF3TSeU^-`_fVmHSlFehHaW3Oq
z04lNkvUr9KzN8rgpATSn0KWxrns(TLd7dPIeF5wde=&fU)HU`7P;VUG3E<@bUXk%v
zC4XJ~H6dpiju>wQ@TR<24sQkUcEGF&c~#fpka^s22;hA-9^SCG#|Hs?7{CIa$_U`2
z06q?2O9gx)NkV5in4?bv*dM@w06t?Ld9;IXeg*JF04D-C8NfkXcSiy^WcimOhXeRZ
z<ZIy<T0OGHzmfB30N;vyCp;!RE~L))B0n%98|udZep0^jT3>0Crvms{YQNY}ROa0u
zvv!7!VI(dDaFOH8c>Er~*#OQ3a9*P^hnGJB=1j}|9Q<uP-o#Hp2k^H_reQ_=qZVE?
zh+;up5~uRN0bCZ(7b0jza$W_3C}?>hk;1|vLM{V%WRdeiajNlAPSDhH$sn!@qEry2
zgXU-DoE@0*tD2cl9Wwjnf+!zE#W1c8qXJ0~$3yr&gsX$76vQhbyc$B~AgTmSX18`m
z)gY<`%_*;!L#Q6aH9^z}p=Jm*f~Xn9!$Ir_qE-;KgBTsem>}u|Q8$QIL9`B{9uuHG
z-Xw_nK{N>B+TfKEZWKgA@!S-^gf*6v1=v)inXtLAg|MYCr{5-swn5w|Njo7ebPb|?
z5Z489y(C?P9fTc)orKiv9K;RcIcquWCQ0`odWiH4qF)gGgXkq^Z($!{Um@)<-~h`9
z2CuB3m<4(b3Sw~1OE^4;AtFPq{xFf8@`xZt$~nsV((=tgj16L85Q~Bsr;@xSi0MI$
zm(B#MIZ<SiaI$cUaB2|KL~`kz5yZ?O@+6rR#H~SugNVrNZ9#a0@C7kDh&e&HBxJ?a
zsR*~YBlK7~)8-E%5JbpI{wQH8I><V$Xb1!5>OC4nB8a3SjRg_6>B;3f6-35L(jt^+
ztt3||bLE^ToG)Bp%bEGQJ&27#Yzks=5KH8{l&k$9?hIm?oXdsOTp>dHD@9fZu_lPS
ztnVt3T#Rdj*dXV+Al8fIQcK^v|Kp_1&2nxNZV6&*5cdReublL~Pb6pa{{Qd?#2*ae
zA(8Du>NA!{f_OBDKZ5u(h@C;~3gSo*-vsfPblwW$?I0cx;)x)h4C1LEUb11I4&u2W
zo)6*~D|uEVm-5}>dxS6iNB&~)%4&RX5HGXu%j>luUJv3`@m#8iZ^-$k)u$wvuXlnt
zpf>Ps5c`67Pih|q@lg=(i+^D4<n%ud;!{aJvGQCB_gl-K1@U<hU;NKEh=by};9mxD
zIEb&T@7Mon2|0zMLHrQJi6FkUI^T&L<0vQcy)dWDT%45iOb|bcQ1X+=sUUu~l3zrA
z4dS;TPKz_mISapAowGrlv;4f(xe&y~|D^CQ4$C2w3gPb{{*lh5APR@BjEDaQaaqEA
zAws4H6_9Vi5DJB^taT}5)I~xl8bUGomarCzONUt~DM>Dcr9&tqc@+uEhEUP!mkXi1
z<rPG7b#b+LCC&o>5mptiCS(-VMXs?5wL+*J!srmjgit4hx{`Mcp`J~4%Mj{I*dT;!
zLue>YJ55Cz2^)vdL?o9C`ZklZc?d16oSAABLTfqOgmAq|sjZytgbdX_gzGG)sScJi
zY$xe=4&jCnx`fa*gkhm8RoN|s0n+R)>=8mwkzT^yLR#x1!dUu-&@Y7k${^*rdKnnP
zjZzqtQww3R4aguvLKtf6=zn<}E`<>xjLZe${*TqUIfStx+!4Z^A&gVXXNNE+gz@4N
zLYSx^lR}s&GC71PB2z<{#(derpKdMBu$g6In1ET5-zvP#>f{pUk~0>9+sd5~JRx{P
z@JSK~AsB*RJlE1_GbAT1ghe94sF1!?i-(YqGbvmWLMnuG2pOw0KZLC1c_MQ|m?x5p
zWkCoFZTZmVq7ZJE?_wK@YD+^{CY|N~$?powSB7v`2-`z=ID}O;)Rqudhp<M@wZe@d
ztP5eiIBjmQns<vZkDIJyv$ec6gnJ~sH-ra7?z1}gi)^!+4_f&{BDA(cb^4f`kBC1i
zWV_lavP-yX0v-?H38_6Pd{+3B@aYhqv4umM&xP>3<hzA?g)fA#M}(#KVhAr;o-1C4
zdUc{%dA=6H>meLv3*_J*!kZy{9m0{2Sxj;%$jzL$LU=o5Zav-!;oXpVR<$pL!)$>?
z@t$nHA2R!yAB6B>2p@@mCj40ViSSe5e&GRO?tswe;$H|43J(dt6y|ikQY_DpGBI{&
zX%?&BgiOl0vBNbm7sKCDIb=Rua7^+!d@u+65W<NNeh%RmmFLM2ehQg;G481R7%~qd
zn88!*#oE^1Pz1k*@Ed!9-V8b&!kG}xhwujnv4YrJ62FH)n`c92ALbkjfkPJCc^UjE
z<0Znz8gFwhgm5v0zc})T@DGFV=uX(+CGmXWzrxEQ<aYMx%VSK$0$~&sDI}z%a2Q3z
zd5cFUuVP^ox4sneCb47~SB1?zV<{m?X^}Evl(mv_BISh@gzY<{QW%xPs2V}F2&$0K
zP6Vas45ND3Y?KAVxF(DmVfe!Ehfy<ZZZ;c*(VqK1<a`PcMx8L~hEb2E_|8Ze^}}eO
zqTt5G27Ni44TE1KrgFnD@<xJ3mm5o=Nf=FKq*)m4Xj8m-7%fCv3K^<Z7_BXD6GmIh
zzbSz0!ni(+USaf>utOM~!?+=*AnYXM(}yl1-GyC+-GsDHJ3YjE3aQL$?Gr}dFm4HB
zdKmpA9~s7|F#3lvK+b_-+!V$T@f*V!6vkj4L@R2tNu*7Zp<xV@LQXh5j1g8Rr!YE<
zF=0%$IyZ+g-tw^`<Agco31LhOW0IBR;+kUhr-m^td?jA$&j@2?7#{h~vO4ZCZVlr$
ztHxB#4r5LjE-BF9|5EPQbb759m5;SCZ7d+k{pvEIFv4L(!ia|PVi+%l5ep+8#&c}O
z>XmG+i7=93q{2vtu`P@T!pMY?mBMPa2dlX(jJcN26PYhu5XQnV7KL%U^<5&eSXi|h
zmRdRaa`6>baz_|<TD~%jyTn&n3H8^AuMK0J$a>)x;f65o7TG9db~cG@W;dyJC3joH
zxX1e5D{@~L_ge{HJbcjdU12;VzTHY57TF<uB#cL`d}r8vwVu&EW+jh{JQ2o|R`Qg{
z)52$j&kFfE=kp@Fg)a#A2>Bu;ZSEB(xe&(797Do*HH_CJ{7v|J81Gx1H^O++^0&fx
zTl^j2yH>t0jQ1>O>>q^jVHh8U@v(&8h4G2VLE)!XbHB&|;b+3ng<l9cpdAwVQg}Fw
zuSC8M<ERMJe?;UPq1iL%_|H~teUF84JdE$d_(77NgeR=;$uNGjoO@XedrHoq!}!I@
ze+`?>H+r3x<cyX79>!VA&xLVb{14%uLbiW~x){b^Vf-ylXNd^@3FA^2|4LFIVsv<2
zmNQ?-)7zA=%^0r;3dvd6Y8Hv0sCY49aVuw;mlWsu2fjU8I)XA0(@D!m%r;Tk2+Bpw
z9uYflw*uH%(RfveAUBUx6uCNrN+Ol5yh_CMV(L_n;F<{9M$Fb3kLA>epiab0jx{5w
z6~W5V*v;`jVn$0&h@4gHMo=$;`VlmsFoNb0TpK~d2%1FDG=fGEG>+g*V;nDQ9<g!G
z<!&LEp7CZ*p^!#eM9?yV))BN(E+}jzLgTCsI>XK2>3~}+qFuz?NwpV}@M%Ja2s%b^
zRSKn2=oCTc2&P9dBZ?a$=n}!d5nPU-YXsdQcr${xBIq75TVyWgD1sgl^o*bv%PNA|
z5zL98PXv7<xH)1TRkQSXc!?SB7eW6B21GD0f*T_k95ET;#fOrE#96#9z6B;e#QF}6
zV3_!D;Rq`q8Nn#=(ZVrSK2LjSV<Q+B!T1O!D34PjW_>j=f=Lk!(dkM$CrikOzf(n~
z32zZj7tRpQ6wVUfD!ffNv8+yM>Tjn!LcsFp0>+8J7lA(lPXu1pMJ=<cxkYCN0ucmR
zR;uez1mOrCieS5%UnGJBB2hLTk$40tkwgT^2y!oC^CfX!Y~kq$GV&$QMvxc5Tsh}O
z%=_9D@|v$uEc}HLEQ;WEtG_OS#StutV5ybd6~Qv`<q@n9xg&x*tuGC(6#t*)RS~SV
zzH1^_YdI6SUVK9YcSo?%%D0Ma5^j!Qi<MLVo(S%Z;Jyg%XY=DrvJq^vzPadf_@MH_
zOg${Moe}Jk+KvbwQI;Q-GpGER_|p+Q6T#yVJQ2Z@3Pt-**)rkMoz7?JWCxM{^U~QZ
z&V<pI7Y!2kMDU{IFGa9d7IG22%q}nat3oF4HIdhaZwRT${`GbQUq(>ABHmF0csGK5
z5xl1u4+`HGejsFwABub={5XP7to&1v{Sh1x`OL~c=O81_1w4Zv66Xii$qz^HRRmv0
zaD=011ee%Nlm<4--y%4wfsQHsRzbdt;8+C5Blupu<`>})!V^Mjo{Zo}%YTaCl=#m=
zmMRr^{VHefF6lH!Esa9#-M@>R6`m8GSGWB`_^0rK@L~jiiTo|(GaU{TJViqz!#kS3
zmLK71X|#=^T@(ePC>TZgC@MrvmJ3BuDr)XZ3P({SilR}Is@IyCo=D$fQ526FUP8(x
z#p%3CBzF{~bQEReTUN+W<wUqLtQf`BQB;khS`?L{s2oL=s2SBcsGe$%$wd&Th|imv
z0l#__G2LFZ61gUd8d1~~uO+M}tQ|$2DC&w&E{;jXO{n@&G?3)lC|Zg%6w<4aNMm6W
zVN+o<Ve=?jh)|Q(c#*V@npuoj8<F=5qP?=yBZ{6;To=XlQFNe0!p>22iXvGAl`3NT
zICC14W!{l**UGm`6kSES3A+pF%XZ$&@*yI<g?)s5qv&US`$sXr@`0=-@j<F1R@2}d
z5wbZAwVK1C7%o1-N=Ax|iej{tjEUmrD8{le@NilblSRf0CkQE@7{w&ZndT|tQ-#xn
zxBSO<W)!oc*d4_SQQR8EZBcB9;%+sq*-^}i!WA`dE3@&qqi~{F5;e2AM~P=kSR92n
z3SSidC;~FOFp6Llp(wIZ<Vg~aA|6E|ibxbuNiM*g#*C?^YV+7<6saiEQDmZcrV4lq
z&jW<a2*)TcbjR_>sT%O-MloN(=Lu<nI=mJ{jWv=*QQR(@w2+hV=6AXhzf>)MSrp5o
zSP{h?Y}I_`E8(5ubn-OOUACvJ5?LL^8Y@{VvQD_3#iBDv8>8q|0QW1>O;K!)Vo*zL
ziQ=9p?u}wAYfV3I9m)eFCCoXu`&f4xJ^1`|TNDpO@t{ib;V5=Q@sRj-AtymLl}Dm@
zR1KAUjb7^CDPKBwi99BJT=+y3Pg>unqIlZ!XQFsk{5j$CR?aB)MDb!2<zgrw!%I=@
zjpDs1-jCwtC|-%0_2C;)yc)%8QM|5<b3>piHxnj+15_h!v+%f)<Zngsb`<Z3v#Gor
z)l#9Y8G`mj!8eylK8WJODE^LuMm~z-<0vjh@mCa|MDb}9$D{Z@iv6nDucJ5;#et|<
z5_~4f=R#KT7a|9vI3)6A6o;eu%KB2DI>c`zIV#KvDgQQ#@1i(ng}EO6gAMyj6em<N
zCxt)SQu;~cl<?>1mCfN_qxda~(-QtE3umJE-TJb2&dTeY@VxL3rdf4*LHfDaxoYAn
znon$r|3q;qihrZH%<(*iVlm`Lffx$JP%wrgWz6|@E^d3bHBbL}6^fy73`Jt5s97nT
zJGfMy-U7vAC=tU|F_em#sbu{~G%ksfG0fLy6eaaK;&5}6j+sg+6GPdU+3zAJR*0cu
z48JFFHi@fasKhkHfdneYP=zfdhP^RVjiFi$$rw^GRFC1B7{<hKa||_Ns2M}|7<$A|
zD~8%Jw2PsA%*<AGVrUpcqZsPS$!V)z4E1BCh10h|%uHn0%8Tpm#v(0+O@vK_&0=US
za)x&SB0NFCZc7WTVrU&hn;3GB9ot$pdR-^pSxD#gF?7grA*b(7F>vYLysSy*4KZ}F
znq5V@#c;5<nfrRi&`aqYq;l&m<RR)lG4ze0pPV-e`wIsM2MSrXxySCz-C!BHDTW~;
zLt_{vGEADo#YYHPCL?3!^Cs+uqhsa+vkRJ=f*KpcxES0qI5CWmVM5Fl!VFd7QzJ1k
zhDk9@j+quUHD;RY6mdGaGdYa`xmFiWR|e_i2sTp@%@W=!ye)>=A~Zh7YPuw0c04h7
zV+h9(QBr-vP|SR*)-N6q24i3mF={588HuXK8DoqoEMSJ0xKct%LWC(v$B>EP=@_1g
zAsa(p3@c)|BZj#OyF@roIA6FxxKOw#hTCIidRiO<lgie`^SX?MWT~9XVpuLh3Ga*V
zjA3OAJ0;my4tK?{A%?qSSjA4Eebm)4tWieRvJYymSr@~4`LfNhWHu`7mKe6iut_?!
zyg6nz*+}k*;ocY?jNu_xt~9sF+Wq3Wv&1y}fYQwJ*)I7b!iQtn5xa7-i!G3i^U?o=
z+9l47<;P-pTsEH&a=v?#4U%^O?6B=jQ7{?Ls`{Rf;W>rM%`Ce)I4Isd!WV@*Mwt3y
zkeAtJSjBPp;&_$S8bgIRD#r183~#WP#qehgZ^rOe4By3YEQYsZct^2(9>cpL9}D-z
z@E$91q)Gq#F?=B5hcPn}GHoBJ(pik0Oh1X?Q~7emvR~<BkOMJ%Chl}J`d_d!GHeWA
zO7p1ju<%ICEdRcW;cGd0ri+b=7QRswtWEN7W9A1;%-!)AzUL^%0@3Zm4>9}{!>Jff
zC@eKk#_*%%+}QtFHB0%gG5liXxuNE_7*5A9O}AQSVpyOvY-g>`xfsr?_c1J^z7WGj
znu?n={H1*53;!0fCH%wwqV7zEe`C0;?ncgoQcx)J0wS#XLU9z1qllcv<0uhFQSo9{
zfyyQ0xGIkFl9UpbiC;PPQ#x+?2n&sBW#cFpH$x5UCD&ir<gSjRQXJjl=pIMqII6_a
zERN=JR3+h%9!K3cs>M-V&THbRDN-YD>YC^IX_;!ZB&;ptlyLW$!g_JkkE4OS8VM=9
zHjai$Avtr`IF2UrYAU3Ja;A;d+9Hm&akPu0W!%(qtGMZ#trbO^xEUcStlQamwU46{
z6VF*dnv`50M~C>8A-!W9!}UEn$~(t#LmXYC_F+?Wjhk{{g4=RBi=$^8qv9AHN3S?~
zD~cg;^bzSBN5A-$FX;A{WT24A7$Cyi)f?j&B%V9-JXqPhNeN~Gs5w-=!-T`*7$L&f
zh(^Y*d})7795=^tOB~bV7#qj9_?6SYOyu}DrYf});+Po6B-T+`^B8WjgdQDfo1(Z_
z(bFU>snKbM3U-cgrf^mqx01AinJl<t7RPL*Bp00J?_&8#liU&Uu(}JH8u!N$h~tGg
z_QVm4BNWHoacqnu97iOMJCx;U9I-eSD<CJ4cpQ0gvj|DVk&GiHc{+|v9IOIXN>;J+
ztQzg-=Fquu%u|s0aV%0^7R0fTV-!s5y$EBiXGz@7g5m*4g<2BFQUzJ2mbsiY$iqJ>
z5GwOkf;*MAm2uo9vMP?XajX+x&BaeqtYOKkgR=nFOTIx(j%RDxU)WPNN%(LaJL1?J
z$Cfy@#&M6Ldnk^38N1pQN4ERpR~CT}#<4Aq2NaMNSi)?>d}cax0=6sQWgVb;B#uXw
z)Mw(@DZ*?%9>*^6$Kn{;%w)W_oKLV-C@dvUv75*7w2Fw%XQl9*weWl#yOkt*&E#X>
zI9`h5L>wpM*c->oaeN!coR)Zn1slg_aeN-fYaIOJ_&9FXif_d6rcAvb$6Lz6KIW?k
z-j3rP$={8el^AP~Sz{Dj6}+d>hV{tK_yOyeniWmQ{7BuC#rTQR!yuoE?3bMbHj!T_
zUkv^gJ1^sk<4e`!VIiYtgXA3_D~LK@%jS_dzERqa3MuF6i!pu|$FVq$OXqvx4?@0O
z$kCe$KgRJBYrG8pisMuqKP&hjar_d;uWZ0=aW0PE;^wq1+t}|Sr<qzMl@kH;%iE%}
z9A`LTasOW>#@@sN`BSEt$O~~?6leKxvi>`cf0V&XaWf@xrubJ*Hi^seD}OdAkU+r%
zS|!msi9!h!PGCa<cPCIJfuafYOrTc+#S$n^odjAZP$Gen2{cNeaROH*P%44i3Db{C
zCs0PDim+?~<q{|_&e#1o7F9^#>I5n!P%&Z3lgm!#sB*$2Bj;p~V8UpsY68^~sIIWr
zBv3P9o&r!_BVpbgq;f4;AYuJ7Uv(0wn?OD3*Oynr1R5la{c9!6)e)7a6hxB*nkLXv
zYPo5;S>j4JY%b*%39}E(zD)b9*)|EZO`x;%+u3+KCD2}+maj|T`UE=UoGcCf^N8io
z;Ji495pPJKixj#Fy9v7s>Dxm|Whd>OK%WF=Com_0z6tb8U~B^866l}6fCPpnFf4(A
z3EY@4&63N!K_cWgi43L}%cL-d$jRj&jSm+emB8o(MkLHQM&ZbW87|l!#w2ia!i;I|
zf+*a~jL$2Z$;t6Qfk_EWPGCa9^f+D<MSg05DONH=WNHG_cq_;0)yk)<B)PFaGl5z1
zx>a~v0$ezmdgrcSNw}z=z~Tg!B;X|ANg$R$JOOV4KIJ7SWK;2r1Z?qg=nhH3{Dzsx
zLWm>~O_--bOebqCkw7wm1=2|g^Mq-YMkawQb6v_57Zbx)M>02od2H3HzWJ&V3KuHW
zBGuIG;uLZK<oviafjcE9UzWh~gc0&uA##T>&=M;XxGRBG39L?Fy@YFo>lBs)=~^a9
z>pF(zM6<e+NyEkjHYIQ}fgcmtoWPa@UQ6Kh1hyt{PXbRQ@MHq_vNjXgt~$M+y*NLg
zvlZ)ioA?8au@fFln3vifl8*UJB%cB#utUyAr1qHjqY3O($xvZe0)t0gInMof;>vrS
zPpSHzN#NN8o=%uCilY#pRI>d)m%s}uuICfxR1EX7Tdj*j)}91jOyDKu^kw<(Wmjru
z)P{F7_(}q=N={xjfHx9&Gl7p1_*l`smB2oQWovm`P3s-uyTaodH{MI&ed(}Oe~`e3
zw!gCjev-ha34E)xv6lC97)jt@0tc+*Gm*~|_@#_#lZUMQn*_d0;BW$8N%FOdhzjgz
zM^tFB38u7<%9jm^UcA0b;8+636Zl@~q2x9-^&g~gLPE~MKP7OAV<5LdlK7cXbI47i
zND{v$@LK|xI36Z&S}`)Ziwv8<?+Kh`vGbh2VkbG5z<Ei?|FFUfB79?!Y5PmH`L{+k
z+WCi0-LYOyn2`-hgZbhlOjUs-3Ud5UnqEvvor*?*{}U-H35BJTC?;N9SR#34QY)Fn
zRY}tfN+nHiq9!w5CTYrq6MESs$|cRrUS4Q6f<*SWLM7TsqEQl!lc<tJ)g)>sQ74IN
zNi%BINM0GKswZ)cBotm6kD8LRmDUnrgJ;xrlX}TFiF!&&{UjPBuk@*Fl@czt8Jub3
zCkLA-oh@aPJ+5ieblYaa=E4?9^Sw<9X_*s2n<UyMaYqt&Cebd5_DM`mVoDO%C2@Tc
zHzd&|Y37R#j9PKA@HwrpcXVP-CBb;`>Y7BiB!(n0REg}KM1Q5BM-n}grZ4nTrSu`n
zNeNA{7WzuwPsqt-fD$=SxuC+0Nep7$ar0kzlQ8!Z&9LN^4bm}53|Cwuk{Fr9C|ic?
z=A*?~apX5AF;>RMNjP4d2OB0REX#bN<dYON$M&g7OiLn_L^_FEl9--^KZ$^pXC!f(
z)Mhg3j+muX-I_G7(=uPo;Or#kB;k?{WA})-g^rL*JIcLD_~c|jI=LPTCJ{{{rdUEM
zlW-D|q}i6|#o~%9uAF{C<<F*=6k%88(3(kNK3lKMW+l%{Vy;>>qnIZ-&t|Z}EL1Fu
zlUO8jyO2fA9Ul5Fk#lJh%S0$yF0vwN9yC*DWfFHK@njNDC9x`r)k$nhVsjE}6vf>t
z%(dc-cb&+3;RYeouu(d>aeGS=Ta)0V|40(|Byq3e+D?V!mD%|Lk^6<)SQiD2{6Xvc
zkd-`~1YbVln6M*hmR@Y+AD6+Ss_UJ?UBbs$St9HRPbAIx7LuovcqWODlK41@XOnm?
ziC2?&O-1*75-%jNM|`(1_t|jHKJ0fdCh?Mldy{xs<P{-js3V$%Ur*wVB;KQt@BgZU
zFk$RRZ;8LHI(<j@u5h1_Thpu#R{Hx%d?3k(!rhX8lEkM;oJiti68n=lki;<++GoPA
zIYjW|CrNyv5$RwOhZUA%)FDZ}v`$LCl7w*`k?@<OSzR9$C;2vs@5HG<Cnv|_Ni#)$
zpTrN6w`^m2=#Pq*?c~=aezN=&X94kFgbkGP-;y{j=NT0UgYaU>oRjeHB>qX_y!ao&
zKZO?**G1u9LIz>Hm*iVAWg6|j;+KW_LJE;W0r`>_OrenFg;OXZUQ}4j%8RE^!g5BD
zTjG{Zp-c)@GpLq9*%Zp9@MsD<Qz)N8g%ld6&?JS5DKn}!NSPVo>J%!aP&tJvDb!7&
zUJC7sqVphBO_^s~)l%jWL-iD{Nufpxd;r0#b_zAcYgq|%M|qu;Iom_hwv0I<Qa@$J
ziqrC97q~WshAA{knMFREB3~}%@YpnEYJXeG+z~WOp?L}|QfQgNy-Z;Wtx{;6LLh};
z3T;woo5JW6#xR8`v`=A33PV%4E`{q;rg(d%&>>}dM|U|pigyz4EW9CwE-7>s?<QoZ
zT!-RB(<5d2DJAT%y;A6%LLaL$K%{R9{j8*a3b|ur)E_9}jlw~~!NQw_8~}5*&pI6@
z$?z0Lh>R4{!YC1z#?2{=RfXP~!Z_=Di^zE41mVOKCZ#Z0d`b$_L}+Jf3hXTGBe^a^
z$#i+m5Y9|tmPiHrMeEyA=B{ma3UefP2^q?rf|G(rPHzf6k=!ssUq4$57X}3oN+F!W
z{1g_X5J@4L!aQpsmO@?%b5n>*k`N|^DIp*DrbRL-WLerO`P@@rTITYA5pkLz@>-a}
z-BMnZ!tEl9Q&=KGU(T3IQ&^V5a!KwKuCTs$uvLsRc2-JqR|>0ASS`LLg|%$e_9^qa
z6xOG(L0%N*u3SnsT5Fq9*lhV0k*&geSSGS_e@a_(g)p0Y?7EM8AcY50cqoPKDLkCQ
zjuf^OG3$ZUL{Q-o6(%3{Ezlj)ST6fhcr1md(s(+J$5VKM<&#EU8c$NlzLPes^yw6y
zNnvCfqtbYmm6$^DG)koLd<wf$IG)1y?6xWFN#PKiL<%pa@KOpNrtnb;dsBEhg?E%}
zj_t3g4UoJl$!jURp28dAZ*l}s`EyxC@>U9O+fbCSNZ(CipCs?8(Y`PKfiPDZ)cH7t
z&r|p!g-;~^RJdQ`&jBWb&wnK$;l*ZfP);^Wa&Gb;mh<Zrj->FFV&Ss}n*By{lA|(0
z!t2`<zO(XUBDDEK3MW$dJB5EzIGMtaDV*joWkdax!l@K~mSrl_$S>j~zozh;jO6md
z68K%tKT|j>a!z<&_=n1h$<C$Zf`k`S_)FG))_b^@QutTSqG?=KvFCIAOq)K)O@IPv
zQ^@3|%+puw6cQ;cERr@wMEk`Qglcq_OyjCFTBp$_jZ$f?uG6TJMrj2pBP=Uqz;bDn
zPoqK_6(zYkjY{b&;}{1$Dsa7&Gg~!{nrYNZqnhHPS9JxsMp#40*r{AQjrwUckXjvO
zp>7)Wq`;#c49LxmYvpVz--c;4l9OQ@r_tm;rYLD9XLDhTG+L(7%4RlKwr$gBmqy<-
z`lZo6jqB3rDdp=`INj6ekwymvVf*QrMyE77r%hYBA&stSGar$6QIOm+wObmw?*njF
zVie32uU@j&+vdHGoDADPjR9#4OJjH%1C^Z{g$&D39N`DaIhYlpD2Av;hKlEki+LQ8
zzOv0lPT}aZS&ENgviY?o-RvCaM3BbVG`I^iPDnCdrY58@F^x$QPEKQ*^_?OzRao4<
zEiyfg8Orj^Gy)>CgtrQB6Eah?Mdk=y99~2m>+2Em3VlL<+WhmB0fTaegmi|}h*%y?
zBPJeKvRN_-kz^VvD@luFguI`co5nnqUW~^+(^!x;3y(!<+&kJlBI(ux3#q{SR=xt9
zHWScd*<X^z(lnMS;Mz3S$=Y%`R|xM&<4y@z3hxrG60R1m5wZrENY==D#+b%^3cEpg
zcN!a|vq`vFxJ9^Cc#rUZ7VcN5M}*tbctE}n3Lg?~7d|Z9A^cz1N7L9T$u8kz!pDVA
z2%i+@^q=A2pT>Tsmg5Eo|Fl{B@Uiu77F`;jr12>ma6#-z<3%;OCn}oN@=Hn>GrKp9
zmt~Fo6_HodcunMW;Tys?(|9Y5x7h{c{4kAoMcx-O?7lSK6Mt39V@f_q!_(80=SNoO
z<Ft8cixTb-j%AY@X?6$?r14oApQrIf8i&&Ok_jt`bsfPc^#@s}TEibsga6T}kU_-^
zzDn!-WEw|E(m2ZeX3PllZ5rRDk)H-KIF`ooG=5FvH%0w@8b7G_<yQVD#80O2V;VoD
zaVm{pB>7oLQ#mzaj!<$sjX%=(GmSH8{GP^HX`V~tya<;Txzz>#>GnT<A&raj{VR=2
zB7djxkJYDT-je*wDS+dfBFb4{Tm>>HltE!-s$j+#q(Tuni)T!zq8Sv+7$G^4K}yKC
zWCmAdP%4Ac8I;KdmjW&1G&!)B%b>h$QkWZ=t7^%?#&dNBl`^IkRTfqe9%yAYW~=k#
zpBdbk!JrIkWKc7MJ{k1QpjO5V{_QikPNa4Qbuy@%K|MKJ38_$Dq=E3-3>sQ_Baz0!
zCK)spX=Z(!i?k576y~PI))};sv#qe*f4r{eliv)wWzd~@q&$O#1<@&kE*W&qm@T``
z%G3=Rb4rR+05_~ydb~Ib^iYZQ%Aj`!J;iHjEyqW1Y^B^D=NHEMWze4)=MbUi2m><a
zJF6Up24>9ZEZ#e_Z4b`irVJ)!Fgb%E8FOznHiK0YFf@Z<84S;0L<XZX7?Z)s3`S+}
z#7OLKYQBZFP)(h8Ox&vFKzg$xqLVhqWiUQt-kX?^!9?Zv?F#1aD!fPId@&`1sf?5d
zcQcrl!7a+;tc+1$Qm1DygUyDwfjZesHI@TckF4lL+!R$n3TJ09$8uK&ZgEHG5qhn!
zPmRzoJkZ{}I1pl)XVE>2a0ZbKq8Y?8_%(yyGKgo8$l#$2wr7ycAeF&gER77(855A#
zLXk`cS&=;9T;V(+b>?TV!1DWwVv+dm87$6ViTHBiQmeB}WWr#q5V^z3?-W@n{HUl&
z!0HU{m2*u7Yem)xH)XJ1WP^~JcZ+Pym=TOlUYjM^lEGH1b591xt?zvj-Y?uHd?14d
zMRI>6d^m$08N8dpz6>6b{3$lk3?3Dy{hcDa*tD$Vagir7cv9rP$|fbxWbmw<Zwa5v
zU{3}wia#&hoxuwtRDQWAUb6gEk-ZtbY$dNSFE;(JN%(pOZ-~5Ub#jS+Th4cceB*|e
z-^<`rIo}t4ApB5B-;Xl*So{-V&d7f2dqCtf;pZ8Ak-@<X4zU4Cazc1GgCioe_EiR7
zTfU(Hz7ao~!M7Y+^7ASAj#Gg6@eIDt;D?O)<0`#)k>vPEDf}q>Nq9>5a|XYNP|cX)
z;Ge;n4BBT6|2>1V8C;!3r7X@V-pd)}XK>!8=Z_5j%-})>7bW>y_?Pvi&40u%3IF|%
z9J0?Sii;Ew7R;iMNMT_SA$5w16wBg>nj$47vM4FxRl-uj(pi+rqHGrBvM8U$J$!Ie
z!sKGOLRHA3VitMa57d!k$}1~WjVx+rQ6-D2a#j;o&tCa!E!D2cqOIB<d95s3NuhQY
zbwuh4n`Ti@q`t607T0FM=GQQbCRsGn)i`VZUPmK4g!Con)l5N}XVF50l9nR=5@>BD
zZA97%+X?wwy6dd(^;vWf?<nkK<(;#*LA;BVbmgd}GU<^;&n(`Ui#O+@R~Egq_)9u{
zvgn(|fh<1DqF)yMv)G))mMjKjF;EKYv$#=YR2HMN7-TIE&f+HVAyzUpizm7Nlf`fm
z@)22#6u-5S@fwrG%~D>Q#n>#yWf5ZXBpIK@<SeFSF+t9W*5)J%ZMjX&Vz%Vdgtufd
zU1WxIa{Y8>7PBP0HH+Is7(D02a-NfgOG3BM5mN3E@n+!@@e2diHz-0Qku0KFtjOYy
zEMi&2vsjSDLir}Ln8yO)=D(aNB`Iw!WU|PzDQ3-&mKfb!$#Z<ZLgm(tizHtz$?Z1m
z;w+X(vQ&~~R=%i`iH@lv-YMZK;mR!T68T@QS7)*2|4Y`%nH#1yWN~*E8~@Y(H(B4U
zA`fKoAUl`%y+UT;K9T!{+gKE8*bil~J&WhEcs`4V<@HDwk7lt$ytDe$PH|dzLS$DK
zkBK}k<ljO!mBEwZPYItEJ|kqPXKj1foy7}Tyes)0;fuoDyMEMsDT}?5yqq;-<14~f
zg>=4_#p~j42;a2wx3YL!{2eRdm_}>+vUo2GhnxRdd?4~+7N3Yv_)!)gi}Uw(bn^OC
z&iz^Q&pSG4;d3SCjPQ#r4vJ8ID2p$}4-3Dt@~=7iW${fGM<w~*%D>GK;W6QH4%g*O
zB7ex@gd``kIF-fE;y((1%9?*MQ-{|tlKhs%uXdozd7b9yp*s3q3e-F+axRPWR`N#{
ze~MoaUKHkv=x;`m#icC%&7#Cyl$?vpS>&_L=V3t}kcR?!n3#u2c_^4?Qqm$1E%Q()
z4~6qkM3M@5sF;VM;>Co;g;Xw)hmzt~2}=n}3(E-03d;%03;AtB2IO_MoK5pkDG!zN
zP({wVLi$z}sg{T8R&q@qYKYggl3IDFZF!wMyl*Yn%R_xDZy<85u%WO~9vX`@5i+jz
z)l9~l<)OKia0+gfht_$xDGx&=Y?Fts*0-%lyF9cPxz5V37wM3Pjv}3eovrT;dFWy}
zdsDYObk9Q%NqPx;3a8p!^p>+v9{P&(6ZRJl5DpYF<u~SGkoaKXbXgc`eJA8$nD}rj
z86h$<52Hjz3&&XBoAWSMe4Lex&%?Tsric#NF@JI%ym|2DVTyF73a91a7Ln<~nZg;u
z>tKS<%EPU4lHZnx+2V7o#FYoPxML-rJmdoUCCLZ_!k{oD3=1Q|s4ymEEb%-f#FJK%
z%0pVbwe5FVIrH)`*Xqp6Gk?Ej@P&C;l!tFA&%^EVy*Cf{<zaCimgHe+9+u@{V;(l;
zVYv;vL1cySjy&8cvQl`LaFvk8SBtF4!&;I5qv{->=1RIQykpz;#P-CV*tTtJ^0sYF
zY}-yI_Qd9wWMbR-Pw)HI%=~Nh+Uu!Zr%u(a%f5ZPJ4}sG<<dw3<TX7edeNfstQgE?
ztrTYy=1{fsg|=!I#9(a<*3n-`T|`|>T@r((1j(?BusjAU2rH?pRPAcQniy2%U)xLk
z`WPII!7=(9Vz4m=n_{q8#qW*57V=i=Hsx=R!4C3H>MrH)j=>(XTuI6S;ZO2D>V6e-
zfN(Gdhm>=ea76Y9^$qmnF}O(c1ob5K6jjFjR}4;*&nV|?49=0yQ!h~E2Vo>wUYA(B
zOua(A8iQ*Dsl86P5rdnATh!as3%q`~OP0u2gnQKcG5DMCfclX7h$@kfWAKFhR5{OL
z@LchW7`!BF=Mjm2&ElIFyp6#-^7|M-7d!qBG5Dz3ej<FPeu=?X!Z+%7s$}~SgP-L6
zT>LmHPh3Jg9pV!bP!m!UQ4>@B>7xB6(;>MIZXG;2q|hOy4sCR3t3xUsQtMDrhe|r6
z(IKr4W!OrZq|+gn4!Lzmubd2oj5=gePG&+D9kLR#QL|HXP$f@J9r84Zjv<c@d1;oU
z=A#zZAwQu2^%rVEY9VT2Y7uHts-!BW!}ema^I1ZN6+GgVQnjUZ|Gpn7t3x^Em)D^J
z`MKJ2E9+2S)&5GTqC-{XRMVk4xdyc+wU(-_twSAhU1~il;zmc+K*jt<Xh>~DZLC8R
zLQ`rpsx)b?Lkn_C<+LKS)<y6CNI*Ls+Uqb*hw=0~P`l{Rk<f|SnJU4z@}a8^-E`=#
zoWX=1I`mXdFG6o>A07G<`l;IfIt<`64x}@P+EdNj5FLin8K&Zg6Gl)+>M%<AqjeZV
z9!vF?iq6jj9VW79(_xZ|l(YF{9j53om5!DAyQ-b0Lkw9*)l&_s)<`hvU?y0o={VXO
zd<Q3;+I4WKc&837vYbSu%BzD<hs8Q9(ZR1`=IIbn93+Hv2ooaIKd95GGpIAEv#64G
zHerqqbCvTt5#}pipu<ANiwN4rxs<$>x=e@VvU#g5d?n3Q)YUqyA!u)n*OJ#!*Xyu>
zu#qYw*`&i}#ajrzgxDrKkq$d_*hyzEbr*FvHO$>=j~p2iMQ7<xn)|5xsbbdR1Rm01
zv>s#hIIP1F9gga7OozX9c%Z{^9ZoR#nhqxk=T+NNguiq+O*lh6OFc)G{PITc0{J5K
z67{mGy`sZavTQsOEU)V<-q7Ku4!6j+MF~=SM=i@;<=oTZzGAuFd#J-B9a`(rMvuoj
zJkcS89vSs`s>3rK66#}ndCn$r^mrj#Ec<<_!z-GvRkk-eyw%|yi|?slb@-raKN3Fa
z@L4%u2-+LHZ{+XPA3FRbK=m#$amn$h@s*!Ik3?KkiS$TJGl?E)RBcj1GHP-?QYb&A
z9;wKwsXNsEl2(s&bkeIx={J)ene}K&CyO3g_0j+JtD{FYIwkcerAKx>a<G_Fk3y<#
zE<$c<9%^1{K5BkF3J`vw%9<)jkT;}-2}P7&RF7ih;>szZ$IE=t^-`M7ugWi@M_E0}
zu~;b+$}7Ku9u@Vdq(>Zi@{=lUg(XIyiXK%}WHmx{J!&YYCZQI!wm$ZqV_g>OQR`D1
zP$k=MdNd?AqBf>BQMCy(pc%P2wFR}Ms%=G(?Z2%a?eyrwVtZ<LY6ogZYA0%EY8Pr(
zs*Ir<p(Wp(_8|A9_R^!bKK7=lys7U?vmaGj_19wnd7yFz=`ol*ggTTuj5?e;f;y5q
ziYj@QG{RUt#_4fSkNbLz*JFYn2U$Cj>d?bUn54&K)oO|!Q^~(mr%_|5I;v#W>tWEt
z$f8LPtMbiySQJ;}QrlRx%M$T+v`Y`S9?SJuLEodtY=T#{@)7*hfF40YNY#c35k3CU
zW4azQSez+40^vm5=vJiNcGJ3>Lw~Lw^9WKqUylXkh15mV#ndI#rBsPrM$q!CByXXv
zqOPW{(PJ%P9d$i*164j>+bEm59RKy$Opp)kq$ruU>amS6!rS%OLEfpHU4-3w?9pQ{
z`A<Fe>mmE&J{Gm}_yH9!{vkQ|>v4q6DLwuo9Hkzk9@papL3%tXvll1!SbCb~Md}&q
zS?W1G&J!+BwMn={zD$)oR|r@2xTc)zgd5bG)LVMoR<(Bo$aj@fup9o?<AEOC4bkyD
z)Z>vJ`3)#wz+)BjN{=Vxr^<OocrM3(<-8<lw<TZe@kWogdc4!)y&jni$ZWs|JwECY
z*MN8ieA45y9$)qNrpFgOE+>rMr~RE1BKlpAA9}!mI0pRG$NDl|tN0;>z(0}k4M<=>
zY6H?3kkEicT!f^CXh33W5<_$cKgou2hhI1uW0D(?f*^~Wl8}m;C@In!kj{Yg24tWk
zsia5wIH_^sC}gB5c^=BMDC|NqWH%ryIh$%Cro3_(kdsa>syMj~$V1Lc%}3RCQmOsL
zfR1zu8c@i9!Uhy!v5f&m4Jc+nB?BrOAaA0J(=TU02?I(RP|ASP2F#PkN)3=ZGrO8%
zcf#mB^Rfms`}tFRZ9L^!tYCmwegfKnKjh2N^0BW0RSc+QKy3r68qi73Bl0_V22^7g
z!jeJmz}GOKrXiYB?ox`1U&nyllA&;Pv#D!9J=O}>H=uz5zZuYw8N_LBKqGQvY7^x*
zmGLN+kw|0<16nGll>x2ET1;Ezw=<x<;tpyRbW%=dLKkXRLv*|9MlKLHI?f&j^faKC
z0lf|ALw^ue)@)xwKWcyK0O~-hJP#nv2a|_Tr8tx@j5?euce6(sFxr58-;w`2#uzZx
zfSIc?Yc<9hFkbw*$Uheo447y@mp{<;4@@#(vH|72sNlsE1E$J~aH5VAzZ)>kfQwdK
zvLeO+ooq{H<T68VfWd&>M(i=dXn@H8qY)-!ba-Y1wi~d+0E+=u18fG^4cKJBW&<2*
z%+n2Ua?)G|xM_L}2pABQtwP242z~?PnGH!BVlhn3!h6LL75RsXk+2!Eqz23~V738s
z3|M8rYVLh=sVijrG+@2~3s{srXo&#}nP(B5#Z*}lQnggYEHhxaV%ZZ{k_9AY4S54q
zTCF9llZ}ud0b*`cwNjK3Zee%Zs9V*RBiW=%UONq_Z$twlcFFV_u*ZPCa#S%Qkr96y
zu+M;d2HZDbzX1mfIAg$B0}e9(Q3H+{aEN@^fFrVJ{pS<a;|82C;4d|*lLnk3YX=q?
zn80Z^(OR7|;5-9v8gM~20NLLSxN5*9mErRL&wq{nbpvj2xg?1;KiUl3GT^oWccjXI
zyDGy!U2DDnZNLKqJ{$1GfQJS=GT@~FujKe|z!NrkZopI3_8I3*8fy7PU#RiCHsFl`
z@8wW$z*`mnj-U-mTfmQWJ}Lj70e>~%haB+fe>31aK^q~A(KQ~=i1<dtF(NLDS~kg?
zfJH4*RQ$w7Br&3x5yg#2YD6+4vKx`Zh~!43Fe1GX8H~|&l+uXQMx-$!)qgUiRh*77
zT0+r`Mr1M~tE$aR$YT6=wq+#QXlet?X+$n58d1=Q+(zUvB0p>MQYB$N!hhFA0hO(g
ziYZKxghh-f%35J*BAaUoBT5=kn>&6fBT5@l*@$0_C}TufBPz0CIU~vwDyU`A7DqA&
z$g2`-rC5bf-G~}SR5hZS8i^KPleM)}ux5(ZVefURQmn^TGPd97bTy)z5e>;=HX<~p
zHZh{9@|zKw8_|N$lG@6M)<(1;cce;&wnns5+@8>ZDt~|_wVlYFjp#y<3mY-z)!m5U
zMvO3`hY>wl)ys&%gx*H<A@nt(zYzn-{fx1n8V_VqG7OR`UO5X3452@iI!wjL6~ag(
zMj0{Mh%q!nePY+tSQcZbGE3u(7|)p$o?yg8#gmMfOrB!IRBft_n5JsARVJ!aJ?aSt
zBfjz6WH!QL#B3wx7-2QS#@gvryAdvegX*NpvdFgNHp0WAWcC{2Ge#fQl7abEOu&es
z;t(NBjZpufYLhd=h?y)(=2@~G@~y{QBjy>gRQdCbSZKr|78h`vlwf&D@1l#1SfV1w
zWWX{bmK(9ch?Pd{q`!)~ow}O3#u$AzcrA4ubv<<hbt6>*HW{&*yoI`zx{cZ+ZZyLV
zWAuwT*EpD6%q){5L)t3`e<S`f;j{_+jM#6)1QRBjaKMOzMpQAOstJdTIBdibBaRxQ
z*Im*|`$+Vd5yy=vWr{i{j5uk;Ln9s;aY_;zamk3wMx54GbR3)~oH6385$BA!l_$D~
zYAapff)N-0|CVrt#s3*`)rf0GTsPu|5jUlw+H<wGw^b``aqg(vyGGnI;=U1oGvEPL
zVze-Abx6ODjrd{2Pu4!6J~iT*5zomlnC%1kCH0jNuL;uj4dJa3?+EXeFUdc0hCeCi
zvk_m&UzPKX@SQ3{f(da<NMS-sQ*>J5a!TV-r8YiIndAf}Bs3wB35iWeVnTBI5-&X_
zB};HJ)4xY-DW;+?0ci=TS)0a$0^AGInULOu3?^ixU)+RDCS*1tj|q8A$YMfP6LOl6
z%Y<xfo`ag5D#^93Mdg+IKc-Ykk7DMdnV(ufluK05gdzl4qC$kiYDtR{q+v0RM*>Qi
zQ1U-Zbh-;ltF~oKC~HDF7R#GZ(S%Cm3aYI%uWZ7vS^)2xMfmxt_|<53Frhl3h6yzZ
zwM?jOLLC#bb5E&Dvw;b}nNW{hpDGz-85^3=$b>c~v^AkI{U#<fC6ou65hP6BGd3r;
zpi0}8gjOcBCah#%?Nn`hf;3!IE4pWOG@+9TolWRsirsp<n$V3gW2oIt7-qt76MC4?
z(}Z3$2T-MXZxi~E`zog&p})#DQ2B#Q7)%~Q9jbg8iR2k!!YDc;soIkyqyNKW$>XRJ
zKb~O8ib*C+HX&?6#Dpm{gC>Mbm@2Eu6g?<SGr??vg;g=!RCFfjO)!v+CYT7aRmesq
zgAtHF1Jy=lHNnPOyXx0LaGKyExTzjh>m~S1@Dl=5?Y)nTS#s8B7hTvWn=sdec_vI}
z%nYgo%p}ZWr?aVZ)b=UElZNw6SYX0J6Be1U!Gw(_EM^m_T4%x%@>1$D<u50!psu8@
zqOLY!4Ph;Hllt6$z1qSz(U;8oP1sD{V!~Dvwkdy~3ELI#FkvTo7j-vv4|Ok9^89Iv
zzIPUocf_Ix=pUpWGU2cZN67NsXQ@4^S{*atIQfKfPMUCvtgWUq<hv%^GvTZW=U6;%
z!fh3QfpF1;OUk)y!WHsW<y<3NH{phIZklk5tj)X(>5dfXX#L(d;cpf{nef1bhvbjc
zM<%>5;iZhHFCLrlgsW0AJT>7N1D;dG(NeuK;k9xGCdM1`Tk1O#<m)*S`QC&Nbndb!
zjtuOx314V_HN`$b^v#6tCj6io*Nk{({3J^}%+ZOBV~)K-i_c;<s`v>A3C&1ENK8#)
zjy^G-)Qn_iBqvKTlNl+@NNGkY<)k+wwHay5NJ}T3^1sQqlKG=68O+G||7$ZdCX0&9
zYKGQIMv|Rf=b*|m<~Adb8Gl)D+Jd}h<deQENMk{MGYXh7(~MbW{9;BySuQhrm{G`#
z!e(@0^CD&xHOF2_O6Fqb=&r5Jd2usJm{HP<Qf8E9a8)zP5G1k+p{yC@lvCb}3gn8^
zO4Q1#_E*U)zr>g)_F1oLW>hz$2B&&}JSfPpnr758qqZ4!%&2QdeKQ)Ek+2JD*GKX$
zsAtAGd7e<N|E0DW8p_O=G5zOHH_w1K<jY@XG%;hceAh|7yDDGg<Yv&!jOJ#vVE&e7
zv{mD2MQBZJLzP{x9ict71GOVnhAoTS*^Dk`bfqK3Ze~>E?I~ed3q8%~#j4TN-e&Yw
zk$wI%!~M+YPhSqC1I!pGt47`ePz45?F+}lD!Z0(2D`$imBgvzv|Lk{T%ouCNI5WnZ
zF@edgW=teZQDc}SGeg$yEz6jv%BakkMpIJ75Oh?%taSNskZPn#(PW01Y*9|Te6VpO
zb~7Ao=rqG;hM(**!%dLBJZ5+mPsxD*Iij2(A!J5aITG^+c{+8*fBe~I%rRq~8SBlM
zYsNe?mZ{qLgauS>8(wI}A{G}@mr$4fCtx{w1$8BL6;;N(ny|)<waSrC=r)+K(TpUP
z==QM5jLl}8VeJ+(wwkfuj03Xo%U8h6*lETt@^;yM<ShVI9=hIb#vU{Fnenj&_L?CN
zU`y?v;v|Y?aZ2#P?1N?;GUJ#T$IUn_J0txgY$AM=38k&@2{R=BNsdIikPPy~)G0Y8
zsF9zRS>o<+R(2vY&YN+;jE81CGUK8dm&~|n#x1VO%Vu0P<C+;)Sd?v2whhtiEZ(4M
zhX^qRL~omMM>=9(4^*qWgnMS(C;Uy-Qpwaw!^dVkG2@dNpLxuAYQ`Hg-kR~ujOPq~
zq4pZ-;-wj{XbQh3NQQT2yf@>6%p@~N)jxZLHZUoEG2<(16It-hjPD#|LasiE`Jr<D
zGy|6Cvc$0<t_AVP@hwPT`G42*S{Kq#GRrHmCH9I)mMEzO$(U9+xdkc6DXFQHFW03~
zo7RGW1wjkaS&*Jp87wFuJz9{F#Z1)97Gxo0wIBz_BW<%;ke#Nm?0qtxoEGF_ZEk8F
zs`z;c`Q$9192s^&3ks<*7q*~?1syHuWI<62idj(0g4z}ox1fXtl`N=iK}q&i+JZ8K
zQfw<-%d4yf6<921L3s=00}IW!%P(SC@b>4=7#@~?wV(>y*0i9i1=Tp18r16a<s<b!
zfBvk==Krj<Iu_Kmpos-dEvRQfeMUC2M8C7pzyhzF0_aG5LxOZFy*DNc$f{{(L30+{
zS<u3QmgH9KS6g=yCbQJqf;OybOO-0|+gs4V68&z1e2+=G5T~;RT`U-H!2}DsTF}jc
zJ{I(~pt}V<Ea=6yJ*isnqSCxKohu2W8TyfjS}@Fl{^SAFfz(0N!PFsCtzQ}8a0|xK
z89|j)BP|$39!(uX9ZS{DQxYT1Ct5Jc0+R)13np7I#R7w@M>*^>@^`A%%QSKfRodz-
z&?}Zttp1k-Mip!!*r-;j9Diie>|}=pP77R|WXa>Tz)jynm1U7gA6aVs+_MBi7KANW
zVZllZBC<tUut>#Bw_u(H^I4ohooT@=!ffgs3+58!5<;GokZcQB6j&(p%&TZk7b|}W
zVJQc>%!1`CZsl5*R;w&nYr#4TR;&0m1R42y3pQA=+k!n7Y*e+|2%D&zsaq`As%qu)
z8p*lcf*s1)N!TS@4z~)a-D|;q3l7l#(}H~jc~nNK<aLn6qtrvx!_*_PYpBn`k6Cb>
zro^AH;H2VH7Wml984J$JzHCJ)E6!PP-hv+%{IuYL1s557*Mduy=oclfT5yeU*@7zs
zF_$L9b*`-2)EjJalYEOTTam2XJHj-DwRJ7yxo5$BSrPL5zpTffKOe|}g78QV5d<+G
zTkwSZR5{NG&#5n{FD-bbYF}IMhAclkBF*0^|Gfnt$RFhx&Tm<MvfwkFFVwHpZ&Ydc
z-4gvmhXAaxvz^3>IOMoi#Is_!{P~L&3o;_LT>M+nO-|GD{V!|uc$J8nnEEy&l3J0>
zisV+Lu%a+Cq_iTH6?v`EnMrL$8Y{9}W1kI3YehyYGBGS2HN6!X_>zYQvdClqjLgca
zsH3W~DM#M^=U_}uD{>KXTaky*mftRyY|=0v<Nqf=G-O2q841mTRurP2h#Oe>M6t_W
z#EPOSzL*uoIr0+L*aM(!|D~-cW5p~hW?NC#8a@5}YDE<*%Bfc6t*D^5BB2tsGF9TM
zT2W0JS~1Ov>Q>aSqPrD6SX<MIx>nR9*RrBEp$=8XFOLz{x1xa+ZLMf$#c%XmSn)j}
z8d}lFipEwnv7(k*mZl77MisNU$|Ky;idI&%rqhNhNu&#T$u&}YD>_)wg?>kC^opx9
zwG(w&LTInenb1|`>_(6sttVlaY&KT(vZA*YeXQtf#UT3qRQv!d`dg!)bf@8H2P$7X
zObwRW3>ZRls1@?wPzE-F#ZlCeRBaeC^3hg|p)-~`jyj$?fhx@>S}}<{Svgazm`d)*
zhq7YG4lA5i=*W5%Y2apHq?)K^s)cH$+NgG_912`&o0(ySTjlXs;guratoaCjYQTyh
zAw&&RBh){r)2Y(1a}vyCHhDro_Nh7KrB*DnVlH`}>T5n>ffWm_SVUgT{d5Vre&*Qc
z%4BAi)7ea2VZ};<_^Yf~t#}P#Ep;7ry%ie>8>yS9a;r@mZXpY7C2X@|yA?aE*lEQs
zD~?%loc?Yr4yedIguOCC!anMLs&=_}kSsY55e`$2P>*sql&TXd=8P35$)~7)DgQJ<
zKFT?(oO6WpR$Ney?4g&fxMD?D8@kzW)rxDZDr>`aD{jcK(T2D-+@yKeihG1xR@_z@
z?r5MkfcsYbZN+;lK3MU9=3@ptRPm1pvdugpJf%LPKDS1Xy7GEq#Y@Gn2(PVpLwKwF
zcZ5z^@KH_37b`w7k4(;Ig7orLIo}B1sXwgvNq{Z72DL|w;@J@2hU_-vupxmB30ake
znuwahhQtJElEj9jijxtN+hXrErL-Xxozym@u_3MP-*0)Rqc5XMPsl)(Y#D9HM9!=n
zSua^_$i`xb2P<inlf`^C<hLQ0ip*_89&%o)c7&0f1#Bp$Vt%oqAh{5=u=0x#ic%%N
zv?@+6VM9q3Q;JZUT81hYPUUPUZ$kweD%w!ph8pxM*`g;1NmAK{U+Gk#R;8~U>#Ese
zPcAiWsAWT28`{}W+lD%ftWT{=tw+@oO4|lD{AP=uSR2~V!iJWtZA5KsLlYaClAGDk
zoFK!Hw%S4o3$#*xYa7~-wc7T|?_@&<a!2LJ2acV|U6dm^yW7yihIkIdcc7;Yy=)k7
z!vq_8GiC_2kBaYWLqEm+2?MADse^17tZL;A&QKeMu{hj@Q8tXWVT27M)r`q#wb>YB
z!#IYGrT(*wQajOxNjBWFN7uq+8>Yxa+0n|5sj>=e_+Z0F8>ZP1W5XF6&f1`}L2tuM
z8)n&Hu))ZLJ{wE~N#eG_tk^=ZQf)TamG2-pZEz8^t6UG+OV#f7`)vr=5TqlSLj<{o
z7Y^GHQT`t`OjkUEAa8JH%T8p&AsY_UnQOyp8`hBLQRh<^*szcr$s!vT6PDPpf*@PY
zQo=Ioa@pi~PFcy~DitGFP%@siHtb}=b=37XY#?m3VG}`Ov}xaL!xlPQmA{R!-G&{?
ziQejzC+K7ol^a3SJvQtmi1R05pAGv72dD>Ctu{YLm@4|dOl|>@k5P}?aDs4>dWtGB
ze-Td0L5%N)&e?FD&V3s$sF;g#bmG;>CFNWuT#>T?XXBb0!*#+9ISUYO*>Ky2JLJ36
z|53HYlqI^yqP7|Q&72Qxcxb~T@?#s`5}r_>+VG6<Tuwmp4Kf>E$VST#`d`Xngdj`w
zn&unjykisb-xDPM6CsBkIqmpt!xtOA+VD-5k^91T8-CajR#$yLZAe02GJp`rj=0K+
zM~H7n0zyJ+B5Go)w9-C~PijXp<s>Jhpr*7VmGV>D@oSFgic3o;o$}M$kwI}rJ2ENG
zY)2MyR^?<PWT(oTmt1z_wxd3ad8kF~C`!m{M?Qjdm!D98`imU}35BSIsoH&mVs;d_
zM;}6#CME1BX-5^-mZDasN>yn)$|x>tM>%qNJ1P(=QY%rlx3OBnU+Kt(QI#Nhs@bET
z2voPD20^%{9ks}{sdbcJmr&0h{isF4q-_H`ep7iGicfA#ZKC|9b~IDmoX~<Q`%Y^+
z+SoDIj(K*pwWFOKBkUMyM|&0DlhDDAj)YFs&i2@Ak}ia<)NXckSAGwITxIpLqqiM>
z*s4EO#@yGAewxEQaR7NBb&!e~Y{wAALkYv|7*5c3|50{~w!>+U?yzI*7|SXX`yEG~
zX2*Cno(Y7Bc1$8nrcP0{QwhIQWy~@5*jvOpJM>Itpc<*#9TGFyLbXzDR9QMZ!9kTn
zjmr+V9Uc~gR4-K`eFQ%>K$YWX$R0f;$}3EW$Qmb1SN;sbOgm;NXEtFDRgN(8?O0&P
zCObCUvCxi1%)FMmn7WL*gu2xJ?=x4+>8zlxq^`1KH9<zZMn=LbnRUupZ^s738wt|;
z7CW}uaoCO{c5I`$-;M)>?RM<2V<&kRRaWJ0JN9J49u}pSy>|SmcppJ(#Xm@vH+qK%
z+JRL3qjp@QbIgw8cAOxewBwXL_QF77{<7mdec{t~oFSi8&N+fyCtM(0RQ@HxW$G0>
zt}0);zOML&9XH9p6pjw^Hu;XI9e3@x$KogIed-H4{w7H913Mm)A5kAG{|Vu#9nX~W
zoFLbGFA1-d|C;c|j<?ErXUBW;2jzUU$KL&u9zWahh5lFSH|lrl530ocB)}0}oH*3D
zj@S$d97yOuN+(h|k;oCf?40kw0tXU1ki>zc4kUA+mjk^WNbW!i2U<ALQsNy*<v=M1
zN;{C+fiw=}av-+@X&p%CKo$qGI*{HGU0IpfT?Pj-vM2)(Q#Lv2D6?|J%;rE2N9?AU
zolPW6{G7_n<3L^qig1Ma9LVoLA%+zY$AN<XX(Fv8zciOF3e(rN@S+YBbD%gglyIP=
zY9e9Ucr-2JKm`XXvbL-P<p|}eTINa)RCb`D1C1Q`)qyGw)ODbq167&18dY-20IG8V
zg=;ua(}7y7s_j6X|HNpW)_0(R1HY+-)dno8Ek$F-H+7&HhtY&8wap1yU;iw1D+ae?
zRci;@uqd@{)oizSpaZ!hwF@IVInY@}O6IN(bYro*13l#8pZw2wH0a|%Uk98HxE$yw
zo09{R9GL9D00#y#=QsxjIWX9P(GHApU<l3O4vcVMr~|{8Qx;HOGCX;Wq%%rQ!au%r
zH<oQBM$GXJOki=M${+zU2~!-H>VVz>18bv$bYL1|VjR%X{3oXdMhC18*c>o9U}k{j
zKVg!=&Y~n2c969(h`Jr{IpBA|Ltg^CoKG!tz=7!w%y1y+K*)jcKY0idE~A!KQq6Q=
zmIHGfn5&k3His=$(WQukc`9COve1D=4jgyj1hXxsZlf-7U@1Y`E^}bH11nfu>A)7{
zuX13u;x!Jebwt0+xQ;5Yp0I(s(Sc3M-%OBu-CI@L%vrGAfgKL)bYPbQhtvkPn*lQH
zJ%qgu{OQ0x2lhK~z=4AfXlGkZ<%X3ERnx;N^AW;P>M^REQ%=fphL`d09XRE{Uk;ph
z;EV&e9JuYkSqIKB@~Q*p374pn{DK1)$#Rg-#VzeJi&tdl<yH4J7Oy*SgK*Ok`}xH`
zzuR-ifoBdpms$qgrQV~;_mA!q{&wI2;UV=AReFEyz!Sw!3EG>)7Y@8u{!0g5ku&la
z8sCuLI`B^RrUcQ!XjezF_CK)dBlVL5p9x<$^Iy5md?SCS|HFZwG~q-7XLKKtR~$lI
zYCI?6D__=ELOBIEk(f?0<tHH|b;cgFlPf=ke9MOWoh)N&Co(vZ(HUKpX{c$b>6}PU
zkbbqhBAJ}X;Y3a+GCPsQiL9*6PL;OV*o%O?B)MoVC-ORx&xzbl<Z;HX7p*G469w3?
zk~R`2%BtoC=@)XMu*zJ7P?TDXTHJ{egp$-!)Y4Sxw+un9?aL{rJfVUU6_q2ysI2%`
zC#oo}N~q>Ub>-A>qNd_n1i2!u>qI>#invkKjrvYBaH6gY^<2@V{>_O#PV{x6A%hz^
z(U{PL+RKTiPBbGor?z!Q|K^~D6D?Vk46U4K?Tr30y}a5uv8YRw+p)I26CDU0o#^63
zS8^vOIuo?JvXY^j6Fum3r^>?0v8X3mKmuf)_GVG`%6^1JPAn$$rw(vppc8|f80^Fl
zCx$sO+=-!FS<+nF9we>gkt^yEPK<P7loO+!2s#mRVvG}Gxv}}E<D9S&#yc^=iHT$#
zbrMzbOeRcmVk+Tx>NIMM=5XYCvVm%(N?Q}bOtm;+C1_ik-3f=<+9lG-Di_u5gohx$
zS2ghy0?L=i(ZfzeoLH!wKL`t`)18>X<TE*GvsBD%!W<{&66Ps?K0%u|O=Wc~abhW(
z*K%PQ;eitmomlR~3Kmy7am<P1PONfbwG(TcSnI?#C$>AWPIgjx+K0N{i4BB}vVqCR
zn*7G1fCOxIVv7@7SvyreXQ#QtiJeXypeZrCoY?Ke9w)Ts;_P+ePbc;<K$=Udhw?xv
zivkjG(1}AV9(Lj=;Rsc#q<3M_6I_J<IdRvCljKvHBkuy7IPJt4C(bJ8suSlFpLgPd
z;){e!)XPp>QNGOKHO1GRxS{x_6Sv5>m2-z6-&MJ%9BuQsFN35b_i*I?%p>wkCtf-6
z*oh}BK6T=m6VK)7!86W$*}r&{d!d}yPP~yrs0*1~c<aPFCsOcG@ZO0JP9!CNbmEf}
z3CXeteP-r3EPf$>rGBG+cj5=(CspF%iaqnjWfK`mJQw1V`^rba%1lH^OiiLpX)dp1
zEGBowo;Srw=|U=+si|qG;-_^X9XY*nG7zNG%r0cn*oCYvWOJdA3x!?Ct|D`}kVA1!
zSL}>Q&fGNfxR95SPsQYSp@8CFTqsDECDNw4hzq4vZBZABk&9DHP)oW{%7x4|FsWMf
z2FPTtpfWC$RjtaoP@Y^tIdZvDNpWQtew7Jvp{fhjT&Su1>ICg)oobL}Jlc?ItC%_j
z*?;T1(7=U`E_9;vn+t7R(c^7H7aGxN>_Su3s)-BQ2PHBm&1g2KwxG78wsN60L1MJ6
zv@MJ6sO_m8sM1Sk7rMA`+J!SNbakN{{i!Z=ccF(1!&#I(JqZI`=*6-1R(>B>^cdck
z#eOdISH4`d43slkN(^#EAB&ae4F*d#`Hg7mP#1;~<Qh!O5o|S*I*K})I)*B}k0p$A
zVZ3rC5GJ}Xi7;9DQwZ8e|G&F1&4m~jbS~)WpK`%KkOkL{pGFo<RI>{f7pyMWSe)&`
z9D>~ihYL;@TrRj>h|rW#d0g<j5Ma^kg3lGb?;)Q%YuA}U7s4)_N)kO?hFp+G+Dggy
z3;3AaA8az+g&8i)B+qh1pK91%EE+5?8UI`t=DD!mg$*vuXUr1n0;<F;bm3<zEOKEn
z9q?<~OXU>6;&K;Os>l_DABnKah1D*sVR3?7_Pa1jJ_Vpk!fuJ9y>Ddgb{BTIu!+3c
zg)M}wvZ?S6s)TK$BjeoZ!Y&sMx^T#a-87|kpG<`dds+Nb0{BZ}2?|DkJbXV*8TkQM
z^j{cc*oR#>;=)P#M^%R7E*z79V$lh_B{wlr;RNFo#l?xV(Q*F8NLi1<XI(hwLP9qZ
zxpCfw3od+S?L`+Z5$;kiyKsweg?g1L&9Av|oqWTEn=Z%~=pM;AE`98}xb4Cnsbzpv
z$xE8tbK$-Vf75(P74re%A@z|9j|opy?Nb+?k)KmvQ00l`SA+3N#k?lGp}wWQbK$+J
z{ouk!#h<vbNvB_w^Of+;h40GwLHJ39J38z*)VOZMBZw2<jRcCdV?|;XGrN&Q`AOYK
zMovymK}|_bMNLgjLzSFq3F+KOPsl*cNX<l*810d^EG%ZFW^*GuAqO=lH5WCv8+izM
zslT|9k05#S6AHLvzso63K{|z~h262w&J}Z`xEm`ySmlY%LkTxJyV1psl5Uh@WN9~Q
z5u~;Zp)9qW8|4WVs1>OaQ;AU7jb8~>s8y-esMV=8s1jdO@+6AxKDFu8aigvq^~fz$
zOnpKFH+~~Dq&A{9rZ%BAr8c8V=H~9$TW2km(~8iV+QyBxgm$X7y&E0K9jTqDvTsVN
zu5NU5!_O(|?nVzcuDfx=jh=4wa>L<<lfk{+80E%javwMP5~O)QLVq^~5C$rLkQ;*)
z4{>9t;$ej0Zj4aQNcX?L0X~N2L^sB&+Hr*O)Cum`U*wa1C%G}%jVW$SRgqT0?`}*}
zPK+BmvR*j`H;jr+ZkQEY+_B%|u+gzooAD<CTyD7C*yqN6H#}~5-PpidpG=w?Ysmp>
zL{^F$L2`&1rpjowL)LUR7Aa>2VJ3B!8?y;>RP9_h=8@-97f=^cwbPvBT<pdYI>Jlc
zSVmq>T|r$*T}53@T|+Iz$2ixKrR{om^fyuj<h9X_O>S&vmHbxQ78SFVu#LK%x`VpY
zja`J@RLQW%jlJYQsqzq-m<QZAC`V~GF1T?>MgHZ+Ve%2>93>p19;cq5o^<0BK~iaV
zgif<~MvgXeB5>mzi`x3S=*A@$FH=_}jQzbwX?w+ut2D1stz7DxZrpNXkOzZ3xb4Or
zH%fa@Ms^1`?z)l6gVY|}bK|}n@7#FLhJU;9h#)y1xbaZ2_Va*`-FTv$r-Wy2JSV(R
z{!79uH(o2}4dE?yR!V$OemoC8D*oigXT@J+izR<k&UeBOH-0Jy9>n2(9hbU>t60Vy
z--85ngcA}HQ4@QRMEOYx$vjA|oD?3UR4nh`(~xs{klTZ_%1`G(dU6J8MrtNio7sab
zin9{3d61ougPM~%g5%6XE<lxW<|X8#=BH{K?Jwkl9uy)J_C$ZuN8*ckP?U~vF+y<<
zN)Spazmy02d8t;GPD>A3c~H)S@+?;HpedoE2bDaiOs+$foWFWdMR8RRs*$TxYbd`a
zp_T`=36mPd?qzj7s7I$hwE<Of{zho%K_lffCN%LtyH1msW*#)B*+Rw0ZPnHuwDF)X
zowmyF<v}~e?Fk*I9X;qo=&WkHc+i#HO*!2OJv``1n8GRTP3}XTqmCH;Jm^nn098gf
z(1WCmAL7AKntBh05k^smtH=?AksfG23ptv_F&>QdV4RAXpAh586Q~oFKZ!7zI)ysb
zgWn0$s4-L>)y(l2$VLxL9+=4vs*Ks<ft75d+Ns+8YA4y{f!hO*2VM_+bflFzL+n33
zXctl91Uv|O5Mn^sgXtd3@F2qCAF7oE&m=FS&Z5qy&hcQb2lG6bFNYvG!gFI@;K4!`
zWy97cYLO@UyXX=iuO+NnssffX&kE{LF7;{;)_4%#iv(V*^<bS;d2rW*^&V_s*k9C*
z)SVt|B5bB^p~`Y?^<bOg?Svgv`C8U44|aR7$Ai6ej!^%k9-{7(y^L^xD%lQtV(;r7
zR!-8wIO@SM7LQX;NKUnlo%G<8ij-sQY4RBl&Jxa1uXu1?#a!^<BKeYXE)(RjkgJ4i
z)axGH@Zcu-HdV%U%M*P!Cm^poH02SOdmh~P;0KF;Q(t-T+JgrkJoMm^YWtM%*n=ko
z?Q|e{o_X+`&I{^Gs`j5dQu~I*&mO!byrYW$p724A|H}D9NR$X)2w$n+sNboB`J?yJ
z_NNE%#x6x1FXEEpDM#+aCL|~KA_XB4H8C{_H7PY2RURTu=|w7XA!=%BW@;KQ(h{WK
zbcFO?Wbh)R_usn~nY{RCHnK1#s~6e4$nHfB7V~(K*NdFwTvW-Ho3JS%@+s#RLVjui
zZ}j_9@`as(Ebid<2c=bE7K?aM)Qe(X6lbxl7v%^gyeR3#Uq64A@}e}IGE}*&(%!90
z2JLE1_S1@9RPthb2s=Wk?8UEM*!^($QN@d@UexlTwhz^07+wtZVwe{-yr}8L049_?
zwY;dWxV9H{$aSgplrMcX@ZvWwTDCw#n!UYf<V9mInt0KaPA6(JFWL~Ad(lGT$*rla
zq*Fd^D4!h3Gbb9i^`e~@?HSO)i;e^dkb%idptBcUyy!|_oE~0u(_)k(F+COcQeE`%
zqOTYIywQ6p{Z*~7EQs6`8mOE>UJND=@v65fEil}R5ndei;+PjBy%^<%!waVuqZv8I
zi?IaBHjZGVj`v~$VIn)7LZ0NsWP)@m@l(maQ>S?mL(q9)An2(@xZtv+(|FUv<c$v4
zOtnz0Uf2kBs+QU1h1-kG?ApUTl3{}vUN3xJ_`L`)c(oTn+2Flc%9t?C*<Q@?A|f;3
z#dI%bcrnw9SqzZ5)$+^A63{lextyy7UM%!to)`1ksZ>>|9-Zw)UM%)v2{X$W#Fv*g
z^8(A5cDWZTyjaPYRctQF<?{#$kS1%Ge=Q@$U&ny;EJ~h@giTZ}zvvb(w$j-qJAxNG
zRP6yTb}HUQ*zLt0!d~V7>BT<9`w7y^LBb*GVd@d8^d+^&y*ME|nh#ZcIO)YHR^|2K
zFOK}17vH@&P4kQwXT3P*#d$9tdhy7M3tn9G;vQ=+d2!i`+g{vZ@roC>)Vy8w;u_8C
z)Em^BRBa5}tjb{i=fz#M3bd6a=6yPUd+~rn5=Y|Y_1KFiO!ATX)QeYMye2=RKKJ5<
z7ca?L6Y1^^lf3uhgBNeTc&BQky>mjOUkyHa@tL(>xFBCuq@<F7AKvJ9a5DLj*@vHA
zz!xpX@gcqs3CMA&@qDpQ0VVVykq;SYO7p~oWWH#sB-Er-dAF6ERVk<`ReUPeruHEX
zowU?+)bvzoC<Dky7LZ~VUv!po`;f<ntUhF825m93lXFmWQgivxOD(t-BW?5fkl%*_
zKK$ZCC5Fjp3lhruP{@bEJ{0kxD4kMN*}01OP@G(XT9Vo&RqVYZxkf7Oi+)wG3{{Hd
z7*L)n`701A`u_b?qB0%r0=TLVHB@9ZLUkFQJnLHsHCfc2D68W`T_1M)u*ZjbKGgSN
zylT~e(3|?34-I{2L~cx#f3a!eLsK7`F>NPmb01px(2^{Db?~7TxwUfI_|R5yJ3@O-
zz65t<Q6^JZUY&jDLZ_>W@8&~y#XSf;WnB=oRx&4jeCX>#KiQTz$gw_*^I-sE2Kq3F
z=3pO&`7qpvAuP(Z^iWwf>{M=vkMKorjF0wVqz|JQ;N<^c%29EQFZv5(iIT>i(Hiqu
zEnQEL739Mt277(*5hhcoP^bFvJ7F3%#uxn(w~nf(8mLAeOg@;&4yuG%e6W&jRJ-yQ
zB!pA3i{Peus8Z|qA;9jo`Vb^UWU2`vAHsys+>)pJFvExCKCJLzrVq1xSi;)bKFsl9
zA$hJ3^9ZuM^9eHB3kY(BtnCPkSX``XHFGJ8%ea=MiM&?Q+2q42!fNUo>RReL>U!!1
z>PD)TP%><0am#<qZ9Z&gaR+rLRU&s0<f?M74}bdbn?HIO+2_N4`YHW5;KM;5?)&h!
z4~Kj>EIzA__;A#ROFmro;TRoh_`X5(KyloM6LJdh;glTweK_aCc^^*ua7I*qRwYsN
z%Z&2tyK*n<tjwxB`y`M3`0zk($jJYH`Jw>==MzR#UGd?n57(GqiqeH_`M>0h!gU{R
z_;AyQTRz<W&+Oe{a4q%ANOxJRDjxy(ASw+X(0T5|3)vFLkEoBS67a-_r{rg{S@HxS
z=1V%s{Yc@*EBdeLyiu**`tZ(&_da}3P6AHmM;|`<@Y#ni^g;8hiuvZlck&PA{FF5%
z&)3N*fRS;j@u)J4_<oG#Zk13uiTp@RPC`veO{Qw)XsOMcwAD6`RDPuPBaI(v{Yd9W
zEk>sIBZD6`$r=5~<VP7l%KDMnk1T!^@Z%Rhva&XtAK9hIYnU8#@>6qCrI%cO<R<5#
z=B4JN{_~pv+DHoeQNoXseiUMDVQLX-QED-2ajLcyTEkL)l%^?f#I*Nf<yfrlM>4MB
z@_tmHQ_&CY4Rs|yD*L1VOeZ7!Ro(^oQPq!XjFC-6%zy5R)S#Jfcyt-H?rQr{hh|+a
zcs)PrvnWH7fCh>i`q9Xb#(p%R)60*hel+u=HH*?kb3a;=TPR0cs8%crw;{Auwe1M)
zsU7_2sQgZTbS8IEPFH{QTPoeC-KjnN=*e2~wXdu6_M?v<eQEZSt%%T{I>3*Cehl(s
zupguR7)^7CKYBZEgiIQX!>F<p!~Kw(Cjuks$d@2wUzW%*jF+1mQYGi^ahxle!|{Gh
z@MEGMll++MM~ojjKc>hW@?pZ?{g|pU%kvo1$lBc-y&rWm!r+HdHqO-1f3KEhG5KL-
zjIh}ci$D4m_?aoADlZ!&WdKe;Tz<R@;C%pYKRl8ufO-LV+4hhhhyC#R;rAoJanAB%
zwjV)1LVkqRc&7Ui@#7B`<zhfvSu?bvbn1^@CTTmu9GaW`m`j-F$9z8)__5HBb#xX{
zSNO5gkHvm0VR5M+%lueQmi<&-GV*^uBUnX$4Ry62Kltu%EsGK(pFXeWik2oD{MhKn
zCRWK=xMHK|Et)NUY^9?Odz&BIS(Nx4e(Y4di?G{|J<8cDQ>u6$VZWRO2nVU!IFI;o
z)Q?AgJf?ZfkCT3!^5Zy*(#r{d>{;(GI=85&sb{EX{W#~xc|R`ramA0Teq8k9l1w;v
zE6E@r(|egKNOrVqtP=l*AJ=JW0TOeQ2_@z>;SN<I|L4bDKkl)3pZb9Mw;G$oJXC3)
z`0<prRRVZMc;UxOKc15%Qu4nde^JhB!W%!{%Eso$dp|z-@tNjF)x{@*3{@Mg24DU7
z=Erwgt#W`3AZq|W{XihPycq+C6F}SmQUs7PfOrAK55%5^WB?M7fMEg&14u+pOie;f
zN=-(UnB)QUPZe#IDuC1hWT2l$)utz;4PbX7q$3MRu=b;@nq~?hvx=9&OF*^&D$&Uv
zKn_AqY94AXYHq5w$aw?E$722f3J`t?plATa$OWl|sD%S4LeR!6BPkw0X*wmSC8?#T
zQY&F)0w~L3xd19Czr0%NiptTxN?AF8UzH<cs~SMHKy;_89zYF(%&-(|22kri#o7VX
zVJoSUR`mmD5P&lPR{*~S&@g~;0gMlzQ2>nt=*)&qs1o0f&@_N%%4r@zivU^%&`LRN
z0%)yPu{3E*zY5Rt?E~n*s*W@}ktIeOr$Cngx(3jVwcP_4%77jL^bDX^0KMrC3ZM_6
zpG->teaW&Q(p+>v00Zf0MaeAYVC4)UXx$AX52ua@V5Eu}MHn5x7{XX;ZvI`A<eb2w
zF@T8yOd?MXU|Ik%0Zd_0x|>S)JrH}0)diprz(7+Qm8gtCdkLEYFsoV%!5V;#U{}5)
zfJoBlGP(os1aMLL-T?NpBVPdi00PS26+ke6Pyk_R7{KZP)<{?Y(*u|vz=8l~1TZsz
zxhj4ZVRiu8XOYs;9NA%c`kTip?Oyc402T$XJb)DeEDm5v080Z{CM(Dj`!4B1!sr#R
zoH0cuiM&<@uuAokQ-z7YHh@h5Yz|;u0P7jBA%Km97d$(J_=(t-0JhTH5x_RW_5dW0
zc6U+ca34F`$*K{Fv6~?I_YfrD&j9uXuwVIy2?qi=NH|2*wx1&b9A)vCT6b>w7kD}6
z%JH9il6s2zR{*C8XQ*eX=cwnY7pT&<a}rz%;4(8`3E)-$w*$Buz_kFb2XKSFj8n#Z
zQ}rv40LcO24yzso@K}KR!d*J|sQ0OVQ>E<#!oxu9rv^^~cuMD`9RCTjjM`#8XYoZK
z_Dc=Y_Ei9{0|3|88`i!JL?0)UXXicy@G*c5L2L}-Qvja>um|A?Mo0Tajz2+E3F2!2
z-vao~h6o}~5I@L2sS+tm7dMD_K@<+6ND%RZNDxGJCP^4Xq9D=-ks*l0bW#OlPqj&c
zNJ>XCBnu)rIR!N(Ri;QXrw$?wi)n*M7mWS;_035jFKH;Rj6q~!K&D{ybdZ^>O?Xyv
zw*NReg2)*}t{`#;V=wCR1d&%722qe<`GUw#kj!$qUR{0#f}P6W+-QzyAz3JHmPHv^
zOvOv5#e*mjM9CmZaWLhBC{2)ol_iu3Mpu(Wic^k`6e|Q#F^EbmR#v9?5+hnQh-yJ}
z4x$S?s!r_~M2#S7l4}LghOKG`Q74GHLDUPPSrE--8G~pLM57=YGxE0}8WJR}EQmHs
zP3Sb`deIzBC7?wRtynAE@;?n*b1B4>SKDCpQ^I!C_KfKeM9VJG-~5r<PHK6Dy9O~Z
zh(SSgV_0{UxknH^gXkrTkO;kl=u5v3Rr_7venIpPVgMaY$Fl3eK@16EQV^3_HI%9?
z+A#9)AVv_R_mM%2B9Eqy;f#%?j-!sJPM}Vt%KXbzOi>G~W5cP`--DP&h@nb;Iil*x
z(#jBokr_->Gu5JUS_!rw#-xnCoI$vPm>tBNAl%FlR5?9Cc!Tf-;inT&zP5~_Av)n8
zA~Hy_m|E?07H0%;FCk`<X9c700_0Koxh$>@Voeb9$n&YP6blFogIJ`T#X&3~FICR6
zAeJj$5yVQxs|fNb-dch-49U5U#r0~(-xS2=Aif3hJ%}wqYz^Wi1GWXRop6G>BZz%L
z>?iN!jO_|yH;a3yd#RHDPlDFnfgldCc#taVA~!dc!z>=59u49cLE0WC$QkWq5U0q0
z1#v5g+d-TT;tZX$)EhyZ3*vkb7lODL#FZef(!WH#OqFlnNKQ?!(Ya3Dmhj(a2yfES
zzNK<UIEcH!e?PU<{Ch#%590429t80)h(|#@R;^?WO3V{gl<ws9l*MO3JSV)MiZ7@2
zS3$fE;tidT%6}WgJMw$#+&=gajD0%pQxKnn_!5l%$oW^+{<9wCd7&Rc{FH-y2t`9c
z2ysG4972*%bgAQpkboc@FNFAH?MRYP`H7U7G=ya2U#MCa$wNq?B2$Ktikv!xG=#Jv
zWGAExA$<rLRAd%HMrtN%W~!DmYY5p`)JBqnoRgX>gxn$IA<LMx_`D(Hqm!Rnfcnqz
zupo<tLMTk|^AJ}ogyJD=2w`IgB|<0}LMVhV14@NZC4{OWln$Xx2xUXjr++K5N_s3u
zC{L|GmA9*v2$iY7Qvd0_S_qC1oFP=FFBxitP&0&DA=IWbB7~74)Cr+3i}gb2M3A5L
zs~<vx5Pl0qf8wuU2(1W>LTF5ALTw&GQ-Z`aBdn2A0HGyS?)6Dk>k!(o*fxX?1Tou%
z&|a|?){#Xq<H$8q2wg(x8bY@ax`)u8ruaPwy{SDz=%xI2rO}7nm)eh-T5dDS?V1n<
zhA>D)4kZkx4hi7~V}`LfT*YYTZkfhWYTibNFeZetA&d)QJjZDcVL}KKL(s7}iTXQL
zmTod(N(fU4t2qziPh&BLnpLiX<Tv+1Ft8|WB$%jM<>o)Zs%mW^*cD5Ri(?C@5xPV0
z$Ts7HHw0e@{!sLOpuA2`i-J6kDCgW@D0)1Pmk1HnYIz8MD4tH3L7f@GEW&K+9O~Q<
z=7ply81t!1s0*kILs&$R+QkIfJC+ibsiIW9`uTH32rHRwRS2s?SVNXAb6p5)$#N@O
zitEYR_XswTx2nj^A#5RQJK(ne@Xio+$r6PzJ&fHU?2)w=#@I0ShVZ9sOJQ^mN0aXh
z;epDwpKySBFoZ)P91h_~2uDM>5W+?J$EYVmI8Hc0l~aJEIu*iSA)KZo#d9H?3E?b@
zawAK--*sNqY6HF$!nF{thj3Z>S3<Z-mRnnrL|!*SxE;bBnm4JpWJ}|-G|>P$_d~cF
z!acH7b?5c%-z;kUP>voUJf>49jKX0&3E^o7&q8=kGcjl5MF?M6l*}(fctw6qeWU!h
zgm={U)DP5;A$%f8+s`3<A!|$Vjr^VZL&f}*vj97l_&9{P)OcaUSAK#p5|R^9wK+@@
zMp71&g^_`foSK4~lA4N|nwo|xy`&|i3nRU9<hiMg<V@7eVPqj>4I?ih8#OyM2Q?>E
zvgIP=rsko_W{^+S<`1KQ;$Oljr~;&+yo!WTEsW}66b+*otBQwFHjHxQ65;5cRgzpP
zjM8D0A<H(S9nZCmM`Fr{Q6Y?qVN_xhajFn1hw&>xK5`OMURA@<@7oI02%{#mwGN|J
z7`4M_8b&iZb=ag{IQj#vb*Xa0xqdi$O(+c;u=Y1<Luw;xV``Id>>HEjOeM=GLv2Bp
zwk^YG#V{>Z8x_+wjCSPq)DF~+)K1jS)Gk!X*){y{lW#r37#zlsFnX%mUWDG%K4J6?
zqhA>PRjrIiMlyiKfz&~=Uetez4Gm+2iX285&Lxsg<ux*lQL1({L9&e_*s0^gm_V2q
zhK?|a%PT!jCQJ!qs&alOOba81pbbpVRtBn(D*c)W<}fS-E7hiI<>Lbf*{K{?7;eR$
zFuY`67=A(^jIgQ=5<;?nWr!YUA}szT4_wLLK9aA6aXpNgVa#H2b{I>;SVo>holBi3
z+X-O-RZ=Y^ETS%^E}?20?eZ`VhH)s26*N~;S5a4ov4*fVjGY9@wl0kI<PFq~%HI^m
z<}kK|u~m-b39+62HfnR;QQSdaGE~fnUG#TT_fW;(8^)iC_YwAoae(k6W$dx{FpGat
zk5G?NkA-oZaDpn?P7+S3ZRT_sXTmtEYOjQGE{yXmUQjX8>S7p|XkJ#4vN4E%l{=ll
zjWBM?LFtdEc`J<DVKj`OQ3Q7w|2B+w0_3~gmhO@7hw*n956Ca652=#mQ5cUEKMCV0
z`5E=O@?Q|-z1S<|ye7N}$KJ|&AI66;(ngRjf{$T*3gc%Oh~Tq|m!<fk_$%QX^?MjU
z{_(lt#fd~0P5Z_~Tyne!;zy7mf`lweZQ=+LDb}{4BoQQ~lZ={N)ute%j35;uwer(M
zVvn5ZBghaznFz|VO0s2CF_|LB96^>y^eB;)S|oyO5oC`b2aEZrQk#>ID}vn0$wSCX
zm1WOQD4^A9Do+7LP>5WZ8ebimi$+k4PH}1pYDuc}Rf<rW`l3qgT$PKUJcnH&g31y6
z8bL)CD^X>4kWbBI-l{}UpH9^Xszp$pEPh==jR<NIYAL^V1a%Z^KVx2xML9$?Q2uX`
z=;wDbZ;c~p62XiJW=7C7f@Tr)k6=Iq%^BG$g4PkVAh)E-vdHrcZ6atJLDvYnMbM6Z
zXGs`Ad$QbS><~dmawn=xrkwOe<)y898Gm<H_2WA25kXH*POk`hN6?2=64O^T7nUP{
zG#`@z10xtje@X;{31cD{OBfQtP{J@Z^TQ(;K^{pRrTo$CR~APykBeYDTS-y6m_VK=
zsaQLS#mSNAH@M~f?^J0R!L$fsm|=PZx=3`P91%Dp(5pNKc4UmeL@=v<EfHABHs#m}
zJK2{j61|>ZBA)^<k0%1JZ0f1uV@%5y@N*b}Nc5qmAT>k{Q^kzPU=$zcjL8DdiePpG
zFC%yr!5n6u7s31p=90BFvLJ$m5v+}1T?C8hOT)zk`N&{N1WU=wB3Pwrmq)N7f|Xo+
z36__ZYIOu_7^8jmD*pNio~TwEBG^dY6v5^QwnVU1j)baqTLcFpI2gfpIy)lR8Nn{{
z|55cFP*W6L(?!l%a!^o^oFpTHB8Y+sL`k9oA_$U9C@Kg_5Cg_%bKcq6oqY_bm;<P&
zARvlJFoR+M%!ml`SJ%+*=YP(eI@Pyt-@cuDdS+)|FToonc+G0^O^G*4uvWo!?6lgw
z`}Z2mk-vK-zEgq^OR%*B>r3!%3EnHg`z83G1e=s<LkTuoYfBoQu&~)mwv?D(K+^~>
zl8+?+v;;d!@No&YDfmeVwu|_CT57%w>@2}92|pL^F2QH2B4$B_N4lEc@<j>0<V;oD
zNcaXCKhH?=we-I!!JZQAEy1@6?h}3|Wap&X_u?c!u>boBdHy5ee&GS(L1oG$zn0)P
zN$LmidkOw1L7f2V2JmMI4zY|SfEFfd{w1};>TG|rN~hw8?WO;S94)~y>HI6C4}5R1
zjFMLfprT0G0LqD!w`NVzSj+&b22d@4%92+R{_p;%x`H)@HH7r1RsgjF|MyKN?qlmI
z>Lej;vL^j5*C2p~5;h8)SR?$g+(g2r0W=Gsc>paGJU@VwrPeWkP63<}FoTZPS_X`@
zRso!9?VlDv>j2s)c)GRRR>5|{_QDQAzjbJ*a{xUgp$}aG=t>J(Cb~)3J%BSrsL3Qf
z1Lze%Z%NJyU|;}!0_Yn+KdW=5NPi(aIXxU8KI$wC5;-@3>#oGv0i2`YwuYvY3>IHn
zA438d8o+rhn#wpV0KV5mUQ*7ygmXav!vh$hqKye)YycMqa8bbg-8^T%ivzeMV5Y%K
zW$p3+Mg}k{V4f>orb-(v`E}X@5U==8aGW?j8LwI;@mp$Q09OUDD~jDwTphqQ0UQnB
zn3N|4-~~_&V6uW!gx3nEvWx*t3t)Nx(EwrrTpz%U02T(YND4EB3xqcWFiV7)&JJLX
z<#Pj=XZei*+!Vmg0o)P*=iXa|Bz!1IoUh<*{1<qUl0`;HYj-I5ovbdAqxH?AaJTr9
z0PYE3v9-^_-W$MDmR*u%>H`moFBh%|;JyG>25^4>57<<d8kx4^*Uxx%ME;QEt8DDU
z0X!o9sFge>^0@E`VMzd+?Q^l9B%uJpB3wrz0kfL$iU*JgzzHB1KvJ=3c8ma0;(kxg
zTF#)~cJ$4)qaYtZ!M3bF&zA=9q>}8n37-n!Y4K+Q_+DhS@Yw*K3*dQi+I%;FH5}#v
zycobs0j!t&WgGjd$SXqMjn`C}uM6J@;7yUWLJqWbB5w)b4&WV;0UCgQx!w!leOcQe
z+@%t24B!I=>CYyS%>ir?`OwO@2Jn&P9|y24fKLM0&R)bH{7U|*c-=}yvQv_2_Pl*}
z0H0Y8KNtBTfG<V95>90Y3xN1d0DDCC3cnS8C)_8b4vYCi06!{=pM-wVhzAs8DGmnk
zv-mFo{2IV-;(u`3=PF=z{8Wb&JR<x{cvyAvw>WkF5ur`i|Gxno4`4?GJ0n04WrBD#
zY&vb(Aj$=?JcJb?ln<gp5T69GJ&1}yR0<*+gcC&NpwVm|M2jG*1W{GNYQma9R1cbY
zvWAevZ|ho$tsO+2AnJ<O3!;7y4T3mHL4O5lC{E+ef@oxU;~<(?-c*FIsrYO9$qEL8
z2nBIU5G@sK6+}r8fgnz`sZI-`HT?<V^dQ;>F*b;CL9`2^eGq2_F))Y@L39kFXAr%D
z=p@g(3p)qVC5Wy;vlw*~`XwS#az+q6q(;t*!rnpj38KFhQo^gRg8hW7jWb0kA7CYe
zf;c;f3xXIf$vHus8^jRt!7PY|E%k>6F)WDlB|lH-=Su}Y_Yo3a9K<Ce7YZ-3nwJJK
zGKet>juKuWq~*&*Mhh=jjuiSfX`Fm~5EFv9BZxbLxH5=|LCgwbb`Vzuadi;a1u;!&
zuL)vu5L1Gfq`IO7HYKlX6+6{dAPv&&^dPQR1I-L#h7|mQ_&MGn2{n74ia9~d4dRv{
zZk2EIg19M&o2780(60yIERomzAZ`odc58NlwdT8I^n+L!#7fB*1#x!}_Xe>vh{ZuH
z3F02BPiOq=f5w*uu_B23I7Xzy()kY4rmu5<5D%!N4+img5Kjd0kld!isvsT?;t`HD
zRvLHyHW&V{G=toy`KD;o_ml7NQ^H`__T*R)kszY%s7!7@y&exD5k%7JFiA>0Z6z5I
z?mBWoxIw(9U_OXK5HHD9PZB>bW>-|ORQROusUV&fVeB(OtQLP(_?(qLAH*8VUl4hb
z9Yg#1mxFjEh*u?C8^k)1*MzSJ@rKBoLVq53OWd!Aw{0!G6U2JU-xc}e`0@9pxk0!w
zhz~?I3AYBZIfyMPAWeNJp>Oje%Rdfc8wafI?Vkp*gA*X9z7TdwXRp=VC9*q+&w}_|
zxqlHf|I^Jz|5CxPtZ!e7d=tbTD`9JXtK{DWu`h`4gZM!~zrueM|6TY~5c@?A2<h#?
zAbz&|mmq!>|IJE#3x5RhXAp;i_)GF*!oybQ?;wtd|06sq^b`JTb&dyt(23DnMx<=$
zMBl3rLd6jJhR`pBN+DDZp+g8AL#Pr$)estm&^Ux@Hf?ng8s|2$hIq{oYKhbq))BH?
zbwj8pev+`hut5k7Mf{h_xM6FeU>jl65SoS1T>O*}T8gv?;balo<T*(z%TEj8RB^ut
zGPZT-#IMLtm%Od8oz-tIGNdLtiS!Y64xP9S=@LR$NxBJXt$PS(i1!fo6!x;Qy+vNv
z9-g()-^yo)aApVtLO3ggff9}s4hms})j3<_oDc?!oGTn694b6dI81oH@B-m*VU<y)
z9WM;wq7W{Y<Wk`!LPpUazx79ja9POATBAdl9Kw_kE)U^~5XMM&rEsipoYIaLr~U*H
zf5w~0T2<`T5?*6<CW$bkYeSeC!u27{2;n*#J3WMH;=U28(d<k~ZU|wPjiTIFAkGP4
zZV2;2xG{t!QeatbQr7cBxLM>D;jKcyq_>IRZY2vsxWn>0*|_2hg^PrD3l|IhUj*Ev
zyzZ5RHkXF5Ox&--`$AY5!VXRs65b!est_Iy;Q<976h0*M{dpvWM?-iugx4f|EQGL)
zeO%-Tb-5CbJ_Um|HWWH>M-T}i8bU0DcnGi9*n~(%m<%B$pVPJ)nRPY<Cxo07o)o$v
z<V9ZN7jHzU=7mrcFSQcJJ{7{#Av_Z@f8+bSm9GxrS<9abVS~L}StH>KA-pK^QV1`L
z@XHUh|GFNevg%$B;f)YBSqpE9ydT2a5Y~n8mV)brZ(E&rMED}vyH@fZJJkwfc7r4v
zg&zq0U;S(jVT*zv+SzQY>g1ykK9+o&aJ%r65d1IieX1bME^C5aA?)UI5JrVCJ`3UV
z5Pk{aS1EiE!nYxO7s8hcvQS_72}AfsWRGyKjiteTA$<Rz;1BZZrx1RWu%b3gRNJrM
zfe;Rc@Uu9VMNUmg{{A<F-z6y%#vdZo|3~D{5Dtm_B|I$rJA@-5oCg1QN^?|_W5Rz!
zI4%P1|7nfqGsLnAmJ_mQ6~m|$#>_Bokfd@Lr-)PuqiPt{#F?sk_{4<CBsIdQ8Ah!z
zYKKuLj7DKJ4x?@u^}^;WuMNUrc`NZ1h%oAl^JkTmQ`j(U?!3qu+eA^#!e|~wQzfSw
z*XtINpDazPQOJZ$)l#0c3ggr;PP1Nd_Gle8GfbN>P7kAP812HiE{thmv=5_07#D|e
zNf;f&=oH4FFwPF6a~NI1=p9C%FuI1(EsP#v^puhA!ZTQ?R<fzh1Iybhd}3Z@Jut_<
zVe|{*EGhR_wVWBofd5~Ispu8;2TF~p&Ix0180Uv^K^W&sd1x5tDRziWOEsn%CLz=E
zx%u!gMuc&Za`A0a;X>(?_>xP*7#YU+FeZdCDvZmNd`uXlmFfxwFBfvl?WbZ!V<lm5
zoGO!&E5n!=#*{Fw4dW`sUK7S7<#o07kowe|tk@>1rKvVKo$>wm$J%t|PW|hpJi`WO
zg)v)69tdMj7<0q8(YEG15#J7re-rya7`I5c!s^@_#{4jDQ}FgM7FqcMkvoKUGB1&Z
z!YlQp@^10PVJr#b9`SpH%!vQVPFxzsGD((Od9t37->2Y8;r-zg|2+F(7!RpVR!RN{
z<szHxNM|V?3*+%Ho(Q9ay)J?-5d^{ra&(9BXBeR{!b<XM7?Cid;@^f53nMQ6Wf%z&
z`mjMH8Ad9MbQqa1vSB<Q#+oo3tMgPCIm=y<ys!|4CsGua3Tg96W~xd1X)Ad~WVP^F
z;d4SBAH5L9i{kGKUkYQb$jd@ndqw2cFkZ8g*G1kCzA5xy$zCV^Rv2%KFzq{GthfAK
zk@u``|LEwFIvXYbAdF36Y!=@VHm}F;4CBKvwo39*7~4cX7W$`NpNMY{<5TJLd$T(v
z@h$J-B&H_Y%~e41&%^jaq}Uid;$zldDfqRIJpTz}kL7zg?JP8(C;BdoePMhrIh&rT
zI2L{g;}`z^H;kXG{{Aoyh#$0)pQ&T{bbSfrw=jOU5*j%qUOj>u5o7i*1rH1V4&w+5
z6~@spj&a(Ipi%_?hH*TMauM@EJbsHC5tI>U(Ep@%*@*eDHiP9QuOPfglFAWOiJ+R*
zXL71ljlfSx9V*j@n!?(`TI|&-Z=DG0Mo^DwBRDmJ(;}!Zh2{~oh@e3P4I^k2L1PJ<
z3Y$dWzwqoom~IvU-vpk{uSit{f3MAqC_g!3&bm*DprvA4ML-3r@xx-RBWM#bKgewx
z`M>|fIbD{Su$@SIVFw`}B6N(HM+u!GCw_U+HG*ytjE>;)2)av$nO+pZ8R9)6=ovvT
zD?c}a-VyYPpl`%1bNwSYGlG8N{^!lPcnyePU<89A=En0ZAuH|d2+oOMu&rmm!vEJ6
zLn7uqUgkSAg7a)%!$i&(ULYJEG4Cgj5Wi5!AX8l|ehI6h1ul(Xq=J->61hys2D&1G
zG2+`I7|SY+V1|O@h1Uuv2(PpaIx&K)BDgw&Ya*Bw!4$<#7SjF~m9Sp}=a)9djj2|C
zT?Es_r>m;37xJEw)jl(V8zPt$!R!d`ieO;`b0U~a&v~j7!90<hg_PVVa+6GP6x^cV
ztwI)u3cPNM;Pwa>NO%Vu;y<yz&Y}qJj-VJpX#|TSSQ5d?2=157dm>mW{d*Pk`|vVJ
zXnDEF3gLZ1e`$L_d{qPwM(_|zVNdW#9**FV2p)~#u?XT3BqDfR$|bDN2%d;w%LL;#
zHG`6e+4&;~iTlQ*;xX$FmHkpAC3o4$`SQPFS>fpjGL~l}a4gTM`It7(p`nD{f3l##
zCnI=@BRYcjB!4=B)gsUQNA1}No{QjlNnVcNl?c{|zaV7pFGlc^a`Zi?*;f_ymhiO*
zUKe>oNN3(uU9DA;bwa;rZ%g5w2-e$PNBR2^Y><3Q1REpxAc9R1Y__TVgnmu>NPj+z
zV5^dRB>Y(D$9|%O+lAEpl!LJf8dk=x2zIk$L{0DI^;ra;NAQKs<;w`ZiXaw6oC*<q
z!?`Pp#!>8vU~dHFqo@$Yw-J07!S714FM{ty_DAqT#QdP+M+G0S`+=V#C;sq}HFh9^
zgNprG_>1t@2!0c}puveR(Ebs@pOPGk;Ft*g{40XP;(rT|SouGkAH@B8fq%u13t`Jx
zMx?B;T=c|#zG4)WqNpB44aqA<Q8j8hY89J`70!ICMNiE0H6^bjtQAFVE2oaHSvQJ$
zHtk7K)E93cY-r`IgeFlmjiO@|ouX)F<!wZo%Yhc+Cr5FLNXsZ%MRBV5X;HKm@$Y^5
zlr`T8=XH7%Z6$AKOV?hcgM=p!H0A0XMVBaMNYXWmZc$8$;#vi_PeAu5&QOV{*&~Xc
zQS^$UcN7;#af!U@6Gh)B`dOX+QJfjYh$t>pMgyW46vf$5oF#*-lYt`sFgYiR!3z2n
z#n^Kd91_J)k@KP$7RC9>Xt*TQxxnV-_h-NV)8Iu?;Mww}Qn*s7s53H(QBhnL#c0WC
z;fg3OS1eOepE_fdcC2umaJ+EBfAX3b#Z^jmweT9@B;jPCUnsvUQ<eNWA?;6#V!HVC
zzFEDeF;o18C}u@5JBm3`tdeA|@Qx_%l-YR--WbJABJ}^}C~gtI)k@|^ahv$<!Ua}N
zm#BYN6w4)9C|o4G+v+TiVu|=Y!h3~Fh0BD-LK&>E{Jtnwir+7MK=`1IeMrPVihMYV
zM-+Ti_?XpsJc=ixC{ZvFMcB%NBBAJsv-F6SN3A4bC7CFa;wdXh+s380SqU9sE(+J`
z<V6Zmcp}9pUg&3jw|gz{q$E!XpN`_0C{{=DY!shL@|^I6C|-=>d2!~lhMwyH;iV{E
zmhg=zUWtOQ*u8FbUR4Xerm^66jD8JFi@X`d+9=jZ?X4&_M6of7w-tOxxSk_XQ{}q~
zz9)R2sk9HIg%2dzB;-p(n?<$=KNN1|;Ns5#gd`tFu}%CF;dU$ESQk5_zf(@Kp?Q54
z#pj&&;>Oi4qWDq@$71-3B#M7xM$YS-D1K8a@;y=PRbjssvd@1P#Xifw7x^KIA4Pr=
z?iU^q9u)p8WZGY%_*D%`XBhlFia(<GGm1k|Y>nZg82*ala1;$<Xeej?j-p}=mBf$8
z+ka&0XcWhy_*eY6uv`p?8JoPy#86gAm<x+gK86ah6MGnc)u?PsS|f%kmRF6LH+-ta
zP~A!xtQkYC7;4+(w8jlyofzuIP)}+n#mv{X>&I|=Gm{s;`N?3T7#hdWA%>1IG_lrB
ziJ_@@vzS?8p5g;&1zQMDj-41CEfs7fJT->XVrVViPRK0Uh@2inTao|WIku0T_+?)w
ztNCUOonz<{L)RF(#V{|18)N7m!x=H06T{#bdZ@<w+j{FM(kq7EB7KB?h5dxATfgDX
zjA4KzXIc5c7zT--E%ayab7L41!xb@%k#J}Xmx`Ph!>}067pKh&MJ|Y8xRs1hh5M~}
zk%Sk=aEXnj4<p4#2`>|l7G5r7!h`)WHimIATpPpG7{*I}wQz#fxiW@{;#XM-KhtrI
z_#`Wt9K#gL{jy&d!wr&56HXUiFPtHqDWnhlSTS*yg0qElVwh`VOHaa0G29%(<1suT
z;Vm)T$%4mltAg`|w^{w$MHUF}5YnH8F)R{)NO-q!sc^AyNeuUh(35*b{H9qJ!}1tb
zNOE5c4~VRc;r^KU_9m76!agWDgM8(KxGIK+W9H+5<d4MgsEvJ0U7ErYk{F(eVRa0_
z7(y{*V{nutEaikSB8<imvlika^erip5~giz#>O&>Tnt4kcVozl7p%nlk7lX(lQBFc
z^0d{dJQ~l6zicJXi98>}8Y_7rh8Hb=DTcU;{EC&lD)O4}b>SOA`oA`YbuqkU$KWQB
zw}tP-u-?kw6?rd)_eC}cH^%UR?fD$(Yy#ru7`7<(Lm?$xg+GpATMWNR@`-S-aC;1&
z#;`+tw{WMBsdmN8c{LB}Ka1h>7`~9htk17SzT_$(LQTJie52qVAwBt4cD@ttvo^mM
z`5}fMWB5sYe+&miXoRK?#_)3tzew_{kV0DXi$?x?41ci0XkPtO<dE<$;bGz5!XrZ7
zV$<iNswF1p^=}Nvt!2bfMyp#{VL2gn%8OJGRuoo>qq2>y633W(jJMS!sV=M$N6k2D
ziPyE7wMFU(S-^TCC&f`ejs|h#7>%3~M?=XQ2^$NW2%8G2(=3kW;w`M?WRWdPjggjd
zvp}?xgrqes$MIttKc#WHgd>v}l|<V(+QrdclJ^pLKY<Q$bc~}@9G&CX7{>>3bcv&D
z9LwWa5l1&^UJ}QpadeO4j5vD4(KC+zahw@PuQ+;3p`Wmiuy6cCOVKO8LI2x!1Eh0S
z90NrL#c{UCIdPmX!jcXaIafF&j-evw35N-(<6FKUj^UDw5MF3wFN))0%bEMgI7Y=W
zK8^_zUKYpYaa<ujTJ=VQyv9f}E{?Gx^q*<{jINAhVjPp=m>kDdwt&}2?P}rwG-+o_
z9QVetG>&WIm}+CMi(^_G(-oX4yk0m%xKjsKH;B{1tT<-JF-JjuaC>eX^WwNMZq8#D
z2ycqx<~VMN<JLIl$8j6mdH}9%j4Liiq5*DKkc9dN>thO!@#DCYZpX1Ojzw|Y9mh9A
zae4!zKcyYY&o-Ki<5(i&Ov2zjaqJsr$TGRX0{XS&SIB*FMB<3Xu`-VPrSL!;kBK}e
zr1C>?tg`%Jkw@ZqRD|!G`}YNp$MJ+DCBi@)!MHhD4GF_>bH2);f7}|2BOZq<P1;Yy
zk&GkdCzN~XxOw9@CrKubtkrZxMl?6EJQU5xQHaBn@TE9j7Aa~lmWn?a$5SFt$MH-Y
ztHoasGT&$8cuxFzA@3U2h;XC$qSYaPC5~4WWR1OM<?G^j-SRi$cr%W*wmbRn*uSON
zw}tNr*9+ejz9)QNxIws4|8BM^j?HnLl`w6zC5{gj)hL0jaeNd<m4ulhK9-OQe~N62
z<C8eH$MI<#JL1?Y;ZEUaR&!SzyDj%K`aF&=B>7VKl^-koMz}}lKZ*V}j_(xQCp;+p
zK8_zm=*f?9{ABt5I1X6O&i1qTFT!7izX^XA{vq`H<e@nJisP^(v{^QRzr~NJLI1Jx
zqaw%R_*e4dR*nS9sNR^?@7v`RET2Gy1S%#_DS^rfGl+P<=670RYgKzyX;w?1x=0OS
z%>-(R)J~wT2rbu1pro;BoqCd-Waae}XdvED=+8Ng6KIk^(*&9&&_(j*Lf^d>37nib
z@hj9*B&XSy3AD2ORFTsXXf4vl%1;+*n?Sn++KYEcpp%X5DAKDjf;<RH7(CbpT@&ag
zd3RyY1kSMfJ=CfECg_zwZ^`=z`zB8Oolw67`dj@oMFu3yBMdq`Fo8jmoSnc;3EZ48
z&neDHV6cSeCNLy{p$VLqz_kfXO<-68=O=J!0wWW+AYqo65psYvHe5lH3ze4Sq699s
zv6t9b%10$|WdaiuxJ<F5t<L2lS0pe-WUO$UjUAuB1k0H(?OdhclmxC8VR5bznWVfX
z|0hQ_*>wp_OPEP)j&OPcGZVNWf$I||9yZO8oDXhhB``aIvU(cA8IR9Lc=`W4J2zow
z!g&eYm@r>#rkr?70=KHjk0&tSmi@5=ZcE_y1QtlLNO*_vPT^fb`n*s+57gRsw}gv@
zOA@$8<X+*@1ePVRT%4&MN??WfeZrLq+%NKg@Ij&fc+tmIl02NiBO;Fq_v!Jm-+5^B
z362iQ1MGP6DwIH;y(ocj0+9rw60+vg3B<(X!i1G46G(}(!l{<A@@xW*<v9^o$a_66
zfnoyd6)a8QNs%{&PYGWVJ}rDEfz=5-EB>7D1>y4vtPx?R{89(;#e~^2ki2Z=uZX-V
zd`<Xz0&mz@o)N9Jd|d)>iN9?n@7TWdt|Wf<+mOIURo73-ixv2Rf}0Z9oWK_G?FoD;
z@}Y36@FR{gE(F4D90>gVuaLjC+aZPB!kxlhLK<hLpNW5-z!xGc;Fk$}C4Qn26Zj^9
zJqhf!srHF{EBua)sPnP!75qW?qtO5QB6HcFz<~q~O87IUxFk+Vnu+3<1b$86w*-Dq
z;Ex2#B~d<!KNC2Vz_A4Wl|Fs=D}lq}e<$#d2-6-B;nCbtD<MB_d0E*<5@ke^dJD)u
z$E%P;#U$z^Q8$T7NmNdvhIDANN)pw?tNtey<<*lXe(gnGGl^PB)Ru&1c_>7ryj~KG
zmFlD<>WeU{K@ts<Mxjyi#3>>*=|+<znkLaqYR!cdQmuuQNf>OIM5`puPU0LXoGR=t
zJWbd-i8dmqC(Q)gHi>pgw3notutO3Z|C4X0Bs$A}7sYlJ`b~VIq4_O133~{83VS8d
zTSn+rpCtOqLO)@D;hDk#Lh78A#6a;u!ig13xdzMB*ZgQt66Yq(R&7WULz6f!iD5}x
zn8Za%oS!t$k47ZTgYOHH7_Ltu4_DEckVz=NIB6b{U#K5{F-ZCN5x7*wFKvL!k{C@_
z(}<*Tc@kH!hSO-C#+W3=CNVFG8)@8na#a%JlV&(iu#zi9CJI?0S0~L%bWIYISkL_D
zcge3$VoDO%icd{qx(JP2m&7#b(<MF#qlARlj3j1Chx`VSSxL+mnPcU1Mfh$Wb#4-W
zCW)IxZb{<SB<3e^TM}tWZWrDyTp(nsJ4Egj-X&ZpTqNWZ^TkOlN#dR)?oA>lKbI!4
zEQz2LmM5`7<O$(@!pD<XDRRG%xjZ29pztBp$*LqC7I{SYsPHl2ADS?k${%zktZHkA
zl8|)5!blQPH3Tb}^+t?KGhy|UNu(_IpZ;f($R^=Pm`kE4;tKP^g3uGv2exCW9l}pa
z_*4>4+pfjf)k!>?#B)hJ&#scfxD?h<pYuZsl~Z^ziI<oviEom4If+-2*qFozNxYiG
zYe~G5#Cq9$J&8AxcvEFzro7fl{<d&k5^sr6&SL%#-<5EK@I5un`{MNKj?qSKQxcn#
z*q+3vNo-NnM;rx7e3-;m>C>8TaGPR35mG`6Ox|Oe!5vBLOk$U!DBmseg^;nICGokq
zZ-<gEllaQU@{<>PlGvNXKS>--;@c#?OX5Hh2b0*B#P>=3n8Z&~_H+Cpi80y-`quXU
z$MVlf{F20>B>qa`*Cc-9Y;SY%)Bc{sAJ!Cm0zILT!zw2E5k>vY3Q?5*&G}>2LYb5)
z>Ay)Fmjnv>K9m(NmqPiJ>0lLX6c3szrcCWoSS5w3DV&+YfE22wP@S47oSs6B6l$i>
zDuq*(s#XehQm89lTj+lqzg`M0QaD+XlZ5qCILh}zQ)npCNZ43Nd6N{HTHZ{gc?$KG
znk1(vIm_bLNz2s#z3F;d3axFdUo>Ld6xyZGC55hvYM(;K6gsI~9fUN+tFvO$3$a11
z(=CPWDfCXEPYP#Pn>|Emv!_U}|H+r3Zwk5pG;2Ra^%wGv_^cELrf^{j7o{*Lg|j8U
zKzL3HLsA%;!r&Cnwf^|d)2s7RIA3bRgcWR~`#uksaD<Sxad8Tlq;Q#nmkLJ-M_L6x
zm2Z4>3YROpD-=6M=<ij=r!XOfPzvD`u1sNK3X4*>oAsQ+)hXPN!mJdoNnw(bT%W?^
z6sDwbT?*4uxRxD2A6cFH|Ci-|C7N!XnIS@#W{OZ@b_#P+xH*MeB$+F`F@<>|esfd*
zCL6pph50^D;WjJu%XoVV3sSg4LViQzPLU4!ygwBdTHh9@uq1_5ioGX=dsA4E!hH%Z
zO<}nR^_N+Fa(0iEl0T5bgDKoE&H>V<g&AMIlMh+_hf{bYg-26(EQJzjK5lJ3Awqp_
zPM9!|LeQo%!7@e|VV_Uqq%@)_#8QZ-kl-Lqo2X<8sT2;T@U!fsQz)e1rI1lDD|FZ=
zQ*cvgz&C#+;gQ-j_0pGNj1(n&I)%~{o=jo?sYb}_DfUT@O`bESusVfjrS^8p9JM`{
z!t<Q}Q+OeTms5C!^MA^mmGOE><iSRmsPng1Q+O?fwGzHAd_&03CR|#}Bze;p^2fh4
z1-zx;u!?3!^iB%vQ+PLp_fpuI!mbqFPhmp}AEvN1g^e7Q-1(=liCwWKde=m|s@R;u
zm`>P|GM{Cb%=+PLQGD{7!pA9Wm*p3$VtG|;OW_lCGyc?9-@)t0mwyzygTs@rzp5a+
zQ}`@}Jt^!>;qw%}Na4#AzOs2S>%JXvS$TZTnWPrJVgKjTb7jZm-=^?g3j0#{o>|w#
zjxu<@913MkzCW-6mDexI<tJ8n3I`-%@mV3frqZhvepQ7Z7yg#QF_GU>_#=fsQ|Q;+
zG*e@JhT>2Pf2n;B3;!0f;f|#6kL5>2#?QpRvg3cF32Br`qpbQ;IiYWs=dq1+TvI{9
zifL3zqq2AvVb!$xdwM!hEq&rIGpeUiLs2z_wS-itokktY>x%I3v%W}!^od28{k);o
zX(ZBE*d&dnR_=c$t3?`ZB{|v3Pf4Stcq`$l!qbGUh4i5fp8{CUuh6thqkS43(&(7R
zrD=>*RHrmLr_n{6<FTtqpEUZW(M`O&jXFc5hp?xxm$0|cAN&2%xLCpdX`CrCAdR7E
zoF{&ka9|pPMCjq!X`CZI*h<b78InHn@4D0(rs^7=#`$Tp7E^M8Bt9RJ#)UTRMYdw8
zb4mKdCTCO{m!+{FjXTm9&CP!rbJCcb#ueQB%iwe+A1k~{I8HcTI6-)&aH22Kt2<ZI
z!!#yIGFdn^jVU763Ww@VX?k*98q*}<M+_LeUYulx$jmfu5Sb;MZDajYlzC~~Bng+5
z8~;<fn^n47(zsQz^M$twZx_-&_tJNY-<QTpmGmwJ7pAc&jl0uWtl(1N5+PIFlg7Q`
z{v=GvG6k0lR|xsp|NGN;AdR4c)Oj$ChtgPOJ$zX5N78uIO8oBenALw=<OyMkFpx&q
z`smF^09J>)5n7I>u{({=(uk!IPa~mNCyks)QkW8^g&AR1$RfBR+lBcw3L>8H#Wac{
zrD;5w##7>J(s&__r^T83Gij_Ae>RQhROipDM1J3+eZO2jzLdtxX}prgt7&|oRIdr&
zwbou2c|-W7aBUjvMBWm<Eo8p$q_N&|zP9n6`1`^Q!i_>dU+QmCaI<iW@I&F&G(Hlc
z&c`C#()dK=f8TldRKXp>ox)v0mhN*Arv1W7$iEc-ifCiMNn?-rUMu-Fjqk+w3BR}U
zAJQlO+h~6p2hw=g#d|IeDt1u@cW3Z3C)hN8m85aTbb#M%+TYXoBaJ`PIF!a;X;f3}
z;WYkEqiV)9#1Uy8OXJ@({z>Dgg8q#F%W~Y>sgwaSW+o|<LD>w-$qqBBkU@EIp7V3p
zTG7h+7G-5|CaID+aYsOX=2+e8)DWpDtd&7+kvhV<Lh9Gc;3V<-!Uh>M6lo;qslbbV
zHj$8dHO-(|2F){Qk-^Cs%*bG72B#?Y)C^7&X(?<a^mm@E<>B=#U<RjW&^Cj18H~>0
zauvCK2K_TQGlLEpbd;o120cVN3z=`147z5}O~LLNoMGjDZ>K^}E9oWDTi8d~SJ+QT
z{Q()AmBEE7;6UM^49=Ffe%C!GgY%@!vJcMSTybVGL}aM7Gfd?C3@#8EE~Eu&j*wZB
zi!!)4gG(~F)JkY`q-tZ7m0V_<k7=*SV2rghR%BcT<E><ZoV+rFiAv(<byWtFGMJpf
z)l$1gI?QFu1Wb{HZd{kawN^g$KWV3BFx~3-)>uC`WH2j(+oeA{gE<+@w`mzWH-mW!
z-k3SDPrfOGo7s!_6R->_@e@D{+TR1#=TE>?O#0JbZx}96+B<}I3h&Bbp@`p<i!)e~
z!Bsh2ox?pD+?&CR8N8G++smaHtjOR#R%Rb8%isvGJcE_|P1Et?D>Jx1gH#6T3?9hf
z!3;tfgfn=EY5Ads3?9#5RR-J*@_Lv}#`k}OkFwWE_(yL%kwGwn1r<=DRLn7;e8-l-
zI<7(7{AUo&Af7>jWv^!}$Jn1M;(DHFaevE(sDN!FvAKfTxPHKs{|vGjJd-i|XGb<q
z>yGJ@kYg+J!y5bwPzL!73K@7Av&uXvEDB47!#f)}ucs7zT3G04d|oZjpA|kQd_IFU
zA}<KnS2b!cXYfh}A2`_L;MELX%b>o41`b}&;EfC-SwypVGlR8k<t%Q?Vx4NKd`G;+
zggimzpTBclbMnt%eFpDl@E%8B7Co|fKZ6Y!?8#tn1{;}01|MgzErU%QTzu6(gRL2C
z&R|Q%d{vdZan?C+2Ury!`L)^|S2s7!%BW8=*pb1`47O+RDSL8rqwnLc47%t64L?J=
zJA=>IlllKI8GM<+SK?m?|1OJ(-A&Zj3X*)20fi*rX7F7G2RV&ruurkA%i{YCnszW5
z{gA<r8T=$UGkU(fNwQzT1N5qb3I3A7uNl<K;-oBo%iwqR^DHW7@ka)KW^gEjzohSH
zM<a)sbp~a!D4R9Ok0|yi>!%0)QRSRd2FKW4RrY@~I4%W9naP=?oOt=H@rS7>sUQhS
z#q5c4kypv0S{Bt6Rh7!+jAo52YD!W!i_aQjcSqF9qP8Twx1vHF@v*8d`dmMY29mVM
zqG1+|vZjq#+l?h`E@Y}ESu_=ICiL^7oSG+RaY_~~vuLHLuEJBZI6aHDS)7(d>nuL*
zf;N(~4=@#TZ<j^;EIMV;S)O-LY)2t0fu&|I+SJ}C)5$K9`!(Dxi|$s9u|2csmBo-O
zhGx+_i#}Nl%HnJ(^cD7_yn(U9tG^^?W-&m7lC!cHDE>d4bFvtm#kpD2Jzn7V6Vw%X
zk4AD{7Q?cbl*QyMScLPlxHyYTvbaDNhG)&*fNCQYyij<NkdL}9rE+DA&0?G+BeNJK
za#<Fmv$$NGX|GVDlZ=ssy_9@>*3<^CiCIjr{7Mn-3Mjuy{OT;Ov9ZHzVTvqVm&G&^
z@u@<;k4<M?@ng<eGd!;spCP1hW)?Sy&$5!)B6Ea0`2By`xlu^>ZW6gUi(5o)wQ{!C
zbM<h077Mbtcchv08uQT-XUi<^%;K&r7G|+X4hOTio7Koe`z#*JVsRErcyZPht`y#z
z#Zr-FLdGu7Vuj`Rv9t02VszavA+1fWZfvqq9#Ye+5<V<^B#TEy9uqz;q~;SMCBlG^
zKQE<`ka*aaR7EU{IIGS<B?k!(8IH9qKF=bRMLLV;*oawVvdCufWEM|l;bf7^!p$O|
zHAfH&D&YRIXgU{#EW9kf?Td0{&2-JmEUF%OKv9}Sv$<xKc{+<{vRIwPv#kHBW_Y3u
zUg`}_Bd63u`3^>BO%^X?@oE;YW$|JbFJ<v^7O$voyYY!+catM+R<DSGeN2aWJ&QN8
z*qOzyEb6HX?Wlk^ITi3J09S!5-pb<bEZ)iD2xn~Jdf`UlyIH&^!r1pkHn2iC*Ky%f
za8nkWv)E#Fwr266<y50GHF<q3vMq~Gve=%*r&hk>Kl)6#JB#@@m@4|Bj9HZibMv3Y
zmsuRj;;$^eVxwg7Qx^NP_$G@zS^SX2k6D~i(X7sUS-qTv_%KdqP~T;-FKep$dttBR
z$H`d(-;D=X%)`KeEDmy>&*Jwi+SD_z%KXgw)M?T$S^TP0OfrO@BW{5|viLKLp4Chb
z;e1|CE9PNN(ODeN0uG+9ha*`W&Ei-V|4^c1uEpFYmBYW9$(d<C?H|fGDC?k{gYu4P
zsdW{=RhW&!-crFagu|9u?Bpk)9aM2p%|UhQ_rV<#(5yGAI^f8n12r7fba0Y`dL4~~
zn}=HDJp6IYc&DU}gSt{S`XcORbcvQ5GU#BogE<ZwJGi+6*7m_f2g|CWiG!vNnmK6h
zpoN3s4n{aQ*}*9eT03atprwNsd6IDa_-PJWiJ!`CMolcLhZQ|cR9$}d*+E+e-5s1E
zg?0`)I_Tt}y<;{})afAkVcF^Ipo@d9j_IyX*TcOX4C&^8*BUAJaM061UkCjh^ism!
zEF+z)ZL;IVB+Q*bc9{MShB-LjG5kyi14Pae4ipY@aJI-f4$gHj#KDK>W3XfXt2)2~
zpNbgj;5;ete*`*ngTboiubY+81&*2d{YQrvI=D#1nc(1Jkx>pV6S+iAUh3e3vKT2o
zlOO+)O?o@d!Q~FFa4<&JC>iUVcnVM6RT+(U@P^98gjYIdDqyXys)4H<T<zc*2a_C3
zb}*gUIhf+$S_juTnC4(A`_)zWf-6N?vkhi*vwQqo3yo@+elo+sOb0hOnB{<5Vybbh
zvE#85GWO|FW+O4z!8`|#P{F~C4sLR=#KAr6Bo1z27X7f;!L5$zqO^avgZU0_b8x$3
z#?D<rk_8U#5Wmw(9x7`T7Am+%2o7^@x<;AiUe3ZgW=Fl0olqT^p40wv$LKsL{T0Id
z9IO<%U-*D<3D3Ye`8!zU;9&<9ZU(b!%gK{(PV&CM!Q&1b2RR2%I4E%tbr5q9a8Row
z!VV%1f{v*!&JrO9Z+AAIecP#3jKhlaNt~0v19r~aD}Xl$bSbHPQ)-&DFe5C>-+ys{
z^NbyE*{K{n$H{>s-7$02(C%36z;jS^P|8YUhj;J{vlf3!NS`mPYQ`z$L{4a?6popK
z*bUY=c!7Px!JF(?^ufVv9DNR6cJPXWk2_&fM|`X#EW)c)gGt4-wX0%nSxl;lwGP&?
zj1Jy$%wn;!qdC2QOQWv}cOYf4-oXaeRd2BGy-TylkH6>OeGv{`25E4kgRvb=jj`=E
zJ2*3k0Xb~pP;#)<!AA~$bnp}Xaj?z7_YQt=@QH)%4)$_v_BFF8O?~Q^yPmK46j%dc
zr*M~p-6Ed}8T+}&7Y@D@`O3<_cJPh(9-)82`7>_>IH>viFX2AnP*upBvF0%ZH=O$&
z9AMMuP&;QDg*9`~!O!Yxzc~0uNq%+kn}gqZ55>dMia4ak{X_UCM?pnXtA9B-?0~V<
z`P;z}$$fps9(By>bIifNBF8zI=Zu6GawsES)=J8WlowVIRuoneR?e9PkqN6RSWQ@6
zNMQ|;nmPQgt;NK8sFOpF9D3%=^O3qa)XSOCdQuMcb7&ymNZ3%ws5x_tLSqG+<j_>4
zSq{x}XpzIoIkaaMIlRS3z&V^I(o)z;NcpKb%$Q>oT1(P~6)VzK*v`gMfodHk>?)+B
zlSt<rx>yNyx`}rep79^~Iz3~W%%Pe??;QH%%!J%GhkiNq&zT|54#`f=)pqv+)Zy>z
zx%1CqNX~pJwiaIj&0$auB)rbf;T+2c=Wwp&RrxQ#Ih>cnupG{3&GWmRIb0xek#M+>
z@)05z3is5)#UhsoFBMW}q{t{Cbw=lKx%d^r3BobLu{n$r8J{x?I<NBc%?x&>gcF6F
zsISSHH-Ts7a6=B0=$P)fC+9Fl{92Wi!l@$H38&>SU9r~-X9!s#e%e_%Jf6c7In3>h
z**VN1$>Eyg$LHm6TMoD9aAOWP<#2NjT#|0dnMo;F!SGvin9tK2zKN=ZhPWVyJ94-`
zhX-=FGl#o!Sf0a*92U}fm1S`bi*lw=cQYft7S6uMojlu-w*WcZo5LQS|Ku>Sg3%#g
zmcwtI%shEt4l8qJzcg%|+2pVT&<)N-59aVt4iD$>NDkk0GF!)0Bz$zJecGeS>#>~a
z2As_}E$ozhFn<D;!!Mk&>L8FqFo#eM;T$&QusMfF4$&M|=kRO}u^i$#Je9-KGL^`o
zltrkAWX?>CshpYWd8Kp6h-a<D5y=VN9P%Osp(kXjqR72k8J|??29+^oe}+?2Ra4S|
zYNO|Jcs_^sa(F+7H95SH!@C^XV@(yks4>oRy_Cbts>W9|csVV+n!{^3{L|2!C%>*?
z!jbZZbl%Kitq7}qoyc1`ylo}#<gi}6f_Ay<_!c^M@;PkG;RB9{zL={efFp>jHV?#T
zWJ?Yovf9~vIc&}0qZ~fYVH^8r1+x&Z9}O-m`EmFphwV9hnlqa~_7+b5By@F04m)$$
zmBa3w*|zcGp5(I}K4-Vd;Y&Hg7bKX`S2W(qkgw@5cgQ@VKYn~~4&UbReGWfxPUwv9
zRFmIyGlOVf4s|=4?0(GQCr)C$O{KB_FjM0G91i5njKS+*4nJGY8vB(Uk27ixf3WAf
zxW&bvIUM2?>Y{;*zj8R7!|@!~c>JBi5!Q1KM|0o~tz~y`2HxKtY|4$igYJxDIkS@f
z%X#$%Gj__jDC?rSiyE$3eJYhjITtUDG`9@pX`DwuE-H#t5>^&g5mpse6DIj@TxHC?
zLroX8T-0{WNMu2n1+%L|o1FYzvrg4>agvJ>ml@8BTY`oz8oB7_qQ8sAE}GC27j0dv
z=z_#(44R0hO5V&xb6IF1G&#CB#qyReT3LRoi_<J`Ez(BFyxO^VaTMCSSYOxF14k~M
z?BJrKi%u>&yGGc>MOPOsYGHC`baM@Mr#|01t!0qc87_KAv!}3^u(y!O`-t?F1qRP_
zF~G$@7lT~9I?~*Bou%SD#+8@649<4(&?qxkutev$80_L)7eibOb#aA@F|JuS8kE6#
zE{3TT=d;Q9CclddTnuMTx~2#6y41ymE-rF$v1@iRmq^ZCv>(g8G|5O8N86u}TqcFl
zE-tqg9_Wp+F2=c->f+J97_W>b(JVjyDI~el#YFL|gjWl%5i$uCCM(qx;kClKWsSp(
zy3WNk7t>u_?_!3FIV#Rf<$i-WYk;fCEEls~@Ror=`b;v{#XJ``O0!8>+~k@?hp|i4
zg>H2*-$mF(#KmncZg;WB#oaCzxVXc`oi6Tj@p(<`ZEtp%*LK2^-iFi}kA*I{aB%8a
z>|%+F`&~T1e(U01=FWSNikPLbNgtNFSSAmb3s+cg?{l$Ioci?VK^Lp5ny$X8qge_c
za?RF#m5YZ(9uZRVsEfxee_Z4VVTmx{B4}enB0Kr;*G0@l(M73?xQm1f$3@OHr!h$v
zS$3hart(uRe&_t}BIBCRi}5;lFgPpH8P~<$GAOw4T(f!0s}u5IhtqW<?MS&Fc+$mF
zE?#G~xOiF$uexR`c*ZqL*lO3@ojq%N%X2QC7iYd}T)ZIuqK$pY#mknzBEq!n{I7{~
zs^qhbH(jiCu}&GW|MT#WK1?W!w<LMn#XB5#9QC8{vu0P4_g!pYoqM?7!$ub$aOx<S
zs@~*cGb<sFRe5Z2@u7=T^WaU~Ru{+0;3F3wyJi=`@p!G?XxirD6BpZEeCpyK4hj~{
z#ZK0qi$7fKa<Q9^>G0|^b{-c$y7-Be;NnXcU%B|&HPh)&{2M0i4Zd-)$HfmCHJnoR
zY6f7vee2>o7yDd%&(S*G)FH1ix=5(Na_x6<z{SsOFBkjEg7*anU9=f%HVK@5e|7Pj
z^5SNa>n|JhZ#CARYLRmXo!D9&QjUKK4-5Ym9&yc45=(u|#lIYkd6diJINLODdTE)w
z$%SUQ`f$2_RylU+f%17&$fIK3R6G5wlt<+}YUWWZk1Bao&7*oAHS(yIH<j>F7jxD@
zYumXdRyDgF?u)pSshvliJnHAsAdmIBJFA<=<+q?--poI|!9OW)4r=HCj|v;+(JF6F
zej3TK#(6Z!qir=~s;Qi8mPhlvIh1Z8JVkhN{={<%%3J2mQ5ByHaK&N8o|Z@JJlf>V
zf_p|DJ@RIBoUW|f=Fv{1y|9CjE_KYKlXz!g7c1{7(k+kfB76c!<(}dTg}w6VO_E1n
zdX>l2Jo@F)Kaa6_jLYN9JO(iLJTA)Pti0Ju4P?>ypHuR4P~J>IXXkN_JRF?IFcErt
zuE-GKP~mxbbf{_y!s~oVE)WhEju2Ae;=DOvxjc_Y^yKT3JT7HIPX5AC!pnrCg&(!Y
zj`C)$zano2`<T4h;<6^k=P@CVYx0<s$CWb9j<jW-=}r@w1!v|wt`=cg7(BZwCg;)c
z3`}8HQ7@&RGdR-on3l&)Y~MVl=W%@=bMu&&$BaB?%GEh}9M%Sm%hnBQ?pb-v7Gd|`
zwwzvZ663usy9#^Sjk2HO{y&df^SF%;=go-(&r#>gASVRw$GCUpoU<U0{WWn%-pmqr
zsuc9<E)iO0j*IfRn=L55IFBWk-@^$+e5sWz6Im`?A-pe-l{WT%kq7d4P{e<ShmHGi
z9;=o6BY8ZU$76Xsp2rh;l;q7u^!7fe$a8=W2;>pWBbi4^1rMoWS;qN1;>#nF2T4>I
z6UK!UCi0kA*~D_@;axyFZ|(&$>X}(#A3g{c$qC&&@*)Kr>xmTeC>43q%AXQ>I*(_p
z<QVX59?#|Rd>(7^cp;A$d8xM7r~=spY@nC&c$seG@oFBs^Y|=}*Erbo_#lr>?C^QK
znaBHiY{+9RN5?pmWSs^Ai@=6>E04GHc!%>w-s~LS&Eq{*=~#1o#NZkYKyD!23fQPg
zgU7|}9!$8IlYbsN^4OWjhk0zx<I_BjjKxQJGf$d1iZ#sh|2($k@rk&<5v64wX|ket
z=)``)BQJK6Z%1Jld#og%(?TBm^7uZFFZ1{+kG*+(o5$A-^5xGw_NdyqscX#p8a;@=
zo*TuAX25>O+N)~D7d`wTj~_Y83Mf;+PwbhBn%CFd6wt#1oUgd~&m+gBK}hmT9>0qJ
zmdEex=i*0f?4NlYvivWOBg_BJn>$k`=k<?-NAoylWB=tUU^&(3UfBX_7L1=<qstXc
zb(Jrmf(UuV0xF4Dwvs9ZR28o#tZwBsM7VU;5~*D<L%WW!uCShv)q7IGRC0X<8x+t`
zK`K+&xPT@FG%cW60k?YC$<O{2&_W8w3plxeQwlh<fB^-xETB~Z-3vIQfEo@?Eud=w
z-3mCZfYt?5=WUd#Ljk8N*jCt1*j`8-9-wuUS|?#=VHe@F3dTvUjEywDI2}#qYEr<~
zQRrC!o12ne1+y^qE*L-i2>TYy#;>1ve<3$=j6JJ>feaR~tAIfToL#^zEMUQG%s3UC
zQ@~(V+PMV`Er6LG;3<I`g+82Dz_7xJ_3nJ`c?uX_z=#5_EMOvCE#M+Kd_}=Lsi*$M
z3SJ_-R5((|s8J%96)@ULE|+CSjj@uk1&k9PZzU5%X#6TGxuJlo3%I6$Ns>&p^2s7o
zSS?oKKUlx6fN54TT{&J~zzj)dTDh+|tAN>7GDl=?0rRZn#sY2<zu8KdYJLH4jm8ev
ze0SVd!0iPrDBz9)wzC2`^A~Ve0g(ct1uQIJkrF;uz}*EbF5m%cXGsCeEx$+PUg6RL
zmRb4exu$woD0p81D@E=X`cV&xKP05)Dv^hUj}-8zNL%&u$F0s21(b*ftRyHBDj;kn
zOcE;~UcjqXk|-cofU97#fRspDn6Wxp5l2{!+kTNJg$1D}q@TqCN-bxmPZjXAg3lE2
zTmjFEuV%Lt@k_Br{3YQF!WV_ihz5DRtl%rc(cJutyk5W?1-vQ#P66vh)(Y3L5k;8x
zZIL+Vf00cEY%buv0^V0}LjfDDreC@b6x_lsN&z2=Zxe1U;3IZ6TazrB?+?i*Qt*BL
zRQ-fqh1(1+LoXdazPo_WIGPGLQo!d0-J#!#KMQ8H`l5g@rT<j{Ul;IA0ecGgQ4(%B
zXk@SWx5Dp)`-I;Me-Kh_Hvjxle82EO0S62CS^PKQFT!7i)aPB^@8W;_M{-D|Si(mD
z1@rd8;R5dIY{)+a94%n=C>$%8-5R%KyttL(Wc9C-92f<7DC425hjJbUdpOrac@Gsl
zboS82Lq!jjJaq8T(L-eq{W_q2MKjlN(yQX3s)uSGs(Yy6p@oN&J+rpf^w6g)8hfba
zp|&J-g!P4Wh4nm~B*MF9DmM^sD5Ql(o_PU=gjW*@n+lr=o6}W2?>NQkw-#yXp_P@K
zDsq~TrrL;{E^I4oCu}d|`!>v|lZU+>%poV=ePa8r<D*Xx-8^*naE51|bo0E3&)w$p
zr-B}Odgi{b7i&f*ejlhpn5s9+?wR`G)tA*}d4CUQT0TJJEa5=mAP;BT*mFcU#}4r@
z)WbLr<2{_`VVH*z9xn8-wTpSV<()n_-@^r-adkK|(w2jGk%x;tT)~>JYVI$%sklV3
zi+MWanLDGA!coG@grhxNF2dN8wM7}@na%K6&*VZf!NZjvuJbU>!$c2Pd6?{BijrLI
zVUirahQ4XM^PGx=izb&pe@k<%hpC=<pfkTaxG!S=neO2h&m1<g7hUgRhKHG~H}3p}
zH+q=mVYc`j5A!_KuZOt`9&K;bcu_*U$-~W(Gsvrvw#xIhTiD6(Ka1S%VS&gUR(_|*
zT^<%%$s&=vg^N8b5xGZruaMT3iY)W6+)7q>xX<!2I#_tX!#DDW2cZvoc*w&l4-b2I
z#4|hO4?R5U;W2Wy8VgtxkF%e%>G=w%hZ6QE4?z#EhrEZ7hcGM6L)t^cL)1guLqe6-
zxVqU=#ys<G$pw6)rh{o~Zh(^<q1>}^=kFow!SRsu@L@gd>S)fgTDCA}vpn6MRL1BR
zJa`_S@vz!M(L<?+Cp|pn;SHDrf8LzN^c*}>*K7!%W&`PD;8_pPd3fH#8qb`+@pzf%
z$s607qr&PH&08yv_BO5XvnJ1ydFJr^We=~Ym%i%ZH4m>d3lEz;Z1M1>hjru4vDLBe
zrYEdr(8F6E-e$-1@V<u)EJa<j5nb=$U6q&P^gUH3g}g=O1A12MMh_pbb5<~YwGR)1
zlwBL{qAQrY#R(nFG0s*GA9?uL!!{3}c-Zcl1D3sg&2E9u+&}fO!!t$xnholi965eD
ze0F)}vGQ)u6zVhK=Zy96rTAAuz6rxvzRE&mho=vFIFoqzmeVQs|E1_ritjw^^UQl_
z-+QQ8M6Duz@bIIDpFHgM@UMsC9u9ao=;2onzj^qX6K_>>c=e02U@Oxyx2eCYXdLoW
z`TX6(pC0}?e*BP!BkFbJe|b18A^G1TL%0ffILf(NtI{!P_ThnERiKD6MN})IdJ$!d
z=+O`5i>OdEQ%bp_IRRjaW(g^&SVX0w`NLw)c$JH0-m6kXRS{qKX9sguQ=@2Vn@34(
z(Aq`RDdK}7HWkh3Yu%z5{*!pDsw_?_qJ9w#ifCBGeMPJ+qEQizix^YH*dm$~(X@!Z
zMf5A8SrN^P=H~s3B3cx2auKH&(N>aEia4!kIuEP5Wf83;JXOe(G$v^+-bOknl`|4v
z?G)@<M0@%#g^t2b!azB67U?3KXj647qPrxt@J2cGu)Jpxy^82vM4zI0xz5jpglheZ
zIJ1cJsaeDT>7P}^KoJhHK}DQh#1I8}ro^8Ro>RnN)(KC3iWoEw%!U1scL6jtRBGoH
zF-(M#pLkv>K1w*EhzpCjsECV;xTJ_nC0tt`t;>P;?9?AA_egkAepwNti@4lcyP^mR
z{n*DZH)LE9Q;N7&3ge5IP{fr*Or(c=F;&8=gr8S866#-5#3btTUauY|v#nKcQ;WE+
zh`WkdSj4m<rWY}{h<Qa^ue3K5F-v5IaAwi`nv$kUl$HgYUBnzkQAmR~7IBk;3yQc|
z<d!0C72z|2`67P1-&O?M@peg)vU!I%?c7;BQ6Y=0WN8t1i!Ux>NfGz3Ci(u4ZA}gq
zPCL6gVwrT73s(r)h%|VA5f2pcXc3R`vUT{N6dn?;D&pZH9#IXmJDsP}Jzm5U?1x1>
zRYVEBEh17xw1}XR&}_JfkT^Fa4DvG5auM+&az(gBBov!2A|sL%rZ_<474@@4I1>7`
zO5a!(%JUKyg@qzK5q1*au~H5$S$MjLXNq`}ZWpmyI?omHd=bxz^F*DUe2w_4!WW8o
zQQhOEB3|Ke;N&kkb7Z4%B4P`^W+ktSydh-lI+6Em>{~^=UBo*I9_ABUk#~iDXQs{f
z72F`)D5Tq)i`Y^``BGFU#fL>~E#jLZ_7w3^5g!+^vxr@qpy=DSqFH)4vwc!DtJ`+r
zr$y`#p@gN|UBqXcyNc#X5IZ)X?Jn06^M(5Pm+B|%Dqj`xwdG~F^DpAtBK8+?pos5^
zX0=^i6+g+teX5r4Isc3N$PpofL~f8)>YciS><kr9t`tAZlV6JXwTRz}_?`W>h<}Ti
z+S$A!{znmi7R|Qm5GNl^%YShi=jLDdw~)ajMf_v=QP#i$qjS6nl$uwn{Jzbx!<o5E
zDaw|f*mYCFJuS^vEJdYKG%H2(QdBNQl~Ob*MblDLEyY=U!@tx#{;pPPs<C>hIc};U
ztSMxWw;Q!fQKuAjDUn(uWpPp|8kC}8DQe9}{Zg}Z(gA<ZPtv@fG1#~i7gjYj&!2VQ
z+yVRz3m=uXD8<R8=vIpEvUW--PAf(0QnO^YEJZ6O;mbclz8yzSJ8eqAhGT=CUTS74
z3fq>VT`9I#K>Jd2?AAg0ly?;AREo}4(xnt##Xr?45IY!OyJh9`biHROdX-{%sabt`
zm*P+-^eaXGQqv-RO3_zxM)6?^C-5^%F{2bSOEG};R*He87*vXpr5II;vrBQ#|D)<n
zz;CMl@9|}x31z5Ih6eLIhRj5nGe(G#%$Z7|NE!{HSs6-n@43Ud=MLwN?-Ugwq%>0+
zg$4=bzxKM$=lA_T&wbXj&TEfn@7I3q@$BovEk5*R_I&8>LoXkC`^?#6cA7nW=;^~h
z$~G5u*){M)?i0n($A{b2n#$rJupe{CM<4q8%ovYjp52wq7AFtUIioSahk?we8a{QH
zbvnd{p+4N<!x$fK_hFb1BYYU?Gp8et7cwhR!&%o-%TWy57NdP;SB^<DIQx2*;aDH;
z^kFhf&u3=J<9uc?&yD8sDl1MyCirld&&*2ro9M$N@w<ihc=B>n%@~p+Qd$NspHB5*
znhy(nctABfUHO^eGfUY_g0(Z#hgtNaG0AKn?)PDi4|9Fy7F-JRcj3;{<9tu}pbrau
zX3u@4iX~DR53#7Z`0v9a9~S$})R=0(9k(Su(-!!SkNEH?m6O|H!ev4(4?gC@a`6de
z&2V=T*MEF?g0IGAD<pZ!ho?RMj1SLxe5J@L;cDR;;d8>ZKCBaA4C_Un_u&Ok@}fwL
zEB`*c%E9CwwAzCWKD@?JWdVLD!0S{wAHI*{cpRI2*vwx9Tln+g4c0;s6N7luhpp5r
zKYIJ|mJcl|m~-8o{HB3y^I^LWZ~Ne*#`<u=hu?g#R7xNDu-Atu4}}VYEG{3yKG;4)
zd?@hY9UmMzv5r{CKEzmYJ|u*{(fBheX&nokB;`ZehpZ1d$umOwrxTN)pS*uccKGnF
z5AXZ%fe-H~Cp&%E<wc(N#!zRu`0vARdD!E_Upxc$|M#=chy8N>nr6y}13rAA$Adl`
z^5L)#pVA0OqsXTz55zqAOg@>bBO;#*nc|l;HR24yu=K#+HzMEqaMY6=6Zwwy;z^E+
z{2=_%ho3}#_FRAQ;a86{m6PJt{kYPPQ$C#5<L^HF?Za8|KYaL8<S*eF;kVqVEscMC
zI7gG~M<qYb`*4A6*^g3w{OiMiwD5iu@#CTo1Gq9koA2kJJzU~^kvuQzM=?K2NS>Dv
zi~G&XG6+dNY-vBr`cY1gW#obK@_tnC<1#NSJ?H)ZFNVsBr-~n!i!jbB{HE?m_^awi
zHBZiRxXR<TMXvUvh9{}%M=g(E<Hxlgw-iquJ=XQ3o*&ow!9mycel+%@i61xkaid)8
z`_a$~)xd9>KZh0^J2j#o&6S$^(aeu_^23(W+>aK1v}C#(9r5#}e4bm$Lu)_Uh_n^*
zJO*9ci<5K^xk=d3Z_bFaraJp^vmagj=<3Iw`lc)F<~O}b4<Si+=D&!M^pqse`!Ete
z`UP=o5PeDf_}ju+3%B}ln;-A_vD1(KEPp@N`mxTBfqo3~W0oJY{TS@W5I-jSajzdk
z{kYwaJN+0(*UH8q3>t!Aehl}U;Sl@H5q^yHn~r#taI_zHh>Q`AWr^va3q5cgHQsMV
zQ+N3>(T@p!v-ZfYpHoiuhFou)<TqW_-Fp3dgw_mGK2w;MAJhDp?#EO=(lg8uf<9Rq
zjF!`o8Gg+4<IrFuXV1m40b{%0k2!uk;Kzf0a2h+;k9mH~SFSjX;&(<zn_~sH0Q`7Z
zXB!s!@sJ<SFo%?|P7C32szf0yQl&5Uo52r%OGF-F=KUtyOFj8AKOXb=a*+<BvBHlh
zRF6;k@stSbbV_wREzXNmT9v>`KUVooC(eRes}UMsd9@#FR08DB`7h16*8B0iAKU!c
z?#By$yy(XUKVI|WB|l#F;}t(%rK|RIh|DT8|5qt<@`qja>r|4$*yzV5+4G5w%z%>>
zy4jB{dcil8=X<#i=r_iEE4u&@wlDsejko>q`H^DzQ_cLa{0RGD`w>t>;K(ZIH(fa=
z^{kYT)PsY=`<f#{s{+%#I!Y)ij0xjHwyA_4u6R<2;-;Zx{K)$8jvqUe=bYj%Pz`cJ
zjX&o0T|M$eIJ98uRDfN6yzj?3nl(Q@@Z&>2zF_hCv760@O5(>SethJ|UOzte<A6$j
zAMMG-i~H4ls0=gmuP_(~{g=*yQq_5U^suz|Q$IfQo8^nuqfC3`$<iZ!e6DPq)c}%P
z+h6(dwIAR4@x344u&(_$#tPEl@F>mZSTi1=qQ+F+#|GiJA3yl<lOI3(@gr>`$HS$u
zw6qy^vL36I!_Az?`|+#atf-vu<4^hd&5x6`{C=GF<99#)@S8hJS#Ffj5Ru$k6&FUL
zd^P+f{~RElVY}n{j~{0x`Nxwp#S5$^8a)g3E&NC0Pb+GnrUh6iWTAv*6s9mA^^R1q
zB9^fLMJ<yh{)&kd7uH{3ilwB5QkH3<r7iPG6n|wz%33IAp}d6(db~n-ndhgXNF@uE
zJ;~)3er<axhAI}SN?uJ^-NKb3S6R4P<bOUFl|n5G*I1}$;W`V~TBvQ|mty81K^@Cz
z7d5uOMvQeW_(ZO^@KQV6U>U>SNAoP|7=1Rd(9pv77LHqJWTCNzV-~)%(8Mwmis2ki
zs5fb9p_zr|7Ft+nX(4JMW}%gZ))tmpSZ1LO)3tDig)x?Cp6x7jx6s2vdkY;b++?An
zg{~I5S?FY;vxP1eHe9@TvxR>AmPhAX+VK>MNdB?%B7D{b+%M~Cp_he076x1BZJ`hC
zyoK8=G%bl+Ec9gzii(MH3dtDuD#HF22GFS+2FjK3ge0do@*x(6TDaZ9Fbnj_w3uj{
zk{GVX5f)~a0;8gko<~|3rI#8lq=b=-wQ#3}*%t1%FwVkw3-?->Vqt=XyDZ#eVY1Sl
z$b`6B*v-U0Nx|>7@JVS?M5VhLA(LhX?z1q}!VIQsVH%U`is=>@s)?6}(>$2O#?lY7
zlv~Qb<llZ-m}_C7g@-K6voPPn0~Q`sx{RE!u)qSn{lzjYX<}n=3Lmzx$ifl}kFXfa
zn>^5Iu|n~cA62?z<{CMFuW;Gl!gA&ObqkMMSYhEcJw9RKNek;Nthex#g{Lj7vas61
zGZvn;Oi8YkH&zOB%dUZu|9T(RSooUu&B9s>wdBN99#C4;gy${1VBuv8uUOzKFw~36
z*h|7Cs^VAk^<^1X#+<K?U0l9Uscy8e$--s}Td4UK{Cv%oc*DY57PeV<)52EE)NDpS
zCe7b=3vVla3YkPP2`vi&3$}%bg`kCyg|KCGX_?L+G8C189R~@6I2KqzEL&!Sk?<F1
z^U>=kEVveu7E%`WTlm;QnsN(!EPP}kYawT0r-fY>3M|y&I=@1_V_}DdclC}GGQu9^
zjm}Ka8L;;)d|=^2W<Z{KxMiRk=>{ITVa<AZ*sI|C<cDuPxuj9N0~QWi_|(E@ay=w%
zJWOP3RTA_=!q+)s;d2XLP=)@F6J7J=JfNh>&)16l8{xOYqr!YtJpDxrLu<)n#y?p2
z(ZU}V{$x%{qf2T0#I~m4)6cYBY}8Z_3nwgd(wjd%{$}B%<m9JV!s5RR^B(?U-pZTJ
zQ;sg^=L}<3`TS$yoQ1;yd>X)c3m4d|0+<!Rzcl`|;Q=%Z;3BPk0ObRy5I~^-3I|Xo
zfU*G;3E=e+C=oDrk9}^@0Ez`J&EkuTaQTQYUNV4E0hA7yUb2W51c=qx#+##D0PG_e
z{1}(|+u^bRY6nm!fQkXL_EJemQaOOj1GqwuRRX9XQdL+jfa(D(n`$mvxl$6o-Bkfx
z9WbxSvG?_pP*d_+!fOI%$>LgZ4q_R3-GEtAV6oKW>!?h2a1|(Es^fa$4Z<6R^@Wv6
zqfr2j1GqbYdje<@K+^!m2QYz;T8wHIFkMV@l}w8OS_aT6fYyqCU;u3bNYS1L&_$$e
z0PRHD3p)tu;idpOigyxr_T<bYe_aE(MG?|xH#v0|_6VS-NH5QSZ;?KpXZr6OKtIp*
z)&Oo3?=KwS$(h`s00!%Eh;UQ@Lq%>E4igR+GR_eqBLiSUd>rk`?+9Rw$HxY6r}#Ke
z!c-14G74~4!1T5gRlJjg92Z?a5|abCH-M=DObcL2z>G2OlPjxip*P6?pfsj4-F7A(
z4n=0j15f?U4&eR(HV3dJfH?uo4PZq8PXsV8fcXJD5-^_(>;x7_RXA>>u09aJgL<U$
zEEIVtfQLQFB9X<yB|>f^J{rKO!B{GdqB<=L;IROf2k^Kg9~L$`#vc{_$pD@TU}FHA
z0(d%rXB5Nh%I&kNoeBDecVz&p0$5Fj;mQ91o);m1PGoHW>qORj@~tEBg7}L8ycEF8
z;;#x{5z+&LZwTPEfZ0{#W4lI1!ch%hnFs0l<32BE2X6%MW&j@suseXQ0lXD}6+j?>
z(G|=lGIwmZ1+YC}c2VCJ`h<nKe@C;RaV+=sf($qa9|RBzARK@l0PDgHAQ?bJ-W(y@
zSCqlU<HAJVRfjfH;@JRl0i?wle@0P}@W+ZH76kB)3UG(#=iLC_6W{4cb_MXh#~G@W
zPM_`x;G+Qc2Cz@HP`fSIFK|xE!EInL_6P7WH8Wto(qhlW*#uSVpqlfc06x)=l6w3i
zFMuPoHbK+~;`0E$2;iRp&IRyg0AB_0TL32m_&R`ZXb=MUHGppeX3ELw7)$=Ba(;{!
zDS+<-I3B=HZ1U<fe+ZZl41Z);9_i=YR=wxXG^!d1m65&W=YiDH6H>G43>CoX0R9Nz
z&wx3XvXL7QEUwX@U8OhX_Ak~*X`Bg|q}g`<R_e4QXQg{=3+Ds4KwBL|=^*|M;J*M$
z1W_`Givcr3U(v+$9SEXO5QT$g)0V%YK@{;g_n;{$7DRDLm?9tf8PT`R%@QalN@ap5
z8$`Jv$_LHLGgXD{g5P&k2%7Qp8BRrmru(R(-HnP&g<U`pl|{%e58?`sR}rZiL^YA>
zp8U!nuJSnRx@Hiyf@l&%(;%)1;@Ti?2;#;dY6np#h`K@43mT)rdglvrz4yAHIg>z1
zO<u~uH4`<EPs*cy5DkK87(^p3km^V$w|kCNK;xiMm<kQehYz$oY*5XDXdXoOAbJGR
zB8ZkjbP1v>1GdEL^Ux}Y)<Luhn$Bgpg0u}@+Cyo_cNg#ANp2G97(^$L&cd5LS8gkC
zcFc1f%w9LXi#D5j2GJ{sK0(|PMDL(k1fWTwAw4Dg!<|+R0Qv^u>t|lAI?w+E(Labm
zK@1LJK+ts1+ZJMA&@^xctUy~)14Dvl=WciqT*{`l3{?hh7Y-Bh1PFbO2x4UL(znT@
zf*9@bJAxSF@v%YN8N|3C#!E7RaR$vegu(eEnH0p`K@1CFcnJ5<DTue3+aT^$i7gD`
zp&+J+vjFcCnHt12k?F!2!kNNZ!r4OlzdwjM;&VO8yddU_FYqJ}h&&j?qf<;B@%L~L
z&jztl@<l-`7Fpu?e}q0gzEotH@UbA4d-BIcRs`{c$dkgSgii~f5i%`mEOAv3FH5po
zxW;pRPGoHm>w;Jx#PfQ5QTT%ACx6!cC6<2$6V)q0yc)y?xxOWQja4SHF^D%rHVNr@
zv&a_KR}mBTO+9WE?od%sxGjk7o_{Xpu(kTxltQQ*f)zv{h+xok6I+{`6+-G*D2Q+n
zb`X&uoFIM+;-s2YG>Bb6yiZMI0}LV|A^qn>+#r%7DNmjj$pn%0B<y($#MvI-31Wx%
zyTbQ8KRbh$Zs__Th!2D4Ji=s&zuiInAU}J8_$Y|I!ApJg(IEB(u|J59<@#w5pD_mU
zgI=76g80Pahef!~b426|sz+0N?zvL_B`sSJUwhuD<llI%-v-U+C(O(-Px4(5--{pr
zpM)QBvKLVHev<I#Ab#;&e-$|)WNDuY;xsK}2vtJ(-SbmCgg=7#Gl;(=xfldOCebrN
z{4L4ZApQyBoM$t69*>sxd=M8r$-hDT=W)6g3K;{)U;fZ|;Sh=_!lJ@rLdMVY)g?kG
z8A7R$xwfK$Coe5hCWNvfloO}<qW|(CW5-A?ldz(&l90m6B9|*Fc3zZJ4WU{H)%mhI
z=RnDoAv3TixhiB1v|k-UjSy;vG-Bk<4~n6d@IB3dt_`8K9yzdKsCpr@igjHG*GtHC
zxn50hLkO=_Lc5TeAlw)-jiNpy4548Njr7=3NO|KBnuO3agk~XAfXzc_5i-Lba$>$!
z=CM@>twU%dZ<LrOA2LXv?L%gvuR{noDcX)9^z`EIB+@yAn?<^K@~$Ct^LTfW9-&KT
zw|eQZx3EtLw}jBw^EohtejdLygxkdX3kP^|uEr1Y_}~zRhz}LsF3g`08xg|D5MB%6
z^$<pdFgk>(Axu*l-oYYOsg4O5LorrJa;L~R;rI|Hc=EeMCJHAB?`AI`GFiy5_l7V<
zykxciH&mF;!Y_^GRF4p5gfKINSs~00;gJv?mFN3~3#ANmLYN!EJUVg8$y?SNW4`Kl
zfwKC5a{ge*e1yVkrD8m!mwlMA@&2EXSv+4HGMg+*_{tna0ZUbDRGwub?qH)xkFkn*
zuC+a=t}7J(3n4tA3~&nbq{vetJT3B!@LAzX;VR*3A^oorc`k&to@AZK`VgM?BnPYF
zMI}UCeM#hH;VZ&dg&Wv3wi{*M7{aCyZnRO~#^w;Vgs?q~x5LJ0Kh@C81>OjmrRg_A
z*c!rHA#9_E5C()XklsS@g>X$6*M{Mz*$?5*5dI1w5JE7710fugZihk$hhT^Bu)fKP
zs5yL)S9@wB2mc|&LWqZu2q6_hIs{jRpOl~7vW@vK!84L%L&$}&Oef_ELU<>H_t<dq
zPQVTkHllaE)^v3t>|#Cg&=K&y=gLD(AByi5?h$?@+#A9^##ssbX;owfKURLI1AIJ0
z0~NxzAsm(G!yz0AnY9<D_-P2ANl4B?JMr@nzL4Zg;a9@1h2IFn@^*|SOG%sv;d{xM
z){h|^7ym(+w+ugt|1A7P_^YtK;`vRHoD`lCo(`GuKP&ooY5pHH#dAPaJQKp-A(ROl
zi+5Hr6bhqo82^Z$6P_1d5dIs&e<5?Z78U-YBqU(H6Gx(m;<-|VP*l7aW8<E$u!OLr
z<fVkAh22<3JpU6$xiHFyQ6Y@0BxjZ`3!64oC5(!aR0^ZA$mL;N;rZcaR=(@0DoHhA
zb>Wo?&KNk#y;_nQ!kWTb!e(X6yVnk*P8bctXrxTm4dXfyX1-n+$7GGkuMgt}$!`?a
z7dG%x;g^6^jK&hSR^&~DO~YswHX7bsk1d2Pg{_479pN@%v<;(O812JgVfGE9gQB`Q
zj4ol^B;HZjDGU}eBkU}~jCED~J;LZ2MmPECE+<R-q{LqIAV0l@eY_YLPd=)C3Uw=k
za~2@pU;IYZ=AbYJhcPXT>0u0!>)0^v3}a{*x9f3O7-K}3nc-oK2xFvPZIqD3!a^P`
zeupRF0VI0nZ=59e3CD*qLF6tWLroN!6vo}2<Q|d9VchFUri6|4rst{3bH0tt2xDd#
z%ffgpj9FpK4r5Umi<Qayg%1kngfUlSUKsO5*oqe@X6EeyNk-j=g(45Bt{)c9e@wb0
zj7P#)8a7qGN2lW+l`GF3F*t?9<zYM?#%9S^gz-ceFNr_t<$rA$Pl-P*d?t)%!&n){
zDq=aTk>}NH1u8~HNb;O~mM>}wc3l|j_4vFn{{`F&;x7tm#$Q$>uLxfaV?!9P@m&;W
zK0?N`F^o-;P+{^_MjhJ{#v2OtrZi`(IOT7Ju}u<ks*sOHAdFBL;V`T)0(32mU|3t>
z8Xt1*-&u9UbHbco+hIi5n#!2**hUVD!ia_u3nLyzB8*?c_%#eSjAR(Q!`P!lQ(?Rl
z#*Q%3VPwLWKIYBJDJSHM6o}BmlfN6r2YP%@xHF7hVRIUAFaHH5Y=&4Ie$#M$n0NKs
z_(x&<5XO&T><wdI82jb=c^F@ad>qDsFb;|z5`H4=ITeRRJ{2<c&qR)dQBykbr5=xk
z@m&~SiGMBpM)<ApsPF}84rAb3d@spy;a79aOZ_BH^0P=j^7(UcB8=a{C~c#Rjgw)V
z3gf>pF3Qj8FwWAXhw*#ZT${tNe}wU;oc<D?5&kWtD;4`(80W+ISCR`tssx>w9D9xY
zC(nF@jY2jG+n_6TfZ515y&^V>+9*aR8h>F4+Z;ILV@W-h67rFnT-HW88&}!5TEg-+
zD%q$kUO{-7jf(uK81wnR+{Tr1x<Xh*SXEd}$e63=opfg!vt7eRO-XJL))HQC;~J4`
zg|&rsgp8rCNIl_o!ftBd|JFB+jvtXVu+h*)%0}8oBO8rvJZxi;jV3ml+PKHYWE;(F
zG`G>&#?3Zb*l20vCL0}Xw6e{z()mGXZJUwga4yS8($+>hk@mJZ+}J^!O^GQIJK3hI
z<$(l#M9hBeB=1bH(bdL88<T8wv(cU7xAM5lHs4=Ry@@?+^t8=XrI(G~Hu~7O#l}b*
zqihprUmJsL47SmakCNPGV}J-<``iETzKDSyA0pRbo}Zy2w+nfsWVpx(?~#(x;*9N1
z8+UkojE%A4`PtSu@$sJP1TQTb2cEmQ+cx(&@fC>c2ZQTW_u80ZW44X^ZQN&Ls$OuW
zjcK;I{)GiQ-8NGv4tQozm$cf+)wx-=DKy5(Vwq!OE=$SAgZ8C6xK{BZP}_{s=i69d
zo7n_^+_hmqPRzNsw$L_*93HZ<>f*)QxhHF5iH&tO*0Tm}JZj@v8!K%rwXw{`(>9*5
z@t7)cxs4Z9gRQwJXM-(>zZD`+*m%;DJY{2l8{^6<9#+^ao6t_Kva#C68XM2q;1>-v
zw%ZGvGe|6rBh9eZHoJJNXs$FqZ{r232OA@kv+<IR?Ka-F@v;hsW%4=|k4r$(s8@v>
zRN$}K=8Q4zGyBkuHa5xsW+7AABJzffH*IVc=b@>$M79Z;I;Va<dT3)d4th2>GX<7>
zz(&wUh><H5YA=<6*|6<PcUAFImxv8Vu2CBaul8diaUsXgt|w25e96+Yk+o4hf-57)
z*(hKk*!arEJ2rOM*lS~-jdyLlXXAYvAK2Kb6nEKXrn5nZkoQX^Sadvl^Pz19!@Joo
zcyf$QnBRp7*@(#ZQ$1`Pvhj(H18i%BaFDILrfG)MB9<o?S`XXiL$J?nd_lrYYG?K{
z8%NX(`ADC9agIW{tUZxCzc#+H@q>*YZG3CvsEzM!9GC7LQ@wmg%~6f8)pX`TzPYB{
zZf$68$@|I1&(s7Pzp6C$RW_GtKd(!KPS~g#F*oY`#xB6dDI2G4l#ZAY-S1u*7K-2x
z8-MEYFB|{ZI46F_#@`}mg@4a5#(}@{HvW_3f{>Db>C<z)$QBW~<ded}5u->&JW0_A
ziisB&(y4?<$p}h$ei*7u1Z5*A=SeC>P+q)(C%G(wisJcnD~n$)yh2z-$h?g&glZ8}
zR(-dFzpEm+I)cs-+#ErT2x>;qFoH%A)QaGmh}j=(5HXuv*G5pAq>yPx6ZF<~BF0eE
zji8>$bwWz6kKhLJ8-?|S`J21iG&a}qHIAT31UE&{QP~(V%G_ewG=gRkG>@Q#^4Z?Y
zZA+0>5wsR*BW&xrwu_j{XZTVbJjsEU#-?>*<|~^c`s0+_E)jH%;DHDpWJO2NJ%ZkR
zwTRhX;koo4%0|zKxoCoRuU7<>2b&SsEfIr%*GE%s;;^_P=*LtdxGjSI5zLI3TNau0
zfCz?1Fd~A1%EKVxU@t#IA{Z)uyC)gOno^!eMohH#MogO;6~X8T?ueM)f1HqHjL6ss
z?i9%n*v3aNA%eRkx!dzOF@i}R=jh@d@yY*3GDWE{q5C43Dn3m(T{y#Y<!<t~yahCZ
z*$R7q<dTJ-6Tw_b<_YHu7YLb8o>*8I!9x+OjbL2_4@a;_WjnPk7OQMm>)n?`@Q7ad
zQQ^}OERA59_+!E+gv%r5aNy(OD}+4f`J@Po>#2yj7nkH2NuKrOD<fDXo_A%vtYL+E
zWj?Z`QTX+G+!Vp{%GC=IGa-6WNb-`%%MrXH@~Uuy@HHX*ye_gag8Q}k#qNL#|3(CF
zQXa$77`8_6Rs=6Z@nRI)BG@j&GA4?*Bk)CVm4mAt_#?0)DD9w(gFpnq2+l=tK7tS}
zLj-mNk%+mga6gw))fcc+a3VNPd1XW+h%xgKBqF94-W!1%K~nGaUIZyd#Z?_WrXyxa
zEfYaj#gfxw0V|rPS-AMGjCEt{&~c7;6_AfCx1AB}ir{^P`asAaAByZ2?h$?@<OV2X
zV@~!(us?#2BRHUpQSzn8LE$0cClMU>Tt5~0On4-M&qcoQTxkZs^7z*x-w3~r;HW1*
z7QuHO|6b(89Q+W$kIL9j5u8yu{H#Z2@|OsH6+a>TO?XmxN_bjGpTCRz5y79H<gW-C
zduyA2M{rg#|086Hu{mFe;NJ-Ti{N4eQ|6=HJbcgV@tc~za^T_^zcS{68b?Zn929np
zRbeVc9Mjf{Iw<CtGAu4EAuK7Ru#|)Im5ggy2jv`G=Afd3@{SqwR&cO*u(|GrW1*Wh
zj@{B0l^nAVb){ppy|NOz+`$zhOtgxFsvfT<Qe8N{y!q&uoplWdH648H;DCc#4z6)<
zuY)NLu60n`L01Re9Mo}8*Fj?kO&rv7aGir29n^Ply<?WpXH~`xjyWyBK_Ghyn&JlZ
zQyC2%G@|{IaDrSP(FxL~4w~_09kg@IK6`V99cA8^&8mfC`j?gtS~<qdwiZ&-hW<5B
zr1fsk0;!A+ju|{K+M67+&(hIBC&&D+Q)dS^JLn>QQb$txky>TlJJH=i4+s4ir-Pmj
zdO7Ih;1&nd+M>5(c5=CE&o~*1CCP6#SvY;^M;W`#L4OAm9Nfhm7R3OS_7DdHl|yR&
zAjh=L!45u|W5`gZ#lf(HVGf3~40W<)q{s-z+(wv}jB+qq!aIaxgkyzw3dae@3mJre
zEJB08Rf~yItw~D#ZU^^>OlIxqfC`I_o$q}PraDMCaQTi7raO4U!J7_dIGE{RlY`9;
zW+~wFju}zUrktC<4(2$R>tLRP)pDKhV1a{296YMpc|iEEg9k+x3Ry=FIhSr0U8GQp
zg-eA08y78g@VEnN?=s1m&&M1r7w7Q+KCW=^go7s?JSE{u2TwbAM*Laor}|LtUa=^+
zpT%NikX3T!awVf(qsX6Qwel#4gLNY0>s96?FQ}Eh=-?#>FMB!P;NTSpuR3O1pD#l5
z$YOkrt}0|oHp(aE<lBm2&1mzX;ucjgt=3itZ#mfR;B9KrU~H2<S8&Y1Aue|L9CMQc
zkIlp#^C`ODfhCO%2!q0qkZK%uV2ejQi6asf#vJo6MfAot#nErlLCV2S2fG}k`Qi?C
zICz(N7;5H0^pkart;n%0NL}9%awbCcE@+6y=Na;zS}1k(eFq;fs}6QMW@g83h`Ye_
z!1E`>Jq|un@abv}dmZdkne6w<@TKxN=-?17TNK5k_{70s2fsNu>EKgl!@)N+eGZN|
z_}sx44!&f!c$rZcHacdBTFsj-P7TIaj_Ja_W<bpdjxsY2zH{(B^HvCL8kvDviwb76
zaNNNU4t`Xw*hqhJ%rKSn2$l>h`ez5fu+pUfCxm>X{P*vt9GrG=!NI={{%VBZ9sEh+
z;14NM`>y7F&rnZF<DArqkAEwbv%-IvZhd1e&g<QoTYl8}pM#6E^HCIunoAKm!lY&*
zib7Fi*?Q>vO&*-%ai*e_lr|=UT|<c|N=8vFit166ilTHB6{5H-iZW4@jiOu><)h}U
z?`3l?Y(9(Qbeoysq-Jv^RE(lh6jwx1C5p;X^VtGZygX`DlxFs388KSds!>y(>-0GQ
z$(2!D6-BKmu8HF6C~8DeQ%TT?wa|xOYnC=wzR=8G8%6CX21YR`iaJqqZGv6dBvCht
zdQn^#HBGE%6uqLjK5FDQL~&yj^`mGIMMp^}Y#2oc@kUWJj-p8vP4(DD*i6_`*j(5`
zm>*-e5^o*7G~{M%ZKG%>A$j|#xtWAM`Mb&U(<zG1%&Po!6Lt}H^+M5eckv#=d<=}O
zH($r|)5nXA6Q8~k_9J?(w?)xke1IpRxAqN89Sx2e91=AjG7pWK26(%0n2?XdqZr}w
zks_m_80|^!5aGmmEMrjdj*FV3M4Tv%*W&~si~X)BCPpzSio00|Q9KgGqftzj>&z%-
zF&j}#VZBE&HHzs`%#hPGHq0x)@8iDJS90WxiX#W&>?rP!VxhdviDGUP^P^Z0#XMFe
z@BbIl8##XuP+|BN0P;-2ADtf3<HJHeE{d9j7AwUiQM9jOeoLcRCJ(Ekcr1$LQE;&+
zO9RfuAIVon%?i?rD4xiBWA`n|Q&BwaNuH79S-w|klXEs|z5*jzEe~tt`kZjBa9tGZ
zy|B-Fp<asOWmVtwm?`0|h44xguST&Uir1ouMBy-05p!hXb$O$a-x$TFC^kp2C5kuH
z%6w70DU!c6Yiks5ar_^}c8>fdXG_cvTJo21@zEcJC8t0XA<s`xWSQ)0Slo_ca3|A{
zqfx}7_#uiPqlib5h~i)rhoW$!NJf#1q9BS?6zM23QDoUFD;o<#<3khi&q(txFuyl4
z&HtS!c0{o=id~G5>;F-_Co9BmbcYNDdw-rPc|VE+vR5B4Io7PF;k%>Q<MEH8*ekv-
ziv22BR>8-T<g0_`jzhsuqBtDIS5bT&#ivnx7R47)d>O?NTB`bHap`j<F<IjxT5R3}
zz&nd*e0ZMln<&1G;=3rmkK(Aj%`0NAT4MixOxZi3K_)%(MD%eQG)-ZCisI)ey2sEX
zhF@re=`)6QF`S6vH(J*iO2=@L6|~UU=Rz@KmQO`-I*Q+;_(Rd26aFcr>t7;ggnvhI
zHj01PLivZqWzE;4>>TOmyj(A^{JH)k{4Z*Db}lkkGl7^{!RCaq0e3E9rri~ZnaO_9
z7>enUlHxIx@OViP8YSL6RVIdtF;t47Y|LmvIc2!Ku!4}OUnas4c;y%_kKx7`>c?<J
z3{_&rAlHeZYRqKpYCTqqp}OL~GInX5>MA|bBr+THUqjw%3Twr1jR@t}#!%bioY&M<
zob_V3E{5wR=g^BW+z>NsTpSb;sR<2YraPu~kvEK?Q4Eb^rolFep;^q#!JF!l68^hi
z^B7u4*fIt_wi41$Yx!v-9Ij>9_Azvb;iecmO2`3KWqzpA*1RT9wseY_A>ss%0b;m0
zW=4r!gk6Q*g!!>|&lq~eFffKeG4zh1K@;?0gfSd#W`-hEetz}VH->)s7w0rza}Acp
zZIbjC4iG*?%OAs#7{<nMXADDQW`l1`42LV?_Lzxkm{(uJMMelm3P;5-nk8A;sP`R`
za5<gXX1f>{!+8FRVVWYD5JP_rZ|;&lP$edcOcLH5!#$pSvdFzLOcA+HI914081R_J
z9y4ObGRzc`%!*;Q`2C(_j>uf$JmLHp7I>}?#PFcU7sl|A#~+Sik@#Za5>Nh!NKI+l
zvKao0;bIJr#jrev$75I#!|51)kKqY=<9V1E>=>S;8pO=yfltS<A%@ptcqWEtV^|r(
zs+gHszY;SevDGm%np&??S`#z&?YS7%#;`7CmZ@V6%+Yif<MT1R5W|ZxGp&0`o;k85
ze_5P_^-gcE#!Saujn+7ZjWN8%+KgdS44auxp7W9CEit?iGfUR2Tn?2<n8a2|n3K^B
zu|0;jW3XZf#Nf-vA2Wk$UYEfj#e;?iB@YSn@l0!DqKd@euwhaaV`dk4X$51MqkJzZ
zTRet@s?v>NZw&jylQE=XNV8$akd0wa3?E6(Sxio(Acl8h*b&3KG3=CtM(jO4wlxE3
zS|>J{U6eOBrTTshAE>2#DBLaN%!q19<>6?D|1U<eKZcKE_%w#kVmJ`P!5BVK%yi;+
z+=o2QrCLf3$IO(9<VXyki+>%%7x|p9+^G3-r3cQt7j!Y#RDL5@j(hVF9*dc7`V{p+
z&E)$Sj<fb-_%UYY?<ZpTN#*m4m+sFov)jV3{3z^K7RzW8&u{DkV&*e3z6)Q3&4E|G
zaPGqf`v<LJ3}<8blS2X;e<{)#AvG%8(Cjh&6T`nTGi5lZv}lpe$IN#k7lgIjngIii
z9^xnzHx}u|I10y6B#yh|xF?RHaTJSVP~7CCc--{SCE_R<H#-`%nM{Q_DHTWQxUn{6
z;;0ly<v7afk&<#E<%Jc5m&H-hbA5z^|2VFQqhlPM;;0fgT|kXEYQ|ADj%smKm*i^U
zl|p*BDsDcNCHY#|mLGz}(I$?zaa<F}wQ<z;d|oe7M_5-_FOKUxSKj!_NN$MZ#yIN7
z(LnNM!iK^|!p6cT!luGC3fNq{g|MZtm9Vui@8<>`J#7~UcL3YR(IJkT<jQopBX(N(
z?;OX?arBO(PaIu5*B&BWh27%lF49E)8MbE}y(HP8oZKQ#`M@~(iuWVNahoUaFOpAg
zfcVgv=H2UsFgR}XYDgSI<G7vqjAL{hcf>I~juCN;jAK;XG=C0exYohZ3+ICzisZ?d
zIL5{?F^);`OLzWs;~#3rF)ohraZF&1aM&*-q3ROZviM_v_x@!jlF4!08^?O;RUA{|
zxG!$z{;T4q)l8*gaPFpmB$*b+^f+e3F*A-?aXb;nlX1+B<Ni1vj$=_AbEvfZ>_s>?
zj(Kt9_aNp=LZ=0BJmB#MMY#LG{5<6G#Ujh7*dj}m?MK8P6)qJr)N+x><5(fWg!p4r
z`4pe>-gl*3pN``h5qfym^Pf+eZ@M~;HG1XeglmQCgvrXLC>HV0U*hKP7-;8d8B8w_
z$IEOf>__5wBaS!4UyWmf$ZNvag&T$Rxham#;#)ik4^M85n}N;VIQGTymiV?fw#V^y
z96o9S2ZKy54l9lwal9KxAdX-hZXC%tLUDxUCmx3#M<k9|+)RQTVN}S-DPcTB{<zOh
zo=~XSrICsw9XGel<l^Q6nT#+iq>z&0yn7*zcjSjrQOMtWiups~&Ny}{+waHmfh0_Y
z(<>sgu{(}Ea{Wk1d4A@_sP;?pNgN-GP;wxSgW`vT`4e=MA7;r*@|oxJh{)%0eBnvH
z6!}W{bsXP_d@DREJSO~3n2-5~IDU*{a2i9>_$iK`<2aST>4a&Izr=BoubjZIYzu1a
zC)8Shi{qr%mQUr|avZ;l{Nc&}jN>nlpNZpdkDnF!M|dud^Pc>I$iKq>gxnn{ltAGG
ziY8DjVHVT4*i|H9763~QHtSc#6Q*H4oG_YGB7u?#luDp<0wWU`l|Y#U$|g`dfjSA4
zOPHR*tnepLK4Dr%g@ox`E=!=INTmcW7oo7S$esKbc#$f?s={hQ`l+5U7rv1&s;d&X
zI$>5VY9!3XbTt#Gl`z)nngp&*7-PkfWamf;dEEr+CD1Zq{@jh(zAj<RT{C6rdcLCw
z<Ge9}`W|n<R~B#NNg5~6M7*hx;|&IBo<NJlrL)BOebQFSZR-Tu(3|)z3G_{%T>|YB
z=pacKmSF-niFXw8r8*_h+2c2hl+=OVZVB}E<lRMj2zw^b%ahY*AMs)e!r1yHFj$gX
zg|`X&3+XyQWMBe=ME2{9$`H?WXacu;e3;1a1V)JDvotz^I}*4vfpH1k$B%y#=C<Ln
zstA_JhWv0Vfe8sbn83mW?n;;?W!f%YIx#WN6SzBpd!+DF7>OdEoWOzdxL2Ixim3@q
zOJHsS^AecOB#Ocvj5!I+Q1#99>Sa~}v&HWh^22TBVWURE^AlK*zyk?0%i~y)i!D@O
zI!)(NRdF-Rt45=gFykoJDJyhQ0*ez^lE5Pgq!LIc@Mr={6WEx*rUaHH@K^%t5?C(<
zTb{skY70}i3Y5SKy$iMOi3FbX_){WJC-98Ov%;00>nf4e!ZpmiHU-Xc{Xc>01{=M7
zK4Ch_7nBOWCFBsD@xLhlFD3A@7tbpquL?H^UlYEbFdybH$mRsLBw!~HVU>->8wrHj
zS_|V%y$Bb9x3VGg{AU8&M98-%@OA<|J^B*}iCDsb@FZ^mN?iIAF8Z&b44<IkO_(m5
zw?-!uh_diGK2$r6Cy-zZ)dC2ctt(-)t+~yKIm{%GP2dn)C@VUFf&}&_@UgNtur1z6
zU`GP)s@|zctgrVH*qOkt1l~_zPXZq$@PS^LRlhrd4?W$WWhmHe^nt&<33FBZK34HV
zhVaL~$T^U}K@~;Ox6GW2y1`=@Y#@hO^0dGSoJioa1db%kA4z<lz~_qj3#G;Rd)?;v
zQv567*9m+>WfSKRo$tlp(FBf3@?GN6sxO6nh2shQkT91K{g}W{B0neaiwK2R>-uOS
zm&JZdm`$#ea^ifAox-+;_&tF?5~!Or2JO!T{$h!__}Imn1pcN<yXfiSYy$t#AiF5%
z;#>mfX{%k7c5xwre_4qxy0!&dD>L(7!rVJ_F~P66QOGq%KJwPAu!|xtin=J~n!y!^
zH?*9^U6k-1Dg0aKY<Yzdoyxf8cr)iF+(aIy*Dvp)f{RWrI=i@xF}tYj;&Rt4@p1XF
zl8ZVG%*>as%$=z#TyvKx^{0w!O0TL?spg`(iz{7R<)Xcd4lb^CQNuNb+0sQ#7qwi|
zz&{*=Yg}CGqOOa2E@~@m9oMvO9`<HFIpE>s@j4gRGYCzAiyK_r=%SH}#xCl+XyBru
zYy8lETkX?vfr!P+$0n{BZZ&h!T%@TY?=L@er4u7(ob2pcxoGX8jcWq7b4{60+uO?j
z#8KvIN?JC)+NZoZuq<v;Y#m+X%kX9wT^Phgch?MzyYj6I<J*m9EsoZJ!*BLzyn4OX
zT=a6$+r>Ut*HSSp7caPY(M4Yu{anm)F`EVG;x-opTnu#0`6BMZ_jhrqzFBjaprJVb
z1&{4?kc+{t8D|c0F_h_Yz^2>|V;yPNa=42Tl8hAI>td9P(Jt=LBMWwdi!mM_D{`lc
zaU$b|%hsCmze{|gaFUS1yItHPK3PaxO5qgM{(YXGsV=5@e7cJn;xmQ$Q1`o-<6?=6
zM_kNxG0(+{e&+Av=ex#=Zd5fbaPfd^n%jde9u^^A=;9%976?0qMdEgQEOyQ8m>wQg
z4C`GyuPiNfP4}@(_?U3H@NuRn!cOD~7f(`Axjg9NX&29kuX3^4#k1mcS}8K0U(JiG
z_2kca@^zksewdBU+K^?ymt4Hegj{TL@rsLAUA*Svb=N4y24#Sq2+Ppn3gk$06&~#d
zf16!wp{ls}$i*8j-gNapSwz>Y7_jOKRG4ou9v9nPyzQF3TE|7yh0lfGg(VNv+mJ{=
z7!-0q8y2yJ5g{uvf4n@8F$v=?5-wcvq>GG5%0-%buA|_2%(}?QDIb=?cU<hCo)p8o
zE_SIR-gB{&3SS<T`<fp!Hn0lbckzK-+0iot?B91wpZOIt_e%D<W;>e&wOXx-LD&)x
zxH!nxku)RiLoPmHVRD?AG*;*^?Nt&LlSYL;Wdm_>#Kq?>zHo8c#qUb!OBY979CPuN
zi?3bt5j}%{<AURyZ-whhn<?9OF22{}DdBM!Kf3tI#Se;vIbp5+?D3N>ei8rGlbjIw
zjqQ#Xe(Inmmvk74Cz=0n@uytNCh?a@nWS;zj^`O#6?OqG{!u{{;Y(=@c24hjUU<R9
zzb^iBanWUmjY3HjPMXCfzQvk$2(>pWR4h7vlR_;jnlxs%nBpleEFml@EF~;0%)d3W
z$8tC^80D0u@<~(>p(}rEN0sE6Ck-kmjoG<ec!iLURYa-^t0`c9MefR^$=+4MtA#a^
zs3}rQ$Up0$hij9loiu+sStn_BG%{QQRlV0s;<_ZRPvV9oK2PC`6mCqSeiE;x@Olaj
zl4zL3V@WJeqEQl!lej5~j!860qG=NCljx8{vm~06b3$4iEt2Nw4wGw>L`%LP{{>Rm
zTFA%YtXyTjo%af?9V#3DIHpfK46Te#Npw!4OA=j^xH)MIH9rKHF~a=mTXl9Q#f%Z|
zmNYj6vPpJNqDK-vljxO1?<A&BZxwByB!(n0l!F01GKsz-{qm1V+$PdrI6yd1I4Ft1
zBAv7!I+Dg;k7I?ygp6&t$Oz%cBu0sh7TzHoBRnkyqyIbgI8HcTI6-(<5)(xxC2@BW
z_ppKnU~&@oN?48`S+kSntcr)D)JslH;sH5L6HXU0{uv@Og|mdSlek}GP7-sII9CYs
zl9->wf+XJ3UC_tb*YHe>&O9)N2jzKT5)X+yEL<d{>*6Gqh(D6Vqe%=Lf~83;OJYKI
z^Qi)-66`~{q5OCfE0QRYLdg`KNaD#PUP<EBB%Vr|%H{9ENIadyGg8ZElXxzPwMnc@
zVpS5WHF8@c%zrI7Pn(i7T<el}K8Y8SSg$<fM`ACsZPNY=nL~ce^|Cle)Rf;d3>%X8
zE@_sy>G~Q|Ok!gao08a^L^O$55?hp(U-*XbP2pA{hbwO-u}yrtCwW`MN894v$7@Lv
zNFpc_5{8AgFd}q>`B3pB5=k78#7!cZ#E0T3A=BNFMB3vSk*qK$EJ)%V&-E<30P**P
zJ3aZXB;NP<2gysfnC|u@dqh4G?iKD!V!!A5vG;ZdlQ@*bCz5|DJS_aw^ZA*`5#i@a
zd?CUt@fG;{N{?R)zoDrVq5NnP$2?BY-zRZAi64^qF^S)jIGMyxN&K9|uQGJ`^}}Dp
zS&!@&PN<giJ>#h)PV<pwipM^a2LBV1{E@_;d=WjKVF`%*Eu@*Ehkrbu=S0pYaY5u?
zVf_Wh&qdD<QYfTUc##6-MZ`&piWEzsxCna(3QMI>I)y1I+?PU`6nLih#+0#IWm9JK
zTP}t2DO5<|vXmLeUY9~e5%L-$m4ua3xIBd`#H*xGErsghRfP+x;z|*Qx+;Y^B~4WP
zUG2Hn^jvGDaE<u2!rH<*o@?C{>WO#dSdoYS#c%Ljd1F%jl<Dppq|h*hMkzE-VL%E4
zQ>INdNuhNLZBl5e$7Vvxo2Ssi<1JHYC7%C&xoryVQs|jNFA3WVyQI(|g`31XrqEf0
z@pMXEy2<2bN%(01g<ZwF3A+n>2-z1fiQXyGDfIOuee`&XFrR^ba=JBz+eG^39~E{`
z3WHOaB+o-6AC<!B6o!i5p2DychKrB%LX8k%#`2Nhk-`{BCJM(2CkXEpjuVde-ixnu
zmn00HkKt}T-Xo;z<P`4pI6cG%VJhuv3QwjmP4zN8g&8T#WKYfcdkPCum?b`2c)xIt
zkRIlyFi)K0nf#FEffN==@}O{`@F5}nKb*ScZE*@qs1lz1(bT0qzNL~Z6Fw$f?)iB<
zg%w`TX|A72;pvn)SKNaq|5JE2g$*h5$4o2LYMxKwg%nn$usUVF4p@`Ib1AG%A>Y>6
zpw^|Z-fMCB#!GLMznH>HDZDJFy!@5_!(SDrPbSK=Hm0yCg)J$(!Hkv0=9F3R;oO{W
z%9%co%)OaHLCX9EIR|N5Q+O+dZ7FO|p(qFWDTGsaTihq~3+ZH~%pfq3LQs;;U5tNQ
z+({uS5)l^T%8y7Q1(($)p7);=XTWR<DUYW`GAZ-Fy>!ZX^1?KOJP4G+juhTyDW$Me
zMSVDhT_OjC@2BuV3LlE^N#Uauc8h<hfkaR5`=-4T?i21$;bV~l!vFa>l)@*HP$$PO
zz^CHu%0Cl1BIK19U$XjWAJQ0@#@8u)!;xef_0#w^g`+9_k;0!T982LlmHh81d@mi2
z>6|vl564sZf%ZgWi62w=N&IKwFT!7iCxrC&o5)GwsT59o@?Z5QdUd(;o5GnC%B4|0
zjlZRtOzT1lXQ{w!^1^e%^TNgY%e;S6_)m`)g+<dq+W6<MP#T3jUPOdv_=}}cT)adY
zWj)uDX_OLYWtC2&3<G-C_vQDw7+Zxjs-?}a`LeXJZ2VPBqmp=KPjWd+kN5wlQALEj
zYTC^ENUEoCW!ju1xk`AQ@ai;bh}0C;64HQQlQw4jT4C)p>WENMSEOG0(iL#m%l{3+
zHEm4f4bo_sM&mS^q|qpC&M=%DWO^~?e;QYb(`ZJ|4E`oKp=h2q$1vKZ(ISnOX)_UM
zl}4YbXp=_kv{@RZq%+TiGq_yI+o#bXjhpnoUDD{9M#nTd>9Mo$<}~;Pu_+v_y>v^X
zdm6pv)FX|aDwbYCUjJ3Cy14|5h4XfG6QoZXx5#H-Atn7t#5o1NEo~;bpJ}#ojEgp9
z!9%%&(&istXj`W6<bN8sr}0J_Z>BLUZQgncgXkTHr!higq;Qmw?>;(>JH*Eb#|rNh
zjuVa-(&vOU?(+D=G$x7P?MdztnViPGo`eTTrl!q5AUu%9gK11lV|p4h(wHd~Vum@l
zs@ejx(xwNToyPrX%t>Qz8uQawkTwUi&lbkKwAo^&&-t9)=<B3wbQ9^qG#*Oh#WY?@
z<KZ+Gsfbplu{ez-X*`|AGif}M#-nM|BRs`8RcK39Cd<-zERE%9Jf6miG@eMCzenWR
z8%|DH$O}gsGtTolPqH0prtqlF(ed2ivuX3a$<hX9wUBe(RcT{6H*)`%>XbIq;pc=T
zYtvXKzTT5OFY-bfwH1V;%9mMI9OtKvJ%1&QS4GG-$R{h8Bgxmv)e<)eHw(A?pSHO*
zjknkabEurdwlub<aYYtYvUocUA9I^ABU^tORvNoll4)}iCXhx@?ShL5<FtelN+X<x
zt>z!0o~Q9n8jezl3S+{;oPDQ}5O;-1VM>@5W`y*aO(Q2x>%m9<b}&xhJqh0xXOrBi
zMDu<=NaI7AhzzdEV0RjO(x{xl<r#dG#$GCU8b745FOB_ae8c9G#>Z(KNaHJ-?lcZc
zVYb%5muVbI;}hw_VO7xQX?&_jwx-Y0IFjd8O>_G~9$1OPxfGz;I&~m4*sR!dmFZ|2
z$I|#NjqlUueoh{diWI@&nP%l}Wg~N5i++CO<}dXmgF+enoW?I{Tu9^JG=8PRw>8Um
z|D<su4Vs$Yl<vv&rDge3dOR)sJ&ix|x#C7Z8h@p6Mvs4|aaM#&&CD%-T+*QpJSRJF
zK94NZ;`ooDO5tMK*a4p7Vtb*LE}TJ;42ot@EMr;$Z?YYyV;g%nnoU)H<6m6rQ6htq
z8I;PPbOz@bIahTuDC6<68I<#Q`3x#}{4$Y>8N6TkQYexuGUj@>>KQy(3{^6w52~6$
zwG95#t#Nc>iE&Itt-Csd8X0uUpnC>2GpLm@Uzbo<Sy0zxaAOAbGq^T`+8I-Hb%fUm
z>k8}TCHx}^ksG{6dTx+G!wfoPa8m}2ByTHhETo4f88r2HvkaPhyoE^13|fh_7Pb*~
z(w;TLw#%TsB;?$fBX-o|&3SLa&KYy4l1}_}$)Kx*JZ!_q9vSq^U}y%nXV5Ey-WlAM
zLH`W;up%<(n?b*fxjLXoTXXu3`o_T?EBDrn>7+KQW(Q<2FoQuE49<Z2q`WCBfA14L
zjB9AVVHv_w)y)ILG8mr0_zWhnY%>^{!5tZl$zW6lqcbK{%l4*%HfZKshr^@{X3a4-
zIgHETPHrk_sqJyK3+mEc8BEOJ?hNixW-5-tqzwMhf4rWRPi}KC^~o9B%Nl3Dlfiu%
zOwAa*Wt$>S6Q3@eA>@c?rpR~gFgt_$GnkXX+zggxuq=al8O+b%kqjQqnAcp8!2@h!
z`sXz&`GZp3g&91g;(b`SNSNQ?UM#+Z@1lQKp~7=eJ*E&!HpF8YEYINO3|`4#Uk_8r
zk7vxmrxh7Ik-?K0)5K_pS7z{(I3J%Dc}DoG@PPcR${6dtTDV5|Tn1}JC|{SsdhzEy
z$qOPc3SY`xI+u8Qi`hbbHG>TqyhbPL7}vP6X2F*GXd5%wl)>f<wy+f!$3Gdok-?i8
zyqCew47O(QRtC`wVi|19V7rQi$C!DP@on*d&?oc@EviIW)7F9+gd_=P5D}r!W;XO)
zhT}<`(THb|pk|ge_2_0y_m`DxQk;(|ku=NPld#jw$xlHB?}+RWzMHvpV+PaW8u%_6
zkPN<-8hnt!hg7`cI4sk_7<Ol{hxR{%y$XAf^_9W?3=Zg#`C%j<i<9t`dBTe1kSF;h
zWBxFd5-QB68GM$(5he7w@JrzrG(OVLuk@Jb-(>J@21heEmcdWdIyrrp!EurAg*3%1
zjUU8+6f!K$>@OMo%BGRQpBbFU;5Rv)R+dhRpAzy|4ukWH-QV@dZA$(q`749JB_TgU
zd#le(&SuQn38u(}@pE!LpTUI;{`Gto%i=%ri=KoxF%`<12n!2~2#X5y?^s;CgpgNt
z(Pt^~(!w%A3d?3uE^8Ezyu5@JvbfB1t(Zk6k5?ACT*!@ss##RaVo(-?v!;zy&*Hi)
zuFoP`8dqj<RTfugQ6r0*S=7y<UKTGDGrbarUbV7jH~E?@uFaa3$Y1TOIsaTIi&gq6
zkh{zjvH;l;-;l+PS=^FE-z@59(IAW7S@g-GVHS<D=$JK|u&s6CZU>j9vuKh<)2uPY
z&9Z1i*DRW6(L$1zS+vTcbru~)U$Wl3K7u~;#=ITn^44BRdA?J)NspiC$V#UyIx{nz
zo(sDOy9z1nmPL2*9-gG9NH5`X?dQ^ja$SpG*!5#EW^r2<{rNf^d$h&ucIIm=o~{{?
z#aHvqXCMPrKEw5`;*czcW^po$Q(4@e#jq^0S>&=9p2dhPUd-a9EJkKADvNuwn3Bcl
ztl8YZBa1Q2vwGyQS+kxtA&a}RxRb6~jF$xZ0D(wX{w8K|kL2W&vbfvhQyUu(le5T^
zcbl2`@8e_EoG6|~^kSQy#f&UwW-&`nbbT<3+2Z#L=LqKt=LzQv7YH8^=5w`B{2?LZ
zc{qzj9$%cr67ffbk9zWoaV!&mEQ{sTD^I>EixuKe2%i)_C45@=jPP0EN?|?^tHqi6
z8j<IOYqMDA$=8cKPYw4Z%)`rByh1%!;lG;2hAg&o(5^~(EsLGA@Rs!I^(;1Ku_=qq
zdSn}+;_<gdk8cRy%wns^rigLfrbtLw{zP9Efh>aZ;1^oLag7iXiFp3QdbEXn9fwWT
z^O=t`t{O}TU9aAgS)@Fk7Rf08REB~q-pS&ZEPl;mM;7m9@j(_JO84H&Vwb!zlRG_a
zd|$~iEoOVS7w4B*?8)LIJ?_mKdw3*^eV*(7EIt-L;7JaO91?z##bJ?8g`WxY`pI-Z
z&*BS7m{khDQaMomwa7PFd@FL)lON0CJMr&@$Av!#e-tw8Pa;1H`4%ViF24y`r<CO1
z?sOKvXHhtZB013WA6Za-Hj6*A_$zB9^m#@|^0x?u|73A4i}NbC3t9Zj2Cm)e|5Pj&
z^)8*+gJ*%9iGjaDIUE>ac+nh+<xnn%@;TE^i|0@}XVk2OkU1}zGcC829_gQc%H)jQ
zF3YJUKl5ZY%`*Ng<Zzi{sF*VryR+1cm2!CwSLE<c4m)zj09MK2?i}vPp=u7*B&jYO
zE4(s?t8%zHhZ;H5%%MvTU2~|F!!<cH$)RZu*XB?=hwE~<K8HFva~Qa;Fn=(ZkM+FA
z8*;c&yipGIbKsfb201j$nRCK<&y?gzV<pW;X0KTe%@wLs4lQzMnM1oA+UL+Jht@f?
z$)T<1nf{p^V<5@@Iw;^xIdoKVbj^Fnr_x!jl-w-BAl-84p2Mv<+$Kqn9D3!@TfC=`
z0sDwB)Gc1ReRJri_?cV&=%;@U19BLi!-yOP<}gS>ZqH$G4nq`bsQl+M$*4#ekYt!j
zgJh(a${jh3%3-vZI(^c0jOWU<?o@;fK2Bu3a6%4uiA)qu67mo@y-m*H-W=xSFgJ%O
z%w!|npTmWYW@+?3>Xo!{nsB<OnKN>jDLzX$Tgb8cMoq@M@vKx1^K;mm!&^Bl$l-w;
zUdiFr93ISJVGa-F@NmvtBft-oIFl`{r6G=>IFebEGsA<$IV_=~=FDv9(Hx%4;VJQ@
zIV{WJG4bU&GhL+z{vMZPh42X>C*71kox?gcgl8nA<XMrGEH07N!ZpI@glmQQZ~fMb
zKQDYi$QWJ}c}e(k&RnTM;f5Su%VBd4TbNu9eqHBMs}VL*8##0IVH358Gs^a668%Qb
zd`iHnB3tO2IZS9|CjQ%U*iJdsAcwbe@Z}K7A<RZpT$98ceyIRUg~JE~IRq7R{ze_n
zHMoFa=gg#ovyWr^a3F_R4%r-XIs8}waaItQm~??dLXo(_q%f5;YnW-_Mg9$qPG0eF
z;P^r)$eBZK>`-`C=iMCMV-5>I3&X+HPG+wFb^&(f@IIaRe>6EWu$f(e4;Ah19QNe!
zQ4V|A%nMMz0Q+*-pF@cPlq|r<G;YjW4nO5^P=#|OhtG33B>stzC3aZkQ{iVqes1%H
z=lV?!Uy6U_Nxt^{FzmNE9M$77s!9&uiyzP72hUIb104D!`I#l0!{0fa&EeM^PRP$0
z;cq$oE^<;x|EEMw=aBz==?_o-XAXaPe9boSukPsiA4&f6<mW`r3oqpGuLwQU=fxaQ
zfI<a^7Zs8e7AYdkCs$0oxR3!$6`-_u?E;i3K-mIZt;cc&C|`i8;*6(40V<1MCafr|
zB+N%kKbPzA3SpH3<a0%NwE|R^ko?L5T;=h6z#0XpDM>BiHNtEEkDof?b%pgj`E?@K
z7vKg@!sHqhpkV>}7hpgE8Wo^%0d6Wl#{x9*{In`SQ}JfP=AOJo0a|)IpR3k-Y$I$d
zY*&ExA{~SSRXcp6P6g;8NoV2BLdv@opsRSd0(2K)%>OH^o|5z`K<@(le^h-36x77`
z^`$DkO0i=_x`=`el%J>wid1Q0!2+TnpmYHRY*+wAK~xl_ND~W!4P|Sx*<_P!0qlwe
z6~r!J;k$E}`1wC4=boE4B~#wKnaoTk-D9{c3e_`)9^!{eFNQ1rQ<4<+j-gKsw?_W^
z#xN*`!7=oUB>hDO#Bfz48Tg+VhQx4v48vm>8o6E_!>|~xiQ!sFt`q)Ox0#n4Bpe~U
zQFv1fH;d4<{0ZAg-QFS`r6)G$;41PnI)*Xgw+qJ##|g`2LNj<r40pybA%=-DOp4*z
z7?#E`Ifg0n_DBp<MP>-63HkK9Vwf)e?@Z~;819bY9tmf~@Id5qw#Xdey)oPu!~No)
z@Y~YLraO30w{wLL2_F`g_u=zdkH#=h67u;X3z*Xw9v5F2!=e}#$MA%1pA>ejVA|tT
z;!g{CyM(5%fw`WM<lp$8i{XVBUX0=S$mg=yp;HGLYPp1KV^|Tnu8d)o_)Egok$g=I
z6}1SpPLlP)mxUXIuLxfi9;Xy;tqA_$iLcC@+<qg5O)+ea;msJ5F{EPPX=!|Gcq@jt
zV|a&h8vK~)uerVd-I$r8<P79{F}xqc))-<j#A8Urz*(Jf+7Ql8he0@z&biGO>myCG
zAH&X=+5gP-Yn!&6jp*RPjMC!>vqD$s33Ea&>9QySb^$TuV<<@YSqw!HI(;lsieXzM
z*&f3V@ed-&haw*d_g6F#eiFl{|GA~)bKQO+<gSS?mFur!rbjNXz3z(P+Zblsm}BF+
z7`~@%N#XPqcE_+s-qH#D5X0UWmL%|W0zby^Qw%@H@k<;($M8!GW8<b1|CP<33!`xy
z9mj7m{Lbddk$(&g<A&^uVSfw<V)&EBIgVNq{v|(%<8Kjq`zMBjF*Ey0POKnr72~KR
zQaO$)B6Piy|Nn~kVR0ND@oFN~g*AkmIqeg<HV~;JtQ$wYNM1jF=%I|6{D?^2D2~SB
zO(IFtIF5`seX@j)5uO(}`g3d?$Hj4c9L?gUgxd;F5S}Qc@T53Sj`%4er^eA-<TPOm
zVM}2vVe2^Bh;XHq7b9t>Tawe`XfJ+7B<T>xnc`<fl8z+eXA94X<mZa;tjP1@=p09v
zI4+2r7o|~gTo^~!xT(<Vg#U}<k~l7n<09R56Vml!=C^|J)}4|#hDqKdj-KR|jQsM*
z=RlDwguR4U#?d>DKH`0a{o>|Fatzf!ZpPju1LC+!PULhN6!F1v3=tnHygF{ipSyLA
zF@0Vm;k9vdVh;y(lw8j$lkf&1B{#-#llaZT5yFv?>n(9}${fAj8pmyMj8?IX5tiqX
zZjYM*A*VrDT;t*xAIBYW+!;qPj#3;G;+Po6k~p4@V^SQG<5(QWQ*lg*V`?1pnDI`S
z7B@#L+#ffu7<a`nU0IkRyjM6=csCy^GD|pHI7i4V)7lg7)9nG6QR@S7JQz2G*Ibc@
z;&?ccJQByF;+&(V2U@fFaV&_N0W;U-AB*F0@r6PPpNQj0@kNn@-vV%HY->leEx{ag
z9LKY4{&6geV`<#{gYUVx87(taqZKDt#$Sk=-y5xpo3S)C_Qg1stI4bovIVV-ADW(h
zNea0-jx}*`fW0=3w?xR-v3-fZ97#6B@rwAXk>s^FUXNoVwMddpacmah`unvU_Oqxp
z9ZD13g{uH^dMA!|<Jdy3+fev^9H}_cactEspB{@NE}n=aNfCauXo<Ly+!o2i;Y5<G
zNaqUhL~@bbk0XdUlb07SL=wilEspJR?2O~fICjMGK^z~&@i7f=MSK{?tYh#)ZS%z(
z`>#*<xC-X@Xs&7v=loCHSc%VA9Z^gFLJ}7KS8;qD$KE)8jAPRpd=ob>MEtC5mu&dA
z(*N(`_@4S7wS^x<_6RwcFTXEyqWdS-NNrTs8XWf${7SPQ$IS_hNZ|K4{)pp@1Ue+J
zFK$lou9862glR1M<2VpEn?U{){w4fd_>b^loaeC`4;2!qBtl+MgztCcmBp{CU_KUO
z3q34>!xN~MK=lL~CD1s58VS@)pl$;75~!6hFV|dWe2G7%PZ$$jCt-SgYW^^q`h*!L
z&~<K0G?2Vu!nErn5~fGvY$WlLN@$Wm3&xW$+S^okWCBOY4;#_Z2^>RL8vg{2OW^o~
z=@d?qq?z~$LJCh5p}{;^t_*UD$f?5S37jTU-h<aFfz}C}o<REqdM`v9CB75q3fQeA
z&`wdYK`~k`bjJ7<Nn10XIWvK?66lja-vl}`sR^SP{DSZ71kOp|3Z?nngz4;96c@0v
zs^C0Db$-H(wK^xzMYr1(^M!gSeRfUYf8rNKl5QdwCvb_#rNZvQ%Y+QoL!>7o6rm}g
zkV);8F#D9QOd#xr-a_8eq%bdYR-j+P7{>ky3`m&mC08XdFo8h{3{K#h1g=eBNW$cF
zXaZM@eA5EMM7SbMIWJ1CljQmYhKu}D2R9^eW5S$xbCV=ILxws`&vYV=<g-+>4@wP2
zB``XHF)R%lu>^P=`fVzfUM+EZ0%H@no64NPr#$>WVZJmRuN*Do;9rs7nZSeuCMGZ`
zfx8lzp1|Y;rX(;eVfrIp+%z>cfgS3eh`cQei8JJ9rmCYXpG8d`V&*otSH|oFcCwTb
zW_6p_y(0Gs?-xFhKvGWB)w#;iL&Ap>ctnKqM-!MQK3}*%_?Yl<;X)yOK9Rta;){ff
zBl%N_=+BP{Je$C)3A~m7KW$hl1$!ld=cq7TUzR>E6H;$q5P4C!T)0BGGJ#bh^z)L)
zYT+8;TH!jXkjTrz4MO_ort#X9!Sh3C3SLiOV*+m|4cr>UN!?9K#+C#&E9GyJ(3tQW
zQx)&q3A`gh$-9b>$Irf}AWZ!GB3oIrkt9ydjCeAERKy*w0w-W6kYRIUgh^CNnkD9}
zbm=|7O~6YaM@35D+XTK#AfVdIm5m~=w0)4kha!apiXtT;YhjzncHs_T^$Pe%<nsi+
zNZ?~}`uv1CDgK%8nu=zDey4PDP%Cr(=a=GC_^(917Jeh#C9K4blIz-RINT$e!0rV0
zB+Q{bKP1c^hJh+Q8r~lh_$h&(qte@-z%LR1mHx$lk0gJH>=PbY0S6NJlPX=oob=eK
zBK}g#`dhC5h##aTCyh1WRY8QS(v_2_l0+eiViMz9n;%0|P2#X54o{+567MFlC5h@u
z)JWo$BwkITX42F(liDPST1lggylRWoNusVuy+~ePq=B$u5=TVxMoBalU)A2k&@_o7
zlQ=4gqm$^JM4u#%N#fWf+9z>_(s^7G$0yM&X|$1c{sak|3r`fDBxJr$7CA+DYSNr>
zQO@salC(&orARAb>m=GF(N?_tCQi@obbGpxeOw1Uv~v<&k~mYsvxFUmorDZ^b`s}^
zpBqWe6FFbVaoPn*Tqxc%iLT7M_@%;&gx!Rkrnp$-5+P$|RT8`F_Oc{;h_HX5kR!><
zlcs;UB8gs-Un!&$YqoC^{gRlQ#6uGHPvSO_0ZCjXGBAm2MFu4?IEf+RLxtrYknvod
z#4t%roXJBwBFL{x;`$_pCvig(HzsjQ5~Grbej0m|{NF4b5rrKYxiT#CNW3*^CRIpA
zCov|8+vW4lBqoTAO=6tLc;OvFepgQaye1|wJ&74fOp=_E$w^F!_|zn(Mf|R$Irh99
zYNmt_Byo4-dXLDgBxWZuCy9G?dtVaw|0k#A36QcPJtz-cO?WtoN0N9di6u!qD&Z5t
zc|tyJzQ_XMW5UOiSSa$Zrah_KMZ(3@3YEswNj#Ip8VMQCvmz^mONGw~pBFAm;)SFc
zO}(hw<w90{Iln8DSS1N>UrJ)NI7fPX(Ar48E{XLKe>sT_5oaD>OKL=yG{dvklh{a2
zdlYZ5dESmq48@l$egz=XXN5T<j)T>=k|4gF#5*EQC0t+M{8IeAB;IEm;eaFwCu!z$
zVo5VziYJjsA}O9u!eV`i)2TsA*y0&smrln2R2`L&Rjb_0BcPM;lE}#@`ALK#b6O%u
z;^_v)Qt`?&Uk%JvN@ANH-6)0aN$g1C>m<HO;)5hUOkyV$GKr6p_@f`bP^o?_&z~gC
z0Q*znXTr~g6o#$MP>S6pM}r(oe3dkV7QWZ;p}Ug!Hi_?&_@4RI@pOAmH=9LwC$T4q
zf08(;NBoe)Z%O=~#NH%+Oq%m6xNh}R5<e%+HVK-$UsV3A!C%W&(-?mwu`h}JNgSY}
z@+1MC6Dtkp0?_yT3w#po-ojrrbPE2r3W_h?NSV^8m(nXh3KdhRltSecs-;jpg#{|B
zDk)S=AzKlLrEs|Xv(Ol7conn3_5Nz8kwVQBYNgDu>Z|_7sdfr=QmC6U9(c>E92HL%
zs-H6Y(?CelP~-?9-^&`O&?JSXDIA%?(J360!ci&n(sV{uvje}0##+awa9j#)QfQkp
zUF7j8G)tLolyBLbl|3Pa6H_>edEwVyDKr;3IfYY1C}da2ayu<$dX1JTv`8Il7i`Ov
zv`V41eDYXJdgd=zsGQW;7&rf?a0YXf#v5sLNa4&B-bi6n3TLIzF@-fL(`T`GJEbrp
zg^?+oox(XOoSVXVDO|;*rf_}=om1$WLO-Ub0X}boE-74)!i6cLFx(<|MG9S2!Yr}>
ziCiS?mcqr6{E`$d74IHNE)(gILQj#)BRQ*vuUEZN2Cqz^w+MM35w^bmDKl}z_sS#I
zVL-}k#$z^@4Z@%l2B$D2g`p`kW>{1O7YsA=2^`g2&EjfhS}x0KSPIwB!@+~s3Q4XL
zxju#AA~!_x8&kL`;y0)8kv^}uC52H`ycBL@JQeY6YqRorWJQclVN445rEouss{(FM
zfo=SjHs(QNQy8as#z(Q;A#!I56GSGaFe!z};xi*ZQ&N~JK23O6B%hwbjEMiO!`$vp
z;hsn`OJufij_}@;*`dv3JdnbJDJ)6h=@jOs%v<es)A5v)@S&6$i#{xTMEIz1o^ZZ!
zK?;wF(C6bRER6UQDLfhRMIwt+=J;89o1$5iXHsSs=-CvOva<BUh`(0jxfE8W%y98}
zHX<qW3n{EnVyNdYO0t|fS;go%Yo8UjDutJ5>$oF5g`KO+8ZL#?IRzv;uuiyM$bR8v
zkqykd$g9HFBG=d1BE&f;qUX(gE*oGPC#CUL3U9L&w8Fb7ypzJjN~X2a!t-TeIM)K0
zg%sXTVQUIMq_8)ISPJnJycBXNBvMGGkV+w)GQSa_{q*`9n`Ws5Mw|m%7K1O0%eVxP
zg2T3^rkWLTQ}}SIk@zVDDSVp3XN;{nLfVRr_$Y<E%BPSry(F(<3Z;l|W64B(M+zTA
z{6mrcgG{IPu}bw5`jj#GJcTb(*dt5DSB#x91z)A`rM$7&+4+8*!Z&*8t`xpY;rkT6
z)ouBWnC6Qw%ey5Z=lgOK)%%Yr{6uS<M)fp)PT`jn{z>5=^Q#G{UsD*{55MUt%*F31
z{2?PuzAuISO7MXw{ePzLm-ye2gsI}c9yjzgvDIsd3Tb0SE2dE?jml}G=Z6Waq){~u
zu3uzVnjcA1&g<~B*=$TwBaNEmX*5#sT4~fyqfXlNQ$N$r^TR`a|CKgsTrX`jq`t6$
zkhcxfW+MR!|9HrK>`Xx8w9&>UX*5ma$TW^h<LESwOXK*oInCpkw5hUVg<f;;+M!RJ
znxzdnL4N3gK8ci^%q*mFwp>pUo+@mf#%Urgg!I``q?NF>uuU3mBiD9moG#v8c!scp
z@J!)ZLdMfEZ9Xd_IVX*C(^$*W;Nb>ooS()h<~oheX>>`WUmE?>xFC%S)98~%-!!_W
zksD|J9>{|Ip9=GTJpUn$ZfRVcHl52QX|wosSsIrr`;>G~gS{{buO3Q3&onMi;|iuB
zjVl$ZcN$gdfCo!fIn@yQ{JMfUYdu*VH#ab!G7U)Msx$_sF({3RJZ849S<yS;WeiSZ
zNE$aX<C;kxO0AFqxjKzuX<U=WwR{$5`&rkl#FmEBq_E_<U^hIC8`7rB;KkYuIT55B
z_2HQeX^dc&ISV8txkWWja$6ds)0mRR)HKGVaXZtK#-udHrZJA?Q^BapczGVBsi!-X
z06zClkqJVsyG<skZk7?bPo5)ER>!n7?n+}p8jqzhJ&hS@Je0=6@;@_e+8X^Zop&qp
zdxW#nm@Pv2oHXtgzb}&9FY-Vd4~oo<<a{r9B#lSYn3u+U7NCBZ$U@-u8+Nkk24*mG
zd;>h5#=<m~r15kbPo(i=8jI3coHhp?Gdm6VL$``%9*l>^vyncfbaE*2Od8Lou{4e6
zSok{Uhus#Bhhl^@lFzfIv?qL78ZV^HNbg1Aav^V5h^$OwmB>qxe03UY#3$*1<#lN@
zW?L^Ld6_06;;*FfYQ$d?d0kDL-Zt@;`fTAs3vbf+Q|l~LweWTt??_!!X}p`p7TSl(
zrkTH&#`|f+(@3OE9c@h`mNq|2qS5Bd0&9fbL^6$SRnV~}dbBa8qj2peorWcSw%IOd
z`O{b_<#*D^vUQ~4rSTI@C7V(jei|jlkVcS3m_|O0LfR}PZ?BAr)lEg*-Pa5`imE#{
zSoX8q*@)8kA&tFhe2~V6YH{Dw7V+b+v`GVN=VMjJCuw{t@>v?+q|IoPPM=HiMH)Lr
zz7&2X{8~sqjVfT5?CQ6|?}VMW;s)$i8zJA5J~Yzcxadck)<LG7GI=cLU()zBjRR@?
z$wrsP?`iO($bHPh5d5Lw{5pnx5C;r=v)HeaXUqC4jla|QCyj$j2Ak4V(o9&WV429N
zqBO!4Eu(&;X|yeKTUkg_fve|(%{Y*0JIuo27OGjOZlQ*SW)@DcP}4FaSSIf{3$-lN
zwou1HUCY#FQw#Mhvt-Y9bcBWamRW<Nac*E46W!1<7L2b6jV$wj!^T3ACKf8UG@5^;
zg`=oc=U_i4|1BIN|J0CUE%WIIqorau;ah-(pAIt(`9x*mBt4pEWAat#WDBQQCgrDE
zIL$%}3(fUtria~kOAD>!db+T+@XW)|#zI^1b{2U1x%S&T!_nTt85TNNMrnDSPge_P
zF;ny`pB!lMM8UI}01M|@<`axr2M-PcS~bKiH{m?X{B(fD!t`{u&_zMWJ6w#e7XD|U
zy^S+$Tx6k}g+?|S+ql@mB^K_qFu}s57P?!w*}@15ms#jx;R*}AEOXQwKXah9>B;OX
zZTs|V>|qUXC9~fELoG96>}{csg}xU0F@DbWTNr4ezl8z1<tq;dRFv}?q)3KX7%V5g
z-BU;pulB{&ma#3vEL>yZTFblz^Sa5xbr!DI?Qjb>irf&nGGO!Q%ng39Fp}D0VZ4Pq
zSUwhb*xIcY=Jqw?!(}R&+f?$SEsPOi`P^<{tc7uwnPTNFFE$OniEs}Ir)R0X6D>@#
z@D>e@WnM5R^U)S&S(w6N<otk;WSWJ$B0k;1jEK(^x!b}>{bORbg*i-;wCG+7_gQ$r
z!h<aT!J6W*Q0QZHn~MTm2VwunkMG{(`ERTg4*o4XV&PE>^DMkV&6l#xx3JK{6BZU&
zc#KLeAy>PY9rmj1l%KS)h-I!8_k3k6w(yjNC91U@TH77NPk=3>htF7e*1}Q?&skV*
zVFjaNmMy$s;YBr{N<0fre>ORZD}Wk<5qYh&u*$+qmiYjaqy4#D%hn)mwS_g7X<uuF
z>xAzr$jcTsuqEnyYFgSw+?HwKby|2ns~I+0ctZ)^Y+)0vK^=1#emi-a#6L}RHpjIw
z!S^14cPzXsWnkOi!c1BC&BE^%-nX#T!Y39!wGguqx8PdvEYkrcELaw73rPzpN%((+
zw1r<gnnF&sGBXkx3t2fiWe*&m=xj+2R&%mQMGGYhzJ-9Q&T)u^JPWOpiNDVZg9W9E
zWSfQU7Cx}>p@p8+jT61?U`}frP8;}<g^%?V&LA-?YoGGZSR)p`x3Js77Z!F}_>K*{
z6~46am4$EEqIDYN*9uF{P%T$rm+J9bHpUg$r+E0P-m5D1L{{`i3qL6AUOkaM8Sp0y
zKkN1v7J>+8w3r57B!5`gXQ7IXs<vq$`z`!w;V(6x146cuzoXW4P__1tZaJo+6Kqtl
zQBh$l*{Cc+IlBYS>NCQ_B&lJerj5gGREs=tX}G#=It#u4GAjD4Wuvx@IyUOssBfcz
zeMnB%dbatdn0^|HaHw{K;-QewqMTDA#3nYH+Bnk2Q8t>}IL$`&AvoFwf7;%<gE2(M
z*f`cU*8Vu*@iv;-IKjq=HcquonV%#iImO1w@<Y$OB`+gM3mac7LrWWP=mbSRm-f7s
zjUIK-+D022ZEf>iB<1bwL+^>F+h&cD-4<<W2isWki8ju(ah8pa%!rKvHm<U9wvBV>
z)5Zlh&b4u#jq`1EwoM*+)Z3($=&;&E%P}DbAvId!LK|Ie^s~{Q$z!=yHzSiP*$ddl
zs_^Q@ULfL^*tk@@yYMpGG_fASp2Ew86kcJYmpHdr^P=_Zt&H@s(bv|%xVp&>rxaN1
z90<|44YV=H#z-5t*cfbM2-9q1xNW8ghT6E+Hp3FC;?*{W*+w^bU1OWcNsd>qQ+haF
z<rtXR<j{2Y*|@>RjkZ~0rq7!c<YpTqqOhMd!ze0`jXP}IY2!8<efnXvZ8|Jg6UXFZ
zs7N&aHpbdGy%WaS_(pG?EWPnI8nrXO)0$x8qsFK|9iOi;=QgmoCfS&5o1e(fXk}&$
zrr2f%Y^sfEHtw=9-Np<XciXr}0cTRjCV+N;y#_n7KUZUxZF+6K#Wdl(UlrVI<31ao
zWbkPQ_uF{DhMh4ch&g(Yg;Nvn+L&wOAsY`fvz+R*@tBQASZGT8W)AK6bub^t`F|Tn
zS1=XvxQ&H2p0u%uYBm8+*!aGR8S7HFIks7B<0;mZjb$qEB{rU>hHo@OESmHfy8tQ}
zR{?}eh0jszS{dOBHrDmTi#C?qX4ah%uCTF^N^WD5ja8~6=9Ec#$u{fSt8J{Yv6i89
z`-*VAaD$DPMd*!tQL1sem;(T+y@apR2=Hf!;_Tn)fv%gSS62)+KOSZIylLaDsIK3(
z@lM1!2Hs-hJsa=a*lNSd7(2#ZCPr1Uk+cz)%CW?T)70BY+jt^_Co`~E_%>Q)&^m*R
z4adgsHvX`Ywc*<M)W&BvJR7^#W1EfbHgYz68-b0`HnZ6!8+jWA+dQtQ#FVG9*=x|o
za$gFyj*=bJf7$JiY<!@AAKIq-pdSXLpO1C>iQ=LE&uK}xpOcknW2cQRwed9-)y9|d
zz#w0V@H-cdR~dX)B>$EhL1n{t+t_2{CmTPrg7oeG4>tDN_|Y~i6pVr1IItx7B}&_G
za{84`MjaX3JNw6dHulq6W>6!812+D&aaab2XYdz|r)|2<H5KuXje|BSWl%W-WKbc4
ziW&11#zSP+$%<ovupL#&m_|`GV~T~3=IlMYHWFSW)iP#jgZ%z#sF^{n44P(eWX2R-
z?F{N=P(On@8PiSEPu+}}yXZ0i4Kiq$L8A;BXUy5)bUK2~N{J_LB28d22C740pK??N
zM`v(C1}A24Oa`yC#BmuMFK@>x*$nk>@Mf7q>pLf9aB>ExWzZsnQ!+R;gXS62NwF9?
z&qm}Um<5uSii(eWpo8i6nfEpsw9Vj#3~tPzT?VITFd&1gGH5TK=V#D4gEKPdpkg^Q
zgH9Qooxxcdbc_<uXc-R+?VJqGm5_<#uz@9WUIuHG>n<5wKr@m-55;p~2Hi5aID@Xd
zRgjA^rnnf87p=-A5?-1?cad9F5gY~a9DY8lX9kyN&?kew8C;P;uMDotpm*lbh=nn5
znz5X!f3aT%{S_61vox6Z9sHImgFzV#SB(tLU`PhnW^i2wLo>KqLe}*#g<?F{h?Es(
zqyB4ly(Fa;CfW4B5frQDrVMV*U}gq)XD}jzkr|B7;121@Ev%FbZp&bl0%nz2h8>;3
z?HP>CV2tFHFok7h8~2|_+^I+=WiUBoYI8yc6Xi<J3^FBysk)`TWz|p1U<R{L%{bka
z!E`yXE<!z&T6#|gvod%%gGVx$t(fo6;DHS0WXzfN_X<hw6JaFG+JlN@F8%1Qnryib
zF-Qlqs`98}ptr{|n3pl*hxr*SkWUtPxriQD@P$J9TrdQSGFVI<&fu90_!`a{c`Ab?
zG<Q|O1ylaZfF1F(87$3URR%9*@El{NdRN78ed^BMd|Ae{+!v^poc|G$EYDzt_{vD~
zN_8_O#kZ%`8LXjBX0R@UR0ipcdAXZ8)F{>Z3|?jvqiXT+2jN>8yejgV@O9xvA^p4|
zvPrmE_-5wNUQ@chEy+8=cZFMo?`80Q23y5r!bApfk!z}&NApTXw;WM$tirht&XMvU
z4kk4tCr6kSx<ZEXGRQ^T7YQ;5BS}7kLd1(Ar3|)-Y>(tSL_QFHDEvtHv5*G&vkX30
zkuG+Od8xA;Uu3W|gD+_tGuV^C4;g%&!8h{XP`~NqycYZVT^W3<fZqwf&zNO}-9nBD
zsb+gK_%VaQ4u&}RDTAMB%^b9F@Jj~2(jGcE(J_B&<_7-XGWeagg8Tn7Xy$-J(|sB2
z*AV4^u&QH*D}S;V(CyzsO8&{<V8r2|g1l7}RuWbgRuS&jBGF+E4tG$^F{8&C4r)56
z?wH<zuEbi7(Ym@0>N%+Gm=Rzdh2^u@B3L6F8P<0UY2cutgCpd6ROF|TNMi?0B1uz`
zBZXUaSjW*0j)`24b#Pq7j~C$)A52)SwO~=7<d{DWaM|c&#|(r{ad4_*PKR#pm{V&i
z^Y_;JbaZliv~<h>tdE0Mjxo`#9kg-K)<HXE=W++9i=6MEvq*d48Nv<@&J;OI*ipzr
z=p=Hs@Eix{M)LDS%F8HSnC3`+fyjlzt}IfKiz3%<A{PrUad4?f_sErH%f;&+4th$$
z;^n;772>^wtePtw^!|@)U)35%#r+&JHtsJR;NU6|N(MR@B+gy;yk(q29gKA_&cW3V
zhB>&#!L<%XI2h^RI+oiYT<@6I84f|4Xb?W!!3_>>ba0buoM~Wn+$_%6$hj?_yCZIK
zFiPsgP`5g`%`t1xROZo+v14N#-0u9JIiK;$#UjV77Tw|CP6rblOmr~U!9xxvIhgEV
zj)Qw0OrauiqQk)q2UEp)JI%pe5$A+6B{Ln|Bgx&uPD=kQ@!65j^1nImb8x?d2OM+e
z8w2tx2YJu|Ntr+FV7`L|4jxh1M;*))DZ4V@V-6mtzDf9RJPQ>kAN}NiJeNN=c*?;N
z2Twa@__W%=8VAofc-FyE2hTa+iDXpc=UE+9@Dj_GyBt+M95B4V!e<vCT<&0n$VwsQ
zs~mIoED7IX6P)>Ru#WnlMe8iqJ9yc_>kc+L*x=w52d_GK%`vZ~?0u?M$COUypEBE5
zn@#C#+T2+92F;Fx_Z@7KUNIw^m5euqZwcRa@Qw&w-xb*+<cq^rR=R_I4)!~UJ4iU#
z=3u*nq=S@$Ec5Ol?Z9%7ap17(wQch3iLf0rGf#D*Vd1eSoJ^az1s<EZ1K&a5pvNnw
zn|N%c*+TH!T7(WtjJXQ(N+$yr_^c`@s^Rl>qnl>GcR2XK!8Z<eIrxx;?BHVupHSPY
znsOeOHhmDoa@plm$CSxuju}*Z?i`vW_`<=?h=1weEAg*|{PjFX0^d6L&cPlBKREcF
zNvdrQ4>a$~(s`Cor|Q`2;713)$%-<Mdo}0qlY^hx1*qKk(ZR1#c~;=!FCWS-z%i3`
z)CyX>0}lSAea@mr)@-i$%R$8~DrNDvgMS=zQ28+aX`&VmIzZO+q<n6LtTEtxdgUyt
zWN}y)hi6eWizBL<H)7hE(elQ5jA~g^q+{EdLoZnrHM6LdMML_`qIMQ_vZ$9u{j6D8
zpxQKOg}Pbu@<>giy=}l`aHhJJc_XIwHp-%L7AIwKa@Oo~PW4BVEShFbCrDRbM`lf-
z9hJq=BF6}i6;gg&7RQS>izFvxablUbHvxk>=FcFfWO1spIZ$yn&*HQ!T4c=&MWw37
zTg$BJ!q_{v$)ar*JF@s7i*{L@o<+ATF3zHT7H2TmSzM4c<<=o<zHsTBHD>C}EY9LB
zOD}6?`_C1gEj&lauNo=mbzT<dOESBSkyMkZWK&`pUYIrKb9QCqe0NaxFA{FnYR)BD
zT$+WOg_lM5tof<yj4WpA>6c~AjBbxCdS-EX7FT4^D~sV-+#vat!fS=Sg?+N<n?=7Y
z`e!j9iy<s_$*&R)5)RBBI;n54ZV&QDqMY^-zeYIhKXN+J!*!Be{~!5{;-iH(32zpT
z$YNv`w}><Bts<j@<p<psJ$;OXw`Vani*Z?u&tg&*lO?<(iwPo(;m*iE`NSxmDI#|X
zr)DuNi*n?)P9U5fh2<@E{%)1zvMlbAlFSmaQOp*Zlf}J}<i0HK&*FhB9?W8H7LRAK
zFpG!OaOMdg7Cs_m%#UWxwluC)&6i|>@G&9f^zcL$PiFCK<bRRKk}MWSlBYx%13f>T
z#WRt-9DHdO&q?xpB&W|8vUpKBTAsywS-ek$$zo*|tFm}0i`TMvJ&V=U7B25*u_22!
zS**=sog@^l=To#_h{ls9krHl~<<nou;#K+Kq#Sj1qxf4{yqz__8G0j&O(L5me^W>~
zgY$YPi+3gYv9FO3xBSP$R&hrd6UK!JVKR%92m_`?ETJvT2s!qksmU^5+8UjsMOupj
z)02fS4^3zavIy0_$n#l@=xEy76wUjUve+gY#StKLx1E(z$$ZQ6VHO|J7`mwH;$v1N
z8)+8%v-mWN&$8G>)0#D#A3o1wXBJ<w_vHEidK^bMjEXObU#TL#&YCsiZ-iqj8cw_M
zUDo_fkK}vVtKC`b$>N7B_Ga<BB4K{HG3LjJ|CGhg;=c%gjpV<Hls~}#L!6-wWbr30
zt&7So-sywCvS#%AH=n2_AwKjUCF~$`?V2?3s^Frc_&?Q*#A#vha{ha|HV$)fxQo+V
zv~W?)MRgY^yEw%)BhMNx_ML_Lu9+;V>7tg4+OFxB>$s+(>$#|_TT1w7YS9t*qk)T)
zq!kTa9O0soi^lRy|3|xM67i-kjubyiSpMw#81Z8xKgWq2@1mK=3BnU2*ONpz)ZuB*
z{5FImgj1El=C0Wm%fz&F(aOc?F50_bp|y5R2h_$j%VD(7ZC!AUtR0gf&rR!^9_<X*
z>@8_f)l6>O&b2ld9bJsrjgh<2$;H_&t}LN<3Fo*t*TqX7R(lv$0q41R*2Pj6=ey|a
znn!nW@qmj5U0k4|yU;~f7yol{k&7`dZg<hm#l<d$y13fKB`z*?(bq*k>S1jR8iMYu
zg&{_PFLTkuH7ngcUGVLX*X1Ht2zxO-BE5xug!DuI7gRuh7Xw`Lk8du_aWr_9Yt&;O
z$N#KTt^%v{28$07r*N2yYg}CG;yTxyF?d=_)9yGHx}HVKweQ+yJ6T`O+`70y&$`jY
zO)hR0A0-?SrD3FtTO!VlPq&KS7D+~naHGpu7PyOhT+DJY-o+g*rn{KIvh9OgtKd%8
zjQu944Ef?S(ZwX!bm)^^Gdi6jB$?`Bn)qFjgo`^fUEIyc8<?*$Y3;jfac3^gzKc1m
zdX}n-dtH;Gi`$w`Kda(h{F3=Bm)`(B+81+GEKe)Who}kC>W5uCqAGsW#XNc7V1B*`
zHGBcfE#i;6SSbF4@X1KN$i-sur(7%%;mDJ@>#EcKpK;By$UQs`TF=e8X728JmVk>F
zB-!BN73#B#<*xZ{I<K8Au|i2&>0%X&&c$jMYuH-Xnwf{NwOLGG>%y&ub*_=Dcg=w9
zW#OGIHS_P{H5VSYcqu)vyV&UB4P}`VP^VSLCfBTRZFbH7$f!kcx_HaQ+cZ8dVlLt?
z-gU9X#rrO{(k4_l1;}Ni_vC*#JD2L_#37D_*u)Ypl5B}C(zGx&%+^h+2V308zGn1p
zxn}TbE2pgJ3>8wV_M5Al>0g(Lbdhu6v(<RG)H7XJ;3Ds$;39O*C#YSx)nqV=E=n%i
zdT8h2;`VrA2)4P{&cbx@fory-uyK9p;v<?+4^=#T%#v~Oql=$heCpye7hk&g$~8R&
z6^z&CF1}!Ea={;&l_ex!yZDAp!^LhFyIg#$WU~wSPNeL!i?+$_q50*>&%&KL2b+=X
zmA8Rhsdw><ivuqHbn&Z%zq$CG>0ve9ZUX+Hfcu5}Tr-7EA@{)48Hc~*{~&AAL)(J~
z|E77N{TK2POS!YUA}V;O=$S9YDv@ZP{2WeHN}sEGILgD(o~f_HJRI(!nuqG1G4FMR
zRL&Y6YKqqq(y4aYsVeG<)QjZxMH+Z$=-~+QM#3h-#zM}mF@~ldj@0eHGl9o=XeJ3=
zkM(ezhvPl7mx<SRo561qPoPlC)+fr_Ny3vooFa0nu(^k~_|F>g79Lu9W+kGPht?k2
zh|`slfAR9_INdWw=3)=+J<}(4;@>1$8e9eTaHhyv9y*G2@^GQZ*}`)?oa^B{@e9fx
zxNFEmXYnq=@+lLHjT?=+O7cJ9MZ#|X@pGMerS2Xs^Dy7T0uMbr^z<;!!+2)L!xbK`
z@o=q&UY==;Lp%)iaHWUd9{PC3D$+n*<)N=QZ~J-ZFFrs>3q#>R=0!dSc^E97>|_Qu
zOd)$izFJ=GnJ*TH2|1HCpTGW8VNyM==c8%-b$f${8%1ss-Y&e^!w8X)Le}FgBBMOq
z8cA;RFj{<!kg1}#v5_l>0e5(~)5A;;cYB!NVWMYVcxQNKq4^xH|Ei8AdzhjiQ-#x5
zXgUU#QQalUbk7(QUbOss*WexxvnZ)x-soq0#s+e3<US8`JY)Ut6>^kFe!qtY6vKla
z9u}D^WXun-{55O+h=)fdoF^;~N{JiWn1RP*-l3P@$2~0c@PvmaJuLFD)WdTg7OMfW
z4L<GRDGy6niFFSBFp(cAKjYz9&wRy954`wA^Yik*Oi1}JXBp2gczDsnat|w{KP%-*
z(^n3)O1FI5UE^V`hl3%I$2t$|J@Xrdw?e$^VS|UMISu=%Kb`Ov3)#b~9zI-dgs-VQ
zUl(o^z9HNs-0Yb@zrRT><+=cWAMfE^58r#(?O}_D_dFCl6g|A}VXFtnL)JsgL)?Sq
z!Dc<ua~-3=e9K6xHdBf=Eo7Wysw3lJ)CSY(a8C%^1zV--!SfJ!2tDL@)izy;@0rON
zdYG;0osON5_sstqSj!ynu$D_6wt4u7=AE_gVTXqgm`6R7(-e&1#o9(IVy$SAP5=9e
zhfh6x>)|^OpD|!#V-UXf@VSRCJhKyzw?kWDr-v^U$ydTJ)}t2}A3f}1ZMHJsjO@_U
z>G^=xZn*nmkB1*T{OI8)HM&8qu$Kn8f$8h1ia)dT+T(8z|9EEP`HP2NJ^be3cMpGf
z*ze&0>yBBdY~Fy_M)+RCYU0rDPtSbq$XT7g*sS>HIGNUiYVSjG7@7lesE|X&94h6|
zAcuxIROT%w(sQVtLzUd2zN~5vhe>|8u$r*Cutv^wc??oBcj({fbrh;z&ZuHt`6+8`
z{jywt|D^vTayTuA77Ud`V})%Z&&TJ`lwrk>Qjm7i_M>w+CWm7s=M#?;;dTN>)hve-
za^PQtnClZ2gu;_@I5~$?ayV5!DPafKTs*BFwq*{ja_Ex71v#{qykq3EO%83v+vRY2
z4(-Ly5}qOKki(fGOaMptjGPzq+bMVG_r7Q6a83^A=5U_8(UoaFU%Yc9>Ddn#=Fl~V
zUO8MT;s0{DG>7gvT%_A>!i#gbBr03B;?wlF%W~)$#nVGYT~5R0Ib0z*6H`tSv3CxA
za_B4h0F_U_C~W_z`snQ{2?ypdNMvy2hsAYu4#RR7p2H0}T$97KIb4^+^*Qqi35SRr
zB)6)AzbhF1XTzc7#vE?SVPp=s<jlW3ZqAw4jS+e@$JhhaX6w4<D3wt;l=uNr&e-|e
zgrkK_&zKx;7ayC$IFa!=Occ38$RKy-Fd^dnU+ScYPtIYAc=;!)({i{ghv_-YV1))~
zA7Ew<cQbw;V}0C{!>k<k=I~<<vvZikH0Q7>hkJ9lFNgU#EMP`x{Bw9Hhlg``Aa`i1
z#)CP`%^4%pv${cMgv-11`AE*pC_b9QJh^tOZI-Yf%i-}HUdmy04hwU5B8O!;yuipC
zm`43%4vTVFtTfMVY2L-2it@4~ho>X{Ob*YAFO4M6i99cy)6zWmMLl#y4$E^UW=3_-
z3ardw73-^kiJ99un9emhGX+Wyuja5ehjlruXOK?VKsnP!jm??UnfSuUtTARHcQDfb
zYdO5Gn3>a!In#%dY-X9{P{^T}!&^DLor9f2CWm)&csGX><8O&AIlPxcEQfdw@3Wj0
z=hmFr1kN|Ia{LJ;o;;Z|TUJcWe4_R|q;s$oYVRP-Z3Ra@{TzZEvf^$IUJlGGcO~U=
z;Eyu-aU4f4-2IZRh){lL8}m7HbP{W%l*6_hKFQ(J9Jb5#Lq=5*JD5)G0{wsuM|)#F
zlIzDpriaD&85N8+His{B_&kR%<is4&sl<0-PX6TZO%A(q_*zb^Q|5)m`>nE2&ii*c
zd@tAC!ac$tggkhS5Be#GpJ|JHwDa*x4!_b=`e@?gH!0+wIsBEw@3c8N>{F-%N<Rbc
z*DW8)K^-6ZcMkusIs2&On;JYQ*9yLQ1pGrgXXuRuRoO=s`Dx^%s*l5blcOVi9PXPI
zTFyI3HQiSCQNu?~@mj)q!rH<*!n(dGZ3f|0Uy=sGhC((^#?PH3)LRl3QBxnM`e^Rs
zNFPV}INHZCK2G*cjU4OaI3FkYIMFxt!a_dYM>FO^id0$2V+<_Yla#f-jZ6kl5vQCr
zdzz0HKHB(LzTT8WOF6aTt@f+5*6ncZwqihP-RVBs`{?VVpN}(qbnwx|#|1vl^l_Gt
zPCm}|(NV?4a^`cH5e7U*lJk6=@8ev>$xSk49q#O#9Ub&DPiel;M^_)0`RL)By#LQf
zHy;-($VI*hLhZdov0W-512W^?X|mK3%Qe!|#}z($u{?dV21GyH>vE<1GtS;3Z0{zl
zk5MB1eGKq1+{X<*uJSR^$50<v`xxY#ia5Cv1}hYcWrzx=tggd+T;t<9IbG|U-KR7r
z<t)Eh8`mofeByhRaHIT;q{PQf$_Q2KW*;MbV{^*&HA;S%s?k1f^>LeSSx1x*$M~jw
zl?!d0kMTY}@bRIKJAB;fW2KK(J|_5>=wq&rhkQ)(G1<oqrIwkU;$xc9Gu1c!ATz>f
z?^5oV?CH{KmflPsce5~k%#zasK4$xv!>F_~hvWHsrKOy*py&Ho5x(i;{?S=R4@T*y
z*?-u_BR-z;vBbxtKIZv&LQm&I=gZsUJ{I_REP5`>lUuwNs%Ghjb$St}oqa6wvDi1p
znMU>Ky2chg?c*6A&-r-X$Fn|`GP8Wus$iNb1G0!%1<O<yyj||&1s^Z6*}iGiiOrv#
z3*{@67}n8CK34mP`H1^i<72IlH+*c8>pG^5wd0#_oz|=HU-r%3Fvdg4tIEaetV*Ss
z^+Nf^s07$AY-Y*$ct;X8WNOikL-3YwMzC+I3@Loq#}+nZ-z5Hh`Q$V^led*|Rx|C9
zjVR$G=_5y@;UncE?Zfrq`LKN0N++w5b&>Jm_{c^vv!Ga>WhFP|pgn2Kd*CDVQB=S@
zYgtYOJ(_9gak$a3l8<dZwyO+xL?wCu29q$R`6C}6`}oJlK_8#^_|(T<A3yr|j6QvQ
z>*G7c_JxnHe0(h}+Ues<s=c~J#_)}VjIG?!?~;E`n|!ZS?e<M=vOHNkdwl%BidKhJ
zZdO0}_?gz;$L|XD3yY5Sw!N9?FcE6h(XcK4@UhRweibZBo=yjR{G}j&`es`iC0lCa
zZ#|JoV%;G?g#e8LG!9TPF!fbAK$QTM#Oa@9ST(?50cr=R6X5W`q_BE`8i9$eT5zcQ
zt{Iq$qoh_Oq1N%1!n$&*ADA4~3-F;j@dg1JDuyG1L-locFXO*SfTjUX4bVKmkpYeh
z&@8|Sff>>t9pG4{iuHa>U~2!;syHsd@qw8GXGt<R74^gbCk3X-oD$&V0Bk-qp42O9
zMY%}njn`>`83MHq&_Z#x4A3et_Mg%6V#92s<h2dZE--ITWfMgC838&3_#wdF0A~g`
zi@6K%K!A=+WPs5D#soM!z&Qc>2Iv>y+yLhV=oaAO0Ou>t3j?EXodYui(21)6A{Q{@
zHH}s2%Jj$^HS?mtbc;+apL<DwO9NaPpm%`o0WMP>FAvZ|o_hwSHI?@#(?2uI+baU}
zlIt*Knesk?S;XhdEL{h2@;|_U0M`c?9^k3~0|N{VaCLw|0S2q4s39y9D&deQC8<^z
z7MO1LTE)ybuMuH7Kj&LEx$6Cf05`IP1EXWyFnLpek>mkx4lqLgnWJ*P7;sczhGDED
zMou9W>^41u{B|kNT>+*C7#m<*fbjwD2rx0gBvwrg6F;vz158i~85?7s9N@<_m=a)W
zfF<fmrcue&py+`UKCI#y9Q-SJ_XfCINn#piQOP+@4$Lr>;|eBVw*1VIRx^~zjwG}p
z4+fYUARZtQ;GqBy2Ur<kRe(nVJQ`qWfae0t3ot*xq5zAfZwvIGg#jKDd0c6JUk`dB
zz>~^#{kM&|W-gv$;sZPr;8|%V6Z5nl%`DKcQ`Ol$v396S&nvbU0=yVtnM#c9j!sN1
z^>(>5e1-flk|CV@53oAGCQ1UV39vT6s{vl))e7qZyv$VTLF?HzWm{OYRG3#30}Fv~
zyBr(59$=%qv02gbzoF+ce)2a1ycOVG`DZ|OYHy1(J?}76wN37}1b9zD-j~x>MMa}Q
z6BG-~h<ywP|7>~zJ`V6nfOG&WKo}q|pLT#u04Fe!FXqt%io^?$3*f4_Shh@zFC57E
z{{T!FHJPPHc_Bbi-gYpL0k)|%F?l<<=2gL1kL@Zn4$nT2@wto(0gQoLYlNH}{xra6
z0d@uWHo)hKYG;5i1AL(;viunp)Am(>uLFFeoR(h?Ss+XgYv(()*<I^RdcF^^JHQ?p
zLlzEQ%l7lf06)=;gy<jQ=K#OZxP>@5#IFH<qfHJ`C&cdo{s?d|07C3jvi}rvsJuVG
z0a=^!qgl3p1^8Pj<U{`vd4tQoAu5Kb9HL5S%HNF5_zE8y9LW9uAr1>sJw%Prr2Oy@
z)xtx)36n}cEZCY%l7=F+LZfx%jq7d;)D2ND#E~J63QeZ!hd3fcqYw>3G>n3<tQc+M
z(Dcg;+eFW$ZZjoKLt|<vJUYZNlAkC%HpKBt3?F)&BrL9GAx;o)TK7<|#3!;4P6=^p
zh|VFpglHb(v=Hq>oDrf$h?XHvSAwbetrWIxh}I$6gr?(Q*38us?LyO8@DW7n20eEO
zai;vA7ve0DP9e??(NWoCD7NBr7{6jTSC63L(Zn@qYqE2Gl=ur2_QDWdLt}8tW%$1k
z7lr7iyq{4A7l$Sn-R1L=5SNBv<dl?4=CTkyLOAtJaS?l}1}_hdHNGN5FA?%9L-ZE!
z6G{3qR7K-$K!~eC%nLD}sR}VD#O)!*h8P@TNQmJfZU`|nG$#7$5W|!V_Al3jxK{jn
z;dP-Y7QXZTcl5>Lx>30p72>84H-{JzVx&^YoN`f;x!|kHEy^Itts!m;F*+)@F^ZW5
zULFOF3o$;##1NB0+!30A#GN4~gvMGj@9Z^L?EJol#XC8~6oq|Q6~}o1I!#qAOq2Ys
z5Yt6wgqRuPZt?qs_Xz2KmdI@39O1pf3ptz+p`Qmt9t<&8<RPK2$2}6_+{5vxB;~X%
z2=Q2ml_6Gzcs#_y5X<EHgbL*85YL2oGQ^?~izQ+FPlf;gys{<o%&z>|5KG0M3lCWd
zzE=*^L!XzNt&)ZCf;8$yDrATil9#K7<w@6<LTm`}3R@yK%!F8@Dp(t09V@!Osmk?S
z0tn5>ip`T3r^;VdB(H^dT`iZ5iz#Gm8$-Myr%l8VZ;CSwjaMHs4)peRh<8G~8)6H?
zhWITsQ-!_P;k^*=hu9h-7Gh6`A40@KBtm#0av_o-QX#AmHZ2>>=qMeUJqDxnj=*Vo
z&c^dAh72`1H0w3bGd-ah=DDFcQHsP55ro(g;)Bqf(ZpT2VTgQ)LWp9BQiyH5?O;Yk
zoUtVCs$)JU-%eYhp&<L#4?}zu;+qh=LVV1puzW&%9pcjvpM_?oox_R!`ab$|uAy-A
zPiSV#cM880mJb%=@Sb}Hmg>#%+YsM{W<7CtXr|@A56$M!;~SXOD-Kq9o&)z4><#fF
zZGMPfLbFffCpJ%ZtlYpXKP0*47}FQ++ZuVDRi>za5AjE67BzV73$b7PfbdV@Uy<wI
zA^s6B?*XomN5wo^70|kXN_kYyV^|*7<V`ZF<WW11I(byh<FLGW3g2kh+z!v1ecIK8
z)rB>LHHEeESTe|XsGCQ<JUZvmC6D@fG|1!FJdVqwVID{1aa0~h=gltS`TT_hzl+SH
zao&v0n7bx<G|l74yxBNM35#?GKM3V-i<e`}IvkTXrh_k}$LG;3k8|=kH;)tY=0g~^
zwG$auUk;v>H#%@~9;eVLkLG!_%^xbCwheGv-uy(EWz`~&mXW+w9<9aO<jopNxqRB?
zaeCgE%JzA5lIt154nlf6Gmo?K=$JPuT`vEPm2tLQ`3MF)kA+adyhq&J0OvEoe09}%
zSzOk+Adf5aMrX(`%$skDyXNsfk&A?sbQ8Hak4qxSr6S#hm*vqzq-W%MxyTiH^ok^Z
zXhTBpJo@Nad|cl=`sLAIw*&IHDvyC>&LL19gY&pLk4<l4NZu^ukqnJUc}0&BUf1Sv
zT^?Q@xje4VV|X6fJls5PVBYh1Gmp3O=3obE_2uv3CQ5kzPaY%k7|D{Pt>&7e$f!JS
z&EvK_M(6QZ9*^fSCXd_mn3l&~@-S97Q8+G-@gj`jjy&#+_yiGdBcXg!9+P!DML0F`
zGqbO8ou0>ilFSg!%;Rp6d!*sB^O&XE^0(^rKPQiS^JW|8BE7QRpT`68@L(Pf=kW;h
zs9XAcD1YeWmPaGWe35y1v-0~}H7w9AjSM|6%;SkXR!Z`u@HuL19*go=oX1m=JR@8p
zWRR!xCX(58@T??DBRPf3BEBMz7sOu_E*F+F&KSyv@2$$?CCOI{*9g}Nhw7gf>&5B+
z<vcb-{FOXj6@N|mIx{8mhHz7q_szOx*hN}+WlvGB0p89VHFzhFch$zX2;a-&{XDit
zZH+BGmPb5~MBZ3q-qLs`*&Os%p2{PwP?TFDwlE`f)IvKpGCPa-`jGEt)>wHW3eU{<
z^9b??^T_A1JC8ki6!IwM@fm~UQOaW*AD71twiga)`{KDb%x<VtCz#IVgFHUW<0CbV
zx!M%L=KQgm_9wzmm3X%LFY?%#$2WQG%HzvCPFsan`{FC*I>iNIDgS%??cij5s|0h4
z#dlOHb+6yc8<&zdRKX8<?9F2zqs`+-nn%`n9>3@Da~{9Q#4%qqYd>?is5to>ciIzn
zE`R8DSOe^l2|bX<pS0cu)G6SYdiX1kN(J-9&EI)5^T4P7lgB|C*a9jP%zlrG!el4I
z%gFAmasgEeX53p<NOG9S;RRF^sV=M$xz-e^RWSdYrDq<&&C^X;?{)d;0_qn`oi-@o
zw1P1O<P8frLc&HuN*Wi?q=2Rc92rSYD&Q#bqa(>N1sq$zaRnS-K(hi)DB#3`83J7=
zv(J&_Xzk3Lq^Z%973vh>slw($&g*{C3@wzBmO^R{uQmm=Ens;OD~f1W!081HE#m5;
zNqPGM&M2Tm!3=b7;dY$@&MKgJ5vLW=v4Dvy(Yb&w1yehn3OKufbLd(F=N52Y0p~NP
zd~>g8e$en_U$Y0`)>gQnfC~%e)B=`y*MhMLJqqY4^1lKu5}~l0$i)R*5=kyCpu6~G
zk%S%S<po?(Ku|zfK(7L>EZ~6x9xR}D0euRXz!WOueG9myfKdhXE1-V?0}8lG@*7x&
zBFyP9kwL=21q_MgLq)C@nkRDpr+{lC*Xs(nKH|e8KQ|U|Qvo*@Frt8wkt<vGzZWCn
zb!!1*BiGvs7#;C31>7!9Q&9FfPPgNQcL?t+m=AO4I;nuk1<WkqZpo(zrwOMDTWSvf
zt^%g(mO*BSJf`1s-y?os0kcGA3+D*$71BTVBHkZyjz#Ad@K6CS6!2mJ4;S!=oSrV=
z(E{d)KPjAFz++LU1%*R%P>&a|P{Jn)U<b{}%X3pCiwamA`G2Z_CF0z&ODA5>==NFR
zQsHydIuW`qE12JKkSs4?MFDRW@V1;*7VvW9XO+lH!qo+=iR5bwSQqj2B3&zBLjkXd
zzbf1;e64`j3)on|8@lD=HWkcxiG(8};+v8)I61F(bek&R-N^rz0^Td&{Q|Z|l4Jof
z@pvRjP@`%eih(38xmAE&K&AkPrK*Z!{MiD0w$>VOqp)59xrlSu2Yqr5Fke7{EwPA3
zMHJbP3qTPSirB_VDPV5_KNhe<p}rM<P{4-;d?fx^0iTO}Ec`_HDGgDS$1f!LrhuIy
zUkbkxel7gh=dS4XJCW~&yM=p%KM0wxasmESz;6ZoF5%Aw{37ye<cHDH*#4p0zY5qV
zvOjV?Ao8b>iotgGxA;FS+X^_yj7RCOSVSEex=O;zMN|=~S~SaN)x-}I9$q}u;;PGu
zt~H9NDPAj*)GnfDKNFC-s9Qum1*~5*R*sSeMKqLzoXKchG+7`&R>CI2rotnOII4)F
zi-)xO7zzK?tK)Qgys%jjCx|ef6Gcuc;$)Figr`QXd}50tMoz?8G~Gqh8MQ2$*MU|=
zGk|X`Y$I$dY*)nTB6Mvpa)z*j@XVrlS)fzEu~QM37SUY~I=hH-ia1yNJmL95nzGI!
zOlKF73xpRI(KV9)PvjzDw<0c%<d=xB^SZ2v9!2ykqCd--!XmCHq8IzDW6c+B%n=(S
zk?%wt8(djLZ&t1jSnE?X`#SmxdvX4!h^v_QA_lW+Dw-E<rfOi(yv(w_3@MsEkrP>U
z`hr6a*4;2xeGzvSF`<ZSi@1*Y9g23VaedJYW(M;0Q{_2ac!Q7|=WZ&3GmSS3Nk)i_
z6y8$ADAvCCZNeGVFj|B@#}sk9_*mh%NIqWVj-q+JqW_6SOe$hQ5swwkH;GIzU*0Dd
zF{Oy9MNBK2{(6@1t|F!vF@sM0?5k)NI%kS^QILBip%dk^i<ncyy+zzt#KV%`Uj)7J
zdQjv633)p=A`eN<u#Xh+Xc6-ypD(0my7HncM+lFrU{4u@g+)A3#FIrVDq?97&#@M&
zV{sAB7V+|HcuEDhM6H7j<Y|#-gsZ2S#4ul!bI8j5SI^7yvLaq6;yr$uTM;j+mbrPJ
zL*kW1)6%Pyu&RicidbF5nj+pR;_V{V7O}2~SBiMGh_l)owOP+cY%l}Mm(^f56wM*b
zF)7t+MU+;WqbFW3nxWms;-US4Zxpd9;+sX@ETWZO-rp(W-6HZu6pGlwv=wpTV1z}y
zUo@NZSy?-|{#!(>h`3Uo7BUM7kz^66NYY~sEO9%MWJH`IvLdd~6Xt}B#}^5T<~5wR
z+$}ton-3eHNMltpCtsD=1+aXI*ikgI9Dk~neL(Fh;)^0a)a^$?wvLaf>f)b9lFy2V
z&fDK9$xlW6T*Q|}d{xBPk)Pcn-w1aV@ogmkPUL$b8{nQu{)5O~;g2jmext!{pSu0E
zh~H#^Ibh((=NTRK|GS+2C}N+;ej$S#DBtquFGc*V-2GF;K@sM3<4ZuvWVwQnb5P`!
zN~UHxD6L#FXBM%ERW0GL5)Ln+S_v1H(6xl>CDbUPeF<ljP_u+uB^+Nuvl42TP^W}?
zCDbpOuZ%ffs!I=CtF2&85@=9D!;<-w#;B{#Av~gF^o{2YHY$PGSlFb5rXoiQj}p@L
zXpv(|I5v_TC(?ZbPAK8T655o|wq*AAo>amqC9_HRWW`S%<5beACG+mnyoA$AXi+ld
z*-F?_$kx$`#$TLHd}U_B+Lds+Vj$;B4Zqms6kLZA&g2(fC7fHrStWEVp;HNG%iFwK
z;EFttOJytO=3&09F{kI1aDEA0O1Pk8KC#JFLFba0JY<}cXjH2k6KyJ&$7qyrQ3)59
za7hU<9tc)4^MrhB+o7*fma!tLo4LwMmB{WTTvkGl5}wzW&Q$E4C8OS#mvBW1y-H@S
zjj!|E%fzDYQ$pVoMs3Hf+tIIt{v}M^hH2X{poFWKwr#jz8wQpzsDy1LY-h~;1-$U3
z5{8ISGPH!N#fOz}O$pbQa9s)am+(Ld*OxH7go!0gD&d9_ZY<%p5=NJBQwcYha0?$@
z!X{e&5=M&bt72|{6O!B-2`S+<ri9x|7+=C2l8-Hc{>PP!6Fry1-YF;EPLS)rPLoTR
zQo<~`PAy@Y$V}l~B}^}2hT>r)|E7Uq@1}12-}q;jFsFoj74SaczyA5q2TPb+!qX)@
zQ^G?fJY2%U5}qjGkrE!2=f_Hzr?Q$~!U9S7lyV{&yi6XC<WH8csD!6<yIA<&XDyMW
z9O_x|7fN`sgry}sr`zXCSQhyy=Zo<#k0dKaR;ZL139nU>&?oD3wGz2TxVD6KZ2Kj=
zT*8JDypq|#KY(k3C2TC=4O)YenGfXkS_!Y0d3j=x)}w?(2}!ns65c9d3std%x8>&@
zHd2xC)lKj+4&dZZ30tY>CB#|RbmGjO&^&_C>NZtEnhm)GM=@ARr!D+9wk(}E@hD`D
zOjtc7SAt){l^mD}3#I?Z)LB4XRdjv)N2(~GU<ZmVsfZFPcDG=F-Q5aycXxLIVvF&b
zsMuZHI^EaqR=)r2$LIatweH$$?wpA|yJpXxIdk~L5}z7We$Pkv+|qOYC#PYJtDT`W
zN1x^#T9)G(^yd)FA)G@r2WoVw5zir+!*_G|eh%pzvN^Qp@P%QU&!MzLVesF9>k2qS
z)eTddzjOF%4qtZ`_{I_%!nd7eI%@qehabhkIs86{p9~Y#{lyCZY}6B~zjoBMvHvlL
zKke^7vcsJt`n$8F>)NO^x3ib7HM-U4TVuf*-D~uaWzc#48a->wQ=^ytRnELM=Iczm
z7OWBF&tLn0-u150r?ZTZU#LdE8cWq!x<>yR3)fhz#^N;=G4cxSMLX)6tDy2rbk<$6
zBhlH*GBpO&7+7QZ8p~SU<*b0Js1f~y%nFt>#Ndh@)wKmsV`WRPVsKT1t93pdRAX>w
z`rqMLxNlgE;nvIQ2G=k+!l3$Ev&P8I^jbC6w)CjZoY6JLbf(8zVjY9))>zLH;|%Im
zAT_mNjg4xYWH}qx*hGmMTi4jM#%48l`g+S6n|D05tCqH~v}S76)l<Q3YHVwnQ)+By
ziAe^xH@Jhr9S!beaJ<0@26r~Ni$OKDt7d`D^u*e~Z!+#~IeXODv&LSQKB&gQme||i
zJ~j5Ov0sh-YaC!X2O8!*7je7HdhJ>}T=F6gu}A9V;*lI`>BDLqZiyo#12s;Nye-0!
z(kTV;Y8+kTm>S1gf#VFS9nH}lbW=&qYx<p7W3oL}T4%`BzV<o=Pp)x_<twc!r`I?`
zgwhhG&Y3mNs=2`Ou653?aZZiZ>#R}d+#2WA_@l<3HO{YbL5*i>JX_<!8W+{LvBpg`
zbSIKJ($~)~u5n3?+iZHhw8mw%fAP7z#ub*nvNPwZ8dqET8iUt%=3i%t>ucQ5ne*X2
z++5?98u!(>zs9XKX3pZCnw!>dt8sgcJ8Iln<K`YNN540Zb1uzYR^aZMTM;PpUi<s$
zMEB@{8dDADeP#AFQhRauX)7?j#)CCxSo)zF4_l(6O~FUR{mz`nYCPVVexk;co#~l1
zp0aeuZoV2nav1-q@m!7HtuM9nyhy6}kNTR0{=O(t8OlqlRb!St@(jLG<JB6kS^86h
zvkksp<Bb|`T3YSAU*j!HzisdxgYO!A&!D~;tz!CpP~$_(QTn4AA6xnpgB`b8eP-#;
zJIl<mM6E{M5{=IMrX^Yi)wo|Hs1e%V%3x$LHkcSp4Q2*&gN4D;U<Zcn8ei1-(sG31
z57L*;^w*a7rpC9H_^vbmdrPSLkCynUGyi8x{8HmrOZ;ZAV~pa6E*$==#@~{GI{oU7
z1^*apde)sV%&kG4E_J%r-D`BpkwkT?)4fg)%TcBnr~IXkWS;uJw4K)y^VR8P4bE>+
zEiX`~cW1g!oxYvv1?&GxtlH^cXURHC)mhk{N?;bLv#24nm_fC(c%3Eesf1s|Q9xtq
zI?L4=SZA3!1L`bmCHp_)5L0<IqBZ;SbqDoVnJZX<6%DRbXJtz$e-%rtYH&4!gA5Kf
zIHb-{OQ_^9OAI%tW=GUnv(DH$>(m*k#9+qModdsC-D&;WhV7_2qb>1;QB3(-Y2Ks#
z-#Y8n8DDp9{J1*rKId+k*u2jAB9TSCHn2uEtg}(w8K{j7Zemb>H?6Z-XL@FTwy=Jc
zzolhvWpHbQ+jJDGvt36*o933-!QhStcQUBx&;$*3hFj?EYz^*WP>YM*>P)ONsqS`y
z^w~JA^mn)P9tQU`_@KUUs^GshwT}&1WZ%~k`x)H7&H<hI2U_BwItO>=98%{{OCQ#m
zqjkLu`;qFp$)qMn)j7J(F?Eiu^Fo~$>uv_=(v#!r9AD>zx(nx?TIVz^XJr5D?tSFR
z2B*|H$r2|UJjLM0o7xM@-8j9@rFD04;u&=}L7Z9VEZKjtxXy)jE|UG1VAnan&INTI
z=*Nm9+?M?zySl5wj~c~K_q%gP^V*K~#ijz6)Lqm|SBMK<X8gUp&J}g8taDYJd+Xd+
z=jysUNOOIi8|qwR>1z#MXHduO{vN@NmcFIVt#xj)w5r@}i8pp~)o-hFXPvw1+-{k7
z7(C2Yg?C%}p1O;1N#yis=}|6yzlKof@j6e`nObLBormi@QfIoApHX*5-ygJE9pxYT
zpR{uHd(?6sGbl+G8c)`lDLJtgp6cxAnL6t9Y5hIcq57<qSK=wXHEd;+e!jEum&9>#
zp}}PhcL;e_o$u;=FNM;STIba|uhp4d=k+?D)%m>68+G2S^M0KV>bzCw?K<yBgX%7p
zHAakk$(;gHh*EcNzCN1wG(bC4_F<im>U>=16B)5COn#ded$~)B*6it)&!5)aTiA*d
zo+MYHPOZ)t%2Au*V4bo~RcDLgG{xLHVVzdpE&RPYz6rddG}1o7s7_pWUWA?|by5?m
z!paD}myRK;lh<90OGaR+W1Yy&V;{n9OVgismuV=<s*5JRs`GW7Z|Zz2%httxQKBQH
zBlDstfube%_2Y*+Kh{~S;kuTz|5WFXI)9oF{%o52OPycq{8s1px{CmdCc3poE!_D4
ze@T5bgocxff9lMYnbOq|4QRNx<doUH;c~h(+*rCc=+<y#)NklW_sX!|mG0SKo`$=5
zW?nt*>U4i?yYahMgZUdQ&~P0s*kGXsy)E6xU|)mUOxIHdL-bRkUxWS)7Pd!=*l-qY
zIBfMuKR4b6OEg%r!BP!QZg5J2r5h~MU{Hg>4F)t=*05cz!E)Bfzy`}VT;mFNtk7UZ
zYg0(BWQkR*%*vJ)>3S;uV`(MySA5a%^&8UQga#)XCPNzxYcRZlY})D#)@U%o(#wx#
z%?2Y?U6{!7H(0yDW|r39Q4Pjg`t*AkZHX~z&BB}OG+4L6dJV=k*vKA<+UqyipuvU>
z_sX`aYkNy@;8+JYZm>xM?ItL_sg+;W+S%OFTQu0x5?eKR!h-W#+uv;r9&9DIv-I{2
zc4)9;gPj`eDH1gp-(W(6-K2UAc5XO<RPVbqIC8XOeQ){0;-Hz4Ney-vsf|h<PW2u}
zH&xO8#oi6}X>eeJgDi93hP#Jke@pLYu(mM=G~ABcAtyO_aDzh{9HEXRaz++W=5PsQ
z1D&aUv%ec@vYETjU%#Uo9Mj;~hWmT8LE)y~afaLRCZ$4BKh>JtpwAFavQDRTbgg5k
zJ)B@~+?7)soYvr+2Iq>-T{zu@;f#jUFHIZ^jNr@$XBi!I&g$%jdrMIX$>Dho&Tnvm
zh-QIGZKGV+a3Q;k8g3Hrp(Tv<wXFg{*0K_s%I_G<<qfWAaAkw58qVPC+;mgV)z<HJ
zO-Jx+th;L)T-V@wOW)Ao#s)W8+FyX18{E?1n+D%DxV6D;4Q4lZT{t(mqruDuPc^u+
z!Ceg=XfU<G-B$4)gE!go=Uz+SC-!yWeoM>TP3X=vOF!6PMuX{=7Cu@+KGfjh29Gs(
zT#a{glJJN<ebk`Xtzw#g1@(KvGM_Zqu@HN@!SfAXXz+|>s?4(*uce<eDk(>p2)<~U
zvl_f4g|f5|?s%l9uUO8j4PKL|bguH=Xz->iPlKSrTMgcBP_tqx|4xGs#WGQ&8}BxF
z&+^}I@Ik|Q3o7tmoIh^3o60^hsQgbGd}f6|Z!o8`wT`jWbtQ;cY?)1it%h5JtCoJA
z<>+*u(xIi>4Wb5dgQP*)pt8)&U~W)%5lc3T24%xdI;z+KmC(Syurgm7RL)lozV1v5
z;qMxJFPxjK*5ro<KQ`#wWWgpsHTc<z&D-Rc2ESUmOOxLk{NCUn`};?OKRYr1%X0oU
zs9v-gB&hc1S^=8>4p4}7ZPLx8w0o1DmQcwa&Hv}oJWY3cL7DT}(_T&Hx2Fp<>0>#)
zJ8Ow(5+t>`P?LU5mTIzelm7N}vCc9JTVjzWi&{b=s+RRz-2N`nWXaBw9V}R;$?}~!
z1JrMm<(iJX9U?l=9;xICmRPaLN=;U_^eUZ?I@%XjgPIJs%*~n%X)?6Q`b{=yGOWq)
zCZn5-X|j5gHJYqt#YX&33u`tRX@8|GYVbE>>)Mtxs%c+ov{8(0vaV&S%sQ4(zw23I
zoI%M(2R<7%*~D@-GPtopJyQ8ijl4>9l-#_@7EQKP0V}h$!H(gpz&7@GTZ1Cz_DyzZ
zvSX8-nv8EUq3J$<peawA2%ijM`H42m_d!?q?$UI}k9Tc4mhEQnKRdbf?oIY+@`1;P
z9(y*~%UV9tWA7&WG#TqT-)7$?`!!kEV-b)2n;g(&N|TeC9N6Tbrd!~g(BxoC9Nu(O
z>LE?H(md4QVU}}YFPE>9M>IK7jIc%AQTFKQCdXLfScAtIJl>$f9jc|mCpMYf<n=XN
zvwO^PKGn%hPHl2plT(_`=h<SCL*w)&XEd3|V_uIlo1E38CSh)Jc9U~#T(g>-+vGe;
zztH6TCKoihsmaYvF0@Qh_)1G$)a2qOmstAJCYLq2yy@-%)3p9yTXBUwm1(-F$<<A+
zX>x6o8!S_A;i)N=yw3h!->F|W+TRZKyv5RYH@T<Dt(Lycpeo*Oi94FyDM6h(_pZ)-
zRlK*!eNCRSoco(R(B$DJkJ#U-O{O<_u*o$0tM?7n)C{pn_di?C{tGy6DpLb_w8>*l
zW}0#-XNn>Gc#|ir<dX(FMykSc6rXPLOp|9V|9OL|^`9osHQjuwv|Nae9$&PlFLjoA
zS@WY|qB5^Ed9}%F5=C*d$;VATY4S#sH?8o8P2Ms~^>&kYET@Bv?^;@_^j_1=8t-?u
z{DCDzlaD%cI_&nR_V;sxpBdEX=2$|7<*PKBG@G2<;*=JxCZ4QNi=|rlR_2Q)Up5Jv
zg!VUTl2}6c$I^mMjZT|no%y*X3WH^n$`WmZ9oO1_)#U3YU0ZZ(@lBI&oBSvv-{d=^
zzl@BCtoFaRDnE$tCTYs~*>Zl@EMN)c{Hj^N(jDCS!_t2?`K!s_5>(yu*810y{L^G^
zXDuvKy>!@_?k#$>Sg^%HEqdCcUM=QtF^{F^Z82ZVy-BL>I(VwY0xdU*$YS(vIW8!t
zj}`7~P=xJgiA7p0+M>Uu7dF_@h(@$ni^W?mmZBV$cllO8-x6B7#WF3%x0ujkK#OHt
zjBK%1i{)AjY_VdCm0B!sg;(foQ!R85ZRHlLv{=LPSM7W{yv1rQ2HD@iErxdH53xjt
z+c2zijKXAfao?nLL}$r0EukT=-C|UW9a`+zVswi!Ew<Dndpfqox-HhT^g2S@T%d6+
z)^D+eWo}^b<!)?Zi46^IWN>4V!icb`{oTx<Fxgy0=$s{`QzG@&_GmkU+qBrWvt)+=
zY~T8S{pw)ZPAzvDL{E2au}h1CS{&SB*A~0A*t^9(Ehe^@)MED*dstH)WbBw?_B1Zb
z<_MF$>}dy`_ib^2{oT*t{svV>-ra$g?vRs1S{&MPp4gNYhqXAo#nCN}k-%7)BRgxU
zP1QZh{z@SAJGRB~CL70fmQf=obf!<V#AJh)b>*bae6@3Gi_==X-Qt}Vr?)tx#a(Kr
z#hES6YH?|c%UYb>;+z)ewK(4@cF^ryON(L`SmMI}Y4ajWUu^J_&V1Fnyu}qQu5WQe
ziz~$lx%w@xZE=;c>}o41VxA-Mw)B6sSVrSU%ek$^?UuO7;LR;=v4p5`t8q;U{ibx|
zjuv;?qYhfB_j_90+v0^5FIxV6Egoy}c#Hd6JYaRFwwTf4p%&9R+nnCwK}-MFf9Nn@
z54U*4wD{4^l0vnEEKjs}vc=36PuZgm*?79ee_C!H5pK`4c(${aT6?ZD{d~*aET;l5
zwRqVwU+a|2SuI{sgZ6n86?oO2YFx8hyl!dr@<z*jLH^Co*50y&1moQn@3n|qBrV==
z@j;8GjCP9;TYO|?>IOe<@mY({TYS>l!l$i&ZJm0Y^FOq$SpiK+4dbAmYT%w_h6W`P
zz9j;K5^NQSEZxD2w8ghAzH5=S$XgUGN@-1tuUk~sW``wdxA>y7g)c49VS791{EZQ(
zgJQzr`xZa7_}Pm6(Bel+C|@($FD-s;(baRb)$g|!f3^7A3jE&UkItd}*>ZD}82yhu
z>f*UsTjl54U#z-Dt=>iFZuYl(XPZ4ddUmE|tmgCR<<ZZhzvsSGc#k%JJzjW&1w0q4
z@9ojYbIbX@1{d@=YP9>ikp11u*6hbj<mo-!g|74M&Y~WRc`WX+gy&Z1*<g29|3{m$
zq^E!{D|oEvxwHLCdG4J2(gv3?IKX3BkL5fD+Fw0g-ea$MU9mk4uH><@$66k1d#vKI
zsu1uP;<1`_G)O*eABV6!L-*pCf?eusgnPGL{_rr*<qY>&-D3@p5gu!LjP&T%mlLKj
zaDWR~ojk&QFkQhqz16G2qdZ1?jIqY`QigIAE;xFW3m32Bv98B@9^*ttkF7n{_t?N=
zBae+eHuT&Hw0Tc-F9p13!M#n?>4R+UxtHD4&Za6qckX6tS=SB^bvavjZ0Whpj>GKK
z;x-=Jdh9Afd2Hvgy~hNPojvE$e`{ge9XxjQ+}yg8O6u^ZrS(^b$9A!iu4v&tu~LTy
zCwffs*xh3fbMMuHL}l5@>?!hk9PV+1{C}~mw|hZPLaPS%@z__xR}{<O{s#5;0M9wz
z2YMW2IR_g&#NeR@4>Q>DKGfK*?o~$-ZRPRK4LeH1_c+GmSdZg8F7~*@<9Lq~JWlgC
z-Qz@$$zr|7$sSWYHXH4(sT?!K4O6dwO1fUyiBpt6!Yu(#wSnt(j5Fl?dz|lafpJQr
zc$UQ2@I1$JB^B@#=I0t>=NZ&#;q%9Hp~poYhm570PC*!9Wyvq~xXj}&(bMB{k1IT`
z^tj67*FkQQU2dpbj9l$;jmIq>w|ZRbah=EY9yfUZ2CEfR>_5bPy5&aCU4W+T2J!bM
zkDCo)(N-5W-sW+;#~mJbiq1p$ZoDgYz$5MrBkf8k)TtKk@wnIHIgjT(?(?|c<4KR1
zrgReW2Rx=4qx%hEnkA-dX!erqgB~+Hx8eSf!G{e#V(?Lej~RU2;1dQfSj3fo%HwH|
zXVscS;xWhlXQXix-Ob@LEPChb<(J(lINcoB-@g6vg2#&<FL}J|@xI}p<=ZUJ#nayQ
zc*WyYGcvCke8b>ugRgu4Z>!(*c*`<7?BqKh?;4L32z}4moYoO!HnIQ6<71CMa{kQu
z#N$)RPs9lkpLu-lF;B?6A#*%x9@Bju^r;IOj}?4Y^l5suJpT6h$HVjRJ-+t%#v||u
zJu;8nBN8<{5|7k#FZJv{)R~3VhqK&*F1CN{WOw|p@F+dL&=5R+80t7xc`m;#`(~ka
zv0KQ0CEL=|U7y%*lJla!_4v-?7YUNb_p0deqsLF`UGt+|AF6~TL3Mu?-E1F0Ilp=Q
z?(wI`Uov;|^M?dLA4;3*zL+Kz)=wKWsv?n_tKNMU@mbWTi%(adUOw~tbo1%%)6-`j
z-wBwy(6?!N_-?P{S#{lmd3|pF5A*qaGtD`lSDAz_;M3cupHF`uZ8!AsUB!ib`uYyx
zemVl`vy-WehOg0yRtx)X__BENibb@=d=~dv#%F-f5<W}%EakJb{`Pc-IYq8Jo^|Fi
z?dvX<Jh~6d`Yh)&&}VtysX+IWTp0~bKeZ+sBC@RHv$D^jK8N|N;<KvH7Cu}0tmZSw
zXSB~4pTRyueAe(8;WN}{n9p#Z)s@r5*==c-x)aVlPIPP)1=jQ#>9e-aD4(@_cbr%;
zUcK!uE2okE^O75ss3hSW>$8r}hCUnltn0I$3j3@t1jaansan$FZ+f6prsB>9zH3}t
zU>o~v;<K60=DwTIH?`48iIhG`Cxs@t<Nd-X9>!KaTl-A%+1+OwpKV29pYcB1`E2jA
zgU^mWsxCSFa3L-p;dT>*r{qDeAy4qx*=HA@UHyMaDyb9ccJtj%lQ0x9CmI4W9YSmm
zpFMr{^V#2LFQ2`A_7RJXgZj44#v>e|WbQ<(m34)C7Y^__(B~kZgC$X2-HUI!fn@uM
z9OAoPM7O8<J3{TNEdZY*d@k|1)aOVI*5_28(|nHhImYKipUFPQ`W)wTyw3@~`&hH^
z(c8q@ht=EqBDJo`RZwe+&q+Qf`<&vFk72F(dHYFsp^%0n@@n$Zb#15noZ)k>&v`y)
z`kdu+w$C{>3b8{UIa;~DGl^=g@0v`X#Q8oK_*~?3vG1<`z0h|zopy-Xq4uhv{1a8w
zh%WQF+~*dbTYawZxzgu4pX+_D^10gQ8lP)z;9}f+{oE_<M@@A153e`LsmTpKH~QQp
zwesBs=I*}SUd{;oG12i$?Tf;<`P}YvkI%h6cSyy2?((@?`1EJf(a7RyE*2V+`Lp`F
zA>Ze7zt2>kX+975PSOq<=G-vZTlox{9IK~Y*W%X<pNFK&QgEM#eID_7*XKQ-N7cB`
zi#{*;Jnr*^&odHHpC^r6GsQvCq=&OAtBmDo-|41);;FdvAD`!Zp7(jd3ip1@m6Ueq
zCsEACxc%;zeP;Q*?(>GvD{9K;HJ{m1YF*IO#R;u6UFG|p<VYccyy^3n&)Yulm`RbP
zmDZ~}DZW%y`;r>|`;vB_$S3ys(B~tchRnFn$3CC<eCqR=@63X@AbcbhQl-yr6g9(h
zj`Z42ch@Dlro}>_<>RSGpHR}MZ$)**7tZ}0Zi<yjA0_-c;4K^ysgh6S)Aq?Egg%8&
zY1qo^7PTcgVw1WSsvYnPpD%sBl6d!b4XRn8Ct`l>yWMc*eCPAMq&nb~fFFE*l<^5z
zE8r&$#AmU9#RGov`BfG>V4i^Ae16wh0=fkJ;q#}@KR$DP{*v<QwJ%}*tb2(=E$gQ-
zzR`<pkUOF;nsg257SKJQN5DZ3uuWg5wi2*Q#<`Dw$>2yq<_(xHpie;GfL;Of2P_cK
zJ8-kS=-FXI1Xq8Kzt(dXQ!E&;P(c5Hg#&&c=EmMne?@<rjMV-j0s7X=qJdi=TxzFf
zB%ezJEE%v$z^VaD1uPvfFktzBWda5SEE}*~;QXc0X6<v^HWh7e9Pc!1g@6?URti`-
zaBPww$+wrl%R1dPlQXBevmdJk3<?+)FkJlx3<($-IB^ngnm8oJJ5O|+k||g{V2ywg
z0c)zjc&Ayb>Mlfm32s+3@trrs-4n8Qz^H(o19lM|0>%Vv9<W8g*no8cHVoJ(VBLWA
z0@e@MAmFLfosT5B9T&Kzid0fMD~gG3Yx!&(ut~tC0h<MGeW5|^Kiw&>2BM=2dI{^A
zp==qjRlxQEI|OVUuuZ^4Z?T=mJH)BKdrLHMv#qp4bGHoUj`|xgK43!N&ap@b<p!+Z
z#mTc+AjUo1i(LbD3pgy`@PLT{lLGb)*e_uBfIR~C4A?7hGoY-ZR8Q|O=p;;ceF8XO
zAC1&xNh=hcWY|C80Lf3l!A8>E?2V)Y1IKaUb4b9UB54=L1sQ)?4`s?ZJR;!8fa3#B
zP_2NY1C9we*5pd2TWnPo@kL`fF5s_0?y^C3dSbxjfGHxQBp-JlntYxPL-hS?j-(RW
zQv*&5ctr>VoE~sSz?}hi1)LdhR=^bjR|cFNa8AI5B4fb00p|srA8>)huM6okH&y8y
z9AdphLXAt`FAlgQ;Ie?r1GmIbFS>XA(!d!*4O2LXu)oNRzsFSpR|nh>aAUwV0oMjx
z7jS*x)Liz>*{(TmViHdWj&`+f3b;Ao)_~grH^GUaw@9ugyB%a{>+OMC+T0=9>TBIb
zJ*j|tygT5YfX4zJ54bnrK8bO_jDY(C9tfBkFiq;v-^tH&qa2~0>&5W?Oqa!2)9IZU
z@le3S!av~Az@Z@)OLA77>^_wuRAnpV@;wpoWWaL)&j-wu7zaEZ@Jv8+4Tkk`KA}e8
zZtx5EkL<$`S4&5R#9w_g;)Q@016~SvSyb)i#=gdbtn`HYfZ!}C%O37CG;#}7__cu9
z0ck)M@VZ1g;PZev0dEGp74Uw*2LW#fyc6(lz<V-Tqxq(fqm`}(T77`)R9w)C@56wP
z0zL`&RH8MJj{|38RaoOyFE{nzGgEe1Mg0|dYXS8DKOhKbXi%bmfG1g<?O5+E<`^Wh
z$e75Ll1PLyL38Iu0kNcgm?N6n*<h$MafxX}Lzh1X6td3&zXp^6Rlv6a-vzV-z6kg-
z;43k!pYzW(BaGXHuLHi3MeXUFUip*aY-z*!UdCTGUt(jL{-Xvp(%CdkwXRcn0wdga
zbJX>3GP5%NAzefM2>4UhHDIoUTrYpgh-rNx18%1~L~Yqyi8P`6@V&%C9;SNi7ScVW
zM@Y}m83)~dCT1xiA(xHSM66=-h4cz}AY^LD{2>d3>>RR7Nbit7A!~+=4Cx!PV94?z
zD}*c*(l2E3kR?LLp#GuLqeVg%4qclP>D}xE-J<q%vG8A?YRQnLLY56#PAxy=CeWor
zXQh`39l6xb04uN8sYDQAI52cKDkxt=TQOv%kRc&MLskx1C1g;@;LzQdr5hMl4OuO8
zQ@p4r^Q$T%olZJQ)NdTmu#n*)YlMslSzUD}GkBCEf>uDXZ|Yi@sG>91A!~<h8nRi)
zsF2Yi>xXO*GA3kf$a*2;LMIqKAE!Blbwbt+T}3seM%0()K_%W^kPSmN3fVYhlhENH
zgP?)PLQ3BBS7n6N<{?{zY#Xv&$d(~ng=`(NjkpXeoaQERkyODPc~%;Zy4XHshmZ-O
zlM2yi$B^+Mx{7lrqn`MvVru!gnXZ6-yN2u*a(2i$ArnI;g&Z7mNXYJDR>;2MRLGuI
zcdwAWty$HQS=Q7quXrEhg~WCLkOM*v6nRCK5w2wgSmaS_u<G&LWt=yAXvkq9M~55}
za=5q_a-=wGEeJ7H(bxrLQuZ@v=~(OT%#gE8V2%qp-Y_{q<PDju?#%7fKI4?o1&&S%
zIXUDMOP^{`i!9}zX6e%no?%d#`lzccw&r~?RKqz}LK1RA$c-WAhg=}-2)Rt83%Mxd
z;*d*1Ck*<1I@5X4vLtdoB@*(nFAupQ<jRn%q&|;3b0i9@*{egYQRY;3y`F1L2CkR1
zNSvgn_RWaC$GMS8l5YyRIpmIzJ40>>xi#drklUp`#xIGY$SBd3N3E9C^<5!%hujl#
zuMtEC4s{An2Jk-ntHNsbe(O=?^%<jSA=5*?5BVYF!H^jt?}oe=@=(abAuoiy81hKS
zqan|PJR9;@$m1bTg*+`i>dzC_tc;0}e=?;1BxZ)_qeW_5{)uG!U-1rk&PqNnI+(Tp
z=Orhf!e7*QDdgpl*&(lo%nEr$%nf<XsM?_s@~?!pEVGEL#l;&TZ-%^M4ZfvLjnscV
z$lE3`fxd4wcdi&Gn!F$KL5LUPhkO|Fkt~VAJ0Ty3d=m0$$Y<7z@E5-X^;(MLO);5k
z^yRORdPp;*71A)%CsQxIlhDdP(ZNCuO`BO7X%G^IWFdJ-6cUFdYF36~tTU~O<SabV
zVXpR7SRs@mqzw5Y<jauC5D<^FtZN%zWc{>!)1bbxp$VU_ZKU6Xd>ite_^YUzoj~h=
zKZg7y8yhh);^&ZGWJMzuiTE|-H`(ooo)N#xEQHKe`w@SJ{1x(d$Uid3z1+aHXcc1m
zUH*VmMlr5SMAwLJ5#1vvrEU^8r&RpXl%bN+@p&TVjp!56H)6hsUJ>(0ED$-Bk(tu#
ztE!?qGo?zsBR5&djhE3|Fk+#Iei8kJWPdkrszFJD*5*#*Y$3L2#9|REMywREc*GJB
z10t4<STbU%h@~TziQKe%=~OpQsV|K}C`ltUH!T-2Fk<<L6(VP3v~H49A?qPDI-LKl
z6iin2h@la~B36x9En-l_;D{^Ub{?GsQVXsjk#mE^HMK0?QW`WoVs(u!VnpQJa#29b
z0ZEz)Xu6jZ_-YT<idZ{he8hx^Q4ymfHjUUUVob!?i1i~jh*&3b`nYbydJ+4+?9zY3
zxXAS-!P8_a?`uQ*yHUi(k@KkKR|t7gX_LqWh^`&uu-ZIgi->I_wu{&@ayeT?Y#q5`
zlG2X#uhw_lL_Cd?)$Jp8h}bb=C&`J;DMDC$QAv$d^NYB=bHpwY2Sgkgv1`O`5qk-N
zh=~!C)N;h05xYl@YvPo8l-8eNGnb;2GHyQ)WgiVHV!w#}Be(SEFgWU6iz5wCgVjFH
zK@kT>91(G3#32!fMjRG#c;pPG@NooD9I~eiObIJBdsM{H5ywOvYtpEt&A<Wft1+4m
zG=$?MB)whZLgvJX$q^f+Y@9MB;-rX=Vm^*JIpUOv3t}#eIW^+6h%PZ*V@{7aBjS~a
zS0m08!Vz~x+#PXt#5w9K;_8TVBhHJsB;wMD^VLYig%KB-NNZvB>V2HGI>UQ8>Cz=^
z7i(O007=MP7IC?RDsnTvJ`uj{%Ul^bS(WFhm61HFYa*_VxH;mMi0dM*kGL`7CQ+}4
zTjJdy`RV2Sd^dkhchr`?NZN0WxGmz2h&v;0mpn{!rbCN3y@W2y@SZ;C*MkpMb*gbs
z#Jv$uL_8UBU&Q?p4@Ep2@j%4Xi0Kgznj}cN<a17oT-04_C<%{3b2B0r9+df#@AOE-
zqY;lqJg%{8-s!@Q*SnAFt^c%(HA!rQz)VR+#Pbm^NZulzkw8W~7x8T5))$Iy9XHHj
zDB~#>Yao&bsn3fMFGai@F-vMYzzKkw()wMRt2l$)c(L`hh}jW|G$P{lh&LiWRk%Ll
z&4{-m-jDbo;_ZlcBHoR7Pu%b2yk7~Pei9zZl0F3}m-s^og9a7xi75Q6GYj%VG+6m^
zlK-2Yck=Uj#GD8(!jGs$)J2nsrZGZj>kAz+)GcG8&PXdbFDA+Y1QB6GB$0^FH1w>#
zo;k=dQI=5fkv?v`SwtT3W5iDpg-lb#*Wz777156PBH~N+BBy1%qr)#lTrX#x?rh^%
zkyGAT3YAMiBEFCKA#w{V860<q^I)fp8sJ)!T>9sTUu5BhhU~v6FUueChg#5F*4-^w
zr1;vP6ozU+_V(|He<J3pK<u7M5;V!mqn5CVGLlu@CfY5gd(6f$o5b{p=^3+P%t|ry
z#LOGBNX()!^TqUv=^L|P%=|G6#Pp8o6T5G}KGVys#WYndw7dJxnnYAxFBH=+rhm-B
zvFl6G26ZQ^>->RUe1E^YCStLe#bXA<EE}^#%#txn$1D@G&?|0(KytE_`ZbBw%2a4;
z_`A)WyPO6RvwX}7v0JHWyowb_in?Cu*dd`3F;|XRC1$OdwPRL|SuJK*%<z~&F@s}<
z#0-s{VYzyut0F4tcgZ*x)6?>Qbu}9^B4*9lP3WSSc%=B`Nac5N$V=+(F{v08GdgCy
zm~k;<V#da-6SHpYt`n36P`Frcyh=W`U$0kF6^UIxW`mdwV>XIiL}<v<?sSCEkW|S3
z7Y<5q8nao<!7+!#Y#y^k%&sxJ#cUa~Rm_etJH>1rvrWu)G20t$uN}p<v0D^KR%J<c
zh@AtY*-%RZO*CT1_?QVXJICx2JB<^YWUmgi*o8u5nn0!R6JsXD>=UzZ%<eIJ#OxWf
zSM12HAt(r=9T^QlE7rY*iET`X7yHHRA9Fy=fvRZAsF292p)+FArh{TW8Sb!>G#(mr
zSj?1|lVT2!IU?rRnB!uOj5#Xi=$K<-*NYZwZYnf?PooeS_n64>F(<^F7&BR{AK-LZ
z_tIz*pZ|HM8Xfcg$uXzIoE3An?0?K@vivb;#10LW6dFQF^PuG9%-C5WnL#0TPRzM6
z=f#{KyUVWiK@ADs-BXw_iaQk4+S@7MMKKr0OpTcqb4kplF*n8B9CKOB<uTX9TpM$R
zL?z~`n5&H=BE`a!TwfZ(xc8iiP#EpHnCoM1h`CV`-o;6&Y+wg3R8l{w$t^Lr#@rKg
zZ_I5mx5wNSbGNwAgE2>PNBnP_cbfF7ylTnAf8g1FtKS!Mf6N2YS@XNr&>dg1-E1ql
znjZ6@YQ?-3Gb84qm=|JRjCnZbk(lRVo{xDnb~DRkHUy!U>Iw);KVk4mgEI|2W$<Z(
z&lr5x;C~FNJK?4YPP3a-OzD?mUXGa+^GfU#RuOe6Q3rZ@DN>!P%IuieW8R5*H|C9)
zH)Gz4dE17pl4?Xj7#S8Vg;ZFz-ivu(2*-RV*%-{S=6-ZEE2`>q$+B{v#C#g_Tf*-N
zpT&GGK}t9=VNOgfX61xc66!IHm_K9wifP8QV!nv^GRBMX)q6}Pg^CGdB8ii1<71Az
zv&|z-tZPM9+tXZJSESBkikLE{irxEh(jDQfjii2on-GtFiM9xC9^h9oU&s6y^OLkP
z=39wn%=a;BQ|0%4*I7$(K}z?7v~0T5W&Qm*<`<19=J(h|fHm-6V^>Ve;qJz08A;LV
z4_P65A^Pu_e`LTD7E73`k_mki7EI`p&^4h)LQfGydmM?2YIaXtEk*DIWq8%>JPGq@
zonmpPd6iCFFs+xt`3){$u(v@y>XUHN?yk&23H=iKCoG&ee#wxEXzrJ|%l%~h>s{Ou
zUNW|L!V(F~CM=h*WWrJj%Ong)oRDY_LPS_ParY4^Xd??LR8?K*4NO=*VTFVh6Q(`x
z=0{C`@)9*ujGN9%YD!To^F~%pSS?|Tge?;W3D1Nv31bt6Bn(X$k+5dMu!P|Wt0%0H
zFu%I!;+E~QkRrRRsBDhV7@4qE!l;DN32P^=FU43y>e2REoR}-ESEevrCt=-$4HGs>
zSTA8*!ukmtB#uq0BIBkT`6Q_O^>Cj2Kt+KPHc8klVe`b<z>l=Sm$-g~zZzGt;_qi&
z6j!6(Dq-t{-4Z4yY?H8U!cGa}6Shm(K4FK19TSI@2(CFxlcVgX-0Z(`tKA6+J16Xt
zuxrA_d$?mKUyrbmwcSJ{6_X*Il(2ik5eY{o?2)i%!l4O=CF~`{v;}OUBFnkGv16aa
z4S!#Q`x)Hd-~kB-CLEM-u>CzGaV~*M_MPp@%fC82;pJD{2~|Zi&apEaM<pDcaBRYH
z!fk|;lVcLMaV#%d6wrKne8QL0-O%<oyFEE!icm^;M)H<$a>9)XHzk~saH?8JxFq4U
zgwqqwNjNv*jD#~2&Pq5t;pVs8=9lQBx4Ew!PVxvpj&O`SFX8-z3lc6Avve$EgqxRT
z!Q|=b_@5N{qQu3k#gt1EE=#yN;hKcY6Rt?OGU2KOMLdMz-ug<H_TPJu&2)46tUb6k
z;ktzD6K+Uc>{p~7yR}=2YI2bPs2909Hz(X8NluuaaBISC3HK!2n{a!=9SL_P+$G)Y
z<s4eIuT7%6O`PPMi;o@Ze_z7=2@fPpm9+2SHsf~Ce54O1Y9FVYn*`<lJ(w^f;jx6r
z6CO%<IN_0mM-#pn>Cn*Ru9AvkDfFr#Xvj|_Jee>v;VIKc@lN;)XZ85{XqV8g#IxeE
ztY|_b;kkt86W&UATlOU3Md^ORYY8uj;|a48UXd<LWatbQo#;Ndp;&~dAusgZF3e7N
zJ>iXnH%+<Z&}ycTkEHTCp?BkW_uAt-3GXI+l<;xFdkOC+e30;=_%+EPER~V=NyfCU
z5#?3=lY~zbK9|8y+|iC#y7HO++C3p!@^?(T8fMKz^iYK_5?Tpu5hTG&@DtL6EFnk;
z6QYDTacZvBhoT>{5^iDDha_<lt7U>LXP!_blnGVh5Ewkzc@ggqa>SGt$O+N%;md@t
z5`K`XCVZXnO~SVc-zCl}3iBhoJOAW+8EQof?JJgIjc%^{New3alJKhx*9@mSJqJ6N
zM(546E2kY*S-d|I{*(z#Svuvfgui9YQWi-0N5)^)KBZ?0DP2;!rgTf)l2$^f-5Ie`
z(`EP6jZQ<8-kmGspE7UCd?~$B$0h}2<j)-Yh`Yy6qV=ln*Y{58ld?$4qA7h-7ED<v
zrC;hws({$B{%3CYyuanh%hlAdaO&>d?%$KeQWj5HB4x?c-P$c#RTXt4-U$tHN1om?
zDFadlr3_A4Hf6b#6;oD98JMzs$_m!3f-~AZ5#LpPKMSm_oU%&Fswu0b?u~wFvGR4q
zMSFHiT-nt%J|tym%6ci|Qii1rPZ^uCPRhu!te!f<D6_Ce>Y7ztYedSLsS9w8G`N<*
zwGAqBRLW>ek1;5hOqseUSasJGO?sh|mJ${HT|Z@mlnt#}c`2F&^wTUO%r{BdH09)s
zQ!+M7**s;fjI}eiNZB&wvy{(Mwo2JL<%*OmQ?^OjHsz?4qf@pMNmKSt*(YU(lpRxc
zP1!AFr<Cz26H<0gnK{b^X0ICJPQdDr$u1(Mt_{~=Fq`Nnrc6rNBW2Ij9Y|YN-;q~$
zI;q<c9MhaT*sb06N}cy|kj#F{eklj19Fnqs$^j_{rW};Ii1A8Yoq^RZs-jqGCmqZ_
zFLP+hVJU~F9ARVEsOA02OfA%fBZcP#cYsIBiWhZ>cgnFTXQiB-a$L&sB5BI0DJP_y
zm@-*mAF+P4v)H2N+*h59X`ykFNT(s&Se~`>#;2v6o^nRYnW^hbn5cclXT%68i$WIK
zH#sNe+?0z_E>1Zw<@}TjQZ5u3Uv}E0gDCSa?t&N^xRwKoZ(NdcY070Omy6maX&*iB
z_Wr~{$*m|O-MK2|>Xau%@RVy(u1&co<=&L*Qm#+ACFRzX8&YmexhdslNsiqa__Q5D
zxV?v4Giqj3r?;ito^nUZof_IZPKt!m{I79W%H64R24sH(wLhhwCZ_vR?oW9zWrk!v
zWopW_l<DHBWb7Fy@J_#WcLx}BGDNcXP|Cw8kEc8#o~AsS@>uG=w4%vf%{r;JO*)ZF
z!D?BX6?8%OD4t4rI%Rgs>nYC&jg%KtUJ_4Jo=bT?<pr}UzjbwHR{E|umC{l=O?fY;
z%u0DB<y9$uZ+B`}Vj#mV3JCw#q<}-6;)qReq`aB(e#!?aZ>7AQ@=nUTsf#oCZ#hp-
z;aNG!dv$XGhxcTB%=i8<<)f63Q$9)YX1cGsNPrc))8`>%jy_FUf2`X9TwI6$Q)($c
zOU+a2DGf<TN|n-77b#IntQJyynU|DMqHgO=(NMA34xN?3zpXz>N}7_T<f3y|*O5w!
zR)U2HWh;7-QI@=&@<qzGDc_06DPN_0o$`&+ru$;98kdVDuUI2ewB-AgA5wly`AMX<
ztugUY0x!d;4K=xTngV`J`AuWbSS;iBls{yyGv>?qQ^sEwKBHU4-!lFwb7l53=kq9F
ztHTwVjMP+@%n?wi{$N_uJ)=iP&y0C8M>jF<&j%gvwwvV6LTIN$C3|JepRr)ZLKzEW
z^v>v$(KmChqhv#^$<6rS9yhJa{TQu?eMbL`g)<h(+-D9nMj2rZr1^|nZp$f^N3nRu
z5*aIJtdg;0#!?x}Wem(%I%AoP0U66??gX9GT-8N(Mbsr%+AxwUvV6u087pS2lsTKQ
z$p$VUpfCOipS@DYDf#fLW~`PmEMs`app3y8Lo$YDcC2N(gVG~Opp;Irf>EPcJ!6fG
z5h7RS_E=Ya*GY19KO-|2Ll9I%LdU@50*%TTov~ZS#EdZ+V>33Fxz1Q8W8I7mGd9Xt
zFJoNB`WYK!Zh564h(v-CNJ05pqT9w9n`CS%v!A)YVzJcoRa+Dbic`;YVM{S3W2cPq
znakNaW4ny)#laqIld)~)jE`1H(%c;~b`&wk^6_v!HN6o0cJAB>89Qg}lCf*%y3nL4
zMu?}H)^#z05~Av)jNLO1%Q#%a%-A#IfQ$pxOUB+A`-uXA3Rv}W7Ih!PWZ&#xITxyW
zPeFsy@1Tr>GY-i(G;<sglJc})+u32RepfQ7J0j!AjN>y-(5N$x&Nw#XxQt^m*MeG8
z#7TpiZS$sF2-Q{BCuU5}n38dl6;q~cf?@(n=!BJYO?6MrI8B4i*(K-nj58$CIrHY6
znQ>OeD;ck5oSkt_#@!kBWSpCEUdGiK*JPZZaY4qV8JA^Tm~m0Y#Tl2_sAY3RD>+Mw
z-3b$s>ze*to^eISl^It_)NKcUv@TuI*?zn4P6tl9b>-TO>oRW1xHaSYj2kj;%(%(g
zlnl$CSH+u!(s*~sSqdT_X>DEplW}{-of&rt?f%>$7U<IhI;mpDSuA+-I44Cy<KB$>
zGM>nIGUNV?2Qp@4Jd`mtW18eV<3Vw1l$-8#bWOUi6{x&ExzjTy@~|W)<58(+<|I?|
zj^Y(!?zjz{`zoqFE+W{uk(pv;#&a3Zi{ly3WIU^8Gh5FNcP_E)u;fbGp^clXCh|hY
ziy1FvylkA(r*JfZD*PyfbyR*<=G09=23d*MGG<HHGV+Yq)nLYF8J}monekS}2N@q`
zyq)n*#=9~FnG08Hoh6$oB4|YKtFX3Khq`ZsX)63E<Kv7^GCmbgCz^uvauOo1Pla`&
zPjr}*QOoc${ET`=Bcqwo%ADh^MVvOdgrs;ao1-%}YCOmYGa}(^8mc)(z3WSnT2duK
zcxTegt%+nv#Su+LMMjzNOUADmRYp7GTQ#2XMaGvIUuS$HN{-?y86~@+NTJB1>=i#X
zA{xs5_&(!@jGr=o&iGM!H{Fp=o$h8AooUe_)@Ta2aXi1t_-D)&0y%%k_-FhjvoD)4
zn|1bZMpF2Tp>Akq^wffMs!LASobEY2a=PVQH`PT6WV(fkjGK&M&)i9u=qBHFe}#i`
zdgYAFSu1D$oCR{0%2_(6cTS(2MRFF+>6^1)PQRS~xm(Z`vSYam?uo@6r)U<|Bb&v}
zv$fJ<Ig95kk+Wp(sI4j*ly;EyVw9Eu;+M?hGC2csR?Jx`XW5+Pa+c3oA$Mzvfw_ya
zYSNT>QAJge0825Iv$7h@8IiMQ&Z@bi-fDsq-4aZNh0maz!MS6ZenTuVG-sG4h8tYH
z^XVG7bL~`2pKMcbN%4O%XziR)Ih*Bdo-;aUOwRf_8{~}5Stn<`oN+np=FVHtIW!ID
zB)fD-lc^+Mj1Unv%-JYs<D5-Ie_M};zd~N-O9S6DcL^;gwGi7PXUm-Jb9TttDrf7Q
zZF08N(CjS<8PzAWvC`E!3Eii&UGDml_1H0Ir=0OQ6LL2%>m-;OymqP^i~JLjOFr$c
zIlJYYm@_$NV$P(TgL4ka**#~EoPBfl%h^-abN0^J$A%;1<u(gX$%YQdiDjBZ_Rl#W
z=fIqURLjnUYu?;=rlXaJrW}p;(450^j?OtI=kS~(a*oV7DtA^$1!U)6HLpqQxDR@`
zaKy1W$K@QKb3)ETnx6FLpe+g2wdQM$MF>pMU~`_yc{b<doKtdc&bcM$)ST0DF3Gu6
z_CM#0obz(dm;KK<E9dN-b8;7C6M7x4>A8}wC)`V3YP?~g)C+Ph%(*D%ViBQ_LrJHJ
zuIuiu7MJs^z?5*lEa&o^Yo$9mSL9rob5+jOCgE~!6{ykCK2iRf+!>QOeVpb>xvtN-
zA?L=Nn?&S^=-b>PptiYnKv%S#r>o=6tvR>lOwV~R=k}aCa_-H!FXzsjyK?T%xhHpF
zWSwk0MswCsHwroS3iK&@aDUDNIa70{NfQIttm2t+hNT*sh!rl_y9YBw(wxUd{G5k#
z9?5w$=P^@NS-g?9w3iKkc&3vRS&t`kX68JV^R(ftrO>w%9XrH3Et5CzW-~?3b2;^#
zM$Yp&FXX(P^G?o-IWOhBmNPr&<(yeLujITca_RFB!>FeH%X(2v%SJf{ujjmx^JdOl
zRz{XqCj>;sR~3|)=sx?a_0hXI@9EvHoKJJ!7uw=x&d0J0qusf<4{hL50T~&YN8$PP
z8jcj7<$RtqC#Po0CFIqnR*v!?G<nIE%AarMv~s@8`6|bgk;zF^Se7s+%!zVhNs+cn
zN4SYtvyb9$l17QgmtDzn@|;Sn$tg6(``kQI=I;Fh*;|RLHpkVYB;gC`<^<j_-|TCt
zRnCt&KjnOz^IgvOIX{>bNyycOLbck4me(Pv)8V?GbAHMBHRm@8UUzp-qqhG<%-<!b
z_O5}<pq3ljEch$uZ&~awS?f#w$(bvqt2nZPf-VK!OL~-aE$CLTf58FDDd<tKals}9
zJqzY3Sh--8f_V$(D_E>x@q%6j^A{{s(63;Dg5Cvv3i=lA{jUk#ol5pJs>;YnY!)p3
zWp4k1g$oubShR2w^++G|0Rm}I@`y9tGWf!LiGn2ymMa)ouvEd)1<Mo+C>Z>-Goc-)
zF;!Ot)OXF6EnM7KZqo7vD-^6)uu|c;seaW|%{*tB6bYEBtXi;I!P*6*3I?gcg4GMw
zC>T;Ov|w1l@WR#l#NM%$zNq3?c1TQ%pb-UY7K|)dt8j8IL#<xkoa$C>s-o!G<4-cW
zU`)Y!1>*|F8XD^qtZQwmDH(scTPiFyU%z03f(;8c5;gie%@ukQr2X~U;3JHi=?J)K
z!Da<J7wn=Q3$`fOu3-CuEep0P*t%ew!Wjw)t(*bL_O^vHhUblUhq&~uVYRSB!Hxwx
z6^t*OAr-<hs>+w}Ot8Yr5%rX_Yr$>>dlc+hFtK1#;fn2ExMr15F(niW(kS*S*t=j~
z4a!<@=e_67-KTKhZs;hf!YcV?Uk)rdsNk`J#|sWFIHchGf(r@`EjX-TO2J75hZh`C
za9qLh1xFSfRd95{F{-7--4JJEH6q!xV+*&AyGc&3Y03!&Cl*XL3QOK3MRHI@Mj`pE
zF8?VwrQnQ$GY$V!Rd}#dpVJCX7rX6aNo&k@C&14tIJ@B7!pYt_CZZaPjK5lw+apyy
z&sum{hu8})D!94emV%25E-AR8;7XI>OA9V5oJAF?s(!g;s)~qkRl(H-*A-k}aE;|(
zYfw0hHrHJPyrJO6f}4z(3Vle0b<jx8iOQ(KTMKS0c%Wcv!R-Zi6x>sAue8jty{q7E
zDduFy7ZsKk2my(Npfa@ry074V>v3LlZ>AMYFPKsAkeafqG9R>dR9%ZiEesznc+^<`
zh-7bs+h<geM5v0ePZT^^5EeuQGd13VcM9Guc)H-3f|m<s6+ElH3Z5@`!J2)}y4K0e
zhE5vWF}4>AUb0M0xEpkFUXA9USH#DH*9+b#c+D!#wlbP4H4x#Z$??sCx9ri|1v)aV
zeEmdoJ(Xa*SMYwp=LK^LJ}CH51MJ7AR{o=cj|)CA@@gy+5Aj;Hq%xmbFG|ZLt`*b^
zS_Phdi_x&U&BDDjqyk?|a?Y@CnL*(ebn0F9;px}i)3_ih_@UrO^-_>Y*9yKY$P0>s
zwuw+FvF}A?J<29)$44?LUs^FPG43nN|EAzuOMETG={Wgdy!hTS6{``gv>eby0Y4S|
zT<}-H-vz%E{95pbsMn9*3Vt^vwLX>WKE<wP67T-BOl=Ja?SF)oLO>;5N+;oSP56b9
z2-3B5r&+p{&gGVus~yATAEjr>JSC5pJW(=l$$TYyl<Zm3t7QI?;U%k=EKt(BWZ9DC
zO8S)aEm^c=vC<K0!IFL@{Yw@qoh1>ugpVX`;nJCiMM{^}j)shwa9g}&iISyDmMI-!
zmsCZ&XINZYs&rS&id-rtT^>+6r*}VdJ_nX8U$Sz^Dy37I6-xL1+KSe@2C|YhrPdTx
zUbSR~Zhk8nT)OU7D;=+u7*aCS>JGEQUz%4e@l)?&#2O_dN;WOoOr4gDEE!v}PRUxO
zv%RA<z+O(0*Df8=oNAYhDc!PK;}w^+s9(2ay^;+|HY^!uWM99tu-exx3R1C+45f`r
zHYwfYBCOQA2>AH}?&;<wTa;{HvO~$1C0l89rL*T-8^S8QP3bPj7W+gK88_u@S2_Wk
z@;p11>{PN#$*$JL_>u`FJKK1Lp1M$^QN~tPb`x`T|3k^7(uHA_f6K#8P{pI&jZ+P&
zPs!dT=a*bivQNprCC8VXP_m!8D>=O6h>`<J=ja|>a!AR6Vn^xBvOE(79F)-S(2~O>
zf%=lg{m%E3%PIyPS#ng#(Iv+SPISVlOhw_2HOV=y{CCMFJmm>2pe1?9<dV}%&M28u
za+0c#;?$CpjV7m9t?o7}X>&ofZXC~PCEfM$+!>r%a#qQ?rE^a7=<Jenj5r-uR0654
z&$Apo)ynt6l8Z`iFS(=S;*v{Bt}VH)<kFJMO0F!qO5!)!3BctgSCsCq6)B)Bl{j*B
z=|b7p7!hRHMHxYbF|RMVq2%V0Tf_^YS2{-DWNF#(Rc%XAM7y=*Hp8TD>sb**TQ+x=
z+*LBIWV*;AwJo{7<bjfVt>k?+cCGr=pj1FZ&`%~&0y$N3Xe~b|T_}01bWYbpB@c^e
zC6AV9>>7xIDvG^#$e|QX-ni<@az0ryvt+4?r7NB)dAj7QlCMji(db0Xk~u=4<T(jv
z$!jIgm%LE&V#!OTivvG6&FSnpIx|o*tK=2KQwF>PL+Q0#BgxzBlGjT<F8QS74gLD@
zX31OXWwayR+s0ps$2+CFTuv-j=DQ{DnNGcL@B@Ql$A={!b*818pO$<kWw%e`sZ%%a
zYjd+JwUW9hUy_wHL=z!a5=z0P>{{NI_@xUOi6&y4WJ5m%ZK9I6Br#1)K6bwMf1hgh
z%u5PGwOvw{ZZEYGc^`2XR;#-7OCItUGJ{e&9RVHUY>3>3Z=`6F(uy7x-<5n{@~22w
z@<YjwCBKyXTB2e<*`R(FVtt%Tqp4rJ$-kBSZUXR!M9#KcMQsgJ-N~5zEv;0oiY}Ei
zS<0MiBB$*z#i{h`TDijADo1dUPH$@KZ_kQ(D*9F|STS$Kd=<Sa=C7PJma?dk4%59r
zMem9}mAi95p*B^#W4yB}DzK2ct5~#Rv5NkcyUAhUibX2-4J;LtORROA4j8{VmBlNT
zs93V%V!LcX8*}2UCZ?0MH6w4oVnD@46&qJ9Td`clniV4}239OzF}Pw##R?TGR;*Sz
zsa~mK<%(4*hl5s*awFB6P8x_5t5zrsCCO2GkQLA?2}3J}RjgjIM&+bbwIuVy?Wqix
zxFa@6Pe)kJs9~&Cv3A8e73)@vs@$Zb0%MGZqbs)#QVV0PDJ?~1X4lh@MS&q~P_e!>
zq5_JPN^I1T(i>W)oX<@}#)?T5yH{*hv3bP~6+2qXTU2aau}#I66<b-3s3&a2uWc*W
z&UO{sSFSrPH?#^?LRL`*e5Z=>6}wdIS}~z=2iJG5+<kzrc1p;Ap6q4~PBbXi$b(fh
zNr^ow_N+Ld;=l?W*xsvRpNf68ew6=Kxh)=Tz{#rbSMkBl>|eQXy=qCuWa|#9IJn|4
zql3yEQgNuYzerC<AGuyCdAJQ+(jp)JsEVU2-f#0kn`0`Dm8og7Oq=5>j#v8?A6A@D
zaiRoCM6Q@zF+~DXaY@BV6(?7mRdII3Db~xW6{i_lL?ZQmdc_&`SMs26sN~^Hk;{mG
zjzpq6=T}@%ac;$VR$Z1sF`o`$xUk|P;n~Nbt;t=jiM*GJhN6J#R$N}WQ=?Z_T&3~K
z$1|uFu9kSn{&zO`@g&Z*9<Q&sq2iW`TPtp?xT)f1D>K^8hABiKagxg?-rZ*TBGm0h
zMxiaXN|5fVxVz%%if1bBskpadM#V!F_f_0qIWKNn#RFD%s!>>xADQ%<y13hWrmH~Z
zrV`Clx(Qa2^RUWPJYMlc#iLeUJw9d$dD=>A)A`AYnX>#Q#zIfEWX+_)qK4$~S@l&h
ztKyZ4=PI7Bc(LLoYvF~;-Dsgk^pk|YY&20AR%ToVLDgTac&*~?igzkzSG->FX2n|~
zi!tsE8-<FUVOyx$%M)3&E_k=%J!}7cW2*|Q{f_9drm&AHK32aKe^z`_@o7a_QB{0a
z@p(m95mn5osL5PZv?_;2y>gRg!>Ff?kG}S$RIkEU`-X$2W(j~6kK)2%6J3?q^3#f}
zA`$){xNw{#Ij<bGB?*P$_LT{etXaF_i;C|neyI4;kpH^k8*Ah%6GFBBt)cOqWiGa+
zW2L4=QCq(sD}Ju{rQ#=RR_>GNuPVP*{8sV1Oox^#3pm}Bis^HN+Qs;*;&0jTHVd}-
zr(&)qmo`1y(56e9Zf&=??$`)cJ6+rEC2q}nqGb2Bqo?>aPn&t$%-?2#HuG7g@_V&i
zzlvH2D>)UKNqbvPpSCkEZ`iR|g~b+X)341UZ5C}iRQtDC*jf<jzM1A!L$UqE+AMCF
zOSV~}{jbJJ??hzD-cr_}+(mUapv|&vj+Sv~vs{~jZ8mJPQJdx4tk7n3n=x%xY_n3E
zp>2k>9d0XYfNfT5vx=doi9j>vpf-c;>5#Tt{_Ehb<Zy2bk0^*Yyv^!u)@r-$61A{~
zm0YvU2z8<BK#dVXW@Ou~kyT*rHlvJ;LRjl2y<b1J%{pz?YcsCRx>jA&r2^(sTaj-4
zwi9d(Pz2e)uu`Vb*tpFmZFX+6OPfvGY}RJ$HrurMY$rBvvxV4a;cl7AE!%8mgi<4;
z?NIKvZMJK(W1F4YY;VNe!Jzy%5n0sML^IxU#O?`JSG0Yims6!(+w9infHnuVnb>C1
z|1tF)P*4-!*Ow|qKtZIa*cGV)D#e1mR}htAL98H(s1zG27F6uLVxbBODn-HGC}OYJ
zv2U^^+0E`In_c<tyGy?R@0^@_ZeC_4GjHDX$s~odQ#dDuk&5}K6waib@TbF!WXk3|
zX=5D!GRIjFG5MoY7(=tsXM^XatkL;M^*@`-3sSf+g|R7&OWEk`q7*J>%(*Jj-+CR)
z3-U`+7*7SVsY=;q0EScVpHRaz%gb5$r|@tJkEC!#3Rk9ZV+uE=a8(MEQn)6CYg3ra
z_Cihe)hSF#VX9P0T`{PMt4+^T?{z6$pTdVLz$G)Pf|6+|+`#0hPtL&(XZfb5aB~WG
zrZ6*wTT-|+g&ES=ZPEk1aCVyIkqNmyk=&88$pPm3T`An1!hI>+Pc>58Dcq~T*&4p5
z)dX&qdmx1e`HJp%NLe{x)273<pNA=BBp*%Tu@qLN@J0%cr|?7yucojxg(p*ZDuu-<
zEJ@+%log5>nZOigN!8T<GZd!qoE|+doS(vM5jvie!rX+<6JfKyAd$R~!b0&yLQdn;
z3scI)0`?3UIQh%c=PM~2VR6Jt$reMgEQRGMtdxEj{}nU<@)Y>n7pk58($O*x)`1-U
zuugt6g|}D(q_8?=J*Br(c$cb6;T;9e+&4?+60mMRNZA0N5%^HIoL%HgY4&SU_?RZj
zZ%9*Em$IIQbwV0i&9GiEVYAMK-Op0^Jca8VT<_qE6ux9(chJMZS1d}@d<vUV_$GyK
zQ%I+fN#VN`zE9zInrI3eQurZ-pP9cY{HV7xVn5L;G}TEBFebmM`23c_#*}T8Vlz#{
zpxHO;Xixv78K<nIJM#XwZ2MnUCMgWAmly5=QhDJmyY8-HZWCDzkxe0&LNSF>${I&6
zg}iDZCeW7`Zp|$ySiUHb8|D`cteirWLM4Szp)sCRCf&p-R8y$Yk~Jeib#axDabwQH
zK?4Wv9c=5Mp@T*anmcIWps|A{j_o|z!ZF1%vzj`VuDY*gj`?NQP}0)DmJYU}V+XC|
zrj5KTABENoNBtbOfb4G3aa#xN9Bd<JTuf&mRNeE-Om7_=bab$bgIyhTa?shq4i36F
z*iMeEes;_(>jP4*oA7s0J33}&J2^I_;v*KxogGszg}XV}-N9ZCx+$uAI93Df>1^((
zbmhBR+4qTb$&14}#)Oid4thBl>flrdy&dfB;2;L55c)XS$HBf1`tqf}*!o~U$2PIp
zw2y=S4)%A<CI>he=wOf{)^p+J*%;Pu44=t7z`=of)Toy&)>9z|J2=F_aSo1maHxaB
z931K3C<lj2ha80+;n<SL+tNJiTc+Y@2gf)#HgPb3^IEDfxmV-_2PZl>MG-#9vAs_x
zi;r1g$DHzYoX22R4x#svMus^!&A~VampC}x!5I!lQ&CKagAoqSba0k~k&abvW&@6`
z8&X}245P%*&USE)qCu<RMp-_kvoQ|Nb8vx!3#D@={CujttywbHe=l;Z=DgU!SjUPs
z1K}(Okr(^Y;~iY;V6uZL4la|+i4LxCFo9X@Si{G+Gbpy*S30=L!6exREuZ$o#*_tr
z1Lx0YV=662?f5l{-qk|(psr;SwAXb0r<ms81_$3c_@0V#aFc@<>CC}&2RA!-)WKs8
zZgFs{gL@p@>)<vAGaTIMV5WoH9b3)6gAxvYHAZF^i%Gc4!QF}y+eapxlT<WIb{Fq+
ztQYa1gNGd4@8AKdT^nCHaAt}gR`jU4N932Qz-;Sz`?!NA96aw}wu2`fJmp}PgJ<N1
zw#u&E)AC4@;H#gN{5dL6wG+#DeNX!w2lE`vcQ98D7%N)o0_HeR{&%p*!3&P*lkREB
z42N3ct2wu}*ufG9?>KnZ!OIR_aj?q48xCG|u#`5;&>Sptuw22e5HdrV7xd23N?b`r
z?Sp5QTlAPIeD#|w{yp%PgSQ>aGFEpq=>Zxf(#?A;P!2wE@Tr3j9DL|tjf1r^;Expk
zYWZS6ts_&n#@4*nIr!MYdS=8L3y@`MD$jtDMSbSrbJq3_zGnR|?~KxyjB`8dck!jH
zbtz$dzH#ua91I_6QRQaB4Gw-_1?Zxwiys~Q<iK~3cknYK<KS=Rrh{J{{N~_yTB%Aj
zbA$@tNCR7ix=H-$;4ftmKgQ%s$E~rz|8<aZkfHssf@%oIf$JdcSZz@6Z`ZpeOe58m
zQ>;A4+Cf&Kj4G2{a1c1Cu{by=Iw&~^9Yl_4lHr%7E~?_sZWcntLF}OFSbEP=qrl=b
zKvm@?+WAm4aM94Ug&w#VCA~FrE$<q;o0k;HX<$FE!4@u>x!BId_AZ*cXyKx*i*_zr
zx|Zp!T(owvrE76uhn5!Ah9M}Ztz9erTb^z<#!^!sWpKJ+8yDNU=pZ-kxhkzm(T=+9
z<f5}{Jv5dMrh0x8s{r|y9b9yA(bdIXE_QUWlZ)M5?BQZ(`C|WJHy69O*wwZE25T*P
z=Yl&2ttY7;vZuTG%PE#h{*tVli|#IZyV%=B4;MXM(^xOpUdqzSgmC1-FqxJ<3ZJUz
z=h~TFeO;?(`1`8oRBP?$qQ8r?(^jSixESc7=%VCekc<6Yta9;&ivwI7=;9$454$+X
z#b6ibySTu`!7dJQG1SGWE)I2Zn2Y0GoZ#Yc7e}}_%Ei&l9T$JTX(?h~dPZ}z^J84=
zcps}+vA{CgG>qdEE2i{B7bh_{hl4-2I@!f3t|ot6`{Z!RP@A7*(wL`A&M+6Jxj4tg
zXcwouIK#zf6LF?%+8*v=go}|bY9q`zM=599>yRimXKdEbVv=1ecMOerM2(&6VvK7e
zDM}b6zJjIxJl8gvQ*xn;i(FjqVw#JKU5s@x(Zv-m#xbfrFy6(bE-q1uxUrUTyUfJ|
z7ndtL*mY!|^8{`(RGH<wu5@vgi>b_L7n58}R`jO0X4_Y3!G(Fji5D8%HGCJhTe!H+
zwKZibir;gwtPvT>8(iGz;tm&gQl&1YySUZGZH%*Ga*Jy%c-NLVM>B_`wTRGc17^6m
zoe@?GPW?0aGhN(84ZFC{#oaVrW~<iv`8uoUwBmffiw6|!gUs1Rrjxm^S-VVakNp^r
zxOkMQkP$xS;&B&?#h-BTq>DK&=DK*w#nUdHWvpDxa`6lePwC|=Ueg8u8a9J{UT>ML
zgj01_&bQr|ROvhyFSuCfV!n$7a#ODf>4jx;5hW77C^b@(qmw?~5*IJKc*Vu5E|$Ak
zLH%snv{cTPN%L&usBnJbL6vfrn*qMYnscCSbE0IWstA%dUA*PuI~U*6#%Mg;4CCTM
z)+9Xfz{R_CrqJG}C1^r};mqNQ6E0S}_*~jp!!p95gq*DvUnl&tfyvjq_{7DhdP={a
zxti?a|GYHce(yYd;o?gdUn!`sU3}x>Tc(10M>XL_JExX7{Mq2*2N&5S+CS30i(g&*
z<l<-7IxyUWy-91+zq#0`*QH$i&PU80&i1ez@t9K=f4R2g!O!Br4UICPe_Z_Q0vdZV
z1YV8{*F{=^WT*-imU<<5;!ns)jh+kNMV>a_%>JPhsQ4F{mY!A*v~Fxzb`i2-Oru*G
zk&6mz*EBk$Ek|NDWNB=XMwP{xHLc#o`lLY`n-X0iZ97Sr{Dx^XN?Q&#PFulg!a(|2
zAnY;H0ZFs8^)a@To91b>NSiOZZ<)3ZCu_@AX|ztGO&VLJu}#{#tXrqiRxxRpHqC5E
zx*7GNLBH+OHo?VPe)-igjm~LomqsUfp|<Pm3mo-qpSDJ1hcvpRv18hDe3vwKO=G9D
zRgViAV&}A3CarF_G<Hv8k2Lm7Tc4k=VB}|vv{&$ZNp=*wrfn}4lhZwo9%&qs#-VBS
zOrsa&Y4lH{x8Bak@0-TnY4k~3zV}tC_eong{TRuQ>;rAaoW-1#0N=s@2c$7beg~$l
zzM_!v-#?85bbFxGH8_ofbV~=vvqqA8a!#!umd4>}oSeofde;$Y9Gk{*X&jlxQE414
zmwd}HddkL#oC|ixOU`$_$IfsXC#Lc3Jd4jslDD33TZ@N?pO(hy@;fw*Q$>ae2WXjq
zUd~8kWE!I+94;K8wDS>55RvgbQ}VOYw#kqZ`aLI&(J~m?$+^m!F==Z@&Xe%`G%iTe
zdtn+k%{9%8O=Dadmj{>_;F2`Pr*XcA3p`w!#${<-mBpm2>3IUvlEHTwT%N|nG_FYF
zO6nnlV=}lZjY+iIwC#tVtk+FT;|7r_X-pNlT6m3+@wryyI^p#~?xx_eC+q^<$cUve
zohFpVvNV>baZ4Jvrm;wgy)BIyX*?wz-k!!CY21^>y=mO3r+3o`dtzo9cj=a9%!-$l
zGpjg~`_j0dnbO0yPd|{hM-R#wRmc2#hzeID{%{(P(Dpc%5t2M6^0@E`;gd9e&E_$v
zr_-2~#xrR=o5phr@OdE(vc9WfHjRf>X!5SPY0OLbe31n#cOnZDIb-r7O*D<gR0Ssr
zBwvy|eObcEJp3(<rD;2Vo4j5Vu3-LBpJ}|qa>vDjG*+guN*bmTm{L~q#5dA-Q^jXE
ze*u}cpO7+(*<`$%Mt(j%N#i}5foAyMXC1-@B8?A4$UhQUEnFj9D_kf1IF0opbjh#1
z_^wY`+obV1tu&1<({N>$tTg)Z?7lR<PU9PzRvLdM^6x}`5PmP*kj8;psQpp5KM8-P
z4T$`j#&2nCOxw~VQ}Mfme+YTYZa?2OpR2%<kpG>=KMDUgja0%N5$+nLo3waFm`x*>
zxM4IHrcW)UQAi_5qsWRYgPs|b(kQ2~Lk3+kmg<o8e;O59%K-Ze>KFZOJAKS*P(M7a
zrcq1dKi2%LOEc(@v9^y_gAAHv&{Ve#g^e<3EW&RA=wOQsnq|;VlI9t-$e@jQOCcS!
z&R|RNR>HckI`ZjO8El=nY@0aPCXuuk**0U}9dLgy-FM8OlZ2gx+X=T9)*bAa!A=?M
zl|i=*cFx#NTAF=}DW-v47&rd^J%imub{Fm;+*8P>T}7VddG9T3E{OAo-7_{M%y9^i
zLGKI(XK-)^duPxmgZ(n-pF!V@ebY2U$6fL*{W3PJ*e8R1GuBHaC-M+8ev&pIV;|P>
zEdw(cq&V*{JV1D$kZC+9V_&b39FoDI861(pkr_NV+*-`TsC=IPma+LIw!&ObfBO?0
z#X7K;t=NW|Gdwnf<1%J5V>38DgA+11JA-pFIFS*{U|0sHWe^Xsb2Con(-zh;o|3_k
z42EWK-BP<w&EURGn@;04QJ!$9KFR4B4DX9Gh_a;-O5;dzZaiZeM`duPgl7r4S&_og
z8JwHJg&ACwL1l=2-ZdtJ^D?$qlZtweQ$UL61+26O+Ds{@7czap?Ex2OaQJ%bKa9)Z
zk_^UYaA^j2XK+sjmt`;^gDDwIWvVlnn8B5-@H4m~W9KT<q*)xO;b!_V&D^%O;4&#=
zBb~`qulf>KXK+mh*D|pg+u`53yH&hnI3DDN<hi&$gJ~J7YHrBb;Ns2<Zj?#fB%Geu
z$;}zuB7UpzHsK86?Lx-k4v{0rV`j#>f4uHuUTEp+UTQdlbs2n|!TlLLkio+lJd&{w
zQTb88gBd);)NyuHA9t{CbLc8On!#g?@DVmY$*kv4<?#%j$l%Egp330q4BpD%?F?pR
z@C@^X3g;Vz3o>|trkKI=8O)Z1kLG1CCxf}V{d|r&UMHNNNET+WD1%orcr}9;C0v~N
zeJOFXB!ia|&JgP1EX`nrgv&Bm&NL>0lf0HVrpuM$tAzCXMh0*G&r?d?$>2jt-esa_
zE#mJBKS*3M%#XxZ3)cwgcWvTeeFmRo@M#90WpKwR+xx*KMGgR|XU-UZ&Wd6_zEC#N
zAircmmPvmt{6<J4+-^L+&)A$*$1FN!u|egOx%q>#^+(}P8T>5rO9sDY@LL8OS?^`h
zDvRGU_(P9cX7OhRe`SE|W_$QMgLDQNJ^d$xe?=H_Dg#H{71C}g%(Ap{Vn2hTgt-hn
z5nq@W7KGd@PWQY@8B`@H3qxTftO#S_@u!;mn)rVzCcNFGTTVtb$f98ujk0K*MYAO4
zO|sZRylEn-N3xF1C2Wzk@hpR4RmP!i>nz%2v8^6$mBrRsw98@}O4tX;f}@q42U*vG
zMUPu<T8+2utnITlKfHmf0P=Opwia6FEVj#Hk1Y0Nlr%rTy`JunwTilna7W=zLJD^l
z*+sakaJMXWPoA=}?V812Ssa<QW`aHEZdt2-r|>|Dtc^x{2zzGHD~sM)?48AdSsau_
zpR5gq_Q_)3Ec#}x@7gbG$GCAT5&3>uJCbNn7UM5Pe+DQAw{*wAtSyAGgG4v<zJC@6
zFed8yUM9)lERK-lgR?j!i$lff_;8WKvNq4jS*Dx2+gtcS3h}5cj+PRRVc$556SFv0
zw^Y}0SsX9E>kc+PJt>QmvlyMlxmlc&#gHt9XE7p+q0D8@{A6*O$f;SIho|Ip-IAP<
z1$PJU)c}hpY(AZMWEN*;ah4p6lEzj8XX}=A={bpnZ8yD-k$i&iSoZ%#&R4`P5MG$Y
zMG{^tq?fT-j7#_>BIAXZ3NI6GXphT9=zgNe6<J)FNTyt69o@-UJfFqvET&{Jm73vh
z;VhoY;^{1|$>Q29u9J}RyRx`me46kE;f=zZgwusL3vUt9*R5IHmhc%_+%A4cBDph*
znF%j8!QBbJN911NeZu>N4`lJ6$U{Pg|FFm-Sv;CZ9?Rl!@h1|=lOpUZ@|s0`X7OAW
z&m>Pze$kHSVwa$fbF!Gr678X}hk04d&tg>;Zz#VO2v-VU$YP<$BH@d|0i0^fVsXNk
zWbtysUlDm#xKy|-i{&CKgs%x1!s}VkR7iO7+o(4s|A<17x3YLUarsUb?<V{`k@s0A
zB$5wBM(NPkHB2%`RavZ+a9!f2>td|W;*%^s&EhlaEr%y^_&kd*ve+kweRKFS(UPCV
zSK?o1@eK=d7T@XiU*Y#z{Fb$jD05_kBtK;FqsULfpM}2&e-+NspK$4Zqi%l}{=rs2
zgz~?#_*?uR;iGb&5_b|eZWif;XR^qO=Msr0!fefFQOF|5qR5&#hh{m8XDN#+<19C2
zVJM8UsEE)_EW%O1e~F}_{BF`Ma%iAi)&_LkNSvf`4o$?HCX#m>qj?T3a%i8!wi33?
zVQY~sg{=~ot#fFT@U27`e}>ssyj>34h=dY$$f08nT_x$1L+2cJ7N`5|a@Zl^+vhfC
z4dq=V+)=ob@Y%-LC2_f{$Zo>jbJ#;<PhmY8d*#qAhwhRvw7xm?NO;d2dgahtw|nO{
z|M|C1@^q#m+%IP}Cq3?$L;oDk$zgO319BKBXJ-lr<#1>Yhvl$;;`e|Y4ovt#ISdv*
zSa^t#<(gsgI$XCW2#?6&NRgw2e0p>a$0Yn%k>heWUgZCWaAFQ8<#4iur{r*Y;(kaD
zLlb_g$S~n)Irtyi+s{az4$omk!bj#XD&c&^S>k64>v}jhhcP+an!{~5oG1BI;rTgS
zki&)Im*+51<Ran4!m+|}Ib0$#K8H(1E)z}=vOLy{<Q2MQBq!%^Wx}r#nIvQngiojB
ztR^J6I)`f{zcz=P6ZhBUaJ~36;SGuW#vE=+_;iu_OK-_p4~L=6knoYj&Fvz02=B~c
zW)63W*I#{i4)^Hx-W=}B;ePRlgb(EKVDA6^X-M}EOHReI_U4No&EYXg>hFCrho`6?
zZac~0=^SR|@Ny2X<nT-m&*rcohZksjE%00pb8?uQ!}B@J&RHjCM_uf0&C6M*i`V=d
z-qE;>xbAIpvrvy-%3)E?_JzKfvxyxNIwoJ7!;&1>W1&l%`N?5v4qxZ+O%BU)Sf0ZN
zIeeJIiX2|c;r$%AHSYBsRw}6X6bDKe+NvDh(9<`CZwcQPz9W2BNWXN?i%kaK+n>`u
zIjqiMZ4T>lwz|Y9?Rf##C>4z1$2qLe*%0!`j+VerayG9^@~IN_necPr7s4-vUkT}v
zF2Bv;yBvOEG0)-q95&?eLk>UY>_vCYwTlU-v-+exHS-IrzO8KPo|6WYQ}P=VtK9ir
zn91P}5$4yQIsBFIzonCZs9q83B$b1ca91Rq!y}zc`C0kO2|X6f9P&97a)4)j;~<A(
z4*%tFNDK66gHjGr4iy>$7XpN#9`Tk}oI{n>rsQ?^6p|1(Nyre$8z|(4!n%Z6(8NOv
z4=p`3^=wqaYYUNP9-7M~yYXYVVZcKx5Bqx9&qHeuZ9MGZVNVZRdDz;+b{@9((AGmc
z4;?*p^019(+vD4Nb`AqSx91-gw)HHpsp<|Mo@i~`3p+EkzWBY*=FQ}na^~Md7Z1C6
z*xkd9o=wPeq2wD)O7G-ZHtj6jMYyYw*~BFnKH`i);}z)YVJ{E884Y&+J#_cb!$VKc
zHg)q`{^slLV+wu%)yuPg$8#!!N#pQ*Zx4MutQu;^QTFxhz`A}4oWbrxZSX+X9_a63
zfQJztMlw+gFwnyw5Bq!il9Z)}hrfCD#R1iIpofDz4EAuahod|k?cos54C!zWERTnZ
zA10)5<{W!;gl>=YP`_oq9OL15zS_gF5+295tH`wKjuRO}1;x;qUtIh;*~2N4FsLC4
zYN+s3;V|K8!qbIk2!{(BwXq1WZW-m-k%>$)GvZ7plTCn!vpt;SVYG*HJ)Gy+V#HV$
zC?06<*<=fsMd*G#zxCrHGXHGrVMyNMd69>UJ&g4*j#~1uzi&0$B_5`DnCf9XmjD#h
zWge~)VXzZCT%PcWB3F30Qu)ZI+*M1QB>7~|HYD(NSvy?q;TjLu(q=TXcb$jpJuLF@
zqK9c7Zt!rQhx<L;=;0<0cX+syN%nBFhZ!Dj=i9s6$L6<q7QI_(z)Ib1o_&SHbk$e7
zzkk72_hx#y%fsCs?(yvO#bS3`HRC@2uX@^{F{66mUK+D<{{fnThsQiT?%^R157W{-
zJnCVf_E2&8j9+c=EG$moQ|Elk6CR%Qu)xC$yc$}7PkDISvqiL7?A6N-pJ7S#@LXa8
z&$A?MvDqGGOE^b3S2(JT^`GZ^_DfTe?mXmS5Ed%Gc<3c7(w96e_E7Rr_OQgm%O2kH
z@V19nJiO}RHNMfqQV+{KET<}1E_608cWa!q%06*ooY`hEsw?@(!y6vn<a_xavF3I-
zeBA*Jqukeijr|Ud%7f>@XRdj8-@{rODs$vxocI>lo%_JUhs+(e0v=X-SR<RHL2lU*
zXQ^8Ln3YTmY+#||tSODn!zWY)>wn>ALf(Gv;fsWS>ESE!uRVO@;ad;idH7xuE|c*W
z(iil?*p;?Pm~(VLc(&&Fqlce7{7eI5wd3JW55LO&@50|aY!u<4o%H_Mb6BK0{4WoG
zd&qj$;Qr&`Uk_<HV|-E`91pH%so*Ug5VsPNWaO+!qfOjXlJ`*X5U@&7lD~V=j#Xrb
z;g2DkYvwUL{li1#p_`BHJ}Mq!54-x<%}3Qkjn%J@ZG5~n!9LIb&%-7eHheJOSwS`M
zZ6dUxkff21#{TAzoA_udzJ-rwKAQVz;iHX@t$eifv89hzK3emo+-1}VUU%@PJgj**
z1xoDR8(aHm>)XL2to;UYg1wKO3CR*lq*a{H<4SyNtMEJc_G>fx>ZsdJK05o@PJDae
zj=~*$bP<U()4P+8opnpUyNECZKHA;K9zOQ;(bYGLqGe9(Wec?*cf(%3O$_oNthaT#
zbq^mseeC07Umv}E^!CxmM_=D&lK1wluKRgQn|1HRnIDG#ftfcSaejLo`~N=r)1{Ar
z#1;ycy@F5CS?axFAc_NVfR6)xoa$qkkAr*+_Hn3>!xYtneJd1)_%_wg7LXb79*0OR
za5$g(IMK%uzUl2q5|%6>$<ZRm_&7F^9OvVB@mX)0ONPS==Okv6YORxfoZ{Oo7Ox>b
zhU(Qk9D}!~`8b`C$>Z=m&hRnZ#};`s%UgU#__))@OlrW#C?99~ILpT*ACrBY?c*F;
z4#V_qVrsOHF+R>?I2`Hw_Eiyu=hK#an<(Q^Exf%@E-w<Y$NN@m+XnyFFpTqYsgKKi
zn}WN<$9Rz;nkbv#<8s|z>0_dgE994fcUJfx^{_2HXK)WpBA?=8s*js|O!sj$70Z10
z?PRuV6*0zPnvd(`nEZMX7B})6k`P{0$Tu?yQrGR0-%8!Kz-{83ALbipP!)YGQLneg
z9W?J%#_#fRw~tSKeCFdGANTrL;^So>_c0DW=K7eYv{2^{_;^sEJ>=s#AJ2<F?BfxU
zM}?0G8SLXeo)CZ1$5TF@7Jo)KD{=GE5{tmIy8YxD%=R%yxxnn8oEl?^pswcoSl}bj
z`Qb0f@ryoQ^0CmzBHePDv7UGIwOA5XO6yh1Uh(m&kB@w;_OZ0CPam)QSSDx7eXJ1q
zTmR;ucU~(cd4sks!jPHcZ~92B!CR8NEjwh~-tqBn!r$}pe!@Qx`A})0vo$`(t;1R$
z>sWrjG-KoSv5)n<8d}UZO7e-1y8V3a;|m|YkGzjBS-1H3+s8jXzV`8rk6(TKrf7UC
z{NBfRB2-j7#~Pgtv?b2}`}k3W{3jnji~o{HHVnr``QqNZKYje};}74?=&NghGr)iO
z)=TFtqxUb<?jw_A0n3FW({g>J6-dCoy;PU=k)x#h=Ab-1We5fO^%1j5_fhmw@)1cz
z)B}qTO{?r9Ost)s=COXO_;~0vi$KlCf3oT(d2I55yeW-d8strrjfD;KXq3l=iUajf
zk2bMs{{K?M7d6jgyF9kfqeUJq^Vl+vR(Widw{Zjm{9`>@=Pl$m3X^4oUbfDoZ659N
z*d~vTdP-sYygllW$F?F|N$0z0Boy-MBw^>gb-);z9rEasN7p>|%45eocFJRS#cBY1
z{&}ls_{LqBC@%ieV{;p@@0K@9c<>8*w1-~0XWq&qW7sW^?s@cQk2H@SdPFyU6kyLh
zdPzCG^BRpR6&#aNOMUa`r&uvj`{c2&+%sSH%UfMU6J-e+n8%<z4$R}AJoeAyfIMF9
zVd-Lu>Z+jH2kVW8sy}?N0z5=mPk!Cm5qTV$#|e3yn70j<N9C;+I+_wK+8&d)7Of+v
z3#d=d|MRH`IU76fI{RoLPRirtyq!?Q#Y8r^r|5O;0S?XM)I7M;Z&)6W<ngF9d|Do-
zvkAy!cpfA27@5Z?X7T0L{C&1Hj`-G$<jg!S&tqa9XXSBr9_QpSI**H)mOReQV+<`P
zkBjp5)i6hA+_!w5-gtf<7bv!j@J`y^$y3g_-Ht2W<0QW%kMYb<eVTn~-kR5ZPfJ}p
zZUmKs2|{)<ugK%dJnqlqfjq9tW0K@|=Pj=%=gr!$$zzIcrwS>*n%1I8p=<NFE|2Tw
z?1nsUWc(Xq8ZD=_ZCRn;oAl^5;q*Li7NPu>JZ=^5q5?HT{PyJO9eLa-K2vy?@Y@y^
z;5~WVOI>N5?mk78iDLJX-RxmHyXL_>9?Iik>Zh+Qi}NYd$Uf3zdE8yVJq0|T#}jIc
zpQIapi(0@_c|4uRtUR7!xhtSm0ng^~Tps`Ck;>!wJZ9(dSstI~F(;3?d92N2T^{rD
zn6C)%r;Q7!;XD@Rv519nguRp_CgO{EyrkH^%Uo8!h#iu}H0(TH&f^uDG0O|raPwFy
zLjGDF%fy!pR|q-u<0D?L>vpAZ6)mcv$=}p1$y-#E_&dV7ulMrSGkiaB^FbaTCj6s3
zR*SFsANL>UZMgR-D;Bm>dD{m_@1Nvt#7Dx5cKAgeU*@qPj~^8HSIqG|zRTn5Jif`>
zK$UKYth*Q#BlbP(z=oz7N`B1aCzd{`?q_<Z8l@}lC#1%hqF?j)O;0xpe;58Cq=P^6
z_$%Rmv)0vqIlhh&b67C*i1VoCkyga=c@*-<<dKz^oHXX?Q9YY{C7ekM@+js}&Lhm*
zi3F4|+NJudl@`7_l4kg*B40OYcBLlXtYF*K{$qUP1qIVUgM!7XVZk)eNZ44|MA%fg
zg^&)I@a6@yD45>(E?zAQR^gDeE}%^ToeS8mfUOGHx?ma9serZ$zeB;Yrd<Ks6wGmZ
z;kLXTf&M)$G{&K$gfD8pTphPBV21(*6fm%WE(Pq!KnmDhA@9T@umrmlu(NzI1V(RH
zrD)AU`yJ9A1?*Ws_X2tp&{YxMtAK8b247l#BV))E^(>%Q0lgItA2B8rGLoFC+FJ?l
zQ$Syle!_i(`wI6H_OGLM{S7K${{oIL-~<JDKmkV;aJ2Y=!h;GJoVY(&<d6amO(cgE
zaCiYn=$6qqG9gUeF$El3z;OzM8Ak~t`2vqFlmVY8wVWbtpH#rfQUybxozSY8s3DS&
zoLa!J0!}O7^aAcIU}gbl6fnGi>k7EOfDr|ZEMQatXBKRS8#nXctTXgDlXg}ClL{#H
zw3g`Xf}Q+!P649}I9Gg(a6$p+6>xq57wC4J@IoQoUsS-w2_IX)F-t5EUYAHXzJN<b
zE=$}DUV_WTCkn3+UMajvNWXM5nUx_Y{|lH(wX^0g;F<!iWyJJ1HxAjD5O#|AXj%a`
z6mU}k(+k$zaMj@Ob-1x$`w+O1U|xUREctB(+@hdvEo@#5=Ozkjdqx4b7jQ=b7d64U
z>%hrphRHqutl008<}t#i5$-MEz5-Sju&RLj3wWS_c?HZb;K2eOD&XM)9x2$FoIH+(
zb4{aL*vUNn3&W!fmPdB?$78Jj3wWY{Ct2+)yXO}0v<TzyOaZeJP6K{c{J8?27nxna
zoPt$2EN&ZBKg<$o^8pqxX$34TU|9hR3s_XJ4@1taHvt7KR{UQoSdGeUA^c6%l7gk{
z<pPRx@QMO|RXX9v@=W#mwn(?e@`8ODvqDc_D`<&9$e}2e^9J*%fDQpV26(H0w`qX|
z{7DA|yj#Ez1^h^(E#Q6Xzkm-}#@E<P0yn^a_MFY9u}%DlZdO~%xVnHf1*~Ol&=Bhi
z*r0qFz!Jwo!N?TwNdccq_?hr);pf6HgkK83DxhO0%hPXkOY&_2--&;pNa%oDDX6`l
z3i!Ez-wN2sLcu~*z^?^6V25W`v-GjiVgHJ=zMQ^edHkIwrwv_y74SEM3eYIPKLz|-
zfL}nqfD|jn7DyNDV;siZDZs7kbE@exQ?TxCj!OUq+s~F0dcx`aPN87y4*$`xn;?)c
zIxey>7EmrAWD(YOvPglva4jk#v5+pS1=PejSHs&)1>3)ez@pJWNU~EqG!D=tK$`$t
z1!x*zivX<xv<}cLut}cgfqlFdYH^`OU}|p}*d!9KEk&rY&)eB7C~H?viEJI9ZGiRx
zwhiEQMY{mo1XhR`0+BjosyP+&EdOHPz;@|(3eY*g-~a~)*e<~K0eS}L6<~(|T>|VH
zV7CA}2G}XU&H;7_@bqM}5Eg-VezE@&UdT<D`a{j`0rp^o1M~>6XJFs`ZPCIs-!-tV
z>|O!71-4I*)0IpzmpmRGY2l=LnudD^*qaIoFfc%$0DS}O7oa~C!Xw|?Sy!!}lCV!;
z70$j4hciO@lN5KI#Y600MS}wDAK-uh2L?6(WXRXNg0mV}8D|xGP+)5fESs!t4he8*
zfFS{fGGYM^4{!{%8sLZkM+P`5z|l;?a$9BKK^(L<PB?R#aUy>+)C0!_I6lD10ZySp
zw!#U4tzz&Sme=?pSb&q1(z3Q9^L3rSvS{!+HNda{7X-L4z-a+a4{%<9^8=g_SY^oG
zGSk9z4G%Cv$s8#hC1jSJDRP$Z>;UJ8j2507V2lV00&|4dq_y^w4mR!|EyqPPj{uhj
zxGb<AA+?!<u>m-fNvj*juK)s!59}{6ER64HH_?Q^4qN8AcHA>Iggu!}o303OWq|i1
zd=TNP0FwgTU&aGvOb#$5z_b!>C|MzzO0y|phZ3$1a7}<~16&s%Q$)6i>jPU+x-q~_
zbRXEF%ndXW)^GX_h?D$dbnN-`05=D?CBUr#ZeyZ~IIn1?K7(EYJS4NfJ-{6zl;0U(
zX2S0ZaCgG*5xG}*pYZ+w4<t{y;Qlbpdmp?IU?DZYk63A_0UitRcwmQ{Jtt)NPXu^U
zzMe|_J{@3|_%n&*S;j%D-p|Vyz0Vez6JTy4nHOMw!WS@vM)sCP0bZp26tQy=F9lc}
zzzN_6SQ6mn03QWd9pDwcWkrD3=skJk(g4fEmnRaoq^}29soVF3t61j;cssxwEVkSQ
zBw<?de1}y5&vTaKUDglUxx~csqJs}4C;u?82AX6|fVBa>53nJ?x&R*s_&mTD0oKdq
zC&Ic*I{s9*pD`hN7bRax@=buRL@4=Mgzx$`k$ji9{~^GS0e%ngM}VJ_r@xB)Ec_*L
z`I~Mx3hNsNh<^t7o7H}RzXIEeP){%4_-}xeT$2B^46F4`Wtzqr07W#Qi3Z38h*cYV
z0sH{v#C<+MG2sP~Kv*B%mY5gXr4ULOB`zx>j6hYSmdO7Lut}W9UNJHai)d6t+alT(
z(YS~vvi3GbG%cF)n-|eSk}Zm8CPFXujZ7_zXeG&(!vC-B*1DyetrGWJ7dMZ@w<)51
z5!)59y&i2_M90KUhvNU`SEnL6OJ3LB4v8D?LFyvDBh6LT!k6w+#I8yByA`o}5eF49
zxQIQ9R@?V3V(%jMWLk>YOMZI^yA{#Bh#pDEJ&R_LOj=!~Bz$$BBKj7wZxQ>+SwG=E
z#sAxhM92M$7$Eun!hyxjInKIhkR%~b0Tnq=SP%K&A`U5HSP`ccaVX<i#PLO(AP0vR
zadZ*K6mdimM@n*(u&xR-a@`&$WN7T!65nR8Ns?2F7$S0#@MIx<F+M}Z>)CW_(K=f6
z$m{eXMiw!uh%@A1xRCM@Nm|ZK0vSzT;%66ejz~RLbv!r8!Sjo_pooo0IP9=pSj0tC
z6uSyVTwBC-MT{+CToIQ@c%_g}$BSHA#APBA68YstOccLD$VF0iT(3%=PAXz@!lx85
zRs3q<HHn<=uP<U+5sQj=v4|UrxUq<big>t)n~IoT#Qlox&BEJ?m{G(n;<pOx38YSL
zFJfj9cS(3h5qFBzReE<3_vrS%BJLHTduslm-%QV}8S2g+(4z;1T<CnHh)0WfzKGe9
zJXXXLB99B{kv8^Z5l<EIbP=<PcvkXfg!KR!ay=`blaNuJBQjq&w`fc7^TZh%pDqx8
zA(1Rh?D?f478mhh5g!$?L{FC$v0UWkB3?<{zgoo7gxA%wLbvY}@mdkDi?0;EC0r$Z
zL-=N5QH;sk#m%+WyG6XGr}fa@FX98;(oH>qtBY7)#3vH2DPk>4itKisBp(Z@=TD3H
ztcYK9`?>I|BEA;+Lii=?gyEJK-xTp}5kD#6-xcwF5kD01V-YXU+gu_x&^S3A%})5j
z%@Q70`?CU}ckUSZHQ~RB@a?~g{E^82EaETmzlHxK@_$8AML3DX6-g&GSgr`Kh)yMR
zF2SchIX_>rFKhDRg(89?iba$d`6B*fIpWNJ5izTa0mj23q9Q6qRNLG5<;Na|Rn>&7
z4A~*vBrgq1RyXnyO4eg+Amp+dLujN&oJDU^vbQ%aVT%%)m29fHWeHn~G#9og*(@>T
ztx9NJ!Zsz_58p<QDBQY)t;AQt-0*5!LOWgL?9{a{VO!mHsC!AC(hc*MujVnKHx9*i
zB^w>^mVKlyC0tj+^(E|B!cHX{x=vk<olDrIWIJ|tEn$z6tpe;;!tNy-k#Vkr9Z~jd
z_bj1n344{$t%R{9j4Ppg2|Y?yBOP5r&k}l-@J2iAQ?mUPy_uZG);rp}WZ0(!&gk|P
zlJpb#s<kP0-xBsKp+CbZ;o_zyIk;pvu!KP(`wI^c9w_9~gG2@kk5D*=lyInS4-+0<
ze<Y;)BSnr9a(elg5{@n5IBDsG5>71P_&VpDOjDdx!pXWFUBW3M!;_~&N*J2(Q%e{o
zewy&~M1DrezI3DhM@TYKI4XI1rpQ^svxVmfIgx&@2tAG|;XLv46UhZ47nX35$i>3?
zTP`VKd<hdvxT1thl|U-|a;g0?>3IV4YbB^{$~k1avV^Osb58Y?aO+Y`5@-8D$>fra
zTsri_RCfO5_nH!}6=C%FI_4dN;wbDfj&rq8eq+fx-p`jXyJW-Xn@X5o!p$Yz!oW+o
ztAx8txQz-a;m#6f(ms3G0gtzr?6a~v<d+6dW9DX|jSKB5C;aaz;ocG+E#a{e?xX2y
zcIEwHxW8o9_&^Dr_#-6YL&ArJj|lmQ+5NZ-n^OesXV~!Mi4vZaS<*6}5_wuUOZW^^
zE%Ka@Za(ORIV@Q$4rT0Cw$=Q(CCn>fehCXoc%g(hOL(h<g(WO1VOa^wOL(z_m#Fg+
zmX@%%WczbC47_-<eL1+KgqNjQ>h={8Zqnm8lw)d^uR#s5f>j4AiV{{be^0l49gI0A
zwYV9K+YDB*SgCY#0*9fodU?BqcS@+1P%Gix65cCeT?rpcrSF%pngw}*ZR7c%gbx{2
z?iCT%XZe`AH7ek1iEXW<uP@<~l6?ahD?2_dX<~;*Krp}(z9`|#60#-aO8BaTuW4W<
z{9eL0vcL@`{7}NT;@=6s7jmM5X8fZ#$uA;5mGJZbJpEPtxBrpQ<sZ8JNBF1kFX7)T
z-Rgk-TSBS?M?$(!i@2<d^hQcD|HHi!N^;-}^TL8KD4{6AVCx~5bsGv9PE<lAalqTW
zW?KF$VN(e^m$3_*fifDD?c;YIS=q3RMrCYOw(M?PMw7CYqZVabifvj(voe~Ou|?Uc
zHA;w_86)9mp+vfDDfe5J(Mp7p)@8IwILqwTWvf)%3Q5|Pv5k29GPV`zP{#Jj(~f0y
zDx3a03%3)pP*bvl+;kD{DBMZN$q)uRhW|@#fqY;4;+6fw-SudIyze30vy84HdkMP<
zy9;{=dzR6wY%M}>-S!vXyNo^}eTDtX*r$wr%eLojzq0LF8m)6DSUYjbj*(<~2bM9Y
zjQz_vpp5ZlTw2C~WgJw-X=R*V#^5pzF5?I)zl=l5IJAtz$~e4i!x^5n&Ruz&k7A|7
z<Xqgsel2%Y8Aq3Kav7(T?bjs7Fm7d=Ui*MupfZjt<M=WzYhk?<ykvM{+1g50H7AvA
z5{87gL(2BC^QlV0&@xuMj?*L`R<>y+_KnXdV|W=CmT^%TBgz<A#(8C&ub|lYa_(!C
z_?cy!HaV+|v&)ERW;BB`MvI@DNXCdTCe$S7yYBCa3ur}((#2(rEn{36mz2SiTV@Wm
z2y>rgqc+x`@36wUXP1>Rp^O{KxUr1O%a~Zk)n!~$#ua5;S;mwyrm{{OYD>&lm2G>&
zBxTlQ+1vTj8>c8a<;5e!*(<xYjO)s{zKm(q{BS#@dd_n5&J@)fg+fEzRL1l&W|nam
zi$EE-lyMu4zl>YU_QT(|Vc#k;a~aj!%Ql18wWVzlq*m`JTWxb^*}io;w*l@h<DN3^
zE#p2aQ0qsWE##~qaU=iP)ZDy0$T*krQHa$c9xme%#wx_YAs#K`F`5mHJjCN=G#-RS
zWxUArvi>jQ$+G1m_4yQ|q)a5ACGrdto=Bc6<9YGf!a0e2ZW;3uK3`;k@P#rKCi3Cj
z|5?W3GTtiV?J|~>@iOhCjMvI|rHoh0SX#!ivT1eNe9V8@`czB~KkHsD!`OSJ%_qNJ
z#>z6@DC13L8IRJPWVlKt(PrC*+P+He!Qk<d@09Uw8K0E#DXp}O_sdvEt7dlh!Urr7
zeJ$|!IR8UkQN4^3YktPz9gOaYwYsHb%2k#fT+n1caDCaD1N!=`jL%u2g=ie&i!#0}
zqgqByk^D-gk}l(GmP(ES%J{a7@5KKQelO&s4Q2dL#*eD>exmY4SoQrZa&j~LD)L(*
z-&n@)3FlLW@Mjr+C87N-@=qE6ill^2^3)ZfuS^-)GIC{jWfZ9d9{V69$%}lfk3<UM
z0ky~f>v8cnaZ_gQh)2STFjl#!PZ9iA#wJ$#AsU7{`Y*KH+}O)%8xD5*wXwPV^{s6p
zy-A3sA+`<CA;cD;<wdg)%|q0>+2qFSLu_7`?M{mjEg1wS|3kD2(K_5bR%$EKCd5`D
zwhqBb8-9VyIIw18A!-+5o5W>%5r)|@M5hp)Lu|)4a>Bfc)qWjDVEfQ!=@0hJ-ncV?
z>Fp9?$Iy0G?-XLs5M4v;9NPF|m(V83cMY*yXg#sr741DjD>x@UWG5>!o_mGXv<(dH
zkgjeax`*f?zr9239ipc=gX$%6?I`pS**C;~B7KGZg!>4W4nu#D0YdtvFJ2^rLhK*n
zfY2)814A4XTBqnl{TPw@<n_o<)BGVJ4hwO(B6etKhjp+KIU=+<|7R!+aio%PREVQP
z97A=5xRODII4;ETAx4B48RCQxCx%wChJ`pOv_aeu;mN|+xc?`_VC@9sqoE;A4eiyp
z^VoK7C<?6|KRv`5p&g<~$?(vS7dI!53UOwLi$Yu+;;ay7hd3|9`613>w7KC^E=MQs
z>s#-}=(f)9=U-O4;Q~o63~f&xcT9~9F)qY}(3;vy^yo6-_z;&$ja*WBvYqL0iT0tf
zq+cFlqP$-rY`4OKniOI(YtayogqXs}hqyJwZ6U4>ag73;9^%>%*M*oC;s#0T0bU<&
z{(_s4ypaLw5!1`3Kd#uk4f19QZ;|<(vjb*?xIM(o5O;;RBhl(~R{qi?6GiV+|G?cL
z?qx=VxJTZ(HJ$SNLp%`T!4MCH;6`yu>hB`586vX#_o%{QraT?uF*X6A^#`5^@uc+3
z@Hr5m%cm49qs=*=S<I0}W-ZT!cs|6k5X%*@*&*hKSP)_k4TCG%?Ei<Dr|>xuv`0I<
zAkA~7a&d@-Ar{d#xCJP*?%zwH)v;7KIcwS})Jce!sa|&eg|7;i3Mo9RnH8lKj1`Mp
zXzdppO4{~H7AS7!39%}~8_b|pmYZ*ecq_!)j5a;ex>!y%pkO55Wie6KvyQ#Kft~UD
zL5L3(AUT6w6I$&Qu#AUT%eq~Ct#wM^$062-_$0)qAwCQ7Gs{be&sq70_%_6MA-)Xp
zRfw-cd=pwV!Z8|4BG<y$va=Jy7G&5b_&&sj5I=_aiJEL@9j!hs@k3}mB}R{ZCpu%B
zUR;D<L;M!v?-2il*cjsX5PydFizdeb5v_C}R?M?MZqpa_z~x9T4fC&v|At6~$cHF|
za9D#iu+x3{n-y2}Cmp9lWRx88Y>1q=C-jBvVDM_%-Fmrn!!l9|QRbrvCq_C@Jw)#a
zdq;>uR6@iwHr9<1c8O36@gKDvVVek>_{IngA~cNf>-YAPi)SZWn3oPfqsWv~(HXyu
zBQ%Mux^61mB0{qW&Ba>_TL@bUw-nNGD-rg)+K6l=+&X#MHhJ2f5st89gq<REh`_U~
zJ4bk92s%dA)^v(&I6r$7IyAGCZWm$u$hxV#c8IK8bcyUox4dQ7louD#=xf&qyG7V5
zLbnLJN7y66o)Nl6))p|Y3;Wqm$JlM=TX;k&`wZP9^oY<iLa)gB52JgSoa=)OiUV6(
z2zPPxiSXDO9Ij~hRowbT*eAlijA4Yq5e{a=A`FOdK!gM3V4y-{AiM@ew)bZL2><9L
z9|n8TXSSd7pveCF$r_AtJ0!xP5e{Qanp#W2j9^T78Vp-2&aE90;YbC0RD`1=Y~2pW
zL^v+8eg4M^N%+6}<0Eu#Xj?CMds2jxBRmx0;RvTh7!u*^2<Jo?8sXFk!y=rf81Ayz
zw82l<h^NzmJ_u!;&xkNQvM;}QjfgNZ;iDp)DSlQWVIGZUP!X==f-HlbWC|P;S@B^7
za$bb<BU}*S!Uz{dm=NLe2p2~f8(};jsep`&a7hH(;|+UTM)M-MG{R-k=8r)r=|3F*
zwKn&>Cd%U#Ldqx6nCD}9gqtIqF_;`-N`$GAz5VJ4H;9m56X9C%>k`TJBGYKnSD9m8
zH%7Qg!X}d365-YecSpD<!fg>|M3@=juE<vNZ;xzrNn4_>?vP>JDP$j}IM9AE#wwke
zcyEOJB0Lb`!3g&&jqKU7`n{UNG)@36wVyBSImrTfB*LQ+-ih!ojV;3CEC@2%oqx3{
zP4*<8i11{Dry@KZVOE625tc-FhE~U!s|d42o}~svC}fEs&WSKTk<5)Sk7a?sX>MbB
zUJ&60Jz{-AmkT2-((Q|pjq!QC6q!pBK7Cn_mPL3a3GLMgOaI6Fa`6?()7NOO;`F{U
z!YYMX53L=WfXK$nZ^^;ikwu1;>U$9;^H^H_^`2I@p51;HkO&JaSX9C42y0lyRd7<p
zhWQ*!t&OlQ!p9NT%aTv1;FAcS(zHIt=gcy0T8^}hv$t6Vx6aaXzKHN8jVi*|5x$AA
zT?N}$@NI<eBA|i>6?`9ILxevg{1xE`)+C!Y{ibsFBeOfg&k=rMZ7GTE0@60War(If
zw;FDY@H<P2_P8=b|Da=~>u(nP2$=|3)dT;^yCY0RR@mv-jgXdvH4-mMauK`;RaV*&
ze0j`AD9Am7rLQ3I%L=d<p`^O8EDV!+G7_l>V^;gzW657#=tT@<lL!kwL*t=>4J&9=
z!L}82sGxBLO)6+#v6%2`TEP|-G}A2|Hy3G9LCcCwv((*eSwX9cC7=Cs22Nq?ifN#Y
za4X@~!nVS8!fh)5H$P9u9V@1DhS|A-PT~xQjS+W`knB)FmkN4T&`S~6QMgA1J5{iA
zW%KrFI@_g!UFo-i-7A(}23XImZ#WTALDvfQ(yM#u)!i!Su4r>#H2vN;cXO`wu3+y9
z4z1v@3i?#gw}Jr`3{;f*Rj_Xb`zerpD%Msq=KXcc5cn>ti0>U#!TuEtuHfJb4yfQj
zz2zVw-BaOg2<p}{X1KljmjVu{VDTR&JiKDN?~bbAXr=Lp3XW9x%q+TOijI-|xC)LH
zp%==TzsD<4B&=Z$<H2qfoKnF96<RljR4|lpub|our&chmVto}hL#I`6dIe`xFuY>7
zzkgvnc9?{wEij^D^Q#P*^IDAas0z+xdMh})f+-bDt>ByrMprPQg3Bv5*}~cHo4J#)
zf-#B}djjV%hAes&Tp+^!>V-_>1YD%siz^r_GER7ja6Dh3CFx6bdzp|PCrWjU48Ok~
z%Z)(vyJ^#v6<j4kK1pOUOSHagyP65C;MNLmtKhX^mWpdDxUOPDzw0YDlfyikRspTz
zh6--1;3mcSW+5F<m(sX0dy6F8=gIt<QNhLh47`FnD)#jsYn3}Im|3x3By`ku7ga$k
zs#r(&?h5V^A-}hR6$?$sy6%2zRm)fpR`8JG^Kb=oDwtcrBNdy_d$fYbDtNqtC-}5t
zlS@wuNuCnnMALHMY4KUYXPEEWG4-5opBK&+($|Lem{-C43KmrG0!_ECeRt0^-rn2#
zJp3yJEurxgyja0Y72Hy_QQ_hWmQ?U$jHhC}T)`_W=~Q5hS7nFIW3-5|w1Q<7EN9Xx
zNLAoa&(sy`=L&wPU}XiXD)_X5&nkGMf;X9JR?#d+{PeGawH4dF_IAa3^|X+8l*{i5
z-xIzs{6P4j@FU@B;Tj?Bgae{=;vWmSQvCEn+evuID>e!Ic?Dlo@MQ&GRjfs3>--=8
z{y7w1SF9J!=7!D0H;fWDe^&4vD~AU5>C^XY2t?Rq{8+(H75q;1(!!bc3Vy3#V+Fsm
z6g0u^6Refz7>dg)44?a}pK5DgBL7*zUlsh#0>w(Tp-p8_+Z=TKE2E;$(|v8U)rK{H
z1?dW6mdXk;6=W+YR#2jSR^U~Tub@z|xl{J*d{%LNZFI&p9WG-9$`Ni_V{O3Yr*Z{h
z1rftnx#q}%`(}AI1rx$~%bf?{iH4|E@E_w7qj8K)tPx@~h|w^%xN#ka9|b?Iql}pl
zDyPj*G>OqP#uhP}#W?yq8#J*>A>P))_`5Hex?0BAGR96Zc8<ZVJ`eOqD+Sm(Mw{4<
zm)t5g%jpthYu&aLwiEK{HZj_ZZ!7E|>?rIcq?^tn+X=Uiu|pzX!A%i**PjE;igt;y
zYm5_PoD^fX7`w;l8KYN>J!0$`W3L$97(-^wK&z>`##RPd32;EyJw}h%zN}|2i=9C3
zM`bzf9ow17$20OV_Kwj<FX|gx(O`D>i?L6PePiqw<DeLWV>6rnF$Rcmakh0w3=|&}
z<K$7;KgI#l!+|lTcQD5j^@;SsG3K_#Au$f6U-q=s*E&od`J%%mJR-JpA$T1b<0yLP
zQgw`DVjLS=Rd$?^<d{pqi)81%X6pR<_@Hlba*R_L=NRK-42dx`#@HC+Vw@UVvo$=%
zh}iOUSd7zRoF3zm7WR=5uQOsJOZ5X;4r52g*7qJ2<4nEotQhAd?>$@O9O38~=O*$o
zvF)8^e9liK7cgB3zewcb*v|T(8?NlISIk=I-X6F##$_?4#<*HK=OW_-=3rA?PK#1q
zF)_v!OuqP)F|JDZq!^RMrz8@Nj<2B(TUd^-ebpLeR@B$UxIV_T7&pYYEyj!(H^#Ur
z#?3KqiLFD<3TnDu%@WEvF%AZ4?YG8u`~_FgIPknZ#vL&pi}84DC!O9I+pIq0!zO!X
zjJsmo9pj!D_r`cI#zV@)`-Bg~xL*oqUbFnM%^I%0_rtM`XCI~hsSy5uxq&?*A#xbF
z^+-HHV_s+$%PrPV$C$<JtJ)IwGgM=Y_hP&s<GC2mGukZOJuI}@%<D~?mMbB1Xl60y
ziO(0lAY349*Axpy771SzzC``A6%Z~F^7duwC*iNM{!jQak>Sm(CRrixud#;F;Ao|8
zSH;#x;`K(1H^tu)zMaV55qVe0B!3X&!x(;ye2kA`td8NtaAT~Au{OrPF;X!;eGcnl
ze9VH(T%e*<c0P&mYi#Z8r!hW@@p+6dVtf<h+ZbQQwn_V|7+<q;;Nbub@o85ZN-!@-
zzKijFj2~nC#EkB5g>i$jjN}J-q?N81gr8%pSLxsvJ*AN0(5`-q4L1sZkMW1dpF+z2
zit)GjKZ%52>n!SIR?P-z_q9mJ$i&FS@MOAdGN{RHY@6!YA7HuY^McKvv*9Sj2x1JY
z;<PG?F-k1dRh(KyIY!8eaV}=HMI@c~t6CtH7;%hhj9QGgRkW*GZTugNq>3iun_@tO
z@&+Oeg^h&uCF!PBw9@Ss!e+weRkRRkDcrKUc@4VmrL}|%vyI4B!mWjeHo!Jjw69{9
zDt4`6+r;H|Rdf*Vm`FN_bWTFvUbj0`(M4oO;m%d;B*I|%I$k8ZNzzM5$?jF`QN^CR
z?OH{*D!PmBMUt$!_o$+0;=UdfAN5Wodsop%ysxnCV4o`Xtzy3_`q!Na2UKym$iONF
zRk45l5o0BCKotjy9F)ihSIyWC79LWy_L{ec>FK#iijJt_NI5u4@}m>K$5e4_!jBU<
zUda7FCsuJ%6({Sq9?mJ^Lxim2sFrw+O=7Tz&*{X|t2m>IkyVVU+Q&!3t2VdH%5a3N
zh&>S2qG$bqGpjaf$@XQ6W|_{e;+!f*S8;9?W2!i>3jB)m&PHmZeI0gw6&F--WffOd
zt-s9<GY#@WhF`_S3U+K2mx)k5j@`~G_;u3wDlVnHEi&un#gPbcf}CAm#Y84q@++#F
zYnVwiA$IAjR+cAMF{O&Ba(s0i*_yA%HOX796}gTnRS}z}+Z(Eu(i_EZ5>Bt;X2!FL
z&3+KsEZ$nhZB@*u;`S<@t>U>V?x=#jg?oi0cUCb|{4U|$iTs|b&12I6uluUFU-Ac%
zrw@ueRK>%I<dG^K6@M&|JYK~U;!g^n5<Z<gomIs%3FoZ-^Ht1dXlt!vnN!8wDxxYX
zGM;%=yu`>WCiAOUK>K8Ou8M{7zKE&Q<|qnZ)FVcFaTQCdc$xaC;-@NpuHw}ymR7N*
zinUcNt73T-?^f|1v!DT1RI##(RaLx39r6*d?QrWav9P>R#hX>U#TPMyuELbQXgeMo
zufaQ28{K#uZC!1Xnd7)vP{jvTobryzKdj=TDpt!43k6@nJ}LuzccMLASH;Iwtgqse
zs&zzZ&+N(Y`x@e>GzQtpXH|S&#pMmn*B4cL#Ouo{z7qdh_>J&e;djFCg>=d7e?L_5
zqk`hjPX@xEeyQSDm5#8A->TSH#UC0m9etR^ir4RoFh67Yvx>j;=x<?8_)iu8iZHa4
zh$D2XNQ-2Wr&*D~!{H?ozlywgK^P?RVil!?m#dq%j<EV-pDLC;bFy(0bwyyztN2eB
zZ+RWesmK}{)X=boMm20z!`3x4uAxZ{Eox|4L(>|zsG(U6&1*IUW?|$U9XlBO-Rf?A
zZJOHlHq_9nhSoK-shI<QP{8#LZ>aHl`Q?{cZEI*(L+2W{t6`fO+SkybX1&mDYc|bJ
zXAGPJnZX<rEkMT_SYA5SYyp%x%Z6|J8g{H<r<xh|4mImebg9{@*(Lfd+Rim>x=(TA
zK%i#!z*p~H!ya@wpuw*L8th474Zn41u(3;ny=v%I!}b4R+JER?LysE%so~!mde*GG
ze<AEuL+={)uAxs2D{EL)L*E+u)o^tU*VM324g1z`S`DYyuwM=RYdA^19@W=^3}iqJ
z18W#m!~QiKP{R>599hGGH5^pK;c_`xNSBAyaIiRg%k_^957q5qHR~JGL0x!M4M*2-
zeB$ev<S88-E8%gq&E6?Fp=QPW#Kg_XiLX;?7*fMf-JV**Fp-Ho8AI!XjW5F))R^Xe
zFRNj=o{p$tWDTQ|5JrofDLhMfw(uOioe@5_hA}mqC*fEj<8yuu7u0Z}ZZE3gVv&04
z>Nrl4OKKP|a%mFt`csB5p@z%#Xkralh+L_ta+UB)p8r!boFtqqoFbemtf%N&xnEkt
zb<BE&Fs+8$YM3E@gYZULcvIX|!*sf7fSV<}MR==_LPqBH8t$m!ks2PY;Z7pAFx7CE
z2;X%#O|*uGYIs<I(EYvgOLCvc{WUyL!-F-PvaN;2)|tqQ;nc%_tcJ(sat`&7_?<2C
zq*C!z4NuoFtM>nRItwT{imi{=f7)l-0%Qp;!8TZeTaZ9D0YVajOV9@o4esvl?ry=|
z-QC^w;qH)`?^k!S-<~;js;jGRUB9=gt9#wWcFCldTICYM0XVc=){jpY=9N?2RR*D}
zqE}CG*VyG`E3dT@9Il(<uDALPR^DjkP5pOop5kuluirYw&AZ7|%x|~GJFL9ZsJ;t7
zV3%OhMc_WWeA3GMr?>~K!i*1E<)JC=;r^CKtn#Rpk6HP+l}}jtUpvtLl+~Y};+~n}
zp0)aOR=#BA^HbalQ{0PF+;zuz>3~C*>TdbU6!+>B_u3Tqx^;fnN-%k2ihHxa{+3nV
zHd@}XdY6j#rnvWw)%5?s+CRjrP?_RBvCB`VxX-Ne|1(nge2V+R8oNNgn&Q5m;x=o$
z&D)-V-%N3T+g<A4TID+{zqj&-DelK9?x!j4XS@8x$}SxG|7w@NO>w_lg_b|8@~4%5
z;iCq-#o6hx%YUc1DN|e<S8124x1BQt7`1rYslVQ6yP)ktyNuedr|qV<dfax2RnoT0
ztkSfyZo8IMfRkILXuHxXRe$@LO;727wwuOUrtNQ^uI&a|z00maZ8t;PEnqD(S~<6s
zGg%3QncHrbwwu*1XR~rnD`#)JIjnM|smEZe(|<0jkPpvem3gh4um5hZRfbqOf7}1_
zcZMuzmkU|Bu$43pwaPFn7iqgi``Z_@N;gqlqV1M!yQSK0>9$*@?fTkol-*s{%8^zs
z*LK6L0?g&DvO?RfXqA=v+eftB%Ki0KtkNZ_%c9Y3w`$w1*7jPB8t~(lYHoG!j<No0
zwB6XY8`pN@+iuOa+o0_>wDt*Yw^rM&-S(XqJ8G)80h4vwZr%PF*K51=`|BvrM*a0o
zt+H|3O|;4;R{p;pc4yzh8ux0uEv*9N|5#<Kw%gh&|Fv=(E4Q_hKHIh3_Ez7azhy_O
zOlrHG`dfBxyIuP0ySCkKR^Q#qJ*?cb|86|c?QP82$I5-JeZRKbzwHj_?*q17%nxq6
zL%7v(2Xx$_cK7MFd#3FU!!$Vk(soC*-I3OQpOr_o-O+7#jMdMx@>naO;<&au-s&e<
zd7_mkS$VRRr&xKamGnQY?M}D)8CITY<ylsq-FD}+-MQ_lUqZ%y5d;Tm7<GQzU0{7K
zwDKY=FSha$D=)S3GAl2)l2KQ*-IZ3qs_m|}$~A3wYunw{c9YxgT5Gwk?QUqh8{6*s
zwj&{bB6Iw1YP*~5?ky<N_^IB0rxCuw-P`Tf-B#XV<(*c3$RVY+qomtC)^e|vTn;t!
zyua-p=x=$j?H+2ohuiLvwtKYgp0f7G`tLs3c8~YhpD?`z2*0krQ9j#t&tX9ww^GMF
z-*zvw-M?)&rR`qq=iaAn_fp%vM_y+wue9B(ZTDK+z20^oSo<4RzJs!LI&ZdJ&HjJe
z@6f(&Ewc{y?eALsy|({%9`CpP$)#s{e4TC|w%tcIif$jb-6v#~ywgNZ#jzrT^Lg8S
zVN?IF?S6o_ZTDr{rz>9>%&%cMA)xKPZM*N<?mv9+ik+Xf+h~ZFIQ3(DeB~#D@Mqio
z+;+dT-B);iG;^T)!%+II?S40CCp(Yrm8{@c3-f^28vnNPpSA-OciRSPx{e#z@sK-q
z>8vika@}!3hl5p~Mj)ge7j^uRlGr*V9e0kQw4dK6_Z(<iNu||sdB+tUS9aK^bptwl
zFW0lZ?s%52*5ghfyI^;EMfYp3+raUB(;wfWLr=#|Z+({UuyMzGF&?WWJ8s5~o2ldG
z?%?R$%pEsN$3fTNj+@mw%-Qj@%+~R&nBD4gSUY2naqh%H{_b2Iw-J11-jQzJj+@VS
z@W=qCx8sHw=EwDU>dyDyVes=V&~Xb|Wg#nJ!osvTe`}b{0@y|D)}kG^m{k_HlJ+I6
zLT7}#RL3oC{g>$<wXEG;&dT8(myPl;`K@3rn~ruPI;>CK1|7Fy$E{+GYZ$g8JMQ`+
zuFqOVSvlIuRSoiL9j`O1Tgw<LyV#Dku{BRituo%qHLaY`acgzl+E!nu<JPkZJ=g8H
z{d(NFr7zd-_|Mv~^4h55ZQ(y1_WwP?8+Y79t5Dy>7`UmSu~~-`9iHd3Z_!~tb}Drj
znD%aMmy<lGsqNcz*xU5_vz^V32)6IAzV>%_?C*mG?bLBQ+vP4+VvG#gwc~cP%iTL}
zkB-~Z>U&$cmz6sXn>x!rcDb*W`&qe%^N#(%j{AkLo^&u(cW}oYg7f#f>fZ10c!fu7
z?y`=%yyJTw(Q!YaQC2_F%A>42+R6t=8Zn0s&w}0Y9Y_6yjyvBfCwAOPRyn!j&a?`5
zPwBW*t$v!7r(1c()Y60EcUH%pZ7t_mNz1t%cV2(}3?2dZ*DtinMICpsRW9jozqG&q
z71r`#2lv=v;FTSBmFH*Y>W;gn<0g09wH<d`$K4JeM!4&YqFbzfeaGE=BWrxmfg3yS
zCac_RC0?DzAN`R4_i}&zjt<LhA2s;h=~=-cRX6*}t{CA469Vkky$1Qdj=RWz=*d0M
zaW}5whaAbn-;R5@!!vaJK<CYld#mFf?eHAjt;rTp$GzBb>#xj7Irn78LB&%B?b(i7
zhkqc|ar=*O&sfXjHv4l1|M`x4!O%OGRqzNu%S-+e!{kh+d(E?DDz+f`KCb}ySv>L^
zT4&IB+d3S~Atm<zJ+_^9tz5uA#qewalb@zC#9w~YAtw3?zfU@x_w)77to*#c{fiDK
z0Db$H{ViX0+}BqB#>#K|+rR6$@2&nrf6I>@x5!98_Gd#3tyq|2KfJbU9r~uzA00l(
z<KAuRy{7)^@Q>bHC*qu_{^_`X`Cv?-B+!(OYj@nT(sB}*I;TyYHgl@k`FHAd8sgM&
z3Y<cx$Z2|~K~Aw#LLa9APN`GogjXz_nob14dwN}N5L!;3^tnyU-iZ$14|Juq^I^I3
zOYe23ahld?I;Vla8RDJlz@ZLP?P0o|+*QNee|p`?7E)($n$c-ar@>A$InC@eo73!0
zr;Kt7Oy>j8EKai;8eq~H=KU@Ha}JyCAl{S3^E=J$G>_A~PG1jqUyb#@_j?^!&F8d}
z#X*oHG|ca`fYZuOtI$sJ@3gqn5>5*_E$lSZX_(WZPK(*y4SU=HJ#G=F`z$!pf0Nj4
zKia+9>y~s{%4vD06`YoKTE=Nvr{$a=YRT2yN2A>hqaD#1KES2n@We+(pCqj4bY!m^
z!CdSGIS~-S>SDuiq*I^MIH&PWqnt)Njj?XbyQ<S_POCd@-Rn+t9;>Z~c=sEPc566|
zbvk66`+2mxW1RPdYdTGETF+^H8@`s)+D_|u{`kA#v#y8chhNK=CwVC8w4u{RP8&O2
zG{&vRXFOr)5I55(Hxafwfgv#zv7T($Ztk>&(`!zzJ8cQcP8T~};<Od$IUVD4tkZv;
zwsG3gX_C{nPTM(c@3aHZCi;0v4^WA%oP(T+6TNQi<g~NXZce)+iwSNQr(K<1+!3$k
zlOhbE##(1^TROLg)1FSmtbqu{X>X^G7xsMK$LS%CfO5-ef2$vA<pEY6Xyrjx((PcY
z9OBe7)aL_-+2!H=caN~jkxoZB9nFUldwd^$bUx1Mc&F2y&Tu-x=|rcKQB+to)}7>Z
z`xy7|M4z|7RTy}x6Y=XblLD78e-{4jm(y8J=Q^Ed7IZc|>2Z@rdA6Kmb(lYSh&$iu
zLfDA^H$6uv(8#Te=)+;N9(SqJWlncH-Q#q*(-ltFIbH8`rPEbTlbx=mg}t~L9NKlY
z6IOE#irwcks7?A@Fv$_D>j}I*s2iPb19_*LoNjhnb%>t}d~N|6p5G9dd6aLww8xv(
z9Z0;#-Q{$rby#hPgF4{v%E1_n#pyAp$DQtXdcf&nr$?OD>T!?ux(9IxeLki?<n+^M
z_sT?{xjkxH4W;lWVxi&mq|*yX-{~pb)F}6i)3e6Ir*Ts}9_{fYJm>Vhu>!1^{ggiM
zEnjl_bd*=%R}8V2VUc0=stw0*_`TuuCLT%3q_>>j_8-F3uTJkcz3cS3(-&B!)BETZ
z0&@C*cc=QibUt$W&}Kvmhzvgib3VmzhPZ=zeTUDm1#@Ws8}0t*^rh2x{=Y10*&g>v
zulowuWcu)p)3@eckmI~P4#q<J!=v2~@Wk<-=J`&)V8!o~yw(BsXD0}pw$J_M^gA8o
z|NiiAbm=dDh*baq6qzlRf1Gd*ZBwLw{WibXmh*?XtNPp<)~y2%$9rKlq(F+LMBYDx
zc_=?G{EXz~4i$K?zn1q#3NlTpCCw(yF6B}oO)m|SN~w~jm8O$w>9<i1-!gnW-}TZo
z@(e*71P;*nd7O941En5%5>HV8Te-|2%_z+z%`ETpPv|q}*5hW8W|j8_-+tuKTXK7(
z53lBs<^)w~m^4_LOPW`jPhKZ+adQht<mQpLoiF-4=0t&BX?|$|qicw?^(3!C3tAsA
zT$ou5RqC{Z8!Ebpw5YVCw3M`%1Ql?j%b&%iCFH{goxkSIGU`2!l}@~|TgKq*YWy57
zEf0Shsv25BT2Z=Gx=dP08X@f>?JBJ-ts-qGZ6uA9`lL0b3DPKOv@}Lq!-TS`M9^8?
z>Z=*HtoU#;IP-HkW67Sgb7O7lang7Q9O6ziLe`SjmevJ->CGOuj==%*0pq>I7as3$
z1uu_s>q{FLH*Oo_HEm;QBGBNZw28E-w3)QIMC`-azB<|w2Pt6`ptg`#+AVGPKwkTz
zB5g-!lL#E!Mmo6H%X(XR7tM4#NIObj&f}FIG$xr`c9u}No#cHc)B&8!-K5>6<D}!I
zJ)}LQL!?9LBke8iFC8Eso?ya0(y=%+LV#)4e#Q;p5MLnnKx;h6O8OiuAJbvrVbbB!
zk<w9i3vUCoBP6&7X(-asfHhQ)G3FC=fJRB+K7nr1+0r@ENz%#EsnTiWS|i;l@NJ@F
zWlB$itj|Dt-09L8M%|eb?Rd+}hPbmNkc0{6O6N%zNEeD2>e1kLzHx>?d=b`xWm&p)
zvGgr3$c%EANC0Q-<<b?>`_c#Wm#&f?gw@j3(lyep(rwaYI!iZ7H^E8gu9I$%J{sk&
z2UXN~xZAbsBn{hmyxXGJ-7MW=Y(x;ua=UbgbhmVmbf-jzyU_e`{uT;AA7o8JaxX)A
z-TgN3J_)x&XZk#Vp3mUj=EKq>($ms2(xcL2(&N$-_>evylIVHt5I1<7dy=_&y*55&
z7^2eLdRBT4O~!R&Afw%3Jr0pQZ(MyrdeJohrLLM;`HGdVTKSrlXyEH$)n6yL;~U>L
zbADHP$L2!Gu_=D<89>75hww`JS^7o#So%cz1}R9NN}r*(Xb80Qx^tZS9NU@bS@DI9
z1?R6M+&i?R+vKZXV^Dm%iO)XZ5PIAX(vL_abKi5f*DElN@h7AGrXC+z==m#tRf-yl
z8~PpRFa0C^YZLt`{cVPZM*U?(;S&IYAf}iiH5v*UYNM9eX+vswDbRr*%EOOJ*w9c5
zqc8`A(eR|9w4uDAqM^)&5UHCDZx_fK)onFAy>x~I9PcP{#fh$NXh1^;Hgr%!(=;?~
zLn9mNYiPQL1~xQ*Lkl$2)6nz{&Dqf4h6Xh>LqoGRG+RS6Hhh?yx#4}+Obs6(&>YV+
zvZjXDAMTPUp1Y(E;<Gn2M?=Ily1m=u=4xo}hUROiw;?uv?&x##G(<8yexjSV;k^po
zhBSPVhC1PYh$FNt*w8`^E#1&E4J`}@8d|iW#TtGEv4V3qtl)+<go{|D;X?`JFW%7h
zLpUxd(0~I=7~~}(&6q|BXO?YfIlO&CD>n3AuQ#IMaHH2P4<81xspX^LO0coVjc9mB
z#}Edt+|Vip4KkscSw=N9x}mM$MnkJMv|2-JHMDj^t2Z>Jp>Yk3Z)gofV|n9`lib*b
zcf!mFs%tiUY$6`vb57u;VB_AJ6Wuxut=rI+TsE{`L+cxpw`gbst3WaiXTye1vG{Fd
zm5r^OXyqnWZradhR-w=4AbF{0CTlBZBq?I{#YQ<q@ZW~EX=t~Gc5i6ghPG>H5?H~&
zhITOWaeWW5`D17^7A9cqC-?b9!Ojis((qZ$u4wxtum7k7eA}a;JsaAmp?w=Zmf=+(
ze6NP~Htj{A2yVZIVDJ9M0bmkz4zRmGLs1WI=#Yk<YUt^P4sGbLhHh%;=7tV$=!k~S
zL!%lxvZ13II<uj(8af)zJ9lhD$2D|}aS12cjakPxbcU%1B0B+!jF6M8JlV=qtUT39
zL~~k0r}x*t?)9rk(8B|tZD7x}@*I;CY@|Ov=YobVY-qBv;-ZEwZm`y1#jZ;ly0jq_
z?`q~9<aPV9hELcoxAF=ruk4mQ=treT`Aqd11Q+{7B3gGXX4260#+e%$y3sV8<vHRT
zdxf_eh`ObrTN}E!q5B%Tt)bg7sD|!r=!srO4v!6j44xB);O*~f=xzgYPnQr|F5TbI
z19*vs9&6~qhL0Ca@o+;ASx;smO#-n;8X`j@b9fw68tR^G_<S1<JYf!jY;Y*s?+3VN
z8hW;&ZyWlqq30TU9vx`tt%hD`=*5O!Y3Nns&*h_iw)s*+FE@N#W3fQ_T0^fRS+fq5
z?G3Y8_y(CfH1u{u?=<v&Lm$B89``QnH4(gLT0}P_&W6K>I1rpeLmyfD$0mKBgIVR%
zhCZ{(=T?5vfA@b4eQ9-aY&!d7088N!0Qd~_<bU7L4-Ng@&_50R*w9btd_#Yrcs=fC
z>}9n3)rS9KI3sk1{ANr>r7<GB;-7}kUq)|tVe)T7Q}Fo>b*vG8g~}Z_%(=iP{ct`E
z)Cjy=!v=%EdoZjCO1<q{JGU^pG*A}k&`^hkY6fZrdL_`Sf$~5_pnU`F7pM$W1zI`K
zDuL=i0|Lz(Xud$x1e!L`tbt|=G#yg}nlaE!ftNy0pvT9!83OO7rnl(^SxGL9>t<@C
zKzccIpvA|!SppxMkQAiN9%zn0a|N0^@LqaOy9IUNKRED#gKqN#KHG$x5f%s0sNO(B
z0xc3~(LnPDS|HFufff$5AQ;*f7TFrK`y{8=4GlCb@E#ijgw-I!x_&V*3AAjW<pM1c
z2(@1-(9+P$lZ*a&yJm}Imocy)gG#eDBvBk5c;~!)pcMkIlkj}SKr0148Rj<v$YZ@T
z92uyO4uLieG%C>OKx+kBJJ70uRtq!^!3AQSyLzBC0`>NJ$YTPrBS-c-Ht>sm@L>V9
zQbVIw^=qg#15F6LKkrhvPM~!IZ4hX~zz3l9jORb>=nZ83z(-h|1N3ebXv`?LvEBX0
ztZ!oA;~>s<vp|~%+CI<@fwl;=WuUDfADnx<f&9mW0wE5*1p?Z3CgPzi0RnAnm@o_Y
zAa^u*$3T+;?H*_kx&=C^$L(e;-8s-MfsfiCv)mB3D>RaU^my|j?6Sn$Gtgdv_O{N%
zEcgJ}eeCkUXS_e$KhObzu0&FS4n&%PPKI?TMxa9i9UbTxv^vmXfesIJL?F^#lJNa3
z&u3nY1t3QTI?C{8?TIEF8|b(|#|JvWI0JieDWHUiA^${U0(6}e=qyXxPYrZhpbG+B
z80hpsX9PMMHX7z^urSM+^y~-4bhENv9`DW#bY9?BH0PVnVBIhZ0bLa6;y{-Kx)i;2
zemM+R!GR5&%K}|)v%_}yaD@pA_#^{Y2f8NE1A!h4G&#_<fo>0U2dWb2`am}ax+M@v
z<_&>vgt}o4s|4&#rkR9e_<yUJ7&!?5QLx(rA9wIPcLur(xdgh`I?T#HT{Rp?J9%7t
zAABC?(~tX&7Ptp)#GQu%Jsjw%Ku-sHB+#Syfk00Ldd&EMMWfy%KV7*$X*x+V413|v
zGl8BB^irUgP0gVFxj@fbpBDnXXcI9I*8v>1r075(AU*={wLq_9{-G8N^+upK12sdn
zLcJB}?LfZ<`Yq5qf!;;y0(}|iy+H2=`Z&-hAW2%{+y{X^GzI%85Lp}(AsVncmiW@=
zJ`MC)pwG>begPlM;@AlR6JqXHAROrXKtGsk`Uaj)bl;k45e~jHZm-(seHUE%5eGHI
z{bXK+OA?r$1N~zBx!mUcJ<uP4+JQQO{tWb2puYqC6KLm=4j^dG5iAWb%o$wI&K@QL
zor2of!penGs3=q%su7CS3K#~VM;M10T7~5UQb<Cjq2Gf=*-&yY$?PsJ8mjY9MX1?A
z%^s=@RfU>9)Sysxr~#p-3pFqlMzp7M(}dcT%`0y8=ZCE9J~htt&}X=JVl#xAG1M%f
zW(_qHzfo@H(0dP3zK1Mfh6=(oqJ$R0#~h*N3^h-vc`2P69BQsmbBEe9@J|*VV~rfJ
zE$^wAFH~=+1w$<qYDnnUWhg3?&L8@X_r7s%fzZcOs9QMn(QsHOb_P7tLSNoz+*>46
z_p7SRzIdqBLyZZwM5rZ0Efs3%P$NRE9BP?R%Z6Gm)bP-6f)QCzLUvh~54D1^8dTxr
zilJ7rxqy%BprrFEp+<%p9copW+~fK}vCE3>j50L-8R(Z+3|}o2X*_FWO0Zoc)Ywp)
zh1xvSxKQImtsiOw`h=PgYMoH)hJIrT6=gxUmQA`g`rqRdyln&9DGhxfU`=;EnSUtK
z?};D~YNOEap&_!3Lm#<V4wI^Z(x#!<siqz3wg|N)mrMbY^bfUNsO>{N&GucWZA=`v
z>;Hy6F2iIrb6dlKOE|d$;vVinp?f>pEEv?zp>_#%V5o!8Jt&&!_BRrCvktqP2I7VG
z0Jzon3bl8reXPEpl|b7U^}{C{WUK%cIv~{AX!R)1Ixs&t)NNxu=MM>el)1Ub9Ukfk
z_#bK2NJoY`3jT-sAk@*JjtO;ps5?R(8|t`F7lpbw)bXKC2z6$tvtVGTlR}*u>a@^5
zl{h){yB1`~xVuwKd?a%0L!J&-Z5J0-oDurakD$*+F+!am>H;J4T;mVh8sK&wb~@Up
z!ROnK+=XT=hzZtR66(@W*MyoJ>atLmhq@}%)uFC1WrnMuLANW-=*XiGC5a750>5iR
zT^H(BH~{8@-1XSb5dTo`2IJn1p>7Iwv!Q{4-C~tX?0b*dAm5EftPJ3HhPo@%Q-~XS
zL){bVkx-9@x;NB)p&khJppCsh)F<Rrwn4{Iv|D*7^vNytheN*?0kMyTdOXw<p`Hvq
z@DbzuvnOz7@kJ(v`f>S8sAogH9O{)&&xLwE)Qh2BvRPhWY_B8hBZ%*2o*6t@Ibz_i
zhI$P@AL{K;uZMmY7m2@Na$y^sx!yD{2M+I;Pk0YmTMGIv3^#v^2S#KchWaQ}7O5HO
zV~E1WL;W7=(@>v<`ijn>J`eQ;8WrkG({1#ehe7|rIrqAKhkMo`@oz$X8|o+g8-B^T
z??S)(_kHO1y+Nkt9aWUS*ZpYXc#D77Vgy1R`V53$4Rg%@k5GSN6cM{Z`YY7mq5i>5
zp-4TRSFAONSs4D5Q0-71gAZ{059BZ-dew*&L`ov1k-|t(<UJnQGTwl0pc-Qf1ATyi
zv0UOPNRwKT@<>A>%^#_VR7RRU(x6CHq&m{Hk*13@Ao3YF=?4T(6M2EMzJnVBBkxsM
zOtHNQGCh&^W>jW~G-IT>Bh3@($zC@TnDqJ#2Q+4mG)v^e)2vofnJv=nR-dE4WlpOM
zwsI~jc{(<Eh~L1OH`08OPtwr6Uc1HYIFJP*Ef{I>NJ~UoDAK|p8EIIg{f2w3W3vvo
zxd{Dj@rao$8u{n|s*6S1`V5crl985*w0xu$A|EA}j{L*%Wg`ESjmU+<EE{RLNW)<Z
zGM&c{A%k5p^3Su7OJAgwB8{-SsQ1c|R*6LJx)4tRm|~LOEeB5|GRoxQZ6VU?k*<q$
zeWWpw)}Vi+gCdQMG>#!)7->8#jkH0e4I@p6v{s~bBdrG-<9*;;JMs%Iz^)T{s|Pqf
z8B1Ir4vhC0;&3*Kv~i>@B5fIIksdcO(x#C%gB8X-*up4&JXV9NoA<+EY49Jzb3gX1
ztb&`R+cuH5jkH^&-6L%mX?qZev~#2#P_14!DH3~e%)4VWbsq`&l7#O9>&#Vx^R9+7
z*uvF4BJCMzpGf;g-f!;(O0nBJ(&={or%Mq&78>`9v_JA4>y7RJlN|>M;Pb(e4xxXf
zGa?-t>99!0MmjFi;gODrbabR+B9Ttxfyt|njJ%gVD)MVC1PUl@0cA+=|B+6JbW)^~
zL9fR@U_u8@jP%+li#t8;lt`x{j)`vPULSx?GaTrNyE`+|S&=SfqDW_>oRQ9tbb*-(
zDs*n7^CG{?3it5#OnPCYiy|MeE{Sxp@fJ#98b9_%=!U9X9_flmS4X-g(v_xEm>byA
z=PInS&y7CPJut>+M3W<3YZd`ToWVdDZisYaq}L<85$UE#H$!!#ha=q*>DEYhMY@~W
zBi$b9j!1V#{<$qF1hL@fKKI=?$5u9bLF82TM7lT9eUa{mx*i7)!2$FjicIG6vF?FL
z51N6HVbcCcq(`xuNY6%kEYjnVp1}MgpO~=}!jB!m-uOK3DRg^?-$#AgXs5#1=OR51
zs7SAxlu4LhFjagp(n}^a;{MB#KcIr6Ls4-@AdFvq4O)z=Z$^46(zlVmi}ZG+cOrcn
z>9a`hf&d=g#PL3gYKyNA?ec?218cv!`N%koSV{0cF@@n-4_JL3>5E8TM*7P7!<PS{
zCw)FDorx>!b6-b3E5_((`6lu!DMo!C=?8pxq`xEm2zw*_9O)O_?8ct4U`{s-f%P?~
z3x19Co9Pmk^1GSjACdmF3N7co;{J*BZ=@-a+PL>g-s%Ylq(hiCECnD2!b9IitY)fK
zsvuSv>&aM8#TtqSh_zs>g{&UON@At4GCIc^6l(@+Z^bHNl~&JVPBQpYI#sMX*0iyv
zi@j-s431?$tZ8Vs0Lr?I)R7=EFji0O`M`A3$AX_IIV;K;W6cz6?pX80nmN`iv1X4o
z2R(=LwIUw^*w#Rlv&Eiigv&W&AF1bxIfLN_$9j5<KOukQt6t)`g?VGm7i<1l3&h@a
z^S}$9_r@AxXm{7MAcksj7j0RX_E>wz+9%eqSc}A3E7sbv7LB!7tW{!-jJ0^IC1NcX
zYj~_BV=WbHnOMsjflGtTI7gTUH_Q`OV{}*nG%g=&g;*nEtsHAbV;3`aGqjar@5ev}
zwvcpTO5Ex*3>i2s)~HycW33wdC!4Fs8WU?ZyGw8cdGeDrVvRM1z$I)Mp2H}{j<;@W
z#+qR0(V0Dmbz-d>Yui}c#Uw&nKh~x(d&1fv)`qbr!sJ+NpKcUu<5<LK{1u@1;Wz#s
z<t+#rG3U)=Z4qlr=7sr#d{zmiSjtw0C+_#Zv9>k@kOhvB*|)Jv#%>>Lhgdtu+9lSG
z);KBFPW<}kf^`67dw*BEyL+rXVxL#<7EkrVdz!>~b_`;0d#`wEEZdiEu`Z5vNv!>2
z9T4ldSjWdYFxEk_4v%$2tb=1666?@dhnXN?8cWeZEBG0^WU_2LGS*R$4=u5stcX3~
zN5|f$(FcQKpM-eI*b~4c*4eSniFHz}lVhD8>kMY;b=i1#iYe`>u}+Kq{x)t6KHzdE
zkMiqcSbApc<I7pGUoRl{b7P%nBwrNkd{f$U8@d4C7Hu!ITkx}+l)|4&V_g>OE`}qu
zSXaclG1g77u8eh6tjV#ijdeAG7~&Tr*cVe=V_?}#!y#W6>v}_sBUQu#IC+C<BRS8_
zv2KZVYpmN$AMoVw_V}C)qTs;osCukB4HP~Wl#m?|?lBA>gs52e#=6fs+>Zi}_Om}=
zguns#_OSJQB-W!$G1kN6_n7s6+-`xx6AUzt(f{dK&mgr#hb4M8)^j+DL^CIPKGqAd
zevb7^tQTXw6zk(ypTv4O)+@2zi1lWyR}CQWU&D4RY`tz1!3_faTe04b^?s}mV!adl
zr+e?l-q~^&!+g&qNXE$aGU@b(aMgBn(eRJDyyE;%tj}V76YJYppU3)w_E=xW{>c<^
znIGEnl_}4*cH9N?{5tkqweamb_#f*B!w?N*QZ$W;ezcaKtORFf|25Wcv7$tAqTgfv
z5o=1UcC0^R{bl6*1B-gx-~H}|0E%h>?O&9^4li|Lxx}CKX(Zm7m>qnWkzbH_8ToxS
z9t0=en#fy{L}{XF6HS*WOVmu%N|YylTL}!&aB_RNS|q9x)rrc)yJ(b+-vFymlXyp+
zFYi4Sn9zA(qMk&963qZ)%K@fO{00u)2vT%_2{R@>=E7m3-Ykh`O*9Jh63v!q_C$*%
zT0GGliRMhSV4{T*4F=&v^Cjv{G<V{eFi&EE%s4zRxEYOjA#M@-h9sIl(E^FrTLLj9
z9q_;lGb+)rM2pyP2qfjkS{EAcDP7bM-qa4OERkr*M9U{yA<<HamQJ)xqGc1m3Sh~J
znL`WK&2Xq*F7Xd}hr<wiM80C8l@g6i)R*|EGy=5y+$x65%EoybS*m~)@sW9{z|U0^
zt(Iu>L|Y_UJ<*s%Yb9Dc(He=yCK{h;%|zpj=g^2K;Vp0`B;NMf16<8)9|YD(v~Hq}
z6HQFCUZV9A@2NISw1JI<4?M=@oF3w!z7f;)`qzqw5>FFtnoM2DpJe>pjLSYZqH<dz
z<wSczCc43liMC6$ed4pk|0dcNbsgolNxVRLk_A{cJke+PbDL%UI~ccjGz2DDxl^K@
z6R*9ySh=f}yIHxrm3vr;4%27vMEfM#KhXgOXJ6E{&$Au!_e*r4B_0QwR=}Bqt<OP;
zw+LiJpF^0@_LdJ%bVQ;%6Wx{Q$V5jax*^exiH=TmOrnbtU7YCHM8_pMBhi_Oj!$$#
zqEix`n)pYSK7uDYDbdMB0v3cVKr&=fKh0zf0+4@tB6b+4oR#S8MCT+r*X$9V9NXh1
zeqN&UkxuN*0Sqs&u@@#jPaun9NsFhwB+;dbu1<7KqRSFp4n;;9hRKjC62HaA@GDKD
zfK0^c2Dr(IuD71xc5UL<s@K_Eyj8^1-NVB-S%+H^-E5Vv<pS;2M7Jfn9fsIB0Zyac
zVI9zU?%oYuiQZ3iPojGh-IwV8L{BDqD$xUp9<-j1Tlo-9U}rys-@}O>N%Ux<#}bk1
z(?V<ltJUo86J{3})YC{X(OZe$#{VOW9`}5r7mPE{S&0x|G)tdss{2wh^$f$yR(ZwB
zSFL=_%GY6$Ro=9c2U6c=?i~Zw^=ydmT?5FP@q<JkCi*$iFNr=%^l_rE6McjJC;Bwe
z7l<a&XU22JqL!Z<nKh45P`UnXw=WI&S7sMvyx%7JF42!%TKo5jk1Rh}9np7#HTuAC
z_>b&<P4pYwNI9vg-xK{|J*Oaj+l%`%(O-%Fw#I+0{0EO=`o=~ODgjqXlG}+oxGD26
zaI8V{pDIihr9NY4lbN)cB!}(jI91ATh)YuMrn={aFt;q7dUhyJRirv2)0vsdR8^{n
zQ$3QZPBkFaZmD)pHBG8%Q!SHf*;Lb|8klPSR12i)Ni}_{Ia3WzH7L~#sb)(xdn$B$
z#?<fQ&7Ar@`I%Dx2njaMl4{n}?~<{6LoU~j_Q#FT@Hq@Oc!k=`m1=IgoX^VcDZY79
z&71mIu!HTE_ojYZ337&{{)8mYN)}ADP^v{zEt+a!>p3*lu+;l5Y>hC4G}oBkA23@i
z)#BD+Y2(!rsg|<KB~!1icz$L9Rk%upS(ZyRJk^9$Yo%H~)e5Obr5c@T#Z)V$8j)({
z)Mw5Jm+;5V#ww{s8s_jHKKG?wOau;g-2uC5s?}1hk!ozJ)oorfE{vV2$E5z05$Oc`
z72{IxH^!&lSAYhTu9^BUNAkILs&!Irn`*mM>(VXNR&aH=TR-)Wx3);9Cbt_P-_*zP
zjR4E$zttyNxrvpVTDh5(n_I~@4d}lmyhZw!-GS9&eclkZM(CiCYMWG-n=7W=KGhDX
zc22cR>eu)?8W56sdQM9H(VCr%4}=MV7bNVO`UNHxII~BpJyV^I;-%Uv)!xV=)lsST
zNwsgPgHf1N`=#1H)q%z(xN$)0A8Qi#L6U%VQ0k*tS4@YdIxN-U))RIy3wj0Gu<M9a
zEZAv0I@K|$PC!_xjs;Yz<E=lKcR396S&E{xC#5>sZk=W&2YbNzlvJnMB_Wld%n+i$
znW@e~pHcW!XQw&`=A^m;GE<$G>cUhPr8*zxq-t7_A}PgP6SEi&h8L$|OaIbTm%ww|
zf?yYdxh^xUX1DpuR9B_CI@L9)KRv=Na%{@UCJxf+>r5-IH7kS3Xb8%7W2&1{-J9yZ
zR5z!(CDq-j?n!lPs@t$59{8rZ-9!VZJ5s+EBebC;=Z^Eh?=om89^M1J#hFv`yFb-K
z2+J^kz=l7V>Rn4n+$2Bn(NvECKhu1f9>@Gs{f3K6^<=82QoWz*gH%tadM4HDsoqHS
zY^vu{y^P(ZdOp<)seh`%Zsd!pUNZQkPskU}Ko{;29q8usufl3p0md|977~0j)!V7w
zF#)}ms?QQan2h6n7vIJC3R7t`hlTlvsXj{eb*gVteT){R`aIPasXm3twkROTBBsw^
z7f0MpdH!dr`(^4gYQXaQ%CsE?`!>~gseVcIYpU;4{eaIgCjV&2z%Cphk22v8zn={P
zd)g4o6kR9wN2)*3kW8&if2I1H(2%K->7P{prs^Q#%-a`ke+s_Q!d%;k0`gyw*6X7T
z3(p`^m?_SbWZsFP4^bu-ddy3X)XgZ;%pW|<GS!9;o8)<>BGasyX0uUcrWrHMl=<wd
zqFd(O&VbA>bEe6>Kbh9b>8#{(V5T0cPoHT}rWvxS5A5)|APkKd<N6caJG>l`X_n0E
zIX@UOd!{)u&6R2HOmk*_?EucWKJE_Ad`8OhWS-2Ywct;p!dxWzy_tq&S~JsxO!H@2
zAk#9Lmd&(ariC&sl4;RQ3uoS7hh`d<dH)Xrh?V^%HUyx3u}q6+S|Zbupv_rsiM2Ui
ziy=#8`qGw8)R#6O;JI9;;h9EfS~b)1nO4ZON~V#SR?M_g<`sq=GjJPW{Z}@|c9V7_
z0!4k9PvH<WY#fz&RRs8InO4s<Ces?3w?|w7h;eIdrg52fl2AI{#DSPVl4riKWvxtW
zXWBQ@ewo(Ev~H%|GY%VTy-e$8+9=b;nLpyVLFRYlKxxCw>lmSyoM9rwX4)mwu9-G9
zDS*ai@PCL~*iKAsZkTV8X-n>A+R84sw{mMMy~0>!n@rpGw`^yX4J=~rkZH&M_DM`_
z^_{Jp*E;YBj8h7`8KWSF`ktBgvdg_QAN!yb+9~$|$<f|>GwJ@B4#;#|rsFdmnCYNQ
zhi5th#mIC>=8pnm;}Cmjro%EH!P%r`6gdX&>qyg|qk+)lj<Sh(P{`e5tWM=vQ*Z3(
zgiI%9IxW-b#x$b&Nmz=B;FL_K8prUrFb&5DVr<%=v0zKfS((m8C7SAM>Kw$E>AOtd
zXF4y_`I#Qd^f30D>B3AmWV$iaMVT(nbXBISGhLGD(o9!mx-#=?G*b7W_&PJF%MHmc
zPl%Wp6t}Li#_KX&pJ}q82LjhxV|Q7B(ZLNCGB;(qIn&*l?#XmZrdu=Jp6QNEBwbK<
zTPAD@DKH9UyVD@xU8&z?bslryo9Vtx585SK%H8`jJ%DpC_sB#{%@4hOB-5jr-puq?
zrpIvpnV!k?Y^EnNJ(=mLOi#nr9`C5J7Y3qryb6TQv)lh%rsp%ghA1<=km*I6?iG{E
zOPO9a8oQi-h?nKBb*~~RGYX_YUdNfYHw+~($5+3d>77iUXZj-3yC_wrk1~C1Hi)p^
z&-8)G_d^(H2lmhbQ2K<4EI@x|vwxaR&5fZB+xZ`E0h_X0knmOJb8Iq6_)N6=1_#Jn
zU?wtboPCBLGX01rY-+})e#-PSZn>$bsb4bvn(1#GyMg*G(;rs(-AtZ{M%en(TK=*U
zE`i>^nWkiFXX>Cf_Cy%0z}biUrW#G}>yV?GK0`z218eC%q>h_PnyQ+rtubw?)l}Y8
zW|z&Tw--oYc-Jo#)(%}|(`N<f+kmE~0kXB@RlK;HetU$<bWQ)ZCbrYl)buo3q#M-j
zX_himQ!_WUL{m#z<19_h(bSwx&Dzv#O>y3piDvJgk^PFnP0iKR;!QCx@VlOW?xyBx
zYTl-&o&Lnr`I<fn>1}F=RjAM3)B;T{*wjMSvWS%nTRF79&oHaZZx9x>`eIhn&O}(*
zQcW%0)Cx_l*wivjE!)&`O$~2)Z;bcGWbh$aJ#YOiZ#ctkMuF!_O^vV?>a24qS8i$*
zYe7u#c2rZNn>w$l^P5_=snwd=qp3ZcTD_?;O>NfH=1r~9)YzuhYij+b#x*s*sdbuK
z*QBs!Q)@MSqBsGDn?J`8(Dt>P{&@--f&=XGii~#y8?s^3dpv9wWHxGQ<EADWKASdu
z1mDC2$H1-~QQ4xYEt}f0sYy-!r>U))+NP;(o7&n&F{EpN|3#6kPLjMGcZay`n?5ms
z6+1M2p1@OYX56W%otxUNsolYxBYdVdyPzR9JCU6}*gh;JGO~ZZS5td8bxc#oHnmSv
z`!;n*Q-?OSUsL--NK*$keda&o1iv9hfW{df)but8)dx5I0ZWoY5Id}?!<#y)siT`Z
zqF*B22ggUEile;Sfe-`==B$X1YwGx>PHXD)rcP+;L|E6<sm4{#0iI-f2<;~uDAbRE
z;7mD`V?Rxu+0@xM{HD(8p9{puQK9Z!BtF_ZI?Sreu?w2Iu&Mi+y1%K5Q0As?Z0e?_
zE@|r0rmnZSE^F%Yrmk%2Dn!7;3**}rc5CD~cQrkG+_g5>HBC)!dXEZl_(^%4b>qw@
zb=Y!)U4rV(R=K^YJDR$ssax$5wY-fMJDG#j?zF~xn!2~CyPCS&F2Njj4dr~r5dW49
zNe*;9(A0xXJ=fIpO+94Y9&hRi%(KTmY=}M5)T8~}c+9lrTg#T8Z0f0|p0*(*md}{f
z5F9jOAkP}l$>d*X>cysBZ|aSvUTW%P>;H-o-sL<G*Ffo2Yk#dN7N@*lK+Bs=y=9FA
zHBunf<8L?hj_Dh^fquT<)Cb^J>#<rNHuVuqE_8LFkDK}gzmaR<T%R`e8MfKdo-KXe
z)EBtEmZoj#e@%Uf_ipM}(6(8Au<~mwziH}Qt9*wR*#;Ws`F(Thd$>Q^t)H6u**q9j
zbVK}aP5s_f&{EjaA5Hyf-8xqO)zrUM`P(=Nb^lle)t!QtTG(x)Av1WwUCY19+h~b8
z&-;)j8LwwZkBeGLT1xF!-12)e#}08>OU;(@mWr15RIQdzeK9W9r;NoO%a(WVb<6vf
zs^!yl4)$<sKx^u|`O~#Du%$Iyn$S{DOVhWsP)iH9G^nK+TAH(^!3KH8mS%2g7OT(H
z@_8D*Yu1+EshGXxcVj?uww8aI*7c%uv{c)gWv-UyZfSv*7HnxA8$P7vb#-1tX1<ns
zTY71vdwHaLWu$wRx0CSy)(wrtK)Rj~V;|bmu$ESDdH23ZON+L&SWAnyrmmwI)wQoB
zT3V{*cWjn4AW(`~p)gCgv`ou;%Vk?yuBG8EE#J~;Ygxfqx^hdaw6tPNE4BQ&eeYLU
z1+@IL2`VG4($~@`yW8zR*{!T<aOk$0fnvy*mey$bL#@~>xQ%UTTubBop&<+0>{>1V
zs?<crwzPIj>$J3POY60?QOo;Y_{rGDs&4(3HfZ_GAAWAw^1B}Z+}Qf?{|iVnHf?FM
zmbQZxHv8r<wxzACzC}x0B3~PVT()Me*lp9#ng7D5asJ%Pw$?)G2;?1F+7X>;X}6X?
zfI10YjdwePK+Eqtbx&FBV)!5+)Cq^bJ7&d^S{P*!YOj{|hP0O6YH6RA_HAi$OV^?#
zE$!dZ8IaJ@0WBTa(xELK*3v;XJ5wJFizfQj6ZJz{BAJJ!hqrV@OGmeK4EmG#=zyS)
zH0q8r9b;dGjiX~BpZ)xnj%(@omd|N7!G0m3rHYgPD53p-H|i%_%PB3LYL!c-_5aI&
z_pnZHO+A!yR!e8MbWuwew{%WR=eGQY?FB8rggLL}Uv@ZZtUJFuHQOm`x(nf|(GIqk
zv~+1pSGO#RwRAal*Xyn{Y_DkfM<<9LW#)-LG+t$d<M6L(iJc#|N65aeYw7xy?rZ6O
zY}`8B*3#`Q-PqDiE!}J_D8?;j(E#Cht2Khd9ag!krMp|Y(>gFCi5z|IF~cF(rG76R
z>_FxNEj`%Mvn@RbZY@3B($lDDOOKdE!_UWBdeo4|r2q<@e7vP6T6z)|@%^8cqCM<i
z!*fo9iR`m5Xac$P^DVv5(#tKq($b6Qw(P}2%X408`Ah@FgAcD7!mqdVnpMz1zjniM
z8GCse`*ut3pz68*uED!#U`yZOWLkQ^r4R7xHtNHcKC;Ru2z02!ZTdGIT7IV*ZTWVv
z`?RIctOFK=OZkEjfS*K00PJ<&cI9F-eq)+UH$(}NT`~R8(vL0u+0tJv{nXOWE&bNg
z?*{M}<0>ru)vSy)NO#B|_?G^i3ZVVn(myTz+tQSNse#5HBmLPDR-HVLZnxAiKC_Pm
zkVdW`*PvW8<O*{|xu(lCFjt%_$yMYkbALiL&Al|6x%cW>?u~_L(y~gP`y~%8JU}_N
z$5pw{duxEO5y4CMHgK9;)8^taA}$3tLeHLD)7vediS?&O?BUFqYo=Ut<{F%9=3KMn
znl;yKxwnY*?AS>+HR7BM7CL+Gm4A-hM;s8FE7#n)dUFlQz3ZOG;Cp}0$)a5I<vvXG
znTitW@SOAKS^&s)R18g6(8ysOG&I++TyNxhGuI-y7R_})t^;!|mTU1`>*iW7*Alsw
z%+;4`RIa6REuCw4uH|zrllyqe4<;;YXu#y<a&=c#E96=+*UHuhexmlg@x4;65xL)%
z#P&JYfzMgRFdv!wbv<;A&b4Z;@iq#utL0iF*VtUE=RSR6t}$RW*jL8cjL?qGlcpk+
zHFHhKwU)7H9Rs^|?tOkY+awF3zJ9I^a&4Dudz)fIc#><gTpQ)um_|EyhyF~2Kc)ag
zWHPSJK`+<Vz|6I!wg1ON4;4h5t&H0o!>;*^^GN@a6zaE)!QVFbdq;?Dhg>`6+CA4E
z);=lMF1dC!AUheVJLmrFF^t;H8ljyu1ETOVd*<3J*FG>d*WS4Y-o1-0pm-el-p^q2
z70vx~@9uCZypVMe{K<8Ft{ZY4lIzf1r{_8&*I~I1&viUKa~;8?Hul(DN98&?_m&H9
zSuGx8tV3aNfXL-I>&7jlaAK~La-Ev%v|K0W{_s2;1M^di5LU$S0cVA9(O7m?&&+jJ
zu8T2>TxTQwT<7PyAQ#6e&ov<emf`2waM(qzbs?rP%EP(H6cq;I#4gQsS*~kxO*Un?
zJlEAG>njYmD|1~1y%vuSHJ^{C!fjq_`~(8WKdv)V1w$@x%ym<)hjKj(3At{`bx*E)
zbKRQjwp@4Sx-0j27cS*?EZXwtJDARn*@G?ZcN@Y@7K4WWeGtXT&wh#?uz4Zv!Q4kW
zo{c_|>(N}#<$6BXW4RvB^;E8>&F2s}p6KuYBxKsjWM+BBto|JP;>5Ey9eY+U<a#mJ
zE4f~^mY2|8mMUZ1%ch5HRzMxkXkNps^!d0CdavVKhI?&!E7#k(Rw^{2&^tK)TvegE
z(0jSw&-F*HKXZMM>%&~%=K3zzN4Y-E^(AQJ`UDfOrTXWr0&Hq9{4Dpm6KrReFO2{H
zgR6Fwm-H2*{@NJwjrB*M$npDJKjiu)*RLixl=;V8KUoJ7zn`rU7tvi2&oiqR+;66h
zznl97$X~hs#%~u&3jLGoU+xzE13jPzO6&tqF+sO;b&Mwr!5KCRFR7qVSa_p`OHtwX
zc33hqias1>P7Ci&TZQt%dxOk|Gz))jpFW^UV^R130W(WjXYUFPC^Su>-a<nPO<QQX
zLbDc{t<b<iJ=S@aLem!-RCukP$y#P8yspkz_;?C3cqd@aTzHSlqd@BD5@t1fp*af8
zU1**{a{_j_8*F{}ss>ZfRrpOF2!RR^Lrdo^e1MqG=<=Zo&tGVPLW>t#qR@hc7AiEX
z&?1Ev2ECy^P{OpK1`|h$;JT?G2rOD?G5XkE3YSY3TB^`;g@zYey3jI41-!yXG0U>X
zC>RJ<%Nq_1S+URx)(t7Zd47<;a-mfU?N@03LL&?H7234WW`#x-8eM3uLTeXVwa{vX
z)+jXAhC|otFxFT!rqJESA08r)LoS9nIE*(0Q2PmnGy22V+tw+xZlU!Gt#93U*MJ`c
zg2@JjCUSSM+py3^HWv6Gzp>Tlus)l>d^^^%d7&)|?Nn&zLR-=S-6*s}p{-CkLu{ME
z@9goE<i9o?5irHJg|;ia|AZAl<}fhi!!fjI$3l|~&+gq_7>+0l?OkX$BbniQ6x!X;
zrjA#n+|w9K#CgKL60?s%*w^|42a*pcbYP(~3Y}T#AT+tqQH72!bV#8?3msADNW%x8
zaF{_x0}nTt{!Ib%{N2-u#}qoY(20dkvTny&c|xJ%*$OayV>(bmTTU)?N}<zGE$2=(
zOrR7+f|(!;;isD&LHJpP&MtIup-T##Q|R167Zkd%@Fz3bj^N?fdB(c)`^jM}vs_e6
zT{hxLhT?S#T~_FF!v~mGSZDZ2XB72HyTp{PDKr_Kue3y^YYSahXx~!%mAbyr4VY)C
zfu(LNbW@=Z3w>1R=0dj=db-dvg>Ef$TcP_vtkCU+?kIE@Du>}r@LPp<+SKS9A||WE
zeD1MHF~EEKW&J>*2Max3=!rrP6?(YPV@4WCK4QZkMQ}sCH^x(SRb}N)=gC4(87P7U
ztm8p8i&NC^*+S11dcDvag`O|;LZO$j?m{nOKCJgmyIwLsz@s9jc(s_CDd8))e68>q
z2$eSry;bO4Ts_RUSEb%AG|PDRPT_MTn8rRQsSBfU(eD@fpzz_3fk@%wLZ9F>3;j{(
z(?Xx2Gljk>^tplhqR{`$ZFU6#Prfu)jJ&=w4+)LmqI<pWheAIVel_|X*2Ml#zoYo6
z(9eZ_H7#P)FXkti8a^=gH)9LjK7pP8LVp#COC_cL#`za&7wQ!L{nLL7|In6EQw%tJ
zH7KDgeR9$$6_ozNZ2*TH0u!@`rJ~Y%auydTKaadw#iymRQbnn<RMW=Np;h|Gg1qw5
z`?1=hSXFv94k$HE>3w)z`X}#n<~MCQ)mef3`myUNHGQd(rTR(@Dm6o?1xhVgYQ|DC
zl^R@Xu2M6Xnx)iirDiWRYw2H<=&s7w;Qi=%d>%DN=>yZ8hA>Z0cn|<BbC;T@)O@9S
zOU-My=)*odXLz^^CRio!;tfIb+5ai0t{oOCwJ=kZS_+1g8dhr2Qj3*Zr1Xgjqd=Q^
znRM~eCu!ZNO8XL}cqIo8EM01uQp=SZUV3-BZ0R>$yQ+wkd4jxrsg+8ND7Av|e8tlH
z4aCP-ek+&yd}jZ80`*mldxX4ErAEWvQd^Z;6--L4UuuI=tCt#6YC@^CO07|9Y^gQr
z*6YTZEWm0!v>V#g@e;WuA#0a@H;fp%ZmD%_cBTM<^$Z^fr1OTQHY&AAsZC9kNOR*-
zaGR4S6U(VPV4E3NF^Vm0y3MU*ZvpmhS^DS?sIBQ!YEr44N^MhW+fv&xy!6k8x~#+4
zcYu@jLJDfUBmT!$B@ExW)Gnp=D79y)T}yF9WOthpcI^fP`$Sk5+r3Kdjl$RiI6}Za
z1_UvYD<ZZ1OC3<^^-^z?I<VA1rLHb@4LVcmkWwcDs??#S4l8w3siR9BZhSbR)RE}h
zaL*_N4II`l@Zp$J$Cf&-)bYj{{4??;H#?ye>+6$B|Cs5-(&tXRgaQ?yfhbQcby}&5
zxLfM<QfDx>)On@O1Ro9x@~yVSv;C}6XO}vMc5~X4KsdkjkGd{2+R1G$unMz~7<2a$
z6s*+crLI6^oPII;Vrv%z2O$293i;2KrLHozbUohWQrDKcuhjjeuEPXM-CF9lQa9lI
zOWjoJ=2CcIWQ5gB*XI{*w-{Ss2y3ySocu?NO5IiJZhXafui>BYp%ufeE7^NW-D}98
zTEt((3MLPfda%?prJgPIP^pJYJyGh(QjZuj0sffT<D;ec*a*4b<A(F~_SGFCJM$uf
zr%FAIa@uN+lQ7SfdcM@FrCzhnFO+)Oyu^!!%+d?Emv9AGmRbEP1Uq}`0US``PzREI
zv(#HCSmi%n`F5#yP{>lhlzO++d!;_ZBul+t>I00W)F%eE`?UANQXd&x5HZdZ4LP8P
z|AwYdOL5K+Y`-Y=zf#|p`mWTMhBJ*{TjeYGK=?3c^^MsJ{P`a1uto7trGCKTtlht|
zZK6cC*)#dI)NiHQHt+9dbpMq47xgRkXQ{u8fqz>&o4s%z8(}!WsZ1$-dQU2dZgdO+
zOn|YCN<pQWD$QIetQ1u$DwUPuN=c=xQnT^_BCY&7j<GNwRcuv0M({)8+|4WRoNNB=
zW2L&%z)C%p22|dNJOY)E6w_2<o0QAxY%K34z&B(uedWKGJA*Y2s>A_QI5T4<W?}1w
zDP{pqrFkpOS829Nvsap<(wvp|{1`sD8JjtSZ8(u`?n-l6or&JHoME0y3tCpzTWLt8
zg(0W%-)5P=vQrb47O?(c2tEr{-gT2RKnutZtGugU6pHx%o0V)VP+!c3K+cktma6o7
zr9UbyU1^z0Cs#V9(z2D7tF&FE?JEthw0x!UmDa4ZLZuZejjpt6rIjj;sI+pWRg4zc
z$PbDrM^<9}1%Z8)PYGbcsLDSrCAVCy((0AQRvHJZC%7?&366+SYgoPOhuM>a5aP~+
zN^4cx9AYc2U1^<48&%radaeruHh(IuXQV+FGj3qFfVQFCC4rw<`M|xYslg^zf=~C^
z*=E)UzHM3QKS-IemA0a8D>b^IwA8mj!A5zPLY>BKO&>@PcBr%?f`<G`lc2QH-j(*L
zv~#6hD(z8ePXo1UrQIukBzQMt0@Hyuy1_Goy(<5-y1P~dIJfq#w4Wh)VCDCY_6LZ4
z6XpN|)lJ@@ZtF?zkV=PI&*Lf`R_X9cM<d6PZqiEbh{`9}M**So%XZicaOfhe9Am=b
z@>l~%T6lb=6ATU+$aXwst8|j_5T?=X)JmsSdZf~$l}@j8My2a3-B9UFl(5p}m9D6C
zcBOMFT~z7fO6OKOukxpYap~t{bT-R{CLmlf++#D!YoIxKR!^5yx)j6=fi8702hVn8
zrK@0<wO?K78Wh`3%1t)hfOBo-PYBbQQQc$@w%l0hrb>5Jy1UZNm2RnYYo*)zf%73{
z43+?NJ9zT8ueIM{yh54)0m40%?uBWU9yas8uhIi1g8TdD<yD#ojT{b-fk0PF5hA>L
ztkUC^KB@F6;;!^$rI#wbT<NJwPgi=T(z9r<eP+3<OL!!V^tnpU8}Jt@pHQI;@aILF
z0+V^A(yNu;sPrZkd+PLBKPInR1yFF~tx6wM`j9AKL;>NQO7B*B&tS5P_<qGF;=OC4
z{HPzo$EJ`ZQ6w|O!OtpvUg_IP-&Oho_E!25wwv;!8;B3LkBZ_$;NI7jzNvh+fUH5_
z`$|7l`nA$;m42-JivTe5=Sn|SmPp%i&0lO@go|PmEU*YD!e;-h^jD<~YHe8SZ(JxI
zveuln{;f0xe_pGs)vnaR!`F&x@6TPWz$$#K84)yUpA4f^0K_!FhdyzwtX8vDQu~!G
zEotpNA$79)R_(Qs*>i(K4$Q5pR$XgQtr=<!s5MQk9=khj?bl5_L<Z;StOZsKto1+3
zbEdbJuIrnz)=af#wHEgLA#>*1KLVb`rY6cD0(4-uTC-ap)P{kBYt2<_`C2Q~n!DCK
zwHD@Xt$AzBS8M)S3s`4t2b_Cr4YAAGLL_>-VC^FmV7a@H(S<aJ)mo(1GPRZk&(Utt
zT8r0OqW0;>VzpmY!H^{l&Qi6OhH!%h1aGH1`m?pv5jW*>wT9b3$j67QSZk$PtJfM+
zYecP;YmKTky7q2!mD-<7=&Lod_D=*D%Z3#bk-V*1`=tsDryIZ3tUq5>TBFw3S`%um
z)i058wZ_+4v-aABSg`_<mhPyvjnZ`u+jR^Aq%q5SwGTAwqaGGzHmbF8tz&B)S8F1e
z*P29!TAS9|3<ykAYx7!L82MWn9E_1|?JcQWBXGc$y)QVhO|5NfZC7ji+8@<M^vp<Z
zxkEp~UEFrG%VqoA&b4-_bzrT7YVBHUw_1DG+Naj;wa>BlsI{jl150KyOvC}__o{Wq
ze>`vZt$nltll={i{Y-XDcYq;D(g-UKu60PQBWfK9N<-YCwGOWp+Tn-83<q!qCV2&C
zSB|Q6bgg4dd|h9`w`aM_T*ucs0mG?vL#-2QomA_xT9>06wN9yZL9GjGooe{pHO8H0
zJSXvBm3lhZ8hU41d6t!DTX~L^Nc>!@oM+|v{rYxMtzSmEOKNe>9QC-EiAH(Ha;bIe
zqIX5@Q=_YEU1N<`+Pqic9PE3)lWSdzf!Llc278^!9ou9qoV>BtO||Z-b$6|sYu!@o
zwpzE>y466DZ?NhCw+ndf3-0l`d;B)ZzcCFVVnO%Ry0_ND*8jd*_t$#R>aY|)gCHI-
zd`R<{{h``tHDoNfyGNMR^8CkZJyC1P>HH4NleM0LvD4_}Y4mihXCP{TCJ)fFwVuPK
z259*KdLE^!)f%9DfL^TiQmx-={a)*3^uN~Iwce@qYOU95y;18;BxUcagU{=R30jJD
zK#bp8)^ZZ5W3BgUy<h7CWIDv{##7P$w*^0}^>M9FOaniveR{xh3ETO!)@Md3yW+6o
z^IBh^d&XYweqZZLtAAzX*H(UG<+oOTXC)6e>CEp3yZq70pRD}Z%3rMf)k==_{$Vq=
zYjtY<S?e$Sf31H^zK98d{%akknCl=;;kqG{TmHNJ1JoGcV*$Y^7@%-~(gDf_c&{D}
zP;3><4HHWSc;8M1qekD*{N@1fE<$@Zp%|cYfaVyWIR~g3pn8C&AD}@4G{AsQGeFZ0
z@Jn4L;x`?jterZ3n-s2RfdBSj&G&x>XvP8mN7Y$C-%Tuk{C<!c)|=cLPp<w-DaBn{
z3e>Q+6o(dvhr7GGI}a`H?(XjH@Njq6|99s$@4WvxIeR9%v$Hd^GqaLSLRuv=1dZ%s
zOw8m}3d<R1?;|vfv1ZjpOL@8wMrpsOO1H|qRpzVGS7k_*VO8d?x=qwMt?p2(r4Mw>
zRdr`eG|XvrAO?n4-9Cx@MYr>ad7C@UUuA(Ri&a^?>gG8MR#~{pB2^YLJxHr=YG>hn
zQLEAm7fYB<#LrUJ;*yrix|TK^<$pV*vP_jxRd%ehQ<Y__ELUZNDjQZ=zRKt-ld7y*
zWlWW^Rp-JhRoy$P<Eo6WvO?93I~w{|G(i;Dr61+U23D@JinTSt(uq=_ZKd|2!Q?8d
zRav{rI#pJ$vPP9P4NV=Yy-le?;;S##s=C>c#2377mG!Dj5kK~PXR4`seXFGvv>KJ>
z^?{m=s%%_k%PLz{*+e*EtjZQuHZx3VUhzSuvU%0{h@QkLCTs4bVM03Dy2>_Hwlhpg
zDrUAdSVgic@vyz!?oee#`?l@QRd%UzQk9dd>{?~FDu-1$yvpuX_K>cs94HwlSN5#3
zca?pr>}6V#&K2I3?ptNQs@o}*fYPD(-@l69DNuw_=|NQvwdM}Co>J?FSoN`Xgj=^q
z$dIZWUFDdn8-leoI7%I7N7*%c9&1K&Le;%ZAW4s_a(tB&$5*s~74Z{|vRc%Wms6^o
zTIKvI)2f_S<@73NR5`QimNsfdmgcT1XH_}7$~jdR8^xpx2zn#TZ0|f{OzP4sNW^v4
zMd<}qF0OJ(l?%;mF0%g8cfa+9&ZXA6RzUI{$$puvPCu#9<X^<)q#m)y)m5&k@=ld^
zt6VE*6hBoSt#W;p8>-w{<*q6>R=KIl?M6*Z-fV2#TIH5f&ja-#IMbe5Q9KmR9fqv#
zySvIgvVki1_f(<(zf`9`99O7(pvr?)x7yNo1*N5jsyu9hOLo1FtYw9q>#-`2S9w7u
zTIC4^|0>TY)SH-3DgK*lXjvg0>QV>kD<v|1O_`pPS~U4l6ZU78m#Vy6<&7$DR(Yk$
ztLFPs;A_VD>*@=8uBVFfg{$owcj}tAjBQbVThYnpQSVjxPnBP*{8r`tDj!t&y2>|I
zKCJRll~1dDR^?->rO+hv{={I-J=AMYPOW@i<xA_SFHBNtOjA%b{gru~I``Wu-&Og=
zaK5j)uVDRH<)<n?n6{-5DM|}-VT$>mEmJ(pkrkJIukuHg{vHE7{;cwsg1pC!9)Bwi
z+YW8Tb5ZUeDa{rm`a6pwHQ3Rd$zx^>wH0?ZMn*EswsiV=)1TH2^cdtZhpKzb;<-bl
zvw7$%qqBN$bdUk`xSHK_BS_E7svb3!dUzhbH~lkTiV1o!A?K3Ffk)`MJr+^WD6E{s
zBlTF#V|9<rBllRsV@Z#~qv0{1$NU~mkCw*}k2yWso_mz@=D<qVqa#)=I%(MIGd5hP
z8CDtUF_*_Yo}1(gVVH-eaC3WZIj^uk+(Vc0C)+#n^LlOuE)f>+SkPl3-5M$NqpVu_
zx)$+R%tLFsMLlO=(xfsa{^Dh$OL;8qG1g<8#|V#+9?N<x=b`saw1ip4LmR)NJf|^L
zRKF}QxwP$Lsf=W_^^wL4g%{<I_gKMWC6AR2LC<cKxuU7P*GH>(O!S!KF~Ks`zgmz=
znX7tCwj6ON4XZh|wT8!<9@}|r@3EH0+8!HuZ0xa)$GXyk#|9qjdCqP%#7y;=;<-t(
zHV=C;N{4ca4Lx)sRAhTjx`|}**wSMw8HQ9{spt=4TS(!?uyp$`&+Tk$*pdf{&ekU2
zHbz;mV2ihHJr|cWIbY)S$_^eoiUE%UWt<*6d+a5RdF<k`tLN5YI!v{jsag`Li+A_j
zn7)Ul0`~OyrsJj-GJ}0Q_LHgDv}#|gBL1bl{Z09r5gjB!JdX4@%Ht5@_ArmbW!NQs
z?I-m5_XsPMZhIRYM|&J=IihxqA?rEIab`$z4ei{X=y8&i?6ZT<$sVV84D=b~bE;I~
z@wCS?9;bVp;c=bE^&V%+EIlsrxY*+?kF!0_^Els{ILCAEUMX~(Yix@Ltxcv0-wg5s
za{;k&q4}}|l!h;neR^D_@a}P$v3G^)+CX!;=T;5E5uGcApfjubQJqoiolv?~70dVF
zZt%F#<8F_8JZ|#1+2eMPJ3MZYy-ls$W_^9DaV3I!uBR``O7n6n@pGr=hPJz`b)BWx
zk(GNr?(=xm<1vr>Jswb(%~g3=vg;LKZ~BwChfHLRq;gLg#v^ib^RLG}x3&JH$5Te|
z2@fqp)caEVG(%R4&w4!P@wE&<(Z=Hij}JUP^mx(ZC68A<UNho4X8f}8tSYaV3(MN&
z8WQ1kLwLhV^@Hy>#i7S43jUtkd3eWC0q+{{o>BweFY{I9Bae?|%o4|ld}4~y#^9%R
zs~Mey`a<z=Y~@Q6t=C^)S-U!NAd~*q<2#Rv@BXLty~ht8zj^%b@uSC2<~Y6WvY$PE
z@%Ys$YVINCH6d3x(vj3ZB(EK-_{(#LVgB^o2&j&hynkC5{KuF%TRT5KGx{!K5Ad1E
zcTs54VEXwkG|g<OqHBN4S5D6n#PBRWv-&LIv!u^#KC}CDe7Zh!_zd<5d_te9kLOeK
zsr&f8dvvH#RsALL*Q`vR^XS`jvXICp_9=WCJ_E;95}(X>uMDKdfE1;sb>+T$HYC%M
z**AS!zMFB0^PbY$zWY+Hi1+yn@tIFN`^@Px)Msv=;U<FgHka>4fng@HM3apvoC=u7
zcPxq8yjG;g6ASn(=(C8=qP`1;3;AxAqN6ek`)<TkNR+M)(=R;qZFb-NZbnTn?oU6%
zzm(6?KI{0b>odY<q|Yio6MUBO8Rav^XRPEMQCZe!c_Y4@?*<^*xzf?bfD|Q>$N7x+
zonNeE{IB4%q5<MltA4epMg7W#-+RtJ(Pxs+8a`|Ktm?a2)@oKN{K=+FeN02Hy}H3#
z4M`OeO6giYYa6CukzLPcif(<j@R=&!d^S-P-#szez-L3Bjil|~I!Mo#efR$<ksWN$
zgQP}vkRr)uQnhg_Rwc`p25;lDt?veit$Y{ox9)LbhvGDa+fJrpCyo^4ca)xeUiNv#
zXJ?;Xd@l33+-Fyx-F%LfbUwTL?BR2e&%r)>`t0SipU?h2d;9ET9j$h?doS_#HR-et
z6|79D`T*JFu*!kPmAq0)KE&rxpCf#Z^rs*5I7~fdUp6@0s>@C!S2($Hl+V#JY(@Su
zU)80$<9$x>ImhQ*pA&sfQndFu%|~W)vOoPHh@?KnchdmzAQL*>=S-h}%W?F7bITXm
zv&<gOHY3q&r02P6{XC!ZeJ=93*w~(C=>@(U6D60nDK0djL`oXg!a=L8OMEVsZ`#a9
zeSL*G%jZ6y`(?B~SNq)PbCb_CKG*tO?{kCCb-sJ~PJ^b{?&(TA%hY8~`m*cIKDWph
zeD3tQ)#o<TfQl4n<QHP&b}?@{*E80;WLNt5kI&tPrnCJL`CjXEO@SoZ13nM>Jn8e4
z&qF>BThSA8MkDg5-AWv(_c5QxrStjSBCFS@YD+qQ+UFUc=Y3u<WS!1^*4lc`I!J=c
zqV$6^neK~H@?@u$mlR>fxmV*~^?6MZtj6p$UiW#!=U1QKeBShVOMd6`h0ohQ@A$m$
z^MTL1W}j;JKi0&1ayMHei)Lj8HynSczL0*#Rz8w?^%U5QP%|HG`bj6B%I3{+)S+^p
zFMYmJg!lPD#K%>>_W4%Eqwk%TWc7IcJ985$O&So{A1zG%Y_0#Kiu!(_+4C<ZtX%JR
z1xbbU8Z*`S(_%}d=6=ffm(Slm|CqsunwU}gM)^{(h|f@)zCf6{M!y=f*4&`bzve=p
z++<*l0X4URmT?MM>7W|3)LbkTtbD!PD*QQW46ZR}jiEKFHM|;8jkx9<&970bQLnjZ
zrcMcrzN+_*K!i2t9bzdFP@`R=QzNU9*J#$9v#6-3xp_jP=0*XvrIAj%va-)s&COxt
z0)o}o-5PyHycZ#d)ZFfq;JIoHt1*9#1&r;vYYeY3Pt8#f5A)XCEK!Se-OeXIZT{1v
zxnPY&YAkA)3)NWI0Er+>O`H@E<Q?j@#cjuO2}_r>bSX=hwsb^|ku{d7F{;M$mb0ue
zDM6%R@xPpLrQ6Xp##m8r?XPd@j;k@g#tJo7lyYLSn3Za*T;rC2TLV_9F`>rgb*`v0
zvBsntU)1=r#;P?Y*Eqe#88ud`v3iZ2YwS{EjT&p#*to_f(uQ_^YOGgdN{zK^tW$Gm
zme#d=8M6kX<MsTv#`>1CQO#|?%at~;+YK!pZr?EzvW`@3T4OWyb&YMTXmd$XV~d&_
zrsaJKK3j^1S=|{ViMf@?>hqrZJ8+HdYV25JryASKc+4_IaIg*n)!Z~d$l4dxDp(V5
z>1x*+yVW>SWNYkRV-J~VjRR}!S!1sn`<dz#CHAhdkHHEua?gEB*u4c{>`6KWfrDxs
zY(<Be?1z|rszq%L9cr-5RaSbqRXIWeYHlA_j;?V`jgxAeET^bB$3L#d@sdajVSO(}
zT{G5wU`HZL!zT*CmeQxxIMwK!W>xflu}n?~PuMxJGnHB6!5R<MIIG6lHLk01eT{Q!
zoLl3f8W$Ts=cyNJOfw4NQ~h;8$@7IKh=kRy;3YLKt#L(-D{EXPw)OQ4&CG51yS&6#
zU2PLxCHJXujn%zY{;S!$z17}};WyN{vBsS>?y7N9jhk!SR^xUFX!yN2e5=7?M&2h2
zxx+kENA)x<myam_?i%;jxUa@NC8nM@+;0jO1<lHY^MDM%ez^Q_jYn#{rhr`I(Hf7{
zc&^6tH6E|=M2)9wJY(urw?1hu^OS`JohwsYy;;z+H8&utFJyHu)OfMRD>YuN@lx5k
z_<Y%5d9mcx<5YElF0t`OjW=t2RO90sZ`F9a#(OeCxn59tr{?xXG;LFty=x&tGbr7@
zZ=^o3Mn&O6NorC{v`?()Gb!Bq>r=Z`EE1aHhK5uDU)A`!##(jOuJcWeZx!_F6m`C<
z@qLYfbq3Y>p~jDj;WhrQ@l%bTYy2)H8?|3#gjwY`gMY2LM}CSJ@=8&bTz^`-@;I5j
z^z)A*Pn{X-%v5)CFxf427X+k)8S2x&{USZgT&I8C8MB74e)Z{F91?0kefsolmO8Tv
zu2ZWsTb<eKRO@(k_XKC$9IhYdsJq8EgGJNM;p^7}yXuXGq3->idfo9B)rso_bvM3*
zmZMDV7An<VWl|@tqn}MEv}SduPXXGxY}9Gi8ChqUI;}cwNl|CsI-NS*I&;<;T6Z4W
zS9dF1MUo-)>E~zktq)O_{m-R1sXrIgnY-?Sy!g>LGQ94Vcmn2=HtH;7{HVueRNCZO
zpw5DIr#)GVgj%?czHqXL;Ye?b)}6~NR%dbJa|uhAv~(#;m$r0-rFzsQSw_`aw$8XZ
z<BiC2b(XI)y3W~mx!+1^OxLm7F?GgDMq9E;pK5)DIxE&$sm{uEmYY~{M@=FpqZB9x
zG=p8mB$}X6z?479()qOuRA;jFvf$O~tX{%v)LGNuUYJ^^&boCDuX9A5_3BKivs<0r
z>r9m;)Y+=e)^#?hvtgah#de*I>TE2vNa1xhF+J;av4W5EFU9JeaW&U_U1bY#9#poh
zyLc#j5RObsYt?P)Y+GliIy<XFEAHFo+lfw{9qMkNm+kFn`jL!1&8r7@sk3X{&5?Rh
zy*CQ)QD@IO2iG~I&R%u)uCrgA{p;)_QaYcxo%{I4zNQ>ea8>N&*a3A8th=WG;`1Q0
zb{T+%m_zH%&6RnWF)ViwtS!nT>l`J<>ioOT(RH_YIj+v}b&fIkSW7jfRKBhg>YQBX
z6xpGPaFVsIv23trN_Ds4dAjAFX6;HRVocW=mZ{ivmW-j!g>^2HuyxL@GtG(=U1gK!
z$vbQV=X_I?e(fO}xIltiV7XWhTj$a`mzi_*DC>7i!qGfRK}q6VS?4NwZoupTSJ%0w
z&O3G9t#fUi>*_pP=eau9*SVq2BXu6Fb7P&G>fBl9t~xi@xka8X<<z;=j9<$H`IokR
zZZq%GbW6(twW}5t<rHM@u5(YFdrbsQ1@EhKf1QUE?zXKwV3|UGu&()-3)+IUwfL}U
zM&rK5vd7FypRn|COV6;m;*)irQWuY@JY9F^%ym-z8MAqDqR&}BU+0B7uN(f0mcCr)
z6$4(fRMz;a0aD0ob+>ZwIf58|!}8xW1-@k*zHO<Pk@db;=RfL1h2=W$8|Fuf2?l&%
z>4(<EBKwKmeqQGb13s0J7@(q~%<#UH5-dkEfv@UXb-JLWCbZr9t=zLy`OZq^3)(>Y
zvCdC*{;u<nW&T{}Hv@jD^Q+9V;$9||2m*eu>ma2Ivzodn{j<(rMp@xYblgGJfI)#n
zm?2=sfSCej4)}A7GZI;dI-+0T2x=NLAfSKX#t4NVS*EHC4BQFf!8!#RFl#V<98pF2
z?;HVx1GWy>MmPapz^H&_1N?xRFazcds0RcASwJ2T21Le28n}oZ2kzXX+Lik!f%_tv
zT2YIdTNVM0K$Am;1~dcLSyEIxaN)fbxB)_bAtpNkUAyhGbcm(;<*pFs5<$KBWz7u>
z+*(G)rcVl}*6_fMS(+8hCrJYq4OlE-fk3}LVIkM3dr~YkUE)prENny;3EZ?wCc1dQ
z5&=sGj0l`33Ry$^k^xHv?h%9VHI*7^I@E+@+&K3Ol4YbQsdTQ&askT+tR1jU!03Q6
z0h0n&4Hz3RE?}jAl>-+x$2;cTA5mAZrp385;1-oS_Gy$AvL+hM34t4V6~}rj)5(F>
z@~j!KmilFw+m~KFaQnb(1a3c5<B_CRywby2aW3iB4OmYI5-ng#z|=sqbT+WMJ=rxN
zZfF$r3}xehjf7wu`zqa}XD4$xZEr3<1GWg*(lRyK(C%MP6<VckWtpld&1@U6UBIaU
zr>Qpsb_h5y;GlpV)hPjc2J98EbHFYEdzkD!Hg*lzEpVs1MMTZ*9=I<m2#|Ue2lfuw
zCt$z8g*!F6Z@@GejGjf>@Ame$ZaToIsZ^ok;DAE{ZI|iqlg=p)4LBm;NJBd;aDTo&
z+{DyuL8V6-&M{JgUI7l=i6&(pYY4JQ`N#<}=75s}P6^xtvXcV$yB|&Vv^}EfnR-F9
zU)7awo*r;Uz~uo~1e__43pg*(BFhmxD{u#F&J8#_aGO!*n5nB<HAm`cV49PTivun(
zF*U2%e%s20*83Nksms7FRo~f%k3>){US^av+*}!ORlxNDH(1WqfzDt!(-qn^fje$@
ztvQZ%<P?IGDa*ex;HH3^OJftVroJjVYJBCkfZOHf5z9r~5pbuRE9AJ4y8`YGXoqw{
z?g_Xz;M;)jL^<I8fENN@40s^m!GNa%o(^~@;9=+5JQ?tanf+txh)U&AGi-IVx>%e%
zZaixo*YB}(+tY?Pc_!d_D|$BIIRo@jBjpQIZ%+$&NumY38}MGBFDvScDEbB|Z<%es
zX5zmtJJGLm+{TFO0$sAtw++?-2I*5ed`AYkqMJ1SM<!=Q9|e36xSbHq!E_)>e10gh
zR`+9tJNuvVCjp-t@@FOG&jY?N_{%cqD+9i^^czd{7Wwx9KLpGXGC1VNfS(k)LuLs1
zIpCLozXJYNSP1ydr1&%7cLl&<l|N(^_L#NDvmUXj)5Vw!Shn<!;_xK*dTb?hJ16MZ
z@F6pW3<{Ygbb`+uqMeNaYE<+8(9Mne8|L+<lYxdKd1nooEp)4U?LyBUx;UV?-SZJe
zm1>9=l7?g<en>4O42eSOp&MB=lL<oihMJnwEKwEJx%ZBAw{hq^E3wu^IS(m98X?Wl
zeXdz`dzWCv-d5<21go3GYB!`WWUY|3LxzOR8M0i+@*zV*<_cLnWQmYrA#;Z;8oFSp
znZxkVZTm|(8gS>a7U#8eK1=7fbOB2jv~(d$7q)Z}OZCyn#Y%;U`6WY^3Rya2MCjgi
z5@V87`QmwG$f%HILzW5Mu+<xyg(G2gNeQDvXV2p$X2_V3v7!6^r|Y<&GENNJv)~m&
zRti}yWc84ht=$PB6V*ostLxR)q|gnBA~iX5Tdb=}c3a(OAd{GCS3RX`jgU31mQ<%E
z)(KfRWZRJKq|%TnA)Bi-WU6{LWaE%cLN+jbHL+pnh7Z-+NF8d#wb<+}Mm9B^%`6o^
z5^al+Ev?hH4&CZZqt8~Mi_AR@Y!jlOEt(pewh!4M<iL=FLUs(<DP*sZy^Yk)A-jgt
zW7ICDc@f_&bR+EUA$x>uqxV{7s_ZFk+*x@*&m#5x&yamX_ZGkbp&JwTGxhEtx{#tv
zlL1YudK2k`Lk<Z!QpOx|s3Ggj%;9Fzhgs|Lnj@^b_`KT&-=jk}ozRIU33!ZQDl#7*
zaze<PA#bVoLrx00SA7w3a>ywmmxf#xa%#wFA?JpiX9Q0VIV0puYh{1^kyGDtk+Y1g
zoE>tOA?RV5Bt6IaR0gk(J3nNa1P{4LYE-1HxQA$BOpiz9N4-g`UQW3<<dV=m{!@{r
z9G8b&5pqMwjn>wcAy>(%OO<MgbWO;0M(tYDz`vGt<LULG+fvZjEd|~ba&yS-A$Nq_
zVjX&Gh>r2g#$;@_8CkU@Ztqm^x1#s;15=aY9&>78iW6x}@!|fE2ST0>c_!q+kcSNI
zF(dM@aV46f_K4*?YGyWiLgn$0Cqg&pd@@9P8c&7pIh2B!`b(DZtPy!$Jcm4Iu$GFV
z^P&-XCFE7}%9lc3Ho4?nYT`9{rT%MQ{xjnBkT*;Nnj*?i-wt_45iFt>@ova_A^)f}
z;y)qphkO<Cb;t)HABKDu@_EQdAs>f)BD=MHa&3ZXekDs&$9*b<-k_;pKq{<_a4z#@
z$Qrm=x7_fXkZ(hN3HdeTyO8fKI{jqK|6oBwGU|VPKgvOD(?*^9v%>74O0Z7lw~*gM
z{tEd!<PX#KpXQ|MIQ57$uMt6Nm%P1{h#4a7u`noN#)z3BW{&6=x%e+;+_R)%?yHHK
zXZDZW+;~9bqDqhdSt4eQm_1^S$bGGDwg|0XG;L5QP(y<wHyTRqIxeWR8sQn)6)n)!
zBZ7!IBZfwV5m7`Vq8SlKBoTQ;5xJoxjoc=lx=(NxITz4aAZon@j$%bCq8-tvrmeIS
zIY$tCU8^n|Q)JdGMO9?ml47oiVG#>NEEq9&#PEoDBj$^kCvs13^}tKlU=vV86tw4$
z+$uwKhUl{o5er8w6ER9m+LtjFQN@0hMXfDqY_W*Nr9iy}Y^i`HBbF-Rr41MnF|y3j
zpC)=!Q`J>l%SVikcp>7&h%pgkBaVzXDq>v3_=s&Iwu@LHV#SDcBi4&pDPrY_NfE0?
ztP;6VL)V1Jg+~F}o|+iBzSv4bK*VYhYesIrLSvAol&f1`sNFTJL)BAjMeeWbdYNc#
z6K9=>-OOC4L`;p?B4SJBM{E$Wal|GO8%Ayf7X_svyOESLwxZ9fY+6#@JYqA0wU8H@
zyTq#f<#Vfut*yHF)c=&XF*HTj-X^dzw~yE}Vy}oDB6f_}DPre{UB!}N?qaEyiW+)E
zcK3)qqUoC<y(bYpBiuV;pNIn^4l?|GBle5f-(XGG)!YFlvYOK+GgEqS#32!fnyJg$
z<(NIr4~sZF;)uw3?qD-%h5e%=j)|BSaY4kfGQ5aWB2E>}vM)}GI3eOhGofB93ehJU
z1KK0iuzp&^=@I8doNJk9M4TzL^tcTwXBi*{de2qQj@%<KnW9LYXGP~*Lz>(7_`ERU
zqKMlfZjZP);*yAKBCd_NG~zPT_Eiy=Tg5A_q9|Wsw~}4(6Z^XKYU_O|_PU7cBW{Yg
zIdTt7Z_upX>`DyW80m*`mDNW&jV(8^a*I3&ZWZ(Pu}7KQ9T9g%JQ(p%#9a}0N8BIr
zfQ-=ec~8W>vN~&8fl&cgD%GM`qp-rS&J3%$ha(<|cq-!Qh(`_ciO3D&k3~Fg9O`Ei
zI>sPo#PgGepstZhpNV)j;yJVY-cb`F2<>_6QvokUysSVMGjq%<5wAvk6Y*`tYZ0$U
zd=&9<#2XQBM!cu+9`TkDf7>+H+fNq3cP#T=vv~!j_ai<qgb(GjHacsqCpYYkJD*t5
zXEGiGKDAU{^Mw)l(r%?m_3~Gi^R=bw0!j2;#P^2qr=>qc{8HloD3jAKS|WZn&2Q1K
zGTXM5Un72t+|pi5{%)88{!kBU0Gd$wE8=g<{3oIkL+sY1a$a3(Zid*+hZWvujNMZ?
zji>!$`o~mbyqE#;^awLc%)k;J6gwWoyslYeW{a8KisrCXr=yiWICh4iNxpBHfu%J|
z>y~QgP)vp~QA}((s+Abfdo-prk11l_OZiVqBc>U1PQtkft(bPq>oIS{bYi+O`^Ov*
z(-$)&W{sFNW9Ez*8nbN7a*{V@Sj@sPi^R+wGhE2B>ez*{d1B^O{sgzVC)qV(&KJ8V
zF_TV##?JT`j9JJuBW?%VUels6i^VJ+vqbC$M;&YszUJ^t#w-=Py@(MpxtZV6v6E39
zs&{rq#w=r{BBEAC#cp1z!D9KC(J>QZCdQ00{P8g>#B4mdGB$ROKh9FEE>{%u`uUgP
ztQ5NuSraNz6V58eiQq{wtH!Jrv$|vq+{Wx=6IMkt+OL9o(ObjiS}|+KY^C0hStr&j
zLTnJTVa$3`T~L`4GgZpBV5rZktRK5mWRj&P&PHM{W^-{8vx(S?-L|<loi>Y|$q7gL
z6nly=Tf}a*?^Zf`1l-ex9k<&iX4{xuV|I(#E@u0f9b$Gg1g%rFX4eA_k=n^}c8T4e
zfOa-LXw2#buH9qyh}kP<@7Vo3LJy4gjM2<cV~wT_GHFc<_lemzX200Y55<NQE}D8q
zc3{jwG1tXhA9HZbAu(smv|<j8IV|Rsm{Vg8k2xadn3!XYha+Q-HsGk(o$e4Fb?f|k
zm^CBE#cm;dl9}%DQbp_*;2IWBG)%$5S09~hRwU6*i#a{!3^|Bw(tZ=KP7!<h$f0;1
zsBQC@vxIEBTN>2PjX6&=V=j$3KW3U#Dv4z3_N8cPTUIK5F0!0nA6;zbA>+I(=5nzS
zbG4a)O0{WoMa-4fQ!@CTGKG0f%w01&bG_DzG~>D<=Ej(ZV;+gQDdy&wdqp<pmY7>(
z?i7B^Z85jYx$GIYwg;tQ`OzKLx;jFkK>N3n?ru}vJw{nU=Kh!mWKl5>#cphs8r^hj
zM(34sB~4UR<<XeOVxEtAA?ERzCt{w7dDdL=$(W~&pejBUyAO#-y}BfYCWp^CV|E|;
zmv?B}?ZudvVqR9*x4KfATG5NH`dIg?iY?<S+7*AzsL9Ty#y4Z$idiyYsf4#<-cj63
z7?kj?kYj$1`6cE*a%6EH^F_=DF&|p>Ph^TSxNq%#BwNz=KVvuV(lDXn=~IQNiIvYR
zBx<=KC4U+7Rm`_B-x*iR`C2mS{Ev~6Eb_tc<;%8GmJR$6^JC0Uv0Hd*YfBRe&Hn?v
zj34uxB1r-XzsLL$^LNZYF@IWc6Ing?l$QQ7+tV1W)srZzAs6`*W=xnlp<lvGiQ5cO
zsk%%>>O}4SX^|pM`X>xX+^dUHuL#bPFl$0Lp)X;!gxM34gfwA}guw|xLYPoZ@Dl2Y
z^L;;|mbhRgztc{;D5%G!=iV@(!CD97qr}a_<HQ~uTTzyfCo~e8Mx+om9Wk2U@gp``
ziThQ$o-=k5+KJn6bH6>(U}~>54M~_YVg7^#5{4$sl`uSEo`hkE)3BUH^Om`-mbQO2
zbremR#J%Gx^Crw^Jcvn|(1HmIB`lh-Si-_ml)Z2*WvW{jN!(XGbrM?@7f;+cvP3fd
zr+eC`mG+iS7?H4J!cGYz6P8I>D`D+~Q3=Z?tdy{F!g2}ACyY%Pm$>nCwA5%n+)=m~
zBYBO^cnPA1;|cm@&kCkSb)O=Gm=Tk!Buq$HEn)S9iHS4#RTEAaThZt<$&mH<V{+nj
zt|Hm_8i`x#9zMZ+AXH@6Ox*aT(sdHnP1rPHvxM~$rX*~fut~zyg!QeuOhT@$-2gSc
zLBfU!8>zcB`fDDpW4C6mirBJk8T{s|lCVX>mdW(lqfAR|%NVpjui<j5gsr7d?OGU<
z+giGvrLvRl4cI|Fo4Y||=Y(An4of&ZVb_G+682T^C+wcEhs-izALCHOCDESh7x8Q(
z?6*VR6MRXh2ZCDC?w@c#!odlLm`XJssrwF0I4E(?gCvVW@u7)3FeaVo>V3QZh=d~(
zPEI%_;i!b8rQU=S6OK_W6;&$7ixU}Mf)-qASIz0^yZ}*?s!uYv(p+6?(Wcp{38y8T
zDT7Je7t~KT&d-qMZFE*$8KgQ|t3n;yI4j|7ljUB$+B~9iUc&haYox51GEGh)1*Y^%
zxiI0Pgx3;YPq;YYl7zbx?n$^b;j)BV6K+emJmHFjn-Xre9ufU3<#7pD8v|<h#)NCE
zt!pj4&eH2Gy}?q2aS5dvoyLn>67=qQKYQLS9V-8JkxjTW;jYB}J4u$XqCL6L^j=;m
z<55VzSKXTMWWrMk_a{7%@VNX@#DmI%=0T4pJe0VX{vMXnjE*#>=YYfZbVs!xlW3+@
zO|%q1bbL#$_jJND2`?nPn79XI&n9k6d@gZYtlFr5-Z)p!isnlu=__WmFDGt3pui}C
zuUfvkTV3!*!kY=-Bz&vjpx~eILBfX#?<n{uyeI#%Fr^Vn-Xyl=r<(TY@!9)EP}Dw3
z_&DLSgwJIy<13#eXk{(ppIR$&0WtGM;x>Pz^RJA(FU<$l`qze|d5em^OZYzF&xF4c
zen|K+;pc>36iCNbeoEZli120YnhX7^Krw&iH~DYP_MFY~f0vDE{%>5#%l=OIM*~F4
z45@prT1nkMAf!OKvn*d4lSDJ7&S+;!U96DPNyGh92Ba*QvQWyvltC$lCgCZwq|BO9
zPYF_HOPM{Tn&PGCj}LRC&fj&8MWhC&?k{hW*H5`xf1pm?#+_n_f~QW53n5I2Qqq*n
z8r8WM`DvWGK{H9+tU!}Sg(=11Jayx#a-{QSN-Jep%G@dKlupW!lsQwU8AX7uk<zTD
zFP;ANxuKG)pZjN!<eE!tn}>?daPgBef64+W^QIhS9~P78&L`#ANmn_nh7~m`GZVaU
z$|5P_Q&vb>G-a`rktxfhES|DN%F-z#Qa9MivzAP`J9n{Ysni8SQBZ#=m`i+Rj!IcJ
zWpv7zl;u+QE|@a)!qoD{xfoN=YKR}3x)VO4Cbq{JoiCK1vQo;bV%vIu<&=pjlk9et
zlnF*b)zzY=9MbT{<6WbZQ&vmac7e+3rdxH8sw>W{m9loqX(^|ttdp{C%I+z97`63M
zHcHvp;3+9nrNh(>onmH#bo&0!hSr=GJDa3znzD_WNZBl9^OP-9wvu|aNR-+QO)A|&
z6!vw}ZEZPvr%7JWn|y93ou}+(&Fzq~W6CaONIRu&+OV_X%Zb#w41Tcn;I65gD(G9d
zo7-G*&y>AVjy4K=r|gq*V9G&uyKl;VDf_2xvqFMvk)i?mfYdF4Md8|GD+i|>l5%*;
z5wi11?z3-)nynsYP00MTZaOlh*X~iK!{cq1tMr(ZW7ShB$ETcZ&7F{PqTy&tpe{Jc
zDr&HnAQC}w<CK(BO(Nx}yU$2DGv&6F+ojl)vr;Zixh&;u*}USsjLH-)&UKw@O`K=x
z`7%ZOI=B4g!jy|rE>7J9UTAtSAzfV}XSYLZI_7k_Rk<$Z`jjhDu1vYgd`c&;u916M
zsq9UcDqbt6HYMMXa%0LZDYvHFWcX@JrggL73sYm9Vw$W}mv;N_NVzlR*_7wRiM$}?
zp_GSH?n${<U72#fbS2lD$^9WwMy^3Yv*icmed8++rtZxeDOoysB;`?AOUjd}n@&Gw
z>e75(`h48<DI8hjQz_q1tUR5%HIxiYygg%>3L4L+ypZx*%Ig+MUQBr@<z;n^J*{}f
z(4;6?;Hw$}WFEGFdP5;A<(-swO+XF7Z^@+1ZQnLJG8n}fZC6TI4b$(Zd?0hp*(vA4
zl#fzQ$v8FR<CISn95O~_d@5s5%*>cI<MWg+QhrbQBjwAKuf%`K4=G=#e3SBR%6DdR
zQsz<mZnmw4WR3bY<Wvm-DL<wBn(~|Md;zyUk|Y0|@{7f7xxBhVmmK7}sc!P{XUbnG
zGiA)2@psBU3jP^0W>hj4rgUkUDGMZXlSZjsbrt9|qgH;ujQ-+wL}id6tBX}SAag^*
zz>M|mX?S~f_W{`1GG@=1D`Qy392tW%;*2Dtn&D-H8BvCxxn-S*)P!L3hkE9oE6E)K
z%hAj7`XjdNN;pUBQyUpsMxIfK;qBbN-ZWH+D}}N~=05qQBg)Op8AB^`@j+eRHlUNy
zHK5PZA(qZ*=}=3B9L!&tJ7ajpq8W>2%#$&1#zGkjXVZ7j=F6DhBwZkL1A#_Q@w{N>
z##8;%O;#rpT0}UuvXep<&sZX3>5LJXTiqz&FPXVXi0Uq7(&@DVX<L{hGqe}i>#1ck
zmdn^CW7~}7Ge&2uov}{Fn2fO*6EY@djLR6Gu|md*nG2*kQZAE|?CP(TGFFzEjdjag
zEqPWEWphSxJ1Jw;jMX#N$lRDHQ<<Di|NP5plF|Hk*THU*rU~$xCh1z1FGpBcotv?V
zZZoE2OwHIJV?z^GBCK!7>Nq{w*~l_Cwj8NK1G-WL^UX3g&)6bkODl5ooXo8&RU`!U
z<5tF%rXO1yg3MJ)+fJ&^I56X&j2$v|%-B6+59u>wXG7a9b6ZloWG;sHtZ~=O?X!uK
z-ng)5#$K|GjQz}RHHp%adGCyU%ub|yg$O-p-ruN6aH;D6lUm(zaK<4SM`s+9acIV2
z8HZ;aVJ#|HDb#3)QQa@!s~nlRxz<reQ;R9R?s}}cCgb>w6Ee5Jm#Yd{AES_woS5ls
zHrixR>nB;e+Sig*$U;ubI6b3ZPXC-UWLg=oWW1X3?~JoDuE@AD<Lr!cGA_=zB;(wS
z^D@rQm}Xq*IEsEgqSp$fJ^g0)f{Y6@E;6oqgS%SSAw4Pl(u~V8F1OB-327Kw*Veyc
z>8gyYGoH?PCgYlnYt>B|k7nq>nbzaind4t?G;dH0(E=gkri_~nzR%KIGHx~Cwv4+B
z5Zdh-ca-p*nf`BBQRdxc&OI6T8a)02m#^#oj0Y^|!4l`8jE75DXpd#?&4nj2p3HdM
z1d$DEhN(H8=G&UiJ*AkYUD<J!XEUD5cwVt3bDz7Ep7m`RDf~sbd8P7_Jam#9@yA-M
zds&8Ro8GTwyq@ueSj~7N<4xIB#s_LN<L!+16dt8{^WS%*sAb#)=3VPe#WWd%Y)OCy
zsSh)K!k16wiB|ftHL8g5iOkscresK3-S?*VpJ#5*N*(l7#@88tWc-=&O~$twKV<wU
zFBs!?Q@@ij>-+!a-Ks8I{V8+5EBZC#HyMnc|7LDm<`+xln7^Azt8?Y8+IW|+e<}E9
zkTXN>zQCZ?HP!#e;!-7d(fG%0D>LR6=yDfBW-?eSQ#owQhSUK$19L{@ESobZXO^61
zPAg~DoY``MoG@qhoH;}-r<%L9iR2nHvpcfl<!;ER<!(npZTY$LS=nJdcS|`H2`9>l
zbF!Q~M?-v)yErVpiTN~lVM>QaRJX{de@Cd1yRO$ZxVo>M)5%#VXW^V~PG8R4Im2^?
z<jk2fEO$|QsHLJXmvC(MsHymU_PU}L_+n<BocV;4GjHw|^73mjwt#WCVD82#4KzYi
zzf1p%<Sd%AWX@71npWl7#ab+9ans%sx!Z|a#g@t10AD(HL+!|%5k^^)E3vVRX?Wpr
zZtb~T&hj~H=d6=6I%iDIDmfE!#^#L6Sutm&+>OF&dVKCSYF3bP%6-n2bNBk8zBY6J
zREN;Ne`TU_a#qV(J!e(v#I_M6>||?EP3uJrDNRPZM$VeX>RLunM=5%mSvP0BoK2LO
zGbLwg?pAXfTCc4ymFgst-v7$o$gAt01u7efvhBKTEVb7h8=K{9p0l;OQu@i=`NJ)x
z-bqf_Ev&7z^({E-5h+>BY@4&4h)DK{&S6DXU7$?^_5KcquOVaSoL$tL1#=hdnzLKZ
zOF1t~r8#@#oS!o-XV09ya*ob9CTH)QeR2-TIW%YAoc(eR$~jo}BOA7D>H~5Y5TuX;
ztrNwDVD*$X5L%170p+lq!*h<vIWl(}`zjK*691^2Xc-5~<z>n9Yx$gWT+XREr{x?k
zJI^^e=M>YJM&1*1w^lmI^e>Z>YskfvBQ?qmPgn5IIV<Pv+-(S)nY(F{*17-Aryr$I
zLux`ktEtgBIp><@&oeiXs`Uu<f}9I;?#;O`=c1g8b8gGIU8b9Jsfl)ZKK;$g%cKgM
zx`=@*a<0s|%6j2ev-7Jh6kKEJwU%CI>Ge4`<lHE$&^MDU=O%-1E_0MG)hX3zE0*ra
zxii<|mwR&VGJ{cA)+NFHC*11*nm%dfuTXY>&I375<UE=4V9rB1kK{aR>QdL}df41t
z!A%3Gl<=5zYxD5OO)gP*D(C5(=M>gNC$LAr>WirItZ7@bHTB~QhAge>deI1qTXpv<
zIj<@t7R*@iTF&b^U*~+2^G42_IiJdx<sCV1s~>Yd$ayE{T`AudEbmz_$SY;5|H;{`
z{MC`V^+UPsxXQ;lA6dJ-zY)29H`TcSp7TY{mpNbMXb@MRQx|JSCu^6P$<#HDe5;_B
z^IOjEIo}(dUvhrU`61^=3rE_yQmvnIewO9W>>fp_PnDxVO5Q5qkDNbqDBLXcuiSlL
zO-=t}-Tim&;%aYhP$?X&SgKi~X4f+n%v=x^#0C8d`WI9Syn+FRi-)sVs@HY~TCG8a
z8#~mkvlh%&xG+0=!5qpgTyPK@GKOB@Qqz7xt)N~I6zJ>98j;l<@+N64EZodi^Fw*P
z7TQTcTF@=%E657+f@VRhpeS4z)TPs&YO7IjlNsJDQ!4GkeREhGc8nzjJ<TVF7`H<U
z<|>%8a8DLgOXG;pv?Z%aohC@b3+5>}rr_9uc?;$%*tlR5$x^UD!Nh_|1q&7|RIpUR
z(gh0_EK;yo!QzEGo4sh^#v=*R(}NaVBEE$2xumtO>7tY{qF`jfvIWa2c2(Sws$~it
zopKM^M-|+&vg3C7!bOSEg&Y3Fr?fi8D2y%K>Smm!;|o?Ork`?OQ6g6=D;dtpR=SF%
zLY`3Q_>ddjRxOxZux`P61*;XTUa&^Nn(7_<i<VfGGS@0xz|qg|)+t!qs431!D3ywb
zDFsu7U$8;pmgm|-6O%fVtnYOT*s!2?;9(;n*h>wYimQTs3-&A6T+|A-FW8}Ai-IjB
zTEVu3+r-n_TvoSL!PeHISY2vDWxK+?6{Xz_EvwbKBHoS#J4s^&yA|wQxJ}Dl3b%Ta
zw&m9{Ax%-9->kBG!JY+s73?9?vPqzHu4`|z!+i=jIQFV&9<{&ZRo@jHUT|Q+K?MgF
z98%bK_Qtud+G?J8sBxvGmUb*Pw^Zg4l2jTfINA(M8dCsKEYb{IVMh}iJy|%e;P`^u
z3T`hrq2R=ViwZ6-IH};|g0m%f!6^l&7MvkIWlMJ4MSD%B6`XD@YV6bGP){qgcKCPU
zCY)zkzGP96tm52)X$2QZZ~72~adN(;IvOO6X__Q{E|fRf1m+S6Rd7wgwFQ?ITwZWR
z!IknU`x}v_1bTpYRpDk7+7;}5QRix-rcc*iS8%=jtKjB>8;l1HWO`Rib#Ihh`s1OT
zs9<+{{Ip@e$`yL9SGeh%5bh|rv*4M6XAABsxVzxdg2!a%1@{&_RPeBzPLGCV8`}0U
z;`d7~`-6rkJXoOFmxdClU7qrYb)vdY*7$hA6Ndj};dX>1vPKiBMYF7@3ODpTZRt(p
zD$f->uc%(|dcg|?FBZI9@JfLuKf+fRzodX*RwO%oRq??Bkp`(_wf|r6X2DwpZ(Ed;
zuxd-OLY=PW6nx$(c(>$A@#_7859H4C>vxcRSn!e5GMqhz^Kro^(!<<5J2#)oZe<B=
zPHyvg!550IP5L+avT%o}|FTrTR|Q`i{EemGmigZq@O{A#WzLTV{8aF>0l$>_zpBUe
zrRaj+4G{cC!Jh_;zHa}P5)8T0VEzURG@#*ln4!Up4Q6UEbAzBk*q~p7{taerFk6EG
zh9k6r4bH&z{-6f4lyEO+_6BnpnrG=?ORN7M$G6OyrS*n;JzS)&IKC1!h#L%RFn5Eb
zLE50N!H@=7gWQnY4GIH#Z8aJ+?e<^w%B)*gTH@S>KT+#6=&G*He&>$QIU5W$%()uu
zN2PZuUx3o#RwQ^{1Li5YRndHgFJQq23pE(iU~Geh8!Td&y<gKV+F;7a%IF4*nJm+^
zCN*FQOP92CsRm0MFv3#dj5J`G2BQpE*3#uHUEb0SbN4-~rGm<4iu?`6H+ZGNs|{9Y
zuwsLkjDeLJtZcxU4OTH=tp;m1m|(Ejp4ebg39s5<vcapBIjc8V!{9Y7RdZ*}?i8|4
zgM%9!(qP>N>sis11{*Zku))*@yDnQ<zoZ}yY}8=m2HQ8-p}{5%Hf^wFgRL5D)?o7n
z|7x&>Aund1J=74dQAthQN@at7m8~0W(_q^M+eyHFE<Wqkk1vmL2>-?3vB6Fac5kpp
zgPj}fA_f}lCi?ancDcVWR~uPbYNY#WhdcSxU@!GrgZ&%q-C&;v`|7gR|4Xx1_kacm
z8gB<#kBh>d%Q^}YO4p$c4r_2)!;QR$H_#!~qZ%CD;0UX7q~(iGiK8*-m<A_X{;>^?
zYjAvn6B?XoIlZ&5m*thwBi%~jB<aLn$v?$PMd4J*qTi{6mD9zBWlA}E-mMQs{=30h
z4bE<Gj^#hv;M@l1HMq9Hbq&t9%!@6Z*5CpIE^O$PL#IGp7g>%t7ko*BOB-BfIhQxM
zvcXjiCJv}vVS>n0dcJUV!%f?+F*KEm)b$46E3^hTG`O+BO$}~taEIlK@+}P)Id5xl
ztC5lkiGpOjT{$=#zO%tyhJ1H}dn{Als`<G-{wxGhxWB;z4IVTcsY^KzHF(5sAC@op
z?j+C2dXhEBS%^v>Yw&o3CmKB2;3-3UzQNN5{A~s-oM#$5+u%9tSxL9c?2eNc8obzW
z8+U?r$sUxx+|a*NoR_`U;PnRYG<dhc8**p4UR-&*!JFof(#Bf`XuT${6#wt3Ma%iK
z!TSw9Xz)#gZyS8r;3H$^s|Fu8_@u#?cKd0A&l-H*;0yUzUJ?D#qbiba<R}LZmB0H=
zc6~ce>DN}J*D2pM_@Tj%mh-)(Qr%Ates1tfgI_I2Cu3DhF9j(5t-<dN{*dLEHncVR
z^$_QGD*ellh4XiVe;QPp?)#1EESeVoo6ZzxG+13TQ<Iqu7JI5Ppvk}{|7x*Ci$P6h
zX>x6o>zd5kWVR+_n~ZBRdy_euWKHrWgPT;FL`~u*UK77bVAN`s*2`98FltL_SmvlL
z<s?ng|H<ivrlLus$*?AKTT!z~yGf_%EUjg!>UNv-H5t-m&a(QnGO`J6sG%umuBLv#
z<m4LOWS%CAHCepLyiMk7vXE8mm8#18cDsP33;s{h!Uiv5>7pgIC5--vCL=9>NlTZq
zbm^uW>_m1MyItPWQI;-i>2ii3mU>N(Hd13s%Hx}?(B$wYM>JWn$x2POZn902m7A>6
zWTPe<8<7c3rW!EO(n*%CYN;qsHej_TtCu-zG+EQ&waT2eo2=7h-6rc<&Xh90XHJSI
z>z90PU>t5(a=1y8O`B|G_?ua}g{7O96#iv^R4PukENe+8%GtKbc1`wfvQLxko9xhJ
z4@2J3(p}3Ice2}^o9yyGq;|8?-7OV0X>U&}6}(s3%DzqZYjS9l!<y`GY#(I!2N<UK
zIj|(CS_d~d#3~BzaobBp`N$?mHMz==k8W~Ilk=LK-{jbm&WTNqE4e+s$q6L`qHvPo
zoZRG;CZ{$zt;xStYMG}uIity$1`AW|s;&Q~XE!;g$+;y<|1qwF*0YmoR_hW=FKBY1
z0T)?%v86q<OO30`nq1!G3d`>ab>;uyi1O7<uCW}!s(5{q8=537(iS&1xk>ZYCSNtV
zxyda}UTX5Pl-cCACXY0Ew8`yF?y&0jH@VY*drEEGWw&>m@<m+Ny_R#I<xJDZe+=_M
zOCM_TaG9?naq?J`$D2Ie<Qdb$6Qwp(`lMk#RpvZvWF_76O`bDY)q7ffp~;Ju)1&!H
zlUH@y<bBJ0t;yTg`s<dyVd<Mq-unNXsO~#f^sc4vS=yujL6c9KeA?tg%M|8E27GL(
z*ieozKeOgOFEhU|&i|vZ-{hMn16mAh@okgun*7=1uO{Cc{!dMQHsA+Kf3#H8ekt4f
z&2oM%_3*ph{!uco*8jGmN()*pX8uz$pr&VNxglWY7BjY7n3~CMl_NBz{p_~C)l%u8
z7PGXdwWu5NtStsxkuYa#F}r07p2KR1f|{-x>{;rU`9TT9Ey9)y$dT0*pz6JfS&O{I
zk}Z}p<f6sA1~ghUTeMoVTg=sBSc{HPP{koFx<*G7`pQh@&uJBhTH0%3?y_`vi9b)7
zGhd7O4RZl2TEyT5TP$S2!j{=%a#71!%+keMEKySEl`h?4M2kr+R&6oTaF%Z|+JI$R
zj56e9joNZ$MX^1m#aP2xrNuY{R<v}yr7Kt}`aLODYO%8AsG>3_SYJ#mag;f^#cFoD
zaf{VktkGg>i}hQqSxT{v0c%;hc1dboyIrsB^eH8KYIK^;{}|eamTqKekC{yj78{!y
zu$iTsmk3+7*s8_nExu^6b&G9UT-xHY7TdPiuEkL;j&8Aiiyc}VU{!W(u~Uov4c@uM
zE-m&pcvoX)4}*6zKE=}Rmf2Ino>sJ1$-GMUX|b<m?q_L_Tk)xJ?Z6fXwK&-FkF@j<
zOAod5uoj26IKto_an(}w-X-{$7N@p2%@B^Y7LRLje2Wt-=foDL7>B|<$#PC^x#vN;
z)g^+bTjsyTe2X&-KC_gl$K=_%Rh1U!SpK<|o@c2joNrY`XPQw{dSQ!;tW@yDEiN&&
z^hjOa;))iJw|Jt(l`XDnaf=vkadnGpTHIu$uC?^K7S~%vHF1Lp)uV8ul`2y$-uyrC
zZ7puM+xslN!_s?O+*$H@SBtw_++(D~SdW_M2)Mt+1BUisi-!$($g2NW+mEz()bby*
zv{(Jf7EiT!r^UN1o^J6>ix*qGWC+i;c+M#FT6x|w)z%Bvx`3C<oYxKQ6-!@j@meWz
zujw}||4mEZYVo!KJ)V`mXSW|KE%V<u-~&rPwDhC0Md5$a;?uI-&q|ek+2X4fbGI4Z
z=Ia*Uw4lulZ5NHdZSiYK`8xx?xAX@~f3)<c7C##x{9lZ?wn2Vt@w;XI(c;gtR1!%W
zf3^6#%=xFKrKW4BC+v&{4{lR!GgF(H?Y5t#vsl`{%>V-iTB?eJ+S6yzf@ihN+1kur
zmd;U@dTsnRtv2m8wX!sAQ#Uwh6Sj%kZb%Y`aak)VF_oE>aNee9)396NH%mYabPS%e
z#O$`|GkD1V;0SG~-Okl!m;q9k=*-h*-ZmSx*|^PoZRT&YLYoy0VSzSFwOP8&f^8OR
zv#@0@Zrm<nuxKvYX0a0PncNa~yJUO%oL`wE+AP~<xi%xM?lOij%HV0{1<M<<;Bf|w
zZZoFL8EZOG(Ri!XYhtA~E4Nv*&01|%X*0o!CYJ~k4G?dW+N@f_s<>K7b9HNajS_$D
zHtV!mx6OK%FHEULElx3n^-Bh(8qh1+pv{I>Dm3A5(q_{(2e&z-&1P*jZ?jXIo!k7Y
z%@%F8FS~V1tFo=7TeaER0P(qv0iwK}aoB4@ly|V(9W7NWyR_NWF!yV-n`Q20x4Rp>
zN1HuMmG-z&y0;<hW9hyn8~fX>+C8AnfhBy90cz#YHixx2!EO(4b3~itOPnLEp<~({
zWx&yvicXK=W7`~85>ciuQ9IFcdI+bqIkn9>b8_ySoYv;_Hh&CpK6pl(Go`c+|LX8>
zF=<u$I-G65ZEbE>tv2V{?RjmkZF60l^VNEr3oO$Sp>ko{?R;L;=HfP&w7Im+Rc)?r
zb6K0q+g#D+N^z*uGFmCyQ@?xcU#^>Ke3YpStXw1aKcKSCfXdN!dZ9=2`ZhPTxv|Yn
z)=+O>;%0+ywe%KC)p~Dl_Kr4pT280KU2X1elXskq_q4fJ^0xW2&3$d|Z}Xne+C0$a
z!8R|nd9lqyZ60p(Oq*xhJksXTHjlM=+^F?-TxU4GG9{|$Q%+A<rpP|o=BW~XTERgL
zg_Y+l=XpyP8&H`tN9B=0Zp?j2&Y}(fHm|jLxy>tW{foJxRqg3k`g)r;tje2~s_%OF
zs`!@Wyxry<1C;ZwbgQi-odRw1L7Q*deB0*3HXpV5s>J!Y%_nU>wOgIdcxGUwvtH%1
zvh?#dUzG5d)^R=Eek~Q*md<xp`b(Q%4fx*DAKLtAz)zNnlb_q}$jbEnpEkc+e*Z!G
zoQo4#n?HZG`MZtR!SC=-n@WfN9R_sJmKq&q>M(PM89K~p-SnjAYW0sQ{p_~4C8Zqg
zI}PkGsKaa>X74bIl`4N$Q8VocUZj6z4$B|hagQOCBeR!5Ry)otFVRzGD-FxK^$vl-
zA}-{pL);<hkXmLY$~w?8pmKOpnOm`F4u?}%QNz-vrOIp>(C)a6JKgH)T8`=p9@23;
z|8sU2+F`B^!#d1urIR}hH(<P_!knkWydCE2Fn@;yIxH%J9Tx1cP=|#(EF#AGJAza6
zbo-xwR@R|(dv)S-ZTojvqQlq@<2o!USnoAxNYWmDhqDv}^deY?5gkT$SjKXevvgEh
zx~u`4kFG3l!00l6jPz{P^`u*dJ)2HLnRF|3Sh3`Jr4B0_yo#k0ES+fSBuiJd^bC7e
zzM8?ScUYsNPYbeEhp8Rb@33}<bvmruVZ9DJ4ydd;u(J8U%Gd#w<p)--99Wss;r{-W
zq1N;U9X9N+Nrz24%(;JMqYfK)`1#Pv%~o1i+JFDbd@EO;SiQ1YhgU3T3v2iKA>1&8
zEjw)0Ve1atboii;5Bu1*!*(6s?BlIIw(qb*hY4LKcG<DRPQvN%VTYYN>>@TgJkVj+
z4!bEfb~vZQ?j82%a9W4cJM3v@c0`9GJM7hA?+*J|&H)_`G+<v@LWlj$9%PWZWEcl^
zIJm>%#-VZ!>2PR=!#eIc*OK-KNr2FL_<{u-)#11f$9Fio!!d@b%wvs$%tOe!PUvt_
zhm$SyL`zlo6j@QFa;n|-X#N*p6wa`G0cUCykPR5m!tY_8+u^(pw|2O#!}%Sib-1#_
zRfcmxhl@L0V%0A+elD_9#6|5=!@1l_FDsiCGgp*2SIb*F++=8~a&3p}JKSKH*OfTp
zK}9!OW{+o4zPZCK|C4jODfVuobB9&Dvn;)<q;rn}s(Y^$-B;#6*x{iL&v$sC!^0gO
zF(OZOc+`NN+8^uixZOU{;Yq95%kSyu>9Sj&>F{ia=gNk9rE2j-*;t3SI=s~3Wux;-
zhc}FkSFP@A2ET4a=X701t8TA}w@c!Z{T)Mix5InFw<^MU-vE_X+m(+xe5^RuCGGM_
zhfn1o9e(NXS%=R%{AATd{EH4>cl4tozO)>*^;Ox*w?<7kKXmx6#Q)v^we{ow7fm_8
zcKA&pz01HZzjydU!My82?w=k0vRaice;du7M5^*nsd@2Cml+KIzdbusmzle6)E1F`
zUHTiWTd8GGmsz@aU3{xDtEF=o!fah;{~tPoyVD;QS4%+DYK9PXsautxOK5;t($!-i
zHhdvxUGgrAby>Vi(WTL4SeLoGG>u57OV@x_*G2fYrK;6unF8h%P?8eD&{B%IN`8iS
zna7Y9EP0r>tUF(q`Ac{KD;0%>%AAF}EYfAsvR04tCAuuxWqg+vx-4awqq;2HWod&)
z7_zt;*<~4nC9EngSJE77!17&2cNtT1*uzn+asMNTYOPq-TFLTP?y^eBjF2aFS+&co
zeazO!<SwgqIjhUrT~_b1MwhL+Y~5u|qp(4j4ZEym@Y-G0F<{*;Q;phsU8Wcy*?XKQ
zUBBc_4Q<qAvyzjIyKG{}n_5m!Cz~7muafyKx@>7Uq9dByblJAcK3(?hvYlb>Zl&9I
z*+KE&a(3ymYnPo2R*O5Aq;@OmsG(k4dz3hPTG3vX?rm1#n(MNEmm|6yX=n#ndZ?ub
zb~&ia!KGY>{14^BO89WYR72w7s4mBKIljx$R^=GOkvPX1jv~MbT~6$BT9?zioK%uM
zrOU}Brih$s$UQxr(dA4l`mZd?|98pxIbF`}@^qJHx}4YL{4O_lxuwgrE*EsUy2~|2
z>OxB|?{ZO>i;dbPT`sfCOYK%P#api{udp1kaisxQm2D~KTB~wHm+LI^`m#tBZ?q!O
zxv3QD)-JboxxdQ;R&=|icXzp?%bkWJiSDu{dhOoR<zBm0{(WV>8hx<KLss{RE)QG&
zqn4_zN6NMyD{~$%S$fidrz~Fth5T%n=eqo8Ri5wiLYEJ^eAwm1E-!U?y~`V2UN(I3
z^IDfzy1Z&c#6ypQh^XkzE^l>tx66BFTW@!Hr))^bP8_>^-`dh`kAl*Vx_sQ_t1e$F
z{&)Gb%NJd~H0eGoDX5jtOEy$jP4`;=rpvcozPF<9EET4TTyqBeP-^3+E<bnqrOU5f
z?Q}yQzbW{4`LoMkC6226QMTBlFZTZK@=r-wWM}AO#y<M@xoAIAA2av4pxw`IdyGvN
zR!@QZ7-;!}ES;s#MP1eErL*@jM<2WNv1=cL`>6J@Y#+<@xnaobBkLpY!?)X7AN4*0
zBNAIGBB8Y#*{ujBcB}lfY^CU<(Z_s!%x^@RO8c0zk5(V;K01AL%PKudRkzRTih-eh
z%+<&6KISo;VI`)D<~C|-ao)0NW%h(xppOOnSfY<5jgD{@>SN(P7U^Tr|Dmv$Rb0H}
zv!{)v`dGS;kyi9yenymSEz`%SvN@Hi#pU}L-N&YVY}Ut^KF0R3ZXfIQF|LpCis4pq
zg+5m7V}ey&sieG$0V|i3)w-xn>|;{N;i`tvlW4U*R_|ktKGw9%bu3-WFxUS7{P%dC
z(#KSzykQ^f8?ZsykXq5D<~FkG8yl%jEbZ~Ic_07kV@E3$<`$aUTiq@D*sAaU_<HZC
zsj2UKIGf(9G^OKYG9^<oGntu31?h+gD4<eRP^?r%1uUQ_hzO_@JH<j53j(5of=W>l
z8(;ykAc_T0QLN8zXNUOV{p0(tHEXYZ&pr3tb8C`&lRLONglhs1hbh(YAT3?>y&Wli
zzkWt5_FADYxjuv&LRcKak`QhTVQdKVLYN=IxDdvNFg=7BA>0(g%^}<w!eo|CX>Si<
zQV6$(Fd>AAlH4ZrefIOcLyq}1K)Ej@nG(WXAxu^5H2HRSP#eC__XKq~GlY9Xm>t5L
z5bl$Z$!CRd{|R~d_UF=C2#-qsppf#1LwM-_Yx$AD@?$4hSRnqmaABa&<WGn{DLEZ`
zDuhJ=ryEN{SQf&oA-opC@(@-837-yOWe96RSR2AKAv_zx3rh7|P#e$72R0>bu2K}O
ztqus~FNUx#g!PiV6vE3&Naa_Q#fkMvz9ER+7{aCy-V5RV5MB@AjS$|E1sZ%agl*!R
zL)ap+RmkMbnwCl4lH~26ewb=|2=9ilBhd8o{XoIp^5jGDk3!ffvMbQ^ZGIdCKM6eC
zBMGzH8{|U%c?kOg`4=Kz1_}3v@C|1|6Jtyq2;tihx|uk~#CIVa<m_R>)uP|`oNP^0
zF!4hOKZfvA2!}#A#%Vl+!yz0Ad8^02h46C-zl88>2uDNS+e#Gr?=1aC_>#}>oHqhF
zefu+nzeD&Zgugg<)%TL{&ANZ(9@Wa3C=GF%08ErIQC80QmdCU;S~W4qxsc+YyHe3a
zB@+!zG%``yL=_YDOwWy~CaRgJWumr;>LzNKs3|#f=bF!d>oDYXOw?7>N#_67XDDZ0
z{+eEWInY2z`N<+pOf)rdig;t8Z?l<+<|fjTv@p@qL_)?}nK;!%#6;9Y$b@OaI>Ddt
z2^M@0V<zHKu>TLQl1h>i(kn+KBg_hYfAZqAd8UbiiK2-T6Q`MIBl+nj&M?v1^maG+
zV-hYZl8jN=|Es08CfZ5Ay|9CcjwU*p=xpL_NxGOg%S6}zUpw7R^e{2d#2^zrO`L1u
zd=nR#IL|~c6TMCJF}+U0OnICX9rm5^eW=#j;LBhan&@kypNak^1}NXN>wDi3@YPMe
zX6Y}cU1Z{7uHl%t%ETom2GgdAp(ciq7+z1il-afR-tc5enG1iHo4A7hc;`!d@7nn}
zUTxwU6QfLwHZjb^a1$d;jARiidG*7NK?_Xl8}YNgR<RT=ko<ZRH<*}gVv30yO^h`$
zNew#A#CQ|8nwVhXCKETCxaEYN;O9;w%w?j9+Z1*C|Ir8TP$k?cr2btZ(@flBVygJv
zLf__e@q10&Co;ptOcCGt`%TO;@q~#dP0Thi$HW3<J=eqoCLS^IsEG$nJY?eG|HIqI
zOw3c%{Qtw-h05-6A-#Rd#3B<<E4bLi5|L%<1524p&^pvyZeoQRh;MJQX1HR!Qpz28
z5Gb3wiPx;pOY(_{Pfe^c@q&rf?2RV2n%HJyt%(;+Y%uYviFMMXomWh}Wa4EOP;)gU
zK3OjXPPVU^*l6Mn6K_hg$;9hHTE=oF_b24dCbk4gXoSMADj07`vctrCCf+vjj)L2T
z?*_`$<nMhGADH;a#7>rair1+=l)`^r?NV^}34VUeA*`zSj5A4apR>orUK5|2*eCr1
zLeE1Hs(oqVD-&Ov*e?lRE%-)+`w?6rr{=f31eiEz;(HT+DC!3jKbrX2#4jd(GI7Yn
zVG~D8<R%+mR5o^1Fy?3!G^=PlTEV!rlJTpFqb7bgag23d!5CTDm{!5~O{RFh$L<P7
z<BCSlO2*2{UNQe<zpCNAu==-&f7o+4?Q>j&z59G4e7sRYVSY=GGGUYrqg)sb6<c0d
zBaE71R1mKiMkSHTVN?mDs(6crMzt`ihrNG8piPc~HvA86$K$o6z&bfeq_(h*ux|MH
zyQ%dQtS@Ae24QgffTU3vCrfxr7|lc)3!4O*O~cqLO)58+u!XRtuvHkR2AW(uHNyyp
zVM)?Hj1FN$!iXwZg{LU+{y&U(7<L$mFp^>9!zhH23L_mxCX8$tS5z{n*{_n}gmI@n
z#+(V`(5Xf)3^$B(^}_QE{-Z0u{0gHajMiba3FEXd?n@b`hjB(2tNCRI%f*jnxfsiT
zG3LcW4zvxUT^Kw}p8Ii&b$;3(JOxM{&+nWa!{`)7=P<g2aaI^Z!nibyu3?-V#sy(q
z7)G}+&Y=%soEJv-FrMjZ^a!J87@x{!Z+^0;t-ZPY+pjQshtVgD^I0e!Y0meeb!tSE
z+sdV-FY~k|zWg6Xzc2=caZwok!``2X3<zT&Yme)Ge4SFxbNg%?5C0G2k}w7{ueHVm
z9lpVx#M%5*ivNegkL<!28ph}_t_|aIR$v&z!WbULm0?^J#?@h5!)npi$rF4<TouUe
z$ahq?Bf=ON#^i~{sIa$pP(#N`Fw;KzX8*b{#<0JIF+Pmz!?+=g8^ahI#?;c%H}uW*
zUHqdizG=f3#d){JvWIbV7`IS4Zrs6*KdujOU4@@Y@w01g{)RCzjN5|V@<153i%$yU
z4z{)Uj39P$7*hg%m&jD%-NI?YdxX<j<nmtE;%}xT_p&pH+%KejRv5Fz=LC|uL8=GC
zcqojA1NkE&><`{l!|oBr{4k!i@SKGOVJr;eObcx-JRZgq9HbU1TX-^zr<Ceg7>mMK
z9L8ad_a$L04P$E<+rn5D#_}*;VCM{DMHo-hW*E;Y6*F4Nz7*u^cg5!wqywu?kaK{q
z31e*-Z-%isj2FXL7seZ5TvyL{DKO=`{WAM`*qck&3rRMF@oK<d6WJKXCXv^L%$I7+
z(RYA$wgf(qzZJ&YVSE<G9tqzGV|y6yvaN#)#}1ByK>xik-j~e}B>6Cqe<ZR~xJ$S@
zjE{rZPdFnP$J>!+_lEI#7+;3*RT%qx9ii`@@8{QH?3eIh7~hC6A*1*^5Jp9QvB(b0
zZ*|2<DE~f;AAD<^B}9G_9t!5kBVqg;OxM)^C5&ICa5PBuTNu9w+}}9<gEM&}<Igbu
z;`GkteQpGV@lU}26)6=O7Qml$%2+5XUM`T7w@^X6qHySJgPK(=?+U`EX>6gYcr^>v
zE!413Q^Aw0<Lg4TEbMJ%)V92KXOcRKtt<3zKk8YiZ=r#Oh7wZeWRXS|{M$cDP6>Du
z3r!W<%t9**r;0Zhwh*?o{&!asvT(YDrZ8;5vJkNlwUD;pScqAOTS!<)TBx_eD7VvV
zCfmX!O-IZ<W$}1kV^3G3E8p<p`TrKO777-M7IGF`3*3*+TiCBpO%pl{fu9!s#Q{>m
zGgV^YG-W-6ml(};XDHZO*hc7I@7h^tZ=r{Uo)$V-=%}c(Ep)Qb*}_>Cx?0}NGi`QJ
z6bUcuenb0TaCEb9j-t9-{L?q@j-6k3E>NAHYvB$HcUm~lLN5!wE%dQ4(!wYU=Ucdd
zb!*{brM=KXKMVaW^tF!P8~7c2fMN$q=t~Bvp8Ynx#KI5@ms)tNf-zXlP4_OdFjT2V
zSh!q-!r|%$S6H}GlB<MQ3$GCl6Vfb)%*}G1ANMigXbaa`xXHrJ7Os=d4Hj;cKVuZU
zUai1?CK{{YI1A%NvXhUmsnTuFtc6=G+@>gIF+pUa&@UJ9c6I>uUcYp{oXV4>HpRkS
zB2z8gZDCrF_8y-Ir(2j|VWx$9EzFkWKH>cqW{I%jI@a*Y<v;w+VK)of*ME=VK?@JD
zhAli|VUdN!79M5wT3E<Q-ohm_jCmI3bMj|#^zY2<btU{1i(j+y6~~^&6P*7oJY}J_
z?kJk8KVPD2_Yw<BEiAXN!oo7<JHfc9vhm$g?>qG8_~n;{l@^|nle{6JhkP8klCNNK
z#enz!7FJnU9mSd`UXaf8C}u>l+QJ$OYc0GeVdV(cS$IjjYy>Y`c*TMd@n($m7B;Yd
zsvEp&;WZ0;*kLSew6Mv-4h!#Dc-_Jq7PeV<%fg!$He1+YVXK92xC_a{0l2izP3O|m
zVLV2guR8N4$HF@nwp)0Y-GgU_aC5D+l=JFVz8TA#Pab*4I<fG9g<TeQTlmnzM;rpf
zjGY$7@>5^_w>4iW;b&-^%}Pr@w(yCCPc3}L(Z`z{-Zk-aa_**a{#0e2&t)GA`z-uu
z;U|{S!j~2fSoqe$R~EizKcuUwc~1453esGR;>^!UUiJB%g@YEpx9|fC$j1=wdT_Ue
z_g#EHgjdqi(r5VpFBT44IBMZH3r8&cY~dFRzp_X1>u>%S58vtK@Yf@7j(5L&?bE_B
z3x8Pnla0$6th96o_X>F;G<QGw2*CdVRMvl6-p7ppSoqgMsb<t`hZ<}d3Zd3v1C@y!
zpFhh5lJXH$5U(h#Bz&TU*L$l(P&I;T5mb+$b`*7@s1ZTU2<AjEH-cIeM$j>WP7&0J
zpl$^D2nrFL6hXZRauK)@Z<47WK`erJ1Pvl+7(t^5PL3d?TuzCgaRkjHXc0k^2%1LF
zEaF{O_~Y1QS|67;GFr-1s|ZdNq1=!1HO&aZ5m*sKB8W!3E76G-$Z5(}j%gtk5>iVl
zm=aRW5n;hI5o81IC-<`>79%K;4;>;nO*&`F6jPlpa)yMhBWNQv%9(pxm8+ei7;GOz
z`DQyu&?SPt5%i1TtO&Zw&V>=29YHto-VvOmwC6@}UIg96dqmJPFvwi!Cx0|Z?4|6;
z`zSfd`4L<oWna^;+x`&@h~U}?u8Uw`1cM^DDuSycxF~{)BRri6mql<%P~n4RipGbW
zU}vcK70Qk_FPAdOm6B7L+3|Ocf+HgsCPIIPM=(O%_lG!2!O=m@jEUg-2qs4`C4w6w
zxG}<0ICzQ$#zrtMg7H#jM!tQLn<BV5NbA{*fUhx-OqAyB5lj-fO|JT>?uhVw4{z4;
z>y1X}*j*7!jbKIuGb6ZLu~fJxf@wh+8JsS;pF7ju8^J6|?u+356MXO$W(Sf7B6u)@
zJrV4U;2{pf2v$e1CW1%kY6Qz7SRTP+5zJFPFNt7&1Pg+8TqyfbMDV1nJs#M6DuP8P
zII~##ezg;qDvE`oCo5$3St&dn$X7=2Owg=U<L@~IpO?Za;R`}qTN~jYf8(_XHgf)#
zomUj~5-$M?G8d{5*UQL;2ws)kcYyV_DT3D{*ril&M0i>t-j3j%2sTTyEy!p~1Y5=Z
zrg=+7$Z2_d1n)-hevlo7J0f`RgdiRGAc7B-{G$kViqHYdeG9t-%O6MZNd%upc<9{m
zKJcFo^*@i`Py~k~*r&355y6)tUqx^rf^U`M*AeWO@SDIUEqo{bqwrt^-$(F+IGy($
zpmCC)B&7b42!4*Bd=wR;_$7j0Bls(Vzauy*%YR6XNq&pq_Xv&!?e1G+@;~JX75<SX
zqQ~#U|Bawj66R$@j~B2^)SHm0TsDew5;B%XDk@c_C@M$2qcf;bMUv`)wW?86Q(9l2
zNoqt<Q?XR871*yE#Yy5*qde0d^`po~QHY{}G@D1!B8rCMjf5vhaY_`8qiCX_?_1Nr
zNm_0eSZ*nWR#6^bcDxAu&jKohD32l>g%w4T&PNfELR|V(h(-}Rp`?`9Q6x@~q@|yg
zgt1N(nG<4J-dq%JAfboFC`zKZCW>KEoEF9DQJf#e1yP(4MQf>bkD^T!XGVEuuh$lB
zWxqq<PrE4E2i91P9i!-^sLoMzk(@~=_v^W<Bxgs_P2`-YcX6Z-e8GbXJ)-ETwC6@~
zo)lOoY`$Jm^j46{eMG3tR2N3kSNc~((J#vX)5N8U9T3I9C@v8n6y<sEUT?Wr$W;9K
z&d{;JQ4CRWe2I^jMS0eoSJKOs#1~#E358chd5+EhuE@j1$3`(OiV;zaRFY8=UK_<|
z8TV`8x+um-eti@-O6`WgzV8xod=xiDF(HbHin>|#!&0*nZjt0xAtkiQ$Nbx(xLrMb
zl5lbqcLX-?R9ZUE-;^ls3gmv;yQ7#UXYLU)YZ{#CH%Al?MsaTx_eF7k6tjZ*nH^Y|
z6XngGSB-Ne`R|$cp(vh`<l#W`ktiMw_+wGbi(-Bh3!+#U#S>9Hsi<+4jK|r0l?*PI
zg|v*%$41&DE{bAt6icMGBCxYmWLXr;qu$c1|3vw86e}fvCW_~xc%D6(2SG?eomElq
z{rMN7;Q0Z3(xk+HD|>AeFLHdv5RGA76fZ^bZWKF|>Sa~SE8?uN^-*jPe^vOJ>V)!*
zQEZarb>W-BH&{mX&&^S6iDGLM+oE_UitSOn6~)_8@Og(Tv0Qy+d3iI;MbvU%8WU$6
z@0ssWLH4W1@Ie$GM)6Y=hobl>ik(q>6UBijb}6Heg}a43PW-Jw#wR}K$!zQxeE&a+
zJtBLBp9}X18T&;PUy6Sv{93qQxQ}0ytLJ<h#la}Pm)Y;4s9n)>@&^TZ0M3s=-=L7)
z>~IuEq9_|fxfp)t<R8U9QT!XluhKsj#UHBGqfz`8#qVk(f60-1H-Ad!Zy`<n6<Fru
z5`(2t7%^`Ymx&!;r6ETQd`O`JA9fflA47#0D#cJ)niT_0zr$CNu$qv{Rb$=|J}sD<
zYQ#`8hFUSymI8}YN2E~<C&y4XhLd8bCrN|ALVc086}^HtjCuWy<dhg1$Iv{67BMuD
zLNg)rYAS!YI6zL9TE@_dJ_OcIjUgn?ZwF|HOC`i`3|7or8zJY9CuYQAh)Zpr(2n8k
z7`llkVo0h`sTk5RI5A{mI5UQ}F=S)N#ZW>gV{l{0$54o&7z3Y){QBo`^K&e%X>_Y;
zoF2m&F|>}MjdTX{-Ha9nkIrT+-Kd}u)GmhhF?3PZ9b)JhL#G%zpWrRG8>s9LPmZ{=
zV(1$4zKr0`zJK1!IWcsP;qDlw#n2;$o-quLVMq+;$|h^+{22J?dR`2CjO`UeZw1Nw
zNW!QKq{&<^jG?diVbkarLx1rB!hwO#pcpO^zgT!lAorcQRKYu9xGaXDF<c(Q6)}v9
zVSEf%#&A^(!($l1#^pJ*F<cYFFxDsEBV|)+>HZKeUR-mC;i<mHs2E1aFj*@b*JvDF
zE92M2@H`*$h1Uxiyg}r~7{-cht87qsQw%r9a9a$wv(LnEYYY=&m`Jl+jVvwgz^6H_
z7|hm^0w1m?(aG}O`V3o>BZ70?oyu`?3{ynz5>8e9`z^vwbx#b_W0)Po9L2Iv&IpFg
z%oy&C;XcXlk71Sw>zO+Ik?=QH!iR+q2p<$aBxHAbM1-1;iaaLdtUf=61u-m);qe$=
zj^P#du^66=;e{AhvjSsS6vMI@mdCJINtVR0ROG+h|MP+4bVUqL$FNcg1+GP~w@>yw
zd{&dgbCNUod<?6^+0|J;YhqZ-IX{S{9nNeo#*Qx`z9hLnr>z&?7{jI*HpK91phKIl
z1=aO>3~$7+C5EjhBz!Z5%?ei30tofD#qd@PZwIL;c}EKMDjHlMVsJ+c@3HsBF(8ij
zW3byBedFjC#|JTd7{g(H0?b13ST^yU!d=4MF?=jSolj!;G~l0!?1^D-Ao)Coed1pP
zk}pNRis5UK{ek=&kyay&?_xN}*(nY)j_+gmfiqzo_2c+4hM!`n9tZp3Au6*k@uaml
zj&Smip}ge3#PBQU1P)lm9*yA-k>6tYJ%*9|IH;p>Oc_1I%Li9}6w4JJn&R)D7!dc=
z$p2MTX$(djua)r>7VvVQT*?Z~x<<LU_mAO>st`xTI4Z^A8>hjdb`Pt>QB}&-eD~TK
zw8n%r;;0!%t+-dobrn@RjylTPPe}JplAN7~_8Y{}FplPNw1}fo94E)oB#x$1I3<q8
zB2=TFbcuvTXeNJX^K*TN)iRD&iaJ%9-agLo?NfP9J0l#26-WCxI!GrHhaE>Ej%XY)
zN#ZPEhvT)xo|B9t6-S=Mk0Y)6aim6Tmvg!h&#H2ALRUynSY5?9O5{Upsd3emWjrm8
z(<MAZcu_lpHPa@JGvjEhYGH|(oWgd2LdQ5d#nC;E9&vPzqe~p;$lzIVbd95%_}Ovn
z;VPe6d>ymqJFY=nvp7BDI5&>oar9B?&Wod09IOqN;@NUuGm-FjzD!a70ud@)D8em|
zJGn{ClS{Q9O+GM=%I%H8tm<~gpg1myV|}S{F-yUzI}SQ9K}8s%B3v5BWkFen#&LNZ
z1KS%{NV1;O9aoj(i1YqGj;rIiCXQh&R0rd_IL5@iec|D8jF21jaHPnnI7SDOYeh!4
zGv@IxzvJMJb1Qaf?dpz=V_Y1Y;&?rd@p0S~#|v?+j^pMyZi(amIA+ChE8ExK#E)Y_
z924WXO_J%t+l7<j-U;4!aOz+^NHRH&DRJB-J}r)W;+QIaw~!|l(<ZwIkBH=P+&r9<
z!5MMzU`&#GrE{N<L7tmBTYQypP8@StpE{HC0oD~i{*rtIHRE`gRiW+mN8)%?{4wFY
zIOfN(KzwN&%i>rVXg(gt69Iox<f%9oi7XZ_5%Mm}x4c|IUd2|3JS|))d`9@J@Hyf0
zLO<;d+#u*=tdWFn^B+3aioYmaCu9~c#qn~$UlCa!$A&=iDu<Z(Mxk%{jktG%`d1u(
z$ML54X5khgqqd4{i{mYkx8ryxj_q;08^<q_?1<w%5#A5K&uO1LjxXc*FpiJn*v*-W
ze}N&~756Sxybe-A%OoGi@ktz?N>1V4II8phpTkZ1l=zpk&*Ru934;`V701_c9Ejsv
zCETy5Z`kpItGuuFo#a0W4+_5*{=ln%i0{cEahg4>QXGlnXAwW^U*k9$$8T}`&OX4Y
zUQv9H>sTCr1e|j2vHJK=9REsQCgoLZDJR<`S|+*h4cI7SqpXc~Hrm@LXL}0OY*e>V
zUc7>^qOg*%vapJ<s*p)|(XSz1Pgqk}OITZ2M@Y@OHck@fiUfo8Z8Wga&_*L0u8q8n
zlND>)2#cH|Y%FYIqp1iJHnY(@;4MU23R?+JwGj$pS!tGyh>fI;l#OU0kBh`?uLJmB
zPun(lXP&UVlWafMvH&wm+i+}TY-FW>bt8i(Rp#vDZ!2-4;4DG4f{oU;*RP5;N^G2F
z<8&J@*Y(O+K5UTicZMwZ!ZtR}w9(f7-%fX^jM2eHN9mlBL?;`aZG4%)R|#~naTdKw
zU{S(rpsqH0*yt(G&$iJ`Nhm+ZMt5<4CE;8f=h>*0K<xy2+30O!t&JCL^s#Zijm0*W
z*to#Pg*NW6ai@*GHu~8ZZ{sE#{cQ}eaixu`RH%VAhS<2&#vnRu<6;|^NIsZNrqwpT
zd$aiLz?az=DmN~djvqz&6@j1RSKGM8#tk-Zv@y)aa2um-Tx(;5jgdA+DWN|WXp<KB
zWAHl3$Jn^uKEB@N=jdlKR`$tR6_k&Y4*AVWb(_%Bw{dI0C)k)6aN6hZb{mr<@$F2u
zF-5@#W&AE1Gi=P1WU7t3ZA=rtM>t(MG7J9v<oDW`E#ZAO?hj&TN!iz#V`DDcQ4;3P
zRQ!=J_8}V&+jzvrqc$G1vCzijHs(olzKsPzVSPJ(k|%6D$$nyEkzy(I<<#*xjW4ya
zOh%rwu{`jEv8<>SHlDVzQvK=~S$I~QQB+`B+Iil_DjP4@SRG{H*Y=vAbn9%qWaASX
zpR)hkc*Vw68{2HGx3NLiXopE&Rn~9Xc+JK}8=GY94Iy)Ro%2A;<8!jFzuCr?6LNgZ
z#@jYNl;j<m;!VqYHn!V%SHT^DKYsnZZ{q{WeQU&zZ0wX|myO-BL$4_R_=H?Ov$4m<
z&o+LsvDe1uHomp-osE4;xIaks1;?q4uaqN=e63g#F2;T%odba;?bDxwHolh*?+1Lz
z4>o?Z@so{1l2hlf>WbuuB>%PJuQn<rym{uRjo)niZsQndEt}sj;SU>s+W0%L@K=z~
zPy3IJe<fj#l=wm<P&R>bGFT>YeEqz<f)x^|7)X3&BGXn*po-*G6R4g*4b4c^gp6gW
zYX;m8)=8jl0)+&M37nKby#z9{Uq68c34{}{5@?t}qXb$c&{9z+3!5cyicB?5ph;k}
zsfgcF%>yBWt;9q0nHvG(^p<k-1f7UDtB#IE6Nn`cPryzfC3)h6R7{vmcry%@$<yLa
zU@9y37?n%Fl`t=fU*3`gPD|k21kRK2^aRdGpmoBV=V`Ews;+$k9TGTGX=%T00__4$
zosLS_nbW@V?G$)&RsvlU=q}B(W#=4Ww-eIR8r|rTKu@J&kU!e&l|b(VZcE_y1o|X!
zegeZ17@oid30#=KkOVGGpl<^G=w|{KC(u8E0SOG0WtNl{{L&4QZ~oZ4M6rVd9V$?b
z*<F^vPzkRRUY@{}B8<91glfL#)j{x@#PL1Z5ebY;U~B^85*Vc-T$jL@1V$%tt(5&-
z=+gCp%^LzEw0~ouGhXCoT1eog6BPW~xHW+ZGCnb=B^spVNeSGMz{~{hP2kQ1CM)4R
z2}}tr+?~K(;<PhWKKo^v7AQ;?nGxtP_Pzw}r)C0=B`_<2*$F(Dz(Z1)Bb=*7^c+yo
zubGGCn9m<koij&P`@96^C-8(c7bxN5;!M6UD2v}xPX^W)T%5p?1l~*F{REaKuq=V~
z32aDUc>*gEcp-t+2|O+RXA*c;WMu+xl{vn=|6BskC$K7U{LO9N)$@75U-@5?z}f^}
zR+1MJSSRw5kP2KP^Or+;cS`?Xk(~FXuO{$X0$UT<mcT{{Hzn}82tN{eBY`&)*pl#G
zzohdl+Ga)ZVUtGq<E`Uc3A`=gyTW&b+gUSh4L)~M$9Hds<m4YD@S*sp!jFWz6WA%T
zOXxfKvG^y#|Gtv=EP*`<?3M8I1on|6z~$Wke$0aWYbku6zz-t(h2IDdB=D`scL^L!
z{O=86p11R30zWCLK@x`&ILt{k>D}fXN#N%MN)zB;mH(2!uL&IEBrnaQ3H+A8?;NBx
zjr$vWb^Fe05BUJ~X99mE@J|B&Dwd7-x00}0F4bFS|CZy22F9UQ2LDK}OcE87sFXz6
zB+4aGK8XrROzh#A@*bV^RQphOgEzf=#H*Y{l_aVqQ9X%&45MliF9vEPzeWsN<{3v!
zTT}km64n+{SSN|P0Y6EkUJ~_14(L9)VG@lL^jDHkP99&eZ=Ce5ceKz%u}za`CPGPb
z5jI?_Bu-6YMG{XZ5u$z)7bS6V65&9zC}JfMNg|p=EQxp$wuJr=_A!w}Qo>XcZjd&e
zgp))jdHhk4`DPWBlf?HepF}}IzIjUp{z{TKEs4`5JVV$|*gA<eNt~HP+a%g0alVA@
zg-q2=q=T@du#>QJ5?w^j5>m5k5@!e8-|RR?!R|@)2;@DJI5*(uiS$aMcM^TX`TD4T
zc=!bhUMS?6Ro~?Q`e%O$2P832WRQ@#b6{SQ#NZ@mOEM&hOGPNZEQz5>%uw)hno8o1
zB<@V&$|SBzVtf)eC2_T4M<y{UiEEM=mc;O+H{M4`?hh+|IKzxaCvj~OHzaXm64xnq
zOcK{8kIzL^pqf8&In|6!Vw`j+=LOf_l(|`wTa%cO#4SNAN6N&2-!5{SkTct)Ku&{`
z1AccBQ^fBQP8G7S%!t2f3f_~%bP?Yl%4aHgZxZ*3+%Kej7Hc5rCv%dR%Z`-9gNl7J
z(0NGYVc{c5JetH~Nz7AlVW2ZVi3Q^R6W`<FPn;lmN_>%Uv2clSsgRy5OJaGzSzRlW
zct*i@h0iAOToB8`KA*%Y1z+IUPhwpXs})=m=&Vg*X$6DtJ<{?^NxUlg%feRzo%JFc
zgq&bsOJZXZo0524lDCt1BZ)VY*rwp-B(@~6l`|Fh@?JJ-tHL?NE-G(O!rxm-d|c1t
z%<&y1*{<n=!+A#%?@9805<8RFmBa@cupdhJk+51ruLU`TcQcs8m$W81g`XtxsrY9}
z>`7v85}zx$Pw0QvNB{YM*8D!`t0cab99m=9FaARk-z0HB{M#hHOX8ro|DrE@+V>oZ
zjgDU;e^eCn{fSqBBn~ThB#A#nehy-PN#fUlA5G%7fd8Jvv4C?N{TcATlK4B||A_pX
zM5%}&SLudVb$V-^q-+Z1BquK~QbAZTg-U_Eatc+%s|u?H^6IJM>s_@{sGUOhJbL6&
zCxyBx*l8rvI4Q-yV8EzAzrM%-VFO{q6dI*)viK<}G)s9?E<I_SLK6wen+CZwPoYH$
zEmLTf!l@~Q0y&e+R&mS}GAU%0Fr0#wLL`M~3b7PYDWp?~)3FqiQb?q{#WdRI;H||2
z8F&a@6=SU9-RC$d?~FUn80>ZaEm<yw(^EJj1viB}e_f423dIykQaHD!w=XuRtkzfS
z8>h)EjkHdo4eKO@9x0reLfaJDrO;kk)2!bL9a6`qwR2MFnDVw@I;Fq|TmCwWbP=9K
z4CH60&`rF%K2_j6KtFrZjTA0Sp>GQ3rO->cT#!QV)bXPQ_qOnAwNDD?r@S{hINuWe
zZb>;U^h=??Qt{s|SRsDR43uP03Kxk`^WqdP3Haa?h6Mc56fP4VD!e?9Um<d(@TwH9
z4&>LQFf8E1MMelm3i)a@^BSGPwJBVe!k84UXWvMpc^WsQaAOMJrtn<~V^bI>{aq=H
zPvNE%W~Oj&3OBQ3q;O{nlT)}gg$dHRBj{S}EfZ6?O~TuSoDC+Wyju?c>q{z3N#U*(
zrlxSW6#PEm_e`Hpll-0(ri<{uhi0(y8+h;DQ0+bmAD7MhQ<#;)Y)R&%@L&oLiO&^2
zAY`hC*%MNDEQNU~?~Mq)D!>|e)YpMApPecN_R@v2>HEN&ZAyqwNbSiKo=Ra+3X4-%
zmBI@tERpiE6qbuD4brltE5x5q;b{>{R*F0$d{+3J#uuabW1&{3uqK7K6ty;m7gKm$
ze4TKEkeV-vyexbrh4q2_-2vW>{i`XwCdo$OrXbc|RD46hH-(#pTZCIv*d{^?L*>ug
zDZG=yb_w4VevrZrk@tk}3#sqt`(X+n1(Ka2R}3|FtKL3N;gb|T6=$9A7x^rOJtBJp
z`R5}0h$3GG@~`+WU;+2v5cr0JvA%I2<^8?Rg%ym0DSWRSkv=|K{*c0tO2T&hDTPA;
zKP+-Y_;U)sr0{DBM^pGW<?R#wmcs8T{KXNS!ZGR4Ti&s7ApfDM<IfZ}8wTf)f7tDZ
z8ogT^{4A)Mz7{E!zLEBxGHB{BucT>|O`}{I<<n@8M#D5Jq){=A`qE)@S4yL{IFnQs
zsUoZ@tR}3UMhy|_)J&sRz<FO$C*XB?6-c9=f;8)QT_S&t(l|MdCTTQP>?!HvlRvFB
zmV_5;U!Riy61E5|w@jmz_^HB>&=iJ+mXK*9BGEKrBJn`Z>t-^IR2pw)u{n!$8crJb
zrg2{ynY1?#pPt4UBH1)@BCaqmEC`E2Dwl|yCOlT&n?hTsaoH_K&otVky}A8NVOwE4
zVS8Z*VMk#nVP|0%ArqcOo8o5&l5T076Y%aLJ<>eI$!q;{(>O1UUTO4B<GM7)q|qns
zy>i3f;55z`zaWhZMfwT{3i}EB3kRgpn&)Bix~3q>MIslcaY-Pd!jLpBWf>*8Dvhht
z7#hT0p2igczcR2!JJ+N!O7dYr?C>;3h>r{;XD{=z9-YRulK8=G+l}2zjqB5x)8Duu
z?LCU#n8w&N#<5VGz|*)Rjqz#Rl*Y|$L@pZeg@2AXaRzTqV}dwaYW0f-V{c2NC*Lv>
zGI(bilbLpv7d3@hS23oiF+;6+R~l1AnD*{8rYT2i-lMcMPJ=}LW~Slu`_q_}#y|&y
z9L%QAtN{mY9B}%Y%a(Gyqd6W(<H0l@O5@=))}`@M8jqy$Xc|k?SeC|PY0OLGi8P)}
zV}2S7(pZ?r<7{`Hab4ax+{?JAj8UtK@#+BM*(yf3#CR%=MQJQfV@VpL>lz398Ep#2
z$iAM=j50>wzl@pHjpb>qNaOi5R;BTD8Y|OyHjU>v01F1|^O-bu^KB@7(_N@ySXI3x
zjx~#n7g(q?)}*nPZCA!<QDPK_84ar&bITgLY8!<z#*1n1oynT~t~`xb()clrpVC;L
z#)dRLN#oNrUQOe*G~P<%Z5D(DFK=v2<NNXkZ@M<6@dwxcg>P^qifk5AzC~oKaGS8>
z3gewLwsSo0G1~Ms-c5tAiY?^+T^c*m;P-3%y(jX18Xp8B{lhdq65lD@CEOjvauLaY
za{MffJ!$Ms<8xKT;2K8nat15&Xk}v`CyJ&<nD?0)ZeOY)zDnb3k^N~L6!}JYK=>_(
zhTaMJj-F(_vrxX5oa6_VrHnUqA4=nJ8h@toR~kps_&JSZj7sAd<??$PHE%S2Rc}9<
z#&4=Ue!j|y>+wUzIPT8yL-_s%{aoO9jrDgL|D^G68l~#4bolD$jX~wT#{H~;G3!TT
zOw53TG7ic*DCfX-kZ@4mK?Mi39MpDD(Lp5#l^s-Z@Ms;Q^(rrUthZ6s@fvQYOjUDG
z-9Zfp{Lr;qZ)59tqoz1>d9I34$3a~OCpoC+fE|y&SQVqjVxzu;1`gih%wO5y2w-n%
z=y+|{$ic}DPI1uK@%nZXVgs*c`tX%?7)>3pgEe!|T(K=2ghg5ksn$y5RAI=0De|2x
zSdMqy<S*hN8t|Bdc)*!a(m~2Wp1C+kJ8&H29JmffJ#AzhWE~7HZ~RzVI)ul`>b87H
zU*qz+-k4%l6djZ}INiY+4p_aXIe2@K*HtP@nI+xLb36Nc{pU;v+shl1Y8q{sm(D;q
z#P@$3w0F?KK}QFj9CUZk!vTj?X9wL_3dft`x;Qw?0hRgd%8D&5JzK#w%e)@TYGi|6
z)z|3h;9Lh6IJnTkc@BCx=<T47!?zlYx^ZJKr^jB#IpVZ=zT+L%U8kSX*FirA{T&Q&
z@ZgIEg;ajCj+caL#7qTaEoXiQe>wQu!Nm?PVTCvt;^1Znw>Y?z^O%F{9o)c~jkW6F
z3I|uR73z8|IP`a;&MijgXN{{IjBqegCA!+d23`dm3=<hHq=Z+KQBq(TU7jt*`QPzo
zm1~993C9Roy*D}->tLLN@eaO@8ZVSJ&Yf+%e4gigXshvsW89>A9?ogs!2}1NJJ{!7
zqJ!IL!NDZQn<1N4Fm{zU&e>q}g)x<cuK+o?)4^m1Q~G-~FvY=L4yHP|+rdf)&p4Ro
z;2sAH9XzgXHr>JfA~S?Dg|u_8$bAml={ai_F98nbIGF3;5e_TGKH%V?K>tAwpDLaM
z{5>q8AAHQg{6J@3AYTwjX#9zQFLCgs_*23~fqbzDtt|~C%S4ttSix=(#QJ_R_h%if
zXNx#^&cX8zR!L!9koE-!s~xOyur`pq7?hD|eIqX^>SYJ71Ui(z>fkj6-*d3h!6xx{
z9K7z}4F}r-%{N81IM^)mpI2LhT;7uWZJ}R9+r^ptyAF1okm`L0A2|5X!ABB)=3u9T
zUE-fO*d3($_=F@h_^E=vW!l`M;NGBhzHsoRgZ&P^;e=VmII!RNirtUHf$z3yieSGz
z;NV+z<FjjeUFbXUpBx-?K%MV}BtLKx=J^jo1`lyU=28sr%pDvN|2dHS;^0^Dqk-f%
zk>4F06Zu2<XAs+-gNu&<9EMq3mGvgre;t%+rZqBN5E+!oplk-^GUzFV@)=afAT3@o
zgGw1J&tOFcl{2W4!KE2ori4{9h-47Wpqhf!GpLb4%?xT~aB>ExNLV|A`XY6Nb%iGh
znRUI4_c9(y14$YN@<tgjit@%8G|3<o$eU)+QoNb4c_42gLQ|~*$*Cf~+{_@Xpe6Jz
z$HY4e;~Cf)Br-^5&`uI&oys7aK~BMR22LQ)h|q{DQj)=G8RW$a85Dz9KNs3LJ%iR6
zw2}M_q3_k1;%$SH`oi`Sb`UacN0Cl}PL~YM%AjioXJ>F>27NQ=CWUhY{c|$tF5ZJp
zDMGXKgm_*Cy(H-^JYU!+(78Z_Ia0Zw_{GBh!T}i!6d9DkMIyeYU&c!$87v%fLhR5C
zE?4kD;T0K7%;2^RuFT-746de7^065V%V2m0V-%$25hA07BQqEk$XSYO1AbjlC)B@Q
z!W%NUF^Hw+xD3WCc$4r};myKZPDnc;;J0TmNwN0}?+{MU;LZ#ti%-emZV~2qm&jBh
zD`A?*JwcGU&k&y}yjOUikZBn^OMG@9nUld>@dxCLU#kyE@^A)^h&-CX!VDf4e=LJ}
zBD6MNWI<30N}kAIv4l?wp9(Y=1v*P4SsKWfi7?ZrGg!&Nt5Huo&t&jg1{)RoYzEJX
zJfFcTkry&}F@tp(tX7cvYcg0X?)y*4OBt+}<mEu;6?H{MZ3rZ<23}FPDT8k$e?5aY
zGI%qC%^7@}!DkX~$zXd1?}~5DU|R-niN7s;C$PinrKugl4>I^LgZISW7cz?OeU!n@
z3_g}*mvFbx_na0;J~=^ukNB6uy@CAm4EAO4g@S%UAHT}rYYF!UnlyMIgKsnVE`x&^
z{GGu+8GN6?4;lQL!BMIGn8D#d|0j_{LZ&?;@^c2i1QI_ZmgP4|{t*5yJQmb2WB<(H
zFA2$M=idxUIajNFjVzEwW$`jul+B`I(C+23D4#`ztT$;ep`Vt>Oe;x;a`GyHepM0Q
zrRrJKP_X6+!rJ0>gmtqxDT{hp)X(D7EJ6}C$fAh|b7`1GqbyEV@D%ybnEHVyBu%qu
zmPK<Zv=p`o()wzx6!f{7g{@#X3oDC=cuW`-`sE_V6=bS}2+NqvA{B5dIO3TsvRUNB
z&k(x8ypU>zEQ;bK!qbGO3w@WU(>jYbS)7?g+br5;akgUH3mMy4q=T@du#?bljxOS7
zWzki{x7khn93d@q&!Wc(vFD1PC+sEcEu?0jEY26dAd3sL=$l191uqfy&tj0s03r1U
ziqMmbL@o~GbYpN9L$bIukX)X{WmybWkg>k=R|G+tx|%$T)mf~`VptZ#v$!>j30aKD
z;>|t=pKiuvz2}{gS&YhJbQagL$UL(yi|R3B+LPX)Ol4~tw{!B(q9H&2%HqZ>#){u0
z94BPdc#*sL7HB|j$%4U)ml!{lHzsB=E9*Uk-p0ElF8*XODT_O@;CkH@`leG^?i86U
z2ac9E?ox0njbt%RLMl`99?9w0bO~o<F;j$+dqwWc;{HIN!j1d{Ba1m%%+2C~EFR2y
zPrFOAct~Wi@L?h4k7V&^z#kKtm&N=n7H~MgSeV6=64LDB%Hj#h8GK6eMM8cdLggjm
zgY_h`OnkYJxvUU*TDUTcX9D@NBF|;<yvQoy3qsy>G2vP^Ru-GGcwMcwE{kMcV`kiV
zNx_%1-~-(&!u3K1H)Qdu_-n$Af&9I^@j_iAZyRrL@Gdj>nI0E#wq&t2i`R14n8P;Z
zdu0w+<?t3~623#ugMdWd$zr?6yTTp9_k{0fx#Z$0f5_=2=aG-H*eS`bEWXR)U>3U-
z{8;!&7N2JEnfSgez7W|X+?&PcA~e$Z7K8Yug8PME3BS(5kNQTz1Hx~G)MurAFaCER
z`5}uRv-l~CLs=YV_Y34lM2=?hv&b)5{F;St=Ra$|W%0XW{T%-Y(*7y(SK!G%S^S$t
zX%<EfwQ{JfN<a?fbEuF*83pNES&?!=W>GPRN;y<luyUYNRisLwQ!S9wff@m?nLF+$
zZPuYs^14CnNh0-xenA@K&@hN?6r?>xlEyhS$)RZu&2l(flIA(I$l>%H&QP#r4zV2K
zIkd{*)Eq(*T0-V-iiC5=TZEE`BvB!Aw{u8{7jj7EkP^=c(>Y{Bn932Mem0PhyW)AF
zU;o7*wnXGKp<l+<;_ZcPayV0@t+1Vtxlpr%c*h(%(P#0qgk1t1KclWEl&D({=j6~m
zhaNff%;6Ggo}0sYIb4`SUj=*R&?krU#d`-e%p5N`fiw4hQW%iKz#RIE`_2!_;UWbu
z7Sab_&dy9SIENvUUz)>Ek;?)#W^s8AS11>1`l+tY;hG$l<*+=5VL1%X;qDx!<uD?L
zkvZI+!z2#&&Boe32A8Tv<-ir)(K&Cu>)ITy%VA6o*XO)Nn;UY-mUt_lRN&gwjX4m<
z<}faY@i}jk<)$2N6}ee>i?CZ2Z)b$R2?|ck;Wm*8bv^mf<%W|q?#Q891>;T`oSegy
z9C%deT{%n@S<BCd-}dsov%hgq4%2gZFo%b7;DYds9F~?bHuW)P=DbVTy*WHl!?=$P
z#8b<JB(rju9q>6h%nkShIdJjT)69FzZnX2TO8rO<kLK{0)aD5v7tR+hVEu@2X_RUC
zdm@J?C3#A?NVr(Y*d-!Mg-o&{ho^H`nZq+V@T2vsw|GWYbTcmAVC=8qEpI-X!*ePN
zFDTFFybJLv;S0jm!ZpIR!WVN`C-Rc;W#KEr^+H<Mki)A1=Y?sL_{A<Raq)T%Z?HM4
z7;m!A<nUb%n{(Kb!&XlIIqb{f3(ovGyq&|29Nx>}ogB93@GdJVZg6?lU$-RZ@91a7
z`#F4&!|ohD&f&uxKFVQd4!d&LQ^Q-3@s*kCK-4(KoeQlrev-r996rzC(;Q}%Gd^Se
zaPg;xu_uS07JJL5RGasd@o!CoI~QN(@Kp}`bND8QuT@Lsv|h@4m?>QU;nX_AxM_ef
zW}WBQ5Wf7M!}sj8E^;n@$l=Ev>ba=z;-?%A<?ve$zq2E4_6l-1ha>bvrw9Km!X@`#
z*ezQdzvgh1gGHb2vIWoj%=7$M4u9nEXAYy}VFed|<-ApT{{9yENBFO>RA{)K0$h|4
zAusEqT)@k_;HDCV6<zO(`${e<yQm^wS6Ee8O;}x6LrCSCE^3L_7S;*m{r)sg5@)%n
z*1$zW7a<p>>kXDh%sp;2cfD2dlU<zRqOqK5;(EJ6yk(*@O(kjO;_3>XZ`^cf;d+Cs
zrHfV~rwS>#zi6ymWQ1Ms)-K}0lAL{SQo^gQsEe43xC`4w!bRGJ<09#Ldxa_2+d~{t
z#oNUr;nrS85)w+*Xm^j>XD)><E}*wA3NDH+N?e@nqMM7;T%7Kri;J^doZ(_#4WqN`
z?Hw@p)-Kw(IMem!w6?Cd1wXc}_jX4+7wskN;G(0*AWdtXTpT>?oz%zKuLtjS%X%HJ
zQ_|?_dfQu*INn`!chS?uxi0=Ryh)=6^Ww=Hs+{2k<2)D76pUUjDB-PFZ&h_4RWj?D
zTNoF*=<A}Ni~cSu*~ZHL-Y(DFUd8|y16>SaH*mc<jXMk6Vi>?p0rl{WaijV(#$Xpi
zT(roeWgeHhxXi^g7x%ar>f&-2*SHww;tIOTR$!C4c$r%d+`=w;8xWjcILx!(8JuZ{
zyBOi(S{K*380q4{EygGpqt#?Tv+1?dbWRn63$0^ZT<?Nw``nOvU2Cmu%^O_Y=whsk
zaW2NQIZ8_>yST~4%`PUoxXr~aE^c)(L7jp9p?O{7wY+g(f8*gY-XS@+yO`wS4i|T-
z>Z<VVR=wTL<x}q3a9^OBV@z>zmy4;aD;Rex3+58nCOc!NyO`nP7(1$qne0U_*1Oo?
z;yxGmyLjBi6E0@CnC;>r7Z1Cb<6^Fh2Ut=UYYK*)HR3f5E^&`a7?Y}a6AL|j#KoiR
z?d%LLxRJ#24zZ2L*qzjZtj77OpNqyC+ZP(;YZ{%)dh^DUE}o)I7i(QCa<SOO3ocf>
zSi(k>KCegYd&^iq+NE7C;R@l?!j-~jgv{kxk>@yUMOF!G>j{GW=OEX;7kis}FS=OA
z_I2?Jr*Rm3`J{gt<0Z~5+OE2{ufct4wiI^&Uv=@Ci}zi8;9{eTO)j>&*v6UP#T#r{
z7n@l#<-P8~M>9SxZsE}2CpmSEk}}>N@$G!=)5Y5^-f^*=&0XFYvcx;hk}XAVS#R&U
zs9o3C!OqOhUwO+WX4Ho+K60_g#a<UXUF>qP+r`H&PU`3NKz@M9Utzab`JcG>yPx+Q
z`YHY4ZmDoc!uZ_9J{MoR*zbZFeZc`<^osc<ySlEtUj^BHqc&m>`Ca4gfQxU{XE*@A
zW5-~<x%i%!02e=U@^^8_#bM4E3yqys48{^UCmeC{vx{FeOE8L(U)d9s{D_{6cn9(u
z6KY(y(O0W~a@u!MJ&ziB{O#f&7ZviTn8&{^O4$~9l+E*>Nbux0-WccDNB;Oa&xN*8
zE{|1py{cd{@wTme-kY8H?qa1pD(6upkE(fZ9yqwjSY5_g_k%Zh+0fPU-ZmxYq6O?u
zdDP0I0VR3V=F6XX)Xn3hJos)vxi#KCDI2R^9`*CyL$~XAC4F0G%X3IJ%H!lbPRXNj
z9v{>+j&1ikJfB#b<nh>EFR!C9qiNo|{h)iz@@Ss-E*X3Um)I(gQ}b~1$mbEt^ECq_
zm-p_w%)EE)4(Gww82GdDh=@l6NlYZ3hb@v2CWR>>Q>F88#52OI@b0+xY6S0o*+~j{
zZ$GzfKjX7iMltVQj7su2EsxXXVcR^~<#C31YatzOlgF9jtWO3xvk}|p(LutFd7LHE
zDUZ&1u$8ISg+;cHD|gM~>^!;!*3J>BSjMQUw(FV4xp|Z;pnL)6<<TpTt$A$Aqjw&C
z*z|dC+vWT`F34kO9+&5FVcz=-X`W-i&zX5s(KnBN(&?YafIJ4~y*rJIr8CG!?gBGy
z<oFo^m*g=xk0JCS;=O{%&rB}O<1(fCLH|2^MIKk?aj$G%mB$Lz+s*7MTnJ+K%VSs`
z!>OOgSlJ&byf%;P@_3x*f95fxzA-wFY$q?rF?n2{_YP;+-`Kc8g#1R4DTepa%0*Fw
z#Tl2!c-i@mPXW9(@nu@RHYUlf!U=gy%;UB^ZqH+iB$I^9VsajL<Z&l^V`qb>I(({f
zE$8YA9|7{1n#bKL%c)W0^r$f{k9$<u>GU&?nRzVh;`#ZP>W9eSeR<r^u@g0BDdD4e
z%odr$p^?V}c|4f+4xM-;kB8VI?A0<zBO`QBL;t8}kaix+dw)AlK2K!6a6ujmMLZAL
z?E}uQLY~TFQ67u)SfcFK()s#c<t(L>k}S_-Wgbm>8Y>i}<)`Tk*Z&6^&&XjO?C@+J
z&nfnK&JTIKkjH8{xhBtpI*lZ}x@FDN)ot~?BQIXeW1aM0%H!ocUQw;S&JqFZ^VpEb
zt18__5|!n(Ja!B-==>(h*F}sYU5qzqJde%3lRW&nzOf|_=0y)#?QiArwxSN^@eW5{
z9`7m0*aKa>PWY~ZJA~}0?{i9#@ekEc_T=%AqS#w@=CMmryX7Y<=VL{ElK0-&{8adv
zkdEzDr~N#SeViNfJayLCpT{?Oe5tgT@<RZb`kMVst$#qKzRlx15!MfVJ4+{ou)4mN
zkVbyU<3~<GhVfG#hw?ZqBkTq!;7A@nvr`$yFM0f)$1(NfUzOd_JbsfVZSp<sKl1of
zL8E}bIQfhJBV?>UcK&5w?PQdy`S`z1d_$ErcJK`E^R6-luj7>!=DK_BSfPN&3Yb?w
z#R4i7P`Q9A1+V@uETC$^n?o`MWDBTPK=lG@6i~AOv*2}O>eP}#-GbM|wF}<#Qb%dO
zsEU&cs8>M!0vbpXDxhHjjS5~bVy|OaPA+&okakWfcvD1UAxV=0-%Rr){530}dB9r~
z&{DjW@KoU!NzW8}FS8C8U=<Kic6Px#-XU5*tblmI8%-&`g9opzzcr17VyTc6NfnR|
zBu;@}h!~8bW4Qv(D4=x#u59L2SoWnt!JC(g1(b-KCOlnuk4}o%6ya-l=&r(^SwLGQ
zZ>Ku%T0nbMSBC;Rss=hyEn<x3GNXd5lP)4>6>yXX#qg$=@Bb+4ZUvkpQ*6OQ!;Bs>
zNZzx6b9o6UcvEgK89!fH_b#AM0WHon`pYYp{el8m`K*e*1@tSRe*ptz`Mv@MiZE(Q
z0fPd5Q2`f=Um_eV91_G{Dsou?Lq#qx;0lo|3%H)0LHw!$t}fsj@nHpwEMS!QaN!7H
zUWX%%F5o%^Kj->SK<Lkyg7=(Aa-)Pd6>xI_W5ve_88x2OB7RE&w-#_mAfHgc?cx)K
zw+U&VNhXQ2=kUkiodrw|B&_he3Ye<?e0Kpe3%Iv{X$9O<@XnOuIGSDn(KL)1BDHv^
zT?22VjO^$QvHN9*!C3{&E?|zDY;FOMsJ++~A7J~cPd+51<Y5uc<d3RX^Q53uW6$9H
z0u~jpxPS!(ER@;Dg-;dmgb2srlOp`slLz%M$W%)T*r5?hzLX7J-&jWb>>e`ywDjLB
zV5P`21w328a|JwKz-t9;WE(|{RRwHdM^ayUp@7u|KD=OU0WTK7$&DR}8LcbeWfkou
zVf-X7_g9pJWW9v^w>Va2`7Q>#F=xU}isfAKMggxEa9JbI)cE>_|Jz)^mIAg)=T?5K
z#Jn`7-YVejf;S1XI6PR1HB9^4RhD<<Pt!BJsQ0L>Od0!u$cF`dRKQO0T?KriI@zsK
zf2<0psrmJdPbK-RfIS6tjT-$L8Ejl$1@>_&DBy4#9BG3u3;3#lxu@ZQ)9`fx`#E+>
zFrWnA6mXz`HbtCS^xEs&0%{jgr-<*^F$(xzmj5c?Z+55p#t#MjSinyO9Fm+h^DFI(
zA5mxfxd7hA{31SG1OKS{%x?w!Ucj*e{?NE)t^V2BDBsh&k^8fNUpgLd_kTEh7g42%
zzJ~E{0i~)m=3*29xmTu$vPG0DdJ}b}qIV%EU*tK!Uh)b>Z_ckM<jo8xK+fST5u3ZJ
z(pD3)y{Z>cqllVC)GB&c0p3*58h`Axb!9mr&6C9I6;WTo21T4)#3@BIEP{<o%Z;Sa
ztG>}#nOa3}Qe|IlQbf}tnibJpa#Pr%h?Ygv<0F8Atjtr3-eevU4sYvqq|Ff{T=cFf
z919V;Cu`9nV#<h?<0`DJs0%6>Njg?Uy69aU^3tJKP7#?RvPI<Bh^3{B>Ri*SC|A`r
zxx04*Qz)WX#K3`G!ApubO$JXd;tUySU4&WL^NrUL)=yg%|4<Q!i)dFw`yx6N(Xogf
zMZBk|PDS)8qIVIU6{HVcihSNg*P?f}811msXBW|}h;xeG)w8?QdKSHFZVyS=Y0oX<
zJb6fdkYC(z+qa1Gr8!K<fpb9-7qV{@(N9Htu!qsVhyg_mWkMFGh~1TNv8s1a5s&El
zdr=V!S=CYF63GV_F@%oQH|PfI;Zg}ND|!Q&ee#MTt}OBZbK@%21IPQ+E(Yze2v-+z
z4HFv1S)IJ0I-CjBa3fiE-As-uVssJL7IB@@ZYyF;5!V;7qUb%G-cZDiMcgCKUOHA4
ze!FrXCmb)lsfe4UbBpj+;RNAC;cY_yD?E0ONwRZ?@XjJ8D|U+TF5y(+-NI=?|Dc2E
zMa(E-W)b%m@mLY_RKxcb@lX*D7jeIWEaohc*+t9|nJaui_@IzFoM$-1NcelCh(}M5
z&ky*MMJy0sSj6M(nTGL1(VK^vmZ|*YPZhC99xfIx5iS)j6D}7rE$j2?B32ghOcBq@
z?5jmQr{D8MtWv+)$n&3zAo91ih}8jKBSK}$Uo2vsY`!FXS@?=@y>NrDbb^=TYszS&
zaFg(L;TuAh;>{v9i*FHb6|(2BjBge3cF?2VDPnsO@5;$qoNv2$OQyWTVXxrL^ZP}7
zpoAYX>mt4^;v)rjYHr!Z9$v)9Y&(ATTg0dAGxZIQ@z12gvHW=vdy3er9?l@UJuhne
z)U{}w+0oChICi8@{<X+{`Sy*bwF5<btByTYV}wQy7V*92NlqO<sHgo{#80wGgFp8$
zj%YB}C_&8<{9ME@96>Vsw{(sMdHq(z@5<<yUlsiROXN=}{3Yz&$@oX9SR4NqQ5tZg
z1Ss*Q_cFq=LI%r;lrKSrKvJ;;mBcFxs|c$Ks|lH^x=5Q5My(RmF7d7r{Yp@$1a(W0
zWUvG$m7rb;Y(>=<HZ4K35;Q15L+a?^jx%bb5^r8TS$K-Dv9O7dmtanw%}cyXRlEc(
zlxfQnv?Ae*RDw_m%o4DHc(WarTBO9A^Q{tZKIipoDL-NBY(z^CEAggHo`Jx@OKW_(
zr_TvFW+seu37iuCxq~;9G9}*Sql2RUA5-4}zt#A^f3Ei4ecF)}4J}&FUgtc|bDr_3
zRFon`Xi16&8c2wwg@jZZMumz>W>!WtC}fAUX`%XG_w{tX|KIENysp=E-uL_7@B4j^
zbDnc96Lu7`)}4IlEZ)V3u0Gsm8PCk0&u9Fw--m!mP#6+Y9u|rC5cMQ6AL1V8%QtMF
zSr|AzB$ar|hbw(%?nwLK`jGL#;-X#U&x-Rh=R@A(#XfWs?=I{iyxa@z=|eA%_ofYS
zCBPfymi21hjF&z>a1*_@_?!>v&wPD2>BA`>uJK`j53l;L#)oTt80f<!A1139gM4Pv
zzl+?5>(wcPCAmR-Rgrb04>zeULn!fKq`GFPaF{AST>U#jv1TT%TNE^gP3praA8yqp
z7cisMn=}LV-I}a*yJC&^VXP11Xk9#r(2|lJI>CoKq<p7zYC6_sNfSEJhXp!UVdqX!
zkskJ8h7Wi9aE~tURjdbnn5s-^0QadD(|ow!hxw(=ka<9o!fZHQ`VT2tnlAMp@!=UY
z3;9eR9`#|C53_w{B{Ro|xk{D;f1b!wK0NKiW6Jt*AD$3t+s&F^$U^BX@R@xpf85A(
zW5NQkzgWkGQhrvr$cM!uON7gX&k2|MuuS$t6DrILD|~pKBf^IlrNDBo^5G@%l|pLL
zxvlo$WkoE^DX;jza{~sgRoQ-*<~s4$e0bf5^*(H%zGH3mVWSTdN+4`m@2KK$_^?UC
z{7u#REe+B|Ev>gz!3jM7QEKn`u-S+AefYqK&y@0q!jFY)fsfRiT%Xebw)pS~y^2QM
zrz+<YRZQc2uI8fO`+`}^qPB4?E8=z^cKEQ<hp&{~4=T*pKJ4;gx6kZ}nCvwvi+hJ^
zJpW-_AHMUM#l{{Vz84wq8be}9NPbjwYWg*He)i!PAGodlm0JMTtA%N+-&FE~#r~m8
z_bC?3`KK=T`*6UAgR-JS^!5t9yU04Mh(~DE^^C=`yZ`dxZ#CC3;c-@3-El&7zlQ67
zAO2-6{J6@G|9m*@!v%gc^&4+_#)tBL<Ce+KDql;N@S}tuCH*MnH-=r>k1~Gn$cV$4
zmu3CNXt|0jr$iW?L3B+O{HW-qR>_abelz^5_)*o5YJODr8}C<}oF_kiJejp>`Hfev
z>E~BJ%)*8#&u(uONv)2suCShvaqEjT5H=Jx5;hi|Cp=%+#E+tOX1c%7k7j<v{Yd!H
z+;3Lt?NsKA{J5A^E3&G#vs(DgM8g(n=|?L+TC0SY_{|&X+xWr7FoW9q&mG@&E@3Lw
z-j5D`d{<;$>c?e%RI<>~k1l?6^`jG`_ps)2o8SkBGdCKXVz_Vesb&1iJ)o8es%=Al
zgxSuVBKiMcHcJ&lqJCptF(FUnxSuU-W^E<n_>uG@<wsg6^z@^bAFg=Dk1T6ySveM%
zYkoiSlJ9F__QKu#=&m;J;m7476!JfGME+TfX4%_s22LM8u24CzWO-=tI=7^}O%JP|
zAN^GZmgj0eu3;j6+{oN@sy0AD*9zHa1N|7}H#6*YLiX?VYTLnnGj$#)wr-N<SU<-3
zF@$E|$1s(41ksP-Dg)EGsK}fNjPzr)ADqFN&Mkh7QX7)r%5KeD+{caa<2I$waeBMb
zp+lg;c;zzH4^HvCoZ!bD3cXWJbeA6!{g~v(WMy}+A5;9eTYO<@+~Wri9M~f#9gAL$
z|ChhIh@b5?Eq0$D)BL#KZ%)#_;r>NgKj_DFmb|@Dc*t-3^TU43@Z%BX$hzDM%oJxy
z9`$3E$7hSo@nf#Y5go%mPV@8Ql^|XXVm|xAkADKjAQ$-Ylq%%}@U$P#_;J9GgMKXZ
zT7Ih^&-$^*kHwO-qlfoniTHEErOIWQAItq%p(;GDPN7So@w`BZA20c_(vP?Oc*l=b
zeysLmgC86Hcv(Yit?(7$^L+ltk2QXf(29s0BkTNlO`)#~*9!+(W>mi62fYUe9XThF
zO@6$o(6@x#A+pWi75}Ip=l_5GW~sB;kM||{z>|OI2bV@n=O@SD7Rf(R9X}QSjQuOG
z^|>D$yqmMu7j$2KY?IDjAyeM&#}4W5l&yZH(ebq(yQIM7J!`aEjrI)<k7Hj7bl`hL
zzE=<n@B_!JSGJ!-e&#8VC;8R$OYD)~{P<lqO#Au6k9~gp={E~J8peJ(SiU)&YKQzd
zEXNfN;0O)1g;h0xY5^Se<1c0UH+^*gB?CC-H?MJHl;eJ!@Z+Q(r)V&KSOFk_f9d>X
zqG$a$O$+BY=*t=_J>v(LyM-5j(Ft>`Rj6Q^+AXqX)<da)nH^Xv7P52zWdbN0FiyK%
z0ObQ_Qlm*%2%usBl>(?tVK;NTjh=@|(PLBzfQy#FEiEpjSug&o2T&t`ngO$lW^>gF
zpmqSw1Lk%HFN*?b7%(#qd7S|222d|xRu0UC!ukO-pc(|siteVA)hK|*Yzm(I2XH|E
zO#?VTU<P9om6=uGp$dK1g#k1RphD72;)OLHi*!){7YEQHfR+K{pn?IkQoff3&@q74
z%p!m`%$nm@tH-uXGl2He=@7uB0kh^Q1pN;?1<+Yh0s(Z9Cd*8Z(N)|RfZt1yLIxEQ
z4+YHB!*UWM;%xA!st^kxuGZ$Xl?a%5$5v9DZIc0{0!RnoO7r&sG67@**c31(lnWpq
zFsCJ>0w|WkfB>!)=@vlu0D3SqfSv(d5x|uJ^it5x#imrf#o7KdI1vQUH-KxDDLehD
z0Q$2E>V<w%dns(@rit1Rag4Ap28s_<=&*qC^MeAoE?`Fb^#Kf~&9t;`P$6$r-_3Na
zo75~r0vIa7LnImx8;9*MJb)3*U8#)>;1=>Ci}hkT*TEPAb#4t{v=qh!a2p#ifU)dT
zT0#Kh0vI2_y#Y)OU_t<Q1TZmxNder+BGIK3S;vyrUE+Kn3v;B9gKjcyk}rQyVeSs#
zo&X->GaKD3-b6ms%DOLrX#p$`U`4=8Ms#SreRjX1JP^Qx0Zb3zA(}@3^8<J?fEg;=
z9N{CvnZiefvxKvSh2`{I@p;0>gpUiK5EgV6h%XX8C45@=jBugwSz$qcvG@|<bHb&<
zWx|3Eoxt+}bKCdu2<r_U*}W9N$^g~|ur7dAvcs1HcqIUK@oLtQPlU2r&RDMoutvf+
zwHaZL(BHlm!0Q354`2faMG3y+%NPm0<wmvk4=L-EW7b7)1k4>Ynhj&UNh1m1?Ev0k
z!v^q$%JyCWn*-P)&I6G51Nca0^FaU~2Ka$L<CfWF?7LC)Ia1?d@)MCy1NcnJp9ip2
z`O<jU#eSVDekq-80c;Oohd2k$PK~mUG?jc6z}Ern3Sf5t-vqEHfbRol-OIXst7KX1
z??gED{2&Xbku&s1wbf5Tj+&oEehJ`Lk-eV$H<8}$tv>?T7r>t?!~Osc1o+)g<Hq?r
zDB<7A<q-X(WgXV&J3{|2`}|A!av&s=*0BJN2XI1BIJYu7hsj9|-ctdySzz7&4dA~3
zP6u#?xd(A$(0J^#0R(~w24MwFECf*^Xq-~XATE`pR1l?uC=*24Aese@BPz#;LF1@v
z2T>u2ib2#08gI!T2Y96*DhE*|XhwbYAZi3rHHd0KbM{Nu$E7AWQ=H-%%3sZ(Sz?he
zE<1>676nl!h`KBfPkw^t156hNQ9p<VLG$J-u7?{2&GML08U@i<{5;|LLIyPvxj@)7
zi2eGq0L_(83N=^xFA`oXY$0qZY$a?hyhPYW*jCt1*k0H{$ev<rT&7m)7z95A&?$({
zL32yJOAuXy@C7lYrD=IqtuTxEgXYd4r%pC?D2PZ9QAH06Ir?Hj#Df^1OX?(ou!C@P
z*}JJpBpEdBt6LDMAksm&>a3iQt(OTRD`j%t#m)zf*;M0RK(SWnq@uf&djxTL5IuwF
zrLLq7@A8-C6u|E0QBn|BijemSqObT>!hXX3Ug*^#*QmAkmpAtouMJ|LSN=iFmt7w;
zixYMkNBv-Bx1$7ZlFrB=ZV?$0#85BRupowuj}WphH;Zt{j|$>e@mWE$6d4`FG!{<>
z<70xjja3VR6(38x3gV6+#s$F@J8L&Sc<u()ok83c#MGeK4{}^g3}R9clY{5R2qjb0
zxpxQ6MDPF)|AV+UXuJ&%!B_>ZkvK!$r({{M`&F0+WbM3sFo@|i0M+qfwfUp!f*C<G
zVLigdeAb%Dlv`Sy=^Dc<KV~b1IYG>2$%A-Iqmmu{xa72f6+t{9K0k;jS=oBlf}nZ!
zX?YM&$()`J;+Y`mi0ETEnig`n@loL*7KtntQnG|)@c7aomWeYp2C?KU5A%9Hh!=u*
z(Tps!mgCCpr65*Hb5#(lgIHg}>{4H*L#S;|JUFJ-1hF=VVId3;VO<cfalD66Eri!)
zW^V+sNv*M7xFLv*UcKmY-(<T5@m&ymf_Pi<kAv6}#5?L8mgijw-wR@M5bvuPA1K)m
zl^WNLAIS`Ou*1&!Bxu$@UvOOLPW`7rd?vNe)%aV*3xn~?AhrduU5T?6Uk9;6e5dd$
z;nMb|W!MqBg4i9zH$k(S<w}xm^=%M5JY?~{58?+YR|w%pb^*Os$T&vk@^jFvfBuvW
z{1U{kGOE40{7v5Sch6`3A+nFCqnrIf90=l|>UA`Tzc_YO@xwtJAs=q?Wi^=#e}4yY
zDu{oAIHuYi7gByAh?5?tvHcswe`>e0L3~)*`0CR^oT24wuAxJwgQAC=WtqbB-Co2J
zA>39HB||6`G8HKuLYa_RU>96j*$~RHmw9p?GO6)i9z7uoRxt!(C1GVLR0)|CJDah3
z2sJ|J7(%BIYKBlNgbPAw8Zvu<+9A|erbSAPtyf2J>k8{pN4o%~+#qDeQNxg#h8ihK
zW8rxroG-$XHwp1Ov*unTbvj;x3qxoYLUR?VRS2y^#ur_r%Zo#1jJFWB6h6u49u>qk
zVRmgo#>upmq@A#Rf%E>a$fY4%CQ?{Obq=9R2-k&heF$Ac@P#lSWF}L;bgnLA(hPVh
z1Vadg5Dp;{LNtU}2=S1)TSuJ&CPJ{K+)wBTy9<*cq(ss}SC|npdR8PS%nOS{=q6Gq
zXAf~|ULHbE@m`*!x5yPCT<J;rgwWUHS9vAuFUi%yYlMZAtDQZ2tu6<K%mQGLkQE=y
zmJDHtf|&1(A@l6PO}ZSTO%})UP+hVIY2G8)n;|?E#?xVp4B-|wR2Y#kMul)I?I(;{
zVT=x8ObBm>@D6QNaqkG>PLbO~7%MVPI6j1am5pUi2=Uv&#*^O_!bDluS}9BlVRgtj
zdAG=#9KsaY;oTwJBb|FgcwUmJ!uvv)CUU><=@1?W;lU85hwxAcvqG31!ov#U(0D{-
zhVWo*Yo;fERD{`4XHE$7LU>G)xt`|ZAv_^IKV<HtGcGj?`cH<iKtWG=$_#o&d|?RB
zhOkKdxe%6$EEX<NI@IKEnItPhSS~_IA${TtlDsH<$qQX6vdT+=E%|Z?uV}=vNUw&l
zCUkCkJ?fZow=RU&I0c0G*>r1th)W|gU^h^|$lAy*;No8myGdBs1-unHHzV^Fz`N>{
zFGBb-g!e+&tjqU9_)z2nxuyv`=;Pr(4Kjo+8fBk^@Tn5yJos4%pNFtj`kd&w4WV7}
z>0Fll0XffYA^aM`UR7ax2s@;?Q%KFPB>y^uT_NmdEp$owFCyOxzYAfH$oF3851a)&
z{!<7)7r5uExqSUi=^qc_L<qmLz9H-j;m;6`O3t$F7daHd0g;2kkL42%dpbu#D0rv8
zJjvf791|}*qIOa)j??$QA)J!a{wHJ}&1K`W7yb+3v<h}cQ7VOTR=s0|fv|CRCBmpE
z!r7r@7^TEZ3(E+pQ&yy080AGO2)Q(35YI@7^w^cd#`RSRqiPt{!sbMxdKfjrX0^7|
zd(kLe1Z!P8Y{up#VHAZ?Cycsb)RW}mFzSmmR{9OZso5}$hxz<Z7~Npzrt`u$Ka3_}
zvq5VfM#0Tq5JuB5E)1htm|thGUa-xIs~UHyY3m{tjOnnzjM5^EmSJNa{Iv?Bbr`%m
zNzP4cn=slk(=ggA>rP>_$Y(_UI)rhlgskIbVRTgPoN5PZ;^-VkmoU19;S0kbMj(t}
z*gOZ$h|H0vMuns7kV?WMooZ*#M#G4OG2Kfu9!5Tl;xH0n*kL$fB*Vxklx5pf-gwuP
z%9B<it}0$~gsD+Bj9l1^I3~-@U^m5L))T_$9!3vcULM9Rs&&sWdWB7Dy~7w3Hruo-
zbV<pTVe}F2E4)hBPuO2bovXvRMtp!Lxi*Y}9_R5aeam%Bmc^6j87y)`7&nUCBpl*}
z4iy;|#&D4l!kdL7g&UN}s4#A&|Cd$V#_ESLMvXuVXXA`jy*Qza3mcb0Ay*XR!)D(!
ziVy#X&8quOA<11L6T_I~NhXU-5#BAlM|iJrs_?!rrin0x`$ZlQJ}Bhj>O(Y9wet)W
z<}vX{gfoSYhA~TIws4M+eKa?WdE$0$Gbs3bJd7ul?EJ8?cK)6WV?h{4Q>I?raX%Br
zLRJ4$MSM1l7eyA4D22sgED7VeFqRfti5synmW8oAY}P+3_|&3qtW@LrKa61|%&_GU
z=J0<hjFlV?N^PSmvReG*FkVsOuZHoOB#pQc2xDy+>)4Wfz@86dlrk1bFa0`)Kacvu
z*bp`+y*wmgAHAW}HVNMpz9oEH_>S;h;d{c(LPmT)j1R;=6n-T9Shz*_iSS?5=(8|B
z4`XW>Uxe{X7{79mD)cM%j%96={cKn9xT@R{#!iKDZ^ew*@?Xo0cZIP#jBhxg!uU>=
z{V9w+VSLX~$us}3xy8Va;2{hf?MJ0RIaA<+e?RMzgqL&<OmlA-zbTR5g@1&xk2-w#
zKa2xm98_WUht2*g#q)nEr%bZDi_D)ONREc_7u{MMd^Y3nFpkmlMA0dV<6)c#<IxCa
zMQ}2VQ(=T6#(w?@<6rv5i0KPn{-;dqL`;vI7C%G(FG5SUBCv}sL{K7vk`a`O7_V45
zf-(_f65L0Zji6k_?0p!$d;}FDs2wp=MnxfyH7bd43Lvi>G4}|nL{L@2YQpNm8p4{w
zTEdC_P3?-rx%1-9ySn1_R1228egq9vo`w-LilDKIbe<%%;qh7woUhAdH|v53nkwRj
z!qyQq6KO7mixl@_Nm@kEG6Gr)vuG8OyWk^0Ev!o-XcIwO>2Sfo&~_2DkDx;Ymqy@M
zI+v*#eG%i?I!4ebVh&r_VysB#2)an8tB_Ma<!m&rOxVtW2!avwSEiku6T4aAh;dC3
zrN)e+5yT>hN04B5M9h$%5rGpid)t1xOp2#ei*y8T#H_M15o9CCslfDdd6kM*eN_a-
z5p>gK_Xv86u)sY;E{~w6C+SttDYC8*xzdyOiJ-5zPm5Ki$pu?~mYEMTL~u>S+$$fz
zf)$${yf%V?5e#Bz1fwGuqe@*L!H@`sMle{HH>hWC6u(Kxmf=AJ7oWqJmrf*xOFlw)
zv!^pMf?LE#d6HXc2|?@l2<tYsMg)^2=X^Rg!t)<vrQ;+SFPtE}LwKi<3U@^?QT*ww
z(Vr|nC4##nxJUec;l0AC!uy2NghTcBq6fqu6iydDBxHgQa~$dZK1a|aGKQHEaGl1>
z*%8c9C)SQ)ZUplp*cQR|2p&@>E{xz=wyO9OZ0D3UU(uh8U_k^=DdOAuXW7%@&nT1@
z*iIvTQ3NkVuu{<%t1wF<cuto~g;ZM>!SV=JMDTnBFQ`*qjPM_4)>pa}$lm0Sr#-78
zSRKJ9UaXfRcq4*M5xgSFs}Zb;V6DpVI)@CfE`rzC7rLv(>4}!VK7tK0@)uiL8|8~A
z<ipQzD%N`uY*y%75xgD2JM251V85&Mxsqg2IcnZlyKRZ!1I1$7ei*?=5q!+?Qf!tP
zRAcqouyi}*pGNSRSLV+n*vdNc;r|G}jF@SN3cQ(4pSB}{oe_K&!Jdej2ftD?e#5q+
z|5x-~%5JyXuoibWQlKWMiSHx$A%fCTl!>BUN&KjwgG@){=Lmj@;8!KW!TU!9dzI90
z5&TZysFPu?ptxe(7r~zq?2q7p%D^fV+`e06J)tw(LrU;)1V=>JdPhb6ir{Zga!lm7
z@PzPW1gE^ve?<O`;J*k?i=T-A(R1tGvyxc4?944d6eXkP-!!G7;E&mn6ZtC}H6E#&
zgyn?gg%yMqqo^c8&B{?!@px4cK2Xi7Rgaq4q(&4qqo@_dkt*hrKUTIViaJr$je?!a
z4r<3%<z0X%>Wegp8c*9$yipX5qc~4VF|P|0<$Ph2sF{*@C#Y!@7e;kgy~t`7HA`G3
z+dPVkq(**m6fHd7QlwQBtwk;ow(&ySM$bK*!<5^r03DR|rBPg_%PWda)jCJfC5oqF
zcshozQTU>GDT<X*_@f9&?SUwQY6>ckh$0k4IEsjZoG6k}M5D$^W73IBo)Fr~jvrrR
z<ENrXOV}?8S8Z}-)cA)?)U5ZiQRJe?i(f7*7IurGdlWsQ;Gd89qb8BfOVTrnUQzUx
z8iiMg%qTKyeUuTKy)XMEY+a@7I1%($BQyHd%vw4Fgx3lOMlmRg>!f_WBp++;U^;^t
zQIZ>lHwlLbhYE)YhYJg5N;gN%U>vEIxh0BG3c59lu_E-Pqt#7gqPUH%6gAJPu?-8J
zXPnA8K8guZ+~HZ{T~XXAK2J}f(0(TBa*}YeaEkEmDDDxV&b?7g6~9k7O?bZ-8mMDE
z7{&A`9#UbJM9qrp;V5RPkdM&AM=?)@nHj~S>P;%llJe{*_;}SEajp;^Q|Nr9{5Vsf
zr&4NMCDLr3lzairEQ+V2ct+_j6f!OkI#}^%qgbTW7PHKH`is_1fAw4xOQpF?3G!wQ
zdvJLaD<mX;o{cR2q9<X;t%_oG6cuBr6vN9=yrNoEh~ZV~ydT8}QLIs^)(Y1}@mdtG
zs}^rX@pcsJqu3BNH)2@+jZwUzAWpcOqQ(`!DLW}FkGWrahlvzf@5u<?r4`Y}`dgc$
z=N`r6wEm&0_L*}3NEP{5`EHTq6WPh9lJoBHQpfr{YEA~WD$_5>qu8d@c1WK+yIs-Q
z1v{hoDvGb8*cHVo33o^FO%w;jzZL!%#ZMyNMX^WZdm+>LL4+0gIf`GR_*0j^3V-u-
z_KNU7$khKmia$L0J`u*<FG3rp!a?yvp3Y%<%P5XU@s}hgJ^9}v$G8g+IpN9q>^&c~
zVmkjs@vnscMNv9t{P}5Jo)MlE@@*rO^T+p+m+*MW7)p7ZkI<J9FDoo3EMExK`j)<t
zlYV7MXiLEus>Dz=W_)<H7;1_z{pun$V&@*btQAA;7>Z)36N4{i=7PF0)QjPgm>EI!
zrQ9fn#xXRAp<zt+P-M|;I7OZpGcyI#Y!buyG4lsEHejI^7sSxCP&PgYD$-2YJcf%r
z`NbkFge_xe<;h#e&i!Y<jnZ$+GQ_~cL;lsSy~@)ehD&2+GP+C(9b@2O5idJQ*jd;`
z*j31&N|oSO?E=h&&84x-mI=iWjv*35RJq?7!(B1N#N#m}Vz6UyVz@kJ=C5Sz+>`1L
zaXZP0AcnNc<0_YoFe}Un^TJ|bH(_^S4<So6b(qyNhF&rBj^T<Ju8Cnl3|A_&a4N-2
z`>=P~S$$);N@eILq`W`X#Cc@IOK#b&WwB!z8N<LB2B`|y32%zwdXd3GcF+wm+$he&
zz(RiwiD76A!z3Io91%17G9H>0_VTw#I4Xu)V<<e^Ioj*}+eO9*Zxiy?Jd+)(DC1%n
zFET+$`5hwMzf2UlFNSF`Op0N03{%uc_prf>th;08Ndp=fm!S8?Fg0eLK;YhoW?57L
z_e=8$r9jC8F+3Q<^cWtB;o%tO5V>)S;gJ|-iO&>1D!dma^!k<-$!tl;DVZC?JY7B}
zeB28v=<}Rmehg2>%mQqIMhESOP4P?&3uE{xhM!}2HiktqiM25-j+y-|2h{U1ERpaz
z;ZilxGLE~J*76v5|7C@0an?3fdm)AwV|YoLOn*%bD`QwCh1K-`G4p^5|M|<HS2zX4
zz#~WggQl?a<$TRW^*Y6UEr!=)SRca%#oa35#u(m?;hh-Xh+&f?Z^q1>Ag1<K%-onO
zjEi>_RE=x+7~YFvGrfUjZa23D-dAcL#PFeP@1qz#j$w;x^ob<vOPHI~+(q)BiOGH@
z{m-Sq`hKD8zEt0Bi(z{VJ7U<$O2x1zhOc5~>G*XFyJF{NtKBht!={dzRT&))hYTBh
zhECqNUj1I_{6ITVfw>K*Q882M%mIFh;nx^W$8aWwy;5M%VUgdMzT*C&%YDK>mHYk}
z4#aR!1wN#{W~N-t@(%@!engr_g?|bE79LYIkH>H#20nj&GKPORe3alR1@Zj<KWXyd
zi}$%$o&9I^Rfagq$59~;#8D!C?q63lgOYKSj+@6XnQ5uGnHsp|DMJaj0CCew<>IKO
z$HHk~731c~<SKDgm1d>5apRT6c~Dj@Zl-`bany|)mtH-N8j4F{&A6GGYsFDJjv@+s
zm|@EjGJR&pMC!#+KMww7*y7FKI2y*$NQv{b?R=%*SeNI;&7D)0htZqFaX}nS<L4gy
z;Fgn}(kzbVaa<I~#jI=s6%%L?N6R>#kK=_nTE)>ij<Io!i{p|w+QgBL!)0r*<Z(pf
zh$)x$Dt{!7JBzFiaa^i)xGav2adc80*{UJwbdIA-99`q^#f=XM#Eti6)A{4zD~$M#
zJ}zm3D*xU(W^o&43+UOoNjhtaD>c@|7D-5xM{`cxY^#%Tq*NX@5!<kV4goT8jF2!J
zM=p+h+&q}a6t0V-IF4>{bdRHl(%~xzE{~(9QodG_UP4Z()bAa~6}r4q*hkn`$k3}q
z`o+;-<Z4fTjmQ8YcX=$;K=te(83vbd?8@uoW-m6FjV84lWdk?GF+^l&9K%J}iNiz+
z|AycbUyOURsx~r?TSO=sC30&VqeaGe^4khTNPjXujtOzx7ss?X?ogHQ5#A|eIq!;N
zqQ@u2F*%MY>a4rtX2HoS^R$!M-K#S5Aa`oqxL?jn47y(tm(zsk|KoU2QKrZ7P#h1(
zLBm_9STo{yB#xPJJQ~NGIOfJND~{O|TGp!mR^O^-bnxbs!$-E_cr1?j8f8rXakd_f
z-!jwd1Z|)=G@exG0wLS#sW_fib3Nm=9%ra$<5(2OVwOSk*U~ta#PJ-HYH3cDEA=zy
z^UGwY%$n=o6|yS|M<lHm<9I2KFW7x?tc+t-99xw#HQAo4<9IoaS9ty$$D3>@Rd9_I
z*2S?_l`?LePl2j&Si;xiSTD5=adS|)QJj9@jW{-`F=^5)^V@N}6UPT}e5i=;O6|S4
zIc+uuz~}!};P=%#g(rMI;;5I}#*)U3Y>DHOI6h_L>p;F-OY1Xr4JX0RRYLBMSPM>7
z+v3=+Tn@*vLxk!78pqB!zS8B_aeNoY9$C?@xLI@VX5m=?Iu`Bp>0?<cruKathsxnc
z_C6m3mHr!zte*--$ftl*=3j(-ly0vQ|BbFm3V%pWJE8sTQ-}U3`TjT#sAXtr2SpCC
z4NDjwawLwUar_m>-*KFd<4hdK;yBJK^RHfUoKS19RHu~DN#P$Qj5lVj|Bd6nxOtX_
zmF16K@vIa|CQvE?D`D)AKO|5hVf;KhYZTA_6UN(@PZ(!XCSiPjSs~vDS1w^*olQyM
z37<*{R8An8KrDeO2~<^rK`JLuUHsw%YABuBj3`nwVb*xH#5uV$qdE!GmFFqbx(U=1
zsV{6GY$$9bY%Js}8W@qqJ74KEN#KHnIm&CQ%L@}`2i;7_+BHw$A{FN9vZlU_)gpnG
z3A9R}bpn?p(3YVrmE2AnwFCdgMNR&ni)pq`phE(eCU98-ezgOGI;t356X+z;Ie{(-
z@Q;Tn6>J{=RGl#1fQ9755s*$bPIGmwkV+C3MpRm+#+j7;6;B|aKyd<zgy}w7pq+pt
zon*qej+A0CowSPKCXf-KBrB2=a%8cN-4eJafdL70SF9chT%JHr@hcLzGJ#$R^kxgR
zwD^$Q%`nS=<BiZKfvXbeC$+u_b1UjdvDKe#k}#f}7Q&H5yPD`2&JlgBiaL-sV3|p6
zPy*LUa(x2B6Bv=eU|rrIWTkFQ;3kg`5g95RCgiR5n-dtBz%o_jmIOv6@SJ*tac@;q
zEKFc@0%H=mjZqSqF5%b&#w9R0fhoEipTM0W6NGmN*(U6fyTm7Yl1T~k*CYnroxnX3
zKA6D0BGWvbsUr6kE;T{iFa7{qPj9wibdrY>c$g-~o=RX&0&}HP*qqK3e^fXtf!QLA
z#UVV;<4-2=m}*M-<FqADK3{~Evq0o2;nQB|Ga}5Lj^fz_7U^<v!uX9PLK3cuX(3D1
zq_>sCa&_(sT~hwM$O{Rq=RaKPS}PM+#j$+WJdC|MftP96lhJiDUP<6pwt0Wt-XCic
zSernfZs^+$>k@d4qc4M|8NAL!5*V7qup~Alu#s)+V6cNX64;c$*EV+9c$1}~`Pt}W
z<Lw0ANg!t<Z{ytr-b)~9BV}WA0`GIo+PK)p2MM#9;;&;_>%#;-O5o!Jwj{7Gfj<-Y
zB!N#8*h@oA;IjliPvDybzD-~&t*DQ+ErIO`e339;JN+_&T|7yyW<FrY-;M;nVv$%o
z-jYjTQq6PnT?y<i2wPgUYg$>oC;YpFdC%mJ^e_qRQECf03ncLOAJz{XRw^FT`B@Qv
zP2d;01wOFB(b3O*{%@FGdHQ<-e@OmwRjV`44Suqyvp<0Y3DmdIz&6!9n829?&L(gu
zfx`(LN#JM#Clff8z+cQRf#V6BNPvGrIhFv=pZRZA=1b>UyPA1DW>Lz#PvalDvIPE1
z;Ix|VY*iyHAirzL$1}LPux!9aRU6f8l(13KMg<!cZIn_ms9)YjX>pG6GPYU6m$gxj
znj_4Hk>iLu>&sh}Y*dz76`|QI^DT>Y&tY{NHEa~wsH4!DHfq_ZZJX!wSp{m6OfI(g
zO=R-A(y1pr+}z@yF)8G)p^ft;Y$T+lv5oUQ&U5J|HZHKyRFY<%{6djJNt)Z{?{9_F
zT1XxiwzSboq_vGpMA`_u2-^zV3EK-h*tk^WG9eS}DALJBXWQH?;KG#ys;h)Pp<fsf
z28AIZKYYyS5pj~JNK6>Fkr1(kY$8W3cBrY9w&B{y*vQ%_e4mtY3$LtU%NIzojczu2
zD=tI3+vs8Aa$UYq&+2J|S^viO*6Llgy=?QUQm#^Xd4;XB4j%j4xXQ)`8yju(v(ewi
zP#eQ+Ty2|Cz~4<auAxM+2H3dP#y}ev()ruC-o{|%b)Ah{dK$~W!8R}7zR@=C4<EGL
z`o}UKX{FH)VO{tibe`CBFohXzV}y;H6?bP9-iE*}HVWUPA0^>9AvJFm87&+myiIt!
zaICOP9c#SE1RHnQxYNd6HWt`;%Em++lWfee@raGdHm2Bkz{Z2L5F7W{xYx#1+pGkb
z5r6!f7#o&N#NT~3rrEfkqlO*V*LtmjwNW3noNnVG8xOOcH(3o@nb$ZM;xdt$HXgMx
z$HrV0W|nZakak<hWgdIP#^W}gu+2YPIgr08e=dc&6|DKRE8DD*Ht>B5+#2(>pEjPc
zvBJjlHWu1=*2Xd=$kZ0uSZren`%5oR<2ZfJ#!?&HZ<5c@kJI;Z>2p5qP{e2C@S=@Z
zZLDGA^T~f3t8A>cv64efyVp{D?33oy-Fn4Fda5z+Wjqn(d+Jyo8|!E)LrrP@-L2PX
z9yZq7=-?@A(F)-wF8gh4Ql{_H|J!(rp5MkhlF*C`AM$1*tb5@dMC9)=wbs^V>AcTb
zz{ZC*KC<z#jU6;juKaC$V&iigTW#>|(|q~!LY^Jj_)L~*m9bi#Jv+U%^%C#@+UAoG
zwA(LjY_qYQW#CJPN?1qr^5LB}zLF{Ot<-#hcDuILZX4gwaXH+E;9DEtsSL+#?6L8^
z%>!rSmwq7H_}#`IHhz*xP{{Tq{%qqH>HI3BWUr0i#0#UI687vq8~4?>{-g`i3(WW1
zIAG(TjYGEi{?TC@M^vgqpIUsWFJHocR6~pv8Omqxm0F?Qj@vk4<D?|j98`C3N@;S4
z{X<Lk%J84aX&Yy3oE5hmRB%jPAS@x|Wl0C6JYL#CbNYV=Wkt#f%L^%Ibt-zAl|(8#
zs3KBTSg0?zU`)2aYdNUxAnqXHpvXZT2T^HKp{|354jSpQp0K`y298<DG;L&-H;pCi
z;_08~;Cu&799-a_se`r-+Bvw;K{E#zJ7~c|I=INe_N+xqUYIt>2SJJawRF(h!6gok
zwY6F~=BwWYIThMC#_|K)Bh!o>bkJod2bVhh0}eXsvXD;M?k2SZX^V+;mYjJpsH;jy
zd-FM<$MZV~I0!oCI}7}l1To|w>=+y7FXG_e9u^5(Af|}EMwacsanRjC4+lvJy9ram
zw2=C)NJf|y=7f1+v4etz>}g`nn`B+?pr?cD6lDI9r#ZKmgWi%{;owTgtcChGxJIO}
z@G2qY{T%cczgh@=JY|6RwZehIK|(Io7=<O|oOpwS8y&pw-~$IYIT+$#nS<pHhB_GL
zV62024u(4z;b4@5TOHi2@{DwFi-Q>}&v`<Y_G`_UqaBQKaGQhM9oSW@niDPlDTx{J
z$B&-Vdr)({g9%DxiGw>F+$sL7@Gb{Wh){o`gGml1JDB3&ZU@sG-0$EX$Goh*2o{mQ
zdv!Tgc%Sgc3DyH541HMSLE&`aLk_II=i<(g<PqUa;iJM?4rZ$ibA)q+^MsEH9~aiG
zcdlOZb@`-&1tKi@Qx2Z?_%pOCk8_AE^7vw!9Cy~Vc?V1B$|joB3Ny|M2hTfr)xjDE
zFF1HnQC2&6$-zqTRYJBT`;qT{XGHen%MM;~%wNFXE_+V0*1<YyZgB9LgV!Cb*X5k+
zi~?=%>XPSrXCt=&3fjadY@vGAo4S0<K}Alo^u`X}VG#dB!2f@VyysxEV^#<!^=-8e
z9em{Adj~%__*ikjbg<3A76+d=_|(B?4z@b@!olYXrE6sw=%eUe3$=dEwc4#W!tD;e
za`3f-9S(NV+BFc^bX;uga<JRMH%ftvB^p>!GxNcYZ#nSG8uFcrw8sIf#>*ca{N$iU
z5;c?f*}*ULlS!0I;#UWIl}O1Xeshe6XTD7TcM1P+uutSq;olDSJ2>Frpe~OH*?NZ@
z92RF>E)0%}|0OJ}-;RkNcW}bNN%0cNb8F^P9EMY@f9P8z|4(>Yct&_u$doNbLDJ~+
zk{wMfl?3~}9an})lu05Hw{DK{Ca+aK$@eOtViJ{-piAMuQ>o1FjIeP?DtozC5viI)
zHBVAKiLBoBS1XCyNnDUbQw0?zah|7BCyBZquP0Jp*g)7&*eHp{NwZ{ScI>$GlV%y*
zgoWo*e7w)X+rCLOOQLxa7bVTtRmy57!s2licd=679Nj{srLdK-weXT8+9c67iFQd`
zD@pq#IwWzWICH!-iC7ZxBrZ#$V-lS_c_4|-9`BMwSC9LW@Oykq4J#-f5{5l_B#EfU
z+2#rH?m{~WM<mJC^K?>4q&@B?kr8L&EM87L?}Zj8(M`Ny;Z*3M%gdAK>FM+m>7B$C
zB87hJBi>hdm9U?XDfCa`YL8!&!~pRvC1eKTgM`-!uNMv$GVTrRERWwLGDOJ24^LtQ
z+c1qTY22K|NH%W@ol>|ZiBU<cNn&jhw<a+<iHDMSIEgVy+@`n>Byqc!=KV>GO=4UU
z<0ZLII3bBUlDIR8yLc!;BS~Un(tJ>9QquUA@>f}JEVKBj7j9LiByl&hYh&>PUiT#N
z37x+*r^?<6-#VG*<;CI2ADza7NlZ_gZ?#XYZQKQ`IU|Wjl31R^iX>(x@n{myDHaWt
zj%b$n?4(%?%t>OdF6Z%5<T2snNjxDkKZylNJe9<gx@6*ou6$aT&j@$bHklHi^>h}A
zEKXvHC*f|0I!krAjP}d{Ue!pRPvV6nUX+|=dnt+Sb*w$A7uWeKlUU`Yuv+A0;VVhJ
z>d9H2bxFLI#0N=yn8fQztWV<2B;MlrPZArGcq55TQvQ318H3D}HdZh*eyZl}B;HBl
z-6Y<V4zuR`LbYp38_ms0a6?V!`Mx@fAGrA_iI0=`Dv7U?*up+aVuvDrN;jqUr~CR$
zlFx-(g<lB2Ok$e|J8ruOha34$ah_?vz-CNhcM_MTa9IkMhb&H2-z4!Z{TMyJ)Gkb6
zPZHlJ@dGcDsGdTN6n>)fPvX;-R^=3aNt*S;;Utc577*Vn{7uN9-;?;m<NHMZOk%$$
zIgrFbj~`;=Xc59#N0a#5lmC^(%8_P`aV&}BNt}@UEz7Eu!pS5~CGn3WRtiX&!u-o-
z^x~dQ;*9uNPr_VENUf}}q_C8*w6Khj={Uo!a^mGZNre<DdYqx06RE~u6$z`Rz)@38
zoTO$7wZ!YEP+O#~korX_<G}0avas~3mpWHRhBlDAVG4~z8mDkx3g@TLM6vjdA?jR^
zLQ`Fm7bFF2rYOyY7YQ#Gwh*>Vp_K?@wNBv@kGBzND{LohpF#&OlqICG@$G*cEVR<j
z%r}KQQ@AUIt||CZ$fb}^!Jk4Pg;WaZ6oM&)QV6HasHfAQl@^A;yn0q7g{b5ViiyO9
zi4<%RN0<~+C)?BPAlwu(DP&Xl8m0^!G8`!+H8WOm%B%spr_dvXZsIg!N-j^KX9|5&
zxJp76qgTqTYI^IE?SDneIK3-V=##=B4!RoVJ9qt3U?I6BVU?Lk{}irH@wrpuLI<QU
zB!!_VT${qc6!?X#WgV<RDRXYjP4{)`j_XqxEOLYJ#uUD-!&f<h-wa}oEc~z(hNn=M
zpYdhW@m?f-ehQ=5hP+LaGW+zA!qQ{RA<V5Qj7b^4JvwDx(L=&DRcBgw9qaZK#wwk0
z!U@9h!jfIAJ4BcZ`NR|^(E`&bN@H>gQ&RXSg^yFXJB54H6d$B;FG*Wd-xVn{YfMey
zzLfdY+O!nzPvL=-IR|?%h3P5WUea1v%6!u3p_KXZ+O~Dp!zs*2;gJ+(rm#d6c{GJt
zDLf<2TFhqQQ+QmLbA)q+^Jt9~&Yd+qk-`EA=L??{{x9^Y6rPrZ9}8oG{4Gr3SxLwj
zrLfrJjPjiLQctohh2`Rf)Sg$BUl6jsFQ)L4_{tPkrLa1Mms5CKl2<&PjVZjE!Wvz!
zWm9<abt$~&@xqdOeF_^SDXc1){u{d7Bz!Z4xBgG)JL1%NH--1aH+z!zMQGt4rohz#
z`;lr}Xs#*n^_#WQ_%wyjq+_KqR1HFf&r{ec;TI`<DY7kv-&6QQe0vHzM0V12MZOmP
zkissJ-NJ8#Ozm5d?}U3&_}-Hr9%}vQ@t;I~<}BbzeobMo$A1&Ksf@9!eJLE%<)2>Y
zevt#hgB*Y&hrQ4vB1eUP3I7&$F0zh`oDiNAGW}B`|D^D*C;3n0wD64ZtdQkL+IWl-
zTzzqXh?h#Ev`CpWs*6yeY#Qan%X^XvA{B*|gq4L=gjI#rn5_IHQ>c+fO$iHoTUrHO
zXq`0brqM8sMrqVbqkb9<(q`Z{scX?8gkZk0#UDKYg^klVFOBolX7A4h71Jzig_<bY
z3({zs#)WA#OQU%jm!-|g^F?VhT05k1X&M)&(IRaIG9@k3Xq7g8rga*Zi2PaFjHWi?
zByH1ZC*EFoVx$Qj-OAd%&Z7I`uVWgW(#8|s=(FDB8*Ud{UDNQTu`7+;Y4}y78<|}i
z0r8+PBn%59Y2#j^X~fcqr;$jbR~o%pyEL3Mx~0)QjU=nA<Ec~{pLa7SPH9i#rjbd5
z=TwzBFR+klknoomDNf`5ZWb?lNdNLQdWsZ|txoAE?A1Ef6=__V#=tZNrO`(UeT6*K
z+Nz_otJ3JFT>7WMgWs!#B-f-dK>S)^1)cg{m&WyJ+@KT&3-^0xZgJJ(%Wl>X)%~F~
z9u^tOMi3b;93i|pjge{GlE$bs?o8vZG;URDx2G{SjnQe0Nt?5~Ld)Ei#u`<8oOCFh
zATnO<u$vEmrtv~|izVdTG%<}yY22H}RQmrkrlfJVlzDKM2$=*6hkN&=u~!AYFO6ww
zJdnnNp4$B)19S#HT`f~62@l3OE6qsb5%!d7F*A)v(^#Fx%W3d)ew=M*rOm1DY=zEA
zV{RJr(s(S5=h9f3#^Y%`k;cL_o=szZ8c(M2wDMXYWZC|O^;Fu-u*~ap8S5EO&N?ni
zV{sZwB>7*<kgz)ZElXp08Y>mLLij=&FN!=b+`?H~gvu9mx0oQaTO|nz4UbD@4!2j*
z=D_4tm48hdYtvYl#%pQ3lg7IoXlbnH;8m;*X>3emlX%NEreWU@k4~~!_-uD`YWh|h
zZ>PaZF|<(T_tMy$#)oNql*aqg|3FBELch=^KTcx{eZJ(M2n%Ptv;npZH9w<eif>Kh
z3+^bnNNZz#sWQLG@4s;1^AsqJ9qbhTmRnz?@wMDSxPmpUf|=0yJ;!g-_?8~PMSB<D
zahRuZGL2Jde4oY-Y3xhmPbNq|qf;g}&QI*Pnx=_<PU9D4`m1oSkY)Hy<o7iG@FZNe
z?N_M|q;XJ$l0#|mGoVa|*1~cgPUDDzjtc)u<8P7qRjgxa92Y;425+4(%H@;I?cIOa
zq;#Y%8o2l`jnj0nF6y~Bqteo;R^q$m&(e>;asd}5T$FTC*+mr>rCgMDQO-qq7iHXY
zo~NwH;f5AZ(F;vo!9^trE4pSFvb8h(L$1!ltGcM>qNa;lQm8Jh!HjaI$Jsl?+7hxu
zi$s_v9Z?-|b|NdzsiAvSD_X&7=%SH}HZIz_XzXHf6N}$IW=+p?&G#J7cg@VzM0kO)
zsqjK!GhuV#MZ$}PErczFt%R+Gmk7DsWtxTMbm8!`gNsXDjB;_Si_2VebkWO2Zx@|h
zbarvMi=K+e6?GSpu0o#+zl(s2po_E%*G0%h*hPXRcM)+BbrEwBR|AG*w;TwM$-}dq
z&txsfMN(~&60+S24ahqVY_5!ptczk7-CX3Pz_!hcFqEF3&D-5Y!H4&7!9h(02GK{c
zg4LTEkF+yvUE$(N7kymxRk68Qpb`GB1+J2?3pWBT`n$N=#WgMlxEQ94u5~fc#f>g*
zaxuuobuMm@{CXEJ=(fmU+LdmmaLCi8u%lU?Azo>Rs_sL&TXeQ8+i({n6m+wTTSP{>
z*vJ=fd5uGz(JscgSVT*3ahr?VT`Y9*tP2hY`lYcfUKwkg$~@l11Q&O>xYNb`E*@}k
zmy3xm?sYNM#UvM#UECv08dAM#W;roMmv<`>wg3+{i8t`hujJI3CPE?kgD$4Kc-+Mk
z96@}PUHj07Ts*8xN@lotgniW0>`!M(_^69nBC}o0aWU7$JQt5ivR2UxiPYEK2OjA#
z;(UcZ>0*J%Q!btsVGtjIdq(_rZMx}#Zm4RFi<&Yoaq*msr7o7Kz#L6H!Jsj7S<d!Z
z?qY@H&(kb<`!9nRT)gPwB?&*L&A3?UVwH>4lDsEmvM-Cg;^I{oYh0{#u}+e=UA*Sv
zb#|7gx!yhJkv6#I{#|i7Q!4)6aIwk7n_lQ!(&tU~>N2@^T)ZnuL4ULO`z}5Z`H<FL
z&iYt!Kk_1O5&1;O^gk8(Oqz6wU%2>ElA|uRx!CSvkBjeJ?2vGmaHnu;ZR;x+UyCyx
zj)L7TzH#xbB;N@Oh2${zhpZncaj{SGpIrRx;y3YMgiPUAnwhrDdnGB<=y&lyJRPR<
zr;Gi%JmBK6CqL-okT_$}u#borQv1ur-yAhAj!VdLo^Wx}#c5qq`IL))#aV`bG%iT~
z^FqlN@)gi7&PqaVWz3<(nJQL^3`%BDDudD))Xkt?24ylRn=u2kD1&k$wKAxkLHP`q
zE9T++3K>+)oLh5NBJp^Y462G(^CZ<pY6xp8N4f>3Tq0+j5>u<A^vUT8>Sxd(gT|C(
z(9n}N5}`MsGS$xa<V`ZhMNq;89^K=G88pk_h8%9pp?L-uWz6h<RnANk7iZwhz@I^j
z3|eN;DudP;Bfl(z!F-%mysdZ};k*h~I|-@NUZjKYQsHOX$92r0lP)_8y9lY@Rit`Z
zE094jgCQ9V%^;LPID_I0x@8cNf|EfqgQ$4SiyO}%;c;7JbZsk@K{|tM202Mwc1;C~
zcQ<mJc{Ap@5oXGvy*Xs%rO=#@dFXhgdj^+h&@+P`g^2Q9y)x*X!4(-?nK3td=<vJO
zF%P};$)Lknt8WHZWx(i6yq{tX(q(_~tA!@J3<ii_D;y{+?Ch=+zg|eq!R!(78-+Is
z3!1|+7@ooC48~+If}NEy3#w5WjLhJcjCoXvmrQ|60`B;Tyu4L9EbVO>+@8UN4DQHa
zYzE^p7_XEWi;csf!D)+kgbRlccV=)w4o!2oi^kl`nwY_)3?^qVC4&bun9hdfBcQ@*
z8QddsuTrCYY6ka7Qn(9nzc}R&uwGHq1rKHLFk@wLZx%B$c!Xw_HKsK)gGV!XjSog<
zFso3u3?9#5wm22$h|JAko+sgue?oj=2G3?NU;IfgbU_ABW$<(c&&d8aX=mN1j<J8H
zwuqiQgBLScoWT+f(hQbnu)>SGEQ9O05-zfqi!dYd=e<yJrtp$3U(H};2CKyHXk@L<
z;AM_zF8(uS(Z$0+E_6w#zeYN1GgwE%mXjy0&tO9a$1*t1v6;ae8GMt$w;628;LQxa
z%wSsvZ)Nay2AeZ@Un#u9vDxU{9Pw@j?<u3gy!=51A7=2W3h<Fi&RTqu!N(bFQC#Lo
zNum6lmp{wk^9;5s=nKVSI)%hpm+g|X<X>g5!{a+emNl}z7GX_yDdKJ+EBjprdotLU
z!Jn$;_Zj@0!7my7z>2UPyaD)=q8A3^uNnNFF;CPpue}-kCY?eMqx?ZfTFpE`z27Ut
zkqi!Ga8Q?r*q&N@Fz#VVczIOhFX2Ky0z});{iYKcoXns`7B#atmBBw!D4)f@8T^+)
zi7ZNHaauyAb~b}E;%unGZpD(JB5QJFvW0w0Wl=hdGFf9VWu?HlZ0B;~g{H2MMMYg!
z${O3KDqdMwMab5!mNk<LL#t<DDg9bm)Xt(+7Ok@=%A!sd7i7^ii@I6V%c4OR4HcJp
z)fXw`)hKHW@4T#O?Z)ESQ^o@MJ71Sggbck<u~^!RvuKt@^DOwF9WO7EywGATR4)o!
zW{uIZj^vkQ(LRd~Qfnh@n?*ZSjTK=PF3sXH$$eRLR0>^m*(r<8B221~8WZeFq4H%!
zwsRnhU>2b)!qU7mi%1sHECyyVD2rGY@hq;$;>s)%tVkBwEOJ>mStO<J3R796MQBB=
zX<^65l4qzXNuJfo;&SP96Ed{B8jZ?5L<*Wcv*@ME-s}$T9EnV`PZoW%xYmn%6}zU9
zb#)f~vgq$w2-}cGa!uAeQaeDJ3%N|KVs3ykyX)98S=^GvC<P79VptZ#v$!FP8?(46
zYo_C&3L5f%+P2V2Bh-mEd%4p@M~W8)@2y#kW^XpK#z{CPi`%_MzKzCH&Dg_O^~?YI
zbi6btWO0Y=ki{#Q_gz^`RL~^hWTi7jaqpH%P?L#F&Emc+KF#8@ET&~~e-=x!crJ?v
z6l-o4^RjqQoCA4!77u0daMld@8LH;&EFQ^XW)_d?k`<pt1^w56lNT@NC@u*v9}{Qq
zJe|ek;!g<YXZhhIEKmwhNy4^b6#i(~&q%UR$TB~h#iA@0>ync~VRl%m%lCxKvRIzQ
ziY%VbVuK_v2-jq>Hj5XtcqxmOS*((6yrLi$X>}Ga%T5YbN6D)SqRkZM)^%CDmNhp?
zxoal!_d1JR#ab^l3O8o)Mi!g0cvF&hnZC$7S@WW#x20Uzq)?f;6q4O6o%e+w2tUl?
zqpb0JA7`;8i%&cQDD-S$bbqdX{4tB4vfTWdS@?@Az7*M(#djhUZqH&z7CW=}O17~p
zi`@$PT1Y$jM%GB9`c?{wh%qpl-ySJ^FZ@ARkpC?HOBTPX04&VjEPkUG&7o`#zi06W
zeR3B6Ww9@dKeITN#qlimXK^5lBUv2v#@E3t4k^dO8X)u@p@{K6T%@tn|H|TTrlYaO
zF6P$n1P2$F`ofc(0<tJ{J(mQ9kG!z5R5(o!oZ}&kQ9hH!S(TQY!?r{YCAC5>B{Y_=
z^h@jVdT(wmmqX<osz_KqhYC4V%%M_F&Y$}TO<2ZN=1?t%+Bp>EjPtLaLrq1g!3DV-
z1%<V8#x3)bo7Orx)XkxO4h?d~8`sO3zdm)UXAZJx2@P}Rua}K;I4_4r;s={sl$@Uf
z&AW+G<|Qk;Mr$D+5M7uvYubwy)GTM#vCV}S2^;H>wnYvtb7+-A>l`l0p;Hc>b7;d{
zc&8wTOLJ(OL%ST>=gjHWR_!>LPGxQuq(ilix&MD|$wQScIdsjTR}Q^dHR%L$2<G4y
zw|K9!%((-ukR)MYB!_4YG4Z@GE=&k*p_4;WB$Y!(B%OmRQdsyAvpM8E37dtIVqJC<
zb{F;#UM^($dx}u=iX5)Yp|2-refx;>K$vR0<f&A@oblWJg;xu&5e^VC=-M0xiVqTA
zC%j%bSXi*$n{pVE!}enAD8|qnhUM^G4tsJKp2LV7R^_mo$~lb8VO9>abGSvFcyA6<
za~PGwtvQU&nY&apX*!BA;<wRYau}P#xEz-9ct3~nIh5lqfE?~%S5`F-j^3FAA1UEY
zA3o!KR}MT{;a-XB_DPDuSd(*@;_<sh?qQSinHe7b<S;FVnK?X~!}n#a`&s@v<}jRI
z?g16x!5pUN@K6p9=P)COM`*_Ur$Zl;9q+Ny+Usw#YVc1++LF*Rc}g=Uhq*btki&~P
z%*)|1j+7jpRb_u(XFZ-X_XwE#6FIZ&nJ;`&xIp-n@M+;Q!WzTP!$^yi0v}vlEW%b=
zBJ!MYX%5RomJ3(p@O;jEiG#0SDBMb;{!2Nm)bJrM+^PJolJ#;9ujKG$4%>2gHHS4h
zyq&{4IjmJWZ|3k;4(r4j>$MzS7hms5Hsr9;<8N@-ivKT1{#Ai(!iewY@Lmp^)ui0$
zv4bdNrHJq6@PXuP*bj5~D2I=8*usqH+i6AI4&?AD{fr(7_)PN8bJ)rz<(-RXE#65a
zVSB!;KXYx*VW-MKL)xKaS%9x{_*z2R6*Ju>zFVQ+<nV3IJn%{V)0Xvp4nMGiiZQJi
zKj!dL4)J0nit%#}zvOT#hktVTHHW=9oXFv14!@~A_bI{Og@4Gj*a9rlpOWks9?0RK
z$e|qm5@FpBiyX<}s7RsR{uV#x=^W3Q*_O)u6&^yPwf~#Le>v31qh=mF6+A5+w(1#G
z>TC{Ho*xS_E}Fmcd6W<@DJ+#o={(BhQ8tfqlJI1*ph?148IV`VqhcPFycDYDQCYl-
zC*jFwHSy}g)ul{cY+H6Nx97F;=IpU{9z}W7$)j!__40T=j~DW&pGSi{{CNcOXqZQ%
zyjfbb$fI%IJP&rhE-5)L557H;q=_UKc=Dzq7v{~>-z<;jd0dn~_vb7|zgV2HTISIz
zkJetSj(J>?N1Hs_N^+U7ov^*IgYZ%zqcbV~NIH3v&UthZ?<({O`FCLIu%m-{q*>*>
z@hYJ_!g)mUi0YC${Oe^*JT6QKZJ{Gf3R6OU(VmH9^2p|KYaXL1%p;%2)p=Z#M{yqA
z^600==}sZ<3aKO{J#@)N>zPNdJbFvsS9nDpSBmf-pnW{TlJj?!F6kwhLjODp@5~&K
z$F+Ifl*f=f1}a&G4wmL1;dOajFTz)lF_9bcm^93~(bFWSaA+PkOJ`Uf!}A!S#QCZj
z{+J8@vNTemw+N{}N`(JY9+SsydCbV;kvwi!ns?<fF^{q0<MJ4v#{?<g>BYT6goP=T
ze^MTk^O!CnOFku!d-Is8=y&IFk5|sZ=Q-G7_vJB--B)DYub>Bnlr!#w;tV2xNX`DR
zke4&_c$AgO<C#2WDX%Alv-6mf$6RsN>oK-Nku^`q%g0IhKQFbwe44A&76{ogRCp?H
z{%XxA<O|6a^sI1^aIuh~OY-K;cqIHSm2jDGxp0M$>AaZ7OL?>}Mu%do%wts^C5ut2
z7_0MmIghXM_&SeQ@_hd=-p}KMJl5o~HjlSe&ULE(MkV!{`0GMee|;Vs#0w4ehICkx
zO?kX2{+5vc5903~^*)z;?@IVy9-BRV_8Oa)zYp{HD36al`L;Z^<nf8J_%x5t^7veR
z#4NT-=S$%iLY9H@|KavLc1X^0?)3U=S020b_&JYXl;$^i{3M-k^Y~7L|6JIU$M?#G
z5&8Q;nm-B)Ho#Y7{hG(#JWl2DkL158?%_Os&-2rz#%t}%V}Bk8^7vChg@PTF@*zp6
z!_*3;J(9;!3I7rv7yd0gMlYxDsWF8UlAQD;|LT$@JS*~_@U-xZkP)q7W6~%#UZRAs
zkYnj$lqr_iEk;?9y2YqhjB>>&UyKUUtR;EHVpJ+dW$|hS<nx~*RfRO;>LN9YQM35}
zTO-Y~w&X>^I$jXv^^4J<7#9|UFZ^k!P`ZL9#b_knxY%rA&J#ahNaJDk`MaQ)Z|X2v
zaQM)wn<=!p@FL;GLTb{YT6(-yF<KYnl47)xq^*#zv!+_R|HFBCX)(G;a#=Atsu4OB
zqjNz=Y4V}at;4OZl2G3#;x9&^*u0f1sLPNrEQ|=F!kCa>wq-=S7)~)p6ys(#0+$(l
z?OQR@#pm{YoIqU(`TvUyi^QiXijk8fUyOdm=wFQDVstCU|D)<l;IEke_vdLZ?P)<G
zDcTni+9*nv?lN=l+->eQw?w6sNJ&YSC>64Y5F%SdvV^iLlBKlRiBR^k)c-lpeCGS}
zf4%1Qyq@zu@3Sv+=4=y-m>Im_yErZdI|3(SUc?DuCW2&y2g#9=k@9q;Y9^4JU%|wz
z9MY3~1ceCv2r3a2CFJ+o=N$YiD@e+bs@bFw5sZ|=Xjz>d!Ket%k%TKv)FhrOBR3V$
z$Y+d<V-;aeosEy+{0JsQFp(*0Wab(8&CAhCFeqhYE{K@V$w^E&_l^oLiePdC7mH7c
z;Ias2icb|@62UZ)ONG-T;3ic*Ga?wi(3}#bKbOnuiU?+jxYf*imd}-;adrgPM6e=)
zrz5yFf;kZ^h~Rp~d@d_q1oI;Jy0sZVGDY(xuhraoLPM+@BDgVvg%R8o0grN<p@=pT
z-^^UCWp=zTlKw5iTO+tlg#O$vaz~`<4Evoj-W8VD-2sW<o=|dc1ouU-B!c@Tc~tm7
zX#1eZQsG0whlR@`ctm8e*0PC@$@sYN3E}bxo(y%KVjbW@04qrZD<gO=g6AW6HjMKs
zC2B<t>vYRnSl8sn3lY2+!D=>~+GeBpIteL%Nlsp7z2YsP5v++|E&bu<{|H`-;Pr?Z
z-t!~wjR@XURbL;$TM@Ib?;ROg`QMgtUtNp)Z`Vmk@@@q0MX(`)_aoRC3OCiX(y(r?
zX3;tKk$x1x#}OPH#UW8_QZ)V*ZjRuS2)0D9HG<s{{2akH$+t)FX{72*C1d_s1Un@E
zT=+%6x&KGxE7k;&Z$kOEA}s6gM7~!A-YNV+_@nSA;VvO75-a&H5&Rm#Z=pXy?F#UB
z3IB-TPmw*sy~4kQe+wDgf5Ns&zAu9Pq1=k{XCbDCsV1x*MU5zGMo}w@1EQ!eVQpbu
zVIAK1q3T^vMmprTaDylsMsZ*i&7)`(MPpet5z;o$XF{4r(JX43ZICXyZ4t$kI_8p`
zmQrpN#X-@k6M3`^K6YA1ad;GMrEq8zZA55$Sk$Z!k{l6A+DFkY<VQxUZb;}5N{))+
z=#Y1eqEi%|W$Y5gu~8fsMb{|0Mft}!lN-H4%^p$o6c5%bX?08#y(I}|$tdX)Mc*j;
zMR9!S>Vzmx{Etq5@zbIh7R3PZfx?r7CkqD&2MbRTo+_mOLqvuO8I99Jxf8`1;%5ra
z5)Kzegi&EkNPprYwvhfLM3O>Rm=aQxw%I6hQCye8ycE1B@=+XR<7gX&D2h@18^yjT
zO47eOip5cs#r-HMQH+RUWE8hca<=ed;V9ub!gHe-9mSX^#>#j>)J%Hx&}~%bMKLal
z@sgh}oFEJ?2bjq6vP`*Cc~TS?%IYE^g_A`%MKeWYs_>F1rbTh7_>IEpQS;)M!Me)H
zAK}a>E{|eX6jw0v3#&#HS271=dzFyNSBuP!;u?`_L;0L2=88i@k$ItfeiRGDuNU4B
z%Bj3iF=3o<isEKgW*Kjd;<ixEQs6@cK6gmCD2h8p?h*#Kn%on`y-~as#oH3z7v+u!
zyb#5bDDIEqfhZn~;@K!xMX@xBhr)L8a1?woJuN58Sc2UAuRM7)ipL~;Jc_48o`_<3
z6wK`da@Ld5+}Pdn>su?tDd#rDXQa7O$k=kak1x2F?lCh<&qd8V3|sw+QLL828&SLz
z#miB=62%%xI5`#^)m*FSy&C#cOEWgFMa>SY*Q02yol$SfmTBi0?;Y{?qu3b5x+vDm
z_-+*MMX@1J8*NtQf;{B7;)5tYq&$i*qWCC^kE3Rn&L;ADRXV(BVY8|t%leZjw#bvM
z!fir&wLOYY#Xl1UW0EgJ+uuaK5`N7-f$P6fd@Hg;_?_^3A#Hbx{2=^M_>*v#aJTSh
z;V;5ph3%_ZzejO(UF(l9+&`n(6Y{-L{3ZUk@Sjl5x6l44tQg*pV`ChMp;`<>V>m5_
z>M_)ap>7QIVx|ME8AELm@>(M7Z0m>w{rLeg)Q_QY3{7HaAbG<W8pX^?+=lHYGnwry
zea=QUjiFf#2gcA`YC*3~PdJKe5i?u;j}x|xp%tCSaBvKV#Ly{*&M~x(;m{cOE}~rw
zZDQz9*9@c&i-DJ;j_hO|!W%(jXd5$M1bld@;E^%3kKyPTI!ee-gAOrsPw7!I2ER|@
zy^H*DNsp*Cq7k~p&^3mhG4zr`w-~y|&?ANoLyhOWhmbxnEPnSL6GQJ9j*Wqz23z#M
zGyY2K5w;r6Vs$b*b^F9{d<>s*sKfQ&7*33Vq_41_kjDNZ1B3&GCkam$4vJy0$SJ~8
zg>*H9375CSVmLj9m*RLijx%C7Glu8mcp;9nVi+DnI)+S)8~;q^^O$o)xgCum7DHT|
z|EQvsE$+mS5J?K%7*Zm^vNaEbv#MlcRr88DS$Rx*422kqF*J>%SsbMp%B)K<Y>dH=
zp%TN)7%q>Qq4kIu#xb^>6k^84Fe-*~WE?9zS2%{{$V}s6J$E8&^7g>$)_Jn}p_-A5
zkKz0nCd4o?hAA;jmDL5p3x$(}yk3>c7sW7HM)HeA0#7c9VR{TRB$+0>RLG-SypDsz
z%gdPU3jLt^)+|{qjNzsju885v7_O3JZVcDOaCHo`W4J~VhH|Y4Jt3d-A3l#6Roz-3
z$@~~@(Om)8%XmYeCJdr?GZkW39>bF{+{(Hd!#y$F8^i4}?5SoglI9&TGYn=Z%pc;N
z65b`eJBGy~ffa4<i(zRD4@tO$^&y4_V%Vwtd{9E_1jdJ1QlVs743CHhv7*jnGCnSR
zLdZlt6~hYFz!+YZ<mnhz#_+88GmJ?Mi?=+jikT}SpO2YuPx|v*49udL;xEMTqLfz)
zY0IL2Mf~j;-icvN3~OU}HMD(0<Tc^zLVERPX#1A(nVv9Q;<^~t%j#XWUy=7z6=}6X
z`4*Ja2QmC6+Ye*-D29(?*c8K;F?<!n<`_PS;WO5D_93vC6<flvw#Kkcd^_7XYkPeY
zBA+0;zKG#w1;I*1;ny*IBjq1dwZ0YqK8774-wFR$=Xc6Thd+wY`A;IdV%RP6b145s
z<ky(FPnc@I$M8oCf3lv$P$!PMaqNxZFX>c^o2K`-_`fmy6EmY7N`gr4i(!B0rzK4Y
z>1}lpYSxIOX2@%a)E2Uu)eGf~MGlCgzDNUMLt!H!{b8LUHj$D1z&M)6QI5lpqeUDo
zB|kNeR&g8@N5?oi#c^;Phs4o7^r3YeZQ?jAjzc90(tdc{^c(FYX)8QJ7zB5uc+l<`
zdIuSgisNXJpc-@*?;Xdnade5JYn=b%Fqzg<NYXuy9wBF-y~K|RB|!x^E{=Y2^pB%Y
zC_i501mTIozVWKtLg?p!I0lEB1LHVJ{AA%EVNjh;33cwOZVicJXdI`-F-*b~Q6wTf
zLwKf;{+}f>Tu85?am1L__07^1ZR2s+vT{QGgh(<DH<YkvNXL<pF)J*_k&D9<XG6=2
zFk*!`g4ojM67x3f!z*!I7RSsuM#M2Pj<e$!6~{$!OpfCmxg8V7*f`D=r`yr-s@{qG
zyg1H}V?rF`Lfi2ojMc<YGD+kDA$x4Px-bm=VhN|jF;yh!<t~ZiQW>c^jTK4poG!@>
zp`+g8@;GM2adRBENO(mYb49L<<0_GD3hQd|*>PMG$F*@VALx9Jgh6gx7stFf=1X#u
zlC~g@>t(z_xH{;I#23a*-^hsZVGnR?9Jj@BPaOBgaeEwh(0{4Xc9F=PVM-|p9Nrzr
zVh#YpE{^j1;#d~PBhp_I$Nh0UApT$+4~ejgUizOre^^3B{?Rxd6JHg_<8eG8zEZe6
zjuj$L3ZD`(EcOOZi$5de@+gITo|TbV{hUb95?_p)fhC{SBAgl6x!bIyzY@oqINpro
ztvJ@k@oF5e$MHrSuf@TW-EUVjgBGrXbAZP&2|3rx_;K-e9Ph-jA@p;49c!KV`gqj@
z#k+C57YAn=xu(F~CcJKfVSNzChjG-gQP;*taeN%d?l^vqV^bWP<M^K062~WTY>DGL
z`Now>hPXA3ZE>^taC;nI$IUjCPgzWy0up{M{34Do<M=9$Ce5s3HM8Q(?Gt=!e-p;=
z+c<WJGxGG44?lQ+h~vjNeu`sPXcf$9@B@l-o?ACqv8eS+9KXu8rj6g?_&tt4;`mb%
z4z}q}u=v|<oN=;;^?~Pq<M=CX2919Q-U|N}?i218(ye8iLV=BHBIMO=)DRE8vTNC>
zEhBS}CpDP%dNvNQak!1PHtO4GV57N>7B(8%Xe7-8Z8OW)*sdCjvOYAiO%-h_Y$p7=
zzs1w*Ol(UVt!x}*<6yh$03AztH}~@&WbRTv#Ky+nCXKCa94d!xY|~30W}E(>e%{y6
zIwFkukv7_i^UH#h#_er%u+8i-HR<O!wXKdeI@vhS#W)w8ZFI3wGl5zObhXjV#%nfS
zx6$234;w`rB^y0$^s-^waBLi7qql8loZ?I!r$K62oI;G*I8Gt<VSH?yVB<s^Lv5U9
zqpyvAHU`-kY@@#oR)&*ooGdbcna2D7Z5}7Ix~ZN7r?j})hH9tSIMv1wY5q@MFJ?~O
z4P)9RA1*vYc$V-?`N`9@^nw0FY($x#+PTD|SQM_-yaaQSI|LFolC~M!7ZiCGtE<dU
zDQ~Hhwvh>QH7k-6dN%SRK})12r{&8wd>eP#xXVVx#t8asW08%KHqN#&(>4=vqvUF;
z@EjZG+88Z9#>QCNEbG%NKIcg|!8VO+oQ?4^o-YhO8z<VhK*mWnF0wJ1Ma=%+MoK-y
z#j>J5Q~u*8zhy3w+BD&%!s$Y~ogs3WZRT}pyj*o`mW?ZHTxsJf8w+e)Z{unkvu(_=
zF_)2#S=T7fueHtgu&J@CGbz{Em}g_YtXOb+b$XiHv4Uc~LGqhfg>2ktW1);Uv5uXE
z4QE>19>y}_bE}QpY}_u};HXQ0+=a#6L`+)H*zZ<K7c--5aQ-3aH13tKyVUNpv4joK
z#sfAUw6WaAlQx#h+ed6XYU3dr58HTYn6-=zJZACm?>GDb2Z#OAdECYmcGbxm#)_vA
zM+N5xZLF~I9Ib3TZQ~gm&)QgJ^HbDXX>;np;xQacJLOvH=pT>b()kPWljK#A7lo_Y
z%J%PnN%*qx6&q_rC||4EOA;ji4I6K=&vDS!!CN-ow(*ILEjHe<vChUO8=IAO9^PDU
zbIr(lSH|~jY!G>0#rmN-jg7(&Z18*^XHh<q!pA~pFXttgncRHHI>~3N<lAg)XY1Zv
zbqM-X3BMG6Milu%$d$)aT3BC+e{JI%8{gX4VdD=Qf7<xY#`jA5k2ZFOdGdp84rvC-
z49@2NB&%IEc8mNR=E*NMehv9=BEK`2coPe6$&+R^2h|<ywegpX+?V*b$Unk=L$~{E
z>=(BjQv`e<Lf>jQsOgv@JJdlf5%R_&wS{$rbsf|bIY3xn*g)7&*ht9APv=d<nYT?H
zG;?sEgXUql2RUdF@|F%-g`6$%VDUqQtwTBMXB+zFfQL!BLDA!7#hm|l(9Xe)4i-8%
z(m{I%mpPc}po4>>99-aFl4D*OM?2<CH^f0l2b~;rcF@H^PY1mey{-<ri!j37M1sDz
zhf{Tg_814f9h~f7kb`3#9Oq!5gOj8goS^R`e!PPd7zb`W;;2KUudtu6zk>mxE$19I
z4zt+ygZ^Q#oS)+0RFOa!)C%@6LmiyvU>FnPpupU4aE8OPrKY4@2WN>ygu{i*9KK?r
z4ub0!VoH15fgR?g;~*iP6td`94N?x$4%l+(EuV~otYf-`oCD9{42+d`OrLPiFmtU0
z<s}DY2csQ~ao{_sI2h&N9LMyEBOHuWOnCB_UY+fj8+$0^LnG65uGIMYV^k>_>+rs4
zV|AW`aSq0_f+-IfP~SRM^;*^h2NNB0*@Y#2UeL-6WOHN5Ug+Q=$4n$n7G5l*af*Yf
z;+F`gh4M=sOc$Ra<O`9?mpho{V2(2C3L%B`|17TmGKV=@6JG6Lw#YR?%CBWk!g_0(
zHCL`!$F6fQPkg>`K`6i8!42Zv!%Q_kH#vBd9h!rinLo0+)xlG&y4?Kf;C2UhI9TN1
zAqNjTxYNO14(@ZX#KGOly?Y$o>tL~Ch7*VJ7gWMW##Gg)`yD*s;6VpV9kW-Nc^>R!
z=6HZ4s9?(+JmO%vqg$ICJm%mDl>%)a4_)!D54N)4l;xAMWmr^L;oxZp&p24=V2y*d
z4xV+e%E61wRR_;W^LYm^h;Z~0ROTRD`tXv2mmR#~n70p&e7flfCto73%E{|tSg$Fu
ze8o`b4JDSIyzSr}y4A@?=HxmD-zo#wJ9w9E*1-n$5)QUFct41MgAW~S6le1JeB|I`
z2b&yhmXOh7HqvLFo#()egp#cewmJC1!IuuUJNVSWXADL9L44>>MPoB2kkR`}R$sH#
z1Ofg3sovq>I|tu8*y-SB2fwg+N{tS8Ir!1RPi#S9ZZKPR%a&aP-@m^)_>FzLgTI&?
z4*qcPr-MDp89Jv9V;h|Dr}08w0U@{56R45EKkCH(m1LjV`+lL7Fs+`|msm~6aR@nc
zfSxdce1p_Z@Vq2$OXBt<>L#kb;7(1Vp7;R?)K8#6!n_>&C&4qb4JB`sK;s0OB+xX0
zW0L5dM6(1AOkjNi?<UYZfffneoWLy!v`nB?0$u|71P)5z-~{?5&_97g5@?-3w*<N;
zaA*Q;66lb?Q3)KDz~KoTsZjW)ZYy#`qH6rsj(%!UnAo09)XD<M(Ft^tGHXl6P``5m
zT{!*^eWO*ABTU=uAxSSrK7pS9vF)9}u`-^Jz;PmdLR*Hy;Erb!<im*x^i>2nunZzF
zAc27ioRz@v1Wroe<OGH!Ff@Td^5GQ4e6V;h7G*R}4UOcdC2)EIXGk*aKXQ70ri|2~
z!$<<r1d<833B)9~6L1oUE6LQMe&YXkPGL%ttS~Li2!pgxAs0F?u%0AvT>|qGC@Ie8
zByes5<pg{=sVLPW6Br>QqeSOtOUV2gCBit2PGC#|mn1MvlCcS#pTGq1^AZ@Bz<BW>
zE2uv)feRA2D1ph6PfFlI5iT#%TPg&2aRO5kn5u|T!l1cEMo-L>!1M&JN#NQ9W+ZS~
z0#_t(r97FLz~u?d3Tp)&QlEYjuS($R1ZGQ(xk0NSAo@&O@;S01pDS{7s54*28xmNc
ze7HVTqmvuONfst>lWYUuZe>GD;OPXON#OPb?nq#90{2LHQJA7TWxPwS?iMnhbWY#y
zP2j-<mP+Bi1eSz8-=Dw(A!j@vO5ouHo=9N1gv%0mROAt1;M-$iRy-~tT|FtnP*x=H
zRH#W~kO?ajcs7Bz5_mg-RS7(o;3f8^B|fjnyp+Jp3A~WNixRF5{baPM^NNgX!U`5d
zU~K}g$}NMS<aO!15$e1dMj-Iv9chxU3+3-6uz~$v0{<rPegYd4_$7f~6Zjy34-?oa
z{f`p(SmbND+9doufz1hgBKejCwk5DVfvqwIiDh~}P2e+07%>`yID8@JUka)DmHGkN
zev`nriguv9BZ2Qi-@cbJb@==s{-g5erv!G%$?gPx4g(7E;kN{Sm*npR{tyX5|5Kd)
z>`7p+_+RpnwjAD2PO>k7{p^I3Xr6?X1d^zhMD?U;K0zF)LqcPXBx)v6D~Z}k9FRo)
z<o|W5b@&!YnzukbIShKs21ztbqHz*Ul4vB`pb!J!no8147)XM&v`C_565S<lmBc|w
z9Fasj84s4{ZId`8iPlLRnnar<4wvw-WYrcd2Jzoe0zZ#TqJ0uaOOv(~nn%W?<dDXW
zNpwo0vxHq0To-X#)$W9Dp&Fg{NTR0{$a{$};X$CsCUHU%CrWr+5`9A3<C9hQeo(V-
z68%Csr=)scWlDilf&(NRC_E{NlSKvz2MbRT{%@2xB#EJnFkb;l43pLAN%)eSk;Iuv
zoR!4zBvMJFlZYh2cXvDqJBer#v80(^;P8(^4iudv5=kVJaFb?WA6&}BZ+6=9V`RBV
zMn2?{@RG=i)0SiYd=iBuN=cL@<anbf@~;MO425cZIBuyVF(QePNt~U;1xZXwVpJ06
zBynC6<B~WxiP3U6mhzZ2CJ7FrIMU$QKKNMR2gvv&&QD@O5)&2wz~>Ph8|#abMh>?w
zOyZ&>W+ib&5|fj-IEk4_TrQudB+V5i9Kuaa;*z8p-b_p4vZNU&Un(Od)03DHa$ZVy
zi@uoXgr4&f5=QCDB(9Qgw+flStCQx_X14sfCW&k1e2#EI5_3ha3;moYGCyg)Ss2{)
zN!%dGjT|P0It!DyNe>mMc8lbc(8%}?=lDN~MM)gvqPL4XlejC1IxgzExI2l(Nvuuc
zRn-SxQ-4nq_ln=g`oNn@#g{N2l6XMXd)aJL{T`HjsaiA}<HJcTV?V%c3`wj?;<+Rq
zmGLp*VqO8qfcS5PB$l)Eb@1oOB%YFRh45+NGs2a^XN7?>eSThEy(D}gi5Epy3xi8~
zsq?aouL#!&c_GqkN$_^ckCON}X(oGL7rr5UGl{oED1Tez9pO6R`Xt^Jc~7`ONX_>}
zHVQuwekkND(59qWv)--D*_^~DNo+}CYZ6~3@l_JrlGv^~@OcuSihL$ybz%!*g<-Au
zLK1R*zkJQcmBe>Rd@mu3^4lbKsPeED1+%g{llUQtACve=Izh#zKWwVIRD0<;ePccR
zIf-AA_*L!wuO$8!`HjAbuv_>ei9f~n2=|8aCR?q4*e!Ex&*^SW|NfiAK1nFt&$obU
zY#}7!&iU%nq;d@xHA7y@MeUH&&w4Hna8chy1J}F=xas|=;TB&60|#0SU2{5;Ki^?r
z+KAq|XyT%&i)Jo5xH!tifi9Z6IK)M37cE@0ba9Z2gXtCb9J;1)G0D6F?rq&v78v<4
za;S?ouIbhe69#vS86yt@yJ#!n5w2-9?Sv#px@aGAPHr6SqN9s$F1owu#I(5R8hFV2
zKShE$9L_l~(4c^NxajGkms{17uv~)p5RY|noQvTuA};#4INrrT7bm&g&uwud*$K?9
zdS*w^i7xsoi~70f?^eA-nPUUosvV41)id`<Q*yG@1_=kdIK{=OE{4c>x{x|UU7RL9
z%r)2EQo<?mGbA}vc$P5Ol^S&sa}jr8OUUIU)_*RA%x_@!w13{sawJc<NV;%cq+Fz3
zjBqhhxsh>^cTo_}y2!az9k1ttUG%$Gnqn%tD7h%B)R-r}l!IzqVOH}~{YvXW{teT`
zC|Qjbp5x+N5&DqULE|7-$4EHV1t)fzaOaPU^Ie>t!Wk({a52%vi!N5XxWL6E7mL^#
zy13BAMa+E8nY)<m;$r5oj8lYDh5Uym75H4@Vw#IfT}*c|!^PDuX1iwF*kvv*cQH$R
zCR43{F<;^0N*7nDU3@mw8sk|U81Vm_)PH)2b&ZQ_U0m<t1{ZT&%yn^{i+RKr)^yMO
z&+g?Dao`a1FU3a(TJv2jV4c^O2p3Imbg|IIO)hSB&9<~v`pxLyLoEJ!o}P098}V$<
z%uC<q;&vtB4i|n`v!3;g62fx7%f)>zmZ${pX2MUl7K`8GnvG2Nx;VU<Den7SJizjD
zv6KntA?`*Nmk4<tfdiO_Ts+}|bKR@?7XTN_Ts)#2;GZHnEB>g9$6T}A`8eC`NHevy
z3D$B2@g!@4ixn=OcJZ7f&j=Z-XGK>2r=G9+4}adp3k+2Gz{tGh;$^<nQaCn+S6r-d
z@t%tfF4oGE^)B9Z@v4j06mxq1y5vmM8_JV6UA)Emz>dPjJ0cwAt`lLjDW?;z!xGsY
zz3*b9i$7iLVejPPLwUtzl>2$|OSO&*;vc)%<YKdnPh5QOVyBBOF1EV(!o`=;-{xYw
zi%-Ra#iq~1&E`^eUqda{+o>G(yZGA04%HlX1>cbC&&c1hGvOpB3x${eu)7#&@jih*
z+&<*uM;AZ2*u~;*Xt7bSfOr~fw><yF#jk2gKeGeW_=G9qPg;LtqjT{G*D=|daLHz_
zHC;bu<*Msm7k|kuUuP*U&x!xz;$Ij0T<m96Orb>zR?58eYot&!1s>@|%8VJRrBGdR
za&yal3bj+HpF)Ea>PTKsSXW5rlP8%g3J*wOqIQ=xOrcQ<O;Tu@Lhxp9{2$*~D9uth
zP?EqQ-S$aaEmLTf!VxL7lhr{fv`*pB6b=qUIfNdLH37Ae<nT~_SPGk`T6@+RtF{s@
zs%agWLi-dtr_e=`4k;Wha#RWruD61l6+24ONjQ?J=H)*rbW5R^B;8Z!A<|RGaY&Gs
z?USq%JDaeMNtrz)%%9^@=#w%lm4i|^K7|uf=qqC#YNoKgziDW+<=)YLlJ^&~1P7$d
zdvjn4Cy9`sEW!#fIE7P~?Yy8hWqxTvt05_K2>^3%Xv$Rh(^42FLVg(M=vZ(mOiy7(
z3d2)~q%b0dktsw|h^0_Sp_oEE1v>>Ng+vN%k1@->tHN8+lHA*0$9kc*<%TgyiKJ8J
z2d0@6vNGm`UJCh?`MRNV{&1Gt14=2BQ}9!$q`>uh#&$(-aO)|5L%`mWSEd~Nu61?_
zqf!``!uS-<N#WcS#-?zdQa3t<i=MO2YH5v0nQ;jHWaq=^(Pw7e{Tr?G+4-k1Erm<j
zQCQacqpgW4B-@#QE=XZg3KuG37o{*og!0KE7pHKOmO-b6@=HW0<V%xY@fXI^7Fw63
zFf)a#Qn)&WMe6x`a3LUtSt(qR0(JOMa-~`a4<XJDeVdcQH7Q)HSW$r;La;15R|@=l
z>HHKHuqtNJA&cu%xPkeZMxQipOkrUP8&mjzF_iLcDcqjI&EmHRZxsfe%pHsvt8U8t
zz>%rDlT|2%dsDb8g}bH3+~8niF`J$Sc=x5SMDqJtOWT+gOuAy<_<%B;o^ZKjX$lXe
z@Gy%kg$*gZpTZ+@@~DtHW`w|AC56XRcp`=6l0TEe$`qayr|nZBD}+xA`F49Yg;goM
zsnVp*bL`tg{pUqq5WXl}EqqD%vXHB;Yed!xUlqP4q;Ic_ydnIj4c-dnZ;QMmTqj&F
zd{_9MkUJcLi{kk=RVMJm6h2DfuN3}H;o}rGQ745jl*yZkDQrvOlN7c{!ozwDJ*ait
z<=bZ|e9A6ylKE!jzjtZNeEu?puTuCug+EgGI)!gi_({sF$yE539nleHv+<4;zLWfW
zA+2_b{E)(rp@i?pUE;fiY#Ki+OMemmD*P?TWc{V$&lL8gu$Q$_8@%b9-tt+%jZ!K6
z%c4)Cb{hLq*v}q5Z8{$wgd-x2YH0*9<dBl@GA5Jtxkef_rNEZL%1q5VY1B=lK^hIy
zsF%h8vaO#st&(F)DlpI>iyEcTIE~)4l5LaFpQdSZgrr#-2d2?nLb~dhMvF9BrqL>m
zgVN|A`N6{0X&fqYh%mUutxXz-$w;?Bv=5iDZ5l_2v=bgFY%l!Z37Vs1JUSG1N~5!Q
zmo$2cbWNk1NOwk6grRWvNN~!gmn6r8a*n2$UM8PKPjY-3Com2fw9DYcv>B9Mk;av2
z^i88*8vWB4AmQa{3{2ysGzv1FETr=AGzN(ePUDm`PEDKF%IRsGk;ag;c{LBElWNv^
z?Eljkmd5lc7O(&1Q0JeFbtV<0&oiX08d!WcQ9mNzqG`m^h=-wM(y+yyP?AU^8FE)7
zl}1{GFFr;rE1nB=Jdu1Fn{>NoF>N+clq9^7=YP}i)2O5|B8`!0T$aYnG|o<ARN9>A
zoGLsgjj<w>oSVkzG{(rtn|UbVA9c?QZO4g>PviVFCZsVjjSJGaNJ2(z{8#38Gn3M0
zW&gr7uI3#M?EKTXIE^W3JoB*CEMqm}pS<{<)$blIk;7?eTpId6J&hS5XXvxLTW{4f
zf4`#Vd}gI_=XS%dqUUMcm&Ot$b9Nf@(wHxPO&ZsVP;HLLT;X*>=FEaLt{1<7Bx`)*
z|HRoySyDHuSQn;olgQ1&TZFd?Zxh}wWP#qHinoZdlH@Mo-NMDfdxZB2U(<hN?oZ=^
zG-_l}GlK`ySenMRG`6$0A7Jr=;-NIyv>By`(^!_qBWXOE#$#!`pgh^m!G9Xd(|A(x
ze?s}ZsfP7b8Y|LR#bdPm6k<NJM3}v4aCap)0Iy7&`>xq)_+`Ozxv0AJTpG`(v8bt;
z+~d7590R|Y#_BX)O5^1;K2cb&q_HNAkCec*X}l`ohiSZ)##&BGrtv`<uZz?8hRB;~
zye0B>8t;g#V@2X@iTL_7-j$L16!O`S#{04&r*PO9b8?w!e?)a-AMgKB=$q2moHqX<
zs>=ya?txJ+x<yu7h5U>9ry|uervK#g8I5Utk;a#4e3iy`%Kxv^_$G~S)7X(Vvu9=9
zJ$3MI(>yQHz6Bng{yvSJEDnzS>RCU?)sJcXl*TTW3k!}{y0Pro^9wKMDPR#weof;y
z@!y4i2>%rB5$+Z8OOVQc%d3Bc{|fgB>HmHaD+6RqaMgr+ms;e^r4IZO$)I)yjWcMH
zK^^jX7Q0-^nd-V3)5X=x-~f^O8T0CCpgd_PNh9IkO-%*k(1<%->8hy|nq_cc#*As3
z3tI?V3R?*e5>nyd3=R=*Ej(1%MtGR;aA8{^_4#ksBQt29!EG7bo<WBUj>=#{1`{(l
zI)jcG6cvF^8FbE|O9owKWKYf*@^h(M2Hhn|WzZvI2HV4B?3qD{C#o_yCWGEgX$Gtw
z$7gVyY}xJf$zT@ufv9RR+fT?KU(-4<gT5K`%a{&|&#5B)g#$7eC~}hUWFd71WiUA8
zr-*RR`H)aDG=tN`hXoSh8NxFI2}f=sJU0}{AgXA`GO#mnGKgnPWn(huRI?HpBr|X`
z=FP&sh>dq-H&ZiNS7~HPrIoadFq=V6gti`&CQh9~rs|}2Ns@BL9HL~~@iVAo%=>GE
zkYr>AXNP>0$T`Aug`+bVBQjP<{qsb|WiURJoSy+V`qJux3?^l8Z3c5PxKQEF%;542
zE>dJBOLDPrig0QMmxyq5I!)x#45o|B$lx*&riB$d7%KCx6SMdRKhzAWuV6h1_WxwS
zPxY%ZxLSG0d&XvGaE-FMzY2G52G?aUFN684c)F^B&gremrCQd4FqG>>ZV=v>!9tOn
zgg0k!3&Yh=imq<Wn2wZH;*Ja!Q6YmbGPpB?yE53uIAm~l28%P;n863kq73fM;4S%c
zUj|DuSR>9BaeoGnvQqK#AGMJOg-bJdD1(Q?R<n$4WRkhulFuU<?CNaM_*e#yXYfP@
z%QJXEK0KMhQzFl0up)z}Ggz6yvl+bC5YH$$jsUqM+C0@PhPX<~OiQqV|M?68@}lIc
zGk7V3m&IQZ2Cf2JtGs<x_?qx_;Tu9`%bOznoZn3UGk8Z4SSMUBd{@ZO-^*Y_2Jg!l
zY$4`=kiUxNO_j9$kd-#n{5XS6A>W+ACn4XG!Pb!T<M-2$f2MjuPx$Z_yDu~NDuaWw
zI3$a&Gx$bo2W8D`;@b=wW=&(+k->Kve4oM2460>K&%pVIA2RqOgFiF)F@v8n<}UhO
za{EgLyJe*0XEoLK%dKBC_$}m=|1Jf}_k^1JGT1BrR|bD)@Q?Vv@{pTzcsU8<!>{1|
zl3Q659F54Dddsh*>WWnjVNGGJ0GnI2v#2A^XxGi6UKZfwkC3E(77fII<%L3={Lh*Z
zLgOr&WKAd2RM<@T@nADRJy5*4utgRvMJR72Pe{1yk5O%%#i3cW$>K0&ARFl(o&D#u
z9{2i=;xB-e!)>$Xuck+2(JpI#n#mX*nMJ3It(U7=M`dwz76WrQDTj^}Qa_6?vgn*e
zmn<I4Vrdp#`JK)~qghPJqFWZ-v*?jU&nzZO-b*+{c#N=j7RP3BTo!$@I3<fyvsK?v
z$15@?2<hR8S@e~DKVg6203mG$iky_i$)RLW7K20H@n-Y3We)IpXr47x^3$>yCeKe7
zI>IxuIFq?2K0J$P7O^ZMGSY4EQAUhsVQ0<c3BSUEFT{j&lJePQ24<1YBBQjNokcc`
zNhyn5$h|D`;ss$bl+#0|s4Sx|tO!T2f{6qQqr}h2;@m7oi%$^J?HG}<S)3P2#)*s<
zo-Z85%l|{$3$mCL@(V>S5(b(<a8t9mL&8h4n3lz*;#UZ#3mNW=EG`TAOp(j8n8o_0
z>9u3KSyzU(S7mW^7PDo%MtDOO*M_!pMCJ;w6VA(GzQ_V0!@6D>&SJeWlq}5RCh?nv
zw+L?yZEs_%40$m0S|sD0S==RZcNUAYxF;;@C0X1XR>k`$*O`d>W&41zH7`Q1Z9SC5
z!&z*R56iN6MC9!(9?jyhEMCguW#(15cjECZo{$3LzdVa4vv?|t6_PwJd^(F~L{?_8
zD%5;7YyQJdC(lVTc7drLFNC%)X0bYy2Uf2r#30Z$vRW&ARrs3lb>SOXyqU#Y;?!pi
zC%z*igIFiBo}p*)UKSg&ct4BHO8Z9P2U&c`2!}1}BME8zScJZ9%3_)BCi*0l(3U=L
z&0<>?+y9d@pDL`+q{exGFJ(L=ht@fK#aBQU-(>M^7C&e4OBOq1yIaTze<$+2aAy`j
z$P<S0qa;6Nu}hL5fkDy#n#FJICvzrO`TU+mi;(}3#h=pOlf~XF{>tL-ENbRZD~EsN
zA@%o5;a}lCA-%P7Kn~S%sGc+LsTx8CN`0bH;C7B2>g3Q&R&{fzmqWuG8s%_+B=vJ>
zkTYF9odjhOU}M=f$)Rb^)TJOH%t@Zl<y-hb*;2E)Y<DO)`oO1E4hJb+&vE=OHAdr5
zNsh^(cMffGI4p<5bEeCse%p{75#~m_9FEMPJ&lrd7ao<v(IOpl=pt`B$=F#)e}YtZ
zm9bmsC*?hI=qX_@A*aeI<a4Zy{c<=?gpxiv94~%?{68^FW8a*4w+7kLUp^0z75@%%
zat?!XxF?5ua~Pb%DLGt~!__&Qn!}JBCg*T*4nsqK&dcF6@nOQ#g=ge&W)5fNFg%A`
z4qgtC9HKecIXKKH-v6INT!ftG2#VTlkjNpKgDW|gUxTeO+-Z=?A)Pb(f-*U937%i;
zStef#Pi@p6=H;ZALqUXFefW>XQVwMq{hayZWUx`ZlEa7`M&`_-{Mk92D>6!Wj*#-j
z+88rh#xXgJ4dt!1k$YSY<CVtqh0MSSA`^ud<S;3eUzo#1;{TiLo07vcR;?VS=5PsP
ztDcZPaE5bw4l{DNEOa}vzZs42pbBkg=5V>>vxHX&uM`G8%+BGO9B#_t<{Yk-d~Occ
z<uK<zI`n5=4makoFo*e)Q?ek3>qCA+4lH^KIo#suIeu{vZ^_}-92VtpXAZYXlUH-!
z!J3mZ8!GPCbVLwII=m}~yK`8qbj5fGOT8JVVYy&*Uk*#yoITX=aDNUD<ghJ=?KwP{
z!%}&>C5MMZ9u|(8Z2kkXOq`2}kL2)Z4v*#Vcn(kG@N5pNa#*gyeJY0)B2VVbjtK4+
zV~u(`hi7tF$$Zw%F&>%W27ur%rO)N?d=Be#cvr4o$l*niSAx@sIlLs}%Q?KR4&;@v
z^w)^2&EZv%*FrgG5?E*6knv67Tdbv_?K>jtgq*&3Po8hc;eDn^XV5lE!k9DKd_Iuo
zhdF!{`tY&HCgJ8BJ`tf;43v4kRawMp@M#X8<?uC|2_-pvk;9kl@Y&)fo0&aMCQygl
zmO8XCMa+qX#T@_Vup@`>*t#_hLizVObK~nTIqa0TKL{!RQRFA#F5zzB&;O~zzvl2;
z4!=wOM-F>(*qbv`>wo6VY<%7`;r_**KZk#%^S6)#zx~aved7BWI&Xl~f}Q1=o*$l>
z^{VE9y)I{sYI>;U;VcisJ=FG4$3s^S-8|IwP|rgn4~;z>Acw&kWqt7mLi*NFWK}gV
z6PkDkKDC-k*v!L$9-4b-;i0XEBRsV9(8@z=4~Kd<$iu-N4)ILK#fMvN8fZgKutlT|
z<sJ?XZCTT(L#x2Horfbm9POc_hxQ&icsMH53{G?KSFOQGlTIEw%c_fK&Oh?Z?ElV9
zaED}f#dENSQ#|zW%-PkRlJxR$jECMHj`h%A&X4oZ$3x#Rl;b^|z-;u)uMZh9)-*om
zgm291C!OFx*#Hj%J)9)T$sPuI=3Eu^C+Z-~8*=;7J!VRZE&5aiJ;cLMk<*03gr^Ic
z+h-_}X9{VIc!+v%JS05Cq!agGGh&@h#o$*JQ^bjyU0NATdT>3Y!ZPC0Ep^(pu+nmv
z@sRb9^Wb^NdpO6#xgH80iXKLI7^x(bJd{27;<LE((=*#mnH(Y;4vUZcY{pFr|2x~l
z-J7F5jPWqu!}%V@dN@xC<Akl0A^d4<aHeL0g!E^U$V3kph_HvGkPm-|IoZR-9@dS=
z`tg|JVJfS^NOT&BOFT@YRT)#txYWaR57!iNZ4om(T;^d_9?#`5)5GN+X6A8u9<w}L
z;o$`jFM7Dr!&M$udU)2u)gERmPag94cXjI;54W+7S=O}@&haqUGuHxezUVp+^E}M=
zus~L~c(`7~*TmWl9&TjI;?92$H+i_3`Kdn<a7mqnJ8fviBDj?~%$c;BW?JTU4|m9i
zMMB!%DRP(aZV!t?`8^`{GKQgKiOBsP9tb55dRQ8A&IYi@cv!||9v<=VsE5Zw+b2aH
z7d|0e&X%hS2N;K^Bw69%X_04y!TWa=yAco1OTq~gDsxh(m$s|1;;m+*WBtq{k;ls(
zUh!~x9%tmMZfjg4S8Ii@dU(yl>mJ_l&@7Jw^LW$4TOPjku*1XK9^Ub=&BJz<yNC61
zvc<!@9^Uitv4>3_xZjDPZ;;jd!i_=-Kk)FO_(wv<kU~D2L*pl*CYS&C!?>+7&gbTT
zkuN=b<>52&4s__@i%_5C$c5LhW&Fl7I~$j2DVF3r58r$E%fsIuc6#_hI)8fj(Zf%y
zZ_TYgJnWKiw`Vq|(JMyjXU|Nwvts<>;aA!ICj4DU1*)+X@TQ189`;JOSPhx@kB5KR
zSLabbk9{8Yvop`5ZXQ-oj>S#SUsDKSwLGee)DQ;KWwr9=3I&E<J1nDmvSpwPxmlv6
znd@tiN5ed-&9fL{BQ_$={N%Bcm7K0>TTFhFJevN;&*piw$fHjl$LG;9k5+lK%j3vA
z4$9-;JPym_@H`I5qjes1duZNd1t(znknm|EIkSuV<=W<Pgp8E)l}dd^seK+D^5~XF
z_dJeLxRiI2+R=HlV%0Hk?i_far`1`u%!e)trE9)w_kNE&dgeie-jdMsUQ(bx$Amf*
z9xLa^37Pg2@;EV%L3s?$qi-Jl@)(%MNqO8=*Xp0g0QN8~t#(;crfb>FX3fg-vmLFI
z<uiS295>tlPRV0v9;ZooY92%KU^Y@t9HuCd(-q(Nbj~3MhktB$XXbHMn3mxp5n)sq
z6UK#hSdPg&+&pIFaakTIS#`C{@0HWynLM&A`aHZmCgd?Ok9;15JVxX(GLK>&r98@c
z_<3+kB=<31SRLQAG<Tabdl|z@-i%53d&ILDTpnZc7@Nmi+U0mo9$h+F=jP3>$hn+5
z&4bvO)BbskW0k0ezC*0>DyH+LL#tgK%#nQN+XZ<{%413%Q}eixI(baa<6>5oA=Zx5
zti40bj-3yyffa)fgS#Y;X?a|l$8^S@<5k}K$EoR#*0IB@?pLSUgl<)BpS{zpJg&&&
zkvtw{Dd%xj9=GRlM;=!zPZ)t~@|evCoNg{U<CdFiS<~8Bb7VW0k=Lr?bt3bG^Mwn9
z*9&jR<3<rGFBG{ckDEnq3FWtn+?EG7f>Lc!9(O8;yM%0*s~#}#3&!VeNfzgEPu?sw
z-kZmLB1>4?MeY|qkjI00ES2&@k_3PBcvu|z7NfWOds>g>@pv9j=J8Y>Pe`AkELVF8
zIs}ePC|SXB&*K>>um-No<5|@!ZUY+<bfmhV_4zzrU<)mxT@f$lv6^)tkGJ!9iJgBQ
zZ^-#8d9aB2ye{LKJl2MiSMzvHoUN4#LC|kXjWwUqcqfl_dF;&N2MO2b@opaPvEgg|
zWrKv@3*Q%R%;SSRJ`~@S$7Yd_gdgXtW^q4ZnR3uB+#=j6+$P+f$EPBn<?*G6ncT?Z
z3voK+yu?@Xiu`K{zmfk`+acq3LVJLjNuV;j)*tg`%U_eC>5zZQV;4)4TR@rTB0mc$
z`6Z8E^Y|@~-zC{2{3EpeQ-t}yH<bL9$KT@6_v62O1>~`xRZ9yrM5|ziA}F9*0o4nr
zA>-ZxY8FtdfCU9yUqI~w>J)Hd0euUoTR^=6+7xhD0S6RNzkp^199S^XZXj$_Ktp*#
zNl-r<7fh};DVQv6D&!PO^8#8F&^pv?S-`;|ZzX>YDpZY&=+7Y`KU6yOmT^A3fVKs6
zDWI$Lj}Ue!pq+G%41H@Kx;?6ZqovbPap<I2F-m+oGdbL`;8@)X=w85a1@w_-58*Kd
z^ptPC{u6p{@nioZIbNKxJwdL5v=jRk(7%8Y1&l0UKmh{_h!hYl;G_b+;<;V9I=O&B
z1q?3W6uCXUfKv+?Qov~i3@c!$bb_WAq&?vO%i%M^5YH;$yO!2!E?XDS@)(m#u>#@+
zcm?DOu%+e}kSf3tPY9C*({Hc|6X|EVU^=m^tTJKlQIeCKds+$w6lLoROUzi+VY)4|
zw$wALmX-hH%-IEuDqwm6GYUATfO89&D%;Toj45D30TT-tE3d{&exCTag84+{7Z8y?
zpD!Vke?bA03b;s`?9cftoD0Q+|L{&O;Nk+V)OO7&lF!q?iCxDf1x%BK{L%tA-sW>z
z0W%A@PV&nOm{q{F;#U+*k94&Hy;A(DLe(#XD4$)xH8Qe03LeIAj+Ezy@th}rD4!qZ
z;SB}cSioxqyk5Y<0&Xf`wRBiaHy3bU0ZUjX3%Ip_+X}e7fO}-i!POlF+*!a~1uP0B
zyvLrUd^ZbD65cjOPq-4wLcdoMe!{aR++V;01uQS%$pRiMV5v&*u>u}q&U30qnh%RF
z6K97&e`xingo9u`F8LEe7CmjBDquyyEL=Wcz|#dh!xYuCRu!;PI?oEZzlfTP`F@;i
zJtqm*>?nCboNixai<56JN%FGr72z7;TH&k0pmx1cz?%hpQNWi4yj8&41#Fh>JHiiy
z>k3$3z`LqB?@RKY_y%$ANoE{2{)c}k{*mxw;U?iEO$mM?zNLVz1#D9tV9|e8z;^LZ
zWy>l=KPmrQHH!Qz$#)CCF5sI2z7_vLxPvXUfbZEJRduPqQ}W=CPCpj#Q^D-TrF@s<
z*QxgYEdGn|*8+Yk;P(RlC}58ye+pk>ZuhAAe(aYwvEuVr0e=_pkLu*V?3s(k=Y8ys
z_Oo|}RRko-wX!z-WmPMpx{Ni7s9i*zB5D><OOo>%S~Z?A_Z-$OqFxaP6j8s3uR2@b
zb+uO3v(_Z6zBy}gFROu+Sr1wL8Wqj?k;X#q>*lD8ZK0`NaLtN1P^7t#@)kw36mJzu
z4l3ec@k4~Ig@+2;2oDp|?cqhV4LSeocVrRmi<nfzg++8I;;15yE#kN$jxM5O5yuqK
zyJ&W*cajtSWwNsf-vV8z&w~KMZo=-u9!2yN=_RC2HC^1tphxltI@PQ`MI2v5ya>C9
z6N)&o2=-ds$kDfme)9Z`BKjB2_Uu!Orl%ztP{hC@PLl1(MQ~tnif~X7gC#U03N1+x
z>10R|LyKk$CHZMZ43j^n3n}41j%sJh;aNot7l{a?!k934cQ{4tKHBJymoQO8Qt5Jw
zNQtC{BZ|m`>CKAdgq|>8L?N^-ij;~dhZ4Vtia1lj>>63b*)onQ;=EAj9HsZ%B1TIx
zMmSa&EbEL5HG`};U$LD~#6%Is{{j)(UL-P&9*RsZ;$o30LTXMGxkSh*^ywm37cpC8
zhVZf?W{O-coF%+Mc%_j3TvasxS!Ol{_q|gxsG2oLrSMA;zZNmKi0g`&SH%1xUMXTt
z5etgAo=reHHwf=5Vo4D<hGn-<<R+Fo-vYv0invvTlG}>7UHlH=qELQk5qE|BZu%g8
zkMQ15&W$wphoL-L!~^0FhLWWs4;ArnC|Op-BjVfuwwRm$#UC%?i6WL4@ezOeT*S&E
zo-E?2B37^hYh&#--&s#Hv8tKGXN%^|!c&l|i&#~}b45JQ)}e2r7ex3Hq47mFQhnEu
zFU?plD=fZ!81C94US)7ad@SK>MZ7EWy6_DlJFz#_)x1^2+am7>DPLE_`jE4v=;3>E
zvO)O1aHH@8;fKN?=uP6AL&+yaY$;-^jGqa&70nsp?ZQumqib1>p0GZb?H5ISDe_ej
zJ4C(~ek1%=7<_Xv)!!BIy)tB{@CV_K!k>iH*(I{Oh@VA*{n)?BpE@PfE#Y_ZKZJh@
z_XwHly&``V@pmZsN95lk_JxxDMQ+_TJraZ@)k>%y@){-76t5LZYL~$DQjJf&5*n1y
zP*w+&P(RdR0vnakxP(+0=`xy>(6od@N@!g|vyvGovI6ju*aJ(ZRx~e}_fZQWNy`#i
zi6109SQv~YIL3Ihv2|z(ZAv(-WUiOzD566NhnLK6gZQ*9;fRp8E8$4-_QIxXEGitu
z&`ao8LZ=e$E#bZrI+xI;WNzQRs)Vj3bSq(a36YZ7&`!_0m(Zhxo+b1u;WUMKObNY9
z7*N8%5{@n5xDrk%;lvX9$o6=7Mc){=J-kX+|CZ`oGFP|<vF%qv|B@LvQHOX^2`85@
zq=cbzNHxj_Nnx<?6yd2t+R_Ozc!p6}!Wku;$t;pW5N@DDPPJ$WF_u>eW26u-Azea7
z+!i_|Bt+;cDdMu!M1niCv*IOTt^_ZzDxoMsR|OFc<j8psaGAMXLPf$+!V$ueC7dn7
zy{tQx5bB>(!nqQX^XB2PC7f5n<Pt6}VVvX>L)-BsoFDQDrT@Dr`hpTBh4KqUF8Yt{
z6iF^GVQLANlrT+oiD6Bb{L=qu&M4us(4UzitfkbPC4PnQ%2L%$*H@P?Tas&7Y9%Zz
z;o1`BlrUGq>x4muFc0UIFu#NaC0wKnpXulICEOsL;HK!CO1Qa%+e)~-gj*!1&aEQM
zsN<Daca*TGggZl99_*zK|EqPEBzFrJGw17D_k<3qu%v|hOW0My?h+m-;lUD~FX4p}
zmX`2P>Hlscf4GEYauw8>M_7|fcubPzB|KRIo9g2-J|U#>DLG#$;|k%^LI(Pb^x3YT
z4JE5ecrN60`(g>JOW0h(ClbC?!W$*LS;EVq&MP8oN?2RMtKzSf@Oo$)lnb-&trFgr
z@O|Ms>=X1gv95&mlDsQ?PZ(6W4dQgWv4juAKNN0KP57vUk7Z;kf}){^TO|3ags)53
zTEeyxwud^OmGG%}P}ZM^@-IZb6f)dzO8B;fpJdz->U>|qcOhr1VTe0r{Go&&LwOJf
z`tWlJzm(9vj1Fbfb^OXcxr|z6{Kn3|gg;97Qx%)h*i*vZ684u&4;#elFZuR&3IB)$
zx%aR5zEHx>j^0)mRuj@l%^LsVwache#(`xtFQcyH^~yM)Z0ZJ;>r2wOTve$WP_w$#
zP{Ky#|7)#H%4iz;*{odEnp%|6vW&weZx!0ksb(Ei#=+&Pd(jUG<*my&G~{hW4imDk
zYa7as5NRhoQph|!s*Ix*y<{03%ji_biDmSaZRaw2l+m+{E;4o%b`vsb-NX3z3MI#h
z98*T`P;#sYL*YBIkNEMz6GFHB%IIIlFbX9fAUw5<fr`>eGM-$<Ad$gkoFWqBZGeo)
z5DABtaheDv>|V|&<IFPRW!Po&mN`o~#&^x|vUxv7q!}$ECPD?aaXJhLxl=|$niSIL
zmd(4EMb9TwMz)M{8Gaf6^fz0!TBNO98D80(+Mrs#jDqxw!jdrfzNnPJH}!T{;}q_Q
zGDdRkl}Ej}7Es1JTm&rRoHEWWo8_U=WsH?Ab8k!;JW@Tow{@O;<9V*e`uEfLGR`k!
zLKzdw=9J2$GA=BePoWEh%Wdl-`Ou1ozsjgy&Emoe9rBr4#wBIUt>C%}rg8DNjQf2&
z;A46jGs<|WjF-!}tc;muGkf_=8JCwatBgBkyrPUN%UC3SRT)>8t9EY8mgF9;yl^3)
zjBCr7!yxFEWA!qwD`Q?6H<hbKyz|RgP{#FaJ{qpDW4xhkKD`%8;YMN8dRFyD7W3!k
zGLE{?x}|K!V=R$d!}fK%)TnR=^P#f|h_U5l_+4e(t;le~jms8`gNO<572a3I5|R6v
zZ)H4K#?msLDp$?4KUBse;`|NS!y?O=knrDRk4o~G@NwZ2!sTT=DZ&|#KzT(OPnXSP
z8b69DT**SAv5e=+c)pAm%HSq#Zad)uBBT9c8IRR8oL``;6*o@q@tpW8WvpS7_i>1i
zwPn0o#;0X`R>o^(yk5q(GPbiCN3A#H<RezFvN@OWRvB-zMoIW?8Sj;`PBn)`zg|^>
zb#;R(36FPu$bPB2^}g!l#xg!A<Ck6*GxOP==3L%j)#{JS*d*T=)y-vm67nq~Tgzr1
zd-dJsKV{5t)^@6WUd9(??3Ds<R{2tdR$rCP{U=|S@l6@uma(IZpUT)(#&=TKDWvo7
z%jSY3k{=}bF_d$HcenU&W&AGkv+x(;udGqwt*3vK@u!6J<i56Mx6Gb0R%kQZUuCnT
z{<m!ZVRb5FUm5$$Xyl`@56cHnE;sN^<>vz*)qGU<QG>QxzpL+~rVm~%QcF4%*7i|H
zwsnP+)bnwG_<vVtmT~`&j~A+&rQ0UHSx#-~qm^%_Pn-H^=HozmsAJ2`eQ<h~PYWNn
ziX5b{g0nN6oSDG=|2_`&(cMQ6A8mXb=HqZ5ZGE#kz-g92+_>AsI>HA(j*jwi<_yyh
zxARR`cBHVqj}9VyCz}4vH#LVdFdcm}A=8OQkuE|?y87rAa$fk*(?>5KXZslC;~2&5
z`;OK~AHBto^>Lh!KFm5U+WI(E<apr;!V`skh5dZ=7a1TNC_G6>=O>E{@-bMXiT-mp
zMEp#~-^Wn#(}cr(obH=ZC2!Bjj<(KV40+aoJ-?5LkBpD3kEoBBkEHbDK5RwU@vC;C
zK69d}zzZu@g89RhCSD@#BjqDaxAKrakJCI}&WGot=%XaB^2~V=cGQ1<UKM)Thwo#A
z<P{$qMwmalvB5H3^qh5r8y#6&*dEXEajuW+dzd;uT2Z=7IL60VALscP=i@RTGkuKr
zalVfWnM@xOd`x6McQpruP0!Cd(AC<`v*dgo_}J0eI#Tk<J}&Vw%{Om{i+xP-F_o^k
z`2@z{myN7T+4-}&*0acG`1r7sk!PzJBgy4HX8E{|b<zhtyu!!TK4yzwDZI)zgB*6_
z*Z8>BN8pO}ZH|w*GV<+1e;Bb>YFhJsEbws)D>l>X;|3o$`dFyA(II2SaH)KgBsVj$
zTw&>A(IKDPB)r2%yUy0_zImI_3H2BGxYGv}=)4UtTTsirTN$|6$2}tV3Yoq4`B)Ni
zb}|q8SnA_1AAkFJ$j8GzUi0y~k7Yg{@v+>;lRh5x@tBXteLNwD?CyAH0%y#EU5lM3
ztH<LK09&_@7k#Xd+S9^k!mw5{^5UyP$#XuQ7ysYxT;2-B7_Rp5lG@|TtoACwSA48d
z+Sdx1z*l`VuVs$SzTx9d7MYKae7xo3Z66zbd_dzs>m5c$J>EKn!e+i+P5xcsd%_Lu
z?nHuqfR&&3Zf)peHfnzCW0Q}~K0c8G-(`#&Yws5M#x9h~lx+2}&Bt~hpAxlL_O*}C
zsKbagHhs&I2dyty4SaK=iqk}2`Q}y536pPpe9Kzu<2xU}`uNQU4-tRw;}@lIr;i_e
z{3!mDk6mFszrC)t+sDt6bEg6CthiEl2Qg1}sJi~{;}0KyN@4E()*cbs?hR`ukD$`{
zkB@)pX9dSsu#Z9e=vqOy3akoHLEDPy|EpDSS}m)31vM&W-I>AFl$?obT0yM}9CrQ{
z)Tx+PL){AMSJ0q>dKDZ{F+ESSAr^Ol+-6w~D`-TW3Yt_<H)?iYaG8U9EqIejMVkS*
z*P>a)bj}9~Nt##CBIGSaT2*k6$ibofkP2FhA1Z7U$`7mH@Q|~Z_#9C|JH`A+VS8bR
z3XT#vx`Iv>bgrPIj7)g2g`kU!tnHN0lkOGtsGw&By(H)U@Cj>;6<fjE)vRMA?5(Ug
zwqnL(e2%MN&Jr`6IH7_QD;QY8Nfq?1pkD<8q|Y%!|B4wyvZv)?2PT{qj02&QD;QKk
zzJfvpY-@w1d`1PQh@2`MA{;7YG)}8vSjbNo3AW^&$*ibgcm<IPq7~#S@G6K^5U;?k
zAXUNgdRFrjExUrfYHLo#j71Z|WCa{Q)7Yhv^+Q9`#ic9ARLop%R!GV3bxnKWvLhdo
z_dA*YdKW7wRZy-VkY8MZUqOX_Rxna=yMQ&Mf>9NWt>C;0&Iw~ax`LXgS?5;FB2f_k
zF|uNbjH_UL1rudFU*$U?bj8wP4zQ&DA6@SObv4mO3un_onjlR@6a*Ads#28R1qBPz
zRN8y`$>}*c2T%d&pdtteiXw;<DK<b+nj%F3QBaB$6~&4L6cr2q&dwXJ>;LXuD{HSk
z&ph+YWLjn>lL^z~mX}q4YyoU3<b?m0<H!PxD!^zC{tGa*0JB;e4;0|R0!(95lG!l@
zP77_<!5CZMJSN7mG?{*_ep5bPz7sqNU%5_VtKmyw#WF=H=jZKw22Eq>^F;v5U7z+p
zT7Ve^XyL;RK0H={nFZKafDf2}0z6)THw&<_0J94)M|NH;z}x~nQGnG2SW|#`67n8b
ziOes+lOj(QU_k+%F2FMdST4yzCa(a`d-{u1A)hP2VoBUAWouo+a;)Jze3yEf%l@OV
zq5v<*x$-|kTMMdufyDtEKcD2;K`*iLNP(M&Un#(=;%f_>X&sZgj&)wckM$z2312V3
z29Y;BUmn%9iS?uaZx!I}0_VqG47;TOTML|>c>I3$Sb1mX*tP<^Bm3Kh+@Z?R0$a)s
zId=+ou@!UtFMLn9TewHKSNOh=YTyw)1=wGJl0KC3;XnaCV(g5x03R3NU;(};z?TK!
zUgAUQ2AQhE1vpZGPn4x6)y9vC9}^xIo)CV@^b}y|r6|kgQ2srK4O#P`&6}OxfTm6{
zA9#e0-ne~LfUgVijc(!F0(@71@5NV?F!+fFl~2q0Ljisi`KbUuvmMC}2UKUo&lZ4R
z`*K+Ii*$Y!o)i97fZs)E>W>1P_c)(lf3x#1zy(%dpVQ%gvc&mJo0-FPbv|g|!;d^g
z&F8$`DC%?eT@>@7xHMS}N{BGVKoz634`qC)<-?UeT;xMpd6n~l);MV`QN<~&@;+4X
zp&~C0EcrmW*oR6!RQBN#>DTn33ghyjhMY`KHJ|=P#Rt74d-eU@rQ(<QaJdi9b#(HF
z*W5A26_T^g(0P>)wS7*{+1%%BpsFJ;-tW~S>}KowoX1T)VSV8>!fSnKAkt7sokl)f
z=X1Vj=5@VDV;`D$lBOcfe3%$@zHa6h4V<Lh=tE0ZDnCm5(aML`K78-PX&>77a1&GI
z!`Dj2&B9Z<$F}0_gzbIk;6q0rI{DDqhe<w6_BqROU3|FPhyFfvm9v`<-9>u%&{w3V
z@D?9>`Ow?t9Q^Y}#JLznBfR?f{?AJ9?ee<AhdV{?67~~Plik+<9|rp1_aWfJARh+%
zFigJp2=DVW@8vzp{t!<xRK)!O>u~WAJ`{-fJRL3x27L(mkoCd#A?!m$UKt;vKA5a>
zJ|rX=*vuJ9#Z(oKt~HWAXY@N)%cLYJ>7>0hFy)pcKQ%ORKIDBE>%%x7_y%XB5BK}<
zfP6>!Fj~a@StRXqVeLUlXkiTNp?>W6kPqX1m>@YbgkC%rgUD;5g#3x&6d$Jg@RAQN
z`!LOi={{%WZIyf<_F<t9&-(C)50CmVgPp(RPy3ve%$d@BLXug+$9<SBLi=-knCo#G
z<nrA-Ip+(X6h0+fAZrXlo6q>1g+7u+J}mZOxeqJYQhZqAbJk|Lj_1~d=Y7tDeyM^l
z6SCot<FP;DH05URN;Xg3?`p}{2wzm|ped@o;=`*xyvxS!!&)EK`LNZ8w|rRd!)rcl
z^kI{NyzavrA{&GZ$lz~!oKgH+KR5fZMRK?DyzRp_A9nb#Q^KuUu6)Ob?Q-%qX^Ph_
zIXMv{XI}00VUG{TB;4!6`#v1>;gApeB>B*X{URTDb>@JaAG4%*_=C8+TJG9EED2Ni
ziO3P*UB!%}B8)NE-#G5W2{}LY;iL~77g7G151&iu{@jz2FXa4E$R_g{cgOLwU*+ew
zK76MhfIXEvq{;BlFZGNc*bn>g3vK%FlMg@paK?wTKIbGuj>KreeN3?DVfk`P`8gkc
z^TF@~e()1QD)2W+zx(iqjMI5u<WC>|68YPc|Kr02@m6~7Fb#al7x6of2DXl(eiZXN
z-6pT%ev}X|=}B0cW&F6vk6M0Q=|@>V%K34rAD8)2-j51?RP^Iwzq3BWy%|)dO+EoD
z`JIml$az)v;}XS1UPYv;u$r*CA2mek-{<IG?ng~IukbtL1a7&hxZ4?{GQsq1QpLE+
zkE{Kt>ql+B^Y@uLe&>m~O$Te#bM5$XjR=#(AkMOhK8|SUM<YL4nrLO>IzO)W<Dme?
z2hiA$CVsr@$9sM>^`n^|2|tp4G?x)tXz51_@f-ZO(T|gl8DF+`EOYg#l^?C;)y9vT
z{J2@1!~V8@v|~<IF^2h_scw78y9zt_(NUz6kajxz(M8-H%2LwJkM4f-@S~?6xA<|l
zAN~F4<wtL+-NmBu<2FC;kh6~;ef_vyoKJ0*0xb|-LVl;eaG!HO>A1cF{21uRy?)&1
z#~?oj%j+JYn+yhbtqqZI=zqex3d8;2%yER|1)i^u#o_UQNKhE^Bkai|endTPip2bg
zdlIf{ru;}V&3?@DBjbnV$K!s?_9N?uEwveb<ow9{@rWOf`Y}?%DKx^(KjNeP&L*q-
ziGDoj#~2AG`7zdyaehpY^C7=8nH}$UmdGA4jL*9{Pa-Z~Gk+%f!DNu|nyiLkPBy0c
zG0l(Zeys4OFr4i^th^;*)Xa@0!pGDcW-1n1m?gqSJx64&@UJVJskhr3%x4<>*y(qM
zG}M2}k7xW?=*Pwq#sWW{X1(IJ8TKbi&$9|%wz{#%kHt)<A4~k$A|b;*&q5Jj>PeRQ
zv0QwG@C8r4(vMZ*tA%Sk`HLbi`SG%d+he>c&iq-c+*s$wdXd+Jl)vuB2JtsM$(te@
zg`0$%l`T}>Dr;{E-xhB3;~kOh!W|r6c|8?xiq|gXGjnXWAA8uQ0_YOJUO(RV<B%VR
z{n+Qn2Y!5{;MD)nkNtiekdv$T>^*ofd!4r@ejHTaLNy9ArHvzgeB#IVew_B>sDgYa
z9M6A&i5&Oigdd-Zf9A*6F5&oJ<fI>8c#<#uI3@m-kYC%m>HkK~Z*>=(RJtqPKlt$@
z`^EsO1n`p-*ky4R#w_|-&NF_T_2U;me)Z!V``!S`1@N1^{_x|xAHR$LyUzBfoJ9lp
zOXP3iKf((_CdLRj-9Cgx0^k-(I*Z9!Tu5gLk&*$F5-BY#BfLmRomS(VX=ZsjFAg|^
z{|ZDA|7^#rlDsN=`g||IxcEe?DoHhA^#E!FaH*%$B7n=pFAtz*09OQ1D}V-)Tq(R(
zc$JW8s2xBZ@vA*aU6Fdi`oe1haP!B#(}of@64JtT0bDQM*poC7X)0_MKy#6QbNB{1
zZw#Pi0IdROEoUbot+f%kNqDoct+1W2y|9C@BZH4~a^A(R0dx!C?g07+&^>@20q5t5
zw+7HNfLj9SB`1~nK;#UL-|zR9<XNtY=(<hLKEl4j+XJ{m<W3>g?h@%IY^P8I#D@kj
z(9;<tGFW&|0QY+G`$UEW;07NSz;H<>?l(pRoNlTh0AB$9fHR5+1rQD(5K#Xn34iEJ
zd4%_(F~-OMxaTk$fT^sA3FE><!0C;Xw8p`|Bxxb<JrjTxKsEq7;5<@!<pRzLV=m82
z$Z07f8Wq6k0PYXqfdC#1V610>jc$z6!({N$JWg`zbD%OIfQbQ&h@c>XNdZg_AQOfa
z#*_f2vc-k)dkE74m>$3fA$%CZ!vQ=J!0SP52!cnLKFZt(V4e)l2%rx?{|sPez*#Vv
z6~N<)wCSG)zqOwoz#Q7=gC^jtw((jq+NlQf11J(i(IB1-;Hdx>1n_hKd)UPV@Js*;
z19&xnwE;ZKTn%82B3c~4a{;UnUm{#Cd|tRzNXyHVr6j!EgCkxDV5R4~N@R7w`KK@y
zUJT%+0A5!9vj|>cJ=Y(=>BWzo*9EXXfE@ws4B$21egK;T*rL00A7mQ>ctZx?^z3g8
zV3Wt)@z~Y?woCF>0B?(I6TTy)9jdWVT;*K>yvtIS7t`RzLa*JDxH|6#urGkq0sO$y
z3E)F{oeW^V$YJ3DAuW6qz{lbTJ;|X!;g`ttJrcktk{=Zw6CM|y5PmBBO!&EwCkHa%
z7Xf@3z$r<-XZ;^*d?o(1@EhT`!taC(!jET(-)J`RqngHF!k+^8S>#LrX9M^pfL~by
zB^j<q!#QO*`vK<C?*aS~z<K%duvS*=KmWu34mkTa{!xq<gho)EzmT!>Z}P>0C?3SD
zARZ5*L=Yu|@CBXaol-%R4x&pCU4tkS#6>~W3gXHj$_7y`h|7cE0EP)DA4HWPss>RZ
z=r}71FBVo3Qdn8!k|6%j_a<(sRZ|+O3u}1kxipB&#NC3f8Fbpn6`n5}J8zIvp{s(Z
z9YmcVt`4GQ5Ur$8H;4v7G!(BVtS`JKh-*c7zx*>`Bk|_K>x9<}8w;t^B#5Ts&4dd}
z8yChnCDlUC8-ln|#C=D`B()Brog{69HwkYRGF023bG9T&dr3M7J9@sIL^=!Iw%IL+
zK0)-Aq<auOJk6d#+#=pf*jsq3=X)E=u8I>2^XK*;?o)=}5yYJg#hza{Fo=F4cMJOq
z2MDRdDexfi!NPky`Mo0CZAhIVK@9ce!-5#@dI<}J{05V1{vZND1cL}kID^%L+kt`@
z7sNwBM3^C3J&p!p1`!J)9z-ID2c?z_A{E5QAVvj|4k8moHV9imnrv{+8nynzb3x?)
z<D@Tl2aT5G0pa~ZSMDNHGA4+zifeoY=M32KLGZi032uJ!G_c~v#2_ZgIXQ^wUJg$Y
znJSzXbauHgw|PA*$s@u?y;7k3u^?tj$ePS1Fgu7ja=sXJ9$s_BR|fG!5c7hVuku<F
z#PjU`gLo>41zuRUAv`VTGs1<!XN8M`SS<3KknvKV*U})CN#X`y?)k0|c|pi#xQcB@
zb!K%CYb0dx@hSOI5HAPu3j2W~#yZJg6|NOB7A}Xb7k^F2r3nh(;G-~zMj>1m!bVT?
z9g$7K&B86ht-`m0csqz~!NPCw-PCRmVn+}=gV+_s6(Og;dY35);`<;@E7a~F4vXvw
zVz0>iLF^OZ`T+HLeGtTllI#~A5Pl^5SV*0NB8P-r$37CoC*ntgIHeLf7IapPj<ZX=
zaN&f!J|&8L9>hu39QHp|ofyBAkdH`mUL;>h^0n|A;kQEie#dUMjHCHO5I>TKP%4C<
zg7{gH8X=sK<{v?v58|vB>X#sX6+h=mehcDvaSoYi%{@Q!Pf7mrbp8(FACF%MItTVr
z6QRP@o+2R>^?0!mii?-<By1O~x}`&?7IL}~1}r15i$W+HLOB&p`4BD<sSrZN5H1cC
z?uDxyLM3sA;yXT8Gmf&VNRyJPB9zl?bs4V_!lfdY2`?Ac6mkKFYPCYRG6b$KT@}LB
zN=9vA9U+@7lgg`Z2=yc(uTOpPYduMW5E^=XR%_$>5E_RtT8U{ALemhsh0r~OW+5~W
zIV)NnLue7g4I#9b4sG7Zn-Xs+JMI&?wIpqXHwkYR@=n`^&`#Xl!PP;W&5B-~Lg=g;
zbXN<zgwR#K?t`F52t7jxg%GA18)*o4h0rgAUef6;yfuW|L^!qSBhpuRyO2@bA#x|n
ztGW~8-68Z3;XdA42m?Hwdqf6?Fi2#u(0x&UucyOmGgLgF1P>D*9&*M2Bg6}YJ|QFW
zhn%xPNO%Q9g|$5rLR1QQp(%_}s8yG^oCzWGIT=DqJRNe{Ag_#wCCm!#5OSU`4~Au2
zBSX%aJflK|t@8d59th#V5XOY?d<aWJ7#qU45FQEPQRV7GAxu;(<Gpw%sN894k|ZRP
zLzp5y)ssvMVY<g34i%0bXN2%r2#Y13DO{u)GAo3~<(wVDe33cAxxy!e^Ms7cT{3+#
zgr_{of)Jh-e@3`a_^jtkea@tqUC(*#Zb=B|^&f|2(s`3zaR|#p&KB_%A-td@trV^c
zVU@`05Y~viD10S^mqcjxWwsZMGhdZtttaO;Jo>H=;WbHK_v9Ny-Vicjn?l$e!d|6h
zOUT)##cPMi))3wjdE1k33*jA)Z)ayx#@WrXQ<7c6cZKf>cMJCjpU}RS_Z7=Nq5B-!
zAHsnUz7F9V2|p5k8N$aR2UT!~yp$i7@QCme;ZfnS5RQwS5PmBB%tfyMgm6;)3s1tR
zPl<mebW_5T9azfv*3<begzv>q3x5#)DEvwIv+#`Ytne2h?fe?TIdQko|3kcd7!|@e
zAHtt<{uP1|cAlGmt8x7!;RPZ40d^*kZ;>#HhEXhx;&QT6DiKD>Fv`g3ro5DRX`x#`
zFA^^+EGKlww-v*<IE+ifxGe0vzu?L|^(%!@Svr@5oweC2jEkMWu$r*Cu!gY5B7?q{
zhYOE4jD%5BVXp|IRv1@?aa9<t!)Oym?J(+u(LC&IWxQJ0P)KK867l-NYdrb2A`OJ@
z%66kLuJe4a52LYo6Hn4KjAr6o>!#Tj;x`Cy^mJN^v=X{%H-&L)7`KISvxIFu&2}Q~
zg&o4^7)B@Y&SCWMbh?Oi6?PML7c#XyMQ#!H6884I7;m32`i3!7lG}w$aKA9_@c5l!
z+~sjvyE}~jVGQsjgGB}k2Zfzwa|Y*iPZ;+~c%P>^L}d9CW0=TrPd-AVAPk=;@rMx*
z4+=xVu+Yt@s7lrhBgTpmcD^S~hMg@*Z1Rb)v+IWcXGw*T4m(c=zAh|T#JCSeHViwA
zKg0Mdj9eJ`Fg^+6Xc!~I7$t*Cg`<Vz!?<6B_3#0a2g4X6GFCXw^L;4nOn9lrYeE<k
z!<ZDtWG?=M@kkhtN^NS``6UF^*i5D=Rnx<GSYDK{O);G_<XjTQV<H?h&J1H#7>|cB
zJM0W67KEKg`5aafjaBA`@r3w1;e1d2WEf9*oC6yMd0NhAgbTxXR%DT<vp9_BJkBxO
z^NOAK;!X*dg|S?c6=CO1*$ZK;3}clfZ-=ohjMd_6!gx{Sr7$*#(89}MydwUpCs`}9
zPPjgd*F;|TeA)0B>Wwholw_kP-z2hGxFw9Op8PElH`F^}?DOQ?MRo{xhOx_&zbo>d
zaCaDcJo#Rc_l0iH^MUw>!u`SnVSFU=vGAafsXZieIE*7AZel1u7RGm;&hao#h<{2H
z`8<rT!uUFjlVN-j_GSSr8kOuR>A1tZZ&Y)>4Lb{)?kM`$F{gX{o_WhHKw<n4#*bnA
z6voeC{Gotngukh_oE85ij9>p_^PITbMgJal=Kj3Sy9%nwe~0l;7)>H*8o>oNs0glz
zpjO0rD6jz{f+7(Vm9wg_SOmo*C?S5au%xh51f?S=6Tw9hREQL=yOxbO?S<8{oF^$C
zajLXiS1U^B-g~78Do32j@+A?cAv5+Wa&iMtwFs(5P$Pm%BdDpk=zCejSu|$Y%Vor^
z!2do&uaw#~!mA>vEmB8#wXm*`39A=DeI`;3({0+<%Bw*H4MiANBa!POxL%~OaH8gq
z%{-ls5i}QXA-o}i8zWBd)G~sbMaWx;w2q)n#CaawBqxsuqgPu`r(Fc?J>DVW9LPXl
zrlAvWQ<l3#&^3Z?5p<7WSi~7A^@yNn1h+)cD+05XQE#A=;im>0y_wY!tSDks(pUDk
zMG#>-<&-mmz7gCW!5tCjUtKJYXZhw=<uWLOyCP28?<XX=JA(e=13bw<5mx@e3UZI|
zUg3ShA;O`;R$9knr#(D^vLy`uch$$>EZGR2h#(L_FoH)Scr=1g1mOrqMKGG_WF3eg
zAHhi8k?#7cHbzn;7D1dA8W@QP_zHEX{&bd#I4_mBM3asn6LA)icv%r-J#LHS7)uFf
zC5QRRdd1avlKUfgAc8RwjEy)u%^r+^FHI<Cp5!z=AIBIqYko*~G(Lg}O3B0srpWB1
z2qyCuiWuB2Gh(^XqKz??1$U=2D4iB@Cb`quBDns;a&PDy$~Pl|$0C?5Ym8`S1hXP|
zTsGaUYus_|4)5nkhkGPgM)M+=AHlCtoQvW~CN+W|qxdQ6w5A0SEKx-K&gf~`c_xB|
zBF>G7EQ(;U$a9{Y8$q9sU}*%)6n43A1b0~RMMDHHM6fb~RT1=wqHh$dBUr;a#wFqi
zUX0+S2)>WtbObL)@Cutx1iK@6HG;L$*%86I2-ZiiIf5+_ye8p>2;LBRJ>tyGY3fbI
z=x#CED6dUIch?OSw#xZ-1aFDByUVtTza!i(boU7D6yGJ|?~2pHcSVdn5$uiNXavV1
zc;AyBieO&^AISNk@Z$*fiyZKDK8iRyxM+meK?&Ui92P$!{Dk=+o#PRlkmMWTr@}8I
z&d1lEMew<tCxu@KUCXD$zY=~eWL(c^5#!qkzVjr^t{=pI@gzU8f{FhuJmbmFGL)C*
zUn4l@$$#U$i2orx@5%p+;4hE=EyA5_7uf$qfhdYZ(J+ceQ521$SQIs)xHO95QIv?H
zauk<Do%&ERit-}t(o02ATAcDSQCuWmR#;BxZq2IT=~Rs3Vvko6VeAZBC5oz1RErkw
zQLHYn>E3;D>)mBhTpq<$Uf7yZ)bjWhA}o|EJwk)LYDZBgimN58E4(I(dLs3O)N$9Y
zuZ^OCBrGF$+uL<fw2q=p6xT=5IEp6ny&;Mlqi7mMvnZN-7FtCAPyX{v1KMP=TgsP7
zY85T4EjLNhA&QPs-0X#I8$~<u_MU_r#yUmOIg0L4^oXL1<lTf_Jss8!w=VUhM8aEz
zy`tzX!g$>ra4W`bUK(zfFTFNIaYqz)MsZgZ{i58(ib+x29Yy~r3Zn2uF+iI4vN)m`
zC_ad(;{N|A?(wYA&f22J5YOh&XyG^Dln;wyxa1>TRJQn|2t@Hf6c0ubj3N|8GKy3b
z;V2?fiwmPsxXpof%qU_Ky8S~!oRQKit!|LSmM|l<qR5I+?gq(4k@qAcqZlPVI*R*6
zm{Ghb=F%8BABtjp6l2B532BF?D-b8h=~iZTUz4Ml62-GoEQ(@k6w{)Z9mSj|rhB1g
zM)7bIkI4C`kTq?F$YY)k%aNvL$@#dD>6t6?l<*1RJR#FCU*t(4Hz+Rf<WDolJigE?
zg~d@k7sZMwUWj6e=esnD=e>MmdU!j_qFAnyb@O~>6sw|G6UB>BxcR)=3+r~;FHs)F
zItgDEz7oZ&B7F76M6UPrUl(~z=(aNA8&SL&#l|Q$Me$J-AIo=h6z@c_J&G-IZWX>2
z#oHoo!nTRCq;`nx748)7isIcU-V=8Vh{@P3=bmWcX&diHu`h}bBs?JekT+7y*dKL<
z+0=Jq;XNLV;!qUFrE^$#R7jm8BA-N^9-dBK$COKq^h6Y&M)6q`pGWbnr++evucG)m
ziZ7zhkl;(nPqCv@*lCRnR)B9LWY+Q4cz7D0?B7Z9z3{Z~hiKu`^XDke$kZ>)z=Uy@
z{n7?!@w`nh2YGQ%>2Fc|9z`h=rA_=H<s#hEDBtr@{3!{Ye~J7p{6}~}Xh<1C{>Gh}
zMNJelogqhY(>d<DguF@$-KG07CN45j*~BHLv)9^<tE?2t3Co+PAVRN-A{U$dhr5$1
zH~lN8I9pgbZmFV(s+y=~qPmG1CN4G6+(bxo|I1A0!<=R&E;mur#1&G$PFTytl_st-
zQQJgA)0t=0F>$qtYfWcT!;90ax+dz$SzmaKS-6zM6?J#Htbrs9+ej8%;q^4g!yklA
zgmgAFo#)_=%1(K4u-(GM4JKw@=Zw1PywSu1n&`DQ(S`|&;i?#JGI6ts2_`0*Xlpv_
zT^&tyGSN=Fy|9CDs!qA2LT3|wO!Sqoi?FM(o3Oiy9wI%N7!$q3w{YjbNN;8fv%QJ&
zjs8h}x{pI{H*trFj0sCRcbd4%L_ZUcX#Jm4zq`%C->Gw+)!)Pb69Y{QGBMahz(ml*
zJtpooF^mOm;yx2YObj(K6-bxG(r(Ua)x;Lvj73$A5hm`eY8068(Fl8n29B?vc38?y
z3cmpinFyPRF)=10CZZ-xDg4^q`9hEb{*i5so(+u4yBi4;NqMD(DdBxpo$tFBOOsz6
zW=-(l+_s6F%J=R%&X1VgEp~ZHMhZs>M+@&~Nr^lt93vbnWStqOs`Zd?ypTsyOfoUq
z#9<RhOibauo7iJwuZd|UrkmJlVwZ`BnWf6f^(G!QF~fwrKbg;($4tB=`!h|<GV!>H
z*(Mg7c+SKe6LU>GZQ>adPneiz;wcjgOdP$|IfZ+^Zuv<Q{0g22W%GWA@FRB}piRDz
zHP*x;={(lmxX&<n@;38lNOvdOmza3o#0w@?npkRLnTh2lR!Dg@oD!iO8X@6zriZc0
z#A*|3OuT4fzTwEJ@JLmof1g4fe!2OwmrJjxTX<FZv)05q$vKPUu2;S`eNE2SO>B??
z+shj!-t_oJ6Pv_03%3ZjdcJR&c-!OKMBXv6-IMGP;k$-+O}wXAcAL((Kl67wJ;|uH
z4sz=EzKMM%_M13h;sZuk&5?h|I;p=!aPq~Mtsj~A*u+5-hh)cnea~;uI+ip}aaygN
zb)T>xXy3%wCXSgnZsKzjC#8SF#HS>z!`^#;n&rDcHU!4?g^4dsoMHm1IiFcEg%t8)
z<^0CPw<dmIy*2TjiSK3YwD99Hg?}KOtVOe*O#I9~Hik=L&cekR-f|`9KS5`u{ELZS
zO`J3Fn~CBvl!)PXcK#;*F>%4fc@uw{_{+rKrZatZ3zQ{zOI4$Ecf*w!F(8H_F%*qC
z^?|-rV+t+9C>C=<@#|gIx<efN$51MU@-bA1p>zyoVkjF!xfnCqxG3f{c`8?A+YzA=
z)<#DX!^N^wDOOmc_#rUACZiX1cyvRRnA1_$5>}0&TFiM$Ru|R~UMjpyczFypV;H4B
z99<zvElu9}{R<7&j-gHrmnCp{0$0bJm8AwTG>oCHcs*f#;Wff*g|iwvUsdpG6vGd3
z{20e|l3y=uENmid8bh-fn#a(BHx);vIBtmH#u#SA@K_8jV`vpaDu#3ntz&4zATj4*
zaZ?O8$IvZ??lH8Lq<st>VrVB$1&$&*dc0H28B0^rS&}ZEylbp*?9n5Jo-quFVW8_3
z!)-D25$_d4Z%_Z$SmEr0_WQDQVz^6Qx5sdYr{hi*`o)}4H=oFNOWt4T4xtCdFj!7s
z4EKoK7sC*ddt=zF(Kzi7m1LL~<8V1g#8BV{;l1b{{c;9k2*wZ+4-4HdZX)6w7tx?8
z9uv|Tk0B95Qblldt-)y{4N{(o;ei+)jKPv-*3-8|axvsZMhZuHzN1C%7rMi_G2&BW
z7#qX57#@mYd<>Igm=ePTFVv(MCVJc*YBH>wfz!P?*R&X>OXp!v^AV9pg;bsy!>ky7
zjNzvk9*<#m47+346T_Ss=Ekr#hIKJK5yQL~mc_7Kq2|Z1Acm*KpA<eN<e>4H7#4~z
zjp135=Y-6eMKLV)xH~vs62tSJgeh^$Zbb|)NceILD@E1_R|!`O84(TgdNGEV7?F1{
z8YQp9@Tzpk?V`r|7+#BEOAK3McwO>M!VNLJA@ZhhW32EyJ2%v33EhvpD0wS}cVgHs
z;oC866LG)GqwkIw-j!shaF@`Xt-L4hPT}{)@O})3V>lw=z8DU~@KFpO$VodNitHD<
zANPG6!$Hs2E!IOUBTWE5iQ#ArU&ZjX6pqF4xybPtPQ(h&SfkBPCHzdt8gf$P3n6{K
zjNw$wnQ^!_Dfx!&#q<4E<U65zv!~e?xk4}he~#f?48O&2#tU^ehF`>g^(0LB@8W;4
z8;Ri$PkvtHPd-G{X8(!d0{ied%EX-x$`BTd1921)FDhi2x_L{T;*yjQmK2tX7p~Y`
z6i3;3;XI|Byx5A}mQ_BE3X;%5MG?2{RE{Gb$H+J?iK9v!RpY1@N4q%M$5B0w8gbN)
z^OrqN+AfXbN|DQimkVpgafJx)x0cAiwe%`Ene40Ms2eYw1J;Y9ejH8W;3~~Eaa<cm
zBdO7T0}*#ov0=Qh#IK9v`ZyYUI<9eI(>R*N(L9b8akPx1l@#3h;|=0B3fbaXi`*n^
zBV-3l`OR^(m6Q44Hp~ujbd2N9IPQw0QyiV+=pzNDt&2<I=o&}2IJ$fCo^kZ>_+7;c
zd!b&E^cLRg`QGN0OJ7ND7v3Rci(_u|i{oxN!*TSFV?Z1}IT`yvk$d78<Vgm5C4MhS
z977}@7RT^7hI%@@sSzG85OGVKa=#}J#1Zs(NQAx-k!T!d9I-g!abzV)#E}%q#E}wV
z+S2jD6(=_jDY4{5r|s$FJe^T-jE>`jI6jQy{x}|pV__W6#_?brV_4#G%#LHMLXD4O
zg2=cy9`fw)aWgTFNpVb<WU|n`sVSb$RFP>yH%Sl2@kktx#xX;}nV#ljj9R_QEJ<jG
z^=gjz0^wXw^9hl8!ufGL8OKxN)c<$Q{OLHJ@$}uMy(o^C<9H>G#c@0r$C5ank7Jdm
zvowz79$yy!KdYB3Bz!@*G7g^U#4P2tI*v7-{)=(EB<?ncSL0Y4$2)Osk7J$W8{&8)
z?u<It$MKpZuTw`I4uiZI$Hq9eNxn%)`&&ge$FaqeFhkxFe_Qx(`MSOIjyQJ4v5Rd%
zX5aNf?TzC-@!i5bLbs=VUwog?O*!M;FXvan195y5$H(Fa<2cG*Li|u1heeJEKM~GV
zyvO4>5yuyj(AuYQoD~1elYH*gz3E=>{iVE437L$q<M<|yZ$16*Sr#653-`2FIzPqn
zGkeGcswJEO?U^_(PB;VRvvCJ0`6Z5D<2V<`Z*lw{NAUzoB=AQZ=i|5#hmpXaas0*f
z#PN@U@T?NPIpsXX-A_m(+<|}uiX>1pfnqXVrGdde57w{id~|ktk@J3P)g?yB1WF}P
zHi2>plukH*uqu<lMG0qCvU#C%j1qsc=1#I`vwQ*-WQuDGfAlmeivOg~A^CAZr35NV
z!s5Op;p~*Fl5iH9_&HT|$!jEVsR-w2?v8reB(Isk6$#vsz>NviO5n-_8YIv#fvXaz
zoj|<=>L*Z#gZ~8TDmZVAw?Hgjzwj;FHImcXwIW>C;$Jh|b2%C%&^Uo630#-J_3~xH
zR($Jxp4K#hW(hP;phdzt0-ZMLb+(AJe8is!xVs`-CeSK@z6so(Kx+l>oIsZZ+KAsI
zWV|;g(AMMaMA{2G2s<XwNyPoKtZM?@66ld|UM@3icjXlcbDP=KQ}SDcy%NqV^4`ow
z=0+>yHr|NdHTO}*4%F)09SPi-K$wG&1n!cY+?PN<@w<ing)}}uWT0@6aIo+m;l0B9
zghLV-Dl$wsTsT5lAY@+ApkGl3cnb-H$P;)lfiVe0Sg{j0__;AU0aN<9g!865mOz}f
zh&z80NF|UKPYQWxd?o=a0XqSn+r#|lYCu+1k&6#(l9#S?PBo#CyiAQuV3Y{YOr!Ar
z1Rh{69dc5|FT|%^xG*+>aS2RLU`hhjd6ZKE6GX_zi%fpem?$#IbJA;S0@D)C%aK_L
zOy}<=xnx?zcqD;`rBip8Gf#Omff)&G=K4<pGeyX`L_p-%;tMJne3d*qfjJ4xO`z+?
z#_ELg>(wU`n3uqO)@^>e%lgb^%mkiFU_k;;C!7;gv%8FEn2jZzGa`1MG#09Jpv`9$
z#UkP21fKI^Tq43_0eH(x6IhnOa%J@jHmDK?YYy$akig0WRwbNq9S_6gn<n-}YuG1n
z@Sng-3A~)ZE3)%m0<R{pR$01>v6MH~C9s|KU#rdQnL>IcutCb3h$3$Y-xO{XGCfT5
zmIU6GlYFblTf*X&u}$P1VJXW|W`^ugL_1mSOE~k^cN5_2NN#mt$?i@#+p$<Q{VE&p
zC$KMp!8Y!(@j(I~CeSm5TT<Acz<~rFOJZgcAF(;J{wHyF5(jA~fxi;?JAuP$gKTI=
z6F4INiICs;Q+O<a<8q!zIBO=KCJMh(px0*!eC}!rzewOqkyFB-68K7lnqP~2lfbtk
z-wD4Lo)%K)2az9z{2=saPku(^Yy!WCa7Wp%37lge&Y%AZNq!gkLwH{Jr;xqbKM7n&
zplTA;k}#4$66KSqkVKIriY8GkiQ-A;;lgtai0nK|B%Px~tJZZoy^=}iI~~ePB~e;x
zWrP<A%L>a0sl!gJViFf8Q7MVaNoT(|pF8d|;)CPHB}r6CBG=5ReiilqR+8#T)JWnE
zS-3Qb%aZ7mMBk)yW?Ez5@+5p(YO9&V6-m@e;>skhN}_WTU6QDsM4cpBBymF$S0_<7
ziR+TMK8bos=RZ5wByp`s{Uo@8%0(m!8zj*%iAGFG1II}@PuL@&Z{sAIB+*PknhJSZ
zCcU`CN^CBP>%1|EmPxctqFoZLByW?%O(Ly@O!Lj2J}p=3<ydI%NjfIc!BcY#a{o^f
zJb8emYZBd(=q2Co!X93zzI`2qo^sye3Js&T=X+}sw~4!UZcl;_-{qa1bLY7J#!leQ
zB<@N&r|G_`Wl0{**FT8?NsLTlR1yP|7?gyqQW%`XJxL^!NF{MEZ6*;<A|bCKLe`3*
zBEy8kg(HLoLZ6WJ!7maJ28AJEIEjczRA>sRA4`IVO_6Xhf0=gjv#U=hkx9ZzA}cl4
zD6YOT4R@b(G|x?NFqZ^J9VB@cL{)?5B#f5wB-R=B|4BTM#DkLXr}h&?#w0OTWSo#;
zA4+1p_ynQ5ONaW+x%ppqrX(>{UhXk#(^%QK2Ox=uS#9|LUpXI5Vnz}}xsnWHA-Bfy
zVUfh+NmNatS_-q1n3KfDBsL{6H;E^bSd_%#B<3YCKZ$2#{K+Jq5_vj_1?;Kn82t8-
z$!nsMR7p4jS(wDLto9`hetF?0=D8%6B=Lp<G6*y9`6QMy3OHf;*T`i_EKg!Z5-%jN
zk_}v%tJoYaTzE;iT1e*_kr#z*hLpUV#4B>X`XAvsSy(T8P58QSgU}t%yeaOUb<AXJ
zPT~T)pp?_wY)N8k5^p67-<Z73ro^YS@SP;KC$S@mok@I^#MepeO5)uljwf*<iT9G&
zox}%8XSrZc5`2HeXW9En>{VQ}Y?U(h$qwapi#oUeVG{e3IKUg9VtmAaRgI6?hp6ct
zlqMU<p`<e+JuEyT{6u(Ec#H*9-r(=LK9xSB{({kof1boikzx%EetX-zg26G&m$H9K
zaz6DUT>nYpZ>9O$B)&`H`y@^$@k<iFCh<cOKPK^W5@*;`aY=^<$0gBkk8>;@pK*Ly
z%$%7#9A{;XLe2utiT{zrZz2QO|0kVOp)NCx^GW>4PO^=$teL@MNdHP=1P^vt?il$e
zS@@L-QYezbMJea)WYH9grBEt`(kZ71il-2`*U7XJDd%-SNeTIU860(lY<;W`Wm3-I
z^LhRSAm!B0aw^dBLO!x9q@3|j#S|_Usgy!x5#|r&mxxyp@?}}|6ly3LjZ?T(gh{$u
z<TByq!kWS>Qm7?zrI4CerBK`Bbwv2Cgz~!L^-`!Wa*d~Rtw@6u8j3XX<kzKey~kY(
zP2_AUY$j};LJN@_Qn*p1rSN8EkqF~$okAOr-z35gxveK@C(>TnLD*5)N!VG~C55gc
z-GtqRJ%nz;dZo}ih2JgwVd2&kZcE{P3;QheNuh5FCo=dngWFTMgU&Q=Pvg!M?n)t;
zLMVlPEUy%Xr!XRg{wgoGe;6P>Foi)W3}(f+aN*t*p5*3##--Ezp6zVhmx9&FIKhWz
z3PV#k#;p|G|C0joa7Uvcg}?PCjvu7^WX-So6G%DDiWh$_A5I~X!cA$-WTnHe3|Og5
z@fhzhg+vO;6s}04RvM`k(u^pD<0)hqdkV`^Se`;Q1v`buQka=SE`@vw6H}O!!pIax
zr7$Liu_=sp?Wdd-?E6#B)3723lR4u-k5e*EIu9v@uADeNg$b(jjVr6&r7$Ih=_x#%
z!c^%`6aK4DJC8^*L-?rdvyoEn@>wZ7p2C6@o@W1_!kiT5r7%B*xk}p;|6}b*NuK&2
z`7<djOkr^f&oQ8U7yXaU5=oW{pI1ueDJ3pnk-`fpyp_V+DXdIkRSN4;Sf9e`6xO8h
zatg1c@S?)L^dAdu*jJU>wf`f3Err)p*qFkm6gJ5BjsNJpshngQnDd(@-zwZ9IVT#-
zC6{kY;hhvdNa4d2wx_Tog*_?kO<||>cMErUq25j5J>4DqlYcF|FP(k=vF}>mpTdC@
zK2G6a3e9p(efvl{<m~PaiGQLxa9H-sasLndhnzEZI_gQtPo(f^3T4wM#|oUn=PCS}
z!nqVqrtn1y-=*+<3SXw2A=arBzVhPwTK2ycexo#V=LW5<Z06WMox%?({G7s>6n>P>
zPyf+$b<Rri%m2uKV<(W}h71%*<Bt^1vjL{?PYQoZ^RNHWzaWXB*5{_gwO=%iVri62
zqf{Ej<y+!^bV{e47F0&)hP_CfBT{Bm`7|n|Q7MheX;f6$i-lvoZ$I~5V_cFhJkhjD
z+BvR`rNFDI)T*UXU4)VvBA2FdnaJhBnnF%YsBmQ(SEX@X8rP>$JB>PNG?4GrY19?D
zMp!S6`XU@Cx^WFE<rMd|Y3KV3zEW=}UwSp-UDtPX8mG}DjaHI3O{1B}jcGJbqeU7w
zc>3-#8c(+8?8Y4;woLQX{=!&VORbHN3BK72)i#ZG;_ZbUgdK&Qgq?*<Mi-H;X>=3m
zF6@y;&opikzg0-hUTO3ech9D{&6D>@!<F2@&OeQ<X}p!jUGnXh#@)=cs?Lsr{%H(I
zBa?<DuYqX{Nn>algXDa@kuf-pd&KV*-Y4W;GiqML(io9OK^ns)=O+W~<bC4dG$Jf+
zCYbw7Bnb*bX=l*Iu+0CcB;;ng@N4v#BynLvm=vajX`%ZiNHz_d<(S4(66Vqvlg8LI
z@^X$$V^kWW)6R2;_8$<rKkY0UxUoN&cGfWIHBR~@bJBPyjqzzrkYsuq52rCve3Edo
z?q!PjRN*w?j#~<I<B>ETm*i354B=zKnL@@gi}_i>(Vy)}SeNE{{E0N?d3=7l@Enf?
zX*`|AD`~u%#xpEdDXbAbo5u5LEKOsPoQu<VE{!GP%wG3S-MYFgjTh2bnZ|PYt`NGd
ziHTXoeA8AL^3@)HQ93UPDSuhSO*|Xa+BDXsu|AF0B;T0E>moc>g~}V4y_JkN(s)yZ
zDRFaqlXNx<w+K18;PrMI+tRorgF7>LCyniCl+U0-20PN&na1zz+|t;U#=B{Jo5ptv
z_+A?O()b{a-E!^`?iIfOpE~wo8vD~YA~}<BKwbxhAF<Z`N0SLYl*VC6+}!&ljiU;9
zERC;4j;C?LE5T1C;mv*~@_8C3MZOSzDLf_oN=Qvkh?s%jr2o$;L*L8mw2-;_gUFBU
zSJU`8jWcQdCdt_}eo5n3aoS-MV6)<DmvfRlp(6p=Dk(po#-C}F&Y(;Ne|h>vGx%Hl
zAK?X|k#WXg5Ec>A0?if^FP=e(jPnJ3$qY(K!WAd?04NgnpG@sVl9$amt*o4ogz}0R
zT%18;`BuuHat3uXsF!j6cXLSwS4qyOtB6$1pqfZ^PhKN~OFe#>$mJQ-6uH8a*UI2Z
zkF)EpEnY`>wb1P)ShW~Y{S2<j;9AMA6E+Yw6gCpF#Hq>a`V7X+aCnmpnr6@}gXU7`
zEo_lN2ay|uHwvlTQlyozwXluwrVMTtX)A0eq<(u5CbFX^>6Afdk9QI2nn5>_?!q3z
zo<dr<C4*ibr=43pew#?24Ek~kka3!!duwcfcV*BogH;)<&fxA0`e!gBgU2!$kiozV
zf*FJ|7?i=_42ESeJcD~=YN+sD;eEm(LZ+eQZw9x|vCfQ;Bp_rfE6Bjd+tJBvex-rj
z-3u4aAR@I`22l~Wj7)K!TQYzzj8vBr86-1EWsuHbqI@$##(TerCCp}Ei{ylPA$3NI
zjLKlNNKogoJRts{aEy?eV_D)Je<*|T;uD0!ywS@fIVTIJWH42PVW){q7e1W9BO;G_
zz6?GygIO6onZZ*TJg)m<s3$U*&1}*42y>J_bA|Mpr?B(A+~Wg_!UY*D&fqzDJ)Lo;
zGtXqOkc5`?<r;Msd3=e~mJ6THINusC_2OM7AzSDQkr#w3g<MBs*R&>s7c)2_$x9i$
zoWaHnHf8Wi#yJ^@vAmW+b^Zk=gSFCGCtNRdd-&Hg*pP8{W>T4j{ze9G>R#MRxH*F@
z8GMkzhYGSagYE3(Gk8nRw=>wr{@+V2)5(i=c<sz!pX}_C=DW<U40emtcdy7E<p3+>
zvs?>e<!|K>H{ShHI4BDT#6R-Fe$1M$SPn^YID;R#QaaX&_Y+BudYZ>FI4<tm{49gd
zS*8|dTR6%5$slGSZsE%ePGxYNg#_z-24Ay(vryf_HyM1(J~@N+x})zh_#xxWvcJ#Z
zw9M}8fs0Ez@&1^>(T>JX8T_2VnGDWm@M{L=GAP%{nA6GmT=bU=#&Dg7uSK}{pTX}L
z{K4LpYdbvlS%f;(c>Y@klnj*oZ}N;YPrr~sX$xg67#3hTp^8{2W}&!+qH;1x{rHHn
zP|`vv3v;<yNERp`t7*&ooCS0?F0xS8LOBbJh(>sow@|@CMGG%<F*<fOF1DO?gG#c=
zg@W1K#%$pd`gSs^Sg2~@U}vZ6pclio=CEIymoq>4F3-Yc78-FN!I|0xgUPOG;R<DG
zEels!sBPg&3yrzUo##7oVZp*ie(GzXzKmRLp$^x7#82=ofCyu0VBuN|6S-i^C=_o)
z#^U*&?qpnVIcpk?Ei|#v)Iu{09V~RT(A+``Mc2;44Hj;cTCL7TOAD<mwCQBrtov$B
zZs8^we3!FD-Q7;U&E)sL5|Updd3y^VD*>G>bha?u!UzjpEOfPSw}t)|x>@LM;T8+M
z6tIVdcRL$BEvE!&mUbp^n$X$k&GjD(w^`urP}s);<^8#6!!4l7liP)NSh&-|T`H`8
zDpO_`Gk?K_3nT+9476~Mg?lYL*~uu`*%)MDu!XbCSQUL+E|XdqVqqw2g<dGIXc!~o
zVr3X+p#fLUOB)3id=|nMA{Jg+W6+e}Lcjubf)+x$kz=Z~@95r-baLjuQOQY63qNZ?
zDPbXLVV32LPdJq(ro_`iIx`k5@vH?~Bxhlag|Qa$7Dh@k%EAK{9<(sp!u_n7+DKoE
zr#A8b%Y%#_rr~d3ly78=v+$6GhZSTzbI-zL3sacwRgKyQjENQ|QGwmEPDx#<mDs5k
zrdgP7VV%}y`RaC?mXSAe70AM)7G_v@%)(6BY^ax9e8F^Be+P5E%c$!76K&Il3#<Th
zSQZwZurSZUS{k%4pGCk@wy;pmhsDjV;3;L%0t-)DU@6z`Vz5R%YhjUv#TK5ECYxvP
z&Iao+gDkP|B8z~D<O;2Yr52W1PFJ(s!nw}IY6~k^T`gy8;!5Ev52-`p8Vkoe8H|X9
z@-n?Fyef&?WCnCL_OQ?!IbFwkHA(hD8!fzMf%SxGc%2!@mTTb+RiTnyj5pP&S-6`l
zY?kj93tN>WHeq%bZ&`R-ZEBl^y%sKXG}yVlV`0069lT}b<SsS=w(GbtByYTDVYl*R
z5Bsq$PAxjm4wE<A*@$;CSS=T@Ti}XlC*!z<6Kus?|F^JTsb%v&pibZ;wn34D!b8Ht
z!Xv^@gw#LEw261*n<Hh*rxw1o@SPI&necPrN#Pg5FNLQpd?mtq`?bh7?EN$vIl<1~
z!fE9j8x#}ygZPg^X68?95gtFo%=Gv#BEPaUJ;`q(Ox}45f3g*1F*1w4Ec|VuXBM|)
z@sFaek;SE1TwtbUfh>w-Q7MbcSzOiI;39C*tkdF(30awoXF)8HMae8mWl>tra>6pg
zi?S%2#ee?{RX&RfSyYrS!(J@H%{Jsj8owlqDp}`+R6X5qRmH_Vp<31{qw3khF8#7B
zF3+NA7R|D#DIJDw!kfCqxI)faSzO6vXHnbpZJ0%!EUwO?t|Zq8>j~=%xp|33uFaxB
z*4fBJ&dVi@vbat<lw8j=h);CiLh6Z3dGjn<WO0MMw%lXfNN0CvQ&6X@^Twp5<gK!3
zEz%~7n?!ETqP++$w9TTO$9bfA2l0+V_e~jfI?LHb*foo8BHe}b?V%hX>6JzAEFxJ%
zv$!>j+oW(u7Jahlo5k&(K8M!bsypxBc}OEe-I>K*SsW;7^vfdb>D-+~|11W`IWP;K
z$ROch;XT58h4%@E2!{%X35N?u2pLg9w(u-*za#-q9?T*n?w)i_O+Gq_riAe<Vj}LZ
zE+|jPnam<3k``u!mM|-%rkzDj+_gL^i_uwZV)e`7{wyBI;<YSZ&*H%>#$@qI7O!S8
zHj8mt%w=s<K#r3i65(TUeAao7HX)0NSxm}evYb=0n3{EV3)5?w3Y}y|7SqKa&f*c)
zq83JIxN}F3%G9EP#$#E`WF2l}%wpIqW>d{@R%Yg8v7C!7<sEC!vet1>tugaFHrp!3
zd@m(WX7N-O3$l2ctyquj<ykz#Lceffp^)U+EEaiuvB-16CBo;0ONGm_;NL|Vgr-)=
z;0wZ)!d1f6S**!AdnaBLlDw3~%O2-1kk%?~yvKD}=l@nDyw)p=*aL6yeBaFC4RJ0r
zQemSw=LNjGEm>^M;-f4+&f={s-p*oI7Vl=UEsJ-u*pbD~th1AiFNU^foxwSum2NEL
z{5X!2#P_^d4rH;LMQ<B>m<dwbE3fy3`-C3|KNRj4y3LL21_!gwQ|w3<pJZ`}l~%rd
zx6X!RwKa}raV(4DS)5>-(m2FjG5eHiS!a&(TNa-yW4~d`QtT(Q_(DdQ;4ei^3BMA4
zE#z(-_88x0@ttbU_rlY{AA~;&e-cvj=Pb^MpB4V%$$u3&mvw%COSRvbPX7EWi}P9h
z$y$`fWi~Fi@i#mFtaBVqNgEfG0N5yE!?2y+-hKC1)OIG7McC&{Sj@%_!`TB#NeSC&
z%e+e2C~c#Rjf-qtVxx+UvNp=uxY$M|8|7`h+!YmURJ5In%@IOVjV&4P{amphV^p@W
z>PKUHX@jFmo6G(-s@bS+qlS%oC7pewyR^1{sqH)*59olDg&H!|v~h)vIySDh3wJWq
zvT>!2tL(x><Jw9yf2_&d;oIc8G-#uvjZQY|+qlL?a~myeTx+9&jq7bRw$ac=BOBM*
z=voCFyiMXfMLR26@^`Cz(Aa2dqnV8%$Bi?5LBsJU_Yd=2GJP_6gN++)++^cs8!c_L
zveDW`8{6qIMrl66Pv;)s;GBP0<D`b&zKwP^+S};BfO=#8GEd{=EKh^RVHyv2w$a7L
z?KbXUl5BLd(aT0}8{KX6u+h`TEjH$`bhMe4L#8i8KH`9%?^SKwW}}adzAPz@RdlRP
zd+imO$T=6ki)7Dl<1QO_+vv}-;~uBJ2D7W5?d)W$%JIJq?w1&7W039qAhITR8t|(e
zO<SJfTVNaa+4y`EPL9G58$)e;ox?Xd46`xZ#=AMZm%|7f1vU=aIAp_T!*Amy)(6_R
z5w!8BjTtsVDy9c*jIj|Gj|ihSOdDgl^T)=QosFc8xb3t`UI|Gybum&l(l#<or;WUg
zkv6i@;S|i(wB^jPxG!AbAeO>WHb&dHpEsph1}h|myqyQ6xwnh+lj5;9Cfm-LR9*QZ
zfYpZM0pWPz1mQ#*lSFu8ITcvPrr4Nj<9QY3G#k^!9~M6Hue_V_n2niq+E{91mhCL&
zKVdru5E<NyYh$)54C~Ask-0=Y3+5?L<_n(`J|$$l3q+n4J|kSnX6yMbvawkFIpGpd
z&XI=uJY@owNx0kwi+F|b1sf|xRtZ-N>AS|piyp7YNr8=5ZS3QwN*il!th2G5U4*Rd
zE06UyUK4-a#uhK$4I*y{-xO{XZW3-*ufm(!s^WOd#@jZw+0N|s12v*|*yJ_C-Jm?*
zX*;J8QlHl@);imH0=_3C*)6h1xYx$}o}AtFhc@=xIAG%=b{FNHE$;mD3rn2+-p6d<
zB@7NJE2t<B+c?6`Er+r>e4<2_&N)5gQ5(nPJkD;Uy8#JL*!Yw}whI*>yWev*PTKf_
zHP*%{8)s~sweb}ji|za-j0)e__?A5n_f8ZszLP-;Pm6rdo`lbfe#Q^%PuMdEe-i#I
zr0@`oU&L=2Y@FADQNPN0oTosrCGwOQHeTDA=bmRNaM31*KW+TQ{+}I79sI*8S70ow
zX|ObzV;5{}O&LcT8PsH_#M>;Q`zo44F_Gdz%1h)>(&MFa;CPb4GM<EQm&)Z(K8FoC
zypcl%$t&h?aSrb0Jt|kq;d#k<@0D}7B!?<FRL!AU4*evro<ofsy3)9um*#MJ4mHIu
z6Ee~(a;TL<7dfvK((<)AT;=iFIn>D&{=@O=9O{bK6V?}A<N5NJGz}E0p|Fwgx*V?0
zp>YmPa%d|_Q(;SCvmBb|&?1K$a=1|v#?H3<Uu=~_>m1tTa8nL9|37rvN!~t(4motp
zp;Hc>{~wyJ@$NbFkiwn9o;lp|AN^h)@14V~;<pL=<j^<g^zFCjaEGVEnT|W7xl0n4
z-<?DM90uetFo$_L%+Fy^4uhrefRK9#?-98-hx>9ElEcs(Y)OXYFg%Au&Z%r8gdt%;
z4n7e-(~v`u&Kkxq*BWQ~7+=>j%5^t}G%&(BL~@AcVCE3ZAuj#@Riovkyiz%&MKU>9
zIb{EDHgif<UN}-XO2{%Aox}YecehGDn8O%J#^x|Chlg?)pTkT=F+n&@I5CGwB9n8N
zlEc&-_-XwA?_Q?o@Nf=~<nU+?Gje!L`v0rOdzmG#$8(r1GAD<*IXv-yv&l3+nZpt<
z%}?d9AP2VGr-jc5>0Fq@v*L?{i-pg5z8q=0yFh7eDchs0Ef=m3zL3L8kySaY&*8Nk
zR?A8KH95Q}{*v%z;VYi+t2wL{Unk_?kU?G-|98cnW9&C`*qFm6FI23R)A#Z*v{{lZ
z!mXa~TRFV#@oggS2)7G&2zLs13HOvXcC#I68R4rO_T;cPhxg_6K@J~^?8`Z0PCowj
z=Wrm0k8{rIE|bd5!yo0GS0_>R{FEHb;ZV*QbsSbeN{;X;AbwPMOn6*)LinlhGZ%UO
za}Fmx{zVR7il6c%&Z1vmXRPvV4&SkV7>Twc@qG@bb9gh4jd}c#!;fmSzcCqX5&Y~c
zhqF2SEIw7I#Qc)OuQ{A!wW;CkZ={ePG4Z7>e@xkapz(VSf5^i597gAHe;$A4@K+9h
zdub?}$3NnHl3vKc$U9Fr<WVG#qInd{qhubX@+h81iG1PF8C0Nht-LX<n^8KCGI?C2
zP`n-XCqchc?%Z_E?bhY;D4$1#JSs}z?mRBeqmp>vJSvN{$m51QF3F=x9#!+GmPhS8
z>f}*9j~aRB#|ky`xK!kFAtjgPo%2*lc=2WQ6?xRk<4Vt$5?)t%I#=gWH;=~ht(Qmr
zJR0VmQht`J?s;4*`9I|iUbNOgPWP7$jq<ooDdg>3?^$b-N7Fo-<(-${ZW@|Phfb>T
zx-pL)lC;dDmDF12(Jqhn61K_XCQtunk+#xdzz%tI%%hu}o$~0MM^`1Li;xQLeYv+x
zq@=qWk$y1IQ~VZTuRMC^aqEA4Z=>1&IByrHg*)=N)8lvL(NA%?_tHO)0eK9R@4cSR
zAd$g&+#}*@-j~OaJci~mEDtk}SRTXk7$JqA3>FCelK6yf)&;zK54m3a3yd@)az>Ts
zOk_Ndgyi`=l6j=Wb9tmag{<^5d06sds+d2vxSMZobR(rk$tcB3od+aY#X_lSJSaXU
zkFg@-@^~bVN5vl!j?ZI)Y);H$k|dM!m?knsI92H831gX_$HS74v%bv`e>{)bB994Y
z3TG(+d<HR{b0k@r$6S#og!A&4&q^!)yzr?!7Uc1C9?#_QoFohLcs7qkc`RnOlr_3^
zaIEoAQ+{P>a5=n#^CkWgX;Q-ecB%NXJeIRQS2b4T@q#2wEgSOYc7^qs?P7J_+3!vH
znmk_gbY9Bi<vd==<JCOY=J8q{ughy)9_vNiu?j<xZ1|7ljsNgXd2G((<2(-Loz87b
z9{ck6Adjtbz9ppm?L4-LzmvyyksZR_dF=Fbc8R>3$9p1tPr-n^_Q<(c_`c`+VIKSQ
zIFQFjO#f|0<z5C4U*+dW?mOIiJeQ`XaY#Y_$>TyEhx0g+$0zIz`KMjUIa)rN$FV$)
z=W!yBPxJVh`Ok-lM)IHK@p&F6*@`*B&*NK`R2$=qJicU~z|(|;UkSe!j=9s|myF-#
z@x6@vn8#`5(hu@=J1f43XV{-4XRh-1qi6Cso5wGC{F=vk#dR+4tOx$iYM}A_Z>$^l
zI3Gp+!A_6!{dP{L_h%k^8W?{u=k>k7Fc|H;yfQ|j!ALY535-OMk@^Hcc#*J}u=q%n
z5Gg4vB`hsuZkHM9ymKTeI}+ta{(p2`3HT1x+n(FLgzQVAkdQ4YqRo;eD*H|%6(KFe
zJMS{@I`ghSsYpV|PN9@UQKDTbk`k#D6>Zwfch5bhuj~JP|LdCTzV7p!=j`V^bLPyM
zGpHCqr2y&$P(OgP1E?H8%>ZfzP$ht>0r#Y!8UgTz#oooKQMCZ72i%^<StzHeE&CaL
zM;f&mVF2d@P&a^?hS6EaPw{NAa|7;F);s))>o60zniRnK0bCG3;{X~co`wN5QYgmB
zizgZt>uKCr%RPPQ!T_2C&{UD|l^>(}p_`F5jIw=<<^gbiJ6~`ATLj#@A&b*8fN_S=
zO3u~+T<n*(O#qjOw-sJ0yiC|m*j{+Ku!FFpka2R!_o@J{4&Yf6n@n62K&JqP1TZv!
z&H;1@pl<;E0_YmRwE^51K%W3^9qZ<&o3cUDJ%Ano^bFv-0D1**gXG+C%E#E=3|`6I
zym5WN{cMx3BTs8S#(~dyf;S)QAHaYB1_m%F;QoV*Hjo8pw7fV=92{^D!eza&OAiZR
zcmQJqxFvuQ0gMdb<^aY7-1Ds1C;9Q|r~qzapHbM+$_A6z)6C!*Ry+fQ5sqW#S=#~J
z9su7vY%XhTU+K!n2hMDfy+ffU2$>Ta=ZOJK3Scs;D}X7ia}#Y$+!esx0h|cnq%`jd
zV5tbBx;KESKA#rAeF01lU`7Ce0E*ZR0x+3$0FHD*!l*Fphl&JX`J6MHn0P#Zgh(=g
zQ~<WP_w!#5shO5ABg_Vn6Uhfq5Mkb^<Kg`Q%nD$E<PQkv2p{w{9|~Z$&l&1r@wov!
zA~G+4M+2BI{vUZ*DB)wmMFA`pSrWkGBLB_<`7#NY2e3k9WdN%JSRKHc0Nx7V?EuyW
z@I(Nc19(1wC#Cb0aGj7btPfy=&zaAs#Wx1<jL5SAYzp8x@&Cx@771SxZWX=|z>6Z=
z0@yC{@7%r|z>WZ331DXcZ}`5u0(dom*W`>@MjILs@jzW;1<!}%dlUWwl1*RNt@hmk
zyc5930UQkAU8(IA?h#VqJ@#auvn>0>KL}vI$cF(O2;d{}|0v5R5`Hc`Bs@$MITFBU
zBL6PS7Xcg%;L8BM;ymB?Jr=<60KS&<Kgz;VeCwBj@q8CR4b!y%-%I%i;g5biKLv0q
zfS&{Sg(H`v-b6_gzsdJ6;qSiY9|8R7bC&mS@zWfMiX0}2nJ6y)ALT72;aS4c!ZIex
zij*@^UgY29tze>}iApBUHc`#@t!$!-iK=q`-||*B&$L=iDby0y_QTdOagK?)CeAfc
z&qOoH>kAtS&+|3UH_^c7EMp__3rsW?xzI!t6HUecql_0x*j(7cL`#uYCR&U9yL9B2
zNEkQK*7v<s<T7D9VS5voo9JMoqlqg_+#%tWCay9uz{EfkSJU{LxZcDKCOVnuY@)k~
z9wxe&=xX9x6WtVq(-NlGB;um?=`_E^?rGvW6TM9ImJVO3{NwBCu!e6m(Z{dVz9#ya
zV87}w{oN^7pToo(DT7Q5HgSuIaVCbC7;0h^m-kH!Gcnx62ood!drn51xY@)Q6J!5-
zPHr`Eo1c^0O^jDgCj5UnnP_5?iODAJG!ZlrGBJh5-^4T%_nElc#62eNH8J(S=V!W!
z8BEKB`QP&sHWBgjW0{C5Ke7KWKdhyMiKM(zLP~5A$3)sh#zfXc&cq4{^TJ1j1rtRk
zW}3L)#B39DOw2OzfQbi9JS2txw`Cue*IXgf`ln^*nRwL1d=m>yEHUx8iG?N}GqK3T
z;{P7oQWMKeEdM{TF=qCYm6ESAvD(BM6KhRuF!7X$CrmtPVx5Wg|2^iXO>8vr%zugb
zITM>ryl&zR6VIF2V&WBPZZ+|OiESpfn|M(Y@8nF*i}>z|vk@-Ba~klHyk0i3!;hcy
zik;%SO!uAmtG@g-^US+|H%+`{;(&>dOuTJkw~2R5yel<#b;92}x`$P#rP}xW7~U7z
zYhs@-`9Ng9i4R4*T?8MSIB4P%6Ne<^69LT&r!;&)eAvXQQttBFr}AR{S)9*Jd|~2(
zFdBz()Wnx2YJ^ZTgs)5-<H!x7chEKI$7#@ls4xDtiEk7G<=>h(A%4=tcP73!@q>xd
zL6iyNN6G(SJ(&1O{FLx#A;bP+;#Z&lX5x3BbAI@jcnKx<xA<wHAqm4mq*xHeeF;OA
z6fY(8I&E3;>OprMvRn}5gE&i)szLYUmI~sGt)fUJs)<w<RuOvZgw>=!N~f|=zeW%>
z<y%WwTS$4GAkGo5D?C@oms#{WFNpJl=nzE5AQ}YSC!mXhXfB0@K{OJf+65wwg%=8&
z1kqHanb2!x?qT3AYaSunB8Zkj_rN6<r&SQGgSa?|HbGnxbRR${oKV}{JJB|XOM^IA
z!`Q<mpdi`>-M6mogScFz(=el~UKYoA>`xF^2GJ#mu0eOR_f<-i&&XE?-LrkJ3A#^k
zor35rGHr_c$Vmxver@o~zV2=c!bhI&LG%cs77u@*au6mrMNBdHKfb-ojO&BAA&4D8
zyb{EXLG%e?RS>I#=o>`8AXX{{{_D*cX7m?l`~!j*7{s6;1_v=Dh(ZuWK@1IISkQe3
z8W0W-;?5wZ1Ti9rkwJ`-kiNGEag+GyAZ`v~j4!`MWNh%vU&F@9d8_a?Av+a=j~AaH
zyhBLg#2_a5e6k1!+Fib6y2#zadxZB2rwXS9ai0i-Fsd2<;${#*IYU7tM5quBA|h`2
zl4uYypT|YKsFLETAZ*{)5lIJ;5y=X3zHeTH#he+${o+f5m=(kW;`4<M1~FTNIeEyh
zEAlx(JS_QK-}e#r0r5wDiC2LOf>`KF9t&cT&ld-=MEr4~SA=E0?{bk9ev0e^JT-#2
zCWx1UcsYo*e&2Y4IpGmNa;_7u7j6jRDPQO5AT|c^Oc2ldk{3ia37->g7CtZB62w*!
zu5U0=UN6eIEr{(Rl<<gV8hPFhxP`;D{6XvrVown71@USSuLbcs2T>3+;r@1w`h2$K
zBj=kzyc=}a!{1Uo%=z0QyM^!gRl%Xk^_lmB*eiL35cnp7k?dn<E@gZmA)Wg<go8K`
z#7B}G58`W)k2&5&J`o-g9u|HY#E~FA^Elt(2JyMiIomuc{-rPZDu`p^-h}O&AifQv
zSjcS%UMJ-BYY-=W{qID+54x{4e-Qo{#7`oWoD%t2_zQ>g#Ri3p=QoA=J%~U2c>Wam
zD~P{+$!QToNh5UTETiIbmJpT{mI`4kHx7xH5tbE}6P6dACG>1N&11!oyWCVMglqY^
zy|A*dN(fa&s)gLuGhWq0xV@CSPE{*}+6)!Kwh-!sa83xVLTDXA-4M<Vp=k)sLZ}x)
zeI;~W2)l;5OP!TJc3bfLklTU{LayOz7($~EE(l=*E2q2BIE1jiM&u3a!jQXRqlu6w
zbzc-h^AK8u(9$pau@>&jDR0iel@rE%aR_Zf=o>=65H1P1FOn_`p<M`VL%1}AquM9K
z&C*P_eaJm4>8_T>6(M)8_~jvV2%%#Lb9WkazWAb$8-YT&N=0DgSBG#-2%SRc>`Sf_
z=@LR$k!ywBgxy2v5kgP#Z&V`2z+Yq%dr8<kgzH6a5K?}lNFQcHuMGN!FhCOCVg`mV
zh*iW)@{IQohNuGBa6_eVw;#i>5Qc{^Le7!G+d~*7a+7d$2sei?Mtq!btdObS5`wqu
z?^a)OTL|8VsPr8#;e-(G5SbXlq!1?ino~sXWK}EYcgg7$mSOJ+;ocCYhA=IJ`$AYM
z-{~RD2;spH9tt54f*FDxf)hf}k24xVNIdLIA|Y5lr@@Jd$At-D()Ue?aAh^^ONvA?
z!fXgRk-V@V<XRlFI#ZnF{t#w~KOm&lqLA0@5FV9ej__gjD{VHO8^R-!%o9?R_HBL$
z3qn{Z$ztJS!bQRkP0rYmB_TX6iT4H8vJjSsutJh2gp6%v2&;U)I)pXiYlWU^eNud#
zue09wVkdbjgr`H`M!1b3_b4`!XF{mL{huLsxqDLx&q<kla|q9euqA}8lDy!{Svf2w
z6}E@)QV8#dus4L4L+%nZubm<62;r3wrmr-5wRA5EcZKk32(QsxlyrAyz8-RyxG8^w
z-JY9&6!Tjlye+a@_+AL_h_JlxhOkF`kgA>c2nzRw@PULsgs?w^4?{R0C-cT%>`{T|
z;C-YNnbya$X$OU$2oDJl3qK9vh{$I`TEEXj_<|-v&M!mw)|Y=Ja!hzUgs(&RCWKzA
z4IXoMWU+A-{{kkjlfv(W-+Pjaj0WwEA4B*lgi|5>tgQaRT54m^K67fy{lm=juOa*v
z!tWe?A^gd<;12vS{tDsm5Kgnb!tTEUS*1LIu+(~Ys#&$U!RZ=FF=26Gi7-lrQ7Y_i
zB`P1rSt6x{Wx^;MM!7Klywcq?^~?wtc~uCbqQa8XixE}|<7@@-Bvrzw8g{4F)xz$F
zgnNdfdf2^9)Ci+y7`3Fy7g#*{mHUlrhf&85dyYumFwPC5o_PH*&i8%K6X6+04Z>&`
zcGo%@g^?&{Sgnnz`tIh!Fq(w%WdvVE&@_x@VXR~&gmF<A&BM4UjL~7V2%}{fox|u7
zMyoJdhjD2bmxVFMGA<6g!>V!vqm9TVe6r*GU+7K7+J(_Rj4K&cDdTeKbP)2aTK@Bz
zVLQrsg%s$#iq*oW721F1fsX)TbQ0m_5IVbtacvmG!x#|;Cl8#$bql+P;B^n9M;JX-
zfj5THhgBU$uP}Ot-Tu#~j~l|+)5^G>mCU_`dPQ<noxE=t1C)V&!u~?<9yd^YP#A;5
z7!t<N@R>QlFv*!!ZgnGaO6D1*kzx1P^HIvJ_q2O+7-Pb?HH_QB7#qed3OG)c<0V16
z${0B1yFHBYVN3|)4(afyNj?O5!;tq}Dom7oQW%rNxHF6?axN3z6~^5n_Xvx^xL1TR
zPYq*Q825!SJ&YL=CWL`7!oH3v5)_7no^g(ZVfi}IFk(KBi!lF5RtPI!&YaNkb<!dk
zVOGco<h<`&@Y{N(B=?6gD~tzx-vuHM3Lgq%HoKYl!(lukGFQmbu}8VJC+DNW`9j{c
zDPI`IW4`7hk;P#w5qVs=)c5t;VtE)Vd<py2>M+)X@nIMT!dM%|6Jfj*#>-(m8OFLW
zo|oo&q1XCMaYGnSafpSnF^p%zcs7hpVZ0u4S8sSxZLl)@oI)+4{STk{u69e<Js)hV
zdj1O<^)Cvy3AYP7jxcBqc7*Xt7(2t*6~@vIZZSC%WBy+aV|!_Xe}U)hg~HdEZWwQb
z@n#rrh4Ee(?{gUPD_|vkn{K|l#or0zT@DSuAk3$?WreRD_lB`A>~3BAK)(CK;33J3
zoEKC4D2$K8C=o%)h-(23hEXhn;t_npv}ziM!Z^%OVI0u_JRQboVRue@ER5r{Z()3)
z{2Y}@{8GFe|0Pt%_)2|)1NQ4MzEQf2?OR2{RDKHMg!oC}cR~*E??rwP{-|L{;VA`Y
zsGr05#pl0<@tgSX!asz63jY#P|8Egi1tT#cK*Y5nyeOeBCnw%XeWfBO9YH-6pK{ho
z8K0Mppj-syBRDI93K5(gLFI@$yRH}kH=kFE;QrcfrL`{Z3acno^@#gLN!5tEkWwvz
zx!QL1cL~&ppk@TMBB(93x)IcgxHWl>u;IDxYt16Vl`z6{l?t8Y^&>b>LC%k$K?DsW
zZU?wJf@>mZB>4rx#t~d7(j<cB5wzf4Ku*TcOynXVCrd3wE{ULR1g*qd3#oarNE;!I
z)uq0?qsV0uv=eFX%P)_hgE;RX49@F{2(FamD&g1tU3sSnI!Ewy1REph5<%ApiXxa9
z!L<=|i(p~|lOpIIK@SBP89~p8`^m{5IT`%A2zo`(o6YA-`iR^RaUX|o6jH6Pg#Cov
zW86Q20TB#jp80`Ke}fmv;0T69Fw~ESsSNY^@CZiuobpi-+!Vp+2yT{eyl{;0)(FP>
znzuwSPA$%yFb}s$e!K6>dkTdUBDg~mcM(;!G+9nFf;%Ia62V<^-XpwQ=*4z#1XJal
zrV63(J~<i5bdedtfL{Z_2tpBrBZx%cM39ca^7ZWqq7lU8j7N|ZN%+1jZ_4Lh(!`7;
z*$8qX)X9r@&shaue|9<J{s?Btxk~sz1P_Zm=<7Tb!EEt4LT_zkZUm3`IiKfiJ{rM%
zpD&1DVFZtHfJCsEBO-$3@>&wX;}I-n&(ZV3zi~wbEB!eCEoY6bj$n-+^IDN7B6!l5
ztP@!u!3JOQl!#Xw&qVNM1aC#~Yy_JkcrJp?5xgXY=Y9PbM7Bh*Rm8g)G2Is<*e1z#
zp=W$v7T*!UD<V51crAk0BiJP;L%sSh<u@W{?k|)x_}dZej^Lma-ihE{kq;x-BeGBU
zp74F)UZI!n2jYxpzb`x>@{#akUq}UBpU8Pgcv$$U@JIxoiG1z}xfT?`QJ*uRV-XyW
zV6BBGEPNfoH#AKanppTYf)f$^5y77koQ&YR2!2v1-ln}ps_!|Pxc(#Ij~tJ>!7(SN
zBKTRtUs#!({0n~*(%AkUasQb``Ck$IO*?O)nB`6;Pe))_?o#ttZ@b?iCbTuExaCG$
z-*T7!xNcLzLP-myEZ5SOwouMOdGRvBvO;bkIm<!?3$^8}XrYpY>K1CqdA5ZrmV0Mm
zDJo0Cn5$Z-W`Pn$yE1J&uXQ{QoSF=HwtGLSWx>){kW{E+;T#KfEu5?1^@NnudK|yf
z;L<%O%;!mXzOaF?p@l{w7YM1}*gDfsnp$XPVX%cE7A~^T+(HWrEiLerGq0Z6Mywyc
zDr%*AXl=PqMi*OXW8o4DZ7p=R(8a=~7A~`JrG=|3wDVKxAkyB#<sx1`@96tpVV&7e
zd$lCqH0B!dPC{=7T~`a&TDZ|d9}C?qbhpskkD&)M<MW;>5x*koCCNWy>UueEu-wHc
z7QC;oKR~3Pu)hUv<)!aHIR^>3GQ$iEwJ=Q1H7Y)5Cd1h)ER2+Jv2c`yn=FjBaI=L6
z)QiSg7;7P;w!X!}I14i@1T5TY;Wi6*TA0GzS{QHP4hs`4@RQgHjB2?tdZodqm6QDV
z*Ft`oG1)@<V(!B%KRr9b(`>l&-@@G%rdpV0;U3006!%)-A{(bqJ9w<Lo_Rm0Y}{v|
zaZ6*m<*vxF3vv6?cii@AA!s3HA#NeWF2{alA*xIctnL1-FJj?h>970D7}^Van;D<?
zL&8FmW5j}EVP_SiI_<xO)DZVMnon(fZe274hlU_+xesv__!Y2)95ZjBVBvn%4=c7v
zWTuMaEhKVoJWIlVTIxXy4_TOP@fj2AxfzmsZ1^RnILTZKkBH9`J}R6qTp*;*LXpQT
zEE3`5hr%UF<#7v3MV47uWns02<#IA_D=e%OXIE!tJnKifNBF$<q=j`BezI_i(OTGG
zVY7wjEj(r6X$#L-c$U4(a+fT;FMqkN&UrfnZnE%aJ#^Go(&zj!zQw{;3vXI@OA`L8
zk+;hilz|t8+bnFi@REg><$Tq`YZi8hzrrT4uuGgd^p+F7XP?(4<RE&(_vO2TR^{B{
zye-LY;X4-IwXny+dvcz%@V<q;7C!ew?emC*4>X|m%lV<@+R_8!ANiUeiyXA@i7z=M
za#)6o**oIPKl8247rx{uhfFEsOAB8~a!hz!__gpG;kUvQLPqF)X7!zg?|sP+7Jl?O
zt>w=aeqo(k_{+kt7JjqvyM;ew&1jkVT>$MZtr??Yzhwsgws6`)%_wR`-A5S8ji_th
zIb;w;F<v|cI*Jlel#HTO6xAi6u(Z^wL{TQ{&cn+J%L&U1&l1wBf=I<EDv6x!%PU8*
z&2ZQGtCDd3FRanpy*JfRDtvdqgghHqJBm6=@tml8`)C<O-6+nDqFxmBqqs1NCQ+Oh
zMa@f$Mp0Z4#qPz%`B7ZWLs6pcf>Oh%`;{LF!>%~&E;Kccx{n5Y-OLO$jiPxJEu!GF
zWV0wPin@~}YO;Qa40v><G3qm;RTQnGxH#$#{I*eCD$*v3OQP<PDIEL!VvYeXi=tiB
zea&HwaKGZ`OJuJ3bcmuOi?9OctiTmfTp7ikMVL~AtC-0s&Pt;~8rMY8DT>b$_&kBm
zQFMvoqZmGpp(|sflO%?2QFM>u0KKB<5k=1^?vG+t6xT)3D~f(m^pB!9t0;=TOoB^5
zUNbdww}Rg&&SRANM6rv{N?i>8SCseJ0Z|N;@=W2NDDGwr6mx?Qj$%j@L!%fL#qcP`
zMR98sBcd1?#m!NSQG}zSxG9R!Q5f~yo^wNIV@+T8zqE5Y8)GTtvVYY5g63JcJjpw6
zJ>#}0ZjWM86qDsOK8guZ+#%)k4ucByb-L6<Nh<O1mMEq~aTnW~A1rh>?jGQ766Pje
z#(AK#agVZnZxmCbm=?u-QN*K2L@_;z8Bv6zh(r;H!i*vqMJVb%Z1V5J%p`L)p|7#J
zhrzwaoElkCM3rJp3AHbVQ>~0YxVLkM`*E(D`6!$y(ov+Mu%r09x9iI+d6<bJA4MSw
z=06)nE{Y|^-6Hb_R79a-VC7K4VaU2AJ`lx&>_t&*j^d#xW=F9wipNx|bA+_U4~xtd
zvU(p8nJ0WyIA6FxNc~x@-BG+q-FvZ+{d|eY<HDs;EQ?}!6f1n+Cq-5YS4FYfm#-07
z8^sg8WIv2`;_HPQeECyRJni$1Q9L95tS{L_iOwQ;K8h_-yb{IED7MPC#!z?7{{>(3
zMUid7?NPks%U_OShtIvknfaE1*RCjD<$&elkMMQj8^Sk*Z$<I8$nGfiNAY14@5uSC
zaF6gk;rqh9LPoeRiVu7~eYk5gH}=8qTimohj^ZHgPYmbA@JSShqWC3>U!yq8CWzt)
zhj7&Wpxb+OSVyzj&pAfQ8egcRa-u>jaWslAqxdR{V`?}y*@-BQ`~2%Dz7hXcNJB)0
zlN>B^elPqfiXTMi^`i(||CGqjzLQ?RMe#c=PYmb8+!cU7Waqv6=ATjg#cmwMX?FV<
zs>j^%ix`TDoGmOKL&cbDa_Ln<l9IwwF_adei7pdES%%U{5#>b6$8eTN1tD9XzLgYD
zrRJ_tt*o$BVyGHJHF57I?j5|tv}(jqQ}SBE+CtVUFV-ZFkM<@}^<t<W!v!%kj^Vr*
z&X1v?G#kWl(YNkohVy}Ks_;fJ_Ys3hr})}8h9)sw6GNvMctF{rm98mh8gtE5GX{*I
zxp<2hE{UOS3@u}56?2c0YaPSIF|?5{oz(wwqVWjtah;7zWA3?jm&ec{hRb4T7sEg)
zw2y%njOSJz;<A4XS19aNG56HID`W0i1U&eTQT63ImAuMxvpo-~5cf_OX|Bq@mc~DZ
z(J|bt0(OtN2i9FD-Xn&dG56rOsu6?Ay_geLbqqJea8t}R<2OqAy%`2iBk3dFSI8Lp
ziS!o^5DtuCkncM<h9N#58pAO0;l5;q$VlO+*qO7ictha_HDh8J8^g>P?pFqGi6Ik1
zHimIA+$za!G51|?IELHh93R7k817JUro?bp3=?CR6vHh|U4uE9Ix!sWW_;hn{ZfO!
zt+_jfdsurh_eOAU3{zv69>WZVDu!t>?9{KT?~Az;a!#4p0Rn8(W(L1EVetF-AfSZ!
zE`!cc4E!*J@kAtK5G#hL!p4O07!olg<!i^_u)LB_nru)xEjb@Q$@vWtF&9HVhC&QQ
z@@n>)y9|Es0C#Qe)EZ;mYJ*?g&x+xJ7~YOycMK24@K6ko#jq&mp2jvi<{k>MfTLBx
z7xEDxhPmnw-_iby%!}bsDo@3HUp~HzYa$jZ2*(IpfmOk4aSTgT!;i<XG=^m{ERW%(
z7+#KHMGPxrcs_<LF|3MVbqwobSTE)8CL3#FSWBD0!-zP<_~lp3{Z5KWkdthP;i(v&
ziQ!qwWA1Hkqmrf<@1&mQCdr?RVY4#H%y_<3CfORp3o*PX9p1{>5Z%=r+msx2w)-jW
zh~bqOUW?&%wyb=2#qg>~vFi=yhqq~BgTBTaF}x}HTf${M&)lGI@9UCxR5T8U10wIn
zut(&*7~YRzZ_NFx#UULuL9$QI4`SFaLdl0Q+}70~VZY_MGzV$?If@ggn82YJ4znl6
zF+Pq@V>rU8S{&EL@mUO?^EMGjy*R#L2c{8@qi!5uGJ7!Ee(KieSE{#TF&vNK>lnU?
zp++1v<M@_cf_5^FDsh~M;Uw#j!=GC^WB66%d*KhlA7l7QgbJr(_*tCGICTCN!|ySa
zh@)g2fA~75WBAkOe~J7p++WII5F_p;1Yt2@ap9t#u5T&vv*IW%LP?o8%KE&VNclL9
zDD?_*Ruoneo-Jgk@gq<*j=#8Tl=HDTs>M-3kI&4*0X^*3ilera=^VqApSb%^C4N>+
zP6>}`;?8zjc(+f+ab6tF;<za8K2@C`cUQC;#NB84#+>}e-TPM~wgNYQ#?eQqG>&6x
zU*p0!n#A4i-82qngI|si*;V*JO5@NxjuvcCK5oR(Dvs8SP*GhTM;j4Fd#T7J!nQ*1
zso}CX+R52oNKMK+h<EfQSHy9p&#w}>I*w~ZIte=qy9gOWm1ah_IJ(EtD~{fA^oXNp
z9M>s_%p|*|w@-tcpgQxjuQ+aq<JLHCi{nO?I*wJ_+)Z>`yy_cw4dakF*3kaP(Las>
z;sb?)g@c5P_yMV2EDlvF!-T`*7!k+FI7Y=W)=&MWIBpgnEo8f}yko?@qZOFLTjCh!
z>(gM4Y3LsPO*tEDLL7I*u{@3yaZHS3QXG%OF)xnEaoicl!*R@wV@e!%#c{V{DAKE<
zW!k@YPaOBMHT{^)IHrl;=S!xG%n$~Id<qW65sD)mM<kA{gjO8UI1=J9A&bE5@ruhy
zGoBPl3EiBFIB}#!GD0s@E{?pM1)(>wDH5L<$NeI+gbxTG6f(|-L}te^$Cq$>GoK>)
zYX;UT4-tJdj`?vcies@9xJ<WzP8xq9$zvjXaj-;$-~G|(J?{H16<Ox%tYpWC<B2$)
zjAOMTTocDy+6ujnVQ=v!TF;g<*2S?tj_2dp5_i{5H^i}7YELQD(|&F@iaaBHR=7#{
zoRH@~&@OFLt!|Zs-Gg`J7vk>h>%};>#j!n(m*RLijvwOqF^(N^yb{Mzn$0+N#<44o
z_v6?b$E$I?rck@%cwN^Uax#8K^``h+!ncLqe_P%We^*GgJtFV<3j5;tAdb&zuH)D*
z;m2_tjN?OJ|3Dlc`N|CbiTJ0!?;(-Hv=916%n><16MCsL2#I%n700nSzM-j?!tpr1
z7Wuc%i8xMD7{~X1B>y*_pW-+bNAUzoB=B<_zr^t;?P?sq#_?Mmzq5@vVD%}ehn!V<
z7oC5{aXJnpP%Pn|WyhqAgsV(4mxe+TFFz#{D3x&As9XZ26DX5FSvkG@{8K0@luzI+
z-^=r@l)%{ubV#6M0+kb}l0bt58YWORfochylR(`BswYq*ftm@_O1MwZD@qyOhfW+3
zwG*hr(%os$fHPM|W!2A3pk4y!C2)SiHPQ7GXV%is)@+|sAPRYL6f{cU0_n74%p#Px
z61gyeCL&FJd9wsA5^pYSA#5r1_Odc;>jW;Aq>b<rVO!y)!pnr-8;$k}T%K?rJ!o?n
zmU}|3NZ`r@K1g7H0#_w)bpr1t@O}c<B+w~={s|0F@XiT$djo^;>LN+k1g;h7ChRVx
zZ;u3eCU9NCeN97WFJIm}f$PO@5Z);4BkU`raz8aU$rp8vffDk?>mZTA2@FYKXu^Gh
z;Pre0!x9)y{RBoPFf)Ps6Bw1iO)OmkkpxC3aB~6^61XFQF@F5FB{0_Kw}^~O;8tJ4
z$@%T#<9!K>Fj4&O1nv=;l)z->L3~OAcZqm+rSBTM<-J!DQ#e&PO?aPhx{zu!5(tQU
z_oJXM4~ft|TOxJ>j!0A(OCX*=B7vlwDWSIvJ4APfv?O_9Mwk`mgiM!)wBYk15eA=?
zzyk?9mcXI}9!%gN$sbK%b^>$6c>=@3eyB%8=KAt^zMMLIYM!6K0$;L_qfGbf#gaTN
zTq1nj*I6pEEP>?-tVm#G0;?ohpTOz_)`&luz*><fge(Qq;zhDf5-*hvzVB1C9`dEa
z#sr>`{8`~9;d8>xLNB&0>Q`HZFC_3{0^8W(6L>9w*Cl)@ft?~R3wI>&O2YjHpIy;I
zl3fYBD&OYST=^T~B=02fW&&@?`E~-keYvMbd{>e^zMK&<S9=rKryP3Yj$@XV@WTWS
zB=89*`SSWGfsYe7m~c-#dt;PA9Z%VNxptU32^^6o2Nak19x7{$Dr0miZG4fyQ4V|u
zS2_4Hfv*yHK8Y<!982IhO<5B4llVG;ZxSe<#92vvo4|<#{!ZX@0w)#WcL{tiOTw)3
z;xyxjgnLrKj~wQb{3NwgybC1oO9H<p@LR(DYwBMds$4GP!(%(+_XPfs+Mhzk^9LVx
z)OJP^NTOWQHK)9aCEYgyyo&ph5=oR4FC{GP%gczA71BuZQ#j7(DkM=ciP}ljk-U=d
zY$0b9l|`xunO0SiYQpMC)DWpDtR?j3`P4ioiMmOgn>=IdQktbu&U!d6iSv_~lEhs}
zG)SUh5{;9%P{A7|ae)Xm|1rhnO_FFTIn569+$@QUl4vf;SYZo4RLdk<CDA&Gi<4-R
z#NZ@`BymX+ZIie*iEc?;n#5&ET$#jGNwia_4#M_+43~St8b(K7a)k)Z(bXcIh1dAL
zokVye>*7ngiqM{PPohT>Hzv_1iJlVn7GCFT_7Y*`T<=S65Mh7rD>6XX&-d*w!b%?K
zO9qMX?m5(#j7nmd_;BF}Up`W#Sdnp)$Y|lszV8?je%NwL663^gP2vvU_qHT%7auR2
z;LE)!^h7x)B{5m#PNCNm?oQ&KBo-&JB#C<^UnHC=WXn!V;=UxNCow~kh%g{DeVt$u
zA@Q&;;r3d~=g}l$K947nNFtd;DhXS{N0V@pNQ=)FW|FvHB%4GoiM%*-QV?N@ihRjT
z5f)^Y$OFFoL6L`i-#H==`@VBU9!X-JFQMg`@ACyoEEIoC$VU|>&09Hp`{PM0P2!0p
zo=mzYrBl94I?IJCgcPn6StVR8Tq9g7<h-3aOmUr@<m;2z;Pa=Fcv^g863-;@toU=n
zO+vl`W8d2>PGig4$5!zZNt{gLg(O~-b6XNGCGm0++vQ{`9GE+N{z}sQ;Fl9TKGg3_
zVpq~#cX~C6*OGWWi8qoski<txyqUyXv|UN;P2%k&b|<li4abL|8pb<pvbM&%%%qOP
z<z#X>zshWDyhppCQ+%1?z9jZ1@nI4lB;8kptVv?U<9yj<99!ki;yzB|AhVRjkt9Az
z;!x7vrgE5OXPW!4yt|ugjrki0e$M<^5}(t;CviN9FOu%Onm=>-GKr%}_YEV>Ad~xw
z-B|XPpAUbX#5b&vh6XpEe4BJ1&ui%XVM?gU>pN9NSsULc@k0_nCh-&de+pAmIF-cD
zv{5P7djFEduSt|np-c+D(F`hV$rOH1;t$qg5`WRur%)_~zZKzW)}#WmbiBN@JW@P`
z67ph4;#GdcnY%+N33<~mn?ku1&P}0S3guHcD~0MQ)JUO13KdhRBDG4wvs0-2uc*A=
zc{9$c5>^v3>9)2}Glg1mo+GTCa_7%=#B-(2<gl)slru>E6wXWGf)pC3aK7XeHcFv^
z&l{%B+%Krl>%tV8q;OFR%~NRV>ogNtqSF;THDZetTBh6&aL5@av2_X;r_d&aOHvq|
z!jKf&QXz%wQs|Y!Wht~vp<4>wQ)r*U<%;tvVFy1CY>tj8T#>?+DZH(7u&ePsg4*cn
z6t3~}(@CUr3SC6H3a=G%2=Kn(WvNFBJ^h$HN$(V{PoZB5{ZqI>`hA5r3R#LiBFE+!
z+#JFOd^Yp|KZb$w8YB$yp@83ir7$doQ7PP%!f-!^ktvMuITQ7|%IFksPT^L`$D}Ye
zg>mAysQH*K)w~>%f7lqerEq%+<E1l2I6-)akUA4nm?S<~c&E^Nvb#(CZXq@AVLY0R
zPfOvx6gH;tObXLen32L97A=K93T6s+3XXyVQ;4Ksr4aIC2>Ug_*rF1~Q&?4G#8Tia
z&Kp4q@ni}qKNRneX`jzZA(KKjg<J}G3Ge?`oP`vMQkcmu%CBqFZiGap<yGAS(tJ=A
z^-v14{Wv+Bnk&92g~cg6lES<c9!+7sgbRfW{OV<F96Q9vBxlS^Qg}Rt6)CKg&e9Z?
z$%{H{h~>T-ovTt<E$2GnniQT$;YsneLh5^MM`Y&LOUQs5Qg}**dOC%z+>L+wbX~sd
zPhnFEAE$6Ih38V(oWkxD-bvy46t<+WBZXHKd}|6Xrm!uA7v%J+f^lw7xwBRhUN5Ea
zvY!?ecBZf^h1XJeowekz&b{gff5X>&)0e#ESI*lsciI8_ZVG$kyFZ2ZME0hzFNOF0
zuuSEHe{tSoc+>eXg#&7%kK{$21xo#s6b_~EOA5cHaF|{x98ckE=^RPnvlKq}^;woL
zQaGkaj;8RXDy<alzZACk`y2VIuWwTLR>B`sIFZ6h_BuJ46R#DR`uCEsA$~~V8{Hj#
zlH`=|XQ9^_exun>p`?vcHvUNAPkEj8tK~1=0wiIaUi%t0V4ty;%yTgt#ch<Z|91t0
znv|Ee-5Ws}+r1-`cwx)gC@=Y0Hip|6VWWbLiZ&|QINQc0Hrm>#Y@>>e#x^drQPoB@
z8|T`nXQR4}8a8U%sG}Ha+NdQmZ`PU7=cRj&gmr~pq8`?_alVZPHqMh5v*dN5hBg}6
zxIp=*kdb)tFjNy8O>MNa(Mmy@*=X*Ey~vNhg$QfDdTFDzcpJZRE>@g>HgoHNv0ZB8
zG8^4(^sv#+Mtd7qN&j*i9Yn6Q(NTo@SJ<v?Ve@&J@p|&rHm<SJ$wp@zU2Jsq^Xz4t
z==}!nS{vOIk2e$UY2!K@{cQBN(aT0}8-0|+>uua%<3>M4CdA~v@>67NedXn4V1SK5
zHU`@m=<9p6I^<t@7;0mfjTsu13^mfmC>y(Nykp}g8>4OHY~*d+Y-5a#ppB4?u{Lh8
zF~P<iHpbbwRgsUkahu5P|4NH_^Ge5<C)$`~V~UNtY)n>J?)0<am4bP@+r~Y%Yni9o
z|N8~;y^4^&)BKq4voT$KhA<#BeP32!*ha)g(niXLWg}`MA>WuV?rVCr;UV*2+i>KS
zvEfY^(sFtVSw9pt3pR>uEVS{MjhT`^WMj6C`)$m!@qi=`{!8C$>p3j7jrqQOt}5YC
z8;?jb&zJKpm8Z{i7f8qy7ui_M-eqGo^Je358_RtCrS_TgL;fkqavLjr-<2YZOBriK
zp77;sMc6tF^`!VZ8|y_j2%oa?w2h56p0V+wjcsfZ$(gs!Ha6LKj&^{r;Cq6LpA_<X
zUJ6@;TZJzOd5pt$8!xfET-&knvPiBccG}qC^H*%N(W^SjsrIUk*W~rO@C_m3;k&#y
zZM<dUZPq-_q)YOyjXgI0vhlZ#_iVgx<0~7-Z0xnM&&J0#4k{-f*!a-K0UP_}WKUz=
zGUp%3`A-FYV&jmFFKisOaadlT+Bm{I_$huSAr1cLB9wd2ww}V5>e%GRZG3IxCmW}1
zd}HHVDgR*OgpHHp-wT=UcOrapA@?HrQIbui-0b~q;};vh)70DeRr25bfE;2}2vsxw
zl!V+1&UjASFdQ^-(9{7O6mxL4gUXI;*@`<TDN;g63H3`kC@p6h2jxV{I*9RS8C+$p
z>1Lz6gl9RZAW~6S$rILc6{<L>>Y#=s)r8fBUY4jpQd5#z4r+_kad3`<x(@d9V}y!s
zB<D)rNLbH7eG$sfb8x<R17FfmgbQ)>y+FLN@IoP<%bGd3$U$od7faGy*izWS`QO%T
z<+%4jM$*Q?B@Ws-XfK_%!pj_7D#FP;YunSj+(8EiSNM^zTpd{o`SLhcue?_~xW>V1
z2WuR3a?sgvKQUP3po`;vI(MCeUJklCxYj{82i+a?aM07i#<uRCZn(jTuc~WYU~q78
zCP4k(4z72QaFBFxgYv`OAU8Vhb0xoM=;NTTgMQALRsCTO`a2jPCs&rZG&<11AUOvM
zub+e=4u(27##hGu+`Tlz9gJ`=(!nSPQykpo;3fy79ZYa=hl86PjB#+QgWDYUyjFhx
zIacx9;$R&66<;OPFg|VN?oQ#}lG`QWl%DeOjF7+7F)-1=BnOijO1@*78r0<5AL{Uo
z4qha8JGjSz=^*IfUI$YhOmlFb1N!nakP<zNJDM5O9Sp048IJqCVM)C&4k$wYP=J;{
z#HMr*WxsXYS4$CQm;<DhVM(9k>$+w}T%5tLH1Mcm;M#IZ#d*wuEyB5h;~?!I;~?uG
z=imVc4?4&@C^)#Eol0lV7O^(OPgFPFHPF~_cO1=f+^t6~wEN{D2eTbK;$WVGIqWS`
zo+~WWFjxt}8g8NH*DxM+FyFxf2MZkpu6DD{i+iG2isMa<QKi8e;07CZp~ViCICxy$
zX_<rNB1?trHdI*QV5Ngq4*1h>+NHW>+@C>k)rc?P);f5?!6yz5Ie5~+ItM!)>~gT)
z!3Op{2hTWoN;SYbdD?OB#U#9VoG+1m=~)Mx9QR~tcJk+_KiXXw+3etX2U{F$b=-~F
zytX@d!Q;Yh!db%&&-W!cUl#5Vz9O7H)p*sxYYz4~_`t#I4&HF^wu9a5eihwKR&R0?
zXczZev@`smsgkj?obir>J#49x?mobGoikqmy{8IcZM-kC*8va8rgOi84>f!aazr#V
z4yY_25!Ij{%ZsLfrSs;%hbeJz+`-oljyU+t!BH;tJNTTHqgT>jC<ylsaj}{KSxaB3
z0*|qys?sQ#+0FRI!M6<J;CuO=aNOObCpoxkyP<e_<OkZ`G|H#(qvQTm<tIgc%E8YL
zei8rM!D$D-I`~b_--UlV_(O#8cn6jLC8zgt(@48EzmyPZ6icJHc!@Mhim-d|qK=29
z(<mc3C1pjtqIqvan9qu7R7&Hw9DdK?>@+H;u^@|uSyV}*Y8q41n3hJhG^(dDB8`!0
z)JVH)Zf(=JG>w{R)Jmgv8g<fWlg1@!y!@GQP8to<?(QizP+dmOyMVABg(8%kCvv{9
zLE1fSn8HSBcTfHWX}8xk7G5Z%vq>6F#hVE)^5xCbXd&Lxm$XWwwfMzCc0vYEk8n5A
z&#Yh^9d2BfM!Ph6rO}%ON#pV~I;7E2h2jz4`zpE}?}{|8R9$h5T*YkbBONw<fLlQM
z6+jxD(&(H<mo&z}=$S^>wA+)*4L9z3!njtvo3OjEhj0;(8!Bd;T54REcK<k*WzSFJ
zhBW%6(Vqp^?eaz?+9&NAVOrY0a(eB^1+D>dvhoKiw}XU((-<N``Oq|mi4XTB+}1lP
zjhoV#kj5Qpj85a`G{&WItD+i{#@IA&Ve!?so0oQn2|FqmOK(f#_B6&zjdw0~9)7Ar
z<bDI<#55+QaaS65r!hH=JEb-yjdR-@>{rY%Z>-)b&^_{EkbBea7~z@H+)2XX-<QVp
zG#<#hoq0wYfi${j(IX3!oq-)Gi?&&W(g>$fFN^wFMAFC=Gwihckq9?<TWLho?kzYb
zj0+ROq%b9{qfY3kHqvQi(#SHNG)84`QwI4o3jC}igNhjxr7=@Mie+$r8ne=PGmW>H
z!!#aDV|^MM(s(G1*=a0E<8f)uVTsb1pT@&-GBa~U9!X=KFFAOYu^^3wOtH8-9C$sJ
z#()xM_#&w-7V`I$JcWB{8Y|OSCCM`3a^VW$eZ`H{Y0N2ZJdwteX{=!nJbiktyf*rA
zG9IR~PQq%%ji=IhI*pe&Fg>+2HmC7?8qdi2tZ<W%p`H`rjb=+4Tg7Q+U*I@OW4oN&
z)OD%pjqZiT4Q7T;=6pvQyQIUCzLLgH8Vz|7UrpmRdA%-tLs(k|oWb8tV|N<I)A%}#
zchYz_jYDZ1PGe6R@1=1djgQiJKaIU<>{mdqfcwOm^ar#*XBnK<ekciZLgB}0_jXD0
zNg4-fviQ5+V(#a$lrZ?G()?0*B#qBhr5rx={XC5?BtI&o<ZH$ART{^93CsRX8sE}p
zrty0kC(<~X#!tTQcOu^lndlF`{6`VSc1q-D;V;5pg-q*V)z}|t7#Ser7U55M{U!W6
zjng7t(WvirD(_ZUJmU_B5*d`tpp<xNVfhToWKdR|{f9c`6f?<L8P{r&Fv3b1oGqQ6
z8C1@oN(L8Z&?JMZ8C1)luDq&eP(!4Sux19eMHoY^jN2_)&*UWMNbcqH+zjevP(Oq7
zB)mX)eg+Li8VDJRCkQploEawUSCllC7u&082F)_)kU_@`F3O;J2A9gKMFuT1xFmzN
za<=lz)jETVGw>RY@wD+dGe##b*4t$n_lvN03fNwFxzMYkD>Aq;gU%Ur$>1u<Sy5MK
zuw8?T<+>(=PLeY==CG@HcVBX?NVkmp&si$;kkjMWWzZ{w-jejqpdXun^$g>N3~rRL
zkB~WJ{yDn)XD}dxVG=T`ff)?RV5mwuD1*Vi+>6}n35;#HFCQT?GUMJ@sWUo*n={yx
z!Fw5u$zZH}pUvQw493wOW>CoB)(mdTU`7Uk3~tY0ymamsPRL-Q2y=3W2=h5fnVFoy
zof%A#&};X*d`*s*dos8;gQ>n`y2!K)?i2A01#6yT(3B*RK{A722B8eX8ALLOs;^pp
z3|>RH13!a!2408pOiC&PTWYxsoD9-_t1-_Rc3{;*HskKb^z!KqqM{6DX0RfIm9+mE
z%u)=GW$*wSF@yOTEXd%Y3}$CAS6*|3%=5$S+p;-KopC<GDpDVtm%*d{`0^BT#f*gt
z#hft1i^Laauq1=WGgz9za!J@sY^-JCUWuqrvPzP*89X7fI)gR-cws@Fl#rSmGFZo!
zm33V&Aq)7FpOdFE*vJ@o0+^pq=5133&t<SVgXc5YnZd3Mwq&qXVRvNkg8JunIbT$Y
z+x)bctCuo(S!16`dt>Jn`OYbBcoq9<2CrxEMh36>p*9vb-pt@FIp59TZ8gwt-`8uD
zcjRPM(8+k-&tNa@SQcfou9e%D!RHx#A)OC0*zbq^FoOf)9|=Fs;GoDS8GP#N9LnIZ
z&%GQTk@GVl+vsQpUuN)A2B$LkDuZK^f1kl|k#AKS%){60_W$r=#)%A0X7HWg!N&Q$
z>j%GbepGN4=jRN5$>6UH{?6c63I7!Smcj2F?EZcH58s+K)ng!2JT0~2Sr}PB_2Atv
ziitDlC9)`)MJYK;3t52-$jfV*auQY(me1m>EGlGCF^fu^?PpOni?iiL{mPtlsaO9K
zgVzu=gVnRBkwwicYGqN!*RL(YMrT-Ro+D>n-}hWUHU>X0i>}ugEwVU2>pn*`$f98u
zjk35PiwXR;D~rZiT$n|ZEShHB&v>70Z(Lu_VCgvP<Hx^4_8PZxgKiehv-sUGoOQ;$
z_U>PkIOtkt-P>6!VQb;V!Zt!aJ71c0pYpnC&Uu-5JMs2HPDC#k=^*SVydsM$ec!7@
zuFm2bkxs(S!Y;zD!fS>9>_p|WWKT(Q!t1i=l|^r6DeG={;5_+;?3s0*JF~bki#}QO
z&7xlxw`4Ici~d;*$YNL)!?PHe#h@&PWHFSjJjocG#qKV~>aK>xlcsoVNGF3Af4O_2
zlQANTky(t+;^r(ysiZdvuVH=aId?F>*T`Zllh!|W`AySi9%{$ExICXBi`%l8l*QyM
zZqH)8bnaktcQqztvHnRT(Al_`ySx<7M7E|#2gSq4`IX$1EbhwU?kw)fBFw3K7WZZ`
zHH#Tp1hSaM&cF_t#dMKz16(J+5Bj#JK{T@nN*)rf>1n**+r6l>t*2pS5oNt)VP_GO
zLOhE^76+uj7^uc8nZ-uVro<horG<<?Ba+R6i_aVSy83ywOMzL{vSE=r?aVChXSdYq
z#4L4GeuvH;@?aJZNuPYS$Q<FrS<F=jek6-|S@&<zkE-|1&*DfMqe^q*qh0QKO^;=<
zh~qAY3OOv!VhMG!*qp`VSuD-sX=Xc%WmzoGVpSHanMrmAZSY<x!oI|3C@vhW$zrY2
zeJYD5*s@IwZ@=r4G!FWLd!3qleHI%;=5;n|YF)xx26-lnXR~0R@jiLjq^KDAJ}&!b
zu_cQiv-l~Cty#Q~#l9>)kiv^uY|CPM_RRalmn7r^@~o=H%USHmx?j(|qU7EX-<icO
zkynNEeJzXE#rI8hYvau<-pb-_1zE_o9roue-pS%!N%myXN?q$M?*9>|^K@xruY5U>
zUq9`($bQyv7N2GDVb*=XJfK`H<68jsd_D+hlpW0C6ZUF;JEpOAm^$p+YEYuL+W&d>
z%!#{SD2Ah1e3`{pSsY_saeQTQT<Jc-r4JhaEWXLQ`;orQ;-m=q36X1><2#Yjoec_q
zppDhg$gz`W@pBe`umZFAC5vB`(C?H~H-1ybNFLKi=p-!KUs?Q}#c8%_&V5YgS~QVm
z^l}afDJdpWJckm#q@+lx97^X<CWo?I*x|H4hw_qhpBOhvabE<jC8MgCL!}&g<j|99
zIaJP}X%5YDsFFj~92)0vVGh-D?jj-6x*&(@ekwI`sOd#0tSzkL`<|0SU7w#TQZI-4
zBIgOu7d8+w=7u7TgfyO8iz9NkYp&V<oA^2$p%>-QJcm{}w3e_%4lPC4dl|`;)^0^z
z%-rVCEr;&%VyH`~#)gyg(i|?!p<T|6{BmJ?AroRG9dhWH!xcGPDPd>fRXKDLxjKhy
za-bT+^73*>XBYW4=0Tu23>=GVeJ2+l`FjFpiR13N9D3!D%ORgb?;NhrA(}%hhZ}OZ
zF^5}oxGjf1s^`(lCqwlW>6b%)kpYZcWKa$x7y}P~$YDqhLvt7=`S9GCUQI9dYTm(1
zRX0ZFFiLVycvH^({?6<3H!IW_;n*B*5n;OHME1)bav$LBa*ofrtMn6cxFd&&IZVnS
zDEZ_Z?#$ud9Hz=SMR<1(cZqoK_3ja8%&d@UIoy{+K$7V>%*f$HW4DSrm2;6VdWfd4
z&w&sU4+|qXSR#Y<k2$VW#dAnVlFfmOOEeK&(o9N{652U9B8)bjLq^;yKDPpLM{yyC
zq8z@-;oBT$=5T)wUrT3J4iB)W0SD!LP`EdTheT%QFeitHbC{dM)*N1t@R1zmi_FX6
zQNJx%B965Mk~0qrb9hXAk#MnaNe+*TEX`q64y(nN<*+=56&!=Ax0NE^O=?XJYjb!e
zhi7wmB8Mk)cv`;ea#)|kh8&*qm095o&U8KE;YQ|M@=a2s!sZ;F^Mg?N`5d-Lhn&7l
z^u-*u<?xy^wmpZJa@du_t2w-!!;TzY$zdl=O)Y~HHm+oHs^*<0!Py{tAUob)FfK0d
zlGk(YwC9Z+-pt`G*(ENk^0n97;=9>b`B^K!4#?r%oO^iw9wEtlIlS+4Yof6)hYxbt
zul#(N!vPWIlT%8s3w@*k@^S9W(cCP^CpjF-;V?CGIFiGcIeeAFXKE%cKJYl2&s76o
zut86s=5<tL84nTVNfC<wcn(+Vr2uD}yqkD7=R^)C<@+56LJfnj31})kYx#W+Kgbj?
z^&h44lkk-AXW=ixUxhTwf8_8d4MHA$^7t!<zjJ7t$EA6k&cVo|d>&`zfxK(wcoh?I
z_y6ZnB9D^3ymTI=#MyRUS1*%yTfD4<<%G2S74oQ<$Ax(`$)i#pXXjBZkLr0;mO_<0
zs*<#F$0IK;3lllGYUEKfk6O~<=2E`dWIga3irSLY5uTGrU6FHz4TSZC^@Zo<alQ!S
z<jQtK@kYW6gpGyXc}Gq2XqHE-JX%Y5Q6A0nXpwjCo6HZZn)4sV(=zWG`PQ`mdG}V{
zCXY*`Kc*p$bUTxIs`0ukk1p~eZ<j}V@ymTl2a%4#D}+}Hugc?Uk!ysV^5`tW8elvg
zcFp5j3A+g?@192wpZ65GPS`7t-XhlvZxHg&L=4h5kA8XFSHScF`sXnqk12WFmB+w5
z2IXCAaAzKa^B9uH9eGU5W2nLo6UHnzhT&>%k`Z}~lzf!%CgEt|%|hyo$z!a~Z^>hv
z_^ra*gtz;?<MWu{bKavT`FygU92fsNKVc4!@cnNd_vG<X9xvx{Zyr<g$mWsDW12!`
zg!c)j3ug$KpFkd_crcHUNLXm)5fSnBky107M@*8qFd<9|Q$kxvO(&1E&v{3qgtj7|
zM<I_zc`VMmJCur~z}`sTnR(ow$E-Xa$m7909+lTaehhQ-nC<g9EW5b(#P^8!JfZi`
zqxrt(f;<+AKPL31;!DImtNyt7(ma;su{@6zd2Ez~Be#A%H&-k3SS88oJl5o~HjgLr
zSf9s+ynDdxlX<M;7@_Tzbt=J+t%?~>G1212$>GM+dG|4M6L$#EysP-nu+-{KjCoTY
z&naf|%_7eWx8$+am%kwLqHvpVd)}Q(FvyNPUddxm9`EI`Gml;JeOLIZkcFl3e=U#K
z^LQhVH}iNak9XwtcHZ6c#Pg^b53k*F@^OY{oCW_m>Drd}^VrKSRKT=?Yx?%(xsl%0
z|3ES9&*Q^94&?C>M_&Qm3ivpWgL!W40t)y<WjvP0agjrL92Q|O{Z!;g9-oPP?#sW(
z<EZ$T!moTe^Ye8c-^lq}9^dA1B9BvY(u)!DI+@3JzW(=l{NVE+MSjY=kC~q4&yxHi
z{8hNNn(OsDEt{Nw3jY%REu`;hKZarj6ffYM0_qk}qTrf^io%k@Qo_>0GD0epEufsw
z%Zr>PtWY?Ut4al&T|i|CtNWT&3aIMyYK1d12gX*TfSQum@_lO;P{-#i=D9w<w19dA
z)R*(T0-E^p^F<m68y3*WmtR2Q^9%jFHI<~9@S*~mi?k44ENodoE0Na1e_EtX0hdU^
zJh%1pf0-|7C(^!v%M0jGKu0;R@qMolxw3$(M6MS86LTjyI~UMJgz<Ov6}lJDqky3W
z3@f0ggnfnA70}Bs5%qgZc)jq30&W!PBcv}A>gV(R1q|@{K#@TO4E7~ML|Es;3m8$r
zgo3+FI#R;1zRsuuZu0r)0&W%`BmAdCx5zoJfLldw6W%Ule#VPXnUUY2Bqj<c2`3Bh
z6izANE)i<pUBEr!_xh4r72Lr~o4}|@W)u)8;K>5k6<`(+EWj?nDImm(Dj-%synsjn
zRsm5Be}>{+h5^0rItMj05(OmXmGTw5nZqJkr*r|C0+tl;cmY`{EGl4e0l9*^Vvv`l
zAS^0iW&!sXFiXz)1w2r|gH$VEAop$Z<OlYj0_GMlyMQ?b_ay>v9K1*#DPW!?v}SY?
zJ@TnPBVACyLPbl-V<Jvjga1aMlan#dSeE*}%S1S%V9}O~uMn;jt`e>mt`V*kK2d;o
z4_aTqh5|k>;0wv05<XYJ(*<l4f2IKMyX<ER?o%W)ut{=ecyj^I7qF#(tp)6n@C6}t
zc8k1Nz&4TX!j}qoS!726J4LAZ3VWJrepdmnO88m<Z;HI`>%8IXyyZ*YE}VIKeMgda
zeK{AY-t+nUB6|ziSHK4a?3eQ}v4G!-86OsKKoatgL_RLypvWh}Lqaaj^Q^@q1^4JG
z?(*8E!!ACfNvURxs$m>0;L8I3F5q+lUrGO10mnty@xB)MS@=!CUBPB~zm@ZZ@FeTD
zfbYeBDBvfNABEn0;FP%cvEDD@>_5MX{3iTe_=oV%0{#;5^qH1Xg!V<ayvXe~C_=F!
z6fZ&vIcpZ7RuM`Tp_H7Zi%?aBnq@@F3d;%03(qP-1(AxvO2V^+m4#J=EI4gTHSy}g
z8bZcQdF>+9k@KP=oFh_SSl8D%SEQcs%#R?8aK4-kirgN^tD#7vB3vNSSa_kZiI6%?
zi_pyHHDEON<8L9-vIwnwNo$ddi_k{o5@B26r9$TXvLdweIZvhTP=t;}|GWSBiXz-7
z-z#|pXc4Y1!Zk&x&)+x}p;Hk$i+3+Vmm+j6!nH-{CdvO$btT|8RR8<F%3dk5WoeJ7
zv|B1=sqB$8vWu*hC6Yq+$ldpQ=gwV}C0SEc6hetm+ANhqRF)Rn{oi@#d;I*L=RWWA
zp7(st=PYy1nKN@|&b-~;v#2GwW#!bCINjdE?X8%EzZPDstnBbsUbOb24QnC$c5HuM
z$DOlB7R}mw(ZP#{z3AvgZ!h|I(aDR>UUc`OhZkLxu&Wo{ym0+jZsip05$T6`9mEMo
zyr&nvMBJ>oH`HAnJUiNW`g+mNi-C&jFC5^-V_vwMWYQJylXK@xl0jZP?nTKCp79+#
zgT2_&(!<gYVUalhdofIee7ML6;kHNdlountSd_u58I1B`v=>$qnIy(|@w6A81@L(Q
zW4##X#hX5?_Td>X#(PoIhs%9<)*O*NUQ7^wPWZfVq8F3AnC!(1Ugwr($crgnO!Z=p
z7cY4+&5P+?%u<bJ2w8=hA}qgKFXD?{%r>#Db#&%>;q$^T(JN#Nux$h4K`+>JY{MNo
znqe;@UPM)%w}mlb+>3-4NiR}ftdNps#l3jVizQxUys#xMqBoJ3g*hR6W8RB`;q$yj
zZ_&PDl=)sP5ML<dsgu=z)x<7lraB?g52Kb!UuI&Lo7k07UKg%1v2XAw7{1zzHEP(m
zgl;bHD0ZzE>%4f^i}$?PEoHqI8$@;pHwr)S;(Za8WRn-0#kUA~f}_aahYD`>;v-|Z
z&5P~gAD@#iEq6-X<;5o=p9<Zx?Pub&`CQ}+;g?=~CBl+3YOfdjyx4Cne-`;#_zltM
z2fX-B{CnX+qaX6(u;D*=am4VWUi@hIPaGY3TK<?9$0eQ+@_mMrBENX?tH^I&{LWFP
z7GM=vyi;DBmO}9lFa8w&%P4=d4~YLO{LkoTL_9vn6`u|*=EHeD{CAP(e2$$;9{!5^
zP(raKea`yi0`XEllonyWWqi(N&SibhJJAf%=0YDXl5siV#Xel(LwWHkLfTXixl~xu
zhe}4TEW#%nX;amQ%M`38tZr;-h_H}X_;95UK_5asT;;>nJ~Z&5p%2&iaIMcdquuGl
zbt2^Mb$TryY8&NxAL@wL72Y7cQFxP(sp^T`EWAZ{s}Hw{+%BZe9U?rX*7t!=^PbSV
zDvf-&%ZCm=JnX~WK4&`)THfn(ZU)}tLt~Kz&76%uso&>A6FF(>Lo*+mi@Rg+ejgt2
z;Xx_xKQ%4HnX08oD<4{mv@v>HAKHmOBy2Bq*K!?w=%gTD9O&$G{<G++U>Bj=k-GWt
zh!5R;=;6a;A71d`QO>1&%*lt|KJ*l4@E>^k_|Vsfeo{E0xw9Onwf;T~VD~VVPx~;?
zhe19(?sKMk{+{q*un$8N9O}aeqYo1q&f_RE=Um{!lRi8peWY--52Hl5ogfXyh?6il
z)`xMN|D`-<^zrP;;uD0tf}k;f&nr05he^h=>=aD#VX6<ae0b4^X+BK%VTKPgea^nn
ztTKN*skxk+Pck^$hdDmH<ilL{Npp5~Pkj8B+3PDhrTW+bd<gi^NKX0`b2>xVhlmde
zACf*qeTexG*HLianQ}V}&Dd{K($hXzBD_nP@nO4q6mM5@?|qxO`;hY???b_d#Xh{I
z#-HcId><CD7(Tq>(>qxmJX}=lYVQ<&p=@6DVUY+=^dIm^A=P4u4@-Sm>BH+jEHlS(
zIghFSUT4}BK4-s268={C@P-dN+c;-)_smFK<HK9D_hX<RZ?m`i@Ee=ahqXSe^I^9S
zpK;#s;XNNd@!?Y+*89LeN7(22+n{Q0^x=IUHu<nw9ra@$w)pUY4<Gul)mL;M{+T8o
z{%iJ;47ge1{rnd|e7lg{yTdSNJnm3%r*IcXrTzqG+j2`uX2;;?%JB;yzVsFSasQPM
z-jU86@}tjL8|?96ugE?h_WSU)IQ8#*_(uF&;Q=9E$6(a=J{(l=kPk;h4*T$fh&!}-
zS~;rVDeWuEyna$Ke)i#*564+rjvBKcK4VY%@QVz76}k`JpYq|f4|V;x!H++D_>*(5
zALab`i>+GObD<wU@;z4eTOa=M;a?^EPk5f+sofd=qb34jF`>J&)A@cB_oIX#CH*KP
zo%Wo9N{N>?id&bm3SJ=O#o7tpZQuho3Oawe`f-VPd0_=1y<O@@Me$00RQ98a_?3QV
z4PVvRT&7?(VRc~*VNK!Xeq15KB$sHn=c^RF+V5=KeU0#1;dR1VLhkR)+^<&_b^JwF
zmpA%xlOLV@=<MegLmY#8e%vgZTZC=>xYdu_{J7nZJN#(sM>9X}^rOBXcl&XV9}WCy
z=tm<z?(#bmCI=ePoh~@6-1(ugANTrkpC3(R<Bmj5p8V06KR%;EZ0^T{ezfr8em@@I
zAutP0dTZ%ND?eH*IW6hg&7zG_xSwh}(|Qm2(cbV5emrb=N4B<kyQB;2rPUNWZC5|K
z`7w^`e?PkW(L<cU-hMo4cuzli8O}HC`iS@Sqn}8B;Q%3HnU*-nkH^_X1Gq7O!F~+!
zqjmt-2Qbu+VXR#Mr2-i4#|S?*`khJO36=ACKPLL|r1(?9k-|~J(ZVspr-eLZW0|kv
z&xni{J}aEy$8#d?T4j<Sll^$vk5_oa{g~oM%#XMqQ~j9c$1Fcy^kceOb%q}^{mvA}
z20wd1$!Gg9$B&mx%ipBKL^Do+b0vEH@cEr>{rt+8B@Flx6b}i*MvwRrHM~hlPr{F+
zAGRM^Hi#c-KP*2o^2sCaUQe+AJj=K<cFvEy9|b?=`JF2-S9FU?bkA1v{aE0~YCqP<
z&q6;I`|+9|i~M+%?VyfF<c_;bWU$JQH$;{Sm-%rmA9M0!g$Vgdk=KR!I!>Qwa{k`*
z<10QX&A$dX`TMcXk9YleM^0$7)(`g)EOM5OJ^wvFHkjD;e(*HJD7Vb-`?1N7&3<h0
z<A@(e8SBS~e(dt&6F;{4@sSel@MD`F+x_@hLAT<r|Fe9j-#L$u>V!}I*zL!cETkWw
z`SH1ud?7sB2u#aD?vc3Hk9{Ik26XW3_hUfMqUQSAk8gO?{LWJ3fFFlM$iMUBd+~!t
zX)?)kSo{Ye7aKJD(T|_}IOWG_`TyCE6MmfZ<Cq`ErA+QpwD$PLk6-=x&F@_JyH}2G
z34ixHm!E9veq8qZ@uwff0yr;#zm)uMKmPHfjk+bP#wmz><6lMn=f@d8JOLnp##*ux
z`RmTd{sSl;aE@k)fKyF28gD5OKW^_J`!GK%P&(k8M#;+rP&R-I0=O`Mi<l~aD*`B|
z<d+0cK7fnGnUITz3ISXiK#c%u2AnyqqN12ZC6UU3qV-{w0ICLXSpe0fR5$u2E%}D~
zz>=_dZrQF3;Hm(wlZUH?*935F0Pa%6ola@Y0@PA0IUAu)z&ZWZ74jcv)`h2IuB>hf
zpk4s41+XN5n*+EdfJw5sHGta!=o>)40B)DU)y`cacLZ>!2p!fBpn-TpVI!eC)7~Ax
zJ#6X#?hT-20IdSJFMuWi+#kRL0W=MuSpdydLf-0OA$jMAWp>XC4@z$#bQMPN-b-sK
zJp<?!K$`&C2GA~mhXO@?roCe6s*4)1gYaQt#{fE+R_!bj>Ebkg*8sX1{SlGw0rW7+
zqXFlMcbfG!p8JUKK(J2|`>Vds1f0Ll2L$j~00RRU6u=V!JSoe^g~NCj2w;df`{Ym+
zn0+|L1%Ch|q`RG*_>_X90~iy)$N)wK@TVp{wg9X4v|`5wFfIW1SW|yi9iF3=M`XN;
z^sI1#@VNk<7nvw@uc{^o@InAnq;LqN0+<@Wv;d|DFe89K0Koue1~4mtmjalpOkWIO
zb^vq4ImCu&ZTv`EXW)1P@CD#k6ob6eMP$L)XC7;XPyk^?B?5>95Dg%1EZK%J@t&Fk
z*-_m}B_+~BIsi+B%&@)zEDpd{Fe_wzb0YZw3L^82{<6p`0n8U!AY5o-7m08;Joi5o
z`r)0}r2#ApIBSDVihZwyXSuOoA+j=n*8^A;z#9R)8Nk{A)&;OSfHjJJhwZFe6ZH0$
zl(z%_d$XSZ$-XObBL^@4d<kH^g8U#L?Kg<Kg?Zob&1_XTOY1EGd=S8g0c;K6qX4!C
z@G-|JpNesx@Z><_byHIhpS0W&z;3oMZ~m~5dR%!|0G|Z#se;G&KJsG6jO$g}e-Xf!
z0sNi7KM8ylz@7k(C!ASguL^KHfD-}i6W=fVTFA8DkT8~~0O5DS?}Z12hlGcPH2Xp1
zNB~Dgel+?|0sL(EF%eEpCj<C}%^Sw*u(PK9HGoqAoDMkrHx3*T_sQE&D?86h{lNjk
z`JWXDphXBRL-;3ve*>r$MC~B{3*Zd<QqZXvd%h=#QbCjs0#b?z8Fik>`9TyHDPi=I
z!J_9{%LGw2h)Thte|#<o;u6_hXe=)ZqMYFui@3M!%8OSB;!=@{#>Ra}wQ>+uq*N7N
z7DTlmsvDb{LDVpu_Waw0Mdj~`Ag(m}RY6=WevR;2;dLgK|4CghJ~4<%LDUJNZV)#F
zabplYgU$`En}VnpM5`cL2XS){w*=87h^9f@8pLfuGz_9q5Vy;c#&-sBhq(LSTz&Bd
zCYIt|;&%sePtbWRfl2sl9K?On?>)zoIt`iy(LCrpJ;LC(eE2Ph2hOp1P`rh(rSPoJ
zHbHcf(l&^8A`b=8A&7^?+Z&&>?|4o^20I7QMM_s;_aM3j@yP$T>0y#TYV=+~^bVp=
z5PgGqR${*(`Uf#2h@lD&5I!z^OgK<DNUm75!3wgPtn9ELh6gbwh^K=X5yTTgJQ>7O
zGGMIR8nhf4#Au15bOhbBXK`#0&nR}BNyw=2;v{ZEO$g#SDbJr{GdYMC*z6%^L`(@{
zY7mEm_#udCK}-)~We~3iF(ZhXLD)<c#H=7*3?eQMvxAruL`a;uycC2t2wxC$r7%<e
z{6PeQ2pWZEZjH{?D;z{bu~FkEW*R)fZWBbx=$1&@#L`v9^sAhrmJ9Pi6h!6)u{em=
z#9t2L6%nSIAH;$n7Am+Xh*!-)VUfO7@s=3NWkD=8+^r6iuaHu|RZ)Ll6~u-hHcEUW
zh&O{+9mJX--U?z}5bp-@b`b9<cI`POcaI41Jw>f|ldI>uQSS$_DTq&l*d4^?Ahrat
zLpChH2SIE%{6mqgL3|{#O~{8rX~y5j3ew@uAa<#(K9RytB)IMWSrDHG@x8<^g7}hM
zOZ+S0-XQh`u}9o3Rp}~@=lxPhz7FCW(;J!T0qNff&mP}{K^!vnbaEt!qd`;*p;8Dx
z2Jur6=Z8={gr9>r7Q|mc{2j#cAWkUBY2nErehuQcAbv4^==^u_Q$n|FEDy;aQfTm}
z>PzxZ5dTU<2>*$ALe5;r-<flgGi@>H=b2chEfGS=5Xu{+R0tP@aA63grIZPwY^Z2v
zqp|Drq7W`tY&nyPQI{C*7PW$cmzuPdL#PtMEg{@0y=n+og>ZEUmxWMGO7#$GiqsIg
zd0j4kh44y^U)T9HQtAp>q-#a43!#=#YKL&W>=|1}A|2ik!i^!^q~OiMdctqddHUkE
z5N;3Q?hx(?;SR;pL&Fg66t6FA5GtC$>9bJ?cS&>$>|)~(no7J^c%QI|klx%XG*giL
zewFh9;e)1*EE0dM6#OlO)*-YBp=}85LRc5VyCFQpAUC`X;h7NHhtMH}hePNX!eb!}
z455>p_Y9#|2%SUd5<=Gyx`ogqghv(iNC@3c0nQeQghSq~0(tKc`pKq`u<tqc{l#fB
zz=(rFcsztBLU=NS!6tTC2t&k&8Z##0Z+HkJj19AU%J8Q}MhZuTFj{1c@NB8Zn#La=
z!m}adLnwqWA%y2bNXzp15GIE3VhFQCm?Y(e5T=AMS)94MuBIwDBZO({qSF<04-IW*
zhA`_KWljh$g%AxPCULINAA(oJCv@Eg#OWa@5(*(K5-~c>;)W+fNEq%WPnp`$gB3!?
z#M&f==R{c4c_F+^dj($+E)8K>2=hZ&py0v~7KQMtv0p5*MEIH!zcmfAT*^uzb6;^z
zNnQ_Om9b~OZ;G!DVND2ciN9@9xwUvl!L`Q2dm*e3;cy5)gs>rmjUjx`gL{$Z{SY>V
zuq%X5WWPCt4?_4*e2dWawl##0Lf9sSxo;QQA!Ok{Ho36OI}QI-v3o<<7sBokJ`3S<
zDPM%}r4Ba}ekFye+=ITy%vAfOA26|Bi+m&eR#;qp_&aeo?ZFTZDM)WD^N|pahHz5K
zk0IyU=eYP!JOzYsOx&%Sizm)WOAo(<@T*bi|Mw71g>YKRpCSCEIpGf>lmE@dKSx;@
zL&Nx&lRxL!Fm4UwObDJZDu+=e41`fEjElq08R5Jz&JUw>7-bYJ9!3cfw<OH2q=Kcw
zMRR^x1)1<7kqg4OFzl?O+=^2#7cQC%$uE&j`7kPkajDTON~|R8Q={k%QZ<a~VbqX#
znXsDBEk?~St_|ZlDVK+FMHp9xag~B@zE_K1bB<C=ylxmbh}0HdFRWwga-)Lv6ue3N
zY%Ok9kh$L$#_eHr45L#RcZ6|g7!QWgB8>WBGzjB<nKcZfQ5a3aXd1>{VcZ?YePQSC
z^?T&Gv255Hym+}+oPT69=;q~OGwIFMl5UkBkaD&>Efs7dY!yap5!XrEFxn~jknmw)
z`!G5f8#;9TbPl6S7=6O%8%EbKx`olp*gPWA-Ly=PFdj9>tEZyeQZdKg=LGwOF@QCd
z(%<L<MQAxVj6vee{c+=&I$aG5V|W-d!<ZGuh%lZA;{{nh8OBp#JRQbZ1xJQ4Mr4$5
zw9xfHq}y>)o(*Gy$TMM#H#UrYPJEJ4o)2T9;ckOWR?y{B#HR|Ug)v=ZhS1IN#V}@v
zkqaX)aZVWFFd|{R6vo^zyb=RKpGoC6Z5T94=$v+lh7k`V5k}0!I!8*}5~hS{p<Bp|
zxJ@*E+~ZORV_q0b6wA`S9L9n$7KZVPQRa)#$s&=(!dH#xI(f|mmxi%Se7SH{7%N0p
z3SSqx?eDaVspFb3-U{R91a3*-?J(X6<L4NT#jsX4F+PrBM-=PAcsGpq!dM?hG=f+J
z8{}<U7~8|xDE_|jzbTB(;#<P_K;%Q=M`3IgaofbjkEL86L7fP8gt0S>U159@h9?3<
z@M##k!#EViVVQjv#{MwA4&(DMz6j&XFun?7Zy5W+*dqfjdw9L@?Ky+gZ6en98yS4h
zp&G^k)!i+?cVW0Ef`d9VuK0tDe+}ceFph+AG>jj^_(|d~O8avd#}zy#baOc&4=2x2
zsMF!^VVnx%A5QFHoL1}~Vf-n=SU1PN6#V;~v@G*~od1m(gZ$CBSOn)qP&I<fA~-*S
z;t^aFLAi)?QYaBY=?Kb1P%?s25ohNA)~pH`TQ-6VWagIk!iY2fQ>WR*5nK{MWyMk{
zFH$Lj3UYF((JLzGCgDpZBvp)3ErRM1Tp7Vt5!5jDmy6UiHdiRvys<NjUM=yO2(Fdr
zHo|q{wIiq{;%4NQwr&JBMDR!i-6ObBC2tZz(+F;gpk4$wM{r97^&@By!L5qDT^?=|
zx*qNjzf<UDNB<2KygPzMB6kU?yGia*uyF+Uiri;nnY@{JiwIgq&^&_s6@0+d^ucp1
zTZy-iphE<$BWM#rTNB&P*fYn641YL+juCW~jav-Hc8Z|0IbK~NMQ7@6#)ikDhxpJ4
zhDGpb1U)0@6+!O^21M{!1RNA}(kFtxbYj*d{gkA?$#-A`gA9LMQA{$}C__x{to!f?
zMno_vg2@p)A<HolJRQN45j+*aNRxJy2<=B3LWg4`7^mR#5j-REYy=Y`7=Mlp&D;a@
zoXMTRi85e=yb!^Z2z&}ojbK^?vm=-j!So1bNSqbH%yYcCuITecBfcauHv+Fw7)#Ht
zr9Xl|1VKfGA_yBB_gF*}B>$G%zD1CT;EE`&j3Oz0Lj)TmNJWs2z=|Lf!LkUJM_@BH
zg88yxUOAChBFKvrBA6G!%i?Y>v~dgL;(`bkMzAP?SB-}y5iE}2HIu|OTWVq%Tp_+z
zxH5v*BUr_56TzAY-iqK&W4T(yP3~s>_BqNsru|u-brHO)sP|0T^(OZH2sTA<EP~?^
zY>r?{1p6Y`AHfF^d>FweoW>*AYEo^F;3M&ELT2se`!VN#W3y9am+`;b=wC(fSp=U)
z@P$dsf_-@o-(xKInzUa_ITXR+2)<z-j^KclgU0f^2);MmEs2XiMDU~ZBPRB!h}%{_
zMewuHsho)5BxlzsE{x(A>Hl%iMeu6`zeVu7ls_Z*D}qxIoQ~j+b6mOE{VnBR;Xfw!
zThk3#O-~fXqbLytq9_*CC4lh!=>OL3ZrMskQ96n;iY+B%7G*`~huk$IzbJ|dQCzC1
za#37tY%UQgFLaG7Mp0eCN>NmfqKf!sQB;ef>N#d-J(JXsUQ>9v(5>lJQCuB`KZ-yU
z*F<q`6kVd|8pU-{)QaNnDDH`(b`;k~acdN}MNub;x=LP8ctaF7inw*TDf<7eVs4J&
zmUHsDUHpzH?i69E>WefI(nEtN8XC^x-DS)e)i{cKqi7XHYl-&>9}qT)qNzwTVRPaA
zLOS`DFaJi-f^&kd7g|a`+cIqwd?<>xMsH^lwvVDi6b~!dN!U^7*0i&@>!({3k3{iA
z6i-U*9!38s21L;#ibtjN6!wmymx$Z)eZ=XlZxsE+&z9=3C<aCGcoYMT4WkA}F+{;(
z#(1cR>utFBh;x*uq8J&)<S1T<VpJ5P6*WOfZ)2i(I*PGTjEiFYIjNp81}qqV&zk=H
zoOCMBM={axN#`V-62+`2UW{U@#A#7Xk77m?Gu86nnv*y^F!$L}%#oQlikCzv&J}SN
zBn<i#bnSytgrZm)#WIQEDDonaD56os#FJ5^qKKPR30KrXPe+l7!j8f+v2LTen2jQL
zj$VjjUKB4&Szz>6qL?qvg7NgdFp5P{yej22;bNidaEZ8E^5s#ih+=&d8=_bl#p_Y5
zRqQI^+it2T-i%_k_?jr*GHp%|bm;ngN3qPE;yQ7XccXak9DSqsmMA_Dc|VFxBAbP-
zw+{{fD2lD(uFq{o-)=_A&M0<8@oCH%(Vvj8pTzKN47;QFj1xr+*TwL86kl*AjG;sf
zUux_hiQ;G!Uq!JeioH?}MDbk|`=Zz%#n)245z;N+DgIWRZ`d)&-}ee0j^d!mA!F$p
z{GcG;4gWEUpQ89TivOhi%y~YFU&W6Jj|)#kaZ<#|h=2P=@p}}1NjW8?_-7QS#s3hx
zPlr-Jxxw>y6#qnvo|tuCNT+^AX6LC{_^&_zn5W2Ju^8N3&X?lamo%{#ij)$Tj-iZ5
zSrdCf3~lt}<V7)*lX!6qRb#j;hD%~7FQq~Zm5lwRF;o=iw)SrBl@+Wa<Wok~L@tlv
z3X$qD)DWR@&6x9+I?34@T^YkwF<c$PHL^L|0`yZWhT1W7ilK81*T+yNhUPKcA46T^
z?QW49Vz@Deo5btIa7PSxir*Z=EynWJ7;Y24UFbeNa`s!O^(8hCHjJT>$X!DB9mada
z8^>^O4EKq%3Qa|t#GEHl>9AR>=+#9x$peaQ8^eP!w1}alf~|$Egl-w=r;SNS-Y$lR
zVrVae4#J1!pHcjEl(Jpjsf&2O7`n#LP5cpIuNb<E(7uPrqcQXpIh$i|1^Wp5#!zVD
z9FhJp43P2|%M-)k7zQdhNa$8-i1<@6j1(Cf!!VKI!V$tJgmn0%2s0feGA4$nV;F5>
zIkAj2{FxZWiM!7RxaFJ>!*ek#jA2m>&&Mz^hO}%Z#V|RBIWfEx!wXVo3a1E}@6;Hk
z89rTP#yM>`D~1<M?Ce<4b@5y&aiKQ`UkrX@6OJJu9u$UzoVAz{e-Q<v!dMJ@bZDq2
z=viV)=srYY#gK`?mNHLB%dAK)hP+V<W{kWn<rSmP7g-Pkn~n)zjbU*N+a$gg!;%=@
zjp027m&WjV46DSK#jsptg>a?N-BSJyak_e2<jojXi>xvFTQRtu?Hws=jlRzGne|55
zEV4nkQTV=alaNlfh<qSqjvtC_6@DaS2iq?4v2cfQr;zr$L_QJLFXh=CbH2v-8BYN*
zd?E4c7{1|IK>RD=9wF22jbWeR`$Zx=Od^Mc2ZY}VzZV`99um?+;AYPc;zx{fROH7P
zeiCu}Eg$1K9z)+a`o(b~hLei=C5AJ6A}Wqw75q*3dkm*yI4w^9e~bJf{4<8XM9$7m
z|0wvc@V{8m7n~7CvA8q&w-BBe$AxiR6vz1r78jNfmK2r}mKK%~mK9zgbn_|~$Hj5f
ziKDK>OX8>!N7XpWD_B8zsgU_r6saVv9C!W@VJ$B+vDd~?Esp96)`;UOqt_I<TzEws
zR~p@Yj_B$*u90%~dA92mtQALXk?W1U`-s{Naoirq9TIPh<0g@M#^z>`TjID?<Tj&o
zFy1NNNLXLkz{EBbq5r$$xLf?5IGV-LJdVZ+-fJxHi=#;#P2)w+R<TX!`F<1oK-_tb
zj=u+uLf$ftR&lg8O6NG*#L-s4c5!qt`a^NF7w0z-==NcwcZ{QxI3HS|-X)H%3U-U5
zr?Gh?j_!u{5P38X_enD*=_RGNuumMdCOUrD+Wq55#*vC+Kpc<7F))rnam<cmP8^TR
z_=z~46d5cW630*xCLbm;JdP0}ZeMyze6q0_8ONwNM#nKm$~fWECU$JR=zHkT7-f7M
z&x%hFKF7w4J9|q`jAN3>-<6%+BX8#8WZeIs6^vu5EN2)G(?q7ni)Krfb7mZ~Ozey7
zQL6h(QbNMHCe|B=&v1Vn0mFkLeB?MR5;1x-j+o)`I1=JDy-wSv#eWf6ab)7K<H#zw
zT$mHi7v|$Ah%n(ik(Y(92>DLg0u#G1jzxyQ8pmS8UlUmp$I>{KsiE8^BGTuII9A5-
zdK|0REOD%jW1Z~Z6uuS5YU5{(2p3~-8|9rie$v_P-8kNh<Dk*k$FV(*j}_by$Hq9`
zk7JXG{UDCb;#-7Ktr$OyW2=H6#j#DKMb0Un`?4p=jyQJ5@mU-@6-#B8$R}}pD$-q_
zi27W7PaJ#W_`+Cz8OK+KZ!Pb*-519JDf{F2TI3toK*%xc&Nkn<BCi5WpE(rA;W&Pf
z{<DcaB62j2A4Pr=o?Q<di{rSI6T*{1mLWRH^J^Tx#qoO_r{cIYfr<&7j^htb+Im`*
zHh*&VPM~-Kf5q{49RHZK9vS?r;D2$PF*=Kl1d1t^{5(VGioX&HmKByvpp*#p(jsLN
zaBEHF0x1_Jik|x|r{KlHON6v3FH*szs+2(G1g=crD(O{()f1>Ha+$E2kZCy~)G)ke
z0+$<pg$QTGt3~PxuQ9RLCU9K>wG^x^yk5voSVzPy{|(|d3YphU3Dh&32Dge2NnmIK
zw<Vlcfo@OWjs)&ZU@YfV#nu-#5H=JxO5m;p?iQ!dCJEeQc;f`_HT*uB=~>pMMroEn
zbHndX;DH1lOrS*qEfZ*)Ks!aXN}zQDZ4%B-Ts-TYiw`BxK7kH0J6CskN9mms=q%DD
zf!-org)C>c1RgQGyGV}&9yLl&kzR?S6>pye`X<m%;y`25Ut~Z6kBPXo8zla?aIlbh
zaS1vsf#C`4lQM$UNg$g*E`cW#cq)PCjOEA##)ywfV6=#P;D}EvIM!H>6M05BUihqV
z0^3mY!}AGDOkh$1lM|SmfH#2`WWe&w6q%C1RFP@I>B1R8w=T4trQnOg*$K=Mc}d7v
zn)wp&vz3ezNFXX6G)gFeuz18M?t(m~U|g6meS<zzQql=n#y*pPE$%LR@(C0Y_*lw3
z;pzm|B=B+quP8V_ffXVP5?GkPBJm|c`hQhqvG6r>e3vS?%-Ad!VRkEx@_GWR#NQCU
zX>^XSx5PgXzMa5339J?0C|oCGzV9aRp5f~g*dXq{So*&BCKJ0kfh~r!3?GVb6@Db#
zCfqJ`kHQY|ox)whPlTTecMCsD;PV8&NZ`u^_DW$|p0mD6U{9jxV!Y^1h|W9vjm_5y
zeB<&24v2i0z!8z}g$LbO?*Ey<VZ(ngZF|%xKZ^V${5gSRM(6#a6XGY0@{7o?!rv13
zUF4LBJuUJ_0)LA9WprK$|0`ZMi5rsmFM%@&-m(XhD3e6lB#I@A?*E*Zbao_W_4(e%
z`4Wo@O9)E}O9@LSi*|^*Ac+g5)J)<ck+ZABa!FjA#3f0Tmrl2pMJgn5sZlB>QOR)5
z;Z?+|3NK5dnn-nFjU?O+f9S`3h4b<xu1Mm_ByQsigGnUD;Ck_^lek9YS|MYvOQM!|
zZDFx9XDISrj5<kt*vxrh`NpI(lQ&M{-Xv~HqMmZRIf;8jZV}!pye)~_MeYzbO5#qD
z`oaduqIV)1CX3dhcS*ln=-&O{=l0yU=kAj@OxQ%&RM;$u=1JV2!~;n@m_+v^dL+>z
ziIz!pNaEonS|!msiFQdmlmz!<Z^KO46sib!6wheO+3HO_?UT+<`+T>ho+{fhiB3s$
zNup~Ke>L%p8|%EZ(m9E*wat6CB>rvgc_fM5XFS)RIm121yGnmFiJnOeNaC?1dL_|2
ziGE4+r>mx(K1uXd18(MBP~NQIJt)4proGDP`NF22fk_Nv_h{-FlEkW}p2tmV4^BE;
zVQ@EwPGi8W*N3uRyw9Wc#&EU3h@`Xm{1Zt$nZ#2`j7(xw60?(-lf-Cl{*%OWNj#s#
z(>!WPJd?!uB))3uVb%wmdB(AatG+CQ^Bz!h&$CHPNII2eNr)4Zn3Tk{B&H`ZIq7`(
z;DscnBvG5U0{9dG@BDC3h+os(!(v?B+%rS%Jd@>7o6O=KMEvtN3I3R>4j=wcVr~+V
zB%(=plkg=GNFta-xn`cF%{^n9di=~tX(K8_D2Xr&po6uKAHCw$Qxfqc(kf?y*|7zh
zJEcuYVZO9skX2x%h;|ZL_Pq@1XOK%GpTut|{GLJ~iFrx<$wQpP%SpVF#0PBlB<3fv
zAc^;r*p$RVHS#*)BH^pT#Yw!D#F8YICh<lRZzi!UiObKNd0n_Xi51MWrL%*?N-3@N
zo*E5SC2>pJqPJpKE9!0Gnk3#5*~%xe*)5Y;n{-}c<=gRgOUE<E^1DgAr`*>ku|Z^`
z&^^C%;@zy^79s7qF|4~2_*N;qllUx&kCNDy#CBs-@_c7P`#6amNoRwaox)v7e3Hbc
z99C64wFWwSwe@b{;O9wvp@hG4PGd((;>RR@N@9=kwx8X;glBIO`=q$n7hfmw4TDJ>
zU=KfY<_LRZOMJ%x`?BW;Dc>iZFGm~{Kg5yP!E;#30UpFNXULB#iuMftEYHV;ZpB&t
z<2>|I$WJEmi}<g?--PbFrKiMs*XXp!A3_%R?<D?7;$+HcihnsMIDW;?uxq7IC55Uf
zZn}ZB`WPSI{wtQkc``U(SU!c~A|-?+g{6e0g=K_gg%=1f6ka4OC%jn50$h?RI$w}i
zNa0fH6-{g<k;*EJTb|2OsF}j$(yIxpr%=P#^GtDtc%2mLid>n(RU%iXa7_x=8p~QK
zTqn*X%(}Mt^=@oEPuuahA%z=LXput86mCkPUJ7@ma5uB&ZGjYSOX2nuZb{)*DelX;
zeE0T_6z)u+VG50;*B9~)%?2VopxnZR9{5HlUqmI|lS1PZnx)V@g?nYg*!xT>@+K)X
zO*vn<=GHn4-k-t)ihYoSx?a&H5A?$*z82alh1Mx_PN7Q*ZBl5PLi-dt$i7_)51r$d
z??JNwO!aUI9aHF}D3+g2%IG~=4#uu2bd%mg_=vE33hs-vZl;f>&{MkWjbiT<`lQe|
zg?=e)PvPSf`lm2}RY)P8!ec26OkrXQlTsLz!s987PGL+6gXLsI3QwdkB!!_0vOL35
z;H+Zv`G1!4Z4Y0<eKLioQW%-SsB`k|rcLLVyIZQKQy81VGbxNuVVuldo%Q7xUY?aQ
zA%*8e*o<y0FW;VLu{C#1PT_?VW~VSGg()damF27yrll}Fg&8T#l;SqUmgydMFAjG%
z59acsVi|l%B#=Tdg}Ets74*@eW;wr(EbUo<PzvD`A}K^uMY{&MrE-xIBj0*Xq>xPE
z^%Pd6kV+w)!Ye7vPr*tdBhQ5tY$i`3r=a_qF#WTfEKEKHHYtPiQg}H9cPkS2i#7{V
zSeU|VDJ)50Q3|gr`QlX3o($Y|!QEVf-Gj-Orm!r9<+N|<{M<voLP;3Ak|UHm0Ce!Y
zk;0oPyr06R6jrCOCWUuXcrS&wWchXq@30sxou=a<U_$b>DXcSo*x}cUZ%ARI$m8d1
zS>QIy<`h0i;X}o4VX-w3wx;lr+HhM6JfQT<U#?}*eiu75#*YejvUjEM39FgH-W2ww
zusem%l;q14J{S4IcwkN4LVlIP9*JkSP}rZs*C~9T!od{2QPhDHzGD_T&>Z#bz)Z`j
zp2(4PD22l*{E)&C8M7|4^madw(b=Z>Q6>CI__OeskdxJMkrP693$I^N_*Fq(VDbv(
zR0^j#zS4L+jXzTOGlf=Zv`#w{{$HHE(<qU~-?INl_^<FkA#Kixcw~<>iluR0x@bR~
z^Ch}-CM`>*(ISnOX_QK%bQ)z8dy}wi8W)IMm_`kjgkOP4qg)ynOT0{YiLe*%|D;hN
z?R=Mkze`0brcp_xvapJYtt!HMKGl@Ax{zCI@)Dq?_~mI_k;awcHwx+Vsx+=v!fTA5
zYty(+yq2)G@cK0Bh}2Ev1`(#^mmsDO^N_gLp7qkWIgMM=xHXN&Y22H}ZE4(|M#D53
zrEy0ZccxK4jRt9_x41j`@J;`-lT56==dLvFR_s0LqCFXC$q9kofJ5oNG@7LGfDD?Z
z(JYPTY22@%JNmd2i@WEHJKH>{D0evUi17U4?o8Mwjkak#rWR<I#zSfJPh)_B?S<Xa
z=pgd2u%nP3I;GKByo<1_(Cuc7eMG_T!X9ZnD$-NfOW0dT%RVA~h5gb+_XFJ(8e_Sb
z8E7ndJv%s!A!$U?h^8?#jbUko6gxbP5ox@T#uNpg5ROgbNs*_7BZZ?_U#%NQr!hv#
z)55d&PRH?xb0g@qb02bi8qcONA&uu`GfBu&J)g!z@v}XAvI$O2V_F&k1*Z#N63!4Z
z?aVZ0iN7eEZS*-J?j_z_ac>$v6YJN|U~>L~X`C49;im_}CYIa2#nOm#bXd65a>j2W
zjknWyM+Qk@Dvfj+RvMW!>@*gnu~1zin?@mxd1>U*$ft`I;clOKIgM9jGhaG8k9#g)
zKO|q2#;a*8O=DRai)Hp&8cRgjjrpUoJ54Q@xFU^}B23H4&0Rmdp2jMPZ>W%cxc_q+
ztJBVQB5Q<i2^svoBi71>E7i|M)}`@o8t<jCK8+1&e3ZtvG&aiHrZhH-yl-;clEw$(
zTUD12jo#_!qH_vMwLOiG)7X{9CyL!6+{u<~?~FLNE}y2cJB`m2<(|=~yW0(se38bN
zX?&H&9*)^GPNlIojeThxN#kf5`_uS3jqlR<K8<f!g)|PxkNdqjuK(%K&FG-?!)g4G
z#vyTc>ByEZIy5?k{g}qFG>)h7lWZ9Ka~f-=J2g6y#>q5(N#j>VxhD=b`)_G*g}`$S
zxw}ouX-@u}>MfMC@Mju-rQxvv3xB8aPa6NFaYi2g6|$A+oQof~HHh4|s+fiIESztl
zxK(tP=M=;!cNZPnbIYAl7D`*V$U->_Wh|7naDjyjt)iKYg<-`<b#g9+m<5wxY&jF-
zB^Jtyxa$gTYvUH6qJ>HpW?Pt}-d@>44GT5Jt5~Qia+$E2kRzhH1^2t*ms_~PLI(>E
zTe#A~RTdgpXlUVT3)fh<(ZWs2@mdSDEnIKmIt#U=aM{qSQ&EBISh&G*E=9Rys%znp
zcD7-GsnoM@vxVC&++pDs3%6Rh&2ozEwiunbN6=jg-YL)ZEx79|cV*JZ!d(_xSZHbC
zZVUHVctB>2h4)&x&%%@1X}O8zEM}Ssn<|!NXx7=&T>O64MVl~l#-skAME9i7%0e3p
zZ7sA`E!gsI@!DB<$U=K_T$qZwThxvgI$3yvSzG9Ap^Jq979O+E)j~H5k6P#{|BqPc
zZlQ;&%;avxxtw-d&q8kt{VeoXKj~wEhm}oAv%VHc_;VLa?)r0}g+UgES{NqJk6Rd`
zg3)HM1umAj?GKk*?)h%GY(@w<x48Y}DGMVlJZIr~3!^NIwlLPhI16KB#(bZ)iq^Vr
zO`owa-ompMCdhzJc(8aTbsNXEnP_2>h3OV%SeR_#1q)LwOtqYgFL#tZ)(O)rRO{fJ
ze<{|~A(&}lmQ}P19R0A&T&BLL1H?NUFIkw&US#301+VF`?_2O$@LLF22wHf}!V(K1
z3t<a+3k3@i3sJU%>|++<7A*1h{XGc_X%@1gC#iz5|EEL-=?uazC}m{%syYT^vleo!
zNM+}9Y_yrj!{-_ZU$L-2gqHI~c$LlHLbcK&c0b*eVC-TY_hMepQVYv0thKPt!g32M
zEWBmmZKYjl;SCFKT6o>UDt4;UPL56qFY>IG!5TUIr>67g6t~%2eZ6DgK5X!g4BT79
z?^;-|;Cn)M@6!$98-?`ALT<9K*}@hJA6WRp!j~34w6N8}E(@Pn_{hRG4g^kyO0wO;
z$0BF%Lc96yl<4wLEqrGD?^dHRBmO=&3BMBAC){H!_nO%K7QPn$MtIQDe*_i|DEOU_
z-o9s1^>?{DCH`RH2<Oj?vx(MG3qNx5%s3}{{(iFH5&zl3F$>2noRE{>SufuCvGA*c
zzX(rzockERiM#iI?&to`mh)Ba)51T5e_HrU<ZmHk|FQ6|_<zDP!s26`FGOF={r@v4
zmT@*aJx_SPu(+^<u%xh*u(Ys@u&nR`;lQx7K@*F|RbM$O8C;S<`3!1gP&0!H8C;q{
zl?<w8P?7DBapsN6nWFK_UFJBMaOiQ&UY0>M#a7Q0-G!i~J0Um&IfE-QxFv&IGq^H?
zt1`GcgKIMXTVvCbKMv1p<>WeHtqf{saDAp|m$@57>SRz?WP%Sjh`3t>-y~iygPTRR
zY3sS$GPpg1JLK(bdAM@mS(poq1{pNWU~UH93>sx{R|c~)n3KWX8Qhb>gp9MBYhya(
zM$j4DmvO!jvFps4CK)u%;L!|vW}FY!H_M<?28D|}%`@oFyFeM|+ba(U9~8F8pe2bo
zqo$Vgv^Km=25rUL2_G_g`wTi5{;){L4ESMXChweaUi#?50`qRakffW)BN=ozN{@{5
zJw6`RUKwnz;Cy}Q{Bq9M@p`lMc;3vQZwCD`SjUGyGZ>P=&<qA-@K^><KH^zl+%u4M
z&){($vW3n^{RU^yqnM|6F^4}}+%qhL;Teq1U`z%hGI%0`SaHu&Oq+4OEzZw0@8@M*
z1IKtIKLL=zvH6~<e1V$VZN27sI)m@ZdB$g)k2{aeU|a^zC{?*-9;O|~cQKfSVmlpj
zJUplNe_l9I$TCmLU{@W_<P2WOU`hs4Gx$P#$-bDu{NkQz8BABB%}`sh?lUu(CEmNZ
z^BnuOI-Xnj{V#c&>2bE(WkYfD@nzuWo%sxoNC~iBX1oVQLc*{xl0j6&y?ls^Cxl5M
zeWo%<i(5v?h}bNQ2(ON5mRCs%8O+PzWn;N8gIC1o3l|98=VO_K_rn*n-7-kcLwX*T
zWU!Pa&mo_~vJ95<pl7iq3;u7lB7=7`cu&b!3SZA)l?eU3k-?jWug+kN_*+JKTjU+#
zTFwk5J?q3t)@QIGgAZ(cXk()*+9+>3)8qRYY?87$gDtel;KK|~X7Eb}TQm45gMAt7
z&tO{y+cWqigHJQ~SR-^t20Jr|dz|A=KfBmU6+Cy9@|0DO%5EO$48F|ZGrB6~`CKy?
zr!StxzRF+^XRQXFz3c;g-igW8m&)+D7jFBL!8bgt860K7GB}XIp$rbQD{>0;dcMz~
z<77`m<#JFZf0z4eR`s~2o*y_E+j|=G^#|_%$zjO;oWXG>ui*K;m4}a4{j9?G<zH!&
zJSQ?JThF;$!rVCue$C*w49>H0zK!2AIF-Sl8T^&OY30Hi{h>N?#li;(_^j#Q8T^yM
znG8H?$$vBWkJC$OkC&Z<qv_0<31`kMsSUf52R4e?&L3o7a*INJ)2+CT5;iVU!jd*h
z*(ht{0vn~Jl(BKLqVw@|R&A)h1jpRjb@|W8g|@Snc!8Tg$ns(#2P_RL*tk@|;WjGT
zsAQvsjh43a+<0Xh*V?$wMim=XWpkO0%WY@2WWs7Ts!JrVAyU(JzSzj%6*jK4ag~YX
z<^0v+*BFJJyq0)9db3em{CZ&>VO<+Hh}<Z=$#yyeJ@Z$xjOP{`x7uiGqnVA{Y}{_6
zp^Zj1?vOEU8rZl~yuR@4{REP`Y}{?5v5k9e=dQ?g+yz259__Elw65`e5}OEV=IYHA
zyq|5Nl02Z`gT|(njn*~>*m%rF8yjtHbXOFO+u7)B;|IR{D}~<L+vs59VcXePzoQL)
zQ?-+#+(#OiV;5uD)kZh*M}!=hOwL~q8;{!PDUoIFWuv!^J~sMFNd_FVem43mNbXK7
z?o>9=#!%^lY&<S9Sd|(g&fL$o#xS)KlaH|RgkqnxF-7Dl8zXIuvN77mL@8rzJT3cY
zZH$#e7HqtYaf+prXGGj8xa~Ya%5yfJH?8WHbCUGQ!WV>Gh)xxmW@EaI88&9xm~Uf&
zjafEcv=L?2HfGzHW5aJFVB;klb8Yz8F-m&a!mPWO^)2qHp$`(VJh{%EppB4?u#Je!
zcm{MI_+cz>=blh&$898RWNg?rk~UH*h9yk1tC#YW?&vHVI14cq=k2VG97m9ic{aGx
z&f8$8<vBXe3o9;}l<*a0$EElbJ@&wa3vDd2vD(HOj#e9sZLGBMx{cRtEU~f7#&R1=
z*-+|@w}0!ohySE&R@qd>vqC<r>#~Sj=B~2whK)CE46NtrT-D<~n8AB-oC@Bu@wSci
zHa6IJ$HrP4@7j3J#yT4Z24Hz3=LRO{+e`WAuV!67rOejbXybilvBkzF8=FlrIE_EU
zm4GVFDzN8lwegWGH)XNS#&#PIWzjy1k8SLbUMq{8Hg?%KV{>~ld}8BM8$ask@3!%o
zje|1#+{PCo-`e<6#2tpr<tqjE2=@y2+1M|_*spDTV>pu>5dTj2z0uuA`VZMS%uy+E
zP(^1dIAY_dO2SXEGx(E@pKTnoahy}DjbF@IU@j+Q<`(H!dHB!9Z#)HvpR)0XjX!Oi
zR`B<dp0cGpe{p)W@voF>B|V(;|6#C%=RBTI)qw8zBY1p~MX@Zd$`)OToR`H#S(MA-
zd@04VD3L|UEJ|fjCX2G!qPx4L73&u10`Uut2e(VJ=QH-=EUHSsB#ZJ{RLJ7eEGkQ>
zD6Ax8F=*^2tYWfY@G`|#GfMR=YDi(5)D*c~c!luFEV%VOqpnu)8sW8Ew1~J_u$^mX
zaeWqbvZ$LyTgIL_bAt?S%;F}KQ9UX5Wzi&yo5gR*;?^u~%i{Jd8f4K>;vHGk7r9fo
zQw{rOFAVm28f9@;7WZV)SW#D$@@#D7xjT!1>Ak~edhS(}PfF7)nq|>OO7kr4&!R;Z
zEwgw)%7a38vSJ0@d9_s*t))|O$0>1N&}o5oMrW&bFuZ>j4`<Oai%wZ|mdH7W69}gT
zJ`2%BN>^bw;Uige7wI9S+ebxuX3@(iy+!(D(O0CO(fPU60a-kj#lS2ENqkQDxNvZ`
zXkr;+?1yGCEQ{e;jL71NEXHK<bQVu$@l+P0vKTG1Crf!oW^uTrX9kztYP1@qJcCPl
zMwjx8&0<^@&tx%Pmc>eW29)xgr$@V=l`=uNNvS?(b7e6xi%D5b&f?W97H9E77E`ha
zW)aF_Y8KP7n3KgzSxnDjMiwt-F*}QyS<IsGFsHA+!z&#vdlv9Pjtb6Od%P|f(Zn-1
z3vU*F9%$A`&*l2E&RKw${9Hz6%6nRr@T}4GdpL_o7W1-rIg2PeUKY75@>#^QNMxOl
zAn+)&b0*bAt8jYEI@jiDA&Hem#&BCCD;!c91-3(V4@<@W&bV~sYVegT=4Y`mi$&_;
zEGo;kAd7odsvX0f!XH`a;U(T{SuDxo?JVBOVrdr3vRIYH8(A#RVnr4!vv{3HU+bcA
zw|aOpmIu0?t_NAiH?vrs#hNVMV(-m4<)=skuDW?r;PocE5Pxg4crT0fS**+A-7GhJ
zbIughYhUHrki{L{JsY!lpS`rPhaXaBP1!jc-{%;xyAnUh;zQ0(ITX)fYZf16u{Vo-
zI=<UD^JlR`e0$dUACvXkso+;x>=D_;vw#R)eJZj$i_b(pH~JSMU-CF=J}IGfChhyd
zvp<WkIRo$}Ne<u8OqRuR&g6L@i(eG{PWZj>pzx6Ju#lENh#bk{s8N0t`6-K^jdD!n
zxbTGVWEN~pCjV8z--N#lPYF*8{}BEu{7d+^kO}`0`B(T~7H32}Dm;Yj*firQm>Kcr
z01sb@97-zc@|@HCO65>ChYNDfU8&MJlo6rjk#?R7#V?X^ZGF_WT+W$YX?bxDmq;%!
zWEK^2xKzAi4wZ7KoI{lys^?H6hpIVTmUHg&^KxlW6HkY7o@zN<&TS>CIJXe9ocZOJ
z6W3mSBKe9OuFT=89Ilqbt~p#Ia&r#1h+Iqi9BSoIJBRC~+>}F|9O~w9gM#k=hCJPn
z@ONYGe{cHKlL7N$nQs;Eki%^`+@8Z73f?cgGl%*)G!Um{(;OP+&?twyq}*+Ecb2|K
z!N$USbGXmMHpvy8TbmiBxd@K}eLf)mV2&fp>1-{HO)HVsIkYiK+Z@{E@Q{N1CTx3=
zH~H>i1<%9c9gStD96F14F$#}+H#U9_-E-(6F`UDrIrPlIt6;Ajdgt(D4o~IKCx^Zg
zhYR}&AJ3tG4g+$|h1+8}49sDWIRE*j!Y3A79Gt_D9EK`t*f|DnEGsxd-kuP$LypX0
zR1UKh9G%0M946&3Iftin7@NbhIZTj~aXCDb!}uKB?9OJ&e4mrS^Epi9u~RY5#*(~{
z!;~Cm<S;Xbsj{4w!*r3eWp?dnNqo^nG1k@RsBA9@=L%U1M)}13!hkR+3<+t&X)TgN
zlt({@cn($$nVj=(MM4H{=S-^4r*cSZlyO*bsM^LLYkF)}OZ0;D%krp}$GjX~&fyg)
zD}?if3xo@Wi-fP{uvp|ZA^YkQk)^_ALY8*9NV_SXl{vhwQmvBmf$)tS-ppaO_?jHH
z<eZZQOZ8R`Z|9sljr_fn!&>om!gq!5nb`F?Y%qLd4(}VjDTmGCY!Eu(R8a9|&xbq(
z<nU1r+j6)l?~IG>IeeVMzd8Ju!wwbWs~q;^uv2_j4xfm8n!{%~d@jB_=X@WNX}?hL
zOCf_iF4;;Rem8k<4*PQWDTkkP*l%JF=J2)Q-;fx7K;%2&_Z%!bgV5U{DTjqW2#@4&
zROCk?Z8*}8iT^G<E<7PTDWuIWBEJfM6S`TP5<i{8A0mGWY5!Lae~bTP6yBLUBYu7!
zCu%zt_v8V!UNPZ$LU-C>Z1FrwNGU0#Qc9$B9%V$z3NJ9R7mA#k<|&uQ#d&9?cS#<V
zB$hWe74o>$@QV4Oy(uairApqJ39BmT&Y9KosF6oaqg<ZH6?y!c$8ULDna5RmWb?@7
zadjTo<S{yrF?n2@$91xQAdgxiH|0@Jq_*&SVI5&z;SItY^Umnwisj}!Zpov$MArJ&
zJnj*{Esxtp?#QE&iM=zA`gt@^kpIm!6v^_Padsr}yM??MY@}Cl8|QJa6nefdk0#<x
z^I*betPUT2*Xr?pW8<EhAIzhLQCjBFDv#EAw8^7w9{uwekViXmKDr~Dhw^Bj2d^%f
z1uxz^u(W&%RM=72N!U4$E+Sop-GsE<RnOC1etP8bXdXTD=#_W=&U5a`^BN?NemuUs
z`7fKkLici>Hgk2xd@PSa(g&(WoW}WkT*_eKkUWOwF)WYaYIB}~M=*;#M&>a}20Rc?
z=JAx_tVq#(sBIHm{&XH;bu-3}&0}01&*U*)NoES46*6{09?#KI!HIcH6`5pWCyTrw
zoRTjZxzkMSbdecGpQYf7!r8((!k2_|g<c`^_2uCg4+w)s4~g)(YuZHeh$<Kp#)S!C
zQb?Or9%;j^JTl_8QP@NBc@z}<fHQv{FXyo#kBw4Z(U@A4$NW4Nh%YpaM$b(9Di2mg
z&*D5@%VUX>yphM7c`VIiSsu&tSdqsn7E+&$TPcIrP4A)ycai*QWzXt7*5t7^k9B#x
zm3OXvnsHx<JYJpUamVsIoKGrx>Xvb?P|COVyqm{+>T*2wuUGHoNt3_#mBpsK^EZK0
zyje~wZO&thbk`M?5A)cX$47Z=%VRsE@;D%akMsB>k59#S<grtP9cGsyyG8cqu`iF$
z^7uTDFQj}W%<@jS`Xsa9Z%@8xO}IaguVwI!kPgr7kl*F;eI7q4>Y$KmkLGbGkHZT7
zkjD|Za_@C8mgGl`4syEsIgev`9OulO$1h59()e)~s5Emef6wC-Tcdyv3OJp|A9*}d
zK=%UvlzpuNY8UWV9)IWYPagkDtXXhQk^gZnEfg&^&q((afC7pYaGne<5YqB|k>UlE
z5GiT&QU#P2FC#2#^xnNZ7Zz}lg5`vj3b@$BUQ$4L!z+kfDy%3>>qJ>uyo#`@@G@bw
z0;-F!RJ1&M^e->ql@gvS6m?|*!+CqKfU67G&W}G95D0syTwB0(tO6e_=cPJ7`zYg^
z3%Et3P62fbSf*CJLCTE<+$2&@$SI4N@^@<i_Y}}rO?R83Zg&j|xKpIQuz|3lkf|Dp
z+*QEcM&ZXL?=|h;yny?pHxV`!HWRw1_4^BWpnwMpXi-3i0v;})WdW@UXj?$L0$LZG
zWp*3cGcR{7>X!B)iS31)mU&X(nCe(SCn?<u=v+XT0=g>b){)82dT`JFJqmcVfNTM|
z0(#0aEbLW4?*jT1(6@jQ1w0|KpKy?{e*ptT9xGrVGt$0Tyr5&*9xq^U0Yena;IIOQ
ziu3Y>S1ZGf&XPP?z*7ZGDPXF^kp(<kz=Q%uDLA@-F=|G3hNn%cu?37X{27t)1!uL-
zjGimtc`1_%m}qP!iMZW~lgtZ7C!c2cOp)mY%s9t*Rsk;-Fk6b>Sk4i7serj6-U58=
z8=5eWUFVb`U@U_Lgv5EHhB|+d0-{o41;h(T7)z^wq<EI|KaU0bzi`?4&REVU$~N7J
zN}j!)H+%{x6fjS*tPAy*WkWu{fCU9CR1__jh%6GmDqJjljm@QmOF23UST1psklt1l
zu(E*H3s_|oKJNR5_?rc+7FkokdnWcRk+%zYr+~HM>k4?c;5;ixZ%oUZRJ_@;UQru_
z8-?!+-RFWfi_@O9_^^Pj92fJ@Vjey!U>oPU0{-T}FW}<>P84vmfE@+wEMQ*&`wQ5m
zw0ni02tO6>F5ok@*yjc8k@AItY?&_$_)47Zz@XcVZth<f@C}U%IG`kMLlM7IkT&0Q
zfS8s4!2%9RKP>z~c*Iy975P#4Qvp94{a69V#n1ZrrGVcHI90%}1^lKc7RfEu=>q<c
z@~4m`Irnd`e+u}wfco>$U>^P};7kEm&cjvn;F$-^b9&K*!eaAKdY*G$IBy=#mr{Hl
zN{W;ay49q8DFxlE%gjUBc}|z(?*b8;T_l5Y^KkJzTq1tCu)MIs|1otX;5Suo_bgN9
zc}^mk=OJSvMf|BmlBq%|l4wvgiHcB>q&cZO-*e~T+)G4JWL83Ho=1fSDc?Hl{I;*>
zxzBpme)qfQcfV(!Vec!fEo5$We5mU~Js;{z($I%9eQ4k-Io5y*jl>%(_AHaid-+Rj
zVkBI#H}m0K1-l5F`_S6Nw(y~)cq<{_kuhif+W64c=(H1Q??VTXj>1mD&O++5bzKeb
zCUTw+-9^0Tlf8WC?Zd@B4D`7(sE-f*6nnmqz0_B|bb;wBO8P76Lg4`6MZS_}eO@Os
zpFtWLR$zz^|MOw25953o>ccRV;<e>crMgTx@Y(O>J`DHa3Jx@#zl2m9Au`g3D}5N{
zD|trhdHd0-5_PWjq3I{q7-`aVkN07M_`NFY8Xs;{@LD1DuM?RloaDn~Bfnnc2H_MT
z8$$h?e3<IPG#{SRbC{cbnC`<ZKKEKSgJbQ(%#QA3qM0V2*&?%ixJ~4CBfrCkI}PVG
z?k>ac_F<0rT;V-JZyw#pCiw7x5A%F@Q1a6~%!<vIWP$qOAs-%A@DU%L@?oX;LLV0S
z@TmA=;S)YA@nNa>V?I1C!mLiO43|l=T==99D@0DO<(@YBe8#xS@MnB@*6`<ic-|yo
zwlDecvJV#paB%>ueR#!(E`E0kukqnk9~$~`roY5*zot|^q2J^d@FD0!NWriV3AHq0
zVxuCqFeZ!(*+oeoQa+@8$oR0&hxdHQ`jGSCUAkW%@={|p3L=iNUP_8Sto31?53d`Y
zw|rPHzQIV|5ZUO%CLi9U8R#q~p3B7K{B8DOixl2A`tOKr^<kTlc&8HW@L`t^yM5T{
za~~=2n=wAm++%e1ioC9yP(Hwa--rE@l=tHU9}f6X%8$~19Q5Ik<nZG|A3pNoY`FKW
zhiRqSvHq72AN%l$51&%ahwpv(!H3T|7JSGf{6g5Xl=Y<#Ux|C)iG3sftq<SP6_;|C
zWc)GeN6C*0fAZmHAAa$<ck%okF`B>n@SB9x_fj46;kXaKOZbP<vI5NZPjOG@gpvR4
z!%6XfcnR>~lG5(u{Zo=yez)cfPOj{}vLP?yM_E70`EiEd{Sc0KeEjjNOJ0R}ugZ`7
zxq_`AtNV<*|NQRLl1hG5mZXXwRsE>uFR6bWKdOt@5Z3ggmfvkVTTxpQug<J(T?Ok2
z>-*6_weniQQoKpp$nRcg&Qd{*g=Y(!_|a5^n&<e@O#ECwnv1j$w)Uf?AFaf_PZWr4
z{AlZk7i8LYezcbYc?Ul_`q9bnZWU*+vyn5{RlJ+<JU_aN^zh>XKl-tCMzfb6y$$ap
za=x&y$+N#77y5C#A9wgMz>kakm?njb{TS%SHGW*H;2_~};U#_yRwuAZL;U!kghPdt
z3=_Fjc$puUi>%NJ^9nyk_%YItEBzQ}^hfzI+K;RKxXMWQ+Hs8GWBnzk63zXe+XLez
zpI~D7X!JVqiKaf@7)_FJvhaF8ZV+MA6hCehze)NW$EmE3zI?dZkLiBg;>Qd>Zj<{O
zrblEf^j1G+`Y}s3Ml<8(gEtX()^$DJoyzS#>Wj?w<1Rn$HpNk4j`&>RJ$~FPLOG}N
z1Afe-jRnv!fCv4U@5j4-Z1-b<9}oHA^TV%7KJ3R+eysH45kD6CvB=c?aX%h4e6b%(
z3|}hpm>)m)aaWA|J>kbP6T94xC&gD737bQmr~P=zNLKmrjN#Av@ton$`|*O|FN*N(
zGt<5-zFPQ-A8SNj6*BfUks9Y%0Y8G`Z}|}tN&1oUBWyGyB2hnVBZ-N`{YZ%LH8(Tl
zFYU*ANiu$9MRI-=MHrj+!!f+z#jdv28p%38UKj7t%x(Av@i$EDMv+azH%%XIR&a~(
zZ6OoB<HuI<ZAMbRy0ycPoqqi0$59D)`SFn-hyB>C;2z;#Klb_Yo=J7UkM|AV&#QpA
zHz+LSpn`{Z6)-yN`H#haFp^LF_*DEeKR);43-ND-U;6Qt$k%>+Bf>n(FDSW{_|8ba
z7vZ~a#{MY&6WcEGi_tkE@~g1*Dp&KE9~A?r6u@yme)r=Kqgf{4ddNTh_{)zI68<gx
zS9ntRk8s&T)+s+M=|fmrSSsLdPhcked0kOf@^Zp60w^z1LAY3zsVrVgSVdS>SWU=$
zs*BVJpr*)%)ov4No7g%mQM{h8zK|Y+I-IR%2GAqm&i6(EoE1Q0@fHEJ6ggYiMA$Td
zb3~}zOypc)^8mcl0$Z8b4kE1sXk#R8188S>dl6QkqmgtH=`8Fb>>5Bf6MJ3&-Nmcx
z8@8U}y-aNH0QwkyegJ*NFEEmR0rWTgLXiQ&Srx2-0SpS@K)^kf=#l^i2i)axLO3LV
z5h9fQPh@BS!$d9(pbo$P3AlGpmj~RFPlgBZOAG4?NfHyRxqU6xb7TNl1~4jstCZ?R
zA>XNu4&dql#sn}{`p*c*1u#B<2?6(A-l_ojM&p_Qt_|S2044^oB7mm?m=wU|0G<rs
z`@U9`|NIz089s6e;D!LE1aM;j*Yo+C@Fw9@;j{p54&dlO_f<ZB)5Y&9jTtOAfSCcz
z3gGSl<^*tC0Jp2?JO879ha^lso4xcOIdhn+DCT+3f8_T{$k_YUGY<qXPvk-2(g5ZM
zut5Bw02T(YD1e6pctnyL8o1xm5FZU-aR5ssyr-^vdJKi9@v#6NSJV^gu4U{2C1l#=
zl6Xm`a>cHXb5;iMwB%EG8>rWs9JooXt!I_VbHe9^EaC;WMJ00FUkc!5-U2A?D*;4g
zCu;(DHQ>IKc`bl|h)+m~U*xlnR!}4qK$tc>$TbH3NTLDQ?Do2@ga#7}Ag(c*ty(3O
ze=2~q`Y;o~rU2dyAR9m~fINqoho#V^bENoLQ~-qliW076hgj}6X6qDuT}b8i0rzw)
zcFP;Gv5f(DmjquM(N3uRmW1yHusMJ&0lY2y%(bx|8)UtsnrscYf3USJfNus{{P={a
z>{F+<2e2c6odN6$V0QrTtEx;zGuRWrUgfzjfcF9z*T$_9F?@-2O*v~`YiqxX_&^5C
z+tPyp9HQyAwmy{n8)g;2;Q*oo-8)nMJ`UiM06x{wJU~ySf%rUtFE~>sSYHP40?*S^
z*L@Yh*D89O`u1D4l%=R{wSw-X{(%-%*ZNU9O!89zKXc9oa3p|V1E?HCm7wbce&gr|
za4Z0Rz*cPSHu-n}%#)S>J%B%y{7=riAj$^aiT_ssCj$68fRh3I6Tm4|)iXcF{%e99
z0!#V`qLfH!A$4fF<-{up&k&XudihiouOz&|a%Vx+AgTpjM^Qb9>7`s#<Zt5ytA>P>
z*9@X^WmloL+FnP<v8XFjFX$$zA9USCgP`kbY7Md)1#wmoPi?}=O=uj%+01zzZdr#W
zK{O5G<~XLuaZV7;m_r<$<2W~n=0SJc)Rq`p1ko~xNEFd1S_RQMh&EBQjk;fOwF%;x
zwbuL~+6K`si1tBr2x3;y-AVNEsZ$+;xGd<N4c;l}D)ZMlh%Vw?jig%;=ZSX@q6dkQ
z4+^4}c<&(kh@2n9g(7{8&IKa<g#Cq;RmuSIi-NdVWT23xU(2h2_+TR$!ZsQ{G>Bn_
zUn+8p{y&J}L0l2Uh#)r56xna|{6UNg;;JC74B~hNi+eZT;&x+t{vfVpSMcFa&|LtG
z31Vyz<AUye+>U!n?p4PJF@Z)x|1Ycyi~KsJV#0|*OcI}LB-aOVgZPxwl8nWg+!VxA
zRcV^=W+CO%MQ#aVhLPMF#7yx$J=}!11wlV~yRiPLQ+EV$XArZ4n8qscUjR4?d<4O5
zUqQ@K%~|=mBKHXI4dOnL`-Kk(sWUH#2MyoX&28+0ARY?h;UFGiWwa?~aS#i|ITnk8
zcr*xh+M&Gl+X!n(5KDu2EQrU0*cis9FrElvSrGq(Tq9f_#FIe`2;rg-R?v)t_&ta}
zf>;^E(?K}2w;)#06oZHcVaslx4dSIBUJl~9pu0`)c?p@-3nDKHxmA#o)j{}!2n6wp
zglmF$HHg=YzE9+bQdVs#2aP-|5;Cz75#AOtL;hkxq$P<96T+mBu_?C8ay2tXk_{qf
zcwU5`{}qE+8^n7-ydT86AYKpRoglUbv7VzD#O5Hj&}o=do7ivSd<4Oq-!$^Kf?(w-
z;qUDryjFOUZ9%*n#O@&WNO`+zwJV4n8ke0Co=)pEZLfs;X!&K_JSk*``-Au(h%bZq
zO0fs%bAmW5elUnbB2@lRgk$k>5TA&DF7%4{G>FfPrYHHr)corpz6s*DAlN702Ju~x
zyBA%n;O~2pA7ywy1o5X@`jdoTnz8sLh$BJ#>S;>B+qQW$h+`5S7kY*M8N^>f)C-}0
z2q%L0o1Qj=Dl)>8L7XA-PZ0kGaZ0I5OTwC1As~cOAv_~HIo)q%LMR(Txe#7akDZp6
zSHcRyiXl`o`LIi?hDwI4b_mrZuO4!JNDc9tA=DD_vLe<oY3qitv5folsX+)0LuegB
zn-I=aY%^h_5Y7srv3L{V*+SOen+r`tI7gC~)rxaNXdXffqjQ&pEfs8KD%n=St|4>_
zp<M{=L+Bt$#}GPsni`1CA!L=DWpxR;&jU%$lR}RWdWv)xvPHc@=pDlOobMXtKGOFL
zn`1|Xz9C!?Lcjmy-#>&4O>*XZaR>uLcp-!rLl_joB_Z4t!qgB3hcG0BYeKk|${`F5
zVU$u06Al+%D!fd{tS+a1X=@-q{t01(gxNCINE3Ty2wq=Z6~gEcu9ke9i5(*{R_IyX
zc<~8Bug|X&zd<-Lgh?Wkg)IGg)6e8nB)ri`riE~G2#<!aIE3jT+!De)A>1pS86n&j
z!tEj4s^H9!y9;=hI4y)(-676VxI2V9Lzu1LUB-H;KnFEPLh`vHxAe5`3*mn8c_BPt
zOq$L2yvl<i%nxCK6dn%Ykq{md_k7(#apty2#QVJ2>ysrRJQl*^k}nmqVo!vyEQD38
zQV7c>d`kFa$o1zd#F^VuYR<|Ko|eR$6qG+3a@_^VbCN&*pV*f;WFhPe;k^)6vlSs^
zXq+Lekxnp#PzbMv@LC8yNtlUW#H($<SZ_Flh~z0@R2UDz7GbKGh*zbAc+!kr+UPJg
z7eYRSw<U3euZOT+q#!JYur`Esp^~cxbM`uXgJL%c-{9OA@rrvhgtrvjEZibwhp-9!
zy%WOL5VlFUJ%k-1?+U#(?hIkCg1dyfg)DcEssHJIem{f{L-<Gv`-L9}4+sy2a7Yux
zoBM}D_&9`bL-;O)Po(fg2w#eP8p3BHEah`k%2y$LEurTwXh`2E$g2+}-%~AwKP34v
zgr7qAErg>A{v5(DAsjLG{Of-*Vg8<B9Fy?(5RQ8}n5*OmHC(g#Glai*2?*hD#hw&;
z6PB^;rGG;>6@nE8!k8Y$En$=jqjVTu!sr@CnJ~(Radz0fPL&hZ38QWpXM|B+!3tqi
z4x>sK6&0jfB@wo<Y8chRs2N7BFse&f!{~7GdR<Xl5^u1W))Ur~uznbawFYPqM#C`9
zl<+KJBcV4RnW}NP#G;yn(KL*6!e|yoyD-{^ac&sRrQA}up|sUP#4E8?7_Gx-BS~8!
zb7Pbj+rdaWh0)P)ug^P&OJ-%aFwP6(@-T*n(LIbFVGImoP#8U>&?k)Z!{}ww_70a^
z5c`JR>mbV-Aaa4QpRm91LSg4h)<sHtvCzA4Tp~U+?0S#ECg&j};$HQb^DqT34dXHq
zudl8MV?-De!nh`kkzrh^sIg&;5*aPLO2~Y?sd04}V<cgoUgqNz951BKwP9Q*exq=r
z@Ot5-FeZyItylRQ6r3Vt{cj3mY8VYP%F~SI%_1yoMi{q-u`-OO!<ZSytS}aY@lY7I
zg>k!d?hoURFzyUvj)I&`yjz(qewXlWAuGw>+%WD5<6cQvpZnB-ryE7`Kp68(?1N#<
z7eC#f4~MZNjHO{bVssXUu_%m374%xS*o^OEMrXOm<H9F|%fjwr!0X#5C0QYSii4tc
z#i}r#2_qVY9mcbYV%=T}<2i8_^t`P7g)m+;vAmAI9LDM}UI}AO7y-#&75a?MYn;Wp
zj`)p)bqIzL3L`8@MCh&hyj5|`Xy(I+hmlY)8Ais)Q(>gV*-PG%HLGCG^sN&{A&jDg
zYlU9J*M;%Ag6qTB5XKwg-lSt&*k1BC!+4ACDB^ma&0%bznME)$g15tXhb}0BdJ$|5
zV_O)<!}vXncf;5o#;0L?7RHV+c82kO82iK66~^u`-cu2Kgv@ZSnZNst#H*OM1o|M1
zk0n1KJQ&8IFg^_9BYGsG&l-9a_V5$Qy-Yq2<BKqkNb+SEUxnS(>`w}QE&M)=Z^HOi
z{5#WE9DOgVA1GnRa({%ng7=s|hw+P)Jq6bPR|S6)9u*!l`TP;apLE(0l#AdmMU_$?
zo(SV_+1|-8PD##u{t@}t*exZNlp*vCrgQ{l6l5&T<BSN(M^HI}DiKtWyix=_CW5gQ
z6+GQ7RZXf|5mbwyx`H)?UPsl8xHjqadF=@5D9S6eegq8^>>EMD2+oY4Qv{tO?%Zh<
z!8s8$i{PvX8hc41B`4T4QLw3y^`TjwE8Zr8wh=TJZxKODkya737V#?JRlA)eOxsbU
zy|9Dwr^4wgP8Z30M$k2aZsLqRPlRc^i}VnBE$tOSZxh=mg7Xb$4KIkGUj+RlxG;h%
zBN!FI05+2f5e${u#llM>7-&)rij-V^21_zT=y|GP;=_&Rr4d{f!Q~3_uIGR(>WT<P
zC<oSUq@ujF^i>gzj$mvA<081)<S-^ua?SF*G+Q@5f@>8!!RTCLbi6*K&ZG#gH?fmV
z><yAkG4dNDxXJLTBGV$cS!BA<8<!ao+#12m2xdjFIf5+_+!n#@5xf||OA*`=!JQE-
zj9^g&vrTUEBDhQZ?g-{YFgJpG6ue(}ukb!oE7sPl_5+f$Pace5zW9O&9**FV2p&?<
zTa9?W@hSD>qmnO+V0i?KBUlo_Qb`^YdPDzsq~ylx2}7QYU_}JaN#`jc>#!<<mEunu
zi8r9nMDVPUaB8rs&nx(Xv3aI_If7^eb_A;<cqM{0Qt(F*h~QQ6*MvSH^_fpFQt}8T
zEMe$BxkV&l<zo@VBPd3&HiAUNU9qGi$V8CTd{3F&I80f?^AY3>_nPl0STMc4E`rx1
z*d*cl2sW5%uvTx#8<6m~(eO7-Zf`|O)_8A6@J<9LBKVvBKZ0!$d>+9U5xg70_6YVx
z@LmKvBG?(hUX#|V$*u@?OR`5eZ=`#n@x0CZ5$un+*Wbg6`apOnf&(H4g;eH<d?@~r
z(94$cj}`nRf=?s(%tU!c^<@NKMes`mM<Vz-f^XOl>}u)IkiHf9PWZjhD~0%zf-K@^
zBlj}=Rl(yC{1(AcI!UdasDDgy&qRNZ;131=<Rw7Ft19s%yD@?qQPhm$UqzLR;*6+!
zkv$dR&I&-hl(3AjbhPAoR9OY7$(ocGuWTe0qNr$irKszTdHt#qMO6uTP3N_&ns{{~
z6>3FMJBoTy)Q_T$lC0ADr>+#dx!)j)h6<h&#hD_Fqc}T?M&f4)SsxCfcOyyOB#Nez
zvnzO2Y8J)0Q8bUD1)up#e){Q6OG-4Mn5wlnNxLZ8M{#8oqoU{#1t0z&<ZII?I!4hc
ziq26mcwy9?3tgh<8b!A#&WqywDEda>jI_E(-IuLBqIjZ|#i!8xN7SBC_l0#YVecsV
zMBQs8A8qlgKR%tFRMxs6ihfb_*K3Fau+AuDRnU0?1EhJ8ka=Dl#Xw~~NJz;gQ4BVG
z2%9E8R5(m{sfoQz<Z|JPzSdek0*Ycp6eRul79fiKWi39mXML_>aZyZ(VzgR%brfTw
z?n{ud3i4#LaZ!wqV$-Qp6QY<L#r08K6UDVrTo-jO%@&{hi@ZMzlhoTzTZ@h28ivo(
z*}W$$>&7T<isI=gRz)#2ifK_iq#|yPVtN#JM=>XgTa?MIQOs1-435rhD_qLT?y_d7
z^EZ~VZj0jfsQbCv9Z}2{>CO*<NV-_=kNdw^v9d0i8^t~9-Up-Z1N?iVxS!RAb)UwU
zwR(szboe2VDm*U=zFc4f=SQ(1im!UP!^AfuG?j;=xS9u7MzJu8MNvE&#gnQGpU_U}
zU@eYfiE6tvipOaH;*Ukas`A)6X0j}b<q}>~*5a?Hgeji?%!c#%Pt<*xvQl*>IhSj#
zC|+eJ^VJ)l0!8s$6ns1Ld=xK4@nRG&MNx}}q=vs7b(f11b&S~RD9W_8*n~AwsA^kO
zdo2oI6n>Q+h$0vTmG=a#5N)rg6^^<`@U7@&^{i@DyW6d;9YrjPW;V{X5sxCF;b>|j
zsm`fwqmGRf3so=^MKwOCk0KjIE{bh4k*C?fn#PyEDzTsja>^8Ga_VIE`8tu;h3lD*
z$QvehBW=v^r9SJeC^kp2C5pG{XKYlm-HG{56kDTU2Xgopk93RM7R9?twLOX*QS4Ng
z?u}w!6uZQC3-<`UH&*Xy1V0keRNhyA?iYR_JRm$6#UYUoh3suAAEy08@ktb)MsYHV
ze>lgZ_&kbVqxda~FQWJ|iXZ6NXhl(c9mRK1d>_R(QIyv4s(iWmZ4~ACH|zWsNF&a>
zR}R+MbpBEN9K|nD9HD#Ed9$5pqVzc$W!gF4Z5@r`SQLNIIY)6kir?wA%2>TiS=_DJ
zU-NnpU;9RJB8meitiNTteA7yEqA~Nu8BOlrC{C&2<!o3sV578+GB(E6wMyC8)YFQc
z1NQCx-1ckZ`SBQD!K$#`-JQX<b2QJeT{l=>Siy$ZpB&lBHhy74Y*ew4(Rm<MZB(;S
z-9`;5b1E@mP1}8!O3oy^2U;!0SaogGv(dzMjd>uSSM%ks?Y?zwV56apGi^}vVoj^D
zjYc-kVulsne7L4vU(q_-c3r{Ys@9&4)+T<iG{!o}?>}v<-Qqf*<~CZ;W^8<7qos{j
zHWt`;$VO`$ZERd)<60YSZM3s7z{W*3+S}-0<2)PPZFIEJ$wn7;NLhClf7s6I%;uar
z#iJ(wt!8z#(T%;w6I8~!hfIFc#_GX#+2~{Ad>g%N^k#9DEGjoH=PEFV@$Ia>w(C^+
zyU<3hcGd+p91fZC>CZy>4@%?Rosye-S{K_GXyY>J53+HIjUhJvC;J~Pqz+4GO_<wI
zcJB#m7%L#(GMB@|`TK?YZ?>1)7;fXuQPvg8YJ^JU)ra$Fr1H7a#wd}igrkL53#l`P
zRv|vlNXCmy5VCdG*_dc!rj1!PCfS&5<0czZZCtP7s4zvEH`o}x(kkEHy3t1Ea#r)w
z7IB)5n{CWc5A*Uj-Nr3a=8V3yoqIuKJrA|BZnd#$r1f<>>oyy=+n8fxuGH?ZaTiB(
zq;;o_*(|i8+s|~B*zY#{Zri;UQ*w`udu=>mW1doR6z;QeKdar&?K=K8iCi|;deFvv
z8!!8<pVdDj{MN%Z9<dR&5wWq*#v&WbZ9Hk?Q5%bu+Y`biHXgIxGf3HEOKmVYYtEb>
zmyjhcvr%)b#a2*Zg^j0dtft-CSZU*FPB9xVu#GmJQKvm;Ozv5>PFt<%>#9Vpp&IKK
zRpQHvdP&G8f5ju0>G^HEYQt|Mz=0TJvE0{e_%!0I8|{sq$qotH2&o`SSRc>4qc&_C
z8*IE`BSzz~k!M012^$=>6z8VOO=^yJ>1btaWR*#d<F3ZC0xV^^*Q<(JrzAyAM)d;~
z_?!8q^}3DqHr^ZI)|r)L9X7JbHuh1dByZZ-ZDWrzdCSIT8(VC=ZQ~sq+imQy-RtI7
z8}Hh1oxhTBNyF*DZ`wJb_}i(pyW~dZ@@!c8rE+c$u*AKJBH`S5-^P9$2W=d(@qzMT
z6AswmbY@2__q)j7hc-U4aoEPukKNkRHKk;1?7B~Fd}gC_3|(UQoXw;ojiGD|U)uP}
z#&1kw<7;MU<3}4mX=J~(@q_B{osIA12Uwif6|1*d960iy+0QnP$TKkZS0-%d4k%0C
zr%zLk**I?Fq>X=U{BGk9Wq3mQ|0({Ln!`3ORJSwFzf~5e2FL4Py8ReR#c+y6#9XID
zA)7<OUuj9Uw6l0H?`M4eAHx|jG>+ly7|O>`A%@y9)QO>D41UL|5<}G(D#hGRJIJd*
z3>$m6zPFk(sU<n1s>e`6lA1C1UEa|yZd<%LST}}xF?afSrPq(SSNXG~+(6hchBISm
z6vNHhn@}t7uI^Y0^_#@dG={b@w2R@K7@Eb<GKN+$oEt;)7})&rrK}dp<oHL{I}wXL
z%v7youIp|iIjy4BSSxqfmA6;XToZPTp@Ztlns^oK#J0D$xZda*L$?^Fu`)577en_L
zhQ#o{7<$CeGlqUK^pBxe483FMtNi;YPiB6;f~Vvq*l=F{E{Gv7k9}bb0~9+rhKtl=
zm&CySzc>b38tX7nnG6!v9&7n)T0CQx<He|<F${}gTnyu5xHN{#V(xv%@R)nq;_B{l
zQ#vbuMGPZi7#YKrYTDH?j8dVa6`WMnx+><*tebjU`?tH6KSr_asIgMuWp@G_E(^IK
zhDChm&Jy`mQViF{FfoQnG0f{^O^)Guc11;Z{ePD>sxT|wsZEJtmeSrBbJqzsDf6kS
z9xs&BW4I-TmpGK%{}scnF}x^+nM@VKBQY$D;Wmxh{V_Zc!|h6Vhwx6}Y~fwPyM=Rv
zbA|T^?-kxB<gl{$=EXqgupowqVt6p-UXIzo`Chxqx_4xhJgk~{i}^({JgVS|7#7E{
zB!(wqSf&h@#_*V;m@}Kq5r3TDp4BR`YMLUmT24FR7GSAuscAhG!^#+*R`OLbJQD*~
zGOQJoKO4jIF}$Fje=g?UJo1(;Tg&1K-&>3B)NFk@hSf2=62qDpax^F9{Avs#<@s6+
zK2A~zSsywOVjzag+gibxdsD;pOgM%}4AB_u7}7GHSPbzPlC-@TcswchJ^ftAO2ojT
zui^S_sCDmncY<?#Gcja2)?Ck2v`UwAk341Nofy_rnT4u9i!rQ?VVy>w)An`K#+qy0
z4tay_B8InO*i4I+K83?7T5pQex)NGRHmdF}`M3sqJBD{+*c!vO7^=ikHI8><*sccd
z6!N0KgWjN`MN7`<E`C=GyJOfB!`>M7#qdcCpT^wV`S*zI3hBHr$^IBV5Mk^A5q_k4
zD25MXsM*f?h&9)6l<92^;3;r4`%>=R2aWkNI{z5Hjo~}`u^9S{cds~K@hT9*ubZv<
zTr-!lzUI7E4SBG6nY=p?Z0Ywj={OL_4>9~0!%v(72dpDZ6~oW6%wIGj?5pjitlwfd
zN}pzW>6oJaiQ%|3e;2acKVtY({4XOpA@aBIq%d<m*s*iIur9dDIwfo8eR`=lO2^&1
z(aLd5@w?S76Gz!N%EiHr`Q_uN5O-6Z5ywQhV@E$zG44*EN^#7qRdVH}0&}R}z^WE^
zJGp+`brIE>p$?R;5yyeBRZ~&5;;0=*oj7<OT~})L;`m38N4OH^a;^ct>O6I-p^#af
z8Aqcy&WgLY#*O)fXB^GrI6ICeaYT+-{F<8ct|`9)jk^!ESX{Gs$v6MB$rf?<8rL%J
z+UmN^){V8SR&n<-)H;qf(r1#kakPu0eH<Mm=_uq~25*o(>=H*;mdIxy!ftU4j$=q1
z=PB4-$k-ktJ>%$QB)#M4WBB=T^cBBA*iYDBc%g8B@FL;G!hu5OJSdJ!4Cmo^l>AS@
z5yGKy3^TEpid-hVTsT~Kh0yy$pONBM#xY9dDk1Y69mmz;V}xUc<Amdd)bUEcCXQ?4
zxGs)ocqtc7jboAsC6nX0Ui#!W&;a7NfFGbra+8qT39qBS<@dUL=t1Yk-2rjTh+}>c
z3yQckj+q>B2WL5$6~}FHY{}#8ygP!oGkF3{61XFdJL8xg$6XrPItknz$DBB94lXS-
zj(g&GF^-qwxHpdb;#e5RqB!o4<AFFHj^h#9Z5-JS)`K#Jzw}6ftGoGecLlN_j)!D6
z-nyv9IQL=WuBz?_43EaKIF85Scs!0JaXjDC+SlG%8h3p=y#a9|TUyI{g4JtlJsZa|
z<+Gfn)A<WYR>bj?;Va{K+VEBEK*KBZ`yWk>=i}~W{RK6X4w;?savZDU@WtVe<CQqp
z#PMnzuf_R2t~K1Yj(z7oH*3z1bH-b{S(8#$AdX-hVNRB~`}8=ZtoZzj_nUk&z-O?$
z?nf!CXbsUv$Z<~gIKGYJyEu|@q~drZj*W4o<H*EOjAJdkE{<Fr4qK<(@^Q2*XYo~a
zK&x@)$#X&1&$Pn#TI=F?J&yHpY@o;H--2|tT2!+d9&vAKCT?(R$W)u+cr%Vq;`lU<
zx8m3w$KE*hsY<1JGJjcXi{}2@arcqqJHoATY!i7`xLvqIxKp@GxLe3nd+0axsq>It
z)_a`J)hu3F-jBP7Vr}4mJ+pfJ{}<r_`Y4e@!ViTX2@eaY`LW2*i1k?<pU3e9T^Y$5
zt7b(jT+`xvw?Q4PuV}YC<|vM@IZS%T!ABqcbQst7bo=zK37nC@k8%9Ou}c66{2a$G
zar_;}$vBR1LRGa|4FR7V(ntLo$8U0;^oK{|I40X5KQ7_#!asz63jY$Gh+|zXiwA@M
zLl0ldDh9aI!F}-iZ`@tZof0lDWtB>xbOL1(D4QsG&v;<3#X)3WahST5b9wm$DkM-X
zf$9lVOrTN%RT8M00PhqkC*1eleA3IyF731QUaO5`u{UOZZq-PjW&*VmsGY!(kyiaG
z78|uXXVKfQZ)?#W){b-+Hgywj|JM`NPoRNFL*bc1#x_deEW;a%JUPy4n!q^;JfFu4
zc{EF4Pc`d@z3vtE+yt5@&?14B2|Sf|F9EF*Xq`YNjcgii5@<`0k;I%N+9l9FfprP@
z+R-6_j%o|9T%8i=oWQ~a7A4RnfvyQmNZ^_Tx+QQPl@l16K=%ZCBye#81C_jI0_P{t
zSG<?7x3EtF-bW5B;sQx7OrW0#CH-jw`hshKkz6D~;UFWq#7G8<3^8)P-x-#`r3qY>
zz~}@nOW^VZu1H{n6ueg?!^M}Xh>_x>gjWi^$8p|Ev8yE+lPG!rJ66GQLe_J<2ur*+
zf$P|N3Cu}gVgi#AxK&Y;6S!XF<^*mqsir0{C4n0iyh$zn?`Ou-B==rMPfy?$lWIl+
zG&vSJQ<7N;+$M5+0(TjmI}*54e74YQ?2iwF&&TFUvOsuG0{13xUjp|hFkg}fRE>G!
z-fOZ4#l24O#^NDK9u~41kC-ufG=aqlyqv)51ePSQG=b#_JSnxu5_rPsKQ7``X_+{`
zmRUhlq^&BrGJ&T>Sm-K|=Y-D)pA~xF9-MxA^+EzKO3wPcB;vgad?kTE0zpaEB=D-p
zYo@}!1pJbCtqUa(P9V*RkU&IoJAqgNQE}$%bx1scq>&^{R*X$a$S%r?6ofgWnHO;q
zC2tR@UzB96v8dM*SkIZ8z#9oPO5&^}HYTtsf!`DOBY`)iyeEOZ3A~lS<^;A#vQ5a`
z-cH~h!?&6|-%Vh<ggX-0C9>1#cx~COAnkl#0`Dd8c>-S~@O}dOCI3YDK>`O8I3(|P
zKoVXPS>lJ{hZFcngtM4!|5)7XPwITC;Af_nzD(dNNscG*bpqeet0(YF0^dsbJ*zG9
zovA-__%VT>B=qw1rX*d^kpzxP{%ZoiiO`BXPjXB_&%l@iTl!}Lf6+xJQ89@VianL!
z$sPDxoH{2({t^D0aKFRhWf4h~N}_zy^?s$3C?j%)@Q;~p50p)!oPy+RyEl2s`Fgif
z5|xvvXJV@)Q6q_(3RX?JKCPN~bs>XHRV#_wM&C2+IttbmdgE0;i3SQb6rL$$T2{Dm
z5@#ndFo{7)G)bZ<y>}ArlQ>5@EsbU~k#mL3g)M|$9a<&PTER9#=G@lAb`a^FM2{po
zig!w)a}r&W=&E2hwTnr-tVqt2+^c!dB+gHwZxX#E>@Dmg<e1K<^B2ER$h7^E=x;bP
z93XyC5*H`kyMF4kx7q4Tk{F!CbxBN2VhDAT7-v!q6}d8rVM$z?#AQZ4T;%d(i6_58
zLAu!yNsJWt&Hx#e#8pX*HmR;omVA*oCW)~U(%8JFv9{xrm>}UbM*mvV8<UclEa7cQ
zTrYBS64Tj=B&H~MV-izEZW1y#TJkh;FaKM_X9)RkTvWI<iJ1z{GNsU5J>}bzxI<BQ
zCNVpSyTtkZKwYh}xcZu##63wIPT}Je?oHypB#tF<Jc;{RD=xp2cq)kplxkiQ4<<1`
zi3LeKn#5uWA4+1O$iqTb=8<H{x`=#HvSbg@62(52#N#4MY1?L>$P<z*Phy$Lfi-{f
zKYV2pPbaZ8iET-&O5&L$;z=Zucs7aWl6W<V*OGW%`Y)SQFNnM-d`Tn4&sR7NS10j`
zglmi@ZONB}KM7lsfG{i!8l8}cXT}lnsOe|6F(wI(Hkm{!iPw`@pF}!|OcKQ;)+#nD
zbc8u!{y)7`kc5}8bt2x^Q_PupZb;${2{+UK8xwsiiA@r|DfBeG>TNNSw?*C&_AF(+
zo5c1c4kmF(k{wCxOX9sGb|$eaiQN)<IWV_9N$i!x^Re%X^VWk=`^8B<NaBFFH;x~Q
zf0D$fA|KJBlK5Dhqv_@RSrVTo@sosKB=Kbu-zD+Af?p-wJJxT+zoz4Y#aEmx<y$qG
z#!UW$<Rtw4C{6ay&q@4}#1RE4|1F7M4QD1t4X45Xp2QzX%t+zZ6#h)&FZ!Pp`lfJ#
zZlCTkg>zCknZ!RyR8OHs3jZc?Dv7cwluN-%xjvu2(ka03QmK;NUX+)SkS#qUh4SK6
zgcVY#Wb`Yh+&eP5smhXYQZr#y6I(4+va+q2Lah|elDu{bbwnBp>!wgYg$60qOO-e)
zZ;rEjJ)1ex<krY2G&Yj6MVh2azH@Gt!nrAQNTFj2&5cg$6k3S46t*&Q4sn|l+M2ZO
zjJ&-mrBe!>Q|Kvq7ZZD)NY@m)iJZO~c2}@Rs^r7JUPiySNS{>6-nt7?=$FFfDGX1c
ze+m~WcCc_j3KyGH7m2tABQi+HTgXdPTUy8vN+cYb!Y~mE+4D?tse+dY*@su8Fd~I(
zQ@AdLkttj$`PHV4qZDMqt5O(kxYwvLDU3~FTngh;n4qX@OzT(*lkmrpnwY{Q#onC4
zWRWQ;+$eIr@CK8L`ZuL8O+xaiM$SyUxiCG2TTJYdcGk=kW~Jau!JooyDcqjI<0(9m
z!W}8xnZhDz&Q9Sjkq1+_JB2yo_opy7g?s4vO>W*)_0}8rN$7Rg11ZciI&AfP@dYV7
zl)}T}kEF2hKlSuleL(l)kEXCVg(WF0mF8nY&!2cbvn++>5<Vw<GKHr_czIeO@|198
zs^lxjRSGigGbuc4IBWiV3NNJaVhS%w_^R+_;VUVu{*UGwajqLVK(C2=Qz?)_FojJi
zyeVNQg=7k;6v8P)Qiz%y;wjjg&M{*i{vKAs#CledPNA5>+7vP=WEGVYIw|Buyb=p0
z6|Ye14BwE#>*DK$90Fb)-VontblBdvQrMirjuduExJ9^C_;w2K7)`IBZ7IAf$#x-=
z)0TFnuv@_oQrIK%o{)XJS7cwxUFT5qeFgUmy$lbSwjY%6knls{M?x;5K1tzI`p-0w
z#%C$_Ve&CWeV)P>DSRn@MEF$-UyFPr{9gEN3g3yaJ~Rf`S`_?I_)`i$o7i7WWqy@}
zF6*}xj;7q_>NRS)`!9~C@Ouh>DE34Oe~bK?!e1r_-b9}?{9js{;ogimC2vp1QYwwo
zY228`O=*-#qih=e(&(Q?xirp5qh%Vc(kP!sg*0lUQ8SH->5^+ll{6|DUO8Rjz^h79
z&B&`WxjaU#G-{{O*vRXoQ9q3aY4;jYH;sCHGE>IlxVRls%4(QKBcpky$$?R4Nk|Jn
zTcnAwX&UFGOYS<GrEzW=%_VOkWGd>Po|~=H=$J+)J_Smnt*LW6R-=p6-spE=#k4l)
zEXjFkbWfv;iS3$3H^V)%>5)e7H2S2$YgSK1^%64ne38CJpN+lXKb&>DFpW#n7@Woc
zBflt(iwz$rGRXA65C+p2lg8LIhNdx0v7^$s)aZ{$<FYg^S8#Y5SBQA`jHlONBPG02
z=+*zKG)9}QxY`ibZCo1T)0mKUS2C>mHECR{R5u8(6He3!QhAbslZDp{DO_60nj+5R
z3{FjB8ha^?m1*3Z#`HAqP2)Z(+#<X)jTvd&Dn2uf+tRo_jadpZx#xwL)g6*Ba|&mt
zahHO33+D>w2)R7IM}%rzFWsNU0}4Ko#=JBhOk+VB4@tt|o^MQu=K8RNkEXF$<dHNM
zrm;wTS(TEN$r1(GtB;8+HT}S{9#5CtBakmkW4RQb6jHK6ggyUs8mrRqrQuKGnKYi2
zd`%k9rSW_kFQ)O5Brj-0sPA2QUpD!8W4D^4&--yRYOk8u*U}~HB9<7CFrG#*jZhk4
z1*5`<(6bO*ocb|OSlUX6B!wwqT1Xw1o=YQ7Bh2E`ESxk7?9~h&%%GUY+O&IJo1MYB
zG+t*-GH8;)`ZPAA@pBr#r13@?8`JnCjZf3ql*XHByr0JYG~P;Mvx?Y}#ukySX>3d5
zZBy<$BD4Xo`R^*Y-NaJ3GmTve?oQ)9kv&58(%v-osk_*d40<_yVA38+<AC7@&1im@
z#zzu*27FjE@#FtUK1<`9G`>ya^EAFl<4cnRGylr)uSLA!`%e6)G`=^nKZyKj<~aM7
ze)~uoztZ1kP&0$y(m0ytOLriHV^aP@cwG3q(7TlUnZ{pfoJiyEH2#(Rq>y?3Bf?sF
z3!zg+&g)32jO))UWKc1K(ixOduxtirh%l;L=KuE{l+XPCy>O)rs$@_#gUZtM`m>rz
zMFXIudZy&MP%DGlifWia9ivlUq^_`@$+>}v<*YnYypfTdCDJ%kV%tqKI46V4GPqpw
zW*KzKpmPT2X3#u?7A94j3|fk}61MiZu1ak)XlH8JK7$UKl6w}mx}(%MYF#qunnC{z
zF3g}?2IooMH-qjXy@b^7A=1;dqPLOv$>4l(E;-z%K;r#`%-r*713cvnF3RBI3<hQ}
zNRq)BT;fF;b7hhtlF&`jCWnd-Gdh=MO71m=XK+OZQ!|*B!H5h-N?~#aS7tCOgRvQm
z%it=LYD@;BmGEjwJX2?jSj2cqCS-7p2#x1jk%>a;T$h2jB%Wj>Uh?ZRxFLfn8Qhq`
zO^Tx2i(->WZq8tO2Dh73w}{*-oFQaOXPVeqBDa~oWx01`aHoWx)o~eiR|a=WGDkQ!
zgL^W#SNy&V?iZoEen5mdc$INIe+CQK&so<{AIjk23_i)=(+nQTU||MM289e3W$<VQ
zw$d&ZK9j+-87#?QX$FsF@OTDKWw26FPh_wxgXPAqSk{x0uP_o$4GN#;aO+OW3$DtP
zyeE1tgXc2{W)RBYg$!QIU`+<EDu<VZt2206<a8@uQPA5&^I8T01$`O#Md;qW#(Kz9
z;Y`V$ek9|rV525C_CQQLo<SmmWCke(^TIT1Xf!h-UWPd{ADJ_AC}yxWgDn}nEuD24
zyiVtD#%@CfZ)EVMqBd%}c_YZQn<Vs>i*IGHSwSz)cQV+T!QKq^Ww1^1ohJ5Ok?q1A
zrY5@-+--FBu*bBve9uS@h`gV{ek1w7%>9EI98x|XD(bNCBO&eoW24Vr{VapeGia2>
zSy_CM!Iv3WSs;tAGWeRlI)mdGe3QYq8T_2VFG~2G@JHeIv<H(Ld-A9M@FRvF&EQwV
ze>3*ub^Gs<pUB{Ekw1igX7HDY=jYjbClx%E!9Sk7jP<V>3-3u+sVquoQ8|k$S(M4T
z*MjoGvO)&SiJT$yE;JRyD`rv2=y0}H&7zuu4YH^%QY(wvS=2B(HATGPt|MMgST|d8
zO{s4*sngK#GeszAoW<E$bj_k$7EQ8fnnedios&f~kru*pv#t;KmNd;x+Lj`%vS^(}
zn=IO9(O!~vLhrtVO<-ebe%|Bpj*99e?3_gxW$RV`yeztBF+fp0guSxpokdS^&(fGx
z9|bSS;(QTG`pU_W@YgSk{#jh8C>H9C*F{G2;w%P=4>A&FJJ|3cB!&;=0*q^$pmkXm
zmuK-w4xi>QJc}z>=N!7`Fd~bQT%l!A$l}T@MrHAM7EfexRTiVOxFd@@v$#5oF<IP@
z#gr_@D(7p2tk}3L#*0r7dbW3M7S|~_Q8-yRi34Pw4qb0rdSezhWie9<Q-wEYF+GcE
z;_L_Bn%yFPtC7se!ZS0*dKu2j;x-d|y9ftjHr2A2pTz=6?#^Ov7WZT^$7r&u_liGY
zB=?EjFZBG(yeu9xv9y_o#201pXciBPKVo7RW?gsf8NlK!mKeDwS(?RTM#4HT%VK#J
zfh>YqJekFcEY>LYDIqKNLKZ8tcsh$!Ce^c9JR|N|<8xU&FOxgn2`?)4CE?4$)j}$~
z!nE>luS)Wok^4maLe?rIlFA}263!x$MKlXr!B`e?5mqlDk`yw3O1y!{7>U>FY!*35
z@<z^T6th^H#gQz2&0<{^uV=A8ix09`pT&kOwq~&{i#MeIrVM7INxMmePU)>IHj8f&
zz9W3wcnPmQ?`E+*i`|OaA>1Y0DWr~9LsolF7JIYU#|g!cKNagmy)VwDdBFo&e3r%M
zSscvbP!=DWd_K<NBk{w+)A!MzWbvudp)Gxp#g|!po5gqZ|B`#zvL;_=@r}`Bao-#M
z6X%HdkHQ^#^Yyd%FGk0G?32aOENbOYJBMRg9M9sPEdI^ncj=rkntx>RrwryVBcVP2
zEq>A%5=%dog_U!ieB~S<a)z)}4y8rP<WM$;a=DUqJ2gGiy0VN_K8Ff9RFqmJq4&1V
z>+LEzRF$xru!gX@kmXXRrr~vRsGGw%IW)_mo`h%S&?txc;thn<Zz$q*<5@X0HS)$e
zoSj3H|HRTadTQt9&^(8>Ikd~6g%nz=A&hOALn}#6`{y>flGVQF3fe2SLk=Bt=p@cM
zbY@xdY2GTgTMp;ta90j@=g>XpI)r{X^v|J(cuygPy+nEo`v}j^p|8jVLeG<2n8Sb^
zCgw1S!W=GEq1WaxFo!`oTtU~J!zDQkmi)3DhLDI46AsO}Pn=juul^*Lno+wv=dSB0
z8O~PgY@d-i_c0D7V{^DNhfz6PrA$T(DQ7dUHhhc-6OPMad=3+g{F+?JI?5Z+>x`Ut
zk&|<{K8M>Sxj{HJhiN%X5x-G*lRBIx&Ca|zhv_-on#0T-ZZVxq*T<Y^NR2~wdJQv6
z$!`;StK~by?-b59$>-!SmkrM$p2Iyk+?&I)9F|Mxz8oIT;Sursb9f+!c{x0o!+c4+
z<}46@i2b8pWuI^cEtGI^4oh-aB>t$W9u=0FA$USP|5y%>=iJx#o;6Z|PmG_;VMPwB
zb9jZy%Haj!${e1~VU_qZIXr8!dQOt(g<d`$z9<Rvd`aYGp;z-YIrwu3a9Z(Sz$AZ7
z=ra}`RFG*SA|YYe#6}ggjSh_}kwY?vw{v($=9<bOpM#S_S~?kFR+tldOC}mjA&1v<
zSf4{ta+bJOWSuFCk_|b$CE*)6Y!um)!<!;r&wDd&vn15tBH|gtR`FdqY!i7`xIKp*
zIqVeooE1~iPIl+8N5Z{1yr08<@qIbGCqf<XQu{#;hjREZhXXkrR1{6rGqaBrJe<SF
zW@d3LxZGk|Hukd|KF{INyz5TC$l=QzI_J?PkFRq0n(jJ}I(dAP!?!sc&*AqRzEf^L
z=kQAo-;29*lRYE;laN_?!+j)&-;Cr}5nAI>BRQu2WMlux;ZM5dJSyh#R}LrWy;UFP
z^S6|(JWl5DkNCgBQ^wM~g828ArSd4PRAq!TDh`2XTFj?h9%o2iUg(Vu<(2ZNmPd67
zD+{X#s|vkG?ltoN|2<eu$!iJO^L6v6mq%L#>*vuRkEVH?qu^mZes7q^nRztI<17i!
z7B&{LbkB`9$(Q)>W_g^OM;pa97q&8*E%In-xL5hs`I2v4PUq7ukM`2(And4YJLTP_
zwbx5s^XSG@d0d;vd3kit<FY(1&!Y!FP0yo$9v3QMuRMC^(I;PWM?*h<ejXR((ND2`
zg|seqj%Q#r0M=nZ9)t3@B#(=vaIui`fg+yHVDX`O3=v_@|I53pK5yy`lkid@D?B`p
zEAkklAoCfK$0+fUMslTy*Be)fkIv(25q_P^BxA+L3C9a5oRBa1%H=vqrsZ*S9uxDJ
zl*i;eu9xs8At&+;Ce@TYZWQ+#GS$dg`gHL-^0+gPTk@Ep;H|=0dCU~??C>^m*5P&$
z_TKC~?#g3+9t-lgTf%$txK~3qN5Q#5&Kjm-CimrWza$UjF)xn?^CeeyZ+xl4`aC3s
zM}(9-EW)&``9kqU#@-eioh2emg^%U&xX2SGcA3a>;giA@rd)oOyfTlc^?mXxAtld<
zJS%)I@9sz7_Ldj(cqxx?9+5m=&bv-Nn8)G6)?}UnEzMW*SR?YP@HL@N=obd^?rsbI
zSVV~3#bYseW<H<%<T0lnvU%k4?t;N4=G~pzREy`4P}-z0B}@w$o5_QliMYF#cF5d#
z@<u)nN82<C!lH1kkPDA>dAu&Z-bglxyphL7kxfSarpQ})Y&H`62kV_YwrXV0bllIm
zx6xfV?#9e_^Vpupjy!he@im=o9=r0`oyV7S!g=gr2OhQd<?&t~dsTCOw7*9C?6`55
z<NJOd`}6o9j{|w|BXj;f%j2NoheSTi<0B(EEb_7N6XB<v?Bgva{M_h#AyWQMYvvgD
z901lf9JId8<GVa+IjHU6`#gTg^AEhNnht96i!vIg>h@C}Kj-mF9!KbJ9e1_%YaYL;
z6aLBLsOgQ9c^nfzZX~~p{6SA^B!7vV5dNKa|4)#)c}ViF<fnKfjY@&Al#sEdManoR
zD^kwLx&5TPcm-iaVI?8As8n`P#c}tlR27m`6RGZ?hLIesW6jVu8E#Q|qMhX*W7Tn7
z2V2*1Kg_G=puU4i^a;9lH+0aji+gsByEC+^#qAr79h~jpxP#vvG;z?>!7UDEI5@{a
zGY1zs7~tSs2hAPybI{+xO}i{^-)rHZrGr+EJC(TUk7nQ6K^q5c9kg@YjX9kiw0F?K
zK}QFjn5vxXE*kKz4HmZ;)V$x_4NbK!4!Sz-)ad58+eR40SLf$B=uSIiql7($y@V9@
zcF;%sd|_YV1tvCGbazc|FXdWD#c|eOqfsVgUF6_m2i!?9(7|vAS2!5tVDMPC`IpG@
z2MdP?|0f(O945R}c$x5W2i#x7%=fpkMyUB$I~b|lu5{cTucI9I&$zF0+||oy$KAEZ
z17W6dlb3_B4#qhc?_ipPn;rM$jR}ss(R;FkYn1u54z6=Bk>lmKJGfar7IbMv*WlTx
z>s8zh4yHJ`kzMLwswD1?s&>}5J6#?A$hozXyHoj_E`=WLty>+;blg)ixaoD4gWDX;
zb#RY^+a28D;4TMuJGj%q?5);p2X;GaB41spbZ&Z@Lz5U|?HpxsqbsL5-Q&Fu?sM>o
zgHIjY@8AIk4?38yac7<9(d2aK1S`M5!9xyScd*{U!ww#C5M}=AoP`dSI9MvaNcgCO
z#UkuF@A~_ggB1>*a`3o=Cmbwuu-w6uMu%G+xp$K1obYcKyc@}t4%V31ryZ;kf5u3j
zb?}_{^THQ|FFJV1!OIR-J9x!tax2rxHr9p>mc>Viy3)Ps;58HL6Y)C;7)j7UNIYyL
z5l$;z@nag<f-vqN!3kB~O41q~>}+MF9Hdz;J->sjrtMRw+^wLWbITi#w^CFhVmWLV
z&lu5&6qVIl2kS(*1&RH<!ND62K6JpV&qfEENF3~-jqyX8*4CR2-g2<n!4?PG9K0*D
zeA~f04z`LnY41+PemoVN&l9wVcY95XW^j;)KRDRs;5`TL)AAkn?`&@6u?Y_LIM~a<
zrMH)f@|r~}y^Hh0!3PcwIqqMLFnECZJLvJY)vCSKyS>G1Ik;>u+s>+fqzWIVm5Q)9
z3O{r3IV)D(`ic$Fkv?qT7o0Wx7hoY9ML+O0=Z;M7Tj6&?w&HsSKN$X_gP+8IHj-Z)
z95MV?k>4B~HIidAX<a-1aPTL`w}4>5-9*oQe1ADO;oxrvCmmc}a5vrm<KSNhtqW*V
zz$u3}X=ql!xdotrQUx?B;H&~l7u<tWY7|hj;5vjd1$UWIwt#XXX9y`NFH)g^ic+go
zK;;6e6i~H*YDR}H)H|`Ex+KqTalg%G&(tblgb00p?E>mBwt#vC)Gy%7f_ouoPylzA
zH!Qf<zP{Q`#)O<TyeKfXalt*@z}rJzi>tK)nyAT5h35#r*9N!d1+*xjWdW@U?rMSU
z`n{dCqN6*eZF{)qCvY2D+XC7ZFuZ^(3TR(IhXO7rpkDzU3+Pn9c?EPYpmPCT3g}uu
zw}QLW*_yUy^l)7kb67XRbz<D{*Mqe!pjQFC3+`?>E~5D3uK!IuU!t9BX?+UrrRRLr
zq;J8s!;fM0FW|xghOiF{7*N1P1zcRfKsAsR=FT`C{4$7z$~O{SKU2V9mQ~T>0RqIK
z1q>_TvH~t=*A?8&m97_U=bl}_3b?)9&g$0NopB=y7)hOW)~JGeX3LcYP?JsI@iH{;
zs|pxha6LRL$&+VzT*jCJ#uhM+Y6Uz~z_SHRDBzj`ZY$vS0<JCKx&m%0U}^yqnPCA_
z3b;{i<mnbHbaDaLvmshd-B7@^qQwKsSPkyXqQbtN*0cg{E?{N>vkI8bf=XGp6x@r*
z7pCSjl-sQmGGVN$^;>(ldOV)ujsos1U@p75fY}AyRlwZ^%qf7w!IRC{I_mS+w6RMV
zytjb+3V6DJRjl)9_hgJy%dPu077r9Kui!3v9~90nU;#&`fQJiMCJCb+DPW2CLg6Ce
zqr$~P>NpjxrG`Hy^0@E`A!DhtT>MGl3gJ@)tQ2AF)Jg8xv2(a<n7#B|0nZokN&#zB
z&ld`Kv4EG1ZSX9bmkU_U7L9bTeOw^LKXV)VY5}hm;48q-J|APX?CqL5GiN7otoi#P
z<gQpk1@}UKs(^3-kplnh)g7{E0X8dBK)is@3i!N$L;=YHb{4R!fK&nL0<s0<3izR#
zHK?bRDWG;oi;G@P!+Zfw0q+#Bm9^C@=KAd|)x221T9I`!FizpurLbPOp@26;DBmcu
zN%*Fa2D!O_E$j#G{1Vb(ZrtrQVVm-NS6HK9?Hgn9AHBC1u!EJSyNFvg>tlBTdkXll
zfRE@0%2|6kO}e|c<ogQl2{7*|LuU29$bR7m!UMvC!b9|Fce^F>9_O%ZjLW}|RW9rN
zNdcdFRXufTFs~^Ed`V|pz>xyJD&TAORRKTJhrpU!*7}AHmS>Xl`+p_*PWZi$9*?>G
zRKU;ly%pX4xifSc30E(_7VujE{}k|V0Y?is#_0yD(JXgZ+4Jn@;|2V#s<M)Q6!53v
ze~FwZ;BS$WM*hn<D@q?&(c&l8&9_=s5h$Wm5v7ZmRK(;W$`nzyi1Ui*UPQSf&M4yC
zBAORbzK9A%)GDHO5fzK5R7CY6Y7||!GjXK5N4s(nRf_IL_^L%zE215bgwpchn_8}c
z(J`JJYt<~ee-+2&L7gJ%7E!N=`bEApx2VkP#ZrE|wZ{Dfv_TPxk#4s)EaJ?f>%bcc
zNzN*wvH00W(xix{hMyzStO)P4pB6>5ETTgZ9gApHMC&5j6w$T_ZdK;Fc~yf}8J&y5
zK5th<`=Wb#B#)0+q8fH8qH_^li|AH#FN-|nWMfaOOVPb?X1h9fbjS3IpnI-kk0N>&
zF{p@3is)5D?;`paabXdCia5WB3ySDhbe}cN=xNp3ZuKp?m%01-zz5d972Jnx+$lex
zh>ME2xQKzQ-cJ_ogqJ^_r@_Njj`>`E#z<>$5krc&tcc5t_+Jr2ix|eNis)3dn)bA+
zwX+)XB*3<A@6nOIR?`|@#1%zcSH#4kd$tVUe2plAhZT(cKd!z5`iZJ}`#yAj^p0Ir
zklsX^3L;8Tl-|1(DWZTPh$1LmrHQ>)KoqHhW|K`e$@UE(7DP}1QEUjJB4Xit?!<WB
z|94K#b7p5}Z<#wYw{7l90s6(zKZXHp1<ncu2MP`nBy+G3Lj;Ek<~#A>tV=;=WP#5C
zFgq7o=8qNC*ciseFrE!fi{dFjjaA!n>Xrj4NUCl9)r1%(#@HiZat!yzFgu3ZW0(@d
z9X$3ShV>;CkDcN1M{SE~6P+5<D|>XGX;NnDZMqP5#c;O}GX(DuoGCa<@DQgqQ1``f
ze+=_tcu@2|C#Lt5d1Nci?|~TR(n>k;9IV@smiCk!Ovga6Af^xc7#Y{NFos1jERJDG
z45=8b7?#HHa16;94%1Fzcr*rn5u1xD%V=iw*?xGFFMrZtVpti&su<p-6>+K<!|E7b
ziQ&~49*^lmGkE-kakF|Nh9_fqikui0^j6Qs@JDx5fxU1H&r(rw^?NTB^8F2{=VN#w
z2421x!%H-8rYws&p9x+l3BDFXOZJs?L!SQ`!y7TI5&BIkHiorAuM=cZJ8&Z)hPPwb
zAa&s*Oq}O(kgygh3T%|rHpQ?xhAlBLqpdM)qj~pM>$v*Fb*f&f?n-?W$#$vZ4#D>X
z-xp-XV?r2$alwS3DM<bA?ykP!Yd<k$VmKMYFEQ-yq05ksfqW8n3{DJg3|<U=498;l
zDF)^qFm5m|aikPO6hkhCoiThG!#=sYD~3I^cA<C2@PTB<r&y$qV)!_QPh!|BM4p*P
zisdCgi(!8Z2V*!C!vVTa3}3|Xr6j^<DMQQ?Oz^*_4#)77$mBT`_?oqlG90BPi{`(L
z;ky{VkKqSN=Re6j!TPeT**zU+9N>tNf4J_gPQ>uDJlo=CZA-t#a9?kAvX{Erz;7{}
zqE*CjnqkVol?MJ`aAT}9v?MF_Cj+&C@&^8rV*DM$KQWw*@z@2FG*HR_3=}g^+&~FK
z8&5D>>(*ZUFXoBT2Fe&HYoMqgLp~*me1yNeSOo*;893iSMFW)#R5nn>KurU+3{*8x
z%|LYnH4Oa}v*6?ZJ)5U%8#qVqo-0UZ{+G{%k6d8r2QM*jp@EAGTx_6@p=JInK)&Rc
z8lYufW}vQtmwEn=0sbx*ngaZhN#k!|prL_A1{xcno~ik<!_mahzSGpuUd&%J1I>kQ
zA=pyzio)H?r8$^;YXfZz&`;Zne%cvm*IUN~-fAxiUL}Z|)ink>80cu=TH*ALqmzN_
z3`{m~yMfLIt~YRlfi7}4CT=)%7`hthW?-Cw@rE9{be9U=Y~V%_V`p)bp}WW)hIScF
zJZ}+xPXoOSjN-}91_l}!WT1~+lG9g+euDi42N=3n;;q33h8P%a=y4Q(LxmV&V3-iY
z3w)je#JeNqa+F}{(&|<r#uQ}63c)Y7-)3Nffr$nt8CX?H(WGa0*LtQs6Io5-6a#k{
zxZA)C19wXK$z%YWTA-&1G2PH%_O5)R@Xdb%GY$M>;H-gJ2JSWRmVvho%r<bJfrSPZ
z8MxoT90Ly;c!;%-RnP~7m}}@cCV%s!oLt+SFZ=}tHWw*MvVwVBY+#9jXAC@RV5xzJ
zSqlS?iSQ$m$Z`XZ3b9PocyTq|Wv>v<O5yYu4pUn#%qI;zE}1?dcR2u{{8Mu4Y2hr8
zaz1C^c>}K*cwO>(K?Ghl@S+eei6n=PeD)Pd?bZL`Ft0a6Y@LBMLadd$9LZ4rP2sE;
zPQGj#47_9DQv>@9Y&5WmK4`$9DhzBfU>Jx?8MexUI}B`-9N#stoyK2Nr<pIwdm`|@
zff!ShvgMKGNyshBfGI@MK<fX>q$SOafh@gSbdrD8HQ*W8ZQuhbgD;Qg==(y11|mAU
z)GIH)Q~0|C|I2-kTz+ieL&@bMxy<MCiO_om*KO8y`OLt613wx#X5fH<&kY<g@U`Ur
zg@_$8@TCw31$ovVpE@ile<hs%^8H3GzcX-Dh;IcsW~2P~LjNF`KRNR!1IG=VGVr_P
zbwY0aV&G><`J`OtQ~p)x-vslupoUM&Q-87-5dIm#-eOCCNeX`pXPKPRsp3E!t>b7D
zN3l4H$5B0w8gZ0}qhuUq;wT$OsW?i<F|w3;y^cQHhpxA-l=cf2J}jn+;wTr_fug)%
z)i^51sHvjhyR}rMI4TQWMetAlX^Ybqq4`n-2TnEPs3p%fjiYuP=frVY9Cd|ruHXeC
zd|n*q3&F?Na1|)7g8;t?dlA0^97mlvE-Bo-G_J>E6k}eLsTarPaWsshQ5^LPG7aJ=
znhwfv)Jo*9aU4zL?pmhFg}XlbZnHR=$8}U}5l1U2OiRi43PBcwgJfoLWgHyzl3<`~
z8^={~TpdTdINHZ?V<)Yv8kIF(6Gw+QZi=Hv93A7hHjW$O=pxB>66`DmxGv7`D(Ny@
zFPG&zXu7Kikmw#qH{svDMe}bIniCV!H^*_jh8kW*)6DJ`xz#g{UP7?6oU^b$>Jvxb
zIQqrWKd$@DA#n_iV}Q^D;}{gzy)%D<3k2z_daGe^43A?3+m{DxORbmoQXHwKy6fyl
zNfx68ZxtLPI970+;P^Oh6N2&+gqRq|Bq1ip!QO;FvzEFejyvO6VqvL;sc}q;<2e)0
zoB9h2)8p8az=sLk#dhJ#|8dNS>+fQ}&F{aH5PFu}TAI)T_X<5bj{D-cKaM$ZJit~?
z=;`O&IOfG+#*vKU!8jhG**8}k;+P-Dg1G*6_RDcBjAKz8%i>rb$6^+q@A=S{YN{nd
zFBN=P@DV{iHL#T8SKawNZW1fv;ODcM?8-P+#qn4itK)b<Bp;_H8SUeEI*uoV=H-)d
z@T1-=Hu0G_o)<~-pOsoX7Y9E|&Px`6C3#Wqz9cwzxaPbP$E$I?CYkbbZ5*%5UD9vF
zv8F(?VCy8uH-)oa@GZf&rQ+1{*aqqy;cOJ#6vyT`w#2bDjvd0;CX(9)-xbxdn#_oa
zQwi_I@jmM!l5vqC(};t2DV7lazrt}?ar_a-nK;sMWa2m+$5(M=X?twzI6joeoj4+f
zpsvc5OHWep;|Sz3lmalpd>NkM=c?n_DKfhRcME<Xct=;Yhv$xR3J}Ku;d~s&CvohR
zr1lAicR!WVlK4zG`vqBk=E7})&*S()IA01L6eRzU6p}JW;`lm_@8kG^s%W72`z8*4
z$D9csm5jcP<2!kZ947mtWcRCZj?w;k1T=j)juXORf<H?gDSWcP`9(}IU!LFMI3@hw
z1y2`bXexgST`7Ue3H&9w{2j+X!aOS_DVcyu00|UJXtR$MLp{+?adDFp3G5oCHC8Ht
z(g~DFplkva61pjwbx{K4<taW`P6+b**3{MHucD;DMyZlO)dXrMa83f%5~$9?h>hiq
znOGx%nj%botpvWmMkju50_P=AFM-PwI6tBN<zm4LMDjwxiv&lAN7NDek_0YI;4+cS
zr(c&T)YM+d%ld`VvYaeog9I8T&`6k#6WUvuFZsONG=XM}AqlidU}6H35@?yg6$xCE
zK!*fcNnR9gmjF|~GJ)2@X_ElWudUFm1*^lP+RNot30y72s;)YhjtN|wz#x$?(@=Fv
zphp5XCvaT?oki^W1iB>9HGv!Cl7;`Uo9ZU?je^XmyEFtfe3NiU<TZbbT=o&{nLsZg
zdJE>GN8becCD30u0|f`<X=zp#n<^cgz>oxnCNM04F$ryx!$nan$;dn*NTpE&qY@Y`
zDcmZWZ_deGO*K|H;}RH8LWCy>=VjTFW00X9CJX1j1ny7Z_5`LRaEGKoz0HtYcP21Z
zh-re;8T>_n6=6y4md0f|_sHFug0lqg6|vbuQy^dQISD)<O-9a;bJSc>;JgGL6tRaA
zSdhTN1m-7ncR(2ygAWo(FG^r>A+;q^oi4T2!wEc+z@rI##{f=qRccuR%M)0U&>hpt
z1Xd-mp`qS_+`uKE1RhV|-5xr%)d}1vo<ci$f)>j&(%B;<@H9;#foGWl7e*3zn;(Bk
z;DrQUOyGG*e{Bn$+Di$%EPWhve1$b)vI%TY;I#xwa^**`+pCK78wsqD%e8{<2(A-+
zQ*gcDTY_)1v_kN~AIs{;Hzu&Dz}cL@7NNHaZY%I9xg&x15^#m{egfp=bB_tfNFbg-
zq9C76z%0;7AyNrg1x`NSj9g{~?F5|vd)JdoUoc1@6e1GL39{rn8M_KJ)1=ZqNPuTq
zllUlsj~OUTTxQ~v1onz1OPKgnh(m(=qy;}qV1EJ(fFnxjuK7R$$Lp!j6Zk?r;!CkH
zZZRKZ`P*wB;qPz)UnOuPfv*$zCV{hJGe;BnHi2If_?4!Tz@cX97z@K#CwG6K#>9kZ
z49tZI9#7yz0w<*;G_93N7yD-hCH$L<(?FfqRW0X7aB8aG5;&E>?+Kh{^KsnEP%km|
zj|9$0IhWVgkN-_Iiqp~XXo3HT%%+;!@RX^?9x%1h7Bew?xGHX9Jngm&N}4ETqO^%J
zrXEvOH}yt&Sre1Hsn2VwB2$lx%9&UpF}A#k3MML=sAQtDiLo5&bL3W2Rgv-AxAk;@
zs%nDcVG>MjNF~%TwUO5}QA^UVZQ^_r7nnNWpJU=&N&h@~oE$dag;L0iOzdx<^7Xpd
zL>&{PFJTMHCO(~lm8xr^o{5PjCYgAvo4TCon`mL8zEq)sWY<uT%4x&`a~2@j#6(jQ
z%_P%5x+n%i>c6FlD@@#EqK7=vO0biOD^0YPBDFDb4XeiPj9q|<b|%`J7*$GLW#VcP
zF56Y9J5+v*M?H5i(NSv0czCS|BGq-Ba5|f~UUI*|L>CiXrBu($D;C{MZH?VcZOLqi
z8%4=1e^cP|25N-Z$;~EiksN!P=*4tus@^90n;2lCkBPpbIzGaN>nGVAD1m_@HcXxx
zBw4V52AddSVyLM@O5Q7p!`U=ao{>za1e*2Iad?z8;%LEJ1;+@E6&xoxUhp=-34-%$
z>K8C3n|Rp7BPMPaHBK>chupnWlzE?tsV1gL!KPC{WN0~eiGJ=jF@xoiKzfg8n}wMr
z#&fTU*-|Oilp|;A_I?v{<f#WtJS4Z6&Ri4oOgt$3R$bIzHz+p5e3}!FgEq0y)KPko
z37YN_6N^RcyY=eN8fvL1fm*t+rg~Ibfmu9jVwup(3!D`uR+?C4>cQ1xCY}_6^lB52
z3;jfaL#KF3=%)pr5o8xbVWwQNn|i^-izdn^Q6Y(!XfP&@vS21&G4ZO2ZM1D!!+g!e
z7P_I(uM6>p;2OcTCe{h@rXa=E(>n_E+a@*${f^*9!A*jj1u0*zf!Zqch<<vp@m&+!
z`PA)dhl%%ue>LODV|brVB*%KkOc*BOCaQ1<!OdS2rimnLXTlMA%hU@9SrfL2w22o=
zsf=*Qe6FINIFmyhIYPN6JQKc&z{Cf%QWK$x$iz+)yG-Qdsr)RGD*)6R>D{KDTJmvD
zemU{{(8Nb34x9MO#K+WFTRr9Ej{={V*vkN7VxI|0?ic(_ke5vDfQipdd?B2J1^$<;
zPA#3+A>rtB#^{+We@BG#wTW+p$R|bouAs@|Chjuuy(sDjk@?ZYF}eGbAh%<v@Drxq
z==s^iNmC!9{)^oD+r+OXelu~(#P76xE{X6!MH9rK!|*3PmmdNX$uojuhijAg%hbC|
zbs79koHcn2ACN>zS`@>+U<pB97EkK!p4PG%!I^$3;g>GlEh9u(!6LzONxd`02Wf;A
zlUR_%!XzpsQ8@`dUL}b-Nn9e5Rg>B<swGi9sjIW8A8I5~Gl^Pqw{{W(daITU{z;sh
z#Cb`aFMMvkQwdzUzd$Z2aA6V`CI8()xHzd_;UM$Uq_#=^h9+@YQg0S;4Zm&@^^&+;
z9;~0#DjJwXgCrUz(I|<=NnDpi=Omg??CjZANnFVi3eC%ALNpg_!R&;%qHuS2MYK--
zyH0*}5^V}}+a%fv-M+xNN{9!bt`VX`f!{HSYlZG4n77sIh3=ljjY-^4knAEv*Ce_L
z!K7$xHx=&oPNGMFzB!3o3Up5)dL^+<oQRL~5l&yheuDi42MAJZP*U%Guqg+N#)c$8
zw`G$JBay_2Bt}XLP7(_lmBi>IZWXPvHOEMcOh|(3LTrw)ayd?Lyx?tu>PAKToG9sY
z(`0fIw<j?ri93>*nZ&Fl?o48864R5oi>=HRzwT;Uf#BucNz9PTdy=5Flfzw0VqWsz
zBxWZuH;H*k+?T}tB01-O9%pKd4-X_k;%Ry6!6Y6^Vtzq}caL>f+iK~%i;`HJL|;os
z*Ck24A-h_{mL~CV5|2oA9!+9d65O_9m8pc~V%RIh{J3;R&dMZKCGl7i-0z@fXv|dU
z<4HV`#FI%pmDDSi&xq+hoz%X}N2q_Q=-DKmOXB$?UZ5qU&?SWz8T^x|pF)EaUQXf_
z+IdP_;Hyczmc-9VoJ`{NB;H6OOd?_(lUSR?dr7>{@~~x-*p$TPB-SVO-p2;Px1>gI
z3tnDVYx13>4x1Z=Gpm#4Y!UN#S8%KFw+S-b@$Pn^cL=UpsaqtLgpouhiEI*ac`7BC
z5E)Z2Dag0lC~pa!7TnNYr)i74C+G;@6^!@NcYUD)!A(+zToOBz_%exuN$g5ucM^M(
z_%w+RB!!P?ll+6c$bTrvu7T-%Ec7RW`MU2D`2&KV34g!PLnrHeKNrpyg4fI1?4cwM
zC-Gep-zV{vNPZ)DL}b1eJaN8$_NdU`3g&bFK_q_?{89MF1Xs?`WjikP3BkOseo5k2
zhD2%c-;y|$M41%Irto_br;|`AAca4qP5+{8@YAdE?4N>pt^O_aKZ0ik_lW+BNtz`E
zi>Gw%C4`<eQ<uDya7qj2OH!0VxfH6UP(6k6B3VhWg2+@9%xkQ&&{gDaRiQgdjx~f+
zTd=0^YYFDlKS$_u1<w;?gl9=ENZ~?WrogcQcO}Mm$HkID9l=XP@>0PCB2U+-E4S(i
zUY>&2?ca#qFomWmG!uR!!Nw^x5rQf6!R9HnNTFj2*9x;`3fBn1TUVseN@zOKl_|7N
z{kvb>Mu@g4v@3Ahr*Kt)zB;9yj?tCafhAd_bLk}MbS|WPoe=o~T%XcAFO=z;LbntS
z@>UAnQ@AmOK*VlJp+^eOr|?1wH>Yq*3Nuo;CxxCV^h)8@6vm{`JB2<e3`t>V3Vr3N
zfhlbp{X|Rs1qTT7tr%)}kkEq#^PV*<UnIfd!XF`+x2RD<j~2Z6W^FlRQy7=Rloakr
zVZ1ywQSdgAneac)P7->u;O&BKqzre8{B*&o!k;FXx2U^>zFRP#<IEIhrLZ)Ghf}yW
zh1n@Qn8HIT+$SkKAb7vX&k@X9$Xuc43FbX?zDO<-Tp;{~g83-7Sm-5!c}spIg-26Z
zox<ZOER&~J3N9C!6@vK^t`hn&!F*m%h~(3PPYVAj!F*JCM(Ae+pA+0Cnt3sWmr}^e
zQ!ld}Q`nNi))Zb%;k6Xjr|?z^ugl%Ff^W#PYXtMYyiVvh1@rCuwn%Oi+#vjS1oNJ_
zN$Aaj`MPXN;oTJCDI`+ZE>FFm(*GsdAu{g?=3`4tXhSgHcBaT%f=S`01oJvc3!M?n
zm(3PQN6;1Y<gPE6*9;vblv_~>xfFH^y(@*?DSVL9<8%J@2(eG_LlK~%ew4z;k`C!l
zQrIi>r-JPM$o#Azxj%&i!v9?G3&Ah{NAhqAU(rb|bhmIMg|Fqo8!UX2!coQw3s+h?
z?0lO-F$={le3!!aBJ)EEzohVM3O~x_u@rtv;dlxsQusNAlPUejqT+o0k3m>Q1!d(g
z4;ORHBl3R<o?;h}!f6Ko6wajZC&RM*6M;kh^JQwlH${(fM~tgLDg47M_!Zz3lm%Eg
z&1fb={r2*@5yu`SER?ixv4uJoN?9mvp_UZBj9_KKvKERgl(SIYLPZOeEL_XtS?I+X
zB?s8DOWTv}!i`87$yBjW)j~B3)h*PpP}9=m9KNYCMc#CsCjZHL;OyC@{A!q_e~yK7
zEu3fJd<z#^xX1$kX|js(-_q~SJs~5~#oQ3#cah|Mo=YrTYT*ib_A<f7f^{v_vv9eE
z`W6~kXlP-rEXFbjbKPmPd?&7vrT-r>N0vmISZHdYnT6&Y@>ytUA;Fi^WLash?EbvB
zO27E`4JW6=bc43G(8fYX$*Zk}b{4J{y1n34g8UjdCHa0b@fzWD5ajmp8h-r6LMIE?
z38%B*_19|2>xC{;Thm=E-EnlK9{560P0hJc?%r(S77I5C-9wPK_?JFnPYb;ZoL)lY
z=ed1^&XraDEcCZ9z|yn72Q58)8)$(ql?}2m*uoGCLoLj<a37Vx!M}yE7RFf^F7hLU
zIg*WNVYG!?EsPNkH;ezj-*^kRS(s_*{&9kZi5BjW6ed}iY+;&(=@xFcFvY^1-0-!)
z!oNb3C=i^%@%MKr#b2Jd%fj6jW>|Uvz-m(RKLJ(&7G|+hGKIWXGUajvS1RteFvr3J
zGK^=pJ6CS8;<WsEEJHv2?iQ!U4~al41M{Ui3oI-Y$whKWJuId>Na7D$c!ceq#<giY
zYGIj$gH)`A<rY?0*hl-3b(@t!thcbr!ebUz(~PM}jsYw@Vc|*Enp?LPp0f0^-ph22
z=6XHtX$#L-c$Re(VJ7vWh3752VCluuu9bA+-Mgrl<StWaTwSjl=eGu473OOeUbpau
zB)En)FBvgkE<$p3bREknYr^Dk1@A2;Yhi<hci33m{j{*r!X_zFU}3XVVVmF<3tJ^A
zt|V9KrI(T4wXmIyW#K&wwgtyR<A!=!?|lngHH}FkMO~F);Ya@em)>OQakwd%6if+P
zd78c^L`E=cA-@8~M_kF53vr&M|6Io9UtiK>^+OS+1|kbN3p*|Bvh?~e_sI5G*lpnh
z>Y*~f$)z_gOLS8oTKLGq;V$Z9DI`<)#KK-`IIfyD$3T8`skYw4=i{v4XHxO~f(I;o
zE-GSPUs(83YPW(b9#`YAg|94>O`|BSTjz*{Z>dsQ<^GzzfQ6%$Uems{k4~96erMr(
z3qMGuc=<Q$V&RyDpBRhiFI>jAaDsPhs-NX@Ip>u%)kzD#SYROfl@2TX-z=Pxl(`_x
z+I8)!PP22NF|#46t21(|GH0M%+Z1``^;$#qk5q@boVB3RKw7Wr7fb7}zz=12lhy?&
zAy_hvcRK2ZE|o^<G|HrLRJJ*o1&PBAbX%88qr3=Lkh(WdqhcDB(x}-@uTfV{qe>c8
z)2JqQ8>LZQh<a(vk*&ZQY3&6y1#6{II}JufrhiTv=ce_tJb&k<aef*Xq;a8e>IhyW
zc(EXg{VREiTwa>SWkS>yWC|3xTnbrVut6FP(|Q%1Rcp{yyH8`0Y?9W^#LK2>G!vR0
zM-8xqEz)S2#uaI_N^2LU%#~@Jy+LcBwWQf5jkamDOQU^S`xi5Pr6jIO<LWf7VN%2O
zr&RaWR84!S4r$N~XdcTXola>?5S?5n>2yxxdbzwIja$;_DVpgb*fouALeMz7r*Wgm
zvj8`x(IbtU<*5>P>Rkq|WA{p<cN)Wl*(a@Cn`Iu7*5=VyuwNSe)7l>gq%km!E*vv7
zRD;qOoYouJOS<TdkLg@YlV_;`ng_$waMmS_k@DcEG{#UHX^fUqu_U*$7*kNAp*lWA
z4Q;5#NeRbGcDG4MrnJ!7=5JyelhT+h%-hqrBY#(rcRO+~BaNwPOp{h%?)OO+)6=+1
zh`ZC6Ap})@4|7RlRvPzG^JmY_W)+lPm0d3H%&-Nyvv$7-&k^LV*#l|JP2)a!ooQYg
z52p2o*F#d%`DrYWOc$oHLWo6aEKXyI&@_)_X)G1`;R5Fo_5wn4L!1KqEob7gNxf3|
zs{|htTrEf$YU#-|o=W4#6F7DPPgCto=Qx%f$FpfXm&S)#e3ZrWX}rK1W%YRD#WY@`
zk7RI8Mqj?1*7$oGucYy+(66Pjfj%qr>uJ0p1Y2!Q8f(+Km*H=n5N`^u7kn#?w}mLz
zOv`LcV^bPY8o4w!r?Ev6F$K2@zALzmg_K@+dm1~^cu$xtk0HeSf-%ATm?TayzHcHN
zKA5BlrD4e>pUMi6P9swgAk!AwNyAOUOT$ki6iy&WfqcruJh3y4U1|KB#>q5xr}04=
zKZxWWDl?6*(l{cQAEohW8vBI)IE_!z*ef(km9G&~{w$5p)A%Bd{c`Jo;46~jmuVbK
z<FIh@`5r3V{V#>Dg~N2d72+Ggqk@$Au5kDJf)0Na&andjr!<Zi=o6whCdJ<`Y5Z2;
z|N1}tQw938-2I~<b0&>H)A%cmzti|fm}N6Kn}*7ujF=DvO9(RkVnP%b%vY_X(4_=R
z{|}$FD9WH*2IYlWC4;I$R1mC~K_wxWX5|d>>($i?oSH&Z&!9$u!<Q#1SxYXN@3|SA
zm%+_)S&y@r3@**!vJ5UL$X_VLMS>S+P$z>+3b{Nj1K_$D)RVh62!4IOx;%sWLN~~u
zWd>IW-7tej88jA}`8E-PC21-|vkaPN(4ugce9E-S;7Z|i&Y*P$ZG`Ta(Z0aDZ8K;m
zoc0-9mBH1*=dEip+W0%jEvAzfCUI?n(<y`Ngyt>suP^ZV6fe7E&^3c@tP~@E1~+BE
zYTj6oA>Bjh+eD3&za@j7!s(SkZz1|*@MH#0WzaW+e!}UW!ORS1WiUW42WBuRgTX=%
z6=XU?gkbu^gcvS3B7>0`jLKki2GfLdYX)O7xLxS6f)fOp!Z;zuXK<Sk_g|o^!{0=?
zoFq6|kS{P#5rTK`5aP}ZrV5dtJxwp%y-SF@Gni4}+>=2*<$E)jox!{U|2`q+2;N_?
zkOvBP=N353@xcrp%3!|SS|GSAgM|gjMM5kVTq3wMgNF-uAIad+0{y4#Coa!mMS-(2
zgH=L5Cb(Mg@xt9Fgm|TzdRmCLGuV*9GeSR0;}PQd3|<rB1woefMIl}id|B`n!B;bw
zQ1V|5zb>3NGFT%7pIR%#x(wbdaMow=meBd9-pODiJC`iZ&0<pqn=?3(!Ot0N$zW>+
zyEFJeEO1)}=?pR%yqm#x;q1sDE(GoKy$s$LIwoicG6L{cq99{tkQ6#4XchQ;eS%`y
z3<BZUf==PCD}*QLGlKQkX@-Tnkr25Ib_%gekfuwSJsEtM!B-g^$>1a5e=hiO2A>GA
zS8#s@p9;Z8_6hNsAQL%I;O7(kB7-l5b5QV5;qGB^Og{c~f%9Vq-xTPh8GKuyzZ2qn
z!5;+sNZpSK{gdEvu}`LUGJ{_-D4Ru5R!4weGx#%uzcTnu#K<`%#P5QqGx$S@GlKa7
z|1ETJd7Se9$mQ7#lyD$etZ>(US}UzY79|UuQdyK1x{P4HHOmQIRj|AupQ<24MZrpf
zl?AJ0QD?p`Jb%@)s4h&>HL|E#plb<HJFEK(-a0Rf^RsB5#Z_5cP>^Yo#f4d1B$pRw
zae0AXM~F+ZxKxPC1ncJS3UW-#H0$R%9QF&*P_R)JjfI#nUgyhSQ@L!GMe{6L2;DM^
z)<W>^6+*Pi;z}X%8g5g#+ct}K1)49=UM=*E1<o~DbjYG(7S{^r2Ek5(*A-+s3vs>R
zZIyJ9x@6I{aJO3)-G$C;>831tWN~xhZr?0!DbPK$=p}UT0;i7<e6U}E(?5#=LJt%i
zRNzx)NESn7*g1?XBE;}4Mu@=3ET#&FWgC^n=)zOC3Nc1-Y!>4R{P9BEmc;}iCJIgx
zoGi$6ZWm&T;2l}qS>UrIj9t^Rm@YYzzAKBn3-pXE?kUhSvzS$&@6BSi(Dw=6FF2=g
z_r)rho5eiI;=wEyWU(-dhve>j!F;BRvREvaFAFZo;yDh;vsfyZ4`=a+5Hx^Cg;<uw
z@+?+lu`-L*Sv;P_s;pjoV3{Aw;*%nkl)jIDR(c|fC$o4ai)XX?P=cqjcsi@kk{vG-
zUe0$&^X=2kCG=NRX3bFRSEv^xi<h!^QHXpAnKFr2vUoL%*My%Dd_9XdvRISF+AQAB
zB9_IvEZ)pwTNdxK#V^%GT2J%lzkmhb7Th5Cj^IYYO@f;Rw+L<(WD5Ct-1aQq%Yxta
zW`aAi`Zy{6v7NiRK}}_35tqVPStMwpQum~A%q;qL_*WY#;qWpo1k+)6PkYE_VQ1lF
z;R-*O#m+3eEPS~PvIw(?gw8u4_3)ogb_xH3EOr+JnCu>*^D-Z^IkNb4Klbg%UJ_YM
z+>J@Qu`i3yvbZh4gaG@qI6#YXaj%Qdv-l#5OB`J4;L9uy(j#olwe|lo4>7XYxWvZc
ztiJpziz8Wloy9j<6thv>#?dUk&EnTAe#_#!EWXd;r!0<V@k3U>xbkBb$Fg|1uU1;c
z@AbhBJT-3E59&k~KWA|=i(lwp{6~C|da=F!FMQX{>dJEZ3q*geSEsW0J&V7y_$Q0g
zS^Sa3nJoUyf`6aqAKCan`WmHFm7(g*A?mLzc)G$#IWOoe%V`5Pc9zu1e!(5dV#=JV
zj8ppDfD$%J+Nfcprj1fIO53Ptqmqp>Hp<#4vQf^)Z5*zYR3A1|Wg}JI)@N4mn6(Nv
z?w7-kmdL>`m2Fh9QO!nmTc5uXRg}|mY<&dxXx6%-KIi13Z}fU^EgQ9MTqMdo$Huuf
z&bM)a4gOXCJR9R%svbpZq8t~-LwnjZRTtVQe?~E{ar|F^JXLLnK5ODq8<*J_Y-5Ox
zx;E<B=xF0w=5C|DjdnKL+h|~;p^YXsn)2>oHJJalE~OgTdP}r18>^HqPcs|MZM2bk
zwXo&oA`zgj-j~DcuCS5i%R)A;6rv56fNZ=_Rgq{*y>WfMlTPO<8&})7#zqGlBU<W1
zFm_Z`om;9$`|2YaYVbdUMXHmH>ulU)qlb;oHm<kP#YR_K|96tV8)#$ebk%q;I8RsL
z@f6)`yx3QDxAl%dg;BWC)(iNR`2Q~(x7g@uqnE86%_&kPX6ZvkdfWK3j~Zm_FfyC(
z|JZnl>pwR7*<dW{FP8%Z2MSJUs=bnh-_DgE8^df&v2llu;jDs<u{Orp7-?gajnOu4
zwe?~wk7IhSojRB2EtJ%UJd9xrHqwclVKk$u*qCHvvJDyx%fnhsurW~z$;+Bh&D-c>
zF6tInx7&!@`t-RwZA`T>%f`JnrrDTo<8B)>NHkTSu2<CutGjHJkcMbcPTL{>0ez1s
zWF}3nNULkMjr(YgHs;v)*;YH+swSoM@p|LeC?5S$Z?HaGVxEl$ZS1A0S#cZlZLG1e
z*2V%G3vE1Z;|Uv!Y%I31%*JvXOKdE)@vx0YY<$A=0E<-1iu%}-)G&4VJ?c@~a0OjK
z?$)iavC_t4Hdfo<c~hI$s#UClrE1HGVU*ElV({Zx!_<>Dp0e?hjhCq(8_&>+*uFMC
zY^037>RH+bPwL`q(Z=&)fozx29K$qGZ}w3<9*2FzD{KNAuiJRT#vjG>=|)ukYczG)
zUmN{^qL1_FxjlW<Iva1=h}ke~the!&jcqpGwehx%4K_B~*hEtoHFj^O|DDQmJ|c#+
z*~V6J7M5g-jgu|a*};nYaWtguHg?cYZM@GiH&N?`X!TOJv~B8S@K8m&joV1raBX-t
zOj@0dlnsmKBqueo7Pk&lJl-(PSkX+;Zkct4ZpCD!47LqN=*Oxla(o+sjgX3E6PHvB
zEDUQrw5q3}ayAAv(Vn%FuEeiEigD6DcMI`>jXed<hc-SE`r`uU6Y7C~X5p~k#%FXE
z8~@nYZ{vWCpKKhr@wtsJY#g!iwT&-r9Avb&@fG7tamB+`4%z5`K%b^XjWH_ngt}c-
z)E}+YHw^wZzPIs%jc=*;`}J`#Ebw=tXZH0^7O5kR)Q@x}3B}x~J;qzbbo4l(O&6zZ
z{7#+Q_{GMrHhvSw*;P_);xTBIwB=t>N)7PTPbJl98UUT$#$RGKW8^EPXV^5H_i<2B
zq?WDG>f#^3&oX8@sN$fi12`z=pvXZv2gMzfa8SxYX$K1$tC9|`9ic7i90oK7c1Iue
zGqa@bDatzffH?Yi_uEx@2NfJtbWq9Br`+&ZW9G#l|6O~UNA8zWl^swsj8WAbRCjQ$
zgYz8Ja8T1hZ3pK#sO9J|!V^J957SYdG)F{K2+yvhNuTfF0tXj5xX3~8w#w<Rk4=8&
zO?5Ggx>=vf+p|d3asC}$aJA$z2X!6ncJP6NdJZmkFx|mj4(dB-;Gmm>?hYC{Xyl;1
zgR2}gcF@E@D+gCPXzHMugXRueIOq`R^Lf}8v%Ok6`09w_f0nOsz}I3KVHoNcFzh>M
z<DjjBb`Cx|tk^F6CpaC4k!r+u`d}Yc|7r)<IJnM1XQt_(Bem+F6Kj2ib`~BxbF`uE
zIM@@hHL39H9o*oci-WF?wr8p(`LPZH^oxyOX_s$Sq;7O@lY?6wjB(I|b$2kt!B7Xc
zIOyqMARnZ_TZ$hE?ZxWERBvgoKCJk?x_EsZ^b?Jd?(bkgfo2!RbA$#{IYsJ{wz|JA
z!_8j@!`ZS9MmqTZZCw)nc$5=A4$C5~Z>&Z+813j@lIP>Giy7-+oP)^@Zg()=!EFvE
zI+*0>Llq`C+Go%GP`5Gz6ypqEaAG3ga^=Ut9S){CnC9rSh?&Km4yb>sn)70IlspY-
z>1l0UcRQHj;7teX9o*w!rh~^EtadQV!MzTaI(XQ@Y-Z$Ov4bU4^$_&~Pl0prTN5>h
z95Lnx9LyD+%oBW2kS6_*gZTw|frEtwdJ(-t9^@IG!A^aY6C3Lh2ah^f>0p(EWi*3|
z%50>2ZTj_c2P+(~P5J%+E2yKrQYA*JqgUc_2TwS7*1>ZQo^<e(gQp!lL$hqBPZZ?i
z3=x#)Ib-bFsIKQ7yx`y^2QSlic-BWHRi8sas!MeEii33})jCIis-qEo$I&C1*Brbq
z#2bR-tZ}ebXs#~ua-o#!EeCHqFdZZvY+wsIc+bK64mLX2<X{^cf-N#wZKnUyV7^hu
z<giUvXDb_*udWqo<J>N7$|$sh&CL$(xZ*G7z;F<EkZ@3@u|AxWhqAKM<T-xz%c-y1
zsi)?tlmp9w<G^*0c93z9bzsw~c{Zc?0#(fe-ktZ<a3~&=<vH*j>~ye;PF+f$p&BqE
z(OL3GfYQHY+>(=O(oQJDlTjInc(lSE2OlyTxVYTKM-D!Apj^PkCl2;HIO^bA2cJ6F
z=is1&Lk>Q3u;0Pw4!$72ggV9b9|n-_sLI_yF@rDJY9&>JeR@PqwI61DaPYN*Z)gS#
z>1+<3x=^G$6o&MV*Qk<}RQ1;S{I~DuL=Jv;aGEj>esu6FEt6$#sZR7&$LPO}bOZh5
z;5gfby?}$Cg*Ykriy()oyhR*4Qk@ddI@VV)Bc25Khl4W?{-*D+%1yN1{&aBJChfL=
zQG1OP!x!T!k6b&;3W_n%kczn|?xL29+Ad1CDCwfeML8FxT$FZE#zk3IAJ53q{=AQM
z55l1i75h^~#S@atyQtuzqKitdj{h8Nz*AM&sZ~^!UG2!6EL3rIeCDsJi)sbBx)3#7
z)D&X%>pC=@<KkQw7rD6D#d$8ycX5G>3tg>k8XLzImHKL@U@Nc;JO;Cli%VQw=Ay2P
zOI`gTLiP>}sx-y2XU}rfcjHpbEYhcb)pyarMGxlXqM?gMF50`e%0*)rO<c5eafOSf
zE}FS$?xKa{NDJhtq3lUZ7t;!41fz|$a&e`L)-KP9)u$`-sC*i>K30XfmrzrWs6Crh
zI~R<E)W!&?t6f~<;yM?dU375K(Z#hcI??tv==#zfIH_R@JY$yehrWEhiyK_r=;9_9
zU0ie(<!s)ny18Kc4w5m(7j;y3_umsc`H5SeU`B1n`>I=9^mH+t4dJ4fi{35<x)|i5
zkBh!8`nl-u>XSct#u`1V!$CEG+HR!trDcBDO4o6)iy<zCQp`nkGurV~H>n*pKyzx{
zQn6bZ>0*?NsV=6u813R#7k9Y0)5RF-t+C=~l&82D>*^kXDUWk8p4Fil2u={3C^$)Q
zvf%B4Y&c5NYcAt-tde$N9XyNFbQgEIxW~mzS9b~=CEo4g;gV_wbwxdw)Gk9ca-Pfh
zNgd91ai5E{hm42&UCd!)d1&k50T**!WL?-U=DB###p^EKaPg3f`7WMx@sx`NE*3Iz
z7mv7D<YKXlB`%h-K`W`2&D6`=^_-Mdqi6kfjc)fxT`Y6)xQi!TEO&J`x6;KbvHTS-
z&Tz<DOtA}l%*AR~do(8wMB3+5tXDOi!k9PJnyTt)7tgqO(Zx$Ho^|n@i|1Xu;DQFm
z;W1lbTQ$Xb!Ga>iVHk6H*~Kd^UUl)Bi~1Y&e1u&FS56p4Ru$7np|VF<<6^CgZ7$w*
zvChStY!nw8U95NUmW#JtY;g72hVNF>K1GkFs_9eZYU_S>6YJt)i;JzqBHiEdM_;~B
zhTPNJ>6yiL7du?UT_jw*$11ys(MqN6bPa}aCd&lrxooly+muNSxUkqXF4!qE>oyft
zik`@KW;pD3!7($vhJ!kG(_1<FaN#l>c_`(<bK%p)T<miZxCmYBaq%Io)J4w4E;=J)
zS7Wu))hDz!YNQVwJ}##crAw+0XqmmVyK&|1BNrdj`&{g08TP105{jcWmW26IX><YV
z;WHQeUHnDmyEwqb9~WP^_|nx29dy{$?bMRS>Xp5U{!WuS=;9Fli=#ny1dNj|j=1=m
zA%X=E{6_Goi*H?gC-jek-!tTv(E<4fxg>o|I6pB#NsXKnE`D}#QUp#3{v!A*jdPoR
z_BXjC{kx0Pu3i@SgH|U@(%e(~Q)sR^@bVuQXW8+2DCU8^Fo#C$o0O-6bJ^Oes-e%}
zEbgI%r~7wyb_{onW2HTm@zB6SLl0#=6nUuRp|Xc^9?E;D;Gv?2>NHVk6Z%CCVxpl^
zpVW304^=(X@=)7DHHvwt$;Y`c<>~%9D_@SFzt3u^kMCwrdX9&4JzVagzK5RN0`T-3
zm@MA;o*vlncY%isJzV7B;sWOqA?gTng@iJf3VoS}x&@hf9vJj^i=7>vml;Jw4~;#v
z@X*pj6Aw*2H1p7$^{TCV5N68Wjl>twi#8lfT;ZXWhbuj__HcTqt}HvdIl~kqITPnn
z8~wVShxQ&G^ze{}t2|uoVFa`GaE*r!9(sA`?V+QGYdv)F(A7gH57&9P-op*j3N%Ho
z>~;3Q^{&zU|Is!*2xLig{P)nEG9GU6a3fQI?uC0uOWovw6K$UTUYo5?SK6lD@1s80
zh@Kw!ZY^7|kB7b<26-6lp`VBT9tL<A$VMzueWoh*yqiANebC`owf(czhIkn2VVH;E
zEdP7z?}qA`Bl_Hax(Opsg(<p7qdbiEaHof<9&Yt8#=`^_+rwB7<2;P_aGM8?(D*`K
zt{d2sHfg2Un=r7j6()I@%#wSULi1>>o@}dY{k5%%xW-jV-QnSG>6IKV`+Jz~VWx*!
z9_}LF!we7i&^(|x9^-hD`Z-WbuOOxAl6=Y8!)y<880z^{aowxl=jnkE3w%H8eoPJE
z-+n#3TU8t9Ja!744atO#qlNh%7I=8o!)qQEdRXM)aSu;;SnOemhvgntcv$M;VGoaZ
zc$DRDtj0IhBU@Hs85PBknw8L#R?cqdJ}W(}^6;34)nY9Scbrx2ou*1PQv75dr^X*N
zQ%`z$%ER*>Uhwd=hi5!I>)|=NNpU^YSu#|A#enlf)^S)d6*g2adU(mh%d~15j~rO~
z%1rHOOqrd+yyjZ?bq{ZN*y3TUhczD7dU)Hz1`q2zyy;=RhqqWBrB@?)8ZGt4o}J1M
zinNN}@vzauCJ&oEkl&`Q4&YNtC~BK$r=RJgZf7?{?RkjPF+FVeu*1W99^R)DRn(13
z6Ph<ny|hNf#GVaWopg3|H}>qNhopy;2g}1BgZ1JG9fwxIeuo|RJjSSED(k`a@Q#m-
zJ{%7&y~D>1K0FV;hjV<K>m%?GdN{%$<{_f-vxz-?<YA|WT^@FO_<+{CL2*7y8=$K9
zu!J(mxwMhuls3&Vxra|YeCgq!hrJ9GTXgl=$r3;Huulx*GY|Vc9PsctO<g`p!e-@u
z+!x|>46VF8#9&oQYl$(9&mQ*h72}%>U>MxK@o<zD?xUKIZ#{hH;d>81c(|mcUOZ&%
zrB2wPa8SYG{pjHs&5whB563;6@bEK3v5%5IPI~x-Ue5sT;a4F@|KZ^`p-&0^E_hn-
zxBTLd(0>a4CHS`>pUn%L^`Ly6ECh=Q78m?arj%Tk7cA|gj1Xl7iv-IF{wH6-M@8XO
z609s(<$q+V`>5fgrjJ^_{&wMruhiid+K)I^@4Z2fF>3qzRhdZ){yxt4(ZWYd9~bzz
z&_@Fw4SihX<6<B6d|d9Mj*m-xoNA)`olAY)%KUAo{(U|1uS?63w@Im08W^K%eP0K?
zhooz3<fE~VW<Ht=bM;!)#MeU|hLNVeevg8&h@(wz%5Zqbj{XWCt$bYLql1qteYEz`
z#z$LU+XlM~wj;+mj4JJXwD<LP0M|%q5-iVEz8?5p?Q6p*!Iv9-T+8D5xX#CvwyH}r
zJ+$L6iE}`%_wtd>zTRJ$%xzyEU46{-G0R6cAKiTn@iCOj^l_7qem?s9=;7mLAANlE
z^>K?2jsrP9>E)xRuX|Yb2t2mBw`k^ospfMrxtMl&jy!p=`2ZgSeGKw3n9rIzy#Jih
z&Q5=%FLOD9D>K7<4EJ%TkEuRJ_!#NqRv%-0%=7i^h5=_3H9$ScOHEWAr+$2JtdDUt
zd-}ewXU(km+}Y|jAI11b03Q>Dm?TKfWFc;+HiWpNz#sU8n&xA=kGp)_?d!E87L1Ge
z?D#m*n;~t)=tonzM|8^-^?QBH_OaZ@3d;Mq-^U^!i+#-T@qmx{J{GVprXH)z_4N#5
z9<|4pe|$Z<cu0`8N4n(@ZHf$%3u&eD9hoIQmil<q$1*-hf*&yA5)hM>9+pe23;6%g
zimGg5#Raz=oCWw;<>N^oPx*Mv$7-hI;|U*}L~}+-Bc#T-=EGS$Et6gF(>|W@@vM*M
ze9(}l$)I$4NyQyi%CK3Vr%{QXU-a>kkC&yiYXx8N@v4v4e7x@C4IgWSdFXL`^~AqF
z)`&E5o!oje{}h++gm}xx+d^z8@Tr7NJ~p$o0g3`_@v+s%VIN=l*yiJ1A0PVo$j5fN
zst=Rq?c+V#n2(qb!v~jKx(!psR_OJIxDQ$sO@)0iRh^*k(*}437sY(o4DvqGJ~DL1
zN?KqVy8s`5$O;v`=@4K3r^`3d{`G-W-}B*%gV09;AED4ufs^yGvq0|>VmI~KSW$S7
zTy{K5EvS!ueB$GPkI#MV_3^2X&wT7>uwA3}`S|raRi>}rcBco?!g;_Z0~EWeFMNFI
z<Did2biJG|Ee(mS$#Qb|w^CLlj`;YRDfsx!$2UHX`uNGmamIfi-}(5_$1xg1JM}%y
zX_(?soIm(_I?4FJR%R5XuGrmkz<I*Q&y4&&e&JKabcAWKUL8KH?rft+>0D>#NaK``
z-{~v?iU&ANrTIAH<4>`l1vhIG-84=8MTeCIGz5B7|2N}_q5ko4*5^{Dj!188*Ly~1
zPAZNSX_F-alnhWhK$!rg0&s-DQ7%_9_en%zm044+vGCIp<pPusaAknj0V)Kj7~uQ>
z7ck8Ll>^iWP%}W4096B23s5}(zdJy)SH-kdaQ}kt%oTN}Un@ZE0OtlcPfExILneL>
zACxfzC%=?rC(Fs&g#j)KP%psc0WJ<uC%|O^>IS+CyClG+yj4x5CAPDd=W5Btm6g|8
zS7Ap^)eq1hK+6DEuy*_$3<r=<4Ffa^bg#h_8cRA&0yGtZoMr)<3*AESZV}^(DE)|r
z(JIhuur%g20oqa^z)b<#1!y0jbAamuTovHz038Ed8|c9y$2QjlU_a7<0y4~|GUuF8
zbKcg>P64iCI$RbwNAVA*Hw5Sspj&|M0oXBh4fMJV?UsXiPL|JWq$m3<_W5m8j{r9Z
z=o6rCfLj9e4A3h;?*L~jsgg7FF3fI2OLAt!xEFn@`UU78U|fLl0R}Kf8PbmpFfag(
zaFA$&6&xJsa4|%1D02@mT<8%2Mhn5aBLj@eGxIAjLXRojW&EUJ{~=k^gj)D|5ny6~
zNdcbE;e{L~v$<(45h_QRLS<52A+8B=XMm{zJ`C_tfN24y2Y4;O>jCZxaCd+O0Tu?B
z5#XKx_XW5=z{~)%0^A#5c7VnQ)ia*zJVZss^jERU4%HnimoDc7cp%V$XnugX0p_vd
zMQV3eJt*~MLp&7d&(Lrb%}$?}bbpQn76n)wU`2qH0hR<<8sOmok5J*VDmW=rH)r(*
z*`ooL1z5F4uQ}*0kL&+|UY6&!&Z+>91$Z&QOM!m>XLX<#3Hf_mw9Sm32=HWprvg09
zWM#ncT!3eUezw5j@cwzBUl8OaC10kVY5c|X9N{uq7-WmQ8el$yNm9KLU`+rkKsvx$
z7AC-^0Gnxk0oKzK18fNJRsi;xMYHq-wzy>dPJoR8TCG(a4A6tveDnfNMYjal8em(1
zcLOloy--rMDy7|Ldw?AQUO1>ae4=QU?@>!K_c_F2PoNhuVgU@Xhqxd)i2$b1Nx_t0
zzR%4B$Ogy-*creM-~{jk1OYe==kkIpD)mGIR4g}qx$YOznCIvYG?I2K@rmv)b_LiS
z;DZ2r7>J5=H_d?KD!o<OZl(@F+y(oX&A}KIqGpJ_Y?J^$2RIpEUx3d7{1D(rzW)>8
zK!7g-e91CT)q}M9-SIiC@m+1$Tp2h>Ct9P9u%=R~!vVe$7k;#{;&I~qeJ%WN1dj@S
zEBIZ2?-{Y#p~$CU=!3@s{1o7LfD-{yN^du?m3P(G20TuB8SaGs65!VWe+Kv~z;6Lg
z1^6St8LH)=`kgWM6RnWb5~&#R80tBrXUcR#_FR7l_=hne08O0T83m}cS2*$y!H$*j
zp<1ZFQB^EN@en0KoWoP6LX;PRbg2-fg)SplR<KC0oFHZPm)1MQ738v_V5Jb1g{V@H
zsT$&`Q(BA$Ts_nVe`!rsD@5%O4MQ}dScr33!Vq;roEPH!5Eq8HD3lOAR9z5)%e;(%
z`(!rvK9ACBr`OLf32|wNdLb?k!Ekz62%Zkjn8WnzhC0O2skieJuB=@#JxVXZ_di3h
zff#QahiDSwiV&?rG!4-#M2iqD83?#=A#dF@4|Oj|zh<Y*A78uT>dKWNT8C&CqJ5}8
z(bXo@7Q&FyHq@QbsA78Shi|9w8<AH@nVAuXlpR8J46#1MTOqCu(J91TA?^-wU5L&h
zMuiw1;`$Ibgy=!#gy<5YD-#THQ;2axwHbE{@p?tY@^lZuEyad|kXfULAHOxyA9%VY
zM9&a?L-Y&rSEOeXy+ZU3(T9cP+8RBSXD+qXYU$5n$ZUnh<`ii_h=HLF_=5yV3=T0w
z=%EG9un@zA9w9ig!2gx@8DdO`i6JJ17|WuD7$4%cP><;7cMbTCM@hA}ipB{cKZCAj
zaj}KNi4eDkxPt*d#FP*x`{;LR7#l0gyI%CxsUfC?*i=mo;(<BbRcGxAx}6c?o)Akz
zJRD+Xh*=>X2r)Ory&-0YxSwXg;<Z%wg?im@(eFAkZ=rdw&<lE8uA$}33-Mrx1tAtn
zMIH+Ey5D>nA&=6Mphpi{6k>6xSKvoopwB;FB9=gcGuCISsYgOQ8e(;b$3rX&u{^}8
z5RcK2+N%|8$9wcJsVx_RLUiD1TO8VT*MoohHAikwgm^N<nh<M4eB4ky6=GdW^-PGT
zsT0|0ViU8Oo(=I_i08$qUI=wWeJ#X`Azljg|I2t1-ODVz@Lv@fuK&~gM(`9+YL!E~
zP`{8#&iH0(9mSd|j%@kDTW9_UIRwY#B;F3OA;c#PgCX7tu`xs@M3!m~u{p$hbiEK;
zLTnAOEyTMa=3k)W38!HHyrH(!w&jq2tCHFw?#wdZ(MiQZ7$M>z5+V4i(v3rP)a6jb
z43P}=yKVRK6Of{I%3H!Akq-6OqkfZ@E9?+Xh+K%BA>0sN2tPzX$&%_!H^m)2n&_S;
z>a3~45D^`R|AKr=@5VBPT_JXd_=t)PvGP`Y5aL4$G*){gjBp2>V<9ePvR~uaVArd9
zGRP+WG{io7eFQ}KEX4j0XF~iL;y{Sc85=`<8G`N3h|La#1JrAq=#l?Hib*RU;@uEm
zg*X!8YpL4Lg5QMrQHZ00-wJ*w$SQm<#1EnV<}5Fdh4?ANabcbi<eDD&{E;{r;+GJ=
zhWL$EEhDZ|BJ+EQ(;@y>@(*bXKE=@Y7Y#VXKOxRaQ3v<c<);m>^=X`R1RhXOEJE=J
zWg^-qN<=6bp;Uy@5x7dgT_nzGKQFKDtf)7<I1%7_MNx!u5h_He80mds4vEW0dWgGK
zHt&u!)DeckhYejNLe&T#Mff;EwFuQCERL`wLX8MDBXo{%eS}&OYDcIWp<aY@BAgrH
zq6im9I4{Ea5iW>uVWi_f9jC!MZAc6hoD^`~m2V%_iEv4TOCwwsVb414SzKS`G5$0*
z_J&+U&2_`&5$Z>{D#Fzf8boLqp-qIg5gJ8k%rbD4@}mw2O(KlpwhM1@{U<^*A({)e
z5Ns)Ug<vbeD+MV}eb!p9YyDuTxQN{@LVH$R8jg-nv%Dta3q`m#LZ=8FBX9)86=S}D
z%Amxt#LC9%x(HmEp=WVDq$5B68=*^tyCckq&^1Cgj*uhV5utm88zbBlp+}@wT&dxk
zle%BfbLR-ROL<tATO#y~&?`dkNO!V>1xfS~qOV}T2>pc^AUH6>AZnnb9@kNl<BcK0
z9~xnp5W@w>366*`GQy|`qa)nPry`6M{-(bASuTh%+Mh0_`2G^jW_*O(<nDwBlZ2Qk
zn9pdk(0q!u&@M1T-5FsjZ7;%I5xAaQr@fjMVM2R7=!*EU3E33pV4LlGPlTBf9*8hE
z!mJ4QMz}x1oCqIOQnMq_u<wg>r^aa@V<7tuP9(YHvO!*4nHS-~2=gN>i1bHAC-&8E
zc|F8*B=E9499k@l^h?N##7NkV?0J_)csRma5#EmQNQ6h(Y7w4~uq?vz2#-g2BEpIY
zD<iCm@ECKSsRv*jim<U(Q(cYq@PnMzvXB2{gr_1r9pM@3Q(k0crPzGWMtT#IWhQ>e
zZi~lYMtCv8YY|?L@KS`AnR0|zBk(m#x+l}5UvQ4h<qNJJQ1fp@SQBAwgmp}+4SMub
zi`uBkTh*KN1?a_6#<59U|B3LWe4u<ogm)q&BA5|2M%WbL-3Z$wY>u!c!qy1eXt!<k
zPBATw2G7RgkLGv$EwzJMqK8I^(N?($A{AliV37<KV6)ozs-j89S;ta}%c{u;sR%nG
z>|z^H`4KV^vXQ*6a*ysGIdEb?=8KUwBhpZvog+=)3VIRz2tkBUE^~sBAlFIg&eS$z
z@@|>|V*-<n^xHUmkBA!Pk8gDF3#1%o)cI0<5@9dBGKWq%d>Ub2grXeE<?vaA{Si(?
z_&LIX2%pmq8R#N>L3Kqq7~v3GS>6euCYd9nA{&cc_Eit4BN4ui@I5n)@J)oH5&kjt
zYU;NV#2(^uG##pv9+6UkG&8<L#0vfxfp0dlMUF-IiSdwo$8=$?n!1Yg$q2th_#?uZ
z2){=7EyC{+PBUf}(}9kQNT+D|@>M~a7GFK(H>RVC>d%OSK$Om*Oiu5*{>`A&NGtZA
zNDpYw{ujG)I^sdFm|$_i5;>F<f_F;^!2xsGoVHANk1jbqi@Rp!bEuF*(;S-RP%(!}
zIn>ReUJjLWsFFkN9L~w1Y7QL-s4ac}9g|nfp?Xfor5b`YbEqW*Uzp^OiSr$P^zhsq
z&dcd3IX3~B5oed@=Wqcl!V`@INnDh}#X{E+yrjUtREW!RI5Ald{4UR-eh!UtXq-cX
z9Nyfh-?igdor-Ok1Jl1y-V<Z)O>&^#s8#0JJckynbq?)vXqm$mIke894Xaj7waV!a
zvR}zdiPcPp6AD@#8<a0+zQ(t&bGRyp4y<(!%Qxu_%Bz`CRdo&ZBQL$P?iA+72l)~O
zt9)G!opZP&hdXn)K8G7}7?#8E9J=JtHHTYr=*b*&=$^xkIoy=vyT>|8yc}p}?2*&2
zA@M!)n{#>;L`87~%V~J89D3(4ggVTj4->4d2IRnXW>&3l4*hamz|=#{Bl3SY5`1c4
z4uf(SEMkY)EjCcO?RxQz3wLy!knc$3FfxbRa+r|AC}x+#xE#jk^xTIgcWVw~ayou;
zA~`mv18+51q+*C*-S<z`m7SQwB<7pLl$@T6aqc-e2Y#293gJtY)E=j4jPnP!si`?k
z%VA*-i*lHr!(BPd$>D(<?#^Mx|6}Vfpsp(3|9^PDKu}RZ!NBgM6j8$NF0c^0ySv5i
z?he8(M8xhqySr``Td}+Nzi0gLTi<7`XRWhl&Dm$4*)!K%9kV-}q6Y~?6P=Uw&>qfb
z<D3huQ%=Zvns7<l-6_TdJH5jh9iukub7qIfLgSM;r^C4&#&<Zs!?%;2RhBe9_VYUC
z7$^-QkctIeAT+jUaIud4>2OJhYdT!p;nEJ5b-1F#mG-%kbkaI57bXlcv6Tz<aHhQB
zT-D)fiyP7~rBTR{a-Bfh;f4-3YSldr|5qSbQE8dslKA3UH+4+l?`G|<&j0CftL><N
zTZh|iUy6PI`JKBu+%2^980vA4AS_6_9OZIfhx<GH(&5(*4|JH&;q4CZbePy-Qita{
zOz$vRnBU>a4o`J>sKdh@9_jF?t|*ajvLnq`PGCt8<uJ=cddzO$;~kT~^n|6&S%aLX
zJ51^DY=>zbp6M{PV{%C3Oc3&GuZ56*$k*4+sMF$&zrF1|-{FN0uXcE?!;3<a4lj3j
zrDOaaH_UX7pW-N;Tl=op+WtP=c#vN2@J5F>MJbwjUlZ3>^i9l1%9Sj~S3YsJ%$#>S
zyw~Bg4xe{;U)0(m=n!`3bZ|R(q6J~g8;-OEk(Jz88efsw^*40xdEJRR#2sdI_(U7j
z%?PhV+cCmPg_E;pWp<gmKewGiQoweq4t2-Gt(p!W+D>a*UFi~^k)OZ{=#NB|_WFNU
zKGlB*nhZ&4;2K;m!7n;|DI611>hP6tzQZ>iW{PJ{H8>!qtx({%5<@+lqirJbqE=)1
zp~H_Ie(LbEK)0vi-r5~`Jan6;s_>kQ*53ru4okQ!>GFrRtV1uCd0hVL@V6G|GKb4Q
z9scbwtD`Uszx-g*`1N-c!r+=s)Q%kam=R&!TqZnbCfviNr^}o!bGayCTR-Vp(yQlo
z(d)5<vC{M;)5WXjb(zm)L6?PGdb{*->Fd(ZW%X4Ikmq-e3r-?(0T*SC9Wd6Aya-kv
z+EWr|VV6Z*`nxRZ8Z%06`I&1NzpJvs#2Xb)S<Gc|*ARtrEyPupa#`ACgv&^mWn7kZ
zS;b{lm*rfRcUj40WtYu*J1e*-Q}O#pSkW~s&am9E2AA~4>K>08wzHbc0Nvv<+~tHp
zPM-+|83wuxa*+u$*fkNEA+}xJw)(n;?F_Z;nzkM0vexWh|6WQ(f{u#3{v)DMF6+4L
z?Xr){x-RRv?CG+Xp7??xvGrZ(>1^N{4!NPrMlKt>Y~r$uUFoK_-NCk-xomDbTiA9R
z+ivNymF);DTicG3KewHIWjov1e)e_Uv!m_r<T85pJ!5QV=h^q{I{W%=wzIp-*x6V1
za2Yqducs)DS!SK0_R`Jvb=lA5K$nAD_IG)AqO;idj=aYQ2nVd;DFi#%<q(&{Tn=}U
z{(Pu7mG$KO7h4xA{(g*M$Va$*xrh}3F2}gMqtRTBbve%EI+yERj@LH1oaZv$<wTd0
zTuyg6!{ua`Q(R7UIn4r7tXnmb!Z)e75+y$kH8#STE@!!%<8rRh!^)$xU9S1w*}*!u
z#j8c3r-h~(>wK3BTrPLH!sSAji(D>sxlHpP<0zP-<y`C<JM<ElRL9roEk)g&a-btC
zL+icL<th#9a;<9w{nd6p$^npOF7-g6&ntR45*Ff(H@MvB@`THiE;qT{>@vw^vdb+l
zx4PWsa=VaofHQSpLpWN9Y$)--I|Nmm;B=?UU7~2c1;)1b2&u$=ZF`?>@3-v(ww++x
ziMG{WbmxOE54k+-@`!fCaXLRb$~6)M9u+3LJnsI_&XUYhG*IjM&RX<Oi7s5GY56Ww
zT%K{6>hi3MxR#Pw#FS)c3l3VHq=}Tb=`PQ^yrf46qywCD`#CR&Y~}p7XrRPbVgBgB
z&MRV5eT)zkR9|&@%>wOp*D&ojZ2wIG(?!lV-T$_|qK-7)_gvn0`Nn0Y%LgtUm(rzj
zaWy5E*d=lCT>_WTC32CLzUaJ;h)(Eth18fHCbIv}9!~0#x#TW|NVSJy0t!(n&+3QJ
z6z@m@(28o8MoiM>Gndw-%jF}Nk6k_#f%h=RzL4iNYnjdvA@u&A+u;+TjRm+IJD<CJ
zAq;o<N^D_Iqe@8+mqjM#X*|ZgoUdJ@)(YU?x_l>Y=CQoT_bxxUEa9=F$B$Zq%g<un
zF8}s%UVYFEB4+ZdP;`j%o0ibScyZ-$5KsPHQozFSPuu?G^0(%!$gfK;k9j=)b(!Vj
zc;GRIM-Pu~-v4x@?zSU*&=$x->FF`2$6OwB>*jZyqiq(AhLZiFRv+Cnug82I{XMg5
zy*>JP^!4cHF~7Ysa!D4joo(kbLS!+|*=b>CL63zz7WSC6hQYl>JX43RkH#Nu>)#i(
ze_6~kZ{}Ux<Mt8e(Sqkv9!q;H<FTwpunESBjXv?PQ5BTSq5Tq$t>Ceu#{iFk9xHjQ
z?6IoHYMvqUCFXZl@laGnGZBW1<i!wFB(+I5XOPEWk0F|ghwKz>%?!urHh1L)rKL*<
z!fSdA^JqL;kF`A3_P9-R^BAtdJx=jB)nlZ`D38$|V?5T;{5>}E*w|w|kM%t^@Yqma
zRdoEjBd@O<)S@84P3EDz;+uGE>anB8PImd{40Ja0*xX|ayD6gI!)MLf(lZIMTiI5f
ztv$A}{cUGo+0J&h_t;_fl?|S7J{@B$Vqsc)s<X4lE*{5v9OtpC$8H|GdyLf*Yyyv9
zC<S8=&+q|BdAVQ4X+_#`kG(u2i1+r`-{Sy}eLVKH{~9;Mkmr8d&4rBiexPUM+QA-&
zcpPN=8;)|G8{i!3ahS(Z9!Kjl#5vsK2#+JRK&4~Yk4QjjlF(qOqdCSyBGo+3W*r>w
zae~K*9w&JyB}S%`%F~nxq1lSHN*<l;ak-T&r+J+2af!#J9%p!*>2aRNc#pF@&h|LR
z<6I8~WyC|)-opSyz#l)+Fn`VYe2)t}F7mk8<3i!sQ0JxIh65DV&K3TMVG1#_N1e;`
zIE~|Ry~h<ES9)CSagE1So>A}RU(&Ezj`r(Xd*$Hu%s6B0l^Z;6^tjpM7SH$|rIXy`
znd)pQDpIy@6~@}EGiBO~tH}Pn!{bhm=RIEVxXa^ik4HTolm0K*dQ9|~<Z++J{T>f^
zOz@B)CMn#{R-y^FRU4x00_A#5_IS|aVUI^V9`bblu=Cro&T%`NTsU#XKUXv2>Aysa
z$333#c*bL@$CDxlkEcDR2z$pmD~&SANYd*h<AhPtZ*S@0JnJ#d<2jG%9!it;jyK6m
zV(Ho@v2GP3sQ;qJOCBG1bUa@6c*WyQkGDKt^?1$Wb&of6WrQK*8+UcKKgwhaNbMBg
zmH>U*;~kH8J>K)^$_;<MySJHuCVbjZ=Y7Gauk*<?!~k7Uw@2cUdiWlJN9Yk*m}m~V
zO@4bxD><^XL9rfcvqUnF+@tcSwIf5#P6c~7g;u0f;Dqg%L*bS_+0;IKu7Kc3r_19*
zF&Uqgd_MB{SX|VnhtCX;PsFP|e)9O#<1+!-<7<!4?f!n@@ueM25R<1@hN=`@WBqx|
z6u0;IL7ek-!@<54ef?%;_?_iNI>tfjmdbpbE>ooQvzFuWmk7k;SC8L3e)sr8d`Y%O
zZ<AUqsU+p+Pc3Q=vslrT_V*vLeerOgZobJ^oF&TbWvXi(-%$4@bDP>~>8{;<L-?B2
zwN`lb^qJFVVV^~O=JJ`_r;pG4KD~VA@tM!3x380DjO{<KZ?t{EQx0v7EM@!751p>5
z&H_Gtefs$<=rbZWkXMbQ6dQ@!g?xk|!lD&y`cr?OMSYg>S=MJUpT&Ka(ha@|QySLo
zBVADpVM(70#BG!hhT+~~R=T*HX4T7C-e(2h2<6Y-HAO(meo?qz+WyKutN3i;v!&0f
zKCAf**JOMK_zd(}!)K_^AfLfLLwr{Ekw95?gbDs?U5m+gWK(|?y<O91n9o{1Yx^du
zIM4G&Tj<-%>1hoXh4z#*GE(sL*}!K*pLKlJ^;yqneV<@6M+N5ET-lpSJ2`rg^UX-(
z72L>YW1r1@Hup_A^Cp^@O;^~|H*886C>M$rIIyR|cAb5(mCx2bV}17U*~VvEpPhV0
zYZrXB_u0W`M_<{GX6DM!P$`yTF$$UpN`k`}pPhYn^V!`uvC&-wmU&Ed^RB*0ag;)<
zR_sD#D42^9$NB8(v%k*)K6?qUTD8x<zTq$z4seu%Bx6k~w?^2{=f}w=V?@@|fj$TM
z9PD$5Z>shrre)@9z(X~ZRel_t88%Dg2%jT;=1A$0a+J@}K1)U{6>*HuvD$@zCj*Z2
zIo@Z9fF%P?@Hx@vb)PqUPVza~=MJAceNOQ?)#nPID}7G$Io;=cA&Ji!K4<!z>vNvZ
zSw3eA4+l8sXsVVuOA8f=DQ{E8onS6bt2(Ul78KHZFZ8*{=MtYweZ-Lt51orOrG7>h
zNYGqnky(C;|5T34#Ru#;JXeVdd~Wi&+2<OcYc-nwE(G|{xz0CCUh1L*&Gmw04@bw7
z>dZQ6Bj3wE*2}rY=T@KFd~O#gMmR&K8_bt+B*d1%F7-pRz02orpGSNi^|?oz=rhr0
zlFxlU_xn8HGeJ}-&aV^&%YM%rV|-bnJF$YvJ`akTd>$6F>f?O&prIgH@oM#;c?K8{
zz+*m-`@G=uq897(q|X$eXMCRWjmuOsQRaiD@w9KOIVt?TCp%NMg999?welZ6t0^hR
zz_!o%Ot+oqZ7Y9~etJoN^m*0iH33lX)v|OHj%DNL4PaF`slo&~2_?VY^m)r?rq8!N
zZ~MICQ~Fds@A|waYVrwv-uL;yr{m-LrkYGPnyg6i1Uc3uSUul}S8b)QCm!z{ppzMV
zVxQC}^GU>N`Wd279-w9-7IcN20HP!5&%>R<H>Xc1yr?<XK8??3KA-!vK3zT^i`9#W
z9(C@J$M|9AL+!qpi8Ut$%uh5Wn>RA#WE182)Hm^N4f}=9mp)%<s&?%vrV#asXG%#B
zttpq|8w)5|0pE$&iP;A93iv_j>hp)spFThN{Ot3a&+no^p+R56NyI;YwSScAB@c-*
zZ>0%qrzEET^7&f~JYcTCSZe?Hyz;k^*WxGt`pgpA$hQ`l7Tb2SZFk$wVcQ<I?P*(i
zpLFNELyd{8zV>ULfO!KJ3|J^&zJT5VeFEkW(88Y?W|TMCh6@BJX4Ee*!5!gb-{60F
z_2LyrhztW33FsfNXkY*+T~6bRW5{18ycJd~7MLAbJTMVDL1w9dr2`HRI3i$~fMo+V
z3D`7Xxq#&ZRu5PsV1<Ac16I?30V@Tp9I#5js)31*pYw%Dl9A0m`5<&sjf%L(*3Q6y
zK>>p`?Ev|mW(+VCA;i!}E`32#*6YxKH3QZQSU+G`z*+(81gsmdc3{*4<w6Ws-&SmC
zjUxiX4MqlxvYjsnIa}>+vH`U(;+8VsHVD`-V55MI1Ct>moAJfbCTuN;sjue>VKxic
zJYctg-2=7=*fL;;fE@$23fMYeTY)8Do50w83Mt;z+xX07AL-oz@6PXRA0W(>EFQ1(
ze*#7aj0xD;Zo$rT7-AQDk#sm|ZFbQ()~m3qg|kK*8?c8K6>vbnxPUza_6pcrGr7_E
zVS>^3L@)AB?h_dL-7jEYO-#{h>kmmRS3fY|pn!t|4hf7KO@dPA9$Y!m5q)V}4-Jg-
z@Gzl@yyE?w8v^IZfTIGg2)Huf=zwDa&JH*y;8-#LfKvia4LDxRKj6fGlLC{Q{e@sP
z&QSukC`g|FlLK@PkMKt`IW6GyfHMQm(r6>hnLlR)XdlnEIb$klQo4d14w9|s2Amgg
zQNYCk;{(nQxFF!dz+~fyJxaz28rpsRSN6qQ&v8k>r2&@(Ty7sHacr2wB1X?qM;oU~
zx2poK7Vrb^47euX+JKt^ZVtFE;QD|Y0&W!Y%xNOp3dCq+A&&&Eo^s-3=azt518xhr
zJusT5E^3V`0n>hcGSYd@p0;sUz}*3p10D>xC*a<I`vV>jc?P_x0Kt4F$}H_@rX<w*
z&RwlDAz)%)c(uq)bTmoGV+-dW3V1l+k$^`n0;m*ADI5xaKc<a%+~hmS=GC2#i=3qr
zZ0$T1@U#dmWV4VdqUeBs17-zG4R|)74rl_VY1#p<SWUq6fae2V71;*75b&br5b#Q1
z4ylljS02}wM8&oaOM10T28CiD?B={4@J7J<0Uu~NBA)@ydm>)U&c0<y>22G-quW$f
zt&Ol*c^XGc?ubVAG?`}F3$ZD=3;ci}Ak}6CghKv+SeqLd$*Zg(RSdnqx4BudW+{7$
zFXRD5Kp9YJvmP*dz6#S8(SaB?03jwIsniB^1$-OuUBHK$Ou%OWp9g##Fhgh-@M(aS
zraS>LcG0`^iYI0m@4?uC&KCh+27DzT=*}r7N~qmeS%LInN%?QIn?s$MmJO;BO8ES}
zn18^p0lx+O81R!YKj0TJy}67JR?6pk(-HDW#>tcrF8v<xN5G!}e+d+OI6A;bi;^-d
zbxsvPe`{xz1sWKCxZpWprsISVvP{UbA>Bf{hb$PfP{<r1JwoOUnJ=Vg$ebZ_hx7`W
zD>NBCA`PLsh<Ap~fK}iu9OBFq@`ug5>K)Q2q;F`LxwNDCLsa#7)BxnwSs*kzvvO$r
zg{H<z*rgG4+rlA>hAbAcNJ#%sR;O|Mivh~kUOZ%pkflPF4teugQ_8nwXv~(a>>t$;
zN=t}~5|;~EK4i_1VIeDotf=RP3=UZ-WaW@mLRJmUxgx5{sU{er)Beg_dS-;Pnx+~W
z5fkOkz|h1lzmw-bWc83WLWXKe^BHTX?{h{OJ6B3hFJoEAY*{O0?U40C)(;u3S%r)Y
z85Nq0DOqZA9%?rw$b<meopp4B>c2vROWXBwHVD};WTTLcLuL#$1+cnJTJhe~&G|x`
z2+m63a13&89<oKqJt6moY#Fju$l)PJglrwMO~|;AJwvwD{6lsL*)?SQkR3wCgzOxm
z6CQTd-@7~01~@y}M~@DT7!vJ>A#7rOn^I`yp4}~E_mHt6dk9cn#_+jjl9`ftpg|#f
zrqf=URmg!M2WcNe_6^xjAk}^;W<Az9X@EIpMQfBkd_ZUv9%UnFa}N$VB;?SL!?eYb
zqXX-Nr~-(*C|cvIk2#V)M}`~~a(>7KAxDQC6LNCMDIv#(94B~&oFLp-(`4Ri3(8|1
z9inw&$Vs6oqA6_7gHT%R{nU`tLe2{ruZh`nW=;=H+QS*4!TB@oE^DLD3ORdr|D2F>
zZC~4}pLYK2f9~tc2RIjoToiIs$ju=ahg=eJX~<=vQSCGhRpV+Qmxo*t8lI+jmL73s
zXcW$CLaqwAI^^{A9DRP-!hEi^Pq}XPbFUA%VRrvU+Yv?I5^`(E?ICxB+!h*pR<2`l
zwz;jfa;M!vWtQF*@`(+$-Yr_QbqXJe<AvNG@=eIhkOx90giH^4K4fCZB<)eiRBe68
zgCP%vJgg1U;f;e#*|qjUX(x{e73Jt&#CbGi0~tgXUA3E!hddGTqzE?TX>opgU9%Du
zD|=AcfEO=jHvQR<X_}s;YiT>e8SS;^FJ#mHz7X<a$m=0*guE2;a>%P8uZ0YJ#d$?*
ze-1@;#R|j_gmMb3s0vuD<IRw_LOu`qBIIpNTTZ0W=J*S3(>o#WhP)T@e#i$QMM$ZA
z5siq7ZR^_Bv#oF2z_y`nrE%%b*!C0Krnb#&o7?ukdn()i$hNg@8{4+F?XvBMw*Bw^
zk8OX3Z9lQ?r?&mfw*MRRb>~arjCfQx=PSFXQreZ`^_tBg`8MRckXa#4#P=aTg!~%v
zTgZ<gKZX1p@{6|bL*w%d9yb9~6;Nv&dF>=GeisuC`6uLGZIcZv{3#etGmHHz<nPev
z`Eyv|s7(<VrDvYGr$a=yh&dzXis&9OM?{Z^o{>rN5zK|#5=Jug^eoYo;6HanuZVec
zLuAB(XncJ|QXJ<bxySWF#)-~+5xpbB|3wjfBIb___35)fMBj*h_UnQX{byfa$aWUC
z?IN~S-IhL!M&`Ji#caE{ZI`gEhFUsenTT^^&Wl+#V!4PUB8^x+Vugq+BCd>BF=C~N
z?IU)GSUF;qh;<{@i&!;cwTRUt*3cv)21X2u7_9r>H5^ZP`_WJ%l!rt}L)M95QmSVv
zbw6Uwh_xct*1u*t!y@AxRtBB;k31g3BSu6<h>VPkZ$S!))DOAcL>i+aV~?++Kib^;
z^&>Wj*eqi6hz%n)ir6G#Q$g}eXJZYbqR~laOg(YyOF3we38hIB+ahAih;8+Vh^->F
zj?B3SvhVh@&)Oz3VnyDJk5mRb&>20#h!R=rJ4Wmjv46w?5u+o<MC=|hHe%<9T_Sdk
z*v&%QyU!dXC^J@7B+?!yzU9QDojoGPMeL=C2@azSuj{K2fOgaB*!u|PBb@y-d1d2k
z+IAYk6BF2y|0m+0hzlbwia0ppkcjgmE{Hf;SwoR=5=t{UEHde8hesTtIYb<#Un5S5
zI65-w+3}H~<zsAnY{YT4BlB&2t8$-Uzn&OzlI`eXp9#+M-JDZ3T2JR3d+{{eo*r?A
z?fm!OGc_^s|A@2g#sBE>T-!e{V!Z8WG$mAMG*wB6gK6QSf{P<AiMTZ4vdEmwDZVGh
ztDx}Zk%`GlQtKXh`?VccX@L<>MLZpGO~kbk_eVSsab3jq5w}O&5phGrjS)9R+#DHC
ztezsLkaU1sv^ztcTO-4q1)Tmi7IvFpXgBxHh`S>0j<_d6xh3-4O7qdNxA#USZE2B+
zi*?$Vr91t1r7_Ngh=~yoM?4ZSDPnTOgAor2{l=OCYMFt;c4aL}`s>kx_M<|oh$kYR
z6d$k_qPX|tqEl-(2_`yrSXq?vjZBGnCgQb-*CVDzJR9*s#ETKrgohE+MWmYKduDtw
z9C-jFvSp@8&Hm*P=cS03BVLJkH8Q?mQHpAmzIe=7+;a6FJ;jtey%F(d#QPB+M7$O8
zcEr08??py)xS)^oPGlSiq7kW-@<K>(i}eX_I}vU~s0|X07iK6g(qY%;5x%x#)~vv`
z3Yp2k*GVZK^mSr;<#Gjd1aq+zF_V}gqKudo;lxxCwZJP@9MMFy5nn`n8POH-VZ;ng
zNf;{|Q$@;R4tqEsTUrnw&~g+kkfn1`$NAJ={7ekCzw>!yobBV4_8;+e#LS3qBfhbN
zNGX*Fo@TB1g+`eeip=D#RgW*067hS)9}z!A{2cLX#BU;s!G=x!B05!-y3M$I*B<Yw
z!aZ?=KO_E%_&eesVYQsVI_6=1v)#%$|5t12Z7^I$#|QHK#B__9KW2fL?lE)3^op4$
zrbkTAn7Lx+j!ist&e&AZDtahX*Z8YVGdh6sAGFwcW9EzL9n&Xfm8pihwe`|2B+8|I
zsV{B6Z%n_K#bOqZSukdynEo+~#^yXvVdKIvi^N7`NC?VMm3FFZG}-lnhUjaFm?dMD
zidi}~T8ip!G!wBAxirPDH36aYaxu%t>=v_o%nC6p#te&DD`usbm1Bm)tggAmtQxbL
z9u%V-U>P#PN#zB}<1{cfcJbhtzaC*wY@Fe{%GW2WQ|4jJ(3mx2!(%sW%s~)3rS=x-
zdrz2>{Iz3-YZWo0V@AY`jM*k;TRpU=Gb(1C*c8HR<fp8{wr-4;ww`U*kJ%t*LqRn*
zf@5>rs<W}}Y+~C@ZM&IZJJ~FAi`n;VX**llc5B<38)74lMQ+>2hP8@7cF>fR{1Y24
zt&ebEOw7(PyTt4olRfDCw6-xG4}8!Fad$Om+~-EzkB!+Q=J=QsV#dYn8FOUJQ89aI
z{Fr@X_KT5*wvX@x0}6#KWl&rpV>ULYf@_`!2$3|bZPhu*b`G}fA+|l#wujmF@R%cP
zr`Hpv1oh~cV`7etIW9&q3mG7?!397~Os*|qa`LuwV$4Y~r^lQTb8^fnF{j3y78`f2
zJbS8=7B@R`r~!!Bsnqo|W6p{>JLVj_iIR_+<daVurA2{J<qzmk#PKob$E=YsG~t4n
z3u8Wu`8?*Ln2Td3#Y~R5B<51hD(04$%VI8%xi;pym@8tgjJZ1I8c|IjlSsJ%&Q-BV
z{}2NIILOgisS5JSCc0jz6?0?EO|h}d#1Fq4?dYT<p_cJ-3^CEMTVrmExhLk{nA>CS
zh`BT7E_LLrmV_0>4Rr2~&0!rP9LY-kSJBD)V(yQ5AZCKd#2&U_2n1(hY*Jq&Wl|Y*
za%e06C+4A;mxP2d563(b^P~to=FynPVjhoqLaUoSth7E2BK6XDjRyF1%#@gE0%L4)
zIG+)%J>fhX8>u=~6SgX)RxP$a-Gcg~hn*#kbDocRL6q3Xk(_!_Jhsb}1Zvu^h&p24
zj(I2MwV2mq-i&!GMnSQWI_Bjx=M6ii7=ohnx+t%d$~xYSc`v4o=@PRVW#T4}e(k&;
z^MNJdPK+BH@2e*a7hAJlFW=HgVB0VziiySaB%ACN?M`aH>PnyE4Q}N2dSTmAQXmHL
zN%{I>8r$D>4M$%E&kyyin2%$Vy(6Zf?Upo|VOiNHF`r7BD4SRMs`ZV05%Z;{l(0a;
zS2175%!-wP$~Q4H#gSrui}^O@yO<wheiS=ZO%Tra8fT;<O;{?2G;rnoh#UVD8;SOF
zY*hMRM0fTTA-~7`5%YJ<KQTHy{7-SS82$Zpo299l9H7bcaQ?Nw%3G+N65*53En&`t
zxe~f3%#qL|p=V-}WW>59!ldQ)8s~g4$x%(K0%3C}^h%g7p?6|bHDQIM@H`3gCI$gC
zLjh2@r-1bfI$<V3B4!i0{S*2nER(Qo!h#74B`lV(c*4R7izM_<STr$b7-|IhC4}VK
zaUq`cVQKqIBrKV*RKn5;vH|6umBuA}kdmXPOVH?v%OxzY5fWBSSRrA>gq0FjPEd~7
z)niPyl}=<;PMu_>5brkSe<ln_7??0fv+C#Qcn}p_i*O`!2PZ}=lL|B>F`RkzglA>p
zN+RgBFA2jEu1L5tVXcI<6UHU%nJ_$IM8ehy+a!!k7?rSb!X^ppB&?gTVZufU>m?`=
zLR7zgVz5GL$p#iUC#~naIH&R4ibcrWP?G$n37aKsp0I^LI@H*A%6SkZFWuWDS6p(6
zvt`0on!m+BL1|mfGhs}^&I#Km?2xdN7M`%9z-8Smicrh$>n~K9+rai{TL8FA!mbIs
zCG4K)<OHLF%EPQWsj&&m=@g5BCci>D{~mhoo+c4xuY|o5j!!s2`<}3G!jTC_304XF
zCmft`NWuY$&VF?c5;T+rB!JiqF@aQcF-FOsLbGn>%-+Kj4zs_?Gbvxe5dxqfJjyVr
zqZ5uvI5y$9gz3GEh9f;k+T$lLI-3tQ8t)|^J0~WblyJTnb;8LBrzD)JB_!r7DUF~s
z?*|_@In2@$PuEk%85BAr;Y`inM*7Z5I6L8-#K@O(6V9`{EELtR<F#ux!%gjl2^S??
zqU9%CoS2Ze!dQa2^fv+XGK)4kOv6|5n5aH6N~y5rs)VZ(x)MH2xJEm!RU|y0a9zUn
z2~Q_X(L57wOn5Tksf4@77{%-+O(x+Mfz<Blt->E$TBTDFZWAVp!zbL4aA(3@`iq_L
z!wL5YJrX7-JeY8wy*SCX_a{7%Fu{)YkxqWLb5ow4%5pVBeV*OfbRN<^+LJEcJIj21
zB;nD7#}Xd5gFKO-`?u_AKL7ozUDhaFgV!+rYMrC?Ov2QJX~HpK-Hpz(BDbC<yd@1s
znz`yzM7$ER!h{zRUQBo+;mw4X5?)StCE-<d98*;)kSZr!{}siFpS)(D{<@G~Ckc;q
z-b#2op-QL|-bswrqbR3J-rlv`rtjI#dkOE0j)Zaw0VG8B@2+h<+xoT*Y#Z8ke;bXB
zZ9hp!Z6~vBk&xStmaGjeZU4WWZ7jQ!WE2vLtlGpFo8ng=C48LlW5Q1fGZH=#KTnvM
z@M*$l;`0e#Cwwl_nAe=k`h}(aQ*F7#mx*~}phggCDN9O*j1<vt6TVCMKH&%ZI4P(~
zq!CC3Oex+9*6S#YpM{MHe<u8u@N2?v3BL<67DZ(SDn&#oi#h^DE>oH0D*gLA;hzLj
zx~1m)(tpLkm4BETDLG4&C<Xp!vkMX^+67^taIbr6>^`ZHJyYgP`7G!2oVilwPPsGV
zu8dwO^Q3&6@?FZjDf6Z5m$H9K@030%gHwj2%%8GA$}%a->ba?or=WkzqA3feER?cv
z$|9+8bjwMuwM(x))H4wi5xX{Mv6RJAmPlDLHF>AgCmEP4#4iJ6DGfEmSvocB<pZ0%
zAvU#K%JM0zq^z2<LduFME2XTgPfwFACdEm)>pI<ZSj6$IIjL#2lmRINQwF6*Mb`ur
zXw$;|3ynCCO?vtWXZ4gdQZ`B1G-YVYnkgewMx_i(Su17jl;NrIW@s{El}atUwTE-z
zL}!H7JJi_k;+gBDtedhy%7!WH2^!;6<ie%fnwnqzDy`{0<z+d>C|h_q8>NQ)H%>WV
zx=GpEEM@bQu_=3`Y>~2M$~Gz6YCBZMzM8X@<}VkY+(aqSSZBNq7jBobTZ&vp;z--4
z?2uah-?ls1cC>BB*mh^z?qb_rZL5WAz};<MhPL|SQua*QCuQH%Xc`hyd)Y}IAa1F>
z`_iZc5-4K1vIta0dO*s7Dc7W2n{rUf!6|2@oSkw=%AqO8q#T=aSjyokM`#?~InoKn
z7^6cv$x*5C@oF?7yykzjKrOpzjB{Md@hK;yoR}iVi;9MX2|9fBq?D7jFQTBK#_4oQ
z${DGV*QciDz{%5Wd%A5G>@vqkbQ3;{1Z-B@IVtC+T%2-A%6Tc{Q_fGhK*-!N!49!3
zX_W%+g?2z;<3+Z!faM#Prd*bCMaq@>doM@3sYH&;QzO&m^t(z3-_Hb>uTIU`P@7q@
z(off=T%YnmN+;!plp9lCPkAHdrj(mgUQT%>HD?QGY1_%ZNVzpNvir7_+f(ik(WN||
z@<hsADR-wlX6GZq(R%MmxmUZBa(~Lilt~(}yQ7309i{j{%7hffI<<F-k4#Q^Fy-Nt
zM|6Fv^W*^MAz}EAj&}2W`F~PQAIlxLI-BS;HtVBMP($NCnetT1OZJKXU3ofXO3E`S
zQ&XmCp8w~G&(410^pxjQUPyWI|Myw{_bLC)|J9V&1pGcmmlM^9*J<}fAaAC;mGW-N
zdm=RLxXGAy-cET(h;23PbT#LFAysb^7Ti;B#p>>e8@MT+_*Kg1DSk?j@=404DPd|#
zfJJLE>cw&+!Ac>3lq4lh$?WPHu?{OAbNjWhZE4%ewzX)%!bG>V_U5jX4{hfo+v@tq
zDKl(;X`53dWmSa+dL^jxqrOP_GUY4HBsCFs33oYU^j;omn@Yr$)9)L*w3&KJPvgt|
zKIMm$9W!>y_%Y=tk$lF$jGt3}5vR@QlkscHZ=wqgnDTqdA1QyP{H68U+(i{8h-M{}
zx0%a`V<Gmx!UwVL%&;1<siWR?oD2zceI=t?#&=_lw$?o}=}&Xmwns)!+tHOdGv=Dz
zpIcJE_V2XYF>hv$XFOHs|6~SrUsF~?#sV4rGZxM0o6#?0!Hk76lvO1}(r#{uG4L18
zj9M%ESG&JRX7nh17Ry*XW0j0mGZV5@6n=?}B{Ng@vQ%dL8%t*>6;>ai=rZ<+%VsQR
zJImX41>3G@+m&p)vTgNHO|QQ_`F6F;a8Vgnm+SC{jKLWjWNer*BxCiA;Ta<`*2ox|
zF)U*(ZNvy??W0&zi<-~OR)&>M-4RsR&P>*~NNj{c02!k)*2`EwW1Y;D0%?*u5K_`=
zT{{6~sVM_Q=DdPja*=J6v2msl7+Ym*lCf#V<{4WEQ2m_E^z?bmp>0C=H!NM8tJkjS
z_!>peGq%atK4XW>;G|Y0s^2zaJ55_OJIVRHpYe-sqx>9uTFdB+F&W2aoRG0|#x5EA
zXB?2RYsPLFduHsFv3thYj6E{OWqdWwsJkkK_U<#fgiz@0AB;rUTaU}wH)B6_x;c6u
zjW$lRk~d5xzzS`flRq;K$~ZjZh>U|X4$+=w9F`feC=Ag#!`tfpQ1%EKS))o`Ix^#^
zjAJv7)BLTUO2l$>#xVkjwIE~xDF~uWEwN(RJ11tGlyPasWf>=DoRV=~#`ug=GfvAm
zE8}cE`f2C%%y=ixu!Cr`1fnxD_Lc&_uyG2>E;vWKrkK8^1+ks;k8sY<xFF-gjEgdp
zxvB*!LMqEwF8YhLO*+<Npov^xl9{ui6zIP^<BE*yGj7PZGUKX@YcsCXDh8SphlcOL
z)tSkFx+eRdrl&dlGSb=ZPiNWOxiRCWjGOhK%)HS+Q_>ui)N!i??ClwM2>m1iEKGza
zLNM8k`Y3<t?u>hcW;yHR+?#Qq_&~;Q8TV&AknurACu2g!#EdB!&tyyz5osnFk7qoX
z@leLY8INdRJfn5X?$iEGlgTr{w2x*?waE5F#*-OOWjvjsQYkS{S@&Wi!Z($IYAZ!M
zQ!}2;cvE;TRv`4wcs}EWjOm$)Z)$uU9xi?>dKY`Ya-tKz<Gd(_lNn#Z%Neg^yqXzB
zPW}^#A+7f{yXx0%`-W|mAoO;|I~ng~ysvfXNb0AIA^)z>%-S0AIm>pw>jCo;Iyb}1
zs56=jKO@LUGqQ|O>>?x1NCcC&P1saPj8Z(Fkj|s()S-qF^Nb>+%&0Qs3eYmYf7`q_
zM06xIQdy}|3)_sYj88K@%lI(kql}L;W(c=O*&-CBJlVjC-edKNovIW$DJP$2d?D7F
z@x2Ibq9emW{Ps%=gs*J-b;dWgGt;);+ExG*l&*f+`9VZI*!TfN4nJo6B;vA|@N>p5
zw!gV&uKb?yN5&F4OXmEU@mI#YIrHWGt?d)%%;}NyZ^kU~`JC>#p*8KPC`#!XyIYU(
z`8N8XG&b4kGUTP4_sp47nt#sRIdaI0`ZNtm(ocq(tWKpF_sW?^qgkmcp4L03PtJll
z3+2q8vp`PYoPIgCK4;vOw|8@{>t$3dS^WaIh<f3iMRFF)Sv=>xW9gqGbzL5VMROxW
zv?y66vSOrO>bWvomdaT=XJF2toMm#B%~>gD<(%bmmd{xsXGLA_XJQj-^+!EaFcb+Z
zdw-RjRdZI$8IU8#!g4xVxx4vQWG=v}Bhzwl&XAm8Icw#tp0h^I(3~}M^A<nDsbo#}
zHKvO64H+Y%nzeI==c;R9WRAF#+-}<3M{L1@7_uU3Vg>8wte10H&gD7l=WLL(PtLwM
z8|G}3vt!OqIUDC}lCx#bRymvIY?iZm&K4F38djj_KG=yrHjyTMmCI}EoNaQp)h23-
zA2FO+99#PHr+NiUZhXbcCfy-7D)fKV=%aJSXqR)w=IoraOU|x2yXD59{&W}T<G^`(
zpqZ`qcl<<0M;PsqGcIS(oW1NElsBb0h*Go*B8|nSv3G9Hnbi3EY2i7?<{X!EK+b_V
zhvyuTbC7_Xb7;<CIS)-RJ90>Fyw<`xNkGXybz~8X!5*1&RL;>k$K=LusU;{NDDY~_
zG#@SM?!M0PIVa?tnsZvti8&|boSbt?j&9aCI%!Q1P$W)sd+h<UO{eFak#k|rMY&G0
zGVz)-bHre^inDUg)`sd72-}`(+w*KY-nP>u3vw=)-G6j|3G`f?b7^jvkMQJ@oY%fH
zPxLl7bazG0l{ru3JehM<&eb`0=G>KYP0qDBH|5-%b6w8$IXC3on46jlnT>Kc{XE>f
z`%+MqlAt7<TSO)~x8>X}WSBKervWIlPS%a$Tz3dnY?xTn7E8H1=N>^d=V9^xocnSn
z=RBBmztDS{Ga+Z9-L(gDb2itmC!35fnE;dQu$s0!x>Ec^-2$B~okwyW&3P>6@!V7l
zN!=3p%Yh?zgz7ccOH6L<Q#ns-)j6-{Ov!mhJC*Z7&eWV|bEfHWIj37*Bz-_5PZ#0z
zHp-{5r);M8i#adlypr>(7TC>%@I)Ff3uo-{BjV@MC3Gy0GKAmAc~ij8>EyhX^LEa=
zVh)1mK<6DjPNtcP2d(+6AgL@w<#NAom$sku{~RyJ&k1r9rPA>)vtBdM4s#-b_Z^dK
zs#V81O>X2)V*i-hHnUf9+ZMJhZCly4wyi{l{<XGXn5z=a7=7x0n49d5k8Jy~ZD-i_
z6We}j+uJ5PU*vqLK}xnM`6}mYZDPT_1>fY%lqfG)x8U2H@5B!a7BBcd=ZBnL1@jdA
znDbN4?;_ZopL2f6`8DUa+_*G#xX@ZU8Qa1{Y)zgViRM3Z{u0A4=vf#+EL{3KH#+}6
z5&;%BMlI>gvR9nKT-S$!ZnoduwsXwBeuczA!CZyOIg!>R=*?ZAsu>Z2s7Z>@yan?W
z^eb4fpm#x^f&~it7Uql^1)AqCP%PjG%gn{Nbkd8|SB1P6Dp<Inf5D;!7Y}t7DGcq4
zxy`iLBFxcYiE;pn11wRnWWj)ffdxwyEUgt4tW>Z}!LkL*7pzdA+m<U#)}K^0ZOWfA
z@uoOR8I{{jQhVisRSIPVu$nrSol3Y%Z`Z4Jg@pPDMF$lOE?Bc*Siz8j)eF`r7^;y&
zXPT5xj7SnP-~Wu^26+!>t%9`+h8K(|%=t57Q$l-%Y(^I5Rll0XZI3akFdSHk0lHzm
zg7phdE;yxNgMtkU_AJ<|V55SK3q}`=DcGc7(}K+kHZM%Ft{!*lQHJ4cQJ4_Cv=POs
zwk+7HVBYl|sj^!Oe{}4jZMU`UcDB{U?QLg=f*ogH*~xa~a@@IKmx5gjcGDIsCw7EM
z0#U)cnCI>VV+-~u4678SDD)=87^gMbJVQZj?}B{_4lX#PVBdoMwDy7nwdC%O>H_vJ
zkX0-1fyhC2hg80U3M7R$u+fJ@3l1wdyx@q!NO|qG7?GTBM`~yLI0q`3;R)xc!l)%j
zYb$Y%u@gSlUeU$lZ0C5}o=|Y&?CU2L<^{*P;nafD3N9Du3QjLLqu{)P@dalVoK<j6
z!MO!@OmxmJPz*&jhzupg>?HJ6_Nb{!_ddVi0%4<WD3CI&n5m|5VZlX(F^5G*AITN3
z^JaBQKwsxlJAuozSx1?tUs-Tf!Hoqs6<l3#O~LgAHwbT)Brw#uRx9e^T&Lv=Glv+o
zl(ZEalt)*J*3AXCXl?~}7Tj8x6r<Zk{%<?C*+;0>Ug#~X7U!34CdKBi!not^wylh1
z0rS3s`wN^BN**YfP*4@r1rtT81yi*z1(ORNEO?^e$%2Op9u`FxJYJxT%}2EFIM?<v
zp0r0b0Xsw04r}k^*nDn^^Hjmp1yc&1DU8mb+A%S3WtBg3mN5Y31e19(t>C$WmxMe8
z(?!k&FBH637&a?nQ~|Q~TF9oqOTp8FUMYCB;I)F+#XW2qssJk>%R+yn;9c<$>*0K}
z;H|=(((|^3hH(2Gix`p=?^(=zzu*H4ijG){c)RVp1)lxt+cvOmXxqrPIs;!f>ys3u
z_Ai-jbtShq6t*pGd*oA2Q_yNt3VtZ)D)_MA^MWr5J`$rV__W}&f*Im<mcz)Zy47+>
zdDo4!ox^0F5444xUlx2-FjK6);A^`Ol?Hqxo?zoj0;9ksj-<|amP|x|O2GTE;3q-8
z;Ln1e3w|m1t>E{9Uj-8#3xBOq&lDqGTh#iY;r2ojy?ptvg1-y?Dfm~NJ&YkE@LoU3
znI#11W-6gX*D{TFmv^+Jd&zPo%a_bi(xaqb$$}+4OXe(@ucUX$TqSdt^eUOBMC9|Q
zeZ!Z6u=|a1<}J<Pz2b7(RxP<t$^0b?l=Ll)tK_%U9MPSWZRO8vV)9_@GS*qBWZ{y<
zOO_~EM7NbJTC!Ma&MH)#^u@`>rjtuqZh7S;iWe<evQ)`3CCiq^V=wX)dMsTUEmTVw
zKCdH*rjwcXX`K~HRxBA+vQEiLB`cQ<Em^Z<m6BCURx25xiAmknp~QN3!@SPG5|v?!
zr3)s5^s5qqO2hGn*j6OJdTC-MYuHxAIILtX{ZultG+>lrs5GawONQI~zne8{$}Ywq
zBF#!R<_4pjbxYPO*|=nrlJ!eADA}-NqtYA!stHINR35u*SkaM^btS<!E!nJO^O7y}
zvDMAWX;EZWn4laUm3VKdp_I!Z0P1TuXWNqPN@kXPTe5x04&neM6H0b0*-1+)IjdxJ
z$(WL(OO7eoxn!4;gGvrA*|lW1l6^|{E!n+fY{{M_duc#LeoMpj#+4=yL9rxV5ee(c
z-lbtag1N59e%w#6?PCsvmzK4^ki=d;pya^P$R^EDw;fV)XvtwEhnFZtM<P{!xl6WE
zX<h<#WN8u_6*SbaTGvsUk5x^NEjg~_<dRcLjxRZ(<iwJbN>c_d)#6;4pURGS*vNOO
z_bT*0RpVPV<22jRb$vbE_RlDdIVrp2?2>azt}eNz<lK_;N-i$Bq-4AhspP_vi%Mqv
z?p&bG6l0=l3Eiy_RCeV8uNvFr(vr(cE-$&FG$&gM0mQpBVR<s;Tb4ArvgE4LXoi<)
zzt-Z~lIu$DD!IGl`jQ(;ZY;T}G;ffXz?F1R5cB4eTS{)%n7y1^E!=Js0$YI0+25IH
zPrSLqUca+MiK)`2=9TAPSF{%;_glo%c@FX<Ya_CcO~QcItCz!0ESXf|mUx<N$%BGJ
z$#mgu$-^a2mrN;nq~y_($4VYAjUF{>kXepA9#52}yhtw)5sIEJr=rD*r%Dq;(dwQl
znOgF!ki=e>PA+jKH_`7(YaeC;c@oOcm%LE&X31M6FACpu;E#y6G@jd+^hCLUN)tuW
z=QYi60p|_v_+Y~TU$?X-H@NgDQR3Sr@07e>@_}%>_y4f*UHjbkES3rx{+epsQxX#$
z(S_wgeo0W$mUNYbdZ<>XeJP1c62ZSD6X#jetn{LBj(eXuLERw9WW&eGlB%RGX)Lc0
zf@!nl;S?==G1wF+sjTTkO|s;(lFv&%wv(Ar@`<Qh2}M$GdKf>6@>o7CO<1A7>VHeV
zEcv?R8|nX+ghk78M(Ls2P{oWkRynqf>3k<77Zz1qUGalhtN3Ka5*0s{{45SxF<-?m
zCBK&ZRq}VqZzaErluG{81Z+mJ^cj)T2Rf&^mvzjFR7?I9_pX?yVpeGmY?O;Y@hPW*
z%CI|mW5oKpRfYj}x9uDiJ?u|CZ9AuJ=d$hGwv}kpAC;4%XURI#>o$5<^r={|Vxfxp
zD;B8eThXsF=ke;E1D-T$kM{He`wm}$XyJ-QD*9I}Y6pC#yK&+fo6#P*vslIGiDp*f
zHcM74RWYbyaK+LU%T%mfu}a0V70XpDU$KIo)ytf|s7ENr%vTsr{)!5Dq*tnp5+XRu
zT3NMXHLb2<V8!P)M^~-}#S``BPyt^`>>ItDAr-4vtW~jg#TpeuE7q(SR+;ljl+v)q
zU&i^bkhH=9-~VLJaUHJ7SB$I}RhiN@@dTxnsswMH%J9JXt=6}0WmwR973)`QP_bdf
zz7_jbY-AU{Yh^^t#<ssn#ikXTRcu}{#$MT?V#|shDt4^cN^7aurea(BlW0>SObJe^
zT$XowyNc~AlN)w`4H<|KcCxo=n?~!=DRZ4<woK_XJKO8K*!IkU#%;2jox|?7)nvw2
z>`^h!e%-TT?}~jY_Nq92C+9OsL%ECZqW@0L;yW3wcz=7_#kM`5;=qc7Dh{qV&t5sC
z;?Rl{D^997tm5#BV=9iVIHKanilZuywzvKNUCVJ5$J<{|_&@W%>|ygzt>Wa0Q!37=
zIJ4qZd)sN6p}r0@Zy47-|8LB*D$cGrr{dhoRC)hDSp7ekXw30;g!3ydu$>DlF0!5f
zp7r0Dm)I+p&c1$G#pM-O*soXW5txUnT}c#Cac#w86^~b3S8;vCJ;H~I8!B$BxV7Ro
zfnwIIn<{RuxJ5VHLs3MSa%CSr*toxLuehV)u8O-W?yQVBR#lF>i&3Q{Ri#RaTfR2X
zXzBM=++Q)d;=zgsDkfA+te7N<(5sYs84;;!Q~gEyhUnts`<#a=9<F$#;?WAF--r>(
zxhgeATuzFR#JYs+6BSQZyi)P1uv$n}F}>pXiYXP(Xfnd*ikG`Pay(8Ir|RZBtHoOB
zFC#^|iWE)(S*-GfiWe(h(#_%wKN|_96X!&9dW-12*3BiU@mj^}6=6kG@rDSk!WYx1
zcuV+cD=0Pjw}mZMLwKh$`p>%+@7d1#w*A1i9oxFL^=zv<#ZLq@5v%~KkWgHaRHPMI
zh0ger+fcH5#%NPABRD8BB@t6rRKk|eIQKK^iblKh5!Zc0ThXN*Z@Hr7Lv4D+ybbd;
ze5|1=&Z;@P=97v~#i?or*L)@>Q!!V~+%;cRd|B~l#a|U)ReW9XqgZ;yHx)B0z89<4
zgL)g@b?9!+w-w*n^<H?CqkKilbTM10#A5G1i}_dlTJc+Dd^>WR$OMq$q3rbEwOPZ>
ztF`{HbS;J>Ui5dxKNa0-y4U<G=3lAO4{B3pA|IWko>=$CLrwj~y$=`zVUC&}H9c$Q
ztW6czx-$&N7Url*NSRlgjc~eu>h!9ar)JTb#dJ^2d^LS*`qlKV=~FX*%>p%V4r9(W
zjj)!0s0Ny7%j@>s{sn6ms#&;Zk=kS$i$bM2bhj_)l*{pvzE1zzl(dL67Oz>NX4#tM
zYL={7s%Gh$Woq=oBiZIUE$2HOlenj`Tcx+?{^e^{s9CXQC5=DaSVl5=g#0VlhS2mB
zk<2Q#ziMsBVKv*TGoUsYHPC*QK|Q2q^_snE_O4l@W@yc}`l)8knqf7Y)@)X@R?XTq
z!)r$9as7<La~GQmC_rgNBWp(0tW%pJg2HMe>((aKYCYSoZ`%!QyP<72vhBvU-Nd%K
zStsUgUb98bmNi=mCIbwm>!p_3Q<2ZswXv<XQE<ODbSLkVsA+ovr)IaB-D`HN*{Nns
z&CWHWYYtH9t|B;+xi;RtzOAKN;~{64nq4(pJ+7Bg@5k2cQ8TV)&)PU)1Tl%}H&th3
zrKfkFi3{&jvv18YHOJQMr`u`{sX0`Ss5!9apqhhg^j0b1s^V6fvj}`^`!eMd-sCXB
zzvif#qic?+`Qdd_v!LBMQqZ=U!?K;_b{6B(ML8vot2w^rl$uj(PN+Gt=A@dFYeWmW
z;U;^0ih>B*YZ-Cc#M5d{uQ{XUObuxHq!P4-ePTQ|LK0aY;vwhMoLlpD%{w*c)r_yX
zx8}Z@^J^}sxu)jYnhR?#5`NZPUUPBHCEDm&vo5XqN0kL~j_Dl)z0CV_j~l=hHCNVL
zRdaQ1a&KhE3FUOWtuRyB6e<Q60$f*fea-DPchuZab7RddHMiE>WD)OXA?;H}&ry1V
zFkjlmZ9;qBQEj!Z{AjP=S#wv--8J`!czZgJzvBovLOk&<DF8x=ouA|Wng?p8)I3u&
zp=M&uBQ=lKOsbh&^H9yhB5Hd^;)68`!E9*tQthmi7V-RT20M?{JYMru&C@kH`|b&`
zf_+Tl{gb+)0FXkuJxu<mLT0-EnP-_=^K8uvH80jot9h<wdd>5-Iqyhm;WAnU3Q@Em
zFJt7<ZJn2DUaomV%%SEL5r|TYYc`e}P^4sK$94Uj*DZx=dIE@?z}m#OgkAP!YJ$eQ
zHSg7YE_Pb;e$59pMNL`Lsc~zfnz+WR@oR#butr7ALPGg$B~rx?h0hX*lY2NxO<I$Q
z4b~>MqKLNY!gOMo3dc0tk%LSDSEaw#d{pysO(R;a>8klq&z)|<H&XBAq*W2eJ-ayj
zUG1E3E;GdZYd#g*uX$^<d7KW&5=T`Lgi<4n`EaW9WzAPLe+!XnzOMPE=GU6vYG&4a
zTk~_xFIvt(=ewGpYU7mqUaZVU#(%IF_@h{y{n|&4-@%403%hh~fZ}Vv*ZfiQXU$(4
zHZmMfM5MhF{>yBU#Vyn9-<nz4(}tc6P6G|y8oD>;a31+F#&t8PDMDZ|e3?9RG{({w
zBbu{eu7+L>^E75|b2o;0E*6<HIYn`XW6x(C5%czUdN=fGc(viRhWQ&7XgHwZz=pmJ
z{TkM87~Zg8!$J+KG_2aNaKj=EOEoOr(7$2Ph9w%7Y>e8x=?BhYjj3@K7#G(BPI4AM
z&XFrj2UT@D5Lsc%G%VY&Lc@v;%jt1C#$4QHnBi2*Yh7{(pX97$m-dv7s#cD1V_;G&
z<mj_n!+?g>8`fwT*f6MJaKjME@%xMsefwYb=myJw6r__+duYR&4Z|ANYEV^+Os9XQ
znE;szh-55pqI$Ps&WMJQ4PzR1ZWz_DPQ$hWRKvOr>osiMuuWsE*Yz7VY)lAjgT}Cw
z+ib<eMvX~k(9Ab(*yO+E+jcYCZf;xsx<$j5w!hWvE8><C{ofBTDGi#>_6<8U?AWkV
zV=O^!qVdxXch))E{5rZp4rj4?q0lZ3yEg3Auy@054ZAmtZP=q>YGa(?vUFs_iY<r?
z$2I>uiEdBr&T$63`!wv^uwTRe78CRc6{IWGP2`}zh|+~=2Q?hraACtm4Tm%w+Hgw4
zsSSr|7aERhIKJVCh9et}X*jkqo`>n*7$xK=3znlB<ULc?uJn`1qs<wuLa-AWPHZ@-
z;pE1=ra>>h(R0PnbbRh9-Az&F{!comHJsjXZo_#EXEdDIa8|?Fjq%h8+Tjqxy``+4
zBjg<CY<R3mwLQXS&yH_6zu^LrgDsfabD)vqVifv%al<7IH#gkUaB0J34c7`L4VO1u
z(QsA6)q33f&XtX+iV}N~CssUMwE691bKvAP+7wGE*EihIaAU(w4VAP_8$g#8Dg2Zd
z!tY~_1iZE3wuZYK?h%qS+|h8SK+&M{|5q7gP*L}bDy0mF1?kmV_ligx?iXq`rus|~
zI-O#7=1`VDm<fXLB<E1O;}aVuS-?(icu>%2c(~zt?TF~NG3wTn4Nuw5qYaPQ&f~V#
zPfys63WA<)j68bQwo`2TjBTgdRxdr&uhVS*IonSEKi6LnYRNyQ5-{6&so~|>S6;E5
z?fN*cH@qQAY#Gw>X2V+z|1|vD@OHyHnnT0)4evI**U;7QVZ-}EgN9CnD+s)4;?yF>
zV?QxUi_Vnr#A=2ZbIfmyh88r0;sy<IW3;kLtVzy!`TrYIdqw@sc5>Sm;&rpHFQ?)!
zdw=uazij)*V~$4nNKB()hRCfkCxOU|rDAg>Jm{t2ihF)4lo;-Oro}1?$fC6V@<qd!
zv+4IM+xgnI-!#m$oo{FVsu;%)4L>&grg0j6YWTU~mxf=3iaksnx|p6~XVU%j(%7?Y
z7TF)-nGJt6{H^&v=*VBKlMOU6m5PgT>GM)AXO@_MOW&4$EwprN>D4k%OZS#JTIOn*
zyEPf4Jz7&d*t0c?t9EwI)~sThjw0`8vI0bRI-N-jVcwScT6(wiX-$|?2TAD#VQNLQ
z^5oConqv+0#|2sx2iaN&-nJ~%vO>#>Eep3S($c?W(H7}}Qqq(vxvxTU`j-vn>Wts<
z;{Pp6=!zA5OWMv-Elbb7vP{dew!fThm$$71neJbyW#yKEErVKCX<4;3C-ka@Vzt)b
zylxoKnsD2@DrmJnXNArsZp128fw+3h8ZEoD?AkK4WzCk2TQ+GK*0NU1x-ILqtlcua
zWmL;Lt&v&coFe}bEhAgQ&&2`s2$`G<k1`0UQ%Tov*`Q^^mW^7IE~_Yy%w(yr+QHNA
zHu|>uo3?D$vR%veEt|J&(Xvg;wk=z>Y}J~2bEEDGo$Qe*Tel_;vyTpEu$rwNC&g@s
zmK|GmY8l;{cScAiN=uP5P+8VvT9zAcrYcdmb8Fs^rT%U$yK9$Q4sRLTvPaAQEeEuW
zYuQudx9r=RtSSw@mjE)>*}FAGg*xL%SF~mO2_`+ArZE+Tg6e@<d&|KshuDpf1}Lwr
zuw`Oj!%HPu4z<8vRE)Rf$d=<;6=iUgmez7i%dss=lH5daQ(bl+D~NkJI}JBck`r1^
zY&p5*l$MiPb99oRClhi%d-D0ItznY#jYt;~d`{CO1>}}9Th3~^pyk4rv+a~L?eVsA
zj&0Ai?Rl+{LHbGU`S!|x+jmjRB`ufQUoW=TRrapi{`>W^*>_$k)M{DmLl*y#t6Q$o
z^)5zsac#?WEi+rbZMnYXhL))<&$isya#PFXmIqsIZn>r9&X&7cZf&`(<@T041bJ0!
z+LArtq%w0ROg5rfFuc3vo|gMt9uRK#H1Fz_+I+8YMj->yvR%alO~4*{uj-76Et9mB
z_KZ_q)NK#7Jlyg`%abjSv^?7KSj*$Bfu{tev}K*^rBouN?J54-N3TL|dAemv%QHfZ
zdH<KcB+sWt6JkhEs_K7Q%X2MNOWiWP<@uICY^3FdmKVi3go-UMY3(CSl8^kf3KeZI
zYu2kRueC;b6A6epye<+G$8LE;BB151mbY8pZ~4H&`5oK7Yuo?e|DIj7z@i=L*z2CK
zS1&pFKlkXX2G^>imbj&8DaCEX8BR9VlcGGSeW*sr?7wn5g1#y=qvLbs@lXW6X=z(N
zY5BCJOU|E`k6J!%(OTp>KEYO@&JY4vJl{)}uZ^pI*7AAFS1n(Q-O07m$1MDdmM{N%
zkbRkp*87d6VgYt-ThsJi%lG1_UG(YVhn62(X36{0#ZN6ixBSuar)Z?**OuQ}e%Hp$
zFfkXkipc+`!1wKC_T?{aXv;q>|F)*mN?Q8*yP6s()tM>}L<g8WH_)MrZe7gP#oS$V
z?_!QFdUVmV%edNfc*T4Zjfg1}Z5-*$*=3T+cd(gPy}FpEi+Q`4ugg%4bP@qUq_<E%
z6PWw>BXjoP{9P>2#mZf*(na4c`gO5X7fW}sU>6H@v1k{Ibs6JM8E!hYZ{aQ$=`z|#
z|1M(*_O<To#k-8Mtv7lv*~JoF#(#do!Di+cSf|P|U8*H##V%IrGPR$}=_xk2uzZ)1
z6f1NYpN2l-22zTI15#5JP+ql*)w)={i#56!(8a(m26ZvG%jk!_?m_yY#+T^P(E&rc
zOhS?Pr1Zm~U98!~+L~LJ$pw9B4QE)FInGx|wN@7@hZMAhz3Rw%5{nzv#X4P_-NiXw
z{~uLn0d-aJ{r&TyR1{ILy9*G+z!qB+6+~3R?(S~I?(RZC6a)hmu~8JT!LEC{<Jv9n
zcg7!U{ol3jnl;aPPR#6@U9*R+TWr(fKuxyAwk@`6v1g0DS`2KleT!XM?Al_77CW}s
zsm0DM6Bm|*msq=PfbrH!K7Sx0{M^~C#h?~@v=}S^>T`A^QZ{DTecYmCEhtA`WYPuq
zZZV|Ael7NIF|@@#E%t3OTyO4ScAE}sp>1@_*@S^+qDetfkWr5x&|*Z3Q7uNd7}-J|
zQI#?f%-^?$xn3($7n^I=2a6I~oY>-|7KaK-Eskz+OpC)?9MR&)7Du(r#)q|iqoRxK
zCB`MprFDx!j%{&Vi{nLLEt5sBSet%Y)C5&66B?o1O((ZFMa0nJ+!m(_ye-abaaIfY
z6VB|<=`Eh$&^g0mS;JFSx!!!XK7FvMr78NnTw&i9=eM|^#f2>sFE&AE`Q<R0w&Id{
zN-3k4w79gz+!pg%T-M_97I(L}r^T2SSG2gb#ceIFY;jeKn<d6urj(pi>#H^E&7Et6
zMC}4@8K3-hwpHhP+quEEH`?~5|N6EZx12>XrX(<LZ*fP9J6qf(^6PG#<RTt%u7sEz
zU#eXrTjt&t_qCYQ;=LC43vn%GwU{lIQ62cloCifqR-ip(hw*TWM_P<+@o0<3TD)p6
zj<fBvwjJN%@fH(WJkjDQdqqf;qVi;mi6T7hbyd=`Xmx_wC?`M9<Q7vz-WwSI>eDTr
z5l$@^46>B)oPEPoVWGtfEnaLf{r|jkn)vkpf9K0BUitsu_L{x_^%ifmc(cWf7Bm0P
z8{TU1_W%EecUrvr|G(k(5yspTX2l)vxA>sN$1Of-@u6g<s{3|!K9az(?0=4xSDNfG
z-<!bV?;V^^TYT1{tIMJ;pSSp;#UCyHlpJgERf}(0eB0vd7GjD`JQI_B+iJh^pJ)Ti
zcj6sOc&!$xz;1Ogw}p7$v#oF2z_y`nBiqKdO(X#ANs(ELyhYKXlvHo=bBoGCKt%O}
zeSdA+#<p#-m|fG={%EhL^Na2Lw&2fSZAV0|fBkOzBDTL;{4Kb(_*boC)(B<UDPADw
zgQ5)c#Uq^^$2Hz#xtMV2;2K|(ejRP6lWjY@bXjnHA=_Elwu`uCXS!})%%z*lQZ7ro
zEbh|XWeJxhU6Rb%QVxO1CZD{AYoxl&5UsgAT@zyV<VNV?EaS4Q%W^KuyV5hwBCdNR
z5CkRpjkR@d<t3e!Tvm2@$z{6BDlV(K9OZJf%W5vGyKL{WgUcE&Yr6Dz+1O<*m$mf?
zm);to%epS>xvcM+tOL13wA<yJC!7sjv%u*q@|-9RC9wB#+0dn*%SJAJU2~{`SWMzq
zd-p<_z%mfDO<=aM<~DKJ)MYD|tz9<Lyj-?$*;2EX=I@%l$&x~A*`yJDuIykA>yh@m
zjVq@p+qn#MO~g%Rj$SByNg!+1ayp4bcXZjwWthvpE<3yI;xbqxaoN>nH<v*!yX$jy
ziIE#$hl~husu;6}Yu4rKY-P5+T=sSu>ave(@}D)5A+E8%1blfUBmm_H(~z{QWw^_J
zg1Me`+27>=mr*XG?JOjYMrgFUSy@1Ww$_*Tolc*d*ujCW(ccbojRie*S?6w?LtPGY
zIl|>g&C50E9E!53bc4RA1Q>ZF^ie4uO5!@k<ye>NU2bqW&gFQQ^IXmsB3w>%Im6{l
zmy=vhb~(-EbeH#f7)m%rh*qFe1h8O(l2#(cy9I4IqR(<U+vOaWb6xa_z3r(4+Ki)o
z10_@_D5Iw?aJkTBjLQ`+7r9*Qa;eK@BD{?q?bZ<rE^(2QM7*r{$mOnVaKj)kSXp<a
z%T+Gdx?JZPgZDox=4zK~gi2e#S_fyyhSGQxk?H;!H%j?;dBEjCmz!N~ak<mwE|*(f
zZgaWa<qp@Bzm`&=S1BUd=|z+AwdN=z{O@+T$K_s^`&=WFjh?I%F3xi9ca4gr4FX!V
z^-+oFhg=?ZdE88yM_k6bJnHh8i{2)ZmH<?xV)=x%+Kv;Z?CBNbMM&0WdBWvMmq{*9
zxu&RvREvo&Kg={X)L2P=mnp6}i|wwL&6R1Qd?8ETAq#);?6bD>oXb?(dET}!*jAu^
z(Pi3#{<iNsFT1?r(%GYn$Ez-{xwKqdm)Bk1aQVRHLzg#QX1KiTGRx&Hm$zMJy1e5W
zElX!)s5q7U%v!$3DF1nwspdV~WsYb=H(0QUv?SGc*1k)t`^kQh!~Y|fk0sk(zHs@(
zWv+N%v+m$1+AAOkS#tGjA^z0LvCqU`wieTuE?>EP>++pMib6$_Bu_ivNSIhhf!TMU
z5Lg%Id;4F}qy)(Fl4CBu%g+L)OW+a;dM>$3<Pu8;x}+lS%}tC|EH5@+GICzEd+4O#
z6(R<g#-%L^)S*AGIhCNdk5fyY*vbY{^Q7DSVE_D4cUp_-CktVbfp&2J>hhb*zb^A#
zes}r9<!_gNT>f<VOC#@KR14A4MfPwp$!g{B>z7Y5bzdD1JUV)G@{IemgJ){nO1uoS
z+O@=y%sNG{r1LD~v9QNM9tV3Y;?dP(fXC(@i+U{Pv9!lB9^E_^_vq=dl*i47(cMGY
zK88<qr*(cV>6vIk58G;vxBh7~Ns+zu^JP7j^H|<v1<#bTlL9=%GYiLx9xHkD^5|_}
zva-iIo>^*F@mSSkHG5GnU(;S(-L`Aki&_MA+gkR@+V+aRwXW@~x8SMuZD#}9>V8pg
zACLZ?VZ9CQ#l8#f>}NY0Ex2=I+u3Bne>b(A%@+K33y&>5_Vd`^V=IrXJ@)k&?y-%>
zwjMishOkA7+j;EdnKfvjeQ^5)Z`;9kc3ki_ahwdgM^qrrV^@#eJO*h}9(#KXvG?p@
z+dXYNc)?SG$zK1bKh*a3`9D{NE$HjeF*&<V@l9o?13X4}j1&rl=nf|TM0V4|bIkd$
z8mAa%w8w!KK5_tRNQZbF>T#OK=^lp(-5$qz9Pe?2$B`aKc^oaobvF`8$$<(mX&DmL
z9V7Vka*nlgA9{k*)<WrVqQ@y7r+S7-C6-U}jNNy#UT9+?G7}^-g;1>~8rT^gXL?-V
zaiPaqB3+O3JkIx!wW3gn9O>uS2hSDd^fk%J(%VH;mwszZs*5}>_PE63QqP>>s5C86
zpgc=jXq2gPnTPZNP3>}zF`_Z8IGz!kS86;u{L!{odt75X*LvJ&JNnmk9@l%^VE>d4
zN`q85<|g~+&9+teQn%gaal6NoAw5Fw@VL|C6Q8+0cX{0Hv6;^RpL;y+^@u!TkNZ6C
z_jt?WZI1^$9`tz5W2(nP9uIqr^BC{(h#1P_QIE$g)^1IWL8m1^%kJ(SjJhkBJnk{U
zW0J>H9#42&r^*i=N*vN6F57mZB?du2Y5$Wwrii<jakPetik`NRlmh&W$FrWv{9nA2
zlX>Piq31nb@OVXn-Qz`%X&x_mO!v%LIdl6MsOp7M7+w~f?Ewd3tIc%&i^uC8Z+N^Z
zz}otRWq-5%Ru0k`o(V~d6D8#oSe)tcj>l(u+~Zx3S&~j3A9~F8m?K<^k34=@$Pk8%
zbUDgo`%86HwLN*BKl1oku=SYhnH_L*hdEEmB3RNym*z=8^)(qjpL!-oR}xase&O+@
z$9GEa(M6B1J-+eyR#c6l8MOk1$WnTvXjqeKdANGBN9dUfGoGfS^rt!a;sVtGS<c}4
z^Cuhym||^e>*FLIslMy8v`^-dd*IW-r|>8}{`C0Eqw=UVBaa`&>B?;JSg&-xSkh?=
zu$BvSn5oqDpFERpts}+78b5pd;_<7;Zys7){;&Z2U7~oB@tI3i*!yKi2VVc}@sG#9
z9`il3tL5}d_|$jgMU;gurA4ZR<8zhWUDDB~lh2|)i}`f+>Eg49PgkFXeDW8$PrH)_
zIt%+qualERb6iE`aiopdv!%NEEbg;}&yqgfeG_)qx;$=kqnC<vCFFbf<}`Kzv!`#i
z8*5Thu$S>!)@L1`b$yoeS>9(ApH+QU@LADkC7+dj;{}yhP1zl)7Oqg{;ZkVjyYA$y
z=Ciub8a`|KW>=Twq;zRzhOgxtt6aysC;?+_-`Hp}G{nX0`K<5L&u1f_4Sag}^!DlF
zn{a@vZ_VyBMf}G(8~R3)X#MSLpWSJasixB3XJemDd^Yt>1tHlrV)K`0AxDrDQR!y-
z%H}>>_+0OEgU^;eTlpO6bCl24KHK>0>oeSETc7QG_VU@=XQ0paK0EsC<g<g%KBqWK
zzG6a$0&jPfj`2-`*0+<K!M?F%ck$WPXE&ciIyi%TQ+sL;pWS_w11bNHIP}uJomW?O
z_VkUsl0KvH4DlJN*ZK_eO?+Q!x!!h=J#bAMqBUzt=KXy3_c_q#AR)zPgwH6S(LN&u
z(nXCd)uwOJ()-p{QvUo7I0Ka*u3`8b=5x5v{fcv_#@5jU!F8KPE|o(`BS-iIPZ%%L
z<;wr}ImYLFp9_4B^*PSxOrNuSqu3wsbAr!_zNvw*k~Pf~Gt%Hs(sh-9_BqApRKeWm
zbf5blWWbt^`0H@T>2M%t_&jBGm9u@$@j2J$JPm0vL)AKu=Fi>C3-`1+kYbz*eJ=93
zQl##4vCkzwm-~$I(V;e7N14t0ms)gRW?RV$>E~DY%zn>Q>QK?(*M%3KYkaQtxz6XK
zu}0urwSprNq~%HKieM{VxY6e(pXYq0`rPbui_fDzkNMo{bDPh-KKJ?D?sJD^zR%sh
zQO>2ANF}&akg@fG<a?KNQr^ft!kP`!-0$;%&%+v+#xu;MKs=}^9B+*1hkU~e5^jpt
zX~i7t^WyJDGDy;n^BM0m(Pxs+<31C7p74263~m!$<c?FkUdDyiDdnXoRQHt6WS=QM
zPm9#M80$%8C$&K6{%3r1_?JqN2nf$w_=x?V_j$qREuXjbQE{Blt3I#!yyP?8=VhN)
z)N!2kW|^EQp;FRj@=Ozb(`NJ6ecteS(`Sab-sT92b5*BNCclK6XiTu3>GO^_(dT`i
zcYS7Q?mlyTBfAtOSK)e{wYOeZlUgH)N!oni^P%wK^RZy{mO1iFZdh3d(kKKdsT?AV
zdFFAB4LB~~GoR0W)(TiV;0y7Z&p#qUpRatrmXwyn^Z7<{%*XTbeZCX2d|E!PB$8-j
zyrc8}jGuO*BkM`l#NC~pK>X;F_@uh$dy~2liM4TJ3$!t|rk0Gj@jaaTXBz%0d`h36
ze17(+d}^OYLee)U5J~8XJ>_nd*ZK#^<mJp<ezZ&>i7ll6;`6J|A3lHj{3aPP&=7_W
z@AzH9$HuTE2V^@)I_)vh`OD{TI|lKor15-TC-AX&K=%LwIs_~fuy8=ffKCCO1G)q#
zny<=HGP^W>1=dxpPl(e3y+}aUfW-p31uPn%3=O$MWs++#)rzA$TLDLvvNXsg0+tL|
zCScis9sxZAmI_!p;FX@v)>BQwn`R`FS=6oomh-!_T)^@HD+a6-utH#tNzw|U?Espr
zz`Jt5DgoM5wMJlFHvy~L&T4^SghQ+kTvHa@v;?ndAD7r)Ct%%xT>^FuSTA7xfXxC1
z1Z<$E0{R7P6wo`MPr!x&eFNiG-QyX<O>z|9JjQvfhdI<h`ON(THV)WCuMG_LJ1Px(
ztlgX6*?D26BUmYUa`S*K0=5m<E?~=mtpc_V*d{RUVjWrXpJ6^xDOfh-H0WbzV8HeP
zI|S?)7*DwT-qJ?4TE^Ka;P8otq%WE6?5xo$SE09Y_3RcfDBysA5dpgg>=Cd}z_5V9
z0ec1v2^bo%mr&Ei8S<3L`Po~yNg($&s1X(E<>D{pi|!jRJYc_o{R2h?=Fk}-Lib3w
z(H8#Eh0$0>ntyS4z!3qX0}c#0B;ZiNN7&bSTfLow1GBJ7;A_FsS0pVD6P9Nh1w&@0
z9K}Zl92IbMz%hY2jYy=ZF&u^?2xt$ro)s967X|~~4wxBmq5u_ed%zt5CkLDoa9P0R
z0jCC>7I1#R1p%iAoDpz#z&Qch`6bDDrtbO6kn~vrciY_iH$Qf^T+h_oIXB=u!Pds#
zMM4(_ToiCgz@-A9O1gbuf}0lyMwyXyESA)<Vq!_r?U;Zo0&WbrDd5V0s{*bKxX#js
z){(14rHeV&1V-@cCt|)nFe|kdRynLRuN#8@Rr|R);Ff?}18x(3ZONBO_69j;q&P_)
z%B^u{z+C~)1U#$p2iy}dF<?@_y?RN&0|5^T>020Spk?TO`%x(a4+T6NP%rL0DJ%p=
zKRm~p*kc!r>d}D57WBv2&iH`GZD)dQpIGo;<%dYwmT&N>fXRU(i98(`AGPqM$%^=u
z53dljB$6&Z7cf=)8}Mqt^8qgeOb>Y3a)j3X7XzkQc#2}>ka<Z2GuoKda>{MKs7bKY
zX7<+tUJrO9;LX6;U+d}g=f1{)HX|@en4%3i9Nw~H6Z@+e-8%vA2IK)nz^s7TlGTEC
zz?^{h0zMA-B;fsk4+1_6_(+4FX#5*;KdQ{^X0~*gh~$O=&fI``lKJ{*z^4JCL*+%t
z=^<Jb<&Pb1c5AB8kbH4p1$-S421Ehh1biFd1^A-v-p+Sos8LQU;Cszt!G0n!rW=^r
zymIy`ycmdIo-##X1O!=LaX=D~24o^d<ui0~R@vP6c@)Ia?@g7URB6h9D&XIM`NC;H
z6Yz7uFQV{(9|C?1_(>F)nb4S0uO$g3I<(tSkIP;2Yrt;-e+B#<@Vn&s+m5jCXJ9-n
zf9T@U&eA$$+>-Y{hI!3$pygQq?I&MWhz7lI$RZ&fLOO<Y30WvK-f2kyp}SLPl*!H^
zQv3#YGkUmEUZ;$8o_Npc8nS4};vwBbbE@xRA>Bf>D_q}Fg?81W){4JoFOyTMf)7iC
zrWWGDI;<^ZsgOYtyGJY?vP{UtkVzrShAbCyRLIdG%ZIEGvUSKdAuEQg6w*7SPsqw4
ztAwl-vUbR-A*+R~9<oMgiY>@)l_yhdqOkj#A#z+OF=;t#MXnRFZpa29y+Y%6RjEdy
zX}ys3L&G)y*#$4#kiAYy6-#ay(l=z2kWEASg>0m^g=`!e%U8iiC1Cu=^)ff~HYrG(
zg$xMUB4o>uEA}yKrApOpuIbn_=|nAB8Mg|J|5lLvWPr16$aW#aL-q?97_xoH9wCE6
zb_m%qWH$jPWT%jePGRSeT|%P)O1Bqt?P_r$7>aa-2!XedOC&T&j4EQFx$GITSI9mg
z!$N~8Nu<3)hJ*|if~-O)K_{NlFto<WH!B9;SHrgE#{MA(gd7rbXvm0=ks${Pupy%a
zZMia(+1uY49df)#+Hq8<+5g_;6dfFLZeq&vOZ*-tvI#jN<Vb<b)+><zP#+SYl$oz^
zgJM9(gd7`kO~|z&$LVb$=Z9Pnaze<7A!ml1B{~T?Ipoxk)AZlz%H=Z~LdC+Guf}hH
z-_<!?lrxJnLbJN*{gPm3hn%Cqgq)`V*bFEQPapk9sk|MG-&N}6g@S6x<soB2E)KaQ
z<kFDKgsE<(Hse8JmQ{=xS4?3Wm5Nf?hmb2nt_rz2G+MgsWkF1e&{3Z8Bq%T>KDsXC
z`jGoV?hm;k<VJaQLhcN?DdgsmTSIQMWVUc0BVKL^jl)40lrw7X1n2e;B@fTA>HT+w
z+#PaH$h|^n<Y;r~fIiNT^Nb;*TGoQF*!F>t2SXkWc`W3ikcUGa2^kxjjO8y*H7mF@
z5RFjKmewR4U|h&}eIn#Zy}YyYcxd9_6Gu1`^q?v)*_ftuW2Ih5y%8fk6*4*Gw~*gM
zri45l@_EP?A<u+78!|KGosj23riQ#4@><CAAunilA=5*XSMZ{4v!{OR<<s<uo<;yF
zvrhKo%OPLC=)5ANTiZ|+_<G12Au~eW3Q-+~J6-3^kdKrGU`O@NOC|+Z%=orw!&V}F
zH)K}Ghq@<ZcF3HN_d?zmZ!T_vvvM>^Dr)W@h-R#>=@08L`8ed0kWWKC3z-|DV4_qk
zIpQ>cdBU3YV2GULFH$I3(&I}ZC?pHXHQ<nMLV}Pm<lB(%LfjBfGGuY*`w-b3yQ?a@
z<t%+#EGhk=+f00Yaik+cl_?iV9)=_#so*)vk>V{^lC<b(rlaixdPKiMFAVu1<j0UI
zqz-9>CW|0BPG#DN!exRf7e(8hq!9iT@^i>9A-{%Z2|N2UQ~G230cPFQT9D}2zVG-W
z<WGsmh}9$h3i;bm6g?vT3HdjqYs8`v^Cbi$i0BX*1xY}VmrNuo{u1$YjOY~6IWodu
z*z96E;xd75A=_U#ViDWX4VwO95#1uXM=TK;Kg{BhNf(zm6(<T5%1abBRpMC3mi3HS
zDq@9*6(#>8mWfy{VtI{0^?xENmAbMtAf*2}!tj@3E}hqPR*G0TVwH$hBjjY0D@g~M
zYkQX{M7p$eHj%*^5o<;ah}b-0t%$WFHi+mIu};Lg8db#lk+DO?disPkPvsOT%qN-=
zLVHK_iP$KjzrAO}h`tfpLni{BA$?D4rCw|6fo~kKNn|25+J&*Hg}`Q!iG;4SgrlEA
zt4dklB4W#k9W<$kts=IL*fwIj$dovcTE2~j)YI6}jg)5{-`vv~7_q&5zj*KfYsKso
zv2(;O5xYjl5|{WDRJGjvu0;2_&Tay=Tq`!KVULKx5qU(R!9?t(@kiVpv3JCfh|?p^
zh!`5NPsAY+heiyG*f(Ni#Hfhj5&K2#A8~*l?_dI^7buPG5|ef-LsDX7L}Y4fEGG;`
z92jv>#KD@{$_AU-&n20ufn6_^URs<=c1Ii@abm<t5l2KE8F6gHagmV;M+yG34J`?+
zM+<s_vyCRG6(W>}aJ-(ib>L5k%<dAs?c|74B2JAsE#f|%a-tae0B1+-wOPcN^DpTf
zx<1aC5obkQ8F5v_*%9YNTo`dt#JLgYMVudTflz;zDVnFb=naa&Ny8MI2<#U}ToQ3<
z#AT5&mqxZs#a*3x@ZBu)ei_}DM<z@&CgKW<nvLz!b9KZu5jREL9C2;LbrCm2+!%3v
zWONDrB<@5r3YRM!KYW%m&2_FH=G-E7h`24{_Q-5zQMQ{3{^$%Q1s$}CDad<A#GRIk
z1Q4;<JrVatycsb=bC0+`;u(Q4;(>?<BOZ^K5b;pN!x7^m#z#C7F*Y(O9D2FN@My$i
zkrA8!={BByr}j!HlSh7d37;n-o{X3x3Xhl=F-bIYn&Gvl>{Ajrll4x;1yqp7x(>u;
zG9l%BmcV%~Vrs<nh?gUtk9Z+sn&vLB|6qLGFWO;9P)MoPilCP$;aP^^D-o|oydLpJ
zWIU^{MP!pq0-Gey<94wY8ww6`*Sr<+cEslqUqsA|cqih6hz}#)jhGcNM~_F$7VtA8
z_xg4<8Kkm?-nS!HfK^(SxK;4~DB|OYxe@a$%s+{cA48sm!|fM8)qCtAp2CI3@LBY~
zO8#F)d=(LjRYivp-$b+`Truo0=UeeeXXiUHkv+*p#QeQv*Yf5_1?{j<839jURNkW%
zryt3=5~00yGL7SiBqG(6MNz+*!0Xu^O$B@T1o|y)6q_+4ol>GtoF21DOdZikkj5+-
z(~kH-B08pH%#RU2Mf@!>9`SR;FA={-{1Nf1C1B}D%Kw*)`Yl56S4V<TpHSydF_+GN
zjF3;JgRV>XM{-CZueWkU#TUwl5z>VhX-a~ju5^m&9Md&s(U>kV3&kuPvq)@w?;>6K
zjpZJZzf?j=dWH6&Ef&))X7QNrvEg_5Oa#@V`kNB^kDP7BAX4lR(=%r6m~~>7idi~l
z<(O4smWf$5X8D*EVzV_#vPGKAa<Os#NJuL8#&E<eXT_M6;{Q>#CbDYGYB8(FtP%6e
z4~DO=>gv2_qcdXgHDgmMaIM$~Z9!PUlyzg)i|G@yVa)n58^rXA=^Y!CX?c<a(>8W}
z`kGBl&`Lt1Z%n_Kjbi%8$hR+vq=Vz-^OwI`W|7P~>0_J5Y!-7+%)v1O^sSh^V)l;N
zB4*2&U1D~P*(zr1nC)T)#zsVZJJs1HHc18B#zq%X1VO9Y>u(yFvwh4CF+18Z?-U!S
zgtEAG1k%p2i9G5j+TJZ@P|V<%Jq5`QW}C_G8bC*9kJvEmc`KP+0NU#zty{~Scxp(@
z(3k^aM#StBGc0D`nBf{*h^R%bLe*B1hkvZCDzKj&;r=2vk%ZEIVn)S`jyW(knueBg
ziIg2|(Q<wIC#{?PokL;{jX5ReRNWJExF!{Ie9RFsN5&i-b4<*OHizf>BRDEHHtBg<
zP`VlNI5sw_ng~w@&IvIm#+(#$a%}dS$Vnw{gO((zK+2bR$<pL$F{j6z6LW6N88K(Z
zoE3AnKBrBr5~r^@svM$u$q6sDUtzEF^!}I&V=jtKSm%P+WM^rEmA)wXARg&D$*A!f
z$)z!u>74~<7F-@PCZ<zH=Zq_2u8jFK;j@IRgb|TVLa&5tVy@Non9pLai@9DjAM;$y
z4KX(g5t?SqO`^b<dt&a5xh3Y-nA>7*kNM+Wv%ORhmcL!zU@ZYsGwz7F(*pmln7ai8
z83@9NU2*P<xj*Kin1^E?5Y6{AI-yKa5%z<YFvM9hTl7N3H02<AH0H6Gi7}I6#>I?}
zc|2x<+5rZVQbA?EOPc9%DS%JJJZULM`ivy@Q!$fcricw=6BAMLn0P^}v+A@zBm62G
zxvwFWa}>*qc|PXtn3*vz2*ok4#k?LfO|yuZ9`mvUNcaEMAeyXmpkkAJs6;8{6iITv
zD#Eaa;TsYuF*9P`ih0kT?<NVLUAOXJ2>V*mwpG?s%)2ok#C#YtD`vLtjCnt1j)j;g
zQ>jW?bCoWx#5_%E%mgD1J`!ukd=fKPWch@#hQw})naYlvCrVQV>CR4Pn;rUj%omb!
z2@55B8S_<45|hS!9rI0$D<H>w8}nVv_c5*5IH^>iOo`B<9I=@65b2ZZ`!PXG7!ygX
zb#WB=l1|&PyCZ3-6;SqgtT$MHX%>^m%-25>ikLE{k*F8M4mJu^CB#iIj9iQRtRxrK
z%=)V=Agu!SB|nL@-f@1G=!^L^=C_zXW234`AWK2|U1TOnqCHcmI^sU%^!^p|cdTtD
z&OiFs{`@QUv{5->bB5AB6FMYxO6Z)>F)?K)Wjl+gBvQnia)?R7+$oal;4GZ5NW!uS
z%O!M8STteDgdPctC3H*Zp0Gs1zOuGd1t>8p{WKd9_-34;BArAgdDSyvsf48ymPz<@
zS+hG#xce`8UbquBwa6}?utLJB39BWnn6Og9$_c9^NcgA<pJ3i+qVa&qr7U*1WrVYO
z!Ws!{C9Iv8DnojY?5s5tHv7+b>E*1G7_a^c^BgTG>n5z1u)aoX$2Lr!F_nEt=#y|-
z!s!VcCiG1hk}x!(U&2NS0~5AS=%280!j=hJC2W$gX~O0STO?@HleScBmYBMig82Yl
zw=No~$6_DZDQdS)*d}4ygzXY!Cu;w)Rvcv)8!f^fhAuDJ4uV+1ZV7`Dc1qYeVV8tm
z6BF-H1Wn{5JW2v<BBxhI!tb82N5WnSdnabG5D^Ye*i%2%hqphWPe_#L6a8yo`y>oY
zI4t3C;V5Bv!svtp6ZT8kKVf9Ts6_ij%yJ-4$N`DL{)ogZJ;J+Csg+2d(8~`>I5^>u
zghPe*{)V<ipPKCT<BVvP|4l)nBNC2GI3eN0grgFUPB<>%_=IB;Q{q*K)20K><ygI{
zgV7STw8=%|^*0f^lM+r&I3?j!5#+j#@=g^*ldD#Svrw<aU5n-!31=oepYTG$SqWz+
zJeDvn;haSNC@xF5JmI{A^Aj#gxLD*N3!;m$o-RnZ(1Pf{dF}ABbI9xF7|=@+F4chT
z#zu{2Ou`j{szkkHLT6(RD8hK9R)NGUVakU3ag+&DUaL=ZcCNFOCJ5{C>l1EBxG~|T
z#JGC&yEEZt+rP!Ox7zkL+um;5J8Y{vHQBoo?zVs4W7~&pd#`QpOSs>59!Pl5c67f&
z5Bfc9|I`~Ev7NEDeKavqHeDQ_@OZ*g36m2hBs`JuWWq#ofl;EI4Q3ljDBXLK$j?&I
z;Z{aXNq9QpnS^H(Q!`n?i&LzxLr;lup3|B*-kEC2L)*j@<b5$=nrJoQ-GrACrYF3S
z@TSnMVI;ho@S6CdtD|thW#bJ~DBVK#tT_60iw=d?XC%Cp@OHw?#B7b%YBlg6qvZd$
z`b!hg@sYC<W+!}@@KM5?g!dBOPxwGMvUM;-igFi7m5OE>r;}*uV+n+Wxe4<U6Y-H8
z(<&(;qqRnL800@!uGHrVUx?UJPD}Yxpi5XMW!;po6TV6KH(`Flw_@{zDxpsJKB1Km
zCPWFYAduiE1Y)S3Cgn*sqsU3R_lVw(&W00T#|cS7nvm(Ksb;T-4y@6{MP?H^JGqts
z3;9wAvbM<^(v~|rO+q{2w}jslen|K+;irV3Malh50+Nh1DW%e*G+CJ*za&Vq{VK@Y
zN}+!w{F(5#*jW;6J%pgYghy2{?qbX(4N?p%0rJgTj*~)4kCdJ%9a1``ESAzOrBh1h
zl!a3kNs&0!IJ=~12i!ub5pEi}TxZflx~8VU&eMUjXlg!fQflYVUp%FI$`UC{rW~`S
z35qFFuQh$lo<?Pr!&4lzRLasRtEQ}$vP{adDa)lSuLrH8SO}6AMXmA3Np7cxF;`4k
zNrO}sINPpbTlZOG(X5`bM#@?#Yp1N4nnWzU$0YeHsor`RWT8mim94j4%K9mTHSClP
zQhI4RDO;rUPU(}<KV{>T4O9B2^h?<&HK$E=>g{NktH@q!w@6W@fqYGyq--jHqzp)T
zxr1}+zGexy<p*OI2sn~an)sF}TczxhvTMrLDchv%n6guf((1NN*-oSFVDj8#Ar92U
z6`xHF5_d>Vm6hYBJ8H#`Vqv+bc20T7{<&Mqpp@NH_7LcL8eynvQ5|k_ZhFmFN!oXC
z#sp`tl)Y09NjWrSNXpQZ{ZkG|*(YUK%J7u^Qe(-A0{2bLS}zdkLmIhCqRBXwv>%Z&
zGG%nifhnUj)DeagC3~eayf4qj>yFNtlg)Ba%E1;jLVA0$b6CpZ!g$KDDMzFnnQ~Oh
z(WzOHWictbeZ?@teHx^e2~qfQDaY&aloLg1w*IzoEyg@a<Y$Xnz0=z)TPLTSqAND(
zUG3>9X9!R!Z={@=a#qTHDfg$GopMgfwJF!7oSSl9%H=6zQqE7gAm!qeOHwXOQBsgB
zqimjYk!Zj&i|F>!6yf&)*SSn1vE+T7g~=5uSEgK@a*c3j)BkS$)43`&2L}ig;-kAe
zn|c~*uTQxl<<^wjQf^GSDdpyrTT+u<zqnj^b{o4So+w8vrnv9+lsi)HPPr%LPNBp4
z_Y|s-1h^|TE3b43X|wmH#$PnIuMy)~;vYzPFlBPe6wyP<!zquaOwj!)V^bbYc}&w+
z)w|`L+aEW3+%zebo=~E~I6MCFsX0Y@jL!c}c`{{U%B0ljMLNhset-cwkym0=QGgUB
zHEF&xl>C|UOv*HIcgnM(%#^7q&ufAmj5}INoqRY4^l@bAE9n1%I6@;&|5rPDx>zIS
z)s)v#UeOn|_>MLOi)7bpI^r7bTag%<+{1Y@WrpNTN|f?e%G)WQrhJw%Gv%F>4^lo%
zc{gQN%AAz<QdIIn={+L&*;WXMgA`uT*x$F{8f*6~e3bHW%3KX5HANvl5&e%hUl$lP
zwX<fM>?Y|0ib{O08&bYa`A+gb<ts`4ly8I}TUALL5}%d1q$B2iW3uVs)bCSTDQ=1<
zLDAFs=rrRnk-+gKL%KN9X{E6Qmb(7iRTQTrDL;!CQqq(xrA}#5a^XFtOsOP+dz<|T
zde2+Kou$Sb%U5HTv!$K#L&}dSKUn}Ovr%>P6inB@Bp!t<(eSS+zoq<}GC$?_ls^Q7
zl)pq0!;KLwO<n+BGeOq+-{SqVoPR{p*83{`!O0+_Lq^BU)RPxi>YW;f=B2Dr#V!^0
z?UJ!j#wIzN<}94CNXCO14`p=CSTy5+j1hV^qgzJ5jEyoD&*+}9O2(=gOJppWu}sFY
z89g$3W-OJlbcRfIiB@S)+FLE@q2+Aprwm^#m$7`t3K=VArZAMiBH~we&`KFUZse?-
zAsH@{MD(+r4U4Rnv3kb(85?A*k+EjRS{Z9+CYMr@O}wU}2cqqDGS<t`O0;f<%s{Dv
z|0&7p_sZy<(I;cW4AoVWn37^33fX60!$*o>_RS2qlwZ_8W8;k7G6o468JlKosX=CJ
zmN6h>^NcMtan-@@ViXSv8Ra#};c&2$lv>W#8QWy+lCi7cpiN#fY%^2B?j=nmW1t?l
z-s9~x^6Y<}<Q+41vi+SGTzPnoBQMH@qm3w*@ZUXSkBogXhGh)S*fV1<y;B2|->joS
zqBvrRAakx+v!tyJ)jhU=o2S&-jNuvkW$bU^e5jJ&IvIx20w*Swnxr*lWX7nB3o<Uu
z7@cvTK$mg6z?gAx#t|7uW*m}nXvSd~hi8T>r5I~!T0w4m%utS0IH_buWgMMxOvbU9
zNz;;cB&A5L3?HovT889=IU(c3jMFks&p0XL<cw1?P8B@QG4D~{ub?Xbq|h;QvYGoC
z8E0mklW}fl^mEBo1<20II6FgYsLnFpd2{DHy<tN$0Hv0lZ|5%MP{X?@<Km2)Gj7Sa
zB;!)yH{+U&%Q7y{7$dh&W^%DaEn+b_IUicY(IFI9W=1K!Dl_`OCMZZ=n{i#n^%*y0
zDEulTMX7+|P|?74pE@^ML<qk(Wkw!~;BU>iE#vNtdopg%xFh4vjJq;+_Kk5NtZAk)
zzVzn*G_HH~#f<wi9>@&yzWl3M?&T6xrT1=@a{gW1c~~5gk!9o>SjM9n?_|82@mR*V
zjAt{R%NU>Wc*dlRr!po8O&L#SOcWla_AAG)gHa)*ib#@cf;)6~CTC2^csk=5y{(5K
z28~A~Cx%t_k!GYte5zPD<Bg0rGhWDeF=Kkh%b6+QENARAk+IEocuAbHr6F>G@s*6%
zgq@66Gh-PkgeP9sGJ1erOc&O2lkrx@+Zi)0s5M#fzK#_T=%k!T`&wg)Gb>|u#@89&
zWX#EUFXPjU&obW6_#orsj88ISk;$C-P%^E9Nl^btosnjns`zfM#yr}&aIAUTJkg}J
zXFnJEL`52vfGH2{B%_1~#o{21K@*Yu`8MOb3_l~t_&%eR;bwReeG28+loG*EEGBCu
zi41naj40FYSJKR^;ISQy)+{Z)VgZ@t60JIH;-f#DLdcb1%vma@%BV$qIpj1M?Tp_u
z{>b=2(l6tej9(?Jx;sB*re@~0Q<bh})Dpo*nLNKq6pS|vC1@K3Qu;~8Um5>q%+L7S
z4nQ~GKhwIz^=8M|ahmD-9gKP}`O_h%W6okZ-EunRbk12w0zWrV@-DeK-$X7!y+J@z
zIpsxi!*?=vbfs%<b}KBJbNv*)aaHw*?m0{5^vH>A(YYmZq>4!E6Ffyu`j$vt<6Jst
znVhw9*3MZrXStkJa#qb*K4*oT6?0a~4GT*FmRC^Zr=5K&_O)_u3`s$95#<u(te&$*
z&YC%6HZ(LWXlnzw=vhp+*#6G*A35vfteew2r;mn_vwqG7IlXdY*J#}lJVo|Xk1(NO
zp;FtRHq7ap(?4h9-0ZX!$MwriGJ_a%Bh6ZY{(0sw&2SpxcWs{9Ot<BHp7VtUma|39
zRXJDZY?-rF&cQi{<ZPX@P0n69d*^JMvt7<^IfHTr=4_v{W6n-FJ7{==Oy*Uod=;Cn
zvvaN}uvwHP{dUPsuFI}^<RItjrwt5u&)FkqaL%4NlC)aX#H3<pEjk*iGz4ioLvn`Z
z?4NT$&OSNAa)#&Zm$Pqf4hR#q>@m?`PztTG&7~^Le$E^OGa_eX&ZwNx0&FiMmsD&)
zSuqD{g7fD~-4!0yIVd;YAqlQSa}LWnJLeqHNzM^D$K@QKb7am@ImhH2n{#x|H{+Z?
zKQ#rnC8B?`YPNu>pC))h&WXZx&S^O(<(!<G;Jdu6;?q;~PMb|}Yfop5%gkN_sYa*g
zoFTZ)pMPe~S#}tjz6K+>J--R(=A4&vY0hOi=jU9Ib79U!0+e-T%BL!7l!&-kxDb7Q
z!6ms->Gim@?#o3;IalOdX~|5ukW5p8nMAaTy31{)iC>d*ZO*iumvXKX+2=f&Gco6e
zoEvi<%y}s1rktAv<eUd`ZqaYNf%AP9fVbu>p^ad+z1_BV*!E7_-eudnZF`Sx@3rl8
z$H47v<+?0p_U}tY*GL`~W#){{c~l&yqooHLH=6d#>swk%9ux3Y4@4UQMDTJ1+4k|A
z3AXcuZKdz&Uz2j4%6T^Dxtz&4Qw0B<XY6QogB%DF;F19H;frm>VpDUT&v_x|#oU}D
ztdi*>PLZ6}Yl#$@-h$iooR@QE<;>1`CFj+g898s|yq5EN&Ko&ziZQzwT~{$ay<FSv
zCAx)rQQF%%Gjra_c~?T<RI}|@UUx0W+JGP=DnCIwz?_`-az4)aMCi-;Am_uJj|BP8
z&9-sv8kUsMkyy$mmC30z%egu8az4%ZOajNIQfNAQk61=RUUEqa$(K1_<!o5cx8Q40
zY|fuKf8~6e^Ic9U5uNjWPD|1wC(3a}dpUkikedL9MB=UeOr%&)lHzfKwHf1_L~=l9
zBIKl!^BoO{lp7;kFUwha3FEQfeKU$2Ay-+rwS<4p&pE&3v~zyQ`7!4wbzBpM*21yO
zEF-(F@9Hcv${F&E^J~s;Ilt%pAvWB?QB@PI4%!JKv8E$M6gAL_{I`ZD(OR%t!M{24
zCEg3V6!Nx1L5G5lg{k`_okx@-kt=0GX(!qh(y1^fK_9Q_6f9h@a=|JEixfumN!W^y
zM1)-n7A*`(FILd4U~$`Dx<HPs?zXRgEm5#!L63r-_R3PW?R2tZ{v|Vf7iSrJzaCk(
zV7Y?j3sxvtv0x>8{m0#$UsvYdy_|!0bvo_lj9lJq8P<X>?~~NR)eF`rSg&CHf;9`)
zDp<Q<ox+fT>hDRyNYxQW1m|@Nv%y)@kzm=NpjScff<A@Gc+rY4f_Yj?vz!cDINELT
z_NVkK*r;Idf*}R{3pOs;zF>!fO$s(G*s@@&g3SsB=nVy16i9xa`??WmLXbFA{3!EK
zcFooW+Z1e9Ft9K_fqpG>sP49f5$TFsDYHT&R75~1+p%D$f<gLM!OjJ{6zp2CTfsuV
z8HGe_CAty=im%5_Htv)?3I-SKS+G}ucHxOUB-Jk)Z`@GQe{`oR(+(}zr{K_n!wQBK
z>{~FRU}VAYg8d5iFF2s!m3ItCRnJfYM9)69y(yFazRHCa+77_M1&8Qyn}Z})Jy2hi
z{4b3Bm&}w-B{EQ=l+GMEyx@p}6ADf&II`fVf};zLDU4?Ip8yfRAFBy|Y^)OT^>GEq
z7sj73YnpKp$hmY<!N~=u6r3sqbu}unej>~7bdKBNCd=-$!tmGWg1HUjo>g#mL0pkk
zoKtYF2&UxClJg4AFIczKCQ2?SxUk^Ug3k&rD!91dVGXI^l7dV1^@5uVE>rNg;F^MK
z3&s>&QE*kk)dh-MX<%0tMrBg2ti-9XpksP89R<*@E4aSkhJqXQNH0h37v(OB#;)mW
zq@oh`^5M=c1-BO5U2spqZ3VX%+#wFKFp+Yl1yp+*?-HUr8uLLiWI3zC-CJ;9!Gl6;
zVRS9=^8J>21^EXG6!sDjjDcxwc8zds!J`Fl7tAbptYBQh<bo*$;|m@ym{jmoVNBo&
z1w!kS7KTq0Okdxun-dGJvlgh}FQrbhMQhDU^LV=8nSy5vo-6optjRBZ@Jq8}T68{D
zK<n$wD0p5UlK-&a#e!*ity--G78>eIFL+thRq(34{+g&-l!LQ<WD4ECZZE!JTix8r
z#$VLYJ#X0&%I1Bi;9ZSbb1#@B7Au$|)-Ft-e{&^NTgQm<`Q>$yyFkjxhXo%M%q^HF
z;ii(R8o52ERp9zWvQDw}6U+tyWh0AyWZ-;W@I}EN1%C?81z#1E1(oD~!8fAt0$<-M
z_^zN;;1+x@7XHDJwkf+_Kog*}KSBV}r}f&PAS}oVa)C~pzr+i@oka9$(XEe49Ld;8
z1rr;ckz-thWU?JBJu4fkE@%pV)>jJJ1wR!0Sn!jCr#<Ci((;Bvl(nLjOH3gK|Fz(^
z!stT37bfN|;jd4a3;`X@Jk$A0g1unrl4VN%k?@zOFX>b=U&6nHk`5(5k27zR2S6b<
zshSJD<a9d6q<(cS=~A*}Nsp3+O1jNtk<uK#d7K<>rKwRSQtVn9W)ycXS{fc-Ot;yN
z`iqxzxBVq-`^iE^uzWIwo~4P!=*YQ)WJ{K&M4_%PTe4iqswJzHEMKxh$;u_G=+B<c
zilxa35w2G%jh?1z%o>2C<$#f9zS3G(FIl5x&62fBW3h_+{@W2Cc{ODY5{7G+MqaH`
zqGT-rXZ?~5N=_&_v7}c??~*|!yO;DS*|21*lC4Ynmh>yxv}CiAjY|5LY+SO59glK%
zwbsjFrBo={1ro@{d9I0+Y*DghX>1mWDY3H*3Uzd9u<j9pwkg@RWXF=7O13K*Sh9V|
z4yEB`tz~kaNH$9O(cm@m`5QSqm+VrqYsqdU5+;I@v~*c{N+K082!_&I_9z)#GP>kI
z&9P*!lHn!$mF!(Iq-1ExK6<~bydLJ}y(T*4$3}UO&=^*-Z)q#KTPeDK$pOMk$;i@#
zijMAYCMD0O;6F-JQ<j}#ptioyK_v&599433$sr|&mK;%XWXWMAI($tMQV}lk@8Kn4
zjn73z2OAAXGE*z{F(t>A99MF@D5`@q+=ehj|9^gD%ywyIifWxya<Zta<iV0t1k934
zN-ixqt>pBQb4t!FIiuvvlCw(AE|E1P<?Y<SaG!kLE6y~$aP^<gc_rsd@|Rp_v8G%>
zSxH*=rL<@+={V=2(rm1|*ix5-@MR^J>un|1l#D64qU6ewtAupVu#%C$iyFKuJyjX7
z(vGezxvu1fk{e63_FXT?k1(k+5{7}@>nizhQ>o;6BdBi{7DRHY7i8PpY<qjj9VK^a
zkXG@#r{pf%*KK!;>g*Xq_u4z}v#oBsUtgSM-t$n&!@`s>DCQ~|Tk=H7lO>OqJXSKU
zWPEA%EGPj$>>$c{ykvsKtd?2@TlEIH&EJ>gFPT*GRLNv<kfPqb9L37Dipf1LHGWEI
zvdf+p(JJaKSz#RuYNwVwUoySq<&qa96H2B@4hVYoa9EvP^58HNos{8l=4K`n@0F5Q
zOI|C@La*^iGcguxXXo`2QN>qwr_79!w?t7DhgQ5@GP7jSip474DS5Y~C@D*3mCP>r
zPE#wHqi0LLDEU%iq2z;-c_p7(TK%x(<I)s#(y%|WS7h{kQZm;HE3I(?h%mlkKRzps
zXG7!p-2O|L(n|VO$=4;{lzdwvN2211I^|p=*H20Ex>?!RtrE8+Dv3+H62BxU2}_iH
zr}PFfjuuKuHW9g284-3;l9ps8xfBwsM@i)qTWJLs<!`x%<?fPNOjPoBNmJ4;`9+Lh
z@<YjwqEZQJp}2!_G>Hh6mLv5^^sHoZc_Dr)`Mu<il0QomVbq>(%|%0%NRcqnut&VZ
zKPCT`bgt-9F~8I~yHL@gG9`1RH$K<fNGfUd3+r%6g^emBGdopAK1=glsAA!YMJl>h
zW-q7edmMYVBj>>98<-_S@op*1-6|HZ*sfw=MfZv&D%Px6t76HD9u>=1tWeRjVyTK{
zE0(K}vb}U=v=Pz3GL>0J^b>Y8U{Re`Rn2b2ij^u>tyrxxJMUJmOr=c~FI`1{ikGcD
zD2meJyLx4;>^1CrgkQ~l?TU3OHm%sKV%>`MDmJdzL~|cu7<v85u*L?Jp>5e9y)<AY
z0@=2YZ8x-SU)%Px?MAlkZ`=D9Hxg0`>TP|^zV!hDRK+$G+g3=6+oEEt%G6}rQrE>h
zk2~AhYED~MOgzXglsXbc9_G%DO7d=Bu|vg>ilG`z#ZDE2G`otOD|V^aRR9+RtQDj9
zqf&@PhZ5-n`x`&l9u<Qt_Nv%h__A}Ka*9E{eu|$;)W6xuBp6E$>{BtUVnoHrihV1F
zSL|PLK!s+pU&Zr1jb5jPRb=_#X9n_up%&Ru6{9N-tT?DLVM>km_+BQWp-*dGl6wbN
zM*UOZ@34x)D;}#DS8+tekrh`~Tvc&Y#nBaKRGe9HOvSMkCsmwWaa_gm6(>}js0SA_
zrixG|TGH1g#zk_U`pzj8rwZd0r`xG%WAEUuCPn$w_f2Yn`daSKsyMsiqKb>9|5uz_
zabCsw71M^BTt~U@{;R>Fg-k_nE~t!8>B7o{Mdbgyq~g+wF%?$`dY*Hc$g-QWelO?p
z%E)BJ^0fb5R+UyIF_hkLb;UImcUIh0ac#wQ6*r6ODz2}%q2k7hn<`@^iRCBHK|zp-
zIxR)qAyS#?+*)y4#qAY$RHo8}V5kb}VlmBHQLtXtC4P6sJrxgDJXCRS#eEg`S3FSh
z%Q&Ow$lEME;dh(mB5-L<f4Jh2im?@sir91%g0$bx26w;qHjte1p^>-aD;}2=t$4R$
zLd6rpc*TnqPl^=9gB8zIOsaTFc&wNrdh2LnUUIT&kSd>|K}tdj#m`neS20zjQZesE
zlMbpe$Pb_;Pc);62t?C_riwQz-mI8j@p8p06|Yt%E+B%G+AmorepeRs;O@?AqHyWY
zqL!&9i(^K`Tax@0Gb@t-pfy^uP5=}QYwkLFKxW{qirE!kRD4-6r{cYePb%h0hKQFd
zKGcUKUM%o08SVV@odL44yFV6zDLbNzDNa7G;?s)HDn74_Pexv1wQI~ayM`qbB#njZ
zuPVN-a4WouZz{eO%~Z531xlW;t`eY?*?ptIODm9gl*%Cm-q*#7up$zFsi>e8@7ggc
zAtRxB)(9hQ(uzzXw2^u@KNmxZbZgG3DJ!aqjcWSW)D?|nW=)TpcEt~s&X9nbA1i*U
z_`Twfil0Ri6~9*eX2pvniR>UTtZeGj-nH^Uhx1naRq>CAt>SNC*_PfCRaAEM7y9N`
z#t$Z@{!cV@sOebKwPw+pPBooty3{OGo9y>B3sXl$&QDE2sk6#tSh!}9n&p)4xQuZy
zE>_d6X7QTtwaNcf#6%lod-XE7*89yeR~uDxn$*aerE1owS+i#8nq_KMs#&>aS-q`h
z`I;4K6Nl9jqtu0qm6?yTVr_P_N@MY~qgfS)YF4dTt!DMw_zy*U8j`f)73LXnDmT7V
z?zL*xuGyfbSIs)Qt!BNN^=lJ}Q!bx$554xK(p0(=zYA`?Yx>mmt?5^rO@h~Va5mJ<
zeT>E{$tDk^FgQy7v_+kbYc{Fbzvh6NO=~u**|lc3ngKPNYveUM)NE0+WzBXq18cUb
zO=Mx4+8kvf#@xE*uchsQ+6n>JrXIWaLVKxp&@sfFjk2_3%}zBt*X&Z$j4}=c$p=AR
zi`0@Y8L6w`4XW9_W@ybmHG9+yuGzC@ui7M{Xib#)CiOs}D5)ZQ*CwDaq&6C(J|x9{
zm=IJmyk<WQSZjpx<=${qx?ir9;U5^|(a4#aku^ux98)t&gRD8U=CGOrYYq}FY7Vhb
z(&JjDb-#SGvZ^GO1=YiAj;J}Z=BV1}pAXs87m>|Uo0;Wam^xeapKFe*Iko1rn&UOL
znv-izsg1CbWvx0bC)S))8+||+f6wmQlA_*uyfL^=uQ{XU%$l=mb85M~(<)@7{hR0Z
zHx|9%GorV1Zq0c$Gex>J=hs|NGq&c@nhR?#s=2=AhMJ3OE~&Y)=Bk=YYc8u9Q*%Xa
zoD!E?NQx>X({>eY*jSYeF3tDqnrmvVt+}oy+0+1B0$B^9PK^C@mQk1`Om5Uf^oE*y
zYHqH%rRMgUJ9NM5C-iY{6<BNn!)>+klW5PNKzFBZ8)5iG|GG<@-pBdjDekSgujb*J
zM+9@}NYkDBYaXyqJy`QlZPF4XpB1V9&o-2tl+5|!LX*|`Sk1Va7j<*Z_?pLSCf7`<
znNagY&670~YqTV3<jMpS5+xSo;h$tlLKfUpHPY)eyr*lPsd-*E3zE|fqMsFN?Aa5~
z)l99815o$NaV_9T>6Kegl>Ac7^qSXe-l%!G=9QXPYhJ63;VJsmw=^9km8mqVmQ+d9
zH*03pyjAmdZBEbG)=osrkX(^6-bFSV;kz}nYVw+*W_Hb-nlEd<s(G*G{hCi|=GJ^r
z^I^?LH6Pc;!=UsM1r4QIXwlKz^!1r9I`e8i)$D4%kZ_YOEv~m3_-ED{D&>plZ=fMU
z`nu*DO|ZtV`BsD>#MQI}_O8aSt7JI^J6r*0b94Xdxj7&C0GWQ8rf^-8+V@Kbh%8~p
z7PewcQL^%aGCjDVVd{(Q?&h+ll4Pj)Tk>CwU-NU#FOvT?KZqV`eiF)DW0Xnfmy1BU
zv0x~@LSO&2=C_(ZYW}QI7NR&pGVOPv%v$T`^mn8%3ka&W`A^NilI;zh8|K%lvIh+v
z8WWQExTm$gU*e26jr{D`nCuiSm;JQ)w_%}%g&P)WjAuYhq5U<!??}B=ijFpkh;kNf
zSgfI2!{QBlHtf~Vy<v%lz772vmTc(Jutvk04L$X_h7}uDYFN5qnTF*WmT!!HD`$={
zvTS3jU@arvY_zjNW3qrQkId#2Ex0Q;tkSSr!|IJ$5rp4W8x#?ipFygEupqTZzAP2r
zSgT>}h7B5eHLTOHZo_&F>o;bZzQmH#kNu4-l1-%Qd_%iCy&L*8Y}g>`ong}sCDvr7
zJ>VKRZ`9DgVY`Nb4I4LX(y&FtmJORWY}PQKVe^Jtm4(~OEF4<z^q}ZX=V?m1Zq=}L
z!!`}uHbyg)_e^xCfRu!l3LcsYKmDBT_1%VD8+L2hv0<l%of~#(7;KL+QG%RmeTc_J
zlZMB&QN3aJhCOscV^a0ZMXPK`7Kv>|z*;i)ZWz*VYQt#_LmT#KIHcjwhG7l+HjHc-
z)iAtazlH-EMl|f-pq+ZhDnYS}S&~!?P;yBfEwA!*jBYrv;UIy%F&QIDN6}%yQvYO0
z37#^ve|XC|tl@CsuHm?bBN~ouIJ)5&fon@6H?&e8B^X-WLw`O!%y@)E%*QvJ&~S3Y
zDGk~Xb7Es6?Be&6G#;BUARf^G6vflV<PSG+PH#A);nIf78qRDutKs~H3mVRDIH%#<
zhVulRQAUx|;Q#Gz2z!NICUZ{$=fZ}I8ZK_Qq%r&cl&vQ$i{xY@$cZF>=0_vAykShk
zHC98rqTxzGxZ&!?*gjGl1Xzvg$#;zDCv=>s+FuRVHKqcCF#E>$g2?<E8*XZt)n;~^
zn;UKs<+oY0&8-c$H3SV|!|e@sG<+(gk9Y2DxU1p4hW8upZn&r6T|M4#Z^L~JZ-{>6
z_Gx&aVX~;m9=rTt!xIfpHayhuumIICwqcwYP_jk)e{JV6JB3lB%|)HjtaiM;{&>R#
z+qq_lx%jYj68p}H4U-z45|!GQ=wE;1tTKQ8l!m7po)P^>!Z$px-CGUMHFTB1qCXp6
zXn3(<dc(^N)5Ld{W?r%#jaGjO5wA36HUC`O9;No!i+ay%4X-!+rIYnks8At;h8cpu
zkpJEDR>Rv3Gc{Uy!|YJsY4~H18S`whsvYDUL0+YLwZ~TJdCKY>geLVtgHEQ_l@A*}
z5~3SE5ot+pw9`~)u7%7z+v=&$8a{9MLP#ItxDB2t(7ykxhOZmGY4}#eygOqDnQ^|S
zI8?*;78?3fzn1NveygKl_<F=nP;;Dqr4tFBCpewkbZHYeBn_#>pk~ymO(wt&adMGX
zLn#R(J<xu)YN#8U1=#${cG?X;*v^l({mHgJ+x8dR{%YIbY%37`ZaaT8{AoLLEdcL+
zoxklT-n`NP`CqL90z%tBl{OvQeA&f-w?o??QIxFy_(6^+L{nR+ZQvuouF_`VHjA|B
z+BR_hda$!{n?-GZu{Pb>EZ(NOIyxQFwo9~G+WvP*`=_q=Xw%d7m$L0T>zj`*(>4$g
zc9s>aM6qp_w;lBbuJZ=5qP=+~+rBZ#jAYi8&Z_p$)od#=Ufq63G{2Un(B_6VH`;%#
z(`LIi1KX_IW<7h)`fWtso3`1YO|Le++lI^Z8>te|Z8p?T#Xs#m8@1`zW-H4<B7^?+
zh0}(yahowiolV*-sUV1QLWVe-*?$dav$>s%M!1Fj)|PGlnLmFkeZt<L>)W*1wrvPo
zzd7fzeH+bXhc-L5dBOr=r#3s=>0j1nmo~fF_nc>6yPKX>bv4@;U+gY9qhmnZ3~sY$
zo4wi`Fx2^My5ZKn+Z@#9;5I|r3~jSd+g#M|0NWX6+kM*%x1IfLyT5I9&-Rx%BW!=9
zZAUG*KH7E;w4`F**5*)q<-|6JEx70CHis|hA7ML3wmE9Sm0yOLVI0%u*acUPvz_B@
zdxC9`9nDE?PPYA1+MH=Sdg@f$Ijzm<wsXdU>!Mrz_pCN&+bicRxPERMO+^1X-=gvY
z3x5&Yg>5cc(7(9NCANR*f-4dumkYU;0<UOumA!st8~uc9JuV4(wY_+a=x0Oc+BVmT
z9V|Alw;d7BO>I_H#Z<{Itpc`x%YrMnwz+LV|MoU_*#4buCJlA&T5x^pvW}j;r_H?!
zuH4t={ssL9+B|6c4=uRzuzmcIHe>CTN83EsW?Y-`ZJuxQLYv3!fS<DM1lvB*=1JR`
zsAt>!HpJ0Sv(rzV$!(^zdAiLrZJuj0wav4ZDgKkdnxF_?!r{N49(mEeYI>WO+f1|l
zmu#zl{U>~0Y4c{A8Esx|^P2tF>$ZKvw!ic>pH};p9sk>HW-hq?$`AvJ^M*R_XgY(O
zcWtXHbL^d;wfWq3-m~rdZ9cG_4{iIAZFTd<w)07wxozgPIc}&~sdfERdwuXw=Wd<+
z)kf|2w*9irCxe}@Z2xQ9eq-Bj+k9s`x>Gl(ZMAXRcy0Uz*9+STY#Z7(vTbbJ#I~vA
zzwPJ^xhO=16htcaopt;FF?A(iG*s_<-tXSARa6oRB}pQcWGg92DHU0w&_X1kltf9Z
zcG03ev>;L1g=kgUM5|Vb_TtXn_y2p|X?}nAxzGE&=R4o|&c4i<Gc(w}1C6q1oW+hE
zNGOHH41yg<?!ept^8%!HAiV=a6Bw32hIO|C`zFvNf!q#vrC&SY?&IWlps)kQ9el3S
zYk0PY1WFv5ILqunWe2J|+;u4T#JFw9so6`o4ZZFh{1a|peFV296ClQgzOY6DHAQL(
zt8aT$sFQHdF44j+3GAA1v;1yClDhN~-(9$ea8F@<A$9gjpn>?_k)&Y)jUwJSfqf#*
zd#OzmXqEu)Tb+`?ehKWKK=T9+NVpvv9t65&ihFN7H!WKva8kk@vp-N_TPAQ&0<97_
zIDz&F9GO7t1P)2K$E6Pwwn?C^2qkwd@D3Gk7fHAzK0JY5jl3fy8Lj80J0x&a0$me0
zI^mY79TVt%iPt58PSWYDcqySl=8?~UACo}01ddOjhZHVs>>ZmxpQc{-1ddC%6Sj=^
zgY8cL1exMx^@+0FQ%*+FE8)&lQIq^+m3eQ~!iay|b2OVc1<+u^9rHU)c)F0zGZN?<
z@qP)M8S(xJ42bx^1O|zpB^(^dha_-z#Lr29uTZ1G;R&3Za1H5%0OuueegccydkAm=
z)04mt33oqbWC9l^Fgt;J5*U@h=mhRaxXs>+5*U-fRS8T<;Nk?vCNMF9%M-XHfpH03
zn!sgj&!1v^!d(UM^#~IZ?)VwwqLUlx+~;gC#9hu`k-($`u1sJu6EM{67P|Jf$Q^z=
zLbp741u->&s}s0Bfg2LICV^=QOi$oCwuBnqwQLN#xb0;Q0t<O$w7$ER<Rt?yLT^mq
zrUY(F;P!;Oa^V#>FXe7dxQ+T53Gh98w+L@#26?QVOIbY}&FcbMyE6e=yGzP56SzBp
zS!|-s+<q)0V&~#z?7d76U)_+vT-r(C{siWzwLGF`{D2DfK}jAGJ}hL~c#n*Ed^CZ_
zBw=)P&SPQfg$%3MTEw47;K>A@O5o`PUX^4)q_c?0i}<iw-ZKd-mh)NRa|tXFS(<RW
zI{Xi><vlM6$+859FUadf;Y-4og|En$L714=6lA&Z^#oRktdtrf4Rzi~V08j(*rXG9
zD}jyDc{_o368J>?UEzBPtmP0_%RR{Xz9b|ci+mu1>k{}-&X0tl{ZOBppGvr1_*nuQ
zqC_$ypC|Bz<X<MRNrd`eCGfTQH!>cU0Oj9G_+0|u?<D^*fu9oCOi2RO1V74!EeUk_
z*xfGA@ZKo*D-zh6z_tW_P2jf#b|jEU;CI#Cp9%b>-u(yjtGn}mC-6@K|0b|qayF{Y
zJSw117Pe^Wx;*bP1PLS)$R|)pAeG=5BxE_@v%j#-=m<*oXLpjH4VC*0Y{~2_JX2TX
zu+RR*)jmh3voUj>do6Z3;huBs$R|zOxI>=QU(RKDTero{xGX>{Ks<mSphkd}0S*dK
zGeE5X4Fc>Ppmu;d0qO<VJ-{vjb`7vwfVzRZmG52W-r>V7h-pjQfl?aeyMXoxuxEh!
z0rui3!E-F_z4>3eUd(>MXNtK=!smP&251zZS%CclG!C#&fPDir3EUHQZ0EfCCi2cs
z(*PXqK7HSPr0fiy{}0eSK#Kqe2JQd}hlm3LclY5rjnaJaJEP!z2X^pQ0S*puRDg~F
zS_e3UmIE9fpiO|b0S*n&E&z8VIL@$VaZiA|0o;;hYI%0$hyd*a92uYki>02I9pDnP
z;YYXI!{b}bHA8g@&^bW20LKRC5}<2<qXQg6AqTy#?({gTrr|am-puVGa0jn@fa3xj
zAD~Cz_OjC7dpteDSKhJu?i}e}5Xb$xo&in_&?~@60mcWI5a8qhy{XTEH^3<YP7Tl}
zz-a;a!Rs14v{T>PZJBp^fHMLN4lpEe({W!WhM#&5++Es!0nQBE>(qD%zkh%Mfg7vY
z&UsLFP=Gc33b2B_t$T=^jLr_+BB3@H%rATA1Q^7VLIH*`YF)4oXOj3%OFm@HY7KBn
zfN_C)dmC@O&ROS;P>dr3To_<ffJM(?G*iU`By2e>lK^8xD5rDmPJHHicdx1wKL^Rj
zF#=o`;PwD_1eh4$@&MNcm>%GY0Fwet2{1Llm4SQX{Uz;PW8+5j<N#MG7u*=+O%NWF
z;6Yh_(Bx_s3y;|Zm=?Gxn>(V!>jGRK;D!J<2JYk-cZ9hAPdgL&xO#xwm@nN@xjArW
zvu6lz5#AbLaa$K1ZH{M^1-L7~eF5$dFf+j20cHi59k^X4-hJlo(3T_I#|Q5T+{fd_
zT;Scy;^Nr`F4D}K6X1aWj|F%<aA)`*WCihEe4V_9lulO4!>XD`0z4{GYm!GH6IN$|
zdw7;fogd%{cCIuUr12!%e}F6_3h;D*1p(3lG65E{3IeRAg#gbm@c~u_SjAr1)_XR<
zk^oBs_hvI@hn4$W;BGE(@Ar9?<gx%Sh`bo!r2sFBpH|0vCBUoXa<ZkpCbB&8-TzS6
zP1t@`$QpMkCk%0?7ua9kV0yF@_-25&0t5k)Y_8mT4e$=r$-_wcuGYH>_#Ue!!21C{
z2=GOKFV&~k1^86tLk>FuJ{JE($lJK=bRn*ngwD@IHU!uhNj?|3v#s})$j`#BBj0aC
zHVMBC@LeSTUgQV%3z459`DT$;qr5GV<d*<jBfc%buK|9O^LODt!aoB1De{+)>HJ$H
zO#Hv%+XL(nNklrFVp0M4!qS<`+`%M{Z!AnMcc0(}NLTNd_Q(e)uvAk>rcew}3h+q^
zpQca_+^29V0jex9?&fjXp9GS4H|3hQB@s)aQ4)=lh$rDEQ9p^jlBkh%iy!{?OrmBI
zwUVeEN$Mt1M|>CIu918<k>yj|XjV^r_ayd+e7`=y$+=c<kaPpo-bpk}x>ec6w%!+q
zx`WdkPT6huNn+n5c1>Zo6q+Q_G>KD_=#xaVB=$?9LlQ?N-5PBFq-!mQB+)$S#wGp_
zNTNj&2PV-niGz|jSn*QcN(#IiOU}EHt&?sX;EUYp<dUpS(k;x|CUK}pJK<r%!-e!c
zB8m19KT?FjJ4W#yC(<d2&XJ^xNY^BejwHv3bQ2z%ME6L}369A)Ud|p#oRCD%Bu-4C
zmn6NF)RV+dPP%!D1xS6~XgDRZKz>>hr_1?V5@#gQH;L<#xIT$~Nu0^DN@7$J{gW7w
z#CcL1n8ctY&JjN=vctAFnDwqw8Y1D@Nw@pW=!VM4foqr)h9_~ZBrX}81tJR<Br!sK
zq>!nl@8~2hlJjcem?S17acL44CowjOOC)5bs60-5ypRF8k|AD}#3V^33NII4A$(9t
zrOuT}Oitn|38x6B3d7`uc#R~}lDJl6x-iV$4N2UX#3M;On#4^>+$^uVl9(Yv`*(=k
zlEkf%<TjDpg*@^>ojaqlnwiAilFt%8l*H^L?h(H?(z#Dnd4Cdfl6XL^l!<(hEmjZD
zh6$$4hm#2N_*fE;%fi#bxxy!e^VmYv9jG5R=_e(BN*Gqbf+Q9uu}G3<l6Y2x`iqn9
zYbhj4Bv~5C8S42YmL>5*5-%q4LlQqG@lp~mC-G(yZzb`HG?z#EuO{(Y#Cd4y^(0m#
zu`-gpk;JNqhXuYmi8YagnSDEncam6_#D^S_BKca8_gE%PT?+YsUy=`m90@;4;$!h|
zlK4dAvm`bo@u~QFAwx07jY)hi=T}L55y`(43ELQ3J~h8)D^iQv6zP1M#CJ)2AJrOl
zSTa8)u{nus61gOPPGU<Ee^McdU!qXIC9zd}8w*V-|265Z4jBA*$^Q_BMe(=zjwBKy
z{|NsTZja&(<Ye%463K|CBHxT8p*8B{Ik2Z-DHM_@%Bv)-2+L6@YF3l*QvZ#dVLOSX
zP+O9?&`+U;NX-;#MVg#_7&eTqP71q3a@Kp@6za*jJO#d5e0TB`PEBEt6!uJ^ehPb~
z&^CobQ)nQy<|!PI!rmz~l(SI^`=qe1cw=E0OOq6u$=P%#;eO)#3z;6)V2czEl(SU|
zEkzDWx%n%s-2e5dgPAt@9wKZb471-(ymJa&QaDVUmJd(ih!on(d1MMlrO;8lL&`0o
zL$jSydIC#zO;cS{IGVnZg=0jH6?PLcRQJgDxD<|$cn=ZIQ$15SQM^|QC#T#8?wOL4
zBw?BK775ebhj~olh7@j0;q(;FNMT$G<5TFHLcbKwPvL?T&XoRHDGW}bzxV**K;a-E
zpCxA$L&VP$o}I!uB1474g~No5`dpE)g2I$A_=prnOFmLa$%P`LBIS!x7?Z-qk?$ob
zcTah&oXmCD87HK0X$n&!oy$_VQhZ`0xm@Im6efv;a|h#^oWfO-{I9O3rf_u%*Qgmx
z<0?qqoch<MFkQmygp^z_(t}%1DcqdGycFiAFe8OqQg}c%Zxu3@yHdC<h1=!4LwKi<
zMG=<6%oOfUVO9#WS#k1W))<igd*r-V$m1^ei%>pCgux$7;h_{Bj^vN0@JI@erof}T
zp@qj%ZVf;_S2}BC`H2*sOyRi{o=@SaDC{#SJRR``DJ)E3QOdoMm7i$*{uPfOUZIi2
zYPZiyZAl7CBmHo&S|;a<!WV>Lb-$Ft%PG7f31^&FMQH7{)PJi5^4BF?AzUe3C43`=
z)go(zZwjgZRtj&6zY|H=7`RA#FNL)!yr04cDXdH3qm<hV{ZN&~D|B+|@FMzS$+-yU
z&g#9L+*SPgl-rK@Eai?`ZAf7w>w-r>Q}`l<FU1Ehb(dhQ`ma*>I)!gi*p$MrDg2hg
zw<&y=!cQq|PT~6$en{a*j%?ga;M=gdtkr8e8XV$X=y^Y<a4lbZn8GhC$v$4A?%q}o
zarL}yDe!Tv{q(5?>L0|BKZQS1_$P&bQ*LMAPu8Ps{-yj<foeRBz=Ovm+f&$)LV~Sy
zl=sRscS?az8y!5|<KuF?qEDsVo8e<=q*KnB5oU#S=0x%w|3!+zQsi4sp(0+5BwiXw
zJ3IVa8nqg^2YI;15>LZVqej~81JtBEjoN8<5kY62G<Hd2*EDvMgs(j1z5)Mr)2Nrm
zo@vxiWB0T>a>GSF_viOWyH8AVe}JXUt4_Xt-(8IGRpDtgOk<x6_RZk&A6<1fO1pD7
zjVVlH-!z(}ab+5l(`cGTvouag<J2_vOJn~uj;CfC&C@s_jib`&m_~~<4ou@>-o{P4
zk-23W2dCX(=7ZAiNLwoj*%)|Uv~?PXq+P?{L*;EGZ!6@E90RsX<FGUiPveL*Uecpa
zydrL&cGtxnWa>y}=XAGk##=4?cT%Ls2s;bu)kXHZ%Iwi;_YxAW1iGbhY#QBJXdin_
z=W(*h_fGTpG)v}$G<qudNkYD+fX^nMC_BAa+U=dr$qK@-z0(-`p*y77Cymq6I5&;+
z(ym>duCV>nI75V*eMS1o&Y29w6K;G9P#OazAC$(BG|o=rtTcEehMW9@({2ZzFI8YJ
z&QWy3q&YOSu)sw+T%377UtXirxG0Sa#2MoV`HoEELJ`^-mBzHaok9AJk=g{J$k;S4
zNn@Ne$16I%E0_;X@`M{3;iYL@mUhpHOiY7YA6H22av|ShF)8i#tM93=z2!8fr14%F
zYtxvT#?@)eOJjZ-*D&fdW~Xsa8rP;VU6J0F#&v02pT-P1Z&189g|T!0kaaZ3RS+A)
z&1v^hV3x)$p|7ImX(iUh?P=VR#?zg>JJXn%#@%V$mBzOBya(aZ!%|}UXGx!@xu}1y
z;(8>FN7J}3jr-G>BVR`JpvVJ4X6K<a9!|TLy0FCfy#r$S<Rdj7laa@zIaejKtiJaI
zH-FMtmc|QdJjEoX@to8aq_HrK#c4b%O=f2iI}zUkr{H|u2Q4pQ`70LsE>#|x+OVdc
z=LnN<)%_xq+Sz+Gjn~*CWSI&tr}2uc(T+=M8n37EW*TovVMQ9N(s)A=tz_Et5*4PO
zZDzG%p@lW9h1M=EcKo-~c!w>Si_#%3#&@N|uEAP<KaCGq3uz?MSeM3!>^^C1P2(eG
zDvfW`_%4l4()g5BT;Ka54W?(k;@z0WXK8F;2DvlITQ(b9yIS7H`#dV!FWH?rM6ki9
zu}Lwq5GHJLg8=UeF$fzThr937*vyue#t$3}6_y#H?@vs>^2L`>(aBI-)E>yUsStio
z<Bv3cP2;z;+hO2f!asfgOoJ8rPa6NG@mEwDe=E%_sO<{NA&Z(smPU|9GL5<!)XN~n
zN=YM@K|F&@8rd`|s@$B0ra~IUH1aaVqN4>KWiQEKIqmK?vPfCTJUd!dMtHc8&zJ7G
z(zA>k4;lML4#GTfok5KZcFkb73~FXjE8|AgIvLcK8Y_{?taLu*#G=?G<LZ~i&S!I|
zMlbF!v0u=O|J^g#gHdEqKLa-Ay)$SiYkOtD*Sa>yxV6n-X*SBBamEd^p>bZBk~GPn
zX$BW$Fd~Cy8SF<RTuNoIe+JDnI5>mW8TjXVxA%9C0~{dV78&<Vq60H%$tbAS+1ry_
zKpFQ6))7h@U!t<KjW=|NcSr_pGH!xvo57(OcSEgR2JJIAGK0h9JY0B$kiOv!rVbg`
zP*2XdcOD)kuZ|gX%Aj)wT{7q@dCv@vmRC0^A0xgV?ta#>8FbI!xQx4<-9x?;eeZZV
z=}VmxGFYu`w-e>tOJPqE^6nCKdW$m+H++m!Gw4G#l^bufo|D1p8Jv+pU+GYJPzL?P
z&lL6-4#;3&#@*MWLYS$uBp)oKa7YGcN1SRbqM;cKQ(2J@7dcmWp74AjR{|q5xG;lk
z2DuDIsXE@x;Jpk+XK+ylV=}lngZnd>lfl>wF3I4g3~tU~Tn6Jan4(-v$l%fpu2f6A
zEQ5&|Ov<?Zy2~Y5&RHPip5r6opY3_IdSAQ4F_{Ub!8UIAB~H!Y>I|;QU|I&(WpKTM
zUz@>n5w>1-Mm~AL3!fV#xiPZO=FRp@<2-@PLY|SqElgMjw`Fh-J76d8_6+XG;I0g2
zswLl<aYw<~^4aDY>h26?$yAuI*%>!SgsGk6IdX3X_bDJbJNN?`Jea|A89blCLm51r
z!Ga7HX7ES`k7n>h22Zj*bAgn>JgO<z%pJqdRlg&dujtxnzIaM)hC+^A#HZ!O94!)A
zB78=;ID=;yg>uSii^|NxQdWnIFU#NsR$m4yGI%kAmonh|`<ep2EPO@Cl)Ng!@(fe8
zJaVqgV3qh=8N4B~M!1^IyRIA98RMIhkc5%GoxwYiga+5LwQ#kc!ABXqueS6-2J15J
zc{kol;KSxWxAQ*E;FAnCWUw&<J}Gu7-$u(v;Zz9gGx#insXB?ldltL_@j0uHwfUj<
zg_`S^8GMz&*KB*bmGh^_HyLco;M)wolk=Cz_j{2agg**@5^m1m=M1)p_pRl=Viw|7
zNwx`p75<jN?;?K)|EKv^27gQPkMLjN_DE+(28oCV86+dlSkjyVGH!LmiX$?o98$Q>
z%x6%@;E$iZ&-r1mf$pVk5AsZJ24%K1-VSE>5%IFlSvw1en2?f~NL=V=Q6tM&(4bZp
zyqpOSJ`u_5NMRS@uEO1fv`|;1o^bap_7K@K@~tnjR~8K-$=)Ijv)EV1vGyU!;)Nn!
zETTykO|y8ufMo?VV;ZvfEQbv_?4L#REH24mTn-0h(IShBau}1tfmyW7;-DN_<#13I
zt+MEz#c^32oJH#_4$tC<EDp({O%{id>tJw~ejX2Fx6R^gUOO-)eZ6+_Y8IV{YoEoD
zS$D4WXkmveI%d%+i=*V^;XNLWtHV3>S#-_1^P*j{?o1$040hldJe~7AMh0o2TNcM=
z5%hJ(LfUcLKZ_n&{FcS<S)7ms&k+8S#nvo(W^rN`y|Oqdi%+xe{O!qE^v+^R7E`l0
zC5uy)+KaR3BQiLPAz7T3#pzj`Aqn$xmPp?$`iYzw$@_~85DpX$%DR)848p%7S)7x_
z$Vh*v$az@|6B!=K&lO=T=Zjn*91;1_CaqnV#i&R!nspTMF<FEP)EUcqlzdzk<3%Q9
zad{S3h+mq;Wl^Y!B8+iTB$=GWl@X`>s-5`NSzMFFGB%_vre$$$77ws;vzVU6by?h=
z#T`<<UN|F*8=|l`W^q%*Z{8`Lw`6gv<hKd`m;O7mn3cusEbfwgrtt2abnX#nPVW=B
zcPE?oOEM>tJe0-5SuD(AQ5MY3Bl3MRi$_Hs6F#2B+(>_(B=d!||3oAwe=3WoBl&`z
z<j+V*<BKETXR}x$zEt>JB!6Bc%;t+(yq?91EMAIyUlw^q_^R-=ES8IeK~`q5DvNir
zcvr$Vl!i6ptA$L%n<7l@TUopv@i6#%S*(+U4RWo>`@#>RynHC<M?zZoSmYBSEw5)K
z_VYf=x&zo7gd4N?Jc}>HzZcT$OOdaHUkkqxZpz|Yk?(}m<f7sS@gF0}Pg!h^_|GC+
zgmVYF0fEUreE_y)@hfXn;|vFuKeG6fXFIb<P|jWSEdI&jUk)$4v!KC*0mFwfMh?Sv
zra?mx$Blr)TFwnkNsT0_EYewIvdCt!YYw~R+)$RwqLM{5i+nV)6-0_zlp;x)Wj@0l
zq37Srp@srNNQvbTi+Ehb&*Acw&Uj5ZYel}bbEp&XT|`2)x;fO(VXqwONw|BYvquhl
z?xaS84RY8ghkbL{JJM;GL!*c{7U7c=O(MzuIW&!UvmEw|_?T5*bMXU&Eh71WB0OF1
z65r1|IEU6b^vvPJ91h8$O%7diI68;6IUJfpha8T|p&kD`8mfRSbIuFTaQ~mq9NOn_
z=k+);2PTPLtUG#jlxCMmzf;atbZ1tR#&+r)tLH?B$K=p0=N=?EmX*bYRu0`oj?00w
z%<)2!9ywgl!bwK*K=>N;%HgCO2IMd>hm&*Yox>?PoSM_4K&QE5+cd@8^-;3>=WtpM
zr{{16^VQGg`b^3D=Fm@sS$n17e^XT$c2Evy<uE*lb8{H1G@Qe^b%jgekQ~ldD4ues
zbEs0wUN%gG?eMcc-g!BUl=FO62hXL5kI1>HWD4)jbMVh$lv2y)Jv!$aJd1)zgBPpN
zm<*<BtRmt>IX;KAGrS2oT&j``H80EIt{i6OFfr%m!OL^FB8N#iT$#fyIoz7V<Q%Tb
zxp{VmY)(-*PgP<PXSqnP&f%IIGM8go4%g<~a~9KcxKY(~ot%_hpTi9iKVgBZ_nUIK
zIg+q#v+me2Z)113$NNaLB=Pnf?ofW`@&0cPL<;ZDxo$f<hkICt+ycshLI%G#hx^1?
z2>0jQLnsTG%^c?B@BkB|@|mYBu<jnp;o%$}$>C8+9?xNJ4v&emby0!;up={V^Cf>m
z_@wYDA$6Y4VL`-)eTQdquGzer<GCp;j^xkguta>R@VQ9-yvQ=)3pu<f@{;gn;VVMM
z(sGt-Z_9I7lf#=iyv}Zt!%F$SAzUT=Ob_o+bG5Qh@>ULS%j*;2J2|Y&;lmu>mBM=x
zt`)v7WXt&=3d;hdg^zOhSYFImD53Dv9M(%nPT|HJK4;&_<J3I9P&t2{!#6p6DV?u`
zTU4Z*Sa&)6l*8s6zRTfzd9nI_P)lH2{V|7OdR)lkhBgnC^~TQ}K=Npp#}+l?Uvk)*
z!#2i}1M;vue#_x^7JCjkS^Fc09XTX&_)|`%@Gp_Sh5sm`e{<L_XIRC7cv?vPq)18_
zmV8Fz6217(=TMPXA%`N%O1vzjFNd!%NHvmpc{jXM7|SD`#~yj?nTMZ84as*C*36@}
zNG&0aFi0KoUGms95{7bm)y<=xgyg%6(0=_q_R6D09tY;pAdkKCXp%?MJQ_xt`{dCm
zkH&c{uHo#5>D)JukkELuNb`U^_KW2EOV~W`MrMX;HQinQyWn}W%H!ZX4vG>$Ve803
zn>-GQco?v)oaBe)ad;jl=dox7j>w~Z9$oV|I`4+HBlGBxcf%w3wQu1laXLGSbjqW1
z9$grto@)#7n7kVej?3eCk#2b$E9LHa3?JZL2EyjVg!Pc{#5_*OqbDQf{wm*Z(Az1n
z)%D8bBnc^}gac9Uyc>}?xb?~7G?rTdjSDzEk2CUEp2zEX^v$Cmn<aO%^Efk){){e<
zbMqLWY!1rfEcp%;(iC$sIFEDk?zu&#XNXdJcHS+Y=tarUJcg+dILA#K;2u3YFOREb
z?R*)zAdeAwjLhT0Jg&%NQXZr77@fyuc}&dXB4uzMM}9`V$r~dlpZXb_$0g$9@@`0^
zWW1acgqI5W><`lrJ}7j#By@5vxH6B)c}!KwP;yn?JtaiK$!Lny!fB4r_*|36v^=iO
zyP<e`9@i-&9Lf0%<Mr&h+)0x@ugmzPBn$bbJZ{coMjp51aYr6^=5Z^V+-#47Emst$
zGIm9Jd)`gfERehMn3=~bGIDp`O*))<X3IHC$hy8Kk9$>I_vJC4)tATpdCZaIfjk}+
zVL3mT$3x-|N0LWGxXyVjl02TrT=98ACW*dJ=J8Y>&r9;OaIug!7v!-p;*0WlCgS1h
z=vg_J2$$yZT;$8Xuq@&)h`gA`OCm2vat=^jvcAf~;qDNt{uHp?uE=9$9)IWYPadoC
zcq5O`Iq>GOIuAZ!#|nBY50=jwmCTzQb9CYPb{_BK@opaP<?$hFN_Dh0j}N5AQ17!#
zs=tu06Tg7Ve))dNO!1j<ab9{;VSOH-$+<zeQLT$|{+Zw}^Y|){AM*GykFWFiMmpc+
z-3<Qoqu9j8ulgOj%B7a;K+fae=Ur!Hb^nyd<~+9Mu`Q3E)d03AI2SoAYEJIIu#aou
zcOF+edHkNo9}4?h9(??k23b~rYIyl8k6D+wDEMbb`!|p6dDJYRRslO$M4Ubfh!xzU
z;(@wYIgg}@I+aISv2Z2EjA!!5sswVvypZxj9!2qzFkaIsSCrZ+lT-i-ZaU+Cke+fS
zVV8*)+>DT34PS(*tx<6G%O?|S7f`2wx&<un?;e}orGVWEZXlxmt_3&RuxyF!oAnCV
zz2MeAdlX!0G@vHWkqYYz_Y%&o;dVmy7H?Q^9fxZB6kKigEudck`xelofTrC1Dd4CA
zIx-~%>|a3J0uC*pxdOH<;2@C$ge?j<P=qOA*QR}@wiQ#(<2nVjE`X69QgACq=DLlt
z#wjCnv)8VG!xXT+@-mN$|AHG0+!dL~W|j7l(&<2*Ue32u0i6ptxq#jUbdeXcaAE;n
zW#s6BYqZA{(2eC#K=%TAN<!gr1@tJm$4JNLaJ)*1sXalyEH^6f0bwGo^(wfIbCSx3
zE96rOIJMxO*5`oPM=>&wYzYi?TERWReY)_B0{GlLoo5!%zko+nn*$0M$gl;BC}2<l
zXDN}x3K*<<9KtFqxIvO7#+JZ(WGv?>Nka?n@{<)bynu6Mib*=Jfb&($EL(aJM;35l
z0b>ieL<!@7Fsgvj;ujTgu?RCYhO^ZGFtf}Z$Hs95j4$Bo0<I}wLIIZ++){sv%H*;F
zCW`Q~`aIqRP-3nS(#|B2D}|E_xJra-VYy9}eLfW)rhHn#T^U_lz;rf-er^x*x&p2*
z;D!QjEV%jo{sL|);N}8m$vH!KD-$DfO95+#V%#j;F6UiBhPtDGJ0nhonGwIcfXoff
z?CgT>Qw#4Evc26W!sjojFsFbA6zah!>_Z|C3mXl<qbl&n3V6JLxdpdru#h<|U|s?9
zmB%Lvc#1lwx#*r$ow7RSas6Mw0yT!mYPgob(tf6Z#RWWD0CyNz0+cL~h3AAz*|eeo
z;iNoXDBwko5=B@MFBR}|0bdmGCHqbRuNLq@0qY8Qt>7k5+F8qCp@7#5Si#=Pz32i~
zDcS63Z>R=24y;y=!f|qqeBUhKEfEUe7I~+DcO%JrB5YTz(D&8;mkn^E(}x9Ylo#9l
zM{2PjE7zYC@TuhM3mCHopD9xtgw$kj{X9y^kh}3!0bdvJLjgZ3>^B8$k|rlpc6k=y
zw~Fz*0=_S}JzECvu+p{Ip9=UxnwwdP%zgpC6#ly&XU4Y{-0b#y0o%fg&<Mk#{;hy;
z4a0h2HT_w@Uj_Wl+Ej6I#H0LQwi#Jw9=CHA5Kl1n0+PxXV-HtrDUC>JAwU1kBFd`n
zas}j7$ZYck1ux235|#_7h%f<F5wD0@gIu$T6%pr_dq3~SBK)Eoit81zd(q{$MiDh7
zsa3>;0dAbHU36Hdh+T@<wdlqoI;pu^5p@-W`TeK2w?`3s7I8=sZKPknh}K2-?u)&O
zXi&u7(ri*h(;^y*(?X*n8jJ5E+*imEn_i5fSrN^PIG~9Aif-(saDORqByUl~4}F|k
z%OVbxkem&VHF8kVji0TQhJ%al?PNSN#?t<lcYcd*jGbC^GtQw@DB`dp4lm+VDbvCc
zjHrksW$>dJUWX!%D!OY8mJjQQO{Js4GI*yVIv3HUh^|E(UBn4R^ep0-C?&@g(M|kV
zVRs=rETiE6csYAS!V@E#Cl%34+@<6+oGb<M-bI`eamxD?aas|l7u^z?zGtvJRrP&~
z=vTy<Mf5M?vLYrHF`($W5C0>I7+A!hBF>VXvx_*Vh{2J~A(5$}k>p&FVMPp&B#i64
zh@a0kpdeuaMiy~l5u@ZgUN~CFcrPkqjQGXEvBFD=7^mP=2p8?l#e^a*m2W7a*X43v
zCA^}DNg~v|Qe?6)Ou!Uzj`sAuTKpQ}G~u;HOc$Z=bt2anaYH0wQ@Kf{bh9KKR$@jG
zw@7kp5w{g_dl7dO@q{FI7I9Y*4;S%B5i^UpyNLUXn8QA$cEvQ`Q^f43%)eaWI@-NO
z+$RY~Bq}^0{$LRg72VuT35Pf;ggP5mxcYjuh{uX}JhC%SWUi2N!Td<hy^AM{c&dn}
zi&#*^bCNG)N{Vh<<5@YGo#iLunIaa;$;QvIZiy5a(NYoitmoysOvteGVvl~Qh?6Qf
zxq_FAc%_I}i+HVww~BaMYRijwQ{;6agRBr)DO@FdqlncaYlPvIK5Kyk<2#bDkMq4i
z?-uc15o?Qhzle`Z_@smnidaWy$t@;7EaD@^Uczf7d|bpQOjQXdm+)y3>)H29Xj#H%
zMQkXdehGV(u(62Gi}<&Q?L~aSp@ZB0MSR6N;<tladtVpvO%Yp**e0({>iFNY9OV2?
z_}OZ#Zs`5MPRA`E;ZH?uE@H9<rJtp<rRZk)Ulja{K5iMz|F07MRm5)!^}FzoBK~Aw
zlLEJ7srI)l{3GA$8kfQyMI<;Nm*AHW6p>`_D55NDDPgXNv_fSRDl5K8rI%M43c{k0
zN6~1rqJSJDm`;{5CEPM2E|9O4+yTOvBu{R4sj5*z%@XQLzm{+pVeJxzH1z6-vt(#t
zSMl8xw)bEssVB+qlI$Vev*f0XHp+Da`8Fw`X$gCmz(QzPLL&(qm)z+ZYVK14i*a9t
zYSq%Er<oL(`29-mwG1S;a{QODc?kz7mKMVOPjhKFsDxG}v@hYv5)Lk*wKUt7aEQ|1
zM$QJiyVrTqR3|;6eyD`)gol-IxU3x^yy|$Dh7Khh#YR{{_Yyjm(5ZxOQs$|@&dSI!
za&{@9t5SZn!m>;lmbdANi)wiMA1Afrg==32zoo)7^eDMEQJ+vkPlY;B*h_XcDs1l(
zPATD@67DVG)DrrXaB&G^Sz;xeUc!a4c18((nZXjyR(d)%_WG4@W(ob}%UA}LFhG_E
z3io}}mDO2_Ww0cJBsr&qp(TtcVWa{M6P{PXaOs>YWbHFY=PT?5!da7?gt4&h_$L`v
z!srq%Dq&2Ryjo8FV5D$K3FAt*v4orCJHCVoC0tr^9}8pH%SxD7!qgJ3mha`l$t7H&
z*e40ERJ?5YjQ1)@rU*B8clAXh*C^EV5~fLh?M}YeiC-_gL3Y?v!caGtFsp>wCCn({
z7Af2+J9n0Fo1C``?@%b#8bjSBK2!3$#o5PMwj4T`4E~>L?%h|y{Utn9!owxZk--N`
zc!1ya7Qgs<r^!$J5Fe4`u@W8^c~k~J(w7bAmaw3Ng(c8APrma@c%p<SrSnt?Pm3@~
zOdcB>$s+Y`z6_t1pDAH+3C}8>JWaQ(geBrjh0h6}7qXi({V$Z<p}QA_FA3><nXOCw
zy+7PB@8#qrx0rdmgcT*Xj9gX18;qS70wwoGFM6#mVND5dvZwd+!bL3SJI+3DmB2j~
zD)5Cr#CK%pUEzDm-C7|Rft*u5D7mHDx)MGt>4uBKo}iUBr-n~C3zV^*e@+1<Y~bKe
zwKC?H@j1tn67nS!WbMlmc9f7P;j0q9F5#OJHkGiggkL#*@aw=OcjS!EAbeNC_a*$G
z(%35eQNe#IVYA535^fO>i|dz?n=Dw)9ZqtkM{-<O_r2raO88x7yYl;A93OZIApA@C
zx9}g~zryXRM5+Zco-83%!lYX6sfTn4nG&)k<Vv`#wpxo`%{rX7pXRwQi!E;N6-y|U
za8?<E%P5ynDdC7R+Luw~3aN~J%V<&t%CIu(mQk;aSlRX5nq|}~BVKkhonJ<cGBVSg
zoM*y`waadf*tLuUx%e+*m$EA>O6W`6O%~FxIL+OqxmOtt%Gg7E&ob(l!Dku%r@y!K
z8<*YV`3=ix#J{o}#<kB*)|!^ltc=!W98$)9vetrWC}V%|=4BjE#&>gF+QO8yl)RNJ
z93<o;ElkzHJK1a_op!>u!b638;WO<VCVsduw0UG19m+Vdj9z6NRYu1$x|MNk8J(ol
zRoJ=g=GHFae8Vm694&r~kgv6&q`P<z;c>#_g?#5NeNT{uo|1&|o>a!kETS^{meE`C
zKEhLkr|zVAn)vC$yE-{*{lo_d&y?l<;{0GAeFusU67oHnlng23>@sdF<EApsDPw3E
zmzHr^8N<pLUdDxGj4I<?>0cl`Pk6qNFWjJo5sGD`Bw>C>i(g#E*fK5>A0u4!g44f5
ze7ta+aG+8$L7WQwzWl^8E-&NiGOj7(3dye$PEuS~mNB^uzE73PVTnzV?^I!EZJPLX
z!fS=og<&0CFFQ9#5?Z*qj2UIzTgH85+#>lMW!zcDt>U){Z{JD(E^$`<tTJYn-2&!r
zN%)Ks`E0eidv<Dj_m?q83Xdu32gDyP<3Z^>w3Fr|;*ahmd0fhK6$|Y%*H4u3WErc=
zSX0JRWjtNR3uU}m#)2{yma#-pFl~#<c&6+Y7>?KQ7MJlXYk92qzyH#*n^2yU<>$*-
zCT03E2=S#dUM^#K8L!LWD`mV|#%oGUxOy4e*gJY}ZvvP7WvrCW8^TpI)!D6i*a10q
zF?PPu>&-IWlJEOvyj{jSW$?2a^y2^BGTxIH`CB!;wc@;r=PuI+WvnaXL#C5a>-jH!
zA)4>W`IxV~`39dzlVczw`mBr%?5!1d<+8Et@T)SuF1uZt&&&9tj4#>9HR*64fEPsH
zl(9)_Csgn)2a_^(tDtTL-<R=28ObtIW&BviPi6e0Sa=<`x$Lgyey6jHE#kkFu}y^X
ztsGznI0gQHmGCzXm^c0>`J;?KCHyPW|GVs7!b#<SCD|Uyca)Kccp$<T8?t25WfaRO
zDKQ!5ON8=V8Tp78L|CWgGAd=%to#>yRd!->dKDm&n@GAp;v#+pH7cN!sS1&#Rt2>y
zs3V14D%dp&La$J*UIn{Xa8L!UD%hifJu7ZV+`oeQ73@_(6FDhqP(fqyy@d@Ud7}y*
z)M9uaN%j?n5{7D8K{HAAi}b^(wz-@KRL~-lA1Kn2*Qzx<?vEX;bhfYHNRieR93s-D
zg0>=uR&Y35O9k!ZWL^#v;i5g{;a+Zs3XZCvyNq{?;ySv5PU4*_=u&YPM@(v0NkV>1
zq}i>4V<XOl9T)NAE9en%rk2gMCrzn+az)fjDf#(P@B{@{6um1rrGir{Zrwhpg0m{<
zBTnaO6`U@9MkMK5LBEKfDbl}!0g+^&2(P#qcCdJf>964I3eKruXa!$Y@O1^lDi~hD
zJr&$r!MRLK1vgc2a|P#Da6tvvD&Pp=B;iQmg~Cx4j25}5f^i~agcs8$5C4c?B4kxE
z8RNw#2<g1Eg3BU4v4YDZeuc`J3jAML!DPv=5>BaLY6VwEn%C^4IgL3Q;bNIC-|Hfs
z>npgSf*UJt<#r(_ohD9aM#U`xZ<Wq16>wyuFDvx63T~J14pkW?cZ%F4;Y=YLz}*$h
z5}z%k8g1TJ!Tl9{RKdp;%&Fjk3SO^Z1>3wV%$MdvDw&7H9}zw($z#%aToRg^Tfsc>
zFttyJKUu+36+A7zIMQ5D!9wvx!e@j-k9FyJwt^)UEUn<V3SO1`c@@_y;>#2x)n2IJ
zMM+)~Qu4COiX?2|uSvdK*i)8Qimw)~5>ojM4h~~oy!@}J;7!Tjs^D#ru!!EN;9WW2
z6Rs6f|NRO+5ML+!Fp@LWC*rKQ^%Z<79=4^=D%eoL#)^Ag3@v<K0k7i2*uRk4mqHc=
z>+72eey!j)WqFhE+X}wp6i~qrvhZ^STPpZbL4K-WvxGDl+N6bFD%d7pHk+*+09$&j
z8X~=Zui%dgc2tm%<v%O<R|WW&jQp+E^^d&xiCcasWV<+X!La-X70hhpC0Tkr;?mMf
zsgBYLo2h^WPI<P1oMNYbzJh{yQ5Y61GhUXnBCHC%Do}MJi3wvuI^!aK6*VGB%_`p=
z=QR1RUFGdm$9EC#8p(I7x*kM%y(*K+JNwwPia)m6pIfbd6?;{&Wug7D&>B?v8aMoX
ziT!hlHLRjh6?b*8nH{Wg75h|i;C|L}Kijv8CRI$SYg6l5(<-;|@oe0d#BIMS_OD_b
zY&@)a6$ez&+p|+VYr%k3ew_zftK3KBBe%G&itDRrRmH(oKA47{RkU_;SDqcJIHbyV
zW}<D?O;3jl4;8i(9>%D3?|8?-9F3h$dm+h@RqzvX+<-bNl60){dxB1f|ISr(5$`HI
zI+7nF(oJ}*u)FX$;qk&ARdkaP+BvbxJ8|eEc`xBfRh%qB-`-VTpt%^ilp^wfT9v~o
z&Xw@=Dle&=Z{I5VRdJ^HS;GFp0m6a8K|(6?@yWpvA0l$L@EqY#;jpTE$})`cyec0Z
z#keZp9>yC$7$JoVg;W?>#p8SYS0<w*94)*^I7WD}aIBD1{CE+Doh&k;ic71wtO`D2
zAI3Pbip%A7MWi`N<Vt2-UxB|Wl1~wtTE*3o<eDm`iC-H@ri<`#V;aAqicjRcv5K3j
zxVefMRXknAf+`<f=QD}8zlu3hxUGsi*<8hM7v52I3x00e%#?Fh6|+U|uHr<kY44Hq
z-YQ=~;0h!Za{0=y@9{f{lsr(y!}213u!@Hw&L#09;*ScisOvq(QWc*Y>CCHgl5%FB
zh$K%|@l?b)k}Rxp69z9<`7RpnoM3Sk&quz`R<ShVOGKES=R}s=<`T9{{Dnw|Zy|WO
z%7YVFRmB?;zAAi8$ZA?H!eqZ*#R_p6Sy=^NYe2&P>MCF0fVbqeM#zeLyNY+jKd$a{
z6;Q={k%hHYyf6NNa9t$-P~;<F=NnuUtc6djSYO3wRcxs8=$$K>jgkIWReUb~h44#Z
zxZC!1r1Oo)CLt^6yDGjH|3SF9%Ev|jYt=thQBw8&EXkHg-l(y+t;+kSsO=fQru|zL
zzssx4k+6zCtH{dv7YD#95><>=$^0YX_A34rd5Fso8Q)RGjZx_ZQchNp5=mE)VMA@;
zQGpoh=M+3IEL2exDG8aduofy+RI7Ytr_l+aFEnAyv$)76C7_0QO<^rzXQii(_%5F9
z>e+6d)%EO9&)Rub&$Hb<YvNf`&-RecUY<4ZY)|p}!Z&LEmy*3bYvfsD2^$K-jo*F5
z_Z4#MjOk?SYUbH~o*n2}OUd{5>;MtgU~_ui<m#n`Bpjc~5Av*)XNO2~u#m#mp4DjJ
zF#!iP^BVSaQ&k(!+Hx4xXg`C?e$Ni~tdnP*Jv&07I(Wv|+lwD5{NMG+QF3<ljMD^X
zmM)%k_3U`hdU$rUyt;XItY^oF^FjLuR0Z8VJ5Ca&ho;y&_%W9gJnQM%Ns;_S&w53i
zedMFz9>1td{gWkRkW)SD<JpUzz2w<xo}KR5!=63j*%?x}#<OXj_4TZuXJ>lW-?P!4
zUF6vS&jw0iglB_1JIk|So(=bGuxCR&JIAx3o}KL(#|_36)<t+>UTWrwH|#9udUn2N
z7kGA_OmTG)E>u`kVL)n*l-Grxjq+@bS~$}`#<Pn(o9r3OYOH6Mcy^g*6QwXtIKi{=
zB76@jLtW|_Zy1rZIn29U1}AwoUw4tNkQd91dk$B6#zb;Ny-Jp;FvYW}o?R_vriz8k
z7_aqgx{TcG*>xgJ=k1<dFMfk(H+puHXE%FxYven_vs=W&z7yhYl7zkB4$toN?5;?E
zmS;1??~Wu))ok&5g#YV<_jz`Iq%+5}2gD!r>>;+Cz1<#f*oGgCbe<M@O!&BPu5cdn
z=-CtEPjbK!VZOrgkcnL2*+S12Nxn4lea5rJ;?D|~MDj3G&w2KIBw6O!3*w={mpyyM
zvyx|J&tCQHHP1el?{eYm!mxL&@NA`Lt2}!{!ViS2J$uWuw^_w<zA0pC!=dIK&(=!v
zu4nIwgpqPX`~97q>!MH}diIfc7~?0Ned^hI&pz{Pi)X)hw!yQFo_+1vH&XlDvoE5s
z>_Kc=U#b;-#dzyDr%Q=vKX`Vc__v;Y=h^oP!l9mjHnSf+`^mG-p&e<4ZNBmD9z$*Q
zY@28QdbZuOUp@QHv%fi#aQz>}`<G{bc=jg;il(lMg`wC;=2zW&F#b`C<)-=$&k~-c
z6)F%WIj-^;w(j6CzbOq$9K<r7W#yIgtiYZto)_|2V3*+L-fhFN{Zp?ZJG;Pk<@cO9
z;z8p-td@wuVz9V46IK)Ei`Ni_6~uMU3eT%8NgZK0AnXRK3p*0l0ag#TJ8XY0&ZV#i
zY;RaY*q*TZl8kQP?Iprk8o&*$B>Xpm?E~9aUX3GplSs1}tf_d|m#M!Wtktb9>;bSA
zur{!^umfQ&rFMw$AlSi?g;pYAbgf}wn>ly5vv8=q4v#e3!48W!^^brXuiEb<ISSSh
z)*m(i)(O^GUVUI)U|nH7VJE_lh8+Xz4m(c1-Gs*q!!(3dc|5EK>;%dANi`;hubn5d
zN%Vr9q;#Gl-;-gzMZ#6b7_E4zd8&l0h|^%F!_JVCV@N-dzCw<H+`c%I=lK3xu~Y}b
zhQfxy2EopP4Te!?h?K+F&xV~7l~S1C;jnXIqhO<9=fTd0jg0g!fYJU4=2|<z<c#RT
z$d~J=iz0rp$Qacx^EeiEi6pEJ&dZE?0_;*|BxYyC>@wIy*mY*tn_UjO0(OX58*}Y;
z5^M=<DeOwvWY|@(DX>|v*|4dwt6{goZi8I|n+Cf%iv3#H^{^XY(`i=1wr$<K#uVNd
z>D&YhTQ%jZqZyI>78MbN{NK*@#v8t{J47hCQ)(PlW=e85jGShfse54eO87MFKG^-R
z$6$}c=D;4HO&IUBJqUY979JMzd>U=CFo`tssC1}CJ{L9*_N3G(nGbs+;*5(56!QO+
zf>5#mwotJzlG<X}GqCw;U_{z~R&wU_IoR{CA7MYimcd?teF|F-dlB{$Y!&PcX}%0w
z4tpK;3hY(bYZ8XNiPpGQ3Hb`iSE}z&&LUk6TLb$5whs0t?5&*wzAgTakd5tKg?dl8
zR>%(czFH#*t$hglSjry>DG66cpG0-^8EgaWE7;dk*eLv5Nc&%id?{pD4#MBa_;-?Q
zisavlFguL&d+{IG1!{QA%Vs(`io!gzEwEo;N%zuCH`H&H=62XNkza+s$;(Xyus_8A
z6#gYN9szRSV>gn2g*Vf%a=HVSfCVxVc6=@j(y$DyBq42PMe?wmNI0+*+@W39Q$lCh
zq|1_2q884m_}kO0zFEvHZnmr0Zf3q&4YOKiwT<=bZeG_^r=vC6sbjW_S!kAp$u%vL
z#AML7uG#M9S{Hde`~QBlhl118ULyOL?Q7P+Y;UuMW{o6lY;Fi*z_5flwawq+HIY{{
zv;9PxnuY74dc3D#)>=YdmNqv#K=HN^9w=-nJV@9|$b=ot9PR05+i+Rimg9-ueRr+d
zp=RyO4l_I4>}<1h%#JW?Z`RA~B(o#UI+%4cJC<oMx2ElE*2S!&Stm1oMVAsH|6S#K
zwAnFcyx6Cl|7LK6*xl?nDfAFdU*sJx5-OZv){~)jk}#)Zx$HOVZPwSUpV=w$J=Ls_
z8NV+O+CR<gbh9%gp{Y=QmEIVCrdfXl8EiJdY@pd7v$G_jLZ^1_o%8>*!*7O?4~cR#
z)NGj97_*DbhAYSjvyo=!nw@8Mz9dY*1!gota_Y0L1V}D48!g{aLVnVMuhY3m{O`K%
zLz!dEE-{;AcBR=kv+-t^nN2jC5Ji2dl-aMtv|TRe6~h0eHYAhHrkG7NyGp*ic3>{9
z7Qe=98Y`%sx5oSbJTlaDwVbfA-C%a3*}*Yu9kZLvZZ`Xj*)f}8c8l3Uvqdabv)jz(
zm_49?x0~HzcBlQfdb!JNX2kDi_3@ss**)gg7_-dSlF#R{PqQZ6|2Mnej7u^`%`dbP
z`RDlaAl29=%^ov*C`#MI5<Vj5wOS@U&Sq@(gd}s#=81&k?UPcb+S3v~W&f=(X@9{^
z7M?MC&g^+f7Mne5#zox{AvKpu&JMWD>;<#8%-%M8(d;F&6=o~VE~x9h%pRm(^NQK4
zETVl}F8EDV_M_!yugi;HR$brAeUoUF*&AkWvRb+MBjam?VJHS<Hw@Pd@0h)7_KAGo
zGh1u6&g?@4<XYl=vk#QPa13OqkEHprkajpOarEH-Q%TlGat;?8%|4fNmzaHF_N7_I
zEX!tQ_O;nBW?Rj^k;3<8KbUP2|JLlgXtZGohvomH*-vJh%}wsi9pn93%3Fx-oDP@h
z%=<R8U(L3g?J)bz?02)j%>Fj}!|czfo$&K03?7;#`N!;Enc_wSO@&?wa|^bV#;(9D
z$u!sTT1;>g(2w1`wB#IA=kvC&S)OBf%;GUCFqBMjOfQ+0&G_jN8l+l9@@h2FQWy@W
zkOIp#%$F}`Eg`d6BWB}fdo^ROwTB6=Ew4H;x89?XU1PSJBz0r9cgz~btX|A^kJ%nE
zHvm$he$4iaxiOP{fw))98Zd2I?@>aVjbhd~W-Vl7pP20%vt}{dFXjg4CK5J{xt10V
z+6=gV%$mpS0C};@!>VUQ{IjwSj9E+Br~W}PYbCXC24vVn<m?`^<7hu-ZDV$5%-TtK
zOw7&ThsEqjIS-GywHYNx#H_t|_zvL?F*_<|9Yf!kbrI>LAY6cTm64<6<hdgT=Rce-
zyGeMgih?C`yqxSBCyDfk*$E;&g(nJ`qh2DsV5H{BG1rxP3r~sJsWIylbB%-r#qv2V
z=EfZU`^Kyvz2bIS+|G<y|Cr5;+1)W4z#8Ein>*ey8yK@eF*_?}gJU*2W*5b5NEG7*
zF*`eE=g2uUX2WB4Zp?<s$s!GF;XFCd7lviawlqRcrg>z{E{xeIIVoqcGt?M4FXh5M
zW*5h7tels`Y<v`IoYK$W6QY3R{7;P8q?lbP;pM_B)EenEIc8T$a$U@(#B6HJrptM?
zkP3{Q<$q1grbUu#W5x{@?kdnXY|q!T?M-mb8#x8U>}C}&OX>EQ9n{sEA?GbIyH(^i
zVK{2tA%3UuuAStwVm3QwAII#InB5bzds*X({l1vpAG7%}dqRz5PRt&T*(2f)Fz?cN
zNEo)6N5vm!GMc&MJr;92T_pU^mDjwe9G;BXQ!#rfW-s$QLwxcpX3xfKNz4|+Y@sBJ
zV)jhT7K?McGF)rX4$Eh0%$|$c3o`h;a2flrz9$vN#p-)e^8dyDO3aqW>~#rW6}}d8
zYsL9W+X_kEh}p`Rt%_L>?LX5LTPATen^O&UW%Opu-iq1VQl@-u%--P;-OzhilJ|r=
z#(KQeeP8^8n5`4}FlHZ#Fcc#VXOmB3wmxRH;#NCupT%rL%>ItqKQY@Fv(IDpL(G0u
zkS}8Pb<DmI|5EssFl;BAV)k9kMjYze%(tqS@Q~H_F}LDn!BYNH%(lermzZr<z@LR-
z2WNV=#_ZRa{T8!rlJ}_RTK?}bbH_eo_9usqnqKop-d`Hf!bs`G+5cY+Bbk_GW42v<
zN6Zp23u2axSt@2}rD5tRF2Af1HVFm~ulRB?%g3w|v#J6Xge75-9c|%%SA}H`yt;qq
z#odg+6@M&l5Dzb);&JoiRwHgTC3L-`or{RdjFHG`t4`c@iQB<(YaO>;<F;Ge_KsUa
z>DP_h9wPOGy9?RTwl(qgj9Yy<_X>q^3-^?0^C-`26t~84YsTBVaU0aaMYK=c_LXLn
zxHT0CTP(9o-~Hp(JZ>!|XTlDMTZ_0I7`JfCnoWW_+_HAt@^Nbw|8IYo!k16?4vAZv
zxOI$Mr?|C^+o3XYWZc?`Q0Iua9TvC4<E}lk1j50M^7cEWxr3CCio0tT)^F#yb%|Tg
zxSbfcu5mj$Zr$T{T-=U{TQ_MQ8(E{xuoHzN&+&2V5w{cK|9`E->~K71biLwsQru2a
z@RNnTg<-(|^~6)-|6Pln9=9{3@MPTjii{Wb;}j6L{&5=+xAWt6LEHwikmWTjZfA)w
zy0b+F3x^1KVReqkP$6~Le}{{o8%fS%ezlW1B9dGjw~=wXFm9tHxkxx#7;4ha7&*f(
zGd6CQ$VvIQ_<t+v330nLZkNSvV%%<x+ih{XJZ@LS?fSUg5VuKjyONqLZH+dQ<2EI3
zQ{#43+)a+*$b5BV^BM_Rq|>B-qdVJB{orIwkK1*UgnO_wb)$mZEa6R2zL=^Ral1uc
z;qZ04`0Tjd6Sq6W?~L1BA~WN5cid*h-P(rZ=bx=zJ#OP?)VThS+kI>;Y>IKaU&;@}
z?Lm<_aks9cCjSq`?O_SSxG3TE^<$FEjoUo6qQ~RLca?|w^W*l!PWs`7`BRcSEu`84
zk%e(vB=SroUmUf%rEz;MZgXne1GVk>xGiI+u4#2^+6!@ek<GY<9bdy<irdR^>*w2<
zzP%E+S6M#1-uLabxGj&{w{iO}Zm-8}McmfK?ZddOjN2+j^iJH~h}-J8y~X@$aT4y~
ztdZ}Vabq*1gkEpQ-9-?)+q-dlFK!(9!#u8y+xt?k!HVPP#KPobzj6CGZeK{wP@izj
z7iW-9Mb<}cX@i^_<Mz1{K;^IpeJS}@ar;{FQuqx!xP-5D^}1?h`+eMgh}*w$+b;Q!
zaoZBNU&Mck+h!)7wHBggqOEb;7Pr5o@T>6mxcwo8--H}4!nWa>2L~c8+y0j3Kf-X7
z+Yz@!+~U6Zz6Ehh#;qK;O59R$OUErAw?f=9am&Unr%=o_Z-D-9q~ai1l)NMi&nHa2
z&TVz>Rb>Y-_%3SCce4Qh)AsVX=@avfoAaTh%O<aeZ#8|}MLM-2&Dsjc38;?mt{j;c
zPUXA$uHxw2&Hry4tLNM9zU|@Lp1vLBTSwpO`?i;F2m99Aw+6D-#J8rt?d@Ab-x~SW
z*tdOr+n1)Ad1uu6Z`2KYK{(bm^KC!hTKIOLqTAoM=Dr;uQ%nPsO{6}tB^7*Y6{VTQ
z!hbk%uy_w)7JO?T`L^|~oo|Q9d8lu^(;7ZybGRf&_{Lrw+NTkcBYo>2uduW``PSLD
zp1z&vTNlZX@vWP0UB#KIqeU3-Sl_yf_wd~c?Kt0#k93$ePE}kgQ2zv$n3k+uY4nmp
zAKy;$?PTA2%Xx}#r~3bm`7A4rqVsvOPSfIPzMbyd8NT)P{~JhIAZ%%atJVI#4e;$v
z-`?_Vpl^eGd(^kbd^^jx!M=_6ZGvw@d^?+Mz*VB1!zg^$yhr#pjCph)+OYFPhWi#i
z$3fxwO40?wu#`B#jZ_6)=-Vh+Sii@AcVNf(_5{!TOPLMkV&BF}5_U;?jSHR4yi0w%
z%(pvyyVJLczFqFyH0H>+D}0;e+f?7K_U%gFCi`}ktg+mf)3BY8O!4h2-O#7}ny5{Z
zGlkQAyUw?peVgIi^}gNU+l{{6BqI#?zmh+>hO@>hzQwm&eY?%K+kN9u9Il1fiuP;f
zZpw!v2`%5{+r7Ts=i5x*?)Gh#3Tn1*_xSc<ZD*FsR3j(e@7o*}IKS{ko4!5h+e31O
zI!s152yi0nbc*+g@75UnKknOHj=jFU>f1aPtZxf^TgVbq;-3~iDSRr*4&&mViCpB{
zGrm3V+cMu4`}VAF&q-&AYHF$Y|L!P-nPM_tko+Yf?YzjOYGp-yne9hcBCkchulu%K
zJk(j?+e$fC30M2}hT@_fw%9dMDAvf^zP;nyufF}}yUXo&eOv3>`{M5jd8P1yZ|i*f
z#<xu@Pj*t@Hv0CtZy)>iiEp2&v}yTM-`0!!t-SVsxvgmmH%JoJES+DlZA7tuscyoI
zeC-=ohHQr{bN0k<ef!b3pQQGkZ{Pd&gYwJaE-akQ^zv=16t+axeu+9=crCdtlCu^4
z?%N-})v95&YuKN@{pDN5x2kV{`}U7-S>JNL{p;Iy-;%zieB&m`4&M?S{Kfy<M)ut1
z3AZ=X5@v*Sa&t9S!+kg=FG<O_vTp_7ioV;GJvQ16{y(bD0{V*T{rZ=Wcspip%ncN5
zMF9~5JFr{C0I{*VySoFs#lUXt?(S~?c6S%=o;}~;=eyRdz4m#|bDq;NXU@zhthQc-
z+W*XC>6c~tY#fpH`h~it%l7SKi}%kWo4UlaS#pVv6Hv@j$}&@ynX{C$RI)@_+E%D$
z3A5C*)UpJYC~dN!ZDC;}OEXK$@@dAC?cz?BZkB;bEL!|$8IWa$Y~TKNvdybq+!?K)
z6H|js68S7yX3a7*%P<RP%Q8onIkU`er;1Ly!E<F9oMoOYLoA#-i+=H-B<cFYxY?N4
zsb$!_S%zm>Aj^VT=F2idnhql0q!y&3<0wK&7RoZxz6))T(N6xt=8LF6^i08gG2`M!
z=`WFG$&@c;GO%A}RF-A4+>qtQEX!qCKFh9IcFVFtmKC$Con=gxm9o5}hftbiv#e~s
zig8urYDTr~uV>9jXAL{oG_GYFo#i{<Rjrd{-E2JRZ=YqoEbC|4+Rm|A#%0;ue1k0G
zvuvEzO?s@kp>d;ZU*Au9{iazq%Q7~72CZH^q!l0Dn~-ITEL*CmeM)C5ht25!Dc&XC
z#?Ebx+Zkm)F}OpP9WB|(xO0|WOf)DZ(~2~A&vH<fgR|_BWzQ^osg3E|9ah`hTsr$?
z**E3MLTmpl2UzDoV-npVSq{x|PL^}C9G2zqET?9fnB|BpN2>j3JkN4emZP&AXXi1-
zV~rZ$q>#*6$7eagLJbR&bb=U9%5rj+Q~sl@Ag9@Rrtx&+8Aj<R2G3Fn|3`9Omh-b*
zk>$!P7i786UYBOMD9gpJ3kB3QDa$2ks5lJ+`_gt<mdmqDw%6-(_07ME=qgLD&2qKL
zHAV$Y(tn+u*QdgpvfP~ISC`u@S*B!pGs|09Zq0IAmItytnC12?cUa+`EO%z(HR0WM
z-es;DQS~J&CGmUhb)Q;(HeOLkqTTX`vOH}0i&-AA{K+g&WqCBqV|G5C<p~o_915jN
zCuE+^@=TWJ9Z-^It?*nHJv5XvxwU-3z6n=cFJ*Z-%PU!4)j*f!^(=3wo9E)=G0A!+
z(bU>ZQ^4EmI9a~XaGmAdEbnFcILjwl-nY#UT|~0^ft;2oh<2_d`N&Qc^`|D1e3q8y
z=h^sXSuslZRqFd)maolKP~T+vHjBOrm8{sM_I;Kgviz9kC+qx@hWc40@3}ZRkNsPg
z-|h8BmVdJRYyM}Jzf%3bO%(OiZ2X&ZSuPm+8M8UaF<maMl>RxUw{Tjy=>|>uxg2@R
zbzi3Ot(c=^r)-u@l47sr2y!fuXURNaj(Uz8a@?4sk)xSovmBe}Xyu4<49_uNj&_cY
zgU^$ro1>RwPCFIjfE+XBm^sG`IcBs_3#5TL2IbHvBcz}!d0;V1j@hj+YmV7+eRoyz
zRl}PjwU!k7Tsa0?GPhC9UTQ;9ouN5~na^v~$wv8($T5G8RdcMCV}YC+42$JhJjX)0
zc%YENNGq$xbuFA@ksOQKO9hoQ{v~oOnPd4JE96)z$I>}Q<ybbyGP!tA)y<cT=t>eJ
zTrM@3$XB#;W#dXY^lLfESFux>()NX%tLIoR$ND+e$gyUQwVZ&pbBxI`Iv3vysNp54
zmHs+8)>R_CZ<F-Ru{p-&*w8jNFv_MH*!Yxd?%OEG#x}c2j!jc}(nz#AoseUT9LME2
z-d<bg*d@oV=3C|1I>$EV+veCl#|}BRvop!E;@UCCPC0gVfykMR`HEBv=G}7ap5u@l
zhvwKL$DTP3OvCP#W1k%R+PQZwUXgxrNn9HH<=8*R0jXNjQ}nK=TJk{_9&FSEA!S{M
z*?Dx1!*d*Aex&gzqgvf0&r`?Pd8{$9sa>NJa-5OlOx3SujT|TCI622D)|r^&G|NxT
zF>=<vVNj8tu0Ird*xxM^zuj<_Ql8@i<vkbA^5+=O&2e5XKC7(cX(v<i3v*nQV{(ow
za$KBaQjSeVWiGSwB{?p2jGE<D2&z+EJJ9d)G^tnSxGKkWc3z$18k1{XVzRGRq*Uoj
zCdcdTtCo3Fj+=9Yd6fNIa!k<>k&lOtTXWo&<C7ep=D0n_9XVde@nViUbKI5V=^W4G
zxI4!^w)2GXUgLdAv)2sw=XgN*_5Vs_@Im`Nl;dHOM~sp`YVw%zaii+u$sAAR;uF`Z
zQ0b`cJ)7!3mm}vd!$|&os{c}smvg+Wg0ke59IxegJ;$rLc(zhSC`lr3<ajg3TWYA&
zXS9v1(zs+?{NVn)ahZ2>yyvhV<#<2G2jV$CR0WO8=(@O|R~V*BIdLj#T_0Otc0SAT
zd5#}){HSKHM*um#c9RhQ(vq)o@qML&e3Ro_hx*R=y-^FNzP_L@Kj-*8#~(R<&hd+V
ze>MK*G|R$G-bMT~$6q=A%`sJde6D_fTj!q~6OyOxOUAXF$<xnOsZ%~$Ge|OGpLpKX
zH!EbPf1c^{Wb@>#Q!(a^#XJR*X|qGg&T_tQN1|${jMPj5qmDh-^EC1_^R)8JooAjr
zk-cWgGi#o9o=%=_o?f1Tc?RVfVBZ<?%$V<6dCKP0T6}lL$(fn#JF`)8RoR)vzJi*~
z!a0qzD|aUHm71=(>>QkrXU~Pn49PRpl11_iGnwBwZ=T^M^W_;~qIRNKR2OQ23*=ca
z&q8@d=2_UjvYd3Hm*(zEh9ryHYcb>EMh$37<ykt<Re7$?vrN8k2m8=Gqw*}9XE{mo
zY@TOAo)sKq?L1@hte9t|JS*o}CC?gp*37eNp4IZKZk=S|p&HS8SSeIG75iFwM%!0B
z8Tv$Yt&?YLo^g5BweNa)*3ZYiNd=-cye5SW@{G^3ah^?7r>TXFTw;3qqwbd2*)-2)
zsqb(<A<|gAMV>A5?3QQuJX_g!yFA<H+1h-YJlp2u{*{!Z=A#`_3p<<aXxu3uAB5|t
z^Z$8vwM3m!k*byMVduVi_RF(pp1thc+qh4@uOF#-NO}J}2Uvcv@j&B2#$=QHjehau
za!4K>lUAJ`mgn$1M_A#MJg1r*X*|k!wDFic$C?~xJl=SM@kHZEMkV0neBTqUiFr=T
zbAFx+@|>Rfo@sK1vE0d=rAD6T96Qg=b6!5)HA=>06}V=6RqKU$F3NL7K0XL>vBu;)
zm*vq-rQ*6I&!ws5c(@oAm%!zDCR>=i?IKNGSE_+k<I@7y<heG_$9X=<b6uY6)wJ|+
zGwa`w=aD>*=D9J?O?hrs5#_l%&pq~?qLz^7jy$*Kxy=%-D3aMwk=|*^UB+bc8tIMn
zd-FVy=fOPpDb4wKB-Eg%4yYiy9<u(!`Mx!Ynydbz`<R6<=XoX1<9VLQ^Q4N!_4Rz7
zr}I3M=h-~Z$>4(-{n%9J`jVr4(YSbOP_@30=SAzklxO1bI4<?#u{!pj=e0a<=i}om
zuR9iby_x3?^U&+_x6G5-<Q)%^?^>ci<VyK{7ne%x0}0JPG=8Km>GQYB`=@z6%QK`9
zuM$7c^F^LYfog#-^L&-(uRMR-;MeMXd44eeCeOEdzEkeJTd3uV9+Li;=chcs=J_qp
z&sO`zsAL@FSzF|HOa937XF6J{1k}scDa2#KKlYujK>q^&=9!u&Q=nfVp2~H^Q{8H@
zd?qO$b#M&@l22bCS0HbltWoVsSt}GM7AO_^=5cA3?W<+XjIPRBfuKOAK-coHK)nz*
zEothhccVbFK+9fHfp#H&ilkq;B^_J|j%JS!2J{NdRAA-;0}9MgV8#Li9b}M<Yq>ro
z{+Fc;&ga$pECpsQFlT|e3e0A;*;VEylg9Sblo9s`ZAaXe8C+oQ0`u7Gdq2ET-bb$$
z`)ai_w7{?e^A;Fh;56&ZS71beZ3}EyVEzIN6xgW1#swBEuuy@Om9GLL3oKk<1=sQ-
z%8toWg?P?Vz3W=6z~UB)FJZEzF;Q6Be3=5HQk`W@mU9A@Hzt}Z7Fa3Okz~~Zs})$M
zz`6xiw|s5m8mZ2j1=cbjZA^@eNqtpc>zR*DCF`3=J}#APP++|IhN(nGHYvn+6Uxh`
zY1%eReK$9mP+*HxvZcvZ#;pr%lgedh`vN-@I8fFs+_Au3COg@z?C)&nF2-F8>}DeQ
z?k0N_*fW*L+TJPOr@+1`-><;_<_Dw_X&zkQkOC*Bl0yp|o$|vR_2G6NQQ*i_ew2yA
zD)wW{k1cRq>U+G&2}YI7NvZr~lT!+uYBDjEOXqY)bVgc$aq}y1PJs<7jIVHRf%6JX
zSEhfN^9x*{9#o=H;=%$K75KKmcLgpkFv-C`FK|hLOA9<%(3HVt1uideXMwv4OfGPR
zp63?0vA~rDt}1YCfip*Ct}dX)e~oe73H`(+6kb>0`U2_>+P*%+z3ip}H(TxY0=E>H
zQsCACx7mpFrKW(=*C3PdI~+W>Tr9l1z&!;X(J-=H?0av42MRn`;JyO)TTK>pB?)+_
zfMR^uaY<ih<$ScjW0pT|`4i^q`%+NArwcq&;OzqM6nM74a|K>4@S1g=FYsc4mkPXK
z=il19ST6IjjVRzN1r8pSkwnF=biVFleAB*?yrGe8-`M_JmMG=o?^@>rVS)F|-?y(a
zo)q1O1wJnDNr8_Xqs%J(x;}OGKhprUa~xw*T#Drj%>uR~{*}qs1-?loY9Zej;+5gw
z1^y}ULxCUd{K@!dfu9TfV*YD^-%X_ao5^cSW&SX^^Wpe?G+lq$sbdfS7MQ9bw@9ZL
zPf0q*UoBEA($7wcOjo48dBrH5=}odlawd6WA@wbql!}y7iTX$~I4EpTq-l9*tQ#At
zrqo*I(SIb}BE2H}6xp}PfFd&#S*^(GMP@8Au*jlC7ArES$V^4%DKezU%tdB#@Y##Z
zT8yWLK^}4y`)tK@1WxVGX);%l!6tJXlhh71A7ND3VMXROAD&9)Gf75(`OOz7vS5*g
zij1^#kyLZx|7gzc#4K*f@<o<Nb(S<)s>sr*WEqoD#$}Dm75j!+rDugAE2f$&6<Imu
zs}xz)JW1FZMb<2`L6Pwmu2p25iSjtwWNqUZ<2pswHIe=GOx7<lHkBj>6Wp-KHbu5A
zvQd$Zt*}WkUO8-DWK%mgGloaT!{Y?=EsSz*S!AmsTc>rAl=gP1?;b_AFS0|C9aG6J
zMRqdZ**L9KcP+A8s<V5MY4SZS+{?JPQEA?<$o@s96uGs?0Ywfha&D3HRGvi+cB!6b
z%|nVDRpe;%LyH_{a=7sbqtbt*Ns{biikz6rk1cYX`SC{O{e+Y#)Ja87w)2!Cr<y3i
z6aS+iozsh)Vab_BNzPI!nV*wNl$Z0(Cl$HG<bom>np|YO*qBt4EL>{mRmRJTTy8Si
zDBmlJTxp)@UtQ!HJFhKrW2$pqk?T`_gGo}<H<{mDL^-|1D1)~ZxxL8qMP4X!M;hws
zB6k+KtH|9&?kVcM+IXnBH}!qc<h~;Jr;-QKcK%S2htqcQNb37&>MJ9UTlj?W$s$jg
zBvm8dXY72o$aDXZzgXm@BEJ{;qsYreUa{BrMP4oHz!mQmdB4c(7RtigCT|pZGnKsc
zpV;3i@~-96O8bK%pBDMd!v8DsVUdr_KQ?|+MBQJ-r2<UGfzK`f#`uNt%OYQyd~JN8
z8h@SUTl4RX)8hKU&L53G75Ujj%D<TWTI4sAME}nse`!oE#U=l@<^4+WD_j4V|7(=j
zRFjO=l46|BJZJ20oW4ZXB(a<?QAnMV6ibxsO!|JsylRyFT8SX#VXD?F(JFCmiR(&4
zCE6vnDzSBmPKj=bMN2GJqE})-iNPi2E-^!i8B6hKGh2y)CNq_oxx^rI&8j1!%q%5l
zEybtEq^2vm>%4i<%<PKPYI7RrD(NX|tfSij-B8a{Vn~S*rTBhL!l5PRwVL>_l9o^L
z-P7<A^OgF}IY_Q7&tGDJ5(}1C$N@)|;wL6LAuKQ1S=d66MM^w%U@Td@#1bXeEwNsS
zB}*(-V$~9>l~}sOG9{KTu|kPaC6;x-<&2?C>ATI}&Jm|}MW<?|5-XSb&Q?jdN{K_)
zi+?n!D1<R7F}lRsCDtg#+p24pSgYhsX8Ufc^FJllNkb+7ahBTl6Z@@SVr+?xOKehN
zT!{@zY-9`a9dELsaY{S>Xmf%JzNv+qmDv10z7tApQDRF=q$B0zSJC>)`ZguDEpcLr
zlS*t?V*3*NmDs<;4kdOhvA6TMQ;D5R>|SDz61$YxwZv|g>$^9~a`L4kJsMN>?U~lp
zUb3@F?3?UH?qm7Bsjq7AfD#9mII6_aE{%gq9HK%faj<ogU9ZDR9A4rGOSF$MNgH=j
zjJl3gON&1s6St6KN*tG3KGsBU=^kI=1hqZyLQ6-t?I)KwrNpHrE-P_riHRl7DRFLz
z(@LDKl1VL`QR2)JXW6Nn(Bu|X79JlKAJS8EI!_I+#Kl&)KrKZ3|K>WJCVr91GaHke
zl+F^Dlz8#I_`#yeLATPEr?FgBVzT)aC9YKe@`ib$rdY1F*EOZSGtAeQxS_<mCEhD>
zV~LweJYM375;vE)rNsSKo>Jo068EU-YWy#8yLyWG9VIQoGk01?I}bA691?%X@oxJ{
zBK>>K?=vbTlIVJ%#DgUsD)DfMM@l?e;xQ{I7jyYveoC#Zsg||L`J}p4iRVka;E0}f
z?|ZhyGbYkpSVw^Dm9&Q!OT1L#)e^5+sDtG%o5<iRCfY`Ly~G>l@0576#9QWXtFrpX
zl@g@;#>rlsa`b+Q4@&%z*eUU0i62V*SmL7+AD8&n@=r>9TH?zRUzPZ*#OD@%Vborq
zV%MR4;d4F=_H~JG-0>$4?|U??jHq9KSK@mIQC{>YNBTdxWPUC2vxy|XXxQ|3Cw{Z0
z%JcWMmjATmuM&T2<S+4WiGJmHAf0M?#$3*%?I}9F`YWd{Z9Gn2CR^t8GG~;@mC2Xm
z{ko0H6v`CKEMI1YGNm%*GIN)ir%a_xwahHGP%9IZiORI?49hgiG|lTqeJ572w9M5*
z#ntILWx8c%EHki7ugrilGw9~m9bf6uR-U@*@%P1Tdr+B~%FOKG$u60yNfw^JB%{r`
zS<B33ui4AYWim&ZIm>--DJE@cu;ntS*oTxEYUko*hLxGO%tCf5Rm01SC^NsE^OgI~
z;4NV1f~k)7&7^s2|IElT3tPBInMKPiW}dvdB8B8U{}N@Ew0x;D%aj>aj^Eo_+LELk
zmMycKooXIB9H^Z}wfPmxtW;)9nRUvnY~R((tWjnaa~WT?%xWoDiLGhAb}Ct`%;=OS
z+1FgJQ0rPauFQI=@A_rNraT!aHn4NNaYLihxpA3I%4}L@voiaY*}u%@WhS_V>{w=t
z)WUXUwk)$%nXSugQ)XMCp2ZK0%Uq33g|DjAHud%nxPwu?dS13unVrk*QfAjOdzIPS
zUb~gqz04lMHRHt3e|U_#_Ean$1NU*f`<D4VlR2)?w>{W@(aZs54lHw0nUl*LROa9^
zN0vFN%pul4+<0i2!^-h8K)riwAHhAs@}!^?%h6?yD|39AW6B)smY~F|sFjx!ta+kQ
zjX@IW>ugxkD^Iapz4FvD6U&@dMu+s&R+HV!Gs~P+rc<F?;p{T!lzF?%J7vyQ6lLxz
zbGN!cnG4EXRpx4&y0FZpWiBgoQJIS^nWToN{eSah0K6@ex!l4ljFXKL>blZg`ibT>
zWv(xCgN4@`uPgUG#k;Z0O=WH^b6c64H3)Pvx0IRUSmKIv9`zhS<aRYhz4=?_&T{-D
zamW6dL%h>|Q6ckJJ9AH&d&@jq=D9NWmASvn<2Ld@nFq@}T;`E7s}9RtJtXsxxEk}Y
zj8INpkCu5X6(%}QlzFnuQx-m5<{5{TeiB4D>-fy`WnL)rs$+RkG3v9Q<}aBiDVOjS
zJC%jk%DircH_E(O<}Gu*uO!Xn(3%#O@0NM5%ui*0b}7AI=A$wnm-!$q&;L^w7@GOe
zrKc_QPs)5+=F2i)S>ZF|7iB(A_0|59TKKxmHx~X-=G!vgmHFPzWFKBOHTWl$^`qtD
z^7_R*TOn8B*D}A^`Fok^Dsf}@qs*U9j~;gXRo2U!nZI2}s-}O+{A;e~Yg0`!mALx)
zRpReHhz#l%zbV$g!t|B+?7><SGN<@exO|0zjkk<NW2Hi=Lb(#JGnK03MY(E)S_L`P
z7?l3NnxS>-6&fbeZ&u>gA`)4lU5N`&PHoNgDh#MFcZGQ>@su<}g*i=TtT51IP=(n{
zW~wl=$t)FSHBlE<5M4><on5h5K20)Lg~6#r%0ns)t+0HB6)YU4#8g<M!n_rRSD3HD
zhzbkYYyJugm@HV~tMB__QD0Ug7ml=7(qI(Vq7{~?u%v~HRao34861|Xu(X}a8keas
z%0$!LjUzI8V3DMMxk`LgUe&##eI*=IVWkQytC}oXtwM4<Y1K-+Q<Q{Sy}}x){+bom
zG9PVRJC!RL>r_~`!g{G>tjYQ|n0(1?T&3@RYQqW}Rk*UkRTVa_u!&MtLH{e+w8CZ;
zPOGq$ZhusF6;4zTz4lvSOItfgUKO^kuxEw6EZL^Q_7!$8-`2RD#=U;=<i2Btohs~F
zVYdo9+e_KmrPB8lOvNkb?x}naCBye|$vSgy%l9+xQ;FBfQr@=`KhYN7-|_=09B4A7
z(KkdNT;Y%khgLYu@?(sLS2)r{7LKUIt7VN3M^!kw(l;uqI^KCPb8Lm<taiNd1Y`2f
zhz9ma+W)C=vP<I><Eh4pMm^S)!s#wI72O#X&NM&Ecy=m3$K+h&c@@q#xxjd#@gk!v
zTx>F_!e?h^<h<0*%Z!&BCmXM*=o=2P!i2jrS68@3?X${~Rj#dYU4?u#?r7InxS_&>
z6&|W^V}+ZXuX`%oY$Am_WW;<*g<C7!W`27m-giw}pr!_KY2InCyDHpmlFSs6-)rZ6
z74A2Az^Lg`UJqAzq{7D)KB@3%g~uwqQsLDKk5_o2!t)BE-@X{1uJBBSr_6PFT;COW
zkc^JOKU?9s%KyHI^2s8Z7b?71;iU>MTUp-#krACm*IciI@vl{Qy~4W{-mCD272Y<!
zS>dfpydKcm^(TY)%OUS1!9DBA!uu6IP|DM|k`wG7R`|$jI#|AOzs!<4|EWr;@Oy<n
zEdRX1Hx<6E@I{3$HHN6Q56gV*(N8vYGG9)eivLbcx5AGVeyYSL@O8xf2M1RJTWVb9
z=L)}Q%&+iUn!@C0{e<b`hv`bQQu}9xzckEN=~v}%hyAC*za~m*@|_mNIJM&MqG;t`
zjmx%wmFcTYXRgAOL|3*-&XT!ii5F~=$g5DLSfx~@T%}W`TcuKsi%VBnrD|R?21fN(
zdDW{lsx&Q$jH>ijHSWtv*mgBuB8vB_45%`s%Frq^=;O~-X0I|wm4Q_TRhh+MXR5}p
z@avk{&aIcpB>OG1R+-I`WUx()&sk-#Tlic?MWKzLxvR`m?YqTD_7H|unYYTwDhpd}
zc$E=V<~N_um^AVQsw`M#Axjj?A1-#;e0hO5@rzVh%wCID<0BlBNM~_Nl5-|YDR?fk
zqa{mMS*FUUD$7<`zslGu%T;weBkqiAS6QLTid9y#Q<9ZTR#Ba{GAmc(PNyZPru$W^
z@#v(qtzKn~Dr;6*%bKIBeRn+yo4iVyl*yPX>sVpkD(g9{(({IoO^&OwL6yy_`piq5
zhViPMD*C&V_=Z(BvQUw3TxGcS_blJEik`4bM>(BPWs53XI!LlzvsIOCt87<gYgMj;
zD=uA1wyy1~?4Z&%mr%J7-^pq_SJ|b?t||>J@-5lTe0Sp>#$=7Xmwop(?qf`DUiPnY
zK$VBuJly8MDhE}$uEF&U4z6-YmD>aE2spILVO7qkab}Ifs~l0~oht8EIkL)8j$*RP
zu*xx2PP64>jVg_ksvKv2yzvC%iK%ZgJ)LalDaKQc6OB3xce*02a%PpYs$5Xz!YXH{
z<#1k=bIi{*PAjYP?Nkvd_KT`qYEu^*Csnzm`oH~8z4~;S<(C`dx~pZbsB&eMtEyaG
z<?$*{RJlfjziO(=T`HL>*H^hM)xV+2O;v8T^G3Hf8PRo1l_^zjb(@h>?Qry%_>1&v
z5<BWf!1{Nns6AibUF9B?e`@nyllzVL88xjxP~}070D7ZGMilVjDvwloG!6Bb`lH`l
zNxqo$q~$MEc~PCq{OKysm^|xV|9mxGwLVwnFDE$TJ543^r7Evh^>Pz0Tlp2E<jMC=
zU$^tkDsPx*U8<D4Rpo6vl})8h%I{TqzZx%+SE%uUyfoI;sMYwe%173muExhzK2hu{
zv?`xg`K-zhRer4Ud6h4!d{gDyDqmXpt14foWu*r5#n3nk#r2(i#lJU67PLC2^i!3e
ztNd2w_bR{G>(^9M-~U%Y1=00~g@1bR(fE_ph2;NK$<*Rbt?OUwOigRHpXH>!N$c%j
zWBM9d3v)FJHHzkWqjX9&$~E){%u22AeCC&TWVE-V1(Ko&YJ@cwsj+B{dW}Yn!8PWt
z(X7#`F=LH^wiDIp*65kHjh$M2H=&_YMg~|iL#^*iK{_y|Y!0e1Q;pec%u!?J8ne`x
zwZ?3<zH`4?nkryY8q@9t=BzQ7O{vKxmNgR2W6AtA7N{|##?TtWEK%@zZSCt1VpGE{
zoUg`+)HgA^pq(R)3)RpoBpRs}wli7JESBmoRbz4UC5%g^@}!)XuCYvwQ5G&+W4Rj3
z*Z#N9uY&|igJN8<#!59-uCYpu?Q85%W7Qg~)mXpA*cz)#q642bM%P%wT%p#qO${Jx
z*BDb{T|1L=cXQ|zsGYj6U(eC0ok(+BjSXsSS!1gj<7=8$*tEuGH8!fTvGq4Gs`Qen
zBq@r`Eu2te3zIQR#<zagx$8|?Bi_i`+VX8{@f)w()Z$$)?OJbVVUoKYYwT3x&>DwH
zr^YTd_NlRNja_T(R%5SP{6fd>HTH0jJ!^e$z9j2^S<us*y{)6|GHLEtV}ENNY~cYl
z4y<ud4K1JA8^j-zQ4n3)WIM!aO09az;Wdt^aYBs~Ej+Tu(KU`SKgy^^b*#y8HIA>v
zD+k?T$d1Aam8p|zoNR^DYMfHz)EX1*)XVHij5>#ztOw*g-MP?F)w9%nY8(>8XL8P|
zajrT`Kr`SxMN#9a8c)}_pvHwY9<{ZLYFu37?i%;hm{jAE8rRjhzQ(0BE~{}xjVrBo
zd5y^?ifgSx-%BD_)wsIGH8rla*J+Ey2}^FTRF!Iw7fqMBp~j6hZmBWFIycq0SuwiA
zR08_`oA|9YZmV%ejXRaXLVW+b;DP;aSL4)={CwS2i&q6QF3Hte_N!HEwN~T78uyvY
z>weqUB>s@eBSxt`Yz0l?N$Yyda_K*A@<c6OF+Qo<@f(HD)OfbW7d5`L?{hU?t?^oo
z=WD!R$&1F9YrJG4JIV3RSL}@U|7*OVF}%h{Do>pPt?_P+_iDUV<84dcm_GB4mIr>H
zQK;*EjsFU6;jrQT)cjPfx<2lg`8bW`vl^e&_|)x0okg8XQS18L3d+J)HNMtZ7tk-@
zn;PHN_@&0LHNLaL4>f+Q@x6I6hX0gi`RAHmAC6<xQ!2f0_*;$Nt@cliKWhA`{-ps^
z9Y^0hOn)|!lvOf|{cGi^?i%VWXKVc*FkL_?pd8RYVETYU&^J?L19Aa*J2kB7mP%Pj
z`hGEpd!?M}biztNEg%S}rgGi9gaP%SZ#^L8BpIsKRzMW6YQSm%?SM|ekbt3qo@K=G
z4honlpl3cHV1|GhgZTbppd~6g@gxmWo;hH)fY}3Pv9Bbvn&{EM9079%s1W9{WUhe0
z0dog^Ykt+*CB6-mf@U1`<zWHy1}qY=sP%^%7ckBjFd|@n^Q5}tIt^IJl92%mn<#ee
zU@L>Fvc&=x4_G!}xqu}CmJC?NI!mRRO9y@9eDV}yR4R`jmIbU}=gP(v16DH8=JvE=
zT*VS4L$7SC9<WBh76DrZtQoLYz=i=E1&j_@JBW_~j0+fJvYv6BfOUg-)>b-oNn!nf
zvG$Tsmn6D2uw;BH-`GU*%}h2iZfd-)nb|z`onRs(TLo+#uxG$t%4xv1mhTp@UBLDM
zI|b|<u!D24V;UrB>cU+t+102RlSC#7+ug!F+^*!ccdBz>z&-){2JDwg4hY!aTqgjh
z8HtI72ODMi(161N4i7j&Z6n}<fFlEr3OF@jV!+V>#{?W7a6%AoxE&iXNZ*AE_{0BV
z6F+vX_%9MCT7Hu8-_>Ht$>yg7=x=WNzxioFeA9Ghz*zyO2b^K2wmh%XKj;T%<aKty
zIRWQd{#ukdFW}21GFljKJ~;E)N-?=G;G%$Q0<I0XIABu1<bW#zE(y3a;Ie?rC0sf4
z&B~d{PMeak?Bw`w%Sz0Z0arOaR|g~#2@|y`?aXxn*9Y7ja7(}q0XGKR6reQkKROPZ
zsL65?a7w_f0k@?kFwKZG?+myrU_hN2>f9Z0Pr#^<Wkc=_xG&(@fala7ok8`uCxdvU
z_dvjd0S^T{9Po%!_=NG%K!1svI+A{m1w3v|ZA5D}QE}-v!HP>^p9*-|?MKdM97=h4
zKHvq7U?IgY9!y>gcr)NFtG#4=StStgs`+aHuLrylprh%@Gg%EU+BVcNgSP|T3HUMK
zr+{|@-V69F;PZg@13n1&FyJFw_&;Sw``Bb&+q>TckB1)zd=l`feYLTW+>I_cEFL7k
zP@M*R8}MDgSE@K|`)KgDW-=UUJ+^Vbj23CSz7P1pUgEl`Iehz!wt#+Cy#)Ln@K3<6
z0l!({uYli8{s{O}&BG5^lhIzg(~38FtLxu@sT$rxvLTs}ej(F^^mi#K2w^->XlPYo
zP8=E^!XJ{0N64HN@?qbwnY^l|l|U(^95N_mrjSZVHDrJ_6<sZ)9?}R2Qb}l{vTcU6
zLb`TFA?=V(s`JHJeXB}YNM7OT*=ux^nIYAg(PUs4zq51pbeWk$W(gS<GH=MNA+v?d
zlWNW$GH1wKcFqx^Hz;LR*Wi%3E!2P?S6sS&8xk_q^5of^G>3;Q6f!bozK{_i^M@=D
zvS4ao`{cSO)#~Mf=`-Wr%q$$TNXU{QOIcyjkR?nsJ}+jnc*rOEGK15Q+@35QvP^0%
z`FV}r^;j-s`H(w8?hIKWWW|tOLv{;UDP-l4aUmNx$SNUggsd5|YRLUlr><sP-Kc3=
z5?yPBj0suC!qLXHW!!hN>xQfsvY3Axr<|^Dn`4d1YE~ny?(4^gY!$L~$c7;sg=`$M
zNyz3Q6I8Q0|8M=x%=JF2?3|)6|Ag^Oy`{a9nOaU2!Zsn>rcG$OknJ@rXsah=2ieSK
zcC>RD{U%`gjJ|9pubo473H!d2tY^L|vE4)Vu-Pj^_6*r8<dl$8L-r2YC*+8bBSZEL
z*)Qavkb^_^4>`d42O8A?R9Q--F2#6A$e|&Jg&b~Q^(^%l<yyX)e^rK)^m0we(ILl&
zoDgzM$gv^ESy^6M@h1H%88j5?#E_FhP7dQ)RbGlhUdoR8)Wnd}Le5k6LrxDlLpmYn
zgq&$>3VW8jo@OEiQI9*<@+2|(%8<wfAs2>R8gg04MIjf5ObWTgYKlUGhAst{DP5yX
zE)SU;a)paG*%?j@YA@)jkgG$k3Ar}p<}?l0h1_U<eJZ&jWV{XDWQn#QWc-$pDIvF7
za$Cslwy)BdcKS|z>aLKxLvnTUb?(vNAM#GfyCL_f5r#Y&@>IwJArIQfV=l3WLLRa6
zVWYOllDs^s@ge1phdkkCtot=J@25ka33)B#bqk*jc_HM*kmo|4cRN=ls<lh=rI43H
zUI}^Cn%7rjx$LWsR6FYLNtb`aQNI=Priq52<gLcHm6uLt%}JT}Lf#MgHsrgI52RzY
z&qF>8`6%R5J3n@JQ1AFeV~(GOsDc#NXZF>Yqw({LkS{~Na!>g><Qtcvx=FIfHG1KA
zBlP=_A42|;k&qulehT?5<oA#*56b);@=M6CA=)yMaoN;a$K;&SAC5(%{hw+o&ZB%a
zw*M3IuLk^j{H_0~j#nGtnR+}wst}ag)eeahIbEIpb*8smZ8%#;C*P9RrQ{{2;0krB
zb!yfr)+w1NY}uqz@7oIsOmyI?UMI9y()=2Ansr)rqB?gC&UEVNE=D7~EVS$BL!ctv
zI=y=Q70}^sej+p08Cd6=I^WhARA;6-H`KYY&dhaYsk29&J?qR`XSO<H>a0^|_BwOO
za-GHM%vooyI>YPCS7&gYx$6wAGt5bv$2i2OY$|G%=e%|%_iHK~33ZK7+UhJ+XZ|`1
zSV8lnlr>t8th2Bsi`3D9z)99ucTiXzgjl@J5_MLnvtpek>nv4gRGnq5zqE0gIv+08
z7mJE$Ii-AHW_f!l-ekX5@|EhWTxaz<Yt&iAzN^+*&4oPeu1fl<>ox1FRcCaawd?=e
zM@nWKB{<prSXaecXUjTU)mgvJSf#wqrZzjS&iFbTnr~3=`<|*SZ)C~FMiq`sX~5a6
z&gPcLDV+)CThuvkV&(+T2)eb|TFJ0{$2!}ZY;WAos8C76*rCoDTf|0os<U&QUFz&w
zXSX`LD{ZcYB#LB|lSC!FSDn4<oKWY)I{Vn#!F3L)vu~aK>g-?VfI0_RKCK=Ptkd!R
zuilGST)GZbbUNp0wZrNhUgwB9%fA_?M1`h7@2EOQ*Ey!nv2~8CbG-Gn+oLXXWw!6f
zXHwP}cv78{>rAS1iLISd=X7Pt{M0%V>zr1Pcdj%`N?-l!%sOY)Ils;Y);YV*xhgvI
zb7V)YP9I9u7&S0{n^jL+bX{2IqB<9=1M1kP4?L?t^oURfFRkm)MckvWt#i4_6?Lwx
zGg(o1C`d-RtLj``=bE%slfu_5qlJ*dURUROhZWZ_a#Nj~>pWKH@jACyeoviy>r64f
zwa#rOx7WE--P!z(bOgA&9zUT|L1~QLGLsR%&k7G2?^io_j1Sa#&|E2z<YD_N_DAYG
zYMy+z>WMl}*7?Gcr;N|nd7-XP<-}Qj#`tWV=Tw-p#dD}G_2?HZf5rHcQOYl;DSWlg
zYjs|?{3GKVb>1|2tIm6={@ZolN%^}bNqN3s=L0#_S-jIF%OBSJcB;icw&o{wK25`Z
zX7agF7QRg7UzvPu)ZWy0b-u5&Q-hrw{7~md4Sfv;HR5dkROk0Pe^~Qp<1cl7HTlh$
z^o~F4{8gvepw!^+I{(y}&cXlHc<A3VW$c`){^*|7uMz(MMh!r_wVE&Vqv8Gyrf-mK
zkZX`{P_Vu_pqhlb(zM>Bk*D0C($F`hi5gTJ)Ed;Stkec3q47dTqz=_+&}_tKGc+=2
zt3+z;1|91RXwXf=_LTBgCV6V9UDFvXpV4@@Z~bO!#1qZhmdxB>mIkvnn9a`l8_eEd
zjs_#_oYSafz+8>^&PWYId~gHd+zsY28Dbo29A=!?D4pRA=1Y0MbU$r@1`9UgeXWHW
zEZ$&=1|#iMb{1~1h|{LVyr`0)_kW!LwZ<hIEY;xo4dan>=?2R*Si@eU8Z2wgRT?bU
zV0rVE8m!P@Mf0R<2o*5lD?2(F*R^Vc)vPAIx{1`p*EC<N!RXXiVaGIBr@^`n)@!g?
zgUuVP-(YNm4I6CKV4TylL4)xwD`iKQZakA09AsAQXX6H&G}yG!_uN(oCN+L)S876o
zEgEdwV7mreHrT4c)(y6C)T-{UevZdmwVXHl#rI8WOWQlH9UAN?wPcOtNmJX2Is>*#
zgIyaO-{6D>yIC_%NrT-R?9pIPOZIB8w~6w#PlJ6M9Ma&>2K!mKe}e-|65|KDMajrP
z79MO&J_I4*VRj}v!_q&Z!I736Wjv<A(I(PVT*sOpXVh<?B|NdgNe!-XW>2>Kv<9b}
zoYIJg!BdSBjrtt=84b>CaB)KqZ8=M=rNQ|PF0lSN4bE+Fp1B@<CVegGDT+w@5*IeO
z$i7ME)sK2FX>e(SD;iwc;Ic-1|8;qT$<|SD%{U79!XtfmH&->d+FpaSyAs8B9LWa7
zwHB(1Z)k91gE1}EX>n77n;U%G<dY`1G?*geP1a~~YlGV~C^ea>$?Xm9XwYcVY;tFV
zyBd7j(6WKM8{E_2r3NoIxVOQ54W4Z9l)91%p}`{!9(9ZlHh8GP!{#bmB{iupCHt`k
zk2iS2UK%hpAn4I{I8Usj0(rW@GYwv_@3Re_GkLy&ZspY8k`hY}$h~MUh0;CyD-B+4
z@OFcD8oZXu-)!)DgE!QvbA8_wQe4u1%L;0c?>2bP{G$f%H~2uj!G~%Ueg+{;m77pA
ztP1?BF`17Wd}96N_E3HQ^9EmNjBV1d$(IejYVcEopBsGL;2Udx-{4yl+4)Yzm44q$
z_ijHl_)$$lzcLxv_eIlR8vNSeFE!}~zcu*1!5<C&RPR_bPKGX(q_U7K?DeeepVacy
z2LHN+NT_y_#6mNkT(V7aO{QzozuC9ql5qNF-;9=TQfN|XQf*RfQfg9msI41uX)7)*
zQ6^l~7kjNq&?Ice&xW*7qpRMG4-G0+`=-x!TTKSoLez{0$##=YlddI-x7X~On{;cS
zyMP%ipV2tbn4H*|xydX|mTR(nlUbY0)?`GJ`J2oxn@xr`8P;UZCUZ5Jr^%3}Mx=~(
zDh4<CiOk$;u2ZM(`F`g6G5P{+rZFV*%Gxo`+hll?`I<=Bsbp&NXI2>>%g2+sXmVzO
zCJQ!Mw8>&k7HTrG$-+$*X|myv%x&o3*;AjmCRVN&Gn?xxQgde(Z?Z&_C7UeOWY2jr
z^$p^<p08$>Zt|Y?OLezyvW)C#E&6n3S*J>2<+XzHrAfqZ)2wK|Qj?XP{Z*Q*YNE1A
z&M>Sd3x~z!ua)7NO)hJ4d6Tu8jBc`alQB(pZ?Z>|b(*Z(Wb-BynylB1C&6(|HfXZG
z`B<Y)l#Lvg8Lv#KC0MdiGyX8_#^zdWs^!S3u$wm7tf^OM<0Yts>bYAq*|N!YO}1~c
zmG!qVZf#VM<P6@nO~ww5E$G^z$<9r7X|iLJotp9aJsD3<sqN}eyBT%cE@gdrRS%&=
z_H1%slY^S<)nsocZy&4e-(=q=`<W-Ebc*kQ)Tu-s+~klZr!+aW$)QaSYjUI`mCeJO
z9AQlzDU>rws>o5wqjc<bth%t1E%|Yl9B(|K$%!VCpJZ}!lYRXEwTVqmQ~Pgnc9YYa
zoMGQHjZ6BkaLHGB?<R9jlXII~YOiU9e4d@>H@U#%LgPioi;a_vmly}ypwb|llbc-8
z<dtT8HsH!8S2ej=!+4XcRr@~FeQlF#-0;-)^eL6=nq1%1FTLVZST{7ev5A_i+Tl%Z
zlWN;)&r_^_ha{Q>r0mu^s9)xG%hgk~cXwBlyVZmGWnQ%K9-~IZdz<kh^FGC*MyoPx
z@<5XZ?fX!ZCrlnTK4N^-_?Yo=qe88%2L~Eh?0mY(bE*6plV_VGn$M^57gC9$e#r@V
z+1XbQebpuNn(=kx8^$+{Zy8l|Z#Q|z{9WUF#`ldMs1G*zP$PyGiu&?rlbPr5C(@d~
zp8|f`<g=#EBav&x8UMV=w@tol@`Zcumudg~s>#>p59kwcO_JXdsUv^i<d-JDHu=H6
zKc@OWnfz?j^5eHAzc=GaKhxq5kEIIxPm@2b@R#v#jjrAJQ$l!l__xVa&DZIzcfVHr
zFUDlrovszn1-km1OyBA|YmskJXfb<>IV>->=(OmXmyG2Wl@`?&wH85(MvG>Puod52
z*Nw8N)uSd0Nm>pPwP?5cZb{^;IrO^k;w5g+zOxz!7-wiPV~c_2ll9EE#h?~5wc>dy
z8FmzW7NyPa35w5V%_K*2I`-j~%++FWi@D8*80Rr23y-1Z!;Bh5=WX?!shh9Gh!*p=
zSfItCN^pw>tuxZNkWrD!$igj7sl+cfE~4dA|M*#LB45145>DQdEtYSwg85R$rH#w9
z7-h1oaXF(5Do46jY_Yl}D;ZZdO1?^qRa3s2iArycRI+A^waiBw*G}cS0a@2+KB&dP
zE!Hz%-#E6#xE33<7~f*s7TdMhu*F6#G@fi}+}OCeag!FCw%Du{e`8#mmdS^{r8%L+
z7FH0~m?qrH&aI8x7&XOg-(rUrd$riR#f}#4VwC<)sxtHB9P+L$cC&N$7JIbV(_9u3
z<8drwGW%G#zfqEXRbpxk#$>)Yz+MNo(BvzHLs}f#;_8TNA`Wxjk8E*Ni^I*2Fea@+
zcyx=)qqtujWBIWyj%#szixXN5kC-pw#1<#D_^`!CElyS&Xz_51M_QcPVq%NQEv|6k
zpVs267H79OJ*|r~OwN?hb$w2Yb6Z^4;-VJkwK(7M3ye}w<*L#X6uG#?B`q$sg-OQ5
z>oTR*&g6NAgi869Ev{;DXN$X(>lW9vxVgnGR=c*v^(}5Nzs{(*ZZuIWH?@dAALn+M
zByx(zgw*%e7Ppz-VTC(Vxis%?aZif}EV;MEeJcOdH%Zboe6YnsX@M&ug?+TeW6t%f
zEgnxpJ===!xSwe8WQ(U-JZ<?isc(`tCG|N~af=tM{8EdT)jn-pmcv;xucQ&ll!B;a
zUTg8X+sPX(-fr=Z72dSut#nj;x5aysJ1zxz-{b?Mj3gP6T>Rq}pR|~&0YBo?7N52F
zvBgie`ML4i7GJdZvc*?Up;Gm=iHv;XEQ?6^U5oFn|AT!K<C6c};+K|A(DjYdzd8+n
zwD_&X?+z{<Da**8_DZb%ZT)|Ynwb7o*Yo%H`bF_Ccn3tx5HVdu|A<mVIf@6;=_9fc
zIrGFwKB5p&bVo=^JCTc5BC6KxM${sLh-O49B8;e8-iXi}1Tw2j`bqG}UhRmENh16&
z_8gaDnK5FZbRy=o=AejKB4#z8$vATq_n;&_vqf<`QAD#lcv5t8MGTIZCt^s%+*VFX
zNovz_F*IUWnmhT<o5nsOV*ZGIBKD0~AY#FY@evzFEEF*^V%3P%A{LHVBw~q(B_n+R
zGj3OlI{0G7#f_(2k<presfeW`mXBB=Vi_lXRK&7rnwPVt@*)dK+E$EMDPk4N6N$W5
zb{6DJic6B!Bi6Ex_!>65rcnx`Bi4=>6R}Rj`VnIz*0tAqHj-FSAtW)5vyly)9!V14
zjUqOV*gj&1h)p6kwazvXo0&|A*dk){|CFi%ZW*z)V-epf&0Uh<Z5?VmqyEDs1zkHj
z_^uZ26tQ!}F6K&re1*G3>>ja4#GVm*rIwZKB!zohIVqq0BKD8CFyf+!11vu*;&77#
zl@cfBU|TpO;?OjwYM(N7M8uI1XGWYAaa6?78rvgIiZ~|XSf?;4sN*7zk2t|brllcC
z$;lC?L`;l0%`u*u7E9uLdc+x)$eEZ@?qUm8J~z$RId)2ZUc~tpUXaF>l%c#5a&g2Y
zD_>%>mquJ>r|c(DOt$k1qvE<!jcw}GtD^WL^RjSl#B~wNwOPK+^$|Bj{1fqS#ElU*
zMZ6vHPQ=X-w?sS;@nFOh+qo;^?uc6>Zi~3xk~>oSNv7^p5T7JbjQ6NhXxSfeuZbku
zMwaA$b?1ZQ4U>l=9*%e};`xY2A|8!+GUBO-$08n&ctVZA@1-iBHiZ;6*~DIHrOeY2
z&qO?{lJWBkJ;l)SQcoPD`9j2t5wAwP7V%QV%Mq_Qg~^&Q+1}A^u*mBXZ$!Kq@s<@N
zx!RAe6ql5hJRRSCH{!jBpCW#act7HUh_52PmVU&C8s{TEi})zw<A_g^au^n;A&Dz_
z?DBcU7xwy6Jt%#usJO(XHawsC#=hT2d>iqd>stTv&}+!M&7Jun;zx}<D`rj{mq||5
z{$l0dB7Tqf)%?C}Mun+J|A_d@l0P-JpPc!7U_ae${T;<0f0hN|)QC)*S=!9nre8b$
z|9aG>-DbKr{o7R9RNGA7Cflaarr0Lej^`S!rt<Cor98=0sZH6wQqatslzgpC(57K|
z*p8=?da9#Mn<VeeHZ2R2LcUA?e@t}-wduC$wHeT6hBh;{87Lz<Pu|QZ3T+}Oh(7z1
zJad^T4K=fgjL+6)_BIQ(8L3ch=4>-xsxw!cA#H}X8Qf;>cKlFG#XgUHSMw00TnuY7
zZ=2!vRYa2LdA*1dFrv-;Z5D7LEa*^4AtW~-3%6OM&5~`Fve%-vu(*{MYxkXim9-`8
zo6BXEHj!kM$ujMDpG`N3%cgQ|MXu0h#WshvIlRqEZB}lxWt*+qtkP!HHtV+;+h(;k
ztG5~5X6-g>q+!=;v!;2{85K+N%yEo`>l)W-_ucWS7p&*lr8ch325mOC!uU2Dnrzx;
zqc$5WFLtWAs=ktqO$E^)BizhhG9^C2d<&O=oLeiRHoLdkqs_MV+Of?}ZMHMtzReD5
zW5xJrpB|}8U)RoUc5Snp6?SRI-!M;($SPj>DwaKMeBU<vwb`r9-m>6*_<hu_g1$Z_
z&HYvKZ4Pd8fL;On|6@6%&7o-tC`U=uYClJ`IkL^9HkY(Hs?E`D&TMm5n`7D>+vYSU
z>9{t>w>i1ZDQ!+@b7Gs5ELV(4fhRxFQ^}m#W@0;DnaFF}pY`;V;q+Ah3=>JtZgWnX
z3sd>ICg&T^Gs?&Xsjp(WDCHNo(eGVk|I#*>we?>NZfkRSo5^jiZF8N~u4r?$$(3!c
zGD*^zB<vbXl!oiu++coln;T7TGU{o*>?aRLZfP^6t^az&lUEY&?bf-+ct@K%P3~%Q
zw@H%gB)WUs+Sca&HV?FU(7sAQl7@r`A8GSwn{#`d*W<A^k83RIk?rwBn<v$myNu}a
zRGX*O*E%fKiGP>yj3zHFjN3fh=D9Y{w|Sw>n{D1|^P*!>;$Lp_l6mszR+3lRyqfyH
zrZO~t!>AsuZ*aZc<{dk~YxAzj2f{Y*najfa?Y<q?58HfX;WuqQZu3c-Pwh<hW2Zf1
z`pm-5jbF6+(&Q_ntbJ{we)?@HxoqaR*uQV{gC#$<`N>4BH2HJxFKvEp^IMzWHGp^M
zboisqpK)Ix-{CJS_v^$1-QR8gY4fioQ`=-Z@!#r88}`$&Rn3@_y=_8=={of9Fnxz?
zCqCe(*puSYTV49h+LrqGvjXa<Plt+0u|vru840T$Y8{%E1RcT-^$ra?li^y{l=wth
z<7%rz<mAa_GKzLP^g0abFto#f4l{I^rNgWpX6(dU5Cc05vbE%h<4hf$+KtnboaRcB
zI$MX?JIvK#u)XH!FsF&s6tyr>o4dn2sa(UmlBaSQ)?wZbBReeIVR(o6tgv8*5gq35
zut2J>hZ-8IWlEP?>_Vwr)2k$l*twW-(GK`T*5VzOuw+_mU%JCG9Zu?Sa)(hJmhG^0
zhiy76*NI=ESy|X&dGi&FD;ifaCZpx5Hn@6+H7s1sn2cj<c39iKO3zv*qtn>ObXcdu
zx^|B5u%XF%9o9D)YgDLl9X2pe3QdxYI&7Z$ZrouL^G%JL8Iv-Zkm_t<vZZk=qlVdS
zJ8ais&klQa;)TKX9d_!lv-u9j9XoyZZt~s5lHHBFcG#`+zgs-{?vZNl-C>^&2g+&9
zeLL)DqN3KYv%mQPsYC$}?r=zlqdFYj;m{6;*-M)8I=sUX9ga*TvLK-@`5t58aUG8D
zaO{7q$@c_1PfXL3=%3QzRJFq{gS$-ZaGIKNH*Tw^r{!~o6x<-s>~NN{*5RBEUv>Dp
z!?_*K>+ocUr_?(-T+rdR4!3u>&=F1Ua7BlUI$Z1+Cv~{Y@=H2gYNFKYQd~;O<*DS#
z4p()!zQYY2uI_M6hwGe@YmNWSsY1zlV~3j@_LdGen@rOYnbP4_S4Yn`^+|Mhba>d-
zWZ}*ZcXhbC!#y4Db?^s`_o*Xyc)&bKr<9Wzg%71w{78pK%@x;U9UiyYCyWY}q~z%i
z&vbaV!+RZ`?eLs!zT`4_-uy*dcp;5Tp;RU>cX*}4s~ujm{4L|_9p32hrn%InMIrLG
zrkJ#5b%!X4jJ)6BqYfW;_#pNAKd0@()cHw=Pt~dYyk7bGtiu;J{<$&9@0V$IWb>O2
z-*zZ;DR%j;!}l6Dx=h#Q2kZRQ;b#Z@(K%9ZUB7hrT?4)qe(ms^iP9!(e`@gW@Nb8y
z9sW*}^iNuzQb-C=nCa5b%`(ZC_QynITz2|*nZ8TbzS7Kf;|{AUZz45)sIb%}=n{4*
zTTP)VCRJmt+xJ)NdY6VJGjwToX?5v!8PFxNsZJWUom%duk|aGcs|4tpvCBYv4eBzp
z$xNxHd}ry#Lr0R4*;4uJvT1(K)TwitXzH9h^&Q@2o^E{Xa7Z`4T^-tuN0?z<=Cvus
zt4mK<5}WgPS-=60>#|^%h0I5H8ELY#ap5kDbXn9qc|t7<i`lt&mnFI^+0{4sGfQ=~
zq>meto@ZS-b?P!!7-d}6D6i$ZEZ=2?E-PBHS}I@3WaTcaq>@#;`aMBxZS_>LhRK@7
zwNl@;yNv0wPM3ANY}sY2F6(t!zsts5Ht90f%HxgWj2jq}_1lK#iejU#{?68SR&diU
z6D;4X8$aIK+^A>V;?ms0g{g<vTX)%}%bs2K>awj8;~={lx9_q;mmRxkfuR@4cd~Hj
zF1vK&_sX^8kR27H4C;4pyV-Yl;~qvWQO?%;UtRX;a%h*sy6oF!zb*%=`mC^jmjg^x
ztum!cL=*kNT@JB4nX{55!Qoww=yHtZM;edna<s`Ah4@H+qMVpI)^dF$_V_L*bUCrh
zNnLL3a$A>^yPVSHvM!f*IaPyym-DQAT9?yJ&QX&yQF_kma;BU8|5BK?y>n9?d7a<o
z0y{74a&ebQ<`=2r(&t~7SaPW`IcT9qJGsjhU9RhLz2#RLuXc1-b(!q4y~aYN<XYF4
z?sLU&=yG!^zp=|rN~8~O$mT7UPcd$#^y_}S%N<?b@A5&HJG<P~<>@ZZbh*3BJzXB`
z@{pD9HQsN$&v{fuD6R)A(HiXGE{}A1qRW$A9_{j2m&fh(-#XH+k#;$rvRq-6o}_&~
z+vT|~uXlN)%ky1cu)?cdUhMLc`72#sR_}9g1ysusPx|$1sWlxndDHyuF7I@C%UqhO
z`ggm$*X=t-o1{lZV$$WqF28m8y~{^kKJN0Z25<-bq{|mwzU=a8m(MIwbjs%Esy@9^
zr_cU(`C1BtGvC-Z`Jtg~CNX|*;ZI$D)-2HF$8O&_oN2ND(&bm{C?zkarz`(RB~!cn
z+2yZp{Kn$nT?T2-zso<)f(E*z<LK~DrboXX^q8(k|6aU4(WOnNWGgA@7r7q!9&7ek
zt4E<nvBxq!M)fFJzuu$KqikL=R*f}d(2Hk{(5PlC-t5upF{H=P9+BlU_88csZT*h1
z+oRWGfPH7MBnhkFD#JmR%xav;IJ0pUqtc&rrP=J9-8e^&IZfs=4mQqhoX4n8>Po|U
z%xmZ3#^J_Ad(78kg!%l&1&oSiK@){tsK-e2g?lVwqT^@Di*oW^EY)8k)nC$NsUAz4
zY`j9>=(KE)RV-P~xV&)%<BG<Wj4K<H*1M`pNwKVE;p#os=>6}>{^%ZS_n6RQiymXF
zpsmz#J=QT_*Ql`T^;qA0tnop=tFF@Cz{bb-*s#Y&=8AOV9-CM#sgzB7Y}R9Q`zDek
zVO#dtt;g=x+^WacCfoGb)?_>5&ONs8u|tm??cB+zdof+QS<tnMCA%7j_%E4zIHE&(
z9NJ^g9((oJ+rG-hfj#yy-?ztpJ@&We0hatXVFy`qa2iTphp7eXFpnjN8;?kRk2E>T
zrj9lqV?5TVu*X~BgdQiFoYdo#H0;SHI-PZ@$;4hffShK2y73I-nMS4mtR82ZpOZ=y
z_WT|f^q6%9W}ATvdtB7x_5s{6fQx%fQp+5`hyh&E<5G3x0Wg5edR*S)S6i6e<BA^7
z_IR$xl|8QNac__NdR*P(njSazxTVLnJ+8CzjXkbU<GsN|xznYD-IU7ZoYLdg9(VS*
ztH*7Y-`?YnRA0(__|`ZHc(>*E7}YA09VF@8uf3ffkN0?>$Adi{>hW-oM|wP}5^#({
z=?jxCpR}kaZ0D&SPo@SXf4avrb|yh2dA`RBlJxkn$BVuHN7Z?NPfa}kKc5#xMFj;>
z<nD6G<u1wH<-mecR8;I;!3NlSMX@0EhQ0URuwh3;#D-u;P!zjTRInH9UHQLvj`R2Z
zKTn={CbP4%yR);iH5+F4<lUaUXFP8jeB0n#t+bS%cZ{OA@Au?`p3Jk?4-L-g$=v_p
z{4Y!Md-74wCF{B(O2~qqEbPg*J^9Wee%g~Sdh%sYKI_TnMp0MQTn727Ctn-o8-va0
zO1+6JGU5+C`LQS88!q7r`l%;B+v_iCP2HC;E0#h9f9uKbJ^7=>|4&c;H2g1ve;aHv
z|7-Z-o_IOu@I`Ds?Q+gnx6jcbx1<(28pE<Vmdmk};Y%A_Cdd8ydw@YLWeZ<EM`uO1
zP|56)qle)u<XF*=X3@Il=w`1g8SHLQ{43{J<$u^jS=C;9=E&v9=P0x|OF4YQiw1)h
zJ<KiHn}}MJvLO|N&Bf{@N1CH*lv<9}TAcM9nc)qCy;}6%x&QlqO1@~#9DQ=^mSguE
zYvs^{Vx1i8=2+YK`x@+LI_z(7fI$^pT3ydV2j$o($H12S^>b`sJR2INxu&;qj!kmx
zm}93Lo95Uo$2K{(&9QloEsSkTgW4U?{+$%HRgSHVqR;5`D*ARgw$HIcj=@GhptqxI
zx^Z@QZ-`NvN7hv$(Ra=<)QGzn6lK>Ol}laFFry4_(Z#=q;Ya2eDQ)N2OPTk*y>lF9
z^nG&dYsh{%4#;t!;rknGu1Xzb_@Oxt&T&YNOZ4|8`x)Qot))37dU%cz#&(23QB=&M
zavYuG${bhaI3~xjInKy&W{y$Db7GE@avYaqw7nj0@Pw8POM=$rPHss%EypQ2PPJEg
z<4#pq($ia^8eEOZaaN8Cb6k|;Y@?r><GdW_w0QI(!}*3^kVA*46<v+GY2FvBP&qEk
zak+}$S|PmDm^Hf7NNjb@psU^$Mp0T<=eQ=vxE%K=w?@1<$1O6g9M{|H4LNSiaZ`(5
zV?`xb=;z?AIc}4;&v9ofbZm~>b9}O?E?03Trwa$}vLG?vom+CAyy*e%&2gUvO;8ig
z@j#C8_WGc~hYbEV&TJwND<}35*&{h78pERoCmC!OUw`I$JjW9`zRdAejwdbXg&Z&D
zcq+%!W-U`%a-Ol!sRpOzc-D~T3_hQud8Ao6SEG0-$ICfBx0W*97~aS+JI5=A&&V+|
z$E$|VGWeRoW=SRCb$e~*@XZ|W=6Em1TSipq+d1B8;o^Be#|Js)=lIC%=R*scYjBP%
z$DFNV%`=LVX~=>c3oUz}7;Mg=KDD6Fa!bbTilyjZ7*Y7uy8kD~H}ZRV=Y+pC`VR)b
zGq}j$_XfqFv=sfv96#mwIma(Ke$CM_&r*4Q%kjHX$?=ad|B>U*9Dn85LpKHw^z?a1
zGikwpjbU*PFYmmiTC^Nv^Am=)JmlSiRl7Xx^K`IWX||$RdbDD{be?7MteB^3o=z6p
zCC>_ZcZy)yJj>---iV!r+fH2b<COn~!S&Hzw>&H5>7Hk0WxJCzQAyTT{(o~=z4kC6
zs~YTSFqbEvr;x|b6B?zMclQnjdDmO%(+uHy4!_K0wUlSqF%GFHG|%+~ZYYrCN%L$_
zV8a5{JT(Q0SfHLK%QMVmHuCh!(=Si|{QuQgZwp$@;OcqSFl0@GeGDq0wG3I?U|);d
z+yoyWW#-v9&pH;guEF&TD%QX}>l?m-!3|sVLHQ-8Z8yoYX`XHKY?o&<3*92mmU%We
zyy?0nXRAD0=h-IjzFX0&G%2WB6T|j-cF40+o}Kdy&NC#>juuzVSq%F6yUBL^hTbkx
zTAra6Dl^m5lp|5i;mYtlyXDzE&mJ<HJn!UrH_u*q_RcdQ&m(#E$+K^sOY&TrXTLoA
z=iT^Wbe;q99GK^bW}fpLoaeAShg;|&R(;I|b!h(oT9zUz-4Vtk<j6cD^BiT&#~M7^
z;4ube0OB8&=QvrWEkx^8#N+dvkmtlaC*?Ui&pCNcRuXwm&vS-JJ~hv2CZU-DMbXmk
znMN6t=Pb*Qi29OLP><LI&&_i|o(uDwm*;$w^Izyic`k0nQXZPw5WFnU<$3PSbDs&n
zBF{C7nCHqoR~i4+2368#64%LS^W2%|t~@v7xiQZzd2Y>flSRMTpc0j2@$0!Q&)7V-
z=efgznnM1|K$G+CJmahi?)m?7*v#bp79`Gx^E{B}L3@43q>XRYg0k04QE+0ONApb2
z^Gcpc#_)8WDY9F`C+B%Q&l48?$vjWBQfx|4bRo}J=(BmA%QMxIn`W@71i|O?ypZQb
z6R3>6Wc-Tz^8e^cY%?sD=yC#jotfv=Jg?=MmFM+5v-7-Z5#MO#p_#e_N=t9$dE4m1
zo9Vun=Y2V-0^JLIkmtiZ|K?eoXHK5Ed49IE=H;26=kq*Yv@|1WA1Nr$CwUg+S(xY3
zJfF2PtQ5u2Oi>Bx`7+N}dA`fD$auca^Nk@265F?iH~GJB;XfMkL#q@D{i%g3=fC9n
zRb7Db{GR8}Jb&f+qZPN=DE`j#k5TkFp`z<i#=HV;1=sZ~XOIHR6x_~Zy8`VCuKji}
z`cehgHai+FY2shna1lEdSk^d2Y?gHS0-XzVDX>C;t`>2{g7eZ%2Jr~d)2$V2<pQgi
zw6H)A;}mn=D686QPlGw*Z$>W^@C$BOUMvt4+!=4-dW1-FslfZX|IK2RO-`kiTZN_t
z)+n&1dI2NW42oViBs173(94kCt<cp9tlq*WcJ%rbSj%45EwHvB{R;Fqq;G-4N4PQ$
zXz{OONHgd1x9hd&0}HI*!WF7DnL!24FK|JDjS6gBV3Puy7TCYQ0R=WIuz7)93k)r=
zh3crl_62sZ=vx`w#^BZk*K=u*wrzp!O!>-*9<A~XHijJw>?F<j-jKqQe`f7$bWI0#
zF+@3OE<!5SumZam*u&_<3+!fy=*_b1Szzx1`xMwqb!`iwg8LfJeg>Ok#oMeuI#Bgh
zV03}wE$H9^BMKZ*;E)1`8s#wQ&5%Kh-C5AbGk4nR$O0n^98=)fR#}cJaJ0&3_c+P?
z#HnXgf#WQ0GjGi;_!A18Sm4Y8V+x#Pp{Eu&t-#3=Rai2PZRYTF%l{e1BZ^9)N2#CH
zl6h`{vkRP4STeh8rhA@+Huo$pH2m@w|3w8ZHvEzn<<bI|8QvU7Ut#!_2Cp)Bb%ASS
z;bzR&nd$1Bo9wx1+cy@tsX#}crF?$b(!069<N}WuxWzbcEpVIEsIS^hl(KibA$JtG
z(~!FgJY<OUbGISm3fyDJy$0_yc)!613_fU3{2F_YmmS)0?%@IxjQ)thi3T4nxKEoW
z8GOv3UN!r8qQH{{-cw^N@Kk}P3%p_cQwls|$cqN28hp;`cbXOF*;ZXYU(m^F?*(IM
z&IMjF{AJV9bc52*D+Oj4KGWc<E&6K(X0`Cw3#_cG(XD1@7kIP4TPEu50`D54lD?x_
zw)t9fSMGxX9~St&zz+rH6qsA!E90D3V19vx1wJkCQ7i5zLJV)(h8oBMD~nz~GrA~W
z81lJ6-5H`3zbv3lr6;uuP~e*a-&&C9-^m#4DxO6xilYBm;HLtA7Wm7EKNtATkY8Fn
zzqYLU_ZH<3)1>n7w^8t&tN*9KzXcW-@O;|*B`17jmSS`Lg72+xs@Kjq+xv7dB(#II
zIw`cY&oVxr`g~^eP6n6vS=MJc-}MoCltdGD_UR(|J}dgp|9AE2X8bD4N<Q6v-uL;y
zXJwyNd`|E=(Wi&csy<u$Y~$0@C+D+<&ze4YpMp=~llu6+`_3-(DftwA0(;f%K)N+Z
z^vI{|Q&Eb(yGKYAK|M_dL1nM%Q}gNN)7z)+lle4!chQg@@i(J1@uq~;d{#FG#chW6
zk#L_4d^Yr1+o!M3IzH?A^z-TOGr+PW&ZbPkrkwSRKG0|VR-XT35c43PjeIuq+1zJi
zpG|x=HMalFe^bsDK3iJQR{tZX$tJk1&vrih`0VSmz0VFlyZQ_@&cQxIe0FSUW+xTO
z=)1Hi&C*GTN;=GExP|WNvzsBi`|M$y|LLKbpS^tcHo9J$dfU%uf1e|Kj`TUe=RluB
zeGc<E$md`ab%??LG}BD?aGw#aoG6L^LPz=><#VjhD2sKp!DCvS%@if!IG@oz$6HM`
z1xiR$&PhHe``qhupRCm9RG%w+uJk$0=X9U*eJ=1h!{<z&vwhC-8PgJSmRW4Gm`!-D
z&v~uPH}#+lT<CL=&!t9J(ii(&ViNv~DC9Dq%UjZ#dA`c$YM)zuZu7au=USf|eQq)#
z*ZExUbA#cE+f;>MGvdugzonJQW-4QSZuhy%=WYwV!{<&zl%HlS!Er{pr$tx9rttfH
z9`Kpw^Q_N<J`edk>NCk_ywAg?=ZO|&g26{x={9xSRP|#%lYO4@dD`c3V|&8qN#j(y
z|0Sd-Q+%E=hN-3vh5na4iF(fGd7syOX8F9}^P<lyJ~Mn?@_E^3dP|_9NK{j-V(FP_
zGGA?3MKkDipErEo@_E~5w$Gcb&}Q6b&c*qT&$~YFnFPIx{$HLy^qJ!`-{&Kr@49<)
zWy2l3d4>-#>sl0hANzdbv%qJexzk?@ZHH<{TWfUsSB{poH+Nr8e{O~S-Jnwc!sko1
zi|*c6K3^O08=s$iem4ADgWnlkWbk`~KN$Sc@*p94e)0L$=eH)O=|ub2&5P6&`iIY-
zK7aWdFY%8&ZIM-q{OhyWXZa$Xi>^EHinJBMaINsPE7IQZ<%)DLL_EtB>1g;;2A4Ld
zp{#;B8NTfQP()Wh+oi|~MY<JPspyW@tXSmbw5@BAd$eey10-6yv|(iTqAsg<Gv(<v
z)ag-V)gpe8Vv(Ljaz*k*3Pm>)(PD+Vm2;Qzy1nAk)uM!+ph#GxR3s|8`<Ju;qP3>x
zdWEtfW^u+vk|KvxIkZYzq*`Qnh21LDiqwnjSYoFVS&>GOUyA%%q*syNMUE+QY?0N9
zymYsBP?3X+tX_0K8C;{tnnn5)-Ph~u6j`^(T1D0_a+|)-ZReJu`bw;h^c3k|WPl!Z
zRXx0K=X(18+ImF>7TI1!F0y`+4T@}DWQ!sj78z7z<06|B*{JC5qZp&Vd)(!&5D~tq
zQG{$(L^ncs65iQqcuS*iU1XagTPb^OUYF6{30nWrPYv|(SCQ?EsKZ4UPxsEMdxMJ%
zDKbpOSE-A-=iJ-5$SzipoeW-LH&^UhbXQUgEpqc@m%8w6p7C}ovb$0*vTu<+itJf*
z|C!xO#o5`*Cb{b@4({Z=(Z$<ahGh3L?I&FoIiSdas-XE^ag?|JJnyv*?gpW=?sB&}
z=n8AKkwYX<%R5C5HKiS9@Nk1F!iXaJ*XI#M_M7NRq=Jkra+IRjtp!IHQHDhvRYa$P
z-zxHUk>iStE^>U46N=nh<h~*&7CEWN<wdS2a&nPVikw&E{354XDrXcqv&d;yoYRZ$
z{8IDel0GXQV+>~-JWJ8<a9{16Q{>ztBl^1hh$8+Aid<+sml(XL$i;@JI{uyF7^E4&
zOHKG?21h>VU8zP<<c1<Q7P;E^CGa{!u93C3DDTYlt~Vt#le<ZkVnKHryrsz4BDWX0
zRpzI5J;igEEzEPt>AAzwk^-eJ5$`H;w^7Ea4O(;smF{stJtw!_U*v%zPZyaYOE5O6
z^zkAO6&WuB)4EWRM~X}=vhw1^6N)U_tWCFKK3Zf_k;jTmF0$fq@8)^lce);=gD1_X
zS~ZeXHYDc>6ZmA2r>we{zuz%DV@*S?<9Stqyk(JTMV>W$SIhr%7Ax)Ky-?&uHACZ<
zLB3(g%Lb<xdBu<!1|@B#A+HvB&5&6w`s+pBKhYDz>>_W<HFa{e*+m_P@4Zvx-6Ef;
zMVKMISLDMYbHs129~k^<s{2}euHi!FtBthqd#8FI$@>*)^5|6z3yXYO<U1+K*gh-r
zr5K8Q-iq}_(f!p+oO-@4@=cL%EvOm22_^7*BmUTm^+PL_pNjl!xOntP$Zth{FS1NX
zr;tC2{8@B2$=n$5SCPNfA_7hb_(w)kBnxN+ES7o$ItO$K9A}%sjsX~=ifb3pKA=P3
z8pUsGIAb2XqqmfWE*-E;K&OCZ1C|R|KH$AJSEsr&<eIPBRvPB1fyffZe&wxT{5=9z
zHDtwrt^wTwRto4IuyVjEf%^tw&w1WY^V~hFrB~VpZs5uDB%@r@?immSgaNsLd_cj3
z_yNVhImro~JYC?^Znm>wF_!|OfFvL_wsJrvAXbW<T&Ub#1+PBIOXqvlfSU2t1LU<H
z>*RH6^V*MgY+~*e&^ut8fNcX-3s^m1!+=2nYXqzrFd$%^fIb0hNkZU$aJjarNOAj$
z^9T1|&Nmy*b@#U<ME}Qg4Po7Y^#kX-)(aRII3Mz9XK(Tl&+q8c-5{Xn_b%2(0UJvv
zI-+)fw@JXJ0b7~;%>p(L*dky{)0nQNS!t-#vo3fMGOx`$bwQg_+1g4ZL~VAvfMEf{
z1GW#?K_$|yDFHhN>=G~}U`L~<$J{C4^R?XPfo1K(T3SO5N{GtRy_<8|y9MkXa8$t2
z0eb}O8L(f#{sDUh>>aR=$`zoC+0`AWn|rUl>kD*IkIFSr_x}eR7;sR)!K$56?p7b&
zlBANV0Ulxsnf{0~;6qJahXovN$OwZ+80?`wB4A_-KWR7b7{ew1xPW5=Mww1za<Uxd
zx$ok|qXYiF*Wo7`=Scx48=~?m)+qrO1za3(YQSj$rw5!7a8AIv0cQq`2{<d@?0_SO
zx*qVCIj%%=JG%_;x2L!AQ185e^8+pjxX{uSPqR47*B!qqMcwozQb@ox0oMjx7I1mM
zRRLGaoU|{qi+4r9+cob>)AJ!Zf!WVp74_my-keoD(XR`*KH!GHb;RnpRT26N`M{6d
z6;<u0dp8B#9B@m(tr8OOPQYyeV*{QHcq-s_E9Sic_sKW|?hLrgtW>HPXF+#ci_n!;
z5_^xDVK;B>H`=6=`vV>cm>BRtz=Ht~1&j}PIADU=s_N+Qq3%!3`YQII0p8@gH}i|O
zM*}9QC7M`Cdn{nG;ga^uG$&sd$P0hMh<|$C(*aWgrU$$d@QjuH*;d@C_Bu^@8|KZf
zdCvtrZ$U2vycqCOfTBy3bgORbWh=sH8(q(6NqEhWnFe1~6yu*2@VZ(=!0doG1KzS!
z+=sorT=s^{Z_|w>(tw)JyK-Uy-voSX>U!VgEDZP{;6uabs5%1X2h24FW#;D@-bXTk
zfKLJz$R6go_9!<ZW6&)qJCAa&UClLp8t|D~S-=+oUj}>?@U?1f@#69Kx#l3BpsSPA
zG~@u4tM399$yW#b8}NO=4*|ag{BAAfM}xlv{1otWpr44jepUvfK3DnqRq|i+e!kP;
zf5`J&wuS$xw)3ECbQ1oz9R8YKpD!KHVtM<Jb|GHqx&S?GhG_iUzC~Foq(ex@5ZRvm
z*j_f`66eyPbA1zrc*}+?7jnB^LzWNe9I|c5b|GCtRtTwwWFaetbTxrdNH;@r23HE{
zZpg|8dnhNm0?s6>QdSM=8M+(Q)Vb6<xj|+=q!8j8v+@vz6hng0efQ@sIXTf?xg&Zh
zbp4T#a!4g44oNIZ8nR|bcR8DKuCeIQ%&UgfLN{c6R$qz!<uyWjg{&RYH>7vSo>th^
zLO1G`wADk_kc5!QI!qF>mP)68Y3q9DZZ3z)Ugt@UtzXDMORj&&fRJ?zUpHjEkV9s8
z2k+y2zAngmv8x-ctsk;M$cC*FZ5=WwWTTKqA5U#Z&&Dd9l&M*O<#RKG%JAkPTeR>k
z4cW?|7CEKEZ9-mo&Dr7hAv=T|6>@aQU{lLJA^V05u@rX<*(qe_kX@wbkljOe4H+6T
zEM#~{*w1sWug&}P1<%uUmwnu;Y;_N5CS<RWy_JXlUf+f*yBd@{*xz%VkxaYC+t1`5
zVsQVE140foT$)$*4hlIqWK7+S8P0v#U4<vT9U5|2$l)O)LXHSIGGt_kQWU=)4a+sc
z6!Uqzxn^=q$gw8y!jMrR$Az3>ucOU)PBHxWkP|{q3^^&}WHYUQJG&8}eCeBywP{GB
zE1)I$)R5CcPM2Elalf@v5^^<XDtjSkg`6F7e#iwO=cwN6-UwZA)bP$V`RBD1uIku3
z^KR_srOSGM&T6|T<l>M^LM{!tIpmg*%R(*>xgzAsP(S<g#H>5zF8roVhz6o#I(b)x
zTphY0%{3-j+PKz`>kM9R@CJi78obG%tnb#)btt!mj8!IW{4XKu`1XFrxu82k?oyL1
z(WS)QA>%?m30V+wPsqI?&xA}3xi92?70m=bU~r<r2SXkT86Wa+$b^tbLS#--mkdC4
z@z$)iXYX*MCcUao9}Srl@|Z=`U`!6S>5(1}c_QRVqdyh$bjTEI(HcqW;Gv4?8ugoP
z(?XsNc_U=DaXx48m5}E{UI=+H<fV|8L#C^a8lL9kD&5wd+;FZk!P#D^pEo09X2`1{
zuZ7GCdENZgJI8wcI=T8<SaUj;u_@<on(%kk77TeS<n54m1Z&=lle|g0IkE4Dd|;vT
zLp}_d6EZi{Pbm0go}0-k+Zr#)W2+C{??IQuM<E{@zeXlf(N*7i3+?r18F0v_A)ndn
z=OJH(d>!(IS?QNn9OYj%_)W;S%ClLiBzzaLsD*33+*JDyAwPz0sP;{N?<ZO84EM48
z33B@(zlF4wpv3Q%kaGB!A%BGY*`mms{T=d8$iF6ev0%yha0%BVeKzrSCEAx<chJdT
z2ZKwO=vZQ@5}J<P)zvBUg?>&C%amBK&`ZtPE?Z)`63drdo02Gns{31^q$3$@P-4Rp
zT}yN;5tm3xtW=`ANiLOGxx^|Z3ijH=qAPB$#HuBFmXL;<HYTwe!RAZ4-Pcps>6a)P
zb5J6*xQeB^kRwv+kx>+-Y)GZ#{?4=dvR+!EYLwMW)C_4DRNT5DSqXVCP0f1QYi~s?
zvBv^8anM4Cn%Ej8)+{ltpVz14hGzpytW|O?ckPlJVD~lH&tQLp0}QTXa9xAz8Eo!G
zEz(6mCD*qq?w}GIS)$vO*to<dC1>p_!lorQvyyIGV)GJPD7w9FSz;^W-@3G9B}B~4
zDDnVJq)FMn#14wp$@|0l$H5kBhzU_^-MPdrB_@@5tjw+@hL*T4;`)eTC5B5~5w(cj
zO6*?Zof7X#8zuHEajn=&>{ViKlXG>6eU#x6XO<YFS}U=Ci4#klRN{aV2bMUh#L*=V
zD!J+2NK>8icCf`gq{N}76Di@a5{I|&5hac={KytXN^6eXjwx}h5l5LoEqQ5v*Bm|_
zS7NjU9p8#|f{d`uY4~KLoKoUcL(~PIR^s#$XIKr2;hte$VSd}puAb(wub$|gRpRUt
zR~Yj-svQkz&5+J5ab5`xeiY?=E5Zc^FEn_O!HW%EVo)W$)R4<cOM0|-Y#r}PldRCI
zN@$$lEZQ~3Dg62pH<Wm+#N-k;mbj_Jy(R7|adU}V)N)JQS>o0bx0M)M;`S1icCN?Q
zSmn5O-e32(jUVDJo}HiuE9YNgT#0*1yqI~{c5vfTjW*?Zwj1hc*47U1{t^$Acvyuh
z@nDIEOd;ddW`{XXuKBFo-M?MDM>6k`5)(^2DuYp3mhqMv;^e5~Qv*@&sfO@D<~?5G
zi4rfDm|o(^5>KhUlz6tp(<P>qc&5bEl3PENWEE3wO8v#7UEMH4gN^4(Jg<C~cu7@U
z_g;|CY4bXN<r;$gt*Y#xj*edobgz_{QQ~!pDlxOft0i75G0So;XMR}bhAUc3_*ED8
zb@H?}JG;c2CEhCWc8O8by)75EZ8*&7N2zEKK3=!b_wwE=@qUSABiEKcDDh#5Z%TYy
zVor&<B^H+WRHj>Eeu<A{c(UzYuE^bO3a=xSpGae!+<bh2)Ts4&8<Boi;`0(;l=!m5
zxx<~hHhQ>Cn*U1L?(1eB@>=pFUrVJnXZfzgq7r|bZG2zihZ4V*_^rf`C4MULv(zpZ
zI?DU&tv2;&-`Sd~?7uqSQ|10%;*S!4miSA~Hgg)5DxS@}4_5ak>ld7O8UX)O;@=XB
zWoD7%kuz_LAY!SAr6bx!w2$Zz(J?|ph-Rm+`W5m!Uh;C=tg+rQ5uGA_@9PEt%Dk3t
zG=G<z<sz1k=p4}{V!w86#fTLmR*YCVVwH%lrd8GBN=i3!-Gm|vb~n5^((4hiYUJ)`
zE=10$_Ke6y<i%h&&}zgkqMD%)RgfRKG0BJhy&xitC`Ck;L=sVss6=QTAT~KNc-69A
z)gm-aQ`|J7`KS1LL>6&q#9<MQh+YxfMQk6@J91sdx)JLMiC8^i4HLeW<#tWO`xu<o
z*Lj|`m0U!>i2e}+BG!q}q*9|hEs4mVY`TVb+b3=at+f=TJ}`2Vh%F=5kJun$!-zo<
z8%JzniApDWHi}yQKVq|p%_Fvm(7%<{Au3dZ*uMQd?aM#h$y;t_+g6s7tu1fcL~Lt_
zdI62$mA4%%bmxd&3>h3T#29uoxRbJNDa!tLH3rE)Fk+~>fQaF8{t<ge>=Utj#2yiQ
zM(h=FfaZWhTvw~oNvpCw&D69!vahN>Vt+A2Xf!3CAmLgR`n%>btf9VUOb1yprH6wp
z1BXPs*vZSi=pAmUpA>O&#0bNWh&VE0WP}V%xf&gDl;KB59An6_ksDDfbd<dcIWBUS
zR0}!YB%Ba&qU75+r`bU$-BThijJPP`)QHm}PH*Ms+=w$G&WsonaaP3H5$Bi?IcH56
zrE@hUA!@CII(g?=iswgMpjLyM)5$}M;bMz&dBhbFml&?hTpDqirJ_7&_^RGnh;nje
z#8nYjn;x!-xYiJrRCOU!7rY_jMj2t5fo0a$Vbq9^B0i3|IpUUxTO)2$HX^1*jE%TG
zVtmBI5qCtaHO#v^VqC<X5qGIcW^UrCy6B&I_e9*Q_BhP@Vw`th#QhNuMm!Ypfb9Hv
zZ-kBWl?QD?b*_8g*S&3rc~j?k6Cxgw8FcoZikPUZcJL-eJQmSI-(_32HPW7}<`(fp
z#FG(P01-tuOseVaHq<TBYM?8VcsgQ=wOqLu*^fq^(;}XYm>KbE#B&kPM@(1qjF3uS
zP~Anmq(R8>P9ZNx#50}hx;*U4vfkpw`Yo?k8fQfOvxZAc1GCp6W<|Ug@qWbX5pT#I
zBHoRd9r0$wTM=)o%BFZH-`}R8^@4G(1!*PryfwT{`gzwq?yc6_^&RT(K8W~GacgdZ
zKPO_YT6Dzxi0fYVG<jV6DYud^Li-&$>NCz$7ogNXk=rb@RG9@43nM<2SJBly5kEwH
z7V&w6Qu#uyIO1!=zcdEjMgL92w-Mh(ERxUc<fbaB9S!g0c-27&pT2^V|6|0T5r0Me
z6!CM!FA={+{3cgya^&UI%_;wCXmX62p#32qqE=%=aYa|1{w;&iigd)khAcMdl^wCo
zAO_nRY;RCO9m-7g+^Bo$GRu@n%A{pFm0jspDbu6OvSpSlvwWG(D*HHZr7~SCR4H~V
zvx4C(8thtjJ)?>?eTY+_6w<xS%4PJUs22w>8MUrjre~S3OsVX;iJV3B%jC-x%1(zO
zY7tU)RV))&CRJX|&DDuS#;lB0EGK2-Uub{QjLQsab4FM#Q!BG}nZ9M}WipGhW|@W|
zy~^}1qbMrKYGqazkG6fwOXj~yXqxsBY?j@pmDXBi*OO{2p>+F|S*OgpW%`#HpgeSO
zHh=3R=Qq?v?r@c-*@PU3e8T!=HZQY9nGMS5bwh)L3~ppl#Er{rQf5<o-OQkFvv1yq
zyk(iK%A8u}v@%<l*`~}vWezU0ZJF)L3{w^8+MhBzl-aS&PGtrgMV*4QH^gv_*_!LX
zJKO8726r*2tSWS98I2j#(1w@Ut<3Ia_9(M&nf=P_S!S;?dzaa#jGB*3R8!*-L!HBy
z50MQkmHo>cQ071rsJ$UIw`bb90g3jKG~8154k>eFnUThDsFYdeaI5hVWsWeSYFRy|
z##Azuqskmz<|I{z#!33Zw9Ij3MwdCZ%&4*(S8Grthbg~we3=tW&WUCHqr~M+qhh&S
zg({-bJ=uhuB8$D>3%YrympP-%^<{1-bEZW+zsv<?##q&#Rp#t6=NNvjL2U=f0M0YK
z%|1N2u*^ket~ScWWiBamh2cu>(lVEox!lCc^UIm2r&FS8O;?t=N^Pg^%BX3zEb|(R
zb#0mJ4ABrm?os=*H<tB7D`$t}%iLV%mNMhY++&nm%iLb(4z+?ZW6Nj>PWGlH^bb$;
z?ksaxnY+tq^?oL9*eny3mrxfhwcKmbCG&wY_m#Q7?DhiGk84q-yoUE+nTM2+{K*q;
zU+<rqEAqo-CX{)^$}&;9H3=%?LG!%pA8-tl%RDX@QE}sEwecs)JX?0>$)7YR<f$@G
z8$QM0GX|%&LZ=zxJ?K4G=J_%&*z1fkGt0c#;(4je%Z5)k_)3eu^PAqQWnPmr(cWc+
zS!G@?Gq=pVGH;ZbUFJOtdeh)L)|B2V^R|^`*SEc$7r1Ukao;tD_5-~4%Y0DgLwi+A
zoMTbM*1qo8^vo~wS((qvd{pM+GM}ii%WtSTs21*ZzDSc4@$2}6R5YfG>+ZiO^JSUE
zO0>dPWxf_?nSU$~-<0{ejQGX;ZJF=NZe4nj!S4<JVDLwSKN-|?SUkU24u3VuZw7xi
z_=mwi4gO`Y$uIf;%C@_>cCGaX6{M}=l%|IYrwwtXJ5>LLG)j95>R_;Ag{3MiU0ISz
zG02uWRamydaut@Z(7WP%d*=#WDwHd(-dCuwq9HviZhx?A1q}&SuF%bhVpz$L?iDmd
z)axoOdXEaL8m?5dd66?bU!hRJuTV5;r3!&o>$DMIP?Ck~kxz?^qLm!UtW=0ABrVBx
zL(&RW6C(avWyv~NW<d>uy-b2~C5F{1tX^S_3Tsx_u)?4UeM}((jb|;x*RHtw>RX{-
zh5klqs&Rnf>r_}<Tfhc|tY?T8CDyml4JvM`BJ+5&?rmi1-MqpU7PN7NO)6|^3CT7#
zGorGj0nC;awyLmQh3zYBU2(e=+o+^EP@x^4!QQs21yxW#=Vq0Y9V+ZtVW$d%D-5Zi
zsoeMlZk!<7+_}Oo6?UyKw8BFj+=NAjAz!Lgv;n$PH*c7wUe>8CRa1r2W6p@#v%+2#
zI>&U0*}K9%vW=LfW49NxZ-r46j#JLHVOnATiW^<%IlzzuD;!ke;0lMd=!Y3{sKKpw
zbdK?G!$%lAqQa4ej5K(Z!J`cxWAIpmilrgS=!*NB_6Y`$uehOU*XO)z`+Fx=+*swL
z3MW@MrNXHd9;-0fD*7~ox2jwf&Zux^g)tSbsBmS4vn=Qm*-3@7E1YAm=T<n+kZ*AN
zO){|aD_l_F!U`7|{bGZnYvDq$X@u9b^TdCd1zj%NUd{zwRpDx*+*sinL$0lGUB!7_
zh3dK9h&LG2s*Wi8TEv@-a<jo(TGDP)sVm$rW3Dj4g6^zvmm%W~-d*8-L&jCO$B=ss
zYF=}nA<ChWc))O3{)2`*)Czjo5HU-Wk5rggp_!RSjjo8344Ky6d%VIE72dA!PK75c
zJZ1E^Dm-0bN`+S|yjJ0v3R5e*QgO>WiaV{s3l(0h@N9+WjQ{zHTX1W-g}KXlFIf$~
zY(Y|m{LFO2HBeXd8HNj)DZ?{G%`(dC72at17KMs=w$b0Tb|lJ5#;iiUTj9M5-&I&t
z;r$99RQR~UClx+4{y7!q8uDm6Z(ao{YQDWHqLlEFTD{emhTjV+EUfTph0j!{t$I|t
zpPRbAwpd>n{L-NE@RcEw`HdmpnimzlS&;9I_-BP5TKqp&_^HCr6@IDks}X-U_*;c>
z>bP}@sMX^iM*P|i_5D@h?+X8zWG|*I=HHgI#WMBwPKSDk?c=Z5`G+Q@eN2bgF?6&b
zA(F3-ewmo=1H4YL>o|^k(zV%TW7o`=i&@?f;reIU3Nb6j42~HhN1@+stmbu%*{YY<
zEp{GnB?*y)m{nrdiy0WxBWBf@dQ2A6GbU$jNlZSb5EI6fV*Hq5OkhFkvgM}q=#-rn
zyPh5HMKR@=N=zKPF`+u0Epg-Rmo(tK)6+mmqpZ~8R%2?h>pnCh-Cz$->!ppDUKTVU
zrgzM0F>A%F9kY7O8Zm3e^pSt-=gHH4^5Bw1RL!<D!dE}2;`EK_7t=p>{bM`ZC~Pjm
zYn5yrOK9B~<*+#dUq5C8OKYo`4GocmO=1ScY-DWBa&2r8wZ6A$%w{p0$84dBFrti2
z(`O|y=>>1-TvvAWAX~?56SJ)`Y!|bA%nmV9&NVivpS`rpfHa_O&>drTjTss{hq;sT
zY{)J#SAXQH_?U6tuKEPP{Q0Rd!((=f**#{Dn8RWYm;aC1D`x+g1LXf>_KDdyX200=
zq?!wB$4#SL<wq+gQhv9N-hnX(DJL<9#O^HRXPFy~E1^SUH?dL__1fw{#XKVBh?rwy
zj*U4oW@OA!F-Hp?>n$4UR)94r{(PKU*OhA(|EQSbVor`ZC1!MtLXVp0U3#~7e9Q^4
zn@wxoKsh-v<|HY{oPePAT%-rBUg}80JF-lb#f|}-88as4pOk-7&Wbr(YKgf$=A4*w
zRloZ8Zp?XxTpDwkA?F*sAm&0tE;4wr!AlG(mZmJ1xA1EXxx(O;F;}(dR~vFoyks3%
zv961`z7={y%#AJlrg+Ku7V+F-#9IyC7B4yZa7WCYF@Glfm2g+g-Fg+0FfQhvm?R-h
zxHsm$m@i|#in%}LftXifX2d)g^H9uFF;B;gk9k=6iFqt$Ld+vE6Js8Yxp{zFm(V0m
zE07vVYI*YyI~p`O=JA*(VxCkx)l#$PJ-EP|@<yARMOsB1uh*DoVxEtAA!cgKG+BGh
zb1|>g+^Jx7A3L`9UU{HRGY+lB=pfmPDs0TlG1Fy!?L2LBZ1Z8;-|M-Fo|Y3e7uyAI
zX3VQGAI8j)oS0cLZ^yh7^Lor1F|%XdRJOah_VVXY_hUY7<;yDGl4BX^X*{OI%y*@_
znD=8oh}{;|;wf&zo^*8frrDYNj2hb9n0YY^Viv~CkNHTPF`p>^wxyzpxr#Y!tUGJ1
z)iy1?ej4*x%;zy*$ap%rQ;xkldmE4PbRJuq9bfcv)8wyXzKK~Tp;N-QG2g}f74vt@
zqL}aH!D4=m`61@Vn4e;PmIgYwhNBs@_QCb<yw|(AyvdS(lhcm*LzQkeuT-?uKlm;e
zs+!XLSBm{dZa=17Li>cpauEq_2_$F%O^#ivkhaw{HXr8vn@Zgwp<}{Q2}>vLn1TGH
zR(jRq#3uJ%8tT$rHetDh9to=^ET7Ohp<BXA30)FaNLVqUYl60HRQpGDbL)ZH<I!RG
zJr}eMdeVvNp0IMlDhXfT<N0mw(1JQF&G)s)(=#EL5F~_&+Y87i_zA^?f|6U_d9V?S
z7t3H&n=(JSlu|;JP)?{Mh@whSspr1z{Iix3Vu@P8br#w&uO`%#tAv9S>IqrGmI+%W
zG!l9xtdp>ALhppt64pvsTV+pJBVo;iK8f2MeypFj;iqlN@V>L#+Gn1+xsBHF`X=;C
z=$|kkar0;ys(!mLcBrQvA{nYW2(3b_moPA4qlAqU)=$_VVZ($$iQ7fefuHrYrQXTq
z_VD)J@oPB!Z=!-EY?iQj!gz&RBhnt(7FHeVVzf##+Wv*Nb;33Y!xDxkY@4uM!j1_$
zC2XItL&D&MAqmaB4~dm#lwm1(kv<Bz%iB3&mxNsth9-<&pv@^y-GutAd%tqcM9gme
zHevUKeG>Lf*dt-jguN2>PSBAFEf>fp)jE_h6+u%N6=%PM{Z+1n0~7aOu*QAvT+MSk
zIcxl?kIS|wha?=DaBjkR35O*do^V3Ki3uYTjz~Br;n;*D6GkQ+m2h<81|g@8b2-;m
zmlj5}2&Vm`uV;Is5{^^O6OK>N37<!Mc~Ac864H4^EojeZb6xXE2`49<k#J_hDG8@0
zoR)BUg3jK2InGs$7J{UFecGe0R>n3a;jDzS6V6FcDl#N(4Ik6ln>5#r_tbZ&g3eF4
zAmN&XYZER^xG3SWgv%2yPPioDQZ)g6;Q6tqG0&p=JZ&{<6-7&bSEwKfS0!AXI6w2N
z9RbquD&?UmRv$H7mvDW;tqHd!+>mf%!p#Y{B-~_8wYerHucZ;1G9wRgMPFA_V^up1
z@AiZ{5^jIg)ApQpWMp_6vZ@mAmh(?|C1FOwJ#zjDlhv#e?n}5oVM4+q2@gnq!b37P
zYjHPqa1K+ARLxdf8xJS$z{5!MmJ<^mO_-GMSmL~2a~n~56Czz{xT|*eM8cB^Qxm2o
zJeBZt!jyz(WJMj^UWsC<_m`_tEG?ny_1T2yWKjt(sWHCM_Rn1J`NSRnd%-dzX4Sil
z_GNjP%nbk(ak^zmgVmV{uO@sW7n<-|!mNbPWbg^E%lr}+CVZ+q40d^&t*W`(d(&jT
zm9Rj|ycz)}yp!;*GN}y($u#7BgC7|D(4a!+7&6!3&sqX%(LYjcw(w63Szy8yMW_Dc
zIh9-afiDuiO!!LfP9@#RRr)<2w<%Yb=?J&&&&s`gm#`?|=Y(GpzEAie;YS&vl~h`i
zm8v7t@f-2$RUY`)gx?Z=Px!+$qqJ1%>U|WdL^ZO~j{M(pTxwh?Cuv|K=P&=0vO$WM
z(w4GHN{<v$+NG?R(lym@)4ld7%cpcs>5$SfWvP^<Q#z$Ao4Pe3HFjCWGO06i-QT6b
zo>E*cWwYL%UdL#aHD!gAXKmL>+qJT7?ZT_PE4F!BhU%8GQcCxfl~ZT5atMmP)?9ZO
z{<iksswq8FYAN-UTuMGANC{I4DZa8a&IwWJisCum+eCI^eL*QDN-3vQQnaxpO)62H
z<%?62lr*KPqIGhfO3qn6ZJ+*LIKVqoJMSI5ETxgsKh;l0=#|ntWzCd6DXXQdp0Y;j
zHZ@dawO{Qvs@Y!A-|dF4m9ln9-;{o-n`>w+^j$CS;l)nA{EtQs>dw|lSvPg3%Lb;X
z<GW^v+X!1Pbxle82!ivq@}Dv&Wsj6SQ#MN3IAzO}tx`5gIn;J8HdSalr@hTmHc#Dd
zsm@o+1#KaGC%0a=b;>p=JE!cDvTe$CDch&)pz0pvX>0PI$*#PEQ--AMn6gvK<aut?
zq~1`)(YZ&t6di`tnv&YPO1f*x(3D{*!&7!k**#@%RaxfUcAQ&d*XGx(6}@df_GT{d
z_EJ#Ffhh;2?4znoIUwcT6}|mZ_D_)qmU%qh$@_O1r*^GNtGtS?)4T_#9GNmQ<q(xI
z<uEa)j7T{`wLHLk=n<!=(@u6p)=*H&)Ij&Bl%rFQPdOpwn3Q8vMx`95Sbg1&gSIJ^
z#DKatTGe6SaY!v^$Vm=&tzOw)*xx%j<&>0XQl_SyDl<+Qn{s=~=_zNVoS$+*%9$x+
z)C#(J=V<(&a<<i!wg{yw$*<1wPP@PDT$R-36z56p_Lq<gQ!YxmDdlF1t72Z9a!Jai
zDVL?(kaA<ncjMfs=JJ#)WM*3YPuW$MglH8=cCM?y3<|j><=Pg0ogvpNC${Azdsg$;
z>{8z#+>&yu>}0re^74&BZj-@i(aGjecck2z@?^?WDR-sZoiZ`y(Ufs1_oO_S@=(gX
zDfgw^pYnjRJ-~@=9$%C`W$KzZs|v=aJe)Ei<q=uJP&ew6@$1-+M%_C;<ECKx;9^qB
zV=0fPJYlV1a*8@NX+TaurBlY#1Ku^+(?P+fmBV+uDbhfHcXV9()Ta=#&uMZLDW9m7
zr97ANe9G*UH&b4ad8f=snVIrZst-t+p7M&AJGj;LuV%MtT}ZvNtXGph8Of_Duc?g>
zb3^x8DyFV|OL-%8{j7#PYWrH%cRku@?=3Y+)ojZAly_vYDetAcF9XQjh-i=<qW&P|
z!<0EGbLD(AuzAh-6YV{z$TEgL1KdfZaSyw3$VW;-Nq2B3NN3{mwlL+>ltn4uOTsGN
zXDOe{DWz_ztI#h~zLEiJZ+(dOb;>vL3^I=tjV`p?qVKu7cXP^7DjG8g`61;;=~jwO
z`6=aRvv7TFcmAI)R6A}`@^2}>t0`r!NBAS<&y>GX{!ZO=Ud5MdlA$g+Z_~}`XR(>C
zSEa4WqkY;GN|lebfKz4pD($LnVMjCK_Ek48?og#;m8GgIZLgv%Q{~M*?q4u^I#pS=
zMgIe@bJZ=}>3->rs&uKcLX{P(bgi;hm9?vMtFls+T9ta0?n<Rfu}V;7l`1`|<f`PW
ztXg#g{;2NtRHC?EY^I&<6tc@zUZIL_bP@H4A*@oW5?4v8L{-XFDkfpMjxMek#MVU8
zDl>m`#HukUs2Q47X(&khyj6Nt+2aYXw=syb%iC?MRaw22qB@kOv^A^rQF3)psfg0o
zB(GOxV3mGV`d1ks#Lio;YogYvBF<)V%7c5f1zcqV6CzxnCT&<{g3gv$PQ<x!l})N_
zT4l2;L#pgpW%H`rWze&Al`RaHs<$+SZ&l?t&;56M8>4SqWxFcdSJ|P;;8v`v=8485
zL_&6|vU8PvtL#^07ZalByQ(7W2VO&sGR)xcR_Jb3b~k(vgL@j>%i!Jy_c16rT8b20
z*yinD<$x*&nsuq`Ke)<4t^E9#nZv3aUggUMUo{v}<%lYaYjSxUS!HCE3u;_g<ESb}
zSGl6fl~w0;k1=?9m1C=ns&bsYo@`K|qYXK}$_a*?Xz(P1%7Ym6oMNx1Ryoa(_BQ!F
zLzZbPoM%=U)56cHa<<{;R5`cGd4`|g3T<9LctMp5jdGE}i(8?WRJqjf%M4!LqRXXU
zRpn}xx~l8nxu)v=J#kmnEx-!7)?TkOc)h_J4BlAfCPTz?bCp|K_^pQAR%NUqx3}nb
zRJqe|{jNw+?yfSf$~{%?t@2@&IaThf^6cWp6XgV|++XE^Di2n9$V_)amGQzmcn{m_
zxAQ!4Uh<Lai}gIBdYR&8Ta&6hR^|CBFI1T<Q?D|m$}?4-sPbf$r>Z=yDr@iQyt?+C
z^}&c@X-9ATgWhnwsa2*a167`Drf5UNW;drzCmp2J1pmb<FR4XTd9}*RRi;;YrOJ#d
z+8Lj$t>=zzEkzylO*Y(;gMF>atSawSdEaEdt|aW3<r`{}mh;*2T^96~L6zlgL*A+K
zt|85D$K-zH?LSbBALmvZ_SN^lRpwP$P-S72`BgrWNmuzq6n*Vzqj9-<jg%BolQ_BJ
zPpf=Z<?||ENHbD?U$?-bv*qeW6-6Dl-17Sxf68UmsMPqT%C}X%tFov{ry9%F_`b>y
zRsN~+Z<Qab{8Z&vHS;PzSKVT}RHU`&Ukq=)3jSW@k1Bs!K@=*=UxxoJuV`mE)bpyy
zi>r7w+Slk%b6baE)6-Ui8trQTCtO4^cQne<HRsTlGN>raD9>&m+r?e3#_~0~*I2nm
zXJZzzt07%#tWaacmQ2x`+303+R%)fL_P9!olCcTzQDfDbYvy`-8j`D#H>A*_`!$M&
z2Q5mdgsgQ(CP$f6T5*k}#sM`BtdZ8J*4U!PmNjZM>NPiHTDL}4qalYQH(sNc5m&FV
zMvdNvuU4baLa&F`=NB(tQ@9b=Hn^6>Qopab%h*oDHd+y?(ZA-_Mh4VeFTYOBwG_Rs
z*4qaEH3rsLzs3eNHkObY8`c<P+So|>@8)(DwbniONN=o8P~7cpT4OUyYx9~L(rB)v
zyA-4rt+A{3->Sya$9h9*>}V-&EmhRmw#Iffwy&{6jlnhEvU9c?BriSOYvPKiiQ!H)
zb~ed-S}As^F|@`o!*{hJt5Cyh>{es<8hc3K!|srenr9!a@VB`!o^XxN_o}gXjeTnD
zTVuZ(`&(QMBXymohDjQAEcLi21xngMH4e5E&#ZAsjYFlM8l!3)R^xDacnca~@JP$X
z5hhAHRNRq95h6_<Z9K;qY@V_{uEuD4J*CF+HBK=6B#R<`sr1B}n<+H$lO=Y5Bc590
zG~+zI#u<h<<=ZhB4HSissc}|~vum8w3O%pJxrR%WHqg&Eym=-~{oO@1{*~JMc^B8X
zq{gK+E~_!Q#^W_EuW^OUvc}jNSJu!xNT+}l<*FK2*SN+gH(7?St#MtA>ucO#uQ%4*
z8k9J72vfa-G@vow%{6YR*$$~WoLkM(UKsA(UgM6Mb99f?xYLa4t{QjOP+E%kvCe*U
z_QuKnHEhuL4mIvI{Js|D{u&P${-D8!430PWutCL|U`S8h0;(oy1BplFH#AtS@t7g=
zj&-ApCu%%d<Et89*LbSN(=|S>p@TG21Z!IDXI71=HKxgKYrItB*&6!L;JF&l*W3z^
z#;7Xt3pM1}Woe?QIlNqBdX1S<sSK}%RyJl>qtG}_al6fQe)v^sTg9B>@Yid+QPUYt
z-mNiPIhpNg#p!J&q(&j-baIQ{k}Q7RQX=?XjrVJOSYuAj%_Btlz@+KxZ{c$dpI2kP
zTt{C=QRk@kDC8s6sjZBCQe#2QZEk9{d0~xDYkXGI(ktr7)Mn-VzNqnKjd2gQX%a1W
z+B~)LO^t7rZh!Bu8sF7eRO6Q#zsmpD_@Ty+G60zquFFt{wHBwj%#U;2H~T-=+)9GF
zzu%NZjX!GqX$p~Wtvb4MT-Gt^t1+dneEw}k_{U;3HLR81wmQ^VH)Fkwc6Hj<d8^Lb
zbvo4PSm(^TbCOHdS-Q@Sb#|(=Or1`3R;#mmU8mPru1=wjUuXF`o$Jnv_NddP?lu-z
zGPpvW73*|0yj$J5M17>JP-#!h-HpC-omJ|ZE;+g$wV+jv-qT>NPQLEeShSv?C{kL{
z=y9E-PEaSTQ>wd<#U!&_*Rb5-;#5l!tQfP>O)Y!1I(4H|4QfoH8D(Zcy$m)C%3Uib
zy-k$ltWjspI$PJ-rcNJ=xTV3h>a1O-uVqjC{p<9z=*`*IfI92g>pLsEoUB`SZF9Xk
z1M93`X9IiP#GvRK)){2@Mg})-(U(8mjX*Z7vzbvgH@L<Bgeu*w>bzkY7Oo}tZ7pxx
z8Qi|k4s`}wHk5}Us*d5VXu_qgolVZ6bq=euOPyWo3^mGuE&0Rh46n0W9eI!4>+E6l
z1FmxSWTNYa>g*-^QO9KTeGKkva6g0l8$7^Z^A47S3|EN`u5(BWpV-Zn@$fn$>l|go
z5eAPicw`+d(~05e7XNW|j%ne?)){4ZQ@+?n+w1XlPB7#|gC`k0*>Zb|!BY(?^QRed
zy1_FH>ipywRjb>==IlD>)H%1#6?Lwxb6y?!vCCu$I{af=y`av8buKdek~){xx!7<G
zxus++e`yY`gDzSLQN+tFx>mEVs&jRnXX`vy=bAd#*14n3opr9ObA6p#>fBoA1`)e@
zH`ckS?zXly)4y3!Y^z$U1P6TV#^krvoj)I2=k_`}@uiug8i<B@8g*-P_AV>V#5#}G
zx!Z7Mdz>Nn)Va6LeRb}y^FW>Pbsnzspp{Frq=#CF`1L9+O{nvT5u2kd(S=N^^O#9{
z%HZTWPZ%Qp#|;tBlZG_q==EuPonr7AgHsJoGbo1V>%36sl{z!(yjbU@Ixp9mUU%PF
zXs1KlfA{M4%9Gq`*tibf=Dod{bzZGAyUv?xj8C~<@-?}j#fxVdd|mC``nxxzy1{N~
zOWs&pNU9pC^c~|VXH+uYt@B=;_pR<0*7>x~2XcUm7k^l1PMx`i>-D2L^9-L~cgxqW
zJmVF*@v%`psk6YMD;3GteB`q_pUanKbj<jo&X;w5tMhxEuVm77eyH<fop0)VTj#qv
zi|S0!dTAGTPFM@wtKaLkT;;gFue(ldu=((x>ijHkQ)kv#r;1<eu4~Yml^A3UGiu%+
zb^ffgSlP(<tIpqb{;Bh?8Og-wonff^(CAScxLO2O{@XH;=g(-LIZ+z_=#m_%T78Gs
zPPIv`E@r8Wr88E}SS4ebj7}LVWUQF6Y{qgKoilx4!oYXD<umjl{P=Ee%R{mBCB;8F
zr&06H``zoBsat2IjP4mHcJL-nb!&0Tv!3xfozl_MqI8dpRWtmIVn)x5Tt+^lka7AD
zH-B8c&8_2U%T+y>mirVj$Otn^8IkhS$!S9wR*;4VDrs}v7-w!eqpo(%j3gt?s2Zi0
z!J0ua)H5=}8!d{?BKB_Kt7WX-!q+fFrwt{uPv+)CYh|o$NMD2f4EAs0S_REmr-iHi
z4$N3TW19xsHrOCz!;GsluE`i=Vt3D+&)Fzr<BUx*HqF>BWBZKFGB(fbu&eKFVTkg)
zb;gz!Yb%5DIr1~2ZzK7-0xm<lnOeHs!9sV+*x8W58AA-&(V!|?^Kr%6#a@SH>}tqR
zOGT%QWX8iYezo?pn-MiH-b2DO_R82h<A{tSGq+B-kHJGS_RZK&c*X%42W6-yJ<uYm
zsY;qENFx&=2P>gZ9HO{~W*lZbhi8mvF>mv{7Z3GDW*n7qPR6+zM`s+9aZ<*~8OLUf
z$~ZyhlyO|fXlX;AeOYoEuxX=NJ8p6p8urT+Z|vYkL^>34O2(-fTAdz~ahgmk<BW_m
zGj~W{wew--E(X!J-YTP%sT2EWWt=U8m!rcw|4S$8yo~cRF3-3^=A;V&I(rvnT$piD
z#>Hwu8JDUET9wtdR9|oLIM+5Wvl3~`UWJtdxiaIb3^ffIs#>~+n%-$`YBJYmT$eE~
zV}8c<88>9wLE|~Ksf?R4#%0`-adU<`5k0qM+|t5tHAMSOqL0nEJ>!myJ2URexVy!p
z-E-Nhw&C=B+_F6!=e-$^WK7JsFXR4<2QnVac(}#?kRju<CEwGDUlAu{ZgWtgrjGR<
z&6t$&c*YaP`IteiZ%j5sCtegq&yyKXWjt*}<#39SjHwyZjH2W8t_2NS0(G&KBs_0H
zvoc=Kc){=&GhWJgS=FS7TG7pT#pseh!w@B>^Y+Tys~NA!GWAjOsxAY~j{)B>p0^Fo
z&UiE9EqOe<fvw5#j-0=RzL#lQ!G{^|+p8pKG&QG%&sEOHddjWlw)!!|M;RZ>A2#UJ
z;FF968Q*0r%2?Rq|1#s#jL$MY7pDgQExL-(x7U&ndA`c{I^!D)QvSa+MAz(#=lhHw
z?6s}oD*eZd-!gvB_$lM(j9<*)73EhoG%Kk}og3->k@087zZUT?8LG}4%Gl&sdO0Oa
zjwFBD-zjIY%+e$`KcZ}^f(Gpxv~SR%LB|G5HCVdg{^2YBW?Tu;_h`b!zifl$8m!r%
zPlM$fbZ(GqkZ;hX!3qt!H(0sBik3t-gNoI)!6x>F=1NBS&rVjc*HsPnXt)zoV(w|L
z_1^9axIzQJ!D<awZ%}LyG^jVo8qNcU4Qk5pu`Wu<qC^eKhExp31{InZk~XLsB8?5S
z`zwSr8qT(RHRx?Y(vtX_*-%N>uuxHs>gA5jt97r{VC@E57;|4`qrrv^1~us4U_gWQ
z8Vt0cbsDT|h~mmbmD{Czc<UQw1B2(Tw4_B#EgLo1So&$OsRgN;)FPVovRQ-8TXIxi
zE*n-OTN-hz23s3)z!q(yYs$7=gL9;ReFfHFhX#Wi3~6v=gOLq(R0YXhH#B--rv^JW
z*u^M&7~HkN&<4XA3~#VogWVhMdlr4|d;UQ8#kUrYG__Gjtm)XE#=lpCy&Ek1oSR&$
zACdo*@ckMb)ZpL-`y0;z1`jkS*Q#Se@`Q)j>){O!HRLdZIv1x7LJ~&U>k*c^obyo)
zj&8Uf@Qen>G&r`wN%lI**u;N)gX0VzZE)|RE8__bbUZ-Fi4C`U77y`GZg7g>r%H%r
z<Fp2+%UtdAJ#_){@Zvwygp4tGmcg?PYP<a02In<6zrh6!9&hkOg9{s6)Zm&1*EYDg
z!6n+o(4AEJ_{(yrm4VTkFEsS=3s*F_(uh}!-wx%fr@l(fZSmr>Es6?wT?6qypiDNn
zzQGL*ZftOq5${*2wesKK-Uj-*Q*m!;aH|n-YcRIqD7QDbv%y^r*Bjo^V0~+?cQ+W<
z;2uj_XR#Et=eKQZ%M{;t6>*=@C3#<|@s>8Vf`=N6SNqbpy$v3=#yFu_eA`=>ejaHs
z(I~>(Y{z6$gU1?7Zn!V9HMCRTr)~FJ<o_GI+TgVYPc?YD!4z3(gBKgT)L?3ZX$_uJ
z9W{8ifyTW$HKBQpVrfXAZRi)Qj<hT4>RszU4W>7k(O{<dGw+p#I~Sn_C4<*UUTg1C
zY1hn|=qxd4+-}a{^#*S=nBCC&67L!1tp;z)r!{z2_CIpTevq~jw8x>tY|`PF%zMAV
z2Mu&Zs?IHx)^MrJ`G0J^1^g7%_y51|C#9&MU|<J|0nF~~&d%;^%*=v;9axC1*a~)I
zqhNQpC=x2RU<U@6*olSM*e(CpJ;Qz;ejoqe<1vr(IQQIh&#iOM?K@T=9}MKffqZ26
z9D^z)UAX(Wjelaurvv${P5IoAxdy)&$h<aPJ4auuxYWuD>{8&{fqXYmQ-Iu#dA=XW
zd>H}H-COx#AU|5NH}LprAU_XedCyh!F9Z2iCfcK$$8V~O0d6fz+rhs}HwN;j#gg;r
z@c2uOXdwR#bbCzt{vC+69#o_Y2D;g$=0uW)M<<WY9$iehPFQ6-EE=>t+QXd<(5zt*
z&t0Wo!sEF~?i$FV9^E}R_g~Cg_<M!L4G~3U(!-;t$C4gPdGr$9V>yrB9!q;H<GCXx
z8k#B%f+|~y)#{~?J|6qM>`ovkI(G`xV?~dZJXZF|d#IvU@lZ=?%94Am>am)~>YnQY
z*0N-;;nCM)P2&-p=nq=UQfm8o?#(gfbRCa%J=XK+@3~>^K+nys?(3Z!;JL*#HE==C
zaH)`9TPk?yP?PUb^eA}*9;rvmqwEoSBue27_2$krRXx|}#H<pC46hj!vF_0@yxFG2
z9(Rt)X&qHnpyC?jxw;tavA$(TCRf8(87K*V{H=~X%%pGRF~nnINl>-sA+O66Z02#7
z$5dtCV+)T%Jr48O(qk)+y*)-K@gCcF?CP<b$54-LJ$CdM=CPf}_8vQU?x|-bUZt&b
z9eNFQ$ysinZYPi79y@#NVp&t$)Z9wPFEuI_v&PZ~6?40*9zFK-*voULGE{Cl0H%XU
zYWte3X%#}JO7`*CS8D8Wuxi$0e~$w^4)o9xWj3eKR8);uGXixVx^booI>ck7$0!dq
ze4Vq>Y+Xwkvfi&hmpk0!2#<?AF7`Om<0#ds#~B_+dmQ6&qQ_{DV?B=ZINsv~m1K8!
z3RH3Fj_0TS-KnsZmdvg9VD2Q3lRZxLI87?u-JMz0B<K_m9qLmqq?5xmL+R>zqA?z4
zdYt2NuE$v(V?D-sob9>u9;z=%6OXD%7DE)x5zg~C-{S(03r!(K(KdlBk`7?2SYENI
z@g*LYdfeo3v&Ur~mwQ~}ajnM{9#?u?<#Dy=PV#GRt{|GA{rPcj;^XcWah>|O&f|KI
z8$5258h_;0Ks1R^0m}3#0Xki#O1#BmyvIb3NglU)+~zUC<8}`n&QUSypq<J=$S(uk
zK{D0UWREExcSs>k_h#7(nK}Th-cX%|lA($G-5&RNyzcRa$Gsl+c|7g$jK}>R4|qK6
z@rdMG@M#{?)uuf3$4`BImUK@vbb8H2suT5(sug=~>rmr|$332q=6F1%wmjEmL7(Pa
zI-;Xe)pc?y+YFCqJznsbDYN78yoVG<>pxl((2HJLz|=jdSspKXyyh`m^&-{sc*WyY
zGZ&g$>Ex1ZxGF-rJ!M{p_MN4`QdgNu#qy@dTe6=XzpKnW-tm|(mDY>&LvuR1`L4%%
z9`Ad6;PI8m*D?zpA1MtUpNkT>jV;YF=XjcW^NGc%Df6e!>6(Lj*ts5Gc+B(oQd%_B
z89mjhOm1PF4t2izRJ`AKeCzR@$M>GwO;!`o5{lj!QKJxpEST!(2ag|R|D~cHzsPW@
z)$8pb+=DiH-baQ`=d%8q=uT1o;qj-(KOX<e@_YR4xo16e>Q%YchMlr3sO)RvDciEZ
zT6ZqbpCjB7U#C2s^YqU%AWxS(UGwzKvu2)dc^1jDbe?7MESjf#o+a}vm1nWMvwKVA
zodsSz?|LOwieQgCJ@f9Q=!7{=Eww15kzp@M)>e)M(Uz!iHN9o??ox1{Jj>_ZV0F2?
zyFVp^DgG7mtej_+JS*l|Nm1bXg`bMK*Ydel^Q@L<^*n3jT~SL7)L%$l)eQCMlQc~O
zgU8h=Sd#i#^7IcQC2Z|Hqtyi%T-V@w29@`LdAvON-nmT#^IElV*{S96^Asf^Pn4%*
zi7)2~^KMieSnLX`W8{@Qf+`J#5+duZ?pW$4vsus6$kWUd=NXb`<2*^;bvn5>JG4%i
z=3T37<z3&QZ;&B_4X$r+1A`mpb-Y&FSgvq%#99W~ZNl2R-==vsQ)=^Uk!PqSd&@jq
z<=HyVHmZd}Zp1qsI(?+u{px2Gqm)D@aoarGskHNMjG=D_m1or%H0iD656iPtp5b|R
z&huWL_w($MXV*NZ<T*9ZZh3akGcwO8IkotoXYV{C^6Z&Mee_-iHGz`V+9!`XFYz2;
z$i8{@GepGwE$qQwPQC{!8F>yi${|9$+_Q(dPhN+%`A3`YVR;TW`9~N$(%?}BHKRW|
z@0R<H$#bkxjx%_?!4nLgXfT`HDGeu?@RRdA<GZ*{%X503`|{kM=ZrjK@?4wex;$s*
z-Eqyc^PH3CEK{ekd3PCPoY7w$?yk$7o9Dbd7w5Uei02!;FwX^soLg}``Ytl(AwzSQ
z=D94-m3gkpbGbE*E6htgI;|>8F63%cvupCGjZ6D))5-baIbGAZKF<w#ZZZBF^W0>W
zesi8rZgT6QY75#cl;WwGkI!?fwXEAL+4tm`kmq(&WA$GX^Gq^)vK7l6%JRLrDN=7O
zR*cWxnRg2dcjcKXU9xf7-R7mixfrTCIAk(kTZ9MlJZQD^niSg*73NcUrsbKQ=ixk$
z<lWBK6Xx}(!N(P&3V&6nKbVH-G?93oRKeO6#ivy%d1mB!HqWd)FXnkJ&+~a+$TKs~
z+uFMN)SZPW^~{~GOG6*JbH!?UFXeeT&ntOthq;?gQh2GfOr`9e&Yh}2R4lXeyq@O`
zYgTU=d{a%nyY2VMjA-hS=N*-~d7bX%rhM;+ALRKk&sqig75FI6oID)`DDbh0J<lI9
zp?N;d^O=SEQI)b_!RL8?FsFjgm95YdWagYFTVcpo2ET6ee3R!}!@o25eVaaCme!1e
z5-CwX<@wpXe#!G&o99;%$2;HO+Z5SJIseMDz!IbM{B6iT2LClEfod-~<wA@6-E*A^
zbS}6XTdNk_6H;9Y^eE7?K-U7@3M^7^t-E`H#SB^0;MPOkg2UnkmN2LAY|Ug9J%CnV
zse&_Weax#@fu##9Q=oU7Q!5@izNK1Qw!m@)XK(uqcjvujMVBwILV*<vtW;p-0;?1l
zqE3AG4jDkLhiLalLj}F7vrO;YY6aJED9Gvs*BPx*psyjq*DNr=yw)zTjwBRZ2efX1
z^$LUqD(38OuxM~Vfq@0Q0{McQ3ls|Y1!t)BCl1Yq?(XgeBr?3Eg6l*iKPb4fJ>`OX
z4od^bYJte)tY4s(3726nP%qFZ&@2!aND8C{PMF)FOC0N`Ze%;4r)%ullDLvL$N~<w
zENJW}$_7T+(BMW!*N+c2R>2n7)QDRa*s8#0hHq|g3xhgurr=u}zP-V13Jf&~+Zx=i
zuy74TXXI4)I~3Tlz_0>4neT9eI`gyoD=vk~sj|Flf!zw+<ulc1_X2wqc(}kL1$QKV
z&jRNcxIlP;y$g&`s;1@+C~#oGoqyY>z`lm;XYef9f0eDCT-NUo)B&kX3Y=JQozcMs
z4k<9Qz^DR;7C5TF(FG1GaCm_ulwhkGHF@Pu({mmFR&S-gSobcEDR69o;|d&KKsUBD
z!jyVww4+{FgD#o7U3=$7D<Vzs3!G8lq=Fl_oNOw3N`X@goK|p$6~D#}>6I$wcT9mZ
z3ydu=uE1ygb7v{>_H>noB6`~8>;mT$IJdxgs@(0}IA00t)6<oz$}@9bSa2sO?z3E9
zRN!Jop*E%G9SU4s;8MdcGkCcaslb(nD@Tf5a~~!CngZ7rm{eeLf$IufUtogqh~b6;
zHx;<qYU)O{Vy&L#bGH;2U*OgPw-wx^QvH+$nVLJ?S9OyqtsJ_shtB^<CGO8nw6JPT
zQ%vSvRwj2Cey8b7mXfIj?k;eTG2d%Y5)@n+QJ19pz27qUfWZe1K4frOf$4_aquW3_
z|D(2F;I~n^VLp!+ctU9|@JWFu3p`ce^#X5Li+j4jtO73<c*dMF3OrljIm4Cs7YaOY
zxJJuz>YJ(NJa8fYl6k#W;AKNzG5D%MO_wtM+2&M`Hw}5;puFBP<ZXlR7<|{@dj^-V
zxIT~un)4%ra}27fD)^^T5*3}#l0Kgom|Nh-0zVb_qQJZY-<#e0vTgmoDe#ryUmMgz
z)-s;o8ZL$T&XCi$?U--K4+h1Mt#bcd;O_$e6!@jUuPRUT{iDtEd%@PvbGbhY{AEO~
zZ)??B!T&9=pg<R&u0A=R4j&Oa8N}Dpf#Z?I)*_ye&PJC#@8+|J&tg7{`)(gWUW@v4
z_ubx*I2B5dU5L1ZPY(;CRxJB3%2m(hmh$Q4Q}u~_diyMG3<G?Y@mbbqO`o-VmNTOG
z*YN4%v%F7M8ltRVUMu>n)aF^)kW~z>YH&4!tNR>dTL68{nJt_5GkhJNb$!<M-D;Kg
zGW4xybjj~;i0*z0SCD}|o=@J0MW2#S!N>RAHi{TVY9(jqT;Nmo2~`xvrnM}2sgzVQ
z`h;t1zGhx6pFxJyeHuPZpV*w@Nv*UKMQ4*8RgiX?2K%h<vz_s5;IpA2Lwz>#8RE0C
z&n89@r=nA4H}w~8rszMdo0-?<2DdP{rNONXZf$TIgW2d;Y1r1B?iC=P9ej2)X);_I
zNUMl6eA>xpxX;c$yZDUuImu^NpWS>8@fj)m@3V)`em?vA?CG<Y&ptl;`tIy&HU!<<
zXN1r7vSSrDMOBw7JEH?CntLALbD+;bJ_n1xms`Y8zpqe2G-1>YKAEghK8N}ot!h<S
z`5f+ZgwK(_>ydSLPgYu2%rq<1>`7CtqkK2Q)T05%`W)wTg3pOclJ3agkvraZ8@?LK
z3Tl$5h_wExC5V%KPVqU<=X{@2eNOW^%V(^Zea`S1<8!9(?(b-xrL`ahR41aHi0Nkk
z$N8M?bB@os%EbV;)~&2*D5d2u-M-h(yZVs}d@l64(dQ=VkI%(ESNdG#bBWKTK9~Dk
z;k$M0%Y1D(x-}Nr5Lrmc$^NRQA;;A|*Z5qgGPJy0>$_Wo>gm*J%KU0^=F8c+8+<nv
zUB;%^H~ZY;bGy$(pYcAo`rPI-!FN9|&@B5#I}oUwXj+X?ymC(Rne20i&z%ajlOs;?
z-9fwTe>WP{=u(nqi*EhL=N_MDO3Wy6ug`sQ3Mp~Fsn7u>4lMD2B2w-6O!L{Y$W}$B
z`#kKkXp!zk9`Sk9=L4S)r7dbQK2Iq7vJ5)fYEZ<d44LKgqR-QYKVxu)!DkJM|2d!M
z+xQDUGuya2<(CYf-KM<k^GX|kRobhEpe?8B%3t?+Ll&&<`@SJ>`Mhn&I|g+a<6YH`
zES0^ZHUB`T#!9E)N2&{-?|kO?eC+dy@n>G28vdEO0H3)&Uzl^=e;CvaNy3*#`O4te
zKHvO@;d`I?GR{R;IQo9@`P1hwWBAeMC!e2Xz3tuUUyS&x!QTx2ZtxF-x>cm$YSDlD
zEHKJH2LCmv;*xL9V#(%r6zOEn&IXm8E=9LiF9}_XbStt*(e)Q&zV6T^L>*RF@WqO5
z++HoRc#$QF^ss=w!Jb8yEV5LQUPaa@(zi%&qc2-zIYX8<xQsz1rcaUOi>zwS6%4Ly
zaK$1k6`jr~qO62hX$MgPRx@14>c%5P-<n0%Hu_p^-+qQD_&P<_HGI7y1Bwi^Q2mSa
zd&kN5%qw4{VEIz2vUszyDz>GSiUfw24Tf!c#SjIFiqwkKi!_RCP}GwYt}3N|%{FIj
zNKzy<q*Zjsxd#~(GPub4hHIWHr^0Te6k34`A5wG^nT?BVVqrHmxS7Gt4T@)rc4=%~
zWSb)MihNmQXpwD;TvO!QBHI<&zQ`d(Mp}>^itJoumm)iwbC^Nd*qw?DFY?ZU1v0am
z818EH-K7<V>{eX(qa4M!XOVr4D10wN_Aa_}K_d+AV^GU$^4+h<{>E^C!2=B*WKg~b
z7Z<)`Gs-AO6*;=dp+yce=ix<;Y;zvb=2R$E&@n}hEpkqgbB*D+B4-pCWBBn!PB7%e
zBBP6(WcaBDPd0dp!A#C+hM)c)is)yWbDY7m430IJDaP4Fboo)473X<H&M$I7yZkRS
zw#$oLQRE_1s*8;x&P$41YWQUaGu;;b$|6@A<*GJk=B2o<D{_62CyG2-<OcJ-wa9Hn
zZZ!NRgEt$z#o%~@l9@@EP~?sxcN+2bA`=anRAjOtl0T)*FI~N>jXzRkYLUB(+|#B!
zXvn=q?rT%-FY-Ve&&uQ>b51L|Io<Rk5C31^M`cOcl*bKOt#|IJB2O22-<;1Fe6`4H
zhRiVdY?0>-dA`UCMP?fQl0oHhR*@Imc$VLni@egNXt7j0v(5R2!PnJ-Omp5W@|JX|
z&H1h&?-<nV>Af~xYwRBs`Ousn6`5;@R=MXCT?g@Tkxx_+ngtmBGlQQSRJ<w^nU^mz
zYf0{_B45k?lo(jzn<C#9=~AL=iSLShFI_6~rv;o}<d?RD9}M}i$WLv`&utz1)hNHU
z>AxGIl>gPH<VyUV5e@!paDhQpw34T<qXeaeJx-?*oej^5v76z2N-SSukrIoR=x&sy
z3@TrX8M3&+B}()#q^ChiUb3{XMfWmF?>2qu63ZCAY@4!Nn=@0P6-umVUMm?~uf)nF
zRxy0l5^I)N%kb3<u5NIR5`7I(yjj-znKKi(c8PV&xvoK_T=f2J2H{?be2F0?Ha23R
zL|CF?xNop%uw*bWST4D~DJ#QjiPVUZK@n?))D1QaHcP~YBnGpvEyKk>sKnqlzP=$F
z7~HVLMs2#%xryO>8Qj$1W+gT+u|<h3OYBr)c!{k_Y+Yiz65AWYHYJ7{qFAy>w>78m
z9oqCA+vP8wVI_BONXX7@-(3umUWvGCiQP)<Zj?O?W+l9*NyzZMON=nDeGKkvP+|8g
zv40y^><5)NSc%u!#S({<7+K=95~r6KRdUU9uf=mmlsMGz!wep7P|H5@J+j16C5|p}
zOo<aqj4p9(iQ`HfU*ZI%u#0=UUL#)3>~w5Ndy5+R>+1SRB~C7JN{Lgg?sWE2oO*{x
z6B7-6-<#ZVSnu2!CB~Gvs-#opxid?gRpP=D7nK-WVqA%HOPp77Gm*1PZu{mO!*zI|
zTglBw&Nt@;CAW&GLAxj#)$7f!i%VQm;_?z#nAfF>y-V&g)p)ieskd=#h2hGQ8)a$B
zM&nP-#jY-KO^Itw=Jh3RC~;lMEvadIet>?wSk2v7a_7c1!BIp59?#ueV!2Z8mJ;Jj
z+*;zc5|c|zDKVkM?Ik9bm}I4`gz3p9t(<G3r{w7>lTv#}2|bcF)oSO?5_gr{3X&Fi
zG~Lj=Ky`Gth1DvPEZ%(@^OxLE<o=Q~fOBup>A`^ql};m0Gx)f{=>{J*_=v$r4L+tS
zv*RL9nDa@468MxMPq%rVE%9859Rr31Ja4tHf|^s}1;b~Sm{sD%5-+J#jq-AdS4zBR
z_^TyeEAe`XH%b)V=y+&~E9BYcHEl}n%@S{wc&Eg>(p%|X_ne5|Y57G5=TsL{oHGle
zQ16%czyb>Y-74#&5@L{3-^V3BDe-BE&q{n=V$;BB@7xk!s2v$Tuf&%nx&<r}@KuSg
zOZ-~mHxu}c!5<BNt6rcT%lC%NH~51=EolE_$j=6UF_>)&{%$xH*B`3K5=UtLzr;UA
z_h0Dv+Yk}g)k07S!373$fx|ltW_jrp(Anh3*~O5q2FGgUC!l-4%H~`wVDW&J4A+^Q
zB?2ze>WB7!19}E58L(8qiUEBBdKr&=mp7z$z|sNB7`|-4ash&hOALbI&yW?2E-yLt
zi7sCyb=*!Js~Em&K;D9^9<WA0-+(nmH?Oq<`UM=`JvS&|ZKG^2YaFnSvKb(Jy#P<a
z1Nxiq0D}YDoC;V7@QpJJC>p)=A74ob0?PlPR1B{gjQ&Hf2VAJjUj~IV4T%GiHYE+T
zjL^|Cr?gIa92~H|N!TD@!+?zp-`L;~gORa`Q_iCwSg3)Unb+n9w=lS+!L0(eHbnf}
z7&0_qTSK;M)3*=Up^fjL$3Fvx2OJi-k-tLi9I#K@cNar;4cN_)-P`m%0`_d<dj&Lf
z3N&DZQG`o~zJ1NPU%>tW2Lv1#a8SU=fKdStXykA35QD#T$*GB{8H#?WQD$G%A&Q)b
z2OJS_WZ+iw)SHYBI4W=(f=34&BVBsk{R;Wmfa3zU{&T#d(3}5(8`zv+P(L5kktg*#
zCk31wa7w_b0cQrB6>wU>=>ca1jFGc@?)l?$+PBq73>`Spb#g7m>s;K}fN=q52b>c)
z`+q@yN7u@gPM2wcNdH;W9h~z6E|9d%Iel|3l=cR^xIQnf&&2_k1bkQH`x=)9TozEO
z5>&Z7;0l#Pg;5o*47e(wYe=_{s{^hH*tyIuWv&glE+8mVE^~dr4S_q_+O5ou0XGFa
z8}MAf%>lOrJQ46@!1#b$1MUs<zzeqpObD0~a7V!H0TTlz1x!|bb>#H4U~N-p%x|6H
z&i7WdGFj}nGvKa(y8}0x)l%E3x(NApZff9G*iN(avG=Hf>->f+zp5tS;eba19#nw@
zObeJEu-5Z#-l|hiuj}BJW;8Q$f3D}YcOMO0pZHk7<0@($&>hwxr+Vkr-*%7eJ*7+q
zJQFY@KppXfm2<tG>CnoX`n7&~5>UG;s+52i0_FvL889<omQ*z0U6pXaOM%{{;q`!*
z16~PuHQ=?tt*y;_$sJ_U^jUjYsw_Qnr46q)0^SUGOPXW#r~^NW$bCBhVE5d$PWWEH
z`vIQ>e5&*)<pFa7J`VUOKpQ<eQKnTs6^`<yBPcpkp*^4{wS6D(dBEI&FH|PB@+QTQ
z`fXyTo}`>Q+VoYx*8#r={1Na?z_$TE2K*%52>3o=e!vfbyTq!~M7yu--nUf3{u-Y<
z_63*zp96jg_%+}+>2r5?`b+j-0~oDQYlB-|xz+>!4EQUcqYP#K4)`bF-+%=wx|iII
zIhBKWq_nv*2im*1Qh+`hY?SF-rc0TwWk&YM>3WM&t8&xgp>n5fbdCKMDYIyq?qwD$
zvs#(e%T5m$FVnls(q)z?)1yq!GE0_Os!Xr4`+uSqcsKma-9gqmt)%TW%q=P|Q)byR
zE0kHW%yMP=lv&<H>5!NP0Af~j+H6%5TdB;-WmYM(YT1oOG?3HqQoH#&si@>hWA8dN
zw?>)1Wp*Z)FSBNuwaTnlrhl1!W!5gUPMLMfZedfqf!bM6GPF*s`(j$qkj@V%Gq8+T
zMh{huo#V!e(mf?o7sfSWER^xfuB8_Zmdb9=S3;zddf+iEQz^S%X?ufJgBz5I45=BE
zZ{3hanWiCeo1T<O+jy(Ypf*0Z%=&FymT*JEH)>Ocl-W4L4Q|?|Z)V8mWwt1@Wtpwo
z^r41qZE&0N!k62(ZToI#h%{}7Hf6^$!`k>xWriEB4pAA=w`-ZB${by0w=%nz*`v&!
z#&Bra9p&1q%mL=qL8HCPj3~2DnSIObS9ZJe`x}&57A|H%;RlvE$mj=`IYf#lt?0<<
zWQZh;Dmy4Pefxdj4lf;Mu^evvM;JU(IWnGO${btfvofETIj+p{Wpo(w<uWIfIkC(=
zWjDnbUFIZ1?kIC|nN!M4GUusfPAhYj;ZJC%K(%c683xCcIkU`JWyYFwoOIi!^V!AN
z3_r)b&Mk9Zne&zGGMARQtjvW<aG8tCTq1?H_Yc)=Dad~%Twdl1HC5S3<M|(hc!XbV
zUe~A#D07{Rf0>)g+-zyMLH6H#Gl3cZEoH`+nPBu=EmgOfSotaeDg+_7mznsVxI~|9
zobsAtbg|u8<}M>nEpxXaBC6?SxxTl|eMY=r?ZS`;$~@SPNStDuR%Uvchs!)tW@cN$
zqlUat=CLx5mwBShlVxU<dA7_`ZJwvwX_Js=jJS;ne6Gy%Z60|kwOOWw&ocUp?Zm&-
zMqVlNYMIx{%r5hKnK#PLX6h`QwpY}s-z@W1nGec*C~Yb8PMP=0ykF*BsfP@y{Yr9-
zW<9ohrR{Y+0H~$%kIKv`^KqF^RIQ!eZ>h5*xGEgkRXy(UscGi@8viR9Ixk&jep!F-
zUAT`h&yX+6eAT9WZOAtUzcu(>8FiWptM7+0{}}N{gFhMk+2Ah*#q+Bnzm@sjkU!e=
zKg;}O_}^{H@PnM#f6FW|N-lJ%>M$q-Lpp_YHl$0N{@7!=MM4%0S*}8#3f)5%3ppX=
z#E`{9mI$eYR6}}%^b8pgGB9MxkflP_5?yD~LVAa+7_w5x(jm))uJ>PF!X?n~J|TLO
zQ^e|L9fE4_I^ZE>h0t9fo!!IXD~GHavYPR)qDUvZ(_E{EtP#>TWX%wr3(}#BoO&M_
zEBnEm&cy!nV6I=t+9B(NtQ)dkNdHh5S6x_*>lU?R2^w1Hiqm&Ja$e|6y%Jn7B(H!+
zxo4UEkYY$FBnT;oghFZy&k}s==ho5dg0=~$=SrfGTF6cz!$ayJjgU=4HVbKn#337m
zY#5S+q#=Vs28Zr#ZQX8`1#5+z+1@0r&vp;Pt{<W#9jC?rkRc%(hisx!>fw5Mb@v(-
z=v1>xNyjksbIHv^wg}O>!FC~AhHMowG-TV5twXj6-Tt*ybd)U-NU{c9dL6XqF|HNp
ze#iD9J6PBqLxx#>shd_IoM8u$gzOwLB4nSCT|#yZ*)3%EkiA29;6%QAC{-bQSwIOC
zrK^S(y2RAi*?je|qU>wsc|hp?Gq_)9eL?6(=5EZa^PizJ&Ig4YY{(%YBMlj4@F;_a
z8ayoIa6^tTc%(r!e+Acfv^kFnIo6Ql3?Ba<p3xyEh0F{2GUVitQ$jupnG<qq=*;g2
z22V41ddL|eV^k^Td@JOvkg*~6hddB6F68Wx8$)giIVa@Ykjq1^2$?-BcV5T^As3pK
zp0A4D)!FciLM{%uG~}|7QJ*-<B_?(++m)`q?I;?l3SJp<Rmk<`d!USe$TcC?hPpT5
ze6KV5KXW^Tt1lMA4Mx#XYEf<uxg}(>3OQta$gLq0+j4FTnGkaO|4YuK|42~!?+Cdo
zWU8hA&UX6m4!I}f-jMtLZ~Fh6@&{GLDgl!=Eo6GgvmwugJRI^!$P*z?hVGr5N2O^Y
zk4y8na%p~gnuA~M<ls{wPlwDf3C|d8{ov>db(0;v5dM6~3n4Fsylm2DhRh0i@&6_5
zm5^6MUi<$^(-98IdEMx57<|*<=Epnw+lIem@LhxN8GPTM7{vCW;TomL`Ekf6A)keO
zZbbD*B7SQ4{kh!SkS|RAblFFryf!@8!LLHT4q2dvP~jU{B(3Tg6!NWFeaQC~YJSKM
zAwODsdC-33p?@E!`HSu6Hvcb%{A%zwgTIIT(N683A%7YEcboE$A^%E~b1o$k)lqQ?
z=u!bggm<dYxsB_6p{^CWRanF*-773sVbO~FiL*x3vH*)$Sfb)ubPr?Dc`)I+Yp+({
zv%-?*C48w0y(+FR=xuOmgUc8caoLJXkC5dntROiR22@zF!b%lZsjzB=l`C%MsI<vi
z$_DBlhbE`1RamRyW~pwXT49Yg-q(;dEoz-l?q|-m4X#sRT|?G0Umbc^Sef5}6}$?=
zD(qAtU!hQ8g9;l~@GBH6)GIV9lqv)jWMiua%LXeILPN46Px94)sK_Y7YYMw_PDryt
zTwzd~o>WK;*X?Hc>T6Zpz4h#v)?mf1zeTjeZd74Ng{>-VU18(4gv}~!V)&+Qik2)k
zH++i<TV}*uZs(p0<!@t@9V!g1ux*9y%(;EWroR$*<YpeUkaI^PcJA-aOb%D7D(qp^
zw6m4iE){p%YuAcf*50k+?y;)J+|wBLuW&$xy(;W&&Jh*%m2;r0)_qi@d57%Ru5l@k
zoCj9)GMm$igWB|iE9m00D4J&p9$MkB3TIb1r^4YCj;Od^V~nNnNQ0*vJj&qF6^=1P
z<#}v{;|xFE;0Xp#Z2OKj<fIBGw<)I>a;m}8q;+<z>n3%A6}Rr8Co9i1ud@t}mHt<9
z<0`IW)e^m;JGa7l6&|keNQLt&T%hu)xYe@@#ZzH|<?do@AXjLSr@|$MUuy6&gO?kW
zh95KBExBK1L2j&Yb%kpxTwCF~3fEV-q2gx2np2OP<YuxuqNCIPY8sl`-c;dc`BoTT
z;noVbRS=IRLE_PXM@tss?0Z7)Z+mayc9TD`!X!f`8&rW$F+`2=&I)%`m}-sXL4$W2
zRC~Fn!o3ylYqziaD?CtfH+N(cvb&`ZwK=C5GTorgTs^ANtMGS)e=0m)(c_$aSm7gS
zRE4K1yy8lgrz<>D;e`q_E6k|yY=!44Jg?S0%#C5Bdm3vgBT_s;jm>6Nc(KAu6<#(I
zvHN3=E;cEcu1B@HyTfv?RhV7jZPiGH*DJhH;mrzf$;#dC)&w+G)Cf?cK?PJvs#M>t
z@Lq-YD|}FKce3`h=k!I_r+=4-Qz|j1!p9YUtnian+$R-2lj>I7rHN0aho8EWY;$E)
zb)2%ow-vsqFwdM{R`{yI*M`e}>M<D&UBsq0XTCF{@c9+KmlB@fdJT=(e=xe<CY6`k
z-Om;Mf!(zl;lEf*{I$YwM$yqGncqJuZVyQ3NdK(3n+Sg?g_Yc5`oo|`{_?8Qr^<qg
zyVVkEuwA92if&kSs?xd2qE)(A=~AU@m2OoQsk-~Z%8LqI6C4c}wO^(Z(~9U~RTi(Z
zOqFGI4$qyH$}M5cN?4Do>r;AGS<(>UOI7LB#(P&;x{XWQC05VNOU8Y@bIVs<z9g-m
zAuCi_vC2wSR<5#&gjaPm)LEWYtE^UaJ%THNfo?Tsz#P{o6tHiVHLI*u<?|l7#GVIF
z><<3gRo1Dpu8AE`WuPJJ8SHQA&yG}iM)9lUs}!nkp)X618l9A?Sao}L((`hau*%U9
z$3#>Vq{=&0-mMZ<sa3hC%EeXcRT@<euX03{W|g?gCRH}Ay0LCjWqrwCC6`*%qO__E
zGJJ5ASM0$?`EFp$%G8EcHp&vIHGe}kuJXNg9Gi)!%7MnYg~1)G46Cwbm95OVb(L+a
zY*%HQDnl)-v`+UabgplEb1L>7RJ?jq%iiaaeb}kWaOJehUR8FkvP+fSt8S|Dpw@q^
z{CBG|a!PKxmH!ob2(jwsO<Ffo1KGREh${P4*}uv@Rku@lfX4sI-E=o@(Ghg<9AH9*
zb+{c&*%KAA(r}Qa_TZ}CF=M3RqpBQQ<*=%2gG#eM(am~P>5AycDo0g0waRI#g(}Aw
z|A|$OHAK(TiT^mmCHZ(mPH-CTA{uSEKFNqDSKTZ|C47nzrQ|C1)2oa#-!qIjrY+~p
zDrZ$0YZaG0@u#p7c(yT|Q{~($=UI^Rt6Wg!Lc=rp602Br()f}pm#Vm`OsjI47XMWg
zRqm{Eg$cQ_%1u?Sv{YSH<?1Te82vgEb*<rg4Ns9?U*!fXc4?+o^7X{r%~fu(fCt`_
z8*j)23nk`TtK4RIKTF2#RVG%MRAq9NDMpvdO}!_l3-4NFQz0m+>Vxj8x^@10s!TOR
z_}x+oTWu45uMzJvcz=}#RM%>H_PCSo@QQ7Em4~Z5Qsq&LV#b5HV;^%mAT@ie%F|Vz
zsq(lrH!(j^<w?Vpou{g3<S(`vMtQ*^eb#UhpEKn7s{0R`%64XzS<1Mz{THjeWO2Q$
zMr3TtNapowmDh|i+u-X4-!S;5K}mkA%G+&RJ>Yv)-mg-OC`EiAYg6S9D}QC-qbhUT
z7Hp1++VD@LsD@}G;4?!$H|XZM!*X9#nOEh@Dqk5<-R0L+zNzwKm7l77TjjedKbZXQ
zt8S1p-`a>0uhB*J#;oe`g%fi>TLzV{Uk&-ipbGG}D!;dDN1S>L@XsoLRr$NhKUMlg
ztR1<Veg9TjEMoD91qx`Cj)+c?yQM;ejzH-C-Je5pog=zL==HW8?cQS7$aNOoA{L2Q
zRG~g`zfS8OaraP%D1}Qz&aAB#vAQ8WB6>zFY4}nG`xxvM(K~YgfLJ<WnTTbLsDR5E
zaoP3_Vo{clSfTB^V#G>qd}TvcF}P~v-h+|>StFuv#F`OnMd-P$2kp3mHaOHzscX;$
zf9)nHo$Evluz>4Eu9sOaa=ml^4BB#sY|Fq1FCrhI{~#A4{K(BO>Z5boVbm2lrBFOU
z#8DB-by-Cr`!8t`JE({vqKI0=rV*P()FT=Zt%yMpO_LKxBo?*CLK2%Q!G<U?>Q4tp
ztRJya#1K_SwD4)}4UI<(;?!Z7jV<^lCQU&kB!inrY!R_d#L$Q>+hVsiwyg|i5eZ7v
zwno`LVmm{!*d<E7!y<N4-Xji*7#^{6q;)y=ir6J$SBrXg3$ok)mAS`%<m??WB4Xc&
z{fxLzJ0n@tie>+Z1O5{{OaH+UheRCKrjN9^4viRPl>g@R@Q5QKjx_pzQ!bs+*`8w~
zj#Cxa*rLYq5hq0Ss?oc~i4mhC?u^`K%}LVph$}6MQ>3V7>&8T!YWQgePd9jmK|PzM
zb=@-~&WactG0y2KmqeT$aZbc}5$CIj2D(AJzH=jYFGd@n7f2N&E{fdHXz86?w<6o9
zR;f{ndO#7iaCd3MWf7Mfk0@6}ZoNo!;fnF9h^r&6iMZC1Iw9h^i0cg>A8~_)y2+g4
zztNmZ#?2A8wDD{Xb*m*$>)y8+T_)xBh>3<zvfxt;pWOCUSAK_@XK(jl#a$6o)yyOA
ziTEbs+lYH3?u&RS;^m0@BOZu&T+J}z!H9=U!XpvWBBn<?Y)+*uTNBV2TSEwK>OHEq
zqZ;h*wwv`hgDURHh^Hc+i+Dcb>4;|{W<)$2xpRZ5ejRRmPwMq{)U@tX*R#A3F*9OT
z#EVj!iW|vf3yFG2R=Lxf{QPHguSC2myB+ai#A^|=Bi@ogwN@?uM7*JDvb^iQhEk~D
zdeua$$L~bE8|gJ>-jC4KKy+;%Ydu+04_Pfmt$nMHBIZPzr7}0-<A_fpK8^TH3g6Z3
z&u%&0UFGOH)!A*`zE@}ZMZ~;_uOhy-hWVwXS;8ln!e}<3SF^Sp=2mgPi}*gGTa86(
z%#ZjX;*W?wWitolevJ4f;@60uB7Tl|Qe(oR+o@D#$s+w0@q6S3#&X`*+s#mv;J+gN
zj_9aCjejEkmCaX;)ZFVOYET+8{QZG@2vphEzqGo}&ULEMxki^7U2Du8o_na`t`nYP
zx+-N5o3gL}$u3%RWw=C*?uIN@WAPf=VHZ(6dY8LLjh;1@tU1kB)h|^;`Y%L9p&|6r
zHT^!A^=kC5p(0wg#tJo7tg&2;K1NyIpcX^idWiOaYx*q|Yt|O7^Q=;1jW)ijMX{PW
zSFgDrb;-Q+HK(H1p5|IL`qdV`ceJ)Ki(wsOShwaZy!yZaH3rsPcd$_nuSUK`SmPLt
zgllg8UaGkXlwYH0JkkUevi5(28s!@Mn!agrt&XN5h8j_gT8(;*M$P?oQAbUr45}ct
z{btSmhfd6zA;vY58h@w@FxWCU$lzdu>l+lq28L`{qgBhvImD8o)NWj36T_wOo7ULO
zaLx4P+_J`2H7>7lMUAb+ri!bvw+dY6e`*Y^v2Bg*%(-KYVTNp9V+TV<TP4bF>{MfS
zqYSUHbB$eU>{@es-@6%6<8YO*+K!G@3lV*f8hcs^tAS{KG@`~nmZZ~FN;USYakNUc
z#{M-9sBvh`%@<~A{intuHTPd0;Rn_DSf_w$?mVPUKaMn>Q3l1Vi(`k?IK0LYHIA%t
zl+pD|AbDwf?uAkAjSB@l*61h5;7hDdm>4|1h8X0OI*m5U$p%ld80B?}IZv%|nsG{?
zzHviyXIK`-)Hu_Svud1E<6OhX))=P(si6{3nd?(I2%cBt!WtLVIKRdPwS}W)S#(v|
z#WgO`$)6gRsSNLTXAd;k)>{w*C%N?p**fuDS>vi2FV}db#?>{hQFdxftGU6|wFW2D
z^v5peyuQW_(q!ppja!YPioUtVEj7kl8`ll5D|_b-d)lpp$b{ZjbMsBDH|hr2?KLLW
zm{enOjk{~yV_s9N`tGW6M~yoT*XUX~QZt!q^0n@&c<)tz+BJ7yjr(ivRcg)P9<VZh
zP(@+864{R(PnwsTE`?WlT38j%BQ>6=@uW$9w1$>&AFJ`Wg_V8V|LELPHJ(-#XoO$m
znHn?NX?RviGPP8C)P6Mqm$c_qcQ$dG*_J=ckQXh~O9pi-|J53=8U2eIvunI=_{TNg
zFysS+Z`OFL#@mL!XYidG?@G;VEk$u<5xs9-8X<pZ$VUd}7;Jp%lBB}<L{`Y6mh-b3
zpUaS1*=lyCg>*5@tMO%xuWD{Mt?%0!U)T7?GN^~y)sECfihkg8x%oAIkis;$w84)x
zeyR~PC^z`I#xDv|=i55kp_WDZwZ?BXewU%J#5`5!&l-QJ9o1Q1JTm?@`qo*q&c8Jl
z$jsJRzD}-AN1ZNpy4InNnufm4hIBHhb!@%$swUa3&LVXdtFw5WMa}CV4gTv3@7roc
zNCTcFjNYS8&-%jGJC`(yWNImODZ_gi?A@j>U1u4?mo>Oto1QJbu25&?I;+%Ku}xpe
z5G@X`YRDP}SF5vno!C}u6_?)F%<k&0Ri|H_uui4U+I7~cGq8?VXWh26{&m(fJiF|y
zumkD~*Xr|i3U&ADX~`ITgT;2fv@$Q|pia5I@cOMdMXA<_loDgE8EhD=8`L7Cc=R>v
zbh8I|lR9agmidZ4sLpYA2VA(AH>k5=oqOusTW6y>L+Wf*XX`o}*IhrjS)I-6Y+_+I
zt)ur*)lJL1Z&7DU)uyc>3u=O#ZAfh+e%Y2fSJfF>XWKg4)!Dwz#YW$u&W?2st#eqN
zVRd#g;y!hT8?tMi-3-~e&Mt=N?7gJv+r7@7b@r;WhtW0K5pi$BM;O$2Ob@eU{QK6~
zug?B;4ybc*okQx#>%ck(8K(lO?$k^&$r_xDtTU=DL`03g4zF`WoimJhWSyhxj5hpe
zsbZbu4L{c4adkTNbOSaG8U+>nggPghm$pikDp5|VbFxuRF?d>?Qw`DHdX|RMr8btH
zF?G&V?bjJw=bSp{)){A<XB!l=*yh=r55mu@b3vU8&Fg#>ok_c>&6yREl5|O%a%r8*
z48Ppq6$Z0-udZ{AIVaWKANQ`UbE`QO%XM|GZ{s&eCEEB+hTLrM7K7srYTfBJLnhR@
zy-uS4hTM~zXq3<Hbt^xTIoX_34Bk=a&N_D)uBfLPa<@To{-LGXI``LkwC*}<bz2Xp
zUdT<W^I+W_b9%^>P>7Upx@qjgbskZWTuy9S^40fP-Hogsuk(aTRj);jcP8}7x|<Pe
z)ctgwXX?zT^K6|r)EMhLXWIU<!RPC|V93lmFB&q-V77gx7W9&}Wyu%*N}X5hyk-ou
z4ZbeJ(zX~1@>ZR<>wH@0vpVn8dDnP8tn;2B9~gY!proCyhjET{R`H`cbBy?Loln}n
z(qZw)MtyFSFY3%QWNzK<YRT(MbAD~`D}z%zcWAFoUJCnNo$u@XAp>4#zLoaR?K1zN
z&W~;Ur?y`G(x&`c=eIh)n^R3bI}!0$-3@COYp{63A%C0mAN2xt7SwIUtU;#+of~u*
z0|v#Zk%@--T^e+2u!s@6Hr!xdgBH;jHN1PnEwjAxw4=ytiH18zv}%LZ8uT!{XM-gh
zEM@r8274J4TW>?Oudz%<Y15Z8q>sVn4X)5&MMG9HxU#`j3`&k9tlnUah8yA*8uV?j
zX2U&mnrbPdLB9rGgS^t;J@-%1&2-joxPinv4QCA3ZLppp{SAsTz>tBBg?EkB`|B=@
z<~!OtQGe$*oZ&4t+?=#zGIelTp+d#pVABQ_5gTq;8#UZwT4H$3VBKKDVAEi1aLRyO
zYKTI$8VqVM*qrN2f+0D3S7gHm8#Nfx=G?g9?)$iLuffff>;|K)nzpd0HNP0CC!iZ_
z)nMxe+cemx!M+WKHWvQ7c9#a*HrTGg_6>HhfWsT?*kD+Lof>YPUo%9V`0Z&;Qg^*I
z2;5nfZhQK&%)2(&t>MP%`p?4d4farpNpgd|8;odhMTcu0|Algn?#S(D5shkaXoLM5
z9MIsv1_w1bq`}CBPRDg<jZRxO2U|APHO!jVp?STgOPbCf*5L34$22&$!4VCPY;aVA
zqZ{bx?}xUepbY{Qh-M{vAwfsBj%#pygA*E@*l;`4dNxq)OHYBxaQ&{6{L|gUR+?~9
zgOeMaV)}e)!_D{4Z*W?J(;J-8U`&HE8=Pgn8VF_WdaUI_UF|sy#x*#*;bv7j?Vv{v
zWw_2Y1ry~wqpN91b1qOewGnLaq6QZmBFY!NbC)T3YDY~TYH~$`E2Y>?mTPiVgR2|p
zC+r_I-15{l4aPUPRTPW;I)iGb*Bf$!G}Dlq+Vq<Zxy7Ik0NmDKLW5_`dAl{1X$B`Y
znABjh;ddHTJDOt19S!$Bt(^MqYA`k98I`+R?W;i-RlQN}GkCv2aXz5D82(V3qC+y%
z4S%>zdBl)M4L)Y@af447e6qn)hCFTX8H18M!w@CuxdzWSob7tSvh%j#GaJlm@M43P
zjQEyS*~<o1O0P6{)#$GooNe%RgKrpo)1U@RVwPlCGa>IZc-QFfHF#g@ZB|b66nTBv
z;G+g})C3xQ+2AYbVQ;rJ_KBIqPYufXnIWGym}|%v2K9EwJSmlSRR-j~Zt#sPWD}{@
zw++5)IHaS=_fo|Me>C{B!4DezH~7`O<olDx{|$aIr$&kTcI%qUMx?(r_}%E)a8w=K
zU*`O$!M_duHskicQRo5{j>RjPdPyeh4KYe5gPognF{Epg?0KASO?MDN{EIYM)V#VI
z6lJj{i#J)qoIRTKY_g=``a7XEXZ4Wp!S*mtuQq>gLzXtUj9|_+u0BncZ=zqP?cH>i
zc7-ODCe<b@Hd(33%1u^j;x+l|-42!Qs!eCZ*KE2IWvew^`&zxp8cq5(^{|V(0hH~S
z!~=3`HR)#p*R~+*7<BgEko64qH#orHz~;i!-Fb5sn)pqMO-fCICgrC450RE|f3?j}
zE&GH`H%e4zp*1%pJ5nh%*;Iv~vt)Ywv&lxqT*K0tXz*|JxJl9^ZPIG8Nz?rxUQ^mZ
zP1iSRcB#Y<ZnD0`zJb9F4JyqWH5t;zH*PK*TgpPZ^UR_**`mpoO}1~cgGIEJ!R?xC
zZOArFhN^11=eBL4%c@%4Rg6blcdyiH!Ffkx+oj2{COb75Zccga+(e6tLb6qhT@`hc
z-J9&uWKW4|vOzVc!>BUCnh9#RMHf|6AlG-wjgXi2Uz+SIEo!oVlhd1=(c}Q5AJydO
zCI_nenjEZ(Td-hMlS7*v(qyENJ6uud)0*mGO%88zM3W<pEt{C@p&>m&BJ(aD;m4Sl
z6zQZU$2K{x$?;82XmVnc(N?y4-CawpQZ^k4(~N%qJ>5N&lbf7k0Z%n}T65vc{F14H
z9n<8@Cf7B&zR6il#;P8hT-sz@le3##(B#4<=QKID$$3rAZ=ydBDqv<Sv?3~8U-tXU
zi<(?4eKyJ)&$`}f=dayjvKTIt{6}(^s|&DVxw6S0licBrtIT<|K{>B!a%~$I!wu4E
z<*Uh^O>Sy(bCU^8Zf|l+lkrV%ZE~AZI579;%N^>nFZ$e_OP7l3AA))ra$=K7O(r*)
zV%n=ya9SzSTIl?r+~Z3+)v2{*#duefyPMo&kxo@2dpU)<SIW@j{w5DJ-P=u4OU>_;
z3tg0xYH5L2<A-TYrZ@R=FkcPk;U<qXSu3Vr%%f`TYRj=JhsRC37KvFj=7}axHhIc)
z`_(3|HF?^~N@;jTu~-70ZSq``=i4RliXksFnb~BP;V(9M*^rkEW@RW7Bq13-yUFWK
z<}~?Ojn10+TTR|>y7}^(%8{L}d8g@SH19Tfuj%%eMHCc+M%3>&`M{VzH29H0Wkd|0
zH2Jj2w@tol@>!G5n|$5m8)J~~T+7QB=A38nOWCn@j9I){EE)X1$^0gNHTk>A4^4iw
zlqd~~>!&8anS`HB<}U^%;a5Wx{CAlY<=3E)KP{|~f7;pU6ubQXYy1nO^D!NwSdEA-
z30WG1cQ(#02D`>|GemSn*WLJ+G^kW9X2{|Omx$>R)6;MrDarcNrDA#+rFYD7hAbVk
zOzfJx7?w3exJ*!=nB|ROg_sp%R*KP@cE%<x&03aXTqS1J7&Z3Q46YutM(j?BXk6FV
zC~L;foNhJ6Ew-;6vyPIa5!YbXQ>+`aNzA4(>&5hs84xotrV-PO@nZ5ZK}<QO5aY)b
zV@gWAE&I#N>eiSxVRfcX4-05a7{*j$YBBZL+0|-H6g%6ZSkyH1F9WTJ>e!XWrK|PM
zUHWY<j!9zHkJ%t5jcLUUiWwZEgJ)Wokaf~(u!h+(eX<NXpTA+uMlnNTHjcUPM0Xce
zJ&u-hudBHoZ54}R*(_%B*zGxfG}z63wus#vWc%3RTgGe^v%g*ejoHR1Lu0m$*-ly0
z&(vg#p6JlkMcD@x@(wXO#te(uNoAh$K+13>Ear`bHxqV=*)`^wm>Ds<#q1t)QOw0L
zd&KM+b4<*!F?+@A9dk&`$e0l^`@|d&bD-7czA^hLB@)ufz0s{2%<cu~bt&No8PCD7
zyL2PxpE);{7BVX4@R%cF4vjf1b}Iu)s<w4B1v@h4sF<TIpspo~k_AyY>%WJ`#T*|q
zCg#kT6Jk!3<d{=pMjO8*pJa%NTGIzPPmMV(=Jc2|Vji(qvogB2$>e*trRuDhu`%by
zoEI}L=4>fRx7;}~U;o^p369vZ`H>PJ{QQ^;VlIpqzI-Ceeaktz4#r#(b7{<-F?YpW
z7IS&bO))peToH3+%(XGs#av~Xy*lO^OQ({df>PckVc(v)>tk*(`i-g}{Y<>4qiba;
zOTaBL<6|bqOp3WR=C+s#F}KI=sD_rH^@xq0<=2Qsg(gu7IN3x^QG1CIgD5IViPE19
zg-=z$n1@v?(w~@nV;+=(NgJgkF%MYSEK~+1R-yDwGq34Z0`gMgmCi?v_(aT;YNRob
zTQ)O(mD^M1E9cWON~iY9MU=p2W1f>&LX_})%nNGiF`vcEjF}blmZFGxG3KS1S7Tl?
zAuq?g67%K6+(<3COw8$%*x50!OP|$PRNeNNo1hp3GpE?ziFr5XqnJ4{@5Q_y^Fhpq
z#-B+OXC_Sog=7Igj`^f5Gb4T;Ggr1Qp-;jWG4o;;$jT*r8S|BL7xSw$C+3@&?_=g$
zn!k<t&XDZgHpy3s{SfnG%ug{to7exUJF9eY>iaF`chkndWBxF<KV$wfO2!~j+xK-P
z@K4OYMwiBBv2-MmutY+SgiZ;a6BbEWG@(o4`sl6+-4dtg`mz|MGs3%@?_vpyCr$%1
zU%@QRJrkBp=#|jh*p@Q*KMCSlI$@cFWlgf2S*T3@@(C*>cot;Egq0H3O6Zrca>6PJ
zt0$~sUaKao))uSaS=4=vBIlZIuT19J3F{>EPZ*G}ZkuPlHqZYOHt;_b5%UR!1V5pe
zP)Z0ar<p+cmJ>qbuNYmCW<@%AtSf|CLOo%pgy9JdW7{%etAu7koRB1>2}2S#PG}_z
zGKLM>u@6pIzb#Xu6yt^o8~rDCQ8qE=%?yfX({|X+6SipMVpBS|PS_@4yM*l%hPL^)
zZI`?l6nqDx@0c*mkSvda3lSOrgv%4INZ2)Dw}j&pPDt22VUL7E5=JKMnXp&FehK?0
z?42+oVV{J3P1?RQayxX*{ng9C_w^gQA-P*;=MG3XFyWwtgA;yU*HHu?*Apu`tK7>W
z$1j^3m2hankqJj79F`#B;R#118rbKi(IK{7yE;yZJv!l-gk$BEAg}COzS?o6y8eA~
z`owl(!svvt3F8t@N;o;;w1m?WPDwb`giBhFK8`cvKO<pG!kGzYDa#w>6sbNXa+!kT
zQ55s<$eo>VPQrx=7bTpVa9+as2^S<}60)epsbna~h~;w^CtQ+nX~Ja|qr8+0iGA|>
z+~f^%i>#OXw{ypp30EcDpYTA!)d|-m+@3Ho;o5}j5^heoCE@yn8xn3zxJhcZg-enu
zaoHgbN}8e*WqiV|3AZIoP%Z3|n{B?k4RIB*?=HE$aybQ@lrTBru7s(Uo+$};B;0AZ
z<cL!Ol?w^HJK>&$dlT-nI+gFq>*karRj%0dN#KJC4<$UC@SJKPVS2(72~Q?GobX7(
zV-lP2s8nb}SAAKrWb!ko()Lus(+STc%t(+-#UcjPi_%cAOerJJC%lmGa>6SKGZSVd
zyqNHk@rzlaRG3*<RglWz)r8j)W+%LEx}gNfR{~Ynl9oB&N_abA>y&L$-br{j;nRfA
zET``o{K(+@20uvn&=5s8sAq1D;U63Pq)pd~$L9%i6MjqhUH0GTUnP8P$UOA|`m9S5
z{3hYsgdY-qG~e$MzE7BM3|Ysd9xCg_eo|ve_$A?2X|MHMSznWNVHx}*;m?HiQu?R-
zmGHL=drHrge-i#R`HQA3NXVshO6i<BBi~^VgE9zNtM8K1HDwVac58cy**9}7L~Pwt
z7BjEK4K9(oz991wvSi9qDXXNcn$jz!cS@g><x`eUSte!Kl;u)p?v?Ya&P*wk6K=nm
zkaLBU6;oD9S-Bl`#woE`3I$h7Sv_T~lzu5|r1VW$)0nd~WXTYl%<|fnuys<_P2H+>
zCPWOGr~xShQ#P=$UP?ZtmQqhCr1&Z2lrW{3Qc4N_U%@4?qOcY`62IjogIO9HDb18L
zrDZ&EN@D5Bk|9oggHi^ktZ%{pmqKOvmepO!Y?!i9%8-<eQ?@W6o1|=-vRTUJ7DSx-
zBrwZ+7W<YdTbb|w=tEPsO&ODNX3BOc+oz078I`g_%8n^}rR<$DEM+H)Vt0-ImClr1
zQg$`U<;&-?@$ij0bSh%|<-jGhRFbl1>Yj?t7?gk!Df^@xm~v3czA5{q?4NQ#ik?}^
zlBWT-#`y}O<Yl4`PC3LPQkJzgt|6!fqKBp&mU4W`2`PuC9FcN#$}uTNS{X{zQSHLa
zO8eM$6&%;5i$_tMm@+!$)RfawPBNa8Q%*5N1+K6vz${^>w*#KhE<Mrpos}{+<*Jmc
zQ^uv7opN!?B`N2moSUNmykC%Vp4yZK|Eb#=lT6J-wp_&J?!uIdR2p5~V{|_}<&Glj
zWuZ$`E>F24brbf>Otot3bm)4c43xrNnWFbsHTu0K<=T|nQYNHamvVi|jVU)-LFv-E
zIBzgqzr(mW<(8E3DYs@BG~cXjHL+5G>jmT6QzoX|l`=JDQp)6%DJgd-3l%p+*LYj=
zG8LERQ+HazB;S+$Pq`=M-jw^4k>QR(KVDJoWF@9Cp>q0Q%0nsVx459iw3O*;N-YX4
z9!_~A<&Ts<QyxuuEaiig4^tjbc_QWIlvh%oOnEBh`IHw@o=$lt<=K?yWW<ii&9K~M
z6GJ^DrFntkmF6g6GgD@zykrb7T9&h#l0wQ?xaJ+Nro5K&R?6Ecvr}GAc_Zab3o^5p
z``4H_^<`7M(H*&WQr=B@FXjFJ#G6e9H(3lFc$3(VQs$(5lk%-<E#;GxxhY?yd}={H
zOZi;ZV_Hs|+A64-_TwtGi+L$urhKJpHMXp!Wbvw&rGzT~?^3=``8nm6l=&$?r2Lrj
zlT2K1cabfdTS=x8Ea8H`nyBAWepgkF&FRo)=BuWvs{AYEZyDPb%eMGODk^*4V$l{0
z)C^m6YSFo6_TL}|vq_)AN_dwRU0ZZhSS#%eW<}Ax#bPabwpg;o;w_f2ussZB^Lo{h
zR6;_QYSF7j?-on9+?-AneG(#RS{TXnXSo)ATCCP$^%l#wSi$71Y;eUED;c6tDzQur
zR%x+ni-WD>P(<=tqeb5q>$F(6#hNYFYSFL7+AU{|bwo|doJ~&kdonSrme*_1zr}zS
z16xR!RPqx3fThZ7r*kDss^6m6V&4|~wJ5a+T5R583rTJfwrI5&)S{vkwrIA9TSP5t
zE$S^A%297ut$HU)Rg;z568+sJg2Zx^8oaT$vkzH03~sT0iy<vGZm~g&4O?tvJj%7y
zTPasARBlS@CM`BKugzNSl^X^BU)hRz%NAR;*r~<v7F)O2rp5Lxc4#rQ#kLk|yOy&>
zkB)NEbf`~~B}8z?7Q>7|xD-iZRlGa5*rmnpE%s=!tNHHMa)%z}HK@ax3#Dhz7JIcA
z(PEz#d#ku~WzrTaBxi26KHSw6f}H!eIKYIQqBOKPsKwDOj!|v4IHbj4Ee>xnvc;$t
zhZ>vqo>W1qL469Y>y3g(v^cWGQ7yM6ofVx@t4QT_Y>VSsjJB}H8$6-KiLHer6D3tV
z`qb~7)Z%2zh@8rWvU6&S(^{O~;*1vKTAbZtOp7yHoYi7%3x(B*xGWi}GCho@fHH%E
z=d?Jt#d#K;Qai!^7%RFqfG%utkpvE6%pfi{h8tSk*y55Fmzwi3gIBk>+z^GjqQ#Yl
zU)82$P4Ai(*Ba%zHvRh6!uyFgwYa&(QiJF<h+A5WZ}DD>_gmcB;<gq~ws@+=gci5A
zxUa?iEhe^@)Z)$-cbTZkEvB@%qg@&kXDlow>D$y6cel8w#l6O<RZ3YNWnZO{wRFJ;
zT0AH_-{O%L4;kCE7Sjz;x1#NatPc|B|HssMKwV8Vef&N@0TmSxM6qD6R6ztq1)t<5
zx3}DTQLy)3P*D(j@4ffe0tgoD3N{pMfFgDUJ1U61fd#(*PKcl9<jk4O&d$!x&dzQ&
zyUDYyJlD$etxS_|ujIDs$)0KpA*#5pt{0@Hw=$!Z*IRj`m6uw1+2qV@<rPC-ZRIt~
zD+S_C9cwbHmD%dl5`t?=1)n*syxGb-t-Na)=eF`zD{sq<6VH@YwSQ8f^*wc>Rz7Iu
zLu=(&6Ny#-m7FQ#os#oqoK}8s<&RcAY30*a7Phj;B!AY*m#r*l<?~j)kWaqrUbyJH
zZIb_0D_^(rjj?InIF_uHy0{~M+sfirero0CR=#WH`&NEv<wu3D<Xn&3TbqKUu<E5A
z_e(3knyB9rJw?<~u%v0YS<=c<g>;X$9)Gs-m*TvX@%Y=a{L{)Zb+H{>b4b24R0X9^
zi{}Ch9xHin--}vGmrB&!L)CBRv9iZ%9;+MMDjutPwD*u%<mXaPzps)G%Cd$>2ak>(
zojlhoMUkKA-H?RHdZI{X7mu|(avph)t{!W9^!3=*V;zrf9-Dh?;jymAdLA2kY~-=N
z#|BnzcY_io7t#nNQSz&eJvQ;!)MGPCRf!s%|7|<XGsVB9$5tLaJbD_>)*jn<E-c3u
zxHocPvzI0H_UI!8?2MHfPM36++536)_t?c_h{tvw1H|mHqsR7^YoNy<&y8y`f{Io{
zNP@=n!5%w#>})(rRf!s{^in|Uu3{VNv8zYgBk*W79?!$~xNNesn+z)+1?M=VhaMS^
ztm*b|?bO`D3m!#}Lp=`jD0!4U_VC!#qvBEZXnG9usCh&lb&rM>6o)U>PTA#<vZRpR
zJa+dO?lHo6WMuh<G|?;~E>X4H%VTek13V7&*vDgEkNxB@Nn5MdQc2SGw!EssK_=>8
zk3&2+e~9Z6PYERXaE~KAPVyM-aiqsl9>;kc?{T!pF&@WyjFf!SEw+YKk|sk8p5QUc
zgr8`VV-02Vm~)KB$sVVBoZ&In;}nlmJx)`T^>Qx`Ucb{d&|+K#RVf+yOpmiX&X!A?
zh1WRBHIs^tOV^hbCI5Vn3q1GM>=>U5JuXtMeOi1j_PE63C6AXqE>-h+-0LyX<8qHH
zJZ|y0)#FN!t30mrxL)z!)V{{!T0`0lc5bGKD&t6>8$53GxXI&Ybr5@-ptDhN?er!{
zh;+Nn<90=Ok9$1s@c5s{ogR0YG__`IWK~ei`h{`a*5f?JdrUAMRXO$?*EPDNCVAZF
z@ubI79`}1Z;PHsZqaF`>O!j!l<6+AsvC=1&7Mn%zF-v;f;|Y)D&!#4xvSP$nuTkk!
zJf?a)?=j8eX^&?-p7nSxX;U#sru2+uD(t-A@uJ6cj~V7s@)K>5{kN>R^<VLL)#FQ#
z1s<<?%=CEA<9&}=9<x2>dc5WFy2l$Hb3EQO^<oL}q*3k>x2#Hk+v6RNcg5Uxg@xr3
zqU&4VA9#G|@v+Az9v^wk^O$d<lq%~9s->j4H2l=#Gmp<bzK|L%&iHZNCr?T#!pCj#
zmB-f}zj*xW@r}nqkMBKx@L1&Wt;b@I?-U14bTL_yH3&*oiPF0~1?nHI+@CytRxh@N
z5jn6Ph+@gVdHk+8@9~$%A0A6QmKwiwQ*0EE^ptn$`di(^W0{)C>@WE$C?1UTw($V7
z06r`E?BX-Tr;SfrpG|!>^J(X^vd>yRU42&ZS=Fb5Pe-5jKCAhx?z4vPhL5MB6+u3h
zcH74(g|bdQYx;Ed>EffHtyb2rl;R;<I>fENw$C~~8~Akh>E^Sp&w4)V`zz`z$#PUx
z#Ptpvm^Sp;$Y*1pO?>x0OALA}iVYGENs_<0&lW!0`t<YJ(q}85o<6;Nwl-C_@#*2a
z*s{$8Csq@3U256hK7EX#ukZc|F8e4|9Z-j8R7!uJ?R*A_!DoQa_C5oRSrw6U#ts%&
zZAYKMK0EpB?7LA?|7uiOatsxrZX%hAenWkB_1Vp5cb`@t&!^;5_VInvJ~^MfPv8^!
zWPGw#kY?#>%D5v)Hwlqex(Yr;V-O|wPg$elQ}t;Yz2+17)O{L0@=TdsxzrY_n)t=6
zYnbnbe$n+5Fx+Q^&%r*2`0U}cr_a7Jm(N~tDL(u7E1m~66<2k1&F+!f-{%0I1APwi
zU0+be<G!FyC$q>IWX3~H!V!7}?{k>X;U-7>^HpyA)OnQ8(Z-{&ED5Tw9Q9bAkv_-y
z9PcyHXOhneKBIgt_qoF7M4yv<&hk0iXSB~4pHqEKGa)DYjP*Iia7_kci|O-OD(-Zj
zGmL(wL0LdL#}*KNj?cM@^F9~(oab}C@myd~-B4OdLR|5SeJ=62)aNowRYS*NB<4BC
z-lbmYbCu6+KDYZ^?Q@OKjXpQ|T<de4&-FexSl+mF&0Sq9SX;!cd9%+gKDQ<|*R!Nd
zs&l4dyTj*yKI44G``qbsm(Sfk_n0&Ve=#V+|2wai!lF#@xz`vZJg$P^eLna5yy!FC
z=K-GweV+7r%Gf4rM}g0yJ`bt8B~GF&YTU<s9`|{|*fgfdwbWHrgf7)(iqBM^XMLVC
zhNpd=F+{0qh&Y-(Z<J|1FIaz+Z!5mZKV?QO%gj(W^qK4Pme0#RulUUNdEMt#1rwi{
zKC{%vr?`fT$NgBc6jSMM_{{Nn)8xk$7d;Lax_#T{9iI<;KJ<Cl=RIS4-*>ZC<<%8i
zUiy6GGtXzf&&LWodID|hoH-70div8AWfiKC@l&7Ad_MR2!skn$1wLPi(kG=4`t8+l
z-zyd(HXXjx<_#g=sK0A()uhz7K8w}e((IAuJD=~>Nz-U?^#`9HRl79((){G}vrnfq
zYo__d=U3^Orp4HP^ZC=~FQ4Ci{_t6%xJPQKyu!BV2&%Gzy8iZAX7qmy{!3qOx5`DD
zmD03Nvs#)qCcIsmmD98}JQk(Ou99Zev<vv!0`xBwvU=JT-68Fsk=HO>MCIye*+uM}
zri*3VBF$Q9x~5q_%?4@KHim9VDeG8XWn4GSdL~VHTzdC38>ZPL&8Eh@k#TOE@Tj=B
zQc`2HG@B=M-70CzG+U+FI?Xngx2HiR^)MvP+sp9Y2K$(*eGOOX;_RPhyENG}xikaP
zY@eppQU|6Plx9epp~{kGM<ec>X0RbU8T_wqyBH;|k>IYTrx@Z=yfl8Abixy+3H~D?
zlhEUu=F=3@l+qLuy7Vk3c+HSXnrcE(s!ECMwr((%(=>dT!QHIlyBi#CP&|94*(=R4
zX^u_1=j*-G9Hj5qNb@xN8f8C&2N>Mn;DL{(4m9K-g9oQMB<=Qk>0GdOa7l<H9A<J3
zPjf_?BhzS;=NvsHr8!!hXS8TftoXHoYGj(@(o9HmZ<^!N=&;ghX--eO-}s)8W>lKd
z%a@;+<|IQ#i*CpmgD1yCy-hYm`=CxuD9V0DnlsZ}l;+|zXQeqi%>`*LOmmJ2KQGPs
zY0fpZ)o1kyEPd3)vyG05U^<|r-K5%xrEUM0q`5TBO=)gUb6J|p(_EA0+B8?BxiZaF
z`s{xiEzYarniuIKx9*`*Gu~eAOzw4Qu1|AAnj6z@2-aq4eewS1&)gve*-HD(^ey^Z
z(%hQn&NO$Wxh>7@lBUK|U-%@o-$rg{+M;#bCRi0A#k%T1dYXIEj7u|KZDhl%LXd=O
zrBPc__g<LVdS+^3nn`J1u_nIH;B<rcr+FaFgNA>m6T5~?PV<l<4;y^M;G+f~OY^uP
zPo$Y*h@AOJL!L4i4~0|HJZ-m9Lk!O*oX;8Ze41$q<%Kja8Xk|=GZOksX<jxwjy$g#
z{#uecGtDf+wdGGC`i(Sm(#*>;Kg*kG=E_ks?3dxKG;hn`0XGCL0>2}#4mdX8-8Ao|
zc|Xku)(Zv&e3<4VSvYXZhV#<QPxEJ*ztVi1<`c#0G~cKBG|gvev<2}SgP+Se(=15y
zh24t2FDb#V?DlJe@ewfXKwg+;kwUJ0Iq=&wi!D`~^L08~_W8kXe^$UZ<VSgC`_xa0
zGs&5?U(@`a=8rVL8G}mESii*Zr3Q7TRaxTQ{(q<WM^QI$s_I&13@ZmLmv0BeKNN1U
zR05vY$3Fwwh;Dd0gCchAl+q<+m4H<P+8citgR2Fs9-z0+YXo!*=wx^YgPX0LS~H+a
z!ELhYoFKwQ*N@|6jjjP}2dopg3T~We*v;~;8?c@s>j!KQ&^=(ofQ=Hd5~53zW8v|i
ze>V--EMW71EdqK5^s-jo(%?1*w+h(W5VgK$4uU=GR__IR8zSTP3+Q8b-+*lc_hS*U
zX>X@s|A6fRH~b9<*xr!-$@`;$0l(PfXNQ0t0|p1|6mW3BAptuF>=IB3s0IuP7#ffb
z$OY^gxQ&`#fFICm__)p~b?S6L5D*4r0(YQZ-#rkUwzg_#wU!{XIa!o^KtV0oF{O_l
z6s4_YFB`wuluP`A`mS0nAPU$kU~l75-m{i3uLlS=3^ol83)sz&-3=;rc)$q5_edyv
z2F&g4vhNeHZ@~Tm2bj$LWcHp;NeP!eLJl<gL4o@MgAU(`F0~I0=&Y@t0Y?QK7BFRT
z>TqL|J&y?7>WcCnZ4^n6K;=@BHgAs%7!z=Ez;R}C5sx?I1cRdto)~bFA)^h7M|(WR
z26QtCmj#>>aH>pgPn3eENqId81e_6YrYab4wwy5F!hmxE&J8#(;QYY-(V(LO^@x;4
zPn{PSI?RR85r3vG3b;7nl7LGC9_Zk99WR*Srmy;SZ@eX5e+s@+_7Aus;PQIvO7p0z
z0<I3YCg9q@eM9xSfN67F&=$T!hg63NE=u1Ra8tnjArFMy9B@m(CLx=K9HH+&1k4F|
zGvKy>+XL<h_+P+70S}w-JFVjP%6aq^h=98T?lF8^!1#a(0gX0p@~JBht$NX{XgM)p
zQowyGQ56YzFko`vMrv&W*XX9vf7B<g6|_lP)7M7=9#tn*ObB=^;PHTG0-g=reBg<I
zC)IYAS6ic}sN?A5SHRP1wLY$13n#dbT^!%regCKH{rZemN?$sXt)|Ho0j~tS8t`Jk
z^njNFUJl$$QpfRTC_aDb<}F(<PVr-lRMHe$bA#6cW{Rh+Tg93cFgxJ&fH&k|?cLEu
z)l1KDQd^^siaw)DYHq+=0e=Sk74UYzI|1JYEVlN2H(*}C{DAiYx9s+Qzz0@~4-I}K
zKe00!vWfH;!^Z)i1$-XxNx-LS-y~Ig-GzS<upr<o3uRvhOng4|WslU?0pA2H3|M6C
zuF+o(qkf^y06I{nt=HPw{$0TL0lx<P7VtyBj{!d`q-X%LPm=0Oi9gAQ?eK^WzbL$`
znmWDmd%zz7O9GZE<2-lhMo%%C4Cq5f+s|&%*J)%5%{Ts5&<<%I@=w4r#SN?4N+E4R
zQlXpFwS*wtW@x7w6tQi{Dn@J<vU2D?_$-F_xJ`_&7P5NCIw9Rc)(Ghk(#5284Bdxf
z*0j9J(kXPW3nfr^XCo?A64nao8nU)!(ZM1S#jtLCtMgwWnnvmmaqEX{5Yjzl!;p<a
zHcm7VzXHYnZCx&15~w0J3)v-PNXX_PTZC*GvQ<dO&s(++U4P#?q;KdxUbIa}52N%9
z>1~Kodl|C)g;bw}B7EDBexVE0Z}oM4*gs^ukO84PB_wMrGTdOl=p87rAv?$dy;3`d
z3>K~s)GjskrPNL#JFBK$QhtB;Y%BWEkX=Kr3Eh)gYls(eO30}pen>jx#E_Fhf{;)a
z2stQpZkY+Ggj5aB8q5hAqSS&RMS~@S<<PxfQ&KG?3f*ky0D~H5>miMhrrnA@!jNGh
zyBV^3LLY93mcsT3+0*d7LiRCaZ-epIVD>d!a`p?^-*9EotuCERJlH6Qg&ZDoNWyuj
zA@OG!jtDu<ZjVe-j|w?D!H+TI*pQKi#959v`~-ue45}a%H#%fY$jKpNLv++aO;c>|
z+DKhMU!>V@ri)-|$J0X24LL95^pG<`&I~y#<m`}hLWT}^{V|Rq8u8;tc(vF0As2*P
z8gg04g&`Noy+bYu-NC&#wa=}+dmPw;lz!OM?kyM0FAupQ<jRn%B(|dyC}nht`RWjz
z1kvS=ifEqP(|OdjA=jBFTpx0SAvcEHWynni#dEVEw-~(D;B6td8*+!i{~5e9#<krv
z<s{#2xA%mMGh}>{Iw9m<!zUV?l+f=B(I<$N@xhSE>Zci6GCUOWaLC_g=SM;w4S6o)
z`H;tCy=_xVA4u(|k2YvQAmoXVC)HCzri45l@=Qp(_Nl27)g{$oQEH_9C+pC`sb{V4
zsM}ukjWdGQx~GMF81hlb3n4FtOb?k6@<zxUm8BCdA+LtK7V>h)D;7PpN~ZoE?U0%o
zGAm?u$m=0G)2DUsVRKp}Q*N(8M{9kG32!PX<UIueb>Wb=)oLN{irB;b2}^755~VEK
zC8Au)@_xt%p?j;YR?`@yFSE@HnIH0pYNy~I@=3@~AwP$FYBu>I<jauHLOxfNvvKFL
zo|H$V7N{HUk@_m+YlW|ouBP9FEDZTJWU+cmOKMTb-5plMF6|lnF64WK8tu_iB(aZb
zO0gd-25Pt1q5&)P{KdlKZy~>i?kJPo{{GGQ-2$xKTce(cOG1{0{Amn&3Hz7TUB6e;
zi2P5;GE-Y80rktX<??);w$S_EjGH#BmvMn&r3`H{w9UBTphJd^8QNu7IpfY;uaa?L
zZ8b|;HA8ztG@TIV>KUFGoLa*e;%78*cFNGzC~IciFxuJhE*aLcTjg46UvOI6=<8(Y
zW&%}^=3VP1`1%<($k08*c`vnSA$Q2HsSPvk*zZOeHqNj~hD|fHX7Dm>mT_ZQ?+kr1
zY;L%2x5%(%hOIKZtZ&h%p%Y}A3_TK_o*8;2c+A!}!}b{l8gW~L{WA17WV?iOK*qgK
zmrPxQRD}#XX7nfS6_mloHYCGNhU{!`7lU!Gp@u8(uK&s9XDF%_GNhB#AVZiTlOb!A
zyy>4a7^_-HYNXv?l2*>pNb*)PR1L2sl*o{JhV^?o=4OUr8FoujM`YMN!|;sz%ZxlB
zhGN?z!=A>oSHiisA^T+9yAm<%uLhOdWNDk_zzhe;88SSX;b3don=|NjgWT+p42Nbo
zEW_a$j>vF!hI7p2j?6GB!-*M=GXA489AorjGn`<E`pZZw@wg1fXWW3O?yO&F#1C=0
zJt@Q345wrmoneeIoNS^r1DtRBE>6vGT81+-uGi?xA*ajcS^~<TRK32@ZYbTJWo5-R
zI#>Rd;d-N-pWy<Nc2&kbL0p*OvJ97JxG2NL87|4VbMa5KcUv_sl^yh<34MUY!rc`a
zuC$E%eC%ebVpG?+THc%CT9d3ouaoQAqo{C2Hkthf%W`9en=<aPNHJNL=(l9JHN$Ng
zZkIjxZFxN74*lJsie$Jm!(ACBWVl!TG{Zd^#$_0vaq|{U3pH2K^7YdDTXd@dQKQeq
z43jcUR(Q{FUxxcLJdoi*S-7wJfd3sYrtVzi0-$o~(-s?Q@jSyL86M5>SO%?4X(prd
z<64{2*HJW;l|Vgj9&O8dPl;!C%Xb;Rw+c?lFg3%|8J@}TY=&1dylV94GVWt^(+z(<
z!!+ycFJySp5G5%HC_bpxGmPgYqraSC&Qv#`i~gGM3~w5JW`<cAW*h#x!8Z&lj7W$k
z*mJe`li`yLpJsSF!#f#1$nc>InBlz)?`K@-R*4d;L0?m7wWd7hqYU%pAxc#U>f|0h
zw34P%?TT#b8hUt9md`SLp5f~Z-(>hA!<QKrWcW&MHreT^OJ9I|sHZ!vsaBALg&7uQ
z_%_30xj`FeJyll5)ND<Ijy{qZ&kcUa@Oy?oGW=-H@RPxx4XX5CGW?q0zsVVFHGWA#
zS!T%641XH(m%+ac{$o%NcM_s&x!tC+E~>X=!H|^<iXyglSys++ZI<h@tdeEbESW6X
zEbX(bmSxv0d$*)k&$33A9kUG1a_+cPhb$XrY17devtyP{S=P+bIZKx;>t<Om%UW5w
zW?4JSI$3vOR}G{|mj*cXJK3{amTzBg8Ervz{VW@pGTpO`S*Jx$jvCNcwmzb9ZKJFk
zk<~#q&az3CO|xv4W%Ddst3>-ToD|r?a3Nb}-O#p`K^^7ZCQA>)duHith*EoH=`ACe
zcl9wuoZDvUm!*G}?Tj)o%K$^fw!La$pIQ?BLD$qEscMwCbP;#Tx@e;>-Ve>PbJj(z
zU9t?xy1$R<sX^bm5wg2hWAqe|b>T>tXNYeqr40`ZhFP>dRSdbTJJ-Blmi^5#`7DJj
zMe*BhGs`eT$_6V2t64X8*RpOvj||ogHVn$)cQdx(2G#DnXWf2dWf@_VJ&a9x_sp_a
zg72MWAH(-eC{JmLTfsle5vsMELD3+~G0&zB%en`ygR>lB7LZvEHL+9e_5I;lM)!At
zQ8UA%vgna^TAS3-%4nuLHp|#7r(_vvx5pWjNsl+=ge;>H%87=YWN@^>F<DMdQa9B8
ze>3Sha?vcOWjQ^Ib|ajT<xHc;t9<f-v$C9R6#dFgx94R!Kg*Ry(d`9>T%6^?gmRG~
z`mMkvhFog!GJ}^JRIV%JlNRBxlF@8A@oG!DMs|pQe4xkbtoz!}tgMUJH)Odn%S~Bs
z&T>nZhqFAQ)GW7UxiiaMg8K4LmOJDaYI^N|nCD`MKD!}z(ui<(mV2^{%Q9Y0vZJFv
zqE}sGQkpO;%1w~+{Zsdv7io~1D34vfd{UPC47uOn0|p;7IN9Js2KBiuF+ZB+u`E-v
zOwIDR+)~|8YG=_WwwAo^exafj4|&n`E2XpuCNFwA%QIP?&GK9pxxHro^XI!rs5Od1
zcT4FDEzf6}W-X=R=7lUTW|?jtG9$~YR<7LsC9~Me2469#m*7(7wJbA@N6&`3mGx$4
z-6ZgJgKrp|qqhKth(0&VTZX@#P~I`*U4!psdEbx^lGG0k`ABZCo}1@<oaGbsf+Bkt
z`83OC3Wf!81wL0OQ)A`0HOH4(7GzmH#~L}lGF5-G>U?dT;v0ht4a)5oDcmLaVne>m
z^1UHH82m9w{VB`OhW}#lSA!pob$#deEPrHKl4WU@m2$Mn@n@F5)FN4yS+M$BCTel3
z$GQ}qmaEU^Xvsm&edS4)LVcVnB*xq3XqThCc(ksYW0f4M8ZPFKN3HmmnF5+_#ju(s
zNtq5gI_A(*+j%)U<ybSvm>ehP=$xZVj$Dp>j<s@h&9PmM0Xf#ru}+TumR)kX<>+bn
zx;fU%vA*G3B&i$Z=$>OkyWJ?qrU`xH9GfJ#hQiGfd~?Z9YQ1HStrGgyhHR6ghx9R<
z#I@*^b7MqrgMAG4HMp(8eg^f@Uj~eAwY|yN+2Ft&gA(~W7_wuI!3kxj|7fy{5r-HY
zYH-&atvNiyeS?`C=^TOKVU7nTyAo%QP3aPn%^^f%Um-^^$38jsHO^9wy>jfGqina8
z9Mv4P98r$pMyVT=gxzyAay0FBSdQHc`6K04>9<L0*YUX22&3;|a8HBE+o#`(KfvnU
zhi-N4m*e;(b$>$+$Z=qfgK`{fw?`U0#NeR@56f}5A+o%h;0QIh4jdhuIx5G}Mn5LU
zv4%)~{G+{*IgU%Rh;l-bI?9j}bDU(z=!9OrHZ@i@wDtefa-3rLsRs4VOZ3wXKO^Be
zGsjtmpKb6QgXbox`i#u^<}K3pf*cp-xG2ZPIWEa@qtP!-Qm;4UvK*Hiaz#SF(vYii
zTy4lT3H{m}*CqIpw$2(i<QVprLvAwq%}MGp?NhhqxIM>=+=>C^4)xz0lg%^#XYfvg
zcNx6f;5`P%<rr^>JbXfqdkvqMP$n62pTYYLK436B)(wIW8UBR9hYdcG<55GD`j{b)
ztFzk}C(4sKo=Q@u<d~Y^PaE=#!DkIVXYhH0(+s{~@I`~u4NB}wIbP23N{&}^yqDws
z977fP)h`rhbP6ozRs&`!bf}LQbn)MiH*(A|<V}Nf4ZdaYZG-O^eAl3IolEM293SSm
zEYIb6KFTpK$7*?2&oe*A$2oq@@mr2ha(tTOn;Z*se3s*LbGfe#e(|54{$-8@8UoBR
zszn?(Vz|hde@J}wTSFEb{4U4$2|W&9Kj!$!O!0G$UrfG?94Gyr;|~S=yo=IHaxArs
z|0w<^61uIM`pa--`8%=avK-5em{LZ|+md(9Cm|BMQr?BZxQMov+Ahz^hOCljRYSxk
z{`Lv3jBDiSkf)X>%F{7Vr#yY~^p)5=o%3v+XPZ1-@~oAod!7yRbj`DNo()XGI(fPo
zvc8C>#=54@dZvkl|7*G!*(lG(Nzt3+*)-2qcDtFuEfXP|TlOuI+qia;psES)k*8Nu
z>z>9F3-6r}x6RWp&)_^e<=uK+|2#XG{O$4#Fl2j!1C3uY2ia|0ir|hWGcIfAJgt_x
zi@_lVRnwt)cKuH-FOQ!mohQgsl=68(OU>rV<;f%kDP!KMRxlXXNKjYVC@QpSNF~V<
zYgNzF$a6-XGxId_49jzLo@4UtmS^`od*#_X&+tUT9#-@SgOa>wf=JXpdG^h7gi-c0
zc#y&U^BnLWYaf{42j@A&7!J*ISf0ZTk6lQrO1NYmX+$AMna&~}Ym}4njLtJMNj)yl
z@p(?jGb*8+X#C2kERs1U&&gKq>3PN`JaG}H<T=$SD)cm~rudaHhG*ruAkT$)&Q5Zj
zljmH+&r2xhC%VPTUzA9@*pN#MUYgYUiab~5`76)gd9KQHb)Lz29?Ek~o@<Ts&OFy8
z5^gf&dV@EZZZ{gPf~4)ud2Y#btI=;Wct@Vw4N<DT&n);q`KRW|?NfK<x!dyIlV_44
zs^hpk<MT|gEcfP_m<U%=Y=Qd{&inH`kl+s{Y!ByoMDZ}sygZNQc`VQDJg?_@+!&tE
zGcC^(hCi9-DMO~@c{<NCX0fSOuIlov8RxmgL~*-_{z9G?^USb}u|CrcSCTGKUdr=w
zo>%g`n&&l>IV;c1JYU$v^<O!%L(Kn%Wq;G)94k)rxq03)%G(CtH~3DTck{ewJd&d;
zmhge4ewfhb+wE6*zBbCoc|OVWX`avWd@eOCRT*_jg4FoZDAIg^@eBDT&%!*v<oPwv
zq9paZJl`6=IH4%}_j!J>+aC@7WKeVo`8km${5PZjk>__qL{aHW5`3v4e<u9@SQD&Y
zV1ok7@+{AjD$r7(eSy^qZup=;+ZfR+fC6m{j|)|5JG))k;3@@HO;S~&D!Y1oYj6#N
z9Sn9f*r~8$aOqsoULe*g(ADVO3anjV9m7>nTvjY_T_dX8^$ZcQdw~rL3@k9Hz(xf&
zF0gfhZ7g*YgIgBZ)C$@x$-8-hEfPEyzLnhy?~%~^8`85tuL8Xb^eNC+TA8W0O?cwl
zes&w<+Z7mKx7!<xh3`;c#{zzVbb-MIcKQ$h&INWY&}x)j3JfVQG)avGs-|9IrI->J
zgXj_-CU_>vl`l{za7=+?rS0(4oW7}Ifs%})_5T8g7TmnIQsB+LscL~*fyk2dT()0<
zdVxlPW`SV^_9(Dtf!zx1USN2E5e2t{LW7+?EHLJalwK|Ay}VY8wLHF8fxQdtQ()f$
zS_ReONk0t=y&Tl5ZG|Ac2HL;C0R;{$a8QAR3mj5#@6p<|cgqf1?9v0fc75pesLn5F
za(h_8J$xN*@CbuP8a&G2(FLY-bPV#Y)<LO}s-5k9I<CO+1x_e1s=$c_78m%gz)1y0
z7r3Rstp&!IiOwu=R)LcXjJ4ZS3Y=Qtw1QhHl}S&xCKfK4x;?{qbbEGza|&Eh;7X&M
zEBy;DsGe7FpMpHUzy$>^G|D9fw_bOVv0ZF1ermqd=vw5t%oJ8r>J5b?Tvc!n+E*92
z#&i(<TH{pd*B7`h$t9V(ZZLs27P!d}@!V{PzL|epf!hnbBz+3pp<D$f7MN7v&H{H8
zm{8zeEBEe#+kT^`q<c*AID_NkQfwQrDyzj7NtW986}Z2^^H#(I1|PEQ51OdSMv3kA
zaDhjxbsjD7M1dy_e@rzpo2ao=;!_28JVf}E!iqyBQwuz846?v8Ci7W?&l!{{;#Qbe
z-~}t|MT0Wh^a3*sk8S%(fmaL6x3+uD=yT-ZhRiH5%ZgBqW*g;ogKrp&v(Gile^B5p
zBfeeW9Yfx=jPF?!t58XJKgso>y7ThoAKC3Z(^jfV;g1V^qTpi&{ItMlTK_5Vg|RIv
z@MVDo1-`M{*ur0#@UIg}Y|Mp56vMYh7g5*u1%4>7evu7|{8-?p0;?2RwaCxvbjH@E
z$ggIBWp?|U!QT!3QDBK7OAY>Q@XrE&84_zE_>bMnCd(6gs_5c>i$M&oR9w+h+7@YN
z6zR6IA*#OewlA`p-F7j!deL=|&PCQJy8hC^h#d`fGPtI}xFO=|uT`XLk+m)3dX~D5
zL21&>kaaCdx4M+2dyx%`3@x&2k&TLMT%>oAKE}C;!L3Z^O^a-1w^C#CB3l@~r9sJ&
z0$UrtjlmuUdm8LzFxF6<eT!^gWMGkPi_VSvS-tufT@>2RppXGY^gVeYgDh1gD!bqg
zMRqJQ*oZq7*~Jvw*=}R`Lz1$@+*-u5+nkB@|5NL<WeF@bERr!qx@8kld1EdVDJpN0
zx_gmwkxG$jky?>vkzqxmB(?q@`He)*Zl<A(EPY}t2@WqZqR1YJCy27A2@%^qMfNRn
zPLXqq>?ivaIikpsMON2qK{ZV$cY@|XtIk11x1g=-U_%Zuc&Nd{ifpd<Z*Wj=ceL%O
zqFXuC&smNxa!e5|Kpk7;v?8Y$8Cm4GBFCEorx-k;$fzPG7CEWNSfh+CGN#C9V^b#^
zj8}d-AC=N2<wX~As&VSpx0SRr?DlMfXBIij5OsO&pV6hauICjwzsPSzelNNq^@1Yf
zii|IEq3WynU*zH<mlV0Q$UR26tjOg>l=sdeR}{Ij$aO`oFLG6ptBYJy<XYX<-8Llc
z&C?D*?Pt&mxdulKqc;?}vB<4OZYy$Ak(-O$QgkDrjzwto{-aObE~CdfyR)L&`F4Ae
zJBs|T==KN3`(gA0!6)l(Khj-A?k>6)n)*wf*4R~+T=a<XsR`EHj~02X$i1fRM1zwI
z-e>TBgR0sCMIKD>$weMY@P`d~#GsB|K5jDKDe`WSCyG3&mMt<xK33$FB7^#*rWSeD
zc%HT_&luFCT}3=6LlxaSsc8mZGWdeQ7mG|UGQ)7yT5hQwl7jNRSBtz>WOk9)P3+7f
z@%~Khhn!VJe}7PA-zYMt$Xi9;F7jrPx$@Fp?!(ubDal-VDXeX}GK=0*=rx3Xcl%z^
zy_fk;k#<(<{URR}`LM`GMLy9Yf021b<`><5-H(fI#Yso%)Ev6ir-1eKgU^b5UgYZ{
z-xT?x$d^SH6#1&?cJj#hQ6n|vQQK5D!oBF!CY*&u78Uun$l@aU(e{v8sVj#&Wpw0C
zn_;$Y@7~ww_WL3~Xb33slY)PdUljI>w5g|NEojl!9W|~lZ8z22tWB@fvaed!S}FBM
zktOD(OU-Q#FY#xQzf?+*e-zD13@ov%$Z`eJ5*w8ixo9b|Mu`q37uG1TnjtG06s3(J
zZA-K(v9jT-lxSaaGnrLOD|R30<>q_7YfbU5UUIXJ_zhRb5?xEIU7}NoH7#%FlKbti
z{P`fg@GbG9z5-f8Ysgx5Tc<>~lG}5#ZizNM-OMCDQL7g^>y=o)<o0fDP;w)SO6gug
zua+cd;}V;c*rr5}5}R5Po0r(4gbwI!rlR$Jc0_8+62A;gZB=4xDg3be_PaL8NQj`6
z>1i@0wttCUhW9qu$6()*o8u{U+Y<dsZYH3CKzX+-F~E{^j8QKurO6=iTZ#LY*s;Xm
z5=H4#Vy6;2m)NyLYl&S-3^Ah(wd&~Tq7EHMpiC!=d6I7u3MIFUnKlKaVNfD0ktvb2
z67wY&5OO7IM><WESK9`(^H7NDtEgKpQ7JLJ#0aUORUmPehzwVWbrYgWDVJcwTA^8D
zSc%<A?hjLvxw{pu)={(WQDV;$dzaX!q<;>k_A0q8e`*V*KAC)s=*OP!RFt&Z&ve^g
z_AhZ@iG!>~9=4af2V2r1@;c)@w8UZN3~EO?!x5(5ktL2QakSy58<hUXlsMM#kp_=T
z=*O2h!SGQfPBev2GB~!xXhYO$V@jNy;HtYQr`YYOB~DA|QctCvQR2)*@>wO~cWURB
zI8TjoAn5}+zr+Rdx?$Wfj0;O#B&}+UtZ{LPOG<RFuwjKuOI%iBl`^ZAxxB;`C0;J^
zih13g`uR(Vt5oF@*Oc^8_tcXmu2r{s$UPn0QQ|rYFL6VO8|4EwtJDZ}Q;Azj+*)#T
zvzrZSo2&5KO5AR@!u2j@O<QyLUx_<Q+*RW468DyvSmK@%<4TM#F`?v!;IDh6CUkdE
zYk&JbzqV57<?N&q_m#N6!~<&m-l^fMq<-)1cobD8Yj`5{V2Q~}wf)r(DPrh5X(b*p
z<WYm7JXYdy!=EsyydpkTVoHgrC7v!Zt;7o@o+<HciRVf@UvguU!sG4ZTr^e){WD7G
zpBgjTr(P^Ey~K<XFO}RsYL%*hugxJk6eC=FMKofn9bYZ+O^JmiUMn%vq|GYvp81$M
z>1^dK@kWU`CEhIYc8Pc7lf6@uA4ttrHP!kSJf%Z4w?+RL+G$VM4c|36s=I9Ueu)oC
zd?-&SF|WkuCB7&zUkoKaDe<YCLC5IYre4sB`Utm4Si|vWYSt0XnYBg#%MuGpd{yFW
zmHu(+>OpSDuTJ*q53uvral3}JxkCMAk$PW=pG@s<ODs0zJA+F7zQhlPA8-FY{#kLX
zgseoFU)8znB-ig|@ZS`-yE!-h!}ymZ5|%3dC-`56{9WQ7LzX4<<%XonE~>N`RBTre
zSgA~#vKtiI8f<4!w=0)d%y`?ES*^@lW!^5cdf7QxKjT@WOouWZ%XBKce?x3jX3a94
zEouF-`yzdpGF{88ZTMPcuF`*S6#vU~E3<By^~xL@kA^y@rtgpSK>LE$8rX7Nm(&Jj
zx|i9o%tmE4FSA9NjmvCOX45j8mEC_xbqq&P&7mC;@>u=6SOfi*Ww*_2D>0PakpwMh
z=rD*}Nc%Aq%6gRDn9{RMuQI*M^eNL<{AIUeS%Z;wcW<)DeTYMQ7Y`nnI(%lTf0^yd
z3@EdG+06#0l^IxOP}%LFU8<3y%#LNQE^|$p!DW4zmt)I}EVFZ&UCQiUX1Lj5NSUxq
zrtAikp$2y?(^|$8UM6jnpzMZMt+D9S3hIUf4bPU{c%)oWnVcHScnXqPrd+0|vT*A#
zs!^p()lzGsH&U8z#ml6UDWqPeVVX3{3@f|v5{Kp8%4qr>zigF1Xc!$)W{<KPkM=Bc
zaG68O>{Vv(GW(R-*CZTZ@+DzE>DE8BzcFhh(n`gFWezfxq>ly&=_a;A%N!xa${c3p
z9&S){d7VZv6?BxTeRP?J7PlN@4yn1c7>+A*e3?tiTw3OYGNa0zWeO<zomgh9;U|?D
zZOE81C!1s~Nhz=VRzdZYGN)SVX>vcs{4%E-kM^{P=S<b~NM|}tJkBn2PMLEp^}I6Y
z3peF2FmI9l_27SDnTxEYE|yDlT=Cvq=Dkcj_K6QU*yUEx6;|k#W%q!5mC4jUi&f&a
zWv(kTvCO10*O$4W%pJxlZErLovcH=9rZP8Mu3O67TIRMgx2qS}7@^~(Leyk}|0{E+
zWxvauWPF*sE!RB;C3BpVvDwQ6quguowW+DS_5J@c_p3jadDM8+SP#UZz~E$Sk%vt9
z!<I|cRBLJ<=3`~1mU+6&<Hq?!nJ48Nb{6BQq%KnoQPHxS{8@hWOqplPZsYWGWw%oF
zyvdhAHv78e1!I1(%=9ud6hO+%Dl=QAEAvX3*UHQ+^ZsnNIQgnfhdW_6)x^qqw9KgQ
ztGr(3jWTn}yeSKGb|F{Ip&@CmqR@!cZn*ex&hq7YU;Iv)cgwU?oO{0~v5Ko|cWva8
z4((IrH(Ne2Wj-wPQJHyV_nalp`DK3B`j2XAex+?=nht$h=Cd-Nm-(X1m$HC)%Yrgr
zmHEjm^R?OS+cJv{`KHW5Yo<kIQX`x*s3E?yq#q56@_m^f43FDd6xr}+qx@p<NL$DI
zEjF*V0G0Wp%o4@tGJlp?R%W>s{g*lI-wJ?gRvX9vQ3yTJjnS!!JJL1Zc1No^vL_W*
zs?erF+X@?0Tx@Jtaj{+g)3w6N6;`RRYK8U{I#%dZVYLdYS6HJ$hYDKM)kwVrw?$U(
z7WCAn0KWdn)S4AKSLjk<t&01<-o!;Id91!Oqm8f9L8HG8!L40koeJG5tXpBd3hP(U
z@H*DU;vw(4M`KM|v@=l8Yl?(tDPC3BxWc#!<11`ZVbcn`R2WiWvx<vggG}emD{N6=
z=nknZEA*&vcK6g)M&G)^Hqurn^*Xxq9UAfFnLR7?s<`p4x4}LJb=$YXwh7+Pkp306
zODF>j*}lTSgrbSW4i&dOZ^w#@)q}0Xohs~Hao+=3%Z4_UJG8>CnlV<~fY@5Wt8i$=
zbsWD!x<a)=twLZD)CAcIVTDY^d7$R)`k9pe6P>G&uTZE^RM8d6GV+Mj{0{Ccp$0+a
z($6j{6^_v2!1Cp4i>ShMMQLl(dWA-XW`$uD_K?^LyH(h|!te?sD(*jDdRW$KjBH-&
zmC_Td4o@BQacVC$ij=IduY9AE^@aJV<r7k`{pAKqy)1B9WY`J^Rye4_!4(dvpgre$
zOxE{LrrGz_G$rUgz)iOfGm9NA4J#aJ`0)mhGAPR*ZOAbOkF7A$kmC%-TZ>PqFsj0d
z6;7&fp3z5F+?LK$Dx6wjj8RTDIM$$K#+xutv)i)_o^J4r3TGOk*|^wroo%=0R5<rP
z^z#i@>ID@pH2k83a&d)A3_rTnNw}=S<rRKEEOkYN+bTN2+9J2Svcgpru9ju`INy_z
zuc>ft#m%m-tGML?g_r9q++cEUG<cK2n+;0rEfsD}a1DI7SKJ})JLD&Fxe9kxxVyqV
z*2~l)8pyP`F>MDI@#fn9&L&j2SIu2>pDUbLVN!)z6=qksufqKmo|Q*w*{8yT6%;lf
zuP|9%Qp<7XGY?hV<K)8zg*;-2&O3b5G4+^wpVn;ES#$`Z!jtm(3R5aft?+b(XXK@m
zQi?6=`%mhLwU=AJQqWVsd(KLH-k^$}R^bK1UrZ>|4Vh8lB|}~|_=>?-4Zdbjd1qEu
zJX*e9;f)IOD|}pGj^djf^1GDQDCU~oJ~a4Ng|{obQ{mkT?^SqTE;KdOy$gy+@^(EJ
ztZ`rJ0}1Jn`mmR4&5tU~v;L))QmQKQNrg{ks4A1Id{*J}3KvzmxXKsuKy~3NL6rp+
zzEWtavRRd{D|}Pop9;$=EUd7o;wD{x8~nDy&lP?#d~t>EDtuqz2ebK4M*Pum@oWAN
zuO6#M|61XX3QH<(mHszl``vIcEVbJ|D=Qu(2MtgCrT%EchlJ=-7FBAwLU)xls-&v4
zRH4dBRoYcqxk{U=&HP1-$2gm8X!Kdd=*ru^%BqIT38jqKR;#Wku0xfM!mF%f44n*i
zj+v7zlF-HQwG4JODEZy0PR|YPcHJuLRaw8v2BwCdb2T9pR9W4PB7Wf;RoS@8CRVyA
zk}SA+l`X35TxFLkTN-oED!okXRtC2=xQ)Rc29>LKl|EIruQISo-zwWySG>LISEYZI
z0mdfz+a+bG?z)Xj9Av3GRoxtK2g7%)GT1o95OYdfr4BKDgzsv|(CUi!EHYzj)eX2_
z72lA!t-~rAX;S5YD%mQzDtlDfv&yt*Qu!*wO-P|iF;=fiRHa^}T%}T_YN<6-<6j+w
zsPsma-7K|PWtcID7$@y+blu7(BNAN7>}9wR`On^l?_+xIYq*H}Ro&{Js&Js%vC6Sk
zMq2G;frE|b5L5EdDu-1$yvh-Fd$i>`vbtjTpoWH{61yE^#K<&JA3v_jXe&|p@l{T!
zGOEgnRTs7N_#mh!my@g@-Hxepa+R@FPN{Of5mlp8tDIZqyeg*|<@73NR5{b|vlE`P
z3{l<BNhrc~DSK?93yglDH9;Fit!Gk~RJpXuZB=fsa#@wjt6Wp%TC3d^Rj#aZRnnkw
zn@Y~rRmR)W;&oN7H@CUL#L9p%&y99_Q=-GoRc@(rt8prO%yUPQD)s(X<<2U1Rk_=U
z6Rq@ns!Xt=#~D$%#wY$JA@?T4NmcGM{QfEr7@|})s4gK7Re4w~Qe&MOk5qZI%Ewhc
zsq&aaRhd)e%_>h=uIH*eZ^)BXo-$-gm8n&pHvE|?&nBfyviu~j#k49f7{hB-UaT_R
zcwRO*!{{#=R2K0o*DH1_#a>OUA$(?)S#~?yQeQXtM#8C#a>BV)-ZrzmWt?&C-ZA^U
zTjf3ZVb#sqJ~EH`z;Hb~d{}j_21K7{(&ihC{ozvu|0>^A`M%2M3jS5TG09(=%-Dtt
zjQ=ZxUmJ{Tz0hz~XHk`J4PR_9_T(R`{AjAKRO2V3ONZrEey;LMm0zp;R^_iMe_PV;
zRsN{5#0rfo6&JCz%Adv%-^Tj<V{FTe9yft3ld92DvsVB$7lPtm+@?m`8trPVY{ag{
zuu9Dh3LR^#TBCi9)oQF>V+|w5(L<>+j%0SI{r^g4ry6S-PiKQ&46bD`wq&efw;Jo#
z=wD;I8tc_q-x#*8v4J6*8SGwT!<vOz>yI1N*x2Zs7~IrgT+_{KF0`sTTh!Rn=vx_#
zYrT!(iZ(rJ^sLdVM(-MZYV=EZ`dY2GO@zcUV?77d*uF-lMz+Sl8iOp$F2*T_9ct`o
zc?TQZ$>_?yv#A|7(2yEKYwT(afn{&4;nnaB7jxPWF~|I2a;v1A;f)&28u=Q98pR}6
z$q?yKHl$LcTBByAL^bM(-C~)7YNlbvxrf2sYV2NPxZxuV#{ZIt`DHgDd)3%aACRfB
zPmO(R?wR7yn)?C4el_=;xPOfUY8+VOpc)6)IHZPV{(2tNrIlOZdaOIQXKI^I+*#nm
zY8+nUh#E)MII70cHIAwA=*y|EUULtRdbgrndScRgow6KP<M<lG>g-nMgc_sdbrBsR
zPONcKjW23^DaBe+qh;+HPt+Jw<K!A+Yn)PJQjHH3{A-*hi!EP1zQ*Y_&Zu#tx%8Pe
z*Xwm%T;nXm&o+3D!E=+;^J<)L_yq~&LPIX9xwpNsgiC5%YQ)P7US8u0L$0iGogreo
zO3gv)>KfNryIiYAw-pS*>ucO#Y}(DGjayn~xyf4LW`oLmOO0EN;WpD;&3Ai^I}HC{
zjXMpwtHwP^>fMH@i;XixJycmHB&qk-n3&*7y06ClH6Aeej~INg#^f3g8LrYFmZ#ZC
z<hZ_%CiKS)5%Ed+fPBnu<qT64B3e=})|gsz&k;}8c&5g)HJ+<6t;P#A`-l7eE&5~f
z^EJ1eqJdr;$$svi5=C?D>E=;0YP_WO?dZ<9>0wjzbNS&bHD0apT8)`CX4QDR#yd4;
zn?2vCF{j4smRB#tFYC#hHRjgbTyA$g6#wiV#NMjWw@XSYJ*=-!)OfGPCpA8m8_Q2>
zd?=@_p^Q2uCuS`a%&T$geeO4@dLK7meMC<Ia#}4KJig-Poz|B=tMR!?>5$6q>5Qx|
zQ7kZhzOM02jjzn{ltpSRtg%QzLv#2V-`3nY*`Gdl{<GM0{;tONHTRxHUEqfrKPvv$
z_}N7LQgiQ3^kk=XtuD66Heh1vw;I3K_@l;XZS1MB%#bBDme%;w@V{#OZOC4$q{O33
z$Z{1C(Jo@;h?WQ<R*Gm7xutR);?qxf`{})8uhjZ4rP@Zw0($V#Bi<?zt46FAv3kU`
zK`CwR(*tJv$QeY(z@^);FWh%d^rl{0I66jDBWe+yBG!!P9ML7BS48i~^})3wHi+mR
zxuDTCV(o}^BDzJa8?j!*`eN?o7H9N>UA=9WSLp4P0*KzHZ)jQ6E?Y!w6tQu{CJ~!P
zY!<P3gml&+S$$biS#;7+|CiAshFWLKh^->Fj@%-QY}+GpU49#bTHEg#xlvCBmtuV)
z`bG?n*ePOHz4?vUE^^EJ{UZ8DX#1k<ukleo4j2%zeZ;_sLCPMnW8_YA%Ted{O0{{y
zy=aiTN@rDYXDMdyYYGv&L=1@-D&Y}9L>SQ;;YIin>Bza9&h_h8-8yuC@p$*2+>dS5
zE)$Ve=`vk}_KnEMM-6xXBGG<^Wp)l-XZDMcTl>;gGNc?)F(l~V+&D5FwyLvroq9wg
zq8TwPVtGVLK~;?yF(cxoh~W_<A`VtTatwX>K@JdcV8osgdqr-Nuy@41mZa2ujH2kV
zpHcQtZpEh5IN%&)Ns2;;MjRG#Rm9a1hesR{adO01%c9gHBaSls=!nsl<(P<LBSuCX
zXY^49kB>OP5EY?ZaS<m*oFq3(c3-P#rH+wb8AHr-O2ny_@wAAGBQA+JJ>rarGb7H5
zI4|OSOFcW{oQQKxnuNrq2*$!MP#Z;DWRl|~6%k*TMqFkRbbEQk6%kh^3dGr^Rcw=M
zBCd@X7ct)WuQRrL48K0&hKL&@Zi=`$;tsiJ#4QoGM%)&0dm=EdQLKP)iB+L@M%)!~
zx5*JPR#^17bioM`_eMNv47!~d@mR#;5tAbBi?~1Hfry7A9<fp$jF=qpkm3IdiOYS|
zB#5XhE-0>-@F)Ibx2GbeL`;o%I^vm#=M^+8<Fj(h|44}CykL|UBc>-3;!4HJzZ~&O
z#N3FtjP2Ek*%7ZB{#wLLLuMJ2G-Xt-H|%y!B2APxjUpxAHsrgA?+tk;;@yb%BHoYq
zz$jlvd>HYO;U7oLi<obAh$X9tSgTJWJ~f`tB0e{djp<()QMfo4M0^$TbwXJb@lAp+
zG$fYxZN%b4f+#;k{21|PqWn)0za_bTHslwBza|oXPg4JgSYmRP8k8vM{FmW>8_z#U
zMV1*cZqSxGZR@nF+l;;Ldi_cU+ZYtj%5~TAb**1#6~kAp)4tAXhOc2zxmK^Qc#7{(
zr(>N?M(<pwi|B^Om6e>e>a0_zTb-^dG|44;tk1f}yq?kHEHT`mPWL(+#(Ku{|2i9+
zlA9QmgiY&gX4yA4xP`$j4aUN^snetG#@~T;de+%fZ?d|i`qkYi)~inMI(_Q&m112|
zg^n)TYh2s5?iOh^`OyH;zwU;E?F<g6vwa=?K0s4$eZgMqqJ!$}P-n+FgX`>6CtD|1
zXXiS*)bZ;0b%xX#T4&cft#w{%y2)+tN$x}9hwbkcgf+hCjZ(T!P$#UD(Oh?0s^4^X
zjd?Al`G#gedM%=F=I84a>Qw90>J(MGI^{YQmAGfB^T+Nd@_N~=UvljFlM|@F$wvzN
zbsBY=b+=L~ftsu6HIPQ|_{GGy`KjIO46iey!5$4p)Y+r%{*2bY!Jc*Ys&jaqBkJre
zquHl9_Ax|4_N}vDo&D<^Q0LG(ht)Z-&Ovn!u5(D;eLqw0_%xl<2&-v-T)_i|yMeO%
z%oexxaYpLMIuqNbj;nKgould;U3dFJWz1u&)zqfP))|@LTFX75&Zs(%*LkAOiFHn@
zb4{IV>x`E1-3wgKG-OPjlMNAZtRbfuJhjeg<}Ifi)cZSqM@T$p)j6lmxst4d0QD8m
znCI0w-*R1D=Yl#H*15uN<p~$nxuotUGZ)J&_Dg!<m&y*Sr!F(PWL_?#J>uNvN~2s=
zcN1MLzl)+$#Bg0*+d-X>$#rh1bEAA)fx6C3b#AV6SDm}-Zmx1mom&kNu6Lb+x7E45
z&K*Y71BI;gzdCo;-5fx>vtDZNK8Bz#%->^nQ<IIe_8M<cZ|Coo&FgLt-lY19=NIAk
z)wy2^k4_1Hz)~MHedM1H)!iKC;X04hc~qWkYi=q+$YXY^75*pdJXL3Yosa8GsWY|C
zJEq>#b)Jzu>%3Cu*`ys`FyuLd&zni7)!i5P4;}65@}kkF*O?KssYX^c#er9i@`kA=
z&e!V9G|DW4vki*=x=QSlk~QYk-TRI=jjk9qx6WHhta#h{f|%d6CV0=(P@}wG=Ys_Q
zu+B$@%jWay?zov4KB@C*o!{&Hp`Na-#dW@}^Nr!38~noHmvt7H-SoN6uj+31qso%M
zEv)l>ogWk=wf<A*TUFdX?XtMece1cOjcRjX{Bqwls44$bouBLcVlDEksWe0%47V!$
z^Q6;iNu8w%whh*5@MoRB>a5zJeFN=Q)kN`cEAF2<%jzswi4C{d-mXDQ!velR3@(}N
zMvXQN+A0(r>3mfUE#<|(a)VVYqh2fMcD07<CSqQ*;p(!w!8ICmXt;lDb!^b7;oL?$
z2^D+w?9<s8v|~^n)wRLe4K{7CnGx4%uwjFZ8gy&0ZiDq2tlwa<ZPJ$a{?jA1LBmC!
z?goWuOUA|x=fKi!6O*9Gu)BQzi`3=~wrHT8nSB~;*>EvI{5=|O2;0iw)&{q+ifCc2
zr|~FE^=i=D6jo)`+>+eaIJa%k&k+4BNc8O*&i@BA*uKHQ27?+D8hSK#&oVnS7}{`s
zaK{FN8|>6z=LWkp7}7wGODaooZ@6CkwQ&zA>b95QMvYw?w2I$?o+sgkrws-MLxUNE
zS%YHE8Im{n!C2?&CDUP8gK~pPgKC3XgL;ETgQ(#ixAj!3hr5)5kCq??rJ4;lt}Xn`
zeVfr`*N?y&>~1w3Zcr5cesRwRdo}1gjBSUpx7Ga!S*gK34fbug&z<ep;9x`cH+Vn{
z^&-HKgT$=As%gi&-5#2x9%jhl4W8`lQjcnIbc16W9BZ}EcWkslO9RKq2FEoxp~<Kw
z#|vq&u)(4RqZ*vpU}l3^4Nht>y1_FIo^3Fu!O0EAH5lJuY=cu8T-o5N2B%t$&TMd2
zgVPK@T^^`yVCM5e<i=+=ILDGMZg8$4=Qp^(kn@aLJi0ElEEgpi<H^Y-4K8hPnK579
z;EKkIxllaoh<UDVa7}~T8{E<0+6LD(xXJis=j$8Xkl@O4qX`$H;%;tmizVG^@HW##
zS#*ivf5v&2!8;Ac^t%neCt;2in9$&UHM+^Ux4}e1CN;P((KgO2_@E^{-e7WrhZ;O=
zx1v94$Ri2=V|E+s`GlHMZD*7z2IE4f8vb-bQH`E6-DV`(KCj+tsV^AiMbmkDqPc`i
z&Pxh4#-r@77~89M`<k(dINNUDY4C1?*AvNa7;%olHyg}N=x>?+Zzp-*GlusYd|-%5
zR82oL{L=;>S+03@JHNrlhJ2D(Kt+rHvj(3x_`;IDGAIdOHdtVIY#&j+Zt%^2DBmi?
zHQ1m@_a@&p_`X5sCS95?QvJ~2uLgfB#5MTIvi#iOcSC+@@N0wL4391Rulzq6EHSzy
zEY&DrxHOE}{%NpMlQvD3S&fz(Of_Bn*VQ7#a53w)t*Oz`DD9f8++-D_NOFfJt2SwG
zx2rW>ClXQD>PA^35falo8F9^oC{<(mYZ*nkx=KQmb((ZD&h?DGZk)?BS>K9KMlo;L
zWTPgTCRt<HxXGX<J2cs($)-&<Gh)vsy_#&^WQ!(SHeEN|y2&;sWGiEk0wVTEijY|C
z4C&pZPm}G9*tf~Hrp9)5+pkG~yNxXw>p#GflsB&C!2d|wvB}N}|KKJ&C3swgU78GO
zGPKFAO<J3zEj1S6HStYh6%<PjEH(TOPp(P6$>B|ouo4SR8cmu_in?u5Zc;IN&0s9H
zYIt0F)TC~=|7t$0$sSGiG~#Yec5gDg$%up}&Ly~4lf9c9*yNxl`!w0N$^K0aXtH0z
zsj~iMj?2~U!DjYDn;d3rhZu}g|K*n^M;iTDgGV(v+K^+c*0D_Sj5OkL8U+lAg`C*r
zq$UqEd9caoCS#i1*5vjkCpQ_}<eVnw8uKagli{gT4L|#Pw~^qqCa0?|X6G}SoY~|o
z<B{dhPOL5bJj-%^lMAF(>k2==u*pqEzo^N@O)fF~$|hGexwOe;O)j@ayu#`(%~gee
z4RW<HU*F`KCf6nm*BLS9xxsMdx-m%=eshys68f!%#0L-WXfh$8|Id&+4c^t{?k4vb
zKF;8HgW4XfjH>m$c019a<WFjHpW*i>Y$8r>@{oG^Fxn5};U<qXS!$_|HhHYcoF;EJ
zdA!LJO<rs=-IAU(_*|2xnoKb>PHpmZlV{8zlBrA9c-Gj2#EtvB-A*(3LQ?A)b}Rl@
z4SA`_%Z8{?UP+|A)?{XrSqbNCLuAI+o4k?85x+{A+vKe#-#7W8$=gldG0p`|-Zf-i
zlle{FYw~`R4-#n~CK5g}O025%`MAkvO+Ih(iB(XPPZNf?tS_2;ndDWf^!cjE*T(Zr
zlW#58!X}H1M`D#rJh~QZ6tL8osJuTm`KigzNqxoni!uDs<ku#@HTm7dDzBL1vc$8*
z_$B1eCVw^gyU9O^KFgXcS0o?ihM3eaT86pc?}{77O2cSp^fm^?(AJPxw^;tl!&b~{
zL{!GrhOzoE)*43FVXQHX4#V77(8YL^+A)#SNt6WdoRk<#Slj4Z598fYsda|YZ5Zns
z<^PyE3#coq@9*E|Ln#IdDkh3es)&V&-9g-%J9+2cnFl*iu>-riTTxK##KsmZuoVNa
zyIbGy*_Zo!|7*?K>pN#o?6c24`}CPr%-ixsRw%M!J8VA#E4AZS5-Xcai^Kj!RxPsH
z|M|MQMY2YbH4Us~w3Y4v!vl>DGCJ7k5TiqjZh}bhe>1+YUXfu%jxM@!#QH^s7pWIX
zi*B#W21P~}8B=6K`?`^6kxhzjj6b5trbV}7Q<EN>71_MVE=6`NvPF?Ci|kZn=OSAb
z8Chi8BHI<&y2v&~^h2EKqg?-7ixIm$)S)fb=YH>o3ELOhq3F(y?x;@q+8r84Y^bvX
zT9J9jUHqt`d3jJ_w<5b2*`vswMK|kmM7P4I0}5J^*{jGX3#;qCwVooD6za11Zs}^Q
zI4t59DHbUeDHo{}sTT2y=$xry*7TQVoV2G@t1y}=(s8YzNLVB)5*OXg&svGlGL05l
zG)tBg5qS0GLQ|J<>6D*Ia-Smm8fX^D4CF>TjY`7fitKGzlM;H}ukC(#k^K!HP~^ZO
z2esV~GjOocLyC-VyB}&m!&N<sXM(*RVf4thpQ8+%sLOwf99!hLBF7iqzs58gJ)y{n
zMb5QyoLJ-}o%1SkdeM#PPA+mvkyB06B)!#|ZrV!gFKgUgIHSm!Mb0jAPLZ>U?uh8`
zxaB#8nyH&?7jr;MSEA>sP>Nho<ia8s6}ectx^Y39lQp>3K10b+<1$V0Y0LCwMJ_M$
zRE?)=Tv6mo=|+`ps$5m%>LNFmxT(Z7MXoLKpO`OkU6JdRbkU7EZ;%J^Ty!Jln~G?r
zXiCv7o=z&dNu-;LZjgS9(aA<N@g<jAi`-UZYLVNE+*9P<B6k$Iv&daC`$eRR+T5$H
z*NR8_qghI+gqG*-D{_C42c+#qx*qP<<}_dW?t1R@jgD^V#MYpV+>X|1MIJVOgdZvL
zXd6Ff;Bli*6nWB$rlkW<6?wYIGg7c3pBCLu7M`=*JzwO7qMOXoF5(x9%upRH@=lSN
zMP4d0tH|skFBf^G$g4$OE28sdDv>j6?|~S0|HQO=s$W-}GB`!vD!N_qn!CHZr@Ne4
z+N%{e?K77o-!1Z9k&lXeT;%;CbBcUW<U<KW6Bm67Uw!5-$Cez<`N-{#R@Im*ITx9)
zDlCBvDwN-FvFXgU7Ed*))%)SXd6NpC75Ti#7e&4-@>7wYi+ok&>molC`BC_@!Z%7q
zKT{Z7_}0qnJEg8Bz^H)shfDpm!&z~Dc1z)xBEJ^-Lt%9(kPd$p`Mr(5)9%iF3oZ9Q
zi~QAg|GUUPZTznRdFv=aiAzgdR-#LZt|g8yaYBi1CAycK{vTMPM~Q_>Y*k`piG@q_
zEHR+Oz!Hm;+|=a?B~~o4Xo<y2u31^U#4_gItHcuKvZT?aO7u1$KYdCIE-+l$Tv{8m
z<=)p`mo>UviRIh=<zXd@Q^~Drj{Qok-2S?Xf&Ox_c5t<}&(%w;VV~A4v6fOa{J*pW
z6x$&4Jk03e5<}W?4lS`x8?RepJ;SZ|*Do==#0DicEU`s9t&Q5LZ(L#%^E|@nW=1#t
zKfyO|=Uw^TvhBWgiET=FC2A$MEwP=smr873VuuoY*{l5TSYlU8ai_M+&Lws+{J(td
zX0N*&-NWdfM#cOn1Bz#Ki7|%9wq1&CKV<`zwtKbh?w1HG>2XFwb5Bb|24bU$QN>?3
z&|;}!xLG1=f6Wbawk5WA+kGDc`x@QP=>8=RFwlzXpb`g{IHbh*5=WFcvc#b!4l8kZ
zi3uflFTHA_Y>{Rf$81zMa++(NG=p?hiK9y#Q{q^i|Iy^?VFmqCN`5pWcU;M}mD(Yo
zla*@UuUF^4#OWo@C^50bNhMA$aY~6(OPr?Ux)n5UraGt}b?HEa;#ae%*}OALoTYe5
zTu|cd66cgSx5RlRcNc+@Q_Q;2U6&8sr@vcP3cG9euf#<qE-rD2v}lgAQ8H+<u3E&G
zXBkhieR+v1N?ciTy^d!ebW>rkRb32vy{g33<}Q4VfoqLkXY~3KHyBU`<zZ5Zo5fq1
z3(DN0#zN;JOH3;<xx|!`Ru~Jnmbg!~qkG}D5>rduuF7j0Q|~Tuhv7So-epvuG^u`%
z#dB|or7Hzpe68ZX-^%EL5)YQ#3GtW5x@JNx!owvVDe+c`w@W-);;|C5O8imk*iKVG
zC7!ZSPn394^~kuD9Hxs0``zBtC7vnqY>DSe%q;OziRVkaP~ycBGfM6Zg?d&x>Z0aG
zg|4EJeDu4_mrJ}-;?)wbNxWU$xdW}Tsd;VnsT9AO05Lqf#OtzqmeV&(TyGlHZ1y`P
z-Yqe<OtH*+CEhRbQ;DBT%qj7K1^LnFhb6u=@R3nP^>K;0hUXcbU*Z!3pO*N%?dLNC
zIz9JA+og3d^DBG(S~}Bq|F*<;hQDvS{9r&$WNUQrONn1qgUYN@b{YAtM6WVSl=<CB
zm_N;Pmoi<;{AKuWqyHHF*Qi4MXP{7~Ly?r-{w_J{(RzVsw=#=a<igzz^eD4XnT5;r
zEW3fgB4rje_f`+Q6;|$xw;dO_lv%bNPwz5)+IXolOSgO)?b~*5WpKGN%eP%tD6?W4
zuVhL0E4#Kv>Gm(PYME`@Uso$Lu*{$`tDDOjZTB?|tW{=h0|VObt>M7nG8>u8kTOHd
ztW##)G8?x2tY=`j(P2i{FS~`0*4oDghLuyT=!tG@9yTd6!oa3wwkWfu;mwS0Zd75n
zGO)GLkw#mQY}582Kie7J-slcScPz7$ft@9RGP@hz#pteOw|1##k1~6f8EuYw-OIqJ
z_N!cE8OGRaE5%Zoa+%ID<H}Up?umh_QO{`2sBbhV6B<wqQQ3|AVk;Mcy1A$AuMGoD
zqnXj%XiM4lE;HU<70*6p_HE<+%It6WfVRtlWezHHaG66axmLl6N?Q&sb6A<f&F6`2
z{}T)xQRc`pM;Si4%yI3n#~3)a>`bCKIo@7RC@)wHZSgkI98W59a+y;MpIYWD1LF3y
zGN&6pqwR900r7LTfpd(WYxF#$EuJqdyY-_R%G_AyBEuIOmE$F4E;W2v+vRctSCqNZ
zz*TMcs|{RJ=GwN)bq204Go!aV(s)yuNoAfY^K_Y;W&F$TpAL^JBbxjvb61(W%S<VA
zYnj{1Of7RqnLEpFbFb{G+MwGN&=xDzmDSk9^>r!SQ|8_>50#l#<~}J~nFq=|SVo3d
zSNiLyrZx<yRxb6S+pwp8`@>}(Df4KV$5gTv*V3tTs~;-}sLj2loAah|=o4k0EHl0A
z#=mMfl)9d06s<&5;id}Dm3dydtFUc_7s|XSyHsKE3Ny;gEc0ub-^#pH=H)W)%4nB)
zrOc~k-Y&cGj-J;Hyjf;enb~Dtm-*@_yis-+ap=gfJg77^rWSb1d}=jT_#MN#6#e}&
zbIN>C=F2i4l=-mi)-*payTA5)ROaI{bKACPUYYr-__|)k{M<R(Ef;>Gnqtd*8UcM~
zKDE54y~--1ugZK~=4W&KMuN4K-|sB!w<-%=rl<aYnIFphXnuZ@=9?ci?i#d8)W4X!
z1_gTkz04nFx>sDE{7;#EnL*9!R~-Gj%)j>fkLjTnPnG5W%tc=d6?ej201Mm2f@pN#
zwL-UwYg{zfp^WsXxJ%j>GCvDf=xJb)id(Q=)bOA|g`MYi$hP#VutbHy6^2w;vO@0)
zD^^&kLZ1rycffKLmy4w;>Obi2O1FS0X)jxG+3#C%Cx6R2V%AX@-o3DVWkCt9U|_$+
z-JX_y71pe<R)v)-tWu$Wh1M-Dt5uxjSFN~zZ40b!uL5fr(4{UC*V+{ZR9wTM9H|fo
z8rJI|1G?o>LQuwsR#>OPx)s)|uxW+ODh#WzeuYhpb8$PoqWNUkH`_pw4=QZf=2L6X
z8&{l3ksrxwg!$JW09&QDd4-Xd&=w{xdE2tWR^~^OJSw%V+x*B-Y*%6X3P)5pvce7(
zc9di)gcWu&Kcg#*Q6z?UsjzD+V1+#@>}hy+OF~+$-0f9Cb24ISl$EBIRyD#MYu-Gg
z#R??@Wuw&!73qK}m~J&u4CgLZsM#mqXzK)SR3WZ#pt&R}#|q;r>|G%>7lq0yG)ziO
zD`mMz?0LmmKjF@byX!+>pNfowuq&7SjPBo#L05*#QQId(751PC2Uj@6zDg|*Gcdlw
zp_Z@HEwhKW!%nEU{Yxs)qbeL-;p__MR5-@?IkCb-1IJc4&VY*Y_zEXjMNn<k>q!+(
zwoj*5IHm39R0G=EpbB_e1s!Eosfm*_DxBH&bC!wjdI`;3#Q7B!&Z}^Kg$pWNXpWZ{
z)$l<HT~y&><5>#1=FGySmKV8SR^jrBGd0p-Sq#N<rFpxm!qrx|*GSc+Y!$Az*Bh*Q
ziXUxzmcD7kBn6vP;pPh8R`{;MEfpr4a(+-@N`+f1Ot0`%h1)7jt#EIJ`zmfj#qAY0
zadcOOJ6f82c;QY1vX*xn+xJ*$st|Q0)cqA6umXLe!h;4LuJDNJvf*hKP~uW4$p51i
z9+$!lb;jp0t1|sZI5Rk)XF+E6N!3lWiceQ~rozh=Ua9b`jK6GtyN)PFdY-pvHCOYZ
zxhu0X49u+XQrkt-fRfv*72d4yR)yD8SY`)i8-1gKt|oZB;_iCVYKZoJI0X}XI{#JS
zeFN`Qc-JhUewnJ`(5Ke#+UJ<Gb)(dW6+SXfKDI<ZH9WV%ybALxd{S{+P{eKPt}W5e
ztTaEb@P+yR(&*P#++S5Vtcw#xS#!=6w83w}<Av`l{7_--Dg&zgSmCD%3s>n`<>v~&
zRQR{Tf5wUI%+EI!epOx5D4@dc75<Rsn^|7|p^m=|{8e%L8@2lLkMXelpn~SN3z}Cv
zve2bU*D4)VXK7_6sJc;rq|wb>dQ@F&Qdj@K>V)&gbFO7vNNi}qLYh`((JFnbEL&wU
z^VzG)5>*yAEXGvOOIF=|2z{z7RdpQpuDYJH#G)~v?qgiqd@6}$s(htgBHaqhRayA^
zLjNkOR-N)MUuA_VD~eTZ{;ATh%F2ed%T8ZcsUpiMZWW=rwX0Q~4O!FZR5bxr)~KQ@
zCWPgAt*UFwKDyg+HL%Jc%it#Fd2p5CRo5yFsWQ}9TF2<R_EmBdhwD`tW{&Gu-4Im_
z%vrRsfrV0p8&;j!-$?vaT?3>VBu70Xs%%<iv#J{|ZLY7{?PGY0DpKGrTVfwt7-_+k
zm#-;oTV=Z{Q#@|<*uKgRRZjJId2P)!vQw3VJy#+-SJ|bCSEXhg&cC;?t3Xvh9(CO|
zr82t89#!@<R`;s9^Arj-s){;b+Jvd5c1+bZmt(6GtCXsgt5m8~t7t#!v3qyOzlO}3
z_0<%yGOH%cuM$+5Q{{syVU?)L)m5&k5?e9tQ)S;ONtJq)R0VBZH7!$8CpBj(m&_b<
zqn$?OIL^S{RkYzvulrTm-&{_wazK>>s~lbBm?{S;<5ecur$bBu4mCX9sQNz&dzfK?
z!`qHWv|WxgaFjT=HsV-&J*oZmI0MHUJ;CUSMkg9oWmKFeS2@LAPc?d)Q8oAabVijk
z?e#397gRahz&S?GH7alCRXM+nbwK9ADi>9`xb1Rzl}ij?YV<Ort@*|)3}0zf@m!@U
zVEMgP;;r&hm6uh;s@zazT9t>Z+*swND)*WHNmbWPy}8OQQuv;(%1k!*JI!6OO{sFL
zx!h)Ss?pnx>gyc_6oc?xRqk%P-(%q3|MT_!Di5^3K4{>fs=Jj-Q!bCR-DgyJw8~@l
z`nVLe>K4(SXn%cD%Gt(G8PL~f+Ahx;c+TkaMqjA%V*9I_<C%tAtbVNh|MvP$l~=30
zR%KR|*=-N6w?n;U;0;sYH`@YHPT&4N_}wb+wf(<uKyC4dRX$Sv_1Mzm<0^Ay@jQBY
z%&RhA=F4;c<@}_|r{@3HDxX#P-0=5CzcBi3l`m!V41aC(8>8A&EgsYh75&a!TKEUG
z0`@BRpA7tL^p~nziId}RRerDXhdCBJIy`3#|FqY?jQ(Ba9|Lm#*T8>9Tfs5^3mNTV
zw5!o>M!OsBVYKC6eD?HM#4@W07qw4|8C8p^#$pMNB|Qdt4EE@4?kjk#XrPbLr9754
zpy11R^fkO}+hsWe%NvzpT*<&1M*A66sFe+@;?ckDvZ{gAJXSZ*Y8~WrO^>zAWo@Ga
zj1Dxaukxm<F~nmda~bNfj>o!&hk33Bt=IM`yuQb9d)+{}Gs$oGf4**PcoU-|JT~>%
zto?O!11%L*z^yz+dIasSTYK#8xdvhzbJ^BoI|JJr-O1<<Mt3yYG6Fjr-o@yyq6U;B
zZTsKD@SYxf85reJF)-Tb7^7p2%74+L)W&54iSB>!@C?_C`kt$>PF!}9Q4LDy5qZQd
z|DIdZ+1GI0BlTz)ZW`U&BQua2?KC>hs3KIrecD+0+OLiGH*kQ*fo+$A49L$R9^*aq
z!@)y6j`Q4twYWOW<8Y4&9!Gc_>A60`F`l~=NZ=@sqs>K<QE^|=(>Wfi9N7g>$9t|#
zKf&WfkBJ^9d7SKVipS+s-C4*7$GR3%j}91Wie57zQt#6|*MOexxpw~yk25{a@;KY$
z9FHqKuJSn7<2;XxJudM$-{S(03q3CK+!+nEty*x@T*nh1xQlwUOt1NnOFb@AiXK-;
zq=Vhewx;EE9#iXmntu7)4t`$kagE1~9yfVhtE4@y_qf4hD+z5QH>;p!M=jioRWYg6
z<VhYkd)(qNS#_{yK^;FG_fWq@o^{o*4uJF;T)53+s>k{@hS#{=;|`AjHFqxNPLI1h
ze)Ras<8F_8JYMsd<#Dg1?eUby(;oMGJmB%D$73E3dOYOuu*V}F(>&LC(^^2+$&MMF
zSJk*)>mbUA<ovkD6CO``O!r(bXwLI)`D5x=?n=^gZ*~ILEd4Vc&w9-8nCbDH$MYU9
zc)aM*b*`J$msqq^x?iOr%~8Iz)c%tCNFJ|vyedv?1wkivHNsL)Mw)!}XgBFJ+v9bQ
zxiZuqZ^&?Yyyx-0$6HbZk9R!Y_1wC=7}i41Vw2pWunK6=?rs%nj>iWcA9{S`p$V=}
z=b2(?r}trnk3HAFdT$dad?h{K;}egsJihk$)Z;Uc&pp2IXzd4(98~%$?k_!7JIYO(
z#k!SI-F}a6J-+k!UWz@)6{1p?03{g}?hi6wBOGIU-c|UyT^Cla@r%c=9>1v~nB(6b
ze;D}7=$}T_^HdenqZQ<TJpT3g&(k^<y=(NT(NS~FM7J8<4XEJt+Qn#BqpBc1YAjS^
z342|*M$a0H8<quFq{gB(7OT0s@A{=ymqk@WMSIoUkG~b6>e`YuSJ#BKg1=Oa<t&D!
zYb;Y+(0=tbmt~ErPN|YEUt@(DE1F9`qpEi+)lmDQcvP&SdRDPd{cEghKrXA*SiOzc
zsIg`nuVrBE8oh3EVF%XSwtU@kFv#2o*BDY`XpMDhtXpHf8p8zo6($UGmy1pu<o-Ua
zvXhG@JQaL{8lGxOjSXvTRAb{Bo7C96#ugUa2)St7w6ycNskv-cL)+=)xMhv4<Wghz
z8Y63LU1Nuu%mUlg*tW)YHMTd#c6-{L!d6;Z_*2m@G{hY}-l@jUHFl}7Yt8M=5dXS=
zQj@DKthytG*`vmuHOAH`*4V4Ys2ZbdjHx*zsZo;Zi|WE}!`wP!{i6<5x>AjDjY^HG
zc*a$kSN?GKkSlW4M7`?XY`;dJ!qR+2jj%>ka}`_)|Bd$lTTU;qJSH{jHPRZ58qFHV
z*Epd@ri|AZUvpEDdO8gpP-9%%Wp4xf)Y!M}vY&zdjjE?{pn-#o9&GfG_NP{yht@c(
z#^E(4nENqC_2~%X?Z_HOnaj~_cO9%gw#ISxDlDJcr*UHY>sbaS);Oug$%ap<ak_z1
zO<m>xG<y|qXBarssJce_bhhDhjGk*$j_1`l->?$W>xCvRje;lkEL>dUk{XxRxXjfT
z9;k7-HviPPrN-nMSJt?y#`QIBsBv|TYie9u<2oyS8FQtmC2S4Q*8aMnzqhM*abt~}
zYD}tebIskqp}BP3g)4(LQ?1_U!ld4XzvmRD)VQ_Aoi*;Naa)b4vivpfaCvkCe64ZI
zj_H(&z_A~@(fZvr?x}IFR7k}-v~XFU!d7z%!8~`gP(6Hk)6o9G8V}WYtj6Otrq$e5
zmWOLRQgefD&8+G|Lh10MHFvSIKo6PL8c!-O_ZOzu`0k~`s7bCt-0XR`4z8B#8Od2j
z$)|_Ub2XkfaeZ0ig&Hr`m?KH{EX=4ev&O6%vunJhn5D*=RPW}lB9xhZMJnwTUKLk1
z{C`clG0S!HUa#?nBx4b(nUh%-ebe;hE!im5FSBFs)OgqM@Agwp)#CT9b_jf6?jI_r
znoltLu~EIwH89WU{2HIM-9I((nbFT{d|^QA9SZVQjjwBbqcYW{5UM`9{L}DvM!z@u
zgV7(2{$y0cYWe@A#;-MgGij*kWo&=1@kfn6Yy72L`E>aFUE`k`|JL|VF4l)p7PRY0
zQ&`%oc2upPIbM9a_;mH@=DT+4t#0m;RqaeuW4+BVx0EA0u#nHfJ`1HRoYK>05#M#0
zPN}n~?{-V>Q)k~gi}@_>yB0(@81(Xa<)FelYKwiA^y%%>$7d;@*8*k*EbX(5&v!oG
z`}9?!KBxMe=Chp7@;-a{jPhB*XGKNsv$4-gKK*>w@>yH2YF~U-^;ykl6`%g*BHO5$
zMor$X?z4vPR!`RS-C<05*0hr9xMunE4DcD~v#!s2K7)J)`waD2$7hJ|Cbd*I<>wev
z7=@LK;&jJgeb)CG?z4gK?h=t72~aUBTFvYUZ0Nh*;Bx8@2>5L4vz^bTKAZV$>9dvZ
zj)=<J=000kLJFvwt9VBGY;F8+V^nPG(Nvf`>+<LAeRlBK#b;Na9esB4+1b2len}qm
zD0N+xBe0v#?mm0??CHB}bz5I$owPV2tR*c?R*&`><Fmid0X}1Wijt2{>QnM5`}ktg
zr{Yuf@qB76p0&Nx_GU;jl5i{L&?l0FB?@Ck4Nxn0ny&vzeKSkF;nVcl+h-r2%qREh
z^cm-)j4K`ukX3(m5>ULUKOlt>*w<p)&qv4N^s1_=(mc@TAfKasj`2Cz=MbO6d=B>+
zFHJDU4wX#Q2k7IXRj3I*NBA7+bCl^oi!qr;2}(2AdX+L9>vNpX2|g$K9B+v(keJQ%
zPV_m+=VYH#e0L&M><xUu70N8t0^?I$o$hmn&tpE1i(8+wd~Wc$(dTTRb9^rGxzy)e
zpYwb^R*UI#zRv}QFEn~y_kvbw^-0ey-5t2t+$((xm-$@obG6SkK5GsrT;X%2&sE~~
zxPn5-=eZpYT&f=j_*`e9u2-q`EgYj$NSasgTM!nw$!C(!-9GpD-0X9U&uu<aeJ1-%
zu`J(eR2fvJv^P>26u8~z4xc-H?o!y%g)>LH>v@%5>6;2p9)$1pxzFbzpJ_h#`#fOr
zJSgSd$B9>>mN!)y`Fz;t5&Qb6&w+zF<f1Z?9%}kaexC4o(&tT|w|u7iJmvGE&kUcZ
zEr>ik=ktuuv+cUm;_!K&7koDk)g3#n!ky{!lB|l)ET5NUb1e9)MqA8Cf#(fcpq8_J
zUiW#!YOx{=EK_S}W3$xK=N+H<KA-r!>+_z^M-s2k`#y7|w>}@r`k4;=)w@vYUU+Ov
z)@nMsv0s?$GtWovPiWM$jLV%Ky?*NRna|h8%;!E|_<ZT}m5;o&JO|wi<E_5vbs8Pt
z_<SoX*K}A^-hS};(P!U){Q`dS`B{c5U|7H}KEKMM1}qiuo6qku-2vSL{_y$J=Rc`#
zz+W={vIai?nkGxhWe_BdR!tFyD%Oqw0=fir4P4#a*Nlm_PDymCQ}V2P-FpNq6tGyp
z;sFZ>^bA-eV9~&>6SWFORK}_mp@Q@ZSR!D_fZl;y`&JE7RlT%}yR1e<CN|`M>40Sd
zRts1?pl`sk0V@Uc3s^2-`G6GyRt%h-7fY?D#j}FTHm)47N<jaBRn?RXbY-X7ExnR5
zi+`~#x<<g70fPbt2dovacEEsufflEt5)ZnyOfic$Ez{_ANWjp5bpqB^HoLmK$o^=q
zZ_CO8%~8_p2MiC`D_~T>1_2ueY!k3;z($HTVDo@20yYU45wK~%W|o$+ud9z0n`(qa
zD(02emH}G@j11UXjCDAMWx*uORvy(Z2yYj#eZVdOy9VqKuw%eZ0Xqk-Rw}lZ*u{KH
zL`r41fZYT32-q`l<0*ZT5R{^l)8I?qx{fG}4j2;<1;hbk1BwA&KrNsYP!6aBRIR+k
zq~xieN=OY9P><G7e9KNC4+g}cth7>5{7z2->H&E`XFwXz2xtamfom((Iw%GKQOQvJ
zE3@OIzzY}l4%o+HQ~$8F7^(rUqTN5>fPm`)t`9gc;Glpr1I`LKIN*?gV*`#07$0zG
zz!3pQ1{@YRGkbWz1Ou{xdgP*KO83H1=6H0#F$QkzUzoJhg0C{F#|NAca7w_b0Vf7b
z3^*y^Wb=7U#{yd_JKT!xQnRtA1)LsmhWVMeQ-?ln(4+9=$<EK&=6F%S#R2C8oEvan
z!1)0e1Y9VEw0NeR<9xQPw2Zmpyd>b#fGYy7wBVN+y<9rhqtLa-0>ge)z|{fQ1YB!h
zmBEoc9D8E&$sR63MRh~KjRE%t+!t_Dz@&iN0;Zb(n~hEhxFuk+VFlEqfO>8<7qvvU
z8@MCjP6KLa?vlzGzDG>9{Y!=lCF$KC@Ib&*0Z#`!81PWQqXCZvObd88;1MfaO$Dg*
zrQ50k(w46^dlv9Sz>@*f1G_q-YhmOk9nvCch^W+6dh(3aIABJ=%z)<to)35-;6)X^
zW<^H3LB|KSbzcgj$bXgn33xf+m4H_R*E%R6DVY2SC|W%-4zmMZ*VmYLV%`XNGvLdR
zuR`9EW57QF{|3Ah@UHS3FgM^m<6mJv2zcM{9HZH@3*!7R;G?#mz4~^{3z#49eZUU^
zp9Fjw@KwOq0iOkY9`J>dlg4iD!php8w?jb<$G=@WgulPN@J+zC0pD3{dTsF>nxEM_
z7JiiRmz@vzJ>X{<v}WO#fL~R`o-O=5prAO_UbrBB;g5hnW%&dCHgAetkGzS>gS@Ft
z`7h9A1RNZ4NQhcx+33weHV^3%(lun|kX1sug>(<;9nvSHN611Ui-jy6vT#VxkVQfk
z4V`_Ks3m`yBmGgU)nv$}SI83fb;;26!yRL|(ic$eUMghikmW;G2w5hiZ^*JC%Z0A>
zQB-<lc;!<|bu!VvQ&=%%rI3CWp@u3hHr?Yf(D_t1vVX{`A?t*!8?su+>LCL{28OH=
zvS!FyA!~>1tp5?1*$i}OtA~qWYqR`=LI#Hn2^ktL=%0(*)@2&%CCZyvS}$Z+$VN&%
zWc`rgAsd8j7`k~a4WL@Nllj%4NvbOy+azR!vAU_{UDKP2M;5iE-dluh8Bz`LLbeJS
z8M1rG9wA$YY!k9$$W9^KhHMwIeaH?L&-_77bdsv#aqO8GcMjPlWY>`0LN}{+oyla>
zV@~JgZRtMF%<dVoSIF3qV#p|qYIMjL18N}Tt;Ld<FPURGq@tJZE;etf^Pof(VJ*ZD
z=?obsDTRa~^^i0qvQTkIVnDJ|5JjMJ5om-oL$Z+EzA9Rc4)j$GhkPnp;k`rl2{|C-
zz>s}I_A{URtL(Hhf3zEXwX!4s@~k)yG7l1I&`}s4a%jk%A$Nrw7IJvVg&`M(Ob9t5
z<m8Z3LXHeMD&+W(6GDy-IVR-TkmD>8iLq67lC4x%>?xHK?bF1NlawjzcqmbQ5|u?d
zHRQCAvqR1aIX&czkTXNhvQieqI&i0`RM3h?5jMQSxgqC;oF8(5X_vG`!yM_AqLR;6
zIbIxcNyzmfH-uaoa#_e#Ay<c79&$y<mBx?w)Q|rZN^FQLy<TJP*M?jtxpa5T>r+cZ
zRP;B7+!Qh;<kpZ$AvcHI5;EC>h&{!l*(X)i|4H?>kf|ZJhumS3m&{v=p(0SU+BK@5
z^xYkDPsqz5uY}wia$m@kA=6b0LLLZtIOLI#2SXkTnHIX1y(KaAA2b^yti_8*Lmmrx
zJmd)#nU)@O)3yFIVeNtv5?9i?r$U|%c_HM*kY_@k4S6o)d6S+Pmgv-WC^ltU{zYe4
zre=n`WI(J+?DEj+alIPyTF4w3mXKK?vt{R1Swc5Dem&%kkT<2ti@LH<i_?;!cAC8t
z@@~j`A@567Mmu$F30BdHTXlx-oLBfT<fD*JLOu=oIAm_fypZ`;7B4K}7?1=MZ7YaE
zeHQY0$QQ<Bs|58)-bK~@`#R(sMHTT`#J3^esn$f~5#NXW5HcuYaKw)xKgs+?^osad
z5|-VLAmZ1M-$MQh`P(A@J>-v&Kh>yN<YHcINLB*>g!~)gQjOfcIQ7BAm~^t$$CHb?
zd|e{CMl2Mua74F=?h!pAXXN#?CQ_s`!pdFGh(#h6jaV#l=Pcx?*jhdXT6tU|V#$bp
z5i3XZj_4DyY{YUAOGPXlu}nnYh@ivG__ZWFap-~=REWz*tPrtc#7f41icGms{89t)
z+2Uc9i2f04MywUFYQ$<0t4FL6xfVx18Id22_tlh0_cSS?*R><pF&Gdr&_GKpt<Hw@
zYDmP;h+QIfjaVmQ-H6R2wuo3SVpzmRVk2Vxh~W_%L~Izj)~c1|Rz+59+PtUh+BS(8
z5wU5+W)Z*WUwE1}>E`&6XUV)(r?!mPDq_2c?IT7;Y#p&p#I_Ood8>q}!V<TNP`V*W
z$_(xhv17ze5j&f-HPli@G?6QxTHKUOR3f`Y>>g2#@FMnz*fU~G#Mp?vB1V}EM@P=4
zsp`qI_T5QC)a5Qllp@Lz6>+=p0wF7FN?q4RNp#|*7U3&wL|x?-5k^E3ve>o~mrwbT
z{^*f%NuFs$Bcf@EiZ^}L)5?^D&>1l<;^v53BKD5hC*rh-(<Anc*e~M9h@&F*k2oM=
ze8iy<2Sywead5;T?Fd^+*wUGn@DGbPJYqt`5#~otv&voB(a=K-h^3dWFB~0lOvH&1
z6C;j|I4<J&h!Y|nu%=L3i(46yv?X4a<fMp`BTk7pRi$IG$to&N<wgIl(&1l$Ga}B6
zxGduGh_fQjj<_J=!iaMs&W$)P;(X&rG3!yxEp8QXPT#^s5f`g8BQBNFT6@>Zk<?pC
zq5_gIuZXxZ;<||IBd&_LI^vp$Yc0;!a9e(~nj;0%WQd}@A>zh}n<6HeAN8HYv(gpS
z2umIm?c|6l5zj?DA8~8MZ4nPeOpBNraeKr)5%)&i5pie4T@iPit!M>QkD|rDsIqfk
z#Ql<9#Dk_+l8i>mDqne)t!SB-ha(<|crs#o#G?_9MLZtygz+YpR7P5f7JJHtCYn@9
zpNe=o;+cqNP3AHVicN7!wFLCY{|gZ>M!cme95EwerfN;ZtcaH)UXFOxBG)X3RQDDA
zAgz0$iv?6#N^y3?>k)56ylECdeNid7mN^u&zKSXr??k*C@nOVA5${F3A2COjz0GsW
zTT27wU&8-5Vs6Czh)>LqHs7jwoo84{w>TFwnoj>b;tSQFm@wwch_7V0V%CoNI^vs%
zo-vEWd>ipy#NQGB$o@zCAPXPyo9ut&ZdCh8#@}KV11j-f<jpFbIC)0bK1BSX@{0J&
z{79tgKWmCr#}HIrE!F)u;y)Srm~OG=Zs>?1rc1nFrbYIlRf6&?&PBV&^oUs~X5rY`
zc}=6qU9*KRKJHADR6<-W8nal;3Nb6jEFRM<X6cw^VwQ+mGNyM-pV-alsuQlr<zG#|
ztk6=Hs5pOC+x}ygjae>c`PkW2eU&n3f>f2aH8U(uR*LBtvuez07I5X5Rbu)ZR>e`w
zQaSA*Y!%SzF>A!E887J7s}mwqaP3pB?HCX<FlM`$?PCVT4361Ik;Dv%85%PzX8o9T
zEZTKr)-y14ai<&7rIrkbo8tyC8^*4Opqi-pLm5LQtvT&YVn)Pl8M9T)rZJnvY#y^k
z>`F>ZcD1Q;X`?hpE;7O+W44ajCT80<w_>%G3;A#9&kiv=#_Sa{DrTpconv-49>moy
zF}ud>7Ne$I9b-+@=sr@ptAO^1+0(qK^i^1L933+zrV>+)85>iKDaDi}N$WT%ISs>A
zrb<*Im7^C^vlx6St!<H#qku%A*rJ#?=Bk*hW0IJ9%&`(kOd8XOIWXp+m}X2Cvro*v
zF?md9%($4nEzU01G$=M1B^f}aJMC>ZhTSh_|Cj^f1?`d2lAv0WKRD))m<cgQ#Eg$Q
zH0H3F!!5RbyB2zwC0Aw@iIhP@&Ld-via9#wm{_+iIJ>ID8v3e7d6Y2`I6mftm~&#z
zjX5!9V$5kVr^lQWb8^fnF{hg5OCYUIg&G$%2a>0rGo;utXT_W?3D``R<fFVul6q7_
zrOD^ToUa&SE{(Y$=0b52bFuN<+E}iv$+OI0tE?}Jxjg2Im@B2jwzw}d*qTFA1#Hcd
zT@!O{%)>E{#9SA1ea!7Kcf{Nfb7Rcpm?<$g#Y~F1Ip!8s^T|$z<sq)@lx0;wO~xum
zx5nINoJ<vy)^isBx*K19B=$RF?uxlT=7E^IWA2H$H|D;!mWpR_uG%Vdr^prCgE0@q
zOtT1|-_RAMs)I7s8cIJJ^H|J_F*9Nwk9i{I>6m9?o{X6u^OS{BJPM+K`Wd?T(SeR<
zW1fq7KIVm(SC({AQu)eHOCM%iY0iv!DP~s8?3kD3E#}pj*Gyw|F1VE!DTBfaE85pJ
z`4jVI%v)Bn%Cb6~t`=+TcDSp^%FDYk?<vuQ7Zcu(nWIumxH#d1m=9wHBn(XWDCT3?
z#)O3v=Els6`7`FPnE5fE#C#v~L(Hc!pUJ|<d=v9|%ono!F<)6`TN4r5eDXga_P(`G
z-x<xUg0#N=81s`k{vPwQsz%JOF~6yLw*4Gqxzp>%>ag`H{2|^9i0b(}=06$y#5w*G
z^RImsZmlSFBy>&amOw(6gqEYeYL>6N1rhF%pd<uZN%TxuB%y!e8jeL17E4$*VY!6G
z6M7{qm9TWe5(!IM@IFQr@KSBol4lJnwK30PTc#a<-vmu*%29rl%JSyEQbNCk6%tmo
zSBc`b)7;mU+o4uT+#IP~T2fjyVYP(S6V^yr%Xn+aP)x3wERdD(+V)BO3`!U*_XIy-
zNW##B?GtuLSSMlKgb@jwCajk*EMdchjVy-s6NW2MW1y8IF|3JG(T&Y<6QiwMh%rt1
zZkDil!d3|*6Sin`zGXto&wVyiy>-Gi3EL)Ym$+GC$)P15#h_G_J3Tul?36GnVRXXI
z3A<QSdnD|du$$rCjmoEDP&Ne=e9wfv5-vH;VLfsjW8O*$<%F>bMax$!A<>F`ttNQw
z*#7rPVS|J);jo0m6QYDTVef=}5|V^^LY9yxq!zG|(6pFa>zgfRq*~&w)ABgZs4JQQ
zPJsI+?3ZwG!XXL!CmfJ)V8THOn?2DX35bXP$wWcqGTw^*P)kcO$U{q>6B3R{I3?lK
zgd-D<N;o0m#Dt@zzzN4D9M{g*+Q$~|*ot57D;#fpD)_#pnG?;!NeL&n%cxZZN<z6f
zE#dTpvlGrqI3wXq3wxI3MIKuEDWD+dswyR%pKyWsX)QV^h6_#oT4kiX%++2{C6sV?
z!aWI>C0w3xW5P`dS0r4Sa81Is30E0ciuvk<dFQ$ON|>!>j_VSxPq?AYt*UKHVw#_y
zlyGyxZ3$BoZb_J&FeTwui>eh?eiW6k7D@zeS4On$KjBV`O)|gBJU?Np8~U`Kt^iHA
zFX2&D*o6D->w^goB|KnwaLFx*OiOq;;gNPiTBkU8jC0rX%Q}U}6P`$TI^mgwCljVy
zT2HA!hc3vMytS;*vkA|c<$2zsQW>@Cg}zE>W+co^=%_=Tml9r1_#)xUgjW(?mEBI5
zlki%?tc14`-cFdE@Or`<32(NonTn(TiH@=3iybWmdne&tOY1$eNcyy-)gz@S!G4hN
zq2!-1-~4<eD&ueb&)U;5ubgTjM&Of#PZK^%_}qNHzUzX*QbLk|GP3)Lg|8C6PWU<D
zmxON;zBQjeCVXe$`-C6bdZh@(z@t`1!atb@x%`^&Tf*N7|0MjL@JGU*34h6~^;n<-
zDp`3`5S4EW{G0G!qN7$QJ8~Dd(g7_q33sVGd%jtn&Fgfn)2&YTIz8&FQm22Nh3YI^
zXX!f2)ahAgkvdD%SyKCdwC$(P;&pmiaP=J2(b8rBbvAxG!1e3YWcRjDed;V#cUvw$
zutrvC>5>1wb(XEOLY)=O+j4c5H=uymSzk+j<a4Du{pze-ck@@R7}R9zlf123XSF)(
z)>*I4>UGwrGqBE}I&0QhtIpbW2I%WF*Jo2FN@F5*a@5(-&KY$i2G<!<XK0;u>TbNC
zzLw?>1(b^xhw?M5&iZvW5?6JG*V&-XhQ^_KL1IAT6ip+jTcW<iCUr*Gr%jD2MJ3eg
zcggb>b+)Wit>e|%s?Nwdqw0*Vvvr+q>g-%+mpa?l*{;rx^#v{X_6Bw^Dz(|5u%Kjj
zs=F3VrM7FG-R$e0Mt3*5hnTc7ZTXS6z3T24!vcE7n4gl-u||tV6{KuHekyGj;aZ($
zove;85h<QJQJu6UfjWtSx~15XnBox-Z5Wf{L9dD@uhUs)oW(51z1v^qbA}X8o&P%f
z*EvC=(6#?{4y?PK@W<CVsP6vFEyoFU4z6=Zo$+-Jt#eqN!^J>1w;5ae<h6BBcXUg^
z<WpAw9Z~1VI!Dzxy3R3mj#aek<!YW`tlP(XT-|Mln{IazXvejJsAK>2s~rL-8UquJ
zo>b>#19I0^z*Fm-R_F9OXVm$z&QEpDtaDbKXX-p#=WMBWo$Kq|Q0Lq_=b2<KuXBE#
z>$Ib?&P4_;kPL0r=Hfb+)VZwAjDy^*q}mX8Y26*d)tUOH@$=$|t|NU#ohvOW;j3is
z)C$zOrp~pB&D^DCVqTkjHC`5<H`ckW&eXa)Yk5<hNzxFjYd6=q#r#h;I>qR%M&(nH
z-(KgAx?9_Nq|Tjn?y7TloqJT3bf<ymYJ`TadhV6X)#0zZJ;3)_@cRuvP<Nv?<@6!T
z=CnEw3v_j|6%8l2Gr5ndf~du*^LU*n>O5(|pSB368&>eA>h4^CcotS2f3D8+bzZOY
zhGpc1I<Fd#hZiNfIy3F{C8MqF?l0GQ#a^}7NZ$0kX0Nl1&Niyu9dFiotIpgy^Xj}^
z=bbtq*7-<Et|363_v_55^PXi*r&*N?71Qhqg(*)IKBzNYmow<#lJwlp$bT%;WPaw?
z`J~S0b-qv@wYp@P`mFBGp=cUJ)<DdBS?4R0!w*Kq$=3$HF~+{NBL2?k_eQl%w4dEd
zp@~YB{?B#(HTPfY{95NX!*c&qHS5U2?{)q#7h!EM{;U1<Zv+1rJqdTs!hePfDIF>3
zQ4^5THKm(j-N~t^drFVg-Os5_p1KcHend6T&@*NIl;J6hq%4}USjyt5+w?m$rB})l
zDg9D(&S1&Z>E24I+d8f)+&gs@xlhVc29`D|mt|7=w(+tCmNUA1$_j1w6&3BZ9rD~Q
zEIh1HK*}m9{Zm#=8JIFCWwn&mQ`Ssb%MyLNqp(IBNL|Io+V(mib(T;r@*qd4{os@q
z*6WbeHG=x8ysVS5ZpwO=uN&?w3^TB-{ur`sVFU9fpPQv@Xn3QROWS>ulo5tEZM&#?
zZf<ysw#$|VwlX?0W$U)PyZI+&`;_H#R>;{QWyh3dn=IF4r<9#jj%aXXgI!W~O}RVe
z9_1@#_muNfE=buUWzUpjQn&MYuar^pZv{F!WlTy{<&rWsrDz^1DW#Nh>i+2_{~936
zipoyvK!N@^Bhy+-@l&_O_u!O3qD$E)W#5!2B~EFkWGP8XJta+Pq@4amq03zNlX~5a
zrXxQ(JEJ=oH5Z+ybf%0;**j%h{dz{`l)~9BxJ31%ZEY|X*e_-Olmk-^Qpxr!9FVfz
z#_pJs?9aj~z7O42bJ+y_5%Q3f@hOL<9F}r;%7hf%MW(Np<JKI-ykgV7Wu0+2((*37
zJ<7n*iXW%O$EF-7JjPW7twkQ6a)PoZ<1c+nIVt7jlrvM#N;xIvROKt>jFi(<+||Mb
zHx{&|R?WxW`W<{v_y2;atGTP>&Q3We<=m9>q&6LeR1+^+svhKyEa|s~>HxIn#xG2{
zGUY0h|3yYGPPxRur74#gxIE>Gly@H}6l_)HKU>JSI^`N;a!SgLi#yJ*O}S3W|KESt
zr`(XbK7*3zJG<jXQ+4U{O(~Pw_~w*b3{P&mXpKoad~3>WDN|E!Pq`!I&Xl_p=SJ=T
zno3X|CrwvMp2~>ML*1KlpDacL8g2*p{bDk8XZ)4c11S%RdE;<e$_ptkraYYTNXnxr
zkEJ}7@^s4MDNjh>Ql?7}-*-1^>ZgG^>LMyNnEXLu*&TT%<=K?yQl7WE>5nN~eXIMk
zp01UXU{$^ouIZSOGBagX%IuVvQeIAZHRUy_<>Q4{(glBwRR2L4R1)fg>F7bXwF<AN
zypi&jqE(P?g*R29yn>F#oM<;ey`$iEd7Um2lm*DU7v4*GUsiEM;fvYscELF^0x2J+
zd?aZr?EH>zQ|2nUl+RPXNSUAVNy?`wpGgi%ox;?f?p&K{fhOc7B^{{wGUcn3uT#EB
z(d@BY78>vFS(TC~QT>VjxITsNQoc|5A?3$ZcXm6Y^i#^uDgTO}zJ*_`N~%`=neuDO
zZ)Q4vPx-@uG)<bkm|djvm%03%@{g>vt#Rnnn>8nv|Ll{RY^@RKwM)Y((mN8DCD*k<
zw+7uC^k}e9gT)*4YOrvFo(&dhuxP`{SzQIGy|S=agVl$*gGEvmWkI)(F417g2E7~f
zY4GB+9Xd@QqpBm}Is+&_I*_tdgUfYif{cHIz73Xbuv~*?gRH^w4OVEdWrM96uK8H8
z!CDR0Hm+7`(9giiMprQ^=KD8TwZUp)qrn;t)@-{=6#A;3xu|;eifurH^(<Q9fd&RO
z7~FOlVqmDzb&RgtSkO8QYp{NU;pVuhQN^%9gALnwBPD8hlLjLUs99+>J)7C<=53!_
z7-)4)MhZ9B-CVXdx=n*^4Q$t7`vyB0R$99>*wOG#Mt5$zw;Hcq+kDFB9t}zj$_@53
zKYO)(j%qO4@R+vCSOZ0)t#~Si!v@v1AJ0I|sNWzk(DEE9(Qbvf?K5dmZ{xH<qmAV!
zH+*1&gBo-i9@qZ5w}E|(?%QBL1N*nX9$=s)#)AzXZuAhN;~N}m;4q`gyO#eZ{10~&
zj%sjpgFhSm)!>*0$2OSVa6^XU8XVtXhWR|9!HEr?FrAs$;M2*43maV2;3TUNCpS2y
z!Kn>SYjAdha~ho9;EV=mHaM$+ETsCVY6b4@>C{_mOgcj<lX7l@^BSDr;DQEs&U1?Q
z$L;RKjVze14^>Uk81`a||K5gcsV^~3E^Tm`>P3SqWMDNAXmDkNs~X&)NE%#ij<+<J
z+~Ar9*EYDW!SxMpY;aS98|-WAmN|8U6}*KfHMqI`N$z^4G`O|lZtc6h!EFtu8rG|r
z)YleOaN)Zwpzz)1N1zpL%bVD~&zQfz!2<>!H2RRyX+|G5`bf)N{r?7!86KsBzzsxu
zKh*K0Nq)M~r;Mt$K5gKc2G1IJ&Zts<-oOj8D#n{SOLCmq;H3sHt3b7qGRpNXUTH8+
zR{%BKjVP}f6_{mU%3#+qe!amP4c;`dztuo}>|dnJ4c=++ZiDw4eBR)T2JbhR(_n6c
zc?~{j@L_|G8hk7*dZ6RnA#NwC4kPPd)mrP3SyNj%zriO`p$4BBpUdM8S?k!iN_@(f
zuFs%9^nKajs|MdS_`bo{4ZdmcZNuFkF11lpCH;}MOSZr2<Zpu?8~oJZ=LWh}TUWAt
z{<1sAC;6+ZrVft^>(>UqHTYfXF~XhL(#^Dgn1sKxwniTQmI`$%EZXEB<<3Tk|2Fuq
z;YQhd3QY$(nqWY<OOvi`+|5AuCOz6N3pH7|je8ncq>1`+3b<I)^#m4g(yPgKa|;(*
z?|O+Q`$?CY^ls9p$x=<0Zn8|1zIq+(YK@Njsa|O5ywz<}A7J?=D>S*J$)!zJY_d`l
zuSu;*za}d;`Eqz+_a>_}U9H))=?YHGR{tieHd(Fdny}SHn+$HUMw2z0+Aho5O$Ia>
z*ko57{2x|GHgSb@`{M2@U<p(0@{lG&o2=7hUFFDgU4^Z6o(?yqqi*CUix<{wx+Zv7
zll3Jis|CZGY+!gpqZ=9B*ytuk<!yuk-P*cYlg*oK(PT^GP*X-*8UH&pT?03=$<|G_
zX|k>4)@1vpyY^f%Q3l_h<(gL+nc4Tc0n3gW0*J#VyEJ)U*Z!zX=Quvyy~i>s>V`Gl
zv_?Lsut$?Uo9xwORFkr<ma>FKH=VuO?E|MaW6Wi&(W22(b3sd2X;PKY7Aa_;q()P{
zM88R3eoko;Hr;H--c9yty2=$9jhiF}<We_~Hfb1Ww%s!Wd6P~9<J#`JZE{~JNt5F(
ziTo9}TDQN+NA>i8CI>b-sL8=i4rwx>$q`M)H#xM)VNDK~REvc-CKXf}^~Y*WIlej2
z-EttkI<m=8O^$7HT$7`v(uWt0Y4Z9g_xFV9I-RN=?Aod^$W=Ez(!CQbbxG#LCKC;x
z)OI<!x!}(isy?SSIj!mHk)G2HoYCaWw#!)t&Tev!fpgpL=QTOMjW1|&q2Y_#E*Be6
z@AR@Jmp2)iv3153O|F!ClXsh3)#U0X&zKTkV=8oGlbZ}&tKu-=MgdK3Fno-x>-tV(
zCs~lGO>S;-OOwe>rZl;=$!$$!yEHzUInQ;;=3ei{DFQk_etVNUn%vpsE>*53Pc*r^
z$vsW(ZE~L~NI&-<_Qwt==pP5_D&OB^+zhuH?E%w@2ip>R$iOtC4>x(lz@tVVGumoy
zo@_F`$y3sVCZ7#-ca3U7Rcb8Lr&*D|rZ}B{w#jo%o^SF(({(a+fz^vmWZcwse67ih
zCNrD7)a2zRuQYj8`R!TI@mLkNF6UQvREcC~G@O~$WVRGQm8;2HQgxY^P24>jZ%UoC
zRZp$0{hM#Hwu^7%UM0Qvn*7n^PvuePf1Au{@`0JS51V}6<clUBsTOE%v&q~h^P0?8
zE@XD>QZm&Y>Cz`=pgz?nYgjcvlWmt)f7x_@lKr*GS4}s#*7LQ2Z;XCx^gE;9H~GQ9
zk4EM5Cj&nl{Y7@qf=iiyvkLXQEQ#%K_^Zj^GJqLtW&G3RUll!tei{GCL}bYSN*Ns)
zWc12dBBM)2*NlZTdS-OX=$_FdW1$R{g+!{&_PVZIlGH@2_QA?*E|Rfm#$p+ZXRZa2
zy^^%05`PSJ<tUNv)2*;%M(>Qi8Ovt$$=uZ6QW;BUgde!3N}4lcpgV)SOy=&Mov0(U
z8Ovv^kg=iyT9c|>k<vFYAh})rftycIxo9qB<;+Qbm5lxwt7fd0v3kZDnVW+WC(>jU
zq7IeMf7D&zpt05383QslResg&&lr@kQO3p@gUw}wj13J8$rx&29i!_SUC-z+qw5<T
zZd6gVZtzxftVge#n7h~;VL(dW>Yr?uv3bT8=GY3drQxlN9(#lfyG@2B7RF?Z&Dd7F
z>6W~V?K5`B*fC?z%ry#{YLE<fGD+^7u}j9T8M|fdp0S65;O<3Vufw$$DhQR49`!T#
z%22>jnVW?hZB&&@So&GaIA7^zlrqX0m5ge}ff)y7cp0^fy(Q-iKO<17Wkeae{6w5c
zEA-c3^*~~k-QdFKx3~gLO#bzZ)Ih_iN~CEZGnyOiG&;`cyrJxyv0uji83$zi)Zblg
zq3NTg?cxjdi*)s(PV^s~aY)9A851+cXB?VwRL0R6hh-d|F(Km!Y4T03qop3jmk+u^
zSJQB0hW>q{>io$wg<~>~%{VUO_>7S@!KFDa8MG5JWL5O18(nCi$t5ZCNf{?+oRM*6
z#wi)6W}KFBdgg8f(rp{_<`<U!pfLT-j$Z4#uAQWPR>s*G=VY9#N_4mrzV82*(w>*O
zNrvfz3zJ7Vvv!MC0WvPicqQZ2jEgfa$#_gvPg@8ifBmH;bG@3&l#uLy#+4b@Wn7<e
zRmRmB*JNC)uuHmWWOwq>Ham^&<LcdgeF`^Z+?a7w#w2C=o`R}apLN_;)&9%6ak{px
zN^@j?ZpoOOxtSt8Q!;MNxGiI9#_bsooBJIZcV;|b_^yn*Gww5dPdn7T;#?Q+TMSyq
zxxelHX3xTd;@@7UW$3k)iohf0_^46s)ROz-s)ITOobhDF^o*y(bH<AqPiH)n@m$99
zDy)y)B;>Qwin-2=&(e9=XI#H%_)8t?Z_mh>nemb&EcG7ZmhJTEiGsV@NRtxk4>Uh6
zyp}O5<Ijx0GG=GIE(S8@sw#=SjQ29$&v+~2?TmLa-jxBd<so&Y)Cp9{DnfxR-t3qo
zMa}py<D<;|xmyC)GLsZWQ{0-CRLM$R=Vi>#_#)%Wj89ZeGCs@rJabl8wrk>Omxa<r
zu45_Nc>IjQR~cVt{GRbg#y1(?S_S_uWBAQ(W=|8IvI*ZyrLD^UV20vHqdyt_IpY@t
zzZ(6`sDiw6q#KZSn^f3#D>tk5w~W6`dd?y_|H}AFKXba}nvkU<hnz0CYcZux&U!!Y
zu6_7vSYhFpI;7Rzb9&?~l(TT|Zuyo#q}Z2sbJkTNnl-qfdma|eSuCe_PM@5`b9&`0
zk+Wp(=HDc}e%%YxJvaX;yCfm3St%@)vvkg~Im_j)YAln}H+MQO1NDYhpzQJ`MXO=5
zl2G1P%vmYt$#F~{N57nvbMDExH)oZc{+b)l*)eC;oYlnV_`;Ku3#;d>k-JXy2r;7_
z9XUgD)=?gH1!&INIRgx<hdD53Q10$Vp0!Rv-NM0|Y(KCt#J*~YdEMOga`kMGv!3B$
zM%Onwy!}-@jSUTN)OOi8XOsV7>j`XX{A^})bE8}2Y-vDzZk03A@YY7RF}iL0>vjgV
z&(S|b<awu@opaP%J0oWoWA!kjyUJVcdhfeSL>+}v&K~lq{XaQ-<&4T1oiiq9tV*g{
zSh9~Z-SVbMQT2ah!;3lB*wS7(r;=06@p2BxIWVV|<L8Xa**ho533H;HSdrUemW-i>
z2}$n$Au{dx4q5E!D$1NRcWq6>s6aC(YvVkp)37e-)u(-O_RZNZXa5|jmb&gL_e(~*
zBXv4WBZI6S!a+F)=NytVUUJ*mjYrf#{5r&Kc0JTIO&c0j2hY$cV8vW<hH--U*Zn^^
zN46z-RL;?ck7>Icn{!;w@i`}$%jrf>G&<4fNjWFyoRV{D&S~bNbz5y%)s8{67pllg
zNQENDGc8AF<(zGzI45^2q*HRv%{edU{G1DN_w(hOb1uxeDCY{(kc*98($<#NqVT1v
zm1+WVE;n~=-Io$xnR8Xn)#h?T&W$QB!`F%$P}6_C0eNo4BO@SulQ~XOrLb4kuUm2^
z=Wgm=clfB@iT_)3Zp)b}$DBKI?##K%s-)(rq%Eq6YENad?lwmaw>Q+ZPtN^0_jPiA
zClBO2nDdu1XdWKQc|sM|@U)zV4Ls8Nr1_tm$J+RD12PoTb9eFVten|7Pv!1t$<sN{
z$mZlcmoqcxrJUz;UdVYdXNL5Aikl&q1=h-uehx14BE{47HZSMAlJjcLYcfZJ-K5-U
z!wcKabUj94Nk9X=*K^*;`8wyDoHujc%6UI$j^fODC+FRq_f&TJp-ivBLDv1KPcHNx
z?EY4uQT7KpALe|N^Ren|)!9Qauhgg8uf6BC^EEGLzTr=de%f~bEa!8>Ul{$;=vVEp
zit5{(?{a?5`6cK3oF8(2%=syIofE0Ip1lXV<Ya#DebTx7n!8z}-*SGpNHlPs{jw`l
zIsTFJXYM+~dX**rN5)^O*va{w{3qkz$r+u_NOp8WC&f-mopkA>YbTp_vRNnHI_cg?
z-%gh8q(>(U$(z;%I$5}ro}KiuSGg==pjRi0wp|u8uz07NU6h9<+U`pl=-uhY(Q?<b
zlwt88yv+Y`U#^pNI$5`q<t@kxovdhJC8KM0(yx=1J6XkES2L;@`gb~Wy=v$G|BKD)
z_Gt~HveIiASi6$}2Gma&*vTLZHMo-@oeb@CzyDBFt-F;3^tzsT7T%zfVTRXlyA1E-
z5L-#q*A2~aBcmI4vPmZ+3@@u+8(0SAXY)?B?PR-7wrIz&WhYx19%*#zPS-2j#;CT$
z2yfrX4xNm#uWHM7G_ae|os90>$u0(VHQE|kD6QS?bq}L^8r{q2s7^*3xZ{8Yr7+fB
zPttyXPAZ*@>tydvs-1Y9|BtM<fWD&o-v96WrIdjP0yZiJDt3UFyun5VJHW!acjn$Z
zac6D|f{h)ZVt0exU8vX{s2>ZvyZAq|hvCa_{nwiHtY`MwXP<p?&YU?j!!Z^lYh&{q
zVSJq7!G?zz9%^`);o*kk4R>oM_K!3!a+Hyy4O?$^NRl_M55K!c)G8+CDH>O3DNi|%
zXQ#el%`nIls@U_%EpwEoYC`ci&)@z3Z;L`bPa{t=KYx{`Wu*Tm$=9gbd5+C9LCxE~
zf-Z@OQasK~O){LE=lDD)<T=q!Pc=Nr@Z>zF<dcc|A1~x)TWdMY>Q~M9H0w~O8=jHp
zOe1F*DtA&iH_v%_u2b94M}hLm1wyG`nNMaWQw^sXUXbU)JQwAeZl{+SUTk<to=fw|
z&aU*()#q}PUtuVrOkI`d>O5y%m%Ap<wRs*JnhX@0XlXK_5$1YJ{RTt1aifu&3~x5P
z#qicVGmJ=Qrjgt7+@4A9$aAN0-C0QCo;>&FxvjwM1@5!_zLDq6Joo2$K%{5#xLnW2
zAI$Smo`>^1qK=m5={(QKy*!WSc_Pn~`Q+-a35+f@a#%y$T5;|vb!U6@tOfR2d7jPl
zQl6LdJeTMBJhSt>pi=6Ytcq);=;5BZzpqJFCtlQ5X--ay3BDGH^1PbowLGt@Nt4W7
zWnWthWPI*s9r}ftE*x*=llkY{Y9wm>cjSgFk$X4KdwC8kaCm|D^UTS!k|v)8KFIT7
zo?r9)mggfI;y%sunL4bs4Yi_=jeL?v4O^$5=b4-5XA^#5n2w5H=J_hm*H%_)7(e9s
zCeOE~@SO?2H?E&G>(?7n_|Z;($}C8(AF2Fer{8MXNBOlzI4{p1X+-nwFEjPGN&d<6
zZ=V0M6y=5vS<V&cDA<B_fkllhVyJ&H$p0<{x)$hGpnHL3P2QuxVg-5@SjtWpFR(-*
zX~0tc@tUOhEvZtfB{km5<h={@DX_Hh>LSUtX_*4r6d}!i1^TMN*gBh@o5(_cv-w^#
zx1144mM^eEffemktLPf0Bpgs+l>*xp7+zr20;?6++!O{H4l1y=k<|;VVPwq$YZdfm
z;3TdNEy%26@(m0nS+~I8jIU>8eZ#b}HY~7_oo;NniJ|=8w7_P@x6oBmOK{4gou(JK
zEeZ^?(=83RDzJ5dZ3=8#NOt8ZQLPclh(7Ni>?|;%z#augoASs4+Z&OZtnFZYN5h>A
zcP_9?fnA061ZTGb8qY@+k{|R)vb*V||6dqWV9x?$3yd@2UWWS{?rpe_;l71rGO%AE
zxoYb;z=Q{y@F3&zBrT1DRlL?V4l((mhUt!)@db`3aB+c43LIJBr~;D;OfGP=>39Wv
zBgYu#3(4(&p@3tju3^!zWLP##YdkP6AL>Rz!%Bh3NNiYD6&I2@fG*!Uq}(W=3u3cC
z%M{v%#}zo%h!iFim}oq08)=_CzQ73u&Mk1B1)XSkYJroCoNTDLrxfP*@hJr!dnk9B
z6`jiP^a5uTIJ3Z6R(ffnoo)P_g(T-^cBU7YYJ8gE1*UVM;YEhW3`_c{QXHnizrbbc
zO&z)P@_o6rrRy!?6$P%$Y+hC1YU9@!UTb)rp-jo88w%W5;3n&pX=}XMxSHZE1#VSy
zDlpR|uJt(SDCiDrZ}%6HbyqdBI}6-plDo5Zcu#?QGk%|uU%TWUP-&2Ru)srV{920F
z<2mjBEbvHyM+^FAP;TUN$;W23w){kaCkxDV_`>0-0#B<4Ic(|hOo3S%g&ev&Nh^J}
zz&GaGa|NC+FuTAD8l?-&Q3>cuSK!S8Zxwi{z{>?*De!86*9yF@wxI`q_K9Y_(fLLp
zS=QEljT)FPH>duUd%M6p1>P<2ULje2d}?TJW}jr~SS?D+Bf7+BvHF7o9~Stmz~==%
zD)7GoAFGX72KA}c^tquPFX~ytr-kG*#aiyu!sFZmUljPNz}FfZJ91wZl9g?(Iv#7q
zDCN8QB#$Fy|JwrJDdYAM-1h~3DDb1@^bfUdZK^5ovo(od41X)|tC4x@B`xH4<Na?;
z_@4#-D)4uKe>A*1;P7vO{|d}2=&LK-yI1nGdWh|;(<DT<Ia*vzmUkQ$b?D;I)uB(<
z+~`}9<s)5r^+^5Nr;}BEy-(M}VKIlb9Q1v##T}M#7@$}h_MK#fS;q<vJsp;E=w*_=
z4*eXKcIYjeCRxUC-s8zqwvLqaH{o&)%Nj}L%V&J?Cvq!hd?kmKjrV>cv9OAzzN+DB
zh65c|H?oGqnnvW_j9EDqpvWMHwH-8DSjS2JNvD>q3(&d_gB{j$Sl?j-hfN(ebJ);f
zBZrM0Hj(oO<~kop7Q3{{t*^BYzB^gk)!pCb4nrJ<I&7ib*|&D}^h!@CwAV}bT$;mZ
z-nEs()((2&bFafT4%<4oPV#_eJBQ(lt7o+iosu{lZKorp>@Z4A-C+l7@H?A)N8>vg
zs@7D?yBObfVTlHRhl3psaoEFQw8I#OJsrlGjwV-o89BgVZzKB{%GACN`#J2d+BD0O
zD2W3t^dKjhsY)`|PPMy6T+R4Uhr=9>$SfSLN>MYjj{`^{-RFFy!%=B0v!EZQXtSBJ
ztRrukDi}H{cH5v;bSOEL9XyA#9L{#|9Ri0_98Prz9V!k@hn7R+5IfWy>JC*WxzE+p
zOzntJpHhYDfzg-$%QaMt`uDDF)NDH(>oD2jc!voN6CI9on50wtM4mPPsMBc=gNU|R
zU$#i@1cwtHPI5TeLGPI^{aNx;?|ZfWwng%;hrX?+em%wEG>0=B&U8q3?wu~T*Gszg
zvRWb0r+9iN4@#tYj>EYQw>jMIaGt~Y4p%x{<uKJ@n#08ompEMDaG}FR4%4knG-1|w
z^701BGcP?L(}=X`r@2cVE_1lt;R=Tz|4J6eq@&-mtAdg*58R!sMPKc3jl+!&H#uDE
zaGk^T4mT(xvyxBl{4peXQ(*Fj$?uFWw!IBEJKW-MtHTVn&wUf0^__FAuFQ1M(v!Ns
zCd^u<+fL)Z!<`OyIo$1_Z7muWbVH#QuEwA*EvwS+agqs%H1BhgdENaE4>&yN@Q}*T
z;dKoK8u=Zbb9mn25r;>e<c9Y#hbJ}QJ3Q|2gp<70qSqDEHx{4P;O{WY;aSs6h0lJ`
zkt*nZN6}|Hyx{Pvb<!6dUUGQZ;T4B@-*%|bG_t9bRB>9<7OEqs%hyA-+HAe@ZHG4<
z-ct0%?6Y!e=Yw<aIK1odp2Pb}*WqJ_Icj4LA3A(wwWF^_sI{nM)Te%3H;JeL;S+~X
z9X@mTT(Q<q>RnH2q$94y%qb7&v~>2R!&hp7E)(5kuJX0RDlV(Kd}C(6b@<LnR(rlz
zS5l*L_(2uz@RP&O4u3fO>F|rguMWRC{O+Ke7bUIRnJ#mZH7K=V4de1(lD{;{IsBt`
z{=7W|v|mnWYqYL1^Bld*Pd}IbE*&nobaUzMvWUx~E?r!@x@gn2w#Vq5cMW>-M?;ww
z7<EDH;j)-ZFPEiV7I#^~Wl5KwE?OMZ(5D%l*43AC8928?Jxib0(5i*@g7$Xl<FbrP
zUzcfnCD!yFmTG66dlTQjo|`<+TGnMbmz7*rc6scXq+u`bvV!IxdIaDmPZQL@(s`Qd
zPPx`C-T)W%cdcZurW9SqyUB36y2~0ao49Q1vZnm(lT%OG*kvu3K`v{%tm7uj0vouj
z>oVA7J(u-e)a<pjK#8t)L(+d+pC|vo(&zf6xuMHO7DfEQJ~{1JQz|+(bCZ8xj&#}F
zWr&h?*}`QTmu+2!xoqjOmCM#{(yngqoztG)@dqT&0aayJe4PC1Vmp`NE}bqTERRZ5
zSB=94pe@Im5@>RwDc|-kJGkuVvXjd`F8jLr$}YRO?BO!nWmlI`F1xwx?k3*_9Tey8
z>7C=uWX#b60!?+)_QtsE>9Uv0-Y&O{$}KuLsZ$lEHlgh|EZLu|lHAW_f0uDC2fG~L
za-hpWE@NFZifXvfXrRXga$Z|&^bAqeafr*IE{C}s?xN16J8n(z)X4Rx3_Wqv<xl_e
zIKt&fm!n*cc9W+Po}0Wcqme-^<QSK{OToo)aa~F-WtUZY<%(|d9}|_sWc{noJ{qqp
zte!@xB7B#?C3LB{)Lj}bkrkRQ-&GmW`j1-3^|^P~re>$=0?K>SrRCCABT*3@m^|;0
zCn}=5h9;R(`%$GI=Q7FVS(oQrCadDK(NU$Ltq3kBxXCYKPjr)~R8w6}Qc-Ie+2s_M
zQ(dOGoaJ)1%V{pByPV;2rb=&4QWQIEoFt^u)3B^DcJ>z?=eV5fa-PfiF1mTYU2hBC
zox5&G(in6-)wM&<#iqGj;BukMMJ_k1vRtOST<mhW1`3x;TrPFFOuf}s>~#x}-dV^c
zkt<EEpsS2Xa<!3b46k*$&gFVlsAb_Mbqc#2-<T;cuz9P?440WMx2b*y=VsgbwuVqu
zx_YYyF*W8pT<&zaOI==F?1he}t-$Yb(eujhHOX<g&*grX2V5RiM|OG8<sp}cT^>=a
zcJdO0ENksWms+($wFhPYahE4to^*LijmmbL=t`uKL4~On)%TX<F~l>LkXq3!b)36%
zx{r9?Wwy&JZZf&r`m+vo$ro${5P8w%rHsGqCSNa+P{*q-uer&Gxn6g9!{tqvw_M(L
znWI*!KJN0a%X==GqTj1Q#%8~IFnVq8<T|JU{{xo~UA}VpTAgK)WIX)H<$u;}YFf(E
z`j6V7n><_j)bKOI&kg4qeqs2fq166axkDXLc9hw>`sBWI`Cips<;p5QxcsPbDdw7(
zpIm-cO9;3k;1~Jta^k#smj(Rh^1C{0nS;vwp{C_hEm14+m&@NO&mvD1`N!p7mkC8C
z7Wq)6?Xp>s&5O)a4=U18gd%Gcd05*%i!55CSCOTQbScucn7oR(RFQ5)x*P9Vq(_m(
zj4xSaqrn}E7kTB@+!94@vki6HQ+K|-7Poh2?vT#hbUj)cnUj&;Mfwz3zQ_timMPNL
zEG$<<`u&OwEGIhsi!58@XbtjqNTTBz4gN(|Dza*khwOCaA_GiqHM1=JRqS*{T?J&S
z$m&J31IE*Jp)<FMemkf~z(v+7GRP9$sK{k{1)#_}Mb<4cxXAiNHn1Q$d|<U>J+r2W
z8x|>Q`K4QK#qP<M0S0OFXOT@*To>n-(c+IXq9thEm|vV5Qe<e6?TQR9vPF?$X06AF
z+?GbRHQdT@YZb!0dD|43t<T+C27lJS1-1TDWJHm$NTtZgBHI@^w8&vac2H^CE{mPb
znH{a1cQVvix=WE=i;OC=Takl{98%=xe!1O?>|12xp}9SZ$>d7?YqWBz7r_koG~BDm
z-pYvn|7a+p3+sNSuPFN)Il%Bh!-I;9H8RdnI`8z&O$d@g*2pleGk18A@kL6O$0Ldy
zSwt`M=8GJq7Nsh%)6LfEU|h#B#&6MmiWYy0ICkn<#G)!fLcQ*4g>%uodF3Kr5x<B^
zEKobN8kc1?jHpO#RUlq1QZoz37O59`S1Uh7nkEs~A)S_;whdLeD*OqZNwpqll1mLI
z6`5S*_#!9R>4k<T7CFbrNtSn+I@wN7F+8=%6qBE3c)H;khG!b8tj;QOw()endTx>P
zikxrJrx{9Tsu6XB3yiEXBIyx2F0#|<h8G)NV)*rl++{^BH-1Ht8;aa${K_I%6}h^|
zHFhcs*BQCiaLLZx^+wb<Q~Ng+nNeh>32!#MrO2(;NA4b(Q%||A$nEN<MIJ12N0B>=
z+*9OUQ@E?h-A3l<`!FMOvgw)6_sN;g-2G-ved?ypB&~-u!kFaoB99b#)c9kD!=jFy
z)$9VVo-nz_5Jh}iJ-WmiC7vlVtH`rOo>OR%AB#M%epF;mkq=D&1;f`2Uo7%ck(V_(
z*{L$}su9_oZf0LE@<x$2P56%5Op&*WysaFWC!?o#q~-Hok@rnUr)xwV@^J9Hc^{f&
zZjmpFe59JS(~paMYUC5c_lM^+*nU>zb34^A_{X~QZGKtgn<C#9`KriiR$^agQNA;x
zv{X~V?~9Z>bK*a#YikfL(W8`%$-fl&qsX78{Hx(_hQAxmh&ui%^0$V;5*?=hPmyUF
z`HTE(3bJtC$lN^Ro}3(!qr@Vn+0}5-5?zc)^Wk~9Vdji@w-T*tl8ePkEMB62iDgSH
zQDVswOPA<fqNl~`mBn4k$WqqW(j4_MNngWd43n0ut3U}=jhtD|ge#O-(a7?KD$JEi
ztZaNW!vQ5$F(PMD%d5&ID@;iST9C?o%@S)FFP9ipV(k)}me{PsI<l`3zLZ=>*DWO%
zox!H2tJr!a)-Um+TE6ZPN@y(7NV`!fxxnqFOF)TD?6}{qbeoqLQesqz-AWA2{Mo9+
z7RHAeZkci`!>vnfQ)1f^+m+a%#Eup;yhLY-5hYYmDvBGe1&%DSy}74M>Cz+lPNuwb
ziCs#hHKNY7Yia(dsKz!%gKCLAN{lOUaEZ~Tzjuj!N{lJ7r=9LqBJGdqb$Q<s`<eWp
z68jrDpu~ZyQ1dpeYo#K~V=Yu=tL}41i9_u)FU$HuV~Hb69981*65~z2-QW&Y#}Ue=
zF6$cqv$)5U2rYNA^KECYP{JwUmMEG+$?&V0xh+lSWt&2HCiD%1QZiu(t-fTTQX(>W
zT;f+fF|^vRmuRRY%k(PKRC6uyZ;Ag(v`ZXY;_(tsl$cOrVu>qCTv_6{5|c`tT4IXo
zx@WSUFuBC>B~DP`mpG}!$t5oCnbV=0K^;;!#WcmWoTAgyN}OKetP*FJk_+w`hG!aX
zJ2O#`<~b$KEpb7K3r&8W;nWi68+l}IhvqiDbR|_8+9$9sGWjJXE>&7`K;=9-w@3G!
z-U8Mko0pZi+;p^BqM-e|CMfw;C2lP-qr}xEt|@VCiR((-s7f#KPv4vlZA!o1BHmD9
zuGZXi<EGCRm6AWxiQHmA<Fz?+ZpTcu`4V@PxZ8xcm$;+EoyPC!$f>LpB|Yvbac_x-
zEJ#M~Gx9)*`;9Ef-Ggf9_5t>XQ+bI;jf@+Y``Pb!OcwM)s$Tml@l=V=N_<}8X$|`&
zUM%raiCLyB`_GklHsiXaK3`(CoxWhXP)!v}NnTzq@k)ueO1y2Mua<bN#OuaY2s+-#
z%0$X<s=4ZuARFf1De<m!Oil9lN_<#CRr7v{IVIA(NdAGUQjbTi%s(>Em!H+~vBmnN
z#HXrj%juYYi6?VQd|^S~mH0BV{B?=1GOkMeCga~~WY{)|^}X7*1|qeqU30&vg`2`p
zC4M%Nda_<F_gjfSO8jZU-&N+h+>zS+U*d1&&V&c8lbh@$4Oqq7WvAr%;5_R!9p&Uw
zk}IPb`vxVp)>O94B4rje`C^7$%E_SA)p)lu-Hr4pCu=fe^#pTdZuE%U;wD_e>?~=#
zr=g6mHzK!mncihKDYI#rK4q3Evszgbe)?uQE0*b3rhl1bO|rb<a)zt!m|SaCFrJP@
zI$g<5S1vQa$SQ`CuUaP6U)?0@l+l<e`5I-`%yiZ&GbrP08<E*{%goeeU269Eul0<q
zUuFX%8)ov2jBH#^YF3(?mD$`Z>{n(;nW1I&C^Ndu7McCs$_y*BWtpuq$?!5;m)XWn
zw=J_>CVyp0l1)v4bcyLKCl{I#Wkwni-`>a$Wp*^OQzqZJ%r3@vEi=l9ZdG(BimdHk
zPTsB7*gK}oo@I_6+_8@(w^uot9*@z>Uu86s>+a*g!5#aS(HuY*8da;}?r)k07>*l}
z8(U^vnR%*okAuq`QYI=BmpRlFiiU?79$sdAnIp;^DV+hiqsts+$t|fhz$qQu6q7b~
zOqqO{LRt5lImdiZx@&6}s98`UXo^)bUN)3Jo)N!HU?eoGWT7g(YMEM@N6I`}re3B|
zW@?#f8vo0*%1kITvCPKW`BUatYZc;Z)dzMa6B}Izk26!65lu2Oxy<opPAGF?nbXUh
zQRbvFCzm;;%&DgEoZ?nHMvcs={ZA=#n)*f5@uQ{?`arRE#OdF=WzH&dcA0b320C*q
zT0*~#$eml}yfWX7%$;9GCGY9}%TNvVO?|)4j9;jVv)WX~buc2QEBo{^7nixD%%$?b
z%&lc+l)1dj6=kj~bA6dB%Uo6Fnljgxx!P*;v5~oHBa;c09Fw2A=%?558_L{R=H@cD
zSaNbkK{qLPHpe)iGq=9_`^enD&fHA7QRbd9_m;W6%pGO!Ds#8`Y0^-0cUs-a{!<pQ
z*{Sz6l4<;XW$rKYkm|S01LleD1s*K3j_zeFvucyKjL2z%p^{N?Jyz!NGOv|+z04D3
zo-8w~%(Ld3W_?eUd0GisIjA(AF}bE*&y{(;%!_uqduMJdo36~Z(-+EoF*B#Rx{SY6
z=H)W4lzG*HWZ|BXNjo2?#s4yImifNSU&C{6m3dpPmifHQJ2sB}ugu5RgWfIkUYYmH
z%qjChnGef+R7ORlQq@F7ZB>V+D;hs#Tr*hpET#L2vOhBSsbX3A&y`E%WJ>vs7222P
z%-3aho8IwNnH98S!RlJo^sSnQh3;*oy0zqrXp*1QX0kC&1@cRoU(5Vf=Jzsxm-)wZ
z{xJMA)Bj8T)Ev{)=wB;FMf|UfOz99;@9yxx;~9@x9*cM^>anuN057=~ckx)pOY+s#
zORf>!47(fl@L0@aapS!_miAb}V@W&h>9Ld%MOj`eayC!yok{u_`NPdAbnOwjz8<<Q
z>Sw9+_fR=3>#>~2@^VQlKVCAuT)~?^l27f->2_%)4|OF?ELZVZ)#DV8Q$1GmlBw68
zh66oT_gKSYO^*>CBR$qK`DPxQdkpee+hZM*Y~r!0$GXN9eXz%R9=dw2?<Fg}8yIeA
zxRK$;hUsg4(oa92CmiB2)MIOpZ9KN{80ID4O5M_9+H$$Ry^>>CzuZ<Hf7`!+1O5Nk
zV>^%G9-Urty_P9mol}(YbgH?%#||EQWWMd_v5Uv99y@vLtTH?z(but4*W4(1Woo;7
zT%zBsWYbhl(qwA11&uLGQ`yU7Z;yRE_Vw^R0+0PX_V+l(Bkys5X&&S;*5g3qN=4Zb
zj??(>afk`iR1VGfVMY!&9B+7p;gN<%86Itz&an#~jz`g>WJ0+r`>sbiu@skD*~7EY
z*Za@^<Xz}d@i@WbM32ZL_L$@`*`sP|6FrWz3aZ&@-J@ZoY1lGs8y;&o!7#1FG=nMX
z`Ys1lO~;$UjMJ0NmM3{^X>++pwEm;&*8FFw+!T+~JZ|#1+2eGNGd!-hC}(<{<#D-j
znL68Jsv3jGIUeVl@I2L^5mmPobfi^tfyYH2(>*S<P<gWHj=76ftsa-E7i2=|>sf}d
zu}kvRYmqBFuJpLd6t3~O*2vX{O5!>rQj^bV9&a$ojfTJOl32LK<5rI+O)?|Xf6Qa1
z$88?Bo8%#nhdu7_xYOe<)q?IO4o>3Uo$23W<X*%34DUC5z~ez9YBth;#Nz^Ot~QBI
z^^a_!{CwObPpIO|B^CQqCVARW-A8KAdOYVbB}f*HpZAz8-+b=ydBNjFk8ORn^LfeR
zWsmMYJ$zpAcvZuT$B!PbdA#oNvBxJKZ+N`v@qx#O9&dTP?eV_H9FKQA-t~CTOJ?1w
zYYl@sl<p8C66%nGP{NPWEM%vWOZchBXC7a9eC_eM$6SvuJifG`G-7H*nmQ!;#^YO$
z?>xRYJCf)~6HU4FfAaX*<6n>eJbv-`Rl}yopBf2G`FAreHN_Gt)?X(1+v6WIC5h5X
z(-oiR>A$MzGgyoGiM+#4vXkaip^N%-@#*T*Et5-_hDt5<c`={Geb(?<(`N~vC4H9n
z_3{)weU|cB#;31OFQ27-di(S-J88rPo`}d=KcD_S%la(mC%Ik_y0Et^`mE%$s?TaZ
zE1Saud{#02R81)N6nCJ7u5OsRDwKRJpFuvG`fTR2w$C~~>-%irv#x0l_F2!YrKOif
z5#P{fBcF|ZHd!dG1!hHbZ0<9}XPD2HW@@O<7Dg7B64}bKzqQXcSt=6BD@7L>?$ha0
z^Qrrc@EPfIsLx?O+xzU`vzO1_K0EsC<g=U4?mj#F?BcVl&nV$di4SV4X$hnTg?spn
z_8H@|rzI_k4yBlSmEt}=`}!Q@GuCH6pZ$Ff@HsH6ap}vZqNFG?&hmAz&mmcDE(lWS
z;XdPiT%V%P5k5!y9OIL>C`b7mZA5CRC&Ge{lL=FKYOUl`_Nn+pKAw;76ZnMwe9xts
zswoR8iG8YOC(U4rQfv4$ea`op>eKRR`<&u)s?V`L6MT;MIl*V5&v8DJd?qhcN~wnn
zTs_f}KFR0g%!jn}q$V=O=QPFjImhR8pEG>U^f@c@M>-1^QR@7;KIfUj0y|Qh=5vA1
zRX$hyT<CL=&!s+>`Aqk@*yob0pcF+$(ul&#eXj7iGOG^RS>U$FH9pt++~jk!&vic6
z``qAjW7d*W$I@J+j@{yOtIrIdnU>Q9rWO?VZ6@!fZJ$1Osj~;H7;v}GJw9`NzVNx%
z=RTj;d|vmt-{%3JXMAS)JgA61kNZ5~^RUk&K9Bl5X02DbNLz2}eCo-QK2KR%PiOr_
zp$kg#S)b=L!u!1J^SsY&jr=|@E>s8$vX<IZ60i8Yx=^L0xqidvO`kbFANaiG^S09R
zdCyXm!aJFM>XIbyFH~zE`h4W`vCk)&z7+nK`5*^A_4&-_^DI;nDWpaErO#JB^R!_)
z;A@|6e17ry)#qEE?|i=Z`N8bS?KGAm{^;|Q&(B%C$c{pj6!rd>&+k5e`~2hchtHor
ze_5hwTB!vo>-1lr|1u9#3#m>=00BJ%mI_!TV9|gc0gDB63FsQoEuecae^^cvO=G1N
zWPkC1B?6WV=DU<;Q*tTv3RpUzZ$Q5w>9)NC`UEVKS(8F)MA$!I*?{E&mJgC4A`KFX
zr>AOrD+R0^FgjpNz<_{N0yYmA60mB(Y60s84Azt&VD*5tEx9!U*0i(+1*~O~v>b%P
z%sp9_SL<Xct{1R=z{UZa1Z-dtHw@UwNb2VTXEqJk%;c#-g{Ju(8n8vc_5nKt3=7yY
zV7q|f0b2!Z9k5Nnw&unH{j@w~R-`jvM8HUMCN(RYX^J8{2J93tDquIWuyepJ0lQ|N
zrx_8-^6sXvhXpN=%fg-kdj*sN$^m-^>=STkz+nOV2J9DbP{7!L{R0jNIMCuQoVv{F
z7-#Z>0}iny78p;-;Q`|VjtR&I91(D2z)=B5FJx*#rc!H#04Kl=C}!4VXMv8m)Vu&c
zpcT*#2m-=@T0lLZ5)cK%0o5#<QdX4IlN3`^jezDt_LZq)111C<A8<mz#DL=hCIw8+
z{9Is1(NjAo2AmXda=<Cp!lfW1!t{{NsX=ltApO$<P7gRENbZ!+4LC30Oyg%6o^7b0
zbJVA_{-c}XfT?El;(%!Z7X(}sB=_1g?AeEIdoNT`+p@-VlPjoJ?YJc1Qj0aQGp7YK
z2|e3CaAm+%0W$+`3%FVhPfPj%w-~u5;94Ws8D4KFg&P8H%=k?j$?Z9p3_elqxHVu#
zfR?1Rq9q)uJy8L7sLfY+ufm-HcbQA0E8HD$Pr%|8mZ)%Vz<mMV1biECzbQNuFe~7J
zfCuGsz{3GgnEa7|M*|+q%0vqwT7A;m<C5Fw9#^qguAel`rvkJ%rl6;TWX)OSc8hKS
z0-g)>#cago@a%vW)Y$ZdSHk`ssqjUM{!+lpMx^$N5v@B(;kAI*1Kv=#iaOp5cq`y-
zb&bxPmfE^#Z-a6g@Ses%t=RO)33s|O!S@5^1bh(ip#^<r_>tlN45jmNz$eB(%_Oq$
zx$(J%Ul@LA_?0dJMx>J_^j*OB8n{B%3i%=6M-9j!T|#~e_&MOefO*>g6Yy)mp8<bq
z|Bo6;*PL#kUO6)NyEXMcta;pLZBoyYbVL2O$^X$HX+z(?8ai%D-rCEBbc7JHNSL&0
zz0yAOrd+pWbAwjOt=c`gPt^MhT|>Hs^bP43(mkX{NY9X^LKX{IJY<QGB`t2+ani1#
zCFqp&3Rya&cSxTw>7Ej%a-mMuWtIt(wQiCAA<KrW6tZ&2av{rytPrxI#X7og(yw*s
zQJOYg=MPUJ4hUH#WMIhZA*+V07NR}d<-L-9g9<&^aE&n8yth%S<IVB*)p0#V4Ou(n
zqLAq!>x8Tuazx0HA%jEK3)v-P*O2u?HVD}!WZRGpLpBN-5;D|0**IjAkWE9><&}z#
z&BBCi9wv{6Qi(QzZ4ojoWGf4jaLbULXC^+6$aJ>0AZ2{Jkl`WQhwKp288RYdqy?pg
zBTP$GWXF)5WXD2x7?V6J)RC%5XH>{;AqR#WWD2{7>>09G$Q~i1)sQl8$5^NeXYY`G
zLiP_iAY|W={Y)-D_0&&huQim<vaD0p=Gc&NA%}(>7ILsDA7Z$$pVB<sgyRiWvy#Zd
zQ6Wc%Obj_L<d~3rNF^i+DTFv7erCs24Th9Mied8cdBs(CmgkxrdZyDaE4{!@LqoOa
zIHVfV3~5;%)k5kajd1?dVnItw^U@AEHe^B;D&c}MoD?!S<SZEpIX>hB)pE!bOXb9n
zlR{25F5k4zc9W+&PO($@sqM|Dg`94uXBw(KoRNjzVQ#C&&j~p<<ouASA?IbGsaFb}
z7IJ|JFSJ~wMW@j8xH#mJkXJ)q3%NApvXFa2?hCm*<cg3RLv9MWGUTd|YeKHgEXc^!
z#+AqGtdm|Ja)V017LL-Ms34J>Lv9JVBjnDITSI1q%v8r*sFY+%nzyU^toP|ujrlIs
zl$pIp<G`}>=V?-V>dVCD{UHy8JQ?y-$b-t7<?iv2heI9-c{Jp)Y}`;D(`r&Vq(nxZ
z$UJ{K<e8A!Auoi?3VAl<xsc}<(o__E>_WaN)?z`&iy<$Cykg0{tP!AZ(u_Ckn~V%<
z-fO6VeUf`U<c*N;HNb|v8S<8_g?t?HcE~#+b3#5)-b3CCd4HjV(n3%w^7BKJE9sBa
zdB-HbkC9v>)h8jJhI|$BwfXZ|$mbz*jY~%(*cTyRT3j_<8PuUIpx>Cc--djrp<__T
zYNnteT_q{AKWgv~`7dN%$j>3ag!~!uSIDm+zlHoB@`vdwn^KlRB_t2UMgCR^SUvu0
zlC(KVF0xEWu0ltJE)}{~(1#2pU!=mKMwAzMo0h8N-70ji(4)d)m1MkCDzYHC%2TMc
zbSzn+XN9dQY+Yfg3cV_9UP-19OIPS!VYv#+SLjn=nM$(drhg@w+w`q)!N^>{O7fi+
zE$nyNBadY(49=k)F9WsmUrC<MtX^S_3M*EUX8|i!Sh>Q03aeBYSV`tNt5%X{m;c!$
zVYLd{G@^Ne9<J%oY++4(pg}7+6*j7{R)s+o*0$sZ8!Fv(DjauRZe2V5RS&EytY2Y+
zN;0XFTnakGH#UXMDooyxO)6}mab8<MjZEs1+t6k#a%PAkN?1uY)24BURd}~Ex200C
z$3xqg&nki4Dr{?fJHz3IovB3q%g9K>?JMk%$#*oeli|)4b}_Q6;V8pr*6)xTyQ`c>
z<o2i}lOjEm(}Z(Og*_|mRblT6S5~;H!ai0JXH+<|!oC&utFV8C11c0MI28`8a8QMO
zC7F?q)iiHpvX%Fc3gartMzVt|XjZoJnaTW9Pty*qBs;GTt8jQFd8jnrP~-?BM^-p0
zlN?>)7~|Uy?2v-WO?Bi}C|0Oes8uLcC|B?+1eIi;lG0T|p1Gm66dKu8yUs@DDrP6D
z5UWnjjXBn4>J=KQrV7VbXjW)dIJUwBi#W)vwT+LT(jm(eRWB7LRhZYA(_=)nIvIJ&
z>h1)UPlb~!oKoQ=Yh!vUs{E>5X;!R_4X0K(t-|R_qBA$e3SV(m4w_-=fuQ!psv^!Z
z`FVzC8=hl$u3^ch+~*sgYB)_jLWQ8ozn#j$MMkC@UTk=Y;iZO`8D3uD3M10jUgfLP
zAZ@*_a7~44D_o~eJv@2ddV^Km_3BEab6P*Y(N0wks?(b*+*0Az3NtFaQsLDKGb`L?
zWu+Y5Ug3@kPuc0674E9=kQ%ufMumGS++X2=3P+C4-CN<l3eS&B9*^qTp9)H4qC!&%
zKWK69w<3C^!lM-)tMItFdeq3=Pz!yc!jl!Aw%(-v@}YHV`Sx^$XDZC9@N9(_D!i!V
z$~>opD$G`swhhBd?gi_Wqttymb1!KqsPJc{<0TtrC+f~i(|+aG?gHMh<X*S9>Z<ba
zP32<VythpLc7=DWzv~gCr)htMITe1Y@UsnQ9~gdN_@UuPhW|7C*zgm>PYpk-@VOB+
z;JF$G?UqXXOA~%o;p;5)8zbLV_|C}phCdkoXsB3f>c3R@RgFAO`sQyHepgV$TM>V#
zQuNkLl;EElIV=2K;hzedL~I)IZ-xIV^p99JVxC6Dh^`UcOt~XsQ6oew68+!YNmGR`
zCQs*_-6MKL^o&?4VzG$DBbJC*GD@yBx|*aHm-Jfv%4@ctEn?}2Wg_}UoP0&ccYSlc
zBl?)Ze)g$P`I%mkPwwB*&*THN|1)Cwh}9$3h*%+F#fSkBt5~R#SSey<<C>Q$T}f6o
zhgXXjn0YR<=_N^_YeuXUF*ss9i!~@>?TB?UYtqy;PPlHAyg4qie#8bAx^XoB&SJxe
zjg;l=dacJmx-Ls|vxv<j#zgEHF(hJW#K?&4BesYb7O_plwh>#JsjVWmHj+B5xFRaj
z?IMOpbViJbl39ejm0Y1BDHrY#v17!p5u?n)P7ymt>|$lEP?fgyHKUOKyG877I(ryu
z#cV-okB)fM{NF2L?}$Sp4vp9+V&8}ZBMvhC{UY{{IKV8Yr6<d}xT_6}wSpZNaj<Eo
zxkx=!y&o2Fc*Ic=M@Nh|g(D)4v?vQal&Q~8>o_JNA5kzJN#vo*Rz#ov(5%djC`Obb
z%BqWqt0KGzUo9u%l!zcAjA%u)BPtfF8c~agB4SHRrqcVedPKt%ni2OdmXwb+<_S}W
zkByiRF*)M+h>50lT*M?JX}(fTDW70wPmDOpYDe<4ScKxIMofvA8Zj;6w20Hq!nqM=
zM4TCMmWnary6+QB9eYO|x|cae8L`GD$?@8N9dW*zy7?xF=4=;4To`e2#3d0InL){?
zTaAe5P|}x1To!S8#1;QPpQVuI@#=_c6dLhx#I<rG;*N+rBd(9QA>x*ZTP^O55jREL
ztZ_q2f>H9{=QNegbPEtMGvc<0+to<y4pDbB`X%>J+bk+Id3#sH-74XT`y%c!gGyaT
z8Y;X$;(>?<vz8#qf)aj24KiYO#0wFRMLZtybi^}e<cWwUBc3uYuhKg8tlVZrJR9*`
z#Pb%qxe2$_?K$&3*O>5P#7hycM!XjBvZ*QESB#_;Cl6n@(>JnEJ!DUV-i~-DN(R+q
zV&08-Pkk+Bmzeh>=4cR$=@;`s#D@`oM*J1=QN;fuzKi%i;^T-<BEE?DGUC&S&mumL
zm}_~L18FW)`(t#!_GZ!=zl!+U9QZcko6HmWrrQC9il~Hti1;z$*NERDev0@x;+ITw
zK}n{{zi0A4vJ}&b_&ees4cak_#rzxbpN99CMPueg<YGEvh#75hi{bn>pjIlI^0P}!
z*Er$bW4aj;S7{4%GbIO9+Kb055z{MXX;WA-rf1AjD!u=ADAO>aSiNKV#4KZ)8aE_K
z)r9?HmW|mcX5*OUVwR6tGiI%r6=GJ5Sv6+0n3ZByj#<T`EA;_!(r!1@)xnIXs~iJk
zRyTz;45yDxiaNBL6qV<on6+aD$E+78Bkejd>t@!{;u5YOvw;aW%!1OQ7RuBnF`LG0
z9kWf$W-*(a&M?CvF+*dvFrN0N1#1^u#%!fbWuuVnY#Xy(%=R%m#0-z=j2RK@mss<=
zPnwo6Ew}V^N3*<>;exB}t}&xx_KVp+X1AE#WA=>MD`t;4xi1?XGsbL+>re@#HusL%
zCuUzOgaxYs3R3o^c0kO5F^9w)8go$0*qCuK2b)3N6<*dO=`870UaJAR<323r@R*}w
zj#f?S9=2~zl`=l&h&cH~+xA*lG@nIutzWPrmyapLIA*pS<Hfi!MLR7Srkik5hy9pJ
zOcWEugz~M+{FOkZ9>-K;YBBW~-R~>)bR|&Nlr$~<kF^=ovdL0A=Gd4CG1~K~t$G7S
z<R-?P5_4+IaWRujXL8K(F(=3+-5qFYUCK5cJ;_4TR}N2(llvXrxoE7I5_56PB{8SP
zoE~#V%$YG$W2VKNr4o+O?E1Wzb5s|$?e<)=^ZxK;qu{6!x$|Rg7?Im>Qit#YOY|aB
zxX`%lOFrEsB5FC88khVEBbUYK9_n)S6uX1g4FAfQtJGmf=JvCGac#_XF*hm~adI=R
z8wAC@J~gP8Y?7N}Zc)dq(znX3F*DTht8}ZP{hTvnZi~6yoRRV!F?Yti81qt`+{ND&
z^MG2iJ%G47<{lH?Yj~fbbnaK#o|zMQP|YCb;h0C{jJA4O89u7=*9Tx?9*cQJuY{D*
zrb^v4sBoTCE7e>p=INMcVrIoWA2VAGen#%u7**eMak8gW(`nrxTx7RhFT}}~=I!-L
zi`_W9ESoVO#(Wer$DGuIj8|h`i+SBj;0@K9ruQltJAEtWZOiF9F+UGaZtCBSdC$1&
zS`y(LT>_LNv#&crtvviM=Hr<EG^oaW67#9v)m0QTsN_89SR44<aBj>OM!q!s%1|xj
zYa`znerxz$%=cO74>3O)*NvEzKh%_IQitwVeu?=t=C_#NH5kVHqd`9A&zQer{*IH4
z$0{5(RCy~`b#JREx)D3&$y_(xy-x4QRr$U%*HMLPvR7Ocp|{=^sj_I5)i+F{>xQ>W
zmFKKF6xv;{BwLPpRq0Vp>U}Z8#SL}3gpnl;dsbO0lW%Kp0WV#pcQxq+y7BK*O;&ic
zUB6$I{#7=uvY9EXjV)Vcxhl(7S)s~0Ro1O0Ybh&Mlijles!4BJsmjV#_P0IQV>@%J
zR9UskYErg4_cf|qqIH0(Cc_=8o4zz}n~__y%39T=<0~VBEF)`InP|nLB2xATn*-}r
zS-;8#RW_`$ag|M~Y*f`WzN6Tg+|ugESr1aZ>uHhpW^Z0)NR{zbj;JON{)Q^uDtnmy
zEviW$8K&q}wyLsqHQC*|O_gn{=vGvfvR#$oRYp`9S*5ee+x9q5txor|(%inv4pnxk
zvTK!ZI&(W#*{RCTRc2{EX<b`&Dz}w|QB~aoc3eLqx0^~*AFj7f(WiTEv`V|0th0@)
zCZm~(eNU_Cy{hb8WuI!YR-+2tx0(z=D%ky0s^<9tRSv9jP?dpNg46yb+d8hT*JG>5
zxJp3B!LnTC&?;(;{msr{Dm1+aY^b6*vdU3aPOfrFm7}X1qmt>&om5Sh<MLGsRh(+F
zjHbeOs}!rr-M9QHRZ$~vR`r@;Qe0(uUd1=B0>es`&`3HgN5*5rs$tErZrCtPHQQB=
zRgG6UPT4nyReBSu$=Z>;)wnUK%3xc8oLuF2HI>fX393OWI+dXcP!f^tY$Q3g%9JYS
zsnShBrZmEwR^@bS;b&N*Rl7a2%2~$G&Lrm;Ik(Dx$(xnQF}2FHDi>6fMJ+WLC3K<j
zi{z>)Os{gW%y#B3sdA~Bw6$urcI85~R?$WvE3}KEj;pF%t?oRPMW%91m1{MgpTUeX
zxUS0eRbHRM8&kNU%8gY<PhiXhZmM!~mBX4G-sBc3tKZdGq0WpdGpoE*<K<d1CAdv(
z&&cgn?x=ESH4)xjP2QIgxyw#<y}qZ)y;bg0RcZ{W(WS-%RUWMJkrb*tq>RglDsQNT
zXbWhSr>i_u<<TmSRe9WmPZ;VC*HX~&q@6yskZ@L&m+kafjZ0OYH~ymG>?$v0n)?o%
zZ{Z~kEN1N$3wqV?wM<P(ylGryPL;Qezis$Vm3J-fdsW_FNPmHEAE@PLaV7k?$|qI+
zG|8t`KCAL=mG7#2p6PsLWNwu&jC^UBTKhWF`6l!Bdz1WX_=Dk(Req}SbEf%=X{zvL
zA<gV>8U!r#k4#5Fe^vRr%0HPTSL0vf{~69RRCH-})RIcUa1q1Qx2`q1)mW>>pc>t4
z^su0nYb;h{@fyq2=v!k66ZWjJRE;H#%TyY@SB<3?lJqv-CzGU}_p7nIN%|WuYq*@@
zf_hxRPFFNs$x!wO)L5m)s&+cia5cjPsjpsR4U?>y$z^bD<3nl;t+7sxb!!Z+v7UrA
zHnO1gYiwX7%|ePBn<TMpWRn`3E~K;hg3w%UiyFgf3^&P^hTCSLTN&B9#x|KG&ER&m
z`K?s;J8O)nF|x+?na++ib}*hQr?_*CU25!Fo8JdV)wtevlJ8by_ZoZD7+vGR8V}VN
zQ)AB>XVy5Y#$Gk{u92@%sIgCteQS)baYT*%YV2QQT#bWk9FV0uw#I=OKgfuRA}x(W
z?DTL$`EzKE!)$y=LzRov$s<kS7{jA#9G&S)At}jR&Z*(nXx3=eDAp*|@M{D$%KxvX
zXXT^T9@ePTh-*}9M5dFbwIJPEjk@w>-Cx2+7EzLRjbm$^T;r4)6KYJXaYBs~&4@IQ
zt1+p@WIH|H^0FWo3Oy-PlMku<RFj-;X-zS%pwlunMLEN`(mlJzIW=y|g3hgRL5&OT
z^t>A9*O*#knw_R)qPQX#)tFx6>KfNr(8V<_t#Mh6OR}aSwaYE&iW*mDSxzlnWpXK`
z-d<bdIyH|hqI7P^6mGPfrp0x0jazEmT4P3y`%PhHjoWJ6Q{&!r@UL-ajk{{xk(E#C
z>fKrDI!z__WyPMJK9D7+q#v&FNR6j!JY&K~Ydm2@L5~@Ed?Dp0Ydn>O%G9ikKWF6G
zEJx4Rm~E05YP@Jf%F26+uhe+8#!oeVuJKxp*UkAkhHn_YTjNb5ZyCOA_>N)vcE)?g
z-#3(5y~6N;@ed6@64v;*#wRtt%XB`i@kPcztMPfp=Ni$kbG|h4mEqS}=r=XK%@mZ7
zj_+&ykcIweB)wt(rN&>G{8uBt)%e}WABKM#rvCqJ{2vYeM*cJGs3#Zkc{OrI#M9R+
zsI!Pk7Om5zPFLg08Fn-5ZrG#FVs#d;vqYVx>-09^l65xMjtJvD4f}V`^)e#))njvg
z>d9Z*`qt@JXBp#4cY2Rp|9bMi)v~53g&wn$Pra#}^}31_R;;s9optK0TW4j{k#G$o
z1L~}jNmi}1n(={#s~e{8o2+SkEyF>EYa6DY6C7M;Jv;rV&iY1X){}8{gE|}5*{IHv
zTCu6KU7d|BRH<)bWYapEDa*!()Y;O=P{S<@hZ&yVBl(!&R>rqB+$NLD)bKi;b*9#t
zR%b+=k#+n!L7naE>`<pr$EmYpot^6JRcG%yJ6qg640oxsYn@TXWoma7W5!SJG5<}U
z(UzAnCg0OgK~mnQ&c1byFv)&(_OCN8i+ezwgNz@TNz#{$#@0#W9$e>;I)`SVhZ{M}
z@SHxm@tHhTKC;eHCONv!F?9xLiK&0`PF&uE={k>VTzl1uS=>^ca>hL)YWZQEN}ZGB
zMxCfmoXYD|GtGvPnql2g_M2H~%Sc;p*jq>w>~vzC<LXSxbWW%<xz6!*lo6HE<o*es
zXraoEtesNl)H-LIWQyVGS=`f%NJky~j5=r9=~-E57hBLf$4<{RJg?6AMh+U4Q|JYm
z<|TD5G=5Qi{wFD>*SR<g)y|Mh>s)51m)E(j&h>S!$U?8Ib5)(I>&aW{^8A`ieytG+
zZ^$G!*SXR7O_@Z+a*Od>Gs%ql{QW|D_w6<l-d^VpBX`!htIpkZ?y2)?o!9EzTj#zy
zPt|$4&i$tInBfC;9yIch;Uk6*tDO7iPPA9L9$kn(ZlO=qdD2Ky_<eKF7=J#K%rf$9
zo#!%%bY|Ciq0Wn$<mEaqWjsyg6+2D&>vi6)^Nva0sPkr~`BtX$ZYG&y<UPapvru{U
zL7fjXourY}`MAy}bv{)eY_NNSHCN8{(&A5@&+E*s^MyvI1_K*>S?4Q_oDG&}@O7PU
z>dedRd|T(YI=|QXPGe)8A2RvRMt(H>$uP~uFUEhZ^Kk#<$}6w_sPm5r_1%d->-=T>
zZ^J<o5`}+_i~MI~(QcX~B^QE@1{hhyuzQ0=8+0+=wLv!{Qk&2tr$a<X4-+od;G3a|
zWXT3S8?2ORE@fmH!(I)RHqzU$Ph<Wdpjdqy^fO_9!{r++YeYfIHIjUZtYDHA4byC{
zoaqc`uu8^PHKMv$y}=sBw^c1PSgXOtna&_1>or(AldRKV-HZ=zkmhcElWbtPq2We`
zZ*QFVvq^(Z?R2vSTNsgW^9DnV56vVR<s={0V9N$uHQ2hr!CL>Z(DbVyX(euFlHm<H
zjf^ndp}|Na+Z)P`^0i}wo$PdH!(AKfl7*`0j%p;sS~{}r(O`6gZyS8qU`&HO8%%3(
zL4&;-?5#XDnAl*S2KzQRvcXY}<koM$1_v}a(D?q1|GOVK$Rvj~7~5c+@q-NyQS^aH
z1`oAU)r*WAZhX9<PLD7mwWH-*gGz&_LEeO=2IU3?<4yy&K{1OZQ|XM<Gl`$cQ(<7I
zp`kS62Gs_wOsCeMk@5OMxoDbD7TQ_pv03PG4JI`>-Q<%EPcb~c!3joAG)yyilJS!b
zQ-4l1KE?1fD-&h>3_Cru!C4K?Hhyk{^NgI6rF*`erbebN#4l`cQG;0xo^3F_!Nm=3
zX>e<UOHAh)!%G`n*5L96S2VcNBuZ2srcPdElB*46U&pn^uWN99gBy(BWO$>YVx?}}
zY|Tl0MuV9R9&GSXgWDS1Zff^6xWmZZSvK!%aF<Dxx?<g9{9eP<llzT7km;nthwb$7
z29FqdGz)z!Gy6n?CmTGK$)C<j?3qj=JI^(EzQH>U-fb}3<ga9*FEn`3_)CT_8>Sh2
zwZUr*UN^~`hHn_ArT3Qcw+&N$$=_@6NrO)tyx(9>gAXk9BNbGG4~?g#_pv#d#!9pK
znT5*2mkmBQKG*OIE95lAuQHvljeKLM=-)T^p~1>c1~mDx!A~Y%yvffEelgzBO#1Av
z4gRy!-x~bh;1A=H|83+?!@msW*gsk5znNrSCdoDD-!ju=ktU0p@g9a<nsjZ_&A2Rg
zZ~ouNAe)PsJk9SCO_prZ(<FVGEYoDEELN{3OB?T<C8W50oAhh4g30?EE@z?3X0cMU
z%P*ATicMBpD0G!3t2WuT$#zXvYcjCO`b{=yvU;Yowvjaq*KD#@CLd%ZwZD$>bqxm_
zu9rEvVXD?-b0ZrWZfv+olTD4J^*F@%mWD$!`4&co8Kw<mE8|-?*=8Z(aO1l+8P%lI
z_=qMWn{01<C&L{KmDY|%<oV7<b}>wi@782@J3Yv7k0yIH*}KVTI~`-Vr(x=|aGxgo
zXOexJ?3Z!bKOo}=E+`Fc1Z^_T<Oer7q{*Si)6^A3*Mjj)j%adCi)&jP*-V!DXEwR5
z$x%&?ZgNaBxvM&{$w^J}O$tq%CT<h2iQlByOy(h}Zz3f-EjJlzm(iff75acrlVgp9
zO)5qtjEuxhszz!}>P8w(T1NCKiKZOTnzOzc(kG`V6PiqHGP%j|O^#C%Bu}&_nX-P;
zy#~o!GhJ<JDo;*mCSRpctdpCZ(&TcfnQx~yIlIX@O{O$C%_OHAp4sFKBZ{l}_E{O%
z{mZ$=FKBXMlk=LKZ>LiYrx^~Nlzf*=5ihdSi<?~1WV-S6#{beLmo?|li!{Sj3F{kf
zKMcxU+2kryyRpgDMr7nVBi9&StD>_zg6p%;8?wT=$s{-H5rC0fo6ImGvzo)CbFkZ+
z+@TiLV(%7rHn~gfvz64>-BvjFn*Kdjzv+F4g6?Z_f0GBAJlN!+CjDD1+v4FSk2IOv
z<O?+qa*sB7rpYXe_*j$2n>^9v(>s$wc(Tb;O`f(Otp><!>i@G%p0ngWZt{GS*-hSU
z@?Mh{n!MQL^(JpLd8x_E7V)(v2XxK7(oF7#UNy;idcDg&^Cd~QbvoW`@>Y|#HH_F+
zH|1AJE1`F+*-P_gQ+~h6hZcQ~p_=grMx^;sCi!0``NZ7&w8>{y=F<7xf|gz_`EJ;k
zO}=W<(SjCVo92&AerobflW&`R*W`Os{-MbS-4cC8PY)I8&rN=@PM2%(Ym?ua{MF=d
z)BnB6A5H!=uB<8IpCl;$Pm_O}{MTfjB`0eV%Gv_sss0D6<`!wOXp1FUEZL$<i>@uY
zx00gkW~eBNn|jrwmGtGsS}bnOAoVac*t5k_Eqa+;ahGn<+m!p7q>u4s%%JpjNT;8j
zrj9MwV)+)^wAi-A3N2P_u|bOsTdZU{tF;(t7FKRCpv5XJRyDJ!ofKC$$r@5?B`?Rx
zZ5?a1ShvOC7K2)>-Ae8~ml~W~$4o71O+syKJ&U-$3G?~^aj%>j&qggaZZWKtTp~9y
zh0R+GF|uik&5X#ta-l;G47KQ6m^_szbjuc7nPh7VmD=*FC5~;EsfiD7B|Ws$BqLgk
zG?H50!T64uWTzH8XMC3yyJmb;i`|UxZn#G#AKhY1#`kQY&*{kQKFU#xwi0czUyJ=)
zlv<Qc?SK|XXaH|<V2guVjBPQl#i1<@lk+R*4mO=bRQ@Z^FI&B3b9iQdd@C9D^+x~+
zm5Pp|TI5?4OyOw5V^nVTr$Wb0i-ub3bB&~JDUIv3sI-Vo?i&V%p_P?%Vmqz1s2iyo
z%7TI###@HXtO2J_NfbJv#mOyBX))0hjx&^el99=V#~Yr|;=~pw8CP>k@35qKYKu!+
zT-stvi_<Lhbi-+eXBeK@;;a^Dw>Za673*9hGIE}g^E3I>h1%)`CcLo4MMkD)Iu{#J
zqq;1UT-oCCj9<~3zpizaNv<|b+y8Yfu5Yo!gk;3NA=5vs&5bQ?YH_nkW*gqp;?@>3
zjNjhkjutaB{o7ikx3qVf<k1$78M({wZo_+8+}q;57Wb<uYR^xLhgv*fL20=yD7}YG
z_=pCXtere=lBZidVMMMzY2+!xWQ|4Ne=|O-#j`D*Gyc3`n$3;-<z8s<VvCnryxiii
z7Js*RrNyhJ^K*;W)c9L`(&Ez=Z?t&R<R2Km)#6<vO66@M?-<JRdzt)wBXe5wR|%x~
zVT+Hl(EqjgIOFLJ{%0+|(jedBbCb`_LceJ7rEz^0Oh&#j{)6GShTj<~=zAmS0?Uua
ze=<xf;ul>7GR@zN{BHP1i$62DlK7{^zZyc@Y}Dqz7V|W`x9Qm?*G}3)55tZ&7+J)y
ztKp)CT@0fhxo$=jrF;AT-XdJA&ElDSiT3<e$EDizYO{KqHQFp~p?%x*Yt!3!pG<$5
zh3xcivtpZ-+AP~<xi-tUlQp6hOf$`_(pA4+S#lGuX1I#ss)lK=m!AXeG}T`-<Lk6p
zE8~OOtex>R*1By5w^^^v`X=ANP^+>sqC;(9<2IYL*}cskZ8o*gt=nwVX0tY%w;5uR
zVTMBu6>E#EG{m<w;Z}y~0^1tdzReD8wlhAwO{b9&h9eg$8F{#)33q9;tC5}B>}*6s
zLF%D&MwvvXyS3+!1LC7iIJV80HhUW1tIfV`_A|bBn|+Kdu(N-g15I*(p)923b5Q2b
zIFlc2c!=Sl3uzv1e0-ZD+8k*--=@&!DC7E++0pW?oy;844}3Xo+%^xjdDw)-HfOdu
z%Xq0xxs7Msx9F4G1Z~1Ll{QhEMw_OE#^zhCP1R1*IY7Ogj6dSvZJBE+iEg>J)J$Q*
z#EuDVCK^A^;!5pv%jqObC_O#C%?WKzY;%%no@RKm;i-nF7;1Vf{VB%N%l+wX&al&A
zQ*)cOI~00$n+w}q)aD$sf3Af}eqNjN+e~fq(%8hvv@G=t{y(a|1pKP${r-LynrNPB
zkfKsbM3iPqDiRqgX%doorq8`+9`1ZE@+F#3A(`iy%!-U<Dn({8&-$;k&gb~~KhJ&E
zv-Z2+{qA><XP<rcIadm-c^X_Oes3*qsKt%7SX7I}wOCb)J8H3{7E5cfycR1G{bjYd
zN&IHvEmUh2S>~_Tq|{1w`)gCTa@uFV?GwpaEphDawb8%xkgsMg-BM@FN!?W&-7(!M
zm*~meGPuv0ntN)&T8dNMSIhr%!2{~&i#kN69<0SfwRl*m9;wBn(qwW*J(i@}g*Rfg
zc#5@=##L!N&8#_5q_IyL&(>m1Eq<=WFSU5C7SGpWGfmavg<8B=i??d=b}e3#o!3}(
zvr{kE;uQs76|R%dYirS3WnreQz}IWBz7}uP;!WwCU5T8DUE<TpcO=|ci}z~LlJ9>h
zxFM;Z_Z6i6haw-;;tN^+NWo3QK9X#y#nxJE=iuVUe`@h*ExxM7*HYM4i_dEDIr*BX
zGkhW8mr2Lls}UxxtvS7E>Kn<w6;f^exYT#5#_g-?+UR>l{ZNY^Yw=Spo_sR0#-C-R
zeyzoCwP=_|qcnc6#UIj4rSYe7`KK0lEwA~D!;t&`iG4Qxj)XtZ8Z~Jkjh)iiIgR>k
z3w{S9jd~(qBgH{P32zXH4J2d_A>TEP-O|`SjXlz6oJNy0TBp%Q3Qf~!o<@r_nkm>|
zQl!sc%QRZ0qw5ZvhTWcXJAI?PZ92MkkhDvqeHw9I46>y<$U^5d_DrLrcqbuanWRe^
zch8I*?wZD4lE=Pv6Cb%ex_j!LMvpWmrEx+UJ=54XjS*>#OruvCz0)`_js9uumqwp7
z4p6GT^r2<sOmjEF{nOF)uAibBs}!uUgVH!SjYHBnRPwlh15~slr=|v`F({3}X$(>9
zVJaP8?ucj9q3P)AHcU|m1vUM+_*cTc_1%NR(>Ov=$D}bz<S60jG>#NubBswyi<uak
z#yADz;XFQ#qZRBXS0|)#Y#I~OI4+IjRgie>vqW@;-EUQxIx&rt(zrN{OVT(wjmc@8
zp2itzOp%?LY0OGvY8t1cF)fW#)0mOQMNOibp^@qGoScvNX_@!h<g=A<P8z3)RO&^_
z{IQnKOk-{u=cjQ&8fT?3PYUOyqxbL57C$HH3Fj(!>y90tD=j}}!t7||C>{i&15%6I
z`qDHmOCytpk;dgpMYStMu1MF-b@S7xW$`6Ed`MJw&W&sZGYu<^AdN5$Td|(dNyBBg
z$)wsfi!x<j^(7~#8`(5+X%y2avDY<1K8->WTmRTdpFOiINktg<Z6@S*FRxDH8V<J%
zcFJHu8rP=rS{kpjIB8s$#+_;0mB#gHEKFmC(#~t2x*?6lX)ICj#xxeG9hpnniSk;S
z#x06krnb0Ac(Ww2C(FfISYD4-rg1A<xouRLx217=8mrQ{Lke_q^?y<^?HV5bOyiz3
z9!}$tH11XG1H$`+_X`hg6gB#T;v^5HLB~e&524a{ER8j3Jg2C~(|C##ei~1t@uZrM
zt?=ZMs0hzU;aS$q?9{DcB;iI4@%c1fNaLk6UQXl1#C}=bfZpE0zW__))il<s6?nm7
z8CkA%i6*D(^=Z73#;0j)OXJNn-b&+xG(J=ny)Cs3!gqx4rok@CakMdw_mWC}Us3Ga
zH2zT<o0v9@Eop3)oUP9bJzeEUj9Ymtrv+XG6ifO3?P@+t<8uZ7Oyi3*zD(oCG=56s
zD+#|%<GVDzPUD-zAZ@Z{n07m7SEuHOG`>%)4dFBWwkZmKmgLtoeiQjc828oR)A&O{
zj*ecc5Ssccjla|QNAj9X)LuK%NQuzxd->|Ca-7aT$<1Jw3=Y!WV!aINXRv1mT{38p
zLBkB1Wzal>Mj7m?v`sQ~rKZ8%GH9Fu%Nwsc*bq%K(WQq`Ei!1CL7NQPDpji_Rci(L
zB$PVsGH9PchYUJqu)7pk=X+%SZ@s~5BGo!6N#{&dCsbfA6z-Kl*9`W{pic(fGT2+r
z?@P@Lx@XWc$*zaevV$=pQ+2Ux;^e&~@12QuRw?JNFAI`Ezf3gqGk8D-2WHS;YDbT)
z*=cfAC^l0ZdvFE=GB_lILo*nj!H5h7W-y4AX4eePL`R-t<-?SmopwkDL&f9d!{lw;
zc}6B#Fv;QKM`WVE&|>W9435lTjFgWOvXjI&)MGOkC&_r>(ZXYdvBJa*j?3UY3+G!n
zK7&aa+>^n*s+JQnn3KWj%Im}oPEx9qg|t68gDDwIRq&JyrisuQM)7y5g42aFgflak
zB{Exhnvk03H%y(8!I>E>$zW*)a})XE49?16UIu4pa83pnW^j?B&ZW1B&PA<LkJ3UW
z`tz3yGT?bC8oW4zOQdjx@X`z}7r9Kxjr7<<{!baby)uLO8Pu{hGst96$)GAVBLhE!
zAOn-#ECV|ez2V|2ipiY}_;;Tqo+Rw0gMO|FGstF8k|f6-!asZ$&kN&?h@$vA`Z9Bw
zJz+?S+ZUWYuFBwQ)_Dfku@usw@dYC6c-M+>@}cnh3>Ic^1M8|yiXR`NgbG|aliVn^
zMZzsQl0@M$1y>4h65cGlMYvqZ9<@S*6>@6^xAFYHf=qs=$f^wP5LunbS)98vxH}W=
zqw;<#?o0P&a6g;Uz+3|lWbh!T0t34lcu1+f%;2jG9!@MgBJwC}GK0rCzA|_+gSRqx
zn=?!*^;8DWW$--58qa?UpUL1^5lYrbhwi-~$txMWn!$_WFC{uJONXY`X0T4e^%=aD
z#8Uox!nuF@hWML_gt6~r@NNd5WTM^O4H<0AV6$T1%iw(x>U@ysf0V(8;_)*tdblYG
zek`&j(cGGN^=Ss%GWaZm&lN>$Ux=_!G{PXs*BN}1!JirYmBF{1E>vSb3Ab~W6XBlf
zu2X9`MgPDljt>Ha_qR>`oWU;{{3@N_g}(`DmQD7Dc-$xd7N?z^jp*X?PX;?O(TAJJ
zQ<BsefXGh5IBFLI^$heIUsK;eLnFGbH88N8r+s*`rA_pgnvIO;K9SqGjSVz0FiUBh
z8fa#qzk!1cG&j(~Kvx6Z474=R%D^55Iv8jz&9(;GiL^25_LSNyxVw<PafXa%n~nxL
zN!Uf$S-5ACikej0OTt)xZv*=n*v~*83A-EUX<%OiJrW(N^%C#>A4!~JUjzF~ctB#m
zpMr7hfeELDgAEKYFwVeuR*r!~4IFOZ2m=ER3^Fj(z%T=c85nF}$bV9?P_e@#!wrm3
z)JP$1@<(~BGs?hd14k+9Na2`7jTT~m#!3?FA8p_m11B4pY+!<cV+~9)aDst}(mBq+
z@kZSqU7R*fMLf~KNr@d!6!d`#Qw&TsaH@gn22M%xoyLllLaalz8H$?u|68Vfw&bT7
zm?Lt!kn%Iw=<Or>XBn7h;4>4Sn^B)U+rS2qa}1no;5-B88+cQa3k+OnV3CQ%CN45?
zv4M^zI+?h{z@-LWFz}**%M4s@V6lNE2Cgu0rGbips)6|iY7KY>d^YP3sk8ypfMp<K
zz>rJv-ZG108*r$@O91<4v&choj#Cm2)xbb#plG0EAZs9JATMP`QRfvzC!nZVFrteH
zXZv{El{pGD%(<O-m4T}bTyJ2Z5j}yr#=y0#Gy@Cd#=@s+;;l|Tu)Z#qG)cvqkT=N4
zjYhPyH$op_SR@60t#PS=Wd`muaKC|@4BTvBwShYg+`@5c;5Gxd8(3jrrGZ=JEj>K-
z$moPB$;GMEs`jZ>2JT?}XdgaymDd`U=q_b(kMM3e%mT8j+$#w;S}$sndceSg2A(wV
z6uVj1)I$ayG4QAn{rUUD>^b#PYa6B>Gw`^9Cs^1<(UC}2EZwF8^*MFWji(K)G4Py$
zXAC@RMECv_a+$<##%ILj&&$-hhS5W%mkhjY;0FUg8hFLPs|Ge1*lb{}fpzRZ1~wXa
z&A{vIIR@S`uwLH2A!NB|jlZ~_-!|~B<nI{K{WzUDfG<?`jN0)%1Me&9Lq)M#KHz|w
zmHKCWbT)t%KGM7w88onkeb~U~2DTdbM5(q3;{o!i_>{Av!m`L;82Hk_w+6m5@RfnD
z4SZu@l;&aTQ-=?oX_kBb%yhfbelKK)VZHIIO+Oj<nX|EpMkanS@T-9x22v(|Gw?eN
zc1`_b;12_T8u-h=-<%DSQt#3|@|=0GfIQwDcl#O>FtLk?dKzdunNh3lEY2=X{U~1r
z8whVJMSX*RS3$G8n%K=mYZGluG&a%1L~|1@Oz;M+sflK0G*R%!+c74gotCmdo2^8S
z9}-n&JWSe}XlJ6mi7u)N?gs2`Vh<A?q{(*Y-pD?wNS|JHHnFFPxr*vyVlNXTOpG+q
z)kHTF{Y)HSVsGYdqPL0tOmsKV!^FNOdYRE#j<yG;ddfFe0*gZrS>d~DKdq06z9#lJ
zF>z{CcINv^i>SQuJb9pr{w4;R7-Zrg69=0ZVB!!H97Jrm_%A%zYKNN9Xo{<y!NW`p
zHlta0n290snLZ4a&e{6FEHmP7xT2WX;U<nSG0DUUCPtYUZQ^JX$1q<m1x*}fVyraB
z2wAJ+=rHfocdi+4M%Pg0%dyFPCzv>v_1U>*BCV;@G8Z0V=R)o{6UUqQK=a!JJp5_m
zBonht%r<ediOD9Wu^X6}Vq&U^Q<PEMnQ5Qnmrl~ubQ3caHPeiSHve;(!q=PBFqZzD
zW@3&B9<jK;f6b2isnboIVd6|P`XnROVr%q-ex7Awo{6(foWnXX;hQ+u#CayJG%?@A
z`6ezfaWSWQ)_E#*A?JTH8m-gxWIwLtOHEv6f^)?c>b=*gJ})<;-CAlgJNB_!R*nhF
zgl!@tw+$0tZI7IZ8`o4da`aK+NWnG1*`Vj>)SLYywZKGZ;wlqYo5-5TnJAhlNi#1j
zsB|nEdlW0Y%&s^;s*Q??Z?uN*%W-E$-(vb7Uph9iz{GVXu2;D@Hm_wTk)3#)a<DVg
zg(hw=aie@=r()-iZxEOZD|v~DdrjPDVyP6CnYhWs%_eS9@J<uUO{|d3RVG%7(B^F>
zZWX5mR_X2HajV@SzWP6syJRZrU?%QKIF;`=@qmIa3m-J`oXA5a9yalaiAPO5W8zs8
zkIC8-CZ06$xHvPV8~i<G;%WAC9a4=YjEZB|BtB67yez*Ud{Ow4F!uiyX}&64Yhs;=
z*TmPGc*Df&;;~I;L=xj$lD}=@9gWR6_jlRh_0G{o#l9zG)cYJPCO%Z~BNN*a`6iLg
zM3F7RtwN^yMC4OW5msG!<7Lkm?C@5!;Q5k0(8Sm59-O8u^s(@*iSIa_T4-xwyNT~*
zVK)munD|k=MhSls|6TaA@D~%miu@*A)I1uD{QY6#Pj*Wae@nhY_>YjW@#-Qan_OBz
zWG4$di|it7V4<FcIs6K!f=m^^*VE8KqeQZ+2**+5MAF1UQwz;3G?%26u!XRtFg8MK
ztrg@5ZD*mqg}p88BgyU-_OQ^ws=F`fXrYsZy)1N9Y-bC5TIgb7sEWxCR?}3BjOu2A
z$X_h!t|YyLJuLK8)V@Ndq8hPxVwS<a7WTI=*1|Xo{VW_{;c&$sXraG_LoEzc@F3v;
z3kN4@X@|c<lHAD$Sr}|#h!hS>avW-5n1vA%#vTqAXIc2@YGlIWCD{=cMp+nb;YbT(
z6m?WmuGn+t5*rzBVTy&R7LK-Xj5H@$IKje+7LHYrniEBi6CN*|BxG}(WZ`5BlNIC=
zls03tvHepdpJU;43)93;6;2mYXNHBD7G_zPEy-z#oGlw);;D0ngmZ;w3Yo=OB5_&H
z7N_Pp7S2sL=ei3lTxj8oEWXU*A`2H=Ftf0-xWvMx7VfifzlF=#bND~+7HTbAuC!MO
zuZ+3=QYvjBV_~HvhS0I#(wev>w1w=<yjk`v_zK=^A+QjN-((>xLO;tQIbmK{uuv2!
z3FF<HiiN6zS6NtK;ac&lEnFkQ^%70}Pn=|l$aNO37g=cG29X;rEKYP5S<xzs*OB=D
z%a$hcWma@&K_l@+?G_8mEqvOcZvI(8Q~Ia5TP@sX;dZ6EQ@F~)9qjE|3o-d>tL{GW
zE(>={;U3|=7OqIFv0Wap@E~^-vzU~{Llz#kaHE4o4jz#*?K~>7PtVk279O|ogoP(9
zykX-_8&6qyn!Vb_7#q)6c-F#BHg>kL#=>(JKB3zdp11IVg?B8xYvDx;FIiY;;WY~{
zTX@C7s}|PMf#ahK?uOOTmh3=nWAceAH+WySu-?L(7T#ix79O1tJ!WOKJgMt1H|6L*
z)!w$E7d-iH&ISt`Eo`!|*}{7k-na09g%3F*+DG;m&rWfH!Dqfq!Uu34sjm3J5Jr7$
zVT*;W7UJ!9N_Kg^hEHuswpsYh!p|0dvG6%NFlTrR-&y$5!dDi)w(t$-v_{zUM|2pK
zgh`rrjS9jnwp;j~Grxr&tteA^OZoJUDLzf(S=OH<{6-G^YT-8ve_Qy+!tWOT&_MW8
zGba;rMZJ7X>gM68zbt$t{T&ukHfn6ZMs1tOEUP8n&E^RKwi=z;#YR0Fd)wH@MtvI%
zY_ze_)<#1cjchcr(bUGSHg>bom^w0h_e`*U=x0AZ*W>?L+h}g1m5tUmR`g4?uyGil
z0!aB-?I7`MKTJ4eeB{9PeNydgw71dO#-28Ix3Pzfjy5{k=wL^e0J@jGHq}r`_%N=;
z%xHI=@-8;^veDH>H#@r1p($#z2rLNQ$PbPr-EH)+aj1=fHhS9F*G4}Z2iWLkqqmJd
zHu@@y0S!|7*-=&VAq!LOFCnwwa+-@|N)EKq-^Rf<22f40@q>Vp)|rQ>Xnf|ftX^u4
zX7WKSvW*coM%ox`V~7-n+ZbwN7|ZC?@L>~gggNK)_JN&{Sq$L%-^LL(MkTcxA2VQK
zU*5lFv>p9%UXIT|ZH%>1vQf4%&c=8f=h`^W#?dy8u`%7o3>y<{9LqYfG1<mM8^_r=
z(Z)$Oj<+$%#tAlF8&$&<6d$K@kvvPt?i6>w2kWKS!KT=lYGay>Q{~JlLRJX%SwPMM
zZ0jfHML5&OEE{LoIMc>#8>iWrW8-w`^Hd(k8jHq?Wy7uBC&e55xi-$SG0(=?(qY5J
z574`}iH77kbh2TTq#L*WZCqf(v|-t}(8fhJuCQ^Xjf-tuV&gI!m&*cuxKwS&PF2+X
z1s^=IhPO^h&1WaKk+EU0_IQA~ODe4-+xX-(Zs?lSsxZ~0UCOrM*vQ(**>G)mHUb-=
zlzCqhJpvXVDEquIq%}I3m#|=?XyeA;qQT1_$1h`9sEUoMjk|5!W8*3tSKGMB#?3aa
zv9Z9$4NPL=S~_OqIvdy9QP<@r6)kY38u#agHXc|K^~po{{WlwnZ7j91%*GPs%fEvk
zw=vRZ!S8FEYG|i8^Y9+w78}cL+-_qPN1u(AQoc=9!~t@vf^0|LD=}?ckUMOwwsEIA
zHvPX#I&3d0@W~7DUK{t>c$QPNjr-}9jmK>~VdFs?57~Ic#-l9Sk5R!NW_uYacI-Jk
z`NMg@P4S!qH*n_54oyAD`QOIV%HqqxDb5TOK4XL9n&dEk%ge^|HrCo$XX6DMFWPw7
z#w)C@ZjnDPaU_n8Mj0QjF+29jS7mB*V*fQ8uiIG9;)l_M#w1)#al@h1CiRw$w>eB4
zOmOgyjdwXgIcVcxgN=<gezEbZjrVN4Z{u?tU)cD-#)mex+W5rAM>aOu*vw{9U;4gv
z-LVj6!G23mw(t_BTK!c1Y_sv19nJ83%*`zYx<NJKmo~n#@x6^7Y<z9w8ynx+_>M!S
zX==fWns@j%3QrTM4&$b2#bR>X-^Nce`?HNx8bnj#FBjHuE03vY_BR{9bJBKD-@zX?
z{<M*DP~+e)8-LsQ$Hor%%-nC&I}WtWA3dM)LgW%0?Cf9{2Rk`Y6Y$4-VdA*PHQRKB
zZQ!7xgT@Y;IB4WxSE=nLq#e$C{_b@JZ0ewygBA{2I^cn;<_>=Dn_>;H^*Pb)&`wJ$
zC#seiJ9co%(bhpb2ZuN~)IocP6C-*#=<Q$+2OX&9psRz94mvs5(?J&}8pWNR=uqEh
z|4U6yTAV^Y*u7(3s+)to9dvilL%#LqAvcmWH4~M4?|Lcjfc12+uM>S}odvWd-_JoG
z2M0Rn@1U=P{T=jkaDWqC4qhJ@y#+)2aWUiP&P;fagM%FmaH0!S??!d)%ZUP|)IbM=
z9E@>rl!L<@40bTm!Ql>uI2h_+n1kU?bWx)b-i;F33L_jmHX(Jenc5<+j&Lx_!Dt6Z
zI(X^0=z7QUQj?y?T`2BOV;ziFF&Q<^iB1yE;fEk3;Z`bz$2yqE8k6KW2gf_O*uf<Z
zCOJ64!7K-}9h~UkBnPKBnC9SQ2a_F4aWGZ&%x2}WHx`g(j}K*WK%MGfx`P=GX380M
znA;cC&3pXH2Q%do^fU)^Si=s^b#S_aGaSryaF$BV0dl7N;gKOK(=v-ck6neD9H;uM
z8K<W69GvgqLI)Q)_(u;qFQ7ux$o_1emTZ(_jYU<_Gj*wh%N&Gk2nUxtxWa+qz;tk>
zgZa$SLB_%LOKWOXKTKXv`JQ)F4JXg8Pu0)?%Yp5{bKq0isNt(RjsutN#XSmj(YeXU
zWo-mb^v_f5w>bxS2NefZ2L%U32PKC`UvSiv$Vr+dvI5!9zZnx<`>t|uwSxr?u61x*
z=cvZ6VW#?5Xs#sL$JoUDR0!qQseY~(E)?D%j2BCb9W3Es@iEZHQU}W%T<79?7dJV$
zS!yL0w>VhtpskB`E><{L>ELq*UpTmxS+gD-yv|m0u*$(h4jyKS9IRH_`yAZq;4TOE
zD0sIpKD$WASQg^F4xUzTyx+kCNl#wMBS2~qcI-zSJnG<i2QRQ!bErCa#=)~P^@M{b
z9Xut@6<U1S=V=Am=)7dC5$9@$z2Z4>o&jUWc##9a!K)6|a=Or=td||U!nx(BsK)q<
zmk{gJNtl)rda~ZZ8xB5n@R5Tz9lRxj8yvjN*=%#oO+53-tAK<v)UV=H8y&po;C&5&
z4-^}>Ce5<TZIWb*gRLT)9egapv~TLD+b0gTIrvP%Plfa(t~%;)p8V3mSM1deb~yOj
z!8a_0gI^qcE9LDDz8CpU4lv0N3jQSgQ5a7G@f`B2B!4*g)4^}zzYG7(@h^I)w)<Oh
z_B7f|xu|imtBc)Sz{O5()UpkPJG<D$MLieny%g4WdC<LvJMi%gz^ofG$%<&;G;*Wa
zn2pGWYwV(li>5A)$VV&lW-hP$Xf1;+TwK&7)zU>Px9&vHzxPVaqK$Oe;>@ePi``uu
z?_!dRJzR8fahQw2E;_pC<f500-cs)DqN|H;F7{Ngi;KP7Xz@U2;+EQ*au+=nOS9cY
zdbo9mwJ70}DGtefSu|ad_jA#Q+{MAt?CYYRivz^>7xG*&Qyu7{zgu@al^L;^agGDr
z==|_N7l*hwRQmDzhP)>l$z32xs652QP#5DB9Oh!Ui%~8{D>y=UxNszmXrM92Biy<x
z#gQ(?xEL!1%Hu{nO7+hm+jpEBwK5BJw2Nb;HbFSi#jzrBNsklfDFU9gJHf??E-rU*
zg^QD1oa|z*i?duzb}_}p3>Pz9Om%UJlAJ1>mh_6a?=kD?k~28V#cUUIT%0b+X+oZv
zp;v6>GhCc02{*B+Od->f%yV(JiwoUoSN|L-oa^E|H@d&;$xDC=b%Erue!MQd$i>Aj
zE^%?GqAp`k?iKZ)f4!PBrshf)^Ih0392d2$M%9(UDN(Zrl{0SCI!t29h$W0IxGp>e
zb3$Jjx(GyA$xNOV=f){{UcBI<=wgQzN%*50i&<7wMOYPH<>G3QYlPHXAabqne@Tlk
zba4ZV>ERL&H@aBl;%^uKxLE9BiHo;fyzOGCi)AjJaPcJPe-}5qxYxyfoc~=ccX6i-
zu5iH<%eT3>-Ni~5x4LylrkOAQ8!MhAR;ixvaKQ!4YNcWlewFAh$ytiK)j;=fm~aKh
z&wkRTi-%o2B5xmb!CM9nfrni1Yf<r9<x$yTF09hWTs%%clk;^mcwu$%w2N0=tab5>
zi)W?$l8ZHLCZ74>)WP}R#q%1WOc+l-wDzJj<7RqUz44W##u&TK#Tzc(bnzO?BF*)Q
zew>8cAhAotchn`exY+9AT^Ac%Y?Sf`E<SYeo{RSt<iO#okNO`eNU~XE6B8!a`j3-o
z;S)LYwTo|DeClEw=P16WE&VTqp9?u}eCgsV@pxdew|wj3I~TvW_|?UB7vH=1DN$yo
zKX8Pq0)Lc{7hD?oS=q&-={L#$bn&~3Kg4;@70=;+{m0G@7by=zJq+_u;{hHzdFbq6
zCl5P&Xy&207Zr9F4-Gvu@=#B~`oadnVd~!0+0~1t+$J7&lbn*qA_Jt*RJ_$CH7z`}
z^w7>jdk?J=%{Crdi*uwiA%AVX=%yg%yL-`W*1^Lbi9R!8R7VBblzV#U;$c4zeVEEa
zR}Vcs?CYUhtnWqJdV7m=nZe1SyZDXuQawEIS~i|9cZaE7UNpP%*E>$7zS`Hr{vHnT
zaA=&|!+{?9dpJNYaodFY2YEQy!vHD#+cSChO%HjDd7$Knc^K?rkT{c2jYx$dlCX3P
z4)-v^!we5IJ&g2lxQB5b#(Oxz!zd49q{$?sRnJGVjktIlRr7+X>oo4(c+r`Vu^uka
zmHlWB$9Oo=!$}?{csSO>aUPDBk*A-HDtV%KJONJfaDqxyPv>uWaF;cFvWLkYPL<je
z4^u@>@uGz{2RJRzXKooy^P)8{XKYHQQ%yTO<g=(rmy~L@htoV<+@@xZf{bP3p6Ow(
zhx0s~@8K*DoJr13V&^fT)*I(|I9HrKoUflS;RVvUFwvZ=&DD#N-g2pj%RGGO;Uf>1
zd$@wWd06e?N)Pir+`!4xLoFNHL&ZbYL&k&Q!S@h&Fg;ivT-Af^!SSN?KwK`)W1Mza
z;dH=L{c{x>ddPYxdMJ6wdB}SxaMbWi2uq?=@d|_%*tl^|F3WP<b!q1+72#SBSBqT3
z>QWsp-~i;yK^)N@uH(4i5l{~cl_}G<kq*r+^03&$txCJZ!%`2+#g_?b|7MY!lA63l
z!GEuJD?F@}B=+Yv@!N$=yUL61AKAWldbrEOGajCm^LKlA(8EJ=<{l6Cdbm&W`#n6s
zU+ZYsmj^azfob`B*u$e99%FyzH|Ld#QT#p5=JxQEBu^;QQ>WGSD8@c5o9tt2JUmBF
zJiPAVd8xhZ;S~=rczDsnOOiyl!<x{B^Zb9}|62JU=e174`0)994{v*T$HN;Q-jsaZ
zvea85XR2}E^{~Oidmi3TT7RQrSxc+Nq&^U5xoA0_s5g1o%o)!|V;>)T*y3TkhwnXX
zmFAZozVh&ihffvUCj4CZnFrpwvc|qpFt+(M=i9wf-%9e0Fr(_?2G@5A(v2TH{OI9N
z4}W?1NkTgFn}?r0{NhD>Tnzr2$YZm=EBJ?Mm6E?b{KJ{tM|~eVJf!@nSMTJbMg&4i
z;#DqppSXP8*~c!DvmMzX8~AAGqmhqY{ivUCsKyylGbS7?O?))<(Z$DJKAI_QD<7?W
zG#77?<kHfw+vscKqpgqjK6dw`^)nsdz-h-?)r%p_g_1pdbnwy9M<*Y9%0g#9y6CVi
zIO%yxMK$`+)kilU`}yeOV{d8p@X<5QRM_3;iMz-qfBX9AC1LD*Z}Iqrn!Y~v_tD?S
zL4Nc?N<T#%=;Hv9_~IMqNaVzLu#W*g4pA%}YbN_NJIKdjKAsNnOn|{YhWKa@pkaWa
zK8E>N;bWzb;XX$AxY)-fK1TXD+{Y9jQ+*sEYvX+!?PHXW(LRop<R~9wMaHNS=m2vh
zj+2lZFPuh>@iD>2@jfQ`I9BqBLaN2L703CApIn?E`AI%b7CF(6rX%Vc?MD}j$$r$b
zT+8u=j#GS0^KpicGku)uW4iQb3;C^#89rwEn8g}P-pHUQw7}nKKIYJD(qw#lg2K5z
z&hl}tkMn%YlMxEfR`NL2ITFUh?R@bIg%?PNQ!8)wFG}<;^>G<n%Etm9m;1QFhvUQb
zaix#>J~BQGAGJyzU2|Cq?a44B+NZ>1$KG7SK5zN3*^WBB!{q^EJs-Xwt!yhk0w1A|
zf{!BGaZ)PlBPW}*Lj~H*b3)KRs+9a_GN-)kNBbL5rfQ?AkE@h~_ce^YTAXFMmX+gU
zv5zH^T<7CPAB%ik?_*)o$~S0GFcnu3aka#6*(^<bxY@_Dgx{2;x<!)Z!q|sfeca~b
zEgx_DxZTGpA5Zvr(#IV>R!i++A9wn=i<?UeQuj-8w~u>8?n%lO-)h|_Avg9P5P8tY
zL+UVeGWP8eACIyFkB!z#k7<DOiOl2jjgqH0G<>||<7FSu_;^-EUi7g>ghrkhc}~bx
z1SKzs^K!<OPu%Ta@v$z^e^q2Hi?bx^d$0L;-N$+f-|+D!=OwK(xrAogIQct1-u3al
zj~{$&@UhXyHXon)c#kt!BYf!NBPD;|#|I*8R=$3<$;W0NTYY>Y;m5))Dm!-t<9hxy
zj#4nri!OaGoo{@6;p0mweC6Zoq(V5*;+5pLiuz8-RNF;Xt4ICl<8L4T`1r}k&pv+f
z@vD#Def%LEUKXkUo1Bj`{nN)^i5*Jf`>!27QUU4((VHnX0T4u~b`GLRm1L(N8pZMI
zWtSj&l1m|@>PwCHLF~_s0_+-KPJq(`>=vMLfCB^cmqL>OZ3DCm&{V-@0h$MBA>KMb
zn*c2Xv{JBUeDs)u#`)u&W?XOW1MJS&0NtgtM}STNItS>WAT>J%(Od0o#61Ia3D8aQ
zy#jO<VQ*v<FNk!Q2KT12?6X8Y0`v^fJHUQHbjCH#ZeOM9m6V<K`vmA4V1LP})-S*a
zJ_t}Se$nr*PEl7pD8Ru1#s@e$z<>aU1Q-=ybbvzx4CD+SU|10S<I*6`{4#!+EX1|S
z3LFwd)fhWDJitiB((DKk`gVALBUo^qRpvE_)6tQM&e#BB#E(iO9Ae|d<CWeq0VV`E
zIl$xq$4Y*DfJq_~11#nFPx1I#aDv=BF{r!qIw^^wZ&LzHRgnIi5@4G6Y<YfafSCbi
zNitnH<3Dv6Pf$db@wA}s4Zbr1oEhNi0M`VV8{n(}mj$?-9W21v0WJz~ae#9IoEzYL
z6`T(6MuT;79-B;$y~r<6UKa-7FpMknk^q-V7~dL?@uEI_MSv><_yGb%%@1G%Fay*o
zm=2H$qJ7A?571A(|7Znp0=QDJ6-zs;c@}}hV_R#UCl3P@0u-g04Uh|vSJ`QY?Zy54
zQh;)RtE52vN`PvduU<`Mrc~qe2u3XkaBYBF1KdUns@TN=mISyi!1VzZ2Dm{9dB;cP
z8v`s-kTnx;oAaWxG|A-_k!1mH3UG5!w<Ke#b5wQ96}v*XGKlUk2C4hq9^l>p_XSwR
zk)qhuN_$s;I~AmbRSi>j2e^lWT@PP)oSP3{?ho)lfJXy77U01E57E^o(RrkYm5O!s
zhzKu~aY<?C@c>UIHlGk-RXimUcg1G|tYL+O_+N<U0zA)IB}D%aF9dioK!XqsL%bB=
z<p5s<_%gsN0bUL8QGiVW)&^L|5f|WH8GJ3k8v))7@Opst%vX13@oe)};=|h_ot8!2
zfWHj^HYR=ey#VhA_#nWC)ae=ZsCeB%vZ;QGBPj0Sn*)3j;8QkSfGrw9Y+34T)f`2_
z-!|3f=fcl|Xywe+Lj1XmuL67>;MV}Z1^6bwx9muRQ$GawF2HvA_SH`{-;2;anj*43
ze+=+bfS&{W!Xcw9;*Lj!#vXnT@JE1Dh?+2(TK`n?e**j!;P1p#e3@YEj-;O;#7@$$
z7h-3TT|#gj+j(e|FGmVnwtg5*M{ylCl1`ftZA0uDVz&^DLo^A|LUJZ)D$*>ho8_8^
z(VjW|=OwtMqFRM$9Y$Y&nxP`_gh0Cx?L%}8(JjR8A@-13rw|=vgf=^dbvw6l<#!IT
zXNWFR+bgWw8RLlH=%AB(Qyya95WU!)YEl_K0tnF~1gDgqVe~9DUZU_WvUiC6Li7!>
zzcOMC_epZ(^JV7SPgxuwJX8z*Xbl$P;1FkrI48t_5Ql`A7~;5CC&cg&BSH)eF(|}g
zAqGo6G>p#X(I9_A<W<avg>|EKWQfD*VTiHP=Z)17Ax4E59pcCkV<cn}KG<c6NVru?
z94GnFA&wClFJwJT5ShkDz+trFWux;{Fz3wULre-WEySrIPLR&z5K}^&D1H)aQiKyM
zjkB*3ncY+gPZ7qF=^<u>m=ogk5Hmx}3Nc%;abJyf*xOJ0kMN8TXNBOA#WO?9m3%rs
zqoL6>F9g>)Jp8~F)VU$f3sF`poFC!>)>{ZC#DyU)VqJyEgt$1wB_S>kafR$$8sakc
z&!Khah?sl)fs`vl%nwm39hRMUvb>bUcX`w?LYRsoXMeE7*}GU?H-x8PUM<BA<A(@B
zgdwsaa*E>BmQy0@mdW`eDM(%nQKJ7NqDSW&PmZo270Ibn6}c+J)gspj7YO5eyDr4_
zA-)aqU5JGtZV2&mh*v_~7-CU~`$IesVsVHiAy$M~8AeOBrAmIY{9G2|CIz|Y$$W1S
z=WM)Og#Gr`5VwW6GsIm=OP6jBxq*N?q`=_nq&Jdx_Hno5_cGtsxJR7bkJ}V9exHIo
zZ26$b8sS4B9uDzHh(|*_72;{;64X4#5f|bK&Jx<%iZ9$xs(pFCc^*&xa5S-FhtVP=
zzUyc1yeK>u;(5;hvP{W~B5a+PMB>%#t19?gA>IzLHpIFRugUWI5N}BBbp`p!DV_<W
z5&qsxM&COj-VL!e#3$0+5aPWM?}yl^;KqHT@%4fDrVyJ$e8_oB^+O-xQhcmfs%>E%
z>T64kV(`-t+d_O9;;Rs!$$`(M$xhBD`yxrjKJ&GBZ0#HI_?g1?5Z{OBlSSVwehBd+
zXV)xRX7N*qpF{i;Vn>KyLi{S@e}(uhvH53+-$VSNAdk4PhU2cqiv2r`p3cPcXDW-D
zEE;6dFbia{Q#QI@)D!NUjhx&iTQ|?d-~6nvsQB1PqbzpKqDdA_CEP6=^@qkv6<-0F
zV>2b^eA`?)ENQ%QZk0vrEV^W|R~BuuXq&|zS#-#vT^8+$&7xHVJ&AqZJsaJ9$GoHL
zbQX5Xf>Q^#@Ak|_lV`jq(^XOXWYIl~ZgOewSfUxMM;1L5?48BFS@g=*^|aVHbEJp+
z$!BioQn-H>{jxYbizBi)Ad3UD7?Q=%Ec&yUvNI@)gR>Zr#i0ta2AJv)6@k{``E#J6
z;-ff+i4RU{l{&++7?H(D$%hN$&O_|oJL-F*vKTG-(ZVCM7@Ms-2sB2LqlEEbA16Lu
z$mTmHiwRjAo2@(MG*J~5uc(ic4j0TPWN~5^r)P0S7AL93re<+U7AK4IYoC)vrevdi
zGZt`~g0r%ioyDna0tIJeF;j#JJX%Ji|EDRtIf<Mf6J~K(KW9pEA&>EAF*l2|6r4vV
zvp82?oh`}z4O8c3alZHkS-i@5sYmo2nU-mU<YFHF&*I7~=4WxK)GilZCZqzlPp?S$
zmpxOp3D1b6g|tRZBjL6jSd_)$ESxOdEW9jywwDxwEJBfzFq=hA`m_+#OXXQ1^-_f_
ziYhpTtX^VS$|RL6s^V8AlB-3o$znkwxmHG~%-?lcTrc^;EN)-}=|5{IzcI1DB#Wh4
zY^F{Y%d)sBiwAiKKZ~2QxFw6#S=^b$@@(`nGJmVGSdqobEN+$Lwk&SXf-jTCvByq`
zT#bWwNP!YY-Ic}t^5O0*?#bd_McpR}6{sJldO#8e*~AZL@kkc0u*tG`G>gZwcqWTy
zrSNzbPiFCy_!G)~A-DZyGtT;lb0crpWbs@UFG<ee^I5!*#f#EscKpRz$DY5OBww4w
zx-8z#;vGp|%i{Gc)+c3rLoM}Y7H=u`-}1($-pyh|79V8sVHO*+crT0hlM=<b&^>C#
zsXmg0P5)7#e2aqgZCe&wHNeR~$>MHa2splyZ=8OX#plwDJKk4We9eh8huw1ch7%p<
z;aoJ4ekYwDh1(O$-;4Ypd?ugzDT|-8_(j2ZL@?p63jQVse$Pf<;{79wKSll${w@4R
zxI>uAMQZ%j<f5<plI%pn?I3xwi?E)sehv+C;0v=2bJ2}JBMDg$UWJ)8e~oi^Ttf0D
zIW*0oSq{w;$%-6W<j^vQRynlJ;rtvf$e~RRZF3lq!y!4elV<lEdgRbPhuw47BZm$W
zcFUooNSDM~C;A}1Cv#Em93Xoov0ZcjH(vIZa33LGKJA&qzBwGAV6Pl{i}V%lmqQ;B
z`X9e0GoVds|3uO+7kxRIYu5uM>7U3C%Hd#feyW8D56xj<4pVbDC5J&d9G1h;IUJM2
z;2ehJFh-g~g(Gt~JcnU949`W^S*9J4*o+(Wh#W>qGO%M^4UbmvNFmQxGs#inV{;fM
zLdkfxQN2_gJ0XYTbC{IFu}SPik>hfxUq4EIf`TUtPZXXcjNeF_EKap4xw>!8Ps`y{
z2~QVJ&tX=gGb4wY;#^=b34gP5I4y~tlZ)P0qVS9y&dg!1<Y(t_P7Y^@&lAS=z=@Pg
zRw|#H!+Da&Z#i9<!$mpxIRrUeoWmtK)GGE;A@wg4;hVFUCz2~fuFPS+NNgvaLna3!
z(Q$Gx#Vw&NjGMp}_k{5b9Ez7%9Fc4eIgz}OJ`_ZXx#)m8gOwbrIV?$Hugc+CHn)OT
z3$GC_NP6sbiRKL=*9#XWwRd9@yC{dn;`7xvmL~FLA~)r5v&bzuEKfX%r!Ts+lK%qC
zPLjjzNvb<VR^@Pq$ZFwIef#Jx@w<ih<Z!RZeK|as!$act3m-`Qr~QX>cvM32M?~UJ
zAw8A@kA6}3L=I2p@Kg>@=kT%=;&y)~hi4UBBYZ*lobY)e8|6ijmy#f@y^_PL3a-uJ
zH4zHeiO}rpIjk3dL-=McS}sz7KgPb3!@D^&Dqz<FHsr7|hc$UTm&bcKyq`n&JbL7#
z3Hbxg&pCW63m*zU%3+fTV>ibnhb<yog`Xs`pNeeD;WLrX6Zsc8e3|gCa`;-De<V$V
z-{r79hsMg9!S6X*#ec}*N2&dk!{0glBmQ#^zli)Q{7uMIzvu9W_@BbRg#VU(hl24e
zk&^KmA@bNsWM?7m?2<=4@%Sp%K)hidjq=!4yt!r)YVM{WPp~)1qiG(^6r_BwJeudx
zB9E4dWRE;riMJNE5w=ZY+ljQ#WA{X|Y*N%@9Te;+?371mkv$WgF8R7yw5ufDgnK8k
z`{e7|y=NZ#=JBZHz4GXt#}e`Vgcs#;aUOm0=$ps>dGwR;AYt4^56DLs#{-4^l_P@(
z=P@9UL-IH@k8>0?FpoiboFRT#9)m?r%VS6$L-ROMK_(oQ$LKtc%wu>SBk~xT$KiRN
zp2a9B@WzLq)9lb7T2_6~B{i@|4c|Z<lgCkcOvvNdJjUiRPUSjU`s4H9i+=p51+UJ0
zVTWyfOdfpefypQ4aa<mg@;D)n<MW7bm#FX&ui86yaHEN(TYGzy@T5FW&SP>OQ}Q@9
zkLh_#&Eu3jrX@b}opEk)^InqIecn*d$YW+6v+|gokM0?{dluinlXFvjFTUbYO3hK)
z(-RB4YdbUHb4AV)&dX!oqSV=W@G~s*nZI)-KQE8-MJ^CtC}b>m#V^U@(mb+x<np*I
zkIVBg^RU!jSL9JEP4=8CC7GYJV_Nb|9!AoFw8k1B+Ie`1eMiI<#skOCBgi96`cj-E
zpGP5&tMa&7n#DZIiG@;<wxT3e1>;oo>KgfTeI5()xR#zIsjibUo#E?6R9l$G4SC!s
z<wbccPI6}yP0=y_mMWH#Wg<7_adRHGus<kxM;@z1RtQ%LZ_VR25vIC5k5%IT-eugW
z;Qhk8^0+(Eyhr3-;eA40tZCtaJRVGR9?Ik4gg+t@n|&;g#}oMzc|0lpl<?_1p2_1`
zao$YPAb%v!=kY=wU*++29xp2P6X8pFyqw1?dA!QGI*<4BSewVXJl<9;)4nFMUif-4
zGf@79ByZ;NmIxh-R~ql+@vbBrgd2tNe-C{i&a|8I_)z>KA^$KpUixlkFwxnP$5!!m
zD#fSb+tjk3iGMEqLP(omim)BO$>ZBRY6{WihQIIf_(g7Sm%{hLAA~;&sq>S}{w!o4
z_*L@X^7uWEKg9nQ{we%R$W+YhA0^o#`zhtflK!b>JPO#UfSn82Me+uTKlMcF7jR~&
zu5}tp!r*QNG%jFaG4i}g0Zj`SD&DMs<^^0)z?B8GD4=BlV+$BpK&t{;7ci)R!wP6q
zK-&WLDWH1+?FwjLz}^h<<39!LA+lEi9Yi`6(7Aw)g=nVYk2?JAsi-bO3RwxUysISL
zgt3s=qkx_T98kc41?;P+zQSGw^cLB#fIcEL^6#^F^8F?3r>tZ9{Utf1fP)G+SUk>U
zfa-*v94a9zWMCoM7GSEuNllI@V2Jq8L^4cdxRA;t3piZ-hysoj86_N@*ra`09wXsV
z@`}On1sq+#^a5r`eoO(=L>M(e<k$ix7I2*S@dZp4nIt?xNX-*PP7<D6_`j9X6iKEQ
zaEb_Dh^8`srz%K)W)?83fU^piSHNru=Lo5DTB38h$Qi;j3z!=RlmDzdyMS{FxI{vx
zI=6re#Lr74=NG^iXX1P>Ea0L7E>;w4KK{E6MqMh&WvY|QRb5Onzku2T_Af^LiaO~6
zt}EdB0y0uI3NTetOTlXkunTYsaFx6$Q=T}J`yxRBp-5JkOJef{6vSB}R4$1#$FfL8
zSQTDXz||tx2p0(BRMh{UJYi2*D6&X+gOIT|iab;=wYY#K1uRwY$pW4dSysSJ1>9V~
zEd?wu;LZZ>DquyD_I8n#1>BlQZcAEuRU)}VWc7b)`|biBk?@`Z?k(WH0`4#1p+x_I
z0v;4+L(o0mVX+_&OTs%ozJ2*<qWM?>kBdK%NT~dD0naG-xA55lUM*m40c#SS=R}?_
z;02Kv3wWu3my_66M3{Aa8CqAsYXy8>z!wF)Uch?B7O<s&Hwt*OfQ<#bC;hjC?-uZO
z0q?N7x+ML%UTTA)V#)gjd{Dq9Nj?;QBxEsple@JNrP?gXih8MPz0}qu_Ok*$N%*HC
z+k|lk=0i^={IY<b3iw&_uL}6OfN#XV6@D-Lu7K?#tWqZ7?}q|@l!Wh%GWd%)$?qb+
z7Vw)$+!mDoQNW*x&R<DM|0!Tc0jVNtG*P!G0wUCJT*OXA>|DeyMbs;zVG)fKRbSYk
zh+`T=AAh4}T;aP)zFYDC>X5EBk+7+dn$3!6o^U$WvWQkiv@W7e5uJ<Jvxv5e?I3Jd
zMEfFk7vCdE73UQfs$&tIB>#7xp-U0ni|A3rUPW{*qFWJrbFfQ?8#r_z-gzL2tFdPh
zy^829g?)?Qi~Nk*Pr*J#^i9eVE5~=NROna40Yw}rwf;pMQpBM}9Hby)4;C39jQt!~
z#E>L*P!Wd}F<3#CCAJ)^4NG)}7cruUkwqL{#1TcDSj0(1j8g2_BF2e~F5*a$F-06z
zj4p+oXZWM3@sb}?!~~I}h5YaoKRE?%nHDjzh^0LFQ^fH_Oe*53REj6NPAGzJYVh-|
z+(TQg_j*{ClZ&`k$tM>vrHH9ToKl2agjdA0B2FzLQ;fbiH@%1%MVwc}`3lY~VonjK
z7coo0*}~I=?5os2gVn{ay-C90nMKSMr;x#UMVwuXJ_UA85$7g4jG{lW!UaWKR>b8+
zTv)_KMO>WdTp|)@ap`~f6-CTXbgmSko!Uf_{*R_1ZWdvQ*g{7bXYGsA$x0DH5ut)v
zVWEgz5}Ox^lN5_6DOgToDX%8{sv@oyzecz~7$;<T|EJ2oPIx{0fIb9wLlHL?u}H$@
z!o|WR!llAx!kdIQ3u)~Z5iV9&h^!ReD!ffdo!doL3GWbcP~26--9@}p#k*D9Q^dVR
zd{V}zW!zW9{YCs#!q25>$@f4JO-pE2!h=OTq_htg@nI1k74b+Bj~4M*5sw$~Y7uJ{
z`$Q4Xi#*9rSj5vsJfq+mU7+JZ@vJ2AFnKQFFBI{jbY9|^mGEUDlTee(crNDG74e#c
z8;W>c<V_*{TrcuQv2GRdRuOM&1id5qyT$)o?a<&x3EvaGU&IF@@m&n_+Em2mBEBu+
zJIWRHNfDnGu|=GDZ54_A-&Vwz3VxQveqO{E36FKYQt;~{zWM*<+l%<Kh`);XzK9=+
z_))RH6!ELbPeuGJ5?31Y{jG>UB>7!PNo=1Ae;4r&XY~^5m9RsxQ1ekIRYHw8_qTb4
z+9{FmEW-J!ehCdq*iFHPNo=E1U5)K3$-h1{R<KDD+g!nuOPE|jixOIv(5i&iB@8Oz
zuoBuN)(#eFTSB`M+Kbck-AmY`gbpQil%!V)ol58|&Vw|2iqQXVC3H#nULsxDIrY7-
zy%pT2gzhEu5bs&Sz9qyTzGGURZ6l8JBJ3@N{YvN~LP_5e_AjBIf(MjvP$ECDg#J|1
z6?r9B?A(OZMPz^!4iO$I94L%iVQ>k@D>$Ttp(P9}VR#8+OBh$e2+5BqVN?ktOE|m~
z&DHz}TYTXgUBZzi{&8vzd*B$3wH-UyQeAavJ4y+uIlhFW#V3|<ObHW8I95THB3^Is
zqocg3*-(=@PI4ZR<+I>PiOvZnoG5-$B4LA05odO%iA*iw6p?AdQ%jg$;`UB73Ct3b
z%oK?`!)$SueU8ZKiOv}%-bG?=31^isuY{E)+*-ofC7e@&UqT?Yb4$3igv-RwE8%>R
z3xpR6FA`oXyhIo;OD-3uCq@ZZh+iq3FRT@&g&84_GE&(Tw}iIP5xPQ87=IBuEFoLM
zb&}+SRbgIO5Eg|cVOdxa#(7;Oezou#;et3;_&*`1YkGBk2@6ZOL6T*{8-<I6i-k*s
zONDW&o5XJx-XdHsTp^4*>TM<5Uc!4NykEkq67DGBu@WAa!fN6DCEO`;m+)@kJ;Hm1
z_X)4ncf21Ee^B_4@L}O2!bgR1*`HuHF5%S@)|T*;<j)JA7Cs|<R=7s^oG@<L7sOu_
zz9f8E_=+(8FU57@ZwX%$zAjuZd_(xA@CYqp-xhyI_^xn+aHEhPa$zfcP{M~Ld@adG
z!cT>pgqwvQ3%3Zj3O^CX8${d0KNEf~{6hGp@GD__Yw(Tux5Dp)+lAi?e-QpCjEC4S
zCH%?`S&qiwZzcTBNuZ2l%J@S%6m~1)&l3Jp@NdrH(xm(!UIj`>DOe-iwG4>tl<4eS
z#x4o3S4RDWHxOx9MkA5#)1q49t9-=9Wi%<{T%P|_RNHcN)7`9$<{~YGl(a0PRl-}B
z(I(+MpVm$Z+n2F>8GDq`p^Pq)(0Io(_7v}wNII7hw`1qzlbCyz(N(eWq_;OMm(g94
zBZWPZv^~q%w~SupXn%&rdzZ0a8GXv=TgK2tXa6z|p#u$4{mM8%!UKf|m(gG3AR$j!
z@zX{F%F(KrriRx~9a_e~G6pGju#ob@%F$O-NcbC4jz0XtANjB{hL<ryY9ob5lyP`D
zdUJuX)EQOAXs)~3M&Hn8UT5fIr(?=EO3Gu)7+1!4@wivSW+zBO3zwB~Y#9?3Jg$t{
zWt=8{yl_$(CzNrb_({SkWt=QBSs2&P)G|&fW11v0gtUCB$n^iH%`9Wqzp<*=IqVN*
zoL9!_Wt^d?Gs`%ujCta7g>?JuB-J_P=s7!wL;R)a^CiDfc!BUzJ)OU(jEfb#Bo+$e
z>uijdmvKcISC%nfQHHQqm=@CiO!@!rTTKbAGHek?=n6d{^?i{*7?$hSKe;mUWfaON
zmT`L-tI8-zVVSU8Mx~6Z_yXZoLR!08<QgIG)UFlzUlMzr$n|9`6uCioqi~UMv2clS
zsgO3~FAU$ra!GPaB3~}DqKuWvSi7~1+Y-+DzoU%R(s{3pJIlDMj13CjEqp+DPZ{^J
zABr=txSsD<Fy;@I@lY8Lm+^>%&zJE+8IP9nm@<02j5U%!QO1*HJSF~&@M$T~X8ga{
z&z7TmTLw8-JSPQuNdBVu%Tj(xIuvq5yi&%iWvne@ofMex%`#pSe_gm<_=YeZBh-0I
z!MBC)2;UXPS#M1E`ywBd@uA2^!jH??B(hl;KPjNiEedWegMU24;I=Y8E92)1eyQN|
zGQMDEsGwTGmt}m#VOYVO3cfDm8<wbo?iGAn#&>1>Q^pS2*<Qx)BHs&t5dJ8n@t;I~
zF5?%GUlaLn<+`s}Q|Au}{}lcu{9DK}rYfkZVAl$Es{oZ~qOK?0Nw~9c7a^4y%U}Hp
z8c5Qxf<~37jpBA8Hm;ya1-n<UM+HqQXjVaUX~wl3TWC>1O9@+5(E2~IJo4S9g0>ZO
zVh66EeI@#MAf4yG?-4slvvUP|igcu!2%}=NT`K5WK{pBaszjsmU$5x%-jY+&qk^6l
z99hAb3ihp_m*hh#=q<9pa6e%mVP9dKMZXFTQ1C$EU}1mdbx;KdSEB3h0O29RLxlr{
zgM?H#OoRqw&q;<>Fsy>%6^y80q->5-tsX9ZgfMm>F41U7$d9UEYy~G)a8d>1Di~kE
zv5GqSKS_=epYR{a#0rj6@Oa@Q`5(9J2}x_7T)|}V8Pb^|oF<$q{Zo=ur>Z#975uj?
zW=eCGaJDe^{B-flDmbHpGsWjt_-#O(Q^8pZ(v5i{cXIQ;g7Yf4NWt@k7bZFvR6vD)
zl`oe365*wZ4((iC!4(x;DTz~oTfzJaYU!#ZrZ6KkgmEQX;`V<eUIl(7ddsF*L7?*H
zgrP7iWC2<Hym&!r>0T@>Nmy2WQh1euRDQ35t1Gysf&~>^Tfu!5+)tefu2b?mE4aRb
zg%#Xf!7UZsP{EBAELGH^#Qu^B7K_K8|C{5o3T~2|xx_WUyn>Y#+$!M;VJyF`f>jmV
zQNiv1DFu)J(O~CJsnrsa-=!pX3-1x$D~$7fpn?Z0c(#Hy6+BeI!-{&kf=5K?)e{vw
zD*jjnk0<pIdrN#$QBNgZ=otlL%g<Htd<E+&c&&mLB!9VrS1Nc>{H6bB($1?2uKkaY
zMqaOAeFbk-@OA}nDC$jNT>LnfcPe;S!VO8(zdd>5e<bf$@IeJ1s!l$t;1iKe6>P55
z{cq04l5i7pi^x{tpf;&bMQC$d1)uQ}px_sr{}VZNz7qdBk$fZaZ3W+nY_H(^3Vsm(
zN%*6XHu+Zt@m1#63VvfNSEE_z_X_@~;PfiasN&BG{^G<{#er4)UBN#Ubd=7H3Q|=x
zucAd2HIg(IGC8W)Nqpx-vWrN)D(Y9GS0Eb*Ng7tsDB-(Sv72~vZN$+|lPa1jAy<#h
zs&)USM0v|9+E&p{QLTing>8h~qo7XvDmo}gzPrdCLT*#X|IW~<iq4YkDeNQcBHXKr
zu2poaV()6S8t)+_*+-;%HQHfjkiVW)>{~^zDtaqwKViHF%UBZT-d8sFuSWm9(vLQE
zdaZvI2UT%=6_ctsxQYQ)465QVX&xdxR2c6T4y@L#WClw(yowPbLxe-C7$(BJ*da$&
zad;KSN^(RZKc<RN;-iH}3dg9nj}nd*juVa-9xZI6wwRFEiMKB%DtH{bht89qki<@_
z;zaS2syMld$>LL!*eN3P@RUTtL3C;r(-oXi#q2~rvx->>r~YZ;bA)_K%b|K^6?3a7
zR8g$rtSaVJ;Z)&D;p{3hBIi_bZWZTMaeft-RB>q)7f8-tcTp7=inCwwHi43hRah41
zvMMfD)ch*0sA2>E_EACB?Po1hsd`c8sjVWd7U5P{o4r$AJEjcjn2Dw(VhiK#6i+-5
z`a+f~6v+y6LgtcBVoOz&#g|o4iG@{MCsM8Asw%Fo;u;076*BFDYTb&FJidLqzKTVP
zU6|<HP{oZ2AMQr|b8!{_kF7TW+iD8C$DemKmu5{QD$%4wh=`PuQc;m;phQwMp^^p-
zhN#|Wo}cp!=XpvA6_rRCnn)BP#U~=73`v9D-#Y8OyU%z1|JQY{b*;Vjz3+XWz4zH?
zJ||@qON9MGJtLkiMoz>Q=7kKN28)Zaq!=$1V`(uq7h{XEmKEdeVyrL5%f(nO<&|Qr
zEXJy0ysG4D!WBaI?S|LI*9hMb()nsL=GPYEO^NG@@s`OwGTI4%6W2RNdAArF4Bsfi
zAm1~}`yw9{W0T2ZaV}ex+#%d1{ID1wi7<D2F+MgtQQq^3;hz>`r{TMb@tNVY+08B}
z#$R3>_2R2y?BQB?5%xNh>et0MSd5=#yjQrd7~hC|ODx8B;<Ws+82iP)FUAid2ZV03
zyZDn7&UL>O<4`d=d2ziLze>E+i*{c8R*b{NI8t2t#6l}CelNx!#rRV;M~m?{JC4Wy
z#m?_RS?RH2{8Nm^UT4NTUW^l(%FgxTq{vxbRQ2K%cLBvXU5t`ql=Y&V7arL|Sftf-
z=RIN>uQN~5b9pZ+cu~oV$};1uSkVyjDu$maSj~&-UYsMHVht~9dvUfGHNB`MpA=o=
zI$qS3Sp(_xR?mz2Qdl*UXMDPx$%e{3&x=MT+Vj1*K%#5Y#EYg%UMOrKY$m+Oi;GpN
zxsqp`w^Y(y+14_+#EUi}ZG~(EcbmFQ$qrszF4A6jh44z@Rl+m&S1Wmq7afg$tryoB
z&XI6~7oEMB?8Ou>Zj|2B<aY6*tN2aAZeDa3x!H>zUfd$i$8PyVu6q;QovC_BztxN0
zUi9&zuabkjxLf2lFK!p<C+sg|v;#!$pj$rwBOK_(T_SW&@g6S*doe*~Lrkgry%_4n
zFeUF54)@|d5qFT&^9YVQodu8d;sGxn^kS43V`cM@@L}O-p?i&&rN(%jFA3D(9eI!E
z5icH9?l>>Td!27F(ZIEwD1DL_k9qO9IJ2HGt~ef;<TBNZ=OsSr#WXLT5})bCERpHL
z8A68rv<OQ*<Hc+*<|sMWi+Lj4-7t$k)aJFRXN~1^-qQX1d@o+`;zj8TyjbXU-llP9
z=|x`nq!$alLib3<FCGxmc~FFVtB4m-&IwA!yoh_TPds5PKlUQ&Mam0H%5pDW@gi+<
zGhSr9$a!H)$qUc4a6!q%UMw;8FL|+4e3|fNqw{Lgt6se3#U?K{OI+c_+a`CV7pn|^
z-HSKGS9`&a^Q;lB6}~B4CwxoDXGmzn^<D49JI2EXk&RxwYn1my-WPr#bbn;CMf^iA
zwu)>M^3o_Bek8tK$l$q`*&+Uk7oU2uQ=Dddyx3*<XI^|R{)KS2(ZA$gz;Jhu{IwT*
z+2D$tv-dY%d`kn_{3!fRxL^3a@CPAlJRrg`_LET#iu~-wFCvGG&WBZgGyJd@M-2a6
z<PYJWX4L)d#W8LpK8*9}7JwJ$iyZgj1m}Ml!-q0HoHBm?_2RVQB_bXlid2em^1@45
z@v25CCsJNm!H0@IRPv#+l2v>-%U626g{#JS(w!=+`B2@58nQXthdMsg6sP}MBDH;`
z$Deh5sOQ6ZK4(u?--iauJ=ceGq_{p=if(Dp(1?wEr5hdf3w&toLlYmGs_XzCE;Mzu
z_Mw^K7l~Z#LvtTmh`02il`D?){8q<PyQedLF7cs_4{d$8)Q6jW=plo4K6DbH!DT*N
z?n8SeukfLR(XaI3Dsje4v#Z6gF}WQ@t`%OV7NZT9>wUOEVrSuv!Y)2^6}ib+cJraT
z;jaH%WN^E%r;y%yiQMW#Z;?L2z9#oJ<Ds8X`is!v9X{OY!$39fFdy#q;VvHr`Ea)s
zdLH7#J>r8+7qB~qij%Mx?(<=|52Ji|$cGU|f53<P#YdWo=;}c!ZikLGmSaR77BU|C
z94r2akjCSEn80!3M<YKb%G(SdX8JJ6hsTtBTsX~#C)lkeC6k3yI0(55P}Y+^=f{gY
zUvM85eaeUF(isxZjAr@pGzYWa*@$LKPxz4ZVU7=TeVFINGrrQdIG;78o)>wJTbA~5
z^L=>1hZlWV;6uQNpbrauSmbk#qxeDuuTd9sQ1O|6AG|*J=(dg{x)Y0g?~?nhkPlHG
zVm^d@h!`99*oMX=aXDd-<S8F4*6zc<iX`nrmc@&m;g>NjnNybSL*9pi4~u=+=fgKX
zEb-wbAKvz1y$?%e{HhPH`LIm<W#MukUQuzjKYjAOk`+Fz^x;j3tAua(u-b>$WltNo
zTh}PLRvRf5S7h!wAKp?aa`y5&K5Xz|yAL1xuu(-e`LNlCcYS!zhxet>>;psGFt!*E
z+oW$bxgYxQk<a-%%$XWVcKGm#51%R$4yv6#?DFADAHMS8Gao+p;R_#jYr9~s8^0SZ
zldO7=4`0jwUgN>Fafj%)jKqgyisw5Y_KW=K!}mV?;KM;5ewK1T_@j^o>ES06^DjOe
z^5J(Se-$3~;fUh-&4*eFiT3=Eh+E?y3WFczp!k>UkIL=erm3m_BZcHRM=Y=Z`*6}I
zT(#3alqgxz506HB89&O36!`%WmgTW!Iq?d@^1^*OBcKx+aH%A*vapJfrK<W-&5!Cz
z(&lVGYWPu8$y$EYHoDsm#5#V|l~~V@b4+f1kp@CO{C2L<8~PC_?_n6{`*DFEZ~5`I
zvKk8~_|e3VrhZ)LM>9We_M?X%7x{6qA6NQul^@OhXyHd&KQ8s7rHWi4Y~@F5f9Vdz
z4XllHa;|JU@yq>a?|1femkC`nw<)erS(kV4<2pY&`Ej)$*Qj7eKdu#V4Tvmzy&pID
z(bbQe{OIh*jWXyW&u-iD4`MXq(oI<uyNgh9{oLY5Pd|qEG1QM<e%$IuKR^2W(c9Sf
z^`p;!0=vzR+vVRK*z_~Nk30Oh%a1{9B_8?vG0+5XCe*wAxJM2LoAz<zXK{u!%#VBh
zc*u{@e%$BBa6d-+@qp|{2=A9e7I7Uu=*K82EY5|My86R@jPc_UKOR-7u|l^ZH(K&>
zevDU~ZdukoQOQYuJSKbUkBczt2|p(LF~yImemv>NO6k*BwI4A*;(kn*5*5zyW2VR~
zKc4gBdGV+HnC-_LKjtb)pU?O)&v0Icr1GpEE}1WVp&yI<c){4bD6)VJSlux$R?^P_
zEaDaVOfC(AQo?L!5w}!CoViT8Pm(00EEXn(DWT;@+K-I5Eo7;zA34L_%YAu23Q{<k
z(_o1oFDbdyk5`T5GLe^s%l&vo#O)~-dCiX%Qe20t#Q6`q*Zp`yoHnan(T}x8dDD+|
z;?L-DyY=Givd{f^$Bzw4ZuDcTAKNt2-u2@>iSPUIfygF5Hv6%~U-~qxd!d+7aenyF
zkB|KLRA$?S9}C@>cZf5pPs|wJX_Q@ld?xO$%NOFi{rJ+4ul(5K#|b}9`th|Nd;R!B
zx%*7n1AcsC__rkD-wF2%zxU$@5w0em+;~wB@%|{~CqE8~{OrdsejF12&5y$(zY4j3
zXUs?Z`29agid_Db@|W<a@NXgQkNNSB_;I0oS%dm1B}@GH*N@ZUjOt9EdIBg4IQtYX
z6w3xsE`W~{*pWc_04fA<Uj)M=s2D({0Gfx;B818TR0-f<06zzCRsdB42nP@epjrUc
z1N?F<ItEZ9fSLi+51>H+wT%BdBDDiJ+bD-G^wbrvXB6&7&I#aLB`+2>6gCo`CuFJf
zMJ^CB^2Q=f0%&TK3j=6o_(fb1^Id}G0kjC9rLtND&{m|i@DgL+Cg41*PPdmDrCk7*
z8Gd;H?ZvMUUMajv*g?pGR|l|7&qQ4tz;yxi3!uNUItgzL;Q9b=2%vKSH%jRt>>}(I
zKv$8QglBrHyOKBmN4!P6r?8ihJ<HmA2hc~!zQWstw+op|hXVq*BY=kk7$fn{03H+>
z7{FZt3<}`x0PdG^PXL1hxR=8q;M@Qj62Q;^h6RwV=HXZ0-P;QE`AZq+Q?bJX7@<<>
zZAJX_T=z206(r`44B!Fj<h)unO8g<=XraZwM-_R-2JlD#PX{nt;-djP5x`{eaRH1E
zU_t;B1DF)RV*xz=pFU;T+5Mg8W8K61DFIAXDIP66De_bR(?zBUhhO5f(u@FRDoM_E
z<L+iw0A2+=CxE#DJQu+80n7{FnE;+OmTq^r?d-l3KR<wl%6%c=93;Fb&Tqdg2!Ovb
zB%%LB0cSs3Ec6E86QSY{AYgb<BouItMwk^1ASPGqgz*4!A_-wqm<qrWaaTMoo?-8Z
z&<}6v+T!^D3IQw@UnOKzOGI8`y^TCe16UTo%Zg#S@HMT@D*?Q!BtzndG+Amz04t5c
zXZBtX;Ee!Q%hg)p8spz>t2gC`1-ZNxz}o?=m%%#$d>z2v05$}$QOdi*59Iv40Nz)U
zPPi7E#OYyk09!bEn|iiN*(UrjfR6&$&WS64&jR>7fE@wngp13k0em9PBCfJi$z4Kj
z=3f}gF9X>9e=WaKa*wfO?fX>Sj{$sR;`!Dk0emO2U--T72jKxB%TB83`AM9&8<_kh
zfJ2-mg7`3qUjz6pfVDwqkQ_Gl4+L=}fZqf7BY;0S{RUAvh`$0jDuW6^XVU&#{9oZQ
z;XlIT!V|)i!czfM)Q9^{2T&4#N5#tvi-hzBkut)v!g4}(L3w>MmNpfG&LAhL62w_S
z)Ci(x5LJVyCd=w3mj*O*H<Mb*qB4?e)Z9}$h_i#J6GYu0>IKm;h-+m~KZs^*fgl<L
zaZV8D2GKBx3xa5@-1CBH6vX*K=a|ZM%kAAggQn*uK{O5G!eHt7I2GO^bl>B<IEdy!
zv<~7D`Dr0+6+}xJ`_0>|{JKJ$Ale3TMG#j8acL0kg19`0_OicB$di2@JFPZf_u{8!
zSkYBMbO_?=Ag+-Ozh%8uJ{cRoe8SJ;_nP6kE{IM++!4f`L0lii4MFq>;uhI=4x&pC
zUBzz<I#<T{>6n{>=oUoxAZ`wVzxZS=43EfP782bS=ov(>Ao>Pzo66oAMDHN_sQp<Z
zSD&rq9^2d=M86>V2QfgFJPdQ6++Jim-uQ)E;=my83gW&Xh6gc7X7>a!Smf>?ScG8=
z31Vmv!-BY%>(bQuSs@E@3*xsacmbBx@#-ZTXGE~{dqK>-Umo1xc|H8WAVvl8P!OYo
zC<L)sxh(i_5M#v02Jwgp%Tj+dh;d4e4`M<P6UEuBlSHNmF(Zh_#2*(v5ya#mrm*`s
z{G`y&RFNlxm?r(qJiy3j1~Ds$Vi`Owd`>u9I7c{FIFF4GbiUxq(`qiy2A%V3cJcE;
z%$LCn9Gslz#a|RI2x6f`#=sk<%;jOcHwd3{{Xs;7h=~V;!5~5+;UFSGl)Ko&f3R{{
zSKAX0Iy>J~5S9!QK_sQHm#L?Na4mBZGs3K}dTYmtErYy}-WU(J%_Tv+6vWaXmdWSq
z!j~C?_CCv%d?koigLqAxrB;fp5OQd(5?Q2cr_6mLh}A)?;ULlcMn4qa3}RgnZy668
zI5rGlFY=C%@oWs@-5}lz;{71D7@H4**c8NOMMZD5DmV`YyPlccYRYoj{7Afd2-}1B
zIEWoVd=kXJL7bNUDQC_gjs~$ah+RQ^7R2Y=V0HiW3mNPdaz98{T)qtAt04AB{5ptV
zMD_-;Pvn~*eh^^{-;xCJos#>5_+I472A(iKpL>zh0tcl07{pH^2ZQ)ogfAaWFDY@~
zRHE4-iN6Ye3*s=RO7Y)=pxGbnDcO_%Da9@Lw``6Jj|u+~vWZTJ(DO-7bcTOC*9oa4
zi1Hy+2*DFVQ3wb*yAt<crc4NBm2`Jf<wF1aG-*X1`G-(Nxs^ht*GyQDb)6-#s<4`n
zI*&<eh}R6ERtUAl8-{RR2xl9cIw8~zp`McUg$+W^TgEJYj*{mJ-8XqDHd69@p}QNp
zAcV$BHVL6=2p5XGBcz!)OI;Mg#fEcmwhW<F2>CDyVYCk6k`TTR;fD~~gwQsGS3-DI
z#+QcBU8J2UdszsVhtNKRD?+$ZV&@R9GP&1_bO_;Uk!yq<h1Uuh$#o&;1D>5i_(Z=I
zzCq3CMth@dx(GP}yM}O6$T=S1(k<ldb4hMiZjTUd38AO)*(ZcvhTj@OZyCFd!y5Z4
z>$VVX520TO{X-ZK!t@Ykgm6a)cZP6(2qR@PFoeM&3<=?`5C%!PTX;{%nTz;YIi5r9
z+Fx|2l4ocL_l9s^2*YH+Tvo(ocnBk;kaKQq_oVaD&IdwxFocOAObTIC2oHrYHiSn)
z7%j_(Ll{E?J&(j!Et*&HxI2qSLl_srcsGFR9==uK&MFf^&h*053O+XcSO|}YoQd(t
z5S|EOatKpGn94EG(us$^_#|?1A6B8;X>6GgI%;(B?2Ml$ni;~Z5E3CILwGub*&!?p
zVNnQkLYN!Eb0It*!n_ck3E^2q;=iNRC%w6G&JW>*5MB&nfehSBD_os5hdqll4RX#e
z4#CTg4j~+ZF9d%Gfe?Zr@bG}$<eD)~_kt4LMnZ^&5DOu$mZy!|K5m~*tmHh)lnTKL
zVQ~mcLP)FXTnKgunGmw9OCMiaz0<S4q$D45c1#7?aHO$cScUuff|n$|9KzBNmT^L;
z@4RE;*2Q?1E0?csy(aR8aD|Y$D@9fbUl-E(>JZk5uMOcNPQ~JHYCx{z$XAkO-xgUP
z!aE`xLf9zsZU~!=&3hv63qKHU5;DRqB3p&qgdYmIYIOdw_~#*fA+m$pnh3K#4PmGF
zE~9)V!t=-7A$%FacS?RG+#}?_*GH#3UyIYj-VpW~{!Iwqy4)!4hP<C+Oi#NV2;oO=
zs$ujD<EIb~hHxx|e>h|C`wzn3g};PwNaR-`bAJ;#9KsPTMLfvV@<#}N8k@gFj)w5J
z2tVLMo8uvz2%%;ewZhJnev;FB7!W@d!oQ01bO<FPp78(9?e5qs6GnwFD$2fW80AFh
zr+m0{3#}AJWr@{=Rl=w$a+a~=;HhRfM`;al5<00J#@S&s3*(|N>V#2OSxv*J7e@Us
z&I_Ya7!4$zD?CTYCgr@>P@GP#)s6o1m251$APo29m$^-(FnJ+s(YDXx7l+Y2jFw@v
z3ZsQ|W^q&ELekoJzA21L!e|pl+b}K-JF`kxWzhpqKii347RKdav=8HoFs_txgYc>_
zI)-s=7#+g6I_&)A?HcY}^hZB#dbe@fml-4M6n6euM&<gjvsIGtbJLxbdt(?~!kDPp
zX<&H|PfXn5)GdteVcZ;c{`|;*d&t;r7I#AE6~>S-hB9VTOYboHgwdBRBjt`T?hNDh
zF#3g^y>@?z1Hz@}ac(V)ZD1IK!nj+xcL|xr<(@DGn<Q(bLL3&xy<v<D;{j#e7smY}
z^fO#!gz-;>$7~OVF)EBl!gy4<4++NzM~CsS=@)Kpv>z*-6^#>_7{(-#@nK95p^fwX
zH^Zld@woUCVN7OIXyRq1d=+u3^e2VW7*ZJ1RacNr5yp%#W`;2<jHhKVUs<!mct*)N
zO3pR0&C?pO3%EQh@wqUbmn9Xp$qQk;7{&rA#bJ0w7RqvwkTyOM#vf3wUp>O&Tv=jR
zxg?fIB#fv?Oc)O%5k^u2jAJYncK-WG!iB%@WT~{wGV+`i=7hG8RV)r;Nf-yh_%V!^
zB)ZQvEe&H?7%zvhJdCfTzY@l)VZ0Z{`%1nR#_M6cA-+PmQn<?W@@gg52)UYE!L?z$
zspPsa-W7RE;W5s)Mb?M$j!`y<Y&5NLW*_uH7@vgkX&9U2VRIN;M7D;pLxdG=6ZtTV
zkBqXN8;jw*N8rY@Q_gpV@tLybm-l=wvfEgGVb<kKDQqq}-y{BY7<<FmXDs)J@l6=t
zGHI0WMBK1h<M&4YLBxId>L*SP5nL0&!7zRf<CicFaT18&f(U*M<2TNV5!8*~u!{T{
z#$RC^F@Am*`9rI~>4<?Hm2!3je~YkHkA?A17{|jnA?0Kkr?f4+RZ{YA7^lN18$r1U
zm@Lu!=82#xugLM^&ymvW|A?TBMEZ9ROUg%3B~m*1SKwWMi1YU!=2nWJas(q439k&C
z6>%oasu5I+pn3!~lvO)|nh{t$Ym1a##Nd9GNq(<@1?h(^%yp?3LH!8MiQrs?(IE1_
zXBNDE+fbt07w3sL5^{ZAv2g?~BWM*t6X{JOxbQzknniGtl8pIck><h{#-?=ymqgGm
zg3BV#eAve5ZAC5>vMe`~%MHI$q`mM8VgE{=t4wYO)~Nr9bTrC<2(FFbx(GT&aJ_PG
zjo=0mT6PubtlDqXx_1#W>!t|0MbKRaJtDY8<mQNT4UM^6dPdMoBAdchxC$h_Bj^)B
zUuE4U>=(i9|JSm=lC-}gf;%G^sAvZZ?-C9Y-YvXG=)UJTM0}`_Ei+8yULg;_MnrIb
z1dqk=cnl*Wcp!pE6wxRij9^p*H$~AciiaW?9l>W2d>+BW5sZo8*$AGCV65>uP2`aX
z9u*m9^zji)5T6*qB-SF%4;)Pqd0hB}aI%n308Z5i<fwZx;(YapgfTxA!E_mr&xl~A
z_$;G59l>nzIl{TZdBSIeZaX|5!F(k*3SSV0B6u-^1>y^ZLE$2`cCpYa^hMwo2?*H{
z>_j3%3bWBvDk|I{j71QSAQ3?_f>Z>nCDPc6;ME9Tiy$3ACW34PIc2>ZfgM3Uf~86p
zB3K;3k_cW>(!BuaUQXl_r@TtZt#X<1$w-z*@Ct{Yd*f1<j9Ax-2v*5vrLm-+*CTi%
z0{3i)HXH+Ml)E;9H$~P(uwLY?2;Po3ziOfx7xx1T??k`=T!r<%8^L=Kyf6DtgdYeu
z2{#LAyhUWIa9ac)ihN{pw~Kr%+z~1L_V}kJcV`5<4Ce^>!tmcC*d4)_N`4i=4-p&?
z-y{55xHp1*5quNDx9T-+YfhJme<$28{NChpjTr5Z5&Wd$<g`C1{<E+lZv;eeNc>mf
zZ$erg=9X?aXU;z&_%njPA~+gBQ51;cZ`E=lf|C&(6aPneT*#{3IpI_UB~qCDSLAdA
zUzj<>6D_^AP$r79QB;efdKBfNC?9p^vC6^<!iqx1PrZ`iRiZd6>g+yPT~&$9b*rus
zMeQigj-sXvY6;yDPWw7C?h-{^>Gh(hA4P*G&WWO36qiMDZWIlpxG;)lQJfb=qbM57
z(tQ@<{3tF^lKWiuc&|wmO{30khzbX`yDz>didIpyj^g4dnn!W6$kQU~jMbJ==kR+C
zug>wF4xjvtI+v{5MA0_toR#mb=DF03_GxF;Xm*mHeU74i6xT*^T@+VDorBD)qUaFC
zm9nH6-CiBVHBoeAs1-duuJ$w<>s$ai^Ch27#`1<Jt~Z?Zb{4-;n9`LEwqaM(!rh~|
zIf@BUOq4;7C`O3fBJ3&b#T6In9mTy-+$Y{g*f)yXqPRVZeo^#~Vz5L;H6V(CQQW2E
z9l|?>M|9D0koY}O+%3XmX%=w@^AIURg~No*a$9@2lKag!?x^1%#YkiGfXIWwQQQj{
zeYD8KQH&88D||%wsBoNcypTS5(|J-9k16Sk;&G!t6U7talcSg-GBt|1CilrGrg5k%
zIX#NmA~T|xDKbl20i8c>>^V^97|s=+XZXZAo@b+YE{f-+ydaz}WEMTVXe<{*u`r6C
zcqnC*ViB*9{{12WlN%HX3B$tn^E|OA;@l8oI4_1o6v-&oM6ouClqvO66qb0}C>fD#
z6gi{VB6(pUip5bZiQ-?KCGp2wyi>n4ie<`uIf_@KcrA+MrtB-x(&MoeQLK#O^(fwm
zVwJ=*+cL>&V^7{&2Pbbvu}<QVDBj}s6~&e)wnnkuOgQgF@s0-h2H{5GyFzyY;a2dz
zk{<{+2{#K_%eE*!6#t(nK8j*{6kkNKJBp8^*dcva6rXTo=aZjG(&wk9EIrc$@iQr(
z8~sZK{8bctjPkX}z9_zlVy`&6*bUFcZ&~9#PQQN_#r`P1kKzY*dK3p`d_WFq`6C<F
z6lA?WNAXJ(htw2oE*Aeair=C*tcLxsf5!QH6n{kVr(9Kzp-Rk|l>SokDE9&)^m#0b
zf1)@Z#R*Py63fc+R1_sjvedsKr-l3{nkR-L*&v28BDM9^1qR^WJS``&d<+#tDhewJ
z-S3{A6+=}e>j+t}S`5|2YY1y{+-juNQj#&$7CBq!o@LaHp`McUW6n;efso{!7|s=U
zJF8I)=gVwV3>U=ESiF_6iLjZlX$%*NurAKM7l~giY;N=xF|;(CF}IH4k{H^=&^CrE
zVz@Hqe1(R^FO8vH441{6T_kT85-DCDL;IN1o8%|mFTcfbKM!|f=n%uzF<cWvM>)Sc
zhHFhN*T-;O44q;)RZ=o-rDu`$DL2H>Ifff!=n_NU7;cks*BH9TaI^SLF?198>QSfD
zd&F={47bM6TVhXPuUP2`+L`O{?rhvAR(d7m_89ufa$pSoMeY#N;eeQPZJ&h8oyMO0
zt{4W%W`VNqQ7;URVTj1k816HDG%SXD#o3HphKr9dxl|rd>(S?fG4Ns+74|HV%0sGR
zbPNy2Fh+c=aJ=x57#<bjPY}k%@P)aaKSAQe7$%9hEBizYlVeyP$2)OMiD7CC%i>Op
zJt>>#Vt77=Y2r`CFg=DDG0aqQZVa<TW(!&5X%R*^C+19j?rU80Bt8?vvl40M4hE9>
zj4g)UF}x7Ni!m&SVIgf|2&>4V7>Z-?8lOH9mhy|xNx&$<7!Eb{aEZhajo~xtF<~Z#
zYz%R3N=hb$JOW9HSi-cho~|Fd&C6PHG1xIo?C8nIP>5l13`=6z7Q=@zycEOI7~YEE
zZ53P=!^#*|#qe?r%VT&Y1|A9UF3D>g>TFE+?Fn9muIO12b1ph@$MJd$Z^W=BhP5&0
zn~H9wt7D)IFJST>=$kRD<GMHWaA7dn&JM1R;hh*ZsnQKGY!rEq+eMwy?dx4BEb@K~
zABbn~aULyjk4!d8*%HH6MaVD?@?MWAvLlA=F??)BvO6|d=_fJge*LF0?3Cp-VeDcb
zX)T!hx#`m{WB4kDr!{h@?}=e=4Et2%Ycq_$iQ(HAzK`Jt>M?w$-2En(rQCM#^OQ=j
zV;qR##~6N+nLB0<#_)3tzp%TxImgj6j$dQ=Erw=sTolJ)u2&2d<EW%Cevjeb7*5CV
zM+|?;$zL%Xi{T&fqr$(nzV6B%kKv?5Msh-g4SPzYhIxImBnHG$M*cm*A|YqvvLfY$
z<%I6@Ar-{kBW-%F97okSs>M-7`dLCZfa-D7h@(Lq=fqJ{dR<|yIBJWW9Y-Az`k_Pj
zh`pW^Mp!@YyaCFrbK__zv9a*HIL<ev8pTVW#JE6;d*7#tc+)s8jF--PZaf#q(L9dp
z<G3M?7ICzU<62p^ilcQL?c=yY$xDQn#nC2?w&It@(N2WHuno_&-sN#;T3}aRX>zZQ
z<El71s9tw<ScJ<padc##inGXdvhQR{QRyt+U3jC>yTs8|{H8d%sV;hON6yXCdl*Zu
zU@!5z<G3e|TjS^*N1r(Q#xc;?+!jZF!*3VqCuHpdMDB>=&bYIKb61LC-(~CviEzg^
zIF2E4jEiGD*HPkV;jlRF6}c~t2SkR)F+$}2I7W)lAw8d2g$Lsp6~{x$V(+_sM4N}>
z7-Q_m#_>oTk1FXta>Fj35XZzgrc0b8oD#=Wk;jCO$MHlQlm9=x@MIj*xPn?oR&=Ju
zj-5O+RFL9Kky&i;`W~KN%#LGD9CPEC7stXl7RB*Q9M8(;1>tkT`Egh!CC|sf!wfp%
z(<9r}*DuDgK>hCS>5Aj<#*v648HX<pKl?O}F#C&l0pbX<@2WeM(gVLYUbU4cLWkT6
z;)utce`e8)4R}5uuhL_yL&`XoDOMdvK8`{h={PcR<l?Y7m@9ZX=#PF`j%0pJiI0r&
z3|D(w9?~q1V@Vt@#j%vDX8xz(UVd?3_nxg=buY)UTr0?mUJ-dUj@OK`B94{ftKxWF
z<c&Dq6j?1?BV^gNap#^g$vP=-3Ewuk?9&Z#Y-IB$P@Hgf*6+q~V**_gcrT9kW%fZF
zAIGsnd{Z2o<Jcm;HI9$s*e<?J_@Qv%Y^OR7X1C=(iR05au9NefGWeD#vP<|GyQz`q
z^Ekdxa!g6dZjM7f|0Db=jy)n@3-=2532F0<x|rlUZKSOCl$8B(d@pZQeu(2h96!eK
zQyd55_#=)#<M=s_U*b3-n?s!Z<M@r!zLNjH*X4dU-Z%{YisNV;|HN@z;@@!`Gr8^%
zay^`g<D}8u3nr%;75y8>={QQ_@Tfs9OQ0wLBydgw=SnG)Kv@w+&d0jSiI-2HLIM>N
zsH9}=1S%&`C4p*6o|SNJBDnjAs^U)B@}BAm)Q~~Vgfq@-iJzJ6&rYC@l)4Gj7h$P-
z31{A>F_#93(qr0&37nTen*`d*tWg3NE9-nEFAz3PpovJ+1e%G^+l2`*493Rgq6FLs
zo15Gg3A7Y%l|btRF8R+|xTQEtTq=Whs*WMiC&kMXXisl^S|fq0MXnT5xhjDU;_h^J
zjd(|sdu^ih57C`W4A+a?AcM|Aj@zy#_l^W^N}yW;-Hp;i<Ypn?lDH*-o-EbK(~B*f
zKyPt|!8qxMOP>V#%J??p;dYUJ!u|;i5Mi6M$ejrcRPwF_h9@vWd{6>+i_qX6k--TJ
zG0ISpVF}!8l=~9SeuT#NConRB=Ms26fd`cPpwP`7CH|0bbb`PA!k7fcCh$Z8lM{F(
zfk%}!DS>e!6NGd-Uc?P}Vxsg}-^V0AF6947X*MN+sR_)H@?-+j5}1*|OeLR6V7dq&
zT&Jb`!(x(I2|S&^Y-PEJ6K<&N%DD;5lm1Ks&x*KvkTd5^^AmU>fftp<QVUEYxQBlW
z6X-g?d34H~fG+_%fqVjf8OMaIJs=Vkh7t%HJt7iy^&(GPB#}Teft0byCSZxDjgk>z
z<n)|NlwQ3lB(PXx?DYhe7|T}@cu9PzaGCIB;c^WpdZ3?IrI5dtzzXq|!c|76%^L}<
zR&q@O?{WecUz@<2BI^{!TM4|a7}!c2sO$NX(VU`pWUxWFQMkR5=lujeNMKt6A11I#
z;%1@SDO==is}x4X{`$x*DCEy^D01OXxIRhXQ*Ih*^hrDWmz@cGmB1dE?Gk<_{5*j#
zL};@+fiDf`R`zuQdlUFBiTz3JOW>OX1|@NK65rA$fj<)XQ^wyV@QW$6U*!7)eh@j3
zz>gw72@jg#@w1Yw(Os!SO8zSRErG)#M~uzyBDDM~fuo#$lQ=8stkK`n%O!CvfqxP>
zuH?T7oKE0`_(|a@p*ti>#90<ec;uu==!QYPjFM%AZjtgyR8W$+6_cnW&MC2SvUGc|
znnblEE=;0X64jH=^vI=t5;c;jnM5s_)sbFXc(#zvS!rGIdP(pP>{NJ~)*y*<B%Yf@
zqa@B3Z<xe+B8-7%^nZbpO@xh;&N!#Y+@@0K`JyB)PNIvVZJtC6k<P-FNn9?{O0l&T
zUXnzcB-*MtU0s&MrP9gU8UN(;++Jm`5VFQAlej904oY5~L`RWpgl<&V%I9^-(u=O0
zlDOWKy+KvDD|Mr4A@7>RO-Xc1qPxkxSswZbd#LO!;ys0os#g-X8s6JP+t<``o5<}+
z^b_fC^Z`lSA%15P14YJF^4uljUJ1NMd}$KPk{B$`@P;HYG>KtK-kU@?iHP`p!r@7b
zNaFq^Mket<5_6N7$IdlnrzSBfiHDLHoy5aQj89^Mvc_<;>g5@mbe?l&6<i*X{-|)A
zS)+-@&*Mo<5`RqSj@~E4Ckv;jHQe@pQVM-eV|yksUC9|qJZ<!uBC}NcbbbXw$vHyz
zLF;Fdcvi_pNj#Ut^GPgJa=wtBUle&EiJQ|-{0o$H|1`k~jY_c;ZxTKcKi5cvSpktC
z*Qk<b8GpFktF#58(zC)?5^>YNi6oMSr;@M?PbZNPcLu-OFqed_;(6%>;bP$uA<bSg
zZToT(%VoS#_=<3y@YN)Er}DKVRwS`9iB(Ecc|+v&BqsAAJuRz~SR-+55^pA*YroW8
zd`qt07ILlEi@cM>29d$Ka`kQ!?<Mhm5+5Y7D~ZpN*p$R(g}Ob7Eg~N#@lg_6P5j$L
z+*Njm0XzNUBz7e6NfMv_CwHgWoL#fellVfp`;ypgyzLSBGKsJLQ;@CnwSwGh+KS3I
zGWb^bKgO8r^?eevQ<#&&4@n$I;>RR@;<k`-rt5=A{LC#bg*#LDC5b~xG)bXp3cn`t
zoBaPFJS_ZOc!ZwyRsvUw9{x<?uOyBttFC-9lD|3sC-F}b$CEgbMCBB!q;N8cQ%RIb
zp==8OveKrW5>EIka#~5gBSWz$1xTcGCW$=XFDIo!%6Sd8ypV*s6;r5`a$LC!J)D(7
z)f8%^P*Y|sUd?!`E=wx4q|o^66l$AXI%HNIV?$m~S@netQaDHCTw~ubh4WHql*0Kb
z=Y)dG1*!i%UuZ0m2WA(h&@6?^O{t4grN=+?e{l-UQ)rPwOOtzP3a!Lj3ojA2F}ZD1
z&b4uVWUrl3E)${Bo+~SUrSQfSu1cYU_|+*~C&C)95$PzrR?$-Il*08=ZV+}Bx`&i5
zc1fYD#G6v+mO}RwZcgELDJ<SY<W}J=DfCRCmw0(|`LuTmeNyOa>~Bkze!GTcdCRY#
z^!_GyK+3t2#w;!aQy47$E|WVbg}cS?5xOIA2v;P9Va8^73ipcNXOtKE7L73cevvBo
z6g`l_gDH$k;h_{JrSMqFIY=0-+%e)0o1Pk*!Xqi?xZ+WxjFZ`T;RGS0ohZU{fyYIj
z5W3s-<P@f)aNP1tl{iiKq<pd<>wQW!P8ZHdVW!9|;nPBQuQ4};c`5vv!e1#olfttp
zY)s)@d3!E}a0-zWo>y|dkj`I7;YINUDJ)E3k@y3hJ@+^86dN0_h)?KGAz<_%*Vk~4
zglGz}6mlupDZ~{OBezmWh$n@q|3sS>&j_>f!`5Jtd<umW-j=>txGaU2Q&^J1OKKC^
zER{~ems5z#Q+OqXS0%bmUQ=H%YlX;4`Clb`UHC={t5aB$!rBzprSO(UJJ;gP6dLX<
z8pZ!y@O|*^o`}ceX;<X>T%W=_s$zrCZS(i!ZF>qIr|`b`2Pte4*_^^Q5w`P|6t<?E
z3tapG6Y)do9|@UUr6IjT$=`&Z2tO6>Okr0FpNW5-!nY(Te38QL6uwO1s}%MrYme}2
zA!{sK!LwKVXY&`2Z<OS>dcG4mkiw55`&0N{gr$BkHsn8vA4=h%$j`>+7fzx20pG9x
zF+QBakraNH@`unJ+uW4s>SzjoGiD3BEgVbXAI=gMZnkhdg%c@UY2hl%+1;E>;dBZm
zDV*Xi!1N|{Hnm3vMHXO{&X8p+l(kBa=V?>ULTw9YTPSa#f`y8*uWX@;NF|~B`<1gS
z)Ks#ng=!Y6izjM2an=xbzxz>3oZ^s*o;nulTDZVMV+-}H(l@mmTBtAHz`{9}v+Ln5
z<6J4+-H@Lr-pJUWFB>{+Vxg&pmKItmiv=&V(9FU`N;X%$7n>~lX(5H=<%>M6EnLDZ
z3+;?I>TP7uRz+AftGLWUdx@7@&hF2R?Fw->HrjNs(9y!R7Ou8%jf~w1)5Ys7+#r#b
zokXtZ`qpqZx6T%Bl+s1WU+Q!fxk*U-ZX*26O%DsVSa{FE`xbgi>}{csNH5{7rZ@Xq
zxJ}9iA!E3m4WfCzpN0Mw21vid!UzlZi{B|6XyGmkgDl*w<PZx(E!-nMSjc$zY``$X
z@3U~Pcps~DKQdg&HFYu4!UN(fgb!MnYhj*+Q5GJuFxtYy7N%I3YGI6pu@)v+m}r4V
z%a2%i)WSHGI@;EG-N_wJ<1IW<Qo;wfCRupQ!sATJhL04|X4`NNH+=50CrhN+dfxxF
zFwMeD3$r-3EljsCL%CcFmZCj3D_XMn)6!>Km}5E5hPjU^y6?sC3hFZ!p0yCM5Vi1}
zEEif>WZ`)W^DVp}<wXk%L|E3{TG{NZqS%7hLcl`Mf=>p1A#0&$8oPCcEQF=AEbDc}
zn1#57f`!Ev5*Csc(iSonQnIv!`zm-i4Z5LbE#xHTE!ZNAfetytoVoeF#KKD!Ube8@
z!cy6=HJ1Hn+jpyeMOm*3lRAZYO+$!pwyu=8%EId+Z&+As;Z5<?7S@QkFB;SHIwjv0
zzGXQN+R^`d3-5@#H~aVs`9>MMD=g1<j)M5W!X^tlE$p(eS^5?WTg?b}H!J$zrmPPw
zd?Z3;yU54F9Tq+@BmYw=Y>m%EJ{QvdOlN&5<y)eKuT1V93tt<)S7e`sZ!8?uqf^B1
zOl}WdW!i7ydka5EJYeA`3kNOyXl%Go<OjZ3>CaMrv2e)3uNHpeY>-BSG!9!hVxe3b
z<<t1x!XFk+S@_q&pBDbI@DC?>3oEz_u<$o0f6MtZ6uoibUGinzL5s7IPgpp~(cZ$t
z+wSfPp0-e8p^Sp`2#eBy2z!K24!92w@b-OKiF`+O+9YQhuaL%BX;e+4Vj7jwsI1&7
zY4BPNb9pnJ$WqnPsGdfxG-{_&BaK+XDO*#<JIj}j=d;tOlSVy>oH^@?uq?L)9wE@a
z#&pj)X`GuzyEHCKqoE9%rEyUj=cUmojq}sEAdSXpG*OoOXaQI7OJ4a&<3fpiK7p@R
z@xcJz3%fXt=4o7#MjJZe<ex^%G+ObJpyk|r<S3%pI_<nc?-psB#-(ZJ3youWX|aX#
zaOogE!Q0Yvc^d80=$yulX<U)Um1$g)M#nU+QjJ%qOAn+wq``XmSOU9%t8;A{*QIfN
z8aL3b`iQZ0Vk7X?c>WW_eJ(=Jk9A3-t6bfj#-2)^o6_i}<Uq~0-Nosa#pmjp=Pgot
z3VR7}6}m5I^iAWoH2%)wSQfXZ(T}Z{MWZbGr!gRnmor$N!5wMbnZ}D5EXZJB8h52p
zC4;jv7?j4{X?#m>a(GV~JJR?hjlpRQNn@zQkA+;pVQJi(#(hc-Ph)f%4~vgT<9?Bm
z!UxiLP-IjZ4~ekxS=_ytKPHW_X%x~}tgJ`am}$&T<Iyz6r7=E@328j3tcgMvd|YIb
z@G&9h@F&ukEIuWTsUoy=&oqhC(s)YZ^fYFQ%=o`Hvy|j(`*Sz|(ukxHO=Dgf&qxoX
z@vO*;X)H+Nxip?va()^wh_EjA{dx|bg=s93=o1zTy+Su0cX;^!qXg3kDH#^h8`p>!
zOCyzrB{7~x!sI4J=qD|bGkPYCtl@55b{hHrC`;0KDUJ1Myd!aG8mrQHJ&k1?7*dv}
z@tU!JC5=}NXFMy!R~p6j|3(^bN?C36HEFChoHpwWe=Ci*4R?<oH>9z}C>zswH;wnw
zc;6_S()hq|*1p+rZtq*gw;AQbG(JjWyOM6Zxv{xZ-=}HpO5-!-?&L5q*T+6j<BK$Q
zv*mSl<x5QwU&(A?S!Y_?WBh-e#$NG#!f%Yu0sLJW`_nke%}wI>Y5c@VK>P<eJdnnZ
z#@>y`t?uVEevy92<o+u1oA9vk2=@Xe_m4FGH2kkLHuG}OEuLd({3Eeq#tHbiSr_sX
zX`EEnskC!x@!vE~D_N38xeUr@;K`sU17uJ}Wy@yZ?zP=3mTr(dprR`-6=cKlRw;wZ
znbM~^-LFPe&7fKa4`nbqgX$U7$e>#W-7~0}L9Gm0Wzaf<+8LakLE{XXWKbuAx*43C
zLBkB{Wl%qZ1{s`_DeVPL$ZRFIcDK3C%b-yP=Vx$%v2k-*I}KdprWstQ2%BfnEQ5<O
zxL8R>PGi@POIl>mQdwujOEPGa!POaDlR?`IF3q5Q23N?YT?UtBaCycVGiMe?NLN>8
za1|@!UgkgE&e(L!;Mxp2XK-T%*JaQtgX=T6L6$7b#cfsBp1g~)x@K^b*71z)lAAN=
zk-^;=+>^mA8T8Cx04MMadS!5H2DfE!dj`E#uulek6_s1d89)8xzrP89y4y0uJ0;%5
zy?_W6-uWU9GObNMID>mLxK9Q{G8me{Fyo5GtZR4%BQkhU;{6$n6nQ`%&O|~#<fD{D
z?#A$N2IDdqFL8`;YzB{r(D+f2gF(-P3?^pqSO$+vnWP?Z9TK0&U~&d8C~Jxdn{Oga
z&EQFn#`>OV8O%}cQyJ%5(9?x8gfoQ{XNf#5oUKw6>3nVm^CUiFET0v5E`#TdGGBxh
zF=iH7n8Bh9(yFmoNHLm$SKOC@KZAhLLm33m@FGuGJYp2iFfs8sH#(6dhk<qtsSLhW
zgqCzZ0m9LkQSWCn$Yo%Q=au_X289e3tKF8E5#n|MV_TZRGMSNc6<*2U)eQbJ%4->X
zkin)5R%Ea;gH;*4uB;8hH!^sWQ%44?jr|&twHdhY%Dt7r+fwLxy+~fi!0#CQ|5@tU
zX!yG#?+M=*GRVytY~jjgus4IP8Eng7X9l~p79R?CWbl#5cHzfD7G#5P`6Po+jVrF;
zXUe7ixrPeK7a8o9_@&IgGCGa-n1cH<_$GtH9NYZtkMR2peqgTncf$Qb_ZaMe_`wW*
z&frIJ7W|3*UfDy!<rj&+W^l-qa`oR#@`x$*dj@}q|7o&lc~pV@ox!mT{>k7tC*CY-
zW^p2elj`MaS)7thg>32c^=}5JrEtAUIR9szT}F`*!ZO0L!g9j$LcS<ROD+|atdvFN
ztTXjh5t5uGQZ?($;Y`x9x-8iRwM5R%qG1-b#m^Sftd2-sVZAKsi!>0@!#P>B<I`)J
zi|EHaZ=!yF7M-%VK8p)fX=7oNEShF<VHVAlyoQ*?#q^NHWmz<r$Qm!nqD2-hvuI_M
z)+T1=y1}=}qHPwJ(!hKV${k3TtH@PZw9n!SaaX_cKfHtZ)y8K>CF%KEk?YhET!kCV
zI*yj!Ig1;O(nX}J@TM%fsYrJvZ_c8J$SqmiCPG&|v*;y$t5JH3^bz*Wmi~A6_AL5I
z>7T{0Ebh%>Ko)mMxigEqv$!XVflA($#UK&X{NFFR4bEby#35Pd@(AnYIiq_Jd!O`?
zLh8dsMhNd0x|b#%$l^gIM`iJl2tByhKv?QwDPx3Vvv@>=`lDHlGkm<rge)dzF)543
zvUog;Rav~A#S>XfW}9ab&SFXyQ?r<z#hfgj%wk#=)3cbNvV2hUsjTz3CKrp3eP%IB
z$)`;&MZRn4zNkJoi+Ncr$YNm@&&c4}ES}4PxeV<2EaqqNLKZJ7iz0ox1zkd1ltr=p
z`(@+J!e@+G5e?`kkVQ~FU4<SZERx02ES6;v%OakIl|?#>gj}U$oTMlZXKKu3k<Frz
z#o{b-S=chjo9fPl#2S}m@siQ$#EqQ#%ULYX;x&`SBClles##x}aaobY%Kt>mQg39j
zI*X69*pbDWEY@c6UKZ~gn>Vvqr%2w)Vtp3x$obpKrT-0CY?Sh@v1dGPv#_oY%sOt#
zVw3o0qp;qsS!~PV!z@0Mxcxt2pIM_%viLNM16ll-#m+2tW$|?ud$agVMZU;lx9a`e
zlx6K-X7N=PdrU>HD;M`=@l6){v-m!XZ&@UZ?@YlnF}v~qpyK2#$c5ymEDmOIIEy1$
z{G7!vD)^f^^pK2y6}ras<~sa6i$AjXOU8d1pJ(bi`k&hW$>KOWD~H!|&Xj(F16AZC
zcL7=ao5g9)jX5-vSdvA#9Lne5QIhsWBFLePNLitKZth}*94bnzlta}Vs)<(?RuP^h
zbWiH5=Wuoob#kbYL(Lp&DXVtQ*<bL~nAN#o-m5E}M~_W%sFy>1B^%^$e$F|(IVXp6
zr8E>a5}ucHcD~%bx|iiI$bnaQ8Y_!#IU6?>cf+_Shl_LQnM1D}noI8{Y>`9D99o%D
zSLM)J{F0n=4Tnpc9NOk^X%2ifvYoKK@G{}$IZUnV+>c=H6;iG=N(bZf>Kv{S@0i22
zIb3J-8*}I+e!cJpqj%1MzsBQh_*{!F61(PblZZRVQtzI_%~E;@ZxOm{%G_I(d@6_D
zIrPb)uaeX!<#3z$?K$+zp??koau}7vLpj{Rb>y>}!aIcnbGR#4dgp~%gL1f=eUZap
z<qpkZm|P8ES>2JjH;4Oj7@orjqwu7g3(FGSJ{qaA4+tL=y1AoscsPe~Mj0dWXbxkI
z^2mQ8aea<g)&${1A$6|fV>vvY!xM^aa?Uvd;Ygr9Maop+lfr32-jJG}!wgx@%wd*9
z+Oy!(In2&sj+AGOJ~xMXZb75C{%QZboXpSRg&bZ~t}h3F4hxLsLXkzn;vBpp?lu+3
zA(%rthYX!aPYA;~L`0&(xG*MUja(Qim!y=G&@#EyvpFnNGM9rblFwmr4oh+<DCw>#
z@ueJ={zq|Fiu%hrESLU@$z|4x99D8L=W$&gt8#cfhi`5C4;RjIIqbBZt$TG2YjRkd
z!<#vr$l+uT>vDKYPL2rQ=A6Utn~AR%zLUd-95#x-o5ROB>=1u1hxc>%Kzx&MTMnB=
zwg_48)*MdFb}ll1DCHxgZ_i<SH7Br7a`-fd?{e7B2y@t#!(L<anaG#I&xK#)u-oKv
z9%k{cl-wiyTFA!VC-RN(TjBq>XwGN9SMp#EKZqO<{%CA|(j-IYKTG+==!Zmp<rb%>
zzt~EL)mHr2%kRqiL-?oguN;o%@VEGJAsrse;UB}@0mjMUR1W{LH`Pt-ME51T(=sce
ze;Y+MV55wUaW=-=C~KpfjgB_1wNc(i1sjcRG_g_9MkO2dY}B_=*+vx`wQSV3ah8p$
zHmcjGVLOrY>NH;~u4aQ*szbbtU^}1t;0(qr9_jJ+1mis0Mjab<ZSeN%k&B$04!26@
zMehbS&arWxjYc-kRm?2jP(y1|n<C!ep#AwaE>PA`KB;JKTO5pen%cO~Mq3+~+Gxfi
zHd@+fCCiI#v=C`7WF%$z292(zvv!8m+Qua|4x1;S+Ss^(&vJ0`w{e+`t88?zak-85
zTrXmG&puxFehOFE&K(f0DIM~g&)c8E)ixe(;JL<j4x8KR@;-lB$GWbw(aFYbHg30Z
zJ)PU=VdEAXoo(D`qnnNHHoDm8s_<^I!8LUQJA*f~Qxq!i$neW@thA?%UN-vL&gV^T
zwb5Ip`q1Z7m_E{3DYq=|&afkRL9d^U{x(L~xZlPA8+X_kY-5OxJ8cYPH`y4Z+8fvR
zup`*8^l-QB+=-~c3(+>#s8aeIYGas<du`mO8hLicXt}<e)tNh7PI!xuUveAC_F;qA
z7-Qo>=?~c$ZDW);@3wF)cs#(eyrJByYSCDYmPc$nDg$n7>~uEZ;ijHUNy!8o6K#ZS
zgl$Z+@tBQyHlDHZxQ!=l%&;-j#$+2)Y)rH9ltv(fpK9Yttp$65711YgF0cQn3Jyrx
z%o2av#%$X;0O0+yIVOO)A|2Aso6B6IXKg%ZW08$w8_(OAuf}IXae2YU0w!huBKuk&
zpJ!bh8*X2CxpDDm-$u}ePiEBpij!fuTfO^7*NBa%401MNYUG5Cq?EXD<^oSjL)5a7
zww=e}xS{d$BN-YS&m1kRoh@wJ$lEALUu<Iu8~ID8bKTfpva!_0GH#4)G);Q!ZntYV
zwqLRFs*TrdtWfa}ZLBo@x7k=_<8>Qv*jR1jed%j#tmWXhv0lkHg>TtdXG*#IYxlt5
z9UB{LY~<L`ouGGR^By;c`v3b@AjjbcHa011vv8}8Eh6p^<%+n3J^PXL?KVCZ*<s@o
z8=so>a@WqqT{8GgNDrUe_(FWQ@Jr!WCU=jGuf_KY_X)ody8p8L&c=Sugn3lW<9i!F
z*f?h69~m4F{%Ye#8$a1Ns3dFrS%fkFV!}Hlh3)g3$YJ3T8^0UNKScf%{w1WJqauF`
z>Fu~kg}k%x<8s2rNhzm<|Jpb$Qo;#smNN!CvMdrpSVmY@NP}{DlsDYH1XNMUO2W#*
zD*4ju_SN#Jo=3a9b0knBkD7U0oJaFKYDuY=NBul%i=UlGojmG_Gi=(s*g&o>luq%S
zJkHIdVIJp6ar>@O9_QzAfs`i3vavB>sixvJn>cQpksBLU(ZcXc@@Q#zt2|m8&MH`{
zjgoDJmkOz0mdE9Jw9n&;Jg(M?|LgG#h0}~z=5bZtITPt%{ID+S*W}SrmappApi>^#
z=W$magYvi`kIs4Au3TE)n8&T+UGnIf$4%lrOm4S4x{Kc|bl+uTsax{sDW#XtZ6E5r
zmF$y8U&TY^HYtp%pGbe<0O1`%+T5APKye-<uo0--oyWX9p2_2$JO<}6B#)son2^V?
zJnj{LAdmZuhY=#f&3K@P`xU@Q(}oYqV3hD7Q);xx!@@DbvBF1$j|#^L#|!yuS9+c(
zJ}HmK@_0OtC-RtV>gB=D6y?s$W2(rL!fC>%gwusHgzhzJ&Z4vOcv{MA;T+*y*GAjR
zvw1w1M<kDE9?$17KaYiZEXv~rQ}qHFzbIsD^N)25wOC1#fQVP<%fm0?_FB-`gz^ZV
z;YFTU9`QV0%42CBi9C|ZS}aWEVH-;;kF**&W0Y(jIdQ(v$f~*Il`IIG>eKg2xRL7O
z>N2;K@Z~&~i@YLSpU0~rujR2qWMv+2iL4U7p2r&^tMhnMWKAAx^Web%_kBE4;^D!%
zJOX*=_>KFNw`IfqzI!R)ojf+=u`!Q#^LS5Lp9tR<Zp-6?JT~RAS;;NJ(RvtZt2oz-
zbLNM6e3ZxbJU-52N8UNB<$k=b4tv~n-+F1$r+MtmV^<!Z<?&S>d-C|4QxGrs$j=vf
z?9MxfZCB|ii_fcYJoM5{map^Jm&Z5C-Ak@D%6BV0YW<d7Z;rLt<KO4;LmszmMbE7`
zkjIbQoR{OK<@hO&gRF5GzF3Bz^Y|r?>B}%<84l&~YaT6@qUBQjmdD{dwk*NcB{-7D
z?|B?sjDHs6k39b5+7<9|0e|Ijl%uqO*#-Pf18$oI3@+fGJdX3!tbk4hoXF!O=iUOE
z7jP<%fAcu2fT{)j+QW02lP8aU3n<CMQ$SGxDByBFk;2!$3Rrr$s4@>M`H367HcQKL
z1;@U80Tl{3-OE$4fMNXjo3OHw$tnfxF7F|!RzURv8WwO~0W}J!SwNiv>K0I|fE5di
zY8P;J0rO`TjqhJXSFDjsx`(G;0rd+wr+{+{;KP0m3eLCjzvCpVGYA%B^K#))ZX*U$
zK+^&)<m&MG{{k8p&_ogPAt>7XJ)wxjyV#y)1#Fn>JQ#dY!RZ}-_KiA8ivn5}aJ7oJ
zDmc#%Us^!B0$LYvi40hEn*!Rh>83m1oTmZ3(bZ)Iv@hU_0v5AzgwOW%Tv@<X1$2-%
zJ|nbsN>T6rMGTC~sUpuc1?Qz>@{R>uTL9OHqK998F5rd&ZY`j90i9L09Y6J1z>SKh
zO92P;Rl2SsY@cogbZ3w}8|C-^3+Pe6Ed}(Hajyba_bcjj%&Bxp|DqkeJT&W5K;HuH
zmS@I)TLA-D(UBs$y}f{b1#BrP>CcdK2E?%MDB#Wl2AX;Y6>yh0U)x~^HCyNzwa&Bl
zMA61YMMDZ0TEGJZJjkvu;NAj8DvbNIcEbx8Q9$NI5i8xS#=pM+w$d&(X-Ua_d}h0(
zWK;nU6)>TIi3N;SgpB-=0v=W;GQu$hjFmTXwiR<9Enu81#~b^0w-!w*;IRUx6fjjS
z^LPQr`g#r@D|$l7$wD@T?_|-Fih+Z3dI8f4&PTbQDma%Qm^)%{(ToCC@h*VuXAy5L
zq9wa{P62ZZh!qeoVBY_u>N}vOrk=O64^2b`5nsXH6;wb)Q3Mf{Do7E<hS)1$Z=hg7
ztcYMo6tVGUOOoAWlg(xUQNi8|_TC$I5ewgQpZwzA@0^@DbLY;TnLBsx+>-43HsiWx
z+}eyy*5s~l#tqGws{punb?(My%vRViv~ChIs~I<Elq-+O-6DKWMtNnFiBh`aHudH9
zX57(?JLT=uM_YU7pM~AkjJq`@=QZP=X7gvJI05MgBKI|8K{MiJ)SGdCGZr=@Xa+~{
z0lK{zp2mVh_7Kf$M!p#jH{+3JEMiXJck+S;spkk!Tb(P&=cQ(F$`^%uqb#Nfrx`AX
zX|##eL62D7*W}9b7zeQ;6~5raBXU*wEo?@_IFy9HDPIN;A8jSgXfW8McQGS&?b>C{
zc&r&q)SOdtshT`0c+pT})#J^0Ld5}Va*X!n%~(MvY+z1pJR>}*;d@H(I8L`_JS#Uo
z*NiQ>R~%tIpG62G?Ios>W?W+9Qrk?ZSC}_!Y;WV$X1vyn*PHQ1Gk$2skIh)w40`^Z
zX1vQhChc!&yxvx9(D^j=y=J`Mj4zt;Wivi##)r-Lv>Bf@<0J8Z+>B2sR#zO1{63@2
z!pBzp^p^;q&&9^+`Bk&|6O`XH<J)F@ttRw29s8YZSS2>{e=iqJ;w1zB^6+r$r)K=z
zjJ7t`webs+BvUaHIP*Wlp4px<ng6r4e`J<W5!?PHjZC?J3*mfZ#$fPUHgYyv+Gu5)
z3=bPEY?FBZ7;e#-KaMk5x3!HnHrBCmKTm?Plg&xzvv6##osIQuY+|FcjrDD8V56gr
zjcl~H(ZR-swsA<yA98;TH60{Qd#I?Bjg4(IN$C-adB!%YINY4SU2JS>V@uZB*v!V}
zHny-q31lD}wNn%yB7C;Cv5k#wshwXv4K<<5sz-)ecP-8BU}HxcXKUzpvdz5S+eU92
zJKN}LqnnLgY;?ELLq_gOoPUdKtVvwE31@8gWGfl@?NDnE+pKzg23%p5xjk+4vdsx=
zFG21Zi0@-#UmIg>9B!kJjs0v4vN703UmN{w9AIOBjfw(ee;fTNT&8v&ZQU^1I?y&V
z^dK7t+u$O?#c`mGtFABuLBFM8FvP}C8zXIuvN6oYA+qyO+x(4-siUpoHbzJ$lQtiA
z<i$B=Eod{^8f{~Yjl<+6O5?*twjl=|VPl+)6K$Mi<47Av**MO|1RF=&IL5}YHpa^X
zi$+;YT+C*Cx^=fcnxCVSkGIWwdV<VgO4(<%2^cb*Y~vIgXV^H?#;LZ+uBX{JU2Ig{
zr5OxGnn(OB8xw6zvN74lxpV)w?x)eULd(ZdvvcRL%Eoy%&X<IXWzPjHCOKwlhSP<j
zTx5eL-L%?lElwV7O|dc6#tIux+PKWd<u>v*3O1(6=IJ)Bu+21N=Dd=Aws9xvHm<fY
zgZ`8oudy-H#tk-Zv~jJC>ug*v1K3Sk&e&tf@u4Sg68&ZyvxUr3m)SvDa*J)YJ?s%V
zx%$twajOit&BpCE?htMbvzD~Bm^7Z{J;t%QyBRs7t@$?YwJ}dac8_9%i#uiBXJdg4
z&J+g5{Wccbc)-Sk3c~AF=gyyN9o8^%9<s5lwOLJwKTOZqSY)GFL~d&ttG1dDCqvOj
z$ws7JJ2qU}EW_AMTJ8xaQfBnZ9u6_PLrTD&sy4LEdP)kbYBpjUbsLF|hK<Dx*LE1C
z{UmK(VuKo&*?7#xQX7w|NXt2=X#C?gp0KezBa)L3>4fBY%Er?+ewO9WkVoEr-^Oz`
zo@Z9)M5Zg&7;nE|<3$@UsYl$$(zcgvyrMW^ir9Cw8N1hQydeqi2(Gm8mJp8Yn?l|j
zZoMsp<H+!SSAFC#y{B}<{P2N|4{3~eKDY6OkdFmFvGJ*m&xErHw@;jjU)uOelph4Y
zw(+ej<gk8|aeimxdmF1%Ok1&*2;q-B1&B_ZGJlaDeii&pFwH`L*jQs@pFH-><4<+@
zrJ+{)JpK~?w?^<E8*AB}yqUkqqeULMyh)*)P(Sc!kVh*O*UO`I9&LoT&4am`y&&5<
zqHrs_ZXWIOCjW3J$t?tT6zi*s7H&X|{O9RPL>=<jFprLTY?Mc*Ja)`ur#v>6_AYsB
zDx^tp6T!}cT!}WzV{_r#=COs4tp&Htn+0nt;p_sn6K<17y1Cj;^zHN5K?pZ#JQ|RH
z=RCURv3nkSh~7=Gdmg*wv8(Xi^5&Nm6qQ06&_nc|d9y5%zNd;5wYQL7f_tf!VMB)A
zqL8^y9{c5SNFKxU=$l8sJO<^>60?6E{b>Vt`*|FY2Z!d_nbyI13=r`^LDn9`D(#uM
zC{QvXH{taB;5>%paoJF_d=JfISRULpac@HpQ22;E#^iBW9*5>JQtHyk86|vl9xU=S
zF*c9G^LQwahdHLwc%~S}<#A*lN9A#J9>?c#f}DH|$F7YvK5uqV$L7u1hd)?5E{_R$
z^U{G`CVg2O>%=@x%Hwo4pKa3A$$6Zb$7y+-LTNf>l=&ALwdJPeG~<3k)s`k&XXP<5
zk4bq<&f|_e?#$!tJkC+W8}c|ekMr`Fq2l>@Tp;9%yxEXkNLS=>Ih~Nl#d%z!swsk0
zdMSJNdydFdQBr(bR-244$$z?vW1DfMkgEi*796Lx*9f0Uhpb(Dt#G!wPRR9w6nmo-
z-IT|yJZ{c-=H@Xw!*3BXN054N&4a>kQ}K4eRM%a3+^ymRdCU`Xe;x~k+#@(&@ZLP`
z6GBTCWPPL=T>H{KJ}CLA%t!Kgbf)!G-W-k=X_T8eh<W7mDCAMen_WjSk5V2C3=R$F
zGQ-T_44rPdn#-PGS&&s+hI~$wJgTD9^GNatv)U++T878U0My$M<q5&Xc`OmKG>>I@
zJSO~6nMdJ#9v6kJm_1lruHuS3o|LqdhgFO^vpVGQ9Ir|Wc(#D&^LQbTQ3Z@H;6+ZK
zJa`o_qJWo~7V_AvfXxedHILWw_$rUDCHD2a*;wwt%YPMD=J948Z{_iJX3sl$yqm|z
zd3>VWLhbK~lgRr*KFH(4jPj9u$f{2{r>2>7%GL0*toCyuUkHAgaekA>x1<!XK>^?8
z@qHevX;L1mc=@AD@@pPH3gJZiS;$XWmLuht4F644zh|8Bz}y-pe`fUpP{3cJ|D);r
zcg928*5+Z+KiUm)6GDM43TRnCn*!D;pjE-F4t!b{{=cl)wt#h2wO#@3)I80N<mCFk
zMmzlW1#~E2qXIgqEg3dc6CxcmWaCVJXCX}mY?4uE8>MwoaZ{;aaf<@BETDS<Jqp-L
zRofS^LjhY0-$rm-!R-Y7fkp_Q9Si8jCj1qc=*;aq7tmEWYq>fQ?oz<6SvPl66>S**
zj!CUO3numLUceqg_AFrU0(uwBHA1ff_M%CAcbtAI&m%wq`xnr^fPD)l@A2tVz<$E}
zW|V#fq{)Z12NZBn0SBvUfZ&0GOl|{(3=<^hAR&Vb7?M$j3Q0vBB7C?YcYy5Cp#_Z0
z`p7PiDc~@Acuj6@!CXU)E#Q`d3DLs^k0@YV0Y?^aQ~_rea2Dl=PKIOXWGy|%7BIem
z;|iEi!0D>x)z<L^a|k-EU{<sf3OKQVlT>wb0jCIIx}cC#g;P6mE@$-E8ULxBSiq!$
zSy^rnadH8d7BEHl*#(?az_|sSr{YCYbiQzkx<JT<jBw=&QZ5$d5>aT<)B-Lm;EDpS
zEa372rWG(fYy0+alU@jUFyx_(_*JT!DR{Nu48dy(<`RYs*Q!Y5Iw98=%+(f)H>!A(
z!h^+G1>7vk?2MnOmGn6UlWn+C-&(+J1>CL>x~G8oLhdNwP9cn|yM){=I8SiEPPuyv
zxUYal0gDS*P{92KI0d)`EG*yw@?^Rm6!Ng(LmaQMCWap=V38;sf|OzxkT0N6K(T;Q
zR>fLA<WEP<E1+CJSU@C(3MYsV_Qe-MwyF?L77}a1>w<BnIu(_ONa0HgSX#gn1uPfk
z(E=V9!sg3_Jf<NgCn@Q$t`Plc!6#Mwlp>i7eCX2WnEVU)t$^PPc!9~kfG-R9N)h!^
z0V~z;<pN$|{uj>6f!7OoO*w%Q(m{MfRb2JnEa0sI-Y(#s0zNI^Gde+=t9Lci-(yZ=
z@-N^6As;gSIiZC6H(9ObTde&=MIsk+cO<bEe?2N9Bfk$f$$a@+z&8^3Qvu&H`4{j*
z0Y4V-z2@vH!8EUqYG?9rx+6^yHvhR`ZtQ=NgkPC+6v?bz&Fo#oIz{|Zz?uU7<U}YS
zR|JY?p7KiP?*jf&24Jq{1X(M8T19geOe0$qO`Nw9Y$?d%qS+>TTdT;?<UDO##1=(t
zS;V?Uv=e>3A~q_b6Y;Fo2142w(Lu<D8NFi>ymY0&jWbFYAx%YWBBZn6;75#7UL9<z
z;%0)I7jc3DW2>S`7uyxV`MY(|Yz28yzm591tsqnP_C@TVRyzvr#Mdj`Ek?`EDsmt=
zD|abk*CLh_v9yTYis)X%X+@k~M2{kR7BRSpAw}c--HX_(h`o#0L&ZG>N$(|u!_>Qo
zeI$0jqR9!I4*M3-M-;|znriwM(XWU%R_FFFng!+HBKj9`KoJ9q;JDEF2Nun7fX|Gf
zxr2&k!Qv|w+Br~i2B{S<SBDlctcYWa7*B)wrlyF)iWpnO@FGTta;W%63m;j;C?Onf
z?w7_0-&dC;Y<qYSM;38Z5j;*FA^GD3c>%>OI(Ozr7tJz9Ymeb@^Tv-CYfKL6^+|#g
zia0*=#tA}Bl;u1xlk?;vPRVLd6+&N~QN)==%rD~JBF-veVi7kL@zW@4QW2AjCSTF8
zv(<%*inzFlbBZ`u#q$JtbI!mxzlaM|yikxU8UyB%A}%fB22sc}MaX4>Q;Yw*@F)H9
zBBqHry@)G>Tv^05LRfoM5myVJA;>!=68X$5;#yIz%Q&wuVry01_%CIY*_X~L;^rb|
z7ja7wbBegLXpUWTi{>8e4smiIZY`Q?klO@r7v%j0+cGBaV#9ND^!DBI`8+kbN095(
zeMKxNqF6*pbN2os9xCGDA{G|SBFIa#2a0&GXqIET@vM_fq&>pPQbcWFZjna6IfcB;
zT$;->q{Ufa#!yc=YEBV;5rHDXl_;-hGE7;pQZ)Mq7Rg!Fn8t#kU?f;m40IoD)hR~@
z>ZFK95sOvJ7+`Gka*6O!&dL&YDPdU=j}`HF5l<BH8CA>3<wZP0=M=G`h$rQNr{oh_
z&JlT<(ngu{EK|XAMZCpqP{i{^yiml8GMi3#N#o9ozL$%5rHEIHc&&()5|v&$z0N6_
z`Tuy`HBs`L($W}V&fV`Q)qGsUyG6VwtKL`hkBay}$cII6Rx+p2lbppA@<|b&GMlZ*
zy)ZQQD6dJE=Dv_KQ8E+u%Obui;_D*5DI!-g&U{;MOsMx;>H1D$zb|4{5kCn3v53_i
zAWoAaelFq{5q}e8t6zoi>f?7I=~}!dtNmNZpA3(Tk}~|G;#&HrWODwOiez3UunR3p
zXjww5k{R^YCA2A-WV_Rd+&U$+C36WIsL8se|J!%9E15*Gp6Hx148`^(lbp8~r9%lD
zmP}0Y=~%)>C3I48W5LY?n*=v0p|cQjb`i3vw6M5&M&F`@Elb#{gsn5mwk2#MoO)9&
z+hxTaO4zYvX2DJ+bQQ9*Acu)WKF_Sm?OMWaB^+MD5gecrdX&szc}xjCDWrtHCG^w4
z?IF0AdbDQ=y;P*Sx^AlXE}?e`%uamvDPi9X?^D8l8O|xQznULd!a=gIe+dVaFhHWx
z3CK4`2bVCggkj<wR5Ay1CO3`?hiPyLLqs2{L19W+ey#Zy^bq-fcnKp)IJAV3C5$Rz
zbjjRWT(Ty&e2uv;qG9P)hxlRAKDJ~IDc9VW<J;|VC7fKsDJ2|P!ckJejB#`c$B=V`
znQnZJEn$4gyly_OgtN!yCQyC}Cy4nZLGqkPhj%qM%!GVSE#b5hE>i93C7e;>XRg+H
zC4TQ}oms-UB`}|`YiEgJqTr+wCR2V1=cq_)xp1?m94y{3Qv3OeOa|u#C0tlCpA&Ef
zQOL#OzeLVt?WIDdlrXh~%SyOh9%F`_RzmtFi&34vj=8dgTT8f&LB;$pc(ve+60Q+4
zvxI9)W+!l63D=8~Cb1iYv(=3>Bg1D2xw&L^T(e8KMWeuhm{Y=B;koH%Ty7UzEO<u=
zcT&FaMS^#iFt3Drgg+uUzl3{*+$Z>;;DQqF7eX5rGE{_58Ex_Mkd%i?csQ%&+t}3R
zW>M^no)=Omp(v!3(VY@p;htbQqgRCZB?LmM89gi^5?&MhMXzS+B_t&@N?0u7%Oxxk
z@`NBQTw21TY1MFRnUKdycw7k62pRY+S8+uNPnPgh2~Vr|d<icId8UMCOW>C2IgLJ(
zF!!r$^`dHD5@apIg92YE;nfme6OlZxvlqG<PCfHx32&9~a|yqQ;cdY$1m7v)-K^Dn
zLf$XogN*W_kdFjEF5wd)p9+2^__-iINup9l(U*#)uLQpq{Dxlv3HeTtJl_jhCHO-L
zKMMItkk*pn*Ajj!;UxzzJNUhX)g>%+@PLCqN?5}r;9#VKKgHk2!G4a3-oHxtyM%vA
zSS$KE4%#}f9ON883@ru8*}^gR&wNElyp@C2j+q*51W7S7(Lp;0yF1v!!FmqXcd(g*
z%^hq&dxl#b9Be32?I~Y3OC23-<e+mVzmtQF9W<$yYhpVd=qQjUxKZX^52tw-aq>24
zQ^%Z5IQ_S9u%&|?9qdFi9BeIPc5twbknJ37&n~yawvIUtaBA~?BGVDS)1b_$+K}w*
zpsRyj9qi_yn}c20Fc039@d}73l>Op+!|o2aKK9J)?7=?j`kHr%G;B`?y&Uv*u#dXA
zmsIcVU|qe{rHi<Gr<{Eq6IW?y@%ELJz7B?DGW$8$-$8#B4{&ghgM%Fm$Z8LC%ok8;
zoD6g@SoA?sM>*-x6AsPzhY2}E48t9akV%xlmqFworP^r@Mmree;4lYc9h@!V;SP>)
zFgcSm&cV?Rj#2SQ2S-T`%}8GY9_!#t2WL4LpV5zVFhTh74o+}zqGNIzpHqdLBzUsm
zDT0^Xk~>Yv>4M}ugJZG4y!fM?6CF&FG;Y<Xln-B9r~N(0!MP63b8x<c%VpjL4lZ<X
zse>sFE^=_Oh?fY`Gi;j*VH%`_sSYla<igM#s~FYO=I6+^B`^OST%lH1I=ITg)tQ7D
zLS{L**}*jqW;(dm!F3|uC_i5>c!MBi@~a`jn-n>g#%Q*KTO7=DaF2sI4(2+z&B5(r
zNJsEiwPk#=c!wn4nMu1#!E?84=2afA^vN^d!F>)EFz{CA?){gOk(t@do^reOpo51T
zlpHt?9#$3U%|ae=u;@R`q}wXy9TbEV1xcqm8s<9YRQNonHeUfdC^KleTsrV+o`b4`
z#~nQ3AaoEpSnOblgPMa_X4kVA<`g(;L@p7LE@}wjO0?9$qYjoicr2sPcrx%|mQLe;
zxq}s|eOfj=Df}tNe1iBd=Q9qTb?}_3_+poXOW~|#N_oM-i_A{^bEdj6Ao2<mj*CrP
zyz1aJ$LtBY<9gk}8xB@Fc#}3e_|3sv4&HX~k%NyNyyJlTv3DK3r#!&HWg?;<xM_c1
zln-RvhmJY*Q|TuTK6S9l!4Gm5v&xLo)@Rh^;0wp>kiQiC#=%!YNcmdG%X2K^-#Yj%
zqkr#U2b~M3?nlZ0NxIT4?#~XMUX}YrHt_3|-yN)W(B3uYi$5H!anQ!aIxhayAhvSR
z+QnaD{+kYT%!gQOB@Het*A)5WT(e^#(!xbc7yK^e$kA5%&NscW;f)jJv+r$PlNI>}
zocpeIT@xYgq<TH#E;ew@S(3p+p4_rr2UTt8nhS)EE;e$F=Q~j^uYlbD<vMzmmvWt5
zba8Qjivh0j)ut}CU@I4!QQZi$gWcT4hI-ezm5Z%i?B}AdEZK%CWX85CZYN0o?S<^%
zVn-o63GOV|Rj`}jE`qxX?k32#{I5wpT=Zno#U3v9aj~ydaL2f(i(X>m&YXSU%f;R-
zjxaZ4y~UGmm^o4$yFThK*Pwos!{CuO=tkZN^molhl-{5l4|H)5gHy4}Jt~Q`f!`wy
zaxs{`N{~x1#Klk-Z%241!Z41Sizfp-6=1lF5iW+8F`|q^U5s?`nTO9kjB+vB#r7U{
z@G!>3VJ@C_@r;YHE)I8bzl((~j&L!~#Y`91x;WCsQ7*1f7z`X~J;L`FE{<_=tc&q3
z&U10Ti{o5Oa52%vBp1iKIKjouovjmHoZVy*>A>(9WS!*Vq82$i@MIU@_y2;Yx;Rb9
z>4Iknvi3|DXJz<tYu8SuC>Q6rIM+oEISTAG$cR0e_h2K<PYYj1?gAGVx|r(XGAeR$
zv5QMwT<YTMeulFr=TtxI=q}dw-7F$gT=S0$U*WZni)k*VySQ<XbzGCF;`iI6zuPj$
zCRe(+ioN4U<AUFBY|Y>|+e>mqo{wB?+|&A~hjpEc>s{RKVxEf|ToibH!5uyYDwuC_
zL66O%LtM}dN?<Dryv4;F7js?Q>f$asf!98+`RhZs3-VXw#P1MJ<W3>SwYK&<)U+j~
z!9+dGy2r(QX|(vp%Ef&y7Pz1aD*9rGMV~)FzwyVFE*uvRx_HRN!?eeR?cyD7iDeQ6
zHgj-$n30`enYN_l)!%}e7d7<!>4(e6bg|6EV=l^S8@h;GROoG9{<{c79M)unRO$Jy
z)<%P@nmj<t5*M+Hx{JgGJ=}1ym|B{Q+u8kL-K;m7%mDHG{H1cpqmnkRwe`4b{+1C3
zF28o|6EbPJixrHAf!32Qo)U%fzx~hz8=dp4i|1VY?BW*}&%1cR#aA@O#fvUZ>}tK{
z;&m4<x%igvxVf&$yjPh2rEX|9<Kdos`6~~6>SCpfH(k8NDdysR7azFzaftN}O>*&`
z?4LErn%UI^;aT0R-zHlh(p@e-cJT>k5RbYPs6PHW*m#4zV8qhe&uDg&^|^~Lm`{{g
zzEnrP=4U^&jRVwV{ovv|h8aJ<nQWSTuYp)4Z?L#vxb>s(o7b-WNkVRDvVL{(8xy97
zO+EbXVl|t4X!7ufdiRfuwJz4k|9?u|UoQSuPro|U1T!tMJmfsA>!F<ocxd6FrH57?
zcC;+U(r${7)*jk;SjR(K&x|0AnbRdl1~xxyh=JQ2V6Eq2eGeTyoU&eS0}t&zbnvjD
zXZ{A}$z9D9V?1+M@3yQ?gG`f+Jai(DR4^3Z>1xE1XL?s_6VLo#(as)r?PSqun|a1{
z+lhH|4_kQHk`!(d_~pNctwd*jU~%jqYa0*SdS(t%8h=-k&W;^D?BwAL4`+JV*+W+k
zr%FOM54(6c*uy~T@~|6WH|rn|-97a1(8n{&Q%?`Od)Qa}dwAGW$le}$d7%HPWiJmC
z<OKGM9qjF4ABwW9zMGgJ=|0NvEFW&|=b^8MejfJs!0{d6p}%M5#d&=H>w#_|PL~=-
zaUt-)X~o#43I^>U4}(3EG)_`yhj=*5!&nbP$>!k@4-APzJ&g1)+`|ZI@5w7E<finq
zMtK;`%+G;SoTsD4zrLO#hkH1J+IeH+VVs8}J&Y%(hod|k?co>?$7;lB$qzf448tBV
zXHMl`T4<4*;Nf@=Cx~Ihq#Rv+>SQycnOY|gHqk|c?{BhBW=LdXL|2?9ob%#z*?Eg)
zoh6svE;!M{BoC8`i*2rlbA(LwaG8g5J)Gy^d~sgr;UW(gs9$Xdo1nVbGye$e5)YSp
z=C9rI*FaP^Ma`Kgw$P-z+`}{vGd*1EVLI77T<u|o1YYUkD$isdw(2#=%6GG_9BI11
zp}fWe`%b#a{~oTV!#&Jq0C>33!%ZG$c_4pJIfwpX_^}m*(8+9di)V7<9Px0zoM+|u
zw~k4_Rkqzm?M<f19UkuVa2JQeL+By$Fi(*@-^0Bg?h&3w#eE(Ycqn)%dbr=iLRNWL
z<lzAi4|;gW!^56QGGwlIHGc}2-e8d?5jK0UX^96e85}a|<y>Zrv6flA<iYV!@!)%K
zJ$Rg?gRC+qz6O*%dTEjo!hZ1y6q8j&FNrC=<{|d*GGp6A-9zHxNe@qXXn0uc;V}=7
zdsyOOsfR~BEK{E8AfHnpZ6HpQsEEiD9+rDpAs*Ip2pC;NsOV`A&v<y=!wa(ESr5;t
z%kz}hXf1hOlzU$iOeK@Zfq2!!YaZVA@Q$iZZjpQ4!yAgml^)*o@K$COEupB?Z|{0|
z&%=ivK9ZvMJ$xYK-%+MvwE1HXpLqE6KT1iboDD~rbovF8Lm4#kOD0A}g@<pLj>;yR
zee0Q3b-gmyFXKB8-+Nf45&yx%kIXi5$WI=A_VAB~wH|))@GJAYhczC4WAc~A)oMb6
z(_K?)|DT)}9{$!KQVzB7`B)**X^>@=kt?HB8Li7e8Tr9hi!xf4O$udJUpC%Mc|Jpi
zSZ&H!r;K&WXjewtvdMm&yyQ7XLq<`|;iS;X8<f$$j19}^SVo7knT(Xi95q!_W1})U
zm9cHv?0+^cqe<PrgFl@sqjMRXm$5||UCP*0Hf&ZlTeWn8b2471<zve-wkl)mGPWs$
z|GS<_)7eMWG=mQ%Z&$|lW$Yj=Ebdgsjv4-QleM#O{xc44y}FgLOBuV$jNQxFqm13k
zW-QqE?y{kWU{67g<9z<Z>n(EK$5?xo(W?wjF;ey_gK%%b-et3CWRb(Vuf+B#W4|)`
zmeH?_{mU34QT+uE7Cb=q&`Sf#IIxU^%HYn#(yZiYl0HyugUT2zgp^)`tf9h(Wt2nc
zSgnJHmNBx7*L}R<V^kTVIaqXK8DnJ3(PbPX<ghZv3Zb2c3pqk?oZyjyN0rh4Y!kZ2
zmNCAJ3(F=$9#_VMGEObyv@(v*w4We^gGJj;EaM~<PZm5S<4Mgsy^M22Iirj-g`6cg
zsf>vk=SS^wlrxz&h%$P-5zFUX70)Z<{EYJgA<WDdan#DVq-;{(RKZKj;ErMnA%9S|
zyNS%p%DB9YX=O|=V`drGitUOrt}5f|GOkpSZ1g#&?F<#KVdN;P(>!n;=dWd5ud0;t
zj5f44l`)Gx@o}1uo6DG8#<DUVE8~_j=9Ez=qgcjVdW>73viY-7w+g>aw%uOF9h@oL
z`Kx$WYE@UWHDz?oE8`x<RT=k|(OfqB!~4ouP{xC0JS6`6%UD>(1H#Eqd)SaL#UG}B
z%2=e@v?`^un|2u&aqdVpo3J}2Syd^+FT)Y;3es$^j54Q&T)`O~l+EsCv1WI*jIfNT
zj9M9qjE~FU($Dd#%U#q(oTJ~6H1_ni-K`}Gu%%*nH1j8`9xvkw&TAis_*h=X3Pwc*
zlPY+!jHftHE7+}qr^|STsj`9%DtNYx=a`x*CW}5_#tUV9S;kjoyjaFdWqeS^hh@Ah
zU9Xn$nvhq@I7R#0*HwJGjCaa-L-<O;H_LcSJSiLDyP~JX_cHu_O<QhLKN98BGCnKg
zV;b4X`Xu9F@}Xg$tN2AmG&@@^MrC|c#+owzEaO|I{W5+l<M%SYmxNVi{E+egC}Vz6
z@h2%|^PkfsW?8?APD(0vbs2w%k``$I&Hk&5znSVQKn4G(;o35+iZL~P*qm&{Tga0w
zD`-{upO;cP8CqA+Mztw3VOtf~t)QKd^|D&ZX<tEy3OZG=amA$i4J+ta!A8PUf&ap$
z3O1==+X}W*ZRZL$t6=jAx@63oW_D8J79wt4!Il+lB@0vgse;coq7Wf*`wDiHJv(G_
zsBxzXc2==#1>GvxMGUDWX)D6+A|4^wqk^6l>|Vhh6&zH-!4+_0zh?z|SJ1nHUJ}J7
zdu0|9-$%rL73^C<pG-CF*-v<1iDhyB3i``hYG=O=5Pg7n4iqHMzzPP5KDvUzLJkoe
zA~;l#&4)=lg$x&EL<NV6GO~hE|8Yp#%`xIROmM6q8y+r%8fpKy3XZJcs0xm*;Ft<d
zs^DbR9xFJZg7HF*6HJXiUib-uCkj#&A4)!@g40DgRq(W|mQ`m6KU46m|IjBBuV4!w
zTlzSsf^#dlxq{j9$$1rARl(I2oL|8O6<nxRm#XR_!HX-nB=bhv-zlO`t>CgOS}qqd
zO>L(OULkm;VA>=4VMYblS8ziG*N8q-a!9|ng6lGzeY{aPTd|7IO%==%zv(+SCl$=8
zz^)))!Q2XNmFl|%Zxg&dvzBe|sNl{D?#cwFG70BZaF2-dE4a6U`zlya!Gje%RKfif
zEUe%G2_Yx#Nn24namsu+lmCdUS|r#km<~{(f?@^lRq(zzOBF1ot_qwA+zPx3$`yna
zL~2qIPf&rMNuY|V@U*|R3St!(S5U7Y5r0EHC1+}0%1O9HbRx?tcuXC9wSvbhc%p*m
zD|n%T<rS=`;29=)=Kl(w693a#tF*stPO;BPDJf}@6h1Fj@UrMH38qAv@k+-0S_Q95
z?;91oRl(a8tgPTo$xoRn@EtL{t0ojqN~-sR3O;0#^i6X6sDh6x__c!HD)^*=Pb>Jo
zf>jlKR>9{Ld{e=<lKF*%d?|qx!iHZ}@U@EnO8!oqtW7)eLj^yo)zAN-|CEjCFKSCu
z$^3f-t1I}M>0QJ>Dp*s&pW-CLU;p7`k*e3K%JPx(&C;3L10OAXv{a|kZnBEZ#9RAl
z<6|8kZGCLyqmz$yeYEqjfsgjSSx44WtM&iWmc$M|HkAC1zFAEuD%Hg*J{$XJ^3lb|
zrfRi`kIores+~M+vYC&~MQ2-5Qn;0mt$p-UL-K4x8+`2MV_P5FiMYLwoz-dw6?gQp
zlZuo;;S|zU^lmbb5_VBB)!5xf4<9|%uar48es>>x_}EiTdimJP$KJxzR=p*mkB@zX
z?3-0l7oYt^?3;CPe;@sYAK+tvj{`GZ2a$fZ>GfbA2dl|IAA=++wS>Bch(1)!Q^SV)
z7~$hsALD%->YFp>C?BJJj8sEzt5)*MPalW*ILgP-KF0dEx5+xf$2cE{izmI?8Kz6E
zBYkrP$A@=lr*^gacC(K0@c=J#xV6sZj!SE)-NyuaiSK-UoZ#a`-)v$}5+uT#5JFnZ
zzuUHP2ZMjPqjkEEGko0dW1){TeVpZErjKiVO!P6y$7R0RRq~WKnVH|mxhkIRo7<Jm
z2V3X)<{JNEAD8$z-^T?$E)>H>(wH_R<R0}>-|Um8`ex@p#Ru;<D3b=9uB(R2#Xrr*
zbRSpvxYEZpqFm+UY9BK)8z`!$ZY+E9htHB=pl`0+XG`++f;Y$mH~P5A$1KKJlf~y|
z5ormpp19w>h4yr_=J=TF<5u5XxXq{kecUGecFCcscW5B)^l_IE#?0M9=J~iMqcAr3
zNAT{G!3)?0U7XS_yz73z$AdmRA7vj8`FNOq^HK2eh>YRb9jD{`A|K5fL7Q=+{XAjO
zH!lUa&)>42RZ^`Z6|NwOY+mu<`&j1VF&}}(qUs~0VNGT>ks*?zB|d6CVjp!MiI0Yl
z#SF#q=KRGW;LTyHA^*Eo;H5V;E|rQ$X$*3-<Z=1rX^p}YK6t&b+{X$ZPx|0}I~6@e
z{xL=xhxP1{)-yhy_3@mK=Y71)Rz6;k{V)1>iJ3~5mb{jyc|Q-dE^d({@~RkK6a1H9
zrH?m#>>gl`0A7>zmXDu({Nm$nAMf~h*T;K4zVz{xkN4?PooGH4@`2!obfA!rISPCW
zEZpMTPhS2D|6K43xq{8<?XQ_a*Uhc+@q>?Ve0=NUJDJ2je$Twx*StRCGi6+kvBB}B
z<v)tyCry8L>R0-NM^1hn7vOgvt9@)1VDkWfh@oA8uiEC;`1sSuUy7f9e602Hw}h-a
z*hIAzAQzx@fHnaTphbX|0a^u^-DD1u952p&zHXxdy!q!rc%1-k15ow4fk_b@N;;6;
z9M;VY<$3`ML#*`!Y!IM*fDQpR4$u@}!vGxvY!skVVBR3G`SgxCB8*<nQ_7*_O#*Zd
z&?Ug80eDAB;+(-2Pm#O{;czg1Xv`J?whXXMfNcY8Mfto>)+O`Sfmy;PjyE=J7hupx
z^WuOKwhypFfE@$u6yVDt)`26<(RgRtz~mo*ms;e1Xo#7iy9C%(^xXn<rynMp49pv?
z9szEcZ1t3`P8}>>-R~KoSAZ)6Toqui0DA`*Oi=-P2iPaTfdLK*uy24q0R{wSX!Z-x
zmmceCboG;+9R2+R@cj|ZAl^T~0h0fnE}W_N49<~J=H{ORbZ~%y0n&@LL6i?OE<*zh
z3vhaXGXfmKm%jmy3UG9Q5t74cJ|@7S0Y(NG73iK#x<*U;4Nc~~)nNg~1~@#x%}o|5
z<LGn#3828-RMSpAM{>M$lYdNrV>Q;t1sE?0>9}vcevba15a9R#Cj>Y#z$xse3^<AW
z6sUJ$<l#Uw4f4+av;gPx(vNvnuSL$J6DTmiIRPfBA@djqZj$iH0bZPB{!uJlbZ&rS
zx>@J3IU|Y^G@UO9aAAOp0<7q&Tg?EM1h_1~<pC}YFoj*Stf?F<-JQ~g4_f4ykoiJt
znu2h8fGYxXp+O6|wDDexRd?ocR|l98AkRn+a7}=j0p`k{YXe+InVcE{u4hz;I4i)7
z@(IK5rU17qDfMKA8Dd?p)Ow3*`9g$aJtr`0WqKQbYk=FxAD9*G?f~-w+#$|8W!qg6
z{uTcyFaHdFfcXLL4RBw8aHN@ow3cQs2ylOZhXXtkU}1m<0z4Stp}@Sa<N)zW*K59E
z<ZR+qCuh*20L=kxj&eT}0~}>aBPVwPMOqS|5nyouCxA<1nye}_p#p=Pl>lXh!5|6e
zJ0L$mz`3SXa>j-xMT83YC_pVhtS;2m<%CITuu;cIqed>EOW4iU)>6(*%h2hBM*}Pi
z@K}Jy6|qdA%L6<ioHK$9blnOLSy!vU`~LvXNb=zko(=FE(?W=?LOdVfg#hPPab6WK
z26!pJ{#Ep^;^hFZFlkh=T@|kecrCytRdlZ6^#E@KSQX%h04oE$8Q{YJA1M#KCHSu3
z+X3DY!iZuw`Mek4{Qw^@8a1;>Vb#Y0J_+yzQ%!(R#s8V$zdWC3LcZb<2>(v-8^LcS
zje$f_gx_b(6#ip?pO|>7ShtFw1N_1SRYl7xehu)O*m70;F2t&u<VKCFRs2IiwI;xy
zLjDq@@V^86BYbT}q0;nWb5#GYU#+TWBblVP&V;X%QP`wi73)>8VHF*#SYPz^f*WMa
zY}g^=PhGJQ<%`nkKlG;m@OP<V(<-*CVyh}Pt713p9JmSDylQejBVmiGNnFGkJX@>b
zHdPEAWO63snbA(A+gH&?RXbF%V--79v2zuBiPBZDSJmWaa&}X37r|WxcN6R`*h8>q
z6}t=BLvT+)E*xym*~B!pw<s+3u411m_EnKLy^LOdXtAFx?^`u_tY6ivR%}9352#{5
z6{D*dQ^kQ*98|^NDu$@-!Bq^bVo=p=%+j9n6&MBb-Neu;hE*}5ibJb7q-t^q^-}Wi
zs>v|4ij<L6v+vz@{TzKhs%lmN&O0tBhgC7QiiuTBs^ah}j;P|uDvnaad98AscjJU_
zz%PGjZPmQ!p|!_K%ZajlJk6_OLe*>lj<4bbb&bn3Un%los;9NI=Op#w<SI@PLdvOh
zc!r-|#TglXW)){;`1PHw$<$KCIijRVg9iN5GDn<WQ=DJL1y#Jj30}p8Ra{iX+$wIZ
z;^HbUsp5JXT*akTOp#UBR57)R%c^Dpy`qZCC6hUa0;gpfrwbX~WL>F_Usc7`Rm`B<
z`6D3x!Av64)-i)Mvx;l0xUOoBLR^OUN{h&iRq$MMa}~3zxJiDVCC~gc$l^Z#7L5Wo
z63nr4WD>tIp!VCUxV?(yRjjDujw<d{)zT{Ns^ab{%2iaVm?v-FQ^kBnyH=BXtGKU<
z0%caQpo;seu&c-`LWVV23#(>d$^dvkW;|HMLqZ-Fd_-`OV6z}!gfS{OE}U6hotf}U
zRXA0+Rd~#e+VwF?c?RU?B3vA~l9HdCRN+?<R8g&((-32lehAf5N{i&rS{1R7x?m#6
z+C~+Ng)b3gLlSBBqg5=c;xToB_RzhLOW+f9g8s|KlT|!L=kSA{DxMa?hK%`V<n49j
zRjv-t$!X84gZ4=4B_{tWT7_sG;uR+UDt@TqN2z{IKL46Mt>TR;R#x$56<?_8Ex}I(
z->%{vA@5cZ^)c4Ir{ep99|(RZ_>thpf}aSE8fExDtKxGNIf(Staau&atl}#X$-sYu
z!jSkzo%*(l@0hQ+N>;H-z2G-d{E#CZsh^nh)#_*Unlbr{f|mThaS5nmwQB#Y;x8e8
zRIx?~a}=`yb^WbkixB?^A!Th9R%lj@oFD{QOp{wn6=zPg+JsmqL{o@OLbMG{Zs`zW
z!w~C+=IaPDw+pdei1kBk5Snb$Ua+aBv78Uz-E)+=pXZQu49&Mv8-*rZJB8R-D(C@z
zDb!i5HVv^^h%TWyNs)eg&K!lPg>p6z!JX9>p-G|7G+A4R*e1k`5Z8p*HpF%z4hu0h
z#P%U}2(fR7J|T7tu~UfML+lY^=MY^(bPv%ZM7I#{v^1O8-9qe=^?Fw!%-B2v(7ioF
z&~gSOGbeq*{Ih3>ULksi*eAqZp~-=aPYT&PG;0$#W;BeMid!}AIoX8Iejx^gI50%t
zOiMo@`-kYCQ4SDt#YF3%5C?}C9AXH~)&ZGf2g)sjq+--~qhe@?VId9)P4cG!!_}Ph
zF+xTN9vWh#5ZW**#Ax9h%G4@uzzz>_M2Is&oEc(Vh$F>tYKWuQ>kucXcnsY&#yVaj
zer$;Gp?T%qll=<KTEo?0f~?|^JRK$qKQY8fYJ0LEDW`;B*HXQwNy6!>V%9n<#KaJn
zhL{p!Qi#bRX7e|g9N!S<i08Zz=Z0vdJpg;kgu@k(kwg4~5EsfYo{rh~ixd?Xhqy$x
zv4afzsUa>4F`Wj4xI8o~KGy=Kk!doU(&%2ktY=!gGBlZ-1A0}6t3#7&zSW^%W{7J;
zw2aUy!gUP45buZhAjAzJZVXWi5r?=b#4HI9L)^?Rgt&$KYQhk6Ld=(8b3@!3;?59v
zg}5!m?dshff>)nqoWnJUklEnw5c5LZqbidz_=PI3vxG1*8TLHk-WOs)i2Fk<6kAd7
zfzT{l4+>BJxza<zALd*WvPiI5&=$-K76j9LRT566ju1D5C!{P`5%dKE!Kz@|Hj)##
z<)EMIArej&ei;&?p~=qa|5}K}A(n*ZQxnF|QqEuIhY-s`JQm_{?%_kc5aJ1W>?uK7
zvOL5JY2j_>lcBjuCh=)eo(b_Rea=7rtRlUXI*J#Ml%L~=Kp|dYlIdo>ENQO@GFo0`
zrc!!&J;WQKISF$4SQ+9?F}xMx?a+J&!gwG(U8i`YeV1cuS?`IbbARhYIy}Vc5PvWY
zhWI4JcOkwH@o9+9*hekLpDP-_AZHKrr3zJl8RDxDUx)Z6#JBPc1C?=jV0Koe_n2TA
z;j2RY5aLIvV|RWJ@l%MOL;MorS9Xej>zIM9t0CH-no2o*_+`$T5PycSBIF|c72<CV
z4JYhBA^2_ETFFdX@gFg8xkqFUm{dwdEu#PJQE5r*2yG&46Jgs3>qKZ9VZ#U=Bdi;l
zjK@zL*N@OHGHcd)kx57C$#;VY?IV*O*=q{vAZGGx6rodu&Jnsq*f_$%RwlP|_BDxl
zlgL~|(10Gf+@@->WrVF%wV6!XJi-={`K<Kl_T~nOVZcxOsAX&MQ2uriwvW&+!u}C<
zpj8oiN7yGaA9J#6J4M(zLe~i0BJ_&PI<-rLT_g02uzQ5vB6N??BLctEW7l{^#<Mf?
zKfll9q}wCHo)P%1BhBM>j-NYHFXL)2$=O>lUGLbVeP!(#L##eR_KUzv0Q#XXd(DKi
zySa7gADQF8s0ar{7!ct=^_M1%kf?(M4~{TU$RNSN98G?XB}il_e+3}?5W(RYJvHOd
z2qV>sGWj7o?-NExX5k*g{_-FYVXP2Z%iTLEM?@GG;YbmWig00siy|CNBO@FeVSI$s
zBb*W8xCj#>oTz>sAK?V?b5Y<b$qAlD_(|&8$&tyTr-<{^2&d7*`o@)u1zm9_{Y<y8
zHZnISi*`4oIZ@IkMP`+`(6Y{na4t3Ky~BBtNvgz8M2^V$5iXz>=5t=Gb+Rswa7lza
zBit3?(g;(St0P<=VQOUN-T9NOX%Q}q;A!=|Tv|A$(<59F;YwK;@ZD~Nt0G(-VTQu#
zng}!Le=X%5cz)?-2Av2WemQePgc~E=A@fLKblntTmd5wy2y>)@2cp@Lxs$ntY`T-2
z8{t+BG_Uw>W5<Paba;!!RLSYX7`{8gya;xLe1v-<%#W}j!u>Lm)9u~}_eJJItoHhJ
zXYD|<FIpI3@L-c$9>_-gK_L%Ccv#3I8GTWN<_xFa0z)FgYY|@O<c;9aMUi<o<jQ^`
zJvATs4PIFWR3i8hf(X?J&qsJc-47!)gm82sA+-o`MyU%)1k<zm;s{G3ETtI{mPL3*
zRgXn@Ji?R0pAcLgVTBORGG=)8j`E2UJ|+6o^tLi8DbI@XTx8Y)7Wup=3g_TULS7bp
zMUWnQH9~3(JNQO~m03to3n_0#cuN#UEQ{|(crP+%;g9NgKf(tQPKt4Ij1L)I5f<05
zq=t_pd_ou1a83=MM)-{BqJ~~Id>-Ko+F3(W4PP>MDZS)s_&UNj5q^>x3}a4A!fzvd
zr;zwQ!m0>AFo646KSr2zzDc&J!CWkU)(HNhzWgfqn;?7rdxX`(|A??g$e$7Zj_?mx
z0TsEZadlWL+^U($MGDt4KEzQ&i<;5ZvW8YQw62*c%zaUt8rG>{gBse`u-Rbq!<n`<
ztXo678rG{}{hCQEJS}ow^Pz>zjf9u=&UL7vV+|YCFr8lk)v$Vy74zD^r<q6G-gl~*
z>B&ojO={>|L$?}ssiBLk+N$=yPwzIR#u_%SVGGim%vqI-JDYD=GYbLd%huxGriN{6
z*iJY*vV)NAYyY?N+_8q8MBG`hYt7_R?n?=GtzowscCTTN8oJleqlTU}vsb((m*at*
zZwh)UqG&vcCg<?FOuMqZYUo$P{x$4fL+={)sbSxmd5QT;SF2CWykFaoCXKY10qA75
z?MoY4<><ivH5^dGh#C&9VSwy8q=w-&99Y9aHE@%Euts5^`nZz60;pkd4MS=eTEj5$
zGhNULyjkV(JavBRf9?lJA4wrK9ACo;HH@xdOwBClN7rze5aQ!%7+W)2sl#hHqGo=>
zMIw_J;gRAY<tQSe93#rHHH@cf;S(|*^8c?bGjk0mQ)Ue(sg_k-5l$6;Mh$1ur5XM7
ze>L(~B(?v|V)9QE!=xG}XPi70o?F9tH9SzmgEgFA!v$<x!|WO^tl^>>uBzec8ZNHk
z684urA*ta~Mb70M$6Rho&8+f#rV6=Ckn1DIVw#5d#r8RKJH!#^Prz!JszV&t<ry_x
zQ^U-36h@j~JzUE<+t0dAl#lx7uCL*S8g7&jo=5n)>ZTfI)xeL0DVz_J=PfnNso~Zd
zZd0qdnkEcjdX)^fi^##^e&Y_|cM9Gmc(>p@LGs)qWWM0NHQXm;f#Cgu3kAu^-xoYo
z!^1U{YH(_Jq=rQ@vcS>Njb*bOZr98rl2^xR%*rOS0WNA>xD2^9cr^qJHhv_o=DzSs
zs!{6#e+)&=Y7JoxQ4KW>SyDqRne->;W?e*v0gDZqr0q1fh)X#THS8IqSBzyfJjOH<
zWBnM9*YHFQFV*m}lrFE~1=+cxh9_(0u<%q3PfI3ydSsj2Gpc>IX5RXJ#J>Vm!}E;i
z?X2~b#$Qw|N0U8$rG{5)_>c*whS%ts{??l{yj8>NbPJaNb$q3I$08SQ!nbR9U$r#;
z9U<@5@Sb|d8ONpJ1NuaMBg4m>8co)^G1|rWgiAmTpE3E@@M{*yU)1ou@GmpUS3<rP
z{6_HG8om>9wB{XW#Ht#8sNu&NeiHo`!Jh@wH8EWQf2-klX4e}2P#0RoSR)=QHWQ!E
zpEdj?%HM*d{8PhP;Y?60=EMoX7Fny7v6((;zHJ?wb)k*mI)ZHlnTR;h99jCAPTL?x
z`xu+W*qpU7HjJ@JjLtDS#%79b9HWU#Cw~H_Vy75~Ww#vdds;UPF;k;UY|aIoJ`BiB
z#YXe^?sbb8TgKQqM%Nfy#pa`e9b@biW9t~(#MoAxRIx*h&j(rC#pWonef)p9B|Yr)
z7-glu*y<Kzml%7*W`Wx^#%{6MOj1$z*u2&15o>m+M?GVc(sx&9*;5WZweTRYSB$-5
z92#R}jNUQ!i7_O`&=~v1=o6z~jQ!QqDIWHV(N{P-m3pavj00lun}oqJ2E^tNH!wD9
z@quDHNI10|EHikO(Sb`q4E|7pJp3_W8luC*JUqrBbodZ+!^S=82(={xU*>Y`M#VTX
z#!+-vj4>KkPR7GxvzcM-SdH)DF^-5aE=J3<EncP4A$)^L2}esllio2gj*UUr(Ii?j
zUUH6$F(JnBF;0lhLToYr$L6|>e&+Nc+bJ<ljWNEC<LWpq#_2JBiScWUGh&<><9?2E
zjI&})j4>m|H8Cc|m>lEM7*i-e#yK%AlzBYjohv__7lSyvN#W<m=Kk;kF>nRENItwc
z#wF}XYjfYum63-CUK^5mstmp?2CwBWk1;Ja_axH=uVh0Zq};b*?y4A9#~{KYpR?Lp
zGh<vE<JK6r#kelU^)YUV&C79miSPzW=34;CzbVG77&ptL*@_veX28%+LWb6y*ld&L
z%5q-r-5#5KxN1ieQFo}-of^Bl1n(A{C&)p+C&v63_tLhEvOq}3L#%XL_&|&YV?4$b
z8sniD4^wyyhq`F6W$}1bh_NU(yPBT-A((>Mj**u!Br=Z`)eG9(8#y<I7bA=jX@Zo+
zA1EFwV)J8jJ;J>ly;K#2muXD1)b)0gRf`eFsH=lXjKwjQ2yY0^ZnBoLzs&sEoF#=1
zy}^eFBlC$E&%}5(#_|}?b<B~nLT#U<AGiv{cv{Y6F!OhR&uIi-it)1Sd|vQ{7%z&>
z1(8O+664hvmp55o$#1X4ct0EW*M+<xxKi-V7;j~@Zwq-x@ZA{iWpw`Y#1Djjm{C58
z@o|QK65~_hp9y|0_=Vt?g8T=UwCd{^-^BPf#&`1JPcgn1vPzIK!_C#7U9BHf{E^Y6
zK>GRLTHgG}_?_9Wj_vAL9pjG}>(#M-9cyCz8KZR_ZR#d({}m%w2kQ7+&SCWa6Ppd{
zT7`sFH+i1dTrKJ*OSh_<YYHMQ>*j42W0fOI)$7#FMseM`+2pjXn>5bI<i|g>vt8XJ
z%(I)U4eDrLM^hb}P%k;_=vc=_Oak2Pcg%6y%uG(nd@0sRx;Czx_}p)Qvm@fSE1jjH
zOC5)4o3v>io7GK<=3L&qjxFkDIoq;setN%69b470bsfBUVE!~2ub<gw&t}@MV~0BS
zsbk+dcC2HkI(Dn0dmTGVc={@#tGe8+Zgx1k$VIej*ZTj?6g_C0h`sCBU0tL6z3SMb
zZhkwtrz|IbFIvJ}H^z8i@4ES)>D=4%zKB(Q>e#PtZnKZ6qi-Gk>KG#J`?Cv8)`4{#
zR7ZbFK0wYP=YTpU3^wV4%@3CLfr4BjNgPziVCm(E&{sogc^!w;F}!Xv;V20iA$VvV
zA^*gIMrWibybT^LwlRW-362#!T#yousAHV)BL$BVJUXl8G40s8Nnac|nmVD5<25c%
z)^S1|C)V*$9S_%W5~HGyxpmxH$0>E3TE|&+Ol1DAn>CaV*Rs<!h-V0L+kB=FE<KZk
zuxsbY=E*FILf>*^&!rH4%_4`KU&jS?Tv*3Nbxg103OZKvq5}`JVz@-`Qo$*LQ|q`)
z$mN3MoF;@>>q=?4rjD6)TqXSKOz#XK++tl@$92@ACbZ{z(QgvGp^h6fesa#r@YJN)
z4DXCGM*%?9w`tt(sN+ug@ODn#k=E0LES@*-s^h*o7O1m#*D+5F_Xy4xyjPGjBFE!Z
z9SbF#Gw6Xj9#nXY*T-_)9r5_Xnfpi`i|UB#sMXP2hh2v&_vSUS#X3rw$OXya=7h0F
z%bl#JPA=!wQLdws`Hi~#I)XZ?>`s%pI_BJDu!VK-uR3rW5Z6(!qoEN`)QU%*XPV4Q
zG)~pUbu39W4zZT1_ED)`rhe_XcI{(zJkDv$B|vbw;0nRYLPLM5j;F=^jNof^JX^<e
z>ihF`yg=dn!-Kj7da;g|>Udf58R4}274`j9&3&F0ne<+ltKX<&WgTzU@fL4*>iD3J
zx3gC7)$xw(d{;2tMsg6j>-bPgi9guQq#(NPW3~E3@KZrX%V%|bp5b2z`I31?$k%mz
zBjnpUe#>~itK)m&s|0@#{4uNjsg9pB{1+j=3jVpV$wI#iUtPx^Lb$}Nshi!-pMrl0
z{w?@V9czV{+KnwFXpz8Pf&2=zOwcO9=*KbUakNg*Cc)%oIC~k^NzgXI`HOMEVyv5>
zU4qRU*rI{;60D!#fdmgG*dRgs1g9oAEkTC_8}hH#Bp8~YV}gwm^h~gOf=&rGPOx=?
zZ4xvk*d)OgWY#vRbAm1jHcias4=J08zPTWabUq&<e6|$NR)RhGtxJOK5_C<_P0ZVq
zo?xd0JE+J_0-NkCJe5qyR=dz7ru_uF@sZ^2;^`sCEi`M{kX3sm*i*!V67)*2m+%7;
z?46)@g8dToO|Xxo?VF&Fq_J(PE0xeM!Tt&Qt6|y^Lh__~2Z(;4VA|^71OpQc5`_}D
zLmQm6HN^ynsCYtx;X)2eFgC%61czqc8<}7f$5FLo1XD{mAF2271V<z|R`hWRjudiq
zf}^tLG%WSfF<D!FE;~NKaS0}<r<8Vl=Kr)8q?{<`lLSu|JViWYI6c7`32sPmqv&TQ
zIFI3!;H(4_6HF4363&tE$qCLDCG`dkJ~t~~kl?}u(-T~g;GzT<%iEW$_L2ls5=<3-
zX*Q;md6{IUMzR;v#6UVJS0=bB!Aw!E7M$^)+G}KdYQwb&u2b=PF|aLD3We~wDZxAu
zXC=5f!EC9%Ey3*xZb>jlRdW;Enl)sTo(c~NxkI+ymEca*rn>IVI9a?$_<X^86Wk|c
zL4x}eEKJN_k4c;S3m;1GaDpEb{3Omt5<H&Zi3E!hG;@w8$S0^LND>qh6cdyaR1%aD
zlPKKGY0iH<=1C6a`w4;sVS*?@RYZ1#^z@Y(@mhjd^wia)aE)jrSe)R|jDJa{g0)NK
zPa?}y`&d?_%;gDIBzQl;2ML}`@RS(dOz?DqXA-=c;I#zLCU`EviwRy*?ehs<5Ykgt
zrI5m37V#Acr(x;cDe13^vQo8g$SO7=Lu&k63ErlA#q(~0_r%6l|1uE&Fu~WNf0W>3
zA)h4pEWzi(KmAWnzew<9g0C{KvV)Y9s{1Cvw+X&elT`_RNbtRI$|qY2Q-t`>s%qW9
zFA084@LR^2YvA_;s}uZ@U`>L560A+|r)vL7@VAhEl~PXHN1l|4TMd(M`Sj!~fCgGL
z(6V6?a;wJwvLbOhtxW^#G|;wzbsN}34DFcw8|Wl_{RTE5(!hodv==3{IfWgif^s(c
zPZe$8&SB#QnnYwRQ&VT*T^iUl)4rJ~sli(|uvG&~8+f#VtsB^;flC{h(!jP2Y}de1
z4IJIT_6_XNz<>r0q*Ar*(Lm1zc4}bf2D&!TjglMYNV1D+cm0q2R0}QXE+UQJy@5R%
z*tdZ`4eTl6UJdLmq*vCkw|cjaifo$-Njtt@1N|D<UsZh@<_@_hKl`V4dHw*=Q%?Rm
zhHVdOV7Q0}H!!e)K@AL6aahJVq=BKCGu!H0`a@KtQc51tz@ZI{Y+zIaV;eZUfzb_&
zY2Yw5|JN{b(h}-Df}Y{)fCi3~5aOvZ<mB>qOasR@aIV^R;LT41r!;UXjc;H=1IK6d
z6B{@|gO$oZsezL-3)zYSPZQ@P!P6W3d-yn03}-bkG2>)ga?$|a&rfdPY#EjcJSU5U
z^BOo`LM{-zSnxu@iv-Efo!%wFdCr<DWKIKf8@Q~2%Nv;1!1M-YHgK(~c<#8Ofh!xh
zN<~^bqk*e4oYJllPK2D-HE_L(Hw)e%%Wur=zo~&)nVo5`31^G*mW+p#TN`L@z;58S
z25xWQjt1^*U_k@-H*i-2cQ<gan#^n9o(AU23A|}%Lq0TvVZ&s5pXe!tPFvW(gAF{S
zh7bHl*TW4w(!iqsP$(g7m2aTXz+yEi3X)!LpwxiVfZKp46|tsCxq)z!eh0+g0yN-@
z$mtU_P|fhLfk=2Qqwr(1bU+D{1{%^bYm^CcK1(uREo<Ph2D&W9ri<}-15Y&YR|9`H
zu)Kj44Sd?bXAL~rz*7yp*1+o$@^k|)H1J{r&ouCC1J5<gsr-3Wv4i}MCG94)yd>f)
z4ZJLb6y9LGDx6la_(lUO8+f;Y_ZoQf|FQKY;8#rl|M&CKUP`-ANz!I1LMl>PwGxU@
zijX8rwn{5ek<vmaQI_nKNO$JWy?5?9cNNMS*&<}gQt1Dh*L3>!d!GOE%=3C)=Y8Jq
z_j#Z9Idf*YGjk>XNbzq|(x?--`dC%`mE<##FNB|O#&%9r?Z_Q8&%fM^9jZE*=WkTp
zwHZG$Nb&DBV<*=E@gIZ?gZe={KW)a(o3Upz{!jo+^6t&}Wix)2=5Ji~MFM3arzNk8
z|CEqU{@#qg4)M8nv;XMJJ|kJl+diAIe=`mbqjngfFe-Q^ANH4eZV02Q_+epG3Zt@k
z6;n&+L8qu$EsW}6|IiRDVwBVj`^#x92|LJJ9U0aq8V_~D{v~|9@PTvt29h@nqfr=*
z#g7!yoc#(qcyt)YgfTFTL18ovqgfcIhH+XL&BHiW%I$?M!Z<#RR$&~c09s1Os2JV}
zhPMf$wK%WTSk*R+c2Xv1TkOk;EK1?zFgl2wA`E&>osNeTJB4vh7~R7-J&ZHLI8#+!
z!sr@C=P=GXM3Z+Ix`lDJ^23MIf_vj^lt;RA!{`x4pD_A{(NiY9gy$La4$5Tjuz%Z)
zVf2&yd?7vb7YPzIz?cjUV@MdI!?-Gpp%Pvc#>MOrpD+yLLSs8j68gL(jNxHip;U}e
z?PXz%6uDIGvLSAln_Q6xEnXSMD5(X-F=32VaY7hZhjC39*Q+>Ac&!FK(4>d!4k?b8
z!VN;kb7L42!?;P|-7MiGVbCrWZZVpZ!?>OE!NzGe?g-<~FfO%lnT5N;xI2t5!uT?b
zDPc?v<GC=N4`Z4P9}Z(t825xRJ&YM)%nakcFy^XimKvQC#%$ABUMbvrNbC2D&ktik
z7!QOoPeq=7Gd2eHpo$NLu~5D1puABYM7}tTN2Ks%7)wN!hw*3_OU0?P%<LDBNy1g-
zi7-}#@wnvl!{c?}inub2Rbf08#_BNE7!Oa2JY#~V8t=NS4dYoO3G)9!80)ywh7k|r
z#V}q9W3voj4&#+D-U?%57_Un5dKhnn@tX0^7~TwHy^0%zlyDlep&-1sjpinicZ6*8
zU879Ra2Qq?b{G)}qhUBkjkSD~H}FPu!$^ct4&%KrlG4e9krhdWkrv?qQPUGADTI*=
zBd=nx%TQPhqa+C<39jh3sQ6(RTf=x?`~xACxngV!<D)P>3*+-JJ`UrPFg`W4d>V&3
z^b=%~%PEWO`*tZ%xFd|OxSClw(!$qad=myN9A@F$Fun`p&oKT9V`muOhp{`1U&8po
zc>YnNyh|fRKR<=>v#NpxmXcpp{N3pPW@gKtF#gcI<-I;e!g&4;V{aJ$8choKiIe;z
zLT~?tvEK+o7Ah?8&_+4UnbJy@e?+JwtZbo*g{l^+S*U5DmWAq;zw*~mEls!uGxKms
zYFqvhCx|3)c!Y(z7V4?CfsoGY8}o)18p&axOl)G|C<|RJbhB`@g<~w7Y~d6OO)WID
z(Aq*93(aMIoQ0Maj<wLj@{cJDBUoLJS8Xc_MHoyF58EZ-ajLE4Ct7G{p}lNb)j_o<
zDVRXBgVfFtcC>J+h0`o_vT(X_8>k(`Gc9yh)mg$W#xoTd-q{w;u`tlWAPe0soGYFF
z7J7*EviRXR^t5oEiqz*u!#)=JO483{DUb&}I$u=-gp_p9gdA+)0t**f7$W&lQyYXa
z%)-SMF0pWt<bk*0MrVZOzkeM#XVpjxms^Nhh*`M8!j%@5SXgRdl!eh2W?GnK;VKJb
zEZk&alAMgSFwVlY7OqzDnnPM)0M}W#!NLR!*IO8G`A4OL&D|(X>P$34zySE`(#;IX
z!kt{$E!--d$rf(6aNGa&%$V=^zmmHxOtmo0!W7BJE%ozrkA>+LW|*O26Wl0gyYw(y
zn&k5=%&~B<h5OiRe)&O2`P@UActD(1^DQi}@Suf<EG#x27Fu}N!Xl#+q%^=sB;-#j
zbhymIatm)+*l6KV3y)cN!NNKVD=a*2;TdT@Vc|&&tHoDZSY_cU@eXE3<IJaLZcj^2
zx8!RqthMm0B+prRUR|b~{pGEA5~{su;Ux=iSa{RI%NAa-@S5@Ps)d7VJ2hW7avBD<
z6t0(WgBh>4RkVcfSlA@;u7%AafmK+XG0@x=Cy9tSMlEi^weYuvy%rJ{k`_L*@VSMQ
z6mk~wB57g9Le_$3V(6fKtze<ZHO<0S3ndF>3-6l|e@|9hjQ+vyd>{z}+h*Y->3nM8
zW06m^Q!vgTY?=gQyM-?-{AA&03tvj}YYX34*dhLvFtGa8!grcNyDaRq@V$i}4ymP1
za3G`SAB~*njk^usW8oJIzgqasNPZWgesE{|4-0>)gMS%0BV_G93;$SXY~x59|62IZ
zLS-9OZ0wgBY=4~(2`hv_7!)3+VkIG6Rkcyg#^E+<OH$oNP1|2`YZwLY#k8s=AxRy|
zZPd5Xz(!r^)DyCbQ4wj|&`28D|GUe?yWCA|97R7iTH82UI?ZhyYvULjO>HzYR)L=Y
zTi9r6<9JmacZj!EiYJJTnr)<TA{A`3RaHA1?Tvnrv6GGe4mM7){RN7K#Ez0vhg&Bb
zr`xzHf-w=CVdG32aT~6U&Nj}nG1JB@8(nO4wK2xVSR37JoNZ%}jlnj~vC-W|9~*t;
z@LU@`ZJa0G!(^|QioJ!0W{kX_jq_~`u+iVtGM->R9ViK-<u=5|P#c%o7-{1I8yDKR
z#Kv$N!=!VOjf+KS8~Eq1+vGGHVdGL&vCDis;9%>Q+qlxkC{<lyY)3N*CT7|mRKD8A
zH8yUwahr{CHm<dCqm79+u9M;QHpYwa6!!)Z+D<Tjf{<>KoDOfXG0Dcwrj`;a1Ui##
z+%C0yc>ZtWP8(BfOqJv=8+RKIf%3udrb!++nQnAuXb$i}k=Zup*m%OmlQ!<Pai5I`
zZ9F8kxi;q6{u{6NtN6en(}q#amvDiQZ7sC%u#KfEE)r7b5gUueJLssl#K;-UG8@Zn
zJZj@H8!K!)t}4oduxU#YoC>bAvC77J8yjpqWn;CC7j3*`<7peu*m%yy^ETGlSZm|i
zL;TYNy#<Hb7bIVING+=v(#tkpvGJOX*H!hZFo+=t;|)pPRL27eYv0m7@~(}|Ha6OL
zTRQL9*d!9POJ({G+pugzjoh{ovElsRkqz9&j1G$l8%Zt*5gZ*s%0}A8Z#I6nk+G4r
zvE9ZOHazLSZ{q`zoQ=GVf{mhzflo$Kvi+w=$~N8;*&^g+0)-#i*lOcr8=u(NCaaHx
zw4yl&o#ay+pQ-PkE9Ss$kRR55X=8_tT{eES@s*9QZS0hXZ)|)k@}22vV90+opw;&_
zelQa$kpCp*-NK(`!X~Ksi;Z6;JlNtM8-LiS5kbue{<QIzjfw~m!QVFaa<#YdpN)Mo
zq4__ib#i*xuSP==e+>`Xr92>qMNlPzsu5I*pmM}NKu}IK?yc2StZsxnfuWoVwIVn?
zf(DYaSUZ9`<Z{kp-3aQbs=hG{d<NJsf<_TEj^M}$n*9G1sCG;QO;y!5f@TpkkDy}&
zr$%sW1T7+H7eV_7j*FmW1g)iZe8fL>X~h5{|2wh-y<@;_B4}&m6n4<L--!{N60{z{
z$)+~w9RuiK`f^$Xog(NK!Pya<F8$6CoW-L+1ZPU8K_5R+H0h$+uEM}i5WqPRbdR8C
z1m{KkrzOvoLJwh(XWDY>6+!O^`j~d<p@RmFRsAC9AHn%D85F@_kpU45G*0MeNCZP8
z7#6`r5?&C&g(5+0^u{yBizT^4c(A9#BmN<8goKweLXnXXTpqy{5r6l&QWAziSEIy7
z3%MUrI5vW-BlsbLT@hRp!MF&Xi{SYPu8rWj2=0&Ife5aTV0;93M=&LV8)SP^1d~K2
zL~vsS6UEt!AY(U2a7zTYM{q|3x2o#42qr5t43&*C_&}5V&Is<34mpLv`OMS^rb&3O
z@SX@}MldUa=@HD3pM!1DYIX#34)G9pzE6_5!ay=Fg831wj9^s+3nF+hf~65Gi{POM
z7Dn)hG#`%W<NpyXj`)v19gLG6cwMtZIzi@_NAPF_k4Nx?gpWnA;*i?FFwlI`$XR?!
z{2AeDA>)7A%-%H-tTpq8@@I|V3lXe~pb$YZf)^urDT2)rgd=!4f>$Eg5W!m!yc)r4
z(tk68*F_lf8-@h&a2H!|+M@rBs(nZJw$a=a!Mi2~T5+=?up>xEkcl7?ffGSI0$2Lc
z2x1~sqr(6bk|eqK8$YZHhJXrL)#gkXo(Sc6$pba&mm>Huf~^vkBX}=@E#lOCKY|Yo
zXOSk`BKRnRFC*9?`Nt7_8o_4~|F*^_CWg;dwLO9_L}*1@HpGnwi?1U1TJoI{d=tU9
z5qzg2YXdc6(AM{I7{vKw1V3>pb8w=ApCj1Kh223d2fsw{YXtv9@UNWw7QtU!<Rkb!
zf<30=fAA0>SAl0Xv{%aeOuKyOF*u6-7r}lm><+3p2s!@p4q=6mMFw-2gG!EnXkd|B
zK&nciy0Ds%@*0MaAMT*GgQFcBBVio}^&K=2Kf*y>2lbo-t8viZh7KC3wuytrfg0aL
z6AALkw+@doa{6!TpqYc?9kg=L+{jxvIM#4l9p|8>iJbd>(9j7E+Bj(Ipta-wPSnBd
ziS48roIF$WBnKxu80=t(gHs%IaL~m;R|g&C|1<}kL{4=M{B(P|gEJg-mN3XIb9JVC
z(%V@g44Ydw2WLCz<DjpDa~yPc(9^+rGCbEo4-u--JP5d#gWit+hb9LlL2W+={iQt6
z!TBNsl+vJ<7?=+-d8YYL2Ujp)2NyWF(7`YV7daU2V1$E<l@01#B3FSe@lpquIT-2S
za+ArxKQ&1LKFYyp2iG_lC)=xpV})Z5Y5i*P4tyWV!F8&g;NW@(;~m_fV&Ltd|KRn3
z8%?{Dq%$;%3!=DL{1ykdI=IcjWC#10A_uoSxWmEg4&HEZr-Qp3EOW5j!QBp~IJnQj
zTnAGfOq2Oc2lt3f7qUmeN%ag9^DGCm4WHxSUc;FdZudKQz`-Kf&T}x|!GjJSQZdNh
z0;9jsL2&4K*z_gH-eL!jNPmfgr6va21{rwN!D9~AO1{Fu<08*Ec*4Px;;S93bg)YN
zDd9oeAb_Whkj-&hV_JXK!E+9tckqIPmmR#~V4Z^(9lWG~1KR+DIEk;y)oZ3l!9CtL
z9jte-#liayHaK|8f$JdQV55V#9oP;c4&LF!XcBtY!De~bBo9Fc!wxJ74~{q+btGYn
zF$YocgOS9Ia#AGkpx_|oAnhRIAnU+$kTd=RtAn0NipFzUq-6T?o{`h!0|y^+M{w|+
zgRKs>IoR&t3kM%b=Mx8?I`~+e4!M0M&VBQ9lUq9JplpAss;`7Qgsl47!8b;eH#gYL
zoesX|s_x)d2R}I2<zTmzS@olXpSbut{>M)FQ)%G&pntahn}gpS{ORB?2YY1ohmZkK
zjS6(~w<LRod{iJ1vi4sG|4G<0iv3*tqc|ao)=^YMfhg)lQ9p{qqNo%_%_wR`Q90@#
z9jZoAO{7Znf9KNGqo^Ta;GAkChf7k2C{jC$D{E9x&Zg@gV#{KKC>lo5Jc?tZXcR@`
zD2|Tem?(~nqKRye64Ew!zK$krqN#)=&7%Hq?g#H1Q_>=ema09@=+NZ&C|a?PvRzo$
z|E6f0DB4DGMiggCtz8ryqUab!`zTIigi)Lv#VM-d!@Yqa{dC}a5I2QRHJ&>~ahiD0
zwbPB9#m?eqMbU+QH^<GcQJfvcIZ<>|ZP1tQQJfn^4@rXK6wNv4><h_x#%Hf6dK=y+
zioW9gg#C^De31cB3=|n894s6n42~o8d|?z1N3lr4VZw`|xHyVSq8J{<h$tpUaeEY(
zs_L33#zk>i6eFX!Jc=u#xGIV<%IB3)jEZ9P{~c3?%_g{wmHE}eptHnlqqr`L8>5&Q
z#r3M9<_%GdH@vt0DQ|)qubZNn6veHk_GXb=OfB0AJm1C<RL1Uz;?5}ML~(BvcSUh`
z6w_rgML0EzX(rkr&U+-^a;6{ij3{PCF-sB_XLIbdp9U-5eNoJf;z8BkZ*=BI@jw*w
zjL#q#dR|~6d`OxLg+c9Nah@l%i{X(dmPD~Mie*v!5XG)2mPheu6!9qBC?1PqMHCyN
zcq@v>qj(~UHBqdM;>jph%E{AFtcv0(@ztiqpp^ihIi%fZqj)Zg7bW2%e9uSmLKN$a
zLZHuHlf0x!`?ByA;j6;egs%(V5WXo~FXWoWslG9ax1+G4u%mcK&NoHzu4#pt*&Ov>
zl?`jWf@Lrmh=_EeLdWRGL;?lImWZMp#d}dCqew-Ojv^C9K8ivVS!sGv<V+p{s}5%G
zD@IY04*jqy*tSIReiYlI_#%oAqWCb1kE8e`img#>i{c{_22HpzGl9=fqxdX}&s9tR
zLF$MB`7(+fQG6T4cTs#5#n(}Mb4a^^lR$H)k$+Eep+5sN`swz^D1M5fK@1IJ_&JK*
zT$y7)48KJ2YZQM)@plxzMe)1L{}ApG9(2x=+ds{m+#AI{)&3{^NBFNW=nk#+M-hts
z?+y<mIV^@sG1Q9T@E9ud;eXZEh@ol>)ncfw;=!CS34yDchsbNkP)EgjflydCc3>S2
z^y?da78{8l6GKyx#xWcjLz5VeGCD`c4txVMux%DY^O(Qax01rK!j>_#h~c=He}oE>
z9N_V)B|jmC*5Y*1CWf|$#6wr@RdpiGV>ns-v=}<YaEf>bVMpPqLSDSn=jkz=5yN>g
z^orrk7&^z$J%)2*I4g!OF`OOqza!LD`rU-gThN67&x!fBQ+V5?N6ddHH27P<p3)2y
zddJWwh5<1QjG=GPuCQMW{Y7|97ijjY;{OapJ}8DEsv0b0i$NZSsz^R8hKsoV#IYpq
zzpr<33`=5I8uR%jF$|AkL=2b4a2aEZVNwhuW4K(k*U1ClbGaghE7`Snp;0kh6~mYq
zM#ucey5{kAP(S}w*0C{M9m6#mBR>1hu5o=B$C=#UKayUnUSC-ybbSot>54~znEyp_
z9-SHOgcxp=!bF+##Wx;^Z;s)X7-lGpTVuE_hPz_8JBG<I|1&}K!0%bzuJG=N`L8ju
zFL%cL_ZC?-C5EXn@O5UUdRh$k#Qcv6Qi1P{vUXD2(DWGQ>8JmhG5<BXSuxC3({o~&
zt4J8ty^8QYq7Kma$M68HVwkV^ABkZ>41@UOE#EMT;X(0-jAUU9nQ5V*c2NwAB@ZMF
zU}BHZvKW?g{>0Hajz?p7j59xuqvKc+!{agRis8o?o`~Ve7~YLxa||oh=(ECAF+3H+
z>KOR?7<2m!d(GtYqDI5<1ke9tSgU>o|A6pZ49~~#f;#wC3>#xu7sHD&yd=rX^0|<Y
zI99KCMSXu&_?qOe3*QjFDO@kyAmod0Y?QfrTg7)ch3ZtWxQVM7Uk%gSh~XHl7`~0+
zyBKVa6m!M@#)`pF>(LluvgHfW@fh3~w#D#K42c+$F?ccLG`Rd00k>2PX~mX_AuBn*
zWWpgP=3^+Rio7VoDN!;yWs&!UTVi-W=KpsI6}WvM<qw5hjfamp>$v{J@MR32%8L4*
z$MBgrtypBc+d1JwzMma33?d<ZCAF`OA-{n`A>UEm8S`KL{$3g2XYk2?;0$l;e<<cB
zF8*A2<ER?PZZ7^Y?2Tbx48O+k8>ffXkl$n2!%@@g(tjvvO#WXn{HZ;WGl3rp_*-%=
z3;w3PBNRtP++TD4RgnJ)_X|0E945s5b+vNbKO!6!N2NIUQ6TaS1O4}ExkFWp`#UT@
zIdym()#IoUN6k1^SNNyawc`HTOLP9q2C;S=b?7IKy7Jj5j(T!SZw*B1#}9m)y<yzn
zXX%zFCycEz8&xZmG*ML_-v5uIDgDI#k8$w~s#zSZq|-c(W8-KM_ftWAzVLWl9Q>Du
zmT`YC;KP>3$NjSo?$;;8(OM>LgeS()R-~Pfw(aBoAM*u~oFw7NahxI&e3+4)>ZszW
ziu|;=|7D3z%IE2EoDuieBF4`ooE1lxIL0!DIJ(BsEso)FjELjxIL?XVyf}Kr{ju&I
zM^7b<t)Cl552a;MpAZA)a>{owd&kiyj=_@mRYT0)fH?Z8cm3nwX#=A=pHXQw8yLqR
zdFEFR_`zfj=#aQx4UXf2I4+F)pH96<%8YZEG}+L_aa^J>m@#hrc*3P|To%WuI7Y`Y
zGVZVKY=v!I&fM}9fVlrK>XjN+%Kc@wPv|NN%@34gRCRx!&^01+<G4SLar6_%bsEr@
zdWUX`<9c}>AIA-GOwb52s);hWG4Agj%p|7-yF5u5U>G;YaZ4Px#&KI5ljE4CoY0B`
zLA+hXJL0%g<StWtx5$(@riui=_uUge@Yj~pnFsC{dYyKr$gDVK8_AqF?iIgJ$o^9E
zfw+IXo)^dbxc{G<+^H8Zt5y85SQy8HK`TN^{I5l+Q;XtQ%;0NPP{?HR0J=1eWpPw-
zQPstAF8*<BiQ|0@*<*2RR<BpY@pv3h#PMVt&&TnCYJ)@S$~acVv4+Po?t@Z(S{VGq
z^9-w0Jc9oMMl12>jD%+n>*9DZj#uM&jmc-i<9J2$ipgYz{3IZUfbV*fzpmk6{x`<)
zMjUU(u|AFsauu&p!A}8j|KhszR^0!MgR__4D|lPoe<$w0O}|O<ceU^A;;+DQSaH~#
z37P=uIGi}5oN|pqDfx_PX0lywaap->B;rVFU*@df#%we5M=+B#Y!b>ULbmRyty~;=
z5lRXo#W+eN;_q?p_4A*A;>PdHd=STnar_p??{RF6V_V!`W7o9{eH6#XaeNiW*E~~V
zuKI;OSEoLWqi=t|>CY5DS6a@!?V8wM#PMYuJK_h9DZ!D2d-pdyn)9onZA0H`CQ$!7
zx!NiGUid>CyF`8z{v`ZaxLZi8UqpV5BY4%9G3<%s&p7^y;}1=Ya8rNj_&bih$|PKW
z_um)y&%OVR;~$yxOIFmO<i9xfo7EuXqQdppcIKSvrRT$3|8Gz#x&G2x+4YYa{`&8t
zx{J{+u5wYsMNJniT^#SCmW#t(G;-0{MQs;#Tz@9;%#Bt@xZu~`cJvL^b^XH%Pax~L
zsIRsfu*wBr5(zebitR`jO<eF^%{=YVM=Ad1E{>MNV_g66w7OBKsf%Xv#-Znb(6E(b
zU9@m<oa=v4lb<@_>dI-{%Jq*dXSg`i#R)E2yJ#Z`g&jrOx@c!4?OmKGev*-#%$)F;
z!bU~NgYRmd>f$t`(@ErXA#3>wqs}hQQJl>DSt4Cr|LnS}i*By})t$4IQchrgO|H9(
zb6xas(bL5+7Z<rW&qXg616&Mr(c48I7yad=udKK?_2XFZOxry3!@i&I`fq@eaCsl(
zVu*{OE(W{)uE!7eG3OV!{?YJ4N%+Yc{#(bwPz7r*c5#W)c!jElySUWFW#S_w-&nJP
z2_NbD=ggOL===J|COYH?h_2KKj#6xVg^+4vT#V&tCNMXFt6f~<Vp;<CBrwj!wXVNU
zjZ5G<7uUPk=Heq4<6Yd~;uROKx|rbNMi&op=v_=yGH-J+nLTweiQ}R(w43Qur&zbR
zxK$G}IQ6>S#T_oDyO?1#?-aSqjM3dLrns1@;xr-s+#?U134wFsOc%3U%$CA^s-@Z-
z7xy00)?63&yLf=(D76JfZN6!mejZd+;Pzn`i(I_mVx5b{E*^35l#A6amPlv0i$`57
zm6K&c4k8U7Q!Qg#>0*V8$6Y*OBu|<oP%UU;m1*v2Qx#<C85e6@tX1u^E}nDoycAd)
z7zS#@7df?DysTPQ1u+C_ueo^L#by^_7jL+D)5TjZHY(Kh!VShJ^=bIFi+5aXa`CR@
zlpN|UaBjJ<6;*=h!f_FG5tBD6&=0q`ioxi(QVw|1MM}lAi@b}1)G{uzE<DL|8i>FT
zo2FG!@(-n15|&-O=VFVC_f_?Qglsfuf>v84rxQv(=FZE7C4rU+eCpye7yr8W&&B61
zw!8Sz#ZNB2kp9;~ntbVEhl{V20TzSIkbL9fTNmGP|1vH9;NpAnATz{W#_DGmyIuV4
zVz1o(V&v5M)x~e>CO!Y|VviL55dJCrOBnPh2!MQ_i+>~!Mr6N>Py#g*sFgrP0!a8v
zW#xpw&a;WbRIDVVoRTVu1AAZ91ga%aJ@LQmrW%Lv!xLzfK;r~zCr~GWBjlmJ@l!W}
zdTJubNrMC$nikmv8#>aoa%=)kRCSb)Q5`KO$0X2Hl4io@LfTTHh0&z*;}d9=K(_?W
zPT+(DS|@Nu0%s=BCV{pIbV}fKd25%z$qK%`iYF#;Qb4qG(I-PXMQ%F?I|@$~o+f0|
zL7oHbEOS}~#j{lGl0a9}FUrqJpnC$BBrrUIbB+Fm3G_&yX9DLX&?|v~imG=4eG=%G
zK>q~#n&#MI(BELBi03CTz=X}>pacd>nQaY8V5s;7MnVP3hnaXTlKf(0K0;)40#_w)
zsrY3Hj7;G21g=Qn$^=HqFmMudGvGuP$H?UB1jdT6A#T2!Y5iL6L~TRYC2+kI#wRe5
zRSDdXzywYh{aXZkccamtl)%jiOiti->EDvTtqI&FPPK!1Cch(rI}@0az|;ipG76OQ
zJml_#|A{9O215xqMjPDWpPs;s1ZHxg>ZFKY&Y{m)3ICF3ww%mK;9efibY;ZzqWdL$
zIDth8JdnV=1m-It3uUq(;a|2qn82U^g&tzMloK{bZ)|RH0*}c2nFN+3urz^{DlQYQ
z5VG~<B996m6Y{*`agis4Pjat0A{3m8tdis@A#GPD@U(bPOUW7)*Cz0+$aBKyg<S{x
zoqaKZml9Z?!iE%HPT&=eMG_N|cr}675~!R+l_XwI;0=w)*9p8y<peSbWE0qsz*`B#
z5{M_TF@d)e2q$1A{C^MRDFH9W-%0ovjGGd8H-XJc2!%ZH;J=9434O9jm%0(<-w{To
z#xy$pLT&<ygn!AOl25uyYAiUE^uzPgbOQXC81w8UkV{}|0^1VECs0WEXIxtnC^GCu
zA%64iy#z`L|Ll<iT~<T9E5aA1Smbrb`|8~X!ViVP3)ded@L2+%OaEgH@h3c=X&3rb
zu0GLy8(#cwmkGo8Lh>&a<PKSV#lh;}e=3ku?wbU@P2jr(b|&zB0{as9CxIUl*p=`<
zRQr1ZKPLRsq~DZ*pAz_)y-VO14Hkb-XVtF>|Ib!<mvs{=Smd<i{h~c;l>Yxv7=I@4
zR|0=4^Bjo13WGCnC2#vsfnRt_qEZt7CBW;}{X&vZ5*0~b!VMyWG<$ia8C-)`O`=*7
zCna%m64jHakwo*Pf0AD_iCQ9!lQ>+Yei99msGY>w`ZPhEq<;-^L=ttA{?|q72}yXn
zn>$p)q`$Adtec08lK#<$yXuiie}AO&CP^HX#L-Fri+{%?(NqfL!Oq((>0g`hjP%$f
zS|o9tT5p^54`dwZmPs5heezaGoRCE8q(1>TGkIgAO%gnb4O(fJMEj(F`N`smYMK{E
zr^wsrB(9=W5*?E`HHp)b7?8xkBs#H=eM0;+G;b!Hp2QhRoS8)DB+gBuM-pcx(Its<
z6bXarnnX8dBl*80X0R%9WngW0$phXqiQY-{N#eXDdKrCIQNM2z{gUXP#QAbd;iz^8
zR#$Q+jjjeIF*u3Klei*@AxR8PVtCSDyDmuLLgo3QB!($zeB_C8W`p0czc`8YgF}}{
zfpeQ_=O~Ow;?kr)8!r=*j7<7pA0^?R3sdJxC5jmvmGt+B?fpVyl(DgFQG_>~uMxRU
zI4%i(GyGav^{!meT?_K{NsL!59j@NL|HdRHGIc3*P2r{_CMEG+5?hkEIf+|1l#N2M
zByLUOwxoY)vpR{%N!*^q!XzF};*KQlOyYhD`TxI3+@187-+PjnqB%f5Es3dWotLF-
zjyn!BFkO>#hLmT@?JVJJ;T$2`x;KgY#ODfmokigT%H+JHztqf6VnGrQs`eoUqiM#;
z>35l*{ZzY;CjI+$i<5XHi6t5r4%t!(nZ{*iwk%KjD+a45d`yNbl6aiEKoU<Tu`=mD
z!1k1yUd5<%Y0qG|VDeL(?9tOnJfkkJQ84_R;9B;P$(QgoF6K!*FaCm%W4%t~Md3@r
zmy>vfhX8T^cA2g&-%yeI?<Vo4_<AGRki=VtZ%pEC!{13_lQ_G>SxVc@Du#tt5_V84
zbcEE2im=^y60S0kNW#-d@v1qQL`p(-Hmy`=lE`WVg9rI?N={x*3P}`IEG7MafaQM8
zT$PoXy?sOPC-FfNjZ-)>g%6Y1n#Au(>`7vqynQ6(8pV)4*64ha#HUGomIPl?=8W2&
z#OG>-13kKm|3UaKlK3)-9Z7tZ#Mepu%<0$2-${wzaNrn&^mhq&Ch>g|KP3HUrFgS~
z4vAdN*xZk5`X?c8t5RWi62GYUtME5j`Oce!{?Hy&ErseS{F%gGN&KC}-Xso7`SXyo
zXrG$<k84Ziihq*$S01>qGZp)j2&GWL-HpqB%3q3klZSf;*ZdBeRFzVwoI;fps;2xk
zIk@}}NDWE2Y}QGkX3AgWYo+`h^Kf~idF_;cho8wgB89qAu9xyxV6NWvQ)rMvLuqmx
z8>RgFV{Dxx$j|mRN#Upznx}AV3P-2>qs%e#e^17bjjcCLp_zKeuz8E41^w^`^b}4`
z;kXo9rf_`9-~CTibFET1A%)f{e<h@C+mwIQXhRSB4o|xjTpbA7r@#^9|4h**=jti6
zP2qHT=%}`0Z9}J}aH?YFz82CKk2@(ao}#c{XQcc?&zUK7PT?#DpmQ4{N1>anhNLhw
zg|o%aQ5fA*I9E;dNTH8nrk|e5)p;rON}+ek{~eQU@l^}<sBa4WQvP?X`*XO5h6bkm
zCHnjn2B<lXDMx|b93&5eIUoM>@8VvN!i6bZm%{Za3`^l6H8d`Ti$!=ZbhvtP2@|E+
zK0@Y9^`$BQKa4IDj!fb56t19&YPr0#xl!Vyg;xp32$|=xB3Gwyjgjz&8!naCru@&d
zbF9awa6<}nQ@B5crb9y$Qkay&%_)E9x-o@`%u>o<TDcDJ8=*X8-;%<uDa=e^RtmQ%
zhf`9Rn!@B1Zs!0gpUlQxDgSq<J5vX~vvjxSBp(%H_IPeHO@=cR(mg5vGtSeMItI+A
zu(-4`x3e`ObCjHTqtLx6+{d}f^VqijAAK_N2U3{FaY^Bs6y~R}AcdtVEKA`*P9cS{
zB!z`3Je<Pf6jn8@;Lm3?XI~bj{4+gHutzi-Ddb^@BTl5-<taSM0ad_z`ub-hD^gfV
z4;r1vQ+OifKNk3;npmUhM^~Kr9Py`8Sgq9Y&L;<Mjk@qk3a_THmgXrum%{TjWMA5b
zUQiQkmpxjS!i!Sov57@afR_~;KV!=PUQ?oi_5XFLy`cp1Z-w8~Y~il-Rtg)ngPfVc
z+bO)mnU==&X>3a2UG4~JbV*}#3SsWfY5y<ntQ2f6DQQ$qBa(uX!rv+E<s8%Zexq82
zVkyMAW2TTu;R7ztYBVX#3sWhiQ~nKVW+0P7Rzh+wg<Qb3kQR)*C{p5LBJ!S*Z%N^O
z!}+tt))cm>_)7{OiF|HqKjv%{|5W&ykUt8r(d{XGk;0df?Bv8tVTU-YzDnV1!@m*v
zR`{JTI41s(!p|!164L5Nk)L=)rrY3@?3N^G?$;E4Q}K7<9^oHCYW^wm7l&1`aoX=w
zN;$IsXi8J^Zwmj3?-z#B{%XmsA`OTiW+atFDhoM1s)-zxK5!*fJ&hV^)J*$_k6LN}
z@X;iV!_%lONu4wrh_LpEH0l~&Po#eOe_!TrC`lt>W8slRjUfLCg@N&~a<m#fChZ>%
znktNDoIm^bH&6T5MEoJ3g#tKE*fNdd(`c3Uk6EqLXp{C&y-tv4E}M*}t*TCxq+J^A
zRivChADooN$!VOTst!WRyEP7V6hGBSPD`Vc;irq7Av`mU&LTW;)39qA-O?DE#sv!O
z>@@nP{blW(G`gp8uG;OTDu&uaRXx)<FYWKA{0uuiP~JQ3AH4dc(Kih~>A_z2OZ$J;
z#)Xcx=gY|eH99bjK}@Vhb8s3%lr(=_^t8`~(!45-VUjbe7l~Xf+e?JQg(K3qRD=Os
zmc~f&%Y|1M`IRE0(ij~`G+txmaIElB{wJM!bWPg-YsGQu#kFbwRDmbP<I}i-<B~=;
zjR|Son8uT7tW0Afy`?cfjRk2;O5<jY_`PY|qTugH<IXg0mH!U>{(l;i)BXXS{Pwi}
zuY#QRcWGiwOXHq2?iOdprie^U`=?thPB-#dA~VvMDZ;O^vzFWJH0Br`{#EXMY5(BJ
zF`cV0?&q+!3q7EY&r`qnOX7oR|NQ6CG#*Rip)?kz!9QB!(f?tYEJ|as$RlYiqe<J)
zk~Efboowqbyqx6x{cE{gajbbFv_gprmIzLm$JN#o!oGDXR;BTjygi@B>NK7fe=dz@
z(pbaUTjBp*@>(hLh`<<_pJ%1RyB6HDcpQ0w=}O~8W$#@s(W-qZjhEASC5>0p{(o-1
zlSZGO6|afEp2n`~Aqw9}<4sA{3pWVg5^fZ}Eu<#(H*xalj}myO4b!=veo3TZrC~F@
zX*g-b)ih^XG>w?yJnr+UHcoGDE<2*j^Q3lsYNkZeT0@vRFYUjVP0df!$fc22#|vo`
z(<r6=OZ#9y;=RXm+CM9PFO4l}yr0GgX>3d5qcnc)7y6Js8~L{f7xfEmP5akboTwc1
zkG0eBh|F_?Pc%S0CHpLm&(qkR#usU{%b<M*Un=ry8C1{sJNS+?zDnb33BRHLG=8H`
z6&dGuB0GiO3x8mGMSc|il*Z3#>=tJSe@WvQ{oc)P20i^<Rr}M}Bl1TYf2Q%5_<zE`
zg?oi;abFt$82+!87Yey@61jyk{!&?y0Yu0T%b=3sl{2U!UR4-;w}d)1GB`ftFa9+%
zsFlIt8Pv|8iLt7aL4$w`>l%4Ik@`Z8NW%>HNx()bHa0p(if|eqmBG;&9Ao6iX3$i;
znUORX;e|;HBRMXEmg1a346>CXJRyVD8UHZXCWE#jepdVW`yKJb3{J}6RLM`y`2P}k
zO2(fjyiXM@;~nIrW5)mMOs=jx&pa*TPv%Y;oSyMdHP4U&?=*6BI?I;kXNhzXb`^HZ
z;B1j|gw*Mt!MTR_$e^d;=ZW;nptndLBk!9*zYO}TSfR&J=wx69gEDCKAx`)ZgEJVC
z@o%+lEMaH{7i7>TkG6SSn8C0N(phA(xF~~*=_iZ+SzMCA@C@F|V2i9qWN>)~S7dOh
zikAuLZDa=5Rrdd};>rw0W$<_gPh>DUgR3%_lfk_ijLBeZ22(Pan!(i>TqDDqGZ-gw
zo$y-WJr%y6>&3@sz~T+!6EgUYcY%Zxg*Rm|N#wSMAyyG@$>7!uZp+}GW)*kHimoP$
z+@3*;iCCpkyEB8kGPpZ~N7WW_cbm{Oww1vwDNh&95C%H*GgHBY<YBfrh1~ATV15P*
zq&zo+`!jgJcxLT9qxoP44`r}KYLqV&SuA`w<A1n*Q3jpn`hDm2h~(`1Qlr02WV!nL
zXa<jou-7XxnAX6zdNPBR8EoWfb_T05cq)SzGk8f>t20<<{5+k(Gls7bS)0MLM)F(+
z&l~<i2H)2AJ@;PV|KH8a8N8yZ^%=a%y+Hg8;mRt$+UusLZyFDOulD5|RD3IgT>A<p
z^PLPfWf0H6&EVY(Hmf$8L0H5#wwCc0F%svHti~jqUnP{tAW6>|<RwXQ4vPe{C?lQ~
zG7^uIvr33tA%kKDWh1|~VW?!BGeX*OKD@8mc3HH~;)4u6%wTH<+qmxWBbga|l)=YR
z_>t>*2A^iIlY4pwpJnj5<lkhlJ@C)PU*x(ael~W9e=Yn<7_`W$Z#kwWjPF<Y%0Eb9
zmyksU7R<(<GWa=z-A4Yq$S=ZQGx*KOslP}34<q?g<S*gh8SFLkeIow||23K4pFt>#
ziY$;toh**X;;^hgQMpymqLO&!EUIKt)yS)5{e3FXVe2)rsF_7A)gEqiD5pYg70K&n
zQ7?-oSsax`eF+;08weX3HJUUQKT^md8#+3RW3o6di<Vh`O>3G(vn-ltF<G_88qF5}
zH!9j5pG7OyN`W!7&Z3QY+pNFf(DR|apyv~_=%gmdPZBv<c#5z?79B-S6`m&Kq@wca
zS)7r@nUb)0wn%5;Sy^-u=_>3dqz;=tCyVYXo|{E4ksiXH!t;bwqcXSNS@e;Fysvs1
z$j{H>$}C2yM+34LD4juB49;Rm7DKZbA;|^8VZsZAH0M5YQ5F|-{Wp@~B0-~hJ_Tyz
zmx+uNUM{>Mi-#54=q#?v;=U~AW-%s<v02<Dg{y_v39k{3Q;^q+Gye?W`Ygt4L~h7p
zlE?(%jlzjSj^j-tSC6f@*+^~?xm9=@XM&O6p2Z!8-zma|?pBLzZb}wYvzQhHki{$`
zpDr>Zi<w5UO~X1ni#d|qD_maVz*yX`;+t7Kkj1<#=4Y`Wi`7{?oyCKyTAIbOEFQ{Y
zA+sb2TYp4kk#Mmv$nz4zmvdOfpUmPh5n8PfS<}LA`tdBDP%+3JB`dR7Wi+4SG|&?L
zOcrY-d^L-;S^uqs7qVEF#k1ni2`PMDga>q9>AaZ5%QE4~(o3AN{FhtJx>vF|z3Kt}
zniO6azG3#Y^;vAl;w=ej63Jp?7H?<qj*)E6Vw2(T9x`vk5?Wc<rk0U7SwvNg2~%0b
zvv9=|!lW?B+d<4`;bn1N4!v^7Ws%R~UJv(q{#sGU;_EEF$)YGjN=hQ-EZ)mvOBU~Q
z+0WwBEIyO`!z?}$*=qE+iSSRIX!~&%pQv~+|DR{^r6k(}{X=SZ1QOo=5jnDn@8Mgn
zs2(bN_%4f`S$wamzq0r{iyy>y8LJ;fe#+u!BiWtBFXF!ne-r*L+#{s_KeG7K@Sw%L
zS?rf&pOOEQ#lPbJ34=4bkkVBlq#uYJCgcSIB~`@hd#LK6ns{|#Z4Wg>Y6_`YOXP4N
z6IDm#2vb{Eq@Jm5;Gv<1Mjje_802BFha){S@o=JtlRO;d;b>`|;Nch#O+6gvp{0jr
z9-4bN)<X-=U&-0%oH{;oySz?l-P+JKeA0vKzlT;bCl4OrXJ=b`Xyc)+hjt#?dwBM}
z5NG(*rlIzH=!?gx<3gSJ*?$kGc<AooTn`;Qbo6kBhci8#>ftmGojjcGVSW8jS3VD4
z$KN(R7n*&8Z#W8}&K}P4aJGkYJWw)5;dSxQRgrWPHsaE!UA1n7@1)Nup&lN3dg$w+
zpNI22^zzW#Lmv-`8lh|JgqAl6%@`J{)~kYT-B`(QtG|cyJq++L&;wmjp<~Sud&ku>
zNC+Pf9^zrBhw&b6@Nj{L3q4%n;Yts~JY3}AQV*ATxY)xb9)^1u;eicJ;GZfE@%>cM
z0vN0(BR#NPKerqso*1a(YrBL-c^K{C8V}<<T;*Ymhp`^6_OPX~pG@wa#Eo4-9Ga?H
zIj>dUuVcVWU{ybF`x^Vn=g@pmBQ(LojUMjuaJPqv9&Yk*n}^9BCV9Bo!z~_e_3$)b
zEzt!CM=A)3eP@ujd$_~Ho$`M^ukR}S7D*U0<DBAQs)rdKW_qY~WM~@ajECtSwpQ}r
z$)e8-Iv?;h%foE;s7YuJd!#0q&w))t8!JMq`Poko_j`EB!^<8X@ceTm`d{K<p7?wZ
z3p_li7#0d25(dNZu=pY&trm+sA`A|rOU0LYSnlCb5080R;bD!3wH_W<)k+VmJUk)(
zq%c?j>Fp_IMv~RS=YykwIBQ$p6nfV17et;5)I3x&Yx_D$UKG;pD<YN$TjW&_uX%Xg
z!y78n=SGn?h3kbIJiH|mMD@1#JHkyK-WAy_44ZwHet2AqcyPF1=g=~TsE3$`x;fO#
zA@0HT@S}&HxEFXxdicP@he~zIL%~DQL)t^eL)L@mA?G14|4cZChG7Je1o>xMB@gd$
za(XDs32UkLzJdvOpt;q<HV@x&iT3c3hmSq%@bHy~Pdt1|{~o^N09AxOGlum1xrgm)
znmlOzAbu@58~R38fdY{d>g@FJy@wy9L!Y}235>Nrd)V#aKM(sQ|HZ=|4}W<0)x&R+
z{4PA$)}J2!^03dtKa&6LVekJ{2-^MEG#A7`4CPQYhiW-g<bWIw%b`*Zm2;?)^LrX>
zfigLpqo3+IfBx6X;qV-4<WN(^po&;qhIMi{LULLiG$*g0^AF8Ugd`0_8s^X_hsNU6
zIZ`BWNS&ipJX&~+u&J<F4$Vc56}Av^MWxB{;-?E+F$|H`!qakSBhpq#<#su=7e7&W
zl98XB!zqS$5a}p9l^N52cha_#BtfWW<Z!0Z?<{gw4qc3-t4KHD**TnJ<lRNi74{JJ
z%pth4=$%8K9G=W!We$CF=$FH-Ioy^*{~XR&k{JNE0XbYQ!+|*r5*aKUnZpnf>I}`{
z0>dv98790)cySJwhzu8w5Yp<>94-^z)!EPLtQkIXyCR1xa~PGwXw_aPyvkUO$ziPc
z)xv9p<4o<fIscdy__;oZ@si(=!vqG;n?LNDu1$FKoS5^Ep*Q6)N#thXEkeq9Oq`s<
z?J|EfhdV?b%;BLN?#$t?9PZ9xN)B^OyHiDG2&d(6kC9Io;W__IBbg;KTgW5Sy*b<`
zJ~xMXM(2K!2aFE8Ge3s~rj}L<4PTtY!{UpCoZdm-AIV{fBukCvGLhwsO*)UMxI*~2
z(Ro6ob=A<S9G=P{oP#C()snxE!_!9d8Id(PtQC1y_?)SIo@t!rzZtqNhZiM$DThs_
z_T?O2G5l4L*K&AW<PG7Q!u7%pLU!t{95#x-Z6xoQzPu~RW+UhHw#Caiyq7~n+~FZ0
zhnUgvcoYzKg$ZHO)TTtzIb=k#LaVW#+njh_$YMdHm_tdVmL~9)9Ny=GllRx64|4c0
zhi`NEP6}Id_%w&l#JA<}k;un6@M!gkI8Ey6(D``|J0#g|<X`0QrQsatuf)GLl5a$K
z#<DYq?{nCnLnx0QB>Xjp-*VWM!;dQdl*4Xg^|MGYZGJg~|DMAiIs7Tf9wDdAUpf4p
z!#^tS74Fjz&^*`}{J%N;XY^U5RfY0UGmlz%AdkcHsFX+LJgQ4xC6B5i)r8dNMsESq
zLk%N8T*S{$9<{~m<Z*;ZkTF`-%cFiC4f1Fxd87P+JG8W7Z4l3qc{Iu6C@HiM9xXgZ
z*ffu3BF%-t)$y?mcyj33{-NU}Y?;ULd9=#o1QlE7v18GJ{VvdF@a^(wpT|c9d|beZ
zd7PBTRRxSG;N(0`$-~OS&Z9#f9rGBP#|83ps_@)AP7~>r$LV>TA>LJZrm(Z{EMXTR
z&vMx{Zr$=YTat5xlynzi-+PGkH1hLAdgakuq>r$#u%EC$Bjgv<`TMWP0O3I4AmL!)
z5PGN`qS}Rd49jDcY%dbtCcHS0OY#^l&UmiKV}$snd0ZyK*hZS#%SAYcugqgq9;2Bw
zNv;=;5nd}CE4(_7Yw{SE$7<dm(680}t>-#bu`Mn^<Hc_<k_ma-C_YhmlW>yoW+AO^
z$>UbTd7V2skK6OOBab`tcsP$mdEAx9-FZyUV@4iRI0rPz@5y7T_%tCqMR|ZT^O%*#
z+&u2jW43Bpb+5=A%}*A&-DeCR$YWj}52-jmj|F)=XskG|7$MyTo);REz{6q{AIsyB
zJeK6KRK?}ScA1F3TbV}5X}BVf$MbkXU4BwJD~$qcsq+-mo5#~8CvS^9lgFAo*5>hS
z9?#|RS{|?G@q8XH<neMIuSjQI9xvwcl6Y`2#o)Q|LWvk$2EM9V{!H*j9&c(K-^zoR
zit8202G#O?gxhNSS4rG9N~aZk5AUdUQy%Y%Y!*@;&L8+KDUyei$DTa?$RnCZERUVi
ziRa<w@o65P<&lu2kVi3(WF9FM(|Kf#w~PoA?ioo=Bro*u{2Td}Jj&wl39D)ue?N~8
z^7v4akBsKlJhq7k7ib?F`6p(*`dpH)h1*T-7b0JBwK0;fxSN=>op18^R`TymEn{Xj
zzUNUOk6n5EDEaTgpYr%wWVi4);V;5pg&g<bDwrO4zVT-sf8{Z<;2+Wc&SNhZu>v|2
zurH5)xRw@hbOHb7@n0S_3#e7VemSWu{ZIiFA`l)X9ADj!ty1B@NL7)rs*v((1ymQW
zQP2sSo>My9)HW%gw&8U|jwqn6NIfI3UqFKb8mic+fW}51+^adV;Qv<3Tam%t$YTm<
zT0pA;PAH(6(QF~oTzG83KR`3E<4kSK0**JFL(p2hy|9h2t*LD%5{$)(1)OB$CmVUk
z0!}TUR{^~xIjw+m3g})yClyZ@o+0FU>6r!pthI9iXNhzXb`^FLo-M4@#lL05fX^-9
zJlXaTQqog|@dP3DDWGow!%S^Ik%7Yg!t;d#gftl>GPr;tB0~$fpnwa-gZn4kTiFWv
zMG}%<T)-s-3|DbP0hbnVnfSj|Lcdf!uu<)D39m3#SBi`hjur+1k1b$&0W&1IT6j$X
z<3z6IbSmKb0>*PF`NU2EHxw{Id~yLdN@tRa6NNVk>6Xej7jTP;w+e47_~*%#2W#L#
zen$a!7I0SqcNZ{4n$rrHdWfIEn{Oo{4cWDs1-Jzy3Yb;E>;mQ#aBl%m7O=8_`xMm@
zAvNcU+%J4UI8QiVxS)UsMII6^6w>NpkwwDA1w0~>t>-trw18zQE-&CQ5egqIV5fG#
z6-M%S0Z$mtv#C|$?-a19fTzS)7w~ie&xpSwTq9g7q|awXo-5#akr#}7oyd#AmkM}U
zWP{G7Y4vIWuSxQ{@C_m5Z;GrJZV<jD+$emz0KTVBwRa2HTtHMp7Q-S=0hWj@j0l5l
ztkY^4lZ5*50(k$8gj-U=V2-5<NEeVPAX|W^aeTjkoJdKS7Z!v?;lXh)tN5O9%OO=C
zh<_;DD%>XI4EdyhPYW1T#ONYEQy7(s{!06K0oz$D;L8F+l2Ev#fWM{lmGEmJ<==>W
zEBsElQ}}%WKNPS_%fgQZ{3gQ1;U|%wg}a5n2!9p6#g~6Y_6YwF((2Cw{xUon3hh-B
z`-J}p8Ogr|{Ac+7!vD^|E7S!PahT}~lUBKiDn(S4<b)zxi&QJ3dJ#2>s98j<BAOI&
zR1t?4{hgXy!y;-IQKyI_il{4LgCgpg+WJMm#bCE(FbDVCMnyE1&XGowYDXJ>ToK0<
z(X@zWMsjQs%?%G6woox}*i!s>VJjnVqu{$0adr`Hi)g1}`yx&%;$-m?g^R0%P7z^v
zT}3(wI~H-O$Z4jwlgR19GlXXfI~Q@5NEhMytNrIIxP8_#bdDtC14X(Qajuc{D59s~
z=M~Y*@ZLrAF}$xxKVg62`9%y6>ABx;Wl#}=RUA^pNRgq!3xpR6sWwdHBH_hFTw>(I
zix?q(sgYbJQcdTCmltt`kzXm|R1IBK#F!$kF5#LI#*%PKlyEqU#RIo8-Y#NX5!V)R
zT@lw8v9O4Tix^+T4Mof>Vpb6oiny_e+lrW6#6-EhS$LChl8{5pu({n*#I2H$bF6O{
zzpIG5i?~DlPE#A0Oeta-Bav{b35mATi<lwdLC++!C7D~q{YA_XzgI~8`$X8{10oBA
z^MvzF71g*ssNzGK=PWML^n1LBCyH2H#3My4k-~B+6tPsb%Y+Po`^978D}=#rLS)sG
zMXW61)goRiVpS1O74bq5>xx)i#M4DQYxJKfVoeci)ziR`7?9_Rc-~~-VAYF7yliY=
zB5CHw@QRTHA-!J221(v1;!U&vt~WaCnpe=|EfqHknI(4oogy|B@oo{DiwGC-T@gEr
zu!^vYc&~^pMMR2lipUn>6%j2WRzymfi5KA(ktiY=WRicEU@q2n?hdW&5~{<Ozlz9k
zzv%8i!nc~gkJt8F%oR~6qA07pkmr-7BIX|D*OrU^(S!#Y{z}E-`$c?E#CEC`@nI2L
zi}<*RPm0)9M3<(ak7Uks>_dMJ`;_Z{5uX?RvwGgH3{I%%if7<oa&A`%eN)7@MeHcz
zt0KNG>Qs<V@894*fXa)egHIRp9PIldekfvZ5&MeRRm6`){HYdyD&l96Uxg#9hjth7
zi(IkMgDw81+TVqHiugmM-_w4-xcybc-;$8Ct$)P#7ZEDqUnBpoh~U0NMF}XOY6;a!
zIIM(9B~&h<N(rMXhnQ7nz@AbOw9CuDuPQ>-Oa8I1MhP`bIMdwO;EnhC142Wpg=&{j
zr-W7|oKV6M(xh^;66%&vPsRErG!O|UNkj2Q!p6cQg|uo?!cm4FUBWSjH!b<!#-~E_
z5{@mQg^?dGa$E^5MRxPoy`j1iZx(7@LK_MDl(1Ci7@V<fOK4X@d&y5Mp;HN`i=QMs
zS$Ikb9Yok%#}ZC8{It@6<K`JmLJ8fCyt7D<uCv6u2)mZh&FGvha!%>M@_4S1_Ymn>
z!g(USguPAeGt)zTOXycZ{}RqGVMGa+mN0;M*4}+l2?I+QRKnmAhLmuj<U@rQs3Gpi
zOgNQ^!z2%ilw7RhCBotA7loIVFtUU(60&%?$fy#o5V_LG>2|c?SBV5G##r%Sh{u)i
zU<nVEaIN}6Z`YM@z4&<H4Z;b+8%vldaud75Rabmc2{)H;i}<a=DZ<-Im|Vi`CETGR
z$LMa6JB4=%gUe(r3{5Rz8dG63XNgQNVTO^+6yey-Hj+6d+$$dJdUF*Lqq@I@2MnKA
z!hG=sMpCIxXkiHtm++GDvq)rZ35!d3M0^SJY-*R5uuOcpa5Ucp(N8Upskowq$3>nH
zJ}F!&TqS%;xLU{zJYB*whOZGBvfAHSo)v#i_<RX3h^!O7D5MUrEM69WMfj@lHR0<*
z>bxQHrf|J*gYd1=fot%$OL(V*O(ncr!bw|j@)m3^AzZ@NGPafdrNiP<Q%3bN>=Gg+
zI3+|&_^X7!<tJ7`ri5$>aTTfWiX?<dVXB0*NU#ojCFDx@u7sT><Vz^1>hltcBJ}XF
zNU4N!3GbB<JbSsNg!fC}noNZcMEEq+htk|y!Zu_3k<s}?l23)4<ezD`;$)`z_CQ(q
zrEo_HUx|Dz{6_e#koufs-y8m02|pOVtArm7|EYwZ#djOYFCxDRgRp-W-&4XLB7YuI
zwO5>NRVe5CRQ!kQzmfk}!hXX;(qU8(q19n!R1&W&tRk!`<fj{`P@{~RDn3(2tuhWT
zqfHrYC8;fJSVkR@BZPH@G^{65zl;VV!4lD^jK(S+S;o;uvq>38iSuO^zBzb|kvA=)
znc>aLIM(nMWgI8oQh2<Pw-Px)*jku8-|s@ZGCG!VY8mY%JW+U(khLe5aY`8-$_Ji;
z<AePao>oSuGUk;rpYk%!C}UI^qs#sxd}bNF%ji=^=Q7SJqe~fG%Q&};9%XbZ<Lold
zDWkhI*=26QI!QdpdzNut8NJH>ktL`NG>Lu7=vT&tWek&t{$&glIlqhn<^OXhgocAu
zHCQ;LjG?AS7f6%6V6+#NF}#csWn5gwC8ouoxl2{NqKqrcxJ*u{KeCL=jh};2k<i;!
zWsE7~mNITFV{92$mocG?8)bNnOs*9lr`Bn5orKp5#|v)|(iMXzPBd|n-&DpV6>pYK
z(Bf@nOfF+~8FR|Gy^K4kP{#B!?o{NAc3K&C$?9%dO)>tb8Yk3YTQgLgDP)n(DW7GE
zZ2jIc?ki)ik=$?mKVTxHKCKp%@n9Lt%2-~;LndR3%UCG>uyB!(t<Z$qBV{a+WT`Od
z7v+zZ@kAL<O8A&?h468;7}&0q<f$@Ni3DM@YPE__8{wKV)|T;X8P6&H|3}w%MoUq2
zUC-U*Ad&?o2Z@p-ib#;0L^6n|sGuS$0xBSaAVJANkPJ$c3?dl>B}%;06MFJYPeMR~
zVnBuO^sZYxyg$CRX6?0W*QryXtE;=Kt7|T0VnZf2X5tisQoC<6@gw=BOl;1?mdvc%
zs=b-^*Fak{v5iFd_Dt;1d?(2+;&++YP4c~t-6Q2MV1IYBPv^2f69+Uun2AH=hlxjs
zKM;=+j}g@pTq)sC3?9$K30CSPgEHnzl>AO-;tUnxKWE}>CeCHzd?qer;v#h!(Bvog
zv2w|7%vTbb+TNK7gWRPRH;IQR>!y5}@Jo+!Vzd*1Oa$fpb)vZwp-hBjWOJgR6A>}a
z#9vGj%Y;R8D--cdB*?E3lbJ|o;&LWZ4BlTy@k=JIP*HPVQj4n$1~~QiYbLHUDEf^|
z+$5jDy8ov2-!pMr^FK22C%N+WcP8#I_)jMO%fwyse~GHI-OEHar+qn=pMxZW2xr!H
zT=eWt<e-?7n2VU3n1`5`n2#v-`JH%(ya4gn$L%9kh`h2Bk2_JAya=(V6UCe;PF~81
z(oQ@=E=fv|lyu@ztvp5|YjMjsQI@=-6Xl#J??eS{Bae0JK~FrWN4!dm60wRCRh?+e
zU^QYbCu);accKPKP2v+o@lcGfhw3m`pIFz4dL&P38#P`vV6dSRjkGSWjhc`@MQloZ
zTE{jcDVyPFLDIvCo=&tRZ$*5T*qSIMY2!p&&D)W*Cw6e6qZ6ITJ3H~56WyHX;zU;`
z@@CizEG4aMw(vX+x)Vi_`{5cj?6(iSoapVuFelz|q7P$Va^htt`a02%!T!X7PP}kG
ztrIV5uIjGv6^d^;G02Hmop?>#3~}Oh%?Fbx`!~qnbpCJdaVV9yAFz3se7F<ukx0o^
zzkT0{5mZJxF^c2^?dL;nDer~HI5F0V9Zu|Y;$!MxI5C}MoD-ioG2V#@+J3SVpK3ml
zWReq~ku=sb;ZvNLN@W`HbE0}bHN%OSPONpxiemeOn&re|Czd!d+le_;<`TbjVjhXu
z%qLkulsPm}7CNzr!LPK9JmfAVU!|30B+H2_h%1Szx34Du+KF#S)(|`ERa@&B+~mXt
zl8r>k_giPyJ3ir?o!CNsD{&ifJ5dHwG1x_Z$ce)w-w}5czjtB}$zCV+IkBJoAn^cE
zlFJgEe!4x6IFWQB<-`w89ChND6F)lPb;5MwCnt_Oan6bJPMnZ&Lxy_dN#ZG@bR^Nw
zIPtR+XW0QHs6=%^yx>Hp6HX^C(q3XO$#G{YgNmEz(xU2J9_`A<*pL%pC;a3AqWB4t
zNL~@GSR_#=Vv4Y@ie;R^1X28_ow&@VC~M#sC$2b=%|LboS1I0h;twaTIq@rl*PXcO
z#4RUo=+;x`&Tmfqt`${g(f_3KuM__{@s|^SGkC{|e@Ik9X@9Z5>%=`LVCa$GK!)b`
zy(!Ba267rGY@i4Yav8{LARl>dVjiMeteD?G0Rs;kc!;8MC4LGTC`3gq0TM+Orl^5O
zsTVU)oa7M$B@C2&Ah|eE#*Y~&MZL6vG9=26%B7rv@&+mxsA!-XV=ECKCsrn^NdQSz
z#Xwam!sYy`PF{mpQ|n?}+dv%yKf3Uf%kDFE<uJLB!-aYVo-|P3Km!9E4RkW>&e@O&
zn;B?C(wHbCLlZ>|G$oN7pC<XYOvW<?nv=IM&_>6$G|-CtSz>Fgt7*En47M}So}>d&
zedy8IKo^$ef`P8o`x@v+@|=Ng2A*eZcPhOM^k7g*-qXlBBcyD-8QVvUIj7g(zzYWE
z8JKTifPohcj5aXFz(4~p85m~Z9Rn{Lc*Vf$1_m4UNIuBGs|H>pmqt^EPmv)8-Z1bs
zquzYLK=OUdz))r_T%0KTcMZH}V5EUj28Oec?;9AwVk@^|DdiXZz`%zFKGHswD5%I-
z10NfhYG9gyapK3oL<5s(Jl?<r1D}#BZ_2YI{LH{)15=otM9EL0lusd_8~DP&OarqF
zOlR3<==PLYRg2kF<`|eu1JRWSg$oRPX<(ay?FJSaSY+U91K&tV3@kRV+`tM0OAIVE
zuuNC^e(tJXD-EnNuv+J<%74F{YYeP4u+hM`G+1X~y@3sEWK|u7;%bwD%?7p@*h)*$
z?;iz~k>CykI}IF@)4{+l1K-Jfj)6l4b~DNM2KMO2R|VKheV;z2`wbi*SB-Pnz!3vK
z7&yw7QMssulC^4|p9~x~aK^yT22L0_Y2cKB(+`yYekw^Q{H%d<%=A1<B8oB)Z(?xK
zz$F8j2Al>`2GRx$8v6|d47d!q4S1+XD${_MTzMA7r+o$ugbXAY8#WLjv7}TaF`~-%
zKE^3ZG31xj<-aV0KlOhNT#>=wz%2v6QMqQ|x`7+yzv}i;-fl9vaMeV=)8>wW+a#j@
zL4!XH{6+G&&Q4nOA8jL*`p>{!1NW$8xBwR%uB<s^Rb}Nr8%5zcUC8Cahc0~NLT(rG
zxa<qZ>%_b+6n3GA3;7t#Pke}2fcP*6&w?%#a@pg96jGJHs0+nhXy(E*E);j+5f`eu
zP|bxBE|hekybBdvc+`c*Tqwh0l+uNf<fX}#x3c6Smec+#YNfIZmB>|pwzFoi3X3Gc
z>Mqov@+7gQ3w2zm>%tQZ)^ee?wp0zGP!iUoE^h0)(7=U;E;M42r(9@E(u8=wzCxP1
z@U$+Wco0|3U1;G#XBWD-(31A;iLG3C)`iwCv|+HF3vEe)i|y7^KJR<(z^INcbRton
zyOMWzp$ExxE_Bne&+9VubfK3E16+8~h2Adok?Wew@VFo|&wX9!=R$uM(swc>sL-3!
zF=C!${cMLQ16_E@g+Vkv(8ckx3$HNwn%NF<;=i8pvuyt6!fO<d@^Mv?4|ZV)yTltV
zd_W=%_@)bQkq>p@Z5N8l`hOROyYRjX@3`<T6>AgTlh!MQ^Y`v0<o<JpV}uJM871}-
zJBnPs2bW;~Wp?Krt^IE#8RNoO7e01j9D}o6m?KA!e7p-2T=-Ouf-K<IsV2HG$z|UX
zf2NhmBvXh}U6@AlxsLrp8br@X%y40*)@RX)lxHrL#V#yyVV;hiPqKjcr3(v57U|fp
z<hXMuqNP+;xUkZNW#r3=YTmp5Fvltv*1E9Hh1D*6?LtoZiwzgnxX@G{F=P!VQTTdB
z<y?dfjFRRmyVN1EQoL{Ja1(Jeaf=IENw&GLon!}bKXE5<mkZyKh=<)Sd{4fIxL51@
zNYr%10rG<`93nYPJVN||c$6sKj*&?FA9vw|bPP9!x$VPx(gm*zrVFQBIPJn2nw@pw
zoC`newCW+{ybA`E3&e}WOT<i~cyqe2tx(oIu#2Lb=#lQhi=fX1zYEpfsKML=GW5BT
z*NvbHAs50fL|pjGg})`03o#e2yKut=%Z0cLS9r!HTu8cbnQl{5B;T|?2ZhUt{0j#Y
z84!eDrR6mjex>pKVdthkfB$gdmJ7cz_`3_Y<-E`%su(N#KXuwWBpGhNjelJDm%;yB
zxJPoAd8rY@;m#WW#X~mDbCP5y<{+vpa*^lON<KI8yHSNrBvp8bq%g4n@nJU#k`yAU
zS{HGnD1*g_mE0)q#v^W&&^BdAN)jJ+<1vy_I<_>)$yym@Ny=%xyc-oXujqytNOqOA
z@;HgSr>;s;jaX&8eZy1JjVBm<#f@5S)OMq*8_&5>$BnwIX$Lpzx$&eMPrK2~jrtU&
z^%}X+fV?45jm(YRXyV3GRGMl_X+0JDj2q1<wsoV08!g>vt!-Ml@vJ-RhFl#@!8VLl
zLCLWlgY6#>JCb)Ib|!YwvEAHwp7nasjqVitG1$Y6o^JG_B0l@L(VJYAu&+)oQT=s!
zUZ6NYM-3#ArhCbam&sMyL2kUtEM9Zt4HB_=-HpNILx}fB%QxM4OWO=}+w;a^{Ei#%
zy0OlU^=`b!*zs;maAUX|?=v{UjSqCHk#3A4mrKlP*;|bKBR597F@}7cwj4|Hu{&#S
z^AiSF=X8{j#h-3WbYlUPNp5^bGTV*GBwrAxxG~iYwG?C;6)EcHZv4zy<>^|P;l{$8
zj+t)EqM~Bwkk2K~BhDwv3w?3&r6h4<5tU`cuZW9@Vz9)GrQ{x7WtMAwg&Ql$R}ohe
zzb1Y|l(cI|*1EIi**5TK{!4Kq@mn`Gxv|-eEpD8V>bSAhjcsoH$k^>}>~Ld`8++Z@
z>BcUK-?{C57b}*|T8pyVjqm0B<@W;W%f5YX?04g^8%Jn=z>R}$93q$XA@%f%5m__y
zgBwTPIL4^!746oz+RXlPT$Y{4N8CSAKkmi}IhUn`eKStEaau}S(jh~%^dkAmfG^kX
zvu>PoBjHBUjq`3?a3dfCwHp`Rxa5Z6hKsH;-Eg|?YrSM7CzQH|y4~=&v##J?5+99C
zqFBz&>F{gbGM6Jn9uXu7>s}Fa!=m%J8|6zlo|26e)@Mjw@{^2GZlv9~?#2x_F3X^i
z%W=hxt8%`}`hRKm!gejL(c!N|slI%YFA3*2aolv{mK%S#@uwTVx$!#<ZcCpj={S_j
zwvksG>MQ%d-1ys#J2K$YMy4PnwqkKdFu%QkYFb{0dw}CVx4lv4T{rHz;qV~CV_yUx
z@&F{l^N?ioAUjD8Von{KizGMkYDGt0t>+`j??L&__HiuW!NXJvdhnPBrN|3;P?)3$
zQOt^ZP)zgU9y~%`f>@IHsE$<=t))GvNTm$1EU}!nDNj;?DE5^|)OP_@JgDlyS0OA8
zp_&KPJ^00kD?Zflpr!{ayjbbQ6CTv^V5tYoJgDtK9S<6N(8Pnf+J7UGdc-F^sP91o
zkNsb4QW5zzq<*S>hIB2ZJmtYq58kHU)Ptu<ntAYy2hBZb;Xz*y`gzcjdPfgBdC<y(
zXBlkmL0b>nk+&f#x9!P0c<jrB47u`?ygE~S&Vz0qbRq9bRIy_4yazoz=;=ZC2lQSZ
z^k%S+7Vno_NPiDr@Zfbu4IsYc!OI@JNG?7HlBguFkiSYC#IlKjM7<_$&gZ_tj2hy>
z8y>t#E(UMuS|}&OJb1^0xgN~(;9U>i^I(z(pLsBx_8$`8Cyvk_MtU%cTypt<d5PPP
zJQz)Jj0c~RjMerZlZ=ymNyck^0*MSJ6G>E=#nogFrfZui9!w>lM*N)k1@V46&+uR-
zm085u#5u$%x}VHva3OJl2Vat?7LXhlG58g6u?I^?)F&IurK5VV&x8FQtfaoqgY_P)
zB417Xnkat0Az4FQt6OFRgHqZZBpW^WmPG6~(Ppy;TePy(gKZvc=P|N)=~30(DccOn
zgO~^3kqF=I!S|Z)A=%4R5_Q0XgC2a~#fM%T^5C!s?Y-#W#SssFU`F-5IO@SM4=&3o
z>A{a4{N#b*fy;yA9-Q#tq6e2~d6Ia>gHs;J=Lx4hD8%zlUZ?)-!C4Q^(cruX7v!Ac
zE0vtG+C(067TJ$QQpZdWoU~E9WXLja5#1hmC`LT+dSH4GX3*z>--D304|otHzyD=~
za-xFvMUAmB4=j>6G2wx_$|o625!2Gt-2Osxzv97F4@!7Z(rb^y*F3o8!EYY?O3Uk#
z{7%LV4|WW~O*U*&*0|og_qzwTJ;>ulUN8Re;7<?kdT`H!zdZO`MkEjZ)kj>~;f{<v
z^7R38{7;VW+YT8L$IEM3dF|^(h8Nkr$l(RN_CC6Ob2_qlA&>CFWgl8emD7t{UdYus
zx7RLqdwD4@PcHIze%w$!AB$bci^5*y_u?Th3V88Zhm424DCmVGuf!*m_3{MDLr}zv
zqFxkds@okMJGkVmm={8F%KmR&`_sa@a(5xyK6vq%7uCI};YBGgN_+9R7k_qhh|e-!
ztdc+c@}jI4VqDG(_1TD&t%4U78C%JV%5*FCgJgMty#0~Mf96}&i)zyA*h8d!gw&M5
z--{<1TZ`4)D8=xiwik71DNf`kmi4@-CEI7^bO<UB4ZLXRMI)w_BiP!D#$Gh>;wdkh
zdeM^l(^7c0Lvt^hdGU-FOXvM>HcX;g&_K?wR<wVXC}V;e7TPe_me`J#O7G~!ATM6^
zqLUY$z34)Nu0$z`czezZ*}1Ws7td4d?nO^8dXe|=B3}*r`ABl_?ZwM<+lSbfm?8T=
zNcWIO054u35kA0+7s&?_Um{9Bk*HU6DsdQ<&f~>9UcBqY>$*IHy%^%f8(yrInIA8P
zQWyRfi7d>1+lyh+G6ftWN>DH=fBx&ma2lw==Y8@K#F0d?8AT$ClRqN)T<fE~7(+hR
zi;uk+r}a-sJ|T|xVuIGyP1HmNCrLNf`eZMrkWVE})4IB~_`-|nUd-@frq-8xG0ThD
zUd-`guJls&w0SyqzUcZ6VFAT2y;w-HNZWixve=6yBullvOwRWaS>KY#d$(26m|i^U
z!(%>t?Zr28bW991vBrzFlEjOc7wf!O&*Z0x8@xE+#X&DN%30&ZCW>2$(vq9K*g~$V
zCdxK1w(Hm(Bs+<_h~Ig!o8)`q9^zi2q}@ldpC~V?4w3w*V-L$!K=U8uEYtj$H*1CV
zPg*(d#R<(%dU1;UehJUWc;&@eFV1;!-U}~dFKBzii;J3H@*>j<CxfaxeVx<cV$iK^
zJnY7DewkkQyzo;G>DYi5L2{KmOdip(RR%gNFX9aLG?9=2ki3g&kL@Whu6gk*m9!U^
zb*f*yxZ;IFo_(mOQ~SCXH@qleqNItNUfh!L*+e!Izj^Vy7ys$Bx4rnwi@&8;$k<3x
zZRjeq9Cy6<$BTcprFt|gJK7-|WJzJ}dT~!OWx+CtBFbucLD?=KyNMho9x_qDL{1aA
zOyr|YZWDP-$c}1x&8&5^B@5bX{^ctG^&voh6EkE>(ZY_0O%yay)I>2REM%gvi6W-G
zr`hAx>|CUpa;7)pI?UoG9--OxO?Ff(ZaDU+iN{PdFwxLNDHEklR54N2L>UuhO;j{d
ziAl<tC~u;IX+Ocq{hK^-3z5ew`Q}2NNh_OpoMysBlzrR8e>D@;P1H6~$3zViHBCHW
zqLx?|ambn+NiH^GET|UQ)-_Sj#FHlKo9LO{Hjw?nWGZ0F6?;!MF_UMFMkX4Yc-BN~
z6HQD!W#SnV&6#ym6Hl9HMlNrhm48Vk`%VkCFwxRPE7RU)?ZK?)y<o?-G11;c2Wf2+
z?W8qWDrMHuL?;uS=~fgq%c`Qz9C37&>d61U6NPj$@x12UP4pm_KCH&-UUbsiL?05#
zw=YRQVt*4aNb%%Q7Ia91sNYK_UN-TmiHRm&F)@gi;_y`yubCKb;(h5SCI(X<YGMe9
zcz(;o8=AjKGELuGzOD6PB<~R4HSr$F=$3ZY;$eh|PpFI}jv{_Q{LsWlCPteWW8z~I
z<0y_bF`f(R9^nN=JV@VD`+1J1fhZHCQ<bruPoi?z#1RvpnV4*13Y9q~=8{Y`G0nv1
z<X;eH5~mYq5Y;I>i+r|}mS@~N6Z1`MH1Vy81tz{^>^CMBk}Ni{#Ka<UDaKbM_Bmo=
z8To1x%T25>vC_mUDryK48zJ}cYn@P>$Zw5_wI<e?SWkV!0|_NoQf;EL)5I<ln@wyn
zv6aep;<o>5zvF@6cP93j*lS`p#qS@863_cg9H1h6zX`SW<DiK{X4XuUD)SE}j+(e7
z!<va>CVn(=m8pI*aomK{gu&nm;u+#e6Q@W{6ICsKHgVR(ITPn8UNUh($6h2+YgDAZ
zVxLJx3g9x~HW8PB+Jwi1*F@Mv#Dr<WXCkOQ_)P@JRdP9HRLh5WWEGE^u(W+lAMvax
zxpg#gS;wYKq&1gj`9<?9I+c|08pU6U*G=5eHaB&Szni#iBEQeRto&i(PZJIwGJN=p
zmj4p}Cf?C${~=LT_>cUqiF-O$6%{_@q)&01jU>AdIY{o;C6^DmeaJ&GFEO9bKBme*
z{6FMF0UsXrp`Z`NX&~MT`A|gj!n7B$D3xMFRj^02O$i@LKA@NKp|lV0`!K?XGCq{`
zp_LEM(x99VPm+}Pp#n)oVl`qVVrAmv#45z9KD5p4=p}D~8LUB+BGn{$!iQQu)b^o{
z?|*}y%z4)Jp`Nysv8X<I17bsBBVuD>6XH`oH1*+Way5K4BbU6MA!+VI3m;lac{sQ!
zZ0$oEA70XyZGGtK!*f2g^PxS(4#ZAAbR<zLiaTrjE+p!T(2cye56}D1-G?69rk4*r
zHCM+@o}v2q(AS54T7QA0zYj7`E(IRI;ETk8#IBQU{bll3d>G`zt3JHuvoAew5nm?`
z_GQghi9W=KHz>ZzRQJ!Rp+3Cr!!Sm@Lwt`0@3OZ@Lir7+E=flEFv^FqK78!M2M_p>
z!hGn%M^r`=#}GxA2MWP)J{<GmM=6gF<9(RG*abd(>BFZ!O!Q%rwx3G!8F8`?Q%Kb1
zej54bK72tk{eh?%KFnlrmM`nu&)GiA(R{8C^E99DgM7j-t8f?6ehqPvRMv;ZJ}hBP
zzwu!y$qFA<`moH0<qx!mw8JXKu9lmBwy-pj97@$zLR8zXrOi4Y*88x*hmAgL@nNeE
z-!jKdK5QnDmoH*}k6YSGLv8b6yAR*_u$!?H4?E<xaEA{&eb^;qg1mW`SEzDC<g;HN
z_V{qnheJN>^<ke6`+Ydz!x;I%R<_-i)v%l>C?=mp%Pf;D0rlaC4?p;D)Q6zFLy><E
zk-s*OZBgY7ugu2C4(c+);KOkrT+I3eQHpem<RnpQciM+D<Ujjhket;~=X^L%E~ze%
zT=d}*NhZ;$W9OI38o1m(cqn>_5w^4GgU<&)m4FW+AI9;j8f2_E4>L-&vjn3)#C))P
zh*MAckn$lxu1+zrNi%rahkvVQJ;zDZRUfX&_!h*7Ab$1Xx*Q!pHu-VGhnqfh^W%9x
zZu#(=4^R2g)Q{hNxGkfTpW{CrX7?ipgMTvkmk)oFNRD?%{vrPB!+#`qeYi*B@FN=&
zie&}~h;p;1W*u|-k&8+#KXUt#$B%M;l=maAANl+!!KnOxJmj~}`XYW5@Z({B)~s(q
zKMMI#m{Iu#{I9;MqZaj}7^8|4AJM5)dzSR$Q9mAIRB1oT_)&^nVpR_>OM3|_r2=E^
zC>E)rAC;&`y((+ZRs5*xM>Xm-wS9FzYLNfKLFNgqt76plXYFKCmu~C%@uVO1{b=Av
z6Ds0g9o&X~G@{a2TH}Fl!&U6ljB4daGm>YB&HZTM&wAPwKP~-PyYfCON4dD8wI6N#
zXiH0p?c_&0^7h0I#EwMuaztJsb@ro+-(I`YmHKl;^-v%ly8H2h9|I`%@S`V5FQUZu
zX2tvX(U(d;t@rn5-NC--$3Tkn{dh^oe(uN1<gXA1`SGeBule!1AD`0UU_XZVF@pRJ
zKi;I-``YJQ3=Z|<Z9j&QzvIWdB&z*Y>%Hg4aEdA@r4=%g$|yfRAo<Xbv3`8)$43l`
z&1jM_MCEN9`2?l-F`nc>pOR`K#Yx1^h?9v^h*SNTMxq>kK`yDLlg#jArXREXn634>
zBy))B<CJ;Qdc2-4kVEgsLT$N>WD)Tz;$lCRkSryt9G8=?AWFU~{aB^>YCpav|3)io
z{8&rAj<{ay8~oTv?&lNbW<R$0@k{{C1K8@vHaYbIcr1YJe(dn$CqItUc&8sn{WwOx
zi})RJw;$h=NO|`7v6p<GR`&aGfczlw5b-eah#x<Y$VV2k8K5MWpQ`4M)aB5e@Z%(T
z?f_2taoP`$A6`GsP`u#BML&Kfm$YX|&iQekL?-mqEBi}+WcuNxs2-x_Qf}x}E<fCw
zi@oWGPe#RnJ-Yh+2>5Yb#|Hhls(HwdFnL5Ne#A&D;$>poj|54QC=OF3X`(9IFMeFP
zA6vw6P4i#<S^v&+gUU_01d#mZ$G;@MYs=ey{Gs`ue*ERP?>+t|-XTix9}>Cc_)lBj
zCAsH^gEf`1Wsra<V@P(b=LjID=D7k{PjGnx_JE%^fP4Yu58$By9-&eofQLzn22hZs
zFtHF(4z3!#i!dn1w-`xr9hBG-<Rys`lq98?yO2sGrHN$%D630Vj-))XLI4%DzGA+k
zviM=J3b8=|RRdWAS~V)w1E|5gYU&)HAgM*HO{_z#ORN{blO*+tQbMUkL!D!z02*uF
zgybn=(*T|(X{KW(Rf_;x25=>St87(q)hd8z187Z~b^){}X+vyFlvEu8=omnf!A=2m
z4&cWCehQ#V09^wZ5x~d*o(rH`0Q~~!FS^X^1<*5qUIBCuphp0*Eq}Qp_RbzMch@_B
zK6KSr+{#N0WSugy1&X}%c_DxS0SpdcNB}R=?3Dlp1u!sxmjZZMjy2C&S@0nJM;0Uq
zz8b)50lXft|0O{>o+$D)rR=mX+i|=Rz?%UK58(X(-U`?Y7={M$HuIIUQjCWM@D6j4
zRI&@@yV98Q3V@1woKdHYbWTY-Du559-2zw~z=r{R6u^W4J`G?r?LP@%e8ArObW8wa
z1NfNPiQ93El>$r2z5J$0KAuuH_7ek`B#omjCkHS^cwWaB0sG$vrUo!{mt$H0vb1AL
zF~{fhBP9`^(*u|hz{w)^Dvp@}`%!LI0J8&_Bej#i383X%@_EGhM476U*e@Bokhn-8
zn{i11O9R*#z_$S`3t)KwtECtLtf0-nZ1#$dmE^04QVeOLZ^+jMu#RMnoVms9?QUfM
zne_o|(8o&^d&mjLrT{j}kqTh9_?N!`3)o+OY?G@%z+TcLKId`DbbA0h0@xYAF1nq>
z?<-|WS(-(fPJZ79uqS}M0qhIlPymNn!TmHo7(lj%9R~vN6w2xkGFN;gfFE=_AElZ6
z4TM}DkC98hQtaaaoCx4z0GFg~wSHEv0s)+6@Js+dll15Oo*FA8?YRKX2XG-^&zG()
z;*j-1B4!5Q48R{iAOIr(R{$o{x}{(Nc(s4Ev5dO)m6xGDt&0*2AQV6>04snn^@yMx
zCazmkmlerKDk2!CK_c+Kz2eo|r4;pa0GCO`@)wdx{4DNT0KWzBI|r6u1Gvtp8^oL1
z{uYT0hPMOwBY?XB+~er+C-uK%NSSOGKz@G*aEIbQI_<wC{}I(xgCl4U<AsCB2m(Q5
z3))w`{6RcKlAV|%Xm{zHLF5YBe~^(oXfFWELllyiBp*>$g-P-PK|IWa!qv=MK?Vy2
zv#uRQf+!k9F>O;ah~ngrXr%;+ygGk0h{u8`6-4PEo(iIA5M_cW8$<(bSuTjmQUwOf
z6DtH!F^Ed!QfyVtDnV2YqD~NXsaFf4Mi4cFsLo<bImJvil6oSDT0ztf+Gl}OO@2~e
zwG*jey&&o{`IEt{e@qrL72A+{BVuD>6QUT%&H2+oGz+3@5YGki40Xw|eGtuqXc0uq
zAX){{I*2wwJS#2C|F2Q6RD`z;;^oqg)w1$alIOPn-A1^~W^@RmBVBb0LX<A#orw~w
z`eZk$NDwcHhakEK(IbdHLG%rxCv)k=gi;dwDnPC>>c`j@f*3%tKk=@-tl`SN7p3kj
zk|<&?_(~9if_Rr%zZ%4ALA)8nTjC^$!9ffO;*I}nuTm)-8pPW{3=86&|G&+9^gNuX
zQjH8^lpMhjYKHJZ5FZAyKZpZCd=$j!Aa>JoOb}y(m>I+@20tcFC5{W?6B4QW_#h?(
z@hO87gZ8y@auAb(_>77Saq7j{6b9wuD@mr2e@>L(7eV_XH9d$KBr+IEaCQ)Lg7_wg
zH9^d!<s#|)B=d;#gIGZFB~kn=B<cH^V=>7JtuG;2N?aDia;?if^GeNE$uZLWYZ6t|
zwLxqQ;#(@~f>=+ofhYrrWGcT+L2RcYd~*<6G~Y_HjVLc$cW8ZQ5W6)0PO3>i-)m)0
z5PQk@5!EiB2ZJ~iL@<aD#lystK^&2@FNmWIO76!<RLOq~;wP;iCpjTUjd`77@N^Jo
zg7`UzvkW?eI7f1UnDgGf^D@FLb);Cwixe*fkx3$#Z&i1LK^MnBcMu*DFVQ5**ytni
z69Yt5!f+7RWV$AZh&Z92SP-%hC`E1&<3S`yB)g=XiG1!8o(|$N^<Rirw9QpLLS7Hz
zMi4nd$QiN+<eNeK9mJg=ZUymM5Wfd;JBYuS>JOdvPmWruUQ)vQ$M+u^{44#Cx&NoL
zxJ&&W(ZO6YLI6oNVs@f9T$tC9i#&G-c}SG=ydgXiLWvOag^-{6Lm@mILP7EZp{&uq
z5Q9ZRC>laxa@Byv$i;tgZ7K8E5>+x}Uy?*G8^WWsc`SrdA(SRBqdim|@2FYR{=d<3
zA(RiHLI@QZRV`#sfK(DEAyf&WGK1=(EIzABlk(_`jod-W5vfiCiFzW0S|N;*Ati*`
zA=D9_4(k$|hVXO<^+I?ug!)t@NrMn%lVl+csWc)sCN?43R|gWws2PbE_X^>e5SoY3
zf=YX>w+x|G2+xM>)oZOoXsh)$A$x_eBy2}T#&$KlcL<@Qw&_IDnb?KcHH7DMY&VkU
ziQPl!LDG|0kuREihtP+?z9GCo(l3Pmp{#{flC>;rA3$CBiy;goe@QDZhwuvdAg#O_
z!fTqpPBNG{B!on%th4V;DsP1_G=#UwhY{Zo;T;mm>)jCE(|kDliS&&TA&k_0Mr>4f
z`Y?o<A<UxjM<I+R8KcvV4dLSu#xeK_@zW5-lT6Sy(yJ$uPtwX~AxtKpqLry3Op{f_
zlBvvHOBrPRCr%Gx2FX4~&8Gca;vAy9>=Xa<LYU9s0^*m%f6HVnBw0jM)mak4(hy#b
z;*}_tg|Iw?#t}4$U_}TkrB{dXco?ffSS{yl7}>)3I)rbSd^>RsQF2^MvMz-6BpZlZ
zh#TejhU}Fmn;0x5<G=L1$qpe~sca*v7TyuUP6l^{5D^l>cOmSi@;&il2zx@<8^S&Y
zCDlQa{lo(y$Tu1y9%Art2uDKrf&7%54m{tFhH#9EnEgod6Y)6lL<lE!teWsV&EOe1
zJ4ntF&uN?UBp0MeckO&HF_=koY8xX27r8qG4~aK~kd8G&@R9qq5+DhNpq9#n8C18p
zl0}Tce?zcH;?mVaNRr<qrifyhCb=BKFIu@0!d3EX#9y_3o#aL+YrWzvt^XFn@8q|M
ze-QuFv44^L9l{-we~338&pPk^3*j!6dqhXrzQo8cgG8#6J&YV-6k{-F7`ehI63!aT
zb5qPu%tOo@Mm`epp#D_uAqEQ&A0`$g79ti7+cWC2zEtdsQjrc{oaB)(N`z68ye#oi
z;$uXyFGW&1j56V@i>Z2&El0h47!^n=YWqqgvP8d17*)e4A3=o(s)bQKjOJmqU~G*r
z>W9%FjGA&z$yI<@i&&eru0vjzyj~bjl8B|8Tv8<YH4Nivons@C#$hxed5YLn$4Y6N
zkw2pqse8*XT7@w^j2U4(OTBv-JxE#;+Ys9l+Y#G`(SbyA??}>#*g1?YTJK8o9I+em
z`7jRhab8mO4CCD}-V37_qk4zYCyc)268l;h{WR|%hAg6fA#A_=8W6^dVS6>Td{R14
z4gvYgL=j&JW02;rhV4&KMHFwZ)74<&kTBjLd6W1SaVYU^qSy}$;~mY_PME_P{3ML`
zwLT(@k(!Sp`5=rBNj@TuCXOMFC4Nj4|Kq~;dS)T=8&7cp@l)c&FeYis&qyW{rx2$S
zr-ku3$rnWNqyBtqW*BSrnKFw}v%{DZ#@sOGY0H&i%nxHh7+-2-3CTj@B1ulNm?)D5
zYTjTegUg7^!&pIbzZ0$s+jDoT<tjk^8={nIjT{c%?W_x9eHa_U*ci6|;kQ7<KIOj+
zBQp$V7@NY_9LAO~wubR@7-z%S7RL54j?&K#;+`<}hOtw7-WA4o<h!-<J&8Od?jt#*
z_5EQSAU~)Tc_=<iencxjkf;mau`qsQ@TV}2hjBvNoDSop=BL8;v#?Y_erG63zURXB
zyu>A<kn>>_uj9B7#zn2jv%E~>NR$zVi>dNO;10tR#@#UPh2agu4C6)^H^cCS;Sb|#
z*nZLv&^Q%FI*ec#AqK;OVZ`J-lKnrWw-<NFI3wH&BT0jJ7zq;5C02?m6&G?jj9;i<
z(XkRGHpQwtX7Rs<uZ8g|qplOx#qL%ZzlCv!%I{&^Ci#m;Q<6)*e}wTT3nM|5-QToP
z{2%gvY49H_rQA9q$cO+DyB1QsY$U>Sv4>=jAO}fKq8NyC`Q?rv50$(`$wFF5^!yAy
zL=^uIN9^@81tTaFL1BtTMTwvYx!B85D;~ik5j?7u5)qWtT;^oNv$RZw(vHU{mLirW
zmWiM&Njai;le{WMP>I1t5mY9r8Nm}Ik4I2NTUM2;0C{y{4Wb&)Ymqk~iqG04b%=E%
zs7LZ7u|83yYDg~j(uY+yeky{d5qufJ!U&#@pjia3M=&^oXCi1$<ClpoBIr!glGutU
zex8k>bp&k~Y#TvGl6J)Q5p;;ym*drJbM-9HDU!8|R~PM}YXr|}-YtUXHSbQ+gV-~I
zUL?IE=o3NT2>M0vLIeXS_7@L4%d%#EA{a>hB`KS{o-UrXLO@EZ%wA#aAmXdU*CJVO
zw1+S_ohT)LBZ4={-y#l;;Oz*8k&lXGeWCe|bVVxf5r-4sCypSFB&zwn4<h(5f{!8?
z9l__+$3!reWHRw%;-|!M5qv^2o;ZPc|Ji&ZgOeio?EmUh7@QixG!m(`T+P3Dz-ETl
zXGSoKe0Id18k(c^xe?4GpC7@3NY-YXvZdkqJdQ<jKqEL6!RZJVN3bM<4H0aNV5v?k
z-AvkT8H3A-D<W8_V^@)^j^JyOZ-{G%Yl-WK>xrs=O8LKyU?&yfn<Dnj&t~El;?@YZ
zk%+#XWCwel1a~pjcf{Sq@3o&jBzuYbi2EZrKyomGLnMbI_>trY@dx5j;xVF>N2bw!
zB0o+%K|J|D?3oCDj-W*pEu%Oa!MO-Lj6JVy43_x<gBOXHBFNOSP7-NVmsZ?bk=(rz
zm=X9Q@JA4cAb%7OMG=f36v3Yn{1rhsf=C3{BKTEOMG%W16+t=zD}s0gi3pMr$X|6!
z50RG|@(w~SJ<`EsfRdLHmm~Nkf-4bRjbOxJJ4$kt(efs*)asuKuSakrg5M(eou#@N
z!7UQCd!8E7CDm<;f5-{Th3Jxn<oI_4cOu9ZMfNEEk#0ttj41w#;BEx>BJ#<)ef3x4
zzYOVegE6vaMh*SH<cLBheB|YndYzXeikwm8iXwLud85e3w4Jz6KTp*D7)ss&$+9td
z5LRDg6o}&CC@M$sI4uiC@kkUUq9_za;V6nwEE+{I5_vr*C6V`o@@!H(3i*;qyp@dN
z(J0DBQ7($dq9{enGEvBXyO)k)pw#gr`ywu{;r8dTN%<%$L{Tw{N>Td;K;GcU_Orz+
z+bB&cZ7x|<iK1#04WnojMYSlZM^Pt=x>3}KqGl9NNJXOdsVaZ7E}sC1y?QrSJ8FNR
zEic04>Q*m`C!=V<!t{Y->ZlC))sNaU0Aet&j@?|1qi7PvGqkZ=IEtoGJk6k*z-bo6
zn(Oxbuv}p!VRJ@FP!3-!$&10h#MV)CilTEAZ5R}9ZAsci(VnD();mVCzJ2IIrMuR<
zk~|khH?2HRqV6YqMA1|0y-0c!`^anq4@y4<`)ivQNCrglqE-fyyc9+Kc6N&misDr{
zUKUDOcrA+8qj)}s?lBCGVu&357z)SiUiU^6Z)y*6_PrIw&?w%f@?jJoMKO$Aj@>)b
zg`}aPc#mW_@qMD`BS=O@F-j{RkciLGQH+UVWfZIEYHSn>NIs5Y9LXod&xzxS6NsNi
zF_A>dIf>*m;^Zi%XnkrF(==Bn-4{_z*UF42W|Gg+%50K3QOwoKJd*kPsC}vRg;6Xb
z|BASnxP-WrxQr-eTOP#<a&=u^9mUsC_@f9!@r`t_C=N$)B#O0Btczk#6nmpsAH{|!
zc1E!)ij8tAMX^1K9dxpZ?Ist6%?xhQxonMM8@V*8WGX+gk)JgFcTwz);(MJ?l;jk9
zCRWAnlanIDaUhC=QS8?TMVu%<hp0#rvH2m2qfwlX;zAV1qWCe2<58S=Ajwa3CB`SC
zI7NOgYQF^#<uuE7Mwj+yxeAbr+xtbm7{#S1+);R<$c(}ng%O2|epHQAktB)y#HW{8
zn^E|fi`a;$N-iWAMJS3tqWCk4a1@a!E=TbTlSHG4N0Epk7KKGc9IA3A8B9fy)+JXy
z1;yq{6j!6T8O5zAu0`={6xXA;@j&jXY=Tl4Rg&ML_&ti-x@GQHR&4%?;_oQ3#gILQ
zJ2Lo3aW{&4x>^2}OTYtVQwbe0WW<12*7VN(29e_Bh#@D>*@t7u6+`YA^2CsriYk?=
zi1^7Dvrkp|<&WVZ8i-gxTM92ouACQ%;fWY(#ZWYcVlfnFR4L*kG5g?_h@m8dWt%%5
zjp4DFJ*vN3+<vxFH+!XHC=)|j+LR;8<ZAgCDv(!<p$3WMTPcRhnm-;x70s)XREwc{
z%>GDO=Gz6uzGe*5IZIhPhB~x)l2|u}dL*g}Vkxit>&MU_X5Ym%WK?TnBVywinvgt2
zY)X8ZC~2F;@C<o#VhdtRVk@H9JR5_2!X~5*mA1roF|?1NLkt~b=*l+l6hr42y72I+
zPNGl}N>QJSp&Of26<eZu#LzQ_i7`xyp;rvOV|Xiup-kR~mVJqmyk89cV|ao2zNx#%
z00v(q4vgWYnEm1Q%fwfR5*!r6t1-M5!|PfZB3A)&nOYQsHy+?pFo*m#5*<pWACU|r
zz7xZ{F}z1UJcd!)=6#Y8F^trTx?p_}!-rJVN{rDuc1#Ro$v=+Sul2`C1*PfAIL1@_
zG=>QzY8F=tBdzpV43jDPW0(@d)EJyG7%@zvDCNwI;qw^2U~qa2b7Pnn!weleGlp5@
zvtyVO%i0k|?Ta!$h6OR~jbUF5U&gR7hSf2A9m67N;TV?2u#AUwaSTgHq%i8tl7?Cy
z!-^PI#;}UcMUkH}5F%!R-^8#chOIGdi(zdH>tfg(!xp-dSSk7X7&b5{d}9pX#;{2r
zTxB4-_>`ZJ?Q*1I_&$a`w2>@!lI+qo{f=a}?lY1^oXAfs_s4J`hLbUzis4`khhjJy
z!!c%kIEEu~Qqz?(mh4pSKgRG=498<Q@jxAwTh$I?c{+wOF`SR#0=@kl!`T?l={l;C
z3(D_e43}6oNvjkgDkFui7~C;<bPITysgG#t0;mQN48#zOArwQHQIA-N2#MiZ48LmQ
z7>N}_JcfjfEiwE;B}Eh`=~&it`eiu>Ip)Y+#1$QTRhQ&CmBJQ^ShzucGlp9+{1(IS
zF+6OcpoQBp{2}8{4FAc1ApiU*XS7@bXe=aeHOJpFGRXRW;y={o0pV^8_hcBiARhud
zEc=!$n}zHaGAzKdhjD2c)rJz4g9f>XIf-ftC^vZ?r5AJLv+RuI%~yUZ4-pH<tzd44
z+JsHrDHWowoEMb>RIvL=F$=}1tLG8*YQ6-OlEg=ebF!nfg)$a8#?dK`vKGo&7;RyU
zh4L0ESQu{MeOgu|R?>B;EW|<;ic+J-Bvma`vrwJ9hJ{)dYLnL_K0%arsAHk7h58m6
zSg1#bPZFgH_ZvzzS3?VpEc@amQG$|D6FPayLQ@M*TWDtCISbt^JY%7`g=a0aw$Q>t
zOAD=NshUN3mgM534Rzsdb$Qw`cgecFg%0E$iJgd@iCu_YiOSpa7P?z_$HKex)5F35
z3olye$pVZ2UKV;Yst>U*u^+KN@dcthT8gp!23i<QMfgh=UM7EqIEeTv@ipS>#QSN7
zSa^fVo5Z(>Ly2z_hY^*%YRUIl7s*S4BN+PuaU@anQMw`@QjyJSKC<i!lh}`?Qa^6@
z^N%fzWAGDkNM*c*2^K!JFwug`g4@C*3!hooW?{R9$rh$qm~UZ$g{c;%S(s^ImW9tP
zd|_d_g&7vS8IE;M$C?5Td2)2{&Ougy$N`#dVUC5l7UnU>uee-uOh<=2mM;9j-WE)z
z<-fGB(8AXizOk^#!dDhnSXgOcF_XySq?j$Su#~}N7M7DpMbwO+yn+;iK?NME#EDG)
zTUafRoTcq!w8p|(3mYwbYeD{s{Xd6eLJ!9}3+tug{Q7=_g)P_Zxq?j=He0yxwPTBA
zuWOYDaA`LoTX{x{tIX<-9Ts+4IAY-k3%e|QXJMa({T6mx_};=E3wtf}eZux8_Qi&0
zbm*HQ(-i83$N>unEgZ6N*s}i~@tLFcM?h*`SBNO`!TwPT$1I$(aN5F;7JjmD+`<W|
zcmYSlk`CEnKrCev_#~?@<Bz;Ll!~9R@Uw-B7A{$k|7McM{A@WLXK8cJ!g-PlL{*YZ
z3uB8r49k94mitMkj0xO-PacQm0o)^pQij1ea>QX;@L9MfZY}sN1S}*iq$~t2ge-(*
z*tZ~mgD8F^t-D=DRNAnlBUcGWg4x9^SYkjfYnatXA8P$c+QMZES1eo=x0f9Iy4yRm
z{UQy^IRxph+qY)O;yw9Ymto(+-xlszxM|^*h2JdvF1@a%<E7D#DNct>F3JDbpX-xx
zTTVbYWSZg+3x8VpOFACMA2l2EkA;6_V2>kP9Iab8{*&RTxV<;RVA%q~!aWw!!E+%a
zjyAH$nSYddwUs?jwTm0w<cuR%9L3@&9!Kst^2G6Q90lXZ8%Mr4^2hN|9G~^fkehS)
zr60HN(j|*l8IA&R$e)kMu`3iu;W&!KQ8aG9d#al^BeS-n##zU!IUKSASqjsjzvGcO
zO2kn<jtX&<jN{Qb%CS^e3pgH=(Vo1NB$xf4$;%MMxlEtR^oulL-F$Xl6}4U|4p*NH
z^{=&+DM}ZT7OoOU)i|nAsUAlyk{ZOCL~-&&JnI@QymlOQ;;0)(JstaGJZl}AcoPG`
z25~fu+n3HpaWsyjiIh_sllD!CEp^(bNtzL#iKDsJTg0(iuC`k;T5083IbP&yX}x6B
zmce#$v?uAHEv0L9j-yK)^W#_$N7p!>i(^(CvuV&Rj<@3&7RU2(bdRG)96jTBlTp32
zhyEnJ<LIN6z9jwPkeNNn`UR~IAbBy4fg~?!{pC1biDOV4uTpu9s4nQQlMf~iA-+Kr
zw_@-X`B1IM1?!zS-i_naI3~vJXVUlL_<*s)iSNfDt5Zf0g^VN_70350ZCwt*hjDxq
z$7mXlA$}akSQ5!m9FCL2$JQPn#{?1?XI67i6`UlUnZ{qlG5LX1l6DG%Q{$LM^0|&3
z$X6uO<CwvYF_XIL8*?7ubIIos<?NG^d>O|=DR~@w;#fp|WgM%d*5r$cONdK}%ZO5v
z<s>VVD20#X>o_*)*l$>j^>M7BvX;0`$4b89VM81n*<+=}z9mrw-b}MCacm{orc-Sv
z*%8N1t?Y{9JM!H`HTdt1V_zH><G2*ZeyIrW7S6?SAdZ6!9wL_9fWvVdiQ|Vjj>d5^
zj#F_Qi{r;Qev(7qJEL1ZJFSq+ZjR$|oQPxjUl~eqc5s}g6AAuIawd-9^Bm&ytc*o6
z435Z<-+7kmf-bGpE|b+XsW^!S(M5C<Jwz{2&3^mh@W&B|BPb&E5HU=YmXtSN5pwkk
z>_$~bj6o}ocpM4xWE`nD(s9UOB}1b8>Tuwa<X7Uj8b`k(+4>jBb}f!yrCDy<_bS)p
zxDkhO3$9zZ8OJR-B3H2O3Vw^@_c)GU#)-?g9mgLsCZ~`mg+Jr?OM(gfnZVz1+=*jk
z0;3Z6Cysw*#7Lk+0{_KvSBA2L?f+gJ4w4E9WF&wD@+a^Rm2AWu#Ow*kUzUr#{BkCc
zi(+nKo&@qHkS}2`vMsvQAw<@D$P$qP2|S!YY1&Atf+U5Avh1g@){7)il)M<RIPno3
zTOxsy<Z?IiD9K~QQi=bK%w?#QC6*(WCl0D;-(yrHuarP#lE;Zvh*gQzh+<hifg0pB
ziBAw~5o;6c5am;G`PEC{Ne1gD(1fG`QT#L{X_P=?t*9x5rx<KXe45yd_)G%LNhEEH
z1X^m|DuHLoTNB%8y=?;R$fxsgbR_SaK)(b!CD56{E(vre=}HvO&n3`J^XC&;>p6R9
zr6)<RguRVk?*#ggRG#CIV1I2hEP)pi7{K6*3B0BCfg~>_@Um83AsIw`mH1i$uagWW
zN_mFJ5hQ<;ScLarq7O~rZ7QnKM0tn7cZu&MFq}m6_Y)XFu6C9AfP88K(-Qbl+k8Ya
zI)O1-8B6kU0^_vuNdn`^ClEg+P9#nuenylWCnqq4Twc^l@bd(|NZ?2UKO`_cff)&G
zl!i@UrnX<2z%26FTA7o;T+QbtFrR#ZR=!MNA^9S$d_}T2fh8nYdSso0%Mw_wZB`_(
zl6;j`RwwW^`8QfwlfYW?b;R{r-;jWM&$x-o<^;Bos85HsCUAhkZN%-w9Ym@A&IERm
ze@EO+{9ecIA=yjZm%x4!^`1h~9%S%P0*B>56tycgvY6v&0>=^vClF!mj|p5Nk=UO|
zjuTHLaFXPdjy;{g8S<ZrXNl)@?D+&PXnrw~b+<1*GZS!X-5_xh-3fR|yhM}eBT6bi
zNg#osRzgx9?l2#v@=F3&5{OB|G8iYO5=dzKWCCiRmbBa_Cm?v47~$!Bm1e&uaE;_w
zo$5Nt4dPAWE#hwp$o9)pu-go(4KV+b!9RiiNqdC9BZI$;DoM0T;$Ip3Y1WugcV(zg
zqCgV&C^{%+5G5f<vJtZ<k%J_sj?I-sZq4(M<V_-<R`Msa>iBRH1(T>sy^xMALsFPn
zgjh6*Vmh`s$s<XWASp?Fl=v7?%2tY`bP{8@hP<rS%Oz1>^9o5+B(FrQOnjVJg(!aH
z`Lr5&^(1PL)Fd_{K9NK%60xjJQYVSJB=v|-66+Hi5E~NJrAJc9Al8J+Q^cl3xz~C+
ziDt>HcO}n|G*6<1R@6P%vq|)zz4&QO(uUZU*e;3oBprwyiJgdI-#Ljc<XyG$97(q%
zp4UqEBxIvPF_vFXioJ-viG7mjt1bH_?XMd)$o+p31Cn?#iGk9WL`>qPBwkL!lY}>k
zSCSYc$32NjNxaImW0UweiPw^NJ&D0d459c@5^s>aM|_j`7Ewwvl;myVFycGJcaymP
z?Z$96)ceE{#F4~NNqj(J-~W@yd;if)K1LdZ(*<&aI*y9u^(o0G#PLZ?AW?szC=c~w
z@L3X*llU%)-APPIVrmjAl2}QzX-Ui{`J5=mUyw{sVun^`CNYbAHgOJdE^!`FQptVz
z0`f133$?x|iLW$YOtK`2rCM2*#B$Bmih@;1e4E6kBvw<G%6^^1H>|bfvL=bO<m-s*
zb!%)$Vk5aUizHEZ?_$51PPQbmRp+uTiS6V&h&#2ui$qqod{1&RiBn1JNn&pj`=}g9
z;vmU>qP_noiR5yE<S_9F@rNXi>eypR{7C+jR*sX%9I`6s=_Jl1;iUL8@f`6iQT)r5
z<-Fz>lDMe(r6e-Rr7&V9y~SW}aS`2&8aCHqCgCH$nS?)y0Qs*;1W7I@@k<gR@-R_c
zMTBS`OTr?L6BERwj!luIiSnZAe#>8>a+P>3nRRiz&Y<|eK_Z>=7RhhK-*xP5l0TC6
z7hZoR@fU-C>)1O<{G+*i&3%_VM~Y7YT6d(7K?Ov~F&jyCWyVcHa;A_=$I7i&-W2ks
z(ET!cTt@yB9!jBV8r9M$kix?$EKOlq3I$UrBsMAZNTF~FMN(*(LZcLlrcf+}nkhVy
zLh%$HNuiYXT!Q4$6iRAE_Go=fb2UPiX0S{OWl72r%coEwg^J`=iIs>_m&z$Tu6dPI
z)`tV4SEE>+SR-Z6O^H}5h1yh}B-Tlx9*IQNC6O~%Jw%IAKZORV|4j!qPN7K(?NVqj
z-co2v`_?HuokFt|TBOi2g=bP|PQA*stTzR!Qms;WmbwHV+$%|PX_G?Rlsy?DJyvGe
zMCp)1R~mOrp%Y1GVi%%VDxc4#(2a@&pC^&D!h5FBD}|3z7@b1z6#As_Mhb7H&^LvC
zG#ivc{}f(GVW2b@l>sTds9h;1f-kdFuRP#cMZKEBYmAbh{9dQQ;1q^v%Y}IyZ>2Dl
z!BHu^ox(8k5jxd7DZHD)d)i*gJUoT>rM2Y`FLGq9rWVg5rKfSVlJE~`{Gl9cj;>=;
z7@NYh6h2Sk;}pg*c9I;d6vn48A%#!%fs?fAfKJr8i&8k3<FgbdGu0I0R2{2~zer(v
z3JX&BGKCp5n3clp6lRi(2XzSMFgTYeij-|$3iBCM{Y@+visuv-Q(VMSskBQ{S$j{Z
zdDP`8tVqG1LLh~eDXdE2a0*AnCWWt4_@2qXNnuS2n^V}5!dfcpQ`nHgI&xKV$#LTY
z!EaO8#GvSEINHkKcGh>BZlxU*cWTRBDSVg0Zs|Y#7)1V1OdkLDq_CF;`%*YavOk3b
zB&tS&hqMPN%nvCXP2p?`=TbP9!jFtPlfqBh<^*#;{(y&*DV$>P^nIH=j-NGGxtveI
znSznRg%mEPa7o8zl8B9J2UiO26ikX9ZR6E8(i&ps)4Dtv1ycy6fHbnD5vG1Ch2K($
z2u~rFf|bIrDO^t>&e&uMsT300!~GUWYvnS@FT^V;TqU_iR0rZl3O9AHlk(j6@Ouik
zQ}`!^e^dB__J0%qB#Px<52U)I&xrpR>qy%p|J@YsF{qkCFoU`ZW=|tW8pYBmo<>gU
z1&O)R$W4-mm^Ym@^yNz<f7<Q|y=r7UB$t3R@=UV3`on4aWLzmv(DD|5NhIsSBt?it
ziBhje(kPKe=`_kvDM@^kC`EcKjZ$ftkJ}SFsu9XE>TzN@qRhONC#jIOzm}~?UMY>r
zB<f~Kl2>6+oK#PvMjD6HIFd%qG@eLfQW~G7Q7etwX}q4s;56!_Q8$eiX|znEUK&rP
z(I}0^^iZGJkk}yoe^yUPE={O6BR-WzQxegiCXp96&!o|uTuov~9b2XGY#M#j=$A(8
zG}@%mA&rh{w56FCv}0qc>bFm4?Wx;Id+wb^XYww@uEghbY&VkUiQS1kh&|KjMWXJA
z`sf3?ytt!(8ZV^r3S$SP@nRY;lS?fIYBS+4>AJtMz+T%kD2-QX_L|nkM#?-SjW^O5
zmBt5*eKU=B(s(zGx6&Az#@pI>n97bX9aK%<OXK}CMx-&EQSx^NN*~Ff>aMa+$cJfs
zMCH>oMyD|*jR_2nC5|J0OjL6bpO8!0#<MPJ(&?8aj)_{ATqdV6C5@G7tV&~Q8q?C4
zpT+_jd`_H`#usT!C!dkVY?7J8Sw!*w*socgb}p59M0xg4@XGjQ8jI6dlE%U`7BNcI
z?knBGODQfVinnDXvR+#F3O1UYU&2?X@ogHL()c=!Z_-#pvvp~#Ph+i4D{Zww^Nl2;
zsO&Z~xGRnC(%6#5RtC4FA!|r>GMDXCb`TxN8b5cZ@qHQxDM}gkq_LM=dV&P^rLmv2
zkT<pmw9Om29f!!(f%_qiqcU_{#zU8JER7%2xSGbbG=56scpCmR0%@E`<765}8m=@>
zrE!|cGt)Sueg3RF&si$xi05_e1(J)zOL9QD#@?x8r5NrsJTkUW@jjqS6(rV|h72sK
zw81n&X~fd7XckT*qU}{PMs-Qz)RSqX(nydigEaXS;{T)SJHWph|M$=5Zm6WGMP-Ec
zptPsaP?|zZh|p3fl@*0hGO`s#JA_Iq*(IY=$c(Q<@Avz>_d4rS|NGph<L7@}=en=^
zc|EV^^}L?_oE;G|mni$Tt}C){GnhDv<WX2hVM`$;%pXPiC^AQpRh80OF3jtJXZ`t{
zN8u=nVYdmgbCkAJ=yLXGXn3K*v7<PC6h`Dk+LI$F5%+lgCxSBK{B%ay2+Bo3QeJqH
zkiiNf6(gt=O4>c_JI{QpL{K$?^CP$*f@%>|kDzG;%_67~LCpy2L{K+^QzNLQEP{#+
zysaHMF^kqy)aen_kKnY3?>5!g&l^bIP#7d(j%P%0rX*)k^Z4<zg(Qtc&JmtV6lpAM
z62Uj?jG?0qKCskWX=$f*1TDl{hLTpHKa6b?^0pDQi{P>d`bThK1nnc}9zl-?Iw)1A
z2s(>&6w>W3A)%43;@yPwFepOL2rh}>(g=D*Fr`Te<rhV8v2?hhVsrEs?;{MVi>CTU
z&`%O_UZNQwJ}8u29>GBIU~!?&;0T6<u{3f;1j8eEID+{RTp7Vtikcq5)e(${U|a+@
zL@+XfQ4w4l!F4M8=&%OHNckG!SmCR@j<nkENVLqsa((2)u7Hvor7%8BOUX?U+^pa&
z5lm3*#0VyfFm{qiP|PV2+^XQzF!?kEZxh}g!5t#O6&t3V5y71i%#2``<o63_EA3qo
z+^yg}>Hu@-p@K|xUj&DAdP_Sz9tfSE8^OHDiJ!YY7{NoKJ~!=;MDS<?Ya>_}!DA6D
zP}GVD7Dn)R1kXh9Yy^uW{I{1r5y6v^JQdn`T4Zs=|GpgE;6df*!r13UUJ$-0d`b9n
z1WQDyzchkZB6u}|WufFXk>x^KdtD@`%#|Tu6~XEV)`Z0jVrgxC1fNOgjR@Y1;H?NY
zD7Za>w?(M4If8dW{;tSI;U*!UTA|K+;#(qkKZ32QZDzq<y-oc6rM}Jw5$uo}`G*mF
z6v4-w|D{09Pvsj4W0^Maa90FhuwtWlE{fd|e90LmiVLFnDuS;gI2OTi4(bT@MDRyw
zd9TQi!hI2Z8^Qhv4k*Yc#AuwycM*Iq$q&MV|9|XH5&SI4FT!7iO!XW4jQH=YOqudA
zf<GfTEO|VFL<E0{ABo^^k$;2{;n4_!>WV5D6VkFNGVWy~89_?C7(qIW&Cq^%W9=d%
z8%lB_dA1Sfe{t?)tT5J&z!7&ti5Ees_*xa;h@vEl)1#;#^~W!ws3byOCW^A+<%H!!
z`AJb!5U&_Y=<Uf-R95hmC~AmQ31h29Q7z=vqgbgQzSNB3R0(Sd>qSvJ)Tt9iUGd<N
z(bL3(Rl9-sIZ>P|(lClMMCk3AQJf`ywy;qszgN#@oTp$jVdE&8h%^m#f*-UskD^5=
zX(`ewiq;}+g#3FZGin<}yD09J<iaT0N6{;aixli2>@4gUMJJJ<r*#qUD(ohtsqP{@
zggvAF8+^RbeQ^|*NHQaeOQYx=#T5$niK1^5my0uPKao}Cjmt#(hw=eY|JQg_;4v_Y
zL6Xnn{2#@TC`g71hY1<v5;I&nR|>C+;%bo*QA`#YDI7)jM8-rhPK5TaiDGQXuNAp2
zit9rO=h7R*Z;WDm6gP=a5Z)Z>+#*8Fi6WE2VBr6hC~gfkr;1Dy-WJ8}q5O_0ri;@^
zkm^naX9{OUF+0?}D~h|t?+GP5#lA0!ISSq%J+b$AAdH<G#k?pURPdoF9u;|5I6u^R
zM1&Wh9urv*#lk2a7k?(ySro++A%8N8r^KHQC5xjc<^ej-4)A;wFR**Za9#{AM)6V<
zKSl9#6fZ}yB#KX?_)H0xMzJo6^-;VM#jBDmi(*x1bGgWC!q<f>IPSvO>Dp?pR&b4Q
zEj`rK{f2_ug>OdjRumh=Hwx+D+am8o@vg{vnc5`2nFSHqBHS9q`y#>Yy-l1Jo>4P>
z5XFvA@}bB_QG6UqK8a$NW(n$lF5%b0os@?<Ux@4$e#uopB)AgzO%!_++#AJrBKw52
z_N~bNC=Q4O_Yf)nK8hbgor5Aj3P%kveu?7OD2_#OJc{3<I3&3p#qUx45rr9~68;@<
zeg#P6u<$S8ktiB2I?+G>k>qF;5fSDd6^RM?_+>nbgm_Yz6Q+b|VJ3>K2-7AOBOmgD
zNHGdaB$z*)FxD0Eq9_d|ycuo8P!dDM7%Igy|Hn{Hq>Qkvkhui6t;@%7QYfhq!|T2L
z5}h1F<ro@Deo72gL~6%SHPk#chH4?NE>c5SGlqLLP0>iL7+4Sz9(7`<8$-PqP770=
z9{az0_w{3FAbGH}Iz#--Q1dL2vtwu!O3o4CU5~~wG>KtS43lGMD&hGtTp-dchUTGu
z3z3#Fv=V78Y$JTDy6<7z7}_Z~E`|$ZXdlC%7zW4CA%>1IT&5_hbrR_oL+4P^MWm}R
z7=zto=n+HD7<x%~vG5`xpKuO7oOp?XmkN6e`^3;!gt_z+;e%@ZMFt2j7Y-Cshnw3W
zA-_6?p&=g@!xb@q+b~>6a%Buxg}kfUVnhrhV;B{~Xr&q}91~i&M(x6fsIQgex)`pH
zow#1je0h!Q2FY&}jt^7a6vNFSzeQw%a3Y(Amyh_^PYk!l@N5jv#V}P-kHqk34AWw`
zEr#1;xFd#p*m)E+J%-sL%yC8xcZPgs%%9U{v6r6Z_tLv0zdMZOxTf$v1?R;uN96u6
z_5qQ(eB4eg{$MD7NaSJR{21nI_IpghCxr`y3x%}*cnpg|{zMGiwo%CAsTiJ?e6jGE
zP=|Bl^WrN*$qQTsVt7fxmxaq>SQ5rAjo}sXSB3vRH?>^B*MzUfup$QD!4K}^uab~H
ztQJ{AuR_T>k@YdW5lXn}+Q9x0!!=2aP2!yx-i@Jl0(BDD7{jI*_L$gfVsi}d#c(_Z
z!}JHpmKffTVQcKfdb&;4cwh3D7`Dgofr2|?_$tih!x%n_;o}%S2_;{|@M*|Di{W$e
zox)v0zH85nc85A&id4=SU&ru`_#WZ@81{<n6EexS?8&;ccp#K~C-Qv^KZKHlG5je0
zQz-eFqd5HT&95>17Q>+!evjdg7>Zn}*`_i4DZ<6>a14LN5a)yz!;u*Njv*RDEQWvB
zV@r&qF+@b@41+xWJ;5P2l_MqG%p_w-@oCQ(auTM6nXp!woN9Sx%7g{k{MVWlgB^pT
z*wWB3HwG`X&*VIgg~1XNFj3RQsV2&(5z7gwQ&xnQ%Zr?3qJoKvVQdu>l}x_|P8L=c
zo+6}>9@0Wp6V*cf>LN8v@F(evs%4_KiP2$f9gzXTx+dzGIL*ZAChD8$Xrhye1|}Ms
zXkntIi8D-`X`-3(I?Ke_CYqRNYNC-ObeQ((!#O6-4g4|D*!;ii67-EaR0#YeZ*HPZ
zUH|e+D-*3vv^CL=5~V%g#05&rSZXpY5Aq95zmvB&(Lrke$^*5|Cc2ooSW#VtJxug8
z(al76B@7%O_EPLcLI(dmE-`VbiQXpqNWbrY{HIPo=`*j(MEZvwUT$Kbi9sd?o46{h
z+aV@~g?y+9o;dKhLXzRaD}}-1e^-l-5V9Iaii`>s#wfdMOpG;gt%>VQEH?3siR(>_
zGjW%RyG`6+;zkpbO-wN{UI}kDaf^wY#Dm=?El)5p(ZnRve}|f{U{jKsVw9O;jO4rC
zCZ?L0ZeoUsX(nznal45-*dk?0cs-f=0d7S}@bd4SCT5zLWn#9n;F;9FV>b9$3f1mm
z6`6R%#G@weGcm`+gC-s_aleTNOw2Vg?>{xnF~|pFxF6#k=Z@N()4hjH%r{Rwfz0QH
z_>qvuOe`?*go!6jEHv@BiA8dN%A9I$9OXaY!T*Xf$m1y!PlvI=OUl%F*2HrrHkf#u
zt!&~26R(?CVd6y-FPT_s;uR%%S-8YR@P-awnfdVe@mEbOGqK#nYbF@vOJ2cex~FvX
z-R3VuW95vMY;F_lO}t@ZwTU$*)|yzSQt<5<zO}?R(TY?3b5ADW%T{lic+2$PJ?G0=
zZbf9<8%L@byQ>-Rn0VL3M<zZtvC+gP6I)Ge<NR;pJri3@yw7?##Wy&lqtUyyv1X|8
zV~N3A6?AO7i4RQdppzyJUTn0j>i@2E3BMZgr7>P_UQp)~6Q6QsFtOXjXC^*3vD3sZ
z(|>&H=}vwH9%ycK|DlA{9@M~>CcZN9wTW*`{Mp+md#nHE5x=Fw4+U`hlswOvSkKsJ
z;#+pkIG&ATzbeo(Q7Ur4#CImXH}QjlKbrVS<e-q_>t_?cn24H)sl)$DIWto1Zzc|j
z{BGipu+K0_(8`<#4x9K(smPC*_}j!k8p20SL?r)rj57&2N3m%lZ=zr#ZX#hKDf?*?
z8IhEd2llfja-k7Qm<6#YHJY+bSmOU$c1*Zoaw;D)aoj|$IBLiJ_1cJ|LL3$2D2W4-
zl!>31C(9~WPDsu2A}7TWyiZpte&W>iWXS_JD#vk(f>nf7h1G=Bg|t&6j+)}93WGb{
zb>iUnoEh6Fj=G^{J(1Jm{t|O~9Q8#S2pbA1KO>Ga#m@>QXN#~Z&WYn(@;DmDF*=Sh
z%p#7aaa<I~#c?!?qj?-1<LDGei#S@waX}ny<7gE}>p0rPalUe=9eVXI2Be*$+Q-o$
zjtj+SYAInXT?%wM$I(Te^o*lx9NpsR{vU%ub<uK<u(o?CmU1S)B#ukt7%EBcIQqnK
zSseYP**ESlI{n0%7Y_yp#Bq5XgF_26J5YR(Fz}z6L&Cg<#c@R(!{fM83Ri{JXo|<x
za(jfLMurwfi7@t>IL5|tR~&c8acvye#c^vKQ{%Wkj&X5Jh+|?LH-s78s8lQw6ONbJ
zo8q`x!dt>9x;IJsljE2YdJ_0d98<xV7RPOI+!@ErIBt*QjyR^rF+<j9HqiWU&6Cek
z>}**Jbcpvb7{?=VJQ~M+%6(28_e+yW9*ARZ9P<^VP3p78<|+7K91lsK@`q(J$dn3?
z#jzlcC*yc3j)ieN9>=0Mo=_VFM*fSm`LyhiEDm)7h36QIV?!KoOW_6OyCRMk<9I2K
zm&4qbh|t@mq2v{jSB1;sSRTq>i{o{1Dl?0f;;Z6VEwUz#H^SJpBI}gndSQ^{%{bnQ
zpST0UcPDA&ojCGw6ykU{j*W3_ieqyezbN^8acqg>C-L{=*ebFoj%{&lkK>CtcE|An
zrw++?3O^Kn9>+%_wEwZlC&EvKpM|wlP5&|9CE?QQ{_c^-mvMX*$JcR~9ewwBd=u)E
z$IBag<JcF+w@US09N%*lh~q#UJ9X~HR-oDsiajV~a8pHt53Bqb2k~p!{FxqVWnt{E
zar_p?p*Vhz<BvH0iQ^~}#_?wyd<W{UI1b1CujBG*sFU~&G0sje84MnY<L^-ZG#~qq
zBN|5{j$|A$$$1&pWG$6Fkv1OpzqL!vR2=CzGI3<t=Q#uGU|tPnmcg8oQ<=UMIj<&8
zTt%_suvH?5Ef|L<UN(#^jpLXk$AwI5Bv7JQ2+M?;yg5}af$|ETl)xz>6@(Q-ok}7n
zCs0`==sbJM8&wpnDy)`3brI%OLnL?%<J1Idg>p7W-300-a5#a#5;!e^(-XKXf&K~9
zPoO~p?Ly6l3A9e2O#){maApE$N!~1sJzJzv0_TXFD?CrwSV$k5B+xYE-03wBc?*%2
z!d5~S=ln3Xt;hw56X&+HL!U29puOZB66hXkc1)m?cxPdkP~J6xZXxGGeLX_nQ>0e{
z7l~XP$}bVQRM<O#J|ca?*nXiW0}{AAfjJ4>uc(0u3{T+71O_QMSa=@i{{)66{Kb^V
zumr9UXAu}=S+0`WtOTx3U_=5V6`U#@mB8o(#)w~^z&Md>gkux9R)iL=OPqMN_J#y*
zOkh$1lM@)P*qcHfZXRwHza^AR5Sf@bajj-bD8E&N+XL?QX?$7&w<U19gfl{&I}(^K
z9(?zJYIiC)Gl4+D=9`_sU8<<N6?IRT_Fj?ugv{lE1m?>BFB6!jn%SAat^^)T;GqN_
zPGEilYZ6$Sz#~fXR02;Y@Mr>$C9ojjzd-kd<O>scJmKFKT*R8;r={i?)p=5>8h$c?
zm-zbFU}JFt&m{0l0<R|UYyv5Lbs@_isL{^^UP$0Y3O_0-&%JTNfBIr+0-R4?=19~G
zu!M~(5=<}45?C%HD-(E))hIVsBu;!Wp7(=Zb4utBKfk|<jwLXpqQRf-c3oCN$+`sA
zC$K$%4-$AIfj1L)k4?s>_4o_m1l~^I9S$*m2uR2>zMDW#e*Z0jP0Y(FA?LAKN$!~A
z2bp$D0`DiVRc>rk6pPPCT$ucp?FQ9$B=BJZA4!21**+HeB!N%a>v&SYg`lGGSpuI+
z-hNpLA7kJV{663dHRZu3ey80n1$N-C68JiSZxYy(zyS%_6ZVR1ooDO|CEq5nKTJY}
z?-KZ4!5@Ub2oDN>OyH*kepX&QbL6=szgh8X0>342ND55;zXX0y;1B7ro6#S7!sE|y
zSRF~=?*wWmQ74Ii5;&SbMrk7nL`71<m@qChg~1e>5Kjt&uXdypCwAu91ab-F6DTOw
zmJda7OWb!)8&M|#S8_V$B~U8gjwMhdd19qFo`4}<k_3_{lSEkst0qw{iSkKQRItKu
z<D?`ih`-IJ(D}-PvZy4<$->IQQ<A7c&Hw0EOQQP!FR3ZbQ-!sJ^p?ZCu6X?<8YEFK
ziPMreJ&dLQLA8)jxnUA#Bypx<TPFQE?W|DqY>`GuoRh@4j7p-hBrTF?l0?%ankVrU
zPbc~95uQQw{a*#ooMR-)8w}F;$K{Pyp|#c`ZIU=Yi3^fwn?$=L286K}iu6jNy+{XP
zM`5QVIw#RZoHo0QbWNgLC|Oe8=n?XsNicXWAN~m?7bkH^$S)P?okX7``il2U;<7N7
z3HytaFr&-G2PQEniNT@HRY?p9`B0HzNn8<1h9_~Q_}K8hu&a|8A<0PLDB)<~7~%UZ
z{JgGB;<_X*O`~@j*C#QKy(NW8Dcq36jY+IXVr3HJlej5~hm)9}#LY?ElEec^%uQl~
z>`W8}ElY!wl9(*X6ydEx%BPA<OX9Xra(fbYBr#pV8A;qDa%U1VlbDtCe?2){68<NV
z7ZC0eznd+>xvQo@yjPO@gmZ-V3z=8&DC|519}+$&WXB8o9(5i`;;|$aNd9OTOZmbi
zmL~B^5|1abD2XQ&#m>1z<jEwS5_wuk{ly~BB=Kx0c~0bc;R{K;7|LG~d0F^nMSm>t
zs?@*r_G%K#6t!IVn(%cYbKwqWRT8U{h$InBVoefjllU%)@1?LV$!`JS%_P<*Pi$;h
z%(pbA-j>1!A#do=6pwe3cvq5*No-1Dv-n3ze4NC4;?&ua#QWk~h1-PNg&zoa2tO1C
zR{)sm69vB#ek%MdiO)rL3U>*=5bhR!DGV%pE&h#gk8rPWpYU7Ze&GROkm?8V-;y|#
z#6gw%M@fDX{w(}ONDqG%2@?KJp2VL?{2^g*Q;#ijIEkZ@{FU_ot;1AD6#QHG53~5}
z|DI!yC1FbL3gg0rFz9T_BvJ~}PFf_BL^hP<MDoHy5=9Y9XbT-7(*}<MdJ2{%aV(S{
zr;{mv{wzrWDU?Z}Y|396Dx~~vNx2j{U*xxYc?DnLc})sLuIBvw)F~GkC#O(3g-8m~
z6i!K@N(vvOup@=4DO5}0oD|NLwdyIHCQ>7HqL0;7@Kj-~6l$kXN4&1EUJAjFKR72d
zcOIvwP+w^qr2Iv&VG7H5dL<+|Q{*h+*}_IC|MC>0&XYk}XeQD)g(jh-sR&P1ny1hr
zg_bF_N?}3@6H{oNLYou@r7$>!^HaDWg`RXNg|;cQOQA~&T~oMF_0~Rx4kAH&b(E8=
z&rT9D-_FW~K6g`8_Y`{kN1t*kGwnqwT%1Dh6#AraNeY*$n3Pk2Mu<H6rqC~ifwB{1
z$EeF>zkdn?L@pNwu|yt2QW%=Tbtzn*!mt#sNMTe8qf;23!j&nENMWRsT%{aokjK^k
z;j|FsJ|=~0QW%@UwbG~X-zXL#D8)EV{wm$gDcqRCc)5C0s2?PuCJFJD(A7yPOitlB
zDyJ|dg<Dg2IEDEsOif{03NurfCC%GHJGX~*dxs>`g)>sPQ-uE0vDqoymBRfgJRs$}
z<q0!o>^&@9sCi!sb3)EkJc8tNm1<rJ52o;t6oN`%>?0{Wn!?j5EKcFE6c(hgD1|3v
zpRo%?9uIB)o9am!d`cMPLgi;tcvhN0olrvk7gBgJh1DsnN#UgwUgn5P;Z>Ps?2;6g
zhIs`JFH2#03a_Q`dT2b56IX=2h?Z9>qg6sitxaKF3h$<{QK{Ca@P?EFhu=)$trRv$
z`5h_H!rNi5pbmqZQrIlXd!fz1f0kuS3h#%hwx+O63XI(zYJQl)M=AUg%0EuwlTe?=
zKMm!drSN$QJ5$(|!WR;LBit?gDupjaf{O`Xiw8GW_N1^kg?%Y}o5By0^HxhRZ|_&|
zKnmZ9d@tmS%yjRd_>V#ce@fx!kkjn1;=c(Gh4SB1_#^OK$g=;L!r_qrC2~agcMAWA
z91UYx(pU<nOf^j-9@;FIMk0kIr(8+$DHKG~DP%;lp=K^@5qeup;ke{hD6~^>QgBo7
zQYcN~7{|LlJw)UgP4F=yCN$C~&IL-+fOwfS%8CT1-lgS@@@bruMujvgrqMW!CTUbk
z<7DZaDXc6!J&jY+sFFri1!=ry8r4ExU8F`D!OxCQO`}#CwI!^ZM!huZgqp1FoA@!V
zI>u>|1b6N0hp`RPXqd(sX@7?2c^S7i%;>B%&Xz)>G|me(&k;E{{eK%9Y6iVGz-DPQ
zPoss@+6r3=TM1hW+X$KPe31);>`U#^xKO-(8r?&k4rz2uqmzQ2)94z?yNK|aif*BV
zrRx#$o+7={xG0odoW>;~r>lL^=$po68T8MfA4wX=(m0+*|1<`qaeEqfNcr+K2Bk4r
zd|+7WA!!UvV{&M1SQ=x~{u+8k8pG4LGL%ztRT@_-I3kTvX^a*hDddbXh84@lKEoh6
z56Z8V<T@d1>3WfIY1|-kqj0?NCgIJ(TZGh~ATm)nNf_K<nj(IyaH?=x8n=lIzsKMG
zPETV-8e7tMKaD#je<_WZMP{ZkD~;J{+?B@Nl025iJt7aL@eqqIeqS1M(wI>3#I%3E
zgb%QPiqN-tX}mt#?_Cc|@`!N0Fqljp6=x+-XMy-aA%l;nu}J(0;giCr(s){AF<VE3
zn$L(lD|}9)gPs2c1z!|0$ezR6UXsT0G+s+%spL%iipZ<NWolLmxpRA6k~P8=!j-~R
zX{;8RAMUKyrm-%K^=Z5z`NlLhspq^YYi~)oK~4X58t;g_D`ctZ(q;}r=`a`^6tXXE
zO=DXc|D<tLvD?%5JdK^=A1L__;fHB_l*Y$te3HheX?!MyU_}2Hcct-#qW(@}cN$+R
zEpz!Qjjz-AL&0x^d(zk&#_mhw+cbVk<L5N?t5844$N}MZ!taHwG&+AU<UfWrN%=1!
z|5avxlg^<~^LG(?^1n3xOyh7Gf2DCmnt@G5u|k46p@gsYN0fxwF&IrFmWIj6UqXj7
ze;Ua&ECo|(q|+#*G5+}ROd8oVa%tq#m{P@{gvZ!J#@&CHY~N|P>q{6cN|WT8!-g#j
z%pzD2UAg2*SSq9gMg}DrG|!+#2FUoUz-dB~G8zBmrL2PGgyl0hDT4|bR8+8X2B&0D
zDT9+U__4&`!4qu`iYggY&EV7wYGqJOnl&=0nF0H7^^9K-l7%DuvTr%y|97T#26Zy1
zn?XG(4{20VqrXwJzwu%f-yn|(^^DUqsGmWD3>s!|P6p>nGk6Q~4DmBFI7{SgA&oc6
zoVay$UgrOs{2NQ5Nyh)%OH*Mp;Z0SImWpbhL5B=lWzbr|HeqtM<M|m}AYof!J0bJB
zP$c-MPR9&7WzacH)g^<jioGO*ZXy?DaB&9RLxmm^_7wIKHqygpevi^Px>Um6!al;j
z!hS;PaE%_2!Q~mO&0t*y10|o5!L1n#%3!d9Lo)u<eRT#yGycp!EKGZa$nXrV6uC;s
zr}b!-$A}C@W-v*;cT@(WGZ-T~*JN;m$XFpQUz@>o8C);p3^I#xieevQ@J6;fJAfoN
zXD~5Lb&JS^P;-*VWFajuA$^#d!ORS1WiT!D`8JW;g?9+23uk0-r%3R}pV{KHa35=C
zk#U!TcMI>KpJ6OV#~g9ycz*^DWH2{_c^Nz?;gcCWl)=LpJeI+NjDL4yeg=<Z@TfRD
z=d=n2AA~N;`L>s_FoVaH>WK^%h4z_*vAmof%w|tz@U)^93ttyLBYal)96N@{3mLqa
z!AlvuoWU|lmIz-FvRq3=c**Y7P{Oh-5BY2KFua<#B7>Eod{qXk#n-6Y2b05kN!}5@
zA$(K#mT*G`Z;J$vhp|oH&0wP>n=;s*!3W}-h3^TsWbnQS{oI<twvaO|B|9?sID=2r
z&>t%5Bh4Yp`0`h%`DF&5W$?LzJB7Q1Y$jUxLTPtPLYrS@@O1{?D9G4-YMng_?iF&o
z`)vmMLw)KT$iPtt`yqpa87#?TX&ygj@KXjK=I~JtKWFd@+aiZMdD$m}-!kAwJBQ|Q
zD1+ZKSeV7*S^PnR8BEV&Mizf&a5#fR2FVQm%HT)_X2$<_<ln+e%a#1YDW#;O8ZVw_
z5aCem>p!r>U^IgmXG^a5`pZc?gHM|pEt(k-uH*dpr;^vtB9lQj11keN13uuC%iuD@
zC}faVkjZJh$WgD^W8Y-Mk^D<OEGN%h>Nhj`^f5{^I3}CNIW1>#Y8FP;_p>AmWKkxI
zvRTyc?f=iQTo&cUPs!pW=}=fnq(T-IMX1?D$|oyWSx8A0k*Zl#%c6P~l++0I-{5OU
zN>VF}+7g~FtRt+KMO_i*wT<gh$iYR8?>p2o8f4Khi!-t~GmFc!7??$GZvM0W`f_#_
zD>+#iMx!jw$>LnLkzusU;=(M>%c5}>O|t$P$7*ktMbj*r$$0ZDT8gv?^I|Igi<4@t
zvuH!-_18`Y&(HdQ$-E$owjxwxuzeOCvgjj8M<Ip1vgnjWXQq{;#i_n#*DSha(LL)w
zPS8_G(j$vq$NleDQ{hG#yhuqd&f=0RF3o~zDeoQXllPTEKjCG<{=xymz^g&x)3UfN
zi@{k8$zo_0!z8>uiz~7ip2ZjiuVgjyAy4tE#MvjWX0Wy~g3ZT$Y+e6PYNMnuT5<-j
zQE;sATB%(pWE2yQ%i@MCZd5EKw`4J1{H9QHvy`bhA&ZIPlY~>KP}`U+HRemlZp~t9
zpe#?=7OW^9w@c>^wGM;K<xVyhH|kl;l>RK?Y~fwPyM?UkdsLbC3hxun$>M&+J|LVc
zoF{xx_>gd9J-;gEXYoiDk19Ln*wQc_%VI&+AC(-`l&}Xb%HoMEwoB*9ES_S}Fy74K
z=`0p!@kZAFgZwjW+-AnF{3lBm&t~yl7SB_j#j9B?%i={DTq309m$G;{<Xr~(k2o&P
z;uT4P;BpOt*Rpt>-M+4W`rNp-u|mSx-HeqY^liG~5AD@itO<MjT9I|a^+I-jCcmb(
zUzWGB*pS8Bl$ST&VTT-KY|P?a<;$N1Ji!--c_Ao^&62zqdbma8{VcYIl5HY=s+N49
zI@uxokd>ds$60)mMInn~7N2JESr$n(%I8_^6!}@WD~s<%zQ|%XdzWE+nZ-9*?8)LQ
zb%w7sSc0*}F0oh22eR0g#kW!jqW1rXe<wS^xcfo!gG%*d7C*@v?J(6Z68@USZz6}X
zIFiNRS^Ul=fK!SR{wWMh9TxxVKN9x3f0Q;R;Zb2kl4zKbDPcT|gb4Eu98P7C=KL>V
zPM8f9=pJ*-he0a~JB#)?bjZQU!sR@f!<jjFS(I`z&*7vTj%9J2lY9>4xXkh5PtLE&
zVE!q|0XdYBJP-y*H>g0YkVC~BD&=spbSR+$v2qTl<WMK)PgYfOsH)gnIaJG`dJZ*m
zsHrH%2K7m6r%Dner;w7`p-u9-In>MflkI83(}neg4TKGafwi-8I6H^dIkd^4Q4Z(i
z&@zWsvQJaY;@lk0lX2=d&Y?+|wrLK{#G4CSgz}(VOiRM!e3@#O!-Y9qAf2|Mt29Xa
zJObs8IdsaQPY!)^=$u2B94^k`k{r6`&`tGx(SN+^E+aj1=qX{ZF!#V9Ez{<uIrI*E
zlP7eB!hShimct;)`{ytqhs$#qC?kPF;P$_Ka1KNM|JY$UT#>`@9InjarW`m0UBxQm
z%#iaJ(5u;Syj;xve-0ya7?s0l$;T*1P7a*AcyK#0mUYg}zmViQk?V697fNmrxiN?F
zp=1V65|!gEIZVi5Vh)pXn3}`1946-w?Pg42^BD#=3EZpPsvKEl&PBK7aJzzwbGRdi
z={Y>4;0*52a=15#``G$}j8V;unK{hLVRjC8<#2Zn_pl+fYS44;1Nqh5YYgMA+D3ek
zF-I02$YE{{_lxgpdSZRy6gn@52Pq8G(hWAs!#T{C<|D#KbN(LVv7EnyT9Cs+1|@$|
zNc}}3Pe_fyrxbiTjHOG@XovZ1&j0x-6`o^@@Uev2#tS*TsET?ihZU@URp86QCBmgS
zypqGKIV@Aq;5i6$scS5k@z>O3d>)=33}n-+%3*a5Tb0)u>HpT$csGZ&IjqZJJ(H-I
zZ>Ud>&_3kN9Nv<t4WYMhi@YQ3TF2O!!zSgjnGM&}*pkD3e*Zxj8R%#FzOrK(w~4TH
z+jICJhaD_zQ~zJ*+_F;maSorbL*_9&k56;>O!j{gexAc#k)1*+@5<o|@!g^1OOdaH
zUkks<VNV##D+x@sFNbd>*)KdG{4Uh_UgQVi!5n@RVF8)&=Nx`vE6D#wd4ERwP5e*}
zzvu8r4*yfrSIgs15m(60a5#s*ayXL1-#Pq~gDv^d93naYf2kI0OrtC%ti~S!<Y0=&
zg$ZF&$Tp=yI)_XSSxNFa6mrP1;rQ8yDSm8GauO=j$sh^al%6=sdd?)n6Dj2qAaXp1
zDtW)(8bVG2C3zr^GI^Ah<YZyFJj&;Bk~ozsid4w^Kht5bl7j4J<dyRX$SI+)YM|WA
zI99f#dLA_tteM9dB203sNG)OQJnD$l71k3{=d?Ud4|)AO8ic%I9z46D!kMAuERnPG
zU|}ggC-3jF&duYzJQ^#iU2kJp9!>ISnn$xdn&;6|@)mit%%iJ#D`CexI_1$?oTl33
zalZHk!nVS8!V87%g&l;02m876=$uCvN%*o7gY59Ev~H4g&!b1)pE@WHVteIrQ63lP
zaY-J1^5`qIOY`V05~u}r-Y=9~mdAUY4IYf`FX4bZE*BXn93&hp93mVVNaUg0)E}f*
z=5due_M>@RoyUkgCgw3IkC77IocGUvN98fTsWCc_F-)HK*9$H#V@3XKYFwN5*9#uk
z<#Bx;<MOyclJTMZ#=QTASD<rK$Z6yjS(qT?$?W7jrsQ$Ia=bN<sU&&KRP3}oZp-6#
z=5F{KX3mhU2OD?f{i$+#9+^SL40%ge(|!HD>nugh&V%RO93yvyp4^?sJ>vI<lKVvF
z2p0}6c|f_(70werD5T|wL>?B-&*Kph{_TtJ89kQA0{OWxkHzxj@jMnulALTjk;jvH
zd_2bB^vJRKl=6C7cn;@(=|3xE>~ncMAMzLScv1YNQ1UXnjb3zmC68D0*e)NI<*_`E
z4SBpRwb$}kAvxcqd!1wXR=?)y|H?d8Nlw06WQ}lb9_vKbhp}(y7bI^A-xBf$98VnD
zu-%&(??~-k<+U-7O`&g_*&9Q?C6D(*zExzKuuE;@gFJTR{j;IK8lCxwm6OLOoc!}x
zS-#Aw@?}2D<MTYeFDdgwNtvB_?8>9nF|<C0FY?$;wIV(%;>$d~V!;b|t$?rd_$H5Y
z3plTUJ$dZS!_LFWV_zQM=J9(Tf8?=0j{|x9kjKG1zT<=j<9p`2&)8)cytc4|kGAr$
z|2z)yN?keQw>*Bz`<IA+&SM#0#^+rCwr0pbGK@nkAm1G*r<;$Q{PXxLk0ZQ-RASVq
zWc<3(I7|z?JjjQCIvIP)8F!U4{?6l{JdWlO$zz^u=JJS&GZ@Rm40&86kw;P_70T1>
z>f%}9jBiSqFwY^+RUnVr`iWRE4@;ac%~9@hxUsMWR4AY{k7Icp&%-Dn($bjR(fGBF
z!QaD`6#TMOA7zY&e_IU&lqsNW0d+Y-xfSPyAo21-MpZ2MHPfJgh6Pj-XY!K^s9eA)
z1ym`ZDm4rKbz>gY3aDN{jRKzSXjExo)TDkDgPaGApIX2Kz6e|ZdF=w~C{>F}1{2mR
z;IsnxS9<C*czOZ#6-&*zUzIGlp`>wn-`g_^I8*+gRlwN=zp)w>u(!JLCg*<zdBJBa
zjK&2tDd6b>78lU8fMx~%QNSl?zkn76^ef;p_MCG5Z`4{A&`O1BExfpZHU*qtzy$@c
zpL7zEv@M{W_=TaQy+{Y93MHc^8J)$u2)hcq3A+n>2x+aSNH5_<1u!9ntkp{jxU_)Y
z1@tMPuZm-LH~5{Cpih>8(Z7Hn%NdpU;k9AL06Bbl0RsydRKVZ@W)(2IfFT78E%;YE
zZ!KV00ap|-PC-hB7cg4<$^xzuxw?RnVeAMIUf`hSDDmAe#uRW(0b>=sPIzq?MYZe2
zgCsW;aAN`E3%H35Cpi^v7MUQtrGP+_@`(k|ILYKtbIN~Wr%E_Ycv}It7jQ=b(+ij(
z$;<-o3{%kvyM17a#_uZN?gAbSWA7>8!I0luz<mYGQSg4@+yWjD`PZv?p;vV5p#mNb
z)6N%pB=qnx1s4bx3Lh6T)uPbClLb7*ZpJImEsaly8`o?#p5dS<;N=3A6!2UD&lm7w
z0WTG>2nLU69peT1qX+DtTxpDp8?$-+vx>2_fL985m7Spgc5=rsI1nBkX6&nJRI6nC
z6EP@xy?_<0_9AXBVr2oV3NQ<Z7qGg3H3jS{;EMv*7O<{>&kFdwfK4@xDI1OT%6i=K
z<8RP%0dEz+*K#*-aEZKKz&j%E3O5(9QDl>lniZxS#P<~3Qb0Kcw<@@;fbAk52tN|;
z5Pn$je_u%DkAone0u}jGNSlM28&&zsfC8>7F_s@cZm%<T7w}~Pe-?1KfTf3wuQ+OM
zDA~tVK-0xH8U>sg_K55iZZ`b6;@blD7jU3}?+W-{ZShCJpFDpk;CB)7gB(yH|4HQM
z0)7c4zl!`;z@bpmQT>fe2GjnJ<D#7Z_eM5f^Ge32hmF4qIHF<ucLD#194#O!!XX?H
z`KFl>3niP%7>NRsoIi`GSHxEw*9D{t$fy+FNF!Uo^(DsLqm2qhf6~qskT0MhXNv5N
z1sFxYM3y8rJE4dx^n|5C>Kqf{Z7K2+r9#oa!^L131<MM{3Cjyl5>jFNMx$a8oGmL!
za&pnXu1<O7B2JN{N)c6ys3u-ZSiOiEMbs3h=BXmAB_5pKYlreWq5QNWPA{T)5iN@T
z-!|(P(Wr=XifAB(hDDsA8aT6vvqd--&Jy7&w)Zyw+nzK#l^?+2DL@fJc~!QE#zizK
zqN#$EG!yy!LhxX)WzipcBa8U4tX~POifCO#n<CCH;({W&7SXMUwnem)1097I7SUdW
z>pqk4=)f$*YnK?Eis-CZ%Daf1QDSs2qDK*fix^Tw&mwviaaj@li?~P%y@eMGFA-iU
zqy=`ZKH_~tNk0+JCyX6X#Gp`qc@YD}S#ONu!9GJAT152{<4Q#hE8+@~;bAI%;O?rB
zUoA3%{Xrd@V`o$mqv<Ly`|zDyk!u($a&0KTu88Z!#|du`-WbM?FCt&gVDejvm{7zE
zMZ8$V#3CjYF}sMnikMu)lp>}TaT{Bzym2c_w9S|*PpULG=IVaXhadY-K742xw-<4T
zqNW%9MSq6yPT@@9tRlu$HuzUi7MwSd?k-|s5sz~|++y5Q#J%b&_Z2Zm%J&yBSL6X9
z|4hn}I8U6N{6Tf~hl+SulKH|%gpUdz6D|-kE&bsiPC08Cd<(3I4%}%J@g&=wn}6Zc
zLIxKX@l42{6?snhd=bZ28&r6yh?k34LAQ%oQpD0Cj#V^XVHYhieqC?$7-8f$7_S!n
z$12#{m&t+U!q<v;U1Y!&29H%mM1L+>Q^eXLRu}O`CBtH!@a|-Zv95?8su=4zV0kl(
zlRsO8|NrIMQO<a)hz&)&UBo-8>JNnP7O_Qy6}z#BP2!t{?+LjfVbuGf&Q_6a!tEN%
zjNK8&ekk&h@MGa8LU!HHi`ZGjMhlxP>?-05wz!4q7It&<U&Lt^PPgz?5nmUvuZVAz
z>YF0=6tTDHuUyx#5o;PRyiu}yATDoV>@VU#5kD32a}nPa(Xo<oW=&(x7bV}TCrsfg
zP{cv@Kz@OWCjugaD;V5={!+w0&HNwQQvPcZzZG$)h~JC&qX@eQhf`k>e-@FJ11#F%
zB90aj2})7Kkx>4($UmG<)F-JKl_XI_EYvYY;zDlVlOm}w$RwE}vPI-1VK84ru+J}q
zl4227$eEE_gjYmm3#V8pmAstgFA&GXj|&Y+N`#Dpg)$*8Yn|}6yyc%?oMfSbqAChc
zwopmr-xAT8Dw5O?RuxtgRu|Gfm1~ClR1392UfV()@w&o#!oYHU3k@t>VPUw1h8E7C
zR~9aypB)W$wlgho!aqy;XA2uyILE@d;?0ET2^$NWSZHdUn56@MnoHh7*wR8P#RgMf
zYYE#3xm2~aFm!)Oo2^D}h0)IP&x0<s(BAU<TL%l>EOe((K}tG_bhgkXlynsdc1k@g
z^tI5>LQf05B)`b=cTK&;FSc-r$fZJB3pP}Jq{ASO%Pb5EWBXee5c10{3=|JC8Z15}
zj2&uWSjcJfN()z67;oVw3;Bxv9`b4n(RO}sAE8o@v@l9!w1qL&i5<c<lCbv1TDUgk
z*IBqe<l`*dAbz88P8)wtxS1VhrE#kT%kUTdTP#eFClf79vM^bEim-c$znSF0@6vF|
zm}+5KX!$k^w~Mb_>)V`R;Z6&SEj(jkriED+7Fu}R!fXq7S$L<CakqtII}C1Xzg}hV
ztp6Sh&1M<*%EEntZx-$sdBDQMA~ZYK!n}|_XyKudvscU)e<YMVYT>bvFA(9LaFK;4
zEIeu9DGRL9ex|XrlJU`B#?z`~au#Z)POhJ|@SKIE7GAONyoDDmylCMi*=f1X-%0ZC
z?VQS9w)}JUw*J46j3t)88Sc#61QwQASZ?7p3p}TwkX@8JpV{S%4IPa^?Mq&_u)^|J
z?Uk0l`mD0B+QJ$OYc2mm$GaBRSy*r3Z3RcSFes$j8y4P_KKWaU+F;@6W<T~F1u1V3
zDPfSf*}{7kvKDd{wpe)I!mk#7v#`~|HVfZd_`$+<3m>pqEqrA8D?1l2UJuzpW$wyG
z7{}u!-@a*ltRjD6`Mb(bEqtcn=fb@fc8cs0ej#KV?H2ixtANPY!f%9oguzNg&3zWW
zm4tl1g#+T>{YU4Zg&!^aY~dFRZyhN4$-<Iy245kst2L3QRO~<dn;C0H8iy?WZsCZ9
zzb*V>;eQqmYaXcip5LYaWDn=xOpYI?{$CdU+GtEH@3+W5tUwD13rP#BIvBrwVMI8}
zMjFx3tC$5-gDXy(dXSQsvhYbcBW+>BH2=~>KV78CSm33q=f@#$p<to1jZ<tCIi@U>
zw{emU+k#^OHp=km=#LTCg2yqUO~QPB4A8<{E&&#fix@UaXr#G+iuC1&29L5f_6+yk
zc83~2aptix@K=9VQ^7_>8<lLFY@<$FV_#MOvcp;!n_Btv2G`1#?Tjk6zaOh%qo$3j
zHmccpY==?Z#@m&A`&aO)I5+<`YT2kwBR2Y1HPWB@!(qo%qk2vM?6t0qvT~-LjnizL
zZlk`91~xXi*zBUAjWg)2gDMWrv~iY=r)?~@akh;{Hm<aBm5p<3oNJ@AjV?CMv(ebb
z`8F=F(Zohm8!c_Lvi+&MnT_T)TG+VpUf(xnP2}kqKifspS~_in99fj``&z`dHZHW$
z-bOn`v0VK2;bky7FleKbiqF?hc`y}^A#WI6ZFIA784GKpyNw<;F0pZ`jh;4o*|^BY
z#Wv<u^^J3*PGnjl2R^a4jXpN|+URHdyFRMzS?+ILxVL014|ehaHZHd@#Kuszl#M|)
zn07Er-O;a4>hLOGQ2)bhTw#OBhs$|dGvPbQb#`F~<7yitY)rQ?!^TJ(qio!4;}#pE
zZH%#Ty^V1;uCX!J#<e!ClLb1=>gqSi;OGeQI;*pB1FO`=cpEp#6FNYD=sedKjt(L-
zonT|4jj1-K*_dQwvW+P=Znd!he$}z6pDW`lFBs-mZ|j=IZ8mOKj(6B#+37RCT1LWC
zDyrRSV<zj+#)CFy*_dtPJ{xmv+-2i#8~50_m!7LugGQuFK^?MY$nUrDfQ`AV;j+e|
z62Bmq%<u_wdC11YHWu1=+{SzxkFY<}Nw%gE(&nS=$^25WE;G^;9j1{*HlDEYq>ZQ8
zxZF3^@lA1Z4yuB+ak#nhjE!e)d~0LBjpuAUZ{uAX8*RK`<3$@QZLG5Kl8u+yqiig<
zvBbtw8?V@SmCba4Z;F-w&M?0|Sy#P|lrZ?3jn~yrm>qp%qp#qAEirbgtE{%M#>N{q
z-c(JlwXx2|dfQ)Fc+$!W30jZ|-?FiRW7ftyHnyqTZz}7Ti<vSzE^sW=CL5b=d}`w}
z8}HfJV&elFJ8ZmfV=GhH*v>wqI^>BMzxl?rMCL;Bp^cAhd~D+rb|m%r7F7*SLA+GU
zB<w2m<Z~N4ZG2_pYa6?4d|_j^jW0Q5j+D>>4=S_ycyP+1k#9I_+1P7ipGp^GL~nz3
zr~c%!#sM4O*+|>S*!bSY4>k_l_{+vYR+^39Y#g%jlZ~Hk{9@x*^%;K{!g%INzfZCz
z18cwA_`}BkZ2ZYom3^OSpLqopNX}7t#Kzw?Vm3@0|JXRndbSa@!AhV_zZzKz_@C*c
zO$OsO5;l@HQmPZ?#Y$#3V*yzfE-qBd+Q`{B&LQ9+Z=+ztvEg$5w_$PSSHWqJmYu%-
zpyp{TCp1s;QX9uKcJ@~B&m8H4Uo>9)aR3J=IjG>EjDxZc$~h?SfMp5Vf}<?e+%H;C
z%!&>wIXKxtW%^Ljc({`P#Xs7iH8va@f?w*Z>Y$o~`3@d&P~AZd2bVeM@1UlGQysK&
z(Aq&Q2emneJ2=Zh9S3zCobI5$<Il|X9GoT+)F(S0EjMt`(D7%sGaRr^c&@>GxgX=O
zq8n#BXyl-YgQgD7p@M_+95kjRoKb_q?p^LrKAiWOIcV;ng@cyLC@3j&;cUYi<My7N
zwvB`H9dvQf)xiZ0+EP=>?HpX_puK|*3NjUa-c{2#%MnMHc!92ygU&2nO~37^z}&kz
z=<eWR2bVbL;h?93UJfpjg#|18flMPox#%;i@lpr99rSU~*8yGPbQIJ-qx#7*^>Z2s
z0~}oLV4{Ob4hA|H<Y2UeF%AYh7~<ec2Uj^5>R_0ID;x}09WpJu6SE^>PYde#Y6l}6
zjC3%{@z)w=M0uCdCt}~M;dj()9E^2vgM%9#T<hRE2iH3or&6$toQP<U%|Tb0miEUx
zxXHmS4kj?)5~J!&<7T#0D}Pg3PirnaIrX`vne1SSgV_%5a&W7IsSc()nBicWgWDY3
z?%)pP;`^XEpV=`Nre%(II+&^0S;D}1%6U{SZ`|$R9tZb3c)-EE4(?Omp5uVMntglG
zFn{|&P0lC8xen$zcrYwcFmW-{hgivc{)a87wc}9-k2%=sV3&gh4i-9C<6y0W#~mzk
z@REa<9X#RSNe9n3cvjY)a`3c+#p0YyF4APeQgDnv=iqq<FF1HnEz5e_u+DdeGaIXs
zWqe_$vBberhhN>n>keLV@T!Al4wh>Svb?;VNB5Y728k@!3I{74ta7m0!C%c!4ED`x
zO`eVgjl0gldIwt^yzk%*2X8uf$HBV}-jb6W9K6kLuc@0^uoBpr*$+25*yLcdgZCV;
zAaw7()y9Gre!f9(C)w&?n}d%WeC%MmgAW|+aPXnba+q*7V~6J~M15{N7MC?Xaqy{w
z&!xa|{TW+9`Cb?9z-jXf2fI0TT=aDDrGu|HU%4pj;%g2N2S*)59PDwh*TF9ies!?V
z!M6^+ckqME?sss&!FS?8hbQtCDq23s4)5S62R|#8UQx*M5_@#?XFrnP92|1+r-Q=|
zes}N(Nps_W>PxH>CSfI0%_k0yIQZMaKhg<WB(TQ9)~e}mTA~hO4vG#e2d0C#gN%c$
zgM@=5d!~c5dIGz8upMQC^3F0_f!!}BC-V*p9Dw}gR@oCHl(p(LGi<u#;FyEs4qRz^
z9D3>}6^0q_X}?OB=mxztT$H$g>(9EuK9(MG1K+2NQO-qq7iYU@<l-b36<pMEQQJjD
z7nNL8by3a5$u26pIK@R37j!QY@rOK(vw$@Cty-`;qg>Q<ajNUD-8}ba%W{1Tn&3cd
zzyH*6QP)KSZtq>xb8(uB(_Pee!HpB`u#BAK=^l&E8OFEo;!GE3$!#hGrZ|2%kg0Hv
zi*sFE;G(UI^ISA`(ZWSb7foC=b<xa4bJt(pIL*=&YdB~c+My?{T(ox4#>M$8Z%sdz
zLbfksY2TkNV6<~_p^Hu~I=g5uA36|4sLUih>7za!?&6}Wi*7Eu(<S)3Am+u7_p(IP
zqz<d1my3&B-0k8X7Z<y@#Kl+_*SfgWMQ;~FTnu&5$3<Tkm%A9~qMwV)T=aJ_KsmBb
z0?+^5kuo?)QG){oRW(;VUUnGf;tCfdT#R%v+{KkHu5xj;>(BPV>_>m-8(k$~PaEZ8
zw2Lt=u3=?X_2vK0hiu|tR=Li_^)9BkxYflt7dN=L*~Kj`ZgeqT4&0>L=EnZfa=rz6
z!sT^>i-|5KxtL7jWlnVRV1WzzIr&r<(_GAOai@#hT-@&B4j0p1|9%j=I^SI38qG@1
zH}_`}mU^a(SuSR~xXVT97QfY43Qn_+Y4;M$+xNP-&&6{to_8_F#r-ZGaq*~&2juF5
zE*^3**Tp<`uyElH_U#Y5m@l26wmCD?;A1WpxOmdVQ!W;|c-+Mz7f-PNZ1wvptCW>V
z{h<FWU1vP)VzG;7Ts+GxI11ENsK&gO9`b{G%NZ}Yc+tfw7pq;o<l<!)%UmpXvBbqv
z7q7T@Rc_qg$sa+iC00e#)qXDQ%&)n4-NgzQD_yXGSg{mxIz73rp9M2wk~J>Yx_HaQ
z1{dpGtatH-i#J(ghOa}1{Zrcgelsyhvv0e2$HluYHge!=SHQtbIW?Ii7<%uy*uvOS
zoLq|cU2J7lcv$3Nn~Uu(26-6l;R6>tT(t9Wp@$D$e8gVi!gcYni%(n}a`C&1PhEWG
z;#(K{U3~6hr;D#Ry}Q`u;tLnMIqj?L%#_;_Rv<l`*2*7B?26yG*yCcai+$>EEIT_A
zHA$$ziXuPY;yd<s7eC3)_bz^LaWE_wOT;GV`h{OnKfCya^N&oi)6&%b)_$q~Tx0yk
zPNExOf4KOci-e1$i$7f)c5&22g#FXS5f^{E_(#2n1G85p<CQW7CudsV_rU2=)J4pN
z=_1bQNHY(so%P8Xru{+x1c#ZXT%=v(T@+koTx4B;w$E{Vb@s<mFvn7p<tnN;mJ3^B
znb`%i0S(e~kB!R-)<ZoH$6Orer0wAp4~B;l59K|a<N+Sacqr?koafKvG|L)ez0vry
zfB3y(_%}uc4;4LB@^G>Tb}Ei&o@?-gm$@)UCLyWfp(-tSsOkA@N;P41&!2CDtpaVH
z>Y<j0+8*jCmbF3qL2?qdDUZ`UobI8qhbA8CduZU{Y!8h*H1u$Whci8#rL;853l2fr
zvYq|aAt?Ac9?tb}o(JBKqgOnr!@4Cl_0Y^iD-W$bH22WLLra-rc^SJw`*6C%8gAp^
zd=D3RXe$Nw4Ib3t!M?{CfTX>L4jwM?a4B^>bn?*MLk|y~J#_KV)k8NL(f4WBKVsxJ
z8UNFp=D|1cd&=xZ9xnFKi{s)XV~vc{EP3#5W^WIDJY43Xzm)kTUSALWJpXH%4;}Cw
zpk#oD%RLPA{NG#fppf5tBnEbdco^#8Ru5A>4D)b>hwD6C?_s!yD?N;2Di2qAxZ1-A
z4<kMQ@?&6!<o+xDZ&g(qVm#09KX|yt!&nd3%GE_z7%UOL)xgi-Gd3vEI1e{?xW&T+
z4>x)k@8Kp7H_PVQ^2Y2TzI!ytKMGNwFB(tuFv-JY4^!A!P5mgU5zm;1PD2dV+c!Ni
z&BJXT=6JZ@!|fjK@G#56Y!A~t%<yohhncd^FI>?d+7I6U4KljR!`&Y43k!7*J#Xdb
z%Pj8oK;x_;pY!|A9_D(O@8J;-^E^E0;UNzXhY5qyQFCJ*<16^dANBB<hXo!MdMCb!
zP9f`o$baInq3O&M9-ib}=iwu@-BTWxd06h@X%CA%JmcY64=;Im*~4=lp7-#AhZm*E
zUd^SA(=1mva?bF);IqWTQV*|qc-8aIyXiT1JM5)I>hRzy^BOybhqpbv<6(t|l^)i4
zSnpw#ht(d|cv#CZHQw0K!^fM(7(_mY$sn!0;o(gWZ+X~2AI2Db;Vbo~QLBx?pDa+p
ztzlHDYrN}WqlfoBZ1u3o!)6cfdDtTTIZcgRQ{OAvJkZxqOTNv+cFz2)BIP@_ub=f*
z{MBY(UzwI^pK2d_*yCZZhfh3w>ftjFpL^Kt;Y;>gKK$chmxnJrMArHbw-e`1JaK#_
zg|FF^BKb>77!|0I?DO!g2hT&Phy5N7cu1&vzw_|Dhd(_W_V9y;gC2hM@SBGpJ^bY1
zXAi$fjjqy9ddRZ(;B!{v{W>}1;dc*zuw&4mibMZdlYHv<rk#Gd#u>(69*%f8N{2oC
z&DQ7je-*!6U%w8i&l-q&h<PwQ#HGO6U@pvy%FK(Lrji~~9?~8%9*Q0;4_Oa6w!Vh~
z`@i8U6X}>=+hhC}b4YAC?|5+4E>rrPXbak8>@g3=InS4(Tq$?zC@BR>QKnS=K{E!e
z(L=s77`Rlv6epFULMbYi`h9@0EG&H^rw$FWM3qZ%N-5TrVtpy9l%i@WE+|FYQdBEN
z^-{Db^?O&1Qq(NP8KpS06sMM=Rw?S0;<QrKE=8SE)GhU=oe_16vL_k)`Wc)bI1lhR
zy%hCJ(V!F!Oa1wQ3c=tdo?XdLLY=cpaW?%gMUzrAD#baaIG4)O=j=pNOi02hk;qB4
zX(^g1yXK|-l*@y|pQd<_(AAc5xK$}yi?k7*FJx?k>P9;zEXBf7JYI_SrRY$KTS_s3
z3Z>{&ilL<#R*KH0=u(Q_rRY<NuBGT!ik|<Esw)AXsruh%&O3MZnLG1EyGpcKBUxH(
zl@@+VB3ngim6DR8T}h>l7H!&O7nLNHvJ+8}w2?%c_C(9v`M>AAuE&3#dEVzepYu7N
zvoH7DbMGzNwq@H&Q8TXA<y~JRB4-NQmF<aTds5k+ECrSW6Vv!+%OQpDrl6B*r<Uz$
zW&6Lf?Nqj>mu-i#?I`7N*kMt0>JSUZJu073wr7@YXDQG=t+52cxXv!yu4Q{}*`6og
zZe`oOY<q~GBjga;vut}Yg>r_YAB}{C&*;uC+dgI6uWT<W+rHAdplmNJTPBrJ@arCo
zi|HZ1SiYB(?WH0N%dwGVPGn*BFWW21_U5v^rECY3?UiMFUD*y%QD0TISC{RevK^>`
zVi4+IQ?}QZ?O+Cp?V3s$1#P~aaR2Me_6CK$sceUq?Xa@FQBDrU)ZciMT`=6WB7SLt
zr9^ADmhEk2dso?xEZf_qN#UJkJG^Y~P}`uBnxXOtDTMs)vb|T%d-f1gc~lhYfwFzD
zY{!-DGiCcw*^VyTv1R*s*^VjOhs*ZSvVBaY!S?)!2*Vzz_Rs9Fv?+h0Y@aOKr^@ze
zc94H!VHFUWS*D-aAwFBS&z0?jvYlAA&zJ2BWjnrXUo5-%h<|GC?ksfD@}#nzT((oB
zFqY4Y)p80gcE&iV(em`NeTjX%Z2v3U8D%@OY`-kq4Q2as*}hV?Yn0Ph%XU`Tt`vW*
zY-gA4g0fv$wy&4%oU(nZY~PMr^&4e7R}rz|-i-3dS3u7z+jq+L-Ljo8A;0@`X=gJ(
z>HcgmOb_$EsB9O@_r0=RQnpLWc3IgjFI$cbv=DyNjoArF_~Ek^QM~V$?J9*`UA7-8
zogc`_WbpryBrH7^_*(Ig%XXc}CuRF-*?v~G>*b_E*yKJh+b<*uogr>4+po&@r?UN-
z#>@8Wvi-Jfzbo6#W&2IpZYkTX>`;62PJJv~K`|6t&cheDA?y3H{h@4sEZc2L7#n2R
zQ^Go;0t?}nvi-Gex0mf-W&2y%{$93!l<l7?Pb!3Yr%jSD?2fYCDQkZV85h06lKF>;
z(ZF6V+koS3VD}Deg@b=!(}B$dHWpYL*hJvc24Os~Ua+f+y{t5|#ORw0Y$~u}HL>uS
z;A~)Xfh`8M6xe)V3xV~e5H?q4zteE{;%<)BRe`M**y@3;5xBK$UfHBg{<)3~^S)1D
z_YG|Az}5-ueu3RTum=YApuo-h2Lx^ssTo*K>m-yA50<l5U=NWFCG-tf2*g7JdstwP
z2<(wkJ3P_}!`2OKy};HFYy(-|bJ@VKp^>8k+c@AuWcG=QZ4%g{1G^}&iv!y<u*U@U
z{J{1JY_q^N5A5lI?La$$Z5h}T1A9{79*jLUux$g|E^zx5#|7?rkmCb;f}(3BY#rD(
zfejBQhsaB$`7fEhmc@8z@Z`X@59}#{JvDI8CNys3)_Cn3nbQLMbd|Zdq2Vs>8{7<h
z(R2*#{{q`Russ6XDX?b*_RPR`4(xkN+=XQI9)>q4&kF1Xp6N<WzWiVK3vb5<mbjyv
z?Z%4ZvP8ANpqE>4_6%&Vz@8h}^8!16sp-uGe-q=01qPqZW9{?I+=+&X<V90oS`O?B
ztk%F@7}$P+9m_%s>_vgSIIvd*c3@yH3EWZbWBIO;CT1d!Hw5;wz+N8M{z{44xVGjw
zo==c-0Lzod@Wd(S6Ev+>ni|v1)qx!p*lXl_ZD5B6c35Bs%XyuYhlpPv*}Or7m&rE<
z_9l6a5Z=u85ZF7!ZxP-qye+V|i*W0M3E=-uS>Qe)Q%E}(asNNCBLjOkYnhh-fqh8C
zZ3G2&RK)KSxnKBz@Im3Ba9c*B13N~}hlP&_9~C|(WNV??6Krn@^ITw`R~nuS>{C&`
zo@QZ+KNCrwWjEoBpp)S*72Gi=HjEboJ0Y+$0y{IX69YRbu+suNJ+S+%G^2Vrg~@7!
zQv!GYda96j8D0w9_5wFKb2DS#a7D!ZpTNGtHW1ha%%k>TUkxljG{!{E3hZlvWyQHx
z5!lz2o;iViLu77X--%NAW?<h6?Avm(PUl5(-YjF-cjY8!b6ps?oj2~lFjduink9i<
z%63)Z^U-!$V3!BBNyQ#rvF`<T1xJaB-M?a22KN2Hey7s=akAMy&8%XO1}=rG1N%W>
zKa|%;f&E;B@-=~7tB5|9WL;oC3GDjF_cQiZaqb>anO9-NF9Q2zU^hfMn*+Ns;$Mku
z5`HaYkZ(k`aGa@B7<_ABzm<e{YUo_t%X}Z$9|HShV7CSKr@)q3s)7AEDw#jnH^qOA
zB)<jrckv4f?ywEZ?N2$k2llT>XGdUnM*MG)e**ij$bXTXeYO(u>J`4{&BiKxxXFzS
z{O2kb;_-_0L=qL77D)<ILOzTT>SyH4R_u7au`Mqry$T|Jg%5}BvRo3Ws@Q5GY_Xw*
z8glMcv3p0F`&8_{d*~ccu{A5UcE#4I*!6t*bH(i#pWaKovcm6E*jg3KGGX^Tq~c1O
zf9`d&4WHD8FV%PLlYRNHiaort>je7|6?<gF>x$G9))zLY*oKjBBax$ojVta*IZZXK
z*kda8)QUZ=Vw+WXz?)B#+2bmlp<GVcyxEKyY0HXzcA?uPV~;+b<-C#gZcnJV$9CS~
z7Xd0flIISN^4~_JZN;_|;Zb}FJM;OkianWG_DuVV8*pg+l#1)=8l7y13cmwl&#73R
zo9gIduW*{U+^N}46?;a-o>{S-E4FLJ9rin`V!KrA*%dq6x`TW?S4Ir^feG_h%sF|#
zgLl=tSL~I|O%H|YDYLZPt73ac{9KXqD)#(}+YqL2pNj3vDu|ri$>eNuQHAHy?X?wt
zx`+?z+DmD+!pnI+>&J)wc*vX|{B;LG`&ZoAFiw0t7`Bl^L2tLoMoFfZ8CbDbSL~pQ
zy@u7=+%)~hJxbZUV0a(-!!BlM3s=S0RrrK5zt+SpS$lnj-?-;9Q#{^gdAE9K#hoy0
z`n{W3hE?p16@FHUU!8XCf&W|OdyDXKNp6$ZSkK*yzpabG*XE9j<+B3|IP6#K$cnwY
zV(+QAGo^#7xoTx2yjM+e+<LcH!z_=g*!wE>{)&B|Vjry7M=JJFmDNKPJ4R%5RE9fO
zxpI4$C8H~m$0Q#s40m7YOY&sJK2@>340;<pU9saTc6G&mP_fUjX;th@7M)A8eZFF+
zRP5A>eSzJu!Vmu1$rbw|J6ghUKeJkWGl5N4Eo!0*TN&1lA0Tt(+_Jta_GuM6T`hb@
z#d7UI$x9WtT;T%(b+mM3fxJ@Tu|vC@18>F7s@T_DL*>qfon5i7vvD>tJS#Xy>8Jg-
zT&cRgFjx4dkk6h_@^;0}W8vh@$$Xuu2LBB)GrwY4$TK~&K=CeAYiEOBRI!UAzNEr8
zWw~CkOvqh0@)aEXEB5`0T~)CMtckUYnUTF*z8=(B*^95Rlzdp>iz)002CWR%RP0)I
zC>M+UxMJ6-yM5wXV`WKK*H76ncx;Au6F#e0&exw;__VuQIQ`VcyfNE+S+U%`XQSGn
zhOx0?zf!qvs@Q!D_GOc)*v%FDO~r1h*#9cFT;bZAU-027i?7qS-&O4Q6}zosf2!CY
z6p$VHM-g`Fs9#rpj`}z!bpC&<*x&h7ZpH4X*gq=vPw8(Lx?xbe?z~+~va@3UuJB1u
z`>%X?--`R*yH_tH)CnrKQn9{4(ZCqQ3_OE`;j^S*?Z6-|LS?3Be%u8iPa32Q@&*Ni
z&`#QbUKwFlL2|-SpU7iT>?0&4gDQi)q)BHrgX#t~<YW|~wNR73dq?*7GuYptnbZz2
zsA<qd{6K?)3=T6m+~8n?S`yZ#FlG)B(g^>F8m5lHp^}6J%c1)SgCh+Z7&J7fYf#Ui
zzM^9q_zx2k@<s+n$#P?5isj70;lpvX947c^gQilT<QM~HmZZ5PErczF#|n=#I9?<S
z%ZOSVv@z&v(9NK&K|6!a24@+Z$a=|``OV#V<C6?Hq?~NPHrZZyiovNOe4^(xk<*1#
z=wQ%M{C|<8lffC{XR>lRuIf4W&Axe~x#8HhvdTRoeYOGHHka||7<4!2VbIfnePJ4(
zj@P{^UTAPJ$-Hy6J=fqogAWZpGC1F$kHNzRj~Mi&5rg3dcNkn~(9hsngTV%z!q&cI
zE;8Uy#v$cmNiH$C)Zj9M%jKjFKl$5V{0iZKNFF}#aFv_`4X%#lgG8<oQs+8@AqF43
z=}sVDZ@^jX76bOs8&q*ag-ri2gBv4$lflj6OR8MfSbDdrh;B2uT_k+|`c8up2BQte
z7;vKDij*0-%V4B(M1HryJ>vHYM@91c4DJ_yK=`2WAz^r*t9c8vd6J8o^Y5buj~Prb
zm}oH8;BkZJ4PG$V&zdI;7A!S;Z7@$NM^8m1@U+3Wh(BZSY{Z`vIk{lQvupGGkHMYR
z+|G-&f_pjeaPI#YOg5N9YX+N|m?^YB-b^Lx5jo~)n!$9H%uB)<!kNOCg-r7+2Cs_G
ziX^WY%#Qf$2H`kAmo1!oZftKf&h&6nFnC*P^MtE}?-;ymFrR6NEG#itD849?EEeIa
zb*acQgXISAMZPNyRz#cwI8*q(0Y7|9vRZPk$376Dg*66i*=S>UG=`52*0G#p*gu9(
z4AvWb#bPn|RK4aigU=1_)nf7smH*{#5moupfa^^DHyCUbZ`jzaJQ*F2uzqd8G;CI9
z|Hfd8!B&HB6}un9cLv{cyp6e$mj53N{x<kWzCRjlGx&*JDQ12)_|4#VgJ0zJtC0Gf
z*NA_}`KL7L+#dP<Ww66wCo`fY8SU^-g@2_G82lG$mPM$>VWFZ1Z(?qUhzYF_F~mbB
zPd4(Vbd=^~3@P!nFcU*oBqyZJe9ZNC##@ktX()<NSQ4p<p_)i_VT~B}Qjopnr2al4
z`wD4?k^^F>8N;D592Rpu@xT~vTVd+NIOc<E0JiXhW2hAa3IB(P)E4rg432Vbcuy(@
zc0Km=V`7}YTndk5ynF;eSTBb9A`OJ>{`6`XLnD>IQNqSiX*7x9=!iEJIe=e*kD)ou
z#?Uf`fiYYi!?7_O7sF*STpq*mF`N)Xml)2Dp;Zj6W9XpVwGp<Bp<N8&g)sAbVhpE9
zev<HHVS6Ec*_cliKTUXgBxmrBAs2Rv<Y$PS8AE50vm!a|bd8}~4E-cICx-4ZoGacV
z(&;7AQ%HTr-aF!KE$1=K%05fAk4RtP1u<MGLLJUi7scHC#jqF0aEXFn8X2LmzxWk<
zNT@s@hASnZ!c~#ipct+Zzc+?!V;CI6h)Cx;k(-4>gxAM#L*zR&hGF72s<qrCWV3m{
zuDM0>TZOkp`nSh0T>K8<osm2&fxF}!DZE>Fk1(vhQOfLnG2G9FD*1ykj1gg89*SXf
z#KXS)u$*k+kHs)HhNUqqi{bGYo`_*FUwxz2{v_K{Ju@SQr($?IhH)`G6T`F^xX1e}
zql<yNshqM|ZqLiw3o-Ca9alT!W7x!9AmIezMByaiWZ@LyRN)AHXLGtZJIG6lf)<$a
znK8T^!z(eoswiHIVRp<dPG-e8;JAiC{<<XZ#xO_Z4I$-oV|Y{iE#ce3dBS&u)M-D!
z%okq}NfwGMih-M)RN#t;CARu`_X>#RF}xSUS{3yQHnx`yul?t)kFlq(jN$zlc*vat
z@+u{DbqpWGc8%B{#_*AZYlKWTHEDKdbMr}z!zSP%?%~rIK4X4?SAfrB_#%dPEZ(*F
zGKLK?{2Ie=F>GX}x|pwJhi&OA7FrD4^5r7%N8c65<`^de@EU4M3|nLPmV<u`KTH36
z;ZMRJgg<iV(0QJ1F}J8@-EoOXBfrQuY<R!Nz$+{+>EGr{nq&AghV3c=ST~#eCB8$r
zQ^@x4cMSiC{~JmEi=iwY2rEKkT@Q^3Nh~vK+)x>}@GKG*NsBQS4=bXS@KlSmMaCj)
zk+Z04QO_c8QLw0OQOClUT6K#W*3B$Mi;_hZQIk$J%Q4^0K6LJ7vA0Dni$g5-QK<bb
z4zSqQatY+r!sP_9rp1942U#2}HF|}<M3w;mp=KzgaY_zVjG^yg3U#=}5f(>E9$FyQ
zw`gE-j72kxhEijY#!7i3i=#xS7TRoLakNF#JuEZc=6ur5;v{J@ER|bY9BXl$#qk!c
zE!xQJ2^Os)`@8c+{k9hEEKZbHm?{cG1x9+Z%(fSvBBa-87N=Wuu;^&f-{J~}wdiDV
zuEi}wU4fh-YrQSbwCHScmPHqfb1b@BoNdw7qT3!Rp+UwQrkvQrqNhbKmH%!b3Dv?>
zou{zpTlBH$YjJ_aMHUxZTqrqp`bFgv2D!xIQj5zhE|&u13hjh#AdG^-0Tu%-u9nV~
z!mA=XgDkGGT+m{K#kCfLEpAm&TxT)FVyMNiD7DvH+z`bQTE5ZZCX1U{GJDiJy>`dT
z#M~xpOwa8W!!7QJ%9*L6@Ggsy7WZ0=lI6RjRNWIrO11ke?w9XFma7!kD=B<Xg!aiP
z86C-K^AU?j70X)^K4$Tntc|sJT=t)^c*$ah#gi6KSv+kq&SH|qWQ%7kp0yZn@glpe
zf<JHZLX@g7>fMn}kix_$>M$i!ET&pavzQ)bf%^RKE)%AZe5S?AQeY@bUQvQyjS6R$
z2)$;DydEWBj>Q|2%oV;V+?^_td2B6QPPcG-IP)zQSo~n|BOgC9W}(Gei;pc9SuExU
zX?wUwP~DEM#Zopi?*9mv3+a5%Vukoh;ro$%mBniD4<gBj79WYPi6qT?xcsiO_}t<P
zi%%?0<}zEz8SqnfYQ6%_?pjfQsWkJ7^&5)~;v0p`$X6npgkM{17U`-_v`~MG1#zpz
zw<6yOzZag?($H(0#ZPQ<_00~8pEVAT`^Nn0KE~@N*)I#GyJnW(EPiLN7ym=#PvLgq
zU&8%3o$0~ff84VXt`SZJ{&NR>Fa^#TxZQoU0$KwG;G}l|P!q6lKOZOpaXR_5FOU}T
zfP}&(<qTUwW)GefXOJA+2%nd70lNly%1h+ZsfskK0o8#TkxtlFskt|>kAjo$E9L!!
z`wOXdAaD@S2sjEj7^npt3DlMEA;Keo+9Gv;LzNzyI!qFh!$o#SS1*#+k2I;%K&fgN
zrL8g0L~17hM*~fPW^#u8i2BDwVVg(RT8Oj+jukl$I6l$|OOFX)z&1cz;0j;>&<;3J
z%I5(m0Ve~e0jC4)74TGfogxe^FnDOB18_Fb73j!v13F2kvqGIAJX4ZT`7H4+d)Vm~
zCG1?_9H2YUL%y`%Gx8$u1@w;OG!<GqALt`tU*HlcUm)j&!hXVwfQutLyHkFtye<=7
zF6<xaTnStSj0VO41LbuCFci2N7zA7+3DYwexK=z&$#s!@2ylH=ag1&la3gRla2s$_
zq{ARL1Ggwf>V&Df9T*Ob1nvgzPz$_s5Bnp;?}{ui$UVTlz=Oa;z$oB8c~O3Ur1L<O
zj4*{v^X|AF1|9(>026^nfyaRHQK+%NQxSh$<O$%(J(Bt~Fb;S|Ue61k1)dXOM2sSg
z?geFm&KKns#?J0f$s|c8?~y!i0FLY8M#5>pbXw!$U%^Rc05c^C*MzSEvw*kbm>0)u
zz--{<I9`e4bzlzbD2_pKyaCJwJ^|JPZvtGFzXfmr=XN?dV|g2x2fPEk3(QwUYk>tK
z^j$8p5LhI#ShyteT`ICn$ff&xzzXq|!qvj}fmI^3#``kF59It%_z|!s@?F!^d@Q~$
zl2HFs;4`4Y;W3WS***FC-$u^J7r>Xm24JI<%fMI6W6XRH{2<9D;n%=s;2ZHR!mUDH
z<#9IoR{T2!q)q;Rl;lrfo5)YXpM~`OMdVlEZ^GY!KO$dlU~U)xOSnV0Q~0;=A0h4h
z%UK}er|K440JqmfuUOp83vJ_Q7l)0z(LWxC7f0hbn#7TiZz+zdIFfOs<V?p=h$Af9
zj3n7Oaw2&l4RRmMk9bjpl4>IR#<5=<)x~SX-5w70_lje0N%j$j7WR+h06FW&QB&mb
zIF5+pz&H+y<6ub+71k0SBCIW}Bcz=$orlHU)*PKjN?tee4Tbfh>@<+PVdUFL<fzE^
z=s23j(OSY|ge`^5gf!k<q(u}LCCA2bT;zMa$O*z$kxlBfk%Z|yF^-esI6IE6lAIjJ
zsd1bZM|(M`c}f)ObV)kJafV0-VMn3}HN$+J8OK?1bdj*Lkg<ebA$E)7oH#Cx<FYuq
z$I&B>zLABVs+vA=^ok_C<2YCRJmL9~d{2WHNO+;JUmO=jIv2-ri8z&+hRY*)7`DHh
zR|p3PuM}Pt$3T&=61katO&l-8F+PrK;}{&rb#V-dV@w<m$8mk!^;V8rcgJyqLJf^$
zSR6OTaZ?<3#(4!{xYclT9JjKm^G<<~ORNop&222?0dA||_Be)1eut1=l#h_LyCfMY
zq$ygsC+<c|{_hnT6~}!d_eb&v;&?FP55+M$;@lZ~B#uYvjN|z@9*bja9M8n@Y#fir
z@kAU?E5;{<JX`*h2;a%Zn(cbE87F5~wP#A;oBpr5SLB5lk{4Bd6O>x+XO278Ocb9a
zoE*m#8JQZ#OOnvew76TdO&4;+o)O2)IC$G@lO_)4_tiMgi@A;E*Wzw%Jc|`kaBKM4
zaktm;x{zd!$QyCYjU;cz@s_xExLeP^6UV!8tc&9lR*=X0jCe1O6>%(xyX%65aV(1C
zFKyWJf$_z0EQ#Y6ZbV0=w=9n3;w(lM{>nJGie3}P+Bn{4cC<oX702qhTP=SeB>6Co
zk0Q=>GSzrKgf;$g9Nbr7E|{bBar_j=%FX7}I6jNJ<@e``Xloo_#POvh8{+s{WTTMH
z<EuC}g<gZ5LH;*$1dwD)9AOh;>9K^rjpI8N`}e{hgg?fyO@#YVoRX+E#hRa)WwqyD
zm4M&k_&tt4!~@}<LS}zE%PQhK;@Bzvx9}g~zrz27)GxE}wZl`1^C@3#{s^tNOHLgs
zcpefSx+l;hfux6&he85=0{i4m+H;o#@dPp+vYwkhavuKkT-`0IRPvrHw*t{a(L>2Y
zm519r-0q>8hw2`Bc<AZ5s;S|jwud_6dwJN~!#*DN^{}6Z13erh`Tiab@K95{o$k`I
z`7tc-r5@~|mWM;A8A&K7=bsgNsE5NmwDQo}!{Hu|@Nl$;rXG&;P}f644~;z3liB(n
z8pz1@^sf8SyKmGU<)N{MCZ4;)8}7?73MPOG$9QPw;aCsHd1&sTg-o>+(wAkzo9|p6
zkRQ*I<d=V=bS5({g|ySgLt76WS%4nec{tI-DIQLh+DRTx_RwBsOAFzjHW~0VMRB@^
z4$|bUbH3$+*62&#$-@~Qx_CHSYG-=r?BT2^Y9=F0JoUSJ=;q-ZR&kVO3TdBl@i+kq
z|GnfjP}tkUxgO5*c&h@JdbrF(9}j&!^z(3$$NR|Ix{OTG2vbG8*uy0(eC3xZB-y5|
z&dWXY_b@>ER|pw9eZvG?>ESBR-JoHyhj_JzK~lTM!wnvWdbrlZU`ej?Fk}x4*NZb2
z8XV@~Mz!r*JlrJ0wtce*Ym?_5=;Z%amOLCE?%@s(Q$0+Rkvly+7+D_S;Vus&J>2c#
z9uK2D+!uvnz<c-L_j`CiQP3u13I7jy80}$<hlf3k^YDy^M?5_0;c*X7Nck}jW21!8
zU>NF24^K(>bYwqFXQ=Qjy*y0tFww*F9$xS;-ouOkUz2tiBn&ml!(<Or_K1accKc5E
z@RElQJbb7u&+zb;hqpb<^zgEWS3JDx;dKvlJk0X&nupm@1@V*!|E#94rrz){*Tb9g
zrG#F)E0JWLhj%<I@vxMmjfeRj7AZPvE>Mt#>TA2LG00*mkSz1C+`~!_?|XQUVHN2L
zg$g<IvP$yRQQAT~^!>=g8V{R2eB)uQhmSpc!H7Jp^YDp>&r~KXjrH9Bk9b&U#LxeK
ziEWT`lZTBSzKXoq*jUtG?-6#3hpkHaA0EE-@STUBJpAn8dk;T&yhDv`d(_nKS_mWk
z#lx>2e)I5qq(kG3BCPjN=T8sY72RJRc6iw7fjU(9TS3S}=RY3)RWic5rjfFofv_Sp
z3B(ex33OZIV&R{JC#k#y@(Fiuf-_@+vp~Yltyi`%sf4?rOLP1e$qI8q%CGO`4oh_B
zwtoVp1dd6dSptI^nyLg2O5osxTclM>pgJvc3P@nDgquP3PT&BMeG=F=;V!Hw+)omc
z{S$5sA*rcQ40xbOs8%b1!xCuIz#NirJ9xE)b%cisc~FG%!xP{-f&U{CI5OgOMd~F`
zKaw;MX_!ExNOF`&V__5F(Frt-eE9~X<_UK()iQx&mAe)Rj8H^euO64c=}PMH!V{QZ
z^^{f#w2pWik+uo66FE_MQsjHGNc#j%5jj<OTI9>N-9e?)F)S-#r>NY{NZ?HI&Iz2A
zK$l3~P2_B0S0U5S;yp*4rP?!rUJ2Zn!2JpIPPj{_D-sxxz_|&WmjI7zQo<rVUzzHY
zKwp-C_=O2vF49kUk?`UKE)lsj;V$=hz?(IAnIzouCGW2qC%H0#s}i^_fguSDOyFvk
z9vevyGf1s#Fqa>^1W33OKGzCKUg~b&dB>eI;i}{M1lZ2`@|+tI7^=D$mcWe(+@yTv
zK8xL)z%5LF0=KcU_(EO1NbU8VhOOfE1coPYM*=)N%r<`~o80mkd%?Y|%>?dB@D{CG
z2{Zj86S!L$A-{)m32AK<TaoV`(|90(2NQTQfu|C9h&h_)&aAQ#j!s}q0uL)OPY7A&
zkBB@fd`vi2_&EEED&@V2ZdLho0^<^Hnau-}TpvCoo&L+rvnrYAqTcts$O{RK7kM#~
zvsX?^U~&TG9D*FCBrr9BL$auy#k2&bCvasFS0(XM0y7dQCQ(XaW&$tsYb*&YX6<<H
zHtQ=1ysC`PO5hc}ndh|xW+(7^0&^0W#~#5-NnmaQZzb@yhKn~7xS@#|;+a0GBOWwl
z;#pbko0xYKn4iFc1QsU1L#ljT4Buk9{v*@3zTvU7!S&q9)g^59Fn=fTPr@xPm#WPy
zOJI2d?<KGzft75W32aemyf0jzz^VjRC-6Z6A13fgDAc9XN8)RQYlSTTk44rgkKxrQ
z@ly#uOW<>nFNEPm=$GOfgd2rl2{#G9PGGZ0XliQ$-zM-^0y`4;PVzs6->VoI`ww#d
zn83CKeoEkHIVt}|BsB7?_;14B6Zj+2VS2W!Z&IK8exWjjJ0)b}{Fn8`8yUQ-o5X({
z;W_vVsUL_`geHkt()sew3qT|hPr^&?8ZGllB*c@#lrSyK2(v==pj;9>9~+Lb1qpp2
z542Y$Q7wrRl4zAg^(1N}QID}4YxYWlpKD=y_Dy2%B)apZxJg{dkF?HmFJI-(<bFx)
zpTq%4)J(c*;vgZ(fyrHGW)7C5mhcc^?MSCi5{HT(COkZnA0cw2u&ywi<LW2TAc-Ay
zUHfd9M582*N}{o{&`j7w$P6AW(lm)<A_+fZ(LCZUL|O`uP2#vne!K`Z*|1wPM<vrH
z>1IQov22?}yQHhE6PcbQIwjq>cTy53C*3T`e|wQrgr^Em6P}(#2a%3KYI5>DLz(KH
zM2{rSOrmoVXGzjk$kOYQ#Mu#NjZ@MsiE|>!h*?h3Gl}z9$P)HSqIcwbE(Zq%=_AR7
zk-V?S1xdGuz~KD%OX4C4FBV=BX<nMdWf8wTiT>hOM3Mm_jACFCS0^zmgV!<`l*Bbj
z?32O18C;vh;3T-hZ<WGzY%P<`@hR|KyF-$=K8YKW7^>21nZmFnZcJix65k|olY~zu
z@s!BTN!*getx4RL#O+Dkm&E-^3{T>YB<@uL?vxs9;VzL8LO$0+$;c$`j(qPC*=fzF
zB=?}4FYy5hA5P*Ckq3njB{5orI%7l_iu_UWCxnj)#|j@8a`dAP-yZXH662Csn#8gs
zo=M`_BwkM973n;e#557Ek)BWDg(Su&@nRAaB%GYYL=oDVBoba6g*Zi$sY0fFI;Vh$
z&q%t-nxST@v`JoNbtEx2i8qsYEs5Dlydh<J4S{)Gd`={(u9UOH-b&(a2^S0J3Fiyn
zN#b1*zF(9^7KoE96j_u6i-;DML~@qH@+96%;-e(iB(WlimGb%^=`IJ}kJ3pCt0Z5|
z=Ao4{Gx8xv9wljQ5+BR=vn1Aud@AHI?@y9gFV13TykT{Jp2QbPe3|4OYO_hcw7)@Q
zqwp&s3;%0%VfyZ?NVg<mQi!FnHHmMN_%4a>rMW$cA4Gmm;un!0mHur>{G?v|j?zgx
zzb5fp62C{e_(RIvSfJOR;*6C1FOFI)D@pzp{+$GCgkJwdx&AMSauR`jDG%FfMNa0+
zrhpXoPvL+R;wgA36jLar+$fX~W>QFsq*CrKd|EtA33ak^=7f1+LFfxvuvIBkOJT1R
z_D;E;TV3)Rsa;z)tQW3|_mPm+sK0N@4UGGx+;WZ*X0v7r2c~dD3P&<jq**70gHvu^
zs3plEDbyCBKC2+y2|QGi!-R*Y5LQjy6zZjLjD)mbKZT>j8>G-sq>(fkdstA7Q)rUH
z(UCrdO~u1bL<`MQXdd~t5aHsD8%oEf!0&4umvXDk*!ma^o}f(KKF_pHp-l>HQ)rjM
zyJ<JhpP0f)DJ0TJrg3r#?Nb<&!ow+?lESGe+?>KKDV#>*DO{Rz^L2+5I;L<=3f<-W
zUkYcWaHe=CR-f($c9!$36uPkdb&HS~PV{HXt7{6~RE8`@di6-5X9}0dt5*uWQ|OaI
z-xSVG;XDb?mz~gfXplTKctHvmrqGWqM6pwNv4VsObcTd@Sqhh@(4V!O!u8S_kiwNw
zs4#_Br7%zlyE=tyQn*%XgQP=+!6MhCFhpc`8p2%Mkit-f9j4SWYW{Cb;U*ag?cbWh
zZ7Dn`$?Zbw+?T>|@jHZfrZ6IfyHXgL!rdv{6Qz)vG{Q*lmD;E%7E1WPUr|%xfk^)$
zsf`wfDSRY_M^o64!p0OHOJQsZ^HW%$fRCr}LJH$kcp|E@CsTMTg{KvKTnf*!38nCi
zj5C%nCC|$@OaPPjVhR&dn3BTO6egxHNv0-82E+7+I86b`-$-G43NNKFBZZkMyq3c3
z6kbl@l@wl0VOC^6jFI|bTtrG<PhpM}$mtbYo}0p(DZG`!+bO)mMlOYUd)NupcI%TY
zOksHn@1?LPg~d^+QobaGr70|n(jUgMLZ;qNVU@^AA-z_o@IeY6%lTmnA1M@zop#np
zxK<dZJdAx^3ZJB~K7~(H_$-AlQus2mMupE+)U?1Lp+3o1DQrq%X9|C(@U@h`P2oF{
z&0LU(Y!Pl1hH3sjg&*YHF8nct-$iI}n`-~36n>WE7vZnM--MxsKg9nOGBKg>uM~Fd
zA^9hTe^UrjsHE_p<mEkl!yqP&SlXTP33C(*ZQ6|zOiVnIdy-I?N+X@dz%;H-Ba=op
zjZ@P&Esb0n`7{ns<A^j0Y4~Xzl*YjdUQA=3H1<uSBxjYdS{l_wYS3~Td(&4j5_gwv
zD4}z|H1<#9fHZ0<$brHzsUg;q<WS)u!rE!n5eW?v50f+0KQfKFX*5aWXbJ13Q9q3a
z$|Iv|7-=?&BorPcVPhe!H5EA_jaF$KlSZ>hvpL7`G+N4+p^i)A*ocQIIbKdCqqTyx
zO{1M8Z6XUNrg2glr$nJnPNRLqX(3EMEt8y{Mu#-|q|rBxj%oZajkD6|l18UU{|uEX
zl^O8NG&)CeI?s-HPm!*|ZfTq&(mjnHd(;T^d!^A^UgxH9o(P4se1624o(se;Oru{E
z??q``Ea4StT$0A6X<RNRl`o6P?he&IlF)ZR8ds)ql_X(A#6f9Xlg8XM-b~}#GzO>f
zTpG`(aa|fi(iok_m^7|eklWI@J&ha0hYE+KaihphY1|@mGfONQqi&TXELGz0H11C0
zo;2=A<IXfj$oH-^Mn-iMCTX|+y=mN^#sg`LitOAMX+9{)ZvBTM=fi0{lE%}K{-YvK
z3Li^jY#NWJ@r0Z#jolGF73tI9xQIWK#<LNp{Dm~er!g~<yqLz+h)+mkqWGjVCP#HN
zMG_W87}2yerl;|egfoP+NiQnAoW?6@yqd<WG~SRG6ZV?OY$4TN7nvgra~+y}OOm(K
zn5TGY?H!drb;v`_`DrXjV__PL()cTl9ce61V@VoY)A%-xrD-fnyS3>0G?u6Fo`QcY
zTp|20jg=zr3u$&$8mq-W5XN;ZpYo67Tq9hY-gPE~@^zAYBII7^r)hj9{<-ig;TOU$
z)7T)wP#e>37lMmA@=a-c9mzM-a>TcYP>t#TE{$L0B>z5*ACxKbAJf<-{!=9RnTtSu
zC+OG6&Tk^W3;#&t&q%&Kz3U{;&NTj(u#~|+k+03*--!PwQWgfniqK?ScZdluX={){
zT-?hbE0Pc<g(+cLm=Q88ADSlSGRR9(h~&OVQOND7s*JmFz<)K7>KW7!*(;LoodLfj
zLWTV@sC%R3`#hgf*!?p&AmbW9%?u9A;Ghf+&Y(>OZ8NBq!66wm$e^JVY76URcHJ*H
zG=sx3I6O+v5h8q{H&c5gqlo17GN>;e?zlFR5k}W6gQLV7%eP6Sf3!%`433E;yy9ps
z%@$GEmKhwIaks*c6OtS+azX~JL|R93?qIje;6(0nWN=LeCuMMQ24`e&ri{0j!P7E0
zC5r1*mVo-s>5-&E1|1{*KaoyCrmAxWXNmXEpi2g4i(i~U*9^LepP#`w8FbH}x12qM
zET5htVMM*67|)G-&x?HfWYAaqf(-hJTqq28BQFwXGHCD;ags|#E)!m!*>#ZY3T2bN
z10=svcvS`iGq_ruy)wK>acu^JGq^2-+cUUMUN<W25OG?#K7$(~K2&6wkjc17<YwV5
z!doLR2IPNu29HZ}M+SFhFhczP3?2}<D}#|4+%0~OkmYl)2*Zxb;J%16t_L%CNX|!v
zqceC|WQ;H@6NY+3Z8a?C$K*9ODs8sFCo*_aLTWyh!PDa7A_<K=o56GZ^Z73|r<vj}
z2*+peq6mE_h)m32lE`G?6ya3iG$A#oXYf+QXJp*%KML7;U(Vo_sKvf2!lN&<Gk86N
zg&8c$fG-c>E%iAWypaLl55rKrq@A0=o9f+fv0?M@X9n{agi}BU^F_$t&G7c6Az2_v
z$QNgLBL<(ad1SCO<2L`fJGwT5Wf?42b-yQEoxutbmetA(-WOjLNoeW=@ed=(M;WXU
zrx$~8r}yIw)-lcE3wQ>P8|E4OmT{Z0pJniQ24Aocl$WnF_)>g>aAPF@DuYcC=LYy@
z@oyr@mJGH={M!t^%i#MAe#qd*41SK}+eCg6a?^l+#>fqjUo!YL5>oPe27hGmX9n9d
zsGdcQtXsPO#nR58oN;`IaHsHZHIjcg{>vH8vw?Ue1Ea8fLY!|N<1`(kGYd%Q3u!Gb
z;$@M@A}P*uQ>iS{S!5!eLKfMG=d#F0oSL*iEN0!fU5eyYBGrU52AaJ@4$R^pk-dfc
zWU;S^vmmm+@PI68ityYQz4$*ki&~N#7+pK?>D@Y69GXSf9J=LjSQdw8aefwkvf#e`
z5tL`qEsG<wsGCK-tgG49S+o(UpGAW#8fMW*PI?_Ja#R+LMVbi1ceOQ*bdC{eCTva=
zX{l5(g~y5<Cp=zwg0NMVPtEg@cGFh+jOz@McES_0I7#GWVS6EUPRZg_@zZ4FbYTY}
z<La2j|03Q=_9;A5`kjSm3A+es?Q9XI;hZd1)HOY`=tT>aO7|>!WZjU$Guu?_&GOV6
zFwV`o0|4absWAC%ZuXkKSzM6CQ&~Kn#f4e)V=J;|Ko%F#!Vvdp>J?dBoOS(+<$p;Q
zmn!UKLP{>rqQ7|fwMvfg+$g(J`d4K!FpI0R7?j0`Ebda;t`Xjm#kE-s7QZfw+eC&4
zuNN{GH)Jt1i(y&ZD9O!P+>*sj;^E`E)ZyTEt0W|J@_)OW!-YI=d8Y{FOxVbXKb*zg
z;`a#e6^;_#C#3%USv(N&2eWuce6(;(BoC*vN3wWSlE;K&Bj3lfctV`dz&@GX^`z~%
zES|}tRSvClcvj^$EsN<YuII9NJ}T80M8*qW%wj?$pC~dZi^(EWgj0pQEye11DT^6d
zd^FSDedCxvGmBTUcr}Zcvu-8BKOgv=mBnjW9FueXn*Z5Z{E)?uS-hUb9Hu0Txmmo&
z7Nw5=W)=%Y-pb-_HL7`8yer8&a<Z9mi++9<3*_X+J0-+L(pj9vk}Q_WYgrb{*~WCr
zh4E5nH?GX$gDgJG;(di$C8Y1_th+Bj@{uGTXR$7eHIeVy$oG>h)@Sie7F)9TG>gxq
zurZ6zBh7HK{vwMnRU;dOG)wtc(%Gc0^tJeAAt!VyY|Y}^EWXR)dkML?4UepZzHBG7
zuuWbyRh~a(@pBfxWbrHeQ4aAOev|JGHh?UC&*Bd`|IA{07JqTr)R8$N-*3QebCSQa
z_$P}Xi%J&%X7OJZWd)%x)5AXtgpr1cH#x*|usMV~`C+O;FE58g4%Kp~o<lN+R1Vo3
zayg`<de7u`o$I4Mx54u{6mlr#P$dOlzFfc;b8blCI50|gyO<0PDZC?GBZs|m*e|lS
zcMkjHxH<1~#N_dle_=A(#mxRW93VBy!xSD!wHyx4p;iu!BMXNx#vG2!p>_^+a&G!Q
zl;eL6hl}&h5hZLh#IZ1SbEv0)jdG|jg$6k^%<;(@r$A)vR3jc0+5dc6tVzU=&Y`Jz
zsM#!%Hy3FkY?;HcBF71j7oH#tn{Jz&8)MJTxjCq9&JC^YayT)ElXC9f$C*NslXGYv
z@l$d*HR7kyRKz=obQJzi*hzSXaI@Ya-#Le~<m|GCkjKJ#H|Lxjy65n1&Rxv*$f2jI
z>}@87PkvE3hXLZfb2wMzJmL95>h#H>ulNPR3x)l1xG0B<71yPbv}$86$+-jM%oIai
zmc!*L0rLJ~K+jy6!&R&W4sJON%;D-BI4Iqg!=N0l$>I7OZph)<9A>@i2CE@C3>LpG
zhdVUCgz~-(%+MT$aggNM&Kz!J@_5=`rs#E34mV3e-{(FtlrSv$<DR)ahv77p!<{)i
zC7lsD+$FNtC3a-ay<_BV9-evE1zFR>+>^t-GCN9M_vOGZVKHI%=kP!d56bIN;X}gF
z!ZE^!g^vgaG<2aJ6CW#lT=<0WNnxl%wWpQYaZFVM7wWkjo>%O1a(E$!@j1*?f?v#G
zLJre%n4ZJL945)g)Ep*Dnbw$vDXiIshK06tkYRShGJGkA896uF(>T2-WJE73_$%xw
zEO2r9&X(G1Ii6xQt@%+5J_4ZXAbCTvP&hY-Hx<iUlCbC~oJR{eyqm-P9KOk6OAZTi
zSeWA}Yi!72Q4Wi9Sf9hEIV{OxX$~uLSeXM~OSmitzQc-y%ZcSVK7MZAV;gH|s;x6M
z66XCJ&!wAz-?$rpt8!S)R?Wo>9|6eWL-CIy$(kJ2M*L%ub;3{Br*wAlvm8Fpxkbwt
zLLS)YWeu+mct5%^-)oe^S2=vm#K@PYl{T?qd*=5ByI!uy_Z|H&WA5l;wlZs;OB>%z
zMQhJYa8>qQ4&QV1<Kdqie#~K84nO7aR}MRJ_?g9G%x^jT&S9DB{~Uf5;iVS)DTj+c
za`;o_PtIlVc6N%vCR`6wvNMN&q|dN_=dgR7{BI8bNzMU{Yw}7Cd`x$_kN14U^00Z_
zRlvvskVia^^?7`nhnGhpj~ny2DUW0xsXR{2<Fq`|d1Uf9IFDL+Wb?@7v0onh=iPGw
z`8@a;U!L#!l;{8RZdmh$#XL$PlvL$WO}x6WhHx+8-okx^`wFSgMRL5pIUtX1O$-MR
zP9-(-u3iqz;~<f~y<KBCB#+v8w9TVk9(D3KH1CG87J2tVu*33bkjHGE|IE9Y$j!NV
z92xPtdDIiHFASGt4fAM}$5DAS&f}Oo`mS)xp(c4WWj1+HAe`XdDO#a($|Tb)kLG#s
zZHmi_hM&T*{bDWi?j-85c^sF=@p(6H?A#P1o{)EgQmZ`J3|fn~3Ax6fG0n|6Hycil
zCo20V(MVJd?L|%zvP@3TqeC9o<uN3Wj!bzTm*jCN>+$1Qr#$!pvU629XXJ5a9-S4%
zS$XsjVbopnI6LB9^XMjiP9*6r!UcKHNYYEBcO*YAkL%SM&(EVz-pyitg%=3vyfBY`
z;ul4di$(av&1HF9o(I1iJs^+YWu(6{bwwV{^k%KQxc+CQ@Z~>w{KJpG3rVidV^GAe
z5xF*x!6M7~ofK~S<Z(kDL-QDx2jBnMyrCNh*em%WO|}p|;>u6<+?>ZP%tapW=5cEt
zx3QG+n9B;vV|X49<ndr0cjR$r-c7;VTDrC92qmw+#>2Z*0waZY3-1x$D;y=fFOU00
zSkA5Z5`K2H;dV5QWX#`M2#v|(;XEG6<Iy~x$>Z5P9?OGok>Y?bj-8PU58>l^JR$O=
zN`t;n<?*yQFLGHvl#o#WIp$ZI&*$-i$avx8JYE!;Af)ERJSK^AJfV~SDRNE~P7_Yg
zgBRxXnvuuMJYJTN&RHU_2w#nKD1S|o*?GJ!GDpab1$w=i$6I;4&0!%AF8nw${8G<6
zG{HQx(7l?H@3`YQIX{mDdAyg$iaZwPu_%vaEU`Qmb1bTF-dti@>MC+c-mONK3P0Uu
zCN(i^pB!WPeb1G7yr0LqJU+>TZ%b&p$*js_bsit6tXTDHIH2+TkMJXoY<dQ50e6!a
zHTQqm8oBSMM<zf2%JAK!LE3zl$LFk+0%{iU1<mFWE5H`8A&-rD{FKMfd3=?}raZpQ
z<2yD&V>-<<U+3NB39Dwa+Rrz_EqQDeVT<A$)R`W>zU=!ve#ql$?%HvI$Nm4jn{c<O
zk&yhtB;^t0QORS>c=MZvCZ3l3T}|;1;h)0o!oP$&ggb?Q3tRB~kI28m|Ab{BKT*d9
zX$st;boDZjU6>CN77#C>s(@+*cm*U1NEVPPfC_vC6ZQE*Y#!xJ7x3xMT^|O`6p$^r
zj+_&c<O?Vi;LDlfQvi{?Q~+N!Plf6Q)F@!T0`@PUGSBQ)z}^MyQ*fg?lfhoIjt8h{
zfp4sBXIM3Ddm0Y@jWT8thy4N$D&W!rE-T>R0%{e|ynq%398y5-0*++DbV(IoZrJhb
z6kIPpw1C43Zsb2)=*E8r(e*x?N?mf^l3>m96i@*TL>dYk2`N8Hq;UaFM2;3V6&@pO
zCalxM&GIb^IJSTj3TRcpaRnS-z_)eX3zn<+z!w`ZpN@17FSs_=x_}ii)2857{%s3r
zSHOvEW1OK1=p=Gd0Vj*J7t-q#ky8seP2_Z8hsd{M!QDxx+8G6$S-?33beC6WVK?Df
z1$2q@&lc%ga63^96^89mK+gjD7H~lUy$a~9LOZ{JbCu3ehsx(EEY}|7eZ;woc%eu?
zA?5Vt3Eqq3yjXaN@THmN@&fu7aCHHLSVsj6DB#Kht}5_`jywL%xBT%n%dP60kweV=
z%gw+7&fw-SPyQEhZ2{L6FoY%0(p~coE?|2D*W*~W*Q*KLQE*Gd8wwa&z_0>tEV#+{
zRyB;93T~>prGT3Y?%im-mgJFs#>h59o!g{&yKr~`-KM&iXWm%=8{~+Bn~$3BWf<!2
z0`4hbFCTmRxVL~&v|PYv1>9G_{VbvaW)$#10S^{1sesAsUj>XVU|a#u6x?e$xxkn(
z$BZf9;Q}5h;87*%c|J$rna9M(3Lh6fA$(HEls{F#(-G%di0_wtmUbq(?`b}#+IhZ!
z7gS&43z#7CVpx4T{mzy@ktx@`m?;HJEnr#!(+lp78+UbhY?v?KzL1Y_u8nOgxUWmh
zEZ}9fjRIaT;FSViEnrpwuhE$?cTRARIc!;M`kn7C=bu>W#*jHI{{rR~@FrK1zS~u9
zx!!F`lzN%B3aGo>tSjK{0+`u(EY$+uRoYexnYQ@_EGS^1oQs6Z3s@|&B+^+bvW)Fq
z3ps{*kDVy;rTqPfuM$};{GfmjBl$-Ktcmzqk&lI3LU8=~q=5AWx34w2fxAlmoP$5d
zKp!ceGYd8p@M8hn3fNe{R|R}iz!q}7!J8d<lSY!S3+{O2W+5Nu<>K&-jM=JM`&O2l
zas6Mw_XW4w;r|Dbrye&y74S1hT^|V_zo;d1r>O5cZpHg6M}|t}Hx8r){2~4)M^2IL
z1^gwlqkw-!cB+g0tr#uGe>r(g@t;UpNO@2I9|_?!P0NN?0ltgE3Q71TAYxp|4-m6t
z*iHE7O}(^_jE|y^l8>y9oR5MJ-{))M%(}@Y?<3e6<DktkZG4sCs|)YQm=04-m5*vZ
zs{5$ngD(^2$29rfK(?`ZRA8U#=(4$wk9~cd=i_`I`}x@4#|b`K`8dEwO&_&<9OC10
z4xT;^@^P?_-qX!k?$Gk{uPxl#X}xD^`>5liu8(@YTW;|^-YmmIeH`XvCC7i?O$YoR
zA#$XT$M$u#T;F%o_p;jV-T3V64SY28(a3iV^(Y@rd>rkgvF~OON_b<dsl1MnghD<7
zPhm43%^9hWmXZ8ek?=za$N4xulAnKrY3-wpkM=%J@zK^tJC?JLlYG2=mb)0|gD||9
z;ycwR&xoyE9Xr`~4@7W$JJrW&EIl6`e79f6(T{mN@(a^ZnGK!njQ{h|$;TN!&h*jQ
z$2mT_`#6g_T=x4o+jsl(<Xu_LBz#cXnr^<EeCgyM)5AwkAH6uZ)pO%8r&0D_`tsk~
z$GN^6LMbHn@zK}EWFJ#}T);&780O<fAN_n><l_b(Lw)e2!x#JDb3Fr=^0KpXiH}Qt
zT;{vmd6)aR(#KUk`m;KG3{d&-!R<eqxyCSSks0XYYH1GfG04X?KCbmKSatWq99MDF
zi3_ij+J`;O{6Xe=ae6TdE)hB2@@oP-f_syXn|+M)@r;jKeB8<mu8V#7rRmF&-*;2+
zV?J*8F`OmrzVC^VB6kWY86k3)kQ2w<KJK9fIUk60M)|l;{QgM7ebEPfJmh1vBo7P6
z2*aJsM|?c$yMyJ7f)akqn@fnXJ|6e+gpVhEw=8+e$J4%>)X2G+u$ypel-0NTdGo9f
zw%g~}EPcG-W4!OKF<<mC!H1`cV`WYBF-darIy238vki5o`k3ZpmXFtbOlKkZc*V!7
zKKOB;TYH-s>~zPPnLfIy<-e?E&qC${JFPaDt!fpseZ1~tsgGqo7B{eSeE0gzRb9;+
ztXAzd&sApM6u!k4F2c;tW17X^jU@AZED&EPTttIDmiUO*GhD24_n56>9bac{-A4^}
zHZ$G&#a6IivqhC~Sqbm^SjF@g@oEvPeSE+kSHuZLeCXpNj&DWSBG&j=>q-*e(0B`T
zZ+-Kzk99si;fSH@sSWA~>wSFc<1=>26HRT-0zQae2)`84xt)i9e0;^&^%Oa;xHqY5
ze9eqYvc<=|dZv0K^I3hfl?M6p2Or=0_+IV&H{lP$ABEe5KM8*p{vu?qe`TMI&M*D$
z;}0Ky%4@suZy$e&?1=Pta!AoE|Bod9`uL9{M&w%&2_hZZH$^wNvFq{eZ}B41MP!Qb
zihSRxxqqf<vEC$#sHRKxWYKm1RMCwgB-tXaYHs!|V!xsrUUEg`MaT<9_(c?pC`FQe
zM5<`22zT|t3xOhPNVu19??{v1o8X{C1?GYcd;g;Ao(B|BvxozWIH>4m*ak%$ti+HX
zQbaBB@Vyqbr9gR|A`TTltcb&lIHHI?HO-`&W_V3=B$KDzhPp-6i}dS@umLv|X~c9E
z(YS~vOqjyb=Fy7im?D}+q4+JNX5!7G^e~o|k{nyaaSBKYw?0^6t%_(}#E2s9Dxysh
zyq>zLh?|RO%Vab%7tAs3ia4=|lT;KZ7jaI}tyJ3=af&3T7I9h;bGY@#XH<o!7tx`J
zjuQS)*rkY0B2+s=<V<1bBF>8Bw^lP}i+2@vEAo7!Gsx3l-HYf^M9(66F$+apEQQ{}
zKEiX0I8Wq!A!9jfg6SLa3q&p~qMyjjYWyrn<&q*UEn;91S5sKeNiHkmaw+sL;!2S#
zBK-j(oYt=rsq}FA95DtJaYNA!&ey0+D7;n*gN4@>F+}8gA$?nSGef06ERx(P!lJvS
z2;N}g73FP3+*)*Z2PW!R8t0VTRnEhUxI?4`F9Dc%eNTC05qB5ya1oCbaSyvd!i-VJ
zxwi;@DurQ36>(n?_ZRU%5j(g6JJmfR&HsZ%JXCc1fun^a^rAj*Fg;qtV@15omN3<H
z{MJ1lGFGkVamD_G?6Yq^S;SM~PYcII@@GVzWsoAC7k{CMX(Ho`c(I5HMNBMWQW2Aj
z7}n11Og5fiT74Hg{p;A2BBrwcwlf@5IXZpGXPUIAp04086)~fTnabJ-o;=|@E_7+Y
z6wWH*wIZ6A(4vIdMZC@tql8QebBcJQh;k7@5p#=plLZ?yKNj(p4DvC(#p-l#7csAh
zcZzs7D&d7i%r9a=(Vb)DpJo2;H)fH1>Ese_NfAp`EXz2y7x97k@*>`o<rPAf(n^u{
zi&!NR-sNY4Kcp#shDpMYglmdeTg1mjtSjP^A~s4$3+s#cO#D+}xJ&T4f`1{&m%<Hu
z_<qIKSj5-Tp@q$Rcro}EIVs;-#J3Uuu88j={zIg{t>{*#KNazF5x*4iE1OUeJB#?O
zh~JCY&UsB|kp3v*Pma?1=s7<qPa*Lyl~w5cTW$V7;Xg(E%LW$R`Q^4AH~-m#__2&O
zO=6WIugx&1CBKwZiLo}h{x7+^5-1^Ff+tRAvV?><=QTR{PnFy(z)q1ZAy>j7CDbk<
zUqYeevQVo8zvLzqa;{p7C6r32D!KN*R|y=?tCif18<OgB){v7+>%HaNN4T$$I{THd
zf5|;O#s2{%J~O+EA6UXc;s-|(US(vaxfIr6;s={UOE|3L-c-PE4jx_t_l_DUdCdM1
zB^+6DBS~E$Nj;JJC2;eZPNuw}lpB?Bln5n_MVbhY7B(&6n8>%82q&zTOiu|tO6Xa_
zaU~pI!r3KsE#ZU`T9weHgoZD>1q^4j)+&=WDyz1_cES@&IEh~3EXGbHv@hWlIZrL2
zqsVEI@98CU5a-SemH#ImUgMu3ex|Uq@GN1dxo)NFXx&OUr{o@<<uw#fopmp{eOlV#
z8jmULRYGq{N;tm+UW_o=Tz#Eea&JiBdZ|wdeM`7NMaPQ;p5Nnj3h#wo7?o<j5-y7P
z#UhuK+}Xc1qhpts(7%N3CH%#5D`5azR0+?QaAgTsl`w)8p(Z!5gdrtdU&1w$&DCtH
zD&%Wq>RRQ6NgZ6mbrEOA_g`XeD4{`9b7KiZOW+37u#(#XGIQL1&P^q^qGs#8xrAHT
zP`Nc!!fhPKdYjuz7+%615<b^G=0<+;<Cn*-($SZZCEQ)Y6D2%Z;=6jxj)895<en1l
zExB#vQ6+cDd|wIom+(Ld56U@K_>l0i5=M)R5k4$@MEIzX!Fh9>mkcEQKQ1AiPnGa=
z3AHww9`((Bb7Gr$n?U(xn|y|aR;fH&LgyCdqJ7N^C5$iO!xBC!;l&aruoIQ=ZV3}h
zn8d8rGxJJrAv(F_mb)`b?z1dYN|-7_K22o0@TC$qHFW#)GfQ~6gjY&<l_Pu!Z<H{r
zgx5%Tw^zuojLjC|ZajrVjwf>^c}w^vQ=2hV3w_@%ft)(2`ff!upQTsAng(X;X19sN
z>@Z&o6>yPov2aNVOGTCmX=-^1??rrt$V%b+C9D!z9r=DB@+TW!32RIEy@WqX_*g~9
zQH39ixxzE+O8BIN^(>zfK2!1jQo`pVKbEkqgfB|?l8r}_&BBdBw!p7MHVMCGXVGrk
zH<9m_61Iwe8%e$^;d}8PgyAgnQ{?+ITfX{o*iV0r<iACh|KvzJ+g<l@k<7gm_R}3D
z?BtkJg`QRTyM%vAIJ^o+RN>ze{wpCUp;AJb?R<q(<~8FlYR{(1-7fi{n)|9O%QIF5
zTLn}hUIniTHL9>z6%ti$BrjCK7fA|J!gLifB2>tV<b?Su_dO;G`7cURB`j6BCt)e9
zCMQYts$I`t>|KR@s&J6x`w9=Na=mFk;r_w{gf)e{Or|d_aIJo@^lL>n52-@!h}RK0
zRCrj`u5;!`R=JV?#44Org}PO!SLH^$SGWsQg$7k<ScOJaXjO&QRX9okn^mEC6&hEe
ziJV7Qp{Yn%YsZL(HO}<3sKRlQuwl0pIW|%_UgU(xN#!<G?yZLWpRgs?R=i#4`+rn@
z3HT1x`~G~~cA?&VnRjO1)vnNnR+UIaWXn=X$Qp$tAu36zsECwgtE7d>l9cRGC>1T=
zv?`^2&;LI6n124(HP?OJ=Q+=L&c4i<nKR|g=z2j2Ekn3GWIEb~k~7FfA+%EZTdcNP
zhs?0HtAW*qHN|@YA;~2omkQeo+X*iVp}h!oI<V?>v|7iInaa6e*C~X~;&gTqdANqv
zErjkN{2anBA@pEDg|Iw?XG6F$gm@EciBfe{2v;kSy+Rlq!jKTIk(0^p9m2KZeF90}
z5c-A8-Q0CTlKvtCLKqlG28GOD$>?=G8ze{65T=GOG=yOx+#ty<A&e2ZF@)hFBZMP`
z404mmDB;b*(L#2sTSe{=Qgdtw<HW}cZxc=kd?$+BF63LXcLwrFA>0-4$sybw@F}6A
z&tIm6Fg=7P0{Oim%nD(42=@h&`$L!!GApi`!Uu$OJ{ZD7;{JceAC~^(!Z|_Mxgk6v
zJ};0wD)N|czL1Z17l<&~%;rMzMIkH>nb%8xlaLR6x^VngT|XJZQ>x9UgO;{T<QXBq
z?%}fr?q)m}!t)`#pjPyG2w#M-B7~J8ycohuA?#$wm;TEkY!O)%!s-y#h_m&+5yILK
zUI}4cAX(4!h;#Fn>-^WmUk_n}FVrw-*8g&D64K6Qwh(`{!~OpdwgvL-A-pNRBam=U
z<8ATxg}a2i1K&L%yu(3B&b=HTM10F!$T6Z1B-tn2&n^?fN8<kr;nNU47N^=LA`Eyy
z<TD|YO)p*~U#idkq+alqIESFGLpT`lZ$!Qg;ZO+QaVQAka0owyj&2OHaQKcBn+I3;
zKZbB!FYC`A%{Cyr*sme{7Q&GbtgzYf=5v|fIe=@k=#P+Dmi#IFi=C9gL-<GJUm+zN
ze9FQo7dGqm=3#Tc#&MNh8)1|Wqe2)J!>ANSHjG@@?7CDABNRs0##WUus)|$#<9K<|
z_c)R2VblnlU5lD>a)@RLoFLw|vU!Us97aUWXc(?YER48FBFqyE%u}{x7^yJQ67n$$
zL)qdanJ^sjE)9&_6X&xz@_ZPDFlvQSTf(A{2T_(pxCuj@I$_ie<CHK?4WpjqO~U4v
zN%X28MgvJ23QrWCBy1$4PGb>fiu`1ymgKa+w;5|ed2cGD*RI7zlgaygm32lKXNGZB
z7-xsgta`cdoG{K6X(7BcjPt@cKa30HY%OdlWRMHPXch2h=a^rtUL<E5;l;ie3sViR
zZJ^mMjLXE^2a*mV4==Sk29i!9orPV5`~_sUFuI4)qZWGBLXR+dhB2#z*(F>V##Lc#
zN@H^xSBKFnjDB%k7soYW^bX^T2)>Nq+A#WraYY2(BIrwnFuo1rP#D*R(Lan0VZ0H>
z05-fZZVF>m7=u(|Hwp&}hX~mit``{^#xRi^n4NZ(f6;e%7$XABks|cEIgHU^+!4l|
zlH3x;xG=_tF(%NwHH@)=GL768$R~y|;TZYt$M8vE+!e;EFjj{#IgGpI^>P?f!nh}l
zN5YsF##9L(2;;#prio7%Zs-5M!nltOfQSD`!boR?F;o0joh<i|`0Owq7MaD~aj)qM
za{~Rj$0##MzdqKZVLTJY@-Q9?V}2NqOJPA6PlT~+Oc}%SS{MeEm&t2U7>h-g2$u?<
z6jJl4FrF4~nK1F*uHesx@mv@y!dMx`^I<fi8n=LC)3@(ieo+Bm5<a8{>-6>WMY2Y6
zI@gL&@=6%%!gw`|^<lgg#_N*zn_=SRb?F4FDi;aUtc`4DVSE<G=V5FPV@nwCOLJ=&
z+roG!jCaHMOMfogE_sQ6b_-)i7$iG|ZwcQP?h@`6?h!Jn)Z81S>OBz(nTBfJ%RUHW
zUl{uX-%rB$FyJ4Fd>lS{KK23b|A+Bu7=5{e$B7^)pDz^4S3#&RMWV+W`(KA~FpO^k
z%{euU@VhX+=lB+Z8^Pf)ehA~Z2&zZ$qXPaM#xEj23H`+X8b*}}sz%I^`<vvyhw+EV
zpDY}azr*-P<lU-AOZeX~j!0rDU|9s^BIc(o<s+uG&=ju<5mb^ddBuo1|Bz)>S(5*B
zNU8-oe!10%AR0j|f|?N=AHfO7=!e9^5tJMgMMO49;(>*XNJ5y5ASIFxd~F7-V*>iI
zdl6*i)hU8p1o;Rq4>SwZ40ut5L25-%JAyh9)Q#Z$2rh`AUIg_cI6Z=<5j2RPVFZmM
zXcEDR5u6l3BNYV$GS|$SPlzW+a7qNHMsS)G=<6%|r$f>#g60vN9l<#foDsp9Ob<8z
zrB7d8elAGPl~;=h&I_#hzC;FT8Nr1STpYnAQfn2#MaoWVIsGKH33AFHmqySwf_4#H
z7UbHuLsRW#zk>q)7X_2iG0-IMEZ#-fHNtbAO**?r&?AC-Be*Yuo)KIb!SD!1L~vCE
zS4VKYl&RKBq@VB_VQ<a?B7KB?h1B#b@j5yC3kO6nFoHqiJaB%n$dJIvAVVV<CMUCe
zg9wE;iZCxDMed4Vas)Stj}qP-G_cXi^(_&MVIjzCtZ-5U<3z>_Zxc=sP82eh+atIm
z;CDulNSZR?<rmJ~5!@r+DS-~tGc|%~5loka38pg3pXB}sW<;=B@|h7l5Wy1>ER5hm
zNgfeC6u~T!*%8e3C1uvb5zG-kIQwYqzS(&aJ}P`nIA8d<^1C3&{vrvPjFk~A7GDxb
zmWn(X!BZkn3zr4H&qT1C(>Fi<6+S0?UP$2!A}d%vQH#zOBX~&xUly(sGM#?j*F>;Z
zl2_CYcZ#oz;MEA$i?iHb6Ja`Ek6?rN8^VpkO~TDW>TD6&8o{<evOR(~BiJD)<MkW)
zTM@h+!LC4u!rc+<k@KAh-jCpe2;P-*Zv^i}@Jig2a980z$v=$XqX_nk`%RY$A4hN?
zg3luOL~=_0C-SM#|7im6pg)(Bw_vaGwVw#SW~ImQU<?N%_=YVZiZxMu8^NIndPmIw
z{#^v$`xfLp%%Mi)2TlPI{1m~@L7n~*!LJd7q6kOvTLiyHP$9~5=J7`ae@0LiMY$;c
zQZulkX7FKw{4LA>MDVZV6dn;_nfMna{3#bT%PUd}|BjmKs}x1$D2|JwdK6Wns4AUm
zGD{u5ihT<;qNo|g@yB@iz9&dRQ#UcrD56mmq9{fYiy|I{9YrRJL=?#=Qc<L3pUMo&
zGNEN6IWH#)H;P;odFgmUDo{BaJvu{?`-w5~C~8GfH;Q^u)K(hm1X=U#6YEFOAc_;C
zI7tc(0|h^7Dl}3obdooYqKVW_7W%n6HHy;|>U0TvM$uGG25A;W^C-@U;>;+{ilRdx
zKRb#`#LtQ1+$dUzw+ejEi{gCo3j#^YC@u{6V_{Put>wHZiZ)SPEY4Qv4@#E?nr%he
z2`>}2j~-pITpmS7NjgPwg-B;1Eq4*=D&(C@w?N)qqz9XUUYPM~hx%7Vadi~E<a>>f
zUVg1z8%3We`bN<&iiJ@uisHH``bV)qY6GGe7{%RDOo?Jp6oaD}5yi+ThD33F6hosJ
z7UfCBRzp6H;pS~c^GeSR3V0*Ua_hK~DTm>byjRh>DT+~1+!n=zC~l5obQI&{bxRau
zqCC*p8XHA#HYDndGp5M7nthh<wvDsKM{$*$L~73CD?m})9_7e}JEPdf_cNoIB%QmW
zxZyr)F>@__+G+ck^#%8-qF^FtL@_gpsZmUeVtUl9maFrzZxmFxSJ-1;+5JiYCFfSM
z9*E+>C>~KdABtj@$lNHHo!L=59K{^wbZI%-;l-k0%9&+e|5UW*Me%49k0}=V&X3{+
ze)qAj>~R^PeNUQC1g&?m<P5t)WC_bQiYKFZO3r7ZST6Fka2bn{`?oBgD4wHb_70xF
zz}~GVfXo!_@PL{Zn^~bYrmj~;@uC7!{!$b#2Yi(XC(X4{yb{HsD87qgT@<fM{;_bq
z@WUux6M0=&;^StKH`J##MzKj`a}-;m*ebq9xJ|e{iZ?}eM6ol9w}R2&?I?Cdv0Gkd
zKsaW#M*dC|??$m#z8?tR6VmJbzykR`3HJ+W<Rc}_Z~vc=NAam7%=-Zm>U<{hx$q0&
zmr;Bb#n(|BjN%&(`%%8#eY7_D>K!{TZ)8}cm&L5_qd2S}p%{LM;>Rc|#LVpQlZ1an
z@u$eoQT!tEtME7B??QhZV35D$v=sdBDE^W2Um<;uD32s%QXnZO!v8grmyaDi^SojV
zm13wI=u{V}BCHxiHId_l%s4NGts!U47>*Y?K}b1$!!bl+h{h0;aAXYe7!ombh~e@W
zk};%WI5mdTVo1ke$51PV+A(BeaHL-px-k?)yqKA=SV!3ya*{BXyvTovDJdg#Qmsx5
zbz^80L*p3g#ZW(n1~D|05nrD=CkFa7MdwNK^%LJDhLdABC6G|)k9EY;V`v(~`7vA&
zL$er~D-Gw$)EP0H9m6>>GZCLD`C0#e3jL^C#BiQ;{!2;A7%q&VZ4B*VXr&;R#Bga0
zt;K2Wq8QqUGbI-vldAtLP=1*d+8>iCrnX}Yonp8qhTbuBmO{4}y2sEZhOTl_hheWc
z#%7Ngu8iTT7<x*<kAgZ^%h~IgPz-x*41Ho462tW|^o^lk3<F{q7{hf^W2pX04>f6r
zPF{oLHCS?ALa(8L{*5sVi{S=2Dfg2%Jcbd{XHif>yeWoJG29%(=ooH~;STBF62sUS
z#>Fs3&RYYUzLD{APLQ43g4pRbF~~d3-WkI^F-(nNQVe%Ve{u|W$1p|wzoPK-GA)Mb
zlFx|Y-Wcu^zh6kRzK)+-W^?9$7Gjvi{vN}RG0c|mg&0<dJRHNE80N<CNDT90m><LA
zF+3_ST6iq5;ICR2#PEb9ON0xBjBb&d*5aUnF;h$B^<)fB#qe|t%jA4c_)HATV|Z4a
zTNBOCGIiwdQII?@IR}}QF}xVVo*3SV;iVW}j^XtfHpH+hhSf2wmm2l`EU$@Stt77m
z@^vx18pFq2PIK1y*F^DJQ2uX7XH%fLQG~hJEV3nrts>iE*b&3d7`Ds#rjT~1`BuPp
ziM%bOe7A_7q<6*N7qUS1s&L+uljHCQG3<+Be+(ZU6XYZDFPUr+#`Ot__@{y7fXHVt
zd@k}uAm{M@RSaKq{m(IwkDg=rHimL@Eb>D!d>6y_F&vKJ`6<?=+<uv3JvYVroMZAF
z%a{BV!_P5Tag@dJOJMVNkzbYa-^7{6KSWqxf2s}t6~o``w*JaNn*YXdL|!ZhX1rV+
zh?_CLZ5-v}X4tP5H-i-=6(p}HtR$=)M->tJRuy@%%sMWP>T%SFqh=guN_c!6C&bYp
zj)rlB;t0o4D~{T6MC2QbBOXUoart$Th$AU4I(enyaFqroBOQkw@Jt*|z^UfNk&Po4
zNQ!af#S20f1%sO_a5Bwx6idB0>c-97K_f)U>nkzjC&qD798IOxD2~P=r^V4Ej+5g!
zC5}@S&=1RiesH2sP7i$P)hv$Yahwt4%U3unj<e%9CysODXdTBzakP-a1#z^D<GeV|
zS4#ZyXOIi!OKYu^i~kbbM)FI97Ype{HC~s>0!h0#E{mgm93A5597mTp4%aqiLa)o?
z=qR;Lfqg%DUAdDl$rZwG!tTNz!k)q_g|u^399IXtR~%e4`Wwi-<G5DxK7nsv5ysL#
zjsZ+q677>17{?&yI)U>O7#zotI9`n7r8usa@(kh7IEKY>LmW58F<p}3!pU*mP5m-!
zL>wa}xhalOaoj9EE{^dcqvN<mWQ>q$zExywP)d~CCdr+`3BrkS+%9s5kUEug$1zFH
zyM$b}u`rpVDXMhp+!M#tK!2L-)A!yu?vv0j;roMlXU6e><PXNNIF2Qh$1y98*-}^}
zuZM+mgj~|kjpLCxNahJ26+R}UaDE(*2Yi9Z6T*eUnfjTdp9a6FEREwyS!T+gisR`x
zmc{W*9Lptqfi;^idp3^e1D)sM*rdio{eLT3E8<uwue}wmRTE9ydpV9(ar_v^PjRe{
zV~u>@iDPY?TPt`yjtz0FlW=`t^VK*ORXjQ^z9ylc!Z*Y>#j)`i;pRBD#IaS9w}ji`
z*dE85any^KV*+-FknfZ)B|S%&guNZdt~ho}$Oc2n9*#f9n?Cz)9DCz<FOK))_&APF
zf~x!=u&_^LzwkrhM{!JuTc$n8`9&OGihLT!0g=yyp9{I&?U(jfajpza)L+MOFph8H
z_%@F3;`ly}L(-%d)AL_1J{-pnlGo~KLixq=GY5Z;q6tJ3_*K6D#&JaCw>W-}<BvH0
z<ny>`M~9=o<n_0P4z|^Qf-%Hzw^jmW36x7<g|@uH3G)l~@(EN(pke~m6R43ur35M`
zP&HvDi2u@7C2{obpjraQ1>E<oDa{jv408N20Yl<`M*Q2KSOTX>7#A{Ci3E}fq!MNV
zN+(cDa$C+!0*(kRxFVjAn%M+$0ndvRghiqVgHWxuc%205iqsRHD6F4A0}-k<6k(8)
z6ni5%8w;BRIwvP^O2AJ|9K8)WJ%OeQ(oEP~$ef-ba%KW&iJUDwS9p$)akUWf%kY8(
zS|;!y3pRlZ6KIt{w*<ONp>+Zs6X=w{MRK-D;Nk=>N#IgBFBi5|dRX}F<RrN)f%XY>
zkkgNXpK(#nc!`}Q?<(vf^yOCs`aKfpnZSeuCMIyDgx4o9G=ZxUxLVF$2@DarCV}1w
zTr1vB<<m#lS4gugUS8KF&|i`PLP`cEFeu=IgYxu~I!xBaCNNIq2H}kf^9JK^@ev7(
z6k%R&N?=q1HzzPUkc<(zMaTr)8pwU)<K?_f`1Z9&%j9-BXA18~;LZdlC2&^)(<SlC
zZL;{?!YK*dlfcx3d8>!lw1oMGozMH$wC)W;-Iu`q;xmMu@+LZ74+Ql!D}mYUk4Yej
zhZC5Sz}pGzN?>jRk0{8C!g<2SgpUTjk9OuK@VJBv5_lqkg$XQ5;8|Y$`AY&z5_l$o
z<q7V{nRvO=wN%Pa3ZD`_EnFt#b`y0NmguMRImw?--~|y1SBR_>@<9M4FD3AD0;>{O
zoxqv|wj{7Mfwc*|k}#v+#sqJTt#t{kPvEr#UQOU|`LbQSljS$a6|L73ctfUGH5(Gx
z&lhX?YKq3pO^KtAdN;Eva%B~>wn_8N1a>5_UB(ZWtS*}4cFOB5;jbn0D4gqg;%-U)
zNnlR`?<DYU0(+T&1b$$BCGftQ-<Jt|kifnKK9h65@S_AiPT)gvHX$bO6Pl9q(_@5e
z#s}mi@tgYRa(*FXsIL<EI)Q@;d?U%Bpx&9bZ&i;B_+0|u2X*Qj`7wc?r2o6{XO8?L
zRQ^STYQKrl4rBQvfj?PXfzIE74!s!U-vo{*UMp!vt+M3Nk-S9}Q$*#HsF1`tNt~NR
z#Uv^v&9HxB5|u>~NhC$82&*PhEs5ijW{<Rb5;a8DSG4G?nZybX{!*ib6Osr8JS-9s
zMw5sI@;HNsOd3*2q$O-9w3B8osGCGaPA3Uh#1m$P-D_Go5eCnT6of^F4dk^%Y9~=A
zkZ@=6Rlfh9MExX48VI?3C8r%0*GYk9qa+$9(IknJlQ>1`IWvh<MVPkJlQ>P>udk-!
zw9qVx=CVMYGbE%<UT3My&z2XRErM8DCvl$m`N9hVc}tNClV}x4cymXa7bVd~W-k_A
zBD_>c-?k#{k{G2Sw?h(_C-G(yJCf*_M5iQ%Cov+4&PjAh;`+dH*Ccu;acvS;NYX8d
z?jk*s=qW<W%;uHiR|&69qE`~!7QTl0;v_rPa@jIZG*!vm^^p#FU$wV>a$c82|0D*8
z4-^hgVvq=pQ+bFugOd*xCmEK+4FSI~P#&4YO-W2o;$G!<R1#z4b+e)y9q8W@=--;e
zSn+Yf@qzp{kqJpmOyc$=?nvUEq<LI&XVSc{bypITMJ5Tk`*F7jy{3pzlbmwm)TDWO
zK25>tWXkVL;)x^{CUJifGnBBI9N`rseIF2ckfj$$W{J!e`s>v>Nz9e=5#hWf9+mya
z<eaY<nTE&ZTp*;A#up{ASkARcED>3n#FIg<e@cmYT5_&bS-H!^8St4TmM8IS63->^
zd=f7Q@;zEBzQ7Ky0$&-lw-=LmDd4QQRnlKAToZ(4<-U@{I(9T^`gOfN@O@3>^&~a~
zk~c&)Cb3Cmvv5n`yH#YHaJ!HOcP8;x5_hFAIfb{A*p<XTN&G9{-AR0y#79Z&k@KA-
z-VMru`Q0nwdr7>X#0TR0guI*BFH&ogDbJ6S_#}x#Nqi^a|C0F9Cr6HaDr*Ol_$-io
zp2Qd8eoOu;kbf<5Fo|zOz7<X{vle8n?~^zz=Wj{;Ao8p5M<EmNQxZRm{~~;oXWvz{
zu3#V6do{l&@rUGp2Ks*`@pr&E53-1kaBNSZQVLcIWhs<P0V$ME{oe}TPi+NB{5q;E
z-ads6B2`kTnnE@4{1EFnk?JYb5UH6$?G);yaC{0Uq!3CWoZ^pTOzA~Zh^CNFnfD4}
zDa2F!r;O#LkVqk!LOKOIg}Lf7-7dCLDa_-2_gE{Ff|G(P<Gk}?SbwoWFWSsXo)h}=
zLJGwcN-5Mzp?lse0BE1cH*dpZt-2}HOPSa2o2F1-az1gRZ-W#Xrf^~kC#7(z<c)-@
z`L<^YjZ<hMXTQo8FY2En=hf2;KTZ5};e&ck*DQtRDV!lm>l7~I=6?!jrEqo%=cI6c
z3KyhsZVD|@I8QoH^OLKKEv{i`jo)Mba*@?Cg$q+?l>)sed|3rZ9rEE-tcy};lfuO*
zT%uBHCnJ}p&^86?_|~XKepz6jPKLcag-$7Smat>W><F=nyQI)nk~@S~u=KbqLQ^cj
z6naS5SJ+c{rI6OHO5tkpUMXCYLhlr=m9tL@oC0WsO`2+amw?zWh3n+oUwBgr14IU<
zFo+r9;cqG2AVNNbZ6n}AQy3O-f26%p&f&rl!jUO6>M|fB8kNG$DU43x7TLcwg|R7&
z5of9@cQlC^m%?~SX7)b%Xq8*&6C{}^yj@65t~T!!pA<-#hPzXklES1k?n>hx$zMrf
zT?$iEn3lry6z)yoffOE0;l32^m%_}HS#i-IuNji~9gRZXfIpPNg6`Im6lSF`JB5dX
zxE>Li!+sG+{DFO53XcYo$3*4}9~UkVJ|SEvTqIm9WI-_vOI6EHO7aw&SqjV8P_<Nk
zM#AMOJe$IED&ChQd0zYlA&Yv2$V%ahLY~w6vNTr-8Ov&sHNv$*#{Q~E+cesxu|9=H
zmzYlaS_-dAz9EG-QrMWnrWAfl;dco)r?4Z1o#I=BTZP+%+f#T`ghk5oe2asB3LmHN
ziG;g^?+SMd_Xyt!YGiK;@1^j53Lm8Kp}d%$eJSh@xL<L^k0kM({}cZ@g@Y-4n!*7&
zKTF{Yk<W#G6@Qt+SAo-)e3QbrDg2PakCGn}exJg3BDC*EaX4@?JwLHe$w~fm%B<UY
z{TfKf|489aInPhyuN3}HA)7`njek=3m!okSC!}$N!+si7(x{q7SsLZisE|g*G>|qU
zWO*TpZ=9r3+BDkAl2b^D?@O$fM)fpmq;Z^lsYZpGfd$`545blHBbi1jjYt~NG!oK@
z1)A|=f^)?9&we@$JB^Hd{ivNZ+%&vn^#6+`pGF~##%VN3qnJiXIt_%i(x{V0UGdsN
z-&(yi>dWcJNFlF=X`CqGNy0|TJ{5eOlhZgQjb>>ym+z@*oE}&>O@!&8X4AB(9r82M
zI5UlN(l}SXXQgp=pzo)F*g}%?g#QU?<bpI>N_b(~yt~pyyp^!E@FHeYHFdF^404Ic
zr9ql6OQU@nJ<{kYc?Th*xIEDBDAFm7&LUleU4>T&y9sHzJL^KT-j!)wmB#QiM)3Xr
zG<v1cFOBOI<26c89|h?xyjJDFMDpq@3CpB^8Uv&`G>w623`%22;Kj62VQ`Rs#(TXq
zDIAu@4T1bd>HB3x%OlgcC5<r>-jv2Dk(<*P9jH;$SWaVX8n>k}A+SmN<D@e_(4=Id
z_#M)@JxKqZL50%J<TUP1V?`P(r8y;yX=zO7EFkApArt)JEbHDh?n`4~8jB>nU-*!4
zMjA6k9!O(V9qYj~_-Z|OHn`m}OY+%iJe<ayH0Gu;KaI!JcqEN^@_J0zWP<gm$X+#0
zrhJXw4O@`L6O#Kg@1cs;94RagN^gmLmkJr`Nk%RHbRb#A%yRuNTrPZ8_?+;0;R`}W
z@uEV#md5L8yp+bvax(j?(pa6w8uph;)~oC$O2b-_SJGG)#6@4GVZBP5ck$#K<n_ie
zb+l0uz9F+Ejjd^1kwdo}wxzM1MU=su4Bkv*M;d)I=$A1O?c_LMqlt~T(s(<KU1{u2
z!?ICkV^13Ir151MU#0PG8hg|DgvQf&FOB!p_;kMYaoVgyK470Mv-UBdHuUy0I9Fw9
zJf`o*KT4a!Tlj4eKh@-C%b%ukAdSz`_&kl!6=vVBmd*?rw#j_S$nRdi;E2c76nFm9
zIGDyCY5bYSH)(vE#-TL6OM{2r@Z)+OM7B;J?|jda<VR0K&0^+o8b2sWKMH>m{w$>L
zFCxDRe-r*LJdrQ|r13XL{xtqg<AKwykIJlhZ<#N=qG9U@vs2L=&)AlGVtoE<12*C|
z5;n@)s9@s+8zCDNZB(*R*+v!He5-p+SF8GR>#B7YzmFTphrhNdqG~pdv(0Dq)os+U
zQPVa@htbL7)QHE+%XfxtL~KND#BB53`pya_zdWj!x!@sP{C<sjPufV?@N8slq;1$X
z92>5U>${q>UNbg$${fp_HwEwMv=E+0%A-YcHu5%3v~iMceh5xYo~Bi>F@xuS+9=tm
zWt%#!ZKJM@dN%6V_(|nV<W=8BLn$;6`d-u@uj8{C*%)2HI^_!UDJ8#KKiS49Hr`=M
zY@BN2G#mYG46t#!jixqQ+PKh0GaJoWI5y6;afXdEZJcG}Y}=e0zz>J-=Bg=V?Hy_k
zg5YV-lfNu$VdFd-=i9izHsA7Z44EU@|Lkf$@#a^4JXJf%hrc#j+ql$5TN@YIXk+7I
zrq(uRJ-zyoG0PgEvKO{~sb@`EZnd+~Z>QDKMkm^|%@GIfZPR)?*rsV+F62Q#<eiy#
z-g?;RuIzWQ&G&#^g;xlN>VUEyHm;V!Bo0$HuC#HL4f57+S;X5Gn!`7Gv2wW!WTUqT
z`L#Csi1%fBc<B_8>m)fmzyuj+V~~wEY;3eK*v1eWi)<`rjoTP%W4MhG%Hs=RQxwB&
zu#w!L1m7s+cdYL%H7%|7=CYA2bMF7!7-i#T)|!o5Y&>jZj*SgVtuZ$4SNd<YG1kU7
z+uT~-VdG94<Hc_iP7qEM-Y#TVYEDwvsgm4fV>4e072YkJBD_b)mP6lZ(wr{5S9qV$
zw>Cr8W=isa@Im22!db%ELSLUY=PJk}Hae>5&Xe;|;bSa7ZvG1&7cLM!AzUb=1?nuZ
zvDC(ktbH3#+9>d`FYAIQe6rT~^Di6AY&>IQxs4UJSq(mG<2f78+jzk?Pc)XaHwQ0s
zh2K-t^kq8zl8tAj>Vl*9Un{MbIhd3){{oxHgCJDVtA%TXYlW`}*9l)0t{1*0d|gp*
z5VDbMVyW8L$-&&l78_e_ylG>HjcqnYt~RGH*4u8zknL*TeCwX)ldNB6&NE>%e%r<_
z8@oB|D^(S@n^x5R!!qKJi>=9vEdHfvFSEwcCIdTz_icQ@!NJDQHul-rZ{v`S?`(X?
zam>ayHoj#_YFi)MSh&#|7PdZ7#{b7rg_}RZ1424Kv+;Srzp(LTz`wHbwfI3H$6+c@
zs&D=;z>-|M*!teaVH-c#_>lu|H|vRIW^ClCWkeqQNHrdQ`-_cVZG<z3WcXh;>o*&}
z+xWxAf%fK9jX!P7ZB*_r8-J_gvwQwSQ`^n)N=G<)@DYHGM)l2EKvo82nlZ~|P$h$^
z;t-b4pn^z6A=6e#q;dwVX#W%SYLd`N-{Uf<o<R*sYG!bP$nhD|is(z7kR)_6Y&3&d
z2FVOk8S^!FJY&Y3v%6Y}%+Zrkd9Xjfab{=dF`gXUG8s4-bj+Yr25tsk2A5=TX$IL0
zav7YIL8A;Vc-qQmaAF3m`a;J16Qr0iuQ8W0pdDVdGN>K!IvLazuP3Z8Y!LW1%$Of5
zFbGF%&XTpOS&cL1xQtUXXp%8!8=jmoClQ?@B&nP*?dmjUFoUKUGaEL`;M@#aWY9cg
z&T!y$Mh0if>n!2f!gDg%5gh8sGiuJupq1q33u)&9k(R;>Gw^5C)`9OuB5g9bIFRuC
z<hB{K%b<M*9WuC#NvdjbH8SZ_laZku`7@w%?|Ig{+br%f@r~}z8FXPSWN=LeT{E~M
z!-Mj0bq3v7u&b;?!>y)U%;}xoS!G9#^vIy62>F#PYP}H7Mb3wZ%Km9=nrQC~uFaUU
zKKf+Lh_ST3RlS~>lJ>`~_xaeD6=yy*wMJynUwnX&!hs@#G8il}B#>V(GBkr>f#ik^
zZWJG$F=s^Z;@J*tKO<Rd8H}Q3&eRz*+1-`F=nQVjU`z(LW-va3+cFrd#>R!vI5icX
z62LP+h@3h(nNDEKQ9~Wt(7HW?JD7_K7MEwuyIXg%uW`!GVDi`I{ME^dg0b8!G9`n1
zGMJjdw4hbY%3!+qy~6v1_X}qTX9^z>J}7)hSgoG<4;ru88SEQv79MjmcqD^LSyawq
zUIvdc<(`?fAIo4qyMu$QgU2&ikilCSyq&=l87yRD&fwJy7G<zFgXc4NA%i6uEY09q
zW+a2HUzA;5-t^ojGnm3k$>8Y>mSylvP|nLUV6m`jc=5E}5Dy?KXAZjOuO3&hDQ2)X
zgIAc}a@LD#RGdLxV#8x=&tO%?e50{CgEb-#RJC|fLS%ohS>G&gE?H--&)~HTwq>wA
zgV!_Ikii=nY|MZMQZZrdHMK^VMzu+G%1MfCcyq=a>$F9<RoJGX^(OmK20Iy7L$gd}
z6g-ce0eQMLSA)AU*qy;Q8GM_;o($e$UuJ({E6rdp>zBj6Mj_5wm716{h}do!`v*)(
zRcjx8)lK$iz(Qbu`8b15GB~J=|BqE%-6%KNSk{G8Kn4dgW`O1OSq7g6{0osUGx$p6
z>p*_xfie!}<HlHrGWd?;r-K>}zR%!r20vu*V+Kt8vKkhT3S?3Il)=v#{FA}IYM;Ld
zf6w4owP&{f-_)K-{*e7Yg?|Nc{Vg(4M@bxE$8pRVJC<X*Ntuv@zl?!nj(Xr#-a!TN
zih-n(NM&IaVO3!@;c*VSJ#CIVsOjK%2N?&BWB!V=rhhpeBzuB`kYh?F>>%PG>VSun
z#GIr3m#etAcp{J_9i+t5LOYN%)XB}v{O&qt;$s%rd2<f(4q7>A?V#YG=-^}rr#Sr3
z7_}VKchJB=Z3lH6)OApgYE8}mL0;1lqiiH>-mF2MbJEbki4Gb&XyV``2aO!_rxFhP
zT%~W24wbt+ZEdV?@s6NhGwW0br?D6vobTXtX4XM-2WL2F=77IP%$;sdsOGKBj@qU>
zvzu`AIMcydj+qh8W_q|@b#Sg@?mourcB6%32-9<cgZ8`1S~|GULAstfbT^?sc>OYy
z<%=A&aqyvsk33xL;1UP7JGjHarHt1>I|r9J`1>QXPRPDzet^>6F}Fo8b+GvF;|>lk
zchFI_f1`up4mvsL?4XMz-Gp5obKW2$x<XDKxYS*e9&+|{aHWH*99->Skb}YU>cuwT
zppW=9!roHmuR8iV=qE{kHt+J*bwb*w7o!;9V4wq^)0grg4z71FR6&lF(`%T7H%On(
z5i)g)gE0<9I=IQfC`C%MHwQLH2g#uD)?@fs2jk=%FPtE}P3RvmH8J3KI+)~Os)K0`
zmY;6%R`f0hlO0^F!^-Y<%yctFb;@eJhlM}W;>F%HH)Q3yTGQ3+?{#pWgZmxKa4^%s
zBOc~?c)-DfY&pDd^6-#@Sq>(+nCN1*gNGedb8(!DIS%GJ*zI5sLphk|;3dZ8;8FHj
z2TwV8+QEDd{tgx~%Z^$6EO79IgN2Scs)gsb(>_;LMBYv=QFKckJjqn)wvKXc2ym4(
z=yYqDgJ)R64qjkR9X!h}#=7P);4qWpd*#h-HJ70L`@jkZD;>P(n6uM4TGBFaFp0Bu
z-peWns~v1)A9t|E!CD9F9lYk?6$k5-fLGaNMwp)tFm_s|%^mX%f8D_b2X9D+LZ079
zA=5^)n;mR%@TP+u^4;oSn}h9+Ii{F8EbYOkA2qns!CMaAcCbr{rx7NM^EK6YR9CY$
z7V#Yi?>hL&!Osr%I(W~)=MKJb@V<i&9DMBH69@Yo>}M}y6dE4QS6WIiP0<L4+4|hA
za`35x0}eiOaL;Kb7ABjs4@->Y$*eKbFCBd4;E;pw9DMEIpo4E5e5+jeHkmwL%mS4e
z@OutB4t{X(Bg?IvF+yLSdCva^awSY1I)8ESD~CiEaPgai-`U?C{Nvycnf=qjUmOMl
z<;NOZlg~1@Z2vkq;_yF_D09K11=&>m7>V4@B2rS`MFkgCT+=Kox~Sx$vN*kbgUlma
z4pUWCa;ohfWmR`k!^K4|+PJ9c;&>PJT{LiUf{Ty~*M;XI>>}bK=_2JK>LTVM?jj*0
zekJm#Qd(o_@t%lrrCr!AGA<nHaPVZ*O!iOZObN5q9jIqzUF2NUa#7nw-bKMh(M3u6
z)cIW{z)6SY>{m@4dDV4MkEvBI*gV*VTMsnL)P^ojba94@GhLkIqLGVJU7Y5kv5O`y
zPIhsMiyfQFSQNCz5;*@Ui_LgqO|x!1-9=Lu&0I8h&E6UpjefV{FM)W#J6pw+a@JWc
z&USIWiwj(w<KkQwEnJ-En)Ceqrp1)7D3~vn1MRnTaiNP=E?T?bx{DT=DSG*_b7o;m
zE_QK=i@q-UQO8AF7u{TRchSzpWiC3o=<K4siw-U>chS)`9hMg@a4|!q1sbH~E-t#d
zxI*Q_G;`MA+KFDgn$)y<xajGkmy2s$Tq&KaTwLv%(Z<(dyJbJ+%+=e)wXE*2)rYwY
zQp*xxq|D=WF8aF|;bNqV0WJo*80un}i$N|1yBOl)dPW43Dh}6m7Mnt5f&9_c9LUM*
z1{XKF7%m+;S@J|S8~%9lCKsbz-0EVii<@1Hc5#b~F*K`Y!xf0XsJpM5#eT}fjB_zw
z8M%%5QaU+WQjM|G=It)-U_E*$^Khq&NiH_Hc*DhAE+)HJ=wgwJyIo9iF^j{si+fy5
zb#cFo87`)|nC{|U7x&3N3z_Mx+Rcm@k&jK==3UiH7Z132(8WV+TFM1e)vJcZys+fC
z<Hy$cFb97ZkGYudVy=rvT+DOvsEen+F^OFLKT{^O%<^G&*k)L~kGojl;t9519kEUY
zdJ$Qki(M>nvC_qhE|$7@(#3KY&$@Vu23;(3@r(;D5BzpWYkL|TZ5~X|b1t5D@q&vL
zDl2vz+Vrc5|C43GvZ7yd@v@6oT&#1k%Ef9IYh0{V39u4b2+ZK}Ck>&K!C!T;-o<M!
zUS~r+-E<Ikd0tE^b965MpIFn{=wg$LPhA{vvDw8I7kga1<6^6eZ7z1Yc+16h7jG(-
z9j>`kWAV-?Z*eYQM9ll!E_TUxx7y^XYb>^H8fWXG=DRNTy4dgHLxy$nzKaiB?2|rq
z*eYgrGWR=7tzU*8x%k+{CocYXOv`_>u8E5&XWely`OL-VE`D_JlZ!80e94j4#UU48
zx%k?}K^Nb!6CG#DnfiY1uw-g)GqHT<;(Mj@2bJ?-rKIsqmaPen%G@*mnNhPByZFn+
zuN?ec{O;lpc1Av!*1W@Ul2Z>?s!S4X{>|aV#lJ3&xL^;ZknP-Wa*w`laX*#;%Xt8A
zCp|RvP~JlY51xmthl(C5c?f%mc&O~5iiheRYUswZs)uSGjuU4~U|}*x{(N22!|@(Y
z@DTD$s`%i*?^B%MSfp$%OheQ|%tP9P?IG?V;UVcE<)Ny2B2DpPv9O@1%!_kh#)IR*
z^^VSK%o^JaFOr;xyoZJ!PV`Wqf`>XD>Ut=7sO6!yf2XWjfU$E_VKNx1o`?D#8pxMU
zu4;U1EJh}ql9N0%@o=(-Mjje_W~}2yInzcw#lxu{PE#H!=aS$*uVx;ad*~#~XLvZ%
z!$lt2csR?$*&fdKaDj(&Je=#Hg@^Mza|`BYnHI>IUp6Y{y`_f>J+$)B+B3^AzchSh
zHU=h=!izmz;-S5V4jwM`(AGmc50^=w9gU{`vq@!!^@CsTp`%hxArntwXAfOGboFqB
zhn@_sRCV*v-9ry?zt__smlL#kl`7)up!7H|(<|Sw+%+D0d$`s^9}nX_+~%RLhkhPz
z@NlDt>pb-LFxbNo1svdEpoc*o*wL5_A_qy1eyoV=r7+aPFwd;4*uZ$IGw;!uYi>#m
z_b|f4Xb-n|80q0A52HNX%yt{LK4@fyP^$TzixOHM<Kb2hV?B&xdp^;4QO;S<&lD5S
zk$-}Ri5~9taG!_UJ>22pZVyv9{>$uL9wvL36f{3}$<-Z9!)8P*je9&y^)SuDbS0bf
z9oNHtQ>U*PoGV!Odzj&2mWSEQFBktF9^|rL?TVUABo`{H_@h049oX1<*uxxIo68yr
zBI2J5SQONGl$9di7d*@tp>Uap$Hf<Tc*4U%4~slJCCOqBOFS&~@T8nP_t<Y63`OI-
zxV&dxp7zXYgu-W}wp{qE@Hyf0LT=~&kB_lDtn~1rB-@2Ad3f2wDi5nYY?g$k)_8c$
z!|NW_dU!>`bsk>zu--F|hN-}d#J|Wlc-SblH-!H7GUb~B=N1u4wtCnW2<d#&!wwHS
zC3#=?mWQ`J?DDYNGaJ!+J?!!Dj)!;UWDpwn?bG+EyR7#l_fzsg5X(N1{X!~#?BNp+
z-+DMiWe=Zv_{_uSjJJkWslIi9BirV(rn-y&f<dZU7qEo2y8hC`S029haL_aR9$YMa
z!_KSSOaHXz?>G*hZhi0JFpH7z%y+XIEj6v^2R48T<}tyKO2bbceiq@j3A4cKR}a5Q
zLjJplKLY-zhrh)C7XBmrH}E~;!OEI-ewmP@Towp;d65djidnPgPX%tTRpAa~7LQW1
zoK-bzwsfjxaa<PFrCB43NET7?npqq#a)OY-Ls^6a&XpJ?u`F^~<g<uNo)9LpNM(^0
z&j$K-*3@7|PDkiw;RU`dC0gU|P$7$A7B^=xI*U>kwX$fRMTabEXHh4MGqX5LLF#64
zTGkYPJvliV)X$<p77gV*F^k4oG|A$mEE-9|5yKx(PR`<#EKZe>F*2Z!BwSRSo;5e5
zP37Ax&}p8<8G#WhpRGbWUr6UUS)4217Q*v{{!Ds77A>>5P!ejk$)c5b>p*gm2)pgY
zf#i}bE){PZNZN^9mW97s=HPjG7TgxNK8uc7bjqT07G0z>Ad9Y9T#-d@IlHmav$$Hk
zhmdKwGK-!8=a5CoRdV{nV6QB$34AHJHj6%T_RZqDK;BQp58FTcf3xbqECvNSgR>YC
za27kOX=oP1vbZ6O8?$D*93|i3;v<A3h4i{9YvxK4KS{S_F(!)#v*zK&ttx~&vbZyg
zv8sKhe_R&hv$#zLCuDJZ5bs3hRQCeZ;gC2<7N%!$Zx(k2I+L@wJBuk<+#|^};Z)&&
zqpMGt3pS7Y<aNJrhHz#U4`j_vnct8e%9>qSPJ*+tm@Ngy{%{s^#ODeh5&A9Uu`K4Z
zHRepH$Fo?#o|r@R9G=KxVHRIy@pTr9vRItO>MYh|u_TM7S-hOZDk69O*)Pg0?qfWq
z*7$T5%d&VzCBrg*No08z&jym`M4lJEki`m-m4WYzB1_AeslniUYwrnW2P^_>Z5FR&
z@kJJ2W>H03I_ua}mRPT5u|A8}vUoj<cd~dliw#-4k;T?5wyD53X0b(NlaQ6TStPCp
zPj!Xcvv@0ux3hRNYc}Pmvm=Y0$EfWR_mzL(enl30vLK-{aj$$oQ{vyt;(a+k$l?=`
zeOc@m;Y;ZsihLyeI1n<r|A~Jpq`?C+PWk7Okkr;M5jjS2&0mCdFpF=pD3=3r_%@3}
zS$vnp_o@+=8wW<-zi{XOa291bQ%yg}>&Gm9%Hn6G^RF!aW-sQQot(c4f6L-`kw1j2
z!9TOut2d%~iZY$N{>kFs!1qX&TjypB<i#_M{dvE94i$2!nnSgm>6?58S}}+HFIbh7
zlFB(VUsMs2aJ(gQm)kzxT3o@ZkweWKGC4Ro9G}ApImB{^=Mc&voI@mss2VC?*x(;M
zxIMzG@wxWmPt5jsB8OxS=^X4FQVhtKfjMbbwdU!)DemMn;h9$*EKWLZ4qguRb7+u5
zHiujeb#thfGxr+v^~@-rGe3MOC~L(WN+Pv{wS{$r%r)1O91m%eziwyMG|b_|98Sui
z5v!&gkFB<PRj`&1HA^G@6qPw`oHK(@lbrc>;AG(`Ib8d<d8LQ))8u=44oyWUX(rNK
zct#Fq=5SUHXXkK^B$wrIZlKv(qy@_-ker{x1p#j<a-pzQ4t&Xh#xDwd+lXAuOa+ol
zMcNA6<;)2QyxIr89Yih{cFduZNaw(}i%3_6Vl3Tr=#j(WqN(?uIb4~;(|Ih*<0=+-
z4s&vtn?tW0uE}9&4#RSo2de_#19_^fH%lgmJ}T<IISdf#C%jJBU&tSqup$PElMKpX
zu=o(+^?{r_&#bH)a=0-Ewn=L8RiEKG^V+}&78D=;=5SLEqjI=8hp{<~%V9KARl&Md
z*||kHM#zU;%$NVyhVg32vt;u&@d-jIOw8eS@jG(3GlxmyEQBdJ+$BCa(7Zc$^q%w{
zNv7s7Er;nj+?&J993GJHz8vn)VFn9OcVx7~o0N{)cz;j|lsv=^qUD4?fAJ;x*{tiF
zS@!Uo7vdu<UbdM$TIBI4^OD0)IsBZ%{2U(7VI`|9hXow`b9g3)<vA?OVNniCa#)(f
z;+(nt=i4&;yXau9v2`=f4#;QsPtpQczpPo2WkO2M8*M$C!*e-2pTi3|T=ZF4|ArP{
zO62V`{~=Y}Vy&R%gXYoLL{1hQA98p<hYxaCmBZ>B_U7<j4r_8)o5Qoun_7N_<($JF
zjtqQhEr<0vY~^d5IlPv`>p8rU!^RxmzNL)Md^gaPUP*E}$mGnoLYs5gq8|4uUnEwt
z`2eUoU;D}7%^Y^*u#@#w$2_0iy3TY}?v9ebMT49W)nIn1mg%*d>Cqqb-qD!GLU@;b
zcBC1O=*wrmd|NVF(b~sxkA<JZryLOYfks1<g%5N1C}*B=Q}g2-K2hEI>u@&31I%)H
z>q{1O&McVu{>JCj=l{RxtZ$rcc@St0Uk9!FU=H7~mGa|XA<3Z}z7zjmcsP*%ki(DS
zyqBcfFFE|maW#){9>3-Adk+8Ra3qI6a`-cczjOG9&7-lYCU$|pG?FuU&*;ys%qF*h
ztUSu{I6jXP^5!XXxjeY##lP7iZ+cVtJSyZ-F>i)DUNuE32`lGOMWm{*nvgoj<xyR{
zMj&BF^Z&_cb~BckPPgTGE0RYvk5nG%yqVf!c_i{k<`K`EnTQWt=YC=~Gug-aPhsBj
z*m-2~Xpl$4ym^0;FP1oYxC-m#QOuh+uUHq^JaTz6M)Asv6!J%RlS;B&OITZ2N66^v
ziqsR<7xLd^d{8@pZw>Jmfq9&iM<ZI(zl~_Qu`D;q<7AOj@;Eh*)5OmZo-S-EY$j|j
zq)i4tQ~WI9*}`*#ey{J>*)*{8@;IMWkT>ra(YdsOc}25j9v9}(Dv#EAT$IQ4c??x*
z+vL$HZ(hy4Sk6m?mkQeo+X*id(pvjGIt2XkJURxPi@?r#bjhP@9#`ZsK=N*RbkCzt
zpwlCd-Q35Jv!`(R0h8dX^0+$C>6OPd0q-qxt*~=BtFK5u;dMfW?a!*zpE3ppl0kV4
z79SEws4y&#8}gW($K83{DEV07d7J|B7$H6~(7!2<QF+`f=jc3c$zx0&e0`L^yt!44
zy!ovb|F+5M_>+r&sf`!j7Fd{&$HY8t&*KhBxI$>5MBbUlBuVZHG&vG77gO@MKaUxC
z+!M&B<}oec(?#yh<Gw(`w_j!k{E<8!$eY#9gOae1Jf!Y3OE_Ejuy9Tub494b$&2^h
z^EeBzJ+O!7F+Y#T#pzs}$AW-Ak;g*uMS+BMy+nMe@X0{_RNmYRF!(chEN5vKOmBKN
zkLU8p7LY68c@|?H<@p~9SS#{asje3-;Ke*%%43t#|FYWinmpEutjc4x2u-o9h_B@F
zdLUUR@@gLI^LQ<9Zh}~${(aB}dA*UxMiGYfZ}2zgu_ceKd2Gw$?>zp=V|yNNvJ2$#
zc^*6R*qO&CdHgSrxAJ&9kM~)&W!A2sw8?kpu_upr@<(@I-pk|Nz;~~N{#Fd}1IhOZ
z_si=;;YY&%ar~DT*TBzyTUL%Q|42@9fC(@sh+1Fd@ns%A=J8V=U&;4-;n%{03jU4w
zw?ek1LwS5B&ZN@RVeub?oOCGpS^N(nWBEnoSK)6Q%=yq$NK=1G_?M7Q8vHkpBY9LS
z;J5;;0?G=e5ULVI$g30p@$$k7!ioh{DwtxdEN30Hc|UnR&g4WauaK~Ykk)DzaJ={l
z1(Pr;GZ~bJC5#lX)_-}gU`GCU0SS?00T~erQw5|8riI&*_!cO4<a7)0M5w^~mwW+*
z0y-7YxqxB;r2<YV;M4+Y6;Qi?lL}~5K%D~W7Er%{1_kr9h;v8ZuvJe{lr1qY-Zw0O
zzid9SV7?s)=}w$?WQ?(K0Zj@xxxl}Wm_2F+<WK9?Ry7YMPGe6g;LHNfDwyfAX#vd&
zXkIY0Teou783nVb<4Yr4RLtjC!Tp~C&MDy10@^am)y;cE=Q1&RgRw;c=M`{16U<kD
z3TVk<*UckuBrhzWmE@H0YRxpuw~g>(A?248j3!CDg1I5Oynv1>qRR?suOxLSnD<rq
zE+3P}^l+x*yw8r=rGTylj4a@$0<I{aTLHZaxTb*a1@xe)0+>#|I7-dKznAM-z?HId
zm5^gX%bjI>m72c23%Is`>kAl43l*%-np*t-d!GXOGHZITtX~1wF%;DpyO4X@<O9VA
z2?q;@2>I&5u!8w(*pM35Zavn#K||Ax1q?4>1XH5j9)Fu<Q~@^^Fs^{{1&l7>mIB5U
zaBBg~?*;E#TvYJIt*-iaIor(G0^ZRids_h$3Yb*DT?O#2lR6U%;BENr1+#c#?cY(r
zohnB1TbG!kTluo}<ZtDe-@6N#BCl{8(@yRwV5*Wmt$^tT+)F#G>mu3~aX%YX0jVO=
zMa(SVfdbwt;Ozn)EZ`xIq6NHEz^nphGqY-t4+|F*@I(P~#OD_9NCEQ-c(j1WRS1ts
z&PK@W%oiu&wiTCf>tHP`U{L`}3wTl~<S&pG7qCRlgN>Zcm@gJ`yyephhI*=ir&Z1j
zNar&JEHB{M0-h^iMPT{)0$vEXKUwe%(v_01a!2wt#R66p@Ol9o3Rqph8hNc_PZxP5
z2+OSo-flCNR|Cm<mb^IaFg<UGZz*7_$i@OTiEJ)_TLFFww@I>HNK<@>^QQO?;m$x#
zYr6{AUBGV)TfiPxdI8@SaHxQH3)sslF5qK!z(D_fl@(VD9~7{!fc=v5nKGmJP@EBw
ze^S8z3izUcFAHX$@Y4c5E8ue}94H`poY7%{5Lw7Xek?}(s(`Q65e`a|H_H@$!}Q4J
zcM|?2r2P8=4vYUF{4tRG%0DaKUnKlh$ejLBz@G(FEuvZxe--dI2l*n(74eT0j&Rs7
zn&I?cHpTMh^%(Lg<&HK06j8p2ic+W`q%X5Zd`#J|R77RTs}xOt^qb9bf#&f=R1bKK
zB5I0r@y6i1PADQ&1mg-95h)@n-(;X4D<UqQ2qY{tHWCK(OWrObQ-o85Tf`|voLYoe
zL{`cTi^vs`FQQaLts)9VGn@F0lfjG9p*15cqHYoOB&j3h&Lnl}7tx?-w#3QVFZ^0N
zv51q3Xe6~JLKb`DqS@b|+Q~)uosQ1axHlq&HbpcQIirX(i)dCvb2(X1jGevjtRl{4
zz#>{neohhR6>+}!xka=Pp>amUZbicD0ts6RX{U9d!}fVm!2QN{F*6=WSZnQyxU7g7
z9BL$NFC0`vhaxU7qGJ)Ais;Q;7ty(hE=BY#;!5dsEuvcy-HW)Q2*2sFKzbZw*%w|_
z#MMQtC~sX;G_9B2xmTd$EBIB=r-<u{=wC!%`Sug~CCuCnkaJ+syb;0jq!G4|!9@%y
z;`$<n7BRkv+lm+_wNXXfT*M7U+^B{$yoeE!`^}ivM#_1UkVzUXa;uQOw}^}he8-B6
zE1L1dZ^_h|P{gDn?vmHUB5p6@j-r`N@01!9c=5HU$wk~<#B`}m5#Ce8)FS+DGEEX{
zvTgj={_mCWKH>dBM*2Vz4;JxM5l^%HVfy1kMa+`#>>}nC@rd}t!Z||bYhDqL7V$(8
z3mKz?j~B6^i1}*yjMs0~e)nO)E|L!Ai-ShXs#zlCrA0g$n5Dw9BAzMY-6HlDvAl?9
zi&#^{+9IAS;`t(07V%;cF9g<B6p#L(kOBR=eyNC;i&({0p$E$U^}*FauX&}2bwzA0
zVoMRP%Fb&=ye_g{p=fG@8iQXWZ^(<;*(kCph;eHX+ltsNA%ko$;>{v<$Z7fozb!4|
z?ZEdfwNDz{B?(t(EW<rTyi)}4xT(yGh5ud=?-%iT5nmL|eb5I*d|1Rs9B}v*a1r|z
z)-TwPgJS$2%bybgd$ERkM)7G82a5QN{Z9SY@5NsRDfw39t0KM*BnO!z@pT$in36+s
zepkfz+Hqyq=2ZSe5kD636Nd;sQ!AlQ2|pL{3x_g3`K4M3O-uNVO|*zViukjLh9#U>
z!e2%FT||`<s+Pb<JpXVOu*@dRzY2In_N~&<J(IE$%84V8lozQWtXM)Nk;;KD?|Q10
zaB~HVxAxo~Ij)52B{T5WD8UgSuPJi8@PraVC4|KzB_u_nLTbiD;=+WGUpuA(-?WHb
zLMD*V*Db*-AuCBKkmp45B@{%8Li=Si{PL<*LhTajNLW``zl3@s8<rl`X;8w;FBpDO
z35`l<TtbtQDYsrt&8m-2;ZH81{EOzl$t=k(d~czIQ%mOC@Y94OJWi)s3C&BmsDw5p
zoKeD=CA28vyb{hT;p`I5DdF4_-rHq<;><0|ZG3U-ChN1h*1p{)-t$YipoEqsT*xx#
zSG~*4gOYm|TCGah^O5zOcA{FB%qK9c{V<<lG5sa9FQG#TmzL1BgmxudRx&RP&>HvC
zc%Q<hEECTUnre2iE-#^D3B5|VrerqHJC)2{DEDtWm&_(GuP!BY4fqu$bQA9`>=DR&
z@-L79ze?ol627lzZg6_5JlQ0;kY@6(=N(oF{Yp5lu~~3lR{|H|!-V~XbPf<1C>$gl
zEF4n8^&&%sXO)=+{0-tHH;N1wjwoSd2{)B6ifyulJ4(2-gwZA3qO|eZ&6pt6t!$sN
zGggvu!tuh}0-XsZObqz#C2&iS(M>AhE(vFpFj-`p@NVH0;XT5sLhc_j6tC$e+$+g_
z!uw0$+p4_iHB*uYgb%XbxmFa?i~F1pmoTS<cr7GqVQvYJl<;K<UzISgghxyIA&c;_
z5}qmH(>fM^(K26>$At?@ctT{MaFLKYi$#_QmkOU0J|%owxQzAN${1W;!VvBPv3QRh
zd9Gv*<mA<@uJwZCD@s@?{TGE_l<*Q89-qOL@YWz}m4vHHSX08<5?(3ceM#1p@M;O$
zO4we)`Vw9%VPgrKO6KJ7*Gt$?!W(RLbuGrrtIuGI@=bND%_VFpVQa}8gu*Dw53wd!
zDO*~hY$4Z{?W{LT*ipi+5_U^rClgS@+bpqG)__)4p{_MGVddLeyLjw#3GbBfZV7u!
z=CQ)TI>tT~td>@#@@4NS_}9EQ<WjJNeavzRAC_>Sgc9G)F5%-6J}KdU>|#AEo>}^K
zg|eqAmzgB>us$upx3={EHFX`(RTV*WldISjFnq=ODgK#!0Ta440_F!4hz1oY5`{#G
zM8Hr4LBXz|SO5!Puc)Y4P^?E$5y9R?P!LqGpnwQsyL;n1$DDWWxqo(cc6MfV_nqYD
zJ-s?-O$KW-s0(@1_>a}xPdJytu#P$zG%)OBF|a=<q<?4dqays1@Mj?dz9EBO68@{m
z#tb%zY!?0|+#>v4xK+r$+cNk=e0w7Kllz$Xu%>|u9Q_||S$w-IzyD*{To{<ye2ZCt
zeA~fdjqPY?p9`}>EQXy8{Zpa9u!|ISHSA`Xn2H^DS4aM7W)H)jvPrXhQ7GOhku(<B
z+i*o~paN|+F{C7%To|T>nDnNGZieFw`x*8(9AG$5!xb40G8}AZVQ6W5|3w@(t-j3+
z&E+jE(1%t9;Sh_pY6cg{sP(o~V6_w)ZsikA4Ov5FSvXXlQ@NF)wejT|p^e2SvCtp7
z$C{xsy(*RuZH4WG?F}77*xJ$1DdC+Bhl?MPNRAXa%8<uD0T_-EDG^d~tf7l|*F;h>
zB9y92KL%W$=Y(a#?!q31<3&yo_7u|LUWVQYFE^Yhev+_4*hhG>kou<>P8IK)NKP}p
zTqDk%^SWMnA7B`0aR;d1WGW437>;#xahz!wZ1~*pg&ZDY7)~PPDnqs5EW_DqYL)%3
z>V_I>R7mF-hN-DmDd74#S08z7F@q!J&y-Y{tqh)Ls56X`!f3-7!&n)iljlowoMF6y
z4pVZ0VS?deDf8n*!zA$w6Ujw}IXv<jMCHjEeN$=Vml!TJTxPhOC2E*rm}<Dva2034
z|0Y&>kaXxBpFqfKP%2zwxRw=Vn8o^>7`ElYG(*As{Ojn9;RY2OtB#B4Msb$Ybdedt
znZlcdHw$kO&aDlV{HEu?z+5!RhB-U}47VHZFuZMeNB-PtxF@OJyA<=g4Oc5=_p+En
zxKFM38y+w`s3<*aSZMK4w{wLL2_I&`i%>q#@TlQ2eSBQ_gmAuaQz|?u@|5st;Q}H1
zK4W}nd0c?c8J;)1VtCc?g5gEOONN&XT%KI@yy805%B`0WImbnY*CbpbeBH2Eg!*qN
zanyM;k+92KhNb_rxlB#edDrlsCi@xJh$^`u9|WP+4`k;<!$&L$zW>YciQ!X*k@s);
zc_UIGR~{>$p{ovIISbFQ&G3g|MN&E67*>i??JJG)wPBUWY9Zw;TGrAUsjW49tD(PB
z>-UCrhV_OY48IySs<wYL{A}?VkKBcR;-*&?V@RJj7=BUTt+{BBr&4Ko*d()?4Zj(-
zD8FplUKoBCXRoays}2j>4SyOsJLu0}Dvu80e;fWW1V^5uepTjs-0E9-EOLnNAfy{R
zIvO~3a_sEb#nH^s+_9@;H^;sXMrn7)9*&e_ACGmlr;zJ+FA*NN4IRWr!p6eAg$2SU
z!pdx57j`G|YU<d}vA-<T3yB9f4)l0v9wa<im=^LNro4rtrNbQVI7EFZ%y5ncv6UCS
zEp%iZhyKqpg>0%Hx3!~<<1pu4R%q*J=U~i>JZ^o(8fZ~rXfHwu_bayY_#^M==%k4C
zEsxd?7e7MCz#b`bl<;WbF~Sm$i<Amo9o-yfG5(I@9How)j$R&jGq&=|$%iswcSjG$
z@!~5|frr`&js@j`XI5`Vxh(e;p6I9$p-U$@xC_n8hCY(e=E;szJf8lH?WqdL%96a(
z9Q_>qWt=)gG}!@;fsWI~2MGr|Dn)4d44wiB=k3;pOpHKPedri-j|XwT5QaKx91l1i
zbexmezgNx-bJRM{l`~^P7*1=Bk&g2mvsII<pE}0`$3({{$7qiS^cW2~PM(kTcw2bB
z$GeyH{1pwqAnI713m14i>$xXis1YxAT;jM$E=}@y*3-AijwL-qk8HTqahYSL3i5L4
z+~BxTHm`78DRPyNqg*XAML5-QjmWi0>omu8;@1ng`LoM(M-zTq33)T<xweQl6@j-g
z8@q>_95*{|p||yQn+he`Dra$t=@I2DvpJgYZI0U=cX&L%`eehMj=L11yFG3o_c&it
z7L3MIfzOm<2Jd6ulZ^8ynd^9nLpWY>JS_Rs>i&r4J5NKf*Q1Wd6tTyJ^My|+K~FlK
za`5Qnoo!t<tUo#|P%C>q<9Jp!nTv&v=OlmL@q*(;SzfN2?Ux)cbG_u}G5C~l&w16c
zs6Nq-*Br0Q$eY@o-f%2dMwl!PF(?<21-3*wZ)u37GQQ05w&NYydDrotgiEB)F7NB(
z1R42IeLr%1?D)j-Y2yEC$7hbum9j4!%caJ#7))CD(y>C4mBO!tUkll~%Ky7-BL7B#
zS|hV-9p5^>Q+;yBU~0Zs>pFGp-!$;2thBs!aZ$%yMQLfeZBcROqIPXNrMr%)sjW&E
zr@M_9Ilivu?4hI6KBQ31>0W1!>s2$nD&1rFkaU;Y+H^&19+j@B9#vg8wz}$H6_fn_

diff --git a/images/nginx/rootfs/etc/nginx/geoip/GeoIPASNum.dat b/images/nginx/rootfs/etc/nginx/geoip/GeoIPASNum.dat
deleted file mode 100644
index 85c2cb3296dcc11843ca958c2a34a61403280b3b..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 4638365
zcmYgZ1^5-k+dX^l-I?v(`=h(NySvLS1Qk>a6uSdN5k*jJP*fBZ0}&II?(XjH?vC&5
zd;izZ=b7g`XU@Fy&O7hS&fVYMy<h+dAPJ;^_vR$tpOY{F1q?Zjw@*U@7BHa~Cia32
zIKYQZ@KF=EfCn5&<7gT_5CAV~yrgl@L=^)0&6q?$8pr{10k0<TS^~L&JisXfrw!x<
z@&OYKOfrxkC_pC$UYnu{0)>E?K)1=NFi-^e8u$h%3KRqG0qzBg10{gwKntKGm5Hh{
zPz5MOgNdp%PzER~yn<jk;LVAuyzs9lD%w;OUP*9*C{=+i6IDH+7En!ib)W`NQ+REl
zju5sQlN2rMN|pRyQXgm_Vnd)Y&;)3d?LvE&rc!MtnCV4tErC|R&A=@{>ufyN0d0V`
zKs%s4&_(nPf}I3A3UVTxPG{kzCdKn&xdymal;)yb&*ht_ZV+VajnZ_JAoW{;+a#X5
zfUZIqXLljD%S^ig3^g<5J4C-zQk0od4{7QN+@0;q8TA70174OP?iYLvcpP{@_=AGI
zfro@V3_K#FkKmozSv)G$p_1w+B!(A&CxNGcr-5gH=VU|<$4H(P0}@uB7bTNkDlba)
zrL1vZpdauG&|mz2!JU~I2zVEGP51yo=IV7J1A#Y$yeT+H@GZf?f<u6}h5Ru|k-r0w
zu={(!`@nGE6W{}0IASvl_z0LkNwIt^N`}*(I+5j5;4|QJsg4k1E+q>MGF?VW)0bKM
zuYgfmPP1=;Gn3S0QAPvb0p9~ZFe>0r5q|{62^o{^^^=gXf<Fu9njA;+i|}88--P@w
zSVx-1OG^I|%w+y=;s0=_37IH3Np=gDBePOd#6!EuYAW~kWHn82y5I~!4mt~%4b0&(
zO;!hiL%>{M9`gV!0JZ}=fQ90R#><2(0u~EdlGT@T$`a>tQC0veg{)#!z*b;&)?kg0
zwSwye*9&eC+z4zELT{UaRg)D7oo^G7gfURrnH_hpkX^uTV2^NGX3X{h`$ajBRoIuU
zhk1|!+Q3x__^9OVB5+KMj{_%wlRP$ov%opoKc~6GvN5<N{@qLGv)ki>*szKIKL#!V
zm&NB5LBohInXBNX8xt0;PQpM^swo4e0VSME#-@LdxPnuZWxzI2XNtORigFAPT|v*l
zLsOJ5NHH`J8Auz*F;KxkMFY8vIG8+wxdmxYC9i>eQq6Cmq!5Y)gcLMT$UtG?MGO=(
zP~5-|Q&dq=mP+?CQxx?Q21trbRi&h<v|t&*vIfc-U{iSm?8si^9HNpDpNjVy=w+a?
zfhq=CPgPY7G&Ru7Ks5u^B?C1C8yKi*pq7E!Qmt#Co{%~+1QS?aszfTR(m%1Gv^Fx(
z*gzBE9D;?d%?-3La4l13prwIU(yKFLFwn+82Ll}qv^CJqKznK8D$pSdN#;5t?_|WQ
zLqdh6i&(OHjSwo=8@R#19R}_+aHD~n4BTd*tF+#1;1&b7W-T*5|Mhmefo=x6XInEv
zWbiH#?-uM~pl3FQOzS<OXZU>v?l<t3fx!kIFz}#(7Yw{;pf@*(foIq{RXuE=kC3Mf
zJYwKc15ZlzF~KJUnXbnrd$eaECsHInEu3AR74n=Q_2&&_%*bCd@G9>s47_ZhuYrD9
zoBjq~$?}YGX6OM1-VptD!GT#Dw$kiPsSc7j8N(0*ZyWf=z_$k8F)-A?2m_xPc-O#t
zVmaKv`vyJ`{;}YP;^!m5%!qV5Oqw!bFy>Fh|EJkmd@iljzclcLa1K3ENXElg21Xh9
zI%`i$>Z1*OXJD*>pACF3#$yD35TwnI*;$bPBq9SCXW$nDe@XRM1HTFR)4=c9UVmiQ
zC^Izsj?en}+rU3!HbIcyGB%S9Ofhg=?(U`<m}X$WG<Dd(bShKTY6EKw%rNlNRK){-
zrmXcW1G5dx;RQQY%{8#lz#`%E1m_Db5M(MA8(1QIrQlNWuv~DN;C|UKD}>V_yR0(6
zDm~<$rpixKYYnX9wLeX*H?YmXR<Yb*V51P)Z!)ks%eQ0=XwRnY26h<OX<(OueFpZ6
zpWO!b7}zUaXvRXHMCv353>-9YNEB8n(obg4BL+U7rjBy@)6_8o$EGRfig?0+KV9)2
z@1y}@$LZ>ffwLTUhI%G}a|X`y0#D%P1TKg{z6A0oaM8dend4;xsRT^kflpIc_(3Bg
zIdA=mhG0T4Dfseqr4kr7U9sdOpcAkXuto6%8L*Rpo8>g~69`0M6HAytl!)iWlKzib
zF5$To$RmUu^9rF&fdmRBP$hw?2^12sZ~{fLtu!c_K&b>ui`!xe6qn&jh(XD$86B1p
zPEs*}vck({mGVL=2-0CCA(ay#=Uf<SHBp)-&@6%K3DiiSW&*VmsGmTC1ZqobU9qeq
zJd=TX;(;U5Peakk8;e<^Y?hixl?EK8x!AN$ppB3gf-Mth^&gwI3A9V#+61mkpuHG$
zmQgwg?<mO8J7tINBFZ&codIy5>l3(9lpDm1N@kkGTbRsAD*p`ia00g`aGO-SCUB>a
z+XcG`b{D)uaIS1ZcDzffJrd}dz}>>{N#Onj9!TKIbaih6y@Zh8CnVF6_+VD=oxnrc
zCYtq0;E@C#P2e%&4E56t^|)l?$pl)?P)`W&EVneQK9#`JqLb73SzZD&R5(*TCuYwJ
zzQFaJsa{OPe@MQRz{?``6=bh|(*2bL`ipYM%s5?iG9ZCH3GC&ct5enM2@Fi&jRfA5
z34TX$iW-!_TL}zKU`PVFW~pHbyfagMKU2L;lEBQFiq)YByqmy#32d3EJ`jU*Gu8W9
zLh-`{K1$$YF<=u5d(qqQ1nSLFpCs^U0waWfmcW+@e3iiGQf2EG35*opZI)t{w`Zdg
z_$CqGr+rO_az8-)Hi6Mn&3vrCJu5ymzE9wX1b$3lOaeb8uqlDf3H&}wjZI*30#g$B
znY$%{UlRCL^a%<4Cgjfq#tZp9fj^|M7c)luD}jG9O|#VBl1z#$G$T$FoFrY?IyHf5
z3CvGmK?2jIX;!xH3?VZUpc(tlPGF8Ga|P!K{yX%-1Qv<1CV|BXEJ<K_0xJ?&Dk8^S
zmJKo!27RtfV3o8oY*tqbUnQZgO<-LD>l4@@;zsGqjx_ssE?W}Vn!xS^PR~-?WSS&9
z6WE@>4iU+z?8-KgbD)g4FM<6DbV=fxWPH&bNFbGjnZ!ZaSBDZf%)K;Q9g)3yDS@NB
z3}>rj2^>%0gg9jNYyu~RpUMm&ct)`IY}vii>%1WCFYx>q{_<?a>Sb}xYvGEJtAc#)
zV<eGCBAJXY6Bb@FEL2nyI*GStt9D6PLdfe1v6FC;aFg(o@HwL-N+%IyZSo}%W_grE
zI?Ho}<Pyv+m`5<L;ON;Ze-Z_R7ZfZmSV*w2V38z>CNY1uDkez6kV;5XNx{vcP%M)~
z6;a5`CQ&Yl@=~pkL?s~=lVD-%$=Ry15OYq<t0qxRs@0RIC4@FLlBg-X>YRAQ+F8Ah
zkZyBSJt6f48zj*%iAKU3C(%U6OLJ7yB$^3tE!bSJWfCofj1<pw-YTn*w~?l{f-A+K
zeG(m{%GQoaoSvgPCDB<Fa*Ed`aa|J6rSN<T*C%m9604I~lf;cl+?2#uNsLP3<|J-O
z;+Z6#<;u=gw<gguiMx}yO{!G7CUHCWgH*c<-XU0OuDUacyM*_k!?}vaEE#f75)UTP
zJBfS6fO;<>_a$*Zo5b<~Q8N6YB%YA!!-9PTA4%fTBpwq^507U%lJi#QNztFmwmzK%
z4OpH_;`t=rPU4*;UXa#)NxUNDMZuSncsbjvuMqa?pTw)e2PN@ZwsoM80ZF``RcOi4
z-$>%k|0r)|`QRjmWH~K|Ch=|(BeKeSNqn5;?+f`r@WUiN%Ifb(W`-p(T$E3;`ls}h
z&G2VQe4f?6NMfY$F9j!v&DX-mB=M7wZv?+hVzdy(|6LN_XZa68eoSJI^c|bT&!Q|5
z9GApDNlXy_OA@~(@tg491;;1xhmb!7t$FbV_$!HgLjF#o#ymwnF^Ne@%oUr-NlZy%
zmhh>9GX$pz(s+8dJ6+ApinE1KnUe$!NahL7Phx?Pg-I;V+AI>ni-?7mEK8GECgO6z
z6@n`TR|(SQ=6Pyu66=yEnL?=))+ez+n*0<tCb21rvq_vwVzY=R1-B%zHHmFWY?tcc
zBz7dRGl_jtrO#bL_9U@8tMHiGD|~>YXut3Sf(Hc;39|3c^VAXHM+J{1ah$`=Q<vr`
z;tAn2V>u-Trv=XlK9IzDAy<>}qx=iPFA81~ye!DRS9n&>|6i7j6zmjkl4>G_WGc>c
zN|3}9q6BqD6s$O3IoV#WD4rnw1Sy2VBf%nq=@fEO$dy8FsnT;kA$d~Bn^pQq4Ed#6
zAccZiy-*5;v%LR&RaAH}!Qz4?1T)*FbP8os=pjm3!Kx`#OQD?b@`4ovD+*Rhp>hh}
z%~u=dt16<9uv%SshZH)dP$Pw!Dbz}#b_%UTuaiRE6dI?{B!zk@)EBXl;N|(MK`K6x
z8q)Iu)qTPL@=T>^3e8ezkwQzcY%WNh#~Krosb)y)6xyWFHidR6v=_6CPGc5wVy6^3
zOVe#BbP;lW3OA&1P1gQeA=jnwdNzg|Q@ADDdXtcwQ}|I@Z_QTeylV=#OSM}HcVz9m
zr@#m^LEf3dU0I#odkVi>@E*Z?Q|Oh#eJR|Z!Xqg>n!*DqJea~mDLkA)?`+?xGBm?G
zEu>Ehr5CF13*&4&#vG>bL<&zz8maUX{izh5PT?8x!0xnXVfSZ6Vc)R})e9-SDAjo>
zyp+PrDSVN_$Q1gf&@Y8y()5bp8!5b*LVw|}3ce;dKyb@K^?C{evz##u5>E0?3U3J?
zEI35)Z9#jHYQ89*!q61nP2s&1-WQ$9heAF`A#+%LBvqbZ9}9V4ks2=K6TwdfM+kl<
zNDrT<Fm#ccyhweS!dD`WPhnIFU#IYM*5(@_KL~y+IGQ_LNDqDl@Uoq&?n>fEQN{@V
zBsf+u(>hK#NBl*|uPOW{<afb8QutHIfkldiW`CvdcMAWA$m-M-CS>`<6ebCuoK>dq
zoLL<AnkLG0!5JycOkq|EMHj0%qRbXfGb$`|v(@=2EJ$G?)5udgg-v3-IE7V0mI$)f
zQX$I(m#45ItFKI<k&I58)hVnI{n5p0Z3^r75y0&#ts8_;VRdr~TT(cl!if~Niv51U
zZ7FOQvLl7vLg;g+kX?d<7ppx&_6qLHiZnZr!a=DXO5uo*!-AQPG&q{VF;OzTPNr~5
zsyQZ3r*I|(WkQ=cE23dy=3;d&h4Vc5Q@EJIl@zW@(<Q;nf@2pe7CPr?$&XZ+@nO<?
zcC7GAUt-ckO32d1%FGh#mT(eJh;70#;R@$wX32aI`z8Vtp&5TK5HZfhDlMFZg<>x0
zl3Os3AbsW)l8+si#E}#*QP4yo6NOEDsqmFT5fepCysXeyq2>}*%)~Pa&ngr*(R_(2
zVWOmoQYK29*lc2pi83b2n)uwr7beP?D9^qo`kJU<qN0f&CVHBvWTLW(&L+B;sA8h3
ziAE+Go49d_s%D~=iP|Qro2Vg5O%vZPQFE85r<W)i)G<-lM1!nYPe^?eyOt=mG&Ue1
zHWY=ViHW8r+L~x*q8Vd0(aJ<?>D9tSOCdC)|4K{azHMYsDjc-SQuXLk)!sx0G3#U^
zGZ4)>ivO3FDk?O-#>BNIZZpx9IX7{=iJMH^EKN5MWki}W!jVhW(xvK_>?pU2=krVB
zfN5~MiEbwDFmb0;GtRpU&%Z35*IijXGr_z0UB8JJB$#_m^fK|di6>0lXX1Vn51Dw_
z!~@c$cQzppGVL-`&VqC7W8x7LkBUu=WpRW|1)Cldg`9)3Jjr!8@vMobOgt@l$mlJW
zsprJ<c|itD4|K~`;)^C;GQkXRf~@v4@rsGJObj;B-^8mNcd2^A1pB^bVt}NAOT$oK
z&t`0(iA-h~(wim*i8u1D%hV9DdEdkbCf+vjj)|cr-W6{g>ph8wgb^|r2KJ$ek3{^;
z#K$IvN%v1U+%m=74woic4q2u?HIeBxLRu+)vn=*7(!`f0W}BE};wuxQO#EqLyos+(
zd}HDliTqm=qfPu|VyubpOnfhHf0X3US*CuFIWm5F8zW65necu#ad??xD#nR%#^zVa
z=WjBp-^KC|!EkvzDdy@g6BA8L61RVw_(xhN2xjue6`X8hiixS&OimNy=_Y1mgPAF*
zm?gdbjfVluH8Ib`3KJ_$aG%VVFcyp10uu|R$}kpX_rnrtT54jMiRI#)`DZ?9!(bTg
zDif<stYIeQQsu5#D`x9Wtjms0OGdcC#71di-%ZlQDQ`8gjbkY^P}pu_hY3%?SJ=sn
znK)+RxQX2+_Lw-tD{-0HYhs^?{U#1b{B*_i5*Z1}K|#hq<*<n(CXPxgV`eL-Pds7b
zq?j2Br+BDJNEc0<;o&dF7eqP79WLo*_PC|#fu!~Fm|QY(*~AqSSF`!2$X9%5z#;Bh
z9$#zym#c(AQX!>avQa@RSSk*c*~p-+;3&8vQW+*2fE`)rAy5bvN-309h*W&J6;vps
zkXGQ{&QZuE9dj$>RmdkikKml;D!=;QC00OzRXV3nB1>VO^C~`mizpOTD3%?a!L!hy
zgo<ZTQjk@Oyl~1WR92{>P*$OwLV1M>DqejW&=oHwVnuOPNjmZZWG{+U6{;yzSE!*-
zTcM7Mz137$w_IhGsg~Gh=3ZA?>j`GYWh4z18Y%QrxKE+6LKB6X6mC{%s?bc~1{JS+
zb9PZ^tI$s3WMC~7S}AbW%mBApYlSuv9yxusSLmS7QK6HH7ndQi@UrTx&_z;xt->|*
zDLKik7o)vS;d%vrrf}AD!Y=U?B!JBJqbn-6DBP-Wn?hHG+ZB2!^i=4k&|TpUg*#<w
z=!6q|(8OJ`Z8!wI(e1J2>TVSuu#cFySMqR=gq=Cw>HL0$2NWJxctU2!3_qyQTNd;o
zg-5v4mc~<lSbFuz?#V~R;4xZecPxi{Qh`&>y+S=Dtxro}bjW-@r%-W)dXbTEcEVo}
zq}XAFdSFEyCm+TRTcP?XyrS@t!p90fu2B6IhA6zPFnxu3Rq!>10YY9E9H{>H9o8EP
zZ;C?8K|<aV94rPDSFTXzN|k@5dPiZX!n+FZF~XIKg<G2VzQPAt<wG%`-f5-kzETZS
zcx<H_E-B(3_(aI3f+GY!Q}|rS7lI=NX*qDE8l~_xGpX^Y#y89iM_;ApD~x8BmFhc%
z?-l-8sTQqNyH~0LtJDwN+pE-%3S$(0;tpJ;W+*(jN{v<cSz#Pkf0de~@Q1=L3co7+
zrtrJMc!j@2Wb2>Oi-dhyNdC?$6Quh;Ql*E9(uIU(lNF{YOcjIaqEnnEO>{^n8MB$9
z%u=8@o2P*^v30J(yey~X0)>SNixd{~e9$PN@#8ABgx99RZm#SqZYwNPST1~p!e)gn
z3M&=Xu2QQMRx7L_m+D5bStqz&6n1CXAPVhSHt__Il31;_^0b$xZTtvO*daWl(2@r1
zOC;Z;a7N**!d``a3i}lf@Eh0F>ZssBg(KqXkV381>aZaDl4qP8lVFZ3oKQF^197a=
z{1gzKJQEuOJI6zShqH#OaY5mt!d1mLieiIH65eG6PKVViQq6EfBcWkxD2=2>N~4d2
zoe7@E@U;G4M_asEQe}{I#c@3iUn93h9*saF)QB|F*)Fu92jZC3ammpj<`Sfbyc+p5
z3TPCRaj8?xFUT+oiCIyp(nDd5B8*nTV=GB99cPbSN@|qS=qQ$@HOfewjbuh;HL7S-
z)hH(-{gl_JAbu)pRFY^JQe{y{Xi!a~x{lYhzD5m=ni_SbFGsAU|F`b7Wvn`a3?LIm
zJ*j5q+d#TB6l9hfYc$blDsJhyjYc!!%{5wRw3N|X333!JMC<?Xwi@lE+FrbMkdB!=
z&~qn^&Kg}buF>eB(Np7Ejq5aSlVGmbxIyFAY@9c0+#>v@Y^XP9bI6qbI}wtu8n<h7
z)99|TP@3+b<!Y5@O>B0j#$Do}l2q^JOTQWqWk<PJ<Gw8K#Yn{FevJo2d{D6e8r54!
zCUx}ruvGhK{3P~|X*|w-wN^c$v0#nbzDAu{qj*A=UaOvDCfBN`1fLdsM(|m|=LDY@
zd_j;O94~A1WpdKEJB@xCuV`G>xT4Wt<5lKltvagln#KT)O;UYbW1z-3jbAk05aoT1
z4}`p_F-XW;f`bKz2)-@&j^I#1dVW{qJ>ie9RjjgnDAg|oKN9>{W0(-O4%hfZ<5Q`Q
z5d1>$GmXzR-dd|zXf{&BZ?ZnWlIkeIuQN@8-)f8&!Y<zl`Cj7(AwLR^$+rHaF;@7`
zf^)?4uNuE;EEnZ>jXyNzW$pjen4~dTW4tJT3H~kkkKhDBjyq8Z-A)lQTX1T&b()ar
zf-^K`3gNtF@v}^(IY*Sag3JINvdkB<fSXguqO87H$P$gELY8IqOwv|ptjsE_gsc`^
z!z)Y3x@_xuo?yZ^W|b{#)n?&aG`4DN%j&y@Y!}?Y^C7G65|RmckMO;M`!x0oIUvZn
z9Mm`@{IKAWtbS^(Iwt(M;EAk$QphQd(^=(=kh2=+gq#<=Ab3%bqg>Lk*2Ss2s^b^>
z-}dm12g5?b!qYCEagnr;vQW-Oc^jq$Wnr0x<rcIBUV8Ui@!v9*1=~WEb;_|&$wFld
zuC#g<d<%hv&_W&yc`Za1TCY>NEabM37M>$W@riY6<huA~Y}z_?a-GU&A-{zR7AjgO
zV4<LeQWi>ED6?J_vQWfAQ44L?tHPq(v0fFkP~1WZ3nfK)VZ9o<UeTCktdy8bQ#nDl
zmK8!L<+Fq~bJwd)>s9Fus_6z*MP^sqLLCcLEmX5m-NG#!R80#bH^iaVu<+;x^~MG@
zV}q(?VaEogH>$c8>RIS%;cg4{Ei|xj8~s>lXrYmX4i-9EXl$X0g%%cCT4>7jZj8M(
zx6mxhskGgwdTms#m>&!6EVQ@KhEujcF@x;F!fHm(U?&TmE!<$?MhjgmTw~!{3)e|U
z8nYwK*yZ}Hw*fNBO%`tE)GXX8t+dIQWeAZSf7_^Tx8j@LL7P-JA>A$9!OgHy-D%-2
z3q33x+^CFAs^})wc~cx)Z=!{JEts2CFALvqQgb&c;+{?FKCb3w)oQc4d$W4L!h;ri
zTj;-8eQx0k3lCX%*g_u*k60LNVF>eV;V}yXEG*fg9=Gs>h370hFJXMXSv_gtDehPc
z<SbV=t7j}cE7duh)lLy#u<)WNeJ$kMqFxeSX^Uccnd>5?pM_UM?{DE%3$JlrTVjWO
z1xbF}qF%Q!(83!s^w}-yEemf-mqCKt#nRat_bRbfy=~zm3m<bQY*p`A7|NyDs@}Em
zo`v@<d|+Y!R`nt0zE$<#swQkzOSh_`+v3y>voPGkXWP_g7CzyI*``>i6F-&e2&PDs
zv4SHld}(1iFM(a^D+@=qsh=&3voOlS*A~99@U4Zh7S?W8Ionn3?P|1z@3`pO)%O;D
z6hi)kg=e-ak}(#3Vzk145!|<3UEZ#Ku~2)5`qRRA3%^>peTRBthx*OJpdIRW3x5b9
zpRz;!W#MlN)3`1>)jt-t?NE~}OtvsV@-|Vh^3HfhQ!F&!siq2EyHk;8l+SjmGdtA`
z3o|XuvM}4iVy?c0ITq$xSZHC9g-*NFqr22RCV7{dFG#Y$!kAr(<iIX<b(iY4TRpN{
z4c)DlTG+Zf9&z+;HEFk6VPPeYCL58BRTfrT*ll5tg*7~~_NXm_YX#R?SZ`s2aBkgA
zyh!(`joIpEnG5x{d(>7D*?pUk?K~5*%1$A>IK(DJgI;^ob9>ZY3;Vb(d(?gl7cH#V
zrw;HUvT(@4sy!<IK6To{VXh`m)V-?4Ue$H4I%?sVh2s`ZSU73n^j>w!!jpT|;Js?o
z-gtH_6wg>V%X4F&I>(*1PyMq`-Mvqp=QXlVT@a+%B@34=T(NMKJ7mA|Z1AUCh7Dyy
z+t{;DC2S;xkcayfF~v^-QA$hIve9I}a%|kYU)gqiI9$6w4#2hX;(o<4bieX#1UCNK
zuU70=2llJ{2UOaQcWGW5O%EuN92>c8<Q9>AspJubJfDpL2ULC=1#A?wG3J0`l{cJ)
zY!tRp#Kx=xsyI7x1rMmAHi}6Mse^G0C2f?lQRSd&dQcTOs7l-5PAEfH(n?-d6sEL-
zjfys^I;iHLl8wqXUbXQW`%<)VpN;!%RI}qhmYdsXAz@dyQA5V6X`_~n+BWLgsBfcz
zjk-2&J*ev0m~c=HI;ch+RQqMbQis$vhg3rwjchb#-fT1z4-Xtt0}rXDbZdiz)!B#Q
z`1c)BEp5y=qHea)%0_E0&0*EXMi(2`*l25`osFW0ReKwqYz#fDS{zm#7~WykQSiRQ
zYRqBP*~U~MD-Ww{ZQN+%CL83}30^OF1E+aJQM~hr>UTtaa76ulMBTz!*jRT&-DcxX
z8+Y00YU6h9hoh<+r+idhe^li<s=C{_gNr4cG54_1)5hI4Rv%ToQF-#H8g^7oJgV*y
zh2p(JdI|Cq_Q+B7fQ>#j9<lMD4OUrt+jvMa^ROTldgim5;>T2@W9m^GkJ)&fvp%Mt
zu<^8wXKXxa<0&rFG4<jxHR721^O$<p#&b5FxAB6F#m8a~2ahT5xGHg6y~qfUtG+f~
zveEFkdRdU<n&YaUjaO{+xAE?A#gZZHJHW>4HkNRePpg48#vWI{+xWxA8#dmwG04VS
zHa@rUg^j^BhS>OotFubIE%=@wtM3RIO6NkB9*-ZAyl>+J8y|}Dk&TaSoELpqw%2eW
z#ZSb>^#wn*F(TXgnGkj#Y2!=bKil}q#wg)G+W6YWH#WYP>bHWU1v4Yk=XW+T&dGnU
z@$a}}#Ox=*v4WYv#tHw$#;-PhvvGrjl=1fQ3H7Iqxi;q67|%=I#^21+2{qBiBwjwe
zBDkYYsM9BucT!b7sV2+%PPH-3M#qzCid0EnI;p1f(&hr4R5JugW(pa3Qq2}JC#$bN
zsZO6%RZgk-HWu*GIHevrrQSNF7TQ?ErDrNmsTrr#;Zv%}X|>eGG8@ZntgvA_a2%}U
z(P87bjT79HHrCkKX=4{phSTcp(`qdPW)4rQ^)_0bQQK^6u(8p`CL5b=Y_YMGb3Co)
zN;!L46*!|Ror#g+cIm=iJM8%Lf@C*OP8)~0Va}+YXVhLB2V_U_b8sJzot<jG;Nxf1
zLD3Hha{F=D9kFqg8|;ia#<ZVNB*gV+)JYqsY@{5R4o=%RW8;#I%N*rQ{QU5&jdPOK
z^ENIB$$d7y7FaIwyb^xRS#`z6+Ox`VaFrhc4(>mzUOTHso>ddYAmPLZds6V&S*6Y?
z<v=^I95gzox}H;g&MDq1j5rs&bscyP3NyDCl<y#Lkk3JW2cd&VJmhvT_MAF;PNk)q
zBUt{t%H@FA^t|eRUgdG{+<BE(nn;G7R|OnwJg<(OR|Opuaxh**>Kw6%gQ5<KTu{Xv
z6n9WUdhvN?Ne87IynI1ba!}eq8Txln!9lGHs;po+C%#BoWg*E_Nh*ro^Fr*rvV$rP
zz7am*f~xMI21j@BmxG!PmS0d~99+DhNNPE#?Vyf>x(@0&c$QOeP~SlV2e&x5)j>n1
z%RwgxogFlG(8NJ&2W=cQb<j*)wQ|thK??^hrO+oi@sJdff0ee3&_VmG8TAehI*Kv-
zvYNpz!mo93or7zHXB=KH{6+^iIk+LK|F`4KB2u}{L01QlIC#{-?GCy*=;h!(2i+aq
z;h?93yB*vqG2i8&N48hSRVIvkvi|SQMw^)+Tkm)9po8Ah{ef)jLt_81gFad1-|5ip
zV-6k{gQo<a5PVWRWTr-&ryV>a3Olk;f8N0h4nB17k%Jc<yyW0b2ZOjb9Q1YYnu7rj
z`iZOlg6#6je@1^bE50sdpo2Gra4eS05Sg*wa`3i;cSIa4F$~E@GStDl4&Hb0LALLE
zLNeXyhpU|NM&)A%BOH9@V3>p9V)lvPr`Zu{lQI6>!Iuuca`1(Nk=fQv(<ldDbL%?z
zHmhgGB93<Oy@Mab=XZjfGRu!yp7Fq^e?ReR<<`BZes(a<!7r@tQBPe|zd88T!L=9T
zcLsV~RKGj;!@-{pKE0^UUR2&C_4md2^7-4rKMwM`$me2$gNY7K@tATj$-!g?>m00i
zFohT9CAHLv|2CQGV48#J4rVx*<zP0ij!SALH_0V6<WlVLmP=}mgSie)UQ*6wHP69(
z2a6qSxTF>^1DDi72aD+BQheh<dm;;~G*}`h1IaQ@)4>X!376Gc8FwWw)ywLd%W9Q_
z)ehD;c<XX}>`cC_&RteTuc(?=)CL|wyx6a*!wxn%*zDi{_tI6h#lcnw`yA|du+72E
zSJWN{ORuQy4t6-$>0lSv{fgQxqu+l;^}V84W%=%kQdiYpo?TaC!qMwoRX1N%y|1c+
z+z(9nRkiABJc|QY)e#3r9UOCT+`$P>pNA@RE$AN5uR#xoo(R1X`U-SOLpL_`83$(_
zoO5vAK^~VsxzZOHJX4+2zKcr^E;}$>BwYU9Q(s{k4ZYjYS9v)bnj`Yxad_U)?;1Mk
zBIUwzVY@J0D3`xH(mfOUoT0TFe=ammXgV*O&@U&n<HB=eS8R1%{-Q+BNazg-eKes1
zi6JDqNV{m4)VZX4j>{jZ#Uu7f>fE9XOzN>oy)YTO-ICP#T{Lmg)I|Xo1zi+!QJ7Vw
zYr81oqNt0iE~>dG=AyXEFFIpaC0vwru{WhFxP0GLmvT|sMHzNaX;#a+xGts3xhOB>
z#gu0C11VEdx}u9pjL_7TT~rZ5UP0WFRCiIsMNJpA7^<mXGxay7o@nZ|VsOUPp3-$(
z)OAtMMST~ITr_s$Kl!gwx&gZ=-O$C0O8=?!E)|E$Ak$ix)w-FB<}U7VaVKZtqNR)5
zTs~yetz5LG2NyR=a@x4);G(08wo;{sb}rfrucI~p>hI*nAD!0-b{6d7f;ugU*K*34
zCas^*`g%U%({UI#xfr4K?^@sNf;dn3Ey8aV+^BU|H~v=Tb{E}TKGf3PWzg3wO->JY
zx!^a6_c4B3_i*`SL-%xXw~H}sWgcvOovl|``d$~rUV>*WeZPwbTs-Kaw~L2dJnZtG
zTo1GLSX(c!bssl=+Ed2SkGXin<-Lu5RM2xY`Qt90aPcJ5<>(QPeoEqb&e7wYIG$%Y
zO&4=r%yZ+fP@i}4o*RD``~veYiG9gMUl;vkQZKu_7PzA{r|^o4gRUOxqQ8r0UHvL!
z;DaC+16;i6>epSo5fcn###~K>ILO7%t{&pzZ6R+74i;SPYBs&|ABFn6e5~r}LY}Va
z>G!##R>ddk2QF^%^oK4!a`CZ?VJ?O<^Dh2y@rjF1c{MTAcu;)i;&T^YFhWm%?CEKq
zzU1lLz8>jfG!yIVFI{})Vw8)oU3}x>Tkcq2clLD;U%%?>_kI1fuO|rd-1v?IL4WV!
zkRKl-Bx79s;^J4)e{wN44j$Cm$}&y}jdKEBEzqq4{hN!Yf;i`Yx)|@GO{izO_{+uL
zE@tp*4fVJ{|KnmR50Fq#a52%vBo~uiOc7;v5F4<G4}XXmKF!5+F`!$D+><1;xWu96
zZS8Cqb7Z;ug|R;0#R3<vd*Bz@{O)_9i|aky;9-%A#auoYOI=j<P$EY!bFtjTMi-m7
zMMM2_s8_gH>0*_O)x5+ay^ixer`EVw>*9Q<mxlUKsNG1{kMw#M8(j2?^s`YsDBm2|
z>|zT~9uLJmY<02C#esP9V7rSQE_S-u#g*EuhDQ3UNKcORnn>?<vCqYR7kl`bxJB(1
z1O8b`vxAZ5pZqLNS|4(8*u`-dyyIn4sk9~@adA{;eT>ITTHhh!3u%4A1@WYdQ!Y*m
zKjX&#3XkF8EKgTX#Knhc%|f#aVsKILlHg?*SA<*@W7@FLIN@=ZBJCl^L&}RiI38RN
zrf?;wy?AKLgDvF09yl(WJP*Eyz(bfdpcws!=Mp~!JrwegTX-J9ydLt2S$+=%vi6K2
z<CacH3X5LE1IH~YoH}_44<$X6^{_v!OL-{mp^O)2k_+)`IxcI{@s1)X=b^j@>dg6-
zw65TRPlGE8RubewSMgBQLp2Z8Jv8H3Il5MkuHm7khx>BkozRYohj(*yZ4Y1O=sF%I
z<mkGBB=tPh&+-OB8VWY@&{#+l!KQ)-b2Pg&_t3&aOAoC)bo9{4Lu(IhJUoy~_s^x<
zdhy5Zjk$Dt4|#Iwc2cd8OH=9KfymYma_P<<uJJG@m+s=>$6T6)-*lYFrLXlsyiPFo
z<MG(RvmT!Fa5L92w{DqF^I^*^9&Yt;n}@FS@8Mn#w|l6OTi@y7E)VT;>uw&N%&oh7
zxWmKX+<H`QP3+;Jr-!?lt~`25?l_XGxpl5Qx>FwAGmq}YjCpw6!xJ9v=X5+g%vH{-
z`OVSGdGyFU`autW=Fz=9Y{;V@l6hUtqZ{SbeLOtk;Za7IS3e}>G2tKO)lYhO%EQwh
zo?!y>>V<jZLAT_M-yz^(o;RPaoKHU=&r$dH@G3WnhZjA(#9sL{MIy_~Qtd0)&%-N1
zG6t_n-vOdfXO~PXkD7sU;Jo4CO(BCkyv0;V*o=V&LxhvCI+Q!a!<7(ML%iqVeQuQi
zUj_JpyWK-xANhQI<l$ovhddniFwDc(`Sh0_z7jHA@DmT8dhuO1n?{K9&jdgB@P&to
z`Qo{c6w4#|^e7S!Yd!FxS%Lie8xNB`O!4rohtVFs^YA_Ma8mu_;Ro&z55Ic&O}vc}
z{Mo}#LdFWxbFKWb|8Y|Nh1(#%9*|%Eo^2iP;g78SpB^&CwEs)QzeS-vN1PzzP85BT
zAjPRd=6hJ+VVZ~O9%gu$>0z#iz6JE~{Cbv$3I%k-0{Wl)dNwz<2a@CY<LW#QpA^v3
z3dG^<DxeqANkP4u=f8)=9+r4m>ct<>%RF2zpbHk%wF>HP1@&?dD?AJ+s7DvnD?O}Y
zS_*1b`EnX@dqKU%!<m9QUm?BD!+P#X4;#JsmTaGgO&&IT*ydrohb=t(89*Vuw2<yv
zNIzUC4r4$ey~D#!4|_c9^{|UrD86ZFURdw;;1t%C3&&=671n(V>rV>nafS7MFa8Sk
zfQN%#{6`k~%))wmVa=D*j__*raFV-Xg*qyDOz^meQ-!rIqEC4^EsE>o43B-`rjK(%
zE_%2m<h+LqLg=Spk=XNPsV00}5pq?K|8N_d3_+4AMRYRDQ$iRybtPQ;u(GYT4@Y>$
zj5eNBeZjy-C?xWc_K_o;Ho1M|lG0W}qLRl)H{tnx6!0<1$Jagz`tf&9*ZR25M<E}D
zeH8Ig)JH=fjeHdIQQSv$A2s~=@mdKVrF@k3QPPjUIvHL>Q~a@rF5}};5nb6wSs&$m
zl=m^Gh_2|zCu#*jR>`*((Uqi$g!WaWS5+U?e0W7;rASd-(?=~I3ybOo49rIzA0vzE
z`aY@_)%O+EFBH{vebl2U-xR-FRP%ZApG7t8>7T(g_R-eI`eJclO?))<(M%%0P*gYf
zQL~tC;iILGj>U8<AFX|~k?>f3vsmom=VF??osafDju+D%e01?~4efmd#dRl6yf|<9
z;(4_z9@}%Ehl}eW#r62&`g$KX_;{OHEv*+6*EjmO*~cwDZjuaB*<D=U>f<&akNbGS
zM^_1~n~&~3ZWnHq&_zn<JAB;9A$;7+2utX@1n>6ILr70S4$UUws1mxDkNbS|@o}+)
zzTd|KJ|6P%u#X3QOevvz3zE>7C8JPeE35fS>PLJ$>f<pV<WxGA)Fe;(c*@5>A8+`0
z+Q&0KUia~8DSc;2{j84{e7xx6If^AU%kx5pmDDf!c-hA*KKlC@TT=J+(N75ZW+^1E
z`gqNUUrG-UtWZj`u-dVd?p;a`FQvzo(r@}$RZ3SYtq1woS4!t8ty`7WZ}}MPV~CGC
zO6#Xe>%pZp$vZxV%0%Afw)b(Qw0_UW+|s-okCEjAA0P4~Kx|n3I7>Lw;XXd`VVBXL
z`uIZha%J=gA)op9+((BpnuV4uBYpHNqrdd=l^Bpy{Km((KB@$$8ep`K?|f`wb)6bq
zMt{$=`<UwE2OmHB7~|t7KRzuda_g4SV}1PM<5%H73yu@FY?@d`^AFqKeEja?4<CQ}
z_(z(?`}oVp-#%1Xy`_vMmM$A(Yr&pn`KL#`p#1Y^l8?z;wX%9fS<QF4c9o6)fSu-J
zrjJ=XNy_QzK4!>%t58mNET?DllJr5omPz9_E2o$ESn6Y*kNG|p@M83_*vBGn+H#t$
z{}NVNSY760IhV}GcrjoYG+QBER&sBMNI$E6tnqQ6oX%A~?zoQEDX-9jYJ&t*wY=tc
zWE*{K^0ArY7L2PbBwKxK^ReB>4o*LS4zSb5E+40PEc@8)V-J_!$59`9{rK;xgM#~f
z?DzlwFRTMTT9l9f)H)=sB!`9EU0xsK#V-7m;0eK#f_$ow`5SFuc}@K+4}Tw*d9eF9
zF9!5;Nyr6WfLVnDu_K$V`e3hQ5J$y-wbKxi5S&zAe<AUtq)G!bz*<o*m)BN+<rQ_|
z0CoT;K*b8$4G;xL2k-*;0oqoG|2Pc-gaPiXp!-+QA5_p|EAa0}<O+~KK!E_c1LO&i
zH$c7sY?>{F5AHTp(B&(}f3&u)s0#)t#9O9{dQ!!>+M}X=uVTEniv%bdpjd$70m=uc
z5THbWk^xEuC{544&O8a+S5cP<pepII0m=n(;8)U5RnjA*&|$>@e^k<p_E05VDL`f3
zn^n;K#NiMND`|e^S1myA01pMI9-u~mngMDB=oX-RfZ74-1h_50u*$k_fO-Ks2Iv%^
zet-r6S_WtppkaVU0h$JAM$bo-Us*Q}(1bBpj`vS{!R7&4NTJSgGy957tpl_P&^|y1
z=2Hrr+KC^U-BVf9Cewx8>7;XjE&*-|aC3lb0$dy5`T#f3LuH*A;yU`T9A}T-Zp=FD
zD}LztmH@W~U^NpAH#T|K0JjGi!(O3YQdu9Ytnc80(ocYU1Kbs$M}WH}?7~%a11UWN
zbgdGP@^lqVu^01GML!teY88E7fQeP~)++k`01pJnbfIOvs+wIM4$vpS%ZwoazukL;
z`)#{=D!`+hPF4MIRsC3i#{;}pRX-76R8`ILq!7mTbbx09JR9J-0537a)%4$0^^&TZ
zKQ?(jz`?5e1;G~uqiXt*YI;yL-7ml^jK79{CqVxIuLjs(T@T?90R{wkE5P6YpH|Zg
zs_ECcv8(HW0p1Akrp$K`m#n%jRz05Sy@CU)>yg#<g6f)1>>B!QUKcfV(;9kcfOiAD
z7vTK>BLaNJ6%6oE4L!St9v<LB@&G^7&>xH2VZ!N?h2ke7ei~qN4b4K4r*u$Le;%Mr
zP5p(mjuh-tGj1If;A`%^5UoOd6X4q*eq**+h|vMQ3ve{Ru>jw52qucJnygema&ZIf
z39vW7PrM8RObswCz|R531@T+HlLPz`;8)=j1b-9!E5Pr(c7*>aI9~9fnwq_a3;r$2
zKLKV-b)r<+I!VYH5vTA{lGll+i?}qvvH&vz%oKfAfVlzYNz?2Ab9iE`iC+bAYw7tS
zE)1|p#09(_YsEt^7JZ4}?V=2>rB~L{%LA<7wOLnh53n-8ssI}TYz(kEz?uN-0|a&S
z)mnNjSE{yN$783qzP+}dTw5Qi9lLE;M{g3JTLNqqvYC6hjviP?Z<A`Wt}a<u|5HbA
zuA_H|vNOOg@wPj_lXYV!w+ilKp7*H3g7I5Gw5h8PNcCWVLqe#q=}6Xw;_(0{c$9_E
zAx;K372sTe^Sn~He4A9YdYZ4>oe6L@h~L>;QCA<YtD}1QLV$|_uJG#PMO07I>{5Ws
z+yk3bpL&{a;ti?CH}zqJNQOv-7$f3>dO8t;FX`>Cr}@I38G?jWtG;HF6~YdYD@5)P
zPKa{#wHv|<!6pt7zY|qI4#p1=ga||Mg+TUYR8fdt^>sSLfciQ|I7yxmc|#Nm`OFYs
z)Yth!6bMmJyyce|*pYG4Ib)-rA|Z-~@j1z{I8BB(xqduo@en0KlnhZS1iwM37ov2C
zG9hklsCzZkWkYPLuPcP87=n*e%7rK&;%t4Lw}HO9fvyyya)=tzk$2`*LcGvGR}H~$
zy?H~zv8sg_)<9Pev7&)K*g)3|Q7c5Ep{^aGQbXOmp(d{*N?pNx4R!sHSCDQHqG1@n
z7}F?3^AHOg>c%0Ogm|K%ey^eay`gRzqM1yG?<{d3-dwc^vA3ai8tK-eKN;ewkk41q
zHjH0HX&0hHh>p_KUKIA~6ryn>eOHJcAv%ZX65^T=*M_(`#4YT;Q(YJ0rVt|=>FY!A
zrHC6s+|Wqh7~+9OnuIvHk>-zNZVho;h^`@S=X}qrm5ub-M!Iz4_^+659HO!2?P&K9
zcQA+Yw#=Pj{LTymAok>9h4Ewa#~51}|JC+DhzCR5*;wBz*h}!f5ce~^jpM8mdvlF0
ztA|27EM2~Dtp91O`-E8ESRWGpNC+yAa-gDd)8icFxOze`r->#n(?mbbRz6_i2FTIR
zgm^Xt-x_)@#Pb{|#ET(b4{@N0eksJuA^L@Qg*j}Zdp6O1!}zB6nI`e$`u-u_ZxTOP
zSk*+o8sfDO<D2LKA%A%k-z<@n3=Hu`h&MwF3h}lq!CTxUP4!^G5>4Yt4G~U}{2j3&
zADT6IKjb55K4iw+=K8}BABA|lxjr1?V<tSr-<)iS;UPW=@k59oLwp)yM2N3Kj1pI$
zh4CZJFGGAT3-kroRCGQ`yP>Hjvh~rX`fIx7+kGLvrR8SD=f=bjnrf2KA-)UoJ+IuY
z>f5HVzND!h6XGY%lv55dmN^OWONd{2)i>4S!~<V$Vd0Eu|C{t>uir!bA+2UJU9*|)
z+)VSC>R&Q6E$?d<XJA5ziQE+-mWG%VVseOCA!dh|5@KqI86jqd@ndbeohD?uIAmb#
zJFr=-GX@&WVa9m*gy7T|`8+Y>!`t~hD3~#^r17|BdXf0yWA?>i{IH#VmW5azVrz(P
zynaKh46!!EI!4t@^YQyCUY^or4V9*`LO;8jX-2p{#D)+XL-2K9#;_^GX0hB7;&L<1
zmxpsT*L-wbuDNEw+e7RK!6*3#B*L8`_V7Xuu`9%GPWEt|Z8~A_`<PgXpRqM-{y&jT
z2c`QV!P}b0-wO<Cu8)K`%0&-xJj4m<b(ZI(jC(S~DOvr~GE-)Q4$p`(zPYB&Ik9IF
zF7Rw`p)U$v61*%}y@jTZ2u8%`;dnPfB0@3(p9bF(Ar--lP&-1M2z)rqf5AUbguD@S
z1WOcKFc5SET|qC3&u3q-dyDwNau^|!Ch~NI9O1bHa|`k(v~1!-%XeDnd=c_T7~Mh_
zh)}+zE*_y^ghCMtNAc(8r53tqgd!1sZ=vV6&^udbp1{SZTu`}N>Jkx3Mkp1bbQHf8
zRx?7G2+dpSM_TF{5%@T|tYA5M7DA<hkcxtpB2>=mRU%Z)@@hh=N4TM7{7idL%Q)4w
zqWB@qsFwQgmbz|)dJ%4q&@Dp!2n`~%j^f8e4I?y)(7%=DYZZ+nG>Oorm2MhgdrQsl
zcTTs|e6-k1#O8u*ZNdBtZzaf|p;2rT#Wx9UBeaXqK0=2GH;Y1XOe@_nLZ=9wBXo&y
zJ%i-jBU~#6ms@GtEN&H->mm?YWw}xO+$1)&TgOf^`YjP|jc}XjT{%kYSf>GTKx_Ru
zf1ny+WNXc@GVh4uuYK=~a94yL%ufWqhj4d<U9I&$t@ZNOI$s-Iw~f9x;@4;Kj=C?x
z{akC|{NnY&2)!e`9HDQ7hax;2;mHV3Md%aZkqD1Pcs#<RLb|kxvrUo6!s-*kNhm%Y
z;h6|8M0hc4O#Rsi&xy_R%!!z>BYkH4yp*-<7vYr%10%d4O8*G2MtDsE_}6|wgx94b
zyJuVx-;6Lssx%uE;VtPtIBQ1n?W~h`vSYm$;eB2OX{6KmAi{?c7I8Tk=PLCPw@MV>
zEqokdScKsbK8Y|R!psPtav|F2(Gk9jFe1Wd5k8MFs*V08!nYB=;95lZtBw9L!m&1b
zl<==2tZ1VtQu$g!BDvZ|7i_B=x7GKw)!#?>Ap-yL2gdnhgfS7uvtxvxBD~aAkBjgN
z-L}<ZrSH#zjN#V^6Wi+Fc-;wE)mHxz;Z$4wrx?%`ISWbDPX8TY3YV{){wKl&+DDia
zVRD3~?R1HDn#jWc7J>Yxc6w@rX%Pms)6*lc&;vPfOglX*!u$wF+G+CH47Ht}BRDt0
zJi2YC7q!!yrFB7stL=2uUYBUEIkhDbmPR-o;Y@^O5tc{T9AQfo|CVz_gf$V?MpzkP
z6;C|*mE~$7yw)O(bvy%!3Y((%<%jhVHb^V^Mo}_9?<H=Hu#K+x+g@JLLUsvK*%4u<
zaE_Syh30M<oz=Y&_C?qq;Xs6=TsSd1D0n!+p{xf6KtD$~x_F?I<4m|jazgN=Aoa`;
z#Iw@(Y83xhE9WAd7lR8CE{RUdi!wF3y__B8ip=PLKLJk1^EJ~*2uTXkIF*jG!6uc4
zPRGA{wbF3XaA~<(+3ElN_LkgB$3I^7MJEZwLzs@Iz$%^8Zm)CF$eTvKG;*cmZ{>2Q
z<L}q<2=ZGt^89HONXOftQW`DV>w;;NO2_Y+@R>lNGzzCtB#m3!>!NAA(q0!&qgWab
zx7R%U*`<VZEGamyeXQ^!qjVZ&(kLrV%F$Z~T_KI~X-sRc_q5lk4!U9*bvo#N9rRZn
zbmcUvq)|1EYH74hqg@)+)2NX~(=?i;@mB|3Q?Q<3Ey3D?bp-1Qa$H*0PoqH^4Mk}r
z*f?v`L<nt`bciEwE&*5Ws9U7bGL2T8_%g*``nVl+>onS=aiT-~1r`fEckig%r*S)%
zfUkh2!JnaZOruj8ozv)&#?5KmlEyXZ_y+#^G;R=bt>ATO4D6_>v)sspr$L3B;)sr#
zc&k)z6Qlu~x~4(GrfD5@w=}w^aYq_=atS)=2A%X>Y4k|P|8`2Mlit)Zj_s)6J!#yV
z##WhBuQcuxvN(<Vg$x#aK=8pddZ+OaS1^s&(s(J2K50CX#$#zbp2oGEVxLqV6`h>Q
z6KOn^#?xs$DIVBL{TVTSS@^TUpA&pu@C8BkeNhNU$++q(q@Um`g8c<w70h@ZAW^-}
zB&6|%=z|2`{Ey9B|KUS~zn#WAX$(!{-85#2@}A&?G$y9;K7Dr5AEfzyMI6aTX^ap;
z{;`l@g2U7JM98O^Y9~Fllm0A?&(rvVX;0&)G{&Z}qm%wJjc?NUHjS^+7?sAAPMTuD
z&iZR<t=n0T7V>=>Kcw-UaE?WrABB^Q;mUT_&vuSGe$ZL}oW{5`#>=?Br17heKhpS3
z>=$;{zo$XB<HVk>SpF0nihrf?w~RvZ9}!88b=HiEWRfV81*Zs36`UqGU2ulr%rx?J
ziMtSIi!w)$%3LAy1m_Db5L_s@NU%m1y+p`T!DWKW1y=~J6kH{^T5yfvS{`?4tmoC#
zMQ;&hLmC^Ux+#s#qA&)wvXEqyZK7`%+#$F#Yq?9vZoxfi>=m+4aKGRI!GnTycu2@$
zLH<<yn2_;B@K+HW=TVTx$uv$e!$soFbDG!t+BpAL3gb)~XL<6caXyU!`D6V;8W+>(
zn;ZRd<5C)z)3}g>i#c)A75)T12lwRQYC8UZxr`hna?m&jO>&UTK`IC3b5J1%W)4&i
zf*gc7(9+Qrv~uuZ7fnBQ4jfTlk*X)0x}P<OL@AVm!a4uP)LB4JQN3^c0fb8k$nMVW
z#CCv`f=CMzqI4tO-QC^Y-QC^Y4I&^0NGYNMN-2V<=>MH(ncw-JGv_&<`@HXsxifQj
zc6Pt}MHUxaEV^Cry5Muc<AO$Kb|rPFlDb|==`0#9m@fRmHl?*xmF>Phs;mMo1euU<
zA>=~Xg_sNTE2{`i$%(qqh{?kJDyumCZI#vO$|@^a{zfUA3!;*c!-bqK<fos@h1`Vq
zTzH3&m-;R>4^^r>sH}c-+Rx|0`}93k?BNw~p`Z(e=#;La3cHYxei1rFsrBd-ci}@8
ztGZCag_15*aG|0LrCcaY{}UHJB1p3z6Uw+Ce-EA<wv4|l&2mmoc|!Lps*(#c*u{}5
zsxr+g)O9qgxlo<O8ZOjzp`HshU8p4v%{o-+u{Pl=R=H2DPp6R!4V;{YF1%z&@*BI*
z#D%6Vq^)YtLx9@Cg_bV)auk-j<V#a%?ZQwOhPlv2P7F5E+l6*6v?up)p@Y+M7Z*A@
z+{uN`<oDTTSDB@%O15q;baz;Kl&vSzdP%3u6sM01eQEY{p}z|QTo~v=fok>$2e~lV
zg&~X%sj5~~RY$9;YgJXMYD%xBhSMMK!UPvakVjHSQAfKl#)Yxuan#0aQ<{}QPIO@s
z%~>u?CQPGFp-!dtXa02Z4C+j(w6Kh!*)Gg+VXh1F<lJ^)p$m(cu)msGK)A@X>($g^
z7cx}0_ei#f)zmT<mb-A?h0k1A;lfHLA97(8VLNrT3u|0h>%ux0HoCBh=hb=_<fPgl
zXQR`aoNSw!zm+QOZz0sGuC@`{Fms0sJ6+gCXSWM`2qUViy@dTP9B|23<Lm`zF7ppM
z{69GC!Vwpax^Rr4Q!X4QNR^W=oFM=2mk>5oSEuQmap9~B=h)^sI@hYJ|5&`>!c`Zp
zx$wCQ7a6+b!j}YT^D^NJ>J?dzYS^>)K@Ig4ov&T^hES3Ix8&O{d`GxWz2U-5f>gZa
zLT_e%@4_7y9=q_wg&$nF%Y<L4Kf3U<3-?_3iN#sWzwg2W7k;6$iH@`;r=REr79TS7
zh<d$-dg{V&F1%n-a(<V!k^GFBrKVj`X6ZSL@3Hu&T%jz=a}|mH<H9RB;%;nm<6l|!
zU8v+nWw-qw8B@3scO&6OO1FKa+-`W>Nae;GZltD@!HqZFNaKcLF|8Zv3F)Yn*j<t{
z(s5BUxsln8x5(0L7B`yIRHK=^o_dC=x#4#sz%;KLK7#Is;fCpk<wmYr_THtY2B=aD
zx)Ek($yzGpMs@lTI#D-zvlw$@Yb|xSmdffzHikZM<83#xlMA_#!;PG76ksuz8@b(h
z&y9R;yyM2ZZsc(zFGI<NS1u6QlBc5R`wYoQ@=N2KXJLVYZaib}!iAYrgj$rE^HY0Y
zin&qTjSuO3LM`D&NjFNlQQD0%bR_K~H+p=kX0S?S>c<Q%_*9j3qnsP%oy-b^<jYV+
z^0`k{6*sE7G1HA%Zd8*ga-*vo-Q4nhQPgy!xf?CqsKw+uZqyYZOTV=VH$GMM2o2q6
zM5ymZ11IOzr>e2TO$klhh}5?CPPS%l$Vn^E(#h%QMk_a3yX70LXiKw$8|~c4Ut6`O
zO0uwQjcThp&U|)qqcfAcP~~xfq;;2Rabu(#qul7}MlUx8x-p0ez1`?XkhDH-^d%3g
zt=4g1{oNSgM9<V#gOgF}5Vw3VgddrfqK@6maQeCGs1dUJbVj=|hUQc^#u6sFG0BZ_
z<neAyaAPnt*HS0bm!_r=Br1HQj+*B9)7_Zi@ZCCUHhG~Ni`<w)o=craollh(77$X_
zwFkM_jTLUJbYlt4rB2Q=!g9HSn6}FC*SWEpyoS0~66CIfInvsCH#YEC$Z?V4W;eFT
z_2_}_!B#i6(R|^?b~kp&T)FX+8#~?D<;E9oTybN!8++V1;l@cf_A>df8%NyO=f-}X
zs|VaT=*A(2>af$^b=88pYFk}()NNl`#~2bwUQowbJX2Sla^sh}>Wmv_38$$tLfOu_
zalwtx-8k>YXKo}H7V+g*t3)rlamkI#Y$sPeRgPwR>X$UXl@pcll^b8X@r@f-<tW!v
z*J!S(r-aWi{|24gZhYs)O|rCq%Z>YteoyBI>K&@8Zx7%uIZT$~&n*7x#y!G)s{FFh
z1KA_8{J4;$$@Wkt#Er)^pSb1w+xXp$r?M#3SJmpPer)iW8-KX*+zmP3=FvG+UtMzg
z`jd5Ey73p`Z#VvN<CQG_Ze;S<$M-*3{5?qHf$|`Q2Pr*}-+D?-P36HG%-N)DQ#JwF
zq*hvwd}G`;Gf>l0lWEDEH(4<wRnjth@RkQzJaBoSIi}kK&;M&b*|H>ioz@HwOb;4)
z(AWdZ1HT7lJowmyfCoVja(a-<gOJDm6|9&CaSy`e2sKK5Szk#s!Cqw8Z+noHoQ;~f
zfqit!%WHuLIb<+ZRPuz(?ZG=9<oBR}2k$cTJ!&2?xjN+~NZouMWMd=m%h(#I>J3yu
zW)}6}141DW3VTq5+^K<@-awsbpo)1=+=EgyKlGpkp(OPYTT7m7|29yiJ^09D-%$q|
zs?rVZ(SG7VSr6)XaHydw=RtW7s(DbIbt`yK*@G$`RAf<-D-l{YR8<{Ec2>?bIl*es
zsqOeRJ*Xw@!D#j}gSv)VmpS#Q^*v}nXy}35c1jnr{n}79q1n=dRvt7ZH=|0lIiZCI
z$-CCp9<=eGqX(VnxAmaC9MDGguC<esiXhy9QSmzyx_i)r(8YtUgl<&H%+pBqB=`29
zj|aWT<(zi<vN*tlejfCf6N&yPCpwT_FKDEOcraA<$crUj4D(>Pj7mcX&ECNg9-Q;w
zyayva7$x)L!59y=d9dAsv2u=iu+)QP>}9+MGd!5-!2}N`dN9d@$sSB&NZOe~m@0MI
z`!~)QrhD*$Jj;XG%vt2Y91rHojPabD=YeeV8Oqeyo+#PmlvpT7UvAQ>sJxBUVh@&h
z?DwHkOzLtEWQAPq!5R-%u<lB#)LrF4C8wRW9&GSnqX+Ap=z2oO#%hxXo7si*BDJ>2
z`tRfnW%ZfV9UkoSV7~`DJ=nzrS*3S7nR`6gOWxL4oolQPc<>!-o%G<KoWl$q_TY#I
zM?JX5&@m5=dvJoGR88#t^-*(CrFcqq&4V*ckWUcKIv}CXJh<RNb`3c+eD1+T5B~Jv
zr3aThxa`4w4<2~%g$GwWxaGlZ558pGs~%kQ;49Ad*B*Q$*E0L+M*WsKH>lUCW9Z)`
zOQ#E)sP8=Z-h-d$+~K6j-OF7MexS3B`9C`OXPc;>9ln>W(nS42c<jLw!mrea9y}ua
z!xo-;@S6wE>HJQW-k-_Z)%5jQ@dwT7EWRMiO#bD;-yUSp@TP`;Jb2|nDxTQ?dhEXt
zk^jFgjr_-Cd8Z(El_}_?q)MoLQ}u?1)Ed$_PC5-rLs}L`urGPDFLl#vSj=KZ4Vg5A
zHAFOI*6@}Fj|NRc7N-Tb2A9J-nyM^3!MqxL8cYqA2AxsE$+^g8A2(Hg4FL^74IzfS
z%~aNA_P!Txrm8ekEt{#K%~VuFjM1!`eSyg35N9#rw6?OD%I5If8ji4qoEmazD5K$H
zhH`5ttf7d8cQpB%Ci_y#qamM$_ci+_B(H||oEGjhQ~AjSWjCv+0*?QpnJPpl`La^f
z@joPdKrKcsE_>A6-is0}mef#6Lun0Vo2ygJ)khjyG*=_YlJkl98tQ7Or=gteAgff<
zP=QcMLuEom3Aya83X4^#QeAFouCuS|8fs{$ne;W(Ce+gKj8VzV&_dOr8E9dTtv<Pl
zCLf^NCrkqk4LQAyG&H7DvW2SELdj4i+Dyi*p`}chJYCcv^B^y*t(ex9+FC;!LZ=pL
z0^4uLqVUQVs-uQZGQ(cv^P;ncE*ien@Rf$H8oFunmtxqZp}U428m4KOuA!%fUK)mJ
z7_OnWhCUhwXc(xWFWc--J=H?>(;zCtyF*Pbo`W<D)-Z%Q5*kW)*+N+@)q5?~2n{1O
zjL|Tb`yvUWm@wMOuhvqH(=cAcBn^{k%EdTA!$fkYmUefeTB^A%l{iy0Ow}MoF=gA<
zQq9mXQ^Oh!Yc<T$Fk8bSxrj8((J)uT0yZ*_I-e@F&anF3mP+0NEY$EXi%T>t)v!Xt
zN)5}L%;j>?wR+uGPQoe;s~IiMViPC2PQwNb8yQ-!p`@&t@=!>_W)0hEZqcxnuuW#W
zmHnVhMlz+9I@n6xXr*>Al(O~fzIJOkqv5QEJsS3E*r#E?TxA-LYB<15se4GnL5E|l
z)nT%<EFsyBX*i+bq=w@fDze!&t<@<f|Fj%vr>_l!a|~V3a9+bLI-hCw)5vG7)#nUd
z)No0|Wes1jc!e5oqh!pYx!TzJwT5prz>5@K`wYLT;U^70Yq+M#pC#hDh8r4wV8xr#
zi-zyXw>4C6qrQ`qt&Kf+VNu~bj0(#ddzbv92HC`!-bUTia9_jka=B@EK=UE>7iq1j
z`jwn~^YTc;V+~I<Jf-;?brpL#Nxk1j{h{HxtnC_JX?UUGPYr)FP5OE%?Yr<7i<#T1
zoNYP7NtNgS|1a}DxxU(}F>O^!FH(6C@*?cT8(yUL!tI5}i!@#+FEV@amKSNgNXJ>q
z=tX)jGLYY-u4}7Kv;CV+FPZ57!(tXMDztljlwI_#c1rWY>xG|1pBK6pCRtu#Wiz~x
z$Bd0x%c9@MX(8Z6kWTW1jCc|CBD)tkyok}yN|kwtdy(*B0xQbPgse;1ym*_@)iiT@
zk;{wUotATZ@h+q9I4vA*r}B7_m&I%C)E&MezwbqUFS>fs&5HtF6!fC17uCEd<V9gG
zN_+8<7e!d*122jZic%BpRdGTIs*LbMFWzr&&rC_jDMgTnlV!a4SmuqzPpEP?Sl)}W
zUX)>#ax`0z<^6R<F9x+&mAt6zMHPmUDvfV!uc~`d!;9u#wD6)PqjkKfOQ<DEs7;mp
zFWRemUex!Zu@_CeXh6RawV{*qqW$Yvil&Z}m$wtm<h1Ev?@>!HT6xjIi;hgl(LuGA
zW9mg)7TZyiYe;)?G1h8C?L?<DwF`9s{qA1$@M5$VW4!3;MK3P~Gb-KnCiJ8B@uDwb
zI&1ZJat3%YP-e-Cb@aDWhj=km##}`W^J2IcBba=ugOb~Cx$z$9wRIHD`^+Cpp6JCS
z!Z_-9In4+%604({OrGJzOfRO$=^-xxUQCm7ucJLP(-|#Bp5?`C78iIihcJ&ims+=@
z8qrbBC$C_>RA0#ABC5P_FZE)X7vp`H;KOn+R!A>CWcOjE7puJZ%8RePSnb6cFLrye
z$BVVBxY>&>G7ny?_u5ODtXDDv8yMP1-9$azQEl~Nn-{K5_Q<!>l<P=%hZj3p+~vhT
z9NQ!6Ua$OVHqLl)){FgK9AM5#>On6KdvU~zLo6m=o{o}_Q;$)l@sgd?334m;d&-N`
zJVw&Bj8k63&v|iPF8L1XvKOB*^V?49q8AtBKy*@{)7ikfmz*~L=%l`2l`C|<q`EuX
z`}K_%SG{=Y#a~`r^Ws}C?tAgTi|bz8@Zt_LZ&Gi2@tqg9<lN)gE+hG#euBf3rsAE|
z4_@5$;zzIjfz;283j9PU$L{Wt+jLgH5dNV4>cvAZ9(nQDi{I!-Yfrp*N}kM$;;iYc
ze)r;;tjTTF4w_e~&%JoT%s;8mY5pyT#)~XIxO{l!#lNy>`|M-)pBEXssFXgW@&R;G
zP$d-ZqTcW!HH&GfX{gGF{9RP7E~;-AHNA^U=R<n>Yr3eLUF<o0(}#>cWTGj>%!Jfk
z?a*63<RQ3y@c7Wao672g=7ZOVkPl%Wd_L$t7(SS+Rk^E@O)6SG_<acY5TxInX8*2g
zYFD+ltNOgFdPpbYL(J(nO32hr#eGPSb9Ym9y4kJCjX^d#GrOrAKIHVFgAW~j$mK(B
zA8Pwh$A@=(c-M!LKKbGz^7xR~hxcX2S?fI?@)4vdIqsrIx~T#_6r@?qheA%Yh!2Gw
zzS~U|_2C1V|86SKUFGd=kEFP?-(7v^LkS<`CPbWu^h^8jkq;GosOUo(A3kOy<$U<W
zX|1de!<Z>mWMz=s_3{kKom(XzD*I5whnhZAp;^_3YJ?m-SF8JQz^Oa8yK2MR1G%7T
zNe<J#VYIFf^;m30t?xr)ADWOGP#gNth#+G~*+VsTxP=eR$jzyd9`=5<B+C<8;nqI1
zkrSYbYAdtKHKZM*?Wv`EsFpocCm%Zd(BFpvK6Ihq&4=!Uu2iYmgCGs|CiJBC@?ji%
zl=l1h(AS54>??VslHCoI93~I)VXzNFd|1&#jr3uZ4?|^QeHczh%n?2u>7fK<6Og{{
z^-!aI7~_L{M)0bK8cWF1Q)TaIN6YtA6MdK@CzXy|Iwt!t#fK+8JoRC!57T_O=))x+
zru#6%hb=yA^<kzDvt-4V9(|b2Q7!agkq>ixnCpXl!aL80`93W0p-)dGMfs3dI-0`n
z7BgRpOJ$w!sh0R~jJ`O_82X;Yl|HQTVXY6VXs)Kp{hp+)^I<)Un|!$6Q*H2JBOzTc
zCB-0hGZPB+vh%n3u${$|KJ4&erw<2xIOM}FA9nlX$0#5#<$IX0kGhvCzpjvcjMKQ6
zIzVR-TRSY%%i?h#j>_O=PkD+iW>mV{+e>}ZOP%mRREnp3IL-VsKAiXAGat_SaE{LH
zUMfXzJLiHApUa6#mSUv0%F|m_Wbv{Ow|uzm!xuhWVXZHHxF#d-t-kW%Yw3mNRjSnO
z)>}>Mt>m-RZ{<KFd+Dui_;6FMVyAuiZ@iNEoew|x@H2D1_u-BYKalTIf23M{?BNyd
zqwcY|w2yiyQ|-e8AAa%SSKsT8ZY8I5AJwUk8q!BS@<GxbQxEk~!oT_OyPVHDG#$@;
z_(Rrh9Vv7?_u++{b$#tF{$%?CfBW!~{Fme0?4$mX!Tazpo&OyFc^~Cw-IO{~=}<b-
z^6NuI`>Ho|q$bN(S<(<{F*BWx^emR_r!wexQ^#96vgpW2Gn0<YI@%@MY^^5tRiE`$
zk6Cmv!A%YIvj;2-j#r0Iho!@>qgFqq>oA#Muqf}*Bu%!i{Zv3lP)D|8b!wC<(J&#R
zV<wx8>4@t{==O=7mAbZ{I^EAcv2XNKZ!<YNRhG>hgjD@iZXNIFXrZH}j(2tB(NSJU
z1s!>Hyr-k6jt_MCofCT<D@c7`fBg|&ejNqq#QNK#EkrI%m0}S>C5DRW_((??9mREg
zNWTQN6tyI^Pk&XKFosoRHT#&wPxRMornFgBM>(4ENOoO+RZ&MJ9kq4Tp;=i+4LK+S
z?7>vg?e88`)lp4HbsY!#t6OaLF|{W1Yl#x_uu5Iseh$!3M<bbp`l_Ce`ix3z4Wyj`
zsx8wR>u9E<IYUi!G}SST{(S1z0qQodlvX-g>*%hdhmJNn+A_bRoFRl$Om0u^Kus>!
zopf~8@sLsJw~LOhj0$&?W8^%o>ZxOZj)6LQInmxa`snD(Vn1qsYTAMJY-As(2C+Dd
zI+!|yI+U6`Op-ZVj+8tr8>mL=7^P#hjxlm}nV4l_td4Oysv4+f*eAny9hY@{p<{xM
zi8?09;;&<ij;%VT=$NWwg^ravrs<fjV<CH)L7k&xuC%G6_dqpE$84I*2CC}=mAv!)
zn**MwW4?|B43!<EI?K0K2B|!Q)FK^=bu6L3RL3$o+xa$dIUO0**g>lOAbXcr=~zF=
zeoiaATE`k4Yjv#Cv5A@Mb!?FJWRTj(;uThrq9n%#tIafv4OUeLt8F^Avv^X+4jnsn
z$S3j#<hpp0W|uBM&SST~n<~y8!kEE!JNwA{Wxy;R)Nx41VVXyE9Mf@xypPf2WT|z6
z@Ec9J^*yEIw2m`6&eH!}$2r1hI^NK6o}7M&$}z<5@dAq#hNz2#OVq9mUD5HSEHwrK
z2ENkqwT}OEz`!>;uIhNI<2N1GbbPDhu8tpdT-R}f)xW38$$3-9EgiRY%o(D-lMAZ5
z+QpWoUwMpqNAg+xLB}72pLG1J<5xMEb=+ek52%uVUq`y3_JC#kMMsGI$ca9dG4QTQ
zqEBdk$b{c@ywLF{ooCcPsLypYV1k@KQst$NzjXYq;~z$Q4^^)S@^JWHSv~mfK)y66
znJEmUG+^;$mSQRcX$_<^@P=W(KBlIh#(**~eyCc>F18O<=?!Es;4z>Xc+)^e18*6~
zVjvUqGdr!_Wqyib%4NV!v(GTQQ_nE_L2HF!%4@(!-!LF)5|X;Qfhoh(1{O_5uaV{J
zMnMB110@WUG!QlrF;Lh*5d%>JF#~xF<TVgCkT8(LKu*@pYT#``HmY=ydbr9?&M};G
zbumpY!~R#5?@)77OAlA?8W5Iz3B5-sK+Q*e-#~r?@-+rYkWCI{LHdQLwb-)wMOl<b
z%^w&jMoxa*S=_*f24s=%;bfLF@Cg&-F-~a%ACb#YrJaunbA~IKgt7+887NPu0=2S%
ziUul?H?hIX!&Ma)e;ck+j!@MN)G+Xcfhz`T8mMJps)1>eV4${veg^t8xsHK)2I?EA
z%c89R@}k_pKtmS08fZjlVW6df#s-?O*wjEX1I^_u8ez|d+{TE?R%(Q5WuUcz_69mI
zvyFka2HHs%%p6EvMD1vxlY!0#x)|6)=N>iVNEIKc3Xing>}H_5fgT2W%FG++V?b`w
zD#{mu*m$Fns{2UQmmK9CPV(z;0}KqLIo6P$7sFr!BUv0m9Y!5Wl?Tqrkq<X8f{qmX
zk5r?`qp9*ZcZ`9h9M3od2S=*$1|}GoXke0o$xf}GMykxCRL)U$gHsHYB}_LkL-x+V
zUIQ}?%rdabz-j}t4a|`?4J<R{$IUR0jVv<k&qn8y7g86<zK>GLM*+!K+r{*kP{)o^
z%L#J+B==&4ft7T2j#3v#sWk@H$|W;eZ8xyaz<L9l3~Xk?1_K)jQc<3l%JQ3Bfw$1y
zN-gWdHp0_UD*b4+gS^wgE(6Jj8@uU93k62o1K4Naw1G1Q_8T}L6UFEe14jvm3>+qO
z9IY0PR>uq+H*nHv;ml}t!r`Art5XKL$?fPEyV<h_&dCK%K5yVNrd={{f$%xCG}k&w
zzQ|(oR_d~x#(bCYr7ZrkKA6a9;%iy_4Wu&hhKZ{Nt{M2%z(dyh*1&ZGHw=_wUpEch
zGVr79tbyAGzB6!_Y2O>TL->JOp2=Ou*l!=kjZrdbOUJ068ItilkYj4#zDzsQPEmhh
z^d|X{fyV~^Ht-M4CkB2u@XWwd19G$X8%_BLKKW7p9|m3+_|w31`tncdqzg%VY2Yt9
zQp`J6RT`^Wj8(6aIi|g!{p&>klPiL?QqY%BO2V?SDz%9;CcGwmCKS!|CNh{v>tv=Q
z$Yt`TiHs&(EM{_|Z<)w!V((aWhwW!^{0!rio9r>6$sri0lAmqKXArsx!$inLm<gr{
zzf;RH(U)TmI8M++jdAw=ModIaWHa$LLopKx6WzwCIE(VJi{xZ=YKfnnERZziy=N{H
zxlJ@S(Zs|%Cf+qs(L^N^c}(OrQP@Ng6YsIs`_z2Y<aqL%C}5%>okCRk_-_^mc3_+;
zYT^SEB}|kw@zpq0%tUeK2+OEs`_RM-aw!v~O?+aatcj0IlrizK33I%imTtU~Z#2ng
z-1d%)SLN73c@q@~vNnoenwib0l}%Ka$uUud2@<VJs7CEGUezSjrPdN9)HbntysBej
zA{*IFt!JV>qYX?nG|`BBm7zz}OcPX76U|HvGBMaha}zD(NSWwoqNRyeCc4V8FwxpX
z8xtK&bd)n{f@*7`or(5rt?&dTGnSptD=G_{=uE$h9FYn3t_`40rgmpY%w8sXnCK}(
z8mV?nP!}2PZK98fA1Bz;B{|8LnEo=E6YZki6sr$3kz%3>PgFxp43+&g?KQmZL^aIB
zNE4$>3}@O1s(i;lDvl<PH8GAb#>9k)YUxBZo<&KRU?Takukh)KYLbb`CZ;et)x<Qp
zI%=p=UQCw-XQG<n)RIRxlK*m|nr&i^iSI4ku`t)fJQL+Cl(#V7!~zq)ns{hpp@~H%
zPMbJmVzG%OCbpQ^YGSF0WhOS5s5eP1XUnVPP?}glUg`AZo@Dp6#>6^0YaRdHNou{r
zl_#l<<V}vVnb2dB+Gb+AiK8s;FtO9beiH{w>@u<2#2&fQ8Ja#x$tE4`WAPGs1NESc
zyrw#A;)sbuj7r)+lkD?ZG&<R?CEGC*$4#6tagsTwoXp}(kUx1iYs!zX;hKqWO`JFJ
znTc;qoSm#LnE2ep6%${YxM<pcfO9!H2I?TE{Vz<&2LZ{x<WF_Ja@zk|X4T2LN>kdD
z?YfCOCVnt+!^BPca?o#?xNYJ)Ib?L?I(_2Q^-NKBY5pvSrjPoOEZzNNB0k0L_nwLS
zH1kYR4@~@Gq9*;J)JG;Bo3JeSEj%&t)I@3vX)OF^;&&5&%Uqdw#_H>*sF$)Yru=Lv
zUeNiIntbFno2|)vfxl=<FRutPfD{(~CI4pv7EUu${JT?BN(-qh`vu|+s{BpCpHu8l
zpp=EQ7Ce@Hj!86~g*Po^w2+=@8In3x1*fV^7BaKwqP}I>uXkB2$n~3hs$IACROPnp
z@9PS8o2oPmUS|5J235Bp&mk91Ri=gU^3~$0>N4vFEabG1%R<mX$U@jc#6sLc!g~F+
z|EL9dwjX07(*B*PDl7SIYBuT%HkI8%4h!#0dwnL<pQdt4(ZWZ}dDlW73xzEdv5?oo
zdlm{<kS|W;v+%x!{LGPJuW4!uTM*tgO%=3I$ijI#-%YclMJ;?_p@fB!7K&LYZlUsY
z^`T7B^w<67o37+j6&b2*r7V=T?0W;@<c)#c7?)vRA5%ZEP}Z_P&X&bQRMIL~sAyrm
zg$))eN#hp!S?F(}iiN5c+FEF5p_+y278+P+XrTt%sU>QmCOLV#Qkz_lTE{|N3vD>U
zQPleM=aCzcn^<T{Xv{rIj=!0O78Y7sXwHzBm!_*$7FtVdGL19Tt?BA18*$H2WoM|i
zGgN!aUVFP(cr-(PO4q)H?#Q~GEOfRoX@<RzJ7=hCGgMa#-7Ivs&_j;3?9@!v(?Tx`
zqVhtFnRaI8nJV{8)kho|106AC@fl!YpoOs(#<B517KT|EIa3X0afpSX7G%9ju3b`b
zxP=jt!02eIv@=Rp<C$vLOf`niH*9~r91aVMEi942%YZG+wlGJ|cIHgAFpV(9g6z2b
zb<cDQGvpMtFiWoJnaY@@a?etgW~mml?C}qprAE(Eb1lrXu+XwskNFlBu!SP>OmCe1
zJ&nz?)K|0AU$fLA`f?vA5Bio`SZQIEg=Log+;6#s6$EKhHgV)>(rOE9S!E41%WS*H
zb!35Tv(-imn=E`~;cE+<Eo`xH#KKVvTP<v3+93<u3A-%pChVZ@q{`JQ?d*}6w6LGf
zUJGSrtM0Sa0SodB{2)!qSvXs5nXSH_tz-o|Y$4?wyW%km$C+^1!U+o}<vNm8!on$8
zpk!3z)L9GiP$hXMe}<V^=csemYp3WObwSQ~Hg(a$=W<0%Qmt6L<n%jYj{1Uph599R
z!yI*rY2R45;bdO5aE<&e^_My7x&=`g=S@1dsJE%#QRRL>qCZ%;E0gcXN<V(I@RNny
ze!SzCpM%Cd3;$SnB^S7b2XgdT>lf-H>aSF3<e|*TT)Q>d9@Bgx=MO<{-jZ)=f4A_=
z!XL68GV?j3FQ|V~rS40@Ul#r*B)@6@uZ90Cxc%_>0YBtjY8pS3-(EIT_>t0&RDQhS
zxBplswclQd%FI>u<|=s==r&iSrIV4G&M&`fZ6{=)zUhbj4X+d@&Q%-ds!V=l_Tw!-
zviMQTf{Qt4I8^xzRMMWzRhl1OKe969^F#L|>_^XeN^S-WKP*4|ewcownP=y_=c#}n
zK_-X%kPn^3l&#1-RgDP|Kcarbm=O0P;m0KUlCxo+lCI_2$>zt~eq?7(PO3z65ajJx
zF2c!q>h?VKt{-{)sN_dwKl0Kq<VRsYUd>bQ`H|0$_x;FEzaTX-Ulkw}oo^3JSQfM*
zew0s|)DQe9Mkr1#<Hv`D64a71QH0Wdd_<6Tl7CepAlt_@Kk=ii6D>zb9@YweRAe#v
zHQ*|KRQ02cA8q}p=0|lu8Z%nMkD7ioAlDKl)RVONs<t0>{HW{4Xzqe6&a3CE3uNiN
zz8_B=Zs<oNRun(g0@cKirhYW@qq!fg>9_Esr5~+C7bty!l5cyyvp`i?poT86Cr56a
zMBDk%-j9BM^!K9!Yjvk~q;{fqrb==bLRUY!IZkq~d&mhxr<ddR_M?x(ef`MD_xl6<
z80g1j`h%S42*P0M5I=@G{xHIDs#G88$0+h>KgK&bWBeFP9_OUVAZ44t;za5sr}rs-
zOr<l;kHv)Pe#{`u^kW`jmLIbTbEtEv$-#@x_hW${3u#I(i~O(u9w#{oOXx49E~74|
zCZntTSnbDoKR%PI#*eiOouRJtW4j+a{8-Q820u0u<eAAPKQ{ZZ#gDCiY@<1Ifm*jf
ziOK*zqwe%$mmf#`I4YN0dv#-h+RgQ3j~{#e*vDG?sZ!<90(HRQgM>qV93~{kDLKdd
zI7#O?RbEg|$X@eh<rJOMRDGd6hO^{zR4K~3alwzzS^US3i+)`4<DMV){kZJM7k=Di
z=!zd-`f-i?74;jcwD2_{`OyBVtUP>s`>h|>>B}!3+#tNWP*qu|ZuxQBkMI2Wp5{+}
z-0|ZFKkmx1Pp9=lHG<=m<yyYmEbYr1$)6b#Ua?R;Aph={pY+Ese*DVfLq8t-@x*W6
z(me9x3|n~W)cVbjTXbG7R9P3<ZOSjviT=Ta=YG5({7HRD{fqiHH960($Wl?d{!d;4
z0!YDMlSl-RHGq@>``S!JeS?}hfHVQ90MZ5!rjw4UQ_}~KA%Hgn$QXc!P9~}}k|lu5
z<hLB>1CH4hfSZo|<&>n!rUl@o<D*t%n)pTlCLJpPe*gip_@MxT<Ya^0m>;1NrN*dn
zs^s_Akc~VjfWZO0P0miu5kSrWas`k(fVu(H3*emq-VLAvqj>_zOZYf|_X5ZlK=A-R
z4B-6$@&{0qA!)xr0ENi~11Llo!67C8Ouk3}@*&9dMd|~FicvQ+p#-@!wIo%(s97oi
zQEB!gI%TL*lrQ9eLM}@!=lJCbyBDd70aPMarq&9eN&r;@sK#Oqs<cy`Ab(k0lW;XT
z+vM6#PMrYc4>O-HQuPC95J1ZSS_RP1i8c$M5xFt73AL#c^(|J-$t|cw7Qa5qtpn&z
zr%eED187I?7(k~0+LJp_WrXtiW@mCYYL@`I5~?j$9h}xiE>=AP=ovt-0D3dpKY%`j
zepGo!);D0kWt+z;$)*M{G*I@=X=ezXanzyIVbtN&5!8_Zj0#{hc}xIf2{O*}i<N8w
z;~i&0022e4#Ny-tW&|)ZfGJLNDq$LRI#pVe>azk^6u{yDW(P2b&RpvJ0Ok=SM=}=#
zu#m;%07REK(dC4t)Mfu~ge&N*q^_cVbUDo$UhiwE>!|V@GV24_K;Gy$n*!KO-a_3<
z-R4BM2e5;@({b)DR(k^28$gFb=vWB*0@xow^@6BT5C;M{7(oB*7?2%@0yr!eQC5`5
ziX#CW4WL#OpGI*kfa3xD7Q*i#oCx4#0N)33Cn*201E&M15k$=(&IE8))~Fy-1#vEb
z^8wrm;D-P{3*ds(U94_UKc{{jz(rY?mZ(bsTn^w1nqN|{P$fUx5+(W-i|>-ZAzuyP
zS^(b$aNWu5y+qYvg5=)};FeS6HsL$!_taTS)ZGAnB)_8m6u{#Eo{)bI;9dat19%X?
zF9AHFxoC;{mGDr`1om>t>FZa*(*XWt!fyfm9>6p5^Q5y_{XuxPM7<zrOYNO{8Ngow
z{7omhga42VGWsuB(*7eLh!jD40%eorH-bnVM2;YG29buoPE|pq4I*6->4V4;go|c|
zATl|1-y~$D)?i1O$!`VGnnkyh=?%i;utpfo1Rr_TQe^~T24S%n3L;GKQv=kXoDZxb
zV~zw74<Zpnl%W_^{5wlkR)^mXA{#l)GJ7{=%g&;InaUMJ?jVW<QJl^@K@=doOU)BR
z-XPv1zfaAVj4n~7m#O>?OM?Z2C=^6tIv-HQEJ7$6L<RQSi27j=C4#8v<dh7eOb{Oj
zQHoA!$Nz}XYnl4Qamo?OQj>?ZytK^XWM{uB1yMPODm1H7s|B&giB_lc^)gi}h);tU
z7sU7=Y6np#h;~7=527v;WaJHlsONBfLW3ZZoi+-hF`Xtsv?4SOqFE5lgJ{8Ga$1tf
zE$KX2rdku)P}@?a7teD0Sab-YTM*rY=t#d4wKKJgli8IZ-@EG(M9(0G1~Dv%UNrj#
z(T~tOh(1n!!R4yI!-InuKpq&xAVRt2s{L{`aJd@d<jh&FhC4i(Fd~SNgi(&aZMhob
z@K|RyCIm52W;lqwK}-r_auCadSP_(8uEx|L7BPQX5YvO0=hU4M#BB0R>MX}U#@Uz?
z#9YUDL1%st3+ODQzO~}@IlP#~B|$7DEThVN=3Ajw2C*uLO+jo9VzuM1BdiHxEg^ZB
z){{3lIU9qh!S=TV?e%j9{jE-P8)3W5r!$6~baqj9Q&+A~`-0dnt9KBmgE&A_Ms<{M
zka~!En0kbIVTC$Ikj&$R6G5DGoLei@nIO)}oCoo>tpD^cQ_lzSSr8Y<7oGgi39mTF
zOF@KI+B5bA%`4O|sm1AkL%vD98pO3Az9nC$)@05Na)0tI@@=X#`<)zI`acA5H;CRL
z^a<g|Abyf1G=y9s{2au+Af5;DB8dB}^^p32`U~|}s=e=Q>Jf{NgLo3e(`1PHEQsHo
z%x_n!Kgjo4<<B5q%K98a`Vju2|6dRY*$eyMEdE1%6~w;;@zpAof(gQ@2`Q<mLU<#D
z<d71p?5RsbUxkpCP?Bbb5Z(;I48aN^V+ff-@G>g-nL~Js+=Q7~LU4uPrsD}g3!yuG
z$(+ARZ6o^_)u{$mqWc)~hY$=Q6heT0a$%8ZID|w9Swo0~5M?MvjZ?p8-TzjpY%EHC
z_7L87ILB&xzjB07gpfOgcS5KgLY)xa4IxhmABXS>lk<j<KZF7y`A1#$Wagv3Pp!kc
z1w$wl!iOQ02%#|j52!_`Ql)4J1DGjXjAn7_VwxpG_=v?)PJU^^!PTma<H#<T4WV2J
z)##L`R-#sLaw>-KkPTL*Q-xa9iKbm+?{9S$YlKjfP%DH_2^ORIsdYnW9zu%{>V;6B
z(FWAUAv7d3q9%_*6LM3kwBL+SYmI6dLaPuuhR}&l>k!%!+Blir*;l&|+B;4MLVx<5
z<qTo5ixcfi=tiBsM)h#~o+0!iA7aJ6A@mDjRS2s?xVlF54`Fl&V`ToBGcbffgux*U
zcUl-i7)l*ReY8f6aH1m#qvVQMYfs?V5XOZtFNFE@$A>VLFd>AA1pit!i7+|z`sH#;
z2*p@;S_soam=VIv5auvP8k`lvY=?)fRkDdG+gzHmL@yvLb#fMlu*l)XAuJ(JcWNyQ
zVL6=@PR>fg^0jJB2x~*Q62g}utP5d%2)jbq9l{1CY^82=YHcEH4q*$o^-lZS=x+~U
z2Vp1mETelu*c-yB5KhzF7s4^Z{tym?aFBc`gu?_md5#c{QtvqJKOh{JcLDTe9!?54
z(K8`jq<=Pqb0M53U!Z<QmHc$;)aMS%!^}(M%hWHZ(RKFpeig#kA>5<$jhreW{6M}I
z!nYyZCSRvY@=d}GYGGEtB`cD%ihdWu_YB>k$`|mYifnh~Re;V<RB?Wm6^7OChwy;r
zFCjc4{7QXDm4hzZWAYQ~Q)*w<eHOwWvhYTbF@onIya-`P7(>JOGlZA2Mum|tjK4zo
zTXMq47{))WtHSo$^(usaS^SThDh$w<PzplIFgCE4Hyl4TAr18?LutcE$6|UXCqo#I
z7|Ikz<}gBGgu{3%j4WZ8%yCh@PQE(~kHcCR8P?m=<#QZ848!3BLl%pEYJeJ~e#mHq
zoINc62GQQfSQzmz669=DF|&qIgUP~g(`>(9<p?7uIae6(I+?i%?@&jrS9u6|o#^WI
z>isbChtVjE#$gl)qhJ^n!l)QVA?B0_qhuI`!zjXH(J+cTbw3~!qn_koK9r_-7L^L4
zbQoow%#R2kQ_F<$3zI)_qJOVf<-#Z*hJfsjY<+^L6h`GRYKBpZX;s3g?&Mb`RHM2!
zs2UC=>wd~&y)bGM>QL)aB_ZzyRo~$TVKgL{+@R$Ba+5Hcve=E<ER1$xv=5_s7%k|u
z45JM}+G!O=YlmBIu*ck%#pJE;kRUp+*fESwgwA1fAtdj;yOO2Wgbk{D7(K%1NvAKh
zmlN$BMjwYaZczQg=pV)a#~BpHK!?BFpawhq#zr+PjNxH?6UNmrMuagkj4feo4P#Uo
zqr;dN#(XA^31d<ilgVSl7#GI)FeW(dOq3IEqrGb%Pz9ziG=n;oIxURpgho!z%rIt!
zF`MQb>fA7TZB#RuaA2ca5XM6K>%&+S#$xj7FqROcm*rtBb$A)!r;Tbw7%R!EsL2=W
z6r1eft)a6vjCBN^ruZ9J+!)3t!e*-Y#W$&KVQdfMWEiKy*b&CgF!qOWfC;;(yQ$qa
zsXb1uy<zNgOld^6gJB$XqK62F!#LtNqc*8y<m1#6j=y@7I!*p8j0<6$as0D{bJX+H
zQ=8Q1gfFNUsh6nI`{gk1aZj%}&X-|)6~@<Lq~B~0Pqv(!)wM9bmDMba$4t8(#;q`J
zlW&A^laRb-zYF90Fz!38-68x${UHpwGrSwdkAxDNl@xytLtdorIr;TAs|ODMLija|
zhlB|n&lB?BvVe#2RG7uzsV}I{sDFg<oN&b1i$7U>DX#*ApB(=ci)kYGH;n(th}a8e
zst8gLgi{i-Y_VtKjR;aZewi&wk<&(yj*vW~(vvep(2P|wMUXjybrGzO;H?O<L{Kw=
zS`oM+a7U0gg7+fuM4&~GHG*srcq8z!g-8TC!5={&0)uQuFo?}sEbb=<$sua;K!hVW
z%}_Lg82xwzMV(jY1RWXe+XUIKToGh<I7b9I9lo+f<tD#Feb@2x$c(Z5d=b1KL4^n^
zGL%1p!Vwf97l@#slV6CCeXA-O!3PofZ@DN#rx>+l1jQrxFoF_JzU)Qit*_6(QZ!3b
zyU_eNf^sZ=;^dc2!dg|{aioPx4p%2srdElds^eFSU^W}9;W+Y_L7zrYJAytD^o^iS
z1a%qe7D2rT>POHbf|e09aPk{R&@kdW0-`AoFq=5hrg9EM(458d>_{GYwThrMolX(7
zA+)EqrM9EW5qZM=4iR*u<J$ImHafG|C4#Pm{Epu}f*y2wQhQN*Q>C>A+f=^@`bRJ$
zf|(Hvh+tp@qaqkBrxSCAIhlhALn0XJIP#Un;p7q2k&Z8`@fh-?2qs4`mOL(k@q`Hx
zOms4ba*%VjsVQ`(JN{I{v<PHzmO;vvyn<#$urPu}a&#h?!<@O)1=M-e`4JpuvvO+5
zd9^r#CG^)uurz{Y<kb-@C#<AO`zr`{S#cHlAMzTqxm_hMt_=}vlrubn|038F!R83Q
ziQsAkTO!yR!DkU%h+ta;+aov<!BN)T5y74a_L6r}cSW$9P;|S!Yx~FtsZ!ieI6!T>
zT^(}#!-RpXax8+A5uA$PIL#B(<P=E@r&&B3!5PAGRuTVP1m}|>I-irjpi1;&1eeH{
z9p}gG>I(Tw$N4IPugU+gg=-OfE5|5;pJ`sFeiy+FC;w&yw;aA5L3D?`zu!l2CxRd7
z=jGBW=G_S74fT&yDc+0Vegsb?hiMNYc;vM63*pxY9y(6Z9qO^ePY5y<zen(l{8t2j
z5MENBNAQC1X9RL%CaXbpj!HUBPT=2+{u99~f_ybyLWm+o6u~G$QKXC_RTP<`$Q-p_
z5#FGtiy}2aoHPVQO-t>^F4B`TMDZpeBUSRJG5QvZMig11aFN|qFVz!;Mv(k{%=bm*
z|9#s7knKx4W)xNw{^;vvC%|ZOr@~Q0q9_{02T?@nzZ1o~QN*H%vzUnD?I^O7vr@A~
z@e7-k_H#s$i)K!$I2m@T+~nLl?E%P^CyMu@$R9;s`tMQmQOh_v1z0RZEl6$3P+@Wr
zYM-5|SQN#hC?7?IC_ap$L=>MeB)yc3;v;e?YH7!x$9BrF_;C~$SS-t8IqG#f6{DyW
zMGdD`WkR(msyI&7D4sG?`l?P-Ca@;qCH>k_)QO^H!k+oMQPhj#ix{rNP(O+WGWjtC
zVrUpeqbN2<u_cPeQ8bBSVic32Xc|ScD0)ZHCyM55vrQCj2`#8CsjZ@DO~|mzp4fI#
zv}ds!wL=sgqv%AIv2`YNrFNl8m3+IDaIIacyW{kTqGuGnSZujVC2v|Jvu_l`q8J`U
zzbN`gF~G?mOc+QV6va4>WC)8xot#y>)ClsJD8>>-Qb$ooM{$C+k~bdXXpW~&pi1wL
znJ_tuWpt)QF*S;5QB03wZWQxq&Y;ew&ZN$YBJFN_X6CS%!C6D*N3kf1#WWX0v5+8X
zZ|_!199~Lzi#I&Y<y9bx6;Z6Dxh9IWgjLklRQV8U9YNaJNLWwZKrPK-Y$EsEt+qz7
zO*o3*qu3tBjwo(KaWjgYQS6H1xJ*bCyQA0>#bH*FHupwxz~Oy_{W1w`_Mqb*BJ9|$
zjyTRy`4pHeFTv8t$tX_Ac^Ji&C{9OlCW?!Uo{i$1Tnps$)X%6=<@4S4W`na_JYew>
z6E0IT?onS7zK-G>!dG&2@3Cvic9qVz)N9lh3|)_6JmD5i$$S{a?I^yB;(I!Gqxg|<
zhx!9`DXaVx#l0x*NAWYw12iAVLd4>)Q9PiNe(&osWFtI^;xQAXuP213QIuflSrmUn
z@kR`(WA+96Jc_@f_?tN|qWIIP^^%hyC+a_Rz~om>^xr7{lgoCmTEsR}Fq)E@iYhH1
z+N;vUpkl}rL*^LLI{ur4bTOnSWN`dzY$_v*f9+Lo5j-(yF=TOaTrs#Ej_*@mhYf;{
zs>dLYD`fyCix#!$KHCY#5Q<?y3<F~b#}J93QVf-2h{h0$Ax{i>V~8_9CpAHpidkdG
z7Q@>yWT%tE@#WXxYp~^9baGSQp}tG)&8W2SUJM0eC=^3J`r^D#$R9%i!U$#-j-f~l
z<zuK2L(v#Mh@o^0AH`72sZ}C|;xT;4;yG5ix=)pip%k4L`&3}RDz#sgVeu2{$5iRD
z^?p@0hH@+p+plC3Q?}%dT*a9ElLb<&5<}G(n#IsOhH5cXm(`n9YQ#{JP?uUOhS~(F
z@@ee#D{LLd+04f4$*X|lG$4GjUo~=^#)Kx+rqplus}?b|jG=oBJ?ONGp<@i4VrU&h
zn;6>CY)@@R{fixSAj?RC2kc$w%wkt+7iVnZccUX8kM<<=rS_sqw08`B94^gv`mxxb
z+Teg16vN;c*2S<sh9NNwjbVBWGh!IVgt64&)Dba^jA0a6S{_3fO&!OUw;WL8Vi+I8
z1e%j$m_nEs!z98Urb*qYEKZ}!t6TE!Mf{mDEQ(=q46|aG&FCEJeCpg7<`E=QZZa3d
zaN~el=r}JAs3qhTj<b}oOs*Z7=hpTdimr@dRSc`0oHYa)z*@)g9<(zz#IP%d-7##8
zVN(p78QtdOY$0rw^OnhyzdeQ>PIPAs@`FfX?ulV<45wl^9mBpD_Q!C9IR~hRocx0X
z`Gvj14oKajF&vBGIGvMD<_SX8gRgI5&%|(+&gU_lb8^lTGRE*3;R3a(GtP@KTyiom
z6Gj|VU&`qe!`3*q#qo6v-^5TQj;e87jp3TCb#Y{l<J%an$M8Ic7p!%I`b!KqW4IN=
z?HIm`;l~($is5^w{T~Q-WRR2X*|^K%VvgizC+B_)_Z;4TP(5(?+ClYe3=d;?6vN{f
zo;m)LB#3`dJte0*q<$yF581uQ_J?zI{29Z`7*fWODvrOL7XBstP5p=ZidyoJ`i~$j
zAdVDq`=z87+k7LA)N!PzBW9X7(mAXMY2z5`^uF|v%0Tl?CnqD}>>>4599iPXA4h>W
zTyePL2*eR&)I-(d&<I|t^yQ1=AGU1JG2^h}@H<ht!^w156*#OybYgMD3E?;*PEItA
zYKQG<NyL#gj@)s)6Gt{iv&WHx@OB*inIjLwbJEEb$6`8%sPD#+Cysnhn|TTE#c`j}
zR7YOV{QLCHBdTB=h2r=)j!)<mrk0AMNE}7u_#lpAbV^W*Q$M6ekEk4Mtz_K((Igpm
zQcE-XQ5<CmpD?E^S#l~8%2CTxE5y;z8C4}ZmE#ylr&=7<<#@$0ERGs+)QqEb9BtyL
z700J>G>W5f9JN_RTCPW^L#-Qsy;9YWqk*(fGpUl9yk%-avpKaXwOJfXoRPGk(=v`$
zgiZ9@%AUs2D~{fAw5Q)WjxKR@Aa|t7O-m=jE>`JE?m_KF?M}UZMD-*j@5cMY(Kn94
zbYz76;ut{gPyOG*J1~wxbkZMveH@243B%(U5y!MRrpGao=GZvK5k|!^njkHYA;`0r
z@o`KbPl;oq6HN|g5{r}L$j)A-vY1@?XT&ixj<s}V#W6dM734W_%$4&{CNPe9am=T=
zD2@ejls>8!vM3+}kWD~*fuz4Qj%9HycXGsR$;_2;tfD#ks9H@}LzRjPn6NI6^>J*7
zV<Y{|)J@d0OxQwxbX2{0Ol^;2hb)f?yp_PtICjZ88OQZFcE_<Nj`MMR7RTN=_OZ&z
zIQA2cQV+y&kZ>rD!vq<F#@o>&aYT>3-mhZ}9gpJ#AqV|aahzuHOdMwk$w`(L&N;;k
z1aZEK<MTK!vUn+uD}>8V^b11GW9mzS{H&i;k?rd^zM*r~$-G98W#L8~H{*CJ#W-%o
zaXXGj41Gtv8^@1vd{4eZmDYYBG~nQWisPOv9dv${^^kAV9ypl~<M<_xU*j0U<b~AT
zRB7jN98a7~IeC7M;~9%@B=85}r7ZP?=hPQ*{7E=`Ov%XqmgSVi6nty{DvtkH{Fi!*
zy?`O<>)&H4rNgNb(2v{Gk~)Dj38)0pGL$iabc77l^iF=><LXUv@(oue$1i_eWl6x5
zK%oQ*C*V%NlRzwicmi4iUZw>T@DVJhmQFCJCbh$H<tGHF|2z627Q+cd2r}Sk0x}qZ
zL;_i9=1U+OA!h=)5_sFm%udKb9eG^kPGAcw=1Jfk^1IZeDGlaL;611ArQ_;-hw~E(
zPzxsT7aJ*(K+yy$B~Uqm4;U(uK*<D(k&9D5q)N-OJEamRoj`dyA5lMXqGbpl%ha8)
z_p59I<r2t2{@*-QNT8yV{~kkC5~!U(odl{TP>rGL3Dk6QY9x?6UbP(OQ$nK?s%`@H
z5@_c5^%H31aDxOIk_WJh#^fdmG)-VW9T{E{nkUeL(d0Y&RtdCDpiKg86ZkrTZxU#i
zK>GyNCa^An4heKjU}6H366lmb=LANuZkGhQCeSZ|{t0xWBklJ}pu59866i@j>h#{5
z#Xi)&)E^icKpsLJn7|;yVCtJE?O7d49!8bo@B|X{N75OUz~}_VIMMM5j3tkAoDwJ1
zgoOR*Rq8f5sU|!A!UU!yFg1Z`2~4LshdP5Qhi@ifRsypLqu6Qk3nX(Bm`8Jd0t*sY
z$<TG`q68Kvu!K?RaV24C0?QIuPF^9G?J0XOvOPViRymog6Ier*$7m8-Pu`!vfdn>?
zHzu$tfz5K}C$QV8wKahq<ZaaLjxT?bywl-b3HvXUrOiEb_B#GPg8W_fLBjC_P9$*1
zi5?~#N#LmC9FxnIBR@&!LIR&Ba4Lb*37nyG-pM?hz&UcMQ)<X5^%*(&4V;Tk&KHDB
z30!uZR$Th7u=pkQs{|IZ$EyikOCXdL;jH*Jf$Ispl*>7R8wuP@;0cp&C2%`|`{eHu
z_&$Lj$+F{j2y(*z;5c^)@{|5QInK|7dkO4yj?RMwesQ9|Ch*YVM})`XF!QMt>HJQ8
zp1?DL^!tZ%^1N`IKM8Vn{hh!+vdm_+?-O1n@UL9;S&=a-{!0K^p|T<^Ln*Q%RaU$~
zPDxGPsH7$rKdsUb^wak7P51v2(v!u^kQE&n70yJ{Ma@ioD=V@%nWLEI&I*s?{2x<i
z0X0?iweg2~@6g>H&di<edIbULMnLJ3#-OAdX{1XU0ZFABq`N~pr5pZqe|w(G@pG-a
zp7q<$*=L_~bNWtJGZxUyZbl9>a?;OD&1H_iks?pDq^vA?Xy&EnGh-8b6*Qxe8DW}|
zQ`ijM3>(8D)X&T?6D%snN;tDevn$7EhJ)-h!)1nB`Cc<Tisc7uQs3AzewqO@f`kzD
z5$6*zBg!ylMj|2k-grk@J~yK%onk6M%o1jlG~){kid*od8Kum~Wr?qEX*0?&Eu#fx
z%_wKacrzxLQJ!WiGg=cWm{HM;N@i3xqly`gXjV0&ni=1iQQM5_W_)EvO*3klk$<mN
z<3B2+)Z43lZN|SUP8~Dqno-}324?i%tJV9DO6$VCT0=AbRdE`d(Zr0VW_)W#b2D0)
zadfZN>^~|wFZXIK&G=WvX~TK`Ol@n%cZBcF=wL=i&gTa+^6k@pq_(5BXHA)ECo_IB
zqqiA-%;?OfZmOw^8C}_3hLFteX7n(lCyV!Dj?|PUS!9y3^p%y}r}a0ZA3+=mWf{Ow
z(gw2cAnIW15Hp6FG0cqNW{fgpv>7Al|6;~SZY$ZyvVEkKOh8t7j2UCi7{?qLT}-Jz
zai6wY#@(w;G-Hw(H_W(c#$+>oHDjF_>&=*A##A{kWK*-_G&5$IG24vk3}s?72s5b{
zxKh8FF_)oS{O6b<mwic_r}BR%%r^u3<NhKu7SmZqT|!-I#vg<~sm4cgk}MyNFE?Wa
z&6U(OW~?Ge>uN&b{n}dP$dzY<85_;mXU2Y-o2Wa@*lfmMW^7TJ+X-8#+o;7jy&ZC9
z@p<wtmATuDJ&O05(U55e%s435YBSEW>5v&mWG|a>n4$4w3Yp<CGftZEH_hW_oFH^!
zg;Qk7Ib+6Y#go`{){NBzX}w^^Wz~9-aEa<Gf-7cRHRB(K*Hn&7{<`8_EON_?2WC8^
zd7FBNde@A5g!@z(%ecZkGUJ0>sLgmRyHc9i`a(`3!c*!qGvu@8=Vr*45>IlJS7y9r
z(`z&26`xdl!|;FmwRZ-{0|DU;^I?I>f|R`AB(Wf=1<A<CsR<UOu%HGnzj+R58cnHL
z>VTGtoQ|5BnueN|+WA0yXj#%T%wYMnH^s?hL1vm+sN!TLWV0Z<1;(W^2c4W$adH##
zQ1e=l&w~6G6tEybr=SIe2ySX&3#<gGT*QLU6q^Ya3r2Bnx&<~mb_*OTM_Qd^mvW3`
zj|E;jJ_{sAD*G*v9D{=vge(Ztk5Ch-Q43-O$zQ}lKewPLonlnOEMY-Oh87)PT2RV@
zSr*K;ptR~c)`Bwf5MV($3(8yYg9SfYP{D$V7PMqeB?~GOnp#lBf~pqOwxAB3YO?zX
z)u~@m<q3&Qsip<BEclwvH&iiqa-R38b!j%Tpq>Tw$qlFtsmTs%vPhT43<a84P>{~I
zbed6{Q(I8WAJp0&)LL24+JZK8zNbpxwibLxHqQEoR}#c*XF+=l2GQ?eK}QREs{Brb
zt`_`6=uGXRT1Rmj-7M%%rw4U8&0ZGtwxAE4pQ(K<=x4$1gIa$J2G9|f(Pg<y7)Vpj
z%E5#o77Vpum<7Y-SfVq6D*3-ykmgXl<48L4HyK8q(H4xMBj>3&<5d25!UPK@5++$N
z*@9m!m}0?nI#Vss4{0+jm}$W@Wr`z<)Dh=j_|1Yjvbn72V8vVu=2`H;f{zybZozyD
z{;}Yi1q&=#Xu%!}_FAyWg2fiBvtT_3T4KR63zn1ru;5R^Qff7hCBv;?xSG0>x{5lO
z32S(cuch<nA#H;N8!gyk!Bz`4(Uc0C2{j7fFXb55x@{KhP|kMCr*|E9(%B`uhH&7J
zCW{o=$MCQPM+o~ZI6ydP!69{>F^;06796wSyag95IBvlSrk$mpwBVElr)4aL_gLAO
z%o#c|P}alRImJ@&BKeAPE?IC{v3@u{v8$F(@1kF)f6Ic~gd5bG@&u1*cPzLojs;IG
zxM#tAwmzahpc+49ct|!@<go=$7=Fz!?LQ;Sh;J--PJUs*OAB6+UsGFhtWH$Pd`t74
z1@8&sOg^l^iX>KetngZq)QV(QWV0f>70IngVMQ7%(pr&VjbH9kQ8lWBCM!}Z-f>t<
zO}?$hN@qnTI_XtT20}(FULDplABk_P%vNMktyu}~BU%nCa#~T)ib8a9QS(`mTV>`U
z<fT?;o&4ki*8hKeDQtzs3ab@GRIkshFq7qjOBq@g-3liin-z9~v7H@ObZ1!?O}C-5
z;&(vuS>d;$oE7D*2*_|&l(3?t6(Q!ttVpyXOpZ`xlqg{w3w~}zF@{A|Yk9u&`Gpn5
z=@>urlwMylEJH0tElo8J&azgt=kuZpR#dd2krj=tsANTDD{5L%%Ze&Yu1>8=m73M8
zSk7q(e`Q4tqo8uWwxW&|b!mQMMQy@kw$>vzuzq@HqrMf6qo1~6LpI3`f|^*-)QXl?
zw4(DZwHZ~mYIA~&+k#NzsMgwwHsl|vZLRo$@SPRk6IvbB<g1C&#rS<qJDT#9MKL>C
z(aDOVRvfe9Co4KzF~f?PR&=qVs};kn7;Z&3=J&RukL*pdl<HwcPsP2g7|6BgOJ^{(
zpB4QH1EiJkGgba~%y?I4kQGzax(~5pC|ixESR<_X#fk}5Or$xII+i-hiqY2i1#JvN
z`BI-uW*m7uRl>A<M`9AgDb&eU{7U%uyW&$BPNPn@V%yR9tY%p;+lrl5?4tjh6$`Cc
zWW^kYQhBZw^Q`!t;e0C=5dKzc@$#s)*oq}qthHjD6@OUqrxmMJ-=%WQSh0fPGOGDl
zeDW*FtEloL1#uc2i@%UrV?|aTnd`0Cz}9V6Y_wt%d5aaB36lSp6{A?n_<_S#<?lJB
zZ71(g&TXdcX1L#qJ%qigb)OaT2ia2a0G)$Y9Foh|@wg+)VJnW%_s}_R#R)53Sn-nP
zNh{7+ahCkI6{iT&>oj+kQQ@2w*Q~g1#d#|(FySKg3iXl|mkAZsh*z!nhfaMuH>|iR
zA)Q-R+_vHYS&HAW;-2EWR!lms$(PFRD`(4b?V%Nq7+yWDJ+|VB6?fDq#)oK6+4_w7
z+=^5u;;a11iq}?T(2-Hc8!O(*)mw+A$1mXTm<b*42_LB9e<a9_)|2Q+%FJZc6grX<
zJgi)SYNC^dDt%KDQc+V=yD%-Sj&uyuQ~S`A{7gD>)5)wOi;k>1vN6m_&8{N{VFVxJ
z<YN)(BAQEwI0AWe<YhuW9R+n1BInmpfFQ|pI8b4RpHYkG*sMl3(>Z!Vvl4WwO^02F
zLx)pG2RbetZXH#0RMp|p;g#p)I!fvA>G11_=}6QO&=J%T))CPW(&H}#{$1qtf^d|k
zOv&&CKG#u9#}_(^8l&)0xVVlII!e-!91BfR>1Dj`D6ONsjtV-;FsH1Ja{s9;U1X`K
zqq3@5Nso6lx=WpEI;!hvrK7cuuXNPV(NISt9W`~-(osi8T^(Pu?>9PX>z`iENXLJd
zdOGUsXz-sIN|P~FfyO$T=xDB^g^s2=zSYr;nMQY+#=k2iAYn_k$_yo;jgGbqf7Ij8
zY>nr%-_iMA#}9;mxbNDLr9yk<3wNa1Nykq*I_v17qbnU5MM`zk(Vd|@i~e`%rK7iO
z5Fftsp^uKfvS*zr<wQRn{dFv|VX+MZbo{KNqb)x3fjS1sekV&fSjT!D8*~iOF;vGe
z9m93Z*72JhpE`cgF;>So9V2zf8#}Vd_XbBP9<5`H;`b-w?+%UE<L{wO(=kEEL>-eD
z{;FdNVKOKG@0)A_Q+4Dz8Sglq2{UxeB+Sww$>PfctLPjZb9JoL<8QUeoagCSz*54$
z6XweicrxC!P*z#TVjW9#EY-10#~)1ilUkQKk~Zk1ww%ri>OA_psjE1O476Iu8XaqO
ztfO=DWc*z(Sp+uf*rX$^4e4yyEI0qraYe^f9b0s4)p1nEF&*1<Y}c_*M~c5SS#}V1
zQ+MjvrF_TV+8)Jw319xL?bmTY$3cdNsfVa_Sn3G52l=>;6FN@oIHP0v-`YtXf9vr#
z7=<7Ft;t(<r}X%{qaXj)(w@@J>bRieqK<Pi`BQP{yg1Y1aEWkPg#uzq(?2?{>3A&{
zULDtU+>p!2EbW<&n>udkc%b8<j@vr!=oolPyC>)MDedlmR7?r))0uWkdqjAw<B2k*
z^?x*<vV!DD7b)^w#|zo)98N}jrE(-q!nZo!$wPn*CL7-C_@E=14aseggY%=z?WC5(
z2H4`6J5I%)Q6#m+O<7K!(o)#s$5nzYK2_rY6ObG^DpK0w2bjEvDQ|M7vLUq%X>5@H
zWRy@A*)QpB$Y4Vuo;w-U8I;q8Og3b;A&YXd+mKapHp0hKS`OvNv!+}&<hCIXoqRUr
zC*-xkdOAK0Sqj)tkf!k>(Rh+v*oGoDd}f2$1{Yf`RGn(2HsICCW`muf!v-foYL-8(
zb!2@v9gp(8HuR(Kw;^Cd(1wr=HEgJ9L)eCh4ds{_r53Z{3qs6>L{;H)LQxy$sreVT
zp`>apVT-?IXFRd|(uPttl(wM^Tgy`SpVl6*qdZ|KZ$kweD$=h?twgO%twMdHMyX~)
zbvm+kU&&@X6W?^TZ1|ey_cnZELv3;^8|v6l*M_DH>#1H13H7NBY$(PGjcjOaLlc_D
z3#f1Ce=7$V&F0h=RM|Bx2{N?YIbXCj!!}ZFkJgs_oehmx;Rl94Qrl4_zr76|6!&6U
zCx$=S(AkDAHgvV2n+>yRcDJF24TEHp+R)R6UN-zpzqhK;kI=`4z6AN(G8v*jd4S4U
z!BGbC1UYm@8)Cyy8z$N?$%bJz47Xvd${b<CNE=2m{KbZ+>?j3C(-|Wt;MsWn{M2zY
z$J;Q05T;p{I@yM4HcYqSR~x3-FqH|?QMO(qCd{BSQ~9#lXDRM?R{M=S$A-CtdDQtf
z{7x{=js@g})Ge&J#D+g?_+ZCJJN~p`sSU;LC}GDk8<yLU(vDPitgvCF4gc71&4yJr
zthQl~4SQ`^W5Ze-w%D+h1=mqG+OVD=Gv6SY9Ay)o&D6hCYpy!lHpM##+ime5xJgG@
zcGB5p!*0R_*4bynejCo(aL$GUHXLNrF&hra<z<O>n4$E2a#lM+K5F~)hLU`3@3;*o
zY&a>74QJSTih5f0lCK5I7Z;7ujYIl8n=Vl=P%l!Y^|B3D$XDh3Qoq*_xNgG@8y?&6
zL@uXHxJQ+;w`{nr_>K*)&uVuW3f#9rzQy{0;X~>pm6`LL_CGnO<kD@AKQoc#nGLU`
zI}@H$Ur=Al)kc!#ts#c*Ww+Y!mMrEw8-8T#M>?=0iT%^YF;+II9m(vN#GI|v6dW;u
zs!>g94tvjOsqIK(M-Dr3(o9RuWJfxclirRDiZc>qpv;6U%Fk*?HpSTq=g(=m2u1Ap
z%#Pf4<gp_!odVQ+)cjO=tt6|ao!1I7EM!MvLecZ_?O?XU!tirDtaj*j1nmgfVY9<-
zhuaR19S$bAs7|VMY<OO4&eyZTUONKxeRlW>-C2CZdChoTAEp_jMyS#&N|<|IOH_`m
zdr@*R<$OVq6SJfpU&@xZW3nBk>?mzV2Rl02QO1t4b~Lo3ksamiC~rq~JHE1`f~ru3
zP|=P`gvwNTq>u^7Qk7vfs*F;@j+*4!)LM3YLy*j`)sY~N{u0))qpltG*jk@z93j%w
zfT8@1uCX0W>}YLA8#|h+I?e6)mfVcGj2o(j9W5CiXV^-OCDq#6@gtkQql)vr9X}|3
za$aj^hg=idD@Q(y>}1DJb_}y)xE-DC=win}wsxiVqjs~SJE4aiz3k{s?nzB|LF+^4
zOVuxY+Ex__{p}b)|7U6onuExLsWQVMb_^vOUr!ZhgdL;o7;VQdDrY2N9J`MpPoR#q
zW1PwvZ^wKlOjM5iy!Tf-rpPMWvBQq3c1*Klsa%Tfm~O`mJLcK(yB#x`{~L7{bv9L=
zo*BDo4#T-pNB!Psz8wqgSY*cnHvPLd7c>0BjwJ+H7vo{#PdUu^97&wzc5G(r3OiQX
zvC59sc5I}x#*VditS8GGS;ob49m928wGDO{KknWnr`s$|?j|G!|6;-xs)Sn!+w8c)
zE<5emWyfth?%1*0jy-l<u;Zc~dzp5?j)R1KcI;Ob3SZO?*>Tv8vviKwag=b{j$<n4
zlpV+ID1K2pLFXhnzP=2_uX8beB*-MsaH`^*W7Bz6LH-Hu68SpyvP_t8)sAZ_=O04H
zi`sZryP^D>gj;qjr+?Rud*ayfl>U9{LpvT2_Ay5$^N8VNJDw0OD*u@suk3hj$8-8G
zsFMFuwl;I#(0Ql)w{j)n7YN_eG4?(jNaDb12i7={)PZCUeCNRT4kULVg#%wYP|AS>
z2Q&vP4p<#9IgrwUEDmIKAe95D9r0b6fttpF^n|oj@zXgVH`5T1+iQr*l95fB9LP*a
ze<^NeBj<7;HzB(NISA5}({L_nc^t^=Kmi8|(#dy8%cmeep&UyUa-fI<pE*#Nrc~%a
z-#DJl4j5_T>kb4Q2s&VsNjl(g!0CWj^>R7jQS5d=cDi(t#W)On4)|5;*h^Z7oJb8j
z5Ftbzh^ZX;fXVob>2n8)(k$jcaR*8`@CC!!oTSv3-<FD&q<Qg@R+{j&1K&7M#(}aj
ze+SCbtl>ZfLS+Z4I8c!+eJc^3v0znlbqBIv)~b<9T#m2BSL8;QwVH%lRPj5qwYCHG
z9cVzajsta7YdwN&$zhkZh7L4ypt%E$Xf}4B38AS2-xB7t)DCJ3I<2WKsjaATPh%Oh
z4Y@5<!W);h9~}76fe8*wbfBFB?H%anKz}B5p!RT}qXV7D^2?*29Oz8$LhVNF>cGd#
z@e{eb139n6*IKkEn|e9ocNFREKpzMC(y7aY7<GUHKRYm*zVsSM7~#Mm2L?MZ#DSr7
zhEa3y=QE<i8TMcW>Gcc4k<?Mt32YkUz*vToGmbFcfkkYZ<iKP)iyZjXfhi6wWH{A<
zX%5UGPj_I31GC9eVWtDK6z{pB$<6(YllnIYjOVm-9hm39@61`CGUq!Wx2KctmG~7w
z<8}~>9azGIKO9(2_>;Pnx{P{@^ISoe?kgQwMJ{|bUTv)d>*QkML{cZ#JFvll%MM&|
zU?X#OJFv%rO%7~!;4f8SJ7EiTs{`8z<ymb9c_(!jRfcGCRom;pJ_k<H+3&ys!ZGSW
z>S5|3YJZkGLOv=h$nZGB6I7`wcP{!{HkSjZm2=L4Gvu?%*?(0#@4y9y7pa%1&#!6)
z{)w;qRR{iY;FZe1=D=+S?l^Fr&JE??bl?^_z+QLBj~sYRxaYuq2Of|gQe|(JVWtf6
zgw8Wjf;dkJ9hvalffo+EbYK+2&D7TpykX8;>PPB3>U-)3>K!J-8Nc$#DVfZP<WA&t
zA{U($PNXIzP$fqrn4CySNTvLg*R(WFq-B_nn$?N)PGlfwbRsh$6IH(!-)>pR0*x7F
zb0WKPayZeOW^O0)IAM3f!KS=Ud`8IUM1Dd6Ckm-v1)ZN>%M_+lMETRNX=W!ZPOM~2
zD}9}6Q#t3aX-+3xPDGrD(sVoFal-3_+?q@#>2tzQKST{sjYpOsIqCKIN`=X??_z|a
zP81^~Qa`6gnE3^{1hqKT_-1lRvQ#MTL>VUzyK%&gvQCt9VuA}3T`2EF1t<P-;+hi`
zov7r*G$*DzQQ3(qPJHLY_fAx0k=jnwaiW?N)fs+8t>r`wg3PuiLDu4H!Z*s7nbdWn
zo)b--_|}Q~^cz#<byfo>8mi1jgs-p1?<v>B8Giw8ybx|izZJE)6D<fWsZF{1GJ0z#
z+R$lB?N0v(Cw_FIzY_zTXh*-36F)i8o-DmOIMI=8Z2ZpT-cIy!qKgw<o#;lVyAwSK
zlUTMVxt9~G)ad&SxUThOlT_|UkQW6%6NWl5%!z@jb&wN-6%Uc~;zoRT4|igO6Qi9N
z<HRp)HEw4uO(PkOqFQfgV+oU-nC!$jC&tU(q$8OV33AK#;;i|r6I19+rIx#)$!*~!
z%~;<VPRw-TfD;Fun8k!;PAqp~wiCZOF^A3qCl)#}*NJ&f{7z>+Rf@=W`Q)Zg0*jRM
zhZBnxFL9z3=kO<;rOIzdQ*NHNLQW#thEA+@Vw)4&omk_<TBiNw#5%$TCpHq+J28|U
zWw=dFY*y9eU;h@+-=dtYgk?9h9Zu{d@1^c?Vvow%P1wzj!uuGek)Hs_!O!#hken<|
zoS}b2^*ZguQ74W$ah%S}8`?=HPLO4L9=@UdO+Mv>ECp}Iw~Q=up*ZWrIX0bl;xgd^
zRa!4P<M$T3B-aX+e}zp~snu?3*PXcGgzkdPg_};?aw5S6&4t@e+;QTq6Yre3%j8E+
zJSN<8;yyv@KOj7m<DB)MFns33a{=;Gs$>?CH~-16l=G5MPJX#Sc%%H`EcM=rB(C_e
z^g;O_37{!|c94{ijGEj9`H5T#vUFK-Q!}}c(uLeE<Z&UD3#nbm<U(d9q;Vm=%1rA*
zI&y1XIWv$ms#fDL&cZMUH7hln3)u;Bg^}TMx{ymYAfI9xPi(}@%Y;JIeAN8Z0xlFJ
z$p2+ank<D~DB{9ruK4$Y%xtny<;k#>AUPXuYIYYKF4S|Oz6(wlTx=@mg4+cTxj5A;
zbzBIMeN?{-0m3PD41`^XxsXURLXEocnysI^P}GGlXv(<72(lfr-HK1u*dQfnmUQ7u
zLMdt)7fKT(t;{X0tm0<3wDK-gaG|0Lm1x#>p|T5AT&UqfO**}9X;odQMy~F{S6rmd
zj9c+VKwb^ia^V|S{AJPCOfz0CNk?(&(5Xu`CfUG+hA#ARp|1;#Txje<TNl1_p@|Dk
znby*UZ&iMCLNizVy?yE4g5ke+<ZH#SHMNZkD>$F;UHHL;E;Oafk1lj@p`#1!l+&JY
z>6X@s&{_FE5uV-BBtf3@cXgo~o$fC5bfK3EJyd4q+gfi|{OPfL)l-JhZ^!4>&xQU>
z812FU7k(!H;=(`|2DvbV;b5w<r;MX<s0+hf7*1b`j388E!9KUOk;)&%BTy2?xG>g*
zarEUD0piFqo}m<+<icb*6y0#T@v93{TzDc)E=+Y{nhS?rIO4)|7iPHdhYNqYFq0jB
zb72l)mJ730DJeUbEU<tukNUd{^OZl9^IYh{A{Q3Bu!Q~@n$m0iZEdLw%UoFR!Uh+X
zvvoCfg{rX96~Eu_Di@xrUTa)ft6J9)v^&~H7dE-D+l4(YY<A%<`a4|MLfEGAx4K}t
z6W<`)=~N}}B=1r=P3~xW6(4Y6AG!Y>ZNKb3=1cd3G!Mzfq;u4TV=nyT!ZjC;yKusV
zvo4&I%No<psA_-9AwfP(HJypSGL=R4%XyV^$%PAwFA}!h(Jm9NP_G)QW^&zy2Xt=8
zLx2mn$akqy`L+vp$RC)0Px<%dqIWkw^g}w2sE?_}u_sMW<*MSs8=B9k&#5n5cu9Cg
zmCVw2wYM(3b0MP}ncR3!Uvu;NPyXlv+(_bv+~p~m8_C^B%GTDLLkhCgNpPb#9Z8c=
z7Lyw(-AKiR)NZ78Bb^&*RQ_ltr+1^x(S!_ctYRp)n~;u~-N@ob9yjv3k(K#5Rj+Jr
zWGClP&gr{aF2%VC^1L*k8~NR^xM6jp0L{;+1>Gp*MqzRhstot~u9o@Ur#YKx%0AWI
zkZ+*b8QR>CFQLirWsLQ5-qT!exZN1-#uzs|Zg}1J!Hpl?@VVi4<1066xDjw8=tdcN
zTFxRNH)3uix)Ej=p-RE1JO0fsfzRD2>P9L0#oYLUP|}U!Zj>M!w*;wvPm@LRzjVjH
zpt!Y@W_(StG;_M#)5^I~o?O+93Is{6>_$b!l?Ws5X;qXXhmEXhHHOux;?#7bmK#mo
z_*Pa#{so49UFtV()F#xSO8xcsw0dsTccTHFhHf+>Y`dp5CN!a*QrlUenH$aB_?~_X
zH(I*!9k~@%YPNBswc-!#*p^}T`=4qWd#9Zn?dcDoc5tIRp`#m}2tQG~xY3zloFiSy
z-Kg@XGcsHcH+nMcMeQrcGocSv5}fz7e&qhjDRDpE@n_i)ZVYl`up2|%_=T-Qsl!#~
zFhV2dk05s=k91>{%9(jz8|%h6H|DwVJI(QKOmSl>c>;B!94#t;vOEeX-h5x1=Eih4
zW-Dig8#Z;s&ZIeuD!WqV{F@td7|vDsNAGL%-B{qpdN($>u~7M|-B{$tVmFq!@rN5L
zl>et2%g9o2sT=YqN>Wyq<uo7N*H)^`RdVh>_|&?_jkU^OM=<NyNZ97ab~iSu*3E>!
z+}PsARyQIU;uRdMv%`&@ZtQ2mF6v&@Yd2vJwd@0JpYjdo0K<dSL)6v}w4-hubEB9S
zUwCocjT3UA^PsZ_C*Am4wxI`h4^Fvp+6{P+#Dg<#oOR>A8xPz#=f-(AZn$xi)h<x4
zP%pZ1i6GOyOfbG=cvZHQ8`s>BpF&I1bv6xA+vk=W_f)UjZro9PS9Sq&dh@CHL*+kp
z;}Q8W^@-uD);$ljXKp-q<Aob9-FV~1TQ*&MpuHlzroK_5zjNb*>ieFM{-O3!Ir3%i
zq#h*m#HU@*gXA8h@F1fHnLJ4FK%<||0~0}VQhVa>w50SPm2wiyS{lV^J%~Mw@6+_k
z$>90){rt=xWTBbQgRF$?9^@co^PmoU<@6vIoxIfC9^@fNLF1<=U72RwT0Fl81=wnw
z`-MCx%&>?D7S-!B56p@s%}UmlGxnk8@WAOoT@UJc;PSxjK_w3=d*JcF>p@gjhsi!_
zkm~m!KrlWO2$927nP-GB<)N17!RH>7@}M-Gq8=3U;0v<Mq&T4@ReF{1;4iM4@Ru|X
zJp6R8{xTkv^`IQh3e@td*Pid=o4TS022@dgEkacfsu8Mt@D-tk2Q^jBBMz7DQM|&}
zG{2$Nrq-c;@kp!hK?4t3deDkaLl2q~8d0ThV?q<E-2CcW<u@ZV_n?Jxnm^K7d(ehq
zI}h3_|2q$i4@{-n_cVX-;75Wy0EsC}dxjl6=%{*i@}M^--^GKj9^CNYrU%_T=<dOC
z4_0{4!-Jku*@IE+(u+EX+S`LZ9`yB~p9lRt7)WyfRlaZhvmA8`wHc2z(KU}W<8AZ7
z9t>f^P!EO^hEXqY4kO4i&tC|}ZB9pfFx`V09*pr|tOw&f7|+&UsS~J^JebH6<R$A!
zg~{~OJl3WVrg|_<4$;S-wnJ&cOb_OGFqa9lJeW<8zQ4)NdaTLq6X$vGy9a-G@TUj!
zJy^hm#ngo!EF#ElE2K*YRe6c5AbBZUmr>;<vw)~%uJmA)2Zud4;=yVU*2q!k!Cnv6
zdazE8UJtgg%X$wsda#MSf!dWXc{Y=c$0>2Pda%udT{O2-cTkOUc_&#0UHn+vt=P)1
zh41s=kaG5Wa6s`v!e3kkDRR_<V;)@e;F1T&*>skALLLI-3Z{CUmPY}_@^Swe#kU`8
z=g8-&7kJT=`N&PwFRPp@1mofOst5mga80%kKjXg6CexGncDv=lZ4c6Vk<N=d9^7S9
z5^wx^dyo9ogZqRB9y}yG^56+Uavl@hQc5{rJ<*<d@Z5tJ9=!D69sO6T^$p>*2aPy-
z<wn|DIex~(XY$^I4<3AE0yqKr=v;hRIzQ2pdXdbF<X)s;Q%W!7Yi~wt0v*i@6G46#
zWB92UruHI@_tV?&BcEvLy~yB&#S5z!8JUpNi(G_EUS#$n3puM7*$LUGQg9+CoWqM5
zgxtz6=tUlKUN7<y@>2^?4>MW*qNotV!d?_1eCCCjP`Yt^w(^oqRQJN>MbL{7o9t9K
z)!~KH3m4gVUh({i=3(gd!bk8^174*6U%XmAszBI_L^egJ;zS8CYVrSRpA(9zRyhlb
zdr`uR<zB4tqNEpJdeOy;u3nV#qO=!vyr|3MGG0{hq9VDh7v%`$Rh{XDP)TuhFDfgp
zLa0iu=8gaIPNwvg7d7bAq<-y1ErM~zeM7EoG;zJ^k)`8zUex!Zffo(EXhgHM7mW!`
zz4(^U#2f#wDC3W!nt9Pe^=)qC|4(b_MJq3kG>OkdmiGVC+OVlDRc>4?=J#Iw;Kh%0
zI#SzF<N026ATLqdyptC{(dn#m4*XB+=0$fe2758Yiyrj*sn(u^US9Mj^ih6aFCMaH
zf8`7y{OrX*!XT>lG(PR2UJUbMrWdok81BUgFD9v8zj!f*JW@HM2&1VwyN~r^oEPK0
zn4oed61-2fC=(`o@v9e8RO@svrjn;ANB%%+2HDtaGNsuJ=X>#+7jwL5$vShrm?y`1
zzW94$zcazO@GkITp%;t1SWI)NH~udD5-<K>C~w+J!9U5}S!WqpOnF|t(u-AIWc4AN
z539Xc<HZdxZhEnnIorM1;l(;H)_bwRi;Xn5da;S{m#VXwF!HIkMLF_4D5<}Vp-gh8
z7rVST;l)WhyS>=&#R2jj>R#$T>e8q2cTf+KkIMDRi^Jq2UX<mx9QSc8j?p|$m9cI}
zFY<XWE_iXui_;9xcyU(cNLkr*=e%*v@GQRTFS6;17ncZ^sfF2e)r)@^Ui0EQLH^*$
zc<EH>nRd&I+j0(i@mj9`Y<=j(Bf?!T?h&N^eZm7Tny}_$hR>)^RL=jrc&fM`)1G_r
zLOCzx%1QH$7jL~t>q9zUeA~X0tGW*<e0cB02PS{?B8d-4eE<_SvX^Aa7m$+Cxul!~
zA5zkhR?P<!Iob3021(^ZY9G?5*3fgU%80n1o=zre25LsCyrm<pvSenMg(`bIyAL^h
zaQWb-lhcRK2)TU7O~~Uz0Urwbke6XTYJRG`%_Rj3k&93ZQ^hp?U`~FLZ&r@Q2dfV{
zLmSoMgPqWZYqWii=43eZx#sb~>qAK&zVyN8gWreZY?8_WA0j?PeF)MC`Qo=639Hsk
z&$Sr&b7~^>JnI+rp_mH4AV{@0&$SX{<CcS^d?@Wh6*^_86{uyY<*4PU`Ci1=y&}01
zRl>@IS_8DI%Bd#%h_6X&_)yb_E<tn+qLvR|`_Mjs4gq}QLv0^Q`BB=BIzH6(VUG`c
zeW>R{eIFXU)aHu%(9nn8^5ZEV8nN<sK78*(V{#K8n)>jq56ygNL#H{lB~@nCf{^$^
zYvn_0vhjqr&I_$ALwN})X+MxV`S26rM<3b|+WXLf@EuR;jxuwuduN*6snWfR4_(RK
zsKzazdyspooL)Z6W#7I&^z&h&50iZ8@52BljPl`U9|rm`T;&h)VTcdL{qP6-u#J6X
ztf5R8M!i9Egb%+k9I5)gd!dc?VGP5uK8#oXIA8o%Z?a6FBOnE3ne4-KA7=RQtIC|>
zgS-TrYNYv4<YhcfmYH<s_%MqwoBA8I1api>hj~8y?!$Z^7WlB8tqZBE<O1%)BJyG%
zmJt5%VW|(xWMw6Jj@ChqwcLjlKCEO;-<R4F<sW#dt?^+k{lBQ|eAq~k8Ls!mUo~v-
z;WqO(DSxw^?62ahuthmrWvh|{^rdMB!=2P!)ZM=LC+2dk*yqE3ACmi#!jA(!9Q5Iq
z4B^8eIR||>@52Qjj<Ac=IZilAJtn7>ddK604<~*2+lNy=oc7_Y%0EMpQHpXV=agUj
zm3EQ*5A~ArFZ*ys@l`_GSK2kgb>-h6+@ua?**iWw^WnJ<cYU}=|Gp282@j|bsWSgZ
zgmJI5C(8Ms4^PP})wX)!!&^EpsjsN7eRv}mPd?8#ZbSD@F8*x#;6oDsr{nFTT>ljx
zeWfKOC!;=P{RBTWKP-M&{V@5F(vKW|<YYoBKQa?i`;mr_mYU9wOt0hnH@zPj{K!Z%
z6ID#P&FQ%xJ{`kZXlC^z8zDQ@$-cS#$n8gA)hmx51;}~*$VX`ALVkiA=d!<~azQ@|
z(W&w}{<6IYS^UokX8)(>1G*nJI*ESR{cw=OemMPb`4LdP+ypPx<Nx&1My}yLKm0V?
zxBj#iL53k}E%^#4Axe!=We)NmK%e_jlwmPHiYxyMLUP`bse~UT8GcD^$?Z@^rtQZq
zKW_U`&X4kbOz>l(9~Jzl=toCCI{8t_kIH_u^rIC!R*`GCA9ekx>PIy?)u}c8_=+I&
zsX-X_TC3&9*M5A%u(oQQ`&yGlp7zwE)5wp;g!<G5)P{a+<P4=+6F-{KY)bu>dX%lr
z$t|d7=(HwFuOA6*{Af$~&X4c8oqu3x=#|%6JC)y_(82#{cmL!^XFrCi)-HbZ^rM#_
zUFmdFes@25kYB6W_Gb9AAAJaY{pd&N@5cZ_-Z$|*TbVkL&LBSq6NXTSQv1BoCNpQa
zA0z1e;>Q@mNU9VWMHubJQf7`-{y4&T>cKbKBtItmvCEI$e*Egk6hD6VW4<3#RsL*0
zrje)nF~g6U<XKeX;5WW0@f)2vR2h9PVIK9u8*PCf3;kH{#|Ao!{P<HQ=Eq`&OQ_Q8
z4+Gw4%lueQUPE2s$10Vxl92YTwpux%x7u38>j+ifY8#cag|Nww&4j;{FMmF=)sJlq
zxBIb!U_5f|G%~Zq_r)GR_WE&N_1fphaX(J@v0oknXdd+AFyRo@s30AW_;J*aV>Fw;
zjh7lhJxS+`9B%~iPx*0Lw*SF+j_6tX=Tz(5x7r0iF8Xna&Og-4)GK~mRmY_Cm7%ZE
zzwXBkKW@ryef#M<9`d?X_>LcUB|m^r0Qda3???6kas=?ekB5FF4Io({el>gK$4ft6
zvD9Nfo(Pbi`th6~InU(cpx)tsLG$`s?X_zC;Kv)XOzEv3@BDbr@abDk7U}*`Wr8Cn
zp=Ny-Z%Q6OdWI<iNC-d+z!X3_Iw`5C14u(iMfJVYjQ^mNzG>+ge@0pTot7bhi~)3f
zr)3HtD<LyA3)3Wj<U1`JSwKQrat4q;fC2$5e5d6KAU7coH7_+ERay_c(+UPqC;(Rg
z?f?o0P$U4Gs{9$j5`dYD{5_}?x2jg1@baBzSB@h9r{bLN<H;U|{s6oLpK6sqqLO#U
z0t^Mh0Yu2n1BeC?3!p{-H3LWt;B)#_0w@|lF>-|fz6hXr0A(4L2%uyDrO97XOHpO?
z=zHy3PNR%+hP>Cx1yDZl>G4Q%jMKj&6Dm<FQ%AqosuHSEC9`?}Uy<cghRG~jD}cIm
zzE(Nk1W=n?hq{ny^#Z6LKm$4r1879p!luRne9N#&08I&J-fPd_YiT}c%^1qK_77T%
z09rC^6~K4OZ%t?uKwIU=x_nRmK{-DX+EJ^1&^iXtDS(*)%nINqmGf%=oylDS=o&z`
z0J;Y-D1gBM^iVl{1L&!^R{*^g_aSupp!Ex&e*goNFHd)WCJziimYE;o2g8s6h6XS?
zfH7<uMjaKvaKeZHej&(O$a^~@$?`)yW4n!IIFUMzI-WW~?aH+rViL{C)XIFeHYI?m
z45v}2Q)MzU0-wIaFgt+X<oFN59mJdf<_7RSfDZx83*h$vPD=d%<_EAKfOP?^mlG#|
zMJ%$CLoW_s1;Zr){6Y9LfMtZG)W10~8F4v7<Eu5dK4_~LioZI5HRQFj&9}ujlyuoZ
z=dS>^5H?ab1+bZ5T%WfFuq}WC0UQiqJN;b&><(ZDc_-EMQOo;L+e6+*mHK-LzK_~|
zLj8~NK@X|cV*wlv;79;Rm17LogK5VDIHCN(HRBym1#l~X+X0*o;7kB#12`AJHRhbB
zUJBqc;R5wy0Havy3PY)IRjyI$z4w0tF#bU8I$Lj0Z>r3d?06@D#{oPE;4b}p0o*4%
zpgs!VA>kmCuTy1|{{`?efL8%L4d7V-&zU2>tlf)1{7KP$mH9e=w`_f*a$;V*BR^x#
z#{dvSh9EKqktF!(wLt11k_M41h~&!Af=EG5pvom(F7hVTnv#$zh^#Qhr#Dke6GU3o
znvRg3nir-_1_Y5Wh|ED`kzOh@Cm~x9*$Fw6FCR7JQk<KRhuR*d{6Q25!pg89wFtEk
zwJ=rYQ<<y$SrBGA7OHFtW43w_wjk^@<<EK?s+W^6SU&C!!W%?$hCb?-L6jo+g9ro>
zB!_~C1(6s;m|=t(rOLyfjP*IWIJIaH#e(>PEKTyYH~H%yff95|Dt`$~rGqFFM4ce&
z22qxN#ULsX$^}uLP=RV3-j#!>BJb)1@pTYY>3>D7My*bjf%d{wLvhU@j6VzbhK^CE
zHrdbT2KC4dsr9K+p+OMOxyKs?(Kv`E^ri2&K{Qo4^1)~`GSoMXTLjTEh*mUP2k}D?
zKL*i8<+lyuJH_A2k(nfZM72{+M?(8x{B>mqIfO37w^*kjehQ+q%8|dI>c&_1-Gb;&
zGaN>bAbJMzRR}dg@txi)hz&t(45D`seS+v4M86=W1u;E{{y_`~Vq6g8gZP=<hXye$
zh=Hp9pdbd5hbSkU#56pJ5e&ytf1!?|j-=K}Vj4}5(Z>+lbJdL7fli<^If#iWXA(i~
z0rIPIrUWsSZ2YnNj38zPu`q~5G-pxgQfCM88(|JrKDv@Y=LIn|iRpK$!2BQ<kflk&
z#X&3yVh!^p{DZKZ34aE$RQbzP7wNSkh?VqL1+hAa<w;Dtxkl%cnAXyloOMC0CmTo9
zrXV)UbtZ(QA^a7@mLSdqaW;spL2L`+5Hq(2u_K6m<ejR{?jUw4zVn^7hrE|+RF<*!
zGdw^&NR@A&9uDFN`6%^d5XT6|snY925Z5?u;lG18rTo(bxyj+VAkGKzkl}?OE)wnr
zaY<$V6U5~pt}smW;VNOQ`giPW46g@qgK(32i+Y=Shid%v_#XK_^#N68CEqfA6vShO
zPl9+8#9QGYo(A!Z=F1>n$(b0$3%PD5jh`<%RqiVy{94tiPV*hZk3qaw{s%&Dwt{EJ
ztfZ!7AtVnWUkLd_ND)E;{j5|igbV~z2q_7vsOdvU9YUHA(lSg(J;1Uujh9JH#<K|F
zj3H!VYi6oASqOQO#V4OFgzO>Ypp%oDo0^Mi?Cw0|ywqqiQ-Kf)h7b-R5<;O63Ws11
z!4X0cCP+<72%nM7$}yfTTSL&5V+%pv>yTt89WT|TTHPUd6xU8>@`d0JA)uTfp|;!w
zlyG-pyiPQPSP11pC{HsngpwhA8N%lw6s1!vgyNx3Z(@8wrzf{S3G$3&rc#75R4G`R
zAeY>-%8@^Zt)RFnp(3?X2$e&qLSC25bctoFsm$u3_z5coYlcuOgykWu2;u7xz6oJ?
z2qQwM&CHe|v<jgPxh}O{2=xgKLTC~~(-0bl&?xl(uR$7z@P=ba@o$;goZ5_<Be|&s
zL0%+ELhBIPgwQR7?jf|L|6>U42;YV9J>dsxF?FoA51|ts>E40Rky;|T=_f+x5V~+a
zUDbw_%=*bqJwoUi!eG_6R|x$==pRCF<@6!+rH)E&8bBCG{h2BUo*XlS$Wis~@sJRP
z(veYysqOGf2qQz762eqAjS67`VYJE|Ll{dP7s7buzZ|1YR6Hq!$%=m^$mr8Tm>$An
zhBK(YQ)h-Si!eKcIfUP+4t_~S<~BEkd31!ACO6GjydZ>yiWd=%B#)niOG5ZV`F|3Y
zhOmrqmkBFFSQSFHFtUfSI)pVL{1d{p5Y~pUE`)s{><?i*^S6hvBZLhhYz$$Os=0-*
zSsn!lNmIlJm1S!P+f<I3=FSjy(fRi}znkG6>fR8lG3@}uBOx3m9Hbti9uA>3bB={@
zJcP3$oTGn&dMbpI1R4GB5C$>xv~teKHG$6g5H8TX8p6d8E|ITLFNe^8A6p+|rqp?u
z!em@tu7_|#&WI4+hHx{4TOm9O;W2yN4&ff*4pn;HCCE*Rgzty&K=}^|nG;M;2rmqu
z`ZR=RAv`Cq<Xhj;H<Vy{Y2?U_Knbs@^%6|)LU=D%=`hlS@gand^b^8BI6i1HY7%Nv
zs+fHfOvx3e2xDAAd{1d~Okt!XqzXe8@t3hRZ5Zjo$V?|aRhlvqGK6uGIpSoZV{E7_
z<gDRO7sDK3<P1X(!$v<>7zM&8NX{Kb9ztGfK5BmIJ60}4minI&3R8<vjek}$lPy$h
z81wiYEjvT$<s~?%&M;iccZcC2M;FBpRG;$wVFVNh3865IlStAcVMN1-(NCln4dZiy
ze3mK+#lrZ4Vev4^5K2&`sbm;mhEXbv(&6~cJmprI#=Su0&X#4vC>KWgFe-#mRpnQd
zEp|w&EOWM?lIl{0rucIAOVMg!RR51tGmKhce7iBBNd#Yq@l6=lG*kKrYKKuLjE!Mz
z3Zrfq_2e86V@(+K!)Or3@-S9}(J+igVe|>3Zy1fkXc9)JFn$W7sT2&OZ5ZE$(Tv5V
zek(%rFj^?5rR-wOBu%a9v<X8T2@Ui6FxoTxA&ejY)6|ZpWOfLnV;Is)x)|D-EMd<u
zx`fd+jBa6cr`dy<(#yz{9N}InzqhL2FO2?SObBCQ7z5ZklKOKP1H%{;#^5l9hB1sY
zH>wR$eTOr11XY@3h+nA2Sfj!i9mW{tj0<C|Vo4rPHs&^oJT;7IVN53fN}WPADo+n%
zMi>jjSQN(0FlL4Edl>V>m>tG%ay&D0j+&%w&$<8UE1?uI>MZz=znJ;U=qw524{j@&
zk}Q9QvGhNgM&ELpX=NCzWOr*OVOdRCgvIQsnbwA}E)4nN>v}ngG}8vMBnXRcX0@~t
z91G(w@)qjWFt&xUJ&YY;JPYG_7(2t*CC6kK*TdKy#-1=v$OR;fy>fsx(GG@jD2#pN
z{nP_g8A4h`4>LSUJrah|DuW*XPnv|1{C5~<!Z=GlMLo?aNtbhBoDbu27+1o$5XQwY
zE-^tm{##Hg7<I0O@ef;#Cd0oG#!Z@!!?+d3?JyoNyc5RVFz%^p{}#DV#|R%Pex%Z#
zDCd7+JS7`ry$IuF7|9|?9>FV>^N#SE`iA<JDzkkr4*_9(WGG`LiNv=9sK&Y^{ST*z
zAT`5;2sDC;nu?l|YV?xHq+ux4gk>+J<BpavLj)NkaVHZUY0Vr#mPq`XlQn|8CR1f{
zwg|FEkRyVe5#)*>7C~YJxg*FEL6`}7BghwlJpxAr`6DP0!DkVeBPbXFOs2vS6k%E+
zsyP1zO9a*kY;4k*FRcd1Gz@S?;EKQ(fuCva2s{yZBalp~X5<(eh#(k2NL3T_ze|LE
zlxoc3^9YJEEE7R7!k5%9A}G$jGKUfolvFI$#3@BBO*I@b%SKQxg7Ohmh@c{yDyd$^
z8W}2EwMqn4Bd8`@(qyX6?cX4RuLw0Fs2M>mx%fv=kB;Pg6G0tvZRN-=lclZ-C8vG_
z5(<dlkbWa-WBSt6R6;t<B4{2#3+{1AHjY(+mJzgKLTer^ZOCn@av({<4-xzr!HGni
zOhmf~+D9-wh8Zz*h@hja@Ad?L44oqQDT3z_yojK41YIKdD}pT%bY-2ZsZ8r4=oUfu
z2zo@&GlI3LOh;3hddXUwOp_uwX)^VWpicySBj^{wHj`;$1pOlz5W%nrhDY#o1Or)W
zFm;ejiK{Hrn~3-%htMAy!ASZGO{NhMjEZ1%1i!FpBvpJ#9uvXX2*yV+LGrnXIZh=A
zNSdKC6KR?p!LJcaiQuKlG%JGH5loF>nrw#%5>lFGL@<+mttm}qQ<@s3jCUE3(lj}x
z>9+`ek6?ZT!gC^+8^JuXp^~;h#)@E#Y>)^RMX)%66sh9fH>5NziQsrj(;pEC-`SGz
zC&Q)GWz^-=71Wi~Rn*l~>3c7w$(_p7ngyq%GRa<8FV#5JjnvnvOq(JQ-7M#I>iD=@
zW#dOscvHgN2)0MCgM5~{GlBzzUDRT!O}ph-O>No}!I0FZy%Fq-V0CKKeyTXaQs-a<
zhaxx}!4dX4E(cNsN6FH9j3AkNn0zvVzuEm%1ZN1RBao)2Oc0Pk&#}vS>ILe>2rfl%
zIf5$@+@vF!S0ngG4o-HLNy>a=I9aZ<><u~VIm27bzfHZvWMeY-=t%zk2p*6hM(~Ir
zr5-c$2~~3b7r|3DJ);^c{!%Xf5zL8VZWOO0cq2z_6z!sT8^Jrd4n$Ec8b5d5N02It
z)Z`BleB=owKB7oMGbvS^WQ62Vq#z_vHPvd0BBf$y8dI7m(ngUdio8*zqo0kMo|-{r
zW{e_J6q%#Q5=GW1N~JLwD#OVlVRn_7gOHP&D~jBNf&1fW`J%`lMKp>S%>q#riQ+SI
z!6*t58l^E6jzU!O9s3i^QP`t!L}7`-8igK3{rw5HC?=#aNvp6d!p<mMQTU?>u*uC*
z-Y7f-Nswy3D2gA9PeW9eplpYO3E?P01aTycM6qRm97GeN_&kcrtWY$HF3C|Mijqty
zM*Ttx%6tyQlSRLj%@ReqD9T4sT2}2qLfI&u?@##SKth=)M8%Qir{r<70?Srpf=o%4
zN~|eRg-ts-=jvoJn?~_f6g8r#shqlmT2XvW_=Z}WT8Daq73z_tLj5QjkQ>V8jpBc4
zOpT*xLPuCjYs#HAzLjM8mS(dkniE<?(K3ow<hIn-RLN`;MOgLvE{gA?_<>EPy{wbg
z)IN$1Q4Eh_1pSUt3?Ou({zUC8+ct`>WU1LRif-iY%IP6%y(eC<R}{Tz_KBij6#dD4
zsYZfi$|9LRQw0V_F-Y;?D26B=N*E?%asIz3e@ql36^|l}rjAc*8XLtpgQJ+PawZTa
zMlmUh$>d+7n5tT*5L~+xrYVpq%^=UD&Z5qyO4DyqtmS;>Me)0wXfb4qVSW?~qBy8>
z7Dlm&yeNvrQ7lpZN;$^Je=27wVObQ*qgX-SpVlOc474hW)lsaWxq-Ttx{i7|t!aG}
zqLTR}t!ZNvqQaY__)Csb=In`LFJWsG+oIS`-Vw!af+X)G?4l++lpu?kvh0gue-sDk
zXGmv~<zN3$6o;cY62;Ld?nZGhiepT>5XHqPjz@8V;mIh@5TxVZgj3Yh)Z#37mVAzS
zo;q`P!X?5r>ScqsCtQi*D)}F(q)FN9<Qq}kjN+Ecyc5N3a$PlNseC_*2T>%%;zyk<
z59N%G;sw(lQ6J0Jlhcj-G>T_Y%uZ+OzzRpxnS`a+OSy)}kTix@@({qxH&GylbNk{o
z-$wC{=6mV~>PM=PAUV$D@#JJNB$uaK=}Z#N-<Kdu3ORmQM2o@1Nv4b;bqr}@kkM07
zrF+^KE*(fn#{`+AIO)k^W{4qU4A0V;GEp;Avrwf~{OoGoZ87ACAt%FJ)B-W&Cgf2$
zc?tPq$WO4RkFS0~av_ydIEErIe8$imgH`z!!k6hyx&rAdi#-Mh9VgXA72h3$N3k~s
zpW<)Rn*uQeV+h6KPhdvG@JkHg7$Px5WAUemrDG@)Lo9~G82YC-eI7%}7`}|5Xbi=e
z@CCIvRT89231$jNSSkid5RgUuE$QP=sLC?ATny!7s1QTN7`}_)`xq+4P&tN1F*J_h
zO?p$67;3~&Glr@RtHn?~hOcCUWH8Ah39<;(is9=R>cmhthHscDzNCrP=0F1V7}k%W
z0V_yrLsd;$Ws%v6Hi@A{3@u}5DjnIS8MV2pX7p;sQ1aUlT2p0iZIv(M{t&~DG3?4{
z>Jvk|7~03sC5EnYK+0-nFm;rLb8DEvG$n(nQw%@F&^ac5nyjtKV7ibYKA&zebdRA|
z483FM!Q|{2P4c~zp5%ATsgN<A*({@JPDWGT82ZVkX6wKh2E{OdED1lyaG#ljV;B;{
za4xwsnTEzNOb*LT@gik2nG6sWmV;qr43l|OjEZ4&3}eXRk0Xqg1Axyk$1{{?n-gM~
z7{ern@`P5N8OjsaUl~qOIa6bprdUeNjA2#`wG&Y%5wm0XO*T#<Dkox240GkEOGIKK
z=Ed-P47X#rBj;}n^)@GD&K#fKf*2OYuqcMbF|3PWeGE%vn`bhu=34(j{gb<3X$;F^
zST5_H$+RMdm28riDyw3c&2>LQ6<))pwNyE4WV39DVPgyzVz?N?rWiKIa6~Q?G5jS5
za}0Z9*cZdr7`DZ5H<M|14BH99J7d^EZu?h)gtF{n*l<@o+(R~;{V^Pj;Sikz$~V#^
z^RRM`#c(`^(=nW(bAtLe^`y#?{8RtovvQp8N;s#S^8^`7(qy?L7l9bA$8ed>l^CuP
z{^5L#9GT$_njhFj%$qUXqVuUv4EJKt6Jbll{TLp^kTwzN5>Ya<>0u17<&22oQ4Eh`
zcp{gM%%(P(P5)EyGzJNu#qd0a7csn)Yd#$@CD~YnrPtdS-o-E?vnfp?-pBAEhMk#B
zS|UEuOqz&fi9ljJL6#(m_=Av~PKy8d(wdM6NiZ@^iAYIKMNO@I=`Qu}XEvqIVoINg
zY>CL82;mIWjETsUh|Gy7l*N=KF@BL05Y0+QAV(rRSxmANNkq;><Vr+tIt8eC{*SCP
z0h?<4<Nnvu(-DcZ@B6-|b+)t5%rocA6p9i;w4j6}*`i2PmXsp03uP&5rPWf=PKi>8
zWJ$;x-tYO2`M=)ly{>b8uJ8HXzx#LZ_c=4qIrE71#Rf4nl*m>ycocIrW}FzBmXheh
zq~>yKA+{9h+^XbrK{cao3|(WO;L$FI_R<~1jwO31iOw-}k(eWA`kxv@w~|kHi5_B4
zu~!Ul$dijM9z!Yylhs>VmWUxKLCr;NanNJ`u5L&6a?us}NzjXdA29tG(y{0>FL#U#
zn<mXuZYH@>G$!R^__~^LnphC~h<!ySv7b+m;S8Pji{VU({u&M@(T$|rz!=Vs;dM44
zhCwl$6T?F>JRHNhF`O4e#ahO!7zW4iXEoyvj(!a1$56exaRIZ(FeHYHVz@qr%W4`I
z$1pU8F)?hfVGN65I48g<#uYJ)h~W}C#4s`jtGY3`x^Z81<I)(GRyX!kH;z;{y4NtQ
z8pbGo3lzg>2CQM+s)ORn7_N#%+tGp=2HAFX+0`*{p^c5<ni$5#a4mbgX4KLnHH`5w
zTo(fckA^j)gZ3L@m{ikvv8Hij4CGDX1o39^mKY{VOcLpHYYexQ^yC<Bm!2Z>s}DLb
z?9>?U)e@$j7Q=LP=3Oz|Epbl_qqH{`Pq{p2$oW2Trnt4Ham$-!_j4xKGG@onyOuFW
zd_a6qoXak)WiW~JXI=~(^w%^29uXhqRUn4Px&O!TWDLCAycEMzvFMwPXJdFShNn5=
z`d(sw49{p5@rw~oBpwUcoYK5n7{l`={endCYZhLi7R9ibmKa`9iLb`M8OUmo#VJkA
zgL8Wc2Q-HFVt7A>Wu+OoE`~Q_=o`cG7*<HIyH>`qDu&fD%%~OhB)LZVE%9yfofzJg
z;QU-00}l#%lIs<Rg2x8+_Qq0VM%xs_<`}m8$HHm<K@1<pa9<oV<Jca<4)%W>P8=V_
zu#+=94kM0_WB4S7qvLqDma!{_-E3wIKgaMXYf{VjPTV8z6+esN^BBI6-Y@PGzZAbJ
zT51{0%j0XE9*ALIE#n(r1th2|)Hc3X(m|1)Kg4jTq<@s4+hGZ)Zof$XTJrfVhTj$K
z5AjdVfA0U%e~ZPk{*h*JjCPdb6oa$GW8yegmI`8-NPFYj#&OcM;;0=*r8tg{;{;hw
z7AuP<iuA7%$4Mp4AXTMLDOsw;QC+%*SThdBw`xb7Q%9DLV%<3E#Zf<w2642Eqg5OY
z<7gz(lgAikX)Na^VpFkM9L*(Kh($N%ZT+9TZIskjY$vvlqk}{-SEo2S$I&H@u5t8^
zBc{Bk{wG2=Id>O(h&|)z^`8hVk(DIl5(zOWrbIIiOQKk!8;2LikT@=i!;d4aq<(Q^
zBtkJOGHkg-P7Fj2Vm^*S9DU;GE6Zu(jM~QH+D37RPmkja8Oy}};+b)rB{3k5!4ix=
zFpjfJdQcqa#Br{M>AX02(1Aln@;E<^3re0BmQpX4<&roqjbmsjbyyt3rAL%3oP>;U
znNF{XW2D5WQtIV#jF!GayfTif;uup(y*iF!zj1uW%E+!BCvj~Y<0Y<(<K{SSiQ{^m
z-XPu>$4zl;t8M&L+n68=>p(rRq^HL*DUMs?xJ_>Kyd#du(zlCKL{^?jJnq!#RB>7<
zi2?75gS=b3N4!^@Ay%zp%!=dwI4UM!BrrRUIdOau$G$ioh~q(3=7Tuq#_>=bFURpp
z91qL*M5&(hBp!+5QHjS&_Q&HW_VAN&JQc^&vOg!z7oQQI71?$=FNkAd9M8-0g4m@_
zG&C<tza$2Aj74!QmL9FtSL1k1r|-w{x&*Vl6~`NKEQw>OEGtU(WpTV&(#uO@NB@;^
zuqRi=v0ABX#G2yUalAtzP0w|4td*Xo(y7<W^4@=p8{*hl^4}z}IgTw7Tg7eS0!8>x
zdV3r@BtD8`j|9uw$*Vv~e-g*8lHM)xX&l8G(sQpYpT+UH1ZU&73jSprzr^ut9ACw;
zUrArb@q@$xk$Jy~<6G(PN|x^>4vHKX`W%YmM^2bHelGbOmZ((M=vFrxqu+G;cO3u3
z@w@aN;-BIXk#2v*(NF$JL}8B>j}phrPUA5N94ku&u}q|WPF>@;1S%ykJb@7j9G}1m
z2{cKdX#$lKI5C0R3Dl8umBjyDl_$w^aw6Kdt0r)YPOBwQJ%Jhtu%l{;HN_dVqy4<7
z`@~U~x#Uk{J&F1WG>~Y)O`x{XNV>7e8nTFH2{ccjQ1nTlWdex=k_og*pmhRW66l&h
zn*`b>&{;n1#13M6k#RV79i=;oEQ`is{8JMsj%+M}ZmM&4v4_}GWW{<(^cHzhiz^Q8
ztYNBDiYH+vU`f~|yCdNyqJ4vT{RG%8X&EzOHi2@9oERn$NEA2Hymaw?qfY{T6F5x~
z&Pm|h1WuPeL+mH^PvA_6vl2L4Vt_bMWMf(Sp#Rr$o{G3Qfx&9v`QioQh2jwLB9X1;
zF2~**n!qqkjA92~lE9@2+?c>k30$UtV?}z7lo%ymp1^2{E5s|stHd$l)gmj&jMqq0
zjFY%Ff$=5FbqQQAeS=ucH6ekU6S%izxg~)+O8yfiCM9sI1PAW61SU)0E>01Paqg66
zxl<FER?^cY?n>b9lI5NR{v8+1sF?}ON?=}JJkl5UbMsH&;UwlIF(-isI9HR=$FT<!
zn47?734E>~4<+zi0t=)cX5LcdM-q5c`mvJb@dTbI=_e(g5}!_BzQi-)v*H_dqcK`2
z%~rgZ!1K~CB=BMaFD0-jfz_qd#S$wLcv<3=1YVVRErDecuZwSpOT?ujBeNUdlwK}!
zKG3*QTqPE#3XN-Y`c?vOOVIKTh4fl+ow!~s#-Y#q32aDUV*;CG-;uya5}Om)B0-<6
z65A5^Ab}61S@iY<{#SvW34ENu?gTzf;1fCQ5?Og>FLIA8d;dTC_jQdg5+JK5u`huy
zrN0u7Phx)pUrQele@fsR3HpDVz;{JmvK&m{2kAp4%a0QO)HQxi;IQ;B2^^D*iu*Nz
z-xByefj<)XD}lcg_%i|eA4!1z6g(*C`A-5!;;1B!PDVx^H2zOeGt03_R7j#M8D*)M
zgdtCA9>>X8Nn|cM^Eg3uVBX3SCyG^)IH_bmIf<$zeTqaiu}i(EN;RZwinYYrNz{>G
zYTYF2N!L%JK@ts<Xp}_jB-$j=IEf}nB<mS1lV~c@Tx=#XFOynGQxs2Il^ohibV#D3
zM7t!~OVF*Dy;BmMRW45%q{yyGoSH<pB)W5XCNU(59!c~}qJI)+CebU2-buJgcuB;P
z=u^)~CXq@aE}am$sA)HouypE(_W$QVXFrK_5`B|6Es0DL*(3^dOQQTg&N=BIi7<)0
zb_|lowe_Np(k$qIkxx(Jj3oNW|9?h0{LkmCB+gD^kQ@diF;JqIdXDsYNeq@aS1blO
zKZy%Up2Y@|7bS6V5)+cRIf<c33`^q5B(6$gcoHL$7@5SVBrZ{|OG|nA2+(EHd~A$`
zUY^A0B(5k~SQf*QJeWEriK~+spTu=Zj7{R2B*wAH@}b-Rs!^;wvs|CV4aq3}O^R@%
zeEwG)1ueHEF)@kTlbDjkq$F-l;=XzYD|4GNPSz<S(^7m|>5e4sOk!FR(`B402Zky}
zW6^gdad#5;sKU%xtT}ma5;J7HPvbRHoR!4=60^kzc@>a&K;%$zOy^2JRI+f0A4%d-
zoz70-u_PXszAl9)B%UvMKAFT*(oc)?lhHF~&qzO8@_8<a1tq;uVqrbwg(O}~;-w@O
zDa*AfEKcHO&de0jsp#_bN)kxns1#mJ;<Y4RPvVUvzESoiNi0obdlEa6SeC?_Nvud>
zT@uSBRwl8Ev$1Y8OL_2zm3XX9;vMB(BfcfREi#pE?@F)zkDbQ#NxYZD`$=q&eM=Hs
zlh~NVCKXf+zFB24$hIUtNTL{%Nvsl&50lX^JFzk!C9zXMK274|BtA)Ew@x?KGY;1?
zc1bhW3H1$j4h4@rN$gGHGbMeV#8(nui2IWGG6`m+8zYeWllVG`14?C5F#;XFP2xLl
zHAx)gPMgF}N&JumOW|=Si7pa!reGa@PU4p&ewD*vkx9QL@w@a9`P1@;;xodZibf0d
zUrGEe`#-Fh{2BA;6pqno#>8V&sGCB)6e^@pmO{l8j1*2tp>hhxrK0X)@A0T4=S+R$
z_*B$;6fEMz6i!K@S_(X^l8VOnB=O`Fs!GsuS$%{4)l1o#t40bnQ>c|fZ5iwQCyA-_
zub)DL6q=^cEQN+jrM*cCjZ{|SRMg4EytK2co2Sqsg{~=_nnFufzP`~Wg|;cQl4g@z
ztA@0*p6yam4|kHKy&O8E&{2X8{HmWZJJUzyvS~c+#u9l6kPlB8jh;Qko+<Q_=q(nD
zh$~k@Os0^MFhw^7OTrc%@dkA!BYQe!S=5;n&P?H~6tXgwr;tk_NFhw&bXoFhLLr4d
zsc3-Mw7w}kUO(y?>eECD4#64n@0UV<9Z~T5MsbP`NZ~T24ou<f6b4BT6X|wN3g=3n
zm%`u_&QIY2oem`>hKTfBSKqiOg^P8H1_lorIqS&bDU6W)k`ykL;A+Y=hz>59k+O_R
z;c|)5DU6X|#w${|Qu?ZrWrV_Box<3X<(d@6Nf$?Id@9=On3uf1<a0v`H<t8GDNIP=
z<`iy`<*t%_qQs;WZk4!AoSee#5>rx`DshK+r+B+6GfjHB$Z~1CTl$`o<=zx#NZ(ho
z%#@fV-k-uE#hH`B11UV1!rT;)#!+cJl)}R)>~Qgsi+L$LlEOn49=7l(H-FA^3#}|X
z&dr}~F)`7^lPNrvLN^oLO+1~#{1m=T;ky)`N#WTP-cMlzoi~&{m%{TYypY0z6c(ni
ztARly|H?!0VhS&%uq1`0@~pL~Y!N5hhO)&eyqv---1c?)y7(F|1PzU*4GlW*&m!a-
zveURs*;jC*Na4*CmaCNCH%6r}=BgA{r?57Kbt$Y#;jI+jN#R{?2%E|Z4Gp@zokB4n
z{dvmBtlN6UWL4iwfku`>O>RtK69+woFH+c?!WPbl3ivpMtto6v;X~#6K%~8x<(h`Z
zc6MwEAE^od3$-(a=a!d!x2fzC`R__$cM6}%XK%@Kj|6>~>oaz*1glhxyf1|>Q}`-{
z{V9B%0z0G_+^rCa13LXCg_#YbXK24q;b00Uny6yphZGK_aJ-2VO#GO_Puz-4R5bB3
zcOK?4akPnFQusB6zf$-+h2IqFj}-o7Z>aRe4UH;|jJA!UfnZrjG!~Xl|KW@>@l6G=
z;jAYehBPvcF~RKDRY3m=IM$5nU%`yV`U{PwVd6M5sxvK>OtACWM%ITJX{l^RO=F{&
zml;{;NhVG<(bhye6ID%|Vxqo@1}3VR(XdW#WH3~96E#fKq{T!X6Ln3{UfaZPtD*|?
zVA1td2NuMG1wGlwXlSC5iI$4f*hCW*-9mM1YNDA5&Ola%bEdhnysH{Ad$IDZOtdcP
zHYPq&P1>uybf8-Y6CF)-GSS(@sV3f0{~X=e=pvu4BL6>2tHx0cncBldPZQ^wIL|~c
z6TMC3OavxkCgLVM6TY%=DJ4uKRdh;~XGfVPELGArk#B4`Y76V&ns|O?S+NL~!j9$S
zOe<GL{#nH=7sod?LS{E{8k0;EO!P6q;`+*;*?G)t91V2Y#xf4j879tAQa@&IZ1gvA
zrirsm3^1co*vSJ`#MveWNi0)KzY|#{b}vV8u!-|cTyA2ti3?0zXht(<xFT?3@ED@J
z7pX-Tn;5F94ij%$7EQSkO1i{E^(MxpCN7izNE1DpL=~pPC=)D>r&pM`(!^L3*O<6U
z5yqIfT0P0f`{{gs6Jtt~XlEFwdBW1KW%U$?spDBU6W5zq(ZsmH#7!n9n7C1=T&*mK
z)9hwttk%@{u}M_)BonuqSZQLFiQ70WP26u{wu#$KOfhkniMvhQVd72`(@acf=a*rs
z78E;~B^I|Mt`TZ>_&p}>HF2MbnP${8GfKTgw=<eXgUf?6c9t2vt-vgEOgvy>zKLf{
zJZNIBiHA%)%vn((S_K><mcp>}Ogv)ZQI2?N6_0KjWq-`X<Lo8w{}h|bp5o@O8nT&e
z8Y8eQMtIi5b0!vYrm5!_s6SafMq?1VkuPu}nRv;>A`?qZEHkm##LKLwiPz-7ned9H
z9Ah##>;Jm!4DyDFB^=h8QMBZWsAvX%Q)Myua&^TDcG_{#GN;dK6KhO-Y2qsrZ<%<T
zYtzI|E<h9Sn%HDwv$mbJCN`SUmcCA*)-#TY_qiW7Ha3V1Ma?2e7RnyjVuCZD_8qF*
zRukJyd?5XylD13Jr#RL56chXBV-ug4_|(K66T3|8R)raa^Pj1f_IZxQUK5|GCN#2E
zbogAJUzpgZu(Yr;`%Qdp;x7|_n>fH$bN4p!tBG$-e8=5ho~-S|8>8cU69;9XW?1qN
zuL351;{LDUJFF6EXK?OC%=nwu1)Fok#P8C7nD|q(g+2_z1;PfB|CoS<Q!G@oaFm6k
zEmXClDRB%>8yY8A(cC!JLIn$D7Ajh(WT8(PSfXJ?LwuYS4H=gS`--PLj+edd#<I#5
zPP9<P!buiRX8bMDWTP{W*LZc{=D($k8z#r4x`i4R8e3>$p{BC4==v6FS*UHHj)l6a
zOg&YG{;U#1(P!%6vIZ6!DwP)tmfpyURt-f{3ryvNY;K{M1?FX=n5BjF@4}%^Yb*Lt
zZ(DFI%x-G5vG96RqpgK@7TR0rV4<Uh9u|69c)zL9$wC(kT`hFh>7k|ujXZdIs)cSc
z7L&S{9C}&kZ6RqPWg#YG+(M!hp_uo7H05CZCk~@=*K#dfFX376t>}h1ZK2#kPC8>D
zD?xkZW=6ouH!}v)-$H01Z=t~PvM@;Yz7|fiFhKfr3uj22DfY9#qd%+K%wUAGMT)Z&
zoTmfj7A47Nf*j6~@mve%Nz7?xERg*I3qvgoV_w;Zh!=?$i_1#!hg-PJ!bllMh?iKn
z)B;OnG;)-M%PowtaJ7u1EnF$LD=hFR7ROp$B_k_8*1|OwuC*}U!Z;ZjhfTAttw=%7
z>(o+;;^~fN#tjy3v~ZJ!2^Ma)@Sugc7H+XH(Zbyp?y>NDGh-5`L~~;@=Vx={R`E9V
z3{P*jFvY?h7Vfk#oxz(MQ#tn}rimPyQO%9<I__e{nj7@Fzq#>pbK_nMTbdg)I1erC
zYi`W6a6hM_g;_eKr9}&4PDwwY5{pK1XbWRp3u9IbV`&Rxo`pxaf*dq)@Ti5yEDW)6
zk&VZ>WGpnY(b&e57M`;3y@i7op0+UG!X^uwEj(l4Sqtx2c-O*n>{1J>EUdP$(8BXv
z5nMPHUa;_@g_kY7V&NqVi!9t#0gEm062q0qgG;iwDqq$5;^KOZF*lU)qDD=JB^H)i
zSZ-kj3vCgt(8?{1Wm>s!a+S4=_K@>i{=0{))M};A8Vhf6>~vk`^^Qfb+_zOdrmnTH
z&cb_KGTJoOYkwHm(kR}^(_sU*ou<Y{RcVZ_stmHl!d45rEbQjN&ELXD7Is?rz`}<X
zwkswh>`-2ocu&iJcX&o-%#T&pCsy=WJNJ`ME$p%IrG>9#FJ3J6TKJ3(7QW!Nxv^}Y
zy5c2eXO?l?hg(MXiu)~mtsXdF;adyeQMWR_k!4VYsQ11uRAl|RiTz;VkcAU$RJQS>
zg`X_^W#MlNKU+AgzG6LpVYEU;ir*~!s;+3*Dyli#^1FpUEc~e&7B3J-xNo#Fu54xe
zV*xfQ*eJ7clpXbOG04$2j<NBeA{;Aw@jjuV4a0`JxomAK<JDHiaW=@~#Y!R@NDK9e
zHmcY-*+x|xC)v@?&zo@eKLtM#oMK0pk2*H$N>sB^U8U5pQPaj4O{ZEmYTHpi(~}2p
z|5&|xHkiFhYoor61~z_c6<x?0mTE}<CN`Sd$l55k(ac738>S7*MhhD)ZFIKL#YQU|
zt!=ck(cX@3t!Hg6Yhy>BMB1t{EQSC2vx8z%pV`{zXh)akPO@+uY3yp_R2w~Q^s;eX
z>u5B2bhFXjj&ADc(8G?dIGp*tl`EmhF&l9kU+#~tdYo76t7NH^lpWoXa;n=l92=eu
zUlxX9+g;XtQ?$g`foU5VJG$rLDQnJ;b#%zt2y6_rakh=nM&8C*HU`Lzp3GIS(Z@z#
z8>g`*Hu~A<ucFUTDV%$Z#@ce)pUE!LJs89C!&k8&YKlQN&arWxjlpUTcL{#7I9FXq
zhswOowsC=t3pt%OMxXm=Wc7G3_{BDc+E~aAw=vAda2t2pm}+B$jZ19YVB<y`m)f|@
z#<e!a+ZbtMl#S6gu24NM*GRG7c$dZFN>yO23c89D#>UlhV~Jcc>{t%dH5!Yk<~I0Y
zoZHKF^yH^A8`rZkwT$OmM+fV6lZ^>BZm}_uJthY>_GT5q=|P7{Hg2~u#m22_>}_`R
z>6jB{a&g);GI;lO2j|s_=$3=M%`DSwOt&%1#{D+#;*zO=yKUSf!7AOWp`n<mQfAn=
zPZrjSd3iA4Y#VcIJYwTfHSGZo8JAB5JZNLCjfZSJY-66X(|_Z}vMsF*ZXm^V%E*r?
zX+Ez4MIT-QY;egxrD&YbPnUY^>(<eSlxOVdo0Dg4JSVY0tlB0@dcnqvTmm+}v+<IR
zMK)I3SYu<cjhAh_X5)3$?G?4|Rqg|oqFlv(U`^hz@urRCHkPO+v@hj0vZHL7PPx~y
z{wrAS^0IDijFmQ4sc7~*rx26gvhlW!k8ONn;~g9C+E~w#wXs(9rvsM~7u`BL+5lPH
z`!+Tx@&`6H+Sp`ctBq|oHkbUjaIb4<@FtcMo->>igF#qfUd}$Wv0Zt&NO#!yNS?fr
zX4st^&CSuR{w^E4xi8uH!p5gI_OMnP%05%@y<Ddiq7T3MHb(J|loM&60)8d(^h?HU
zWibAJR#-+}{tig6ly5Xf6yMu8XyZ5sl^pzF<B*NNZ2Zmr-^Nci{<Lw##?LkmE8`#P
z`Cn}O$}Le7=`?QptR8RL^{qwm;>FV0Qr;L3Yh!S?VJST2lK)351rCmKaI}MC9F#dx
zlV`X2cQzjDMEhg~ksEkLr5YkXudxG<cW{D(+79YC(NyQvwz7j09aM3m5_wd2aFT<Q
zo#<-*OdF%BgHxPnGP4vO)fDQ>HU>+nAzjl!E!L-DWZ{agD`O)E{Gh>T^&Hffr2)gX
zH5!U7+Wy-jW@+l6nS(zZ{OO>%gBA{Mc5sV>mJV7uxX{562dy2nagcKmIB4sjor4|@
zdOB$Dpo4=h4!WxH9Ub&h<W91)^v<%=$lc>q_Lx5VbW?q3>CRr_#<H@kmxJC8YzGdD
zUS1Y+kd$*=o@{kOc23%q1Cu@DfIU!Lzr1!+yAC`D<?M=0(WhzOLB_%5yacEMj8I#n
zpLNhc_ZX*YtV0KR2j@6A*Fk}mcW}0YK@R$sa-HtrG--xSnmEHjKL`EQw`V#y%fXbl
zq7T0VO8x^K@RLY!q`0p#i7SQ2$hO9L4hA#T!37R(S1-+P8x0Uw1izl;L4A>fiyd6!
zV4Q=Y4u&}x?cfRr!<}f&UZzq;h?h9HRD)i7Tl94?AK~Vz9I2#H;^pG{wnp)z`jrl@
za`3H69K$hfWL)iFtn=@88jQd?U+ZAJgBu;(<ls7TS=kK=a=nA!m63~L)W)*o+8Nx6
zS=<Drvf8vybTG-mdI#@0xYfaJ4xV!Gw1dfPtb;iY9$;TNxWmD82X{HRQ`38@#<$qF
z(^$&JGB$_%`Q1vLr3T*P;9dta9Ngz%rpA|3olBLUi&<?7W@qK^cQ9N2(OC2Q9|v<;
zitYp+Qnbe$JnrCO2lG@Yzde409|5?sjx%@@#jnelk!^W`ov*JW82L$gvXuD_o^kM+
zgV!BAt7wZIyzJmP=>-lJawa=?!NH3TUUI;Dd(J&ZV9Z6OIm~+i)_lk2GR|;bytpV{
zVLw;EtLjENv-CGOwH&<ZV2O-NMJ|wH-IhC8<zTfF4fhHqt#qPNc&u^omV>t)yrVhE
zf_T5jh48NWWSzKHWP6!fTn_I$*x=v`2m2gsbg;?6Ck}Qw*vxU%w~-&Jlr0XnI@so*
zk#3Byw($X*+0v+`25xt-!@);t=1%#4EX|3>uHzRkyPfE3VYcpb**~R!3VWpYil2$?
z+Zp^ymTq4<_=-EZgF}k8U;K`(c5r~>r6zM87Gr*^yzBu^gYO+2)TYY#jPs+CxX1qN
z;3sKbaoG05>?M8*aPX^)ywLxqB7PTn^UU5p;@~gt3@*-f@wbD2xB<Fo>jEy0a#7Po
zEf+_-IL5{CE>56b+Y7G($GWKCMx~dzsOZ9Qahw}XgW?ja<VJnMQ>$HcCtTUZi7u+T
zIE7)kfwzukMHLq(xj0$5_`(aFdAq`Z)nw_{&ZzE2Uvu#er-mEdA#=Udc2UPgYd5-}
z)K%&AT-0~Lb;^tlTr_mi%tdn-ja)Q#qp!GW=R9xXqN&2N16k0G?V{rNKj>Sy(JEk4
zOI56u3m&wyl0~<6F50`uxX8Nb;G(08q>Ge`PKwsm#i=ejOLq~A#W8O;H@YyzU37QR
z!;L<+@Iz2f7roqQ4%4l-i<lejqTCIpw~OW~9TINjR>_9x!gArMjkMS<93@dRFX@&%
zc~jx5@@YA<f#oi8E($LCxY6|Htwo@^v8AEfn^y-iPG1+N$-=?n>FF-|yExOu8FFBi
z`YAGFo+U9*&I6>`BG&V47lYjBGZ!Q9FG_6qc`gQXL|n{b>s(ymVvLKc8My*3ba9Cy
z3~_Ohi;ES9rSMi{sEc84v@s4>D@Jfq@f*=<Q9!0%>f$nHY-x;iak&fbEx+@#fQwb_
zqL22YU0lIgsy{$n>EbGdrEz~dW6;*Ju`aH0akGnwjNsy0jv&9@cQM|LZeVzDL0#wK
zdKWjisMOxz%_l8v9Va=rubW&<P<Gbj7EZSIQI&X5OmcCni`!IT_TF?ClU>}duAbuJ
z4i|SS>B2Jbj%ccjX)a#lU(ahs5x6(9;di;XTR!)=nBn3+H~O>Gy>4`GK%e3YVr2Hi
z{Vry^Sngtli#aYHVC7xB;Nn3SbJgCbT|89k&&ORn>|&m3@`#H^T|CBN(#-Fv`zwwV
zzv+EKo&2PWr`%}lSReK|IbT(J#>KNPo^!Fl#gH;A<djeZHi1>5Cp-T|4H-xF6=iwJ
z#Uh51epyLu0t52H<EyI7Yc5{r&fsE+8{JX7$z6rt0;w9y<iLr<KjHna?JGINE;hQ@
z<YKkLzU|^2d9HEsmMnDUZopFBb+KNSwQ}gx-dM+Vs_}Zy#rrNc$WH$Yt5oFo7|gP{
zWZ9;STU>0Fg$?Aq`au2pp~zg@S+qU{?{x98i}`-^`<9=$*yZ9=4|_c9)^g5y2t0i1
zVvmcxE<WSF=iw9&pS$?N#jji}F7|OlbMb?VLoUAJMCHcS%9zRtU#iddE)KZ(#>Ka)
z7_0i7lGva8V+1Qh%Rx8#wr%>hvLCg~54-rq#ZRR^`I*ave+yRSd4tV^v-)=ze{iGr
zP|3reE{<^3csRz3Cj4LW<lp=LcJU9l{Y_=?qFy~psl}<tvbbIbwm0}Exnn(4@KEMO
zf1YFTiXMNJKHBq{h2#b9cn>GY!ceR*Ej%iFIMG8DFLF4^ixwc4+sR(kA|4O4H>xq9
zhn5~%d8px`riX?e8nF%v#aUO!Lv1gbf&8G&?95fyLp=}mJv30j;+HK<Vof+P=*gq8
zhbGF^)I&1~x;2+*q0)JsWvJF3+IX-$*j{v9XzL;AMH^8&5A8j4@X*miHxJ!Cbn?*I
zLst){deNfp!dme=ma^!>BjfN>3`?hA-X0!$dWd<5d(l@7y*%_*iQM^l2@X{*d#tyz
zB)sUmqo>*%DRn-(&h(<4tt&q=C>Lv$mT*0I9(d!#f_#la@q(W5ko8br8VlBe!9x#u
z4^ur%^HA{6$HNE@mncqO4`+E8Abpy6x`#8=GyOdD_o7SfnX<Dj{F?}i8|dL|59c$L
z-~V`#@jRaDBl9^P&Q*`G&uJ$ImwNjG4;OkEQY>Oa*)R_mdAL~394a3+t$61)T#;FG
z7JaFQ%h)F#uJ<s~!zd5eaA-VSu2PEgZM26gJY4DFDlghq#(2@ENEXeia&}$qVJwR-
zi#m$C4ejjJYrSZ7a1M-D1q!-PxWU7Xs@`M|H>paKG!2+#f`^+u+~P%9CaP#wkM^_q
zhhRmxO&K|+G~Qln;}nTIJlyGFtu`WZx`(?wEc5WDhr2!8<KZa}PkXr6!we5|JUk$0
zZcuF9eI90NvCQ&tzY5~Qnaw`YpH0aJr62e3h}`CSc*w)U9_GpN7(;1>JgU6BgW^X>
z_5+8Kd_qRH=t*Yb!#4bzvWI6>=LI6~X`hv#^K)|M7%k)~^YDU)7d^brY3AW24~w`8
z<gi%&uc(Xo#KOxma*}h4c-2GkA%Wt$AeYE(OoeFqFI7f1dAWxb9@ev~J*?zn+*G#O
z!x|5(<iPtthJ8z;^R9xwEi%G85^M#BV6BIB3Qo-izVBg!hs_?gDC0(rBd@BPbV?uQ
zV$&!XXRC*89zO8EKUse0;Uf<_J#5!0Ejv^S#m62#@vw{AzSbHqjts)j0{`n?p6=zu
zTT<4*M?)W<@e<%ge>eQX!ynv!J?!)FrH8LP?Dz1aho3xr?co4>$;0=Y!*c#sJk-=U
zx<hm@JCB1NXy@^RheL8GCb6uaJskG%tBl?Cr^8>kU-7RA^8d}l@1?Me$?Qiw{KXB~
z$4Nf^_V5oo&4=LwK92Hntd9zQROh4p=&zi|NHbS48p9TKnGaTg`Zynzd@yolAIB>T
zt9ODQxiJWHktfQbSUOKn_EF78bstq}=Y>*5)Kg1q_^9clwvTQ)Wsq8aR5Z(CcIK_)
zBl&w-U9p~6U(9zfMszS5`55Hm93PE+H1W~YM>8M2eZ+h;_tC<~{0`BBf8#qCEq%1{
z(bh*RA3WvJ+K&c~qMeWS(%pS@@X^u7sXD!{gVD(c*+uLuG7Cl5k^@t_u@iL4q#izc
z`sk%o`V`&bJ`z6q`RMOsMTh7wcS#>9A3Hi2rVrPL=fhGKTXag%f{GP=A88+fkI=`#
z4o1dD)<?N?tII0#V4-AAS$IpC_fcRgIvS_@=p)hB$7vEyM}u}2%7cQ(8M1%Br))q+
zV_Zk$Odqp5M%{Imq7CpdP~z-TeO7if&h@dkqcPRTG#}^r80_PG9~bzz%EuVG`55A3
zgpW&n9O-DB(kc3*=S4m)_AyjJvb)QM`54Yt?2aCsJ|kVRWhdiOHoucGs*`cKkIVe%
zZ=)l{Q6f+KcQU4TGDiC#uMn>kGwmu~?PIKun|<6lwc-<<j8&bCYkZ9JajlBG-p36b
zZt2+0iq~;s?2LMBcPHaUA2<1!;Ny=@Myt+7|IWtP&c+j+4JO^<W1^2qK5q4Kn~%vp
z{};J&xU*5Si_xo#!3y8*;|?DbJf`^kFUgU(vt;4vbRUbCmOUiiCEo4h9v}Bg&l2e{
zL*hOkGbKiMF=)J>qu^tXj|Y6rEqOjDQDo7LSss>go{vW)9`*5r#A6~uJ??{9iou`s
z@sy9JOQ%ew{TUz6`q9I&&-r-X#|zR6#D(lPJvaNJkC(V$eQeOOUF2h##9|*W`*_92
zt2$lk<24B`+t($ymf!HPM7p@5NiK6P{5O3p_p!pqN+0j|cvsuSDj#q8c-zNnA8Sex
ziu(!o0Y>B2!Leh6wenx5J%{%7KHk%&LARp+MvXX6KlZW7$7V&_;^RXf+oiYq*yiJd
zQYqYRn2|N#;o~C(FP6B|2Wwm0_dfBl%g1gXpZeJE<7*##l=`{2S7h}*<0yBD7SR{7
zJle(B=Y#yx$5*P=N~IoP=@P&C_=c7D@trI`i%j}n;vm~tvK*55QT)lrFI^0}9oFeD
zB_Edin~&c)t5p_H|MKyt^bwKGq494Y|ETRGPubX`(>NxL4|4c0hhx*Ikj9EER%TI_
zM#VHnWN=A_|9}L?rSV!CucuKdjpJ!g<B~K^NTYHZz0-)Labg-((rA%J%QQ|(<K#5z
zrcp1As_Cepn&K&9HL<!_Lu}GDs#`7T+F~8ilfAxlW3hqQP;4Y#D4!<MO~qznb8)Ov
zTcy!DjZ<Z5BX$(qitWVqVh3@Wa&?mKEOrsQiVKw5O}e|-L+mN`64%Hlo<<^#K56t#
zBPqL^hL=W4+7vC(79DY?^7_&_F)e1qtXMAM)TrMA=}^pz1+j)wPfO$UG|o-qyfn^`
zeSp|c>@S`vo+ZYWYoPSm;vn%Hakx?kOJ5|OFJ2&CC=L;CmFLCML&ag@aPg?KqTTq?
zG%icyzBFdaI5Lg#X<V1as5CB5W3-G{i&uzOidTta#JMVEtn@YFIPqHXb){aP#tmuQ
zp2n0kZj^nZc#}9myjf(GZb|c>07kt!NtRp1+r-J@ex=?aeV2HrI8~e`P8W@CQJlM_
z?-B16XNYZ;IxCI)(|9J0XVaK1`@?C>OJk1o1LA|?T=5~%Q{G3UpA;Vz9}^!JpAd)1
z^C{`4#rfhLvOg#NlDI%zC_XQ~AigL*DgQ;%i^Z44SHxGvW%79=jU{PR&!9#IOVe1E
z#+PY)mByQCEKg%g8e8SOB8|7xcqfgOI$b5M7T1VxiQg*byVCEAYsGcqdhtE6a`&jW
zH%M<3H;J3Y4ocm|jV_HnvV16hEN&Nfh#!eN#k6vLBE3u8Eq*Fqs?@#GpNXG~Ux@p}
z+vKx9jjz-AGmRr@97yAvG=5R)x8fo3JMnw*p!kFMpd$Pz{ge2!cv$3j#ccJj(!Ytn
zi+_mAl=rVR{^karL8T1-k^R_Av?oJ6N<3OTMqGG&v^Fb9mx&ccL;P4VkC#44JVC51
zo+wrke~{<N(pAM%#A;%V9#PF}W>6~wD+4=&+8NZzpnV1%GN>z`#u+rppq_Mnv4Pl7
zY$SS$(^R^Z*i39Lwh&v2Bjnjyx{cUYY$x8L)Q%Z+${;37XR*83MeHh`Ds~h3uhQ9y
z9@0I<USe-?j$+286Jk<KiKe(hK28R12K_TQGXqcd@(gkr_|j=HBWA^7-axvq7>aqZ
zAodY=DgJ5Fr;BHZ{Y3u7koD(rRtD#0a9#!jWFIJ=Ee;aT5s&H_`45)9NIYM>K)g^K
zBG#AZ#nMB?Vd8MnQtG7{T*e8IMeQs`W-uy)H#1nC!Q~l@&R|Xk4`gsf23KZqYX-Mv
za8(9ll>Md*u9g@tjuo#F$BEa9160a&($|YOh&PHOl{!KCX7LtrqBu!BJTe;J$<os@
zn4ZDy(o@7c#5={Q;$+3VOZq<XZt))RUU7!Vua_Blrt~cFesQ)qS8*Q9U~UF4Wbk4J
z4`uLh2G1yUp7@0Li1?`ZnE1H(tRg%q{gn8$IA2_))Muri6BmdJ#plI+@?j-k%HTCw
z7Kw|+m&I4aSH<7t|GM-W;u3MGxJ<0vE1EwmGFX|x{tUj(U{waImGp52YchB%gN+$%
z%HVAo*NN|l?}}^1){3)U`aSV|af6sp>SpN=#Vz7iahv#oc$Pf3OYaar5_gLHQvz%I
zNd~(z*e%QF;-}&saj*E9I9}1dklrVLDSjm`R_cKazRBR&EGlI2Z3f?E@LLAIXYjpz
zei9FgKZu9KAH}Z~;b-Z?;xFQ_Vx`_u-~J)}kNBr}MEpzqTkI-NWTUIVQR30!F=AG!
zWzr{PQ8|l>(uR1PSV=ryJV*W~N}nQD5l<3N7ORTa$+Mbtb+Lw6Q=F;PI$6}s;?gWG
z%c5Qu^|MH3k;<Y$77gXrBa22^G|r-J7VWZVB4Z1&sn|?xE)LVjoR-q9#MWXPaiL0V
zFWp7#Aa)cxiJiqQ^6V;os@P5JE*?~BPw8G_Z!spu#e`TT7LAdag_Xr=S)87QExVsZ
zItxeI6+N*y4>QuCm=(*#oEV6m6ge+l5c`OI#f(zV$f92sgR?k4i~h2oEuJZ!B@Pe=
ziWe!@An9|&bH($-$x6LIdZ>7zI7GZiyjYwk&tcNT#S!8q;%23e%wkj)_h&IXi_5bZ
zoyEi~CduK7EUw97TozaA^eS<Tc(piI+^;y-O5Z4s7q1hq7jF;|k4E7p=?UV^;w@rr
zrQRxiXBJblxJ`Ppc)K`7yhCg&|7p_qiqplr#Jk0N#QyS}A$^}XQ=BD^R_dHA9>`*m
zEDvTeH;bpUn4iT%vOFd}EY1@j5g!#NDZ=B@Pl!*7Pl=By^%?2s#b?Fm#0BC)agjV<
zkbY5oNi4=$oW;voydujI@m29P@pbVH@k7N~D!oj6Q(P{-vnSeJS7os}i+{?29M)v<
z78iawMwa94EZ*TtFGu5Yyqm?^EPl=6w=C9Wu|A8>v-l#5_p*3Diyc{fl*I<c+$wGq
zH;J3YE#g7dXPfi~;)mjPu}UJE6+5MOiyw=hh`Yq%NPQ~3N8BrZCN@)qebV1>d(Yxa
z>9557;@9E<v8VjMlm1csUOXuNARZD2$@3@apT)!CFXBX{{+`7j+^frBl;cm?*_@-w
zaYXtr@o(`T5#`bT|D^IBEq#o5tXM%T6W7b<xN=k~N40WPFURq+R}oJTD~l(J#a;I#
z>668(;wj<}idI9qu2@s7CDs<}h!vC3h}4s=FE$VxicOT-q#RAlQC^N*IhvKDc{zHN
zqh~o<$fsR7+LxoHbSts7*hXwC_EDS;(p|)kVkfb)IJ|h>ls;ALCUzGuQ-og9sdAX*
z=q()+<6=Tgic{ooNqeF#I-)BU?-G6Kw3rdI;){w9NDnB-z;cA;$d{ua%Nb%Hv9EZV
zc)GYndHYHC7ta*W5|{rKt;(~@F{m6vWjRN@Ks;AGPaG_sFMh3<7fKHiFA^^n|555N
z>EYrC@e=V;v0f?~>rv&nyc{o-<Hd4}F2@z+m|Bi$<+!pOSC!)?d5#h3d~G?dmL4l!
zBaRcx^*MLE^mXF(;tk@BVp=6mD96p^xJ8!9;zV(hc&m7uI7I%pOHUE+5bqSnDRp`|
z?$YV}a@<{xd&)7l91oS_UK#HfXNdQSGsRird_|ZoJx6>%d{AV2`7Y1H(vOSt#7D$O
z#mB@Iit~i@lj2k2)8Y=LJ|q3C_?);vTqr&-9&JV=@=`e#mE)6g>?+6Na=gslxEyQC
z@k%*fEypT(z9udcUl-pHmxxQns*3ie^m1{9xKiw{)YZ~!#J9w^#dpN><+H9F>&x+>
zEbob%#rMSx;zn_kc$IQ(k=`n96F(4t-X4AU-7dXD{7Bp>ek{&Ygx%%%v>e}*<J)rV
zk$s=ISNu%;T>L`Zs9ax4e<ki0zZMUOpUdaFa(rKo-(@){{w)3=9uj{Pe-dFu<8oN~
z7x7o|H?gWx|B(JuJR<%j{w;Qp&rvxXox`;`jL+d1e)*q6GKW+S6>=!cp<WL4bEue$
zt`R5ZP$dUL`Z%$Yc)WOmSXs0c`6THY;>luF@f5L|SX~?}|C-XZ#M)vVv95T7d>Z7?
zFo(7|w9BE9?9Ii-ViU2c*i4+GTrH$qimk-fVjJ<&)zMzpUb;&TU32Il-BIi$b{5N8
zM4qQg_Y%8_-NhbaPw{z`+gmy&#>IrVPN`-N7Ef~+l7lUKA%{LWI61gEc(Rm>zL*v>
zVpcq)I63J+48^=y$&O}7-yBZM;T%~`7ta#U5c`S!#WTew$~8cGpm?@8NX#kqT<P<~
z!Q%Pi1>$A$xhRK=bGTBLp+&nmOdKwb5HArg6(=h1Na<1H<>F}Z3i0Z_(Q3U)dQ8zG
zjuo#F$BFY5?YbPU&*6z2p3LEf9B#~ES`O25xJf>@i4(+|#aqOQ;w14_alN8VmcCt_
zBHkh1DNYr?ljmJI+?~TivfLxyFWxK85bqObinGKc$~#+nj`)E1pg31N$%#hxVd;6|
zBjTgtW8&jtQl3xc@N^EZ=I~k$^JRZQd`5g$d`?^-E)<^^2P(pg(l3dN#Kq#v;w$1f
zdA^>*8#%m_!@D^wk$t7OR9q&$DJ~aRh?A9fmGo+Hjrf-Mwm4fpYo#}e>%{fqd*b`z
z263_cH%V_6w}@NCZQ}d#*`C9W91iF4OCBHPu#*cggcsuD96rh6&Hz&b?8;#`?E$<1
zpXRV9hZ6!+4zM?e&vN)9hd*=pJcloG_%4U<bJ6oo`*P9af?wtErA}$#DW8AdpTpNV
z9LV7tPRk8t-!d%U+uF#7{G$iO`9nYlbNGSv$>A4n!W*N12z4kI{Wqu|bJ6p7KjrXq
z?%#*%&(%}$%*Z&u=As}JzbWkRBA-w?B7p!$vBLZT3RULs9RA5gKeG@$B&;7~I6A;_
zLG;k(F+o(TV*^wOP!^zK5QQ~@=ov-Y>A;5YAuf`ql>+cph~t%oFF2nVph|#t0on(V
z@uUE?0@PN7lLJ%@a7qxpC&Knt3s5~kjUakFo=;}hWc5l9t?@DDIsxhiXdFbP)DtNh
z1*jjOfuhxPjfM=qDSB|4Pep#HSK*ojXd0kdfaU>O251!^c_6A}3ssL@!AIcu3|Q*`
zZ346nqBp$wOc#UjZ3RB;J-VsUAwb6fu>kP^odR?Y&?AUm9qkhQ`y_d{09^x|sw(lf
zEci||v-5q)?rdF~sAqbrR=tAgXHr;n?;v_&mOcqqUPV~Sn+%W&V5(w8dvOr$08S9S
zXwTQ0nB5PM4lp9XB>^%4vH|)9=pUe58QGS;0dfI?0AUdQd{7_R^8pG$^z<Vm(1*3+
z8}59wmDM<nrOW4xAbK2*7CtI}W`MH-TomA983zOy%yCgY2L?Dhz@Px<upa`P7hsqk
zPA<M=#JAXZIBrzc3jz#LmJ1c1qsa$!`BD-cn2}`Op=_ON3=1$kh~_{s<D~&E3vfe#
z8v~3CFe<<`tVV##6^)Uv3NTvJgITT!aAg3ik<nZ28Y7>p#jz!S4m6w0cU`Ylxg7NI
zoOMC;Vhi>4K}6Q)rT`OyXbDVKg>McpN#Yif<xbQLq2O_=jJE|iQokZsC@r@Km?GmH
zBA;5Maaw@s0Y2lR;2;LLJHTrJUJr0jfO`WxPER?{2rxImLjmqnKQQCW0J8$zA7FNX
zIRPFl%^$wG_JG>O7V*(ak}oVg9AI96$2h(D`#+^r&Yuo^3yc%Bb@b~2{9P~d$pB9U
zSfo;(W;OVt)26a#RfqWjp3&T9>71+2X@)Ndu#h5%9$<b^kze4{+8Dit&rN^>`jQ4>
z<HoYZ3PQ`v0bU94s<JZ_Ysfmk5nxGx%>lLqSQ=nifVBbEDes%g_*Q`B5-S3%RK-^5
zbafE@ej4Mf(J6l*f-hF^^ldIi{yai}cLVV0bUvkD<oY0bGv)mN?{PTz!zr2-8<clr
z5WT3*yqma*>Cw%t0k#GBIKU@L`ao_Usa78b*v=)RF6FN_F&CHZPHi>Za(Vhq1?-al
zo&dWgX#7-y>xg=<)(#8$BEUXw0wHRL_%gs(0saW^r}lyU0e+Mld+F-{2LgN(;9K?c
z!2mz7?E${m=>WaY#g~Qo<T;%W$;gRE{gd?10S*WFCBU!j0oGGB;hTV6DnyMPpa=5#
z!-Moc65y`@l|mdJMxp*z_M<}lBS8zo=*_|6%OgjJI3~ogAu5C@3sEtIL2`@WE5@s$
zU*S701mAP1vN?L5mTz8gne)l&6GBuCqsv6)FzSjELsSW)z2&43Cx_8Rkeb=)%wDC#
zDIuzbs2+kf<SFY=Lv^buvYB;4)D6)kMAs1YLevk@GDNEo4MH>w(IiCE5RFt8v-9mI
zUQ-%}(QvaMp3=ypS%~H#TF8xK#5aYRN;@muIz*cgZB<-{5FJCb3(-D|wt7~Eea;S{
zXQvRI<wGN<7T>C);Bjh*ZXvpd(YxV1rE`xEi4e&UJ>}mkMDGx>FzU2;$XBkSj-uwT
zT~VY;HD?E!AuOHRA)N5vE{$d~e=Dh};fF{wW*)ur$b`s-SQ}zpi1HA*5VwSw7$OJ}
zh8P-R7`r+|A;eiB288IN5$PXB?`5-~z9CLy-NI-DqdN0f;8^sgvVQE?#>S1Vac0TB
z+r+>SXNMS~1`Y~wPKfh3rkkVQ8&n~>aGV=P<VHF;#Q7n(AzTnfO=E{#s0l+0PnqSS
z5ErXsshK)F#E1~rh8VBnE(tLz#N{C_RVQ##T^3?w7+r07!6HY8xFW>WO63q-8AjK&
ztHS8=!OF0RF)EH3$A-8j#67wgjSKOJYp}OjBHgaz{4BlIetn1=Lfoi;H>nO2!sr^!
z!QwdH%pq$Pt(r+8ZVmBFh-X9G7Gg4ohQG<i85?3sh#AUwM~FLFq8dIm#Iz81htaR-
zu*B(X*T$$T?vf{8_b9%*vD!86RppBd;l2<vRg+mEW`~#);(oQAFMY5MJQ##+obBPk
z5OYI36yo6!PluQvVjkNV;;|5qhj>(_uoGA`bMY<UNQZb*!5M+4PsxWrJHS)A@tJvc
zFT3%%5DP-Q7UFe{=|Z`^Bt9>`AifxakNPtsk3}IC^EAXON@9txY805nx14y3_=d`5
zf36I%M0#n6WfE_O(J%0<;H2GHwp??MZoIc7SF!g(tO@a!!oIB$Va(!Kvy^v2ysM<*
z&n&DD@gBFSJSyh#euxbrehl#wXJd#>A-)Q+Kg8w`TU736A+|~|;71|0h4>)EhatAp
zK`*5;J_lt7SMh<U&uQGrj{qS)39&20ry=&R=9(%|dv(=dotcGib?sHHcu8W?=VA1d
zl3#?_r{ccUDfd7Q0qtLhI3VZmW#^vB<C_rQhWJhkmIL&@e!1>o7~OJnmHi<9Ln@jT
z`<b23A9mAV9S-q}+_<yx_?5GlLA3Ys-heIrL*v3q9trVRh`+g7b;Ey59{+?u9!KSI
zbUs>5tT|tTW-0~Q+r_bYRLDm`SaTYUJdVqwdLA|M(b})1q?7VEK93XfsGR?I##T|Z
z6Z6q-%v{B>J2@Zi%vF`;6nS#zsV2eTHJO@6n>^a)Q9F-1a%+}H-BQek`DkaZmq-0P
z8pz1sxL~8WAvemSu`Er*rXrJAG_PpQb=o42mU*<2Zp|j^GDL@>PdgRYMQks2$fKj2
zJL$BuH0#N(;2utP&EwQOx+%50$kjx9k9@S@bL;D!M=X!m@_0Rucpiy7uFK>4Jd$~&
z^5~aG|2)h*tUUVU(Kin}4=0ZTE&L^!e6+9f$mZeY;pdUgW19vjlaFR#an`Z&<$2`f
z9H@r*e6*&*V$F4F=9a=W{()=o$6n}vnvza0azoh}8Yx!$%skG@V|X4T@)(fEz<l&E
z@Vq?ER@3M(NP>4G=WrmTx#4gQFllfe=jU-j9v9{@RDC-nkBf@_?V^2#{dTcVi$BrB
z&L5Wl_btLp^0+jQF{;mH@}d8gd5p|sR34X?>N#3dlzZA0^5KtA@$UU9rE+N4;aBG|
zHXnTsy++1yiq9LNYuOOZ9JZZPf<@nu$BlX1oyR?S+?2<JJSOFFtHR!#kKX*^#pRY#
zO(wGE_4)d?eDu~Z@9^(b(&RjD&tr=89ZKTIPu841Q@N~MV_F{5^U?e4)OV>$6m+;Z
zj~N`VJm%#=`+a%L;lgQY%*^xkMq^eU_bcY?{J%d|S)9hK`~!JBn8#eTi*X*(z%iA5
z`$!&-=JAR$K9<Mhc|4QHvpmh?$voz3M4nO|o)(#%8TrmW!=^oBkY_xX$AUaw%41O;
z3-frMJ;vMPJYFdIb0?%TZ`D{F1-o%^9xvzr{lLp;{E>>{hu>FK4Ni<V@>s&Tn#ZSk
zEX`wC9_!h?dAym&@;p}Nv5FPbb#{eHVe=VwwL0w`Z7(cnO&)J4^=-A6{Yjs9RRlkC
zt<7Uy9{fEVdh#RE`+020<HJ0*=dn?_K9DC<H|4Q8k1aCt?qzEpKWr}BCXQ3N^x=0G
zG(O-NJNOk)9y`@<EN+cwe4NK8dA_n|>{38lsM+d0dF;*O`#cWj@foLI9^d5gZ6069
z?Q7MU&imM?Jif|fzbq_^-AFqJ;()5e?kavxDgKnfclqcynYVk!4|yEQ<EK1+&f~{?
zbYH=}l+H}zF2M>g0;g*u{`dn|0Vhu%%<hBV^Y|mrkJ~s<z@O|NF2({b=Ba1=#m%#T
zh6Vi1S(*n5IH~}nfa8>Uv{+WaF$EmU!#9|PM+I4mx}toTRH=aD3#d^*%>qs+pmG7H
zC`%pRII(~#1)QW)hB{e-S*jMm>=Zm`uU694izWI-tpaKnP`6Y>osxf4AK$1adwn?<
ztI?={#s$~~I0ZB*plJb}3+PfnvjUnI(6N9{h3L-~e3ZRK0WAw?RY2<k+7<XtQ1tbw
z=^Jh2&{iBOBa_<8p+f=p`36rH`^Hvwg;Ki~aB2a)3y2laO}X|jtk}H}z0GtnUxun~
z^eCWbArd@#NwA<3(nh=hGi{unHWCFS3w#;MNYPS&CEYA-@Su^T(JjC$U|<1f7vL9=
zE`Uu~kTx<bsDM5N^etd`+9+2ALg`!qfdq?V5}7ZcAcx}VgtT#50khJ^nFX9)z!?S5
z(yxI264XrM!Hnct@*E&Owxn!r+89*8kODqV8|M^oZUN^NqPMhooG&q09HrN_E?}WL
z<x5+1_&se@&lp1s7*@a|1w6`17BHfKO9~j2iHd8UG3<=N*WxZM;IaZn7BGrEUx?nH
z8j~?DFW|ZYt}kG8fzNyzSBO`NSBW%^k+@nMD_$dx6R#~`yaYWN^M(R$EZ`1VZW5=6
z6G}ce7jR2SPb^@P^sOb!Z4#5k+e?*XWa>LhK2r;rR?^cY?h@}V;2w#4OQ|y?n0Kbc
ztdjly0%l9kDOnyU;6drRCCft+4;L^`qS(gA3V6JL9qi|f@k9Yn7O<><Hw$=*)1E)m
zTEIeyr^WdNJX654($AH6ZzlS=)aMI$p@3Hlcun>f3s@xaQpt@ziwk(UfLCN8ixG<1
zUoT*Z>~wphltjI><h;Cq6$QLk!21QPEMQduYn8ORfHe~Dh;NB+i^YOi%DewLWz2O2
zte1tl=(C}K&76TUZWK5DC(Bmp4-42<zz6@S8}n{gQZdd)1?=R6FW{2`J}cn!0(NmC
zbud0HV2{LZkrTMJo-N$Vy+wljLhJ6!0=_C>pX_v|C$sM_<t=9Xrhsp`y89r}2j3O&
zJ$Jl5F#7P}XX9W2d@FNz#`r;b4;AoZ0Y4S+a{>Rza`^u+brsN8R9|-s_<KiDN<a`5
z6I2ut#lTinnwdBAdfo)m-QC^Y-QC@dVvB-egMr;*fa163y#M=_Yu&ZizUQ8MZk>B3
z-poA3KO5mMCBHYqA4+JMAILq=;IG+#6#veb@{71sxR}>u76vXcP{=@GBkbg*28t-j
zS)(ZmnF@^XYr4!{X5exI<qce8ps2w=TNFm8tBf#OUSZ%$1I3gVS1e`V@7hvAv7}<o
z8kI{Me1KERD3(>cT9LwXN*=8v6%1T!;7$W~8Mw~C^=!_-tp-Z9iv)F~qJdd;guk`j
zVBkgrHyPlsZ_M7z$<!awh==P)B?I@>m8Ny2vVq%JR7Y;t0p6jU{V85osu&=W^Y~TO
zKy?H68o1jCj}%PR4BV6FRT&@Z%A&e*pMe?%4%U^A>dO5F9x(7lBJ!YtnkpoJNF`Kw
zSS2JBKE|etM>-hjXy9=JPjFTZJY^tdAZ_4j1GNl1XP~x$Kk7==dh(2c26n`%C(jxn
zzB4vb$3VM!Vj74VsB54eM}4lKzJZ1Y8tJ$iC{C>>2A80oFmXzmNG#5PzBL>-U@MO)
z@(MI3PiQu&ICo+sW56*G7-0y_8es%x@(sAkJw+B#n8U_w+CUSPH&bk?n2V6jmAA-C
zS}JK}pmko-#z5OVZ)c!=p3^wrJmN8;lY!0#x=?PQn}O~I_=+(<hRoN8`Dx`I26}Qf
z42(0-i+wgQ+`tF}eGK$9Fv!4QE~0_{2Da9dfr<kRF!42HCJM=kLktX6GE7NMNCgU+
zc#Ixtgh%i(ilbCAT9N)kInOILeOxf!z+_#B2?m&Dny6$FH%Rpevr}@*WMG=X-yCJS
z0VY}?C;nMaW*PXvz=sC-p8ISAa}3NiFwekzZh_je*}wt=73<3~1AK$~+4{23z#;=A
zOp6UH$@8U3_(!+P4XiM*(!eSM>kO<nuv%MOtGGt7ZT+zI9N(aljsGd#^dG*3Q)FP9
zf$aufFz}**9R_wXb{ROJYP$^VRkGW_o_tiH@gfHHshpf~iFi=6M+_V?aM%E&Q!YR;
z1Rd2PR-xK411}jkZs08gFB^Epz#A%m)xc{8URTZ-l?z-s%ejhgYU|{08#rO$T?41`
z{W)pi9mb`6JfzNhYKP6euRX~Xu|FRf_}D-T6D>`AV&F8lt%;{i{<0%y823yRGx4c`
z&x}y=xq+Vz{K5!e;H-f!4SZ$bTLa%2_*yp?x7#;VK2*S$`pGxc5Ak~gKjuq+P{NJ*
zlaidmuLgc&xHeJ9#5n`Mv*!l>VXQFlr-AbZE*Rl?elBYLr4cxnB~ph9OcxFOYXD|g
zD<>i5cwrMoOk8fFsEJEW6qpbbmzkkjL@{?2!01g$&L%5fVg9et|F>4$L<ti&o4Cb9
zNfV_^+-Tw^6IYqxI+izajfv7G%9tptl3(ge$p&(@iE^6#u)Z)+^S%aB!Nm0{B)`_g
zbtXujY9PdlCT`F~O{Po(>DWL<Hjot!<X8i_)kGx|)lA%DqOw}x=^wvff18QhP26Gf
zKB3%c;w}?alrvktp;T2)yxZiRD4~#+A8jbrP26kZaWg#Czt2Ps6E#gdY$DN6?l*a-
zLLM~nfVM&jt30Hfa%LYf@u-Q%%<y2b;Y`8EhQhS5WQ0$hG5dsSK52#_g+YdOYnkB*
ze?t?E%rLY*W8zs8&nd5MqMrG`bK^QD>Z&joe(UFX1M`1pyoL$WL^E18d5b`zCNI{+
zF=3goO~g!IgG)*=&ViUnn!NHArW|1@Q`$sEb;uck>7`i{t_jbCZ-z&cz(ivcbl056
zK5wFliKb@w$xW8h!-@Pb1(63ber2Lsqj31GOtj|SF)`Uh8xw6!j5jgCL^~7hO$;_M
zgtKa*qlr!?I&;*G!dc~^vqdB6Vq#Du>Cav@lCCDYndok!2S;t9kI6G<>1m>u5~ps2
zStfpdKPTyHqMsJ!?z^&RfEj*$f?pLFNV8nos={ze9BN{iiQy(jn0Tj=Tx=wCdtUC9
zZWI}*OIF{AjG{vtGTOu#6Js@vQwfD(Z+91v+-pc(Lni6~1I<n`!^0U*oOt2GwVP^U
znu+QB|6g6W+4=RIX<}A>O?d>Q_s%gf*Tg(k;8g?b&Q}FCw8+F_?bSpVOH3?PUM-Df
zCYGDHGL2$stT3_C#6K}yjA50D)h6axm}`Z%eAk%x)5Kq9$k&=!XJWmH4JJ04c-6#f
zCN`PaY+|2@{cN4e^<<BUy_|MKwwgR7$u<+)P3$nSQ=5LlkliMBDQEYX<*jUzFLY*D
zixv)WN0@lVl%pnNh#XR6_OKG_9|<>ISnCB7FRCf3F&$$7yir~<@v_MPE3YV$v@zv%
z6K|OK$i&BL`Ark=nmDEWxQVw^^KFv{tkCQUwRuwU9Yvab&&2yCKF~g}Eq0ZO$62Ni
zRmh5*rB6(JYvMbdiqj^}F!-DJ%*5wrcu;1QFSL_iDV|lN@h_FI^{?}iZ?rQk`d*Fy
z&alkgr2L(4BR`t>$;8hlexVb78~M$|$S)$lDra`IDd$u|PB|N8hdB?N!}BICm^c>2
zOHusIMW-`IabHv}n)ug5gD4tCfhaDChAaMD6osNF9K{n+JQ)Se7Kx&46jw)aX%q!f
zL{wNTisDg76qiMDxk|23q<+yT)|%W1a-~Z6RwFr6i72kh>y%VdN|DbnmsV0H3UVeY
zmy4o&6n92(R}|MoQ6Y+3qo@?cwNYFb#m%aJeH0ay+^Beiwo4<dp6kF(%GrTi@<R5l
zvhv%axIKzo2kuY_YgJK_>o)6FjpA;VJQzi_DDH{k-f-SR`z)oY>UmB{jVSJq;(;hw
zM6<bWP|jXG6h+M_9**LXC?1RAajl!1rAM{T95S<1CbI5R(QpeeJ*|X(QY(sQls~IT
z58+;*LhUH(M8SVBsT-xgNxdj{fiPQNvt^<}A)g`Sm1CnQj3~?~qEQTrVsI2z6m}E?
z)DvP+#G_~#MXM+hDsiLmqDV%O(rh{kM@i;?`a=I<%7*fg_$qIv7(~%HiszL#iK3~J
z!Kyagj!aX+D$P~iLUFSSTSw6~if&P~iK1;3?V@NOMJH9Deg`ETqd2L`KPq;Pq6@vk
z3j6ScVs};R6-DnTdMNLiw@}-XK6&0xN#7`1Xs!Nvc?U}dMlsfs<(BNR!p%D*8g6G2
zrlHX=AaGL;k77g=Bcm7<#kwfgbNQke6UBrmCh9&K8x6zJ_$bCjan=g|k}P6}`;jZc
z@7_;}VsaEyxPwj=@WuS8QA~?s73bfU=~2vxVqp}EqL>-QEc(AK3!<1E#T@1H73W4V
zPYFxw*usiAH6jzUi?wuF6w9Mn62(&0rybVHDX)lPrRw~@9hR=v(lv@}qo9O|1~){p
zF&c*YBT;PPzN;U)+3qMdN3kV}tx;@KwOxwa6?dwU9m?4R?XcZkTdcb$ioNQ(`=Z#d
z<UkaMlpItXW`|82<~rUgi|p{IeN;QZKD?mhMa9Fmyd1?VQS{M+*Q-&y#w}*y2@9`B
z@diVdg^0y>b>&SiL=;~}aa_CfRupejV#|prK4A2V$;l|*iQ-)qzNdJKZoIpII>h%?
zLLPnvG>VU+_&ADB=o{Q?QJkiuejGUy1;2|$WpXC+&sF|~BC|O;KN0X%6kkX2dlY{#
zvc;r!OumWY+bF(^;(NweTgJuYhbVrG;^!!SiQ*^rBqmH<6)9)>HHzP&ILBS1LY7iU
zr2Nk){)*yX&PFVByiJPdIlylt7Zm@F;-4rkDrbk8SOhB!BbQhxWTCJXDqpHdQp5@a
z6iKd%Sh&o>br!C-aJdz>Qqn>x3q>vd3KRD83JX_SC}yF!g%Z~Pdd2RstLz>XuClPS
znv}Ls#=?&=DIS-y7Ou8%4U;Y9ER?rGU(LDSf3bopT&tzjtZ3oRxKtssmE8q5Sh&%`
zO%`sp@KjuGwNS~zEt)t9RH$s>HVfppt3uOwI5|`x-k}yq?y^wT!pe9UJnz=dSGRDl
zg=)(0QRFC??z2$C!owCGQQ`d-9<=a~g$FcEh=)_bRMSG~#gW`HQTV78)_sfv*LBS4
zkUz;TS!imZnT4k<)Ux1M$Xa;D!m}3AR(KomISaKd@HdF4g*q1MT4-RQA)VY7`cFLz
z^ql&dCCLdJSuj*i$%(j_$}dYul|=YkhNaeQ3o#3E<p~Q(w#6APEDaLkCc=5^oRCQg
z*_@D!1tNWzd&;%obKhC;bT#S8ZzQC#8o44VO_V%u;X7^Uwxn>yn_CRI=xL#sx=l+9
z?Q}s|)JmPLwS_iH+U8xZh=ukRI_RJ}TIgb-tA$P$I_F2taXpokZWg**=%K>gz==(g
zGAtR+15bn)e|oEbu1JPKvM-el>8FzZ76w@1Bas6w47S3<C=aiLI3e#Aa8N@m47D)K
z!f*@IEKIjB!oo<MM$XJA_S3=y3llAjv3TsjI1A$~97xKiNhy+&N-5!2<7%g*RVwVy
zBny)*OtCPP`l)ag)}_J^%DtHi=lK`K85U+*m}OzM4ySZFTvHb1#&v%>T<duj=3A(2
z<2F0|=Y<9AQWd#iVWE;m78YAr!gaC2BhkxT)3hwJu-C#q3(GC6pod#nWnmZlpB9#`
zwy@5^dd;p;T&p-gEgLLsw6M*>b}I~V3~QU{1{N6cwkU2@d8a?ZxW`dYXNLs}cdDFf
zl(W`u3ww00-J-jXnhfCkEf9|=9-zLGLyD9iR<b)S<VP*M!0o{60$X0Ra4fI$5*<br
zUa{~h{ffcg!dDi)w(y39H!Zwx;R9XG<J460mW8*KoKQT;UX==$`^1_Ek?CCvr?iOt
zJtZHfh5SS1XDocg!;131RsM<c(-v;cgleBMmRk6nlW*|^0AE^Ryk-34sVR|(r|yiU
zMYu;Sd~4w+3qNzGa7SlkTt*mCY2<qgKd9Ls6)EYGkzW`+Ec{{NPxX!8ES$6OyM+yz
z(7`yR+}iws{;iDsWr6$sJVO&-6-)}9jSflvH#=kDqJ@7MpKX+|Ll1!+9@crHa*2&X
zHVWG)VuzOrRh{tgbg3Qs&*e6L%SeIEXcH1qyvz>m7dS!*b&9Iy6^d8dD5m6UCoC#y
zqm+&7Y+P^SDjTJ3l(!k}QN~7D8&@mg%5qoo6ql=9&JG=eJMnQxD%iNz2Cs>jr2<RY
zXYz_RZm@BSjazNpXoF`3H`%z^4$oDn#_H6hn&pI;yK1XshelX*yNx?+oVRhoMim=(
z+UR7XvyHp#@KUIjjc4re?7FIryKPjn!*FqrjmK;}Zlk)5dpSQUr2Ih}HS+v^B@Za}
za^xW!HI+YX<58Vt>OZ2AIZoI~o>CH@u<^7C$)8m6l>NUm&z!=uHnus^!bVFQ&)KML
zqmGTbHe5SAy{TuTzKsND+vd*%XlTQ>5wp?AhG8RWgJb71nRa;phlDdg63&b+A32NS
zHi#^xkR+uOm9~+|3mqFQ%BqoEMI!5ZHhfN+jmFwgXv9Vn8%=FA%PUij$~pb!Dr8Kc
zu$2u4Wcprf8}B+HX=8_{*_?;AHrnOqq`i#}$~)#Imt>`jjjkH~{<6`{Mt2*p*!a?w
z9yWT0&VwU1dfDi0W3|qF9~*sb%(OAfMn4<<Z49$9+{OT1@xh8*`hiLYDOStM5G6zN
zr5nD8@Rf%VHpbZ)&(>{>vN77m7*!an`1PlebXK}%g^&C4A<_vpCfb;4W15XgHYTgi
z6dSX%;f`b4n+^Zkn9AhSZOl-GT$YlLvNGGo92G87oNHr&l6i`(J6{PO?p>&awb=i~
zHkQ~}s*+_kmMfwC6*gAdSfyG1Q3#bUXiwN8vukXuwXx2|dJfH%{Wdn(*l1(BjU8HL
zla0+bwkT)QTkY^~nrUR4O0IW9&d1Dl+SsL%y^6bSJmJb7Dpw8_a#i+e5#v=0SJ>78
zZSkOuL+Wyr&>N3(Ag=H#?2s!ju-#t@m|j$JOz|bfmldi1s*Trdyl&$Sn`ij=(#D%M
zj@$T%JH^IZHr`gp{?Nt=?s1I|@7XwM;~ka1t9VMWz>{iTxJ{VexAB1r$)E9rH>`5<
zPi%aam!DR0M)6Zc&y&xUe4&^NXkXd*TBGjIHomd(t&N{FOM~C3+K-CgEB>I^v1Np%
zIU@{xzu5Ry<-aNZp?HoFQVBJqKZp8%+Nh*al<o2~>2DkV*f<!&A>R74@vn^vF<cu1
zV!Q$h|6hPRakwXpGlgQ|Sy15^io|ef3<a7k9YZ7riJ_QgFH^ii@p8qYF)%IggmtgX
zOUR4IP(q7J#&DI&DJ-QVr<~(uVkjHK)iIQdp}dw}lQ%-MtdgsBT@2U9!Vo<vhKe!V
z5Q7;*G=>{vxG9E*VyGFz%`w~(L$w(0iSY^x+dZig!<|Yh#ZWnh+hVv~6N~OpIX#Do
z*}F7*w_;UADo{D6R$V3cE8ZK!eKFL?m;S#&8hIdw2UUlh@`q!1B!*fsJfp%#V|Y@@
zV~UT*@I>BzPM=kt(xRso+4QqY>cmi2$#XH(RzgiysTV{27#b;W5JN*Htd;9Cbx4f7
zkor~(b`0HP=n+FKhB)UlhQ=`@Vo1i|s%A>jQB22>Q9@I>7PI**t$8Z+Rl+RWdOn6G
zF|>}MjS8E_&@6`L`TkI+MGP%tXq7h-R?*3)@wPFvi=k5towc-m3?1m4`AKG7>QJAl
ziz;-Dp_`WGI+iOU_Kcxd45MNg9YgOJ`ou6WhCy1TuVR12eu~tm<pGMcGdPAJF$~u%
z<wIi_mM>y9r#vEtk=ku$b4`!Q>yM9NY@UzHm$Kpn6;8}cCdV)(hN&@3i(yR+Yh#!m
z!;Bb~#IRH~XT~ruhWRnfieYvPbMiLl{%0n0ommjWqI~JX|CBCPVNPe6@|B9qV_2ai
z*Yj1%*~8U&;kuk8h8;1ik70vmH^#6zhAlB(FNf2`#Ohm>Z~KoVXOpEnRk%lSR}8zA
zu$2AT8^b=$?vLSs66#aVQl`T(9EstAZu6rtybud-GJF;buhCwN;T^6iZ~n*d62pQD
zDSt!BD>1yP<h8u~^%&mp!oOR6Glt_Td`t1|7=BVYi%zKIq+-OEcVjrEO}wZ0q2l|B
zA29g%;SKGNV)!_QPgMA+B88`woQdH9)ghtq^BBH};cN_F#_)3tzr@0r%;3!Q6$64P
zU&ruG4By7^T@2sH@I#EZL_&pY^*q+`<);{U2Fqha7}D#76@O*tdHSttIZfiZ7=Dl8
zj~M>s1oG0!mh(#fQZLO(cm(-dXO)KohR}Z*{Nq@jz={MeiK9>)cO+0Hfx>YViDOS3
zd*iq?j)FL<$8m2Qk$4z*OT}@O5>dP?9yWJ*97W@}B95-UjQ8crczC{AERHR{eCYEI
z4@$&QG9Lbc2qjD;_kCJWI*x||IdQh2OdMt7xH=95!gNa<<>Dx>*=ypsK8}iUREXnR
zl`vM2Ul$L9MoypE8{)W8OK(!VSxa+j)VVc|N?N6I9981HYlPcW?RE}X<<y}v@vb<k
z#!*fA-HJIQxl$_Jqdg(HFOC{<^oyf^9QViZKpfA-Q9F(Y<KZRM!*M*q(Zx}dvlN6L
z$hG77?W45s$m4N5p*?&o&cD_Q-#Bg)$dhs2whHf*l5=QJ$HRj%Q>{3j$@6F97#oDb
zI&svEBNj(o4c3ceeIO0us2|6|AiQwnmT4GAqd1H>%y@WXEgJvdePiBRW7blkt;j6z
zvnAq4#?ds6W@?T115<IN<H*F}#L-wavx;sUUi^PI=zNs~|FM&^_Pk1({72qAjusq9
z9G&85sq)rwwBeBRI=POujiZBhwVle_=S$xX!cNk7=Qz5=(JPMLTGTa;?s4=`-c5Uz
zyW33Vp82}8%+x22zB<D+l52}NARgYg91_RSIDQOdpyD9K!SV368*fhyi(_~kOX64>
z$A~yavU|G9^leV{s5nN)F(w{{smXCn;Tpv;E)L%G7|+3e9GRfVJ0TO}n8Z{$yobj7
zBqUSm`Hh8Xb{x~<n6B9w+$nL)Qr`8e0+v3kDW^F{<#QG7#$iC1&#h<50xrFhMT(0R
z`>Db*ZgXzQIJU>Jf_;n0rg(TxwK9%XajfR(JlPNre}h{S$6EEwb&Bg1S;|D8+^Cu?
zVwTl6tC1~=TjMCD=V_cS&gTyHzp?DpSt`UA!5Cg{l--K_hogOQ?C1Qjl#Rx5Fpl@*
z_#lo$3?^}$(!g>=W604sUWj8;W4-MY$FVrxh~rI8bz^yn?Z)v+9OoJfv)4T@uWD~!
z&q-A0ndgOxrJSGRalFm8`1`NUOzz~L@)L2KjN=`Kh<s#zmmO37UOc=F!r|~@<ij{V
zQdi+M=Epj&({Y^9-TjFouTVaXhqv^1KQEuf(f0Z90-v1ob~cVL<G3V&LJ52o$JaWv
z9ZkZbZ{qlY&KAeFT$-eO7Y}b=FnzCamE@;5er5zP<$?x*UvzTL$MI_%zj35-{LU(I
zWShtr&&wYSN=@WSP0aqKSrQ6|HVJR${H><`QKZd_O8#Y_ON31<YZBfwDV#u&M0hEE
zZ334jP>?|JM0lSek_eAzS0=*!BFdS)EP>0F7gf9>FXus!VX9aHpEU`0PzkM7GJ#Tw
zFm7{)UX=*vwsZnz5-6*j+42cooj^IwUT7j$H4T5=yC#7O3EZii+54Ib`*vLd*C$X>
z`*}kGw<@_&k)<~&xmod+MEFBLg-n%HQaOR!l-#b!?~1eN&IImCV45~vHG#VmXqZ5w
z1ga%)PXbRQ@MHqj6Sy~lhZA^&Y6;X}2kOg%3EZCu4}$;iR}Un@Lpg`Z^pK9XrlQ+4
zoZd$h;Q``to$$vLna$mvdMbgZ6L>Cx+SIX8i=_!XtF6#@=nQ($&s~1j(YicOsGA74
zf4v0iYb$&Vqk$Gtjm;Sem<hB=plt%t1gr%71Ol~bC&D`|@dRSpC60wXNhFX|JE;UR
z2{;L)HQPp?!N@A-xM<l`?kVPOF;Uo9r?ja~$nyy_;aFl}pktM02{ccHqhKp75@?w~
zt3(*j8H5?DTPx3n?sf^Zrz0gWMmyFafdL5&OrT=|opi9B6?-JmMH}MecU96&v3ss{
zea@t30=*LGoj@P0!lwHr&{z48reRp<uT4-sr>P7|U~mGXboMxwAxcIjFf=b2mcVf3
zBl40Zx~94FtDE%3#n=SKCon;$Wn6ytCaOLslV&I7>rPH!it?$7oMDzu*9n}Fz)U5x
z6c;MaPGF9bxr*}?=PNEyT%%iKk#f59VkJuwSgK@MUe4{XGJ#bIY)WEt5~~wflfVV;
z&;-^duueDoYYD7Z_t=oY#zc58l<u)9!5@G^pV_OXwkYma+^V=uaeD$gl<ZX8MfWqq
zEk+;Mlb0~NFM<6D98g!}{J)sM!2}Meha67es1kb15haX=FXScU$MUQ8l9HDbcqK1+
zRmtm3<@E&KNZ`!`jwf)I?I!S60&i;vK1$#OLsL_ESL4#j1b%NS%)X;S@>5*C;*s~b
z^i4wf`w4uI^K(@w(<~Hn2p=c#i5fhuct-J4>L~eK@e9S8%|iV|Gx;ikuM^-oFtgw2
zx__JC&t&0GnVf|06Zj#4a~ef|RQx3$QGZI{XXRJw6C=Oo<-aK@%HNcg{J~jL@>c@q
zm6YP|$nzsNX{~<}xR}7BNj#RszX>3T%aXV}iA$1U3}K2SQ7F#~D=Cu1rAi7Eb5TW-
zVGzsRxhhI|64xeiT@oFe2~U}>OrlsaJc1NYqI42vlHuLm5=jhfCMA>MPa&m}xJt=I
z{bht6RW=#=)z!%`qUIjDD3?Te6;ghUk_w8;o5}T5OX3k#rf1%eM5QDuCvjskbkv&^
zNp4Q!7Uj3*C498twj^#(;+`a`tMCrRJCmrA*Ez^XkCLdWSysF|iE2rZP)?g9_iEAo
zNj#9mefe57^7;=dshO8Qq;*;GVU^^Ja5loLfFzzsqH7Y}l6X?5i<eh^5>F-ZbP~0a
zcqWOY%AZZ*xg?AvOwHC#qP`N&aGfOT=6Stjc+jDcsX-DAlW3$8Za_+M7)>IU*SC_e
zmFJ4$$`kog3RB9{No15bNw`X~id10oayr^XkVIp)m_!q8x1(ayBw8lXDv4&AZLY|E
zwotOZnJ~3ZqFoZln@JlLw#^q&t-bONN#umAMYT>zbXIwn|LAv5;`?UOKZybKlVo_7
z%hWT8UdnstC4H3iO`>03a-mtc90QXWoWzhM266Rufq1GvG>KtJtVv>R62p@ik;JSd
zW+yRH+nt!iq$EZqF*=DcNsLWmyvmC=mvKsRn9EK`f`lVtnw-RxB&M<hDx9Xuluyq~
zW+X8)8J>{yN}-b0nv=xbWcaMY>LlhRF+Yi=Ni5Tf3siGa5(_mOZyEj$yEus@NnXtf
zjS$)N@+8kNu`-EON&NrQgSib@ySXrNW9FWSSf@LEBRx=WJFnO5hGh6dQZ7o6Y)N7(
z9XN$2Q`nZo_9VVe;+rIPB(XDzkCON}iCszTPU5X3-cDjq5_^+)o$}hUFNqe-!#RJ6
ztJ7Tev;W**NgPVza1t--D0tm;B#EO*yr9`hdOgL9rVRftOdqE?mJEM`ZjuNW>*XX~
z$*<b0NxYWltD4IjNxaFXhejB$n2zhBf7U!atLOFFi6l-k5V2kTx$xa&ctS#cO2^LO
zzn8@O%0I|UK2-8o^YGM^XY8LOahg3z;?pEP*S+vr-mhrCM2pY~zewUNi;`iG=XLs5
z3_&eq%G$`&ErgF1eVfF0j8rMyn!@)<{J?mdLO}{YCXsF-zi_dV_(}QCiu_&{<vf@8
zEs66<Tu9;^w?hk=-9mn+bGDE_6#rEGi?gal98~yNiw5C;lDMb={9i`?6bhxniwLAb
zBe{zO5~ji_6w$=X2VP%9Qjip`N`>eDm!-nX*y4(pD>7R&g)8#>$`p#_`RgshGr$s>
zEtx_oC1+JwI)ySRlud=VFK$kScRa36p<D{(Q@AD-Mzb4IsF1?7DO5~>AKbo9g?zu`
z`V{_Z5$>kqEknFT@x~NxO2Ka_{aOk+k;e|6e^yFiYD>8*g{mo3PKCknwp19*S@HH%
z`0&*oDO5?}&J_5-1|PKGlN(&MyHlb6Ka#?uDO5}0o)oI5!fQ092UEB=#g~^O_oYxH
zh5MB=%X5YYQeYxs_MsGNDt}moIR)xJ#x0{icM>00zN2OM)BjT`Je|Vs6!xT0i>;^7
zCWW>sJe$IEDKyjm)J~y}4#8Kfn}V4_RCztc`icz{8>Y}G1w;9#Iz@lB6ic&dMLUI<
zl6VRUom);$Jsx*d7#;$Ylx!s#C5~cN(M`eQ@LPq`$Xaz;NuYA_#!8-7Y?2DEznZ4P
z=fFugrOi`lp<^L$sic)+Yek+bwo9RX3JbM*2YN*c15y~63ZHW6#AS+0Px@*KT~hp9
zyzmBESI(FfK7`OM6+WEMo!f^$uPf(+6J9Inl|t_n`se_eW$Me$w~~G-^j8w<u>bt!
zl&+G(v=j!XFeHVcsqm4fQ7Md0VOR>oQ{mam2(>d(k+GB#KH$MUGA4zI^z9VJrZ6sr
z@hNaOO-O;)<18g-BIj8UadHY%QsHGgIrka~?}1NGVNMEjQ<#wo@3GHRoRz}t)c<~E
zppbXSiStre)+)S@G+%WVDDoCMix#D@I2GQxT9U%X6gDYeO8pd;r^1Ww6)CJvVND7v
zHM>fY@|$}{*5>(oCF@dnrBxW{m^P&Flk&~<_SRCpb+{2owxqC?KCHs+DeP22`3@!N
zagkklLg8NB`xh8PQrMTm{uB<RaFB5?g&$Hl#0BNXOyRv0j-+rjh1XMfL#w=?_;Ly_
zDq%c1rsO5XhONU0^NR9U6<<^AtnxRNpHMuW!dpt-R%ESlt>t8%zmvkddA_~1yr04c
zn*B`i!xTQrmwuGO$9euzYdM|gXOw)J!gty<?SD=;NZ~A<IfbtnZB*gwd_&))a9NwM
z^Gvl~i4eb2h1*s5qw+r#e^UH8#fQPd*!wHpJB4$~e^;dN$u_cjLTH5PPew?UpI7wN
z;6KVQO@|hkE~fBrzAn<ZBrh+dq;MKVl#JB61^LoQ8j|OiDY;y+Xc|{2*{1r%)Bn2%
za%&nT^1P&yQfXYJq;wi(l$1^5dL>sYmQyUR$nbKFk_u^DtK_=8{M|NEQTYvuH|FIx
zDY-d~Tk?`zl}eheoW^ZRZdbfRv5MlIigzhiRlHmAk2YbHyC;q6Y22H}eQEse;135i
z(zu_(4DQX~fixaWV}2S7(s(G1!TSoPq;d0}f|_YOoW>)ZoVM~$2N{sYqiH;r#^Y%`
zkw*J8I;8Pr8c(IsC=DZxr_-pF#@egot+w(EE4GzBZKZY^&!+KQ8m)s!v~Ad#R&AwD
z8g<jCm&U}l!qgy*`pVa9wqah*teHkMjcgij8de&18tF7LX~fcqa|v#eR2m5#Df#)f
zd}J%^KNA}&(@yR$8@A}AF|1uk9&9Jg+liNkpGNaETBH%A(KwA}YHCG0`J8HLG@<{r
zm&)y>c6(`>261?MIn-YMX)i6)Xq84=)u+KnI!J3ujux~@!|NbDJIJCA(oRcvbO>AQ
zm`2gk!qg{?PHA*bqe~iH)996#cT1yZo_AN$L$UR~0;XKu-f857ee;_Al=RQb2c|KI
z15bm?G%C$!BSSJIjiDTP8pAb9$;dQDC}+o*Wny+r8e=)(d7W`eCMb?q%vH(ZB$Z57
zq>-uWCv=r*X-ro>Lvg0!tbFNgC3Di4o0rT}!jIoBOk+_RXVdsHjm2p!N#ngV-cKV^
zPL`(eLK-jfEwD6}b4PTP6>02FV`(Q@nZ~L#8g!J^bj4?7dm3x#cq-}GQP!ogK8+1&
zY)oTI8e7wt(@{31u~`YbeYm4g^0^|jEZU|nMBxr@@J_N*v%9#^orGy*C)tz6-Zb{5
zu|JI?X&g=CKpF?rIGo07o#ap&=UylvIoC--e4!vm$SZV~CpwGWS&pUAuCtu%EN`Xp
zQW`I7_7%m~6<<|+O>tFcq4FDPys6pa{}H~O#)&jes^lHT^J?~8<);*L4SkU3pQZ7k
z@{bfhR{TWqbQ))rd`g?zD6O&j=V^SQ5@uOM{3?yF)3_sp+1=!uG`{7&?ji*le3!=e
zY5bzuAJVw7i!lAD6G%eIPb&O5ja=!kx<h~Cj4>9a@kbipbqROMpK1J+1~RxLgY#)z
zpv|Y{pESC4k-ybi-I6j+H7UQC#=oktwu>-ZC=*8POBD-ezz^LQQQXHKR*Fn56WWht
zP@=0y2A5@Uc?Lx@xHg09w8|A3l*yoM23KZKEQ8`1yi!G&N@Y;JtCYx~q!Joo_Nsho
zX(be1ok6{>GN7xJ&!Bx*DVM=Cg#EcDg9;f?zO1Vp=_>6@$@Ljj%!C1oTjo?(xgmp_
zGPpT|8?_rZcawX%$t@Wqy9ra}44=#WAFrf@Hg8jMdtTn5n^ei*&J6C#psE_->M-4%
zLA4Bs{Ms0^_h=ETGy8HkIdi$(mqCpT?q~4N;3@~D9Xy!9Lm5oWU{VG(Gk7?IbOxCW
z9?9U*3}P9?Gk7e6$1{j#aPCOK6B#_2LBk9hW$;u6yLK1U&fu2r@<}&&TC=q>cqW5q
zGkESl>C*1uTGYw#nPJpp>)oY(1`XJ~?lP{sFuSR{ywqKO?k+|qe8Id*52@2bOfEr>
zup%XF+RDJzK9GN22!0PqWH97F81u=K8KiWQM`{%(gKP%FbOu~5Sr2KSL5B>y48HCm
zeg;7XjaiyO>kQuSDNQnHn!%W!(u&L1Q<`Paf-}%FY`wV}snJtfX3)H+Fj2Tcu}uaS
zd&(WXq-`erph3F~zp*C#6W)%Tv|iFJgYFr0Qr=mS6}x26HP5NT)I+laGU%B>uMB!?
zbJXmo@;-`v^HnJCuL?9mK2ULx;$Y5(lA(&MLIoa8hI5Sj3P!MRO2|iLFgnl2WH2_*
z$0-@FI3a_My@bk>GnkUWn;9JEeD;zTd&$%cE|ivO8BEV$Mh4&Z3PZ=S3}$99OS7{x
zSfgZ426Ho*m%)6^uF7D6l9h_AxG;l7$`>mxQCzCHOmVs53PtMkD}q<_mXP$4)pX`O
zUz@?Y4Ay7(Y&kY&a6t7pDehF<thhyStKv4r?TR}TbFJ)BzFTpR;$Fpliu)CFng^91
zQar49MDeKN3yLo)=Ja36@XoWmOmEEK)eK(K?4I7CJH4Jk-`=uF`5PHHN{;pBv++2S
z!KWF#ok5@5<wOQ2Gx)oNyhDHMEg$F-znj6S4Bk^dRYTDG`B?N}1|KoF^^uP=_#}hV
z8C2;bwfac5kM!vyTl>hHedIGv7axMn;F}D-?<1dQ@I?k^Gx$;smhCHFW%L8ZeTDpy
zzVa=De+J^<G6&zY8|+U8b^6JV8T^#NpIR&3SAOPJrOm$5r?32y!LJ!!>SAqQd07()
zi+)#yKNL9$e=$Dylk<us7c#i5pOE~+U6w(Ue)4YyaBzteo&k>RCxsjob`Wu}wx1MH
zywu^Pba-T;ga&hj$UvPt+|;TRx!gff2P9WGD52y^2e0-MreY3?EB{`zB^{K~?0L0D
zg)$DxIxrnX9bE08oP+y#QthC;gKHdAb8wG?3J$LAFJ%Wv6%q&6Ik?^lcVa~cH#mGZ
zA>=nYxXHn74sLhwOn<rA!L6!ui(>o!VdpD3=+|GEDl4IcX=i`=roY^wGmw+q>EMw8
za+ia5%kmZ_8V!)U9dsHX^9IPS0aBeK8YuTVI6WY=S!19y9w_%ac)-C^4xVQGchF;?
zL<h-}4jytaWT4b^@UU8V#KEHu9&@l{pnN`%uQq_~HZ3bpXeTcjB;^N5)j`sAkPICp
zwH&M&B)1Kg_+WX)!J$F&tb^wqyfsK_JE*T!ejg-t9Mp9{!c<QQ&juSfXvm&(U7~!y
zIJ_Hd<ayb_d?5n1gE<c7I*2)lJ80#gwSxpF(}ClJ$Dl!j!{cnq0Ws|$qh#h_VWNab
zhpYqFf#<+?5U?{2nmE`pIGmH?gQc;9-v&$ZA=1=AGY12Qg!1M(*cNPkh&-f{)<dKv
zn^xY&!NMWZ%Rz4kZ5^~@iw-(Cs6JG>Iq2wMy{dKLOgiZ7;NTEBuIX=;ccsq^6}mC?
zyK@N~)Eg>HJ(XmKN*@Q^hKe^##yIFp2XN5e!2m9hgP{(V50#@sWgwNi%9)`u$U(7T
zGFXv4ALd}VgV8$Ym50fQJRj*`6df`a&M@U9b%uo_9qVA6gYga~IGE;Ox`T;qbeK$W
zFx9~%2b0wlm0628f0%3;CT|Xt?}y0@2QwYaaxj~lWw=xyF8p>@qv6tNxQrhz3x~_=
z!)2a>`3{cL85}HdP;!JEb?^cw(7_@Hi|JroL<hSaEOoHV!D{-Fwz%BEN(ZYPtkCR@
zBf{P?<+8-J4%Ru?>hS&~);rjsYMUKwRI*8t`cI7zSL<$3NuRu(?V8=`V26X8GSzZq
zkAuD3QzOFAu}{?w(yJZpSAIZouYMiku!AF-T|PpnKxAU0FFLq5LMn`uSDo;b=9uD3
z4qjF{C9kN2I<IjHkCfNx-XrA=2XAsdN6J?6k#cdQyzStGgDXeNuM9q;<fc(_(!o3I
zn}bsh&N%p#!DN)Yr+xT{`)HKB@8AP^<0zRiN<LIM3D1f@cJPS<lGBRpB>86!K6mgf
z!={5TIFqA<=_@5?9ek;TniPKR;2X{6gkO%5@ALXUDfvMaeq=2*^0Nwm$?N<+N^Tr2
zzcJ#CmUD`!(ekH*znt*gctsZH9b9l=jF;tE{LO7XTHGwWEdJq)IpM8|e;wSC#jRN&
zi%YVoSxyRNQIJJMd11vOikB+#UneAs$)lx27A3Q|EQ`ytD4NCg(emIJxiX6nM#~j6
zHAc#f2_?m{AQo4&$4IFxuFB%tEUwF9(ikb7ML8wpWt5avyjpR?7@@qp@@ulFpyV?Z
zUY|w9EZh=uvo_5*a6=Y1vfZ(AQx-Rk4ZVe&m{F{hMdd7>&EmN%Zp-5KEUIU5Zx(lC
z!}wNBv5MlIimZ577FCtsotIFP>7IP{zARYu5T_-J8d=<*1&f#-$bvzV79Pxo2PW!t
z9xD%L@n{y0W$}pC%Gnt|Rt}Ao$Fq1MizhjCW96wVp3dUjSRuc2oYcyK{bzM%pHT(!
z+F8`e!q#ro&7xiwjj}MZsGsjG8>RgQSv1Udm3?5BOzn@QJgP<PEtP3AmPK48i7e9j
zT1hQUX@{wn(JYCRMOHb@vLQc<AdBhQ(487no<+Yb`m<x>r2n{Z9-3s)G>c|gG|!?%
z78l1!hb&rVF>jo-qlGM5DQ~UVMv+BrvuIaENM0Bx6^hDd<AjIfj#|BwBJFg}qKopb
zc}X`V-4%Oe(NjsUd};42`s8_EB|Q5bpgo_E#Y80ovlx`c;4H2mFIC6OkSvB~F)WMW
zS~@n15m}7XQjV7jR2!AWXq8ZBOumS6DvZlwJoP^fHHnl=%3_+Dnyg646s<K?krr|d
z&EPU+F)OdLEX()BFei(-Dp{PD&r>pAae?B(EEXwwOgljPOEkMQFJuoXWK1Bg%wkm*
ztFvJ^<z0w<TC^q`el2`$7VDI(&tgLs8?)HNon9y`V%p4om&J}Ow&cBHYZlv-Q-_Pr
zv@?r6`O;lVb}N=FguVaK+@HmPEDmOIh^@Q0#l_()8jqKwS-g<N5#`gz3neeo&Bn{=
zEY4(cO!-S$yqv`=S-hIXdn$P?i`TO_k;Ta@-pJz3EZ)lE?Yy1iSuoKQ?U2xTE=$Qf
zS-hLYsl4$26{zz*w_X+>X7N!LA7}B2TF6z;b&Ncx|0!pZ(Uq>1#phXkk;V5}{Gj@0
z6~D>i%PhY7PrF~|`M0X@og(`~n?GjplV<<S;^!=WVPwdc{+h*a%5(EWWmfq;i$C%s
z&B_1bAwY{RDE^&qi^^2^mto&U2^S?@T;igTi=r;Ba8cMr5f_)aq0LKO6u5}E5Y4hy
zuC1K?oSn<Hh&)$xrHf+!krdBYWR+4bu5xj`N=myZ<D$HaYh097$<;2(<(2>6TFzz#
z7uUMD&i$W1{I?qwUEJW}My*KYoBpFiwV<-x>Y|d1%5HdPW5;;8&Bg65I=XmzlHB2<
zii_GV>bSVm#e3uBK^G6XxXVRV7k9g;=AuzWsiAm}i+hz&Qr!g)PbBxLr0|50->>|E
zyv}12q^669T|DaIF*QydHt~omkg)V|7f-P#F5iv}Tc^U4TH0)a)XLj=mYo?S&$yT|
zK~`!*&$;+cNnIE9T(~Yg7xi5<a1nQrP*V+Em@c9@vo0=95JQozSSqv?nJqRkOfk*g
zGEtJbDitN;BE|hUG3;|%g^7vcXs@!0eI|w-X7XJ$b<xa4z*SI94()l>X_7ZfBh6LP
z%0+7zEtI!Zq=lJks*PsbDYjMIGEv&Q=-}c7RX8<KZk{BaTy%EPa*}j$(bGjQ7hN?=
zNjDeWmG{U?7>Ihi=;LB6yR^HYuZw;zhPfE-hC#2ti-9f%xfpe{V1SFklZ0e2UB$&v
zRbZC2LZKG1$_N)DIk&vwlT%R5|5qMEQ!1zalu0tq#dvLZf+9^(ILXCi7gJQS$mRR3
zn5ul5;&jCsiqxO!VwUpRigWVvxi04A`Fs}(@_eC^%-(_}bgI`2Y6qwjV5y5`E|$Ak
z!QuPp?_;HlRW9E2aNNUc7i$;?Je2hCapA~X7w^0Hz{NTj>*?o{<f*G88(eI3vB|||
z7q7W^-NhD?NwU|)J{MbEY;&=lZaGQnPnL@%BRgE|bg|3DZWnu~a0RZI9G(m?kucp`
zF0$Xn0T)NPxGs83mhqEi>0~)b-}tWJ5RU@f$jXmS7A6W`WL%meZKp`*9}AwGBF9|3
z<bvd7MUq!sys9ZNMVNhq1El+LAVnj`UA*PuT{_iNd7C;@<fMxlk;n-bOzhR^DRN<o
zyrcZqsbN=7DW`t(sWRl6NRJZ*d}ZlF7azI!*u^I<{&4Z9i_<R7Fs4nDUtN64rROBL
zxTkdFb2q&C$@G<rFO;8EgI_9+n;I5<t@3Xazs>8j>F-_q;NnLYOQ*{3Q{^X4)KvLk
zs{E{VDfz_(k(zAxHx-`C6*1aO3*~>gIM1l=p^%3QF8+4$%E<zF_{W7aO)k3l*G0Q&
zGGv;}pC+G8lRKx2Jzc&lhP7u43VSHx;n(R>%)_M~x)h6C>7mu%1qB`=9>l|C9@<Tp
zq8=_+LS$m26keec5@r`nmz~q)ff-WVLxUNz{h3H94_A4p;^9sY&1T45rwU4YDC425
z2hQ#F9^y0QY7c{FNI4JXJzV2q>I}I!L$33%e1=r;@ahb?R`Ki%xoxIAJX0!qxPjf9
zDK~nk?BO;KH+i_(L!x&0Y0Z8!<rWXOYWL>Mlu8~B&kXx^yN6-l6)@f5f!>wlBzJkJ
z>Y*hKdbr!e{92JmJUr^5numKlRQGVNhX*{|UO94~hp*Mt{T{BIB{kUkEO~rZXuSC>
zc~Dz?DA(>Rsp(<PEO}UQ^(=YJ!@*hdl!vE1JnrGtEP2AilWO+cSz;84u(XzkXFSyP
zP|w4&9-i}1+d~}>#b=8(TZYb-eY55I?+d<|Ef;2ojn?NRdq{amduYhs&JoMQ^f}VV
zgF!oU<oP*bdWd=$I!7p9Ge;=2J;XTe?B^Uwct~o8$q!MVk0Z{JFXu?cgX5twi#%jK
zxN4TAo(JCp6$1L0TBH6|bEVqcu&pK@nyTjbxzbF{Huuni9hfVFCDLSW*oU5T!-iUW
zXyf4sS7ed2rT=(X=wXqE_8vNTm_{QWI(q2jVF)|V(z(*vLw657=$tJ5v7oDmZXR~B
z-Q5MB%oWU&o*sI6=;xuohu$9gc<8H|H_Ve-^Q75489YxuRX)JOKo5iHb=t|l=1H0P
z^3Z&7=1Yh9GI@SzbC}0Bo-oeCcn>2y(84GWqdkoDuyKCa+=23uWAkN<hp`?mYL!n^
zPR$7(CVH4c`wL_eon(Pb=A17GYt>vJEfxs*R1b$12nRx(;o;pA1#>;rUnny@%<?ds
zle|EB{8dn6q0HePTo?}FhJ`Xud*UpV`5riy1)QRVVQ&|ESmI%whxNJ(Xl<#7W!ynr
zrt<}>Io{(1D?D)bt@N;p_7}>2t@znOIk!;O=sc`doPT{}1INg@^{`8u+oVRedYFO8
zX2mUvfBjsr&EwNYVIOvQsJKWTS|sF`FOuCJ_GqnxY9Y2r_IlXoVZZKr>Ksrx30JVy
zBH>^Uai4npm;eS{8Q~Hf_3(m+7d^~dBrkh-#ltZVFL~I!NKP!0vy0^XB6-zAxyACD
zhu7)+i>2;jX}(x4uN)b?Sl-aFOj|5`+w?6DUvcMpcx$n|?coHy;;n*{40ns=9nL&A
zqlfoAe8fYchxa{v;Ne3KYKc@@63*>YOC-KT&RiQAzeGOqaGEpk;WH0sIK4~c%Oz5H
zsq9rvhO*B+e8GLaRDv>*TbIgNt|PbDQX$e5$u}Op<<|C5+sAhvzV~p)TLn-1_`$=E
z9xC{_*5`Z5_?e6DLwx+ge$v4_{OjR259c_m9{#2)E|slI<#%qPrSgY|KRx{A;k+g`
z#4nA{|GR*RoQJ}RH6#CUnC!;Va76HNiH}Qt6!^HXR7xz9LO$+UCWZa5lSLF8E(<kV
zERz|_WXm#nahY7^<8mLxeU$J~)W;P*uJloiJzOTTT&`a(Y^C~gd2+dAmP^m&Qqo5$
zA7y=9?c*vR=bnnl3gOXh{c<Voql^!dv&+M5IgWaTxGSXN3MucS&I-9kk%T`8UgzU_
zANTsW&qqZcH~6^S#~nUy^l_7qTYTK=WAF;O*~j)3a%_dnUlI2Fs}*wYmx9tOrIL@z
zI-=VYtE>!5tN6In$6Y?E`l!1y466Q08M9KBu9UldRQGXurR-iQ)i^CaNLYn<PDu?P
z_xpI%$74R<`^JMl9`^BwA09>@^3igY^j;-JS4mCI(kf}NN~W)povY;RDye!~<Z&NQ
z_;}LCQ!HIAx2~2)S4(`gbX*-aF?_YmUM;may0;3Lp3x3Jt67%TVOM>OS|iPU)bml_
zN7_fmM*|-XeI$LPd^GZL<eLI6S!9hISuKVS(?^uT)nfUGDIvFgyuUhBi2F$R_*pr#
zB>sg0E)zG%iJK#ikE{>ZhsPnW2`9u{Bi+}C?<4ThgiiZhq(tpVWA>9?Q9I=9CllpN
zO?@;|9rBN!i?rb6_-N&$wT~`7y3zsGNE;vR=#6Wot&f-2gp+W3jkNdCfh)dNYOj@M
zYo())PCkaLm1S$Cvk&6owbIQ;cON}{R9GkPuMI2q;FOk#{J2&MualQAi}d39u9MzA
zo?a(?eDqZ^Vx2I1{CvRx_TfUoa{&hW7)1Y}eIMVmw?2mY80O<`A18ba_c6l93Z6Xs
z7|F@^F;y33w2z7F_}V)r_!#43tdFJZq)45}7wcpkhqGSFt(S>(r1dhz$8+n2WRhkl
zE3&uA_0nOzO!G0_#|&CnFAIGv@-frLEFZId%<(bL$9x|<)`z2;>*KTaa#8sL<rGp<
zeuEGf`&hz0Xy0h+$qiy}2x~1<$#T{2rkbmKtfm|IIO<~!oz}-@pRXoi9hbw$MjxAe
zjNc%OH^>Gb`!)#A96nc5mv5BoHp(*_Wvh>EJ`VXf%pJ!C-6%^p%8MIi@<!R=gSb<1
z7dMU)O7<w(tGG{bzv2PKgIwQJ1yuWHqx`*5DsPg9H^~b=Ui9&rkJo)1^YIeh!^bQ1
z_DwQ!lf1ks9NjOQ<W+9}&Ej4XI-YEnH+;P5<G7EvxY0I?w^<mIyKk1!n`QH6`Dt?)
zA5Qvs$H$jGzVh*|k5fL*`1sVvd)yR0KJf9OkHTAor`eUZ$kSWI-69|9G|t!}owmrw
zK0cv`C_l}fZxQm<TjVnzqqoYUt#WjWeD325A7_31xJ62Bm6}_{-6~)E_{PV#4EsK|
zZk3O=%H`Xn;x?(VP0Vf5Y@77iCO<OxGo}T&HNejdtv<@1D7Y@buRebB@wbnE7)X8m
z?&CZ|w~s&QFx%vpZ8GG+$Q6GV{OM!EHu;N7vrSHI6WJ~mw@Z!f(rUY0^zkoaet?1i
zgSSiXg2=q>{O|()__*Mb0AChIp#X&g6bZ0?dw5;IXmDb?L;^^Fw-G5D;IaUh2PhVx
zc!1xxhx1=Fz!gFG|7gr!8HC3U5@t&TC>h|Y0Hp(zQgXu%d2ojitMkv?cZ7AB%4n53
zJLKvB<;ZtP`2ZD^bl)M@1Q@qNcI=Q>cgVE?zR+5K?vU#P5GyL)5a327H!0q%$kJjv
zrBZ+!ek!;tK-B=1mEWdF;q3wL$nz>n?o@nqr`#Q&TEH(<pk{z3JB8<C_XMaO;NAfD
z1t_~q?%E~&cgm!la^IPP8UgMP@IZjQJLS`z@?f4Y`%2BoopmD*2Y4jFqX8ZZ@N|G_
zyX5fzPwonb-+!0<ep%!RW&=FM`MfM*tEAN~S+z@Q(E;8oct-Kr0Q+_cv#U=Q-1=yw
zZh(3Lu4#htCkpBZXb@msW2|qCh5;G{xU?|}8p8-+avG1xC5;gcU<KF_U}pe3KrBF?
z0DS|*10({p4A3e-GC(STAMmpkIJrxH-6iP&*Y1`~fLf;toB-JXu5#{EN<8Hc>=yF&
zyJg^RnYvpVbBtT$dBr9Hng(d5eBEwo9-u{lW4q;t-Qk8RyGL3FXcM4qfOgc`BfM&B
zu}Avvk%@a`>mF$zphJL;0XhZf8lYQ%&H>)sBTQYCoY@o3A+zW9NcR9e0`v?(USV%2
z=|wM6(pw#j5-Rr#&_CdpG%zl}0EYblLjnv9P-Cye_DajWGKiABGC08Yy>fi7oZl<M
z0*nYSGQjWv6Yr0d*eBKY$*2IMxs>~43@3b_G~O2)@4ipg?~||h$@l;h0)CDIi&!PV
zqyY1|1rEsM08;|Y<7U|}Q(2uJwO?iiD70UuYbVR^7xEb@*>SF57By98PJp>esDI|E
zh`V1%j_sFo`=#aqSwJs65O!d3fF%Jo2iU?pKLG|Ekc|O0(Z~T=7GSxO6^fLs46rKC
zR|i<5e68ZTynMZq4P3PY!YZE}5FC`-56Tk<Wvh00;6d3QU|WDO4@B&P((<5`ez)L{
zha<ZJ><;j8fKLMK;f|n%058#p1MFuEIV48{98e2~=#~fNV1Sti!#~B~C=Lhs>brtB
z4$2P)<!FEx0=yWY(jggiNZOn(sC7t!L-KNfS9Jd03Gixw1&8Dfx<r820=&+(J0$-e
zlG2Ce{=<?!ES(O^@c?gWb2|>p+l+5V<V1jqN93g9xi1UI-{meoBBug4N8~*^-Vu2}
zzy|?7)HLvjd_;#iBJ++2anBJs9pFsBFNff#0G|f<jNLve-vs!aVJblFqjHura76w-
zB3B=kJCDkjRG>>Am9GOVJ}Uc<%E+VPs(l;ay8zz@_<`Hu^#76d7Eo*y-}m^fWoPQ{
z?(XjHiWMo+&BivnNj5lbp~Y#D0!1qnXrVxh6^hh=LfzfnU8%SKyD#5-ew_0^XU;u$
z-n@A;^XAPY+0D-S?{2<H{R4r*i&dw^>fCUgXH;`@;Qr4=x>#*mtd1>K7l$LcSWRE7
z<}Ow@7pu#|acekkbL$(9tHV)eiT{yzjZ1rpx;`8?hU2CTpEz@gdTEK@?uI1_CR#34
z{g$enOH~!3>F?gfG;*29Ej*JoOehm?nEp3XZ6dFU?k0MOLOv7YY8YQGSNTm8Fj3G%
zArnnZG&ND!L=h9^O;j*3dZ{WZSkgo>A(Rw1Q6kHKU8*Q4Wuml+G9oN%qFlE0Fsm=~
z6)KvjB*J<oDx0WcqK1i@BB^SkT2{Z=GF4sp!&0l3@H*Mj+9qBSd0mk#6i(yyO*Amk
zP=t+4G!}AUnX0;6^;zz>-poXE6CF%+G|@sz+X%9#rI1!8T4yApPkCDt?Xo)Ug|JJV
zOwb@xHxr$OcM<F=$Xc0FcA%$;P0Q7xb^f7Ay-f6`f{DH+Y!h)4{Y>;XG3a_AXkq|2
ze-jUxc$gAy{wD4=agT{1-26>22tQk)?lf^|xw^|l+ZF2Ca#eMO8ook}TA>!KP(w}J
zZ{h(H_nNrR#FiB*=So$2rE0ZO4Kp!prCPR9J!s;Ym1@#TwP&SYdS#_5v`Rf<qRuKc
zT(JKtWtteiN{w2jEE6FUVRk8p(PXviv06n;Ok1U*CSoRjU!~TqQU_P5oU4^%!Zq=j
ziN{SOOeEQX)vDbZl``R(c$AZ}H9$$)#N5?t(`xnjYW41Fb$zuezD7M^;z<*=a~ZFg
zc*?}nCZ3~{Me>Y^5hg~m4{OxRYt$$c6W6F`O{`v{eqEzzaQ_;WcdZ(**5_kPJa6I!
z6E8A0OuTF&x>k)^tER72^Cj(AtIn-e1=p!pO}r-d$I=_?)ckd7oQc;tDeHVYmf)Kv
z-ZHVGqH%Sd8gJrl6YrRK*Tf8&U%qE{f{D*e|1Grd36i`o<O9JE1wS%*kdCi2QE-yr
zWWgzdEc(R6RN<crR$uSG#P)OH)3Q3#O?;8%UuM<5%0}AP5|iJUm?_J7R(91h_P#gq
z1E(*Dhl4za2eVE5Vd75{KbiiOll#`Ic@msI3(hg|i-})pcD?#daIWC*Qc58cBYD1w
z1#B@t7Mi##zd<r0zn}ff#3C-_AVO`8?&|`7n>b+NpoxE^KZ{K)F|l$(V5y1C3{Dfv
zOf08|IR)$0Y7>90S1V17U$17Y=b1nMN7k6wx?VA@HL*_kdch5X8?&XGgq)|QiESqK
znb>c_*r2wX*d=6#ASFAwtTreTrrjp?nAj^t6mrc{IC6t}e}npcgTK2TGI7{Mt{`#;
zam2(?6aSjHY~q-S<LvfEb=JfQ6DLia;zHi24sB4kHmG77RjrNwPsr0I&SdAp+^Ei(
zI4{`?45y81cMW6IwZKIa#7lyFFV*~w>Wb-KguHIzs)=hRwr^B9H>pyaRKrc`hKZYE
z;ek!+mWkUY5cGF@rkp|K5dQckzvoO;uGYuM6GYx1@<~x32qUYnf_P<<(m~J^mGcKt
zAc)dIlnJ6>5QTy$97K^ICT>#SZc=}5QrkAEGn-V=AW8&5!c<I1aY0(3q+}4K{*x^m
zM7baaZ&sCPbF&(8Hc+0`HwP+6A1VgH)M&HcdgUOh1W}cdvsp1!7g9}-r6e_^3X5t5
zQ9Fn_LDUVRYY^Rn7_nK^3!))S1<|L2Q9p<VL43~UHmhGZtHwbz3HqVlA&90yGz+42
z5UDL{-DcH1h>ly-uq~=Z5G{kavRUQdqKK`6AgQrMwUI{K1~Gn%Y8OQNAf|0m3%01W
zThzfVs$<Z<55?|v3W7IBItz9YEW4FAM^yJ9`UcUD{n^T6tk5%vUP1I`x3?;$p<7j-
zAc#yf(m#j+LEIa}eL)NiVo(tG1o8e>H8_YNLEIUHvsE#T5xhgPEV@ewtKThM&FBmj
zAtm<*@r_h@P{;#843i=XsrkoNwP~w*B#7Zbd`d5E445<$#3$_VPG!;gLI1YSXt8{J
zs|p7Z2_hOqEQn|5>gCD~A|8YnM4D!UJTePO`d0MwZc_=)?>5zTn?Jgt+x!di>1}Gl
zHuY!_j|K5m5Kjm3cn~wUDW<K0Pe}I3ApVjp@7eL<aJ}t{7k}8?2x)Yr;3#S3S;6N7
zxp>*zG1BMfgLol`7lU{yh?j$SH;4(0_8?vj;`Jcj5S>2Tef`&h7#qYm4tBd5vt4~5
z_@*eZbbJtRW%<hO>g^!jk?c{aTXBbaPqH5d@sW`C8EIMlb~_ZCxPOQGn2RWgNg|&d
z#1u~J4mD?oy12t{j)V<Ol@RT=)4y2v8Kakx7R2-*RtK>rh%bWpl0FHd_%8oj#63IJ
zj3B-W;%iQ85R-QWX47wspB~0{g0lp_4dT(AibCS|A|d~Qp8~?CNzqS1{2as_25k@v
z#f`rP@mmn{f|wt~?;@f7xeSsL{<r$QJ5`x~15Do*!UAdf;!Z_{KZ4+0W0F5bIK88>
zD2Ts<_(%HuTX$n+5Q~FY62#IV+U`;lb}92{p#LtlEQsYntO$bKk~DIcTEz&w7`T?p
zn6*o-4PqU4Ez7^)zdnc!K^zO>cn}+d*c8OUAfM63<{-8Nu|J3dL2M0TTM&DK*c-(5
zAa(??OGdGIm)a?W_g*;=-hSPkl{3q<k9KzbKVgO4s^xCgcelFO(|B;VI?Vk)h@*7r
zZuR1B#UDo>>{hwX1QzX9llBHq$mE_2;$#q~*y3(=I*4#l<MwWKhBJFL&@{hsmiteB
z--qXexDdp}ATH5qLEH}F-ykk?-R)7=f~dYnT?t}$V|6u%vf~V9@7$xt>`~W)xDmun
zhQuDl^w3MjO(86Wg`5_0S;%35S=uSLSLL>RQ+X@|EZ=ggy^8ww+Q87gzCnhZvY;*G
zwUEz3ehXzR-z^0!6tqyvLTL+yEEKl<=XZ)*C}N?gg<_U}FaFWJYV2PB1=FAG^%HBA
zuu#$h<(;bg?+PdWvR5tN>*I|s#%|(XRn9_r3l%I>wD6&Yk1SNOP}#yTix1JGisj$c
zVj5(js)cIoyoDMTnptShcK4~87V222YoX>oRm(zc3tjiA2llDe9gVjR1)kog>RG7I
z!Cnb8u+Y##BMYzZQ@`y~jV&D7r^cTP+<hysp`FphLQ@MQ#k(5B78Y7s=w_k2g;o|?
zTWDvYy@l)hRFVCvjfJ*scfT64UxoIoclZ0ZygOLv!qzQ(w_kO%&`JD8Cv>*(&wh1u
zzbbq{-GcE#9wU7~^{~*>LLUo#Exdd{eR@Fkve4VY$Bm5h2UM-8D$haH&q99-11t=r
z=MSnT2i0r;2KpXU>4R$QK{fTDntf2wGlMM*5ii{#c&Ff9S-;(F;hroXD&$@Z_gT1K
z_yZQ0G9I4Y)_BOm!xmx|YzvQY>Ps6D3wPI7n+~esjEY0b<e)5A^#36hvJg3>!WPUn
zM(;yvKvU!SL#jeQBg)zAXG}Px;ugL>q@J-b!h&PLwUDrowD7crrw*%yhx`ahS@0~R
z86=kfS^T7h&4<*vLn?4sJ!au?#>Qdwgdhp^8y!|paS{)!L5KZIB~uTpk#ys7^%~<m
zzcI?fvyy$z!Ye{XTmFyJF&3V;@PhD{1YZ>74@s83EPVE1pVQQ<Qju+qwJ?s+V&M%7
z?_212M7?R@L}B9{3-9vMobd6S^k<B>1=k%`<h;W*!NS$U>OBd7{O1D2jwoiWBkBX1
zI--6*qCU1Tk<l1JqYx%pm@F6ia)z+$h?-(yriEEtn-->8zT{I2(-;Ov)n^tyw-7oU
zIDbS1j;cCG)pQGASol&(yVo_ou`q)ZdQ>Hks;}sLdi$uFDcSi))wZMRTL!1alN)i+
z!uJ+_u&~U+atl9Nm~CN)Vf<m?CksDYm}B7=M*C4kvvftFW9nB6zgehtOf9hRyO4Q;
zl+2Zpk}%B|A*+xtw2&$K)52dC7I9JcH5Ln!{4L}kK{mZ4D_<%-p~4CaD=loXu+_pU
z3#+-+Tew}+7=BExkrsKAeJyA9m|7>uzmAYkI;J*Q*l1ysg*C@ir_RP^Aq!6h$l0-N
z7IxCH+*>*t+XZ)67+c8S<qjTGd5){y7U~^Wdo1kb+SwA=C%9i)WR{7Vhb$bXe=Ha$
z)Da6uEnHyO99K-oES$1%TC&FlPY9kAbdIaZ$JH6S{kS^IsXwlMVOz)5ISc1SNKVN`
z3zsbXYvD2{Ld;%a6UWsx$x?DvvLsYvqoq%%8y0R_xW&!zgt~2k3*@d7s?!OD5ORe4
z(UB8#g%DjI@J^`QA>;`m5P}hc3ZY5}RYTAr<PD*62<AzZFNFLdln9|@2n9kY7((F?
ziiA)ogxQ91BA-EI;w%&mp;!pTMgGnS^@AkdeIVI*LX`@kbO_}_C?7(Z5LmHn2vmEx
zw68!5)Tt0c#Skiq1sY^OsaEu)s&`WLJ?ZN(TP=j@A)XhC2BKCYgqk7Ll8$A1Qd{Kp
zLZ}l$-4I?osivOvO)VA++fOQvE7KgUH4dRk2*Wwj5SoV2Ox$u`2+c!iL2sN^{X%FN
z!l{$0T?p+%Xca<hI_i`<+1_XqLfa6wwKr;<QvBfSa!Pdwp`+C56GEpDI)~6Tgl^(?
z>y#RON_7$b`6<<1$oW&M;Azz(gq|TRJf(Vt&|3&OJIqAVmo`tUdrqtHY1Kc30U<nh
zS`7?gNC<a`kwGC04xvo}|5^m`&JgYj;qDOb31Px%^}}hk__VrxS`DS!&#2@X-}1du
zvAJ-D!TljTAOj~KCgi~o9uo4f;3L`657q^OAy^@d4q;3Pp%B6$EU#=_KdU0t31MUi
zpI0|xA=n{25yF!p#6xgGcr4`qP<2B{2=Q3`jN(^<PuZmq&|alN{%e;hS$IaJLwJ-)
zzDV%S6m=dCfpv@UBO`=;XVfzxj0oXr;W^K$W@i<Jv~QhN&z)7HLiqZudX|ooVeUGs
zKCEW&uVv4N@InYvL-;g=7ejc7(U{-(IE0r&c!j<S;XMZVIrVA?Z-($z2))j!*FqQ@
z!nhD#7gKcI8yxaE--k~Ljy<P7JEz8n@OB7GRtMe*;kR?@=s89Hu1J_IbzU_(@85=d
zpWO}^AB6B>2p@%TzJQ-)x={cVIsEfHq!jLXH93TL&#NgR%sa0>34v+Dc}4yieH+3L
zA^aG^v=F9;Fe`-X=M~cz9J25)vyvGhe3j+w?Ki?_3No9i^{r&T6Z~HES*6+qH9Lf#
zLim{zcR`K5pyu!+>4N$#gt8aa#S7|}5Qx7D8W&ZQi>l{EH7|tujLC0t$G2F(7!G0c
z^Vsq{{s`gE5Vl6JErP$qhv^6&jbKp-e~0i-2#Z6w8OE(JmV~gB>n@BIVJu@%g>Wc@
z!y&8)VI@}?!zP4PA*`n55FWp%nAQkcAHv$KWL*dkUN$nN8$#G9@=gCKWziP)M<i6v
zXzmcQH-w#8$u1$gL)ep*(Coe}-!J5Vv~^H8O&tm0C^x_`iidG5gyY<A!~bXh1U($W
zjSx<9ClUSAoc$0k2tOluR`8r)rqPQb9$V^LVAGefJ-I9r3a<#cDt)*X!vDr{Q{=Y=
zZwY3K5dJ@%oMGe&Be(QTWqX)MNI=jC^J4G+`A~<EH;jB?<PW1j7==Y)3a9&`Di}tg
zFt)QN7gfnis>LN$L`sVa-gU{Jpc2BXgi$q&lENu06-MbW%1E}XU<JW)g5|^i&*v3I
zQYnneLg<IgSgM6lT_m)YzNBghuPIn7jN0sf80<jKe^t{k>V{D-jQU|ryrdclk~9dT
zVHkg3QsfzI97dBc4v2)vy3N8MvWb>qv<hQL7<YuxI@|8RFxm)jE7&fK_Ch*@(JhSb
zVRX!Db_%1j@GfC=6~ac@Z5r>9os`}p?-@ofAw1BvRxR`qSM&{|Ul{#Go*DiC;cu<@
zzd0Ht*}-AZCVP7)#~#LJ5#AlfJz>ldJ~Zr~6Z=sZABS;o825#7e;5yh;e_FaF)WM+
zMIkQuP#9q$4~OxHkl}(>7^V=K3JR(4pg|rI-lC%4L?n!8RwpLJ<`n$vzh9M!qfUg8
z3}a*%qrymKH6It^aTG!x6?`mPYW=I85dLHsPYHQi@EPtEwf#n!MugF{yx+>RVLTVc
z+oCW!%wuWsS{P#``@G;wVZ0#ZMZuKx?d33D34>kDH2SI(vD@Q>yb;EmLS7fljP$KA
z#!Hrsj{H|KOY%+_?}jlUEB`>qdxGzW!GTccL&<Kc048Q9hVeyKf0B^NVN4P7Nf=Xw
zd>Y2*LfG_YSu#z?bV1sAeyQ<g7&F57N+jQA<zEZ=CXAUvW@Y78O?)T(`!Ie8<3|bj
z+1XM?!cW3~7UaaSiC@C_HH_b~!S+WOzYCu$I8TsqI6sU9!WRnu_^%)Ee@Yzw6~-bi
zy)gcf>{`Lag3I_RAcSGOG>m4#mxr-J$V$Q0f~#a9Q;lhjNZ7q~VXPOvA&gBzHVRUQ
z`hz8H31e#*+qiLsaWc#kWwAqa4u)|kjGe-FWozx`0?hKgVeAWIzhn=Dv08QpS|&Lx
zo#`s}j|e}S-Di%4aXiaU2+34D9mch+<uhTN4dWc0oR$0=#)T}u7{(>x971NimxWvj
z<7!rtDY`D%8-iT~Z*xK;$QAJ`B7z)3j%9nE>$1unL7oT#5f~A~q*O(qBmP!-X9RhL
z6pNsE1o?zho<D*D!V3x(%E}81DI!=jg0)KxDwl|$WCX1vXcIxH2uep#FM|4_QznA)
z5mXRfHiB|O7{IJmF@j1F)D}r)!733{jo<+(C01N!REwaxv{EC2ni15BfQ_;)+s%;s
zml<_LQdf{!mNtl>VFb-0XdXc$kv9=+ELchGHx>Ss@D{>b3TDi<5`I}q+eXkXf<7W?
zFUTgkMf^{V4iR*WppytYN6=LW<z4>6sm#<}ih2n4jG$Kpy@mg;N?*xRvtI=LBN!0D
zzz7D3aERdGh`;k^tYyd@SviGwMR0cn_lRU@1jB{gD|nya{d8;u!y<Svf`>)&kRW4*
zQA7*GM?{jzQesLr7=aZ*NO(BHBY%Bmrbq<;)67Js9YI{8i#8o0u3#d9q>vO_zifDd
zna?<WM|~`UCn9(<;{RxUJc1WH`st|%o{r$92wslxY+>}dtezEx5yD3bjuK>%d09Ot
zrK1HY86!o{3%)>`Svi|{C4yHY_$PwJ5xf?`*a-gQSJnu|Mew?)EsWre2;LOFAcD7q
zd=tUU2*yY7b_DN4@NNWOi+qA0%}$PB%w_eS;QJAL5W$DSKcc&Yu=HagA6!<GvXb8~
zt0`jPlL)3p@Tu@=f}aU~E_ho`|ClcPiwIu}ZhR?xhTvC%8BLzr%Hv*VMewZ%e~aL|
zh<{RU!(KjqFTx)p_%VXn!siJ7B>1x+H94GLg#Y><35CB)c5Vdogv=M@VX!R9yrAk2
z2EcHG{v<NJS6(e*B;V!pzav=J%9k&RVE<)B;c_WjD!5EABVQ50$_OUEZLAVpEx1N-
zt>C%{)(hFd2)x^%=0?eG65JfYmIy9gR+N{#;^X!Rb};zU7?#G)2zEtqC5Edp?2ceh
z1S4Y@6~o>L_C+uvijh(5kKjNA`J*Th#X-vR`VUznibE0qnd`$5|74XT!jFmvjzw@h
zf)f#(jNp6(7a}+%a=PVA1gEpS%@yBKXC-@%{^vd0xq*x9Y6Le#_^;rV2(AjbEchO9
zO$e2*3wa+{#xn+io07f7c!+>%ln|+wBkK1vXB4@F<Q7zdc?1K3hG6)LKRPWuZxs22
zQ1bj0RWOP|Q4A3YPogLsMNi>Hq9_{0_$#Vd6g8u$6-DtV{=TA0L{T#8cc4@hWuqt;
zMQO>F5yVx0_~oN$dsQ)2j-rC_ih?Yv6vdNL#L_BJRApOHRL_>yh+>YEQj-d`qda^Y
zx911CMNyZ{EeN!sW)$_Js2@dxC>lo5B8p3^0)rO>8bz_?s%jbqdE+RW2qEVwUc_cm
zG>_u^RYjivnrfM?)ruAt1X@QyA&ago3bc!&LlhmOXfFmSp~CJ(flg6$iGqZwvye9z
z1(>=<L8P#I6pI!GdI+)#d(|t7-r~$YQ4A15pZATTUzYceB9hZj1GADr?6z<UseDHi
zcS`oIC?1aD5pnX}g7*jx6}(sQKEeB=cp!>l!XJ#{A<o@3e^Tl#@>AEp0>h&)qj);%
zp9m3*!ixH*UOW*+D2i|tb`){;N=m8FL=KLKinUnOKSsl^H8<c;A&OKKZpIFuC={KH
zf)~YOSqo_)j|$Qn>pq^<WV=s_{3(&};EQJ@n=vvfif0*_G29Wub5V?r;!G50qZkv#
z^HF>g#Y}d-vU-708pYdDyeQe11YZ_>Mex-qUW;O^@HYfmYg`nsXL*;(>dh$Lk}QSH
z65om9-6*C+@rlSM2!0gBdqUn9q@53<_%O>e20xbUM8Qddlf@>LnWjeZc@)#4_%w>o
zvVEWei>62MMHF8}@pV>C;g?a&kW%uD8Zkp=Me%JE>!Mg6#dlGBAH^?G{3^;n2+oP(
z$86o%LVk+kXCaxcW(NCP6u(FD7vnaHxlzoM-u@vtKZ*rH*dpDsP>>{({WDwicNG6b
zu{4ThVw|Omg)EVQuoX&{N3kM`RoS6YvNEg8p{*9aMoQNTr;rslM6of7ZBcBGVpCSW
zMaX6`OC4%%&6?d2#ZHl&5M=2tF4ZXZM6s89dsetl$N_!|WQRZ_Ob5jd`$m2^iX%}R
zjpCSOj|*msGDw}1QJjk6wA7+oGM+ideTHj1=7;))C@yjjjQIvHMe%PGxnsx^!)38{
zGm2YLT#52{d|%;Oc4n_faU(k-$}`PzEVO?+3dE2j=JSj^rx?!_^PNm#AO<6b5;2sF
zLB*hBC>TQ_(a#%0{ul~~em>Es@r+s4B`F+35z#CzSX4AAFD4|@Tn0;tLb({q$52{$
z8PO@5t@6KaXGp~uD#cJahAJ_%i=llCRb!|YL$er~$51_n8Zk78p<xU)W2hBFeX&zp
zkQVC3P$$bX9jN!8{%0hOVrU%mN5RA@O{7<JNK+A#P}m}dmNB%Fx*0WMYq8uWYrm}!
z%2}mD3_W7#8AHbyI*Gx~F?1J&E|TpUL$|E{fBn-dhTbCY^Pkd;Lf>r9`^PXKhJm8M
zzA;(`#V|NqN(uXLXAF16kd|2D$HCn(JQ%}6bltqbJ%U38?-jgH@P5GuVi-pEUh_Zq
zGx)H`ABn*hVa{9_9)n5C>_7~m7~B{VF@$5d*cuU0UOUpS9*rRu!v|7}Sv!Wflsba^
zOrbCt!>Vg4B@z-!JmKfAsZ!U~qtgG!Vt70T9(TZzJ|U7P1(|(H$kQ=ABV<HY&Tl)<
zGD5DaH)D89$a67_j$w@O=VN#=hL>V^L9$dcudA1ZzaGOIF}x!DRl(P?I%8uPC!ETe
zD(_rZOyuKZ`0KiQVPW8#7~U5Cj^Mk36JmTb1>UDCV)#-dAI9*Jkk4ZHSO}|s62rt8
zCdKgYbu~GLx;NAmDI#H_!qlwhr$WLv)aOE`W#!X_e8HiK{*0{rs~EnHVMa!HLls&S
zn8~p(2+WFM>kaj73>)VMzKh}e7=DQ1#~5bEuqlSkG5i$6&omOlq8R4H@JkHyV^|Qw
zuQB|_y`rj`7sKyDI2X*Gy`kpH6m%)!hh@H-Y9V*6yy{O8lKde=$?0k}Z>qmz_$P+d
zF|3JUaSTghSjl*ZVX3ISaVfAohGjAIyQ!FHkZA?IG|=EpBJ!ths*i7~B{$XD7}mwG
zfdh$QeGEJim!*eps@kr>hl|VHk~Q**YIaL);gDlE7Q^uvw#BeLh66DijA2I%J7d_x
zulmw-A6B`gcJWt$WFIZ;TNo*J-ngaq#jrnyZ*Tc04-*fG4i%2Zz(f2F$8ba>8$_S-
z9k<kp7*4WdF`SR#R1BwMI1|I!81mlsEw{d{hTc}AgwMFG&NNgPxSC?P#9*K|ZmT1=
zm4;?fedx=aptkU!?}BFCYcX8sHkd%o1a8D|GloAM{N><Q47VA0al9V~Y~-*p&c^FD
za@xpcqp6K%Hgel&-rL|4(@kvTu@SIgh@_m2@-~zWZ6mMkKc`vPMiCqNY~;65!1h0(
z`2VGq&>uq=v_UK+!r9P8ZS00FZli<^zV^46jkD6vIyrQo9J-{95jk`z8>MZOkt#G*
z*2bh9`WH#euFs(>*r;Knrj3d=D%t+OK`Ps*BKmck7)NsG8##1U8>MpUYBs8ioSb!Q
z*|=j*ppK2Y9Lr2qo2>^?w4hPXMtvI%Y&5jdC6B>>Tk$_g#2$r=hB<Z5oVt;X#x_Wp
z_=l7Gb7~%w(%j~&PcV5yV3duPHd@(uz{cKO`o)~OwT*T*+S_Pj`zKnorRALZU>W1v
zLPiHV?OLF}jR7_~+UR8C-JF`wxpZdJw6-hI)kY5+d<3SO4W5%wZ+D=(jhmee{@=2v
zjb1i-+vsDXuZ@19KP#tZt))3N|Hwpgdsl!s(8eGeciOni#$elj3U~;|ZsTxHohz5F
zkV`ksrRj<}m5saELmPa|f2fWAxpX|2E@BwdbLo3+{FY1el!^On5bqZ^k_?j}KWO72
zo9|D-BQ|UsaT~*Jn4%LR3ZcU*+zwd61GoJp$rQE`u@PlBNfAq9Sp|oteo-kKo(-4Q
zPAcAfPuTt+0FpL-4*08;H|5hd9=Gv??cbn()W&0?z)~tdY2zu8kF@c$jb|86lI4GT
zd5@ThRd_Fznk0Ya^C#<B8_(GoZDWkg9VM^Wcs|Qt$V@0bAmrt&{8}ze%~x%_mX(aP
zkrBQj0ogK+R&l&(<1HKGZM;oq+W4Ja<&5MvmgUxyIqx<m*x*Subjy1--e*M{AKI9h
zTmP6_m(Hzu;`&G8oH2U>A5+eSV54(x{XlO0Ty8&}r*PtI?8vRB+W6MScQ!t?@tKX!
zZA`N<Cy)NxM(sShdmcUA=F4JmZyx=njTtt+vXRWASw!R`kmK^`$$9iQ($-8Hv$&`$
z`+tC0lSh+$Z~HfSf3WeRjiY(|cInR=0X^HsPd5I@Z~V;Jyb}0D_#DBW0ZqxTBIhHk
zb8XDyN{r)^0(!oU1vU!CQ7DduRJL*4#t9pL+W5=HRvX)FEMmmkSY>0ijei&q0ln15
zG8>C+Ea5g4(9;5XQ$SPBwA|(!YOqq&js-LmdsxoUjSRiU##$Sjq-dRu^)@ze+p#gw
z(5B(5jWG1vhW^gb>kNIs(3@>+v2okbmeQk@Z+tu5E7cF$*lA;zjeU}3(QX@iIQx>F
zsPvCYA5^-C*7daBZ{q+Lsn!oOyE{PTLtJ{Id4xW+aZLCqttV)|8*H6ACvBW!>oyR_
zX&Yy3T(a@6Xr8rk-o^#t=L8pOy-Vxsk}le)oL9Hct1sKQBBeKNTxCGoxNhSHr!TL5
zHm`ms@BevhdR{$0uih%zTWnNFjyQ70@k>6f;=aRk#gRv{<hez1M?M{h!w}*6e7abE
zO=TTNUXkRBBYzwP;{N8}J-=oO<=3C&*NgM(!f_Odqe2`N<0u+Ou{ik8x6-1ym1i=<
zu{*ym5l2amI=}A?VyQTOKjD)yag?QeufKJalPcxo2o%svRSM|#1$3o2?k%9J#X(+K
zu!>++LDqVrfabp_Ys67Aj#_d5!=h;%&ElvXN1Zt8#!-)<SWwq3sO!hkAdZ)+8ja&<
z7{{*#bR$6;A!piDK(n+-9LI$;kE2UL-6D>BM*>c7!!79VsLvMEt>b7DM?8+LMKu2<
z+cu6NasR(e?bxL_I>ga2j-GM!Eu=pzs5`~cEsm1~b!S?OgOaXs@TiKF1vPi7nFV$C
zIC}6ix{xkgNb|U%7KL=LIC@L<K5+~X(l>*JbiX+I3y&4jw9hm!jzJ<BoYi5`9dX<l
z$6JN;U2#0f>4@X*IPQsKD4iL{ed6aSh4j2adUGLt*-`g%mJ90#;%HJ>4~t`1VeON`
z`r$YpiNlH`6!%YW7#@eox{Q{>`i;VRYGFOMu&!K0^U;QI9L<a9NF32Px);%p6w$92
z(X)!^zl!Ks95x3IgI@r07K9UrD;-G0F(wZFYbZ&FTnMCSHjZ>0kH%4=sD3Vv+eI|p
z!c#sTi{tS)ek*M-JrT!~!k-d+IxBxBjuFB~3XT$dHd}hGw81AVMl&9YYCa$Fd>k*t
z@gjqPdpI2x$IEfN636S(^sDjzdy-<Dkk<sq#?h&$&OANAfT6WF*nfF6V|*NMiw+-}
zV9(!)<6S9YTYNf$4^T{y@$zAc59kLj5C_E_e8fqqueLCX;`lg@iE&KgWEIul#qoU{
zlj)_RdJ1>cIHnZUQ{(tNj%jgx8pmfM8F(|Wuc*FQR8NoN3$g!A90iN%FNLpGm?7k=
zIKCD+`&^}%ZeC2!jH6#M%`_{HZ?pW-V)_T^&tGx>L-WTtX2;R1xbYL$KG#SbKgTgA
zj+w=Dv!VtMUfWzu{}%WEzCNEpRb2nh_%EhWT+fYTp0r!1xSw6Xj{s3{i|apx{3-Zi
zam`wb;`lp`f8tmi$ND%n#Ic0EEv}cwv5dU9K2TgQkE478W3||v+rU^6$I3WXN%n&V
z{zuq-4UAR|jWuzsjbj}bW&`7Kk>74$Y>Z=59Gm0dpQUdV*F2A<bO~L*gzi#8FWDB@
z7WY4?_i(&%Z08nqCa^=y?&MTzKf8+?m&h~Oee_QWeKHO{mA^lZ192P_$+i;ucpQh~
zI2^|j?ms2;(KwEAy_C?4OXv#M0^2GXe1OPMes5236JG6qA2>zJah!?cEcamt0SD*e
zIM3w}$Bj5H#Bq`FU(~ov$CmK-%z`ELr8xeT9yTrMOL~;lSGX`s>Z@^F6S5$;!R*aA
zZpD$?@z1`y%{VNne<`VRI{2idhJzeJSe;p7F2~=`w`F)KZ8-kFSo1m<T}ms5uPsBb
zQhIfLzvmB@()k?ZcTm8=^iq0pDP7p{pZqE)SjfSi3I?-99PBTpnTk5NBBX?ak`5km
zFx){Y$3MrQjf1uhN;@dypsa&(4z}zI)NoL=wC3Xv{QrD;$A1*Gf`f_<Dmkd^pjB!8
zacRA-w65Zys)K3{9xAP?3wf@zCTAk4>7bT_+75Uc!>!V~p@SMX19cqKb^Ph5M>#D!
z{!@5N9265tBg)I@#txb|XzHMugO+U3L38@h@gL3TP)0M6!~|KZwS(`=_zoN|*v>(F
z2Ll`obkM;;M+bcz^mWk5!SXVisk?*D4!St#nw4}DvagJ0%INfPK;Bd2y##v;W~yZL
z`#I<@LRO)Ckb}XJ9p+$2R(_X*I~?5k|7+`R2lqG_>fm0{ykGD>!Hn?-{=**>{*d6q
zf^3m$CIiO7GY&>LupEROq#U$68whhkHw0o5IV2IuMg{35hLbHtaY0AWb&wFk(xk*8
ziN~3pq0)~3mEchak2(Gkl#e@jn%>J}@Bz#x96agZDF^HFgJ(7}k??8yD`oUZ2csP1
zZJ_2mc-FylG+tg$CpsumR=@1v6$fJ+Jn!HI2QNB!NqSzltai(4K3n}lSzWKK!NXEs
zb?};lNe(7E80%mhW5B_O44boo*BO(i0`E9@!@-*jW)@9S;~l*1fXCu-q&ybyXjx6+
z&9eGk2NN9dkgN9`FugClPC3m)VYHkcRZf58;LCFQV+Tvi>4}0QH_GWLG=3=1t&#eK
ztERl}T3%0e@TmhzJ`<cK__;WWLMHMrXwAV42VXgu<=|Tf?-nu&9Sgi$UVrW28wWp@
z*W1eLnGT4$g8q(@e*-@d8P5(joe6}rkFy=Lsi1#z@VkSb9Q@4as-WjM_{G7m4&oK`
zxC)vQj(4IE{xS9Y3VKNeJ=eiJ2PFKsCsJX7gN5wO;Q-Sgj(;o|$s*YYy1MA*;$#K=
zw}XEiEM`S|z(GOR{}#8*!SxFIf`f|;KL;xutYk1a*vn<&V6}ra4t6=%?O-i~!NE=j
zXGOo=^&E(U&73km-RoeZkeU_sz>0c{gRKs>i)5Q1btq>k$qtb)OFpKe{-~n<x`MH?
zqTW?e?_tc$Q28q9{SFRreeDSxlZZX&;E;pE4)`Djzw6#t&ftZGmX-7o2S@4r(}4o@
zjSdBI+`$P4Cmo#PJ}=dIk>Rw1vtoq&3>R`G-(BRy^P)q-hWIe`CGMpTu5w(<)xUz5
zxu0}3_^9<YZg)2VH+jK_?sD*OC4ECA&sNfWRP8q7vy#r^BH#ipa<~}Y!T7O~&guFO
zn&oo+%|Evbrp?m2;X=94F7mqAdOC2WlD>T~z^C>qSJwGlbgZmLRMtFjFTaZdQkR^s
z!7b#Xu<IYcQ^Z9v7sX}zin<tkF);E%poEK(E*iUN;-Zv`(k`mIsNtfFi?S|OR@PNq
z|D@A$E-DEr@1lZ`iY_vTpt5vIWnEc><P=tQvAeRa=Aw-<hUN3Iru3)23w}ST<)XHW
zIxa3()^%Ofb3x=tnJ8f*Y2bp7_pYmJG$g5OG!m>^MK`4dmoH>Q!K%8sixzCcMOzmw
zT@0?`SLD^6RvcOt-CA&B6-_>?if-rnXY}>#uU3j$2N$)f>fTj#M;D!3JWy44cF{#h
zrYDqichSSe8!p~-(Ubn!7~szNn2TO6db{{-L!gg~dtKb;qOXg7E>cx>f6i1feTRz|
zs_FrP16_PkRS#nKT>k>a5Xml}@xS~pX?KeLU4nND-Xl0vkcSz%n*#T{{xK{O_RYmG
z7Z1AFUR6KBP+=HU(+|0L*hPnG`p#<l>1x`f=W`iB7hY#$d^OES*ydEzmWw0RbjU?m
z{7lX<MqR{Q*bKbtI?2upi3>V{u3$p2W_9hkNK?PMe$++(>blF?0KY??x)`A3<?8xz
z7f&#3Iv8yINf%GKsM6bb+Qlm_UUl(|ixDDWyCYqUa`CK-=Un8fp<i|}+Qk?bXRGU4
zHH_z7|3U2Es_Pf&J>g$f_kX{<<YG&8O*yeq4c)VbevR|%;^`Xtof?{CoQp?l_~Uv#
z8%q?v#n4(G*y>`Ni}5bs(TR6lyzAm;&UJ5Nf{XV!9WK6f@je%YizzNXaq*#xk6e7y
z%9zA?Z*6?+VxkMTm2s?<F|&p?cLm5-)X<Z;Qg#K7*U(d4eClGFi|H=%><WD5;&Vn<
zYlBDeunHB}D_v91*co75nw{a|D|&Kg;5!#zyP(aP+-X@PoNAQJa`CN;b1jYKt^99y
z#P41F;NnLYq1MK17e7gtSc^^2I2G8LIrNx|Um2XPe{KLD7XIDETo+4SEORlB>#nAr
z?_z<A);9y4YwCqA{&4*#?*9?|Q*aSOtET>olUP%~Ra3L{Z;`MYi(PzI&{*PviCOaH
zE>^f$<KlEp{RIuy)GN87zfxOj>Q$VwntHWplC0$tcClVGH@ev5VuNr#Tg1AXg>MmL
zwm>aSWYKmPJ6se^pjZMsUF>pk%*Aoe&hfx**Z+ZV)Wsebd%0oO(mVK+ZY{k}_<k1$
zTpV<9NIGEG(nnkjsihA~mTEkeltUOH2Vd|c<P$D#y12#9I~S+e4G#aXI`86wi!%&P
z#!@Z)OD%nl9jK)PwRM-;`l5?V+{9d5;nv56SzEtR+n;M*vP;(1SGnF9^F@s>M0lNh
zvYh;L!vz!7csSc_F0KSlS2uJ5ITF5**Y^Sm|2(&xg1Hj@d2YEA$RnlX)G-oJ3Cyjn
z`JI_(a`Jr3yb0t>Ab$b{5-6NNkp#-r(GBY8f(Z<(qYFvh{+;|ldbN(<!%21gt*>|j
zB@(EdK$QeaCQvGY(yW;9y-K%?mQ+@<6$HyA@K`B>rR9ZChrFT`Rmw`LCj5g$swGfe
z2#rwZe^@Jl+6i<>p<@bl5~!Q-FUyxnp<V*@6Bv}l;3OJQn82|FjwjG4fyN1pPGC#|
zO%mWK=-m_Ok-*zMjHU@ROQ3lIEfQ#%Ko^!K&?<q}3A9O|EsfMReypR{*U?AoXjNCY
zOQ2(2-7$go3Dl{pnL3DDNcdb>rvy4D{3oLylx(*I_`o|4D1N@KuCQA@b|BC*fnEtj
z5{M@7RbAaXfguUpkwBjWuGQ6j6X++TKSv>CfFO$o3Zc)*2Pcrp-kI>PB;1$4{q$Y}
zcXOnN)jjNdJw2?R9xB;;1t~9BPd~tUOu%G^Sux?C67Y9DeYBo_D1nC)_^6(KB!QXr
z^l;&9i-}n)ft&So+v|Z+^>v6{ouR^l{OV2~qi^eLFM)Idb^>w9ItiqNu*gjyAv`HK
zxW1;4iN<*t<D&`x4$dgfdjgLq@I(Snia&SN*H0zzbOIyktNQvG!H?_f5eX0}VIo;1
z<k<wCOW;g>-En&$PXk@5fqp*WU*DLUz`O)rNZ`c;UP|zl$C#AB<OE(x;MD})N#NZC
zUQ1wX0&gbpRs!Rs7AwAy!0W<!JAhdxlJO#WTkwB(5J)D7<bwo0OyIo)-p^M2U)_&H
zGLbzOLTj1oRG5;$CkcE*w@cB~1g0f0J%LXX_$-0Xv-%lR8T=xF84MmN`cm+J*1rBv
zb{69>fu9oiIf3sI_+E;B{Exy9bcpSz+5ZvF5zZd|mcTCw{7UDDPNoUs?@}w%llck!
znZRFCWr5&A!9N74yeNUc6IheL+64X);gSTFCa_p|#>lb+mM5@EBy4wukd;}5j1J|i
zr6(lo5?G(W4sPQKY)D|EXl_klQv#b4*pjuwikZ5Zp0nb%1hz|QMzSlTnZQ0FyA#+W
zBvWgD0tX~}MDSn&hY~paABBvO3?9wOPb6@Xn_&_qlm5ay#aipsCGN}&a%G$mBsrVF
zIpOECk_!o3%<{V%=zkNqoWPX?u5uGj;#5ODp@?xUfj|;Q64!YPm`jrJ*2&0`^bh$Y
zxs|}}1dzm-26{>ZJ+FaY-$3U~B3BX%3i0LL$dmMMN}g@t-(-BPvww$CC83kxfxv~6
z$eTothWe3)deE^zz9jM|Q6TAmjucFy5K9Z|ZVmlJ32(}ijBlvdH`GOwxZO|}OQN_a
zmuaM1G}3oB(xoI@Gl^R4Kz^e%EnEwfNuq2L<&r3$M1>@(CH<!$d7^K{B&vvhr6fi+
z(!7scIqBa`Ca)^;Nsat=e`=(wC$X%Nt|7Rqud1EIi^l^El4vNTP7-y6)DvV;eIW-L
z=|)L3PNGv1TN>*oNi<EOZ4&L0XqNOZthJI>n$xlDe-dRHYo?Y$*lz12>NVD*N*HaD
z=q;pu5*?EMDQz8-7}i+xiAWxs@MvQ_t+AfpSa(jMOA=j^=tlh{9%<rtzB^soM0aVT
zdvG>cC5c`_Sj0q0pCtMw(JzTtn&|#X%xj`2Hqqn*k{Fo8KH<z>YNCfEaR<kh#7jxs
znZ#X5#FG9|T6c3$8v^$walepz1cwUVD_F9ret;e3V3V*IpGiEF#PB4{B&e`>U4Yde
z7R^VJsMAzak`ay%_-YvpB@q^#ND@&Yti{syO*QS?;z^!p8c)JW!c8KPL^6qIk{FRh
zDhV%%bP|sy(Wrzmu&H*N>YMulC}ljB1b<UMnZ)Bsyw+4dAvn3ICVwi4ADil@lUUVM
z^AJVi$RtK3@oW;$C2_i`9@bkGZl?JZ?dsiuj?MIF>BE>Lo=;+EGo5PY`~L+IGW&88
zEiMIqPhu`zoy4nbD2cIL8c9q^Vq6lhC-DK}d6#-4i8qsYo9(`%-b(tvhQ=2)#xr!U
z1;#ehpEc7wGvu8l-c4eDGd+RJq`Bsu?yb%Adr7=6&5^U|4;eqr^+$AgbN#U($wVQO
z=$7W1*>{`kPm-9<R-mUQapFGX(<DBl@#gw+Yvb$Y`tu}s+Qu}&PYU9TB)&{yMiO5o
z@eB6^Wqh5)Hw@rwfgc#;8v`?w_>McnR5dG!Z@JKBs0GdSSUI8P`y}=@*F59_E%c8`
z%ueE`Bz{i%uR@r^jjM%j*+SpbLO;<$^SJ)^TWH$+l@2dq{3aDSqIn!LJ+{F=%zQx-
z3zN9Urjz(1i9eIr#Ze^jR}zboSd+xsB>rY3Yzi!se*Tm6uMzRs)x}9HNn&XdzqZip
zTKIiC)Iu*$;%W=Mg7M68^)Xf@v6>smnLy!|n(q{--%{VzQm<ptUbUU$-4s}##0KtQ
zNo<nA&TgqUbNESYO=6o&LA<4Az#NqmEk?KWr(;S>y(5X89CAhf3Kb=+wTDBa+mkpc
z-rJYNfg}zlv0wU3H7b9-F>ok}V@VvBx`)|f5=UvOrREzP&bQQsT4{QouYRD-I<0iK
zR{B&DXSkIyN|WI07&1oAi3ctv@oy66rIQzuxJd7nG1yP9m43aIW{a0aji#>9CtNk3
zD!zvzI@Lc%^hOfXTIoOvMhZ8RxW!F438auag*++z-b$}-rT4eeIa1(3^f?7{30`ca
zc^Rj0YhAmw?$}zZ6m$y3Qz(%_-W2kskUxb2DGX?>`KAw^Ix@VqE|>y2Q;`%32`?=8
zl;{-AmKIClZIP5r;mLePsT4}5z+>Kd+QT=k_0rb<cViwK#egZBLb(*mv&9CgLJCb&
zXqH076e^`qIfW`I{~~j>6so5D!;^Eg(L8?kRBP?O{6&gbS|f#;!fRzEwT09XtSeYA
zh5Fgj20|JNHWF+s*d&EJx*9atJcSMG18q`hn?j3}zurgpHd?08ie1fblxw3~r~K2;
z>bKE7+h~4eZI?o-jekeDeae4{z_>QLQwp6^$l)QUhb}2}P2rUkUQOZiQU?Ed)h&hY
zDfCF8X9~}x{Ihp@iNQNlxQkv&@fTu%f3E10Lf;hnrO=;Kkix(e2BpB$rFi5H!+=K!
z4o=~#HhOCteXEUL*hUXw|5G60g<Rs@DSt(TQV6GTPYPw*>Y*vzo5Fo5+@Hd*6dp{0
z2PQm_!s~7I)V8{JTm48|J-e-bD22`BDgNI~Kb-PE^ht)NVA4oC9ZbOzVWW1MS*EV-
zbR-3y0>{H25*+m`6-^<Qg3T)JbUXz&g%$1ed+oH7!goS;&<@{aNx!AwrI1dcXnXwx
z`@bi^6V4xH7`M}prTputj|-9n>l;tf5AF3+DGYC~pB5w;(O&b4(1;X9iYG^<@GQrb
z!srxuC+H;#Q+Pgw7gBgJ<)3f!WqZB2z2+HWIXmd)9W-?w>Y#ar|7BL`;NN$CE#=?u
z`y+)vQy81VIQl1rH)ySso}a>-Tp;TMyl?d>Lp_D@Dg4wyzn#JdDSVj1JM3-BKcI|%
z(V39KvJU#a6t;KJ?~BJsIO@|K^hYU7N#PR;3mG4$Fi}b;r7&5D(NQx|b1IiWM?JKo
z9@|m3=%{;k)SoegsNYdfOW}(YzD!|y%D;Z~b4R_kqn^Qd;H<GrDSS;IcGTac(5;jH
zCWV<P%#!qN3QT1>`Su$MexJe*Dg2mC4|me6Li{;}$2;j?Q}|8DoD_Z$!itptE?u3=
zfbXQIiye}AlHJ`&FJK&s$1+Hd@z?raDXe2`ZwxGA>=o4|I_tkv{`)5WNnvpcOHx?M
zSS@NSXSC3DVxMi*@2pp*(5JIrO{e`ESS9j@I{W=!!)4W(k)YNJp=3Q*ZVDSy*d%Ia
z7|HZc3j0!cNE_U9wsJZc1}SVyp+h5MQfIAe7~gi*J5$(|@;}Nqb=ExKi-$Mv=9bk(
z?-AUaLX$3<+5IUTNa0`#hf+A10<VhS(?uUn;aCdqck%fVuC*@uXbK6*9_K`K(M!AN
z6C7O^O@4|MyJ*!_pOzkyoK4{zmw#7%K7}hOT&17;7#C8w$o1Y;U*f)(LZqud-pf+u
zovxbMYbjh$f&T}c(bc~^bt8p8Zukci-K5(Yx7o|ow}ta!^&egJhORo7huj{HdpO}C
zkB5MVIUb(wrwz})3SG)WX%EWtFSlwBc|GLwkl#a555+tbVCjZHVZnleg#>4v^Dkc)
z`H!Ty2MS9FW^_tQDb*-1!!5D5(a}RE4`n@+ljh2MXzcl$Y6TA!Jyh~g*+VT4wLP4b
zu~+d>)k8IQubbwX+ckt#_x#-{BdO{6XK|P9rt5fU*v)rWJr8w7fxLG&UEf0k7J1;y
z;2Lq%-84y!_xyLmQK5;4rXHHH5A14g{|;RX4=p`(@KB+<Zsno1hjt!TbkkG1={6qP
zO8Tjr=Kp`5+2$Wrl&8CHPp@|OB~82QA>DOnj?_c@e)>xfT|IR3Fu=n=`n<By-9t|g
zy*%__DrCIWU4Po$zx~wPLq8AwJ@oPX+gMC}h2$ydzYdQ_hw;ArvhI42hru33d3e^t
z5D#~Fusy^*-09&i4-b2I#KYYl?(uM+hx<7ZIW>c7sE2z!|DRyHyX%}ibcr7N0T07G
zJm}#e*3!C358bPWHhbvjd+4n_^obt68;5%^=`^h)bfyQ(L&!te!|fh=cu!x!>#2E=
z{%bw;yq<bxPaX9T^T2<;@xzg&w|Z*FgX`fj5086D$c%U%(jJl?Qgm`J-Mg3H^kcm=
zkHlwJ{ae5u_@_|znfQc<Cp|osk>t})dw9mf2oEDYyxYrH=0K>%e|>XkOytjb813N=
z4{v(@f8NG;c-g}%wBX?d4=;L{*-O9V;Z!gEXD_|2m%i0Y7w@fK^-wRrA5r5xyyjsn
zv%PhP-hSWi?5!W`tzY*ruD71jTfgODyoZS%CV6<<!#f_{_wWJx<KgGtdV+`dJgn)h
zk4W7-eSA;W@1sBT@R1DvV=llR{$CTv^wAUh=-GYr%07CshbbOD^YFQcPduFKqo;cK
zl*_QM@5Y9G{r@2K>8pqJ)zdso_pq_A{z9xh*4MW`rLR8SSC{Xn8E-Qr>b?^ETJRge
znS!%Cd@JNTLF#`m<OdHwW+k(Q{KVm8C48UqFCKpN@SBI<>BH{EKlDZogWp5udibHA
zUfoa6^Dy7T0uJOewU7&^zy5<G?Wb?|(|>X)_4fzzmxo0j{$_mk*H4M$z5aSJXQaPg
z;$f+WWgeD$*y>>$mz#%`9#(l+O|$*=ana|0^FC{6tnsj(|Arr+*U|}v{M(W1gfuH_
zY@l;IY?9K=9=0&%|5D`!=+*<YQ`z93So#jo+db^?u;0T04}6c|PR8>9U38${#cjmH
z9&zkm5Bod}AK-WUjRAVv0KIU4J}^KxAE*y9$Oq~p9u9HG7^n{mk_;ZGkJ7#QjIWCs
z$GGI>lkp@YjeA-emD4!w;f#lCTu|KEILjU`am~tw@$()o2>;)e?Td_axzPQu$S-pd
zl`^gfUX>zdc@6xA=bz`sP6pDr>G`isxy3m;5%}qR;I;>(kt2<qX)v2xkR+Fo<#!=Z
zRzhy1q0-Q4<W2iOZ%e2BKLzDWW8OerAdP1S>ilVZJW!V^XB14MP#T5P;17^uY4ELK
zBt_CFDiZPy19kB<N~Hbst4pSRhm;cDV320IcaZ-#`!Z>im4?X6rBObO3X-juhARq`
zXGoPaT5=Th>iR&{G{z6o)zYY*MvXKk)-!6R(J+lh!fT~bJB>PN)J=nL8)2%SM!hWO
zUO`C%&VrD}X@9Zv+^}Y8d^bopNu#M~X7rnj!4}!N6t+tHujy%>Mw>L+rqM2qL1_$5
zqkS43(*Dn!o@sPUqZ2z&%P2lrcTS^A8a>k3HAr`rw%A<vG@n@xbW3CTApf65B*fc;
z{21$%M(;HGr2VhK_Yc-12J60Q^h=|E8Uxb)|Ktaz!2srqvB>#utT`Qw27~omgY}R!
z?o5O4U7a&n-;wseVyzsk?@HrtKHE;op1?iQ`p`7)P2;{at_{{q_luB(O_v{{A57z+
zG&YUF<}r9UjYl|Z&*8i0Fq~?Ij2jHCG)(d|ERj5x#^Y&(goo3J2#E?N(ufIRMLUhS
za7WP1%DGD?g{K5P!F0Ct(X_w+v-%TsY#Ni(n8I<T@pKw*Wp$oO<GD0Or!hh#BLzog
zOP@`HMrdISO{MWl8n34DLbmipAq|K4zkgp!<7LTa^j{PHy5LyBae|qizajihLDprJ
z@oBs**>}=-U&y<H69nHA%vk<F_=jnHB&7Ec{V`)Kjr)h_XNTxXBAnGr(d;K_Oig1=
z8f(+|G>y;F_$G~+X?!j^UkXkWoG$o<AS<$yGlYL7_;ps!4$Kn%V;ZwLv%<ei<9i_!
zhUg!JWco=vKc(?!8h?rKXGUxqzohYAPxWgW3({Da#&2o-p2l2m4r$EKsP*%EK1*D>
zWQg84L|+`D|Bxb*rIY>HT$IM&X)F^VhfK*o!WRoJ5nL+Bq9p^3<-%78t`uCA#_BWz
zcldQ13a(3Iy%b$eV}p<_X>3hnqwr0FRNkD8hixL+p2iL#ciy3Qa)qXGG>u~-*`3DT
zH1=^(xB35=dJkwRiuQT9lyGl@h?oTg1VN$%L4qKHh!Q2|{E{>5?(C$^JLH^m&N=5C
zL?kJKi6BT)K>-PZD16V<GT;AqPM<o}^;AFI)6>(tcV>5Q`p-l;%<rzJ{X)Dl5SP51
zmj|LN$8eR(HQ4|krma1fHl~sKeITw6#C_^F2I7x_xHS;BW#^Go$tLAHxYKo$h9iyC
z_l?wF<add82I6WXmASEdnD+*v5Q&^zsXib+B>qEuM3j&i9uLG5xfp}!9t3=N#)qB(
z^a|ivA2Rrm@FVF*MjtZyaLtEbeaP%Xnh(=`nBhaZ56XwSKGgFeiw{|SDCk2WAD;6e
zn-8z~+}@ujzDUgOgY@`<Pky*QEe91b)NQO@^7zX>yyC;FtoCZGq=?~lAKsvn(}y>G
z$m2sUAAYQ#p4)2`Z>;kAkdM^@#J7m~i62aN7t*Z8>TOn~p;X`Tp|B4h`cTz}B0d!L
z;XNP9`cTY=;y#r2p`;Hbe0Y~lgiDcDQc97mZ>*%8ZLG@pAmjnZS<Z*|eHh!s9dmiw
zD*5n%4;6f<$ZEDGswktCSsmC!Rq>%Im4yK}`A0rfW2mMN)qVKbhg*!+U@v0$zKQyT
z2H~5Us83}keUOW>7R5Tm+Qe*4-4Tkdz7L=KVEJJC(7=a=K6LY;yAO?gXzW7=A3D<C
z#D^9>w3PAq(2Pp+|APgZs#ZR<_PKj(JL+wSZDo*6-Cq8e!t817eQ=tpxlL6k8oChw
zm%{96oqgCyXID>=E2W1ICyS)__hEpnJs)~8)SK9s*vE(CUjBYmq&m<CpAVW3K`MS9
zcK??aAQznRzI&E+9}Fr|6`Sa$=fB%jg&1;t8016PhX|`tIYyEgQIc$|lm1*YmGB`c
z3%i+;BH~~lhWIeihe<vR^<fyzV|^Iz!&}YNNFPQ~89{vcK$?i7WqO;bF;prxQ(7}M
zPKpoXeVE3a6BruQ#a#*8o2kh@OravxbIsIL@@d5T%~a0jYNijfd^qgGS3b=4VU7<=
zeOTthT$Xus&eh#)^SwL^d|2qiB32jsu*B0pYOXppcaLj1m6blM@?iyeY7bfM!x|rU
z$t3%*)`xXIZ1!P`EK46Y`0$WzH`2e!hn1`jX|9ft<Y?h$-s;0PAGXu8!-t)6#Zi|~
z3le_|C41%`ANKojz=yqb?jw$Ap~NH6gFYOhBK!-VyT?lNFR7%G93ej~As>#CACtx7
z!wGURpCtL3_>Ei_j+^0IR!<R^aWLPLpCSH06x)wJ{6t==o!jcH59fS1@59d&FZ*!8
zbN=GPMUNk9p)QdR=#h4X$*=ful}cJmcV>R`;ddWu`thkB*L}Dl8=xPr`SAxm4}JK@
zhd;@0%7);>Z6E%U#m_zb4)uFJ+?O@qEbXrBTFm)3bxHn!q#nfp@sSVk;~78xW#~U2
ze)~M_vFCq6BL6e!SwAxPvA(5xQTBg7GWn6skLUf!>_?g(S^e&QnC^!n$wC~{Qi)%5
z!QV-q^UHspN|VhkI}H+g!H*{l3C}^Evz3x0FZuB@yA%BtnkC8WB>DX)K=OtkIsM2*
zp4*SSB;tS5k34?lZ{>DfotTfIw}@6N^|l`c{ix)}2YwXt;~nZ1{3z^45kKDZqpTlA
z{V3)~Nk2;YQQVIbeq3y&-lcP9E47DdCI1tWms_jSew6V;LL!!K?V^-&^p_{TPyD!h
zy1ZeKP(@Z7&{^4!Dt=U>BG=c4enhBO^+P@t{1NruUe4-%d`zW=AD@scWoUD2^_d^F
z{OIXNFF$JgQHRl1e$*vtO04HceK`w$G+;HgY#RE}m{l2ABR{@vt?n^r6N(wzsAeS1
zi7kjNiQ+HVMztny<40RR+R3_Yqq_Lf)sOambnv62ADzVDM`zkPwNcLm-N}iyapz$)
zQAjsGdib%L)$Vjkp46_}+mAj}LVolm(TM$s{rwo=$3SvFQL_2`_=2edR4$PR$#tUP
zhv|pq`E8OXZB(wd?x@17Mu<_*6Z0c3%Z7&fZI$E4AU~cBAVUCy{TSlMK0o&RG1QM?
zer)z*iyy=N7~#iCKUVoMl6gk^F~*Nk<f*-MEcp~arus3?kMXQdAWkAq^rJgFoy_V`
z@@ald_hY^v3;dWN3y+~We#|17O_T#!)m9y*f36?%{J2Rj`m62KLO&MyvDA-cG?#Cu
z7W=Wpj~4AzsGU0r@&;0HxgRUMY!j$2Yo}II*+5)FTuWR>lve9W<VxS@DVyXvdfR;!
z-b!T$aT{^F=aJR8lYAF(H*pVfFHxEwZl@0TanO&S{5T_Lnfft5j{9+l{7b)l{97IN
zBk)=JSHvTJ9A!u@;q><IL7iarH1TWVH-4Oyl}~<(C^p&HQ#<^3RK6$v;6;CwZKS=b
z*<PKc@`oRP`f<*W^M3s7#|1xr^PCs`xa`LjKYsC)OC%lItE(i}h;pW49Nw?2&LIC?
zUIkdaL6lLgYOijRKal;wk6Yxo<*5C*<Hub;{`Q>r{J1a8ndb=cxelsy2X_Yk@#B#n
zkLmo^kN^BY;OTo>5uZ^1h|WgDXBh2Do-u$-0n`nkUI3W`NDH7$0Ph8m9)Jp<1f5v|
z$QnTY00Ps}o(mvb0QsmtA3*j1UJKy$0A2_nM*uH-{k|B$OXNleHN1mb%D!F+;8lu8
zI;eXcRGyCNjR0~6@MZvc0`h-#RW3$z2hgUYdt74ENoI6ZdpoMU0i0s>t-#ZlNXbxu
zP2LWmU;u>zcqf2jR0;=BB!Hsik2<Oxos^*DEZ<4B>7<HNmuj?=dY8N;u@tei7tJm&
zALNw-s1iUq8Ds$EsR&jekw0B41|WaTRtiA)2VUDToz#cqHHlRN_$YvC0aRx-wO4-}
zz$c!+MnL}8o;yM*^3M5F>YoKrD}ZC3UYlYa>F!wOl(T*SEdyv3z~=!p2%sSiO^J<&
zjfrAzLh?r^)r_P$u|+`s8Jt?z-tDxtOnU&`sJA6{BDN#8Cw3r;xg*Kz|5N|-l+Gkw
z0_aLoSwh*<x|8=Hrgq5Q0rZhEYiOmRZvg!Q_#uEF1Lz;XfB-fHusMK%a()9C6TsL2
z{Ico-7#hH^05s;Yi9w=HGy*V5ETYU_8}=TOGZH`~fM@`NyfqUGAQ3>4&NwmnKQ)zp
z8L$(Oe{1EAd@w^p0yxj=E#h#Bd#|UBAQ?#<6~O2K4qZq~U-I<ajSFCW080Z{7Qh60
zrUo!AfQjUjh|<O60H%=3uTV;LI{EAX<^(Xq^UMrj7J0EjZt}SS%nM)%mH7cIAQ{zJ
zEev20`C_?dJG<j=LKHHvvl4@l<ut4#u8_snS*;9U6|1K^tJMLl31IF2DI#X<qSn)}
zfw++<sfK;%4tPrddjr@<accnENVXGq1h6xJUE~ixPuoMXJ0Sn9LrJw|7k4~T_6Kl0
zfD-{62;g7<U&u5DaD--weklup&cjr`@^q_<Iw~V)=om%eUz2=C{DyckfNy1K(RPZ8
z<UAdaALMs?|K3w%S^h-+IDjVsoC)A;0O#bq2k@8Y`8j|;$S(wNF@RqJxWwx904@h`
zC4k>N=hXnN1@J4Y&i=IYu1}A&U{_VStNJ}4zqqajP`nXv@0iW(s{Zua-VERt`E5_x
z(^cIG;BEl-0=OT*Kc4=#a4+)%iVx*FqVkB<e~JGQW$TmUg@$J|l+;j4!?PMPXn0A(
z%bNQ#kx_#p$wU+-Gf5gTT|=I3ZiXxxvTArvLpDu*hgQ8P*}AFc>3Kmzc1?a>ScxLe
z91L~urUtVr=2tYlN@sBmuaV@^kXys+8sxo%G<icqPU?Hv<W1>RLm>_CXvj<bEe-iK
z`4v``Ps76#nT1HJ0vg`dP*4u7yIajitU#1%Va@&Xr<jH!8j5Q2bDBz8wP#dxF_d6t
zA@6GLxe!uXLm7$<iSKEsK~h#jISub?D6io|Dit(T)KFP-Z<|!o@PQ^j_UMj5$^ep~
z-PO+SstV0Nc2`w3e59e8hUywVrYKJ1<8&!P?y<=y8ft3zRD)G8y$(H}X{e>4HkC2e
zT)k<*biukB>S?I2;d2cQ=*-;XY430MP?bF1NJC={O=#%YLp3GQd#Gj_nrmpmYOgny
zl!-l5YYlBQY?G<b&{jh`4Z}5z(9oW??izY%=%AsahE7yu*xgb@Lubvs``3llu3j`#
z)3i&S-J_GzQ^Noa0~zY2p*Kk%VqXpYNcwA#JD(~4q8`ep!B0J`AwZ%NHDZvMI%@{G
zDYK-(CJzxM)fYX~1<po9LsUad&X<P48ir^{Xh_mFi0EkU?VVKb*?YPqb?YW?Pc_ub
zHcXZWLnAee(y-3cM{Ag<VG^rjG>jz~M;uR_K&(~Jor=liLRM**qG76rX&R<$SfF8{
zh8Y@WYM3LJm?r;HIc=7#D@}e$N!4P%vhsz`^D@jQ3HMa18C}Hc5)Df=EG9oeeVK;k
z8dhjnN%1d=gPWwi-RtS`R_vu#Gqi@dmMA0aO2c|qH)z->SF4828n#f8oqYUo_xx^^
ziKSECj_%N~Q$xleG6k_q!)^`dHT+Ef9u3Dd9M`Z{!#)lBDIU;pP-bsn+Pq%s3k`=f
z9M$kjZ}lakUlFB?!zBB9sUsx!d#Oyl-NEPYtxixmOZ-~HHyTcA_*TPD(pPU)nYL3J
zPHXs17MO+~H2f$RMQ_!Ip^?N@#BIIR8Rki?t8?V3_bnI5uWGnPa#6!CB$tRXlFJ&d
zkl*O7Ug@KLmCc9MhZ=s@a9zVa4fi$N(C~+>qCV;lqeA}Fa8tuA4YxIXRULn6sM|+{
z`nX3ol_;ClU7C9u?)v##!vpQ<8(^uf>?7afbIt!~c%<Q94gbl07?fW~aK*=L_=K4H
z0~|rfKfscZlxKs;5Onvw6U-naa}e(aQ8I|MAku?SL1YQy9eT0`@mvr&$+HFVd=Re&
z@fxeygLpBBmx6d9h#XXI^-<6Dbq65j<sd%pt6rgAnqv39Y7)uo6vgvKP`<R{`f~-5
zJBT-f$P+|?Al?olZxH!{cuS6m<^z4@%Npt~&Dr|7P2TCJ3Nlp4%T~Rg>fcX|@23h=
zDH24{Ac~QXAC*=-2tjGMqn|1fbf2vVFBL@TAZiCuCx|jZycfiWK~xQ*EL&A1mLt9&
zM0t`5L8PX1c?EYqD^dI)h{`1L2(Jo>gwFI+ACcD}RwGs?eoVaC(H+kxLDXdR(;#XE
zpFZ^bEGQqJc1Kvazl&1p2GKl-7D3btqJ9vcvq=+TgCH7`G$J-8*6J^x*mT=AWmQPC
zpnN*fRayqoDu@n2gnPM}TL;lDi1xI#A+{xM-|7BIBCm8C*s3GNPJ%&n4x&pCU8#J}
z=v|^@%Q`^y2%={YM{FFm(JP4FK@>Mp!bG1S`UY`H$7LP;g6JQVA8f>5K@13DU=Uk_
z*cOD3IYTnGApAiDg3y8pQnZPB5EhB_WssP%2nV>wmAZaYS8gPTXb=m7SS065W;KY>
zL5v9^5kxYGp+O7_!twG9CK*I5#Z*Jc>yZx+VkE00h+oc5FWVq(6nW-p?gWmNi49_U
z5Hn<r1u-Fr$w5pBVj?}0h+^x)Y}x=dHHc|ms?iiD6K4i7D~NeP%nxEV4ReB+OLA<0
z`k5ZdlXak4;N`46P!$^J9{b`TmQdUv*A&T$AXWykj9gai@*o-wRGkK@RY9x{VjcB0
z#I;0=d1etM;d(hE<Qo|kWm6EFgV++pFP<ldPi+rk2Mxakv6JMWY&G&K5X9~v_E6bJ
z+)GSdJNwBG5KH>p@gEA}%OFk#aXN^@L43u~3F46;j**D%C`oOfI_@d|^Qo_c_(pb{
z(`hFueoGw8w5xpTyCA*~;-U;Yh#!LZF^IE4oD1S7+Rk`+F3_LRug(YYGsO$U!hUyn
zorzK6CD}cKxE93aAg%<_Ah){@OkwB%QL4Yn!uBf}=kH8%J%}4Y{1L>Ttft<^-z0Ak
zP`6~G3%I>}7*KbDxGPInM@+}PAnph8zK-%b{tn_n5ZQISpyOc>|HvM$BcqN-LHrxU
zGdlJJ)PGF)IEW`f2ueaJ-I*D>{8{aG@vQFZa$iL-la9<fo}-ecBV9)patY<Dm9BJ1
zNi`QGtB$`SZbB*9boV~n^E#^ZajQ9Wyr?6;jsiMf(($s6oH}ypc*V>18p*4={CTAw
z2Gr|1-q7VeysDw8cAC7=atD)Jcek3nI^NWgN5>M1q94&zJ{@l{!*z-og6eG@1$C6r
z@h<g3I*RBhs^c9Ug{AADdOzsqO#M+@Oh<9r+EE-#EUBZEj<VEC6U*p$k7RUEEv3ip
zour&Di^ok^K}SU$ZFIENQAx)KIvVI`sH3t>g^tg3)Y9>xj;cDU>-bp5M@(2vM@ijn
z{?F5{RSg}V=%}gVQyOY8+L@SoJ33NVwRP0dQD1l8uhykaGSnkkud4$z%iZkHWzPA!
z)`+2|I-2QdOx}cen@(xlTt`bP!du9U8Sao;>1ZwItGUaiG&58?9qo1W($QN-2OS;R
zq??XTLdd%iI};5<^<kc_Iz}044!Pv%uA_&Jo;p$!D9TB3>gcN@s6&_iUq^o(J{^7?
z1DHylT@KXoJ2Sjwy5k8@7ow3=G}VN*?jQ}_{lm@DVN*9{HS%FcNJm&l#B0^YR3`Jx
zB*t|lbnMWvQ>IjhqhpSaxjF{v7%W$Zj&VAMu<Z!qP~tEh!%23V>KEo2DMzYfG({QA
z7?S&@+|yQhEHz%o1Rc|KOs76k$0Qw-IbbnMnL>Rkv5Ms$W+zL{V09L8CUG1?v&mPH
z&(kqq$9f$bbS%)ZP{&Fgt8^^Vu~^449j7g|gnr4nlqB^AW1pp#>sX=Vs-@)Fw?s4A
zYPIKFt78p$McW<BI`U@Z8+B~bu~kl!e1eOL7&g<eg&4KfHaS3swo_STt6e&FlYb|h
zl8(JPj_EkAW1o)wIu7ahQpW)rz91eXO6FtCBe(hwd&&`#ujJ5d^{=gt>X464<qADr
zt0&~V(@@)ouSvcko|Nm3o>Qz!=F__Sfj1%F>-a&(kJQiVI7jjm@eHwkNS)X5vyO}0
zj-*L6q%JTdd}c`fqPvfb7cu`8nNr!Q3@kNpO~<ct)f@QOz;CjQWs5VA)4+8dH*{n&
zklDZ=I{uWA$fm91CUgF!;||F!9k;z+c7@bk+5B03K)g@<TL#8{vxHTduzE<bb=W<w
zf61TdfPw$WAA7r5AgrD-p1u}jFz_t-Ot#AC={v(J%|N<=7Y)2*KpDtlAiIIoYRPIK
z8=cP)<zANb_&oVh=6S)(lY``su#yGyvVqq;{S}f|4Xm}@OF+u&R5C|YE(5s@yl<eq
zfj150F;Lt<2?Kcz<TFsvKp_Kf(OkgGmY*a~M78weZSqPH^^SqU28yv-gjkd)ef5c`
z5q+QbD<27X*FZ^z$`VT%C__@(^E(mu0N-PEK6yFv-4Rv6Kt=MZ1}c$!Nc_M+Wdl_V
zeAOsTFm;T=Q}1@9`jLTZo*wX_hJjBE3^d>~P}9Jt20BU9z-I<(8E9^xg@M`z>KJIm
zR&@>3BWYluzJbqKQoWpuC@Cr4(7@e@$`n<N4Ky*(lueou#gIR$K8w1}mIhiG=wP6u
zf!2(+BepTnmPGDpccZgCs}XW(m^z#pQPtT%7X!T+?Mm!spgR+a?fMjVwq=X%VW6jh
zUNmfqs&AO55379*^fS<(Yit0O>s~KeW6EzJU|^hq@dh*lK?89E3EFf6mI2#<!K!p*
zlH`xMhZZsrF%YE^Hc)|LjMbs!;%O99Ndu07VFrdXG>ACFz+e*bETVZRt2<+A1j#4^
zqe(^*&&1Ri67i2Ec_yy%#@%5|Ffh@;90PL=Ofpb5uBIB8M$cpeQ@mF7Xr69hrl-sx
zX&qOy49q6?$JJ=sB<(yZi-_|LEHJRpz+^^O6Bjd-`a5Wuf#tFn8S;{f6$Vxs_}aiX
z238qZZD6l~eKfBzu-?E1xi)1r@^<JtSw#)qqu7|rW?+YbO$Ig_*kWL-fo%p-FNK2g
zI`uQVeni~KCcBBdWCuvNd8F)->xF#3fdh=5FmTYo7Y2?PIBMXKfiJ1cGvC7`Um4I7
zs<oHF=$>{=4mP2VGb+z+mL*i`F^xPdmM%^j_?Dp`iKh(wKq8^jB;OIgC+=X{ZxZS!
z17{4JHE_<rML8}5=e<@J4E*fzs|oc&((UCEl`96W8n{d@deNjCy~gUVvX3=z54k4&
z*A3i|{nNzrCjKz+r-6(nGMTt(;Ff`hY;xPcUk2`x-ytq!+pbA<SFVEoD$4481AiNM
zAoIqmbn#bG{bS&ffq!M&H}J#&On38n%q007mBo2F|Ie6s)<gyqm8i%<6`PcntY$Wm
z#Y9#UX>2anZ@LLZE{k7m&zbIR(wcl_5fq-?#0w_!iEbi?i5E@0PQRF6B6-!s%OtXC
zyh75KeZ6L42FV*Ha+=6xA~&P|IqFRldC2n;GuCw9t88`DVMkqHll;^Rn<!x7Z4(7e
z6f#kE(9>g)W&aKh((2Vgst9>ePbp@)ci1HKu8EQ+T3TpjxpP&@!~zowO_VlK#>9J)
z&_ojxO-+<D@xF<VP1G<^o_VSgE10M#GwEfnV&Vf6m04}b!E`2mNF_E%eMC}?Se-a^
zkXklKePW`fi8?Ycil3UOO|pHE`piTva(SVbK}t#Oz4c5qkQ*tyPV3X~IdT6W)sUo-
ziN++q3{sf~yKS49Xl^2EB4(n69Jq;oCi<IbWumo-t|q#fXk((SiH;^Zv28mO?M-wb
zf1XL+B{r1X9VR-P=)zDNiiyE$(O`9uyt|1WGCW3mnvi|6mx<o2UZmmKA?ocRs?HGA
zm!b@>@enn@#6VUpqR)h8B51;IB48ps#65~BMBRj8!t~ni8lq&Yl;{;kZ4)7e!o-NI
z=b@_1P}O3n>xr94m>6ebyosa<$HZ_GBj_AtVu&2?P&JrUd50;VUKna(nDoxJ<A@^}
zl~kimjPm%}p=ykYv8)~%s(zz$f{BSHW|^36Vv>o;CZ?H~Zej{;Q@ys2XwE%M&G3|&
zCaMi{N85gwiVjnAsL%7Fb4|=-bUu|e<cmx!mJ86rOBR-xSZd;eiHjzdnOJV(D-%ad
ztT3_C#1<1<O{_Ap+QfPj8&XM3tR?w+m`Z(kW*w{7hpCNng$`GnO!pmc>NQ0Mwwcj4
zJEv_kvE9UO6MIbTpt#d?Zx_f%ZhU_1qVoQ5_gMCt*k|Gk6Nf17H*vtkL78wy<yM1u
zWD6CP@+Ccoi9?2~4fGr}am>VzG7=NV8T!V=NfRf?zb49OPNey_CQh07UdG02<TMxI
zcP0)qj~IR;`GHMt3|D7J&hwf&YvP>Da9MXeQiS}>sBpRZelc;$L}m+V7A~8(V&aa8
zyEI&tz1_s0Ca#(I)x>Wmem8O5#0^=2Bc2{t(GjYu$9s-YH`(wuarg*zi)1wof60-K
zQ1ZO*o{9S={xk8I(Z5YRH1Us#2dv7do*k(kdHi1!gATdFzTYqHhkj{Ks6S)jSqtDs
z_tr>vBpJvvTF7Lf5fu?l5~-$J7&}ra3t4EBI}ces@`8ouEM&9rJeAWURd$jsBh@`N
z&td()*9gh^vV|fRiduNZ!mAcuv+%lwx7p+k3pp+1wdDUvsazIvTPW8&Esupa8I`uF
zzg}~XQld*WpJZkzzl8!U)kmq$qf}y)nlnljv{1-$@1=-S$~$xxCLSN9idiUb;S(`f
zC}H7U3zaQYVYH-$_brsSP|8AS3uP?4XQ8YNhSA%jRNCmL=Pvaor0{4}!9qnwYm8Qv
zNIqZ&>32f2G<gdu`iB;(GF07yJS>yYN305|W}!86e(WhVEX1gMYT+{r4dtX*m^@n5
zvQVF%+7{|qs4KSA=YB1$rvI8Zw$Cjz@Uj&cqZ*SpCpM9WV^mWM%~<U`M!p*69#IR=
zU%700YYT1U)Yy2#Mq3N*EbOqb(?WX-9V`s8Fj!8Lg-#awSm-May|z6pbhgli)vm;D
zL~D%OMR#(!;nq_owvXyX6uq~Fdi>l`KMVaW*cL(-23Qzq!LT6j34Ip)Y#X!?Adz>2
znuV!MyOgL?mv2c(LMbMzmW3}F4O@s%Nm_`Kh$l`GBg&SN@btT5ltZ3+^ESl7Pzw_+
zOrn@=tQuxvxP=j{j<zty!btK_#KL3UF^nZ2Pn7C73)RM|E(}een7v2(WD8R)EVZyq
zj>W<>na_b(U}3t285ZVPm}_CCg;^G6dwHC(YBrN>BF^*l`6TDZs)y7UT3BRZu@_xJ
zlCz~dGtZ1u%Pp+1u*t$^3o9+Gvars=dU{q{SYu(Wg?Gk1oyn@>REKfO9;Y^V**22Q
z8>jY;Q|HF1EuOxOWGnIRIJKQbjaP-ot6dg$TexZAmW4gk56P*qu-C#qS&-w^eu@W(
zvP&Pd+$XkQuqtCV#;d~?zOr!6!g&ivEF87)1Ea^pY2jN7r(~&E_}aoZ7EUrWdAxfF
z>&C0o<JAN591~pSw1w|1d@t8Es~sk|TS{z#di_D#j~0HiaK`KREXnK%Y9F0HTex81
ziX}JA+>PZT@sfpKJpXOlF0=abM0L%=uNJObxIyJN;_tGtOmv4)aiaW4g?mQ+u<)ms
zL2hz3o~SxZRJSesCHt!Fc67(WT?<cS)3$NX!hH*mJpbPo9>|u$YU<VPA35*LFAay0
z{A=Mq3y<mfdZPMZO4{v->KPl)+Q?!ftBnjc<m+$g>?@;<Og1u;%N;gJA|;L0)D1L6
z{`w^K97*x+t|6Q4e&$C=xk)O!jTda>VDx1hjV7rV$tC&{iF{$?6&tUTr=D@VMjo7`
za@xpcql1l(Hgel|)5ga(YS_qQBd?7LHY(c4XX7m!rEHY8k>5rEwk>MoZIVJZ-my`T
zeC(vB<1fr=5#nNsCnl+4Hj3LQVdGuuC5hMNxF$bsRc*2=L-Bp$o`Gra*(htHoQ<xY
zCp1}=XEcBHborKFB^w{us7|G_jVkuj@05K=W#VL2)rQ>6l&Sd0Mm5|0_JMFITPG{|
z)_{EX^Aj62Z8W3*QyZVj1d@xVmW{eL>e;C6DRoFz?MbWeDGf+IC!XaX8`?;p;`Y+m
zcK?=d!cbGsUto%AZli^bmNr_+Ztv->N!r*b%0C-ZD0j@-QEzXf7;|=#s*U9~R@mrl
zql=A+w%q$gR~y}Igl$A@bhpvN#z5)aMo)S8Yoo7?e$3O`Mjw(-m`w)Rg`_{l0XCAJ
zzHo~2+X&b&Y?wAQ8$o(>;*lxpvggb^RarJ{>LDA2r#_wG#w7l!DrzHUW0;NMHsUrC
zHU`-kOn;K-*qB1|4zH~|+8bhHsExy(B4217VPm9?F*e597{!J%{?RtBdY;VF+^)yj
z7;j?&4Y{ejJxzT;GMVBO8&i2|#5~Q$bQ=q7EVR*Znwnu_o*YXh_s!=_8?(q~v(+5p
zTw)q=zD&!-%u>X>$i`wDOPOQ|qaya0rpEJXU1q!AXPi_iU2vt1RW$6evD(HO8@pIt
zYhxYBb}`%7U}KYw%`#Wh)JE#^*SCDBQ_^l>b*qhS(&IGwCtR+$dz#XRy9;{<qe6C)
zoSLR~lce6d?6tAa#(vLp*v0|!gR;o^?DY#9hp2q%d9F@VUwQob>FSt`<8ldyQ8J7Z
zHolhS5rP%MH#Sb%_%MX3A$)7&lw1WNsE|B0z;`yT+ql6b-`hBA;~e=9vJH~RGsmB7
zoFOkX-94Q1HhyOHnvDx2mxvdMzYyQ0Q_PobT%jWTs*Tjy`IX9Vp8mT``yO|G{;=_<
zjYl^AW$31jziiwgzh&dL=a&_Dm;3?oo{jq?ZQ1GHHlkkd4{iM8wVFR&{YRcL<nB3-
z$)DIj2+xG@EX54Ot<%-%GVU^4@V&c!GEvM-lxkWC-!Xrd5VD3)FoZ%OJjduOA-ozw
zwh*2VAv={9i7yay5GBJkHh(FEm#L(xqQAy!t`J@)d4rfUgx6-M_h+~>pF4y%L&y_C
z-VpMKP$1+!dXthbgttQILXX(wexry&q`V!1JwyKKhI%K2!XZ>(&LYGTA-o$x(UAK_
zs~8pW7Y|`J^OU4gHiU8^lnSAA2xUU}h?DjnL)&TlafZ4s!waE&$i3nMd|}mz6+@^L
z!UrK#roT!EQc|O;+aOJf@Q*^M7DDR~+Avf-ga#or4B_JtYJ~7f2sJ~f!%&8q>eCQv
zlYbV1RHb>X5OU8{<;dmBuysSIM?(uL^~paE!DLnZjY4Qfu`yAUCLuH>mpivoZSLtU
zNLq#<PjFh1%VV9kB)y33LTDdC2XblHHH41jodiSZOy0$dj^hBf61!3C9zu^0dWLY4
z;^Ubr=PcD*&P51)L+D437D9g#pO<Gq2m{H>&2kUlPaYt)p%UcTl#m{R;k6nyOW7fW
zLijy|>mh_gh=edUgmEE6=@}HlV3Jq}agv1BHc8^h0^naILs%V797-I<9;dPQ5mZJJ
zM};stgfZkYo-4D|E_%j?Fd>BPA?yfYBBQfIm=nUJ5GIE(h1sTuFe8Mij85}1$XgD{
zGc$x)o>GOUEYoZ?H-vd1tP5d%2=hZ&5W?~hR)nxHBo897G$j9bJ}vc5V{r&eLdZ4S
zojob<kt}1v)E6FChOjDx)l{TOCV3SgUrTH{TbZ+!d<Akt2pdD#MsZUJn?u+V!dCAB
zk#ENr_dk7aBfXT7uPU>nogwU!-B?a~2)jer6T%T$U?J=cVP6P`Limyi_Y)5i4~Smh
z9jcTsq!(}GhZ)T@M}0+d+S8APaDvKlV(B^Vk$z1s+oteuLpT+}FCko#{a?1S5YC2h
zE`;yt`7wl_WK|DUKge~#w$kJbLp?d$`W!W7jyg}}LP(ysx@PgD@S@E59CeZnFNbiA
zwkyP|bh=-Skq`e+5%L?!wK?iW2!F_a7{)7M{29Vc>MD#|A>0n(F{^(OABONx2zNrb
z8^S$VuKWp<zZtqul$*nn`2l(Mxh{Vc!oREvFELmB=kaGuJPFDF!^SgVJR3&l@YCHX
z14%}rJT;J3nZo#lsnRH>htY{u!7Nm=hVfh&*~oJcpARED$qWAn<@3NVvMM=WA{jnc
zy-M;%7&%E^Bfd_QojF$+xx*;T>YHKY3FB?@yhO>9Ka70jZ+S{6>8_RnVfRU>kb<6G
zh~ypOc#gkF7)8S<7DjQ3B|N9Rh<9Y$Qel)1V^$cm87f26!+0-@vSE}9<9+ERjL)f;
z596aSs)bP@jEYn$g;6C8`8LW2tjb_2hp~xW3;!^Ts?@)m>wfO8I{7DI)Fk;hj2dCc
z8#!^-u<$9xTEx$YqRU@-wZo{xYTYpEk;p^&tn-u<F*FFHVHkbG=odz#FdB;?jLx(*
z38PgQt;1*<Mzb)QhtYz1OJZ3zZ!}M}B56ahT^Q|2+R6f;-XV;RR5}r36ekjQ61#-a
zJ&YcVb|rQTL%!uFW0TU8O7AdwksO?-j<HoARxi&}{YeId-S2y*9zG5X!$;8{hDH(~
zO12wp8w?}$fZhnh48sb;4r5pt!)XhJ5e*|2MwrzI@h%%mhIrWh0@2_w5@946$~s>;
zBoZAIMv?hXM?Qq&P+}h+Mv#mRV_X;`J^!dMMw54u7Xp$x^VN8giD66%V*<JS6ow?9
zOg=S?X<<wu@9Fh5T@GQsnh}=&l*c#!j7k&vA)q;7%#}qLLHP*g$!ZDXdKfptSP;g-
zFuo4sn=lrIu{ewaVH^x&Nf=AR*b>IpFqVa}JdCwrtP5jB7%SzF`DKSyVXO{gO&Id+
zp^@{|s`={pe07I|d2xaJjBkC|y^*^yj1AsMN-R*D!q_YmekV=7i`sO7J4@Tb*v_1L
zXxkCSF3-P{q%Cc`$^8q|UXp!b>?fJEKy9Pp3%Me6d?g#yLO1OpM!yW>Fv)3pj*uUf
zYb}i9<l;O*@^dilB{n=6#<x^1hjA*5(_vijoZp3UCXBOTd>_US6n`ZCBy+n^J>220
z)!s~UE{yXGi7w*LGL5~{CXiqBvi(AGNsgELl`yVSxkmhzcy*!rjpTPC7O8xT)E~0>
z%Wf9ITM^up&0jXv2(m?RTh@OVh~SwB?u2nSjK9NpAe*6udtu0npo~PyeWt3qNIeYW
zAM*dg7_dk^3gh1}QV*5njr8C}YVjiVIE*LsoLb~IKf6dh8$pH$RK(qIG7>XIkeNjO
znoA>*P<jN97s=0#DZ#>vRTk=5i61V0I+EvEeItVG5xfvVjtE|i;FSnojo>9O&&v_W
z5A}3itcJ4HYt&ySj$Qopb7->`tDF(!ieL{txg&U!hCIZ)5qu}j+p1jhE9IPl{1KF4
zs6Yg7M^G?=LJ<^?phN`kL{K<_VvH6c7A0Qs#{8H>9_mS|cOxjpsPK}~e96<}Djktu
zwsiS>UbJik<swgCg&QwX6(Xn@!LSI1M^H%)FoI6vjG%G^RU)VpLEQ*GjG$@+H6r*V
zf{!Ao7J2%GBS|a!d37)I#}V{rzcs0R=INhC+;0JhSxPO6wdK(ItEo#=y$FsjQ4J$#
zM7@3lpOZ9*K)zgmp4l2l&?JI35wwk<X#~w^Xca;82wIT0BtD`!?^0D`scOGewWcUN
zCYP#q9`6uAdyg+&>P}0?2o8{RmWhhMjvy34*9f{r;G?s91U=-q$a_Z6D}p`|^kr3^
z==Jupea9sIBET{?txW9srD}i|9VknJx<7(I1X={a2uw!x2n-UrT`V_>rL7eCvX4bE
z_0^tm1d#{^QHe&}@0KRW#Tk=RNnVoqljIJu{xY@9N*f%(5LV?(4JDCQvQdwSU}OZ-
zBbX7vDC*;gqdm`<2*#32!_=qd#z!zAf{77K@;p-_m`pC;LXxyoBbX+0#gQzn&Yhpp
zMG-8HU{(aPBbXDxT$w{Y%ADurSrEZ|kI!K9g{<x&UlPGGFS?XOW?(tV3Qu1d!3CPv
zM6fo3@i9z@VO<34<+6&QU<?}~*ciddD87wiQv{nO6vc)pwnVU1uC*u%N3kt}?Gap$
z;6?;HBG?(hnF!8Cuq%Sy5gd!)xLnulabE=cWr=#d%i$b|;9vxYseBP}ACrAaeu&tW
z>;EA~_!X5Sa*^_#(ovb2t?o%b5y96o!U(>N;I-xI8yPt-?G&D3s~;jrELW$=rO9^@
zd{16?xjX;zmgC0=e)6KJj}o1W;3}2#5&SH(M1Glgk@yQynqQK$xm?MoR)k-Xso*zd
zt}*&6@i*d<<?45mV)BeQf<Gh36h-DJZbop6`m<5@dvKEEc0@j4k2?|h2%mfTKaSvD
z1otC&#OmL~heU}!kV)oI2>*xT@v3f;e<S$M^PE|(o_HKlH|H}^JYKHk$!4s5T81bx
zQWP$sv?$V}csYt!qEJy}iQ)xDvqs(Z{CpJIqj)ZgY!v0^p=8I-v%)=g`9Z4GJGUGR
ziSi=JOT;oO)T>dv7R4J;<cwmbybs~e8@?WOKg!#g8FEFDCyKmL_cy+BN8O+QdXp%r
z@<s7h6mK(?e}&2)g`ntC3Q&|^+$u;?h$wGhMyyCH5=GG{`bN<&iega|kD^)>)uSj8
zbuXn>qtYtS{B9H_qbL<c=_txXQ9cT}C;wg)WutgM3L(-<YJ}yYn9hF1km_BOiZoP;
z;scV(QG7@uhAJeoB!pLu;v-g@Rd%oOkE5s&#ph8ph~kqdYD%Y3)S}^2qC5kYl{u|i
zdTmzg5$h18dEF@1a3uAk*uO$a5wT$ujl>W|=O`LS(Ikpa^f!&7Sro0KXv1prC|Y=V
zeq5niM$w8@x%K^odD^ntK8g-ev?EX5qL(hJ$j{1A$+Ob!F|{LgiK44asq74$U9lSt
zJ)`IzMUUvyU&NBf;u7k`P;a7C<s7}wJpH2>5XFcnMn*9(3Lg!F<t%$nGl~GYCQBj;
zJ&Lv~Rcc}-j}b+G=CPu%X$wUWk0KF8IEqLVQ7=zS&JMr-BEKm#cBM*EmtV6S6on%f
zV9oSXJhSf4-S89gL!ub!wH+44aPr0MYg81YqgWip5{hG@m?q03im_3Qi(-5f6J%|t
z@<$<0*e6FJ-;<gY#qO0#s)F(dML!>=(j!U>c?2w%MidLEOskbXD~h?~vn6@0^f~16
z)m=H{d2)cfCon&X?>Qb37e=v&p428F%F-xSQdve^PFz8}$yTe#SIcsWVlBC}l8IeM
z{=%xK>wIGrd#G%RVl&B>D0X=Mtt8us+ljI;c9QHO?k1-8hrLnklSNDAAW?ceAoD-b
zJ+3dP9E##glEYDaL-JJ=M|jeYMsYlf6XeH;(&}q^QYckf8!~|RR;g1_oQ@(>44LJ}
zY-OUN_%({(qWB?-AEUUyRzDHX6VDLO63-DOn+*GBnMUqcpRQ6DssBQ}6vgEzu8?0P
zrml!<<nBl~fxky_CyKjKT#w>L6n`*!i}<JKyva>Tnn<}F#b2H-3GYR5KZ^fk(~jbA
zPydJH0r8<+GTdaO?ISAx5=DGM@@&lAf<P4VOzi*pGsKY5)1|Mp7}8^SJ%%?Zsu-S+
zAv<}N7_xfK=SZ><Q(eCh!^>VYM+`4|{3Xxx3dyU)*Su(|ZO$0-dP**m+{8Cy$m8j$
ziOt9ATQTJK^a3OjEfm8$F$`g~a12Fa=uciWhGH?)j-gHr#bYQDL**E%#PBYoWr#8-
zC1WT>UfNS6=X)`fWwji!d<^gZpQyB|z-q;qdoflb|9}`;r9LF79>d2ZRb%*wL|RoN
zkz=nx@~NkPLQ*sK^qt;ktk&|P;;$P+J*mdfIfnW%d>%uK7+S{A!1FYXp`phc#n6~s
z#?~Z;Dc-f*jAC=ImsYHHAhss9A<8)0^0?Zu+Mc+2mFh^+$@9o8bs_IT?CR;=V(9L1
z@$`(L7puKv=u6Uvm|6h+{*QA2`9N8sG5E=?80;7VF=#OaJ*N?aPA<u1s8URCRfjxJ
zf+QS6gd|Fg@u1=<-u~(SmW;unB6$YIFqk~$8A?8kIGi|wD9({FjPm$sk})xi^^|e4
z=Xi5IF^1(atYBzT43p(_#4wfBd7gh7$@Cazc*;zYS;X1IIWf#7$*|fT`FwIA3rH3c
z7sasH)0dDeB`zZtS*=!*Y$L9UVKvE`7`Bo~wzVYdi0g?Ph#QHUV%SWwg(&_S98BHS
zYP+ZGh+!xBF5+(Do*4GVurG%Fte%SDKnw?CI1<BADqqOLUah_)KSY$fQio&sDh46)
z{5`^sj>T|1hLbc%?<ZpTI)-oPnYLQVSAF-;c51cyHs-!-m9}D&B8%<&7=DPMRU9uC
zP5&{5pJGVt%KRjTGjdRsaA&o87{l2Z&c$#(hD-Z0-;d$%7=Di7LJSvU^2ycodokSK
zk@*+teS79hF<d6OLi{a;t0dQmzY-?_Qhtx&dJH#W_#=i}G2CY8&lqmTFcEG!yd$&N
zB<Ei-+=<~X4JlDj45_FXr1zTs^an9W5h6uI8TmibaJ70w{5OXGNFEc{zLqW_#PLiV
zx!0&?<9H#C9ON0|$QVcMHA?hMab%7o*U<E|IMU-7xW@fKcquCG4lGL?S>t#vjwx$Y
zwm6=TBRjc-POMQP-XXpi$4hZkiQ~gKUXJ6HI7&&jLz$(#N|KBCS{$!?`WtcN^!R`b
z$Q{R<apZ|3FU6w7e8fU=yhV~fjshfa$5D_(@=M!~GD1-JJ8=~D^dfOr7qOV96py2X
z$KQ>kBzeBIN<30Z$5DpLdvW>B4$6^N^!)F~QJ%a4F_pOz`3Ih-GD-W4sOl-TWDMlh
zh}DT76KfDZA=V_y7(ONWERG5s)x9q=*N&qO#kz6Si=#ey!#Enn@i}<|;{WJx97lMq
zYDT3Ax#Vohs_0UhQ*04OOHUL->p0rP(Ke2DaeNcU$vE1_(LpBRQTj1r$2gXeh|)<`
zMI4>u=n_ZQIA&4r7Dx9u;&CM6=n+THI1K8&;^-a609jP5j(e2eCyu^x^kcPu9P`(z
zkv-gwqzD)E#Sw@@i^Ctsw^Rg!ab#Ghr05h={JnL`jKhk<j-%6~^hg}hI7AG|F*3h!
z(WS(s({*lg;X;yeIB`sjV^SQ0;usvqm^jA9F(i(m($RV~ip_@+M-Yb-XRTAm*Qt?l
z2#ReqMIn;8B2inf#>Fu{jz#O0@CkAt>y_}ya>>LoBMzB?scbbZjvpD4w$sUlh$3aC
zSDhWloH*vjF)xnAY&D-K&V_L-@OWwh7kM+bg!)oqY66#g&J}U2BwrQB>NwWKu{MsK
zaqNm?T^#G<*vhC(?}j)wG2uo}kxu1&ZRRQ4LKI~iquV+2($@~29hu?XaqNlXNE}Dw
z*c->bI1a|~MI17X`%?+myEA!!Gbwov#gUr8!<_#wi7DkP`ehDN^Co7QpW_ry#PKy3
zMrx3f{M$HA#c`U`F0(4m6qi<VB7TsGjic^3)EkGN;y4pWt>LIW9B1P=7sqQ!yq-j+
z4eERx_v83Gj-TVW5XZ$heu?8!TKY}mCE}GhE|cWnpd@rP6-rCL7RRsTzY%{YUMJol
z{y~%`f5uUyf}2*#EsD3}_$!V(<agt^=Q*Vdsfz7E91r8}2$94;B*O0|@F<Rd<M=O*
z$Fe6R&>(>)aUg-x36x3TnFO9q;H?DmCy*h5j0vRwkonaFGLZ<+nm}gqG*3w<Q3+%r
zX}Ccxzm@h}0@+x7p7>${*-0eB3nV!b=)FNn^(9Y#ndFrOrc-~-(_c^EjRbNgkjqo@
zB#@i@P2zU?B~@Nl^Cj@Rrxc)4G=aBC#8Z%@5b+&iVPX+E<k4xFH@ZVAMx{8h1o7Pj
zN|H#lR02h46aHQT6%weJKv_o1d7k$ZC{JG7b5=^AS_0K6en6~DtdhWoBvpwY5j(Ke
z$K<t$HHgyVCnPl!_>|-`PxrA&ZC2|L>n2c-q&{)#MzwdNYM4Ny1V$z>DuKocG)bUe
z0{s(cnn1GzI?>sjD1EgdX^}unl2*jl#P8W%Tk>|q_C#sbfuv&skLmee0-Y1+La`^Y
zE3q4~J5gHoNT9$bck+9AN^g=r3H0?8Sr`Kn7??mLfha{^0tShn81S4LNsy?^31ViG
zRm=0(353YQ#Afu!0Aj2TCdP>gVv^_(2g&t<bTLaALS<+I!$?FKp1=rlgE>bhFeZVc
z2^>pcYy#sFSd_rx1jf@dlQ<!Pi3v<1pGK5ClS!r!rxM38;dJsD32b0>7OUc)oxq#~
z<|Z)DQx+sJpZt_}bPE&sgM3K>OB2|Vz}5toC9s^f4GFC9+O8p4NnAx-oxnpc&)Njm
zdCv6-WZmqZJ1H9}ZX#|brk3=!1a>E|hst*1js$j+>>`%(GVD#@U;<xI+?T+963Kjk
zq#<pG5;*MXUnbDUYx@<&BQm#Cj<fnx0%sC9LH>0D-z0D{0l6?wC2*SJw+Wn$rb!nf
ze#a~K#{|AlVBco-1D$6!D+%3ZP9bM0{+YnJ1kNY$a{?Er{7$@>z?B59Ch$uFmzZCg
zNVzPtv_;8-d*RpU{4IfBNkl2X#q~&c*Qwkf{y~%*L=w80z^w#s|NnlHzle8;lIosp
z)EktP`w9F_{=icnlKew_MEo~_|41GarPY%J{+gYZ%J2+d-JVS%LlPOuGbQmnNoHai
zF+CO9pcF|KV%8*{BgsY_b}+N#%ufCSF$eKQqJ&-|c{zz!NM0q@+2S6^8%g9$;+sJ@
zIS9Fu$eqN(Bo-y{W)gXlD3wI%B=RPaFNuOl6iVW)BwB7!1&H~HJ+~-Pq`b|l{3Y^E
z5`~i}!m6O?MZJ*NiX~Azi4sZo&lxGw{9W>rM5&5cCW#xx(#LO6Rg!p*yev_~a!I^T
zUY=ON(<>%XiTndksZ0{uqCQNbY7!qMQ7wr?63HayZBf;eD7RGwlK41@8cBSTM9m~R
zB%!vdPm}m8i54>EBx)tGYKy9$#OF!WPNGf{b(5&aBD$2+Q3z>}M8hPSB+)d9Mzl5N
z5lKk=(n?A*@2H!Tq(q7C+@e|~adwMpmqhC%j%-nFh(g-ZDMUJIpTw_Q)IVEP$0Rz5
zo<!#)`X$jni7rWWO`=B<J(K8`M0c;pRPTb)SFa>`C($Q~zTWsn{J+DKE(WkWUlRT#
z26}@`9iy0q<k_mUB!WrkGC5n7lrV`wG>I0`P9j7io>p{5Sd9{6NyL*#>0)z|h;DU{
zacUBSk{F!CkR--!Rl}1Qk;G8)ty|TwBn10i&OA~M{Bq{8q9-wmd^Ay_W0DY?M8^{+
z5+`_32~8rOoWvB*DQ3~9B{4mTV_VhPt!hRR|7}$>W!Z02mA0u_Nz6`SP7-rvnQe2&
zIbT*0d8)d=)1|sNi6u$oI;xHi!qOy`CDC9I8V<tpBvvGGFNym}tdyBg;z^D4A7ssJ
zQ>&BMoWvILHA$=`5q(_}>&Z8G%0`k+a-z2>F>Fm@TM~Pd*q4O1&0Ub&lNi5E?MPz(
zHYH^z$u8n<;+`Z<GqgX614(?9ME33KU=ruHsV{kog?y33Au7Ue@OTd=@h{1dB#tKW
z!FF{__KhS?CUKmtP7uE)N;I`*zD?pgDpEZ~a@sR|FV`1sf<GqlQxa#A7`a_tN#d$p
z3(|WM=acw3iA!v9LFRwE+U;e&D6_O({X!J|GCe}1qu;ixYf0Rs@@o>mCGor9b|vKx
zlIz49#4I~p{ZDe)d~UJTZQ@_VJH)$0NuFzm`a6jSa*aD^?BJoi`IjxuK|u$PWQt@D
zcaYt|e@Q$}BF#a%gStD^6YfQ$cPQa-@Qj0J9rtR=;2@)eOb%M_a7QjtQ3Nv+MVUoi
z)~9lig-x;&pCe`?if!lC^cNiDaPXRg*B!j*;3Wrt?@-V0RI8Zb=nnO=gI62~k@Bj8
zt0ZqY$hT8f*{R-ikkdgf2PJksJ$Jd8T&m4>syq(ziqnDcw}=HC<R_6y6H$r`qmYAl
z9DL-UnuEd)ia03a;5`RL9Tam=%0X!dJ$JenRB;Ceo0MQL?>Z<+;!s?ko+fKp5>DNz
z$~q|L;C%<>9jw}^4(wDJcDbjlf`f`|(tMYCYnQ6zxEE#>2Ol_)s+7tkWp}9$9aLph
zE?CJaSlz+L4nA{G%RvnXpE#)L;8O>Ec0E1zLA%uWU24uQwPu&vvrE->P)E)PyZd^V
zdbmqv-K`4jR`ncI*{$kx9zJ)_z=2GQbRl!nkVK}XiG!vNHaplNHV4fe4015oK??^h
z9Sn5fbI?i_fP*d$x;kj%psj-r4mvt$v|IUhs}Z|ZI|uEVaKUbOgr|3_%ez%42lu5)
zUBu2LS@x)I4!S$&>!6>5JbPS!4+mxUsGbgb$zkqMz2!(rgiBP4kmh?-e+L?s62;R8
zNVYvnh~GiLf$7M<bAsj|=s=fq=fK&cChk!)_o!8DvS*JvPGUO<IfyxkI|w^CzehdV
zqn_KVZthVL2ZB+ebeeas+k2_KD&e5|UX>&|#O8a|5C=mY%yTf`!7vBI9ZYpF&A|u<
zBOOe3FvY<r2csQKaIi#@>{VkNjC0&wLikwmP#jN1Iud=NgB^R-B!(m^TxR&hUUhM=
z%DPWYcjV_#Fw?;-xsLX!Li<$1eM(lTTq(014A}Q{uI6x_=MuZ^Qwtm{bg)tur-MZf
z7CTt(V1<lipIRcP;Bw{-;@PK`IuKk&l)*^(VxRhMpZa^BTJ2zsgH22*r%6ukS_kXo
zdf%_sQ`|t5>P82z?pIQzxm?{v_p7ZAw#g<l2x<_v%h5Tw=-?LzJ00wDaNNNO2fH2Y
zad61Nmk#zi*ymusg9FT2alfj~YzJi#?pLw>YV3aXg$$db;9&<}Ns|5Q2>tW+t91+=
zb&&Z)=3@>nuqqS&wS#XQ{NUh62PYkT>)<;F-#a+PhS?6NHxH=O<hR)5-2<xj0oC$=
zk_GUSgEJ1!IyfhnzyUS<fO~)o4ydmVsPoc=Y$gZQ&tf>Br2Kb4$?_1xB?p%s{39E$
zgDbM3$+~iI%fU4VzdE??;D#*wgRb*8xzZ1+rU%vUaxqd7@ed9reo*~MGJyJR2Y)%Z
z<KQmEaR=4PgX$nd_vCVO@Y6wclGVRu^DmYz<$;4g4yuQ&3i($yf7#v#A;Ta%cJRdc
z|EPKks40%-d-!4x+l{-sySoK<i3@}f-XugIB!nbD+;(?nM|XFYgt)s42^t{5-Q6L$
z2Dk4{J=x#+f9LeM=XP~<b+y&>^gIGYktd1*3q!XVPdJa27OKVz!@$yYp~}yqC~~4G
z7{%a)YQ#b{VPWWVe4z>!s?QgypBE|}MWHAfMA0yc!ci3ASv`u%Q521$SQMqAC>;%V
zbnz%kL{Tz|zr+HKuU@DQEmS;5m5HKk6y>5QAH}~5!}!T23N2EV7lowpB2^)ZE{jw}
zK}xDbQ8kKMQPhs2S`^izs1ZfYDDGIK9*`=G3=@R#iTv^+RVRwNQPhi~eiR>w{D(#1
zgNCN&EmG?isbh;&qbM5FeiU7!Xc9%!DB4ERE{bMRG>@W16fL9Sny0sy#RBU_7OPg#
z@Y&ruiZ*n9acGdK@nY3JiVjh9ilQ^qV#S&27{#!~;Tq1>8MRnFwK!aL-J-ZDiat^F
zjiP%LJ)-CpMeitHU98?(tP)jJ&nU(+8qZW;EmqSPtHq1emc^=H6#b(Z5XHbKPA(2(
z{?)}wEm7r{sLAyrgE(1HkPM;cOVm)|Y?qOr*;}HxHHz1xc!P~DQTH!Vw?%O~M=y#y
zqj)BYXQQ|)io2s26UD<(+!Mu=C2DvSBckE4jr`td_#7D>#Yaoj$Y>Zw?h_;#6~+Bo
zZZA<kFH!%C;sMboe=v%NgtI!ck3{ik6ceL(I*P}ln7c$hAvjiWoFIjd)1dIxOBAzD
z3ZEeOlwfWtA2-LAs5(o-P(O)Xj^d>#UZ(R=JQu|aQM?#M>!qsq(y$B9)8<n3(o*%+
zQng^I`e&)SxK!~t_X<Zoir2W{m#GTNRHJ2K1h{FLqVZ@Hu_!W8OqDK-U#8+w7*Uuq
zjO>vsBoT!rgkx(*;Vx5-AhXo*qVS_gM)BdY|5idutfiv}M95OAy&1(@QLJ31c8L$u
zqWE3pZ%6S?6z@jyUKF23@mUn_b4g3lC#)`n)qh;3K8k|)u}DZLq#CoINAX1zKd_YN
z|0uo^weLiYC+)AJ_$G>P#b&Nq)}@^3d#O%4KS}AYQT!Ig&r<Q1Y;~6Awn#EP>%bpT
z%wYVFVpbH3MU$noqxdt5d6JzYI5!uUsrj7KWr}Gb*Biq{ZZ?X)NrbaH(;~@|ERl*!
z1()Tjv3e9MxM63hm4YOzgsc{9wOp->Vto|1#BpmJ8=~0A?GQsWhD}jy=9Y}1dkkA-
zksOQScobWs;VZ^AL6YrJ?1*A#6uY9>9mN5W@5z?#i(+q<_gt>_XZg_Oiggc0@lO<o
zM0hxgquJ6UQBau*tV@1^TbofXhT1Vav|OEv;$jq+qBzZky<9P!5ptF>Gb=e4#rZ71
zAmq{2IhUij!tfXim*UkZt}&#?kP{1+S$es;PRU>DMihvF4|kp@^2CrghI}!6vRrLk
zu8uEPB>7{QE~H=#kr>LwP(B6~gN~tum?{(lBS|sA!Z8$yq4)|_RFHBeW{XQHi<m7L
zL#Y@_$G~@%GGc-L@I{8%vLa-bsX`1bSEwp6)LNk`3RV)VEJ%f_F;t78VNq2*hWl2i
z8p0_jr*QI$aOKyDp>7P#VrU+Nze3d$Y%Ewmh6b!6{KFNhQ4B;TsxdVYc~e2EwV*RG
zw2Ps=NLmTDiJ`R+)@7BpVlbC8+aZR|F?5NcV+@_LYPqejw5v4NErwhPk*)NIp=S)Q
z#PDhiy<+Gc!`(656GNXE`o?fe47bM6FNXdx42ofJ44c>F@Ig-;5W_$z%FR+|h-8O}
z&QRf0W4c)+RA6HEwis^D@;hR<Q|#O&n0tz#+2Jvah~a@49u)b#oHD6Gg^?Wj*nj7Z
zQJh@iqq7n=!Rl<~p%})*@N^8%#PDzokHqkJ4C7;XR7$BZR;oNE$XersP)^QPo`~V8
z7$%DHlQB%ls^xZ;P2{%ntSCGm!wW(t2~HNABKVwOuFV%?csbjPmxNHBYlqhtuf@Py
zzNIVF>=o*DS)vTuykd&Q5X6v)fjll~2%0e@VzAh${W&}**fBWVbdsgSi-lK4Busv;
zj$leK&0(JxmQIb~%^2pyFgJ#`Vwe`g=P`T{3-4k0*kW*aTReG3@Lj?81mBP011=}w
zA93@>@M#RYSE!E#xeJ&+i-Czkaw50(moXGxscNrOjF4Z&@O2E|a8u7x-wOT`!*@cy
zkKqR)KMMXF!%sqvuLvtL<z|14;Wv>}GF`~;f`7y?L&!|QS%TD=Erdq?jA333^J7@R
z{k2l@wyn=fb=OMuR}6p0@J|efVptf%BF1M<UkuN#RIja6i(}v$_mUWv#*kjAmc_6t
zhSkEC3$74cDfsP5MV&Rm*T=9{$T~sZZ?K4IgJd_xut&06V%QqPwivd@!uwcWVe$Nv
zJCf&CsvUHGmD(A@E)FTH#Bfjse{T%?gdB)re+>0kssAy}%=tgUY_7uL7>;n|#8EAd
zqcI%gT*Of%j^i<$h~Y*IvsS5-+%K!t`4}$5a4Lq=F`N;}zk+84X`DLegp)9Pk!x?2
zx)Q@xZWH0mUKaB9Dn))R24=6z+GCar@7q-hapZ|3ZyfpJ&~X%sBYzwP;y5BUbK)o%
zM<fmvmurOCink@Xqp^OKVj|~z#PwCG*y`~0p{S@)SUQekaTI4aSE~|&r36dHkxMA2
z17+eU8%Mb~%EwVTjw*3fh@)a0cdribWO%ONQKV8F%~z}5tN&}4PpjPXQuR1$NOOJS
zs2NACINHb2A&%N{)M1r4TExT0cilJ|#?dH_dU4bjN$$;IgE$^t9d0frN*c$}B#x${
zKuI$xWk<-V)>7oH;%FTQE9TZ}6GyvjmA2vu<t%00j&XE~<EA*e$I&^CE^%~?qgxy=
zuU2VVTM@p?|FAk7%=OZ*9&z-HqgNcg<2bNdonNi=n*aJ+aZPx9<$HbKIQqrWKaK%$
z431++9BtNwS1|+Q7$mKaUZW<i3Ev1fu&<N+p@zmWEDpZZ-yBCu3=(gP<Muc{Ht~sx
zJL0&L<8Pq6fx9^DaeNTRhjH8!$M85N$1x?25pmob$75U`v((5q?&Cl;j*R9w%jFeu
z6f5!*fcVgW!Z;ofod*RUjpHF9V+0=-q=iR>+`2M{oNqc~>B&4bE{?~AjE`fY5DK3V
z@}%Gd!KVbd@SYa(j370i6*4J~gNJgMeU5!uqh5{UwK$%aS$iQncQ3~AlJJ)WU&+cD
z?O%_FkDhnpVfcL`j%XaQIO1_6Ifii<am-$$nA|wbI1+JK(s4TuCyq7QS)&Cet{+eI
zeL-efk@9pLSJtRZ9D&q5D7B`>@up;1#Pn7i)8cqrBs|qHQTT2g?}=mYi<}<PCMCSv
z|0s?Has0)ZjpLIzK8@qEIKGbKn>ap?<BK@HjN>bAw6&_<+AyqjTB}B^RWGbn&RX^E
zTJ>!l-^DQ}j=5}Nmg1!%-)+B-<A*qYl(v3~<F`1b$MJI<zlh}5IA*L>E7pcSe7jct
z9>*W-rWDPHV`dz)xJcHi9c$G!NhQ`PrWTTVuT%G|Q-8)WFOK<fj9;f-S*PAwr+8lF
z(e$Tv>hCxf#_>-ahvHZi$Kp6P#j!b#C2=f`V_6)_DO{&`E6ewko$JCI;}zoh8d_VX
zRtl~XTrG(8s_1&PHV)!C288u$J>LSjJA_ln#Exu<V=MO{mk{^kdd06T<JPNfacqxc
zM;trj*cHd#IQGec*)6z7umOGJM-T}qxqN>dZKa4$TUzFO<*Vz}VTRT?&c|_q@js4Z
zjQnw&;2^V=_2H!O4Ybe(bux~#GLl@$r(`{!j^m6ZN@(q0&Xl|wpA#~kZwg$ujJgJj
z8{wB1J}xhFnb85p)eQ;;@)#kx7RPmwklzr}VS~zRAfEwcgh4*PfdU5qIxZrT<s!^6
z!ecg<A4{3YxmKCg1_~J=DQuvKfuaTmZV1(ws55?pV)o??%GwaFw-N?Q8YpF;w1F}P
zcxh8s?0>c)?DB6L)WQwn{dNTd6%9OQV64F(Iz?sLG%$#s8>niar-5Dusu`$mpss;>
z25K1Cv>|-g;3w3YMi`@N3Dy>@BS<07D(q(Nm!tXy8W?D3ppk*b2HG3wV4#VCrUqIW
zXl<aGIL4l~;81K-%>|ilX@H!BLSh>O?F_V)L<xgGku%Q3(vAkY80c!ClY!3Jin&I*
z8MsO8^bn-k?nd}b$u*Lz)7wBF1APtjGs4ej6js=%_%*7(fdK}1K&6ClI(0XOBiwnT
z8f;*Qfsvdk14E7Q<&gt2dZQX<;AR8EHmX|;+#}>x1GfpeoiSesOYbmnr*NKvn7unI
zXLfj&j}UTiR+D4SCCx=U%E0{wMzb%RRs#>RbtC+C%$uU8H>$LZ6+e`WG4QbTm$zq+
z7<kkO@1J>-`SC`@NIuTM;|8{|qJi-So-pu>fnN<gX<&kZcMQC1;3)$W4ZLdLHL>%w
zfpr_zWUh7tyai%<*1)7J=lD!9@SK6?4P4l$m|ijPg26x9jF$|&ESM{&15CL*d~_Ok
zgJW(W%_Xr(MGYhjSO#JSdTdg01BL-pcrH@Nwrm4;Z&J^1Ql0@vIJ2%022$TZQhfew
zlUmX@a!Zebfq{&Hw?xQm$*Ei+^VGUc>P;j3A~thVcvm^iz}p7)Z&LhH@b4y-f3tee
z!21S1Gw`{AvYXWh20jw<q1d5>o-lnZ*-s37Dy5XL=nGk6Um5sXO20JzyF~iNz_$i|
zGVrs3?+koz;0FUga;W9`-e9xpAZEEqdBE$xS>3le{Ma;3gufY>ZeX5)`5g8cYSL!)
zyDV34v--mTafX4J24)GLEjZV}93gyoQGw~tY<7VWe&b#u?!C8J{l#^)MExze(7+-C
zi-og@oN1|nWgIR8E4UI2tT(Wd+ij*=BNkQ}SS^HKc=;7L_Y?411Gyi3IVKwzIt*+!
zuu;^gK(#Gmfqd)#zwQnLI}Ow{QOm?G1G^2tL>?1+4D2;<#=uzv`#4z!P8m3D;J3}{
zfPo{MRq-uq>1K7%z&~_&bI1<~Im}WaM+J`w9v7s}2?Hmye9LCVr$e<Z;bW28?Oy}u
z7<IW#c!2*~oj1bUk|A4ElP&6kfr|z%iRYIMFj2^!5=U-PSH-Jq2Cj?34MF-zg}f&6
znJ8+an2G!*3YaLuZgSk_C>||x%<!9RK@$-(eCJXo3JKAIl!T7};UvsHzD1c^RB;m}
zOq4WH$_#@Wf24%(Q$_jxceW~RqP&R;Cd!!Mm33Lca)QiG+oCF(sAQs=i9fc4Z>*I~
zR5d|TMUW1Y=Vq&mP7OgSv#7R-Iwo#2al47SChD2!Xrhye`X(BfXlkOFiH0T`nP_aH
z30qmM7_1nkmU0XmNBH@PAINrXQO!-XFwxpX8>T;0OEZk>#kZ={TU0CI`L?R6TUA>V
zuWeQBO|&yHV5=IvHT0o_iEo7vJDccYqK}EbCc2vFW}>HwUi5H=TC`Q&#8H)x2;IeI
z55ePG!;iV#Xyv!5-X{3XrNuVY&qRL{Lre^1Lna2A7-V9w30`6k*rp~>bE)DtEVlmI
zw(xynn2DQB+``eAq4-%XwM~7nP0iXCD%@&fgOEE++-c$k6EB*$%f#I#9x^e;#62d4
zn;2!{eiI{1+-qW_iTlJi1_XZHpb-ui4=Ve&g$Jb3EHd$ci3iQ_;|Q0{xoxW2cGYNm
z_=R!myl}D}Ht~pw2_~L0@u-Q%OpG-#&P49VtPb15!Q{*D<0hVvhQ`y4?O{X2C+XN<
z>ap!A*sdm;c-q8sCZ0F(^>+0PyD(2pGV!blHp;{*lTAz!BQv%u{wTtFv2%F4y1HEz
z-l1MH@v@1eiIj;~OuTBsGGTKbO}uU*Y9eOh4K9owYT%CWc9aI&?ND(O25Ze%{Jw9R
zNQnJsc7*3!o@wvip?C&%Ot>aI6F%+iP{|$Y;~n9bT)u+w)6b7PLQ`oIfyuwskM~Su
zOiVTLwuyI4ylG;=j_~q-{SNh(iD@SIHb;G?Tyl0tIK_Ojzi;9L6CaxR$ONBUd3LJm
zJHvh2YNzVGGkmG!Tz_hYKe4vW#C8*(aS56D!o-&*W|)|1;wui?PBnF>`junIiP)*W
z5hVH6#CO8KH}QjsABF!c_>&2y=XWZq{bGWNgxTLjINikW+=gQLGm*21t<0i)r&?@c
ziHX@J=9ri(6<L>Rf0~#_4|l5h?7oS=gwqZsf16k+HgmI!vPCq@wA92Z6RV}^WhRzq
zompXGrEpqc6Kh0)`kPIxHL*^z>jl}D4JJ04*p$_wWP8^0Ehe^R<#b?&iJc~DC&JSv
z=V%urTLPsL*v&_PiM=NFnYhA0XJWsJ11A2ZOS9BL6aSbv%DFIci0gBwI%1;tE_GNI
zPt{$j`L6KuD<i-iyVP;^cb7VC;)IEl+=jc<8@troyVNNT^{#LwoH22h4)0QYBAni(
zp1+ZE&ct~W7Z?OgFqly1l8MVEcojg-{X)#Mn|~xnU6U4>EuO%2;WtbmfjkN1O`u33
z3~u=n$e(~pKqpWjft&;iCJ>RLmb(>G@7;=fnS{ugQz(JL{1pk=aV(;ooLE$<6ceN-
zi)g%rWT|k+ZdE#gDhX5-Ntp!7CQvSc@{+AASV6F&V5R>@K2}UsOQ3opd`YjBKn)?}
zH51{5^T6y)Z$G)zt&>3A1nMPFKY@-3bV{H>0u2*roj{ue8YR#;f#wOcAdjI*0!<TW
zMjg4d=UqL8x!5v+R*8`37X6>Rtq9vC&|WN1p@T?rHL1qbIe{)B?2|y(1iA_DmB392
zbWfm10zIWgYUUdMzt(d}Z?T-q`%2w@qR$T&0}~h|gY%Gu!3hjWpoE2z7KSD;jG74~
z6S$e&jW9i)z%8PDYa;yh#@iCOJ%KwCxHEy$f95=tz+F;$zu?^oIJ?z7!iOg?B7u8_
zk4)e`A%Dn3j1s<gw;C$Hr8ru$oa_Gyc|h<%!6JJUTNxv5JuLW00*?xLOmM6qb;fZ<
zM0tDyPbBc9cuR+$5;8%o_1vQ-Ch&9u6ZWWQ5_ndM{5^`<NeN6&U<wCzevXmA>wo4v
zm%#H0ydaX14~KH57bW{r0xt`p<P{;W3ce=zy5JiLM1{lz<AUpFhepf<5(!x15_|0?
zU<>DOWjcxfemBz-$p?GFEs#neoxp+w{z@Q7VAdWrHGx|E9ZxEY8YOQ^U*1Y!8pr2y
zWa}RFb^`At@NNR{CGceeUnTH<0v{ysNdliHaB)G-hn%bhIUgl(Zbi<{1v%s&(_r3E
z*k(@7X9;|sz!wRexfG!S6Fo^v>5)C^>jZvE;O7Ls5eL3a;5#ATC-9>XD*qs4kW6v$
zz5K5$VXT-d_-g{cB``gK-xC-o3L|Ib{E@&+_AY@L2{6mlY_B5DPGFAI%FWUU$)6%2
zpO?UV;iLA3WA%3e3llh-z`qGBl2JOz?ek~O;spO)3zmw6t7T&X%M#(QuP&FmD-u|l
zz^bgxbqTD_@-;%%a$ksjHnCnL8?rOCi2+2+Zb@Jl1G|)N72L+(0u#boI}+F_e1+I4
z-YBvs0pgJa_9n0|f&G&GN09OZ2^<uDYOi9J=}-cPMUt~GlpGa)Oz^ni3Bl@8dP;hI
zTJVe@2f?fvIme(qFXu)AutIWPvKP1>g!I^_E+uf8YjvMux{|<E;n%W~>q1zOLzl-w
z#Nxkmjc~o?wUEyW=QqEF6_>*c%mNm2L{d<2)V^?bsH~)l7Az!Kn4SnJDp*XgxL|IT
zQWi>EXknqHm?|S!+hQDul(q2OK2^>_c?%URRJ2gZLZbya{OvZ@rIVE{RIyN1s!&qH
zLN(#l1sNaix(79d*Ag6FD0H6kIu`0$czJdXH(EUl)Ap(Q78-~S6&ea@WTCNzCKj4z
z<;^WL%X0pnHHTv5KGjMjVequj+Cm%2wzbg3LgoFcorU%mhR@FFV1e<WlZB2J#?Q|=
zwoef|Tli*v4ha>yTIgosCJWsy+-!vrpa)0h&z$}i23Y86g#oaaU~j=bf_(*9)K8R2
z28siZBqM`_blI=S2U{Qx5gaNwOmNc3u%TNl+$t@O+pn0t-NGFf?zC{1h5N<G-BNlF
zJ((8<3dT>8;gTI8c&~+#LhchB#qRG{)FF-*3pD#bG4g<g2ZekhZPD5oQFxgCaMCS2
zW?`&_w;W7!FwVl`Tq;-8Jr2fOc!Ezf8$)b7X<>qeLN*H9c*?>=3x8UeXW?lJ&sccJ
z!n+opwJ^y-+=5|YvV|!YUbXNVSCob4ExcgiMS4;;vUa~Ba{68pH%ML)^0MHe{feua
zzuo`3g*PljEyOJRyD6ve0oC$AxCoiJ#_m0!GLkhdxE4GM2@4jRo0DT(Sb0FPm0u4i
z#{!X6d<#hn84FV_q@<xumm-0M69-gUkUA}%3D@eI911plP<`1bQu&~o#^rQSy)9Lk
zz3rf4_B{*lTlmSs&lWzg@S%k-EPQF<BMTo}_{_rRT;T^5|H{oLQZfJd$fsGtCgu-`
z%s;5EA5>pi_}an`7Jd}Zzp?PGg#*_jW9H^OnFrrl_+Dx?`bRObBGVoJD6VRfU)VJZ
ze^{7d;Wts6ZsB(ewrFx3xNWJn>>oAL!Ym83EzIG}mI=rI(NdAgbwY#x{-fqvU~@B6
zr1&8<-@*b5$1EJT@Rx<ZEo`)~$-+Vli!3Z>EV8iJ!V(KhEiB{yJ*4^{3hg|4NWFeY
zeSS!FFB7TQC$iGQDhq2ZtfQSns#>|oGZQ1LEv%upDzg8OBCcmc#R_sL3LRD(EL=LI
zm}qLV#ec1Z{Tv4iTP<v}u+zdWMux-cmcweh^mK>di-$w~-4^!HEWg7}jO^veA6EM;
zFp;oyx!^$y|5!L;;i!c}7V;iZ<`MPI5yh|1hb`1TqW;G;GiQz<{Xb#hqy^Z>W8;*C
z(-zKKxM1Oog|l3Z7S4$S97#6HE*w7+t_oV<Us|}xzF4?y;fjS~M^%TT>cOKbbyQvD
zEF4wEkEt6Lu35OwRd+P3!bC#PN%GprXNN@D$Zw;7jU34~I;QSCrXD?}oMT~?f;Ko5
z5kY2|w9TK&2v=_r8%1q2w$a2!F&o8gRJT#XMhP1XHMbpCm2H%?QOZVX8)a;iw^6}H
zSsPy*Q{`+#j;mjfsol~_&Eu*f<&Q_YmyP7HBb98dnw!)0xFWKlDmJRxs3z`lu`yAT
zP1Lke%SLS*+@!g_)v-}e)R?VnW5jW_`{hV|8x2I*(8ki^VW&>)&S}J699Lf+S50j+
zv(eQ?Hyh1Gjh5RBX<?(KjaD{V+h`+o%brke?eIUFw-bfYr6c4tc;vY1V56f5JK5-L
zql+EJhn6Q4!^_YU>X8$n+D$gP+u_vowb8>yPvL!R^s>=g>ar*}p=O9OPn*oLRzDm4
zZ49t6(8eIqJbFUqoD7R<3-&#!hT0frV~vfqHg4u**|6!SjazNpW@9X8MB2LD#vL~9
z%r<?Ojk|4(X46u7kBxh6jI=SFLHMK^VT1i*Vnbh?RQK7?HzM40qio!7V}mr!qU&Cy
z?r=O{<3Sq_NiR;ERAX#BEc{W<`>D{vBa$WQdP?1UN<GH5ME<yq@itzt@uH0<*shJq
zHl}cP82oKawDB}cMU!>AOpcVP8Cm^&xcr{6@vMzWHjYh<a6&niM9LeEz;ia9w=w6G
zT6IcwUmXfxvhlKwn2orNS8Tk>*|G7ujWc4o_G!hLeIx7PfYXZMH)?~(x`qwYh9#wA
z9*;~qtrGTsTfXElu;Nq2Bd!h4#t$}rwD~XdkhJl!jZbW(Y@}_xZQ~sqfsKrfw`@!k
zQ=gnxv^Leo#?$Iek&wK|e{woA=kn>W-FI!gXXAYvA4qAHGoi4@8TFxL$)}%DW6!9M
zIKO9<dq#a~<1-sy+xUj=aW~oc(#BWxVQfLx+IU8B$~byCXH}K6VfK$l@U4ySY<$o4
ze>NNewm#;pV%&cHtoq5u&o=(FG0(;?Hh$%JO1r<=m@Z_djo-7&U<RYdS@nk?9b@8I
zg{x&2J9}2m7My-o&CPng<*b@-V}Xq&+*Ts|%f{a}7TUOeRuy_N((qr!*tkfF7Tb8_
zU-jm{VfUBWSZ-s5jg?du35CU8iM$_;jF}t`-6|WaZ5;krF)_Q&#(IVb2X!25;85Fq
zPeUFDn`~_6%CT|W#ugh}ZS1wN&&D=N9tnfVE(WMYIooaQu(6Z<I;U!$Q$5cqlHJ@j
z=hTbm)E;ikojFs_sr@z%aI@GrYU7}dpU$ai*CL1P@HG36APpX7XU{37qf;U$&nZ4c
z@}5`a&Z`qPPTII&<09j~jniD2Bk?a+CPRco00t1Q@UybcA3o3jt_Y4E|B&W+MyGF7
zy~~kHHZF7AY}~N<%U_WzTz==(RT;W&(;~CZt83id=flz9A2uZJ5uVpUJ_i+?u(SCc
z6mU??L2(B;4hlM<wZcv~j1edNo3z@2a&Y0iVxoQ_2TZiaHCe<#?c$-?qGGE41y#a9
zNe87IloknJnmCn%E~p6?R2c{FT~Os5l$9d$LTGKp1y$Yw@yG>L(Lp5#l^s-ZP~AZd
z2l+3ms!sSv{03cAHR6$K4jKxn>EP9i>Wx>!rfWI)@}gRGF|=0KK|KeZ9dvO}-$4Th
zEm@tl95j+fn>lFggn#9!iG!vh;hBLIuUrg|c{MMo<_=m&XBk(!T~ZwF)}lt84i4Hl
zXzSpSOX|%_s-1(Msc=cP7X^}z4mxqHE{C3QuT{RRx;p6Qps#~|4sOcY>FJ=m@E#6&
zTn-l%^_hA(=<S3Dj4eYVeH=V~S&{U2Fu=jh4sLNU(7_-FLmdor;7com9Wd?<$y)yA
zvRZms(I#UH?cD0%HV3ymxP!BKS>?Z?8eIuX`H<~#McpZ_-{s(L2jSm+oteY%p6khQ
zF*w4(y$(h?xX-~T2hTc~B=Y+mJmBC#;iHKT*jZM5>WX^E!59Z)dAxV<FbB%PqYfSu
zO|F6WuBhLxsB>4s{=QJAVDYQ!aUT91Jni5at~3Wvisn-enq2*FOeV17SJfj|)#R&c
zBG=DVwf1VbiD-dOShhRa!4wBE2XP0_Ie4B6!@+9~UU2ZDgO}Mgaqrw!^%DK5p!W0#
zd&-J@7jAM*Rd^%vI+w=?yx}0q$t@eX{aSd8oOmsCz`CXk2c`p$1MVQ<z!Gb=gAcAL
ze_Vu%aAZ7uDmfhC(h*mXmXi)rqM329=vo+f(~=FOgE!5}*?&z<70y=P<R<D8xzsoE
zwu5&ZjPP);hj-ao2j9B*&c*v|&OtR7)m?n(;3EfH9Bg&)v4c+>{Ow?&gHIiN=HM3x
zzdHEb!50p`cklzZhJ&wY$H8};%>(Ld2YIiDr{Zt8zv2-lZYZ8n$CZoR(<D;qy82PP
z`iW~>2+vyFzqzB`{<`{&d&j|S2Xh?!E((8e#X8`mP-mt{qSw_Y*H!=PYL)}ygzIXq
zgFhY2b1>h*tn2Fhb=B=gsLzx0h#Ship%ys!%i;g<3Lox_=ZnP7N(ZYPEOxNO!BPjy
z94u#`V5E8_^oQZ`+Z$@v4OIa8@T5?(T57FxuwKX-dc~D6C)8x=1_v9tza*~Khu-9%
zXVdVJx7h*Ht<V#pw>j9(z~~~siyaPjIymFttb<(+c01VXU?0QCf*hKq!97lRK$;4@
z-@yR~M;#n<!b{YHPWaPkhaCJP!!o-@goAUK%B;?N$UYG!4(V|YBXm(ea*A8n!AY4N
znx(^>CLSzL)7s>4wg2njoP#S4t~xl+&?K!l$)k5cUvzL;T)HI6xyR9*Jeqc{F^uzJ
z=OV9*JM-up++un3v^*N_f2U=RJpT?7-vMdok3717iyRlFU6gTA&_%>WF&D*MC>PpA
z5f?>Wu(O3+9Ll5lT1{S9By5XWJ`=fdcz7rw_Di}b<%084HgD(*FPezudPT~*|J}z{
za8b@hc{hAdXOwG~SMwdGqKisWy|N$;R&i0)#oc0r7D#Hi{4+lIpNj`v)N)bVMHd%c
zUDR<=*F`fI&0W-!>J3~pbWvZpBNiIDXzYfog3EwQ{foT1i3_&U)CJQ9(P`nLrHj@s
z+PLAov~qFp!{LZkb;B;Sb<xg6M;D#MY<mt@%?K|6I=CpHLj~fcyt=dWi{X^Lqp+Kc
zn_LWXG1x_S_Q*zG7yURCE_%A?<)XJ6hJF44J-)H_5zCeH>D(7sR`2g(fQx~wn@@AA
zj?bsLNK*O2fgR#vsEZMF(&e>3e&Ults`Ju`%l;NtDHFL>rit@)8#^ofj;!QPA$M_v
zh1`>s4|j1?g;UHl(#3r)MzNI}>YIF;r}6t;oX@Ar<k!pd>Cw_0$%8H)a^bjeU5s(@
zu!|R5yy)T)7mvD_=;CP?k1>3W#N#f;yBO<+dvhH9&##%-7iOPuF)6>E;NnR!J4WPB
z31=Xp&ND8ab@7~w=c(ypZhk#QW^gh+<hx0k$cg;AP=U}IZ&Mo-(8CJor7uKYa`Cc@
zsEe4(|F8@ie3h+BMQVOOE|U8S|GJAe#14ft6?b8{FkK|X0oIyWK+_Fc9{6;G2OG<U
zEk&#3j@@(NyLgY`+C|buii7FmO&4hwfg2uNGvP9eOe>%{HD`K8mKO-;@hunA-0+6^
zT^DBy==?eQZ7$;+P5bY-xF;uE2G8Ya28|CmdM-Y7@tHLGk&BOAe8RSJ^p823%Xnpu
zK9v)C__>QOTzu`~8y8=SGNV?Pf|{%AEADF{)PMY`h%qU`O*+10<a-x4T)@K*E`H=f
za`Cf^%`UdM_{GJqE|$1h>f$#S(_PGSG2g}SF8**a%f)OLcNGlBoF5BjaB>UknSzx3
zYDDI6n&@^x?TXHy;_$43nr<&}@t2E5E*7)JXCvDS>c6@03hIT73=z#l3r!=sUqs&*
zjqnw38HdruY8Pu<tZ*?pqF1_D#c7S`R3h?TM1K>}yeeNG(Q93-bFrSA+QqSm<~oVW
znW3!G8@akvXnB*1wo2crG;ynoZH!kgj=0#);O}Cui+!9I7rR{ScCp9B>1QL$mF6*K
zx6&QUhiBTnI?V2Oalpkt42;~`S~H9sbkR-g3XkDFttV;Co5uIGp0D*$I>Wu=;)09g
z3@<LuaMH=OK1utGw}nE-PPyQ*grrp=J)uz8#J}{dkfv~MA$^YHSx9dyq%XR-<l>r(
z>n<)cVi(p|T-;h%w<#PNxytbPOoZv#!a5_89|iMx$m^l5hk9NZ*7AAK9tsK1@1cN)
z91naqWLPWcg&6U|Ly_|EXVcK7HHCFy4@Epw@KDi1Q4hsDl=4v8Lvar!Jn){Xq!&iB
zONDi%BDznJ&>5bT%6Q?yd*>r4@8OXmx~zwC9_%8Ti3+SmtmL7xhZ-JgdZ^-|s)uSG
zs(aX@!_(}SMZ)N}wTR~4yi`Q<WM0cdZ4Y(CPiA=$RJy39&rOSJ9)Rn6XyBorhyETK
zdT8XKy@w8T!$T7ftvs}56E>Q9Xy&0g6&B?5DXP7qx`l^}MRlEGdPY&*(!-{rA!);b
zlDDdM91suG99S&${NZBy&!Gi7dg$b#yN4bgI(z8i;U+J9eDI8671Ld1c)JO1e<wVD
z{w8&Mdgw({9{NgAZx2^RzPy;uz2z8GJi@=)+Pt_P;9;PLJ3QR!@!z;(u!mbb@Z;tX
z4?{f+^Kdh}P+a#fu6ewt{nrmEK6A$v*KZfsw|cnE!=mDvf$Me;`-_KeUoNiil19nz
z@o=~B!j~hA>cfT4zY@;KNDudU80F)BAEP|n?_q<7jUGl*$HSW*{}nqP@bI9A=R7>`
z;UN!WJWTZPw1<Z|(H_QoctQ+5>ftdDW4-XAk6X!|6$boqQdFdbew>S{MCjO)9wvBr
z$_q~de0nav5x(71&X`%fgnmZ!Ik1yGJnLbS7e2nbl+aI>&^$Fwk<vi;3m#td5c3e{
zar%II$-}EcXzFD)5sSRyVR{L@w}gJp!|R;5E8$H(uTS3)52NgLnFw7qJeVF_51v%#
zIW6JAl7?&#$K^7rNJ;I`|B|8qzK5iTjEAWnXpj=7l!vs3fJ;tvi2bie=mSUKj*^-W
zplKf7=C1KD)5AMF{CoJu!?zyZ^YFfhk3D?i;R6pJay#r(A9>)dKF#t%n8?E<Z-YPe
z@EJY#@FmqsMn3m2PTHFMM1*^m+kuUKMLQ)m)7OmiCH4H0`a2Kbd-&DEZ&LJwho3zB
z?BPclSbHF94Fiv7Y=!OqLT93p^(FOmQU0BQf)jd1@r*~CSEM<r&GInY!$K}O4|6=s
z^)QbPdpJ50f6AtyHFkWO+#4+L@Rx_bWjy(eD^n^Q!<wZuU-=h%SmI%|hczCSdRXRR
zxrY^^*|n6uvsCz`qw-45?8Wf#xo0p|d3bGZ&hrf-Yq<^i2=K6;yHbu}3?Pq{(#cYq
zFL#?fY-afKQOU;^4_mq4JzVmz&BJyNhdmteu*1VnMjj7)B}(j~so6QZxfqTp1`57+
zuxX}!9uCSx?`KC!>BFV;0a}n={3EWW`b7?TAXX}^k9s)f;jD*$xpFuZ9!`2VB{pe_
z0k&Id{Xl7bTH+_4ZfA0brF1wZ=R7c-_i#akbcSQd&y+uu*2_xk%O0+Hi1<)Gu6nrU
zA-|6TKCXMX!O`POpC3m1e@g3Xr8Ruykt|<8C|s~2C!Ze<7q?rEkAhOf-NzzI*b0}K
z_EE@32_GeW6!uZXM=>A8eXMC0s!^w?k8^Sl&n76*WkM|FqqL9mJ}UU=P)2hK%J_J?
zj4tb=oDWxYh;z&6-NJdS;tOeIA60zx@X^ypRUg%SH1*NUM|B@HeAM+(&qqxk5BEVW
zAGLjyDjT*{#}Bs~6CWi!GEq|BM*|;?eKhgW&<{_WoyzLm2TddCBacJezqggulgjE;
zS>4=63m<KLwDZx@M=Kw#eYElMsnp_7u<p#VnjZ50gqycLJLRK`kFGurl+_(Mh8);(
zx|1JnqB#@8_Zsd^uIg?+IEG!yg{|M@qdPlQE^@VOgjlYe?&YJmkK29R;iHd_zCLdD
zaf^?BKKlFN^K_6PyEZ`j$jgv{KKQ~;GT6ruA9t10LpjKAM21Pfm?f{6P`7eYuBb<O
z3&a3kS6P$8$0$EU-pMLHM)<hb55F|s?c*LF!+ktoPJdTU^FsS_u?W8?vCHhyNFVo!
zSq>>5z6;A~zBZ1g#K&(wru%rn$Aj#$j|r9aLq5j%i2E=&K|UVwG1<oyACLNY%*S{i
zPxu&1=Y2fxg9n>a<#fUFx@LLZgGqkU;7QuyB4L+B;VB>Al-KR8$OGl|M7C8voa<*f
z4nppFCNfEU<Hu;qpJNw%yyD|kA20ZL(Z@?ZUiN_sx_SlOse<O?m}+-d(ELvNbOrsI
zkJo*?;Unt9tDyPN{JMf(QbET!KF>tTRMhn<>ire;l?vMQk?`@JkN168K5QRTeZ1+z
z;WGA-_7Ttm9j>U8K2{kKU%cWAFPnR+qE7iBl4pFpE#zQD{kM>}d`$DhXz;ENeiUG5
z-xk8f`Hl}_zDl}grEru!@bRIKuY7#%<0Bs*`}o|)7u@f~|9j2+glpBuXVP@nN}7o+
z@*bW)i&guy`jS&wNt>1QH$J}g@q>>aMU$K5`%3ydAAeQS-wW=o6h1G?Ro1;K>k-dI
zIITbX_(kUTSHV{+YYKn&@dp=t5_yxD;bSJf<wo!^%g1cSRUcb@%<(ao1L9+~k3W6P
z^RdFmN^S>fnp<*aWxc>hva<e5@NdC|f{O$f3oa2{D!9zYav_X?Osu=MvOZTie5)!{
zMX%x7@UhXyCLimhl?@D5uSC{!FIUk_91}hf?&h@**FX0{6+N+v&V6Uu=3~2$9X@tS
z#fkDQfVj)YZf;V3BM|wQRrDSoORH#_-OH}Y8K8cR$gwK=ppSpJr+l3CamdGEAICVk
zK8|oj-4nWTl)Ix)q*ztmx~k^M@Px=uirG>VB0RsH5<a}DKFuvzHT3ph?qbfek83{8
z`?%oavX3i_kn?jcQfGEfZl^9u#pk68C7f0^cb%)Ns=mQ3kPKTVXWA%8%lVSXpG3nX
z8YNL6iJT;=B~d+zf=NV@D3V0cBvcYQi9$&fPKKtAihWfrbgV};J*JxGMM|+GiYHMb
ziIPb?TTOGxy<1I_P^VN9Ws>1Dg8vtwbP~j0t7*P&mraHr(aH&yPojblN-7GeltksM
zq>7NLg1nTVsTxVtPNGf{HN|qRWH^s}+u}`l-6ZNIQ9p?WQnbCAX5i(O!X@#F!^`T8
zlW3Aew<K;#qG=M%l4z4e+a#JN(ISafNwiL)C52V==<4BuX<t38#q>sXJ)&PYN9~em
zFZMen@pE<EAsOCUFd(n5t~(}irMf1ee&-~*B+)e)zQxnG>HP~5yC=~ji9Sj6O`@k5
z>6JupA^dL?ti|O~t44Su*Ds0wNeoD0Agj#JIV@kp2iMTG{ZNhRddbL;B!(t&@k3nt
z5W|wVIf=j1SeV8wN!*&mk`(T#p>Ip#c6K&}?kU`n#GOfON@8;ocO`Lm5?&HMJxpRa
z=Z+mAuc1dI@t}}<1xE_rCpb#*e!<a#)c>E52a@=6VnJpflI)ly9!~OSlkjK~Pl@C)
z!6yW%Ha3ZI!XFnLpOwE+Lq92eg5bL~G?ga`e_HSv!JkCVqRC0TB9bYB&j~&+_=4bz
zg4BE|iI=mS#$Ofwn&9h6ypcpSTk0ec6CO{(5Mm}_WlIxDtdZ93tb|!tIE&a&GKo|Y
ze+W+tel8dYW(21u@n#Zlaa&3Dqa@xI!s_n}c}MVF!S@7r*U%pb`B0FWr^StrCHqMd
zp9=X*kY6XM@P+U%1-}yfI*D(R_%?~}lK535-wRUtCm}y1@uLv_G!%tQKPT}^Rwq~Z
zTN2Yn^1EQMnxWc^BxWWtO9p3IR)2O9bCQ_LwIPzfli;Au6Fy&%*#$}bCH&!`5!zXp
z#3IQq7F@z;Aof|bRH~CKPhy3Xu1sQ`5DHf%u{z7w2w9s%?u@LL>;}P&f<rEaYjq3%
z_&?)G3UyN0mc;fXt|xIr6m}$WIEf=k?3C=TBz6nglf*$GtiCsieZuz(9uUkOy?=xs
z66_}a9~FLH@K_SZlQ<!qcK%J`r0`Q&$>}7{2tS*Zw0>1l^PFVasS83b3SJVtEJ&Rz
zNnFkHYm6<@IwTqtNug*8d4%UpAzuplg+~Ngw?GOxSzb`cb5dQUpe0*Ku(04XDJmws
zoM3T5+9@HVq+qEON@wL|QYf3{{KMDfQ>c(aMUhk&tduRSoI(}hRkM<6DfDg?t`Mdg
zDby5sEx}*Jle)s&3f2>>FW5k^p<tsF8mG`Cg{G2iDaa{nmO}FsT1a+}SYwtAwGwPC
z*hcW8l(rMzUXW@XQs^kWlVInpyo->oDRdK3s#fTHj}&^QFeQcOMA%F4f9zcfeT4T-
z;Z7m_1pB8jAccX#Zx$RRI9PCqAk7X<VOW-TuBC4geyiYZg0~CaA-MGBa3t>%ez)K~
zg2M$z2;Q5*NFjIB()Xn>Duw$cJ6e#{i*<=isiohlr5{M)K@mPAI6j3jLLL@;M3DNA
z3VAGrv02GDA&(1ka-R_LWVUod3Qq~2n8MR3Jd?t+DgL+La9)0tk(?y_uUeWyBIVDg
z@PY_GPvONBUK0MU;LCze3a<#E@~c8#6MS9pjTE9O#DvFFFjGjRU`Uqw8(Ky_x-A?x
zD+N0R^4+y`q1s`)Ol}IEX!?RRYU^YQsT9&F1R|Lxm`PzOC%U$NQ?hTRaCdDzR*bw<
zTfdzvtgYV>om|WBrSQJUKM?#-@FT&G1wRq|RPZyw1zE4YNa4#Az7pZrf<LG5jgW5z
zzZ3jk@CU&k1%DFUCU$;F;nx&?6UhR>=_&l4!XGK*t)u6NWQO3(6lSF`TR5G6ziJp}
zpM9m^+!X#4VYxbbUJ5^Ujm(!UC%s-B{g?2+1s4h~5?n0UxlTB|OH){u!txYWq~NCE
zrLi)FRVh50#$#!$PGL<7jnZhG4wuK;6wah@HidO5tWRNs*x4`0(v3nkrLZ}LEh%he
z@K0f93cFI+E=BiAi`3j9*-<6bZXtV9V9_4oPm0byk@$5q<p)H5Q1G7=4hcD&!bu@V
zQaCE)SPI8eIKhDu3+tzcD{4cw#Z#hlI)!6(^pp<a=>3}l(#RwIIwz&)Q@D`A#S|_{
z_L?9yFQ;%t_|>c=Z{2X{uBUM0|B>evQ;{@O8u^4%Cx03Rgy&=>1%)&b3p$MwX_OR6
zA;H3F6iK6~@LqLwF(JhThu77Q)zziaD4j+%k(3cEpGJi=$_g(h$aZhZD5I{fm_`+m
zRLaULr}3>cO`WRg|DNO3)2NX~&8$xSG-{<$JB>ObshdVUAuFZgIl*DWRRa;Sm4<0_
zy_Cb#T9Y)Irg68(o25~vUN}l0)zi(>Xpu(CG+L!`QySexp>-OagixoAkhW>GOQXH;
z4rz4EmNu)W`_<Fab)>UMx(M?7RM#}RWjT%X5I!W0p=tC?qgNWe)991NfHVfC(N{|Q
z3DOkxnfj+Os-B)Cehx~5*}<Yf!cxDU9wy{AK}v4sTY&Ievl9Lw+3mvb5WF*uyVAHg
z|GzUHjrVM)?nz^K8Y4vE-ZcJ~tvgc4eS)I|?@wd2kYDR*o(Ufi{-EGPX^au_u;BK3
z`Vk@2q+?@+zm~@9X^a#8xZwCSo=D@#G$y3+LK;VkD5j@`OcI=!#?wNc5qwsVIv48c
z$-<{(CC{bte3t9_`o%1NDUFwfzmk=_$_4X5gcj)78{$S(utxn*5=$d4S#l!{Q+Ptq
z60`*!!FE!`Pa`SWpVLUCkxt`B$p&d;()e6BtxZkiMbRgJQ-p7&F)fX^(|9M1chmSd
ztNEUg4+P)mq-Se=n8ruhEQOz>@u}#1CdeXMrv4W~z7(Y7t2DkA{*B<bg5L>#pT-Yq
zyj5TSP+u>suSux?6IV#K#b46+HI3iWm@fLW1gZ0T8h;3%Avja8bc3+^Y~gbR=L-HQ
zI8SiC;DR*%N~2!`{YC@*L4&aMMQJSN+T-2+yI7LOQbvY1QT0tMONaly<XV910hWux
z3O)jatV-iR8V5N?BO|NRSd+%=26}B8TN~(4n@85Au|ACrX>3emQyM$d*p<fSG`6I%
zJ&hflseX~IX>3cQctg#^EECE930br|jXgA&#{M++N)=;BWM7u>dOz0)75+)%5SMX)
zrve=2O5-CbK$8GR(>TVM8K7u@<7u2o<4PJ=(>R&NsWi@|aXyXH>|+{d)A*NBsG;uN
zP>*k@-)*QDHPn|H>N<_|&_?<KCnb$bX<SZYN+bP2BfX+gc;Rrak*?BM4{fZUZmh4R
zah>rz0RL^|jdb|mCG!Nx8{nhHdR}9_rLoT6M7L|A^9A^ziT<sLezb|sAAm?Z1p`C^
z6beu{fC{joiN3w5_M2)Q;9L`3w5e{_RL^ay_cYZNn(3y^bg=-%15^!AEkKC?B?FWX
zP$5960Hp(z2~ak`ea-Y6%{1}DW_o2aeWsZ%7obLS-M+d0UvphCK&1ec15^p{Zgah$
zxjx)nmu#V%w9wsJ=(}3z7h34*)DKWMK)nDp1JnvoJ3yTPpSRH4Tj(2twOZ;CEw#~7
zFK(&p2WSwWVSq*fPPEijTj@cq^rNkGvX%a$l|Il)7j3PZ251&wSb&=YG!M`sK#u@D
z1GEg#DnRD|T>`WY&?Z2~0G$G~r9$g)h}s8e7lcc6v}8#-1en%ZFK?|6i=<Q=-MEeJ
z8lYQ%n*wwX(5H=lwT+(EM$c=bH?`3x+i2BRKUPKc3eY>ifB*xj6QFN^egXP(JlpEF
zZS_5E^)qdCqOG3ZR-bCC%e2#j0t^l?B*0L*)K1^tPCwaBr`zdY+UW!BbkX*qd$$C*
zHNa?k7~r-5w+FZ<!0-Tf1h_N6T><XqV7Ax2+Uw`r>o?o$8SVAX_WDYDU9y875#V0V
zSAbCgM$)SedTIwvWTNF?vi$x4>x4fL;6bjO0FMQDD8QHi4+nUJOQ@r6-BI7&F|0ME
zqy9k1`i^>RfN=pH4=_H!sgAmKC*84=ez24Nu#=wGNgwQ_p9t`zjBVl0Vcm%Vo(}MP
zfIk8}6X4kZQv<viU{Zj|0b&8-0j30aF2Jh+UJLMifENP19N-mBeP?}NXZ<2;b=EJ5
zO;>FGAh^D>&gr6G5BP7#!>No0=+H$!-9?*S!giTH@1l(WW&k&U7a$S93Sb9t0xT4r
z8(nm@uDVNCeP37oVpsisSM3K#1_%OV0<7q&k9E~4ZoO{0S~s2M2I=;n<!;^d*lzm$
zZu%`Qn*d)1_$t8L0p1DlAvY;^L4fxHywB|!U}HCZrkfsolQwSBvu@I-ZqlW?>(<@%
z#{oVG@M(b0IHBEjyu1FgyI$E{e;%M<5B)?B{Z<eCMS!k7G}C8oB3}piCcuvYehTny
zfbRl)AK-@o>wD;{J#@LAx<^kvrl(H#)N^|36Fv3M0e%TET?Xe@Zns`~U@twcm;Oy8
zj2j%HR4@HSFFhl`%m6zB><Ta|z-;zCz{&t~0?ZBYSAf3*{25?gfcXIy1X$B6tb4YX
zuGCw%@2!XT)<$prRd2m8z@h+411uxytrv5J^wt&ngvv{#QT{r^Eq(N}ee`>M^l}=P
zqE!J_2iP273oQp&%aFxEqd$FgPG8-+uU^NM+*hv`oYYsp*H_Q$t2YHW)K?eir<?cF
zTLWwhusy&IF8F?7bEEp{N&WOY{q(Ya`cgk#tH0hIU{8RPbSc2z0Q(r*0~`skKfr+i
z|IiwDaew__|FHT&E*l}A_Sb9r>ofhe9-xl~IL64&aKuP5KtDJ@zdS&HF+eXFp!W{Y
zg$C;81NG?uX98RZa52Ey0RJ-N1~|`MJW#(lP|p~sw+-Y^9qHbK^r%64@*sUFz~ul}
z0$k-%8KhSa(gz3W%Y$^u!MfMr(325^^$q#Y!Fw~<mqDHk@@7ymgGw3X%OHOS2Zlu&
z*N*TAS0EGqkWa}BN;Qx0{}30<Ad-Q~;D<dq#WN_8K~CL*I)g`>Mhaz6ID;Y?6qPI`
z#WLW37$;$>*F5rM%Sd#v=1-OLXNPFBlvpk;SVpj{V7Uy+3!zR0AzNEVDrZn7gM}GP
z8WyRVLA4AX$l$>Ys%KCmgZ3G8$e?BhwKCvse47kvXHX}D<{7leV8iu-bu(y~L8A=n
zWx`EeUy!7MkWU8d#<}uw1)F8iM0nE-n5Z**u;y=d)gM=oX9oVO=$09@%HZ3+k=7af
zGAoCKX~SUMHUs{g3{yKHM+fVU8Fb2^M+QAJ=$t`?A-cO5>>|9YAcft8+?1;@rC@_0
zn&Z<egWeh3mBBqjbe|0R(#Q~fYX<!?=%2w5$x<>PgF%$+%o&)KycQ`)K3KB+F^{1c
z49nnV$=)J3Z$N|<nfiYblG`%4J%c+k;fE4tiFXR8ox9n32E)aNkr~`4WQ5?o9D&*q
z`o=U$B%=lI7wkTz;QxfMlxh!UFeZZ!GWalqhckF2gIBmPxJWX1EQ2W-ywxl+HiK~)
zJe9%33?9#5d<I_)(GxOQHBRyK!Gt0Di42HO3fe>TydnDZ5dAc}78HCYgJ=2I7KZ9K
z9*9&L8ZPe+L-nK#CUaE`)l3gK>bXq#6Kl_N1RjpOkim-?{=JlfFJ<tuBy!ebx_PL6
zErZuHNM(?wd$gH>k%5^(RI)Ka%Hu-V(}WNw12+RJTWZVrP|eFqk{S3}&N0cg5M+?a
z;9ZeV&EQQTZwtO9I4xU?23dva9U-~d_k_QnL9R0&W$-b__P&CDW$;M`pJp&4gP9q8
zmci#4{2^=aiwwTx=FQ+oj&KHFXYgHye?2Dh`cO^$hHlG_OAgif`$YJ0>U$~W=4F-&
zKV|T12ES$SGZ()U&6bLxvQ+$?+f5|gyfi}IzfZV{W@YeRG5ndqjiGwBcrr(jMRPMa
zDYG^&gK|S7O!G5XkmXJMg2s@@-!gq|hUrBaEY4s_21_&8*)Os#gFA=mWnyZT@a2Ll
zM6yyin^>JCYcg1y<*c}#-e#~-CTpAECc({uTLd{-TZM40w`Z_}?MilcwscnpxeC<W
zljRo&M)osQP6dA%;6MfkGx#TivBUIfF8C4!4+&@Xa0W-R{HTy)864*Z<d|gTr-ZyS
zOjCcwFnuP2Ys2(e>EOQ^oD*_BgX<hyuIdafW^gHk%NbnB;3^~G&6=FZabO}RUK6B{
zKfX_7%0Cr(rXsIo^9fS3i_|JG6**H;aB65XxB8tT=MRGae@uM`v=l|t_CxUQ-nxjA
z42T(wh+<X{F##%y<QzpLgXAPpat2{?*qxar2LS;E5d<SDARtL{&Pk$#|C#3HJO4R-
z>Qq-(S65e8*UZjN*W_rJq+zm#d>U@m@S%n(8uDwnO~XqXUe@qtr6eyLw`(Y%p`eCB
z8Xnj1goeTzifAaI;SmjYXt-0uy&CS*aF-Sbx}qBH(QvnhqD{a+boBN_9Itj{6;rMI
zYsc05H9Vl<VXCUd0q{XBKBxbX7RNDGf2b0l0R6vcR+Eum^<~G$DE214rhM{A4J9?a
zpkYK+c}hbm4Lu)8jy{+5v<61?(i)!C@Qeno{=2UwI#iXf-%mcL;dw1KBXP5Mk{1Z#
zFDeN{DCZRo6)Gp+;Pf@Ts-cXAvWoJ$f^2$CLpg;{t17Irl)p*oS}FOK2Ez9gd|Sgi
z<kV16LnTFdS3~bA|0`r;8D1ske_umoExshNe4yb5@gogYHMG&tRzo!n)u~T4>G^cB
zhK8CNT4`vlp_YbqRi(a$1{!K>sH5S(s!~@&Jq?7!Yi-IR<kTAS)&FYJSVI$qG}1sr
zk<wH{GYy|;XrX}@>yI@wR|uctvdY3ZK=`Smx4hX@VM`VnidU1p&65nvT)uW1+G`l8
zf!n8phK?HgY3Q$EY?I_?8ah`KznXL+qM-{-!Ijd`OG7uVVDV&k4Lvl}sF<J}-fu8y
z@Q)<oy*2dF@VSP*8n(X|(<@gKGO!C72-#%-eXmK<8J`%a;rnW`rJ4-V@P&rK8ivr4
z8iuMeOvCwVLY$D+km^E&WrU*8>qgNa8phDzDprrD<_aHolX4?aPtY*&Cgn@zTIAO>
z=o<ED*sH<NU}{*b;TsJW-LJY#(=c6wt-;aYDhi2_22X>pswoY@O?p}()Q}}qj!I^h
zjD{&1rYZ_~*hJzCRVC*f4Kr^t&(bjaCL5dPYWPaSJPq>|aiM|>l!UKuvfYrj=w_9@
zzSXcq!&-WmhNT+5qlZ+NH5!)D$Qpi9oWsf_mvi@hBr7!#U!ma#g(Mqivr76Z4L>Rd
z;;F@npEdlV;aBd6>atqH?+W=%L55!v|4{g!9P~h3<+df{xLlpTG_2Q9zj$(oh7H`^
zDsF7oz+L<|eNt7a_9hLRHEbd0v++9>pI4Vj)n%K~_8$d#$(vDKRw|j4wv#ciLUNae
z-AXud9+ln4u&*N0>>6@F!$A#KHC)rMqq-bYLS879Jgnh}hNBvekyFDt4aXV2G@RCO
zM#D))-H&iexd&%)<6etfhB%v=PR3c)#A%+_aDl;@Ta}U-|216FFur+g0rq12By6bY
z>~)3v`a@yUbq&yQn~ugcB$tlddhGf6bmY;IS4UDuwvJnL<gXzt2_0EC@zOPfI3bHD
zBuBv;oNT&Pk7MII?5Kl~`0Y9h=qRY8kdC`_+^wUq8utzzck1X`LyD;C4de!eS{2oC
zkB;#*q?nEy3?#CZ6vF$}C`{G<vw;V6JgDO#9S`fMWZ+!`#Z@bZo};6Ljz@Gns^c*o
zy>#@}@wkpBbTrh_NXL^pO0t)ZcXd3aqm+*FI^NLnw2o(Vl+jUE$G0_PGv}*g?U49o
z)Ms@(#}S7mpQoIQ*(@*Uc=0Cwl0shA@rpuTRgf<!k&WH?9`dCc@|uovI$me5n!+QN
zEJWVa@s^IaX*3;`Yf9Ievcil#@Io?v=bT6d9Y#&5s35EF>3Cm9bsaUxuj2z9RdrOO
z+SO%#P5Dqq6&;&u#xH%%c|7@%4np?2R8ttd3)GUQYDrBUwRF_i(LhISWwE+C_<Cv`
z+Ny7orAn>%y{vkA{9aa@T2g{<Jl2xgwPe-BWMdsobhOjaUPn_M&2)UKqa}stXs+WE
z9W8YHSxb)A5~(dUe$INJw!B+gc-nDD`(!H}t#!1~(N+h~CU>eGzhBBGrXZMHTWXI_
z&Z;dPbad3wh3=uF&#U-MM<*Sfb*!l!dlW56o`bdH*Actv=&qxOj-Iq$G2wAbcTAGV
z)!M>W_aCbxW$Q>EHM`+DM(FrlM_(QN6lH*pfePubAWc0;#}_&V>li|t)RCTb;=?0;
z9a&l@9(SmYgLPz>VrDhFu8h<%iYubS)G=De7#$OJe5qrsj&bx=9TVtpb){O}_#r^Y
zx}w*W6?J8ZnZ2#9Owut~ho(c<<Hrt(dh%2~`Lv!4ttUY}SzRw4(b8e-2z5j{938HX
zw2nZ>;d*jweevkD^~KkbQYuxhFa7FEP+!*8ms}0x@di?_fn>ORI;QEEu46z0u^Px!
z9X~XX8V|?*z;dvG%+N8D8^58<(lML6vY`;a(fV9NnXBU~9rJX|*Kt|Le>xWE_*%zi
z9b0rP)Uim%FFJnJu~^49I#y6Vca4rEj4C>o(~=EkOhZ|!<2xP8l;mZ4{E)fgJ4wPL
z4JCggDc(pLH<Fb)R_XXr$4|6pBZ(Txrbd#hu{_c^*5_yLk;cNleBAUKAO3So>R6}a
zcO8Gw-{>Cny~Z-Au|$f0V`I74Sc)}~l1=0<9qV;$(6N#FG?CAn$owX<zlr2DmA`e=
zZ7L(1%1cdUlMX_TwN=M99mjMW*YS^z?K<}9*so)Uj-5Jo>DbLVHkEBnC2uo%wwZj~
zOolg;J!&CR&1COQ<N$p}#}OSzX`E*AS2H<88#a@}T+s1}mp+z{KbD~%i~F%G_*j1a
zSWf6TspDTA=X9LXaazY29cQV=$8zKG+C9zX_2$yBxfso3J<sd7pyQ&BOI+gSvb(ul
zZ~i~d;-5&9PsIL2uIRYRNNC^@1J`t1X9PA-!~hKBGLUUR4CFSD$3VhB(umEQ*NDUT
zoh{@R16c;X{Ujdin1Ur+NQD;CqJ?yBAvp%}8OU$oHUoS#eX9Yxh5XSXR)9i|w2<2k
z6f{uoQz@VX-u`JUr;x(iDEtlscN!>W;9diF8Mxa(Q3LlF82hO#`c!s)Dn(jK$(B;N
zW!$l2OS#X${RSQ~@UVeNEoE6tdBDJtmhx~bc~FUcwUrb%(5;mit>P{>G<np(V+LL_
z@Unr&4Lo7sX#>v~c+x;g15X(!W#GqFa=4Y;);jL>d~2z!kT$KQw1H<0JZIo}10!0?
z($=z}wVZ7&CEG}|Hu8djer@8(zG(c<rC%}ds)08Ryk($_fwG*wf!7VpYZFU;O({u!
zDpuaW8wP5(m2Pe2h-$soMoPDpw+*~wpn`#l2E4Yiu&r!sE7#gesdn;VI~mX}mh+y0
z_l@{h&vXNo4SZmrwShJUJ~UAG=_G$0*EUeah<_Ted}N@ifocY--=x$uP($JTHF1Nd
zmJ$D~AYRA7(npeY4b(G`ZYT8(G&a!0Km#LwqS8>oMhddJzMb?gk!)(9xq(j%G~?_H
zoM<P!(`K2sBa5(wflm#zRN9i6r4`325w{ZZSz=oQ?P#U;5*TQ2po4)mRTHLxjs`w6
zU>M-Tw@wB+8yIBZ3j<xKxq;6O^yNYu=x(4F1sdpKU<}Zclf5^ag-<Z}1d`7p7PUnm
z12<s)_ObQ)8DMsW0ctJ!E1X19SO(s#4mL2vz&Hcr4Gc9f%)m$kqg0pS^aR>GC*C8o
za%XcC{*%t1tD~s^U6;$+D}J-r+L+{UWO%T>OfWE!9&2DScS?b{Bg>Zt*hEC5dhaH5
z&hay_%b@J|87U?3$5G)b35(mxfTPSp%cKmrbPQGX|364MX;mdcwvaB-ULvJ%M!_ix
zPE~N4f`_Iij~2<EVPK|#Sq5esSYgBudwGL8hjG9Fe=W}Cq}t20_VN{d*uZ=v{!4U$
zfv=7Dug@F*kP=~8WZ=r1$;Ituv4L+GGz=`EFB$mWz;XlM8S%5GWeW0!oHz@S8+1Z8
z{h&r)sdQVVAeH%15r0yUQ~SlhuLgcIu$rPQT(I!Ffj<l!GjZI+pR@qCfQfo0)*4u6
z;0_aan)u7WdIJ{>Tr{x3z(xbR4eT-Sw}DLtwi)=xz-9wmI4L#m+4ivy^Xw!~sy^C5
z-t8dU4eT(mi`z<_w`$cv*tFA#bH7k4mM=QUUIY6KoHlUAz<vV<sFi`^1`ZnW&B+l4
z*p70@z+p9n-9grLh*$rps+R5;<0lN9RMl!KmCd^yrCCQg#hukrx_6Yb+(ZV>apDFB
z4vMef6FN$<elgNaCBZm8BzeieWkz)qV&Xrph=IH&ZZUC{!Jh%&L~axB6-Zt;u;BjW
z){X)bJQg~&qwwIs{8d?bOnfmQSzuUlLGIW~vrHt+I2~fr#18|L4}KOaS@|;w)o?i`
z@|n2ZL;(}Gn#gbBHZ$(U{CNF7lhkLzbBL@mO+i6LFJz*yiGP$3(wWqyh>44z3G=sf
z9fP|}+->3&6R(;mYT_OfkD7SQL@^Whns~s(gC_1XalaD9BcHrkWtJx<jk(-8`H+c+
zO%yj#g1tIP%}&CUp^I)!w(1ls%<>55)k&CN?r{@On0U^_^Cq4&QPRZICY~|zbtmC-
z`&cUzrPL6_H+7QI#IGf<b&|WUC7(6pOmy6vY<j`OizZ$&@v>s(5ilMR;t^3c-P>81
zV2}rp%a|x@;sX;Ont07bITLT2c*n%+Cd#W`OqF)BZ1N2gZ<%P-S;}>mH_6sHR)Ysp
zcr2xYiHasFnRwTX&&du_O<(s(zGwa~$4+Gv?<-L^4tgwU75A#5DAi5WF!7PXtD5|L
zQgUi%sYW@S<v?etX`+^i+9v9l;4vAFSiFlg>>@mtQl)>gSC=>!L46YqOn4@I6Aeu?
zq7CT`CK{V)VxlcQ$3#;T%}ji1q9q41(cHu*CR(ULr+0~efbhUY6_p{7CneW(kyfgy
zwTU(gdA_TB%%awao36cy4kmh-=xL&(iO)=QGSOLae$h3)8|UnJ1h|WdAG=C76J1SA
z>nbcXT6Z%}sB*Du{6nLciQXpqndq<j_A$}d#Fa|P&&@cs6w9OCq%4o&jKSO8WPsw~
z>AZm^2AOfLA?6n7+%48>h>4*lCYhLQVwj2HCdQf=XJUj2ntHT}F(yWu&_~2SVMek0
zgczCBO%`+$W=gz~n21?8#+#U6Vtuzbw*XHTPvkc2E?+9hQ8Y?0VVSVGp~k{6VJel_
z#9thR3dK&v;;2DgI&Jq@H^v{rl!-LmlHtxoU?McJ%*6L5A`=-Cb4<)NF-1w6Zej*k
zpPpZk=PQ%bOb}ASJ4)J2#WTyqY<k7``0B$;67BGniFqa#nOJPbr}*caSje&ZBo}bY
z&;e9m3L$djo%nd;HypHGa*2th<To+8yUbTS{NcHyyL@MYX9@Z9nQ*y@6()W$@hfAC
ziIpaPGV!yCZ6lKxyUQwicn|r}#G5_h$=-mUE1cowHxsK({BFj1H8n+C)I;|4kYrE!
zgI57gpE*K%#vRu&_?y^aVkhlyVuOh-CbpW`XyR`Zo7Jp0DOkB@oLYfh>P$&+f^;@!
z1K7rRWn#M-=e=y-Q-T7q#m4rOB|T-AiQOjlnb^-r0_>stDLG`=-c$ZlqaQGF(8Lky
zY2uIxZqib{gr_DCE6xJFVhwpzxuQatIqigrlXQLyy)2wEaoWTS7GAV)#>80@1uYb^
z@UMw;CURNGZQ;C$3ykyhZ3a>kmy}qhYsf}64+39S)hSB&RTI}tTsHv=Kdaox3rED+
zeyG4=#lVbzc`W3$aI1y<7H+YSWg**wSaDXvgcV;kxSf+$9O0=dVToZ0S}8|09q1+b
zED+w_JD${S7H+ptz=|i%>Vv&wgSh=;s}{CU#KPkio}gq4cUpMB!h;s>vT(PB`z+jV
zp{Rv>EX?XHRQ1E&Qq01=7LpCnt+!0-EpI;(|7XYT%wzsE-LJicmVd}X2@8){c$gCI
zOdjkl#jW^!897<yxQ|-#>DR|NdLLn-Lq2Jtq=ly~JVW9`$)_wZ+f^xrGnn_emVC00
zl(z7!h370hZ(-{7<OhAENgwIfN0?BWl8rv`WM8uIvW40f>R5Qi!mAeErA;i9u~62+
z>lVsec+Eo9`mrg>S>Vv7$__NAkGx^wO$!w)RJ5?Jk1!hpFCuSQc-z7|%GC0?u&^T+
zi#Due;f2qofug)`p|XXKDA~dX7Cy94#fp=4FoP5MnLV}Z=aN#K)htw3O*Jg6R1~IM
zpun1H2r}2Qz~?YoeWk92dKOw)Xl<dsg$87>(A+{p3ymx^w$Ow|?kmh8T)l4`${6k_
zrzzcXQ&ux2jVVVc@DmFyEPQIArG?M?3X`6-ZkL?YH*Q+kH;&|6`$`)NZ7p=-&=%TR
zxYk$NTj;>muaIO84RUr=Yr&((45Xha;Y7Mv=t`CPNe|W9%>vExRzKbdNq4pML~b~C
zZwr06rWWQ=2Mc{IOtkQ&g?<+LTNq|xxP<{q$RG<}C}bch{bKb7TNt7!LoH<b#cFf)
zNoV<`pNvpVV=aucFp{3hTbFCeQ5Hs97-Qj3KS}hD3wx2DD>B}~1a|2kOJ?DH?<5P8
zDcQml`hx}Cf@8t8U|29MSQczG1aE-L^p}qPWlDcpt-4?7FP>^jTL>)p79JfSDZ0Uc
z*sEjsQ1VKVWS0RFa)JXSqVNGiWU7T}s^e@0rz<#1!5J3#{B5R!@d7C!b1ckNt(yl3
zQ#<ndIN!no3+pXxu<*5og%*Ca@RNl_78YArX5oAKn1yduukX})T^%4x===qQ8)_-H
z$-o$ijlezlP;$A26&8LV=Rn~qlfqF}G6;-KuCn5EYJ&y};m;O+v9OxA`fO53SAMnd
z8>cf+)(jM0ZF!IJhZ=5;g|!SF*Rub#aC~5F|8<OD*OR3O#XNs8xD65(-bHNWWG(Dx
z$g;4>!e$G5mD*b@Y_+h%!cGf(0Ju$w-LCfRKis5);<&*JDARW^PXfKM<sjK*VYh`n
zij!3qj=N7uBf^`XgLDZCCmGTe@vwzsRF4z1;shGJ$R6cfRA$}&gJkj``E!t*P|^yi
zd}61$xfr_?<%|_yiOwpV$gN-e&!e~vFIu={;a3~K*|^M2!EIurn~f_Lu39K(<8>R?
zEL>+SwQ-*f*vMt$b{hq3<hGH=M#4tYMqWD(hPT+rvf~sA^wkPCM`0k%wjnldwUJ-3
z<=9yIg`ECE^4a+03+eWSjQt{>{%v-AoS$--(15)P+9+h>P8)aGC~U`bxx<dLEEX9o
zMeI1oDZ6mjHz|>Qw~eAU?y*tK#xsNCyU?bCV}V@<%cQ}=2fy<N%l$SUu<<k*Y&>Y=
zAsdfVnvI8TFr9UA8zpS)8XVs^F$LwN!ST<KM{GQ5<1rhP-jDBXcp)Rg1U^sNc*;g8
zHPezd3J!_KV#iWL;&dYQhDd1}&)Rsw#)~$dv+=wg2UsRrXXqm*Qz-D=l9!YzUbgXy
z9ZzKF5P8)`85)Y2u2m+?vNm3`aZw5XK|$i>ZM<QlzKsSp-n8+SjgM?pRifUu@t%$M
zZM<Wnf}&KUO@>M(8-2>eL%cFn-c@4}scho|8z0)JVl$78Y)B?24voEnHygY-^6p~Z
zP^o64x{bO@6c4a-3N>uhWVxEXeyG$^qH5cyWAi)Iu?1L&kgc8_=e;Q~Od8r~WTUl>
zHZ~fQXrnn-+(uIy&DdR;g@ZDk<ACBx<_zbeGfh(qwaP7Rw4x1%$*1HTCZ&Ig<qsJq
z&an87tF4W8)LiMXXqdFO(ZNPXo1dDEHTlerb7e3+8in&Q%g$la*+v&Nk*mYvX+ASt
zy4&bs!?I!9=xL*ujiEM%+2~DkDY0MJ_*^0VZ1lI$SK;pt|KCgp*ceDBR7BoPGItHf
z9e%TQu%ZvK5e|=s8?LHjZH%)q!p2A&qil>;`ixPKCS@Tf%cugelZ>}9(Z-jm;{*ja
z43|kZ@{JG{-H!8FO}6>{IMEbjnmf`B#b7E(A&w2##$wvphG)aKG1bO28z~!U8yO`w
zpprHsR+;JLK&%5p1n+s~JsRJwu}q;;jriZJr`woqV~*-LgDX2iX4;r#^TTJtLgu+P
zzOu2v#@9CH+3`IUQ={;A?tIn7y(wp*s{S-W7TIX&Cs~+M^;;WDY^+pGOKp5-<9i#+
zRdtySW~aQN4--_bP()ULV060qYn{rhvhkyhpKScB7=E$&6|LBrZyg!y#!2zdqt!Nk
z=ZqXwcJPOdKN+$dBpj@<vDU^Z8>elo<JM+0ppk8?x3R&-W*b}Rjr<8<<8K?A)ZQ;Y
zQd%g<H;&bFh^;oZ+4#psKSgJ#-)>`v9sdYos%<jN94R|(em6&Uj+8w%_S!gX<A{xY
zYLo7_alnq>NMSAlmM`y09wbBI<RLYkf}`SD9JO)G#!31!6HO~Rm+S;%f@<wPO6Uo^
zAd+~-##!3O#&sM2GJZ0`+xXAMc^emKPvv-IyOGTHA_EH(a*mQYqhgP}V&m$~?a4uz
z&*a7@1K=Q+69=fg3g&j=Makn}`=~fG4}J2+4bLr#&UYY_4ze9Q;owOJ;vmPteGcw-
zkk7%b4hlIa>>$5`+Z^2P#EBEHj*4$(vq#4d0SY)wr!NH^5T}I+i%?Vp+~weI2X`n1
zNW9aDvr7>vss^P##T=%NmwRr&YuUW=-m993JfM)`4oWz9P~i_bal&vq&%;ja&+N|f
zh=WHRJm$o4jIsK0@*K#{H85$6mM6!9rKE$W9K7P-RR^UUJni6F2hUMqCytY}PiY79
zUyYI9M$6&R^1Oo=l)^8oL0{zD$HaDi$%!v6EPT+xDzEHi9F%oX-oYCVUUTs97%AuA
zb(S&0gyF1`t-%=SIY!=e@Roy$4k|fVI7Z%fz|RD{qvUTG6W=^naBy*qFq1H^JMStw
zGr_*+pdSCl9xMER_5%kWIvDF<9Q!)>$U#R3pE;=Npc?1yps9oE4r(~4@1TK$nht6?
zs7nbBYCCZnt2$2n3#-Q1*ltX7!K5Noug_RXjg9r>Vl`CbHd1pxpGO)yOw}lR6@N1}
z(dG`?sMh8VK5@`O*^M?YGA{P0Pq~N=lk7<=2j|t}O%B9rTjdG7Dz&3Z<KoeI``6w<
z2Q}OTMd{?Avx5N+20G~CpsRzP4thE0#?mF(-9Zlr3&zQYal)rVq+A>)bl~0&`Z)O9
zL0>L<U&%L~|6<2;VPR^WisPl98lt~~jmOI%2VXcC=3w~Er625Ih!g*`VU~}fijA3h
zsNo1T&5;g9DFrx35|3Anf3u8sFvf}V1&tUlGseq!2NN93b}+}mL<e6wa2<Gb6$g_Y
z7!FJanvzVdbSKW|Mj^zhKOb&b4r~VwL)?YzAI393Osqd|Uq|eUXW=^t9E3`lloKZp
zPt!6T<JYbt2N?&`9n4UhZi<7cY83Y6qs3`XTo}^|OpsC&;*49ot)1z_zr1EC$Xn>S
z4!&~my@TZr=5Z+<EOM}zc6RW!619-Z^J_|dlT3}yAX#ZbymsGkI0s7{EOp}7ZktY!
zk&4dUw{U`d=P<j1EK}VR6J!1r4t{X(3lDZVSjlx%cgR07woH^&+&*LD!aJFtocI^Y
z&#EJl-yE!V@H@jkcg@7uCbQ^fYGv;lm25PT$FXINgS8IUIrz)LdoJF0v7Xy}Wp=g;
zak0U{M#^-sNfA#v*zCkl2+6RGQAiQDDo6?=5}%^{!`SFxhl8E8`9wM3;GlzD4t6`(
z<6y4?@-Td@nJD`dP99SBbBkrg$RR~M=HR%4!wM(o5rrJ(>M%`fFFB#A|A&x)qn}cW
zopx}>!C88vgL7PzQpu!?a}(t}ecQox2NxJ3*u;sS%D&{_vV;HF(ZN+R@Y@Zgk|ip|
zUP^?o?DAD5xUnbaRxp=>MZb(!B#(={E^cv=<;K6H5-#`-@H4jy3#%;TDfgvN&TVV6
z2d#)d0-oa{pNm^v<acqKi<gwN+g<QOx_7#`%S8c~CtIb-mr~H>iB2ixqOi;Jo>Iic
zyf5VrmuYHbuNwVs7e!qRUY`9dM|V-o#p5nEO_F<E+~@LeimaR@_q%w&#X~M0c6sDY
z9&~xoOx~L$*^^@ZN#Qr;i@PY{;t?wE;xVNUn;K1$&WdNOf={@3(nU!Z{L1;3U$UQZ
z@sx{FE}o`gCyBc>J9}~riI;Xk1{Ml=&gFRodEUhfE}oyv_weOKmq!w$=VTc<SzdPW
zii=lWlyUL43x3hQtc%xN?3pa(UA|i`<y^j%Eej_L@z)iFGT(6H&spZt<V~gOTM9m)
z$vX<EpkPG>D=GM{f^TZ^d@H;7z>UAKyvWCgw6lxee!Q|Dxv1)*lZVb8s=27{VxNos
zE^4@_>B4s5xTxi#wu>$<y1J<2qOOY;E<SZp&qaL~O<Xi}(LjyW&_yFwH5shQR81PY
z_(PLy{eS=UHzN;?;NlaSU6(34-;IfNo3G1GUC!$As39#~v~tnjMF$tHU9@r0)<rud
zyn-R!4Vh@j3Pa8qa<3Wp?MPQqt(`dwg}h?QN9O-V<U2Ez+|5OI7b9GZbkV~_PZxb%
z^mEaRMsU%`#pmp6if76%N+#b@pk$Waru26)z{Mc?q02|9GLY+KNgs=k4P&0kmV9r?
zU>8GN40SQg#c-v=dP`0zhN8ASXUCkQT#R<{rHe@}#<&>kVgi?y#<%%XMaEG#TgW`#
z#Y|iF+j6@jFFVrOk<gLJE;JXq3nPw5lH<zbE`2~gcExnzx$+lrz6j)^ze3!Yh#y?6
zq-(iIxtPOE;UeuKa52rrbQhtE$i-BpZN|j`)$wId?)GGg3qlHHsp82Ds-)Ovb0Ivj
zJej4cRFVwKJlWyNSKOg4zICz0#eD8)7mHnd<D#H1U%ObS_+Rs-iywDcL|^h{yf0jx
z8H%#im!&SgbFs|D_lo(PqL)s^JS|ePoXeMzbV^pJRwAny4P0z=@wbbgT>R`}jf=G|
zesS@ui{I&ZL{jpbiybMskc!7$t@`pIQogj5PRpP4_Oy&m$4%>8{Kd#m^KuGl*^`!H
zfxI0^n;>o-9!L<#CKsD2&Bab`a~E4(Y*zyR4CGoM+Zc#Kc_);AToAHXk5I;kvWszp
z``X1`#XLWh4WXP0<&j9<i=<s76C*j`;vj>Jhmsx+xj5`1$3s33M_e3r@gKLXi(@X1
zyEx<Gtcw#aPP#bd;<S>vJd!<;T#2M)Myh9|OC}!uUq&Yv7hGI)ao&ZQky9DDe~SF9
zT3??c9jC}8I=~cJJ4G(j0j9*guDZD9B9Di>9<IB9hg=?VdvT!PrjV)f{8VW%RfbKK
zsZ-^Tsd9^lEDzZp#6v={k+aS;$u&)q>^n`KpB9VlHciG&lV#K7RuB0--0R^!54U-^
z-NPLo?(|T=LqQLPJrwb<eVSxVmqH#&O_!?E<L+Ij%W#D(m@apDbWRlYaF2(>)1~kX
zd2vR}!%|^}6jM4hRh0WZJm8^(hetd-=;0v`4|^!?;j<Ysc!qp;v)A4kl6R&&JyRa_
z@R*0kJv`x|*34MufSHn-DL>7W!!xDGteEl?wes+hhpHZ)_VA2{@*dvsP};+@9$xbB
zvWMrC4lj6kQ6bMOSYej*RucZ4B}WwUiiffuUZVkL%d3<yTgoU-A{A%LC$l9rTgrKO
z-NV}1@zB|G<V_E6d3evm`ySr*@Q#NH9xBpjD#}B1VxF>dq>>V{OH~`rk#{{9b7bKh
zsqEnc4<CA{!gZM|_s^BL=E}!&rT<*<=gPNp<)67y%|mq$O+7U8P{Tt_4-Gstq%}O$
z_E675eGhfia0S1T7r%-}tgD8*I9J+#CBwdo&ku%*-pE5^4^2G$q^jh^Jb7xKRGudv
zduZ;VrH57?K2hCUc=*&qw|O#po_sY=w#}0Z^CU4}T6<{Yp{>WT6MNv}^QH29=`>&3
ztLmot($T~0`O-l_GJK}!&p64P1=7VsR}Z)N$nw$6Lw659cv$J7hlidXTo0ayULJaT
z80BHKhdv%Y_b|}IAP;>#^z+c)!vH$N0;#wlo@o;W$1ad>7RdGm@`Z=N9)@`s?%~=3
z8KQ=M{%aYkkUPGPyR`jUMsOg7k5u$A3LoQPtOuP-<6)eK@g637&^%1=Fi$aj>0zSc
z->a&V6n@LXSY}ZL%P*7`3&r$cd9Xb=9==#8ix<k?g>uUxDZfZsFA{rE%<p?hd061#
zYY%A;frsfHW_SoaL>@98rg->eksMtl1s6-1#Zq%|+>2$ZhiTMJRTnLmnI2|&nCsyy
z4`*)j%=R!x=~nogxL1j9WFAfZjriZld_{jp(HDAH<YB3Y?>sE_@QsIWJuFcS%N4_!
zZ-keC2fvjMzK!K9^YFcg<sMdWy}p$(-^NGOXMZa{ek*&vl}q2seM@AOhaWxc^{|gV
z=HX`#>pg7XTs-`$B(L@Gn}^jN{`9cML)|6vyN55A$owVphhpfz<bN~WxkPd=l^2)F
zIuCz&@k@72m&)*^5-pXD9{y%T^033hCJ&oEZ1J$w1HSuT-%{U6qwi#!hl}4yiDlCB
zJNbtW_MPnbPIh|O<zcsnJ>0O%6#p{my-XG@lYPtNmha{1?`6M-1MKVJl81xbS+uQ(
zvy5yE{vJ+vIO*Xi1J3tyoGbOc98;S2`~H8U?@`DpZq?<|V|h$Gtr!X|mw!E+^Kjn7
z1+M#YS-e~}FPE!|hc8t=vLa@_?BPE~10T74T=8&~^HTSO*OZVNE2P^Bxvuc|c=E?G
zdWFneA$b%}UIh=YkfJ}x8$ZO-5<ZeX-tzIbk8B^}<8dEP_{i~*&qq-o_xQNgM}8lL
zd=&O^n~&Rl6!3YIfc8ql2nClZc=!joZ>1FRafce{ZXb6lr1MJQJF$29sJAj6l!}c|
zNHHJx`gqt!aUb{jxZlSEJ|6TjXQlkIQqHcFLaXGpRq~J$(tDLuUln&Rp{kGgOy?3u
zm`SVTS4BUuN**KSw#3#-c+y8nA20iO#m7@VO8I!s$MZg(_VJ95(mtN$jDC!zz4xOu
z`%#7{e5QgVzMv$(<j1e_zNqlkKgO%irdNHG@ljq8%ldfDM>!v_`#A8UJouB8{VC>Q
zsi%-hKgk<D-t_VPPjd7p$^JQReaA-yAD{SW;iICDN<QlNsO#fhAMg42$VXKl@B66C
zdww5Pd_4BEe4vJF__MsDB#cy$-yT~2vsCj@-A64SwH41^)l|brO;yeLB_5I2nsUF$
zCkn6UqrQ*EKAQMwa6_z*MhY3B7#1nG=@)70qZ#Qwn)}H6t33Ow)c7@)Hb6ll!LRbE
z&nLs^;G?6DRz6z$Xs1N6wT(jBD!AoW$^Bd0xBbo5Cx4UAd~{-*_tD))XGQOFv$gqe
z((gCv>SLzr#g09E^z_lo$6iIryIRVwjs><{Eqzq4&wcdu(a%SJ_EMAqJ_h>GeHcCl
z`S`-eC?BJJ4E8ZZF^o`<+l_LDDtwrN!xfyY<d5|6wL-@D80%xAk1u_U^D*AX1jWX_
z2NlBuzsp;{%O}6fq#NCRXg*TE$4Z`3FwY+`&SKK9e7K6uQqcDCfok=9_&%oin99CB
z(mnzoq2d|vhs;tuk*aRFDJ`R_EB}yb3YnqcbOm$&DG&b{4_f_CndM`)BF^zKPa$&^
z{7OOce6Bd>tLg#;zxJ_EA>0LISnT5)AK&^|;$vD0(^FXL<2&w!6y8W-8J*n61s@lE
zEcda(#||Gmef;2KrH{XTZ1S<n$B#aK_wk31pM3o6<5wTQ(G7;iPk1=QFAPWOUtm6u
zWnSFX+#n~jZ+yS(PakW1tf!Ch^I<;LaR>3`fw~FrPx*^Nl=8$WB+nYz;A11p2l8%-
z1mR{MThv7U@v+s%HadwJXB~f`cal$X3a^QuvQmNV+{<fX3A=pk_Ho9?Ss#1oaz2jx
zIN@WTkNrLl`#7ScwOJzvd>r&a1vvB}F4-D+aA<<?DBVVhI=e=W`B=S1SSb0Vk5hj9
z^z}4_uaQUB#-D_^F@1jK@?RzPyn^Qxth!cut&KZ!=u18>`*<jYhg0~E!Ji>Ig<Dg&
zsyMIvKq~g+Yjjc7g?O$M@}_W03b|9DDe|O1tCCKbl|mu~N#XQbS+-V^DePS<*<8o9
z!gs}qlZ{Uib5ilMM84mZKZV;;xI2ZSDcqhyffNd+P>8*L$l@EYEPVV(SU80{QsCdR
zd@5Tc6+fG$oI6vvOX<ePt>nLFo!pZ`u@oLi;lUK{P2oOjcs~Bn^J7(Te+s46#ZS)3
zSzdjRj*sa1eHj|9cnT#_cs7OSQg|d4oAI#}9#7#>g|qtJI(Z_6Cn+I?r&H**E>^6h
zYJG|WsV}0E65D^RJfl<^x=u=`KuA4Vo=>4n3T0DxA%zzegR@RvO5x>H{FTff*2ya=
zyqdy}b#W#%LUy6F*HS2#!s{vUlfJC7oGcZ?>+9sr6y8eV^A!4~@OBFCq)<PF1}RiX
zp<)U(QmC0iC9X~iAEfZ1QuVzQ-cO-&3Z?)0pH{X0l2Hn;!sO2>R7;_HD*nttRXW4c
zEV?oAI`#Nz>Hj?`&HN>`l=5{IterxgRQ&nQZ~v05N=`jRr}8KMl7=ZXN}**6trW3w
z3QbdJrtl^T-o9QwPN8`UpQ`F73i6c_J_K%|@J55<`0ys#_yM>S+N97qg)a0Qeg!^-
z&r;}=Lc0{&6Im}ERF{qlCqK)qKeCwYg*)9^FU)k^l?#_b&lGy4;ujA2$oI$f(mjP9
zs^i~k6xk53Y;UghhWPn*pH%$jRl^O^FNOXoxG8uk3`k*M3S(0kM_Z-vMGC`Hd?JCt
zDGW))pC`L9`rr+*+C!D_VPrd$O>ZBW!l)ERr!Xc3XM-%;5Wn-Ojm_pi#bn;OLHKs-
z_!K6jFquQAFfoNM>Bju{Zz_HZi*F+r+9<DV6n=P%U+&OTFepb2!S1A(DOfc7MzK@q
zy)l+aoRDu)`5VQ*$r(^jg{Kw#X`}F;yD)_)g-i-lQkbe7h8+)Wj15BM#{XF}Qka>-
zwiNzJVO9#WQ}{iFKWNVs=BBVbg%wKRS1Ej*!a{}5OJRNr3lv`DZ{dFAv++eKEKcEj
zMf`^D&G?{jerUMV-|-7POL!GX;X6gF{<pADhmHyop-&S2pjv-Xa3wvBpMXr^#}s}_
z;b%o;_~pM{hU)ce3co2L|J<DZx2)zY6#dT>)}-*aYNE`w3R$n<ItBkyu%de7af8A)
zDtP{H*`$!o3T{zwtAd3$#oBJ?c240~3dd8}spupgN?}(DyH#}$qntvxzI@)kFNOV#
z28ELc6!E=H^5iBt$k3`@*Jt0uihhLtuL>!AnS}5}3TIRk@skQUrQm4=`H|nV3i&sM
zb19rxI5{uS6?-PxdShyr8T?boHw(AU!W9O8hW9DRnu2R7T<6xyplt?7BUc)iLR=1!
zJB>VP%uVB~H1ei#OB$uqcs7l!G!kh%md4|0JpEE4nZ|8t+@8keC$h5@lr(Y_l21X>
zZ%re=!l@Oj@BWr7kj9;9+?59Lf(jN=uy7hh6mo}xY#r7dcc*c*4T`04ZyH6@xF?O=
ze<r)lP3~9~8|S_>?pF-O(;(%6G}!cz!XHe>UPK}(5363z_N)?VJfd13Rj|V*VIjkS
z?OB_4XFZX|^Lw(MOyj>($*0dGODYLZai(XIr3h8^83oBe;m?sjjp=F3NaKYx?%t3!
zER8GM<i#{zO5^1;UP+^U8XeMjHH|W9e40kfG|Hy&S{jwp_&|v&m&O}uyqU)9X_QZ6
z)FyeUK;rK6S%hz;@pc*&(x^y*1rq5^@{U5-x^k0LqLtEkFOB!pIHi0tYqJ#FETuOK
zTbpi{9-HOEG^%ivG@7UJQ5sd#Xp~0dG^(ZfL=-jBsF}u?&GPE@WM;Fh+bl;nOD(SW
z7D=y8)=tN#kXY&{q;4AZ6jJ{ty@5g+Dp>rlWRo<Srt$sptY%!_E%M?Pd4G$v-Xepy
zh_^*PQIl<v#?CFWYD>I>Sn_R^2e!(aTcuSR^|wl=t<pM;Hfgj?qn(=R)UE%s#<;E0
zF^#2Lr7M>>jjdbdGX*;-qjgryUDDvhDYknWJ!t%GG9ZnfYTVvw^hu+a!f8qJ(3qd6
z(Kn5LH%)qdtMpHUbTSm#CNy%BZ89*8L1}!E#^5xDq%mci3{~S&Lho%dW}B?sChU^`
z9~qv;h%`oW1=ARvMv89#PfQ<^#)LE`s_Iw;$E7h|A@?eVFBR@8I7z|DT%es<n!+hT
zSBRmYsi2jHtq@1Sxp!xi%~QCq;9E*^I*lNWP*J8T7%7<HL=@8DAJG&iyH8V;zyFc5
z|H#ZV4wX#i*)FrvD0o-)Yz5~isGZCrWnLQd(<l(4V2A~2e4WPd03!k{q%)*ZC_v!=
zi_`cfjlF5?OXJ%#AGYI<H2&lwrtw`GKc(?=8q4S~T(vY-ad&T*<y`&kGGM#BwKTaR
zjUVVO*;srotNeC(y?Ao+cKMNeZM&@AE<3l&FKPUm#_BYFSIc^NyA<9bzomIfDEZP3
z8Ehr*cqLJ7hkUX_)}*nPtCq&LG}fi@R~qZn*r0m#+acNxnYBYUrol|qdDS;K{!U{P
z726@3)7YXAF87`tLJE<8(%7EH?lkr=hHw^Jvc`tV=XT1!J7i}XyV4+%*eS(!%G*1o
z;ZEtZQ^xO<{b?NF&I)i#fP*wI_iP%c(>R>Qku*-EagqTxU*aeYyHk$SGe68erXYzM
ze~Y6{rwfS<JLSMmiSEoklg8OJE~IghL3@|{%LsEi>)Bm$E{*eyqPt=}30ci|I^JlP
zIN4n?XqQ}OaHC7_k}C>cRgl$dX<S!0g19x8g1HrBHIG7O?~<$li2(Tm+!`PmAUl8r
z$O&+KmkiySwc$Wk(V~f`cE_W?w_BdCl*k|8wg9&WC=j6KZke!K7VMTyyXE9=>98-W
zV1WI*leg`WhxbU40CxoVFhG?6cLumC!1DoK2yl0Rq5&QbP&~jr0g45<FTni)Ufm=2
zl6jAe+#}Nq#XI_e0CV@qfjv@iuRIuF@I#4*6kNAQh?fZPNPwpUJQLvYz4B;)Cjyk&
zD-}0nJr;oQaRn*o$p9rOd9OSbpp-(0lg>h<{azV&U!rt?PJ6Px*elNlAbd_iGQ1ez
zr2uaRcq_om0bbz{0m=q2_R8$N@@jw|m8gIA%4-4ook*4o@a#VMR}o(iP(HxB`{J?Q
zxQVd(c7S(S4e(xo3IRUbCk0<i+*vYv)IO;gpi%%L>_TWM<oy71_Q~pfQaQi}0f?}W
z;iCXm1GEV6X@F`0st0HiplN^_0cr+l6rgc{S^@sqCv^kV<NEHG+Ch8`t)pP^{Zc<b
zx&6{mRU0V0!TKyxs_c*D_x>om%YJ#?Ob*{K&Bzm=d4Nv>Y%HH`@0XwV%bA18^VxAu
zo+8B)$M;Li0IdRi9-wc4)&bfC=pLX)fV>B!hL&v0B|aeS0u<ViY_DJk1v@JEnSz}Z
z?5rT!x+tV;fNlz@bwEh$8K4*4@1Q(!P}&|4e%q_J(!Wmt_kge*JRto7^basJz_0*I
zUe6xD)eO+=mBhdR?;jMFK??cwpbVz8gTgXIA^Jg?dr*Eq7*BuSK^e)l2(XPd3@|#t
z7&>HtuL6t>FfKqQz?1;v1560u1@Hq*3~>3NG%b?QxI6shmjNaPn5=NZ^&e)FsMC1@
zm;tN+j)FF;C9}&N5<-@H4+(MiCNV{uACfc`IG44hSoX}e2&n2IVF?uyDM*E<2ACFL
zHob*I9FpnufvL%M`LkyP_-K8SWoCd`3MVtGuRWaIqF`cnPC~yoF)zUU0Kd_@0xSsd
zb%0g$ZHhW13j;h@FtH@SB3=RloLLyhu9b)68-;%x;O|31;?e-$1y~l~`v5Bf{19OI
z&2s9Hu;e`)mz9cmgL3y_`6<A_C$iU<NgOMi_&LBY0e<BcI4oTb3t@x9QuAZ{9^j7v
zYXhtc@MjR8?9LpPBm1(}sC6HAI9{w%$o?ycle%xB=7(i{fDH=SNc9x5{jjjG2}fje
zfGr$%fAT_^#8xVNJPrlh1MCQJJpe-N46rM};Q&Vh><+Lez}^7+7;274p(2TLTeB8k
z%G%G(n>)Myp=9+Va)6hB08R2?S>XiBp_};80LKDc4RDS7^oWc*BF6)q2yimMsQ~{4
zc;l#?rWpgA4{#yC*#Q3rn0`dgDY)`TJhlA_lE`wA)2ELyN*|4@WFUO<Xv}s+Nvo;w
zMeig&Jt~8aig{FW@#a57B1AGoo)CFM+!7)y#Mg>*&r!K>G)@;u({<UKb?@b@><|(n
zCq%vw`H#s%$K=Ih@_WTZ^<&cdnA{p-z%j`mqS@)J+rl`Q+^(Q~Olt1VDior}hO8$-
zJQ<>}!i$8sBgCB{?g~*{QOIz2i2D^@RKa_0(u;+-H^hA*RvZ(u?NRW7o2?Iqcu3(7
z-=qxklO=BAkA!&iCjMB6#}%IMcr2%6h^IoBA*>LkLOdO!ZHRUuo(WMpMCA}4gm^Z@
zb0OXi`2ql*5Ai~XvLRjz!5fbkL%b5A+;Pz#PP`O?@MQ%#_m0Qq)evQr1&EVkAD40=
zXwNr7ydL82XR^yH$R^@%D$chQY*r?I*Qi2>iXq+$@qUOI$FnMNjwj@!yoq;1{CQlG
zCxozcCRu4#^6eAS@PvFAqDqK{AsU7FC`8o|)k0Jc(dC5PcRZ`yrmQbd$Q<@MAvHqO
z3{fjY?GW|Vh;_nvOV$lhF9bK>t`l*&u`5|^pm^>$8PB3|h$bPLhxmjBIVp`#O4ASn
zPs*y3(u{11lQ=mKpOkw}NegOqN<IzIGDNEotwVfvO4=wkB9l%DAq)B2hv-02AqIu$
zNVX7tLVO;gQ;5zXx^vYymk{5alIx1UYlt<cq#Kv!i3H33Q&RY}yn9-DQqE}^dRlsg
z=&c4KPWgR9^b66SUK(QBY5DE6>^v<GoRKnT<Z8L>b$=%dewh75h`}Mg3^6IhkPt&d
zj0rI|#IO*<L#E74etkxooRJYBMuq65@R2mgnOHunqeD1ngvdC~_gL1&Gm`%-Ul+lI
z5WJn6sFWeH`iyKpBa=gD^p+4th>e?*L)K?KepX&REAO6_kI%~VH?k+5$g(Lg#P1>g
z2;qkCxHm&A4B>}Jg~)`M5+WTU2oZ*eIN!4}^{lKqE62`C_P_G_zf$#I>31qQl~WEe
zosJZu{l7BmUrGHdKm02*L(B>>FGPuRGFz#a>zvFDF-PIY{*CAL)lE9_7tYCiZh>>M
zKoN;73b8oE$`Gr#G$Fp_4h```h$SJGa@Ees=yS5BF|TyV??NmK@qLH}=VZC+PK5VY
zgp|DCoUD5yu~p$ehWIJOZy{DQK%JLj=jEC6@-r9uy!@izuiTOa6Rg%dFQd*2cVgze
z{7HWZu`k5_5NkuM3$ZQ4KOz1Ku|CA+5L>tk)Zx73T#$P&$i@(VlYU+{(dTbMR=09%
zU*O>sX>~zL7E4I6#P$$7LhPXfF#apetqbza1=$s1Hy!3etUn8pwHIX8gV_Zx%F`F+
zK!}5s9O86{Lm>`_I1=J$hz~DHvx_qLqG%Uo`bAlDQI1jPi*h`~i4d1AigzW8<s_H;
zO4b9Xvd)A!8{*#(=RzF2H+%D$tSR?oFWQxS@sgZp+&-E0(IvSM;vygB+%7jDmH98k
z6%H5SScIz~uF>ry42*C+1R}f>p+baQ5pqYkJ3`S2c_QSEkUzq05pIc)6+t58MEL1M
z@|(94i3sg3$<RxZj6j$j#o?XE)JwAblH`jp`myX=BQVa8PI!BS0uk<va94z&c%op0
zOKY;4T$Vx+3P;#@Ns2_c_p;of@bj01lvggxb43%qFH4UD$z%Dm?}<<>!mAO=kdu-l
zJQ<;6go61K+GV*v!ivlCK!gV)JQU&K2-+KXJVNmZB_cc$;Ze?_J@%JKvRH4#t%Q#}
zl6)+}xywT06Vc7qcal#<C>7z*v8+EPB%hA(OoW%!#7lGB|Agg*2+u}%jy5Tfc;-JL
zd|p|A$cqselV4Ks&Hv)~{EF&Z@3{m`S2n_H5nhi_o(B9+%F(2^Cwf!hIeFso#J;-|
zZ$x<emh24=Cno$SZ$@}4!lM7=xBujAg&g=#Dn_Ujp;3g!5#EjPUWDoqYD9QHLgfe_
zMEH>9->f`Wr0^Aa?244XBF(Qz6{X%s5voSWT#;&2>581Xl=XR$1d*B%YDH)ep<#sD
zl@eR8NbLw0ugGnOv+B?R4rkR>upW(hRq889;_TZJ|LsmzxhhRqA~cQABSOyz%{W$s
zHWAuJXddB{2z}0G&A2KpB77R5`&Ai#Rm$$l>iTC^%Ls%ltrXH)K{mCEa8JI((?t^7
zE@ick&>=#{2%kmh9H9%B=0xmNofMG>t4prNJFdfH*<B-a;}B}Hhp!5o?zkqsBJ_^X
zFG7E6LhD_VSKd!_xF!v*$>*H)HR-GPiSUWRm}~Of<t#>nK@q-)FfGFL2!kUGi7+w3
zm-O}s!y*iiFe1W~YqIH??58$o^*E3<k}mgG)~E<aa}xQV%wEo>Yce{*m<UA1DoA8p
zgz*t3sOqt6a?ACYZBm5ElonwsJ*rGXi{M7^BIpr}2xbIJY3L~UOv!9p5j(aAaYD}h
z@n^Gr?kwfB#8VN{ikUcD>B*sLiWJO5s8c?1>^77;nl<9ztkT!z{p&I#!psQkBK#F$
zR)pCR=0unqq2+a{kuR|W*?q6eSJdRXd>dg&goW2-o`UluEKp;8%__Y#!r}<uC<=Mj
zszQW?nk<d*9k*(PA0jM^uq~1Jr8$0Vj_<h;?<JNi3ag~km@6av7U9BmSry?&daS~K
ziSVmJepZldWFUT{x;nz|5&lq3e@0mI|8bIGty-fSUDij~5Mg_S9gI0NJ8~)@XIq57
z87`1RRX0W0tY)!A!L16C&enhE<cG3YSl!8`d?tG)a`s24hn!ss?vAi00)Oi6RdAnz
ztny>I%aC(`b4SiWu7yH~AC7S3CcYjy$0M9z*vX)D1}7t&ijXgZTQfKv;Y@@?2FVOQ
zE1x(Up=_DN`3V22d7V@6B$F}ICfvV_u}bGWnb<=vEBwC*R~Y{zTw}D)Aa@4W8S``H
zuz=NE@x)nfAZ%h`HLsFzi-K7S-k_filGpCae)G;mb_Q*lCM1I#g%Dr;67pwoTLuqh
z@Nfonq1!XyPPr$80vQy{pil;dGkEiS*4+vgQE*RoOt~Y2J5`nVU1~TYMHQuNu6TA;
za^)1u;9k{qUk0q+uON{JGI&tYiBt0yxpInU@Yt2CM>FV^E2o5lk0>}bSI)9rIge%V
zcm_{oK>SGsOJ;CDH9eI<sSKW0M7CbM$?$9j&t>pR2CruDd<HLM@KOdZXYgVMzvj&@
znLCHm<k0zY#|jWXQ9QBu?_`+_%2LS;K4Qt8GbndFk=HUPm%-~9l+WOe4BpGcG2~4J
ziBwR?TN%8qkaup<=c~RIGpM8}?<)9*BC^-}8B|u34;1`RLDG-p&gow%!RYi{o}8)~
zRLh_`*Cm6RilJo&wKAxkL6Z!cW>6=Cx*0UcprLB5mqC4n+}J_?x8oXR;yu+^HQm@>
zY-&dPXYh$4HqXTSmpnJNCt-^WKE26Lt=QB`Ra+}a3VGUPFm^*$mkhdQ&_06>8FZw>
zXV58w&cxSe@!yv6e`Zz8lf!4WP4ndJ$de#{w+y<|pZRCj6!gfTX9hbm*vYldpmzp?
zGWbF{M&CR+eKN4~<SfsV^LYk+Ga$m!Pa*v?7;uv^P$8T1<P6SWNCtiem)0eRW-u%R
zFM}@&B!*`&B7=#<Gnl?1Yh(taGZ>@rQ3`I&0?XJ8#$~W+Ll$vDa*oenf}%XPF^iN*
z8BET=qE?EiWuRwZWbn>g2{P|dz06E3iiH$**_;I@12==cib8sxM4VFodJa+<r0Fwm
zGRR<V245*W%pl4jlfgkhIVFQx-0T~(re-jWdS);qgPHW<ygA46<VfC}2lB?Q`&r(c
ziFtEovt%%bisj8YlsAV7?&f7MpIe}4Voe4MGWeQS%3wtX3zd1l&0t9ei!xZOs^9!S
zroIAvit2m+1!3cJfDhf>-QC^YUD6GLh#;YYfCwU?2!eooW_D&aW@qCgDUB#dmx6#2
z(hY*b|IAtE_y0c6ectE2?>*<-zB@ZRyZb-bexrwj^F6@rDcHf=Dh0bzkUKrqN>6;#
z@1JzU*Mw6x+P94Mq~Kr*4y9mk3ik0rO>ehne+mwy;7C>P<n+Yvnir<0A5(BxM(jum
zev*oQPT^-%JZ!`EoH$_r4W6Ui&h&I7JsnHIajv?a`$UR;zx`YaPNv`#uk($b(<wN^
zp;B-qy*&u8)6<wuo@+I{nO$_AM?M9=rr<X=j(aYqAZe3_KMLWY;BVfQbx~s%U1rA=
zyh_18DY%+~dJkNGrQjCN4xbNC`CXFh&lFs9_;n#S1aI;#PR1QC4jgmcP61!uKj3a2
zbKOb7T_N{)Ke~w1eIcK?h;1H<<)ail7V;zoPgC%Wr^!Vxc$M;|6MjI9S!5SZFU9z(
zi~i+p;-Z{xs^+HGGHyIpOKN%3C`hZ|Ed}Wm46o~ccE(kstfxt9H-Es_!c8;X#GjD5
z6?hcX@u98{UIj@CGzGc>QjkGG4Fxq7WK@tzK~4p^6eKIitRSm`Yzn?|Qx*l6-1J>7
zFNZqrrsr<j(A=F}!D7QxqJcYy0>;c9%B>)eg1idy@m@aV;un;bb-dgK_Nw8bHXh2a
zpn!sc3jEhyg%lKLM+Jo?TSP%o1;rHmZXqW&;FKUG6_iy_PQe5Zl@cs1SVoY|$}6a#
zV5x_yD5$8Ql7h;TWo4^}7%zIr>!o^Ls;Z!x6jfKi*`Sw(dTG9wYAL9#V55Rf3iz{|
zItrR9Xr`cLZFgO^R8U`d0|ocI)R6gg*U*cuMhY4$I8oEhoRuaDm^`fMZmyt(f@uog
zWlIIE6b$33QP5gJ8wCRu3{ucmK|2Lq6?Ef~Ponl*T@vvRvUX6=k-LyYofLFY?ALMT
zokdCP4$e+bqE$(>HHo?_=%Jvef?i_TS3y4oy%qFP@NXk`u1hXX?HjrKOKI{13=lmL
zhYbcR7{YDlQeFUuJU=JV%_Mq@=t_QfL86*O?TAJw7^z^Kg7FGQDHyF_jDoQeZ~)OF
zA|KIVqCd#q>~DxBD43{Vl7h*+5;9Pg47T1O15M!p$v_7)&|Oj9kqA=-{TXOFFBk<M
zD44BahJyDM%v3OoA9%<})iP3tjMOh9P0C2~GSa$?#2-4(Q7~7*=L(i9n8#~I!6yn9
zD)>mj#|q{vSfIenNQX1h)r>@$s6-}enu+q1@ea>Ki+J5C_*B6Xt|AjH%|wSX*^TUz
z&wVcw<xQr~c!fyA+9cC5p0Z@S^a}+mcrPeeqhO_iRSH%s_)<atWSX8#Ym)8Z3Mbny
zZESopnZ8!AR>1}Z-zq4S*^aP|*Is7onwh@gdCyGixsQ_lE;H@UOy@Jxqs+8fv5ygc
zq2!m;?-XoNkfK0Q_^Uwn#n{{o;51W`&rvvQ@DAeksQ6MvKtYf<wTg@?LOcix&M7#r
zAgsVra74jT1rY^N1zQztQ*fcEH^xiog6n$)aqikR52sWi1=_h?S*Su5+Rn3c-P7il
zhp&rvDA=iBmx3P@98_>f!EOb66!4=O`*@vaAts#m@`in8ll|NyDOHngn-|Hrk&GV|
z{47iHu!7CW_(?{azZ=4z;Ij?iwEsoHF$E_ToZ|J6g)ZLk99J-%+$VUuDQHm1y*vx?
zrQm6v{cP?nS%~l0pHXm@cbV5tr|-KiDEL*uEd{p~{HEZdf}0BdQt)FI;uGT%KS+~>
zepk@^oa?fJD?+XcUQ_Ug5H9*tL6)q<gwu5qZwT^d{f)BH_^jlA;cAlJeMiAvK7>`g
zrDA?ox~Jfkf`1g;SMWf=Lj{j`#O``tDtN5miGpVeo-24Nz2=3{dN?>SVVf5U{ubke
z&I%W`lG1;<%?i?}wk6*Ic*Cb(Q#TV%5Rw0*XJb}-rKM9*fe${_el{k(3YQAE3Xck}
ziX;`OS?Nkv%AL-eKiOWZovwSfcl4&sM)|T)i){8)86W1ER3xj&tRjnw+A8X($f_cn
zin1!osTh)tva2YqqKt|hDsrmGr6M;g*{N}M%A+E$isC9Rb4(TaRTNTDSj9WpsDO%s
zLYQxp#H5IdqAH3BvdCU6GCmhlLPbdxrBtvPr{wI!iA#HDr!m=Ses<EbQ+e*Mii#>K
zso0;L&S$5)*(rApDxZTYtEi%)s*1)rXjBfGo`b4!!*WpbJ)Y_+YN)8GVto$cv`bPg
z6-+o=S4BM)!&D4cQC~#^6<t(xRnbsIBNeSwwC0#9ny6@@q9u=TPHHLx-XkY9&PmO<
zG$%C|JomL{N={mwld81v?#jtmL1?R@lZwtNPUoa{93dBt%SG)~bWrh6PJ0G9bySfr
zm(AzqB0fmB<f5IqsGExJDu3#SK`MHv=&7QYiry;jiKQnumC8*`a#J4_i*r+d6@A$(
zH}w;ok(-!vzyY#azROL6c`8*5<*bT>xoQ1A&xPDnKdn2K<bIQzD&(O?d1!=+kt$}W
zcwfaR6{A&5RWVJ)7!_kxOySv7F;2yJ6}R%xt31>_4~@w~6I4u8F-gUoJTzIw@)qtd
z^U&5jbTSX|4WHz^lq;XRO<w!J9G92gRWV(~dmJY(&C5$0^U~qGbTcmvOyi!ZVwQ?e
zR4i2Sfr{BGK2-4$Z?t?=IUmiDj?Cq0%184AnQ#X`R<R@>UCT!~^V7HaXub-@1%h0<
zh}Ug?>Xx5A<Jrtli&cCoah3@36${%eRk2LP=iG7?tGLGe^o8IG6)VMz6;5o)X-$5*
zdDWxmr>|73QSns8GZn91x{@k*PUWYsRjgI9PQ^F8(p2nLu}8%QZVaE#Dohm{RcunB
zs8CgGR`H#REh<uYM$WtL<R||{`$J5A??45J-yQS+srgiBDs&YFZ@OEqd<Cdd0pc6!
z8(O;kyxNbs_#$~-V{d>fZR`ySawEekEEU^SY*!Ic5mgaW5$Dx@*VCc^^)Ensp18&r
zpj6&08QdER(3}GFy^5_ogTgt&4i!7uUd0b8o|j7Ma^ICV+57!X7r#J<3ebfD^soT!
zRk2USuPT1yov7k~ijyi%abHv%Qt_jT!zxxc@n$SYB@0r^f;6Zg{iNb3&ul^ZS;Y|^
z_EYwda$@p}ieoB{^8gm46Ef_qGv~zQw2Ct-&Z;;k`!2$v>e>g|!$R((1?g%*I<Mm2
zf^<QU^@}Plsko!!u8QCJ5K!@_ifg>f3Q?^>bVcG{<@4>C>kmOD?F-R$Ugw4ALLs}x
z8!B$9_=}giirXrDh3K%?J-ZO`?P4bTBzsTAeH9N>JXG;mymA+&#)XMLvF%*M`-t~!
zVVYc+9;<kwf(a*%{9MHg6?uHf>%-qFUh;9x7wSH|;sb#Xnbz*Sb-n+pc&!3H{^~AD
z7WbmKm+_5?3FGa=LDKr{TZ=BA&EFDCCz#%6-;LxVPHs^+TX3}}$p^k%`LZzeDDNR3
z7&G{gQAj31R+4?lEIf-~R!7g~Lw1Mf5Ry|cmtbxm_&-zFJ)aNxeJJ2VK_6m;smMJK
zzYBQ!*wr_!w~!CrGP|q$P}qkeJ{0w#ZL+tV59NI*=0kDGmhhppkdlI>1ljE1QCAt^
zWgX>kVPd_4WGf3+^r4cF&SUM!oT^B+s$exAI0%bZ3sVgr7;E}a%ZF!$skUU3iV%zS
ze5mikc^@wL(7=a=K78)OavvJ`(AbA*KD^6aD?)t1)`TbSxTmQP&3tI?Lkl1J`Ox2o
zmOixdp`#C-d}!?hhIlx&71G9sd_8TYon+e!b`UHedS~HXd7ymgB0OQwF5P*Yedy^#
z=;cFi9%u35(mrC`R}@|hth3_)9|rm`Mv4Xr4)I~A4}*oX7n{B9@R2?Y^I^EGmJuQ*
zg0LB<QKF9)<j7-v80W)yA13%PMT}XT=)+{;lN_^zZ=#X!_%KyU6V03M!<9VVb6LE6
zU+6s_X87>F4~O%3XZtWm$V?w*3Hd;fi<*tYTp#B7u+WD^K71(pe5dpyA3k<CTP|?;
zCp<yp?8u8n`P7FcLYj*BnGegPC2X+NhlH50|H6kAK5X=1lMgF>_B-wkK77l&;G$=h
z537B+ciQ!(4`2DPM))^^Ukk1kTqjtg2(cxn^*mz2`Jqj|uCBAe!<Sy0efZ9YGd`U4
zfp0}_@!@h2(tZ4c^PUtzMNk#=`LL=8X@YEE_~7>;;6qRb{FDzNA50(i`moQ3un(3G
z-}|uDhlmf4icnlIDi{;wxnP}BD(_ZNw)wE#hn+s`@?nRBP3UaH#y^P7ZXfnIrK~3m
z*m%DW2Yfi{!!Nwo#PYBYKlyOThaV*r+a&Cn{OrRK$tINltL2!8Cj^g6Eo{K)q$upj
zmZzQ8@?G3>d}coI@RQ-(Jbowjs}H~NPSnv~=ie^CB_0qBVGVq(`#W!E4UIHh<{9TL
z@53KH<j{~)!=FA}^Wh&K{`KLy4>x>x?86fuZt}46B>HgQ2X|4bSd>~6rCWT~Nq6q}
zaF<(n(=)!R_sli>hS<oWG%u(3fe&}S@XRer55??}AZMTQX~Tzx4=;UKSCn=YrOQR>
zxew2a(hJ_0b=*v@*7Cmcp?WcUw3CZb(PH%4hc|p~Ye=sF8q#P;tKlsTy^GPfVzgW=
zgT?4@F}hfcY9xDI8r&K(YsjL(!+kH~B@G!gcs2WFB8lDQMUye3D9M7E1RqGWG{vc4
zamuQpVR8DYIGrZ<pyHHGLw2#Tira0=r6IS5k{U{B$fF^zhQb<(@HlJ8uc3g3f|~tV
z|EuDZvjp*@!i6+E`olA{1T88-rCBLKMKu)DP+UU^4Ttl(PnVz(1>G-7P~nm^vLr1m
zNoz_{X$@sG)X-2<Ls<>wG?dp+K|_>F3wke>qzsQ;k4sWT4c$snRqkUcs-&T^hAP~c
zQpDLhg4HyPE=AQfaGFz!nAg%!TSI*f4K({hqLroWH}Z8f@H?Zr8tMtrOA%-9mZE%h
zyq?ljsx&p$&_u%`4U082)zC~sUk&{<G}q8VLwgM!G_=&vN<(W6Z8Qwe>8)Ry`jn=J
z*F0@C%qmU%x#8`0-gYvQOH11$*-=9$4c#^L(9l`K#?o}OH1XrF-<PH?V%Ajy^KQbK
z@Uw_Ld7R5o={24^rKy(&#@>Q`c*e^RXZvdypkcCxDH;Z97^GnokAQ|s#oZOk&|nQi
zB-&67eag@<;cp8zDPuQjxP}oLMrxQ*hL)Ehr3~#YLt`|YD?`1?(wMR|R>L?A_sh_D
z4U>3M%F+Z46L}?+CFYzs2$wQ>N5fPN?`xQ;VVZ__HSD_YDO<%oohLM_m*1hh#}j(a
z)9ajv`3$ZxH!UhlUzep>JX0FxYWRQ~)5yKJh<7#z`ODtsk+L*T!-2B&iG~j~aF)|Y
zLOvFpFStN(#8@v|E);wA<(n#>YFMV>a}7&0e5QdvC0xqWddxLTzM#rvxrQ$^Y|!wn
zh7}rCYFMM;YYnS3tk&?QhOhVxdCS``ulrJ2;z!w^lqKHp9Gow))@oR%;TsL>HMq)A
z>2k#PvH502?Q-@V^`BRII+ml28a8QAG^iRjYxqvX77Zyf{v*p#yBzMd<!D<udaHz&
zAIan0=hL8R2x<svI9t+tvK;Yf=o$<Ses(|W3H%RUFGna(1<Kn~aJ#(Q;z8gM)=^PM
zR6|U|B@Mr8h-*mIa9YC|UR@ftYWP9JZl0i!XB*q>^X%k<;;3i4@EwADqlT4Tyu5RH
zne5T9mv^p)pET^#u%Aa*!$IDC<!M}bnqQvkzH%MnaVt-!TDtF)r&xLVQ3F4A$mD0<
zDU)zi!!NvIE6@?H{hVjqIS=2XIHuvG48?H`C-@ktV0VO5wF-1f^fscL<%L&)-c+Ex
z6=_igI;Y{hh6@^g<yoshhbz$a3by_m@74-*Q5+)`=(2_@8XjwSqT#BBKQuhh@Q}}c
zJ_;(*>55dnqxYJI>%8y|d2VR9E99oeKW<|yw=~@5jV8QjMdHNbJi&V+-WOCwxm}SS
z@qtr`($w*0tYr7%sfK47a_Pve<GF?xd@Sq8sN-)9FZp2Ckyghm4gYBPs1mKNMC~fk
zzuY6Y`;CUze0sP&ocIrbSb+}rNt?W-BT$Kwbd0D>>2##m;o>449vxmCHHUcjRiYb}
zh%u=$Rj6!Z=gP#7OOcLwLNe({){#|5HXUm!Q)V3xntIPvrg&w_qT3&YHOlHuTZOXg
z7+8h)eSNMfltV{O-F`KxP{r<79vyjgl+saJM?M|-brjZ7L`MM~GpdkTg|<v{e^G@B
z>L?_MIeYD`Li~M=(^aUbj$%5BbDNubOXw&mg!zjq#K@Lqbd=RmPDgniC8|=bs?@eB
zy;GIeSEbad^r|Y=Eaa`Eqq2?;Iy&m8qNA#g);ikgsHP)FHL9nhK1ZlV)dg$lNGj#7
zsiT&T+B)h;Uj|g8x;mOwv)jgeS~Xfo?gl!V==i!CHPq2aM`N*M11{pkq$#`T;3r9%
z3$_s4UyWJ{VZD`(->MOlwmg`Xz4@yXU#sxV-gY|L>-Oi!oV?Ykla9_hy6EW2vsRt>
zmEu+dcf0CT?6GHIb?T<0yN(_@Sm~+byT4qK>cqU4@ZN%b1p5j;s7`D%fTxUCl#YLN
z4AL=J#~~d*>KLM9D0f81Fb<o+&0h)O#{>9YYmwG&e#&JyuO%HLb&S$6Q^zbFqjikY
zF-6BaI>zc4r(=@NKip*BH+ZWCjn`4I1~sff6Lc_66y%ZNH@~0Ppv^Vx@tmq-8ZQPN
z@9TJ1#&CNL`?ZyC98K5p9><rPNE_<8&)1;GHRz-Do;)?_10Az<e5+%ljyXE!>iAU0
z5<bdm(mWlX=vb)ZLmeOK_*e)3Y1e!m3v|2{u#aN?)Q|D)nw0pruSGo6f4lg%cI{6C
zdB?T#@RyiA)3H>?S{>_jEYtD1j#WBV>sYSi3mq$Ttklt}g}nmbt4YUqc-GgXXiYj?
z)9%riI=<rl!fQjvB@rLhq};WrlH1Flv&6|;p%#6kg9#h+FCeYgv4Iz7Eqc?!JGvIl
ztVNr2Y}R4vh)CPM)8W&h>DZzpMTa83Dq|b>iduG!Ot|s74uiM6j-Yhe&+GGjH=A)c
znS^whI>J0G8QqDFGvVI>=EUw%9Wfn0=-AC+b)@RprenKA_?|b*CD&Hn{=aGdXI@VH
zGsru1?9{<Acj@3PhvH_~ZK!2`zPv}rUY^a#*w2e(vfa~tI;MYy-Bs-${XU@MATRh@
z^t={jtW9le(_tMy@wuntg^r(jF*Nf|sZD?CIHKdIj$d>f)4`89{l?q;57%)W=lB}F
zHl5IMQpYI~SwAD>G|%8KF3z6ij<@nK;pUy^wegwzf*_M$g>Zu}@&xJlUB_h|SH+!=
zP<G*TMY1y{;tyWxC2W!TH67P=+|Y4T$6fBYj=yx=(s5hI9d6Y<*XG*9-@Myio6gs!
ze`-_SI#j6+-REOd$3q>DcwrQCcdJ7iD!bpUL*Le+b@I2ck99oJ@sww05(YK$KI3zv
zk(UYM-#YjUeatsx^uE-Qy{Vhi_B!;hj@LRy7#L~bjSd*7X`q&YGzQWda2xO#c*{UK
z1L+O84EsP{UekTF4&|?FFPOS@i68#&R+sp(rz8XA4OHOgpA2L$P{=@G11HjW$JC{a
z1~M5)HjvpsZUcD?WHFG{u=h(2!EA!r1-oUjzpchaoN^k-CE|j%?#@||S9k%(ET4h=
z4rk+n!kKV{W#4#;7${*tZ{}uR)UcIeg2fHYuS=XQX`qyW($cANf@KVpHL$KO?XOGc
z>(aBj#GU1Cma0b;xr3$Ll?~LcN0kKI*P|*1sv4+fU~oO+RKq}Z;j4>y5(<;r2I?5-
zWT3Nwx(4bQXl9_ffr<5~zJbQv=6dvTJ!)W}p@BvQnDdtwxl$%g476<M<<wNjx0BGq
zfLV_o)}ywp7-(gnwSiOhh_Q_jcI3oL&id5O0AqUt9Spo*$IZN>f$!_PE7hki2D%#P
zVek*%p__r>*Io6idRNt_?yT3Rx%G*W<NQ#cZq%n<26`LlW1z2reg-VJd#Hi_2EMrM
z8E9aTfdP{Efud8lJuI@pU;{(MfJIi?G;qIdpxhnLFs@7VGz}>09nYZL?okFt8%X7b
z85m<=tbtDqEHp6Az<2}i8JJ;U0uPsgcMVMEDQiHJ3^Zs!{Aku>15*sVV_>R*U3I+E
z1iMbMIe%Km$ohe7Zhn%VpB~>)+x@<QnLPUj7Vu16b<Hv`ssYVxKpz;GZD5XpxduMs
zDKIe4fVYJEL!P(>#EChl1m_|qT-3j{XJrF28xX$*TV(Ka3s}pG$H1osmKa!RV3mQ-
z47}dpDbkRdG^9ffXeqBi1D_jM&V#`Ft0Ap0!1|>Ib}45$G2!nlyxovi^V;B+G_)t;
z>xT4|0me0qLi`Phv)>q4Z@_OLU|@rRZw=ge>AKjEHX7JuKrx`o!rp9Pix3X=9orxE
z_S^1FaTMl0iK+2^5pr09vuH?4WZ$%K2YLTCBFjLC=VGUalW8FA@V^^U#6XnSc_Tuy
zHzp+RWLey5V4H!f2L3Rx-M|h5#|#`du#+dwz&-=}4g6qWw}Cwd_8REeh%Q(6zN+LM
z(TMm-{#lJ^Wh1)Zhz=MyXyB-UUwDY_yABx`*qDAYP^>ZiD0tXFlg7kZ?(fgi%_D*{
z8q>1Iw7D^DYfP6L(+LA74O}qrEAJfxrwyDlaNfWf4p@bXHKDV7`ZckG3~oZ3n$U|v
z_Dk)7CUmh0{bt~zflCH{m&lKs@P~um<fb&Bv^Vb)&t(qv$h9=pbHxB-ou>4sfoley
z8F+5sx`7)8?i+Yu;HH7U4BRqsTjKO?N>iH>KQ8j7qW6x0%}r@<Q@YEGwkh2c<OVQ*
zXyB27CkCDx{P&vln1{WfJ6AK>Uc!F1wpugF+tNL-fwy}zdST#i?u8%e{CH{L726y5
zmp587TGWizH=|?C=(T}G&s^IddEm#N&FGC`BgaYOw-5ZZf;r?WCA}XmKiqzJ{CLyM
z{s1ChbE?*yMmMK9&B^P>%I1{)tSiY6@`K5|<1WTbekA)*DS*lWWcDMAA2<E@%a5#n
zWb@-&KQ>Ag+5O1vM;<?N_>t2O{(p*Gq9>5EdHu*I$_78GclG2KTrF6@kAi*_@}saH
zMf~XNM?XJ``cce}rhYW@qqrX>{HW?jH9t!FQOb|<epK+Iw78cQ<d|jr=)cF!gi|>`
zd=tD(DoSZ($EK2yP;=s<Dt??4Qr(Xle$@A)fgd%+ptc`%gw*omVRI_lg6cXE>Tx^!
z*|n_bZ(~Ez8#|?qgw$_g$8W;3w(Y<6H20&OAMO2U;YUlcX(iZ3u(coWhzonQ6=kMm
zJNVJnk8XZ+^rMp>ou#OYAY0OMJNT*=)LoRGe)JO3!;e@C+7|Klb}ak&!C5xu^ivD!
z@5cZ?-t%LI9|QduBxd6U2m3MHj}d+h@nfhcZwn6d<C4?DXF^8$G1`wYQaVcTbqg9R
zWSo=b>hiUunk{L99~1qU<i}(wde@IB+-2d@1gH9uD&1k1{w?j%TPiqRN(&5gzwgIP
z;a~VM%a0HI_{5Kee$4h`jvpWS@v$FfOPcG)JU>1Z%M&f>ngq$#$_~hBz8?#u=!1{{
zo0qDsXptX_{rJp}rG9)WrEIxG$g(BwHsZU?kI(&BF5)mzK5j*=yLmP`kyl93O2Jir
z9Cq|CMfpl_jo{aUYX#T&@r@tX#dy6a%yY^1+2qG&KQ8-m#g7{UJ>U7E@{;yri)2|z
z@k0^5w3>&roHRe;JdA$mei%~Z_rsD+$E5)wLD54zR+8l-A}qwynj%7?jvnKU*4jQv
zzV~CR9~XH6@GA0SyB`O|W``d;{n#%7cL{PW`~3KU?R#OjqwMixufxZ6vD?WFJ|GI4
zarTfz`%&<)A3yo=vmZzNIOE4zKaTqG3-41uPWf@nkK=xv5X)QXJS|((P-)>D!PBC1
zOipV>Ip@cDK1tfxy}01VuVV0<RDD<sF1M!FA@{4+^gD0Q-gaXc*`4jL`tb)_@-{i;
z`cqu4`_ZHgT@#)#?$(CNp0Kak*yffWxA{;C*uGcJxb8?@IRm&W<R0(hHZ-J^=e{2g
z_(<{Nkspu!Kmch1c;dG|k$mCD-$I@WKI7wJES?MREFW3E6#lOtuY~;bKSi&Fzu_Z7
zEZH$_fZyucVKWJ)3&0(KCxG;lbqR7QTQYhjn<0QCN2dU|7hIH46wWeF=9d5=Spr}s
zyYQ^Svk7OH96}P2a|OVE+M7FI_nlLo0P;FK9~T8sAb^4a6bhhp0A&Iw96*r(N{Y?g
zHdHi#;tnqs04p4%geW}7iI}CFY=W>&*#OD~z}fPGY{?=wqoOp1vsD798bIv;>I6_N
zfN`CZI8_hW3n0O3h*(pwmLPl84WOP(Zo2^L2hbpZrU87~#naG<&?JCH0W@~J*d-B-
zBQz7s=7Q|fB7l~{TRBQ=A#DWP3TEtz_5pN|8aoPh66C|7v-FEQ$W?R;pnCw(orvv3
zj{tfGP+=P?ZnKMe1@N7TEhc&g&?kVt0rU%CWe}@^=pVp<0DcePasUGZ_D}h(4`4$8
zg8~>Fz>oljO7PDa0~i*-Y_=bT;Q<uQ?itXQ*0rS(0jO<gWB{WA7#+YEUR`bJodCvi
z_c^lcxbXo@kT_EU*q1Mff6r}V0FwfkEMfwG5KC_DNg-1Mm=?gh0Zb3zy#QX%@XQQg
zMgZ?i;w-1UZHbXxW(DwpgyL*n5$EtC31D6TH$KBsDf%#gj{^8OfcXJ@62QU$zQ~`n
zfah+HiwP%=vq&r#v*k`(<WeS|3N8`+%qdzXmQzRD!^>$oM+;yDk7@v`0(iR5^_Adi
z9@4aS_R9eNOlv3RYov(D*8!{*zRpp;5yEDCne=S{ewh*G8w1!Bu*J<hl>uxKt_Y?G
zavOL(sKR}MnxHPojz$1xTVfL6UAfy83?Re`mj;j;!1n>v&F!%SV}cRED4!AoFfzA?
zOXH$&c549J0yrGNPXTP_!=Wwh<!KFIM*wNt(ar#}w4+@C{2+}l+K#q%Pud;89vQJ_
z?d%hHf585~)B)}202{w&|Eu!B0LHf?Rt^Qg|D66~0CU9h=Kziba5jK*0q|dV9~C?)
z_>15%342`d1UKm`FPoi`ER)k>b4HNsJuf<w-$c0(z^{%a+gud!l4H#7R|58rD?Sb2
znUJf3e+d35cunxS;0?i>0sIxfEe;aEod6z*csGE1ym791?+bEF<}5x4;Grm++Yu+$
zAB+7HLC&)HJb)LHT^_{W0lW;LO%QE^coo1ue0Bv<Cy0M}gYcFNBDmZ2CIAGHJBU0%
zqzV4FK9hq;8^l{;kS+*M5MJTwgK!1m4kAlh+mZy6f}kKWipUDb<dng&$s~>mJu{0^
z1!uDcku8YqlFcPHIfBS3<bQ)Fs>myPp&;@J;i~foQGn}}1{9Pa>{VDu5vK}PiUm<T
zh!R1R6vrAtlnSDB5LJSx8bp~O$_7y>h{{2f6N3stR228}{}Y6}!=VzG=m=xAAgYTC
z^F(Qa)D%ZHuH}qCT`{X4L<1r9q}go1sbLVUL~JBpje}?sMAIOe1<^wE=1wyb_FPd*
z(GxYc{-4rzL9`EIUJxG!(IJSAK@1OKgcx@UqK6O;(pg9s!LEYc1iMRXIc(1$dIiy2
z#D09>2hm43k9l8dId^kF5Cf&^w*?0UF(ingK@4^b*qB2l288)Ar=8441~EzkCb}>>
zh$%t56U3Mx#){dvASNb)^FN6PF~O;wqfHW>dokG=TMjr?3}yx~Er@r;V7lN8!T0{h
z@_nb?SwcPtVz!VuLCh7xk+~K|ZrewqED_{dK9*?nCA%PqPl8w&#G)V;2l1&Cu?w4V
z`oCU(=EPho2FnCL7i1egRKEx!(vDUHaqb^a_Do5ugZPpsF@z2wd==zBbij>{^zjd_
zuY*|2+cSi`A*>66{|jti5c`AphBtDrr1iY@KJ{z};@coL2C*rKXb`a=HuK7#?(qeo
z1@T=FTcq9;Ui|H;S9`kHj+7u&-sbIz6E|BA!U!VF11?!V*S^>j6t93FXE}v}Fr6%W
zS=<F)FzxB1_Vnx9Zlyh)YESVXwg&OEJ@GH2rUr36Z_@YT(&n{yTM*lW*b&6eAoc{Y
zH;C!{5A{Lp4%*ieKLqV_p2>@8NvtOn78CqH5C{1v+wD3NMCJ~3D2N|}I4qo7@{>b;
zc1n)~aWsfur0P?G$E4`EAV)YM<fIgFmeXm+_bg9J5a)xqz#R$VSrESl@f(jx5I2Lk
z7{rk&o~zvEATF`N6wmLB2V9&k3%Mf5Hh%`uoqy1Eiih!<RCHZ@*^+JYz2o^Sh`T}D
z<H_nkw}QAG#2s<r9&ss)_k(yK%Htp&2JuL|INBD8nJ{}I1}w76^B`XEDIJ14gujD$
z83aQ7S0H#5#6Lm24&sd%bIgB*G!`$;au9ZBOdG;mA+Vl4WLKTg(}nC(7WenHN#R~e
zo{&93nL=Rh4IwE668?3Xqzn$p7y@VCO_P)yLgo;%gpf6a93kWkp+yH8*MYKe+dlO0
zqsZAqV4U57a)mH*hG%^T+LbOTw{XtBJ=vX)4fyw*LnsmAw+1L6*@A*aLMSApuppc9
zurL-4p_nL%Y{`(lLo0?*DTGqOOAD3}EGx(c<%E<MtRT1+s2oC-5Zd=hY8^t=5UO$e
zrKq}KqY(Bs_tXfXW(c)Hs2##zl++-EIw9=rKy^d7*@42-J<PvwCDjv``hu>G)G&my
z9Vz{EPmhk&IE2L=sYwV8^CdMEY$n)Ta2*@x<G-$^mLaqfcjnw+ZdDs;TU)_)f;D?2
zbqt|X2&Y3h69OM2okLi|(-A_K5W0rYErjkNj0s^ZuZ`@U9w7`6(ldl!A@ml`dcP3*
zIJ~cre>zfsN8#GpW}svTg)lgTA;O0Wj^IWL874Sf+FY`e-R6;^u<xi4MvKm2Ssxd|
zcy4V7^Fx>r!o(0iH-hQh-%d11a7qY~LY~PXyqKKC;yWQs6`jRt5{Gq;!$t3fFeik$
zA<PKj{San~8S7j+ODsQ-P_u=zm<Tv8gpWl3(5d48Dq0Z2Cn0<m!cuYJs=3mIVzx+>
z#iD!~!V*bb%3+s@!Ix4yH~aGtmW$aJA*={trSR1ua5LCzmBeAk1Y!5D#GRG3eE5g3
zJA^$U`wTp_!}U!F>qFQO!nYwD>qNUk*cig55VrC1d(Shh6KxK`3?UrCcOh&EAteMB
zIr&3SLQq5SiK2&KgrJ4MgiGg2N?5WI2q7qX$T3Kmv4IsrT#6!stVBbI3I9Kv)DXUR
zO1BE(ineoSS0wG=O*B1eC-<upX)-U|iyuPhTfxJG)7}schHxl^eIe|ZJ|6fVWV0Vb
zI2-~G#VPK>9#_8|uAf3+{8{jbBOVRm7j_i!cnBwi)L&v-o)pex;vN@A;DBdCILEug
zM0XQ>*X6v-NPZI+Lim*r)wcAYlbwDG;bI7vLijy|%REPX*oJT=gsXgJa)eU$`^`T>
zxGnt85Uz#n_oVL!a6N<@d?4@~g>Xwm*0XjdP7ONK*v|G_R8Dt7xEsPfUb^y*g9F|d
zV<r!UJPP5lkS8HL4dIz%`CJ;jx-&6h<R$cy_gV<)Or$sQk5l8nQfk)~!W$7`+AU0L
zB8?E{+oUmXN%mrAa+z?O$YLU^36BY{iA++I<k)8rLgs(n=Li{1M3&p#;goD5vlzI$
z{MW~9CUTm{Wg@%iIRwi}X>Q@{mDfZb;eABU=jiWup#mlfnkZzVu!&kGYMUrxqNs_^
z<vcY^`>0>M-&M>+aT6s>lr&M!M0pdXOq4cJmhW$Lp)w}+9&vGEW6mZxlL{s(ny6;t
zeiy1_BDD)uHF2^FF{x~#iYV;DSw{Zv>FOpjbfwB&?QBgGoH}+TZblswbxpK2(auCY
zX%Yu-Y2ux(RNq7c6Aeu?;-&RPQd1MngftdxBFNF2ix-m?CRk*`iS5tu|GAs?>u+np
zHi9g+H?gWKbr8#K(w=8ssiO(TPJ*3HbTP5<V-G7`MPc5<L{AgLObj<MF{`JSiGC*f
z^Zg&m_A${{2>;zMCpMsNwBUWu0Pa^e8qkdfnwZ^<1_=)4T_d#*W#siHf6|)35heoN
z=ra>bO^h@#%EV|BV@&(iXD(ZIq_HNZnwTbhoQd%!CUCuy<<iL}Ch@RzBjyR5!Xqgn
zEAH;}u4DOuiRmWZGcm(aM)U44G1J5>iNNj&!j4?~Y!h?Dl6hZwVVWnc`q0EjCO$SX
z-^2px)Tg|_y3;2n7MWNqe4*(4qQ;4NBFl5MM0Bn<d9SN&7W<aPG83PhSZ?AAUh~a8
zUzu2AVukRPf-J5wv0C_-g3U|1S>*J!WH*>tD`cJEH-cQcUP#66^sSJMj=o9AX2D_I
zDaC|h!rY4RR;VU?JX1wIN)(z2owsuYNf8(({3bpLV__Hp6G0RAco&!mv7?Eryv$65
zO;{!_o4CTe+eFmFVG}=@h?$6+*u#1yPpXOUIZk)_!NgV}%y*jDCVact>=5L!VtY=z
zB+F*IO)zJ|;$9Q`L}z8chzA4@ipU0sO#CQA&74F1Y~qNCGbYZOILb3#(ZlJ4kY7w3
z6LQ?qH+Cm3J!#^UD5o9$QYYK-oMeA9abCy;6Tg~ZU-n8kUKIV3;O~Om04_RL-1AP?
zq;1`a|5)lz6W2`KHu0B<>n3gpxn<&}w3+Q$XT05=I5FYGMR!cxWv}kUr3uRiCLWsh
zP2;R#tjh1%Jra+2YA(ATn|Na4DQ{$6z$X4R;p#!p1^*U&A;@80@{*Ri*nku3uT8w+
zgDZ@TVIYh&VY?+sVLL+FFy0Cyop5$!<MhnKaElEqY~ztquOJ(6Vs{dQ1kV&kau}Jz
z$Pz}`9@Mr6jp{)&ih14LJ@b0dnqr=>dQi47vWJl)jElXICycyd<P0NM7?B>7JB*t>
zsD3v$^P@c|Ul{qr7!=0fFbafGFpRok)C;3f7=^>A9!8BYiiA-#jMY7<Vi?7wB_+Zr
z8AfqQNj>cmE)_=UFv^8do`dwHGJ<6VoA;!?J!y7Nst^VfP6@(hmBOeTMwKwMp2Vq|
zkg8!El`JdF|LjRGds2>GR5OgOJ>0bfYYWy9<l5_p(IAZOVe|;2VHl0VXd6bmFdB!^
zB#c&Jv<{<b7|p_H5yrzN9!_oAp}F*hdEH)i7g}=Pdr_j4c^k<l#P(ry2%}RNox|uD
zwjDWf5ql-vyKqaw=qAAvrK~4N&oFv%$HVC7l=cpzk8o}Sn{k}}k{uv1S>&+Xl7UVw
zL&6wY(lb1a5n&7!&e^xa7$&@1FaG|8XJi<o!k8Y$dtr<YV@w#6nfIcxf=niaF;4h+
zNBOcBO%y)KQTFtrDZ<|gW2%s8Vg6@HI}WE`d(j&qGer3yjM-tl@08Bu1=*WsNw(oK
z_Z%S~hVfAtbA`_n<SIDS$6?Hu?Cs2MP8E9F;sTyKA&bIT9LDJ|&V=!47)!#~9mbw8
zKI1NQPSV3L!dM!{vM@duWxe3?FuoA7B8;zuu<=SEs{~hv@uj2Zyy0FWoXOW=tQEd4
zjBj|S+;FoaW4GS4A&hUs*eIon;3mP%g5QO)Maab7#4age9FdQ%n5&}u1T{e}^$Q7y
zVF?Kc2EzymF~$AC>i>d7!q_HyR4^tO7fco8TD}*uRd7Xb+Ad^=;7&od*%ihQ4(H%|
zh5snH&(ZgXaX|P%M>!M*8?*c2Fn$W-XVFgz9uYk1SpFj9nBeg+PB{7j8Ix0CaK|~$
z*)Yz9k=DXn7S4xpLBz*l{2In@d?HEqqT_oxj7!3Q7k7@32y#WltAc+B{wa7ZjO$_C
z2;+)Wnx>CE9e;&!D~#J>a8K}#;9bE)@9rnK;6p)neB|`~iK9FX<5?KbCHq3~-!T3b
z@>1}X;6H*Kp}aKUbr^3%fn|>Xr!*E?Nl`ir=`Fmr?8n|*7TgwcTF7OgT4#?(Fq;Lh
zg(M4Pp>1amr%XaJSjgxoe0nDf&+I5!EWFc)vRe4853vhJ%P!G!2-=6gg*+CPT3BWw
zuZ4Wv9t*84<hM}3LPZOeEEKd*$U<ogWi0z&7Ykb`W}&!+dz!n5C`BzOeTa)nNR~-S
z3qOg%yp)J1`%qb@6n&|j@bZpQ!NMJ}uWX@;h58m6NKsV_H7(TQ)=IXzg&G!$^tJ11
zFId}&P}f2ohfnWI^@J}Gn}))hSZHdYkz>=?!b&M^CQ1uOZ!To36t%Q)T}T@qPYYu#
zjJ43tLVF9nE%dR_!9qu|?{1-!kS-Rw3h8ViYd@;g&u(frQT{IOX)oCxlI>}smyqyv
zHzzjhYoVWow=E3gWgta^EDW|Vz`{Ta<Hh%re&p*%L!@-5AUhuFN4KSv`EU_OS{NZD
zQ-8Ywqb!V;?9{{Va{Z}Ge;UUDEzGj;frSYcCR%t;3?^BaY~fwuQ+V-Mm}+4f8%P`u
zHBU&2;DP=$T`X@(c7}!bB|FnXLVqs$YzuQN%(t*WO6OXbXW>H&JOXLg*d6~!^pAOY
z2kk7Uf&=Ii5f@olY+<4B`UC8~d}?6{uV+y@i85AjR}b6qa|_FP?OFKQ!WR}+SkNsP
zJl7UhSy;zj7FLVz8o@7R7QPbB?kgqK*A~`_vPrV*Eo_kN77O26*l1z1Wckq}cHy*1
zvJ)@Z{5#?M22cub3Ja<QpD3Dz-zC~p!A48GZ0xuA50|mS!cGf83n2?p3o#3(xLAT=
zK{n<=jtDO`keJ6Uq)K+Xh3_q}vem*i3rz;vqcm_J%@?v^;D2+p%fb&94m#0xTi9!1
zpM^a<S$*u5hX&GqDLvrW9B1E?cF`dVKZ=;>@?i^q4y5zLy+<q@wQ!e@0t>%bIA-Ch
zg+DADw{XJ31q;7gIBDUOg>&M5+QJzNXPx-&K~!~+-C9n~2GMy(e|r%9X5k`_n1#zC
z&KI*w7BnH1``Ip>u1M*@LG-7P8$1p|uJO(l!Zwe@<u41jMY-kZMF-ne-?7kA2=n_E
zo>_Qq;emyRV)n?w6CsZsud##asqn>vDL$B9Soqt*zoNXfz?1cl@K=Io2GiZaly!(*
z5sw&Sl_B(okGLU(2+~Asl2(w(TM?v-AiZQ=5qKQkEu_T|;>2bYL52v1M=&CSMddsh
zBPbR@@dz?S?6;Z85o8vfd6o#WMvyInLhU_yBe>ATCfOs%Aqw-H5#$n{+fnie=`e)y
zMetr{52ySQ6mWP!E{&jY1VtRBXav`uxf7P}4xwd(JtZP&8$r7WN=8sBg3=ND+O=5(
zPliyL2><;z%0*B<f?5&Oj-W*sPlX7o3aKc_N+ltcxz~<T>~n85hgTO;BZ8Vj7V@z0
z<2qeDbtKzRu&!Xe2<i)IAQ%<PM#9;?v5+PaG!=4QN}ES8f0et1U`s*Hwi41hf;K{u
zh7yZ=yL;M4&>@1NLy7s{J;3j?I!0{l6hY?*x<t@5f^HG?ji6ry-Ff^c*k5)SJd}FK
znDmUGR|LHy=p%`XIMp6XoS5{FVBS#LG2cBnf&me%A4&rSxoD8Mvoa)tp%J9Az2Gpx
z?&G`(Wn=`SB8Wr~jbL;HV<LDzf|(JFl}1jD$Q4M$esAkJ=Nccu1YUCIY(6o9Ne-VZ
zWJ(0@2su8K*kD=&@zS1m1*Z$XCwP7+&4_@JOJ_y!K?GZ*me~=^iC{$pD<hc8{Sxsr
z!4D%?m}p7oq>qGrEI40qK?I)&xjodre&e(#g2kdR|1^Rn!V@;EES2ms!OtUDF64`d
zef^xcTwE2w>IgQ7{-xkIg6#Vh4~y`x1=l+IIwASrru9M+SBc*`r5lB8ieR&l?;PE}
zKozb;phn<x^pFrO0$qp^fnP{KFeu2ri3XdJ4GVG$EvGcbqa8u@C~8EJ8o~Dw+=$>N
z&+HKQi*}xj#XVai{46oHN3bJ;oe><3;Fkz?MesueyCc{W0slx&{kLgPC(n$Mp1l$5
z<K_A`JzMOl+{v>)f<qDf7{P%EID1gA&D+HM?riVj2!4)$$xjh*V!{iO$q`wToIMu7
z@dz$Pa4CXKtvx3q{QRExpQfIZ5uA$PbOdL3h45bBHTE{0jo_R(GG8u<qx~9zB}KnU
z5$k8A==TUN^J&8yY8X9xo32FgX9UfKUyXp3KLp*wh((UGdKg{j=^jQ0htXdV+~R{V
zYM({7Be)a6!w4Sn*;v_Av6AP-FuKd*Io5qIg8Nb_n>`T1;$uF$_*jm@6-D{to~L|n
z3waj7^9Wu<@HZc5#XWB#cq!yn1pf$`)dc?vc`e8`Ul;dWI_qKriNFTT(+Yn}khAHc
z=qb8uIJu?48KUqA@d_phl3=zS_MyQkqhvD)CJXW&<U3<oqR1LWwkWbkkt2$7QcKP#
zaz#-jilUOu9Yy{q3Ph17io8+eb6PT0nz5s}r(hI?L@X?r=u{6WWt(DA6c@d86eS$r
zQc;w2c)#KvcIhqlWuhqS==>GM@=;WXqM|5O9KBK$m7_?+=Wj$-jiQ<q@o;f<oN7i<
zD~dT$%#EUU6m_B)9>s_#>PAtI9eDtws2{b@w`Nf^kD@^o4JF$sil#!isIibHg1o5{
z=L734qG%gMyC_;ZmaU>_?eI2H6dZ1!MeU>LAY#`jItuA5$oCUEIi!mazK6i}oVrEr
zece6!-}~rZQrcgzw_qQ^zJmP(*^3Xi0Z|N;>>!?5A%mULAwq@<HX2UD9G$x}GKx`A
zyc@;zC`OAuDT>KajEQ0_XC2G&LU;rw2$|?)6K$Rn{r@BLP83reuW8a3uH`*PnH9wh
zhrcgmrqfdn^+6P~ol^Fi=kRZ$_%Mo(qWCz9`68~2Vu6rPqgW#36TyXoi=tR8WT4Cf
zkLPDmEEk1qSt?{%6rVdv-4PzvzmV(-LGI})A*-YKGK#OFSR>hWPU+V|*lR5}Olo1y
zZC)S61}XZM$HeK{Mo~5iZWjDbaEoB#Ws7~)D13bXKWbm0y@=b$Nsq#a!XHH-ieMDS
zV>l5*C<>F;e+*S(2uEQ>aU+VGQADDMMsYNXU!sUb5szYD6#M!7kK+3%evrsp1$PK;
z6WlJyb$vUWb_(C+C?#|^>${`aBg)<c4yQ!h4oLQ};6cGdQT!<6g4p~d{Aa-<g6T)t
zzQ?#DlD!ng2_a{qI2*-D;cRd!iqj6SG=k0v|5fn3qhAoxR094M#YM>umhA6QT$b#W
zDE<_3Rqzi%jz3Mzu0?TOlypA3n}0=dD+-DsLkzd0xD&-cQT!Xl-6-yf*^4Od3wad9
zV<8U&AM$#WfKMd*OppUU<%4UA9huW}5v_urzn#*TQM_{akrDJ-c-ojf?{9=dIA_zu
za985L6+=1^(+hfHaK+#jo^B*@Vq<R%NupGh?0}J!F@{Vr<clGH49PKMmeO2;Sp>7k
zkX1-FK@Kugd~?K*Q<Oyo?JneYO7jTGD|lnAw?GU9V<;U%nHUPiP&kGXQdGpTFBU^l
z;hKcyP{k!19!Vt~n^Hp7&a#KAtndmkloL|ku{k}GDmuK9kjEpbY7Et4_%wzkF;tJC
zMhrt^csqugG1Q8oO$=>gs4d3zVyG{qP7HOOIJrkrgBTjd&@6`LA~uSliBsB`#ZmUC
zHWlURzjpIlIHj$Gw2WcOC{jLkw|4YzMp3&M+Q-l@hW;^hh@oQ)J!0r72AyK)5<^$v
zonzQ9@i}a_7`lu2n<#%fdM^?C#L!y^TNW5?H>s~=>yD-YLIyjf17jE@e04Wjd&2vQ
z%di-R$1p91cVie4!^jvWI9{WKj1?Rm!x%?jB97xEJ6@1`Ix&Vx!Y2#9!y_PM>H@pQ
zslqpjBWI__Fgu1hF}xSUj2PaR(piFBI#WpT&uzyKVrVT9n9q&jqZmGx(s_a(3Z5QK
z^J7>L!y?IkBFOd&V|XAnW*lP=&SFQeGlo8kVQCC%489na#qfCy>tomu!}1uuh+&Ob
zt`J-;xYF@mC8X0B`clYOjy`4#eeLkIF|3Q>8*Y-++j*LoYv=TB4Bv^(M!`*v{pJ`p
zizVA^5iunOMaZ@%_8@36=rL@KVOtDF4E`7*j&C3aQ+QA?<mkI4U^oU#luMG03XjDQ
z7m_OYy<obrRBEg}O50=D5yOEP4#u!kiuMZbis1(#yJOfRgpHes%iXhfBln58pEsI_
zhhq3ql%s-&1%DR&NpQ+^_YooNJ8mrfBK(-6RDtJY45wlkAIF3^PRDR2hGKCPkK=3%
z=VEvn!>bt1$8aHr8!_CB;aBnfJ%-CdeiOVH!zCe$rBz(l70Lb?!&M=y{2^rhefKp-
zxh}*UOMeNu7sLG+ZaJm5W4Ob|FE`1F`PW!_5W~Y5o{P<+7#<6G8p9LEi&rw&m1~?m
z$j|tI67s?+{X2%gqxLZV6T`nTWQ-$|yxhMQ18*E}Vn7^eM0_ibbaAA0t_NC=qx5mO
z;&8{|iDQgJ=1_}-Y!N&tm=p(zR|dgbA|?yZE0{TsEOBIwBU>Cf<H#jq_Be6~c_j9p
z@pczD<&Gnd=w%$G*LcboNB%ep#8EJgB2rpNu(041$8wpFqHzR;l!&8b9L?is5l5*w
zO2<((j%tbEaa0n*HI|K|TpZ;kTS2fQuMH<=f>e&9iWJ4V+XG%bjvA6}7)MPZwd1H0
zM=jxrSO2=g*|@%tdV-I}Qv)H%6YTyr65cqDCUG<s&SEnmqgJ@PtheW`WgM;I7#PQ(
zI9kWiCXUW=bP=1jaddFJ+QrdccnOKz(a}2zX*7Yl#?dW~-f{Gaqq~Sb1$zkg6R%#v
zxzdj(P+y1lPZ$WU7qbDvk4|<EW)jC($qp499><6{-WJYrh6$N@+C5UpXh$Cv$M+Iy
zjHCQIfyOz!XLHZQI3~pr;HivbavW3Q_$-d4al8}9)HoJ8meb;x6~_m0yc@@K5#NjB
zeIYXh(@(U=d8Y6Z!e_@ZCyx1|%oY4da9$iA3TZ!)#)+jp4sk4S_<}e-5rc0XWszhT
z$MLBUwqGK|5QAlLd>zNyI6jYKc^qFjHebfEB94`kT@}Y_NB>#8E={DbL|NnL_1<%@
zi{l%~DuU|;H^#BSvH3O*OtO2rDUQt|eiz4<I8u0*iOxlpg{*(#R^#xAjV5Tsp$j?P
z+}?nk{F0@v?ob?N94F#98Amt{D~=!H*d0eCj;Ppd7mV?23W*DHgw#0NIrVN8aT}i@
zj<Q3Por1dr*GSQxI1a{fD2}}%?u%o890!DR%vS^Kw(XfjKgMxb#9st|isOiop9OC^
zwH%dfwwvx_LfH3s93Q`J@2OL~!Q;3Z#~)I3CXNen{3`rx9OoSS^Fm%rz~6-b9>+x?
zmjnw;{_oVf9LE(=>Nv`uaommLUL4orxE{w1Dg7&sTS9KeF<LBdOO~5-hmYB>{(DV#
zMZNdqco4@^DShbJJQnguaDli#5uP%co(Xv_$kF1H>F+pR#_>v&{NJO%_xLA{f8%(~
z$3CyvR4hpaQjsPVZBo%T6=_rPRw^o{qEaf-r6PSQ@}(kwDqN}diI<#;%&Bmv!jlSb
zDw0IZC`f`CQt^}1_w$n}lZbY|CR3JFWKBgLQL+i<NJY+6WOr;{ies)+<aU(2Q-~A0
z=XDgmJSdQgf~hExijt`)BzjS&v~VhlIJ~qt7E48OM`<WZDan>iMQI^roYJ0Cs9Y+_
zr=o(Rd_IMyiA!ZsYNVp3kSc;zQ&CMwb-_(ySt}K_CEF|&by87Rcw@nOsc0aCyHj6C
zhehs&sc0m8&rI*SGxnNn;@JE@vc3Y^it3MgOFZs-hi*htP)blxQW{Y@1*AnlP`bOj
zySuyN#@xBxbcmoLAV`XYD9!hqJ<k90Ti;q|?X`dV?DIP@XXeelZ{C|)b{t~PI(B?U
zu`clo;^%gpVXZVNT+7zLj)r!8XUF$;G_s?y9qsMtU`G?0o7>TXq^TXvNaTZ|G;C?d
zmkiqxTiMatjy87OE^gF*MX@bW!oLS7DMF;=AE-Lo(aDaUR&8fHzOkdLgqG69F25`=
zW+bJX9p74dcajPNjZ{5kU?jpvk@T{oza0bY=xzD?*wNSG{YaJ!R0Hi8WXEVb#@I2~
zsvTj+5Icr497Y^&$5AW)#er%h#Zi|339H81F~N?B6vq+A6W<=BCfPCBj_H<viXBt!
zm?no~kTLjv#FfMu^n?eghlA8?yZrkXoUr4h9dqrNXU7p4h8^?mSYXFCJGR@g(2hlR
ztg~ai9gEp^nH|gRSYq|HR8G3V@_o2*DOh30DmzxQYNZ|32LF2$*4VL@Vrxs8Lb8G4
zX5vOWHj!+%JX;uUCCYEQcaZEM?j%Z&yGVB1@p}p5@a?r@pB?+{I6(c79S1GvyF=8k
zR_4PLs}50iI~?R8qLZlG;Udw9ZlWabI7E5u@Y>;{60meX$;2VXWP^6>APL(Mu_MZ=
z1TjX86ORs2Cx@tG<kIRmN$R2MlpUw-_{WZ?a@N>!){e_|{A$NJ8ZHsf+wp@P7s!7k
z79VPKeUZF7`A_5`{!H?V9ktK@yTh-@S!2f?JFePs&5qyfxK7V4J8sA_lHVkb9;(LF
zG*(s0BBt$O$6Y(_vG$=Ie~?J+pCtE*I-L*5m%U2&$d1S4f7$WGj=$|VPlL3&KU7H(
z^30Csa+P)<#eo-gyre&^!?=vUlIuLlYdhXhhXZdpptVG*VMf~=L?NkZOXEN_DoG5}
z5vA7VK#|GD3MdECJCMbJtPW(bYBM{Kkvx;7v}Y3EU86}h2XZ=)%Yp2y&EdevVQM}N
zxv9KuwaVkb7V3Ga93s!}Kmi9@JB{fSbfAy}2OT)%Kw$^ob)c66y=80;6m_7v11%hQ
z&w=+HsN%q<Oj68&(hig%FYZ7I2TD3n%Ifh02YzKQl04OL^`QeFv8ucSWi8LgB;{ln
z!;KaD#DQ^PV_qK*R}~zn=s+dQS=k{ED*U@oF8`ITsw}1hpE*$1f$Em07D)|aO&K$D
z)@E48@^l)mJ}0m5Km(F5i1i$pM1MmE8c}KLKw}aaPZN@%PGbOzX=~=d0g{#ueCa?(
z2Rb>>%JR1*Y3)E8OZm!y3-n8db`;w?(1GMN_0Hs79q1;6T%27<z9AMEVJuO12YNF6
zme_+>i&fu|e@_%=>k+Dt1AQG>=)fY1{TvwXzz7HWJ21e3ftGWK1B1v1TS|W>9LjJQ
zaUzwG4oq-hq64EG8129q%RkP6u@+x5LXEe$XM~#Mz+?wzIWU{z6bGg`Fx`QvmZw|)
z<Qe2Mi9fL;8ULwv>E<{v*Ma$#a~?_IBN)#wG!|HTx{+$J14|s(ESubcrPNnDu*QL9
z<jWmcL9&v#N_Oc;V=>zk*HYX-Tt{3_+|JsK<YL}L5*w+uI<U=w-Il)Hft?oLK~nyO
zu}^l%8FUo4m}HLwdmY&4z<${_auj$cnQ@dchJ7~-^I->$IAC)k*@>eL*d4gyz*Pqv
z4mce+;lN1;TudHxAS4$V2iy#G2fPmW$UP4H!!0Ta{SE{umSZoiiK2%cNKlVB5G9E@
z5GR>Lk9;w;ljN8K$ElxSc*=p(41aRq49R&1esJI{xnw>^g3-pLE|6bz;76<WX))U+
z@=P@RO#Tb;vRo)ginFTfXm!nj-yHbMfhW|jJ8;{9I}Y4n_&f2Y1GnV7W0PUTyVUPH
z@F&SV2mT<Lx+L8y8Xh?Ch{{8vPEkhtnBniE)!(v!4!m&yPCTXff+(J6B+ngq%2qEO
zctz#41NDmi`;#d581)vfrD>c<OOlG1+KG~5jAfCM<U~4(!s}AZAwOK4P)@w>L@_7Q
zJCVVOd`{$dBBK+TXwKtAW|C}9WOpKql_4uhuQ4hINiIvz>BJnX$J`YC4BsZtOMHiT
zlX?O2cbzCmQixcXDC2xXPZ1}ITFQGe!m-ATiaSxliE2(%mpM97%85_t`GEML<u6TA
zhS)Kl?jtA4I#JH5{g|W_6Amn9EAK=FCn{2`>_inODp}5k^nA*&suNuq$}rZBRW+Qb
zNxg*=wVbH!L<1)pQmNy_=T3a##Ai;_rIKe!x@Vek-qmARpD5u8CVWh6<U|uEnmW<g
zs!c!6m~u0Q&7COEP?R70rfW&@OUv1cq~SQ##)+?-XzN5fCw5S5??eYDCOR?6iH=Tm
za$=wpgPiCrwNCVKq9<)#h~1p{hD3VlN-~U{c6Z`ih6}7QeCI@OC;CwQ-icmTEBiRr
z*W&$2`Z=+onKAbPPNd-;J~>VeX4NR-5GRI`3?q&p4tGMndXiQn89rdYqn#Mz#8@g)
zHQtGF7Ec~;tknc3%-gfcPE2uPl@qI-nCiqd(VbZA#B?WSI5F31HIrmEaTakBFKBbf
zi;P$EoS5&#0)`8TRoRjB)tO|86U(VDC5pbxiD8y!1;v$4thAIhvKmfobYiXLU+2Vn
za^3Q5a$+l$&6a126PH=L%~H0L)SREZlVlfhH*pVfFL597A=@5w;*b-Mo%qX%!%iG=
z;ulFP*MBGMPWYV&IN@-@>4ZnN0iOnOIiWe>maD`BB`>>?@V9g}DY|T-7fGK?P+rUF
zqeof=shqX+kP~4iB64<2Q0*otdChK=Jmy54MDzs7F(-~Yaf1A$6Q`}(QzVl4j76l$
zIVaAui;>mw1IY!BZSAF`A7yPXC0!(5BK}1D*$H{)h*bSb|4k=uIdR2_s|>F>aovd<
zl7yj*(_DeyoseR3;~l|H+;QR$C+<_c>%={)Rz@N#BPixSop|WPBPSlPR&)_fZsHRs
z{+8>l3z=N<GZasqNaaFm7oIus+=*9Cyk^4}PQ2v2{+CCHlsBw>%LVY?e`RlKJUt~v
zj)-6y7i`qix{ySYj@YlTVQXMdPG%@Pg+#fK-h~Y0@}icRm6FS}HD;07g`zIJ=Ry`2
zvbvCshWsuRAjwY5LConwE*EmUu=`<B9v9xBnEPzf+ajJ#%IiXpUPi)v3`H@+g0vNO
zp%94}q)PBz+KO1MM0uZv;w}`koMw{}E|hc`?`|&Tf)wdp%w=2{H9>vkMp-vLbm1cx
z%DPa_h2<JnX!zKLPh4p4LI)QnRYQ3fD!5S51^EL#dF)L}B^TPb@RiF5E4z%p-K*ll
zrwpsQP|bzvE}X7_W-c^$p@s`JSyju0x-NW9UfYE_E_~)fqJrTx@e3E~xzNak#?<S(
z(7=U;^qU^jW{yFWCN4DPWQB`pVhbv*U1;gTm*mo_6~{Aof)bmctbh=6I&EEO$1cpO
zjxKa^8M`#AhR!a0?LrqLiIHFYvKm6Vy3mcQ5p?0`1l8SzzFdTFUAQ_yN$KH2Pjcz#
zJC5OdhP_<qZRvfei@Bc*{aqN~!ax_+xv<`aK`sn-VY&-5To~fQP#4CyFxG`(9L7j%
zw8LE(L2gc51~$rt(f?7#kx!I^=)!ob)da4sm?vAxR2QaLTvAQ@51&as--QJvvs{?%
z!W{CsF3cnO@8U0XVUY_fTv#a!;=&RamRTNIilyYzwKQ4&AHIrwjWw{<77^!KtN8{O
zHj>+2*yO@y*~u>KabXL^?ZmCbZA7z|9WLx-xXaoJrY^YGg##`ebYUM2`-!qur0S5B
z;fM=|EiP3@EiU7CxZrfbMMZbP<AO%+CYpJ?mftVC#nR2H07J<Wav|(Ogu^@Q!Z{bB
zF2r1j%OX%bMdvXWPB1)fHI#8mImxw>JhHr}X*ffaEq&gFA6&TW!aWx*xbP$O-(9%K
z3|C#a=E5Zxeq#8u3zuE^)rDUeN^>*+6`nYf-|XTyOTXd5b&H#|;=k#_Ef;QE`W^Nt
z^A&^OA1>T?;e`t?UHH?52ekb|eCWboE<7QBM10JCCFkEvVs;@(WSUQDkP$v3c}|q7
zS1!DktGb3{4R7SKuOY2w_$A3(8d7V<j3i7&Q7!^$sI+49B#P;@f2S$g#GIl*X-Kab
zgO`RG=*g%dlVuZ6W+us^{oiY&3^kjE?3!^6$w6$$hB=A3H00KhN5k71^0IAh4ew~k
zr=i;<RbE4W4Fxom)=)-6K@Ej8<39)$*HBnPj)|(MhW9l2cYG)!hKb5s+SYcWlIJ$x
zXYyhimQ6G+Zo`SuiK>K#k{U`eiRAf!M4l>__d!Vbp@xs7$5yJ+Bvn>OXWPdbUQbjv
zC#rH9<d2kv6q=+yVR9iAG)$bNDr%^tp|XZ58fs{$DNYSlHB{43T{GS^QK?DF@=0pW
zmo|Npy1*hs5>ktKOy%JuRY${T8tQ8Joa@<utMP?~`Xth%9#>u#**r!<<Ull%BQjYv
z=E647&{RV+4b7#AhF%(4XlSWn@7K1UJKMh0&`Lumxr}RQt)cj2)lS3o9?5MqG@Puy
z($H2j{=;qe$!g4GwRo~>uc3p6jvD%ZYP&z#SjOFx)!E7FQaRh#GI9-FIsPt05mQYu
zJl!;O*YK@|9vXUT_)bI4DXP{K_3acjrdjeFdbUqdktwRThCUi5X_%~`uZDgahHDrh
z-Dw!0VX%fF8U|XMZ4ehh_L6iVvmVM$g%6{_JRKw)sbQ3cu^Pr{7)_6u$5=^(i*vk&
z33A|A`@e+JR=60ZXqc*Do`(4vrpfwfn5kiwm1>4XWbtQfn4@7X2PO?gF^`DkG5G=w
zi!?0Ou+SQ$*p_Hm$|TFIv&Ni}i7R;=-*Ou#%PI}4HLRg>jkuN#*Adri*q~vfhE1}E
zschD;MT4%vqhYItZ4{3Xw`<s^;ba=y{V8gPhMgLAX~rL4?AEYHwugq<PmFh<$ScM+
zG`8iOs^p08*Kk0?K{;8bs>4ijNcQ$r)qbk6H^xmhj<uAd8tfVzG&nV+oK2@`aIr|O
zgi_qp_e@pitX8e>CHpk^H3T#SHC)tiNkd3OSi>3N)70&$Dx%?-hT|Hd8e+^J*O2sH
zx`c)d)6}#owo;wb6`!U~$h_n*O;cN@san&FQJs>7)i88Pa+_)D?y__Prm3?U&S^NW
z;Ro5$)76hM_h~Bgbag>4BhyvQ>Hp4U<aG6u^flSI<GrlmXAQqFTs2(@7yVZaho-A5
z9L!bX3AX)>N9Q{62KC>GH#OYSa9hJ2xd<0c_e#TE4fixW*6^2{YiyfthWbOsqv1~t
z4>UZK6ZVPi5t|pBp=!)f-_KC<XBZ<Kv@7|EhQBrZBYV4JvNl6KrR|x9=Nit^b9;t*
zLGh&q%v3pNss=Mv*O^KV{cBBLrIGwb&Z(ISZe;9~?o3hRUreNO8{0Lt8)@7~OP)l`
zPE6;9&25}?$!?@jQEp_SlHP5cFVZ#x^^8Q>{F&XzLY~!9vXO{WYIC@e(+&A?lZ#18
zyOG<CJT$!RMt(O6kmq&d9g=)R^V}@xMj<zfxl!DW!fw3l#(S(SLX`YPts$9xy-(d7
zWC`+8#FE7Sou?mItz?>I<o@4{KR>leIa3ei-1t}&9UtlV#EtT9)N-RXM_$2=N+cDD
z<|n?&Zd7sOQ|6aX0oC28N-pE6W_2oh4L52sG;g`<xbc~UZuDZRx^C2SqrTg?yZ+pb
zFWkll3iD1|h%{+n<!nfQBR3jTY2rpxH=0pw<wk2anv=I6wj|0(zO?4s#*ME;bfYVq
zw{@d~8y(5pxzV2Ff2-7q;n!|-W^-99sglx#Y0X9M=0*?Nx)Z-8N|l+UC&TaD|AxKY
z=;Ov#H@3Oa*NuLh?{YW#yD@-HnespqbNYkG2fH!EjiGJ~b7P7dQ{5Qu#t1jYx-rg;
zk@Soq%1lSOG1}th7-TTxsZ4NVqO}g<6kW<BR!z3_X>LrHz3Rq1>NDJ!?ZzDPnVj`3
za&sNb43cWT8w=!+xv|8Jg*1pLo<$ZHr`cpFlPn{OBDy$NxQ%<Km2RwZ8y}`t6W7oq
z;aWG=xv`$29D)sQY;<E2Yd6d0^e2f&3|pv(LBj2B>~P~P-AFDgxzmkPatJt>U2g1l
zV~-nq-PlJZ;l_S94!GfRL!)xgjl*snapTZ`#%~Vws2g@S99%9_kuIFp@pZeQyAg3C
z>W0S+uNwh3f=uEw`>FsxiOk(xB1s}8<VM))%dCpI5w{MCxpby}jC~!a`2_K#mGBJD
z8kz4oDrc?c($RT0esJT08$Y^n(T(eF+;HQP8$WT;F1zuwl|;<Hkejpn)r~7|Ty^7`
zmF+h+`QP}(|GOJE-FQa*mK(R-c<jbsZrpL>u3T8$c;Lo8H~w(r{(mx?)0aHvY4y;J
zN3505?Aq+&3B{*w{O!g+);dd-xo%>9?#2r@Ub^v$&Nm$AYiqP-esCw42~&}$){QGn
z8uGL{l60igjge&0kyVFHN3w40$rRc$=}<b->&QTlj69=m>}T;ykvy51$Gl!;(~(`r
z`#Os0$e|;rj(j@uTmD=+a_h*W<82*zb-crd|C_IwQ}T;aKu19xMRXL^QAkH&9q-a?
zuAB7x|F?RN21!z!q?C>iNJ{7^X;n${(j1K0ybN`dm(@{D#~dAVb$l!re;waRt&Z|K
zD(GmYqq&ZXIx6X?qvJCjm336nQB6m69iQr`s^dY!bV3Ao%~Ypns=sHd8ais~sHLN}
z%y*VDt7?#Ro26#VQsS(u<8vJibu`lPg^qeU>g#BrV=rsZ(fo{<f3~VUTQ%0vguOJ?
z(POrnJzE`^ZREKy+sNNSM@t=@baa;g|F5H!j&?fQ>u9Z`jgGH$wAJyF&O&ok-8t&}
zIcnY<qxs=Es)IH7jyf*QQE%p`B6C%}x$0{jU37HQ(OotGC)<_IK6BN=xyn9Q{W4d5
zD}&L|QzkM`rJ84q<o$U{c>j4u@?JW6>zJxznvOm?`sx^=W2BCLI{NDvtYe6d0n9v5
z#~>ZDGE3M{rY}UMKUBvs9n#%!9j<vwhIeJ2N;}_3E`5#CF<QrX9TPaPF*?TT7^kDe
zeAQ(BzY~-ugXXJ=Iwt9utYeBS^;~66VflQe&sV?ASGEP}g9U0jlStZ`G7@r`h;%K=
zEFISxq?;|9VSy0}pQmGqj-}M+6BiH{>R2SFkB*@Wl$fQgTA-FO+g=^}bS&4gLdQxS
zt90zrv0KM#9cy%~rAIQGt$YjAIwoAN<M#z>15wCE9h=BE>)4`WEBSUEJ4m+aNVQOj
zO^D!5q7V@!vy6O?HAe~elOH4=Aj%?(=MYi0w1h`>*mYct;!+e29Znq+J(%Qyi`Rrx
za!%>cbhvfsROAee>F|(yi9VvA7$639gmi>;M06BisG<}Fg+E%GPEeA>DH`Xyj$`D<
zE#-uclRC^+Vm_netlYMFP}YNUIvOuj7iAmkI8QF&4<r|K{7BN{Op=H{>G)a4dmh98
zi;l~3cIbGe<5wN?7OE>cuF@?0nvUNn{;lIW$vxU`kpE7+NxVh8O}s<AOWd?jNggSG
z=(tZs_@A=KvH}a$LmiJu9_x5QBH~}PnM6?h|4@0V<C%`<<S%rXMQUXhuXVhU3#<ou
zJ;oH^L5c^;gSR|L<w0uBG|7W>9;ERgEj=<>Dbm))+GL{S6h(@V^i(8URu3|GkkNxo
z9%QDNg&D*nwPq8+Y!pSw?m-TV=ky>Kd2UO|<H1!<>K#id<Uu~B%}*@gK|vBTvkbB@
z!*@L>;xT3|!z=n9!~5jYZ!r&wlb0ZtB$o2v0}o1*e@HAt{EO2xxg;z{u?6vC;wQxN
z9#rt4q6d{2*7Ts32bIaI5T)&>Bvpykh}DTTh?N(q+9Y*7_}qg!<ew48EHak*3lHjf
z(1c2TVnbpB;zoKJkvAsZq|%hU8L>Gr?P4QaOAo$e*oyeI2dzn@s*ML<S-dStI}h4h
zN(YjT#7-V`w)CuvRTmGwVc3;8(t~bRZFiDyJ?P;<PY>!ZR^NHh*Mol4zbE$cptlEo
zc(}zNBN6P+s=*!%@nC=l13ef-MQY`Uo3^1I45K)lD7qYdbIXm8Q~rc;E=w8Z!Dt%B
z5XTZlALqe%@(DyU|6~uQ$f*%R`VgjiFwKLH{rJR>=^o7Rps5$lyqM|1ED!E@aMy#`
z9?bC=?}BlAFjuDFfx`o*2NM>n`Laqcl9zk1z+?Q+aJgPBl!bC7Eg~-VU<rvROG%c=
z#q*nVcav=^JXq<$Di2nBa8yc)ZH)(OJvivWArIDhu%6-`4>owP(Sw~H?DAmwVzr65
zmAKi1EhM5l7praL+dbGJ!(06CcO8;hYIif65GkVUWhi8y2m8qnaClNHLzRxC>M-#L
z(QIxf7mpam&at^Tckv6?sL21w)jjZdaB{KodJyv<?vW2`Nj{?AgMSvQ05Rx6h$KuD
zJwg)oApa62Va+8f;lWuCa{H48E>XukI4(P6iIQ@H<RtNw2d6Flj0ZDmIOoB64}Ort
zv_whyndE{8KayM|ULyWPlrF^fiwBoI_|=0e6mJr*dhnYE*U7K_$9#kQccLVbD#2R}
zZxbb<h^I!`?s@RggGV0x;W6GOBg%b}KZy^B)2}5xCb4;u?8RT?Vt(Sm-?A(WpL+1x
zgE!>QJa}$-UXZ->;1!9al7{f&Ew9mCk{7AGIJZQlV<<{$FVc{w^+IYzky<IHSun*5
z<wa#Ls(6u}hGJe6_acKA8NJBlMP@GwQO`om=|wItvXV>lY+ht1&tWMqm#Ez2?|6~V
zi#+6STb{gLh(Q`kktX@QD8Q<MM5#4(!NS5B79omK)Qk7Lc%Na#*U3^uEWz+Y%Tto1
zlouaZN@<cZM9KdVNm*h!FFy9-6EDhpQHe?gVnw11Ps)FX^r;tBSykVQY9zJ1sO?2{
z@*2dNL>X8$WvfH}xutyOMO|{K62li>)MF@3OkKnVR2q8G$cx5uM3x$B)x?Vkn+P`d
zqJ<Y7edy#vOE13kBCQY3akf@owD#h-7bm=E<Hc8AO!Z=#7j3<0=fz|%rg+ibi(*UF
z051l5(ZOr{JM@lTbn>FJ7hikvJ(VtAeB(9#mv|2^x{`GBqPrKP_*yQ}zqNSlrN-5x
zrx)K@iqy(KJn!X2Z!h|=Z9igPukp{)M=kyLKZp1CVk`L|FD@)qqlcx8@M5rR-DPTs
z9Jpml%21MFUJPdurNJ_lHpMnl`toA540xH*`<P{Fj2C0Q80W=!FD7^~(JQY@!1`q>
zuuR=prqpsJT!^6fWie$P1fLJIP4{AkEKxyQK(7B@%<|%}7e~C9?Zq4~c6hPVi@9FR
z^J0Y;E4}D4*EXNH)QbgPEc9ZL7mKMZ@gms4Fh~*dKfcV1<usV$Dlb-hvB8UtmVb>G
zYsuHinE&H6^9XM8Vv8&nt2Pr)v!iX~+pQ+1xXX*(UL5kGWFSetGCDH{X;)*97klNn
z_fEIZi~S@Ayf{cAqS&MesaMzdL3Y$@yr)Bo+Y39ngXpw$7m4P@gO`R)icZC28i+nG
z{AMW6f{siM%6`aYI7429sYi%WV$6#;NrHHc_|bAD{;!v-lX8qgN%x7Th!URm;*1w(
z8J_dvq8FFEIM470%X7htAH9&*tcYLmCog{X;+hw~(eR5Gzgo`ABomh_DObp^da-7?
zl7`nA-n5)Iy!hSXYr{#m$ZuQ99g@4mdtUru>7nK7Px1#|JoMrb`3t!Wdhyuu{N=?H
zFaBouj~CklNzc4^N+QFMP|9;FlzF|93%<`-8F>@UYiS!!dgBFr2JyEwFcoW46UCOs
z_wUG)d`Rar?qO^`l=PvL56M2H_>4oZe0bM~B0i+|A%hQRmaB|D<nkdmc_tq+`;f(l
ztPHdJkb@+f54V>qF-ytm!=-*HLNcsSLh|_Vwh#Gy$nV3h+$nO>Ny#g{Xi4u7MJ(V$
zLGe6FF6=`g4r9~86bUajwr%TU6C&oKG?!bUnygUok&F1g55>rf6H8dS+_rt-GyYTk
z@s+B%52bx5<HLtC>)f`QKGgEzBOl88P|k;sefZResy=+;LwO%6`%uM)UMo}u9|mT&
zRq~;t4-;3Yb6Hc?u2Ah}rG!?f0e>XtkiV@cY+KSgrJ4_yd!o7zHDuXWsLU^u^Q=@d
z;40GZN>yi+t+o$e_)yP>I#Nd2q<rQ>U5kHCBFkRihkh&7yp^g6l?FaE^r4Xtra@XY
z=CTM8b5rtW#H}k;3m@w5OKvI0B2CJdKD6?owa>VUrd_4l`q0LQY{8_je2{W)r4lZB
zJ0IHnAVf+BZVw@yea0(hZpbF_;cFkdNPZu>`Vd{Mmio}mhwieZtJQoTn!il`)`y-x
zeCI<CAM#GO6<%drSHG8~^I_U*HPeUQKJ@Wnyblw6=qt1HVW<zoe8!s{`ui}5WB_p>
zQS{GO882KI?86W$!x;{@YDbfd@L{A6qsZscaEds_hp|44qn>58k|L=lT5YG2Od?M9
zVTz@frfr%J(=BC&4^2#QwVK7b%qGt9VJ^u$qD)q%DX(Z*z%93sxQMuzxP;imi)B76
z_hE$(D}C_!;P>H=)oPUwJAByb!)hPa_^{T8bv|rnmDH~HVUxu-_^{CjtWly1nq-R)
zTWQF*Ms2g4+kLP_lEk))$^jn^`mmdP4{@&#`+O+QRASptQJNegaS;#uaD?Qj4-OJ>
z+DU4!QBs^fbYupNqT2_Z#N&h4hpB5+Z!5p>fDb_*PWo`lhY)RXVwf0_t>r^ZJn3yx
zq$4Rp608+|jO4fvCrB<lGd!o|g2V7vAI|!4&W9g;xJc!^4;M(p_5+DIM;Y*<47N)?
z{7msDq9|hfg?!l>b=e0&QLa$AO1wrC@i!l?TYPIQ>88(k@60W^=<$pQW=px_!(F*{
z`BB)9d*bA=$mGX;AO4gR&2Jo<2R=OX;RUNCeB{GF<c}@oFOnz3zlpooC~-dZ;Tgl{
z#Qv#`Y%hIy<-=<#Z!y1!Zy17MjWkGQ>8brlWAPdpZApHllh9Jq`;knZLR6M69c8e1
zMiR5@%zk9?BP*3`e!OjYvip(4kDLs15pxq?rZEPbhy0H<Dlf@9MA7s4k)ON(u^=(;
zT4UnxTAorQMTkX-?-Ac87W1PxNeMqnl9XMmq(}xSANWz4qVO_)d`SM0X(N`iYHO@j
z<^8DOM=*d;02TeH<i}IFFA5lkyRsiXKm2}F@#9lJs`^pQFK;X|-iq6#fUUY8Tm0DS
zM-4w}`sG)3sO`r9KL+|y$B)naXyr$1Kg3zrkNSQzAphKtFGxhM=f{_8m5_#};zv_I
z8j&})Jmc4@W)^SZM|1MMY}Hbl`yuZhk_=)KY~#mQesuTaTR+<R(T?VC{Alk-2lB7|
z=;%i$KRR1E<pn)g*;bk-uQQT#VO1IOuH@Z_UDl}{e)J^o>&JH_;_oG6AfLr1z5VFp
zhkc#8woav4ZzPn`kB0ul>g&}YKL-1;nBfpVhWas0zLxQ0m><La80*J4R*mpuG|5Om
zMv=5wul8k4k%VIyE@b}k<dgiE?8gK@Ci=0@>i5EWHHEd(WU3$1wK*R7xif?MTtDXd
zG1HG(e$2L<b4cWcN68xu|9plEt=a{Cl%*~mEuuJLgIeOpQa_gYv7E{};tD@j`?1E4
zm42-9WAg^(=iueXjr_Ed%xkTjS2w8jer)h#qaT|nZua9jdl6fSjfT15MkOx^+U7Uz
z*|y8-HCL~*8utb}sO%(m->7!`vB!_S+@*(!`-rk>_xo{x{Gg>ABFR<-NBlTSZYOF)
zhaXN7Y3uSsY(k{CDe8WBtXi+%xG9yYfSgJq28>(HkRM?`UitA_4vL->@#C&sD*cH1
z5%VMN$E1zwlpm)_62xP~<9?hVIZ0f+QHfJ-RL=Nu$&a7>IP1qbKXz_Z=lyum78m{a
z!H)~l-A45z*FlIBS)6+tmE%hC&lIl{fAQn8AHVu>#gEJ-<rP21dS3P88bjeCN-;&j
z8-D!m$4x(O`Ef@EFeXLJg13p{6mEup$i<)89{7>8N&V?ZsZHw9Gn?=muWS$H)RxeX
z$A0wRr2aClGkE656E^vq_zzKPrQhY7)N?=NC5-tttMDfELT0x~y(C`Qq~sl=vfyw0
zKmczAkSbuTf2IIZlL${HNkdFaObQ^KRci~NXT*5ZmXs8VDuDC>)ZVNzSe}d|9X6}X
z0b~gvtEJ}-Ae+Ur2atn2r={c~>AzX!A$i-<^9Jw^c|Kx(VgakRAW5MBmTorY^=`m;
zSzeKVe8rShl=vR;ePZvKhF&~?5&`+Zi&6nh3K$>fKM26FS(Oi<LIAb0*-8`31n?n=
zC?AoO4dA<MwsHY{9Ka_5Jgxk15ktiQDg}(2+phAuuFa})01X0Y7(kT(J`JF10M!Bz
z{fhvqlL)UJKn;u6l>8RIvsp=P9fqF;P&a_j1HcwTlp>@atLhVrQQtMe)+m530ellc
z;{cij&@_N%0nFZ_ItI`@fEEF?l^;w2v<%?O0NRMtmDI|@)+80T7@KFr7WI`C%B_2Q
z@(z|F1}P$TqSBf8HSzIY<6*h30dxysPymAi=pMkg0eH8lzQi8HUc{cVk^y{Aert=8
zpJig}%}_|60OWpNNIxq5i30){NTRl?>RXN4Apr~xV4T%zSOBBRhX*i%WMlxNtlEie
zvSF(lLuIU`%O`^I<P$7?B1!6bw#fncRGTy<fcaOGr^-GFV7hF!0PF!ox2l-|%nD$2
z0BdBO1DHc`MF4XHm>0m}0G3EYiVKO-WC8c85Gji&%8p$cz_I|A|HoriiCJtbEqzr0
zrm{AGbpdP*$VYy|u%5UnfDHj`4B)?QrFJuGw-B$e-|YeH3Sc*t9RchlNxRJ$(w+eJ
z2CzSX16Cdp_XSX#wFl`uL=?T+2-{)uBb?MxqD-gSHszr148RqD7Jxf|02Q6+k>w>Z
zhw3Bu6Wg<+h1-n9k;#Swh{)muu{?+<&+BsmoF|C|5GP3x-P_c$0FDQ6g5gQxS>mYx
zPRkg!sWU{mIGDO9KLl_gfDeKw9mJ0TTnykv051c^w+)wwzXtFVi6}n@@QcMS2OuwJ
z7x78}R|B{fz;6LO3gB@7*Xg-Oyg}RV0o)82?{>cx!0iC;P?S)b-wi;D$p!xi;65Av
z8Nfpl5g%9{!>|W`QU8bdgeZCbW)gEqPXl;n>CZ`|3-P=n+Jbm()xMFdN)T@ajoMT}
zq$Lranj{VJ;d5J(MbZT!p%{{bNC`p(kv@pGtyUR=$Qm@}l95WLATkI4T_tIfg`$ik
zTM*gFa}aX}ku!)~L1P`nCdDLqEG2Ic?*x%Ai2OmkA4IVr3b0{e!5|6-QON4WY$yXL
z5=7A;-lI*#{}ri{{KbPP$*K}WQOtEKW#uUo#D_r)V(mvklntUcc{$79B#4iL_#}w(
zK~xB$b`W)fs2D`0AZpT6IfyD8fAt_frBaP6Q<ZppoALd;c{F8gHLQMX(P<7w44(z@
zMG*BU)+K&UG^bfVh(-(>1ksR0l1nSIws8<<*ffY{K{OAdMG#*H(ItqML3|lR+aTHn
z(JF}6R;xA~n~dr!Dl!bSv}Y)KN7F!*s!l<4<{Zr)O|uN(n;^Od(JhGXLG%pbyCA*|
zqK7p{v57~DNxo->URF*?C3+wB*q7LkDE|H=1Be5yY@!biVn`4}gBTXX@E~RfF(-%-
zL5vJys?~N>5MzQE%WyPNIvN+m_#h^;>j^<j3}O<wRGIrkMq-X<iZx9Mr?L6;AZE}!
zGl*H%;H8xmX*JjCcOl8VAm)=Suypg+aEpRi9K;fel6k2`WKt`FSQ*4GL0k@ERS>I#
z#wX%L5Nm>1OYSGG3t~$UTZ357a0788aT8HmZI;F7Hvq!71+gcHy{y_E#16}|Gl*Rl
z-yMYcWrFzk1#u*Zqe1Lv?E%YkFo;7IKODrXZU26Dwg=(1bVm?Qa+jrOK@{HpuT!V!
zA$o~EV(R0@XYc@dkQfRgOcEhRiQ<U`5x02R?dll$aZ5Q7#K|B|F+3f_c}qV-a+Y{5
zh;sZa|3eTL<oZwXC*nn-^l~W(`Is-{XDX&&K9Bqw#FZfW473T)G~RYKh-*Q}uZOO+
z#cx4e58_4;zX$O+h`*%wfwr5ng-C?oBDqbxLu|ZV-6Q#fct40ggLq(7Jq*IMJ+c%@
z@<a|(5UE2(aw-3?>ILyB@mUb!e@>MAFXb@Fl|P6#tbL0O5&Ac?WRNaWg^VU9PeVi6
z5RypJg^)~QBbpw;6st*w5Hf~PC4x^Q$P_~65Y~jTHjFGGWDVhN2=_wB7DDzA=7+E#
zgd8E{454}mHA2W0LhcZXg-|?Xyx%rY2n9*rCgvrI{!R$_ES^7v0_4NDE2%1E>4iz&
zB^C*xD9L-o_lc|MmnJ0`Rv?xPp;QPTgixBH)RqgOjKx1B`6z_4Btd5Q*sA>`g!1HO
zt+cJkuoAH{u?q21V$~3;g>YrNdX(OHMQqIwYK71ugq9)Hra{C8Bz1_N5$h5^58(@v
zdc^uf@fS%XHMDr65E_#=AvU%2W+5~uf5P#98A7WNMujjsgw`Rn388NY{b=|qgw7#+
z9YR}%?TGD((pLwPjv;g+3GFcsnUpRJzYXCV%h@%AZWixOB2(@WLQnGVh`os46V(pY
zn?$np38BOe<H+`>GL$%gIFLAqIG8wuD9yz`jC?q81aTy>ekEg^W5{O^B^*mKE`;$R
zObB6O2$QHxB~A`uish8=nHw|1v=F9SwWc_e;Vj~8%ReWCxfY)nf_yP6-7O4ZQ3wY@
zI2gj>5SGxejkq*~b(Viw2+J+Lf@CFeRS2u)v?5;{f)vTwfU_2|p5cZNHj;?4DTK`y
z-$JsLm^XuMyQS|4VJG=6;%-ad6T;pQ_Awl@KUvED5CkRdp%4y-@T=uK5`rFrCxoMx
zVh_PV?j*X1-|tXb2yTl@9&ZS~5Ke?}G6X+$5u+gl$b-a?rHAEM>`)Qnx*aNJ>2Z<-
z@mL7QLx^%gOgt6B50>+E2xlyQHiUEJ=ZROXHM|hQk5n#(a4CeJLU_1C{bIHHnM9P!
z7Lfr<xe~%vD%VVB2-it&5O0O>yQ%w=ZiX<9yXdy1+#wlR34ereKZIUk^bX_C5FUik
zC5&&vcqkWGxrBz1Eo|I4Jr3bn$RK|apAaSdJA{A8pIXZ4ig+Hvix6H?K^Si_!>bTp
zTb?&0e^o>(RwWZthmj_XwB+fCNkr*IathkQkS0P>!cbwPXKltXGLd8m<FK-shRkyP
z|4&;}%pOLLFsg=8EsUID<O(By7zM(}9Y&ro-l6}ovdQBvQr-?DuQ-*h9Uo;8l8>Pn
z3WiZAjE}-78%AMi6-G%`6$xWiWn*~nhf$Q--m}JVrXq@w7nfo4A(;{kg_jCrnzDTm
zM(Hp_EEC3u^fcn*G=h?_To@mR@hO|gLp7g-QJK7a7!|_C!#0vfN<}uT#C0%xsY09d
z-k^$+r+OGQ!e|&qBkDETV?FX(Vbl(zP8c%Z&xoH>uS>jN(HP_x9O|`-s86v0(Olcc
zVKfP&a~QHdO~Ys=8Ccsqj20wq!e~h%!)QhFB~dbq()vIAt1#OBCu}dHmFIsrwT@wQ
zVwH?RT1nfl*`siCf?dPt5k}82y2&2q^E2J)|CT7f<@}E1`~RS{?S0+&bk-+~F=31i
zqc3Yk=@&+S@&RECBpDROaI1E37(?Xj*r|pRg$!er5Gf<V7#YSWDx<@YDpQxV<0wuK
zV@4R`$tMsehA}COSsje2P3?fmVN9W(f39t+?A5upX{;48le*ZJixS4{Fy>I1OEhot
z=UJZlVJrw^VHk_3ED2*N$zo#ZxyHxpWnoAWVunIigt3xiUPTmTH4QQm`5t3k80W$`
zAIADHHiWS;j7?!A<ouF<`_Gl{Jj~_`V|%`oEn#e>vQ5G;c7(B0_GcJJ!q^qY?lAT<
zt>oVm#@;aYg^{n_|5K#uKo|%AqaR`uu^kP=9)`})5r#7iEev-UF3W7*BufS%CFIGC
zcE(rwo-n+!^W}L7-cC!cU$*XxWEpcHj9?gV+)2ViVbt8I!g79*M8k-M5f9_5ok~!O
z)C!j=ALGQ2hjD`BB=HpSG*PzVnJ~_B9ZIw}cIFRZTnNiwD<pjwF&6E|Fz$qLH;iM+
zDHp@I6vj_s;~|h?JJru&{1V1x+2?zcuY_@x<X1W9Ta+l*7z+74jNdGNJ&YTcO{%2a
zWOyqKX?UA$h4d+DyB9`M1nDC9BaHj9$!FXClxu8Qp2;!z1L8yCBgw$=i!S4rPaJ=T
z@idHQVf@4O7e!XmsG{vP@dfcE@fC3i@FomI@K(fFhcv`g5u_$r42VH=DQP2ULT-y7
zIf8fgC9n7`IVA!WL9qymN02^(3=zB+F@EWpF=G7HVV(%ymQMi@Ox~$7Q_n)oO3X&g
zPRv2fNtEWfNODJT&YdLT!ksE_1O*}}7=iG2BFIM~JU@x#7hWiWQ#;kWR0>C6Ru!Qr
zdQs{^B;otaFRe<Dh$u?Q2ug9NV)%f1Y0FlIy6jKcAs<DIeNr}pawH!UMfoIx^5hjP
zrD6n?EMA!;{Vr8Cf@)mbb5UGPu~m<tMie!ps1ZR;S+odhM-Yx65<#7a@qA8?i2RZT
zpG6?gf!B@T^9a6(pk4%BBj_fE2pUAtI)XM4G^D4o9Hs~wk;jVJq*c=hnnmy>mFC12
z5wx^Crc-QUZpB)ul2FQ55wwq>1H-n&c2=v75p=T5oh^Tt2)-tlRJEoV8NOk-a)`mD
zqwehYTdSdn-^rA-*(S;IM(}+Ey&~uxL7xbQMldXbzN{TY>_-%Hf06+a478MwcB#P@
z9}+Qs5hFG!!y_0+eMAH!BY0RDqaqk>IVBtu!PtoLdmL#Zp)?uK+6hcDk=)d$L@+gi
zqY>C6m=?kG2-ZfhE`k{m%#2_~1Z{VzSrN=8Swfs6`;BC71oI-8&yr(u$^wc_^(5ia
zY7s*ri%I(KQcEpmSp>_;*X}ZYOS{t2S4FUzd<{{mr1|;?Hbk(G%Ekybk?bOFj$j+f
z7NVH9$^-*RLbgY+gW}EzE>jUv$ZpHICxX4?GGM9NPkw-SFoHvzl<0>eI6`qwAW4cS
z^2D7Z0zHBvjg(VPmKDlH)QE0k5qXquh4Mt;jld_DkwUgW1i=XW5#*_b%_ovX2}K}9
zLg7+Gj7AWP;KQi#Ga?>ALK;SmYt*p_jz{o74s--3A~-3h(i(N<dh)3VPDk)t1lJ=t
z!&C241V2S^RxU3QoR8p#2!4z}+hzRD>jDkJOASpCyhz=w`Z<DMBKS3eE3#ISYCUr9
zR<(Dlt87?4r|o5C+f}(@>{hj&CtqV8A(Hb(1UDnN6~XV!CO=>1q)NFR!5w=3j9~lV
zl)Dk!lgqwb90sOHXe##^it_8ZlohXR(;M3!MesO+EKy{Q;;#svM35?q)KUB$!9Nka
zir}>z*$AFR@H~PS%s+FtI=owzwxwL&t+MS=FC+MPk7~F_4ceo6%)y%o5XD<j9D0;g
zKZ{LfAp<_SFs0t*q%={ajUqXU6fSR46zQU{Me+T~6!C=KPFc7|ZP}ybj}%lC>7&RH
zMaC!^ys{mp!Lvt=evpj4#%g4W;^Vz4a}>R^rU=OvMfNE2MUg*>98u(q;vII8D~jAv
z<R#BTl#b*g`8IjOy~Y8O5f;d0lQ9b~5JkZ#ib|8I#*hk8EF8tay-He%@@^DGtUTh8
z@*d6aQ<t!K6c4;fC5S>wl9Y<#14}7QQieExulgv8vQd<i=|s^ttF3wzpO93DqGA-~
z$wmLD11gbMjY4?kD3(vORf(cZ2cy-etP;JN<u`S~T2a)FqSiijG>SS=d=|xbGi`gK
zs2j!SQ7n@@QG5|ay(qfKyrQTtB)jd)C|b$NlS|kzibhd1j-rXBG>@Vwc{5A7v{$vT
zcuSHydsW#gXdOknDB4HS#;W~_q%CnpcAJzAQ3#5;BS|M>=P1PUHTio@lo+~3(JhK8
zQA~}ZdlcVBF+7S9QS@M{Ua}dY=t=$^QAYkfi8;tV<b!32qUcB7UpC}EHIRG&534kh
zqdbVZkReeFr7kw%!=f;4Bcm7<#RS@<YIGFiS;j;$mZF(qoaL9aVw-6BCo$*bD8wec
zOyd9+62&<^iWyPNjAB+4vnkFe&LPf=VlGLceM-zy%-JoVX!1o-EM_RROGuWoYYA6G
zv66d0{>Ew*#SJvb@K!TiLtGohIug;>lSqb*QEZB0a}-;s>>$dr$P~5`w?(m?#GIE@
z?PR!%xSJ>oxHoEi5|OfxWIyo$@gVUK@o*GJNX*YWcKH)v?qp{a$D%kMg)0gz3U?H`
ztXL>1LG%#AL~j(nDE#DsD1s#BbNC^0^MQP68(|nF#-fOm)J$!pl_F2D%O9%9V>9wN
z#|h5jWE8#jsZ&v$j^a!di}tDP8B@+i5!$Ej?NcA_H!dva>HL9sA&MVKI<e}fD1MeM
z&SU0z{1V0GC}J_hWB650z$~^GQM`=eirmgcjgK(bqQ)Q8+$aBycs+_6B)=2IbCcv&
z6t_w45bqN25&s~{BkN-RQ!YMH<1gbLM)5R?XXKBFkL9NT*Zc|b?<l72SO1X9@e(d8
zAQuoR&$)}_PwiyDucD|LL$#Q3SYOlph6pNe#gHn7)G?%qA#Dr=Vkj6xQVi)>n>Pkq
z49Vm<Vn~TW#gI9MEHR{~C^<96kb(SvBgtfiSuIaCOA&we|L~kK<YJgRhCC#16PN8*
zQpEfY!+bKH9>)0dTSR!F7>dMDG={?Ti1Ka>-JcqtgWjW3B8HMNyl>SOi=jBVnW|I_
zAH?u+44=eMI)*Z=Qa$it3?Iofd!SqlWht6Cftf{@{N-b)z^W?5iZN7*p)y;E!SsvG
z<exH+h}C1phG`o^yBKQ3P&0;FG1O*;uVThC^L1jV7eoCR`udYTBi1E;PW*!S=`1ve
z89Tp43~fKKH6(9DY)ouIY)WiKY)(9z-uUwtY0@%=FWI&gQIyssZDKgNUrG4(EMoxj
zL~HvPddBcw3?1YU&$M-np;HW<W5y-rYYzJk&zCMS<T#+Dd=o=g@@|&WJ%(?|dsxb{
z@hRWO&`XxWle9{XW^P;W7$(Osg}jf<F@}CI^pD|HKih~HM#eB8hJi5*q9Wq(7zW2M
zB!;1uGAxE^Z4LiI3uS~7j-p{4adZr0NX8PyDW35$Oo&0aG@nRa#7WF1;#46qj4Ezh
z7{l}!${$cOW0*xUgV^bST693oxsp6PW_)y=L!3*La9#}aExsTo|Gq5A{CK-4hQ(aN
zCB&t~WyIyg6)~(NIdnitks+;)VNDFbA5d#!*uY)1PIi$yNp7~+%SaBYCI{8V7&gVQ
zIfgAUIAh2ZNZK01HcsjQaeEBAV%SZ-BZi$MvPv@dJr>_bvX>|;u-_u$IT*tshKFM~
zN^-<nC>fzW28U&qhLYA5gBF8320eyw%($QT#Ndq~K<<m71#kHM44>6D46SP!H~+yH
zLNW9{sElW-`6(bG^O6q&F_^YQ49DbrIgP!iaXf|-5+29#<2V_^DLJPSsGY#+7|zI$
z;&8@|Z+OnekS&hvah!|cd<;Lta3Kc7@m3r^#&9u)J2BjiVMh~nN!B?g|BEK+rx@lP
zR6ob?OAMFg;vd6rJSbPhnJz`jwHU5ieA_`KiiFo=xDhkHMcL&~+Q9EmZpLs+w!uMl
zTaL>(n|x0qT*$o`{)pju3@>81AH$z9{1wBK7#_$;RM57%2Oe5vRu4Ri;W0zuX071g
zG5iz5Q@N7RFZhhyG|1mS%K83M4vLiQDYI`T%f0C97~aS!menRVpK{b{H&ChKupLsV
z;}Cx5ph^=*+BlNpc<+#Een@2?Nk_EBksL<~xr!q_iD?t3NixPEJX0K*NwUO|HIB(l
zCHm1rDn}eS<7gSjmvQ8ZBX?Zh#H}jEktdF~<M=pkJV>86j(6fH9LKwH+&QH3#Zf43
zTqyEO+LE>c#DYW#Z_h;KXEvEpkvNLRktk{VKn51a`*CA}r4FlN(&J$zr6fu5I7*O6
zt*Mu?l+tW28Op@*VH_VZEE`8TOD{XvCPfVI7E1Xfj`A|XLMc)z#L?!k5>hFS%5hYQ
z<5THkw5@p@RpY1@#}{$bi=%oRHRAX@ZroVbj2n0Iwd1H0M=f%>g%d@}XL1Pksk(8P
zilBs2<c6(2C)Fs9#&I;Dtsxcjj!tIOgke*5A)%CJaY#cUEm$R^T6S2qilcQLL%H~E
z;>LdH6-VzlzKWx59PQ$0A4j)1y2sHWj*fABEhCJ}+qYGxI69LEH}eaT`~Pp^kSddR
zmGy6;rtLTI+c>_9<9jMSh&_qj_8DeLWwz?WvGpaU>t}qp>qp){jsbBDBo}e8Y=eF&
zgBY4khLFqYHY|?eag2y#q)aM~32}^y%L}-b_=_D;LPp0ihRRstIAVHMO^jnw9P8uQ
zAbV9d|8L0);#f#Bg*Y{iX>m*^pFx}x$4ru0L}@acM0TU_x#aVR^DTW*9E-_U#IZyU
zZXC-QieFkSBd>f!NoXo7t=d&_thV@?IM$M{vlMB&F^)}f?1*D0H{|9xwsTpw@Y1(6
zj%{&dx@&wjAw|fn6~=zp6~}Jc>@u~+wmos&&MxnLR(s`$SH`|Lo@cU2*&oLN@`J=f
zmVP*nBNjgzH@-p?v!p#eG1(P|CdYlIEpGzuICMF+6GrHX!^<uAAP!#~{y5@tX2lWU
zFoJP};xG?uIF5*HCu>K^R*90!Zu#GyITpw9IIhHTHI5T;oQ&gwT+HJ*#S`ar9A|if
z$Vb1k(kV}(^K$*CDCd-vA9&tLm7H{f7vuOjj$h)qMExhCStWRx4S%I*HkVWKS{%R0
zMvCL6mG*iZH>|W~=3A_~OT2C6yu%?$+Iw;Q!K(YL`qMh=CAswSFpfuYJdWcpx%MWI
zlE9NV{*EI}!nn--!)vS%B=9tjXL2~=coE0zINr$hv$*Xg@fFcL`XWj(6{&qIfm8{k
zW;V$qo{2|{%YIraNyKzktu0|}8>v-P(kGB1A@4>v{23F-lt50)nVBRTF-rnjNj!9l
zIXlA~3H(ka7sK4dJVfz4Jfi9jGCs(>lR&-%@+VLrfhq~(j<;X}g%ZYZYAPn=<-)3P
z0!0!iO8zcUeih<xtlmqYL;|xGro5kkgi?x;6qh_ljj&__r4slcfzk<-OW@-K$|TU`
zsQQTbAyIxzi&B<c<}Umb@(M%=%O@cJGs+}_a?f8WVSGTSOf0)A`BRR$DzO?-rcj-v
zMglcSy!(uK)k)y91X>=)m&Z{zfzK1DbPSb`;fn<7$$6B3o<RKs8YD0&fyoKuBS6Ch
zzD%GMc_U(DViRK11e(cuCeVVR_*;_9JZk*8M9Y}**|~KB9TVu3KpR$lMQlrKM-)$c
zk`4)!<tOgW34EPEuLOEi?~=f`mh&5uuEcH$bhmVQ_)7BhNT8>se3!uY7T<nU^+}*_
z0;3Wboj|_?`X?|nfnhWZAP!1kpyjt8Rf7{4!Z3bR-g#;yA8yr-AQ8hzOOeMs#4sj-
z@l?iI`Z$t0{8%(0fr$*|DJd~anUcWf1hynFHGydfOqbdOmL{-_wwVdcO<*4REaL10
z=8#BRdFW-n#TO;8z~T!@a@mb87ALU8(t8d_5oI~Ub;K13tRz`QTuod<TuUs<B+_a<
z!wm^+OkflFH~W*NNYz$`LJlUdErIO`?4YujxYMfLMY5Z?hbVvMv(KvCPjVoE#4zK2
zQp%wO4kvJg`ca~jXivaFqPXDVbS0os5iZR=33wBDn82e1d~z}-a4~^PGz5qVVvraj
zhKZ2`q9l?hMiM7hv#VnX949}Kz!}SPlH?TeG_k&2olW2z`S}DcB=BPbKQQdhm7Lts
zc&chf$A7<5`iWJ)CGa!JFT~448N;s$Tp_<|Dc5BGFwgY_ZczN4_y_T30=GzR6Ymi3
z5+&O`IW*kE!tYc3Gl2(kaY&6_%=tKhzvN<j3>lB%NdkY<lkOP)u`=Koo?84_0?!k8
z!SDo|za)Q^z-y8>2~^Ex>^H%;j{Q5|R3xd1X^tT+Ns?82n|W*ulZh$Eph)ESrWe1%
z*wUG(6gY;0$B_9LvK&L!W5`A^_c3HA5nGO9knJQy+U7ilT-0TI$iJ<~a}587s`r3)
zqH4c~H!U~!o{LBm=|y@~Kv6)7fP$zfD2NCuDuU7!Y=F`cRGJDR2uM>9RIp3$HOXX>
zNirn~z4zYXzvl__``&M@v-a9&pXWStdZwO~l4xncasia_a+MWQ>p#U@%*#+QfGPo0
z4WN=|b6)_JJ)Sv4wE$`dP$z)u0o0Hre&x+jGk{tF{sXeh>8fr3^#XV>fQJIOKY#}U
zXeh?@1K{{+AV{;b1^vuILWS5U04fiAN2D>M)SCp*G=TC!R0!hH0Gb8xMF3w0&^&+^
zV%#f$mO|PG@KgYg32zlZYawj}+X_A|_=I4IO=u^Chj>y*v;Wl7LOKV~C4grF=n%lO
zqI42`POzh3`%Z4jpBGN@!vBab2GApbR|4oN;!B=QHz6+v&|OGP`N?43S0(zo;A;W&
z%tU1jydnHe!6Bl&6+rI*`ULQH0Ph7bNRr+OpuZ4$>l;8nk7u?_84$ogQQj4tCVmD7
z@O}WJ0vH{@2LXH-z^4HW7lV%i7#hH^06q?2h$ssr3twFPBmf2;g~NtX5{3~0j10K5
zfP;izFA_78VvJZ$2w-dg<HX>zfV=LE7f!;!ZNxtJ9MaXq044>X1rQEkasX2T_%(pv
z#9(Rwa{`zfz*hl$%^AuqfCBg~fSCbI3t)Nx-v->xTV_ZS37yj+w-=Zt*}o59b^zSS
zg<@tflW=PP5Wu_uehlEJ0OpG&^@Rcc2eDe<&8$VD|6i`f0W1w*SpZ8!|Jln`cdOeP
zzeqGQt%%D5SP{U605;NF0DnmFRt4~<nEf5VKSKTr{C{gZbNw5@f1<OREb~g?^TzmB
z2e2l9wE?UPV7-V;rOp49jh34N*c?DWQnv_h3t+pDtx_Y7_8kH2WM7ELGIN}8Qyosm
z2A&cW5)#z^Q+fcA0L}++L6m3!=>T>IU<42oB_4nofF(TPwVN$bCxE1<3=t(ImF*|v
ze@_5=12`GLsQ~r`us?vq0UQyt0|6Wq!rHM-*rA7H{BYnM75%s%%YTfWIOfjp>4^aU
zHPW4%rzQ2Q;2F=7N#}%TTI^x~mjcKN!XLzCc1-{XB2UmABv-}kI>(F<9)jYH0B#Do
z6~JvF6z^WC7)bI;#sY$j<_jXfaGqi@>hq$5b|E{6oFMKAqC^lXh}<BGie*8;LP6Xe
zbgO)qMC+||=TzY!ib#~Mx~^226V76y6!-MuE7iS0l$2=MAW8*MT6h`3Oks!_LO<n#
z$UGaW7(}I@yLHb4LEINaW%AjoZV*+1s2aqSm8wn<)q?JwjT(a01v7WOY6`Cvlp93C
zX~yTXOx4G@*Rb`1_+_QKUkpBJjQT+|2%=#S4+h<PuwM<#c_@fRK|CGAGeJBY#3MXo
z58{a+8VAuNh!#P#45BF){~-UsPBj<OOuRA5z(WwJJQhT&AX*2}CJ06|B6Be?no%gW
z4dO{jC2uEwXwW{0r^JTdXi4lK(T-yItSHY3XA<o@c|K{}Ip{u#cr%DzL39b?MV4fv
zudCo|LA)e{O1B_h_IURodU*U5A+L%Pn)Q_E>w<51Hm6pqw}R*$#4<K!5PgDpJBYDC
z_qDfog6JE>yFt7cL_aD)3=D#I(FaJGXRUJEr`{^nf0f!c#Q)nWH7JO|L5vJy6w6k}
zudh<?2f=sqJ_zDNAs+=XG>BosKNcJ!$Yas$6XC-JKa~SfWEdfZA(=DD?ex(>jFAE`
z*R@ru+-fy0h|hu;AH;+peh7lM`aciiiy&qN!BRC^t!VkBIGISdK}_brqgfEsg19&A
zn=1Hq5MK%DwOUaeAvj%>?}C^q<l7)-2w5Vj8T&==XVLz9DfVo^IYG<~g2iT;GZmZ{
z#QY!@1i>waDE=g5q2Qt*eiXt&GIenfOC;mZK`iw=WSkIxWsNvghWNJx!RB2a#6Lm&
zD^*?*#P31;5#%4rs6WLayWlTr0XD+lLa6)~#L6I?)oNo9tAwl(TrKTGoyAxyd>x04
zko7_~2xt3m3SzUgKix85joK;&;ND!@czb`A+8)FXDLHGpQ^>9$GF1ri=6?`7HSE$5
zW);{?A$%D^B#3Abr-L{Xgb_q6h=V*z(VTb?2^k5ygD|Dy>|7@ZOE`~iXGX$P?(>~w
z5D%<TsUXr)R1Q?uWsekTZxH)}*iSymZMOqr$<}6dy01~ZWql}!!$J4n^^u@^%i^fu
zu^^5IaY8u7lR^ILhax#83OSR`262vaJcOr0I3L6XdJb_*TU-p{QV@khC=$ZuAg%<F
zH-vm4TxBujtAtxZt_5*j$PG`w$>F`-{cM5ZwulJ1S@H;evqt3?Ld73K0pUKuEYE;R
z*}`)|P$A@oP*9?ULf|LicL^tw)ADYQFj_Q(Vj)xyp@!HL7c4D!k6;PGdqXHGq?90?
ztXQMU2rnB#IU(gks3@d@U}BB?eN83dB=-raELbIks-9jg#J@stEg5QtP{-4238@_d
zKg7tS)(xSamwNyI=nX_{7D7WI4~Fni2#q|;#zGzzd?bV;p0_5VG!=YQu*h1s7|lay
z5kkul9utwu6Ctz;p|wQYgz&hKI%`!Y37N9B6|r3iboC?$fVg@(gl9r{GlX6tbO_<u
z5MCCu=LDJY#Sl6Q?<DxV;0uDC1-l4libwmdA-p6Cc{d>}Lw6xPJpGjrUJc>35PEvb
z8$w<e%ntbKOAEXeLhleh3E|Ta`h@Uy2p@{UJA&^D_7&_GLjMp32<LGJdM%&nm-j>;
z6vE&T-WUFXXPIg0j$81Nr+h4Ah~Ur=hIx8_X|CZC9UH<3Pai2{R0yMmj1g=RxHD76
zN%XT2#tUKDCeU)N`aFbJa{WK7RTD#)6hdAN`7}%pVM++wL)a0*)DXT3VSWe;B;(g1
zeCK)iCWL9ir-!)hygMGgmFNt?j51UBtPs8zGCPDhA<Py2LkJ%ibf*|UjGE_hDhoq=
zNQ&hltPryw1(${JlaR%N%(WzhpM@{=l$Y*uz5OE5Uj=^?JSk=SUHGaH{s`eu;eQGK
z8^Yg0nD-yf+;w;6*MB0e41pq(R)?@g$l4G#gs@TgI>GfJWCje)HifW7#LXdYrS7`Q
z;8qd03ASCQc80Jk#Qm<-<q!fP1Vh*(Nwg0Mu|v>82n*K*V}cREsGuRp8+~yh2|-iP
z5~Q~t>y+d1q>xky=@51c|8SjRpxNFK_E8b>gx~?egMu_TB;>H*5y7K^#{`cH?&cPA
zA)E@~v_#Kw!54By@GJ+F*R~h9{)?FTevSSwNtAauuka@zgli!r?s0b_x)H*4PAEC8
zCEjGSOjEZ6Zwo?ml{|ucGl4w6h5{PKY8a=%r@4(>O+$4JSsMHrvNiY3$wC_L7Lp^V
z1ambM6hec$nB{Lp!cbVlJsL_#QW3$T8j5Ksu7Ue9oyp@m%;3Em%4jGnHYEj1Y3>Pa
zX+dM1DyN~mhDsXl6QzRKoL}c2sG{&IAG!|>D@$q>4NPLRsw9!njQfz+(9lK0iyCTb
zsHLH{hB_LWX=tvwyG_>BP+vm>;q?UX*YJQ4rsiF*8VY|%Ln9#%YInAgd|1OH8k&mO
z*t2gUgj<a<Z?*O6QBQBXUbWEBQbPw(9@EfD!{ZvBkZ5ZSG-#uN_C#`KZ>yo5hNs2g
zNx}9So)YrrdNogMXqF+*XxN!iG(4xFqlQizUeM54?4K9R6o%WHF;~t8#X!<k!%G_8
z)$pE%ZesR|hF3MbESx3juAzrlBzkyFLr)F;q^QjPx`tjF-qP@f*uN=Ay}<^zI=wZ#
zt?@--x1IY4a!(%ezEVvR2JY=c?5|;f7z`B5Y}z?U_+Sn1Yv5+`3?FFtP{dIhJ`%#b
z!!>-YVTgvI8ir~3M8l_&#IEO-#hIhLAe9{~I6}inFYn&5{?Q&EBZPJ22LhjI_)^0}
z;o~(-5JLTPAzujcYl2B!{5AIk?{5uLG)&d7P{Sg&Mg{*@8m4KOF8pi3Z|GCr;`mm>
z3=Q9Fn62SENuoYW!%UAed*)q^IU43_m@oPdf_y(@p7<fj*ev*;Tt8~~NyD!ie$%j6
zblNNxvP8qro{}lXGKu~oNN>x9{4Tgcka;tfe`xqq!(ZNUGl%Ar-+wgxtKmNlD>bar
zuwKIk_LPRq2PtcXtkK+$P^hf)bVfI7*rZ{rhHV-)YuF+-nU6=9`n30@$#!PZ?tG;}
zkx8@(Xb5WPuA_&J5Z5sdk1#$6BdkH!c>RTvVMH`UHK;Ih!!R_&G~Cc|Q$t)sLc>7~
zhdAt)DO1B<A(jSPgQFp-VYetuO$kX0^5Y18*+FrSm-@{HZjq|?Y1r>62ZZorjl&v_
za4phsQo~UZNlpnlCU{)%gy5PDif-xZG*>MRXGNrPP6I^}9+yYI;OQ4NT+(n^qE`g3
zYy6*Cw`|u0X-v)?GKse|+}4mcjC^4r?A{mRs+cE?yzN!z(SB|_MkQV@=by&z$9MU|
z_-LfRKp4I-vcmAwz6Y|y$O*eY=zLJ}r93O)TLjEikOtd)MFsB?EF^fhAd?CUDH6uJ
z-fkqt!YD4{J)TVoA>4kXR2ZehXdlK?VU!7@Y#5EgcsPu5VU!Pp<!mTeA&eSf)C{9y
z7?r}fPei6x4WqKhtFWeX6h($=B32j7h_%9~8%8}*YKKuL?0ybIOXB@uJP<|$5vgRp
zaH${WHeWu9M2cmG`yUK*uUGX@7`Mi|mwS(d(O7EHHjE}hS_w84d{nTRU~|D1f^46b
zVLT@M@&<Rmk=CBxCXC00KjA5AqifJE?EW%7$-1v_3Hys19zGq$GhuWH<JmBJhtVgD
z=fdb1#!F#zBQ8^&1iJ`6AI1wpsCN$YhKBq7&WoaS73A3FsHXU`L|+%|F4!ZCSA;P2
zRUxm1(NoAJ`C{meFy54CFTuCMcjilGG`=k&^9~5(oiO@_(NC2Af-DS^GB}U}MxyV9
zF-QoLSk%G)WAh;gY8YF?*cQgeVGIdlK^P0e7#hYfX|&m4d=kc|VN49W+bJ^)4`aOW
z5n+rJGAfL*LPm!%Mo7OoiacXKPRM71B{!-Gp8mOzFT(gz2rqJJKPimKVN79_!<a7m
zSDyVh98??C*Mb?((<G_gM)hqNGs5^zqO&}4W*AJ$Sbi_!fQ@R7HxlNC@q@?b37IcA
zexq6x#*bkv3*(nCehOo;%-NsAn7L71>Zq24-3hLW`H7tPOT*|PO99*V*D!t$;}2=x
z-@;h#wfPFK2mcghbr@^H_$!RRCHhYo{|Wh5Ftaw&+e(S9Vlg(l1Bqd67@I^~CrD*|
z7#oCd^ps5Y%@W-rNM(B%JHlwLqlJ#0VeATnC9k6+5JoVJyL1%d`X7cC#+fkAa{UiO
z55ox~$&oW%MZ$=M5f39OQ7Q(<|91C}V;B-)SfZO=>bjk7k{#xwI+vulGK6s?jH6-f
z7Ms0c>=UvljEphO_KR|eYl4u2g4DTP9`Ue5t&QrKkQ40CFpkSQOpyksL_aN<-gT#J
znLn&K$1dYirsI4V7s9w0#-%W>hH*`dFNbkO2%VJJ<OULk>muF=bH7J7dQ+me*d4ok
z3>lj|I`Zo%pu4S<S1_NBZ#@q_QE~*c1pPX)h0wnCPM;E<>nR0wcTd8M=eu>3(NR`M
zVI4(u6xC5o$Gu`%T(E?f>mDHsH>phBOL}@K9i@e{%o(5MbW|3lyk}EEM@5fU5^|p)
zOHxHgRUOqNT2n_Y9o2Qz(6Pg--EASYb<mjp+0-n2T^;pw+^^#S-Tkd;Dp+4fBOMRx
zXrQB^C=Zf{@sMy5TJl4cM<hz#M0fv4qOl;O3>lk8bu{~*EG>0BrlYHlmvpq!(OO4G
z9i4P{r_eS!9@p`N?k?|{oj=>^cv_MeZ71YO9qm2kDZ1kBf{WBMIy#8>td1vTkI?5N
zT5z+wedzNn_GZ;Z#|FRu1>OB2>nuo-oWJZZO41U)`&g=*WPDk7f8tplmW23<j#qVj
zqT^HDeUte$9m9n5q=Ak%biApfpN{^z`=xU)9es4Xt>Y~ny;-}>YUpO=%l0$lrq=#<
zbcA#KeRV9@thR4f9X|8(LzMx#`w)lEblw*-P{+GM-V+=oI9QNo^z(s^4_VW~{)%7t
zKhkk>v#LGG|FMoCI!G9X>Nru<C6`va-xUtmF+#^;Df37jqjb#D`B&O*(r8Afsfjwq
z=oqVG9NjL@{*v|m$X|Sm`i!GD>>DpQLGW`OUkIVjTlXi2xzCRt*rF!sn5<)pj;T5>
zPV~3iqQ2Gfm5#5a4ZqPbT?pHAniMiah%+Smo#0Hb{4Cq|I%eybqhqeloto4l9Y5%p
z$AWE93w6vFZ)|}<9n}KilRk9MMi}_D?2kHr5|J%4ev9JAL9F8v9Y5<>nrX&PYMFGz
zFYE|u$)+Rx%XO^a>Ka8bir;noq2pQv*CY5-$6q>Li=bx&f9v>1$6*~ubo{I1KOMS`
z2pg8(hWU5t?kjK%t8}c^u|~&Q9qV*#6@5L2nT}1K%_3H6i`vNfvc-LUj$yNoEjp->
z(|DVZ?Seb_6QF}4lW35!3GgcbQ9^=D(pU`P_2ny-DA%HHNbA_G!w@~DBQ7MN!|`&N
zIxOL~r*L<^q{mbGot-N8=<c&KKK9xxN!-YSd>`i^Z!haOAmpGRl|wrCAdKWF=e~~I
z2nt5r!Z6oy4o-2!=t-LCIIZK1DE<h}>Nuz4hK`$D`Q<>Dypmkt&=TIekJ}EHbzG6?
zRUOwon`=V8z2?u@+>&VC2=Ya6TL&V@6S>nzG|1TG_Y|Ly0)iPoS;8}B*%9P;mP*L_
zE$Xfa3Pn(f(FpDq@m|5gf<*+23UXtdVi6RN;GT%P70)Bw2*}g9eNai^r6MRDK^fuY
z1<MMuvgIPkY(`W;l!}6xJ#Z>VP$hyVB4`^y)d;FZaDN03MBFWLsz*>mEHfJf)r_E4
z1hqw}D_BR6{^_co@XTID^&@ByL9+;&N6=98hazYc!GoSXcfxr%f=41~>M4zdG!gv2
zeR3ZCpD2&gLZYoAXes2e|9@)h2--yOxF>R(9r|e(!IKemir{(C+Y5Gx;3*+b3)1s5
zLRgDug*@l!9ldsYL6oi$yd<QvV3!D9^ei)t*)4)sM0q)a?p|K{?-9AP%hRipnlXMo
zf;S@gHG<zFcr$`t5qB>9A_i|o@M#3YBYaC1eIj@}f_EbLIC5vFroIup8^L>G*)M|r
z5eyKX84?4%LktqaqkkY|a0KrQ$uuwbU-~fO?!xp@1P{q}Otc&l!BFY?VS=BCJx2lu
zz=#M&N_48=s0hYI@L2?-B|1is9>zx8W+xdh%0$5l5qvJ>3qe-@OCdDNG{q!|P8OUZ
z$l>}`1Ybw+O$5^-m=nR=$eopBdIaA_FoP|8FneYMv&8;8NzLpj`n@Q#BX@Sw<#I&*
zhY03Huvn7jN3bA*MG^cc(S?F1Wvf*hXY3jMDS|V<VnKVgB!ZurrM+4zxQy!zHx~ZY
zMOJ}<tM~E<Rzz?pg2NGaG5=kBZjIm%{sgf1x%fx0PQ-r%nQN7he<S!$$V$P>@^$KJ
z;cEo>1?AcZh+LM}N3cP}je?m^GB-uAS)%m0CE|YEO0q42?GfyVU}pr02+Rm}MGz1(
zBZ8n1T`&}ZCM5hnEyhNOh)7paAyi_X68HMTiolkR*cX8#giXCWf@B0Ki85E(BTS;V
zJrV2`g`BDTJ)Z}J9F!zBK7TBZaCEKpU5(&q1jjOE5WFaOf~Ae%R0OBlO`@D<zX+k{
zbDTS}&S#clDi=J3{89v$#qx@0Ph<X|FzH4FH#yX!7!}1WF8iE-QM?@mqHba8L{T@2
zJW=G0B3~5wqo^i&fvB4|CkiFR7e$s3ihd#4(L19tH;RH$l#QZX6n8~YD2jWdC>h1w
zQ524%SQN#@zKCE^LAFL_aMIg7qLlD-Dw(8GQIr;u3R|_z|8O>Yc}An|EMTY*MMdG2
zJcS!9R~B9+imFmh`lJ)OVwI~$QA51d6s+ZWt{uH|Mo};74)|B39qy0ffhg)n(IAQ^
zqG%gM!zdn%qInc8qIf8ZMv}d$;KPEA1s`FH$v470XcJK~(MN?hlT?1B+)|>nX)WY2
z!B&EtIMmxj@wjJGlHUbK@njTTqIgln_E9_+MaL+fisI=go)NJ_6weBwJwxUL>QemB
zGK%L#@5~y>84>-zz%G_gl`~&7Q|TJT%VPGDU^hYPEPr?5Jv=4z$^WZSye3LdPk%j%
zH==k`qP?Q%?dfj`dH1wCYslY;qOUY{e`#vAc|VEv>f^TmfG7q=@vfJ5XcX^7F(`_`
zQM@0;hoWc7{DEh~wc;b;AA8D>C@Au948uhHMDSC=;esQi1!yojiZM~liDGUPW25f5
z*|$;5kg|=7;xjQGAH{?yJ{LYIipfI0h~i5jbTUx}US<qW5%C+rse)e#el5sRI!(xQ
z!OZyNK{-Sjz7ug~6tjfT^Y>BA7G6MhBc$>}6pKZf=h@5`vOsX5;3B~vWo-Wxb<eJO
zw!DNBwi|wqVrdl1qWC3>wNb2#;@2pCi{kGn{)u9_Wc)*r$6CRw0O6VS=TA@nD+($+
z!=%l>QLGaEKQDEqmu0n(HG-LSjP~oJ*vt+RaRbLmA8Zu9NqjQ8Rid=qA!J(=+lBn!
z8n{!UyF4)zg~qvH;AsQlDD)^Q814t=ktm{3oQvXo6h;)WD2_#OJc@V}3AVsGpToL$
zQhY+n&)dx?EJkN5n{%zO-`zoCi%Le3iXt7w?kM(0aUhC4QS6OkUlhEa;zb|x()jci
zRdB2O%<*6phd8eC;wY!*X2sVC4~w@WQTLj3s9f3cV$FC;@#2mJI1zO(rBBjlj{j5?
zr=vI%#n~u&-0kPJCmlAD3p!qxU5Mgh6g~r41};V2>(*;gT#w?i<YgJIL~%9hUa>y9
z)qT^94sURY{=%Qfz)dLwuODwkaXac>&ckq#3Nf#Nd<OCxC}6mMR9(EdTO(eW^L<E`
znST5RiW+V?vkl}JPzG`hx82xQ1r6L~pornN2E#kj2!#x{S?)GaSP1<vx_GO51zOBN
zaRc`lC}FsbT-Lz721*(zZJ><dZkt1~l$0&gR+&a%A=y^t43sy(rr>Ray;~J8%qtqG
zWZ*snl?~K2P)`cUmf>}76$4cbRO3;WXID2+!$3`O%fCRXWuUg<HdGzM{m&hqJ671H
z80Fr2EGMgQzxZim-~j{m4K(1O%JDyBppk)w1|F1>hxTVPwAiK|Ht>jnRt8#2Be3Ne
z8XIWBs)c<`1xX$?(9Gk_g|slx(!gWFyKYkqG-G+#^=y1z$g|}iH}Hgkwg%oC;cv&|
z8fY(^e`CakV((0z=x3vGs6S)iYXjdH=wRSk1J4=g$SGi8jDb!Do;NVmz%T<Z80c)^
zT{<z)#lVXO-Zt=#fvyH#GVq3hjo1AQ-3+{Jpu0q8_raV#=waYBiN3<76EgOOYsqL&
zHmm`XOqAqJ;k^vJWuUi#d4169hQE*DB5kM;8TuON@9};t-Zr&#n;Ia>KtV=nHpl?U
zU{Nkz_p>nXi!qZvFz}&)j|_Zl;Kx1~;uV8DQ=U&e|HBP@DxB3}#u36t3XbB~xZ$Tx
zWYSmz6WA|BT|Q0>J`)_zc_+nopZ^;8!oZgXCW_@`LF$tXcV{_<DWXgj{7Nvhv)nWT
z(+!-VnSpN&%rLOTz|S1{24)(VYv2d=+FIW%1LY=Sj_~hg+|Cvy^BeKvOPFV1zJY}X
z78zI|f%XjCnx5Z3lKd!nY00_slXzGx3X_%^SY}|Gf$au<;Y614ywSjK29_IGYhay$
z6$XCiEHJRjz#j(wH1LnqBJ<Bj+(Yj#j+~<YzXd7&E2&ielNKOZEehL&sf@1iEUBy)
z8<Gt|Xh6Qnz-A7uYB^gBY&E#+n%Yx5r_ZVE>)RCXU+plk)4(AEhYjp9+~>au1Ezt1
zfuMnqC}9J-;XY#4B+4hn<PiggM42TjgpZG7o)TvvW$QxAQ_==(aYB2?K+-_U%awT^
zy_;ndWv_vK2KEbQ(gDxIK~A^-+4Hba1^<|l{v!sCa<MArKgKmS=sRwJ?>U#>u2{ko
z{Mq7Oa0X5pIPD#aI-Q&|aGuLf3=hX}!N5hXs4*0YxqW(xi*^k8W4LVKis9a;y(+zY
zTksldu}EDPyutO~z%AjAZC4CTf;h<|m{+jFcK5e{ehS3kk0Cn-U(9tvF-r_8uDBDW
zk|RkfhTIqm#&DNJ3kfm{zkB5o?~bALAU~r;W8lN(@-bA1;n~UlVlnq-b@3SPiJ?Rc
z_r_2%hB6{jFBNm28IdrQ7BLeoE4-W_AA?qmp;8RBW2h6ueNsF=yspecbjf*tyQ&gH
z)flSLdDvG=QmYGRv_=dyJw9c-8r{QfOoqBK)QjQ%nERxRTP*U=;~t2iK@9G{$SqLy
zW61ok9C<?#AB^E4FO`2b_eczlW9SjXD={>Qp=k_lV`vw{qcJp#p%p7Q+}}Kg7BRGB
z$z>liwh8aL7t?YclM=EFY+;J6rH*Y_H9i84;R%VdHSU*Zd{44>w)vhFY#+l@La00~
z<Qc&Zg7del=VIt6yi*L_V(vZv=VN#whR!i`iJ@x@FG=c)l0+vAw8=z?jK1t8b@wb^
zjp4Nz`o+*chMpq6B}n7fV|YXOn}WRrGtd3`D6_Xj`v|@r!#hHlt1qiRK8J*1Kn#Oo
z7%WKx1>cR~J<pOwdOwB_*zBTw7{f<GM#k{5kWU4N#4uFIuoylOLeHDFD+ZF`o-#tn
zx$SC{kkOvbEMtX_6Z|ZO@j~kDP!q%<3H^K-!$daDZcN^dNij^0Az&kDV@eEDW9X2;
zvk80^!`Cr1kE2B#-^4JDGbN5faZHcl+Zci|gkqQx!*?-kWUa6JX2viphCgHYD~9i5
zc(A7bd@|>k7-q*XCx*GAEEN1faGoH|=Etx=c&i<XQHDhl{Za5I!Nr10V)$9eQo&_{
zwC}S+@mRmc@LLQd49kVAh~al3e+a&~$Su;}F*MxgTNA@tA^!;eEBIdwD}~TtRSc_z
zzq>;*I$?(@_H6dL7`GBq>skFBYJ-gY`a9i4W>XBCW7rZyP96WI@BBB)W^IjO8;dte
zwcV*Y9P)3EVMh$FUdv(F$(FyBvx{xcA+b}<-KmHgJ+$$gF<3E#V;Gj@*E!?%`yw$!
zV>nSZd&f>?#4x2uR*VZ#JUcE(lHgpJ;3{?uP7H`6PaMe@&g@hr4c|HL0vAI%hTSpj
ziQ!NThhvEC^zV(K_%3x&_&(OUC-%p1K%z`7uuCy@^4I<&F&vd@p5;W2;dl(ExNaZK
zIT6G91vn|3<jj#ABExA>&Twun<PHXkdb!>1-W})p6Tq>wOFdxtF0#P8)Fm$dF@89&
zuEcOXh8uE}t1(;?!YoX>8N)4!-WDXM$RrY)<&EQ7zHEkqapa35e;frw$r1DkW(oS^
z$QJVX+Zgw@n@h!!8^@k}*%^f-qu(7z;W$diQ6`QeaqNuy?v0~l97W@9j}#*}e8uCq
zhmHJ;f9ft(g2!!_)nT9e0%x;?uaub8D3(2}x?(eyjbr{U^=KTU7yHY_Q9h0eaa4@s
z{x}|pqf#9A#nC?Ms~Jb&8~?^#?l7wy=a=BBN*q<=s1`@{IQH*S3=|n^NGhYuRV$9#
zlD&=~mAY}%6P_J#4OoEsaWrBrDyZ@S)qn*EsD^?M3O*#*DWDz}n@0p23pNpKD%d}u
z=wV(!HH#y5!2j)OU&}ZiV^SQu;%F5|>o^9+@opS#;?S@8*qA-zcs!0L;%F<4{BoSH
zzWdt6@noFeFsc(QUK~%w@pK%|#L+d*FW^*%IL9!$#8K{g&U0~ejN^qkI!m+@TkLwy
z^TJ7Tf{Hc_)Eh2x?O&9noWfaDUW)VMHPuaglF%~`-CYXML+};BSL1k12vhs+@m;^>
zdp(Xf;_gIacr%V(al92rZ&CVsdLJQg$MKG*bPTF~9`7H=0O1tr<h?is#j%zL%BKeN
zSZol(_e&ff&}~qSjAK+BAI9-f9G?c&4?)EN_Hi6T;uy-dWi*cALdZW6@~PmSAU_~d
zBRpkv9An~Gz^>Wp9~;LwuFt|hi(|Zysc}q*<MTKs#W6XKFXH_4MoknX`7#b)NRebX
zaf&3-8<Q9%`6`aD`4b?~X>nw9CNbl;am<M0yEtZYsLSDId7i%)QYoZnd&(Rka|M48
zoF_=1^v1IBSPSD=B;-fIp9B{RE)k^V&v7i3EXxF03>N9vIDU&`c^rTGup*A%h5Y5?
zb)WB#IR1{~A1cxX?1jJBDTa@h<o}AeDvtkzto%P4NnI_`HLNDGXuK}YZ)eo{I5xzw
zF^)}fEWVo4y+}4!_09CqG;3{0ZHc>QWn1Ie7RUBDo(n049dUj);Swg11UNnuzH}VB
z;|RtPibIph7>)DwX%&w1D`};3vd3{eqzY@QK%MOBnljh|aWtRlkH?XS!xY|KQ&jdA
z$+qOUwjht<@K?a&DIp^@wI`0fT!j*-n7}@+EnLbH__<{^SB3*|+=%0590%h#6vyE>
zj>K^xj*D>|jpJAxXV|KmI;3YGr-7b*ibGup`ALpINjfdcwDGRNSve@lxj4?V`s3YZ
zVe}GvP0X%|!&znBABZb)T>YQCG`lX*Et<L&$L%<>67VO01o9-@zRQ~cJ2%t6#C!?2
zEAuB%KvI2z>|X|^W+#x7K;Z<6BwR%$a909_#3om;pk&V&)A`+E#wa;MQHd58EGG8!
znMo}nt;YtuS4hbON(m{QKp7!r1<MPTOYp5)MPm|Tr3CIvpm_o<5*!Sul0f4Gnj}z_
zbquST3Dgo&O|ZIP4Z-qZRXcI#%>SVT>LgHCqV*DJAmsi89!Q{RSk)I~^D;2nFo6dX
zpvcq=Qg4*N!=ATCgt)m9?(bbQ;%(of36z`e9~$O+aq4PVojUD$E2OKI2|SiS&m+E8
z2|Ss=bGmBHy6CEn;NyZ%B+yn!y95}R%5c4;dPP_56MQE}J(a*mx_Vmh89|EACD1W}
z$rh$q=#;?o39L1-&cq7|bWUJ)0&^1RlE8}zj7ng10$me$DS`i@zMctmOSorfJ?K1v
zmlK$%tL_QDAEN4*enVHUCfr}}*Ajg9L(Q4*U)U(y7g7Ei>h%QPNZ?J^zmK7xkX{MA
zl|XOdeFWc0;BC*QS`qa1_^cA>pTK|w1}5-s0z=tu3A`t%9|#T-9Gt-WLSmn1m5wML
z=tEXnl#d062sX3bGPJDW8hj#IMu`5Y;BdjYnrkzXv!JwF<}nG3l`gxSrN$-jSprje
z0-wP61STZ#c>-T>kVI4>=FYVi5j9?Andf}nBI?ToZnySNOkk1_^2tJ`2&!22*9r8C
zsBaRue%m)DqPWCOlR+{)fo~Ih{;OsrFpH!2V$RZt`Yr+DOu;dwvc6AXW5iwYmY2+)
zo4^kVT%(@^<|Qycfh`GaW!EIIFoDGhED^Vh68JHJpEz3lisw;0oJkMc{UxI6XSz*b
zGrKkFTb2N8`X{TOz%LxGQT1yAzX@5M!0$pRt`PEip)7_!=)X`F#lI8yhburbXRYAB
zf~z=wgsc>taNI`&hSd^XBiKEv)(Kgkz=j0OX4xABHzhDUsu-nx`cbv=xO)?I8><#o
z+Y{I!geMp~rGjPxRsy?(2NDP-5K2HxAeKNpfw1V21fmJ(3Es4KTQ7r#DE})a5}-%}
zB5mvhoCHoJa58~p0;vQJCU7W$bb@!t6~q1nb|<hW0S>Ueg8L+iQ3e_ukSLQf`r!nQ
zdU=nCNc~s>$326L*{K9hCvd^DJd?mVkDpC|-ZDo&@8!Cfz$JE{=vNZBDmIxSWh|NH
zMglk4xu!d*Z*eHH>rE^(0TX#lJZ0i(6M0SKGg03}0~7g86fkkGiIOIKCbCSPS*c<s
z{3fzZ+-0JWi5wHkM6QW~rrT(x4OP!jEe$o$P)kk!R6|`d)ZHcun<!$UsEH?IYH3Vu
zj43Ck&c#$tTvd+qR9THW=r3;K9up-@o(rkDakVb4oVY4wqO^FvpNC7RGA7EJC}(m_
zP+4WO%9|W@s=6Ra1tAp$D+%5wSlL7sA+)J#qMGm-&9fL~s9~a}D78GB+9v7<uPazj
zFq4aQd_c+*OsIw?9yHOyL`#zms~$4Z*hCW(jZ8f3)|Z|Y%^oq)+Em?4#nx+Tf;DYs
zVvwmGH8EOj=9sEEo83|sE%lg*W|nGW;&BtL#F$Q6n|R)GTatMPSn3HAZB4XeW761G
z?M*~2b=gwNR+Viv(^kuD^^A!QCZ?MB%EYrKo-@(M#M>r1n&@PryNMnq*4XNK6J1Qa
z$X@{youyv7t<Kr1lB2qsc*#UJ6EB+>=cqZ3>wLSTE;=eJ>4y7~>J<~OGM9-rOuS~|
znWS2nR6R|6np9JSv$@_h(aXeJCVF$2rQE64Q*dTVwa(4{JEa0C^$v$qS`A>gny8mn
zeNFT;(ci>3Y4vkj8EH4yyV46oO$-zAp5P!8gN3{=$lm;bqg41up7ODYAs)|k`X>?{
z%W?`C?xl_}F;e&_!O?<aywuD97-!-$PZ@7wf{D*fd?CstPybTLL~o=`mgp40Oi8|G
z)ugrOo0w)|x{0~c0^bVGG%?G>3=`j(D7IVG+O1yO?Y6+c-RgT2vrWvAc{E|STE1It
z+pUi6R%Q06A0#i$=5e&_QSa<g3rsAOqbxG<qluq{a{?~r6x*YgnD|-9u|0~R#9sAk
z<LpqgtY1v<YV=nY>4vY~UNtW2`^`lAf3ugHSYhIK6Gy-EGwI?y|C4*wA140HxZUfP
z@NW*SBH90#_}6q#xnHi4{huf+O;kGJUe2!)<JBB{LV8NB^(Ho$c*H_u3mZ*r;yPfV
zgoVu}wwO3(;<$;eCbpUG>1f(?uj{v)h?_{57`j*OFtO9bF6tcfhx`!}x{#n?$b=>&
zEc&gve%df(NYsQOsZ?S@n3q3`KkZc}XK@o{v21%4gKfewk(6l41Vcu5_Nv_`_DI?G
z3LY}CPso131A+$yS^n&Oig?(>5mAl`PRVwwcEZF-6F0b+h<M7xITPoFpB6kLcvi4`
z!|V$}nDL5`i-MN~FAM&ZjjKXvb4|!~!EfYnx467p@L9Ocp8(4(Kpw$-f_W|XB%dNf
zeo=UGo@Kdb@5(~11;2%C%ROUfpiPb>WlrD=TDaRnVGDP8Vj&@PSj0k63&kW#SDEb8
zi;FAzp>nT<k`_klz6UInvQU~O^r^ZQ%2+6Cp@xN;7ADlsZgC^0oP|33RCx;(EL61c
z<UYkv*+M1Z_X+kEv5JMN7OII-U67+OV^0GP_|f~^Q=?iIb`(~%>DI#f+^qV!S<CjR
zdKT`tpzTw;5Bg5;Q#}p;M~1Jyg{f__8VEKNd{FQq!A61)vz7KMnl-V|lxN)*mvKC5
zafNqp<aR!wc;!-MziMuwg@u-q<uMDbEL_UYIv4Rb-LD!qSFJ6qg=%BrarT0RwwC)l
z`*(rtcC3YkXDoEE(B8sR7M`}SX20sZUwyQnOQ?V1er4`gXZE`j^H~eeS?DNviyd&4
zCI{{$@znhV3(XIzNftU==wjhT3tcVrq_Krh4ybPrsFy5sV}l$}FAKhEp}P<&J%qd>
z7(1X|^Yk+Z)Ek!j{~7}<47Bj3g<f*>w=BGE;T;RT*-atUN5p&w6*&V*Ukm+2>~Dcl
z8WUOIcP+ffQDI?}g+UeuTlmz%a0~BS_`t#t3q#oyhx{K3ek54ppnI42W8s|s42&`i
zW4%Nq&xj+eJE^rL%V<d*XW=soV}y_O>{p+2J&flF^b}_K+`<<U{ZeqEb!Q36EJVB}
zV)>_9_{u^#8|7_$ZQ&aWr!AbZFwMer3%^_V!@{=~W?1}S&9}nBcNS(^_{qXz3$r-v
zi)Ay+v+%vgXIq%#@wq~N5bS$U&G+;L^ycwJ7Jd{y^`JY{mst4O!g34ee)KOosD6$4
zDJ~U*WrDw0_|?n%8*3!FE*w<TEBcGK$mVU;Ke<F$NL$!#;cpB7Scq6W6+xjx>R$_6
zEo`&!pDZ0KEv(|SJ)~B1cnDd;Q7vR0mys%2Y##=a4g3kPu!)O52aknN+SOYfQYJ4a
z#fDDKAiK*UwVhMd!cGgj*gl6;g)_c@g&^lCM?w`p!;!`Q5J$)%HzT8A(RB+qI$&mH
zf6F0R1{b1)FU6sL#22#=w~&y57ptNi3#M>O@Xtfa<^m<Ik``#dkT|4z7Ic?BKAYHM
z;fRF-QQuw*`z-9|3TF7umQ_6#`}@Uw2P_=4aP5$4Sv~s@XL|MQ!(1K@yHRF2DjAPi
zI4<ObAoY_%P6_TRmvxpsWg)MPd^TzwR_86;<RCn(E?Bt86@yLPH0!d=xNjrAPKVVM
z4xWYnt-9|j`$G3!vv6Gq`3(zw4=a*emV0mZwguRje^}+QxuKA6^D!TJ&VAYWZ4|KG
zb-1hzpN%XVC2f?l;kS`(qp*!4w)@a$6OC;s8@aZ-G~H$6;$dYURt0SksT8ttw}>wn
zQVdKjYNMEqK}XcYBdR!E9Z|EE`tP-IkMI(Lb&sfw{^Su=+IH{km9eqlh<c(#_L?L9
zRYz3#h}wU|U0o~KsA%JJ8(-L{WaB;?kK1^HS!`6X@u-cKVP91n)oeUsqp^+ZHfq>t
zWaD8QHErZQsvbP59)BdemW|pr>e#3&6=`Uro{jr$G;fjBz{UeMFUNcg^@V(}*T;}i
z${$s|J7zs7xgN4{YL9PhrL0$us-Z_!tIAp5A5~3k{Bcw@weezy>;omUwjEWx+~%3m
z^DDEP(Z7urHpp8FwzBb<jXC38g{?<yEuPy5GO4YNb~Zj^cNo4WZM3)Xrj1@Up0e?@
zjqWyj*m%Z<b5wPrLmM4zTsf+q6(o7iMn{jAIi{$*Akmj>bQaQu<rG4*u0k?qwCrZ%
zWiN@*SJ=+SRF#{)5yuqCt2SP<(No0NZM-3bdJhRCZ`tTg(eRD3vGka)kBz}L-na3#
zjdyJHwb75Gf)7m1?EZoSZM<t^fN(Yib%ytBFl2Z}q`?O^KD6<v4RfadBf+79jD9R+
zh>aP?6r&8oY<%LS{&GwW7d}F8q~Jxd9L?$&zA-k&+U~i~IQ!12PUa+sk0Zz1m|%nC
zzT=AcrHzTUdy8+2jY&2p+n8sACk#{A3%OZe+xW)DRN;(%C1hwWrpY9lZsS|qov;m$
zs~NU?h5p)c^*#IUxcW|Trj1!L0I0Cmvst#|YK|y#1%D8v$kh3qDK-|`Si~~3@HT#=
za~r?f_|3**8%u1In1^2^%g;8(ORho3)lwVF*acp6$#J#wxLR&wg^k}ihHdPZr0f&w
z!8QJsIqtC-9y_7_w(*aR)iy6G@h{77W2KE%Hu|jb_dlVUl~JFaP&ab3-q8J4G4;a<
zwbsTu8=Guw<_c3#y;w}Gm%?m1p*Gmq$m!N5o194h2TrJTZg$;DYO9QSw(vF^+imQS
zEIS1$?(zt;gluSR*c2X2A#6jp5pWQ65U~;E_;E1Efng)Y1<gTe2XPw-8|OK-IRI=}
z;);(>Y|bMaCpoEYByFT@9JO(bi$+mZIpR;-*llAE7p{})0GsZl+RJHpQtcDmFF5R^
zqH@s2Ase0ADcT$sOOhi(;wRO_i@xLR9hJoyeZs~OCY@Bdr_^a1XKb8f*>2_Be@ZQb
z+u&!VY;8`dzNgfQYrcy%F4-vRpqPWptkF(?eg_2{T(NQ0#x+qW-nMa_W0k`)?mn2N
za#Q#%K}H$iAdllF<#k*$l6>^Zr%0!i&q0=hf(}-kQeP}`&u9D&vK{0&n0HFGi}-UL
zev#x?5@kk;t9n9}&%Vn+uNnSAf_DoR7AztdKBbB~a3Aik%;u7Kk8nmyIJnp2B^~^;
z$9(~S2QA~Ev4bWK$~x}ySk6It2NfLm=35m9RUK4xP|0y`j@{>=)M*tv?W-(ND&*B1
zRCmxo>}xov>7b5-x(;fw)~9_89S36FBiXeb7Y8pxJt5Q|5OTjDZK%|DKm!sUx}k#y
z9X#Zqk$9%^h>(W`GdAQ+9X#rw#~JsLbTbFd9lXg#aL_{P@|=T?4q7@Gnx!6d(8@t;
z2W=epM)Wfd9(VABgC`xd7p1LWJHZC0-Fw<k3O*&u)3iLTdVZ1BS45_E5dB%fuTHB@
z4wjr&TTiPl4*x{b|GeM}#8tk|!bx6q(AB|94!Svb)xm2Hdf(1@ndKKk-d)JS)9Mu=
zpO(+2*i-l$p3UnVBxe-$jQv}Vdn)p-<39W7?Vyi?w;jAg=f$(Co>4{a&F<@<zXOur
z=A)kjBKZJO1`0CDi#48tK72+EcJRJ~KRH$n-v<spbnu0PFCF*wfR7xEJ)^!kqds;p
zgiY#Tn1jz9=vj)de|+L#43C@4<`49zQtROkMmQKLe3XOH64(edU?3SQ_TwCUCS<&W
z2||breE3dp{m-b$E!0E@lN@|=R?TC<987UA*Fl%ISyLT+<zR+`?;L#XV9^=()TQBB
zwTk6*FwFtUbir>089jSO&2&(?YSyT;iYIlw&Z=1)FlW{Gg0mgW5kiHjKXA%Keg4J%
ztwpouJ6Pagq2s=c@tcF?Je=?!9sJ~AF?(O4zc~0=$TC41FO?R^5F*2`lEfAuUm^St
z2fs`B_&(PlWAm5v!ry}bIQZAWe-2hU*y&&wtK(p`<Ni?c5@U^nwGK8f^>5>Ba<HD<
z!4?O60cL}Pjhyuybqn3MUx*CU`3?**!?!wjlIUT(gB{|EyvwUF3um_}tA0G|K6?r|
z&>Xy#MDHZR?02phNt8<>;vnk4mqb<)24}s4^NxEG8+VXkKRWISuql{!u-kzpoT4qn
zagg+sl#tbD6;t;JKPb4@!9LGszmNlhX|X&c{IG)~4vq>x=HR#x`nl_zVjy8S>EM*7
zpB8dP@T}lDu61I0!NEnk`p$pJ!EGVrmxWw$aMi&z;nyA96mmnb{W(RmTf)Z)XB0`~
zNxH7`CXr9bw2H1-e&Gd@m?W0|B(jt4!`7}5e@+s=oKvNeD4m2#A~%VGNp~4xD3Rpz
zAQY15-ANQpqL}c)NfhyHHl1@P7o){Rxkr*R;=M_fOoE&u1I@}L(SN$1r_D9by955(
zIaNN13Q06f;=v>;CQ&Jg21T;Yoae1+R8FE=64jIL&CJf{Rh1;FGW&Vev`N<I=hf%U
zvTG#qQF(vuBwos!T{DS!=T$8^%7*i9kyxoZNkq@9x=GYa;{GHKp2>MYu)ZLZs5Fo)
zBo8IgD2b<%cshxPlXxVFwn?;0qH)rFi|<jvCW1```Ey3SSrW~YXdy~#L5eMfJeEW&
zA#aC$6dBq`^zkH~@GSio)RRf~c4&Jx)OY@R7gVEAcAE=|*U`_=j5l_Y=q#i|63+^G
zPOzgO4LS*VUa-o|94cLeznpYWeP0yp$|e$#N;gq>0^B``9!b0+I&;05#H&n7qNgZt
z2)-`(@HzJuB17h`V=obTXR=QcZzqvVB9-J)jJ`>Hmc;lZ`mvkXr~7>4k{FQ0z$8W_
zk+`7VP2#;IpDbWFXK|ivp6~I=;2<_d67MJRK@uOj<1J?>yHyDJ$3kAapvZ>^AACU#
z6Y`1R^b2am1;qwr5Ar5J?)_OKS&?fwye%*)iP1@1yr3AyBr(?G1unWj-y9(mlK7m%
zCW-k;d?D@sT@o{s_%ex!5}hRYwcupIDS}gz_(}-7tmH-YjmM`YF`dIzqBD~2IZsJB
z1tOWn25Fo11B-D{)x4;_XK!9qvjyh}&Skq@R1{}jbbnSBB(abKBkA6aUzEg;N&J<>
z-%0$G#9~g^Bz{d|38!!pOOsf}+1EgAx~QCsYVvabxr^@jFM3IJEuHmS63dfVk;Lzu
zS(jAV%Q;V9a#R0E;;l>Sn@j3gNjLhZ%z}IKXaAGLze%h~Vr>%tC9yJzRY|PoAug#6
zmsCXZ@)DrHWp(dmH{-e_)+ezgiLFVLs;f36(ebhxa9M3+BP6joiPpPw8eLYz3>kG<
z&AhC(C9yq;KQF5tN$iwEhc7EePhM8LlJ1Q%dJZNLN<vElS5$-(Sx7huT?khX>P8YV
z4y`0i5#wB=t|;mZe70yMaiL6>oy0Jo>x7)aNg{v2JL_9IiNi@8Nn*E@VUOTmK^9<N
z68nW85IpGVhlIR;!OsDFG>I}PluhAS633G`k;KU)a#Bz!oJ!(!5?7MAn#38FA<MPD
zki=P!pA&MP%i0z9CAW(bz2v1{X48p&Es5(Q=1aLwZm_08ZYFU{^xJ};it!s)R31sq
zD>y~O{3#Sj!6ynm_=RMputHL^J-upGf3EPtDHKVepzyl{3wbtor}%9}7M(B@O`(M7
z#RQ9cHut3P@0dF__oh%Xg;FW}C&yy0(kVoRmrJ313iTydg%m2LP}}oRDTQhtzfVZz
z6sicRD#+XTnKD#Qp@wH!Q%EhrPSdjMczWFw>UsSB6dn+MQp(UkxVq}L|3fJ>N?~yt
zOVW5ag-25OBZWUxXq-Zm6kbW;)fAeh+-0pR&93G=nnJS_ny1hrg=bRekU~o~P6|(@
z@N^2TSm3LwZOXlW&hgwjg*Gf|vFyhMpAcm9*{iBu${meQ3chnywNHUah2it7YVlR|
z?^X3|3U9B>eo<_mOJV<2)iH%mDLkLTt*few=r0H|S7#A39>{sWj=bPC^->Dm7)_yj
z3bn4O9x3oFtJyVmZomJPYl`d4Ybo?hVO9#?(^U#@r0{JDM{4`uOrci_gHjlr!doeD
z<o6RK=`ExWi{~ltq|n#n3zlTjroTi7q%hFa-xcy+3K@g<Q}`f-ktvKy;lmU@N`be6
zho|sy3Zt*7VN$Olf<IhSLsKATYWGPBpL(^PWMPD4OkQ*EB=d#a(J6e9!j~zGN#V*h
zH8zEDDSRfJ(FsDv3s$(UJ{Qt+U=EWevaheJDJe`%VUlo0C$s64+f(FUi8xL0>lD5b
zl1Z8_JfpDbW~A_)v?2M-6l&g;O)@)$IUF|o-B*$4vN|dJmcsHB=A|&7ZIZ%5HuZHi
z_PYAzx|(pww<v|XAI@%gL%n-L{g}c}9DXS*Nnz`CwM_8m6qX9HuPcfSX9a%|@mJ3M
z8>-X|wIYSc5#R4A%)X(<-EhbJ@*Apg)c02kf3rMkv`ph4PTmyuq_CHBHiebE{W41N
z2J)&DwuO9~QrMir>J-*Ubgkfq6xIn@FG#bkHxzMW3TK6E;UZx83=XH$zMPwCE6q~a
z&SqKc-;qKfg<uLhB}!#i3RQ0^_s)L`8Vf9XnA7m4(mk6_H`QRViFyjNOueaMDa2Dq
zq_FI!GE;C;ND8+EZ9(37W@;*h-4ac+E=T+sk(^2UIKNWvdsem5IFQ0Y4vZA8rf?{Q
z!#rFHM_Krr>ex-iXN!*>^{r`=mFJeKe@h)p;dlxsQaH)QKZOe^Tuk9~3TN03DV$3o
z`*nBx+~~>AcHBE5=RJkd_P5+2eJO>@B4#Wz#@AA~&Yzex%B8urh_Cl8bt8qFoZ~6n
zP9Zmqf@y%OR(X{_jRI-pNh5C>`O?^#opp3EJ}s{p$bD&KrQuH_C+!x4B6)V&HF!3E
z7PHevNfHSS?n<Lj8uz48B8|J#D4a&IG>WHDBn{dZl_Qd5oM#9RNB!7h+?z(pG)kvY
zMjTQsCAoMM+B49SB_x(l<CQX5<8G;HX;et_EnHtk!AgRR-Y2AT8dW@{Y8pj<buFu>
zF<aWLh8(4)AYIi?qfQ!i)A;?CYM91@Lh1?LpT+}1>I*gyq}kqEiuh0(O+;zr=?@Ee
zM6fa2;kIkW&{UL11)HVOTnKd<JeEeQG(Je9GICp|(I$<aELa+kr}0D@Jy_o~+NRMi
zjZSGi&nB&w^CWHVLd)B#eHu@tQSY{Tn$0DI{23t~1lcdorP0w-GGd{SuhVVyajWbX
z(&(H<m$W;xUKH$>Mpq#(2{JpAUKUQ$J&l34-MRK^8vVHbr!noe;tv)F|KR<;<+t4@
z3vZ<HPMUk!`QA*s&mb6jrSX=>dkg84#@n8<?Y5$EUph>qzhoSc#vmco2MT#NjrWAu
zVm#POeP77k$o(*lkJ9)!jUj1#md5xrhNdwrjge`LV$=E6Cuxk}L6N)kiL6iAp2!`}
znj-hq6Iqjy+hLmjC*-CM`+4O%I*qN!9h1h`G{&);@@Mm9HzLIeY5ca#|2;=h8lR`}
zMcQ5BzD#3E8dKAlC{Zet(wHnfdw&+AU#0OiXJQ&N(tNuK)6$rp#wi{exg;50KF^)#
zcWKP>QfCTb5(z`&>%KW@EL!59m&V*Qevr}oT%KG8-ff<r#)32!ipXB0*&^XTrtwo6
z!TQ-(H6O9|e&5e&EaiOPjr_Z@ERA2%xR}PJG=62V`AUBpe+&67jpagC2>vcegFl4)
zDL67u?mub#n?@v!Xc|{_|9@!&csSuJ1y`l9I*m2L*QT){jg7+B39e7$`#iZ@^W<(y
zV>25qjqPb{VHdEo^5)LSn|nP^Zk@cjTlVKXl{a?>*QhjhrBOa#E|0Y%Z|<$UE@5i(
ze7PZZ#MeqoBP?Wq=F`*MNZiN3BqCD{X_G`6W*RZ!aX}`r(JT&$u<ukFr_-?0cr#zF
zlSVR)R2pec0j@tRnC{yxcu;VU;9kLfg8TU^AcU4<XZ=5>&H`GBqwCrmoqM5icXxMp
zcXxMpC%9{n;1XN{1PBQb2ok|vgC+F1`=G)8)B95I_pjA!ujlM@s=B(mx<~HJ+&Je;
zxEQWYq8&`4iRoqNr~0Um=}RggH$$?#K0OqU3x<-1WetRqN2t-4h!I{<r#h2M>aAQy
zFO3&{iFM=8!S8uE^6k0*WKA|QeRzqFat}|c6;G;tl2e@0^qKmF3f*vIOQfS(Qca*;
zQcd1=NTwsXjuARW>M-fX=Y*^1sH!7QN4$;{I#TK=prfD;O-Cvn`E=yhky?j*E?RC%
zS#%6Zs-@A9R!2G=>2+k#ky)1yw*B9hi8V6kvPrR|1hVSLrX#zK96Ivo#s{ip%c&z5
zSw2cFpQFxA7LZh4RU@fcNi}(<y*a5SQ&&hwVIAdkV_J&nIGt3JKblDYMRgR@QCvp}
z9e0vyrFE1fl=}Zve5ov>qpS`mSyaOEy777V3OeM^7P3_&RH9a<CQ7DN(@|YF-iwxJ
zN;P!U)G<tl+-BpGX|;58($QH*Z5?%V)YVZ>M>8GGb=23<Ku04TjU`((zM&5J2!ViX
z3D87GQ`U%+JDDb-_$_p_)X{-W#BZgejgGbqTT`ng)5LE_ZZGGTq2aKHjyj|t31yMo
z$ZP7NqpOZN*W$WK=Q{e3yHk6}0+5*`k58sa&9*Y}qJ4D?qS;SJf5HGA0|`H}OlqDb
z(+10lra4p=On+k+vb{>C4cCoVMm5687axurrDL>ie7SFyjxjpM>c%^bGiBu@*UH^X
zK2FDY9TVi7Cf6qGSe@H=sW?%`B(9l?$&K?hMOMzE<nkS~sWRa@rtA1d3hpGIK@}Lh
z53&i!qvx*M@v^Vk+~XV_a|!cAbu1t+p-Rm{!XoNo9rC`Mm`immqqCg4lDdLg%4Zam
zH>X&wV~viJZk%%C$Lw)ybsW=iT*r4h*6CQUqhoSyyKba5Pz5&X*ra$fVGDIDb({2`
zT$8fzb?l(ClPdk}BJ8H_(Xp4XPv(#yP4??JpySWv+Ci!~KQJYZY=>zc5l5LvRoPEE
zPUxs$M@2h+*71v6CKlYa;G~XIQf$UiGfwOHRYxl`TAOi3$62{Qn32+q-*lYQ5zrCT
zabCv-9Xk8JsN;7X_jNpA_=k?mI<6$_TE}06OH_FWK!$o%$2Ep`sn>Pf)NxBkB9nH5
zPG*yKn;^w^2vtqSM0KIw(=mncP{$)?Ur-<GcuM%2`h+U2*0T7Sj_1mGNar7h|59J-
zaP^LpVzUm54yz8E4i8gy)yk>Eq4*tpa4~et{Vh(*A7_lvtHY;i`~*pb2p@HP(h(*{
zbVLa;9dC5JCBM?~noyrzNpJ6T{6|Oly<CZ$y${Ms2tPASV#XKc!;C~`V;v@@3b>pp
zlA4i>VRC95)nqpMl%C^NrJN?sj8tZnG^3Omsm(}ZMt(C2upq4&+04jpMmjUn)5$>1
zOwCBmL>(KaWg*Dkvl9Fx;&Lb_j~O`?=Q1O=;yrO%UUEL_Z8Z-C%_vT%5Vf!wMdTRc
zjR}{ns2RoR3+JO*LY6L}v>9d0sA@(vGs?22615z)ylPc}P|=K4Y*m?I6_q_svpT~D
zX4EjFCb^awbqTf2s6)6Eul+vJB*Uo3us&5n8B9Yn8Zm5aMl&;-lbcYRn(;SxAt1#q
zr~)ksZ{xK#X0$b9ycrYdv@@ft8QsiiuPQqbI-1c*Ih_ez%#h~NRd+Lbm@$%OPcwR%
zF-TSRCiFL>k8=8&(T}X9Fxn0v52RM2GnhPtI@F9|gyCk4APi>BeCjAVqp4%4W2w^Z
zIKti(+C(!ZnX%F=|0&Wq{K;m_GGn$GQy5M)V;W()8BbDZGtBsg;Su&flcttZlhhnD
z<}$U^jCq7bROxfR84DCIG-F*a<1VyVIZMo_m(n=WWy)D@mXFpOgON>kw91UtW_)kP
z4l~x!-(bc@GuD#7GoyD(ZJnxLPngUOH<7neH&eGz%jYzD-e$&jhQbMV@117sRn9Im
zb}Qav#%6Z7&y4*v514U?aFF_gs=S+0JFNH!0h)HqjN@j+TadznpUgO6hQ$mkvp<{h
ztK8(tznF1SwLK+|0_1#}F*9f7=5NMLGj5r2&W!VBTw(SC^)J=xq8Y!N@dv{yn)asx
z=|Q$jW?ZJzihW)sU!zL)x*0bV*LZHaO@1twh8cIvxNF8em3?5weZ>Rc7(G8^_{faK
z?D>fqPtDM2KBNAl>Yo!{P!F*9Uo&2+o5?v%Gc)y^DVrH~Gv1l;o~FYLpBa9#(+n3u
z_U<;rL-s1?HJb;_h$<&Y2vNh-2sK+OV|rs|yfWjp8E<I5r8Z(}5cNMgNi4>i{9wjM
zhM%a3XnrPtp@L4rtt>HlCOb)LK{AHPsnV5+5J%mfN=s>hW|8k=V1@;$EJ$rZYYW;~
zkj8?v7F4mIss-sRNN+)23-Vcz!GeqyWVaxP1({TzSqPb_r&4KI3E8Of=}OtDY&k8+
zLnjwioZJ??<sgOAq}K9VP{4vR7L>K1paq3kR?>pPgd!FcCCEil%z|R6wc-|(pp)cx
zV;3D#8?#z_QhX_zrK$21Vq|Kq99gmz3FR%Qpq!U3qirRIl`R<bhY?m|*ua8@7E~wK
zu%M;|wJfM@K|MNksCB8*WMgXW2nSGKIi*e-T{U9Z!h*&YG_jy5!)DamtZz=f*2O56
zt)&GYW|~@2zogdMTF}md!4?d$puGhhEa+)LFE;6DL03X27E9aC47*SZrZHxtn+4q&
z3ipsP(Ckg8uk!m4<T*e;3;J6yK=}g+3HPW$vJCj-XDH247L2xFn5rCZ!3f183HcA1
z#t<f1Fxi5!7L2oCJRLc@iG&F<+Z>M^<|x9po^ewwn9A%l>U63+kCjahVWtJM#IfM0
z1+y)fW5GHL)>|;wf_bc5W5Ik27Fe*9p)^@YSd@_EUKW#=Q03OK%!1_>tYG-91*<Gr
zX@R4VaV|uKWfNYlOyRW_d`DCGbQ*1g1sg5cVZlxdHYtBAVKa3LHQ_{WBX76hdx9)Z
z>13A$yBQv&?y+D$K~j4O`>5M(rUMqp9>tgQ^#jdA7W|V&J8Z!bhQTyi>a<3|F$<1c
zaGB;$7M!r)yag95_?eCroVDN=c?n>_De05u84G?@S?PaKGGh|*E&jSPf8#PcXF)3q
z<djM3q6L4c`rj?`r7B~h%B0o)l&d(c){4WpWI-3+psrYO)q-oP{+0#T$v4>TO|q;F
z>ESkc1e@Qp;JyW;Y#43B0}CF?s<UFa6^|@<Y(af18d&kS1yAJOVntpno?7tCf<#s%
zwi<(ZZh_ANzXdO3mMr+!f|nN9EU<GII@Llo%LJy?uBO$j497){kvJ@HTHv80q00g{
zx!wrlxx`D3(5tf2Hef-}f>##2rWv9}EeNZc2qBzSixIM>Gp6y4+y)tbw&0xw?=ASK
z>i;8ru%HGjWfxNaNoBjz{9*xku#%dQPD^4%QY*63NoGZIE7Dkz)(VpqaWpk*ycH=`
zs}zL6Q&MhchpCjG+KLl&(piz7W)>?lsB9)eMyoMzvTNBgTM^x1%$ppY99lLOWVa#*
zA*U6&3Aw0O*|QYOtmd;KzZK=Js9;3_W{X=<f>4lJ$cn;N6tSWx!(vovYiB2^$D2yh
zDWm*SR+J{okfcnuvV?M0AiXi#idIyzqL#{5wxT+@3bm^8tI3d9FHLIDtVxx-Vr@bl
zYF(<-)FU)buQjxykriF6=xRk{E1Fo*j;W@qvXvFh$jzxOtY~RP5AI7i0a`QFhT4`Y
z`)yC?K<!BFM3udFw&IVr#{73v&HyXAOK(>6q|=w$OJ#do(MR!=^jbf~{pDQn$?8Bl
zgOoqmiXn=JTCtO(9bv^tD>NHY*)YnA(N>(X;;a>8tQc#>cUG*kVw@G@typNqA}c0X
zF_E3jqE516I$^REQ>>V(`kzKP$Xz_Aeq+T9D`r}8?=RyRjoH3nnr+1#E9R<J^R1Xi
z4zkGt<!8yDEw*9_!_`*f)x=UORx;cYi(h8Naw}Fa%#*=b9+fj_-!fc96(_vPw1&J^
zId#lfZ^Z^H_FA#eij7umvSPax-?Lz|6<btgj||#Y#oJ`Si;cU-4(043?3Bajt|hhG
ziaj(p)7fvu0l5;b_}PksR{S6-D~?)mh&4y3((14k$5@}xR-9u@g)?Z!t@w%jAcOYe
zwK03YFg#5?Nj*g^p7HCo{HqngLq_FqR-CiKVTIF*^HyAtd#@Fbt+;5#?^fKf;-;)R
zEB>_NvK3d@Nz;tlUxZ84E~?L~46j>pjj&kx3C}TZS#ifIU)98IW@XpgGivw952*4W
zc%N{D4If%@pYXR8Ppq&o_0)=I1T*!y75`ZAuN5yCdRhOHEdA?N#Ah;&H$SxoRYEHZ
zY*yG+<-kmu%L=y@Z>@Mo(_=+IrpOAfs__y0RxD;eAuGakUQr`f#0XKjNm?OOBs&ri
zmF=|^ZxkQNq`kM|KZbEOe6Zr9Je=8(#D-5azo^R3ge#de*pSEuQ|7PdE-xXe4asd^
z`%h*=ZIw0AY?oP!C!|m{DQ!6a&^Y6%ZAfF2Pbr|D4QXviXG3Wl%Gi*el{sw4X+s7Z
zGTM;I2ASt<s)x)rWU(Qu4ZoR;gPO)YW@mOcIhPH&Z75_zVVZfU`KfuS`D{4F$^r}v
zQg7b=dc7B6Si**)gkm-nC)C(vYShQr<HO8aNgGPh^s=9_Hk7lWIvpt}PpC|-U_(Vh
zC6(>-)YwrK8>-3(`J|;9Q-AI;)lfAxZKx%a$xxQP)Yq}$NpGWJeH$9s(8Y$XHZ-)M
zkqvEZXlp}b8=A1br43C9EvU_?(y%!paTZOUbV(>%D>|*^oD$mE(B6iQHpl_W>(+#t
z4l@5)zMk<;Hgs0KRm-Avv!S~U{cRXPvxg0R2t94+MUX45H{pLPysr)Y=t$=Yr*ELm
zct33z%|SK{wqXc)s11i_eLW+MvuIK?oRuSN7)cPP9OA~<FxCc_4Q?C8*)ZOQUu`&J
z!vq^9+OW@t{WeUpVX_TdY}jhU6dR`6u-JwrHcaD=X4x>?hUqqZW5WzOnbk9&nG6T;
z@aNbt&xZLn%%v&gpGJQH!$mga>SbC;7Le?gEZR~Vmf5g@=5iZW*zg^BCG}eyRuN=M
zSKF|Lyq5Y~7VQo@_o$g)XTy4?r04WmjnlEwhD~%fQwz`(f13@v=xkT@-xGFFcgl3}
zozLAWyT^vTiW{(#0}PMZaFFnW4TlJaZ8)MThbQdLhNE(tXfDgD9k<~p8%{7hMg3XT
z|3WxP&0R3%X+mMn^I5r&ZMbQ}Et=<SxJ)>2!vz~IlI6ILWz~MS;SU@Br1O^z32))9
z<w!2szP@0Q$}2WpRjsZOuG?^fuzihjYHr(b$A*9C+@(IW;Su2;^*;514f5ug)IVnU
zj4I*ZgeTOea<QnHe@^EGRhI6*HoUY!XDF>~auXw4s8;1?%%<7N4yu!y@scr4j}2bA
zA={DEZVbc6)N333HUw-4GK>i1Fs|j04PiRMP37Goa*X<lD$lk0^G@={hPO7nv*A7c
zPt^aYAE+Ox(ofZF+Gp|?8^AFnvLi7;vK!hP`@Of*l+2Fgc4V?6GgBrzQrMBwjyP2r
zPe?f38ab^UsZ=(#9cdI#l6Qf~>6Md#kdfMEyD5tuS;@uh$Yw`&JBl#OLCs@FUORG<
zWo)_Z$gQ|;HZ32ypmOrtQGh%u+t>SBAv+4wNm$-R$s3t1Zbu1*C8=eprR*q8kbRZ0
z<H?Wl0_Bubo^U*yR>_Xac9e3Wv=deAsA@+W2iiJN&5r7J{Ab4pJ8IZb(~dKCoVBBt
z9kuQF#*P_w)Ul(k9bN3`YDYag>f6zt-8QhJp&hO4Xl+L$I~vn$ZbuWf_ojAKQ|GZ6
z&AU917IustWNJy3(Y8_b^5&|9ZS82M90%(=FzjeYC*^mRHIUtyv2Jt*+A+wE?soLB
zqo*Cc?C4LwH?^;7)rXKPyVg%RHL`016w4#UU^|A`F~*Lub_}&+m>mtWYa{I#&YBU_
z@!uQQMO&w#vW=3XP(Ad|u8p%}ydBf%Ot5339aB_xk{y%DvpI5Ud$OPL^mwWrG9-cN
zs!}FrrX92F*l5QlJ7(K4hpBJvm`hk_$0EW!>U`<~YC`9W$;<6nV#iW)scy!?SZ2rH
zeT|*2peeA@j$PdQDmzxwTw}*Nf;>jAwc|Tgd5dN1?bx6knS{-DY_a309mnk0YR5J^
z_SmtP1>5cTURC<DYdh@N$#55Sw;kc#U*~Y$l$87I*l#x;mk%?0fcgXVAT?tS?GT}6
z4r8v4kOh7uB)qwFocuHOC+Z2RJo)^^j+1trV)!dn+MXtiVu#YtZ+4us<Eb6b>^N`7
z1v?(F;G$iARK!@Bx9#}Djz7uQsejpVg&^5Wc3dVeXNOmnf6b0VIkby3Z`g5D`L_u2
zaBzokSNZqsxNraZMn|hY#uPoY;}Nrusee<SP!mq;b30xz^x5$b!ET3x@UI;&?a=Ko
zGnC$}c38*>Z=Bl5?i|{RBPOS+@eo{gxRqndX-vCUuCimsko<N8><G%WAFoC2h!H~6
zFf~Fw(cAQjAZ2d}uc>eBkS9)J%Jz=Vdpo39!jE=*l3S<)`5gFc#}^JDhXZgRkpt-*
z#)(Mmke^#IKyx4|K{(EVWQvnJU{ahRrxs66p`4V20;}UwDJL}{jRR>3Wp;jDndu$K
z;6O&2nH<Qf>N7i#g<Ou)l8v05x^=(NHYYh3Rl?j3<WVe(Jih}49H`_#Wd{m6P>8AW
z)WQxFbD%i62(_pK4Y(KSr-TD#XqKdkQ;JZUI*?^$9Vn-=3D4UrFsw+GHyf)sP?g+_
zTFrr44%8-Bcc2ELCRO^M#y;!F7?e|&P|tz-%E>S&uAu{s9B53Zi36M2N}ljErIQd!
zZ_OQOL8m3P6}2_>cQ$F~Kzj)tIO;$L2Rb@1$AP&HbaJ4x10x(5$>J{5-VSsnbfZfD
z-5uyb?&*;Kwq~r5mpL`r1o}A8*MWWx^rt_BI)FOZfq?`m8|1)8)+aoX9!h^0HGM8^
zxPnm*jCNqE1Jme?p-!NVbzmG}JXQKElgk*uL<c4*XEI@m15KHd>~sfa)BHx&%y3|)
z;#q{YxitB|=Tbb6;YJ5GIWXUW1r98vv(kZY9a!YRVh5I}w#x}ismo->)E-wjjCV7n
zw^dAir|MTbutxD(nQ&FVj^=vm1_$=g-|WB^VF&g)uvNAC-hpk3w>uE0Ud!xoV5jnT
zIj~!?e9m*9;zJJXCm&GGLBbEzl&4IG2}h{%#*~czm;=WhxZ}WG2Yzzkgaa2H_?-nm
zJ8+61Wxo(kI&hXFKh5x0>KQQ|_>Fvldd`9K(qS&`6E^{QceI+k|HG{Gc8&0-1Ah@N
zIdGY9g?d$~{Mk{8uQL?5LAXi1MZGO|fZRsSJ%{{wk^CwV(mL_Lfrk#n9C+oxBL^Nk
zV0FOez~2r$ao}Io+fxUglb<PP5U2Wu1OF(eRc`GiS$DupkOy=NA>jetPIf!salk=#
zQe9N<Y2$9@b->3k<bdCS06FMD!XJ91KtA|%y_fL>Lq1Lrb|B(F)PZ=uS0H8ryq5d9
z1793?<G@=75?(aDbKt!L|FOf54kUc+;RC}VxwTIO=|MV&6N#Ki=0tL*@xidfP9z}+
z%b(0dlQNWNaV96?oY0)c+A#L+L`uae2ulLSK}qMS7^YU)?{aJDoJj9PK{^?n#-m$S
zC$bSTI+2MWW@aa{C_a!|%TAU)^E#2kiJVU4QrSFC<R)i-WIVdbb~(3}kNxLYH3bL`
zE`vf&6n3JB6GhdiN;pwWadCo{M=MDv`Pev+GES6r;+0E&(Fo<7DDT8}C%$*0f)f>;
zXzN5f7FTkjz7q|cs4Oo5oT#e$tVO6st?on(LQQIwJjTkDtv16tPShpTqlzz2#u_Sa
z?nEPUW92j<G^I9kq9uE4p|UNVXhm+VoHm3Wd9?OUbZ}y#6O)|i=tL(c`a03iiO#CB
zhZ9}MU8&uu-Ki=0$LOA98DTF%ZzuW?R&xyf$wQqOMi}74K*As=1`~!*Pv_BUb}(jm
zI75N4PK<D3q!Xi*GlnpldctY?N6pwcC&ts9pelWNw8>6Pabm3#-#IbWiD^zOa$>O)
zF}9lS#5YdNaAKwt^Vw<^b*>ZhobnT4m?QJB-nhzS%aB)-_dNu1<TcLG0=1Wga?<H6
zQO>tcEOlZT!{tt_By`EEt&js@r8Jjt75&w!)fz(YuBLU$+3Li4@&+e1I<bkoMV5Lm
z)8_xxu*0IfX>6l;F0Z!3iJdZUF8Mhx>~dnaTq7>zbYYJZd!5joFgvl&iTzGobmDg>
z4mfd;ZBIM#gA<3GIOfE0I)_E&KEMxs9dY6rcXyO2If|tDw4a<f;lxR~<WCtV?q{Zc
zp~@HWO64==>XfQ)lu!HBi8D@|Rn9rWZ!%g|o_FGc6RXG@$Ho7aPy0h|GEUrc;yx??
za^k8J*POWI#APQe`80Wh{fZOY`WdH5zM*;Di5pJbVew5TZaHyV?JJT`>)qOvI=@yd
zzt%Fpc9;IR{Kg0$IPs9-b0;1-@mP+O;osCJPCS)m!%8VWkYBq`MggPk3n%_@;$LnO
zzH}PTv;}0lc*10H!s^6pC*C+=bHdIJgHAXIPA6PWB+QSSj@Jnv!9&f@UHHiXYK;O~
zSDGOw!gM0km=jTg>~|&$UNPKJKzr-NJ13I5kj#bmPWi<-e0Jgsvmc!Js9N1BpnX#O
zrho<)61j{8pM;v&h2{l~<CU!tp<-K8au-Z4q<0~M3vn*QyO7$2G%loYA*BnN3#r(4
zKtXNNVB=M=Y~6>YT&Ma;%WOIqF4B2gP|L8zl+lGu^s`bkQ?pQC7u4bkX*mjM*<8p@
zr+y)0NL>qQxm?KYLOmDiyO76)ye^b<p_B{xSSB?^UC8f30T&9=kwYs?DCEK%b|N)J
zT#&b61&X<h56Bf~K?&8vo<dq_a%C5)xKPH0vU2}-p*+osE>s{$C(^@d)n_G!@^k1_
zU8v?l9fsAZHK|fuL#B(DPc0W})2tRVt|l`(sp~Qx-{mpAfeQ^?=<Grl7aFmwnVb|t
zV`>v>Q)*mct%VCM$sMSzTxjD$TXJh^rNYL+wj;NvHt1wrN1f<*bfFW?kqo=K(9MN`
zbfl)c3w>PZ>p~9~db-eyXS}z{W@wUf0b5CBKNtEdU*7Z<XMhWbnH}W9V5Ww+FpMx%
zRo-F2a9L4Bj6sfaVYCY;T=?0AF)oaCVU-K3T^Q%WcsYY?HNl06gc&YOB20E+iVF#U
z`<SYFp6<dl#pT%fHw@d8XOd^RFq<%g=3E!%F`VzhVi%T>7r3y{g+=6pEIT?OeyIz~
zT*ec&l`br2N(R4zaFR7osNc$!NLb^-S{L@Yu-}F6Tv+GA_bgsd-6ZSKg$=5ojf6SN
z;<vc4)rEv7z0&_S`rBQoT-2B=*=iTncDS%p?*FRo9v8Y7)pj$S%(A^Q4`WSoH#<P{
zu&O*r_<?%Jg*7ZbA|ailE*vMwUXBSc`;&5R7u9}o;iL->TzKfhDHl$=@Rytd7X0eM
z1;QB@&Juoe;XL6S)l<~?x`Fg8e^b6l=XV$WaN$p~`1y-z$%=hF#>+0;aN(v4SD3v@
zz2?GoLcL;Ifp3h9NVZ!p+*Li?cHxfV{>8L=<on85P)vK|!ebZAE?8*(P5sw}CoVj7
z;hCy@;ga96G#2v#HJ*QDJ<K*PpO^G?YQi6&tuEMH@XNxWX{Wkea1f-4ldxm9$?by2
z1+VgbGIi`<esw|0WD7DCp@v)t6RfO>s#Y<%^^G@<{f!H6UFhgWCpX^7l9QXH8+qLL
z&xH?i$95y0-#z*0LSlk6`NU2>Q@>EbR3fUWxRyj!CM6_uBe`-+Zah40>^FrQDc#6M
zUvnds8yQtiYC>9S8fwwv#tBVFPEXC?MpK%Z7)mxXA&VPXl{2QemYtk~np63?+{Ue2
z{)m&;jeKrYcB2YY`Kd*y1*iq7g{Xz8n~G~i-6%#b?nY@h%D7R2p^TxV8>JMVF0Pd&
zSD=<tetE)O4!)urm6X4KZhU?D;(!~q+^FqFHTu=vsNptV^3-(WO>slNcNwo)>bOyt
zemghnxlvzc!;NNcG@#jtDrF7b#$QEcYwSi7vY4`oBNtI~H(I*U%8eFoBa}^EwY7Gm
zjT>#bcUhSUzCglfAf;`4H#)F?dBae`&Te#ZV~!hh-RSB@H@EycD<-<p-Hje@j9@=K
zsY9r}-01B_A2<5CF^En-xBQN-ahVKsV}RTEdWd}AB;lJT=}Q>rUA`?MI+!Wpp)3|>
z7-2ZIZV7E9VU)^_c4LeiV;PQfV`>R)ybP5cN?QphF*Th!nL34PWC_#U#$%R*vVB8m
zh8r^pvsC45!s-&*JU8ac*>Pis8w=c6=*D+$taD?L8;jleR@E<YV};_SZY(1&SI(gl
z+DgTjN@%MTuXbY%c`en>qge081~<0T*{CWv6E?a3?;V~kZfsTAZ3OuPiX4%=<lpJW
zE;o*d>BerR4pH~Gv6ryVjRS=JRB82&yFTc~4|LL&{CcN7>_);z(52?68$ZisSW-LY
z#&KE6>SJs_vB?QHZnsS#Wxp`&Z#V7+r``C~jdUTT58;d(XJt+L(bA9K+&Je(AukGh
z<p&dRK~}g24L!K%#_w{|@F2AZf4EV+q~>zNEz8)AzudUw#$`92)4$@zRX6UsagX6O
zH*OKGQ>EbzH*PAfcp?5a`Hpg`mei!?z8g=J^FZ!kZaiZ6*p0uHf4hT8DqEM-o+{@V
zq1-yt3pf68<6nk$>Pt6tH_WQiO0c*wn7fmHY_e<=JKS)pN~!U<;dSGa8=vLS?j-lQ
z5p&~}8-6)_`4tE^g7iafL<mw7mJ1=7Q5;o{R7&`o;d|;EH{Po3JHpnIn$-M9{@}((
zLPF|VN$rap$vjBz0X&c}5j8P2302Ib1ihqY@*vKG38l1n50aMBa+K1_m(n_x($<vH
zQh1QkgM+0s*)+n1QpT4t(|AzYgEAiDE4^twNasO%4>EX=(Sv**WG<~`@}R+dQx59A
zQd(vYvUrfygKQp1n4Kyh?_|!|8ZVVOS((d&+#cj1=T&VbE8DA5T7C}-cu>%TLLQVX
ztrhd2Fl!`Rgsl=fEJ{;)F781IR+gleqP8!s$tKOmzcrQhpqvNgJ(yNnTTxo8;6X(X
zs(4V<gJb>TDtS=Z1MyFm)`F$A)Md0{Wwdt#Q&#iHcWq4dJ*e(MoibVt4{CZav5Zzr
zLJ#VaYkRP!j4@H-*Q0Z|j3$nR@{i%JmC+h`&{(b%4}SNci3d$RnBu`y51M(<+=DJ2
zboCe)P77*#YD*7VdC=N}HVhqQjK$xUEYQv)|HZ>t<Q?dAq;^u-&II`~S~m~6lgCke
zcreI=!5;Kv*vo_79`x~`ubf#r{iyw^$;ujglx^k$V@Ct!oYEP>tT>|xLp>Pg!Eg^o
zD1RiO<*0b6xzNgJJKBRWG{>r%Qf0OAiYE{zdN4^jlL>=1#ZU8Kx(7Qw*yX`D9?bAy
ztq0%90)Co&rUwf>SmePh4`zEXhvt0hT<SckRJJXvEl@nNtR~K450=Zhrn!W=l)6lM
zV}aDHq_c|ptq0ODp_A2g)=)RGcpZ6*2kQyac7q2S6AC=oEazSI=_;#jrN7OC?S$_=
zuzxX0lN}7@QzgQ?J=nwWClB@#evm~-*yq81!U3ujAN1g(>i@8;Wco)`_D2tnk~5bx
z4qUe54CPo(c;xrY@r$bb&4ZI3oML#Idd7oa33b`_tg7r(PCG|FPrac073H))JowXt
z4>BYV{_-Gy|CD#-+V|j+Tx-qaE_-mrgR62-<+N+%w3~8A;w|MmRW6?!gr(Nxw<N`y
z+aBCeECu)F;w>C!_rT%70}md0U@NE1n2_?32ai4Y+k+<_`N?$r<H1u8p2@{N-1r^2
zL#<ORGt2k;;+}gD9$+~CN`0#ox(8+tUXtq+jFVUW77oBF-OANnFfLJf<Dza>%QU84
z3Ss$8c&7&e5Av4RTpqYR@UY%T^-}-bWBhWC|NnD>9)x7S9z;BN?ZF!l<YpC>OFKDY
zWZBUx1(nMiH_5ji`JolOr`f5zCdFdP_MhC-3dRY1^5C-vIlQRYKJJU$_Pt2$MH(*>
zd9kW*Tyif=UL<BViPyMkk1DSv^&**Kadx+ki}OPBLLlCY6kenx59w$)vT5z&Qqd8=
zT}Pz#BAplMy~yCjobuX@c5%DPYnRGv8NHCZWzGs(7B6h&wM<@QCJ4)3vU-utD?fCT
zykiqnb}u@YjT08l=|wIta(hv&f|kdNZz^cBLZ<E&w7g^q^AYlUQNW9WUVK+U6H~V1
z6|^E=6!k)GZijs+=0$NYoL;!RDB(p(FE)Fz#fws2l=fn%7sFUt#)}4CH1wjZ7v;Pt
zPqVTYRlKM`mfk87DtU3cg7Gz8*{XU`!;6|;y!v9Q#%y)!;|f|WFKT;HPqnS%MP0?E
ze5MAEjpp^~d|_{mylCu2M=v_jY~n==FItkD%KQ+TQ*%}{_TGxzjw)emFWPv~){7id
z;w7xXn)b|gpeD)_C%$Z*z3A>m51L)P=&E|?CY;OYxhI`IUi9^%m&*3`8lOX!Y(Fph
z(;OsAMP&!d;JHUB=v7f0?8Oi-CM)OLirR25MtCv9i<w@GRISE&F^W8zI!5_p3Cqrz
z#(Ocri-}%L@?x6GP9{vD%2(lJk5j$)LG5e0tO`~6tfDr{i`ibRrZdNjxn3;sVkyIU
z)P>af)CFFg-D}L=B8Hzjn-&wk9cY-#yjaO_IaQn$UMzZK4B%Vktnwnjk*x7zt*lAq
zZy>CruBRrcWK8Bp@+NBTO4?R0w#hSRFD`ho-HY$(pYUP_VXqha2s^2}sJp3qyr|9&
z_j_@`i=#9TQV&yqpvoQ(5&Blrjwt6x!putAF~V`>|K!D>=Ej=&*^6JiIH~+Igj3Yh
zUi_;3J(aYxihuLs9QhVUby3)hM_xSk;twzW^x}>ecfI(FHCMg3M!4j~WrFPVip(V2
zURTa7FK#HlDYvr9#stcCTdrlr_q=$ZYVH#nG4)WUWxa6{|EBp;)jaXysTa=}KBxXe
zeId(L_4%(CYsflNW-lyWSjp0%U2bLMBdXrv#Y3{&3y)mUK6LWI>xIvYJU-<0!7qpA
z#V0R5%Z<^CkQeXRLzwzX^&IgcsyIe4v)k9?H`KRY{HON&UYO<w>PM=KFm)B}ix==A
zwGU~0#$7Ry4{?OVJ|yuWDOvpFgk(Mxs$$HoN%_VL0dfi-Qu?4NKNX<^i>FZ2`jEwk
ztUjdkA-xY7SdfXDk-Cj#(s^cva!birz*uA1e8}!Y4w|{BIjO&^`rJO4$@zT9??W?Y
z3;0mbhsr)wkum#F*oQJcl=Yzqv&DTVK`2Ts=EHmTP?DkSv=kv}Rjssg3RE=?yd1-d
zK9na^pf+JjvXx}U$W?u)=0jZ{>an0YwU!Sx2sNovpQW#<Hn|S94cpdN*~WwhJ~Z^9
z5qU5R-b^*tb`u|((wwLE-kf0zA6oj*irm_Vwm!5Yx1nxiaeE&+Fzolr=xQI$&OUVU
zVU7=Tedy{#Hy;N0FwlqYtn5RT;vPQqRNTvl-ipsu)%q&#=R<$R2@f2DeDW_vFwuv>
zJ`C|;s1L(fFqS&phmk&v@?iwS2kMAM`yksGny;&BvdI9(F&s~oFhw=PoaDn)AEx;*
znZBIIDTIR6wCRMI)NiO#KZ8(>ZD;u~o8h6Z#(iL(5A%Ik?ZX<H3w&7YlYftbg{ti$
zA2J>{E|#S}ETg$nW{h2lx!i{ps?y!Z^sVAmKD6&-%=TIzzVl%>{dGR9Cv2r|pl+gW
z^g)h7>Nisbwh(4l)3*7rUAAi4_de{Txr16}yV1XFyBJ=ortR@zFL@vJpbz^A2dGw#
z`3LeLs<i!FO*`Vlk3Jmr;g}DfefZ+TaUXv2;i(VLd^q95&p!O+!zCYn@!=#JUhv_R
z>fx*pr^&xk&rq{gH%^mmzxi-ZRi5{uH2sUp`JM2G4}U7B6$>u=@Q}_GAFldv&4=p@
z@A+`Uhnqg!QT4ZcxJ~Y__9)YGm(DlJx$naRRqwlPdPIJ#oWBWAWa?P|+=mxFy!PP@
z{eOJ0`{3~5UxqJz&<SQAtOPkm3!&H~lTCq`PO{erAHhX+``{tmRAck|5b`1HLx6se
zD$S!Th%k)#5LJGb8rmyznHpbb_^l5gRQ4U=J@r4|*XKVU8GceVt!rrTBaz=&Y(@P@
z>_-wmvigzDkEDJi^CPt%Y5Yje0;x&ihlw1goOnOvO*2WQq@z(&sjPg0QBr9cX7nSS
z^3xMC_%Vee&%`h@H4Aks{p{pC)Ev~DROvI9AGyh=dl*-4UO)0N%<o4bLIG+)YQh8-
zCQES<KMu41Vty3&ql6zN{ix<gbw5h6rko$;38krJ{3xs1KCGctAXlbVq*hYd#T`vm
z$W^IHYZ~XJh95N<Hu9sEAGOI1{HQ~af_j9y)Dktd`pTCt&Nn0%TJrVkZtO=BKbq2P
zMr}@Q!5xjSskQQ>wVb#R<ZY`qezf&tO8{E~Xy-?JKR)>J(T@&(bo67t9|!#C<VR;e
zX8SS6k1l?6^<#)1L;XhcZqz=0boZl&AIobRZ-w=wDbS11n_9$U>gz{8a(_Pt5e87D
za-bjQ*j9KjP5E}%Fh7R-G0~4nevI&Aq#xr{{V2j%>S#a4DF0baEm18kLoH(%<NcUG
zzgj~0)-;*nH?pGqm`avkFPWxbx*x4rIU~WLN<Xs*y=!T6{g~&+IzQI?F`woVKbHEj
zfV@!EFCr|aPO7CXBdqk}Tf%ZbRuH7;gql@;tX0lx!Wuu83^N&r@YeL5G~}o@FtwMu
z(T`1jY?c$paF-uj3ETbnp0JJj6C3XEV<*E$4Bt|v=iPqnp)Z`ZwlQP-WRVjN`tgGw
zx8$<*<B(hkew^~-G>eb;al((E{rFL}J?h6XKaMkO%;rClSA8-4;>TDzC+W;0Z(fk{
zSBB@QXQ;CGv+`E}#pmRrTM;kj1wSsz>h<FfKd$<5jRk-DafwU%FRGO7sI6W0<BA^w
za<RxJaGk|BRG%k0#YyE&h8yjsJAT~t!|jKM&OJY#`SF~5-;W1=JS0D&{!M*Mm2Y`G
z@#Cr719>=Ss4tkZ`5{O8k01Z~@sf`0(c*{hhgnQk%0d#;s<I>7rjXF?hr<siO_y9I
z&5WVSmbi}Q^}|R14b|^Q*pG-G0fs@URE7xh7oRBMH8n<kMJ-&%*sr`5pV0GLn(zF0
zPxy~2sb+PwPkwy%qgepW1Nh<x0w@$f;Q$f^kT`&J0i+KgNdQR$#vLGK0LcPK9>7@k
zFOG?RiU8sW;=~i$vEX^J6dJ=+0i+IKNq1A40Dh>Wovov#Ww^YKCT0fK<O(2n02u?w
z6p(+QhAaVOSAAv;Ae&+zdyY|a(9B7dKLX}aHTem7srdp(C@!F~1qn@OnTiBZG=NG0
zR1Tn+%9bJ&51@oP%#w7ZA33_x0h9@#EV&%D0<}CfYh7c)D+W-3P$ht>^qU4yEnqCy
zS^?A!pgK*dtPwy>a>Aulhg?5^1_9JnHT4McJ2q0^Fo4F&Z$#)(S8Jl2RV#Q8sjIaJ
z$bX%~<N&4w&?<n|0SpRYZ~$#s*)4$X0koBe0EX=Y=oCO_a)$sq5_WL>vd1nAr`wI5
zy9Q8ko^hS_2%snZe$-ynz5(<mNI@UMiMrY~_S2u?0F@m`urW16CYj;T0EPuHoIHv;
zB7l(ux#*JB`?``x(-}kEci9-#IN<;$&?!<+n@E^MZN^qp1DF=Tf&dl<FrEHv>NnIG
zROx4C0J9YLWy3iE%vH|30Ol*6Q%_q&ULL@T02V8M31Mjf%apUHp0<+w9rfD)RuNVQ
zuvXQq3E+V`I=R)X3t&A{8>pKC*hqM-YBn>>QD55@z;;<nLDUH1ds$rp=mD4m*crgC
z04@h`C4k)l><Qo;o9qo>UjRP_aFpSG>JI@NAjk|H44`5Cuk(B;fWyi^!lf$(vK<TH
z=Ky|T>NxeM08XgN&BcvXdNP1tm2)b9(~4^jh(8m+S%z|?zbU_0eeHYz7Z_d);7{fM
z9>5=Dx$`IN{jUHn(Mg%s7|hiGt_AQYfX6hiQ*Q@wgCGSr1GtrtVh?u$xEsJdI`>tL
zJdJsv_#t7#PSf9n=gNN)z*F)w<;a}8Q2Y<!-vC}JXLNnd5`b0iV?ksI!WMvCZlOUW
z3&IhAQ|?Fsyb8d@dS3v3f;#|@>cLCc!qX85Aguf#AtZCoR7Ckvf;^FU9l#s1{EYZp
z!hZpL2;f}+?`8S%7V)<E*GHU>0eoi7Cu+ijrp((HhL`JWiGp8eJ~1H)RW8QlL72#?
zf`}u;Q$1?^q+pnmDnDQTj(+MO($Gmu%@9O7LV9Zc24B}+MuwS!s7@zq5ZQt#9z=;C
zvNM&ND&x!%L{4%p<;cRw6GYx1@&%DUh$8e0Pz$M=f<bg(&xMsEPa&kYqCpg+(_f9G
zWDsS7C>um6`lVI9OlCQ9C2D!)R|ujadAjPMau8MMR1Kn95D6E^MrLaUQ7ecIL2L}7
zb`W)fm>9&QAnFEDFNkhIbPu9_5DkK87DV$P8nU0JYF~|lXsoyi;XJ!_H_%!H(K3kk
za+pE1VyX?bwW^n^PmZ^35Xl>A?P%s~sC87?E<tn(qH;s6vvOoYx+-oGK#w4LG8{tf
zMeP?vZ$ckx-ymeW;xHyww*Em32x4FmgP0vm?b`6`8K2Tn8ydv0AchAqB8YL!N~@7U
zj1FQ9!%;GOtREZ1(T19QE=3Cd2jhd7pjyfI@h1l{C5Yugte`nHh}l8R31S+<=|OxG
z#0>H*>P)J1nEAX(p5F@0rL!Q2g+a_y+4(^vOqUca3Swyx%a~eBT@o~2HA_l1Sz59s
z@X8>*BY#U>6~yWw)~Ia44Q(yM2Ry)aL9AC<d9t)g4m^n4LEH&qOAuS-@PjxO#I_)|
z2eBiFok5fje0@3gJsUb3YP*8i9mHXVdsJ@+gV-CyK8E|L2Z9Kyv+$vz_JgWCM9ALA
znB*ft{HT0c632t`Ute)9i1R_52;%1;&M^B+5GRB9RaKsnRozHC%}_u#Nr@)R$yxfp
zQRQBGA&84XTxa+@^{*f<1@Q-2n*2$SPZtYc4&o}qE7YN?&uc-9CEuWblPdMMf>=!d
zZV>l^u*wZNi2Ka`OMMW;!yq07@i>U*beab7cMwm>PlAwZO12B^<QdI>$S)F@8f&Dz
zB*-3hf|+Werf96$<>ntmB#3Ab&LCX$gVK2r9&&){rTVEpYO5}Bg&TjJw}e}FD2Omq
zvai;SwOA0Zg7`$|br5fY_&|QEYTgsx$$FS&l7G4NpYn&W+mAskAbbwuOArVlQ3y%-
zj)C-_ID{l*dD1T7udFQB(Rd+~T-BIDh*KONLJD$9<!B+KBBu@^4Iym^HyUdRD*a>#
zA!7*nBFG;>rVuiR@Mj2rg^(qLtRXB8VMz$tLh=uM(LaO%A>;@lX9&$g@^5XCD}>x3
z)Ci$w2zf%t8$zX!@sn}+LdYLNS#p683KEKkP>4{3T9_)u2MZcaiZUz~!qdi@ge4f3
z453sArO9QeW@eK#F=}Kh7eaaZ6{zA=452Wym6cP4P?cJZT0MkKCyeH@)uPiNgxUmg
z>JaLNP)|AaL+HXj8`5c{{Kg?PAvdM=VNHt=S~BbzLMuWCs`T7Cgf@!X6555(UO7vf
zXdTI&Lg-BBLhTkpS5@<*0=koXD92JJu9xE8gg(^1)P7Vs-hm+uB2T9drcMZ9NC-ni
z7{+ikbvShdRmMCrgi+)*YR<<n97`QX9UsCym7Pdu5_NJ2QwUS3(%UpbpB1KW2s1*M
zNthMFJi_dRf+pIW5M(~*hLA9~^XV_3N<Rx_oix!FF%(!D!m<!{g|It><sqz~zlFLo
zgzr?VZ$nt6cy$PC6t5*z%8hl(Ss%g%#TyBmsGF&un`m2Ac3TMB6@MSX4#hhOa=!Ku
z4u^1ru$Q`zx<7;i1UaIEA^A7Z#)WW5InA0Hi~PqBehJ|u&7&b4BOF&XKM_t)e-2?Z
zo19YFb0M52|4Kch{Ii7LLhv3-DZ4nY{0kvmB>%3QKL`t(YL`N|ELTk!o5Q#g!qpHu
zhS4dEYav{hdrlZB!?+Q`%@BMc_(QlA!tD_L3E|%m?u2kRgeS79pCrFW6?hoJeewh9
z<@84Ok;*<M{7o&9H}0wOpM~%|WPFN7ieH2<Kh7lZG6X#YCu_`9o2s`EtkfduVGqF(
z!p^3ew34k{M!1-AQ$1Aiy@XLerwkC@hVU*V|Lp~#5W;j`smcf;8bXZlqMb3G*W@=L
z$R1xkNgg!eJspIRD2)F?_z=QJI#T?F@QM1F8f|UrlEIjb#9<@}%m3^)I4RXcO-4;l
zm6SXh#wnH`0T4$%6QzZbDvWYrln*0y7-_=D6PAC*hqPg&V{vwB`Y<wtkui*mYECkR
zVQ#8rVK#FZ)fdJ~hq7g*lZ`3`IS4taxv06rU(d_?rdqx*@`q83zO*e6MqzS6YN4<(
zGcqlbDnh5Is?5;L7=Q6FO3*18MyW7Lhf#)MS(%OHrshkGNv_1o2F<hzVN?vGb{KWS
zsHFO-9!6zy6>3%GS0nUprqxhRO+qcI45@Ay^}=WxMzb*L(`-y_Ky65sy*DCEY^F6K
zEaYIChtVR8cB-Z&p-mXA2(6WWgvD*cUuQsiYtK{%>eh_tOz0oR0792Ax)QpD(LIbF
z<lfYtROz7?p;0dMQBGe%KkA>&w1Hs^3geqFW`r@A=CCk^6NZE_lpueAldfbN!Eizt
zBf}UK#%P9PsgfNNhNFuq%%d0=#(4U2;!Mr8iD67)I5~`|s(wlsg_>(!nrqYOOjo{q
z?pJ!78OG8umW44ZjM-t#VRn8P3kY+=n5XJx%^Wo$VUP>MSQN(MFyzk)31eQOmY;;n
z!&ni<%CK?0OZctoVO<!j!dM-~nlMhJ$6DoA&1IB*7smCzUuR%FQyaqAC>KaGEn!)1
z31e#*u`phRu`P`4VLS-qVHn?su_KIQVH^)*XBfM}_#upGMdD=J9mWC0dkA~O^6%!2
z?0)5U@y8z|&z31-t3zQNR@ozA{762koVCrhpJe<DZ-?=77{7$&AJ*es7$<4|swz)~
zahg25;n(q;3F9oC|Mhl0j7wo$4&ws-i(&j8#vft)8OC1(8PfUYnpcf2bqiyVS6F-_
zjH~hxKrYfkyG}?s&?E&n$pW_s0|yx9oiOey|6UmP$q8e76vpE)ykYpl_?y0y`Xr2}
zglA#=6UM*f=hPQrwB%r3hM|XHqbYka6D-tWEi|k07qHkat5-RdipRMWy9pjSeJt}c
z3{Yi9(ru6`5DFu#I6{b0|4W<Vbr^5R86tQ~_!0&pct?JpP)7YgmEJyv@hObYVflMs
zyo47f#w9?a2(*Z?-^39lAta3;jv!{T2$GXc)TOPB#THLaK}|^&GuA3D6*)CEO$2EP
z=^{u^_<_eOl`@Qs@)Ce%W@^p|vP4j@NnBQHHfnaNm^ld2Fc*t+Qzgt3L0-kOgbGMm
z1e0T!5<{T~3P<3Gz!^c22#Q9qJc1Pw6pNsE1g#=y9Wh?Tmx!Qx1T`Wk$*@!er6VXq
zt`I@R2+ESBvRnk^6~Aa<{6VS`!z$Fu)K~PYMo>*vW^1X{BsZbfilBA`byT)N1a-;v
zsP&a!wWZO2Lxzp0jj2O>$2BE1qe@Nl2wIR^DyLCPtxW`N8BU6zT?FkT=o3L-IvuDz
zBIroy6hY?*x{$k3yHY1{0MdW=2#zW489^^*#qUkH*;4BlL4Wet2nIwjFoF@PW)NX$
z1cM1fs6o}+Fowe;sC?1*)80siqaqj`LF!gt|K2wyg2>#Il9g>-1mjsFJRyRK<l?NH
z9Kn<brpii)U=jW4)L9YCj^G>BYDNSzBY0gG_1S8U^5;h|mpqT!Q|*001Pc><I*Z9m
zs7tBKsB(&BNGl`wHiAnLT#jH>1gj(1AHjhL*04qjHbk&i@ppuE)b$a_BuK%=2sRNm
zN3cDD?<3g4P*PhX*hb!^#<nAZT@mc2xs#eO_&pKqRjuS;rR_ede5K-G1V2P@I)Y#6
z9HO3x;BW*-$Un-tCP=HJgq!@(;PD84Vwh!{@rjF{$-hufMj$Ih%u^A#d76aJ(771F
zS;BABa}k^;T%d+pX;;;;{7&bO2>vAeMU{R&wbHIca5aL55j>)KErQ!Bd!2A2f}6^@
zMMya6JLJ0&+>7A8oX2}#KS%L^e&N=}DSJ$QLH(Qhg!+{FEQ03*`Hf8}{)hZ;1TQ1d
zBQQr`r6Z{ptu+f-KtdbYuCl+qGPz`OWb&gp6on@OZv;J~=oN)80>9j0q9_+dAc9~7
z8KcM)MJR%B1j(XE9z}%xypfxH1kng$3}4A&<Gx<2y$oXbE`kpce5Cn4g8x+ZKx^$&
z1fL^F6h-1FzR*XMCyote*e?l5XeOn;qm!nMW{M(?P8w=_6dEA~RobSEqIjFH*K8`9
zsi}=<ri~&U!}L*PAdIEIlA1Y+98u(qA`4T}Th=JDDb7yV+eXVpC>TYdC~`-Uhhbi7
z{wVShr0p;4vp^J&2!*34!c+-rQEG8&F=~)yY1(QfqbL<c=_txXk?;}0ify&lZM6w)
zjpHgGMFrNkj-p}|m7=H>MQu8jsnw`es8yq1KPxB=tJA3wMTa}dYm(Qt)#^l1H;Tql
zG@(<E+JIW0+FL&VNst~IMRAy85N;Yp^C((G(Tv%Q{6u0)RoN<v|LPg%R5pP&QM6^M
zT@)Ro=tOQ$?GS}refQgHof&qccA-k!u7r&1jf=fIxknW5IfmX*^oe3Y6bqy18$~~6
z$4AkhFp@eTih)rKB1;cL34@~;LXfX_i7DH#D27Kdg676m@!8saT|cAfjHZr>Vr&%S
zWX_pwOPvtKL}n*NF)fPeQA}nyg*ufg{m*WveG|ouDCR0>W)!m(&x+!E_BMyk8S*^x
zeCn)LDIc`c7Dcf*iY;`OM6r~xhPsTpB8ue%*<-@wuVnab6sw|GO`bK`INm@zZEY0a
zMX^rRZzQabVuNzhw%0b1H&ctXH|At(6x*WME(4BYZxs8Y*um^>>Q1VZ?TSL03+$oO
zS-v?q(X?M>4-hu+1A7PMTGNdo9ggCN++<=f#qeVkN27Qg#otjJi{f|`zeRD5t$vE)
zl<Mb16hD)HQO-$1gZA2K<@_4O8O3L#=*&@_r}JkNe?@UYWiJXS{v(RstdxOWisE(@
zccQo)#T6D@jpBL~H^|qh6WePyRoh#HUG23?s)xH#Jc#096!%ok{V1L@D<4{xUC8!`
zDOY>#Nfb|`h(-~M;+d31;brPY6#qnFi^3kozjVyhmsIINC&YCyI<!P#WtfklIF2Y>
zbeyVwg%57U9)kS2!AJ1RLjWO24a=hdLHa4(L5nEv)<Juv_)`?Gqj<yctz7$rchvXP
z863$6vh?$ju(gBsSsnt&h#89{NeqbyiK*iJ)Im#1PDYhq?-VmGhWHp7#?UB+6fvZX
zp;8Q$W6)wq6+_+_^2LxkhBPr`iXn3hY1uXdH61lQRl0h?fn{WvsA^o67_!EYi(xiZ
zlOu-gileO0$?!jN?wIjgf_bP#I%@fuDjY+R7z(IX1qp>>Xx7m<K}BOI7DL$>%F!<#
zL&+FQkxNjAb=2hRA*Ev|6N7wmJK?J$(lFs8+~s4az_K~)P5g>6$Vbfus>F=1mkQL4
zp=u1(VyGTN4HnmqVFT-HGL)KHgp(b$Ix>O$IPOOl)T3WNh6buqo~cTG;}|-{&^d-C
zF*IeWSqyDrXd6TG7+TP28AEH;s+A0eQzUI=DYm2EL1o*=jO#*DvUQB1DDM(oV(1#f
zpcn?n(2bS7V(1-1ch#x~p(i!(e&cbW54nE~eN|1r802eik{Y0#fidLhWH>`&7#hRa
z7{<jgEQaARjAG3QRVm+Fk+PBU!tMVt^&QYs6wlYUX7{oCc#WW<A|fClq9PK^85I#l
z$vGoA=bUrSIp>@+2E+_zL=;g06Hyf1*`3Yv-Klkd-~XLD_uRTw-P6<E(>psmGw-C=
zFj@}{^$el1)<C6?Dt$x$|1++iD*YA5^~f6(!r%}#+1PAjNC-ni_&bE_Aq)#)c*wil
z{Z$AfLKqpsk`R`LP~uo%R0xwpm=Z#}LxIsDj0s_E2;<bHGD*q!5GI5$QF(&~hQ<(&
z2;!JyfvF)hI~JG~!Za2?<|)&a%ut-EIG}-<9m1Rt=4vw*hOj7vc_GYKcR>hL*gV>}
z28KqmIIA$UEQIAD><VEw?Nnez2<t*vAHqs?sjLcNbqH%hxOOVAHUt_)a$@o0fej&S
z3*oN@hI}LYCxp!*kZ%cLtCF=EqH?@}*{+#P-l1ft;(ZOxo)Gqi@b$64u@Lr!us?)%
z+3lPm#{&mKI2^*8$`2|YQe+n~`j+w|A-o;JJDjm6Juwp^Qh6_g_e1z7gpW1z1H}&&
zS%g)wH$G991v51hkB9K7w&yd&FGBcS30s(VpV!VWxj-rTI)oE?czzSY=@5QUelmn_
zmGH1V6~cGQzgKM1(0l6n!lis?Lii(u3nBa%!cQUmOn%AJ&nr0_!Z{^}-^d-%(EJj@
zuj>95!tdG4<qZvuMJ{HQt07#<^2<uDC`MlmGVM?0*VyMuHucR<abH98PY8`{G`8_?
z2%!+{5W-wwZQN!f5`q&#J{tiW(GX%Gq(VrCaQo{){)`(BA;F<}*3hLTRsXr6ah32V
zX3GX_6s;c=Mdpw*!Dqv7BggjY$=}G(NP;$UZ4|Q6l!}J(Y#1AvYMD?##ez0&P(tOY
zMy5g?uaX;W++^eCtbU7)!piHH_8K-x>n}pZ#^W}gU}J3DVdH)q<!uzRai@*DZIrdK
zw~;As<1QPeY?QE3(#D64yr+g~B&F5u^+sNqEcv~W$!qM{JvPeOV2CxmGd^&yjr+7V
zDlACx0UH%;RJKvY#)BHFXrq!ADc{&IpPOSQ$wM|Cw(*D(7G&iw=_Vev@mO{f6j}3=
zHlDKaij7xoJZ<9{8_(IOYU5cO?He1~7&SKjc^fa-sAl6O8%rCTgN@CLN=`O5bZOOX
zylkU}jqB<bXyS?YDb}>{nvME48rXQ<MlBn4Y}B<;y@{!<nCTz73{fH0v%N>WJ7@x3
z@`l;`CLCWI6KqVh(ac738{KX6ura!cX<?(KjaD||^YZt2HQ3rl8yg3km`*m@s=Z;O
zos9)eyd$W+?R_TFIx6X)Sg}=*N}I9hY@>_Ke=?YF_l<$BHoDn(@0B3kpI-@5>B+9B
z6C7q^IQ!E^ZySAV^yR8<V}Ol*Hu~EbWMi<6lT8ejfokOEOXsJNWOQOCG&Gwq!p2CB
zMN_k{SMI263&(Qrl#j_Ou_k6*mXEh_OH*%;CfS&5W3i1THm2B^YGY4RGuOs68`IgC
zre<<e)1;}HVS_kZai)z~O4!2`X>+pfJR4s(HS=vaO$}{<jfFNA=~!eG7FlXznT@j@
z1ANZ_-<x_@Gqc>r3L7gq_v!{|>us#EvD(HORo2>Ar=)5#)1jGR!dOL;4K_ArOKodr
zw%FLpfexct7=JV~+iZMn;}aX(ZG2EB{|*~FIXX6Wb6jk^&pqW4VdJokH@RXoH~V-<
zHa7>A@3(P4UFsAMsYr$HTQ&;J&aK|u9I^4X@^=)=H#ZsmUCz4Z=BOfnd+pKOe88j3
z#z$GC!n+P=B*$zVxACiu-)wwp<1-r<_UE0n@j2&7bMv*0+4Xb3urYQ<?w5*RDXyB4
zOJ#L)bAlb!+<aqWUvoq9t&LMQzO!+zx%t7y85`f*IIZrr=7vW7M;?Rwa%pF6{FLQC
zD@ist)X&*CZ{rsp+MfjI-r2$vf4A`m*QhW`g>k{gMH^NazA!G?xNPHZ9>QGWT9_*~
zI<+u=D!;0DwqlUVH5-3v=;P+ObpPS9ZzINo&PK?F%?ZP$tWuB`=K7!I3tAW|yA`9{
z@mwz<!Nr*a5ys&bCdJ`vVbV5SB^O&5r-h+HGcAp1PMMaT>klI*jGMzK97et{0%4di
z3WO01<C&I*mK#Qwuk(@Q4<k=S{<}B2-CCL(!dPD^NGlXZ!7QKB(%cxvP3m4x2G_SV
zsdK?w!niezJHjXy26y~6#oNOeSSeT}jQ3g^lA>XpXlX(%%^j@_bM6eIL>TY3GLN(}
z#lxuI%FI??G7OSytxV}K%7pQF7*B+8cNk?!TA0e*m)7Q<FzyTE{xHg^TeY>hHw<Ev
z)~0+IoFo;(crc6yl+zv6+7K(MTPcj^br$VVu}T;Zh4FD~^KclCDS0G}N5imN8;Uoy
zF=g9$q<S0kWEf9{@p>4w!g!h;6-Ko%UJB#cFrEv8n|Oh3VCBjuwJ{uSiXGZ`$d<eq
z#!}^UtA|k|j90>VIgA5y0{kZz6kpYXHN$v~JDbfs(8iomUOS9BVKfY*k@js}#rk2?
z3wsOxKW)6v%?2ux+}_sfVUB)dRY;m}r`j6Mlja=y)A{;@(Kn11VYF1Ym13tbS}XBZ
z^)TA9<}li2l@3bUhf%p>9uqod_3CX+XHKCox~kGMj9yB*DRx)v!Ft+yt8Q<N4p&Z>
zq+b~Q!x$09$S?+I@-W4Lip&|LWN;WmvdYjf=4cJWv&yeyF-rM_tTI~37{#%Q<H8u9
zjc(QA6T_I4RVFK$62{c5vb05TMi?{0kYbiq%$mh%$zx}k6j&y6!kEk1-d&1ymw92#
z=it_qYBgm+7z@K#S60@Sl|^AJ4r6B_*;PoEaOlIh%P*z;vMh|{<SCR&VMQ1#Iiq5z
z6~n49R`ZB(P}0GgFxH0ACxX5atmA>k)h3L~VQdIvV;G->@p%}Vctn>D?o-^XxFw9O
zVQdRyySjT6cPQ>;k+$B$__SSN>{gNdtcrWpWx{^W#xM@5`(7CDhjEB2iMnrw@m3gb
zbK1`gu;4o?zN<+0NEo?q=)?Z1+^GBm<)0{isJ;4;@{bi+>WMeZu`E9x#-~}{{0;L(
z7+;3*V;Db$@s;YQ6u-{qoCxEaEI%2>w^`on4fCDy@3YEjB|j*h31hmp?dNRtHzj8k
z&ncc){3VQEl`PTx-<7k?fACWv%P+DgHF_nCt6Xg&s1U)QVO(QxM36s%zry%C3`8Ii
z{1yma=c>XrutSjipD_LndtylO-p4%t$r~md1~C$bql7#fMof7;jD(V;Vp=g3#`kX+
zrn%~p(6u7)MZnXHd=dCb^o%-RJChT^A8!~MmE!G8AcC6hOi+<ZUIZqBvYOwfohcB(
zO%dG8y*Qumh6oBOAuklcjahzk#o(lNrf>wsBDgbxTOznMg4?u)+ao9%L6Pj%*R}ID
zdWR~+j9WZ{5)qV&pfpR>LCFa2()=QIJeSBKWg?*69l_AMgGbvLB8|#D5&YQBgxZ;M
z5!@RA$$g6VM^HWjwD&@^Irjt~jG$r!bt9-3L8S;PNAOYv)g!19!Lxq{9*^LO2p(x~
z9*W>$5^X@^_Fiirjez7aMY>N$@KgjJwKwP6o2MgqMl)YvB}y({$X_*r=alzoZx*#T
zRGyFUh2i;GmiA%<)ig>@@#P3=L{KN<-2wgzXGjP0dIY=+>s9476)C<J!PZ#;l3E(A
z&7JLFXv}0ieEDSk2pUAtJc1UQ&@h5F9ZWObP$RaSJKMp~nnci4ISbMq*1`KGyRw5h
z-odntpj8B|SuldGTCgoK;(ZEth<KlC?ILKeMungCG?I=Hbc%SVE}b>A3%6d;J7c-l
z!8@tw7D4w2!W~SH2zn{$8Ns}ly#eJF0P4L}B<~mT-s*WMg2NH?k6=Iq10xs|!L$gb
zM=&^oA#8a^Z-0kIFf4-coNOJ<@Q8Qg4Q*@$BO(~7?x+aHWcASz6z=HV;gh*VXPoML
z^j^UU$|puJNy+30resU;#Z4?SHG;>r?2HIzMzAJ=wGqtXZfe?+2<9kRpg1>Mc3uSY
zmG{%K3$ywnC5t0itUBvo8o{y%maD!(adiYMBUq(;Z%0F8TBh;qIL|wp%@J%-vR-jR
z1RIqwv?+prI~tO$5ftiV_Hr_GGTYdz5$uRyX9RmxXJ}UhyOrPD$vm${kw$T!mf9b|
z0VM|&IaoB-_VibIZ*p@H{1m}k5xgD2I}sd-;OhuxbTaQoa5REXBls+W_ab;-r_e_c
ze4yk*Mb>k9w>SE|I+>3n_#}d3svlRpT0f7`Ov2~c{I4Rov>RV2eyQUBa!y3>O#~;o
z(K^BJ6~9$HrTCrV=1$%_%4nz6{Xy}J;*e0_XHM4$5)mXLI2Z9=y?7;ps}Y=6PWP7x
ze&wPa!S7r%RlKBlLGhwu=B1$TcQTjNWvP0pygwtjrfx*>uL%B8@^?1pIuA5`z2U#A
zgd(t&eBH@}xdinJkgzI8#b~xvEP}Z5h(=Qpq`5ddDD1%Ha_1nQgMj1pus8_4oA-EU
zV>$3S@H@y+{pQYw#sn%vUg-)tnBCbJ2e}S@s}szxn5XzgXG5icgBu(abiCK>({6N7
zNco=5o=dwa>u#Qvdy9kOj@Og7I=Ib25#>c4oapTB&h6^**XKJN6mxK=y3`rXB#`sJ
z*xcoyl!K?Dcsh#G4$3&#<6y6YyB(Bu(9=OL2lqHA=b(;*x(@DTJ&t!mTh+n+4$3=t
z+`$tL_{Po$98_`ekn#!+9&}LAK_zviaiDURkTaR~uqux#KBAe-c}(3*sVBAHo^tTC
zlDKx}GrA+}PujB%p3~6nUA%sN-oXnFUUX2+!D|kl>|$PWP~Gvaa=hx`WhLaVXptJ~
zveW>*3{q2Fid0zebuC`YL2V`c6sB0uL4Edr{k#qi8aQa^ppk>d4q_dHe9g}5Y(v37
z6V8hI!DbGcJE&O?O&wgV>nSZ9B--S*R&1%*N|E9lT@0~}gSHMb;u{)jr`X=XWKHPk
zpp%0QUCf7F%r9L`X9ryzq`H`{4!Sw$?to$s2e)@M6v-d%>S1q(Pgh~3gH;atI_T$M
znuF;M`a2llV3>pXUA?Xw$nouJT6Z;r99)a$4R$cZ!BFMf3K=RilHm?UI2h?*l!FNl
zCOR1H;O(wv9Op)-z!(Q()#Y8^Uv)Lq$EzMzK1oAU6elY(;r?!3+EjHv?&iJ7u}L>G
z!@*1kvv{yL-UX1}-OL;Za~&*ku++gkw%NfV2a6pn;8Zl;$Nj=AA*YhjGe~!tgXIoZ
z=-@JwI@A6ubvoZ_2X}Qh8~H83!IW<1i*9DEgLMu_*0aNv{MF6S=x%bb*}=2j%@zkc
z*q_}E`Bn$pR3zW-poNM%bt}8r&hBP+2D=;beGc|J_>+C>;DCdJ4o*Ax!NDO1haDVs
z@ScM=9USj&-r~X4!=Q&L+{4uFVcvG|j@EfZ@m<AkJ-p$Y)Wf{*;424TJNUrChdhLP
zn2#KMs^nt_pC~!TYL$G|!~E03FsDFI^O=LsxsR%UsrbJT6CUa5)z2Az!ofE@Ms&7+
z>)<<1r=EuTDODQwG~X-9h^zk&o^kk;NAP#WA07PU;AaPC)usN6l5>jZ6=(G{zbg4n
zkvXe+nu@i8e>k|{;G%;|T#Gsx+GPhvdK$M@{wqqZDpIHTmxI3@RF0xb6xSX6!^0tp
zqETF^7yQ>jlr7|1?ck4|#&!@^5^>=4G>&qQ^fZjddFXK+j-pT$Ngicf)uSlY%kYY2
z+JPu{9Uv=G=b5<`g-?~Ly$mgrpA$vCsCTK834thr%5xR-E9NO0#R7^<zCp>sa={y;
zxJm20MU|Ts3rCUJIvc>`TcfxwiXxeWia{zgHsFpZibe5lFY`bYcScb>ihH6M(#!jF
zD8V|p;73t1>V1OH?uw$hhRUc?Hmlzq1%E)#<nTU|a#7sNP!#t^y@RNH6kB_FGla_j
z@Om#(f&JghJg8Vvu~HOPZ$oig-M~XpJQDTJlOK+vY;SXAeICU}RiXHplE)RFh~mkt
z&NI?yqIfon52N@fisz!J8b!Y-`bY766fZ<kGm6)uc#)laI$sUNYKku@R##-`<tVE4
z_O6Z4UQzK?MT)OSQHwhg<s0}>JBm6{w27iEN3cO&-6)zw(KL#BQPkI+Z4gDHC>lo5
zskg}>dw{&LM)^;Uru8<>qFCMAw2Xqhxnc`NX13B$YenWz+27lo?QNpvg3;cleH3@}
zF<qkQ8byaF9_(W}vLE`GPKqR*x$k`p$&qn+-J%Hh@va7RkD^BuOZ%9fihZK!6-965
zN0`~iFw|FFlGA<6fG7q=u{nw@Q4ETrU|%yfig8g4<~-p>`<kJOBNc}!4v%6)6dW%`
zGdN21(NT<1k`c#8F(HaYQ7n#PVic32m=(qBC?>N#rGvC-QA|-jRq@rnhT`-nW~e(e
zii}Q?p*c~^jbg$7$)6X+{3w`4V-9iQ|A{W)K1Q*MeXC=!EQ%FTtW>^SIeU9hU$4)p
z6W2t&7qipWtGiZl9XFvl)Hg)2F^Wy9XEIr8EBhgeLs1;&aa1F?T`M^d#f~U;MzJf3
z-8>}E=GzwquQ%?AVr^eTLffkfT}Jn_VFLmrto9%WU7K;ZuX&U0f7!gHhvAvNrg-b%
z+flp|#gQo9jpAq&??>@L6z^%1_yy44&oj2FRF*LGaTK3$SYs#@!?7riNAWig#wb3G
z;<G5uNAU|Ma6j{T6kkN~WfYzJnF;;OS5bUTcXHl$QJl~QoXoBU-|$$Ql$TizzE$y*
z;^uzl`zTIF@k116qBtAHxhQ^A`zeZ_*%kfF4{9XR-{aJY%pv|7#cv$q{^qYJevjf0
zR#nFE7R?J$T#VwX?qiAm=28^ID~gvD8}~OfihpX(wI~j(@&=ThyuQEL-{1Tb#lKOc
zqDV&(io%Y<i6Y7-^*7VQ`NHJ=O`!oM!lizI*L(L2Ffkr<1I)|;hCCicg3IOrlT>_O
zMK=n>ATd}myfwg_8sJ^Jk85#X48a)g8t7H!k0B?9d@-**ff#5cw6bM`xiRFAAur}#
z9V(zmVq&;=pm(w8hOF}3KyzaZH^uN+43Ecfa}0%JxF?2kG29Zvtud_Wo`3y7@2l%=
zG29VDv6%NIy+{nVD<Ll$^G-WS?u?;$3}sX=k&WJ^q+|>&wUSaXlvagB2B>m(3}s{9
z130XK_FZAz8^hG5!JI*+N(@(<1n!IB{us*Zu00S#g%}=;f$wc-dKQ;91uMo-DTc}#
z<?mBexcgrXG#3V%hhi91J6PdT-or6G!b%32M-{1%^Ci_!#PDPcPsQ-kAn!DQTYs87
zhUzgq6T`DHJeS>z7nD?0d|q+FN8VM17nN7zh}84C=;fGqGD)j9$kd48l^9-C<u%2c
z*(iTp%kbJU)M0NYP%eSGG1QA89780A`Y|-%KE|+!^~cbNdly5y7#hdCt4U2`Xcj}0
z7={coPt^5JO%Dz-Ga3Yc8)TZt(1KkZ19|RXbIV}UDu&h^%E6|MB1v0zmxkKM&>@Bq
zF^r6%V+@^Q;B*}nLuV!AJ!0q*LsxEnus4&tsoq_Y8>K?)8AGoaddJWwhQ2XWDH0eE
z!^FX+pN>d>#dU+thl9<P!QPA=7z6L*%#<ChRSk(@sFGot9IlSx>;&E7D9%Q%*fGqA
zVRQ^*Vi>E+L`8<i#V|h0Cn&jni1#5iDTc{0OyNXQaauO#u_2~~Cd`asRt&Ran8R)y
zVpb3F+V<HH!>>{H5bs~E%#C55wugLv3=6WHX;c<-t&8D!3`=5I8pE;}mdCIqhOIHI
zh+!p1VW?RjLy4j0p`m6K2ef)%H4i1NWNi$zbuqj+)Y~YHWP=vjsJKayHEfRIvqiZi
zeTSNDG3@4H62o@(vno4c*qP<KlrVX34Etg@62rSO?2q99dpm|VW8MkaLB&I{|E@V?
zt~|V@;@gVMq4<vS`9uFZA3GYu`!ReF!+WZ~srrZ6{EuV!Ncq`p{wL}thMG^=_!!Q`
zaGsq%%zPfhi5R}&0XWQj!Q*b2`7(yDl#qX|q~<WgxB8!q;ZzLYu|HqW|E*%XVTR8b
ze$OSVQQ%Arr<IWZ5W~1(X6`WaV+=pBXEg0+jrP2bvoTz+;T8NPhF@d&H--=o$=X5g
z=5I0l&NR+}66Q}Xo9*&0#Bh-VI?P;(;fj*WiX0t^w5wUSOxN6NG5i(7->g4|f7B?_
zGNVayeVCb3GkEK8V{=g*Zu;)ebz+Fduq%$;al|+TF+3l~3vnc3NXAe!jyvK=#gOKr
z9Y<aqZVZS+;^;Wsn<P)`7qJ(I8!HZ99R4_F4mUx?oVa&mUcNX2alAR)yO)nflB+HW
zLne*_aoiNg&2juO+}sdHi4msC2vacbeO?q&%s0Z^7zdI6xu9FmJg#Pi<ETBt+!DvF
zns8ejMdG+Uj$R|olo5t6iu`;;kVu#RiKbW__s3B_jyvNh9{0}cO2kn*jxuqSjN`8O
ze`j<&b1N11&f-Y!*0g&R%PNl06TEV9+#APzYRqI+n@1QT2kwD5D#uZUq4K5zi^Ne;
zc_l?&!OL9Adq~|U<9I5LhvRr8jz?8_T=6kQ*6_&)^MrB^8QrIqKd1OiHs{$mcrlPs
zTGcq{lJLsXi`pm4;;0tKOYGGVrg|JT;&?^*%W?1befI6Eanxjw#nC&C*EmKaO@lZZ
zDtSGQT1sjw)={jhSWl73^_B2DS|cT06&uIVB#x$WG>fB69Box>9!E<hEY(5@%eKlY
zt>a)N480LYI~6-CwpZ*B2NM|WsMtx7Zbs~)Zl)#O;^>}@_K2frmNVKXj=t(nild*B
zp>YgT(qC~v90QdMies>nA=&M+ZJGLqt3H;qMaf7-wq#TsqvK%Cn5>d%+qgK!t1>}x
zqGG11$#G1HW2!2%<Cqi2H07*qdK@#9&s3bHm?<?ko3kj6dCKQ!l?8Du%yMphvGOHZ
zWodR_ijFkP<5&^L$~eeZ#jz!ht#PbYca0+TwMy10u2<ZkxKVLa9GjIqH_|YfwoTpb
z98-07s7rlk9K%)VT{*aib1#kyaqNv_U)=jNUo+C|kK+JGKaN9jd>+RaI&TlhaU_m+
zxkSYAmMR~NG_<$lAikr@nUUsb9Ph<(EROBfgYPpG$47B|90yM=K8)kkD;}ZowFb0L
zv{XhpUOjj`j!!l7vp5)H0!2o@jN_{~evIR%IKGbKL>%A8aXJoXr1?hi+c-|@nnq>B
z<iM#ozRS8djxrQ~&@_@WO1RuHhwjgc=i)f8<g6l-f8kg>W2%fYzq0ZAs?y)$_+9Jd
zOA%T8wNd6`9GBwwGmdL<T#n;P99Ox#tO|4*WhRd@)vE<Jj56<xGJlUUf5q`P*U|)T
zPT+bR|HP4#K)wY2jUyCClFN7;7;S8BJ&vgIuwq29*pl3slDJ}t(T2$h<s@8n)5@)c
zSBXoWfGDSXY;l12j27`F@WyE4SENV_B#@WQ3?`79<@pmBtO+K80twuZ)e9*ps93XE
z9&5N!`DjfpoWLFG-lE9ptqI(gK#>G)SEZ<8?VKP(>8oDDiY0Jo0>xFoD}ho<N+_00
zV6Rrow9=~Foj@5Sr?Prkbt9wAy$RgMtt3%2iTe{MpTN)rh9&So0u>TynLw)q9!z*=
zhL0xjSOOK5S5mC3SVi$6#fKAkL`i`$-kIS8V@!=P=J5pTB~U+sClYuvfu|C9I)NGq
zypq5(2|Sy?iwRUqpx+qtTmsK4A+M^0t2+4$?0F?GB~U#9x-Tm-l!;Oyc~#S1OW^ec
zSiGhpL$y?|!_)o*7LGBs)y<F$QfZLDdt(gGSehwmsMsih#tAe@plJesex65T&h;^d
z*qrUJ9i+8LU}hbUbAMYW&@176YiN@|TW%$Rb_sM&c)u4=+}9wl$XL@pfeswmv4+-B
zNhd|_U>7ahHGyskbXU$&Jrn4W<-870g+E^RPN0v9eH8~O_Di6DHgiA%1C?iru+(66
zhbXen;R%dLpwM{ZOJZaKqY~Je;Ft8^=mf?jup)t#35;bY7c+Abn47@31jZ*YA%Ter
z%+L;;l)&T!rX?_4-6;u7O@QkUm!18udLPG|S_H_sf{}Cinwh{X&7?A02@|+daTD_r
zSftyUulfQ`kF)s}DrZ?PWs4J7qAvf9)Y1f&C9qtLQLc@wgd19w!0H6HXgzB<lgFBM
z39RQd7;DyQS&|J2jBXX!l)&Z$Hmb<ttc2EPtf7%?)f(8UZA!K$up_H1EopWouseZ0
zJj4?CnVp%yz6ACs@G18_fddH~<jhIn{R9pra5#at6L^PRJ=X9)-@Tc@TgsP?HN3*l
zUjdFJ@NNP}Rb<X4weQ9n@@tA8B=AuJA8W#goQE?4EcHnO$5c74SYVu&pDD%Y=Lvj~
zz{v!@P2kG}zS5j;bSqyca6(<?zuYlcNehy*0jCo9E`c8sIHL*QE1p(tHqLOnOk?|h
z)J^}y1F&O|d%=xzN6sa1K7oI@EGO_w0>373C4s96{FcD)oLb||MXl$L1TG}Nd{)Ix
zXUL@lE+@cEWZM7MIP+%$-1@Zy{z`!T^W!+Lseg0**GgEHjbT1XC;>ZxR08P)!U;qY
zh-Y)01fmJVbaP$%1h~0O*RfP0fn)+~JS!oxd9H4VAxQ#BFgY_oOt6y3bgw^&oTRr5
z=1bxRC4nS@N#rW0UO-9yB=VG)tp3b+^HWW4aVVHXp(Jip{T9WW6mQOE7EYqucyHOH
z-KyekNfc2sQ}sKND3-+gNqmsRok<i=qJI(tk|>cx$s}G%qIwc{B~dDg$C7wFiM8WR
z=_JZ0abmnFlf>Oglue>dsUYp%B<@jOE~`u~9=tEh?^m*Gy!my!c_4`jNj#WDMfOY*
z4<+$1yJCWI>jo+(QHA|8!IV??wF%~tBpyxTEp<mJu9;xyKEY<p2tJzxul=5zV4h6k
zsU%2fPb+yQ=^ci2dBXo(5>=CUK8Y7pG!sqbiRQ&5swHu)L!KFxmzv=H$oO&+HIitO
zMAIZ*Va-YJ&Z5RFHPO^eV#-8QH;LDhcs+>@6HP6}+DQzWXz12amxOM;B<d&8K)1y<
zG)!XWL~k8vlqGaOnrMEQXqqL_Jc*u3^h%;d5-qv!lT4Q+S|!oGUjDYMA&J(?+bCAq
zkxRWDc@nXSrc)AsaO+8QR6@?J&`22VtT}YMavHFmwS(Oid;A})GRgGjd>CdrO)@nD
zfj-*izDe{;qTZzcYNI=lMUvQ;#Qr1(CozP*k;GKuBr`OLF-eR~V&x<=EQ#Ssj7Z|h
zBr`IJQAvze&Nh%_+Q!hhr1ve1A9=+p1ji>aA&H5qOjewv$b@evnah*B;hUDk^d#0L
zu|A0zNz6=QaS}_Cn3crrBzQa70-_S~c}nIgT9dt-&E_lrc~XFUq4GtFcWHE~@)e59
zl31>UnNy>Il}W5hVznx3IQf-SnQWfe=vCEiU+!KvP=B)7ki?E84oo&1lh~BR<|MWx
zu`P+M|HruR{U&?;xjowtD<+$Zlg-W~b|tYpi9JcsrR`PXD9@W>4)9={VkX}od^?GQ
zoQlN^?NAbjv;0jS9a&y+ig|~J<o&@nrkEp1yvuD(F|?yeyr+DGx*u|4CviTBUw91G
z3Vxi#7fF1n{F5Y(DWQH`$)`ztrsVUizH*A;$JSR#5Wi32Ypw>$ze(adCDczU`8J7D
zS>?zS^PLtv&Dq|`{GfP7@y8^7O5$hbXL;}@5t-usj7z(Hs(E;-NBEun*Cg&pp;!vP
zCGk5ad=eLuuu|})a50HXN!Uq*lgL*#a5;&;lK4A`D@j~U;!hQ?DKc7bsv&k)ysqNE
zN&J(Ij-F~l%2#MYM0qTUcoL5CsN$iiX5?SNgz{7p=_HcMS@YTD0arOvkQ8!O<x-^G
zQ8+(;;U)Shrf@?F1yjhELLdc0qB+47@+;3(WHR-<Y}7w2w}5iiOudletts4=!i_21
zl)}xb6i(rm6koQS#~f}kQ*(wC(S)KY+^&S7qf-rQW9OWiYP#*pd$@M~J5wm0LWvaq
zp6bn5V#$<u@KP+DLYWlSiL4j7JB6|-40AEu#XTvMOCgm)I)!^vxG#k<DU40w{uIim
z&@6@KDLjxug%p~k&@_by*}N29PN7B$dD9HPsquSUr4%ZsP$h+jQg}FpCsTMTg-4j#
zEI@lKg-4aM&2%46;fa)YAM9hDa(OR3m8Vm9CWRMLcrk@%Q+O_gswq65^3LUsRtVlP
z&C8+DrLhQ4AgiVDQVP|z+8udbhzSKd2Z^t+8PiOy6pl?Z4W^k_Qy|t<d@Y6H)6DBB
zY#5fia+;}~LLJV@X{IitDKt!>UJCV9$sExPHR2SVY$!I?p3Fq~6Fk4;W4brDc?qsX
z3N6{54rX8qtx{;sUg~SQq|hdXwygI1e4W{u4TB}7>$03eyA;}|&_OHY=yYU{X{b|H
zq03Tjr<<-RbW5ST>Z_-l-YN7*p=S!cRLLM~m^t0_QKfGR{n*sUP5%@IC?RJ8jbu;?
zgHsryO&y`gHV@@Y$nxQAN%j}{ktvK)eY9dzz29|Q3gc5aoWh$aOh{p33QJR1mcpbI
zCZ{kng;^;~N#Wz^W@-v+FXjC<-P|(6Oyj)L>v+?Z%;1!p;e9&fM9^%8nVmwRVSza*
z%uQil3iDIgJi{zXVF5QW!_e6Hg}QfZ-^xdq(Z!mxM6t`-+~vIaKZUI+Y)fHf3ae7y
z6&Q}oYAwZIZ#Sl}hV9|}Phq`^{W}CUa2lwwe!4{dtiOqMra-bqk%R-WJ>~sN@f|7b
zOyPqWhHuZ{ud%yQ-n}JNW}4k8>`7s73j0#{X@)tN!hR(Olq6;tiZl}Hhcr}prg<xc
zw^R6$ZVK<DaD<Jo8#t4~yD1z^;dlz4rtn_2-#$|EzTyWde3;d1&-A+SV>VBfV~XwD
zdjBN)vlKp8_hbrRWb?mH;ma)lN=Z+x;e_&UIJMOMHic6h%9-Z76izGoUXjY?nTGg-
zx}VH6yupLb{yBxSDg4R<Cxw4!nsX_f=L$K?WUe;<!bvsDG@51jZR__G{$RhQ5Y<KO
zLJEI!1>+%>!le{0t9UiLzFpzW*Ok1mDt~cV<C>uSdN$|Z6#mKbm2Cnc<x^&v%<>yf
zA(D-*nq~N^oSm~wEalx)zz5&rDI`)za=Dw4%Ln305A}$f0@Ape#-C|O8de%lr}0c0
zzBK%4JetO1Y2>7lFO7TBD3`_$vrHh3LTTKXMlg-sG^X<APer4cr&zKs3Z!v^@~7*f
zAgitG{d};!PVlBQZcgLV+1@-aoW?C_+?hu4G>SF}+?vMiBx&51Mv*jLXpl>hcB*dh
z4ox60ro=znke8cnN~BRTjWTK6oyJ{hl+tKvmeqt-v(1FrCX>v3>cp~XtkfuPp1(JZ
z2hymJ#(imgSlQg4_C7w!D`uV`p!;AN52d}c_upolifL3zqjDPL4AH76=M!oVYtAEz
zyoG~({&*VhY(sl0jVH4F$ut@q2vFqDZ9H{(HjU@fIL;19qiPz@r!gsw$!vcbFQ(C!
zElHzV8ZWU_8V%E^p2o{*yq3o6th0rwq4=ueD`^y)V=Bxsb7tkQ$;>&13ANIwt<idE
z)Jdb2ignoo=YknNV2-J;34Cgd`Hj+OoJR9BTBI>?j%kuc>-o9O(%3)8G*zTX<4qdG
zmW*l|-BxMu9)5~#RQX!d+NIGxjoxYWNuxs=9n<Kp(N1Y}PNQ2IteHi+q|sFg`Sarf
z#J{qe=#fUxH0qu6YNqu{qvBjsYp&^=M!z&hrZFmw{%H(IV@Mi9(-@e>pfm<kpO{DM
zJlDHJn1s*$&6#V4r7>JXBNWTG4luNJu3@x%gTUxC#-uTU^IxBB9Gk|tG{&dFXBINb
zr*pj>kIpp{HHU85d1eYHc^aG2*qp|+G^VGqIE^K2Nu}V7G-jnSJB^v@7STr<=WuA|
znfYlfNMmjq^VF?fF^^*Zd4{+!jYTT9?hxQ(2uoC4n#Qs;)~2zJEpKg>a|F{^mBtEn
zsqCHSJu0|b-8Jmq-g$JtoM*1iGwajdBZ?aoN%#;`^)_ZBH_^uMy{22z*qX+nG!Cb+
zEsgCQWo_+_G<NE4?p55C#_lxsC@(PI>xcX2o0pXA(_VVic#jQouMcSPgNmKzn>W*V
zEA2hs`e7Pxr}0i2N7HyOjUze)?<$U+Z*F+k8;i_fy`RPhs?VEm4$Sw4uhIG7M{Iu@
zpJ-K0KFK@ALC-Vi=Nmrm%E~`W<MT9LSz!K1;|m_n<;{<2{FKI*X?&&b*J+$g<6Gq?
z6u(i7%{Qmg_)hr`ir*`qR{U#|_u+E;0`GI@j4F>63jEBep2n|flwV+I=hFBkvu-Rf
z=T+qI<K8l|z*{1I)6nmVOuL|sWIHdWaVg6$E4jkMbAe&#S{i?G;dSx2i@(#j&Pf%{
zSK7rtY5dD&Bn`OUU09(s;%SfAiX>qrku;pF5>*mor`7dt)}kfSNUE4pOe>CE;N8t7
zE-V+fxVTm8_qizG;szIf7dbBSxd^z(b&+4AK^I506bmj~VDemizrYv`T~nQIW{U+?
zyvao&B@}OTaq~hidUIAOtc1<D%|#LAC0yLDq*ykmsEa$4SJbjBey5A#s?=7cq>H=M
z&D=Lt%Jmj=-bU4Fp(*3yZWm>F{_mok3tsI!SkT<-;yxD@T~u;0Y@xZ|MR^wwxY)4J
z8@LKe9(3_$Bd;FbU`hQ;4OMpWkc)?1RMAa%quen_d&I?~?5_5?<X0D(@$&<+$UNcV
zNf*^!yv!nt%;kH7Pq}#7#WOCRb@8H$YA&90y|eCN#q$$cTUD+0c^5Ba>*pEfORjfn
z&4liYyl>xi7nvF^UUAXbMH3gVx~S=*@M2TX#q34qtwrWF7e6dAue;!X@~Y*cwu?H-
z>nc)o78x4J;AC!n*E^GGpxDqwBPC@Q8;VU`G-LCY=Js;Y+(io)on2ns2-I9`TCyiy
zv~|&nTVHHiXK=A0f5SyP7ad%5<kv1$+G~`d)#`Sl-ZGc&{>A3+#iomkt}eQ{=<cE?
z$3<`ACDMAR%Nu&{ih|bLMIRS^UG(FQX#ezgF~G$@7lT~LlK(!JDUuI%LBcMj(H)xQ
z)JM1&$q54~1sUaHw2K`scDfkjVyug$E|$3%=X&?wPIfUx$#}&HE+#5rXp)j*OUzUk
z(_AcY|9ir2x{^8UsH`$m$t;deR^ij8{5fN;y7Lt0D>7kWHfNEN#fnR^QJ(5Acd^37
zO4qxijIZ5bOIEp9<6^Cg)tpXCJcYZwj>l~M;Ki1~?Jm}HKD+3##B5aD;$o8$Dx29$
z4T2<FRoRx+O&zc7v?XSji`_1+y7<$@9__<(F3!8y>tdga{Voo;IO(FsQghJ7As5G8
zeCpybj~y59yZFGxTQ1&q@h%q)7w@>(zQi1H@zoMT%Zv_5T*dcXFvMT#dAdmPLl+;p
z_*j#vGx-xuIHpR`rKa*yuaeJPeD30F7bjeN;o?ip^fvK7vc&MVJr@5)i!+olD&M*|
z<>EW8U@m^t{L^fJ<epLfgNveFJeS)dq5Y)#&o0h#)-CngKWC}gu+;pb6ZN8tOD=xp
z{w_7Yx%izOwbUfk{%~=@#ZAjhXd%ulz-1R#IPsQw&ze<QW~!>SU1qMi_{&8J2y6b^
z#dQ~X5Ci##N2QCj3zzj=$`^7GQ)0UaD~Y&>Dq+-7vVEENsOG1qbBS?P5-yT1QZ9}S
z^<FeYoAhK55P<|C8O2hP136kN;Dh+p%~ZvNe2_pklkaB9Ri0mwuRr1|j|wQi5pomc
zhHPd*C50d-v`IHZ3iIK36>rJr6ouRhxeZc8mD?4c?jGPqIiE9ay907bYq%3q=5oH`
zn$xzc_kN_35T13PxDc#aBCj-~klBzqkh>veA$1^iA-69#_dxE4l!ugq+za8ePQ0F6
zZMnG*(&)Y1_RGx!kP48OAvGWmLMpOnPUm|FGJLt&xZG5NywBwFrZR+B1#(f{harzZ
z9)&yxsS0@>@;HQdPdx>B8uA3>N%m*Iz@o8v)(TT}g<<F!$g_~=AaohJN0B-cUVyv^
zc?nWoE2#!ylp$tjNCuhn3glHtEl6!hO$a|0`MWdk1ba>A&+CdcR(P|N?eDU}%w1tN
ztuXZ<^|?oo5s(IuhLA3huDYl1uP}`ujUi1SzpOAVAT1$Hl{ZstuIO877;Ob<4QbCu
zklD{GO&dr%C2hG~$n@9qQ>1b0G?FJ)nvU9}PV5uaJ9BQo@4fNtzQU#(q&s8)WFYrz
zrJ1zS^nlEL&h&)z;^0F1sM`<HR|!KI!cRu>{*Vnt10?)>Jhajb;wUdL->fu)AwwWT
zA>_j#G!nLlIFgIM?)5C~=h2E26vsfuDq**egN)B|j?_fRB*<jQ6v#Bl49HZCl26YP
zrm^7vO3l>Kr^~s-U&H4@=0OfX4npQb7C?5e>sFa7E6qa4BFJJ0|HTGxr@wiXSpr$D
zowk&r26@Z0s^yRskd?|;DRPU=-CRB<NwNmA7P1bq9<r75d6n4!*{Ea-WD{hw8g<$$
zY9thi+aTMsQD#!%Z|FNAqgR<-klheAX%A#Cd%H_;A7sB0^10lKDu*D4Sy1FbkvAc4
zd5;-M4DvSQ9mvm+vydZ@cOjoaK8Ntz#8Ec2Qt%_ldpy1%AE@}DV&-cXbNcKEd<^+S
zGmk-zLq3J@%r^6$8D1&n{dMGDK)!^WgnY}votXC(*Bm8ZEAC$9eW9Rzqh(1>LB50h
z067EUn{d8|@O>|*`R{O7c`ttPulA5uiSLx)plFn@e<{1#5YIu*b47w&=0O4Z74jS8
zcOLAky$QzG-LO3*e{lU-Z7%8{UQp!QZ>X<)3|Ammxwd=nW0pU?|G_JNvz@KYUmSFP
z9b4^vtsALGa$Q6GLK=eD-kTwW-`QzlCEu;~zU|U=)V;pi<8kl49=Tnls7TVg%rE&w
z0^$`+L%8ts&;393SR%KsF*Lt;<Kh!(ywQ8550xA(MG_Rr6}eI5CXxIic_RD@R#4H1
z6cD*Vq+uoR6-Kld*BE}it+&P$(gZ5}`bNB2<Q8sA<X`?qtf3xjy!_ilim1!oq)QvW
z#@r#o_XgZ0Qc9$l$ekkmrd(XHgvjZs0lFpCC3$sCptMLCk^4pX)&6dgvLg5D?%bou
z-6^MJ)f(@c>;c95MED3l-SQ%Q9nb?>_OmtK#es?<l|(wSRU(x|s)*DUsUz}`$ipJf
zv!KW$B9F38k!MACb?Y&a$Jt%VdEw$ok*7pRo))>X#=DeZt@V&rUdeMB<&>zZq{dp)
zXRUcrq?$+#kyk`s5@CnDtUXhmziU+T-laff|BPO1UKOdSd-S@<IQ^3Tn!5Z-&ONH7
zoEI+0>x$G9X(iHHq`pW4k)|TebY~kXHWq25ggeguAvVztA>q(B7ipn0<c#s$<!en#
z5h6La)kdV92#-YWNL!IN*h{Mo?Y=gF_Np_~LCL7vfzBdbM5c;N6X`0_O=P6VD3R_W
zJwyhJ3=!!m(o3YTNI$lDj_EDZha-C~NGqGlqmlF%86YxHWRS@IwcgvJK3{8i*@|yr
zBL72`p=^wP1`XG)7$%ZfYdEn-h-9u>aCVIr8N<#OnIyvA8>_Q@yylM+`D~6iH%hNF
z6IADQHoAO;1#z+nucu8><aLbcA~Qr5i7XbGDKbkWUNJaF>)}>rXG!}A=8DV{nXd^8
zL>4kM+A#Uybso~1t}{zSmWsC`t>KW(&s`?6f*aCFvYfrK&YME3)LpH(Se3mQeMatD
z5nk+N@eLvy*>X#sv}6;Tw>I#J$T5-4B3neZYX2M*IV7@8WV^@?Rd$N(V%oa@KEZc$
z60S3QM1G}GFmUU7vsa|zdb3Y)zv2N!7CFqtpS7(wABwys@;0aOdh>zEJ4(pk7dfK*
zUB#m!?}@ZoZ-%TlbJrUt(CB6|S<gpW+s7gwtT%Lz^Wfq*a#_>e;g_k;L_Qb!ZN2$I
z<U5h?MffDzmx^DBd@XW9<QsKQiSY5XlgdfHRpQ&=JvSG)jME}Nh+G%BZ-Y4_@}tNF
zk&7Zfsd852oXF2?^9Iv*gJBNsyvQ#aC7-jw{K{sC{GL_*;I3&}ESrBx<WG%WR=lEE
zcB8q<#cJb!bzT$sOZC4MS#!0G<{vJYBB89}h}g=*StX(*)3B&WOx?I*TdkSrS}Bnn
zOY&Jlo@RwB11`S-s7o%ESjv4_#c#=|jb`>n6R;#`NpVX`SdweWfsN)SONwqX`7Oz_
z<lIJMRJ_5G$VOAZ65gH8oPw6zcSCL=MY=a?&bL41-fVeCWnoKhvE)`umP|rXOYX4b
zHr0z*a=Vgm?hZb;$q-qV`NdSc(-PJ|mtsjv?y{t!C6z2GWl3pn$P%8%Hr`~;b`0=&
z!!m4h>)_p%l(pm@OUkKB<z7n`Z89V@lJ?{B?zg18B@b9q!IH1)1ZZm(gZQ8&A8axt
zw_XfXwxqyjQ+l(h!ZvI&4_WfCC6_muM=W_<$)lD$rX;iGFqCnhvgBz?!t5MNp0VUv
zOJ-U!%aZ3TscK0-OZr>##AfrnCABQ6ZOIFkyl6?!&8C_qO{<vKEt$L7yktprOJ265
zh9$39^5$k!lSlMs^Qt0$;2>|YBbSHgYnFVo+3PWPv$=VTsbfi9OWIk|-jaHj)VJjO
zEr!qBHL#?iB|Wy7)|ND~q_HI}ENN*;6K>R!X4>2RQ^?rMTTF9RNLX_#cKGBxE`ymp
zrMP&DX=6!SOSUmVGpR6I@qu6mOL*;~qb2qhbHi5C$&${Nbg|^ot)@F0U`ba?x@i$A
zG`c-4;Vof(Ea_`WFH3r>d%0<VM*V*Z$pA|RTEaUzCRwt$ba0R*!z~$M$zXM<46$UW
z@)x(7VeHtghT=$7#&Du48D+`nY(5jlW%&dp<1Jx9mZD9}W=__PPEnkyI8Bi)nQqAp
z<-8%2?rcluSn`%7Z(DM*h?&drvShO*^DLRK$^uK)DOt#A$qgxAX326M8p@X{vTXaU
zhPc9#RhFz)ai!v*t!53!cdM7MR>?Naysbrk=C8M8L$-#EmVBzAEm>uklC2!Ltg>Cn
z4#l08{G|E2E!ktqUKI~yGxu4tUpL1VX4-bpl0zCj%qeOK8^#9Mitku*#FA5%d}qnK
zmK?R@LrXrg<UJm<Jj!@<ypfl?&CKYL|KV+>{x;KTn;EywyQ1~6C0|%_!-HnwHuDMR
zk|oEv7u@tV^SMqNPP5OHP|1)lE%|Mm`O1>7RX<^gf4e!!<3b5Ji+rn`gzop2oVMh5
zOa8Fr2TRVdIA>kyV6js9hhNVvwcY&4ez4?cOU`n+<A>>X^Q$H2mHeWl&UQnQMv_t3
za$d8&V97;Gu4^-fZ8w)J`IC#xDnowRk}I5A+dY0&$)fGv_p)o6@RucjD><Oz+$!cD
zOL)=dU&WB3t$1R)aV&{ia<@;)`Xpvan>In-vvIRe;+DKrGnlX>X-UeGG#7uL1bpIJ
z0-t<QI+)`VQBtWY=vqGUG5QkxK6#`n{wW=#v5PX%pl0&BK>?rSD$nneyi8^_FPQ~d
z$qhak+$(saPYU{^P_{OPSkFybicwZx*eAF6<W`^D=JP&@O8TUT67oBh-0qX2S>+BT
z#eC94f=no`ZenYogimUe1Qps{Dwgs|>1?SoN**qbdwf#PClQ}GKDpN?_xWU%PgeWn
zexH>0Nqe7k@W}%{so<09K6%+E5Bj8{PoD6}lRl~Blgi928GO_yRg^reNaZ0Vq3z}o
zB?WhQ7aM7h`Q&k*@IQ)@KeNL;rO{`7@|=>V6`xUTy~9*h@`6uZ^vUzeS*l0-K&E&#
zpS+~vXsvw74pYM?ulS^nPwM*QRSmtaSTkGpH6?HFFtwD_&gy#_1nc>vzE7I_q=io!
z_@p8GQ=^R(8!P^%8_L`1?MqXiG-J;wr~C8SKue#r@<|(?wAJKl8fwiBRPu(3%xveA
zzS&ZI158Jsbn?k$pG@&dXP<Q84DrbjpLF#}H=p$ONgplPU9qQP51(*ztg4r~V|N<v
zdtaaQ^T`084D<=x#%O;<l2y7nHjjLePY$R%)F;DyGS(;KR3Gk>kv<uve1z7|f66mj
z-7$(Rdu*rSI6mGsFkY33iW9O?cUvxVCi&!z-d@|L`ed3<7G$H-eKN}@v(=rUI8%`y
z$4s8%les>br(H^y#z*hxXUm@3X%_lqkx$sAi+!@pC(C`Z#3xHtVRCSnDb>{5`U;<{
z)KYvYS*D(5BXZaHWUWs=_Q@w2TIZ9^KH1`v_3CcOZe^pAO`PF<Oy&B4tv=c2lY>4v
z<df|_+2NDDny@pQzgx*J&Vl{jw)SN8yLWkew9hB|+0`n(pi1Xm=CDuR^vMS*zU7m*
zee$kPj{4*sRgNf5*kvA=A6TYE-cyCOy|3gw70)St=#!7K(R{njF`pdw$xj?OpM2_*
z&wTQOMnC7O;*)QDa#GzdeR4v{S3db#$@{(XXvN<Mu>UhX_AL)jpM39=Q&|P`y&XL5
zlQO%#UE`C;B$alXGd}rIbDAlh^~pJ(T=L0fb<g|cH=q2jv+);IepOu6Gmn-0q5OhR
zYHOVr)urBUx4GhztL*vR=3k%u>62?3x~|9#{pFLtmGk4^>2Cvk3GhGaj?;QV%59&7
zm9U+k?lzI#Cd$R%C%5~Bk32tccQEdge0~Y|g*@Stq)$>lNpmRg4$^#naeV@fieD@x
zxqD2>J%*Uc@vE4lxbmGq&@YefF}y-lKuNA*e#Jb$G~Qzv<syHBUvBivO@8krzo23v
z#eRFt%}S`>>X*V<@fN=@MDez4v<Rc$dzX&q6fs5pa))1v`DJ!zGfdO&)U@J$DUr=D
z=@<UI$o$fNDdYDpPFeZoZoicE%gBI?3dlWvDd(3*^2ww5<X*qr=a(rtGBro;_e*)d
z@CsLf9C^Sm75tL&OWH3F`lX^@7W!q8Un=>fvR``orI%l-_~jwL)bdMhzdXze{Zid8
zFS7^y@|a(q_RBMVdE75(nn!!mFHb1nw8vzWr~I-@IWN~g>zC*K@`7KU^Gj8~cLD$S
z9@Ascf4|qi=$Ai>nwM0srg&nHxwz-Q-_~oWQd992zr3m>u=l^{YwEtv-QR1jw9l>M
zm%8jIzqIp9J-^iVOH;oz)0_s1js4QlFOAq*tzlrco+cVyvez{COAEiW_DdU8S}L~k
zi?7aqt=+FhsBkaZDh>>o_I~N$m#*q|^h+ndbXLwBzAgN?7U_~zF7Gwn{L)?B9_-0|
z-oD5_bI(50+b@0mGRZHK{nA$xhWKTul74>a@0S6}2l{1@Uj{30rp0^hGwYNLQ*oqU
zMkyK288yv}P|jwI_RAQ*jQ7g~RmS>doRULY_M{>kb7h~Im~B}8{a*8?XxePQO!dn&
zzf4zmrs51m=9JrSW+|__-?Y(EbNn*bFY{EK@0SJH%+C8w|NUmlezVvwOZ@VMU%vFq
zQoj7zF9-Z`kZFEd;g?N*+3c5<I<MAh*;Rg7t?rtPxZkYZ@6ES$ep&CA4cYoPDmkic
z;O=ixcemnJziji%cE9ZK%T7*F6)){KH0}az{bR-)Fcl7%J$~8CzG|7b&oBEmt;PW_
z=XA_VJLH$cetFL??`!ByzZ_A*&|7|a+b{2^+v$M0?aBXYepi*F99*r3nIEX~iC;cc
z@{wOYR<d0aK0IKK`Q^A@KK09Ie)(KO+?{_k`rto-+=E`tU-{*0zx?f&>wY=mmv8)X
z)-UJ$a#HiZ^UL>s`BpiTPjTjJsne>Q@ym~X`9XO-)ql!n{;Z_iK{HA9^M3ioFBklB
z(J#MdbADIyn_t#x4(tCzm80rj^2-&!T=mOk70;^pr}Arl`O7aMRSF*R_TuQy|BkPJ
z{NiZNzf4eKD~7o`X(p2+syu$kM3uz+5?7M&OHv7QS{yR5GC>lTQzb|8=SYc~!Rd#L
z<jCN%L0^toIdV(g;EF!Ech(O2b0jB6)*Lcl9P(c3l`lsEITAW#f{M9{bYB=7xaF|P
z%Msouf8SwqLyq)u0;SsK_05rjIZ`M`Zp@LJa-@2WyqqI9=SblksgNTNazi<CYmSu6
zk-Ku_wj3#vBX{O_3&`y`Qtz<2LwQlf%innYP)s>V%YnJYbEHbGKnYa_AO3GHmCBKO
za->|2l+KYd8v1{9eFv}<#rO3)!0ycK_J-MP0s%oqq9Te&5EKC=gG3RKBnA)_L`4L}
zh$u!x#fXZC2_re@oO8}OqbT~FIqO({RsUaA*Qs+)-@e_`)7|gwgq~6Xl=e#v|JA%B
z&np8cBe9(DDq&fn_lU)C>%FHOVqUKpK$QTlQ*NaIu4cUf++f?41GrWqJ-=vcQ6afL
zfT{u96hLkI1W-*5H3PUYfa>Bk0+`~rc7sT8f>&d$e0=db0o>w8zL{s_oqxta-2fU-
z@YaX=0W=8Ut^hg)a9aSk%ek$vVE`=xXc<5wI<sTjhMTZ6mDN<(OvoDZYf)F#c!$K+
z0kraShe&TDbNmF;E`as{<QGhqy)%Fg%33D3P62e5*(-p%1Lz{&Q`j|t?g8`=?<PE<
zBKL@!iDt$p-qGC~z<pBg7d{{?H__{v<L_F%Wj-kEBW$azhXZ&dfW86m%D|8So(-U1
z0FTP-AHV=MSp2a79v7k86KviK7Rf+g863b<J|85~d!l*TSDq1R*~NM;fae)}q8T~S
za8nmP?f*gme7TH?|8)!v;N<{T1+Y4RVFA1nz~=#c5x}bf4Cf3A;FADe3*hwtJ_z8$
z0Nw~-%tTXol6g0PH^tu)z8$~_k#_<ZDKcfE**?+GndCi=+ezkq4y_NYQ9Ry;AwC1c
zr_Jk3G9U53mr^!2x@<kk^qpir<%yUW{EUO7MQF5m>tWun?^h-nDtt$NOaMOx@N)oP
z1~4{&uL7X>T>#@JnQ`JYzZUsM_^pty(tj@>x{VLu2cQ3_Dk$=P@h<`V8o-1A_{Qbt
zNoJxta7F+#1DF)RWR8C+(}h!o(*j`P*KK%Sn8;@ZFgt+x0W1h$j<T4W_n8~OJl~n(
z!T=Tpuq=S(0W1z+NdQX&SaZ-~I@z?~e6xZ)|4U>=04tUI!fvZbb1%!&16a#dD2U=g
ztP5a$0H*^u6TpT5HU_XSfc*h%3Se^p+XC1gz>gOdYzbhi5+6VKZIVe&_FiLQ+7ZC6
z07h4|cXTP($+d2>H#T;2^_Xn-2=@wU@=pDM01gIljB{s~)xEBLD1aG_?FK4xSp9h<
zfTIEM0{HK@dY8fJc07O+@;@o0aw-7sf=F^UfZy1eLBxXiJpjIrS15?WL7WTVj{yFZ
z^0$y#=L7i5=e;I-@9q@@y&}9r{Hn|%GOZx&AOhmd4U%xTimPlVh>*l^5aZ=v_;HK+
z+R4TQ5%K*`PB!r%+#oIp;=&*jL8Pacj4&yrnIiG|byG~%=eZ!7Pcd}pGsRpKM6sYZ
zo-Y<&A}lIoF7>fbS~U5Epb|lp3!;1wd|;rY@UkFEiIfiF@*u7dXKoq(3Q+3yQi$eN
zL6i;R3s(2F#YFNJKT#J1@mgU;VWl9h7P&@PSx6sVt0CTb*1A53szDqJ;&>1@1W_%B
z2|@4)M9zyFgXkVak07cCQ6q?&LDUN3&LBDjag!YC1aY%S?I4<HTmD;us2fCkiMIw(
zFNhXFv<#wt5c?Zjjp-J|q$#FB5Vwht-!9Tn*eHk<Qw+tXK{S)noV~gvcy@}pWU65V
zCgw8T5k#9H+6K`oh}H_uPs32BGkse9ZIicC1e!dSUfd!hh>ko3L39bClUmqW$d>0D
zPoJ(*=-<uH%9p(-h@L^b9K^7ocVFP%ARgp-3F1DP_X{5o_7c*kcMz4QdfPxf6vV?p
zJR8JwK|I1f`O-Wd#1ldE4WeHVj|RbK>L@-IM1SQro@!|3`G6pvlsF`afk8YK#4|GK
zFer$@K|IZd$)Cz#5f;yvrNUeWe_lmi5Ps_zrWb>FN#;=D7!`blQz?jXL3|y=@E~3b
z;@u$LBe~puJ%~e7&D-K{2;byD5?MagdmY%CW<~@-d`CDkh>r)F>q^+~2T^*O`6P%>
zgBTUW2buyOGFRjy;f>S08No!t2ckv?@nz6^lIpV{KIaG*r#U8w{G(G|mL8oNtE{hr
z=&FLxO*7vF@k0<l2Jx*Te<%E2I9|w06Re1TbbbngFG%v{$k=J-=OBo`2!9RY#*(4w
z)6AqGCI_*c12TvyK}-#L*L&v)rv))XWV(?0o>kUN@manyTVzfUb47Md^S+Nc-_KnT
z#6q7h3Sw~(OJpwP+BMxQ6DMJj$aJ$Zh*d%C;~)=Wbr5TU*vz?qhrKrF-Sb^1EHT}?
z54&D`gK(p8ldxD%hq+sV*vi#!lGzr-F3#oYhJ3q}9m1VL_RsDh_z?9TA<15m#?#G#
zAow8tNA1mn)4hu=2f22YvJVLl3y%no@+c~L4kv;*$(7K;r4~-<^cAtZlXzPE47czP
z;x{h-K@>=5);VRJ7yc2%pCWf={@DrhFPVRH)~7s$&jt|-`DF`R$nTjMun@FhS+Ff!
zpj^j7$U;UuY{6KFi${b}AwzLzyqM3cB??>%2?jY<khGBU^~)0lX`jD5-TO0|m6@~9
zwTYFiZ!VO1k?>;SCBmXY`gdq;6}M2r;+FhqW1*yl%Pds0aHEA%7D`*FXrU6X|5&&}
zMP?@ouCzd8*|Ji~2(J>dJ=DutC@-^uaKRnkR-8;%Tex1zHNwgkt`(^wyiT}Voyjh(
zD)R<m@<DI^(&`p!SZHA3HVZW^)Kb<h7H$%`Sy<Zw-!x>ZBa^3Kth$B8>q@!RLOl^G
z^+mWDDf#W<Ei5#&&`7+og{C4+g!FkMS<p<pxsbI`Z0YCTA<`;urV83xXlLO`ne8py
zY2h9VJuP&waF>NHeyNTYI{7@`tDR-u&9k7+>?*UH-{;*e^zi-XPdE2kxX(ggU%B5x
zFAKdbJRoJG<(-ZP#UB#(QU6e64?paedc?wv`d%mWv+$_I{=z3LJSOtE@45DXcgO=|
z=Fb$nVvvQw7B04NiH)Z%JY(U6g_9PBSa_DrwlK%Sa~8HuHy>E|(8BW;UXb~sg;y-R
zD*lp%p&~B}={(HBx?2s&a9<f|;WZ1d%Y4Ja+rIv$$XmkKms%_`Li`=!U(>xH?~1=C
zd|x=qLj8JP)<+gTw(zTk2^K!F@TqdYwlG?R4qu9VCj4CZg@rL9rDk{$n8vbWrI3%a
zz~Cg`Sol`tI}1Phx!;S77yiI?V5ryNpZwgPE&Ss1v-7Np;?sqbgp-9+gj0png!R;t
z8R9dAvxE%ZWQLh*VV;Gx>{1K!eSMk80^vdni+p{t$Px=neWm%QUL%*wTp?U3TxDUk
z$QmJi9-Cp-Ti9UXps#GSuw8tUaI>#(v9Q(W+eEH=D7-^tr-fY>c8l*5?h)=4PI|{-
zMf{7o-}3%$9uQJtI%MIne8`VjI4XWjc-+^=sH09<2-w~^Vmhs?GZxNT_|3xaGS6H1
z%fdOo)E^>$3iHGAZwrO}2n9AEUP!n`RTL3FAs)10*|2Rm5;MY(jkpNg5Vpa`LrEgO
z5*3LF%}nEpB>dc@NJ^Nt@z4(M1Tkf8<Ro4oyij<Nkh$!xqBe@z7-HjD8<)*Am)dA$
zqqU9VHcHqiNzumbHX7O}Wuvr>vNp=uxZL)hCt>1EdEyl^uN0QC!Jj@9tIhOwBHGl^
zE^p%+8<lNTu<^i5^Uh3D(FU=S@M_@?GtIR&HqJEFY}{z0iuiRlKV^@qHZKr)S$UjS
z!H|#n)2eRc_)JsB#?3Zr*r+M9mW`Wi)E4J|3v?(w%S$A;NUUe0zKyyzZneGtny5Ec
zuG`vaAcxy*kW**zM`xKvw)ao<vn_0X(z&rX%_cUQiZ>HB_jTShX=&pQ8z0Ovk94&8
zodpKrKXPqs@FTE2Z1Da|TN~|cw70#VV0YT+Od{UF#$7f#+L%7ebh5!j2XZ1)7aQHA
zkatxs9lA@&d){NCr;U4U@XOba*x(x__u06g9WJGhu$Pbyy=^?`^9{2Mm4|FR>?=EF
znZ7pq*?81Oe;dyz+G92zw=vMhQ#P8nx1Zo4bhMx3C~ayFuu-VEP4kv!1;jx%26N?S
zgIg8QlS;`Jo_?%l!R{tD{aM{}HlDYUagcTJf{hn#tg^A%#!EJa+W6MScQ#(OG0esn
zHpbX^#m1{P-m>wwjp6J@8zW|$pJtoDY;(nI^STWZrZ;Rfnr+^c*>|=X!J%d2BO4#v
z7%6ezZ1b*-IdXo_#``u#N&mpchaxOK_z8=l=t=y<#-}zuw^3$}DKf{f($R8b)@LFV
z=}DcxXuh;@x^##;W{kDHUs6n8*%)WzYnlD^bLJcIPIJunHpbhSVq+@X(8u|~#*)(J
z<2mL>8$U_;SvW!Xi||+B!*k3;8<T8ImRTs^73bw;B6ob6W@G*wvyh|6#te=+8?!it
z_Xii)n9T!cuFSa_IrGGsn;&B&Ow1xOi`P#U*;vem*;s008E3~FvqHGs1{2Lgr$WS)
zissDq#_AdyYi$%b-lOg7Y^=9&*v1jA9&^nG8;7XOH5+Ygva#9578|>5?6I+xE0T?!
zws%cqyNw+p{pWg@EUF6I%{9CJBU0aM<A9WXHuj5rG}rK=2eX(C+L)+<h31*Xo$aGG
zj<La<@;3OL6n=-L^gP4gFDLn(b{l{4=*pSXHmc1tzuEX*<c#pF4vqRbkw5-}-RF77
z%Yx@^{G|xwf3x^fPb}o1umi_I$N~4TE#km-z^!cfMqYr#0SS}kpoKR3eQcijwT1~h
zFb-S?2?zXmcf>)D#x@^P;>HwF2gI0zxCl9GA2rV;9qgKCxEFfL!IXI>?V#TvZ(EYp
z^Gwdc1rEA8=;q);mU2+l!3_>BcJS9cQ`A8*2izv{631I=_$cP34vIS{<KQX>B^;Eb
z-qOC@!DSBkVk1*&2c^VMHY;Ejl{~q^!Ig48+RS?evaEx04z6}^jf3(IDmb89MIlMv
zr;_~h5r~x?T<f5UeDaa6b3o7Qg;eqtRdaBogZ2*YbWq(v4F|V7Xy~A(4xyHVn;h?!
zM`FHrYHB;E>)=)gbsXI6ct6K@A(59TZ*ja!n)Ip1ex7d{IN<A<B=vcwT6l!%HV531
zqx^i+$U$QVEm_<_69-Kl)ShoT%=a!VG~>B*@Jkn)d(}2qC{{{NrImx$s<EAeHfkHQ
zSgNf!BhY+IaXLu3%Rxs6&o$RGUGq&R)zZa5=X_ZqUwLLJwr%`;)13pu!7K-}9o*xf
zr-L^fyy@Ux2lqL6(!oFn_d9rigTcY04thE0&C%H3JmTO%2YnoH3(bceaR1DQ95695
zbBW|6eT5`6`#X3{<^bX24xW&Ieq&+!kTB&7KIPz99*BcM4hB1XZW+9yK14{LXH;W8
zEbDrni@$?c9K7n_MRvG@mmLgKd+0ONL4M2PdGozpi}O_!DsK;W@S20y)ffh$!bC!y
zTYA3b;BC$w2j4ju;ouzypE?*V=aF=9Fv`KZ4&HOX#xQKYF&{Yi(80$JzVB*rKTp=n
zy`esm!&cS)iGxcn^!n#B2cJ6_>)<Qpe&Jw@gD=&e`PQ-x`L1B(aSpzA@Qr^&`J>3!
z_`QSi4kkI6tj_#_3j)WIgCAx7B;?s)jr9N3!2|~r{W$-|Ct<ftaWLJ%3<pykOjE0<
zGqLPU{}@lt_fDnP00(m&?5}OMIGE>PKIdJN(0T_894usqJK(08iySO=uu>70I0!E=
z_up+V<J@0hmP)L$z$|yLf-_=)*C#!Ms~kMFz%WrMagDu(YsfYBS_dN+n04Y47MKmH
zjx}x+*(BU7JiNecb+FCBb_Y8goN{p5!A>r24h}mw;$XL`-p9r}*uy!?rFEfK7qR$4
zbHKqt2Zy+V`Qmj84PR=@oAf{G;JAYm4vr~KL%E$4XAl<bw9xclXwEn|>)=lZ=N<g!
z;CDIv@t?@&q<p604E~o)l7bNa7N4Xn#$>6&AruK=Z3OEg2!s#};mI%thGB(Zhwx1Z
z--h6X5DMYN5MBx)9D)g<RS2y^h=dRg;rbA&h7b!O9>QgO2qy$LghU7zgm7U9$&k0K
zF{MISvC#X?o(>@+@x(%t70LM~b1w?vVwojExI~0vv5@zIZBZf3Z&L-ADyz7Vx1=eS
zWY|R>DILP)(yta?5yDj=lnvoZnRF;4!fPYs<;2Si8KFW56~(Vrs7fL4O)<J%Be8M_
z*NRjLfsMZ|gqCv4xBrF^s)bNLga#qpD7RW6+$2&xgc>3I+|LVDlRb8cS2a^@<=!l;
zBV-rd5<=Y&dMWa)A$;_xRWIbdp#8EGmby)zO+vU`q@j>{qYxVVoNos-6>lbN9zqMY
z*3Z2ogf|r}-*s(5XdA+VA@q?$yAV2ra90TJW!@?LO8y-~=oCWN5W0oX`9HaA{M{jR
zky0yFFt4rEJ%k=1+%JV~yC;Nu#e4e7)J2A#_l2-tC*lF=z5LwXBAXYPheRF@;gJwd
zsSSNY=oiA%(jWEx2Zqo;gvUa7JcK7g7{Fm10^>6{F`w8BnoLjmr3Q%%7KRslgXftL
zhJ^5}l;?ym2%i`3f5c)xlv!+sa(1i>zQJx3c{zk(BCiNv6%H5D?X?hI7Y{sW(PVln
zg!e-jCGqVLM);oZh>R4z8^U|O-gvS3z~^H^_)z?#5Iz?9MEF?<pZY$d*&B<!2kAeT
z@`bOT-tINvOPOPZUkS&B@O22|?sr~RsqaGgo<lv1Dq)Nd;fD}Thj1o@A4B*lgf(0)
zIG98DC4?Cv%nadIb<Pywgb*h3=ptrP2$Ms2C{aMpj%B*Ni8ubIaxlx2e0m7amGE+B
zg)lpWMIkH>VUC|WKZLpB^Mv_vvcS(>7{cc|Wh}l#;;ImqhOkV0xo|}YMScI3Ax!oC
zSNn5t9fw~CyF%C<@_s~b2w^8@-x9MigiRrA4q?e+!?ZPoE#iDZfabOkwukWBV&g9H
z(vA?yE%DsCEiq3oF?&MT%cbuNbC^Dpyt6QFiP;yze)jMZb0CC+A`6z7Lq4H?B!qzt
z%+U~zg>an93s>Ex-rtUsoLLitr$XR9d&ib|3KPj$1`nZl7$w5^J%n>ye#3CX;M+id
zgz#qw=R@E}qslBbe{o$}Y6^u>IE>ay&EH(QmzsjG_ckvHqY)o%6)wUxKMXsJKo~Tc
zf?;rD84@Rqki<wBVL#Wf-lak2_EGU@7%^qNB9jFZVYIJjC&NgEF?y+)u+*f($b@lp
zskxBtoEY5Rr63zdPP`SL0t#cU+QWyyFAC%0Fn;MAz9fudawsa33b$goRGizm(d19{
zl3`pP_WmolER0fNl$QUM%M91j_%iPRuL$GHFqU_-%Lprkaa9;)#mj|JUZn0aLx-Ni
zic%^GuNGb-tSsae5_(=2#`R&e4C9V4s)lhx81=(w5Jt5yZVaPN7&nJeJ?z~Gt{FzH
zFlva?%-=1&NoH*!@0|W~|JV1qRithh%wl4xdg3Ivg>k!bn+qEXn}pFQjK<=5e+FzC
zMzegbZZ7AmXyGfZc=p4%Cybt9wBdQzy3|pmZ5ZuD+WY#QVRQ)NE}5?_^M>>vUAzlx
zox<oW@$N9Xh;$93yI-oC$S?BmA--ps;a4f|4TB#9e>jZ$!ni*Se%<VWFnWh^*>XeP
zONz7H+`imA$b(&O`UoEq@@zg5_HL^74WsRH(~m<gjQ(Lf7RKXY43J1dw<m=3VWLTq
z%2Qzs3Zq*D-6I$r#?wp&&oG5CB#a9TE;M*HjOW7G9>xw1sxV#%V^SEC!+0@_m%{iw
zj4#3%8pg|Eyc@=QVei-6urP+RRbjj$lgg_i4=*>bhw(-j@A&$gVZ0T_+cIBWZbta}
z56iu0pZKWBNMD(CvA5;d`(b<>#wTHn3gd$?KJ;@x65)T3dACn}osZFu4&yVK(-rfV
zx?bclVT=po>oC3yW2|yn*H?b21Ix`fVSF3L4`KW$@jI^ke(v{SRP5kAwZ(lDy(SH}
zep1$iFn;Dt4CB;m-s5vjze;Ch@`>X13Ns~)sbMS)V_6u}!k8Y${4f@<qKgV<gfT0O
z*<t+D#F;5%!HZXTwaiiRxk8%rM7Y1%LSI=D#v<{>>XzA+yaq7UUSXDpu|iqvge${X
z?U!1mdh?!ZB(CM0?d(0vw?2#wVQiGRRk+D7wOM2f<1G89mTh4)S37rxu`7%M0~qWM
zV-MH2FpkN8Zx{!{I4HhPxL^2U{Sd1=6vmM-9$8@yOQgaM$)C;RVVscoXBa2hz2d(K
z=}*toVVse9R+umKyZE^<{ty|k!sPYyGXD~??B60hWrYm5mO2I@gTe-%tT09RSg6FH
z&^E9PxF6T<q2A_rOx%@=7&eF*#Em!0j4)!nzpYUrMOVdB!i12ek|Mm0kv7PPXN5W8
z(iL9(I@g3RGPu~Fu|X4qOALw{R5rNQpqRm>1{I7q-HIEOFu2N~tU*aB6t6J2OuUpq
zX%P;I%SH12aHa2AhGDPuy7ABobGCt9&UnMGJnL28a`Tgl@~kAhT6m4H=vUr2uVQeW
z!7T=L4X!t+YH*Vd;Rb_h?7)?#rtn6C8X{Dxi*U!GJfTuc3QZn$ZG$=@<Ts0yUF~)F
ztp>OGdOd^s1`P~q>U&}Qf>@s1ZqQIZjfCu87Hn$J%%H15H-qK|E!6l<!j=YY4BCp{
zA#5dV%}!hS&+Kj|r2|jB$eqIc%5#@EJE5b&+Z+Cw3!OOzq<1l3N<3g~u3@?x^zc5K
z>K!2c?~y|<gPtPy8r)}azaQ-ZgU6fx6RrMA(_8w327N>xGT`@D8HA~w8aZgC>1)u>
z;8BDA1_KP9l*40;<9mJ~&nIMVXy&zH*-A6e;3+AC4BqvhNFQv#5pry$8N$V%v)Evd
z!E*-B8~kGMtHBEfFB*(C_{`uXgP{g*7`$olvR~IQ4$f8o^xi8HUo{wR@R~S3HvKwV
zc+_h@D|(AvC;bD%T?4)2dXFgbj^W;Q{~YPN##<qooBvZX%GW7=DE^Vb$DFp}p9<@!
z4PE_~d~WcS^e==AHAdu1;aGNsJjWS)E#(`7?+wNqd@J)iA#Y=`;1A+I34auJd%)9w
zHsG2}a-fYf!C<1n3WJpflME&sER^RI;S7VBTpz^gKTTx1!6>z1mdyDEOIDfL26GJN
zN|`6*pHUWJ`fQb1AccRhXf85X%p&Ui<<coGHCX2JeA~9KGOG+$8|*aT;jHm<HyNxI
zUuUphWP@;{!5OtGw%V&@v%waFt$wL(BBS<N+eLQxdVZ1FC6iNNufaa9ND-8ZV86iu
z0~0|cf`f86Zg9fjkoaLg!V!_9!ef5No-{aR@Rz~g2B($v8?)F#ztmZgGHU8M<6Ug|
z)8G$3my`6o&r_dR1rcx89v)OMf<hwXMMMfm@Y+*hnoNNRYA7JNrCeL+2tyHsMe52Y
z8bK_AbOf0Q;?h|v8G-BbMC6~5oQimV@0iOCFtZWlA}H?rToA#<;ui`p@^!wLc}WCC
zBPix8mx^>)ZFo2g#Z*E{$%r?LX_k)Q@(8Yr;Q9!zP}ViVD<dcq!Byhrg>)_}Qcf7W
z%lkK=LIf2fs3hg;2nOmHM?dmUU6mua)-PMdud!+bH$-rI1Pzr{ErQw+)QRB62&%Iu
zCD!sw)r=tj55P@Q-c<aXBe+Fog9z$IaI1Lz2vY6-`Om6e1V8y_B!8H<`MugGg2oZt
z89|2#nnchvf;%E;r3lR;XdXceasH#lqsy0VDP`em(>j7S;_V}7E7DF#&vUB{r`x|p
zNbZWDa|Cxs&@tjo&rZJQlP@^=HL6PlT_fN>82Jf1w5Ruuc8>@iji7%7_e8wg**zn;
zSLD739u&D>$gBrMdPUG%Wc4Ngyye{|f`@#chdG4A`$o`Dgg-)=Sp2aF9%tW1@Dls2
zr2Rw$Pm7Qb5P6bk(^sB~V37F15!PVN$`Rf!6VFH)B7D~Od@h3L#a|G9^Oom1G=i5S
z_%?#?BH-71hea?V0(*^lMfhq2!$n>bz8S&mB6N5of(mO43Da8<ye+-i8t)g%I}wbG
z;N1w`i{SGJzF_x8Fp55F%x4jN5W$BLd=kN@5qzXlA1iB+AB}EIqb26E^0iPI6Tz1e
ze61{sV<Y&=Zx3_FiL>k!h59Cfd~qJv_YwRO!LM={FZ_X{PUI&cqx~$x_D_glVgw5!
zSQx>i2qsHss3{RljbL^Jb0U})!So1bL@+Y~R?XscV45Y93OPejpR3$?5zP17!z}9g
zQj5fCu83f91WO`V>MP45SSHRmeLIEe!{95WtcqZD1Z?n{2!=KK=PZz{k6;7mP7F<B
z;10|iBlsbTAEVw4&`l9+W|1rGEfH*uV4IrvMig&Gu|0wv5$u#QD2l;R?22G_1bZUb
z%jqBW4rCt}e>r5MIKW{h?nH4Yg2UnkQ5+FD6~SqdqY)g7;5f&&Oa?j01@=epz8h1X
zoQdG~2+qmjtnfEsKKG9Z{*2(f6n^}grT!BCn^nl9Lc+b<3Pn*^?F<U37ZC|W|EbZE
zX$u*gDHKImrimgc!cvhaqAU_cJPJ38#DDym%ToW=n^IO<n2CDr$+tNd#RXAZ7{x_V
zTpYzUe&kD{xI(;W6vd*rG>YO;l#)^+ijpFi`K`^@MP%60QCzNE@_g-AM!7c;u8N{;
z6cwVVsN8bG@@mPy#Vbjqd9@!o-^j{QTpLA|D6Wg5S`;@%alJfm@cpZb{Cm9Bqo^U}
zrYLHP)Dq^~lW%8jDgRb|a}>8kQ8$WPqo^0fgHiN}qJ9(&qUhv%-WJ6j;<rc9Fp5S|
zG>)RVlqOL$6=~+T{NKo|v_%vxmHTg>w2Gp26m6nt8^xVbbWm<PVf+8TPwtY)XdV5?
z`9A4PJ&G<-bdBPkD0)WGO`bh`|L!9H_Q}0b+$W`16!(ifApCEi^p=uu`9nT`G>V6P
z{)k9lVL!Ep#rsF`SQL*(@kA6)Mlmpo0dmMk&bKxnlgd*n#d-a-d|nhjBOD^6=d&Wu
z37;3fAY}2EMCdbA<YnQoC|-%;Rq^4%*Q0n%<llNp-jecR6d#GaEgTWWJHF@0DBkt?
zdm`^gF-qhEVg861>f<Oz`<|af@u|;wu%AWoc@$qnF(!&{|5NHqEo&@0Hj1yLj}v|^
z{N_KN--*-ndy(;e)=!MUxgSF+=3O)YC5kyw%#C{d*C-}LF)@ls9GNXFerj_%M}CRW
zWZ@Ly)F`GYQQxq}&}T*z#F@fbQOp)Oq^x;S%#Y$k6eput5XHi%x98ijC>BMrn4C*)
z6icF58pZl3Hbk*3isezPiDGROD@YDntAs0sJQhAOvD)YS<l;JUy79%a{3~M{qu3P1
z)+n|`vDwevB9eE=zhbsMiXDC~l`mU+FPH6>awv-PYs{V~_C~QUiv3*qqc}*hnfH1c
zgN%`LK3X0R^RGY@N2AD_3`J6GtvRkf=Ps<LI2jp%4pE$8H?B1U*P1`0xNEIB8^v!?
z{4URPQT!1FucGisiA+_;7JR<ejP79mW}mM$Mb{ZSh68I&K@5nYPz>kSn!+&@i6Ic<
z9xq{T;T4of-4da)V@rsp6GJG5aLl{xAB`a<!p%S<N)#KcGvx6YTxC(AnGo;1&d{vB
zG@Op%iWshpA;ZB_!DM5|#c)9ke3*e>ax50Zg)zL+(SBr|xhRH<W4I)SqA}29dO?Zg
z(wO&1K=Bw##JoSUC1WTRL+KbUlj)7vw%$KfG%uHuH_OCumHxip7DL$>&V5%<C5G!_
zC>KNd82FXyTn$qphKe!o|71RXP$`D1W4I=U$_jEV^>toYCW=Iw*T*nno#Fdv)nlj{
z!}fLN1|EXGWm8S$#u(15^FCoyBZitW)QaJz80yAwYYeqxsKbLDU~ZwpU7*E>@Z&t|
zy#1f45bMRf-Ju&OtA5PenmE6qG)3~%dUHFEeZ6TIL!+4YLgn(Np~f)~*`Li~XdZ(d
zhZ9GO7+S{gRt#^)a7PTSVt6oyJ~6b8dDmy|ilJi+ZNzD|6=^4IFT7LOf!)5|yG+N_
zNlG_iXW`w#E-`c!;e}tib&sJ(4EIR6U)WQ4ukb!$bwB0<GJ6So3vXF(9*W^%@fU=T
z#PE0wPsGqyW<TMh!v4a?giZaJ17r>sJ}Dd+!&4%IgttBAU21zehG%3B5k42gvm(sm
zCm^5qId=+rF@~394vk^BufHrZO!!I+uloAEYQ}3ZyzVP+h`cEry55Y4;hh-P#jrkx
zkukg*!!I%X8pC@WY+PVV+MmTRDuxflM+-lU;iDM7Uhh4+%z^i@#7|=2cP^-W8p9lA
zk<;_@7`}*MOblPf@Pj<Z3Yq&|3}3}Cj-jM{6T`P6$5q_j;6<w~{9gKaVX5}ck0Q+d
zN#y4ky31`s3=>&<40B_c6vN~gX2@ZRa9Rv(?Nsqz@}DmL?FC*%GsQ_}iOgo-%4eR;
z<-+;G1u-lXSro&P7?#GcSmtQ?b4w@&Stf;K_6D=U=PP4a6~pQn)<{|F>(90De$egP
zU^c|Ckqc1_r(@t({5Hj~JBB?mY>vU&Xtu<#HHK}RiN(zhA<1@;IY+}gMRxi6lq1&e
zUZ&JWvp0r)oN;S|`?X>m<Jud;K`DoXM}&ukbvAmp!jHz#MP$TAb36v(i5O0b{MIE*
z^9)ZbFHyx&D2}r+{Kf^AL*l4?UU*JO^AC|fg;TeLsQeYf-+pdE98)(MifcET!g269
zaNf=<633B^#@S>7Tr@VBpwJRtwaJ9y2*+`A9Jj>5EuMKVG95=Ij)-_Pj+jV1j)Vvu
zToK-ROvaHC&)=OSX5+}kQ7(@1aa<6`g>jUL<El6=isRxqE{mg79JMxi>usw|=8`yy
z#!)PeOXHY4#2S8gxI`SqeLnu~FqM*V<O%n+cxIC+9mm*BX2B+Nc^t$mgjWi;DQsC*
zwApY2XTD-^ev_#XN5wd9jH7xS)A%vvIIfQ4nmB51Hp99&mE*WJjxRTx)tkK+qN~JF
zHI82^+vL~9aeW*QZ#MZCtEt=&N42>3di8KQ?`&#YTTBgxii59iRo!B0#nEbuxhd}b
z5vd(VojCFzvY|;*H;!B5xGRp1alBElpk5re$I(#E_2b?plm^1v;^?=<d&#j;9F5~>
z8b`CZcN09e-)_RDZZY$>n2p`do-L+%93A4Yx0)7lw2b49xOe}QsU4dUM{AjFgl$<@
zG4H|AvlG1U$+nkxr||AUp3W9tINs_MN9Q;`isNIpDvmC345v>VUE}B$N1r$zilciR
zJ>sac)jSZ#J#p`25KQ-q^b{7`YVPAX-RkN0$I)|Hkc9rd;^?h{<PVB8VUVrfNO(Ao
zN8;$q1CQhBIG%~)(K!0Y@njqW<9IBN$K!Y+jsYZFO`&7<S6j{IttPt7TyxB>xy|(6
zW}f0%*k%UBF<9iIZHDHGZJu-C?Pf?E&&Kgm97E%Hj-APq7{`n9%m<-=<?UV(#xGYX
z{Bj(_;&>&FS9$E)&0E{O>X=LCd|2Y^Jc;b3nDtH^{D#Zi?Pkq(^JW}x#c_JOVR}1`
z5kBWJ@}tiq<9IiY_u_az4w@ebNk+wy-r;=}`a@r-zr)P#YCef$bR3_>@hMN}4)b9>
z^ZY>T^EkfXDR|p_&Hn6R#&Aez2>snSG^Ljru)~a%`Bfa_M5wU#5jzZT@_rY`_i_Av
zAqp<S_&9!u<J%OzOW{WjR8G<a$|mr09KUc-xo}+k8pnh<Zn(T)cN`Phwm7E8F@w{S
zl`gcHrp8g@@`5QEw<H|2)5KYX=FB)Y#<3}mS#ivcV~$EKjbm9HbH(Qg=X3IkER18Z
z$Rgp-J50WoB{CQ6Fw5gu5y!eX)=OC#$68glO6F?e8sRCwEL+0FhHa2e&X_be$FW0Y
z$+yI@HI8jMmhE!8c&9f3>AW+JU2?0k(=?H|Cyu@H+!x0gF4S@CkK=%R4#sgbj$?5g
zisP`9Bf@+eh{x5LCncW9;|CTy>J-O`-#ogp>fdCN6n4F?{ymO!QvQhJPm%M&0_Fb2
zb1JjvPOrzft$)7X3b}YnN)Z<U*E>@T9&};3-Z{;mFOrapu!}+o6i&dnh`4ybMK2do
z7cm!?xhUl#?t0gLnX)cipC?3;!jv%WA|t}5LFk-wae<2!JI#eIE_QK=_(d+}G%euE
zI7MA=b8n^+E{eIh)J1VAKmS&c-^80(()D)v&YPuOT<+pp7gb#EJ^CwLyl^I1Ui?a7
z85dW%IJeU<m32|h=b2rmf{ThS%I`97-Waardh7Gm!fS+;g}1Hno_W5`#q}<#v%6eW
zby2ppRdbg&gKiL~S<S_b;&U4sFV{sa7foC=b#asHy=QT=i(6dO7N=Rq1wRZ*!c^Bq
zJs0(rbt|Ws^ad_&b8)+ihSK@*P<|qrS$xl;k&DI>`RQa9zu_nEJIl>nG<VU~MLQQQ
z)biHCmM-pa(MmjzZPoHN|54hzxYI=!7hQQS#+VK+I=SfV;w~2*UEIIR9B&k2B4HZB
z;u1-|+hw}B=<cGYi+knVLlN$g178MV$``!Pg(te8nb#Srx7zTii~cSi6z?N^Ncgbu
z5f^=3EK{5NxuD5zr}>zR$6cIpan{8XE(W-m<YKamCtVD5@qvpEInG@Sa`CE*;VuTd
zc$#Cw#fvTu?K01}7~<kt7tKZ(noJD)oQvmOgm!zp=x%evZu63hp)Q8GctxdN{txC0
z{;Ry^;&m7AxESf;4Hs{^c+17x|MAazj_?&$!3giVc+bWAE=Kt}Tk>zrJpYKp*u~c_
zzH#x1i%(sA;bM%7(JnqyZ+!lLmHpDiSQlTp825kW<|BXW;yV{Vx%k<|_b$e}_`$`G
z|J(l;F8(eixS06AeWtjW>SCjdO)jRnnC@bUi={4RxR~i;o{RY|X1SQn`R-!w|Bkc3
z#X=X0TrB?IKFeGzcd^>V8jd=-t#q;K|MFk!Vx5ciE;jsMx%uAM>|%?HgLH7Q)x|a!
zyIt&YvE9WE7du_-`rl>uy4dGpKPUD7_Brh0h>MdhTJJVTT^!?FaB<>)`=4@g`v1@6
zKkdJ{-q%@pE#-IDdy4Ozi$7fNCAB|=f4ev@@|UphZtvBzf`sS5#BV3@!{R$D87{L$
z5{M)aO(4MKy{R2cz)HYQz@aIHFKmVq2q(NZH<?!4Q82w}L7r@CS`d>D3tpZ;JOMWW
zIxshpKr(@paxWC76UZcxO?WS9@^#BR<`TF-N{6oA3z!!raB;$WXY-N-iYHJafuac%
zlfqoS#d)bXi<eB`vV`}hXK5*=5;)wlV1VBD<fEYsPX8+sxKdS@5wc;sTX=t2$|X=f
zfnG`UPNG5r6%%+nfe{JJY++YQph^PQC2+OOYZBh}R+Yt>du;-vcN>!H6R4U%n*`b>
za6<y~cbi)hsGHzU2;N&)OgAP_J%Jht)by3w3DolWO$lt;?Y)h~R40L(eZBA=b6=Ct
ztvs!Km?wdH3Di%ZK?1iW&@cgJ-JZZ_-xrV&kG<s)rbY=gPJm_;VNnHPgk}j;-ea04
z&?14B3GWxg9SO8bptbnD-MoJ!DwHkQcvZpUL#%e}%mn%+@Mr>eCeR^)jy!g@ZI8Jt
zfjT|BYYuJpm_B<<XZGHQrdtBt6S$kvs+umsu0opqT3S64xQFNNe8EEr^h|h9U)-0#
z{R!MFPV@CW-iy)?B+xs72PO6r)^A~dQO?U^>LaCkBm3b5j=p4=9!a3DI0rn<iF-`{
z1O_JXR02<za2`uw?H=>E@QDNlh&(B*+s80#Py&M!cqxIQ3GaU2)57P3&m=HJ<XIut
z<nw#X^WyY;A%Pdg`Sm55FN+UP;5Ct9!dDV_RfG<sp0S9p%X}k&1O2^HZ_0ej_hA+9
zBruX^C+S`Ac{hRgIF^#$X?j0_Q3>ozV1EK1B=BJZ3ldnEz()yuoWM`~Cp>{q68JQM
zuM!x?G09Pp!1{9qV-om0fwKe67sAziU(8QmCNMSunsj60zGPn~@J#|gNc=W|?-JYx
z2ICcnxeP)#Vm<<u9~CpN|B}G32~1C5250?VGa-Sg3Gd@~6BC$}z+@%rQzViwG1p58
z%sEsr`%uBm1ZF9BZi1V%c!{}l65v~kc~82PtzqU#pD(;>uUVA9Vm3H|H3=+{Nas}v
zEKOip0?XBy6$z{qVKee=U^7T^wamO)W^DrN64;i&b{=U08xq)(z*dFYn80Q~<|Yv~
zAm6sSYCoI7AUhJ+nZT|DcFX*rhSy;F(|HePZY|H;>&NL`(;P_PAQ#>wGD#fbGL=9<
zlAm9~5sqYbX#&4-+9q&3fs+ZG;@srC+iTd*d1U{e_Rr=SoveKS@a+7az&Rb-UkUu-
z*LXgGKRIk_m|lAgG2h#NCy?(1Vxc4oClO5|mPC;x0!f6D2q(c~3?{u3VJE$_U?sgX
zLPFgUC&?cszwE_>Wp2bLJnDE7Blem^5^fSaQ%vlxB-hxQCZ*yeERszkmqh6#E>Gfu
zBrZ&%gmNzuUXn!7q&I*sPI_aN{>5ZonndxWH^TG7FF%aQ=}<C>%h>Eg1*MYSQ8SI-
zYpzJ*$|Nc#Q7MTsY)=y9lisOe3yEcuD3|<aY;a(3oG?xWHGn7XY94+PRg$<)RaZ{p
zT4m*{W<{*xdjG(yDl6Yt?CNSs+?Yi5Bx)qlAc@;Foofnj5!OoLrX*^M*GZz<)!rh^
zbhDH-d%fS4b(6SNCV9Oi>ie93wW-{mL}MupeZ7&$H#yTpq^Yo(u(`1MpfC%z)H-uV
z60Jm9C($X1&f;x^ZIfu1M0@c&g?9-%2$LhNjv`#F&hPaux89vZ4=G)Iy=xNPeBNE8
z*gkWQNKfItN!%xLzwiNJ^?ink0Uu1F4;@mtKZS>qcsPl+DYQ%BktF&iu`P-1N%TwN
z(Ih@iVsz5`x2Jy+PbD!ZiN}(7Jc-u(Opkr$i6klycKAx^fFzzwdheDF6p}o<&kRoD
z=_H0H@mdnkBrzn3p-H@)#Is4fx6eGE#0xy{4eaNHR9+N$DG3sq`K&w{rmR<zpmSb%
z)#tA#@kSEwQcvQ|B;HEmZB7v7{x`xqDmc<Fm9OIcBt|9iv9dl$;zN;-)PR2*mT%Q3
zDwuETXGwgX#41jlB)&*u3@1g>`@Q*P5@VD2C5c~?_$rBU62~X;brRns@tw?Xg$4fa
z(4UTazec~8IAx#tA&DQ8_(>-9pOe_Q&-=Z})T6sYoRGwnB&H@YF^Ne@<l_)0bCD?#
z%6m>rVrCMvl9-;v423$j&)ol#Io`?S{rSU|o^z6z%c+{g{3I49u_TEFe!YuC7ACzN
z;PWy0!+EL1Wl1bgg1?KYuaL4*SbV?d$zRH4FSFMq(eo4M+Vb|+B-SRej_U~*;qqpq
z^bMTm<?S2y8{(!UHp|??fp@-u3jbJh`#X~M`^`&j?Hx%R=gdlid}k87IQ;gT-E3-8
zdruO3MfN3eAc=$G`-N}pH-|(H`zHO5h#wWwJSOt(eseO3Q(PxgxIBf^Nu1#-okBQ;
zvq}8MMLUJc&FtTkIG4oV>~NWXBypZ2znRVSXA+C{n>_!Ehba!Z6;5H#t>HrAbch}B
z+=`?S>E)0FrCUONwb4o8YB{|2gT-7!w-j<ITp)*N3T_Gs@mLCR5xU)=B1xI)6jCCs
z4w$<Rm`n;;nNP@P*a354irYuv(iDoPaIqhuXbPA3{MQ4fn9qk*_gY&bh0COr6z)){
zQoc{wW!4obT$#d6Db!A(ObS;qD}`%QDC_%F5Gf}tpMrJJ3tKUTN-5;4xH^SvQiw?(
zHqtxxDk)qi{~E&UQ@A08YAIBeNr&nO&5h#Kh0Rp9n~=FRCDsyNRLayz;pP->Pobfd
zTT-YmQdf9u3iVQW@}T)##it)M4W!>DO#kV%hpABtO;c!=LSyMvnxwE*MVd=#nZg|+
zEm8;_@{X}p3azEI5tf(O{E+D`veU8$9Ww1xAYr;wq(cgKiF8b%Qwp6^xI2YzDRfVv
zO9}<H&D1r864w`8d3^zqsYeR;q|h^kdwC*!k#6L9BzYi(UhHi~o9MkI+M7*X8+<f{
z2Sv#Hh&+_S!@lx}NZ%Ct`3g58=%2!4G9OQ2Pzr;^pAZgUABqeVJ|!G=$PCb{sZXac
zB!y=sJ|pD5cF&2h_LoGSPvHe$c`@aEIF(sLedT45pAMN<Qg}6m;VJKdme*2vJ%u_I
z?23);H&S>rg%5d9)6JGc=B*UorCT|Vznwzi!)Ao=9pOkJH|Kee6XCF7dOw9xKK~$v
z8WKNB;o}rON#WBJ8Z@!L5{^#cixkF)f0n}MJX1|<<`T(Cz7&oX=Cde{ljqkdd?WoL
zV^RD*h4CpY%wSOlKk(vz3ZJF%c^W^Z@H1y+8b#CiC52y8*qg$>6egrFF@>cm@0ZJ@
z6ef!-Okqk2Q^jYeFim8pkZ#jcm?7Tsu=g(w)2tMFi_h_W=8DWqVZO)$;V}6u5??GF
zd)O@T$+8rdi?85`NMU^nD`l<{vX<2%Yf@M%!aI!l+Ba}`OWByhrW7`(uqA~ZQnm`W
z3%3ausSSCa$6eBQ3mI@v3fotB2em(i11S_rqi`Arm3xK@cnXKa52tWM<f!nZ@R;y8
zQG`L*$WuN)ox;CQNB@?>U($c~bI+ylhxnhu^Z)8<@ZX%OY402{@w>c4el4qrNFt47
z8i6!|X;@OiLR&~rCykKL*)Ss>5k}L9r4bi*g_j=rr&k*vF)1lIVOp3GW`&H*4!pqU
z7m8ez#>KwE78Xn6(lmOf@n9Oo(<qU~U1@Yoqh#7!H!e@(iZm`uqg0yvfjgzsX!NZ2
z;A{WOZJJl6Q6`PrY1B#Msx-=`aa|hMr@c!k<<cmhMuoI@QH57dDyC5>jmivu#Jd7>
zbsE<wYq74h<bAG9ql(JXWCVIvP2+|%s-<yb8hOwB#hL0VOShULHPYV28Je}yxJeOc
z<}cvfoW?C|a~h4)sGG*EY1IEuy>zSR*VrJ9+Z5+^)zwh^-{v(*qiGtg(`Y0AW@)rc
z<Bl|%r_sW%J>Q0W<69{RdA=oW(`fIvxt$30JJaYO&Zg#%>&<)YPHA*z&!_S15yMYE
zG_Pa0r!F5J=#oa)G`i`ebWdZ;5z|w=M;iBtOgiFSOTU)^c@ldYZgq8k8V{t=%QyM3
z78A4R)+deE(|99|hthaBjYrbxo5s^=Jd;MhG#*W35RXoK3-nK8fcRs+@^~5rN6iy5
zS6pe+?a4F-rty@N;_VC*#lbSU$p-ll9!?rV(|DORYA;iY&!zFad|pW7MV=t-C-9OK
z=2kxH1sNvu)ihoa$&15%pVxR6<i?Nmy_v>aX}p~VKgY=z$w#E|P8y%2@o5?(IZE}>
z*bmcq*XQr0@qQYkWPae|<88eiiJ3l<@-aK}sAn=hug;A*YDTBA>8Lq()O?Y~7!Jz}
zs%P+J8e`Ki8ALMpDvfbz%ui!M+Pew(bsFEM@m(6<a3t&2C-3@E|6aLM(ioq{4{7|!
z#XpT-)0mLP&+_~w{m<<}I<p`r@<i$RAT%eXG1;HR)-f|RjcI92Ph&<Ja}<20aF#G%
zYPR^r$NssiJ2#DaQg~mLwJc0yQ5r|mILe_bePtS}(pVx+hoxyO^Z9a-6~ao#%<44O
zq_HQBy=kmXV_h1%)VB3$Y)E69+%~f7IBxw2XJ7Ct-7K@}F|$>KPmHuv^R}n4BaNLB
z-#KQO=)7Adk0qb>am`QTkSf}*&N-k?qvv6n>?L~U@mLzi)A%EeKNaMJ@T~Bp@Rabh
z@QkqOpWYqz-_rP9Ciyv$dB+UHo=>At28DU{7g~R*4S#c9$mAE<DKf1;<}K7kGO(ot
zGTtABpwJTL9UR|3BoY>~E20_iSs<p1GKggm&%l+E6()qq3{n}S#WTYEb_Dsyfmk+|
z!3EOEFZ3NQ&ft;^ie^wO177N{mcgYN;J7K3LFo*NA2-E?B{C?PH;<dkGN?oSxVb!o
zD>A5<L8T0?%%DsL<ul%2iruB`t1>7jUY21?*-X^QN8VIW!Plu=oxwF3T$jQ15-VqL
zZ3a~`peJ+boG(JGn!ydeNIjoLAMSk8x~*L!gPIvk$#`#()XLzd44%&5nG9;PsTtgv
zL5B=(&fu1ex0JQYpsq+WiWY9opq|Y78Qh*h!wee8yiM5cxVQK)HOiog6!OLy@Ea?6
zy{SZZZ-{2|3|eH+Qp(dTC^Ev2&^m)QeuTCev=eXdD>IIpyE5pQLEjAeWzZ>u&KcaB
z!F_VLTX;_fT{7sJK{vltcM<Mr-9u!*>SEPB*#qMDOYfCI?+hOBOYsY;5BmI}4Ep%I
zm^Mv%Smq<b^a=B52K~jK6h4;06C#fb87kio1M*_JV4w)ar$h#2FxXcruCRt=@N5R3
zXYfS^&t>p@2Jb2Ng$!QI;C1nrgs=FehGy`x&xeU@c))tqSB7Wsn$L?H^F{`5X7HAj
zcYOVAkrBdjC(KBWgcIgnbrE}s{C#DO%HRW$4~3s*@KFXIi+>_aUQ*Eggm=87Wqu~4
zIrxMb!>O9Vj~V<Vacl<P`ng|aFwW;+XYh?U->%K~+jla*7mnwz0N-<*D*8EtNm70h
z{wkc{`%KK>)z027=#!=7JBL$XswToT;dJ4Q3}%Wjcb3R(;T+*y;XL7d;R0cc&i3LA
zmatV>{Fuek43=eZPZmA1Sf0TOPRT5)Wxd;WD>GP^!TJnVWw1JfHCoen&5)b<@R9hn
zTw(NFcco6@4H^8N!MO}JX0R!P&0L5wIFiB947O&ljq6Ecd!KN720Js@mB9{~+~<c`
zOuIAKE9J)%W{*#(lkd;qKn4dh-ljlQ4rM@*ZinSI>%>11j!8c$@i?0*lCR}d2B$MP
zBZU!u%iydygXF6q`6Girxd><BW^q1)zcMJ2MIej6+5QuTsUYhSu1-XV7s`4IT47<{
zCz!>xU2I3WmeBTnLRo~fFj+*hh-UF>n}V}<6x`Xxj&$)>(O4GbBrKlDBALadSrpG=
z@;*By%n8$3WEkh9Vakfo;esqK%;KUfF3zH87R9o-MCo6Lf1OFLKWR#2Q8J6GvM8Iy
zWm%NU;tCFfex|gLWL<gta`BBnJ3mYcQn@mVGJbBYlcro2<+Hdti)*r=Gb2>UqM{rs
zDIk5Q6Ir%$7FDviPPx}+kq^k+>s7X@kZv7S<i;$jXT7@#t+S|+MNRRhS=17tep?nd
zWl=keI=*tN$j!oAvZyQa^hxj5Mm_QR!Un?9jXa&{_ADAoX(Xi5Sfoi7BUF}3vn-lR
zY~lN~6uCp#N;v7HX_G};@pf6<l|@JK_B^2?9fW!3PU2mJjNh4KL%jAO?@kR<SDD>}
z-LvQ+@@ZqQ&AhySFVELZ(?9Fo?z~TUe-;mj^va@l77vOu_mM36`23+P9`^allculF
z`-wa%Ja^JOmc`>)JdwqKEMCjv^(>yuVqg}}W$}F0`xg9DSqv?2E;wZdWigmzyJYBT
z;gBqz5$SiTfa0?n@b%9YtZZYrYw-(Nw5edP{nEUcMWs{bB?igjW$|HIypl!LrUk7U
z*-WoyF+7VrZ*a;m-F?cuk;R)?e3Zq<Y*Ib@tt{TpdQS+v%{H9!eu<38;+-r;X7O$o
z?{Uhs^JZwZw1=NF0{79)dOH9!eUQb6;*(B!<|pjiK3192=9?@&&0;i<_i6K)8b3z-
z^DMr|V(%%##H=r~7@Ngcau}Dz*I5*t_TqC3Up`s7rJgr=>z+2>X7L?;PMhzAB;!SX
z|K0j2i=R1kFF>6O@JklIX7NG}FXk{Ii;0}VIb4*(Bu?`zc4e_Uiz!)5<(jN9FfEJe
zS<K5~J{OP=tr-$$3ug*v@f_9uXKc@rGFMpkpf|J@h%e4!p$L^lA~zf;SR%62*O!U#
zD*XzPm07IHVs#d4ve=ZxW{GRFSf9lP&Rm&%5Rm~lisu!YynnPMi>+DgkiIR8L8r}j
zapsaU4X@%A+$r(Tie?Xco4uL?a@d!}{w&UA@kbU1<ZwKT6ImS0;*iY4SseAF9T6FM
z+KYBfoDWfupUmQP7H6_JC2_1A&ibW(7x^u3o;K}IdL8vAN3s(6d1d|O`~NMnOF;_d
z5Xd2z^H!?DITR5g=iys9*f}I}Nao<=5X!;i5RpSThbMG8{%qkjk13i%Tv;bhn^+FS
zB4>>2M=O5Db4$t0=8zW2<j}sMX{{{g=5n||I!_tRi*vXnhZZ@s%%Nxw#d5eVhwJ5V
zX%1y`D3?R=97^O+GKb4@xIBj|a%iYyFD19qLWX+wjJeY1WpYT#=PD_;cJk^f@8@2f
zLj|8#%%PI_IKPG0<WM<>Yjda~y~y=u+ySqvSDZ0bbGRXgTXU$VtZF&b%%N5eH|9`X
zN{t-O`El~(rW|foR&8P8tf?bn5Agc)7V)|~#<N}v>&ql*DAFK@+kEAA#*t5>92)1)
z#MhhU(A4K!M_SFrPu=E4yCa8IIrPn;Uk<HvXp_S|IrPk-Z4T{n=$ymda&9lYOL(WS
z15a5In-Mz7B<Unl=o8aLq?@mI72%BN?khcV=%#kwo5OuM^pSqQu$S-ifJnJ2UL$+w
z@Sv}Az&|AZu&+FlL!&#qj$(RL;^V^p!pDRh!%yTeAcrS&7?{Je5}(RpP!7+Cv+Up;
zo)*75>s6Y4&l#*n4#{DZ$aBhlUYL5*q0dV>49#J8?*Gws7SL8y;oH9tb?@b#q2r#M
z(=&6<p-TiLqy_1a5>QGdL{O3LlJ1aHqy*^(X;4ZerMpX{!|$EvF#i3%|N7RN^{n6f
z?04_kvuDpfJqK4)F(MTsQ?WZ0dr~nf6{AzJG8L;*F(y_1MgenDF*g<CQZYUiQ&TaG
zjZ8?zB!V<Gk+A)VZL;M|k&BKKU^<<dmj9jf$KvZxY_lw$O=z_>@%vQ#kc!2r_=(Ou
z>H_MI)cL7M^VB@Xg{fFXN3{DEa{!m5VyVmrmP+_@DwZ=rcv&i3mcJqu70Iiu(#@$@
zLtdMTb+Z0j{>D^nAb-pJP2`2-EyAhTN@oXE_OdM%+sQN8pPiP!D;0aKz3)xMu~ZyS
z#jmOOEfxE$oCB#?P};UX6(xQ$kM3Y94zcKW>L1j@skp{=j-=u!oy^Z{a@k70Y$sB2
zDix<wags%UQd@A9IFpK@w-PSUk<7EHI7dEjInigfi{wi({tpr^lj}S)TfQcXe=2g>
zk=u?NskoVnL_3n~xRr|Asd$o#r%b++iid=|skkT0+O5R<vVPKeK<&-eCQ|>VBaJ^w
z#bb+?JhMF`zf8p|S!c*EsFicrc09AaPQ^bA)7i~+KEaMO1W-@0W%1K8eD%zho{)hm
ze*WjSWO7!^$!JH49X2}@I+>}NsMVjF$DW1UpDbZEhS{k(s5$Le-rOAgR6Fc;1nmgX
zcTn9_ryVZBY^xoQ9V#8K9X^8Jj(|YJM04ZW6bRd)*-_ArLd?<ah}n_H4ufHY8l_5=
z!?kRAEzW1hJG;$x@>@;;Im}w-idWc<B2sGkMF}PBC}zi7b`-ax8AteS`Z@X~-YsvA
zLrI3EsJ*JEh*O$ehFaE+eGW5Cw7eY^?8xarE(a>wQOS-U?3iaqWjm_a(Nx;EqpBV6
z+0l@7tJzVVP~RG*_wA@brzW)ywHCFu9daXO+0lXLwz_oc*)i_)n-Ob3=ivkMvFrmo
z8Zm546{iUy&tC~2+R@yOfp!eCqlFzU?dW1hS35qk<6}G8Gp&^!tqJYyXk)c-?zye4
z#Si+Xd}7C^3_p`&;ZC3M{C2RTqaB^B%+7?*<&3|u6@6j*f??+=W}m;b<10J*()rqs
zZiHSkJ}=B;{Kk&%cJ!dxliH5{NU9|CwxbXINp$*=`%{;^unn+aupL9lQ|%Z^7;VQG
zJBHaY+>USQNNXbrBdDKOPZ~woXYFgO9TTj~adwO+pJnMpJ0{sN*(#l4$NM$S{-=Fu
z>NGp1+wmPsXIVKj?3hW`m^0gsISl98@jameeW~8$rR_&M=G$?_j;nSouw$VeyY1Lx
z$09ox+p&)MKiRQ_u-cBLcKl3UL0v{&PHprcp$}VL$#4}__R{mKlr`kFR9R-lTyMt)
zJ2u*}$&RgdY-7=8QGz6Fk<qjIIiIlIjvaRFw7*%LC8y4<gk4s?{Q1*fJASp}m>tLM
z_)V@F$z<t%E9Vg5fE@=3+t}>yb{uB-hn&G%2}h(6`cJIAJ73vOFyWLPr|mdN{*x+w
zsDHz}BF@-x&W`gm&&m|#<AV4X=v<;+wBzNT3}RkpSmu>^2Cvz1-Hw0kNO0hW9XIXx
z+m1&}xMjyZJMNQj+i{0*m)e4LrTPOoYo%=uY5rwL{H4MBCCrv(du+#Z7CoUprHcQ|
zjsaE+FQiv?ypolWeSR$~*sX*mRw*3F=rGS$8VAxkkdB;46*D~{1GQQobKy!NCp*w&
zquGHJ2W$=~4rFp5yHzW*16dr%%21xkNLn@re&ZhH`K^RGtjxD>CggS?)q&X#%yGc(
zfWv{-4zzK=>43|DQVzW1kpHuQ#{ta&-2v6A8z6Y8KC0h=$JTKL9SG43Q&V4?`!yVh
zI8exe!VW|oh_R>uHID=N2$Gi9f%44HZ#kbaEa*VoDdIq%y0*7iTGYxZ=D=4aZ2e!`
ziaYQ&%^$u`Ea5;&@^7zgkJw0Q2g=CkIndOBvJRAUpq2x*9e7uE>cD#rRCAz$EdH!j
z#eqsz`;}!J{xOfD6tyb-7Ub&W8dm1}gf$<U4_GzHi(1<1I8fJt53HPega!`OC){mf
zp3R2j!E95)MhqJ}@I9So3|msA^g{=lTik*mA8vl+z{liPazfuXJ0M%<TM2C)XeWc_
zKwp-A;y_0SIyvyE)xu|l_S6mzZ08<7cc8Na-_ZQR%KVDZ#euF4d`W)7<dg(O_Vu*`
z-K@;YXA`?S(1T%5YHw;UX|}yNnZfI&p9B3J7~{ZL2L?DW(18(F3xgaOYVlyg5C`PZ
zA(EgBb6~gw@^)GL7{7I(COaVENM??5U^HPE{c#SAXZRg;f&-HrnC!qrhMSl(g)A*h
zb6~2)j?O95EuL7{HiJCVa%MSjl6B|GX>wq%1HU@(g9Gy%Snj|Iru|6$$$|M+tpyG&
zbYPJKiyi342VYS+E_o#`dtc(f>jY&flYe$#8KL{p#7#|;RyweX;Wp}O2Z}=3=)f8W
z*3wz$z<PqT<ASn*yl1dE4K|TCJFrE7yp?*rlX)&0!aRN39oRv0rvtkPV#=M_b~~_#
zVUe2&@yD0n9P+FQryV%sz<vh~u=E)9paXvp4mt3<1Bc0d*uJ!Od{y!hI>JW@vX~zy
zoS>d`;7`IS2c}!K<a$5rz&Qu*IB?g2^Gvuwz2Lw_2QHDN&8rSvcHoN44Jh&ipj$3;
zNUu3?U8dsWr1>2aKYpBa2Fgw5-?D1mCfwle?m6&CmNEzKJMe)1U(~;;4`pOdnr(XL
znXf~i(0t~=a|fQ1#f(2@y<qstftQy558Hq3K+ZJgXv2v#PMq@Kv<GRONaw`gPCRlV
zz0+K@T~4?O8JtKYBvF%{$mm20S<-SjVRJ%pA`_i#mY>;)EEZ>VqB!>``PrSwK|d#T
zUMX{x$W2bA+NokXoN!uPoz*=~ly#yUO_l0(!smqFi2%dm)Swd~C&Er>P86Y|J7GAH
z*NJ>iMCin*t<xw`Cwj2)JWj|a`<<9Z$xkTgL?I^%ki{?a*PA!@3e#DaMmd{CDM~J8
z<-Fy@=IV(r(<pB{QNoFm^vgK$juWM*@{6I;G~+)Vl4fO-(s!LGFLj;R;zR`}Dmu}}
ziM~!$a-y;mA3D*TwW>H#!-<;Ys!qH|kQS;rQJwt0<tz%@YLOdJYdcYgP?y@kiF$<k
zRB1s?t288kU^xZTnv<k4!zNBNB{Z{2tEW|3IMLFHZ!G5{CptLM(TR_pXhpL%wVe}f
ztemz^NXMkvPn`JFiO=Y_rw(an4#mt(rpnfdW*6$`PIM-GLH#JLGBB;umHed>UlG1`
zq8s5yc6%4KJDna>X|tyjy)5qS#IDKaj`}&#--(s<2RJd%i8)Tpbz+bcgPj=f!~`dX
zI5Ct7qp8EFBdEiv-%`(|RYnp<Q8T792XG8oV5}44EPgN{d7=}OoS0!blbx7Go<f~!
z`34)A?!<SN^Ddp43};biQ(Mvhp1i<`9|-fPviBbe^PO-EPaKj?StuvMiN!RRI`Oj;
zKUtYeoM=12JV(ncXE`DMEOZ6=K-;8MR_SUd){xgav5v6bi49I{Bui`3)TNsVn+Pk}
z$zPn<Dk~42ZBA@=;s|*MRr2>bv6H-ux|_O(dNkgGd<x*iZ*=xKvEPXU<U>yUPB=&n
z4^KQy_=Eb;svDhbE}lo7I7a_C^#oP?lTQ3;ahCMTX(!GwJnO_|C$5msQO{E^IB}71
zi7G8T<l9hJow!HmniJQZxM7vvcH$=a7PWACbDrEGKQEhbSFY>n=FGfL=K=LE>O-m&
z)%!T{u@g_6Xy?Hv9z1p8nXDmhly~E~6EB>Y?7|cmUOMs0iK;HV=fZ0z{*hJD1<i#7
z7vMq`7qYsL#)Y&lq`1)eNuq4>vn<hcE~IxMgA4K~E@84&n&d*8^olqcEvG+28$-o~
zOqQRS@a`B}Hp{WQkllqG40BR*yO7H&U7B7=wfKv>2@V&WF1TE9yWpq4I!ltrB{v>P
z^17fBg!iXcM12gUR{<A-Oukh&MZysINqR+h!Em9Z3#D9$xDcgZgc@_9AVKo;xRBR{
zd@kg-oB{-Q2Bmlg^Qa3kEKFTeFhQK6E)-+<mJ1~aViqU7O<i=~9Mx(Wly_Vx?LtMG
zWvtBdE|evgqrPkT@^91?EIx5Np_0Xw300_{W>BiRP~C<0E_86=eHUuD(9DGoU8w0o
zEf+rE$*s-g`c?~dT&QbtJr|~3H@hcW0~Z>)%=`AsCig9GWaTt=p$WMu_4>QE?4`^Z
z(%gl%bXvI3lJF6=HT7d^E9#gGN*h8-mc+$(655eJap6;$icQR2e?}+%<HU|GbaJ7u
z3;kU9TznSwaN!FVx{$lM(3Kz+za+?P`O0#>cA2*qOP}BD;Wsq9Q{_H>JzZGJli16J
z-d27e!k_f}yD;2^Z(SJR!ax@Wv1o{uIoO3px6Lyy+fbUrs24LRBM4($80*4F@+j(P
zs^mXm`{P`gNM}5C0yRgXIj>}!#GVUGm6PJa0~h{sVY&<7xp2yb(=N<#VWtb~Tv+eI
zEEi_8`p?ukF3fY`M;GQY{N9BhTo`iKeB(lX&nUmmlxF9<@DocHxUf(rdFzx#3>Q-i
zup9DGyJRkrfubo~KT%oc!g7WysH<IANmxbQdduwm8nVDz7w*<DcelZXjV|nQVK0j|
zxv<5BUtHL1Wv(x6+v>tL7j|0Cc0xP$WCwY1PTMZRZYyV0qVlT?zqxS4g`?7-ylcv$
z-(A@6!T}c!x^PHdc<}d_a^UjoPV)zz@7UxNA9mpn7X)NmpQs$O+B`uxPL0o&laj{p
z1UqxaCEsksT{`DnI8V6Y!Ue(=>O~hW5#&5xCdeSjE6}TQfaS~qx#q%k`eI5b+f9bI
zsJC6XW7T@do!)cdKAp68%~|)*g}+^JxZ!l;kqeLI7~RO^#*=uC8|mD5>cTS@p1bfu
zR(tv{sWKC!g;!)H$((Qh$U}e|aKBme)41iY(oO$|oo2_<TYj<|8OVv2ljO$U9_Hb+
zNm4Spkz)Baf_#%%iZZ*A)s1X!WU)$<?j~fnI2R#@8#xKSJ7(YHXN<YsNVRh8ZhYo7
zn{v6~b|bGF`B>y}!|R664b_b)5p%A#sFLI-2i*v{5wKd2FAsz*j=G__p}S$wiBQM#
zc-K><otTUO{Tp=hlZ(1hj8MRhf^HOYqcB4`cBvv;5r%gcCcfoHaW_gce4AR5T7tTr
z>qaTEGg*1ZjX@meGIYvP%em!mh0SI^OjatmQPGXtZrpLBk{gxXnC8ZGH>$W%)s0VO
zaNKy$jcRT*cB6?K)!lgCjStw4v{1v1T5i;Kqb8j`Y_^V7THlSj<a(C#q?D}zxgm8J
zPhunTbk=QZWws<VbK^rob7~8#RBkcxksBYo(aMe1G(VxXaic9^3tN*OwsYfmi)Hn0
z??wkV`nl2HjgD?~a^q{}e@^X6?d--Egi4$+UC6RbeHkx(lK2%t4z?TN8#lVU(Zh|N
zao>&26>PoS=<S9)gbBwV$VB@x;U@btz>R@!jB#Tu%|ULAAPjb6h#N!6(*NOZ3?omQ
zXHJ7}rEz)Ylkv^080p3+mX4-|GAeRMSxFnma1wRA8xsf<sZFf9lVvi~k^HG{Tq<K$
z{LYOTZtQbozZ)~%nB~SgH`co`+l@JHEO%pt8*|<G-i?K<`-9cOkA!)Ww$^NCKEnmn
z?%d-dHx|3`lN(Fi_?iAv>oIPr8<VCdORZ(}1vWl14|XNP)o!e^{P;z;#*MX>Glu7A
zgB#o2*zU$g`kQ2w-15)A$`*#dkY#R2n_H>lGAcXV*y+Y^48`9?*ezE98{ETiuN%J-
z7G+fA4!x2l+tu3%2i!R5#(6g`xN%4(m>VbE_|uKUOg`e4pGx5mvg9u>XFEndPL)Y0
z<_U{s4VUng8>i{);8>j@pQTFaIXBK(XYC@*%hXG<EKf7X?TQ;$-MD7u-ymF<Y0Q1y
zWO&Oe{VSt#*NuC!h<On9;JzCV+)zBo<iTHVJai+$19<SaEdFl1vT8jhJfl95$AYR!
zPu=DhFJ<q~Y087_3&KljEybLluNeybBg+U!HI2tS*hCMK2x&b?M-Vf;2N}o)>xz@i
zFol|t+WK~a&0`L%e9Je!Tx6!NdXU9~tR7_ZAiD=HnmIhk=|L_Ja(m1hLCBL6dDbTn
z(5W8SJ#cu;2XuL`j^C+6?!6#6PLFx}2=Qg_ZjbpC&f}3kRaE54^|DRzeIEG90m}&z
zK1oqD4|ETzdGJMBb65-y3VBf2gNQWiLCng}??E1NUdzen!D#EK3wTh_^5q$<v{S@`
zk{*=upeX%f9=zp2aq`<#IW)PqMhUCdH}Bfs@u0Ny+=B`pl(GDB9+V~9I4h*(cRe`H
zYp|k~Q^kWy<jS&B?tKY6R@H;|=pRW@UZp72J!sn9_Pz%-JgDhGEf1QA<3VkY{F|H7
zz=MV!)bXG$!+O;E9?a{JEH|Z;ggiDy^aBqXvq-p+)TJrh#ilg#;6o2Swo025T2fnh
zFp!xaF`Pzj<w0wPZ9Hg8SVsTPc&7aL%Y&UB?DF6<588Xo?;dyXV2B4pJ?JRY!-LN~
zkS}A8SZn)+rJZGDPT9Wjpo<4xJ^0ciKLJs`rV4x|6?-KL$kt6Jm|{YA4|;ge(*yZ5
zq>l%E3B5e%?SWA*LCgrXp9cfv5Lnuu8ZRA09xStkX_7DgFb{^yxOwoS2j6-y!h>lZ
zO!r`<_>GcgbWWb?!6=zL9*pr|EPFml&bXqC^I!r);qi3jkY$_bk-zLwMk<Q%WF}0J
z))eJuMcJ(=e=Ev&9?bBVH<kJ%lj6>#%=BQE2eUo$XAowUIUckblp@>rgt^ojTWvr5
zC!FuW0uR=Cu-=1((s(9isRuvHQDjmUagU2V_=&J0ld{AE(c_tv7nzi09<1_U*tx{z
z9=WBwvVyvj>dI^;tY+yNs-&$Y6w0h@@L;3IyaB?T%*v;kl}&PtRcu>55Z+APLj8q0
zD6=A^+nBT6gB=9<2B4U`J=i0wN8JSZ;g4*4Jviwxe*`4o$N1HQ-#pkSQ;7G6+*LDa
zzXu0AILHGz<iTNCmpta(!+xi;zE;8!4~~*gcyO#%!ZDdqa+x$RZvwU{vm)Q`m1G%G
zxnr0(e=<|<X?Dhgvohd8%n9P02j@L_<-=<qE_iTJrl=PMy}0DTWe>b6d@8PZaMgpC
zk|v|-NV?|1T@UVgaGjwzHwZVWw>-E_xMP*dU!mQXS<UdNtp9|^R_Q}|6d*sM%8LtW
z@QGELbRprH#m@;Z<U}W%IkLT$2NV^VRs7>Yf(oc+_tL0HtK#vMgm_Lm6&X|{vM4?E
za%LrokU~wSX0(c=mW?c+5YlB)gtMr~W%*eN*{Io7<RIj<O5YxsoLfbz3cKaFRX8km
zs&H8x%A$BIR#hxGXZG2zBA{ZeighZ2DncrHs_3O6tU^;!Pepwdx(Y)@B^8xbL{vmo
zyrrVJikON#Y_JG5uZjXH3aZGbB0n9ugSYIW0*|PWio(|3J7iIY(=1A-nB~u;`L>GE
zD$1xRp`s*<N~w5<u#ySV=0-wU74NDjucDlarPs{Ext>L-z|4x&bXm>8yw)p4w2F$V
zG;67Nk09pzs@$vDJdf2a=h%{D32UgRX*qe=NNt97sCA`#G#jXBNasrxAE;=gqOFQ{
zDjKV3qT*u~HKl&2qPdD@<WE?)g^HF8KcarW(l(++QfC$o$f~qb(VBkrT0$Fw;}>%<
zKT+|iicTs%r}-JRgNpWq1`Excj%0y(S(VNfcTw?$#qxV1DecN|ANTkb`D+#3RD7eN
zyOr64aDh347A5v(I9SCH6@9FnzAE~W`>Pm07)TvNmG4!`z6vBH4OKBr#Z(p3R18<~
zt%`|EkkSz<#*#;>7^Pyg<&PmC(RPC!7{_qDiV1|Y+02u>c}wCXD}S<zDP-3IbEnf)
ze5YcOip4Z%sF<x{4tb`ESynAK+nKB42Nm;ZeovK`BtNQ{FIS3+g{s^<(A=GDa_5-@
zo4F=D-(c?LClyOnELX9DwU(;*nXrIs!ZH=tt|WA1-IesE%4)(Y6@#oc*Qj!DI<x)t
zDmJKiq2i^AjVd;&IIH5Eip?svsMw=ouZmw(Y-I~KSY;b|r;6=X`#T8o`_o;7-Il*G
zoARrQ-&7n^aa_ed75i2EVU-?GaY)7QDh|?-e;<_o941#JOPD{q(j&WagyvDI+<is-
z6Dm$I6h5iqPqO^St%S0jW_U(U9NRgs;)05MD(<VesN#|gk&5doE?X^JA>_W4aFwt|
zHQTvimEKly)8bo%)!CIhvPNYx)9%vQ#~nRT@fX8J4a}m4D*k5pNW~KsPsxvE^=9%j
z6+6x)Jf|ti-Vuqj*CyI>D6dq!R*~I{9A5mRBEgHyUUS8eH6LDNB&YErtrzLMNbf}=
zoeW-l9c6!<NpVQ>BH1f9&v`S8s^?Hrm}&Du@j~PBCCz4{*?*~7Hw!td7ug8n$fc3f
zi(FplUKliUd*SxN<3*|$b~+9(oL2tc;mIYgCAb)Vl|xYpelG%Ec*#C1b6gH3XmOYj
z^2(h|%-(92e~4j(VIDaaLX7(R<u{Ljc^T%T=J(=0s}%C0uopfb{5}-%qNo?My_n-g
zF)!ZoqOTYIyeRI)+g^O&MI$dtcu~@edTgYW7w>rSo)^`;DD6cVFUosS!HcpimF|`E
z;uWv8cj;uyY4*7yxw02kyr@Lhaw>b9nrnNj3uafV%I=t1-HZ3VsLh-j)LoyM*L6)V
zYB79zzziGaRO&FSOKr}&^~nvW4XI_XnvFO1qKPz{Z0qSoQ!ko%(awucy!g<I=3ca7
zrlhs-;v;fPYIn9N{>NTSU21k!w$@&>@uIC)?s%YV&#64<U`~urz48_xzVM=p7wuWM
zqZgeB9lTgO!0hnn3<WxSF*jtpAb+&M_PcuVr5D}2_{NK`nDe!jY0ITdtZnX8w(ef^
zpkE}HIiA@onUA5ptjykC^s)H%xrF{+4DezUoq^P0R_P$ZU@wMP&QL<VT*`3E`Iaz(
zI+EHUmonOmF<y-IVw@M>(H!r^1Q{8!bY`L#lf0PBP}Wazrg)Ko;b8VzoM{ZFQ|IPV
zW)Q@m>BTIIf6b-L_2PTEy1hv7;Ri3~d2z&xqh9>z#e6S*@nWkN3%pq9#d0rJu;L=>
zQZE+A+wo!v;c6}=O>T3<evbQ&q-D~0M)Rz#^kS74>%G|E#cGzWwQ|-FJgm5mTs60{
zk+7M%iP}gv+mUSx!}htAZC-5mVviSlz1TrhN_WeMDYl(n?6RE2S!_i)?SG|nz>9-k
z{N}|zul&T%?5%A3Su`QHa>%N6nDDzCV;0-0+{zyePc#3R7stK0;l)iaPIz&WMHi`m
zdU1|$%8S!poFSj3K49G<-<wBqp3ViTgwJv-m%O;l@Cx-B^{T8?sc(9CT`o!TEiZ0+
z@z{$eUfl8GE;Ao`agQLaJs{kt4rP_Uyjax3oWp-xIgbcGu=FYUr5De<cut<p1?>fS
zGjm>%UsLbTNrX>c93i(4<<2Lh^&y=P8GT6cne#9`HG>a3F1=Y56X_)RkW7%AD{Rx|
zLv}if519y=sadI6eE8^<c`avSD3H-^4n+=zIeo}w`Hq{3sbsqk4j-Ikj}NL3F0$Lo
zytyXv&XokO4|lECEDJ9u1bhhkFx-c4eF*sw_MyHH4Sdji(0!=rLnR*!A0lkz9Ur1T
z#C#~^Lt#33sQIaRsrjTGcC`S*g4CI1%=2EvhoU}|pi_)moGL|c`Q+9LZ_f4GlEW5C
zva}Sn2_4BS?L!$K%F5u=FK@N*F5zptQh{(dySc~8K2%{?i(1u(>OQ>h!+Q)Rp&B9A
z#e{Fqzd2tue5gq?zMj`6*Rk^JN<S@@dv`P>ck<zLA3pG*kq?c1XyU`iKD6?oDN9>Y
zoB8me56!K*Eqs`29nmVg@{#4s+-vPa8y`ONp}h}n>3>3PM=fKw$tC$ISzlw$kPc*l
zjy{~>W03GxyVBW*FMR0jLmwZy_|Vmd9?bmG%J1gGR~CQmlecATa*vm9ET=o+s9otv
z=tceIe8RT#34O_fsr`KDPZ&TQL>)-IXIEbH7>6*FUJWG-qn7(7WdvcF56gWR>63qk
z!e}4H_%N6LSRcmu@Ev(Pb&?O0eV9O=NcB3*IWvVkm3nBFIVRJ5n9i^~6RJ6s84PFo
zFpDsoI!DHt2~uT{L-}4F0(_V!L*c_>Nnp-=>LMQ&_^{B2rB?oahZ0}emN4OGs<g9|
zaND6=<qELEhm}5@_2HZkt9)4P!!93o`>@7`wLWb2VT%vzthyV0SWmWHOV}Vwiqky0
zO?3WU&wpXK-G{A&ZPbd)+(DKqJAG*9RDvGc9v}AlaL9+>efX87`>mYc2>ay1XI-gv
zz=wlY>9I+Phkf{i;VJ47ACCKQ!iS?i9Fro}O6X*+t0$T8r&af<Q)&8zc@|F7Ib-?Z
z$%*IX%^z8Re7HyRq7OF-mwdSF!xbN{`f#1jHLI3PIcdsqB=H8F>@KCOOSwh9O}#^H
z<ub?Wz7G!=KJ(!(!ei<~AO7~?5jp-6_0RY#IC%@mho|(ru!ZO37u1*3@4qvT<sTms
z{OB7%zX0Gz8b40@@uweY{Yd9W13w!2k=~CCei(j4{N`gpq90B_Tz(|^k?coCKT`b2
z?ne$kY)p`xECj`mOn$k=t68gVz<fk5*}#^SVK(Y0_AMtl)epNLxyX{4+mFSQ%^u1&
z$E7$de;=#3{ZRez()9TMXXW?#5u)j*2CP~^KVGt8*m5-K{BoO4m0d*ri1|^@k9YmZ
z!<@o?6d~lL=JO-J9|im<Xthv?aEx!J$@e0P`caI|JJh%QC_yMrm0i5;mk+_svsuz|
zO8K#LNpdy6tu&o7)UwoK%q;Im1wY=m@+<mL)#6HiR3=xkoR+Ne9>Z#WRJZ&-Zl#7F
zH5u0Oqb{MgRa%Fz%&pY3oce_EO;bMbqmdtz{Fv-VV?Ubs(aVqCel+!?8FN0Pe&|Ol
zKU(|I+%LCPG0$~N>PJ-LQo_ds@prL@Z5X!mqb=b)%}>amTA9z?N_#&#_|egiPJVpl
z$Ja8KJj&;OeBnnIrgipXT?g|zm948EUs`nwddxx2_=h=py7|%Fj~*=g#t*qv#q4Qi
z7Qd8Gf=(Z~1pF9HzaMp|AH)3euK^g~$3QxRse`D}Nal8CQ$rZm@hHOyBdyYJ2_yWt
zxz<dR=O?55=8JLRF)SME$2h`x>O|@Uxrm(R<GVb85uM`4R6q9m@v9%x{Fv^?DnC~H
z@tq$t{Fv{@0zYQ5;v7Hb`Y}t=ytdhN25=C*CreZF{P@A*IV}2-;TG~jVLz7mvB=6<
zOlaL9aj73alUGoeQJ4GWeQ$G+Wh<1;w$cw7+oyEa__5ZH?Q*bkcKlfH$1kiRnH&7r
z<i}<|Hd>CVnvL}1gZmbm@6p-n$2K`xe0twTRd!nWdkDMy*iGmdF~=%Cssg|HambI~
zS+viO{e%NlDLqKo)7YFahsnqM_=9l7$~j6{-po8@$H^zCwY)gx$7w%`22d=3Gk%<v
z)h~eL0M7Yw-j8Q~Jon>*9~b3}`*Dl4F8OhdAgx^{T=C;7A?^F-E@ZpT@CJ35s@(SD
z4*8L+X#~mn%a410-1p;w<;d$ASrX-KtA}*{w)|$LY>&xLs820_qN==*1(0F70A5)>
z0(edShnf&DFJ9R;s7e}((*|&qCq?}90c5cJM1s8Ko-u%w0D=L80<h7{89=T8lmIdX
zklD)5M#vJtl5+`J1M+T_dFr!Ur8x-WgSOlRcL1IMQUkCD;GpBOGMxc=&+5(GlUb@-
zzCQr3#Xf@5Yo-Or@?aefKnoy`m7^0P0T_fLOpaQmF~S!r@)Gg|kUxL|0Tc|N2%SRI
z!qg_L8-F1q%bo1>tpJJ#&@g}x0(d)s5&@J8;9b%42_*w4!&>rQN~wVPj><a$lqLv&
zb}6AOOWU!{@&Qy}SesgrS~Y-50aOm)LO%0kRSC#D73Pu3o1*UpP%VJ!OcST3G#fw-
zhKsA17mM8WOSD!1Ggzfg0CfYX$Ap|C%_7<A2hhN3Vf%r^MgcSq;A_ii62Qj+v<jdp
zon`@i7(jEYv}FJ-$a~oSN0xuftF#WF4a3g^Xd6H~atG=s)XxI=lpuZBpJZ!K&gy$}
zt~&<M$to@2Q#uFm1;Z`@d`aj^t<8L?{#5{?MIR-03*egoy0f%5wFk8)Rrb}3(ATH*
zAxvir{bf`G$QDHQAO;37D1gfWTnS)s07C*;7r^=eh6XS!fJp&N4q!Ozj^=rkHopyE
z1f7voaYhBOgDsDtGd6&6OdcP=M8X8B%mMi>N_-|v31DgfKL#+LRi?>V3t(md(;0q8
zm4#OtpB2FD0Dhn&;T*#E0n8<=S!SNu_(voH^W<=>_k<S&urz?5nYJ*1MFA|1HzL<*
z9AxeCDT?1b3(Epn9>5y<E3DF0gq1SSnImbd0~pJX$<|sqvPx_q?+#!OVPgQB0@zI6
z62LD3Y?blh<Kwmfw$tB9m3OnH%^l>Xeq|RyoIid}+#A5J0UQtDL;$}9urGi^0sPK{
z{Q(@bG7oUgkt*`wD0<lPk4Un7SirD4KmIsMK1S{0S56YnP^IFZgj3Yh0ZifXo|T6H
zI_CqpXk}g?NWvw{S?X7=25^nxE9&(C{tDn>05=%k4B!^wb^!MXe#3SrfV&n;2kw&}
zP!DqNf0G|kC1K~~gvYY9GJHyX9>6ogCFZ{%zobfj#^ScuvYZBx5CnqeIA;tZ4M8|V
z5NXNjEGNCBC7NTHNGHkilY{1$6~#}XV+%qFB9m2`C5X)ASfe+OdRZAJ2b3H^<P4%_
z5VeBHMY9w&cMz#T*n@Bc5eXt1gfj>ii$X!TgYX0qV5m}M*S;XU7C$*;?#R#ZbY@%7
z0x`ouXbg3#5k%I&n-!*)J1G`Ko*)XdNRsms3Q+R}k)II%cu`6VGAtB?ymujCksyi&
zQ7nkJ=$D`tr@kG8y!k0P`K^7Gq~9>0yc0xeX@Q|6R12bP5aoh+H;D2<^U<LywF0$r
z5EX-{6oh>ExVx9FUqF#3&sA77JD^CiZ0`l}Sf;_{gzEH7Gl&{wd2o?X_EI~DZ-VF^
zM4ce&22n4F`ayIIqEiqJf@m1T$3e6T;)5U>v11<w(b(!?(;%7z%@1BTSjW;VC==T}
zy5>Q&2%;r3KeF<(1eHM0ENvY`n;<?5qJ0o;t<q0|Xh$x|99hji4Wa{Cs`QkX09NLw
zetb^uEPI#f!F8_-ov*B%u7oeClY`3FmftOirEIeYouNSt3!-Nby@KdXr(Y2L34N%2
zgXXgo>40nlf*3?|AoX8=a1cZ2NY0g@GCYWHgP0V=<RC@_F*1lTR_UnV|Exu$gOK-6
z23|`T8^pLE#xrN4l{tZckU3l}FPn3CN)X>!rBj2LMxJgtL1xYfVy5NH3Yx#Cs~%G3
z(zz7GWy1GC{6Lr&#E(JD4`M+O>x0-3#6qbO#PT3kFkx{JKNEhUE-{DBTp9X>6xjrp
z{l{M!#Ht|H(pgPi^Pkdq-F5$QHj)ogHwCddh%G_<62v|_TZ7mZ#I7KA2eCbf9YO5;
zPhIK8zuTT5_6G555WoG${I^s<`njKafEsrW1@U_jhlBVdi1YN11aUNoKZ7_G#IYcb
z2jveMaPt4trZjRoh%-T)m9PE$|8p*|<%`ySrPdWW>9TT$ktU35L0k`FXb8hXxDmun
zS#Uzg8^Wz1ZU>PZLdFp81aVic;vk*`agXi%6~sfred+`1AGvIQ6XamG^263g3};+R
zd>X{FAQD1A$Q+92^j}k7P+tb|iXbmtB|)}-<f7pF=V@3aJvA*g9aVCcg_H~-b5Tm9
zCQ&7ncdk-Gu!Rr|AryiVLZ%R$R;|n-WDg-n2wCW4wft<7GvA!#Iq9TQb6KUi2}{b`
z?3UvoYzZl@5Zq)B)kjsS-Vj!e=i<*$8V?XoaO#H1(GWC(PBo|z>T%6n9%JMv-=NDE
zLjDk1h0r>L0wEL(p-u>OLnstN;SkD%P&R}jArxhmQXv#0NF#5D@Rr5J2~XLF5+Rhd
z{O~mMBhhylmZly*mryQ*cgfX5C?7(F5GsdIC4`Fq);gb1$ztPlVpWUZBXsnk8sV+5
zd1l`ap+*Qb>C~pyqK@U`xFkqeFNFFbG^gKy+JxFLgbzY!MDE1aB)@S8RV{AHqGlm{
zNSJ8(EkbBX=OgOJRC%*ns<#QDZ3th7(2Zuh5ITkMc?h3`@F|_osK4@MRQnJ*gwT;r
zw@!(_u>H;qzodRam1ety(3O0QIbT`6{QJN+A#`WhkJ=-Io^qPbC&(rhdxg+Dgg#cj
zJO%Abe!zD6lLv$_kT58O!GwL*cLRomuy=(y--d_qZ3r7e*cify5JraZeF#5<FpBxp
zsFF51gfStE4PhLei6KlPj1OUgm1EbG$>b@PBmW#U_k6<C5GLP9+}Sp9I{ojcGeVdd
z!mJQxGn_+}2dVgX;bf0<L*{+I1?GkDV+hMaSRTTBru{@+5W>O`7LiM6Z&riFvLf+`
z_mX&~y#F7<&lb!3X42q_5Y})75MCL=i=K(ALRcNbKbdU8)%ott+7Q;U)_SVE{*~lS
zA#4ueeh3dj*b>4oA)F22TnJmGt05c=;ZO+ML)gJ8`>8ua*ds$t-bLLlmkE3OD?@4a
zH_P8g*jUoMmJe8^NVfeR!r>6k(D@^TBZQOGqahr(GLMDOf-Rr0oUb+I&k#;AoS`YF
zEs*waA2#<Q+xZYKhvdHT=6ZV}go{?)OENP#6jwvIMpM3wblobwBaZ?h+?3I#bDO%&
zIt%AC<u09j)LK2v^Y~W?4?}oGN5a1ePeXV_cx?GkWNETKHG4+$xtt@yODm_%hQ!z8
zf2avzv-9%sA)1yfP(O@xVWbbsU&SFYjDlel3L`0u<S-mzIK#-u%<N(02qPs78$%_G
zELIDd!pLlKI$g<1&PJ^vcgy7H<qX44Cl@t0HI*s}1$3nar<^MccNlsYMi`zj)G$KK
z@lyR%A61^9##;_B3{vGomM}pJn_m@(zqE{mA&;ba=|`zjF-FJ}MqS;!BJx>&{xAwy
z+*Vf#hfySqQenJ9vuGIcM~z}(yhW#Y*!;F_i7?)_YV~4+CBtu?VU`Y~Oc>R|s2)by
zFv>BlN*M1F%3HPM@~;p^MTV8AmBTpN_s!@{VVhOMn37_9FZ||>)AyNHms*2bGmKh<
z+F{fo$f2#!75SGXfqHa?aAj){M#C^Z2%}LLL&F#rM&mG=gwY|4j$t$nL;i|oL*0~i
zVKfWl!!Vl5WcVQQ<1ku<(ISkN3_tphp3)UbXdOmdn!;_uxJOgCOr4}pWWpHAr(t|X
zC~GLPwGTra@jHd_c^JLr>C?328M6}8?6GwY<BKr5gwZvOZee^A#+T9=Ly_(4Fun?#
zKOYbl?MbscOM6m#gdsWe3`L6e7)melT|?;;M#(yfeZ%M%Mt`<2FpNQAB+N@5K$X@8
z(;q^WFmuG*#gGoR;bD9m#<(!X%jAqGBf@Z<v6YJ`Bg2>$vyGBT+dgr07-Pa1OP26%
z%>>c@TQW=tV`3P`w%NW5W0Fj{h|;c$?R4{`$#O!&m?~4fd6I0?3DcM$p`OO{XK?n;
z3}cpDp1p0esdK4wsLh`z)P0^HMf1Y=F^p%W@Vpe}hp|BRRREI<U}0EZGT_e`PQ|cT
z=0F&K8F*-5Nf=Ab!ADjDKZmg_jCvaCYgit}3K{&DiCHzQ3}aOoFT!{k#_BNE$efe|
z31e*->%!*0R3D<Q4`X{6JHpry#>Ox<g|V6bwlKC3By(#RzmTieOOa4EDHWA)XBfN4
z`@-05<?oFHHD2*o@^5mOb&}#O?5A@ejDzvyn5|z#k)q!j9;W_5JraiONZL6b#tEL>
z2VtC)VUZ~p#`Q2xg>gEJi(y;}<4hQ5!#E$tg)q+jXS>td{IS4)oy%cdVQW|alO{Qm
zDQP#txXIGHVcZJib{KaU{<j5T$-fuI{r|Ke=3ikvWYOQ$r(rxIJf=ROu1_*2r)<v{
zJ`W@Azml~&kd#p~^)*@GADQ7AKr@YobQ;oYNXxKsHuK+CGmr(6G$dLaFG^<k&Zxu`
zg3T&b2$`svsaZ7aSdc7@WYdsc91S@&l+aL8LoN-uH5eKq8d5dbHRu|Sbh72_W^-up
zXizmcHH?iYvbi+;HaXc%mC&ofry;DFW96p`1U1}gVhb=_8Bsz6apGg5X;_kA{uh|c
z2hpg8n1;d{ifG8AVXy4suq_x>@@mMZ;Yviwuc3g3f@~xniX#;ZX?Pw{#JShUmgA(Y
zD9vKjw=@)&EvmfDP*hl|l+xtikx)THMGd7jynLJ}W_dyxYFTPI>bsixp`PT_kD9+=
zs-&T^hPss!<)0nocUV<4RMSvhLsdCn{2|qQ8b)?Y7Jgqt4Gpz5)L~I${^Y7AxfXTw
z(-cV)zb-@hNtc8TG&Gd!TEi+0A82T#p{Isk8ZvH7mS4d%*3d*lQw_~DbkNXIlP|Z}
zKGe{L&|H%zPNvgRLo0&tM;bo1xNB6|buXp022m-Jt*wT38a`pdryAN5KBG>LD)F2P
znawskY4}1z7Y(1Yv@=zjlA^9ufo>YUBukaAxR<XPUTc>04WYY+9vb2e#_RUh&_~0!
z8b)a7tG)UEyTKazk^55zPzO>6QO|FE^B;CY7!IWlqYkG^+DO@>h95M{(=fcGZM24;
z4%jAZklX2xk!h@9oQCllzK<#sIXz?!OdyCe$pSIAMU^QUrph$XFkQoU8fI#krQz|g
zq!}7yTQf01_-Kucvo*}oFjv~ta676jKbzr~yh&1YvQ_e$Dv6tFWXu**e$+4}U(%kX
zwiO!YYsec@7HC+gp-N0yBv*unr5YAXSLyVLDY8k?&l;A=%FkYnrz0H`Up4{R*2R?7
z(i06sbPUz8R>L~EV0CzPtk<wX!wn5L<=8cB(r{SA9~w4m*rH*NTx%MB(Xdr^D&G*$
zu#F(RQ^R&yE;RE$_#~7~K%6-5CP?Y8g#8*0$ZDWrA8SdDWXdL04r(~0;deF_uN!Yu
z^oWL|G9NTt)NoA0aSf+5oMwY3G@R7%Cpq4Yc$=bUG@R9NPQ!WbBEBPO?cW69OBycI
zxkeS|iiWFJzGRAX-KrvdOHP?whB`9nxTE2&hNl{yX}G81zJ|XwJksz$rj~|>RxLR+
zsTglc_%Zp3<-|K9{&Nj4H2k9>LB~rCuQ(2`*%PTQoAf{42y~>;kyb}K{mszD+y6H~
zAW=t>j%+%z>qyp-QAZ{nnRTS-u<1~Av%&bTB{^PEG>eX``kTGP_Z2V7p(CdbhYqKX
zTsm^=NY!EI-s2tnw}p5uF<m;`Iy_cRd|&ZopANr{I=Vb*M?gnVM+qGzb%b<;b>!Dk
zK!>J7*Adkb(_!d{upQY;d`I!t^61FR-sa=s{69xjP)8vh#dN%-qp*%5I*R`1s3rN|
z^HN;L+iXV~7eBtqE=uWmM@JPMRdtlsQAS639Tjwx)lrW5@BXJ&yi1}LbyU((+3K*g
zCe6ye{_XjDI^Ne&Lq|0o)%7<;@&44*QA<Z{n(+qzttAQdbkx_;K}Sa&4Rkcr@sW;?
zb$p<sk&b3MKGe}zM-v@Qd8F~3#t$mqT61=|g^rfii2d6!X}^_@);d1X@u`kB%xtTp
z9S=mROM++|K4WS7|8@ACbbPL(r;c7aI_vmC$JaW#>FA=PtBx;qd}USnZ?B}~c;nyb
z=&qv&`z8tTEnd`HM;{#nbPUwdS4Te`{jH|r36lJ#Z#6Rx(lMB07;ibguVFfd>o}t0
zsE%)SjF1&i#|9lEb&S%nK*vHIqjikYF<r-ZI>zc4r(?2?DLTgMn4n{#j!FM(KFdzy
zyPnEDPP0y^3~an;hK`v!=IZ!f$1EMQb<APU<E8(0Uf>5E^K|^EWBz|8Py7)6O<Sa6
zv5wX87IZApu|mg69ZPlmtYevu<*X}v|L@t4kHD(`d;W{LhV87?vCistd`BB~Y|^n?
z#~vnZrf$=*h471xt%P{9=8mLgwy;yjE*6Oy@3|bNY<qPar2ngq-*oKLv7ene@Sk?#
z10s4z$M5tH>-fV;__y?!j^nz#CdGXnCv=?DabCv-ru|7hqvI4os+_i}pS7HG)*xJ@
zb4ABh!X=K|Wh?(0;iisTI<D)u!SLU+AT8gP^<T$bD_@G@11|bN$6q=U3_xC>>G)g6
zGab)$JYurceL{F_)qQID@rm?8)_)zZtkTznf2?jxPJByaAgy7}`HTkA8Awk~qGq5b
zQsZsLHQ9KxxTP4d8Bh$f&zTHlW~Lm%zscffGmzcD90PL=<S>xaKwSg%49GvP<uXu-
zklR42fm<=fZXjeJY`|e4Qy#@>z-7Q~z+=EKgRs`78t@wE^pOejJVZd$M>bm90?d)L
zpn-S$Ckki=bOR*~lrmr#h!`kfprC=MftVbuP04Q{4?#GefxH&y$zwiMZXtJmXm38d
zmaUM1q6UgFp|F7>gl7jc#7o~Y@HU;|)LMDWDkaDQ@(&TB?=UP&Eln+B;NP5b(q{wZ
z=~tjuq{esAF^^K&KotX34ZLTdwt>}olxhZY*GQ@^2UsU@NTbAod6c<%l=o$*^C&f_
zHL10zGEmt!+3FZLpGT?L!B*cu0|VU+^f1uSzy}6880cuAk%7jB`In$As7(wsCp4vs
z-;D5~0r`(q3FChe+fq&e{g0__479THTN}ubSCP!N2HMg5L?#U3Q>y#`K}y?`ZG+AK
zPVGb%_>%CsfzFomg@G;>cQqg%6G)nDU(x(p9Ktu$6#hABPXiTO+xi<AV4xRS!rp{F
z2Ko~EQ5!u@kfMR)VFrd97(^aSm7*bpq0|yj6TUSt!oWlWlMIZsa>g1MMIKEZWBKoN
zO_mnMF&s~wAR}MgCgx-VQw;2FZ!3~ld0abV|Ky~p2BsO9Zs0ouvpBtH81Us)dNxa*
zX&_gzq&Uktoy}7D5|Qxt27WNG)G+_<Q0`_h&oFP5FyFwB1}fA_l5J>%garoVmEA&W
zljcc_3@j##`4eFYwOU@~X9LR&EH|*iz;y#R46HP;%D_?CW9G!w2G+<rU|=W1wFb5r
z_{G3F1M3ZJpebpa3~V$obw=_Rc@+saTmI<0%2x7r>Ne`?yvoy_36duHyA156`8#!w
zfnN>$CZohqa^!EF_Zir4;Ghh6Pn$RgB+O(&<+jOPPuRpfB)!^iI)_>74+BRCCAk+#
zIA-8Dof8Jm8aQX*q=7$WZd-dfW8k#Kbu!uF70=VTWZ*In?Sg@eR*u}tNp^R|z%|Rc
zDp$}@^DZkFIRdlqCEYY|-@pS|@eD{P+ik)f19vUw9wB@Fq?dUWZ$2eMy_6F9l)nu;
zlJSgUQxuO4JTY)6g5M)}YT%hHZV^Ny=6h(*4f#Ah<13k*k21V4P$!@A(!jPEwp`Z|
zUmN(xKtcqFz!QNQL7E8CMvyat#v^U%M5`wyN02dsPx2}0BghcJxA~OB2$Be5$|g=q
z1V86fGDnbwV2ePBAX5Ze^C{xXCXh9PY%I;eQZchL6gbHosgf&#+!5T(r=&*UB-p9q
zI3oDr<3s@$9d`ucNSL>1l9z`WiP=H~AJrd0fDoi+zm+IM5spC8G^&73FsRw`E3pXj
zMDS4rA4iZkf_xEFj-ZMh?1>EdBPbQYI}sF!prGW)J3kR~Jd2VGQ;S6KB-y;~ibe2N
z1mXNj@d!!~gx_Y4KuODy%u4x{(h)S+np{3&{)=cCYFTPI>bum%wG%5u&?>)Dky?o=
z)y1hA!Fv%jiJ)l&J6qYRMc^)=)Q_Ng1Vi&H??+HW2I_;vn$$WG)QX@sc}0HnJ^7>g
zmAVnslR3jsobqi`8bnaOfYOj1mc4usK_i(75p+G4ETL@U)+aZUZWmBw4999opA}F(
zj6k$GwM7Ii38M=rVz!E)wT#tT+vW(`M9?;Zo)Pqlpq)&r2)aeEpn&qJ<VWyD1YII%
zA3+E4!%3Z}9oY>DB~4Ve&*^uTSv15Jce>K~noWHfffRj3N4hE;&-o^T?yS<oswg?V
zBj(%YKSi)4f<6)Sji4W$@exdjpnn7dA{ZFKpa_OVFg#-ZS@YlshA=1ozPeN&%23{E
z|CTVCI)W;tBMGA-kbJ2=hT&N1II2{Xw22W+ieN6C$q~7qA-*G@Y?(4O0#V7CMrS%z
zLa8{z;+ce55zHpci9kx@ElcM2a_!Kc7r~E&`P4-+Vg%{fLPETgi^)=bDPctfE9Fup
zFQYD}cFUI}jmx$wg0&H>i(s|PuC|HdtYN}|0*df@^2P`@5RTCle^Ue($y*}$g)?Mp
z1iwZg@7HaMV0#2F3Mf0MyQw=P*hNSws7TQs@?NTh#R@92ApaJ@z6kb5a3F$%5wxHw
zp%jTqcsPPTBIprC&!~C*$|K{E2#!W@EP~^*^hJ>_YF^zZWH#2$ctJ*<)9=p+PDOB<
ze2#jCdX_qBgn8A=c0PhmuM#A@7{R3oE=T08V?1P2(%RJsZdiPca9!qGK}CvgGQ1VR
zZNhw-cgT0C_o(+HctH4zTBf&6>dN+a1dr%EmL-Vrl=_<bjQX7Vg8GvBiW+a^p9m77
z<{^VBkcJ>TN*_grsJRA)qDT~oB6Ad3qBvMkNseNrKjXTOk~2n;5``^_Cj}LSnyru`
zEL)~1gk^A!XS8LFA~g!TI8kJeLYy4bTv6mC$m<R<bCVZWu?ah(a7G~<h{6?xI|^?U
zK01=-i9)rK^A=Jh-yene@lEd6Ar*s6=y^UtO2biTQRq<^QM8m39YrLHXcX^7Q7wvC
z6tik)ED=S?DDp&+H;R08#4JY0A4P#E3X%&&QG`&KD#IvgMacqUzC|uhecSRStyC26
zL{UD93N%a0t_vwrMYb|@%0^Mn%6~VCc-@K?e9GiXQB-D56>3##yeHM8ct46}QG6Ih
zjVNles3Emh6jHrT6tx-39^;MIWmu0|KZ*uXNK^6FKA_o%+L+peDs`I@Bux&ac@!-e
z#=G}jAteqUN6}d(QWULN+B%9hgtpZ7)OOTQsGm|lqsIHzA&QO+J5go7pA+KU>k`G6
zQG7+GD|J&L<!dXmJE2<?-w@(eq=k!xlwMKvj$%&Ke1g=XMN*%rd8g=!QS^<XUljeL
z7!bwC#z|wM7$`HOTjKC2zKvo~6weDOgQFM{#Za<@!?<Edj!be1M_B&IDB?w8j-ol5
zO-b6=D3rp=I941_%~M#JAhWKpd8JH>VzTVLUec5(ig&Qd3xTOoOp9Vn9@}*4%qYGi
z%%F<jxUeERD~j2c)2pyDH!7bm;D;#YMX@Z3ak9t4%8zpGkmp;@f+!Y}7g5L5O_sEu
ztkNY>EG7SJIg+qEiWPG0(^(tEI>IXI>L}J&nTrZ5>&ZvCYiV`^L)p>hD7MJtjG<Nx
zzeKS$ioc?G7{#_Iw#!M$XZt;h9Z~a*2w8c4i()5v7j-vPiuMrpM)51*rgU4rG@CDJ
zUljYJI3SmK5k*4T4o1xnJ`PdEJRHRzQ5=clXcSkXxEjSVStX)4A4RPq%84jWMj_vX
zITOXTp|(GxC|g7kknI$m(=sL#6D2$wh5WEWwsX?MYzYD~oi0Rik@HIU65+D!=#2TH
z_O&Rk%b6{r+>sSvk?lqlor)-lrxNAXb~mHAC6{d#+ij|V-14q&9^2h0?#XE_Xp`+e
z;epKCB8r4ERsN3Rbrk<_3O$ln0kZZ+@s!~U>NBc2Gi6_|6668vC7oB)xRVeAVkj2F
zTQQ`GA#Dt~V#pmsx){>OV2eSCAwvv_F(k*3F@{}5%vma$6f++y<8Y;jA~`8irKloK
zrWi8E@amW?TMWUXN(pXRVi3q0gOtkFy^t-tOn{<Fju>(>6i(=COO3%EgBF7xgF_m$
zDXtjYF*wN*b}FiPEcOx97`%jGMa_3w{4oS%zgA8thOzX+bSm(T6oZ^MhI}!3QSj#T
z(`XE_81gV&%__;=Z24m-5JO=rry!wF3@4coPcA~UsFm}ys8T$Jw_|ueh8i)*ooP$N
zP$q`5F_dH|PN^8)vA8rLYcZu<4E>W5<(qg_<ct(k-i@Jr3>C-~W2h8E<ru2T<54lC
z%GnG8vdJl^8bkGB%6n2IK$b8L4^`XW$1}*Q#V*AZxs+<hP$!12F?<<A-I)1?K$94n
z#!xSY`Z4p3f(A7I4^!U(Ej9IhJsaiCy!UcJK(Qb;sxXtuw9F)#JbLfF_uhN&AVowJ
z1Vq3>Q?OAKMM0`qDGE|7D2N5Hp>zv=J7<35|6A*>z4qDn+>+ZSliVb2gLopT7|YO3
zl=gxhf*9D$6FJcq_X~6mqDv56nJ|bxLG%rJ|6;laF{z_gZ@JbZh>b}_rDqVmB#OMZ
zkb_C@%&;HFRjd5MW4&|8{y_}j7?bnKfkFlaF<8iuAchJVCOATHxM1cKcO>f|XVGJV
z7#qaAARY~3ToB_qdYc92vgS!OA&9kOw22(UDRoauaZR2S#N;5R1Ti&;X+g|l^QP2v
z!G{EC&S1_dMZz#Mh|RtHB(sB<6U4*flR=7%dPJJ&d@~>48#zCS$AbKE!G}RS9>jtm
zUJqgm2itIMVGvISu~hgIf{O$f2eCxRqdm0wDfLtk%fwtC<R&7l5Wbq@B#38%crJ*Q
zqC6}3Zb~udR|OfnO2ms|uHk_P@q7?31hGyCJ@2wS|EQ%H$X^WNCGP(T;uUsT5Szs9
z)ga%971$tIkuWd`^P&IdAYK!aNlyKZAl?+uy@FeV*dgRC!MB6hCS<$dJDg(ea+!*u
z#Y_I3BJK)ew~#%8%%AN*hj)Y6C(3(4yf1{}e|0-mSNkZ4PlEU~2#)ZN1@{MWK*&Ks
z>W75bmTGQ!6X!7d<!kMTEMK1maa71L!4p9o7s6@9kH3E|oP_3AL7e2Q*YSmpuY>p|
zh&>_f4dGM}r@4ZKP%?yXIRcw{*VcXv;!F_VaYzKcljnOI2EJ|PYiFq+I8!VYDi=5#
z#JM2Ob4k3Av)xiRg?PmqKL_zk5WfcTR}g;(@f#Q6kaj7E%RyWS;`bo_;4&D}-n{0c
zeo;8dN=sc4Pyabjzbc&MnmAk+{FA@4OEjjX{!b7$g7{b5m<dz)LMRmSaz@BA>66i^
zw5jXAIfTL?<S;6PKnO)c$g|b=mdXu*s0rqUkT0a9u2EFNi-dUH-t%GW-4a5v5Q>LT
zf=AlLy8=d&cx%?AczejZ8hLLB_l3O87<Ytlr;xh@O9@iHTS(~;?h#_xisJntJP^X@
z5XOY?NV7nh5W*oC!pnwGE`;*JD}+#42z@Gs@L-l#3ZbQ~C^7^?2#Ky|MMgzJh=$NC
zgytc{LWqY@5JHs@5+UzB)s`TM8A3A4Q$hyV%FZfI2<Z@9F<02?gEromeX5FCCxp5o
zR12ZHm^DJEEu>}$wS>H7dmje+)K*kT>IsrG4xxSs4a96H*eHZs-}Q3-SCWu43887$
zzv*LI3m#VpeM0CPLaPv3htM&EPU6r;u)Sbg!FKEgM?U@~CUfIgtviR%C4`=$bQSC_
z*e&Z*%TYbDd{@$YWp^(zdxx-ok7qLU6J=-!{X-Zae4yaq5C#dMPY)@2h?uh-H7tbT
zA&khzjtXI9mNVN-gO3eiTnNvFurh@4AxsG2hZcbaAxsQm5{KNjocR>X1ty0uGlW?o
zObKCX2-8BC9>R<eHlEITxN+cQ{Q!|aufGn;dnkn6Vp5qM0&#8#b4Y|wSN=`K{QWNZ
z9+9;3LU@#ITRxD{ncHKmjH4JH7qZt;3qyD!ghe4N4q-_MPqM$-2Yz%^ZdzTA1eS*I
zR0zvLSRTUR4uM^517`a`<+NH6!qXu<6T-6`!)*fJw)K)6i3G~G^9YZNKC42!-GkRc
zcs+zQA@54~OCh`*!dl_ahwwrO>(~Wiz8J#Wle`P#REXp=eRw5=S3}qo!Ye=IP~5<S
zlGuzx#-~;d|7Ome7kq;Q`CCG~_k`!_Y7^3`QChvpJVV$f?Yvd+Ew=LwZ?7G{@3TFG
zogwc-KMd~(*&%pnQ~oX?yR)%8mwq>deIdN4<0T#Mh46j|x{k1p4?_5mEv9?x>PI1d
zjYa!1gs(#QIE4Kn91w-#CqfQ}aEMjytu?*kqxdPCG=w7(bu5JAA$*qgKPqHaTG8!<
z@Gk^E7hEg)kiUE<X@>Am2sc9bhKqj)zjGA|;WQV2E@dJ79Kx9pzT@K4Byc{2t0nP$
z2tS5!mgA72q&ET?MV-iSE`%+Ac)u?h@s|*O4dFLQPMvOh(~9JRxX~x$d67$H2-icn
z6vE{Yu4H4cN)efyndHw9{*tUR#r-Yyxwc)S18efHq{`9Z*WuFv9fkD&)#_#;H|bve
zGya7|VXA<RTpdMquiAM!@^$Z^$Tb~G_m1xQj`>A|kTaGh$t{w+n2zGvd{~DP!kPbV
zI!dymcWbxnD6Qij;dcn$DR`G)DIIqUIg(a%zE?QOgF5chc}ENn=qRJ3g6L(lvE_A?
z%koUZj9F1cW>`r`WgS5wj15UanX(KW5gqe&Jf<V6Bc`LSj(WPcuP?5{)REMY(6RMd
zuM_`BtCS8)24^iDwhl)}bul?y(>khTxvQff%X3^+HOs5%DDQgb>NP}J(oU<XgV_C&
zuXfg_4vY9&qfdPu4Rn0p#y?v}LmiEDjFBd7tfPsJUOIZ~XsV-`j?Ox|=xDB^g^sp5
z+UaPiqm_=<I@<6kT-C|-))3x)RXqdzY{WD%+w16{qoa;aI$jawfmgi4e9u*XxT@b1
z+Fb?S>2y~e-Pz+hy6IS*(3o3|0@ahP^mWdvs5fG%5c}xpt7E8+VLJLrp#yXb6w+S?
z4BZCl7_4K6jx_~}W?R9B3cS-cD%%UZe1_{7q2ow_8mVKHj?t0>KVA^+pPMP@Oo1A!
zW1NohI%>rNQ*}(!F+s;f9g}oS)-grL%)Nep6)!g?xwDE_R=A3qu6v&<en?0ADr$y~
zs#UyWq|ZzpvvfRBRpY`wwTjwSMa|Liu#Tfu6z?zaw)<Q*Z*JfbIf{8YE>}^H>ezJB
zyD0Ryjs-fF>sX;<Av4kOq>iO*s~@#R>{%T}s;b4DXj3#QTxR(djJvC<r$nh;RZ(1~
zgCe8o^Ry0b?Pgdl<QYZ@;qLC|bgUG<N{~g<ZH-iEEvKQ57erq#%DQYSx@C5Tb7S_)
zI$r0zW?$>xnb@m3HgKF&^=@Kr<OuH>VAv#NvyRt<SWWUMzM*?-><*q7->tnVe5>GF
zf{c1w$Tq?4g74_yW(G#>)Uiv)ZXJ8LfGo(}&+1iGdpQ9QYb&d&cXjOJ`p=0u+5e%`
z{C)leh{>8$r1_EP9}7-qZMWqd5Pnd{AswFxKceF^9iQqrtRvpY8<XV3qdJc1IH6;E
zRYm2vaOw<nqe$|lj;}cD4b(GmlE<jy)i5@M@r{mCI_iW`H;mIdzU4X)h8e~g9pCBr
zmy2o`-*b7?y+>EB5_O!_aY4uLI!;$r=XCtSp?)amJQv<-is2_AKkHchWG>BLCH6PL
z_n*k8=N4T%8V&rR<IhETcUDsubr3Icyy>_ioEMH5C|=|8Qcd-pk$0VwZbsgpI{wn}
zxA1>BsjI0Q!bwJo8^S0QMqU{CVcZnP&0(xH0=Z#4T1^!WBM`=mC$*}Ra&y8U`olOp
z)<^PcHO1Q~d#ib^q=livc)hx+5Jr)(cLHBLj1plK4SSc-7;XupSe6f%?7uaP+rqdf
zjC;c<8OH5l+!aPCwkj)MP2Ca3o%FA+O4RcvAeFnrD9z@ruIg1+4QJ+$Y2l}MUv=IP
z$GwkgWx^;M#{FSD5Js2kUJeVYt6}ND{?%H!Fv^GV#acgkCaZFT^DBn&V3?=DTBR_;
zVHjal4kH*wNJKph2FC8Mu80?^tB9E7F(FaG2WzN!7!1@~jMb81{CbKPTaXT8{8%j|
zXoX>i`2!JfYN#$Xlp98+=QW1vVH60jB3LzyYGI6cUONd)uAwqMH6*HL7`24d7A)-x
zFt%P8^}`qv#?UYtgwc>uL9LfyqcGZp(N=ilFq(wXRCqJiQwTkqhq)8LOR}0}1+`Yf
zTMP1nB$al;y9&~5A4Z2TI)<^chU&x?7M;AaD0Em{)XR;bTNvH5sd@<MDR^26>K#TO
zG5dzmFN||@wEkfX3S+Q{0|W<#kz3QN6~n`S`?#HnWLOx(!+0W$MQo)oMussVjEP~4
z3S)E_^9SdR38PU<f9aZvQ=@uKH8$-1yBsGtUa*+_-<%Z2<S=H3F(-^WW@uALYN{Dw
z^s1?*hA~aZbU`W{EsT9AjG5v_K8tm}5+LC?=iQv^ZE_zDV{RCagt;{WkB0GB7>~0)
zVU*dP!*F4z@8NHA{;B9+5a#YX|3czU9|=W<#kB*A!&nl=$}m=i@g!H3Zh@s?UaZEg
zP5d>&fmJotvM|1`sq$*6<zcJ{V^>Y}bQsTs@vQJl2Q&t{J;!6@_g|#WWovmCxT@7s
ztHW5si5$lBVei`Vdd^}YF9@y+<ND0J%!=`nD6fR^vJi?r7JJvF>9aA6O<^1h<9HaG
zS+O#KgMzPdvWKxHj5oq~Pn0*q*eYaq7;g!o^E+X@o#orY*e-lu-+V?f?BMvx#_kfr
zj}q<?vNx;0D`a07)kpZ5<o&GvfshZw_$Z8zh3^+UAjo(0(YgK{4-bX$iHPK%3OOuz
zMDVjPjtb$A7ae%5=0q63a4v`OIoFLaz6|55Fn$W-=P*vPJHq&m3p*D~ejuin`X-E1
zVJsi6ofceMOMNSZ${8V(YI&z~Kd_$70_VfnS4;gUcvkS7Aoo$6>ZQHbMyt&$gm-Aa
z7xDhx{1(QAFp3)}Vc>VJs9cr}6gF@%j33VC{29hyVO$F1au`=cp?FQmRl!eJXxFp)
zcNcws3-=jlvm=+D|AcWP8~bk<XKN{nFua@#3Em_~lMV6|9|1GqH;`XjkzXFJ`73Dw
z1GxtBC>qcV6g6;*0Y$e;S`ooeZEhCwJV`PNc`=D<Qd`|>;5Gw>fyVu{k_K)!ygTw?
z19up>(?A&mWex9)>n;O#8z^m{l$h&tJaJ%cb&rAj4BT&c!~R|aR7e;eFu;)E6w4Xh
zii64qf(9xWsA%9p1C<Pnx#T<2P9y$DXpX+*J5?qxWI#7S&M2B0H-2$xUTqaI5H%1p
z5I0cOKs5si1EvATK-xf3%C!yfoFrwy5_6?gtk4zjl!K=$u7LsrRkAgtGj;kiWa?bq
zKrI8*YZ$00vHNrL7#LgIKplz7c+#i7fd&RzN4OgY4GlChu+zXUHmQLo2Id&t1%##s
zni=SCV1R+<23i>CY@mzb{pD|Ipsj&+23m<prL~YY26!oeW_vL^WMea8M+2SyKc%aI
zZU*`>+YdFKqI5TK>?i-x540WzdK%oegz4M-eGK$9&|5ewPlbUBk!Ip$?sW_dG%(1(
z3<Kd2+OFDauz{ns)dT}W3=B0e%)oF1hu3T442&=^k{!fOWRmZ+F2&Hb7)D9#GaqRE
zih1H#PMOAeG-rONk&HJ$PPd5$IDjV^n9Osz+G>h{X+ow7Qn^%HP0w<zj(SMyGgEMu
z;A}xwa{4vjTmz3VLj%hU%;NxNv#>jk=S1qL`35G|@$MTAsH4^g0xvesd)&b4v-t}Q
zEaXTwu&Rz)WMGMbCxtKO+*y!IkzuKU|4fR@4XiLQ_E-OU15X<~xze69u#!h4{8>SY
zJmZ?&EO+uo|0)(_V0M?l8o}oU*BaQ++DGvP1M5T?a>d6ai|YDbH1LvvmpLEDX>S;K
z)4(eRUZuZ*jRsy5ol%>FY&P&t9YvGjlRD~k16xGDT1VYe*VDI(xjmceEdy^G*d}JW
zu416iJ7Vt0`b5WRyAA9y;EMne?4^Ip{38ZF<4CKk-Zik#z<UN})m0nos`m|iVBkXo
z9~t=6K*OiBj|C4HI4ESl;J&)*kPte2BIK94iXzR!VonnMD2J<oUkv<e;JASk2F@7x
z&cNp^C8CwAr@k@pg@G>(e8o}0C9YE5*FuP^>IY~tkeo6=XNJ>4z7;g<sqeXpa!Axu
zH;u_1KVIV&-yaQ}<-D`Ba|V7g@UwyQ1~O4Z`V*<p;Wq>0>ZywcE^z?VQx^n(H}Hp$
zDfKmqmpL7p=lv~s#lTe|*98AGa9zmedfqN0hQGu-SWo>Ugvt#A|7Q8`^;Dq<Zi*lj
zfgZul5fqL<i$Fz?6Y*B3W!tp;2>iln1|rB6o+ntMzML-&*2>pcMItB~!R3@zF@jqn
zC>BAf2=0!ccmyRPxIKb9BDggIuCBL5P*O-{DW<}OH?t1k8Npo<Zyl!iUu@|J?unpG
z1Z5+*H-h^jxIcmiBL7>@|69Z9pGjCwGA|!N1<5MokU=`|C?1TUlGMMlU{H{HjruAa
zfe}Hy2<k@=i69z*6G1wH3q!S71jz_^-;F#TK|(}wGlIVLJ&~uZDdrs1tO#r&bLxBN
zv~C0i5&SmJUoC>=_0_Y7au}*aK&%?U*81w_`l@;aH6q-EiCPi9Mn11@1huoZs>7x$
z&?ea4ADNu;{`zG-(twM91a)83nz1n(s5AZmpEhk2LF0(`*eOGk2%2WO+dwssphW}K
zf{oTdwG<?2MTffrByA&T$41+&O^Kj=1RWyiAHjeKI*Qmsu#;eCL3(x((p9iq1l>ve
zUJi2`sGeD$UP5|D&?l?(ji8_K6SXxu4~$??1mi>*EI3kdh~Q8`x(yRDTyO;2t%0J*
zFpB*v;+U-G*a*%`HO7lFL2#nrB*DpoOj{~|sS!+zV0r{IM4TVNLqg_ceP%{5OZe;v
zPSnxnOU_LDu!wU79}%1v!J|UXee0*gW5OR7q`4r1g%Lav!6H$XWc9@ne3CtuXZ(07
zf@KkWVd6^@%OhC9zKEkk98X8^40|eySEG0~g6AS=9z}~NRz|QYf<Gd-7{TfY)<n3w
z5?|L1tc~FL2$wQ^7{Ln>tc&3F2)0DH?G`Uauqop0w|psrmm}!XPz`CQxI6uo2sX-i
zBY!o54H0k4dh?Ece?t{(=*{uXJivzPH5t_$(wiHqHzIg5f?W~pma)Ax;{B9t=V7k*
zzZJpTLddsCwj|z9fcWf)U}prsznM#g$TPq_lI>+FXfLN&1p6X*kB!q%F}yE1WH@W`
z5$9tI|NaOLaO5{qA4d>tq)I%e)o-K@vgVD{@dysFwwH50iQv-+4o7f=gSnA9Cit1)
zQOR>ojllFqict(yPDJoIr^a*sFCzFx9KMX;D^X5H!0@$*bU4&V5l=;MT4Gr%#?m|^
z?f;!1JL3BYe#r74g`5>U$5ATeC&8Zu>HkXvzh?PwLN2hOvI@8CUg84F<BcL7#T7Zm
zza#i3f~%}pQU5i;>w<p@>dSNgVxEn>t9dsf_&0*`QB;V+7X_lYE$UsRDHO$hvwe9{
z<VSH+6gNk`WxsF~{wM-b<U~=d5I*}VmtwA%r3-luZ@i#YDw3;3q394r@hFN&!dnE3
zW-@8)jT~l9EFsFRf*FPRFq4u|+#bbUjny4d+#N;fDDI>gMYZw%Qc--d#P>?s0K=z0
z1n!CA-Y6c3qD&NB`vvZc;{GTm_Y07ZtKbC^nq{Lny~kHhqFC-NmA$BnQ9Ky+E^kJn
zs1)^{R;wIEP{{L}eKbQ+gvHbasZhVL#Aig2afnKC=I~2vUxK;y)|@EPLd+<VLQ;Z^
zvZAoFoYy?vC<>ye8AUDXjlHX9RibFySWRrKszyPqCRkmt2Isg$)sCW06rVL#KQvZ#
zqo^lM*CdMiQ8b96aTJ5v`Wi;Dp?9E>a1tsRB;m1>H;tm1`1F;imQl2dVnh@pqi7xV
zuGjU9qE{4cgtv{Nosjl|U83k9gl-+9=p?+eV4#V2|DB<0lv}L5e7Xzv5G<RG?ajs%
zrH^1=K|1#n(qC|Z;HrpkkdVQG^cf;#XcWV;%5WhKo2XGyjE>@wDCR{mCW^75KO{I#
zaEjpgC?*JDZWDz}5}YhJv5A^0WSZb~L3+-JVoMqCB$;8Rh_j-YosFFn#lynqW|d`4
z)T2?%XRk%^oQRJJE)slPa6uFcg*+kn$E{wAEskPI6i;T9XZ_2gSStLftg=kV=S|d#
ztnzde&j>Glm-czL{FTCA$i}XUVzux!S!FFpukb6`9$6Q~`fTirLS7PlIf_zEy*}L#
z#YU!z;e{BirfO3ZN253v#pWnpi=t0c^*Wb@6FKj)m7;iqy;COeXjAoO6kF-gRJ|3&
zJ5hYwRFS_e%C;!B3;9sQ9Z~FzVpo*+{<Pgu?1^GkNsXN0)@F*hmvcnOz9`<~C_SF@
zeiWZZaX5+(qWCb1kD~ZEicchJzaV`M3ONw<);gMFnyEt^8_g8o|MRQg+oj2HB#K$h
z)TM6upJh{RD2e0DHmH5hr6!6Ka%h~Me9Gp_D87m!#YTwXWE5XVp~awL_$G=|QT)P!
zxXy51ch<g-;s+iwtKCUEBUmvK_$~?}KND7Gk@jO0=f#u!EGP9M?OYV27I{%WiT<<T
zKi>q(FVcRC;zAVHqxh4fZlU&j6zy;LF0+rKxG2h&g&Ors?CWNV<Vut~@bO2(0Qog>
zAlcST{T0RET+CxA9K%0R+~9&AL!lV{Wn=c!rq0gy#Xwxs#N&NCX*+NDNEmL4;Y#aV
zlC_aQP7MAS0x^)+0dix=iy>dk)6Eo9Q75_DOpz3cp=b=1V+h7@OAN(gxHpFTVtf_=
zC1SWehC5>T(+J!e!)-!}H&-+nO2*KBjYe`OtJGC16~o;^?usGQTv1^t9m72$lE1Q2
zD|ISBa(@gDh*&Y^HGY{G%EeGVhO%PvHYG)d3SwUNp;2?yRWf`qhDwr<S<P&&N_5pi
zF|S|V>ZIv0gkvybh{O<&ArbTXF&aZm$d2ZUX2CSA?F)VqQ^X{*+T)qjiFOQ54E<x=
zc#m`pZVXLgXc|L73{_&NE9F*=p;`>bo2yze?^)*R6ldqxjG;yhd!-`=uk!kZol;w(
z$m_&#ot2-RUoVFGF*Jzbx%s&ajbeP7;D7vyf&Ru>erpTWEQSSLwDvJ{h@p85En;XH
zL#r6tO8d8tp-q;s@e@P+cen6*q@9Q)Ra&TyF?5Qddkj6K(>n`x73>m2pB7%fcN24=
z@SZXBilJ}J8@dd=h4hKxl@{JuWl%$M`(<Odv`_<M7(_FMIWY{5VMq*<VwlV}iD6g_
zV<LgEF$|Akgz(XVBLzpraIA%*14HMT{xKqw|I$K@i($N&69gx6NOaQ}g_fTG6t-s!
zGh%oshG{Xp*HvSfF8xSCg*`ZvBetu?P_3&rOZZdA@@PIB!`v8F#PD<skHj!9hD9+f
zj^WW5=Ci5gxbADI9*g1eEYBSEYt#G-V|YTuS}nb%Xe79V4ZAJpsTiJ&VX4G+U7X9<
zel69q7?z7Nx24)F&d*3qR!R+@75-edo}aZ;t72Fk!y5L5I9$2p<AHo_c!6YH4C`a~
zD~7*gcrk{TVmJ}Q=P|s@u8CnE+acyHgRjQ$Rt#^)upx$xF>H$AmzIjxw6_S^9K&lu
zUKgZ4WBL5T8=R+c^`_uft`Ds|ab4TMef0v{V%Q$TJCgZsL8jUf!_F+<B_!U;drR9M
z4t_D;6)b*-w}1Y9a+bSYJHmzNM9zmX92D}AAeE0}*f0EmVCz=ig?ENSF?^Es`80;Z
z!Y4>9bNfv4JSupMGf~Kv!d^jN#PB5#Q2d{0rM`;cObp+#`&y}!F?=2Kb~t<^cuMee
z4Braj4oL>azSv5AAHz8|bt`qEmHL6L-Aer!!`ZBo(a($iQw%?6bvpbS!*4NMh~f7b
zu5xHy&iO--<Z=ubv;0!bTgEwfs9)hEy6z)kxF!zQV^~t0&#ic)i=O|)a3cmS&L>dt
zZw$Wp|2?*kI10saQ`|ctu`Bra9R1C4_{E{HU=Ga-8Uq~yqR=Ndjy&P{f_I<sp4l%F
zN6|RqaU|lnC5~co+#APzaqre=@i^`hQX-C9h1@21yI@JdE3MQWLg;^I9MAR2Cn+V$
z-GZeB@5%bm;l9@D{x}|pqf8ttJ8GM|2g=4#E{<TF0}|!qs1QfxxYq~_6`3%OXlw5;
z$%7)2XG|ia^f<zz#{`WyBJ>wd|BO!tGs(?3lG1K`xFZ#Z758=rIdSid#g1cj=Rp0|
z-l@pK3W0PSZX5-1REeWz9JS)88b`G_s>d;^WnSr>+R8>+&(>;UYjyQctwtOhoZMog
z{42W!YV)|d1)2)hiKDKNdV<vJ3uzEX!>rOMj>f{9WEK8rY$m+9U<<*P+1OUBt?)L2
zZL@m2xcA&Ei|80fr#OB|;MW8?$I&H@dI{7|plcl6;`lR;zvAf5CW_-(c3Iq;p*`c6
z5ywMu^opZ*9DU;G8^`!KCdAP%j{b2BiDPJ-Z<qBC5F8{pFpk^)@lj+L97nG3VG=cx
ztrW-bI7Y<b6MbcCmGK-M$Cx<AX8kE<5{{FE!Losg91I<`bFEeNM%tt}CdV;FqNc?$
zUC7ipc1muUgv^0O%#7oQ&-{<Y@wkv#am<cmP8<)5$*6g8%+2yg;^2psDKb17$Na3$
z7d0$ko#h(rvN#sT`81YiE)slFaB&<<vOat)bZHz<iCL(PVxaT#Z0rglPsj00R=K^6
zS{cWxI8Mj$Eyr6NYvR})$DTOW#_@a{ug9?^ju&|OXn~*M)i~D0v7QrFl$W#mOPsK6
z6dhj4Dtv41hB!8gxham#LTZT5Yr=a9e}jWW%y;70D&%cJX7!ek$v1mNZxg;<aNrG%
z$`0W><JcvH$|I8D-Z(yp<3kbO72FrcdqUn9Tq|xL#qn_*N8>ma$No4DNYr7$gMyz3
z9%BE#?G^W_m?VcK`H?t26Xm*?)Q`vUMI2v>cp{F^g{&X%HJYz|{#P7z?eo8m<D`%W
z4|?J^ah!^yL|a8(Ab2K@@8b9|j<Y<9MgiXR`JN+zW2SPTO<TnqI(#1ITpZ`)_&ttS
z+o~Nyw4dU*z**B){o5q(XU;M%&Q0=ujpH{V<J&3*DqOGVvwgYtM;sU9xD?0bIIhHT
zEspDPT$KfiKKHcq{_+>?7sx0yN&b%GpSX9iqFMqsm@Sv71ndNS2_S*{6L=tjLJ8cI
zz^w_~mcY#k6iz@(KqZiqfIoq}1RiYVd$UU*kU(w%Bs3W+iAXa)>rf<tq6rjBpm+kA
zSi0RJNoZyi*04l2ladMCo<M0a??~Xz1WF}vx8z2*yF_RHnS{hlHK^Q^z`Y6Fm+%($
zjL6tB36xDBo<JgjatV}AAe?}aK!pS<CJ;;@#GF|%$+q(Umo{@O|9>fZw*D+DBK3($
zs;FS5M4~BXN*t1c^v~o*;v~>%f|gFeP2f;lRqjje>JaVwa)Ha`^9mCDPaUWtST%tw
zwY`q3&K!Dc3^fv{DZExzshvO_;dQeLH_<gnpkV^9Ca@uaMhWkVZmR@ZC(u}U6G4hi
z6MVeUi)}90B7v3(yxqn}h2g0ZTAKvgCh$-KGZSc+K>GxSB>0FTIwa6Bf!+!9N#Lo6
z@;fEaofT`R$UBSDg}(v`bW7kuTTf&t-A>V=M*=<hW6@6a691-yHHzcfYkd>wpTPch
zs$T*V+o?6}6mdWTXWOZPf`bwmoWMWrRPpxerOR5y_G(xH!xK3FtTr)$5eaWv@mGFa
z0wZ~($8$y{Fj~kM!LbRf`&*;#w)cK^$0yLHy_%3f(+;_(d-_(?_l<9_CM7UAfhh@0
zl>zW%do?`);<T(eBLQ+M?2%as%uZkl%>?Eo@Nfc;CioyHHsmPYT%OCm=o@%M63$C_
zmn$zm>C0*AdyMnz0dK#=6A5f>uO1g%Ah=M_o|(IdqjZh7I01&^?G^b_HfaJ+C-4l%
zLwmI>fn*2OroCF80QbVJ5WKB}w=eG51f0jUbqR0l>2nFJWdE+zRwb||fwc*4#Pv)b
zKJj^WAHct~FR<%7X}6SB<c&J0^$EO~z)K0doWM_oeH=>+B(EgA&6!oo28bII*p$GL
z1U^e(a{{k%DQFqkmB8x>Y)N1z8>FZ92FHH_Z*<_6MQtnFp@Z5k_?F<?f)uw2nb<**
zzmvcYF;|Fre;faA9n|gw_9U=3;hj7%>`&m`1okEP%<2D>4-<Gl%Rk@>)6qM_|0t_`
zETlq5bwJ2LPPYU;Nr3ucQ9jLjR*{6%k8&2|XkRAqRRYI^9~V3!__-h*z7W!?qdGcT
zJIM*M*ncJgUX1-Z!Pou=zDeMe5c1PPz7?F=QGG{3PxhJ-IL}7rnCYl~6g(?<PH=BW
zb+V%xS0<NV4F5UdeK(w=?l(>-Hj#;*ruS^-?_8Np+-BkrcG+bA#RM)TaG8UItFh^|
z&(#F3alI;%d$Wn_Ldbn4{!HL6G5;34!I_nf<)^#o^DhUX5SU(ahC(K8%5q-tr&8EN
zPFC>?2?$>5sPatYo6t-s6SsHr&c}+FC~Bg(n70T%JTRY848^i0NeOYISdyZN7N)m1
z;|>#dny^hiER4HMlrmwMh?uzBL}?S{SdCWs?Kk*?ozy)h+I3R*nz+wIzfS6Y)B6=D
zW8wiJb2=%;QYkAYd3k0v(O<ztMH3I2Sl3AfO@w$9CMuiQ-bwu^{(p8-cXsBRg%D;<
zI(wX%Fpxw|#7v}2SSI2oDvZ`TbXEg9E0Tl>Q<S726^jWws9BxW@)_O(7ikl&iCQLV
zn;3u2`@dFTqKb*CCaRe@(^)-!uf~53)lKa0tVn8@-k%7DnnE^oR&`9&HTlFenwvN~
zC65<i>zSBzA-BGX1|}MsXk?;^iKZep799Sl_k%(o266_H!d(=fbARna?anT$rHNK1
zUOeS*ZK5r^po{vxgVx6Mt^kC)sCFjWo9JMoBS)Z#VO>-w!OkYSn3&n+e=XBhT9_t9
z7Du=4S%+RGdYjm4;w=+>O!PG|j)yP9l|}S3(ci=X69Y|*GBMi3AQOX43^6g3!-@N0
zx~OTFHM9!s@1l5l`8<(_zf>D;Vgv{FqCE1EqL90X^2eCozofAoTJ^MJE47kcy(iZu
zn3!ndNfS%iCMG7cJx$CrF~!7G@t@1u<_4zmh}d^s)pRju2vUDYh}}GoQL{|UHZe!s
z9yY<ywX3S$RWWMbGHqr(?NJl+O+Igq)ibqP8?+KHYW$ejV<sLqL9#$_R#!#-1V{Kp
zjbV|H#ez#rZ0f2gK4oH=iRVqc!27=@R+w00VlBr>SM{`slHC*^GJVFxvnHOCHeV&!
ztzYg+_EbOb4jsd45wCPr^}DGd-BhGo{(^35*JW*;iC0X#YGS>KPmXA7x~UhLe>e4#
z;LCysx~cQs)Y8@d4JPhypTCh6GqKr3omX>TH?hUUYr>l@^;0R?T@l|f@urEO@W$O0
zMV?o@&9P+SL(@C)*v46A;vEw^#H6yv#7^P61a}Lv=9$xyy(Zo@v5!gmcxNf^No@Nz
zzV|b3lK)4-KQZyK5W4LbazOB);2{(5H4QM6PsKbeNY5iCJ`;Y_#4!`cO`I_KT)$V<
z^S5f;q&mL4TG?IoYpGHB%EU=FnvD%MzBcg<2d#xc7EYNsZDLOfdsFz99mD~jLZ1}A
zGx5EN*OS<i#1G7q&6PymB+i;RXX1_|?o8smiJwgTYr>br&nA8`amB<{)BCUVtKc7k
zznQpT;&<V@x~o&&z5i$zO<Xc@Swxz1w|IYWR1bAcl=@q8|KzVgHufbAf0_7O%zp%L
z2pT=StWrG`k|>l!(WF=OO-bA=L`$M@5;;i(lE@XMZ(;a_&~0sZ?{86F68TxB-hNN%
z*Fz~$ie&YfJ=85p6icFb5+#y+W1&~ddp*>pn{jIrw~5KeOc<!&p2X6r{$o<HyOJoC
zL^uf}iMx|1okY1L$|rG868B0fu3-0NOL-uP`-T51Y0C&Nn~g2f)62Yqn873}Ch=er
zmBg$pSWz74Q>Uj2iJ}WqY2Q;tl87czRg_o~@g(ddoFw?iHj(7J8jwoD%=&j4;kSfu
z%;q_-r%ET`CQ&8n{e|@YDhf&8jM*){e~~0Cs9F-$lc*tSYYEmAJRteh7EZV8JypFV
z>a+ADrX<lIiH1pZPNGYaFM>ehBw8lXDv2gZZ&K60SrSdNX*rjh3vVH)_wpQC3vZW1
zdm(KE+a^&@V(HK!iB2MtcTA$A=+|%fXm(AaTM~nl7?MPH@#&pJA0a)G=$S;XB*ynr
zPfC(~y;NU`Dm70Vm;~$4FNyx53=m|7M;ql0%JOe|si8>>OJZyi<B}Mj#E2wDOYF$3
z&nO`|y}bjeBsfNty~q6Hvpy4(P`kAWV!rXSH&Z4Fuhv^lO=4OSOOkjpiRnqqNaE2X
z<|pwG8?CpRnZ&Fl`bxI5lb9pD_6U3bW;~q4TrtP@_Wt`b@bb|-i6UROS$j;1SdhfR
zBpw%@nWRq$XB`$Lu}pGaEJ~hC;iXADmBjN&yujEbmM8IS63->EBAe<N65$tXc?ZI<
zLo!*J#A?x3Wj)XL%3YJhS}~9IR{!=^!9HqT66=$AC5cx>e=&)dg}fwKua7!D!prmi
zBsPe$NpPd!=OgkNwK<8`#2ns7CA)idcq557IVDrLFNLj1yp_boBrYZKb`sl?IG)6b
zB(^8<P7)s`@lg^xlGrIZyqm->A$tUw)$Sy&77CCs>}99)QC#u%CGlPo?~Bg|oPDo(
z121ob=d+=Y`Z$UGNqi=;2a-6L#HUFdPU28D&rg!r)5jYgUkj2PVc%`hxZqq7<*0Zb
z%lhwG?f*Q9FOv8!$(M(C6Z6X?z7g`3;K?Mu7IH(9=k-;mk~p2jw<6O2OcIg4UWp71
z`l=t2_%VrJlK52|&T{2X;-@6eW&Qj2RWq~xKa04gulg+;`+E`##^zrTb6;QeM^-=C
zS6xoxN)rAQ0x4Wg;#v}aC-ILsydX=;b>V*|@mDsL>Zfib@voRSr@W){2^JEBpwUm=
zl)~AL`OW)zM^RWrlAIKV_VfNz=cbUC!tE*CkwSh7S_&mnxHScpLXi}TiGR^-s#}CC
zldM+tQ^m9Thy7G$tlpMYN(%A6<_)SlQ@C5qy97&ReSYt!N~gf*Ea-EOh+2Pje+mzz
zP>@2E6w0JfR`g^F<x(i0f+1!FNmV(8U<wsecu+*P5<?~7n-2N;b(N6ta0+_Ld-$<J
zf3G0^R1qU7L?t$sLP7||xR3_oW(uDqJe7i#f-Q=ZLYleN@y5g2{>sg!eW$;wnnJY{
znx)V@h3YBPkf_FjHB+dYLOtQNQmCEcJ8I--qLu&m&$V^!z1-@H(lCVvLXJw&jf9^R
z-b8p)LHctkYr&eN&?Uu}+ju_^tx{;4Lc0`NXMNhFz@>xE?NjI=VrRjQf}I5a>aXq?
zpv(bY<7_GA>y|?I6naTi4?*f|*q*}gk%^Ew{JtslOJQ6J<5TFL!hn>wak_THz`zs+
zrEp+?;%id)Na^4dhH$X4ssq%}0cuzZ!&4ZY!ih`1(yja>Qr`D{Mx`(^<^AKBIl%iT
zvR-hEC}Rb;iZUUEi7BjLO;VVY!sHa@rSND9Q&O0k!Xqi~nU`sTvr?EXWO@oSQg|qZ
zW7U0(Wtho9-Yh^eM;usOMt@k$xhe2NjTz;SIllQKK9Rzr6dn`KsK--SkmU=7{5(J{
zPGLz3%TnH>SlsgcWC~BQJ1lRb_|g<E-0tzbfvQ(=EN4UM+PMb<#Ai}?Hib92*rxDY
z3M*6Ckiy0kR;92yg_k%O273LnMjC$|hrN*J1z!+MiUWPti}|A9;{95;f$HTHh_48~
z$`&4|_}Lmx`AyQKn|YSo)B98TS_-eT+}?pLDZC-%zg=hCVD?rDZ?oKi>i9sljjb(r
zBzL8-J<H!oVMhu(dAtL?U2y%DdH-2<XJgxbuf3bXz7%{GV0n)fzn8-IY_t^KPvL_U
zK1_MnR6k1LV;+80_2kRieh!`#PO(`k2DpX(U<yZ4_$-A(DSVQ`rzsrfsLt-L&+M_M
zdGjE3G=;C&o`-UdrEr`BEQQZg_#%ZbMdX%j`Y@JAPQo49CsX)ZV!ug&fnp|#MW1H-
zNFB}yekaJ+qB4qqcz@)gn!-7*41-k1LF#-8Kc(<@3jd_=GbhC$b$O8bgJU~|R|a`Q
z`qvbG<1mnx|2>5>B2p*0n8KwL_t@hK2Tuy62CJ)_O}4rw&U_sT-KdlptQhrY3V(?Y
zxj9(fNMWHo)%9-*Z3Zjup*>O7dq8RMU{%OMDGPU7xXHrJ7Wj7J!WM3`P|`w<1;2$C
z2djVu&4Lo1E0`ykFUWj~SSV_F@8KySc#DN%7K&SNoBJrL=Dyp6<Tv--Dh?zJd_&jm
z7S0b=eBsiz!Rijn+md>x;9Y`W3|6Hr++!iltSsDX;XVtxg|Ou<0{2^Zz(N^Dy{_>O
zGPk*wwNQG9s$iiUk7&KWydcRfL%g>iSG4e;g-RAGTL@YRS>CIX85&CLlI8*O!9&!-
zA<D22vAkz9Uml{q7{a$^A!Z?NdHa@=7E(eI7EB=&{~Dqy9nvfd4)Z^x*@7gjB!5sy
z3M^EyIJMD^MGsX~E!4Nrz(O?()h*PpP}4#k3oT#P8V^-xS7=Lm=GU@N+X4xL9>}XJ
zv2>^>$4=7F!l%6hO)NAO(#S$%Ar$p|G_%m$LTh%Yg@XsQ78Y6wA#W+9*g=hf=CuRb
zsXWhz4(%;;u<+P+?cbrQqlHcuMjh7rT9`6ab+*vWLU-X^1iK0@9jdksRXr^9ve4T?
zPYX0Xh3|i``0^`HVW3HID<{4MVt-KvaHfmrU<*SmST<}MLoE!maI5Y8D<5uQgoRxe
zc3T+9%2;^P!cvadVQRF6ajen<fiV`wlDGF-`)m#E@PmQz7A9DjXkn6txg2j6CbOy*
zW?GnKVXB2`79QeZPV!z%G@bd6^v@8y>lsg}@QhZ)2Zq@e=2&=GJn2kNJ`hKT49>Ig
zsD%X<7Fw9+!+g3~c-+E&88Xj${G6G*X6FeDi!3abQVM)tK8#u-CLLJrQx=wSHd%Oy
zh1OKdEv#VvP1WEA0e6^s+QKuI_vq8J7FJnUZQ(gFsjOrp5A&XKT4Q0Yi0dpoZ{Y>u
znJ1wpJ*Clsccs^hxL}xiahQ79!YdYDx3I;+s~qi|7sFM%;cBCWW5ZNnxY{gali*LH
zyk>zq+xZO(Z(2D0K;FXPYVdHim7Q*ZgyAhAZwvBn!gdSq2;X60XV!-~FpAE5EbO)L
ztA*bzylY_}$Ag7$EWBsoeG8v(JX`pHEnFe6Uy$TO3m;|q$4ow4Q9O`U4q7-Q{EX;_
zg&(tUT*wi@&nz4j!i0rKs1sTKrG?Lhe_`SN5ni?#{7S@=g7rtJQ#^34T4H`H_=DgX
zjyg&8otWPX&KKoJ;b$%U+|GAS_{tILCm}55XCc2>__Ljl<^`@Q77E+QvGIq6ix&R2
z@DG>Y1-Uy$s7n?uTey-Plh=h@6}%?M_n&Y?{b}JZF@GGPXx^~!FIPNMyJw{OdxY}Y
zAl@Vh!9un-Ln$)cY=b6=-$ua3;AL7-8#P9%TpP;vHl>s2*~k}B6Qt5@q+(PN8x4DE
zBusUSq%CHnxR4Tp^GAA7x7jFZ<8~W&*m!r8(rw&n<1QNy+Nflsl#RP>l(pd-rMQ2C
zyQ<2p*Gk*C$Hu)j?z6pDi9TSXjMVvl8?Vpvo+>R@S01??sooi>?jEJe*(fg#6$C2^
zI-?YyZsx1<E8AExN-g*MdyG;+MvYP-!Rez^*!C`u8#W>~qHKpz>cP>f&S(|05x0?$
ze3Cq<(aIFgqItcDX3EB!H~b`yjkJwNY|OLavJFq<bhOdQMuCkgHmcgFW}~r<CN`?u
z-ZkO+O#=<sj5cc8s3l5W!P<g!s3T<jXjLz()EBaJv|`$ZHX7L=VR)>Wuc?h@?55G)
z#n|RjIxEo5Mhly-yz?s4%0?R@t!*$+**jXb%@UgJg?A97NuSO(y4V<FW2}v?HoDp9
zZKIEk-$pC$fa-4JrZK9Ajh@mV<@gma+Y4+Np0xM1(a*+k8w0xq`r8POQG=+A)CREh
zF^XZJc#;gZF@)>Cn8O5nFZFtsq3B|Nr|Q}W8zb2ZKWGf2gp3v(KSqtSG2X`9F={4<
zhmDDn{2?1tj%$-_T<;T@W@EAq-u0d$I8~4)GiU5{@tI-c=v5z0ZWpO{HNa1B&ayGv
z1_{F)ArG^Ztg>;8dertlx3Sj7^ET$&c+AG*HWt`;&c;d`3vE1M<5}Cgg}TVbVjG{1
zQBT`gV&h30%Q(l&`<DumJZ1miJ}7QUTFxQLDe#Xk6X@`aBxeq+GdC+v+^ns#vD(HO
z78Fn`|I~Ib3mn<#zcA4|sDlG@St#$X@nri27TqtfPH;Vkw-72X*?3v_D_P~r7`4&H
zCQi>ZZck&gjn_DI9dvf^x{WQIp$;lJ-UNBW#yK13Ip%F_wegmXw{7gVaey5$UfX74
zyN!2jv}>JPd92!DW2cRMHr}(b%f@at8b{GswMV+?T|p|WHbr8FXMEnb@qsvhXyaoZ
z?^s2jkFtcEZhYpEw}B4YIAr4!wvvsLyl8LZFh^{g{NpxG*f_#TA?EAbbB@|LCcIeN
ze46z6TuhQLZG4f9qRH@;4Z86M>l+)VY<zFy2XQ!U<69eNgfsI@hV=hV6n?VyM<Hhg
zsk2aG(R}=5<7f7)<DKFBV&hj1Coc7zVz~hoSHH0h$Eph)ila4#s(b`;w|0K4x@hB)
zjmtK!*!aiB4I5W&T;sYi!~YjYuZ=&2-+Ru-Krw?Pf7_@i%75a&Sx-19<lrU;H#@l9
z!5t0?JIHZR#6eL9eg^>u8bwXz3g!#a%yV$dIPcxd3@s}_W%Y!Jw}^SGgJKSfJ18M0
zzoo@5YSF*pICYzYmf~4bqFz7mzth284(@Yszk^cQ+)4|%TabGvnD!pw_d2-#xu50(
z4$3$vFJf6iisc++-uX<P`4VmgiK^%z_crfST$LT~ywP!xb`W$Ba-cg1JBT`nIWSmZ
zBQWt5E#jcxI5lIOdUl-Rdw$*+r{WG0%;aV5z&LM|nhuhVH)vB1xXH&7q)Bc&-WL;|
z?VIa5C~#2UK?4V0j8jz{sP$Sk2UQ)!>j!wZm&gykRChqE;h-if?|3JfwH-9Bt<@D?
zN3iI4RZohGjQ2`!=%A5<rVg4p-qV*=$E)@!Ut<RY$EzlS506)GpU|2+-i^q14%Ywe
zZ^34F(8@t;2XhMo3!CJ%71GARTjNzmA+~qCN0mDWl5~_pNxC@b>fpG86Kp_c>tG$T
zWvqjq%*Vka4thE0?O=j~i4OWW=<8rsqdabTVukxT7~){4gZ>T%NS*^7%$T1$NI1#h
zETQu-2gAi2=U{|`kq$;X7$eFk2MqM#N1%wARAWWSh~tH4GMvQW{d8{i)`5o{Om;BE
z!Bhw5*XAd#`Pkso986~&9OSJEWRN+K&vfwRcr}Z2VS-|q?O=|BhsC4=14ZII2a6pn
zaqy^v`3@eFavyiFK*+gGzO$QrM0ze1<p~E=7P0-0=ls+%|49c+9jtV)%E43Ou*?B<
z`qOQ>gB1>*cJPb?X7a29?q#CRv_!f+C(fCyRy$ZDIWUUJ>A%*&^A29fikWJ>=-?#>
zZ#&q=@#f$a2X8vq>flueJTGFx4Lp|1Iefp?Moy~<YLkP_4(d!$uQ}KvS-mbuPl^n0
zNG#2s6VzLd_r@FFV6Ri=PEh3A9qe(i*TFjuc5p_tRXaHsw#b#AaA23iFGdA+3wEgO
zdzXX9P#-wpTNL&=-rE@76MSFr;5i?a4_SnRj~(oHaD?mU^4tT0pE&r`!9f-wCM(cn
zw^xnBS(79qe&*n)gN#Y#m;-t;pU*ix9sJ?oBD>!4-g<Oe@GHTSf?o?V>Kh@a9DH`!
zNAp_;XB>Rz;ClzZNz@O5=h;E5KsMD`_M?OMZ}DC_l);}J{F;sZMPg}YqUdu$qJ9@-
z!b=V=a|EWnx?OQ_)qzj=HF3Bhc-_IDk`I0U66J5fe*`y8P}Khw&J4*JAej^ryeW;F
zg-|b?#s}i>Pa}{<ZdNarMqV2EX=qucXc{WZi=^?Rq`F0vHATHrif3a>WQgExf`N(Z
zjx_E}<LflON#m|GN~JL;jfc~?JB`w5)J&sR8uz4eZyKpItTgUpeNN<5N~3Zb_owkd
z+FQ)a2$mNtD_Bmj<QqQ5R!F0wnB)(pajjy2B$&p5ty(w@BaM)7U6A7a6ICP)bD~NJ
zMg?icgv8U}Bgr&PF_T%5ik*g&M)frK`k;mrRgZ~k(nOU`!%cf{isKv33)0?u&a0$R
zHH~V*m(y)q4zWfWn<gq=iG6pXs+~riG<v1cJB_+&)JvmX8tv1lpT^Ey)gX<AY#%+q
zaoZ@3#%b?K%zr1UCTTQHqh%Vc(rA{(yHTxq8ZFW|HBph1WJH>+(`X}RTXFj@if;7b
z<-ratagyqkMwv;fBb$1Xsy<0|PNPd2UD=Xp?}|s}?Lghr=qYB8w0Esz!X)qiCZl+9
zgG*DNG=`@!B8|Rj^h=|E+7ky04iKa{FpWW3USy}A$`CP!^0<WXxz2T+{3C^rOJjT*
zqq6>^(-@QGV}<bc`h+wlrZFRp;xBveonARfO-f^O8YEPvq%l=EUvWPzjp-cclN2BN
zz9_K|NvfG??<aUx8ne^h!}UzX(6_mNZkl_v@MaoYdC2TOrsew(IBqAa`DrXo<0&>m
z8jq*3fJOAlWmufXLg7zjl|@2oPF9RvlE#x+efVUxERD63)w5|lm&SXO)p8E|x!MZB
zrv;x8Jk7LetV-jhG+s_)HRns^0K-}#YXskl2cA#kg*4Wsu|AC#vp$z6dt;2we3L^a
z)hlUi%*MVdWP{+nQ#`j#oOD87OM9O(;qkuCDS6(%C5<;YN~fsqQ@jEERvK@o@mU&2
z)7X~A_B8hMxPJ4#Z}?6cdxY=EDm#VjN@I6csXsh-ukd%%*eB#YPNFnEO5=StvM3)u
zl1sNtp8P`M$0G7njmiPx2h%tt<P*WeoTozQK<6XE&s_D<9Ddb*j3e`^{|mw6X`B#3
z<#YDqj~dCBqI{LcNg)%aC`M5~mB#5bCb^jG;@dRNaBXq%pzAG4-=%ROjo;JwK8+tZ
zLZ*0|*?!~@;tzTn=Y*V3;};=6aS8oB=V#%Yqz!)+{+r+~QT|BdBG+UWg<bE*?o!%&
z=iybEXqN@A2=cAn*V4G2#-C~Ym4?p+T>PEJOn#FkjT`Kyl;Wo={uM%zoC+VpB`0Ah
z<l-jR<DX1XC#I+z7k(GFxhTowa*^xeR@Zw|be`+I5J|Zx;v!$T=Hk>8#X!9%6&J-_
z@A?cwF(GBn`^eb>%}iCo^}hc?lUea?)wjF2!^QnB9&mA|i@RL!#!6`yrCi)CoVR8&
zcU%6u?Q)NcdtKZov4y581|})vqO9v}P%kIQ{pSoc8OpQfQ&j~)nw4BscG1p7dlx|$
zAs026#D(r6?DDP1NV?v9Hw5D@UpuTK!lN!?LLyVW8x0BJnXi1NTv#p&TvTyki|z_K
zf@#5`E4?ouFz^GWRb5mQk;%W2Pmxv^ld<k3Uo984T{LAwiC9Olk&C)6>ba;dW<$XS
zf&)f-UpSpB`H(brz0a*Sk*FF{)#k!m3bt^)^KH7d60^07HZIx<&mcdX$5@W!4la7T
z=;NZJi%u>&%kb_g*u_Ox7u|&S5Tt*17yYLG@9E2@&iQ&}^@q;+=1f(6T?}!(R|Jsv
zbJ3qAZp#_qVxWsbE+{e#7DAnY=1>>ITnuLyxESYpzZxT5jB+tXc;@R%qlGhyuSg<}
z6?64eHJ$^{MGL=|ieaLQ(w+U=r>ZF~rn=bY;yoABTukS*?X9h1o49z$#X=WPxR~jJ
z`*I(5vB1SF7qeL_sV!?YkMn)1df3HW7mtWYlYvo>x|r|cF^M8F@UuSD|6rR;Q}<3&
ziD_yP8*`d^hC`RdO;d|qEOGJFH1(v5r6j_a3G&yR`f}kUD_lIC<$I@jH}B3&Q_o2S
zR=OxO-BXCGU954j*2VKKwzzo1#S1RhxqOc|UUl(%wZM88FAJ%?+4myHYMcC*Boh+G
zQrzHTBfH7P>!NQGpUsk_@n&Dm&E7u?x@DZ1>P;70UF>$T$HiMN-gdE*qj$4!n<RP1
z#SRzSh0~d7nUMKpa^RTR<$@+fhP^J{6;E;&lu7lziw|TVeedE!7azGe=Hj@Ek6l!n
zt~yOupSsxZ;(&{TF4Am=>FN^~hlG>RWTC{uN3_FSLXT)i1V3|eR7kI<HHw3$t7&Be
zCtUCr<mWEFaPg&!uehwaIPK!3i?3bp?R?(|@*+GrU)h(zZ(W>W_wfyK?*EC5VxT9F
z@dvKkF3!3*=i)ra-fXRTEB{X}es*!u#U&TNxcHR^?&1#@^QNocTwD;sn$u(;$tdI`
zmt9<Oan;2&aifxP$oLQ${^H{AVrWeatBHSH+;9=8hG;eX>%vz6e-#9(c&9fgK&1jy
zE<m9I+*E*@3%u_{2MUl|fW0jPg$s})#4ku?OdD?i<Q3q~0`F{=Jih>10aSrkhav^I
zr2xeWP*hARjUBDH@Dc^M_5acJ9#Bsd?-%fUEhH~wMT&?NQ93F`ilRb#-DH!{q=<q@
zlcs`VLqvKn(tGc{H&L-5h!qQph#&$|RFI+~$anXK{eAy)zVn?k=bk%vo_TiKPLj>+
zj2Dbjyv<3yU8IB;Ih&G>K`whKFG_n+MmC(3%6f697fbpZ<>)Hosvv%s@NO^4i!hb`
zD|%7Mi^^V9@uHfHs|uN`{%v_g+O%ltBDv3t>Rx>B#Q`sBcu~`fHeR&#qLvr;dts`M
zwY{k0#Y0{^?6ue7)D=G9MLiKJU-UN~6tC~a2W9e>Chdhxk4S0gg;%73*M3EaI)l%P
zpcf%8{7MRVan)mcKGoj{v;DnDNT(7N;il*(3nAtO|00ijfdTefET-~b&ZHM971Hve
zsTa-IfQqtfG9p<o8hO!}opLFUViSq{zC_OOs27hp_RYO$;YCX?T1ol8_Oxv6#pBYS
z5a#?m=|wv)CU`NCedI-ZFM4{>%Zm<PaF>;5y?D-xj$U-)7#m<5ZRGY3Fgknjv=?3I
z<OfezFS>crUA*%EqlY^B8AX}OK4Ksl+QY*)U;1`+@h_X_y?DWk0bUIBqPG_>vQrut
z?C-@h2RzM9&r4ps?8PhWzKnZUd)Mn;yy`_Cj>cDv*SzTK#dI~@zyZdl)%HsSwCU%?
z8(xqw@N%057%#rz8sx=bubwB@_6+f2s23x>7^UJ3^J4fD?h)d{SrWdgv%SFS0S3j<
z?1HO#W4##X#nF+TF~TNS^SCqWn_i6f+FPVDENzi@wXrQu@?x?V?|QM*iz!}A^<tG5
ztG$@Ua(c0t<JpTDUcA)b6+Gge<;5)njhRC3^gi2*IbO_FG3I-DZUW|sb1I|pLh(gj
za8)f8mN3!KUSWH%t-IbpW2qO*INI+smUCcC@$l1xd<E<4#jt)Ja^e~<)_Sqdi}kF2
zE7$6=_C~m^1{yrKbb}Y$*n_tiT?ZN)z1ZZ%W-rLMc(K)sw<GrD7-b;e?!{XST|GOz
zct?c%ZINjM?IlJlZ^wI_TfF$pi_dw-W!)cmvD=G1;vceW*nQ;-GJGUL=N~tA{kPlm
zF{?k&*efLY#EVZI{?0(-3$|x5&)4jcnCnX~P7k!Fg?(P0A7S?w1HVXr!&z>S@vRqS
z2O0Z?-w7KGGN}CE#X&Fr^y0i1Kk7C-ML%8~^5Q2i4tsILi(_6K_u^-Ev=_g4?Qa^x
z%I0wfs9!dZ%cM!DobcjTFHXt>qg*w&uIP0G-oj^;>klDQf8*eH{4mOJ){ArhN4em|
zMb6be`&yTrTvtT?68<gxM|fHIuW-X{c~?c4@joxFiRZ}=75M(&Z%Q}%aFg_#g$0C$
zzDMQzP|$}_K8*IEkPjXoqCUiYFnqYhhgv?|??Yi9ZuOy>5BK;`#D}6j-0eeoABy?x
zO()6<Ns9Y$n-3*?xZP1o`A||kJcws=fJifj(ms@t-d@U`K9uv>yH(ufLvF*0+|Csh
z6eX`B<BGDWB&;mOtKBWC(%V^2A?^zy@jfB1l1r^F`x-vf6ro6m47GDnVI5&zAL{w=
zfDaEUN}ES~sPDr=iayL**SMaSq=CeSj%8kTJISZ0--m#s2Sq}xyQ4%zMh-IKJ|ukT
z;lnff)Ha1peMpL=g#0wOMAANFe8`G7V$V9MjYa<2<{Ex3kH*c|vpzKUp@k2feR$f3
zmOh?=g2#Ml?Zbv<h2{^k?;0-tnYYFBxDS61GWZnz2_M?{(AI}1edyprM<3ex@RSej
ziCo^($j-vBZ;-)2lG8gWm20c0bn&6958Zs|?!)Yk_H<FdbAGA8#-ZOm9oyzV_g+3f
zDW3J=IUio~;botFLQqfP3qJG`d0t4Jd3*ctqMS2IozYi(c-4n~KD^;WA0J-xp|20G
z`;be`WuaNl39-Kq1LR?(4+G_SsN-;u4}+x)ajsZNTXqjqbhvPY504DCPbQ)(hA}>j
zWo!7+!H;o1yy?ToKJ4{jJR30Sp60`JA13%P(T7PsO!nDdx2Ceeo9B@br?9_T+ox?Z
z`qW@!h7U7+Snb0a4%EZ0Sw1WkneD?IALfcvUnnw9INyf_j^1amvB=?zMV1Ih4mOx;
z8OyKe3gJrODxsY!o3%b{^I^LW>l}SO$A%9Z72V{+7Lm<P>Yl;IR)-IL-9<ldan$*+
z(}x|>-*!^p@!1nE4c>E<T_W!bKk(s0NB>PF`AE^-KJ0Pyi-V0%eE5`ekslsEKJ(#o
zAI|%5!G|w=_|k_%KK$gvKF(B)+-&^sMZWUkYab8s!MBPs={q0xt0TzWLyRgzjGX-e
zAAV4;G4DYiesp-_A;w|xlRljC;fN1E`*74rJ?_IVK2+T1VmKx;eUXbEPRQU_;h1YK
zUgESa`n!s8#)se7N{uuO+PazghYx3cI47Gwh5H`O>o&xG2k@c~mwdR<kF(A4{*uGX
z%>HPeU2J*#hqYGpUmvdcaMg$Ze1IP}`0eq=0mg96hdj1hBlj59mxNa*GUH8t+^nPm
zeiRg;?h<he^Zi(*T)C_8DWc&=F+Ym4NS_qE#gD>%-0DXWMX40^<L)6Y5(bjn{3zi^
zB|j?ral7B1H_G@?){l~Y+~K#+aV{m1r#6=sp-3C9fxOdiFNQ4dM>&zZgm(+6bJ=7C
zKPvihd_x|i3{0xxM^!((e)#;T=EpsL)bry3KkoJ8K0j*uQOnQmo9xrrtNT&IZyyK$
zf{qR+@?i1%{iy9n9geOcwoP5XeeQYAfYJXl?gy2H{1HFu`|*(fdg{Z{FDVyO8~D*s
z3bQck_aop(b3a=65%eSEN5T)&k1#t(W^uoLZabauT=l3QF^LbWV9fq1&#(6*<wx3&
zj31U#SvDpy<cga0<57C!@z##s*pDXSO@+;bb>*}8P`h?5{b=RKlhPmaqqWEryigtc
z+!Go+u2Qj5ZP*TeyM1z3WFgzh_$eU`Sa^0>M?W_EvBi&0esuQZX+OI7F~pCd^y5c2
zKVI?URlmJ1B|6mT?ne(lp7G;ZUa?%EZwGijFY9@Z?deBvKYIGn%a7;%xLVfMN#+hU
zNElx9gZPpkyN4P(j^#1D%zkfbC-w2;HNU-xms`s79_;JK>wfg}+f(sJjq_e;=6-|z
zo4NZ7|7e^yz>k6AgZvmQ!VgLs@bj8D%#Y!I`){4KevI&Aq#rZbL4Mr!wr3P)dq3V3
zA1xds9P7u$p#}}cD>})K$s!Yk6NPsTvkj*BG0l(ZeoU1}rRP}}v19>+WiZQ+*?z3#
zt>;I_Va6Ok=KHZge6DbwaM&<op&yI<SmMW0hG7Pc7xR96#wIoPc$Ud*xgRV1_+XfE
zMk13654R1<_4TawV~y@O@|weqp>6F??R8St^Ol+83Jf<k__2{=c(}1i*m<}?zSWOy
zejMWs=*M<HPuIdeKfdBP@#Agw4x7%8cQ_>4xOe*Tp2)krE47o%`z(x<4|O5#$CBHU
zg~q$2e<aL_AM<`>r~9#2B8&Hl$fu6CFBE0ooc)(h-mgWz_v3)bH-3EUSnl`ZJ8_nW
z4uA0DprVI`Kl<^LV|mCaA^p?%2qzFfj{cv#zx*G5!f*d6aK?|{M1J+-q{u1ZX<=>)
zi{JhD!;b<1xB~Xq`?G$W^W#rHCJeW4rSpDV@Z*{vc>!GX<B}i$_;Fc7^e>KQ7O9z=
zL-c&(JQ9v%;=g`e;r&9livA}X>a?Ndn6_>Na6<q$25?ir&i=o=w5P$%0Xt*Pr#pcB
z0Ez`rJb;1$6bj%LX5sl?0sH?xhLKtnZ3Ga_v;Xy@QaFHH11J)JH_twguV}#jyO4x8
z)NKKj2%tg$6$7|EfRX{+89=!J?g*e%0Hp&c6S%&_nptwrNe1PiYyhi=+y5=z6~NsA
zaFKR-6@W=}%L|ck#dW0sDhF^+0QV}jN&r;@s1~r3xZ*nEl#oTeFM#R+)C{0j05t;F
zv(rDleWwf2Va|D-0O|(tLl6gps29Kkj5c=n3F5&3>Id*m0N)1iPyi1H&^v$^19&8W
z2JFWGng`I3jSxU4VE=6K1>g@LAs!Hhg-i;HgoN|D=0`-L!k92Fq~%}34O2YnD5(G}
z@wB7#C}CtB-Y9^^;!PZ-X#mZ{%Z#vh{cRCI%K$nB&{<-u0NMo5R{XI5T8lg`d_u_L
zG1rsgPYK%zDb|(4_KJ20prfOwMi@^!{Mi7y1kg2rZc=&(yF00EySblnc+(NabK*T6
zrB?vYi@zY`8@|tuF!-X)O93niU}*p^2k=S&uLjU3fN23t57;jUy%xZ*0EP$9SJBsn
z)cXbSMgaXeHlz%4^noHT$@Aa<hA28z_;Cr_;RudrMaR+Y2xC+LV-+PI%~2<joR;Lo
zH-+Pcj7|`l7{DZv$&NlHfT`k5+qr2r!_nu9%nV?b$ZX*p;auT7A+s?1f&dn>9X8}K
z%CIPa#Y)YUoXRpq-w`ekU_}5c16ZZ#CgEz~8sS<YbFC9uAHW8Yjl%!=+#J9b$8u``
z+XC3G=v%_Kg*%+u(OWL#y8-MB;JpCeck=EI-~)$$D6&iVk&wCeIH@0t><!?P06vxH
z&jR=&fG-31+_71xF4(8&SI*VHc2enWe*oVFa4CSl0{A|F0|EO<>~Fl&H3^>*9t_~e
z01gH4QvkmNa7^Oi06rRFKZ#{H62Q+Aj|#a5EXCvECxnc0$<wa^n8or=I?A!)d8ftC
z2y@Siepdnh5S|sD6aFbYFT5aRIWLOvS<~ME{1ZUWAbJIHIe>pT;RN9e;z|HlIj;s$
zDv1C1@Sn4H5QT#F!J~OW>^hTIAP59;Ll8FxaZ?aC2k~}MJKTE0lfxZF!BD54#}$M-
zi2NWvENV}-IrIc!P&t!VEQniz{D}7y3F6)pp29)g8pH`%(wKx-EUN2%b2+bg5Vwh!
z2;%l2N(S-$<va!^F_17z=^)AkaSy!(Q8tJ>gQyrpr69@$?W>pcd&&oKR}gnQK6BYw
z><U4<z$|>_AgXY>E{du_l)lr>wWp{}ss-_^&z|8~s{4Yd&N)1Y`a#qPqGk|vf~Xrr
z^n|BY5cdaBI|x@XyZZD@w>hjA<dKwinOP}@T$xE83gY1)9tom>3d!cpFJ@ntxf;@^
z*EY_zsy~Q85KjitE{I?dp&%Ls(Kv{35Ro8~L8Rm%8bmCJxZ{m}5<!@3+Y@$q{?|>#
zi@^#a6GT>)X(4OJ0`ThWlw(EFB#5R#G!LQ$J5i-#QnMgf_(z?(v<#wE5RV7(L=ca$
zDf)R@=ZfLAn~Q-LYNM;S73LZwSB$5EXdgu9Af8s14)V!McMPHv$A;fvo9D(u7Y&%M
zL3C3|=#%58dl1hkBd^j!1|-i0@tj1X81D0W*p<%*?Z2g72%>z`JO=)l?adZz<bF~3
zl917tMP3QwRYz&E+4EY^UWe8<h}VPY7sMMuEC^y@5dDJ~prn~W3=CpW5MzTF7sOzR
z%rYW~Ar2oJ#4z#U!l62FkTxTO7$s%2aE$Qh5%yX;hBt$lB87Z>5EH~F1~Dm!$&OAk
z?rD2jAj8xkrb(afq|Ok@8O#!&9mE`wxx#tE`9gZQaip;*h{cNT4Pr?UOM^V86&r(C
zCULc6xjcv!4qqv<iZ{Z@>m^?k#9E2#9GmqbiIK*pAU2D?E8HS{OSo0IEr{(REKjGA
z#tw(SE%FXqRae;=#Cz;kCv|raA8-IDx+{o}L}tjcyxVS{JyJdvzAycgAU;*}vmm|_
zq1opmUkJYx?i2oW+4D7rz4*7n?}Yn<_Q@~I$nbp-2P6i%7CJK0_%Vn>oG8Mm5ynqJ
z91fyq2)#l$62#9zd;LK75RL}%3)?M(S|J<@;yA~42n9np5yY=ST;enp#L1xj#s0S-
ze&?|K({n0_(;R!}JPc=o=u*N?{X;e+=S9v2aZcn<c3f$Dg+mT61aZ-^+|J|LgZM|$
zn?ktk=y@Uh%a4E{t~$zpBK>utYeCf7XD_rv$i6Pa4I$hp{`bi1pKCWOT0rOu!7Wm3
z)b-RtA(RZ^ju1Q{7$MxERQf3{QaFTLLnsnLQAaNpg4fCW_$cEx=_Q1>hrpF}JQ<ML
zOGzmoLWK}YhfpSjvW|yxB6o%`Usa&-T_M~pk*|p{S}}x5iry!zEUXqn6_Kh!nvHFj
ze@_VahOp-zqxUE~kW_b4YlQI6ZFxfr;{Fh7OMF~dCj@^8fe`A3P*2JOAvADuJs3j$
z5FQHQVMlo+gyQ|}8ZmS{Xp@F)0j2sJo7YDf!4N_rWJ72qF&siXgoJoR7!4sNQshKI
zIvM<5zNx4sOoosWVbZamTxo}AM5>Q-H4dSPc*_u)I;qV=XqMx`2~NMXP?UdBwGw$u
z*jh;cTSggAgwRIOwjn$%@?;3@Lg4?iPleDSgpT6vh2O~S>JsQA%g&CUDd#+0#Jh5c
z%BEY$-V=$J;N8?Cgl9tbZS|~><T;UX*YchZ;e`-B3E@+=Z3TDl5XOb@W(Y5a@KOjb
zhww@WgF+ar)K`W5gndGIO@z7nioDLjIr{o6_lA`I!T})+6ydoHG#(;8QaDsNOgLOP
zLU@n-j1p&-(IJcxA1iFF)bSxq2w_<W%R`tbeR>EpL?(qWS%i6~h)fM(nxpWK>6zjS
z9c5MsvqP8@!dyq0AHuv4ax-(U(Z&Ml^WMy-!$snY9m^#mONApx8!JLsDZV>|RUxbn
zVOt2>Ls;Y3ZxUG>!aDj7+3V6bgs@Q}IhXe{<QA)M4q=P*txn$4Q(SL_utU)gg>MVr
z5Aj54yc@z!$MU@pK6m=!q{s&$P-OWTcJaCnFP(39*`5$Sma<paWVt<We?})E+!V&m
zVSEw7mm&Na!ub&Ph42;U<PeUB@O22^D9d5tw;>z|;fE0RD@rHdh46ijkGVcJ4u){Z
zN&QhIce$T9_Nv<><cP$d9h;*e{NnIBa&kh^Gs0hmCqp<Ta#~0y@iE444*y-`j}Xp=
za8A6w%f8U!w2c=y!}G2Q;i8f*Il2B4`I~c>NPDOJR}{UGtAIlIFNAB3{S9H{g|D|T
zL=L`UH{)w#j9jZ02*VXdF(!rK4)b_!+qj6Zps;Wlg+!=(M2s+QaTIP^c&o#E|LrO2
z@Ofj5+Z<jlj1pno9!5z=DHFyW4lgBAI*bpUx|Ef2r||jPaaS03hfzL^3R3O~qoN4Q
zQ$?gw7?nl%b%kP8@oJ9E!7;|Y4!_T_tQkhFFxrOkWEl5{Q9F!e7^yJogzcv{kA%@c
zq^_`D7!Qa%D6B7}*+XGGEdI-w>*r)O3?uBMdc*LE`yC|^Mo>H?tTy&~u85*hVJwWe
z2>mBS%rHz@T8cIiriB?{R!I9sB8|gbylwyW+%$}4VLa-jJ}%N+*dmOUVYCY4F-2Po
zzbTu?r@qWs@6Nm@q_h!^8D*ae!O$*@u2RUK3ZuQlJBV}?b`o|LJ}vAbY&X{ECc?bk
z!|37gXTo?*wd={gDDQqeh9_d^6~^;nybwn3FeXGXF^U(%cqxp+QQR8E%VE3{#v>6l
zh~U*Q`h;;Hj34MHjJ{zk4P#jtuZPi(dBd0(#v5Vu4`W2w{*5+3I3#SpSv*jDkdR4(
zMRtxghC0eHk>Nt~U(d)eMzL+3)NvwX!Wio)hsN4llD?_vc;U6N#w3yHVay0)viKAs
zEvJStO}yMVJLAkSW+}QzI9oVRI7c{Fc>g$Kei#eFSg2@E<!vUUlf@F32p4Jr!16G5
zgz<J5E5cYQeN`Ci!dNf9TDT^RwIbskKO4f>9LAO~HcF@GO(ILj8CxA?dl=ioxa|)8
z=pJXh<><v;cD+N+`8kX)!`K<ddrJBwjQ2%$h4E1sAMln}^tE$&47>!xZYduN_XvL)
zXY3WZ;Z3`h7(P|>voJmvDI<NK_<rG6!mowjgz>G&eQz31IUc?Xqxxyr_d+^67{-sR
zNCYJ!IK(giVHAkK6~W;!j&PucaXyTn!#Eno=`hZO@k<!T!uVBgj|)!-A3b@!7F$o-
z<YXA9q;t1bMt>70`6G<q#Yd|=XC3{V$i_E~3t?Og;|eG9FfN7hR~Y{|Hh+usS98rM
zWw-ogDgUyX^7daC*TT3dVkhMZZxAwy2>x(d;6{o0<L!do9D(n=U0`<v`4QZrq=G`j
z$y+D_k9bXGX((it!V%mWL6HcGI+n#nibe38W&aD18x^-lP%?shBDhznuG4vUL{Lh+
zbOd)tP(Fe(ik6Mw&IrnhGy7c;tO{R$E<sYk(JPBojG&UEtX$!$5<%4nE_$xpS5wlC
zGp_q0s4o6M1T{qJ2x|&!MR31JZQ<H;d7IDY^U@4;rPLE%DTN0ks4xDI@Y7Ry4~tw5
z*sa$v0&fHxBiO|DjKCkk8xi!6AP_+?f({XMj36ZYOa$2o!s3w#q7lR*h)0l&ASE#o
zfhp3(Y3DUH4NFQ|IP$cs$`wz4r8bJ7aRjX*cuYx6ge@Xy8bPxN9#xdZYaYP_*{^VX
zwv3>mZeFIgj-X8hZ6kPG_D?vu_R083MV}J36JC?vK7xu9>><=Cg3b}V5JB$<o|ZxP
z2zrQg5q6EBn+Ojeqy01DJ%!H-DLyB1hvDfZa^D2w`3Q(jCKxX|Hhm*_DT0?3eMQ(u
z_$n`_lF-j<5sa8%{L{J6>q_buvHv(OcRr6eAcBDr%#2``k_JUEGJ;VN431z(1nf{|
zXBZm6un30JkIbk<Z?|u#r4x+N5sZ;IRX8?+@oZS}aS^;J@`Xw=QJlFZNAO=MOp4$d
zuFqgolr-d;XPRR(U1UZCXOwq#1al%-9>IzT=0-42sY`_OBUt3*TEM&Gs%N31B>5AK
z#Sy%y$;U3O^koqgca)V8tj!rmuv&z3AT8HKP+Kzq`ML<!E9tI9`5PjrH_<Nh<_NY#
za6Ez&5p0cMTLj-k@NER!BX}!<y%Bs8!Hx*mh2p&k-dFY>CGn2PyTYBqn7n-;{!s+G
zBls|9^So;phmcaaEnaKOvquxi$4VV6{nH3Oi(sE)|GCH)!VfhQe#xGdB@6tO^shNP
z^|3pYVSfY%Blt0b@09etkop0UAA~z68iykIN&FY#;Rue1(9)RW`dR#_qijlhj*0*L
zr#*6h6+a)r1(A~xoQmKy`&7|Cgf#mtg5Sk|c1n9Tf^!l4DG`(G25)%Hb1{NTQruDe
z6~W&eMI1sA{3G#-kd~Jt_*a}itBWh|)d*^d<VEeyy-^6^4N)*;lzLMXH%C!GI?Y^B
z^pxIY+w~U9kD{Pb3q|1(F@(1Wr%p1~$i7GvMWc8;iYKBd7De$W>PPWV6t_j~#cWlg
zs2W9yC~l9Uq?9sIl#SvJaT=5oDJ^_|l5wY_SBRpV_+7%gqbN_3Theye_0uGKQCUSL
zRf?jr2$d_7jA{<AEpm_W-YD*iqPlpEC~Aq+6h7YF!;JTflXUNvU&rBfMd}G3h~hy<
zFErVBSUed;DvC#<Xb?q1Cp8*{HwvGk{wP8s0bx+cYVty1agvBg)yYOoBpwB8K|K+L
zDdmyLcGMDY5=GM}_lvOGmLVgO6*dw!&f#REnaE?pN26#i@}gX|h@z#U^w3JA!?=9%
z*3PBdMA0^i-u&VnwHG!#8ATV7c0wvoiL@7Xh@xW@oy0pw@wCX4$=BZz%aN{8bc>?9
zl6nYxM)8cuvqJiOPK5hnk@pgRUid=P-WH4^mtVdV#ptNLSoGy6UWww>DEdS(Ac}z!
zUlaBd_7%P!<=fM?J;NJO^p{A^6`q3}K1^hA6hopID$dkguHjLPh+?F~QI0)Ra~_Ce
zB#w<@oXDHP@&Ct?ch;mRzK`NS6qBQv62;Uga$7RK8^yFJrbjU&ikVTYj$%y|v!a+C
z#gZtNMlnY>+5#c{%oUjz#e9+d8?S#$Ss2A4$7XR9Ure?qkY$d-jYgM8u_B6<j`Ds<
ztP-ER&%V>wioYdX7sdK0Hi&PEVsjK5#c7uN622vhZH}@vii^6|b}8ki7)6`7c8I_2
z*u2A0q)*kIQM{+#d_Rg$qxdX}52E-`%C0E(h_H)4iek6Jx17xT*x`FcKH=b>;+*^_
z<!jbg<V)c`A^m(M@{)|diQ-#F-!JkVTV6>&L~)SgaH*$s3_nJ3D2ji13q<i#6o;d@
zz}bvXeuO8Y_%({3#g7Vq5z^q8$Z_GkDaJ`hKPz%dcshzRQT!Ig@9gNp_(S4`DfaV<
zZ-pf1B>ox2c@aJ-rFc>NlJGAf#lNHYNBpwzZ^y$`PVX_?7{h;#<u#GKm|YPFgS}ig
zi4=^XPz*PV7ZAFHJOh}<4EZq}T53OC^hhZZL(v!vC-s&X3OoE(k#bXwVvcfqjtFlP
zmWbhjsn?&jm6UQv45dUY>1ARl8^fJ3l#B6&4m6A5t{CoSt{5JSVQ^D-`50=&aKCtk
z7%Ik4DTc~1REgof7^=rmHHK<2+!MpSG5dp$E0?-WHSVu!%>3FuUTxY`dxcevn7yK@
zW(?m=H8x0Ll$@KU{xQ|49kXBauOlR>D^gEbdYVx`hKFJ>V@SsEa14*c5QrfthYe!z
z#_WGL8ZyfFf4Mxqu*)ZfqF?3VwgaJ<y){9Ub?lN)J<O6%Ga^FnQ4otEE(3}Q<t3r3
zR18)O^LBZ%F{ESMU(TIj-GA_K(;;p>L~`|@rx9(Y8I6Tagq+W*uo%6j8IQ)$JO=K<
z`t5t37BRGp;p(^cW>c+Vcr1ny(~KF@jMffev`q|cIgpaLDTyazXcxnzI3~yOR1EE7
zm>t8M7&^qzF@~OeT*EfWx~~M??f!Ciis2`21Q)~8F?5NcYYh7@<Z)}b?$WynS)(2?
zJR{ygTY)_r!*gmzCas=kJRbwsg}xHQt89%w+%Lq?TjWLIOG4@|vtOneBz-srcuGqR
z&wv<Si-B8A_Z7Y_>?eFf$fW);9G+%xLp?BtK^#jlT$^UxG2Iv)!;lz;#xN{qpO7^|
zNHRQzA7b`tStA`~R15=5TNx9>*cisC<l|$Q5W}0|Ba7Jk-b`ep#V|F7X&fihjma$A
zbYqHmtLet<>Bg?<#`G9w#4t04SutFc=$>KRJ;MmjFnrxTZD$ya&SlrLh2u!ZF+YX{
zw2a{rdz1b6kns+ORt$?`Sj>CbV=Q5j{w}mWhNUqqi($FMRWYoNVTJfgVed!tS$^8D
ziD9jjXCJUP_#&>0q0bDPZ-`-|k~YP#HHK|5Y*v&>TQ~-07+>{uZI6K-sO*U0EhqII
zWq+GpKf|avEq`YW@5OMAcgjrT{TM!o;ma8I#qePayJGkxhEEwPxY^Dhu|w6!dt%rt
z^0Dy341=Xz+ucJfGt=gu#X$0T3|}ZOm7M)oF?=1v&oLa0;Tw*k7!Gn`XGwU!$MAg&
z2V(Z$puNi3J6#X0%$~L1<z#35_P6~S7hgg=q#pc<gCu6}!o;NO=#0;mrQE;7a4d$?
zF`S9vcnl|EI2pq!8BF@e&ho1`Pxhp9X3vSg#qfI!f5dQ>p8t<AISq&`(w{L*uIxUq
z)C)pJ>F}=@{*J*NM}8a=%eepH4A0K(>*`e5eL04IV<5RAB)Q6|W2QmE7n85WkQc|0
zHg3dmLmW58aT7hvG+c4q9LFm&jRJ~NA!i`TDFx#w6vusWRFA_GhY?5dIBtvMmN*K>
zQ7n$9r{=9WQee$Y<JLHGq(~e^$!8i2ygJ2KE4fR=aeEx);<zi0l5zW;%~Elcj^hsT
z<JE1Yj5tYIdahwB)bEUA|4f7Y?l{WJph_GS;;1NIISy_s!PH7|{KbF9-|}qy({sFp
zEmn=AS{ylkPaOBg?NqiQ18r)=Q8SJPaWtf#I4bY<)QzKF9QViZ?@Xh%u#T|sEQ87e
z;v^4=JSeQsODOeWC-o5#|185BhcAw3+}?!EFAND84a5<2c<)&Tm2e!9oT6w<JT6QK
z_e)R3Va4%89BtxA$B~JnaU4zJ$g)GzF7ExvrSFa6*tgg7Pjh?bd2g0y>Dc^NinyAx
z*D|hVaXcDFbMY2&JQhdmI9e*&O2{lUtH+~7wR6SeoaedmMa#UlaXcAE?>JtJ<7&2G
zyEwYV(VeMr6pR?{<LD4a$2hk3@;oi<BxJO69A{=3BwZY(YaAD(Os!Dx#@{?WRJ&({
z&&KhbNY6N)=M|sMXUp`GQhc`Yf)t8XW*aZX@p2r4Ii5Lm<9IcWesTOc#?vPb?`&gp
zVNdtj#%tn?_7!<u$O^u}EJa-Xg#&~G;~2!cY%f54;%tLhC+i*>$GAA&)Hoj&$M85t
z#4*wt)nnoq6~|~rXSZ@Q<VO40IQknd@>JHv4WrmN<JCkHcyo!gYLriLN*q(;cqf5(
z6POmq^f)&_!-EOTh+}3Pzr=AYj#+Wcj$?Nmd*YZA$J{tp#j%=-<(|j+KaK@VI%dCn
zzA%nOar^D6&t@Bo<5&{Mau(R@Udr-2+x;yQ|KE0hE8<uw8!D@38*AcN8^^mGmU9g5
z$G$F(jd5&>+ly7!3pWU#E^Ta%V@n+8dU$rkabmWyHID5fH_kD(NiWmHVCq{E%gwR*
z+pMXQ$oWd(g8c<{#_?Vp@3Wef+#kfTON9JG4(2%q3ByMcZ=Rk1aU6R&1H|ziJAIDv
zNgPLC@_ZY|r*V81$LDc;5yw~RzAuIB$9=p79RALyp0CBfVOM&vaE?KRXC3k^hVSDz
z5Xa#-j>K{KsON{cy|-<>8gBA~Qhto%P#iyr(`|`gJnz<U51sA#nKQ;?+<D$Zel(5`
z=NKf%S!K>z2^3G@*Emkbafvfh9H-(q&FXW~8(>d9C+8T(T;og}zs2!8ugLjuu5nX`
z{IhYaZ|)&s2+lSBWUfzL=i~N|?hC?;LPmSfHU5s{pE!`f4GCQ4oIEa{`-fcR%%hrK
zaq7M*FYiA#S0gvWwK(z;HlHxpem9@5e%zQq!2}8=a8m*|Cr}`PWpj;Z({6VHt^`Ql
zS2RC?!*dNL5uZsJo&<=u2#th&CL^PT6Sy^jA`*#36ZYLiz2L)k>TL-g|A8tAR88Ra
z1WG1QDS^rf+>t=31Sa<K+?}wGs4FeJGl4Q9Wrf|k7GhF4agw`4jESD|%2+{IQAj_v
z#=3au;o<7`CeP!V=2uJLo&@S7P&Z+3n}2TtH4`W{&$v&~>cSerf94uAsFgtUB@e^>
zBDID0&og*B$)4_><1c#ZC2;mDPn&s0{RAFL;FSbkP2k}K9!a1{0!<TWkU+x(;t3=Y
z@Fu_wdqW9yf6D!RhkRcGFV8dl2?RufLMre7<=OgFemDVQL>LvugfDk?nF)kyx*H|X
znDfItBbh)d0V{!Y0+|G|35;LrVqk+4x8Dy2lJYA(+&AFTaJR3fr&$7zvPTkVpFr~j
zxZiAx1X{9q^Nhk{J*^UWEMdPhwR@h?I)PE?f^8CLEAqJT31QE4!RIFBJt^MK(W%hB
zLjoN+U=nEYtEW=}$LASc61aQ5VZG|=%n_2{4qExfeEauH*95w;K{!Hs+q-8!lRyvg
ze))EE&rT12`#eYc1bQXxtv{Ym;DyBXy*_#;>>Ws65|X@_!0B6EBn&T0WM%s#@EThw
zftd;PP2lwe#w0K{Vc$gk5*U!cKz7`G<BbIRYlyy~{Tv1*>@No4<DQ`j3>F_EyhmRc
zh9xjOfe{Hjk?=5#5*f)xn{VWl(NZ{{j7wn9d}C6=-aDFS0l&$vNnnC5G%<nc^NkH^
z1QPB|Iyr$U2~1V$G~smK5nb&sjSN<yyjcm%W*;T6A%Qsw%uQfk0`n8#8`FE|8{A>_
zr@@{D2`o%tMFJ}mSd_qG-ognS(N&04mL#xLAtx?ZDiuaovC}zL-S#iyH3?jrZ>;5z
z<35w~jkl|Ni0cx_k*Y1+8_7AU4;A2EQkxRkoWK?uC$KGnw-VTq!1e?xyqfp<1v}7&
zKWT|MPQ3G&hkvu~OyIo)I-7Xf#QO<+z&qVUSrZ>7u!}`X;O7KBN?>;a`xE#sfjul<
zqx{c#%X0!*V0@gw-UL2L;DH6kryOq!43f|6M)NQ<USNEgz`g`VE-+RuFc$U6|B81C
z-z#Lx^vVBP_)P*gF7hx+oweqd{O=Rsgnxi{ZW9;RFa4nGPiEZ*6ZkQKLkW=o#71uC
zIxJ4YK=Eh-zi^&3;WlxMW1b^0fj<&B!O1^?PJ;_^#yClXrtVW5sH{j!_vmKs(~a|p
zXA&Uti0a?e@2gt6&vMLgW@zjAHvu#?{!HK^dqn)a@PaJAPrCn7^dC<9B7aL~7KX{$
zJR+4V30zI!zXYyvVmEPWfstoodQT6-jUq5{gUGNhws@0xPGPiwiDC<lMzdY{CJLG;
zZQ8#t3YoZfp;634aT6XBhKXC4YePQ6ttJYKM;99178*rN6jk*08Fp&5?u8nD?Yhkb
zv81qs@OBfU78(>8?l4hG;xZ}R`JbyY?le)(M9f6o#9b!tHc`vO{U*wrs9@qAmdC`A
zg+@ga>yNs4JYOXfl}$X`*;7SWRrtZBylSTXVf5!hd;aP0sC#t#e6C@;&qQ_8-ny2d
zhKZUEFSp440#MsT1JmBhua3zbn^BXZi3d&8H|_UKA29K<UP0yGh!2_eUy2V4`64R$
zBjS8nwO$RQp$V@Ep9#N-fQgWau!+YO89_GbyPnq<8RRTg#Kf{iM#05K)WoNYj8lt@
zT8nK=m@rLPCekL7ru{r>UfP|a&&39RPch@?H@Pz=vL>D|(Z;l&kTf!}^bb!{6O}&l
zG&a#hb*E+P#YQs|kDAyQE!5mZOB1b3v@p?Yv0Z?zGxHylWor|Un;0r_-eTij5n@{t
ze?9Iwy4YxM;(=#8PYT;Hi^!}Vg(!9~(a}UF`RU)n<GYYYoL$uDVxp^wT_!#<(al76
z6Jtz_HPOSwGbWxh(bL41c7>ibQEiEla=ExCk86q1%f$00-pjaOHSvOp-W)AiV~-xc
zylC2wWnL2I4m5vR{1qWzPVZylH4}YJyw19q7{-ux_cPJo<l`FbG~I8onyd0j2AUXT
zVz7xJ((kM2<|(?|gQyC3OzK{6XKgoan0Gh_0}Ehc1P4GZTcKVzn@3I@ZQ@7MR>qll
zlU>QqH8I}A1QWkDE5z>=6HQDqvB1QECB|eEQ%uY@F~`JI6Vq5uK9*!JFEOUG0hbsv
zgcL_FF&LfYM9Jr>ZRZQ;2^TK0yYD*Zu&nG}WMZ+2B^(AOjw_XTNr7aAiIpZcv%z_5
zFEwf`HCCBeZDNgywI(*Q*nZFU-kx<Pi0g&Pr3U#16YWK4u!+tK*p^#O+}YOsMoZ6I
zCbo$)x}6nV;;DKAc9?kE#5*S5<!o=_1G|Os!cyZsm7IhnXBe^6ApcNe&Y*KW_iht=
zO#H&Bl{cn|y}U0>e8&6eyoWnY@xbU$cx!y;nX}aR+{70q4w?AL#FxBn>$<;@E0TSR
zer4iok<XVJ6u&jG-^6z&zPEb~$CnxhWdDPSgCbOJTxOSzBv(R4xk>M!_gy?S`!MGm
z6WoOSXW>yHqa~La$4#6t@tcX?Iae$*+AlNe-|G6+#7PsQml<=H8K-!ME;CM>I3q&7
zeVOsiGUE>u=b3kU{%^~SvnI}|7=H>`fHV2HVB(^QOS}iw$p0~^u<LIVmreZ3F>m6g
z<pz%vB3^NN;i|;d1q}8GjjyqsNl-)*^_Ckq@Nw>Pd;L6<h&LxufO-lKq~J=zoy3GB
zCMJ=eM8PC7No12Kl!PaV+ma}egptJVnx0ZiJlr&f->hy)qHq$oChffo_%o!*!-a|@
z(Q3I-G>Kv&#f4N@o!gTrnM9qWz2VFqNeo_YluP2SBua^w7M2l~72YYN8T0bQhr5%g
zlEk*pJ>=z+_MTl8gcXyhltg9m)ys{2%Z)#m+egk-O`=*7_at#|689xhGl^PBR8Qja
za--@Bqejv`o#BoZwsS`BPoj1buE}`}{37aKVYFOfJlDWomyMIe1FTLQp(MgdJeWlN
zBpyoI&$t>S(NN@J;Uh_`En+_bVDKj4Pa;75NCBUa$8!&?j#T4<7xotjChd8HJffsT
z5~fI07!$^YH0GR>Oxp7pU8Rz+#M4RpX#+(*WFzvMFrR)mN}_QRO_FGuM6V>CPoh~8
zk0#MAiS9|<k#;Y-#b};HizG-|N_mPMl*D66v`*sjB--*(e-ck9sZA0!8s#xpm!|G}
z4|+)2Nhi5idXE)G`y@If(J_fmO6nr)oW#>?cG*l?VVt+z%bz!xt7{U+YTAC1y*#@|
zdU~+eUNxRc@<0J&%?jgL)|YLbL{E{uD{S$FBzh<DdJ_GTc#&O}#A`|PP2%(lV_t2y
zuYAFmlX!(=b*1sDkfe_Y|N7yU{_NapD-Hij;|(@f5^p9kK8XQI45Y(>p3zAR;??<W
zkWI?LCeG*(k@hQ%zAKI4Nlad8jO0aE8Y85WP#GnK#(W4fCW)~ub4~k9#&NtC#<|FO
z{w(i^;`3cRu5J>YB=JoW-zG67iK$6!PvWg4rX?|*898i{n8A!m%uZrX(*ECyuN=-2
z;rowkR@#5&&SkG9u{eo&jy^w$1<bzEU|1+IXSpParMw-4%cSpJX)Nbm;PtFXf_!b)
zLPWlzxGHJCt+|?I(;JSw$~xI^7Ov;5DzZ_yNk|*MT)8EQt%@=u_fOu&dY!nw;%*1^
zBz7wGZQ(n*C^Np7#QRBnmc-{t`;E~LlK3QvPi6CA61$T4h|^0F$5$E*A9K3!d-f!O
zRR+mkIbms8@?15Ej56e2BmF{tzD#1D2*t0G_*y*bw;OPO65nwqOya*JzL$QC*Gl4m
z_zy`ORAcf5#vhY7B=INV&nnVk;Snh;-q9p}kwVWD89kB2uSxuo#97&#6#kyXDG{2T
zPU1`wzd3%Gg??By7WJHL{#KR$OyYbJ7sOfFi>kQY0xOM6?5|uqG`!vp|8PQ6vHx{O
z!WFr?W0i4Dq+AMjrI42bQuesIA%$B~D4fELDcmIGX3qR6xKm&^6-e2`gM^m(DHKY<
zld?xh!4zg1*I$5T)R0K>z$)X`6pEy9M+&7<D4Mdz*le$-L<+@HD4zO%-<-WoSu(4*
zpP}dW6o@5L_^gBbjaByRqNP)IQ<PPC%B1YEL6ORx(sONocM4TfsG34~nN?6xE2iuh
zcq_?yW#RZ$_Nb_q!aXV5NzIh~ZtT6vLc;6bmqPUvYDhVHIq%66_FKJt;j~r?_sc`=
z6zYhuUzk)^{F^Ua52jE*1z!sO6kf`@4>ZbqD20bpcqC<?ra`4)3JsL>bE7;eUU3py
zGBxmjl7ix)6mpi)6k>GJ4tKRfJcUFGm7AbS6PPI^Q&^wDh73|Edu{x)7MIl8D`Bh@
z(kWz8$fnRJg&irpokHUjnxxP_g#jrvO`%!J-iXgzCGXJ`ny1i9(H1GROrc8(T~lZ!
zrDMu|-{G+oS}V%`i5^eki4@u>`eX|2MB1jXX4Unb`kqRmeF_~?@P2G>+{f^>lKLI>
zkatR<v$8xbEL6fSMz<8Yr}+F3&!*5rSLB|4ye<Pv_*@D->CI7c+x-!rPvHeQ>7BwW
zDZDEFqVOf*%PH`pHxxl1Mf=G!FZWsseWkpf0>fn$?+snzf7czD!ju%IrZ6al!OA#9
zI7&EFI4p(XA}r^K6h?|)ylNMFwD_15#)^zfVL}QM#orW;PvO?p_WK=^6eXD~QggMz
z_beElmcsNDR;I8jg&9hkC!8sqC7dm!@thRqI=ty>V}1$?6kRA>DqJL7oWc?j=Bm8Q
zF6y!rmOIJ{k<{w^)sC{2J)6Q>Mb`;8a@0Ag8&YUd;d)PPN@263ZxQ+MU)MH~?T-Fd
z3Jq)9_V4f(OW}tU4yLd(h2J{5x48}Cdnvr1!UrjQn8KGS?BgBE-v7(BTlkUip0c*G
zCxwrdk$i6opQP}qQW^c6vxmd!_6vv8|5xJsg<lK55q>LVUS_1(cbuK191!waO!_f}
zL!449#4P-j!eQRg78+VO!dsQ|qy@JHUhZfLXHz(r!Y?Tt;~d2)D}^(3o5HUtoJ`?V
z3a3><x@Fl|9bPn7DMo)6|3k=VuKdJ5Q#hZ()fE0q;X(=*Q}~BNH-$@_f>QX~DL=F1
zN}Kcful!v3|9HE`Y2U()7H+cas==~z-C$iW3>EshS<wQ*|67uL3k5Bdw@|@CAqyT0
zB`w@x!LV?Pg`yUUStxAbRtrVsoF&OMY|bq&RNTUC7D`yS-LhMNwfkT7|Hn&NC~e_R
z3*{`7u~1eeqz8svi;>)=vfcgvDPctml`Pb<aKDAh7OGgd*TQ`ks#>T<W0i_da@YDF
zVYIr18Ww8GVNPe^bLFpXp^k+IEIg>}b%phWtWmB=^({PP;b9Ap{QuX>Yr$tBU?FJP
zBh9aR@zUgMijak{b^VGtpG=CVJgjfrLc&5*3(YK;x^zaE6sCl<w=AT^>4CYj;*Eri
zHWq0jWYr$E(A+{-MO#>CX`#J^4i;Kjc+5f@3vDg5*1&$;!V@BN%fJgU&;$9C(w`Ex
zb8K=+9i8iTmfp#!3rq5}g)UAiopclLF6<$E#_0$e_q5Q9otQ!O44${}f@Oc?{hmf|
z3olw&n8u<sUb65qhe{fErtyk}S1lZ{@Pmau7GATk*}@hJeJ#9hVX}oO7W!Fu!@@`l
zqb&5dFu<~(_x4<E474!FvY)sPwRmP3`0R9ukc49HY3eWw!zD60!m@uUkPsP0^HZ3Y
zSZ$10ZH%!%9BW~mY{+Ra-ogY66QwXZiNmt4?O}&fr&^e1VX1{>7N%SFLoFVtvCzT{
z3o|XuvM}4iTnqCodt+y&GR%?LUSA%S`5Zs1jRjJ23uBJ0wwJ^#lCoI1g!S#^qR2<(
z%Pp+pJ-fzOVev?D&r0Ey)du-$3u`Q_wXn{@Mho0&oMFAl24RT@ZDr|b`>5qj?9KW1
z>VmE8XbZb6d}Lv}W&bU^!@}DZ-lCt+3q7>PZUHXLc*n927k;1jX~zAoaHoa$M5r`c
zV{ljM4|qeB&Hs?y8getbn>UMvPgy~>{9B%nIV9E?W7ZgZ75zj=z3Up|bKZbz-ft~@
zDe~#O{I5m!S@_Cn`KI0Szu~v02JSUFmt@fzW50#(oYe1GY?bz)g&!?kvyhj@Ax{1l
z&axQ?6+Fzz-@-2zj#<cG=V?{P^E0!rF^;m<7Op7oaSJCnRDN>(ZsAu8CwbRf;Qzv>
zES$E$?bps&V8{_71KWoN{QH<c>i=LD94XMCQQkQVe_A+i;ev&KIpCl0@TvGkR@t(j
zSCe0|@Rv$XP7f6SQPO2$nYG59^^GeQu5wbXZ}b0TOoB9SNTYZfx23sU1UIE|OB#jK
zDACT%e@t#pqd*$2G~8(vO7rkLcfOG1!VM@W-gvFSs7Kroe!0>^<(_UX7UPw*#;s`-
zNn`w4qo|OiSlZsmf@D)RzeF0P(<qb1?P)N|P*UU$VJRVN#K2AP_++V2)F_w6U1>a(
zM*B4GPNRGpEz)S2MujvgrqLjchG|qvqjDP6(zu6~FBrSm8YkBpRnn-+==K8tx@~;8
zym4<DHPfh-whw8#FOBLVHH1{!oO9iuM(s2nNaMjY>ZHM^!FAK9m*&P|dE^XNH{|7b
zv-Ym~X*`_9BWXO82BQaF_YiYDhu$=NX*5ZrY1&@5kiX9Grx8dam_{g#R2o(q;WQ#?
z#M4Ny@Vh+GG-B+LPVTDf3`V&zU1XhMvLfpYhNP1Ce=&~`<syM}8X1;tvi*xYn?|EF
z8Y`Th>{<Ji9cad9yu@Z~y2m^`;^d{@T_lex+B}VJ>kLL)rSVuAZPR!%jn-*A&M|Pv
z^F$gahkELc^tgU-^;>7GSZB0J<A+Z60*3uf^V_Atr+@Pb8y~MT4zDvhq|q^r5owG}
zqf;84(|A6O7t*-A&Ul*bT*>`R8WVfEx{%j3y7Iar-P7oiM$z>KMTR=-?ZNzP8qcMX
zTyOLglJrX3>-0!^r|}|Zel}(rUDg}J*BktojepiN7hmmpC5>0v8fm<iM*lPh@MB`K
zr*9g=;O-~>x{wX>M%w;iOMUZtV_+JC(qM}XQzH*fV+cpJa?yr?t;a6d&C8`x<60g$
zFE=WU(P_*~V-|f5Ei@*L$!SbUV{F>~6MtM9Z*uU9PZUlN9$arQm0^;im)09i+8D+L
z`y`jCY3y$0nkJksoFU}3)*UL)xs!W#8gn>M(<r;asJ+49ibwv<F)xjej(Fy$u|VUT
z#*8jbV@Vp{r*R;SrM&gh_%MxKX)I4;MH-va*pjw?=&cm4O=FeFYT+8*W!lF4rpkHi
zq^uXxenT1?#Wy)hqYd_tnyreylg2iY?M~`jY3y+L+Z;I;U3{bbT}Rm|@}BU0;RnK3
z<ntr(eZt+sJ!yQL#$NGH()e8DQ{iVqmSj?|LSKk~DU5e3M3LdEG><R0tNe}dTj72o
z#qUJM>$*RP|0X<`#*h365dSHSqiOt-#$iR7>qr_uJ3RLz?ilYEDaX?|k;bo1>Xr=#
z8<Sa1NjdH4XGGrJU_5ilPW>Z|vuT{8$geaRl*`x!KF{eogBvrrkj6#XUrOVO$X`O*
z{4Mg2@Nydeiu_vIeoz0Z_<ur1uceVEx8%s+w5ohl1~+F=B!i+#Dv&`T5tq;{%oj3O
z!3;bb?N0YNiXn1K28Bg#b@T@|8pRxbhe+`ZZgZ3p8Qd;jQrJ#D>9$k`rKOZ{EX#_d
z^uzNm@v6eRh2=A-Ai}&AMJi=bS)_`i50mq1ir$mKy&}0?5%~P1Mh2aw)Xeb93GUCJ
zb_Pj4X35x3SL$T&NCpiusH<o_;R8aZKA1s$@rQ&DJNk%5?uHHzi+D5eiTH&9VNe(n
zuGwhNAwwjCsFav6E=&kbA#D!G*vg<;29HWi3p2v3uu%q$MVe&5-8Gwv&+TPjrMdW%
z!WKe`Ei-79!DAV;c9b?Ek7w|N$c>w>m$0o9ZRc1%l|g&)4#JL(-YJ8-mFwvYx@6Eb
zgKio7@as7lbkCqi27NMkErVwyz93}kvl%?+@SYj;a`^Ki+nVR~c9a)IUdrHQkynJT
zI;jme8GSQ&orTF@d<Ok8cq4;hO65G+KZAkd1B7&&Y>_v}$vZfMAshxR@>rgs5}(*)
ze~b>#U_=HZGZ>Yzzfp|Kpknj9(HV@%V62mOk<LpxG~UJRyRz;Hjy^4eiQ<!llO26Z
z22;hmHFEP34AV21;iS$KnU%q8M;Wlmm@7UngZUXO$Y5axtEDV*Y?g^E&R~hiQX$L3
zGSmO^3|2^4DWtMWWW*+8jmTQzI^j}Pd}9Win5z+1Hp1o%wy^uMcqWUj8Ej*#-s^T{
zu|0#g)GWs{*pb288E|?02UYNn$X7zH>U=kY-J6V^8UC}6_cQn)gAX(KTp3xsT^a1n
z;FAnKqFDxeq<`$BeznP9pxLJxQ2b1K&W7SUrR{G5Uu5v5^nJoBvi~}RZ!-8cgZ&x&
zl)>Q)zRTeI3=TP-4`gsKgG!r?AB6Nn{-aV!7$s*oB4t{@Zpoj;j|zVg9uuZze<Fil
zGdQVQU(DFc&)6EL6g{26nGAl*;CDs;6#gMRD?BG0v)N!4hVzPE5N_FQT*~0D4E|<;
zx90zo!Q~7Jggw4rJpX2JMFl_>T)}%agCE*^_|<~^KX&CX&$SHlltg}S>q2}J=Z38P
zhR%&y+?2)5Sqy7!*Q-DlM>ZQ5HXCJ|x!hUgXHhVVLRt8-@Mq!4!pNdw)_#_Ii?B=<
zWwR(Oerpy*vM8EGF-1!Wiwkeh;x>^ILT0~Vi&4_ycZlQ;d?_u?XSsJ~Q7&tL4nCB{
zU0K{My>1rev#5|o%`9qVQ89~3SyauUno=ugQAMO{HM@l0pS2%E-;>3?S=5kzpRl^H
z!WR2Eb`K#hM}EI_k~$)_v&a>U%IGadJty@6kq5J=?<mW**dL1zXYoiD4OC`6#Lhjw
z_R5A)ItgSE%%VdU9kU2!5zgAry4z+E$s(FXBU#2ApDB@e770f&vq(DpJr&zhG%d^s
zv%=BmU5&G7BHlEM7Fo0uZzg<H*j&gx!CHwtE@UAe%c8Zz59%sUDB6aD=Rf-)|C3p?
zQyrfYwpT4!eY*v!<aLs9mn^y}wR09vOUb1&dpAXM4bojU%=K&*&t-u|xS<hxvNt<=
z24pcXi(XkgpT!GVdop2oIg8#LpL!kU#Vr4SxvulAnO7YCsz{%#Jw?BkMc*u5&!V5A
z{e^D`YZbHa>zu1WSq#qNN|vuSU`Q52v)Gx%d%PpE7|zmWu{?_rS&YnLZWi;hT#1Cy
zSxn1fdKP0?+9k&LEGA@eaf>llI8OMcu<Ta*LKAh-$yrRwVo^VPrix3SqUcnmQr}V7
zn86!ur-zF?xlC~;Q~Tu4%3^jFbHv+hwO2Mix7C=RwHHk-$YNm@{2QH5b@<a}5%02>
zJ$x&0aTZ*ExI{>@G>ZXS?KR9R*f?2!`*Ls2VpSHac{?xlY|3Jd3cv-l8+b3@W2_af
z6RsDsz+9TOF$-e(=RM5D>17K)0<zeawNIUXJ8S={+RnyVXuKudAsqaXi^}4y#yeRM
z-xbo^`^?4pCyT>be3-?qEWXO(>nuLvaDB-0WfuEbFP1-xk5#r$v-m8Fz2ct;M>MdT
zanDxc^DMq_0^gjXLY;5wog7kV!?XEEW_iBJV#nINZ?o9XMr&of*4pzOD?Tp2$NQdI
z+l*6NjqkHKki`#K9L(a!ET|k37T#tsFlyWMcOA*%=Pb@=aUqMN91;yYr?WVd#V=Vr
zzRft6#c|#vS@8Tm`v^agUxhul8B|VXF;!&iHskwk_FIa-W$}9!e`IksYp<j_$J-%`
zf4A9-b{I&gkX+2-5_L{Ex4Qn~pz3ZflRMnO^S3yo|A<@`R^R^rko6u=PZaML@Ov%1
zfp-U`3t|BQL8OaVX-XF`*_PdGvPl3z1wlm=MFl~zpnwX9D2f#u_DYl9d+)t>DPjS?
zJ5R{(`+w&<XU;u$?mRO)J1v{p*%{S%vg$Bdo#*&@PlS%I7y0J#Kiyv<1yS%tB*lxP
zxFm{aqIfonOQR?j#l2BPqq-6cqg=Lu8>5IsQ9OzgQ4~dStppi@mq$@bh!QLr#brVm
z_r2+brK2blMP*US3RZ~XiYUrO@!Der<)fIly)ZJdkXTVduN15#n4YZP(f^d+1L`Uf
zua4pxAp<0|N)%P2xK5Png4G1aNGPM%h~oMvYKmAZiW`JXmC#*+dVhnqkvdVXY(c#!
z>POKoiuO@7h@v4Ma+Vq`qi7_Ayjc`C32!WTb6#&E<QBnOqqr@v-yX#s!tWGpn%B7n
zI#X*d-WGzzrl`Aw+%4EDiq=uI5#Cm?>J+7;2y&x<4pIDA*XSJ8n+Dt?*io>Ppfg21
zK1H<~Z^WYbWr`ZW(r&EGD6A;#D4ZxBit3+xH;Q-^U8Cq0g%^b%MLLR16p5%lE;boO
zN=OjZ<7c}L`l!}W6dvJ9$3tDSQGLKGgSzmp-J+Zg4|TmSitbT77)4Ls$ae)jB-R5_
ze8FRa^C>Vj2KCB&a|!b7*WOX|iQ-|oXn(;+qIfilzEM0D#p9y%WB#Y;u6;z1Pbp7`
zPKA#vPYQoZF!v<WqLq3&$~~8K6h7q+jN+vzUXJSjAcLZKPRL-vA%fJOkK%<qA1dTU
z!E=8ZuS79S_(xH^D&$?k*P<9MWQ5>bf+M4NJ&HGkzZu17A)^F~Pt|`V#t0{=EZ(u=
zeOqu`6z>SRU4m#cUcB!Kz8}Q|As+}b^g|)eRQ0itPXs>|oGAF2AT2*<UF7)_Q`Mv>
zzGgR%p-xPnZSf7C?b&jo_%@2~*u`YSZEn8(eN=C_{R7)x6!en+#FCWr%YKdGw<ro@
zh{P~Csvl;KL~)eOBZ{d}Op9WA6zkYH*#V<G>k5mbSQ6C_S~CUb3C@aQwvag-fBw}E
z7<0vI4Al>B^Mx-ETqw9maKu#o@U}FHRpKRI7RB;BUm;|rVE;aatA(t|hpy#-CaV$n
zOtK-0Em3Th%x{e9r_D`*o7uMInQdDX+gWH)?2lqcluI?RCyKpdvnz_-Vn$24+!GEl
z_iRHv5XHeL4vR6phvX{%Gs{Ie7R7Ns_QZ6toS<bCe@1auvU)O#GeQ{m6v<R|T9B5r
z<@W!I;_oQVOZrUqA0g+W_*X7OGe*qi=f5Zl<Py28BBt+@{Nflc$?LSgG=^gT$6Gvx
z5;4?>;rbYgVlZO5ifN`|C>g_bVtH8%m&b6G@KS;m1xpK-iJ@!^<%CxdEHB7J4$CcE
zA>PO|U7MAJUl~K?yiIx0ua4oG7`PYlwW3!MTy@f@8Uv9Lc_Y<CtS*?#B*mKIr9myp
z`3*7Dj$No$hSrUtUJPqvSQkV67#hUTE{66oG>qxVpXP#%bl1?{#xdL~<YqxCO=7r3
z_*Sog-rI!Vo)5hvhCB1TsgP!Z9j2)kLR#iS?-Fu%46X7?Yawl7Xe*@4G(GpyA;wjs
zm>R>h7&^w#DTaYD42q$14EM&k-30EBAsRz020w;G47ZOk%ox0wp0&1O7&1-SF*q@}
zOrdOHJchKP|L&2K(D8G*vGpQB3|wp4J%-aejARU{7(!ac&?SbhF`P^pnHaJ{KAxuN
zrOOeD-D0>e1{(a&?6yc`$u#vq3=hWeL=637*fCA@jNvgRIJuabu6o7rPz=3e=o7=k
zF+3VW-x#i)t{#c$=MYZIkn<f7jY;^u48>;CRlgV>mlU?Pjm(&BJQ>4NtijHaH4P&J
zc+1mOi?q>gNYUfd)zh?`uAYhE*%(GnSLDR!Vi+95#27wfvBdB^3ps{2Vldl8UWnmU
zw%Fg*&=|_sHC_~aDTbGYyb{BVh8PyZ$J5o)>1yqCb$+_yOV8J07#_oj7+U_WvpQ1p
zMndt;7)HhLUW_NTVRTIY!j6sM?HI<e2EQwKOECAFI8H*}iQ(PY|9gJ=_?Z4B<*#k-
z%=8H{d?3oFF?=ZY9}9jYn6vqWE!-{QPby;(8U1rMmEYC3F?<)p7co@3GxB8&U&Szq
ziTtj<iGfGzd@Y<_T`x0?*}tpGTa52x_<<c{u+e<8F(IR0R{j{nPci(=&M5cz8;5-%
zzs9gZ;u3Rwis<xCXH~|qB!;Cdy%=Wl(v>3f1!oEJzuRmfOn*)cbMvJ)PYC~@Es)TK
zF)WH<v51^jVj^6-&P`F4#ju?1s*P4w#IQ1k)nZTYY^AqTSoOcFT#q#|<l=G>0#_xi
zXSQS57{jI*E;ezAiOn)F?v7zk3|oYAoZKp8TMXNU>=4{3xJ!_e{4}H6E8Y_^?2BQ4
z3<tzZ{b&pa^ZbyI!!aBYa%nB2)<rzPOApA$^EU0u;1BjA@t%s|tdP@!XYw|G3gHgD
zf5q^34FAONZwv*dPUl?S=Dd(SzpMX*l$dcLpD=NeSZ2Q0*}hbG2@^#^ikT=B5)q_9
zaUr=E8HS0{Cd!ylB9_eCTxR0(JTJwCi}_W2WldBvais*66D%)S!Ne7L`-&#6k-SwF
zrHbHHf>#S(BY3UgZTY*XD&Fe^tC^@S#Fo&SCTf|On8asE++d=%3D-y5$BicHn0VX4
zI0to2)HCs-g_kVUH_^bvITPniG&Ir3#0MrmG;x!O#wG?bwfl^lP4I()J51au7iuDS
zi-}u>u#|2yal7!2wdH5mL^BiJP4qDJ6MJ(LtxU8w(L%f}1*zX<;%?zh=M~c1#zb2a
zmI>QLJ1+h-(b>ekCOVk7he^#)9Zk^XNGBoeIP^X{Lq$zJuEtE5CWz#@pq#P8LNF1U
zNSlb8;K_i#iG&c3b^4A$<?LfdU?OQEB|1eqiVPYvLuE{4O>{NUO+vev_;H3lVUUh*
z|LG;U&qOXY+TU;D0m;TwCLT1=)5N1D`kGigL-jJzM+o^tCVC4$GDFcz_ppiUW~xU_
zoETI@@|cN!CZ1r)Y%Qd7>lTdPSNOOIB5#mNe-lsUL!aJPI3R!TPn&o~__KNCu4LgL
z6VI6#Y+{IsQ6@&4c-};lnR>m!3ntd>HCoM7L)kD)ykz2KR=SDTSRFIfD<*~sA?I};
z7aVS4go)QpypgvVnIkh5&E7OY_q7m4Az3<8otde|n0nW~w@i#>Yc%y@B)ah?#+i7>
z#JhPVM_M#i@0oaCM1F)mAx{|PBNHE+m}6qDiBC*?YT{cH-?8PJ_{_wYCcZNDsa2nw
z_`=ldb9SXvrCF-OEN-R|;T}+vm^TyOn7Gl2RQXW(v(z)Q6u%;QXO{Zj#1AH>nwZ8k
zXQ>}ee!{P&n3xb4KbiR1#4l2$znb_>NDq0xz<Zo*V$m#JKC5P_2QO3q%~Er^8C7Ph
z>Fi3g)$b<${jP9^iJ2y537;((o2}>=G|$9*6B|uzGO@tKLN*K&ldYmrcjzy67nyi?
zwt9WG`fawVTFY2sVyTH`CYGC6VPY+-&jj_ACRPhsB}nDdZH2@&;$=GI>rHGBFGV_v
z#LXtQm^fhKpoy)_!)&$9#C8*Z%~t%#^oluZhlxEVwtZ^sWO<s{f0wbFr8h^B&{5fI
z>Ukl$eM0sNwx6R8nK*3f4O0F!am2(?6K8pMPT?^V$4#6vahgL=LF5Dn5XlTVvvgAU
zf;tg;>CTw=GapJzD)F-ge@Qw_>Te<c2&U)gc|xw=_|HUv1=E6MaY-94vQUr1orQ}n
zTw>vB3)fh<)Iu=}MHUQ;A1vz~T}I4NB`idQ7Z;?+4NRCN&gLl#B`sWTp_GNoXtuuC
zrXl*veUdhHQQATo3zaPW2v=6HoQ3j2xLYR03c@Q|xI)O}Ia=&3JJVh%3cZyrTqS&&
zgkEc5S+uZ*#m{e1F;rD7{y)_-c--FPIt$e-z0XN?!6S1Nd4;6fT3>%~UDMK^TGtZ1
z!9r~dH(ID8Ug~u%6wFm5Wds{oXvmyTH14s`$iht)T3Bdlp|ORVE!<(DXC~5cu4-cG
z$<<pd*mHF|zg4_cZWD65Ag5b<&sBF?Xlj9^nIK7X3op#oK`#w7?y|6cu4--Jo4M+4
z3$1t~-|1)a5>C;QUyL>u+FH86+gWIDp@Z<s^Yj&u%XRr_c}HDekxmvm3n9PPLNw1~
zOktj)Xj_<7t;Cb8WxL3+u%lkYwGg-9S@13WQUAjh5*7jr-7MT^A!#9H$q6qOLhAEW
z#=^vSByC~9Jhip5!SBJDjjRRovGY_{3sWRxJLakG7J68C$U?{Y>YsV)eioXAvJV*#
zSa^^%K3_+_S+JMf5xq<*Ghg)<Zy!l>;C%Inw7N$v^kp+^q8_vGxP^D-tA65T6pBw+
z=ui8$5hgNyz8ca?|A0QlOj>xFWm_%sjNo7k&k7kRI7pD8&k0#GUy%>7@Vt0m5F9Fa
zT7q7-@Ctj4jrul*S$NgLSqp!$30W9!VJ6Gg!Uzi^E&O2NM>awWZ&(;duU+(}g;5sX
zvM|=dXx{z;HHHl-kMxqiEz180#dj>cYhk>F_bhy7;d2Y`GyThq4=j8rWC9C(nnC3w
z3m>y;EPQI=6A2=rPItkeZy`B@zOeA6g>NO|R~9CT**Ag={aOmY=K|fjm^cZee<#M@
z3sUDJ&`%bJVob60<Iv9*ei1_ctB~IWr`82Od7EnC*9B_D0yWLjUb^Y*&cbKpmDd-j
z*%szlSYu(Wg+5J<xlGent1Zm4Fkia=0t<^QEVi(a6_h`lb%}+g7FJpMgxO^lmRndU
z#w#qGUvJQi0|*^C4VsCUgeh~|4er#sj+JX+1DjSe-M=<k*koakg}oLwb8PG!*=Aw8
zg)PGA-72Iuw+XWJ!ZU6iw#&j!*0t<2M&!0*yT#@}9qhBP-@*|KM=c!4r*KHfLB=Yt
z(?2Y6kJr&D9J6rT!buCK#O8#BKbVv9+R>7ZW~VJw=Waq4{-hKAf5;U6w(t+fVH=m*
zdbf&yInLX-$mX(h<D7+k3)FcF|4Eq_*t#x;pDiGASh(0maa#`{mk5$vYIBItigq?4
zxzL4r452Gwqev7ZZ=-CK%=79C6=wxY*{E&fMjNGV{q~`Zjj}e%*(h)0YAUu~<Xl0p
zl8q~bR21a)0t}+N(ne()SBY3EUPL7qbghl+Y*e$+tXiasjjtM`s@UAJP*t~4!$wV;
zM@#GU|2R-^y%6$On-|bacY`Q)LwyyVZePdNvzm2nkk5z~)F_SXtbztM8rrDmpuU4f
zHg2*p!^TV-jcwd)<6aw48%=E7VxuXuVdGXCxACH1sVBG))aLX>iT4&N*pWMI#22dm
z3)P)Ah~&*}a7Lw#jkY#gFxiEwrH#96Y`773GbgrghjjE3TZ{Li@kTpa?^d*bq2lhH
z?QL|hF|NJ3$3`b19a-J?7pFq(EK1HBvtinJ)#eW$EE~3sCv7}s!?EGoxX(s+X3vIa
zBeapW@&0SYeH%$32^#?$(jrB%rXV+ON!b{fHmGE5WNmb{@o|F)9hYSiyV$t@;i8<<
z&Boj=h2%Xb+URTZuys6O<3Ss}ZS=9xQ{parpm;Bq<RW$NB1PkeM0`^C!!{maN!l1e
zuPB2@8ON6zH0vihe7r&Ai5#)P9cEs+(xB4c29dw`18h8P<9Qn|*m#Demo^5mvQh@g
zv*I1dTOL)M-sc$I#t;dm!BA+kXD1j#ZM<k>=<7ywg7It8c*zFw6&o)L*_YJ%r;Rbp
z#_x+1gN8G!Homa&rHzp`UbpccvuEQC8*kbeYvXMjqu5T82HhATqXk#oua&oiZ(O9t
z*?5QLJhW)Mjg<v>*T(eo1!WeizZWTrTv|+=VB-TDpV;`+#)nb}%*;nZzNx4)_Ay)I
zVns4hL{`~n>@`mnkbEx6d)p$Tlg3vzCfWGe#xGJPU$fTI{FWcz*!b4QcOrhz0z6;9
zT{2i!(Z!1RqnOe1CmU@t1_>|ptBom=?cb!)PG%v5#=ymjIMv2937RhWJBwnmz8AWh
z4I;B_%(n5bjdM2UFl8ItZS1hI>s4bOd&CmO*P8QfEU>ZA#v&VQY^=4h*v1kYD_BG}
zmfBcmW4Vptm*b-2k!IVCMuM{!tCHJ|r!U7UcGB&}YQdX!7<C#H(QKWK^)@!!*uvf?
zK^tvsVuIU^(~A`iXvSEhcNoO2HnxckgP3NGCF-ed#!hC^#vvPr*@dSVyIB|ei}u;r
zBVH<dg|H*<mmr275OPp(!i$ARY#gP{;KDODj&W2xP(c2NjpHJo5Tue=qKGGLoZ{%g
zuJ@z%()C@U{<LwH16tnlZy`+QpS-fXj&a_`e;nZ*lyLNi00j=X2L8kn1qWl6sEZt2
z>|oXsb%}#w4hkJyD&CDt6vc>ma|*o_iyRmZDmtj-fQ!$SgHjGkJ18k$DwjEWFT2Yf
zaPvBCP%To1$u3pp9h7xIZ#ltf^9}L}jvnZ)5Tp$`UvppSpo)X44k|miih1Tsa0k~2
z;dUb0n~q#7-v3G(*Ey)>;08y(x}vM@pr-H|4z3q6u}|UA*Nt3gEhf8Ek=J(kR~L2i
zvFbYLSY7LMt(K|=4jMXm&_Pd*|Fm(Cc93z<*ul*X+Bj(IV6<m6ad3-+TN$)e)$CPx
zn}gdOG<VR#!5u8^ScztWcM8(mR0!vea^%Z)MoR~+9FWl6<=}4Nl{%@M(mJoSbMz{&
zP7XRdXfK@J4npn`>?pYZ#>l-6qK=-PvIS#;rh{I86;PzJMCrR!ISyP0aR;7*q=S?L
zUxE@20tdBjjpXbHELCqT)f;H!LP<ggJ?x^fJyq5LKTM$O&gv81Rj`}jeS&=Y;$v73
z;rBauz|oItj6#vv%fUkq9(VABgWeAMIQlQ-nx%?cSU>Ebp92!QM;ttw=Y54dCiv}A
z_0~><2K^m8>EKOP&=B>Mg8`2I^?${|(+-{yKGeap4hA|H;^27)gG7AJ!C)bk<&l6p
z2%TA~KbxX^LG(_=3i#MS?~4vza=?cN@|Ptjx82Y%;jcP)jW_6EgoBZy(5&n-m3!WJ
z-N73U9$BWJH*iga+ZvB@P<xpg?cnn*#+bbQTSCS<_+g69z&j4!bucuJ7vmW3;5}Z#
z#c&tzJDA|0o{Rb}K5+1%gPjg`IrzxI#|~CI`i~ep(I*bRaxh7{)u)0J1wZ3O9eg4D
z%m0ISFH>JT_{PBkhjS75*1>lUes%C0Ti`PFy@Q_|{LIG5>^b;RMC!Z{6?#d2$)`5i
z!4wBGIfjTbRq%HQ(;Q4^Pmx%(e|?!^#2FI$^)fZv!5jy39n53@ZKE&B?;41?#OI6I
z;$@1_7dcq$V2OjJ`JCkPvrKGOI9Tamxdi3(TqalL^U1{5I9Tgoos<=eYqOB`f*S-k
z3T_hQd9}3JLhfLjgY6>j5WK#h!63SO&lK!-u!p0N3;wOx>tLUQ%UoRUV!wj}4*qfQ
zuY-dQ4zU$EIO*W9gCh=(JNiU#ZcuR4(fcYKbMy`g++-l<rj^DCN1tg<n^O)>J9<}*
zzZ{&Qv4gYDg?~2-O6&bP7?FLAdm8-Bk*%qr<lyXc4$gDzbrEs#pMwGy7rVH`)#<?1
zSG>s8iSQWi+;uM%k<p6@VX{nTb7>TJQNo4cLWzBmtB+Y{#C?L?a)IZ4mvr?u4s^^z
zDHo+(T<M~+i!u_WoQv{8%DNYJ7vWVZxVXZ-a40#Gs_3GUq@25DUg9bjSG%a<qN<Cs
zW%McY*SNUW)d$V<7Ptup^KhNZ)z`S*MNJpgU2p>j-d7Fx!d?@+FFGD*Udz?zu(Pa~
zEX%XD)D$c0Mi+JRysnFXmMMx2Tr_myx$s>ya&eOj)79@&8oRjJMKc%8T{LlVi;MJf
zHD#P(cQ1aci))svTbHZbT-@&B4i|U2XzJqNfr6Zy`C%amTO&ye7cE`HT>Twi&DV^(
zTyVu*XBT(7XvKWGXyc-Ti+fzOb<vKOt7x<re5;%8-Gi1ZI+BjA?s}aBNhXQ7e!03=
z5@ecDA>1DGq7}-2O~2x?<VI{k$Av3|dR)l0EA;Gl!o}k*H$+0<BIzRKB6M+|i|(%8
zVlge)l|}7hz*h!cmKhL!(+WjzH<r>znh<-qX#Akj(?u^4?|1QlkOu{6z|V6Ya?xAT
z>?_#E#Uny^t%qH7T%kxF%`5#@sK<o&6C5X@{arli;uROeTs*~`xESo>w-xGX7u-sV
z(}ROtJR|&BL5c%~u+W}ks~%bW#=w|*s$htV=Uu$OTW)8(=yGujh6-Odr06x-+w)}?
z6YE{r|C5As;IFn&JV4=9UNKVG;$=0$#Yh*I#!)Pe*Im5f;zt)hu>-Cz_NI%`F2)ES
z<znaH0*Y_B80+Fo7hkz}+r>CGMYgw<>K&=m_gzeIv3`YmS8%-GdoIqdP!vCK@u7=P
zU3})^BNrbtZ{qz#u<S}jLgYQt<-9Z|`P>DAa{9iPjBusmHkgxKy{qcrmFjC3-?;eJ
z#dj_@BE}Cccsw^<kNUW;{{PE=cJT}QvWvAYer0L9nD1hNH0jB_)2>BRUCx0=rnq>~
zFXUsxG#Ar30=SsrVy>$<e4Z&dTX2@(PrnyZpCf$YO1=N{JmDluR;qI=)j}7mUA<4#
zA{Rxg)M6J)Tr735%*9F<*R4{#?s6A&D<luRM=I1;<?omL)>Votb=R>lU7ThI;aI`K
zpKNS(vCYLs;q-2Du{qDT2<g5`ZFjMQqq>U&tU(vMSnsRUUO`@Kw_JtFo;=wngq93F
z=;9Dt9m|<FB~cFN2@Q_9IL<!k;-rYVC?_N$_sTvcB$q6`yu`#+>Q5K{x;V#rU!~5v
z_)7@+-yFw;&lEE%OL`hBSE=*-6>w1y2jaLWuAh-EiR0ope!Q}vUPXP_0TpgnMdiig
z1%+`$;%FP!)2GGbC=o}kIBtleC=Mfza&eT8L&fzcnWY3v#&KC3mkS?WPV021SLw~=
zO2<(~bn>!7E?=!G#BoI&)x=vdA9`&ZmEyQkyp`j)I<H?9$2F^UQjb4fcugEc@+$ez
zs>~bz2nde3#i$-f4GFqlux1?hl-74g$EH|2jvGb4J&rnY)QzKIKAn1TG!R~2@a7V7
z7lMuAxG9dtaoj9Hx5m+gqy%meZxyjQ`HMm2HqrIvM7$%8JL6~?N3%GZ$8lF2cgL|{
zfYBn3mJ*kogvcnZL}@LU3#Hg5Z`Ll3_HllWgnQ!X9Y>!yI>yl{4x0vXaM4TWIJlJo
zmw(?YUMkTzVtH=HVF^Fkx`07$9Pv2Pab#E^)gqo?A`V~3`5y|L76m~ZN%5xQ2!*s;
zt#V&LZ(Ua`8%LKo?vLXEW~Ni5YaHF;xKDV4QwEjparB78?G&Now&8Rn5600`L>lyp
z<00X+_g3rBX9XXQgPYrPcpShxisR8ZK3=W*vfhP|KPIG~AbZvmarBSlN#;k!x~Fow
zoVi2er{h?-T0IlTvus^n;lMbai(|0xL4tc%t08ebAIA&grA_6RixVrZQN&hj)Jt)^
z97kUdk9l|{j$!OOar_;}t8u)>#N$}R4Bu!BkK@ZYzKUZ+T<?@Sl0N})yb;HnaeTyr
zU86?DF*=TMal9kmF>#C)@|IxlHHtQLZ^toI$h)GyAIAj#3y9-AlDy4lLOzJ&L$R5&
zMr~T7&WreQ9G}GTspu2q_>BE%?S+&-XU0UoVtFxMh%0A^lj8U~ju~;xjN_ZQK5gX2
zKI)e^zK!EMDbnu+e~jY?A$--CE9al$_*s;uYxS>;y;l7i$8T{=j$;a2T0dhN8|PX@
zGL^L>WO^LG^G4Px>Qso?-G#H_n9W#L(Vl0F*=yAt#$BuCa*SH1=CNSoT$rcRU%+l6
zm!o%a982QZ8ON?Tmd3Fxj%{&lk7IcpD>!7uu_2C?>}w6wY8Kkls>(XGDh^_kb&7{B
zt%-xUmMIG%AK9hoo^`6+G-IP&VpANO<0#(W*dn-<jj*`((vj?7%3l~<x6i{J_$ht=
zb!vAUd*V17$H<J@8^^vlT0df(jAMTs2jVy`X@0m)9b|p2Q%B-BBxLbAby&#$b&C4Y
zIOshl3b%7SA+huU+(HW0t5cHfX~8pse+u$iSFcyi*Q;>7`X`QmIkI`E>)~7+=h<#o
z7*~1tFOC8a<viU-;Nc<<mkGaEu(;qQ9xnAzOgPOV9ty?vTd&KX$YoR|JQR5_#6}68
zuc$V*)lH(L2Xd0jMK2{-+Cv#3v?(hjmsEM-6+B$wp`!3B1uJ==S<bR@-kx6G#nm3J
z@o=s157(<I9;$k{&O<d1*L$exq4hnH>K<wcAs;iMkY2i49&QlvMh_Hgi%2A=869~&
z5A{8?^l+Dl1|AxExYI*Z5B#LAk%yZ+H1;rMy;`$g-R$AudUdO(pBtM9r}q|5KNgZu
zyiI~`7retm!3HfhW9B!g_uCrHJ-8dx4^>M%vq81+@Ku}0@d3u&9$I<m?x6?s>7k8>
zz(dmGZs8cQK`m~n?(y*ZX``Ko_Cm-zc$m6Dk#zLX$wOxk_j)irSRSIDKG`JZA$N#L
z4mWR5bhd}Mr%ySdfg_f#m{IXO_#P4xnoEH;Bq<LeW9>J1g20&#D$VlTsInf&GlC^I
zsxBV7dgzv~ulqc_T|xg<p(8Ojs{1`W;Nd|J<%br{Q>w>C)zd>C4-elL>BXRW>LEdr
z-X4Z;RP#5ghdupZL-&Y>N5zppdBEuB;c*XtcsS|d2@m}}yyxM4-m-_MJiO@PB^viO
z26%YJ!?T|LR^n+7>o+PAKH?7a^n>mY4}*k|KPP0chf-$>=%ssJlovb<&D${OWe)xx
z-tsWk!!Qr8dU)N#8y;R`=h~?5+N56SYgFB&hO=32QX>RM@?NHBF|y6D>KNQ0=uI}H
zFVrYc@4GwNL$6J0jE73&4erp(>vC7vw>`YG-{4UZ<D@X(5qwv0JWIZ@db>qrf`<=0
z%<wSN!-pO|^6(Qo`@JPT_At0f<Z};Sc=*J_bDQ+?o=;hf9zJ8?bS|Kmj^s-=JP+S_
zxN?|rTPHQi;~pmJYY*>kQY3WWi1Mvq1*N`cP08EaA6TBkPd}sg`2E?#FCKpN@SBH)
zo77av=VZYt>@Pyt1}1OP|5&H7%$KX_Y`{Xu`NwvahuKs{8#_JB@i5oJVh>9^%=2()
zlWMYAak6^8hXqXE!`Eyrvc71M@S@F%%2E%@JZ$i=(Zg~ND?F_Bu*Snm4{Hw<t`a;S
zD<D57xYolu5!dH~K9B3roWUj!n>}okASzotY|Wd|n@eYVK6D3rXm`CnXP1ZF9`>-a
zY*q(2CV1E@e4pTcw$jatL8CUSL$r(+9`|s}!(k6c#Cue{)ai1)CdW_YLr-})%~8ll
zV;^Tc{K>(@$F)ArdiaZ@u@B|rZ&v7Lb*YcvA1VCD!@q0;1C4Wn7x_3Zgvx&$k$fFQ
z2Os?WFvl+z@e*GjGQvFky;&9WQRpM$qqvW2wx|+5ihTX^K~5zn(p%EUWj-qS;M(B#
zd+T1$eN-;@QOZYYA7y-$_4Upw<ps<6;Knt7_BQx*N0G>P1XnP%{zgR~m3&+&oZhR1
zRQA!5my=)Kt9{%j{0&=G@o~M6nm(%fe8r}&6RajkZ*?Cv@|=Ha_(HapuV2g76}&;P
zHdlcPp<YMGpe?GNkNU!Y2#f|k8VVnM6B-HGe}hhB+!n<pb2s~F;^P({xB4)BSUzs^
z!6PHvut<H}?&A(0clv0`{If`XH1m<J&E?-En)?Wwqg8FR@U@rj%usc=k5=Msoj0RS
zGdh}mu%LK5A03(g^^vn3BJF*2@Ntii%2okiTMvnVVkZgh?BiY`Q6DiObGKaBvEk?z
z#V<N-AABX`_~52DGv1DHi6eWl=fn3gHmTpCBzy$CuK>3ONcu?mNF)#>5He$IT0Um@
z$oR;zVXQCq0o#L*u0F>5c+W>SR*;WgJ|6PX-N$IBh+nYw^zm1ZNDm+P`*^^|gVKbG
zZB-4ns-IE3(gOv}x9Vqx-ah*Hc-6;iJ|6b*h>t-&o@255=<B1uk0+VJR`r;V$9+5@
zyq_dRk<rOXh)?+#;Nw{z1ARO#?in!)qZfKsj!<MM`CuPId<^wDO@ZfqyukZ1N{s%q
zfQ}@`U-I#?k5_yQlh84L>ZctdUCw~s;XX$A*uGW0?PDZM-pBV38KVW?5F91=rr@hv
z6+?Lp))*ge`B?I20li}-h-A)IWtKF?`FO|2yW;4j<5f7z^gcTp@3FJ`%!%-YMVnTU
z|F)_ReSGBOV|HO5lYD&b<5M3KeSGHQb01z$W6}oW`jy46*`~f=U#=N>dwlWKHua^C
zuf(<3rpu7{jj!KL{N`h_k8gc^$1M4nzQp)R%J2stKMJ{%$0o`n-_Jgm)8JPTnL<f9
zSBqrWHr08C&hQi;Q+<7$7Wp(G)AQb$9148BYO8euvwh6*@t==^1m^mf$CC81!{=^D
zSin}t9k6{Y^s&gtN*}9yEM}pxCHs03n^V3^eJu0!#4;U~9IjwPmF;{v1I#Jk)xMti
zT}Lw?YlZ)Bo_YQM@ox07$;W11y1B8nG`6x?HZ!(J9ymwMY3FSmqpsFd&^vwX@^P92
zvX9+9_V_sB<EW3lKKA+8@8f`Efcaqtcnb$P0QxvAdCtvC=ky$MKKz)E6F&a%!TIXr
zED)JpXT*~}PO)BOOKr}s=dR98w*Taq@8ciI>RHL*U%uYom{I=qaZZ%;k`5E3$RN&v
zbJ`pUT$I4I3GN1lixapcfzk<-N#N21iX~7Yfue*i*usP^`G_Ekw77^Q6paK_0++M0
z4i}Up*=JlPNWuyBT*2~PK&b@ya)I_`6DXHJ<ph>jM)?FPB*2ZeD<$-+iYo*wGC_G~
z!PgBG8Rbg3E^~WTLKpkh30#xVdqFdZHNw{cRTH=_frbe*N}yT-)f1@Aq!Oqh`DFfU
zC2)NLH4_)!1^lmJ+>lr5Bv3bj267?hyq?@b{RFthbk1?pX<m-^cvAw66KI-1vjlEV
zph*I^CU6_?uC(59noZ@Fgl;e$2O760aEBy#ryy^ijwvu5lI97tNZ_sn?oQ}dM6qS!
zLc1mBMO*PM_8GiEdiRt@n*`b>&@O@Y30Mi(33N!{o&-+UDA6&254Wl5+tlBU6c3?W
zzfE;YpmRb`j@_F;R7gzF6g<9772B@#)LBA*S??#%YP)jDS#;ZV_w@3F-tODggdr-K
zKq`UF32fo`pFlc+eoQKX=e8?8sb&($CeS6JX9&OZjr)ak73?N>pI~>v9)f4i84o1z
zU;;f8`YHF}1RhDCR{{@-w|4@4gfM7m8Ex=#89bU-`U=VEj|pe!6AAQBU}*x&5_mF!
zr&uNle3Za|1fEV{SOTvm^pDyz2@FZ#`2?O#V4x_2co#y(e^o$(!NU7}Q273K^@4DU
zF9{hc_#$g_`-K$(FDLLy-ln;!*9^Rtz?%t-5^;C}BN7-X{B<_kvUnqbBimKs4z;&U
z5sgPDFoyY0;9aqKD}lF#j1{Co^&M(lo;TZ}#wYNect1$seIXMBi<anB4I6qCC-VFk
zjR|~`z;6jmPT<o7CMGZ`fv*$zOzgi9{9KU6yoE1?e<kScP^&-DNqv*R_X+$U;<pKW
zm$(14s_|n2KPB)>Ua7&C!os=4f)VL{O`z|N3#Bwgf@TR$O<-CA(^-b%osqyy-gVw`
z`VMvGI(;v**`YY3Brq?5g$XPY<M|0J5JH31JJi4VSc^qmB6zxmQEsQcE+2%JC$Ki5
zpNQyIB(PHWD#6u)Yx1E@KQ3G+e0^Tokif<~-z4ProoZ_W+Y<OUfpZCLXRnDyjwW!7
zqeKEb6WEo&ZVsnaBK!E5l#Y<_k!(*wuP59q$W?{=6F49?2NTHbR7VmxB;;@cbc{lg
zj^ua(LwBk(3BC2=3E}kqk-$mervy(6{;*Rqh%fd2WImZ%PxY4|$=^c$Nniz&?WwF{
z#`y&POQ0YC`NqaTfQtgu2~an{#Q`n}a7BQM0WJ+tEI_$HKjaq%hy+jpN{Y95fT93~
z@DhTjcj`f-SrD1pSCh*`EES-1fXjvRXb<XiWdf8HrP3~a@Q3f}2ZQpWR1nPBR|;@t
zfT{tm3s70~s|9I%l@La}Ccw4KYNtq*{8j4h(pRUe7U22-HN~>JU=2YYI8sYU?LdFt
zLdzQh?y9QEjrl~FAYHuxjRM>x>DL!*AlNX_$CuFYoD`Zh7V&1mCW1_jXQSK};PwFf
z0~`o&hZJ@H08a+EGeFY-%>pzJ@KAu>0a^rT86XiL2yj<`y93-CAR3@mfYyN?_c{b<
zBZRzNfVRRp+|k=Uue0Ru3D7Y>r@YcRZ<ZS*V*%RlQf`1aALcukFqtJGb^wQkJfb*7
zI+9`iBVK@hyVTHDhA(AB<xr|186Xv)dw@RY3PRCaE-<<VNDI#d$dUwnSzM65Pd{Dr
zZ3TA*;KN3@0QUu0drbf8QJgT==n>%l01rsS2LtpH(o>KTX>jc&y4Cdw@Nj^~m>HHv
zG*UzU;5@>H7mYkB*f&7=(%2l;e|#Pn<q1h-kENf<=SB;j3NRqhOO8Jc@N|G@0*ndp
zR)A*%3=HsUfY$;H3h-Qjp#iSy65%?%S9htw0e%W1Lzw4%#`A(N2<|ykNX2}@croC<
zSa?~kHEEZkdqw!L01K}z+_tA!i?lI3z{miv2Ux#LjmX{F0Cng_^+teWyVS+I)tjvP
zv@uHX@>7MQ+5AowQn_-s8XMrf0Po%ud7C**L~h%y#szvd_#KLDRO=MocxGD_a-#VC
zK(82|5a5GAFAo1uyq^U4D8R?Tg~PA8D>7HA?=7#r69aq};PU`q1Xvbed4Mkid==og
z0Fwhu3h=e$_U8cK1o&1Lg|3V50({SiGmSrQ!5vo`KZy7v+qP`5Mgx+Z{)?FXnm1<9
zlmJr$%nL9-z%+?CBf!i6(*yi2UZ$B#c~*eg0p^Oxh}7rgd6|cF*QT;SQeGHf5${eS
zE)Kv@x}^b@<T;IVnOwm(zgw*jupvOLerl!QssO74tYNhVSSJdRbG9@{?^eV?)gl`M
z?AWb#2G|r}bAT-Ywg!43UsEpr;n=uUZKpv1?x6eZZuQP?HGj8ivOQAurJ`K{b_duK
zfIB$R?Gv&$xUj_&3G;R^z#;bZB%(<i4sawu^(1N}ag@!2!)y|lC2^e9w7u{T4p0I3
z#`XmJz8xtzZJY}5?`~D2z4|Y}=>TU~4gt<m3~-JOJ8k?W__rX}KmQ|ydeuF;49#tN
zxI53=sjnAo7bJlsE=uC!BqB)^PwMPll0>sTs+jOg1$h!WmBJ*-UKb&uO^GCmk}xEc
z3cW;?_tN0<BuXVwIf<*1D4j%^BnG{&zoX<nMLe&qY!c;?D4zsZYsdGfib5(RafJ{b
zAVs~Bq;{ns6Qo(6J?iQtu1lg?5~q6<zb1)mne9P}u8NSVNnA45pm*3Fb;DrA$))MV
z)%8i#OzJVD^IlbpAO9xNB8iqs)K22Yq+TI;YZ7&YkT(!gH>p=P)=TQulJ%3Ax<_%9
zW5XmGabhHi#$t0z5;qHJBDidiI<!aqw?~!Rs~wY~yDf>^lej|+?qm@OVVX^o`1K~e
zuClo(v-=z5cL{HwL<b>vGtWX=C(%YoTfuhBz+PPiyj<=o_lVv(iH<@#Nr~|)w4nh>
zED1A-AxS)+gq4Jy#4~Jc+lx6#xJmR);;|&+Nq9+gO`=;8eiA?Pw3j4OLJ~;?LMYx~
z7ZAfF(n(~J{JcVYvl7}xFsJ13z9hOQ(L0GgEYBnlhDI;3c|h>NBzm$s?1G$eE@kqE
zB=mpRdRV-V3O<s*VlGNQ5uXx#Jc%bHHAbZCpTv`*Gg+1cl>y>?I-de>|5+)7fr5hs
zpA#G`$a(%3k{FuA>q-4ex9)D^#Ux&4`%L1cB<hs{mF)u~SCle(?NzV%kzp)+wy3%W
z-D^n<Phy04-`cCFj7(yZkT)c?Hw8xtjuspv$P2wCWcyzIwDxuq<C1tMsh6C+EBKz^
zc$TW{68ye+89G782T6RGS3XMO<2?T)iBE<9yH|hj|9KK$uvMoqEsZae_$rA{Qus85
zNvzYVk-bUmOXBM!zDeTSB)&^xMG`BM_&%w>1DYxLLlQqG@ssc=f<FuXBKWHyjekpG
zvheEr^cO=@^ZK+TrVIaFaE9QQ<qX=)N@8{rbMlspgv?E1o{;%@eL)fn^ZYJJd~p&>
zL|H1hOmMm2gsi^$o_iy!l31I>Iu2aX$m%4htV!xe2ogSWuNQq+5*w1(n8YRyj8!6A
z1UC!j9?>aoO=4RT+mqNKI+dM5Qr&bqe5&6qN%1Osq%-nqWPcI|lIWbmy(zrbC~}Zv
zR|-{xAL6e-5=WBA?o&sT_$P^flQ_nFo+>z=#0gd$Lj&W_B+e#rGKo`cY5UaaB+jr&
z?^EOU>Cu1+`Cm!=&0&1Ms<2;e-KUO-LW6TjoKNb{z00TYUlIi=6s2IKfD|rDp;!uq
zDg80s#VK5p!lfx(Ki<fFC6`;CO^l>aJcSYx)b28Ez-8OCVNmM=s1!=3^fq*5Qn*YA
zc_|^6r_gA>{&s_|bP8Wry1>h(P)-b@5?UdJD^jSKLZuY0N`b4RuM{MyEabn|1r1sh
z(0jFbuMvE9zoNn>T{VSTDcq34bt&Ch=&GeqJ<n?hxn8iQAa}{Aox+VNv`pcy6zZf<
zSM=Lbs3(LeG!Rl>u=~lvhP)BsHwiWoY%F-Q;JE#|bKN5RR#x<0osHX5xI>gXQ~aLj
zLf(3{(4?7on+vuO{AItoTSz-W+O!hVI)yeu+6pd{3o*2P3LQkbN3f${CqX7fgJ=q|
z6ndu6D+MzJOM>o8!4?vvkW9f5PGeU{T+kErQ%K}P*GYn@6f$`w6p~J1UD*rwl}({b
zKD4WlZYi*+nK)f{QF^3szmNy=mJhNb0=+-^Ln&}iye9-ndZ*AQg@?uah+tpAM+L{W
zz+)-&6aF~wXsu$D)B82j^%wog6rM_9KnhQ%@JtHhQg|nYXHyuM!dqf6NRalUQg}}I
zV8J2m4nkf?VR+tVXbLY1e<_8RQ+OqXVJW=IE}X)`^02ZII_B#Ca;7{Yg^?2Lb-_1M
zc=P{j|MDwpG!uM9jbR04BP3(R@@)~B0u|!B;(afL@k0I=`hE%%#Qp=p4^#Lk#Unyc
z{eYrlL^_g*DSVbf=QQq3<MR~0U^#>s7~;zmzDl7&h$})&V)snp6nkX~-=y$u3Ts)p
zDSVg0_bL3E!fz@3kiw5Cv^$`lYGnMx>YiL|k6Xy|k$)Ec<DTNbut0|C-(0>Gnw-Mi
z6y~KcC55ReOk>_o6rYj8%oL`l5FSv!vv9f;@ze$$x?1~%!dZ-aK+Q>ke6}FHbo9<o
zVL?jI;PG4jg()mbVPy)dI9Saw7IP>_VX5%9<`~OTSf0WP@y?xN+}NYA(;S0lJ-Qbs
zu4Vy7bS&De$w#5h`V=;#us6lc0C~W7WMc}uQ`nQjrWAfZpf;zlC55diY)fHR3Izw%
z_7rwV&`w$&P&dnZZ0a;7(ouP|N2GDrNV02$<lz}c>4R#23Jnjc11W5N%{Z9Cp%f0M
za3qCeDI8DXXbLT!Ec~ikgk;6u2#I-6onSXfaR)6tbx^%`P>pDyW*t=f4yvL<>P!lM
za##*AbG&gjg<BgL7l*hc#9t}=ox(pU{F_3PL+Za2&Ivg$bwq`=Lxo6Q5Nd)D7m3S>
zmxka0vMdL#!XhaaqEHm_NQm=;i%3d@C<;-#f1wegOo*}}REUxx9yp{f3vuoNgR8YK
z4^c{#(jn*=^y(o+eD{!ga(7`ln$;{UFGw=79(Qs;r4UU+Gz)QMh{_>u3{fY<RUxhp
zQ6t3lq5c5snh;e(y|V6F@lvTGWc$}8C|)N))k0Jka`tEe#hM{%F`xA#wL_#|D$Y|j
zCLdBagt+rzT^js1!R;FAhNu_f))2Ras2`$1h=w5=h1hUN75~y0_K{+x%<L55fgLx6
zvaIWnY8>L^A$4<zCLwMS&eW)sJFL8Vk=sKM?-1m6YIh2`S%R8}Xc58=;e==z;;s-@
zsE<>*J4CAx6}~8L@)9BX*Ne0d(SeEgDBdPS+YmepiQizh3*jDCew7mUgy<Mz+F^BX
zh`xu_*u$!mcy}IFokP9ig+X*tMhrn?Dhw)iMD6MtY5!yK_Ky|1A>yIln&3%hFNDwb
zv#eOJ5H*jeM2Jj?Y=|I4Qj`=+Pe>SoQ$w^N=17+iT|@K;alaUJ6TB~PPs{G2uzXq{
zQ4fUZ$s0VP9%SN26bUg$9tzPrL?6k<qr5304~KX}2=n&+pu)%U{P7U|at25A7h6xT
z#Kiluc-M3;OlOOp3Ne7$$QIE(9pafh|LTYu6ymuMyF%;^F*wAK5Wj_(9OC&9FNByF
z;<FG#L%bN`%@CtPycFW)P>+7YL%bp#=e^m+xg&b*;xHD}?!s3?ye4Fsh$A?z9#wa(
zDICcvUQ_sbh&P0gvmCg<a&(BXA>Ix#Cd6Bk;3?V5nnC>ZZ(N9XLvX+1cQ{bXw}B0g
zs_`M-3-LZ1!%_8Nh>t={2=PG(e%#S+Vr1vm5=?p87X=@O_$0)qV#Yr^bls2YrcV5v
z{UXE(L;cKTLwptDd$}}2Cx!Ti_t;d=5`4{ual7Vp--h^3bn?YV74e5qZ?W=Yh@bL$
zqG4qDD&v<Bzp~o~dTMu4?}8~IriNG^Vg>tD=g71WvqH=kgXtlD4>5xVrwZ=*tAJ5v
z3MZKpVlI2@`^F*;ECUQ4BR(%*0`o&G$n%9lb{<uWL%m1M62YZ{%LF%cR@7I9SjEo8
zAtJ<TcKOwX8$xUhu_nY?@vaN8UI>G7ga>Igt{W+LOmQg-&l1`q<+GEyeOs5zR`G5N
zv0Vt)V(sAY(pVQSUx9HU-<}YA*^AS-B8`0^_J=UiP-(qV;y{Q$I8cN*7$Wj%<Pe9B
zW9o2-BSMa{UW6PAahzS_m|`d$2^He05F9}M4)ITj)56b$c=DL~GsIaop<{~tFHyJ`
z5c$6xT|+&~Q7o<TyzqiF{u6Tag(A)mAdQRCxHyeV(zsO29Dc<wvj?2kU@V#u3z`2k
zil_DOMF}x0667u`3>_X6FPX;I$5d%CxJ>YJ!BT>Zwd6s5Hm;*{9YWbO*1TL;PO!Wn
z^@?d!O6zq;8~dv()2N(At2A1taaEdM`{JfF8mIN>bWIx9rBO}zwSrXytEQ3r9<zEH
zHPWap;=(pM%Jsr)3f2;&c!Q7?$JC8!)Zx9f0ng4G+&)rQ^m>Bz1skN%FpWmS4;@qF
zM5b_a8cow^mPQi^x+RTU)3_~-lE-!Eog&^Yc!%KiqCelVh<ofb=beh!LXh??h5QpO
zad%!}W?COtZPI9)MmrY8apfLY?bGOx#uLYN)!dWDqfhC+)-g}0bV`FrF`7m!jn~t7
zBMmbRE3N<FzmSHV)=%tx(|9ZmCk;1^cp6?Bk1&xm{4^42+@Hn+Y3!d=7^KlnNHUF7
z8etk~@pci+q>&Xe_PC-k9j{C5`hUdx(&#SU9)b*=dR&dX-*_;Mhte3e*x;uGJ=5rw
z)*m3ahl>+;tT%e6(I*WOx`%~qJFd!{P_x=a?y9U8jE%ZK(l3o?()tTxjxCR~Ow#C|
z#*=A0#mSA{#?xsGNaM51HSg1d2VRsodXwf1eKyU>QvKR}P#S~N7?Q?wlFqRI^HuWm
zqA+oaL#4!C6lBr8B;@5ZUJ){kjVF!QgpbJE3{T_w6Z&7+NKrZnXW_glRr9Xks5C|k
z86)_XAZ^ByR50Ea94F#Cxgc3gJ6`yEX}q7t1mPc~@o5?pg?~t_V0<L}W5G`Zd!A6A
z@!>y>AJX_SjW0O)!w#FqH)7B9zY;P@jF|$nLHst2@6z}_4eB{ZJ!kV%8b7BoSz`T?
z#;<AomWwL}I>Qx=|7Ckh-aDPe&H*Q@o8pW#W~MPB!`1SbmBwsVL<Y}iFel9oC~#W_
zw`VXftv9IOn8v0w=BKeBjfH6}N@GPDE7Mq<M(5@Q%hMRss$hxqnx$;&ON$jYFIXm|
z=G_JK@<^Ih%wDsC)f{R#EH5wS){1<*v=}F}*NWM?G}foV@3Oy~uD{OSkk-pw$v3C5
zh2vfZ#WUENM#~C?htfEl#<n!JvrV$n6Ony#*E=~n)s5^*V|N;Ra^-MY;a-x<3hUf#
zymmtEov8MUen9Y`VB4rZH}gmuN7FdZVL6RsX&jdzF3dZ@mXpR=-d7qY*{R1Gr_(qi
z<P_`igrYL+)xzcV@u!IN*6pU|olt+L@oyUE(jfmwaP<jAM@~mlkU^V%>XHm@da#g7
zIFP|b8C;wJc@CMYOEcJULKPFFw=koJ6e=Y$;2eJC46e$cC<7w{l|ji2%4NX)S1-%p
z><Pt_6iN%ZJcCj~C~`+Q>SZz@md&79)e<D-GpLZk6&W0Otgw<GNkt*?ZU*_48N79_
z@UlNtt45KlGpNn0WN=Le*Je;9gQ^+S%3$Lw#&sD~%b-RE*Jn^&6pA^*Y?Id%k(l#R
zxj_`#)XAW31~+H)*NF858)ncbgZjEaw0P4W`Xj`-_ZQE7hj>$7Z_EOepe7mIB9^xb
z@<<@YWt2NIxHF@-S$isjro810{0tHqG|!+#M*ll#mqGass$~XuWiaIr{YanrL$SHu
zok6RNK1!)IYf4DljDBlCW!)d@=pU+m1|2f`iQ=9NI%jZi29-{#ju~_kk(@zwzBZy6
z*u2574Z2tcW(F2Be@c6|Pf#RI25tuNyp1R1-ugu}U}%s*G6QbK@cgL4R0d%NeKL4B
zgLDR&3?9sI2Rt-Csj?Y#&!7j(HiNFBbj#pAA#XH{(14EQeo@FD5JH2T4V7MO75Pxc
zrP5oF{E-YE&ERo1vysK=`ex8C&mR-=R(*`BuS1^@Z~qLQ%v?|yM14R8PfIO4BREL#
z*$f5>VeOp#wt)DYcn1qoc_D+L8N8a|9`6M&vZ-(siWa=Wy2#+=j6OSqIx%;A#xODC
z>*m*_fl(hWHVl0|gEul*k-^Fg-ekry_$h;*GZ>x0m<&G3;A6J%jQ&L)FF024Z9$6T
zguIi%yLsjIh6V5C`TH3zx7Kk#$SWTTnNp?T&9)b2-ag6T(+nnN@R<Zn68v273qeNz
zQpi_=6Ma2j_jLx}WbkbU---A`-tv1P>67}W?MJo*A-}M3ioQ_rw+yCbFg=6G`B+ng
zOy&J{)^mNoi+8Tz48fU#44Rd}Y~geA${@MKJn_!YU_oBzNsEhwFBV*q*Ov-emceo%
zoPo?uLaySdlEJ|YR<lWGuvS8M3a%4epTPzp8#&qwVSY9V*(|t4utY_*O~`gZ+U&^S
zb;%_8t_*hP^*tHv&GUU3>=*unSRTsYa0Y*iazyZ?;8DS2f=umr1~ZD`1ikEuf9iU<
zqlvE8QyHAj+nmYZ&pbby!C!g4Kh*aBWbkiZIhVotJpV6)g6xHvTL@WoQeB+ICBiSw
zqIec1gcr-AFpG%rT%*dpek#hMWEPiYVPv8Hf1#IWafOJb1WOAtKV^iJ6)Y!MUa&$I
zoAPB?F^ftf(*DXUDht0#@anwY>4t(TSybhNL=R+p;JPfTWig=}KIn$(S=7iP))i(~
zT%SeFEbh<Zfh=leaYGgjvS^q^?JRE0qHY%TvU=-p9%x=CPw3^r?mT&%V*RW>tDSpY
zHp=3rEbJ_tEE;EVa~Ahx^&aC*vbZISHo|Ys;x-|zv$#ErJA}8$>R%jwF?VMcKPxm9
zu^G#At<hYN+me&F6rJQQ5%12Tm5`4mG`F95+br6NS^F$H2%%2L#F>+hqI44MEJ*QQ
zNhHeB5Ml~ig1lCyuX35InvtX+NnD7R)ict5776i^2cisbfmGfy%yLpin`N@d@*agV
zh5NGTD!iLuZl=1sa2ofJ=oBB!qNngfUC=9whgh~<;B-OnEc#?owhPL2!NXZRlEsuP
zre^VI7JajLK8qK!cr1(8dKd$;csh%ISv;P_6Ip#KcmFJopH#!|)CK-zR=-7hN|1yv
zkDg(JJf&JMH~QCzJex&Ft8iczgM>Vn#SkHb1)H8y49)SOEV@(beKxHuUd-Yp-bfa&
zWHBm>(OC@3;?*ohWHFLi%3^qyXSSAD`I*tH6ngD8!cw@u6zF|Di#M`(GYjhD=Nmm4
zS_%v$ACtvfS-hRaxGcu9NJVEN3}W1OvUoR(@mahlDKnIMF7Y0cIBh=2;=?Sy&EmT(
zKFZ=_=CEnxt1Ldr;?pcv+!y&maH8O6f_+XY>YrzEw3a4xUy4p;l0;_;Ukmw0@a<FT
zd*12kVn1Z@qY%y;{3L|pudGMmzvPvsf9bUczhyC56jlf45T<1@J&QlHILnTf#f&Vr
zX0a`cnOV%rVs#d4Si;X1&dy>{7K^i(lf~RD=CL1{`cLJ8ET&B_oS(&Sr_{1jda`Aq
zaEgadsr?fpOR`v+MZsycjQ5ho$}E<Pqa{VURT7#*ifgl|a9R!d(%6{AI_aeA1rNVp
zxFHK7Z8l}m^0cDcEM$uychB3N#SSq(lf}*~c4cuei$huP!{Ob6`?A<0gv#D58g<m)
z6z|U~2eOEt*2-Z~j<a%w9AS-QaZGsc(`sDXBHH|sk98`GlX=eQr-j%0usCgAJ*^Am
zuPpw~;-W6NxC{Q_I60h0dH`MUZ&pvfaT@Jh7U#42Ya{ai*t8lcavtbVwsYZ>(`rj=
zbx9Xo+65)M;QwLkJD{DY+Gw*u?#<;UL+?maKu~%S0jbhKigXZ=^kkAuDxxSw1+id3
zL_|cyh7`qyf)y)@sGta9FNjzWrPsG-hw=Suy|>m`d+l$Z?|i4sIg?~EbEbk1MLryw
z=&iTQ!<Us8`{4GW#D^m*y`@5u@*>*~dp$mQ>2SnLk%?sb1tk@I_9Lsj6{nKVes_Fj
zAxRaH)<?Y6eW>9>Qy(t!p{5VDeE6x@-PniPKGgByt@W-8eW>f>y?JQl!;iOkt~}zc
z=fj+~-ta6>g+}G;vyqL;HxM@T;hG~}n%v{`0{R@WM}raOjVxu%CO#}V;^luCtM0ac
zZ8h_uxepin(0N4pPCi`b!zDhn@S&y89vM2c_o0;!t$k=Cg<@NtntIqNcQM-eu;z$8
zZuIQnLr0%|wqd%|hi^C7znVMy(8Y&-KJ@pYs}Gm^><dtRh24Di^`)LZbeBoJhX}V9
z>*YglAFgopK0a*k=B5MF%rERs!y4aOO#Ji4k^w#p^kI<CzF;-PhbvWNun&bRT|<2s
zrdqD@VYsqJ`0&LM@1`U6B`Ff(NT-(LN4#Tv80*7#K78-PI3LFI49r8x&3}BD=tIPZ
zzqgjZ+GoG8ezFf!e3<03-|ol1A-K8dH9kz`B)O*an7`ELvv=fX3X1rB2#B;Qb50M*
z3_D^}kz+zuVe(VJ;R%t-Jz()8z=yOC86Q^o@Td=2A96n2!M^*D_hA~3H9PCWwe0K)
z&-Fgc@Zm&j_jDhw6X{?T)4ail8+o{odT0CW-8*OcFpDu4c*nh8O0&^Xd*4pxhL3u0
z_Td(vy-nzRAMaW6%=KZOhzGXGbgK`y)AMS32hrQe<xKwUQSSmD?($)&&))I!ZlVtl
z`0OnU?)71zg52-JeIhKrNTl^b&mKjivX~=z)LZeGcL|%PT`?bI?NvSG5Badnhlkap
z<wAC9bUQpEe)>B%&6Pep#zW)7yFNVb!xKJi@Zn`2p5!RCaj*4Zoexj>u*!$0nRUiB
ztsT}VYc+?oo$bS2TZz0a@EIT0`|up&v~fQxY<kT5ybmw<@S+bdN$FC({IFy8X03fz
zln~S6ulTUhhu3|0!-q{A@T)zq311bmo!sN}u*=rDx9XcdY}Vl*e~Sn7n0Ldp;<u&n
zaI8G$eb0yYefXTS*M|?d5*L(w<il1C_!iD~kqyV}ok%(0A9G&$@TmrWoA9$^-p@41
z+kM#K!{FLpZsI!Q-VzQq)33+uZBch>1it2B@?n<`yM6e|hdoXkmh3FgmXsd%a+g<<
zZ{+-~kOS55xR+lGqa*G8Nq*o7il;9he&$3y;QmcW@{7n`AAWU|eIlnSV85drXl7rB
z{KJPoefZ0V1DyOkCHm3KkApt^!xOR}MSlECU3WpB_SyF@9rEEYPrp7Kl}Y7<$T2Q$
zN8wK`>L+>rca%=Y`BqBz8J~Uc(^;X*5BO2WkFtJSWIE4}A#$54ES6rwkD7kC{V4IH
zydR~0RPv*;A0DRR_LB~Vh*!vau&Gq=qoT~&$GtSGh*uX@6;=~Ird&Gk9`9Oy)K+yD
z_)$l>)a#4X6`n7w=f^uL)xhy-DAGvyi?S~Cqp_3QM5L)7y)wnTFTJ@R7yHr0kFI`P
zqUu;nJNdK_w)CTw-+s4UYd_lf(N>%$`$a50;cYLs4nmgg=*Ojgbn@deKRQdyoUprm
z@d<Aqk<0z)=Eq>w)!mOCe)Mzd?J55&guR5lh0pw3+((2p_EiH|JC9C(6&xTO=*J+D
zWhd;zIz;?RA<dy8!~7WTDBDliSC&TlajhTI{TSuPXutj3<ru$xG1l^9tRLh2_N}4g
zg%Lj{_%YFst7ZCylZ5n{?8g)q^kb@{`1pgXn_ZlV_fH0-2ZbSFSoq)W3Q?IcKTHvp
zii;$KNg)HK{7Cze@!QYx<b+v`3?HcBAoI@Nyx+dRcbbqJcVFkn_2Lf&FvE`<*wX+;
z2XLbwGyT}*$8JAn`7zs%<$gTk#~eRy@?)VN_xbIcu5b3^Ha~9n;}$>WN}1=!ts+hO
z+79!@CyLX&L*_kx+$pj^c$e^QA$?j~rNnz>778x%W2uvSzsO?Y1AZ)V^ar`bdb(Ng
zAxBvz^02VWV($t+9u<GrkClEr=EsYEyd>puKUR^5KjFudA`JDEAFlRx%+-FZ@#8s1
zUn}yAaGj91w$klcKi10}5b)Audfty0q+I)s?ZC9bk5~P8P2$Ubydpw<qsS)Vj*gz!
z9sLav4(6MFyd}QbkAWJ`x4E>X{C2|2#31ka@xGJ~{P@_9ZQ@(}_)vrnABk)gJ~+DM
z6F)u`=Qw}n$96w<$~<+ycZVNea6YS|&n1>Q>22s7$1kPO{L0T)rQ@_8XZ-luk8e0X
zhm}9TmEy;D;=lRvy&petS;=JX6VJJR6#q&1v!nlgziTg>J*@n%!hOPm|9(Gy_k#s#
zGX3GlpN{#LL;mJRfFJ)jrH=4Zz>h;R4+~kmkdCUxV}2a><Afh4{W$eMZD4%1go(~)
zIROH=IDkt6KmcU|s2o6*fIYFx2H*~$B*6WgZIh{-NRhBOfD2Ean*-$oFeH{bo*ofz
z0FUSFf)xU&D1~#Wk_cxV=U&wSss+#>fQA87cgofZpoVx&A*X$z_Syl|381dT^8=_C
zK>Yv)J8hUQvh<|4ksO){FJL2i{YSj1u!)cXUzYzx0c;a#?&wc-M~eVj2GA{l?g6xt
z-add10kn2}+62&6yq$2%q!I?~DBjuexio-I4!=y~PgT?<fUYtx7fvg-S51!qda^G8
z3<;o@^u9u7^$y?)@jd}?SH_R0mJs^|&|l(!00xN+6uup>Pb^G@MSW!e!=(=u4igr}
zbA&iOuM!y<K%seK0vH=WK7eTfj0<3V0O^2zU28%B69bqWz?1;qZfaj*x;lVKfphQ6
zqsd=7bh{>iSO8`KQv>=P6o5Z~Kmfsj{r5*i7z$u%PZ$3>A%+7ex4eW|Oi}54J$GC+
zG8!*QB@`zafEB<;U%6NjF%`f~MfPv2OaR%yx$9jyr&QtM*tOK9Ob_6?0IrwYtx{&F
z3pem1Ab^<x%u*G%1TZ^*CQaOP7+gy6ao5d-Uhv<p<1S{g#<>B^3xFm$6CLIUa9aSk
z2XIFKcXP??^f28Sz~Y^r1-$&|waHyFsnfhiKKBN&Fo63U|3w_M<;8`v?o-~yYUcw1
zED4-@oju3=L5WM%B=(V?amxaDn0?V(cb5n7NWd0pP8{P}8Ng!!+!MmRAv_+y6RazU
zML|3nz*Ah&L6i$(6%Ty?djj}6fYkx431CwIuLkUkz-t3|C4h|qtP9{7DbEUD6s{LO
z7r^r(^nXF5{we!kfS1HK1n{zxTezXOaIKj5S^%%}Xa=w~fHxeUcLR7+{4I5Gv+!-<
zJ3@~3N4nPip4{FK-~*8@!ViV4eaI>A#}5CTtJ~q91n{ZDKNHz5+`%cNX0z-U0qm6c
zrEr&!`fic0g!i5Dek1Z@06zurt@w9BdVVkRgOJ_-nG-&MlL4HPvNwP~xX{FZ4Pc+h
zZ^He;--Y}mgQ1xI3gDQO0|ERkaxj2HBL4{gE%4>Vt6IAbiyv{6qax3r@*a1T6I`3l
zUDl^1mJQ;J$XUn76$FCk{skx##4e3Y-Lke)6hv_lLxUI=ggc0mAZiCuCuqNzxV*4(
z5T!wQg75}m1W_@FO2Kol)2-l;&d#fl8IZh65LH!OwIHeoQA2M3y_LA8vT8Z)p?_Uf
z)G&xfL7X2%J!RDwvQ&eh{Q}}b<O_nhkkNwZ5=3K_VmmJmqKU(s262(Yn+4I_;h9s#
zmjuy5X3HSj2GK5vRx(=)+c=&$?QJi9sj!2vqmx^-(SG%CCz+QC7n~~Y8pP#63~+q9
z1<^;mdk{T>=qcV?*h@HUm_58qSIF%4q0RdS(N89Mf00tXu6m&Opdbc|3~_v}WUo)#
zFHmM0E^$&2BZ9aph><~z(&&v3VssE=G=O8}^WTvo87G~^Cj>E3{uHlv2=&Q9ObOx|
z6$}Lt4q~dfPv{rYEf7S|;lXBz1Q8A5+90L}5p(ox5T<xMh(r*{AgmzLL1ZMR=-KSt
zn1oMz3msqZuiZ7KTo8G=O%wL%Xdi;>g1A12xk1d6I3tKzLCg-~2AOoYF^HKCzqyik
zj`&SM-26Y2mTv6wEzV54HHi5^EC}MRAZ`odc6r|E%wBrl;dqiW-5ta|LEIa}LirTL
z!bB}_;{8D^=6ndDFHhP{-46t@KZxIhSQ5m8K`ag8p&;G~;@u#YF;r9cQ#^r-JS<!u
z#3Mnh2;xzhba*_7mEw;H=bb*c<I@u|pA2HlH^nb-V#s_Uh!;gx2eBrIwLz?txn9U<
z&jj(T!xz@`P<bwh=N)Cu(c+ha*bu~<QeGCmD%>{8^-2(*Om=S!Vw2-f^EL6;gLosz
zceS_*iDBOgVzcA<wtVQ!-1o#k3u1c^?+5XL%q>BDD8hogjrk*oZw=yOhGo5u@~Oy|
z8iX^ay*q;VJcyqqej)rSh&@5<EVv07b5{_%9o}(XF_o`__})>z5&2g5ov_9k?+;Gy
zk0L(>vGEDJAk!~F>~(T~71<ZWZ;mo@vgeN=|6a5Y?j<4o6~qDY3q$xjh=V+}hTzrQ
z_$P>CK^za_UpX9dA{-Vu62wuF?q}>Hej<pIGS5@lQ{t`=PK(gtjL2Ex&94<hZq&<!
zP*%L<y>|P{g-{eiv6EXq1h>OWM3QH`rH;ahVT4dYW_4l30>8mi$?>TyQYD0{AygBe
zqXs{G##<wVno??oP&b70#cK=e2sg^JUI-0kvU&AI8VFb4Z8x}42p2fHU(3I72u-9k
zb@YouXy)+dAzUo}vz%Lm&{Afr5ITl%sd#H)8(~{vJ7Ifa2jP+Ro=zfcL$?qv6YuOO
zT|($8ez`Dv)493PJ%k>PPfw9vA@mO63h{k)Jg3wu#_Sh@F9g5z{viwqVPFV@LKqyv
z)e?sY>3NmNmBOJR40H71A|r$~&U#0NFiL!M2;)S?2pM5)2qTBu6LP$i3BrlOHfQbG
zHOcXu9KsZbUn4R#gb|T*=bV6)TSEwnghB|15D}jd!VMurLx_c7N?}+_BpyOSB<biA
zRB1|PI)sc!*2&F@<b~6O*9xbHaGeMvU(a!9T}pDJqudn2Oz~O5*^WL(WI)nBKsSeQ
zi_E!B?mUs3)Smg`w}o)K$Q_Q)ogpj`zsphX4q=UoEDYhk5MBvkV+e~vxIcs^LU=NS
z#T@V=&(aVc5_v$lMED>N(?t70VB)e69+gS{a0tsocqD`sj>5fM3eGDX<uU#W5HILY
zDd1}1Dj~x@?bNa+gtc;BCwxKpjPThI)`#$%`12vVmO^_-UKD@HQ8t9|vJ;R#n?iUs
zgp(nh3gNX7UJv2R5O#&|MhI_)uq|YN!+c9fvRQ<`6yA1}cSPO|;k^*v7ylrHk3_Zz
zKP>RG_74!Ituj9jVXvcnBIVN%J`<tO_7HYB{Bw~nLfGjjWn9MY5WWiGcPV>>KMC2e
zuS57Igl}bjC;U<PeF#5@{1@l_BK$1n7vWyvuflyo?&SQN$bMmYm+?mke}?R5y8n{G
z>JIQDAcTW5+43VK;{Q6zp%4y>H+LCyIO^!fLO3pd!cmr3rKdwU6T;<TbPMBb2(B>d
zgi$xl|FrC*P$rDBVX#v2^Q4ptX_gD4NW56+cJz`k$~)Zawhw_P3~v}l7!|^(sH_@c
zR1&EgMm3SjVN?<6r#7=x|DLEWg}hQV)D*8JtS$7uW#27!ei-$_xFn1gVbqu2Sjemf
zVKfwPB)q`UFBI8*p{t3bG!5e-hc^qOxx+6O3Al`wVYCY4Qb%tcMmvYM38Ss}f4`^N
zhtWYwN8yu;O4t~tPGMZ;l<FKt7l(J{une_FyL%WtB#ssK6b=ZZm*d$xj4K@8N2IT?
zpRm7hj>{Mr#-K0;hwZB_BP0$HvWhFi80zq0VGMWpT^jbQWR47Dl*ni&cZ|qlmoZLc
zyl{e(J5l87FeW+5WRWStS6qfK41XB6#4tC8Kp4R=Vo{h;gu)1iu{MHr5k$g>hA}0=
z_f#SlhRI_ZL5m3DVI;!%K8zp2NQPmB@lqHY!bpXY4&(kX7Kf1uBOAu-Fy@4j3nL%K
z^<m5iV_F#e`|P?fKCg^xImo|yn5Ku%?LEj1^tfjr9d6+KtYUlK7{<&nW`*tT^_ci3
zAd1AB!niq%JHoh=y$EA&*xoIWJN3;A<5pF1Tln0rgWPg(J{zgM2X7DC8zeH(c|q9T
z`tP1F?hWHEwd8K6J=_R!q2sxTYmFW6X74J=staWw2xCbYkB9L@7!QWAG>jFB_K>Q6
zI1FwuxJ<mTdm;O{Jd8)AlvJ_box}z_8pg`7y+`6>s;jX3<&$AN6~=S&TqRr`#+op=
zq2kkWX5ZI_u`Y~f!&t8dKclhY28@MwBo%r}<fe<yhwYsnUr?ME!~b{3!k5E%C5&Ct
zH-@n(jE}<D8pf+U5MjK}zJ&357;ng7Gf@?>`;7LMc%iPh!+3|C)!@J9j2OGdMCXG4
zmM}gH+gp0lWXB8o$6<UH#`Z9_sS1jp=n#J@vravG0C#YbsLjl6z<1V!?Kf4C@08D%
zLXO^Uk*~to6UNu#-wD4_d%ksA#o;|z**^L|hVc_mrxBbV!Ovm*!gFB6-YRD=CrsET
z<s#S@#&2QnT7x4}_J{FT7ze`mT_%105cxBV9WI0B-;VyT$U&~M0#WWE@d~g#kA`t9
z43}y=F8!47gpdv=!)Pkc(^AgxBS3_&YP5^D^&)~Y5tLPg^Ms))cC(q%@+pd-I0APB
zCCc>(%L_||M}H|U_<Lm<5j?-qb0>_75mbtxas*YR*CvY85LOdb7qWP9Q`8i%<tXpA
zLLG;%+wG|rLB|>PZS9RC_U%mdBWNJfP)Maw1Q$5`!h+B4;wBO9Zs%?)yhup1nMm^p
zE_RfMVYG~(RRnz^=o{f<;O^EDbQWnNY#Twl2-=G?_fnA#!j2K{(pEyTlaqUyNI~o(
z-Zg^Do!o8_bdR7%1U;qn7WQ&--{I|7n~JW8*e7;#xSL`7DQl9je*^<W21YPQWUz3!
zaES2A2!=*5O#D|EcADfK5y4dvjErDZ1mhwYAHirjjEP`u1Sn%yTA_^XId@%ggEGd1
z2qwzmYGFTR1<Dv}0`^sLx=oh;<XYEMHkGIJM((8%_#+5JaC-!IL=cRi_ER3d&SP2x
zp$Nh}|8o}YvUdhZiA4D+AYuyR5hO&CLQBZyN&j0T#c7%3nFz8D&qa`T_}yiUFDJUM
zjbM5N*F|uB1Pj}HXGbt6f*BD!P{z0+f*T{4sezpp!J94J;lAgt>YrL>|F{107|%@+
z+#JEPWsF-Qc&n}ZR`I#QdBP9N7}V!0_cn#1d1nL*BDgDpyCe8*y=&ik7m=fMPXxb@
zEM3CozutAPoEHl3i(pX%_eZc;{`6#`&jZRWlzmWTDKb42!7_F8Vd3M#<q<q0vO@T%
zkmIv5g2x;_x-*^-e^U6AqpuQqTDV%chSilZSeyg?OazUi_5po1g7pzR$K@QszY!dY
z;DrcYjNsdd{U5|j5p0OylL$VI;N=Kjk+>y-jS+0(IvVbNCxTZ+-V{=KP2_dq8=U`>
zN+~kEC1o=sh;S=Hitmb(yeINLPg7-$55%j_E%{L7Bgbc}$j1?EbCjlKjnCAiFC*9$
z!FKT-PVVO-UqrCeQHGW^c8l|^<%L##6~P`S_v;A05l@vhnEPD>-z(q`Tm_ELj}iRj
z@SjC~iD0jzyf?9Q9}l<8{So{b!C&IPNAQQ^!`>Yq<vJkq?})vjV&T7@gHrzC1XJyY
zRduzfeH4y}AC2G`%SLb_0wanFQJjq6R0QWmQBH2BBRH$sbw>V$$gU_5MVY95swpe-
z-Z1;`B&Gr>ilQWn@=+8=;f~sEE9A0xX%rqs_D1b?GOLhF&S-S2sN5=1R1&EyWL?av
zDx^O>t4C2Iikebr)>UI_sjk`*>j>Gr^F>&^UKI7CXb?q1N4X%1M&hR;_8mSKI{MD>
z?j}(*jpCvxnnf`riYudN9>v8`^oXKo6qiKNB8tnR=p04MC|X6)HhS(GMeC^c3D-w|
zn<%(XHJ3)aDB8<`-<mo^(J_ikW%An;ztMGy+FN$htyo`6x<t`Uxm}~UJZgVA<hKic
zXP`rOrxt$g=@muqC<a6^Fp4Xp=%cKDQTq!mJ^MPI!Cto6U#(&(@<CB>_iyeFJ=pQ#
z*QB9Q42xn?6qBPEE`3xKqoWw%_*@mmNQbjiW1<)<bAoUj2UaiWWc=|_tQurjG%<>+
zmCNr@G+E0Oo*($#K8mpPsX{-Goe003vV{S0j!ZCWH<C(33fs&eQFUaicsz<k6n{l=
zAc|xZRuuO}u`r4h3l4M7iQ=Xx(otkM<%YYnQB05Gx+rqW%}b;{EsAT!`Ro--UGM0#
zqL|_E8$@mt&J->m=AJFmXM}w>5!1~IyM46l7LmD8%!}ey`P?mJ@cB{P7RBvRyjH<`
zM-+E)?KE_g-x<XMiL1&QH1`j8QD@A1<iPF1__=vs6zigRCW=K-+#j`-#Zf#M#nLDq
zkV$1ply7EqkuW_J#gmS{OyptV@+cmOVukpl9N4nPV^OTs@|irnluPMx28rUkvc`-}
z-W#4TK2g?qO3tf<jQq67YT+8;TDD}g{Y~cCDAq^uaTMF4c+T<P7{&AAFF4AJA}<Ly
z2wxVy5=G<l?C%nrqIi`9B9Z3%QM?|-8#3P%z8%F|BAbOvhS~$d^p4DTqj*nbfTB_V
zK<1VxJ{0*#xK%j+MK2vbiQ-e5Qa+1fdlcV_?-0^q7gv_UzYy8UT86p56n}fIJ?y)q
z_{#Cw6UEo!9MW&12%Kl!aGvp<l<ys%AENj%il1cu%xUB33s=~KxtEh!gnXZ}ev4wi
z<MVqIe~AAX#bf6g^rZjaQ5@vCH-_>t{1e5$QTx7&q8JWEahNCV7|O(OB#NU^oQ=X2
z!!iEW9#;N%6er|KPJbfrsW=(MDV`6T+BbEaj^a$zCd?%kNWqiNWn(xmW>-{D%8Ap5
zWtm$XvxB%}=Zcrc;EAD43~giZ#$d!yCx*Jptq?<15tgkeQYnVYj#5RW(12><)rB>L
zHHEcesO_|bLC%k%Ud(Pos~GBwG?80_7#haVNStmL#&Chd3-KGvByXxx7s+fUY#zhK
zF<c_vQrJSsI2+G1m}s)b)<Q;T7vr<icHeIhc8KAM82ZG}QRbyFbc*3JIn$>{44q@>
zqO7jMZo<nohK$x-COr$srKikZ!rnsq^o^lk3^~Q@AH#qcCdP1e3<F~r6vK!Zu8LuB
z3`1fVrXp7=_)w=fgBRitcPeFfsEmwZOblaV7!|{4=Mb|xwq#rk<71fcKO;}EkVP^n
zhRHERV~E8tC5CHa@bgkn3{zDjBm4fRYWfFb2*nVNAtIehAzGnT1=EZn9)lG_Du#p;
zC+W0`4QB1>7&0+romLfsP-kMOyh=?IUMrj)!*wxSFFr%aBJ^ZpksGCu&lH&z!)%c`
zj((HK&8m(Km>0vXF??_02NUySxGjd$F`S9v_89Jn;e{ApjN#507R0bJhR3*Cmlxj^
z!vira5x-k_PYn0Q>~C2MW!@*G=b{+y7hmisC(kn;6kjSVJZSllle;X2hsBpW$|E8x
zVtCY1s+2PxkKu_Jo{eFB3{S@Jl(JUE&Rydz#ANMH$FN#iYn-xcV_4_#XGE^*ZC`+W
zPW<_peT}-1D83ZKh8RAK;iDK{j^ULUHalfE#<0oZh3a0F`I_+c7~T+hQ}~v!c{%$!
zHq+ZO-x0nW!+Rp{3qKIjXNySha>mveK91qr7`{{6n6)j2Ph$Ag@%%D|&&0Po%8nR5
z7yrUhc8VkdcI~@j*zM?FiR_8tYe)HpOU7yE_c82?;WuUd5W|m-&rc#h3xA1WugI@X
z?hWOP{W1K`Gq$7rK_dQV41dLNK>TlE;cD|iaklO9wyuB04+#$oj|h(n>BGOSj*Fjg
zl#?->ayV}^Ivaz_#Pud-n1G2gCaRjKW}>WVuaU|^PW$srlrvGpY2OdU5-XW-n<z0+
zo@A$|g0R$t$HdI8;NA{i6P4E#8>ao9O`0pp85QMIxC@TR_*G2%q{^7Y>LzNKxK_by
zny6*s3e&!|ueKCAw~$%KL|qf-o2X}^zKNzLE;7-;L_-r7nrLj=x7#%`ae)XqADCt0
zeRqW?XPZbb+?ChNL~|3D{Ez3w|C3uN%XYRj(aJ<?6KzbiHF3Gx)6PVD6P-+4W}<_M
zjuI~w{&y~7n+qqU&L+B;==%T5?Pj98i5@0;n&@Ssw`rdh3yH-^I5Gw7W1_E#ekS^x
ze60hfniybWpovi?Mw=L9Vz7y!CWe_9V&X~@m#(w#CFV(nq{lk@x7BbHBTQUnVx)$h
zIz?vDt>8c$V`8j{i6*W#`F<#jH!;Dq&r}8H|B6tVWMVQ~zRop8b&(Wu3o(5r{3enn
zEE53}K@(9EF%uyZVH1)6iCOS3G{7_wS5`tX3t5F;&>>|aZ6a$Tr+PF0Q*Xg1Z(^E?
zvmhJ8BGfsI(@k8b!6)auy}`tdCU%?n$~^a}G1J5>6SGasG4Z85Z!&SSiS^>Qn3!wg
zVH3+u%rkMTiG?Qa<N4pjZ6+3&xXZ-ts`m~PcdBiyn(2QB?QRqIn7CKDY+j*j1zg05
zZDNUu2RZ!|=K;B~cp=eksg#FIEc>7M>|LRXN4UyNtTwU6#G@uwnt0sA6AHy<JSI|b
ze$vEKCRUkvT5%{A+DR<5iUHTkpXM_r);WVrPb$wk$K^Q_&zpF`#ET|AFtNqNOC~mG
z`MfH8S&Mz6iC1KDHLdkxlXC{(VtmcS>n7eX@g|RgiFdgYAN0OuVl$TjSN9bAx*{v(
zd4s9Yw)Zq|-{%w>VPE{`iG})yCO$Ipsfo`_Y*qY^O>E-`=t+65-%rE~OP*pu-)>?D
z8|=mBDza1f1^ZIYU=bz;-=(9^DtLn8%-Lh&Ybgcu8#RXdw;HbRggjsILK)je{L#cu
zCVn>Yi;2A^&Wod59KV{_XX3DlBPM<`v0nlI5&kaxLvxaG{xtEI2~Jm5aX`pc{cYl)
zn#z{bWY)jRI^-P9qb81-I4P0m4LTebCpjU)#-B2A+L`%h9Pz9PSKRhT9A)At8@E?|
zq3>)ANl_fdad_h};&988&gDf);`ZkPO`h&brFeuaSU3Szh@)a0mE!i9t!f<A;;0-)
zmAF0rjLd?CZdRv{)7lz}P&1BNar=~Bo0U2z^Yi1V7ssIa7(5^K<Mx%wWz+ERG&G2#
zVH}O(xFC)zGU$`Rg>f{FV@4V`q|qdfrg7YC;T8)Q#nFsyNTNy-&EvQ@4p#z5;F366
z#4$ULIdQa%qg5QCIKpwXj-yQ+{o?2!N832sF@79<;%Fa7hd8>#(KU{aaa<b5_bt49
z7`9U!e`wNPreP#!>Kq4k_P0z=d){6iN4L2BD*5hl^b{fQA@XizS1*y?!n5TJW-U$I
zJEHUX>%Qz!KkpY$dk4fZFpjZtjEm#`ah^eO?49Nr8pq%`8Wb7ri;N*`VUcmAa8Qvk
zERNyq*CU=0ag2;(6pKINxhjrTE<EM3(N|=Qmctm~w{<;q9?!7~daj9MY8(^9X-*Wm
zI*v(>GC7VZ4u7pBd~tirEOv8IkwM~@8Hgh&GE-tCj%XaspYRME=8nZ-#*vR>S{(7X
zz0(n2sho==5l1qPGv#c>lAekq9Y;o-Vm6LfiwqLJd6xK2k@5Su;sZs-wHoSKoU!+m
zOpoI_R#eWoo<kSM4RPEU$4nmIV#6plT5j>=r+L2g*%wKuWaA$1t)81WRpL0NAh*OZ
zH;#wmSQf{;IBt#Oo;dDh1LC+Xj@#q7gOhVtQDIL}5~e$OP>PLfhS^VpE>P}W!n=ii
zyq<+|+{cL>$EhR5Yep0=ii4OgHs&02-OuJ7bG6EN9#HNQ;e*1Z!uyI1mU=jj<#D_o
z#~X1x632=-o{8hxI3DH7n&NpXZa-JMGLFaMcsy=D=KQ3P<OvZzvP%B%B+sfio{nQR
z58tAawdya&VNDz_7Tagtby9|%Z$E9Zo-=lm=ao1%#_?Pn&&Tls-QswO3z>-z5w~$O
zG5*$KqrhK|qse_9@=bB>;buQJ%LuQE(|nCx$QP5m8OK|3?22PINBCaP<~TlxV+&6g
zalFI!w{gGAA|m8J78~z7{A{uDVH_XD@ktz?vR-xVW8oW<J$$VRYuqOD&5yjF#j!n(
zi`uw%#<3%g&sEnKoV0F(l@1bygpakum-3vox%jI%_QbI-j^E<=I*xDR_(fy;Z5-dl
z@nal6#q9^QzZd=x2OnyVEVLifp6@n@Z=7-ctSmme%}1VjQ1+_$uRI%6ET*|Xj^E=r
z7{@<6X~gko9Dl39e{n6eaUXC7w#jMxaqRkYN(zUMk9hwZ$Dug4*#{r}rpbOCQJaqn
z`A{>Jd)&rx9l;aAlbk<soaPa9dzsF1WjXw46I&#fNuX>3w<It(f%6h5m%yL|1}9LI
zKyd=~5~!bmJAsmfy(`zKJ3QqRC{3Vh0@V`st1&#niV1i{s2Cy@5?JtHG0jRcD+{X#
z*SHPp)f4#8Z7|hNpoVzO1ZpMl{G(oq<it9TSy$%yLOL`^pkV?X66lyfqXaHUpj85`
z6S$Dg@VlEPa1nF;?#2l;5xIMui)OO~KD)(piLkkl=EWk*?kOg3kw8nChusFvHVL#%
z@cW_HTVgEgZ|^b7)GmSciF17X@RCat=-J2K&9YMh+#s%Nd-r7tbWWg40$mdrkl?#h
zJxrG;&|SQnu%~5<J)GR0BE1smEpmmhkFc+>pO8iRC+zKdNCr9z0}e^x$^>R5Fgt;v
z2@FdhmVlYSqwjgRPtNcJMkH`m0wWXfCE!nBR05+DxH^GJ35-c#Yy#sGn7}bCF$OOz
zA&yI6#$pc%(?scg#VJl!ktqpWBb~V{GWCBri!AV$1QG~y0{Baqf(eAgyL{rI8FBQe
z$cz%B!Dw$hflLC~1X7zz5((T|Vk8r=XtK?lifA&WrPItMkWXMsiE%>$za%}=61ZOE
z+61PHtSvFFa|j)nX2?8p)WuRaChR{TW-0>7oP_<n;Y|tLoIsfmJf(fT+@19nzkAqs
z_O_z)SZM;!B=Bqk^Aor&fx8m8n=4{h(e0dOW8HTq?46(QNPxYl{kHeu&7})Cw!J)@
zz4s(=Zvu}c@OT0X6SyydWeGf-K(nxCA7@ko_b0HJ%c_=#=|PbP5?JCWg%_hQP2eFZ
zHOd=wYdEHu`=j<QZ!BkH>U$qaU<D7fMroxKj?d)s2D6?>;Jdk=bqRje@jRKpQwgl1
zTZQ5^T)abzpH5)4%nsvR6fYg;qPSKH`P}lx*nOV$oMQ<bP2d=pVFE8OU;^Lsbg``D
z#ROhX;1z}~Z@eVjAly^l*qFd3E}{gsC-7<luO;w4SA7DnC-6oBZzZrffqrdJ)TH=L
zo^S#seV+3Y-%jA21m5K$lE{~Xue`<n4C0qSzQ~DJHfV0)@=st}0-q#6^P>c|Ch)O1
zcgv)wtJL5|h2)<maA<;?>50W2nyhOF!*=rQ<Z@2nbMY?{U@lAj6tdlRC9o%fuM^mv
zz*ov@QELB%!CWfeNclDaimZiVzf$9e1b$55cP_w@#XlwRGmqVDFE^Rryu<rT0{ht0
z9bTrr3H&Pl&OaWSzlra6azmvCi~o_ppNd2NR{{sb{}vt;{v-TXNS{Lq9Cr8-kz<>S
zj<ajr)ia55Nt{UFWCEuWIIX#H*Q=g0RIVvO(#EsmBrci!Iz(P3iLx?hmKrpRk|<8X
zokU3zFO=F}>b92J-w?PRQ~9L5DU*>zsR+3z39rMCl^PWsUQwiyu$ITDnnblEUQXhb
zB&sJ-BZ<qB=$u5&Bx)s5JBd21aaR#HW8~ksBz2QGKZ({!v`L~~67`d4#xL+mRNd`q
zkVL~I8YR)qW865r<botFOxoMAK3c)sIC<{3%tc8w5pOE&J<$FhUf|DtTQtUFT+HA@
z-QB<RT$04A|9V;oTMApL2*tKZO!FArjhvp@&phptXrDxfB<}MV&w7lG4!JamPDxPN
zD!mK4%=RSh_X%FkMkWzTBAi6`Bzhz<B#A3Y{`K}uVq^;sUx?5viQZDKNTOd7{l)tv
z(N|>5S$h}F0pf#_7@WjF@#|Zj+g&s0?4>z0iD5}hNn-yi-r-4%NMhn_Z~MKTt5{JI
zW0M${#Hb{m3lxt|VoVbAFG0UfUg9lE<l~c=ki^wVOiG>;C$dSMyya&V6IqbX#K}n<
z@fal6Br!FKZ-&{)r+WQK1d<4fpYa%M39kndBS}P)xHgIDNyL&clSm~o+H1sl?D}{+
zd+pgpl8~7cTEbdh<D-?{bP|~)vPtBUc)e;d(=?Gh2XlkBpiJ?&xJ|@$jDJn>yd<tq
zVnz}-BynRBOG-Vr2xlfSJBc~svxKadgm_aDHy8A*y;T&8%uRw>1#!05xRqtS#{491
zOX7C%JA`*8@tD_O)&}8SN!*>pJxSb~#M4Qv<~X;u=iWljmLwJ>aeoqzB(bWEcX1LA
zB=JxZ%aYjH1xu26Fo~r}eA2~k&#y~MNPaECHsaEfhm$rgS5pfP)K?_&Xc8;gfFzzs
z;>jci=*9Gp%Z(dfGtN`2ONpF`?}=t2S(C)tBsOpX8U|k~x{ec=%Wz!rGi=g64-;QD
zx}LK|;`726g)gv!$4d8jjhAE|_Zlp9db>AL?A@5erX)NTycS+f;x+awi7$Dil6WJD
z&y)Bfi8op4WcLS2Y)Rs+BsM4UwiJr*CGn2K-{pGOJLcY(Qs5toe=7V)xHXB7lh`Ky
ziSWPI$uZz(Qnm|e?hs)p`<Ge=dqV?$f7_MB?j#N*@plqmC9x-opOgG*f&I%pCq|ck
z&FP)Qw@G`a@gI_yTw-7F`7Vj?rQD%C!+(^{te-erI@&&ac}l#egg;6C;!#UtUlPAb
zq4)<Qi}MituERv}Pbmd+jA8IKB?puECyCQZoZ*o*y#FR~OoaSU5{DgrB#EOAXF%p2
zmw7^XQg}+WFzc-2d7cHAWru~ZjIgYbV$LwiStznlY+?1A9;Olzw}rQ4QYmktRASc)
z%F{F~RIqT3g{c-QTBu~9wS_hoPCVzWY~d0MEi6>AP}M>;3)L+&vT%Wg8Ww6=sBNJR
z>ze7QC0x?n=DVks*0pfHg$5ShGz^;cEYz0+b5|G!6Uonp(UAH~FZqRRL!<H+S!iaV
zv4tiUno6Pgem9&p3=*d17A}@fv7nIfC9sF5x?5UkW#Qwg?t=O8XjfYc?JNwiFwnx)
z*L&Jq7}>A5hlLInI$F5Y!i5!#%Pe%JgBzVJd)ZbRThhfsR|}V0=w_jZ8&rtQJrpYL
zZlR|eP2Ta4AAH->(?Tx`pG@=g7WTDpg$R{C7N(f)JsV0o)j&TB{T=<GN4<kA47M=b
z!Uzj{U$ie}w5ebW;eb~#t`rWnFid3555*KeZQ;4f!l(+yc($L!0+rFiaTdl{7^{}|
zzNwfxqcPS0%{9ToMD|(*CkrPD8RyH_Jj5v$QWXr6#!ca~5U~(d9KVHtg`j1>x-LZC
z*&Y`9gq3^#sN$Ff(?ZTd-a=er(t>5#w}&NU7H%g?Ny%79i<EKh?8;j9eQR`Pnx?Gl
zh1UwFTe$9j{AXCW!NQFeW?GmdeU^pUBCMrw_Zs7n-z2f1%(XDj!uu(FkixAN=38*5
zP?ExJ7H+q&#lopxZeGZGpn`FSg*z=QuyB`!$1FT<;cg4}SXgM`J`4A9V(jwVIn3L4
zo9DF(#?wQK7g@O9!cxnAt<Pe0_Sa<|?(*?~_!0{bDsjYiSFk@5AF{B_!qJt*4+~dV
zSS~{45fS>3KPtXbL1;c<;Ykb6TX@03Qx;ZPSZAT0-}AJE=9hSWJL_64^8OE=o)3A}
zSXj$x`H;;IRxqC7?7gb^S>bvi&F4g_Ry257@<pBpENr&$l7$TxUbgTG&-NBxvv6=2
zPHyyWw6IB>W<epoZs85CWy^N>Pb`r1UQg$W#x(=nZ(DfB!n+pU<KSD^_DjhJ7XDrA
z;=8fFy5GjuKa`{^8XsEt$ih}GRSTzwmETQIt`44FW_Z5jtmc#(?Y^y|@r8xY#J3A6
z?y&H=_^0=I3qCt7(DR9k2FvbJg!5W>zOt~#!q*nQvG6xLV&Pj0-&y#BQ`*A!7Jjho
zeI0*g*?#!Z!cP`{ma>QMf3dJ~h%N5rks5FB;z;q`ipD+*zggHXH;TXWJlVWF2@~D^
zlFm{z4+t6L!+!XO-M4VY!dZ!jc$6(1vvAnL5miM0PxO|P<8nC3nJIF@!p@2YbL%d%
z-;;QnV|9Vu7$TD^g|aD}m$Iuv3S~sd5AuP96zE(e<*$lHp;U1S<ty3I%BN78!r&B!
zq~J+`H+UN<R7ly2(VMdG1?6n4m_nr#8l`YS3YAl+lHv`|?m8({P1*k%@Vj*F6sn0=
zPoYN2{#UMM3bmy0F9VwVCy0cejVl>^rElF7+Ep^nXUzGf^-`#x!m*y-1}QX5*?&C`
zt7IfA8Mjt4c<<kZDRfNX(i9q}&?JSXDO^PV!R}TmG)vjrwqGJ_E~I&}Na-jqd5aWU
zI{J;RJ*`t{lR{e+XN2}_gLvP`B{VyT^HKwOC-KWu=$67|j(_JAx`=mmlxHg$-Bak1
zLVu^0o+5pOy;A6%!WAj}c9DmTVOkq2?(2B=6PY-|J-|^0iVRA@Jm2=eGKHa3Qkb5?
zuoQ-;FfoOzQy7uLRVn+jGr#hU<bkN`9?K(g(B7eLR0^Y07?Z-zO2*+z_Nk_6Wuw6W
z_qY_sr@;66F-=Gz(ak=4PfB63YD}ci$LF4sf-ePs3fIV-nmYHP$&b!J3VefAD1~qe
zLAvSF<N>}KEQM$aaVarJH&ZyImtN70K1?J@Rb-`*N+B)I4(3EMDP$dGcx5B+@M$75
zXO&!+!u2UUk;0QH%t+w|HYSA!Qn)dNnLLxHFh7N4Wn-2au&c5$JB2wZ+?2x2Da=dR
zmxk`DY}}FpajtNEWn<ul9-2l=yKT3naC-{(q;PKvccgG9eNwnvF`0X;vaukAPuhCx
zRxvtMF(y<oW>qoHyjZd@h5J&tUvB)-bjdvXBYRN_3#-_}&cr4yN#Q{r{duL2av@YP
zmZtDf3d>SBYj|kRSnGK>h2>m&?Y!h~S1}I%;CV#m3L%56OxfEmJ;s^e#NJ`)@f5zR
zVtl;a`&0_6Qg}IK@0<N}3ai<L;qDhxSR?XG3eU1eaq8<t8jNtQ7kS>%pG$!v9bRyh
zQkgHMu)$I2@Jb3Bd0I%})fC=JVY9McOW_TX*BwumeN()Vf-vmcGT-IdK%`I?_4i~}
z8{yiL!iPM#X?sidk5bsmGe#P<)A%@r%!u+ortnh=+c@~_so(u6XLSl+ihm~DF5Dsf
zT=)ggdsPiOGwqV{jc|7gUy1Ayel2Vy&u_))|DDM9Dg59lU;pCypq1z66#hx!U!FJi
zdw*fp)Y82v{F=f(9@!N3r*I%;zXXAso&KJ}pIl`r{2`@JRfBpVi@79!OFt-F8!w@9
zD22m3*``r3jUy=>O#x|?N!wd<ALCR!Ty&aqtTK*^pGe^(7e0&Y4dcw^tIU~uhHLP+
z>#RIoX#}ep%qpA4d1-jk@TO5NjiR*u1F(D=#UgwXjOM&5U?M4zIev`&3$aw3zZ1!g
z^f?D|DwP;e_f%I+qjK7Q)pC_I_%`H6uXGO|>8h4S^)$$-)JUVI_^^?#()})CoiysQ
z8KX*LX`G+7Ur@NDm3v$o_0p)HMuRjOrZF&$L1{EfBl>AklQf#9ae?@S!p3PZF^lWs
zqBNR`w@;(F2=#U%7Yi>*qlKfl6lo=FEo>ufE1X}|U|B});Kc8k#-(X=O5?ILI?Lw@
zVV5+zi*yyT)a4@GgpAfhq^FbHOQg5($*M*lk-koDKau`v3=nx$%@~}<kTgbfpqdmj
zU75!4G)BlAn#M2@UM?==UL|u>8Y3P5iSOH&MqQ^}V;p5{8YQP)6vwAAAq|fC#5AU)
z@!}x&)oFZM)!3c&OiF_|nFsWki{zR#rl#SOPk_@Y4ZrxTVXmITT`U+%BO)a%q{1T-
z6(^x-rV&pgkw!8N?$Mn|!%Ex#@-wB=NICpeRf9^CYDShd{#=|(W9(&~d>YfzxK{i+
zA;sw;!>Snt!vDG69E=;&n8|sVL6r<<r7=5==Q*#^n3Kj$X{=6TO&T|+aZB3%igJG%
zb2*vQxHoNo6}eS-cN+JkF<<;Px!ul=Zz{Tj3owlZY3=-$w(nag+)GwK`!)&hx%(x^
z7p8Gv+P=??1sAD!;Z};poJH$g4=C)CG#*T2DOXk+%hGr(jmOh?IF02B{wPf^9!X<`
zYJ5~X&QW1v)hoG<M4piIlW9C9|3a%)rSY^%(fPkdu1#ZI8qcX}w(uE|XW7lbxn{3d
zgPCRbMK_ten8ubgK1}1KG&ZF1avHCs@pc;Tq_NS7^J*HK#Mwc1_BHX>o!mD>-b~{y
zN7*dW>(<hDMc&sqzo#MMaIxwSq%#!9ljcV}Wo1w<gRT4sNMoCFKjAEOihP#F_B8%V
z<3Jia()c`$AJX_SjW5#JnZ_PY;55EWV;ARh8eefeIycT0ZjLJ4i$(rT8sDbzT^ipj
zGWGx0^QSa^PUE*U_NVbn8hg|DHI04p|1TORQlTun@Ov76@PkYTohJ1H7RcXe98BYQ
z8Yj~DM?nsyaaiPEC*~26qiGy-TK->fl9OqiO5<!At_)7AmNQO4R>Z_sA%ij*`_Pol
z*nR)sHqb1}*n`YeB2t{O@7{4|&P|E(PHt%io{T;57{{A|AzmSaiW&QMP~KI=ySyr8
z?EAZT6Iay?s%7jgM7m~BJ%bt<Tr9Jukb2V$YGqJ6WAA)YCxiMKG!U;VJYQHZb8fd2
z`ZUbo0+l6iq+ITWa$yFI#hWOrusaHaGhHO5nXtK&%d(eb&?1ADD%C23_8D}@pmhdq
zq_oYTod`X-^9cizFm=q}vJ5(BaH(=T3IEIOB9s1wBA2VWZbG)CyGV}=dOAw440=19
zR~q|f&@Y3c9Ex-3pTU3(PGoR0gMk?g%HWO+?#y6t217DPWRT3@$_$2P;LjkC!LSU5
zXY37=ugQRqGL6XKDn=H!zxFGO`zMbR8J)ox5&DnK;LlO^CG_#UpK7>!LIx8vxSI2%
zq5GO2y^}MTB>v|FTVa|a^N$Jk2mMsegyC+V3bIlL2`X$fgHQ%x)y|moiO7>aF%dI^
zxJostY=1pq;-5`c#=fCwnlL3y3p2uO2DuFK8NTnsLpLJLYcrUh!F3s2FP~e5GcuSX
za)a<j;Y=Y5&dOl6IKQRSyeWg5W!|F5^D>w#60BzMb|Y3%sBXS|ZWG=vd^zG?kilIU
zJf6W58Qh(*_pG}&gM}jZaFS@F!uv8<B;}C|?$6i{3p|v;vJ4hy@IVGjII%PKmWE4(
zg(3y~Z=XXJd04s2g)~=W@Ms1r740!0MV9)n2>Fv4Je9#JR-M7S8N4UA)m*|Etjl1H
zn#TsS$TMmls^g6ep3Pu=2G3>id<L&%urY%dGI%kAmv|~rk^frwvSTtxq4rG~yqdx5
zibl8B9EU<K6?(qOlfVdjpx%<(<_!LL&HHu+@5m%)*83TJkipj(d?Rs72A_#A>%$B_
z;>lm;#~EzP;1lsOmGG(KbA>kd3k=5g40dGjxufsO;0uTE6#0@zt(w8GOuIAqO5z?N
zw}_<pZ3f?Eus?&}C4Qg5Pa;1Ee-zSf*f9L;@Lw|6o58Oc?341Fqi?8YaC1mH|H0*!
z!68TgOXQyn4mir+860%@7i!+WGTEcUB1bYfDsn7?<Bn&n*|}X4Px0ihl~pc>GZ~!C
z;O#8l$-<QdvKXGlh%CxvQ8tU}Sv;_^_`EF2WnpAdA#4BHQIth#7M?7Mvv6lolC^&w
zGnLQc7MIP5g}*<%@-J|TEL$;)DiSLRsZ>@e5~ivWt7Xp>uaQN~ENW#@JB!P*=$u8J
zEb3;_B8!$;oS#L#EE;FgB#Zi4G{~Y+78hi3sM@*T&JDB3Tx5T%yig7#bUQHJ{)ek+
z*8YIIM0ima%^Zj3SzMg87hoX>U);<f^lX(y>nz%3(LRedQYf|+VNCLkV_Y4w=qP@v
z@N6erXKp8%<SWj)x@6Hcivd|ws%~5^y>}K@WYH~)?lOC*CB3rfDf7>p><`f5<~H`p
zqHh-cq!%jvV~E{xX7$hF?-{nwz$^x3F*u7MSqxPc#VfO5KzhD3!Tz^#nDn;Q?NPca
zi;-C@%3@-F_oysJXE8mC>#`W5V|sNKlSIa5F-~N>bF3$bOk}fH+lPK~7E`haXA#Nb
z8pp?<#Z-s;Sj7;}y?qdHlwcMi@hhquh4~ZZ@sbkD!ptI`MM7pOi=>Dpr1OZy_G8zB
zs~hQpgA*Z}MJ|hc7Sp6(D_rd4?m6zcK8qQgZ&}RE;s)i;5;EG2A~S{ae|OCmnd9W%
zl*P>s4==Kx=AOq{n#G-2+*&9iyv^~sU8KVz?*fr~9R02=?soVKeeA_@ugrzQ`?B^X
zdoNcv?$2T|mtGc2vRI$RbIN@%i<MbCmc>$;4`s1T<l!tH$znwo%Vjp{XE%@O(JVIA
zJhwLQ_`Ue?ES`|VTH%vfJT3B+aFuX}#%i@VBdp0{jd3p8I*HE+pA}yJM)C7mypY9P
zS!~YYMNTm38?)FT!U(Tq@v_4w)x=6}@1HH+l*OwOUlYEO#p{mG0lNX`+FYlG(Xoa-
zH#)*T-0x=bUKYP)v7nv%{VYDn;;St7WU(cS53|^s#m8B!e#`TbFy9?aG>O}?$acpU
zS$v|bPlcalv0Y?G7N3jIxp7M{k?d3vk}tE^<>c-bp~Kf%e3Qj@S$r=yuA^@`>$=-3
zk@!OvKRU&Ka@HXApH=*qEcS~0n#DezzEoXZA^CnT<gMj@&*BfBT6Y!wnZ?m8j%D#z
z7GHeenf-|803EV8$a7Q{|7LL{3yOz$#;#!;7SbeViVA5S&*DTDKMi-E&f@m2o|A0(
zT>IXVQ)*kjhJ7A5BYu`20XZOtGC7pZ+1+Vy9#$;zFqso^UJeEGt{Mif>Ngtca_3Nz
z!(BPtokRH?N^=;KvnQ}82QQs-XeiUjp@v8WAss5_P)WS9u!^v%u$r*Ckb5Mqu3^*^
zuO+N4WP~~*b#pjhq@J+8llyTEqfrhQ<j_8c4mn)t=$D8z7B&$!&EX;^w^<I&9e!~R
zztu2U5mO6^Epuok(puQY@obwzJMkm(@0i1-ISg`gJBeH&yex;#Idl>4D(sQN<s#jL
ztgE|7jhaSJN9iTfJBK-|?C1FUIC|e4`ib{<lmQ|Gg`W@g40iM(Ib10|G>2g#!*duZ
zGQ#n>Du=c=mUOCVcX?C}qa8g`(-@n>IGN*xz8ofqOcY)%oFrt~$s$v7xW-YY<}gEH
z{W%132<8yVVOkE?<`B*ylC!smP02YbOy&?1F@<p<BPVirN^vYHE3UOiBkkm7M6$wM
z4tYoaw5BmVhwEg{&*6GDCWl*P-jKtMA~y?X3g-xC<uF@h%UyOYOgH_Hc}os+Wm2Cf
za!3v1?!;7X%i(s3cL?uvJQw8PsbvrEJyde2okyKK7UpnY4oh-)Fo#7s+@G^wDEt5i
zXPA3&&VI!(&BCjMsnA@S!$Ubdo3sB`Tb9GaIgGDmJekAtoc$Lk(-S#7lEaD|9?fB;
z#K(n&e=r}*fq!BaJjpMuW$gOO%Lq^9uu7qx7Oobq$ziR?{9493k!Ku}Mb_u=Tn^9Y
z@Inq>=kQGqFXr%44xi@mSq>XGg}y9$Gl#cCUe4i_95&{#N#?6Lye2ZFmWyt$=kSKi
z6}9XqTwW1wW*>9-So%A{_jC9lhj+!_6Vmy!TE><fK9spNhmRb+Gk3pK9RK-t726#B
z6UTYGqkJi{BZtpLzHs!NBK2z<yF_*izjAW-<nU@&4<mn@!*@BH%Hebl-{<f{4oBqk
zV-7#@9FoKS9Da66?G^cjV^!U571OU$_Hl*Qw)_5j4u9luAcw!D7aISk_+LDm%_*VJ
zL760na`-2Qf4PoSmdafshvo2cZR2PT$Hb2dPYO@uP%c$W=O5*KCWo^*RLtAQi^-Ko
z**wmZ31J!G)+(-Yc@*VQK95o<#d(y7u#{Wmi~`oJV|T=phvDRUMLN|nDu^tpVvk#;
zJSxkql1KGCYKT`AR?B1F$94;udg<`h%%hgF`gO9)*3IMmJif|fPagaGy6ff9E05lJ
z)X$?q9u4zolt;Tf+UIdW-hLS2qCA?3T$o2=ktV{;P0%zC;+sv-TuN)<#d%yJ(jt$R
zA`C*eR^lWyncB!~>qO`vv$NyhQRLD*I_2&7^uJ6Bi+9PRtN7)@?s;?*`ABYb=#fWH
zDTRW3(&~yl2IMg?k3Q^6(8JU>kA4pCpGW@=wmvA2!Fk-v6H6XL^0+dOY#zBhhUPIW
zkEwb1@)(}Sh&;ySF+Pv0@<4s}$UH{naWVh#ukRjBaa++C=^MMdsEieVvW1)auI{c0
zc}&V<avl@&xLR4oJzTjSuFid2Q}Vbb50-j-ThU1F-Pgm#BEOe&`SS?m5zix$M=+02
z9+5nv@(ky3eM5J(Mt1Oj8o7t}uxlib<-s6k9@G1{FKXyc=It92QhB6Rqov&Ay<KCP
zxif6Zjv^KrR%DmW=P@mhS$WK+UdOmLj~RK~z&I*Mx9ilw>xKV^sq27tqUySDTSy*n
zaseAEz4zXG@4Xl4f(=v@eMzQfGLwWRiUKO4R24<4hy_usC`GU!B8pTMl%i6t|DF@$
z|E+b_Ui+SV?z!jIl$p8H`O_k-C4P0@nO=EzAskT_bjT~RyGXJSULj@`Vs;_?LUg`5
zFH?x=g-8`5U5Mw(hZ*hV-g#ej$zw}tKSRpSlt!@@cGp9Nm{W*H3h_kWphH;8!)*JF
z;bgHevBRDsb0s9UVqPKU7vi--yk3X}g?PLWFBW1I3l`$ZLOfH*$D^=NVpvoN_9wkP
zC1pFe&!eBGIa~G=Sz9B#q!3FB@q8gx7GhZ;ma~^6)D?p4AKEi82LGHy%kCm4_Su&A
zf@s)d?9!JCvAPiJ3b9^1uaT^^g<uum|5#*J?;wB;q9oZ^h<#ncFALJuD}~s^fi9)U
zUo8aZ00{^2jY4cL#5T_ALcCdsEnF0Zct^&Olj<$;M&q}oY<4Q1@0|B;A>Na$_qhXf
z%=>`Tpi>^nhn&Ej@;C&X8y^>9dm%n6#OH<BQHUG&6xmsbU4=L()9(|hVs|0-h@V$`
z=Y1*~4q2-{d2BvoV*p<;elgf99s8x&uqzn+SB2OwwQ~k?WQTRk`=$`za(YDJM{%$a
z-*Gud(I$#Rg*aS@bA>oBi}y$&ek{ZZ;YSN`ObGXZ<3heK#1A>mBc*~zpH3FyOiuHY
zke>xl37!^g5Q>}?@{8cFg1-sU!xN>{g+g599vDT%C@!(PxMN3A5Do4m{Jju=72@y0
zfd3)*XCd!4*O>gL5P4A)i6RsQqWG$A_{u1*l2TVhc@Za{HdRUn1+R|&TjZ@$Dys}f
zksk$fS&G7&616BIQCuIz4dO~gQ9Ozg;;mQ|*@7&4jcBfm;#%>^8ycykG%1OaQQR2C
zO;Ow&1%srL1+%%Oq9_wZ*(gd&sov!Zs4pkE<;D3&BSQ>h<C{fTQKcv<N6{dPhGI}9
zids?Bj-qN5)uPDytR6)T$*n1vtu7l(9cfp+DC$bqqM;%BtS^mfA?<AxMdK)1F`l6X
zO`>QT#n;mdcvIi*-9?&3(SoIR7iliIo87g$NK4`S7v+<)NSzINZKG%xMgJ%UL~(2T
zNc$){M$svX4pDi-b^8c!vAgRTt#cGzqUajMiH_QdQfm9q(D7TeZc%iPqDK@xqrvUC
zeFb|((OXDC?jGGflH?7#;i>4y$sqcHQ4EU0jKYdya1=wLxFd=?qrp8AL!%fU#e^t^
zMKL^z5mAhcVssQ^7~$q3?jr4$C`Ls=!YQ|;yGHWpjoR2~@D*ZQ6yzjS5^s%SVic32
z!N(uV^5-Z0lM`=?;&#!K)5%>?OpfBgC<>#P!ftf5`=Yo%io2t@N6hYxVyfs_oIj0&
zIQJDHpBBXfQP2Z9kx61SidYo7*k`l8>7vEO4@((zbw^-NWJRO9M{F+S`eBMABq8Vu
zCb=j|D`utG4>turmY<9w9YrRJ=~2vx1~*GDh+<|Gv!Zw`ig{7Yj^d$caQ8Kh=R|Sg
z+Q?0P!;jFWN708l0|(?WIadlkDp<F)qLbRAP<#~Ti>9Y&sC-<KPjD1O^Fs5yg?z~U
zBkidu7Rhk%*%sEan5~ZDn-soHVQCc0XrI8y1eQm!B8ne${HWtu4r|45JO(|6=c0H%
zij`5kz$F$79v<YEhZm#xAc_yU9B$KAMe$M;tD{&W$&FELU7)QM&fIlE)(dWk;$<OI
zZw<bdyb{GGc1x}Bt5Ix@;!VydNxsf)q;Xg;t={0cln$QM<`Jn|B<o!++bG^<6;ZrH
zX&BBTZL((Xi5dC(Y-Z`;n#(p0WfUqF+zRq>6x*ZtDT<$?*b&9fD2_#OJc?aWd_tcO
zgboFZ7kii`=L&ur#b;c?QS6W6^C-TE;!DZmA&tj=&ue}Q_DZR)?IZi5_~n}5OmCiu
zxNddiYxZyy-$rpD3MO}z4*r`u$jwbo7ynMkPo));S{Zd%obWvABSMY}@^t9$IUKC|
z_q-FL`H}O)(aH}C4j$)GkS9gS1E}d_%QZL^#qUx45yj~!&P0Plyw8fkIpMzu{u;$^
zLTZ;$G&s-sMxX48)e$<p%ufN1a<3rSxQxoros9iw6#qn#7sFrTkPZ1;2m?b5SHy5N
z`!*Id^U7FIFG-(-c2x{S_EIPogq<Hl(HO$Qv*(Hz#Gu6x`5z6<=rfyJEQaDSl!yhl
ze_t2F^+K+R;k!}VwK05kE|25}Ns^S5T;3dhV=TB){H9p2ns|%&lHrk3F_ey>OblgX
zXdgp|7|Jn>uZq-;p-v3tW2hj>iZN6ZQc19~AkC`8P*r&UGQrull<G0m5KT?NS~<&c
zkLK4E-Xy1~C#1e$1HpzdG>V~d46b-PG%cSFo5s*AhUQ|>T9C>XF|^F_RxvEk)!s&w
zZ3WxK@NpS+u#D;$L#G(-h~dr{I>*o@hJG>h7n`mz^vwC`CZu}|J%miDAMB02a=E=Z
zUc&q4G_&t47!boiNsbj96vMDw?qDH9Vi=m!9Pe5%Jcbc5jLd09$8bvwqa=C0jJm1p
zzkN6+hStKz#V}rSCkRdwyfuc2LKxn-&5_%L-!7<c3=VUq+!e!vqM01Slo;+7exKky
zg7*s2aw-S?s^CdL%Kf687Q+KV+CLK<240x6j0%Yf9{VR`#9%T`9c^@2G1#1|ai}<)
z7!oloiD4<nF@|Ie3m8NHqFxMs3=hZfNGy0^Ybu7BLderGWW;8=XlOh`l6;{m`7GhH
zCF>!<IfB_YuFj2No*2;bQ6Z1za_M<K_va0HB#(3H#qeYd3uAaD=lm%li*m`Qr6BF;
zin3VBk}Tr{i{aB4K8s;R49~{!Rt#@5H-_h9SRccN7*@vcLJVuf)r*3xbaf1?Vt6U%
zpPFni#I;fvov(`_+f4G8W7rtOE4i3A@zW%R&0_gl46o-bSv>oy**C<J$v4Gj%l}lg
zRrm)nd>F$!F}y3u_i_z<KWE8GDcfS$9>We%ekAzu{}}8PzFTlt44>q}W4$c9N0KC;
z$M8iA-^cJn40~hvQuIe+*vIWChQpHFFHR1`@J$R~3(q?FHim;S9FhjIm%htoWqXXy
zvt!NVQOP<cmdC{>v#9@3^yg!^5W|TWPR8(43_r*4o9Isoo?)pNPUkv-rC9ct7=D%9
zte-5N6AkNSco$>1#BDr|E91B<`aikV$MC!Op_4yy4r%{)4FBZ3F_{+!;&|t#2swq$
ziC4vg<&Yo8)o~PwBP7YNAobY}p=D9g6vUy$|D7RJGPhV9#pBo<$D47Kh~t_#hQ={0
zj%(w%E{;}lw2tHYIBtleMjSQcC>h6%;;Ne9O>vZsqg)&}$5Bc&r3K3fW;W(MF0-qA
z92MfIBFc(_mEx!@BpU`B&S1!^it@kKRgeGs&gEKh)Q+Q><kpF!ZXAu`Xe`Nkanz5a
zLC%s+Se()@*V1f1G|72x`ak;SqHH19GUuU99Bt$19!HNj+Qrd69_%ok1+)FxA&!nx
zq?2G)*+qC)anenAw%(p`^onCp9E0QNE&6_O^pB&D@V<iC<_{45U;G1eaSqApX_n0$
z9><6{GI30gV`Ln+#PMJpg>j6EV{{x-<G3%5F>#EI<Muf2h+|wF<KvhZ$D}wWh}&Dm
zCnL-{B>q?LZDPRWopIb1$K7H%IcuLQm2EO@?up~xT%6evq|f`s?14C@3CV{2pZ{na
zMjU1wG3nBH9D1(j>4C=dV8xM$!xg>FPl5lbH<|P43-JV5Fcn8S=O^2)8F9>v<Ape0
zjAK?Dv*UO&j)ieN6vrG+=^sMN%BqKjJQl~iI39^(t|U2W9~DBI{$&+$ejJbIGz;Q<
zXPkC_S@lFtlPs$k_ET{@6UX8>7D-4?3o?>L8}gRKv6QiiW?4?ZB97%b{z+N&Y>xj@
zR<YFcl3XcxxvW~1%Y7w|m*Q9*#~RVBk7Gj|Yje5lgxpvz@bI$mje@PpscipmisMz$
zye9a%AhX^O!cy$XEpfcX4__U{bi5tM);NBM<45j1al9MHjyQJ4@t%y`M>6#9$MHcN
zABrYB*4so+PH!KJ=k2+QSjDb5K8a&r9ACw;JB~eZd?~q~3Vts5nRshbRHOYDqS-6R
zWLC+T_e(9`#PMw$UyJ<#v0<e&I~d1zaU6-`s3;GK@nMe6hG0|5+8m4HxD4X=Qk(-#
zVJ>a5-E|_)`%-W=j+1fxlxx(_;_#H<X+efWhrh(}YaD;Z@s}uni{pG87o^lV(a`6`
zI4;FO``@|$i;^v6v@D(_e@HI7?(aDM;jXTuh>koR&;zq8^<XceAL12yus4!lrT@F7
zXB!pLk*}kuj<6KTHl#qfrXwPyvIVmPM7PCtl+aN{M^zoy=(tu#SsmqcT&LrD9i^nm
z4dUTO;Vf8E2+NY+q~m7EW!F(tT7o1glMA4{L|8#b#a#TAa>Xm>G}&OP>8P%wfsTec
zYUrq`qqaC<E*nxS=aA0p=%}lso@lZSr?P%7*+@rY9ZhsJ&H2yTG}F;sN6TD<RJO<&
zu!>f~vzBdjoIX_KVE6E2I@;-IuLlPQSp(2PM@Jo<bad7+R>wFUU37HSF;vGe9o=+v
z*LgISwzpxphmM{)2I;~7Z@qN%)-gcGjh@y=u%C|pLi*~#4=Cy><di%9$Qvj~J(KaO
z;lX-v_`nby_tp%O(-&)V$47?i7(wSBMn<yga_SZxuN==Gbt*D)Rb-S7;%LD!9L;fI
zCdccTpd+dy#u{}@WbS*BNjlE=j+7i7nOsgS9Us0;$L*|I$DKOvVRbt0(y_aYMwy~x
zvW_js^T^An$lW@YPLI@kF2dwg9rx*YP%Q7)F-^w<!fD3bzshJ&cm*Ug$|+)@6r?h)
zL)T&GFm)X1A6Ymd?0ure&PFU9wvJgkX6tZtBy^;7q;<GDmXuSTU{Y{LIYo^x{Dko9
z%Bzfy8JxQ16=gbG>S|d&Q<TlA?-zPV$HO`vp{8GG4yVNR!Erjn%Kv+R+FTitN7)Yp
zgL~5E>6ou$fsV%+xsGKzp3w26j;D1zqhp~MKcxq+lA&?%{ue!Xk4!d6Ld{}EC}!kY
z{c;^EbZph}4*&n*TF~*D9^3%@ypEMR*6Y|H$rp627Q(C-b*vKpk|19VOy!zf?pht|
zba>^}in~M9zpMv0_ip6m91!M>yS#ar$yY?VN$^#{<>l4uI^NK+S^T^$$RclYprtJN
zTb$43gSV(qP7Td_mklWv`iM#$@9Dw6bBEuGyszT}9Xwg_fu{IS$Tl6n&nrsJb{#u(
z?A7t54n8!!Q^#jQ$am@Zg!4p_dvtu7)B8_^N{$O1D6eSqxhTI7yjWiC)6t@lc2LK6
zocTKT>-btU-{|;O$N|o%Dq-4CvV>WObR5=kTnwl`qT{HJW4VIV(1r!GrM}PUPv|(Q
z<7We>4E#i*;~W=@j#Jzjbo|0~)IWTNQ+GgK_I?09SbA2J*&73X)$yAonM=zHIxgz?
z$O!)HyQJeXm%o7l27cG^2WOyx76$&*@fUYI19c2^KN$L(Gk<yHdISIPBftO*Twx$&
zAk0$pie4#rwSlXIWILStA_lTN-#}3V#S9cTP+&ka5HX-6m&5d*Jqd*)Rl>kE2Cg-5
zo$>Eb(u@xOGp5-M21**Z(ZEdxDjKL{;AR7F@6t*eC}W_M@Xxvj8cJCM<qVWJkkwQ$
zf{l)PrQw<iilnlEDh6sWDh*W)RFmS>C7Jc`U%{FNYW<IM+SfHu&p;ysjSbw_CwwHO
z)i?0qkZ=P74Mi$W)hKl<s3sh~0}=iq$$#cI-x_XefY{8yJN3dOEe*6Xf(H_N8)$8y
zje#BpdKzeJpq&w%0m%PO+Z*U$psNu)x7E==Cn2Z)%)9=tyv_!?NRphn*{88cx^V<W
zPabcKUIvzR4}UaUThTz{@eVvcq>og}dix6L$L5R-!Wd{^kP&?JEH^ONz!0|1!2Je>
z8hChIc)WoL28J1Uc8oUMzz72)4cua2l)=L;u<vx<TV1ptJ86R|s4)ge#tDuUq>>s+
z?GGZ8c)ktWJ18{aA#EaCdPtjO;5Gxd8@R*36a#k~xYNL01|~}`4H}&d+ZEJjhqU*1
zMwq<Ez`X{ha<C3*OAl$(Og*Gsd00Cyxzh|hU|@!UnFe0!p*?6IW*}~$(7<-S{6&yt
zZ3U$pFbuc`n)EMf8rWMwy|5|b7_fxX#^wU7phyzAQbjAOqyf)>Zy;qLBV}1UZ3K4+
zlTb*e=k(Pps#%;o*B5=-z%vGB8+gbF_M$lk9yRco@P`dNVqmWDjujPUXhk*8z<dKw
z7<iIhQBf^0@VEgYIcGA3WTAnlsC+51$UypZa4{uSQSG=Qyr`nuQc<;9tv%K(Qu>9^
zVgpMIkWiKiS!Q5=MaAR_j;4X<3_NdOje)gnuRM;y9eX8b>43Z!xOfMIUo@~v$V&!R
z8~C}RqVnoW0j@K!-oTp%wiwu8;APIq0pT|cY&7tSfmaQ@W`GZCY%*|mNZzP%;VS$G
zo3DMB<k`W&qaTz(qk<iNvy^4-TkJ8`Zs1+6Ux|k{TP1)St_k9K&%pZzKH%IN7Zm@H
z8;j&t8l2~c!CaEE*P!vh@W))F1H;=5?BLQHT(Hx?E(4z!*lplj0|yQ4;V#ioTY4tE
z-@vD=j^om==;xdO2EG*jg@FSIQ@Kx)BwukusH8|J$wB#F)4;$t47g{QGI~w^xqU@Q
zI#p7`E2+tq)OQ9B88~d<h=HSA4hBvbIA-9uf$ur!T<>Fob3v;&2orfY=gn;+JkOK-
zBzF(41tHAMn$h62fiv7HO<Zr{tbt#+dmH$RGtj_qMsSdF_Gzqh2F@F}z#+Ri%*Wy=
z7Y$tIgt?q|DW_x>r_Jw@{DVQt^LJGKZ6M!7Q4{|d$TI;GSD1mHtIdDUMZeO-Rc5fM
zvPkwpzao;PCM1?&^Z%b@EHDu<p+v9c^u;7u!o)Q~ikm@Ttb#(Hlxxj@PpZGcL`f6R
z*?8W@jV5j~G19^<7H&3C%EUSo>rIq4QO3js#$ckXiE<{|o9JMoyom}X8k%TiqN0gP
zCaRmLVFnLY&#I&<o2X*qd~@x^N~)@fLzUFIN~)TPaOHs1G*P^=s%4_KiPxXXS6@de
zRaUJkt2!p?ny6=@zKI4VMpRamNI`@+^A(Lk(%3{36Rl0OF_EaOnwr7QDlOO|6U`Z9
zv5<M2c1fN@XlVvV_pskunV4N!JzH6|H8JzMQ1uVAb|yAfRxh{A+fiA4Us-iD(aFRR
z6GKgOHqpgI4--92bT#pJW!2oxFHuExGtpfJ;-M#lOWvQ%DClLPw~78H2AHT;MfEYk
zyRG`Mf2ydyW^lj@2{nn97-(V;yY9Kj+A3;Pm0+J4EUr?*hnW~|;uaI5Ozf_r&Q?*V
zszz`uL}+|{RW;hgH><QUCdNv^x>ePns%mUi<y2MUOc2MLc)F^Z*)}}U#3U0L6VpxH
zX5w}e514q+#2qH?G;zO)X(sM6G1<ga6Ze^zV&ZNS_nP3FBImct-&9rAS(<;32_maL
zQ#FV-ubSe=%K6tKjjO4Vdn0|SsS^)|ZmXsWO++~gCR`IS6LAx!3Cl#Pn&L;~;%Z7a
zv8kFe1nFmHugJb?>fW82%^G)Vj)~)vOq%fM>Y(OJ>rPAwU0GdKsjgBc(wtE(dA58$
zg&t;b1WnB6lr}Mo!)oGD6OXZV59YTXUGR{JIqZ!eBM+MxU0vN@T|HuAuJ~+UUB!kK
z@KxQ9Ru4X@>vjmwGqIt%`m(xu+{6<mR+@N$BWPlwi6thMns~~@A}RZfiNC6=r`f}j
zBxfXxO;Bpq2>9q4Y8m4+@ht1Dp_U8YQ$syx;=KhC%JV|J8ftM3#pH`7R&n0eP-{)R
zWa8MEf?YM#Y7@_kH}W+mi1b{vrmDU>e}jpaxmQ@Y!oo%qubBAC#D4awiC0a0Xkwd*
z*SM5SY&P+xi8mxpUTEeql{IUs?lsjG6K^pFZZaI8n(A#6@3QNvg}0h`$HbLegWp6H
zk|Xnj=T>;;&j;dUVa*_n=54|snfTbm9uuFM*v?WlRY5Ja%ft>7Kh{(`O;AXJvYb4%
z6rXwD%>`aL+@qHIjFtWn+H2xV6Q6UiYN;<cTWYEGwF3KnCT8>v7pbi_4+z3IUQ2y#
z;(&?MCeCo$oA{Pp#HnK9po#CenQ)^sQLA=Pwo`32wzjfstEXzK^z@=fB<7<W+1l#k
z+Uk1~KbSaa;wQ$&BIUzlri9MdRwsn>z+q}y#Y22`c%?e(XA^#j$SFa3K5OC^6BkWf
zGV!a4-xzisb<RYKI%-gzpz2#^244)$ON|!<XV+1eP5jQi-9(;+rFGOFCO*5M{bk}$
zk+-BEHGhkq#XqIbI?DF6p`F85TDZzW0}Bl;Ty3F<h4L0ESO{4NTe#N3br$k16txi9
z7%6U{z=CF>a$Pm(RV`vcStw=&9~=uShuc*S6ScaENKFaRUn9umn1R~$7H+U`6SsPc
z@5K(iKTPXbSCzCtyissny+|q6^-iR)t}0_;d|g#qkj2YdD95rLf-K6z>mn5`RI*Uh
zLM_H)fd}$bu~5~*lXX?4=GuF8)v>yYy<N>hbqh5t{83jraB~ro+7{|qsCd0rpKU)K
z$=e@Hzq%IciCkYVuxwo~*sB{^Xl$Xog&r1~SZHdYt%Y_Lnla9n;nwUWGt%5b3kxlC
zEo~)aj5vu4wh_%k^;CNc9V~RQ(3S1AP<xcNyPoP~;dL?VY=KFBnh<}kry})Lo%*Vq
z1)eBAq`vBDp_hgJ76w@8ZK02aBlT5Z3zO@s$Lp*2>Z`qtBmKBq8>lJ`g7^no7-Zp@
z*F(cB47SjwfojpO=uitoBp4=XGhT4G4DJXE6e_(2YLtc17A{!0Xkm<nu@+vju*t$W
z4u^%=79O%NfyNeM7UC8rT9{<vZVUHVxXr@t7N&4e)@yfI;42Z|Y@qJ4u&{x;Q?O{u
z$Yh3XfqGWQ<#3>Z>KzK*YhkK|`=niMHbw5YFwH_C$6Y>HuV|<qu<)RTvJF-1hKjgu
zW`5KH#b~7Q1{<BkLehd~VN^q9TCgnG7R-i0Ehk?MITrR7Y6;Gw$-y5iOB*Ve>!qRM
zXPj>##mQeaG|NJo9d2Q!bj5VR_ZzAiIYQ2|loJirgM*7++epo^_}C+sSy*o25eswK
zMhj1Ik~C6}T6o;T6P)c9=5aV0sreQbu)7*5O4bj_lNOE*4=rz`wu|!g2%K!B7Fk$q
z;p>%=qK(zloac?zGZy;hYi20C#6tVVYAO4?v7*q=3JcG&t1Z097M%%ykkOvA;51gh
zJ{x)7!b%DLS+QJYVP|8t#==?)CwL<$v9Ve$xXKQ#v#{Pm^X-u-P1FVpFLUSTXda5>
zH&H}NB_W-fs8=n#X5mu{pK<nDc*DX67CyAFnZs(~Z3|mDPnxKgny4)nPA$>iYogv_
zi)tYKMd%$1-!@V2(xz^B;;>-p{nA9eXW`1G>U}|KwpsXy%fZ4P3m;q9&agR4=jK-!
zq*ZOIx;0fh*r=w;ZK`(B+feNjY2&J<L2n#rs;+3Jc=+uN&D7@>zTk|qaFnBO;Y)U@
zg##A$S@_Drev8j#YmJ(z;my?T&D82ow62Y{_6@Xe=##6gT)|-r2Q7TZzHJtGo_V7-
ztC^zakOdMZKWnCbYNn1^IBwxL3+F6+Z{Y_v*}`dVmCe<U7EW6Di9KwgQS-nFvEAE|
zpC#b_^@H=Em}CIGo2xSx&RY1z!mr$RzSoG%C83ZkpQfGXL~5>nT9j`!SMfjdFIl+E
zJ;BBR8^3dl<JN7XqK!W-{Kd`LMll<ITlj~2yNx0?@@%}@T*1Z_HcmBHH?>fu?hajP
z2S>m1Eaj_gFiBxuAsb;E`8JB$Xxu{eYN6Z_TDy9|D;^4LXf~`Cinn{++9GIC#KxmS
zirXk*<9Zu6*ui(v6)n^?Hm<etMhkVFjYvyXr=>b6mL>V+-^M*HRe2jXF#sDQTdJ})
zzMB*&Wuvr>GQv40JG2a{pkzroRvpo}Nj^1RThLNfvQgPaQya}}RIyRjMlBn)ZB%2W
zEmaL02U@Bdj%n5HpeOmh@0tu_ZvF-F+4B#rj?Jf{(8xwz8})3|x6!~3-j`QF9+$he
zm7=g<?N+KsD|L4()!0V7m1-hLeRCTvY;>^E(MC%<I3T^1jn+06wo?3(-^Rw8R_b^w
z)y_s+k?rEGJv(0rv6GF?HhS9VWuuFYt_*-b1Z-^kCDP4CcN<^)5-boVNr=p?Z}Ke+
z+Lry1-ZuK!=qpX@XM<~@c<Ufq65>D`gKXF~92<je46$*qjj1+<+8D+nHYVB_Zes+8
ztWsnQJFT_4dU5_p8@JfJyErt8Gv_01v^ZyyoIc0e7-wU=C|8@>1iF<P$$e9sWaBo;
zy2r-tHtw)-myO9bkj%f+Mpnq_XNnE}mbshZoeAA{Dnd>Y-2dNNZPP>d*|^_E)JDw4
z2a~jEHXgLWYYGq8cxPdFdTVt<k4V{rp+XzP3B&T^HdeM)x($Q<)><8Ht)4s^`Lne$
zB^XQaa<d@*1bfNGV;o`|NgJMx*)|@s;oIO>h3PhC*htw(OOX<7R7ObCHbH;#V~aL#
zcMs3BG0O%CrFWa)Ju-7_JZxib8}(ot_0_$hN65J%q-+*fi--9(7T8#9V~LH&Z9HLv
zU$dWK)BMPXZPb&THa5<;QBT=e#CU|WUdoMa6@`RLzF}Ln)W$L!)7vVyO=LM&bPsK6
zTlK7s6;k7Xw)_bYbn?%|LMv^&VB<Xp?>l(W#wyNm2Mrv&WMegV3>$xNirQFf<1-td
z+gN8~y^XinIvX2oyli8$jW=y<wDF3K*EmVqsZBOsY^zSURVCV~J#E#iHi)e5b*cRg
z8%IawQ>f|IF8Io^#m1y|s<54Uw4K_@5w!8KjqMDZfpL6od}!l+krVCIAKM~Z+Xdc=
zw^!S2jBT&<_Ua??T)%yw-(h3tn8+tKcC$0vtDTay%jV-hk+tpBzG<O7TwLwdr#5zo
z{r#6Bbtgr>u(8+1_cng8@uiJ@QtBHjzl?lkW512BZC-c^HJ%&_bx<`rs5Twc0j`t|
zL5<(qILN)o#vwM%#xc&2J)y%kj&RzD0h1)B=Y@`o+XWpI36W)gv~j}5FE)N<r*%*#
z8JmsMHeT(ZezNhi%@;{4a^km6{uvwJbWnT|#^x=dv*L=RWqtf+<3a~@(Z)GW2^&wz
zY4#VyV0PVLR+s3gF4?#&Qm123@1HjQ;s)#BCI^4p_{T<p1I<C612`z+@R((ktWtDH
zM|FjRD;-ShsIGFrue(<Zf4rmmIF-M-qY690QJnb>KI^EaJQ-|6{P&}%6Z{9lKb9j7
zl!Fouu5nPz!A~7kaR+mL3w4|p;-BObZw)?2u61yogX<mK;9#?_g*pX4(yQ+am2`p)
zd0;0M@1*K<3Sz$5K`9579aM2p+Cdoy<sDRTP}V_uomS2Pe@3M{sr8*y@jJ98b;CRt
zx}t+h4jQe=-_l9#5hq+ARUK4wP|HDW2glb&s!K&DI;k2$=DZlG$sk{hT<WV`+ga7>
ztm-(Z>!4j{HN3N`=ir{sK`_LI^z1-)U^r;(poxQ#4sLPK)Il=`y&Uv*(A+@_2OS-B
za?sL2D+g`q$_YMVE?*9@KU*_~TeLQUR3^mvy3VS-gANWp=&UHLuCs&hI;-wZ@TuCx
z!I{pgtAlP5a6uPEp-m45e|@j@6lF!x^l{MF!C(hN9CW`m)XzbGC-^SJ?*^^9r~woQ
z104)<K+a2$6q2D1hB+ASU<7-qe7M@E&~07R>=OB1)`j>}Xs4YY@1jOI80}z+gS*-7
z4#ql|=wOlqenA@NU_7T#)zHi?!SAC963?v;k~JgI0g;!xsM{Re?%+-b^}4F}x~Okh
zwb)$hqKb7@cRA?XRZVtq>QdhQUDfQa>K+I8I(X1Qp@XRo?sKrLt9rlzhw^?YxOhv5
zd>XSFhDq{|hTiL{xFXJWRZ-6BZYt*B*;$degSTdC6!w+Lo^<fEgJ&Gr4jc!w9L(mt
zb>KQkaYiv<2cCnQe~b7I<~<gv*)8~zGu;Wb?-ulS#=&$4Gl<>P{wK7F3qn&wKhwdA
zZfa|<;1|S0oJbB9IC$K_!ww#y9|!Xt%yoi0;UDER@U?AHisUg#vee;j>hEr<|D_23
zkzn!(2TyUTcUN7W)}EwIcePNES&O9kExQM1iybU+u+G7H2TR#S4pwm+cd*>S<aLo1
z>;aB`ceUk6=s78s>8@UI@VtYS97ORz<mcD(-PMa?K=SxIk)tnZs~xQ22Sj(Z*1@6f
z>eq*Zm-Vp54crhMY+<iD*y!LD2XAmi^az64<lvujk=Go&$~m8oPzrje*G0Kza8YKB
z>7h1r=JZf+N?jyxJ3P`k^sa;U--fnwaC@lPJ=8mrOR~6!x-c{RfrAg(_5@S{+Z=r4
z;1>tKI{26iuxI!i&TR+V9qeEyPt$ff*yG?+;k)Qu2=%)i)PE#I@|lCr9qe=P6-Qj&
zcJYOSy$-(Q%4#0TYIgTf<oiX#*IRromLvy6^ONKrbij85eeVSKpMS^wv!^=b;IM-u
z4vspg*;5_o(3jJW2`8aYnN9xS;71219GrA;n(LaIq=TP1`JLbh=!5mKtS6sI!M7q=
zPCWZRxxYEVTW0<d4Br1D<h+9mLM{qk%H>`b^1FjSg#0P^S1$K&mXcS-<Rt>15G1)G
zfh%+TDj`=37D*r^BrKROSX7Xu3KGzS59}CXvRDGe6KIw|^8`vHa7_YL6R4KJwFz98
zK$Qe|pUL$J+(3QLNQDGSCU9c{WfCZx;5^Z8O5o-MN(q0zEJ_QR(<8{j6^d9+G%M?Y
z%JK<ZP8IFYGtgH|1pg>fDkV@k$9tF4*0%^QN>)#xMgol!Xp+E}o>nt~`Ux~hpjHC4
z6R4BGAf?q6BpKf@QZL81-XEH^F!<-0*f4=cbRxV<qcGpZ(KLbHp2p*;C$0`Y6Zv+4
z774uHQ0t#S%LG~_&^m!O33N-KdjcK9Xq!L>k_6f%z?1)ZNwIwbcl8Y3eBFuNH9Ws_
z;@_8aH=l|w33N>$+EejO0TlZ0kw8y&bpm}8!G|VaAJB^dNI@nk{odF5Ns>wuCaD~d
zz(6)95uC|9B!Qtq1`G1wWeW9_Vd8Um)^j)9lEA10A}*AR(TU(5gF*(wu^tc}BRE!Y
z9J3Obz*3TA?p;DACNL?dxh;X)h2N3W+{u0z5~A^B(M(C;ZXx#w-Y<Bs;8el;1XDfL
zG$AbbKmrd6U)nRcUKvXup1>Cg>`g#Vz)0ZX1RhDiOu$OOO(2;FuH@PYIEmoEG4kvY
zWC@OxoJHm(;ET<4!IWSofwT}7$sVUhoRPrH1ZE{LJAsE1m?IAVJ8UiMIh&lzd6>ZB
z1ePT5nE08Wzyhgpo|IzMk0<a%0t*v(O7tvFc`_Fj`Jx1#PT-lGeKuOgL$XwSKAXUE
z2`u9yV3N#My&~uB`2<!butSQ!AoykiTSyXEmB330tWMzN1U4qHMsn$ST>@)`^B6HE
z6Gyf632aD!gz{le^-2QumV{nQ;PnJHiRG(;$9gL2-w?i8kjbo*f*bIbXx>TS-2~ni
zzEzM1rm>dygnuOXegYpP@L>W)>PEJ4`8dHraOAg1JReIW+r^Scy)kQN0=p9UL^PiX
zQn_2m9tri+1Q-C7l+Q)a^V7aeU|#}fxe}${zDnTR1P&&!KY_0kIFP_M(ueHNY@ZW3
z9N#5yD1qY%d@rRACxY|(jtG(*P2ia5X`CI19}@U6fu9pNCEiXXa590P#Gc-0L;27D
z=>*Q?29cp=Yy4F-7ZSKA<hKOQC2&4BzS&yn>XPLC!!0p^-xK&Ffj<-YD}ldrb<ttA
zu57);Jon!|fr~4IU+Lm17gxJr{}dHX5f>pLVHf#sFbC)-)Ju_^xDYOoEKQI~W)*W$
z+{H~P+?+xQ7uUGB*TYl~*SfgQ#XuK>TwL!4$B$FWy0}4j$(-g!md){-g_LqpT1Xke
z?Qeuwu$+tXE-JXF=%SO0&MqpssO+MNi>5BBxOk}~>bR)uqN<B(Zg6a4b-|i~H3Vrx
zeJ$a&1s`i1spq1;8|<#kY9JmOx@aU0v&zPzWG;pNo4IK2qP2@QVnbyMan;gAt6VKC
zNXxb^+KHy4V0#xGgfNSxvcY6I52NeiqL+)_F37tIb`$I_*uzCnA<Qk-OI@u+`nc%F
zfzu*=1?$%ccz@vo1eq*V8-ra8aq&eGdy^RIVi*S~iEEP>?qY<Cr(HbbVx)^(*wq{_
zQyaz2-^JZ7?r|}-Z+MK0@h&E~80+HD(g<Z7hkj|K!8z?#7ZY9F<>F3G9v8Q{DEfKm
z4i{VA%p)P*E}DkD6b+~$AyOtwa*B)LqPg%%<X#ukTs+`{e5&AmF76kxdnqa(bW!NS
z;cRpfbrEx6y0BctUFa?hA&Yv+7gWJLg0_oIy%cRY926S3E|M-%F4Cg(T=*_%OtWke
zV#dXE7c*SUlq_DJps*{Lb&@^bTMg?Qp6%ix7js-ZF{FSp&&9*SA8|3)#iKd>W1N}2
z6%7Un&UdjuvL1Kwq>F`FGr>YJ@O!JLTr3jJlHMw-T<l^AN6^Jy7fW3%bMd;1H(V@t
zvBJfA7aLqW>*6`iMi;BuMVW%<U95ER0z2yOJSJZhCCMrdlb=sQ@#br5s2`_M)(Kh5
zzHJcBYToRvUUsq3#j9@cI$geQ_`t9N$}3FH)i$~Kwzs14HOXz(D6rY=;!PJHx%ilK
zKpei~;$0VSxp>>fRu{bErNjBWtp8_sMBbC?K5+4&8{7i=z9jcNs+}4X;X8{N$u=(S
zu>slcVuy>}91b^l@$pW<U4pM(ihLr3dcGl-#-ECx&s}^bB<qTLzP$KL7yDdXba9DG
z$;EybKe{;K;%gTNTpX7OzhTo{9CmR;k_TOU$C>Y<L0*{gQ=Y6CA@UW#N5$ZnAT?|P
zmFn#f`S&h<5Ix@_VRea|bn%mmUpS6)@|pXyi&HL6i(4koaHAL#6hF(p8W=eLtG6Ql
z>f$#S=fux>E(#ZA`Y10y-0V;g$<%)e+VxSFUHtB%ND`qW{&4Z9i@#m`<KizV#R%z^
zLi@ZVn7ks1E0g?JHW&-a@EQ46B?FtQMMLLVJxMr;{3MErzGxDC04<4#Bny(k8<0o$
zQA(2R9G0SnSUiamNo4g*via8~aeWeY5>65~BvCSnE=hDv;>ILyN}^s8^^>?c8T<!Z
zA&H7fluDv>5@keFPOz+CVV~ePY<c1Hg;z?VauPL?s42=Sg4G183clJ$RTsj7iCCys
zj@Mx=v$fiiTs$wIxpjr_>Z2MY(J+Y?NwgGAqa>OMX)M?ziKaq+*r2i0fj+9aB+2i*
z8m*FOokS<mv`M0^kPb<-6Vg6sd1YUvZ4Qc4Iwn!BZ_uvJN#u<zptQaU-IC~@#BE93
zo<xr%dL}U<iIGygR}%e`7?4D7j)-Xb3icCh*H=+W{u3FP#GoVwCov?6#xLh(>*BvL
zL&a<uH~%b=sy`{IJs^Z;w<Iw(iE)xUDv8laj7ef<E_YpDHD0o4IWdU|N!%*QZ~Ce;
zIh#ow{eD4<?nvU!B&H?tKoWN)F*%8Q#CVF}pH~GVPPv=I*H7^_q<fQ?n#6sQd%qxa
zd-hY4#T)s9NyL-TlPF9gDh4sZHT#3k)cYwzl9r$;cw*(h{k)=|N+jVX@njMUB`cXk
zCW-07y(D}gDM5NmC-IKdJA=&^<zs@gl9-dk!!mzni{>H0LlYv8<VKLi=O*!J66-c-
zD>rBy(<9<)UJ~<@SdhfoW<lE@PvQwFd#RtIQ1et0i;{RHiA~fe@k|n{l6XmM7ALVR
ziRDQwk>pZA7E%4xiX@&*Vr5SAToTXcc)R|JLbDf=c#)H#znUz`C;F?^NvvUnNvs#+
z4KL@d6%x(OmJLa4OoH<q&G9mOqrZB#xpun0TKsnC)g)d^;{7B(kRq=q@pckhlXxSE
z%}KnO#Fix9k}O_>p5=yqedFIzC^8@j<{im;Pw?F&st-`-M;Bzn{xFGcqW?tjqa?N`
zu_K9(CE4fqz|T(MB)fzhd@PtnT?VM#N$lail*DIAd@fmEE)AA8Wzg$E!TScNFO%4p
zL@N)iJ$#kKey%<b<vo0z#DOF(CUGf=Z<6>niJy}AnHwYbuD7%!+&P7OCwNHkFlXZc
z#oS|({2_@Sg&a@fdm&3D_e2tulcJ$<*UCjHB&U)%oy3Kl{!9|T<@nhoeo5k2F7tFg
zEq{6<M5LTc;=I_LIsLC@^U(auN&KFK<{{$Yk0k!2&rc%x9{x(=Z*KJ-uJXWh4*y{v
zJ{*GZJi*M^@D(1&Nti{v+Cvc!ArI6u8P4T0*{)(yYUsJBhXN1TuVh5!p_mtZxw^qa
zaUtZ_3Mt{?nw+Ng-q3Zq<n<nyq*+Oi&oKpMZ}L#eLun5;OOm<E`EZbjvL3R=)Vw}G
zQAk!@2fl!>f`^J8DtV~vp{2)bTcIlaxv@m6?V*l`svfF&DA_Mu-9t?wH3Sb2P*hTC
zG1`Fvuj`?nho&Byd8qH9frmyO8hdC+GEfm29)+B;CNKEow~2?Y1B36G#O5Aahz*rl
zOA_9#9j_N|<DspG(H_RI_dK-s_^%QAc<A7vqlfzkD!!TP+AUfq4_)ZcLubanMWgVI
z!&^^8noiQXdFbw;2S?##gwo4HPvOkUYL1<V^z~3~rZ&XGP!Ih)3?CWp?_q$Dfga`$
zRD*<*PzFnoByL*_^RQrI!AQ{z7aZY%`VS|DZt>7}YGjlkZNA@_H`c?lf$E{7k-I&N
z^RQ*08t-8OOL>^+;dT#qc<44ln<Rd2V<hMDm}G~L+$l=(yFBz4{bUbQ#QvUSghI=E
z*!KG2R`nvKKhy4G=XijRD|}4z@PLOU9+rBDSIU2oF?)F2L!pPLhnRSt<)O_Np|}U#
zgTbk_FyeSfcrZO!ENDe+PP~^we0YsnB(5maoZ%jl9z03<Y{I}$iu~%})E6S}F<{y0
ztfE+GriU5gBzU)lWEJDP7(6`W;mx<S<zGeSFy^(9hdn&vVXlWqB{^U4F%R=3P8t-f
z)ri@7Lc&)M>>3h&!o!nXbc4eSz2Ib?r-aXTBIJuaJS|G{XFMzxzNKzpw#>tF4~M+q
zS&tPSp7pTX!yXUMd3c^taWeM{uk?b)lh=7zFXROeFLI>_f62odAv9R+;fsO6<H?k@
z9*)ci$OaEDd%^2^-w@pBVG{`h7?SsjAhTYRERxrSWM98a+$>32vZY%*yyf9-4_iHK
z^YD>}O9RzA+@0>y-WPn=LzBtcdxF;uQXhDzJ4iA2L&@zqNHO`bhn@UCVMS!S$J@6w
z$_|e2pnyC$NbU0QiRfQjoKMY&7Ll6=hd=f3nTOBWG!Nf+_}0T-E}vKOzw$7CN`&M~
zN$wLo@JeXE=)V@E!2yoifP9kKT_cw!798Ys9i>seV?#KHM`?%IQ67$ZIOgFZ8|C4+
zhwnN1gVgJT)DIqh^l;k484o99^zVE?`^m#e;p~=uwRx1f_Oln@DZ!7{N6ym8t>Iri
z{Kn0EV)z%qi$n7s8IgC+!+Cbm#4wYzxgeZ2)bQZw%N~CBz))+~)qY$P`h(L|kNnBG
zaj*85hrc}>9Hjo?*5L<x)cHZd-bD@ZN*`DGc+JP_KCbpr#7E3W+(*a<{}oX_iuu@f
zs}`1IzK^0pm{lM|^Lddgu#5~=#Ns|m_~`7Ti;ru3T<fE<k19T{^Krc&{J<&Y2fs{j
z@G*C+c6k&^`nb`@O`^Qn$J_El_4gf-VTZyrEA69<kFtL7%c8uG3O>pSuR30%rlN3?
zN<u0RR$T_GzrG7s^-;}7OCPO#RQFNCM|~d+eAM(&%ST;5_<2jIEu@Z*4@c!QS#_S~
zT^*?>O8)k&JUPFik7pZ%8~bSDqmghX#}8IbeKhmY+(!#hF1%Iaaq-Nej7bHDnl2g>
zYVD(qkB-vhwm#bV!H>QUKHB?u>DC~CI_L9_ObD??f3RYbxt+wO+dQqSk8VE3`55n`
zyN@0|2KgB5qo<EvJ_d---eTOxM_;z|VuZ!}3F$A$JG!45tlk`~m^F}nE5GhvAFU1X
zF;t3=_A$)Ia38lwl6^SB$4KeM+RKB!z3`PbVp{>pC?5w0tD-~H7^!ir56Xb08f%=u
zx#Z(MANTv1=wp(PDL(G@`QHL=_c56>ioY%e@APq(kc*?WME?-=#Vbb&E=Q;*XY=pz
zF;#m0-rVR^91?U(v{5kh(|i<4S3e-pKInsY%~9X9YXSQ_Dp^AtLHA+!c+$s0AEpn>
z$1ESS{ou-l?ZXq|2qpxncZDQ5H--dP6MRXge58eB1ZVh|E~Meu0@}<J-bw5q@^QR>
z_)$S-&GGTD<US%eSCD$%obZ_Nc|PX*!NJZ81RobXJ~)q>Cxnk5qDl|Wd&<WPK3?>(
z$j8$@p7F8R#|rVVM9k=OxzD?X0#}q}l9iB<st(S3HdpU+KA!inlFL)FUJzWx87KxX
z3$FIDK4-ti$J!iU$JskAxKcye;A5AR-6*-Q2yPO5HD`Zrh<d~44IWUb;5zA>KDPMy
z*~cj#Z*g7wIPBwykF7r5@$s>b?c8>T2A{Ae$41^|LwvmN2L(S6+{RTYgql)A)kitr
zbf`L9FTBIY9v`3j*vY_rjG!Oh|1Ue+Zozk74X$5*=Hqi8-}v~}#}_{K`uLhF@sReV
zk9|JA^0A+j_ORCYux5N0JatIC^03Co68U`M0kOQ|Y<R(8?V#|7i{lXIRdIYLNj{uN
z4ND!Rx54@6#uxlReZ`{37^+tExQ_)F^S+m0NG2Q${pjO_kCU91L)9FSpF~4`+Q%6m
zmwo*1<E)QgeEjO;Hy`)B7d)FkeWJ#j-d8@Oo%4g+#kZWxJJ0zrR9*0K(MRul|NSm;
zN$O(q4<CQ}Knho+@E7O*ipVW<G=9r{cc}VXZ2l3<O9dYUR2F+gyE28MDe$Y;RViGZ
zLJ?*a3xzn2DOBzjCeKfSaz(E|9~}8uEVQY3xF7{B1(Jy1nW2ijSPI4Y|9=YCq;PEt
zb*co9(>`lQt{tX&9*ta=LbY)b%Jo8SNTK>LRZ{RqL1vXop>zu4Q<#uKnH0*V&?SYg
zso;V|xfCj-P%(w_lH^4VDl0KaN!CrFN(xm|sF6a=RB+Xgmr<$-A+Ihr*$XSgS}D{{
z1y=y;q=M@>Sz}_o6zYp*gA^L2&{%jw!CQKxN!AJbN=VZbnh9YT%~NQR<KsREwHDr9
zuuV?iHidS=`wjc|eM222*)fGqDRdTo-!L^ta=WF_J%!#W^hu$Iw1Tzt64F!fzp(qJ
z&@Y8yDGV2Vf5E{i3`k+1a5i(0G&bAJAt?;a>8Z*38Ii&*DU1^R$XxE|6vm`5HidE0
zOZ4+!r7V~&dus|4Q%I!XrZ6dm+fukEg?q)r?J3-u!d)rcAx&dhHi4xkr!XajyZ@)>
zsi$*hO-<px6rw4_#KZk5JeWdZ3e&`xW)Db1vVQ)HhXvy)7%7-iN*5dES}E8mIHLTo
zifk!jG6gS%87a(6!IubWlTIO(v(E;ck>qqimYS8q>=d3%VPOgnNvX$jW#<TaIE6=q
z%;l0Pfk)XnM>SqnBhC~3e8B~Rtnu*_p2+cYN3^F>Sd_vCDSRl(r&Cy+!kQGGNnvpc
zOGLRmg%v3*6~0U``>v>GQ+SR^(a`hr62J=*z{(U}m3ftoWL3`QB_UkYYg1U4!d6MH
zPhmp}n^SmGk}q?Cv$*h$g0Bef6^E~-@J1@QF3cKVPvN8}|GVnCMJ&hi74Sl6^R|%U
z!__-N-c5lQg5Tp1%Nx7iPvOSl!RpwS!bd55mcr*^_HhcI2-z-3gB>aC%<)|*G>}re
zbDBLuJ{4s5ej#MP;9kKm1@{Tk+gIGR<^-3Uzs_k62;m4GOyN6D*Xg)tIu509m_wh&
zQ)wJY;V2hr8a>iDmcnuFX=zkX<NFkTNC9bFk;acHoJirf6wa|{WD5O4OyMWtKMS4`
z<QzVo!kHXDo5J2Q!HVE6eeZ?5tT1_A4E_?lAb2r_OF}LS(&qOR{t*6WPQ!;B|IYD$
zQpigO+vBz(0aC6^<EAujPUEUHu1=#!8X++#E*KV6Y2*tjDp(-MvRWDu;iF;&S#QPC
z=s!HTvxQPZvaU(v+BB{cetjAxh1?*R5z8Be(|%0DAf!@~te8gWoW4vNWrdf^Y03+!
zAjpoYl+#yEql)mVg8Q!fw~aN@sGUX~QPxbOR?eQc`m@HmX*5lvnJDWC)=#5>kcK(S
zMnW2=(L~4wiM)9(w|yEda=fLGR)Ve5Xd|R;F1KA8A4=H{IZa0)odi1zc1fdaF1K46
zV-5tJ*)xq^X(ZF|(&(K=pEO1@OU(MFF*s-6kNq!vfZ)KKevpuI4TJU$5k6FKSQ^7~
zHY3s)Df||}Q8|5gJ2W<pacS6TIBASeV?r8*x!haRxGRmxX-pK&q@4b?G;YuFJA~XR
z$VU;U2)RF(dv_Z52){R{nJVNy!5@aJX*vA^X*?)=)v4e%DoRw6u{7dB^qi%UhMD6Q
zXYU5>-Q|IOLX@uH|E?@wG!F@;(nzO~Nn^SsX9>;_q=%WD17(A5q|8pEb+bGQ`J6N!
zPUDd@=H@KtrSWKvKPF`K#h}!D;R^&G7kna(CxtLh8Z1iV=`=cL&?OVxg7r)q*JN;Q
z28+{J!v3!qUYf?UX*?%<nc#B46=`&NH)7NcKcB|RG`>yaU>Yx^@nRYuaN?!0DjnQf
zur7`DLS9N^wGb-T2w5vwWq96(G+q|IHI0ozUQOe*G+s$#6Ia>rJQjIpV1Tcu@kSbN
ziOptq-QX}~OB!#cK?Ck!Owyk6cFuWFRyfJKLf%W`eIbV~hp60^4t@@Nn#N~oe3Zt=
zlH8ugCqkIDL&#3SU4r>j!n<?1dxR7l5gc9nx$v*j_#&6PH;pfId>{Rf`1gF;{i6I@
z@IV^h<ZLR8P~W9-C=HcCu?!A#^H1Yq8kf>I%FRC=e3$+ujpIUoPU93m1=9E-jm9I?
zk7=9~J#9`1q4Fmoy+;JUTu%Q_?rpP*o=M|uE|-?SrtzEjIVX5{V&3_jlMAAu2g>C%
z{z)S*gWuEmBaJ^9;l#YZ1nHB0_!0ki8myP4kiiuhgfl_dS7vZk21PPKsFbUP(1uyW
zP$oF?J)6wWplAjK8E6?qq-<87Z4^0WPLoLSOn@Z>>4bdJ2z6Zs*R#g2ij>RXhD>li
z6{VDrlAPoN!Z&7c6Ftk>P&bQ)227R~UPiF281O`q@)=afpkfA<GN_S3%?z@~VO7qc
zN(NOks3zf6&;0*UT8xCkBeQB{P&<Pb8MG9eIvLc>pq^M}57erk2@c(ADA*w9ftp6_
znGBj_&@_W)nc#T&=Hh`>XAkLOagtUUw9cTTWVOkltq^9l6Vg6|4!OEmFe}XMBuW;a
ze`mOB2Hi6FC4*lx=$=834EAS&`=)wk&?|#yGk7k8-WjYM9=?Sk4GbQ&?vp`Z@!v0l
z{z3+1Fern;84Q%<ue}4aA;O2}G($5O##(xZDe-E7!3fD3Day}|<&Vl>bOvKG7@NTp
z89bT6IBrK7I2rzlhY2)hKV)!U1`{)wl)+sYOwI)VZrzr_9YQwUjoaxV6`D0d-6<O8
zE*qhyu>UVc?#bZZ4DJ^G(D@?N@NXR6zd<3nKZ9wR;Fc0Sg9kFf%?uA_P)K9BX@UR$
zL^FtG5SM6~q-+|Y+RiIVVq{=uU}a!u@X3haJ_^d6W^h-=q^+8pK{A80Q?+>+cp3N^
zJjChBm`7`=3^Ex^&mf(_>2rD1@J5Rn8O-DmWH4K7u80?0HS%Ad{AY|dH*XC+oNL|O
z3?30)^{;}`Bh{lBJSNG+_TUdjHvi60WPS$31sOap<j0E|lM6F=DuYECJk0=Fh3kw|
zyvcc2Eb>eSe8`m7F7Ftr7H6;|gNNVLmI^KxT*e7AQc+1+A(|4+BF}S%WUwiNS2Mwt
zg%>hdm%;qf;TI)I&8iGu%JJ1g)(EZ@oI6szy*_U}_quxF4eXP_1uqNVn87PTT1*Hr
z>$MDC&)`!=n86zvyxAi1aRzHfs?FpXY{}rQ4BqE34J)9$E##dHw&pZnw#2&`yeG-e
zTLxzChP)3l_%MTQ8Bp^Px26K@Z3$X3_v@C}&YdK#?O;FLtL<c{Bl34~h=uIVV2_Yr
z{NSNlX0g*++#TUVQXh>}pJzb)B7?mdl)5kSr69>ZAzyJ18L623I)eile8cInvnb_6
z2H$3IFoW-MnqwIp%JIV)91(srr@5wmQ1EyL-;3slV5bWGC`f%a_oQU~l)=wJP6?hC
zJR|sjOkD-E71jHF8|22j?;Qjb5D`Hdl#&!_6c9xzi$=OTrR(O*+^Ku%?gjz7MKMq*
zQ4vwV00ji4h5w%KdH?IT)>(V)Z=dgU%-or|GZzGJy{MSv(medly)KNhVf-@>m*=5a
z7{$Z5!hY)%C>-|i>O5Q%^ZGnwiE=~Cn}Yue((Tqf+!kKAi}!g)gpp62^9u&UxI;*R
zFnmJ%VFZNK7ynj**<pmj$PrzIQBX*(;JDg3cM2&am@_QMQu;|Mk|JT;74{A*cMBE`
z<67se@y~gu2lud`qdp$=?+>Fy*!xU8!@WXE3f?DJO7Ocno^$CiRP~%PVZ6U2=Y{Hl
za+2p$VYCaQd>9qNs2E12FdByOXc(2ls1io4FdhzjUyG<J_>ka(Vegy8bL6AO)xxMA
zMh(&9qSX8!UOSBXVKfM%jwE5Kx<cv+(x1vB8UMUI8->w0jK{-h6-JXVnugILjF#fx
zOt5*_`wntmU>zP4F)uAeD&(!hcp{9pVYK<5f}RX}v3b?b^M5+*z3PqOxiFrQ-eAYJ
z52J(dj)L6hJB7UszjGMR3ZW0p=fmD{<b^O^45LdJUBl=VM(;5Ag`JsQRJSnpbqg;2
zG`D*gJ;EUADM+%qi+U-HK4A<BV{jOK!{`?V-<3Boj2$oL^bccz5c1nsvWi{JA{l<S
z=P*RvNNE12hcP0Idm<<i!N@R1NlykM7#+qK*5`r1Utx?5<Jay1hIAO?!WbXM1W{(Q
zH-t<KV^SECg}*E~J&Y+rm}+Vm(=wc2bDojmGlk3wWB$`#{&O>WQph~Pa2Sy=qG7}`
zu^PutctY@(1wp3Og@3R)%MdbUr{5I9C`*Vf=!D@4No8UWby4%fSP;g-Fcyh;K8(d-
zED2+ym`ep$XZ)9i`O?(?dSgWxD}}GhC>Oe@HNw{lt`l4@xPdcpAm*<N2D++EVQda#
zOBh?jI4H5(1m6tftuVH8?84Z|X%NP1qVEc0cNlxZcvYrTo1gq_SB<W!OIJlQnHlyC
zydK6IoF1ZZb~S8~`*s-ba0-R-DaSO7_rmxnjJ=%F&u6{QjUtQ>CAZfk$+52LTvt`4
zoBBA6Pr~3ZF_X64yz}H<-PD|J>NBay{xH4_<MS}SVEwzP&$}rmJl;)xC9z+JaUhJ_
z-Mm^==&tH?SM9qizToaq7>C0+62>=SoDAbs7)QhSHjE#_I3DJAoxJ}1K8#~wOzrNK
zxT(AM3PFBl^7*y?A9?X7jGw~znWVdyv#*D`c-{X}5ARr0xrdsv(tkRPU&1&O##v?+
z#&2Q#E_voPjc#3fs0lsPnjY#8Y1*G$vw4M{^gn(zXKxSneGhfBhnM*U(bsOyx){c#
zF#hJ|AI8lv{^cw!>z%4y7IGzwtI~TEukoM|#`TQD4Ke9?OOyf;FCoKiF|#7xRt&*>
z5#$$ghah$S%Alt&0)HkID-etzJAzOIIT73y!QBz>=2vb6cM4Gv6coZ6Sl(%Thpa+k
z9&4XfID#U=-zw<cttiSI+6VZyKqfCHytp7uroA_Uk`dI1pk@U3MNle&3K3L{;Qk0o
zNAN%doxA4p5WqlECV~b1JyKS5l5!E07fziAkxCI%7PDFeRfIg4@vIv09GK5TqU3Sr
zP(71ptq2~Dpk)M)MNm6}IuSIEph*OEBd8ZaBS}?Xuwf?81`#|WJg<6>M*gek|5up#
zHx-BGg3Sc;n$RM{9~aU_kp8WNv=+?E_K6ICDuQ;bo{h(CJRQL^5&RR!<v7|$&>@0f
zV)!+Nj%;QG??t^Wv~$G6=~2vx;@JqEi{SYPUWnjm1m8yRVgy|xm>a>o2)ahlErNj&
z4C25QM)wGMb8bYuqh}Ano`Ssue=Q7t$*4~ReIw{6ioXc@3mG8DRQn2hY3VjNf*}!1
zj9?N6^f?TTU=%lb&Z1v)hKcj=2o7J*8X<h7Ak8rm@KZ<hnIOv8i1*E=af0JTxvPkm
z1M{CO=9CDgM)0zv;>U?t^fb{)rgQcdL8n2O5y8xe_f@7@g0lthErmHksI$)D2qF=z
zh+t&|(FkG@xDlixh)0l!;H2ctJhccc$zRWuVnmRPz>I+3V>&KvC)yJ02r_dP!L(`4
zw+I$;p=HuCYEgzSi+EpXS}eFEf~7*J<bCLBxw!E(U{wUGBiPE=2-b+mu2?T*t>8Mr
zV}-FHf{hVu5|cglw$yEN1Y08B_nz3*4BI2vAq9OI!OjR?iQr=~cS)+(B6vN5-4X9Y
zQ4D(`cr^lkF^Zhcc_V^1BlsYK4<mRhg14E3(=UQ|B>%n*11zQ9TRC|jjbbc|dtai;
z^i=GSkEHYW3Rdf>7%1{<S)W9(FM>~{8lOe*c?4g`oMHVrzRYdEWJ2<6PxVy<UrY54
zNQDmzKPY%8Q`IAx`hSyAzKh^{&c-N4M{z8IAGrLZs2#=e2!4z}MNu${6A}ExT``J4
zlut?FWCRx@xD)|@teuMBOvHPC*J&=ji1%K^UnBTk$ZvvU8|6@BAUPYs9})Z+!MO<j
zieOro;CaCdf)jcwDhzpq;@@1_5!@b;d+(^6%WP=`w`fLiHG*p#qhUG!MsQuojR<ZE
zxu;?-A8Th6-|a(Wa9+gfo+>Mfd{N|&dK`l9^;CC6Q9!saic>w+t)8k_FGUBYB?hD5
zGev*p<Yq@vy_f1#C3lYF4@Hp^1xc<TN#|bb&L|2+Q6!4HqR3sJ)3=wJ+DjFVdLIY8
z*v@}<6h)&b6U75j@90x3inmAS-YdMg;5~vR1V>%*myF`RsP}%|Qi7$Ue9+M|8M=It
zdou1lURXBj{T!|sMI|BSq9`wfVudIc^zwceSB_$LFZECq)uN~pMb#)Clp^wwQOu`$
z6rcA}3^j$+U_oM1sU^zIUaC$Mb)$GLisz%K7e)Ojo{FMf6b+(yB#Ks1w2q=-6pu#H
zEQ;n)G>YP{W`V|0G>M`mKkLvez`!3b#HLIrN(=FMEQ-gaN-d+<*vL!uW+OblBP%b}
z*(+IZ56@{6#S>AqWv30#ncNdk3i<6y7OzCzemeW<D4t<IZ_j-;iuO_PHxWbUC^}?#
z$0#~wc){L^v338*%^I6KtZm>0_Dt76_b7S@c~P(nS3%D}SHW&kywWp3vnP)uQS^^u
zKoq@M;VAk<(U&E5^3KyjXFTlKDXU);#AiBXt!Nh@4vb<@6hosJ7R6v`=8z~DMQ6s+
zlVNxiBiMvaSv+AFnTgHImbmY9PWg%$!wK+YU~ClQqVn?RC?*S;AjlUxPZTmqa90bw
zoYAL5F;#fUhjXSyL8LQFpBaV5*&<b%6~%1MWZ`oKBWy+2z&zpMDBf)EwT>YgMNCBU
zxR8V(PhhARQJ7I!;-6&iNh&)ECyF&utc}8rBE<$~a!3oAFP=OvS`fv;C>DviG~=^4
ziY3DHa$6>R`Tr;@qgeGn=IRVz7sdK0wnniniVY%eiefY8m~gg^72ca^*A^+1MQo2^
zhd8_u#ZC@=6t9X&=UqZ}XWF$#OkS#G6vJy#ye>*!J>SfvdW&;a_&b6;Iea&YBU0}B
zQG5`^hf#b)pBUbWVQ&;4bHzpRMb!Ij<tKul3GNg8RB%CeFwkLt6kl?rV(1jZS5bT&
z#hED1axotFA7F6>{Xa)>Fp5J_9A=?Wd=tgdC@#OB%QsP+8=B3JR;0G(MknWf8%4R^
z>boeukD|`T++*DNqxdn3J2vM2AUO2<+!Imn6BxX-{*yF>yu=dkU1Yp=agsYHb1oM+
zE%*yJ5N?~oe-~sF?}qRu2=9jc5yhX}vSO$l!?`HVM^QY6dt$i2-5?6YkS~UdQC#A-
zoRj-+6n_gLzY@hi8Gbp6roFvCfnF8mT1LMv<c8o)!N)4&mXO<mSurnLhJ}LpX~y6a
z@eaXlt>BL#5JPSZDu!UjKNLf@@P1Nmj__H+3kok3!x+i)PBCM>Rbe44t4IuY#c+2F
zkIV_?m0mQ4Vwu>I4Z$nGC1NNY^T@q1l#Jm%;WY1$p_K5U*Ss}I<<s7(ObidiP*(JE
z8BaQt7hWNTiZPt(?d|P&$-^o!Onx-?@fcdgP&I}JV|XZrYBAJ{p?(b2V>qxrr&bIP
z$511Nnlb#<F1u$T?@O%2+G5s;p>7N`dld3w2Nc54LY~=xjf$aJ49#O`7{jA6G>)MO
ztI^xblc7-zLr-~x$h1xW#~e}!En;XH!(-x4PdemzGXK^ww4wfL&L>X=LI-o7h=KTY
z3~hywKN-VQF|-r2{7Z^~;xn1p_RRSu)j^PY=NO)iVRj62Vt6iw=VRy_L%$eah~dQ;
zy2j8g=6&FxOU(NlMc0>9zE5%v7R~7%!=m4Eda&U!?^PQoj_0nw>F*W8h{idiUsAne
zICegV;iVY*2%jDe((E6@fEcF6FfE3GF${`fH0K5<d9&QXF_iBd`1B<;g#8f1uo#BN
zFe(Oqae(2Q4#5#IjEsTA_%?UpOKO({MvaYO9G&;(PKkMMA{s9^NpOPT#26yea~L&Q
zOp=#l(7Ogn&im94FRAG<%!pxT470e_M&$4#%a1&eJMD>_>ksE%>*If63O~`CGdG5L
zF_hqy^BBU+ForcTtc@WWLo5a-1~-Oy%sYW$XudBe5rf83VlZN`L{D-i?DIa3Y;qAD
z^-bF6ov5(uh;|G&U-E9o(IFMX@)%ackd9$~3_JJbEMQm1usDW=G4MC|_rttv3rk{H
z8pE;}y6?*=*~gp7)r9bt5V^mP=fkj4ie4qSTCniGoOME2)_VRD40?6m5W~h8HnD$L
zVhpdym~M$-YYf|@+70?BhV3!zkYOTcZ5c)#_wS0~yVhB|B~Ol^x3%{1*5j+O|L*9$
zCggR&H)42G$XkNX_E9`cyc@%NF?`95I)?W}|4fik9|-v{hL42o&FCM;@QLt!8Rb(U
zx3=*QUxClLaM}mH5Zo`AuT0=;aX6mwKM=z~;fDlykUbp35l%2}vt<HDWB8WsV*hmY
zZb~wI&uJXPlmJe4`R|hiKZqwCev}+eNI}f!rx<=_Gv%8&Cu81ajZ@-qT9BFZ=k{-0
zWpVV2<M$ZOaD7Qsr8p|b@kb1Q$_(MR49<yup3{<B4L5)8x^ZO3vEhXO%+j1oG5pP4
zYoh-j4qOpcfIstNxWXhcT#Mm$3|VnpkKqRUmY+%D9OGJR`rjv(_<<yTUy1rHF2+9I
zhm#QJwYA)QapaHV&C^*7H1813SaPB-?maofvixxb;$EQ)ja&Icapc5NJdS(f$c;nA
zQ7jI-k18lwB#yg;+!;rqI0_3t*+((Z=iff+Zc&QHK~9CCYF{sqwC}4*#QC3GEbFUA
zi&8R<`{F1S$Nh1Xi=%uTr6u_Tf@K7m@cq83tnkx)mA{{tRRuA7^-~oyJ~jHODsfbe
zd$Xls-1~aPgY3ihS@q+1DDHiKr&=7<<ERlw&A2z{RBFY&SzS-?VG(P`Q77)r8GiPH
zQFSFMZ>)J&x`AZQlfXxqf2S-K#QE?jyQ_VmQ5=oq-mSDIaWsviSscydcp{Frac@bE
z>!(`8k?5!Rhn<$pB#y`9XeCjt<7gvfhs1u?PmwUmlW{y1$MbQ#5ckf6+r{w=FZ;yt
zbR4()d7n5Tc8H^69M6hFr?~f)JnEe}l<k9gyi|YnTwe12YFK~uVjNxK=ov>ZHa3oK
zarBT_J_Fo64u=0XsW2;IZ`Li2KH}DEPBz6k{S_6G{&5V5<MlY+h+|+JgW}j2$EG+2
z$1x<1g>fv3V`v=1;)t{DGTDa5F`i=~e1zag!BK*v;}|1^({gMa<1(E0AST8!DULa!
zOctCW_;SW)N*q%&e43Eyf(!e5530=+K1*=6VBVv5bA``~BP=8$NdIUYMGB~xAWa4>
z4m}P-9QaI8GUMsQVG6ed?TnuHERZW^N-!-rKaK?%pPl8i77Je;#~L9^;#iuAT_$9C
z94j))$~abKcwYV2#<5P6yocP@XJR)9(duMv7P2jl?LxK)ZjFOYV54@3N%CqOJ2U*1
zICcr&Ex1Q;aQFY7vU^SDDwDq%$6Imy7{`e?-j3rPZa8u56X$p1_)rLQeox5zf*-_j
zM}_~Ms`@C7y&`^`@hq7ip9((^$3Y>V34Sj4h2Z`;z7+D6AoKrPh*sOn_D~$(#qoU{
zhebRh_>JIE!EXiW`OU-L^OhtG$Kv=w^y8V>kA3(lj-SQ+GmeuP{j`u%+;HTPLZ<yC
zj$cLmE#vch9A|`|75qc6@_DbUb8(#Kz7fY?BL1Bj1+N;ST#AF8Kr=7@E8Kk8V<rli
zxW>(&HA&!90_DE(-H0PA0VHsf+blQgL%s&R0=Kv`a0@!(>s{0T`}{!hgT8zT<WFFG
z0y`48BY^@5Boi<b@Fn0+piTmH69^={4eG80?iLah%oYqKkdr`e0!qw6f&~Td6lB78
z`m4eT6v>1G+#GoQKY?NiJeWZ0fUkH0_atzC0;Lluk-)uz)X()-M23<H+?PP91gOw~
zfuxM2ttj|F0%b)nmq7UhDu_s*|MzE-N(oe!gjEu#Dh_%1<YmZG9!j8E0@cN*Mgp}G
zcvyH%!8|u+So?p{)=Qv%0>cv+kw63X_5k%%0__rbB!PwrJeokG1fF0Yeh_G!KocP?
z1lK$eq}Wt=Gr{J9bq6TwEfaVwfyWbQC1UFY+6Y-v*Gu(w?O<<lBX66)lM+?0K#1nk
z2|SZPmjt>d&_014#r+JO6X+nkV@BzefEDnfo@LVx`<_eS`2=1N@kKVgWsp&M4&-H8
z`@1DT9F#zJA>=(0=$YZY66h`brHs-?NMFHz3G~nC1B47@eVY533BzDfh6oN#U|7a;
z(g2khpdz(`BNG^vz~}_VBoI#^k-*pl#w9Q<f$0fcxt%>efk{HhCnPXY_*bj5XiiSx
zWih7+PEFur(eq+wh&VTac?rx+U{(To`s@VeWO$wu7SE_4vyDhTjEZFxW;>*sfAs*R
z$((;<fYOB+36OKPTM5_+tVv*P0!{*M0?QIuE)%KuZ@&ElR4RdV0`n7Ckig!ry)*eG
z2`m(zZ=hO~0CBM(W675ar`x?nLMu48=LeFXh3+1xR&tRJRI3D63sxDZ)+Mk$fei_4
zOyIRg{SO`WH5urwtW61=yepXYhei%mn-e(rabSz!R>5t8od+uFI}>;%f!aU&eoSCj
z0=pA<KY<TKxpXZ1`dfiL3A{N_y(;*c;Ol~K5EFPy_}dA*o4}U?6+Pb(g`DKQjJUL=
z|HB0Sx#YV#P<_O<a~Hbm`&jU+1U^Y%pYTrw_b2d~5c+(cz!w?*)^C9?h36?>3qO#F
zJ($3u3_qN}5#iq?a5RB$6ZlTd9}@Up$gzy)&jS?$3t~8)i9P&j;6wsHB|y^VK;UPN
zb?+?l(+T{-%`J)IN&K3?ZwU<5F-*tr37p~1prN6LvkCmcJxxO?4S#YCCU8E13kfW}
z<SQ~ry<ExrHTPEn7rC`+-rjpDfxi>Doj{g`e-gNyK)w4z|8n{Xxt73nAy)-!3{s3G
zzab|1%>?qqTRa?OJX;P@(2!393B!ArL-{lO4h=L52>Jy5f&syxhHN492?@y&>^w**
z4Fxstt5|mm-mUTf6rNdFkfex^y9Cd?5G*RBn1<p)?$L0skP?FQ=VvU4B{lRLq)6`9
zP+CJ(4G(JGdjKX;{5nuZ!vh-hL5iWQhH@IpYp9S>DhsJ7SV{1g-+Wd6$E;gB^pJ*H
zECQiw8kP)F4AnK%5MDE*yfH|9J4ijOp|*xP8p!K%>;|d&8tTayQQ=56(BK=ast;Dg
zM>RBJ({$XUqp^l28n$TIs-dZdW*UZT7@?uLh87xL(C{KVU&CV>p3u-%!{ZuSX=tsX
zjfQEzgxU>O;lXO_VD-^p_1$3g`(TxSh<Z}PQyMyH=*(LE?5j9LwbQWYG5^yVo?#9{
zRC^5_G<4K3<!=AUAABziQHdey?IB)0+n@J6tKm5fzn{;hd1Q!sUc=u*6a&pJ8oIJk
z8v1DHrlGrr9vXUb+=r@%TZE1j@%~v^cBpDRRBf*r>P3g4s<$BZzU)a2{WT2Gu%mLY
z^u_GRQ1w}h;JTq|poXEG{6oDW25A_qVTg3y;h~CwA~&UBns-W2V3-=IVU&iLhPZ~&
z8pd$MHB8blR>L?A<26jsP_2@`_%JVF1Hm`W`;vzOFAY<ZHN320x`r7VW)4$RG!#9b
zJypYMaVx(uFpZOBV<7*CtcuG5Gd0Z7yp8eQVQQ8J;%vbq!_-_2^E8AtL^MP-6d0};
zSRC=w(tZY#ga%E+V$KszDh-B)`5G2zNV3|sLeC9Xt_D+srJ+O#zb)u!s4`s9WFX;Z
zUsBQ!X*NyFQ@;lma;gkhgO3FlNt8WYeRnf^sm8yMW0Qu>8kTEV!L=|#t=F(p!zvAH
z#dEdb8V#q1tNl`2R`{lnbrMx%gxVlvqhON}UW;BFq0Y7qjvk?=jZoV(Y}as#IdB9u
z?9}k7hR-y-qG6YY*EPJMVK--*hF95dTm=<F)(925%fE4i+IL6r(T4svB+oZByrtnI
z4SO}bt>GO`p^<9JNcFCU<0I6?5$Xf(8yemhlXYOA{vk*0M_<*Es?|ufYjwaFsn8(!
zv4&4H?<sVS_&ynT^3OGV!L%BF)UaQ}ml}>}_=f#6Qt5|$UupPS!vSgIA#MmgvJML0
zJJM_KVGSS5_b#3NvMa<x@KFulYq&j9eXHR+@{#IKaU&@=N*&YigM`MTJoCL?Stm67
ztl^}FjrD^+aUG5F^6WoK%^jsyHV-WxrGC-ytA>9y+|uwHSDA(j8vfF7hVx&;d8x@A
zZT#bpg#OU*`6zW|l=@Qx@tk1Kn!)e={=jH;QNtw-H#FSj@?^tDtA3-^WgZ122NwGH
zXmv%yRSi=|t7{sri%!lc29hUE1y&ae>Z8^6LjKztvUG%W<miBod^&tO{5n>RR{3>Y
zx#2r9TJ0XK?$A*{_l`T{#A{!L{vNFYI${liLD6%^sB9fX#^&l!ItuEzQ^#Wk{r~>t
zYdA)=9is~AD6FHXj{8~$i%6=wb#IkT9HZ{iL1fy!Mf_BXN$iWqvwm9_D52wC9Sw9m
zqN60!>ZqclsyM7&6)2@+-WYYij?y~H=y*WKzA>tjj>ThCSsfLGloKp3xND4J6n!d+
z=MQ64Wzk6}UKpcz`t+cVhyM0Gq@$XS>N;xZsH3CASXE%GBG%MVOU%JV{SOPNE!bRQ
z>k6-@!@QAA=lWuH9jhAZcvMF#9j$dt9jg|NRgI*S#;o(X>?S&z>S(5;xsDb(t|GK^
z?0@4$(vsb%<8f*7Nzp$NY@_1|9Y2>2J*}gD!%+22S#5P(b^;7f3VBMfosNs$vnW2J
zqrHv}Iy&m;rlY%#PC7cX=ZlBB2tF(Lyx?;>B2_|+dO^pFI<AdXMaL<codmmz&!BOt
zhmM{)`swJeqnD1}qW2MeNpQzFHF=yGeLT=tOy=;%I5j}{AolHeFVBHu=8RW^bqvu#
z=g#B3B#auaV+6<1Kt%&1b&S&S6PrvQ9b<Itl|C6gUX9f;g&iyAIKlCP69gv;PSP=1
z$IHSOj#uY52Z+;jOxLkd$0i*!bj;+G))Ch+OZN_-8xHxRI%ex=xg;=0$6QV}9bxv2
zjuW+m+s1oeyGWh)eNij;3Hf;Co8XOFLWibfp^im5bRC8cM~AB;$;uZ9S)5K2lquDq
z^8=E^rYVF`DIN25{JJbKxNa~lZtpJ(EMVm)s8P!U#Kk(6u%k-**XdZQV;NVgj@3Gr
z>sX;<r4Ih|b0??`6V%LH|CtFYI8jxdsGgdr*63hZtAm_T3?%Dy@Kd%tAK0K{@I=M3
zHtX2JO(5X^NXJ$k?1Vi!UKO%U$95e%bnMjeijG}6c1sPdiHc#<M6dZD2w7Un|C&U-
zspBmv;&mN++W6mKCy3kII^N-goTNU`@h;czlE8a9-q&$+qAEJctH%8+0$<k&)}N%<
z)gS7ZG)W!W6L_w*|H4aIAM5yp>sQC8I=<Dt(}T}+e6Hh=j>9^>5QXB`I`#|yQt&H5
zebRr|5DtiWFcWn|$2b4uaFk;=NihjCWcW^^z8CSBjvsU!7ruhkW4BLIKW0p(BHuMh
zo#g7{7Rt@=SoSF$r*-@y{8t@+==f8|Z(=g`cOhp4&+7cry`so)PRFH;&v_vibo|BT
zOkI3JlmGMlTVnqaT(cr;O*8-AtemS{wmPosxS^wnfx8Uc)bX#5{08nYa7)K+9a#oo
z@YCn2?=QZmCws$}YUuse$Y*%FeOQzN27CsTfr5tD)qVrhUgpP4Rlq>dK(>L9fgA(5
z20sj~{*>_0%lz!Dx_!YrlO%3?Sxs&fx>NEjWZ;XJRbjysFY~LN>TUx?4U{r)zky-~
ziW|7cKna7Nxl}i9`zlZIYW36<)oY3xH$~lRpk1wCNx}OB`&<Z=Hc-YuIRoVl+$iI>
zr>F-Ee%?-fxG_-H0P(;S_3ISH6<uyBKfk3a8K`Vvx`7!6s<8P69x>3+z=H-JGEm<@
z1GekB@7XaqtUxsb)eU|;0yPbcI_j$>_~KMW{;+}C2I@$=Sjl<@>Ixq<)vGf@da6nV
z{X3_s9!-LC3Wpvw(8xd^1APrNHqeCiH}JH9rW}!Js)d1;2AUaY&Q8ekQ(>T4Vw!r)
zz!O3qH_%E*YYynm>^8zl80gkk%qInDJ|&f@Jxx6$q=SKu20u@u+6%IJoeXp~(9OW;
zX^P=l11}hO(ZF*Y=xOSC0~<sqe{-7pW*R>cqPiF$?<z^CbT`n$Ku^iPw}^jCQ@sp+
z%tA4h*9iu{wc%y{P~~7h&YbCLoPquZ1{fG<U=SNVT@5!dSjaFzDnkqm&G7rDt4F3Q
zGdnnfhX8gyOEEB3V#j2BI!;%w{^Mi9LDLm+ynzV@CK{MzV6uUi4ZaUweQpQ1D88Jo
zrWiPU-uLfx_3#We)xhu5)il9ZbA#kF4a_p|o`Lrb%r-E`z#0Q<4a_w#&wyjVH4rxV
zPHfd?UBEC9F%UHn<K$@?Oh`Y(h3^}YMTJ2VQx{~1L}#cZlgv=20ZWK2NaceWDrF$e
z(a9f-mG{p#uz&^4R4aJ+<N3dV#RirLUnKZepRA=q7`w~>O_DeIWGy%NnqNh}Qj)I{
zTrJ4lX3SLU46HY>$H1!wem<MM!QksI)iyS5rrKy=lYz~`w+L<(+&)v~ncEHQ;7T{}
zih<8d1$P_Zg{BSn`Tv=zb{TvNrJ_jFH%k?prCwv#JsJ#__rK0%GE2R|$-{aIr}>VM
zw*}cV?@I4^({h&jfXmjvX#>9)_{hLs14mg&10Ngsgu`c`UplbQz;A!}zBKTaflm#5
z#`=h|UvT0q^#$j^EJYuNKMH0ooTa`taL~ZkS?Yiwl>@UB@em6Va)kTX_0Tth#bzt=
zYO~dM2F|te|7h^_W$JsuV}d^zI4-2?Y{jS(27Y3H8d!ZH^xACo#cXxbz$wm<+5hbZ
zYi6roSvLdulei;^-wm8G@Rxy$2F`NH82FO~8GNCTsyIhAo8zTAZ(#gC+1Vxiop1Rn
ztO{H(Kzw$Nx@6#Q?seSK+2_pUbl@@znxjTZsw)Pr8o0*wJ4Z2G7xGy;$UyV0Icmv@
zz`r~MaGpq?BkAq-hvulPB;SeQm77nLi^2;e;Y%WvL{1X^BmzkUlgOqrS3OfESbDCi
zIadvwt73E2YA3LAE<b4vl|+#w?n?5%-s-El>eO6SFo`=Q&q7HQPI}k1j?@Ts%JCDk
ziuvzmhVxYEd8%j<`L_fv&sD@(>jL*AaXg71lPHnIy-Acz;=UxNB{4mTQc2vO#K0s5
zB~dzwGD&nxqI(i2%7h+BqGl4ck|>)*xukbNyL=Lrlc<tJ1u>~q6jCXP$LA@URWo`u
zArB_;kdXcoONZ)7)DXoG<>4f1C-GzwPbE<&iMmNNOQLxa^^&NcM8hN=rSl12gCts1
z4?H4#<&Z1}ic}gU(IkncNi<G^A{FZ7Bn+M+NgiYML~JQYhgRa>I*B%tHZS25;@np7
z6ISnp@9aF)E{Uhv=lT3EB=L-pj!AS%qP=kH9oW@jMbcT6XOnnN2z3VP49^Rp+lxZF
zB+)e!n-^8IfxlE(^+=-XnLy7Zda>bQ)jNs)Netj{C($Q~zB2B^!-`S;#DS!9SVhC$
zOxr1Ba1uk3n3BZQB!(t2j94o;A?clO3{N5)@{bliLU5$us3i7>y>q!S;y|CVNsJRd
zUhstEKQW1-wStobCkxViIq6+gC;2C=i~|Aw<SY_VGm@B@#HJ)RCowCD*-6Y#VnGtT
z!ZwE`TETS@H8+WQ%sh!m5=R#V>?EQ>5=m%6VuEqOsu4vWJ&9xzrYJ^|{~YneJO@ie
zngb)s5$+16l1K~5F65sQQAR{9Okz<I<$b}fZeVc|uSL|_B%eiBOSqJhSeC@{Bvy;Q
zLVA0paJsRFSBXMGb4|vFZtElmX0l$$h9ov-6gqE7VrvqgCh-|p`lXz0Nqm^Zv5MK-
zlh~2O&Lm#p>Q3UVBz8&uuL|xK+>->uSt<RsBwo*m%=Qi8c~NgC@op0DCGn1k{~!Cl
zB>zA}`sXG2D2a*<L%C74mrcIu`#8x*yVWOx`;wsEGO8ZV4Sg<d`?+4q`M(f+wpsAY
zB)&@G>m&{&@eMmxaz2>Ekt7a>{D+8~rSJJ$yyv}FXGm1-KAc1S+a$hYhj8e_Su`2N
z6Ugt`36flodVO2ta`vXEI-cMEV7|}^?luPkKPB;V5+{>5#myl%bR~(?Le3`fM-smX
zr~a#u-*^;A;*4ZS@%^YG{+aRln=6{NjjHoWToCauK_;QwMZrtrK=U6lNiGXv-L58a
zP55=eEYnMML-@@k{uOd7iQ7@-1tC|91z8+SuqOEg^9xe+nedw^W}>)>fQdiu3l=uL
z+sY(C6WOAKOw2yxDLJNhK*<$UCJIXIoq~k~8A~_b94TUYw@dC4yxYXR4T42Y7*Bgq
zbhyXFcoP#$lwcIeA>V5UeYIQrOPaXPL@5*Zn<#Cft%)a1lriyuiMl50nJCM;nW$i*
zqKWdvn5rLBf7TCbVeiSb*0-{+)C*NIQQ1Tl6ID$<H>GMzZ67pI!^F(f-j%?IOjI*b
z-9-DCYWhR=keJ#QQ#DO|98<MSJZ$24O!3MjJ&AQp+#Oe5K5<pwL<19TOgv$Fmy#Ya
z!Jk)JTs1WDsEI}<8k=ZtqJ@c0aWy`!nwV(Hmc~^xQ8>NHi7ib$CbeoM__)NfIL2~%
zdkqo2Wr5)KxZ>5YPwEH1jjN|jv@_AuL@yIhn|Q{=3npG<@BI>JZ}JYl%Ae!!V4|am
zzvHTtiRU<c3B}Oa#Iuqi`TYs?yy%<04bbdj@+Pw4b<t<%2fCVQdDO?y%|v(MJp?=a
z=!w0VgNZ(DGIMV2*PDihB~&7z`kCl&VzlJHJ)s7e7;f?wo*HOkkcq)2hL{*?Vwj0$
z1^jcaX48iaBvQ`{BgB8C;3z@XhdIz~jES)(Z?1WKoD@Mm(ZnPZH7(S#yqPnZlhec;
z6EDj|nj%Pjs*q_WrVE)NI5QJF%fzf@0lLjKG0((TCcZWiHW4wg#>83^Q4=u}%S<dc
z5jT-AVVST^aE@sv@@uNNrgTne4#Yp9qzRKfQ#43Uq)Bv4xF(hoH5Gh6kTS8@#1a!}
z6Z1_hVBczrfl&)hEE1E=WbpJKv$+v<(bRO!drqKr0xL|cG_lIWYLl1f)wyCJu9u%Q
zuV<Pc4e-uv`G0-uOsqGt%fxOI8%%68vD3sWrgya6#1(NVR7Y2vO>8l-)x<UvBN_y`
z^=-cD`$tm~uKBjJbFTSz2o}{<2VM2m)g)aVJDI)5#H%J=Gx55KBf6@U<Ns4vTQ>#X
zF!5%);HO-nhI-S)TPEH%@ecPE6CaqU^ljF=Tr59_-V;tjrR=v^ADZ~c#9ppAiKUnq
zKH=z#vd_eTpS|l9OhWvOtMYW<a}!?(*)RB|2?pv6^f_SSAeX9zq81Ku+u;~lxWmE`
z6W^Hl-NYHwyYzR|#P=qSaYY#FTbWVc35E^z0~fxD-%Orks|AMo(Zo+Ce&$FS>V)79
zL!A^t<rfpDOq`aqG#L&G{>o|y$$u!se9oG9<c4oX<Irtxk0$;!an8hf7Qx4OOk6PW
z7gwu^f4CDS)kPDRgs?d@8AvXhxRQybSwnQ<brUyC{A=P?#^I)rJO`%DGnqEaLd9Qv
z46u+-c=OAiS-^tNLeN6Cg@=v>{FZk{ef8BqR;fV10<je<kW|UK{&7havXEmT*MhR}
z)A<0yT^0&jxYI%*3xzEdu@F5GSb8Er%p(t$^TuUSQZ;KFDrTX$g(?=RTDZqT2@7Q{
zl(R7Rpsz)};G0QxuZ5Bp?z2$J!scIm<xNGr-$H2%Wh@@z)dPYg=aP!3OzwxOJZt{9
zZ@uYtR0TH8!V8r`43#YOHdST8xu$xMZWgLps4o7I%RY53z*`dgkNeJL<<wxse$9Sc
zGI`iSZHAwH$;bS4EY!8I&cb>N^(@r4FxJ923k@thVxhBzXDu|e@Ti5B79O+E$U<Wa
zO)NCEuqEXG(p0BSb=6dNS*n?Zq@^}ns=0-SEyd7+brbTqg;o~YTj*e+wT1nb%4e%5
zEwr(`L+ulSByHL4me<UuEEKa9LpuvkTX;syy0&7VSfXICqpg<g33Rm3$-;13g>ALe
zR?k^@o~DHn>>>*<TIgq?zlAOqx>^{}DAd~mQ+2a2ozMJO=q~0S$?6kZ^|WxzR=qe?
z9M#iN)h`BKve1Y9c`?Ay*TP46;v2pJ7REFWU3Any3xg~SwlIWg9W_jF=>Omg_xkh9
zkrqZ-7|nzhHXQKfxavMv)pS)`S2e8=9PX+zjs4@f)mund&@4=}Fv-Gf3v(<?w(zor
znHFYQm|`KYCoqFk@uz^{s;L&HN$*V;q{7}~c*|ACi~29Q>fNKhf$f5GEzGkJ;q2vF
zNU3mMx2IH@l;<C_Q2FOTo$B6w@TETn;vAqK108=1=oSnMOD!z(Mi!<8$AZgVO(~0O
zr(jS|si`VxTOcxRO0wlHz0g8h_<X?yf<5l{d>S+lEn)*-4J;O1!kO0G+x?bXSYct6
zh1C}J-ppQUVR_2C&foYOpZ2YH+OvkGv<t5JE5uWawXD@m-?gjR8!T+(lCf~W!X~aM
z3vXI@i!;;0Rtv9K*kxgxh3yu0SlDUdla%^1<(;Pb(`wJ}z7lE0<3f$J+HGNvh1V^-
zVPR!C|Em^Q(3w-d*QDkx(_Sxei@Va$&x;SUi~HZU@Q#I#nW2SuExgCM!D?F=dM*2f
zv>KLH?_1u-CO#1SP_Rr>Z@rXw+<&2Y@QqgfeHK2o@R^0rEyUAmV_LO26F8ezcg$DC
z=BqC()SRz+%vbv@5WlqWRbC&?_iA#Gn?JWB8%1m!=H_qVyoC!EzOiuB!YK=<xrtp5
z1s)20YvDT!-*YYJs-L(tPWg@rr}=}B;}(7taw4M}^VQGn!1?N=Ad`^)!v1;8pS3`h
zT%dln@Ehmwr@`MXoVD<Wg|>%-XDsm96%tnOPwuf24oPkE#J?<D<e|z&0UMVr{B7Zi
zg{v0+k#@Bz7QD<|Wr5eas(Lm}_SH2DH!b`t`^<I08-n8+`EOacZ2>m&*(lS>pJjWT
zWXu9ZOqLB1^NW&arWPoljgXBT8+#Tgzm0&6pp9%XS?Hb{*#{RWM&;U2HvV0p=G+x3
zXyeQRRmjGj637{TD(R<5yvxSjHfq?YX``sk{R-7=Z#OG$;|~>lz(!dc_t+?5<6avj
zZIrTczm5CoSu@0!Y!izwRBaZj(l#Ed87gCgoH}`46tgO4qoR#Ul5Ke#6@*Zqv`|&H
zQN_lCOlzZRCW?enbjb6})Afa_x{a-O2RANMwQM|WqmGTbHuf!4KQ2`NE>yK`?}-}z
zTCZoLzKsSp9$_UHsn5#<A6=xLUZnaiQVnf1w$a4KxkkZ91se%YUZkwX{-!pX+h}2f
zyqOJM#FjSRT;x@Tgh<}XMr#|NrSW+hZEQSY;~N+Dg-}}?Puh6L!MhHgveC}Qk2X&5
z{SP*tvC+jwR}SU5K<`6=_BK9zEYQIQk6a8LZFI`;&O)BG@tlz7Gx`fQUKD;{kz$gw
zi`0SNeBEqxx6#8!PaBJDEVj|hMsK>=Fj-q0eQeCKG22F88~tpIwlT&=e;WgA47D-L
z#y}f`Yz($B#Kv8V)yg`duUdp^E>^7;t3?llx-3@n7OUYlM%Wl>V-!nStln9y4ledO
zgyGg=Rd|W_4A@v3<JkW;rrH>9V}gx|97K-M@<8P!-fxx;OH`jFYG2FXWE=0^^vzzP
zUgo^293+`$W4etQHfGvLEm0ensD*w%*Us#Qp)bt9r%RMk%0I`(TpR91AAe!-G+>^M
zn2orNFo!QIhaqAkDty85EcbZUkfVVFCwAeW&ZZp=Xzb6Ufp?Dv9y%H@M4xdqVA(jn
zL@ltf(8jeT%H}M6Am|9Xf+@kY;C$A0scN}Yee-vyTjAhyOBHW&EwQoG#&#P!Y%H^}
z+{Stv8*Hqw!4v*dOVvtt%Tl#@sp|1{XqAoC9IUTHYXsK{t`nqqX{p-C<{$9QUZyrI
zQ=4q?7b3%EAzK8u3U1>LuuP3urgqwR#l|ihyKV2_zOZrd^JVH#S^pjzuiDsa<6|4I
z*?65DZsR>0Z*V5tc$-s{9kooo#oU&wYRlE|8s51dkAqE?tB%W6yk78q8y|3r+W3ew
z>TZAE`hGsC-gmj$O8-j!3V#1b%he}bdfc~d9I^2!mxGPZZG2(l>~a-ap&neJ_$zh4
zjSef+0UK9Ws4s1N#ksdaO<tkCw!xcvudPt0SEz$*&PsJi@bQ&u#!7E$ePiPXj*g9^
zT=FZ`w>G}B@x9Fx8x&ck9$TfpSn1{et2hr_<t5>BJH(%C{A_!dL`JVyCvBXv@q&XF
z9dHUwS*1?f_{GMrHh!~lg|)KrJNHIzboPIjF-OT&&9gEPys-HvJ4*O@?)KtyArtkN
zjf<i%2|fR|@sF67xlBZ%NOH}_bsG;jDC^*cjho!79fTZwbIA9vjXN9^aB$1UZSEn5
zd|3|Qc=!5$_GJ<CImj>OQD4?cU)DKamQPH-gYSG<4<Gg(jR-hkEJ;xEWWpQ=xeo4j
zP*fD<;7$jH929iGBrGK_VPVOtNG3URxJwk~Tuev_2lomo?%*CFtOMOjI=D~F(ozj7
zOj63h{Ss)}t5li)@h|6~yn{y^G;~nGK}82u9X!aEhWwSJ^vc5XNpq@5LbizYe8@o!
z2Q@{h=76PF7tVgDB~7dCpbi_A5m|Iy2lX7(chErmspQp}Nti#8;ZX;T96ZS_+CgIn
zO(gl_f=wMXchJH?GcnmN=D?b?6!S63Gq0YkVJio%MQ<b6R`3Z2d(Q=!iiFtC!P5>p
zI_M-OGh}YhNafo*=pZ5$_85_Qc6RWrgXbJPFFsUQVdld?-i6{%-u2HJKlr*j=;oli
zgB}hn2eyNr4thD5?BHbwy&b&dV7P-34*EFg>tKL`fe!jn=Sp9#?pdw+J9uxE;!j8-
zZ_6GoA8PcwZ;*q*4u-IcR;!_c!z2k!2Bsb9V3dP#4#qne%?hkmsnu$%gE3TAt1DlG
zi0j02?yb-SN&B0a6CHfAT1|5B&iMeJD4XJ7s)KnB!Vac6nC@V<!#9?oz#27!t97K>
zdp<PNLFqM$VV02EYgFqsYAy>}<K1!Sy2h(d#6i?S(t*j&`8)K{wouGL+(B%ON;vpp
zjnW-x4py&GR9;)7s2HN3T%&khtK?eMY^_>)U&wLbI#}ait%H<<w1dSCmN=O2V1a{$
z4i<4Sp7-@wtH!QXskLh3TCa45518D+G6%~YtZ?wkn!q86y0BKQbg+txVx4;AQZ{!d
z_h?|XgFy2j!?_Vz>m00iu-m~NP6G!UnbyHB2b&xmIUU%_iB!bjWu4kAeYi!C<~9f0
z+4Jkv4mNY0+9{mXASb@FPIXxu_;#HldDX#d4&HL`wu9Fl@CG06uvA;G&aP8$ICxV6
zdCq!O>C51StYEA4s{4Ay-zo1o$Z_%N2KBy!4;*~x@CPH#I5^8HIr!MYZw`KUP`G&T
z6YdO$e4nx=>(xH?+W{ZRXAVAR4?FnlMrgl-FWIyovdF)3@HN-FgKr%iaBz_0C5`gk
z^nN$(y%9Pj=3xg**Q+Cf6!W6KbMU=`pCv0Q#~l11`7>LZ#~u9W;DjXqiIuz&+Pz+V
zv0jm6ZSe4<gHsMpi^DGte&rUi!RxMa8&q3yxa|wE@*@uVc=G>;gFo3_F5rTPm@ymF
zInIg=ich4UcR;+rq8(gxa7oM?4sJU5+rd9#UUqQB!BydG$TcBMbzNFS!uk*y7E}rS
z%h^@M<F~}^wjdqyx!%oLuJp}+`AT2#<#$26L$H7gpAf%`fRLbzkP!N03)$)mkzZYt
zmFq&eDCpu&7xy#D^{$re-Jl8yDeR(%i@RLh?V_ZM`&<;IdBAtCi(5^CB*nxmE_jb%
z3Bh+pWHFXL4CKU8l7zgBiw9gh=HhV|WnHjKA35l&>f+=ERnA3uAr%CvRCG~EcxAyV
z8U3#f>OmI|xv1u%x{IbRm<dA-R@+4#F>4Cea`CW`Uc<BKP}fC0F&nw4FT_jeqCtim
zzO07ANgic;YX$RiZY*LG7kT+mZ04f5h%E$L3Q}jnRxVn*Sngtli#9Hva52HfL>Fyc
zJn5pZi+(Pia?#Gk(=MKIaeIR*woygOhniIiKDAM`XSuHjy1D4!qWeb0(9uPw4DZZY
zm*LO3cwYDm8RbP6U4(ZPOgHg+Ik@QIqNj_iZP44rOKb&EcBe5L6*}ei5tFersrPp=
zz{PNmj*B6e0@_A3(8ZdK%Dm+p<YF*I7eigp945H-mXDmF|1ID6f4#@a_H9%nU5s)u
znnSixjd3x~Ma4}jut|;OwA`d9j+ZE|?um;7lUz)8Vewazi<ezYaS?S9b1{{@x=GD-
zG0(*`7t>wLa52-xY!`D}ESevf<${5Ph31+6k6kvYunWCl@P%J}<PrAFCN*S}x*YUR
z*`(qw5-v0s&L*{KlS<N4I)SDkA~Q5yFp3xCiH-}`Mao5*6Zntp&ky=;{1n)5I`HK3
zz<Zn2d`Y{&#X?p__!6#A7mI}--{ke`G8ZHh+Xnw%T<Kz!i#J`o<zh8^*u@SPJ6)`G
zvChRd7u#L@u}Q6WQE0QOxLIv*v5{4B@lJ){7QxMegTC@nVc426`2<m`&5C~+8@*Y*
z;$oMJ*Im5f;<pC_N6-2ANcnCTEiY&9;p!;tf7QinQcrT$GqPFr*cn*7S#95}-e!g_
z_PhAf#k(%vbMc9beJ<X2y<b(2Y*Fmq4_xn*=0g`Bk+}G9vtsyIh^KE>!7a+I9{SY9
zo{GUXm$Ex<QJ=XWelGZh;D9aaD;Hn8IN;(S$8?KYyG7m1@h{B{9=+&0<YKGxfA)y~
zu!|!u_zN!YM;!5}i^9H~Z(V%n;(HgzxXKRtDx~oPd)tMPLNbLPU7X-DOrdQGKe_nX
zMX?l$r*M)-u`R0V^$;(@oN{s6#V;;?<uY+`jeW&dZ&4Rq{N>_z7iV0Y<#4z-FZ!Q?
z=a}0TMK|KrEsB#l&%Eg3k_+NL9J{UF=>MG|bf9_J#T7}LXI^)4!$nRCxhdRq@vn<J
zQYetZElG9TMOMnohlfR^kT2yGnm>ikMg3JIb4F32=}UR*+Mhxo1(rz85KJLEg-{CL
z)bK7_IYs@Evz|^=DHKehND6nQaHpiDURX#W$-m)NFWa6{%H5(D6=daaED8`O+#k3n
z<=u^{l|qRW?oFX&3iqYpY*i1XP%4G{g;!3YbP8pJS4iQ36ee#~4CPWNE8@DXib)vC
zi@8^L#S|)uc}&bI!mA3>^T8CZXHr!YvASRl!J2|<n|e5f+9}jY;lXXHfgnj;A@v07
zr|`r!Me&go8jA903QdGG5^O9;hyL4C(+qDWq`6=V!IpxLrSP~A`nO7<b%wX$RD8@&
z@yQgPN@08o6W9s<P`eb`r_dpVr&Hbu(ldh5ZQdE|&F`~2rtm@vFLG9VpWTTglEUI`
z>RG|(1Zh4mu_Rqm=$hhHYxHL(=Y8E$=q;ps3O!QT!aUFWdWzCZkY<M~A>vCZ^bw`6
z-~sU*Abdy)LsJ--@gJ1JVB!CW&#)ARr!XcHJ3`2)6h;c+pAne(=uE8Iu9|LFW5pcD
zs&4mUQxE#<6%S5Kp>O`2vD?)o_DKpar!XajsVU4(VNMFuQkX8YZf44Rev(s^VTLGt
zkaAXrP@J2>ycD7-#8O~XSfU~shrG1$6cQ<DDRkWLqYt0J{Qo?45viCdSSfs-!WSvn
zoJcG;g|}01S@{%RP2n|8^&EdXg<rR;^(o9xVL=KDQ%Gm|SER5qg+&~l6qbmxG=*hC
z(%aRR?P|GjB02pTR*AA!aJAr?6u!*Ft`p^EZq|krHm0yCh0QE0<loI4Qr;!9tto6v
z;f@{N#<D$y9n#)iDeO$)6$yDgR$+%?Ag9QvJ(3CYp>n%g@bwh-mkRN3yrDb&Z=~>M
z3OvAF{~^2M4)sn7@22o+3ZJFW>`&i&DJ;L!&&L9rRSvzM!UrjQ$U-msK1yM43Lgt+
z6vHR<uN>MZ$XIf^@eH%eKfdj4gM1ilKby%_%(7DWDuu68xSGPX6b__tFoiXzeaBK5
zu|pk7;cyBYcBp945X~dp$~Z%&<s41nd(p|iP2sx?r)M7jA%)}I|5G@T!i5z6;{MMe
z-lBd>;ddcF3!Y5jln_RpPT?2fzh;y#cc?SM|489aCfuRUvXVO#ozID0wvhik_t>4P
z(oRKAo#CQH{UdmZyRi`JGad?F&hRTKJi60!<}a_M4gJ09d;9av6#nJTna2HT++vCK
zgI9kK-IvDg6tdFZmX0)38U@qHmqz|H?nt9R8o@NO)9|I?Pa}|qyHkza>22NbRtvoG
zZ#K!Mohp<@!=nD2G;-74vE!|siss>+-jv`W?9Ma_rBOVMd(tSJMv*lB*{O=M2p%2M
zxH}CV1(=G?)X8&RQN_|I`-*qyDUtRL2aGD22K9T>;2*E3vqU2GeES1?{|J;R?0@tX
zRhmcV3ZXJ-^egOtKw4B*u$*9d!QtQeDyC5>jml|MNn>CdgVLy)#)D~eV&&6#D2-}q
z)Jo&wG^(djBaNDAK877il@5LRrLX%dYU=ImH5Gz(qfqTM>ZDOOje2QB8wdILnfr=*
z^%Ye=4W3~1JCprH8V%BTgq@SdqiH;r#^bzn|B7mqMw2v}3U4fU^%d1Djpk{zNTX#M
zH1E0WV`#cFaCmQkNf^jmrSaLt>^4lh(-T{#!C1PHm)fOxgQ;yAPp0uy+Pm4*E{*m=
zo=)Q#A$7#(>0PQr8XeQ<E9PXuXVZ8tjjm~QOXK-8UP$A`H0-}Z&Mw7st)-9q3oCz@
zG}i7?AMWxlDR)n!2L~>VUTJ)~DZqz|cux4$E;aN<_L*I(cN$mf`(H|<4@)6$=<g>;
za_8jieog%SIYv$V0|fK!R)f<R!l{);DvhCO3`=7|8WYnPp2mnY#-%Ynjgq@n)!k|&
zZ+z_bX7#8vMyI|14~`KWD@Zf=d1%;fwP3g6J>s3a)uc2gr=h1|r15eZQ#fRM0<X37
zPfcT58Z*<FmB#cm=KkTEk>)MPK$RX@<Rq1QWX(=vP8xf6t2iCfn3qN@jSIU~IE{$t
zQNizbEBbIMGLSHedLj)?<{M20Ms3Op)!yU%=`zVN+M`TCOVCckVX8ffIx(Hb{4}<v
zu`P`SX)H`*X&TGe`Fqr&G#0a-d%S0@`OLtQG>+|2{7*4)IakUawSlYbkZ(mAE7Mq&
z#{V&O70_}N+xG6r$epA*?(RwiO$ZSP5Ht|n<q;AB1P$&^a0uj1_q0sgOdz<$-QC^Y
z-SzK2_uaqVTDA7tb?TI#s_E%235t;CK;BtM7YfO-XZ?Z+UIDRKK1}5F{>1uLNevhL
zS@0LZW+S3+dA}Fok0OjN!Wf$L2z97o>d&HRu@=92|5b#)i|`NIwq5dH!BIsR!5*On
zj!+cRy*omU9HIKRNscW-h4ZONMVQRdIzo*T94|OQaH8O`5o!u+T7>D+dR%HAH7_l>
zVY1xl=$E?kNHv3#$w)O*aF!sK_0BEAJPuwR-1GbH!r1&GEa5OI0{H^Lg+*8-WU(OS
zOzqE^DK0o%R)pn6SW$$P90Chs6Vq5#gw;jpnnt%Y*05k4$Z1@W#`1H8{JB|Ig!M((
zP=t+~B-2Qxv8f1~i*T|Cr;4zp2wRJAs0fFPu&oH&i?E{zJB!e4r0P0S-8WJl%_epg
z;kA)!ADe5W+D+amzNZL#X+I;?ZzC1GB=bkA{WQEH9Ark~r39nY5l*B<IL47xgr=j^
ztE1GAQHrnohK*8VN2%4L)QKYO9~D{VY0gMRKpLgeILpbObAAyD(%_!rdZShM(dz!u
zs(PE`^P?3%uT#Ht8fDTbn~v<3yL~?%t+u&|K8IrAXcbE%o<<^#38PgqjoGUTNa(0p
zE{*bOG)SXi8Y&Gfjp}LCNTWg;71OAiMzu5+UmjmNTJ0RIDy305jbK=Uu1XrQF^VLk
zCwPp5vn^3)jH;PNtu$(<Q74V7x+T~4PToHz%B5~PS~Yjcy2OW#;`P#aYmBNdNb>I(
z)hLa|X|zxC>pz;L(KL<LX|$1ynx%OzN>roff~zI9vtv}tG+K$I_Sh)>&SMofjJHkW
z=CSGmk+&0kOhP-RabX&lrg2#s<BY^bX>f18K2}{UI+vvJ`dCHBbULN+>sU2tUSwTd
z^UygB;^k@Zqy<X2zmI3FaH#UUl<sNtV8k@uNaIRYHjNk3xVKc2#@sWF8`8K@62Cf)
zYlK{zMz1ukOXK=<w2pnsSVcz(k=~nF@-!YybJ+uWr=utTy994x)@k$+e!Jjpf>c;O
zR^1`|PC<Gpyj%D^EQyf&(zrj32hw~q8Kp_b=yb*2htqgGjeZjJNE(l_oWdVtXNelq
zq-L>l|1_SE&}Y*az@ao&JuTiR(|Afqak7*TOye1eRUExI-{(Z<c|j)lVj8=~D!M^J
zUP|NT63Ht<UKM;zkb~k)T1y%RE&RIpwM$}er$PKWjd#*`H;wnwct4H7X?!N~4+K9>
z<HIx_;VMwUzhedDbf1X#(=`6#tGOjHy3f=2B8@NqM~y*WNg@m-|0a!Z(_jkpewW6O
zG`<(*BGLIlI8z?_KWU~VNS9blA(MtlTS~*Gfu-?V8crJ7G=5HV%?ainh`Ahe<01?6
z((q~dX@qGEOXJ5havc8M;`uc0&J|Q&7b7n{PLWVf{3(s$w5xS7aypX77AD${Q^ecG
zso&H1BaQJK`0VR(YRNX4Hd#)Z?l|?gAjv;z{9D3D2pO5iC?TUu<YUqpTf)cDZhuNJ
z;!w$mdHp<2O-l1L224p~Y8pG)akTR^rl+xt)*>Cp#Y;2N;4?{|E~%Mm%;H3p#vE2Z
zjU{O;rJZ+4%}ZmUkolaH4#XA+&K##I#^Z~GFJ`BANzu!;q5}69&@pB56-;eNVrv>J
z`4hl-k^}QtY<(IVgsc%<E4WUODQpx%waxq$_@AIH!ncl74BE!Rk5_cth3rV9i+FdZ
zu_ujYI-2X)o5tz7$tNF)H`cK)js0mHNaG-9OC9{WeJG8?jH{!pjw5LtP2*e|=hHZr
z#_=>xF>V?s(zt7U^zeK#9X*XdEu8OL&ZP12cy%@%J$O^dGSf@70v*sJ%~E>wP)#8@
zbxP}~Ezk25R_7}q9fd3dvmT`4IubgPqVJE7qVN?^IUVJ7RM1gThte@>yrR=|@DBoY
z=$K9=9mSk-68=r7qNA#gYC5XxsH>x%q*+5pO&zuLXu3}EAF&=4hA)Nc=$I|V<DUx_
zk|n9Hqah13K{a4H{8KPq@tqaDjU*kCCOS<h`UlZeNU1dioJRPJ*MiwiP%U+|(xauM
ztp(c&wh?Tr;{qWJZJ8?|w%5_2MAA_R<rnF=SjQzgOfFJ2(9^)BIxb@?Esk~4@tTg;
zb#&HoxsEP6uF%m}$KyJ>>Rhaa>vUYNqq~kCI<C}lm5vo%lNU^g4mz9NB$e%%>@^{J
z{O+kon|-bpyhiX^!Cr!WC#V~A+{m`l@tBUcC#air+|CZwaWk{HBHmlaEjn%$-bc`#
zpeU!it;EYVxl_lzI_}fuCqu{GLMXpS$mj{`ejN``XQHZIKlLDOqkigP!H0CLoS+gD
zBa3=O$D=wLO;p_`s`nFd&M-`2@Wg0CA2&ht)6rkYi#i7BctXbj9Z%_aT1VSai6?c;
zov66Xtoxb5pC+o!6V*T+gSmiel6pqRvpOnGQqSplUdIb!70oB9Ri{&w@azuqmvp?W
z;}spRvH&|`{EznBB=ylG^~)qRb&~3Rw(#gA^@ff&nTw8jI^JSK>0HT%5gcVr;_tA7
z4#WoQ(O$E6b-btJeH|a@_)y2k6pFlXvieA}?*3B&)v}dRpRyB$zbre>KGX5JjxTh4
zspEGYfAA4h$JexT9f6K-bbPBLLp#y&osJ=Tbn0DN$M-sZU<>OgqVZ2w7fx0;PL5iV
zq0b5#JXz^F3?0^F^|wf<z)(wvqa!Qn*n-7!SBEEFu4JRy{K;y2nRuupr{gCMMhVJG
zMTY6o$~WfqqYmmEk!0!pS;udp_KS{RMRS1ct)>noRESTBQl|S;)c(@(w-8GH5mI|f
zbUYgWf{oO1O{e529iw%O(J@xXBps7=yu>y6Q`9&e<8|CLMNQB#QBr2&O|OXmXG+up
zQ*=xf;cOk#*hEv*Oz}?FF+mh&=vXFXmL$R`?c1d06sI#qF=)Py1)Q=BlrykU$08kj
zIKk>ztYZm{R>vwGOPPp{<s5pP27gW*Ymn;TC5}u{$*C$fKlapy*i-vct97i=v5`{>
z=Y&gAYjs>SRk^cM>zK~A7~Ogy8wBf2Rh#u_vCt0IeX80*gMYf*R>5s-XDJ>fbS&`O
zJySbriak@i1b0g)z58_R*KtnAc^wCI9Mo|_$4L&r7D+A#J*49>`>sLah>l~-<+3>W
zQ4ZeHk?^=k%C3!3e&1B}>{NA%iBDChCGqd4sxvy*XGZ-<PAo7012F?}16<^mpQ=h3
zm?%M|jYzGGfwDr#mtUPo7$}$)eFLg8O(hN7Qa?#oXkh<S1$5;NC<BcRG%=tVs9>P3
zfqDii8mMHTvVkfF9y?RmVVb&fntE|-;l=TIRRc8)e#BH9@70WG)K@onuT6o`Fj><;
zEdx(aQ?(7$kutnJEh;nJ&}pi^fd&Q|8fau-$(+<L)6~a5MN|EZY3iL_sWsEoGv^AM
z8fa$V3IkmYG&j(~z(ocwHqg>QD+B3z$#w=>8#p*kT|Zr2V4#igwt}^%E6QK`Ey0~}
z?G5nHdk4Xe1}-$vf4X{Sy82<d`g^*XF<o6^;My7La?bxo^tP6tel9c6$v|fVYp1Id
zXJch&sAe<NFJ)3)3=rSwmg;7pyMZ1Cu9T|vpP{-hN`2Zr{=p2zE#&?T^;|x2wSjB+
zv$8N67uOo-W#CQ&cNuuLQSv$iJS+0_so3=f7)p18fg6S2WZ-54z1cekZa1)@bn;fg
z+XVXv4jxeO(SQO572_RjdGYeg%iRY4G4QW}dkoxb;64NQ8~Bt81|Bf*pn;bRylmhh
z0}mS*VBkpuj~IBAwP5G6H@{SW&rk<us2VfXnAa11*;WQR%v4{rNIq_$p8*mc!a!U!
zs^AHB{d=heqY9p4M;jPu;29<|Q{A^Q@%>EIV@Tr1nQHY+^{j#C3_LFlb;m6AqJbBL
zcb^s611E$*Ml>xj=oJI68hFpZ`vzC@;&lUW8hDF^oTc6p<u?p`BP2gdy=`FGEOkZW
z<U5kuyMph`h^*)X10Ndr$iT-2c&5sMS?ab<(Nd+mswB(LR-dq)XGd9gnXNuE@Hxkh
zfjp~b;7bF#0mHyo2EI1%y@4N?qk(Y+sqa_?iS;e}QAl>S8e)LRq-ZneW~-qF+HFhJ
znxl$npS1ruimuh7SjK>9z&79*uncTnoY;Dz@TNJc)0`-7(H!;T9F^s8yCLox@C>Y&
zqkIDa3vXcG97QkHE}5%tnyX%!tA-i)(ZFxCX9GVO7*3ls@GC1aSFN3^s?AeBb6m`e
zqVVf&k9n%^JoV~4^@o8!4g6)`Z&q`j`f;9OrD*Njdd1J*keohG?VG1Y7#L~bl!4O*
zMj04wV2^>l2F7qgn6J9cSCiP4lhjx?h!FDeLM8}K6l^(PO*Syaz*Ga%46HM--oSJN
zGYl-|U^lq>8nbBs2Id=>ZQ$;*$vFn*3VCY2qWi3D@*N=yIQffw5j#TUL@N9>Uu~JM
zmeK$WtTM3Lz;ZU4xRnOZiq11-lf_9<c?}1$<W-zLCDdUG8w_kTu-(881DgzNmRz<O
zpxPF86T9q8jE>&w3!;6UOs6;n?pfYxV3&Azm*_Liix;Sy7N~ukEf=a<os;_w9N=`s
z;kH1XBwwHo88~d<h=D;1)KLS+I4~Ee6`P|aN%jJD+`tKDDv~h^)UpMt^unkg&#+Pk
z3NuJ$aE=o!r|}H<!j?hp7OHDR2N{&gpmYXhGANrtECX)9dGuh6jynhWEPDS!#hE9b
z!7B?@LNF=#`9j4Vc03S(>lWOFN@bvBFl;V<oQnz>RLo%PKN$B9DrHbPgQ~+(Z8)ls
zWZ?M7`ly!Sf_Yq<MXxMsWKffFGx#xsS{c;N;G+ya&Y(^Pbu-a>JU(gjbclKxw8)@k
z2K6(bw}Bu@!web;Z(Jg2BBZHcGr{H=blgx#<&N`WtunYVgPSsFP2s#)n+)1!a6ty`
zGPpd0E*Z4XphE_oGtp0BM;57b@?yaY1u48JgEi86<d<Y{X$F^xawkcUp_EgB5lODd
zplb%#u(BfWmcf-7TqV4_U=KmY?J0y&SgNZ_g!J|*kzb#|b>gT%Io%B<N!=`2Q$8qz
z-Wl8?-dhD9$)HaLw`Fj<cpnhFBZE6LxGRIZGq^W{`$Whx)7>MrduD#j{oub}Nbi>d
zQ1YOtkvx<E3;eKXGSf$?kilaa^cBsgGI(4x`-`_<Ni5d-i3|ovT(;7aBHz7GF@>iy
z7$}lwGI&0N7czJ@gXcuy^g=~P9XdvNQH12h5nmGT%Yv_D@M;FHWxx`?p21rgye<3<
z!8ZkyixflO$>2R2hDhEOY`8u~`3D(%C|+_lMMF`h`SEq}CmDR2!Qc!&%OIVBp26pt
z=vR2C;1?NuDdejReh|W-uQT{Y__rmJ?}QA=;QJEErHd3b`J-GUlH$00)of&<o$~iD
zj%6~@Kh4NxU}a!)1c@XN%nG_CI$j2T3BP@j3QKq{gS_zK(4R6GPNQ|u$-&PV{F1>-
z7GAdSYX-lunkELD_&tL^H~>x5Gx28ze`T;SgH0LyoxwjD%+Fv!2LEO-B7<oeOwV9s
z2BR{Vkio<ZxNTuH+h>uwc1NuJuEH^#4Kf(Vk+rMvw|^4jnae+kXBR1Yd0fLUi`1kH
z)-6(e$ef(PluY!rNjFu<sYPl=1~X}CLBZS%W@S)mv6_<s|15Kn?QG^7s^*K8eLU9h
zc&zJUH7|oX`N(b;X0RxOWf?5bU~vXZGT5~uG4O}PQjYz_(N^UT7e|w1|HW!W1}igI
z%`BMgV)ff%HD$3{mEjL=q;OtvZ3Y)>Nj?m$%V2#5By<~uv?^0>a|T;7*q6b6#>!w@
z20Jp?Nxm>qbBXG;L~Z9_S)%@Q6T33loxz?A_R`Le$6s2aK3$^BB~eCmm#9NaROO}W
zKn4dhNSY`#aVUes8Jx`ER0dV9j31E!)pDsin!&LQj?+l?$LLOQTnsOu>+@{nPG@k2
z?Jy+KZENZ*Cx1@tCbrCrooADpC~cyQi7U$%z(gq%oy!(5DAzVIe}0TB87?bZP}T%7
zm=}2m)>d&7<OvZ{jmjw#<xEsJQNzTIOQVz49$Ko(n@}b+6XX?4R5rQI2Ng|JGV%IS
z_1RKYuWUJzs-i%hYC<USmMVJ3FI6j9ucfM{iR3a>OR%<yI%YJT)>{@eQGF8)Ox$ha
z9uo~sG&0fML=O{<O*Apl&P00?O-*o@Xj>B(m}q9AxrwgJR0|WWBpvdWBH?R_)*`ue
znQBu)_=>pe?ik<F^NT<S6CF)-V*8kQdYQV=#1G4&EwmSzxY)!cCf;AB=q?j-siZ(J
z3Gs3cpJl2W3%^_~T&B91AYQ?Ig^<UWt8U9x-{tB`6IYqI#>BNIc2`aIG{MuAuQu_;
zay4jaf(=U(>Sf|O6StVSm1;X;*PFQ6M4MJAce%QO?QepF?j{o>gv?v6dYd3_TCR>S
zS6o8b$HZ+WZfD6?s4myU?=*3TaMrX~a+e9pFW48m*Tj7$UN-THiTh1FV4}Z?CrmuZ
z&NA_siM~u~h3dB=`ttj*iASX3kD7RGMbtt6DIvOex%BRF6a7s5x<b*dXqg&d;z<+F
zn0VI2gcWN33iXtUZA{IK&f{J7V8KB4;P;8sLlTLV>N%4SFzSw#>Uk3{n5er_y(svS
z;2`$SN<|?Z$*auT#0Mrmq`6j4zD^6N6o1pi8z!DwsRpl%ipRB2Z<%=8#5*S5HKWyr
z?-OO&;d|nx4uxE5_>qashS<j@J~3ggRR640b5=%QN!F}Xi+B~DiO)?OFmaGQW#UT{
zqfLx4@s)|MP5fx$CllY8_|}AF!Zz`pi6OKf6GKfLTdBV182lx{!QOOLRH`BqJy)rd
ztrHKgQfU*q2}2~NU`CLK#8Ri2J0`O1bQ2ycyDB=3!C0j(8J?K6N^M!Cd=q~+OJTJN
zOoS$KCdl(9h6y3(Cn`FU;U<1I@f&T`#4qe46Z;EN?f7!6da}c6b?s`^f3^C9lRxds
z#7Gmbu2w@<tL_U^e=!T`_kRTc734NF*5#MgipwnLtX88~$2IEWHEOJhaVD0SSZZQC
zJKe+rjsg=CO-wQ|mCeqsH*x)%s44mhPT|C|AbPy{LcG&W3}2(@W|){+!e<GYZDLM|
zWG-#KgwGc;eT`b&I<?5e@px*n2|lcHlW&Lfh5V<v%*1jN8%=C7vBJbk6KhPY<!H(#
zwyjZT)~Hn`R@1yor|7tKWgQb7u4+_G_E@X<uWh}F4Q#Yj^sm3xTD6&jYgBS8E!o6?
zwQ38^V6F1kDz1{<&WzTogXAW5n%Ko*Zep*AebQ)qOwj$aR?)G(M0)p&u-JRZ#9@vI
z3(YJXF>%yHSqm`>$5<&7r%jwOaYB+hY2uWL3hUH`>(uq@)Whr4bL-U59}{OyoHKFW
zM1h6OIyHNpdMlk+w@w{jr(ofh^^rZ4vQXMW84LB+D>`O<sbJhf!a{iq%0kjYp@o!%
zau&3Cv8F4d<6pR^p1)$o&2ggY7}qRRuu$LP`L6h+S!%#~RnbBv3zaQYu~5T8O$${m
z^gmx%P4L_GioCjot@~3s;iJ1HYgwpmp^gP|mZYu)O6clY7_=isAzz3Q8(LVfUe(;7
zxNDo^x{(#FY-}vpL@>TVHMh`$b+mA+g_agtS?F$|hlSP_+F0mhp|gdy7A~N|26eH8
zi#Dis7RGc+U1*`bg$^R=XhlCj45A}p=tUwqa({Wox<uk$DtMXTcN<h*GzWD{UT&ca
zi`^}Gg@vv{xMHoF5DMAySF)NL)KwPG9FB5XzCrEXpi&#v)fTR?aIJ*{FRJS;++d-X
z@aqJrN%@Ve&f3D8EZi)FM=z$<6;RS!lA;cI9}Bn9YvC~qw_CWw!UGl_6b0(@#DF_3
z+-2cz3-_=cHY&RNgxqVPTayI6_lviO1U+Qom5pl7M%8b3VP>Oxm=?8BJtFw1g}*i`
zdiz><+`^L<p0c8iMg1)BN{%^2iG3SYe+y4Yw+;}D`g)VPc$0eC!l#?mvledJqy}1e
zM#z(!6uq2Jp0n`0g%>Qm$ab?p$u5zP+@ux>dBwu3tc8ucZM<gTbqgCTY_#x(g*Pqa
zEex~pmW8)1d~M+y3-4HX*TQEOKBrYwNxo;{eYXDq#WO>0IKchF_|U>f(nO!IU=}_W
z&izVk(!myftdi=nSrHSPRg=w%-zmPZ@TG;X*bb#r12?M=Hmh&WroN}nX7#Ow?<}M(
z=q%(_$s4v84zV!3Zt{B>L>xyy2pMWcm$4QJPgX5w(DoL@91B^=IwQ?x3R;4;;Ox!H
zwXkioI=NZ-7Cce@t!A>_iNeAyD&T<KqCyKfA>^I5s2?r-#C~BJEDX2svxRXM#<Nu|
z^x2~RvhcTszFX9<7JjqvyM?1(0o@<0^{&D{1>f8vGZhVTYoch2Dqk=4uZ0m7c)`R-
zmP!cuC?R}VI)(;dfrPC`M>2u^I4?HQ!X##~EIN~LvK4LqU3@4pX^Wa-fiEAZIaR7N
zY>S#<VWx$J78Y5UWntYGHQT}*&VgH$+NxS^RdX%y<@}qcqFD1R%$JDd3pg&eM)@wb
zu*AY@3u`Rgzct$Nx75P3Th%fP%Pp*67jIRo1Xl_&3MIw-#{&s#t6FREaw4^kRy|y;
z7yNx|v<GApt7)OGje0h=a313<YNM=;Z5Fm$*k@tCg&h`l()ONHyJ(inVw1M2BU_^%
zk=>lhx2bB|)E*1Oy@I{BsRI@cT7b=s`H4do4s&E}Q)fA&Zc|4r9Jg?S{UY9Dg7=L{
zGU%j*Qx;B(#2;R;{DXpUcmd^fXGF+K&Df^SSs<PlEU+WKd7CO_gXhwh7Hq#=k;iPr
zZD=+s*htt&+DO?bXXDN-sT;Sef!kG~9nDumw<~V3EN|nX`bj<jC>!+BRc@cCXrq#i
z+BWLg_-VVUY@@o3<J+U|sA8k4jTPG!T{R)|y2firf;9ze2^Q{%lyBIf`t493?cir?
zRo_Mf8&}!rX`>-aYoncw_BI;ZXkw$KjaD|A+W7S5#GW0h%1+hHhP^{I7i=L&@8lh-
z)lS8On4T+}YHfqqMzF1o3xrT|?M~IfMn@Z+ZCq|+{o2B=`w|!0xX4EDZHbF*Tq@)e
zK}u-7#LH}SveAF1`f#TrT00dFz3F1(_nqnr8(nRz+Nrt;_7LnYcwncZ{7Rb5u83T1
z;~E>++ql8TwKjU$_-<74I#za<>bWbr8|eOB>g8Q3*rjf?ag&W(ZS=7*YL~j%hF><0
z-Kw{ZTciQE>{4`W!`p1|w61%0t5<g`9(Qm%Q?8!8gGRes-N{PrRwVb>xYx#98}n@3
zXXAbwU)%V`#sfAUw0X7wUS==bc-Y3XY$Y3y*m%^&GdBL+qyA&#pWW(d#{EP+W}~l-
z$8GepF@QF+N6p%;`b&A9U@>;9uf{|_>xXu$Cv7}sqs1Q8eUG|hk9uN{dUKB&XoE-v
zK8W%_x#w-XVB_$a*dW@>?9_{PbRH4s#>b~5zxpoGO;2pzqh7J`s*QJTyvO;USu`(v
z-NqX<wmpgy)SGs+YV_{C>Ma`cUUlK#=>NjoHr}zLKNNI>_?OMb2R1&l@wtt2HIg6N
z(W1&vg?}XYv5ilJFqCr_&vF@TM<=@QCycKhcumO{Qb8US_@x~k82A-iY_B5umfdF~
zuo2oAV&i)ohK-DkA8dTFSLy7*XA5$B)leG~_NpSmv<*rY>{WaAsy6$S$tu%yZ8$dA
zxqbF2o|*IZzUbSExlc{mr?NI&4z7(UPmshHvSy#k*~r@%V`Hq1VJxtXUv2!x23Z{A
zF-Ir&sh>E;_p9MHezx(8aJD=hkHGq!HPYg}_p1>${;=_<jlV?lk068ow$XOKBBA?N
zgr%Al@~EYeoH71QjIuFW2%m-M9cN=aTZR)3O>1%NvHfa-jfplU*_do&8b`F8F*wD>
z)DpfuSMU%|`O6hBh&Yp3@S>vqs>g!ZoBP!)+R1)3+r}Ir<Uj0J^KC5PWaXgH!9p90
zY#g+CTOt<QSYl%}ZNtXiBeA9I{k@4*HkR2quwN~gl#>V43dTL4R{p<NPc%ND*4kKS
zW222tHr~E2e%%4J-p1LQ@eLdW2Nc~$2crLRn{908C^(?D*wOLPbX$dN6SNMf9X57y
zI4n=>Vi_p3vD?NT8}kn+3bzYh`k#WP%M<%qD$y)B7zI^3s1DmWV&jyJ(>9LUIA-I7
zjgxlt28mlOIviBTZQh@#`W#gK4=Nsn(ySoGmD^`nP8+2ilySfX5+58?=Qt=Xk3Z8Q
zdEQ2W12`ZrCCIkT9gM~uUy^fs9lvpxb)t{mF$ZxW<Ov~D52}=dat<0fXzZZ81LdH)
zgBlJr2NfJtbWq8``hyCG)MJO#+lLh2ELC<e{E*^m-YO2NI;iHL=#Zi-Cd{{{gIW&i
z7Zx;haDUy@q(kb|AywN!9S3zCJakyqW2l1$4qiU2=%p(rjLY@0Jaw>%gQgBTI=Ik5
zGY8F`XgAs5;fWRwS~}4xmr_Sm<}f$57q)WH+Cdu!Z5_0CF#oW+z`=7|jx|ZObMVjM
zs2#|O9VB$;VMU#b99-<+5(k&E7)KPhA@tZ?$iGn!v`SvzF?Dr3)$@qz?BH?-M;#n<
z(8a+O4vsj{R_LyRRht*`O>Z{`-5vCBa3!tO!6FA&Iq2!&O?H!ms~ue9;86$vad54J
zUJf2~qQ%MAIk?`zZ4PdCa05d}$8L7e+rf<vZW1qZq40?#>J|sLI_Trzqczcs(4US(
zFX-O45*v?1HM+yWolMZdy$<e@h<A%7b$Ygn{=%O)qV8iCICwzHyvd5bjaEMz#pMN*
z#D}Cj4-2wjj|kyqC65W|@8Ag`eH}brqSH^vcXnccgC`vfa`2LaryM-(;90i3WHe9;
z^NfQQlGl|-70L4=e8ItsqEj5ix-h#tj;fa(yyEcbJ@J~Tz3PCPEaA|j>W`!9bq8;V
zcZMX$C~rG>$3fn~FbD5Cc+bJN4!&aw4nA=3xq~kpe8|>t@QH&@rENcUKv&$hyccG$
zB>0&iGukRCpB4Pl!PgGD9aCS4e&b_`4-(&$X!bd#hB)}%f$6|<@B<Cff$qSN?kkcg
zX;Jo$DXvIl;&d62FcH>~UfY4=z;obB+4#03>%bKq9<V?8SXAr4K`4@(q`Cc=qDe3=
zJNM)<9{7Ww9E^1^j^mLp{~i3{;7{UF^^1dF9sE`jowa6tX$ikeI$e*eza-gz9gJ}B
zH;0LMDQ7jA{zwO-9E^4_h9*kk@u)B~59V9kdY>Fu;~h+JFw?;-2NNAkaxm4wG*;ob
zn(SZ-2m6Vrv=ff2jUAHAoyks@TxQTnj{nyJyPk;1YzOl=HXY1yFxLS)_qMVrBGp*^
z;(lKsaqm8%7IWfqu-m~N2TL6+lNxQ4&RWhvS30$twLYO%I9Mr!d=<-iLXoU-u-3sk
zPG}r`C)E}Q8yswOu*tz@cA~8AW_fl<sR~Z2>L*pllWMDEP5GB6)pp5Zhoro-B>i0u
zawnto*+hG#{0C%=>~pYR;&S{lI%{-LLJv7OEM)pgMIpb6a>3zo2PZh?W>GPVlMYVN
zsu#uzvN$ajTo_NC<qQ)~oe|u1W0L%w@bfIj!4$p7MrS*h5-crPCX2E{Vp$}!D9j=*
zUaBR8XbV#*A>{?j{ZFVWRw%}W(GH7BSyaxVXBM3Lst~i$E440JRLi2e@V5N^E2Obt
z%`9pOsV!JPi#kH;3NmiJEDoMj#qZ@BWYMrh-iT?QisVg1(lm=^Su_{kszj$n7A=cI
zMYFZ=HYK6c&!;ZPqFom4MRIY8yh9cpOZbICF3RE_N#T+b`K4K0mPIG=cFy8*Auoy!
zi<A*^MHXE}-mN57cOgBpxKhYfCGuZSDK_2J(u~(+vGSDS87bFgaeWqLT$FXAtu8lY
zaeEebWFvl~;7x)zXVE*0Te7%SybQf9i#{yUp+Y)(>Hb<*z-O>Kvv@U&*Rr@Pi@RB)
zEbh(XnJk{oMqiHZ%SH!_@p!BIvv`2*RwenM;1gLql*Pls9}(;;_-GdY5kk$!vb?J|
zPD1y17X3=({j=C{N>MnVMDnDNrv#tQVxW*KKZ)Y949{hwwfbD5MtnYt7qWOUi$Phu
zl>P6D`j<taczr%~UJ*H$)4!g@8(DZ+_*vASlX^1?JsS-T9@zd?7R0x+ct^;)f|R@`
z<ozr@D3N?9<fAM;&f=3SKF#95!WiARSq#qNGuBZgUkQFu68dEpxkn3%HNO_&H-cFa
zewW3NEWQ`X4}wL4LrY?%#mnf_H>AuNK~s=bu!PuII3<#77H$cDv{tzwi!h5{v-pi^
zX7O~T6#p)<)03xFK8s--)Tb5Qk6HXAe7NAxf&)*hU$V%G!tYsBS({j##gZ)k$l}i|
z{$lfHF+I!kmJ|O7j?Q9?kbkonA!MZBs4VEHwzYO@Y!>5$PZk`X#Y7<tolv4SNhHNl
zD4!zUsaZ@D!bB*fn~}xLEM{dfn<kpY{45rTLZp_(yb}KZxi8FOkq8-=I>l~j79So+
zt<PeEkY$3)1y^vaWw9!Y)#6<%NaZy`zS){0UzbHO*_g$qEcRuwKa0)T=nO8p-C1nO
zVyk$!(b`Mo+l3S#5w=tKt}K?a7na2Kl<4dg!jroWaEi;~6sPfQbavUHEDmRJL^u!c
z;;~>yvpAN;@hr$6iWi(<nPUYfB{~&~&;DXwXR<iUSZ;J~+qrCX>>CelD-iGbY$T*6
z3s8)u+(@Cc8&!mHV=m$@E_2bzMZ!hW<z@twbEAbfoH`0!lscmd+a_wBQRQ7I7ni!x
zM;6UR1vmQd+`&af7nNMJbkWL<zQk2_qo1?7f>m5pby3YlyECe~iyDkVwOY}$CAY|3
zeJ1*SujS%Y>3D6?uOoQR8CB0keHRzjiZ^i4pjoQ1@P>ko1bImlQ)uF%sf%VT@WI%i
zGpcjvRC5<!oKY=Y1ZUK=Gpe;zldl&p5Yom)TNnJ#yY7rSct%m)&PCx_)!vQHv~O}&
zb#$@tRE+LIAr}c=ETy_ckU^c#MvvK@U0m*Bk&DGHy12N)MSmAhxajJln~Ux)dbrV?
z#`Pq86WDcE>`FHpWt@MmcX5>)Eg0x2c(vd)g4YW65~RX)E^a!jNN#X(Be{#4T|DUG
zAs4+}@OI;S1aEP1tB^h}?r?FZi`&F|yCBtgbxzr20m)q=xw}Mu&%@>J6@Fid<bEL!
zxOnWWqCVZj<RW}T@KM442r{(E&Pb=PcprCp5@S><I%YAz#gi`naq+K<r(8Vk;x89}
zyU{y=fiB*1@wSU+Ts-T7CuKe7;#DEfyLiFHi^5+P93)7cmx{e-75OVJ1`8p7&Bf~_
zI&TPhQ_w!E-f{6RE!o8fF5Z*wBPO>doVn3+?1wHsa^bkhy7<_|CoX<)G1SGUOq`9p
zF!h~_&s==YUtt$ti{uNzFI_A<8|{@oElBc>i*F^U^0`R9Y;TG<#6`z*>U)vXd&fCd
zRKiUcX%{*RAo_-jj06>lclbG8<n-SlTjZ0^Dc6PPBIhD6k`3pSFC-9T`k{**5`CCR
zhP(KgHZSS?BodsD%2xNh`o+cXQh;Aw{3b!KEKHdllMMaC#h)%%j1K1&g}u*5pThZ8
z&A&9s31NhbkuK(P1i9FAD#mGnugFHZ80}(=i?J@oxtQ)oD^<q3=$kAcnd)MKi-|5K
zxtQ!?3a6UYk({9<bj4&E2hOTUNSxtfri)oFW|t@zN0}oj7biR4MQl-uw#0Wt3phw!
zJa;~tOn3w+FS1`kO_s#N3=hjV-El;CxZT4F7b`goJyi9u%EfAzhlt{&i#0CRx;X6O
zh>LYD*1Op3VhgJvTj4g)HqNV!F2?Uo&}|ZOZQp{ew2DQE-JBH%7H)H~opa84wL@^1
zi=AR`l(1ApdiS{4E6V#^ZU`+n=wiQ%11?6LS4@G(Ij!TWf<q$VWlu-hbW_wZ&bKaJ
zs~DemUh%|fUO&O-%tPnZDHo?*l<`p3!x<N6Y4a`$=q=DVJMm_;b8hr>*RVi?7j2yB
zUZ6c#pcTAZu9OF2Y2xVul9-3Mhw>hjhlGcZ3N#)gob>QVfyR>46?!~OHJZ}P3Gx&U
z^34SrSF`i<e$7J#4;4M|GH3=7D|x8=Ki+B{s(a|<p|gh?9%_2%=;1;SwLH}J(AYy0
z4^J<R)$!24Lm6mXZ(P>{v7TUkL4H_l4XvSvMjpCC+j^kzE@(|XH1lw-Vtno4L~{=<
zJY3+RorjhlUWC@#LmLmR#POyAO6b~35QXFvwinXD19`C~7079X*CkRHdC_004Z{)_
zd$@!R0*&rc50?q&S>^Oz&YF6-!NZLnuJEF}FuHo^=3y2z8qWuE=jK*u-97a1aHTZh
zRUWSPaE*ta>^MY?+_IE*t%qJ7uJdp`<)yT{OGWZGN@-l0%f(>dmD2t!rQPJ=W)HV|
z=;NU`^F@4HDUDy3cu>YI9@b4s%rB)KEv2POM{ygL*6#3dr-%1FeBj|O4|jVQ=;0X;
z_jtJ1!{Z+MdAQHR{TvP#ruuq#z{B@lQk@xHi$Cb$At~*{L=TU7c!X9Y5^g7_V-|F?
z*Ax^BA56x1CVagg68$|q;b8zZOKUt0=JnFr(9+tI9=P>}S57?TMORTgEx0LJ@T`aD
zJiO`QEf3Foc)`Q#9^UXUva~i=it!@T(c*(VyyW3!53hK5)x&Edq?~&w#vDp)Dy{MO
z3wlqL*0_0xrK(m&d)vc19^Uov9_^uwc5NAr+pbx>eq}TsdX_Gu{aHr)kk;<uHxIvi
z_}IfI9zqW}51)D%?BQz<-*}i-M*GaesWKX;tPN$f&pi;o@bIOFue@kk2#;i^W2WEI
za%k9PHOIpcwxkEcLxxseR{Oz2k%zSKp<eWUlER3HL@$<e=d}mZgXO`Np#Kl0K6%!I
z>%o&Q2n2l(ba$5h?>HsNdl=^7M-M-F*xWA3SC`L~)wuD0IOCSpW|Y;=mDPAU-_Krj
zM&B=jzY6|UR{O)lpB^TAnBw6t4}W_Y>tP%R$mv*(n09$g`^Uq-9!9WtSg)8iT5yyg
ze;OzmBb<b-(R*iXJiQxY(_<PB?wH_#I8kttV2vKhR@{l@fu}=H<0Q~5&g}+kW7^S}
zHj~4LgT=>HK4yEE<00lF?qjZpd7QUBtoAV9!vYUWJS^oP^{~jpVp{SKiM^|mW#gK*
zEmb3~wT^3-$F*f1mUHI!uu>ZBrnvTSTswm#7iDo_=b*U8or!Bato5+V!)}fv59>Yb
z@UWA8Em1yfliKQGqX+Il*~EtRuthk%gN#VXS$b$(+s0mtYug3c0=4HPJA{cb@u)TS
zc-YJN)(3p-^RVCJ*LEE9aKOVs$%0!W*T%I&9*%e@=7(7%iA!Zlj(a#kdt0r}dRTKR
zb<)FW&K|T(+WFc7zD1;voP<bsPL!#Co|AJzBjIrnrTplkTkbAtmC#E2DC487k3Nb2
z+7G=6A4wnWeRS|q=p*H$ijS&3kDW=B^HIs?-ZzvdE=h1<gYu*04VsS%J}QdiMNxDV
zax+f7(}j;Gw806jnvd!}n)qnyBa_fBZk4Fvqo$8B39Xiox<2X&uPs=IK}n54boG5S
z^wG#i0|}z!&7@Y$8<$8nB(-Kfn)^7{DS7ANR0}`a@Y~8qYacEB=r?O%B6`x}-2`oX
zwDqGq3yLo(xWGp{Kf0=blB)|fVn-hr`nbYJS05MoxY)<#KDzk$eoO2UA2oKxZoVLX
zPoZ|HkIQ^?^3mA`y>!Kdx$uSmbA{Ruh1ze0S~nJ;O0v6;9&BMtJ>D(FEtAs<HC|Q2
zt22B0xZ20dK3?&0jgM=6+~MO+AH95B=i_D{y?tEo;|3o$vhjVaF4T?|YP@wJ+HbNd
z#?S5@dnVhbv|Ct)ly;ks+kL#4(ry*(!$#PZqW7be7N)dODUEk7+~wnL9|L?m$tXS#
ziopXu9`tb^s~Ok$wt-i8-0x$_!W7-Sly*F&J>=tIACLIp*KJ-<_$b@cM}L-cdF(Mk
zl72q=`gmNt`zl0-_E#yVQU1w+f+s}SLA+dP`IL{ReGFuM%V~YfX|I;kp7D7_g?hoq
zv(i&+z~`8Lzxeaw9sE|g7kv!!VVBch^1)TyBy<xP*T-u<zVz{xkJo*?;o}1zANqLH
z$6G$$W)Ch?T<vhGoW{qVs^zt{T~qJ)c-N1XjlCyG@;+l7R3sls1wZ%kg^x?hYajdg
z#K)&h@XFL+j@ID?bS&FvBH?G~|CHCbiJOwa<+ZPUeB-0YN7~1?KJJ>B{LaS^w)2@7
zcNf|{qr>*U_wj>|p+3y=+RXCW*7Dk)<)abDGd*;vsX+@@TJz6T#*e1uo0VqL29#zA
z+JcWN&Gq5=s67mIhQap{`1n1CKXM3tZtcVaIXsv{-p4Q&DZsY@e)RDZ$6bJ?0fy5g
ze607e!N)H?e)TcR$7mnFF%cgle2nC9IFz7uvBm!2I31+^6#Pr@Zy)~%`B$*-x<V@O
zy(RzK($e^$e2kB=G#(#IeT-x8bc#>s1ael5_c6iek>J?ZPfhkQ#m6M!^w#<!5>E9o
zjg7M?M&9HL(2>mWG1JE^PW}u%lUm?o4kv%Ml@_OW9w#xSeWjwOl=&j8GdNisv{1Z@
z1Q)Zpl(tf7r<BI`ipzZPCdcJ0UO|d(g^!g!R&ivBWUb(ulF-_kMxAv&E)cTO$0i@8
z1C$A{*~b>nHa^ZX7k(A;v6Hh3yM9Pwn~&{2c8Ke)X_OFm``F{-sE=cQbPLR0!GnVP
zeC!uO`2mhZO(UT@<m0f9BNFt!2(y}Y^P1FgAE$hr_Hlwiw2C#UqpMRydWrKz=Zp`M
zvw{>B1URp0pH|SgC;~zBI<%DFV-+;=vH@ZNY6hqkARb`af><&D`;_B7L9>Y^NeTm`
z0+b7)%F<O0P(FYP;8f7G02KpN3Q!@yj0zehCj~19s3HoK)T<cDFRiFORZ*)Jpn3oj
zx*9@;RMbXS)M^LO{>?@Kc)dcM0CfY@6J9?+10j?ztEe>;P7<r6H4gs!osNh2H4D%@
z!1V!c2+$%x%K+U2oLE=TDu~vrT*^c$X{`ga3GmL0MB4xt3b`Oay8!KlQ{I96(E<{>
zjv~BLycY$ySiF}AQs=r^iOT|X3eY*g<pH_|=oX+$fF6~!J1S}Y1+NG|&J%mysuYcM
za^92JBfvM6v^}j8R|X(n6`-e(s|BwKaBYBI0j?8A1-joWX>=qv2DmA}y#ekEaB~oS
z##&cN<Kb)r3d;4CuDM0<)&PA1+$Q|?0CxtsD*$!w5Xp#2+TB7}q<ezst~W~P=si(M
zt58`Rcp!CufCmDez>kLlJRIPa0IvpkB*3Eq1_pSB(F5$R6z?D4i2#oU=qujG1^Wp$
ztgO*dXMlJ~o?`zB?<Ml5OXTlX)}9sqLVy<oFp=j3pAWzk?8@4p63v%HLWP$_GE>rd
zEx_vmJ`V6nfHwlX8Q}c@ABe(R?5qIq26$V%J4OG!lGJ)t(W+L7O88-kgeCt-_}e1?
zRQP8BJ{K~$B=;`@e91nlq7~QlD+&Et@cSy-)GATMzY8!Vz|SFm3Gsb^A80BeI)@k<
zpeVq>0EYsk1Ly(91sET|2#^U72FL|416TpP06uFfXKe1NqS*nmM+zOmYyelt7eRRn
z>r~a+Rn-Dc^-FkLM&in<T0X$A0KWzJT{`;50Nbi+rK@QS{fWN<ELafT>-S55UxhqW
zRnx`&TUF!kR9eCxoFA%bU8-q+(sHV4e+m8_;2$BB{3~RH;K%@@O5~%3j1e45+uK%1
z<p}{M23QneaezqyCI^@sU|xVJ0d5}}ee<0eU@B*x0Mi5TAe|Y4JXeRDj${^p%c^O!
zOYC-z5Izk2T}^wZPLglw=Lc9ILh^+{^unLXE(x$Sz|H`>0xS!_YuAn(j(**i2Urnc
zWq^&<v^4?N23QqfwRn$I(;gh3pnRQp*9X`jq(gO$!d}%SG{B|+lx!B<B1rF6wsQ&J
zE@X!w6WmR+tgh{$VecxOR#0vTx7k)m?&atUus;C#f&W34{BVFH0cwP(8RBSwV*!#O
z3PT*{oEAijLlU&B>Kbn_Jjr?mI33^&yD|hqjH|Al<%BP-L4J-lRy`WsB*ao7N{6_(
zh87P|Cgi0UC|^U1g;-HtBcWpuT`_0q12wegYiOwu<-%yPtxo+g`k~>)qZL9Z;hG?Y
zEt)02shFx5qEZMFy2>G{l<=w{stNz3hQ=VThBl)|vQ~)NA)1D07NSmwx*@KvsWk~v
zFGPLn*VH=H)T$5RRUK#)Vr-3wHw<|>m%4>_M}}BgL!*$${UZZvYRyBm2+=-_eoEe`
zsST^CwG8o8?RcvYtwXd4(Kd`4p<ReYHKR7UK!hapk`p_Gc;lLQ#}F5?zHF!vmxZWa
z$itlqE(x)HTj8aGhb21Ybd+2kqDzPuLktRWMTo8;?hJ8Ph;AXehqyk(4Iz4jxH805
zA$m#~>ekZQ)zW&^(yk71x?_qP10Sjt)#92E*M`w{m|lX{3DV15csGW)Da0)yZVkb6
z(RsA{mn~8^hj^iu)?1L*i1eXC{p8468ZUdgEyUnj+U<fQcZA5*(n#(OaZiY+LktXY
zZ;1Os^bPSiZD3J~-$d>YF{_sLK!^uJY}i-$P>6>^JR<yVzu-|8Ufg3MIk2OUI=gCV
zbUba6YZO~<F6_s+f2sZ<o(M63eL>B+N$=x=P~21EWt*e6_DqOpLp;yIhj=bT<=Wa^
zwY6_*YnRlHUQpy~YrH##n*1>RQpn3$@Lh-@AzlgbYKRX)d>G=j5U)#nz7c{qr||fC
z>hpfUTNWqY4DnWow?n)WVn%K4y%6t*cvqCELkW@BsusJCLVO(JQ?^xzjkUE;SnIfU
zq_)<{jwYzjLVPX}`_|FEpl#IA=)MW@Wr(jrTvI1X>gy1#W=EwZep@1B(D&@D5OxTM
z^M8n<5EdJ}S~5+O=oP=aaf){V@PcVQgb^ac60VQ!TpxS6j%G@ZpViTZ)zK!_(Xt`j
z5cv?pLR?xu<%Qt+AxG+He#kp$_#ajanf{_!PB;m@6ejCxuTM$+$k9|+`$>>wxR9Su
zr+y9b8z+Pu%H;5Sh(AJX3b8rFpCPZC!MqUjL;M}$pAZv5ObqdFh!G)1g%}-jA1=7m
z=c|1wzFC^rCR#|=xvn;bL!hq4+Kmm-yRP<VU2R;5@gYd)D47&ua)_xRriIY!YCNNO
zN{C<UYP0HUyp(V{=b3t1w|d%Kc3Fs-G(}DY^|U$C6tjghBTDE<a_0*B)YBG(SV-&T
zY``HLVsVJ2A(n;U&*Bocd_C>odfGGfw2vjqa#paOc7|z+cU6ehG)T4;2kFw}{+|<T
z!e}c~`}*2i&Ls7<b%N_dTvuPCmm~4f`r7mLwLa?#w}jXl;uxpp5ZgE{gxDQo4=0?8
z+IRJ}9UNkdQafqhHMCu9x*5q~^`kQH4Y4o8Vb1M5VDP-!&jDU0nP{M0{ee2b+3y2&
zFvOt{Q|fDU2kL7_!sxZwQO=DGw5|=J6i$RV8RBe+b0JP~_TX5k6+gpTH%&d=KsyvB
z*!$Ptl(ehH&xa_;0XdY);oSz>&;}a6qH<3hXL4T3_G1H$+pf#z5X+%m4()S@=a9&u
zb`EuNNaj$OgO)>u98x*VXrPtPLFG^`hd1Jh<x&zBX7Gj4VJQ_GY87*svMW|Chw3?8
zej-*Whsrrr$>H?EWbD&|s<~+5B_Z}|sJ*zau!czPYpB)CfmlnBp>=bpmqVi*8s|_y
zhXy&czA)7=hmRUY@6x%z-fF1*(okF2P-~Jy(_FLxp=Azx8*0f$TC*IQ=g>k@Zrw=h
z(@5L!VU**mjkH#|X!~dD9NOg2R`|D#G)gYWp_p{Yp<@ocbGRjk3v;+Ahih`UHiwII
zxFm-wbGRypk&U#ujkHU1xGWd_N$-?HmmIFhp|f}|7o?nj`ZhMwy5`V52a;}rBrFMe
z4=EnK?W)Fas}Sc>jh;DFYOGx?*s8JCD~IcH*wi4^eq7@ET(nb$rx?+DLk>6Qa1%?|
zSi3ogryEBJl9PPgSi3ccJ~`Zx!<{)EJ(svGhud?}<#gQk<u=y-Y^?D!*<Fm)Fm*Tk
zv5B^{v36EcxF?6Y>k{{}{iR^{3wC`vnn-yH!9zK`oWm=*=um=(S(qFi75*P4mBYXs
z9?PL`4v&j)fM7pC>h~A&MDD+56g*iXe@cii2NXOb`~|^hbG)EdJtz3QU~~+^;@FEh
z3=)Nx1Sw%$o(S=34t5Ss4zEd>UuO@>K^br4@MaEg<?wb6@8mEfhwo|sqVpjQDHoj=
z@m>z^=kS4W)|3(+I`MH1pXBgm4qxT)X%2&P_(Bvu<Di(6{5*$clakaVCz2O?zm}B0
zp&?0{Ozk_7kT45k(<a&vISggtCAA_!LxPx2TD-d8g-x_On`jvcB4J!hDn&J31Nvi+
zWR?csCR!im=HRhma|mdqOJY9>hJrc10?J{S@E--KP<$jQ&lerehRxv@cIA@TuM)~2
zy5EFTAzH4G!(XgRJ~1_qzjOE}hshk>x#(+e-zM6>Y^5gA+rkkX5p39nF}hJgMhlL~
zVQdcLgpU`TAZW)5s5vo*N#f;qLwcujFmiy<;B%Os1MePPki$YwIMN90(3#Q#vjk`7
zFh>aGbA`;yVSb6kX`=CLt3|o!^~K>Hsl_=g$zdsrJtsxCTF5fN<$@~&R|>8YoZUoQ
zBZT^Eg{;eAeTig44pd;!<{Y+guE^t-JhtYrjZ;>h*RgT)0(S7nG>@`*?95?T4(D?y
z$YVEC$l*{9hdIYK)%J44HPt#c)%NAEKZgT3SjS>?E04tv3g^31dXMCAeN*jh4*c4C
zG>2n39M9ndXVe_daNIT3PIAbvkDU@;{MP+{g_OMBR69qrY^wd%R6`!6@+h4LkEiBK
za(+#i*ED*2u)nERrkNJYBc4aaJSydp$Rn9YVIHY`^vqwQnRZb#?XOm;BiF>s<-vC~
z<@30!S!A5=G}BZbL@kdBLdf~+Q#p?+dDLVhG}FEl&8m6)+)S&MkA?$X^*m|_UnZew
zuGPw;U30CrU>ymnD@b93JR0V4aUPfC(I}6`d9=x+Z5~bXXv*s3(L9fy&9!@)Yfm=U
zerT@o@70{<T8ljR-JxYZnz&jC?rg5LW|5j}lw81!^0<%{%%goi+6K-wV=P!f3#~&Q
z9rGZm)IuXZxG&c9WUBL~!X_=WOY^uak1O)%nnx$5-!*x89$oTS*(KgNk4sx<yaMC#
zdhrKZX#DE&d<(5x9^Lb}DUX};uv=);TWCG<xH6Bc@;J~!yC#ooh4jqhY9R$JHOhNQ
z#jnrfhCHqlUa@7=+Qs}vk<i<`rB>&nRG*gGo|#GhOS(0WK6!kd$2WQ0mdEXR-sOiE
z^SC3AJM(xXk4M>SdEA}HLwP)$hiaX?Cl4MN!cU_2=5b#h_p`K{V-E^GAV_b&mKu>>
zZbPfSHMP7+@+%f5kH_+OJdb{P^kvtVifgU3wd)dpw$zrk)cWV~L>_Op(gx-+AP?SA
z{#mEwllka)y*911r`Ub1w5P?}r<F$GGt51gcs7rJTWQbb@w`-Ud8??(lnlz_C8n0g
zTY0?SDEV?8ujKJ+9{eHZbJ1(Ghr@~czEG7~Yb39W_l-PGwu-!+T5E69Ec1Am<Mc!!
zAKu<$BJ4P}c0satYwZKt;ey!5d3=}$y&nnk6#@At62#C?g$!)1eI^C_JdZEvT5Del
zewD{Bt)rq+Li{$5@ACMKwaa5j9^bRy^KkO`A&;SX@QbsR$E4O8kGUwyM>lk&^U(8H
z(^@lVqC&_sk`W0V)8y5YT`ou^+GyE4+&nyvf;Q1NAbxlD^Z1cjoQZvUZ9K>$%p;e_
z#0mvn+i3YbhDkaPx6$ZjI*(qS{3(y&9EmiB%agwd{>lz&qtQE5@Q*zH%wrUXc^-dp
z^3UTR_6z&*Ol(veZDAX&N?UD&B)h~-^k}P%6yCmVl>V4J#^y0DkMW!s%fz{M<(9S@
z?-7_lQ)#R5HF}K;wAb2d6WIcJkW9{FN*>v^k#LjXv^=KgF(Z$eoT-MP%&=(L;Vd>(
z9{V_bol&#%JnaW_h0hb*EI2=p1$itKz9<j=vQU|Bu}GGPWN9AD#JgOOp({9Y^H?R`
z)p@MTV?Db-ylYEz_zOkN4S8%53B4O>P9mhdSZ#|0Z57-mxLt6E;7-9^g1ZIx2r?a}
zus@Guc^nshAdiDWC_g0Ra2`iWs&iB%tlEhZopVA?3ZBa2bcy_okh6j;;dvni(wGp8
z+Gp5*n~Qms9foql{#&WoFvN!;A!^BCNC}}%;s5BfB;|)e4TCle6^5b8FjN(_|D)<V
zpq?n+uivYZ@&?{fK%`5NF1`2Od+)vX-lU6)qEZAA6$>gzve`}9O?DGdu{Q)M0xF<_
z3W$I-QLub>pP2voedo-%=gysHW@o2mvpeOUAPQ#fGr27!-b}p|38H8a#YDMJkT#hh
zre8d3St^LqK^zO=cnJ3g-H8VkgQz5=j9}Ry$_Xhi=uW2$qC%F_zH$&%f_OWKcY>%I
zM71Dh1~Ds$2ZN{{bRRId!Cj3YY6j6Ih^|3-BUD4x3Zixpb%LlH1kXh17(~4w>Icz0
zh!#OK2x9WbzRfjMBc@!=-!O>zHPp^>{yiV~8VAuNh^9dpmpsja*jvNx3;YzdtA;uz
zyk!urf@mGY#Tu$z5X1KQ+6ce1rfMr!FHuvq528;^HL0fR5X8os>i3$eQxKh*=li^s
z3%hR>?yse~1<^f-;X#ZDqDK%tC2s#9dIixth<-shwN(3Bs!tFjYpK2x8oUsAtd@GI
zmO4~Rm8-1=1kt#*8W_Z&ASTsTgM(O6TfI_S4GChX*bftA5FIZ%GKf(@ObKFY5Tkj;
zQfh1v<ANB&0tp0?wbjMiYJ3nAg4kR~?XIKP&CAtM6Iq6J)bKiL5(|wP7QVQSI#);i
zTSrX`VtNoW*mCNsK6TX-0r&2j*HyEFm=na-Af6BM8xZCNu{4NfLGZiP{2(~VaB*G5
zbI=yBeA;^#3N8{{EclS%k|4&58J_^T?ep@WJNa!z5Gz@;`Ms-{S`cf4*z<P&hl5xh
z#3MmG8pMGE9x7{scua!G*Va{!XZgT?eNPI1Du}0p$mr{WSRceD-nay95ZoxpM4l1C
zh)n8P;m-+f5oF@j>1g>v5HAK14I&nFAL9ep@^9l^zmfM+5HAOLUM*e?A{2xc#CEBg
z*GcLszQcJ<yd-Y~dCCTM2HiJ2yMnMJ^vxjndWXs@$34LyKC7!v)m4nh2g@*n*jAbN
z0Z$|drbDw6jl4Xuixm-PcRuM$vDOOm7r|>XLH52Ed<ns%AicH_N05g|rrB9edv*sg
zU|xQ@Jwd!B{3@?FFaO>k-esADuqlN1g6_llg&=+n;{6~#2;##aJ__P+5J!UeIEZ}p
z6x|m=d?Nf)!Oyb#=d4iS#l>uYRzD!*OO8=O4hix>lu3OR#L*y51@WDT$Ab7e=)Ndp
z&~Z^t<@bLhgvz%;oCxBtQeL`~Lb&Y%_3wlDDTtrN><7WqL7ZW-`TajiMUXVCr_S<@
ze({i>%ZlXZ#q1ZsQT5ctATF`hh45GimxK5%hzCNb5W<xpuCkqn5D4K~(0$2&n;Bru
z{*iY*h=ujkjUavx;${$kaDWQpi+bvo6gyWt`WNQ~>$x5FhkEL-dg^cHFyyZ0`zMHh
zgUAU1A>0|lT_Ja@yCVeJY?I|?CF{F{%kk>hccXj6pj&<A4Z#<JKjdD8I?agrLwwzu
zb9V^$gxu^E2q9015~MPk3xPxK(#2vS6c6Fqe*=X=C>+AQAruMWK1sZ22xICizBy!q
zYqF$72qi=AQpz$RaLs9{5K43K7yk83_XW;y$t`)=5Xyy6Uape41+F@zLB$X%h0rgA
z{vlLm*`CO05<=4us)SHAglZu?7(%@e>W5H01eQ{b5Nd|N0;H=ILhTUhgitqxSL-W=
zGQqcn9FZLI*4VroNC7qqp`qLeS6^ldt+9BSjb<S<520HK-9u=>+X<l~YoV&QRS2y~
zLTDdC8!=}3ZG~K^uUK3}UV>tW5DGL<bTt~NP9by-p^KPx4T0rG16DM#X9LwkyuGF5
zT_uEGA$L({?@E3q$kh5sP~Q+HHE<Ij5W>I^riL&rgh33F&~YIQ5i%@<;X;N=vP-!J
zIfRiRj0$0N2wVfpO35t$97BT;G9~|T1Gk{)c+v48Opv$}Lzo=G6kb=n41H0|*qq2&
zR?|b65yFxXmWD7hgjpdhkf7Ni%n4y$2=hajn~lr1%2+8$;oAmo)pX~2@DLV>&MYlv
zn`FJ;%*!-XE=}bMO)l767Q*rnR)nyUO(o<m+gv44ULBe9un^YE)dp_i^AeA+NywU3
zPMlj4a;MKdE%><L6M}0)cv1*MpJL0AS$5>>L|h-jhHU6YUi4%R4K}k2gz#AipNFu8
zc?iJ{@$_?S4dM9^q9Jf)<qILa7{bmF&jH7_5MB!5wGdtpx$E6tW@`*#dkC+v7UTsE
zk?&{d{?AJ@@;5@*AvT%NT_FTRh={__PzYKG;gEZZ4ZXS~PLlB&*@#q_8nYB*Lz29a
zn~WtqA(+hSB^s)#4OJ?HJt4fsF4j<`1$VP98Y;fxcsqo5Limui)7VS5SI7q;yqi_t
z3*r4Nr#_>mYxa>S9}9jW_^BWb7|Q=aJkXHSclU8z3SoZ;2SWIg<H<SCSAqvaI3nbb
z;9)_AE@`MT{HQ4OQv5oEZ`e<ddCqJ2HiQ!)tkbYw!^sd%h0sBBw`2V-gzrN*AHpxJ
zh%fwy4|&!%R6lV1Eag2dct-HY5PlLu{bwO(1<!E=YpA$u5IZ0j<y{Ej*AOm-aET*{
zhJ2d4=H+q-e}wR72)~6~@0Ad)3b_`-??SE%-Vmfgq@lW*<%?v6%PkJ?lGJU{{|e!6
zA^&8|1Wz<nIby>UxMb!I;dcr$L5dy?UJVsBRMOzn;MY)C!@U}EH3T%=t>Nc`{`?vW
zXn6K<cR<b)g`yILgyO}cIroTOP_U3-?m<68i)gq{Lun27YbdJW#Zs<VLPIeP#Wgt7
za(b8Y(@`%eu}TTj=Jf-CYe#d+Xeg(lyoR!(XY#-+KA_>l1Az*HG|uRiHB`~iSVI#H
zRW(%8P+wv_sG+)sy25K{sHvg0hC12&*V4cYFim2H^SVs4UiOOQbPY5#6s3{o&h(=_
zv8je;BDT}eTu3Votu?gJcz}poVwt>UNE;1p|0m6iNQ3qoZXeCz?R3=8NkeB1T{O(s
zus}ms4c#=1(J)p+cMUywX$^xkl)9PQQ$sK2T*K9d>e`mPJ{r(S>3?|oYv@aRe*0*f
z*H7bKWbO~g(R;iD7`>4@ZV%QlM8il8qcjX<Yj5S>+(^Y6sbLz1Ydk*QeKkZksga^1
zDR?HA-&IFz__C4uRZ<wIVZ4T!8fIyjpkbnhNg5`z{WMnW2>h<W!|3^spmbw3MZ;7L
z(=<%iFhl!q&#2me=FnyKj~a3+XSRkp8s=&|N*-J?u<g8$pP6bjRugIkS`Zs6P9tBa
zVUdQ1HLT_xX?RG(at$jqcX(W)VX5XmLjT{p?q%A4Bi_oazDfv3xy-Qnh=xZ+Su6OM
zr1OOEHNqdy+Go;yQo~cCbL4zlbBE~6D7ry&PZHm!;R_8LH9W%>eit@rFf>G%+be<1
zYy%p$Xn0P;Rt-VT-Bjv%4KE0Jo!vpm%Nkx0vQ5KFLb$IKE!Q?yuWHz?;WZISC}x7l
z-_Wo_!%i0d`Mg~c#Lzc|Fk*&;#H(ot3!$Z+HJ~y7Px0|4sv)Mi=gr00A2p;jnBt{k
z2}x*3W))k=D~(lJ!)|G2pJ>>l;Vt$=@xCqizTi6=_6m7d!+S!U#{WGzWXK2EP&Uht
zgnz7o#`MyCD&#W_pJx>Y?bmQX!!ZrVHTT@TNnZrMWZ}2>9@N~UH0TZqIjrG`kgu}(
zQ6Y0q<?veuXEuJVx&K_g;ZJ}henP`p&7HP)Qo|`x_BU4F3He^b4;oHuxYk(xsNp9e
zX9Sr^ia!e{X1wRv&Lt^&`S0}?4mI4vT*I##E^4@>;j$=qhVh$*D;n+yyAiL7_=h0v
zuL-#>ctgYQLT(EBn<yI4{i)#=yNrl`3H~eiw}yX&(59pq=Y)Z<n+>`eO;kPET$=o@
zF!G7+3BwzPFATqU?-9%uED%OONPfYWr?@+`=Y^rf+og%RTgWiEP(k5^1Zh?{jH#mE
z7e>)A&znZRIEsZ)JdE#je6OQK7$w7K7Dn?hN`>7IPjr>TC@uVc!7^FBtdMeo<->R&
zt5*<GQLs`NPk)!gM5=^QHSE6Hsuo5)ArA^tsV<~O7&Ws>Eg`i9>x5A^tMj{6{VZ=F
zq@iG=Fd7SK5=K)Y8=ELPCf*{9mSGGIV@MdS!e|{vw=lYg!LN9Qd%62^v|;F%p0<MR
z!e}pqN(Uhw1v`b&SxA>Kx(eCV#C@2jw?`N~<%-;AqgUA7W{~Uk(oGawe(x~)g#YUW
zeZ%ON<^6>W5F8lBpsfDXV&Bj(hJ{f<M@1dO!x$kc^Kolr7^A}27seN1j1FT=7~8^l
zi48T3abc_t<H<0_hjFrrS`v02iYA0HF^oxJOb%my7z@If!m1BrcG%q%^yp8%X<^I^
zV^$c`!<dm3sWX(03OR937<0q8-b7KHmnHO4Unt(iVJs4o5s43lxg)w8Woa18!dM>0
z3buqW9$^!0s#fxjq<^uCWxNlIPVb{(JSIVF!k`&L8I&=5T*wn))M)CCSIwKMo=w%V
z9|KRZb%n7mjP+quKkj)hjICj82xDUy&xElljAz5{YEZ7?<Z{m1-{fo#yJsMBUFVjt
zyV#R2#_4@t69250mupp+_zPjYC<^)Prt0M|UI}Aw81IJhY8cyD<JAK3Fdl8HUJGMK
z7&}?Z-+5ja<qbhDq~ftwZ-!y896rd~6-H1<D9o*lU4>2y<GH3P!*v=6k4R`VYZDVf
zGcyb;j09WS&ps!NRM<UyDj9|?%E99~)YBqTe@n#Of_nr{G*xd)=sSY5%LH7rbG~a$
zRsLq`y)fQqv4n9U;QdhW(=a~bATT?J%EzL7BABn8|Ff+3^Q^)CFb;%qB#f`Z_%e)x
zVH^tMFq`YGTuy^wrSv@GE_kofOm+Xr?QTcIIK~l7M}8g0!}vOkf7mwe@P8A=#b15j
zvj>IoZP@)*b%F&L@HT6vPKI%c160`E6M$a2!Ohg^FwTT=C5)?K{20bh%vcz|hQax7
zKZkLiB#g6RoD+q!<5-(ShEgPs+lh-|E+=tqE(<c0j^5ug?p!WcUtVJsgmE*BKf<^X
z#_t?6&*$<4XC_PJ;m-8_8OE(JZnNKILo<gyGqu0PER*u)X6oNCa&(@3=I&?W6C}Aq
z$DP9O63my?JvzL?GrOAjh3Ec{!kNPbbkuCF_>U$}hthGkj(a$U>nN$CppHU1it702
zcA&5zNf90Q3Xe8Z^wQlY-Vd9pVnT`w{+$girQ?1bWptGOpU|?x8MnNSa>B#geDpq$
z)$eJpD(R@K<D~BX##PZ#RmUP7i*;1f@t}_GI(q1+uA_#IRytbqE_Bq=(MU&Q9km&H
z-7}%NJH@L<b5%!2T^;pwcPOB@zK#Yu8j3fA6dA-RmrZnck=M26s;Q1<y1R>YbKO0B
z_U-1Xg^q`tt5=(=mO6;fZS%F!(N;%09qn~@e>^r<?oaM-p*rYTk@j)=WzQC>qmBn!
zs7^XM>*yl9n_yQ#zQSc_hWFIbOUGaxLv-}k(MQKX9fNetYoVTKp`vGV`|9YYyNhk<
z`U@GLgG+9CR%xh(`?Z>X8BVlNLv;+(F<ZwRj{iDF=-ARy70vOE)G<oOqb=189iw%O
z(J@}f1Rcey_%}B2dRnTnI*8*08@5yvbxaaIRmWr@Qw009R5aUI&wc4PO~-T*^Vjy%
zQJ*Q7;8kV`p-rNt`hbb=_RQ7sLrXPJ$9y3R1Q!Z&7d{3(q+^MW=X7k<u~f%09UF9P
z)Ull9spBynYjosmrB*V}M?5`RsiLjaDz?v7>S4jvIv(Lgh1ZnOhON}&%zP_#xRtvK
z^$8tobv(&d)Jm<B+J8#$X&pOTDT>VGdL8tV(EE&zO*)=s0qVHiN_~DZcQbGH4-b!T
z;Ml_X%$<Mnac4zuYxTU27j&d_q;<TgW1EgQbnMXal8$eF^}V9INA-26;(b|%cF|L=
zwR)B9`N90#1xa2L^16;TtrfkKTB{AM-7dM45q0d+5!4aVVd=OP$<x@_bVPN;bOg3S
z*J0?0FrP)dJU5n(C%5uLJWp$l>o7&1kw1rC-V{T5m~28vQirX>VP}8NJxun(n!Kq+
zygOPe#@(%BkB(y;TAABlJny$wZ?W&3_Pnj*9UXghyvt6i<6|96^F3O&Rv!qyuj71c
zMK9flI!d*1$tOBK)$xUn{W?C=@wr&;6YS7NjccP8iy3jNkOMltl+a!!eFudc5@b?`
zbsQ1?mEh5=uD4M)|IOv<em>-U%>rjTzm@x~4o-}rJE7x18%4rl<dh61owwl!b{zJs
zsQU<aM#qmjhDI<ff}eE!%qC>uF#~6Hoa3lspq7F2I)338Yv3*e7j*opBgX&?x1I3Y
z%0(TQ*g`n2>bS1shK?(|)9hlmt87lndrk068%6%Rj(^+v{t~>Y;}0Ew3coGLpj#X*
zzsn)XAj#hn^iRe>aKo{jI}F_0%75;ldk*sV_Xd7zqw*Q>7$|6<kbyTp^LY*T0}ZFp
z_zd_B{M|<73g#II2+1!<y?_wj4!JTw@7)IO`5%!pQ41UHF6c#hQ3I!P{B%VO+?VB?
z09njHaRVg`lr&J$KqbRn|5eIBSp($^ls0g`C`H;T>SYX!7V@YdmGTB25Q7SWFJ<-0
z2C9ofn<@sX3a@71K?8PMckLJ*gKA`Lm~3qWbqtI%Fy2621N98FHqgdEeFMk7$!TDq
zAv4(|u&=FZWPr!JH{m6Ydm0<=V|*8RIB#m8nc=QzZZ6odox6Uyh47XJS_wJb))m_t
zXlG!kfnf&P8|YwQfPsMqk0|wZG|-2QM0q<I=qySX!R`jS3h5>|yPcwO4+A~L+e@&w
z;06hD+Nr*hPCvo^f*X$cm@=!3XRq*Z?Lo{ut3J<5H-zQ?hAR$u-p5ae!+DR@{38sE
zG;pqpe-xt|7{l@xF9}7uv+Wce$pixv4XiM*(!eAGlMO61u!y(d3ru0o+q<*ErW%-L
zV7lS1zMLyaGQ+@31GB_CTX2q`ue~bS-d%u6H&2xLf(uw9qR(%ywzOA^nYiPB$oTIJ
zz9mAI8d#Q9mK)gB-kmM8%D}@0RvUQ4aJw+~iRGIO&d?t9cP^&{eB53gZ?D!Ec-%m@
z2)ak`gn_jNE*tpGz>@}^V((y52A(#s&cMq|-@tkU8w_kQ@SK5-a<hdysHz>*Glsh;
zo^BJbmF3SG_@%v~*u8_=YM^_8fTx<<4WE~+zF^=*A=?bRWMFm&H_ux-sNEgZs|L0k
zc+J4;atS`2-hIZ$6NTO|u)l-a$x87Ae(RuiFsmIDzj|LO6{ykHA2bl+r44*yKr;|F
zkT$T}fNr>(fluzJ)^}8ffrx>qftZ0LyM{FEI7a{jmVqK2727$H4Tdj86QWe_sK~o@
zRE~iZTg7e<IgwGecT{^=yd}I=y}(<nECcTt*lXZ@F{919Lf#X+w8@RjDfb^3_>h(O
zm7mH-25$Lsc<Kk2+ka}{GlS=q<BZ{+D>0o%W*gXN;0xY0+qr?S4ZPb?9T5D=z?TLN
z8aO20!v>BB;U(yP>8R*veAK|dLXH_I*2xvWG4QQ{?~MP}nw{X#l;tOd@WJW-R-%1x
z;0JMhd~z428K}`oJ<&;Vy2wuke&+bkZq8&m;0rk?c-}z2PHIjk^{aSka8byW+X3=R
z1~TM|fvX&2Bgh}YH3QcT<cq))!3_hy8~BGgH*k|xQ(m3wq;47bgYBe~qWhBri;&v}
z3Lo;&{l!5z%S&u=H%RBa(Eb;4bC_Ufg$V8ta;M;3g7<e;4Dv?ci@+a2ZUl7;1R8Z#
zTuC>gv*Oe2yw2)$L;njc0tF(-i=cG`Z6Z(++#Nx+2p){!o(Kv?P&$J9BPbL>;Rp_Q
zRwW|1H{zc3L{~I|BEs*>Do=D)#j?D31TS?~G-Iri61S8fkL)ZHaTo1A5J80q$_l5q
zoRIQ@b-SpZXL2h>+!j?if=WWFzn(*}N(5CSAg}Sd``Ln6J%XuS)Yn~9vj}QLP&0yB
z5!8;LVFZns|N4PC5!8#|;V!Cf#NFDRv555}Xb{1sE^0>?x3!nL(|z;bID)1T>=vbo
zT$KE`u{p%%5wwWlvINnxWdyCnpm0|=dfN!vMbIUJt`RhG@)~zltM~icN6@pY>LA!L
zf=)uHbQZ$#lWU{+Pj*!ycev)P7=Df7Wb7Ucjkxc<dqvP&NS_G$3!&IIf_@SAHF)L?
z_5jfbMleXoV8I~~_f>YrfH*vY5v<~<`_gP=1fwFj9l>7_jE-PT1V<wHiZ{Y)t(5yx
z1TRN0E`sq9Oo(7&1S?n_5lo6;as+cCn9GI{&6^@PLvX6#v<RjPVJMgJ&J;c?tIXzw
zx+(_I&5K}R1dAe=pAB6gWPMk)SjbYrhXj`hGM3p@Efc<6u=KY+imO<s5j-o(>Ifc*
zU|j_3BX~4|$0Aspjk_iSUg8PyJ|4kGl9LPB{5%=KQxQBZp@D9SE|bp<Y#SnO6s*!s
zJre;j6S_G9ddas$@LU92h12^&1kVfal(l>@f^DKaD#|Mnyc&TKK_r6h5xf>bDB|vo
z@OlJq2-y|E4j~jDcp5t+cr)_f{s|d{7!(7Bl54`l5$MdxArD1jG=dnrVFVvU+^x*w
z5xgD2I}w;{Icysdq`RpUtGJ+-2f8IAup@9H__<o(4L(ln_K>963nJJP!CTVEY57Gr
zx1FEsrbzZia94Ll@m)!T@4@&G@?HeRySq=eAF_}m7;@TkfZZ*ElNAG>N3bt~6C3eK
z1dRS^1fQ{!c6XENO_W6Ti{;erN}c!dxn<WO-<J^_l%PWqtnRK3vvSwwb*SKHET+kS
ze~Ziek4A7Tg5wc<9l_FTo|_ST69M<4`H_$DLcZm7g`5;TB}jwsBKSVbe~93;@H1H@
z{8i4+!Y^l)vk{yVeqQhw!3%=F3SJas%9kS8+1=d_hwe8KuS9S)8+t8*>sfw7$nS!0
zcUOPNEpS7*Kc&oXMclpSxW(Mx5&Xk;(%SEh;@=2zqWGx0@(3b|JEOQu_#J}$#?8=t
zQT(qr!<m9F>Zaot%#9)-B)?z*L57w-mZPG$JBoXvC>X`usQX8|_g(o5MbRsY-cb~e
z;@&8VL~&mfwWFvLMN!&BQ7MYbQ527&L=@$sC?9pV6euZpe-x#JlomYN-Cd_&CW^9A
zcYgq`yXO*nUk~*_6cxmPA`OTY#Y+Qv>8eCgT@>=FLaIeku?KslYd}J*!DI`mnxfQ_
zP>OY<s24@sDB49)UxJ!P(ISclQ8bLAQ521%Xc|ScD4Iwpqs;1|T1bN2RbY(}=BH&g
zv`rMPvb=Q^uZh81g6*T|zyj&1x`{!@D7pygB-l9{>vRv*RXCGn#O}g*r#*!9WLA5+
zx6>zzzEO;bVq_HkqPTR~Ggy$Me-s0R4-_0EIEgLrvS&!vW~h*1g2S^0qoNoc#gr(f
zMlmLev8;ut`!{D=Pj#TDs@Y48i(<Sen|rzcZs;b8cTyCSg;4pZmzoyEbn(t$Irmo6
zdb^ef1!qPvD{DDh$Q(h{M^){k_<wnR6bqtQ7{#I}=EN{JhQ(1l#P$<Ii5Qkdu{4VJ
zqxc|-Wl=1TVrLX@MzJD_l~HWse|G+yMe%SH8>4t8iq%o>`RU_~&?lmJB#OO11|AiB
zEQ&QkHk9{Md_0P;ehiST<y~_Xa1>8P@pKgHqF5ir2G;3*4>#E+GL&xXP9Gf!9|*Z+
zUyDAfe;@U16kDQrC5l(0;L^+D*L}}LVcp0*eIa*i6wgQTLKNgL3ce(`EsFVl6vdab
zgkGMa&YrcMdFZ2FV+wuL>w<3x?hvHdu&94m6u~IcQS4?XjY5ke7DYUYa1=V-rab;B
z`?inzt&cKzBUAF|B2h$zS6=5TclA|m`l?Y)116J=A`wM03Qqn{36j`C9KoS|-E{#x
z*Kbc0Z$<HT6z{M)`l|JP)sDW3yN1?i5ZKF-?5p^_^<7rqP49bxyZb8g4>=G;@n;mb
zqWCz9Pog*%#rY^cjpDN?zKi1fC_ay3UliZ4K|bK!e2@2wD7aAWSQPuCI1t5`QC#k;
z4n=X8`H2Gk6urbFylB+@wK~dn(ogZ%imrM;)w-YJZ`ScBzLshwGBwuPx6FJ_;Dq2w
zL3&RKnbA-E5XGbY+=)Z6e(H1-XC&^AQT!Ce&rxja=cYhM<*Wo{_%H09QCyAUS`@oJ
z%=?w?t+@AM)ZH(RyT<XT)=RuoE$_16Z-Q4iBHgJdUg!Ac@$c)Ws{P`-!S>AWzfs(b
zx}Refjm!B%2suCH-;Uz1DEu+x#_)F(|3u-9!5727EWJDZJUY30f0YvhVt8?N-W`H>
z3EmmQp$)E>PrM$%OZ^m;N)^2A`YZ05$Qud7kUxe(F%*trRDU(+Yxm5r0x{&ppklb2
zcp#6iU<~&N=e(4RLUL~mEB5AbCzGZ9Rgsvxkc95O7>Z_ju^99_{1i*ZP%4IYF|?1N
zbPV^$P&0;FF_ej6-(e4zng5mcmyMxZ4CQ0)u}zg@s3PQn7%B*<C|F651~2qiRkOUh
zkZOVt#_)eOHL|>R40U2?8gpkp8_a4kRX66Io>MP|`Y|+!;e-B)f1H~LX&6JJm^&s=
zY%B`-SN+|xY8Jz_`vc8m_@%#U5kt!uTE);hhL87qsI-w-G^4j|mft-<b%>#346|aG
z9mBEffle{^<J5ows&fooV(1$CZ%*=5A>9PK3-*YiXAHfB_h#+HFgk`lG4ze0pNRY{
zJ3NN|Sw0|!fiVmc@8B4Q3K=3;e}Fr0hi=&act^xAQoPhNW@E%VQE+Sw6vxFdK86V~
z{9nWjnItxo1*eE56PYGnlIcQb#4t0fv>%{m4N#m<^;t1L$EbNR%#Y!n81}}nAclo8
ztc~Hx7#4Bxk6|^7D29hP_{Xp+hKFPBer0@`<!k4qG3*(jmI*Fr^Akd4rH~T?R5&NF
z>xsORXMO$e^*<WJV==6W;qe&kyYgQj;BK5-o_ik^_43?6?qvH!48;e!|M8!S;prG&
ziQ&~4*2S<shK(^i!}|Kc!}aggZUr{5K@L<+2CA+D)h1Tx5f8Uh+Z@BQF>Hz9xfouO
z8sEwc4^-QPKOe&j;(akA4s@H48#+)CU(SjQ-5$ehF(hJ0vKzMXz8=HDfhr!u8!_x)
z$=~hY8G{x>IEFW4*cC%iMCzd!xV;RM{l9%?bP0;aU<hGoBnD@oq5;ifk}>jg7XxMt
zM2p@3Qh;Q@37;K<caY*9n~s>JVo1lZn>}TqqI;VqEc`7&rk2r3-i_hC7~W@RiMi{D
z`A?RUb}9@~Z3d|iWB8JFTHgN=y9wLmAoWQMpT_W+@Dknqbf3%R-Z<~sCxi)p5yO7r
z2Lxvha*OUD2ecRt$8aQu^X!8$d=<md7=Gf&*4}q4hT}rMkKyYWzKP+Kc)t~-!AVK#
zgdn|i<ljkXz8N|6{t&}y@tzU<QIIwnOXANloE0zmxfn9BF7TGw$T>L2a508UG2DpZ
z_ZTi`Ew8eUgkKR{JxDP+-L)8)_;nF?ig+`ITjKpg@J~Tnej%Z^#h%`OMCWeB<o^oK
z5uVBF9l{xOXWUJn&J%|>j(_9GF;Stpmn&p_ad2zn+&BVp42ffC9QorY5O+62=1u~6
zvJW!PmE&r3_LsZkxF_zuiT&zFA3q-yjH6H-h2yw4j>d5`iK9py_r*~zj`DF7<>a3@
zIFC2qV8z!6#pAd*NR_5>rQ8yNB?U{x-9}6C{y55r4ZU<_MW^^c92Mg3@t`Y)sEW*a
zX<w~4YR6G2j>>UViKF{qRV|JOC8%l~vj@9dV9`~NqedJx<9L3sdUvq;OY~|(RL3D|
z^bl1?(yt#!T_N=Zsq@ke;%FF0BT?wh5C%1kqgfoC;^@qLUiWY*aq~D@#NCs)TgK5g
zj&^ahilcS>zf-x}NDvR{ra_fD{`PTnV211X={lXy?I@gt-WP_bF1(RAdc>g(QC;Kc
zCRhJxi27lO>KVuVw(s7dYH%FAg!dMt*hfg;IQnIk{z3-CF)*tP67u&D#T0lu!{Qho
z$FVq$$1x&~kqq4zI2y;OI7Y`2iz6P#7+yV&RdGBV$GAAgvs76-1=R$G{uAKF7t`XH
zD4gC&LM97NiDPP3e{iUp9><J0_KnD4l$mkNVy-s(GG5}GIOfJNFOK<fERN%$I2JHt
z&thR5i&(jZ1N`55<k7rtLlxbKp=wDSOXFA`$BH<flzZXUSj*zrIaGc2MIhhJK!Z=*
z$MThN@RZ&?L)D?7YBg`Fk)O}lkHqn49FN7ZCXVf_^kM4pIG&(o99!ZDpAM{z<Ec2F
zX3FCA?8&3JE{^qaJQK$z5jRNaM&UbxJ{p`Ks)#h+EFw9Espo`mi{m9BTLqsNd?5}R
zzbIICn0i?fe?@|rIHS|ODrC#Jz-w{59>*JT>|l$EBP9Ax!CiuH#_{nuH%gCL1&A6&
zNtw66JZDnVg&1)}ghT~940E$>#$m-_$KkL^6!h<G?HxEwCE`d*+nYMfZ7tMO?BmDW
zAKY{tyW`js$6IlH#7oEVHhcYH&-;S!#IaY%yMphr<Y(qEl#b*B5kD0CKmC(94#e?g
z9G}MVnFM_<_=Vs;cDFiyM&B=9l8pCY97jYs6vtt<E^!Pc`6_G4DEu2W>5w}I^6NO-
z+~@s4Zt9yjzGZusKLRJ>7@+x1#?f+n-l;gg6NB#sH_N@Bj^j++eGdOIj$1;068t%i
zvvHh@<GgsU$MH)X7vlI$ytMyS$VK+$VT!YJFNycE;ND@123NBDY8=;uKQ`V={YD(W
zi}z+6e+bzwGk6*FXEw@hA%6+}E%=XM{aJ1bFmZ<oBydLpcbd4%#2m{#@+qGQkBL0X
z{V3)&;WJUxL@^V76S*b=Ci0tTus^^9m$_MJ*-Jj|uu*_P)qQ+I%QK-&w;b*^QAEf+
zf&~Q&2{N>>iF>pBqTJ?v;^jY@;wDO%*lgli6D3WQGO@_SViToJ+;5_riS8!Km?&$a
zsflJL%9$u{qPB@TCLZ8Vm5FL59%TB%RYemuhpQ?kDw*yN$A@QfE1MvaS2f+|=OOZ(
z*=@M0E(W=O2Wl{i@LDG5cqRyqiFHlXGttmQBNL;BtNNz92@n6#uN|%$nAkpCk#JXp
z#-{uF)E=&yNFt0|y{Esqi54b0nCNJtrHN0!$!TSxwTTt8@+Kb7OBeCBG11<{+{>P}
z604oyvEgo?`b)5riOwdvnCNPPn<{YI?Ghv0&>ADupb_ro?Wd3B^<V)qZ_Jp9UM6~*
z7-C|mi9RO!niynau!(*qW{glr-ptcRsMRA>e-i^t43x{!OUE=n9ic9cP{l{8dLz{^
z6T?l6Ffr0ZkCAG|NVR&TdVZwhCX=y|>XD+}=kE89VRRESP0TVe&ct{VlTA!9@$?N3
z&zs|CkqIUyn*V)`og~-dcT7&^xj0f48l|S1m}X)+GsYSm<z}FxAo*-INEVBUc_xgS
zfnlT6nbuxz>#@0AVAQF+`6iBE^~@cm7MNJbxcgmBe8|KS6KhO7Zepp4M@Fd<`Mr;t
zSY~25%Um+B(!?qguZ~iC<XXo@sVk$@!zNZs=p%xB)MsY+9po`qoUDyfqtz28&y@)9
zIee{&CrvzM;;R|~x(&Qv;p?)>dLflZD~4_~@r-yk{g1eXO~u4#CO$W@)x`5A-ZI_C
z;1^81Xd+@FYGRv-mrMjrgiO55GBokJi8q*Y)1B8!w_V5_nK%2I@Ohjl*hKAMp@s3L
ziJe(X+ECy1KQ@|h!$eq!{{LHM>|-VpSv_vT%yLW8XM#x+wh2e{w29rUGR_OlhGsHD
zvpremZ4>X9;77x~Y$|u=|Ioy{;-&JQiTAVo19q9wiXv@3GV!q(lYheQBb*bt>D_1I
z3lkSjTr#oW!~qj0*g;HuY2u)Xqb81-IAr3mi6bm|6NNYB^&YLB9<8pP@x3ux?H=v6
zHy#ah+{D)=zA^DF(;2O}AtzrxTp6vnx7ZzHROvB_dup9B@tujYCeE4o-oy_kPMbKx
ze178@I7abzVcr<UZM}aq-Hj|h8l!$Pv3`vDSuiw4k)Jp5i-`-YW%h`Qf$kr;UlPxb
zagXZY3CagzdE9vXvWeeJ<XC`(D<-a*_|wEK6W3V6CT^Jc-9*K)Dt5%*cdV-Qu7AQ<
z#pxM0*-s1l@0gtThl!PA70GRmZ)~e3{x$KpwC7D7{hY(|%vkl>SjAiBrRg|=-C^NQ
z3qA{e3wK$_XTf8^Yq_iTnDXY|1NK<;$ymi>vwj?_mi*?)wGgn7-$DTkx5lb_$EojI
z1;(BC6grr9DJMUtw6z(hl!d!3++(4jg$@=vS}0_pu!RRLRJU-ig(4R2vryE+<Z<qw
zYyN^PAE%00C~jfssyvo|2@54HaK3IO3*o;5r7V=SP|iYW3-^oi&B+|j94?dP<%Q6)
zf`tbxoI069M;j^?Es)U5)GAAwRRpUFRukMfPSvnb(?VVT0$PZSQ@5@LYFRioPSv(h
z$HMWP{46dOGO@meo8uIZU2bZDJGVCwY$(`Bu(4nhL5}LpEHt;!!a_?6?JeAB<IO)_
zaiU`@3$0m_wf$`@w6)Mq_}^{4ZN{s5?YwlZ*?2{zlZDO}hOlrfbg|IYLN^QDEq96<
z=VS2WZ@mkF9?WNc@AC0#(|Fa>LN5!wEv%oKGtj~ymU%&c9}9h1t*nCM?vGl33j-|o
zXK~VaMMpC5xUXtK|6mdK9`~&}?i*%dxP{Rc##rDH=d70z63SDsM_TS#*rRw~$2=rs
zEsV3k<}}U1cncH6Y@&rf#w(ui;-8@UPH-<Vi8U@kPgT#GVqvO<-<M+11V!(3R?}a(
zGg!9Md^0WgtKYf_Y8Km11^;Zz{p!b0hjT5=<GobMoo`{Ag_kTWu&~g=&IxKvZSNur
zi!D54VTpw;7M`=P)WR|gYb-o&VYvk!R<+8)zZ2973oF?y^}NFq6dlRK7FJs*Hc>so
zqMN8l9u@Cng7rjs;kM_ifcFUtYb|hD@sk#w;Vn#5Pg!`{!a5N*SlGy7XX5Ac=x9b)
z;}y`6(0CIct0dO5QVvvDEL$x+Z{Y<CFIwQ&d>&r2VWQ$5U&AZ=^@)l<qujFZWecxZ
z_}s!i3$I$(Zs7w9A6j_L!t1;>3p*@#C;3k%DqodAk16?gT6oh!<Iz6T!Y&Iz3#TV4
z&2kUn${dvyvfLxLIDAnLThJ{SZ21<V7UE(|J!T=}ILA2SC0c9@7Lpch3-4IiYr(OQ
zvcSf($HKJZzBJ4KxNo<G{$q3K&EQ)W+8p=2Ey$Ke{;mb>xQ{N=*xuv4ANRd4$TIoJ
z!p9aqVJEUM^D95U5%V?R(+2~;PgI|=qT9MX@%~9_|KoXISlDmjM+-k$IAGyR3n$oq
zEF9#`RtPNb;a@gM9kOuP!VxO$%ND-2aMXhJ9FDQqOj0Bj<L+oYagw4JyK=s<@U7*F
znV=T~-p!NLDOT$d_x*-FNqxuLpQOGQ{6X-v;2E~nN$S=l^|OVu7Ou0u(_Qm)4Cb9<
zzu4+K&;IN9f3a}E!mk!CTDZm<Y!tX;;WEd33s*VxO;*2I$T;STULw6TBcaQXc9Yfb
zETvNZo9t*T`N?YMWc4RUu+yGf7H(Vk%fjClauRrZvZDKkjo<o@kL9n=2YDHhcxM84
zC2%N#!wL6MDqjMn5-2U)Bj`=QmvDy*e*(Fp1QNI>fr1I-7jFT<JV7PMbnZ^z>&fm@
zS)r^_G=aidey@-s3EY=e?wH~l7fYbHC?y0-3TA@tPoPW!EfZ*!K-mP!CD1&9773J3
z-~q`V*QN4hON9g;OrUzgJ%O}h0+oc2R~AwwfvO2qOSngrW{wu+!Jst~?yT%O3DixX
zrf_;|B~V*9Pr{<NURH0MKz-p2vPwfCjS}vENm|l1Nua5S%>?;tMR9sTKWE$Wj}<?t
zwN9W-0uLv!I)Szcv`b)Q0;3XWpFoEMx+Ty(fsP4uN}zKBT@q+GMYVmv%N^ckTnlhZ
zmgoH5uGFWfN{91OJM(%Z&@+J{2@Fl3SHeBqd2k8$eRb~y`XsPuis~!nGdO{M3G`23
zKmr337?i-?DQevmwPT7qA(MDwird(7rmAXFRp`|`9?$gNCC{*gyDQpo!4ZPLpYe=N
zU`zr_5?IQV6Bw7k_yi^-u)l(8GgWb?wJ}rGlRJFcR5dYyNeN6&U`hh>6X0{g)C8s_
zFe`!C2~1C5MglVhA1xSod#a)%p`$)W4CW><PYkGJbP}2^NMNBPxF~_eLcX7>m_FS@
z;=MLiS+8MP0xJ_(#dg)fyF7sv3Gj6gZ*$GOy!AhM3Qbdd^IvD0dW4B5@MZ$L5_l|u
zH3>YQzzYdHPWuGbC$J%bwM^$b&*Ew7_&xq7rAXUPQ%@!EG%IeJTXgG$jGU%gR|#xn
zpPHt&B=8Ig{F_*z_xU$WQ=6I8H1%u(F^TdVulu5Js~`yzc`<=)32aZ`wFF*D;L0>r
zXi6S8=_)>5z0A9qu3iy*Rgm`X{?F_PNAq~n++S@1ZzQlI0TQ~MLTD3AAe6wK1l~$O
zOCX#;lo?=4o~~LP^UZJR*AuweFklEq<kq@PR}-eIcmfu0@P_A%mS-kFT>p|Ukw7xx
z9t>o&AF;0;_mMjZq(mg=$iG|kjPiB@?<DYL0tZ=!1=QXIUYV}ST+Mwqf%g)4KY<U}
zH|3%qCh$=LpC<5`csYIU;{-n8_;bb`qKO?Y7NGKZ0{g@uBTi`P{i~C2>2$R}fditG
zGpOs?+}Lz=e7d^!y6;E=U$JK;!J}G_CUA@cND}3fI4<4x`viXAcqMVa;Sh1iZ6V(#
za6%M%PbP3mc!yCr-(|(qERY1eN%)fZF#&GP-TI>EX2P8i{!;=!CvaByIkv_GE+=q4
zfnP+qkif4A)SBT=sm+<8E@pZ68R|FIcmg-XjG<SBTo=5?CUL<-k?vKA`+GLx9|`;^
zg?}r7e-p?_y0vp#l)n=ATgX4z+R4-x#OAIf?htaPAY*0B@+IAB^#~3>mg6VsuL>t|
zZxXpl1d_03sQgK&B<9alH)f~;N#rF_e5UF@QxPfNE#7+s3knuWA|jzhlJ1x25=nPp
zxsNE`Vzd#$pbIk<9Z5;Cp;@UUN@w}~Ldpo172Nto&I3tQNTPNUb&{x<1Uq%LB=Q~h
zR7$#gcT^VKeko8TiK<C-KIEfF?}N<$eouA58iF+iYY7&8-95~d?{@gUh|9_ACQ&bm
z`bjiMqG1xvl4zbp&L4qBf=5r}G!{aoNfJ$Y^;wFXLu(6Wa+d1E>n71MiB?IpPNGc`
z9YkkP+a%fxZ<lmmB2gh`NXP%tyCl)}gpX-<%@T4p)b2_2NTO#Fy^@%b#LOgmC($Q~
zzDe{;V%<Nv+xG={K-;4?0{xR1ki^I&xa-}(BnBnjS7Aew?yf0=lPHiI7?MP_S?b1B
zPls7*)GYTC@G!9%p2UbG2Iu6bLL8OEXvRunY!Z`_n4HA8B*rH(A&H4eEII0PZg{rN
za(C>{E$OZBwR?1CTm_~iF*S*4NlZ^7Jxd*(rS4jhH^<^Cl|266-0F4jWmXcilh~fb
zYe~#W;<GZ|WvtdOJ#&-bhtzqjmn0Slr*}yb3$uJt5{r{~NW4vodFg1dH0!0lJc$)a
ztW08663-;DDT#+!8pk|zPbaZDiAR!nG>OMVd@_kO+0eB~@D#Jh1)oUb*I9~Qp1H<|
zPl*kevXZY$V!e1bB(YJ*(aSm1Gq_ol7n9hQ#Is3kNrH!?J(tARB%YU`n#Ek>$&cj`
zUl1kVY<G*cmxR9}_;L~%GwQD<!6Vg3UQgl;7E39mC$S?5_i(Euip^F#h3CHJqeAbl
zB!Z%ohmz2;JS>DIZ?HCZdm>3hlZdgc&Q^&el0xEwrl2Ke45hPKk4fxK!Vxi*4PrVO
zGm<?b()&&ldy{zjL#+D{?<VnH5@&Yf$K7~8i4RzGM?A?CK1|{x_OBEgrtonRpKwsJ
z@s*8F*%H{nZTExY=e%4f&tt=DV_y<qB;7rl_9t;!$blrjOyXb?hm!b?<4F>SnTQ0P
z5d12MV?r3~s1WYXbUcZ#**4_ZMC#up@hz`-JGat%c|<BFlQ@-)Mf)GJ{G5=}f@k<E
zki<{Ie-=E;a-OXi{XIdF^GW<7K^NGNlDL?JeLMG(T#nZwrz80-i7QE5P2!pu=h*H&
zUT04f?~NpWPvT}0e~9-sTPDlR6S&117jkoF4iA5%lDVV5#f&NZlf=JSp2;C>+#!kI
zDacrN*~lmS$$Wl#eK!0y3fd@S<LGR~*CYIkk!!pE%L0P=1q%q~2`U?R3%N(|)8>8}
z^Fwgg!=A!6F3(n6A$zZlA~x=`QPg%9%+i$-Qp`s2tWv^8$t?HHQKfBu-*k=3*eEZg
zY&Nu<jmC4_Wa%Er#;Rzel8wr=u`$}l7#me>RI|~;Mo$|L+Nf@$j*YrDYS^f0qn3@@
zw!0DH&^e0#_eb6KaHRtioIOXi&gZRXqrQ#yHaghun8}9Sz{V4ER6`q$cy$|1Y_zn|
z%0^Qgu{o-_U^5%vdcAa1T8Kh2c(=c`jW*(KXM;9$Z3P)hV|qzC+BnU-o~t_B=p^o+
zIqp+U!?~)94PsZpZZ^6L=`>eS>}8|3jR7_W+UR4WuZ?~-`r8;cS4HNkFXpQ4cYD#;
z{Re$xt|~fD4YD!V#&8=WY`lLqa4~<N<~%jT#!wr>nDRXLigmtsznhG-QSr9`NAlcC
z-YN6cC>uoTW0|;(kPXeocpDRJJZj@H8xw6zvN6ZTTpL_jIoZZk8`Es}FX|M*?mUd(
zif_7&*{q#&9`YGBh%;@>5<<Rm-haDw@dea88w*)q1p++ndOqv)&cFg2FU(UUi)<{m
z@sN!rHdfhq*v3*D%WSN$-7(Fcr<M!JAiXPX5a}|Zt0nXi5gC**TVvyK8?V~f&Wg6N
zmZ7B;Tg8($p5k?FylCTT8|!Rrw(+cuEeG<rK4ra)4K_B~c*e#ij#n>Y+JQU<?fuI`
zLdR~n#l~}Dzf~+L(w;VS&kOl_p4w)E?j;*9+qfb5%qZlqNN!2^v5EPA&Bp6C-mtO5
z#+x>Z%~v~_pGY2;#Acoq$tmu#5tNAJj1{(_+t_d8fDOY&#KyZe-m?+4@lRp@9+qS;
zf6PYQhH1l+1XDH=Hj*p{@iN&Z;z;Nm_Nn=bByD52SZ0i=yhZyHe!91Xykldpkar)>
zPw{<bfSWw9>s|AFz@}oO*L*c)zWRs_Ob8d4e<C^mRPZw!p9|S%;|u--2+yo)=Y4(2
zGPiNa#$nstE_n5P_dLOQ_jy<T5{S-M{5x=dzB+2-7)LY5-6`d`jj!3S9dvN;4STDN
z+w9;rPT06}f#P{;oC9{!#wiYo3)FWueiB0dy^SB(L&eLpNX}&SAKC8~C>s21<E)Ky
zHqP6)nGOBL#;@!qKYQpd*q|{jFA83=QT7wxWkHhPgj^B4YU7%a>w-4~Y4f{8B>6+g
zpMtk+JhDL1G3CFd>*aIcaqtg^g0%l%L6RKD^+NCt!8;w?C4~BvwBPH%=imVc6&&~-
z<T|+9!95NF4)QxtOwdFD$Nl8NV)ramc@EMG)R6`1`~t=Ka-7mr&_N*w<s6iEP}sqi
zvc5SB)%u0%UWcEXeMKDH=b)&AVh+kWXjLXq+(D^@ie%_QRd1mx;ec3Du#{kF!TSZv
zNFp?#J!4&G1{S#=DVUjx4k|gQ<DjmC5{>;W7pV!0RAmQM98`6%dXaj5k*ek(vPeDX
zxVwB*7bL0Spr-Iz4r&YeaFL>8P(26r9kg)J(m?|U4IRAL!rz=tsHC?`Iq$cNR3itC
z9WLNPQ^y^1nmNE?b$O8@(o0;O&;8Y)E3{a(a?qM_FZ;SKR&5-#b=(tPa?1vOFB53z
zfJn2B4mvql<Y2Lb&JMabnC4)*!&ivz-d5vT1wRM6Iq2@7hl8FDhB_GLpqGPiAMc#S
zYLJ884*EFg%Q|KCz2+O}pud9wg7ngcm?6~Z<%8m22SbE21625Df4BqUXa^&Nj1(Lt
zNPXjCHAeW@tTN8Qn-Y;nMoe%(oG3U+aI)YO2UCR%D&VKV3|8oA&(X!|>|!<3!7K-}
z9lXC-Es&C&<G2T=)6I1-&%u1>|2rgoq1Z6Dw13FK5(hh(0S8MRcjx5i9QV|lWe%1*
zSm9u$gJ+1J_*SuU9jp_+TJUiPPdIqQ!K31ROmL0hKZ}(crAA<_c*&n~@T73hLvB!c
zt^#9Y>*8{{^}MKrZggCoO7n-*CLx;zpJiWQr{J>6E-GWNm6tB=ecr(fY*)g!Ie5vz
zxQ7(=mqmHi!FC6)2tS-Zhx%*6N!}3hx`TH|<<YxCyh|mnbJWKL*B^!Qb~y+-2szN$
zLLB!{>;psxhJ$w;>}7Xw5Ov@<NI8f(h&!+xBpmk?D${X~pd#7+kc&wXNo*l05f473
z(hhbzcsm=q$3c-L>MaMqh{1zP+_-eDm#B9gyyxH}2Oo>^`+^?`()hz{3e%UUPaJ&e
zV4s68MEuOb=R#QH%+eZ3lbp%!7oC|gm#8lt9CUC<Zj*O<*ui&8+-^vI#KBjh=U=Mm
zJ?7vzhoHamzIJemW{&%*=o<&$Iyk|)Xz$~!b-r;u$yRsB!^I2Vv)elGrr=BAw1YDa
zesu7Y<1YTa_*@<rlFXi?_#T)GY=3re*1<Uk=N(*kaD(OG;DUoI4z4=*)xkvvmmU1Z
zIz8ZNmoMiMyXt-q-B?dflYBWl_IomTjkS|6XG*@DKdbpN%I^+ta(GGM9|wOp_>)7i
zgMS^|a&VhDS*rdP{40xY&X+1Wni1*ENx8R^F}NdzJ5#tTg?uS^Qmz4YhSE6W$o(ng
zrcj-sDR*!Sq);q{;wj`$p+E|GDYRayo>{62rl5r1ElBa66s9ayB!yBaoWi{lohcMe
zp-2k%rLadr%Pw<kr>o%c7XA_`luMy}3gjgPOQldch5J(|BVOudQ<%3*k<hJO=I-F}
zKnlbvDO5=DTpLspZ)L%ccjVA9G=o)BsFuQmDV`JRiW$9T3f>F8>9=z$9|+V+p>_(d
zFH?0=sGCBky?NxsdLok4&x(ywXq>{36o&F2E2}K!zHVxoatAcNziO63^AuX7uy>ha
zD{9R)vrM&2p_LGF-Zf`ZwMn@LF}D?LC)i%FLkb;*bQ0_=NXsrMbWNdK3f)ugK2CiE
zdkFRv>?O#c-YIM!lS9{6lzu7nPhmhdbWjQdg=hA6qW$2kmuGnole-w6a{qL5E4dLV
zj7(uv3Zqk4pTdR|#;`V-L+-bk!nhR1r!X^xSt(3NVIu2Yf*3l9QI2>fr~X@dY{~lK
zsoBtJLZ+uMBdgG0b_#P+SS(Q(cWw#`Qdr0u7n}K#AXDZPoy^9Yi$u@xhyEvYX$s3y
zSf0WPNos8hD}_9g!lPogN+Lcie6=92{#Z7JCnR)@cpuM(X7c}}1U;3#?$ar(%W@iQ
z6#ilg+fsNYg-zn!Ecm?Ovw~aL4TbPtwx+Pz@2<RlA>}T?&RpfC6kbljNFkEKD=EC1
z!j2SnvQ8z|8)C^QuZj2dYzb#d=1mcIr4Y>KoO&qBH3<!;pi3f|%}Z$zO(7;hRt9BX
z)3|Umn|?yPnbNjXa8gL6kWQgW8dcNonHsxOD4RyPH1?$MRtj&Y@J<Tfr0^{}LJIG4
z^f=<-BnmzyzL&zMDSXDJRn+@_3LgmhP|#g-A>`u}KFKPbn|nV`VIPO1Tb^Snd?7jy
zmO3P4e+mbLd@0CS2UB1aCUrRFo<DU&@GC)jk1{9A70K}wzD~Kbh3hO=k=1#Z{DBiG
zoJ=9ULV43TmBM!^{E@<+DSXe{$qD?N!dW3d2%b*ij1UI>n8Ht4-e<Ww$7_lAS_;3U
za6$Oh6n;(NBKw+nIS4S~CE=F^>CK2&QsANU^wKfPbqT#8_`BfEto<9y)vXk6r|?$_
zf3rrG%f8mjRjCz<efb{_@@Z^bq5e&w)(VxAb`gRkccd|Dg(9KBU1@iO&nM^+q{w-j
zzO*~H)1O9e8i6$Or%@n{!fD(qdY<4tf=cl2G?qW%XOx2CEhI?qACg*;G>WBBJdOKA
zFPaAJORsb<R3eR%X_OJY6h$HT3wB?r#)}OtpIoW<f|U0BTTz~=9dS3kB!3`{3TgMh
z23<uVl>{rNx#wpN#cF9h$jt9X-fmP+qedDvSq^DD(#|{hkdLD)-!|7yqfQ!6rSWtc
zbr~^@;c1LWqkh`m;fMc^c&K87G#aMSD2>KxbV;LY8e4O`P10zQM$0ssrqL{oiv@Bh
zHkY6!9`DrxIjw}ZO{1NV)`D#WE0*@txP2NO)955h2f@cGd#V2=Np(&my;9NJEsgGJ
z{)0pRG<t{`#Xc;hG<u2mr<JOAmN1B}uXrgANMoSzA!!T}GB^#UOq<MA)GGH9L(>>0
zVomXmOuJtVCZ#c%ttE}oX^dg>NMl?Y<I~{0vg^m(33VM;seilrdFJwjG)As+f8Zvj
zu|&v}G^VEUSQ-;9dZwi@J&lEFEJ|ZW8buF#=;oy{lUGS&c2=32#vI|dmisa`8Snfw
z7KonlE>7d2G&jxr&v=OhEf-uWxJ)pU2>Hr1R;BUGD)lhyJq_yQtJw@5^pnv0sMyoH
zMsoYOAhZ31khN(%nN_&c=DIZ2r*SxqBOCy)1vaD+Ps3z)<0aDAl*Z;XcBK(a<5@OE
zDbkk(pZkAQeFu~jMYQ&Q3cIsAI3+;^6cb`V1px&F%$PA^z<>cWC@4lyQOO`V=bUp6
z+tazH(~yIpf`MQ_Q52CN=>PTIx9`0FoI3Y>b?erxs#~|JXR52KgpMaI#n@7elPE2}
zIGwo7iq90gV?rtD9urGJ_sD;yCYNH0h)pfUj8e=j#k5jPFU1e6wghIJB?8noyA)JH
z4#SSii{_Q<UsQ_urKp%GSWt?E!d$d8Gj(+001S&uu|$|uxKuQgxuO&+OOr$C*Oy{d
zDOQ)lEQQ5!*Il*luGW-dEj_aoS}BfoS2}0@QmpB&{^*`K00Ak3A@d2Nwxs4t;g`Y@
zOr|Tq6WX?i3IxQZ$aD1dP+=(|$xcjFAM{YnvaXy%%(`tT#YU+l@upI2F2`F0OrVk;
zYI`YuW4Q&Dz9_|xQtT|nm!;UxW|rcs(&W|cH>LQt6kiKwbXRF|6#VW|eAh$q_@nQH
zzqb^HJ(IJKzAsHqM%p9vNDsA7Qpu<AkEQsj6u*k(&!sp}3LcL1i%2pr1C^7Kc~E2s
z82z1d&aTX%Qv6YhKTC1A6sKu8UBh3cIKoj@ij$=<t}XtXb}q&7QXG}&MLiXnq$lXi
zrTE|IsZ#t~3TVl7Dh&UXqCiVhTlQ3C9AXA4A+4aHSWA>w)KDm5)p>A)hLqqAJrx7R
zN;IUk|0$)C$Wx4brQu8sM~l*yhRPbMXt-WOGYwTWRMSvHLro25X*gTMIU1^KTux6_
zKdZP$PsQ(f=Wj3Mu8fYOQd_2{&ed?9h9(-CYN(|pKcp|zFko)xd=1*Ek_$9kGch%~
zry{;c!^IkEYv5r@3|DEmL_-}7muk37LtQO7e~IC84Oa+W+%t(fLJ6)E=H8y_Y7O-?
z)GwF6jzwt6K}-#V@>tP^8X9TIDW(k93OFuG8jC=^Ug}8SOy{YoKewcK19Ec>Ei^o<
z;W-UAXt+_s!x~z%3p7+}q3+bM`q#|O8g9{WtA^V&Oln%xl12AY1PlbXQ@)qFLnx!f
zcWJm=L#JNq9u4;kAih^aE5Y}bbNJB^`44Cy=Rpk*37;Pjk;yN|A7Lqb3zzp&k7{^~
z-Fij(aScxiAZ{bz387C4?b%B`EugK?XM|4bm25J6UPC(#pK0i>B}e(az=AZqso_Np
zFKKvL!z&tI)$p2zsFzCjP6jOhTanhSP^rC!4jLK=^M-Dj*EPJMp(Ab8EyHay3<Pg!
z=&Yfuh7UEot>GOFA86>J;axVNx0>5qnY~rp-s(LKr0;9!AyHn+xu>_P*hgL1M}4H>
zV-25Z_>{ewR(JH_S=>e4G(6KMsSGcCe5a4%&Y97DR1Xb3H7sFAtWNdP&|AYy4YM@#
z(a=}JC=H`E^phblK*K-{{W%zS6n?IOci9Y|oZ^=VgES1*FigX64hI%gJ3U0hP<Gjz
z)PX*#ps#8<DK-0>f?3}bjL<NW3V$!$Gb!avNxjrpjnObx!vqZzMeR7M)si1z*Y!v|
z>dMXqEbC;2^dt>aG)!g1zA2cj;itMq)G$rMbPY2!EFTO;DbE|~d7w1u_$!NMYstP-
zhIs<!XqYR2`%%lbr_R@~K*K^|E)u#}=tq4ObM0zeyi~(7D%Y?=LzbOeM=`9V18Z0#
z(N#iu=j>Vyr5v6T<wdk*x6uACU@o1O(O_yIlhHD2YjF7fSA(ZvqlQfyavWS5)@#_H
zAt<xM8)`_EqGtaThMY|PDU3A40*Lbh)(M@{S8;RZMRyflJ~qXz+M6|O(eSl~T^e|$
z=~j-xZwtTBuua2u4ZrtQ+|tZIutQ6Zgx#qnhg2|pDc~!iH&sc$4DR|>yE$w1Q{S+c
z+h@KN`km14g_5~P!w)|d66`17+-Tw-6F;(>IM8%FuH$D72Q;+QlYK9&=Pw!tWidF5
zUo{-m@EfZ{|IgyaEDmu>;ry9Jl`Q_$aF{cyhGX;%j)J=r*R9)69pU_ZtnhE41iN@}
z)9;0Cz9_u4pE}OcHT<LDq=r+R&$B4W;$IE_X{eCJtNqmMgPDRXHXY2ImIbn4^g&^g
zbGq;;Q!&fW4^brYDPexrPm#|+F=k0;k;y`3F|wbkB=iiSv-&AZ1kTK&3{b3U7S*z-
zo<)r;&dTEKY~tRZ?JkTer_aga$Bk+3KqFq=Pw~RLnps><JM1VtH;eOVqIRm5(2KG-
zUjR852)Hnd_5IZTe(GY0*3ROREb0ipG>gl!IIVy3<po2N{)rgD6<O5H;>s-A^jFtr
zaa|TyWpQ;D^|Gj+MZ+u_WpPaw4TKWB(O>nFPzJ~+AfL>}Sv1Y!dcjSEGPRk2=2^55
zB@`p`f9XwG+?>TdS=^h&Em_=}#cf%%%wj@+#rvtvIT>#MzMb}|p_cYfzEa^)Gk4I8
z`_gv`y(^2m1(cmd(<+PmvKWxXz%1_1;(;u>W|I%o9?asQEZ)pw{^#o9ELvyLjt0+y
z=il-W-AA%`G>gZwcw9Ko3T>0c69TsOR}^D-GK;5#L;Q3WZ3RCgl!xV#`5eoV=oz0U
zQ6A*`ViqrD(Mgz$zD(!I;<YSZ5e{XVeXe+H@4KI?_E~fg=IdGXmF#aww4>0nqkTzv
zoG+X3Ru-M5EyQnU@lH8@H;ebm@%vePAh?TA?eiq#hgp1-#mDsIA5x!X(Op2dEItwN
zsnBQUq{i<n>5)ZGiS`%TD~sM)^by>7Pa(7S72Hqg&d(K@%=NiM%ToF4<?!dpvMRsn
z8<NG)Eaql0FN<MW49{W&hej6rHz!97@e5ggFW+ukY7{+TKysGR=q$!$F_zA=wQy1v
zlLd?uI-b5EfJqYt@RQgn0%n%;rwW)Rbh^+PLa!U3m}{2c*+S<C9a2~@KZ^xf9M0me
zEEZ<5h;_^2hir1sDNoc{oW+tXmS(Xmiw#+9%wl;Kr*BJ_W}yjKk;Td^Rta96#hNVE
zX7T-w0?O>!QNWOVR<NTWn}wc*pGA;`A;NYRP8KG8xLlsODCuV5Wswt^vb^LIl;JRo
zNRrkGjfLjRHLy?$uNP)n9X4gLIg6cHd@0N=S!@?T$*lsm31zwDd?9#;(6a1bW$|qm
z-(~T27Q2MMTj)1glw~OsOUlh+uO#geN)81W_DS6+#xp>E<ZN>y{pkSpQx-pGae%W^
zhk{=??Q<rqQp^pO2L=4jX+MkKvdIS&{62#855fE<f?|KtVmni9Unn3wlEvRyq;wSP
zIGV+=EDCf$$8q}GluYlRGAFW_I3RgU{KJM1#^A1*li6f3{}i7BS^Ou=O@k8-Dc^1k
zzBzrGp1krnUB^$q7FG~iQD~u1GK&Pfc3HYaM_NZ!9o6*Y0o40fo@A~n>EL7c451mJ
zO6Zw7D(k2sn4g|8Q0y!nXY05^M_nC1oR-v+hr6Dmqq>e7I%?|BtE*sux`d@{OPwq9
zJRP+JoG<hOp%)6J%tZn&7Ft{Ad(#W*=(tqJHv`ns0qQaxm(x}QRMmk=lqFuN<0>5u
zbTrg)wT^l^>g%|Mbf9{Epn7AV`f#8cIxvys{vU20Sk0ZEIw}lOH|V%l$8|ay>u92b
z{ANO%>bPFV17omwpgQmG5(XwU*U>_UKQPHoKIx4*ZqjkHo;?0;6MBn|TLsh@loZ!`
zkm@Ahc0D<7^9~(%>bOhr147BXTgN?u?-klg=zT)(7s~5tD8}%hj)#Qvu+Y{*$$v!0
zqk^5;Nhxh~Ji%@%taPq{Cv`lf<3$}W>3CX4TRqu8`^=#<Pb1`ayZk`)89n)`;#r~3
z34LB@JE1SIy;Bnbo&<8%&BZV4ctyvnI$qPUM8{Gc?R9iu(K@>8cwNUEI^NgufsT$k
zI_Y>*$6Go^)lZKYq-GCFK7Hcms~vjg(zTh+da{?}ZBiYjgVeh^-V+Xu#z0ON9bI*N
zqT^F4>8$9_-wskAifupAkr}K$7Tir}ox$pc!RqQ=so@u>hX<=3I(q6Dq+_s-UOIZ~
z=&$2*GS4k)KUke}UU45CeRa?+8Ttuep=}OkW(-z5x_<yi$DGtamNGd3Lv#$)F<-|5
zY6vsKbnx@Ei8_Ys7@=b%8>nNPRAaObo`*KBdhr-N*&junV|6f0?Un2k7%wstgfjZ|
zU^Pj{WIcHsJB0&Q$4p8}>NFkGbsV}t{WUo8BGOrU^1^hEj=3T~TPOt>D8Lu2^CTm|
zLLC<lQD;|B4Tq>jdh(x_VX*-I)m^4zIe)wAIG|&Nj+Jb?j!?%cy1kAytiPUoY|`rV
z;@8hj>RhU$^$^u*h&sUi|2nc9&N>Vojt-X<o|`gt*tE=^v?a9ca15SkLEs68CsgEg
zki$Ui>j~u<7m<!w$B#6%j=Y{sUtj3>=aTd~I-ZUVIu>V&whG;-W0Qc*I<^RyFhntx
z!4|Mh$9Ca=Ezuo1cIx<2$5%S`>dBMtYaP3Ee9PbJI(F;HN50>PxsDD|#B3(P_d51)
zhAHQh$#CXSwNE(vIk`#3GCp<Q{#UxrP&M#iCLEagMaQo?{^q2l<Dib;bo{B~u#Vq#
zq;4y|aj5#>htwfj@3qVyLhXSG-dCe&UbXb(^Naq{afGJWn0{=iB0a{*pT1{6892eg
zTSuMJ(PL=R(f>$gPU=u{CgHz2{?k!l00xQ-qzs&9pys<7h6(~sH!yyvVzi=xLIX<#
zuM=8qpu|8W5lffnI`mHFTS+}bIE*syA48KLLfadp&oofkKotX34OBBw-N4R9#b*g6
zI9tG|P6g)}$qq?!NEvESm66PlWz6#o)G~0sfeQ?rXUbZTfr||EG|<by#Rh5{Xl>vT
z1D6=6W8f|WcN@6Wz-0z*GH|nj%Z<cat~OB5!2UX^D}>gi1&$Y7Y2Yd;i~J)eO6nW9
zMxreYG%(Q6!1V@({aeV;$iQ_58XMSGQgE#>i-)Nu<*7{t)E%ZMdG|2YOrp(&&i=RX
zxnb%JKXZeD8x0UJuyx$-c#DBM4e%<%TMgW1p#Lz{Qs^B9ZZ8L9^4l@evJ(RDF>tSe
z`wZOA$}C9LZ&K8XrZ}y5)-V+eQ}+$aJT)-$fRSu@dQe(jd~Nz60}mS@Xf?lp^iczk
z8F<dX^9CL_(8j<s2A*Yc7ZrE>tMCZ}KMhmUx@Mj<K>Cz{rv<bXN)9c_zZksLn%`LQ
zFtm0wmw_$@y0U*O6u)TTZ3F!p7Qe)H87LU8UNP`GTW#P~1FsoqZ=i$l%f>~m;fjH{
zqk&Ea-ZIeHz?;$q%u9JDl>y?i@Q#6Z4ZLTd*>J@`f%gr3AW`xeC9}(Lb$^p&I{MJS
zM+QDNFmbr*X5do;pBeaso-;o6h2-sSpof97Z?7o-Wc%b)a7KF@=tKWEu+%_bw#dMA
z12bqP1D{jgz*qwV3=E{>jYzzGkb%JlMsSRbP`?gWL+Go`(!&i5HNfaFp#)?y5KwHS
zfl(qqT4?<d33Hr*cSa=lbxz_)l;%t@;ElmV!MqQM)$2b(O_t~sp;LuU6S`!CnrUE`
zf!PM;aMX-SExosR!wB{52zA;>HP=8^z9F4wV7}l51{MogD3qy-IABLA0tSL*29_Jx
zOSd<$!oW%cn+<F+u;-hSRR&xG2Tr9|8(3ptt$|VlmI2$q$y<sv1BQUC0iDBYq#~1{
z44Cvu;W*{s)sc#U0-k{!n=n%O1|kEofk2|<gaT**;=F+k1~wX4XJEbXwULT}sTA8J
zoWmm(FNpbaq}pm=n}OX1zA>=fz!#iw4D6znS`_m_QfAq~xyV3fl={-ZS1fTuVbf9S
z6(`vvU7c^izE3?oN{y>u^sRyK41CY#)8|L2QKJ;!bg!Z0(ZXt#RDP7=Zqoe*elT#l
zi3(i*;b`KVY~UXQKhstQ4jK4^U{rFO!@=g6U+5SH4jTB)K#kGrcj-hHO3Xm;r-A09
z)e#P&(dw|I{w4HbN&VZvQ3KAFWLfo?f#Z_IC`0$r>ZE~F2L3hhA3Z-zjTx=7bxM|w
zRvSkv-sn+aV$Wy=GZ`|c2_+~RqbiyxG*Q(=H4{Z9QYOwYkukwfn2Sx^H%9Rj@)8qi
z6ZOWZO8<v4yE1X63GLNPWfSY>Btz-tF-a>v9iyt4ASFJ_#Mvg!F;U&bh%w3Ybj=vm
z>*AssCcYe_R?JG(7^@DCQ8i7Fo@*x8kr31}alVNQOk8MUqtx~y6BnE4ZK98f+9obB
z@qmd3&E(~59TQDWTyNr16PKB|+{6_o8klHkqOOT6S!WaVO<ZN-Y7?!dB)7x!`fo0v
zH5{8Pd$t;@u8|^mtvO#kyf{`hlIV3N8uJ0fn)5R8u}NFH@*4L^sV0(o{j?M{G&9kh
zI;9#dOx$3irHR{3+-Tw^6StYT)x^yv#*9_B2<8puT(ey=HlbA5@Ob9&Dd3&vchKM_
z?q!&VyG-0|;vN%kPXX6;Dak^2j!nM8D9gqA-zO#BFO(K|ehMBk@vw=`%w?jriAPL4
zW8ztM+_<FXkD7SQ#N#H~n0U&>)68h%Nm^{2;+5!B%Ys-6C20`e|Nhp|Oj~*QzV=t<
zITO#DXm6r}iFRzeiI+{hV&X*+V3wEIUMYpbG$ymZDkgf3r3jy`rr7Hy-Z1f|Br)32
zL?^-h#;Ii@wtigF9dC(RW_icNyCyy|@iE&qHT9kdzb|I_d7S#dL>Ic&c-7U!hZK{(
zqlW9pCuK2vH<9mQ;uE?en?GKCW}>?&r?ws<#^(1FG0OKclWXoLj8}b4^fNKj#4Hp2
zO?+-*x``Pk2ACLVVw8!|CI*=pY+|V7WpV5gT5O0!`L1f1iQ)8iiH;P?5?MD&t{AVz
zm>6q<B~CFh&ct|@D>A%{euA`gq6u1(Jzg{+$uijl1HpnWnW+M%nP9J-FRA3WlpF0&
z%*AXIb4=JK920X*%rmjf#B#|p-^3yli%l$$C`(_+0Wv|c6!!ZP6H7V#C#Y5vlJ28U
zf)yrKnpkV1)Wio9)GEoinhlq7*KjcIDp(>|Gm({4(}d39a7GbFhhc&(;%M4ZUQf%!
zZ-QMDp2)8=ku%{7&eIzws(=H3f{Fx(GH_TK_G!%V-dHu8m>8t7n_~Ufo7f;_k;9R)
z$;4(8TTE=_Od<-mnb=M{bKW!Y1qa1MwZp_tP9RgzR@(TbiLXuU65+2nflN#Mf47Nm
zOnfIyM!QZ_Lno?l+1FC^fF{W^f?=<TpG^F0Vjmr&N%4N^kstU7Fu_XF0`%lr6V(9|
zznC~wuI*P72Wf=zYIES1Y5QH=k{$6!x#XX8p~<P06V+cPj+ppc^i%k#iIWo*OFULC
zd0hOTNheL5;;47<tb>0|{KwI1;{_W97GPnkg>4p2vv9hFhb^?WP{Be)3(CTo778sC
zSx8wZwvw&p$6m{D(ekE^nG!3xNtTP2{;w&%e@R=YWF;?U&JaqFvCw5=l2qA36$=kq
zc*sIk3$?5ak0UrXNma9OmW8t|oMWM>h3hR;w@|~vWfm^CP}9P>7A~@Iv4!)JT)6k&
z^aU19wkvpQdy3(F3#8R1DbfoqTuFtKRBd6_v2dw{OIYU@3R;Q)0maJlUSXlGg=;J{
zu+T^JTxsDd3s+mHXQ93n@rmSODswRqG_=sj!gUrJOA*%!-8)GwoRm0T6G^2c0ht8N
zEHt-p8?9uag@qd|++^Wq$;E2iD1fzMxJB~bTHZ8r%IbN$g*z<V!-iY9)8f8U+%35d
z?@k0L#&X$emetC_eHI?D{>NvSdVe|o-{zmQHCa{Q`Nnl8D{k%MQA>|lc+|pUEVous
zdkY;bJTAD6g(n0&Y2jH5&#_PoPg~ILENUzKXDqzFAj5N#Z<?(5{qOS@+F6*?M7<(1
zF9>~+?VX%_GTgF#<|S6Xpwi10?7!2iZZ3M&!fW&gNqr+zOqtg$ykTL2g^3nATIgh<
zuZ4aV-n8(Rh4(FdV4<^>+$`{((6=qTBjEYT$xQ+83a&i^oh8~uqU3*Sp{s=tEqp{5
z`YugQHwzz^rw-kga6Xaf^2zEm3*9aBu<%{6>Sdv~g`SeMUv!d5;XdVgk55+pEqpG~
z5f%=9ml?p(A<=;r1_>B!VTgqdQ&iy;MZoMGrl?`;>#1tEMDLoK=wujaVU&f@!W?5^
zoB;C23Roy&;{_X2)g%j(EiAXN!on0`&bBbe!r`fEs)cD5rdyc7u`^B0EZ4&d%qqvN
zrm5n;O6FRaXJI}E$X_L_)dC9(MPP~0MHY@tODeWlqDuuYwXjU0ZKo$mjIOk>ihXLq
zvB0wjS6e7$*Ne;=3k#;JwH#0?5gv0>QPzTP!Jt8=s}s|OBYaah7H5VTiKJ_Rsj-E;
z1<yi`BW{NBEd&-4B`LLfM>@0+(IG{C$c#kQOu_3cte4U^SlCo9ztO^<GgRSBwb{ZJ
zy1`6!%}n*^%tX(2D>>EkOAB9d+Noajg@qkfvb~vjr*OFH__c*ytdfO)tmH7;-BxmO
z28Yi#7QUscSomHB+Fus-SZF^}{b=DQ&H#cL-DhEcIsQQam)U=oEWcU!-NFIEzgYOy
zN|rtj(wBro%+Y#?_Po59;SXUF{3+mYd6Y5?M=bm;9O9$wI}67pN+rZ(auZ|sKhh^H
zoMKN|_>Z%kjcYjn+klO8ZJcN0G#jVesAS^|8#QO6f{m1oVjC50w5XRJKT{RjDB@Ft
ztC2I48SllDCCg^2%RbMP*tqGERGJw-PC&+nvT>%3%69UL-J7X)&Q!n7R8?$LwejqE
zMKx?(FiTalakh<f1fL~p$*gXp-@*(}Y9eJ3q&Lk{H6``QZwhMJIN!#lHZEf>8yDKR
z$i~Gs9-XB=y*T~O-op21DV}vRXqKvNW9ck)iH%w<iy7*O27=3NTw&vC8})3&v($#G
ziuf<1u8k{2;3^xx%~A}-b&5{SN`6$=nyq;Fa043+ZQN_4m5oL=uBAb2++gE68;xx=
zv(el}%bkVozE3xut(w?)Xtru93a=OX>TK0#c5+eL;@PU&)#^r?%f>A>Zl#qP72j;*
zm)Xg8JsV~xRy}Qwx=nK3L7g^kpQDl>;FUS*P8)aGxVt>uW8?EVNiGJ0`)u5A<7pdh
zZ9HJ(K^tvsJi+>i!bfZ@o}(VNlZ%{M3*~VE#E;r|%*Nw(vR>Wbc)_|kihwlOU$TFW
z%5}&*Y2zu;@b>tm_n%=W+IY^!^EOV+QPt+Es@J4yohW?aaLLDK6*ZfyUYV<2wDFRS
zOL$&^4W6yU?YMkj@Uo3pY`kjYH5=`1^tRE*Mh6?O+xWmn7kcBd^cyzbwv%%$I@;)D
z<4xLDj?uVX=vyMwSt_%6R{_P|vGFe5vQ`oEzGo)~YrJox!WjiskEOfX_|V2@HoDvR
zNOX3i2Odj*Y$t1g%+9tDd}8BM;V^GYp8O!%dWt;tP%UM8u`lE-j=uCy3fmZCqd$!=
z^`R=t46rfW#t0h&Z445HgK1<NL#0;CUZ#O`n542r#3Rc!kNQ7#7;9skjqx@nlsBK%
zpdDCHnKei!*_do&ijArCLkEo=OtUea&bg=XPa89A%(S7~Fl@}SG26!GxoV+}Ijr_y
zg_Gv01vch#0M=0b=c;*R&Q<d%CcBcB&P_aO5xvF65;65s8_R6`D*WX(R@l&NWNoap
zvC76;ky&kHjesVvpD}r7A@_*#I5L7p!!xDAC*a~_(L8lxcgfZBlxf4VvCYPI8@3I{
zM&8Cc8#}fYx;7#k^SFiEM$U$BBamn)sb3Wq>?|x`D#M<_f>@G>_irs+Z)1Z*H`^#2
znP{N4jgo7VP-bkjy>N@*tv0BN0$(s{<9i!>Z0xl0rH!v`?6SelK3|D8mQq&eZX4f}
z>!I>*CG|U@dkYJGlUnVyv5&U0aZn`p+xU?qOYjfnd4CpgfCFFhmMLdV2&ncqN&Vf%
zq5nUX0)GgHtvGDsFB?Z}4Ev{~nuD_({B7f?jbk>B+bD66c5uSRKeU6BjM<YMs%(*i
z)A;+JVo3i-*L86FJVnevK(QC+sneY#wSt3+lCg^j44bFs3n+4sa!@RkV$4FyV~7YU
zIXKfnWd~<C$T(0U_I0^hcb=*u3MpCD!Qpv|ddjjN?^SZPgYz9+z`XO-IS#5js3ExC
zd{xuIxl*O`957l-Fag7z^VNk8E^<)U!Ii?l*g<UvmpFKJe$t%h`JTnWWezTPaH$kW
z4*4y=%6v9o@$%~{Bo~>CUge;^gKHdI?O^3QnR=4M){UL78aP-sUo~>DalT?wLkDEi
zAlH`Lfw+m2JnWh|Xzrk?gX=jSFDp4PUoo)677lK3k}<eqq1xR{-RR&Z2RA!7eL<3X
zi-TJo+;v6CT@IEP72PKEP6sUokaN3$JA{6JYf+;^sgL)i?{;vHgL@sca`32w#~k$k
zE_I)S2OT`*;C=@Wu<h5Rta>S4(#@;7&sv}!cF@|vBP@Dprs)FJZh`8tK+Rd8wl7eR
zJ80uza7I1t;0Xs$in*S0a71cYd7)~$kaxKAZgj;`+B(Um#}~SnJm=tfYV&Z5hjz^3
z;2Rg;x_HsSOY}(xM;*NE;1vf`986`uIC#y$Ck{S!(B44@2VER=b?~|aZ(*`{&ZX%$
z9CUQh$-$cr9=^5c9ieXtZLvs^)7in>5+%NDk$Ts`dlG$LvV1_xk4rLAn6~8$=noxy
zOk-9q{zw}2i151!uCXoCVUhaGL3j44gK<uBAXpD4*_7MY0q<|^DYTc+-a`A(fV>@y
zx4Y8d4nB7<z`;-l!yF8BFv!7Ai_{QW(!r|Q#m*wNeUTcpNX=WM$S3`8ks8kWf0G*R
zV1$E_4n{e=jaOZ`ST$XoNb=%BW*p-rGdW)j@q(vie;1B-lKY+}ILUoX3=<tp5<FRG
z**#6u989N+I@si3hJ%?7Vh4E#vz+8S4a33CnW@<h<~W$k5*@6dpF5b(<}6l=9V`*B
zz`;TXiv-hp3`|`r(PeZ$NiAbitW0th&E-IIkQK2t4%Rv-75u+4Wq=uV$wi&SEX8zS
zIj~uc-37jbz=7kyb$GL<;u~krN!~%{oMf-{aN!Vy4$59hN0Pcg`24tgorCWetB!}#
zyyJMigAER^s#L@*XtRSY4t{rVh?eJBuMWPWu!C(5wmbO3!43ysJJ{v$0z|db!Iuuc
za(MrsV)U9N>W(Gq=_RW361AJ|?ciGneU~VPNlO%ER)_%c9vXZ}va#?t2YUtYbFkmR
z4-S5GaKOPY!u-j>&jOAuQIx-6X+jx(b#PGl#McV*?xl&9sIcc!HQ-^@`oHua4*sOe
zUC)bq)M1W6T4t#_;-E#H<VY4Wk2yHb`Ow9cE_lZ}w;P>s@Q;I&4o-1Gc6sJl=3fW@
zv8665x+rh~7pJ*6-Q`s>ipTcO`8fIEU7(V+tgEJF3YV!u7e#JzXm-j)t!1jovZPjT
zFH`-Nsp-p9iHly%RoX=*7iYN0xH#X%1um3}GhLkHqPoiqAXH@+Rb5mQTtz7VDKIeU
zEEi`Bhcg?ayzr}ri<&OZbFsc*F=cM)T68Ws&lND0(+)Yc+~kkO!aGwJy12;2<t{#~
zle*YNZ8!N5TSv;G@FgO4_cw*y1%0WD%UtjWDlvCrcX>0#ELTXm1XsDZn#HjdEmS=h
z^<9i|G1|p7E*iLK@1lc?hAtYpxW~o4ZZbBnrE(WHySUCpV;4<aG<DI!#SJd5chSs6
zo7(B-F7HfH+&g_}nMy5JJ1V53V;S;qba{D!x;9<JWxey3t6N;$>f$aJ{&K~)58N?+
zn~Rn%Zg+8qFz<BHb-8+^aq*btYT<JA{c`p1a&=#q%-t@yZ@l&j)rtjeD}0=VQnQQu
zUHo&R@BtSOyJ+p=K^G6Pk}FiUK`~dGxkvpG7mu<P>7vKnWc{2vJ91u~n!0;M^7i2g
z7f-r)&c*XCo?=bv7PWQp49&YjJ?$pz`8>6Td7pLh-ISyP?N=ynLGRKa-Oj~JE?#!=
z0v`dSbfLY4y_surYU~R2ii=lWyyo(RVRgZ@6pzthaS<zjM$zjo-f+>)#V0O0y6D9A
zvQJ&S>EbOH?};ilu(OMI+~m6?YJ1zo(G`kqA%54zg_BY>SE~2v#ybi>aM8t0E(K^d
zCH2C}r1X#2_4JdI$&Dlw_`YH?E&Mno^(mcydtq-EeO!FzVtM1@?k;+`=;`ttX4Pe-
z>Lq%(;yvhiX5dQ2w*Y-zeC}d^i+*nMQlP(3f@v$&Ko^5t40AEuP2N2Xb}_`oP{HhI
z20l7htyF6#roLFIm^8x0NbwLR(Iy90sxd6r#XJ}D>1nEX9F@D6EO@+&2?8bxWop$$
z1ycl1cQM0Fj<1>OVp@4>dQrj5ay;9`EEnW33p36s=g;Lx5zYd3ii@=_N?jDLQj1(H
z6|h(+IZFgE?=o7+#R?ZIU92fjUFBl6VAg@c6eDFIQ<JiE7lweWh*6vA!V>HX-=-%^
zlzEw}tT@j_u3X+15V#0kL@r`!FUw^pD>3h4T{)(P4K6mi*yQ5vxtVR8z65L*x<%+#
zPLit>Q@>yr2xk}j+Qpabuh%o=GkoRZYe^z5tfHE;QB{&GyUVkD$7;CP<6^J4D33Mc
zWhh-5seLZ?yST(d9S=Xa_|ZiL4;8)SJ~(>dsN2;~E`D}#z{M{ves%F5r(zEWUHnF`
zc5%$b?=B9}nOz+Jqwo)*1cy1Rb3*th@m@xW%jgjoe+wr6fmQ0bixafxgw#paYC?+O
z9|8AFNR2$Z==o<0PPzD3IB%^|!&j-rs}ys=OP1^NtJG;8NKY4<T9DbjO7;6O%_Xlw
z4@DkQ9*RAbc&O^3nwNZQkoKTFo}Z>FNtB#3JY)p_zDhC5aHd2nd#F+_(`vOk%fs0c
zz1YJ!0&00U-$Qi|H9XW5&bc1W^LS`jqGy=UB|;g!z{7<i^Y-YZ8W#!vQc`ORCUen}
z%%vVK^KiL`D?HryQ|f`e$<L~fE>E)~>U!Y4b&Wk->ES95wNk08Jv8vp&_g{Bv;Qrr
z@8M~cKJsJw8n*GP0^&v<_}lwhk7pmLm(DCYvRd6TB6Xd|!-dq3Gg3`F@MQ9)La!If
zXfqGZJ+$y}gNGZ1d6UO8d=!(~3MJ^iCOIeMRu8<o{TC0nd1&e3b`N*38Xo3&xYNU3
z9^UfMnRz|j<KZO_FMGJxLo2q+!~Gt3n<vlCnz=^(T)C)K^E7YpIr(+T10Ejq@Q{ax
zJ+$`l6kFus5f6{DyQ`<4pancUF1U@*(lv_w^+HdrQBMl<lC=r5t%qkM+RnqX0-p2m
zyoY{u)BHi(L}bdcQ}_iDcu{EUwdxfQuX<?jp#v?jR`Gbx*F2o~vBX}R{G8w~|3BBN
z*XdfN>J2Y>h%<B)&`Ic<LN6#)Z+m#hLw^sSdwAEwdmegt=;`5oTB%>=o?V%bSfBbu
zAFx~j#9cjn=p_#$V$zR2bn|%qU+NPNpVB6!YSQo|^)nCMCHirx8dR#t@4Yw0{Y$(1
zWqQ#iDi!ti(1(tCZc$%q_V@vBQga4&{Qx$~!*mZbJPcy>ZcKhYjrI_hs=*$Hco^zo
zm<JvnK7xa&jv6kQfSi#YMwLg&;a2J~9>z+A$9b6KVX}wu9wrE9BKvDmQd<UYf}JAF
zX+p`FD&X7wNh&2Drvua~n(6VgRyB)FTa;l~KMHd_%=56x!)6cjJuL8$^`LuL=wXqE
z<sMdeI8>_cJdi$DQ;R(;@%Z(nVpu9*nUuolN_vr|)_54FsZ}0Ud;G*t@jP%Y!}ikD
zD_5r1dLS+Jpa~#eqAA0JNy~VMJUrK+m|btttB)4h9vly@DEB=Cl+lzYG$*vI)nqbC
zd_+@wN2Oxgr+HD{OMVcp^RQmP1`itr@RuI>W$V&gIJi7~<KbHm+dORd@C7Gik6%Km
znpwp!wXra@lS5U`Z0CdQOAlXp_}arR54)vA7FsW>7_R&%bxSts{qH<{&l%psj~?1&
z)qt$p<0ZpzugpLDB-ehy_2+=$CpyvvMQ>~`<b|Z!tooUi$*Kb$j${?VuY3e}_|3!b
zoU(GbJcmOb{_v7(=xgQhr-#FwS94G~{KYID3UWXWf72xnr~eU3a8$rC568<nCj^|W
ztCQuNQy%^;$NzcYc~H!FS}xJUP*K3?LM!CBA6}7Jm_w0pQbN-?6boQdiGbU6RY|}Z
z<^1P#b!HBgbEuv}jU1}vP&Joy+}Sx)6L6N$lFCJoR!NN6M^ETEIZPB#Glz3Upe*$~
z!QHB;GO_b>xFClMbIE}-7Yil0NB|E@sV(3Vp>@hrFU|eWnKPXKf7+bBB8R#;T$#gF
zIlQ042RU4wL%kgC&fy-mI)`g=Xqn@mP1PWWhB>sz;f5R<<<NUYs%Z|_=WuNf*X7Wd
z?fs#oiAYkIn3NwQFqDC2lGI#iEJ-)!a7(%TO*z~w_$OUa{#L=a2`w@b4#Vv^+`(1|
z^DfdR|HEgNdvj=&!)rOT&*8ot?$6=*9NOjZKn@S)@OTbwB-cYZw9erX!4K!SjW*Hn
zXbuk<>M{1qwp6YEGQ?~e`A_8Vq)0xS!&5mtokQCkp2^`QBWc%Xl6SIDU+8W_J(uHF
zvHz*n3pu<j*<Tb&g)fPT2pC=w=BqheB=Q|{cs+-=a_E@DyO$Qdkwd2(Pk_(dU@CG*
z$z*s_QpxX}!`mY8j&R;1El(<wWR@;Dbj_hh4n1@DFo%zF_$-I+Ih35re9YoZ)x%WX
z#GUAGp9uI=Xw`Go95ZpkP9rk9sd}-mbLg8xKS}+{R3(<`L(i{PRLfG0EOp7HMg4Pp
zFP~)joc6KQ0HKTy&S40BBSe!BLvt9GOTJmSFhq|zso@;gIsB2sh#W@dFe;ba12Q*<
zc{z;EVGRB1uH?Vi*c`^?Fg}NFmg1ppGjo{0p&`*pIZPH1T709erU;%YbehoVLT3ow
zBQmpc*flb9^s<uKIo>v&48vPzBzs!s=dd7$wK<gLurP;3?42Bz<iI04lK)DUN*23*
zOfO~XpJ`r+$VJX&9Lt%a<s3}{RthC&m4MYk*W~z0QIV<Tkj-Iz4jXdNb1-tq=ddn^
z`3DMzR#9dSmQ=>hffp|41Uo`q_OgJ6c4A(p`XUqL5DJKd#zL9e+EzRameoG?bDIB8
zH|DS@hc9#ZDu>N9=`U%XF39s*d93IbTJLb-)*QCwusw$_BudU{NbeB5Qz)ZkeoedO
z@M{hSr84JypXThbJBM#__%?@sZz}#y=npx3pTi!(dvn;A!+yc$n+0Xz+)-foF^8Wx
zt&PIZIULC0mvR~EA(N7%YixDXYnk72_?^>Ew`9b1xJPZX)t@;W<|OPR<>N0_sa7%k
z<an_og8vpu=FuFE2|ixVIg!IZIh@SllyLql=l`2SYHFf~p@3=yQ{iboP8ZD;gpyNH
zK%r2LJ5PL+_&7IA{^X{8RPxcxM{^%%_~7lCXZbkWM@Fy`O6HjYDhsV5w5rf*LZ5r7
z;2b|$RJqW{MLv4nrm73A;iD!C@^PL-YYC+@P=Mil9~TIRn9PfP)b`QHPkx_Y;^Vhh
zGIe}h>L)MzE*Xf+d|dA1Y9IA{Tp_6xxKcn}p_C!#s&ZUkKm(!VUsKK}Zpd1R@U>Fb
zbwV2pZ6cHvXzJs7!5{Li=)QCdA2;||5@2b78-3j5<EW2gK5q7Li;tl`hWWVF$8A1d
z_VJ33mOgIx@uZKZeB9yVP9LqNrfzFee3y^AeLUjhQ6KmCxYx)1J|6J#;Rl&kKJN1|
zW^jV}$7ke!X|CHm=;I+D5Bq5CgR4)p(yz9HlPsHXJ&IBOAAF4Nv?F<8_k@qfeYEkD
zB^_!Q-X+5&qiw5GT>W_3Pu`|6Jny5ek7s;5>nBT0H66uOl;`}!6R49tNS*B@=>;Dz
z`gn=09?O>_YR;AvS6yE9@tTi!e7x(Uy^jt)I{A3h$LrGjw;su`jof+rhR-`(R7XEK
zX`f48FIP!^x4%UPYs^;|s<V%`*(fK${DJqLkN17__R+`32ee_6;*V%~YG99_EbL0-
z_{rKAPcqqmT`@s7AD{SGf3522<5M4>`RMMWhY!|}YlF4_&Tzqs#T89Wam|O7@8#pd
zsj1hUWQSp2)-zqiC8I$;`uXTDNuT=|;A0?1!IWhCF3(V9_F+!4VREpKAwJ5^ZCL84
zEsh%QV}y^DK34e{>0^|S#WWGUlzr!8p^rsA#`+lNW0sHEKF0f);A5(fX+9?UnB-%!
zk16z!Nh#ha%7T7&6pi0TFxQu+`^m!B3?DOD%K1fHWMjL?r~FUHGIM;c1FQLdauCp5
z_NmWBTE*_Z>E@!=71PH2f(1V67N)6i+R+TVyRNIs7R{FWSmtB7nDho$J>aSpVrr_T
z^KeV*Y9DKSZ1%B5TxG2f(}(4w)Q3iQotDb_(Ama<qAr~Z%vlBJ9M2d&7xxr_O_%c#
z_y~Qt>`GU8Qqa|%3uwBW51;+jFzG&?Yca=Fk&oENMsc&ek9AD-vB6IsYFz6hWy9Gh
z9-3jhio1?GG%nu6CRa?azPo6vk8M8o`Pk3d%*Pi#zVY!bM+faD3U~YX(#KamzV@-p
z2YrBT<Z$2$CqKjIbNLHb{YkYG)OFV-#`%se{a0p>5BBf(oJE%_ma><I^;CUNasBfL
zA3yr|!^fXKe)91%XA+JJPaW{_i;rJ@9Q2blSUxVPbHk0v=5zWUTk)W$e)n-m+QlB>
ziZTD)ANJAJQyh9nIBb1T^54m+p`Q9%D!{7xo;vR11ZR%`PX+kL$4Po-faU>C$tXKB
zK;;1c`uNX>`nj+mK*a!s0TAG{AhF@;0V)K^G(x<`Q>Wz=aZ!L&fJy<*2v96yB>~a_
zW-UzdM6#0=(%dC}aZa6Cm~N3%nIKu;Rso*NC5@s@C{QIp)c|z@TpA?hRtr!gK+OPW
z1vonZH!yRD&p83A2jF*YjCRi@o_TJ7^8#EL;GzJv0-PTt2d!KX@ESxlBgcPR$xx*j
z^<NyIc7RI)u)DeH`&N@;GP$}=&*3b0S%Av}Gz`!vz!d@N2B;UHet;_jTqVu9I)I&1
zR7<zvDm^=b*{=~hG!V)p+JP3P&94n`U4W)RG7K9_DwCQ>ls!ev4!vH~a!TP;(;~nP
z0ot$*Ckt;3a8rN>0z4St<^Z<{vsHjw1KbwiE;fyN0^A<pjsSOx&fU4BnH=M+(&3z{
z<}1>BXqKrdhI<2$&ymh+uqejycwc~zpDnmw^49kir^JT>4o3BOfQJLL4)92TM*}=2
zHGkAka&i6qbzcqe)k0r!a@ggoC!}JW1P=M?=>Tm53<@wfz%v1!4bUY(*8uz{`&@w6
z0<;hCe1LWV?+Ge=A;8N4UJ3AGfR_?yOY}3;3z7~k!><aT!<h!`5a7)KZv}Xr3KPqy
zjzKaaIt9s5@Ei`@(!9Q6x^sZH1H2pHy#U``Tl_+x-jO1xpTh44=pQJC4}xSFpWsZP
z9|p;jt4DyI0Y0Kxq*2`hd=lW(AbC5(`g|rm)jdE~syaPL-oj94uK>N-x-j`B<$)X0
zeFF4LO2IdQ>PsM#>gNFl1jz$*p!7mPs2YTc%W<9mu22mLFf_pQ05gK*gL>9vSb*VD
zhY<lr2N)Azq||Vf)PYkRyI^d9aRDZAAkf<>GgeIqFfo8RHT7|*ri6-3W}u@^31Eb3
zYJh2Cu>+whjQF}X37i&YN(b@X!~%}f0DAMH*#YJRm@EB0FTnhOFGdruW`)~NOYt4k
zpN-W*`l_oI1z60{6e*gT1yRW|8kQCdu#>~KS@DVhQGhtW$^ff4Jogo@7HS4q6JTwC
zQfX0Em`v3KR4q=nUFni!2xXELzz*PufEOSaz?CFQQr-^`NHi3IvRtGUI~Fi+KES#F
zn*wYOus(qQTk8HuEgYU{5vdIUHU=QLl$U5k>eEPV;V9dgS{tdYqHuJiwy_r?wO!~J
zLRsjS0lwlK7@}f`uLJA~@JoPSgXG4C-JHAXs-F@cz_;|n0N)4rLA33mSfm*C3E0aT
z#z~Z6zi=4+Q9xOgds%-DaDZMXdw^$h<}WTf7~oid6?N0U1^7L{p#XmbI1*st#YKMx
z*nM#k!CwIm3uaZ%jnyY-6p;D1$S``e92^gDg7ZJ!GC)BHgg6!8-dO!7wI%qs91v60
zX<?E|Kt93g68$(<g&~SUq(T&j*wdtVY^<VK?TuAQh;)cELS#b33sRLRb1?PDokf-N
z>Ycn&A<hg@Jw%NV!}6+fm^@jkh4><`s)VR2fSAm)LYy7q99A!{7~V8+*1CjWGepC6
zs#&u%F9UjHo%;2Y%y}Vdg?N3PI$yM15P~-{@QAq~>(rrJ)kPsL4pBSAB_Xa1aaD*q
z)UcuOa-o+BW%M!ucTd0-<(#@97-iDcA?k%_Kz@k&!n{UgZkvFzK$%9uxi-XgVZtPb
zp)5OT(-7B($?ZiYF`9*F9^$4DH;2j53N1ohba@FsogltJI5!I2ItI6dxHZHpAzr1<
z5G_Nz7~-W6C08d0klr5Rjxafog}3e887Al0-xVeYsofo7?K*W2yD3Dg5L?%&)*&7V
zad4fwFU0*+byM*JAs!6zkl=@fUVXB-!g|Fd(nmu)7UJ0u&xLqAM4J##i(xNZubv3;
zl;9^rFt9twWGKUJLp)Q?WD=RrOSD~imKOw+$-EpU2O4ZXk$fuh=GMaG@|O_pL+l8#
zGeie=Xoy827KeBvM8^;VLJSPiDa4y0K4N>>k2e&(6($$Q^IMY6A>Iy?^G4ng`ay_y
z1(5TefcHbRD8GxdONg$*{7@(llA>5Q_RFEdPuWxJ)q;cRPePEg6+Er<vk=|s(k1C0
zVR9!$&k(%?^bXNCL_fiOgtl3)`V076D23avSESw6t3h;t5aUBk2(hwjhOHjLh8!*&
z%7GAKc!&`p#)cTjDrGYV>#33J)yNQ|*msK+!)O6xLabY#M7tkN>UL<oN^elJZYgR%
zHpM$+Cx)0rgM^q8Vrq!lA?Adb7AAjnr-!&_L$Z^q$%bSQ%?L45__KsQElEtB8)BYt
zh&ydi%rc*LDCaDs9Yk_Th@~O)kWU#b<3iT$MO|tauL!Z6uClf8BKcp|zM#^|5UZre
zSBJc@E3-!ETJ~~5rP2^uh^z!gM@p>-cm+96a5cl^CPALhX@$vYqIL);gd4)6&(H!P
z)(hXK!waBH5F!-3YJ=LeLB-|#yny{1)P@inIo<u2*&-Z*O#(KTOa8q<Z4I$4#P)K|
z7o5sACe>&ulxMSlNiT|ULxivR2new&#BTOigrW%Fg!neZk0E}dXPzqjj;ekr<mc7j
zb9&@txT|Duh#x}mrki~s_6s1BQFaHf%OUtV#DNfh(e2Ykys7h-5Wj`^J;bkK|AS$2
zeJA^c^pH%d?S4%aeqHcK2wtN4<VN);-Ew}xVNMqtlP*3I;%`n7=c%J1j&Y(8{N<d?
zi4gy=fguVaoD9+EJoT^WCpaZh7EuNe;j{=9B2<iUdX#t(Lm4O&E|a8iDnfCD+7W*k
zB%8{315`<b9vf9ULZt|2M94%qFG8&dD#Do&YDCE;L6sv^iEvhgv#ETesv0Fms3w?T
z(MI)4pXAP<b0Soak{gAHa~sv3MVWmYRZS6QGtZ^+UCA~lTJ`)07YUz|7eu&F@Ue}_
zeM1)uE-Ru=gi9k_7ol;4%OY4_rf!5Q1zaBC3IY43C;Y1-Tpgi)glnQ?OKsUX81*6?
z?wXup(I7%Y8t2_iqbNBdg94Oil=xcVP=ITXe7-jk>otvVeS~Ha%1*G1Mx*)v!8b<W
zwONHRielUp;bta9xHZC}2#X`!7NKQ?4<dAlaC?M1B0Lx2`3QGLxGTa#5gumt2=_$b
zYkhuC`cuu~dn4Qz;r<A%So(zI2X>`Rs?D<n4@7t{0tGJKq^{qj2$<SB!Xv_bDoSp0
zc{D<s2v0<KEW+baa-?dR22$GpNs*-3lbaMdPe*9WicL&CBf`%LW^vp+K-w<C3lTa-
z$-(I_it<+@ycXf52ro<Y6`{<|T?gEXz+4|}Qtcyj5dP~C-iUZ@rTTF~YTzbS^JJP^
z7dl0FGs0UU@OFfE1au~6m16T}Z&L3@crU{Hl94*eWIgRoNqxFT_%Ooo2qPkV6yf6t
zeIxXX&@I9z(yrbSK8^5Mgs(TL9%8!gqK6t7$m|)Rm+=4Eq__pT+Gf>Yv+6_RPe{z(
zUxWuo7{Vq;7!Y9~J7Tk97$mva7Glz&QXI1k6FvbANIEjYs0h;|%pgC)7*RMS!q^Do
zB20`hN!mL;!UU-&O~;C{jqNrk-9h_L7KQI^POLFC!Zfi4`-_2QnHgbLgn1F>Q_p5K
zTMC^+=4O@MtR8!|V6J4Romt5RQaY{C$IL7g?_zOFA}o#gvlhQbSQcS<gg8Pz!U~S-
z2&Hrw4%i5rH>+;%W=K~@SR*>u3X_#&ACaGpphxf`<RTamOzM}WS)5L9NVB%KSe5d`
zWgg{<o*y<Re(OgFMV=N8q@JuBC8G$Hw<M-m7h!#bFF9RD*brf3gfAlOh_H#(5czEp
zwn&w>mKVfYtsR{xsX8&WJpw89>=Y9{C|PKe#5W@Bim*4rz6iTn+X&x9_?{ER#MBHk
zx&HWD5hh^RBX(o1Q#Fh0Z&5EiTd+UEkJKsM_k*;k@MQYu2s8^d9AN5%WH@kmvegG8
z{1)LKPS+8Bk8p_dPlUfXh_)nN^oP{{Pq8pPki{LLS8q|rqym3);@YB)ij`)FO^yry
zgixA`8cs#{mxGi)_2Xo}5IGG0i9kV|L?N_nf6?i2(#8rg=p+^6WFL{cMWteVur0ZC
znD;2{-=d0R)c-R@PC7=V7-z)D#ONR6^B5||nK9<wQd~Vo<rr0BoD*Zwd{m85Eyh_f
z&W`cY>6Lf{@jqJ>uPf!}sC*60GqS2}RW}|e<WXZaV$_UrZjAF{+#KVU7`0-YAEQZ(
zrZFyvabb*xF&f3VC{9jNtrO$Y7#GK=9pl95#h0)q?F$Hcw=ZDoWg>HRjCwIHk8wqe
zx-qVdQI>j@q!O2fvRw6P0pXWL8;CG<Qroq{zb-~&DTSP}vdU7gFVEG2{{qT2H!m-X
z!Z!%>Mxi&A3)~vxwiw+c+A_xNF`kL>Y>Yc%+!^D3c8w(672}?mf6$U9-z~JP&{i?-
zlW19G*pM>*gE3micqGO{F&-|LFKaa=AC2*Nj5aYI`#(uceImw_F`kmvQP0!mn%kC(
zl_`HN#`7^=i_u>A?bxR=UZ%Iicu_cI_AC>ACC01eddMkbb`Z`RF*?S0U2qwnb?X%4
zofz-Ncr(UZlGIt~+d|7UQ|!GM@5ksG<3r(pAa?HZf2>{B*pFg-{C_&Dtdvj0RX&aJ
zS&Z&6dPuZSjGi%im6cMi=YMNOZG9z)UeT}I#|Fe0NRL{FE7xIAjKS=$JRZnnNQ|K|
zzKF3S#;_Q}V=RcVkOO39s>}DO5%k8bYGjO2F-FH26Jtt@sl;0f$HtftV`7YPF~-Me
zD<?RSUv})$q&PW|X|hN%sVsGxL}$jBC184t8RZ$NVRno;!k;Hha^{K>>S1=$`Q_TU
z<!MojNz+oga2Cf{B4BBZWdfGRSR-IXjFkdb#b~!xtrpB9;6B)z`~g`TqcjGSv=~`Q
zB6HAI)wz0-YQ!*OSTXDv8{=e8qr+i-7uOaL$8ckKF>*0}Ta+*Z3dG5`06gu7G>pMO
zK65eTV{DMrbwbw*C7%L32cGhqVr-7FCB{}s+7>70!;@d8e7i8Iker<{zKn5w9{gO<
z`K|D)7~jX(6XW>i)Yma~3D_-^oNr=$TaLdI@DD2Ojj=CAojfkhV}FbvVpPbZVje%n
z_$kIQipBUj#(@}r#yA|~7gi?5sg0T6V;rO>$i1Jx35S@Mfwrkwe28`9ELv1V4sQ;n
zF!5iU!$qFaBedknLSE5(l>W9F%tFZ%G5(>R82@r)ZOojE!N62vX8$inK^{BC<Mcd`
z$7zC@L_N$)fif}bEX<=Qk7{|Gl}9R%;(SuuDtVOTk<R0cJTm2ZnWa)5%yQ1AjLIhk
zota1FJoZUL80}QCn3UNWs!FbP<8gK#=j3sI9v9@XYdoswQ8SNo^Qe)>mhs@_r!%%H
zYGako%cGX)XAM~dn@MdK=5cWzwWXkoq)^IVB9&w+Ey>bZ++}%Oo=4+6{LO_|<WV=D
z9Pxc^9#`gZRUQrV;3?l%3$uP6*9fSWhqX012E0KYJpG%1c}dA^Bm!ko((B5zG!gye
zG?gp_&GPtmt7@J{i+pl;;0<})lE<yY6v*SH;^b`Gn<c3X-<C(qJnqWl?mTYKqv_WL
zcjm!!mhKQr8R9a^jQ0q$m1MtHDCNn&uUz4Sc|4TIb9p?U$HRHFo|@qUw+%rakFfO9
zEAfH*sDQ_WJ}#7e{z%|s{fRuD%qLHLhNlEPokv>%&j@{1=x<vU1={8D0=q1at$Dmi
zJ$a1HV_Y6D=kZD&-SYS(k5}_}EswYI=$uFUJUXzy@_2*H`-^LBQ(sgr;#blg^LT2T
zda8S-=Qh=Go9dLun|Tm0uvTy9@lGCH^Y}22ck_5JkL<Q&&*b~8NgiET2X1{7Npc9d
zC`S%=Z*JM9PHa;j<?*q|jQAs2SNSxL&+_P-N54F}=g}jN-g)$47aYh`-L87(lP|NH
zY*)SVAf^2Do6`?%SJ$u0bl9%?(-rd=p2r9dfx{(y_dS5x&MqF9$Dlk0bMnt)Xr7Co
zxHL@u`;#6!mC%Y3_`$`ILN#W)8ktA+j)}miJVxg+Myj`NM2dmT@p(+hV^toj*_=H7
zA64%GEk)7158sEdyZ0_^4>?CABZ3J91EMIXV9qGYYrqU9#DD=zm@#4^2`GqxAR;P8
zK=16%?!?`hCFh)T`afOwz3=z?&goO<nVRZUU0pq~`tx#3EyuKSj4#K8a!f48B$}M3
zgJt!~#Lhi2Ihm74n#yMjJ3RG8Ii{3@fQhAjS&pyD@l83trAcf|Oy@}blbTtM8B*zS
zPkmhuQc7l*>n43yj_)~Y=OkCOPR=UFY_@QFY;HOD;nSQ-N-@UpY~<@Nw0|tee9oG3
z{9cYZM#)d*_@x}ba^CrBK{;;l)z3nig=rx>;_IKypYqk4zWSpaf0iR%j!ZfJD#zdD
z`a7t9*t>EpZJt=nVtw5(;w6HY`-+@@%TZ4ERVQhd^Ovp?0;cIJ;#N71`HD|s>jWxW
zj$Apm$ydHCfxzX&DaR3diE=)XMnL~ujt%9=m!nId3iJk?o@<jYc1}jrXE|1tV|BTH
z;?Xxy_uU>}T8?F$*X3A2BMj6^(H=`CW+GTamy(Gs3smE?k{<_ZZ8_F)E(D4x*I8{W
z$EI@ZEXS^LZ01^1j_n*HPK1N{`9`&MWn0-=DRZZk#+U}ps+QKss}u8TcRBWy<3KqM
zati0wBYCyA9M*xd_w#CBIrd8~VwN)}uNwAJhp3;tI?P-nu`I7XxuoVX4skgQ6SYi~
zn1G3diBc0)OjI=yGZ8njC$FlRV6cMHf~szUF%X!{TT6D#PBbg%!mlhS{t;GYB59(A
z34Ty_UqQ{{Yp;WPFXNgfQYJnwC?zygP{g%O)G^W0L@SnT@*zK(nrLR~V6F8{Fk>SV
zS4~Pa5ZX{Ezrw8&s>W<vsG10^8>;3e+J)-EP)&QXjPKN1nEK7y4ZY&6O`KrjL=$aH
z@Tn;`bl@+OkA=FmZ-lCA=VV)EG|}Ef2NMfF(C?v+KT`5lsQ2^jY~myn>sgeEE+$Sk
zal47ZCc2vFW}?4|0VZEY;8YXmnmEtIX(moL@mHvBKeIG5Bz1;~w>OrZX`(xO*EdcM
zDLH4E=wYI#iL*`Zg{;ZCQl@j{kOGWp+{?s8CN4H{zKPzZzV4zoW4eH2aUgb~i9P~|
z`B=LzC95WT?~C;lz@msRF>xvL?$h`(6Ah=95L|A8Tj*Y4;z|=?s7`-CU1j2G6SvMu
zoxM7Fjfrbb+{j@nmR(n=!0XwmQK<@L-e7_%-J(iv5}BJ#3^Z{IvrEfwGcm}-PSGs^
zn?X#Vv57mV4HNH}xYNX4CY~@c!o=MshL||((s=7`>K+sK(%81g9x-vBq#BXBpN14E
zzG8d8#Djt#l9GoB9xAj#dk+i0W27FHLRijY0v;DSoZ5&KnL{IW@>$6zO+01dX%o-z
z%A88>oXCHi7-?d(i5E>gYvMT*<UCKC5ukBcLOROCs~43Lykz2K6R%aCeT96%AHJhA
zGL4bL7bEq0rOX>N`$+K=t9wf-ogJyMCf=ptnfT4bdnU@-#b=uM#>D$3J}~j2iH|t?
zCdQi>XX;0DOrNnF6Q7t^JtOt0FbS4Kigfl|Ei=KyL=#_`m~LW{$!Kh;DJG_xm~7$;
z$;BVlnJ7Qa#F|KbDTPpt#AF_h6w8@mg7j;V|6q2iBICCvzBBRs1@T`wZQTT)jel=q
z79~y0G5O*NKbe?o>WB7BKXU$>m?wv|iuyr%*P^OA<G*JYnD~W$=6H(ypJ@r}%QhTK
z^%t=Ri;7kJPE+CDyVRbEKTQ0|nPuW{6Q+r@iA5$Bo1iKFD|Cs8f5bRxsASSgTbL*p
z8zvw#W5P0Fn|vdNtZ;HBc#5e)xPrPSJkAj*vmzr)t0<8ADR4N7Y8B^>iAe0NXkwX(
z<${+A{cC1w1)H}mv9j`T(Fb_pGd&$vQ`;tfEvk{n%a*l?uQjobu5W6JY1I4JXkwFz
zzG?JJV>25-ua!odG~e7|n~4T#G)!Z=i5(`6nmA_Sfm2E^-x!-cGPTphE)%;sbK58P
zm^di)?lrN`#D4nHYvbe}5U{DJh}n`uCJvi8!dbjjbz7>)uK>sC{L?7TFHNR_G_GB$
zGMAQC7f?lLRiV{{vK*d`r4dhqfGHuMRA^Zm&r9|iY1B-EA-Pg%)JmhaV3md;VB%86
zQ+3j)n@0UK>PaGp;C})Ypivr)(`cQ>326*JTGk|uW@()MMr!U-)ie!Kw#Qzony1ks
z4T6?J30kGGbeViBcqDn;N$pvx+AmXW(`c8*d1>@YqkS43(kK~+Q_{F{nd+Fvpk-=O
zt9Yk0s&q?sPUECBx(Mznl+2R_utwr;X+5|Er>6Cmqo=V|!Z{<2?rEGUcvwO^`LojK
zna0^^^ho20W$K+}iu4@8=ZY8)DK>4H`e~UuKaJjLT$IMeX<U#7KUe7MrjpCmg(BHU
zXkO&Eq)LYUky^Swv8-zRk~A(&<IObQO5?IL`ls<Y)s@D8G%io$hBR(W<F4lM*(c~f
z%dTL5)3}P7T&}K`0<TTu8Uf^dBcFy|Cx_PyJ!QFSwJlNmj}$M@Zc5|kGzO+|OB%PP
zac>&;QEzG7md2f|f`gmJVCG8W4oWUpPcB#8rY1<=S+4djS1nekQ&y<E(-@M*JtA|*
z3f=c7b6Uoludg%jPve0!hNbav8V{yXqe}9jG=@q`2LGxrgDHGDk}T(uG#*XkG4@do
zdFq)JYWfPr!$m996KRZ~HKy@G8c(M2TAMi6%^fS$Q)xV%*3VU*N#i*I#3R!>6!x=1
zdC0`D*nXYTQE60Psa{WGbQ&+F@e*4;Rkz{QG+q|W!&lPWx-mhpqE~VZE0U&CX4m?}
z8)<yIp{(Ibb>2$#b{g-b@ktt=rZF~+chh(;jrXbfmFkg|>U355!b<h&N>yV{>Vq`C
z-j({0c~>f?kJ5S{@NsG6SE`SNvhdH+_&kkiX?&T+u9d26l^UN0_W_@f#zc<$me`~;
zrU)ROoW>V|t1L|LaB3x=%qHDc`&Fv<Ds}ZLHG}nX9vw%^<CvMoH!N@|4lTvEX?(}Y
zl0(NFzE5LT8j~~lB7@JI*z7d^N#ox%=1|qS*xWRJNMoL09{!fbkCk|S8b1kMAoS--
z{x1T4O=DpthZ|M=F8B|je+vDp^6cLN771M}bV(Y2OapWA60w}-m%)EBd}FR7O{M9S
z(y-FV(%Lg<o<WZOA&vcM97w}S!%bsD8XME_((uy=s9sK-Rf^#aPhFN`;QB%uA<u4)
zty`rcI>|Ivrm>2?C5_itDW+F9$Ce3Rp2iC5T$sNK<$PJ4#=0~Z6pMIG8f#hOD#gUZ
z^{o2KMETMZ(oJ;!X>6g}7vnkml+yN{l80C6Z?pN0#5OJgY3$vT+`&nakL^xlCkLGd
zSuAP0T3xtW@f7)cC?f*<gmPaqG7qM4h*q6JSq6vGI6}XjK_a97Phmv0qm*2&j-_#&
zo-hMs5X+#?EKHhGQYC|G8C1`p!zrazGkA2Pz8@jwArl2im&irzi>uY$t&{xIEtx@$
z44P!nG=uw=mhpead0!@KW{}EoqX8Hh)XJbi1`RW)ok5)p>Sa(rgSs3qxe_Mes|4Z-
z(7k2}6Av4SKx2`l022lD;EqjPwI&s;NVUkIWd^-6I6s3{8MMye%nZ)T;DiiL%%DvM
zZ8P|IwOaB<ig!JH0@E&|Z{Ip*&?$rV>|h3)>y?ffS;Jke*7t~a&fuhszV<#XgD&iN
zQgsu0ve2$V$sE|B^c2CT3gsc0%yqitJws^sjJ|IrvquI!GdMegb23=ACN;UCnz}Z2
z@AA}_f2YpP;K4Uie%IvVZtA>@_Dcl4Gq@mw8#A~mg9|w#8C;*i4QyCGc2R~Ob>OrC
zrSxVOXV6!a)2~v8^FG6=YZI4dG`%c?{sM>x2)JD66+*Af;Ht{AR|~i%gKH}}*Jbq2
z^32Fjs%joeas#sMtJTdJ49wt`3~uE>&q=-Lq^hpbLE&1jQT^5^uY($t!EG7bp1~b!
zbR_c+*QcI4J9$Tj?+TMIX7JvQ<eeGZ#c{l%^zMw_4rW9KLo&Qzh~1OHy|kGO?$6+{
z3>L0Y4~Q5g9~JOm1`i1sn!zvu53_}pG8eTeWuh>Df&XBQB6vK5;gx5fsFY-lPfEQ{
z34J<)XEGQm_}L8BHc7sa!E<u>ywF9mXU(XL4qL~(qXm%32#POd@Nx#PWbi8cTQx~t
zy(3_Z(AP3}T>wwLA>d7+ZwY-{sJ})>4;Y)lyVQ(m`~3_)$>39t`~9g8XbHmHw?=)G
z!8jVQ3~|l1>cq8r#bn;kL|_6fEraobD}oqw{st4}kTR15kTXT}f0?B>^qHE$v<$w?
z;HwP$41x@%XD}m!AE&3>48G1_W(IRJ_#vaeUi&7aKT)W-75z4Y@8}}rp7eVGvpBew
zoH+v0Z(tsa;sm@s@pnewZ_dwPEQ1aS{z>Qpp+5`#Md*lWiG>;bmcj2C{E@-UYt<8L
z6?6TW!MqiTmTi+a+sVJkx07Tp$}ki^mSpfx26hHc2LEPIo<WxGop`M>Gq5sPw^pS^
zX$K~yG8slO)mImXslatwffujS0c18VN<6Smy}C}_P&YYwouURj(E|nY85HPMESzuY
z+vhNYrJTGOL>Uxm=ZExDz7IRcIboM)u!4QJ5Vx?B6Qp)2Ll5!Psti_Vu!g3U!LAH;
zvq>4O&*&c?whP^m!6rJN46ghM8->%4`vMD~%vNe%c3a+7$>9dyJ2KcQhhHX3Zj`fo
zGT58J@eE2V?8{((28ZbC*<TSmD3rT7vp}YS0*+*Gw6aW|Iwtt%b$UN&SX#1*g{qd`
zKe{4UH4D{+pTA#kKh4DLr`N7i2@8gWT9*EJsnkN5#ZRX+t|7FhP%JMYCuM;VCY5jq
zYFnsdp`(RP7V284XQ7pa))wkpXkej{g~k+kHMR3L)zCt-WeK%j4_OlnJ=d$I<XE_3
zy=r_>{6XP2x6s1Ep+O}>X6vP-rKRbUyUI?maH54a7TQ{PalI;Op19|w)P!{jzSrQJ
zsdnt(dez=S2T8xLS4_;<*}_Q{PO)&Rg)SCOw$Rl=Hw(MgD@KaoV+1}BZm>adN4&LT
zb!n$rINico7J67<+|hO$6d(MaVWGQ)ThA$FI+M-bpa^<eI^-#z;C0wtcD99cESx!m
z!8S|JwQ!z=>o2KcS^A04p1<_(mWP{__O@^V^)@bXp@pdjQoVY|`DVP21=5QwTr8lk
zP;&YSxWvMx0`A_RU!(W8Fu=m)RF{Rr7LHhY7v?K1yky~J3s+gV+5)%4y2jE@_*x5m
zIK~f6uVZ5@++g8G7G<IHcPXZuEZk+`ZVNYC7--=Z_Kte4JUd9h?G|pU<P6=Q1`D3N
zK~<D+hlM*WR2-6;8`KaB4_bK0!aWx5wQyf$-Ulr7y-eLNhnGn0n=e&E<?u0~!z?^(
z;Ss@)a?(i^+kem%5kJlWy-W?4v*fhcs76?L(!x^~p0@Cu@ShR-tk97{*(5f2YM5Y_
z=PkTo@ng3C_WeZxqb*#tQCBfg=qnapwGdi}ER3=6nuQ4#CQ`8*^*c>&`T9EbY2i%^
zZ&`TT!n+pUv+xe-M#VIiX3uN&rRvL#iu8TqkF)SG3t6f@u=sVH223AW`ab&ajp`E%
zpIW>Z(1)K@p8dSC97-Czh?UYNQO_JNZpz2;<v=fwO}8*Zz!dgTz%-#>3jInb#d;1-
zENz?o+QRo1W?7iY32R~JMs2;{T6){!?}QRe90W?vw(ygs!5j;7+1b1F&wW2wm}lWf
z3+c<$e4$<YE8@~knlkSK$?`J`pI)-AQ}R~}3oZO+;dcv`g{*}?Ed0rO4=4Y%@Rz0E
z2s8aHfD>eqg~fuGSoo*%EQ7!Ca~g_KpxlDVdgWAxGjY>@-wqSxEZ7zt3$BH0g#WdC
zCdXW!)K#Fjw-8t$KX_kzlDvf>o78ig6gQ4xlZtG-h20kRSXjo2oY+nd7FPiaD`<)q
zR$16!VIzC@A==JLt+x2u5wkx;qYnBXy|otBiGvzbKe@gVY@&~vmD+4!i*UwnQd=!-
zv#>)Bx6>UB(XNRF&iPO`>Fyzloc){BE)gK8S|h&Kg4ZR<r_g)WruMOUYg79z91w6&
z=phj%pCuf%aE$XVi+i&;ZlNTLle6fW1+u7;MZ+u_Wl=SYYFQ++sF6kWtX}dixmWR{
z-&ht4w<qF42@+Y93N8~$C#IR374KndW|7M32CFPueVD2%*brJvXl<c&gtp$SC{r(s
zKATnjEE))tdHJ@taTZOoI4O%RSv1XR2Y5JF$~}ylWzjr~w>PU6S)7o?iGo{ZF|tKz
zt1Mc}A<s_Rtl9`}pGAi(+6tyjI{_y(i+5zpH>=Ka*hwgJIhz$J#WrtNTWciMx+J$M
z=$6GPSzM9Dm06sc#c5f(?o>Z&V2e6ZBYt`oXJpYmi!-xmvqfE)#i;)LpbO_xEQ=ml
z^vvSyEV4m@me0v@P8PKPlde%;1c_c*J&%~qms}ONcNP~&;$L!9MIUy*OX4D-EdSyx
z`btH;wkRHQZMr0jOPRfOskJ+GSr+}XAYdAh#pQx;+@g4RRTfusK(n}Alsx{z`0mMx
zYqGdDi|exZWI+7-EN&5SLze&Z;-<>67?{P)!lw+|!$fdv7K4OYK^bpzd>CU?pTSvl
zUYp#1yzD<&klvBSomt!^`0gx*2p~T@rKE!1m&N^AypqMMSv-)%hzs<58MZ||n8ia`
z49#L#7SCkS@^QuVa2AhN;zwv*OA>r;{8$!`XEB@>lEsr*temGGCRfOh5aBiRboQqN
zKP~jC$JNLzp3UMpIUJS6XaUa)eL*NMq+iV9r7T{SLzck26-8APGA4`HvN)W@kt|-%
z;*Bi+%Hr=V-pt~yEWXQPbL}|O+gXgu;^Qpd$zrT9-xd0S(D$-<zf$srE$YK8KFZ?m
zDgVv;%K-IB7N2G@HOnss@tH_Y$YP>^&xMW``qLIQDU0VN<7DCFwx}<%n8NA2Rk0Z@
zg?`Dgn1bn9%*f)aELc9%%LCNcl7(X5WHD24Pm%w&l7Guq^?eqzvY4I4oGgB3-Yn*3
z@k16rW-&jDd6NFua%S&aSJ(SfWeE$Ya4GXw&buuB5dLpMe;3LUTGde>iwraVDNMF)
zQ5K7{Se3=<ES6;PPZqf>Y??~-l7F+v(86ihnOJ!iW|kM^u{D`knl@v__+*SS7gjIH
z(&JSxq0E`pOPnm+ES6_Mz9-brB48J`DhlMYC}dIOtjr?J^21;-3n|O&Z^Z`XVw9;U
zXPH#`Ri^|Guc}_MBCDU*trW=~)l1f7u{MisS#0NI&tiQRTcp7oB-f^_4(YQ|@IzK?
zN+!0MBbAAj#Y$MwR>7>D`045;JF?ivS(C-iEOyZgG5B*9d$QO|-%`DV%`1&*I#fEy
zEC;06gHj#KWb+P*B*Esb>L{Ia4k`!YV_XHYC=m>yHHB8mp{fANRLh}yC646~uf&NQ
zN(Gk*O;+-2<QNVm#f+q<%-6LTIkXXGtsH9SP)8(B6i(gBT=fLh7uq0)h5{Pp&^U)C
zl`<`JXj+Mz<<Ptmw-CVUT2*pd3phb2&z?SCH>s`E*iI-p?Q>xB$nTUx=N#TB;LQR~
z%ArdR>jP{EaB>b^bC_wP)B0pL3g^%}hYNBzHHXu3=#fLuoc<N-^qgJ``1K1v7&{}U
zKO5^V^h}{=32jwXRb5)v=tzq3@XyZasQBjyJy+;?LVM+Kz5t#rJy%_rL!TTru?sm|
zl*7e2e4fL2Ha>@bIozAWeK}l`!=*Xgn!}(RF3a)DbKH=_jXAKoL;q1{&q)o);qn}=
z$l=NyuFBz>9Inj)QR>UjaJ7K1KGTQS2`0Ec2c9C6^s!8g5n9gO9J?upt9vAGX0I9Y
zbX9DifLn4%Y}5NA+?K=bISkI>KWxm7Sodvez&2Iyp48175_eF0@22=)%$+>T-QR@X
zEp+fUH6(|71oPC0ZR-9U9>`&A4)5mhU=9!E_+S|?<S;acx3{S^+tlM6$5E+aIefcK
zJ)FZMIXs%fV>y&>Q%nrJz`wIu)bJdhpp|Y{BXW3}1C+y)a!Afo0(iMgJW}v;LZ78_
zgjpeQ!ge((r?;(qpjmQs4lm~LQVuWELUMRBhgWiXciJ&IyhfRv-n*7N(vrhev2pF|
zB5>w*#ZzxlpR@1|yTBc6Mfm#dikREozL&%MIee7ExSZYtf-S%Kh2#eu+3o5>p`*4d
z{_)rMSlOrB)yFyg<=7`Vd@A5Gq2%yeuL(I!%;Aq5{>))g4wG~EDu?Mge8FbqFpUk!
z@oRr%wyWhV*^XsiN%fEGttfVHSG9Mjm9<M}uwgm;lEbeYFREf&YE}++7gOKl{u_nw
z+Z?_V{JqdFJM?qx**VO~VQvmT<gjF2>L;P|a=5>7@<*XJ?NIY80R@;Ah|JGId3GVE
zhM64MzU=-TdMD-Ia`-*>|Lv;$R}O#Yup)<*IexH*#W}b+c+8u_KRL|X$$tv)Zw{k(
zsPY_4YI29_htgR)l)pozb4cw}8P2Ai%E}?j*|AeSuv1OisV(I5eKDJ}X<y6{$_-3?
zD*Q23%wcH`K@NGQovM&SC}8E!2_8m*3HI((%W_yw)2bK$v8ygHxl484rS96LR^_mo
zrn?}qF~=A_iKlm|H5}z#>Z@I9t(f{cq3fwe4%053mvrAQRcE)_lEYS7g3aF<uq}t}
z?1BwtV+Va^!_u8O%y>-^42?>5<*+-4Jvr>9XSNZuu`h@HIULR57_0j>bs&dBIXv~P
z{-f$3{jK~D#lyon9LX^lzUGr2XBEY=s<x&jw$2C}Rcy4|tttdatI1jNiQ_gBHfq?Y
zDa@(zmsY8qDifL%+H<$!|5=o0jRe)MR#)#<d^pC(iM4IivC+rIMYev4T-OHoqH1TO
zo{jo88rW!Pqq&V1HX7MzY@>;drZ$G{R(vqX9fY54l$^9%?=3QGw`yjie7D-VTeY;&
z%0_D&C)jA;w$#|8+V4?)_NbwI)X|?)C)yahN42prZI5azlz{In+S}-0<DWgMqm7eo
zbhWW+kLo0}vyGE%bfNP1s<x7P>{Z=t5T9YAyN#Rns#9#7YU4D)rwgSF`J?u#Go{#b
zZJcN0EE_#+^b~=!ZJcA{^S!D<l7IzP&|Wsqx6xZ_q%iAcITzTt(8lPQ3Ci=3^kN%*
zZT{|okv2XWs`}Y@hzeYlyu`+(!nw@GwKlG^(ci`Z;ao2CN}*TSn6p<gBhytju9m}V
z<P<qe_Nwb`++gEw;oK;6kd52ec)>Rd9Vqk`p|=WUUKV@1jlnkVs^t8~MzON4JA`?s
z4K{$n_4ero46*r33+}CyzfXYKPTeoyflB^^m1Pd48Q6H(#v?YKmR_^tkJ=bv<4HMu
z%*KRSc-+QtIeem0<~wn=V`qWsDVoYa?UpNc8-Lcub2i?i(b{<4#tSxHw(*LMQB=E)
z7j3*mO`54e(^8%G>8aX(Myk&~^^y}S`8@HejWIUfwDFdW*KFLfPnr7^ef8_MUg_Qt
z`piBxWuJQ6#yiyNetpx#II&}G9NeeWejPLRU5>kaR`-F;CkdEnV-h=VW1Nl8Xeumu
zYU*PfhbARn+7f$lNAeRJpR!>)l1y#(t6uxnr6bg!{c1dWy<bfb%33Dd_`+r^BYb6J
z3Ja+l@774Sf6RV0l~X|4MoiA^{p#uyN>}e!({0QU{?|gQ9nfdLvGJ{q?`(W;<8lvI
zc$j5lwvD8V8ZPG8m}}!I2Uk1z!Nxp#DjPd({Agpojej{kZNwAtpKSbYb5mL@u<^64
zLo@xt(iZEmIltQYq*HvMjo)b1+&qYna1SU(R{7J$Uy}E48w@SQEN2|h+fedec#&`x
z+gQR`#tG6fKHz|2K&RmclxZVvV<o3BeTxmthHJyKk)>NW5@XyR+eS{ZGpvV>0%U{V
zJn(HbV<P!B0y!1g$a4rv;swc7@!Wgh_(aI|OiVD&M$yJn8_R5vx!lGITR$9QAPxrk
zVc-sSfq1ozHJo1uQ`>B;wXx3DVX}TWpw_c_6R^R?Mp5$H2h=7Tn{8~dv6Z&Xja)m%
z8KH>bVi-b-{bk~dV3xU^T|1yPw#&wD8z(ww<6w`Cz4XQoYC70wV?P%H2XO}nXka!<
z9KgXLR&C>`jbk>ZE-PW!r6V@BUtV_bfKmt5aXKizqnwan?fd|e4XEPa<<oVno@x%N
zI@*%oD#X}p1~RJd=rAMg59%#J6AnoEQnJ)RnWMw1Q!?r3s5{Kdh%PAy%0VLsjU5<{
zzHY4J;DUpy7Uhl7+750zocz94oCVf(P|rbq2Mrt@NT;C#?u^OHJnn9J>p{hEG{j9D
zG<DEY+V<Q*#Rw|R96d(O9kg&5cT0VIP|ZH5?1SprcF9%_T01zw(ZP!to<&D!=@@V8
zpq+y=9h~K$y@L)8PH}LmgN|%f_fpn-vV%?zI<u)s9X9GDhkxZ@`#~Kyp5<_4yGob4
z30*0>ubw8j;URUwA$7WgGpMe)s=Fwy$|3zYl$WDD9Q`%gg%0{S=;`2W2j@6A*TMM?
zdOJAJ!R?1sFKH?Pb;xlaaYzSa;kd9R7sx3F6Vva19rSZ>iGzzByte>-rK!yF_91nt
zgUcLT;owSP_IEJA!R4&FT9Sc%m@XTqKX7F^9CQW?;${RKscRfu>tKR|i4LxFaJ_?P
z9X#jY23k=fey4-G9Ng&OCI>gO>N)B*w$|Y<|G34$t<?VnO$RwTrWTvcmdrY&{6lIm
zHQ-?Fb9!q7hL78RNZsL})?wA|u)5p95C;!Cc!Z;HBzBJ|@Bs(+(sCSqZO?#j_p^hC
z6@$ESLOtl<A?eXjT7>}0+;UjkCu@Av!DCX+GY%M`?r{fCI2gf3PQY*(1qT1&oPCly
zbnrBV59<K_9GBM*s|kk{BPr2@MsgknF&Y57{Jev=9lYb<1qY)XjCSy%gEz!NUUIY}
zdd0!3G(stS;bCnX?Bf^*uh9sptE}E*g7#Knv@G*YF=@)YC1)96XRL#F9em>8Q)&5o
zBJiPu_vMh1A5cFNb*QnA9E@}HZd@O8I6hSu9?=1gPCTM-b3T(MF#sKP__>4elBI6V
zI5j-U!DI(Z9V~P3g@Y*${&MiQgQ+aa!E6qegD<7784kX7@Rft<%(5@VNI@LIEme~<
z9em^9J5lMkG>jvPl&6@8zjrW;hjVpfm>xW$=1OS`9Q@2xz`;BRKRTE%{rX8VGQ1L}
z`71{hgOV{I(l2x)4*qcPCuNSPg%1C(!S9Za!o&i(S>abl^b)}FWh6Q(gj0!&#Uclb
zWe6NcZ`QEHLE1sa!9NcEbx<zGV@h?5KgK9ztdSw?ENNR-8nft#{-`GBz!ou1F-`<_
z%5~s5@Yw*W!i`0=Ne2Z7p@Z&6)#@WEc2tLQVl*%|iJtA+qpIlWxKFHTxq}t-y$<#}
zSm|JugUt@MI9N^Zw~?EXVI8N~q{JFAU8?T9AVrf~&xz?^qqK@0+{BE3X?HQ~sP_3=
z9c**3Tc*Z#7HGs7CT=GSJg9ci%#P}bw#xy>i|V42+#}6qIeQ)Ocaq6R)d2?w9hA6$
zi$e|$)93uD<J27y1=41YIXEg!V$3=QSUXPFx+BJIK{%{cTpdA6dw3UBT~u>X-9=28
zaiQEUoB|B4ML=5Wf-bkr1tYw%Ve~UKU8Hzz;9{-|<-&0B9~XDHsO6%zi>@xZx%`$G
zbzQV_(b`2l7xi5<b@kpQRNDNbs(}l7s)jB<_0itAv5O|IUK$uAkVC+oN9a|WxoGa{
zncKnzmr-6Gv~>0A!);t>lP9=1(baZx-ah@xqm7G=M^z^mZC$i;(VlcdqJxW$E-1`#
zq$U|_j>$c$I=eW@MHg3x7dzR-3uh?myzH2EIBdWvE>3lEDf`Q|xj5a$1ya!&F1ouo
z*Ts1*&UE!vO%E461)L?c!!gA;er(~{F3xfBcL)6xomRv^mrI7Hdbv2C4LcH}ujVwN
z^Y6`Cj%k%%=%SB{JCEt5?IM?vuF==U$YZLXi%Y261u<U9kbZPb%@X<kE(W-`!NrX(
zE_ZQ-i|brm@8U`qSIJ=Un&)a!>@_Z~b+PD}?i~%AbDz59TFHp<%Z@2VecX9W-Q@B=
zEWOs>=3=0WTU>3BRC{r%o}0J27)1W~#FI~^I8)dRmUg=oK3J@UoI73I<>D0=ue!L~
z#Sj;dyBO~3sB!m@atNds_e$IDb8)|9rz6z{$so*9`!E+nML*=Q-iKX0;^I*kkGVR=
zAZ>$T<#@GF^SGYlPq-Mt(p)^};z=6e#@JIXo_6&b(f+uiwN&gY`i!fu5Jn2^b6h>o
zv37NsH7+qPPrxV_FH%2?)M#lBd&gLUFS&SGn!&Y+En#58F)m(n@r8>iE?#%>hKtW#
zjCb*-%TH)9&c(;HPZ#gFc-O^yF2+h{X$F@~(ASM@!22#faPc9lcJ(4lSHpOxbjUX!
zSERgf;#yEOUh;{nz0;>+Y^<8z;4|uKksdgX&IH<F_tJ?X!_{q)OpVDdxLeS}$JJ}c
z)l?VLT+EbN_9Zp5H8I`A3>TYTR$sX~W+}DG@>%lNG7ubMa=vl#t&8uZv{^!_hwo`r
z14?He*S>K!M|nkp3*Qee=D9fTqQt|GF6O&f>0*_OpIj_(k#>=B`Hvocaq+v0KV(c9
z(2qm&tBZx4-8o&|Z?2BNN?ZEV#a}L#xcEo3{kMz7$JJt2uZ)X0Ufil_bxd=bm2Nt&
zXe$4@dUY;$VNyROM(YyewvIYxpe6lvU3f0CE^<<u%>iAdmrj=Eh+|<KMPEx|84ow5
z7zZ`)B6JbCD9GruNwl$|82?fiOss{vV&c-goW8<EuM%UhBr;dKSmR>5iybc3x>!fE
znSgDa0wu<J>YU}c*g)?wDz#B;j4k0%a=LNeZQ<-VO&j4>5tve9EG#kfwvR4$aR^-O
zl}@pi-Lx65Ceo69F7~@PDy}AdnmRzw@8U2WDU5?IMoI9}BQ7QkD!FjF4pQ0@1{-rs
z45qwH&t-UYm}ujnt%s_f4(X8aQ0k$Yr)N-g4>3>cKkjKe<V78E{U=jp9+Dm!duZaJ
zhKHISYI~^TA;nxC{sV)0J`=_ni(z=E<$;63WtaM7`|Enz<JI@jz{9U^qn-!y8KJkK
zhepiH@8`!SI0YDqm)aO1MKzTyEj@6Int5pMp@oNcVf+MxGlFK^%0p`p%y@!_6Fo3y
zChe1lERB!W+A%xxdg$e$gNKeDPVsQ6hcz%ddFU)Xr6j*XJjp{BX~W4Lx_ap5Y0ETX
zNe<JJ@d?h{(h;fCJe=;KhlidX&hSt^wWMVg<1CMViQ-Jj8>^y?gfp76>B=ewLmx9z
z!8zO@%)>bz&h_+l9aoCsRSb6gd=I@n9j*6b58MokZtVgOZ&oob^w7t{MV?;lc<Dk#
z@lKFx?CYVQhf6$M>S0<HV*qoBh9^!yf6)o`%-PLmfAkh&Po%E&aFvG%J|_CO+QT&-
zHhS3P;aU&Zd06P-HxJi)xWU6q9$xlvqlcS3+~eV14|^vjZuT(9)Auq1JuI$btgB+&
z;^9_LZ{t<1s*&jzzs<w#9tN}H9`5pRw~X~29`5w?BEGU)Df`G(k7LBU&LN(T49|s+
z<IDMbpNIQBjP&rV$8`Y@(h@v8<>4U@Lp?m^;c*YcXnr0Z@$jgpgB#Q5&;nT+Cnn8<
zSHHZ$8Sdc;4<n?;*B9v^nI~;eky3_!@@Wt2rYDAq2Y$u_BggWBXXH5boQLN<jP~#%
zjpvC}gQ~_09!7cK!pfF&y(9hKg2-j@6%VgclO85|7~|nJ5AS>Uz{Bev-th3Ao=34a
zJ-p@N9S>urF`WKyd-|G<14p0CW#wH@UkvcJns-k$;7(PIE2<hFdico0XC9uZYK-&n
zu?H^73_AJ=HGd%0u&w&k(-%V2BrR}ARf8t+xrgzd4*g0qqXs5<m`p2@Hhke>iia5<
zzNTW^B|oidOr@#Nl0AGSGj2LZ`C~;t%=CR#ZL74InI693a~=<~rG?*m_|C)kV$Xay
z^KVsyt>uN#vZ@9zkmiV4G8F1zDy?Sx2P%#JUnc1S4?laD@8KsJa5dwOY6i!P7sJ0$
z+qu|?YR0eB;psX~GV5i~(cdMP>%sHzhlf8o^jrlz{Nv$Y(c#}7|8d4*4@*4oGM-E4
zyVVSuH!s`DJ?wj^B;&#IU`kUtWNCV;YR2WOV_D(kJlK+vef+JOK>=Q5I<zafd-Xj8
zoR5k4dRmu<f`=6zR(c3MMC8cRn4*-k%)@dz7Qx+iYCpEFn!($1CStC_tLR&*8*4n2
zR5w=B8CExVImc6LX?~uL*2^i+#<Kw%q+eW%H*=sl`+WW!jjbNGad!A<=3~3ZzqX-#
z7(RA-*yZuRY?S!mE_=JB<p-&MPEU5<!+yG;vXTQF`hBH*2E~fXs_7f^KGlsw9uCt;
zJRIdLW7uc0D_*v7+OlDsgB&~fsN$p4N12bRKC1bM`PvDyoz;C@U)^}Hx<RMM0^>ds
zzP@^Sr@FQTZd#i3QNu?~Uz-`{3vUp3ZNO`6=1uwF1qpBNYWe!&s;-ZEK5F~g^E1`)
zwR50JbAhYxqoJ=o9{CM?@L>+G^BehS>}#8E;)A2cy9|yvr+;%FEqt8iqlb@{K3e%W
z$wwC-t$m!p!hLj*Do&IxwDZx%M_XTS)%QzvgNgm6_0j|IvZ14oPCh#OSXEtH1-nc)
z%Na_qa<Y%EKL1<S_a@zZ?5l2^$_BHYG2;{|`Kp+4RnPe8J|@TX^dTM{GrCLF9P~4N
z{3ZOJKF;<rz{ll2&hZ)959j&l<zs!!xarh*S=^xB=+)1sVtF;|qqmO>DAP;tQ%QxB
zlHW(pUgYCq0eyw`6MBizONCx0w7*d1qQkku$CbXe;fl+it9)GJ<66=D)xKVFIF5Yq
za-Fa5q}Yq*ac!|T`nbu*C?BJJ-0WkZk4Jnw>f;t4x3cd(?(p?B{2(8<`xq?vHlaP^
z#$f3YBl*9+GI6IU>RuoB`MAr+-9Co+`cVlhx`!sWuaubP$|1g=*?s+_bSOuBIvy0U
zhkWfNr~$^irsOam5BuPgLmi#FU!0uBd_3-hhV;CT;Xa=5F;cq5s=Z4}M)-Kr$5XVu
zlK9g;p5YKkcxP<Yn;r0J1I>&rc~%6T6ME=*^@6Wm2lYQXZoKH@B_Hqkc;Cm%K3?(h
z8co{At3Jl~n7J;-n`>Gu3*oIC*P}OR!#>{eF_t}DsAmMvz9mX{+Xv^%Cvk(Fy=kHD
z>AS+GVSnJ`L)xd0@oa;Sabokdx{rN);^Q-Rc_Fy6a~?g#OHS#<PjSPJ8@#EZ7~Kw+
z6%O$vnxc=s0r~~_!p9UJ@c@YcQ+<Y6fak;a@uiQiIPN}vU^k@!GkqOMiiOPZ@wLoi
zcIVjCl5c!`>*G5L$KsqRv)K$EvwZwhQ!9;8-^u5!nIm(DmNw7Fk3RmS*^4IU`}o<%
zFEXY-`B=blSruC!H+b><tB-{o?u0=l{O03#UtbLW;iDvBG)?HKbW*|~=c<J9w~s|W
z(mpa$&SKW?<6ru~xoQb5Het{h%6;(S-1M=dq?GgJn}k7&Vyu44N7hG<&P2M&9S1xq
zoK1CnxGdzMk{u#UL!yBNoF+cD&<Xn}_y~Qh_OZt28XAjyEc3CP75P|7pTIED+hf;G
zNHi-oR`}d@Q#&;FWtCLKTDaJqT58bP*7{f{C2XYHkEr!NHi!%{J!Jn<-B~JslaI~9
z=OapTw$b_fIO5}|Si%lEAL;&1AG>_)7Rfz6_R?&&>)7&~BYgJ4xlGgA@8f`vgFX&1
zi?1IXu|VEhauRWOX^p>39P@FUem>B*jl)Wfl0fUfN&p1lA)f<~KDzk7Pj#vVs2(5|
z=qK&Gh<&Y8_pUTRS%9tqx&_=a2Q>mT4bUt=%>bzY^#ko3Q~)F3<^{T8*ViqjHfjZ^
z9iUEtx`BSQQZE2+<+%FOAx|qccn!lU8U$z<pizKdO7&XMgrDLZNHwNOb0d;cgO93i
zo`B{7S_FDsI4MBOKs&b+1GEXyDnRQ%ztlJ((2Li)QiH1-BmcJzP^HXhAE1Nq+Xeb<
z4z00cfKGw7rOpAGml?bop)xl;ks2}~!8Y?wr%Ryc>B&@7nI5TA0-PG4XMnQ<{ZH0u
z)LWqUVqgO(d<Jz=E!jQ5nbL-{0`v%QOPN*|XD*$?z=?@-0-PJ*`~bZJ{g~*}Pt<t<
zdIfr`4nF7`US{yA+6C-dfQ#9%L#j`Jivqk^W^kku)Ads+-o&vbbYJ`z<B|ZE26#Wf
z2LUb%&_BTN08a!M5a99vcLumCz!d?m4EPrYt`BfkfU9ND=`PrwYXWeiVcw=)8)!o!
z=c_W~h5$E;ZU+arDZtGEZVfOfz`y`!)Y4VoB06O3{UxFka&8mO?SY=)T>5#3P9{g^
zKf=Ew&^xVgi1}pc?g01GHUiy|Ap!0QaBqNBWyXChydr{nnb9yCdyuW|8-FOk&;Y#Z
zVBTRef{z4vRL1LJDU$~C7;UL${Bfc2q(Q8ogeQ#=9G3v20*nsuRDh=gJQv{k0M7&%
zDXkikG<Z46%az_q<JkaPYHIKT%^+@YuNjUeX9Ugf#Q-nS@&mjfO?sJSCXF!xUI`f0
zO1&zSfc^cqYy7o9yXc8Y?csUz^=5##0=!Kn2m1DnhBP+7y8+${bnxDvlZKNt>WxpV
zPa3Hj#)&nI4+DG@;O_v70*nh7D+WIVm`6L227f^#3Giuv&jNfNfEzSS2rx0gU_NmQ
z^kZ8(J<>^nC$nL4NDe3d)Bw{0d=uc?0AB|9D!>deY;EKLIDFg^h@O*o%3lYVNxQ9~
zt(`8BPnf&&3OT@R))?UX0J8$no;goB(6j*>KVQ~xhR&4{VO_k6{*fh2NGy~&GC#mi
z0Tu-KnKN3{`zr@)kzVmRe0+U2xQ3qizXkYRa{UqDPXW9<V<CSDCg8JNmb^GXE`S|i
zNq~O>eP{YF>lKqO7cIS1!!W6q8pc00j7$Jam|3CRTZEn3R>N=txB<cdQ2;N1&ruVD
zH)`tZF($SxFC2n`fQ~iwdQ=RsoTeLKDYLYXe>6@llU`p`)8Mt%$^featO@i!CaXBm
zBT~G@pa-V9)&^KdJ=fG)eYU1vo;XuBavbv*p9kZjZ(_d=#Wr&w1Z)kkEx>j<Px^s8
z`sT4Sz^(x8@@SvOZf#Czm`9^L_6FD&pjsZ)^VlzW4+l6B;DF$RLJtW&zpR8+FdYq0
zk_YlQ7T`F2QCUfENjz0W8dFs$56S0QrdS^FJd%0TkW+~~$|_|_^SXqJk||#^k5nGD
z@~ABWDi0&CKZ*QbX~cE%sGCQ<JnH}d^HQdws0Nk%#(6Z!;{++Hsn8ac^)?gGTqId<
z%SwJL0j={Ov!Yce3a5?GwnAA;hdesw(L)Y9<<U8hGX$TMN0&TK$>UTxJUNf9d3396
zPeltWN<K{lP8V9yyNa{j^Efk)v;GgiLcV7nXXkN_@Gr>Y!aUB+<2*U+CG`CN)8^il
zxKG6?>B~ieE9&Z($0d2(o5y{5T$;yadEAo6t$Fm%V?Z9)=5d_}UoP~jJg%tBd!-CV
zg`Tg@Gk%mdyowfHUnz4_9ye6t8!P*Mvv3Ah@|k6j;5+iTQ^0L`+%8~n9{&-*S}IB=
z;JDwF$KApoQrSB)?-35g?$6_aJYLM>r92+Y<DooWkW)kR7?#J=f*;P~kvtyHV|X5q
z3g<DQ6<w&Pi}(rY<C9X$2ob0_^;BhFp2=gR@Shd>ywK+=TU8-EN|-Edv;cPD<vd==
zV{9Jp3g^{4UeDtV!DFPx*D57h!kdEM&f_fsEQck$BMl(n;d^<!FQ-1q<AXdt%;Tdx
z##OekLWW`=SGMYZoKGd!XO)r@@|Z|VDB!*Vew?M3;7NH*&f|+brf~Wc(6oT5c}&a0
z&BM#%%RIiyV{RTl<S{*u8F|dkV-Ag{pK5wq^3$5e*F3va&CKJQJig82J2@oh`#k>q
zL9gt@v+|f#)A;oqwWFr7vUfa@GTNq$d3pSp$NW5g$|Ke(S-!OFhLkbrywU|6(3G(#
zkHvZXoX0OT4}Kz*GJeftVIIHb@p~SB<?%P$mNNceEdq!s#zeqW!Q|P+ucemck<KHN
z$3J=eE1YubdAvSl$|1qrdT}d{EOnKKoyWG48XqhxVIufgD1nm)F`0fI0sUtl2lB}0
zQOILs9-HzA^WgTE)t+Sl0YrK1dp}VWO0ZPGu3Jl%=dmJ>m3gdU%TvaBp{w&)o5#95
z*5tAD(G>ZlO#eG1XM;$Rvzf+251+@bJhrl_d2G*P2a8P^QP0v{DWjn>Ix3^ZyhNf#
zSs!KWW~=D=*?>H5RK~r^ct#n0JCyyP4E~jtQO3(N5(o1*lt*a+Wd$70<47J=3#eAW
zQF^n3CCBnOp2tNms}0H+?k7tM7-$%88Cu~eph^L~4TFh?)eDFf5HBE6z@O`r(+y*E
z&*ZO$;bjt?!o<ycW3FK&3#d^*tpaKnP_uwk0jdC_fDML`^AjbtjNjf*@RQ40>&xoa
zG8$GZt;6zb8FdS&SHS4iscUN)yxy*Ni@L9tQNMr&1vD(6Q30RVG8z}Osc>KBxwQ-)
zGPXdo0-6_aNdcD@(4v5r1zb?Tg#~!Ej8+A7F5u1{@zw?OT3U8O0VfvFMlcUM7SOhU
zc5>LhfDQuwEsgUOQw8WG%;tZlPAZ^F0VfyGYI%&QdjVYw=q87!6mYtLQwun)fGw<d
zd91Xyre_Ghli)Ke^PW{ek4oILfU^akBlKLM=Lzj4l!cs6<p};{REmfEVEg+ARG$KV
zz9$v@lDepXiwhv=E0myLfqx2X&SeGkFJM3cmlwcqyctZ7p)G#CPF+!8<Wl3h0<JIM
z$^r)WEM>Z?fU5;xQ^~nj!0ok-8w$9wfD?8nZY$uX0v@kzFuhjWxLNSP0&XebR!QU!
zDj;7-RLJ~MNZigsB=3I;xLd#-91#I`74Y<zx>%-z9n}zF-XnCWFz+wmfr7qRdb)rI
z3*Z(fm-bPE-Nc3&c&LD(1q|ca0v;(~gjmI+LTMh47x3aIiO1;WYHN!fUceJ_YJP2_
zTsTk4;Zs7l3FnytMi%fa+g7y()5`*$6Z*W+7le+YeF~t=iv_$SnBh_@a=jvluL>O_
z^fjTc3#IT|1-xCrGZ98cc&C7|wCWIzL%dtSdj-rYV0J-2c%jFBzkm;DPOD=4C+Nch
zxJ~Ux1&k{&d?G$6;A;*#U;Y;GnSg0RKNmW&fbjw-FoDIEmJl#aDqwN}UlcG!&Q29t
zah8<nOW}Mabh=RHno+>a$`WQ4@Qv`ltvvgkfbR=@9HeWRLqJuxNN^GVp@4Y>tSn#^
z*PsIC7f@b+S-?*PEGXdb0u~i?jK`k~c%fq{gJZmXzWSwrUu8rV7VsMtb-wzY9;Sf5
z3iv|~$>C@+5may%tVp%oRkoPrpB?YwC6*NMPXYhZHPtZ|XJU=(7~Sd^X&Qe4Rsq=p
zmX(yEi`tY=+`1{5E5I&bT`^VnbLB|Ag#y9?T*01DpL42!A$5!^x+e3LfQR%y?Z>2|
z0*VDJEntjrR<L|(xQ;ft<&vFZJoS4WV|4***s2hvA=a|e0=5;fo%V2VYJGv<_a@&d
zPj2AA9f>h*EMQXso8@pz0b3=JUsl&(BG^&DPWt3fd%|4>>@MIq4Ze1A59bIcMfK!i
zq5BFrP{2XK`-Q$W2Z!j##)E)jOaw=`1XP|q_J7Wngt|-!eQ>VERYSe?DpNH9)rH1{
z#zWlkpEysIg-C{I5Tap-8X@w1)MIsxF?EfaAyOe!i1u}jD_WJ-31Nh|w60N0dQn>_
z4{xt))D1y_dP3_9<sZJ}F#18KQ<L<5!yZ;mLNpEWONd`XGz-x@#8V-j4$&e+%MfRU
z=n<k-h}I!Ggy<N8vC$Za<Ae~wv9fRK8YhMzZ4;uc)Jxn>IPHZ}tDQo04#7WS_$SEF
z)}<$fI5p(YKFKa2czCi<g03OD2|h(=v0WLN6gy3XPZxTI(C$Ld6dKkwdWJYV#APA+
zhd74~uBTr#@LrqX+z{u5=q1eaLtHF?{N5oh2yvkt_6c#3fZ_EFo*E~#uW<Say@a|A
zF<1Cww<jsXzbzi^r?_+UfDo5ct0AroaaD*rL);bO>QD#exGBWVA+8a8Eoq4BL);+a
zd!x`DtMs=hOX}(Oj3fIe2Zp#M#BCvN53$Wiu>_`DLkyA<h&R?VNC#8N!uj|IT?^A4
za#*9jaoH8|yQ#VmCpRh?65^f^_lCGH!~-E73~|4R@f5RAnDmt$8b2ibPQn=$;^7dF
zgm^T>@DNXgcudYdE|kL8)i<gSQv@TV3j|NfsnXSP;sw2u&x9Bm;@J?-g&0=fV1V~3
z?<?+U#YlH_zt4wwA;hQ<qeFZj;z+ajiy>YL@o9+9LcAQ}l@M=*cstaO%U<R93LqX6
z;x)mqvw8FMYZuZtg>&nNTKFBoACL+d%T++Ydm-KzaKc|;q9oHtAwCu+@i-PJB@lnY
zY4v@I;G}u#^AKN!m>yz$hzTJkiu@NLri7Rzm@<<?kiJ#lV3w&Nz7+nn%98)6Z#0$~
zDKjI)OyPfBnU`6<sg(RS#CL*O`#0aEW`&q7%9#`5CjoOq{2*YS(D_1t4AJL0MIAo$
zz1Aet0^$E0f~R=6FvM>meh=|SsMo$8PK>LGQAhn5GOR96jL;^+-ys%-*cW1dh{Yk6
zgjg10d5C{P{2L-0BF9nKTgG1<54Vb!hcH7NKPkzS4w0$EmVg8GjrkYGZMrG(17l7t
zbwZH3Av^&-J%)gm4GbopVtCI&$XG^*LKNAmnW?2h7k!{(ev<0=pCML;*b`!Jh*fOB
zdx=dUzcx>;4zY&*Kg8=tVoWQWsC6OMhuBcb*+_rVz^FJ&usOt*5L-F9LhR<;Z(wW>
zu|oiVG}|d{CUci?1~xFBY+&&4Q=xMk7(oMLYXf82*`)_)`SiCDYDG8{;&6y~ghYfR
zA*wbsO54P_rW_4%j5-NX5}{gz>JfheMT>?8QxySc39cHU0+7apPYx4>>)e~_-Xd8V
zp)5i&V%T2PjPxI)S2r}cLm#8A4Q^=gFcm=wpLomdCAFC`LZb+cBh-!XdP9T%WiSX^
zy-2Ta^@TPN`g=p8VFXh08CksvYmdO~`I^dEM&)W2p?RdkbDjL9&f79Vs|c+l{5+sE
z-pFXx$QZu2?1TuUJli%xy9n1sxIRMr2puByjnFSb#|WJwbdMNg9}KVEIYPGxr$jg@
zLa#;!Qx^dzN9ZbG%bFTwo*Ln<nTfw<Bu<NPdn03XBZK(#2xmkfxc;^h(hnOMXE95J
z-x?V`A|3a;r_i$_oD<<(!9$LhofqM|Mh4G5y)?nY^CR?*a6yC**Ca2D&?myOMg}nx
zd%<*3go`7@8*8<+Xlz^(G0-utjBr&11`oW9V`0QcH#YJelKmqLh(N#(J}>7bX#27&
zgp#wWWzzf<S4WuJ*f^_`x`w0NNnI;+X=CGt2scK!HNv0>H$}KP!oUc(MA+TfV9dRE
z6NAylSUb)tJ>#@w(<a7kR6>No92e3Jv370Z{LqCz&t5yD<c<h;Qdbd9ZlW7}cZ4A{
z1~Qu%5AToP6M^(Tq4%==TT6Jzbbo{ggh~8hgoi5e&<MjS@xu`wiSVc#Uf;xEqVVG!
z?g&rNz&eyZ8R4l2BP8wL8{;kB)55O^#=^!BJR9M;2%i-3X%Wvyc!AoEu$-foiH(Zz
zVuY6>jOK_mh%+_lT>5f^S0YS{@MVNoBaDeKCBoDQuhEjpIi++mjml2E5n*hEcLl#G
z^sNXB2A8}Y!TUGyj!+)H7vX)H0UHqE1CDrvk0Oi{^X}3<{(KXI*8ac=YL-fVA=>*i
z!e<oVwvQ2hY+@{GVx*qX12LYX+{Bm=VIt>v6JrtwtEoZIu&HrQQ{%xsu`eQ!^4DzM
z51#jNV%D)_{YL7m2-72cOY>vZc5DV4(<*6CPJA6<W(59zJ|Ug_CITtbr9YN_A8F4v
zE5dB5w5h?pR_D-uBK#YnJi-qV=0#XYYiHXc%#ZL(gkK~4B;EPvw)n~Q;tK@-ER@Y|
zGCIy(U<k%GHKsQ;evj}+gg-fhB7Q)XSklx8n;K<)k^#H+HZ}f^kZNWuim+I+FR3V2
z=<q2iCYEE;8&J0q{0Nx{Rs<)48=<5@JWKD<%($SLk&`UkYQc{FyWzr}%?ySqWA^8p
z838pJp%5Wt#&xmPC2IHi$#Kn$h+1l9gw2c|>&l8!!cw7&n`x_F5n&}AS`kf(SQTM4
zwO2%0k)gKr8poGD@gmknSQlY^gbi#@5h!9K=WOrzwg}q=Y!bRz=oX<{+2!U2Wp>En
zo(Ov*>=e99=x(8{MP^@w??1+2))--bgae#S->B1?8wa@rM0i|eSXBJ4)X@mXA{>{z
zJZ$?O-e|6SK}<@SDn;F}n9!<1s|l?x^b0BK^e%}+5y#Hs54^D^AE5rLDp>?0$<!{Q
zMiFn@iJC%FMW`Z-A}>*5wS>b{#7qQSCh8PHTDORL0*LDu(V!AHETT~*p4Z%HT12xV
z`W10WQIF1zcA|L^EsAJa)UlY_716$kR)Sj#CG!LUCkkyNw5?F%sj?15{UK{lp&g6p
zR7B?@PAcN8B08)tYxhk_mm<0qaY_*<7xnt`=-RTbMUWDoTEuBZ%z`>YPMu!FmDALa
zY1)`6(7lK=i}<&>K~4p;hm^TwN{S_)UBo#>oLj_sMO-NSUPZn6EK_d*=S!J9yg<$p
zJi7#ainyqVi-pryD8<NUVx^ZBaaj?=ig=g`Uzg0qll_YrP{id$Tv5ceMO?=ga`=k4
zx`=CvSl`^>%?`t)tXp1IYi5eOwLaQA`PUS6eGxYlF{p^!invjlaWmE1!njFrl@{7g
zxZCN#qTciL7NNHaJ+p;zdl7wSChjcat|BgNVGI`fpCay%q#N17xVwlUMLa<5^^M<C
z#LLsveNythMcmuM;Ni0^jQfT2iPZIA5f6zl_nBoHTGSiPGVkmb#v?^W!Nskm@kfhz
ztcb^p7+%Ck>ZFK8EsQ6Mcv=AQ2=ZH$K3T+5!XYN}naZ<;76uQWD`J#zo)`K;<=H)Q
zc61RHVlT1HMZ8kPhQAZziukywpOe2@#F!#pE8_Jc-YDYGWc5}NZx&IzrNJlX&$l$r
zX=&Ws()fQ&eFd}>N7MFwAl%)17w#4gL4v!xySuvwcPF^JySux)YXT%BK!AkY*>PPU
zgdh<De@*l8p8uRab)KoIsjjZB?wRT7>0TmE@!6$`SoRq&PsEDPc%=ZV1YMoTE6@9?
zIIXD~IG&A|a$XEJCSp?}GE2xJLCGHCwKX;;VoM^nCSn`cEZdfd?TOfti1UfKkcgd$
z*p-MQi8z{w)Z4L@0=pCa4*y2$@E+mnz1##6v0vZ=i8z!9KE?HQP;kD_=2!Y*fti0S
z5yv@hU;E3CpGd?n=feD&d6xYk@F_u03wlP-J%7iu%(+Cri{QHZyKeAeA}@&#B@rrj
zn8^e8vW6}vLdr&05^*&V*Aj7E<n@TnNW{%V+)KodTpfw{HW7EZ@h0NCMBL`~CB)da
z_t_|IcFL2TDrWah?IGw7TwdPP{!zj>arjdr9wg$SVBQxOZqH6X3vf#aoEG$PBA&3>
ziIB6?Z;43cdQZgDM7$DbQ|9pXONofEKq5Hbyn?g+k>7Jx5SW)r(-IM^8CRrUSWon)
zhZ%yJT!a@vOVE37Qn0+62rm&yC43<vnuuq7Q;?8E!gKCq{teB28@u$s(2GR;o`{!;
z_#+YT67d)JlO;p1xTj6TYk`;Fz#9SHCL)kK%!e$%Y2^+4&GExsbRro4%hn2k|NcKQ
z=6|~6V<KWCU+jMx{&^Le;l<9a7cO%km`p;fgbWfgO6Z(}7UZCS<o|XZl>A?Y;{=VD
z5E3A{peY4SA@Oztz6__Z1p17(<e*dnrxrAgplJn7Cn(FOm;C*b7<?(=>?D8D65eL|
z=<0AL2{V$!E$SF-_%N1NlgKLJD+$>oWS6j6!WIcRB;=IPK|)6fxg_M4P+LMB)+QmZ
zgwhhqNXRE4zk~u33QFL?rJd>H_IC+C3Iz&D{w5cXb5KzUg(Y0gK}96LcTFSKk}W2o
zxP%gt-*!q#c$tGr3e12xoEVgqP)<T+2~{KvS(WhW=Y;YSlIA2`imf1lX+=RR3Cfx|
zrO!!K+0L9)O+t0a-|3)+gqrMOfh*^vPn=Jnu7r9LT1sdop}vF$5}HY9&iGV9%be6u
zLL*^tV=h-tT9%WVNN6hI+h6^RUf%KFAlRi1S0x<INi8Hi$mz#(YYA;6w3E<Y!i${5
zk6XoaQCkVT?a{iTfmOLEZ@y3kDYz>ab>aY!FiXO030)*~l`vew2npRJbeDMDZw%zx
z`I3Hpl+Z(hRWI<hgq{+5N$4%1pM?GrZs(#t5;*l0m~-d!KjtSeh`Y61G)#i|SNvd6
zoFRe^WuNEr4Q9$i6Wq{7N*E<!tb}pga8ifnCdQ7IkhQcwW;jN|Hxeeq#xQ1jG#VT)
z@k*y?l$(;}rU?=zN|+>p@nk`#2%0rFl@S7ca?>;k)44coZEl*$-Vio0W&`F(n9J=&
z!YT>#B+QqvK*B;Hz-x~*dmP-IDXz`a*hLa{<favZzgWT&2}>m`ldxP+)-y$D`vgu3
zyjsE<2^%GBl5ns}Xe}?opPN$Up@+F?odl-q1>GR1!KV@ell}^o%0q4P&{hfCB;4m}
zm9U+&mhhv5pCs&L^Y$hjk#JPPE(yCO?#)7bSib;!CG3;1U*H3R^4U{+WBx}E3Fcu5
zpO`$W_Lzh-+$veE8ayuHgv2*NAD@!I^Jy8J7DZ;jMLQ?qyo6gEgc2@DxG3RC_3(8D
z=MpYSxFQZO3py<i@u{m4u8G5Ac}Nx<-bng}go^0`H`zHg!eeWMzhj?w4BwUTJx7rc
z=54s|a1D-1NT1hN@`DiIeWhathwlji&W-~+5cQuq^XH|95`LEONWx=bYSp~dI<Mb~
zFIEgZkx()p{UPBO3BO8s%7v1kO3*lH^ZK=)C_xf9BB&xX$bzx}%QMv_7~HE%c*bGO
zZ9#%71Z;`t1N%xG0X`{YjwjACf4w;ST*B{y^WwAo<-GJ#aANZLm%ozmr-awsx#goF
zAL8G9QobYDIUl{1Ff<>%lkgV@L-KgWEdQ^B_Y&I5XeZ-82_HE4BbXfVw<r6^H=qcT
z2^=FRB1j?tpG_)2{SAnXAP_;X2zo~lj36$8lo6zgAU=Xn1mOrMg5(jfB!ACJh#-Zy
zaC1ff#ftU#vx`5U;=|Mtr1_*dg0vB&iy)^sOds+4+ph%9ASerG6yVDUGJWP`79dLm
zSwC~;<)ds7a2DBx23C?ofX(?RR|L5u$P+={2r3EreBxAz2uenfKY{`g6cn5y5nhql
z?~w|L!@?0965cBs!9@Xz34U=wnNvytmM<qREFD1^!AZQIP*#9W8?f?YsJytmg5XsA
z%&#mgsS-ie2&xHOOVH|q))17-UNeHb`G`U7&zw3D)QzBC1d8DEsSg4)h@fG_&#qAf
zjU#9hK~t7V8rLI&W)a@z2Av}496^f+T1L=boN5(8YXRCu&_;kyo8<DIwx2e-Z5Q$P
zP-bQaakitNpU!p>xLX9>BfNW#pV22t2A`BL{aWyu(=+1l!pxvg1brhI9>ItR`iT+^
ziC}01{e@cw2+H0Y7y;8k5eycbQXBlJ;F1m#mwbvbJ{&0yCqyt&fKh^u7IciD-$XE0
z02Uq>!FYkw9Pq=Q6YJrCVK60vscgo>*p@P;MKC>rR}uUf@n2GAM6f7=#RAV1be5pA
zBbXDxTrQV5Tqx-L2o?x%rhJ$aU(Or`OCner!TAU-M6fJ^<q=-h0eghx3O<!8yn!o@
z>mnMzN>B!?1z02K+6d24@z1Uo^x(fC#>Ml~#t1e=z+khWTLk69tpaR|V7mZ2KJ#}9
zuuIUo`6&Z$uKhk?Zv^`y*dM`xi2q=7QqY4D92Ve^po_##zDERRnWGUL6Zp8GCj?!Z
z-|s(9MQ~aio)PqH1Ye}^Z^4|-2@c<jFGg@Ff}bOJ6v5>Pu0(J(f@|Co)5NVC8Rq@k
zcv|)K2yR4hKY}dp;&~svn-PD3vfB}VTfJKmd>g@c0<&7?@Vp2<dxu+!5c@uYA0oIX
z@K5aOZ81Lzd?i2eruKZu!sE&Z9z?+Op`dPldK|%%2!4s+*N8vJ%sb`r*37q4hMq<c
zQ-C-<i{Lj7%Lwl+g-8VUXTBVPF0dk~Dya7Pto2=xuQeht|Ht9RC=@c^iNF<nPtd5K
z4M!$?%JF#wFCzF|Fkf;*2nRm#{}3ELd@b5ntc-w+Hv+#E^j!ph3GjCW9|iE6Czng$
z_k#W>=!ef|GoC_>?6+c05Fm++qyl{LnV(F?>;l9BK^bu}s>-M)BVP7L;1gtoWrPGy
zE@%otw-q2h%ZX%UmU-JLUpS?psRT_eBaMu-GSZ2|jDn^YlqE9=Fq&6^mXS&JH{;+v
zI6m#okyXZ5GK$D3DkGcBvvhpT`321(Xl_As%E%=EpZ#=U9vOKBC*Nm2t1a*u7Zjk7
zpoK+_d?BY|f>TjOaTz6KloW?$1T7^f%aj&?wUw1oPT=w~Dttc6d`_RVRgzIz@T+{j
zg!%m4yt<4UvcD`p?`OoDXw;NZOGa%Ob!0S@(MU#J8TDkpopL+6QQ-gHJL(HggU@_E
z+gL^uame^d0ct96GeMgR+T!!s!Hf83gxFRxTFYo7!z<v=qu|7VcK~TGW1)&gDmuu#
zr58HM=*(5GAYMTi8C_)zk}+5Yo7zoA6)%=YJG;wxmL;x-pbWkipr@d{1nn)OkBq(o
z_meR|0G8}8z_0%#a2hCsDKm%27%F3|jBzrC$^LwaxfHg43=Nl2;6dyNK}QP8hofYS
zmi;>g<1vEyjX12+EoQuo3G7%IJ7pv(NKe$*i86k^8lEI$vWzJ*rpj0%V=4FlGN#Lz
zBV(?N88T+dn8jf)BV$3TRFIk!q=zwq$rBQOc@XSbkR}(Tc`~eXG4o|CU>Tl2Ge2B)
zYr_75bg3XMl%W=+MS?D7FKr9*;W8P^Wvq~~QpSgZ#5=<lDnvt{1Xl@D*U4DVRU`0a
z{zFa1T7l~o@}J^1$k-@jtBm0%f}A$7Lj;~B4!3;f4=Y65WNc^4g^bcIhJ|;@*exS>
zWq(hiJu>#n_*cez8T(}Hm+_FjA>)7y=}f|T85d+6lyOMLVHrncoEA15m2phQ2^lBZ
z!VSUWGMb(WU%l<)S%v77491@*o65UVo{@2uTaXZwZ~MZ`WO`A?B^kG5d@JKJSMJ8(
zbs0BgTwx6|+TO<3U1M11HIYlN$3YgjDGXr1n!DWgFZqrej*NRUZp*kMuHr2K?#lR{
z9h)w|m#-;A41Sbxyb#^zV*VW4sX^c;p=ZbCga?ANv%3G!&LbI*Ww;#tGM>ozMTRcJ
z;0ToQREEsGpN!vpc}OyfZ44%gYgsv88xck_zEOx&zFaJz!Bi6&F`o@KIYMOE;wm<V
zIoCD>Yu5}og2M%5pF}zMxesTDp9(*h@j{&XQ^xNyUW!aPFIM}9j8`JZNaYZh;`L8q
zF6nCy=|{0&ZwRvM-pY6<9R8P#zdzg4scXzX+>n0?TZM?}e;i}AgGm*ia{3?+Kgx&^
z9DL>{QSe1!`Xuv(U?vkZRzcviOi+Mgg(;*Uxq{p(@~B9mAVI+#1#=ac_k&>tyoPO7
z1*9OQf>a8kp+E*fQ!7ZLAg#d6OfNt>LBBhIO2cB9$tk1Ye5oLl0GS0%Rx2)x;>$4j
zN<lUS*%jna&`LpT1vwSuQczYwIkrkc9tA}e6jP8_K|Tff6%<f#GF`YsVVYf-E*GYP
z3Vta}DSz}wND3)_A5vIB5zeTvUtdgl>PT?~B@~oYP)hL!wO-c=go{wgA{0L<j+YKz
zlQU3SK^bvvlOq0A<rP#=P)9*s1r^y;1=SQ(S1_gsttmp4*?=M>6`?8$sw!ZRqNsmZ
zsVH?QN;MSJR4~4%ucwxR+6wjvyzvH)4aU|}P+vh~1x>hIyz;+-ABxiZqSTN}@iv}Q
zBLQB%jo<wtzA0y2jN(^>n<;3npar|J7_}6X0nc;e#Gs9WwhG277^k3}g7ylADj24q
zgMy9<x+>_Vpy615Sh$mdEvthIQpR=WyMRc{<iqX?dMN0xU;sNoK~Dv{icud0(~D6r
z1-(V$XY4-t!<_h%z6$!W&a?p*<3pwch4%(4*gh*^kigf)DLx#c@YbBfV7P)2>_Y|L
zD5x?#A!~8}+L2r-#c7nFqXixKYeIwKw0lkP&8yg<#c8~P2@0li#VMGmV3LB#3Z^JH
zwllm;XeeOE?=4Q3ij!TO3P)q7E102Rwu0~X#LQGMi*I=;1H6SRN>Jt!evV~JP{R_`
zWe=||i1`Zca^>EOolz^WK*4GSYZQOe+l2}~WQbd&V6lQF3YIEZreLLlRcuTNTFy3H
z@t616Rf1M1xGL1L=EM@D4G+hZq_qmxDLAG0W60|jY*6r|Bpp$(QNbn!XG+o`u6--G
zncbyehk^_xX^Vob3W}E`PTPb7TbHDrToDTPDcG-IcuCqV_<IH3BPeIe=@UM{k;XZG
zrp)I{viuW!SX{-saUEr+DLAg+1P8F<FW$@l@jXr%Kq=oXQY6Ta99c`zX|_<oSq0}5
zoL6v3!DVibrD)sN;R_0wHY!CI74#`Z)65`$lHhBvuoDzqQ*fQVO>y5TxS`;tf?Eo{
z<;p5W%S+L2)?AAC_tm?lNGrudrt!BG++l$?u^Hd`pZNLI_uL#5+*9zQ0;ou$;wJ_7
z6?oj76+BSzP{E5lafX7Q6+BY#tAeKr9<zJ7)v&=s{owqw6md#bnu?dEW~J#j1&P7~
z8aGu1%u(33(iBl3D;QGRFZ;~Wbf`3`LW~c8Els+DKZFKW6)Zz0=ldwu64X}UC~y^I
zEJMuX)HOrknS$pE-YR&<-D&Z-7Ybe}_*3BD1%1g11>m!s#e+-9tCykIBFE(~V&5oW
zI%;UlU)<#?_>aR+!9U{c{xTFPL;osxFAh7GAx^B}BL}L27}f9bSb*s#kW|GND#9vA
z<y}w_%K~L7xr%^_>d6A}DncrPs=qmAoQj3{;y5vGlr%0=S(?-<T(T^sP?4ZwL0Nz0
zBK|@9Vp&>j#->z}PDOeZsZ_kL9!Ra?$Fh`0<epYgUeJjR$e<#lifk&ft9V(KcJ>c{
zsUnk#%t9uspjp_ea>R+{+q4OPrGhEr%;hMD>aR`Fv>fGBQM?@G5|mFd=84C7Rpe8V
zUqz4N0d9Q-R1{P(RK+kAg;W$)(OE?o6-87ORnbI6#h0<g)c>26SC3VxC?O6@swk_X
zoWP|7Ev=%=XUSpZsJw~_>@F2GSc%|QR#8PorOz@e%lYHjRaI2`%sF0;eh|!>f>TG(
zS}JM_khHunUq#TmY@`6psV~kp5VWC+MglZeF}6JY?D>-kxd=^FG!tcME@%ruTMF7r
z(AI*s5tQZIs%ZBaw-=y;pdD3o`piF_FUWrx3}1?_D!QrY&MsBaTSXtPAjVE?PZhn`
z3H*=zyLg@(!;7L{DDT%-UlsjS^j9%J#n0ubP+I@C`>Z^1Pco1zJ)i%DJwpW=q++lN
z2AqZnz>{I_WQ<EA1&6D+wJ%|WijgWtsTi$dri$bF!(&u@!v$9{PQ}XG3C!WdKRAz9
zF+s%)Av00MB-Q`xd77Y~WG1VaqGGBLC{cmhR-l;`Xu3FLf&bxIDrO5N=fWE1sF*7b
z=LtHW1D@N+Z?Swy#|v>x7pqvpp{4U)t5~XHnd)zac|yZ-1}v%h8%pvp(MlC3RGd_?
zitA2<_Zs2k^(xk?{(toAxIMNE^FsGqE6@fN8&zylv023)6?;`|QL$CUE)~03Nd@|?
z0&P>ld!B9=wXj1_u8y55K2#tEym%mg=la%+=lSaURP0xAM8#3A*@v-woBQ}8ctAzU
zigZxLApsa47FIF1ls<fnou4`|>QV5xislum?1(VaQz}lY_+G^iD$b}ltKwU>fwQhi
zGb_?L6+0G(&#Sng;-ZR6Dz2)yref#v;PTV~rk4f2A}9-_Qe&?RdQ-&>ku`HTDwy69
z{LK~Vw(9?we@DfWVsZSn^lC-A%cnBL9o`nh^d9#u-1Dor&u_0u;%2^!FO<Ze-Sj}k
zLlv)7{K>J$J(vnvg`(my>rwHGieI@-OT<}8!jCIb!$)yXRs5!+bS2{Vrf5ZqsYE#{
zQKAY-1%rs74A?eRg~t7ria%87Dr#N`_Nz?eE0dwZRAH&GRd_0*9I+SSaEBHj<BFm+
ztwf_L(XvYPOvQ5*FI4=lVqYb?T8TDFvAgg1Z#_>dQMfXF_g{#|rj}L+tglRMR|H?H
zc*Aw7;-iYUD&BFYs^UKt+nywxu1r5wroU9wsS@|Mp#N|ws>J;(uvMAfRi^VP!`+I<
z@!nN28lWMGhNK$uSE1;OINtTOY8B#b>v@{Zfy9I_G$hmfdqn>#6sv(L<DiB(4e=U6
z8X9S6tRcCE6dH1B$fY4cLs&yL4cRq+orH(=!=z!J5lpEem4?(B(rCz_A)|)08q#S<
zuc3|=%b)Q2C&o^#Lf<CF9>^Vcv0UIw4Vg4#){sTRmMZijE_AsHF`v(lL^zogn^nVC
zY*Jz@U&5zyX#Oso>?PhsafB0!RH57&@@Ockp_u0H_MTTm-ip2(KUSf9TwV<Y*rck&
zPj>}1l&wmIL`e&4D59ZRRllVD1?8>Si)%bf8KpIp&`?tIAIxS}4G%pCre*kA4Yf4X
z7MGXPP)S2&fy-;CpkYQ;;#5%p)>%bERSh-7Av2j%O+$47Sd1}qIMw_tP)9>u4GlCj
zWUs!A<=u7badz_(c2}kP8kl}!GX1V9@!2LCnrc|2VKJA23$9^+hJhM#6c2X_hgxW8
zsiBpI)*AX~*f1~LMnhW-o!EOK>vkGC2=H4~YOf*X>i@H+qlR~@eB4DtS0T_-LpKfG
z8H>Xng0jHtRcM_qz?XlL@1@~QRq8Fy@_X@@)u^wA3zw4j6S=bi{ly`JK^pi|-4OP3
zHNUeO%x?K9mcdXB!!!)nFhavv4db|g2=U(WydC^V4Wl%S7Mw8}zR@s5Yz@!*#doeo
zt<%Ph*DyiDObxR%Ow=$*!xRluS&0ystnovpzgs;k<TOpgbap$7Rik~?=wdbctC}AM
z3}$PXBXU`wVJ^qBhWQ+RO1OM=UtmF|5MxdZ778)e#<?%iuvEi(E-5>_I_YWRmhmk>
z^T(N2_z@M$lhTJ)r<EF*uF|kt!y19t3c8MSsZM<AfS?;SY+@I2rEA#CjY7i?jW-|1
zhc&^i!gVQX&^8UGFloDRc<!s%k}JG9d6*Y+9Q1Ge9u0dn9MW)@+hz@lJPGe(`OV?|
zLim87HEPg7j?Wr?xsI@ZQU~S<d{o2Zp<zzPG#nRrcn#u1-aPcAhEp0&YdE9ftOi$u
zr{SE2^BQk`jz?U-8ZK)1R>OB1E@`-|;U;U=@F0KO6%98uo;E{Qxp5^Ayr@CfG%&p`
zD09Be7v7vN%)76i$`)8zDU`h?-PUkN!%rISbH2&q?rONlRhBvMJ;(OUFsC25OF8f3
zAGx*GB!6S~n#2Ps54hpfq~Bvg=c2I>In(FC5s~0y4No-a8Vn7;X!upbQw_gy!05r`
z#R6^i2k)&2|K)~wWs*ehi~fm~G(<GW-0AfScdAL621WQyWrH8ZGP6dnaH(1W#-;{K
zgRQ~g`pO#S?cMjK;kEceOKK8tQFrK3@M=wpYIw%ol#aYQp0frGF*=~*cMUJO;Rwx%
zHHmLby|V`X(7?abz7q6LL0@b5y-N%;-`1qJTm@Of?=<|S;ctQe(ePfwe;jY@uFAw`
znKJ&M;iC}v#AJSoT9iabQXLs|WYqD6j$}Gg=t$5Jt0SNzq$9bGoV6&ZqkAptlP46X
z`vbr6y5A=>t3`iw56`bf8*BN~NUqkRuny9ZMn_s5iM8luElQ~)zBZ-Oc{DPCQ)&VD
zTK?ODzi6b>QJ^-Z*HNQ3acWnazSNOPM>ZYVb!66&MMqX0U+EZJn-<ijYqjY~ZK`%W
zSR_Yid0qeAAqShMBbSccY<wNcRL2isZaW`h0`pEM@Pp_+FFv2nGd$5!M=Q=wM?oDG
zbX3&wBv)KRJHC*P!lF1ubd=FizYZ1UQ$NQR({bpx1Wv_uln}V2prt<ZOAD}oKmO_{
zr=xQnDlaH6hQo(UE9t1LqqdGZ>@*!!b=1^ROGh;w)$_&iztuH#46Q@e1!c3R)uEMj
zh!?wS78l@uwA)mVtE;1)j%GTV>%5$DLZ>XD`Z^luXebPBtfPsJMgs2@1;1E_lsdcw
zqF*}<nDVTW7A#iR$1is$B&|!^vIqF<Lu(yvbhOpcPDd{t!>R?k)g@j{>*&IS_BuM~
z=*Xq671v2eR~_BBTspewm{6CN2vrB`Qg<CaI3pcBxoFh_SL%{lm;S0tp?Z|79yO@v
z=QuqY-&;o?9es85)6rkYAg)Rs16W%<;xteImSlYKxIe9Khz=g=94h$T4kwJMM|?O!
z$4DKcUt`Q`jAFn#J>IGnV|09@<A{x;Hpc20rz4Mvye7u8sXEdd$Y5Zij!8Oh>G)R1
zWF1pjzmA<crs|lcW3i4UI;QLVTRP_In5Sc=&Yb{e>zKn-l!C3=D}W^Et9mqF#{wM-
zbu7|Rs6L%_VyoAu!S(5As_?Y>#2*FL*QcdAmg!ipV}p+6I#%ddtz(Ujv-Ro6`m~b$
zzc!e?0j(01#bB)fO&iec2DIsV!a5Er0XFK`q+^SYtva?hpeq>zn{^D#7C6<w_wY6y
zcN@@{_>kFvwsYL>!uMJIFVVZWq3JlG<D`x~I`(p`>Nu=ppN{=H4(K?j<6{F#*N~F*
z2<K}^)f>|AhNMSBV^fBX=s2q5n2zJ@mWFh)A^p^l3Kj6*+Kh&j{7EovBRZwyw2q59
zF6lVKh0<|e#|4fVCB9T6I>%Akh`#2;cauiMFB*3m5x3dPI<DxruH%M|NFz$x*cZ5}
z;~JOZR5*Abfhlt;G^U#z_Tp@&{Gso3+}81eyGI>&Sd#k|9g>dkb^M^?fsThd?&<hZ
z$4@%$a{&wbYB}{58m0@nt}*?r<B^VEbv)J4`%=PV9l!9kjp>Q-{6!)5yP(vB@-?B~
z1b=@yzn_WdkaajZTpfxIRfnm=;^xzY`Zgg=$I2$8>oB-zP3TDz-vDkDubL45X=rnw
z)|ARM^_iZIs8IWydnCbm#;q?HGp8x-Xi5dgCtPYuFLnIEJ+Og*fmb^I)RDwMQUkAb
zywUMi$2%Q*Q-5$ESu@Jsj7m47Ca?YS{-xt@?lGFtKZ5=%=zBr`6ZC_i9|esud`V8c
z8Zy%(8RNb%Fod^#KZ#@p`ZlA<&HPAawLt@M22vVGWgy-_$UuUDu;F(yS$l+&8(7hd
z_(M_(!~dMb%<r4gfwv)IgPYOtr}1&kDYbz#2GSZxXP{Vfs@dFkMfc`3wmB^jcxQ9U
zXy8i&8x3qSkjX%1104-?GLXeURs$6bR5b9Ffoui}8z^ERyMY`A@*2ozAg6&`267w7
zBdoe9bn<9FPn>vHG4NCz<~LBlKtThA*sIOyix$K?q<_`Iw}f|iFWG{cx1geIo`KQ^
z$`~kapoD>v21*H?BU<=jyrc!~Z9#X$Rc~8RS#heIf$}V-#inUVBT|RTw4|vmeYKSg
zR5sAWKvM%%3{*8x$3R^J)eKZOP}4vy1M6GTnU++;z;`X_kCqf@MYXxet*Bfp0{?OL
z!uMxA1N99wGSJvS0|u?Ap@EgHXnZTm0sj}~-L2?)E1Fv^@U#{2MEzz4nj2_spba}b
zcc_JdmIhi0{JNEISo+qKqqPs(8u({jOgjVZ*_hVUxi#HP6B;f~buci$HD#_4>TIBk
zfk_4?8|Z4Fn}NX`CkDD3=wYA_hYCBvKu-g`4D>eepkw$zYpR|<^jmAXI5Xi-p{-0L
z*v~+J0|N~V;y`LcW!g}~HZ(vuaBv%1*2cHzL>qe8hK3p#W?+ngZww4KFv7qn1Ebl1
zuV^G^QP_`3PXDx_bZz~ss<fpJZE385aRw%Ehi_oKfthWICk*r1b!~}P`#&lqy|xr=
zM^g+;HL%FQVgu6*OgAvwz#L)848G97EDo@C)T|xxLM7MN2KNSoz1q=SgWqSdz`#NS
z7hVMqDe?2gB@^2DHe3-@Zb$qne~E#m2LI59H3pU$Sk4WE>x)5yaFX^^pglEj?|*Gy
z#d+lj^lVQpu7%mcwFcI4JQ&#UNo{-D(w<JYr|;X-tM-(-gP+T016vH31}p<x4Qw-T
z*}xS8+YRh6aMZvt13L}uGO*vk0Ry`Y>@l#{z&?)r4pgNBwdp{+g{n&(Nb5i!I?zD_
zhYTDxa75($Wk)L1k!p3M_8n<pN1EA@Hgu%p22L0_Yv7!LlLk&1IBnpJkU!gzF7HXu
zI#Nv5;Ov~?*iMwa6P;%l8MtWRl7TN8`lJ0dI{BXI*ooE{36nd~hE8<Vz%>K+4E$)|
zx`7+q1Pt63I&T`dW#C&jsS{oAL~bW~--#|d!9tzsj)A)dzBlj#d-!jE>H;sXTCX$p
z=uAhaB^b{_i#pR!2JRbpY~Tq;qk)G8em3xk-PPG&2lz&3-;=WGkCgr<@Gk~_HSpBH
zZwAk24!rA3Tk^;AJ4hlsEnBc%7s_5GAaVcGg(8B=f+~Wlg7PWNfG)7{ne)buwGBAj
zjhhIXa1D3{-WmAIK-9o91AlNwWZ=1h7Y2Se@RCEZ3zhjUxUmaOdl%wCwzipg8^qWP
zUFc8lOAWj+@YcXjU5Hl;dDexb3gKK`sX<qoa4N|1e{)+l@X<hwiGK~eH}Ic<4+aKw
zCBB_O@kd$jWDAV#N(;OC9)O7?CX$-?!o=RLbiFG*=}NzMrDP^zO;qbfBf9xwhqWNT
z3})>{aVFwTWH6D@M94&P6DdukGLgbWf{CyRGO?l??dV3QyV28bw9Acu*NwQ74|S*1
zCeoNlXCl4n-!%pv@Vm9NCcf(KXR)_bxMX)~B=DCeGMUI`BD;yqCbF2w%3>zCi|*N-
zzUxjEt_1l#npdFe**`|>PB~2EG?B|hZWF63hTnCkKo2U~gX;Al-cEW%4_|*i6ZuUX
zFmcdC0TTsH^fuAQ<Soll*hDQ8wM`T;QPe~^6Xi`56GoOaQOZPd6D3T{>Om)aklw?;
zA(l4%6-UdMD9e|BO?AH}egld>73}aeP5hcFn5bx?Dmzdpsbr$Ei7Emw`<ixqO=rF)
z^=smey}F4SCjRLfQ`1DUo>aOg@&Cwmd(woSw4^81F;Uk<I}`0q)H6}vL^Bi3O*Amk
z&_ojxO@+=zChqj4{7&#tPiibU44PU&tEXS^4?U@ciIyhXm}qOF6<1R)zh3wr(OL*+
z@8ye?6Lj(mf8eo$iH;_^o9JPplZnnIx(Ug)n-jVSka=A~R{<J}tN4=M3`{g08q?E6
zFB4OG(du5*U~lkNFG|~+c1#NQHPO$+A`^>E^fxiU#3U1wO$;<K$i#3HBTNi7F~r1B
z6T^h^LcM9)mEhP6p-R1}U2huHn-=x<O&w`sw23i7W|WCjz3Io^l<kM`HzvmMW50=a
zy=kn8w0)>(ADX}(?n7VB!$cEZ`q1@0l-S2tGR4GH6LU<=H8IV^bQ3d7%rx=0IGZOB
zNZFV2^`+{4sZC#+#o6_x*@E)5^GwV)vB1Pa6U+M2j=priFByF)rXTSG01IUAM@vjB
zHL=OWW|lFr+{79aYq@opSZQJv2darO{V3y+VB3ClITAmlpKsONesrrJtuwLS#0C=^
zP5-~PmS2Z|>qmd|BkE73`%~xsbi97t786@d>@=}U_+gug?Iv~zJhVT}>Cc-r#O>@)
zwSI}+ZDNn<Z}_#>#D)IEYw2)C{DjYRAM+<C>=(4v_u)e(4x2b<;k<<-CXRCJuu#~-
zF%!p4{BGi<i4!JHnz(P`0ejxWX%p8?+%R#*#90%UOk8FSCeCwSCN7$g`qP{K#D8kU
z=M7{ZK$Qj%KZ<uAKvzs$<u;WVbB&vAY+Oe*xM~31A3(+ciW^8bx!@-5n)u$tw<f+b
zahrpjTj)TlJ&-03q~!zY!9e1_q}z8(o@5aHVB(&MA5HwkeZ?Rydzc3nILNt-w|)=t
zCZ{}N@X*B1CR7ueiAN?LoA}K{qKPLaelhW@iKoJQ)d%?%(QOco6=2mM`ehJFCL$(e
z6AE{ggMERlgNb)TF8eON)L`N_GX6_iH(_uOZ^AQSny^gRCLE!&?_iob*uS4zgX!a7
z$~J^b4xy-tXC|I=w`QWn5DNa9;1miD8bY&%(E1_t{SbOLg#Iw`iW{s2vhb&g*Ct>g
ziG?>N-f|Cb;yp*ZiN82*xf|gQcBpS#`eMn;52da{X~j@FJ(SF$^q+|jCO(>ovB0_T
z|KRn9QTK@neTMn+%ZJgT$Kj+FzOWEyA>KkV3$Ydg7J?S`4kPblEI+GU8b(itQIg?)
z!TC!>$U<@pDJ&#d$Tgh!w%cg9uWj^jS~8pt2%OSFDhpXHd}SfEg)|m2TKLjJS_|nc
zq_>d4!r#NG*a#ZjD$F&-m$w+<D>?j4IFp6UmVc+nVqw$>e_Vp^^@~T)sS)&O1ZA_3
z-9jD<c`f9ykdtk&klVt`5&mOUs*%2u;v*?09M@_j4IfGQEabOPz(PR_i$>Dkk#t+g
z@ZT%eNXj*e3Pxg!SUkA`6D>@#P|QMc3*9aBuu#H6NeeA4w6ajjLTL+4EHt%H#zI*O
zjVv^_&|wsnvoLZL)yx$rZ=nKPazD1Bpw$GeBxq#|RRpLiD9h~b5mVhl4RKi0;twLI
zD{w7AYYWOU^#ow~1_IQ#z)U`D_*sDQ!clbOeTe_`-!_VxS!iydh2=LfUKW5y!1&eR
z{3tR<`JQQQp^b%(7CKpIYoVQm_FM!D?5_8tDAQ<PrtD}MHkyu(CVqJ6Y@v&Vt`@pk
z;M?w<(Zp@m7)_({1UML2*nhOJ(9^;Y3qvjRve4T?e+vUF^s&&_LO)TJNykveF~mPC
z@FNWmQ1JJcfr3BC!e9%X$564iew!UVhE|QCvtwwOh2a*)Sop@m2zD<=f`!rIl2&EI
ze6O^|P_}P;Yb$?49lxQm7RFf^Z()LkL4rT^8>;<2;m|iUBSYYO!I^AfiiHgpHd>f!
zVH(GSg~b-8TbN;Cu7!CPX0qQb%(gH`<mG)s7)u4m`Wf*PSKYDHdo0bjaC##aSXd}z
z_-n<uv9xL|Jr-h1EG)IK%ED?3%PcInu)@MhA^BVgd@+uu%CVWpQT1`Y+BFu|T3Bac
zy^z@^m{$ZX83?@|NBr=!$--s}2Q2;wg)J7gTG+*5U}2ku?G|=e*lB^AcG~g2!cyb?
ziGSR#88;bEd$=K6*k@rs*T{I9HJ;ASNLV|bej873##8(E2`MJfAq$5soUm|``+o~Z
zx#zcVoO9_NZal%)**;TX_ypQAf$mPA=ma{&9<Xr6!dY(A6RGJ$${rK$JJEkf-Z0UZ
zpS~w}!NNsuCN|31xMblnw|5KwSh!;0s)a-gl7(v)u3PxY!hH)jEZnqk$HH9;w=8^X
z@h<bY%~3azx{Qf?E7T^RL_92CU=sD2MBiKZ!NNTYKeF)&{#(Z6N&dex2PV;Xljz?`
zz8McJJhbrG!V`<v5b(Q{ANIsN;!brk<(^DECew(?^oxaGEj+dG8|RxkFmp1Up6p+H
zZ!-PR$oHW>nIaZs3sDQtEGTS}1<QhML9?J+Ff5ot`Bzh@;uLDesaR;(6k0rm4o@M+
zg3E!oHpXMgDfG`2UwN9TRAQ<Ro?CdqJ-mh27JlazZQ&0KuY@+<dw2b#V1)`Ho(P>T
zeW3kR8a9>QSa@sUorS-I%(|%*dm-WbsZ=|4=$%l=BkKQJc+dT<jW2EdXW@f|kd5Rv
zK5{d+k<3P{4cJIxBdLuqY-E^5rKVArX*6P*Z_?apbYhy{)dy?@ZN%A#w{d?OnbZ8~
z;v8ltcLrmpQ~tbx%+o1_jRYI1ZKSagwm~*h+DK)i)O24Jr;P{wr~Q`GX`tYwwUN$7
zdd`%^M$#m~TtA&oPp7-niI+p<sg;>*WVVstMgbdHY-F{O(?%{EU)jiJBfE_pwqKQR
z*oGNYa|W?<2F>uZn=^xQ+sI=huZ?^*_7n+knn5>akSxv~c$E;GN%?0|K^ui^6t_{r
zMqwL8Y!tOoOz7kv*dI(xNZZq|_f|7~ofBqKNiL3!(l*N2n3^tb=}bBxPW>>Gp8pj}
zHjA>%qVhH>*cf4Bq>YL;D%ogjqn(Y)HmcaDZ=->Ysy3?GsAZ$Jjp`!18a8UOe7ZoD
zS=4WqpWX6Vv}+bk8G<@C>e{Gh<Mu34XVJg2DEn-xIh)$driL~e*=TN~g^k8Gn%HP+
zqZ!*a+ixAaXZw11s>$6~@jSA}tDUs8(aJ_^8*N0U=Y+t6+4N#I#m(_w%=6Bn_BJ}$
z=xw8qjgB@t+304YyN%8^y4dJy^Y2CeYU*vHu?PS1t94eY6q}V`4_0WSr;T1hb7j^u
z$IqS9kU2Da4sDx5eQor!G1$fs8~tqzurbiaARA}q(A_!o`m_AoFa0K*VXlAqP#eQ+
z47dF!mfCY^;9QzB*Y8`l%%xE_M%!3sW4VnnHombj!^TV=|F<#D#v~h)ZGRf)cpDRJ
zOtf)wF8!J|PM%B2=J}60tb7VP%EmMs(`~T3GR^aIEHaO}&!gq@=*T>}J&$JDm~CT$
zjfFPm*qCc$o{jl7WFh=cP?}E@0>M1<{qS34W3i1THkR7{<T0K-Qei%IobPKMGM_F9
zu)@Yl8{62EHde8ijSV(7+E`;_t&Mdy)^mC16VD7xvVd|epc?JM9T(7}{Nb?+Xp@c2
zHn!N<YUAtz;)Ni7TtIIZkenrueIX5b7b?GycG%cyW1o%vHg?(A&GBzzFFR);P27=i
ze4%g5&4u)6Aw6G6JURS;je|B0**Glfjt2*lEux}}sNN!9GSD%wQcpN$<G78V9Nc$s
zf}P26>!5~%Q#MX>-(uqf*CU%`L$RUSIA`O$jk{b0HZIt>XycmA%LwC=jmtK!*tp7}
zvWO-uqBRL|>lRUgpg)Mg!xx7a(G43nZQQc)Ei23r$kQbJa1kY0OucwVw#77lYWO>D
z3pVa>BrhiZnQPKwTDF*euyN1EV;fIw{K%$q=<ber#C}*z_ia3|@zBPj#S~sbKXWkm
zr)5j%?3sl6OXzD({EqM>_7@w!+DNo{8A&`9uJ~yQ@y9Pd`x`q)h()+8#o~DXjtNUi
z=8kSD^;k+wH5<B(mp1;eVc0Njcs8OoEE~2^<=R-ZlpO95k_31r&#LY*7jF1ZO?#Ho
zGaJusys+^*7knxGS2fTlN6234TlHZnrCa8MS2q6SD7Epojn_8baJTsd-r0D|{>&3s
zcNq;>Mx})0q-B)%SnwYk|B8Iyb5JewKg*t7M)#HxzrVA#k2Yc)eB~gU12{<HAf<y;
z4w5?f!a>MEatDzWNai5cLBK(><&=Io-Q1ec{$4QX_+4(CgLnr8mlOZ4Qg=DcUrs3;
zBsd5=AR%ykIo)1P{Ibcyzb*GaS9O--Q#(lG;7bRY9He!S&Ov$y8HD`n<^HE7-Yzhs
zgPbeK?h)o6lxnOXUKW@&WOk6nK~^EzX9dk&LH#cJ!;E|?yMr7KiaIF97dpu0AiskG
z4stul;~=ktd=7X7`1lICv%)tfL)s9(q5rXhQmmwc4hlIa?4XE)Ki|jRtr%B#CG}oO
zCEtb?uB06+$yiCn9h7iT-a!SCdr1dn9F%oX$^n0XF75Ez;J(_gR#BBzRL=3YO7s`w
znnS$oPelin9K2jb)g1hHD>!8ptyo2s9aM2p)xo}1)FKpjZ52IQMS<1+5LrzJwH(ZJ
zFv~%02X#0{2R$9sbx_Yi8wYK<EDjntXyTx$gN6<oIcV%)K{%$&YHGKd`mUy5?1XWv
zY1wLO=AgNQRt{PV%UiGmcL&d|rk$&)rQk65VKv3BA&$u`Yp9)r_6|Bb=;EM*gN{O`
zlY`Q0sL2{CnkCeC4e_2JbJtK;2i+WWcX+lZwyg2LK)wAto<9ikz2@c`YQHAo_cheZ
zL2n0R9DL)TkAuDr200k)pr3>O4hA?F$YHjYs;s4!YiZJ2TE3PJuH|8Nims(04u(1y
z;b0_3)H)jGfZt(xxG&c_8qQU`&Ug4I_SHICy^ap8qtWb{b;M~bCkNvkOm;BE!FUG~
z987dDiCt8iZmc67!{_;^PuI~O>nL_TJzt$L)xk6e(;duU|E#C->nX{-;HdTV-DN-U
zIL%#8vmMNFaKOPq2Xh_FbFj|AdI$4at%IcwmN{7HV3C8x4wi_(Xq+N+Y&}Wq{SSYC
zuBR_H5I-I)cd)|28V75+6>OlDT*X;K8#mA@2df=k4?niW1{$z|7;rm1x`DpkK>UGk
zgM*C@wmI1DV3UK*>~jZOxw68<^Er2}^zD4HfnqoM|EV$F;b5nOy&Pa1*fss`YnOvn
z=YqQ(>=AWZbfYiEj}r|y`ctj;JG?|j{GX3wtow0?92|CV!NElbM;sjG9-f`=;FyEs
z-19p)$>Fh)Ms1`M8;NcOA8(|jn<(QZD!PfzI5_LzoP+ZY_)gSp6OG(N^EZ)YhBt4b
z>zn*}@|PT3cJQr(@3_1Ut~$8p;5s*`Juy!<(bm`gt6y{z{rWaG$!5CY;HHCH!sh&&
zsm^Aaw3%)@xZ~iSgC8B-6{p<IbZkk&_YQtw|7`Y)c4jl(-%PZHR%Z)k+v0N`IC#jh
z?V^i|pB+5nj>tt?7mpo0aqxy)v4dY6{OZ8wChXv;gWnwJ4h#p04kQPP1Jyz0E!2FA
z|3xX{K<366i5<6vl3q$M)u6^zv&Fw_Pmc+>DFddkjkC7cZ(Hce7W!`s@hH0Mz;p0B
zcMA@p4xTx9?%)M?n_DUWR^sL8t8S&HTdCJp+Pszc52HUEyyD);!E0{yiJ>!FiN6j!
z-s%_1o0ft<E--lK;4ki|T?AeH?cg5=A05QF_}9UE?s*)1VCKbOY>LpCt3i7!#ciWX
z+o;7h8oZ6*B8iJ+E@E9IbuoP#9ZV9pcALL5=@%}TvfEE@qnJXWz0nYla>u!dcah-o
z?!XASNbVwqi{4dZ?rx(MW>DQmskRgU$MNppSaOllMJgAmUH_KBpA>U!r;^*L`*s?)
z-M4@Jc1q_Wy^As~%DTwlBBP7EF7mnf(nTg0*<56Ik=aES7g=3=<>JJ4y1SjM?eu0l
zg?9K#vhASCJ1B>XoGx;?$nAm$rrL;8eRj~y9hAq#*&Y7>o9hHKzl#Dcin}PmrE^ip
zMPV03T)f&rsdrL=om6Wl6?HLjCmr7D>tDN*in+XPnGZ^ef|PPm+V!VfJlaY8{m9x$
zfA6G6DdNhxDDR?yi-s;LxTxr&s*7qaDzP7SQDqlZT(sXsj0f(bX}joSs=zKYwz`WN
zF6y|b>tgvXI<$*wy5NDDS}tm{ZNCHyq>AIjmeh0cU>ET(sEq3iOVaG7Vb>BGxoGU7
zm5bIcnz(4{qJ@i=E}99M(YtBEZsKvX=Iq$r)M7WC-R(avK2PHhwY6b)x#;MklZ$pj
zzP*d+ZhE@gFM9_U{Nl+eZV&ZO6Dqog8t?I+CAzxk#$qm>x#;eqhl}klcJSpcdU6Q4
znBk%qM}>=#E=IZN<D##NK`sWn=;xxpivcbMviu$zwTBk%p`Cl^!X9FmN_(hGC^W>y
zP#42pjNlmCOWx67fxR@$MZLYgRbBVe>1)0dhV7-%F2-<WxtQeQ8y90;jCV1CecqeK
zadXHJ`fe}H+)MlRlC_uq-b-2bQJ;dL$u6e2nCfDhi*oy@**;(GpnWuZA8p!4uWuyW
z+($EA%yO~9#Yz{mUCeQ@(8VII8W;0i%y+RsxJwq-#_y+W`)PC50Dr(e`(JpmizP0W
zx>&}MTqjUrKUFUr?!2EC?5E}8svfyRJNMJK`)QSn)h;%;*yv)7i?uG+vCmy-`ziea
zYJ7nDAE3hreDl^7ifjBfw8_P07h7CxWy!SRuWuy$dVu(2rFVd~>cMRs$p@+0L0^8S
zi(M{$aB<JYZWnu8Ty}BA#a<WtTpV_B#KnFW2V5L<afl1cZ&hok_d!~A*B@1zB9v@;
z8++8nF&7tITyk-o8z9Rcq+18co)=sn2&_IxCtaN4QXC{sr(K*8`0QuSITz<Y;|l`t
z!iF<nhO~q9@gQY5L|0v0bMdW<?_6AWal^$;7q?u0kH6xFC@?qN@Q`1e9)fN>M7Les
z;nwHkdv@B=0N;rY9ipd)D14a89QFr(TOFn!UHs%C;zD+DpIeQKCoX<*@sK-z7mv8x
z=eSK88hn@*9i}UX>G5Gd3r>F?re9q=b@7{vL>GZ0RR0KlbHv}fL}H&Gq31^^=}|g!
zgdQ9r#f9p^bYXFQiE7nd7%rZdi_3PDVn4>F>=Bpo=LCMWv|TtZTo)equ}7)WQEGOS
zj=l(uI7+jR`h#ZMkJ57&FStkYP{_mYE?#oK>LJ0yAKW#$_~;_W!=El*yZo+-zg@iH
z8aYaDUAz-n|8kW0@a0jzAlEYo{^8Ew#d{b3aSwcqc%nj{W7Ogp^*To5kI~X&^nvT~
z7+pR_@Q}nqz(deOQV(BvNai8d!-<38pO4YIW0dJQRXy&n8_8ckTO6l25AhyC9+G?L
zbDX-n!A-~M!EyhS`m^J7_;e5_DC~heeB~jVhm;;tdC1@)qleTU(s)SgA)N<)*W<5~
zMNj;n=Lemjg(oPzheIdm#}o9WhfE$ad&uJX-+c3*q_!t%@=02ElFpx`te$^E;kw>;
zEFrsx93Jv`$m?OkcI5Ps%R_Dt4^R3gc_%6LDL)Hd`Zb>i9`wuap@4^l6j$^VwLC?G
zPf>Jh!u(TI*h3Ky^*uE3P}D;)50yMr_E6kI2@hpGl=D#1Ln#lXJ(Tfq>J(Y0=*=nO
z)!rh><5HZayr-$*X)5obf(NZ<OhsWNzqj^1P18@)iqrnHRuvCbJ=FA2%R@B})jiY@
zVy8~i-P69EuAn?&wYG=5{bTBSsOO=Mkl`WCI!WSEouLW&LK{XU@bB;qJv8#r&O>_-
zjXgB+(9%OI4^2HZ^U&Nw3vprbGrs1oXK3^pdhj;H9|ZZZwTCty+H$4Wi&=Aq=H3ie
z_%C$j3_UtS&(BZ?4;?*p^U&QxCl8%Hbn(!YJ@7U(^I-y=^%a&7lz+yleU^G~Mjm>4
z=*5+rKG5+jO*>1+&Qfm=+%PkqBco<WI!iI<sGo=atm=1k`yB&34D|5pGdz8UK^_LP
zNzc&s8HRWm>Y+yzUq>;_!*CCd2iL<04<kJs<RI}d%EM?6OFS&)`JW!X@i5)P3=d;H
zjPo$j!z5Am@f;OwRn-`tH&W&tJuVjFwmjLx6c1B52t9165XX+~evTHLqm0Gkcu;HW
zIl6O>W_p<AVV;Ni9%g&~P|_R^bA`@{M#w(rd*JVL6gp1}IGj8z^01iA&JkDdJasuw
z!_E``r|%_AzWlr|xy-|I51TnV4=X&Z^svsudJn5StoE?R!&<gHGwm0`H_rR7R2$X?
zIl{H`w86th51Y72@^_r-ftU-F@dELDwh|ZoA-k;}wt3j?VULIH9(H)x>0y_!bHD{Z
z>nRs#?*-yfopTrHXT~1(dD!pafQR=ND91&zeo3f!k$6@T3;$Z$e=0ca;RuHxm)gTo
z563)Q^l-_;akjz3X%A;SoD^By3&xxhVC+SIn#!V!bk@T;59d8xU}G-&2E6maXD-qM
zf%$F7xk#5iT=8(z!z~Y2JzVo}-NOxT#j(kGM)W@ysrv3<x=a4G`7cr3OZ2UW?>yZ0
zaEJSxOEl{et-0ina9+DaiI*sFnQjkC{)2~m9)9zX=;22XKY4iM;jxGN9v*OS;NfQv
z11{6#%e3#Z|JTp?%M^QsuI3=Vr#$iS3&){{r=l#yulQNFy5j%n&0xe8+Hi#=4-szH
z9&`_~2gQRbgwF`!6}3X=|BJ78Gsu26JeVFV4>lWfh2C7Dz*Wj~)qhs3bCrf)rA1fC
z^APorFN*w8JoE6JJJl#cQM};JpX<fLe;!_P=kMXIhj$)cap&*hwTCw%(`&5ls=xml
zhe4KWROA}fy+(g|_}jxj9{%NC>!bfB)%hC#QRNT#EW1X$zwoJR^ufbN?&PCL7DY@H
zh$2Z8Nu#)bjht(Ksrl<XuKPcrrM>PS#zql{A{a$n6#OBe$#v>;ot9juUDwIDPDkg3
zxiuw^B1IHmMv*CsgebyMq=_PJ6ck0uC{jg{Itu@*gix6G2J!P`<r~!Q1`Yf(m@bO+
zQDlfBV-%Zj_;qUB@bitoNxaT;_M24lCS{HyOB6Yx$Qeb}D87m!TNK%&{x>O>?0A!=
z3*ikn{b@M|Zc?r&az~LTioD!`oR7V6lboBxw_5H2Sb#q(@atQFC<?MwQPhc|P!xru
zC>uq&D2hZ;G>Vc@l!~HQ6vc&x5?nR6{I-_;7L~h2jc(D@BB9bze>}X55a@f$pY_51
z8Gnn)M^Pb)s!>#nqGA-4qNp526(P3h79F}pw{Q88z@aPOqCDSH^(bmY@&9Q03Mea%
zrfnW%_wFw2?ZPd%yF0<%-60TMf(Ca9?(XjHfrOCY?iySJ+;PYMntA{4oH>1ZW@@Ud
ztE*~Ss;jF-P@Tcfi+<<D;`8F_d7lX!od4r_k?Mk|6+!I?hXO;(2<k*oH-bhHG>)KN
z1ob0m5J5wx{DP=|K}@|Mc$+7GyZVBU;p_#`B!Z?9G>f1)XO{S{zFiPGF8XhqT@*bo
ziZK^Os|Z?0&_03=0iA6kXd6MhAiv?FcwX7J34HM{yJG~MBKRqS&Ji5D=sOtP3{d^K
zJmyo7$#h9{ji6fu&mwppLH7uHM6fY}O%e2rpjQOHMKCpj-VyYPV0Z*0BIp}IzX%3J
zFgSu=BIqB%05<zU>18j8o>$`<ToPR_i7}VN+DpE3)Q|{%jbLa5!y<l|m!p@&qf0`)
z<kyI2@cerH93C0Ls0hYKFd>4`5sZmoYy{(2)Gvz+mqoeDqVZ+X`Lh2BU#l*Qi4jbS
zU~&XgA}~Z;<g(w~>8^-kS46WbqW={ia#{q_BUlo_(g<cmFf)RA5zLQZRs^#nm=nR=
z2-aN@Y{XtZjXiut+`Zxtg!#kB6|o?Kg%K=@U~y2d6jw#LtD^B$A8ntjVq%b47Qyle
z*03T(up)w$5v+<}bpXFO05}$;->-_4*F^biVqFC5BiIlCw7Mql7W0kO#A{;FHF5Bo
z*vtwN!KnyNN3b=5Z4n%f;7A19BiIqa-U#+Zurq>P5$uj&PXzy66KR(Fwj#lGpQ?=4
z#l&CY+3#_G1P7SU5gcND30@7q?r*4{cU^3-qWYze$>qfzjo|kP{*2%ROGO07Blshr
z>OcUW<HvB%rqK_t3-`MCD}s{|{2jqRtW!5c@wEP0PnjEj><jLkbi5(P+z@9XI2*yO
z2yRDkE`swBT#4Xn1Q#N>7{R3oF0&-_(R(?g*#m(;=WFE+!AI_{Umdy@!Sx7kut8%r
z{OZf?-!}wDl=}CENP1Ibz3H3HI}zNC;9&&+MsP3UyWZW8;6cRy8*<mB&P_4*rr32;
z7&pbE2p&i9B!Z_A#NHB_Zi&jbM8{iV)Ge{wh?{?lPx^>`5y49~P!cjpcoo5GwyP2#
z;Y|c@S(YL&nYU~_+0I8GGk<Q0_Yr)EAQI%S-Vz^fiMZP$=WU<uN(5>IS_C@l_-!FA
z@Y}S1@M`jH!Hem9Yeir)*%5q>z=^<(z>DBx!0_X@#r4}ly)CNV@v(Ie(k~Hwjo@1Z
z-&wrxh>dr|%1m)=-cR2V5AFzabUb%65=uxUAuK^iNGu_Vgcu325~3vEghopUNxWYv
z%DE#l-xXEviawX(JKhy>5|T<tCLvz(Pf?k0SMWL=&*Ag7>y>xKfxA8pBq6zkG!oKE
zNFgDmgj5nzOSlreWtT99;p^pHk@TJqpH4!02^l1042oto<cE3hiMsd1)O%v(J+bee
z$Sfg?gz^$9NXRN7n}k9V3QNc?A%}##67osNDIu4H+!FExv@w!%_k?^;@M>MueUbLQ
zC~{xqm-wVAQ9wdLiI4f_Xg@yv3^{0Q{4NHNP*g%m38ex`ib*Igp#-<`eOBjCh6ke9
z15xXNPjhJrWh9i9P)@?k2V&0yG5tW8b>#d5@#KL>_)w&KC@M<$Q9>OFbtP0{W=g0g
zp?ZM1iiD~`rs6{%8*j~S`%u)7P*XxJ3AH6Y15wO)D0r%2X8>^jp)eovS!SZ1g!&Si
zNN6gdfrN$<8cAr(`2Q8{|MgM*`mgxoU*B))!M~#LiEuLs&4YqkNPGqmpR*&XJo3T#
z>hwsome5AR3JEJEw3X0K!f**AB(#^%K|&u1eI<01&`Cm93Ed?8B%!l}E{u@D9*G5y
z#I8sFbT?xw`ziKDfVsPb9uj&7g=YLC)KkK+xafS@!@S(qOXB0sqohZ^9p=@XeiD9>
zFi65+?*9ky10)QTz(*i4!q~@x!yx2%EE+r(LnQnvVJM?w%#VHgul*R^dw*!|W06_J
z?GK)elrW0hLc%NwqZx^WDH48@Fjm4i36msDmM~tz1a62YzOUd!miZ?l^AjK2jI_Sp
zX#GS?ej<3KfI~4)l`u`hbO|#gEPo<)%2B+Rgs0S|q>L+*KknEQk?E<JEn$v?MG_WE
zm@8qPg!vK{u#_GM6?rNeJQahUiiJVFcpmld*KynrDYGfT5(!HsEMv66tCNv%_YbkN
zpNd;O;<r8(C69zoJ{7AZtd?+G!XFaWNLVXjr-WS+)=5||VY7rS!M7VEY?QD`^7rfA
zdMe%(3pcc)-aQpjlj65Z*d}4SgdLK<(w*d)|98uEDm39qIP)`6<e8}bOzf7hN5Xyy
z2PEv}vH}nMeF5f<&wRGb9Tq+);gE#G5{_^aJQE9_iKEX1JNm}wkGafw2~TQ8|1RMe
zvwD<B_?+Wwahxmhr-Ty{E=jm7;V%g%C7h9PR>I#B{*iD>!f960TrvHgi*e6|zuNL#
z@H8)%xaYYzC*iz=3lc5{l$?1k3Z#pv8XuSaW$f+eLVYfxUx+Ibu1dHq;f{oB60S?Q
zDd86555~DS*qFQ!1z-3GYrGI0UWfrN#QYcHu7rCM?n`(OVBYgW{QW{)`VdlHh*U3q
z;M_08BMFZgkAi;`JdyB}@yoa_<C%o#tV%Lk$ao>)B^Mzhql{M)UbALNNFd{lgtrn5
z38sYqBwiMTEJ2a*Ucv_n5eZUIZrhh)92Xak-u6=b6_krte(9<NO@hw$Ex2W?RWZmk
zc_l0fwuFxoK1pyGhJOLvtP*do6f**tRj<T>SK`Sl@mazb3120AWB6CR{mP$nW901k
zUE#H8@mkDzEg&PIjCdJg8Hr>hmJuT(Rz?yTQ8J=s-YD(=0$5x*-TYeo{#x96?IZai
z#!us9B$bg&M(MuEIF#$h;8lh<qS6~7WRQ$hGE&P(E+d7ElmV)KZ~PBe2I+}6;`tkq
zMn+m0>13pr**#UHf9nI3cq>}G6@7yI_P62(8JT31lTltqW*J#z6p&F+MphZwWaO5S
zM@DuTIb`INk&D|X`0&$Pf5@NrdVKQ#MBe{I&HsGNd1d62kzZ!#7BS>MvFtxFx3S-m
zIQE|?B%`p55;984C?cb%jAAm1%e>$o^(OdMyc0Rzi7M|zt9N4TJ5h=&E~AW$vO(20
zzVp4I_$ShGNK*E<x%N)HekUr(s3@bhj5;!Ylu=1WRT<R+_{uW+pF|ZI?3KYk&`<At
z@~X?IA)}^@S~3>$#NB)UlretJ)4XH5h8w*XgWij}GU~}_ETf5x`Z5~GXegtRj5Slj
zv)_y3@5S5qJX7cY&eDDmc|VBy>-<J+Dx;YU><v}>AO?K!%W5g3m5c>kkc`$c+Q|4-
z#!wk;WwevgQ${c5l8g>Ax-h{qI?CuI<0l!NW!}IWd*FjV<2vqm=<Ema@`G>!oLyyf
zlhIv953X`V42TGxr|mx_yffmL$k*|R=q;m<i~%wR%IGVjA7f)y$lO5^AxV^#L<>nw
z4WeDK{qG`)GpjL3#$XvkWH$R^wIu$M#B)hFl8<wkjNvjS%a|f#gp83g#>yBMaCnrA
z(K5zxL8tw(&y4e7A&ay7;tI-Qyo?DlCd!y3qq^+l=^~3=LFTe7k|-j-B7T!GRmLnC
zvt>+^F<r(C88eylis+$;QHofq_#gh4Nz{B8m4=U~kTF-rJQ?$ulRt#LbiQ02QG}w1
zkSemOqPi*;$yh97zl;MimdIEtW21~sGM33$&Mhcot&9~iR?1i<V>Po{^^2IPiZ!Y@
zqKb>b?Y}{~PR4o}8(3R4vG;ov@Aycsi4vNqp^42hw#e8i^BF_fDr1|B?J{;SpEZ&H
zgD*}CHE}=_w>0rq6D_}lcgxr#W3P;T0pE_c5#KdYQ1^>w=XOqO=;EM^Lo)uB@sEtd
zGLFbNF5?dwM`ipj<5=(^L-r58nyL%lR>`|x|CDh;#$Pf{1^`=i@u%+ZGfmzwhWod#
zb-`QtPRTee<ARKfGS0|2E90Du^8x&a*HKZ1FJ|ctf8fmcOB>>njLR~v$hgY#Z-^m=
z?{r-}SzN19(aQ~S((nnsA>$@1k%HO^ZppaKW=cW4f;%$q%Ftx!GVaN^&vskJYZ(t@
zJe2X2O^1wsWjvDcSjH1JO{O0Yvyds2_ept}-^3KXOfk<C&)N7hg{Se7`F1qK&Y3)G
z*Y}h!X4_2hM#fti5gC$<|75(A@m|IUW}WHN_RJK*62~rvr@W6ZV2OH`kYy-ra6Tqb
zS<VN<cd~r2QI^<Yi5HeIWSDFl6+nT-=19gT8J}f1GF%y+jE|gJBDF2J`^_Jgw8f4p
zF`aF(%NAc`e3kJ{#&@=CFQd-dKITT><6qdm*CIP3eX~VE1&I_yD+npRp-8MCiGrvg
zAMc3Fj{ivqM~rnujDlDNaSD<uc(XFJ)DedqarR{>mlpTX5s6&EUHY&Bp&-A40t!e$
zas`<bWLA(uK}rSb6r@*>N<nG`X%wVYFluN#w`^fo)OJN`HTL@TDBd2}-4z)E0x~N2
zA;@qb%7w1j<BGGcc<hQS3bHE5r69M0Yznd~$e|#o0+m1XM19Yvd7LLo&h|&OYdn!h
zL0$#<6qMSFQ=UlhQDpll8hsSqKKhUa6%<lXUO@!~g%uQ0P?8}P6je}6L2(5o6yKw7
z_(w56fIs<B-2NycAA>z03d$%btDu~Mp54OC+t4SG>657VNwog-|0i=QD)>=BRRz@)
zR8mk`@u!rlD7;7)JK&S}+LpIuMKk`@pL}AfE2yEMrh-GC#QETf9Hgl}i#iJGD)>#o
zR0Z`E)K}0;L2m^O6f{)OPC<JGjTAOeXrZ8`f+h-@Drlylxq^b9Mdi<;>1WaNvp<9%
zm(K6##zu=)3R){@qo8fT=SiP^8kT+*ohrrb{wz*^7RG1MK|x1;tDvibP6~cf&{;tj
zZr?AWz!%Z^i~k8<qrQkOLB5-U?h1M^Lzthp!WX`Xr@?bQNV9(R;rl4)t6+qJkqY`L
z_(j2B1w$0{S1>@qKm~&o@WG}<1K>JeMf<OQ{Hqbc?XL=kDj23<xZ>{!p7m86{VKZm
z^R@3@0KoIHqZEu*FhRjY1!EM9Wk?0%gF51yPXPNGolhB)<(nuG+)h$3Ie0sT`NmJa
z@no7<@Xg=av-6vnreL~)O$s(En4w^%f@KPpE10EVwt@u;hhfAV1#=b5Q!rlvud`fd
z3|+&c8plk0<D1-1-$btOVv&Ny3YM@qadGLRS@LUt7yZ8bJ7>AC!aFa<e-|qhtW>Z@
z!CD2Y0+Ln-DI?kXUHtJ~JoqlwDOj&ygMy8Ue=s_~icdhr6A))=B%oeFW(zY=!9f-z
z1=|#CSFlIHUIjZ8>{PHz!EOap63~(av^N3qjBEWIF&7fh!vtg}pnVK>l9wrQK*95D
zalB~An3IEsaa<@h>ac<%3XUuIL%~r6zcUT2<CI`NXb*@3$R$WfSrSsQg!HF^6AJ!P
za5AXEPYH=<VtJ`$ctW4lnL&C=!D+S+DpIOAqu?xSu>wuu!?SQ+!6OBa6<knokuAA`
z+X^lzxUArYf}0BNCZsE@+O5LZ6eLJQR~2^1kL672M0A~vOd?{VS1l2>O+-9_xjbXs
z9sWeYLk0f^^l-=vCgYxh`wAYg)<^rC<cl-I6ZsTc55kKR(Gvwv6}(dLTER1Bh=Lai
zUIrL4MdF9VN1sbXv-gISM8rbHU%gTAR>6A(AK1htrmBglRbu)tfPbgp@0m#lC#Hx3
ziA_NgzmzG7X<cHH6)0TO#Pm2ZX^AOS64DhIY@AgjR$;R7SMW)}X9czbM}e!rW9?2t
zJkH{E<laeWVStTy0DWW$wEQ!pzbN?1KMoZMRcuQ_cbkQoA>R~yXLhMz7sTU9=t&a#
z!q@&#iYUqxMeM<tL`9T}I2B1%M5_p?h*1%%`uf<kc(_s&wTz;_(!~958-AZCN~R)S
zMOcMUF+PggrH^iKz~8yKIEwa1QHB#CQjuKse=d)r{Q9O+ky=F+6;)NFQIS?fZWVb{
zq*IYzMP?OQRAf+*QN<4`GO73+Md_o7eMMq&#}$mGmeIr>-MynJtBPzYa;nIsf<ums
zji&4>4n_M#<Oqtp7vv++lpsXuLX=lUJ{5&k6j701MFABBRTN^W%O6uRL|tCQbqdks
z5b+AgnGmu6c2O0@RFqUvO7(p^i>pvWH15w(2^9}Q#1|KoG={i;!r@R#t0==V+)VIQ
zRz<lWUp`1H{NMA6LFUIGt)!xIkYRTz{-m0U>MELWqo}B%qNa*^D(b7KrJ}ZqIx6aN
zO=J8L*|~Im`na+&)IEmA#84SGs)34zDjKP1tb*f#%#WchF?2D8IFuQWL^vMHvlwco
zqPdDTD%z@Op`xXVRw`Pnuwp2AEES8T8nMKU%dS3sQb)IsrFJUXtLUJjql)3N#2%Q5
zO2*CN=eOdv#u6`WpN^%@D!QonL&u*wepb<y8LOkHj&3Tts~DhRpoShQdaAHhI4XLn
z=*?2ZqR8vND*CFJu40CYeky)ZF-pZ~75(``6~C$&s$!suK`I8T7@|UsrNnWRD~{Ml
znnP?gkE333G%JpVF?lLRs2Iu2OcuQ<j&iT_?d_>J+LR=k=PEfrM#WealT=JrF^)x4
z#RL@-ReX)3v`MLOQet2FdP%86QW}$#)+D7VDt=QjRmC)BloC>sQfN>(IvIV)9i1&1
zRY>Ny!b}yjR4iAqLd9$qb5tx;u}H;S74uZgSFwOK=tX@0WW<w2cOpJXvy#!?;M>J2
zmZ;pLz_LI}IRwO&WVG^i?B8E}#|9%AC5oq&DpsjjuVRCW)hgDgSgT?k3uHVsil^@J
zG$x)l#M7C0dK6DQIlNKDCKa1iYzc7c@kC+D9;Rwx8Xu-}VR{^<?J9PtIH%&gik&KU
zsW_(MxQg8>_NX|>x}##RihU~ft2m(IOPE>->LvX8P7}oAqYHvQ2|BFeh>D{serG);
z|7{VX*+g4|{GUXB)QtW^#h)tvR`HLD6Ds~<)lMN!GFR`3heX+v`(IT~PVJM^DHW$#
z2UVQqMhu>NpW+rLr@hIE2Uhoz({4WhOT|SM|FIgXxTNB;iW@3!s<@)!s)}nWuCtm1
z8-5urr6BGqR8JV@u^tP+Efu#_yixI%tNb#qU<$g!QoSv7R|N-hxu@bjt8<X&+b2Qh
zVUYf-;?e&-f6QiZTZjRks(2PWe6Hfv|Gj;o;^qJ4{|ELuxaF^^rJ%kkh)<<ll7il=
z_`o(qg{C5+LSm^_p|BNt5z9Tm?J4L|3aakK*`|N;DQ`{HRTymfSxHssDJV%wpJ_j&
zq%tXqw?D5=N&8ZgtHNXJr=g^Vk19T~Mb(g2!)I<jw%ZzFHGEa^O+_LNi8Xvzkw619
zB-DI^d?zJI0b0(7Q~CHyr=lbpqBKNn2x;I5IsNB_`=+8JA~Y=(F`W#vITgieNUDJ}
zB-fBkL%fEt2BG0}Dq?y5bSs`u2Fa6}>Zhh2scBp?kwQaC4XHGw)-XRc?MzL#Qq!l@
zG(7>Yy!hpoPebW6q}PyJLmmwoG-T9}RYNunKWNCLA+yF|Fws2?ElA_HZ=1gHd(zOw
zOW_o0=}N8W>>6@t$f+ThhGJ=bgbmUX&wl@!mgc0Tt7++FTFR>-pN2vj3Tw!(p@4>h
z0TbfVQSNlqcV;~Q;1)d$@s`pe8j3O=4aGH-OXp+bt4TWIe=8sI%X#)fETy5ehGrU?
zYbc|ktcIEzYB9XV5u{OBLlq4bG*r~^qlQWv`lO>t>1bm*Iv*f>l#c9l6iQE3HB{43
zT|*5fiEq<Wuk^&L0Nc{j>GWhi_E+<3YpA24p@v2p>T0N`p}vL&{P3%ImY#TvqM4pj
zJ&G-tff{A-sco#GiH4>c{@jZp8E9n&I+B6TZwcMXKu!i~p`j&LTtin4tu(aO&_P2-
z4Q({E)zD5udkt|JDR;)8T{6<Rus^TWE+fs&NS!qNq@lBhE*g$xq}Lhgdqzt01MSTo
zUH%7Z@B?-Jfx2-saeX!PW&5w8r-oh{dTTflfU$|=P-*XeAm3klTZp^9{eo8bMMHlk
zrcq2xCMuALT4nM}pO}dTX&B69X*jB3h=yM^EY+|~!%z*wG)&VlUBhq<BQ%WDFkZt*
z4Wl%S)-XoHs!Y`2YW(j3s<E2yHTNkK<;YC8G7-B^Owce<!z2xpx%o0vx6HKbp>L=s
zWTq(^e$y~DAZ%x5I-S`khR<2%quys|n5khNi?N1T8fI&lqhT&9OBTwUg*q1X2Ufhj
zs7n?)S|j?mEVMwwLXD$9W3h$}S%`zloXJAZvd|I@P8Q0Ql{oGSf0AWt{BjK|G;Gtb
zUBgNyp5ZlY)UaB^8V&0-tmpR1N*rabS5{ifG-UOu;)@UOKFD~o(k2a?HEhwaHK4rA
z$oTtNNzO{)Y{b(PKV&1edpk7j)UZ#(ehs@c?AEYH!(PpwA1I!UIDkpxY&0qx9nMDA
zv(fu(bU?#F4Tm%wW~s<d&9f8Rg#VR0D?44x?$hwQhGQCRu91f08vfAmK*K{8KW=ml
zmo!{v=4&{q;f#i}8vfSskA_ohE;PIkFeJ!9S#nT=9K;s8e-0n#ISuDET+nclTR8`f
zHo^yk=XZ0^`yBK=2NlanS2SGJa7)8&4c9bW*Kk9_&7ki83;on3CymQVD{|7ooOC@W
z-O+GY!#xf6HN4JAr@zG~$VI7hQIlN6CtUQ-MZ0s+zZxEC_)o(-4UaWE(eP5kD-BOI
zJk#)8!;1hvH!%~*)6}PP5ihAc%;nSkTEiO+Z#D4Tj*^Qq=cbCeiF?9La#N4o^j^aU
z4XOrBLqvn5LDrxIz$0?g{@gS_Z`_&O^kdmDZ`l7YH|ZJ-4W<T5L-stx<4`W5aUQ?8
zlvShq<?*`~t_F{ds*W@|K5F>Hc3VeC$7c;+*v{)nsN<`KZ*2KBB;bA;PlV>7qj`L4
zr96bZls^)iE-xk0kyu9(9Z><y<aDA!UTT?_`sZb;Xj5JvK1N5Z4xxi|#OX+?Bbko)
z0RC!TiUcq`s%1#l@vx4R|Azg!J{>7IuOn3enIaz*$>(FMm5<uxqlrO2t&Vg$a_Y#X
zBfX9cI<n}<sw1P0A9Q5Wky*#`d~_inz0XHE@>8??G$udo$?xOIrX#zKRVR=mz<)bG
zv8Nn!Mh@QQ){#d?0UZT{w|RBs(~(~X&(A~`pd1CLd;w})fch067V<*6FY1K@Nba*u
zEkHX8P%$0Fbqvw*tBw*nO6q8;qnVCUI!f!PuA_#IGCIoY_)$kC9p!YC*HM9s(D9}K
zB`rvG3ljUgwmt3Jmca%6&U0lQRdiI<QBB8*f_^R7$(H>vuN9=$SN(a6mj$V&j#@hE
z>u8{(wvIYF>guQ$&=y~aI3`TlLe#VnbuUDd3eg{hsG*KVIvVR}qT^~IG71qd#b){(
z%PXX53j0McPnzp!p`(Y6o;q6UXr-f*j-Pb2*3m{sdmSB^SB0r9zbZ`Tai8FJL5Y<L
z6Z^Zm+2T4fi$=xwFHC#?3U$`eg?sxty6ad_m`)WY-hueDj;@R<9LHC55z1eLek?*9
zkFiY=>ZPN%j{Z6Z=;))Pua15?e$g?w2rVx{Y^&Klj8l$vwyy|XE<yu!?6`|T44~tA
z5&B#>=35cs>QpI8e`Sjqs$-arWh@vvhU*xiV}_2II!5XkrDL*=DLO{$7^7pXj&Ztg
zd)aw|Yt*7Bjpuee5t>nyCIq$XSCl5|n8f1Ez9mVL^0lQX{ib88j%hlk>$qE#QWv9w
z#i(vE;_yxViqXPiw7(e5(lMLsu4AE&IXdR*n5Sbt-zJV`=cO7&!WWCt>tgh^7^N!i
zH^Cwui*+o~v6N+|I5jCw{fZMGLCZ%WtSC;r0qs_CTA^d5j_q7`mTDcVb!^nJNyi!;
zYjv#Wis)F!I-WN!RD#%FR|+s^D?xor(Bcxri_V*Mj;D>SI=1Q9S%Ut!7UEEE&r1-;
zUF6f`d0)@1_fb1_?Bb@>aY)B*9eZ@_)v=F1jG;6oec@?PlJ;}Umh{O!P?DyWqyx;5
zlEj-*59>Ih<Cu=)EKcOF;2+iTswDlc<4Z~6D{U!%;-x?-YF&!hx#)zBzqr08%9=Q-
z<8K{D4g7B4A04MyYYbE}a9YP19Wap4z*!yV7@>~WI?n63!2H*7Psc?amvmg$aYM&t
z9amV+bzEb`EJZVe64#fabEW7}DWB#{rRk=QTRLv*xTE`LO%^XrO-s|D(lom?rAZ|A
zl=i{y>v*8!iH@f_9_sj4$0Hq&b(}3tC__!k5WAoc-X700$s@~9<BxIASQK@<(D9O$
zw^GdZGIXU3eJJCjqOw$?EY&SbZ*;uXVd}7S{HNoc4q1ny<Gqd#IwCqGR)Mm#q%7?S
zRP0z;-;!S~ORvh3szcME>o9bDFH7mlQRQ;<?pu7@ax|<QEiXs^lp|Y*!xo;ot;5yf
zvE|qCi3uy`laaK%pOz}`<Lq3X4wa{`I=(SB9SIEI{=X<sP1Gp8JcTPzt_oDI0`;mu
zi3}t*ki|e&14#@-8Axs*g@I@TAp=PbBr_0WAl5)!fP^OuCsv?8D$uJ66skxUYlY$s
zgbfG-WFT!tDp!$ORU~Ct{IH6&x*{E^NLEEkX&{w>^ae5*NNpeuLmEhDfPF2PFkS|Y
zp6f4RumLahqi;Gg8u-CLCIgub)cuiW|L9lk&mT$tk<wJ6A(i~wYzDF$C}N<ffgA>M
z8pvlLzkyr^avR8FAg_T9mFRdSx?P^5)016^I9MMKQhx0pE?}UbfkFlfbCoMo=E_vJ
zGL5KAb1IWrnUYlT$1=qX6gN=DKv@GN43sob%0OwRzlvXap&;#$Cx$0Bt5%^7Rj8bS
z@&+mxsAynZ6<Se+_Ezx+EH|sr|N106s;z9Gih<Dv#u%t-pqhc740JY7-9QZkO${_N
zP}4vygIBoFz(8#Sb(jMN>KS-dg?P^q?>6Gn6IAtSC|H#~)CxB=(8xez15Fr7RT@^6
zmRF_yRp~}m`rj1so2t~@KnnwH4YV`R(m*Q%tqrs>@VzSKtVZ>!QI~3@{}8utmA?gh
zNHuD2po4*q209s7Rn0H!*1IUX8nvzN=Lc1%HPxvL%Y%Ud1_m1FYM`5e-Uj*@=x(5g
zfu06>v9ebu-WB_(I$6~zTMcSbgZkH?X*H;?fqn*lG0@-eeT;Y3pmQ~R%+EOuM`x%>
z>=Hc4z+eNz4U8}_#K5lxh8h?a2w~}(w76)rAMcBuc52eBnsl|M|M^G*qnM3>zx11$
zl%y7wy%8SE&0%0ASH!@00}~9)HZaG)L<5ryOfxXuz+?kc4E$zbD(gZmA61PYZB~nV
z2ARdRXhu-<OarqF@Wj#1T6CipIl<d3wP~(_c?K36SYlwlfdvMy<6{vEup>&;rpC3Y
ze{Gsnn>ZNJ`r34|HZ3)<%)oL3D_DK%5FaR6pbmAfLsRO|KO&C9r!x(!4XiP+!@y1h
zYYnV3u*tw?19uN%J<GO%jhxTx$9&#Z$EW#v9Wv|C76V%iY%{Rk@Mp$S)TI)2sX<*I
zfKSrtR+pyNrCkPg8`y8)fPp<sWNd=H2KI4Tb?JOvdQq1W)}z$*h}Sm{8aQO&uz@26
zM&1gQsOQfv)~`oD)uYk%Xk$J4yB-}gaNNKr1D_52VQ`34JY>~2aKgY}1}+=8V&J5K
zzuCeYILG$iz$v!;2F@7J>QSeIA^xfHAFWV*s$8Eq$PANu-oOO|7Y$ruS*=e4>eKT2
zbfP}#^(koss@cGww7hEInt|H}?ijdk;D&*l25#|(UqssmG`4|X<@pV0cLRFcfI<!F
zu7P_7?i+Z(rlTQMYv}*8I0yjGes^z3;~LW9hV;n5V*?)yL<~GJ@YKL-18)pG<3=~|
zlGV__-iFjPU-$)=zA@}H^zCh<M%25JU);)~F>ek0$5L(JePG|FG@@m}tCz|C|L7@U
zKOq^A4VVTj1BwCFfNsEG_30!umd3QvtdjpUBBc>UH}=uyY)nlahHV3m0nflkZj^j+
zZXl3%YDQNHU|1zf&j|NvOvir@e=+ctjjf4{Ccd$nvn4l?%tQhcFcD=U+C)MViA*Fm
zk;KG=#(r0Ab7Q*Im?DjdH7i*Y%HD)RCSpv)nus$|vk8r8LOg~&R6M*TPt1}gbh8N^
z*p(pOMA$?s6RAxI6J#QViIgUin|R-ZVwzHhro_>JpC<4vJj*ukc`4MC(wMx+j&vr{
zo2cHDIyR+jQf&XGw5TavYf5%g63yrb6PZlpH&MVuW)oRV<TR1XL{<~oOk_8a!vwqW
zWN$`In^B);G_e`2HKSHFqvC}`ZWDP-<Ta7c1S`c~&FEz6xRC|Jcbn1IX7u7)9Q*wi
zG*QSzF%!j2|NmInL=h838F_PRmck#-@X|x_3NeG5Qwb9#O_VZGI)I$ooQ^g3+vRGI
zK5tG=b1G+|yor$}MwzH!qN0g*Cfb|$(L^N^^-VM|QQ1Tl=A?;QCaRjK#&tJQgZb8i
z{=OIHEh>3iQ0o>nq6O`0K`*j}Yn!NJqOOU0CODWOyCmIeL2p}7zLr$CCH>rz#<!$~
zCK{P&VWOpp#wMDWXlA0hiKZr&x1?czg^skO(f4CG?Bt`C6mCV?T2ZN1)XGF_6Kzbi
zWs>R$Zj`#MsAnsh-HM`9`+~Zm6?HJt(L^5;eNA*S@so*eCc2yGY@!SE!9-V+1AvEl
z>pJhIjNc#sS1WqeiZ-4NeQiZOO!PF-%S3MmZcW<3(7e`kqP5R7c0PICn$9Ii+Rwx<
zCWe^!)kJ?2156AuF_?w34GlEG`%U=Rog8f_CMJ%3Yg_aWbH|`-8yae2n2F&gMwpo0
zhIscnk2+mD>PQ=s+fb^uRJbjTHZjJ;M-!h+j5RUN#GfWkm>AEZZeopzwI(K-m}Fv}
ziTNfbo0wu^hKZRbels!E#55DrneA<fi{{_=;I_25EuCyjT;iR!G>eNiF^9#^gxZ$a
zOMz#!(zm0g?Py>-+SiVxcC^66LKDll6_`sV7MoaNVyOvkW%in8CmFOSj+~aWJyk3p
z<~6$&CRUnQWnwjpO?w*Kp4POd-`o2fdmN;0ds=5=y@@?0_L|sWVxx&|CbpZ{WMVUO
z%*0mKyAG7619j}+PeYCDKnpvN*MV|$q#Y)9n%HGxHw#`zYSob@bfm={X?I8B?T{xs
z68}f`nb>dQh>4>n4wyJ-;*g2M%%3OXc}I%tL>!r)51M3>a&)5Bo#=NH$4neI@rQ{I
z^<&0&q8}qsYdZNfFG~=8s1u#*M1OJT-^61RPfYx6vNH^>nYeD^l!?<OE||Dz;*5#2
zCeE2SZ{kHK@_r9F0TTL&3jE|_tML<EGI80&6%$ukEPtW_Khcih)rFsk*Zp7pMAVsX
zn7C=;9xIE9TPALsxMSijD|KgT(wSy;rY)U`4@hMnm{*<YQ)hZ$;-QIuO*~>F*2OQV
zSQl#1g$8t?X~FH*F7(vIGZT^t*~D`u&%|33|CxAc;+2WlCf=~>y^g!sh2-E9Hl(pX
z`>2ZlOz+qRGG|Og*a|(4t@AT+R1*%F()ni^^)t=-nRxG*!Xm_PO;{#06S@f_Ff!|Y
zrn5hj_p`syvq%a3S}1Ira7?%+JZ|N##B;N}{>#yLDt7f(vbaPJ2J+d&7ZYVHl(q1c
zjlYQu7BX7+&c@$DG7Iq*U?HJ}XbT|=i7X_xki<fig$`Y*UssyYm3Y*{dptLGrQ==c
zL05{g5NjdMLQ;n8Mg_W2^=`z+)9}0~$71c&jYf2%umxcum4(z6$U<@pDJ-P4e7njp
ztGm(RZuGbtdEF>|cPiSQ(pX4qA)STv7HW5=f!+P;aJZ!9-DzicpL@5u(+?IhS;%K0
zzlF>evRKGzA(w@$7P48$ZXpL(q=yfjIY>EEs0UT<L7jV0?x5&A7V=tH@PBWQ^q@;U
z$nHS}EEKd*%tCPsg)9`dP{cw}ro1QR?MXd*()gaVz9(JjNm@_pkWrMdP|`vv3#FMA
zy{L098rh59w+qkhMK^kp*^B0f;>%emZ=tn?HWn&asA!?Cg?bi#v{1?7b$QgVP}xEi
z3so&t<Dv_R<h?0RZ{poyyuG(^ZyMN}cx}C=g<8xL3w11T)G1zgUD2CP_ofHE>058&
z@hta{>sx4Gp{a#t78+V;WTCNzCY%<a+<mBd(&$sS;%fFG-hJG$4-Mld7Ft+nX`vP4
zY#6<;kB>0YhrairRDFHdj{JS8t%Y_LdRpjZp*;(Og)YoP3mq+Vvhb6I&P+Um^`(ED
zxM6*1W?!H4`}z{^-|T9kn}zNcdRTbWm)I*Zbw4WI&j;wyk4E>St^KICg+3MrSQu!b
zuZ4aVezDNs!ijz)_oGz5_`r>Sp&7r>reFNQ$RG=YEezpfUl=BMdnZU4EP2J~FTYT}
z0!fEk7-1p7SKuo~S{P+vgNKbCMq3!e1Uu;BV6264Tz4C-Y>c-sfkoX$w2g@tCRsRV
z;k<>(7N%I(WMQ*~-z-eEu-L*93)3u2w=mbjJPR`{%(O7e!feYwmOW2@`msN4Y9t!<
zr#Ti5^`{H{eM2<3Kh0;6v#`*@A`8#^Q|ti0Y8>X}kR8irHuC^tbGp>RG7GCMtg*1%
z!U}E|3#%;fhOBY}d^5{VK|_NN*__TBKx-|mv#_2k$S{lI_YI(%1L(~F`ZRzxvVtTM
z9LZtU{n&H^X^Vxe77klDVqu$w?H2Y}*lS^jg`F05S=jwQt;`%#bfDi8=rWMT3?z;w
z#6<41u;0P~3kR741L^ocx-pPG4fO5LA?9bbFz<iQGKfkKqN5gm=XSC1mxW^%j$8P{
z!k;XSgQ)8uzrHKuqA#V7n=pv@OxP8J=%j_eEu6M+#=<`V0jDgy8ARs?5l8pRI+zme
z2~`|SXSvY_(~*x+u`k2T2h#-$7cKl};hlv`7A{+OVBw*KD;BO=xMktCg=-eBTexB2
zrUec$F?>>(!->opOq&K12a1_=EE!K8-m!4k!aWQ38R1}J|DSVN1zRm;Fhvic2197j
z5c-!z*TM@%V&SocCl;P@^97_nwV<Sln>@t-rLyd;7~)s(uOY;Nb6;6_%@wimmWvod
z<$m>z&wyY35y#by@jHH{lfTk?3m+`@)x<{&5et$9-GX63X0#Sm3z`KsN)LYZdu#Tu
zlx!#!A4<ox*iJ*qv|w3qEV$gDm7|9aC7W%_C&3e;hmyq28A`kc#EX(_89rI~%(`F$
zHoma&xA2Y4KDW_OdN|Z4IMpyetuc%`4x_QdD4~r+HWJ%NVq^6%x;%_t1pr;jM%%+E
z`EbfHoI*BYY~;0(&ql0`I2-9~q_>gOMlu`8ZKSXfZzF6&*dQD1c2aRT{W_eU6^v$4
zpF5oRkQ$cclr~b?NMj?djnp<a52q8ui3MBs5^Tv9^LjYNk06c)#_>xt*vM!jtBq_n
zez1|rMrIpXY*ZLQ-A52_TK5n=WCX1oLF@y}@vO4j$YCR=ja)YNj-Xc~h_`aE5IQ3$
z_eg3ml5*R~WBb3MUL$GzNXl=cfQ@Q4s@o`NqmYe?Hh#2G*hUc><+&gmD@W4NkyO;i
z+mTev28SXn9;BQp5oAgRX{jJBZKF((DI28af|Q*B7&tu2AEoBzbQD#xQQ1Zn8&z%m
zI*Qhfq9db-BSf*&!kVL@arynTIBVFbX`{Z41~zKhsBNRJje0if*tjx^>W}uDPaj30
z(Zr(Ic{Gh4?a$dZw9&{$V;fDlYTX43=ep5!dNe&5O&r3gsf}hfzKy2lHd+K%#xXt~
zzPM-G+D022|JrzDqpgj0HWt}fY@@x64mO6_7;dAZjZQXxvC-egPc}N+=wYL$jV{bp
z8{KSl57=9740W~rldT$zp^0N?;~1L%HI~QJ=f+Sk8@+AxvC-GY!Gr$j{^b}-HI`b9
zr7>e^$yn-VWBXX*F7W^x18odp7TFkNV=xOduY$e9?_=r4Sb9B{csKV@F1lwt2a&r_
zCMNkfe;I3pjgdBfvoY1iC>x_~Otvw_#uyu8+2-4rz$_Z)*Ls|dUgK!SIO24ojZ5Qb
z64&LRFCJ$$`-Ht3M;yA4GaLqo&o`fDW4etwHs;!xVI#wM;_&ISZOpVWE2wqn@ib{X
zZ5&TW$J4d(^kzKGv%v?=EU+=(#^>>rX#y3VKpgaGVF1sWB{r7Y_}#`a8_R4gXLYc#
z#l{L2JR56mtm77+Ks_hWDz451T5V&EjRg~E&jdO(f!<A^^)@!x7%`DJ>`cr=+Q>~j
zkv6fiOr$asiStbVRvX)F>}Hi@-m;!LaXW1so=7`v%nJa%-j6#sk#?~nPog}NXs?ZZ
zHV!e2jr}$ba7)=ZJBiv&^8fFAjO@A~^J)?uv2m2;ZL;rQ#07nwM5QMaZ{ay^;|~^8
z8&_@oY2$>Ab2cB>j=yZ2v~kMDX&ZkBO!$Wx7<}G)GI54w<_wE2Z~vS^XPM^7<W44z
z#$0v^HJL&eY~TOz5^ML-&_x!)DKujWU1p9=p;J?Q0<PJ(&Pr$Fj*S~O9!#N|HaO7P
z<~@Fc%2VhTTY%qa;%~I;H@eFJY{aJ0JsbA}Vy^#2uYaRYMqK`>^w377sWf0JJ+|?L
zt&oFk4xZY0#&YN&p@Zi(Uf57<s5V~OcxB^18}B&3TfF8fPo=jk7%xI^f^^GNYWC8f
zqP#Vg-rJDa;7p?rHX{7hRQfd4CqDT!sxpmaR=sI7WEyEUbQ>RSe6nHKFl{(CR!t*|
zyDM)(HaB|OxM|af-Eug?KYiDR7d+&1Essp2JJaYh8-H%WRpOhCuQt9<qXN@|f~NcJ
z_}xYV$CviH)9Ln%xZcw#k%Pnz$U$-kNgPBuNai5k0l$iN5aS@$LCC>^>2&u&$em6+
zc@^g%spB7QoO=efnn68g5TBT~Vg~VOJ?voj3`#bWgoDyEsrgJw;UJ}h3=T3nNaY~4
zgMzator8WeiJjroI7sVY^Gu(@S3#QI!O&UMFL}(IS@eU0^|L6mgG|rjU(TXTj{g_t
zif3`~WtMLWvdyOK4stlC=AgQRoDOn1DCTg;8sv76hs$zM$U$BQeYPgZ?_kz!VjuW?
z4r<M&4zsC%!?QziduIEkw?7jq?4YOvV>T6W{LNoyX47MKZkyxVr4kNGIw<d;f`d|A
zH3wxK@SpVRKfW_SfjLx$an7L;bEsUvUVeCN4pn5Cc`hnDs6Cf{bWq8GJckm@rJQrg
z-%{<Ms)P1(X$-%;AGLHvd<_RR9W-^&jIr@o4jMXW<e-j&x(>L$4ID67JqH{zsD4lo
zZ=c^b*JnjcgP6;6sWFS_TuMF9_n>Rypx60OhNRK<Tx#y1g@ZN@+B#qx)sk=LQJ;C#
z%0cS@j6Kq;&ZC>vquVh_4mjdmM+esZs7dpvLr~C)dH!lbCkH<{I5f}a*yVW?GoOBT
z(AB{R7b9JCbI{$v2L}-cJsk9Ou))Db#?Rv9V6uZL+z<}>IvD0)ILm;8UmOf{FeoU3
z4?gS9Ei#{)&8Gnl^mFkO=hLS7G}yrqmNy5S=W^@34m0P6IygR`uFt1grDH}o7|H#7
z2jd)I0gZAnhD%)FzZ&fz%K~b+fEFyEtqX`v`gjKu987d@c>#S`K$9Hs4q}cfz#(lJ
zIW45$987gE&%t~L(;Q59Fq0+60dK2e6ZG|2XoiEkEyCp%QrCsFaUsoiaD5@oaWI#~
zW+8F@hecF<5iM}AklV|_GOpv9(4wHkgeOCb9V}svEuuOVqZcls*NbSmgB1?eI9Tgo
zrGr&W{9;<|;OipFvX~kzCO$NL*<!!$>m0Bn(|X50X5#2#dcBzJ#T2)MHn9>pIOE`~
zgDnoWIylJ9<Y1eF?MyjqWx(MbELTgY+Y%qu&frO|CA7!EUY4<n(QGsKIryA4dcT7M
ztcJ2L+Y<xe%}eOv5<2YQh=V^I{ORB*w{@SGV*!%iSphHl^ADk=bet_ouxlX0Qaa(_
zF9&}+_{YIX2ThjJ%%${srEiw|FQrq=x256JEC~sHdN>SY*+JnwOX-}0^A2u1xZ~i0
zgNqF2;D&=s+z{2pm8EorImrO!{TW(LuR6HKQn!@KEc5ZST}D%u(M|q#89iG@>z2_i
zCOdd_*TFqj5C<<D+-D(o@Yul<2OpQwLkIslc*K@)ITc(^wU<+m<+Oddk8oFf%u@%?
z7;-sr{_Jx4vYhg)pqCC_u{Jq)%NFLJ&}#>yR`|>P)mKov74)BjcdS7x=)HqED||eM
zgOs1dtt5#}frA1r3c64ns1Ae+a-p%<v(a#o$c5p+bl@?0jE6;wg>WU=CqqS6k`u7q
zWka#jUlUAsGBkK4ed4xr@ZCWI*SGLrSbiLQ3n15=3GF`><~62`D}8I0o&B#?((9E3
z7d(hy;KVMHxQKBP>mtg<=am$4ar6m#--wEKk#QCAPmRI&T&*}4JTsrn^`k^4busK~
zY@=0v?c!a8gK~SXB3_f4yNZ&#NZ}&0i!3fux=7_Bos0A?QoG<&Jkq$}SdPb55l6a6
z>*CESdi>h=c;w4lMH#qI7o6eSA6#T|QQ&TL*40#ZHKl(L%IYGUi(D>pbBU`dyNjGI
zeqBvDT->=5S8Q*H1AFp^OIA}J7yDP!*VUBI#o5)A*9ALSJz7oq15#72@$naOQP@Qb
z7cE^BaZ%JoH5b)g6mwDBMOhc+T$BjlOS&lKB5q@R!8KIcMb$OzgzuY5-qpx?j)BZG
zsO4Q$a8b!cWfwDw$5iAJT?|-5t=AB@0%y3y&Zk0ET<~pG7gN^Iwl%c*Txi0XPz@I~
zUDR_?-$jEPp;|8PuAw?XzIH$WAIVzRg}a7Qt);Fb!wp<CbkWpBGZ&3q_Q{EA?4pT_
z1+g){$4fXm&sx8@=s2Gn&0S;<Q}eYn%nQ2}MJpGrUG#L(%S9U(ZC!M7@so>oE_$q`
z4lZ`DrS>jHujMgX+`_fg(Z#8?bayRrB#q8o7B}cR>gEQ1;4Zqlhz|MssH~;$T5RHV
z)SdCTJk1_ed>z$a=X<L6cF~8M$;D6?eO>fpwy+Gi=)aDB;nW3hR9~}>o~-k`H;if!
ztHU}P>|zKrGaQax??24Ep31DJrt7I+a68P!r1do11@BPcx2x9ED5jZ($HNaE#<&>k
z;-ZU7F2=bS?_#ryEiNXw9EuPNTrA|zT}*Z{og0hW!o_bcrn$&^A+&EjO=aC&PjMUQ
z!g_kNo;WOI_6;<X%W^T-#hDE>n}2y5{Bq|ok)NYR1^L|@Xr7DtF5YdR&_*h@(Fa)M
zVzG<W+~_WrxLE39xr-GpmT`L}PFgR3VKC0GbYbrbZ`w$!T&%wm*J&g1K?(e7t&4Ro
zHoDjpNWyw%&PLkc;`m0ow~-QfezbGGl5C<&jbb7-Vz#>2=Hd?*f4bQ2Vuy<ZE)Kfb
z>H5e0>~^uo#V!`|Yf&7hwDBg|>tde^4i&hcrD79J+C+Oc(cMjc&qUiqhg=+X@w<y-
zLFq@>IIz-f_N$h7Gqv1Izig(}o9Va<4pPJq{|a86aPb#2idE0WNf&>!2nC=2<N6)u
z6kF)WE%abBjjkD82QjBv0=LkHE$nw1KE8#{xj66o8~rYDO}F?3@f_*nEp*w%6&E_2
zM;BLJTyyb)vAMYJ;)aWRF75|K+ziq?Tq75^gM9L>K9W3JsnS-u>-w=k`SyW}hpa@U
zqo2C?*To|jk6k=rwxp#VTZs>3WSC)FX~|Y%n8T;zpSgI>HghW#Fv2gl`XiTDE?#q6
zyLit=jBUvB&|9{0W#i(v`EUPY<;oDv+henAqYo}3%%5$f1P>(_azGdZ6mJ~j<t+{)
zpmJr|{^W>mzKw=&qX*l_bYZzj>>-H<+lAxeql-_hN~xn=E@(S>F4S!l+D@FWu$?};
z_`*%>0Uo}xMsKHYtXVFeo(T=!?sH)Bc3QKYPHd;HH$w?MB=V48hd+Y5yPYcTpr$)0
zif33nB=?ZQL&!snhol~od5HBec88B4&O?Ute&1lu4%)JV;yr{t@VpFp_-6-kC>3P~
zafH<bJAGib>N)M$lpa!fNb4b;htxYMwFf?HFO7#nJE=m>*akbP_fAUBXg&O~lWy;1
zud^^O2aMfGm(s;#@{rj>dk-BvWbu&ILuC(DJY@5b-9rfvB|YTukdv`_D9o5W<o1x?
zL&sf|$3tEZ=TgPw^U&gJ*xO0zcKKBClghiOfQNz}c-t34^246DqKbGZ>Y>?g-;HhE
zE-L2X?k+0s;qWfvOsd^fZa0<kP})N|59K|S@o->h{Pf*a)&tMoF_PoEeN+`ZRP^xq
zTIfe6_>Tm9{kNMq)K8*4RLMiPGybTss)uSG>U(J5p}L0}9%_52<N5#YnjZG<p;vpT
zmWK*^sMF23VS9)(pY~8)5A_0=<nhrQ2r>6wYUrVnhvr;C4~;#P-AkMHQZo-tJT&#t
zX)lf1OAr5!pSzc??<IXNwe--+!;F2@#zSjvj(xtMw%q5FU3DL|_0TTB&vUc<<nMjd
zk&$>9?_q+6pFDK-Fwnyw4_z3{Lr)LAJiOmW(fg?@S1sUYcMm-RBpLSmD^q3mQ>XpZ
zn+@`Q>gVAX4}CoJ^{{zAUEWX6_7evu>F@c=^aGd`2M7nK$N|6fJ_l&9hanzDdKl&5
zR}Xx|%rFnbJq-15>;T<6K-vL{I!Gft>`ClvboGNY<{*t`!Ojpj*29H^w2q$y#Oyyv
z<2<}PNFNST=nzfxFv-IL4+}j^_ArHc;$fzT-&l$c`K3?wP&dd-^Dv#MT|)g1(Ja17
z$M~0rIUeSEnC)TRAv%1BE*~QK5T!ay^E}M=z~0&%#31is;_lfZ4~v;I9@cnR;$f+W
z70ivp#6SII9+tBh9QI4(^FcZvrrn96S9(~*v>hg1%;o0{xz@w|!_@4E?`pfw!+KWm
zBgB!H3LNnPHZgfDil1=s6SjER>f!f~IQ9|SJZ$$+{3A+y#10QTJw!Z69(H-y?cth-
z>&!P6Hr6{2e|p&GVZVoi9u5T@JHUEWgtY(1)K@@XQGMag-c$GfF5G+1p}V`gBn?C*
zY(*6DucDxUC@O-9s9+*u&><=|D&5`P-QE40e%~A(Z@sn7+UuJ=`_$h1oS8W_)5TZQ
z#edVqv|O4FwL?EM;*!rmE=ml=#>)&so*4qi@y&)a&k%3U5c6_rel9IT1I(obxwH@u
z<(Xn>F8w+~EXu`xd|IL~7W^!jA#SUgS}{XJGeq@5cI}x0VMQ*j&ZRXlVlJ)9C2;PV
zDVCf_VOnHuF0IQYE7wAMMD;Nk{?<%%T-L^1+LTLsb7@~LZO)}FxwIX6%cW5>#a8rS
zvoIEy0p6BND`tvAGsRBy9<#(A^j&^-S1#>_#b=49XNh%RCop&R!7MR(me`+52Xg6H
zE*;OMgD`6@9YNEcB^J+$v&K(I52Ke*_-HPrXA7(j#XI&1Xlb_iY_>R+ODEB^XN#`0
z#T&Cld_b{M+LYONv!e6J+9B!Cg<QIrOJOcWxpXO)F6YvXT*^hGKwW+i*K;ZV9B~zo
z0O)geobTS*;?itUXSarrbQH$PB^RZFLmsk_g^vzujtJmybHr0~#5;2YE@#XUnnUD}
z<&f<VJ9J=<s6SU24jFTW4kwu#_j?`Y3ezDRf6;BONH~;qD6d0lhjPH2D^d>Sap>Q<
zV%J>Z%oT;_iCXhS&s~{E=823$S%<!yC;HA4^iXErk<`?ABA-L~9V+cm8HWluRM4Sf
z4i$IeH;qCL6?JHGp;Tdqia4}-o;Wfut{T?Ehw}vZB^)X_UzBp_{rRG#L$}S3?{=Oq
zcC!smS%=CwRNbK(4wZMPf<u)Zs^U;Zhv1Nv99lkK{4ihqJzwls5%mS4szc2dh-!$q
zAWrI`1!B+wQPZJX4&kt)x(@xcK-6|<;{s8~iC>N8ED+Zhh!P7$vxNfFa}6A7=+N5^
zz2i_LhZ;N7#i1u1YT{5+hwgFcUZjt5I@HFY+mTw?WOEdLpVi8t77n#^sKdfI-{%)%
zy<ZxkwG;RDUoI4PICQ5&cZ1fB9}Rao)D|jQD8?@o|EMTu7K(NbVJ2N)Bw9^P-{(+!
zhaPn3A*AV0M~5CjNfu$DGTrY`y+v^@*uH_cZtQ=-@|c$wiO&{^haGyvp>vDG;|@(<
zBp!9*wU>`M`0+<#wTiNPk?8Eu6R755(S5NPuvm;)ES_?xt3xk4)XSl#9qQ)L^A2@)
z=ou6qzOh8yzC=6=oi7&8smo1^#f`<H`VxU#FF4e>Mz*IznWCu|9qNHZmWUBc#7|4a
zrX}Jfht4b!>7{XLdpp#}q1PPh2eFQ#@>21NL#>vIz7D+#Juek_VZfJ5|D|HwQt`S&
zZ#vW;wXT|Z!=b551v(Za@|Hsb92)4*x~1a4Qh`H?j^7=BmAJqTy$1(&Xf!P1&<75E
z=FsO34RYv1hdyy=h(m*6!5P_+=Q1BT^x~Y@5Ff*@0_(A5apD7(iJ=aCw@gf3CV)Rx
zw!?v+U%=-b`o^IV4t?ds3-9rxjjvIvWnvgKyi6pQi+h%f;ZFQD^z3r+;p>@ik@a%%
z15$(IIkeVJ!w~(J3mlsC=W;O;WowjNg-eIVqTfcEi0jaJc$7mwJ2XLMJ;|XT9hwN!
z)DdWXp!>STziB(YTugRo?}#*h^_a6l{Nm7KD+GR3JO#~gMO=|4E5z>({Q-AELw4v-
zhyHTt@(M8(t?7vMw?qG}5ZhLW_g9FKD+KuV$~gQ7pMh_z6eU-RY3M*!iaIOB42Sxz
z6eCxPe^-jx4$VOy;!*>b=EA8Qy6Dg)hvqx909}nk2OV1I&?2-ihc-F1*r6q8qz<ic
z2t$|aR*Iz#?O!RDIrK_GL$Y{tSn1FzL|i4-qkn)HbOqz0J6a{mtP*WjiO#Fy8uec#
zn!l4?wMwK{iw)5H&`gEZVzWbA9NOv7E@<opu@yyKlGyIhHiufT7M)j%fvW{xFm^bU
zTRCU)YO&j)Jq{IKBO0s`dmY-Rl)T@et*hhBn>bnrD;Te=j<Y-D&|z5Cp;HbWap<T+
z#~nK1&@qQPtr0)|FFq6z;OjL4LzIix2z*M%c7eA$bRJ#3Lua9xHR6%AV*X3%@@vI8
zhp;UXKOr(6$S&VxjclKNd9AqY&=vHkE(w>eI&{q;%_VZ_I)oi^9CG0sYsKQV0z-ni
z4sBm6oVCJp$cIa;6X*j2heC%U^sWmMxK(1EzyMmqb@72A9oGqVNp~sXQqm>ErH|GL
z%ca@tgy~ZI?-TgD;`nu9(5Q^<lD|$sr8zF;TQBmuly)iQQXZG8tQT$8i!SR0&UD4h
z??>xJ#--oa3$Z~|-5@07T`KQV1())>RKTSYE|qktpo>FgMPZkUxKzlEcVt63m~<}c
zQZbkMZV<&?!p@5>8{*j$e4O4~IC@^oQ_7{XF5$(av`b}B;0<x9yf5-#5lcCjepHtj
ze5mMBC6{WrRMVx(D5Oi(T*6?;tPNrl3I>dmIyS@y8dO*OXhXc_yp~I~U23{f)N`qh
zlBugG`o{V7lVvx?7JOKp64}tDMkpr==~82tnz;0UOAjKhOU+O<m+o@uHWzdB)Y_#s
zF12u}rAx@}Bi+UeTliDlNL#7IAJ`bb!u8xJZg=UcjRN2fmu74ft2T<ZF5T@?CztMb
zshvxB>$}&b`&_!mr6Z~^Vv|_XKi%G?4lZ?c>FN4$e^on`flkVAiZxTEY7*<c@d#MF
zCiRd@54+SAVlF-6(xWJkOI=)g494vepE8QLkGs?v-Zdi8WRvK;N%Y<%o`fa`#G9uu
z`SSB7@svwjH;LR$qMJ+4xb%WcFG9VW#s6G-9-wOSS(l!J1~!XsJ9D~k79VUD-)t7$
zUHStubF3aN^>nG1OTArs$tAf(yzJ7Mx2gUX@%$F?;g(qDksVeam&R-nueemah8@+g
zfx&;xrG74b<I)J1UU%sYmj=TDTzb=`{w}=-uW;!tbURzbK$qTjX#nzSn8cx-SRIGu
z+3&dYu1i>)182kN2aYBN*uF)4;1cvd$fZBCu~AN;7%shHCGD-^W0yXGQ6S(_-K}DX
zOP{&)xl2P``qZT-w~7H<<AT8(zi?^n)_A`1OE(@A{b#FKyj655l-;#eeC-l`KvrQ}
zysv7wOV_rF>^AYOOW(OP2_Eax_b&b5(r8o}cHAa<ZxbVxV|=$wj6$iliH+L?{=GHU
zCG2~h;L<pk#=EqyMe4@3csd4aQ6}P@|KCL3?V{<v#ALkuL)(bxQoZfsXP2h9^ea?U
zIQ0v1?=CuS7r&|We@DLC<7Lu=w~MXY1&*!z3oUww_-BV$wnO~w(o{6t9dQL4?hqgD
z5dXO}&81x)?e=IoTolgfQ9F-jx-<(e<WhjH0~&T|ze@*T2$$x$w85o~F3opoflJF=
zTJF+9myYici(Ojc(ju44oucqg(PU@b3h=|DrBK4oIMX{iW>&bg(xo*nt#xUYORJ%-
zonpmKF=VG`d(wioTQ#-UxwH)@F2WhwiR!z=myI&bcZt6_y~(A`F70q>C)&>L#1@xE
z?h@PJy>R$l;^kd&7TaOaMoC;w-4!n#-{sOCxNhytZgdxVyjKqY9oq|4yM$u_R_+ow
zRTAGR2VFYk(pi_zxpWvU(WR3vokACSHgjp0IO@_dm#p1!`o~>50W0i|zy7di>Ym-=
zv>R`=KCmzWH|w!moPpCS$@4B<aOtv3SJ2N7&wjsKT!ayKi%TvoRswr=i>ol7OSvvN
z>eh9aZn%WefMy%w&ePv5#GW`)*Co%TihIN}eRA;La^D{D`W_L&d0Z;zQF)IvkI18}
zN5UiaNcSk|QI1E3N2W)%N7z+rdGS!joIT>u9x-xHyd)`sD0}0L^X2x6exGL0x>FwI
z@hGoHkL?v{k1`(N_eSsS6%+Ty#X!K~9O+R$kBWL!%%l7s74WFAM<@4+f*uv}sN_D;
zW}moTE3;We0e@d2RRjgtCx+~cR{$1=j7OzBDktm`9?jk-w(S$8Ju2f-SugIxPwf*Y
z4=3=`UYu7i_Q&~F@Tj6kjXi4OQ6-NmdsN$_Iv!O4f4`{i;V?9+>QOb1aQI={{o)TV
z)n&h^=~0))sp0!YEsx$(=^!Z_09e<fdLHHO7Y#hxek_5%?bP?^r~P8Ll4<BsBUOyd
z0dfBU(er?4>QOU~?(pbNk47I5w|UgUqm~{u_h{MyvFm`ibU?K7sI^CJJh~m3PE8j+
zC~6-Roezo+4+?zMPB<tqO@pt7yF6NbP_%`~j^#{0C=Mz9Js#cb(H9<l>Ct^2wfE=+
zk6!esgGU`bdK9+ssFO$cd-RY;4|{}@tRC<PqkPzb^&sT)ru>7V=ppflDt5g?vBof*
zg3jS_k2-tQ4Mz0n2^7quu1e-fk1k^(*dr{_dHj(0g;M<wi3x|qyhGw?k9HjrH;@Rj
zfYnB1yBrqJ0eI9M6+A2&E{RtxBa3Q><F^ig9v=1d=v|NA^XMgyUiPS;N3VO-3-~|r
zibs7t>g`b<kH#DpD-OrI_AVb5#g4?~eAUAMJKb|cym&+uZI&E-M7)6t!d@N?@aUH#
z0-wN3kBI&rfkOV=5i!uCw>^3X&UrK*tf+J}o@8lrG(L#zeUCoy=o62Icr?hP4?X$_
z_^24{#mhLmo=WvQDjqr-r-SgZ7mqWHJSv8I^eMdSn81ATKS#xiqvA7<K8K2q#&dA#
zW1{pi@s&rz&_jAO!=tY~8t%~~kAC#%8;?f7D^N8k6MmI9^}R<wc=R3AeoPEH7UzY3
zm;ZB2jPz)f_kSlh_Z|~`TvRzO#(FdX+B+`Bc{Coq?xIBV<Kn^N;x#WdQSm=K9;YxF
z{^`;09{u6b&&cbz_{F0s9)7bf%;DJ!$HlL3jKZnkJp653<T)X#oe-^0h(A60%cFlh
z`q!hsJ(`M$`>eGm#G@zTG+#O)hMf@qdH6%Fpp#-6;+_z1{FG^RQs7?|Gd-FGU-f7W
zTBt{JJX++@Vvpu}G!IICP)s=~=6eLqFYss~s#YqVtn7ADU=9n34?HQBz+@h+^az`p
zmm!gpV!1~vl>2R(m)L(&oINRwQ?YQ7Q(~3k-*ZZ=^=O?(8$H^jI;-{QB@XAzJQa6V
z8=#O=;*(QiGwz-e+t7HSPmi{GbncYsem*Y(zz&agqJugu+MgCr=gnewIbIKb-<#g!
z(OxtwpL+PT&!hclgFaR8>3~NE(SQ0xJ{|JtFzoKp6_1X1bkw6W9-Z~*m`BGwI^|K@
z_cJHpd#A-os6u6d@*g-Ya?Xg;=+n-KCTB$JGvb^_=MnvkxP)%ujJV+8zZK%5s^ddv
z#P~B})fs`kQF+gbs~%nR$nnVa=(<NYJi<2umI~*hmpdCP2fYWx06g^Ve`KCGD*_J(
z&I@0qh6A)ik0LLA0Bt=Udv(9Ff_>6`%K8}lBEu)sryQSBKB0TJe6oE?C|qO-PX88n
zKZ!H9MbgJv)&l3!=kY18k7Jod2C>e?`KEosf*F94>ay!OA$`i{Q!$^4`>{vm_o<Li
zg?%dEQ$asoDT*CQkbm=>7=KO_@#EppqCU=djS~R|EdjNk6Qz7A?Z+K{Nky-Nb6%A3
zsjN@sd>q#q@1eN+y!hXF@ymJfO)^>0r%FDx@#%J-D*IH$r^Y@t@u{j$)qJY!Q$3%m
z`&7fHuyC@rk5dXoO`mG{v}Z(O?|H!&M8OMj?sXt`LA-cD{Bc3l_o;zTjeMFoEzwXF
z1M8rQTu5Nu2&U9mTo8LNh^A18PtAR50i9H`Z$nL=kAJuc99$4BeQM=XYo7*R6xi?F
z;G*~|Z9jA|&S=j?afeTL`t+DjkNb3&Pi=kb;8RDG@S?cer+a+5*N^{J+)mLVmjs6W
z@AGkJgJ_SEUy2jK;~un=Pxt%upid9^I1C|PBl-Xm++}^GWFGeM;G;*Ow+;fYe~_Pa
zNhFTN)9#%QTb+G+0v7k_8K1iNG($z{id=kpN?EY@Wl{68=y+K??PJ@rDBU9Y(Pe=O
z{?DgpeR|F({GxQx?b+vj>h5F9q<F!{w$S)gJ*2<kvT!boqE|#upI-9mU!VT->1CgK
z`Sg`f!+h%PQy-t+_31sIUh%1~PjC9v-;am#UiGm@O!NbV=Tu0wxgt7W5wH972CTm%
z@x>J}`AS@ub89ni!HfL3iyPq6Kp#7Rgnl)?RracQ$Hy*=7(aMbyzkQoJ`MHhQ=bO;
z^r255`SdZ0eN}vTRSfpAAYc5ggg0CjpFo-8#1ORlYuO>K?BiF3aZQxICO%Vc@P$vG
z`&dgX`d$;CToYgV)V_~4`kI(|O?>UsaGxgm^rKJT_%y<&kv@&`>08*Sp7_qkdPU*1
zP2l19J#zH1s!+gHqHA#>t6UeOeH!P}cxc|Iv2c&;F(2Wz>*CAnVuDX!rZW?v#_M9s
zb#djoFmH&-KK<m=uRi_e)6YKr0^L3q$Etlpw7(&yz-l+ddpE@R8{&6W_&<I6%cnnl
zOv{RkHw5V4K27xr%Z>g~0=07EshN9o#q+swI@5fb?$ds>O1OtlGkx0N(?*|W!O&<&
zJ}vNR4%*tD94x>Xm`=_0X`WB-<cf(Z`ixw$(5FQ{;Yqg+nfkOu<+2o}c`=O_NMx}-
zS1j`}5-ygb5jkRoqAL|$rRZu!*C+~swNPEjB*1#~(vE28#O2%s)BCgy4he5}#5)cK
z-^3Ou9FE;M^^YS?IAVuSo+Ean)%&#5r(Ni#+<2rEZ(ne#y?%TwGuGDb^D&|&o^a!2
zUw6epxPea>P(q&$`*Z~Tp--oMIto2}m7UZebpoF6({WX=F|Ii4;&ob_^y8mxVMM){
zC(ihE7Pdxd)2V8nXzz*X&u7oU|2;9)!xJ#h=#o#DeR6zq<MvKh(Q&;bZm2Y`#oej6
z4ja|X9P|YCcXut2Y3Ykxb@ypsc(GTDmjV&`<ogu(^xf#h6koW$=oE;L0};VD0<ka<
z9FQK69Z{XFmJyH{&?6x|8j=NOK!*c55>O(bWI!VW8Wm7ZK&gQ44d}jr@&uGOplShC
z4=5c_CZG}ll?*5wkO-(?K!pO50p$zge*1+`<PT_DAPNLjBNX_0%@c}&pJdvGqOcMu
z8qkVR6bb14P>c!1^iUKFsCYo<LXnPQg;b41senocR4Jg!0hI};Y(VQHIA@%Gxq!+C
zG$<0imGFc}%#1`ub!+YJ#KlNd3F55*Wi*MMq*YNVO(Gy-jeu$f)H0w}0o4kqc0i2-
zY7)@uqIR8t>Ic*ypt=Fo3#eG3)JvLtPsM5&&^S#t3UF*`0&8PtYx1xr*W8{oNwzJN
zY#LCrfNn!kNj49tML<tcoEO4tB!3_|lVt0F+5~iWfMeWf9m(4Rx+9=F13D1vOx^{B
zpUbojXh<zP%W>RBEV1$Ao`CT8x3^i2V2SaB?kw8})FGf(19~l>jsbN-UIBFt=>C8n
zfHebpG@u6q!l&F0meqCnP=HDBSYvZpf`hm2#{zmhpe{k|PMrf<^L_G(0H<JyR=OOj
z%Za)K#<%&CLF}$8b@_Ba-2&<nP|tv#K~e!dA5iyzj_LB*fSyw+6gJ{AKdb1?XZi~P
zy%^BDhWyHqcG<X@zZB3PhU^_spMYKts26r`HL;gmPwz0KW5`#6c#TTmfa;i1ni9CX
zqWuDTJ)lpZnE(sV=*@uMgU<xiKcF8?IWVBNkxoDZg80-IaBzf++bOxzl<x!t@NPh!
z8J7(hG_Muo58ycgeHhT-fIbT7<AAW^uZ$({Qg^#p5+e+=EV<5-Lj(FWpsxcO9?)k2
zeIC$P0Syc2i-0a$@=K-I{C1pXRa>Gu04;3U)s~w_r@skk1eySg?*sZ)Nq!g5Vq3my
z%dc#iO~^_K*(xD_2<WjyoWkgU#sst>pp5~Ig}()~01mS(F+QLP0sS4&)PN=iG%27d
z0sV^V2Q(RtZd>9Pw9`uVPXXFE;mpQ?3ArdCuO=im(k7B|%FWAVe}jAAm)`+3O3L5i
zGf9aVu0PR6pt_{QHr@$IIW;N&3FzN|W(G7Xpxuh|UqI84by7|bXa-8S&w~HwCMDiv
zQaN$rvjduoa^}c6s*d2)&XMy1nh&?hkr>bKpCgCo$b|tdLiGb$641(kRw3&gxfC9C
z$yy%JH#IZM;KnVJ2XZ8(<O*=^Na0A&5goFt;a~x+4XAKRHcrJku0uZ%#D{DEcSy-T
ziuvs0*-ZiMgRbz?-hj3Qv^DO3Xh%Rh0qO{>G2R{!4(3|XS70;RF7!Wr#U8ZiD#<m2
zvb&MXpe)1?_CmcW39w(Kc0kdCiXKuFSu9G)qi6yFRSl_HNXG*@fvz&7JRxmQ$&&${
z59mTbrvf^S+#k-ILC=ORE04t4UuVHjNsL5c7PUhjc`=|%0U2T3NG}I;1q~sjAdl>t
zM_vu+T0qy)*z?Fw^2i$jjn5<3=aI+q$mw}xZa_{z00=Jp{1)~V2owz!jnHYFwID_z
zaY%YdGH;v+a;ctIw#_R|mAe&^9a18sWJt(8=T<S0Bg9Y!lrV2d>5z&k`AkSzBo)#J
zixW@hl^<2MMMwkk%CGav<G&{Ig_J*}0wMLUn<*Spk&p_8R4Ak=c_nsDBB|MV<%YcS
zXkJ+qiKOG^b9Y)652-{*B}2lN>M|jf4GE_clv3H1Ru~bxre(R1Duh%qr1Bx*NA}$c
z*q^3lrI0G4b{SbEqzUP`v`Z8%n33%>vU-Ro5#1M3`!H@+HAAWwQvHx>g;YDF6&bBg
z7*9gg4e5+J__UF*CuOt-AvFx?0^4_l)F`CJVSH{_%aEFc)HI~#A+<n)8QD7{n}u{+
zNW(G`KZl+CU_1<h@LNVM&q$nm*(#*gA+>=@TiVZzq}xM!X=h?k!bSkNGo-shYKww}
z)GnlZ!g#U4^zmASvvE3mGxFY$#@?MAR^L9CiR;xNq>drA%*q)Pvz<a5Vo!y$G5>*(
z9t`Qv-WupbA<h3y8+tH-wE+)@@ej5T^sIa=q{l;=9@31EI*0T`NS{HmAw@NlT|(-K
zf`#;CNKe5B!g#$sPQ(6RNKeBAS^0ieb_?klm=cG-&9O#g<+C9@7t&u@`8*799M65~
z9^%iU^1YP_%xu0GQjd`KWhM3+ppU`;A#S}K(rY303#nH~z2QPaRuZxgG%zj;@JdL1
zLwXgu67uFuUuO|l4R>D;>5Y)yghz$+Nk~INdJFy*5_SlF6w*M{F{F1w`bJ396vMfQ
z)mz1VH>7`rd@sbyMhp->P+*XvABHqo0sQO_xA0l?aY!3Q?2y$5WQL+qw-;C+_o;G1
zaFFa5A$<uS3u$6VU%}`hjS1t!I=&8Rcu3!c^gW6J?>Zd&z>b<393?jbX00o}Rf%l4
znDawO=Y>QV9nwgJM=2^~%tUA=<=BwMh15k#Yy<pS%JGnFpT$#qg_M&*`cWl?^zoRU
z9MVrA{T$M_M>D^L^m|CZgz+)vQ$qSRB%G^oL(07QWZ8W354Z;^8`8h98ay_i{5zzn
zDyawZ$+z;!N%`cmeDXv-iA5&=DgHD>N!ejOSw6qKFTb1_(k$3Cr2TM@kmiK6E~ND#
z&4nr1UK!G=kmkYnLRt{gLbS&T>80?f{1Q7r@e}GrAuWc7z;^j#vyRR$SLBz=LRyYC
zi1ypYu3tdjS3sW2FN+nBtI_&WskI@EYM1TPI=dz$(5DMXFtK9xn`4O$A#H)epUZ9x
zX_FG$4F7x~jaPbn5`u0GX&aoaW@bBdQb6v8nV_q($(<qXQj#dc+XW;9_Jr|16b!2D
z4QWpS=@*a(LOK}I)sU{CY*HSAN<%so(&3Pfgmm<l{!gIrFJ_Oy{gUE%NST6hy%1)#
z%brG>1!X}aa~Zu#NM}_PoalZIwnncK(nWNPOXw0xlFnc`F}jYP1?3YT#P2E}6qHxc
z(2NXzOn*J3(FLW8ZUI^M7dJx6g-YvY9MDAqOGNPFr+*4cKO`+8isDB}5YmC92+^)#
zk%AH*8pjGsj>s$&zu@T+Vec*0v6m?%4KO3JBC20V;+)<W3dx~`<grbOL`2Dm+7z;L
zB1%OBZRd&Tpq`Ww<&7vE(Q`>{+XX8VQ8prg#(UyR5z$R>d!uB&DDD&TM^qr9f)N#p
zsBlEZBPtQar&JY*sAxpR6h?vD{gRl5d<)4OBb8~CbPLIn5j7Z;mW5@_!m><6Wh44D
z#h<0PTtwv~TBGw?ohw9C5#?b{GgpeJazr(VYZBj6SXM#wh#E$8?-qPb#I%~C)fKG~
zQO$@TR!dQU+W0I|xUQo0Zt?3Yfar}-wTNnKTt{PUtY{L^cM*LbQPYT;MRZ$4%_C|N
zQOgKNGNw-NOso<qY(8ogQR|4_jp#inGossJors=|=#Gf)jOfXT{wgBxil}Ww_eb<V
zM0ZE@L}A$>qK*-@L)H;>S(~^wqWdChA5rhZ^6fPVJTe|%pBPqHg7#aV=oG1Sr@K;9
z3d^~L<%1DDgjf;b*sg~odL*L9p`s%4(TE;H33sJ1L9n^7{Bd1k^xDMP!m=}RjOh0j
ziAF^vQtnnneo{nYA?uT^vQI_SHKM1H!umwFh@MdZcvlg5zKAr7%I6|_9>s2B_lu}|
zL@z|tC!$v(dNHCN$`5-*IO$sUj0oW+#lhvviU|O_BlK2x0s2Pts*-{5Yf1)^;NOh$
zdPHwT^rp%VIS!1de?)IZG$10Jv;c|#KJeQLymL$Ptx@UsBl;ksPa+x;;j@uGjA(E~
zA4N3dY&tk(Rj-<PVodt3qOx2&`(t>~hUB9~C1zKL!sR0R8jU5Q&m#I9ettByzGNy#
z*dI2wzkoT4N`x;X`YNJf>T+;Vi2!DUOma?JI~bMzCL$b8J|d!T6#&lHLmN|6{t(fr
zh}LegMn*I$qR|nJiD*tlb0ZoX(Kxi7i2jUdd_)r>nhd9kXktW@kWO#y$B2F_DmQIU
zEbNv3qhjXR7HfV{`Ex|SfDco`C$HoT&@)pa!VBlGN{84OezB;m{6pfO>sHBc6HgpU
z{1wsP5lxF|dPGwr`X{1)Bl<6*OfiY$$Ube7Y*b7>SWI>=CI=Lg$4c8XBAOY|tcYgA
z^NY#<ipfOv%)VmMEhh67msN|)f=%ps5zUWiQ$(91S`g7fv{TeEqD2ucj%ayAD<XQT
zRcc8TpNVv5@z?>DMzjnKq+R^=bYoo#8){ZYv<ikUE}v8at0TJpX&T|1;&NStK>*qi
z(MH&@rv0-LcyMR>nZnr~e*F8w14FZ0BH9|!k%*4MUJ-4NXm><=B3e>h;<uzbi_0Am
z?TqMJafz@?f&3-p-iY?0)oihPm558VKcWNZ?x6GkWvZ8uhmcO~)M2H`yOjVgA$BaH
z;}M;R=p?F8LgH8z{et!L$JzHkN`75J-ZLpNxr96&(V2+OMsyCHv&O9P`G_vS=yxW3
zMK4Bl6~&0?lDY){vI1AoGxyREuB%H&(Hpm9auwJ+m0Sh9TYPYkLJ(1?N*gJ@rZGy3
zfV;ZJhQ^Sorm?B9rEykc{K&^vOz`t)oKQHaXpY7y6@7-Pc-hqn$mG>HeM>&0@zl@L
zU`mbiX<SO<(i-R2xPZn*H7=%cL5&Nc&(s*X7gn(V5Kfekh=u6D#WgOWamib0qSj#I
zE&^~Fjmv6WN#n{Im(#es603MCsR}BEZdPoOoARJlG_HCpwVO%Zq}3I(hN3kUt)(dL
z*44P4#(2j4sBwLb8)*EL#$7dTsBt5WZ_~KB#*H;@qH$A=n`w+wcRo6j$f=RQe-9HS
zWf?t#4j=DbEi`Va@x2<~r*SJJb=W#wI(`<^U6g69aT|?q*BJN?McZk7r^a__+*VzJ
zf49bXZUP__FDXIq(YS>I?KQqoJ^6^n=!H6H+z}-#DLX;KM&@CS@7MSNjo&C4zj8dN
zm=9_EbxHYFq4;GOZ^f9UdQ{`bG{%z}kMGAd?yT?=sMj9tNsYUx%ND!iyP#k`t#LPv
z2W$M1#?QbFH14DED;ke$W@DrAoRaccji1A%Z#}PZcQ}%5zo7Ap8uw6mdr8?-InPTP
zzpU|=AL9NT;ao}COXJ?^)>x6PT1sLIOka&()%cxK@_mh8(|FnNL_dvRhaJ0Wz;9^$
zrpE7TJm8eoALb|}5e91f)-60h0W4Yo|81lLNyWLp6vpuw0TFTcnL73d8V}O=LyeD5
zObjn2|11?Z`HwaJMB^bE57ij|0_%S$feja*R<Q5ipZQedVep4q$<H+Y9927z{zB2O
zH2zWna7L6#-NavO3?CS-@i!We(D+-8M{7Jr<L@;7UgIA$9;s?QVLZ+MDt^O3)}MJ9
zgi&Za6XVq#W1&xtCn>S<8c#shgVGZ<-eIHw5CHBpvo|pknXK_o8vm^EFB+fH__W4T
zH2ziN4H|FM_&1Gz*La4;GvQYn|B2SB@jn{lvotXy&h9Ub|3;Iql3G$q9x5gA%k_)1
zGykHdm6QL$MwOG(kocuE!gO^BFiYdv8ZXy)g~t1JdydA>zM5I0@m!7P!3n?2%-49K
z#)~vwpf16=UP^*4R+l$vy0l!Xah@HCWr_miZcmJAo?WSN`_gi)#;efYOUu=Y0<2L0
z1zrdL*Vx%$ozJF0ak)w3%^L60csG1Z<E_w@#yd4GeA=qKKU3&vVw=VfHc4$)^o7#$
z-cs4h)l!eNP7W(A_n`OCcpoYPKW~=NzerChEhijF%q%T09LhPMao#C;4r+Wz<HH&s
z(fAnLM&s?JCFYKgYK#$7gqs-j1gsB*?@fbwRmq&u_^ie{v4MZ^qVw1IipE#bkTt%j
z@g<Efqs{)5d8%C|UD~dCA}3Ks;(VBDWn!Partx)+1C2v;K4oOLGV%so`Yt;c)z{cX
z?nlzTqT|Mrr@)++NdSaM<DPqycV5pNn47_zjz$bhin5~p%Se;hA}&N+nAj#x5T}Uq
z5Th@}iiI!B$Ru&UpVK+SIFSS3k1{eZF$TSJ%E~lxhIqt~OqN&@=TlfHx~7cGPh3FZ
zf{LOp2nWi@bE;lNh>H@JCN4vauS=Mw7;$mpYGvi*DX~wMATCMqGpm%MEy~8)C<_HP
zPOdF0`~RFMM_eAYAg+j5#IwuFO2n0ks}NTueon~`EGt{>%K;u%R$>Z!$&MV1hg2uV
z5!S%9h-(u+M*KK&9b#<W=|Ft8M6xb%J>vSr+g2x<5#Odj1LB4XG*Yy&qD>TSs_2|&
zG{_?~SC_XFw@{#^qTsh8Zmn<|MQ1;wA>5(xo!I}qE_IipZHezzpdInO3XIsU-E#}v
zN8FzHv+Wv~pa^{@Bsvm<c2e|y;s+D}=RpM?B7XQ5=MmyZ6`qa5_9rAd6F))x3^YuP
zt#Dn4u>}uLt0!@YMVZu7#9fJ>CSLzZ8V|2C-w;4Ib=h|qJxl!7QTm+t3u0{9dye>d
z=-;=xEBXTQi^M&MdlC;I9!UHW@ypw+SCBgZ@w)n%Uc|kL`w-tTHZgEJofx0MTJ*De
z>Qy8q?Kg@06Tb%cBYvIu4Pt!c9^6bv%1Wc0L=+q{*14Yj7IBSENyL421r1mbZ%KZe
zc#ul-9pZQ4*uT<y#1A!0zOR^d^VlB{<2|iL$K;{@=?{qq6Mv+9>=WW4#KZfiKStJW
z2Kqq<JCyiSD4e*G%CxGLLe>bQ_3W3#Ul9lKkSY%&{+jrE;vbNLO6?m($3Gp97u``#
zjv)S4alS+DC`q~4pGOjpBHm2Ag?Kda7~*Nf(}~9tk0bttcna}&;t9l)h<`-HP1Z!>
zg{F3gsR1{rnmD@N>S1b=i62~V{e(uUKqE`TWn)wOmH0Q}KhVVB6{hw(>Sb#EOl{l-
z3laY!{+oCz@jt|q*IRv%&U(wKmS}2f=v4nD{*M@9|Fbl35M~h1MDE0kQ2tHUEaJJu
z^Hh0e6VFiqV#pe~fFjIC1x;-Mal4-g<ylO;gm^8iPrQ_P8SzRqM&jkF0LXoXDnAlI
zzK~yi>vD}MN%1=qE3kQaqqSbiZ^VA44b}#w7Ss;eZBm^2?KQ;Rik1a8M!QzRQ(J1=
ziFXk1B;G}QfEY>bCf=j&LZ67fmv|rXeqtyPcfsj(t0X8Aig%d!Nc=Y~zJ&4+A0s|Z
zd`49q!pDhEparP}PpMKNI!aRSmI5JjHvSEJtnKrPUQiW;42*)im*W$f*&%l0(>nPY
zT0L=Yd<sz<1?Gkfgh8zhv87-~l)QtbwKg@6*hd$7XDoBm3K7b%IX=?L<QU+~gA}-D
zeTJEJW&lG`+yw@;m~ADKP!yb`0y)en1@b6r_KG_Mq>^QRp1C`-V3y29n2R!F7gavy
zf(qnU6r2Lg?M4#<a3SWxihuL67;|yvvdra}OE8yYF3ns<36$da5pcVT1>u|ECg;yR
zT6yLM%ng|<C^7IWViZW>%FI=mt1?$ZI?VHXW~ws}mZ@5b)=;#jqP?aO_z1O`>nKU!
zm#0xZh3ntqK&%nRp9amDTQE0PxXG=2n<~&umH9SiloN$%sbmnPHFGN^(5Y1N!b@5k
z2r%Eld?)kc%$=F<Vs6Xap1A|_-B6T@cppr2D}|4GX!kM??V%w6BOqCXj?51-Kg8UL
z`F<t*0Q1eekc7a)iunlhqbmB%SdS^@&7{D2LR~(|{1kH+g~7ZTy({z6%-#OKxX&;@
zdrRhjxAJ=KR)UE50`rT^<Cw>z)<>)!%r7(dQn;t0FEQuqksi0(!UMNA$B*6qiuPfC
zMS;GGzN#qhzQ)||7Ji-i4TaxSv`;w+0gRfy#oX+oHGp{_GX^@|W`2kHUFP?ghcRRL
z=zZo7m_KIzL|qP2bg-fyD*Cb-Zu;mJ9-_df%%3SR6t##5;dACMn7?HHN^xLiFmKYE
zDfGm65%X~7Z<t3g|G+$w`CGIamCpAn7RqyTMC)dnqnJlCk6|9G?ji+*n*#rjmfvAb
zVE&2uXXc5_*y4dONr4}kCoAv5gZrbs+Aqvgph=zk>ijG7Z_EjulRE#-{0H-H<~_`R
zGXKTAnt2WL-^^2)=Q7V@{)hQ!5xZZ-cqryymF9oU)0n3-&rp}M(PYZWnas1)B`_p^
z1I@%y=G<b=XYP4VW)V_8m0o(<TEM)Jd22a|=lg&PiN(xIn3pmyV_wO;ig`IRK2BFC
zigfNMl*J_|!uj0<J_Ob>uVdcHyo-4~Ittf1TTbpOWp7~K$b7zeauc#(-lp(oMYkxb
z?@Db~05Ut6Z!&??CA0gkBu>4T#sdYPczc=mF^9|%^M2+7%$JxiLzAuSgUq+pO`d|w
zF&}1bR6l!!`8e|lsEhfS3SesGC1}+;b|=H`**$X-O6Z;`SYDoHKEr&L`5f~F=DwBe
z)p@n2E7|8!sl3`v4CY0&HFfKXQX~F+`apSkmH8U;b><t)zT!74FLRk)IDC2OFe3m!
zX&y5I04@Usa0{23&ZM)Yv#oQcT&ibziLSrh>BQ8}(z?!|hN7mTcsu%{yu3Ti!EWf}
z>`ac%DV^)<+(73%I_K3{>YPvKG?LOetFu6|XW}=;k56SDuabJFxZScvc4m1Qid24`
z3+P-_=VCe+)cN`E6NPl%{$+Y|d3o$&PGLPBF({(wxm{THW);`DgwDqgXRfqPmDIVE
z&Q*1;rgLeX%V3;e=ZZR))wy;L?JiE1*SVaIZZmndyac_;tfX^govSE5m=L%rgS*!8
zM0K5O=v)ga=zO)jOjnRKb;bb#16!s*aajj7t(B^$b6q{wTg3{pc?B$?iG>^L+(_s9
zbZ)P6W1XAme4EbAp~mUy=PJa?Z>n=MorhJB2>3i{q4O_8(rt9U9qq1yY^ifAom=a?
zW2?2Og5+%pfID=)Q|He<x7(q>Es}RB+E&qhZS4jvl6UJ2fLoBcM@inR=$_xS4mx+#
z`6-<*d8y@I>bHGbC!O!t`2n4A`H0SsD)1oe?x!Bo`C)YlytjgUOy|dSei8*6oj~-?
z=o~7_Cv?70K_YG!D6OKbTTwn-QTD4SA<$Llr*-b8^D{7_&fTFLouAeDIhA|aKM1iF
zk4}L8H7~|5==`F}?j@BwR)O}=dFb02gq{lQY>|9f=UzJZR$_e={ib4^``n81L`C_k
z&adhGiOxfG?x*wXI)9||$8i}_y*^LB0mrx!5A?kWTfd#|ujpGk4^RM{feO5>^E(Q>
zdyD^`0`DvOfzE>z`0&=<!8)&8m_YO^lM+?a$>%ARJeC-$^QSt0tMhj#QoHyCsc6&W
zXF7kb^A}L#`b0<1`cmhwbUt5E4%7J?opBB-W>~(~dAJgIJ|~5_k{Ua$5$Y0mAK9Bo
zUCHyk&OhipQs+@R&((RJ&ZBi6gEpx1KRS=qdD_0rM4cxoFiz+33QSNGxAIhypg-#T
zGdxY_$!H^r^AjAkl6<6+oPy3DCf4~6<;;i(js1q|D6v0vo?l7+rSsnk;MTTE@^mF>
zRF<_X%YSwLPv@CBpInxhrt@^2XXyNWOZ&yj60snLKZ_v@t}JKi3@}^Wg}@vIzWOn9
zS7Up=&P#M&s`CPb7TF<tt%W)-f=%~YixvI8vIJhS*II_^H^zU}d2>S>U<I1MaciZ{
zt8`wCinqv``>Y;&t@jmJr}KK9=h%#On;Z1_S${ysTUq?szES5*3T#$%i=yCfRbZQ<
z+ZElR^G=<2DZCr4Oo2T*?^Pf(fe<S(f%f0J1U{tmVK|=2)l9Cs**c>04V`m!KC1IE
zbPIV?$I%=V06qcLDSUkxol@Ym&S#LCvcfq;ER?*6zVs#SJlY*R{O@?g19VDd33^%Q
zD=OAiMX%|6YFNCN=eoKC*f})q=<Moj7;GBssiyI8f#i|=$);N@U*|yQP-oysQ8rjJ
z;!6ZF_$y26)>{MC4ZiJL0<a9W4eo33s|F_wP8!_K;Cl?tF*s##ZG-C=oX6n21{X27
zsKIH2@#T=u;QR(>jo7u;mCazg?uX4%!eD7IK#NHPTEO6HV>9nm&bfFn!`rNa1{X3I
zr&|CQHW-IyV7F#5gNqwn+2AS$MrG|12A4E=e&x7dtyRD-WpHVO%NShN;EF1*at4=2
zb=FY@gNN<^zbkD3_NyqB3~s(IekJoN$3x0h4X$bMNYARMrK%wXEmhs%8Y&&&I17Ud
zSCOr&NYJ_l*E9HbgYPi7zQGL)Zf$TIgBu#$$lya53~Q2XY;Y5Un?ZFbgTa$0(IaLC
z^hXt*t0J4DUIqgov{2w}*J^bOfH|~^oLnfmu!`JWMc!%fT?V%`_-=!zHO;=?B9&U7
znNc!x4l?&=n^l#2@5tV3@O=h9VQ?3N+Z)`$;0FzU$l#6!cQW{XgC8*Bk-a~Lr!m?0
zeAQTQ?^czq8)p4H_QM80VsK|w-|wr+4n6V={XOxh!H*e?<Bky?SKz|W)W2L3^NCLy
z{FK4n4SvDkt_DACa5saWF&Kyb?QD{)Ryu*<#FfaxU^k)Fs3xB^_-a*&@SFnA!yl@}
zmoFOJ!{9y!zk>8<B-&lc>1i;2Ci{}XFB@FFYO0r_eSXz?D{y-?31<6W6Lo$_cdaI0
zLom3X!5a+TXz=SOfWc#sl)-Nr+~44#27hYsTLup>_&tN)H+Z1IZyWrM!S5RUc{Q0X
z7%!rzHYM?h6`#6EXVQQDocRC_X7DEl4}pss{7*Ic^zL-=uG(OO*H)7s8T_#V`>RP@
zB6{mHIgMu~I`zw7<Lzfi*5I!V9&Yd#27ifm1owko%4F>767wk~s>@E*W#8)Zoz>}~
z)#Wz^k1%+Y!J`fSb5DA5b@?q6d&Bz9;O~_=et=slaQ#R;G>UK&EWMJmt-3^89%t})
zgJ&B&$KVMDPc-;nga0#llEFV3{JX(_!2JyV3C>wV{%Y{gDzz!7;|TgiVNoNlMd_d7
zDTdz^r-S13uOSCNn*Gz@Z)?cE4F22Tsc4mT?0-<Cbi6G(UDrkcXPUv&p;D{}HTb2{
z_8&Fm#u{=4dWkm4nTl5YO@rs)#eS~A^9){L@JcjZgBKXQ%;4oPS>4pJ8gii#4+|_Z
zc(K7tR7sG_QU$yk5&@T0YAT)Al-T3E%HY)ouYoxX#<cRJR;kBoN=*2!Lw`~_?k%gF
zOkj>?J(Rg7ZtR;3-fS?Nted>W;H?H9H~56X+YH`r@If?Q1G6W*6V)_$zrnlUJT>L(
z<I-oEWp^9A2dY-NFRdx}8u54Q<l%|sty2dKe!NoVcul!Y-92pZ5rdB!d<=b5Es4WM
z@E;{tx0}?GkJgfvD%d@1$&&`3LR&ESn!%?HK4b7@gRj70YRR((x0sbaUrU}d_&gNV
zJaxg~iw0j(cy2AZvz7!CPXW+mZHf1Uv5jp^)?Y{4F*q<dG&ol&4YTC<i?M@di2kj%
z^c2%q7}`JpbA5ID&e{@d?<4g8CO=VIlA^c^Y?y4CT*&0YCS!!iHaV}!X_FHsCrwV7
zoX6y$wdKg#a<ZS!F?mMq*gAV^%c^VQZu3TMnK3zQvM^biJnOqe{yMU99f?Ej^5OC}
zyP(N!>d5>i;~2UEisCRj;AJ=BxyT|W7d5%O$rVg4W^!?pOPE~J<j3mBt9RM^_9t*=
zYz>hrWpY`Q-z$_HQ%9CIxs1sG2y^Pla%TM8d4E)F{fZ`6GP$zJRZPZI{_Z-`t0OCo
zOq8fAYu1%mV$r6qtZs4*le?Szg2^>au4VE)Cf{pvZIkPmT-W4!CimH5d7CpWH>B}J
zQ{UtUCcjxKQE*6R!oEyHlkYIOUtI~@$mGT*H!&HwsmU!&ZmDoHMQ>BIxuV-o#c^9H
z+{R=uTbn#?1A&QfyW)4NEAKS<E|c4;8r`jO8CEyeb~}Xuknepaw>P<i$sJAZe|r)K
zxS>0J;)B$+D^@3yyCLW)XH(*SlR+Oa`9YH(Qutw$yDIRA$&W(A3O}hRBp+9xGaN&K
zgR7~F$=K?RTTk7R`KhjaT4CG*ALV%lMK$>Yod00*ifh($s^rfrx=5A$MU#7&yvyR<
z7WXvyC6w9Xx2)J?FPpp>jnw2`CijNUO@77Xu~3W2eNBGV<WEc<0#3u^YbL*C@&H(2
ztJTls*G+x{Smn|m<`|m@>dGz?5?C<y;??v(lixOZkjWpK{Eo@*LX5KSoAKoPdnV^I
zv+L?6_btohuO~k+dEj^&wlq__p2RP!2Alkm$vEv63C>-S`PhtS2T;zt>d7J7X{gCx
znEWNY%eOv-m;#@x+%Z8gt)%^x$-|)7{K-)!e{J$`L^t_+lfQxg3`&nM`CGW$_{4C^
zmR*(s#k>Om(*MEaktWZzV~qLS7wbvz@eiiaCXXJK8DsLK6`5Z)C&t4`OrCA>9Fr%4
zY4Tqt|84S*N-Ze!6q6^L{FBK)oBWH(hs`XQldh*Rlag(i9NsqhtI5Bi5!I8woBW5#
zf1-7d%)DZzcKnlBJU+JO5B20!lm9^*HyO)5r`3x;SpGHnKc(tvs<P8zi?`CBMj6bE
zEdMvtbbMkanz_jU2y5!exhBsud8Ns#Oukf4&Nq3n$xBRLU}D08KU<z@_g`j_$=L1w
z{SO%wuj3JGDLl=!mYci`rk{|&%nLNILS-7y>efxJR(OrcYfZjyLR{2!O8*;7-e~fA
zW!w=_3MNLC7y4GVzTBjud}5}yn!F7ig2h!W-fr>^lgVPXcqiP_<kKdfF?l!oy@b8r
z<O3$}G2`)JguM#vQ?yb2xEUTa`H0C!p`Uj4Aw>@>`gnbL%;e)HpM(#TOFh2PI$?6@
z35m^H2%ZUWN?m>yWN_=O$>&TClrqnoe8J@FCf_jmBGiTc$4Or`8P0s!<SS?qMrv!2
z!BZ7+&mXjK_nMM{s&ml>74}VDH!|ZwhsujysV`yi!SyBdR;{mAqpud4{OeXLQVP*5
zzPN=-k4==mXz3Ok78kO(u*IgunNwEA;;h9O{kJVnSe&%D^8(6aagN0)i<d1Y<a?|^
z64u{i+h{U*Elyk9WMTqV1OKo3a#ejPEIehh`7M?f!?p5Ryybgx8YHo>vw&*&aP@)~
zA5<zWV)21(RKntt78kX!F2XKm#m)db7Pt6=h8X}bOIcjT;<6T(wit7K%a>-5$WhBK
zXK@9KD_UIM;!)cOWq5y+RmtMY7GoO%BBBYyT~R!Ecr}ZwTl}cSk6B#9;+ht>v-lp1
zYgt?ywXnFU#dR#MYjKeVvR50s)6z^miyK(n(2Cu%z7=-}SViB+;>L;tf#QoY@H%J%
zzn*DkF$&Pe;@d60&En=3x3IXS#jPxE4VTlh;kbCZ5Hp^r6zGV8HvAk7?GB6Yvbe3q
zcUp08)}(<%n&>p{w)nvYvdg#xR)gS7n|rO;@j6)CQHkAWaeFK7uNnmzG^<V)-w#U}
zDcJe}M6~dFoPEfO8(QxM5^W9J86LLy5euK6@!aJn4J173ahTZRXDxot;wLQbVqwOg
z?>HU5D59f#(&DEepVoRMQeBmGo`!X{6AHh!fyBz*XJAl^Pk)@LG(PSFpSQTX6|Y(9
zWAO_Xzi9Ex77uG^!(@3I${s3(o)*7k@!UE|%-bTJWmW86@PSL|O%0O0Er$8Pd<E*Y
z_*IKvv*LN!H>|kd?q@NY_Ul$WW&FV63{;KQ^rlipkBPB9QQ!d<kFfY#iw9c#w#DyQ
z{I12HpoI4&f7@oghxFl8aLcW6?FPXK^(4MPKeqTo_>6B2R`eq)epo=0EgE8s&N^&q
zLo6O@@u$$X#b2XR+v4b-E8(v!{z8E-RV*|*)N7dHz;H+hlEc;IH&E}m1XlZe2R&H)
zo5jCd{DZ|KE&fT>;?5GOQ5JtZo+ep58ZNri8e{QTWx;V4!+aAh9&hmkWo2lauP0aK
zrs3+y<wq-S;|P-#*llURKP&u;#Zv%O8DJU&6zLC(|Aam*US#oKx8nY5@t{=pZ{%q4
zKd^h=*l?dFvtz%b|16%SQkZV>EQ@Eu71bsDWTtA=-Q3I^nAPHW7SC6lhnHs%(EA}Q
zz|+5B66Hh-!pHt%i<elu-r@}wFGa^<@fwTQssxuSy2|1e3anJMi(B7eYqjzpc<&<(
zC91Fv{@*{nZDzJlLpivi+^Fob4ZWFWZ&GnLE4szvtx#h_S>{6g!g<2ZZdd#riXz#a
zDvROc5_>G(i^gtqBb)bGyx(HoX2a$KX!x5g9MOEbxqZ;$Llz&l_=v^VEWU2>QM7uC
z&sls@)%v)ir_fE^;@}K1Y%50Ar(r~O7yEH=c~)U;hCOfb1$4{EdP(B4#aAr8gvS%M
zJS>U#>_GCWy4CJ;`n#dTd8aol&Q+Y7IXV{m76%r)DnZD5=yDsz4=jYx;s_nG&4X2@
z;E)}^ePMnV^lC#{vQeC-X)_+6md$wC27mW=WZRsuIcal_%@u5}XmiTuJT{lLxpO0#
z*Jk&xbWxj&*_^gHWAp8eWLD84iV8)gqWNsjuRsAsAz4s?LW&kv6kC;%FK!jLxrEJS
zP`s|%`>P0UUdrauHbbD+=1l)Fi4&s}Uyez<GCec<00ES<`DD=~?v__Fh*b%rf@2aj
zZLVc=Wt*$mTvc(ZD_Tv-|GY7S!Ri`z{K4`@BRRQsrnb#>l)&K82_#t8=Fb|*dP?}Q
zu3CMY8>sZX(TNF-WbHAD#x^&x`5WjBe5{$lsG7|?uBMvVe4EY9ZEj(6H=Ccaxuwmm
zY`(|ldu?uQb4N<uVe_3fw^8_ZMZx^6SgOxDs(UbVm(6W$2Dsbib~a-`Z^NuK7U4rb
za~jF}Y;F&x&5zjJ0dZ}9z~%>S?qu`*HviCAmO2=}Nji;WiN>;iV~KPgviWB8KN?Hy
z1$flv$H1}qDVraMHEn*v<}NBD2&`@_k;q${637>H`N2$Ao1a$Rf<of*NMnie{EA#`
ze%9vKZ0=|Cb2dM3^Gi0rtg6%9<`-3_i1LEXdJ~D%df41kF`G7#;3JV<HuqMXzBa$v
zMD|f}U$J?p5`au@tL&>b&uf)M`9WW|`3;*tw)qptE8zh)545?z&2QQKPOB`^oTl=6
z>p<phn?HhP7G;3nvH4xd9LT(<D8TzRe{c&AQs6_hky{)T;Aj(xxI<7Fo4<f#*!(G6
zLS_27qD~Xpq;<A(Q;B?`@ULthX7krJ54ZWzrgBJAxumJg!zlz*4dsVczlE#V{EyB5
zqWLtHrJKnz2dwX5HJeA;JPK}qz(V+0fzdXPxy2c)z&J(6D>}jEi3&_o6tR9(V6x3W
z-QtWIlm`D7o2T63{HnljHvg``AGi2_D)5)0e=9l_{<(_~9mBc*!LeV~X4^c?#;V0U
z2-6jqq3BHI8?zL}Eo>cX+)U1e)oh+`^8#2Z!Tl4And>s=6ANu#g!Z`ET5R(&o0luR
zMA4=2_RSV<t+08e%_6}v!K-XuZS!%PPuPrAxNB@ah-9_YTASD5)J&+lncQUaW(79<
zAEv$oSc>BN`n@CUPS~ArXLc3@NfH$SK}00yoO8}OXONt8R1iVHKoCJeQ4~c~KqTiN
zS&(c31VvE!&h-1eul`kCr%vC#9j5zsZ<y}eQ5;r;!U3h^nBu3R_(7553Qt6FQZ<!2
z95sg1QJmv~AH|s{n2VCLYFS7lX*w5FmW$~bC6j)M?a8EHj^d{%u0(NFMJefjHifw1
zop2N2(z5!EC~m4;x1zWk#UG0Q9K|nD{L0>=iI$Q(O89#ew-uozO-N+z_oBGZrC5Wm
z;m;`lJH@|I{1?T8DE^M(qf+wII_n{uvCd+6q{tr&ZNAI<NAabl<Z%=!8Zv63PO27W
zc|vg}K?9X3&!8k+T^WsN{56EVj||GGLo_t3+n;J_u$A1@5L5bbg?p6_vrv<jIx0JP
z4zWEA6*N@T;A==|2s9)$6x8sXhD;hVYj~Q5q2WmlSu|wT@RWv&rR2X-!lO_5OAGI7
zs8BjQW1dYzb`3c+bSf=5HRRI5eFCW)v>~NsO6jnd@@UAb;Ta9jYPen5d9yT+)rTK&
z8%s-m4a5Q(zAG&xXO#Zbr|pyd?Lry~Yj{aRNex9bJg=dshGH6iE-fe{Im<>fm676K
zX(P(W3#zo@8eY_}pp3j<CakoC5;FR-hEf{JX(+G3TjiA2aH@>ZT$^`w%4i^#Rk&T{
z;t|68Wx`L8N*XF_Xsw|Q`?IW6(O^7`G|^C1Lp2T6HPp~hPeXkT_g=PZYN(~5wuZs$
zQyCq&KDCaL*VRC`W@*ASY@nf`N=l11($F|PSDK`$hGuM!2D-;=$(EOu7K-OA8$J~G
zEwtjZoU)pf75aZ@tD&=oE*dy_+iBQZS8uPOgCZRjQqoD0b@|KzWu>cz{u%}_l$CB8
zx@+j6cux(zHS|%um%_ParLTs58c2AP<F>NGEOhEl9H?QCh9Me;YPeih25a21qAz&b
zd7xT&eom@iPKIf?lRdiQht&5hhabMLXxOadGaVx}jG}pH7^8tZ<vQy4;7(*LYtb-I
z!#EaoCo*0k$pl3vYM7KRnXJeZg;NzyQ#f7W423fl&QdsA!yH9e8eN#qr+H{d(UGd-
zRSmCce94cK8Ww6;q~TLGl3lG~F(;IU^%~yLu!Pg<fVM`%QVnlvcw56e8kT8Tu3?3S
zx3uv6a^Z4Psho5xC*#Y>Yvp8BIr+4lysKfQhE*C?YuHy#9+nG_0lrv1JiGVRVXawt
z8CG82V>#tzt%mnG@ypA(@<K<We0BJNh7T!G=DLB4Lj|d}(4oiIY!zgqs<Cth=~6*H
z*04##CmM!Vkhv9v`+Ip*@G}jcb2e$%rD59uXA4o|<!1Oo!<QPiRFJK-Nt(?O?O+AD
zR6%&9FTeADqj8sDbccqW8ot%AT>~$!wJOTf73GDBVaw}R6ovs6<$DdgH5}4#nCm|m
z9F5+QA(dpGhA9<gzlH;BRYloXQKp&ED;0&c{8v%<e;Nxp!YN!yj&fnC>$a&Bo`O84
z;kbr@m1IFB`Jj@ptWz3((C|AK3Js^(`3d(j*DeibG@NBm-Zjo?xWI*oV^>MevwN>b
z9#j&#EQ?o`A2nR!l2uv4yVomA%gQpgW6Bi`H#FSTa8<)KcEzueL6wDX{I7GYD+_z<
z7DwuU_OpgxH1KTZN0r0xKfkgKmE|`+U}pXM%EFVFi7IkO!(G+?54haHEmTGR;9S<g
zW0)1H$bFWR#radiUz|Zz<jpFwy^36{B7bXq4Tnb>{?R}?`Hy{DCG66Fxvo}~!d0b7
zRe7voLRDE&HEcO_@Q3e{I<n}<pd+J>gpNQ5cX`%4qS-o1RFkL<O$Ys?={jOM;yMf+
zrjF06%E7APgI}*2h6h!}Qn`$3!n}?SSBL1}S4Tdwr-R!b$mwI#=Zv`EvQ@Mh>!g-c
zwPaG5SqG1i(!7aTbv&h`l8(wcvgydKqmYimI&$d9sdJ;4RzOGdCT=brxpm~xF{GM2
ztz&LASy4^$>d2>Kb~Y!!j;+<g9$?>|swP=>TKB5SGdiBtQBcQoI$o|W^{R(MlWD(Z
zSC_oirHGE_Dc4a-M^PQcbQIU|B3BQ7i`Frvy720O!PSM%jZ5%9gG%y}j*>c7RF}`H
z%c1J>pn6yxd!V$AGCImLsfLtguhx)qdN}%}YDmKx(zk|8uOSt5RAdWl$iW(tQd2V5
zlqx!^>S(H?8K1X`RMSyMM_nD&b<|+@>fvmvrK2`eYYKVAn$o_eY>4VZYDzsF^>sAX
zvFBB%0gEkZHq_Bb=bvEioSMQZ^GQwFQ&WDc8P1U=YOu1@lIA*E=xC>7S1oC&qm_>F
z?^+vcNoyT#*x*BMTOBXel3KOG=Necm^rgV3<1A>eqXT=Uhx1!4$xvH5v28lK=;*5B
zEgf&`=%%B)j&UqdM-Lr6bqwY(>FA}Sw~l@~`s+BE%jv^TXl^&@VfEF+PwITNg>C@`
z@Of)X2Nug8p=I=eI*5am0?AMv!*mSSF+xY)E!Kpa+E!k}eLnIEmwg>$bi7wvMk(bn
zb@kC~fGUU1@LAee+OTp)dbo@;LB~WL^K{JDF-gZ{j<1fXw9m3p`usUkTYju9({xN{
zx2(}x)R7rFW~yT6>X=0X(=mrr#!BJ88G0SbQ%6eGp|cUY%YWS66uyUAz@l`#u4A!|
zObNYj9eIr%Qb!i5LKZ1pUnhJ<o*;gMy%*@&>&g-xOLe@dW0{WSv>zQuln&KSuh$t!
z7#`M<cXYhVG19S$7F$<V)Rnkl@+OYeI@Zu)b$qB}NkRQR9hvLd>o1#Yb-b@CJv}D;
zZMZJ20SdpYD_<SaHgIax3){0%$45FgT-H8T_=&<z3RCI{$)`F<sPMUtEjr2>C~x2k
z9bf9Wr{g}&Psdj}cGDVlY}4_zj&F2)%ji0bn-dD()#i4zx2vj4mx@j=s+$+>9XfXE
z_>QK?73QMNz#r7#D^9}bULE_mlF%5~pL4AJI{1lyggtyTazMvH9fx!jSeD8_$zdh`
zb$9Af9mjMWXIETEIms0!B}Q^WMYGf6wT>USyrhQ0G(4;09MyF2PSu&$!f`yW<ARQh
zI)2n~Q^zeGmvprJ)?&D-<FbyQbnNZyTw&Y3v3k^##`T0zx^}sy<GPL;I>y$M*Hrkh
zo)j;nJ;<&Tf7bB}mzP4?ubd$DWan2_^S0qn$lq1B+*Wu;$6ZDKP{>sNIQmn^UtEU`
zm<Ar`_?xS@fs6*8&+R<qT1}gY>yNm;-HZIA<6oM`T5V@N>H0zV*UDqg!83M>fm9=$
zZWrrG`J*NbJYnGLlKSBFDa5QxtoDy0j~+)NM%cGe1DYbb!m$U!?u{9U8xRAYfk*Yk
zGElI-RIe{QDP|ktc`?U;s|agh)HjeYF!gKec>{r}I*)<829gFc8Q5^i&TQZ*1KA8b
zX&{Tix1y0@^@Z}R2F5Cq-9QclxePpQ;D<|gPL+#=GxaN_z|@YumfOIo`ofFz@)^j_
zRvCECKmh|K7Hbdc%d-ZaN$1Sl#C0-kv<s>BFj~YwVa5Fh;VfWauA&Bt8F;}!aRa3c
zRQ@6IqQa62OBi^`!1XmLl&2xd%PNV{(gw;X-flrE<z)?AS(Cz0!9Ya=`wbj0P>Bi#
z`WqNvpo)R22HF~EXP}ya>INDaXl$T{ftm(t8K`Zb-esdnL%Yn)2w$0f@{D=>aiorc
z&Ux&*>_8p?Fi>BS1_~Q0%+o*^nA*fZQv)pxv@%eqfsAh;%?ymrqBl42Q3GLUVc<JO
zPB)O&?6;qcUmD0ZKib9sv3)G1J;&5QR|DPH+w3b=ZJ-MWx1rD~{?wyIwrRI3>O6Hw
zUx<~incWTaFwoOLFC#pxm)5J@%a{`vYrPHR%WwX$O6y}_)<2O;S?s<Bi2Z2ENrz;h
zfk6gV8CY##uz?{47SRF?3^g#!z;FX23~bI3eaVS_yvpXro>vTvG_bz5KFh!;K9_+h
zG&uufXhH@i7?{XuvO0B~f$;{2+({D8WHY3ZXBx^R1CwbX4W)P{oA~+t$TVdSqZ-N#
z1JhL?=Tnf+Oi!9^V2**g2Id)f)xc{8<{MbRq8=D;?+ZV4hzyJ_RB}qFz$nRL18>mU
z4ZLMwiGf}Jm~XOUOGbI3XQ=@qb(R@ePHVTKiy8_8$=e2Q{cG+#V>hcFeTO5Gh`y_k
zWTg?lJ|kIU;5`GM8`xrCt%3Jhf`N?&*0GBWd|=>1&idaY|CZ8I#>cidluHd|<@xaZ
z>|YJ#BLg2B_{6}c1~zdXHIl)NWJV(?+bDeY%`CH#TyG?gRrE8}4@Vox7Y4pG@Qs0Q
zm1L`duV^-$t#>1SWBJn2d9?Fuc5h=Tx5BQ!!rpFRhk>0mIa+&Tq0@jCjivM+dzTR&
zNZ&)_e{BBOI{LkV-3CY)So_q*vR9SAPa&fR4IE;zCZ08M*uW73|5D$;Q3J;~;|yFi
zaGYftIAh?ffs<S!*eV03X<ChiC+I(KEag+2PwpE>8_RYxbVqj1z<C3g4g6%_f`N+$
zayF53t5RC_xA-3RR%7{*MwQvTWFXo^7=2}nHD#bxwuy9WBG<Se7`SWT4+A$0+%$08
zz#R^mfu9Yu$*-?jto_32VBj}eY!m)2)8@RC!oYeN{ap#k&m7m>>jrQ1SlmSJ8MtrY
zZvzk6ux#3&T&{oBzHTDxo5)}M6flta&&a9e4quQRZz7MlQr$J4tQ!4Cby11zCR_g4
zK#B?1gqTP*!xLPliI|BeOk^+-F%dO!{;rYHM1iu-{`z{Bz4iyWqF-FsJ}u;QJZ5Vq
zbQ8;WSPX_DFV%G7CM*-S3CG0sCbGGp8Eq<;vzfVm4!>Yjy%&DscqV)k*-hjykuVXM
z$ZFy#6G;=Vo!2s%$dp0n&N^!Tn$yl~;z<)(OcZL$qro;qwWdNV?c7wdG3lN*rfFz_
zIZfm;k;g<{`u{P*UBRC;m0Z6Vxy|rHZIRO1-&FFMXkpp~O#Ita@~b40tj)p_3YvJ%
zMDtJqg-jGSQOQJQ6GcosZ=#fm(k6<UC}yIhiI+{hpt2WjCM8T1XE#Qp3@@4(SK1_b
zNu}0NC9`n;-00XW^!`!CL|GH%Oq4g#>T1Mp=8kA4yufbBY5U8+BCYQm6--oAdFQLV
zRZLVhQP)I06V*&qH&NR}9TV%D34c4+E^gN_QB&#HQn*9qI@e5oZ^lCwQ8S}a-$Vlw
zO-(d2(a=P^xfE?KjoDqzrIE@)(u9u|iyrKp!i^~0i}=BVNag0zvAMKlBTe)&(c468
z6Kza%WEK-`O|&!7-b4ozLz+wX$Hw@J5xQi|R6%c6O#d;LneCC$*+dr;T}^c3u--Ab
z^>kHp+1fn(h1*@#%X_#EHkTeIh&`3$N^|LBqOXb3CdQcPXQID}p(cizsPLMW>5@Ib
z#6VizPtidpCS`U8t6Yqd4^a|!wcA35o7{1szgy89Vd51Nys>(u(j2Am^@8@j!#0Iu
zIathPVzP<)MNBSA<2kr3WLyiGVDgP8NLV0oiiu4vWTqcATFO)t(@acPMKN`TiTz5A
zoMg6%IW(RGiX<@C#5@yIZA`N<-^2nF6XKW{4|kEhYT}C+zKr2D6AMi&GVwZ%Ifg7T
zEH?3miBC;zHnD^qm}<Ub;$0I<S?QmVBdb#1G_kd~xs1)eZ7w%)_V36Fg>NZ*TOn^>
z;^y9!X1D`wg9-9gCRUqRqxgFY*PB?Y$omSZvrdt4t8lvHLlbGjjjAY?_K_kVE8L{;
z6NTKg_L&);yqIvu<WalNO>E&an)uShZzg_cn@xOW;*^OWOl&jpwTay(_NZ?B#>93L
zJ4}3=-m7}2l${*tPAT7+*rkMHm)rkz4A;Z&m7HYA32m>5eI|~YIL1*halphOrCj5i
zROUUHUfNH~?ZYOH(3nqX%vI|@?sKq@^BH+0-^58(AoZC_H3}I{n>eGg-(Y{5IA`LL
ziOXCMO<XW>(ZrAG&0sAhz6pO6q~#^~$;1^CS4~_~rBT9=*7)nHOxDFFQFznDEfYU0
z;V<c}P3@HOt7<BpO|eP0P2A!790OvwYvK<Rf17xyl<z70%fx*Xe=5#en4RUb@CT}P
zR`f_E{cGYsN))G%I*%2nW=bsVY7z#P@I(w5)C;Ou3>jmH#KI+1iy^J?Q58+o*JChZ
z;E1H<C5gvi#o)(~h{0BxP7H1g>~=P+?l-A?^+jbb#tkiD4=`{zf*6u9WQrkk4D3%f
zkAW@uUoD-&5y=|EQ!$K;VN?v+V#pptl^CkVkRyhivG7+(xfpWA@N^6%V|XGK%^gFY
z7z)QwBo=Ps${WM8F%(ohUkv$UC_u@;@UF~fV&Sf~O(VlEX3uc~rbL%M8-A}KDWqE4
z_-E~Tm9cmX;{%<_MPr~&F@-NEWOml_qRL)E75I|Mdnu#&vT9E$g{2jiQCL=CwwA)y
zmXD!A43%1PXPs7&MCDD0&QMu#CRK}}dJMCVnB1dPBZitWyxmeZwUk;h)Q+Kb3~gel
z6GPn?ny_0Ixb<Ra-clIqt0+l>7#ga!HHy(U5r`D>NvTY18bh-*O@%ELwuqs7OQAw5
z)eNdJOWPRQ#n2;$o-wqKp+gLvW9Sk?N0p_MLT)f)`Ds<8WhZuxp&JWS3Zqrqh`nOy
z9Yg;ZCPD8LLtmBJPpL6Atq>x+eSp##sBn-%W*JQDQhcbwVG4(*r;bqM6;&pcN5?QG
zhIui}k72Abo2n&semsri$i^@shKVs${4+9#xfGce!*oR^$1o*^sWDvLW?gwBH4Ujb
zBZgT@fqZ5R7v4xEVVJFiY0<ec{wI(^A-6p*h~bSG=sW0DmRwY4cukRoF)T`#yiO}h
z=QsYdmc%f$q`5SPH)B{9!}1u`#jrkx6*0U;8_uD<M@vv-WelrgcqfK;Rg_=dnYyQ?
ztd8OQ1@4-TuA$}6k5R}lAcsj@8^ilb`EE;jwP+~+Acl=Ge58aQ#;`$=U8lmLK8|5i
z44=jDxe|U7!>2K9R@`bOR4CL+G7hjwC?{@FSW6}CtfFm=p;R2D<M=9uZ83Zu!#6Sf
z9mB&IzKvmf3}<4XKcyX<ryDJL#5xtj&KSOnVHX#f7>+9WZiQ4h6vLhv_NwT<7!IV%
z_bbw)6+Iz`<&Y2=4y)*q7zQ6oO_Lmp;dpwk6N;QvxT}`^1BWb!c{+wabC?X|XJa@=
zgZVvjK8Bky+~Qcra8XHqjNytROufX6ivN@@S=oxdl*5b+*SLzta6?7+wUS${!taDX
z$M6f+b|w5ZUGq*1zoqlvW4Nt&!@o@Gr)B>`N$x4U&vq*ER}2pnp<4gCHUmjpJ^Cny
zcs$%W_D>A|#_(SZkNJTT#}jeHT1&GP*1mV0lsH~&E%cSythGctIvL^^*IMq?cW$(n
zjB!Nb{MW^a#$hO;Dby8G{(5U6nkpKL<HOdnyR}$x*l{><xN+o&BWD~EhZhgOy<~~Q
zk0TMsleCA@b`ZzK^{JWT;YUMKVJ3xon{ah%QTl(M6x7VB^q*3x*%W4vgQ2R@%oWGe
zaTJQ9a2&bg$P)+i7F3uwj%VU{HqNs}cD^|B$5B8P)xC`{u;j~CQ)vIq9*4hBnCrPX
zxM6QfPP<4P&&ToWFItH>ipEh)@fTGpg$ysmLABy>thpKP@gpa`6h}!_7x~MoB38jl
z%fwMO9{SSZw)}E&l#io1n-@o>W04ARRE(n%Q+uZ{S~(tmsMU(2b{tjsfGS!|VTO1L
zld8v2Lq*AJD)KNE%IhfJD2}@6srBNhpUxX7(oo^NHsN11jTLXAu&Kgkaqg20i)tB1
zt2lbb(JPMDe4-T^Lx(upDBd<*(oT`~aZFpCN`;Op+9{6Cadc5*#4hcwQoF{{O-ZOm
z<sM3tgbKamNa>&rQP?MrzH#(ZoWg<p&YaE%DDqU(6v_uFJ~)mnO;Z?##xX38;c<*m
z^09HelAddnA|n-2lX*wSF(!_*a?)^I9OG%Ckr-2nlj4}n!Lm@!LdIi}DNH>QdBMU|
zK1dwX<Cqc0kvNXVF*A-?9Q`=ni(_^ibK+PY=RdBP8%KsY_QE(8#qrNm(Rm8zD_o%P
zRfVs`@pT*7pG|)~j<(gE)fJ*|#<5uS(vc(f8?5Dsy+q+sg{3xF)L9k>kv@UniX&ex
z{p~pF9J6NJ3%^jk!%0_6XLwhUm2s?6WVJ#nFllWZ@5k{aCu1CspEK9RQR}!ypA75c
z_<-{_jty~aiR05aHqzAN*v#Q5W!`QhA1mR8&$LZ(e8LWFE2Y~Ckx4}AFnkur=PHRj
zP56b%P9cx^f2C}Uzc;t>!Q<g3)o<e17035+d>hC1ICd!EcM5mLQR-~C$+KQt;k}L9
z?}bjYcgJy1rS6GiZyfvL^pg;lb3kFAw(>^XaHllGwzg6*YxGbYhgA|K*W1dmIF84W
z)xuL2PQ-CCj;ICA!l^iZh~p1V=byCGah!?cQXH4#C{j>A8^;Aj$j`-bUX4!wzTtP~
zi%R}ux`e`?;<ysW%{XqwaW#%>{JdM6ayO^Bd2Pz|I7n`=Kb3@>Nk1#$uW|gQG=EX4
zl>Z*b?Kti*HC_Mz=1ME@UL5!1_%n{bIF2-LEByNUfcBFTeW>tn4yBpG=p!1NlKiXi
zzc@Ooo$yTBH{K?uT6n@j1}pTH%;*oj!(0p*Eku-rSr}daMJiFJu$@%yX~nH@(KZyC
z3S$a$w-d{PZNahNTF7MK-}h3)LP~DkxA=}MB%X!5xpm6P1I3d{PDz?Pvx+`xAxpZv
zZ=X;(n}zHaa#+a8W*jy7Hi3uWxL)P5P|c5Wl#PGQr!C~R@WT=<kA(sjo?-banol9+
z`O`=ho%~q~g)9`dP|(5$w@gZ&v+!~|S<p_3SfFOn^jyy?GQDb;tC)ok+X)F*hT;}p
zw8AB#gu<5;GFp=5r1Mf1N~iNOifmt#THeC-L*_OMU$d9^DPW<Zg-RAGTc~1TjD@il
zs`9xk^svy=LUju@EVQ%G-a<_awJfx-(9%L}3%ok2TzhHRUg}t=YoVTn`W6~nXkwv(
zg@zXXYbT8?4Efh;cf>r=PHwgnBBM<$G_%lL1xB;C7iy*@5xJ9xZ#`OBc%{A2&1P#0
zZLHAuW?O}em9T?_juyIE=+4pSRLZUMdYbDQqMa=~w8D??E^N<Fk**g0x@Bj4PCwON
zK0IpGf6nILlD#bSwlL7bAPapg^tI5>LVt_iBV)B*FyF4M^LY6F#TpM&3{a-^NBi(w
z!C*d!g%NBObDfCrDzu>%mW!UXgAB7UTxpV1b0m$&)@xlisK)3hl{A|6v)bZe*l`>P
znzw~FEKIO4(ZWm%vn))qFxkQsF8GXI(w6*e^eGy?Q*M^Uo@Rx<BA@!p;1{at7G_xC
zH>;8zq-O`2ZDEduxfbSGxOFAMBdFW2hQBN60Ecea=d<t*vcSTt7QXEuuPIz)VWA>a
zqmbeC^ym@`OD$}+@R@}-EiALJ(ZWZ3ObaV4theyEgS=(oZ40X`tfrBSxB2$)9SiST
zI9M+H4ZBi3>}AytYiMaNN7q_--@<!}Gg^GMwJx2f3AZ-3KCs|-6owBK*`Sc6)$J%B
zTj<;|?A1-G<WCfqyJvjL23!rh_j3zdEPP?%OAA}?YT*m_j`C_paaL<(Pib!yF}GUy
zimCq^>pJpM7=yF*8?M7ww1e#YBF?u8w_Dg@VJ8htMJeA+dr)<KudwTnsr(y_)$LKy
zy$bg!+^_I}LS{T<;jo1x7LIa`+bC?~n1$n^Ng$Oj2P~YlaMi*!8ZD=`g^Lz`WEb5s
zPFpx{;ev%ToSPlxr;c*g0`Z(eR-MvGvUZX(ouo}Cxn$uo<rc2cj62Djo#fL_vgJnD
z!nMzb?{L`<*Dc(zaL2-33pZ&V7JjyPhz7em$-Yv0(?86&B>Jm``<>*rg;AX)cW3#{
z!tY$iI!lSp(x`LT?fr^7e^|K3<&@Kzrh74RpIPok{<iQZCzpi>DjZYFs}(-9@W{eH
zTrHol(=eq==!^LMvi7f6jbSIv#}=}72@8jfCu{^Zk~T8f$Y{f|VcVc9x2O%>hGC;j
z7irf;G#k^^ErGo5$E0$NXqN2e(r7eh|L?z`xFXs2n~n|FhHoQbV`LYZUNQPw7ZDqt
zjZ3-ga%)nFtol?Jx!*;iT_ux^%r^4c$Y<k88(C~*weggVxhu6SU8VMQt5{bl{<fCQ
z4p05$w2@s^ltW?Lt}?i*<g)R!jhS5~w+(Iu$)h-ZF0Jb-6y~>4z(zqE&)Im!#@Ait
zT35+-T6@;!|E{q~{ZhyEOTGM!{jjUhwGRCb6|wQWjkY%0*(hqGn2nk?YT0<fMsXYE
zZB(%FqKy(ZUb0crM!cJ}`OP@?tU0Zh^|Fn{G<zE#p3q9!;cNHO>_A1*4lq(uPPKeb
z8U49#Qqe{w8<lNTv5`A(v|=}*llE@i<dtqxl|#@fTEoV|Zc<HQbvtw|%c%cL`2D%I
zjXE|O+Gu2>u8n#&>f2~w<GpUOtD9{4%f8i3db}SVivRXIJGHwsw$a2!a~myeWa=(W
zZT#8LDcD__vHuI`la^bNYgS7e)w)Y78*@&EW7Peu)xNv5Rt;{WkkR%wI@lO&V~CB8
z6x!%vqo<9|HoDm8YNMMCUNFkr)%jYXO4Mw?lRitdxvy&7ZH(?N^Setg8@+7|urZJW
zy(X+^Rd?xQ<MtY>uZ?~-`m4IOb{9$xcbA*pCDKFk_K-m~O7{rucBqYEHpbc*XJfdH
z5jI|-vDs+ZL-x(F`uC8jJ!C@<*_^|qKj%^WH~!`5Xd7b`A?Np*@iY}16KzbgakGc;
z9#uLJ`;Q(iddg%Qysu%&R~BEbPEjp6SIL=fV+IXaa9J?Z#w;8AT^w*Rn|)<t%dyBC
z4(8gJXJf66_u0-``h2!6yH-Op$DfZZQ02U;@HLL6jYT$Ir?n`_Dw?8=B{r7Yc+*DH
zp3<wQ5Z~-6%WN#S@s^FZZLDC)W5W-Z?|Vw){r0AwLh_D{cWtb+(WYm(?40W<Bn-^E
z+D55fvPR*1w3A*^_$iaP&c=G$tpm%!2eefiXKb9cvBAbh+87_r#z!_jwz1R3cbt#6
z%uO~vv+=o&PwdbOG{dJhHY?t3X)2>zY<$7g3C_1RzNC$rHp4bWwkrH84R2_af6cl4
zf1=w}C+twzqgOb-yZF4lB;QQ+u(YnsCc|z;_So2)E@_<Ee6o;vz{V*XKiD|PDf6>-
zh)wM!hZP=CcvK;U#}qlvPl0sFNgJ1Y36oB9$Vx@aPqv$$iEODHZMDQbXXCt$yEgu?
zalyt#YTEe8#^1dp{?Me(k9N3`^%CdQ{M3f?Q?Jm#9vl2h(4)6pwQ<eHbsINq{KAo)
zXEEHg@w1H|7o^@&Pf7`&l;O&P)L(7<rqq7tEU<A$@mO!6tM;dROU2$o<$E^n+o6Ze
zCmgK175S5DSG9j_{AJ?-TSb!3VED(zL&YB{OyqRZ<dbtn@9eVvW3FA+W1ELiL&6(+
zh%<W&ktfzOIM5w*EoXk8-_Gb@MSeS?karN0YiV4I8V*bcdj?xE2g?RqJ1mF%>)v8J
za2(WeP}hOWYYQE`?4Xnb&w=mYSqB9jBpgh>Z%%nf%i$n!kaUn^Y6|^pWpa?&;g@#(
zNe5XRWOYCnZG2JwloP%#&*mVzB56XZvERsZI>_bVX$QHP*8y+traX^>d=BzE;RjP*
z2d8?67WJz_k^&B1>?3KK#2IDv=^t3nIpKTKLJkT$DB|FG2aP_oN;)X&pqPWPeT4qC
zD0xB2i}M-#$ZBz3RM8R&UsBk!PpGz7VQB|t98`8tg}s_5N)LGJ`bb#^<s6iEP{F~I
z8|{h?DmfUq(O$kWTn4xGk!c(4!rbTcg8A?(jbAdWI;iHLx)bgNt>K`SgW8JMR8L3Y
zu|BePfyF>l&p~|$Jsk9O(7-`M2TdF_Wy2iw`P*3de3V<N8atu)<~mWE*vvt52kjiR
zcktBW)D{j}I%wr!m=nFxM;`Z)zsiJ5N^ADKgSH%kzLJI%c5u+qK^Iz!YDta0^2-9P
zlY^msrL#ioS$%0=Sy@E?sIPQ$(49uR++twfUJiOYm_$op!yNPtYs7E|{T%dnFxbHm
z2gmx#t-dnAK}tUv$maEvK?+H@@#%62eW-)t{le?>_I66CeO?>k;1vfWRb%)WK?e~z
zT%GSvM>!bnV2pzf{bZbj@rsO9IHR9TaImtUOjNnpFmeWxDGsJOnCD==gJ}+?JDA~M
zrh_l~37y*v=EuEKyP9gxa<H(mGuy!&2m7)`OU6?e=Bff2UEttV2d_I=%(3_{a<iY*
z?Jut}i-Se%z5Y_Dl+8fGN=NmV<^5$xe_7&Sse?B;xg4B!aK^#e{!*cObU7!WgSQ;K
z?O>yWj~u+?;9XVMt^u;r!72yqxujG7RcEz>H4fh6=+AfC4s+LXeihI=<khPV5MFEb
zKIhAPcb&?s4+y*QLkAmFwA}!CF6xdPARi8pj~#4saKyn;PA&(ZI{4nfZU>wB2pg;~
z9c)$PGY6kL*rNCs3eBUbR5&+4zH+e5!44&)<ZDH~b?{BP<iP-;e7lPBMCVQi-#H+m
zaF>HLdGwNFoip}0*ze$ggVmp<?p6Bx(iIM>mQ#mGuOG4xIXIkNer#Y^{xPltN^(41
zenOFx3jaBh`a`<>%I?&&eBO7pqArTLIOpKJg9{EW^5fEl?czrVmmEBD@Q;Jb4t{d*
zn}gpSTyb!feRag1y(je=AHl&bhljOMlgCKe&NsE2{D!bh<2h3zg}*px-7bYkN`F;y
z9z<RFwZ-GBx49<MXph<t9NcyAhlBeL{!|ZmkHb;WskhnA&4&u2e>q@X4D2qRU8Q{M
z5&Lfk50x@4inaXf;6Hw3xZ&AYmibt<B-IVePjT_hp44ymq}Jibq>E;I!fS#vxX9=t
z;v(uIMn1&ST<9(g7p4nunZ^g9T3S=t81hO3g@<9|E_jrQl{zk57tgqO)`c*Oi|j6P
zxbWTZ@iV)4(nZ2W;9}p!)TE0{F8U0VmIH;Ue1wSuC5tNRDHqvXWaU?^!=Z-+*2pMz
z7+7ge7r9h4uM2kU(+YFDVQ;fBRLJ9kxmH!M$@96$@1lSko*kx;*m;>&(8cF_QZMdF
zE#!uy_MD4{ds5i|^1^I@i|3U-yM;YWe8EL=7ZqJpa`B>z5-v)+DC6QK7bRW1?4pzl
zdS_w}EE*^aI)&fCu61@c4U~q(?6NM(xhU_Vf{UvIrS!8728G{FIqw$UwKES2r$4tZ
zR%ZKM)N)b9rGEyus={gt8Lh5J4TXgVNo^N(T&!{No{PFJ>baQeVw#KFM<VrIbaK(z
zMFSTNm86lvRtg&{Y{GIBp?)((n!9MBNXvBjnvN;06>pO+Y3rh0I&bfyLpty1;_Z$p
zEUJr(t}e!;%e%Sgm(IJp=#kEQy6Bb8dn?k%MPEhI%IWW7fQk-uF+5#!kc+|Te29yo
z>3o<XY%Low!o@2pI#S^%g`*WRl{#Y;AD1o}ugC<26BSNUIN8M%Mbg?cUGZ04yr#$u
z7c&)^rI01hb}=WN&vh|R@%aiDC`@Y}H5aPra)pZ&zOHbwi#HTmqL7+PUA(FIGKFa^
zp?rmlx6&l(n(w%HSMinUl2tBNr|GC}S*!RbE<SbfzT)fBHP^fNK=BV1Zb+AJbooXs
zG^dXhZc_OFpJFptk95t?IF%INqVNlaU#6#SRpcv$+gyB|E@x5Srt|HJ>~OJDk?+#w
zyA=7}#cmgS6yM8rBRw^(Ls$;4FF)wwsEcDR4!JnY8SREI2)0~HrCV$|!RGurP9Kw8
zOayZTC*AO{)er%lft+&jgNxHH&bY`a$R#+-W#7dE7k|4r@8Sa278kc%Tx6MM^s2%i
zUAmTzTyk-lQ*V&`<l>5pJH_oA&qV2@f<N}@v4_gnTwHfC;(7Cii|&KupAi-vgV1LM
zlYVybi;G`f{O01Gi~BBq=c<y?yyN07AJ9d<x3qzeL$5OPm)U=~q30QTYoV_XI<)!I
z{hx25zu3b6<DTfDi$`2t1-#nvAKvcHWt>NQ1^>C>Klx8c=vC&iixfesgkO(YCf)R3
zUalGMXkWym6PIfl1Q}J*Tf6Ougl>Q6dZOZeOBWadOJEC3K}_)BAfZ<f78sYXZFKQ5
zV~|k!+d<+8MBoW74H8#CuPi$w4t03x2HoTMbT~a&=*cQ6$Rx-ipu>~Qs%=>XPYIqB
zWKnHMUWhOpuv3yJQnLy45f-b<E}`Qox_r6ty-m+E_utl@7SM@xYe5?Uy(#AvR21-p
zUp_&837u}eEGQs&Mo?H#L{RU0`&mIj!E=J&>lwX9Sh)tvfsAG$3HzVhEP37J^Mazx
zE1>I_Vgh<uX)#z{5R@A%e3i*tV|Za@3BgN(lB%g3l!r&d=FykVg(n>LBo9@q)5D>8
zloON}Bvxo;CG^om7dI4E5RB-Ta$;Qys~$R7DzhI1H3hW<RVB2vyvyuyziQQ}_PkkL
zP($@Iy(h6J>By_LppKxSppl@iYC}DRERFBl>I)i3==*5SVCnRIcy~!-K@&l9K?^}s
zRn!U1X(pgUFqRp*06HAG@xW@S3Teg8siz+-8yz{^qO+Q|0{$7oFi_A=&|c6%(2*l6
z=tX@&XF(5@v5WAo7IYJI=ku<&R}YpGgJtCp?maf+%Se_XQhJEA84~i|f<A%)5?W?o
zK|cXauD@W=5Scne_y`;Yb`&+KaJF~KAi-b`;tu=5fA*vkyd%{fDi|ghE}+xk@q*;#
z)Dg4|!AQX<!C302+6<!wW72t_64Bh}BNUEPk~=R($tMU8`<N32lZ4X>Q}|rxB2y*w
zKYX)9^y9OUStX+Ru0^H^rVD29{~y6DKK}X0sy-={uPYJdR-Y~}Mdu3U2{sBo63iDY
z;2aTbU=Isk6TYel9T$AC++N5>7LYJ3Qsi~PJ41xgHv~%rOO<fhach|(Zz}w5h&(Yg
z)ERy)vVwgjc$>Kd?+R86*3eLg3SU4hJ)x~++lI<2h3vie1Z&mMe7GX@eXe+dMJz|K
zUXe6TH4+9AdXhBOIf)+D+M)8XV3XiDy&p;Vm+vQ>Wyd1?bMI5ZX2EBI&jsJHsB_j9
zg<mOT^b1A4RJc`eXlQsh);7V{f^P)hD)~;qcEOHxq{5w{!a%~nq+J|Y!EV7G!C{qU
zuV5c%5D)LFD6iJqFJSrcVgJj;>$eUG(yrMe9^oLW=rIA4SS*G76E(VCJE{8Q{iBgn
zf*%B@x$F#+GhF-?VLzNx3M3Z<=Y@BH=~UqUv<^45i-I4StE}1?cqZj17A~mfp}L2w
zf@^{!Q8T=U;#lOmpzN(k84tYQ^M>H2;FjQL!7p4zJ;XfxO4}3s%O#p?k>IxAFTn%B
z9l>3}A8b5VgJIHpnEZL%Y>_28dssL|_c^$CB7bu9Rh0O*;Gy6VmwnE=V&>jqvaVqC
zmto;a&#c467^C<5U3)A@@sQC2uVYE|c<Tn9@Q}g7JL9Z%y~6(=iVl}^3$5<MW%6(-
ze$I+|&^+iK3=dzXMBf-LYlq8;^7?ANKsuojx8&C29xM+}dC2C$_TYF(cnCbW9>jy^
z!T0d(aJe*G$~>*#A1=-aX*NPCXViy|kfeu99$r|LlGVfP5t7-%XCvfE51-CUT|GkP
z4T)y)KxD%%kC5eS?d%?McqriE84o!<<nr*ehuj``dWAawju5`x$nuK3RlvyOp<qJK
z>mi><|CV}w4{2d$MxD`Tnd;$r4@Ft~EApI&A|77tZ_U2074lG+jk&HdG<ik#RnqCk
zq!`t_@IXpQ4-;RJ;vQb~P{PBSSA@~SugFgdU-Iym;xBtB<)O5PikCD7k}k_)B(#LG
zUT6>HJd{_Yf<j6vdZ?thF;XgfsG@jPg}46+GuH4>(?dBQ<$WBz5vk>2gNKbCYI~^T
zp{|E|9%ixS9_o8&;GwUFejXZnXyl=zhfW?EduZaJrH57?uH4k>kEAC7y(v30t2ART
zQHT4WnEh|F%Sa)P8!2y(l-BI(Cep@3TaM01Y3HGXBJCA23x#RCGau7K4-Y*(eDKIT
zJ5su`!Eal?kCbj6x_cnWFiMD@wQ#sh@kYO19=@Mt_x8|75thbie-8uL&mJau80cY;
zhY=oL@vyg}HQ2*1`OPdP^&vF5#i>I*4D&GDL-tX^kVaStw_uIrb6q#ac_=eVMtK;`
zP8cO)Jd9O@LIz64dzioyMul^Vfn>6WDITVJnC9{NB%OBwKjOu>qvS*Zdv`Z`x`!Da
zX0or^r~IyR9T+7SM#&rxb3MGxsYHwQFyF&s4{vx_K)dqrnumoRc!eTH%M*F@AZjl1
z@K~aDA%`bcdgj(&=hF?7T%%=)hov4?czBCrdM{FEw7kisgB?3MY#|rk<(!glrINf>
z#^epW!$!-@(Y&G^D?P0B@V<vt9#+#bJ-p{(+i1BnTAGd#`i3<&YXip!&rR@iYMqDm
z93u}OdT3X~&bwXv!Z6Dx!fT*e%YoaG97*RR4<B=t@Nwi}WRr(aINip{W6n(vn?0QJ
z@B<CN!{=<dhkYKlc=*D@P7mL4t?;mwv);pYt^h3^esD|~BVTc{Z_u`R_}ara%Gf>}
zBky#w_l=Rl?>ReYW@Dx3SjjLpe9~RC2M@bF?D0@-tnlC@cVrD5E4+=p`7Z5oFSo}^
zYrlsB9*%lA=HZ}+Lmm!$IKmFB;Y=GVJI2b+o5u4oJNVDII#zhc`f*NS4<}XC55|TY
z;m-DOj{a%J$4U83+G!7GJUsC5w}-PH&T%F8aLo(1<em3$!NWz)%FU^n`r8aY@>%-Z
zmla-8$fTb*t<rTWZw^n$UiWar!*8^FrE}B6&#FM?y`>~n`-L9?>70cy-1czC!+j5b
zdbsQ14^`&9bRA}4_B8xU3Da^BDSzmpma6(650AJoJ}~cP4cE_q)l>hckedl9DSkha
z;`8)zN_Cr8^Wq7gM^T~~e7xv~FTXPSi1>*5&?xtj)kpREj_$+v!9UpyAEu9(kGK!l
zhfwIlRyvMS_;R65HD+NTVMt5$lnzr9J^~*}A6*wZnN=3*Wb#pFoRB=JB>Ogpg*@dW
zn~!IeB)g9sKJxg;tIEmg<7riIE)`{6ZO8EdvXk2nmok!kio7>Yp7D|2M**caXq?Pc
zYLrv0ppWN#6!KBn$MZgl`Y58*ST&!8g_!TS#Z>Jt_$aO<%(YdOK%Il*q=b)`e3bO@
zvX8Q=#!@~?`?!26{I9!AI$@Lwln@yz_^9aPnvd%~D*34FV~~%*KC1Yr>Z7%fHa@pD
zp}LR8KAQNb;bZtQyAew+6@9*#Q`1K+Hn^Bm+eaNm>iVeXqrT$T$4LVp3{+^S@X7H~
zWSGUMkz!UJ9~%GlkF2JCXx`0yH22ZM2QL_E>7x}#wu{|yyfCa(f%3LK+WF}1qmPdX
zeXaE=W_uqz8{5I>f$Ol4<!4hm`RMGU3&&JRdidz3NcVIFs&&0%Qj?^ok6uciCOkD>
z=xF!Gc<Jk-pO5}NoCz{O;qAlLvlC>Xk0FPx6^E@MK8E_3?PHFQVeAthBYeEV{+S>X
zzqSh|LZ^izeT?!k!$(1w{4O-w$3!2Ke2nqKuSR2ijH7MmvB&dS6j`)0mC=O?e~N08
zefsj!ru&$p2>DbR&r2!ORJ8pBp@e*<YX2;s*S3aNITPplnCD}ikM%wV47BG{ffM8d
zi+-6F_@Q^ER~5ddaG}CQ3P(?n1rubkk2icQ@j?E<1X=3iO&`mAEcdZi2`Q(-3LkIz
zc-sec81_t%cNBkD;Yx+86s}gdM&Wx3sb6G}^S&yL9rYJW@bMuRd48$zvBAeiAG>^f
z@8csMAN$zk;}iB|G5yJjQh1{9s`_dZ<x@_FK%aCrvf0OHoR6m?pDWy=aN8FeC121C
zCd!vSwkq<K&%@)P<ZB;06e0gck#7}lS9vMisiNPd3n|&{V~>yhJ`VVpJW*Col)dbP
ze<D@$==*%sJQMyx+~q|Na><$`JSY3@L^<T+hlz4n;qMdWn2+N=&iFX%<AjfsK29;o
z$L>|(41I2rG}>?SZPBq(Q9j^lPPa+n%5cudc^?;iT=c<%v^^)ugh}$_TJ1+4jXK%6
zCd*YHmpHrGm`S{y0ap|u-#<yNOcG<VRJ`nts~)}K<E9TJ@I(T)eEjU=zK=h-_WJmh
zCBLlmH20S27T;L?MqBdHu(Www;U7Nk__#}REp4tT=Tx3y<tr5)1-hqFNuK^g`^(28
zu8@ng2cK&XxHwFfziEULeW;ciUdv0rJ^%Rl*AE@|gh7$V3R4nDO@#6#O>AO@1TrR|
zCtxH{e{$&Yn|CyxC}a*c?Pvm80wfG}Mf11ZQ8NK6f%Dh3E-y!82@vB7o4p*h6L1o6
z6OaUQCXg!uF9AP+Yzh4J*hnN0B=BScSrSMl=oAH+mHhivDNH?_j+{`8W=-I!^wj^K
zlwC=3D5MTEKAk}B1i$cy<>yI&lKcr2NFZ+l`4V8pw8Dwcr0058k^f&NGd`C<q4ZSB
zpHHADOUQ(LnNTc&7ZUg`z^)+NE?zu=6$!kRz>5i#NZ_ReN+!@JfxZd6oIt4r8Yk$h
z6QvU<lR&KmY9~-OfpQ5{N`!uf%PXv)kWpUFSTPaa<Va4etmIV^sG2~v1gfVe)kvUb
z0#tse?s=qUS{CN2!|_U>K>~FXsHgPPbkeSUY^Vxsr1DZZt;VJaG)thHQf{6=iv-#!
zwU!CAQlw3Ky{%O=EmvE`(~51Mpw9txOrVp}WMewh021h`bQq;tS|iii*<HzdB+&E!
zw4_%8z0=F2TE7JPvk#9&MkO#n5%S>)3`}4U%}+^&rpt#UaPZ^st|EqE2{cz17>!V=
zuP7X;gawL*S0If}U`ztLjzq>LFqsWdd|U$K6`_2BA`=x(VpqSBO5xN5rm3QqD4d?a
zyaeX+c@vnKz$_)4Lwhc&&sLlj@hYXcinDFJQ)z+X3lmtR$g2swmcTce9k!OasQ-Eb
zZ>Xfjs<mm?Fr}5VRLS2|xJ)7C%at12_I3jAB(N>O*8$#5U}XYV61bYcssvV3p1{`$
ztfAzHmic((qeS=_{aylV6L??obqYUBV7($AD5OrqE7k_ZH!5V5!jBW71HDZONj^#7
z({#Q$fzQ(U=Lu|4{EKwSmkDf5=U*u@<*rHBxGeLV1inpRdjdNWxIj}s9@)t$#{S=I
zomRLjfjtTARs4H}yV>)LQ>QOZ-Iu_A#g8lb0nYIRjws2&1P&=-r^&*ijwWzSMVX6v
zDIww7ej<UBN`6Y=4+_%?rw+pzB{@s;<_7^6y7a0Uy{KBt2LGtYC54w2{=`nxQ<!w&
ziRd-X{m*qR2){62=W2P*xS{YSKLrx_Ie}ji_%(rlxdJEfTLQmx@k!u;(z%_$-30zn
z{7wQ5FGiUCUIO=(<WGf*?wOM&hu@apR7mo70*_SELxq%lIa&Tu{I1e@oIr|dPefsA
zfYS@@CxY;5UMe%_QzS!xi~+A0Hq#^|(ezX{Ko4L9FayK_v<}cFK%A)o$^<AIzz*O9
z$Q>Y005=GI$2}E<P75V~7r+mY2#`6zlL3MNPfd|zfJ_0Nm}b#q8}@7ErpV$cvTcfF
z36M3QhZ&Pz;OM6B&=h$*Md+U`TY&5Vas<f9(xyr-R)^?={Teaf2A6K!o>rCSpDKCz
zP`kBf0z4ap9?bFuSbyKiAD}>hs#B%&RGBnY3I=#CK=A-C1}GF@$y6y4;Q0WB1F)!1
zr^=bBQZzuZ051fgbGiSfN{7sndzz$vpwWFIpQ{85KcJNi@G^U2zxEO<J*ZWjCKC&}
ze7aHrN(X2%Ev#$wG+8iB$^|GNph19!0V)Kj$ch4dHeFuatyN;f0#svTc59UbygyB<
z1l*`2ccw{o_U&o2W`J4&Y6O^c-r*y&cJ@#00CfV?4G@_g`e!RNU4~7UInzVWko5!X
zpDv?gE^BY3x}{lw<^dWj&c|sIplN_h6{DA?%fHhl+YC8zP-_u@q$S7nWa#j@6+iNR
zv{_f%0PO;d2=EHq{3z01VebGP0(1<}DZoF)-Od5sm+`{QC~FU!7ob~!?#ckz<{klh
z2B8nVUbK_yQf`LyoFT8zkoRYV-U9ms=o_FPSF;&1D8S$V{Z+;R0R{%RFhi`Fl4quL
z+@{r@DMJDb53p^f3=J@hJwG$7ZqiJ7ccyR<&(4&Q0Y(K_9bip>(E-K;m=|DvfX6ds
zY=FrDrUV!l@MJe81enM!B^GiyrhF&J|3KVXQfij8m?cx$q**c}z{~*C0!$CEV3urV
z(n0O?ESVKxc7Qnn<_6*FdRxge&KCNOd~&wbn=L(N%Yp!}23Q_oMS#}=Zb-nA080Zb
zVwM1l1H8eO%nlu6zCK&NnH{>R%rGY`p9YX~jx0T-y%}Jc>WZ>+gf1~Tnr{VoXP@>C
zm;C^52dF<sc-E}z9Qk^VoR}jk1FQ=0+njJ7u^gKHdz^i%oDTzR2(Xr>rRKsqBB#Rv
zjgy6j^g$3hip)4yvdj&gG;R#ADZnQIKH|7*?#Bwt%$0_7<<kJ01AGzSORgT7<+A{v
z2iQW%0gbKgI#(vomGyJOxx?Cb&6TYIz6x-DuKYe%Qs)UBX67jq{f5TLPxj;CUF6>e
z*dAa<fSsxvxh-wr{M0o3KEQ7Fc@nQCu_wS@E*(i^Nn#(f^P5-_UJ?g5O#<8ta6iDI
z0EYvd3h+aKBUGLz2W#my_G(8t*OJj=3Xdyf^n@ZO74ltelY-i5=9(A&G(HpHY=E}&
z<XnKC0$gGHX@p90F~DU-nEIn4mlRH)Cu!uWirxrtGr+ZU&FhLRnJ2db{2bs8rwrZx
z2l$mnHBWw5slT!IuQV3>(L5pERzjvylhL~Y{!qEdDY>yQ_0IsQNgxT{Px@B?-Yoe*
zDf}JaVSq=Rl3X0(=D!?SC8xq;wrYOr^?8z#{ND|dEQ%67@)Jo|$<T~5B#|)*-pKyw
zu4X7Ci6)^bt}9&MC51v$@tDH6LJHS*34h(&swgK3R|QJy)v~wtu=bve@O8GIM1r-P
zkMLU0AQ`@EOD2&i30~;QKPNLQvbRJuYZ6Z-QL=-^P1M<v$eu*mB+4a`BZ-_z6i?#C
zByuJ3bP~@cQ7DP~v@W*uH>3SSBTo{=u4;Lc$d^QZ#h+DJKp~T!Nrpo}!cZ`YLkm(#
z=rnKOOJ-r!c>csIlB5?hWSuYMMU&x=zG4brNaAHBERn=ZY$2mb6#drbg&K4IGk85T
zpO?4&(tA>=B;Gn;mR49M8GavNw0sg3lIWg9k0i|!IjcvjCs9LHS}BRjNmNOqs%jov
zSS=a)dP+k^YqF3e*8FF*+oaV_axY4>Z4$pVw(BTfS7AMc^%XWy*pSUmqOsyFlW3Jh
z6UCb<Y?kDPnP~GQS}5|^<iCa~lrW@`)=J(c2_{k4E{XO@bl^<PZgy0-)Qr~V;iDuv
zCqbWwU6SaUM7JdB%$N4_Wzu|EGGEru5AC*R61|cbn#8aqdM7dQGwr+iGJyT;=zSFS
zRoE|y{))8jmBOTfs&fV<F<6n>>r#d&lIDkScoHL$;C<5**v=$w%@-}Fj7?&s;-eIf
zRyal>6`oii<7j3a+y(N*v2dU5p%Tu-Bqk*>Ir+amX0wx+qWDyW)6(VB6`7%MroveY
zUsw=sV4Fjp#5^UL&yM;$yqSWb<^p*wiG|6~`~9+Gkwt8O5?7PBmIP-6cN;EFV%PiD
z8%ZolVrdd@Cb2b%uaa1n#PTHGOJZ#jD`-ebtW07R2lQa%muI!N6?rF#D+ePC?<(?g
z#*|eDBRq<@nwkeAYm(r0l*$=XO7Je2B-SPINfMu`r1eQ`ROEvsK2(HrjU{iOVP{NX
zfz19<5+5hAiAG)}g-K@)r`9<X*{mv}Z@SNDu^Cgo$(Zta5?hk^Lba!1#*{A=VId4`
z&$cAKPU3VDXOj3PiEooQ$Vr#P_9S-j!ISu&<25vOCx=osp7nmm8WrEoB_d<Wz9jbZ
zQy_`GN#w1P@<yGM9;)Qmc~6k4i^^;;pZahTN0K<6#0k|`M^y{ia<=4H`ctqcPbP6H
z$veMN{(e^DzUUv)yUvWHoK51K>WwR$eMwwM;&Ku{C2=u{A5{zafGqHm>Lu1YL`CnX
zh7D%>nd^Jib=Q-)k%XBEu}rv0+fzn+CmH^Q`*RY%b3jW)f8mN$$@#5X^jA*gYSG^m
zQbGq5w^^@pMsfH5(e>WZPE_yraPAiGoqKO?VWdoECX+JBB%w=DniP?y^xmWiB1)C2
zq9TX_3etP;y*KH_f`WpGf+8RSDgt6b0TF%oJo&`+{r&N-b=F?{?DL%G^fSp+Zt_KO
zQ?h$B%&V3CM^XG)6t_gVQxty{Mb}B{Z9#56<adkWABmFxEoS!w8D;pF>r_(HG(a5Q
zry)Z~0S)&H`K_0S|2xu!bLFy7MR=xQmgerCgC?mt8gez{X~@?wJ($fG*YhKlOyYCj
zyj`TA=Dvwk)$o9ZhstLc(%{!%X(+6rh=!sXG!2F%G1aF*Pw_verrnvEMv=i3@!zRw
z0S!UnQ4OJ#r7a|^;jff^L_;z!v&<@%9oLZ1u)uJi)h(u>I7`=2L`Mk?B{kIeG<~`c
zr8M_`u$vnG&`?@K84V9=D68Qu4R7=OkB0IZy0Xa{DzG>W^))=M;b9FG=|MwH4V5%h
z)=))5RrbRqbxD`JbEoq5Oj3&-D|q4MeCvGfBO0n{X!5zjP+bUn=}`@}G(4uEwg!H(
z<kBSd{N?mJlhiuwmdR?B$!c8<e2|cq{Pb!)&HW@RzsLH7h6WniYv`b%p@v2p8q=YM
z)|1uVlhxG~Gx><qdq1T&)%fb&f~_?))6iT)3+Aej*HS|(jqk#BZ|t8m+1-;@2)5DC
zR>L#b(yL{9i0w3-n5^EMtUjrsqlV5Jx@hRcCYR05o1*Tjk$q!s+O@f9fAerTMYYQ3
zH<_Y#)6iYRiyB_i@U(^=8lKlMfIc<!)X+;qZw-T{sN<)oho-2{YIshj(Ag;}zscK2
zbKltPOjWB*Rr_k_r=h=weNN_`DQXf~&w<RYVW@@|*mho6Z=Tm;sybN15LT?X%0Qc<
zQ*!x+$pJUg3&*mCX?R(~>l#L}4>i21VT6W}9EIMw!!>+5CGU-?>N8W-*I2`;Zr+Bg
zbNQj(9aGg$rmAmfcvHg|4P&_+KF+%~RUP$1-e^wsX|5$tw>~sYZ8S~oIZYj>VZ4U-
zG`z3j9SsvStktki!$b{}G|bX4Tf<}xQ#4G~Fio0#uwdq)A9Gi{pF3T{=xOS{Y3ff`
z($7@RpP_*`Q*h-pb&iI)8kTBU#u}c<9rs82Jgz3r^WSn8Xjr6SvG9e0KTlJOPgj?4
zdQW$2$Ut&$ckXfxt60M)-Qiv#rLSbqi_K~cYgmElY7%L%Uc&|ryEN?9uu;P%4O=v9
z)v%d!{+u#*x|-c3pWi;FWzfmq#(5jd+rhdmP__$BTkJV7U42)>PAQ0-mU}ep)o@V5
zA(HRXm9KKYp04iGu%82QIqQHR32!T+@y+RK)(n-eN&G;=hZ@dlIIrO_r?H05Icd2_
zH5}3K35QRLSQ5=Y$~jp+KRUxL>lp1Xr}NUlu<F^z#o#keW6l;yrNN*X>K7Wm)bKSs
zS#uv`J6<vG6v+(rG|fgA{7P^y>oB??-&!*~oc)c4Q!~^ar*qG8N}tZXGDH1V!vzgj
zHC)s1ora4VE@`-|;qMvhocHr*`t$Xf>amTv-)o2*E%*a>l9_JZe&iuQ!%q?zZ9Y?F
zAi1vLXAQq;_+7)jWqCI=-g}?T%Navvs=sLXRa!w#OP)65S{Of5^|#3XQ^PIp*ghye
z+~#)2IiTS#w=aG(Y-%1qi^F%r@*`z`Yq-zn{;KD--Fq5O^<&XY^<QpZ+j2cV6fKci
z@JL#k5AcB(7cL#kW!Dw(;eJM+%}w{Ap2vIO&+N4E?isU8AF_OC;6p<nvVHLSP|1hN
zKIHh2%l*@b(mv$*kne--L&WDkv~_Z(TF?j8hX;Hp<b&yh--p6J6!F35gYE<G#wkki
zNSfwz@6utE;l@mr+z=(sOX|mR8MS-}_z-s8<_3N4p@$(P(Ilr%!ldoja-%-?@%&;w
zI6lOD-~-fORmdmCeMm^y*^ggB%;zhAi~CT5^{JG>P?Bw#rSg@(Wqf$hhlhQr=tEf_
zUi~?@oDW|_vn$L}o6b_pOX(E^9};|HmODE9_;TgD>EFDYxp|ga#fPds)b^o{50Cgz
z&4=nf)bL?^+`YM!cVzLU$GO3b4xRHZ-pQ`%!|Av39u=&`o|iy}6zg&be0bc4Cw$-=
zmFxTP&e&YOmw>5-K219|OXW*1d2_|ZS!yF68vD?PjrF044^4e&>q9#qn)%S&ht}*&
zAI_c5D^fJ0g%2%RpPN~&I83wMnv)YdKA7ETw)(>orO#}&y$>CH=;A|H_OK5fIkI;4
zr{~hA&sI0iRy)yEG^4Y$ea*A-7C|4n`EYl(`m7IpBXM{3<X_o*=J#nIdid~+565P!
zmuIUzC6$~uj6UbXizV}V36k^{qRmnJ`Ox2o*L)b^!}C52@L`}2gM9ei$>!04Z$I9;
zR2l4ZUnSl3r1Bz1ymrPAABGAce?iDgTXSFXVVDm;&B}e*hgUd`K3p&}N-asFLL4sj
zr^2?6^zr4QnCQbKA4aja=cs(`F!eWl=sZVdc+-c`DLzKXSi!dh-}Yf#Ds?=^D8(lT
z;g{|Q&r$jAh>rF1Ci^gTjygqfs^B!ijdRo)KFsuCmJhRi{3(JXKFsl9t`EC?*yF=I
zALje8%7@jmoPR9g-l(&{hlM^Y;%HXOU+lv&uC?3@h9#mbl_-;zOLRplx>BMv<9(j%
z*C=azSnI<&>5VNuZ1rKi4;y^o!r$n_Ceg`R+-Bhv$r-l!@UEDVZx?Y#%9!>$C25x+
z^}Rmq^Wm@$A2HWs8T);>ay6Yt>f+Dk9q@s8(1$~u9>U)jKOYMJKsXIp3i;6Q6~2_d
zbm5Hj+v!Jr_=K~<hnqfp$~or4RUfX=^Gx^6FqeE8$9?$BhZ8=0?!!q=S|84HA^Y&9
z4`+P%hQobTIpyP7EWDJSaay7$ueu$}H;R8P<!(*Spv_r&&d%t(#zW53Z#j`z+#K~s
zAHMV9q7UEu@PiMRSjtu9vLG$VU;HYaShBl^*%|2P3U}AXGRc3E;<y{k$jH9#!@W6b
z|7&@pO7M&~Zg3Ko$o@s}SHa%|XEn;C{)Z2La((H@)%h~L4BuS!mQ0D;KHTx)FD^qL
z(sg9$h#k!R+lPOA_?J7tzTA6)56@LSI?{C9uj6~ZBwELPVp%}PD}!=Z_s?UlOHa9|
zT~)4cOCwQqWa{o$z<%DAMx1mvD@*cb>+nk6Msrn~?N8)$*X=u3<!2i5bmZ%N(OG6e
zK~?Yp!9s##=c-ICszcLZ8t@zN>Ckm_(a}|hK~YC@9W8Y5)-^wyqhu7<v1+br=?Lfu
z>ImrwvveJC9k!0Kp-cuxM?^<dEICpPWwQ!Wuh`p@5SwC>^lv{;QY4npQBp@K9i?^D
z((#y%GCKGkn}>B&)bXH>vO1bQno&;2Lqf{ys37E}f77TCKhDgcK_wlPMX#=-iV%vA
z2&pP&j51Uc<=|YkM#`q9kVgeC&sA&dsH3B?jwYhi6?{TRJt6gVclA9kc<hjS$ZH^a
zL%~L(54PMNdweZSQ;Al|_P9lh0ri&jUn!G6x41@H>Dcghc59A^khVHH3Zd9eM|<HN
z1fLY-E$mF{B)qd=5mBDf(M`u89q;MruH$JPlXXnd(L={GI(qBqqob#eXLUTMqZd1B
zhkGXj18-X3lkBWj`9_)Q!Q8$&`so;`V-P#Jl)~5V^k=TKxv_cb^Ew7dpfRI-YTNlG
zd$5inI)>_aL0bB@ju+Y0I$qZ?O2;rAFY6eg<M1QdujqJH$8a65v2W+8z2~VE$IMgb
z%~SOn`Q-fI-AEm)59E^2;0+yb>KMa0BiWB$FF0Dqnd<o@G$wJg>v&6286Br%ypDHt
zOwch&Dl<`#wJo#AJw)F9#oan6PSr6@$9ndjj_EpP=vbg*p^lll`|$gh4`j~MF-v!U
zKFt<nt~omI9(Tw6-Ffcuy5FYU`8qzGr;;qvu~<jLRmzt6>JlAGb&Si+U&sHp#j=;N
zIYO4}SfS(EJawf+R|zWfRoZl%udb0O`C1(#=d1JPs|V#vY8!QI(y>FwyIlM8)wD{P
zo4HaFnOk&xUO$gvtB`FvwhOsDU!_=Tf9{rL%1(}Z&AeSYcI()~G1{vz>=&|EaG#F5
z^VOt&K*vE5?^MgC^1hA_bYvUw8u*aitK$zHf9m*%)zI;ij;lKON|Pfxj_d9t34Br2
zQ5~Of2`^9?KGkt7#p^CmKhtr7)zfiO$2lG6b$p@YOC4Y7_*%y)ZWrejhSNIcpI0XL
z%IGx7%jg*$-{?5YE$F;L{oZ+{;{ugB`7=*?ztwR;$0Z$?CHr?eF4B1!H<g$q-*XR<
z)GOlTM;)!dRrm&Sx}r}ajj!q0*gKDJ9r=|rbAfuDqr5=<S@4FAUxa+HK)t_w-fuei
z(P6$z_ID0P)r^~hRBq|Gt>cc4zqnrhNUyg)m!ICqx|DlY$KTxH4g6Is^PY|y3)D2j
zeWg|Lh3Y>#{*}2z?lC~*jA9bR;64M}&!!bH+{s2U-9Uzcrx&V<fuUlVDI`mfI>j6V
zxdw_DC~6?jK)!)O1_~RPZ)HrYo>$Po_=T!!-~sXZNa>843HOyOjcVjATd3CmN#PUv
z8aICfx&gyL^Tzp4-Iq7&R@U}~>f%Voh4HzGLYaIGh-Dza8X6d9AZQ?D;4uTW4TKHY
z1{?!1gAYyQ@tDFNHW33+1OM`S2TMKt&OzKj!axP7KruGiz>+g*eQu_g5T%rX(gsQj
z=a-V$@G=G-G*C_yM)%K3<JS+%(&r=YZ$*akDf@>EJZzw%;r_#_VxX#lO2R7(ezefN
zmh^~$Y6fZ;sA-_Ofn*X1lW35Pl0RyI(OQBO>lmnOpr?Un4fkC-^@wKn;|A(eIiJh$
zjt5T|XkehBfkp<}8fa&rv4JKA&MZ`08fZ%8KyEXM-biF`nw{TVcnbqRFI2M@xnCn{
zW#EVDp4JB1818v{e!3{SNF`}+po4*K2D%$~l5H%X-^oB{AsyMqMJkoXi_|U#x*F)e
zNWHT(zq4d~iZwi!P7hCWGy~bJ0B<bsVc;19cT2l{%fRS!9EHEKUo`NNfnElB8|Y(T
z^}VbC1_l~<W0BfdupgbvC_FE?V3B&FNA4ij_Mw99zs|a~NUe7zYp~&73?0G=Y2XDh
z+p|c$yhvSiDr*?MW#<*xmpj_v2X63+fmaQ538^Cubh?rCNrSxMQmfYlM+ovj`MQBo
z2Kenuc4Pm8xo@xz2Xo&P%vr3CF+hh5V}-mW7+9>1H{7pDzGGklS3!RdImdLOjPgta
zlY~&2Y+#D;sRpJcMP@wgUVvkmAxbhj%fM`j&Jmm|I8SiCV4v}Bu4<>!7qSNoEat2>
zu++dmocRWp8CY&$gMp0(PF+anQ%)-k_lplJ4fke}Rf4Mp*9cNvYha!5^(n=Dg`I)T
z(yKcRY%#Ev`-6d7RWkTXZw&v*o=)E;IywK-ad6)?u+zXU1G^1;&G}|vkAb}gjvDyH
zz&-=}4ZLUIeFFy!95ir<6)sb7?%DL3U*z+Ja`aGdu}b9wZvF-ib2%99S8uv3R$ty&
zkZ)^gcSsq$SpAqgOl@~M9g(`tSgd|(;Fy6g*;oU|4SZ(cgn`c`b^T)Xy~XO~#qLJu
zS)!igdEi~j7m`$Sx%&(1+hMt<4fh6yuef(DQM(n)_7rlRe`DaRfole?8#rg+yn*kz
zUJQI|@DoM&&cH<j*7fvKOVpZ6T<7hVsF&F7OVqrH`IkBOmZ%Jqm#9A)xZ*CQ{IsR6
z+1@4Upp3kq3|!^D6wCNb^8Re#hJl*~{@_L`X1^Ht)xhsN6+Vmi(Z_keai3YL{?5g|
zRDE`-`X@($b>^})_>GB-+Xn7%x92=xs!m_3-espPRqriT&yUF``C_SBWSKf@Nj@)1
zCQSEjR36hkbn?Oz-#;1J<++bh6D!`t$~SSpiF6Z>bwTYe$S|RpxE#gzQDmCPGBF^8
zfgxm@@S1odfEMZA922=Fx`dTKE##TV7yhM%f+kcG=lnSD#{(t`nfTts4<-tmC}Lu$
zi5E;1HKCcPH9V)XiCrzSeI_gu0TVNAMK|5aU<jImeiJuGyJw=tw^V{Ah-C#sCc-9c
z6A=?pQA(L`OvHqj5R3~JGm#L&ybmr@iN)zz2zf~pue9;peOe(eZKBM7mL^7|Y|5D^
zFM5Sk>O(>vHc`<;CE+WVsUM1c6%$oWJYu4ni54bWny7A~hKVL7nwr>I-BZ&<Jrng!
zJZiev>Gp(_TI_ifwN2D9QP)I94NqD?(T=D0&=iv2!V1mU)l?og@q~#6CK{S(WV%-a
z8w)lcoJLDJXCP_De&)p~6OC(lt~Ab=7E&%RQ)%4FL~9eznCNMujfu8WRu9(Gc8h3d
zqP>X@CZ1&fnCNDrqlr!&Src7NbT+XpsPr*%^McC9tG)64=`4%N@{(>PyGw~rn_%iw
z=^kD*TpDtHG7L*7TWWZoHPPEd9}_fw&O|S1J5$pexK}Ovns}bmjQwB3)6WF$`%Al6
z1gqWgQO`gVgG>xIdDYA_M4WV};faUbtCsAp7frlm@;nc|GcnA>%j{=PEsiWF+v?1j
zCT5v<)x>ZUuW?vSjN_1TayHHwY2r;2nN@ShUpFy|(_8e4g*^-uN1GU9VyubdZIz7W
z>f0tZv{&BZ!fC6VXs^7{MtQrfl31?3!@la3v1NDq1QQcYOfoUq#8ea0h(&Wadx=wI
zK9fv0F~bD0*>aUpVv>9_-aFgGViQYD%rQ~?SkCj=S#wRyGcn)90(Mb$7Q;dzFD+LW
zvDM2}D)e7@UG7p7>sdVxlZoXfRxMXom{@IMjfs^K{cyRu%7lx{)k$^J*0P>;)7A;n
z139sOS!JV%ttLnqHVN6x5lJaGm#f=^Zx`HQ;$0y;YP|4wCbR4|vB$*6CXSfc%Wb5I
z@}3~cJ`?*>{D6>yf`_=7tWasd@V<!;MEo#id05CtCgNgq)WjzyzBF;l#HZYmnkr5U
z&*vtN31{@Ukk1592$sK{LH(rgFSusAr7_BIT9j`DzY_df@C>{0b=T&sL`lvGIWPFF
zVAT~Wx51078<$VIcUF(IOD4XqkVe8l<wp}&IBESD?8i?guA1oX$GLjSH51oOJnTnB
zKYliGgLBD``~CRE#IGj)HgV6yZzg^>akRSUPwsxQ5O}qnQ~eL&TtR1!r`<Af+r%AN
z3snA+wR}3J@Ot-M5y_eB9}^xw(){?B#>djREzm9e|J!7$)$r6jo_-$<0?PNrlyvHT
z`2Dc_Q2g#5lH*6NADMo4r((t|KeGMs`rVy}YtyXZ)+)~rIw>Sh^8F|%sVet>$<?-&
zhkI9YAs6<eh#y7$(8Rgnhfi{G3G04b&2+aHI_zNNQZfDDEeEVvz>lCG5BgD7j6;6J
z{D}Jz_QUog;z!gEM+!wF&meKd?5>~tJqbUG`BBpEZoI|)C?O4J>bc`-G+@P8y;6RZ
z7QKu(`KXqs-3pcEmh-y@I1=u|<^8B2sSk-OdZ0sYL6!WdOx=$bepK<Jsvq_IsPD%k
zepK_Ljvw1QDb@W*wDi;xUPG{^ACC$t*3v_RBt9leZ87FbtSeEbGVkNU8?ZzCctSYE
zWD>EFAB{z9;zu*TdjM_v|JqQYSxZ0K_|aC9S_!rmWa;gM(B?@$+6$-u4(z&??n#V}
zesmJIoh7L&yG5e3Vd_(UbW8bRl;YDe&wB`R!apOVr{J@GJeSgY3F+-epOn&9NIyUN
zr<CXY7?9!v{rL64G&&sO$52kfrpiLjB0paAW4s^l`0<h-!~7WQ$6J29?8hs9{J7Dr
z;j2>HHw1?ZzUIdWKSuiTx*u0IdPa#zV+KaAw#X(j<C~(7_G1huXN&Blx3^QA(Q(3Q
zNj^bbosKBe{Fo>iC#5PdS)x+}r=~<&PWNMmA2a<RpXJ9~A+rVN2sUb(#-w?|=lik1
zkEB9uwL52#AB+81!d2$SAwS;pV@u2IWq$1PW49m6{aE40N<UWlvC)rB?D-YyYQc4a
zYd8r%&sr<UB=YrsY>?>s`Ps>&&3<g-;L@`nTT}KlX09C)-6{C4A3YX&W{VSMWVBQV
zWse_CE94v$zE^OcAN&0{vO;C*0a3{Fhh_Y_LVe$l5B&Jdj}v}0D3|l0ABSnVIHyBD
z?+cFdMOoz|KR)(@<cJ{2Q6ZoB@o7pqCgix_pJf$h{G46q$5(!w^rPQ%IbZlOXHm|V
zf+VN>$XTh9gjcGYx+-7$QKqrNaK?{sgr7|*4Ogn)`f-6Xp}4Z#!gqdL<VI&fwQ$Lg
z%YLL=_@Sfny&pgL@f)$D@}uBYK}N3#`HAbdjfYW&Yoc7|Q9#HI!CwTK`m2zqR;s`I
zaZ_f_AAbBL<WIp{g0}_l2y!0M`CUIhLg8)#_x$i!NVD({H-AxfHuW%k&_sdd8juvQ
zaG&r!J=_UT<$ep~3>g*_3z^a`)+gUWR*Gi}@e1ZxXdB7O<-Y(6%udTUSE|ce|F4Y?
zSV&kXCYFUP6t+;rLQxBvg{TFGc`M~q4`=x-=oSnM!TO42Vcf+W)57JxUcca<w>;zl
zrdkMD=v-K_1;c`^uVqq+2q!5KQDPR~k)D&@GCOXeb~(kbaD&bMsZUOE3neVHv(Vl`
zNeiVc)UxoHh0+$LI||QW9B!zTv9N7q&Vv@pS}13syoD+js#>UE;UNo^S)V4#!xsAf
z>8WU;l7(JPvL?lpD}ypRe&l_lVHU}m$J1!@h=o90scxZ$g$}Jf)hxU+(z}0PMokM#
z`=;HuD(6uP1J`8MZmLkEeQgVMEHtsu)Iwbg^(@r4@VJGQE9F0CL-#cDsa`oxh@Yy>
zGa6WEXz`7IS&al6TWC4K!zjb;C7xy$np<c=(Zad@?tNM8*u!soTUj`|QZ2AL=ga;%
z@9g%rwm@vdQ4m6Yd!^dJ!jl$WvM|g-M+=?USPT8wy%xGy=*rn*;jLLYKbP{JI^!+0
zO6_LxljS+REX;l?x4VU>E%dN(yrj3MAjvZpe&69GVR+WUb1D5_C9T{lwKw~DmD)#;
zE406b=PkTo;YACr`g#Yj|0j6OQp&b`WuS#Y76x;G@|7VLh6-u6N@cXC;L<Y6tE<#u
zZFAT^FSDa8%(O7e!mAdBTbN>DDtn_x#%mVdu<)jZ5f(;Tc-=z95?+Q;LWt}xMn_v1
z!)~!K!NOQJnb`+;$64STlin7-<hF;L;&{%G@(KxY`YLszg-POsoUSGdCt-9Nmq0UR
z&noreQ19d#-su*IGXw{C(q^+KEzGqrkMq1$=Gd*?)hjdDs5uWQ^DQj0u-L)^3wL@b
z3=1vX8k<AHdAo#@%EH-I>b$Pmj4rcKV71C<vDNAdP9aX?X3C)!$|?)1Eo8J%)>w#j
z&e>&Qt%Y?K){97etB?&AHl~zK7B;8&7S80=D$N+SS=cW64#9U*HamqZ+m^AL+lYm|
z7WP^A*y1Zvv0ql%Aq(#bIUsn@!p*vATz#*vcKhmm>8lScd}!gY@Q(zUi-88jHtm$7
zoI(~pv+xPW@jwQZPenf_*lc9luQinu7EW6D!oufVS(`jm>ObKk`R+$t1OBu-#VH+D
zP78iz;cE+Lgnz^R%EFKA?e4i}IcF@KxA3in3tavdzUO@CsH|PBmMX1$XW=3b0TxEL
z%h=sIjW=tNe74rhon+zY9DRlNiiMvzi$-MsVc~YS?5o_34|{J~xMtyjGRk#n)X#!9
zEc{~OR|~&!y|CsDvsN|As`+9Dk(?o|thYiv4@0fe%GWD$So2%-$@#z?z`|Xwy8xaE
z;BO1}xM~8Z8o)mm{<ZLM0Bd!H!4u%`{QvQ3cRUE-z5ogYaDM<+0D%C~1IP%VPymGk
zPy)ydAUA-#0I~we4!|2gP5=+D^CUx!bsh!|3Zo?X0Tc{C4d8(Ql1W4+afeJAFj^#l
zq5<duo+XABa0k>U4oR5$ADRJoU-kbVKTHY+5DK6~03`zm2Ve&f4<HdhB!FlDP5`l#
ztN%(&mP;%qWzk7-A^+*60w^6oxd6(GUM7GC11Kvz*#u@u)~bS3=Al$}dPs(fQq@X=
z?BU7*9EzopJQ6^)0BQ$NM>@Q^;G=>y1ZxUjsGC+x2(vtva$Z-IMgcSqpk6AqegKaL
zK>H^|X&}Z8Q&nYU=%I-uwGnI@Kr=~Y{hRZYT>vcuXqD=s*3ukyRI=OK2GCA&wGW^}
z08a|%4CyEy=($?}odW0_K$ifzirD71=cxdanCztwWC?c<;OPK<ZJy>P?Mm+%z_S4i
z2w-3U&#{-pbH4z33!&%tVrhMZlk}AavRvx@rAwbr)nrfrG#Dn`J2-$Lq7My##xF>H
znEGM>FNx0HU`Nr(%K^M1%BzB-#OH9q*91ohjud=dkbYQgx_vW%(E*GJU~B;I2Cy@L
zw*q)OfW-kUVP|&88OPECm>$6R0Nx2;LI4xx)aaxDl4k&THh|{=XgN86DUyYJYQQ~9
zKr%y=xdF@zV5aa{l5uv*a*jl4$v}tm16UBiLMdXAV6v1XE)8H=0P93wF34P~16U#6
zRtB&tSwxStWa&&@Bg)!Teb!5^4T2j3*d(c&1K1|Y7Kv^Z{LjPo0CuFxVl{RJu$${K
z1pcJi6Tsd8{tdzt!oC3ZvnPWX8^nPC4s!T{7#hSOjwvTz5bc9_KY$Mc_$h#^0el$1
zVRmU}<x&721@LhIp9gR<fFl9-_5g-s0UVV<|3vUpL5|uV&wG!P=Vg2raKB1<LUdM!
z{EGm-4B&hK-*Szg%Q?kX2XKZ{x@-370KVeBw?_SbMNWk#S@i#nWIP)Hl?T_T=Oo%l
z3@%6=n2ToLiNQrlZC2F1rocL1rYM#FLGVYxD}swh<<Q_-0N1&L1z`vAa{xEEsRof7
z#4lVm+_Bkd0sI!g?*ZHmVD7|>n*sb0z^wpoOZ4z&55+&Ztk$Tb)~Mun*g0#|zXDh)
z(a(SP-dm&o9l*T+s?5ls0mEp?<q6`xAPNML7IZx`fJLu$o!lQpdJvhSXQWb<AfE4$
zle8=)W?4aGr&7H^EUoBeYF-feK@<%_3!<Q;78X>4ctFVV0%?VW7;n4w3`HcGY>O`l
zGYEeWdeTOaHc!=Xi?)IYiV{famAbkfLK3aFR*eJ^4dUS-DhA;M5euSp5M_dhi$Sp<
zXM)?<M39%U+^#E;@>42^lET|c)0otwKpOGEAj+p~$_7y`#h+iRRuKMBN}01(trSG%
zAQ}YGFo-HaR1Kn55RZw$BSBOTqK5ElLF`_ue!o_&S|H8SF1uzBk8)|W%igfbODw!j
ztsO+2AnFJ4co21is29Yt5oyauq&>XO9i5hf&k8d7L=e-3HwvP$_-_$J6Cuq6IW$d$
zY+0vP7?IXIh)GS{o^KgMs~}nj(MD3+3Vt;pn@L}+Q?H57!zH{Og6Pko58}xnItI}x
zh|WRu41!5r1WCFJ=^DgSDWzKwCtBw)iQ#Dxdj#=JDwRpk2Ju`Fy+nDuWp*DSy#<-K
zuaJI%8SB-gp8*mb6vRLw6!$x6#K96J=g-;~xRbO{US~~qrN0=&OF;}1{&En*C5ieg
zLA)ybPD>AsUlTq;%orUR#E{mmK1%dAf_O8Cq$S1Csf=$0@pcgVxrqgN%aC_m5FP3%
zQ-T;D#5+Mu2x4LogR7@amefgt1FO47lO!@}Y7o=dx3)5!Js-rpAa3vW&Jdg_I4g+R
zLgolEFAcKm<jm*%neAN?#IN3*1%eBMSR{nXVj)Fya+Y%11hG7b6+vtYVsj8HgIE>B
z+91}kKCJw}j5X5gWz)SIpYrmrE0y&@YzX2i6+tQtzs=8xZ^{`pHDe1GP7phT*cHUK
zAhrjwBZzl{xc_}`u@Br(H#@gvc5Z?0nTtnxDeewpPY`>9*vGA=dnOB_pCoSIoI`%G
zhjNfzD!qD5@Vy|82l1Kk_k;K#h!2Gy7CainM?yXpJR-PmWCn+Z;S-5|8pJUnRJc)}
z2;%b~E(G}?75EqXWDs8oA^$?imqDCLDW|!3J7qA5;p-sI1o4d|oekoA%I2Jq=I?sH
z6;d?n8Z%rB;)j&Yr64Y+`1e8%^-QD9kHW7A{=^<m*|c~ohqb-Vqd*Whxc`fOi{mcj
zSHa(c_&vz?n&OWjzfkP9rDn(M;_KBq>s9grr`&4a3F4k4k^d#+ZV-P9=_zK^|B)!a
z`<NC2LNG$^87hYRgs34D5OTj@dI%XID8h3DX_*;9mhkM9;tgTsdNt`MH-tRV^92hE
z&R_5Tr=!6GArum&uwW5E>P17)g!=^bl)hZtnj!c_u~K?KNHBy@N(l?G1rM$DL_=^w
z2)A(8axCO-2=NdSA$NZ$CiqAQ#X~3&a(l952<3#3mkOb@@G^oAru4EQ9G5;UFG__F
z9tz=M;gtm|3RV)Fe(8U+s7eS`MfpYYRtuqe2sJ{e8A7uVnuqXc2(?0Zj5Z+@-Jnj~
zms5R%I`TwLoe<iU^VaL3G!CI|2=zj!AHw4yGzg(#2piVq3~8Cc@I(k*HmHn_6l^3(
zlZ5{;#@mFwF~-|8gfm++NLqx@lJ+5V4Y_|gCj`8$LO8fVZ5=|J5ZbcD5S|R7V+cQO
z@$&pt`w%*?di7n-aAZhkrx237a|mZQsN}Z=p9*1dN2Nyy&xFt|grV<wPkrz09>UWh
zkhFZ;J@3>rgl9wOCu31~qxxJ3eL`rlQSB8%ZxKsxRJq&yvoEKwL<etl=S+X$&kHg-
zW}`YNgux-a7s2}x3}IQEpEmdx_ysmCtbEB5LwGTSmqHj8!pk9S3}I6UuY~Yw2#Z+H
z5QZ~X6NTZm5Wa5eAsN959K!1|QWHa%6vC(wKk<w=Md7S?Tgd1T#-x<7A-pAg*+zE(
zj!Ws|LwHB{1i@pH8fc(Q4q;&kBn(r8Ock6aI9+gt;LH$a37IW8M{uqn^Ue!leu^*P
zEP6D9B6}uQFMEl!YlEaN4PjXb%R^WZ!aC`_m8m{lD`XXiyR~O^2x~%MUV3<}XIihO
z3UR#{FqI;mvx_!|uqA}gL++)Pt?cmA=?ou-uq}k`A?yg@T@l|C+!?~&l+7+7y9M`z
z@Y_Z;nRg%m8i;rxWqFXRQuqU#{%7-k2p@>@Van!k2p^?*@9mj%btHtNDdiI(p9&u1
zYE9{%g>XW6N%726tS3Y6$=feNFk5)oqSGOK6+&(pd0~9b#X{pSGQ;?WlRSj0AzTaL
zTnOhwxER7Ewqkz9w;_BN!m1+~3>QME7V}h=z$B8(Tz4V-7{d2r%v73P5&NG+VKkYA
z_6*lU_&tQ1V(@baH$wPDeEv#fvH!o${}AO)2!Dm}X9%}KxSgs=(u~gUih}U}YWQ~u
z_fj_haCAm{{|&*DN=*|&ks0p`qd-c(KaBJ+hF|n%2%=zG_XcUKc2*ePFml3RaoK{&
zRwt1L`C$|c<Bc%h3_}g$fv|g7e0bRHw?bhUVVJ@T3l<S9DyRwi!qCI0wMnHt(I18t
zM#nHZg%JoN7)FyYnuZYyBOFG>Fe-&%vr0{sXc&%=NEnx8WGTkNC>2KOFydh(!YC#N
zB?OBLcH5-Z8S15F$uLH3Qc1X+%Y;!bjPhYT7<La33}uDP-=tPZDGv*ID2#)f+#TRY
z!OCG&3FC3`OjlLIc$94k;}KD+g;70>8p3O)Y_c}Hg_hi`K9*AI(zEb7f;Gf|HuWT0
zKa96tb8ll{cp{7jA~qCk6h>n<cKrWR`)+n`rD(?9Xri<cY%bU$jFv)L2{N^H7;lSl
zTT$Aj^!8zNNbx6y?32oL4&(VS286lgqH7pWh0#qa&|9#37(IoshEIplL-;d-FIRB8
zn&DZAJ}1~KjEku@_6eh}i2Vd<*<VQ77ImPI7gPEmA%nvhB4lVve<6(M$2rMTUJ7HF
z=r0StlCpVKNN|h#S{Nh37#aTGxzN|y7C8esDy8uB(daP7gt04(-QoY8(;Len5QDeF
zcqfbrVT=o7yeK?hlsx0alTH)Em>k9w(I*KqX=)hL!dS^w7RK~2W`waYj74G03}aRp
zbHkXIs>AFs=5V&i>Cj}Yi1Q_NfgsOrF_pMjqD#YA7RD0cw4_d4F3}ZX_iSy_n7BHO
zHDPQCV=HSF#yYXt6vp~6HiWTJqBLVj`boOlEP9et-xkKZqHGUiM=B|qYiG&>&GvA;
zxA1%z#^EsbCZ~{eJ}(jO7qbIgL82TA<2_N{54#r-KVY9Xbt`b9m8VDx&qrZ=9Coi(
zj4!7g3FBxOH^caY{j)_a)W`ct7@vl5ER5q}?A)T>2;;LbPK0qjjBms4?Jl2(@nsmN
z!Z<0>F9fO2>7bkr<16m=VVo85>oCsnKp?#37PaRVm1Ybh24tKQ@pVxygz;S%KZNn4
zh!@#3A+)^2q|O=1T;FrgDdF9*#mnfGFs_DiEsUR1mK%q;X4k{`S(N4CxyVu1_!nsi
z+wv=SMd7~-c3JAB_-7cm!nhm8-<*Ljdv7zlkWrpAM*m82{-C-S#y?@C*?{d@{u_qJ
zcK`j+lK8gZeKrb+m|-KSFzJ3#(*KXbq)Z!GHnMGaZGO)kX%Xbu$h9%n##=U@5_Ol4
zX2WMA-*#{5TpLje+IYN)q6$7BSja|UAw>k4TGU3)W)F#O!?01&MkO1j4Zn>AZF0)k
zuxy;~;I(Z;q=<lE&_>9{FXhw1HeW!RMoZc-L~X=vBy2d6t5@B$nD}Aciir}9rO~Xo
zjS}Lgq#*s25>nd6Coj0S>V2_AebC1B4&Jgh%GoGygBhtmWTS%UER?Af9~QT#ZhH8e
zq_T}iZPc>epGj2&tJ-)(NHsy~)rHg$tSR{G7WFY3wQY2?(aA;~8+C28w$a8$Jsb6H
zG_%p%MuR~1YdN`(+c;2Kd4f?J4Q-VA$lJt5QyYzJG`8`3#T+VGTUBC*=4nKAj<;j;
zw6VRszi!WLQ8%N7jmlfqmV&JWd0w=wjdnIV*m#nyE2WfL;B9Z?-k07cTixH`1GlPK
zm2)O;Rd;MvJM;IpjX^dB+vv(3v(d{&ZyWEH$mwR|8Fu^QIo)kMZR119+e3QwitwH`
z?%$?9EBKt?>mzfh6y2tNf6m*-MqeBKY`jp~JsmN?<{1)~KQB0_MOIQDC^PeyqG>~H
z+}`MU-Nq;zLuq5<MH?^Kc*Vx6Hik*Lto+M1s%&#x!9c<bqr+{CurbocYc_g(n?r@j
zKqVQa<&<si#o0G(?A@lmDLC537#k<5DO8AWv-BqvhDkQY**Nr)d!yiZt}@}&C$K*|
zD-#8;xAaW5F@;0iRGDgHiH)T;rrDToV+L0fZ($OgDLBi<Y}-9*&#^I2S}|9mRCYJ@
z5a&yDfh0BWp#0L(vq(HIma<s+Wj2=EIBer18!K$Aw6T-x(Z(tpt8HwwvB}2AP2E2Z
zITJJ2*jQ_0osIQ2zTBp6;BK&8CAq#$B{8<E%4<2B>F~v@a@*A{Hn!5w!kle3w%gdj
zC4AG%Xun3vyP}g&Y28TKZDWs(gEk&~!t;EK%)PA7OF38bGxi?#?&AouOAmV)4sc>`
zS4j@B^S7%*wyW>ic;ChcoIj}%q{zV9er)3im%NQ%Z5-t~wQ<45cQ!t?(dUr&D-QGo
z?=c(4CF5r{PTKf_LuTW1cK&vCgE%36DF&x(oECjYDrvtMd~M^5jc;t6wNa*h#(DNk
z7lnl3oG5uc-RQS$(RP*O>+R~9y2?cxmpCpqzPE9MUD`YI2OB@yxN75?&DWPHS8PnJ
zqx{4zu29yDs8XPgLUC9X&vhFVe-<0+3<n##L({LC_ctzQ8#itI!Ns^;op#IP-=P+M
z!CQNWTC#l3pEl+{?Y+f$XycBJzi4CQAF1J8!N1whrQE8ne#Nc)zao+(Tk(mlAcFfM
zXca;02ns~N(}1}V<O#W7Fg=0{A&MXkGKFLbW(#@+b0X-yL!G%prA>YWz6f;D3ks@&
z4+s_#EF3`*A+#?VftKPscc?}LW(1WYs4SvCf^Y<O1eQbtDa)Xckl>$fJ@gZaptwYL
zJ)IVfz!83|lM;&{9zi04VxrLU)0UnyQq>X>l#HNM1f?aZLIh<}Hf4o87{M1UUFQtt
zA}BB7-;(#Cl;y(_R1|K%>o&iN@W&#k9YIy$kEATCMNmD08WOD;K`kMVrc#?6$*C<K
z=%kK_4I`*4q+ZIVzL3Wwcp`!Z!rQj;zW;GXvWAT!Xe?qA!KM*36Vg0_77?@*-bsoW
z@UFU2NSg?6+(O?7`bla#!KVe=3wDU$Ng*8tJ4Mhrf-b^YXtxNu3V$l4d?IeUOEi6_
z+C#`QsnniAo{iwSl+uecM|hu<a%-pCoc<BK7Qu)Jo{wOFBn^z<MInO(2dC_Z2pKB)
zf*_~jOG1VTzAX5P;H!f4KU_%Kkc^Q+=0-3tg4ZJ$CDAto#|yqGI68tc5sZ!CEs4Gz
z!NQ>#zMbmSzdZ{F<cwo<Kn|66BA5`tMB0ei%m^k6VTscsn3CdCg*?2|oiNjd&k*b-
z$}HitBbXzEHlswJAHmuP)`_@)B}T9)g2fVDCb%SJzmzk1h}(_JBUll^%9Or3f>lX-
zakwUe)e~GZHe`JS8zR^h!R`n)ip{oEu1!KVN3cc6)|7r|r@B4GcSP{6@SQ2;>P~e}
ziXV(%Z;I~|vOj_YLh^UHoxpHNqWuP?eGtKi+!LbkMR7QSk0SUxf_o8s9Kn%@dnVy$
z!J`qJitwgcd=kN@q8t<aEP~@gczYg=PY5UZT*yhTXdzz;?&zMzq^~0QI)WcWIU`8%
z+X%i9epc{YN<SY#m9nnq3n}G0Ar}QNMQ~Zj_kts0t|h~d61@_^PeQH=UK6}7_*_S~
zCO3rtBKRv&$nS!;Be*H#4?!CLDdbkFK6g_3UlH6*aaQ%82>y-WfvDSc44x>mgr`LT
zA@@abe-!D$3kXiB=gEjd;gerc_g6im%*g&EPhxfyUP;P{B0q|PQRGIECkhQ{Ps?OR
zqMFj_q)-%vrHCSeREi2=E<Fk(isz&5r7<%Ke-zE4XdZ<XMIefYqo^1~Fp5wVWuka6
zig3z9T!<Y-L`YQ7Nu|c3NRDzMr4$oVJc<%2rKFHjQIt+8v6!c<@P`D;rS$SqR7i32
zK6l7i^GZ=vj-q-LHKM4JN_`}XswvJ6p;@&kl7zWxM$sUOhGOt&6t$vwOn7a<dV+NX
z>qe2B8}%j1ypKomgz)4%Y?RU)3rP-ElPH>|^zjwk;cF4alTmbxqGd{N6-Db5ZzH5_
z6zznx7wnKqeWa|XQxu&g`fL<kgglc<?aJ{@@orIcPw}Ut=#k>|z&iAl9w2#6^j?C!
z1^c8d`wHnN*q>v)%RL!5K&H^ZC<a9_IEo=rY>Z-46hotUA&Os)X03|i#VB5iVr~@k
zqNrIvdsq}Bqj)`vmpOmNdKq33@@f>rQ_5>XMnrMpl^hz3isB6^XnYiJMlm{yy1U$8
zo?}FOOOVmALTLGR%6?pm(Egn$CPXnYib+vSj$&36v)Sq>rbaO>is_P<W(@Q&Ly8#v
zOU6tgm!k?pvQVbZNtJk^n`eI1{R_V!iiIp!{^>KiD2gRfES03ig8Xa0EQ;k(tduBi
zRtQOENuDAgu8v|&6l<e+w4TBzF4s#Rt`p>qg;X{~-6t*?_BTk|9OdIPX=kI@spM>l
zVrvxJqS(%56~!k}d>X~OOp4-A6z@f`D~jD*#kVpJM6oA|y;1CoV!wExlTRDCfrPF|
zhzG@(_KdzC#Rn2S62*ty{G<3NijV*Q^B(;_d5=YLJc`qzd=|wCAzw!Ec@!swe<6NY
zP_ir*m*l6|1mRyr@wHf<iQ*d}tY^|DNzRFQUhrGN3xeMXUKG5PD&>bLe&mEqU|0fI
zIF2=P4m<eB!A~-#SEINV#q}tDj-s05cI*vyK4-`scjx?-lb?q_2fE{)ocvvM5{8>m
z{1L^UQQV5+Hg{bIc@FMG@mCc0IVj-ZZWMn<@oy9!$KAT`Npb&hYx;jr=%qP;<BI<U
z8sG0A-9eUvY)Q&+pg72M-1CP_CH@zf%j+OViby6U{pXAFfP+E~3JPZyRlL!Rp|FTW
z9TXA5T)h8~x|Xsrq{+MiFWFwxf!~4UAmAYA;2~DVLC8VaK?w&X9oP;c4&n|H;xOvK
zaS#)4EIL^$`X@>9Vh)O@DwZ@T<)E~K@*<XT@SuaT4$4WZ|F4Jtc!gBWlMX9Nw2FgD
zLMlr}CMEBytm?RTu|AUO!|JS<gPIN=bugN(=$c(i+RMfcbnuw)+79YCsOzAfgC`wy
zbWq>H;|^LnXyxDu2MruFanRI3LkEo<G?pTgm0?T&t0#Fg2hAO{klvude@RK>)(+Y_
zXeZTflWK2!iFOc7dQ0|RCkLG!JnP^&2VEq!n}hBSx{^yY>7T|=JLuuy83#R6U6Cw~
zr870zExjD{mR$WE^bxbZ4*I2fDQTI^^}K@t|8M=-SA!f3b}+=jP;o-HuRD0b!HW)F
zaxl!ns}6>Xx0fBflCt@)`L8(`;b7$dTWzK$%cZwblJth)n<+DvJI29S2X8re+rc;o
zTO4e4Fy6sC4puu@<6we=i4NvCnCsxue(xj)9d@ZR9ZYsG#lchu&o|1N?%>-|nGDl}
zusHG=9O8ls3GXML<zTi05<Xc#<Wn01cB%6m%y+QB!9uCeatDhXEaoiQr7jg*@_%sd
zE|vN+QRsh#gOv_eNybfbL~Ah9y)M7j!8!-)9c<uAKb`K`t==Bwt+Lkp!7DjD3$c-P
z=%Da?#U=-v9rwfqLw;u3HV50e#5(63bg;ugn-yNZ_?LI@zsr5h!7eFfkAuAqb_*|4
z(mkQUz$+m89PD?Hzgw-;EtlZ{S53EE-gtJ%ai6++Pmtt&As+~S=(s;zDSqtW2)jMb
zS1IDCgHIeRjbT{~pK>VorYkXI#&FER@y6N5*_j8@KXY)x!RHQ6I=JQFwu3JmeCgn4
z2Qx=1r?`RaR;O&rzV6_(gRdNX?cj`qa}Lfs_=Y1j!JV#Wr3tNetI6oM4lX$O!NHH5
zfxFf3ILZz#JGdxOD$GLsUUE_VFM5SLzk{n{Mx6!>w7ka3>{dxwlXrHf-*Dh<qx|CF
z{yEvdvf&Qje2DjUt2f!+?=nC6OF6q+{Ugc0%ly;9XCpJI4<4o5aqzDc_ZJTV;^c1!
z&GxwUxyL5o$h>cl`Vaeak4h(=m|L+lK?vR#LxC9X7oHyDCslaczq>7GP4bXXCuYTv
z9Ye7gipSuMAt#1`Jw4$VawS)h7~1bi&l8?6SWr+Eq^k#FD3s!bW0>l3ySHcz=7vm-
zJ`bfc_+rq-hTLG1aDNO|41pMeF@!`JIV=00<(b{~s3+B|;nK#w2h;5sA~Bw&hZ6&%
z2|<#Wka!Gh4yH58&<CCpF_es9d<^fzP%4JfF*J;!kvK0C!$UDVEd0S3$_gnbSYEJ#
z;OK03R#%K+Cl4+$)Qq803@;DOsvJX=7^=pwYmfT-9<^EwkBI%LJ!<GJg-Z1pI0QR~
zE04x-ZdZC8L6TZR9uuq`LphJ<A&;kS4E02*FW4Z4$A!@T2_ZBiC+6){8^_R&qYy)r
z7@EfL;9j*^46R~l9peY4mF6+Dh~eqIYD?C6xI)5ew26UF#tq%8-k+ru=&Q8lH0bNL
ziz7?y5W|x(bc~@BJ8G}`Rt%kE=n}(AF${~LE8E4sjiFx*-D2n-!?Q6w$0B0r5yLYv
z^o(ItN6*;z)7{X~Gh~*_lh`Z9$7ejfW9SpZ{`GFs#e?ZIPLlpHJRifL7zW2MfYU67
z+k>*0H|fpwK+710#_&Q6FVdB`P5Pk?^AZ_-Ifhqac%9K0UX6i843FV8@kS>jWL!py
zPGbfdY_IHjL-eNYJ)>iIQ#g~@8)H~d49v(Vk%2@1b`0ZK$!6|dG+en8Vwf1i?!D@Q
z7*D8Tatw1NIz^EBbRkn?n3hub>JREOBsx=YRt&RKsdJ<PG?*6y`TUg5;uZ>Dlu{PQ
zutYe`Xumv$<HM9sxIM<)?Qw<RO3t4H>8oN`&E*io+89n;%KXyG+7iP$_W6a(^-|o1
z7;3$mwK2w*v}AFTY>MHlz3OH`mb*2EZ82<*VMh$_$M8W6^zbgnQOHit{1{d$%I+BU
z#IRTR_=+Be$rU~OB+AqS3{uv?7%!~5+tGXMlZtLXGcc7t8U0Xv9**Io7(R}{&7~+u
zgfR7JjL(C(A_wjm+so+}N3S?OW4pLh#Zf$t&to_l!}S<`j^PV>i=ptQ?29p+is5t&
z7o_N~V)$*Z`mOM<In~E0XN0pR-^6g1yWc+bTny($jO<g{vBcyW`A)<db=*~RiK}m)
z>K&VPIfm~={~?ASIZOAcS7Nv-3i(eda!rz`Fz<~Re&PNW$L)jZbN8vgvYv4iiQ~5z
zevjd141dIs76;<kzfb*>>uY4z-!a_cWM<FrQ|}1gjo~jLROmCwX?c%3Kn(v%E>GOe
zo5X=NbMA|yKpeSo<i&A+9O-dfQ?jz-$PkhxsKk*eggzN)kc@ic$oYQ_n3NxPM^lZX
zpb+L|^no}ErJ__A#{H04G!84yCuE_;;fq5T1HYgl$c(0tX&z78_U_yW#=(WjMamIp
zC^%FJ$K4-J-|SOuv5dqK72?DZi-Q{-bH(FGr2Nnol@f83jH6;4mEtHBN9j1q#!)Wr
z9yrRxv9P1(!MJ-kBcU;oV_iOuhvV)ck9q~Md`NI&71xFtE5}hKjxKRr_#nG#+}+#j
zvu<%b5=S+OR*$2W5GK_SQd96z7A?Cy^~d6<9Y-C}>k8Hr<gtK(1`JQI6XIwldIQ0R
zair}|Zxl!4IGTt;hsi+u=5e%+qmAe-;%F&^dMhDx+g1oYbcmx}Dz&}Tie^v7(NV-s
zadb|l{#T!_(y<(Zr-XEiqk9}r3-1v}Pa*7|XX2P9J%3A4o{huaoz4Z7SwiV827@@k
zN+^8<`wI3G>@WCy90P>VW?&qi{VK`eIEKVAG>#YI7#_!Kan#+fz8J?#;*k8&gXzPB
zzbyEQ;H!e%58Jf!jEK8G35+qy8*z-3;buKw7lToP9B!t*8OP{2#>6o;jw8hthPQ>h
z#W^!bDfh95HWc59V?rFe;@BO>#5fM#RW`|5o)pLAIHtrgHIB>s)zLv^S{&2k?$4f;
zam--N_p2-7V3<jpX4$jiC_Eu+b{uo!m@Cy-7{{VG<_YI+JU@;Ftj~UR)qa(@SoCFr
zO9Yn+vMm+%xT|$J-Ad21v5c-trLJc4Q+%zEb%N^!H^i|~$cOvgon*7Lg<I1WAzKBv
z32u*LM;z}8-x)`KafN0KBzxl68^;3)6iQ$pH?BCojN_EJJrKvI?DoCs2je&-iuZu}
zUL5boLGnQyhg0H*qOcAh#qqI-M+A=wRz0A8!hK$TJwEx2hrN1?b9hbmaoH9=i{pft
zG5hCnoJ{dAIFp(2FXeO`U&V1Jj=$pgI*v1Od>_XTY(>NDZv-#KaaIVGb8(y({;l}A
zAo!i&Vflsd`FhVKF}Td*&Uz2UALF<Z$IUqYh~p<o`khT%@1eJ=+&P6`7yairZp876
z@L##@iwBzh=Q+uV41dOPiyfY_NhYyGlDl#I&22n^jD*{Yd)(d=?hgEqc>Y(=BS~qZ
zL-0PqWLeC0f5NRKb14aA(l~*F31mqwre=#Vi}NPjX68sVS1?bIHpw=s5+zU8jmOQx
z3DixXUIIlDD4IZ@0g9HuV`An@Ku^F(z)T=qNU55DKLIO&@{$@zAecb01d2;Elt4rX
zD;XAI3tkT?(FB|XViHZH#CQTsqA>}vgkY%zN((8Oz#B3j%1D$3WfOQX#kqXS2~V!9
z3c?>s;Nb)+CQvDXZx6U@WZeOkO63HqB%mHt8KqwPp!!Gx)uct$6R07Ct!sNwtttFb
z!CHb3RPivWw)n4;z)!C#+{8GywS(#P6KI@3lZ1OzdOU$A5@?Wck5iv-aF0g~6KIsG
zEss##U7IFwa!>lxbgL=N5@?=4iv(IG&?<p$3D9lp1lll50v-O%Y@0y41Uid{_9;Id
z6Yl?%4s76U<;es_9#l!#%uZsE+|0WO@0!47*<tAF$;+A6I8S#vZ|BaR9tk{?Ku?a^
zq4ZHFv-&0QYy!_E@WVJya?SQiptq#<5$r2<V^YUwJpB`RJ^|($AUGs}fkLPZN?>q`
zFFdGH87k2i1YZ<n=`SbnN&=S>xSYVNQq{K-csqgN!e0{{AxPtqLSARyl=6m<Hxn2w
zWK2pQE9B#Y>bL~P3qP5_I|)okU`7HnMVTl#RdABvWWgzdFQ0H<GC3`Q>E|-13o<$@
zfo111w<hrKW6Gs{nX?m^lfa21*>e+^C%NV)uqc7W!WSfP^`N>if%^`*bB|$30xLPe
zj${@+q%IYkWrE8ES0qqYEdTm2b5#PX6IheLT231g*K;KvQr8L6)rJH%Ca{Uan!pyx
z{(7nulAhPxr(Cxsuswkt3H*Ody#@3Z#rHq{@B-fKvu|>S?uPevJwbyY-6>)5u~1PF
z6;MP(=|(ZY?iM>SXz2#&?(XLQ+VS^2=YP(eduC_v+_`h--aE5*W_M@K7pwDd`-_QR
z^6+aOUivlpTOJnEf#l)$Jj_+q|H#9F`Qq<9%-)&&GY@~MLK69KzPNQqa$X+h6Cn==
zR4WVB-NFmRB9*DUK==#9KY93NLEO`&d03W*<y6i*tW*e1RCyl-SLI>U0+BO5@us?5
zL%ZIdT&v(Z1@-x{<TvDDV;(lC>QmMxH|OEsJZ#Cs);#Ra1Ahv(Ef3rCup<vU6=bIM
z*u>^FIZVqJh+TR3FGIK|4|^33^F$*&K=oFXw{*ZE2LJPLUnAV#2uC<%dDs?VdxT?j
zM|pVI#XuJ)@^F#^VWE?SQ+YVe-Wgb7;P)HJGkIuc;1&aC^KdQ?=ksuZ9@0QX0~hmf
zDGx;q6g6-;4_ER41NjYH&BL`kBn;#;Vn=tKRx=<`Wudr1y;5B5R+7nCD6aR4BRouZ
zEEEL{6f}@Dpc{B)VJzny1BDD|20nR2n@~S7v3`P?Re$D;AF6%7P!uYw<r?V!Q*L1e
zpSYS+%s_DiB@L7^P{M#Puyj@;_$JZ2oW5R*{f0EKN>MItpp1dC2Fe-ut5czSOKT(N
z=1i}nH!GzbUMN~TrI$C*tbXi0DjBG3AT$sesA8b1fjk3-focY-8>nTVwt*U|n`55V
z#*ffy8Yr+xFtKjK@tRyD>KGuy<wk3D+1zNY`66K&{6IQv1CD_{i^Q9M<qTLP_zLIL
zMZz`k)0w1iz%y{qbNY9S1mWIAA}~OBeUV5RNE@hcpn-u!Qxh2jSp)SH14S2$XGiFD
z7K`Ria&1Mup@BvQ8XIV0fZry{S4MBQSUfmTYigiw``jDjV}T4^9P`=SKnnw742(5!
ztAUmV9xyP#Kq~{S$)SP12HF^CYoM!vZU)*JXm6mSfljQlSj=ysbx;g^s;H5ml-jz*
zqO*Z625v4EOnawj-3|0G(38wi@=HXig>k&%maECOb7FJ2O;PBrAeW#l>1W_}19x+9
z4cuYiP6~W_;w~c&PV#PxB{Ao>EfIYF`X6Ow;C=&xUP}yB<@Zu!Ic*Ks?lbV_60uAb
zPA#QBXy73O!wfua;9&y;4GcE$gn>s4JZj)EGB!PNd5LIIQRf2`=?~(F|05o!wEu~l
z`wu>8;3)$`3{cK@{=+DD&Xy7SpSk)_#e54d-!le=8+gvZNCVFr7-8U>NwF>s`$xR2
z=x`Cj%jXS@GVp?dAO8_YpVnS9aQYwdsHW9TYNM%O<Fw)9G{SMz9|K<)_|m`x0}~Cr
zZQvaPlMGBY@UnrK2BsJo`aoi;foY0|$46?@X#z{dj}tToh-Mgg$%uo5Z;#Ph)Gl;<
zxb}*HR}H*D;jkAoVrE`5@VbF(9dl<<yOxUCiViP(Efs^8ikXC6bKf%J7x(zN!mpQ#
zcMZH};8O#i8F=5o2Q*Su<wFA>8Tj{dvgR_8`%U7;Fm35l@iDu$RETBb)@5qc)V$2u
z`ExZ)T!DXO;A;cF(cu`FLvb1S&cOFnylDyE{Z>&Pr0V`aaT)l9-BE=<vEqx`;Nseh
zW#VTVLRgrY&Zbt3(|2+0e}f9mHSh;5#lT_%f6~|uEHJQ;p5b`%Zv#J!*BTAe<{6mJ
z7MF?n%fulC=cymu<X;|hyTrgh#5b^vrkB*0R?->0DZgCMZ@gSq8#_i%jnh}svCwOo
zc-6#e18ZpACL9xM4XmRZGyxOq4Qw#5&%k~I8x3qSu+6}B1DmOncNf}fAh9H2E*Jl*
zer=&jm(|&?4bao2wH*d_8rW@MkGi{y3Z{5#yj<M3T)eYfe7#((TrT!frKcu370?eD
zIB4L6fs+Of88~d<h=HR_J#}k}R!Zu8SpKel;+TP^E5zmQy0$_bH&AnhVCEDDi<)5I
zx`DrEX=e<6#vh-p5NB1>_pT7<44hZ_3kqIT@REX;6{OJk@RgjbU!`X5imm&Gft4%7
zO?s6_^>^zPIk-Y3OyplF%C8jJl_I~10w#nBX`-Ns921326fsfAgl6*JG>KdjeO8L3
ziPxTIus!GFl|nb;AQdS$d{%4nZf;Q%#mqRkTEfJiE5-3Ku}T*=F;v%gu8arq`btsK
zL@5(hOjI>d+C&)>6--n#<L_v#8>^Q!QO*P-gbWOpH({(2{Cr2-RburRjb>hSx>m_V
zWfOx~PPed1R5MZCL@g7w&3KOcK<G70+^Op|&DepnWIz$Uj)@mni9AwMICT|VxJtY`
zNH<m9GQm8NcPp~43D3m+CLS>1n+Qy_HPOyQXd*Jv#6(jQDHCZE^-R>KQmq!RP0%tX
z8l1|>DuN`Hw^}r=ptoNw8klHEmR5^KCK{Xga<v$_I%a<BYLT->G&6CFiIyf>QS1w2
zN!~S7Yi^>2iCayq?5STa5+`O_n`mRkPf3l}#MP^;5jB)IYj2{1i96VYiH;^ZnYhhF
zZxfwObTQG*M0XQ2)(ASB&)0~q9G5lX&>C^RqTa(qPZPaNFrT|tR9qXAy>+di!W<u^
z_c77W#G`9PUo+mEVq$dqb`H&2!3jF%)5P5-?lp0riSdtXH01v59f_E@M+sr|TA{BK
zEsN@hrOw?MXPvlQMIT_|K@-DGJZs`16AznslJrdsWY^f7iN{RL8>P)Iu5(K2v`!2%
z@wlRPzuJUi@PDw0Crk`pCuXk`->nlP&L@XZ!Av}D;u#aeOzdAL=&UZU6aPJ!R9G*Z
z_2SP0daLzfgo)?Kt%(UHMw)n@ieX|jeZ_EXl!+_FwDId>A-q6-)(gI{!~7T%<4jN{
zU#}NqO{`fTe>a=u1Lh<qnwVr_nu+NqCQ~vrrMaScyW9_}X;V$)+aM}!h^g^%hU&u0
z3cf@YQsu)oh?%ske({vV8R0b(ubVi>;V?1F#B3A)m{@A!4HIutnN9p`;w=+zoA}Jc
z=O*5v(wg|d#D^x{Gcj?4Xgx!(wNZS#LA-Bb#RhS1gV<DBqvSs_@v(_U8^tH=SG(L#
zP4wR=Mr{<#v*|B5Y9_ul@tujUOnhyE-fy?A&DkjCnD|EVOte)SMPgIj9c~j;RhjQi
z{9xio6P(EYo6$J6{bJ%*>X?bYOpJOx4$uB(;&(;F(e$}0^9OZ)lelw}7`I9M&EYn&
zNR_|4N!+n8XTHiWFtO0YznjFhO@ix(3Y+7m7n@k3?tV8!Z?ah|GqK#n9y%QMm&QWh
zZeoLpRdo3KlB+pb?D*6A-J9c{u2qFM4kXtp3JiDmZB}HXiA^SUnAmAzGn-Slwkx>B
z#8wmAII^4hD;%+Hv#9!S%tPaUMcr=_^H;=j*k$6EeEQgb#cnFn<2n`N{(r?jY9M7o
zhi2jcHI0t|CJxcv?M)WhoqYdaaoEIB6UWq893kibihNsQ%6*#TqaH4pk_g{OoHTLD
z#A(Gzp1OO+M0Sg)`Go$)k>pwGe{qeO3nng_sA-{=g-a%%R#4PJF$-5rT%|L&P|(6P
zx^DU?3;8YFFmaQP{cLi?7Ljv4nXr)0irwa2s);&RVt4(&8`|)J+VC6N(GGf!g+dnN
zvCu7O7J5$8xp1BNjQ(HLJ=a2EHdk5aj^X=TL=g-BY!N%Q2<F?3){0vwVWFIb@)m>z
zX`!^me@!C)R#AGZC~5JuUXpvzrL1@-nl7bpWxeNC@nbQ)tc4L<V}Vq#P|-p)3)L-D
zvM}aGa-h(wSZLKZQQ5*I8FS11?y43DnSV{y;(S`e!V#6PZJ~~Z`W6~ksB0n5g3IPC
zzKa+4+O%L<`1M4Rv#@Pp>Ew7iZnG_J+F`G^32U41Ed&-)7Sa~(?O6E1ZQ}K9BD4@G
z3O_02jD;z~lC+w77C#*sQ$Ddx<Zc(Ww~G$jMMDdXEVQt2tA)lEnpkMg{N%)#?V_oL
zTP$=Np*OR@ZKF@Oi=EpAcVu?YPS9P`iM3>BEws1L!9r^bSGS9{78Z`y+E}QuL$ul<
zhVBsUREuxyh}oWSB-#9}+|4`0*&U*@g)SDh+Sq2JD_gMu8~JT?x6s4F=N7);fLiEf
z;YEvon!{}tdRutJ!lM@YSm<k^KPfBX{Vd#R;Vus7PI0@1J2<R6MP{eyyHgC<DQNXC
z>=buf_+Y2_Yp1w}g0e8c!h;s>Q`K9YOy194B;qyXo}J<W3xwqMnAF~ThJQg44_SEF
z!a#*weV1soE57@fg+Wvj3s0-^$1Oa`fwnN%!V?xAQ#dc~67zS7Asj?*qqNjGd?$8^
zp%&K?F@<L=47c!{g^`Lv_r*ESstj+9;IMuXFAs|E7TMk6c?*2x9A)7J3SqYxx?8-y
zJEkzk!dMHhT6oREI1A$~Otmo0!UPKwEllRPa|F*Mzqpc|WZ^eeWzfC(HtiN%vA26I
zm%*#)7G_X;_lTD*{((ijWZ}$i!FA>>SCXC7sgjx0&pqN5N^Fl<S4Ml?!Ym8#T6oXG
zY{l)H7T&V(h86E^jh>*_DyFl=x7pm(1fQ*D?h)@;_<E1v$I{>D5Lhr1iO*EU4=qf;
zlKjNNM;1P|@Yf!3YL6(qSGapc&%NSP3y<#=AMF)??G@iu)xWgxm4yu!Hj<i!ITrr5
zFwep_7QVIcv&Gl?@STP4E&M?J;evLrsIyO0|2{dVWV{&ok^JuyKT$sW#5eoIuVl}{
zTnm5DC+rhj_lX<(#P8%yt(O0!RhHMI{i4U?aoxXY=KBRzcfN%M#HS@v$t^6hu-M`^
zrZ8~7xGMBls%VEx#%BKFesQ*-P6JtHVY!9X7S>o;Va1!3D^<tm?T^Q9%CY1s3l}!(
zJNAp?y1rK3k{k4O7S>z1u5gIP%q9z)S>3{M3;$Z!VqvF+U9=qw+bnFiu!EjcXt@W3
ze;}sZ_JH6UTg=>dK<uV6Ti9>m03Fl;QE7H!ZbIK{;hh6wpMpgD>3}#$k3>lh(GFQS
z%!Uq#k_Sa}P_#KHj#^+Ed{E3hC{9>7Y2h**IO9JSPFpx@;T(tcC7oNz8xD#y7HS?6
zeBL41^R&uC;v!Y|khq{A3op@x4~f?f#e80+^QVWmadJxHy6S$}!y;khhJ~9PokL>t
zA+dg2^4KBK>u`)e=&<-Azh1ybK^uc?JZ>Y$Mj;zn8})2xHj*}~*{E(qw~=c@+9+wG
zu#F-%O4txKKaZ@BJuHe6bFyB{MsXV-9Tsa9@iPj(^i{5YM0}y?rEHY8QQk%c8}<=V
z#zwm%g5z7(Mmd|O9}E5Wz`~_PMK(Q5uVSM?IlYpN$~J}^5q#)i-07_&qN)u>eJ@SZ
ze>x&+*r;j4v|-t(Wuvx@IyUOs{4{7RE~W)XM4lZ-B+48Ww|C2ZX{>J8xO^n;yKTcE
z|29%KT+$h$bvP<~8y<UCBGyvEz(#1t?tSo4@&3`c7SpQnTDOFrw(;gTJ!50(QL(AB
zs84R`X>Ihd(a=UC8*OZ~wb9r{6C2IhK^v!ziVvRGnks_L$Q8wPOr(y*WSP0uMoSy3
zR^)J^Z)Ky)G0~btZX`z?i#y8<(c0N)Z=;iq&Nk+KmH6zK=wO3SsU2;sIVP?g6D5v|
zE_D7jjN@W=+g$#lg|)h=7W+?)Wzy3|FB|vTxX;FIHhSB*%f{Ubp^uGj$Hnb7`r7En
zK^d)Gdr>PtF-drbjXP}&I4+1lcyNN&-^L3>?w0#M8xKxNoWGi!dtBVZspq&TdP3Z9
z;{h8F*?8Cn*WtCl&mCZcE5-+HRJ@XmPKeu2h-Xg39Uo}p5gU&x1|GAqQ5AlCLL56G
zik=jMZ9HM)D;r<ic+$pGHm2H`Mt!g`lnmH-(Z(>Fe-p+C8_(G|Jw)T`lw_Z=G2F(p
zl>bTbKr#JJ1zA4Q#)n;UpI6OIJSj%mV0t2<b3jMi7-M6+jR`hBHMOxeK07IPofPA2
zv=SN<t538s$&R0Pf2*iZRz#-QVB!p}of6#Lu69aHw=sh%YU4c{FWGq6#%vpJ*qBL8
zJ0)JV@tTb-k@kv$JZbs5jbFR#vurT2iJqs#L#JZNtgouSNozVK-X>$G#9Ioo{2l5*
zd3~P3dEdqd<kQCItX^FE(8k9$K4C2yaz1_Ep(NqqQ{q@9{ZmDp)#YjN1&98rcmd!0
zwD^+7cv>*=)*Kt(*jQv^v5jwSd}rf#8*^=ZZ{r6WzmQJ~XJO8dHhw-Wexle<i`l2e
zsng<T4(pltxh#7|{6>KcOD_FiyiLH8Kd1mU{-(Ox`0M|87<xvuIU{C`*XFB|g?8-8
ziNC<cZ)e1wGchxT&x$2B{;{#n#(KJ@$%&;lmf2WNrM;^#UG59*b5~Fk&WhDGR?={6
z1ZPE$vvFO*H8$2#uky!aKYB6_oo%3Y+4z@YSB-8`a5L3ORiQL^$n*QNf{XSq=jCoV
zE4JI%!Eto(o`an>cG+m=;1&nFZS0{NbWqB{UK{&t+_aH!u;0c38|Q6YuyN4FAv$52
zyp6;3PCV+Vnmc0SsLEVBE2^D~XXoQKPSD4m5-raO!rRY@=g*1LHqP4U`Mdc1oH#=v
zoQt18&z}?LNdH{iK|VrWv~k78RU4B(%DrTx*m-eTLEfc9;Ogj_jq7$CtGPk>?2o+%
zrNPU54&b1$gCY*{J1F3wpo1I-*-09M{I$=EUz1uP2O4i(O_pz|B^~Gvave-RA2;1m
zLC$3#o{z)bMI97#P~1TY2R}~Hn|+?U<b3?hA{^{0rO_T)<@|Xe9T3*Ptd(|9#)0X;
za!}SmIR`Zy)O1kZK?MgD9aM7S=<aXB;(@DqI$89BsO+GMgQ^a`nG$b9&^=aj(E5U?
z?kLY(Tzm0?_~wGB<)F5MJO>7cX>YO)FE5HV7e!r#w(EkxMe*pxxC>09FACd%;~?!I
z<G^*`Iq)3>4uA5Ze|=HxP?({E$cZCqbP+c$ij;$nmtqPvE{Ts1C$kRfIjHZTfoh`v
zB{A%hShPWJ=%A5<7MBH&A~aUFnmA~xGT*4``!0zBmxXzm0z?Z3Pdj+V!L1HjI=Iup
zT@G5YgATen=;ok}gSHMjJLuw|og(r|VZEb+_6|BYxc{;kby<9HIp(U9y1PZ?sQ?#M
zX2Z#3cLzNj^mA~#gQ8bNPleXoK`#flIjDT)|HU`zUlDyA^i_A+WhPF_ckptY{?bIP
zjoLNnens5vpudB`4xZpG2lqG_;NU?AL$8Q?$&Z5{u88~CuiAx}re6^ku80Sm_+M1!
zRq>F6hp7M+<4_O(Wj2ttbiKc(Gye$nVRg=<4jxmPK?<_uaR;;CFT%`|4xVx_OtHtM
z`>`it)f&Qvu8N@wuDzCIq7xqO;8_PRIe6K@2nWwO80%o1gOQ}UB=LfS7aeSGm;1bf
zd#{R7Bzsj%y&4Pf<Ex_YWNoyAMOVcb1zE^6-oXS16CGT<D#~0FlN?NTFpU;L{kbOE
zT@zCrOjV3MbWMDGP5gdMthg4NbA$fc45~+e?dqD?0B1Uw#qKzG#lfpi{0PHX&1(+0
zvv%Z~c-;XzrCk?qIC#^++Ya7wQ1`l6^=NDhZ#iguJ!X>M@%Z^^z2QKu=XLSEgAZt%
zE(*K&(7{IzHaOVm;A01$IQ#+t{&w&wh40{J2fsM@+`$(PzIE`OgD(}sbJ)!(+E)&~
zR+odXi^<o;-0OlrbNR-J{};nwx@^8KzNd9N$ah1O8ma%_;IiW6CkM+`>Hn&A#jg&2
zbMS|QKOLNOv|2YrYfb;18e2@COZB@U9=Z`P;U?UOyRhULZJvYq4wgGu;b4J-g%194
zu#|4$ckz~{FLJP$UAQ4u-4LH1PcCtAT4m(TxO(QMSVnWWDaPIuD=9q(>m00iu$omK
z(P)@!9L%{XUb!cCEh(3erMKaxxYjz}f;n?jw7;0#<X|(U?clhBe;sV0ho`@Cu+_mf
z>V|_I4z6B`hm4P_qYorGDO62JCYJ1Wu*bmx2M1}?3CR&;;a&&(I0ZO(G$Fm>IukRz
zb;!XH2d^dMVX~)U<Ag^Y{FIOz67p(7o`}VTiw-V1IK^(#Pdd2Z;0%3ZK1qF;nopi}
zaE|^tpJXo{%O}~RtHbndRrIg&N&f8PvV$uQ3c1kS*dJbXaDyIoh<44vbxJs&+*3h6
zmQR+1yh*J~=m|H5O!-{k|MK}&rhtorDwFen<$b5dvC20(<?<hMNf*r^b=3+pMO+kh
z5xGdYDCVNLi>fZFxhUa6xG3$Sj0>rdOS&lK;+{^qk02HxC)~Fo=R=ltQO-qW7ggNY
z7RtM*sPK33r@<<7fj^KukgUY=1Ig@x<l^f|O7E?a+Nev(>Mm-yFkF}}YPzW9B2QHj
z`Qs*PD}r@g)K!JQe3;w6q}DjU`~>>ivbyEMcKM18TvneS?;-NxjtqFJ79UG}RjW^a
z8Mp{tyrgJ;nP2jGKkXvpqJxW$F0wA_xoGa9g^T(w8n|fUqN$6u`DH^F$MVZYF20|Y
z_+eJ!o|1ZFH-7%&Jf6RRtWiK_3&>_J&i6^&;-Xgp`B(vYtBaN{TDxdNNhV~Cr?ggz
zjaLiE?+VDaE`A!PlgYvbWjhz`UBphNfTX)ST|jnn(V28y+@{dFxajJln;Rdoqs4Vs
zbb2b-sG#iOqI<zuN&|=JWUsf2J}&NXai@#E9I5IW7h|`(7*$aAbMc14q#kyBM*pjz
zyvxOd3g>PYyOMf;1)2Gu%G~4P-v2APPi5|R@xcF;3~=NByAk<NLHUr2>jh<r9QlZg
zM_rT+P%gk@E(W>S?(v`6c-+Nc7qvaq@$iI;Cta*|vBt$yE{3@H$i>GlhPwPl5MFZe
zvWur(Jmca;7o%Mack!%?=h+2{G)In5@_f$4BRR6oV>$!EBV7=_%3J4?@~hkzTs%Hj
z`!PqZ%8_GSjCC=|#bmZPCSD|ub1|NZO`k9zF~P+|Rrf-UBn7@MF-1vrnu}Ws#Uh=m
zw53KNIo-t!s%0^Kuqr2<>Eaa^Z@GAz#^vHQRq;(1ud^f9wQq9tSu9t`vnh6Um)bI?
zkldyU8FPNe#k(#(psROrv5<U^1EIx@zORrE_R^{3TPMcT;!{t=hsQo~@hSC$is#}p
z7oWTMjtc4G3m0Fy_}axBYRj4ASE_n%P1e^W0~+@~qJ2X-Ym#pETXl;E7)bL67eBiA
zg*L*@UQPbQE=<rEl>6BQ6Zf*e)g-rce<S@r<4Kbd_zjx;!^NL2mbqB&;xCt9ufjqX
zi(FjQ<UAJ(XgFoH`5d66WV`I|q&bQ2t7wZ=yS<WfiOMud%70uebul6-=O!h^ek3VZ
zxLB#~u2TFwI3Z@T@gp&;t;@A8)=|eeST5GP*x=%ji^DE9y4d7mhl`yqHoN%O#TFM^
zUCh#Bx$*EuCtYr%U6;}+!(nyeEy(RuOI^;=<t`VyUF>nOSGD`6E-B;<y6k#5+53EQ
zpNsv}-Zv5lTpZ-t9-*JsrOcJ}awYResQfO@xHwDC;NrN8Q!Y*`Iz4kGcNR{#cq~_*
zbn!#3+?Okt@ZU(2wFV>gnWeOIbQCTwySU<lQu=zJc7Y1uV){U>W1oa5EHAmJbT-*x
zc-;4FVabztS6%G8p1j5;78T|MebYt4Lvar!Jmm8L51NOhhx}eVWfbsG&;!XnU0CL*
zl2l=xm%LTTi%&r_qpR{F9*U|=u7|=Z^IGA!chrYs9xfG@9X`liUpUrD;qk-*Dtf5o
zp`?eQcO=SsDCeP+he^Y<(jLlqC{{!UMI?8Hx)+gL)gM;BF)i<5!J%XY56>2n%vAPJ
z#X~g@)jeciiT^ZR)x*n0Bv+*07m*A)9VoBY@KDo3Ef2Sk)|lcUD<Ur!k##-fk&cHE
z9t;nrhwdJFc(6R!9-4S)>cR2gdPsRld+;a+UGqHzWVNWw6qTVW=~`5NthO5>)#bzI
zk{L4Np@D~n9_o1*QdIJ^Kz%P>?No1<JGE#mffYq%BM-0l&~Fx%jXiMvvtN}r^KgrY
zRvub=Xzrnfhg&_gRFth^^2ZVSf(m-{RW3v8z4Ga|7n5x~wDr)@Lnnp9BU0^n>1gde
zbnq~ym@NH6E+JcF>g=JbhcAoCE*|z3*BNhQ$hVsps}1iG_Vm!p!=oM^^KhGo-lXZ_
z9uIvy^!3n>GGyM?HW!mKN9#i-=>?0+J3QRw#d{?b?41;2ammcx9{Q8{;&Hn}ip%$k
z%X>ZC=V5?{2icrzk%xI`L@SER2Rsl`Pc9Xg52;=Z^zbkhql9cyLei)o@#5c!4k{sE
zEg=Wd`P1incv4{w_TuxRY=!3y2%n;~sZJh-dGYMV36X`rmyl0;;9eW|-}4FijECW>
z?&cCPdwlGD&cjF#Us1_DJnvx?$Hl`eQt<F171G0G52Gne592*N@<w7T^;XDniU=tL
zLUs^x>9g7d%Jvz3BD+~cXQYmBiifElUh(j%hiM+Bt18^<nc?9jDyoN>6o`n~7^mRp
zLM{>Vu#m-MT=<%YjFeoLemE&Xw>I0u8y-IL@Ue$C6{&YTyzAjDmG3L%+f<%;In2E0
z;e8L+N@*YPu9QoqeBjAs-H($WdN`&i6Mo|1Qx9K|XI1?(4}X1>yT7!qmz1BY5@xuO
z@yX3tuwF?y$HO-s7J69Z;ad;idHB`CZyvt)@Pmh+JpAn8M>bkq<IGs7tlp}my!S=@
z7Z1!ck;o|(Z~WcETo3a+%qO>3lQpL3e|Y$ltyA$zN}i_sTeUvDq~x(WUhbW$e_Aq@
z#sUw6)q-=ehb101d-&JGKh!<ykB5~WmZ{eNQ)YUD<@6`t#yi@pJgoMxfx;{$*LYa#
zVV#HdG|$^&u9%ovrkXfYQkE+vH+tB_aXFOiQ%aU;5ua?_!dg=jTRm(esWIB9Qu2dR
zF-wdF=)Lrv9(HkXea!H&+ru7G_R+}4URoI)osW_}_Io(s;iiX#kAof#c{t_aw1>kU
zxV?MC!%=#+CpFsdF%QSdd1=X|><KS^>^<pWqiXK=Qu4gYobhnh!vzl)sbFW46r)>O
zo}<Rj$~~{7$IK-Ucb1k{DH9KuJzP;lhNx2$BTLKc9&UKx8jtHwc4T(xxI5pKmic_Z
zN79Gx<E>eV{5}f!DCmP~(4>r}9gm-Ma(oo>q50sM6V|%;P@xs2<q1V0*GCZ_MST?Z
z<GDkWkuA%}=&BYj$SvlhxQ`M(dY6&H$Dd{7z%ufcGLi==ua=Ree3bT4+eaNAWqg$N
zQOQSTALV?M_ff$|ML*W<Z^~#!S$St!Ii{>!Hd6nktfY-s@ljPZSHs7Kva*^VM_h|P
zpjG$5-9WN&sjRG6PS*6{mXo!Jyh$)q*GHa@z(?rA@L~F}eK<ZiMOr?-9HBi@PPQ)>
zi=|C3oz~~FzhyMfhwp=${B}9{MLEg0Y$6{i9~oBkv0UM&eH<tk_lus8)$93a;G=PQ
zS>MN5g;2J<EcU$i$dzPcA5DBb=;I+DO?@=;(cMQ6_S8pnA02#j^f?9OYvH4nkJf%1
z%)iw~OCMkLj8&JgjgP4}lV9g)?R>QL(W`vS@T~H(y$`0J)MY0hoqcri(bWf!E)b#d
zV0~+OS*U{K3+CM@;R-USAdeL*)RPo^^rtX=+{Tge(a*>2KKhVag_v@^qsd1r$i6<t
zRFGWd-r?i>3X)>E%g3EQs!RRAp`803EV{9RyjzXP;R^B|ANO)Zd<;+})E^GneJX#y
zf+Z@(l=*f*{fe@GMftFgfj)-&c-F@wJ|6Y)gpVhEJmzDNkH>us_QCDH*Dfa+iu~`y
z=Aeplz_nP^Px%<)W2lc|Y_zm?e60RPMcG*D)IcsFo>t9$S5ZFWgOD4DBYZsPW1Nri
zK1TX@o_w}UjP)_f#|sqNA30Yl$`^f%W`9*;6MHI3o_1q~Z<q5CzFei4`3XKI`k2D8
z@bOJyeUcxa9etpZoJ_slFRV(kokE-D^Z&VWqsqUc;7c?FAAk9H*~d&DulRV?$7eo1
z_wkyK*L}R><6R%Ke9Wdj`gq&t<B!HB&R3Feki+NoHx(ogWh=*=eEDl`gUa$fAMev<
zeSGSJVbTwLc$4*yRQEsh!2_SxhC<wI`q&5IcMEdzjnWtioK{Y6zB~B^mEXq?>;l!y
zN8Lo?8z0}Qx?fWtD$6+vzFk><$I(~iC0FUqy?lErOCBsF4?p?%*~eTTfB5*tj}KG*
z=Hqv|lq&L9h0hGpj4HBi6*-)RMfI<$$TQ8grB&qLR8b#?eH@|j`dHxOUmsh1EcCI+
z$0}0uv6yawJ8M3cQA^9{OMLvJ$mW|APgTdO$V2;*`K!w1K34cxscuD8Wt*yUU{$%s
z$69&`9~*rzay6~0T<7CjY3;kJay_-8YRuTus&W$*Z(h#0H*-5w(>K!+tLc0xb*qnU
z^zc6R_}I>Ypz*3>^9O4rclvRRBD@hZu*>H^T%@cf_xjjJ&rfea=deZi)g+I#aQW1u
znmp*^5Y>2?KB}6W`IP>CwYc4*K92dw7XSf{`#9m_f{%+nPSWAfbx<Gpv?BE3!?iLO
zlBa!~@sTK}|6WaU3*)ho`Z?9p^L~7OfYcH*5|?~j_i@9=Wgl1k`0UeFg>y~id)&y`
zQB9s#P2Z%?sV?uU9<z}M;z2A|UFHu^AV84-MFSKJkQ1O#04=~`b>Qv!>hhE7lD}R}
z2KaG?UO0drAU8n07qt!5WvLpH^JZVhdwB#jK=A+~h>s#<YQ#;H2(a-?vUd&1Q=l?H
z$pEEPqoo6s3BaS6#CfiU{G^8DF)FSM%Lk|sV0egULsSe<DZugoD*{vwP$j^S07C;*
z4NxsWj{rRbR1Z)iK>dK9<3r5=wE}nn`~bBB)Cph*a01YK)D1AdhBO1@1u%kmn~9Mz
zCT7-8(=8G_C04v&)D7@^sd!{%O}SC=9|Q;kqyuEwshV+*`qh*XS$e-{DgdXmZH4rw
zYD&(_*#IvdN`6>V)(b#L%!UCP1!x|iMS#WungqBdh#%k9*Nj7mCu+*30h%dk5IMJ&
z<RY0%<y!-^4A3e->j3|rjeTA9vU<xG^{|#~LsGS5y8vwia9UyFwmW0s?MbJU)<MCJ
z0XnHnX9c?`*j2%93KFw>5JzB`=@sC%01pHh5TJK}J^}iZp8$OW^b2rjfV&iXw+DE=
zmYiEl-d;=Ip-P^r6?bq;E%|&+?e2gdp^7i>32<+K`vTlgnR6xCw~(kUm*>|f71JLr
z6g$!zBlHIYJQQGXfF}Yx9AIF8M*=*`F-=HDsEpe3i)`Yt0D}UwDXtH$E%S!y=U&jd
z*Orf~cA0sSVjreI72us|i9epuxcF~WNS~r<!vZ`V;JpCv2Y7}m6ktk#sR5o1Fe1PU
z9Gw8q1sEA%R1mN67?YV%TRtBk*q`JVRATmo#xNjXARQfGOn|Yf#cI#QoR14IA;81{
z;{$%}M=}<Ds<tduM?Tb3pA=v+?;c6=pT8`x8Wf%uV0wU80=ybvMu3+Byc}R=fIZXW
z1sI?4j~3FKPSm-4<;f+!U+@~m8{mxqZ&G9HNXDA_)seFT%nq=iU*h9&+LLwUTSQ=C
zLH!*HZNGS%Y}Ao!>d1EkeiJ}ibtT~kR6JT}fS&?<6yW0kUj_I&z$XDd4e(ij&uQk5
zYHYWAT{*F?{G+bCTvs|p^)CW^sXALZFCND^0lo?FJ)58=<jHS?_^jhAdGb3N?@0X#
zg>$)wUQYSI-}2<oM4)|<TaJ5x-vay@;IDu$Qpw+`_J*9xA<L5`4SBmE{|NX}N!-dL
zLw=z$e+QVyirr&5Z!_dV#mPT3Hzlq`^g;oasKPS}-z%vt4Pt+|Ock<L1yimJu!_bW
z!VR%Hz#6*N5cxx_4X}<rHo%Dh>jVBZ9(w}prBe#9DZsV>+i8{aayAFpLhUu>zlvrH
zGv;tByP(87(UhGF>N^7LRCoEh(8$$dSAgB@xGA@rl92fO0_>+{(Y*xmp}qrjq-T?d
z0~`!+D8L0%+Lr8T$-$Q7+Uy8>y;(5G^JT9%2+#CSIsIgSQ*;plt^_z8;0(R7uAL8X
zR<(PMqT8ROihg9tJ(gr$#tAP3xJUz}X;+OMS4CUiGE~1B;2K2~B3~GLhU=>OL0jGk
za5KOiww!6p?`^rtmSvonbLu2_ObUc37@}N=@*#3U6bex+MDY+>h-8S|5QRf-lE(OY
z7*8An968RBMZ)-Hlj93=X^9^>vZ%VnO!q{hM2M0hN`(+%yqPOQaPRL=M;>rw=@4{x
zWfU?=6?J7<l`o#F`>w1&=O3bWh&mxEg{T~&W{6sx6iy`@yRu4%sv)W={OTcUgjl*#
zzuT33k6;RPCR|AJ(9Td-(&6yUg1RB{*mMXhjH6p@&Is|QE4du{9<fQ<q<@<6J^7<6
z8JG4#_#t|R=oKOe5r$|PqE(0}L@Gp+5KTj*DT)vcLNpAK4H?ao2fSD^^+MDqOP;*P
zlRvAHlD=#d#;5mt`LeO%xso4aHVbh}$iLEK#v3sY&BNGd-aT4x5#niIe&ox=zNA*{
z^=0c2Z9;Sk(K$rh5bZ*A2+=XbB|lzZw-4hNC@5HdNSv<YH}%n;x<TATmk?b;bYqo3
zZYiSQ6UdLg%IzM;&Z<X<(SiIlkUXP)TZrBv9t!br$e)g(Z;1ZnGeo}-w}-eZ1c#De
zV%a`Szas=s_}m#{Q6M{w)d+V6^6n7Rmc&or_k_4N#DEYFhInFN;qRZ)?+bB%7@q_A
z<Bde2P(Bcwr|cO@K6woZ<;-^4_DT9c3WxY1o(%D5h{r-a9%8T()XY%!nywAv-LG=_
z>7=0rbZ*|w2_++kOiwAshEOwktYwrwG{mqF>qGf;h>M|oM&-$sAH|{=5#l)xT!dy3
zMuvDk#I_LILyQXXLWpled>7(H$|S@qAzlqJCdAkfQ`xl;<3fz5&_Yb4d=xd>;9#|%
zIElRrL9tJ!f-M)%MDn#r@(Fs)9fhZJWJA0Z;$_vBcc0ZeP0+q5tMhqtW{4s}pOsJN
zt_ly2y%ys25TAtjG{meBvqQWS;$0dD5kkC0C$=v+zN7YLhz*_eW}f!8BKS)rxwd~V
z#KA}!DfwZD_d|R@BTY%3uV7-YKML`22u3yrrz8_gJ`3@Ah_7e}ipZNO`Gv}S8R9pE
zvppq0FBiMwVre;tikFt(gxK<!&dm2AexR*|SQg^P5I=?ZGsIsZeh%>qwU-n^v>2}a
zTCeE+X<6q{{iU@0J;YoJ^AWA?2yK2^{-N3;@hfThcZhi*mW22x#C$4t32hN=Eh86%
zSV%8)Lo1V!)M}poqLMFGLS}sIzKpzIZ7WQupf3-xf-(uQF~rIct3s@ytW*<qf6QIY
zk^Lj5<Cp}GZ{?g!^4Vk^$2TK+L}We3y_)<YBR7TEO!vhOhT!2SGDbESyWUE#RbBJC
z>D&+Ebji0lc7)hTe;A>7gk2$a)8s>(3$Z7}-VjGZ91XEgHN8K?0hQqv3}=>uDt|b{
zp)fv3!^D6g8)6jkScu~xPKP+dOqW6|JV7<9uAK~VD#YIz`QOROof(;v)XryQv1~ko
z=R;fwfe85{>NzfjxEkVGh|6L8ZXivY^T-wI9zWZbqyMhfUDre02yrt+bwwc&p<;fW
zr;hVQXrM}%C*=YW3Pwmq(4%-Mn-if>1TBi=?TvW^B`bNvi{~YXnHyn<s#r8a;Rr>d
z_&sHoGsQ=CFD1EwULt~sP$xp&2r@#+2<0M_kKzOHr6QD$P$t4JujI~uR{wsCHc!{f
zM&Qxt^HURBbM*@3Fp9%vH6v7tP&q=i2-PF-bVQXXo_eZAct0!uJJ!Ybj232P4OXca
z?-cA;jMa+p?O458Jy|=#?e*ki^<-WIBSI=dI)WL&BK-(a6o2!<j^IT&TTeO>+z8|A
z$q(yEzUH>7p7bLG5l}ytJX87la{qNLtRL^lUpbx3P&kxfgoY6g<<ooBm-Q5TjN;Z;
znW3s;qX>;7Y^*P5sLLiCxcahk1IZ}LEfJbWm>6MFgccM|g#N4;p=E?t5xPg{5utU2
zHW4~S=p3PKgm#K@d-C5PcBJHr>tViM+#y2m2C}1qEbJ1YYlLnJxqji|&o_{K4*IZx
zq*c;i^^DLfLf;7eBHYF*5j|Uc-j!<4Q-!R~<u^5-C1=#TX17PUg99`)Mz}M=Zw=&K
z5$=w_fZL7+F%Op;$a^B(8(~<4rz6}K;r<AZMtDpy@IZtC5gw$#zs}{ki-#gS9N`gl
zt3pE=HjH=B29iEw+H-Syt50JMitsqqEW*$TJsZl$8_K~Eo`~>dgwYM-7N3gnK|}dh
zLwUWS%pIYTvD%H~&Blo~jpQ>ChEs=$8R6LoBk1!ZJRjjXY6YMBW+(1%B=4V`XgD?T
z)5D2TQM}XiX(PEdU*d%bvl_+3$3z%QO^7gos**_3lZ;dBwf!MEeowsJu&$B3*hsQ3
zlOs%t@O^|IB20}iEy8<L&Ir>Z%!n{M!W$7@ituuTnGs%5U1p?(O*|xZI`&s1yiSCP
z@u8I0BJh)jyj8lfoE3qubTR)Xh34Vy2=7FAOI2^ySpKiE<Tu<Xu6I=l(RNHsd=TNo
z2%kszLKS`#;nN78Mfg}<enL(DB6fp>TxIPVsZDDvxxD-`!dDbagzqAJO%I@JOmiZ9
z$yR>L`G$6<OnzQtdHhJs+m6OE*+l*r;im|TA}o&ZGYwfa@mGXjsT&dgi0~)vy@_nn
zME*{>T}?jFM9z&s_+k_JZ4=1}^gt7NX^j4Ngn1F>M<_K~|EW!(ix-j$A}pkVG?7CJ
z>pc8Wu&G=U;hzW_Xh9K{MpzbMWrS6V?0+AqT+Vij>MQ7Hn#xpDxjMoc8gk2`PZZSG
zD#q4DSWi=G8uy3~q{Ev^CT2E8*c{>ChzD`;wyraD#!a^mo5nk*3!2KUG`AAk(Wa7<
z*NzA~sZLpp$zoT8-E2LL=IPiM?V*cHAuko@_eR(kVSj`J5$9#(PoaP+KNR68Klq@S
zIZQcBNgN@Qh2z(bjz>7b{?e2poQ(K4E1aP(qA~uRbG@lNO@CE7{&qp<>4}QXWRL5~
za~#KJ@_d8~)VgUppTGJxi~Dss!j%YDBV3~rHj^|57Jl1IUXS8v_RR>16mBR6xR3u&
zGkKty%$EXE@Nbb#f6pm*i)?j^WWHbuIVqG)p<D`uQqWQ;nL?=)k}2pZlt@9OkelK%
zBkpg}6z;esZr#n%i=;rve6bXYr||wQlJ>au7Re3hg3aU5F>lEf>Nk(^OQ%qITB1xU
zKD^4y|4cqPEm1y&3Mo`ip#~eRu2oFMF_6kB+*L}el=^=!##TwiAC{?_LN&!h|K@T`
zbIC(xHB&J9C0MIgDn52tvZ!8LA-vOE)=7cz+vZ#;!A#+s6uwQtO2JNHPzsNy;E?$g
zdZ*AQ1&=aGp-Bo&QwUNBQ^=-JFNG+DR0<hNU}|Dfb9ubE)LO_iMZpQBh3wcu@|0}-
z6dI(^ShdSIXI4#%4O3{O5_`%Qc^D9*-)@$|Eh)4~p=}Dyi9aRLDuvdnVhi>(g_bD{
zXd!2`h{g3;3&|+=UoGSZH<Em)Y?ng&6gs5Pkz&k~7gQ@ld*vQ&A)DMxb|R}n?@TE@
zrFBuTtAgDW?5<!B1$!#kOTpU|WL$`~`lis2t*7u{3b%8JQ@Bqtb|(jdnG}{!N!*=^
zV^G}M;7(S5b+_!TGIgu`@@Dd$6z)x-+pRI@4=8wl3dDRsLDpjVLmY_tIRn{fpTxte
zI%6^{c_f8LDG(?5_O0?URle$0u3hm&3Nur9C50zbcq)Y#Qy87XkQ9cdFd~KLQh0rG
zVps~#q%b^%r&GB0O76kibiPu}ww_gVxc^8}yd0Ur^C`TLLSkxyg)C_}Ju!+s-Jd)$
zC9z%Mj7ec^3KLV9l)|_a#-}hL6+Z_NxoFFHwsKp_cgJc}%gHHBNnv^lGg6pJRZ(N{
zWXrgrX{z1!EhR5GWpEw-5|LZVmlY(!t0}ye!h19p@=tx3m-AK%Z>KOz<!7hxMhb6I
z<)HKRBH}YcB1C&9g?AP4KUG7##e*UrsFF`o_%wwNQ}`%_{Vk=|N`9O|nO3rSE2T&&
ze4fJBDa=V>a4Y#m3SX&OUn)pCRJlrLl5b8<@I_!=(&2DWzDwbIdXE%trtm`wKhi2w
z*pk9eDg2zm;uMyo@JkB6rto(P^HO}2!0##inZjR+?Ce%@F4c9o{znROLC(rn@^C9z
zq_yO6^vlp!%}LHzYOo-Mg&dbZa*7>IE>abnsdM{vTF0FKlfu#z)}*jDg=N%0n(&mw
zN{-8s<cbu}=ILBH@ICG>^%JX9-PP2<*7EVz@}1UlT?*?{*p$L%b!!9F`(`|sZA@Wq
zYsthspJz)I(6{oknzl8CZ7G~i;Y<qKQ`nKh!4wXqurmcJ&#n}9bBwOX^4XKZ-V~0H
zNK#PyDDV{S=f@vd(poY@gq${UT%u+hc{qh5EKlJCCyRpdEmk?I_&KIv_cqc{XH6e(
zBTuGqN)=9MBR_8=&!%uLh0FAoDV$H?g1U7v6+hQ+zNYcq5uL*&RY<Zt&qh;PIwirA
zX;)R@wN$({bDhdrSW?=FH1efUJB>PNAdUQKlun~e8U@lQm`0H_il&j1Mxiuv(<q#V
zmPRrihw-1u(RDTD@k;`1Xmy)dZX;T1C)>mm6OSPkOQU!iCDITI?Ub4hc*Id_D`gtQ
zVW_rb8l}>x+g7%08+WbKNUdxd<<h8}Mio_y$NS5tQ6U|B{)*{XA1b9mwA<Up&9zgz
z*j3Z0mPYk7KG+v;4%SFxXj@rJRj--G^tSRpWa59;R@PPJQ5vZ<^3pKUFw?Nu#MFeJ
zj&~0kK(Nzr()g#Xbkpz@ewlXi>q&aLUEC-+57KDePKFAyB&~3=Y1B*O{WXb<x}2%r
z7ptE}!!#PHk_Ksz$U`LZq|P8}<20J2(KL-_Y0OlV<6AtqawEx5Pm45eO=DIDvomO!
zMyoW=rE#7urui6-Y3x@TZPRF%#-nLGmPY$DI;3%18okr#sG1|G?vzy;ozwBYc9%4|
zDFK#--c=zm!$9AdX^9?b^yEMc)qAP(zZ4sMi>FT-ebcxvjr-H+m&WaB+?mE*X;8=R
zNaJWb$-pLCVKC?JH2SN$_YhKN+ROXe$9-XH-Cn-bUf!F=x9#PM_VR%=2Bh(D8Usmo
zm^QDY_WAp{52o=@8pl+Xo9*MN^AYy6L%fqxtwT&_P#TY?@q8Mi(ioh^6KM=f<LNY>
z<e&@vDc+izxVM93euyd=s^G*9^0&^p&!jOtjS;Hk-;Ua|iqD77B>z;DDTL?J7^&`_
zP!wKB<Ha;4DYVgPj7ejB8WWW0&aTqOvg1!{6*|gs)R~SkZ%q}PsPO;u%#+jL+%ZL!
zOl5w0{EE$=rSutTyp+bOG*+kaG6y}4Pty1_jaSlmHH|mZcq@(h(-N<xF*}Vn(s*4_
zxVxjAMgBX=H#^3Uc;tbp#5n!!G~P+$J*r$9@20`R8)uU|Ew*Eb{@bhshlW$b2Wfnm
z#z$#P9-@Do#?OjX(&1Fd{AX!=p2iZYI;E=4*nB}%QMUONbv2DSN-X?<&o>;tG!`p<
zzN5yL(tcC$dsXs-f<G$wlY&1h_=|$Srolu(aXIn3sx?=^KhpR!jlWcWfr5W4I8VX(
z3bG;ATB!1i{(t2gRY!W$v!#)komiQUzk9zdjpb>qNMp!{MHzWJqHxM|il?wOX{=3S
zPa1pESeM57G&a+vq_Ke}KP#~@jZJCHkUFQ2dygjhnM9_YYEsye#?CZ$rLi@QZE0*z
zV+RMZwYIBYBHc;$?<6O7ign=B{}QabI}PqZ-%uyh_NB2ujpH2sG!CS3FpVSB9EH&C
zx^_rqKJO$Ca|k-co8Zek$zwDkZb8n?;mPnrog}|fbux`pX`E)K)HfMu4ri1k@98W>
zXL&Y_sI%<YSzbuvB0WF`9WuC-#^p4sW>77ID`{M%56_@z2G`QKPB)%`mcflQZqnOl
z@X@5ib@k#lS38Le@@4S2`urDR{tOCau<KY-PE8cdfUAw=Nqu-{IiqvjUwX?V*B=>l
zX^{A%v*fBTH=`bTI?KW;Q@o2TmO=3hN@Y-*ndylV8HfyI2B|Lc$x`v@P=0KuWCp#u
z$i=e~Ol2}Cn?Xe)%u1BYfN=@NG5Ahj`3x#3nooC;GrP!nU1X&U_H>bzGpLe@-^1cw
zQlYN0?<Bo?1~oFsWRT6EW(Kt~urjbSsGUKb42%p+MW;b&y>15GOY3>+lHKW^NDeI>
z&%$0;$rH9t25ts^20;d%!r3w`K6%R*ALyCG4Cu8QmC>UNxK=zeC6US?ok82Kk|MgR
zs~p!=*2|!N2F){QkwF8ZWzZ~xTQd0Pe6o=u*d!C5&TXt952Z9!g>$;fWnJa<u9A;<
z)w;!UzLm~j-D;Bo19vQ8YL!9j42G)%*o18<v2L;*hxI^`i3lAt=#;^e89bFiXO2+@
zcVuv923<4gMuBH=8@sQV@2QCQpty=_UAjp=d2wrCC^H%K$>8=(eBy#(&%PO~?iQb~
z=%?`C>n7=H*wD#t@~#Z-&fuX89?qbD1}{!Z+?T=qM9biw4DMC<d^fgKcgb%Ku*$lp
zVmUvM!GH|PcZ`3a{Gh^NCf!{Q%;1p>9?jq}Rmi0a%egWfM9s`#lZs=v>n;ap@B|UM
zOXi8d4B?OrhGsB6g9#Z7%i!q@p3h)Z2G3Ad89bN4NZuW<mp+kvmgAz>7?I&IMU8vS
zPjr|5Q`)rdlIJ~MU@tNZ4r2^Qt#mxW{nA}>#K&f^xqH0YpLZZRjyBapw&@|C>>(#+
zFe!s+8BA9^PtL^Om)rD4VoC;6Gx%>@NQB3SW@J#WQ{t5jUR9VcW$<zaGc%anL%!J~
zKBmG9G3WM(!`iQ9@Omabj(D|)Bzz--H#5keMS(2dqIG1jKZ64qypzGZ87!lDX7FAH
z?`QB!2ES(TK?WaY@Kpw1XFxysQ3fAp@QG^oV+Ob~_$-4jiJ8=7Px(2=qNVml22C!<
z!^%7-O0%cz-BZqCcQW`sgC8=ud?@*JPx)3)`E3T@Q8U|0P7N!2%BjQjA2awV1E`=7
zcd_?QO8l(aT7EeBTL!;p@K=UGY|PEzj|}$BPVfPZ4)at``6oS6uXt6=kGajuV15Qm
zRmC~Ov;|ayUUG2;3o}^6jw}_md&$2$7wXbWE}<!9@KUc>T*VK?JTtv@F}Wgxl^JZw
zU~2}esI(k1MQu$6YctqDt(z6^i@kI-`SP^Hx(wFSYR)D<?G@|u??;mxsbh30$C7J$
z$)mmGzseWU3q5!&ZeknVj-s|bgB=v+O^q8~>!;{D=_fPTO<#9g{2D@|+vI@T<X(1D
zA^&hJ`H8B2FoQ$%&lF<@hch^m!I=!sW^k0ocs$8;GJ|6(e_X*63bNh*?w(SYr~j|;
zoFaZ+U2+x2h4BTIzo_7Uby@L>Lc5m1Rh8lMH3?p4uQRyGo@!bmi+tJGv5dP-_B)<r
zkC;amf7~Xw-6jiWk&{K8Eb3-aC<}^6&muPqP34mc62JN6MByxoWKlYcGFcSOqL`vt
zQXv%2La0ktFOkL2$q6QYC`@Ld_l}!mDy0xuST>7tSyauUS{CKAsE|eFEUIKtqqnS>
z#kG+-AI+NemX(O#TXKJ4R&V)3Z@Htl3{E7g6D^C{iWGfL%`9e~NWRan!St53R3SsV
zh5Ja#DlZEoiym3@%)-pV%A$D|EwZq)aI&bEMg1(?EW9jIS){Y@Rdw<iWf5c%X3?mR
z?Ab>S=_B9iBdPFJrX(^7r{>8dBZt{6j-E*V(?=5a?UQIg{45$Pgoat1=pz@Mi#4ij
zU)dy!rdc%0f);d37Wej*xAv7EjMw=&4$dRDX3<jB>XJpPELvyLE{paYk>_=8J#3$p
zXp=>gSz6mHhWCvnIp}2alat8~S#-?e?Y^>87M)dE(pR48EAJSm@hd}Jv)sNx_y6lr
zseW-qzVp>9i`%jol*Qv&^v<GB77t`GAd9})_^?X9EN;)nQMks<irkUKovfb4Jz3n9
z#obx-SE<?4g&4-<ZU~RQ+@i?do5g)u+@HnZt4TiJEu59h&s7oUseY0r4`%UD77u4J
zP*LUsJ400?4ksUBqm#AAvfx-hngtVQ`H%X^(UTHu-boD3;)yJt&f=LYp3LGYYE%}(
zvfPBiAE%P5P9>YI&SAWiF9tSI@tg(yBz^wyES}Bc`7B1Mj*s~NXu1yYDQc&EytMlr
zojE}MHpBudV%Oi^-tF$~?(Jeh>>UI|I!KWYO79&}dKHk~5oywUlOhTzRXWlUq<wGV
z=kx57C!3v2CX<;-Hkl;Z_$nJOU&uPE>1>}3sVu3=^5#wD|I>+*%q*3qGkH>3s&vWA
z13kKBqdVon#0w^RWTPkNehnNl&?_6g*@y<x2KtcHY#h(ViEQ-CM*nOq&&G;u49Ld7
zY)sC^lxz&j#@E?gvBGzh&pwgC*%+3M;n}?F1m9+3Y-QCPL$Wb68$7Oav3}iASw>`I
zB-=C_W3utfg{)Bo(Bn+T34gJ&jLpWC-jQ*-c15cQry86pG9eoivoR?f-)Do9LNr+f
zuEun|j>EwW8+2+mre$MZHs)tzdNyWcV`esHQQppF^{FCbtH{bK^6ybIvo-QL*_g|^
zR}p$36I=8XS&)q%sOj1Gu})+m!)&Z89IN(;SeLREu~L!PVhX<=Ffjh&C#r%=*;v{5
ziIyS1eEErt{6tpr$;PT|>}CbCu{s-Tvau-}o3pW&2&t8oBI~oU{S)CN1OFUrUCP>^
z>3Ql<)<&x8Aw|rM4<lO$lZ~HgTkb@+W@DR%8Kz6;uRZ-<c4T8Gb?_6}m5r5VWStq|
z{u;jS$;PkQI7DgB#&6l!n~eiH?>C)d`?B#n?NU|QuT2oG5X<^Qe`Vyws#2q>9Lz?S
zs>0JgnQ}ybI-0Fq%lOKFu|KnM>_7NNs^veKjZ+jk191bVvvDRH5d%34oF!q|xSEZ>
zvvDpP=d*D!8<!|-Yw}#6Jq)7Ds;a#b&pd|98e7F`Qn#9%sVY}UUNtFKO|E6*IwdC?
zce2r^n*2k8X|C7hxj`|gCVy0utJM_$Z|UqMtE-u08p#UPh3tZXoCdNC#0=yzRHu;F
zK-9oz)g`xqJUWGmEvn18D_Qib8B<+&BoXVF&p-hK1r6jkR3AYY9tt|YZFF6ADP*9q
zfg=CqEo$Igb>WsAt}^fli(&?f8+g>fV+KkXxXVCk0}mRwFg8-s!2b-~&3KDwkx%6w
z1NRyzWvCxLX1ve9OP|X98g1!MrP-&#fgI=49x&ATjhs4r$iTz;Ygq$BJ{1yk=xWv@
z2Fe)lu4JwHR2Y)ZBcICS2Fe+D!N7|Ko-k0}z;gzk*LfRF$$HYjQwH+3k3DVR83WJi
zbiPJvh*d*461Gc32M5u7eIwlASfz$!8!!x528wbH|6EqWK+*thTB{mj8eqsmQ-(TE
zn2BH45KaWy2A0<l?t5}cn}OB_+8FQ+WDHa_P|ZMKAT;offp-m5V8so*smVA!Eb_8}
ziUwXY@QQ&~4Q%;4>#n|$0?*+>4S7}1A67Dy``POT-Y|gAROx&ed5bjkjl8Y#@Yku-
zXY!tb_YJO(|Nmdc2L?Vg@R5Gq&_X$*@|W#n{mQ<TNB>nZ@QHr)Ka<jW+*qBj1{xS>
zXrKng#z0*SP*aDs4Af>8O#?Yo$3VBwgwuK)d~(=X&p>?x+>9{!GnuQgeQuzU&e%eS
zjSVz0&{W5>{>h@@szS$6{o2exa|1jIa`R{M*Jo0urmAL3{izkX*EhoDhPDRU8JKKf
z3Y){gR|dYNU>Im`paX5Vf!+o>8t6o-40JcpS&MxajU=oooWtp=<27r__?oiupDg~x
z_b{-mrW6?%>q!Y87~{N99|L_23^Xvvz=4{=6}^7crdrb9zyJe})DkM}D>^*+PuAB|
z`99IX)EYha@{Pv-X)Wc*H`Kr|17i)0Gcer12m_-Hj4{x%mJF#Smm0=K8W^P?DIVKV
zOL-Zw$|QiF#%nwi4NTIJ@5t3!^kG1b+QK1p$=cFcpB?eN0q$m^*Va@6)2LPkb{Lp$
zV1|Ls6eI&P4a_p|qk%;RW*gu<{5%8m4a_kxS7T#|+!w%Iw+jsXU?97;EF@QZD?V`2
zh9S4#)*ch(F9wBYF)f3Er8IY~)$MYd3{2RXXPJSYDEvBcg@Ls?LV%SzvdX~f|5DcI
z2uoS_U&?v|8~%%L{O>D|3949Iw$hLejchZpotoPyR=rWIW2b22+EQIFHtjU9%fN32
z_8Pc6RN3d<27WQX0Tq`y`qq{`27YCgYs<mflBbUBGqB&lA8b%&X%u^~j`9`!-N3)@
zf}J}=c~I>G`rP2d298j=68I{CqeMuHk-)PF95Zm7lq3*M;Dmvb25uX;W8f6YHgMIz
z-)tk&Y~Z49vcG5~sm_gK^hQ2!;Nv<<o-b&U2Fz40H!bSOB}1)8Up8>Xz)%gqbVjZj
zxK0~r;0766N4U|0>Bs7bGC}XhzG@u1$wD2uMSEUXIN=aUAV&hZ63CsPXUqTVe$Iqi
z=r3DW_BW1ItgA}TlYk71G}a4G9Ghh&xV07cCU9Q@`4Y&_uL;BxD3CzG1d1e3luW2A
zg%Vg)SAMT6g%jA?Ejmb}I#*ZNp|CG2d^4+90>u+3nZW-N_@}8NwS=bOt^~5`3D@lC
z3&G(!od)^o?gYv-iQS_^zTTfesRSNN;PC_=Ai)VdoWLUqJeW{dDb;Bbd$XQAlmK`4
zb7ka-dQv8VvI+1w)9>mD`-u5XVvqh;-{$qCTmnxdP(Fbt6WG%v_Cq~2sm1#@$>iHj
zVo#AveWHKVlcy74$kLxn;Q0iqCQvPb7ZP|efmai#m_T*{MgndEUIGcG4~wJ{u=urA
z%p`oVXi|slGH%urJHdMm6we)UtiC*1UtX;*4eHC(0WqJbhDE{zDkShteaWzttXQDK
zMfGLJOOclncqO5P_GOlvFTyQazt)#K^%ZTeB~U4W_Y?R)BY!=Cw-R_efj3yk2ErxX
zH+6cW=F!(0$UAJK1}fLP3A~p;6CEGaK;GDv_rnA}O5o!JDks1WlrXfq8yZLzvZ#CX
z&4w!1*#`1S0uMD59-vp9XcK6ZKx2)+Mgp}HsFT2F3DndnbsI`89pOJq`-W0CfqDtl
zPoRNLTyP^R7#ZP;_AHILp-x=iP(G*DG?cqOmnI1`O`vrGZ4&q*fo2Icz8c#<(ma6{
zta5uLDm6ZrmI<^<fd3$jlS0ldFy1zSmct|MNa}hu^Uy<o8u_`jPoP5ryA$-tLdOI;
zB`__4=?QdBpbI&lz_$r>O`ux>eG=%KKzB`5uLOE0&_l<2>Tr`rNb}1QIb+tjS*%|I
z{Sz3Jz}E@&-!veBHO*oJDS_)E+=$0Ml#}p(eJ<>>X?6xDz+o-t5{D!(G=Xsmj89-#
z0>cy7|8Zng0wXBljbx-Q%WI_SMGU>GMA#{hPGC#|W69@6vY}0k4<p|tFd>2O$p@C$
zI@+a?@>QFtvrkH3aU-?Oc8Y%GPZpJNY65(I)0k%@Ff)Ob39L$BRsypLpTLp?<|Hte
z(n5vRej4)<SdhRE3FTigKY<%M?<0+6A%WkI{YYhOtmu5Ru{3EcLmCS=u=90k0?QLv
zp^ILYz)yT_Eaw|bktPcG=_blJFtVELN?=n0n-f@@z`6uBB(O1o^*UpZCQ`gzw3^N`
zTZf!N|G9~5p`FnHyAs%@BR^9}64*}T)>O(il~<bz|J-*{V44b#k7k@@UDN-GdlLAS
zCfY=niQf{~o1kMJt|hRKO+ZDX8BgGMs=r2iG=T%ujy};tl*2#{QcsuXqq$~yIDsPx
z<<HZ!xjI9Jvd12f96nAlPT)cU7ZW&1!DuR1Zf0F;5j({OB4b;`W;9jAoJrtp0)J5^
z^(#}(C2(FB%5=Wc@9t6pSE#DpqL(R_En<h7%8jN{><hU{`nMD{zL4uQr>wGxoF;B0
za5I5h3EU>BUkGocC6cRpG5rpkuVpM^ssSn|6TbaIa+qL9fLtbWo5*A0(8>tA@53!)
ztG<v!Ur1gPxtht?E_t~bCuSm_iHA)*Vj{nZ0wzkBxXVOA6NO9^Gf~`B|15<~6fsfM
z1ldl8^K3dXQLmZAO+4C6f@Z=vOB~%y-k+o#UwK7iNoF*0zll;N?ly6c2|Cwt+4^1+
zYn#by&FL_S)6JwzbCr>=53sn>(FaY%pBBxfw2p9m{*aCg)nH{zlr{0RiDy`@PJhhA
z<ECo9#TuZTiSj!A2@@xptEm9~r#xxmDHHd#kT+VWvYPAgSrgA`NV>r@k&m%E_M(Yw
z6CWn=Q4)rUgo!OCwwf?aBu#WN(bYuCgk|Dm6O~QaCL9wLO}u6zZNfG2vWZtrcqV)k
z854ntp)KU67Si^<Sozj5&di6cV_ba>O;j-Pl8N6nF<c|N(?U42_o|6@i3l&-%8F!h
z@L$Qq>n7ec@t(<L8oX)Z9ZfSC^_GsT%NKpFrMzt-Y$-Kcs@ipJDes$f9L0wwJ~Gu`
zC#OO9@DpYD;qG~v_gL##6%(JBXlmjM6ID%AGf~q-Efc)?v^p`X5+naQqcUR+6Li=A
z%*5Q5vZtlgHc`jK=O!ANxX@DSGJ7kjZ=zf)sb_+k$VdYd4M{-nSj$#I7tL|4lmi?0
z#WyywtCch{LCP=9$~yT|o@OSRn`m#M1KVhLq=kvrCfexQwKUO+E&iqIwivcG)ojw2
zT26QxNjs`WYgOg1OtoWz4>urmG|@=|bY|E##@~Ee74C6h>7`psHxu1WOgAxu^FL$`
zHO0gb6TM9IHZjP=*CzUy=xd_Ci2)}1kwtx?HFYUGnJ3*^1~O%4KF-#1Q1R)9kusl0
z2b=iDR7;S&!}RgCF>Xz*GD!IW4mB~%#6%O5Obj<M!o*k;<8-}7ni#DkqfBr<t$k}5
z-CD+&bVO7WYlqytGd1PoDGcYczB4hw#QN4kv(UUv>`-g96Q@hR$oD2DYa}1Hi#^{i
zHpRqL6Vpuau%O~?gbz70)5I(jKbcr=Vz!AnCVn)ri0x=%o{0rIJHZY_lnTtJ4Abpo
zM8s$#Kj=>jN&i=|ciYHf6L0Z6WE0CYZ<kQ!^Qlocy$HzIwr$igFDpz=#b7O4mO^V_
zm5J4?ovBV$eJg*g(s1R-H=~X4WZ?BCHkjaEp3NpUYV*RIU-(Ldn`jf-$h~caF3_nW
zv27-{({v<pZxTP7*kR%pGtvrCifGm-t|oSy_{GFtP1qh2ztZxvnsroh>@@ky!^k~f
z#ki?|pNaj{I1PC~hksC9SLUhGR>A?X7H#DqdGclK+qQDV#8DH+X+uo>Y2ug$?lwF^
zZtyp4O<N_*Crz9(@wfhTni}`6MBB*~6K6~uXe)fqQY>}+oDR?H@PZC6>hO{dFYAzh
zTg>usJGp9N+ua3UZYS4FTsQF#jlXV%n^co_GN+x8KP2OqcB*~vn201%Ac=xWWju2v
zkvEBG5=bIv61kGN-9MT~f6Dcx<R%-xRJr(YJ3y9BkLl3-Qn(@gr9blIOCo;~mA{nk
z8nRFlg$a;E@g$09$f8L|5;OEymKaZh+Y`R%@c;g7C6c&HgWa7}f2KV;#7gSd|0S{G
zOQ8o&&aZ@iN6dI%689(ZViMU&luF`(BpyxTu_Q`s_=l2sIEe>!oWKh@#2!gv*6>J~
zB+6>czjlb->JWSJD>V`(z~f1jOXBGyp3zxGKCQU%L=xqb__Sl}$t0dis*O%9zmhRu
zDGsa{9(gv2XZuB-PvW^G4^)hvI-Aw0W9)^ba!;DCVT>daNxYgw#U#uml1X?;_(`Oa
zu*m085u3=_3x6g2#o*Ng1v<r?B+^N^<a7J~=d;^hGD!qUgh^D;@SLN2x|3P~snuRy
zN`gOhujurblb{1?m-cFp*#6;>*OI7|q@TR1$m>bGk;K~?>`f9}H1_ZS^@sje62o*s
z4BttrN!sQEBL6bvy(He(c|S;ErH0|5iyyOPlem$@%_OQM@ktUh$<-vPCQ&U(Cwz2G
zqB=`S;)^7jB~c@Z&yr}AL}ND1$B~*z)JdXl619?O-zio*37+4`p%KSO^^&Nc#Pc1L
zUNlHzYo}PlBtF*>vglxYx!qoxcaGiNLAY-CuTO82B$_6{-F!5gG!e~p5iQA(BwA?7
zDUHO|I*B$E?-7wsNwiI3N$1#CEIo;KNqm_E5mxG;HlR&!7wwQlNAiC_q|k^+y$&*>
zgK7f0Mt4rCPVnjVd3fGww<NkJF*1o!N%UZP5`&WXI*DFM^iHB*68&}2eUezJ>%u)*
zeOX_9^a_dOK&Wb&*nlJk>b9WAHH#RW#5ZJq5<@6vU1D^@U}Cc_G42B$n#6Do$wNzq
zCDj=w{4^qoQyrvaM|q*6j80-q65l5=If=1Jj7wrX#hX>D6RqA+I(Jm?ob#X6Q6>=o
ztgMMiOiJQdM~QZl2RjKxdP-7t+0&Akp2Sqf2Sg}Z|BlROQ2x8doK8|sZ%CY-#GEAd
zC-Hj{bCZ~t#Ofs0Br!jU1xfsv#3Hr`H&7(8knKJ!Qmd1E*j3qN`l~M{=P5`@tkV2h
zn#51U&`Fjh!KY^@Md$J)R_Mwe>?AZGOv%|<$pfF2U1MvLSeL{WiUh?*BVqbx9odk?
z#w0e8+RpNEXKCA6M(B(*Als7Ip2VIcekITI#D1p0B(aOeB&oa|mUkA0hdZmXb|>)*
zYmq~pZ&s#@O8G5`y_z20RJf1BIi4t@AsOM<Kax0*#OWl?Byli_LrI)S;v^ZE#A_oW
zN0K;7t?#1f=V<NEB#vuT{W`~vQBFF?KJFr~>suSx(a>*=;VJ4-v1rpSayE&-lDL$_
z<s{DiSJR70oTr?0k=b430@JGtdl@3<0i;)wxSGWEB>o|jZ)g3j3*t8X+E=r#vDfP&
zN4f~tuQ{UN71Eq#y+x}|Lzlv{DcngSlEPgnluRK<3P_=7N*Se`Ddb8aUkdqC$emKX
zVKjxTl$u7)lR{p8>MFe6n&G2e6&cJDODXT5%3Y;E3I$Urlv0+bYxh{su4+>Zf42*#
zl+R3&6dI3+P;I$HC@I7Vrb{G-;wjwfu2!R7>JclELX|{>Q#Ak6Ums54kreJu;U4{Z
zZwe2jP&$SCQn)__uH)Z3GBT;FluD_?CmDHAgI(^b+L1?5J)~bZc9k+ZQZ9ujQYf3k
zqx$u+6du<R9%{rTD(R-270ajaWC~B~S`f)oDZJiIt;uG(DV$$+Q}epdrSN<TuclBj
zg%>o2WD2Pi`izLYs554#V5E>pVQ@DwQ~0}^Ec`gKxSJf+NURjx6g-{L)}fO^I)$gY
z3!gW;i=RS<P0%y;atdE`mq5o~N+C?4LJBYTjD6Ex)^%6(@E9C|z49NmjK7vbr4&9+
zp)x5?;SG)dy%gTmk+)KKJB2xAqFFsu_IGsRyD5~>uS|JGpPKl-PX8c<4^#Lkg}VA{
z$Nyleq)=4@e3DYjL(Da*XRKNZ)me16D1ECwO(|#W8vLrkCiRfDJ><ZySnU+*u&fFw
zTLE=bsFy+w7oWMPpF)EarrDToqhSi4vyK+BEi|IcklGaHrqCpXrYUqwp*wk^(Y8&Y
zT?)-~ym<;Obfjepe~yjN_x^AXX_Z3j6xyVeUlYff@t#t?r+lfwy6Et$6xyfIA%%`9
zbV{Lf3iK^xM?)h<417L%R2bf;4>azo0a)1{tX&EtQW%*+uM~P~R6}&whb^uneN*VC
zBmGktNcy`d(=i~0`aOleY=bDegzTvo;Cd<sev`ttx)Hf2iw`G-hU)CYbU0jx+yJ{$
z1CL5!YzpIa;^-8(TWw4V=Xy$kUNSy~?^2kY!ju#yq%bjs@2ML7BhU0wdkiP(EN}Nx
zG;lcDwwFvL+f$gW(@Dngow4aD%t&D-v-gsFddsX7_V<#%d&$earEYIU>hRt&FNOIj
z+(_YO3JX&BfkmWnD20Wz7%6N^VS5UTQdpeAniSTiuq1`0DJ)N6MG7zf9GlZymZiWM
z8_q5Kl)}c|Dsr*66zC%>Q&>e+>Lc&>kwMQySEqPrM)bWq(RC@Tr=3Y*3tOs>Y|sRM
z+ebF0u!%H$Q1H||HNV7x;?h2{H3hmbabk)o3GM|Zi&FTNi7D(%;Y1(VokEem5iVlx
zqOzBi?7s4DU-^a7(pUDdA^OVFzOpxkeXM&5zq4w6<+^&*pUWS*nP{wd{NMrd>UNY5
z$4-Y+IKoy);d}~5DTFL2g_9{9`w#wj3cOM4p?+faQ<js1nNunJMI9LyIjv#Nq;Qtj
zub*Oa-+nUuN_1*JnR7MIg%mEPa7|bF5-$!O6S<ti6_(OZ`Hs@{mo8ZRL%&KplfvzO
z^1uGVEBvmf@DHs}e}#>szEAthEsY_|Ld?Q#9lw)8#8PHIhlQLLa_KlM>>3c^F?USQ
zZ6S|^2YN-j^_OY=C9j33g&$&3cB$L?OJsoLvyh(v7E0^91uPV?P*leYS}0_paaOGK
z04Yp>0rJWK5esn(cU!ne!xXb{mxYoRid!h5QyLCX$7l>5AWaTsP5C1BKT8dmNy*)}
zv+mUZ_gmO9K<=~D9^u&ogpO+021qI594I_;_CX5|S$Nz+ISUV4c*Fuv@GD~>IZ&z&
zl(qw9+w6R0Eeseak6L(4Bm91#>=~%I^n``-7M`;3v;~gL|7sI`(o){e{|uB@nnj->
z&4c7QOL@&b%k)7~ZICd0-ogtO2tW)I2g!;-VpvF6xMbn71(QWv7-nI(g_H%$LIVp8
zE!Y+u3-4HXm#A153$I$JXu-4KTL>*wu#mC9gIR735{^Rm4wAqELzYtZYvJtQOO~1g
ze3?b-T72}i7Mri-H4Bw2ylLSrOAQ-dw{YZZ;X>hpujLI342gl_mt(NJtuylVg~9Tk
zh4(E~vryf_2NpiGP}xEi3p{4wBMsJVuzbwN0z+n@gAG@)8To_)@EodISgg~T@~MS7
z7V284Vc|0iH7(S#Fs@OwHY?jk4i1+5-zW^v>+tn&q}eyp?;ELSp}sC?{5R66WRcHl
z{4I2~(2XL*np$XOp|ypk7QV31!a_?6>zUU=bDb;tt-@JehqZLb*G}I`8w+hMd}X1%
zg*o4<c5G+iy9-&|`~0OvhkV)dt#q)^k(KQp<xvBjEOfTifVm4LYKZWJnHPshogu=M
zjzgrog&yRpg>NnNw9t!!WMQDCtW9rCMn4OEEcCV1c~J9*sG9B`BK`HJ0z>7Aq2dlz
zbWSfG9c1Ba3xmn1p%O05(`%?K94bRB?H*}yCPc~nmZ5TLs1zP1BP@)xu)@Mh3!^NI
zwlKrOObcTyjJ5E+g~{Zwh4B=y;gJcfAmwdmj0YBRQsUo5LyF2oOZ9G(NZ!}-%rKc^
zVXCEuYBWTZhe@+xGR@*vU;Jz3h741CUS?UCZDFB>AIUw2dTwN%g}FqvQyp(hBIj!)
z3uqQBtR1Gjy!bFe%!@26r3`C;#TJ%WxHU{l4Hs*;Y|Rt<iHbu$43`gv%W_KHaK)Kb
z7FJWvskRo@5TS*iE$kpe*xXcn3tKI0VClo<`4O_o!bS^shD-4gD(@R3WV2><^AW;(
zANq`tZ5C+cw_9qzGqW(<N#kbWS2mf3oH;^v6C2AKmTwO+Ydl27*V1<@1DJE9!o1(Y
z?-q_*IAP%r3kRrEY$?K<k%J^}Or*m|Ib`9mh5JSd4-Kd^QtFPBKXnoO(J0F^D@MvO
zHk`(G(!wbVe_1%EHT1NFGa7QE{>tLcS~x#a9XXh9l+yI<QF7kG1q&Cco}*;sC>e2&
zqUwr;t5j7RAKCcZ!Zi!`+PKfgbqoJkC}5+YjT=;93lSSRY~0eN+$P6p%F0I{8ld!d
z%_uoBN~tz%<g}63M%2cp<5{_E<hIq+2VwG!mbceM^4RLEu*c72W!ZRYw8U(6ZDPrK
zN>KCJ$Zvxl(Y)s1&C!asLN*H9O1kd0QN%`38zpSqWuw(-5nJuDFJ>do;_ix08ZE0w
ztN)bZEOCt3V^o#t8B$Vb|DTPTW2Da*g_GFs(TSY6zTZYE8yOpcjR$O$wqe*v*m%&!
zL#)E^$O|?ew(*FKM_I~PDPt>3Ue;C;yKsye|NN<OK4#-_8_$fDayC93D+9;M6Z(}Y
z<#psqR#r!zW~d|2>hO6R&*{j#C3y(^Z~R4D{YV~h3uW72xMZxDHj*}68=j4njs0WA
zvSHhJ_jndLNn#vLQrbpjoT}qJI%LEr{S~5A;m_&C_pyXFD%hxG<8|`c#>+M;+IY=Y
zm*{!pgzGr3*r+v5UezJ9b5fN5DgDMtWM;lMY`n=5ZM<ircAwasaq^Zf^lcmO*x2%4
ziHzJDC&kCh`}*q#6sp1b6659b@$#{a$~L~V@s*7#Ha@Y@#70vaRc%zWQO8DI8`YW1
zMhzRE>Fh;maK_6s-PBYny=7|J*f?HlkpLSf$E%v&`<=Y_oz$~YpJRR-pWCXhQ8agp
zHn8#5cS4^5&X&_GH)0!UUNt80cQWuh`NBps8?9|MxzyZ73teK_N|BbNQ_rG2dLnE6
zchX9yGtx$jO<Nrv|4!Q3YTBQw+TKP78$)djv(eE;CmVfj^wYUI+vsYen+@LF*M)kd
zPr2+)b{)>@VWTIRsY&WZb^A_w+vsDXY=gXvvuY1aP+@9<^tUm<29IO<#>NK|r0z$N
zfi?!&_}a!`@~xy2faVi~eu)ej=ku+NAvVTM5dP6GpCH3+jIc4@#&<SG+8Cv)FxCbq
zHvfemZDWj$!xNOZ1}E^TBjYsv+<h>?#zY&FY<zFyo{5r6@4=+c-ee8Hdw-@-DJDv_
ziAwvX+F%FNZlcVvG1JC52j?BkvN79+?;zt~j*Yn#2^-gJ%(F4y#!ef%NC{bFW2ud0
z#Go;gF!mHb(mpVIiRfYyKT*|giH$i|vRDdtxcp>eIqi&%&ALV_Y^<@dmO4@-w$jEb
znh1?*%|zkz$3$6Yt4*NmZEUcSD^Qz*Hqxd|l8rg^;Bb<{zs1H@ook1U@{?qn#=PAI
z7xE?yi2Q7;bBzerW|B<T@VjmNV&jy~vd6}+WFys9zy4<94;u$;?6t9vYD?4CI?DYu
zzuRiEl<@_V<me>fy*3AJ)r)Zl!6BWI3rQ^EsEt2uoS>-NIL7J^QoHt;e%uDWmr~y=
zGPnbXA)oMjIc?*Njk6R>8<%WcCjT|I3$$Qg#?EVTZK`u!wAH?8<{JIIT+uL(PFA}D
z*L*KmZ5;ew{`p?6+xUl;(7{8FGIuv<03Adf++-JE<F<`EB*Q^YM_Hk_CriY^pvjU$
z123MeXxlqk*l*@?)N!e~9prJ4cZ!srBAF?|i$by-#2gfNP{Khz2l*WoaZuDzI#s~I
z)G1QPL8B>BP={ToNMQ#%rU)N;9*ToFDXE~Gy)RCYVic{ZQfI2frpgmj<t_&$9o*yK
zUPm$Qe-0*0mDN*)*KghJpofm!=ls8pmvYqM;rDB@k582c9F%r=jDNlbJ);Gtsaibj
z;1LH;J9x%H83$z@Jno>JhUXvsqYfU^@iNoInI@$ZIiAq3Pda$YL3utMqwR-9IJ6_G
zDta(L7vg6fJm<i4kaY08gBKiRJ1`u)=-`uSGGv-`&!^y<YXTY<i7lHZ3D#mjWa5BG
z%7Nt|?Z9<#XqsG`CbolO)8*Oe;y8GFx_mudJWT^J^w8zf6*h1XIvD0)xPuA~UUE>^
zK|KdAJ9vdH=-@pEuR5rxGrr~EH3yX(ys2O3OqbVn<P8Vh-o+F3`K+0){7$KuZ~s@;
zI}T1yR~&nvU=FG?-NA<rK5|fn^>XmB1DPRo(WyH_Dm!>~hGb?acs|`{NL2?v&5&vi
zPR<ZMOswJHGY2&t)N+)c=f9Br@2<_(pDFauXG$Fh8=FV@JU>(FJ80mbgM*F^8nRg(
zv~bXp^5dYfgXWsfCjU|Ug`-Y0XsSbA_wd?GX{JBXfvUw!RaPqptsQ*jpuK}JGo_7#
zc8(gNw{>v*Sd3tV889I7rGuq2W#3FK>a&DS5yi?#CkLG!^l{MFK^F&IDRmBdI^geT
z`Cnq)bU|hNMY`+Al2;4z?qgyrKTCQ!@McMG9Wte#gZ>T%JNU-I0J3qAQvX3Z*FXnc
zVrV!^zIMQeF7Y%e-^`M49dv3M<5^Wh91L|ZZ<g%T4<jQSjC8Ql!72x%9E_$lb}*N<
zb1>Gy_YNjI80TO-wT8mx;6mpZW~(Dfx$Zz+o9KWO1*D%#nUg5Jv!&W>nL<@{FvG!2
z)^xVw$uvhhneU2C*K{u16`Mt!x+})PFuRrMvt_n}-Lr-Fkj`^3-@y+K7CKl!8P-1$
zbjM;O?;QD2XJ6!Cv5v54B4488KauASmN~dD7HicgT5gUovfRN6{k7s8=~_I>aJ7Rq
zG(K!K2WuUybMP~5h=cVGHaOVgV5^4T=wOqB&6Jrr(tnOjnxks*vkn>AreS#O%%wT9
zoq{)43XCtX)4?tWduRvxMv`+CJTLFqO;cGf>lYn<HdiLhRpa5k4)!@XN-=Y=-@)(H
zSqFz5wfekauKdB2-mwD?4m!#&^yFO0Jx`vVrzT`xpC?Cj(L8G_73MfbsdI3a=25rx
z395;MQyPFL7<@iYPCGc`px-=U{I4BKPG-&%_9;BmY~wsN+kAn|$F@#mY#NswT&C`)
z@k$z399(tqU>Xml@wbC(4hp4FIF0KL{&A2yjXY`Gpt04hA4%gD`}BEoN58U^+YSoO
zSG(0-n6LPdBMsi>l{2ln3?}AEE16-uhW?s2jc6MA(#W4i7UN~HYQF5BFR?WG%@;ld
zE|A96`N9Qa=3-w^FpawwNNRx;Nuy{Q|4ZX;ja<?wmPT<MkEd0~%KIajr3B%1A}3g=
zt<@Gt$u#;eP_*5X#=U9Wm&W}XfGf^(bvi$l(kTz5aY$dtQaX(-3*^EA$@haioW>(*
zyqHFI8fDTbo5mAql-KZ&rtw%BkEcNo1kT;@Lbs=XkavENa%s>qwE97wBv&^TeI|`(
z(|9V4r_<>5gQA3=rv4z$rNKM+USN$D%FZ9;d5!b$AA}FT8fhfbaMDPpVWyEx!)Du6
ziBwuBZ5GPFg_26cN@K-BIk`}Z{wOqz{2y`C@X`p<2-DyJCUl1PHCppW$@~|o^`lf^
zE8H978U7^ZC7n(TuclEkjn-+jN#nINDlt8c8fm<q#v5r=N#m0=-b~{yVou}ZG`O7c
zb{g-d@gAGzM|nr%8U3TYp9b%-{UD7G)A;7S7~^Yxls|ry+>7LqMUq)0?<|tanmlfN
z;GJuvp=uh{(x^^mp2^}YE(Z)utiMS5ERxUCsF_CNG@7JQD~;M|)K8-UE51nTq)}?I
z)J=o@ytqi-SS<BO>SE!ht%hlQuIV8_qcnb6kZ;st#d%KfHd-uA)A%Bd=4rIhFw+)G
zvoww`R-08hS>2M7xkSt*>L^`iX_W@oI`3T~ZPRF%M(;HGr151MU!~DCjc#eQPh-;9
zNT)P9r_q5NTOu9V;<_uWzeH%&iKGjKaEbiurC+x}v^%A@bhJkrKP*vG96c#`OQcs?
zjchM1k@!;SON~h5+cbtSBgIL>^FL)^8iUdpoW{7N^3qa;x#?2*TGxU@{cqB05skmY
zbR!&^#xR|0WE#WSOvkfmBw5yoG}bPaBTJ>gG8vV|Xlk_XeRvu`xn(jgjq#KX7x`U$
zm&SxNcBZi_jft!yn>CFkX?&l?<TPfaF;nB8lE&0DrfE&DuuM(DPuKDF%cTA?8L~`f
zr7@c|O=BS|s6Wk1V}2TQX?&ImAJ(GmPbz%lCs{yiQz};DuGo)hG}4Kjbmi+JGC{vC
zO=DRaYgmi4+T-(68Y|OSmBw<?@RO|28h7v~q28^gAzChz^iC@p7IrA>(paCyR_a|E
z8z{-kWn&tfG)XzrXt`WAv-#f6w<V2H%VpVe*|%J_UCUzL?ZjU``ZF_L%et{#k-9_k
zeC3Vk?lgW$<1*`##-22OP2)rwC)4;XjlF3cWXq<pFOB_a{Gn-kV1@k7yoK^|4-`-1
z=j(wqUS1)!SID<3WZDWjoW{{K{!HTt)u)T_Id`PMu{1WWkWU&#k5jFR$<-C|;7X~m
zQcltIrST+fGSy_IoJr%HChTk)e^HlLDpL6{ay%XzzEUob11sesyMQ##uM}CO04lDM
zt2F*;<Z_YQ#WfoLH14Dkaq*AFc8kq@J9;CHo7A;cGIW*vxJnMMlG|x@1!u0+Y8;Zo
zRi>Vr3s)I`ayzGse-B7`bhYGhk=I4kMV5=nTIJtbtxiUYx#+xFeq1fTua@hNVd!cp
z;G&=l%Z2Ttkc+}D9&+)piy|(Hx+vx10T<#T?&2O-Id2zpQQSpI7v<N;rPWfx#a)^J
z#yNdAf4W-G`JaosxkOkz>a9^@1BNt8_qw>x#r-a7uaS0Z<hwPpagCJLc^}l_sWpl@
z^p2(#eZ)l>7f-o7-A>i6tPab$c+>?QMILkUxQl+pVnx=<3u{%bCtOrtE9G50$@I0t
zt7m>%E63N$GcKNWk?q28@f<6)PR6d27hF6~%<JU6b<%2`yy#->IytdU;YqkKT{Y|+
zyk0mT#c9B#ixe}im$%j{fTrukaglcMmW#JtxGp>wuef;Ch3~4(iJ^-Mn%azuz*X0j
zGuOZ2vh}LNeaQu#0bbTH+}cyo#cM8Jca<~7(e+Y^4RJk-KDRkGsNzV;8!p~tLu`=7
z?AmnVJ1*XH@xI3JF8RDcns1N~Tzu%F8u{R2;s*K1MHLsHxcJybWf!YA2zQ1a-XH}w
zDzsHuijFX@4y|(0a-*<Zx}jd*mM2F!)O1mcc{8Y-L2VaxT>RzXoQJwD>bZEq!;2p3
zyJ+BIql-;08oK!0#V8k}T{Lph*hM!N-CZ<cy<D_)(ayyeE}FS$?xKZ@*}C-A8`ZwT
zmM&VkYWAL$<<Pgai#9G|eIkr=(tw8xk;pGyeC47OrPoD!7ad5(CYAp8Mxmd;y_=+?
z3x@tC>AOj~xVXAWZSn5vV#+3=OX`+Q(!)hh7vGTiE_%7>?P8#dL2Ni40jfFK&qZJI
zd9!41mQOZIe-{Ht`DPijSypUTWnJGa10Kvr$DXeVwnYZ(km*BQ40SQW#Yl~3n5&%3
zJ73C5Z;|0Hs%{ZphTCR~ki#Rl2q(wJxESkVzKaDe#<>{pVwTSM9i_#^bQd$&f-WYx
z;BK0!F21J<vm&H_jXG)Sy>Iia+oI^XxkarpO`~pZ6=$n3r0>d1BH5}&CQY|0nAtAo
zxCnO@olBWHlf{|gc`kNum7Lq;`EBxpi-j~AE|$Ca(N(J$i(D-JSFX0n5~i1ra>%sI
z#ZsO4<u;kQO}1>4%iClHrQO9E>W+(5uDSx1#XYfIifxzGE*SE)(srr2UDml+&sN(m
z8(if1S)Tk^R&JL)+hwzhEwp$pZn)U$VjBr?@u!RJE`E0LE7gz&$Hh)vH05EJju7oH
zG)iq^yLHG{p6j(oe_~{>i+wKkyZD_Zs6dQvemsbSFns=SamdAC7YAG%B>da**3Z)Q
zXXRBj>}N&o;-BRR<$Onskz-^&<1Ws*IN{=?i!(0Hx@te>ou8%6>U^hMoTe4pp)S$m
zZd_*P5Atg}lyAU!7Z)gjF8-#8c5#W!`H%9C`bV1Wkjs>o9kOGG{JleYNM578-KhxR
z{*LR^qwy+{;Y}B}Xk9&&^l;n79U5~FF%J<BIXvX`5cL30^#Zv(<x8B?!|=R$`5f;V
z&FvwNhu3y0x3PvhrSDEzt&8|=r~JKB@_ESbp|FP{9twEMz*6<LZYf&OLm~b8$S$EP
z$Q!#9RYg5?-zCL7h=(|}UMDi00L49&@UU2?F#L0u{LjPP9v=1Zn1_2j-0PvVhX*~}
zM{0LV>S)&e9@y>Py<19oc))|PTdM3<rL@{D4|!^B^bt?ZUp?%B57TiwtBi-T9tQ1}
zIlE>1ZaKYM9`{hr!;>DKB0UxJJ)t2>{UYT(wIH}@NLJP_^0bF%JUmYtE@i#?iz?z-
z56^jOz-F8-(%={A`-?DSH=Ru~JoNO?%j4;$Fg;ZDP|ZWqL(0Re9x8gUJlGyW4;4H(
z9@3uL%O7}fJ$N2g{vsUDO#DTB5B$f;cq*P}TOLjgv0Ogqf036wyzGH<Qy<dLXRz{%
zuDmPu3JvKVp%>O`9x8cw&%^s3Uia{Zhj%=@>)}mZHFiU9>By&h<ZTZxjfnKxBXn%z
zKM0Zkut$X-c=*u6#~vzsIIu_LSC#k?YoQ}t8UNr{;q*}z51)8w_Nxs0RV_eNCt44!
zJhb*u!^3AD8hZHLLro90Xze}J^RPf;*!`>2_E5(I&jtFpZ;T;J=M)@Esqd++mko4C
zZEED9F^llf+`~V=N)u0A=UweLY3kt%3iEI3PEY2tf0F^f$->`+4b;NJZ@)=P9a09`
zcxX#rdFbGw9a%9f@}-BbD61>-T=`8(?iH>D&%Zy$(mQ(S<e{sFZl3!8;-r0N&8RMv
zp9<0BUa7oSy6%<k9(s_x644oZRnc^l<|v}Khdv%wu=zan_0W%WdYJ5?zlQ-HMteMR
z76U1G9)?k~Jbdk`AMI}_z#ayBYL#u}UfI7_IVBF^*BUaEI<-%|zPL}`-X|kiol9Bt
z!5gVbYOqg6dFZ%L_;BuMtcP(r{W}liJ<Qmrj^_KKPGrqKIk-<IP_P%tL=TfZ+#vi4
zMfSb>Wr~NX9_F)AJWTU2of$pMq@eDX#jRp=W^TG)X0fIo=4s?}sC_GCu7@-GW%z#C
zwqK27bN?=%J{v6+Mt<<HP=hU{!u~ElQkOkE@{zLSizs`)OUvJ-kr`RSLVs6(+=qXc
zWgdR=u-wC~-=*XqV*H_`XqAW6R9n{9!x|53J#6)`&BHnm>pg7nu#t-ShpIvc9rCYp
zlZP!H_UP=JsWm#C9xQ~}?%`(-yFL8kVTXt7f5<Kmyzg=+8*8%^Iw0-=c~@_1-J^-;
z!FtTq_JB+}AbUOR^Ki_=aS!`F{O;k9hr?v!$*e!9trxSB2ju{*rH4%i6g_7S$oi3a
zk5FrNDI`Y^%2Ad@;XkOp_C6>J56TG-C&@sM4%^_lK&L#kIVAlKNxnmJnx^THymUy$
zACmcpWbYxB>%4~x9!B{X?bA5p63g}B`M6A(@lf37g$}st;cr@RA31$oV;#v)8hPpq
zo11LW9=t@wTHn-lyr41Pq4D>T!^b6E{UV3u@xxN-uqu>Wv~u~#?IY$RpN~8~^7@GS
z$nupH<rSX{TOAh8+i(~_YtM=L{5}f!DB`22kAgl1Ydlo#LOu%n7<*W4Yu$ZVE_aIV
z?3qt|aAvZ5sc76sF(3aNmV1vVoOO=KT|P?sDDUG*AOG`lw~q&XJmljZANTrrz(;9c
zouYZ4kF!UFw*7t|rF@JzqI6{O5!s~^IdM@w8hhZVJnZ8UACLNY%vXC`%J`sLUBjco
zQ~t{OVEDmNdECdqqf+!wdBVpJN2Q#P(?`{MwDG4R=_wyi`*_huwvT6gJnQ3mA20ae
zE@q;7PBY})Kc&;3vhYti^rz%GCXXHy!$-o0=_9ED{+$x>j!B(klJa5um~~8g91}}_
zWyJB3*74tt$*p7Zz;W??WPH^3(ZEOGBlPi}kN164@bQw5H+{V2<7FSO_;}4nC7t(G
z)~I;2;c<ECxKt$AaYaAfKRB7jHL2HqyrIF^$1(kFAMfZ_{_F9M2L3y|t6%x4?{WFS
z$A>;@5TTEce0=PqijPk;z{KNf*jd@f7L7mm2!*Yxk7_<zUdXEM<2uuIoI3vS2?<U}
zO&_&<)b@FVHMp6YJ1iQVP-lQoJ|T5|)j`uYvYxM|q`2Fc*c$ry+(&mGJ$y9s(bz`^
zA02%(@zK;rTOaLweBq;+rl+-!<~~}mL?5jvDyOohZ_WB(aTX&hPRQ;P!rQ5?o{%=I
zLicE?lj;y87V*kS`I5XnDPQ?$?_=mm&8w4g`lNKyXgmAp;-k<hmCnaJC0!|yL6mEk
z-6*16qU@S``sn53Yf8J1-ah*H=<A~&i9aP{PYLfH;wi_=Pf33Y7!|XBYyibiBaEGv
zvZrN`uhz>L`Nqe$K8E=i?yJAWMLS~dX&FMQG$l<=D;mB&EhDJuIb-atM(XtGI(-b4
zi|Ic8_A$=Kcpp1_>?AXNOz^RQBJE?Mk4ZjeP;q>G?_;u$DL$t9*mGKPosn{9l#@2E
zKVTm;O=EuLj7-;&#%E-fkJ&!v`k1Fv>hMZ;AJ*9{F5V69AK{HW!_UZk{b}VHIebPI
z`uNeuIv?wOEb_6~$8sMld_>O55+6TN5-w#e^|8!XYvrZS3hS#D&HMg8pI7=wot4!-
zR_TZPCg>!##>ZMV)>-L#R)KMNu))VhUFbH=!%dV%A6L%GjI*-&-}JMxmBr<X@flt?
z#@=wdkDq<q|CjI~l3hM_`#7(Ge<3S;9P@FU(#R%YGm-M8MfdvH=i?6_2Yl?O+WsZK
zQze;QV_;;=UviM8{3SWh{XhNe77zP4qMQ4uk3TgYHvJRl<m1};iSvYyle92C&gf61
z<P_OeUEFih_MDt$lbsWsm%rGKH?w{{C*{t|IbV%4-#ITAG_@CLv3-1bUM{nV&#Q82
zy06go9+rXU<r)>x$HN&slEFVdZqO`eP%wj=K5nst$RJln+3?#w?yylZ$}gI)i#493
z=Osr5$RK(_4JsJs&LB?)SsBE1uDltvx}e4+(G320K%T!KA6$@p8RhZ9&64>uYGVZ_
zI>ua3R29mga0dU&;O-2HWKcAtSXw*-$snEq-9q@vImQ(iq*z9sadGH^@Gz(n8L++X
z%Alk!k?v}FF3LR@6~cQmD3!qj8Qhz}eVPA1S@C`iRw7oA0M<o${i2l4;6YN7QLb*)
zbw);>xS3TZgR&W<GO#juG=s-7cq)UZGk83MavI5#y688n<$WRpPK5TqDCIMlbx{~0
zsr*BECWB`)$j-pX;JJ*tK8%-mzL3H8i#+QdxTJ`zFf#IDMz!6jn^_5smWig0BrZu(
zM|j-^j|#Lia5AWv!D|_$GjKDgkiknCHO%ue$dJ{S#MkhzYs^6gVFnzlkI}DdF3HOo
z9KIy4Xqfz$g}#fgvPPHXmCI7)vQ*08^$gz0;9U*yMh4$rmbWr!b6MWZD4%CW*n)3o
zz;NzmMf{(a<-H8v&)|a$M%~EzFoTaMFjs`}XRip4WaJ?aRjx>t3_i)=hX4x$RL!7T
z29W?c0#s)~6ow2IWl$r7&obziLH7)5W>71G<{7l${7(jTGN_+HgAD3w!niC_FN3C6
z6agcy$jU3yFoVxCXu?EhpPi5H_l+npyd?c2X`DfhtFof1YVI#GYR4rb%`zx)RqU&>
z;H0!9-!kZwLFWuwv$7d{l|g%5P+J|gBSWsLvIbn0FEiMp<Cm|h!3<YbI%Lq1GWNI7
zONt@Ex@0iqZ|O>AGVyQO{<rdP?2$pw48~{h9a|)W-sCO8GU$^*-wXz2@O1|LD1_H!
z0BN`;{dLh~;M>=Px4jR{V8k_{-8))X(LXqYZ!`cGo>pE{g$~VN7@Hu2(UeL3>8<PP
zKKBtBjAXsEwLE)GjO%h`P;3mfyF!%noMST>M<!nv?n@<-LDywM1`{)woWYa~CQ-U>
zXH|Ft-;;0Gg>ee`^KGJ2Gnkga+zjSrFg=4A8O$aVu4T=n7+;rJ)RemvNsKeRd0n_Y
zWDaHK9~F7;ADK^V6b4GKJ`{p5KhBI0`9fV>>wjc%21{rzGB}XI(hQbm@G~)I@KXlM
zGgzC!I?CI-vLb_(8LY~HcM9_q%GDW6C?31?k1BNXKeC3FO2^k{uz{_X!B)+djTvm#
zkxjICH{{hD(&UD+T|9Aa_zg8nxh;d;H{{P7vR#8QvNMBSI=+{mXeFp|)a7hW^~i_c
zM)v4WztV8^%FBQMoHwP(-&r4W1*%VEUk3Nwl>HgJc~gGZV2m8h;1ET6ZPBY49M0fK
z2In$3pTW@#{><Q12B$S7=lYIia6E$(l!u$DQYYD1H&yq?_?DY;TqmBPD&3N^8T>^X
zbxVPfGyW~Pkio?auIPel-I7aW&VOGoXVB%AI;>!;PWd~7YZ~l2?SBS0GRS>f;o);L
zgWEJ;x8;%Ba*OiNRi)pd{@#{Ox7Ep|2#_<tM*%(#=wXH20iFr)Y=Arg@&<S?z(WC|
z0kQ&=2yj<`Sb%&1BtSes{s096)w2{1K=-PG0e0M$LOMR{wlIG6wiF3aGyn(crS3@f
z9jS4LM+ge9axNCAVR`X@N2)54w%(DF0moXnFTni)?$&6T9*@ND32<+K%XfsH{|vbb
zTuOf}9jN^^=}7zm(jSSpjl}6;I584`IKU$Tp3*R70+bC<KHz0QcvPp*De>_Dj|HlG
zT@Z=0h;jj*2$Uc4o=E&gBz|9xIFEp1`b#;~*QfuZ<kKAS=K?$*AQK=6@IrtW1DFAl
z8X!A>5g<WQFJ?{35#Ny`&dY*%g7>8y@l*gSfE&OIV3UVXXq`aa=zR|tivy$)SEFm4
z-W745z$^32Mx2{c!vGZmycyuF051i2IlyZHD*aoL0Ivq%NvFGY#*2toB=VebdMdt7
z$ei&^*}^=+kzV?51ZbL575a97cLKc6$_98h0401t&iL${ae}=UfFY+xC=wqAD3UAA
zyP5XtT$KY<3D7%0p8%iG_y=elph<vgH2wiT3s95v1fY{-jR4HW=eb;QY8E@tS^=+F
zN1Xt5^(WH6=lxvq4!Pp>0yGHFFu<r>@%jPw<ceR-75_ZInD>==Y(&w@9cTQZ-0_OJ
z<4ps65#Xx;?E{|Of#v~P1!zrCDG}xHgG^`<pk<(DRCxF*!}_`7Z346la4L6vVD5NZ
ze%&Y=aw{f$8Q|Z;&^iR@7@%u_ZUKtriFXRnMKiW@0J{0n>yM$GC(c=*?mC?qdg#de
zdEz|-^dd=l;@k(v-{%o|;(Y`33otgoxB&eF3<xkZz_0)V0}KlAO@MC$Y|5hu_?nuP
zH$GUSdOWX6c|C7@{BLRjeTYuvXnA;m5dlV$Ie|J<mY<sDjdN!KBOED>W)XSgV**^f
zQ*@EWFh0O{0cHo76JSDsiEQN$Bhvy*3a~qGoOh2-p`rzt9N=i)_|?4eXjGLuRTuZ5
zj!zFTBf!i6vnbU%h4a!}9Vk;%^;vTR%nLA|oY7exyPWl*hN-W^UeP!^qaOn-qCAAC
z8DepOB>`>)xE)|=fMo&p1=t_prvS?XY$PiJ)qkxBuudaf8DLd_)qy(rv0N+J)g!hh
zz*_xjRy4jX8vi>QUmswDmQoI_)oGl~l$>l1urt7}09yiV)$rRWmRa$iX}hxG+jWYa
z6{lz54mQWHQZFk`uI>)-Yk=PZ{GtK&=&*ZMd~#NNFF$3)xp+$Cv6$l0?*aY@a3;Xn
z00#mb3~)lj9|~|dz_9?w102yQ1U^dOUJ;(3|7zjrpVUz8;_^|tKr$BRMkE59)R3oi
zSTz<uO{tE>C&uD`1vp0?(dp;O2U<MJvwpo8;Cw7zB47NHe%+<1x=Q5v;#=}53jYq&
zTxF+x@sauB*8}_$;Lm*VJo)1{H2j14<2M6T%pd36-JJlD5YLBrAw-T42ys`4k|A=2
z$Q2@ghytOq=ea}V36VEM?fh{LO`{?D=a0wqCnCuTF*kplhhY*jUx=;w6}t+CC=?<d
zqF9JC`Qy<7@xmdBgm|<-yl99{1>&OP?-q!2f@oNQc=1pT0EppYf%x_U@e&~za>ea`
zA?_w*h{r<Q6XM<wr9wQQi{@fF;qMDkxM2K#9rCrb{`63YheMPt7=JKC#e#7b$BFJo
zLX=@*h{gpKmr8bw_9+;reWQof;~~n0cq+uxA)W}8-FPy@`hxNA3&zWbU`Tkb5OsM5
zyyNMa5YL8c_t0ND{kafyEh}0m&VKyG5ZNJK3sEVA5h4-73*l>$%n()xJ4BM{h2s24
zOzHG@3dK7XiaR0bir|JwhnQF>&W9y(2)CwCJQE@a@luGFHH*Sfxt!6;CB{Z7gqZZL
zntORgqoN{I4Do8He!=)~d;4owif-6j^z{&LFmH$tL%bQ{tq|{ocsIn`A^s{9FHu;P
z#i4JrzLEDxaADQNw}$0?Kg4JHQ_sTjk3xJL;*$_n*$NX?GgT-Ps~lo#;dm9cc;Wb!
z!f`H*RnugA8lt+6lrEw$S1c+u^eg9nYf*$kYzVP2M4b?ILktNqG(^1+^+U7^@nwhx
zAsU8g5uzn4vZ?6jY_AYaLNwAyKGZnBDiUuRqM1(lLWgT~`qm=x=4{8pF%IKdG`$O2
zg=kH(%f#A*Acedky{(2n{x6;o?L+hq(I-TQ5FJBw3DK4E86r|t5zk)$?wRdOb+}%X
zk!~Tn>+C&4<>}NT{Qvt<{@s|+D@5@Dkw<mLz9IUB_&UU3&9VL=2I-6gLJXuBT$NXf
z#(B2n;9}9L8lG~+;#l8rLVT+$&N$s*hJ_d&Vs?l*Ax4B48Dat@B*dr?qbbalB4a~z
zD;gg|F}o*rwrzBB(fG!q@w^fr7h*i6lx^K4_PoR^iK@;d3Ui2QA*O3$CWqLf)2Fa0
zLwqiA&Ykv?_ynEEwelGuE=zo7h*{LTc$}91>3Ezz5_3b$3$Y}`(h&1QEC}&qh()2A
zZ22G_?--B&pz$x%;h=bYc09f~#Ep3T`C{?SaYe~80*6==Vr_`!B))lURfyFgR!|X0
zb1?<OhmkLe#k&`a(+%n0lyw^C#q(L~$&g}7R<{<5Zwj%Q_(R-ejVO>IPO`Z}Y@->W
zzJ&NA#Lppig!m=Io)FiI#dlKEx63Y#jpvW;=GU89cNdQ{%=cElU#a88<9qej-*m`>
z1@?v5PvI;c?^Ha_=`YfAAjH8Ce}*`wVGe~j%9P^q!y%4@XnI<8;-ibl7Zs0}JE`E0
zYp{Q}V4R?VEfMD`_Jbwjr)eZZT%;ulah6&c;(~@8JxpnLrbPT)i1Rw7Y6-;|_IGsQ
zzD!HSx`g<L5?dmEl^iG$zZT+e4LPese2)fx;I25Qc6qo2=j&d+D}F1)Z5rnaC|m*m
zN7Ge+T~##U%d5csF3q=ygrIbXbT^#3rvn5;_~}NvyBh?gLAoRiYy=w>L;)KGySqjI
zcNck{^UO16&+P2(?ChL9dv<63rJifZuOY1=k0wq1jT-W5@}L|v+@Ml=-TYr)j8aHG
z4L#HevK$Q=4TUrm)=)r`n@kF7$Zkw6Q)K(D=i&kLe5IsRi)kpX;Z_Z|X~@+eG?dX$
zRznF5txCxvZq{&<hLRdamJ)kPiPI{vl!nq8epfhm@^Hnqa%pjks#tjqerZuo!=WNl
zH~6oLlbi|~DypYd6dY1oR8j~DDr?|x>m#LQSr<m9t81vC;kB%6bxjSmG}JRu-$ZQ<
zbu{eJu~$c3CTjRZ!>1bRQ!E;0YnY><frf?}?$Xd(Ln951HFVa{MMDz}O*OQpG&D5R
z&|E_c4J|diTv~jj%DthCptG!%e-<xSMzqqv&l8s3Rzo`t?KN~DEF<WfXjmDUK3sX0
z>!@L48PQ1tuTRGpWV)t7*N|xFs=?4;YH&4p8qSpwmL?A-+w2I{>P%V5hnK_pD4ZT9
z`<E5I##nd=Nmfuq8e&CEeEM~IBHc9Hp`oXSJ2gB|R&=PFey^<Pt|)tG_${5zy+v@?
z_R{2tU=bDQylzQuA4M=!!!RNm`fBK>p}&S9DxI&$0SXzUVIVcIW;(h><{hjOd2DLZ
zErRn*Mpt3ta1D2B7_DIhRYDPr(&St6+P1EN^)W`nSPfG&OjS?EX_%m4qK5I5`8&DW
zZxIjQA||OvlQnF+Am0e*RB^<oQEAJG85*XQ6Vo-+EGNuzvL-V%%u=`9gh?~V>A_qL
z^E4dRa74p=4GT1^(Xdv-LQPItmr|)TEK>MlJ}M`cXmab(r=RB|T&`h-hE*EFMaeHg
z^5?Zu!xQBMH%anb#z^H%;2uo|3%giOtYcmc+cn&$7_Qf_NyBCh8z`&tvU(d;b674%
z=oTtrdBGi4TiH4d=Woq$2M8~c?a;7OQ6AK!SL$6F_G;KieWPMibIOZZ<;A}8;_dQc
zzXo1aZxshLq;8c(47ydU=IyQGkcRs;ymYJl9wa=f;h2UOG`vWC(C{Ezp)pz_9@6lz
zD(g`V$2I)1GR5EMk8mJwPEi$qxK(6s6OSo^$El*V!CRK{l!g-;p4IT2hNo#p7|F3V
zPH8x)C>tvpl0BnguEMD~&(nISe>9w^@OnwZX$@~`c#Gpp!z*O2;dPb$RSjn;klVx=
zb-V96x7XO|6-1W`;tf94aFMO3An1aXyB{x5%_<09TPn!vU92G9=3x9Q=Y0*AG`yqX
zT^h#CsrT5xow<x<c9jISbhZ6~hAXO+4>eq-o-C1S#*4^D8a}42s3>@P%cv;mc;qt;
zpL3Y&=&0ih4PR=gprfLWuQYtE;YJ;Kbw-NBx3qXHNW*s;zSr=RhM$>OMDXj9{r-c7
zADMV0r%y#$)n7P9D#}N{Qbn!wJrzZZ;{|@B9Z*mIRCT+m;U5iu(MEljbEzV~&Omsr
zp8qNW=t$|vqhpm(@bo;npX!E6;szaDAZ=7hQs&c<Uq=ZYH|a?0$k9<mM^POa9R+mo
zg;-ceL0#I?LJD?QxfscvDO)NDh94qQOg+lgQC!D~O5$A>QCSF;$o&Q+D5>LS9c6Ts
z)lo{Nm)61YevPJnW#LyAx2W{;3YOEs&j()fD~nro+@|Bc%7Pon$?BELqLPlvI-2Nc
zs-udIsygcFsIQ}%%1fHMI;!iap`)gbS~_a$sG~DXv&_zm$lsMk*(&1lv&Gw1kwWNO
zMcl5VfsTec8tIs&5*b*Qj~ZX+$u+2lReCcW&2_ZCp58)7OC7H)O}$-3{82@;x}ILG
zs^r{8-L}=yPDgtkPE}F!FFARbSXFe=(OJi29aD64(V>x2M_(Pf4ns$*Bhg{%uynXO
zJYBBaWOdj&mRA*pPe|t{yd1^<cvbOfRpILhua_PuWOS9>OXo6?j*``6WxDF<rlY5h
zJ1LNA!mK9lP-NXHZH4g6&QL|!i=`-}w@SZDNB2td)CR{$A6<@=1Jy)79sPCOtz)!~
z0Xhci7_MW4jzKyGGv%k8p*n`B>>SiA{e^1cuWDi#8`wF;31^w=qE&S<Qpfb_Vw4WQ
zy2vyybg;Ut=NKK24@yl?d3ifl$2cA1b-Y|%aC_=U)kVG<VxoFlwuYFb%b@CHI910q
zDmGP}Jax>_F-ON-9Wxc>EGn~(7BwV)UgH$9t%jJVW4?}sIu>!{))0kjikdaW0v&uo
zbgU^B>sX>=86V|lxUF}oj;=K&2W|@DEPA<)6*^6H?%0}Qdrfh&rdZ8x(y>v;CLL>Z
ztktnj$GtkP)Rf=6d20!7VOp<a13SHz<imxR*>|QY)Dmtjv02q~J5^oB79CsF?KV=D
z%Z#0x;V}muE8C%CXDzWy$H%qAP8~emHt*BoguAIZBE#$E+G3xM{W^vk7-ryrj)NTF
z2GRx&>9}9VB^@8=IIQD{j%Rf|r{k!OV>+JH@sy4SbUdizQ5}z|(jU_CFvn4C!L3%@
zS9x5=BUHuOvgYgZ{WqGp0`NH1;J2JPwZ#*xd2MmLwm6~VX~p3g9Vc~ssIr`*7Ojw)
zKzF+(>PRM3q~~?KpyPENZz%c~b-b$MjE<LdoMw-!#8(t-+&hQIKbfmt9dTC2Ybx<%
z9l=N$OgyKfUmdZej@VsCoY!$d$2*h{1yx5})bW-sU7YcZ&zm%Hb!E{+-ljRKD|q0-
zS1GgViuc&ww{qWCa8F(Fp^nQse$eqFdr-$mR0CQqRqn?+KBY;~@d?N2*Ew{{lTZ00
z`kZF7p5XhD+g#7q6<_K2nwDS3x3og_WVsB|G{2rWr0|#OiSKlLuNYoZDL?7>S;xOL
z+6I2n@vDx%bo{O3Hyt<B7k_Xd)EB=i`Wp3xU0?jEaI)Q4UvOG7s8HsrjwkAie^mPW
z^<{~948Xt*hP2^-)fc(93x>nvfk)onXdthFd<NRzE_&WBmfbGta|~n*+-{(OfdU2!
z8o0$kIRk|Z6gE)YK(2uzid#_w#S9!(xn5N8BL#(l5(aKIP>Mx2kUVcPP_KdD(dLo{
zq6UKgi<ns2Kv~77jDk}d2rg}LiHZBl${V=VKurU+4BTd*f`Q5gsu-wfNLL=r8`%Xa
z8K8I86Ai>?4MdrSV#N>nsu~P8j1CP&b;YoT!b!|)+vS|v2I?57%bKXC|7$2Kwz#3x
zZH~?QDlxxuM%2(iBLj{B*Fa+fO~}VUM*~d_G*e`44Ls6NG&j($k!WS0g@Kj^H`a>$
zjYNe;f{rp;8)#!NHoD+R3PKjtj?Jl*+n!l==dNfZ_`TD~V3a)=222Cnr)Ihsc(Reu
z4D40(Iuozt@?zf0Dusw;AZx&8_14NA-Mol+27CkE4BTNLFc2C@40NTODZ0jjYm&?!
z8;m$C#x@q*VZOYv;Hjv?jm0l~YM_UKzO1T&o=Tp*4BTblPSs5A6=9*hsRK<!AEp>`
z*|u^Mp*IngMx{qJ5i^?zo;mGrV4#6P27?lc0V*Sr!3Ow&JVf0xLNRf&dbx=hZeWCg
zHx0aHV5EUj2KLiT8MxcPXag$@#&pIQ17i)$F)-J_I0NGiOf@jgVCZK|R1Dpw;&Kx)
z$-ra-Q&dWUrlL|)!96E!6l7U<Hx<(j%rG$1z$`;<W0-9)E|s{Xu2RiJ%VvU!^9;;4
zu-L#7#b<$mMc37Pp&|d*^F#n)&t|gzOARb%9h!+{ikQbzn7Fo?poiX7238x`Xke3p
zdkm~Gu+G4}ifk=QSJ_9a--XPwo)W$!|8s3Hq#L4-)zi%ewiwt+F;a8}wow7tFU>{q
z=CbG(3f^a6hryTyGUaIne`zjuQ)dim-?&n=#{idl_zQzeo%?7*{>mxZLL8*=r*^UV
z2JSa-*ucXEjvF|_!E4}{fd@FcPv&diLJVsm*0m51lAwhcT{^>tlhs28Jt_<CV|he1
z=LrQLHSm}rxBcI)%<tm{){ZaATG1Un;R!x6@S?#$+c;_9l*;m~foBv#g1=e_F5(d>
z+)_Me;CTZta1gZ=y;_RJEoJLY8+h5kIRmd7c*Ot%W4&tNjLObccmC8nYk<4rUn9Za
zIrX~dKYu*UTV{O2zy%JFKXcC;*xgcagEteKr*kiIpcToSXer({@Q#7}CekL}HSnH+
z?+koz;C%y^418wba|0i6IIFTgX4?&1G3dikR`?^{wiE?gi6*VY*;n(i8f5;7flsM6
zt;Dug@^{!52EH`#m4UBm#MDpEJlxULN^rvPjRA&EV-}tq`Ih$Nm0U{o2LnGExN6`Z
z13ww~ne8(0JNu4WR6<U(3%3^h|Me?*wvv+JRjal5!@!>g{$g#%Nrr#Zn6wsMTT6n4
zt;N3vQYK*H1`~NqdY2O7%?xFDvbFf3wYbrgeN?rL;9vf{Ci1CU?u}t$;Wi@2M8?D|
zCd!#8V4|Rj5+-gkQOHDL6S*dYDdPbZF;Ub+F_ZpkWT8A~UEGw>A~veq(QU-@ZN%>i
z=Zv?ciJMK7Q3aK6E2yh<dQ-{-chr<N!DDEg+cUafSw+Brt>sPJYND!%Y9?+|i5=>p
zlF7(5^4~p)E1GEAR+d{?J*A6@DkcWDmGWm|brZEzIv2-ku$SBC)--w8Up(4Y)HYGa
z1fv%nZJn;GXx>(QZa2}u#8Hc(%+b(9BNIQF_}N5b6HO>U6I<A76U|KYH!;9Oa}zC0
z*d`nkElspC(SglZ3|pIMXQI7{HtM!mJJHtUDPzG;yfN)WZf<&SJ8_|%=wzZZrDwu0
z(M3_R=1zN&r@hcv$@a2!rin@Ig=JzJ6Hm#|3|W(hXv8P#scXVB(ZfVf6TXSSL}H?=
zVihVFn~2zJ9R#zG8&?+@<gS~EJ4~#4worE#-9e@^!r+OeshQKc$zR-QqL+z2%x>Z?
z6SF#qV=GdhcaZC`y%o;`9YlqWqOXa2I|}-7?WYp69VMTECI&H!iP@B}i6JJ&nHX<k
zsEJ`F?pBn;6&z_IZzq{$gvs4~;>V6+luECy5=WaDV`8jI*)u8g=Y~{Yl|I45L=#g@
zOk)w9#3U1w70oX7bc(|HnM}6RO}QhqOlQ%wvzTFGrh4?EBKxV6m}6qDiIo%rwZg=F
z6N^nOG3EZ!1tu1m{J|~0+L&5s$~8Co<t9TeF!Fr&Qa0p^+~tbfGBW8b=(=Qu$v>*H
z&{sN()h6ySvEIZ66Fm05h6ALFSf}XMD)>=nk!M!=UXIFHlI=zlo7lx&WOiOHx(I%P
z5!uQfH}RZ_=S^%kai57}CLS=c!^BP#drj<9+;*ARt&nZkIqWg<xWf0FIKYaTIIIW`
znp{N}H8pWa-M*)2j+k6v<hqtDeT*iKQtX=GqThoi9y0NSi6>2PGws8a1KFB5&O}W-
zV&YN7<g&(ZcA1ycFh;#0(n=RknK)tM6t&dE(<V+T%3g|$t54jtL$YU8B9UDxeU>g>
zF!7>^4@`V$;w2NOO<XW>(ZtIpUNP~8iSsJUt0vBxc+JEa6J?uAp8yORby^qa)YI2#
zsSH`4mI@M?Y6!ZDT4#tiO}wRO-enPc3cPLN9TVSXbN_Zy3~YMfI{kYl-Zyc{1h<GY
z`&mQ$YKY4wu9*1J#8)OhQcONI@tHJD;$t~@#V01FoB#FT22*^lXueSJHB<a%imy$4
zW8w!BKhm&xxg2HRnxH$-?@WA8OKZuz^vOmft8l*2W?14E6Ti~JSa2--X5x2RKMNHt
z{9)oxzPv2tSon)-Mk8<GMhjO>{6m{>$?IQL`jeK(V@Xq=vcNsYyLnqO^MNYjcT40|
zkMdc_Z=rlv*5Qv#x@A_-BNOqAg#s3CvQW}OK?{W}6ths=LSdDwh$TIT^vjAFSy5D_
zY*HLfXGN|B{*|b13t^#zg&$RV5nJ-VnU5@#V{sNrTPUM4-lAYx3!M}V53`W6S0*#w
z78`AGt9n|~5w}@*!WI{8k>3%OEL678!a_?6RV-AsP}@QsMOn>4bqndGDaLnL_CmfI
z7HV4fb$!ZpL@f(!HGSL>*0oU2LL&=}Ejh;PTWDZmr6VhOyW%s>5e*e`R3-AOq=|)Q
zDup`Sl<x=?tc^QJn_J)}QX;J^w6@U2f@YzOg|-$tD*AQ`wpVa}Tkz_@PTZOMf+Ie3
zL?@O0t0OwIo{rdEE4LoK09i0qI{!Z!7AC3~MipFPQFJBKSxbI$5^*hf7Uo!(Yr(e=
zSQu_$goV&TWTCf(J{DpUTj*h-r($TiqN{~&7VfZ+w|lC)N*wLVhA&X?PWJmP8Hz~u
zf`z*j!4t0dR6YHlg}xRBS{S6#`&k&Ekp2oud-Aten_{vDJ9=WUg&`J(d4k=+l%d2G
z@p?}@>`DG3EsU}-$--m{ce4|@{A*#Hq8V-BeNT*0I7bkP$6M&^i-~e9hzS;M@I`fB
zjPd28DXKYBElj({-xt#rGRwk;zL;TQrn;pUg+~?rBg;~=snvnt8Qyso=3BVW!VU`y
zEG)FJ%ED?3i!3a*u*|}8s!AZtKnxDV5(`Tet8IbcCfhdxvBE;rP}~^`M$lWS9{nAN
zdn~N6u))Gc3u{#(D|xSl*`ZjcAaB>J^sS++|0WAO<+oL(Y__mPAy0;a7oTpku-(EB
z3g>OfNbFPudoAo!$SwtUD~at<c%4Y>w{XD1{T2?Z6fcsKu7eg1F}<1?6iLq9IDLe|
ziNuabFeWu89uHV}klK<(&nzCY@UVs4EH|9txP?b7T(R(xg-1DLEWBdjRSS=ER9bk(
z!m}2hwD6RLQ>wTV94zxQPcw08Zmm=f*C9_bOJ_mkxk!FWuykI}S$M(1ix!@z6^g~R
z14=I`4(ns_Oe{`Ycv)qv9m@(2kHr}aXDwW?aM8kR78ob=oQ2m_miHCS8y4I|(51$2
zu{ck|m5AzzcvBI)YvDZ$Z&`TTLcc^TO2j)V{cs|g^LpRnHrn(D?D4j^#KtCq5imcr
zaG89%N}47Ler(|r3wg3Y7N1)9j8@LVPZmCBKU(<O!Z()OgUx++aaZxBg|Ad8r+Vei
z=_<aZ0J{ptZus7kZZy7A@a3-J2X?Uqy6pZ+74b7ogoQsX{6e!pomU)wSCIexuhq6#
zH}RKBxoY7b3x6xTSvOfvE(`oiZrwym{RZvbO>ht7=5FGKEN;xAU>1c`dR_%{vT~nf
zzAW-*k<Q|gZi1WQ2(Oir$)Z439`Wm_7Ot6CIEx}#6wTtYqQM>iQ5MUhxMEmKrIg6x
zrYss|(Kw5eS=^jOg)Ay&Q7VhlS(MB2rGqkAlvP=7VG-B)%(+ACx<i~+x3{XNw<(yv
zyQtJ%tXh(;lttw%YGzSOrB_j~Miy1GsHX5X-9_~*26vYg<6$(yCEZ2sEb6GI^|RQo
z9x=Uc7WJ}Vdx;a?p2Z8@MT0CFX7R~&8veU%l10-j%q*-dnq|>k@zJwrkwwcaI;h)L
zS+vfgZ5HjaXroe?k!)K{mmgN8dq})v579mgLWyV5DT~gEvP%|P7QIyZ2nAOu$Os5V
z7H<wMM0#G?EW#|JEbJ^8dfv&x&BCMTviPls2o$TsJ;b>lg0Uu<axGV!MK?;ukw!Sl
zqH9*J6_@TQn)ej#dx|^AN@WatO8PrljV!ijabFg9Wzjo}MOiG)q7P}Zn2^OpX3wHu
z7Q?a_o<;vG22j*l3{gx5W>G@<bs3~?$&hAtg5pekXcilK3Lab?k;TX?#$2c2*6vXX
zzdMW3Sv+~2{->T|Y!>6FNO#J*jb{b^lq-jXld_nc#jGr5XE7y<sVe)-Eb1%DX<1BH
zDKix8uM#`mDY*BB*?G;$VqO;W)zi6I=@p6x45ukFK3zbIS5+)jkhe>+SenH>S*%g?
z%d%L(ELkj9w<O>$^i^4`&Z6)LDda7R&oKqpX0a}d%~@>8;$B66Wl3s77V8!MnxZ)|
zK6hgln^ej#*XwZ22ijJZxGjqw>K(cxi=A0KoyEy4c4e_Uiw9|_v)Gfx-YgDeaWIR0
zDhsQzpY`eWpAN9$hqAbznx6%wbU2G6itLzz{4PFv9bv`?6y8+jeV9T}w<i>QB#Xzh
zc;Xtdf{!WKr<auNlUdBTUgA?6Ch7m|{JV8<DvM{bcrlBYvUpZyVL{Jl@!WNs8~a~S
z_@?U|POIBj6nt61Z!1ZLuV!&Z-JVtO^l90r=M?_Bf^R5zUcn0rlHel8k;31~;%$YT
z>Ls}5z(?<9@m?11XK{(0731C*A7t?%hqjMaJ}zf*g}94WE<VcQW14*jH#qo&#y^Wu
zHtx3ZSr(tu9NDOC<BKf5%;MiHQZ^&f;_EDa&f=FWzEOpKm&Ny4etO7hIWO*P`60_m
zvb_C?)#xR@S|sBD7FsN=7MJgS<<M47uV(Rk7Jp>%r@G~;b&<P7%ew@_RsW?@{?201
zUEDw`zaJZINd1$QL4^A+&g8KH8^vrCw`D0e*vM}qZR188c~we28`BqO7TzWQH8Voc
zm8!_GQOHJN^)zFnfQ^DS_98=fUgU82eDNZ-4CA%uE<u01Jm*-{mZu%xX_(HnA#7B(
zQN>0H8#gHq^cKtGOC@bNcP(w>W*en!ymyy)_qF0z?~?ji#zt9No^R#ZbI#9ivB7y-
zIR(orc&m-u6vFfh3aMzLl0rz&#Hu!`*{Eq_%+geKTZSoNTPpPyHEeMCg5T6vmt^kh
zE$C&dj*YrDJR81^dN%6YXk(+TjoWQBu+f6mu8?kMqmhj!3g<1G)>t)!6`s&rG*#)%
zY&5sAvA1}nw_F=J-&?d)G;B^Q8?9|{V?Sf_<>@2Z*=TRWuwmNhV56fA&4#X+l<y;(
z-^oU28(nNPQ@8Zo^1nV}W*=EwDgdFSh;6pZMpogs9VyVQs;ug@)5k6us-LQXjnKwG
z8-r{_Hewrh+30N}vC-8=PnEYD6HBDKtJ>bdh8LFyRS0<or-v<1;*>a6fCP8i^2?|f
z`+c|!^WBH^wsic`pUpXyudj{w`v~r$>}TWJe%&YghyjXc(Ha^43ma@>h`JqNW2lW`
zwzRQqEU)1d{ueoU|0no%<JPq*n^PlgH2j|k{wGGW2W=d;@raGFHpbalZ)1av@ir#d
zm}_I6jfplU*_dKustqorOr{zr$MuXnLV--9GTWG~TKdIOIf$k+h@_2~HfE9G|HQ8U
ziSz#xYepBGqi7iFqJHPpd>adFEVHrP#zGs5R7;mCg2hz+uIXvN<SeoA^Z!J-zM@56
zL64gB5wU`eva#C6J=a*-a?^tIZBF05VoqPN#+FOd>um6&+t{31Yhy=W!P&^YikN=X
zo31Ug(Z(hl`)usDvDwBJ8@p`mwy{;w+{Y|7wke!V+s+<rmit0qsTk*G=j>GC{iUx|
zp<g$p_OPee3gvgYWIxfgpCmhA<DiYhHjdahr1;#g;7y05&re=XDs_}&#KuE59#)SY
zutC?Le-z9-sQ8mP_tw%wj^0mnE|eMGPdrM+pnPn6V&id}U*&ks#yJ~LGNX;tHeR-I
z!p74!p0)9ujgvM;Y)(D6BJ+$5w`}?p`>vlLvbCRhyq|d9#@qcw$Nu6)8!u2+{Y9nz
zvPCa(yr|z#gZqnDRK;GkafW@dGQ$8;+@yV$LuO^>reD%?`irgo#p^cSu<@ad%Qnv2
zxIha-6}5R#6mL?iS=+1Ww^WPXwsEz;;2!Mv`U@f~>(&9{T^oeNFO8R4bV-%?feroy
zVPf|I;);!rsFv5`cK!TjKD}sW#sKjtjlYdwZ2W5Da~gje-`n`X#+NkyHoj9Oey!lf
z0pc4Qw<w1UhX#mmZM-x<e0(+MF%^K7rTnN0{n^G(3i)Dy;9fNz{VOz3{H9X=vhg>~
z__EaRHcqX~{6PygQ2faOI8bm41gm}3#y>XxRm5~1Gi{()IZzyHlbdpo$KihCTwWja
z&%Mz>UIzyp9CVP+L4F5a9dvV$c97$sp@T*aG7btjsNkTYgMtnUIVj=aCI^Kb6mgL2
zKseYxP!x4g%t3KS9x6P;vU;Sr?t0@ODM|YN<r`r&Po)hKB^})CpuB@y9h7oVXH}-O
zgEB0%DtZqRWgXn&V8>U*%Q;x2@-lmcUvhX6IZ+~Wn*+u~;0b-23q}O1<e;*H8V+hY
zsN!Jn=~PumzS=f?l(S)w;Jd7vgX#{(H^_ZdabvI5a!}VnJqNv4WokR<`EBt!4&EFj
z7sM8?%G7tHNo?TYcEyMPGPqHSp=9!}&NOz=#6d>~og6fE(9A(w2kjg*chJH?O9!nS
zgsB{ASHZ#mZOf^1M7||kJ80ve{|fm!=8K?M9kh4Q!I8#_DOCnb5k-SVX9ryzcn*9A
zngiW|<G^)bP~a8PSx0XFFdbM91`ZaB2aAJ)1)b#EELy!f2^lxD%WA2#3_C&?us#kV
z3Vca=$?D9yKk~gdSi}xijLpx$=!t3|kvkl8cQD(*90xrp5C_8?40mv+gI*5$vF4Ns
z#pR$crL9bNAC)&dD*ZoZ+)zMXqcblJlRH-jP#PywgB=WEJyp%c5HW~KGDJ3WsDq+^
z=P*Q9qaorK6^UbngOLs<IhgEVl!Ln+jBzm5fjvZUJEgy|z-R|+Ysfxji)IZG<Jg-H
zCa4NbRPfOu;*BBV55<3qgQ*T?IGE{Rnkv2gP-*?9D@rn1e^JVZ$}>wn?bB3pp6g&9
zOL4Hy!F&e`94vLP%)vrMv&g|>g>aYJ686zhv23Vni-OB3PY0_UtajwgXV*|ckG?A%
z8CU4E+CYAfgEbCb9x95t|Go8o9V+g1u%3GEV5fr(9FGpRIoR$<5A&O-NW;Vy2b)!$
ziwu)x^%^F&s#_vF0&t(AoHk7U%QNSucRAQi<#({p!5-H3PyzZ>JTOc+D^gcpkcAf7
zP+<Rc30yi<;E;p+9sKR!s)NH0jySmF-~$Io9UOD;qJx(lJmBC#2TwY9%E3bp9(M4U
zgU1~lcVxWdM;)B`DCZFp4-;P%&HpjW$`u2Kr=L)ztgkCw<c+z%z&Bd%2?tL*c+SD|
z4o*^;i>04Yl|SXk@bRC$DrfA^s$4W&#Cg5o;H+|^U39o;HC&vg^c-ApaM8gl4qoL`
z2d}aIYYR}3hMdiup|MiCiOx}fzR8(6T)g3cm3iHf-p&UM7v~j!+WFkJxs=J94&HI_
zu7kIz-hFa+4Hs|IAQa8eKka*p@_q83l0H@gPYoCE50~=)(7|N~KRWoy!4(G|k+XxZ
z9em8mzk@GTu1~2pn{ppIoB6`QXAVB+Ku~Yw--e5#Bg9cdZdN&aBHsy$g{q>md`GFy
zNb~Q1%Mo(($@fY!&E}+kpuQa|FlmJN*}*T0@=u3r!t$l_o4V!vnNzRd*&P!K?inHe
zV84%$_2l)JB6xj-_{YJ&4$8SG?;_=*%=}EoMFAIiT)@Q*E^c&@c9G*EuL~|uc`Z`;
zTny-u`hJ8cG*aYuK}d#WMhfQTCGq*0f-Z`>D8{EQ&J9Wxc99(^invmMLlk{+7r8D<
zvqTrdMG04~QI~YVkD6&C<*ACBTyT#%k(*tVa>2HfGY?-7@?2+G7ps2F;V#xSM^d-A
z__#nW-4WdC;x-ozT{Lo0!9_(EwOrJ8QOQMR7u8%;cTvS<@F`K%l_Q#Goknd;T|4nq
z!$nOOPmB~ifKyMc@SOQ1=W1=#aZ%SreHXX8_)68ho-5}DT#6@$78~Wfr~&I=A-&{?
z97HtNja@W#(M%;aadFcqL4EEyFxA{e3svql_wUU|Nh8qOMH?5Ny7<gRTNmwIEOoKW
zMSB+=T-@zqw2O`|I#K2>2D<3%q6=l^qN@wdh3>*};kqzfm=v;$gDX>gMhVNs^ihJN
zo^f>twnRR=fbD`&y0~q_bK$!PT!gNCiyavy_%7yqAyReQIWzszC=n~1lL5A<n~OVK
z^l;HrB{D8H8{1vA?#of)P8Ypg^x-2HRh4(CyIk~El(Z^ao2IlsrC5G=Ez_6X-8tRQ
zMSp7A-I6meB7+q1Pz47oI7GqbcZ(5si(xK?yWsC;hV~fYVkE`2EJOK^QZz5Bz`<i&
zjCC>7#Vi-&Tzok_J=w(+7vo(_a4}J(FmaN~LWDct2&Z08pH5A?PR1VLqZ#Va%DcsE
zg)CNZj*Gc2=DC>fVv$N&;NlV05Gv$CR~mL++*9=D$`n^8*t#XEL{?zAixun|7l&M|
zr0TlZ;9{eCy4uBB7wZ&$kBc=5VKqKeobPp|ky)=2r`3>Qd3n1@-EMWUO+DT0Vv9=Q
zqeGkI>vg+}T`Gn6eJ*ymGU7nnJ9Brs$fxI4J6LG9i#;y(Dw+cd?sKtUJ!KYN^ud*P
zwCtn%T^x3C(#0u7cErU)3OVZHn2QHoJjk(DPL3vC8?L4o+G%e3df3Hr3dhBxE}nGp
z6vg#T&SOevo}j52Egn~pS?*A!P@_1MPPiDOZl6{~T>7N=GcKNW@urKnTs-IEc^79~
zoTVnac+tg6E>0`Tr$>vARK}N;O248K3r?0N8EcLauX1RQ5rw}k{u*tOi#J@Hck#NS
zVFjrCEJ)U$lnj~lTh0X+7uD05W26M$cJYpjD_qQR@ve*aTwHSTfg*T75xg%gm6X7T
zD)HAbqEndR<l!=FI4qaQ$Ex9M<0mc{J@EFia<ai7IG?-tf|}rAqlYhPUR*Ts(A2}%
zF212v^iaaXw=TY8E*F2f_};}2E`D|K8+&R~>PPnS$`lQbIad7S;%67X&|-`gN5=}T
z34AwJ{I1IVVO#2tYoqlW8T_|ovGm_Au9Aa?{2u;s@h|PXC+nZ`kjDcZCUBgtI#=AS
ziK62KJhT`m<#3}1ZUlX<A@X|2+cvl2xOCb>j)y`X3VX;X4h20qIVs@DiTWMm#Hw+k
zYtP(kuk0e8^zC2VLs1XK6!DR9f}vnJQW%afSEUfS$wNsGRXkMnaI=R}9?Ezq>&cf0
z>%gnDqI_kXxWz*`54U-!;K|^R<%!d&mxuIt!GhM9X@1Dl>{RqnZ@j4N$-_96JaCpy
z<XWW8Y96ZdDcj|thKHISYI&&bAs8>)J8ry~H(neWFJ2ul>ag-Ev95=|#tTN7yj@kJ
zu_xcQ4LmgTP-lYhCx}L#{Kv%4gzu~5j+!7AP7uvJH1{yT!$3;XLrV{y2j4?053N0P
z@t}EV<Do5ColbR90^}-LJ2uJ#ThYNoM-TT+kS`J5@^3PI@Sd6=I(xX`Z05rWLRU4h
zJvbf=4<=hwG-Ij6titn56t_*3E&B3uPTPsX^`tkX850F#OavZ6R@g%?50QtM9p~W=
z4~Yjx9_Q?|t0#B1vp0`V6z@(H-90XMr1@u%J9&C|=;?tDJ^r02ZkZ(c-{qmVhrS;A
zk;%gaI!qFMR5kkYDbptjzI|3I$}djj>rYK<F8g$lhru2ed06aWh=-vbrhAy-@kcO*
zdzefz5635o5gsOa(%s@n52MIUWImWA?pDZX1;;2jR>5%!j#qGkf)f>FE-nDF(AT%8
z@=X@EPZoDf7E?WRI8<Pof_ya7!z>T;Jk0knTXhE$=X%&NS<GR7P0DbQjjuMUTv#o)
z`=J60R2vt1I5k;(K3U3PiHD^gR(V+MNq-B=JglUG^^lES?qP+ZAFpD;r>00#a1T40
z`bm9WDr2Usr9w`Te7@<ByUs)DDRMY-Rc*ZoeTrZ_<xL(od-#Gz!^0L2TRoic@U(|*
z9=3Zp>fsm_h86a(*TX(fenRf#nBAP(<$)%eMU0;!c2k%h7=T*_Xy)R-hXWoCdN@RF
z%w#w*sGE_3y5GZ~O!^4<Oc5;ou!pr%1P#KqzI(vKgXHhwF%J)Uc$j_EJoSht7qT{F
z(#KUx$>gaiQhWOrOFz!OrrS>sPkI1rSS(Ft{%MMMO39h?UhZH#NlAKm%fs6qp7HRk
zhgUqj>ft#L&wF^$!%LowP}A<F^b53*71CS>ro%cSJQ8>}=Lw$tkbhYfU2Lj2!y(W5
zu%#Sg2XpI975-H58tn-+e5#<=M@CpUPq9oD7db9A=Ds>rTwrli1?~1XQ^lK<+cd!y
zt#>@U>*0!rk378RakBv~dH8^4YMNXI|D$}S<1|5Mebc9j?bF1E9xk&-rV0A!ApF?F
zCzMiKd`>emO?>KMYKi=<ri+`Vi_bg|Qba7S=+`-4(fHG#`KajQ8ybHPMSK+X@tue7
zX|8>wef;3zM-M3<d3?E3F`O=b^6;~VUp)Lu)txT>_3)cAwlsr0K>E89#UI!E;!j#I
zh5vm$<*GvdVHPzs$bt2NFW(3>=6QYYoxqJg9%gN)i=s2+Q=0UAihxLtkBpB(J_`FN
z;DfPBxyzS7tP3iF`ih>566_!ze`DTaK8pJ&?W2s3Tpz+m2_HB4a*dbMC(gRN&k!Yj
zaHkxJZ}xFMEpwIfF-@`BG((j2af^@Jn6X0o*%_joD(F@P%lr6rhM+63d^2S|`O|?-
zsN|!vk48Qkt1MM~)b&x%M^zuyeAJ)Gogt{@qqdJ4K5F{tJX1O`V0I#eTrh02Azg<}
zTaeptrl{}ZcEyJ_gvPLek5x0Jw(x7Kp)dbg9K1QxL{+A#k7f!XWpf`bR4&>9R-1>E
z$@%z9(b`8FA3uipDMVWz?R@MGuqQx!A02%B;^S8z9es52vBbwx*3Cy3AA@}i@uB(9
zef03r(}&^1^pW`J>cjGp_2E&ZK5QTF%#<G*bYkrIa4GO&xs)N_P(P~H1wJBGNiJ50
z3aL9w6e*X9eGt;0OgA5Q_~@=GPb<`Mme59|PmM@l9g&_fOWf(BmyiDH>0Lg0`{+X^
zK32~Xbd`TBoqK$iXgM<7*T+Y*L_c4CgWq2=lXtc#HCqf&x%h26kiwZQ1}S);RA#7;
zVLqm^$9)X<F~Y}q9}|3x^f8Kk)FU-UW$ZRv+|88PVziHYXA7?G?w>8jsz=;0GS0_K
zvxPGwJ<*p2aFUP7tix<^VM&TcFEdBb+0+ycv^lbir~8=UV}Xx_K4$uu<zudodHkI>
zN6hxY&gHRvcaE6D%FGe#RF>7-<)`|5Dt~kNx1B|>TNn9QtSa#L=2U^JX}xm(Wj>bs
zc-F^rK34cx>Eob}L)00H$j5y?cKEo*#~L4-eQfcu*2g*@8z{pf`S11d$Q<$YnDlzp
zFIVP>8|I2CbHzp<o2UtMMbEji^2_Intv;$;O>a|VkIfaFQ`Ib*yWPjfa|Py!os{Pv
zsog&ID1u$SoQYjKWVhGHewA2zp4i8+_FfM6s1NL%I-nA}H!O5NN1~78tci~!K92f$
zh^D}of8Y2jIp*U59}lW)R-ydb`8<i2dEsjM&Ux}D*VK8kdXM^e%*QDo&-i%U#}htI
z_;}jKlRloJ9ax-mYM$I>$H2!2=E-x`CsonR$cRW+6bIsE3Zxq_aLGLJJcpr=OFlmE
z@glp}#~ZA+kJCP0_VJpJb3R`2@v4s|^948OFz*>3oUWW@p;wBF`EnC7U;S<7%U9Ct
zs;pYd<K+b(7k#|t<82>rs`RBQd;j_3`=|49)$|?8VZL~edNN<Ut00-*+AsHgn&sKK
z7w3x)`SX{u_3^cjD?~P=KK1b#wa%B{UmyGU#7F)GQYI&Q$<H)ipR0ntRPYPhH1(90
zFjyeI@o{Wf>U;Hwl;6_Y|C9bsK`w**K%?Q~Cm%nvy($-JhAt3`7Knoj#BV-+r$Go{
z1^9!_r@;(RF2G+t{^qz2P&B|*AOHBs8z5hRe|@9^+z{Z#K$`u_3q&4;TwNd#fJ<IX
zj9<?%z~#rKGDR1P`~lJd3IyB~hnxVk_B^Qg*}v&V3q^(*7m5Q5<$?4<0Wyn3`$gjG
zg`#i(LVCk47NB^55&>=sWDL{X0D`v_(xXy2U2^2)q?%QLqp4(o(gDf@xLMVtl!D_H
ziA{?{*#NJR=OVeIo6a6txAN*~^#C;j+#2Av02KmM3{WLNRrQD`3Ue2WN`ZW1Ru0f?
zvE2F3QPA*{;?)$v+so7Z9;q3iR)BUizX56os1u-hfEEGj2H5gjPJNZVUVwP9An~%r
z;`RU>N95BWK*K-|t40boR<MbJOl-;$uj9v?p=BTs!n6+1CO|7y`jy4<-_4H;<P@=M
z^Hf`Q#1g3|9RhR=&?SJT$Vx5|odWqG!$+M1Y*as+h$me$x{@JrBS2G?HygkXFe$*~
z08RimK>q*(0(b%Z06hZq3=jke19S^;M}Ua!3NUkt=o%miq`$SCZkYi~q_eeCPMQY+
zcpQM&wk4u_fajNpA5|%L2Iv)_538qYSbV9ti@h@?-8+z>QF-yqRNp}6?Y&gKRr>|l
z^-J+8Np9<<Vqkzl0Y(M5JHX%oLjnv9Ff72lrPA@;153q^OT}>2E^5W9Wnx5tkpYS=
z6D^hrp3ND(OpFdNCcyXr6W9@|0=2K^99Sm!dL0*lkg|Gde0m})`FU}E)$(2Q&N4A2
zz|;V%1Kbl}T7c;R<_B1y3Yx)O0p=)tW`KW|iCI*t<sw`z7y@-}0EVKVka?VK9t&MA
z&$TTKuqeRt04r1l7Av?kkbl^h1k$rH&v7gZz(6V+mWzj$i$=F(t}GWT1FTY%e=HYu
zR|v++SrcF_M+7yEqEnAH2G|rxA1wC<SRY`6N{m*B*(*eLpo|Z4a)sdkJ~or_v$h7f
zFTjofFHO#DQ<U4Ob(dtwt(^gfiPV{09O)~hUQI~k%WH3deE~Xz=on&ufCC(uA#y_;
z3~(sGdjZ}LaDRZq0iF%;T!141js|!vz~cdqsUjW<@Nj?!6#ig<>MI2ooC&G(#{<lm
znlpN(cqG81l*UR~E-xZa1b8yQ$pELwEho(wmrp4UCpa$H%!O%s;V9WLy;fzpxKi%A
zc_zT0>h}2nF9di!z#B9>Y;1s60=ydFbRef*oafMc<cD|WzN{FQUM0>br1vWE8VB+!
zaaKWAgKBw>70Z+1E<XMQKhMF^IM2mEu83X;WT0eTZw7cPz^ql`?Evp^>{CRm#OYOn
zo~ZYw(}YiLOkWD{0qaK78sNhKmjnD1;O78W0(?XnHpPztJ`V8RD)DK6&sfRT;u8h=
z?ejTDW!W^{u6{w2wIEIW%K*InN<kuD2lz(e-zxas_4Mx*@`ExdBx7?pz6gH_@H-8D
zfL~Rse^ao_>i;A^WVLu`ij1lKH;sRQ{2|gI{-H_)$P)q~QlT{dyw0u`D_4vCtHlkR
zm#!9hL$I-&Q{AWt3g090g=lb(WJ{P6A`_yhdQ>2kYF{XXb&vR9L8f2`LLRj%9HK~w
zkt)lkdjx$QRO*o`7J`S_$wY*V{ehYxYK6EdL`lV}e2AMvlnVd*a4t<6wF9ASh%yR)
zOmSo4Eg`<WN0ehV)`-Sy#H}H23sE6N#Sqm(R1al<;7TDXho}<Dv;X-x^H)VQTb|0B
zNq1c%8$yIDgf&8NM9*F$3cO#uwxX#QqJD@v3a_gm#}^siP6>o)9->8vh9Me-+}AB@
z*z~geY-t=~V3ACd5cGGkZH=g~GWX#%qFMOgysKr1R-Em#N-O20v9)4*X^m*35Jrt0
zlAFo1R<sMzK1A)cf`09|<)%}J&LP%^*bt&i2rb085aTKE5JrgJA^L<cDftjxS#F4I
z2s=a&A`Ib#m}lf~yH>a%_(y<C=w1jv#DKM8t-6Rrtbf(qAJ&Q_L>%I|wSpJha>F`N
zYn`|wME4NALfjQfcQ^dz?Ga+h>zSS*?hNJpO2*z@Cm4f?=4jYDv1FZ)IvFwyABKb&
z8lqo_{vig17|crkmNS5+CO3U_ofsHOhkpFg!#xu3uahOdJRwbEJ1oTT5Tioe9b$x%
zOq+YfZ1sscGQ=<IMDD#}bcit_#!>?3GTrW#v&X74Gvg}f@{c_62_YtiSQuhah)E$P
zQ{O_&2{9$a)DY7{%m^_pl>5x{ES26Wp4gaToC2P1n0l|Q#>^12)U{RJezhcZ+sV{i
zN;1TJCC|)yQDePW5aR87MYV?uJh?1)F=Y~B71b=18_AZ2SP^0+MZI1uqyDcK%h`kL
z<;U0a>tzv_*NXyQ<lGZtjcVY%6mN<2TI$jU;cpP@RN})I3YOR)<vC`9*cf6{h*Ke+
z39&iEmJs)cI2>YYh;6jtAr6Gt9^$?byF=_@*IbY*IlOj+*coCMZTkjU?zs(ud-J~7
zAofz>UoK9EwEQc#kE3{_d^)f`4u&{HR?p@+t0o&w3(9biM?xG8@kEFx*}4!9gm^5(
z;~^frR?iT}Ia)W0hZO9zQ9Kgj(GYW&r&xh%)1;Z=)o-J8cQ8#A#JHSKg*c(IpH%Sa
zkbA~t9eC|f2#;GnOKlAC7Udk``4BIJcrC=a5HE&!iQO0CRoaA2;xui@U$QOC`*MhO
zn*>+thHVn^N5G2(&V)D{%CHoCI(w6NJ;WO!E{1rMqvOWRp-tjEhh*pU*-hdCDL2VF
zq&7>)HRK-O6?!McyCFUc@p*{%LcAa13aw&@OCdJCk@=8A?`pc@X7K^dj><*9i<dc0
zHwz*khw{%CS$#rVv{^9vNvXy~Kc#VNTy)-M@kNL)LwrLc#ustf3<uX&Y;2BLzgc`8
z%GK9bHjD4rYM%V1o)=3;9q>KVw+MzwnzJ-z{E+iAheL>bG0#Nc*ATx^KO-!N@Oy|q
z*t!UAgg-<4#eo*#mI!}`xEdmFgnSYHQDT>kjqtC+Ihp5eo(PCAYhmu`rI~M6W^RaZ
zV}yEJ1TQ|#A0Zt<L?{s<CqgDd(FnyN`T8gjVe}SJC_=nN6jYFjg(DP+@R;~d2Z-?d
zv3MlEthr5;1i2CRY!T<Sh?^q%OH7rDP&z`%NKSs}+4AN{Mr8hJi>R<wEK5sw#APDs
zrkha_%S9+3p-F_M5pIoeTZHNnYDB0Ip<;x+O;II6uvJu2b>rW2`thh7VeD41daG<m
z)d<zpBd!hdwq}G{5$dzt2(=@y?R6=o$)XPNGZ}UqyW_>JqFw|-P9FFJnz<UVArTry
z(iLRmNG{70;nL!FTSa=CXcnP)gsdv1MTC|S+D2#>;j3=>TSaIc$wT*tx}+~`OSOqm
zd7EGi$BR>CW!gtzFdd7WC#O3o*ipew3U*eoi-MYhx`Kv+Ci&;csRcI>F1lUziyh&P
zZG!fVxEG;cg#HnH3MWDsA&Sr=LQi&Rg>)RD8;K(%5xPb){?yWKqIzrW-X<ls^-QKa
zTl!aVI<{h1qB|q>ity#O)OXubcSY#UW=7!lhIbWlAJyvH=F1ZeFQ3iyWvx_DwgC|a
zMi?JqLWDsP21ghkVMK%>ssckJ42$sVHo4n@^(nSpc&}xeZx<sYjAGv@o@98pLdH<v
zB20QsY7wEaU2vb|IQ3}kc5#nNpBQ0Ugy|%UFge1J?c%A|GE=B>U*w$GE~ZA<P$^Ah
z26cFQY9`e_l7Egk7<n<k_v{FBBFv3YYDlU*qrmg&c6lV{+EI~(5f(*wkgbleIKmQg
zi?A`m((CoSC&Dsnb%YhyQ&vXuBaU+_p43|vVYN!Hyg*86O@y@(){%h9yggNQdx}PB
zy&|~jKDn^N(8HS|Y>u!$!hr}|B5aLtUxXbIwkhdRV%rsR`+b7=xO17E5q7DRz3kch
z#O_Gi89v$*fiKFt@B7cn?Taw~T&DhZIVC$7;eHM=Rqi1ccTS4;NQ9#ijzxGtaeM6B
z95Nv*E(;Lh#n<}75spWAE5h3m9*OX1gqJvWIQAnv9^q7kXCgeIvY&|XG;Pkg%#+ly
z`@~Zb&fF(*cF4+{ROMEDA|K}}oMRAqR%Llk={8^1&qsJc(d>Rb^CI=OCOs|7vxF~4
zcqPJX5za-pYkTU|2&orkbK36^XCj=9aOd3o{dNdKCcYlwjR@yyYC5Oyej{^1X*E4D
zz8T>nyL*S&xI^R}pFZ@ed>OqH;a!T0svhCJ2=7PuD8k27$nB|15k83UAv^tz3}^M1
zBRuzp6j$bahTN`1IJrZ-ze9Wy;nN78MfjX8eYLn;qdTAZSGBj)PSI(nZ1`6ZzNX!d
z@JEDiB77U+XWEAd-$nRdwRiLR%nuQMjPO&089N07k#Gr`-<b3dLpyojPQksnzbeXg
z%X8YlS^PID=Rd_?-6{Tz@K=PZH2CW2&V`v@cZ$DhCwIwm|D~W}AjS=`j8JCm5_w|i
zBQm`B^u`z?cZs~QG$TZo?GnxZNFUlI(lK&k42&@-MkYpq7#efMC>WzqjAk*K$0!`5
zNQ^2ms>Uc9qgaeGG0Mg$9wRr#%`r;F5V5o;&rHqS6r)6p-_*A%VM$fuhpL7*?iQtE
zeE4+^-=~ZM!<yU@qg;&2F}`ceXpfolF>Z@dA;!78b8l6UH2g`&ty~pjR8p*}?H0c+
z&ZSxA9F@+`tHr1uqh5^qF>0_5il%N1P9fagV)BJdtr)dq)QROhinnA)c+G+2?J*j}
zXsog@y`e&e70oodo>HcGx=9SCG>tKPx7f2=(7S94^|W=2HVSE}U@HY*-Ywe3XcwcS
zx+Txu+f(ghbYMzZxsdYfZo%=@i6W|y?yMkp&vv0O_lS0Tgb~Axk;Le#vRg5n>wK~?
z9@w6;*}qD#ZVWGmA0vnnDjMz;taDL@Gz~6hMqbQB?9)9Wj=>$d3_{mU(R7c|BgP%q
zdGb#sYuGbJuNZexJ~0@^ly326?GgJgW_riy8>3&0J~3V@mHA&RL%i|ghW4X-ME_X+
zuP?q=42bd39`WxU!Kk={B@Jd#RxyUEQbxuYMFCzfad?ao*YWVvoV#O;jxj#Q1eG{O
z!ErIhDuiA%Sv_9Y>NzpS<QP-bqe(HtUdXpLuc<0!rh?OAOph@mM%}$~MDQBCSIkxT
zoEURsELCLl6y(!|G3G0LL5!cyW_IlrJd?}xMJjP|j3o-;R{*bNF_y<zaXs&9s_xR%
z${4Fu3ioGn8JT(SiLpkdtYu{uXL!lQ{}>x$Jl-8objQXRn_`UXhVk97ImQ+aqOK5K
zu{Fjv3Oqso1lwcW7vuLBf5g}kV`q$)W4sb$SB%{;9*yx>j6E^-#<)MmVUENVseLi_
z$2h=IvsYYmEOwBkj7if2)gkt5k^JB6mCm@1#Q1D!>S&B(s*->16%WLCFvf9p`%sKe
z>&U=E4|Ak16hsKws7KgwO+o)H%RbC`JjN3-PQ-XR#*;DDZB9K!+p;WGWuIVi{4V${
zf9}Z`r((Pi<3&{meIF0@;@KF_#dw~YbELqF`^1QS;%ukfwfh9)(X9O>XW;D2l43b8
zscM{7kPg6Kjd3Q%C#+SBvoT(a@m7qt*~S>J$9R*6wo;jYJ}!Po?erTl&c}FnpSZw5
zaVFnIg|p@b_sjZo62iK@!$jJj7?)$b#{n`s^MNYp{TP>GtUO$x)_yVI#>~M#rD|pO
zi~jq?l^FEg`!SWAy}4g(*)P9OAE}qifE1s__&mlpF}{uQMU0uRroN2v6~|X?sY0#t
zXTFYcalh#Dba7^6e9!M<d`~rt@v|yao&r<Ik1=jKAb8QB{ldwAj3x)f`Qn)$mZg4+
zv20=v58?7(JmH@){)*8kLE{8}$GA#UoS=Aue`5R_<HiJe6QmO4Nq|HiakV0PC(aqB
zPB+|;;PsDXyW9gJUxNGz3MVL%Ae|s5k>BzK6O23{G6_}`&J;+%Gcvqgb3pL+%;7?X
z5<GQ4u;EiDWavqiKWB?3a_ZIK{+!$dB0;$X<r9=ha8rUZ3CboYnc%Yn;;)IBQVGr#
z%-oz{)12JQK~Xxv^S9?VKPdZ!K8H`)>01)?Jt(HBlv@+rmY{xu+Y?ksP%%N>1RwmH
zQz=1ZrsQU-B-pDc&m5F}!IY{As;NiBt0$<T@R|zNQn2>*r*#rJqbAv@bD4UHd==&#
z5)Blxd}*3N0h%5X4HNmjMx;rCrj$&AY=UM9nkQ(JplyN{30fu?)IHTY0bAE9!NJ8D
z#=+#7i}6i!ha3{K4~cdO+9%Kx7zs8U5*-qBOwcJoo#oP|@jpf91YHtn33%e;@k3(w
z*#Ew&7<8DERerOWiHvtl;tx+2w-Y!Cx+S<H;W>AB38DmXg01t?Trc$#1PR_bBtmw<
zvedz4DdLk}%1ILZen<*=ZfDVzeRRKgb5(Br`$hKzJreXz&?kX^zv!8uSArw=i`n;!
zI};Exi(9Y2T}muhc$<J8+6x?(>70l3WpQVuX&sPYV1lO;oTM}o3{J2*!959vBp8}t
zW`bD>h9wxDV0?lJ2}V%C5{yaY@lU=AN3nqkN*@;2ZW-ombb{8Z6fz&HN*~9@9u^<G
zUwmSMNeQN^#N1_>$qE^ESWKb1mdfyAmIa5!v;@-=%t&O!;r)lj6Nkln`EzF{n3G^p
zg2f5uCYYCCL4t(|emE@VCn)%5deFByUAL!rkqJAIV&_QVs^*de%gLYhWE6M~lOtl8
zf+Sn44w$b@<kI(TN5rZ`u3mDUxhBEd1p5;lNU$!!z3ig|+Y+p&8YI|4nYX}33i+vg
zT&Uy=bW?)Osx35tyvUhT9a^gG3GPd<E5Ysr{Ks9mb8ewV*g-8iB6gC=5wY}$peKht
ziS*LHk0U}cdE|)fBeLbzrh^F%C3rZ&@dWoLIGo^Ef(Mkwaz1l}B2wDI<?CzntB;O|
zobs6m6PRPuC60=R60|!i?mQ|UN$_Zb#}hn}fPQtjyW=tH_MbTukIJ&1q*-96-<-a1
zR9xf3z4s?r`J>{oqvBM8XA*pu;QIv6vfmS2PH=_8KfwzLE+%+0!HWrAN^my8YY9%P
zR?xh>n&9OGuO#^OsGyOleoR=$#E@g+j3QWmOq@%kxqc(Td73qqc;uL@&jp3w_Pt!c
z_5aS{4~VxCyq(~^1n*N;$E3x0N71}XtvFEpvdY!`0dXlo_XorW9O?5jjG*0QQRYK-
z+*R2lA0_yh<21pS2|nQ{UYh!xT75e8Ddkx<cgX|dGq&#YoT-I!`QL;Qnz)Djs|4Rr
zB?zaazgETlQ3Fe^<{WxJ9A6^U><5l1+L^BSKU41kZB@;@4<8=o-g6I^c25B5O$BKp
zqJkhD73tD;Z>OTDbOk}gUg(MlRxH>>kt)6SCcXFGdx!5y?#u7{ua%WGd-h~9nas@2
z&dyHqYPiq^7rWpV!*~~5Vw1bz8e>kr5I2P;Lz>DJIx_pEbTm?4Fz3VcI{T520L7U<
zTtBrpXVX7o;FF;{4E`Eg)I>-Fmor`YNATx@Ywt#&;U1M(b#qRhYsl1)PvcLH7&#&o
z*5pfZmL}I6lHk$FBBIIIIIcc-z(4^Fg*D`8&?id`7u0a6QnZkU{*%S0lf{I|qTU<P
z(`pK3_heB-Ls1RuG_2Q9Ov8N|`e^7&{u)YXXs+RD4J9>{(ojRg!x~C!D5K#44G(H4
zt12z0p}dB%10u28;R+f;Q$+tMf~#>VYPeq!aI15Q(PWCKq@l8gDjKS4cu13{H;#NM
z%nx&)OcC5kxEdK23pX7U`T0(`x`stlWT^vFL`@BkXm~<H9SyZ8+sM$P8fq)z*Y1rx
zrpXsTQhstGi&5@z$~jeZoGR*Scv3@S4NWxE(@<aI@j#(Q8lKYd+Emd%LqiQCriw{Z
z#n!1}ZT0BIsj@o$*2H}{`D`7(Ag8H@7gt8_ohF)TV9vYGXn0nGp}}OAX?RXUM-81c
zwA9c_Lpu%aHSposTEp8zqir;_;Xt}vwAwV$Rs(Y`FyQ>#^O{_zS7?70^9~B;fT6R7
zE*j1c3F#U>$QQOBkbnDX8c4vqth)U)VQH{6BsHWoI2v5)RzqBar}5Ob@Q`W3r&?Z%
z_M9fa1_o^Sf{dS(*a;0+rip0J@WyF^BfYeSt{Ps_@UkY~O<qua^rD70s!0>-rY^U3
zlq!9Nx@{wRXy~b-yTVtTE?P~@*GmJ(6}>eKo-SHU7v6O7`-mvvSE*YKzi9YXLqFP^
zhEW<m(eS#40UF+C(=-fZMbwXmcQg#r@TP`ad%|zgt*j6|eXxdqr;8~x*Y?qq)1}Ve
zRrU5LEJq#hu_I=P5;G+JLk%Bk_*labdch1)ScP{UKRQ&=57RJQ16O-ic>*I8hDAnd
zT-El!r#4qSeyU-##t-foui-NdV>EoJ;VTWFYx0oXe>+CLpjB%ar-4Hz7T^7NAp$K`
z?O$v1bk6+zE9!Rm8x31`=h(fa#=g_=y@nq(OwjNHZ8#d~MtZfNrTgBTpV+#r@W8WK
z%zxIf_uUB7CtaeyY4}~kJPq?T{Gs7b4b!M$I*5k9G)&PjRm0yJCaH$(ogx0A4OpSc
zB$y$_%@E&ph!SA!bRPyE0yhgrW+>uW8fI%a$bZ8%%)G0Ii!+4ySAOfCqcB`%JXZmW
z>qHl5Sg2u{hUFAq!(t6fsev+)djE>pzha4o_x{Rm^=H2K{}mkY@OvEVT0!3&8d|Mk
zrDC#*(clBQP?`A}4H-{jEqm>iFu!ar{#X2`VS|PWIx6bes9_T=Q^Qpan>B3Fa7@E-
zDpSKY4ZAh$(Xd^^4m#J+&^L9ZaaMa(DtV`dT`CdIm?`$EdJnLf8un?pStPulHD*MZ
z<`#<{Vlez5a#+I=^1qn1rBh^g*U(WKo-67c&f*NDvpC~~hLal3YB<LLI3o1s=b=*y
zIIXyyQT$ogBQwQ$27h&VS>+cs^qML7ndTBL+>ExEDVWnxIj?d}!*vb$brjHXgM2jP
z(E%M_4-MU7U>_d}>G*P{xUKlyQ8}HFzd=nqpLLIpdv)Z~k*y=Ijtm|3XNic8OkFA=
ztRqXu?3uF1x6Tx2W{Qki(g(T6I5AB2Eb-bbF>aP9sH2dMqB@GHf`xVD=!oi=F-w;1
z^O=146}pVWMRYke%EZU(eL9NkD5aycjuNV1Nu9&sFstCX^XF!X%Ckiog)gVWoh|sk
zSXo{EHAahCyEdb|j%#Z(2;8sZ0UgijXsP2t9hG!EuHy+Em32I%<6#{&byU$&RY!Fl
ze-8^))4}caxH6gEAsWk%wl!2OE7YvQBRXp7cvMGi9iwLp{*Fz`B^R?EQ#Aa`d+uy;
zXr9zS9UXObG}O^Zmoe~39rdU{9l1s3<&8e2gBwp>n=KlsvRq-vQjJNh<7pkw=xC~g
z%$w<GuH#hs@O@up)_+odB7Cx@)PJEl@&WOzqG_RXr)xPpXk0GbN=IudM2DxNjgGcD
zG#$E*b~@VY=%}NUs_uCmtD9yHnj<UiKt0S6E#}A<$uH-~^?04BiaDZ-j&*ZH#^M}9
zhp9^0I(E;IK5MB<-ePfws-7dbwJ$&R`8om}X&qfjpd+rtOX@tIG5W>BXec5H9rw+Z
zm2&AtN-=q2u6RMmi#odN=%J$<g`X>4W<@pdk|G$S=wDIr7zOuKaBm%aMO`~r^wPnc
zJem6FI5Sr){VC@)9sP7nH!#CMe;u#0_YG7sxX%>^>R7MiKU#~9K{~$E@x6{Wbqv<=
ziH=Woyrtu99UtlVSjRg$-qrD*j`!IpwQ=PU5#g6OS{JM1`^X16Slx$omU*J$JTXMa
zP#q(6jM6bo$8a4#<V37_g5M^%kaz^Ub)FQJ`D^pU*m>fQd1B5yF<QrGI=-MY>KH>W
z&@q-wMufPx6^S{roirx;-#jr+$AEev2H3CY!aBayF<!^ndE)l4aQ%VdZ)i5AG=nj(
zMfe?r2PWcn)(<*<)G>{!&@n;BPjoaLf9d#H$1gg5)A2jodsT+ekM@RtrJG!g=9@1q
zq4j*xW4`!<6@?>zs{B%s=-)af>6oHps*YPrWbgk&P2S9!ta{|^{{Q*@#Q8$YjBxNU
zg9cCI)UiazOdYdy%+)bZ5%0{DL#)|4R?HW37-u*vF{3=yZoZC%RGRu$yFgJ^yFbjT
z7wMc9kg;N^j%9RG9jkOKX8;dJ_~ymvu|mhm6gSL_o|rFI>sX`X{^8O33&dK&ccNt$
zh;<4GFA&^zfR`IsR>w^?M8_r_o5^3tQ5{=!Y}L768TRYgrenK~ojP{u$iFY^h3nxR
zI>OnqX*_WGY_UkE1!A|3J=D)lIj8Z;0<l-ekOd;vF?xWiehi0n9M*A=t*#J0ru-#m
zNQCRLCsKd~;+T%(I?m}huk)KAPSSeWq4byH@&}w#%6(3=vwjzs7H~t$Xps_;(|qF_
z8De`c=(wokD!oss>k>mvKk?#1aaqR|9px8_`U^$XRXNqyMLE9ZN6G7o+YKE~$p~M^
zhA$Mib==V*3=}aCGLXkW#6Ug+FmR87uz@TCW;FW8LUFHwyaqB1WEyy?a3uRe&gzBI
zGS8^|eABS?dYEgl2@siWprC<52J#yyV1S<;_p2Yc3NI25FA{|fxl7D|hr&4qq6X?L
zl6*RT9PP456g5!HKq&*I4cup-xPcM|N*cI-WO&EW@POOlQujo<Df(fH<mN?Xo<$i0
zWet=wAm(NK(<xHkKn0e1I()x@35!HU1I^VQ8cP=O02lFq0gkJSEEa7Ri^>KbGVnSB
zf`KXqsv2l-a9cT4Gf>??Jp=U()G+X{fyWIzVW6ggM-0?9@R%XPZ@DfJzOvOa@F>H}
zV!`9*PQ4LMmdRwO@7YBT59%0l=9BA2>MDBveoLQv(!lqNWqY48(7?cR23i_uXrPgS
zW)#&xV*^bLG&Qi|R2CO7^FP6}H>FCs4I>*x;AsODhee)cM|6)oW5{24h-_hi2M;Y?
zEZ01=GSJ#U8v~1~fJ1^EC8Wz7TP)fdXlLNpc{#KSzMpb#xr2d@23|1mqJd5ZIvel}
z1O~dW%M9oS3<IkQMv5*GHI@j@Y?uZtLq4Wm18tWG+km5*M*h6)wnVIdH|i<OfF-hx
zF#~Y}X#-siBn%`Ce3Ogk6p&IQ6?N|-c}Dq6h35#6rMek-$v|%deGI%z9UACqpqGK}
z?7K+#+FcGk*yJUmd);V-rK&EDt2qH;;8g>!eG%%<oE<kQAAjGomWqCc+-#xIQo)>4
zB2O2H3^eeDf$!KI1_l{;)4&J=BMl5T@Ros(418?hZ5rXS(0i&yZ1p<^-ZfCZ5_q0V
zban=}dVb%)2L?Vgz+be+E)@kjMfr(ph=HL7hN)7lh%MSSC+Fv0k>LiYb6&O_7aC>Y
z69Z!nj5F}5fzgWia|53#fT!?qzo0ROJXn){np<ksQt^d>FAaQaV7!5^3=};rmpOfH
z;NE3Y1K*I_hv72I1S{QAG|UB}d`{I}CVnvRqk&1Zs|6Vo4E$u^cLRT@ihfr4F9td&
z4!^2P7XM8F%?d^TWOp0*%fR0X!(|fON{9zJy}3*<bn{Eu?()%p3`{mK#lTbp(`du$
z+Ylcd3~`*G`(&A*<^OA7CY{tod49++Fx$WhYD4jyV_>O)WeT2aV4i{bhWr<Dfq{hv
z`l>+}<0^+?iwrC_u!O9Xw1=08yvxOMdWwM^26h@)Npqz~7}#iFwShGT)*4vH2sSj#
zl>q!&N`T{#^|Zax@(cKX2B>PzFmsLKCdR-D;VlNX8rZDh%F6}Ez}sjHi{*p9-Ey&=
zRxvHgy=9p1Vp#)64IDGDho;CFVucRVMA@9-kpqgue#TEd(r3B&d$~Ah;1J_jQhb>=
z$}c<A8&|6yp;J5^qB$MsD5Yy?yb~%jT&_~CJtA_-z-h)$69r80D1kEut{J#);H-gj
z2F@F}VBnI0%LXn|faPM|+#Jq#aSxo*YHx=thTNvI{R(lFfqjJ#D@5%T;)a2nv=)<l
z`QpvTaLd3Q-ZgRCfctxNPVewuE0o8SKFBnFcmyWyF?mL|7_~zDx<VAHnv-E7(?phu
zh$%Orr3-{j%wHk$ul%16zV~u?bD2m!6WJ!N7KkvBRY4Pl6x*^U3Y*9=Q9@ltO$Zak
zO?isen0pEqF)^biikYamQWRAL%~wiezRyH_rF_Bs=}rD!l2y_~DN~-I%=lm0l&9SC
zRv8mqfY(cjK?|%vCMJ5D=tBY%5143TqN#}oO;j@RsEOJpDw}vn)l!3Z7i3g1QC(eD
zHRS_~Vpmg_Lsp6+_sUi<J*+S_O*~?vmWfF#1uHE%IQn?U=wl`xH}Ry2dM2JQQO87G
zMa)v4Ux_kNaxQV)xl+_O<?k~MO*As`lqo-j6kH`5m|&h;OBZ!&ZDY!#FwIOfH__Qd
z7ZXpL9N?j?iFPKQHPM24Fwxq?b0+9+Eme)20Q~p25Z^J|u97n_mCMVvv{ASE4~w=}
z!1E?LnDAE1u_9AP6P-*9DHwTrScn4~=0s{HbP`kfCJgc?y$Rohr8u~%M%#pA;^kFh
z>?*-EKT}qTbwg#<)4PWQMRs7FJdTQ{k}#1p(ZfVfQ%*jl)ZMMC#783|X_MbXK;Q+H
zzo>Fvb~Evkf?rnoD|hkT6~LF2UWy6r?F4@?<Z6Urp}r<wHSx8HZ)mqB`kDBU#3uTi
zc-_QXCf+vrf{bDHF^CEuC7U^ry<ax+hRXS8&6|qnnN?!23FahtM`7MI@g5y#wZyz{
z;@+!S{DKo*oY8r;_&^bGH^q;sLlYxSj8d4PCWf2x3Bot=VJ7%lq3y`f2vcr`z(b43
z=Mxj3niyl^b4q(}gx)mTMBmloGs=8BXRNC0&(&hhYBAQtI1~BbiF{$=OA}uym>f>>
z)+)g-p~cpSZ%vFh@w<sXOnhhJdlM6AT_%1o@gv*PHT0-D<|!x_`Ef{ybAUhd?uyWF
z^ovoUcgsb7p@b$Ht`S|=hyiN^<stt+O-wW~#l%$AqQ6Z1O|z$Sm5=ZzZW8=s%1OT&
zYs6$lz~>-m52l%zPG4q6(-CfGtz9F^sJ(h_=Y-EF)8fLX*(T;tQ4T(FFxSL96E$o+
zY-7HO1++8^zJ-M*7BS#h2wPZeVu{IJc5&F`rn^{XVv~u@CYGC6VPdt3HA;Y$Dq5~$
z?Roy^vq#p5wI<e?SkGJ3^Eo*T<8CuIu4d(5E6S~v9lC*9%86_=(Q&OHu*Jky6T3|8
zW^axNWsD4MGqK&o4%*M0jGd|?4(*t@D-j>Tdra&#alphuQ?Az7XTlvB8Msz(6trIv
z6F7A>N=5NNZE`qb;;4x$jF60?v<DLxOk6Z^!o*1v=S-ZZ4X+ia*lYB%`@^Sc)ny|y
zYDf9;=&WKmQ;A)zvOEZ~_!s$TVEhT1>5_@dWVlu?vgLo=Y}z#w*G<5}Jr-`5xM|`R
z1HLIgKyb2xWQ;{je1qf1qdO)-7V=nlHHc=d6BXA<<=ksY;=C3zEG!=_?Y7}M8Ca}!
zatx4VA!4D1g@-NVvyg3}l!ek3@>?ii;XVt+Efgd$B2?Hyjs?yR6|%rzHIFWhMlA>n
zMJ&14;Na1$sv|?^MuyBXk)jrgS>OQ>Jb$O}Ix%CNU~%>W7tEKi@Y<Z5k{0%T5#m?)
zG8W2Ocu4UtXQ8}>iWcs-P{EQ<F}`JxGry#8%7sq%fQ8Bm|Dc6R7RK((*}G0K5$Js@
z>z{IwDi*3Lf_vACY6_@s$#4DDHf8dWRMWyE78+Y<Vxg9WM=d;Mp@D_k79O+kgoQd5
zstpTsLXwj<k6Xy?eZqAu)VFYpCl*?$XTg3~2IMb~XO&_t!@{H2hdAHP3EqaP#zw4y
zMb?XnD{`7z-254>EVQ=J+``iqp0V((BIDaum-S-cdeOqdb8O3c*;9ir=J2<vmWqIv
zkq(hI7TQ{{SgD0}7XD0R8A{vjE%^+3UgaHB-cjX5c2YoRm3L9OrgGhqU%*LVvJ;Dj
z|57zN7M86S$JPtiLgz=hk5>4)!UvSW!oL<~T8Oi_h2a)PSV&r&F~+OxL@L%oR|_v&
zc*VjC7GAW_&B9A8#Yt(k2)XOEtVjP7Gxlb!7#QyVpXhF(hlO4idRrLzpXh1H#Q=-`
z6NQduUEUn&V`1liV)KRw=fwJ2X!Cl6$b1__KMVaWylG*uh1V_cbeK0RaQpoM3@JZH
zf9@U`XrU&LcmG{ZfDEDuZIGIL%fj0hKCtkig?B8xOR+Zye%X1?!W8b#u|d4Al$;Bb
zp7S#wk@9HPPzxVh7-GpOk*YUj;<Uh!4PuyuzcvVl*^w4TSzHf;pJ?G0KDF?bg|97)
zw(yySaTdO?Fh(h1EMfJF-{(}alIoD!!Hg#TCCz@LV0Fh7{u>M5TKLYw_qkoaQH-aR
zF38}Ic-%6G;{Cwh$uAh1GA?EPNOLM6+xWAEUo8A>VG{k(!fzISx9|r8#aD8*Ka2O<
zDE?%}Z4?vlS`?k}zpU_ImfRkMz&{oyTbOQPhQ*a~5qi)ROAb4yTA0Ry??le_knf&b
zHp=R{L?ih($@$V*7G_)AfgD#Y%&{=n!a)m%EX=bo-@+OTYb`8b@VBs(4X15H!;9E2
zAA}cM=(sf0dTFTECb5J*xJj~IuI!mMv&zB>3oDhVtv89T>h5ZFIY7bdEUdS%%ffE<
zjw-c*k?Ml%_kC+~HqtgmhBhhs&GhKfku54Gu+_pg1#iEL*+FAdFg=0<do1j=u;0P~
zReYZ%7hp_M+fnv<ESmdP%l*o@-2JeHBNonDIA`G~W8;gVV-}8E^3Q928$Cgj*d$I{
z@>JiG7EUomA}2b_L|}B^$Qhd7Cb4ysI8Pc2mn>YiaC4I=cOXk_78h0RuQ!ncjMkf_
za(H~?HMWc4(ME9_H%M$DuZ;{Fx7bq*^)_HjkK>#Y*Ad;Z5VFxrm1Ta9jeBkRd~ez^
zAKydAZWi2ywex|TOdDYvSvDdz>f9UcoFgAJvo?!-ww%2$U?aLkWZTGZ%OJdVv*0P%
z*Eh>Q9}C(jWJ}#L6}FM1;OJe9P(Trt7gc#Nl~c(jY?QQ7(Z>BYO4%rFqnwTMtbIuM
z_qiEmY`ObZSsUC<_wg-)InAtsjV@cn)OPad6Hb{vVB<j>)ogk8ZY3ocKWIK=<HIeY
zvdSrH6&qD;Oxhy$ZV{oa;>DKokzL)EukGzSL~Gi3#KtZgyKU66@u-d0Z49tcn?l-X
zZ{v9zkK1^{#xpjarEE6p+Gt>-p^YbP)Kir{Wy_DtT&TmCQ=ctTTPm^Y3R^`ZHf>|5
ziH)W<8rx{ORq&D5qh6?)4L%&7R>hmM;kEJBW;x3`d}9XRbXwSW&PFR6t!??9NIdhF
zs!th|+E7llEn8a~@mHd+Y!&Tn4BaY!1mGq}9c*;8k+hMr(aA<<8<q{5dQ)}jHVjr*
zIHK7wXJ!4dCd*`_vZHf`hd3AX>sF!9%yMkFHUiSy@N95)luteWOh++%8>5d%IeEEq
ztF*?rVw<pWX{#u-O{8sfrLo!Q&4M;wwDF3K?l!tnY1_o5ZGztiU$XJCjn}q`&$o$5
z+aweAY!6BmiV`TiUG%iU{KDLPeQfl#@hXW`E$(}A^TX=f<%C#2TmArBbzw$-_R)5E
z$mXlt#XuWx*!b1PZ#D+mc+<wG6xhaK8*kYdZexUvw{5&*;{%$9jdyLl$L<~;;aKQ>
z3Op>t)9biB@3`%P^CUdp=p!nYp0z`KY-5NmKTNOKE{<=PGIKh8m<{HHN7@)=;}a!h
zxg8S2^w<v3LcyQe7-QpG8{_FpHpbfESEsLSaQ=3jjW2D~{4nwbn^{LL7~_hgAv?rZ
zY{d?-ZHJgxGV%?*vNBGFBj4Hh-o^wQKhfTn<-5K^ta~r~gN+|my%l%LdinmsXXVcd
z^9!wRr|7vaE4EYoZsQLdi)}2i@u!W6HfGSAZ2V>8ZyS?sOrh#_%3hvC%uex-;!ydD
z45U+STz)Ie6@Y}NQ3<wOcgMlZnw=uLOU$$}%f>to@@<~lfH|sQhh5_FU1F|++t&bL
zmR&$~sb9tx*;uG<^;Y<nPhiw8vDC&g8|!KCHkMOGHdfnMV}l~`L&n5iVkHgraMmiy
z+(U9(Yh&Xs!8I!D=)50?3J(kYuqWqKlkf)OZEUx(!^S3CF1gvNOlz}^Eviy6TmDPP
zwLn}{xlLhsz+7eRe{U8$Z5&fl?Xj_!KJK8NgMBvkGcY>H=imT6mkP0Q#l|5Uhix3U
zal*zCTW$<>l*JhjPiFC?MeeoIyL5!}+eLPZlaz!3&BhtVtKH(qKAD`D+CD0BmUcKe
zazTl4&c=DV$!@XrXwJ3#QU2C<k#0rj-7Q{NoY8%^Z1q(e*KFM5;9dvU8T@VBu@Q1)
zOulcKbj+K43fQ=<7{0w*?5Z05e7BgpTjX)DxpZ{<8xc5il*qvziSs(haOAfq!art4
znhgkNI`V+mu!AfIhg6M)_J~L8MYA2`cTmnjc?Sg?6m%dQ6md{URh{D?>Y%WK`A=e>
zPLYax#EZUsEo!t!6m?L{K?w&X9l7X~5$rxiS=^DEwX*8B%128nOlb#eUy1BnAmu6J
zpsa)R9x;Thx{J<RGAcNz=%AW|>JILA@PLB{9aN$i6~dGEh&qKb*X<FUV6W_;isIJb
zLe@iffvOI2KgCiBH5@$b;4ue}J2<mP)O1kG;aO(kM;sm<A~jiYuXxl!Z3Q>qE9|{u
zNK`JT=OgtAM}F$9<DjmCSNDp~2S@aCQtkB}JVnJiNIGcXprM1dtkFRu2aO#(>!5{$
zCJvf9Xy%}~BUgw~?6G^r^u6L~2iy0G#-Bt>tL322IJmr5ZcXr<gO(0jJ7}XMY31Nj
z>1fk^V%U*rsePi!eR8(*g?-|`vH99Nc;12Gz;w{TK}QFg1KmL<2Q+eucXprX?4XN-
zxA%!3_lb@Bq%AdnHNt&U`C~F+%Yp5{ap1D+_ls3|BaiME{0!ka@Esg35s5nplo&Aw
zoZIKB=9=F`yY3ew_lx3tqy|##EC;XCoE&s@@PdP$4thCw(Lpx{-5vCBaHDwSB?m7n
zGsu0{W5HJ(OxrKz*|A^nZ-R2gBQz2wu1oLjppS#|`$b;|uQ}*PojWLfKoWE7%bE&^
zKZ5?W%usanikyKC-f-}NgAW}Ha_}bG>);&<&^q5>CA@w>@VJDx6#UEq@vZ{65zvwY
z;ynlNJNP~s?Rh|acR+Akn2#KM>|mIK;SPpSEkh&Io(v789>NhW*W7SG<U1%O8Npiq
z5bY0&3N7=EbnwJMF?mGfQwO6R9CLBp#b*x2u+v>U?c#F>V;!7uaMHmz2VXc?;9#MH
zFCBd4;136XI{4bbHx7Ps@Uw$&9gL?`4t{X(orBXSWI+C>oSd<zmmwmzsQS^76C)FH
zdxuZtgW?wlzdHEM!S9aTQ<tj?o*fmLprq|uJgY*<2#-IT=-@AE-obR*NfrF<V2XpO
z4kkJHht{j!N+vrpezGr^^97bqN!H6@@C<qZXLuaUb1>79KR(Q%)g2PE9Ly&EpxpW7
z@Ig`Zkl>~Yb1Q+*DUOrp(;fN=u1V(37>gV%cCgjKHU~=_EOoGkzVBd}gXIoZI9TbR
z?;-K^A(8vZc$M-y#*@tZB4oRo1cziT>lhRGYZxtx5$Uja;jq}C^uQ)>qVYTEe^`8U
zSTNu0U<(y{Sa3Ng6X%(?JJ`V}NAq^D)4?vf%&^d2Rs4FX=xzn<p<fq{JliU|^sw0H
zV84UPp~wLS$#s!~3U1R*uBPK9`{f8-U|8rVy{~Wh&|z_mW_cj%xZ=|x6rtCgVh=K`
zxhUu2jDxc@Di;wK=V;{g4hJ_KTySvF!4-NL{hi^Wl;q4mn;vNyx=e;GWWc<pcrGmz
zxlYQ%(g^wEVS6)l%fW32d0fDik@gO|SVZO=&kDIRtTB<>J+6F<%<Ce<m7kXGRksLa
zx^f}+Ge<<&#eGM_mxH5(StOr}Y!^jb6m^l`<#9rYx)3f3x+vs=YtFf>X!OVszf2W&
zkwb%@EcYRq)*_Sp;jAbv?X!RH$dZpD#mLr`1J_b6io0^-;*u_S20i!UD4}E^FsB))
zOuk2yR+us>?{!3!cTs_5UDS3_(Z&5Ps=KJ+;sF;Ax~S@+nrc)f7Z16ZbvcV`k1G>%
zU4CGyqL_TAw$z|tl=Cz7CHG;4e}u(Dp_&R_(>c<-s#H`hSAI<Y=7@OA#p5oXa?!xW
z6E5nwsO#cMSFWO@fsv98tmn#?DQ=!{^N83Kiq?0r=7=0UHgwU*MN=2eTr_4EzbdC$
zIv>d@dQ>!FTaJp3N9E=@oZ+YQvPYhA@hszmi?J?RxOmRRt1e!1(b7dL7hPSv;G(sQ
zHZDvTmW#G7+PUcDqO*&SD@WV2`)F4OvYvP4%Lr31R^ejAQQ3);kIIP!p8Vd$h2}zc
zu|?qx1#l)m-!W11n6TM!7Xh{5%1P05>8R_<2@ucaq193|T=vGiL!D?`85qA-r(7gl
zB-ue~dp$;P0-cVDw4&!2=0z9XT=aI)$Hhx7UUt#lMGtD=c9_GtR}@+9sJo|&+dU&Z
zeTE~1N;Sj1TyX6Q0oKSM-&avGlJqzx`nl*&2`QV4*C{~J@Ea}$xftMLpd#y#9U*c^
zKdJLK6=txDp~vLh=39!MA82?8*Sjv>bMc9bPhGsvZgnxt#c<m8;P8j4)W<6S$ORYk
zbG6A3GI25anBY!s*Q$mIj9>@#kqaY7x$@WYk&2!GW!`m6jArn6F@`!f<dEjhF~LI+
z2rv!5lQqu87cLgLSnT3U7hk#f+r=aoU(>Bz{6xEQ@vV#TE`D(Fql>j_6)4Mo=c3qg
z@jXp<RZhp_f^D2Y$@^t}*(M(!pd|Rk#jh?Vy7-F<?-d?+T>R$ZcO}~&G?J|7pX{%_
zIlmqkj3?aRgWtiq^BehaS;aqWpo^LGBNtO#Om#8C#lJ47%xPpYS5Avfcd_!gtcW?^
z#isX{Ln8_>+r=Cg^Ia@Z_H*&L+*fC=i+Qg6fvC(0QRjqMNHadc&mTEd+GMr7Z3&}+
zi)}8pyIAI8IX#Gtr9NHo7uVGcJI`XJi&d`NI)Dp_Up*nlo)BD9#2VMRSnpz!i_NOW
z1=}<JbFuM2bOUontx5T~Vv2H3Iw4-liR?WgwkUhv>Vhfzq-??tmq%{lpo>E;cDdN?
zV!w+6N>_Va^c@h{OZPu1I-kwiN2fa}n7W<IPtT>gn0W5nVHZbS9Ch)AI>D;ssOSeL
z<r?++^K)jL6enDqbTQJyC=aJxoMu4q(A>ir7iSp>J(Tcp&c%5b`8;HMxZvWVi#skt
z9xl1KOeMIuLBURnH5rjBF0Qg&r^GcE-1YSFQ-Y5bo&|r?#Vy8jb%-H99E=|ky3M-&
zi?lx_nCI~T4|zRgcxcm1{+Pg-%zHc>;ZhBiQxBOQ!XApM-T1RSE{PWr58X~l74erA
z#wf!1JrwXDJQVTdyacDX3wkKzp|FP>53fBaZF|fq5%s`jfxpfT5&rPEXi-n@C~}{N
z@_$P&D8{zG5S@8SZ2vfW!k|b=52ZZR_VAd8(jLlqc)-Jh9?E(s=b@s9`#l^uCI2Oq
zl6c5-T2$~*>$DV%Dd(Q(>`;VvD|x8wp_+&49v<@KbF=ShG48ae;-RW1W0!wgeg&(t
zHm8Os$M7{hJmTSDwsD5w`K`<+j0`m>8L8#rQ3`xoY&$J(oE9a{h{vf74^Me$;GvF(
zx*neNP*3rE`i$VG1kR8!Q3ei>>U;P^9l+GklSkV(^6-oi>UKuT&*0qHLlX~8*%2+G
z-<%N(&Ilg*@HA;W^zqP_MLe|dV0y4TJm;aMhxQ(x_t45iYgJ<#%4W+6SU%qw<lC}T
zZ+Rj>J5TNc)U!pjgNKeDG*5n=Az3F+o^;>Ylb^KCpAnp!>cTEND*>IIcr(lJz*P3E
z)Tiyi@sRd-iX2=I9&7Xv_ptj)j_+a98TszEaYQ6g-2S^At$S7^JS06iB<^rlymVHK
zI4e>fn3LNJ9$xhDvWHj5r(h<_c4I}w!Y_H?P`T%`Q7*9Ln|OECgq|LHc$j-uesSJ^
zR`l}Fn-+UcE^4ZHPI7yd2Ik>C5AS>E=b^ucK_1@p@VY10_YU;%2F<cUcmNIQoZRfR
zf8oq(1*4qXc|$}7dw9#kJ09MpV$X@Usn{IB&gyYa&|ArT(baIhGEoM%4?KM6VW@{;
z9zOE$v4<fZzNw3$=fvOV<kH;r=j5*zd~st)r~MCSV?7*K60%3QIqfGNKBa|wIO}1w
zhtE9B_prdj7!RL&_|wBg4`V%y^YEjG3G@^XUwZh~!+3h%dGVF%<<W0MzGl5t!r%xO
zATj5%%qr)l9==oR`rgA2H1Y>CTb&pDjfE?ee)8}$ZNS5?iUVgJdY>0N8yEP^!|xsr
zo|n(Qzs`$4sDYs&hOd>1+h5e4hv^<>cyd@c$-_S$CR5-xVJ;uSdt%SV$P^D#J-Hex
zySB`yF)odhW4wQ9iXP^$*XVS&vSzVcFUVEIv+1N4q^Qg}K}WT$6p?vKs*;<c3q36I
zu+_sh4~so4@vzFnY7a|2Ec3A3!wRx38aY@fA|I@Oh_A{<I7;Mto|Wubb=J=s4{JSa
zq(OS95ss|$uz?2OH@u$qO!vGX#$-l&U698N@pMQY4as&5z92R;4lK;r!g$gnJo<v%
z<!`%(9n_46Lmtl}#4a{`T<8F;-NPO#c~;JT4|_fE1%Dr<Z4<uHNt((M)if@=q#59%
z{G@)EA(S@Y;RFNMMR8Q+Z(kI(E{bCwzUvqDE{c;LZWaok_ORumIHgqa$3>~4gTp1y
za~{sqHGGuwalyky5BYp#`?%!cGDEkIdwg8+a8(t&$&S7g_69__f9W+3*FD_uz!f$0
z8nWUpowq#P_Hc*YbWwzS<RPDng0H~5%R_C7UXt6--s>Z;kFbyUxX`ng1mAIZH^T?l
z!Df>F6S)+Ym@FSxM?@k%(w77W4EcQ&@F9E@@xjwi3i>GIqp&acd8TXR_%h7$#|=K&
z2VN3UAIypIO%(M}%*TB`>Zl2y;yz0FSb0g5_Q4&bOZq6~%g8{OlKiMj4L_Ju#s^oB
zl0$hP6@1k4@u-iAKJNEX%|~?~53sn8%03?QQAyQK;xZ3KIkR2*5xJ@U$xGsqvH7a_
z;9GxHpMNAtd6;VWsOjU$+IZN9_dr&u%c99;u|0p}5g(j@eX0v;`*_U96BJmn&E0(9
zaUa)Tl4_~TvOXI4Xz0tYLiK!}DJJUs(u4R|e9D*0sICr^D`YrxQvSziBOi@@46BYN
zKANi3^|C0|GWwB{=V>3$_*l>v3;W_(A1!>e?2cC5@f-mkAHRYjub`EW)?}N+@g&;#
zXiIxw*Z4U9P3HGp#-@Pw><A)ThCBE;kQqKn?fIBhH-9G|oqcriq51gA$Jah|ABK;<
zK3?@<`mlVw;NwO1sSk%H;UnS0_3=sV{2rU;V^rk=zh4%K&Eez=1p*)IDYnYbTo#0r
zK2knz49%Z<Fr21sToEh3&)>z!-&LvZ+wZa)4A1Q5<0T*6ee_Vsmwj%69eITvdPUT#
zp8ZFcEaQsk>7$pA-ah*Hc)dcTLWA&AQ}e%lMerAiU#|!rDEYG%e$7WeA0PPm&_{og
z`55HmP1Zgza{%ql#~W16)A^sQkbmJ7@m;O(mMbF9RWX=mb5*?U;~gJwvG1-5{i>+^
zOrCey>Z{^Cc8wYS_^SBrs(4?C_gD?t%O6qsKF0X?+{X|fLw$^-DrmP?#V{Yw^~oGF
zG5>HMBNT@8OuY4pk57H%za~ceIDS<SX3krsuZhomFef~g#&b;!>s;VVALCSw+*bMv
z1=Oq_u2(qQyC%Nz@vV;)WbR|UkMDf^>tm*m?|uB><8K<Oj~{(Z@bSBkKYaY;<7Xeg
zQX4nrM#K$9g_wR}d-G>@d?u5~-xPlWO-E+eu)<B-ME>+K(Z^pj$TpEpZ6oDsWfQ1*
zIr5K>X+Ea=nCxSUkFkl&e%HiQ+QT)m=9*xh?^^!M9oaJ&7T(O}ll?-e&@3ObeJu8|
z#K#;TbA2rGk#k*ics^_YH8Ib}d|J4VwTJSL@1MO;0hg}{!c$@e)-TUr>$+%rT`cvn
z%tzGAZoM*l!ho#Dq6L=IY_3a<t@5#&UhHF=k2NgrW0Q}~KGyl%`Ye0BkN@Z$@8>J^
zRsMIbi%HkTvg=}lkBy{><*(aT2Ddu}vbV5be#z!>b%(BtTi3;QhC6zSkApsTl7FZ0
z9v^!t_6@Pi$8M!A!Yo_$hIr<N*hdFXXInSK{=2{-I?)YrlvVraG$i}5k0bQ2ALKBY
z`Egp>^O1fH!|QK|6KsA*IUXB-L!46Xd0ORXR8DU_>*Jh)&#U}`kBdG+;qXIsLYL?)
z41je)ykt(|YYap_UW=n&95<)|A6;X3A%<H%Zqt_oycpmPiw7tZplpCV0T3V>Km@oa
zz`X(T2PhCAZ-9&dnE}ECT7{bB4V7ye>fbDs6(ABIUx4fY_pOs3C7Dn@+^Jfab3{yA
z*Jl(AP$)p*0676xH4IIhpOL3*xLwuoXDXlgP&lh`s7QdK0ZIla6`&Yd1t>vb%7)*Z
zoxvY%eq57LJixyVWxbqFK3XkYIsoC74MQuMg;)#YXSo3713VVs@c<P9R18o#z(WD<
z573}d=z#za26EbJLA5Z6$&ke>1?ZPI^moHhl>k)()Cll!ApaV>(=t>oK=lA5tECbP
zlAgph13cO^M8O^j@K%#htpGlc08@GG0LR*9viK7L>ICQ#KnqYez>@(Q2WX<`>jikf
zd8mE>DuD&b_9@lO1_2rdXry2(Z;182-Zu|xY0B;>AMU`$2527O=>X3JXcM4qfM)}=
z2+%S>E7dOQkRQsQ3$VQM|1`g)QHZ15)`1-B@>aV5?E~bpZMHr`ZyI`D73Ay$#ptLS
z+erz)8au0chc*i70UpU4vI98kmZ8YZTsZ?QU6av0Z^%`BkqD3s;3=MdfFM9D0RO)u
z^SDCdt2~6O&yuZ6DLw=8hAuS=r2}+T3>&Y@SlBq!Ex=0w<^-4<;N<|X1Q-+G^8nog
z^awDRY7EdbK(7D;1JD3^D^{-t=&bbCM_u++IgRZ#1@sHhUjeVHe1OV}H<6N%!yD?7
zvJDEbwPEN@#fts-c7S&R3=1$kz`LsBhA27TQ{DZ3fDhE=hwAd<03QWty*7hhFt2we
zJD1HN|DgePH<AWJ{v#CqX8}ekg^UXDNq|okk_4jzTxt{|lbWURin4j;V*`u}@N0nI
z0(=qR%K$&AvR|qEJ0&^Ez7FtBfN!a;wbHr9tGg{GNQHl|Xns)nj{zpo3^GELjfuwa
zv!bM&zbIcI{qF((2rwnU)Bt}5=#w`zNtK<bC`s^_0{&(+X!Jim{{)z<XvouRDz!R|
zI%zGvb-KdOpz{WpsaiUl9lBm>W|oQ=G$HaKW?q2#G^7}s$FLy4!T?9<PyrSNSj>)Q
z=m@Yxaia{&6tGm~^vdN*q!kpSQHW838laL_2iTwpXwPeCii&1kfc1e~$+o;{=)VAN
zMyO!9FzGi2*c4!MfGq*`1=vqZ2(T@{E_Ppl?E!WK*r}TQ_S_7{t_lx@8MspS$+GNU
zTG5^WdsP*AH)Le2l~L<JfP(=J2ROo*xi+IkM(7aR)i}gkx!uHu*H!`_r$~&DG33N>
zQZYFf;Cz5n3O*g+On|crX4|P%IuQY;3jsng<cZ-TjVHk609OLs2yipN)d1;6p=$xI
z2jI_E45a)4t@1osYGu{%Et;zny3OEEV6jC0QZ>xb`m%}!h~b_Xx8_8?819WBZw#3+
zgkzZ2SgQB+^5KjanA6T_u30e|GnW+4L(8YxXUC8~h5|7ZWT{5~laqHzM)PLzLKL`c
zn4vNngNWgY7_1E$MPeu#!~HQl5JRyT?u(&x3}s>{9z%(kjN7GDUNVLiO+sYLx>zYg
zB~?*2hH^2KkD)>g4>p%~NzeFJQ59j0*BeWEQ8D~r43%PdIEI=rRF2`H7^=lkJ%%bV
zR8_>anulnRRm(~7SfpO-Pz@z50e(WF*pI|eD~88ncwEsx8bj@vd@vb5=dg>rJS5$m
zmnBO7ukCeWs2jtRG1QBpX-q!;>c{X@42@Lr1~H6p9%>lFjXWq_J#3XMu;RCDa%dbw
zlNdTy3=gUnW~}BKe)6Q2o{r%e7UV6(>e(3DQHM=KEn@OP_FPOpuv*5@Du&jIKQG&;
zUSM&;ZAn~FHtqNg(OwZhfA?;u7&^z`#o))#MU}Nx!!-r#F&HtJ3bs_vUZ9*zZ89X_
zC?&Wt`LrSv<}{BWhFA>o7}x|Rk|knDD$7YJWLlNtElYLTi!pSI;b07hVt6Trmt*)j
zhF@ZMC5G-XjEG@m3_W7#8N;9$-i)DF484^wugB0w0k5e>v7)}}^3@pXsD}dE-cMor
zvtET6pe_fhob+!ffVT$6@Ky{T#PFfQydA^)iYGa|qkwl~c<(L~S~c-p-u98|4jSIj
z7(TvBKSUwPoM~7L!<9Y>voA))@JS3`$MB6pej39#)q|r|+0RryCWg;r@_EE6n8qsP
zPu1nn<qHLWsq(K>o@?{pD)>hll>%7TcQJe)!w+`_W?9<F1a<c(mD3=J{56K(Vptu+
znizhM;g1+*$1o>`KVz5}!#^=hj^VEu{-$|U3bS)rgaFedg_+wpG(|Op4)U+k+f>Gi
z7^bT#W~g4~Ejkq2K2w>;EOuox8K_q`3eAn7Z<El%7#79k;A)=YFrQBW#WS~QlPZN5
ztIHKJEKvkYV_2pz%kMUXE}yIIl?uP=uJ+c(ur7w3G3-*9^)U|hu|<{oFNO^Y*cihm
zre<MQN2!=o^II96D#*q%ZBsnAt9%EWru4QuhCNE=12ODX%u6&5Q9t`~1!x%Bul$P)
z$$^?b9K#Vtxi}t(<7f=WV#tak636ivPB1*iaG9ZRUB<~6&c<*qhEp+|j^T_#690`F
zT@Z6#$;`%zn}Wy-jQ`5mHs+PWUy0!=l^n-Caa>cBto>FD*A>im-H73)l8|`DM)J8G
z!yRRTEFOv@Ph3V4!VDL@dv6?@*5%>&DsLP!P8H0EBQq{zGT|_Z%Z3Ti7xKlC9Y@hP
zip7y%aUhezaTHK6!*#(p3dO-uA7SP>ib+)EB90<_Ny#gPA;aQ~@NpR}OU6-3RZ(0q
zDG`?*K?0JMj!R!IA4eH=i<q*CRXLT9Z7o?<P)sT+N(%E}9F^i|5yx|JRF31JIO@bv
zH;yWCRE?u%9FHhg{C%>T0;;RLhGIhG!*MVtpIS<!;Kj%jir~>WYRB<dZjox?$K&9w
z>ea%`b6fOeoCiHi$(zPeUy(J4BVI22loB=9*vPhF9F5{=tn|RUO;jxe*xqJwG>_wH
z-YpkqV$+^c7?yfgF(k5O9IfK;;_%~W9Y>ouy2PQy(N^(!o^`3}+QreHJ$QGdM7yG>
z9Tk&Kih#^J$B}Cox>B7%{gjjbn^i4rD%gs{j>AzfZ@H=<0j4~a!$BOeI9`t96*iO2
zsT5{PDdI#NNrfR9k!ebDU$|==FU0Ypf*aiwFU8SK!IXqAFU0&&BHTTW9&r$O^)4Cl
zJ>%#VM{gxOZ&6Wwlq7v=P8Gt*n}Ygb%;_J;>v7CXU{(SH;usi5g#;=l@J1Yi;#eQY
ze{sAS$6)f0<IgzWisS7##>MeP9Ph;OZX6%SF(i)n;+#y*^I=?uh4)oOw7?IPdE~~8
zkK$lJ%YDQQjbpSDY*-wfn}vtRF(QtUaZIZm{zPFY+bG3^m`@dkfK)zDKZ#>Z9G}NA
zR+&w1D_8|@eHq7Bar{apGzxtk$2Y7ZE+4qxDh?zN|7DDi<GVP%R~YK#2W0@fmCJmB
zqW>w5pX2yN!7R?eONIm(mVZ-X|E@|AIWdmE==gE`tEBxqj!AL+6UWucVR|Ul%PJ--
zd8Vj>Q`yEirmNztks|~WTxaBuV^$pV<5)oB%m~e9bXuE18(=<1!E@u7r)+~5*1Ir{
zMNHA~>NpmwuIG#Yia3_Uu{4flaa@=v_u5*niV&tGyj;odP;T;7Iz-=L@imGGfwfAc
zb+lVGdfC9<j3bmlo&+|<u{n-IaU7<PQ|EE)j$=<8+f<9TtDGFz5cb6mb-7dJyC`|n
z5N(fXud)Qv>{GY)$8kW3P0T@6HEHNpM;QDmd>j|!IL1IUFJp4cd}maV<8hpb<D?=!
zb@$e31#s9#K4;afbE+fGE0|^3>Prf9IgTp|Nkv_yU~$}5Y)NpP^FMLiRPylhmZB%n
zp>LjCz1>lsP7E)Rz&#1%BoIyDUh1c8IFdlV1o9^2bAc&C0htMe)m;|JQUK>9`3lxn
zJwvk<CVv726i_gMLJ6sPax0vWj}Ly2=KC_EqDY`b0wohDl8}#pqKbL31nyHn@x=ee
zY^;}WG^G>`;WCOzX_eFC%HEZ&Tmt12IH}@WsnWPVfd>-kl|b(V9!#K80*w=Bl0fAI
z9!lWJ1nMPFB_X}(;RI?X@L7{k)dcudt(L&WMxp8n)KKzMU~+pzRrh!TPb5%F!H*_T
zTNNk4V+uon?}p3|O~_%YlR#ZXK$vpYPvEJ9d}Y|&B*Zr|V)*9XAc2MnG)kaF<#6u1
zA@ineI2k6;F@fd@JgwwulfW}do)!rVUZ3%-YW0#fa&C%>eJ+8P3A9Qek`dzF)~X=~
z*T|7WTSeJU<)mz%!1D=gD<|!ld8Y(ACy+=WsR+6x!1r8R!CC@(0)~Q3g|`$;0=Dsk
za$zR{Hvvzz-A^D$fJn0C-B<!~B`wv<N{OTrh)*T(lIqs9y4y8@7ZNfWaJc@W!jQ6C
zLcTRqau$3!fmagfo<I*(HI+sr`Setko?4gDCxN~Re4gMGG+s^MH7X~8w`eK}^k<w;
z$XEW{vF_^$<Zl)lp!f__IqRbK1}T^w_hteEo5;zuw-xiD2@Ff%odn)Z;Jt)=O=J2<
zF?^pbP2fWXQ-(o}LcH~{Dn(#O0%#*6((r_Q^QFw6BrqZYzBP|bU{pdrVF{Cfw<yD>
z32-WMG%Zlo!l&&R#j3&ajByEkk>Kxpn3%wq34E2ncL{t?2U(ZFioT|a@>PO1c3=2g
z)r#>7<}G4=AV#V5m%DyM8=IhP=_iH%Ss5qw$@FUizbWMJDktU-B?Dh<3ICPA)C8uf
zTYo1oDIqrr|0jXT3PX6xU4X>7@N^{))jNYWuVA*6?VX*#9GXfJu_WeFCyWwF6ii}%
z0t*s2n!vFH7ACMLfvvRC1QsW-B!QI)tV&=hbM??!k-##=bGfRQwNRO?nhjrl7qea|
zb4>zkRovjMbqYf<{!?W)B(Rb3Uo~@!%E@H2D$XGUxzTiUId4y3M*=$&*p<Nk1P&yy
zn+9-GFtNy<1okGdPhogT0_M55KH}M+6~YG-IF!KQ1PGJu5mg0W`Li-Y$7w<dT%`*r
z<jDliCvYKwQwf|-;0yz!I$?n_pH&3s6o!HkPgPvZWz{@<NwtW~FDGy%0jqhqao!N~
z>j~VTHzkpol)?Na>66lUZYd#eCvZn`U{K=S5XqFc5=IjDD9U?P!MqB7tV)=no5jOP
z<WIs(AS)@?$wZRKmqfOLDJt=#A)bksg_0<oMC~LVOCl$UXcCo@sGNjIqDT^@k|>=-
z(WLBI5*JU(_*0D4CFK)`F!K@$E~#?Lmg_ZT)MbSv$||6o%FC;qML2K6yke3&Z{UF>
z9!#Q7lThwU4JTFTl|(+2MD-+UBvB=aWSdY`ic~RNEh)P%mzZjKm^!&H{HRhw%_JUC
z0A;9^#FNdX(sD->k0<d&5^a-cmqeW;>L&3_63>!G(UW1*B<dwmKZ&Q3Xh20Z3^i7H
zLq*Ui3C@IcQ$r~dH&HUoYZKy3bu$GM**uA-lbEJVjyd5LNj#@y<|P};)G~=yNwii<
zpy{@umle!ppYqqI_DMX?T9UAHMN$Q|BswO+yPec!X9agrHFm5hZB<Xofw#fFRs@7O
zwjrLmqxkqLca!iG!0FuDt)*I6dpwB*izo3X)tf{riI0;Ql0-U*u1O3?Vqg+4B;_>A
zD@k-u;>9GoCFK*Jj{~Ncl6YC&CCpjY9!c~};<Y6DCDAL1t34u2?62PJ*(CZZ%&SUB
zPRsBXdzoJ-NYFo5+nn@PYGFrHyoRkpZzS<f67ME4Na5d9`QRkpN}_SK@Y~84C=6jL
z_Pt!C(XSQR`xGOu95#QbE=l&0!jSXOB!(sNbrRnsF+7P8NqnBf*d#_KF)E2qly1q8
z)}9;6Sme_rMkn!^s)B<e_VpM=Mk5)gkY7+FPGkNjLmcmZsbu>~-QpDVw@Hkr7)eY>
z;=3e&Prwh<NnSZLrI1_HWD5&Y+Mg8LUsORd{5ko*FBH7{YZAXD@w?JhZZzP8@Wdqk
zN@7zIo0IrEiAjvoNi0a>pCl&JR8(iN$P~r!U-nnk@Kl<px}2`+B4!2!D;H*W%v5;R
zH7oi5&u-083Y?q7JjIQgq09@DSd_%-B-SLcSe07NC{aDUL=i7dV%gnrL2kKmV};Vm
z$|N`tUBz5Iky&JI66=z3fI*l+iD`Wj|0S_O1vEPEMs=5^NVA24C9yw=14(R4VtW$%
zRPDUAL&>~5iJc0wOI;Gr*$m3OCyBi(hEU1uASU+9!6XhPaYTtqJdK3X9#+Nq-hEU7
zxvD;q#K|ODzJOLQ;8YT)=}leXcg2|`&NAktQ7eseNt|b2q_8=K3rSogO$vSrmy)=g
zgq{Kyvt6MVB=KkpwNtp3#C5tu3Pn=5k;Kg;3Zzglg>yH>Ek+V8J2QpbN!&>yltP{q
z?oA<Y3P@r5XQ9UZGw(^^kNd+#ZVAE#yM}WwGg4q8lDEPsWTklgw1}uYTjlvu7}YjH
zBvXEc;box|xLD$^N!i@^sKGOtg;U^uI5{aqQ<yg>fBjqH;cqjGrcf+}$|*dQ!hI<e
zPvQQQTq#r{g_0>$Od)YgluDs=3guI%kOHMDlS0`P$|<;bn+Qc>o(mA4dpDz9hy}^#
z0rGDfW_mD%N(%n?mf&TT6wY4AUp<B6{j#g3px+;<mcq}sM7R4R%xk3ZFcnfeTr-7Q
z3LyMQ3Qup#Adm}l6Q{>gXqrN^6dq4u%!A=4QmB(c-4r)3&8(loQwn%8g?b7oI6a$q
zrUofAqVNjYP~|gk3F52P&BMHj!fd@InzOnTx}>0`@JtHNrqCgUjw!TA;kguArO;X_
zii+L0G=Iw!n6tfYQfNy>eVDI(3hfj@&TXlO%Ss#1(?V{GCb^i8!ktn$GA7iSqE42}
zLfBd7hi4Dkl-;AXT;jq*%8V3D8e6-tmBLRVkDJ1y?ZURo9hLtk@({y3U|lJ!O<`&2
zLUHz53d<FoOd*xR=P8U$A)P|k6h2JhqZD39;l&gNrtn4z-BNfdg;!H}Erpj;cqN5i
zDfDIoJ7#uIp+^cm6)W?$Aaf!KFz=&o^;Nfc$y>Pu{pb-Xyq>~<6j(er@h$-pGbh=g
z6y8kXofO_pVQ>m>rSP`m!@FdgOG)BfhVP~DehMF`;<<csnULUPRcb^EBU2cX!ccWN
zOy$EBpImz8qZIPf6h<rH6UB`jK2x=fxhoqnOr#%|!WSt_NnvUVU#9R?3csZAYYJbd
z@J$Lor0`=3-=;7=h3``M{w_BP{C~pdvYNn-Q&s$YmnK*ET)}=z;rA5&O5tyMy(0TF
zg^3Da@my}C%!MbV@J|Yp{~uBRuexa|Oiy8vl6*!A|E4gPKAytN6lSF`JB2ywR<3Nh
zrT#CUpTYulcj4XM`9BF+@8T4e@U9}DB+LFEKD=C^E?262mC9GEe9c|qa}8siLatZ&
ze=6UQ!bSzK3i4UlF}x*(9VzTgVQUJ9+J(2NoWORns+Nbqt`v{PE3iL>11apLfz=2z
z?NPv9dY=N;{~eO}+u|StOA04wHZyY$sr)c~O#w$$eoW;*JSYiHrf@0+kw%d;PN#5&
zF*yx?OP;d~+9_P60)NUp&)`p&X&br3o{AQT56il!fbft!yd?fIjqtP3l@!(=4)gL_
z3fCF`Q@EMJofJZ8++x^I$>U|Y0Ub{eWB6hskS7hK<+;`Oq~$(`Bw(WZ6GI?x8X0M1
zrV&mfe;NhS7<XG_rSZpYkuQyi0+!ttyv$ZG0TLuSL<%ZyIcXG1qi`CRKaz{e-VSH>
z>n?$48eCLHfIos2O`~*L#{6Pw+?Pi2G)kmVG7YV6HYYF_)G5F<TAXAqmBu~4=I5~X
zh!ZZ8M%gsVrBObOhtjB$Mujvgrtx4JmD0FB%}LkL1C+d7h>x(`2N@p|mDR11wek?d
z#K&3HG^(ZXFg1Tm@bPyK^^-;ob(u@R;x(xpg`r{}O`~=i1JW3n#$#zbo<_ek`ls<k
z8g<fmRkfmS8hxG(Yia0dJefwlH0r1EltQ*rd4n_>D}ZDT(`a-T{;+MRiGrKn#WYJ}
z@~n*JX*{hk&#3&_yLVeC;JGwf-o=mudA3fY&0S2}G}_&T+o$oof;-&BbWEd@f;->E
zbV(zZiIIkxM(B=6reUSIpchUWZdxw;+^ZfR4^|ETe^h-5xJ}jn{<$yi+2`JKE-u?V
zPbHb6fy$U6nJ%Iv<f}S+KI1-TQ>l<7(PT=bQbI)oGNw$0ltzgpDKsbzRPuZG=XCu0
zKhJvJ=Ut!mS<`0?d+)W^UVAiqX%u5vYu0pFanDx*IV9=-O5mDT0%M~nT^_tOA9{Nf
z(I_;rk`=|eq5fVtJ&LOLM~o;;A><U=Q8;YMb5&zeB%(-05s%`*K!6g4(k3YuI0{$n
zLm?f7bVJTn%|`tVt|!;}8|ubK!477htE#tBn)X)O4^r-m`j?dk8X9Vt5XIe5+!MvU
zQS6FhcN7z&m=wh`Q9K*P<S6coVpbHhqnHxK{VYHf(`g?X;at@RqL>!ND^i}%&s7aR
zP`qYgxYm;JLs86#;;|?mk76eKVHDM-6!U|}M;J>gPQrryb*?HM3EkQQmERo{tUo?H
zCyKdIEQn$uJ7H^O9t%@F@MIKEL@_uUjs(>C5|^ZXK)ru>@Tn*kv0wr9X|_>7b^DdX
z$onYE0&2^q%Hk-VqkW=yJ&Na}SQ5ocQM??*3sEek@H*wiDE2ogS{qP53aHDXST2d5
z2&gR5xo;xn3)HX2Dl4LRl?~BGX;`4HWPQc8E%0?#-Vtm!Ah;@u)lqDsougP2#T!v<
zjN+5&!GQ(p+9=ku;R@7sQFQC4&@ETPvkKG=w5p`AOmK4)Z$+^!itSOn9Yvb~%GU+z
zb0v{2QEX+;`NQuIbXyD59Z|f)x#(DM_U6dDQrexIE1*_@UmlV(1A^~Gu_ub(IN?O`
zeiR=>@l6y*qu3k8hpcZDUvRpB`cV}7qWGM%5K9}yr{X?~f^M*+W(!V*`XbcDZIsZS
z@PQ}}M)747hoU?#xa61q!TsYRy*ev@ZI67#E*HgNsE4Ig+o3Mp5IhI<NEF1{3q#*V
z@g3*(D1M6KSQN*jI3b#c+m!U26e{W%X?ZgEeH34H3m(}K{vitD+$v$-kDZKS#aD&D
z@+lySUnn16@VixTiXF0`KzlU&;-YZ(QN{JHi2M=7X->`>Drz_r#h;wgHI&ovM;~QJ
zKjp6|{$@Wcr=I1A)-b%B`VR{hMdxzrtf9qpJKhQRezCMb^Lr*qc?}gbgftXsxU-yE
zs3E9<du|t$^X<I4oT`W>3BAP{e(qls*6?mQ^-wuAqM_Zw5Z&+P)JhsEYp9{2riM}t
zRWwxB{LR>N2L-EYxU4K#O@pdoR8dKd@+z@ad38_IlA<?5pAHGt()?amPeXkTwKeoA
zuh!8}SM#?Q&L}M*HX9R+miG%VzFl}~d9{&-#u~2IFjPYm4NW!7ZLD~$m1aywLkA5V
zHC(8nxrR0x+G_atlgLtuei8X4N(&7a3u!6XN|5r_8cy{LkX*ugX^0L`zI!RyUc>!Y
zDwk{Ei6SJIiuW?XmMtS!h@3%<2L`UxaFvE0n*ZQ)wHU37U?)KqzO#mXQjD%5>87E(
zhHC^Xe(c|q(~<O~1vK>5aIJ;`8U||Uqv1LY{WSE~{L36&Um<)B;&rOatUx_JWeApO
z7^Gpah9R0S;dPByI)*lo$0$lp%?=FHFl=B^_o%{a>kS%iWG4~Hd$R%~h1{fJgb=FT
zoDUi$Wbdp1g=1KL7F+i}IvA_rR(3z#|J>j<4YzA}T*E9{Ps3~cWkX-(F%6mqU4x;)
z)Nlv8nFdRPts%o&R8VKMQ5+3vji*pXVjAd;Ye;BF3Qr0CRNhykeTc5+KWWl+ZKE`+
zpk_6AV$X3J#tZ3KL8YVeqh^r%uJ7XHulbK`cWbyu!@a`ij4GI@VUmUiHB8qqS;Kv7
zQw>uoY*{d7ZeUuUf+_4LP5keUAJ8yO19579g^m&;gC1hpG|bfSu!Nr1c|^mbB4L#C
z%8bH$#m|>S7;(0SXEiL=Fh{bOD>zT^2@UgwJgMO+4U04^(6CS>%LfEj4G1v$(;CQ0
zo)I~PIq!2Cp4YHh!&@4bXn29Hl`><rvQ)z|Df}ypsA2Ti!QsQgD>S^Qq1xyO-Afu?
z&hvp4ROOTKN)5!-k%Cv*jv8KP>u6Z7VS|R%8rEn$&=_kq9%4{1eO7>Y|EvJrI=1qF
zA`&8d=0@>u((tAb_C3mTI=pv%Tf-I(Jq@2|*s5V0Tc?S#hd3&@T?1DVvK7=F8s6b-
zqhTja+FRMJVgF+Ry3ZdA?9x!_q9R(A_#Q3URH4GCAw}<Vk{MF;frh;rK4jAjDN^SI
z(nE?qVjmk)MDM2>KI2H|IOTZM@VSN~8opu5EN3eCrG`TqzR+-h#y{uZSI`}leswGz
z{7S=N&A(aY-Rb(We?z}!|6dxR@Ti7wHJs4!y@u~J91}UyJT6g~EY+9@6QuA5@t&j&
zxdbGf_q_~y|HJUl8h&B)bWr)s&%LNegg3OmY50>fDqF3I@;hgH4X4=z%L4SC5h01W
zr-b;ohI1MMy03Xw!#@(53!<bz<k0_>Q$mIEIx6TW)DhJE>q4pS--|wXsiNpG2Ns0{
ziv)`W!#W~DN(3wEs3?TW(<-RM%Hn;gf?7pKRUN91YC4+eXsV;Sjv6}Z>ZqrqrjGVU
z!=G31Z$Ee!R7*!~9d&dJ=^3E6)58T%G{c`2)T#q~qt(~ZKu1H}A5)EVG#26y&z=D~
zl4g`JK^>RsxKQ`MQfaRHor<3$G5SS1TIje~M@t>8b+pm3VQzqrD#TX0|IG4uPo=Gn
zOLUO5W0|*B<s;GsBmAc)N{E-~s8y(5#VQO?F4u8|jt)9HvhK$eKB`=)gYM?>|IXyM
zsU=tI=%k~wl!3+Qs-sJu^QXg<bklMCj}ZAaGMDxc>?z2pwU?0II<6JcNARl40}Se?
zqrZ-*3C+X+9Rqd$Hu!l1Wx9XI+sHs;1A}x7rX_V;&xkrs=@_bGn2slPEYNX-jvIB{
zq2o>+!*$%m)O2V%Mz9L(13Jd)7^!0v<%Q}P9d}PG@*0OmvkHYO-7V5jNQSfw(=t;F
z)mwGkrsH<@u0nOj`tadkNn%K-Z@b6?GsC(LLq}XkLdTXu)zra{Xkt1n8gN3y*5T;*
zcB*f;9}Cq=LG_}b%4<_nM@q+dW>hiQF{q|>WOaBtTpbzRUxA!)Vbu)-irDU-m6qH#
zIuzbqI!*`i?1jN-Iy8B#a+i(?Iv&(9o#m(HbxhH5zm9u#@P`o-bxhKE>Px|@A^x*T
z+xg)!L3J{_<!I$Tss&Y&sX89eF^zG53xAyr-!i16M?1f*PfUuu98@3DF+;~=>@YfJ
z>Uda+`lyc2K8QS`V_#6^w{Kg5{*{R9bzDZCrDL{^IXdR*m>5z{1XWd0`T5wQY_Ri+
z(s??b(6MesaK4U{p#sJt|9)?Hp^m3?Y}c_v$08k1>v&nm3LVercvi;?I+k*9l~Wh9
zUdiAR9rLa%d5%LsQJ)uNI+=Td&29-V)3KawdTjx3asQW&yhz(}!M1heC8jVjL`Th)
zI$qJSmc`IPwO2V0=y;ty{G!N!-Qm89x=P0yY5LWIlrR>5fAEG5BKdj_D;;m@*v$T*
zsQjvHBm2y$@Z9doCRV(=GEq_A(($&A`VWM+vNuW!TXb}tT0DKRfB(N(QMWO=$luZN
zu8yyC9M-W@$1WWo>G)X3ZXNIGcwff{I{1kkTVxMS+DEDIad3O9g1yYKr}C4c^7-P>
z<j{vYzEo6_iXrtA9iOs+s645dUj^>d@wtwJRA5gS7TmAn3mpf9^XE<cNbNu$h4RiJ
z^^oqLLV0t@uP@2xw}ijeaYV-n9p6)5$5D=D9p#GDJ3}gOQ@_>mosMH-B}Vx?q|Obg
zZ-mqr-wX3ZuOFBiC#Y!fXB~T+DlLlCpIGMhB_~C{XOW)^zjNI1zVfS%-#AYixUseJ
zyN*9}ls8bpz-bPFzW!a%MQ?=9==f8|UpoHQQD6XuziM=rBe6=!InMKv=I|o*naTbT
z3m81Ay@Z603grxc!aq?dNM2}QeKV!V@DCRX8c+;`47@$Ki0;7b0G}dBiVcJfL=2P|
zsBECr@Yj*Jwo}pYKOtmNl?-s@hbHn@ehjDvsu`#%YUO(>ToGcus!OId1anJ6j9AM+
zZNs0g>lnVN8w#&0SWmFNU<1L5jr@Py@PySS2J}|S5Chj6XlkIDfeQ>=Xkeg$gM*8j
z8@R~8Wd<%c(89pQ23i_u#Y$ZnsnSN_qIaCP{RWqn6h1w%3~dawHE@XmE^1vW*v>$E
zrrAc}Un;I$;$H>mDsu_QKnKc4M|v9QXy8hzAPaw$fvXMhDX*J>PD04L2<a@CJfu+4
zRrrB}LGtbft})O<B+P=vps<&L-b~X#9|Qdi^f&n5mdJGm_z7oUW>FSkt?Brz!Dq(J
zeUwgRfdL|?m&GXK{BMBweuD)`zVBBs)bJmaZZa^!z@D<;Fu@zxwWJ{^8E)XIxw4kh
zO1YW+#K7$aMj9Ap_;bZ*!7+lj2yzMZe+I_VP~zRcGC)Vo<~;*Z1Db&;2JUAA8UC$W
z(m=|9VZbzC8L$n+*)i^q(3xBU5*`zz1#(M62`LzbX#=i-M~c)yX*gpbYhZ$byA5~-
z#u>Q7z@03B;lD8AV&GjxDhaU(pZaG7?lSxpLiQF4?=f(%fyoB$6Xl5pCP^rjsX#|U
z$F)JmWh|O^D)Tk)sDTFzOq23FC^*BwbRiE3PPzEs>;6n8$ckSaW@^O83_Nb&X#>v~
z{;Q%{2Id)fLilV0bJ!xnw-%`koq4)=zJVu2@|55L!G#7s69wx0S)?u!VZCCtOR@Un
z{;<)h;8_EU*-YZ4<T={8Qvt~m11}i<ve;5~V-uH}SY}{3=LZ8X88~L(IESr)6$ain
z@PUDq243MLU|@rRR}H*o;B^D5IN@v!^LMel_Ki6cS#4mA0e(FDhJmGvBOK1-id8O*
za1vfiQ&bGD6MU~((MAKCsA=F`mchVg16vGiWnD^3-ZJoPv0ClE(A(nW<(tB7R4Z0D
zO$hPMVY`7H2KE*E3qHOJtKnXeod$Lp*lpm_fkoH79eGbI-@JpuYyJF&kv*IN!v4&;
z*T9DczA$jWz()o?Ht;EPF;H%OnCl5WPewj5Fd(d2VU_FNr|O6I8Tee1>T`c^KMQ<w
zsOj~}cY^{44SZ?f8v{oT9AbZ7TKcttBL?~oD*DR6VcP0oAvx_lHLPyi8tyzoDYb*&
z%2@c$Ktoycym(6SEm~+*SUq9jd(NCDN=*E~DbBz@2F@Ay$-qeie{f1S@Uwwm4E$!`
zcjh}Rc!~|ZBz)2OFbDXrBH`r2Z<hOw4{k_BmZc&)?u?u<@V9}p91D#@e;W9UO&L~?
zhgIUsdZ=hn(KgM$vIk5Qm?$(6GyxOkOwP#)=L!auH_^Sdvj6p91rzrih|p1}m<X8&
zo2VaAgAw1V<w_$(CW;xiG(txSzq1}5Q7f9LWTLT&CMGJIC^ey)sAl4~?;>|a)GEx#
z#B&k#sX;|m?eNqVN_7)8Ow=|}$3#sN*DeUJi>U8M)LJGwr9*T~xvq(NCK{TUxGcms
z0`*NaFhSDmCjSKiUx*NoMbt*7f5jnbYNDBm<|ZyOae;}i$11$TywJqHK}C1J8Cf+#
z374oXO#ddfm5J68>tex{f-OqaHbOeo4P9cQt?=Gaza;HUTvg&%pZIQ>a+!(CO<ZB(
zU~h%fYzGq^S%rgzTyVaUnkM>~xX#4Ytc!`>45DP9(%Hn=61AI&&)X?o1iP9Tvpzs?
zcN5o`=wTvRqV^PAa&Ls3u2<eWzr?p5*Nu4((AUHb4+TcBrJ5-HO!Vjdzlnh+hEZ;!
z%)}rQLrh$6qA%Ct`WFor!iRBkE(Fm#lr6>eNnSns7u{%LxQUxgf3b*;%S6=SoXM$=
z-kVK~G%?D=XqMl^ttM_^vDv<Szigt7yePR)uuwJ?P)>52iQ7dd7eqDPgkeIrU|29s
z{9YD#-^2$dEEBc~$3)D;S`+I`#7!hj%rG&NbvKdXl-0_&bJ~P!;!YEHF{uGX8NqRa
zSwYXlW3s%!(D5R<!$fW&VglRU^w)nLH2w9}drV9=ai58M*}F_k5+UUz<D2^XLwM9V
zy;B(7#8eXxn3yIye2QFIImlBK7)m5(n$soahXjA^Rq(KhM@&3#Vu^`IStJurn3!+k
zaTBvl?2wMclWJz0m?M3x;)o!<bA`{#OW4`yo;2~4=^txDzCeN&3a)E`MJAp$@eD22
z0*g7gMD5wUGD$9l*S-k6z|Ph?u-wFpCYFjZxrJbvi9;nS$?UzsmrSfOvD(DTrhg;4
z!o*4wub6n%#A_yAH~nkJTUYq^B)_rn75&?lUzdhUDyp?kMc6cau35vb-YfWqAl25J
z{)z$LOub`bgYb=lo0yb|%_iP5u}vgYd)veo;SD~B&`Y<Kg&*Vd?RlLYCfZf>mlWPL
zvD5Tlx9wut))&5KVz+oH887d`_K0`!3(8&-A9DJ#P-NjF6Cayc^LlB4g-=X;YT_3Y
zr%Zgt$$_KT#FsRYiTx(NFmZsRsiK-(5n=knDyrPdGGL3pp@mDq?1Yma4<0h{m5IZg
zVN86_Y23sSj*G!Xbl;lzM)*+^bi4<q@H-R7OdL1;;YN2tNbXM3ze&!w)JYRR<#<JZ
zs-gQ?ynS8|{mO~d^q-f{a^RTwgX3{X(P^0ka+;hCC^;kYKTZ5);%|;VS@Nnr#}8uM
ze<X!-f&t4<ji>s6gK=O{Il=OR6$A?f85Fdj<oURYDz_dLTj*}#8Vg|y5ep?2Dq3i6
z;UWu_EL65o(?Tr^r537KSX5DcYk*SKf@;C(8{sBBr)OYj8>O0s>XzR{Ygq8z@c{2>
zIfc@~wJkKYz`3rDg}N5%S*UNJp@l{k8d$i6Gt#WUnc4m?)rR*kIz2nk*g_Kv<a9JI
zZ}6;5B^xWM%`6ZvurU8J<w8MvdBfkr!X*~kS-99jOAD<mw6^ey7OwP1U|sca8{utP
z{yzc~5-DtNfzJq+Tew2Vr4}v|LSb@30hgFMSh&i<)fPHh{)!XbmF#sDRgz93=_1%U
zANo>pu&ae`;?1>S&C4qFu+Y=O7@CExV_`&Z|Hgi}h29pfwa`b*b)AL2mOuG3RzC~<
zEex@6y@dgm-vi4m46-m#`0mF3a|)louA3DY%oK!EI8;J!kkp1*;IG6^R#f>!#sqJ)
z{5K<fB)^HdTmF;d%@#&k7;RyscqyS8k(&@mZV_Ryk~)@YTK;~asD;}kWrp6KFDE$*
z%w0non{S{(HPeDcO`9iv!)C{@@PdV<(#>LQ@o&OYX<iEn3rWj=8hvJ@a-W5ig|r3N
zLdL?~7Vfc-wcuH}!@`~HrJogYWtDE6@bQA|z;sWxSMCz;1VMVKM*Vv&e=&Blg^8B`
z?HeVN@(TR!i9u5=+)v9l3Ub+}b|p1^Tk!)HrdfE<!gLFdu=y-JWMPJdnHCT5$6w2W
z%`2&FwR7_#pPCUao_sx4>0U{F%);XqW?7ico>NUJdo41ilFGMHT;-m_bSkL}EzGqr
z&%zUIf`0yN|0H{?<v+`i$1AA|I3ntlOuEJQKE+{W;b{xcSa^<RxA3e5zH#OWKZ`B@
zgr8-VRC*bgxI~(mu_)&Q{xS>8IgV^JwDF>amn?i^;i$zweqx1%cP;F+u#!W-!e$F^
zS$NgLYZlhA6)e1NVU>k9EUdM_H?~Z3A2YIWwvxI=kdnHU{g=yJSJ{7ic!LEV>bQ}%
zEmFf}%Fwn-=gR6P3vV*<KFY~!{Ttf1Eo`x{-NFtFTP=T`VVm?HzM10ve7v&Ccb)HW
zLbzU8RoQ>jJ-xE}WMy@ih20kRF?|c~S=d9PabjoNeG-1(!cUde4=j9ESv`42m{+d7
z7Cz))<b2gDLNA}<Ng8(aJMgDeV*wf$Ef^HIb9lkSLqhv4d|}}*D`??>l;og=FD>wO
zFfV+EIBS)v@0lUKcJEQDe#KT>8YbaVPt}^?BbNUzn=dY{QuSL4-|^C8qu9nV3&$<|
zO%qu-Vc~lVe^@we;Rg#pTKLuSA7mz#syBC3ezI`V!p|0dv2aRq_pcX~{DqYHrD~%e
z{L{~Vvv6O(qTi|TVwmft#51D#7vm1C!dv}6Ep!@MK*CZjUmE_$!Z{0tHi9++HeQ=r
zTwnt>-Y8YSC{@eZ_-#$3f{g=1!{u#%LjLjk@T_-&eC{CUDxzXza<(*N<Emrf=xveH
zrRozOD`6WEzAv{?%|?lhiZ)7ZRI%~sqEICpm2Lm@B(Byn1^25$4lAyymR3=#+TbZ$
z4XgM&8LHc;VWXanXwN`R8?|g?hZWbh@%XOrFB5{@s`w_YWBc!p>FNrxDu(Mz33<%a
zpeic2cJNNPk&VVSn%HP+W3-K1Y&5fRfsJl9x-&Z)&26-|ajA`qY_zb^+D03e{A|^W
zZM3w}N_b1TedRrBj<mILiOAbgS%S_hFydu4E~hnYT+L$N7`(zpM<E>qP5!-E_IzGx
zW4iE8BB!v6kj|`QUZ<;#byd`VdK6z{qlb+_HU``1X``2o>umJ3{UP7m2D?31HLtbN
z$HvE1)FE>s$Ex_Y?PsIE?Z2}aXycqnC>&s;W>r75Ol-BZf6>)d)gd;nw=vwtO*V$w
z7-r)J8#mhE&M4mD^KQRBH=E545cxPj9AV>T8zXIuVlnteUY-c3IhYS?vh$W?3=^rU
z^3@w#;eVV=dMRTi$9H-ux7r}G3{e}J?Y}=QcA(oZY|OGT+lFbwvXQWn<oqwOs2sE5
z2+v*JD2X!*xzeR<q}dN`+-JiToeVonKGd@@j_FiY@3Apn2>D$$?ht-wUNXO`O8Erw
z-p%1KwwPYJdqpx)aFUJfBAjC5eipTv@`#P8tX&g@ZibBqY)rH9phzAPoG!=_n$zKP
z6Uj^)58M80dU8sb&Z9OSvw5I*0r}&3GRMYT8y~S*ZOpUrgpF4@LTwzsIyj%En-_Y@
z#*?<cb%$<&jfKMf1Kb7%7O`X4c*e%FHkR2~Zey{H=WM(n_Icjs54ipPRB_o=#Y+<T
zsjBKyD*O;4PrCk9=0zJX+gM@aB~j+|$eZ4kHW;1c72Ds&klSj-AiiCFoh@tQT^p-x
zthTX+(}<1DHr}$amYvzgMjM-KtY^!{1H9sFu>G6fGrg4Rs!H#YWdUB2-n4O9Wq&P>
z{B0XsY;2?1ZU4%}OBf?=6;1`}(|dh9utOxgqUHL-P8+*8$=G<$#$Fq_^}0PaKFIU;
zg;1YCIsTzY#vAy=#-}z;v1&Fxv$4;{Asb)W_~nJ*=fshrFKl#B)%}83)Gj$7_B<%~
zr6BK7X*yn#4s*t9ANk3~*EWvW_{PRjww;X=Homp-9cO;qUm#+8aR~7Fh}S#Lt2F8N
zHh!RGM2BlfRA4CO3?(@!lkLxfzX)>f<(uUTI~Dw9<4;b8Y_eCvzuWjj%5z$fMLNSd
z@YKI6kbm1KaQt_aXKnn$ndf-m9LIheCE)nTn{Z}I0te+Bo(7Bx4ipC=2ZauTg4_#w
zv#REHhmtV;BFEn~y5SoCW|ESygNTC?2NfM$>!6Q=N)9SJxY$8U2c-_GIB4jgk%OuZ
zR2IfT4adK8sODg5J!N?3NcB~v+)7l_K`jS$9MpA?TSDZPo7xU;@9bZrd1m19bCG%u
z>N{xQ_!n_*XJv1sBX8`WiGvGRFb7Q?G;^R`7v@DLsj6!~h&(98Ztj4WY?i!*gNq#O
z<#B=|iofUEqCNgYRx1as9bDz$Y6oo`v~|$l!KDr^ar~=cJDQ@I|MP;Ss=8HG`L8iv
z;xBV>g@X<bE_cwsXSmsjf>ZsJjx4;Y)_lUh$GFl#%?td+F=8hNogH*{aE*g54!Sz%
z=77tOHLLlL(rv4$m6}9&bzrRaeUu&!dO7G#1;@Wf>M$@s9Cs?nWxaW)LVK>jbv*pj
z!L1H%bI^~uJGjBYjSdDl80g@E76n5clsOpWV6cPzcLw>s;K64jJY4bGYU+*E)FHHL
zHT8O_8p$xnUku^u;v*L*!yVk@V3dQ=j{o-X(?OvT4sNEw%apsyLa#j-9O+=e)bNXc
z2d-+b+~Qz+Br?Xqqt*O3r2liUshZ0D3}YRC`@{#;)Y~0I9e57Lu|+ufJ8&GtBwxdU
z<-ithI{1TjSXamwpbLj9yzAp|VC%;nxDGN75)P7%zr8T!AT5M^`fr7FB)mzW{YQnA
zEc;${Kb`Ro?r?CggNY8fSbe91yBthlpRBI#tY6Z#x_Y;Rd)QqM7LKj1^7d(>#G2$_
zvNZJl4(@X>#Q|4Vxdgp&ZeaDSf8A8J;|S&H>godyh|FucgNGa}b+F9A3<onEJnY~R
z+GI_r=FZTfouOXugdTM;WNoPSuFygjV^`=g2agMxB}mC^2Xlna%}eGvctZGm!6yY5
z2oCzPkWroz(=8HwTJRacX9X8?B<>GAC-}S|y-S3=AXqdlu-w6m4vsrG;b773&`S<J
zrfr44%r4<zrSMnStZYyRuR3_m!RxHx?$8?!);d__V6}thQv#IGt@#gMCu$oUtQW%2
z7NWLMytycw*?%1DaPXFcw?)3i!8RdV{}bzc`tLZ{<zTl2y(_p=FsJaIgAX{a9sVu~
z?>oq4$9x(3VLr8w{(m`}#(6vRse{iP>|<qjhQ6Z0&d}$a4>yK(t_kgT@P*j(fZ##F
zF9i<?{;=C$89vMjjfs3vc*MasLJl?ey+?(AD@gBm4vzgN^m_+I>qF&Zs1U;s(nDB)
zA03>#M)}FXNe4d*|Al>62<4}Q{OX|i<Iryoe&@gu$;?j!r$tCP`JW>E%fa6c&N}$V
zLA@^nh~b=rK+KOz9ZHxWc|l%6Z#n8*qcF5EhF}a=#c*{DN(`YGYQ|72=2xmHhRQL_
z-W)0xZ&)xQSRz<au#(_)Qv!@aR~kbVkyI5_1*-{G7px)JTl8zkP$%Xa=gXa;vu}jP
zy%VY%L%o<k71xj9%DthBV`w1WhA}jXp>YgNVrVWB>NJhvf*39oZ!^I|Z-?k5PTU;I
z;YBgDkRVDJrDY7QVrU&hn;0&Q;j$S21W|HiQ|R|ip|*@zUA-iRc0$_c5|pvu<ipVA
zG)@iG+Yq`UhTp2I9b)Jh!*|<4SH{5KCi2kfQM*I*GK)@>tO<3Cp>qsfB$2MnaZ*5E
z6QaENqyVwI$ghc^M+}rRR!@=i66`H_tzaL)izfy8#n7MiP2j==2E;HhhOhX;zBtNa
z7{r!}qco1eF${@ec?>VcaD5Czd6aa(UppE`)2%OjCWdEYxPirsVR#HT#V{_0@iB~`
zcU!4NY^mHF!^jv$#V}g()nd3s$QWV_Z(i>=&Da=rl;O4*Zjbq&vELfQIxWBhxB2J0
z>aD7DSzaYd!^*!TbcxF-h7dD`$E7@W3{DKO7&^@fq+&?N5NDL@i|7(Ul7b9%MJFp|
z%ZQMLq}&rp=Q#mJxg&-<V|XZr88O@y!@RFUlVi9qh6%#&W(Rn?@SYg%jbS2dy`gZD
zAW2|eAcs?8xL?$!$G~&Er^fK0c*!3S$uvR!ZJCmu&HV%!ab^q;Gm99Wi1{a?KN7=Z
zQcdbSDuhD*(DU&aX3_FT{J67Ym=nX?7#1|Cx-q5jujM3^&yQhY3{S=Iq~uGBEf8DH
z3Iv!Je>bowhNolrIH_2bis%?+aSYGJu#6*UMTm|2d<;v3pWPIo_k|d0*HD+n@JYR*
z#by5S??+{?&Py@89K)6vwn~>+A^27dD`R*?_^UCjWrN1>THZ>p$FNHH>bzu43~vah
zxo8Kv^+GnsutCbdF$R<iY|4keDPF2k$m+0oZ%bbKpUO5d6eYnpwzFTw@J<ZxasaY>
z$FNgEKNZ|1xI2dTV%QVI`{Laz*?quXEkD^|HBUScqWdt0k7zDdKL&a!KTkf3VP6cN
zOY|=V_X~a@ctG%=p#S$wS()eG=nlv5bqqho@KX#&nESF~y5li?ljlcc_*VFLg2x2e
zQdB!3{CmM4{u6pKhM!|N8^b>_{1U?{+PuDUI)-0`kpID{CeMG5A-N)ua}TZvF!W3e
ze@f_If`5ww<-G<JpNoM=UM}vZ84xTGL>%K*_;Ui~<wa6KuuzbRC~<$%2*v#wqe!qg
zj<AqO9F>GHs6<Fb!K-VibQD&JqiP(z<G3~sHI8Z$+B1&oany*TSsWL{{RyOI9IK0z
zNpBX`isQE}g|*{2f<T=(>c&w|Bs@o&^7?T!h@)W~jpAr35gQ9qnTa$JPEGQhg!AEr
zaa<M0)p0bB<DxiPunf!m@pWk&7YlD0M=K$%<7h9WO&o27ToU*Hd-cmuw2S+WoN?(W
z*<P$%7RTjr|L0Iw#KGTi|I|w95JyKT!<BK+OUIJ1*q!3&8b>#&NN2$=|EW}W;n&3R
zH3C$o>md?Wfd=d)#%DTx;<!$%H=B|;`o(dBc>7C^R2UG)n$`ZeCJy9PfQDKb7$l*C
z1&0V;FE~_iSRA?NjB;Zf!{h#U{Wry7#$m-VB95Em7#YW?IL5|tYaFBFc<4~*Sk^y6
zmhP4~#>BB{eKGm}B<|+j0rJ~~M+I+>BUHbLI?eQ|8e3eis>fkS&_q$T<8b2WnNpZ+
zERIwS)r}()M_hP9Fe#W4Obap>YO=D~IPQt#-Z(s|(YQFq$8kp-cg8V6BzMK}^lZO-
zJUct!jxS=YyG5RhJ~56-aZG2u;+P!AeG>FQ98==BKaQ#5WnQe;zoiw<)TT)l9u%Za
zX2dZwjz{BoOrkt2_z3&V?m*5aM8<kt<g+B!dHI|;=EgBEjwhr+m&GwZ?$4sniTBAk
z7KnFY9E*i8=&3js<@wWbJR|&B!9_LH|IVw=OCn1IUl3dx$K%@q^=2sSUCTxCVjM3C
zc{$GC>0+gDh8FJ)yt%cQ<W)`ual9VKsyNQY5lCP)J6jxI#Bm^wH{w_u$F4Yb$FYvX
z>ZZU>*2PuU3zBSzW25j*dC8k`Y|ity;&@y57QwA~`8FZj1$PL(Bls?DxIMsRnGx~5
zIQGP`FOJVS4CDAfbUqbqdsBcXrSFaV=cRub$47Cr7RkqPd?E_;G6lNN#LEUE-ycWL
zo0A`m<I6aH<&ccyP#j;y@qHXW#Bo@noR9l8r>r=>5#dq6@8bAY$obTciT8LMC!`xt
z&K!RfA<56;{YgrDQiLq_FL`oG<W&1zBxeNwkSHv}X)!xP|I8QuuQ>h|owI_}`9}yd
zElBwJmP`1DLbGv^@F#Z8@a08PL6AX(2?P^R5(p(wlt8__yf}ec!ovwf5-3TaVgjm2
zDkV@^NU318a)IZz7S=BpsFFZcksNxVm?;M%O0@*4i=;*ZHHA=KeTVNzYUd?&gwz#$
zX=k8*Ufv*qh6yxc$rEU|rI@a10!@T7I=#(AlZ4*p30#!G#3Uvq(ISD1=_N^`Wdf~O
zuO#Xx(K>-PEJ+fzl4zU2B?<hUz*#1k0MEOo`z(R>30#`MWeHrK!0ZI(BydFn9TK=T
zf!h-3n81|@3{0RbfvXa@I)PpZ^iH5t0-Y1+Ch4dTg_%^Be41Soc&mm=N%sV<5n+!6
zdJ5sIM#{bFzCPWxBJ7typ9HQG-dAv+MDMcIKa0LUp8`bqvj_(zFgStX3EU*YAqfl<
za=qYC!BL?IBi<mK<i-RJ{^}<+A}0~NIf0QmWx>%27`uF(lA3<W$FMIYFjj(wt_e^=
zSFNUcdjin}?xooi&=SxSa1+QdZUUw#Cljy|uoH-jm$94#ytRRtc<V{xJ!+~6@!l%l
zl<;(3|IwOimQfOzke7^0;Ep^WFJxs+_09zDN?@C$a76I#yv{xB*tPsxOiEyK0uPJ)
zz67QSc}VbncBBNRB`{UIZELB0YpD+kpDxJg2}xw8;EV)jihP538Tv>9k0$V#2p<=m
z#m>{jw|w`X{q~)kz`O+3C9pn$ClZ*Sz{?4&NZ`o?7Kr{5!G#GtE#xV|MS}Y!muC`q
zHi5+nJSW2E1<Tb|>6m_pF@Af!kigOemPycyg3ARNRKK?RQl59Jt*#WlTJROYR}*+G
zf!Bqv5@f7$e}~U5FD0Q{lfWB!`C1_(YpWX)*qFf11a^sJQvz=%uqA;v#k;w+vRTMm
zf_F(#w<fSdyxRn~3o`vjYOC)guu^p172&?x>TV$)B(PV=dkO3j^1dKr{ZU)}Q257!
z9|^7+;`h=|@;aXisZ&SYm%!%<>`&l}1ine&XaWZ~91{MnNN(`vdgGV$@`Zi^hZ3Oo
zE5XBp?~d{JMKJV80-HvKcUc8HE)IX2zz+%h$QoT7{w{%ILXHcb5TyKjA;FhRe-d&k
zfnSB36#QB6mjrTZ)c;K+rv-l({DYHK9hE_JXGHR+;9r76>Zt!D{3To-XAw-|Tmpe4
z3X=X=vONX`D2MQJg5?D(B*7pm6ej(M^-2qrq<=m}D2bvZiYZK@x@blOD<)AXi4x)4
z1}fi{1u7?T%i#z~6%m#S{%}*l@v=Zw;VS1_9t0%FjF?M}BsNrxkT)7r{CFLub`o`x
zsGGze%?j2k5hBg|!);1~BpN2sEQt$}Xp}_bB$_7uYgrS~{4%e`C{MR4c(ZT8g(9ay
z^L$d&p}Uxqe-c^}x<qf4#PvxGWqFcl!}(u?T?H=@Y?nlPA(tl6K?u{lEQ!m7Um<wx
zcmHmmu458cCUI2~SBt!}V5cO`t98jsa{Aqp=$^ziBJ7dGwMq0zf~oaPqE`|(7AU>N
z%jmf*t`jmKiM|r0UlRQ#aVq58z$D5<XHXJ@lNgeZeqJF*hDr3{5_*I18zlu6^`<07
zi2UXxMkX;Tp8^X!I*HrFdyC*0iTFRkv4Xb>G7BmbZx^*_J_REQGl{z-lnPc7%r0jK
zTZofHEH8-*NhFa>A|*VXL^cU83A>K!3T8x3?>HfMByp#Z@e<0EslZS=k_i%Yx8Oa3
zRJb>Z2R`*1ZgLX$CH>EtA8>t~lEk(Ywx@7^5>u&@#Iz)SO5$V^4<<34t@Bsa*-1Q<
z1P_y;n<ZpM5;KK7Ecl4vqk@kKJ}yZ82kWTB%&@?mB<3bDFNr6Tct42`l9->wlS#au
z#Hu6~B*9;CElT2P_Kkyu3zK+C2>Ic51<xe$Y|?)#_fiszlm2(pbT1_FToTW-wB^+$
zv>v}Ll~2xzOOsfZ#B$Ljz9@up#v0Kl_;L~}l31C<D~!u`!R*O$hxw{_X`&T<{ij;u
z>Lk`A@h;n<wem(1Ym<00iOor@V`17V8<PHc1?$<kBg1t1`-K~m$h1{9CH*OsWOW_&
zE!u$=PJ-`!w$K6tl&yl?e@pI_1&G^|*pb9LB0mu;peBVZ=guT{v8Z1a?oQ&pB=!jB
z$1nUMhHp_RH-8Oq2STl$%HAYC6#IOX#J(gx7yhx}CxV{}ekQo9j=DdIFOoQ##J5Qt
zU}=;1I*B7me3`_dBn~J2Ut!XHl>{9LU)!Dc<|N;UJjcJISz0N_lQ<#5V}du81-?(>
z2jM?TI@F=?e40PA6H?xq|6akVBz{fe<`hPz@LLkUC($H@rYZc9#OWjgDHNn|CW$|j
z_$!IOc`K`j>OU80a<%eR9Tj!eH`*&_Id}E(zc%`Z^FQbCjuE;Z{6H*)aw$|v`I~9W
z3zAe!p+cS)rVtda<Ru{?MS{hG;S?hI&=MiJ!(=K6uPj)a@&`B*ubP4?l4>b5NTFd0
z)x}#wu%=)wK`Pfyp^osnc}cw#>I=_p^lc=(vEafo{}>!P=G82P3sSf)g}y0Vm_qXu
zI;GG#g^N;Xk;0`ZT$aMcDYQ(XO$u$LY^?-a3zi=k_+x<os7`lD3hh#8pW>HyzJzjy
z(ve@D!WAi8nZi{PtAk+26#f|y_<KNrNJq7+MNZDG2$WOOC50X-E_a}73f)rZE((-i
zlh@3t^~%ey71BF}oSaGZ5ebXYFNOXoT%W>Fkqi(Vl)^wEWrDe43>H2_FqaN<946l3
zf;Xgaqmc9Eyh*$x1X=M>DU43xkrW<H;g%G}q;OXX6BwGp*c1{pCig$5a9avy3RViY
zi-bZwg=h*|3S54nmrF53IwR#T%jCG7LQE7K$u6fx{kZ6`sL2#kZ0HpKZj5m$j87pW
z`q>mbA-SY-SrG4#-0#e1`roYYPGM3ClSSbk!Fwf_iK5KB?n_~c$RFm+pTg7>rl;_b
zNFGRGS_%&eKc8lf%n%_<K2u1pJm>MT6dq@bw^80mVO9#WQ+O$bms6ON!rT-Vu>kC=
zR&ZVl^HX?I_!EN12L=`hS(w68Df~DvKu690l?BF@1#T_#`7<dzm%{Tbe+rB9u^5p-
zOHz0tg=Hx$PvPXiz|s_cA5fJ+oWMz5q_xWelv9%u9>D8w{!ii66kbbVWy=2+fbJC`
z+%ZD_dJ3!a@>PsJz!%c3$@8@-tV>}%2hM!Iw{J+HNiXGz{=tpXviu--6KyCXXmbiY
z2ZP@UzQqP@rM#WO79m?x;1`Abc#y&!DZG=yn`vxL<J}Z?a&)J0K^nVK*v-0d8f0iI
z<vm)4HtenJN#T7)X9-g{n8KGSe3-&VDSVN_ffPPYp-V62^At9zMW3*7uT(x2{49li
zLKaVp&{4i$O53Qezrgsy%n&cNUF!N<-43PjRSMsy@IwlRQ}{ZC?^6Euo{f`=kI-oA
z3y-Ei{*B<xb=7Z0Ncn?-z_Ap58c=jxkmQ6A?u>f%f5mszRV%Lbw~PFg!e0-CPYRO!
zoWd`8ekz4uh5sfvt*%Oi)13S{1+`bIr12-^oY}b7E{(raIGaLY+V|4^BXWrMTnd4_
zyg*3q*pPB*loxLW!Q2@mj2lct$?J!N6s7+?cqE*cM}(B5Q8A55!Yd1w3Nrm%7FE+w
z)2Nn4^)wo$(I|}?Y5$hywVq0ywEuI=nu4_iYo~GJ8NUlHsjJpagIF((`a&8A=7P96
zoM#>I%htwezge54(KPK}ZpeujrqMhNI}Im|i_&P3#^l}w7E6^z%QQx$adR52(rBH=
zpfm=j(I$<yX>>`WYZ{kGI+vz#SsLwxGr{(>Qf~fF<BBw{O5^G@I!I{8G_Fklzbgfm
zb8~Me3GFO+m+^0OCekg9?rHQ*qhA`=q|qad-n53O^-QCe5GKM)PcFwkBDqd5cRgZg
z?o!oXgaZW!2<GHvc|Jr4^>0Yydf`I_hY9A&$<Q0cJ3Nh>{v#hL{C{bTO=Fbs(K!kC
z|EDn~&v{w7HP5v)ZWDgHU{vsA(|^A=*TriHnrY;Ux~s0rkLfs4VrfiFV^SLNG!khf
z(@3Q;A?*(?x^x;|p1VRaX=Kxw-!m|)XMmq$j1%GbH10^_&NOnuyO`P~3VF`mEjst)
z)45loGx5o3+?U1^^rkT-jr-GhOmwCSPEX?@ArDAu(}X`LahdxJ@jfERq-KiF!}*jS
z6*<)y^f*hE#%z(y6`Yfgl~b4}#ir(yX)H)%X&TGYSeV9BqV`-Gi-ar|d^(M1gs^JQ
z3SlCwETdEMJV#2t?v%WcPkDJ7FQ&07jn!$qB(YYcu~Nv(`7$$+S11u7`Kux)c|9*-
zMr(vK<qc`Pk;d9I)`?`jAPbNy29a)~2sh=+@Kzdcr_sqpXV?E;cuN}l)A%Bdt!Zpa
zV|yAqIF@_+yNlmp#GcBh94SMB@20UcjXmX+U1@(~-bZQdPUAgF(s)1ZKeg=@bbb$f
zARX+8%;Dr8ikx0<U;j9bPuS2O`w#5I&p5`bDf<MuxAXI~|5+vHr2}ak<TT~_XAAIS
zoG;V(CXJ(M9O9I6Wx-eMU>!=HdMI=_jjz)P)KiZL^67)gew)U3X@p%wT%O^B<IFvc
zQ)xUuSUHjQcW?4E8}9o1K8+vJ_%ZG8B>yRmlWF{%#+Frn5MASX>J|0;{p7!<@mm__
zn7)hOIb=A)r*W2z*hD!k_-7htgiyjKpuaeSjSG^q7B$KO)yw>e^dB(@y|v?!0vF|7
zRB!<o^p+DOd8S%~pDY!+P+Wvu|5K)*;K+LZr%XjIip5Lbyh89rgh)zURCN8T9=8Wq
za#7huEvDw8)I}8+)m_wJ`|?|U7pf2ziI?nZF6Q3gUl8w9gT$Jye<2|MxQ}1dIxgzE
zsPF#!w9?r?y*!^X2o3VQp^Mx>3XNSfanaO8GZ*b#w0CiViwj*ecX1Ijs;6>8V}-8%
z&e)Ch{QZjG*9y0Aaj}b*E?T+%p#g1Nv~~TB#H|H+3g{&+xO12;XGsRpjF-B&%*Ev{
z_)#0bd_3IFziMCM`lpU}aM97ll`hJL6<qD&Dj`IEzQHZ}Bt#yM#!G4!7hPR+bJ5*J
zUl;vY;6X~a-pVyDdbsH6;=$=bc6dHn_j0lO=_<Wx9R3b|a8Vz@>s;_44tnXhExf;r
z0W_?Ou`UKOQx`*AT<>C#>z@{K^{4_O-C&md`v|>5T?}(E%Ef4E_6okbK70f1IjHDH
z7sFlLB-R+=;${|dT#!Z>DF&g5=%o?Zsm|67^CRe6T<q_qjB)+J^7oVej@(;a+~y*|
zMsd-gb%g!!b{A0>n(Lpu&08;9M!N38aACUsN2#=)CB5QkJ(cGTI<9|*788sM@?a3^
zq+Fz3OmK0x3zu;R7TwW5GR{TDMb^cX*8-GyA}{xcLO$Nb9WMB-E<Y-{ljWz{uwt%D
z(EZs);aO7LV1JK`dtHBP{X`d&UEC*plAxX_pnQsp`&~@s@E0#7(L_PcO=BCmnC{{s
z7q7T@)x``B^WPP^=UvQ{8nM_9yLg1-#l>ST9(S?8#X=XeT+DVcpTgdOIqaM+=DB=Z
z>W>jha>#j%GZ?)j#3x0W{3#cUMDuBpoR32CjL4sLvDn3P!kI!Y5r!@i$qO!)3R%Xw
za}~(Ni!NRg33Xl;lHpnk`v6ygTz}n+gh8)K(0aj6T$pmPO89C)Dy$LmhTvKk>x5j9
zU-R6+`9UO`Tz{$UP2sfFW+5!(78hGxyl@Ye-h*u}wzDUXL)kd&aPbann#JQ;{)PrS
zU3giH%VHPDg^S)9T${mrF7~+Sl=1&w@jh!*OR11SVFn+#*z4j$7axhRd<Gx8_{7Cm
zy$Vjd_*Am~(#0VcpSjq_-Y62*<p4Xji!a#yUh<oRj^toIl>93fhh6;O;zt)>yEx+F
zTNmHC_{POiP7V@_m~)JN%*Aoe11`SLhn`QFI_$2*pEyQboO1E2i=Xp({UT*JpAM7y
zjnjyWKSUuX&m~1Z>rCK`i$A5Zf4TVE#aZF!Tm-~8|A=?X1qB5eKqTb^DWTEczMvpS
zXdilm87LWCCJLbpiZW=IL3{C1p*VwZ29XR(GN_k9{R}E*WRlN7&7e{Sl`|+63CmnX
z2uql&X|)WhXHYwXIvLcEpqd%f%J_CW?^r4FoaO6g{%r^f8)VQhgBBTFoI#@u8fVZf
zg9{`sLz`sKG~-VWIhznK%%HhMzew=EK}^4;<lZ`iHW{=Mo{QL4_$B|5<O;*`T$%yx
zO#2Y&y<D=pLd-&82O%8=ugu^oAy*6LY}=W|$e?QmIqx+R)J?Fvq|7vXNSZw}=#}yN
zDl=m4OuSD9*JW@#gA*C_&7fZfPiC+ngZ>!|$l#F-*n$HyD9d1mB*-X(G8mn~Eg1|J
z$&d`L&tPZ<!!o!@BsXMmV+O;8(>P3ljuCS>B7>VHXk-SXgyf1%1(GqePX^fxybQ)>
zaBBum2C)oo%i#754Aw#n7|lS-K$kYkH7JdobCxLBg6Er?I`Iq=8Mq=(W{?t+&Ub_J
znoJ}kLAhkdWiUR2i5W~1;T;)F$l&e_?#$pWkx)Mu_a5=yn~$3l5+`SHUj`3kFfD^A
z8Qd>9PW?}hI-m7}8BCYx59Ryq`L4w#n<=(>STHx5Xt75#cuXYZkF%|X&(2_ukhy|S
z2+ou4k!yna(yWZKFoUNgbbY?_ERy0qoxw91Je$Gd3|<ojDnFOO(hQb~_xTK#NEKcX
zWU?$O-SP}p=JYdoDT9~uaaV{M+m|}TS494*V6OFF7rrWk)fuc2zE+U=zVRQmb@`H0
zz9EB+8Enen%?vhYus4Gb#cpq9up@(asL4uYuvJXDErad(wr0!H=5%bkcQe?T!ER3Y
zqLypTU3pH;JsG^uX<y>zV&ysp@gq+D98DP<&ft>_KF#2Z3=U-QSqA$u_&kIClFs?O
za;<s3!yL@u%M1?XQ>HxUnDW;d9LeBYiB9h~V!fmJ-kwYFy9|!y%b81=Hu*k--!u3_
zEcS!okAgpCa8d|$e$L<*;im+D75ps&I)+xLub$4}Oa_-^(Jt#t{^S%rNGTNlR|bEJ
z+Sv^L$>5xDmarh}Pt*ZHc206+Q7((}BB_w|=bRq({e>@LFbgG%P!>g5)XJiE7R6bF
zv#60p%`BX<qDU51v-qUGT9U=NLBWbyRLY`qmj9;+lx9&Si^=s>$}8OG-+RAOUnNnq
z_^ZBJO_0xh)tPU_ASE}NVLsof4OD$WxK0*zvuK({v#kI5f71qPy)3S4pw`c#K^6_O
zXe6a=l11Yz>;@_w)2GXk8%KvP$YN3h^`b0VWWf`wE)@OdSv(<{7mJr~%v)#CQg|yt
zE`hFDA8eDwD-G1Pg47{zpT(tFT%X0zEH2C9@+^90(JPB9vgnXS$1JYQBEC7y`{6we
zRQ^%rDw=CaxN8<XVwY!BUY+$%s_Z1#S+I-XPt8iY@!lpG?k-4jjgTH$|B;hk-a_}z
z`rlyo7rZu$K0>Y&q`a??eyqiS5WRE*L^3dovMdG(ADqPyA=MZ8Z^v>tEQ=dhW?D5F
zzA+1)3o(WkV1cu^DT@&zp>R|dH|P0C*1c<hLb}me{M=Z%MI<C+v$!>jXcn3%Q|-1a
zZqMTT9{=i7qGw@9sGWtGPm^*+w<H~MCohi)sXwwHAtg)-rm{#2akI!|krh7ebYRBm
z05RTJAsL_b7Xc<`ai5So1n(5QOK?IK4_z9#JBxe7d#@m0vQHE;DT_Mg3Yfx_Ebh<Z
zfh?wF!3_i4PB1kKViUO^elUyaS<J{{W)_rC;UNjF%lCS>DG#%8vv^b_?2}aBh6D!X
zHZ#o1Vm7<YICLC`Ia$ojVrdr3vY5xtnZ;9CEXrbj7Ee;XGq{kw>w>@nDH{nL%SL3-
z(^>zCV{sPG33(=qXNB<oJohBR+i&Lnd=^WjZ<D{k9xKA-oFcL~>fu`tFJ<v^76UvC
z^spj}l^nkwN<F-i#j9DI$>Pr}Ud!V3EI#H)&tg>;tFzdi#f~i2WbsB8YqMC#wr-%Z
z&-3fQ$ipFi47fgvx3YLUiw#+9%wiMgjfU!Gj+BNf$(!OOCn0W;5<c8e?LHtlvZ1;)
zi)~qu(6QL>@a8{@Jz2cZA~jTZ(&mGT-s4jMJ4x0*R&-lKm5#)FI@0ahf)7}*F~vr^
z2)o4KVa0p1_%I6+x{tE>p`l9hX%?SlaU_dxve=i!=UME};tNh$jZ_{}&m;7c>q-x>
ziAO63v;K4R;F9najnpr*IK&xJO8a#dv+73<=WR<)$I>3n;#&^4EPi9fYnOb-$#A6d
z1Dhs`<4ivuIw4WM{|{35V-`PUaZ-f8WO2A>fbQok`ZfA@W;-Q8k6xlIJrpcG6YRG$
z{5#XH8vH}>wBYD);IAzH<}B?Y?D^M%zq|R*{%5oJhx4<f5b#jWLwOGc9-iUkFL+@f
zKwiN^p?DP!eF6argW_eS=nZ)&$}7`LVZ_6&ja0rL;TEY9&+lv%1uF^8l#(xRq*n28
ziHCL`s(Mg8RP#{X!^NUg!$VCEktRwD54Akh_R!cv6AyJnSl2^6Axycx2cEFk&;$Qm
zKyL#Ny+-(iaT`fef0Y$Am53LLx0z^OAkmLb3^BC1hl@O1+cm(%b4Zd)p{0jb!drW2
zlMihxlALCH50^4W54~BDfy!kbF86Q+tu#=fmz|`8=O35a#q%fgjvlV`aFy_@J#-R6
z`JM>{#LhYSiEvjB-8}y=`R<ZY4-eM}p@gO4XTLoqv|AVSC{wOwULH=5E#5mcFnEN2
zO7?Xg`m)%qm41T#1?lBk*<~IEdHx}vb36?8FvLULL&EdV^5r-6n^y*|_b}AMFb_Ad
zpOh&#dl>2YTfA=cFkA@vO&&(%xm8yg<zci3!-MJJ77t@QjAiSyz?>_V2lw~!ZzO03
z9#?*whub}9>}E?NTxz3m&$&R<^AFhh;5LQRm+tvfH072DTdK^3AV<iP4+lAcFsYb$
z_cl_K9#S6C9$Xe?Sdd+swcve1#zWS_gC3@PIC_!ddH#_j4|o{oVZ4VsJlyGFvWNRT
z+~r|{hlw60dAQp{+pd9oJlxA3*hHD|U4+*%A{{g3X_n^|#ty&~5BIYP^09vI5jfW~
zz>5@hrm-8WE<Ls~vg~x#hdj(E3vfM<i(oT6%w)dZiXZmy7#mvnBOV?VvTsZ=gJwz9
znB8m<lF<FQJTTY8JP%KJnD1eOhm9Vd^ss>Qvxk>GEcEb{hvgn#^stBx+F0Rz(Gm|&
zb4Yr4mW}K2^vK}zg1<IWpYu?;u}VUuoLRi!`R`DcdRQietM@rK*NklWB*KFNYITUL
z@UW7uS6~h2e-E#6R4xghPKRHUGPCon^6<LwR*n66X*EaXp+f77f0)A?Z1l$J=9-bU
zqOi`xdJptcjkw9fn;!Og_?$uyZ+Y11VVCEhSNXPwo_&?=9=7BxQ!%*J!#3gkS0ir@
zcX)V*Ht$pLE-l&Ee-GQ|x&kh<mmZJo_V59V)L89$ZSi{^h<iM|pG#+5A-#J&eCXjL
z&TP$spLqC`K^21^i<gALosCtx&qPkL-@_Lkj<B<N{^_^}m^EL~t`8sd@TG@C9=`H$
z*u&Q{+;RuhbHvec=;gfk+u;v>ugY2X>Hf-h9*%ivHqPH6cHF}W8I^~*|Hs1*9?p3P
zjKhyiuq?nX{i_H5DdQ)0?19Qj4?hd}Mevj$<qcm8{N~|zwlZe}4}W?1+rt@lez`0A
zQ@S@fJ9$oWR)YQ!q>#Or@`7=|IFuWQ^5gv7t(;!CF3s^+VVrNA0Y@XOOW`;K$Kn6T
zdJkwPs_%O|Z-dDsf#mUcSBmuBd+)vX4kDl;f`TA|z|3T3GMQ8aq*sw5O;D<U(z{Zm
z_YMNm1Q7wL|1;-(^IM;_{%hT}*S`Cn+t0mIlaXY&WxOLJj|`6tuZ%Pq*=1yrkyS>j
zY#(BLjDALnUN0<Cir9b7lP#$XxZp}>{<e%9G6eIro$PNj<z${qMs7;tTqM?J(!Yqv
zD<dBp6lTmXqac$4jAS|MU{=CH9NlQSiX`=-GIsRyQBrXkC1m@fBqe40Z9VEc@lvdm
zW-KG4ER%AKlv<ui1;&bum1I;-rdE+rHOZ?nsm@qKMyEzD%3fQxH@9X~os2rn>oV43
zq@?;X8Zd9j*eIztmeC~1o60E1XL>DIX`R$t%4n73L)f5=jJB+_OX}@qOpe%Ru$^Rd
zmT_Cf9ToTTy1U2-$k1eTmC=nR`d8`dDQ9;XJ!Fi|FYQ0&{Qj7;r;J`Q-j&f?#(Oe`
z$oNdg$#ULvh1`8)Oh4vqT*TE^Mn7_!BChutKVYQjhcfyn`A0GaF#niwAmbp$PZ-Jm
zQznBMr$2BO%;X;`V+{FZOV=<NpL2D?8Ar(Yf(bRC<;oPoksSR}M*G(OQH-M*-#Oux
zWhgRK85i@}hta(UQYaA7Wf(H9EA&An1Z9{qzEiMBL6f7-kc<in-Zj0JjIfM|jHry$
zGS0||$%xBXC*vm>2^nK$%#$%+##b`N$(SW$wv6#ICdim7V;YU>Cg;~OCd%|+&fXr!
z6%jM0`zO(i$e2QB`_uiqiij&LPM7hrh#1q@{ZGqmGi1!<Kw0cuCERmld?RD7jBjNW
zc;v}dR7|Ypy7A0YzNna0-qq8eTCb>BAY-A7Wiq~}zQ|Z4W3h}SGCnRUUd{HQmMd6P
zNH;uRRPxR$DwfI^^~&?nBFAzWD`c#Zu~x>htyzAM(X>L^`@;33jFmEeDJoXUSj`<d
zR8&xu0ySx+a9=4ZvKA9V@_N_H*dSxKj6E_o%J^BvRvFtUuZ&GHHp|!|W9b#&m21v|
z#e|mMJ#C>Bx##@go>VD|YdbAW89Qk|q@}$?I(FOn{%tAsy7cZ1fAwObQ!z23nAj_0
zpNvB?ey98YGJcb>U&a9$cWbA9cf>iim{_?Y^;*5O>&3)D8E^7ra~8K-cv!{}@>Ln9
zXum2hj?(HYF2aRe$7CF*IX!L<><R7{5sD6-=IdTujJxkksp&o|<D3kq0+)jGGA_t?
zEaP8tAsLrs{7H*Q#$_2-$bV$~A%i+{RmPXa#fr1iHI5!!ltSVUlYPyi{t1(%8!~Rv
zq!$+yZpp}YJ{yrc)CC#$WZdUwjE(r#bITq1q`zeRO`cyuoGLCJaOy+G`^Cj0^1Ve;
z-V)*;8HB{2$apH_m5kT4^T_y5#tZT#8vk3;qwA8|%=Mi1v=a81e3HxGp@cYH%-!U&
z=Zy@9f)oW%5O3sKHae|%QCIGo-b{+^wB1{{J}e>V3@x)_pQpXWxW9l)Qs7pQM?qc%
z9tB<n*%hQK$f6*tf@})XIQx_m!l%HmV15(#=63E>1+(gTDg07G94#Sw*74u^&R&c{
z!P^RQD|kmi4$g>@;$j(hP6ZE32nx9r%nkdAtbdSNv7~5GQtZv{%BLW|f|3eKDJY<z
zpn{?biYX{W9VscaXZ9~%=adwM6%ZC-B&E25)u((vp7(j*@?5OwDnU*1If#^2P)0#H
z1?3ggcKORHxL#8HS5h1)X^+^gI^Mjc#F2>orb<Nxl@wG~P({ID1w#~6RZvYqM+Kb}
zR98?#L0tv)6x38ui%L^ahs09i!)C5`YPwO;`(gD|`XAaB`@L7+@z+<-KtX#29TYTF
z&`1F-{MHH@(-x$lS1Hj-K~n|I6tqy#Qo*E5S(+=LK!gIdCqu~~4Ns;LX`|rFQi4KT
zChZufl@fPuJ2#XPi;JY5D<wKB=%Uc~XwXMNR|VZ@qf^jZL3i5yCQJD@NPTm<f|s2=
zXji=K?8(?m!R^b=r=<k_N$Js2u4{KaXKK3pD(I)+eFY!z#PzG_rf0_wtEYabz*ky)
z%px_Zzk-jL4`3`&+8)(`3I<V6%S)dq_>{@Q!48U2Ao7`lp;WH|Q^7C=pDR!ls5D<M
zQidz|Lcs`fyi`}WhVHtB-6It&IO^+MT70Qslmh2XX|w{F$?$8=F*L}f1&I{Gn^OV`
zGzGc>gS<DJYh5XCyT{IfrS1QKJy67UoA0x`LJBMeGpRZSVFeKdV-<X*AWAOxrxa5#
zue8v)7jdf5>q;<gD=mnRQ?R~(YYKVq75{hz6BK++sf&FSCNY`FNEMMXnfdwBVyc2^
z<O4^XCDYy0d6Z@_p62&PW|IR`9~CU5s&7h79{awbDZAmMxtL4MyDoi8IxRE>C%rC;
zQXo<>-SxvW=iNmqbo5-TV2OgI3YIB2G)d}0o7E|&k;7g3xwpzS=k;{=_X?IPSfStt
z1wSg-rC_&$l?qlV_*ua(3O=djO(`Q5{3NYbu!h!b8L?KuIt9PK$@UXBbv<SOJzLE(
zVuON>3VN0iUzZV6-*zo4BQ`16tYDjh?FzOi_N`0mJ{_>OD!5Zd_{-Y<u=sC#@ORM4
zDl2x9bCwlU1u1(J>{W1F!3hQX6#Po<r%Dz4reME<0}2jOy;|z*(ym20ysOHJhtpCs
z&q*D&Qo2!A99D2d!BGXrXkRKP3Y8Pp%87R6#MyN3$K^zsJ@)={Qo$+O;T2p^a9Y6`
z1!onUBmXHUrm)Sba^g*M*V2IRa5?c$IdM_JB?XriTp<rEFIGLymZ+GmSb0H%d{sf;
z+ulx<{nr%atd%;Xu%B@FeCY;xuL@PgO$E0U{7FlRma~dhbQ-4Mu7Z3j^3(a4g8K^o
zQ}A5DUkV<O3n}=U4nTJ$+Cu3Bz{>4va543s&t2g&|0CKfXe4P~irD`?@vnj>wEG3p
zp7LCbE^iOrGnxe^FBH6_O<qMN6)hXMPhaufFXw(m+emrwn(+;zL&bvfB1J{x>TV*L
zRm{2S&!QqLHQw!dONCQ~ONFG`M~B_zg@<)FV}|18q|4>$m!3YKitH-VRS@^9NL7(d
zMH)vlkg`ycQ1P~kTq<&_$e|+hZ4ZT<Dz-0l5b5=uBZIu7B9Dr^Z1DfY41)qH3aY53
zqPB`cDhjJ8s-hUTq=<@AK6jmUzU6)V@h8sWDoT)|qO^*V)SY^+KbK0yT&{xkT*S+$
zD668Hir#+j@-tF76%|!fQqi|`T6r$50wYB$tEi%)>i>w8L^_30IZ<83^YWqwV@(wl
zer(_-rH+caDw?Zkp`zPNsj1&pPepwd4OBFwF;~$ppSzJtZ+iQF8{x~q;uBJuu-=rh
z86%AwS+;y6<*FbOE2O;7ovl^0p~k4_uc9s4sOYSsi;DItI;iNVqLYgE(%f{C+_R*&
z_Dt!;RcXjcXTRFsiWNjxYK)5RDtf5sRY91g+<)JYD);uMm-Y8l(MQF>DN-*L?t@+m
z@6zBfe~+<pZr9<Vp1vyjsn9BjoSEHLZSVUkKH!ldUT<N_M=A!W7^dQLntBxjReYvm
zsET+c_s2J+6NO!aRD8nrpE3?+^xg0cQ9($Z{qLEl&K^H)Q&a1BhpYHP#TXT`3hTOW
z1oiZq|NC_BNEI_Gh%Xt5jN(E@Gg5TI4d=l*DPwE8->&H@b<BDBr<4FSScR^_P;p4b
z?<#^SOck3{Y*rDX!d1*vF-t|5U1%)XkMu>zOUrpFL{-F+Jgy><<d3pu`%1+)72{Q`
z{>nF5#S|tJRD7*sBJ)WqC{QY$91>EP%F!8&(-^0#*jPbiq!OWKADri#P3w`|L&aRO
zQL#qFw<_kT_<?5po3!~V&L8oAr(%(cpQlR;R4i1ncBGHO)e7_)l`Sq+v5d`@s3^YE
z_qc-iUd3`wTA^Z9F88w(FBL+T6jCb+viXryS5ht)R`Gb2swmc~I9<U_;b#@=RQ#l3
zJu4d-H!!xVC^Bp^$S+BQEh@IEI6!`-VjGQW9+&#Yxr^32xj{v-gOSKi6^|#U64|X{
zkBYrCBNfGX$-AG)J{7+*`HhjBgi<d`UNRWm!bM+7azFOW8R<K$(tohvx{5zk993~l
z#TgZ6Y3{tPtq!lK>^-ic>n8sR#*>Vv7*8|KsVG)e6f<1jiPc=^RFqlZJFnt`ii;{P
zag>xROfEB0Gf26r;u;Uswu<&9e1o=q6}MFUN&A4`RR-S9sq}dT=aq`0?e`Lq=xzU9
z+Wb{K3*f&1JY}U3FP!&P{H5Z7iiaw02XH5Vzg0X^u_AyU0{DjphZaHrBLetW#S>at
z0SpY_DHWpPeJbRY_dnWyXeSJySO70nyrjK1fb0RhQZc)BnkN8n0IyZNQQ-*SaYZ2o
zaDBNig%OMt&BP=#<68kZle#NldkYy*a8q@a1Q9CMB_T@ySpz6tNsReM@&(`zVC1xv
z)BxPY(z0=OX@xHl@RNOd03v{V0pw@>?ErEI@J;|Z0>~La@fE&Y0W{*0iT`@u&XOkp
zDwYU^yj&(l3$R#-3n@sAeCeIG);6F}IDiS?NJRqpIHQ~ZN(9g{fK~yN4B+8WCxv<e
zl%fU)P==MNNxf_U<&wNSlM0L#1E|ELax%3_0P{a^P*K&AN_8eR7;7@t3ZQl}wN3za
zlY9whtk2N~0W@UNh_Nwa6Gke$DU)UaG*2om0?5eTI;nIEpbhi3Nu^x??UTGi03Dfk
zV(gsMyD;g>NCkFJ>OBJJ$-EciyGgxw0PiJvp8)zMdB5a1d=Rkj3sLxxN&f&o3P3-U
zGJvM6ikAo_HEiMfwuHa;apxd%?=#XT0el+3-~fgM@L9nA<NDzN3=Lp*B~kH+^K)|b
z8=heSRJf2rWNr=D@=7ALx_t+GWB^|VFe-r20W^K$|Fev}rV9TfjR`;wARa&>03`r5
zfT?f1p@4nr5(ps3M59&(U<9zgl6a@G`179gdL`jtVg^9bfrA~C%i_G@03u9Ci3Sj3
zUZb+0=-2?h3gG^9-@*XK1u#B<S=4g!y#Qu7ToVJB6u{TaA7yorGMV`_8k_*8P&ol)
z=#*rfN|_PB%dC!>Y(s=Z3dNk56Tmkt&I@2J6Vkt>1@6S_tae32=Ci&anL2-Z3bpDx
zZrdWp#pE*qEM>kdfbRoX&b)tRF|V>9<4ue|2Cy=KD*;@kl^($A04@b^nWnF(YfS*h
zd0N*7ur7d~0$3lwZ>($xU}FGV0@xbBzD16oX-9hF*%ZK$MUG!sAwtS#HYUC;fb9Y7
z4q#6JI|A4lz%I^0c`1-V2GWG?rR)Lx${9(dLMV^{1xno?zyU7*U;u}yx&RIZ@H^N0
zzh*}RIF>Ad3ZaaIbPaVPfRnT_&Pq8I!07-;ITN72$+gK@#&e7mJv=JQg(Sbogl@#q
zng7pqT(5Jw?^hPrXcr3L7CBD<e*{pcwyR(Zms-NxI)Cbo0B#0AgaSF?cSTe8tn!lQ
zFD&A^8^Ar<;mHkXE&})~fCj%iACUK^`Uf6!9?0j)b;8*rtNUR9bm^Ct)BO+a*tGKp
z@PxZl;-#}{DQUnA>1hCDS)z)_l*QG!SDHw3Kc~&=cV{sj#dZ4Ie7vM?(zYLfsUf6+
zt}frumZ+hm28V_e4bYHDLv9W4XvnPLEe#$GUJXtSE)9|fw}v6rU9<qD8m>D<-OH=H
zMx^-X)l1!0FExvXtQvA?$f;pPQMXS+{DO1e1*cy_s)lSDn$>V+*O1O6jj_!Ir(i-!
zZ)+%i-bsY;t&7erHC(x<0T-QARI{7Tr5BueH00G#NJC)_`84F$P(VXL4PRAv6}jjv
zUc*H;?qcqn7o6>?yY`c)p{RypRIG--tGRAhcO59|K32`O=Dd@(jt?$68((ym(okB%
zCmKH0P)0*p4GlFk(ojxAc?~r*)YMQxLq!dhG*l*~iWpc$XjKGV+*SKkqHD=28s=3I
zRW*BKsm55H@wY1W(Z804+8XL>XrQ5vhFdIVt}5zk=(iwkfB)2a8VHH+c;c;JRnTST
zoT{R+h9(+1Yv`h(DUFYYwi?=LXs)4!hSnO|XlSX?pBDOaXYuZ>Dq3-k<Imd9-(OeA
z7H#LRzFVS8jP@EjXy~Y+lV)FWT&pVDf00J+`fpX?uO_Nj6CV%sccml^eW^Vfx@+j6
zp{Isk8nl_IbeY_@nlP$~cQyQ2&F)Uu>Y}%X_cT1HCVC%~`jEF&7kR4NN$+d;K*K-{
zgEZVf=>Jf|N91GGMR>N<U&D-_?ECElGz?!SeauK?R&`PIWVUL%q_lSKZmw*D$+a|$
z)bOQ-&om6xFigYe+_iVV@ok;t`<2e?e(@I{>l>~iQP2H_W*=onFzy=TCq7EUXbpyj
zAkAhD*YTGA`h$F9H2W@-tU=MBG7nJiH0T=WE7BA)?l@&&mUX^Ke>%I3$P(S=vowTh
zb~GH&5YZ5&UTB!9Ax4g^VZ4S3)C>({$pbZvqapIT`sQ~dkk;*-^X<%jx;=HZk!xse
z@7Ee8YM4gt)G$f24=Y1_?q~VklQr!9OPaz+WGZ>xk`yBJgO^hid}V);==U|VG|blU
zy@ur)=4kjv!%_{)G|biT?!V3z)x|sw-%@8wc_|G0-Z5Xp0u2i_d`B5wuI<&uB68jO
zuEmUP>br<9VNTOQ{3YE8sxErAO`~0Cg@zwAY}c@ZCZdu%OAS%3hWJs#N)4+ttk$qb
z!_OLi(Xdv-It}YJY@m_3F43(gy501XW+M#(DPz433LAM$D7s0*W(`|4Y|}s@S#Dut
zN+SFJcjt<9x-8vE148RMlYbYv`U$D*V8?C^d#I0t9U0MmJmbGI(xm^!q)v+WpoT-V
zYw37PN1D&ox`y~&!(k0aG#u4%Tf-d<$21(*a7Dva4JW7#8qRCDK>eDV_Pm38U=4AK
zc0~<mG@RwI@rCo8M&E0*cWeq)4Y8|+xJaH**fq4KxLiYA(r{TriJGDvN3UtPPRpET
znd-WbEyqb|RZZ~+weW%S237rE>P<!}YOf>9nv(AIh24MF6n8b;)9^&YQ(8M3{?hPR
z!@soOp7lK-_p9Z4sNq#jQLvWicG~&3hDRFyp=Ep8{=;*+SRkxYOI)nyUFmbRswJLj
z_)o)2%A(;pZ5?&oBd$Bk<Z{2D&Cum4T_}xe?^{cZswH02g01U)Lz};j6dllUy_U$N
zV`eR}u9nzeOAOm1ky2xIHm44kjx0K|>X3A}b$E1mb=#SnoN?wn?%a7W+rG54{zs)3
zwd~!%r^Bx!r;c1YQgvjb8PSnlho~(o-m;BL*0#<3jlAhP8q^j8Y73!*@NLE%y1kuJ
zG`Eg-bQIB1R7V~iv~jH+p0;s^lvhVS9r<+>(DCK4Y=x*LPCR{)QjnvI3%N<8P*?|T
zFYDg&-t3?HRdu>MA?DQ<C3KY3@sEMW21@BDtz(XkZ*-K=QC3GM9i4TQ(@|bWLmiED
zRM1gTM-836NRCQ6cGMP2zLO$5eU){LY3;7USe3CFV|7MqKc&{v;e6)&;ifb1QxExS
zZ5?%Vd)KO~qn?iX%o{Kc_}e@8ydwh}>u92*wT?D4$hVxk?>IMI@io=a_PDPZV{^t9
zI$APm#dxi@AcJQcr8ni=Z7J!FRQ{3Fjym#4YOkXM4{1k6YFmW`jxIX7>iAU0U>)6b
zbl35ojy}}*!tT*GrN4@}dg$n><9R7Jg<eeFW$dlfCuSTZ_SMl(#~>Y_==f?$>ifjE
zNPR2#KcHG@tX4|>b$ra^BgV=790Rxklr)ePA|%q_ys9mR-1PhFh#@*Y(=kQIR2|>e
zb``B7hUyqbV^v3duHy?GBXkVsC@IvDku>8vPTZBo=@_MBw2q(-lX{^;)}iUR>vd63
zbf`K4IwltOlJUTK(xkf*k@Q9`U5BBgOC3S??J1ntAcb^TI$}EFI>I_4I-*SMEE}Z3
zbp#Qrny_pKcS6Tl>OQrBpPLX;b)*xH*D*oI*Ho#FN!-Y_E|>2k$GLm94e`m`9^#7!
z`KM8(bp$<M+wAgB*FiXgRw9#GjHJwFa%PBsE)5Qit$~3C=INME%hP~lV1bT>I<Dxr
zs^dEyi*#(!u~o-n9ZPhq)A5szr8<`BSfgXDj_-9W*YTr{hjqjX9kc6*MSbk&N<@Cp
zv8|3EvQoz?T7z}%(I&o{XON-|in%MDNj>*@YM;99^*T1_*hJ0Ku~EmF)v3LwNdxK%
ze--!7w2118Ul=L6C8z(!1MkSXVq9JNo-elRIH2PoEh`;6b?nu#kCevlU9>{$ijV*F
zEvzecQ>W^RJzVc5Zbt9TzF&3wtpHy=@tcnI^Bns*m7<4q{I27aj?;9~TTdL;aa6~+
zThbBoD+hkcX7A+3bR4JY;4Dq+iIX}ANvA;M3@tt3I;Z2&(bTi#rF_t&!{~V(7j#_I
zafvftW*k#b%&sTa*AtJpgln{g>Ug5#sg6H%+@OKg@wbkfI&RS(rQ<ejq4h<z`l4%n
zF{r+{L-Tl9I-c;}C4Z}Lx8a_S`#N&hcK^lrfYxtqcca>FQkK*gk7!tQJf@vc$D#V-
zR(*j6qU#`Ejs|w#BK7<W(p}GV{73t_0T_5rr~Nu!>Uc$)c2QS_2I7MrX-yi4E)B$M
z+KbA0-&&k<wUGafj<b2(4g({9cM{2DAhUtD3^)x8Y9RDdX+{Ha=MU$k27*qrPo$=9
zZy?+TJO(NosA9ltAd7)~2J#!oYQSee7<k)&-$1H?>;}>eoNOSn8JKa)Gx3C!Mtg5F
z7ln1Hj{1*1L-YC58VdPmUk(E~4dgM9*Fcemc8?k~6uAuKHtfT}JB-~}zj0jZdCU2r
zjJrx<Zvg`Z4HPp_+(01%g(<IrqC_%dV$rlfL-Dk>YfeM4rlHul!+)WnptF<`2Fe*I
zZ(wM1S4lbw7${BsZ6wNY6=j)IjTA_%U|{%n65WNUcg|VSKqYEqBXLAdyDr;D(y9ik
z8E9;viGk_{Y8a?%pq_!625K3oZJ-Y6jYQW*;^y~K&fk3VEBo73a?=mY*Z95l4Ky&&
z&_E*t|IU|wFXP%j*EjySpNcJcP5PvfaF+HqHPFmJ7Xw`lG&j(~KpO*X4FunIUmNak
zN%cPQv@$T^s<SmC5z2n*3tziWva~bM-ax<So(|OP?rEJ2bmR^O8rfq@N@v!mHxk_p
zbT{w;r5fmApr?VpG(JV$y$rm|S>7{nHMc8zQtF)~6zxOvSSqbh0T*FE1062=-e+9h
zNE~Y<=#7HMjYNOiqvlEFTKGSrF>m1?U?5jxL1d7DPYmoZu+zY&1_m3LYv5Z0LkxUo
z;0psIXm$(?Gw?Z$zk!u`?7KbE27BYJ&{))O;Ch+Y)$JeeNCRIQ&<yAXF2;SM49EsL
zP4JKAwo${zFi9<)rWl~3w#pb_q@qYMXfO?oGcewOX&_`^EIDuymt`PqAZ8#=#s;F)
z@tuwyjqRZ$%pk;Vy}u)2p#ChW?rrB+oR_lyvB+T*^G`4^$-ra-UmKWcfRxmw_U$hs
zQw&TsFw?*+1Jihrr_%zVE^`%g8jIf=izkgm;U;3XfjI`gp+(e0bZ8<1O~kS$b~93%
zin2|`JOlF$Y&7sQ?f(WA8dzdrDNSNi@tuLPkDZtP@X>RwMYIwtNQ(_r<X<ULc3-2k
zWz^rhp6?ATH?V@dajmr8z=21eAE>Uq5``a`tYlneU^SC9$<(z>)*1LIsa)DEZQycp
zJ#ijf=ljLLCIg!dY$0stE_BaRRq{?a;oM4&w?rDzRP<RYZR5UgXQWoqDe*1?yA2#S
zaKgYI1A7e|GVr^BeFlCt@SB1C2CB}NF4S;U*eX>nmpXQlG<~mc!9V^3hP}%jWNbfG
zI&9#GfujbFkuSaWls)5o{EtL0LQpMpnu>dc(>fPUJ!#;Sfj<r0HgMX&83UIMTrse=
zshHq*H+bneYv7!L^9HunbYCDJGjNG{r(q5XB#u~N<Bb$Qy_eE(iSMd`YX+_x_=DQn
zRNOFdlgWD}><6`^+{#!`CEUdC7`SWTZv&4E+@r#qit<HVO<mrhRa5U9_{+cpHh$>C
zLjxsqf%IR7`5!kG(;B*^W@5%#|Gx&F&`ujfY7kEiJTvegZTkkEy1aDB-wW=KYS|0t
z1?`8;#IQo{mj+%Lcuh9t1qF8yZwxqsb~J?%jP(3HQxKV%zZHZt2v^dElB6KWn2<PS
z^l%apFOw`mWM$%Gn-g!Gl$0%qv>>JjF(ZiVLHh<*OUe6b5a~gPAl?olM-Y{Rs1iiZ
zAaVt9cW!E>AaVyW{G2CW5cz|A2nZri5Y@A}@&>WswEZUlo$9#?1W_=E5<!#<qEHZp
z*|KO5+wMDy1ktCNSbEMw-q^C4C>BI<Dv-vlnONIQ9B(E{QA-v$$^=oCi!IH0$+%n)
z<%6gYM8zP&EwkNiCf+~e*>&3Ux|zt)+~%d5i<;*>)X1tqR12a>5KXCsAZi3rH;DF>
z8bmEFt!{H6FR<^-)DEH!E7bnOE!>3lf~X%vk80Vd4Gn^57{vJVc2gS#(Kv`L3(}|}
z<-F(9=Au~;&4cI?MAsl%1ko~x)<Lx4iXzPg4Mi(%KV_%t+L9hbhalQ<bqkx@dqu|}
zIt9`8h}1cVb<M@O=HgLvk)?&8#s1AjXSX1_2l0LoA5eRO=t(n6Ll;D^Al?n4cMvp&
zMO%nEEkySgc4^|gXW$zTiG73UM|~fajhg*w3qiHdY#~~HnC-(L1_beO5dDMrh_i1a
zy_q=KLJSOIP!P>picf;L)k1h%+HEM)QuJzRmpnL#Awhf=#Lys&Ac8?WD(D@?_+=2E
zGZ`Ml7eS0*K9X_$G6$Ja*s{zqDu~fRj0r*xBEYE%Bc-Y|s%)8oS`d0t$;fL45n|)X
zL0B~PL5vOJD^?;w#F#{rrBNaAAQH(EGRhoBlNiKAwwb_5U;mGNMlF+AA^VJGPvPiP
z#%YYCH>>HUo4PY;MbIluEyXPAQA;tKaSr1*jB^>k4PqXX`HTw~7czdwNO>1ASscWY
zq_Q*!avn-r9>j_u8imm~j30vdF^Ik)^b28S5UYY%Z(@Uq)j_NY;x%m-L98Vg3gQ(_
z;t1&{G6>>m5XWfB(xeTv?r03RIyVOKGb_I^Zf4v>9@X1k3tKo!_FI|sTJ6{##Eu|#
z264nA?G2(^NZJ*&ze>|Zl6D8Nhjs}e{bER2ue!-#Ul6|r@mmo4gE$bxFFw!VAnF}W
zyDLivgE$n#=5*ih?EFM1P>n}u|0$MT9+0)SA|0oFX`hqAr65i)Kbcfc1#vpb&jfKc
z$<GCGp818Oa*>JSe)h{jTnXYTNAJ+a#pGHL*OQii1aTwDZ<5b5|C8}{QeWCq+zaA9
zN1rhM6~yCY>VqI2GXFcNJYw<><Gz;S-=tn~r<eNml%vmr_%EqHXYwM5mqGk6*GqxS
zXqxEjDh?AVCR7tUUq~>K$wWO9^-WMxW)n}RdaIat%Y@T}%Y<a2fQf=8+$Jux6j@F9
zO!}2;y2r%mJ`S&mET+9tzicULJWBJMNHvkq1pQZbHb!CMZ6;|ZvNNHi^o*q3o*Yba
zn|OywPR3j&L~ak6QOIK=FGoqFT>mdAKU<Pgpu4A#iIOJv^l}t7G18QZm?%odtwhgO
zqL_)bd((ogL~#=(xSiBgik31_+C&)>WldBvacH>o?{KM{iHauv-RmS?p2%>i0^^-U
zUgD%zHgR>OgUF{_omF|DXsoI+scxc%iJHu7nW$}IQyvec64o(MHyNcQQW}_OXrhye
z&L$dhtJ;`oYoampCX7uPo0(`%HandyOtfaDB}ZE^r@ky`MW4gAchT5t`)#^*thZ<E
zU}ABZ>>ZgCq0}xWy4pj8FHLka(cQ$-UCz%;^f1xW#78E^!O_dK*I*q(>Tlv*6TMBm
zXQGdZ_o;d1?DLtvCi<E7de8XxxzV#7M+Z4RAU9a={gCTA$?YM_6_RIwiH}WuF-{t2
zVvvbXxbesMW4^CiiAL|Ge`+FsYcbfw5Y9`vC_2=%zez!17?aN#hckY`ID&EVVAuFv
z&QT`bY;leuZ!~dfmy-e&BAdv))k(U-sl)>&G!wcBgB!n)s|%W#YGP$;VUkGxPqWZk
zP?%sM%sj#vH4!rrH}QImG}gpdRJ)039lS$Y3sT0hPPxV>331ZD=DZV=Wll0Nnfa8Y
zGOx9mW@5UD875}Z>e%C)Z(^2-Tdl<$6Ti?Y+&=GYZfApi-utTbjfuImRNIJeO?ny9
zLt!4L5^4Lnw7|rG&E9_3-QSt?&ZM-fiL{6uz{C=oWfRM27TSnaCcbC#10yNRX<cl0
zu3)4ng&#R-B_k!RHnE2JS`+I`{FJn(EM%OKaifW!O*9FiX$ZfNhnsjp3&F%@6W4b-
zx0u*!qSX#(t5t4tn{Bk*O#E(QyJ>%+YzOT^CU%+FO*6PX{eTJjchEg1_L|sdqJMiY
z9Wn@MPAUAF(O(n$nUsIeL8)s-Ne4}2@WUpK&>}T)&BRd?$4uPK=P9<%OBGFMBaU<Q
zgo%^n<R(tjX4O`lH*v<qSsKzd;vBiq*7S_J-n*3kXB%<oxpcwAMcQrJ+N+GBmrPtX
zafOycTQP(Kk?SV@pu)*9+KL;rwAXp5QnJ6v{1zjLf10?R<aemX%}x^UajyG}f0=l|
z<e`awnEcK7h>;4<HzbwtG3`sN(7$j~^qGnOXuA%<6~c4V{*23O#utnfeQDwq^BH^X
zk4e2r>W&anLbg2^Gcjgne2ej`_v|kONzAi`?0w$NoU(XA@G>tqLCO+BM#;Vq{2`=<
zkS&B_ArucGErjf3nJyI!Aw5JNH_x6ggd(G)#chQM;q4G|gwS<odd?7Xhwx6wc9>jT
z(K2$Cwjxgmgn1bc%&_+#isld5=LT6#M*+5+wkM6sFT}MJW-P*3G=$N;9AkPpN`z1{
zgo+_l3ZWEd`Ad;1gitz!GF(*I5XyycuC1Ug?$zbACaP3E1i~5rxrZClo*x~RL!gi4
zRSBUglM<^P)k3HqLfsJRg)rrarv_u~5Na|Zr50C2ghHJVUe9x6@cJP%451O5H3;F$
zu6FjuA&i`#PBzp*QV5%c&^&}*A^RBJf{{q45L$*XcaWnMb>yYgI)o=Lq&AFg87bN>
zg!arkgwQdB*a-(^q(Di8okQrtrFCWO#@L;)2V+l0b)T1v-(}vL3we*rB(YBj88+{S
z@IeS?ES$CQVF>+0_&tQfA$&4c`Y42FJDod27{KJ?5C(=Yh>}8>POcKdry&fcVnc|B
zFeHS}LeN7nLKqstun<Os@YO&^{{j->=Tve5X*lB-j3iPRNkbRHD4OCBln_)-8p9|j
z%_!qH104a5YK$3WQg+gVte7E$lGRxughPnX1Qn1dkXeR3VU%r1OmMD=AxsKkEQukE
zOO`x=$#}+$ykCbv6;XBylS7!Aw49REslaJm9huDxVHTZ%hp;My*&)mcVR1$h&3Fh4
zLRiSzzh#`y?U~1%@@7=`9Y+^2QjMf%)V?Hyr7SKB;rkGlC;Lmauiz?vWc-0`G6sjT
zujWRs4`D+HYeHDdHtUk(KxRK>G;g3|BU}DVoB#i$ZsO9mvd!iYw){`4wuP`gnRiE$
zP-AFU*~MGR?hy8nKWuTX+~M3C!af?79nN1v_$`F}%qe;(gagbECKWI2<wJNRgri)}
zCJV<xI8LkEq7SX&L<lEohvXzG;Zz9cL%6`%Pcxng;VhGLjM?Cz(k?Q;6vAa*(WG2q
z<zWbahj2B7YqV>H@J9%LhHyKC8zI~b;TGFuw1?`-D2nh-2zNQ@FD~s~2>1VgmJc{7
zBNySL5FUr{ZwUXePK8jh86`gn;VEslN#$7x|FKO*>WdIwhVY6upAZUKxUenlO$ZJP
z*)617_&BGOV!_3PIGAK&%xvK;3r-7@=X*Un>_7$-Bnxf}9t&OzSuFT1q_TZhHuf<m
z<0owe8E4~Y8e^$;w$h4`h_H~8b>eSZ$ibWnp=d6~+!o$plE*?mCV3eXTta>e1uXhf
zr-$q*gw}ftStyiKDr}*MMgKcw-!U#~p_ql@7D`wsW8u(KH-(Z+N;8(CU5gIrPu+o8
z4#KiY8`3LSsAxf_!O1D<<E2U#YEpE(RM|p@(oz)*RV`Fwg~aL>l*0}p6lx@SEeo|R
z)Ui<4LVL<(p&sX@?2Vb!x6pt|L&iqQ)V=LQ6AMi(G)pQiEi_N^7EJzWCt6u(ZJ`ZE
z+gfPHWYv7Hx4ob$DAfB}>d4~976w}AWTCT#E*834=xyOWPU>c%hlQTZyE86W;-$R3
zEWFF1-v2ADz35}1FO8Um{+!g$!uu9JurQQurY0?ywHF_8Q3DvMw3!p__8et{L1b@X
z7$<#V;ZqBPnGa$7%tA_s|7*XiqxW+bzqByQ!f*>;aCC%)kxZz}{2fFEwjXU_jD<i_
zmuVI(s20AOXLsilwjmEBt|e_k9fV;aXu-4)vhcly<rXXpVGH9eOt28K5Vh>fkg??F
z{nBF=j#^Tj=Hf(J(@~y;g?^)@jU7bFIO!|u$X4e#M)D})Ut5@HVVMQGaGOMn$ig=k
z=31CyVXB2$7M}a1X%?nim|<b2g(_(tQu@?#5Ozvp$6Air7UozWLi(0jHhybio`vr$
zEV3})!U8U8AtPn%!Il~Ji!Cf+eW`_vk~6BHR5I%`&_QimVc`c0KUr9B;YSNAEv&Xs
zeR=vSs^SkfeUO(vLrfQI#Mkg*S<6U$T*qXZ!%=2)+6K!$jo)bDe*Wy%P|wd6-?t&x
z%HcV2G5vH0vDv~Fi~bqdKF|Es!f#BrS=er22lJg4_As&ce+#>rKR@c2{@gwy?B(b_
z#({$z`;(SOEgWEekns@X?~I2Tk1$e}jB<`yIL^um#*>Vv7*8`&T~z5g3+FA|A+Ol#
zykOa9Uljf%=Re`NXyFoh?+M3c@|JzxD;BPj!@QKPS-8Q3_;m}52RZ&=q>QB8v~Y{d
zA)TTm-sUJ3c-O)`8aJ-%iG`;Y{<84E!b1yxTlS|j|7Cn+;W3Gy;~xw3{YUy*C4Idy
z12aBt`OLz9<V7!}%3(aWkaet-BaED3ys+@n!Yd1}Eo2HKbJ(65`YPz{$L=>49ATt{
z5$a<fO%O)=sI=jc`@=5T-wMMSwy(lc!*GQmh3)J2ten>!h9?ZVj_dX+ZHvS6u!Hc1
zktK{-aft$z;|s$dw*QaF-BGmZD28?v*}_N*W5PHodzhZjW>06HrIU9lJR%Ijw;98$
zv*!xi8*-5_iiVLpjCVMiCyatjC@C+Kd|~8gvPQ~YAV~@(Z3<JTrrP&9im_5AjIv=A
z52FM}ONLP@X?e8;$hdSE{fpUGe8q#Fa$!^mqhc84*@hI-skBNQ&HT(w{7MT{2_yS%
zXVoyOg;70>c^yR^R%$S>$-EY0ZN|+V1=&-m8%8}=h}WkPX5NsI3L&vc7)`1DQ6P$D
zVKk?a4`W0aEy8FS#(*$Broj)Rbr?Ou=o!YBYu#<a=oY3cXvb{R(Kd{;Yu)V_+lSGC
zNk_&`jGY<Drb`%InK!=brs%jqj_zUGe`cDF38v#y)6px8cUh^q)=hfvFy0HJPZ+<i
zarb5H$Eg&h@IEUaFn-9`pYbEc-KJw;7=yz2ER3OHd_oRjIx4Sm4-VtgFfy%mlK~Yn
zgbSp)Mwt%6VH_PE#^+2Hu6AGTDE6C<#cSOospDb$8~5=DMv+r(b{+`hU>Kvr7!!sZ
zh7!iQFn$Wdoa$A>m=wn3Falv{Vd!BP_HapGg%J#6n_r5A5#{+c8AFT~W0;X_D3B+_
z!kBo~9cQFyB8;&~P9FsSqLX)Am>zX`#)px&lbFExH5o7=g|bWuV`>=l!&nf;G%kEL
z<8($cm=VUzB%eh#j{iH;o5SKaVftOXy+*!G+RS5OY)M-f#&@(*#!73#*s(u-Q5fHc
zu{?~$<T<0Iaalb}!XRAAxQvlrCR{;d+es9@l1|4mB0q%jV;C#LSjGBkM$-4>_D~?Q
zmaC%!$Llm{eHe8D_ONUTV*~3O!}vLjU&45QlD%*?he3yrO(g2l&D@^<x_E+xvTwfX
z-WmqswlKC+Q)w=!n`0e&!`K(bE>7AV#vT^Qi~<$)E0<5={xE)HPC7+1%qaVzFs_Ah
zo&1d*<1lS&Tb)P3I2y(=n(-rP=NONNae~Q7#<Ps47*8{vp;g&Qko~1fcCPbbTwwho
z<7LK6jAV9&$<+*z?f(elMi_M?s29P_Fjj1H{zn^f7`MXsGmO7SNw>pz5XQqW?r`)j
zBkA{;+z(@5C-E0^B7cYRi21WH{t07s4(Ul4|FZHpNhmMrBtB&WiV`P<_W2iKcq7OX
z!OJiboy4m!UWf4}3`Ydc2wV}2*_M{Vn28aLcZ%D3<_O;6C=LEDWMA7!^!QRb)JaGY
z5V{#Xj1M}AtPwmvpI$wJ8WH#+@JEo!N>N5i$`(Od1lc*79zouuE+TlFc@D;$jJX(d
zGrq%^hmp#;>y`-fMUbDB0*nP23o#aEEW((Ps~Gd*j3pRLMo=n((#$I|mSHT*SdOtg
zV+F>Haw;*e%vgo7Dq}Uq44aw}4EoD<*IE(mI^-l?n}*sgO&{&46G7qep8R{#>POIk
zhNyrPjG$ozjUxCgf}s(N%;jkuLC*+!F>k`yG=gSKD7AS6Eh1<cL93+FiAn1S+AwL$
z*p9J1V+Tgc+mQ*49`Vi*bV=%6Bj}do-6QCc<YZ4S^lrr7Y6eEoJA(Hj=o3NT2tJBn
zKm`3FsM=Y)AHfG~LpM%8WYV8?N@~;D-tGuLCjGTUpVgof=`3^x(iejw_#}c)BX}oG
z8p62-Gq2hWV{187RoWAlinaF+i-2%6<L40!kKhaDBO>^c$w<c7Y6qE(`X4?f0-2)<
zV;}-GnM%f51UmI%m7UAr+A~U^88LZYLW~w;ID$w7QRc%six`uyItwyRL@+jje^MM@
z(ah30D$UCd=eP*QM=&9RuOpZk!HNieh+tBL{)h?lBUli@lnACqFfU?1tC|+U^ay50
zFeic;5&L0NMY^fG*Ey5<EJhkbQs|M>HxbN@;9C;+I(PK4pFr*E<shA&TP+$+pGlQ=
zKa&<l@LdFpBA|2ftF63?BUlo_?am@CQ+9Yfv+{YCMzD<9**N{4-}OBicNWWO(sOur
zcNT;{@@TA&U_%5eBY5=Cy^7o*f(t*p*F><EiKmOm`-Nv6b0R-+mhxT1#)!SS(WBU3
zSoxWJtc&dcn<DgIH_~RtEsPZ18o@T^+mp%;COa8-G45vE!?>X)_VFOoIR6^KZxQUL
zLEf5nAcCV29E;#!gnr58qHrjJ-;?}s1V@;gT?8c^kKjZEmm;_v!N~|tMQ}EPa}l`n
zd*~E&)0f##M{tH4KdXy4*hQR=;L47)I%l%K+ZY!jxJWzL&a{hN1O*~jBDfmCy$J3{
zaE*4h;nK|rZbfiCf<HJ)yXB1ty^rBpIYc5{yW9C^1a~4>2ghxi%0lUsg~YqG13Y&V
zA^a<X2N67t;8_F@X*?r%Ow&yhL2kx@@{*bVt~(<O<)w`D^z8{3NTdB9?L`s1iNF!X
z3)=Rn`w_fmvm37@3S?jIl-(F=fWNCC8)_$&c5R;{Qxut_NR1*}6mLcCs~#x|cN9+M
z6m>=a?@lruSUpkO=Y3Ilnb74%mJCAKV-lTo`J?dfa_-LVp+%7vMfNEAML~b6OlJ=1
zQB;YdY7`=hx1;t2a*im9G07Q4E+)C7D8PhL-(ix6F>e(4m@F@a{8Z*4`x>?&D}@*-
zT9`?ZD2gT(GA6xv6eXf48AYk2UY<$mD9SJ?o7BrO$tb)6^NLYaVp2J2L#Z_2hw0&O
z6xE~l1=0O)yfvbz8AYuqYDe+)GpSP)b)xurk+%Uy>oTWky(sEOu{*m&oUmaO*IiPh
zC>lr6B#Nd{w4?%~$p5ST{D_j8u|e}FS}@61GCPS?yNcFP93J6m7e(oVX>Fny-ZFbz
z#%1^2?W6YA-64vOQTVpGdUX|(zV;Ayj-pExU86WqS}O2cTCXU&Q6WP;-J|FcMNb;u
zagLt{*<sfR`x+|I&iif@lgCQEqj)chK2fM$#o=wvzERBTD)y(?gYbS7A5e8s^pE0`
zsC`=g5jz7ViOe4IlK~w4m~mhfgP4&1OIJY;?>>!Ua1=wL_$-Q{Q7BYJ6vLwUoT6#c
z2*%-z75QP`7t#NF(l;`SFS(neICTv3(aBVqqf`Rr3Phn%FUX(sdq~lvFgevo78~R!
zS%#waD<xJG;V2^HqJ^Y*6py=#C^<jd9Ox=2(2bNtlwMwy#xj1zIF4~V;{?X987DGM
zVx&Vb<(d-3)F`G!F+GYoQG64{j3{Q(kVY|^7DYGl<p}8>eW|sZy@huAF@1P9`zhqy
zD87y2J8s6jDCS48Ac}?5&Te8a2Qnt&>~2RXbx{<H*_aGSTtaKPyItV-Q7k71Sc-#7
zu_B5eqDY?xF%3UPu`-H_<8WylRz<OzY!Wz_z?vx5l5fP(D~@$h{1nCADDFkEK8g)d
zY>Q%h6dTF6qu3n97IKCc(l1eLqS;yN9y`cE*LM_%Z{;LX=;Dr|gga<&iQ;$iz$kXn
ziiqM6Z4NJ_J&cs=Ad|g}`xt*^{Ecxx<AEsXa&^)R$*yRP9e(2L$0MA2D~h909Akbw
zinB~kL~$~T<E!1LqBtGJnW%jcN>{<u@{^{6E`g~H=b|_t#RVFWD6WuKQ^#4q6vbsO
zgsx$yuyT!~e=uHWoV&*E-Hj-2a+J!XC?);L(c6r77^w}*Ovn8w{-U~KxERBOC?3*Q
zxz#y7hE01Nu>#WHQ9O#`AM(Q}-bCSu;om5pMD2TS-MWjXQP9!<6;JfDDE^D$dDOmX
z*{r*G5yk!j_9}kKsiY8pO$+&kyY~b8?^sh}Knx$nFd&9ZF=URRP7Gg6^S%{>Glmi|
zl#Ia@gA{{^;q4gQF?iS@Ee0<WGER*lOAJ|K@WtR~kqGJ31`0$dWaCsKl$1SYH!q!y
zDVigOoG}!Lp&;kV6~j9*<cT3SN2x%v$s0qy81g5TjB*Gwsw)&j;TVc>Dv3p6D9Tl2
zG$X^fcrq_#DHTKM7^)=g%fwJV$;-x2?thwEA%==vRHYayvkkSJiY26Ss>V<)hUy%x
z8AB~LsF56p+N@_-k}>6~%LesgsL!N941JkU3meAJD2B!yZ4yJ97~00rG=@tDoXuir
z&U%X&9{Z%0%!#z(R3fceC(Cv*w2z@{4BcYrz^R?tn36hjv{MX!9dS^!OH!vO)!sdZ
zcVigtlZf}=q@FSKieWx0gcN$m@E+R`@544^-;c@rj2|$5m`v)QEb!wP2F4JL;c|*&
zPz;|?cP4s*F?<@sU~+~%PC15suiQh(p7O@<SqwvC_Q7jd47d2b!OuC`Z;*Yffo>y=
zh+$NW{##5MNt0eTJB2UVfXHYjV;ISJOmRtx*)Na~S7QjopvAC0Aq~2prpI8g8F31c
z?!x3K8HYHF#Tbqu!i0_*loU&r9H+@;K9=#T7{<kLBgH{|q(Eds3}44EF@{Mo{1(H0
z>em<2<QNvjurP)x9Gx1&G$zwyn9F1a<IEUl#W0)soEW}|(MP?dYjn2HA%lO*sq+}A
z<oPk2{6Zpw?_yXK!_P7N!byu`SRKQf7?yB!X$;Gld>_N|7*=quN4p(A#L#Y;_s1Ak
z#&Bo1gZL`SLWhj*f(oZVWG!d>iE$kx>10W`o}(LL*qF>k**DP~(adtv7RH^7TN$@8
zZjWIH4af<{N$y%kUAs7GcMN-C*vp(sqlQuVm7`~RImq$=a~h3fF&t!mi1ByE!;D8_
zILd^opuwSBG)l)~I6)nc;S_hDlyfnhPVzG`oK12X3Q9d60}T<8OXR~bG>D^N99Lqv
z8pD4yH8EVH{b#fDSa(5qJ%&HX6JoeYJ9!Kb$%lFRsGav?_>=i<8f0$O-DKPDF`*7p
z3(4}Yr2aP(5}#2UV)%!nk7IbsEhPP4R-Q0Y2WeyoX}Bo7h~Xt|>2bUj$7iLbSJd*-
zSzgng^SK>;!%<QkaiqlUBrs-T%-lne;*7%;N4~gyFp^kLXYOY1Ve~R)i6bi$UmU4%
zWMl4Uq&H5fsI)k8?eu16g$M-_MI3L(kt2>Dc6#%~?Ill78FG?k+<x<|UJsEw4#IaB
zDYb><$r}gZ<X_YC$59}Tf^igzqkJ3{;`n#Bvv3?GnG}hmXdK13%;JoHz(EEjm=n3q
z(Nb}gj-yN*WjPn=<^IQ*vQ&(NEUU&*jrB@#RAy2oX-2K8p3GY-jvB1j{GZg?any;U
zE_ES}`f+45gD|53gv7~h8pY8(ZXeJa$C19>NlKHr?Nm(}o5k_*aoel~k3Si-jH6W?
zt>b7DN831h#PMEdZysH0M?>*#_AYU>k7I(%(;<$I+?Y;rbY?=kAGMi6!AdD)*)@)C
zadhWg8Q7<XurCMhx!;YWcO3V)#`og5)y_MGMq{V5PaJ)zseicp#W6CDFXMPWj%B4K
za*_|?I6zO{xiS6Y_$ZD6)bcn6#_{L4?4QRmhzaq};`k(vPdPd`jv-8D_7IdrVds(T
zLz9-nXwbsxBo1fg3&s)2RLU|cZa;?&aqmXQF@{Dao3z4|<T#W#)VTe?OJ|!v92%SL
z?jcBQR|-ZP!8p$K5cFVoV@Iz^i>0U7lTEVX_ElRrjz}C)^5>WoqlM5@P(_p)k0TLB
z&7NXx9ACvTE{-Xaq}`j-#?wUa_0mJJNi_Izd>zNcWS{}>*V8`x`n{WHa@@XfAU-vY
zX>m;FQC$_s>NsY^F_WXS7?;H{JB~SVe8bU&j5GyvnS9GQk8wWZ0>(kZJ!JD8^F@q{
z8J93FWeoNd-!mc0<xEyE{=oQS94nb<tKF;jIM&3mmS%yKb&Q+i*b>K2%-1t+VBE;~
zGb5G!3zJQZ1xjEmll|l*acpD0J&qkrb~5gbV;2+3yE~3O%zxYCr0728za~?EV=}F$
zI2gyFIL>nP_hjnHI1a~ggri5}IF{6pXOWIGKf$=Rr=XH4oQmUg(&kJYl!e4|ahzwe
z>sK#@3vv3Tp{-N66vt)eSCY!rIIbo6bta*$-WyDAGTut2{>kJv;~mDkakQ)HpknXG
z@mCxV;&@0qNy0wKq&4+7?M?}lOW;u)|HSb)jx0l@lmw7K<4MxL<cCqulQ^Env9q1`
zSseex@jQ+falGcjUoviA>39_fA%#)1Y<v@kBVl(ZLm`qWfy@aMOdujlZzbSNAV&f@
z6ZX5ot^`sO_Pf4P0`3GnEM{e-R4<b(jAwfa9}_>Lr<WjuYzd?#key2qjOmOk`2FFx
z|A$i*xe~~mKt2|8Grq%^CxHz6{2V3A0$fFgNbf3B_X{OZIDsMw6iwLCl8nU|DO#LK
zi45!|N--(TScb7#FF|JI6WCrzqELxR1;&b0@+t?3l{s1^fvQP`#A+;7PoRG<LD8BC
z)MBM}0`(H8&%6#}-DIu?2{cTgP`cDJ0c)YRQ36d8Xquq6RYl_jrY`i3?<JZg&^%#p
zM6_4Xt4%EuXq`Zt1X?DrsF!G!uwR<JILE#N(>8%mhDhBKSo)dNE`jz5bV#5h86@nZ
zYNrG`bLc{K)wiz)DG(XRoKh)D8M|}#9to@-@1SU}1l~=ccLMJvFf)N!3G_*zZvsjJ
zY6ATdct3&95*V7m2UJ1=A0;q=i|S9~z=VqZt(W*Xfq@AOPGCp^gQ%UH`e_0iUfR#x
z$$$tUaSEho;IITfPvFZ0MkO$uW;}tB35-bQB|>Hy87VL28lAux7G<`fiYR21Ni_x%
z&}cy=Fg5`_0fWXNfp7xB1WYyyaeF8Wm6p+d$`wf<nm{apc(O-iK&ctEXSDOH1jZ#W
zDS^oej89-f0$(REk;|c0Q6XeZA)}F$WeQDh0@D(ho)pO}qtY2k<BYD&PGC*~>k{}W
zfp7jlvc3dtrt*J(+<49Vj>P-E#}b7$SqqVnC`kyR>}&RY-w8#$XJ*csnKN_doS7k#
zLb4^YZ`l=6p+!kWS(7bGzx#Zq)Ajvd|Lc0L`?{a|`8=OzJ<psu%X9KDHxEmB2;^a2
z9^T;u$it#M%+JGuJiMESg{~8NV|G?DjU?}LSo5$r4@*R3DeSj2vN`0e-m*M=l!p}@
z`aCTEf6eG;RUTGLf6^PP%0^M7hfkP258HU`<Y65rY92P`VUyUb7yAwFSTJL{#Laow
z!UN%dM(4kp?8w8;JnYWH9`XNK9(MhIRdq&OQuj#`8_Vph%)vZ-&Q9>-JwLw4!=XGB
z@#9`U4(H(r>#1U`>YT)Wna2lXP(;PiJbabsC|~n<<iqfJ_$Cj>@^G9>is?JsNjZ~;
z6M6VH58vhC`#k)bhZ<wNKjb+Nu`~Rfhm(2uQKCQP;gqYVA2m<goEGsHPRmXnD!)lR
z>4ddCn}^@?@JAlbiFhjy=ksuZmYtOwdAOK|OL?f@S-C2BIS*Ha{3+P8v%(~Xzuf4x
zJX{w}C2hkZZsy^K>)C&c|B>f2Z|C6-Cu+BxyPS9#IT=?nW1W>9ofVIYd@7(Kzluy1
zS*p_;1q2HT7F3a;V(Vu<-w_YdD<W-Hj(|@%bw(KqyU}}96cye<MKKlGD$1%TCrXYA
zMMe41-du^&2{RT~Q9?yY)w%A+aG#1&E@wlil$K~2!TSXt5Tsdo6%VSoXIn;lI#ltn
ziux*^QSpe1M^)5jbegw<iu0Wnz5-TV#bYWes;HzobEc|_YAPzL7<4JSiVC}`Ba-(i
z?tNTEt5i<8Z?d0Ip?>9T_&_Y2msLXrv8LdYg0%$s>-m)GJR(&`#nUS4s<_ix;RT9%
zQc#&LO1GlUxHnMotcoToUR1%yCmO0~q~hiBS>F}Pq5&Txd`|42=lsmhYApDIih5lX
zM&HaR+*HL&Dw?TCZ14>|=xMH^g^IQ++R=%Mma21Q;}t<(Hfg1zweU7`9Q|K(Q(u*W
zewyiR-$fbH-1nM_3nAx$4fZ5wOGg!*RCHF+MTMavs-mlkZYrPZ#~>BmRXp)iW^chB
zf;|O$2{P$*Ax-@r@;)m1x_Un${Z$Nbm5E)H!77HR(D(Res~D<cn2KpC`0+1>;VQ-p
zAE9ETkWqr;RE$<JM#WeaLBp|}I4|=ZUp|sGr9H$6Dkh5MB*CdFCJULOVs8(}UhAT~
zAqp=LF*;rN3@#BW-cm7B#Vk>nbiJ_S_FKWXMVz}ZbB>BUcE#olRfS(gKt=DV-t}FS
zpbAYzSmo^!=qh*@CZytc7lna@QIZmky`z51{i};ozN->bVX9cF;zJd+rhEC$U0j95
zsmLLg0eW9Wl7*_6uVMk`?LJTOHNLqj=1J;1Dj4OcF)-;}5y{_Eu~2MiMuSD7r?W8i
z0}&UiSRy(Nn0J|qk5sG{h0lC;=;T>0e1(dYDt-%iC^D?#@v<X>(T^o{jcZS($F0nD
zDn3=QUIjUyFl^dY*}!?F;-ZR;oVVLDHmTUGVhh(3&TSQ6so2J$sp#FIVyBAjDyFve
zg^uL%ui0nf`Rc)p&sFSFv0KF+Ib`;#*vDDXRT(nQnXda)9AMH;U%0Dt{&0}%d{>2m
z{0r8EI~Uc$Ar*&dmYH=##g{^U-j&Tj<!cq+sQ6jMX%)v*{IDV8I~CsxIWBlY#kWG3
zRNLbr{-C0!kdrEYl%$_joD!1O|25+l&?25y@vH0MHx*}GPUGKIJjMIJg7kcj%ariI
zPG>;*+jL3AEm<d>e*yCQ^(U9Omwi`M9O|n4rQ)iJYbvfwU)@mgM_1<p6z{&>6#lm$
z#m0{oDnBCYHWwu>AmhDvRs6$--}HL?m^0Fw<wrh0;75Kx3i#pmJ7><kV_wjYLVl2B
z_`yIzJ)K0JDI%jjzw`f^D_CJa?(rjYi?doj+D$3yM=?Jh@T06B*?#2sQO57A_PK&2
zrI}H9aaSoJq@-XeKkjq&=Jh-bSA5?4MM>6mesRkAQQnV~C=U|-c+HRYemv~QBYrgV
zqq!fCN@`6%p7f)FACLKQtd3`29Zy9+D*3U-=dJ8V1E05=A63MXN>xAps^j>l{<x$*
zAxYH*YxvRG=bi2I*7BpaC@=c)l#qIYtYjTOh)?@b*Hu{I`hGkk(FT4r^5Z$-&k8ma
zyimvUybu=sf{@0pPNj(-bV9dHMSMw$_@<7dv=F7WAFl{`*^ib&S_!6e(E~fMjVNse
zskHOsRhJ*G<LTf>M?WI2(#ek@ehg)M{pccMS3i3A(bJD^5^c2A)7_6ITRkMb{CM4u
zK7RD|qqlSsdx>>pAYobk{21WJK*`u&knJ7hl2dg&?9#!0q{%QphWjzqk2m}n;m1fn
zCi*eSk5PV%mMmih#|W|l9504(5*;tdahxFIn;y!^eoPUaHKD@Bl1%esx*u=*F<X*m
z`0<t>GyQmzCyip0Hk<W7eyGgxBhL@b4_$Jpe)z>8Z5;3;DDx*BB{GD>VOVrlEL{gf
zvPb=hNgtXLO~`zU3%3MqL5^Lkt)8SGyQNF#ia1Y@-rn(JzRMT*v7(;mU8xf1>LNeh
z=b;@y{s2DkJNM<!=6cWgvDl9#ek}FlLqGQUv0t(;6a37NkNj9pKWxj6j5U6I;>Xk7
z_*DX&c+a=WkE5G1RttX2LGPxl8s}Z>$2!0B+Vu`UKJ{b0A6xy{CdvjsZtTd|B)HM<
ztT}()^ltWJizwu+H)qgbyBOE+?;&SMzrnpz#QA(K)NS2vA$$DT>ndI0IUxKCKMn~w
z=*Q<m`pIQg_RnF~R+J-xRKE1%?l$L?^(#@nX2rNN_;K8i@BL_H`xs96@gsZ8k8l0>
zPW0W|G8ldk1Co=jNaIs}{OrfCl62bDe~~E7{xkl~4@PN!){o!)_`{ELe*DQ}*^l#n
zT=3(P9~>Zti#(j`dD5KZva6H-<;PWt-VnSdcwOwd@X~<Dj5q!Go9kgc&n*rU@BfO~
z9kw@^b(gF0<?Mg_@C1-A;3z~Y4CDm@C>U`58GRc-MgWBZNCc1!z#Bkj0R8|10c43m
zjR0x};0vH|0QUsYcx+aY0PYQ7b~lCB^NR*hjLrjiIDl;W51?!S{kCM}2A~MJPq26Z
zC54m_9F@;Qn^M9_M&$F94xmf`_XnI-Fgy?dZ5YUzTF$jBFXX`hC^F+C0X!;7HNgr2
zR1)%-APp)Cp>gE^s)%#)s%|Rz<HDbCmFiM1Gd>wWtpM5w&>?`@0R(@{tRFzMjgRCh
ziPjN(I)J)D>IpLShl8GH0%#DxvjH>=;Cc2~02}XS^1-u40X)avzLKf0_f5^s;)@b5
z1kfaaR|2@(O?feZrUA4hpY45#y_b{KJb)Gf9PFkv3t-A5=by#P(gdF8f8WhH`Qfe7
zRsrYY9<#KTjO1+sXdA$FueY5TzZSr&5@=tuyK?MKcF#uW7(k~0H`4L?+WI;N&?SJu
z0SpPCYXB1#`+5Y>Q`~kF>@K*ruBR6rvZKT;&3Xr%OP75DD8JG}!q8WeMt4{G2QVN2
zl8y^<2Z}gIkWp4+XaK|5q5w{HSB7&a0~p831TZpy>D`sl0gMsjQG!$$#=3PNf2Ff$
zQFmoR0FwgP-CZG{D3+`SQzr*7vzv33b!q@_1Tc+0#cWOhGdQ0Em=!?L^}ajZmA3*Q
z&J?6QIqUW|C$@NFl!2BkA};_{YD)vwnMX}f4h>5zH4bZuLVCd2?js}^4j>YMAv`J=
z4<IJQ6r^Rl$8s1*=*<>yrFtl-0Okhp4G*Y|8S^+ICA_Nw*pu?T!y>k4%nx8e0L^+R
z?*_0;ie4DNdjTv8;C;5Vhr$=QJ_ulO0O4kZ>$J;V!eRY1cd1x5isWqi)Z4L#@}WdY
zJ`%EAa76$sC9r`!rKhXa0el?5ngBit;BWv(#Q)j=wgs@Hm2X`Dp9ZjA@@@*Ceuu0L
z!Z!+5&T@Kka{yZcD6-o*QQRu}@UAH5$>Eb`+XL7Uz|H_Z3t(3O`z7^k>73mG><wUF
z0OWfFnYTtIY<t29&dEFvhX5A#P(BafivSL>K0TD*^1Q^+_h<2NAYp%gDGrZHukt?*
z54W!ZAbuS{`q8r1n)jG=@^Qfv?DHPZNj1ZFqGSfLP6qH}0Bu5O8^TW<{Qw&2cuvR9
z0i0&H2eBxKUjq1*rEJL<ALPF$-uyy#5II4d4dC|x3Iv_i><_8T@p9f<0h|lqd;k|j
zxhi;3@RHzVL1y_gfGaNlD*)!Dcukb+f;R+j3jQrfGuqr1<2!<P1^*HB1RW;~`Gg>d
z{6fz3P$(9ZdS(a~3c?#irto_OvjlyDETXWGdx9w9D)dlPI7zV}(ly~pNN&*SnFoT-
z35g<DJctrO=f#<lf+VGaxX<OKgD4~Xepj(x%_<v2xgg31@n8^5f_O2=A2K`~M6Jyk
zm8H-}f_N;5ia|Uo(F%f7EAiVvUWRoOo&S%OMC22XRf4EW`!}8beD{p6S`d#1@k9{S
zgQyY2b3r^G#MN7wHG^o#@qHuf$skHz%B&?=I|yDfdP=a4;L}0W4WgcKCOs2Gec>Iu
zIF=2BKkKIQfxyA%a~lOgWa&Sj&uwxsmyaDb4#G1z_XWYSCA>|8;Kx}z2hk;nmx5@<
zhUa>l2hlEwSA%FlGRpgM5G{jf#kTZR7}^BUI*3;!$_}UUa!;l0|3qI4qJ0o+v%DYm
zREG9c_!M*p>5yPgrDG7Cf*@gFt-1!$O_Bx%(LLzwgV8sLenIpIq9<o{C#4sgBjI(4
zQt2&(c^Me(9|X6r8NmLW=UlS*m^*#-l+AzGaE^Xs?~ovV?x_q9VrUS2wQyJv_h;u!
zvph2_&xjyK2Ki8Q)~F!H1Tj|lXu$%#lyN~+?xirK%OaT&#KfTU`0=D55<&18-N`{r
z31VuHZ*arrbXt))Er{u?Qpy(#Vg@Iq@SxyZLCg^{Q;;^Zf_U5Iv&rZBDCW6}D#R}s
z2x7q=CzU}9LJuM&dN>HfwT}pS^N=ShWXN0}Iqgk}#s#e)YVLHL@Y2c)3v-j~d^WI`
zk_uw3@OiHCP7w2jFAyBxOL<qw!XWsb0<*jybmn}X235lcK`ahpNf1ke&Q4#`HGCMv
zvLLnvv7OzxBjckWKH-!IV!1@AtO)Xckdw4ZaJAsaf@=hwq+ZH87RrrTg4h}a_o4bU
zi1ngu2x4Opn}lx`yfDnU1GUocoWk)R4eR#e*6fLoIoWq`4g_(UdHJcqAU+FXSI~LR
ze|Hdjg4ip(<|8?Q-!k_F@i|8}$W5Lz_X{2nJQzfqcwvf%f;b$+*Fk&}#F3!$w)N2<
zzTz~l>-kcukufRvi#Cq_-<#3Lf;c6X#|4>mLdds4d?)04SN}oCNx>hvg1Nf$cGA6G
zzFYlE5WfcTtcHdfehcCZXQPIq8qNmsdl0vSxWl8Pm-0stmxK5-h;tltQFtPBft|2D
z<6;n(q@EAIt}swxxDv#*Ag*&Q<wEqjbHa0#i{9%B`Hi4+(#7z15I2QWWR_cW^18x@
zaENz<_=jt_hAa&p4f!-=Xegus8h93$Uqb=SF;15|?RBM~=G25fS%g=^^Y8f>#%*x|
ziBAJ<81B(fSa^wbzO+(AqAawShHMQ_XsE6sM?<cLhcrB_LD5iLLun0VG?dV=@O7o6
zhEf_v<af@{SQ$=+-w$Nmr-4XL@qP{EG?dryfQGWH=Z1{a(m>XY?=O@8^Sbh&1|pS5
zG(4)IiiWBhDrk62LnRIDF8X2KiuBW4VY`Tx#T5y2Rnwd^Plm^(;j|>@32hAxHKj%M
zH0Lz<Ney*0JguRYhT0mQ($H;-kAeQ_gd}~QSyyvLge9_1>Wjl?1ZmJfvakt_G(1PH
zp*y=*Lt_o?G`y<e1r1F!G}q8VL$h_h7d5=Z5_>D;O<8$4uWlv^i(vC#)||Z!TWV+}
zB6({mtBr=XlJtsTx+mXR;$z_HG4sBrp_AsEUANcJK|@E$mF_5}vLRi2E1fkEy9jm_
zq@NxddUCupjMUJJeW+ou6x~}x9}WFA4A9V5ys-!R$pj<e$PyU_Y8WJ`RQ?Mrafo!<
zPz}R03>QA(9xnq+9K|fXmGK+`4WosR(J)rSIM<k|>>@g$@k9+%HN2r=l7`7L#8cej
z7QXKMQqbo#w<pP22d;-RG-p+OQ^U?mcuT`f$v8`M-m-aHaJJwa!FBLZ=b52j!*0&=
zO3t;NfQFz3O@q$TgWjcFU^Rp^gf&Ds58w2f8sZuZ;fzLw!~}gyoJXcD4RbZjleXJ}
z2@OdhOij_hwDBDc^SPdL6v9~y3xvEU_%079SGRjBi-f-~$Y|Pru|$_>NbAcq=Z4fO
zwoAiD((2_JR&a7|&sfP4>!b0W?2cER7aKq3EZvj6o`XK!dE#r0=Dg?liH2=n?^+G(
zG<+)AcUC~Gj)&p~4I4FV(y&>>XOgr<!&c3CwQ47GY1l4&hX%e^MbUY+YFl<%{AioQ
zcS$bRg#TjpXxOV^pN9QB`gGLRaX`aC4Ug-1LdWMCzR+;5j-omaX*kTaSHl?%M|g<!
z_nc%w8otzURKr&qzSeMp9d$bMP22a46md+$p{4)cPdUyGdEZI;R>OBJ;(F%y8cv_d
z{DJGq*et$nO{CbQqSHk`aiNgD`dPy-Ja_}nOG&4Br1W>zv0ue`vDThMQ=H|3#x;t|
zuZ}-7oYQb!!wn7RB|CFn(QrY-MGcoUT-NZX6wQL@Cx2<DM279X6;}H%4OcZ>)0}HH
zj5-b3?7UrdlQkD_e`~lU<hI})4csM?1`H(WO6Jp@g%mpS>ljkhIVENr3+TwuQAkHY
z9pCp>7+9!RN2ZR#I_}YtrK57l;}b&rbluW<lOYe4BD&L81M{+q>B!bmO2>Wrzum&p
zbNF|OZ-MDhbQIT7g5Gvyl+>LuVt<m85KHU0-CHTEqnwU1l7&Uwuj2u!bJ+^u=#<y-
zpd?k$@sN&(b!R{y)$xc9`{zssUan-7*mVsj<g(DmbX3$)Nt#wgM^$NHWpS8pW(#@U
zzM9nk={`zzNn&N56jDR5rr?RD&M0$EJ|)pQI-b^frs0fuT~X=@QepP`y7Of3GdddR
zcvd*ie5f=Og@n=Pb#SZO!*rsfvG5mkG|};*j;1=^(lJxVOFEi~+o6KZb#xHYLdVNG
zTI$X=n9sbC%bP^4bhOs-ijFoq+A?*akD+}ZrCzD55@oW6_EFmDcvZ)1tV|zgJ#6n1
zMmy^0q@y#PH^^n^ucM2Ot{fmyda*<y-35E-=;>OXJeo!O-a7h<(#O^HJ__}I68-ve
zCiwv20|f`^_@Iw6Sojd(G#JJK-Iy_4#|RxGb&S$6ofAg!j@I!-A7#9b2^^!MSz~mJ
z)iI7q4|?02&AjqO)(8K1C+e8QIh^Ud0zX;$hkx7oGTjs%Q+50$?R`VXG)ZEVp;%vq
z_A_);>#Mve$k&j$!vO0rOUK(Bh|%8JI^JjXbj;C_r$g1@*TFxMDc#vFHK4=L5!DgY
zq3O;}LG0CTeHC3th?Vcl_wNvq63H2u8q;Cw+_OC=DSBM+y}pXY*{fsVp^OA)@<`_!
zY7C6>uMo*x&iRtwc{<+FF<-|59ZL>oFVyj_j&po#Y_ymEt%wD?c;4ecZ1gP>w<OHV
z9YGiCSfyh%bLp6MH*=|u4|Ocl(R)+&M;zj!PN#j{GH1Dt6*^Yx=rtqfp|ajbs^U&f
zXRY{H#~K|wbnMjeiH@~8hI1Qd_JfX3b)0DHo4nGqUdIL=ye)lObZpc?Ws{E0qL4E%
z3scj`=r+l?-8Ep+XF7K2*sWua_@~>n@m{f^!2uonT)tn5pm>l!0V00E^<RAcR|>O#
zspF_js%Jv@ibJNOZpfKqAEkWX=(xp<I(}W{JEr3}^Xm9k$9Fo;>iC__%<_J(;}kFQ
z2>(IHNg>pK)bW$c**{hKWOl0R^x<h8zv!4)(V4Wr>iCUa)K@tpNJ7iv)4YG^xU4&G
zf}hjzV_)Swf4R<OU!cQPxeOO|ToPWOpTg*$9FA?iE1bYOuIjj^V|yphO^!t;=N)jq
zJbqor4JOGp#YDav{<lQ=Qu!SncR80rcr=86ba+CzCxjv)=cF;8pjQxr`9mm>7I$Y9
z6p|rWNbvc4y_rI?1bu>q1?g?UArJ9hiIxqaXb8nZ$d+jF5K4rQBRto&SA=XX;N&VP
zytH5`!TSWcc{NkZ2)|$Ofe`BSbN<vYloO@A;Da1cA=Doh!a7%Qm6{<uCcI(@m4s9l
zd_06Iu1!@T)dc(JcWU*7@aiGdaBZ$_bMz-es3l5mSAUAN68^McLunKTx?ae6_@TZa
zuRJse;n|S$3)oQbCBa65&xP>3kjClg_KX)oXyWo0g)|NQ`_?l(G!vzH2rXQjmxZ(p
zp_Qw&4&fD-^PS~(A-u|QF;L9FYaz4`VMho%L(U()4k649Ij0jHL+B(*XQ}fWA#@3$
zt0>(<7#_li5W2G(A@mfHc?X5iOZe*{^cK=5g#JSM3icD+w9S`3{~sXHfgudt>?ngJ
zIz(`&;4s1TbI~J((`<YQqg*~ZgfYU$3XT)3vG`yA6C^q@gh@h}cX9|*Ts~FEmVFt{
zg`g0ohcJT;55aoVJ2Qk?A-olG?(A^?t7SP}if@OI7lInXY!1*|XCa*vLce}Wmj`nE
zAp}BvV98k<gCS@k#6mDb&_h_5oy8CdA>{IK2#a-ZS~o<DhVX9r94c|w#uj3Qz@)Tg
zLP%23-%r`rPvK9@yb#_AVLlJ29PhhK3SmJA!?tIP9^fIq7s4Xe;f8lT8?qzg{SZFl
zDCcBxukQ~+&bHW#Ls$|5Z@=<{VX2T0L#W>0vn=F1*K|)l&vI7#r_2>0tmNz}>RrVH
zxf<4musVc~Ls%2SCn2n5YS6R!Xcm8b8NTnQ5UWpi9^m;@I;3ALm(yuO2pioQxJk%n
z!7U+db@go_Y!}YTb7FrM!mbb|hA}CO-68B7>-{Z+Ga>8=VK1X0><{5U2nR#X_KaM>
zx%pCRYew_7zRyEwb32nw_#%WuAygjkJsiS`5WWrJNXWTH%3=C4grock2*J}|`C9N;
z2;T^yLIdJ)sXxhgA&lRg{Ua~+hnzQzz8CyKQcrRg$!kQMC#T3mIL!sNzjCZy*3CWH
zZ&pHRi1!zE;}Gw!A++q|Avqhu?_7JsC=$jWtYItPxe(5aH}VT1Tnyov5?TD`cqxR-
zAzTmPMhK1jD}{f_{4<0rA-p#@_b;*Mvo}{mxW?*9ou^FAYA`g5;!XBR*g1;-4&fHZ
zy}xohg#2L?2s`{v2zU7tAi5`vd|@E$OkE~1q{;sNO2IJJs$PZ+A=Jq!dc$~#`+tTp
zw1qD#jBkp2ePQ%k>nkiy8Xn9hzc-AcVYCXPbr{9M$PVMVFke+bPT08~@<<quhLIbF
zBGKYulorCI5@D2dc_|_Hg>k08^N+qv825+qKp17icu<ncxt8UH)H&d3x8J$j_)r)R
zixNNJsh8hTDoC_y7}dgfOn5~>CRGwrIgBc<a=X9sxbQlz@`RA;f;9wdhVi73T4B@<
z<0;{34@Cz!wPko(#JYm@1nY<KjF1L`&k8maq<teHWd|sYUFF3vUJ%~IRVE&An$t9l
zmqck6M)NRQgh74E0T1zI*Ro|8O{6BTxXSP_+Jw<oqV2-y5$1IRXE<IB<Fzo_htVO7
zj-qr6qf^*9p=IbIN@qbvySjuK8M=p&R*1dA7$m8$htXR|pD_9h=_^S4enPrP#Rdo;
zC^$)!!C?$>Er*6NO!zz*Q|28Z(UD<{5;9tFjNn*7+Kdx2UT{Jf4JJA}4owbY3J<pk
z?u}q-7;nf#-4VvLFs6sGCX7$Qm=VUE;a)S0I1ijK-U?%87_-9A!q6q@ZTb{4JB&GL
z(#bg$k96{=Vfe!ch+9VKCnyHwG+;CoMkLG^#GE3+Vm7;zCn`}YF{Vl`a_UwXb{Ox5
zu`rB;Yx7PRN#QBMxq|b=RXP`Oei#c}d-|dBUKmTlSQ^HnFy0U2gD@700gFo;q{)Y2
zEDK|07^@`pqcGB`%Z03Pv#>3zg{M=AA4|=hl|fdUZBn0gVSF0KdQrFpZ4$CUaHHT_
zzlZu};adc^hMm9s6zOU^=X}8Fx1C{p7RIhH3a;=S3ga+;1%&Sr+$*>*jQwF85dOK~
zK|yAjzQ^;$|L`MWe90-A>n#*<93Bnh=P*u(@fGJe7qKvoN$O8w91r6}7~hBSLm1zR
zXzuZR$EmW%!|Z9#Cnfr$_-870rZS1-R2XUHmoR<}<3<=a!}yJhSQr<>xD>`&@%cv>
z=fe2iHD>nzJe&{Xg7}XOQ0VY-7=KFiS{PTt_$!R7Zmn1%%SwlI-LAV;`a6tUVpbr6
z+Z;8n^U`pd-4$>DNNT!JPsHgN7KaG(3;*Bx6pSFl%}bq@-Uu?qj66$-Pq47yJ%Tfz
z^A(MtSOj_mp$M`g$cf;!2--)GD+c8S=|PF0cmyRRS~7w%LQ1)*_eD@z_^)R&Xv}bb
z1P{2WWg{pj{KRsn^B;`hp$Hz1;E@RGNAOGpk48`-f~pZz6SK!6s4S#n1eJtvrj3+F
z5vxQ%oqisV;E4#H7G6Dq8WGfrpmxOhm8>Z?Pe$-xE@pX3lIn;(b(+x$^|}$%bH%iM
zg9x6D;H3zfiQX`R=ObtwK_l_NjL(UGk{4X%MIlY3MCuGpMM)RbT=>g^EnK~21g(U(
zj^I@xtjsGBv=QD`u$^Gq34Nxk*CB$wQn8K^bc&#J1a_{shagFp2)eqwn~?4_+v8yp
zLr+n93BE4aTd<EHcUtQgLH`H_L@+Rd=@HC`U{C~uBN!FI=m>_0*)Z35XaqgQ^Kel{
zu=yO#Rz8Y!NE{>jWWli!jEi8r@Cgx26a(5!5+$9B*8y0`DG@OH)Ck@XZ`=ZIn%J-h
znEGY}Z$+R*Kyjw%c@d})%!=S`v7a5m9MS27ZqqgKi<0&eh#=@DIeoIn!$1<2-i}0I
zMDXPbXNE*0&O`F6B3K<kECODZF(ZgaV9{Fy^CEaBf&>qT6`9EhcwSekXU@t23ct3K
zis1US%()RLuQ_CX1PdZq9Kn(Z-et9qW-W~1Jt1Q&Ix}{W@b`)HJxu*Tq9mg|SxY1M
zFoG2vi*W8T!H*(X9>IOx9fgF*z|XZ4SF#^|c21r@j$lm$7bCb7!6y-{jo@4aKVHmU
z7s00y9F5?s2-ZiiA%fiz?1^Aw1e+q*&NfD{If5+_Y^8k{&*sryA{`R9F=@1yfzh49
zKZ{_Om@z4Blg_d?f_)Ku5y7Dd_D66af`bu!E;h9M&sEwujfW#R!ftm9O_!B6{yKth
zs7LTq1jiyc9>I4Jd@mI^5y7`^(dmlO+Ygd-Qt&@NB&Q<yIf7p!_)U^dNAQafX8h0W
zOax~m_&tI@T({}!(SRh)&$EAgSr^!E1C&1pC>;0F1C`5SU%<eh5nPGjuL!P2aF+`^
z*T#X$wFquT@VD^m5!?{M9%B;2tqAUjk~XHoq%{900*`@w24FaT@*9prhO~z?7BrAy
zppfAVL6!lZ5U+tuAvC7G*y}B9pooEc4UpesAXvvk!jLA!Yy&xlbE)n1C~^%b271wh
zf#Qa<t3U|@CF!$@m*09QC1zLhd3qSQj}<de#z6gnN<#yU4BT(v0Rv?XlrvD%z>|h^
z)uOzC$_A<!c#wGwJS-yh#|%7T;8BTI_#f;wP^l=<N`j2ixT<iHCk#|``Qrxi<cUG*
z)eY2e_4MuCS`w{qptgah4AhZmUDxJmA+)ULD&)_&yn&EsU7P0&JZ~T}P<hP&zv9%`
zKy!({V4w*HsBX@~qn%qbFB)iSU__ammki|I&TS@0ebhjuh1kDrprwIU!rKbAHt>o8
zzJ=|KU?-(bdMG<7?Ie{YzG`6CK!v2efexHwGDA8V=wzU?M7s)hF~C4G8gvuhU7{4J
z@ak4i!@0)A-QIc|=wskZ14j+?HPDY{1`GrJX|N)5ynzV@1{fG<;2YC7$iNr_V+|ZR
zojKUR5CcOE>|Ns<W}y2%&q%55a5h;8cj<H*%Q0=`8!edL!;^1Mk29S2ruot|Ip3T9
zxVdklfj14jW#Fe>zDWiqbIuG>$fp>XYTyk6(+oT_Na0OS?n6GEEsEyM5G3I%elrcs
zGEnPMc50BqYrJn8@EZsin9b~Qx&9+n$}^w}SuMAXf(F_SQo;t9OJlnRDY}7>;cS38
zynRly!&%nGY#J<E?~59U8Q8<d8ZZsS4eVxzZ_2P_{x3D~p#j@KLZV3n?+Qr?&NVPk
z$U6oW2$?U)<BK=HmK|~4ZdfSFdj=L6c;CPW29}7j_<!tK94*uK%UloJ418o@xq%g;
zd@8uoz$yc)4SZ~1t$}qSt}(E6kn)Kj{V;qzNMRC@fzkB_HW=7wU=wX5%VsfVt}O=U
zoXQ|!AfcZ2uwBRw!JUGiaelg~=fo|mz0bgY1BW=rHf0<zaL~XPG75aA=&J7dT===4
zo%@n}$deb84vWGKe2y5-E=knCVm%F%kK)0ovqShdJVv7MMRCl)aRVm|e9QIFz#RkM
z8Tj77MFZQbcz-Z((r~Ut|8C$%PA&GvJ>K68oZ^AZ;j5VQE9XNO&uIg{NQo?{!YnTX
z32!HHBHbFKoH1~gi`Zc0;tCJL9|q2`GJj^)9ju&}To(*y+r#wpsFw^}<{>8fH3QcT
zToL}4;MKJK5od9@Vc@2LTT)L}^>0Zcp-4=VyN2^%6+?ljL;jJdM|i#{ASAyaQ`-$z
z3JT9~l|oT?g=Y%VfM$iGxF?GHqt5It5_NtNas}@dEGk$`kV)B5<hVTQ@hDLgkD^2r
zC8PL29sr|FsVGW|&3%Hro=LHc@cG?5EaibHT5F!NQIv~f$de8yQm5HNtVYzC6%R-8
zNEDAoQ6Y+!Q8ZfWdn}5IQA`=1HF1%zQWTY=cs7cLQB;YdY82-A+<H+|i{kMpo{XYa
z6i-B*{cO3DcJ-*UBR6@CC~8KXU6EN3?cceOQ#*>MqIf!ry5gZu6zRYuW+5kGpfPjR
z7n^4U8$`het*JMP;<+fAM)8t(<__L0==mrbNAW@wO+<XrCG^QaSIwkK<Sn9TE}WL>
z)R)DWycK&XidX2WOjesHB7>cufYF1Mwo$Z;;#C>J_EB_*;x*yisGOtOQTlm#?cDuh
z--$^=8s5(B5=GZ2y0O!4=XQ^xR}?)Y^pq?V8CV3PB)y~P6Gh)B`bp~dtX>oYqDVxM
zjACH)-{XB`6oZ5h791itRB)K!aKRCRTq5pl@r;UMbQEJmnGnT9A!7x{362*m)Za5H
zipf!^QTRFTQG9m9Gu=&^D&&nQrjhJ*7EIdDh~mvC-il&o6mLf{+cjp=tSE@Itg+WK
zCyG2S8aJG$eHisIqwqi!MikK~g3P<pr$wPh5fUe1_P==OE0#`)dp&7Rw=uCXqliag
zvD0pN8EhfxLRnBsY*uhS2$>tjJkG8t=0~wWl%-L;E98AaW?2};doEuj#PPN<;{)M~
zqgdjmUf<*4BK)C5mqqcBt1nNJy`EJ<)<p416sx27Sfc;cZEY0mMER1q*Yjx<8zs74
zn!G_c%ccFMC^kp2C5o+4?2Tey6x*WM&Y_87R}?$Ma;G4x#4HRPHFoCiD5&g_L8O>Y
z-5<q)C?D>{A<1$uiqC~G%YPXUi$V`a#6vo7+TdsuUq$hC6yHc!v*xVfu_%s5aUzOu
zCF6I39AXYM^QQ5KC{9N4qfG2GQJjt9rzkd+_cELk^0VOSD1LGEUxoZ8*r}oCcged|
z{{H+C#knZXM{yyFJ5k(a?`_V$7{!$+{t~lGT!@75;QCX@yb8D~uC7OML&!CDX%|nr
z4mYE?C1!t162({rXIZ|@IV0qsC_FI~jyWPz^Tm)6L!lTDLw*qp#85Eiv?y7@sZ838
z=#3#$^t2xuWX0eUg`Af6#84!Ldt)dXL$>R`Sj?##v!{KM<VX^0RXm0gF|3}8kLRLf
z45hdOt&Qb2?u(&x4Am?=ZlO#J_s8&%iHA)*5JTCR^OqqSL%A5r$M8lB(_(m#1~GJr
zp=%5e$DDf~eDAeE43ALXnDJ=LISH%~!(%a2jG<BtPsb2n<7?3am1C$9L)93TO?6iF
zYB4+>L#-HU$M6Kpt)5doh8i*FyNyh}G+3z_!;>*IsEN!W3Zo3PVR$MAa=x=eUPm%A
zS~mt>wyGysUy#vfVt6zwhvZqQTf-O{#qeAV&&SX<hITPDj^TwETE?6cq$V-E7{klL
z8EqOvvlyC7^d&*QVB5k?C1I3i3`}hmLu=Ral^CeBaSdqsswA}+e9bkZ-XVsL673X2
z+H+@#^6@0P?G{7#7{<rI+ig8!=o!P17>35sOWM+3@O8o7f_()03UVO&akj{@Nj@Nk
zfuau*9PHZAV3_dHg2Q7NA%yzM5f~|aR1D;FGDf1@mSk)U<AkU63GAqC853j99n48F
zXuGl>YvG$5!;~1N#&GLK=7U2NzHOKNY0h-XMOQO~aN4{X!&@=Tbag$3S;F6rVYZMt
zF$CPyJRz!}Uyv{S28C#X=@*bg!dXf<h6w%myoM<3)gyI0u^3EF$QY~`&c^V240a3&
zG59HlWX#zQ@ZA^|3P}mhjbUC4@32MNGUmsyKnOW48700K!=e}ta&E_c@5k^#4C`ag
zd;N=JSi-V~C@bX{T*}VbnDHTxf;GP9hA6>t-eo)nV^|);@Xh%=k$YE&S>GWF`6?c&
zF?=iv4~I`;SR<U?7+o8~x)?qch4^36h8Q+-iHKoy4Ev-Gti~3S7<O=Fh+!KSA9tSt
zlASSpCT4pCcg3*V&BZ^k49vb)lwXG^2a6Qm@1`Dz!86oJ{ajl8MGS|89FF08AxC2P
zGKQlulsuHda6E>ugnupgjo>jimHl=?__wa|osh*FeLn~}DL#J`Y##T~p5uE;M(t<8
z(}KTn0$<Ghm8+Hz@-s1KFGmti(LbcS9yD<-hVwC8h~Z)kWlZPeIG19$%%L=)nD~=N
zE_=y@*Ti2jT#X^037ELXC2pv4D~8)KT#w;~L~q9MHxJ~l&hpMwhRz!^?{E>5RF8>&
zq)?irQ`2S?^PB%F1x*xiIn6Tuhi96|GEqzvpNYaI?sZe|F;T<>?dd9w^juU@|0^q7
zqB&y5(u<qU_i;*?NPj4q2Wd&uc?7qVi4mDu_nA%;N}FIHX){#0UwY;NiIx>CCrWwY
z?6l8jI+slOzRV-^X`)sfwd1H@a!)6$G_lG=MH7`wOf~U_>3pNMvWa#kUNuq0L{$^j
zOgwHn_YHZa;t3PgP1H3}Pn_2ftZkwun>^h+eyH-K31TflR_`ejby%X9G5WNL6+@ll
zqP~e|Of)g^B0Zb%wJG$=m)Xyoc-BNi6OBx??Bby~`c}qs!kLB9#wK1c@pZy^Q|6Uq
z&hp7wO-;OH;$_;fbGGI3WvCX-3pX>-+ypnVVQ9hrZ(f+>o1w~_@!nP@TAO%9>eI%=
zl8f2zm3MyQ+OiJAoQe@&Go4j*w23h$+MDQLq9b{!tWG96(`}i;mzVgunCQyBGBL<R
zHxu3IP<-AmPA1>=_Ao*0DcDO;Px^YB=wqU<iGC(#RK)-j{Uz|S^Rb|(t;hMtN`<8D
zFlDfbVJ3!~ICk4R#Kch3+0V16-$NWBW%27d&5z}dq)l6eVU&m@e71J1i7U%9$MG;x
zyoa*9<0U#laH3#fk#CX-;$#z3Oq|^1p*^G1OiVYOCuDeuV1|h|O}t||w`kuoF;hs?
z#4I7I3BQTAh0hk8Bbb*~<YsF?xJHL2g09XRtRdlH!T;{nMobu@{CDR!X2LWP7ts<-
z2->D|cbI*ZG?6kfR~k+~^W5y|)cGbBn0QyjMJC=CvQY3n^WXcqA4rsWKQyt}<x5N~
zb$!y+G7}%U_Ox6sW-G*iH+*@WWVMMkCO$FoF^|eQ-r>WP6N_`!npnrK=F(*1Qxoe=
zd`9G#UwBw8^f7GaK`Qp-n?z*ZEhe^d{#Qos7g;rCdbe?OhAG=k>@cy@#POEiLHl!v
z8|vlkGO?SvHfHZJ@vVvPOzbtW&%}Nc2TXiv;;4y(CO$WDnDcg1Mr4@sg^AU}l;zu;
zKct7)hcZ`>n9f6Y3=4+iD-+AFXCD(J`P$^wNJn8{mgB-t2r^3XdlNsHIBnt=9wV2t
z`P>V?xN*|Nk1Tyt#!n_ru~t$F?SGaYV|3C^->+P~FJ=C2;y2TIf9L06${7>Hvw}4K
zgNwh3^Cm8sxMbq8iHnk*yufgUf$x;jjO0(zNf^D##h-oE*m(uxx``Y7X^0~;j+<hW
zFYYXue+$1Qc$-6M;;xDM!xaWk+#&x+l$H$Sh$DX-1tc$(KmDG9!ZYG16nC!BhI9`_
zCS}Fpi{tS)+RX44j^my<%EWPh9A6yFC?Z%Qj(g)MD!f=6IdS9)&t{h43e6OW78mR-
z3O_|houOnLrQ*0xl1j(HK#_$KABdwY*Yh|Yi=$i|<>Pobjz{8nFph_$sx%I0o^+P~
z_@k}|Di!0XB+;sZmE)))gt`99SWOfbN9BpQbBV8d9Q$4`QX}qco={WpNx@E83YDkg
zs1wJOIIj%j={V}f(Jzkvanxfc$I&s4PH{XFM}s)p#?da0XX9uXM>F~y>un_XqTq9a
z&kHsdq`?buG!Z`GR1TvIP2+gUO-+l<CE6m6m*Z$Dyj2{pxHheYFiV>_XwN{0uL^JP
zDz6El&eRU#KW*7Lj@}}6iKA;A-Qwsj-g-%`dbo9?^PX-gtl{e}@8kOK>-rxM$3Wp@
z;}|4lSRBK}ez4#W!J%#&M~Dr5juJ9bkj0G_voV59P1k%}9OG#a$3)TDgh_4<$tO!*
zTJn&2gYzVgpzvvNOqa>CcSP=tIL>k_={VksV`kjh)?@8AIo}4nv*LI=j@faH8LrF`
zRO84K!kI~t!S6=3IP^Hai{tw^LUDxS*b>LqI3jTvaV(1CeR_@~7I&^B&l5BSlY((U
zOVExZ5y$VBbDe9>f+^AG3by~s^NtXv&KI&Ej(3GDboKY*I8?+-gAd|ZEaHYZmc+4C
z_}Vx=jAL0GpSboP#j!GuRdFnLl@)Bx@PD7RULD7pI2srBGJGtAp3{U#zRu0{X&mc?
zr=Nmm(#AM8iL%+X;S*)lxAAaeCF9sG`i?ku#_?GkyCk|Vj<o&mIQEFbr?U6D9{9Q_
zJ?xL;fU6vg<8$Ge2b_n)84gSIYr!LeUkV--{7R5dt$!ng_Q!-AkK=@pZw0S>=D7MH
zj+1c|vyg2$js1~}KpZ#X_$iK4ar_*|X)(SW$1idG8pnBw((*SUzYCrbJe%hIl|O`>
z6Kv?#`9d5QMY$wM59w<B8OIe@`74gAF25GX?w6b~x+#jsLO!YC-*McE<8~Z(T+4sr
zxEufX=|0+%6Ja60g~F1B(E>s;Eff@zVWE(a^t1h53me?|kY&LqNz=Y^27=)p3q?dB
zzt_T<;Yv|KMsq~J&q8Snxxy8};;wxOAtf!8a+Q1|lrk=V#KQd+9*}5R!3PD)Stu_g
z-9;?uA&EY0{d?d%YN3KCk6EZ9gf<n0R1&N#SZst+)g?4|!a{WmFI#A7p@xN;7Mfak
z$-<KsYFTJv;YACzEj(p`Cy>uusAD+`3qvCdyl3&WMC%IH6RdCH8O!-yZXo!qU_-(B
z+nlowhUeHodH$`j=r0J;CyQVzF`Y`@%tCWXC8yZJ<+N#Kp|$0_^553RD;C;V_}0RA
z7TQ{9XE`r=TNYjw`*9Y=i{)z;+Or`RI$G#tp}&Oz7CO_uozmNKo<Hegp{s>%7P?#L
zC3$-Y_O$Tm2!)>#%kAvcko<Mgd6vbK^VuD8`dH{|IWLFy6P@pb^3BkJ76w@uV`1|M
zg|{aLTNrL(1dAA<46(qEiw(6f%;I;ez3txehDInOEsT=vqb=y|a=15jfhJyVShS4A
zNxzMi)N6M$Cs>#$T(>aE!ek5QMkq5aOtGAEzZsG=m7aSmZwT^+=`<0ivmciF_(mZe
zzA4IE7EX)*S(dXS`r8&}TbN@Z&w^^fZ}G!_-X1?^=8jZW$>q)GM=Ak!+DNBLLGhru
zQGU@QWFc%JBD!HAX2G-&Ww&=x#?0{M6wivYwj-5IBNc8(Ll5Ri#kP>JkhGApFwb)S
zsm+z_B>daLK=O`-`4$#fc-O*q3p*?<wD6vVPdLyP7Fl@T!ZHgVS@^)hV#)p?d-zf&
zKmWaiKFfL;mRdL})n>VjF1N74!fFd2i@{0@t0W^|0ZYFKMhqg0AM~XC8uoA(oX^Ty
zXW>&0sD&*S*7K0DJsT`+<T&Qf;x;ck*5nN6kn`P|oJ|%=q&(|0y<0ge#BCqjb8St|
z>Q8d`NlH50Y2h=Dg@wZwc3IeMVZVg~7WP=!EB5<1IU8Z!<?KZtIUU8%7cQKWbx@K%
zXVZl6N^Jjt^B;4<+MK}poFf*#wD6UMuh~-e$$V$7db;Do4LKcO%lU>2+NSI?jd6lg
z{c!d%9)np~#|3Ft`Brvz>zwZ`{J^8$b}kyQ+fQ2f#lo*LC_h^GiEd*)ULZYX;b-Be
z1q*KVQ2&h!AXgsS`KNG}i;{)EE!?v32fNO~bqif4dAVWQwUNqs3l}V0lqOuVaG5_e
zqm(B`DSvVm8l_ydaLvLM3x8S8_x|pj%pNt$nQZAtjMC2<@yon7B>PQHr(L<BQOa!#
zcP!jzqqL2?7XIP-Y~x-V9vk^=6t+?6d^T)c8>M({WZKAYqkxTqHZp7!5}ipb#VnLV
z!jL9Eewv$QJFA&b@R8Au%{?}rZsp+}OnyD&rO`@J8#y*|Z4|SSZ94}bKO#x&J6chs
zH%bb!TZ#)QA;^rSTz$6cDP!Y)8;{zkVB-OC@{kRBC@Z|2jq)}g6rL`E*;xet20kp}
zBVtVDF&h;{sU(%52ii0BgWKN9w)1@@lBzbU*?8Q>6E+%3yQ<rmGg_%><4Kzz-u2dy
z32?KlGqt!WVl5lBZCn_wJjI6FsB5G67^RMlMq`w7`Eu&nsBhz0@$-z01~z!>nHe{<
zc94M?i6h1+jl||T!RG}V3%(%83efCD8%<dU8_jIAv7NVxDSo&;qq*3$5QXB)LRt#8
z5^T+10U>)gX3&5=Q{V4tXX8~Hui4;+NW*Llx6$5q{yTTD(b0CkIMB&PR~y}gcec?*
zh&e`KQg<8Um-_m!V{P;h&S*~?y;u_)y+xUL&_j`7nvi}r21z}s^tUlUYz7LZ4X6*6
z=nz&_NILHb8zXH@wlT%VDBD>B*Nsue2pKKNJHlgajI%+#?Mptssx#ik1e=ctW=*t_
z<mZDoXHTNT&Dp2NI1i;vwehx%**4y=F-<&7xA`JD-m)=6qUk#bw47;UmMG+DkvNA_
zu_;2#vN?m7r}EeX<Grd4zm0&6ptO-+DAR--yEms_6X>?Ha}i0H2jCbbV#BZzwGp#1
z&&E48OdD}l)keyOWg}~>lCaTyrkBKa2{{!8Ds#mqojTvf0vn5MEV1#fjfFNA*?3=a
zJuy~!k286!!oZBg4<t&nk3Y+1bg7LG#d4YGY2*J2U14LTjpHetNMV(Y)iz#CqG=Kz
z+gQUw6L>e_{DEaZd}3oQ`=2v}9h<<M1lHTwz&VpZ*911&*u<kF;k@g#*~S)|AL_+j
z8(VE`v+<LSQ#M+URkqtWVB?^T9X58__>8@@$+z3a9vizjfo10wp1SO{ok#xm3+|In
zrWrSHVG<9A&pGZkzP0h4jYBpL+xW)DF&js0d}-q=8(&Mtqnv?bo%eL;$|2o6^q=;?
z=y4k-Z0D?)oIV+t#OU`nez0*;l2|B}SGb{sMCppk&o)l8=3|vBHh!`3tBtcZewRve
zSD)W(OdsoPdw7P2*n(X0KWv<n`dpNx^IS=|9F0|&G;4{Ef&7w<%VNVea+{Yw#T$$G
z%f?kH>za+5T)u2vmzpr?hUl!`Eg@8HyGi71=|5cj6Syyd(g~+C^CggxK%oSXa9#+?
zFZlEpUx5UO1ryF9PjB7?G84#7ASZ#W1bhi_7od9+D4f7O^fOi|k^pN+WBO#2f!=6S
zR7xo($USEmauX;nQ6+)oVrL^7`Y(|{Nr`f|oKgvAM;+?)RwjY_6R4U%wFDkWplkw<
zN#1e^luzIh;SVP8kdSKQ99MV7Di2GPgq5NAXaW^n1Ny9(KqZM*rjwPPD$-<Do)zX;
zKc2u731=Li6q_dFl<Eo8NT8-f>5xejNq9l8RsyvXc#3`1TNyJ>sgrO{ut}I&H-UNy
z)KB0U;xzAT2{cIHe0gt^1YS(w*#sIUoX@p1O5phfv~ddga|w*noNuqJ8mBZ);05V?
za@INT_spgVyp%w*1aAM9%S)!s6KIh@uU$Fq5_ma*mcrX4&?<q}3A`dvrZO*a?d&WD
zlC}vjkQfi;5?>WgrF{Y&64?B*k9T1@Ca^~e?UX?01bP(qY|bszzD>Sv33O*ybMs`1
z3G@^`jviRg1coG>&B=Qw&?kWb2@Fg)+YuOtvic^_s8+5$$J;M~{s|oJR(MPI!o)!d
z@PlQ1-gPj&RmfW1M(H})%N+@ZvbV>0hb1taeZJ2#B7xBfj7eam==`rSD&c&*nAebL
zR;;sUYyw1beqw`l8!xq*kif(QCJCRMz?1~03Ln4A^F{*1oTa`gyPStQ$frxv48b=O
zcq;*J5zHipnF(jF;8_X0Erfg!znheRnt(0#wDAiG3I-C0i(Bei0(t_W1j4RmEP)88
zvF0@dX%iLV@9Lpw3Xcm~38ck@n>Q&WB{-MM?5T`-g6{~<7p$gv7bfst0w)sqHi1P6
zyq~~sjwWYX0*fUte=(N`StZCiEEV#h;Iafha`oj2tPsA^Rk(NY>I6PcU=634?cDL)
zF60wV`vle{@F^F6&Y}diB(Q;tzoc$T{JXDmdiP^y<TlIP6?tm{+r%KfLvmW*;g+?N
z$Dr_Cg6ZP+x~T_*?2}gSmjUHC9+czdbHOk8i^It#{A<A@9M%Mm@)#Vad?gAG4RQt&
zhHnx$Ci-zfKA=ePJ64_xLeiNJKO}H6fjgWD3H&HFe<g4=fu9mM#l<1vyvTMrfj<*C
zE&Lb3Uj=^?JR^8k@OQ4F<CQ-I&k3FvydcP=iwRtEIZu*{^~8ms^9jo<iGNT3u1OuP
z3v%ZiZWVY#_)WpT1#b!77OXekY3V-+c#^m;iPA~rO9Dw0N#fq5EdEIp7E&OIf=Ofu
z&lKd^SSSf^l1~yAA|E{iS+4F&f>Db1h{FA#$crXXED0qEe#GIyJa2Z=`E*Y0)xMmh
z^MgVqH;Lm{GS8gOES^LOc5i{4l1a>zrz<IzO5z@VNrZO^$17!6y&V}3C2@Zej50hR
zq^w{$!SYEwC}g@Au+WE-cqEBOlc<n%cAn&iT^>*3u_P)cQ7MVaNkqphRR!0KSE>kE
z_IYN<4Vg=h<yK2#NOl$t3YE<Idc0CSi5f}NlsQl@iRMA?lSv%j;HxEATkt8tI)Y4k
zT1efbv(qV~Y)Jhio=KuX63-^lP&(lScF}C_(szB0Bubm-ggh_USddS!aNnLLNt}Gi
z$9-L1k~)lHhYM-O$|TVuiI<aTNpXOugXH3+j8;kT-$CmnUP*#Qv`OOCBx+Akc!8)b
zliCz&$8n#aOn)`^HPPD(@~RPSIwsL6iOxyqA8Yp{dL+?Bc-JJtWt{&$-J}$9-fHie
zMBgO(CDBVnroNs;?<D#p@!xJv{QuS8O&yZNfFuScF(~=({kXx&f46>0ZvZtkiD8m7
zJc$vKi#k1w6i&h`OJkB4o5Y+H@=_R=#P}p`C2>262}w+phObOwQWBGsNG6d=VoDNI
zlhBh0CGkcQ(~?k=*!!4wdJ>7T-nTgMBsxQicvJA$2q$S4r?eY=JBisW)Qz&GX&a(n
z{Lnrislg<)|1qN;mZ-_YM=Y7w5E2zVmPD1#9{PzVL1d~Wx}A3Grqa*cBo-#|p44`p
z;5%YDUvPooyMlLL!J;JIXK%PAejv_S&|)!IBKlIdM3%cu9DXFJ%LP{mrmM6niPb#+
zPhw3HUnFrTiBFQwr<^}aVpkGtlUSF;r%9|&I!{ycA^;y$-jKxRB(@~6F^Ns0r;$lp
zlh`K84mW9g(s{U=f!TLT5(%GVW^e3fE4F0pO=6D_DpM1=6OQKYOJaW#2RQCWa}OrL
zb>nm4Bx&Vv5=VIWCvhQ(FFA*~<|J_<iLYcne=V&WFu^I}8{uzGP>%7K73JF`zDwfA
zBz{WbdrAFhg0d`G_y^%R4RcN=L0n%X>-+@eR1$xPPX04XoS>W*{6+BBBz_Y@{Y(;P
zh5s&CdZI${oaC)I(W%MBBrYW}ccOAr#LGMYXW=T3risd*f>)CGOUTHH3dL*5f1hZ&
zF64$FPuS?;Z}CH)cX&8+qmM1V;wjt}xBn#JNjd*s`6yJr6p%vx6bhtpXQFa%%5hjQ
z<;=s(6fz`QNYE?D)J(Nd_cPg9Dfm(-oWjzHO7yqvdr~MOxlTz#rp)pdO*v1UaV;&D
zLUsx{DddU)Ju4}co#eEafusaIr%)<|`%-9~!Ye71PN7W7`HuYag7>FTC55WOA7I`T
z$_X!@!Xqg>D*QpghXfyHiw-(ppRXX%$|=0RH{&tk6$P18Nl4nPdtq<26do7l*%Y2g
zp?V5+Qg}Lr8Y$FF;VDU?6J}(1GKFRPGinLemLx{+%IDPUrqE@7Mtu=a?9HghKhb+L
znEFf#4N|zeFN3KJbaG^ir(p_>Qg}{`FCOwxN&9as$_s)`Qg~4albQ;7Nw8T8%~NP0
z{N)tCS>|*XLrWnng2j=yNue#fJ%!#WtXu0CFtkhIRoDKt6xyfIA%%`9bV`AJ)r(Eo
zm(f`ax~9Oba=Hkz75sdBw-makoNv=J^hlwn%W1}Lr1L(Kv0n=PQ&3~RzA2>JH6Vq7
zDa=e^mKY35VNwc{Qy84W5K;b*sVf1use0eXtFCkJmEqpI6P1t*DMAQIL=>XTQ$>VE
znM&qsp64ODXP<eV5GC_G6jDTKqLh@RNk#nM{hoIJ-}9{Jecta~-}?62Yp=cbIeS>^
zr6LS1!Ykr07vU?l=P;U5xVaG`+{9}|7%4uAmjJtlC*;rE(aL&VNO7FV_##XYVf=|j
zm{f$H<X>21JtUp1y%?bN>$%4Llp+uriir&}T?J<d**Fwu7g^`j686$>tmUre6k)Cu
z@_8cjg$slWg^PrXg(&V=T7+dqSYCt`MR>mmT%_p@ogIN91dFgzd{q(NEJ9HcTt)B}
z!B>Pu?^#ca%p&ai)9Gd<d5WFMJ9rnENc=^poz5R$vEYX}j%H(w$N4%?5yC}STZFfG
zrtoGFkMGW`R1u;)ZHo|R2WI!%k;RL3vdFr#%Cx!&bV$qO4OJ?<b4y$!g?}5@DagA;
z*jR-1MR=S2irs09u|YZs?+ek5VK)_Fa}mysbMDgaY$?L_B5Piwv15#_JoICXZPH10
zNZ%=>!>2=Yb{An!5%v~wr2~AnAv>pwvA+lhiZFj!{(D7mk1;-)p40b^e40DQ7{r4`
zIHYKYwMR$AKM)>a4=ln*;wQ%#rN<iW#u~@u#!7xHa$I<#$oe%x@gz4|1k(j;Y9say
z{@8F~whLdfTe2g$FwuomML1oA8(b*m!q-LkrU<_l;kP23;qh9N&GdZ{z7_vYcvd*O
z(7~*i)?}Y!h1X>NP=p^v&a*@EuogNl6yc&2u73D)k+m=)#b0bf^LNGhy9k$y@JA6Y
zajaXL{r+_PDWAWJ@J6Ad_?qnC+UzS*xGlKwk2p7dwFuY59WE<)G2z$KEnZywIv1`N
z$#Nmb1r}#k2^X9a$+JbM=ZciH^@)X!(l&47LK*S0!aNu9T_|9Cx^SNhja|6Wg>o*`
zaG@sO|97Fh3sqdW-GvG+-0Z?_E>v>i7MHazx4KZ#Wi=_A%eOk4yViJZcKtQkm0j2}
z9g#u@tHjE%5vsayhYQtQsIHAp9%5w`6*}gMkdG*I-04Cs=DN_pg}Yq1+hs+l>%vE?
zvunFh$Ax>u`(Ji`vet^p?J}#L3-w)~LY;|i%V<wcMMG_<k&soQ*u;gVE>0ANRxaG{
zLNjHxaDkP1K)g9SlIpXg(D9(lI(CfTQe@F(CwGuRT5H!xxW$K6>R6$pt&YVbE<EZ&
zI~Ur!@VpBzxX{6c$6R>Qg{NHT=t3tKdZ@_bE<E8v7Z<u}k2<Rkto*7%2iv5ZeApn}
zT^OZ0uo`TNo-XuKR&N*jxX{-H)^olZd1#^I9g(NyFwli(UFhdRf0@r{D+65oKj>hn
zOf>GoAQy(H>BtAm^FX144fvcmEAt}vi*<0}RVgpK@QMq=#E05-9xjs+Ml!xQcjUij
zd`-$27sk3UTKsh(+cs14aW0IP!U$|hb{mpOb|bS6g)UH^EFbozDQfDe!f6txyD&p0
z3(j;Qn<GG>V~(=sxiH^_x#DbCIxG-hB&4}egxzDY$PyQpy0A>qR!CVc&h0Yn8!oJL
zVU?|LD{sn&xkWq+Y@MENjZPe(JT7=`?sLI!^MFXug^);C7_oDsF2rme7fHB~w3U<#
zY4O#zvPPssf2?z1y$c`saKwkVU3kZZxEl#KHn{LEM+_6WrZt)EMjmtyj9dtQqH~iA
zo7vioa9z$;mv!m<(1mR-Y-jIsVW$hvyrSp7F6?$$*Q0|jYewQdF6?*VfD3!+z;%xJ
z7l0?P)}VY(3dQ&3&p*GJw<8Y8;jr)nA^nfItlJ}W{)j_LI{T=~9ut0S$2l%?LikUW
zf=^vI>B46&e6C&iQ}_krxNuhdOW{|%3W#twPiKhm8yC*l`nN1H)Ve3k^u5H3E}Rqj
z!S?x4<h<}F7cPkWESxa*-?G2B@T-*Hgue^_5RPA+eaVH@yRG@v|8n7PiI;`NO<WQA
zM|f38w`(pqOzY?{6%&C8zUf5sI$OWqM3#67TXCAmw)xwK93@TMV4}!`%S0*DdM<X4
ziMl3AQ{Qf_0b0fcv8;(a6Zs~*V~qmSdZ2To3C^2m2zh|YnYhVBc@q^(+-9PZiS6_}
zP;j$}TTI+)Vr`}Tib9g3b>Vr^QYxF)qNr6&+-_QnqB3zk)2b%!FfGDFrJ8tkTd859
zrud!0TEe@8cblj!Qs;k=@88xlQQySVCi-ay?=|s=X}xgXK-kc<zOHR#T2nXNXQHu*
zCMKGiI5pPDDp_#9iDo7qGSSM!113gR&wtQF3lq)7X}V8kw-nDHyC}uhQXV$Z#<aS9
zCabN<Rb{O{OousN7Vw7TqbAy!XwTi>l-0pRcN0CtA2ZR>L?`jbP5ivoy3zfF%+5lZ
zT}*Tp?<S-V?+o`8?<J&3x85fD$n0z4NfC;ffKSOBILFbSm1N^ocg{62fNgSJPK#x^
zFPIpp=6Y5*NI2NU5EIXt@Ep&Z_H7<NnSWk8czLY#Pw+((FPV7R#849>*a9YAF|FBg
zcN9ALlFTp@!%h6YCyTS-GCerlIm*PVCPp1Bm}TNM(|W6Iyom`WMw@t@eP*07M#0C5
zGyXW4BrV1nd@FmRi76(gn${cIlS~w{hT?njOE6KKW@5UD875|$|G!WOmkV*Oa%7hI
zAeqf(|1q0)9p`X=$Nl?%cAkm(JXqS?LK7?O?Ji<h5np0rsmL-D%kA7Yo3nQ4o-=Fs
zhQyV^RVLoFotb5taP#20@wgivo>1&pZZ2!?^qKIR;3O(nO$1B?O>E#GY$C*iQpw2_
zHxV`wky$j@F=wzNDjwtcE0aD66G;;(6KQ3wHSv~-)#7XHf|+RROuQ{+y^ztU6W?L?
zuH<CEjV3mk_|n9ZHMz{%Y+@IWrim@`-)dr;wwsBz-NX(PJ5Br-hdOt5kBP%3J}|M@
z#6A=IO&l<B(8T*DR*o~?6J~e@S%mr_IglSQ@u7)N)OsJ8IBMd!iX0PuEIm_%3L}u8
zu!DbU;-rbsWPWbq3tMM=dS;xz;u*Ry=ah-l91=}@!*k8VMH6RCd~4zd6F-{x&cs<0
z-<vpRT2uXS6GXnWlS$-E=S}=%;sP5-^B`p=1<D|mUpOqA_|wE+CVt~7VB!xGm*kuY
zMIVw(Wb(gFT;`Z>;vbHp_OwX<c~YUzH4_duin#$d9xdyv=|*uku5;r?H_Ewjy&G9>
zlyzIvtCn!X=|&kh@~Y*}S)7yYMy?wr-B#or_rH@D@oIj9+q$Ng65d@br?gEdvSKWo
zmx*?hGvAE@al=;P<BXf!DDUP<BF;*}3c_23Hw$lZ<49iz9V*Hsxy@E8yHQ2r?QY!R
zMm0C8+CIBfq`J%+ZqUpGA-U6yT5jCs#@*bD3we#)sO?4_x77z4xDov^?`*N0d)%n&
zMm;y$SID{74JMNMLb{Rf_}Th1-cY6Tk6X7r?{lNE8|T*MHgTh=8}}=#ncEto>A7#5
zaX4+wD$i+qo4c*admnV8g&Qs1_;FS4oPV+(a$~{T+*WS1cH?0;+HhNLbZ~<YQu)<V
zTSa?>hs<p)X?^(PJf?PT5NYx?%g5a4=*Ir?)?IqOX~}mf`L5j)Zgh5Iup2|%=%Si*
zccX_JUB$Zz2M@7E`<~+cguR5lg?)s5g-;5fa^q<?mjCT!!M~3<NLai-tEXJ@0d5Sm
z`Lk{evN@fZ`<%=<ZanYC3vRq9bGREL+<3|MeA$hm;;-1sFz$uwIns?$Zj5tdyc@6D
zxnoqH*W4H_g;jdpuHje}%+!`!pWwzcH>SHW(Tz!N6e@R$9cQxbJXK1j!ZQ?VrZBU=
zv+Ug2Ze*0XZp?FIKKs?qtT){#;-Pd~SHp#FYngyWZY<_;bYrO-D|H-~F`651xUH9U
zR|rY^T+3!6$%w1uNls6f8>Sl}x3$UxpRK#u!8YY5O6Pmr@Us7maQcJ+q2G<)ds$;b
zP-bRDfUq0q#~BgDj0$5yx&>+==|;+psa{O;BJIX%c6bjOc(BHewQk(xu@>xmi=Az0
z?%!@)c4M6z>)m*pd*{Y4ZtDr)1~=Yy<DeUd+}J2(8wUzEHi>T*ZV}RXs~c-Hzv~WL
z+2_Vio9`0YE!^YAURy6d-g>cQzZ(anyeE9$jmpxAhou~M<Alfu!Xv^D-S|j^5stcX
zO#EXZZvs>N#EnncTvATD@tGTEZU4{R_||Rx#`waGFF9h^`YDlC<Bij9eC@_JwtmJ9
zCdTA1YT|b)+j|k1zL$Q^jUU|qKZ7oPn9jTLlX5Qze|F=d+gf;wSubk`Nq%+XH|72=
zr1FOwm&E@R{$=Zzw&#|v<h<hM(!Dtj4+=`<{KK)gRL)g)A$E_0SxeHnecC#iTg(G^
zP~3y-JeD(4DG#m}&+?#z2TohhB@xfDm1*ORlHxZAIV7@pY4I{1loiSIzz|_pz6aI+
zb{5DaxzU4iteb7pp}YqbJh<6o4aF5bxXoi-S#I&*R?ojPoKvslL1hna_n@i=RXi}q
z8yO_If1GpcrrbL`*7rL#Js__ptnNV#4|a?<m>7Y%cY09EgLC5zJ_otWgS$Pb?ZNu}
zd38Lf%bq{MxW@ygoC%hHJrC-8&_jHbkk57-dT`!@pFGxc-bNnW=Rso+nt0IEgE1bA
z_27OFnt3qLgJ(T>z=P%<wD+Kc2M>DC!h<h3pQi^cMOq7~Jmf(un>Tbg9u{xoK{398
zz-x`eL3~8wqr!H|s_$?-=0Qgfda=1Y=;XoU%Izk6LfA#v*@H}wt}-(*yK~n(=qV+W
zo6-A7dD`~u>%o&AJjJF^HRwaq&x8JQc*cVPBAML(;tZ1bf^e`0Lqu5iIg#gubbir;
zmw1R}4)b8R2SaVoS8SgV9*p$hHCrDg@~T~*%oay`@VfN>sxi)k@g5{SNO>^9gNYu@
z^I*OQlRPN&V3wRGdoaa=M!T|R2&W3CdoWGp{A|qKWnIDPz?#pr+i<pBlQ|-D?d>k`
zV4(-gJXo&ci=;0WXC;@&Bw1?Le1!*Zc;NBC>%mIpzUe`c$SQkVE}5nWZo3q_L}njZ
zE1w5`4<a5!JqUOZ^zcP@gzdhOIhq+{5f+RoY}|u{?L(1~GcnU1toGor2On_!_h79D
zyFA$K!CM}z^I($)n|Y>acev>d9=t97j;*k*sK4vMMkyJSTi>FMZr6@%Rn|5kvvzo}
z)84O44Jq#NV7~_k<iA(APspZw&)(KSk@r2wgyMD&N#VX6@!&%bzT%b3gO5Bos<NMZ
zaLj{`J@~|fPgUx;2Pf=muoNR?@TB}dlMkCE(|TXX;miMVJMF>O9-Q^ydx_t8@U04-
z5pEMQ;CDK3B#d)T_=Ax9@}mfK?)U``Yn!sldXeYF&mLUl_*P)8alqSFzj*Mg2fumn
zy9Y}q7!EIrdGUw%B@h1OxpOJ+FAbYlJ^0&$%N|^j_>TuQYg@x99hl-14B|Cq(E(m7
zT1hXC<>VLl;yRhvdyy@Y<wXgRZ4(T-IlcH;ggi%jE*&OXSxh%bDdk0JkuqK|mpUEt
zy(sXas~6q8Fua&m#o54%hF;w0ML92S@}j&KwY{k0MFp?*0eBTJZujD5FK+STRxc`g
zQAzrm1rFxkCeA&YxY9B!d$|g*Bg3nDQO%3$a=63G)s8HO8eY`&S}kyw^gF$%C6ieh
z2jbldl8Jeb7k$rU*Yl#jNL?=uhI6UhE3?u>gPaOUBQNgr;&HEa@2jyFO<3(sSr0M(
z&a9?hw2*nf7tOqQz>D4!4JKwam&1cXniN}#^Uf!WxALO3S5M`LN^NAe6+R+-RM<|~
zUf4nSn2>QgigfaVpHa|!!i&sY>z%#mVsDp^HoAM!gN>Zd9_2+(wMjoO`g_q!ytl9q
z_nMX8ob{v^PkHgQ*Lv584V9UZFT<blVt^OJndL>*SDgdBctPY@F9vxr*oz@vJTK)r
zA$|B=6_H|wyy(SC%6i$0S8Si5BJ>$%E14jSHc|@9QhC*j*Sr|5+OlHfy?C7)t&1_j
zvi&et2WT93R=<iTcrnq7NnR9sF@2&jg}HWFnwfjWBy6AQY(V<>FvEwL?6+R*_u_yT
zv%TP#6mc&SUd-`gt{3yXnD52POuKE)THwVZb++F5`3u>4`T0Dui+MVDvDAxYUc8~B
zu-uE}K<ibv8wwpO>^e*yZvBI!zRHU?*%@^2y2uNc7p50(ueFw6$P17BeL}C0eQEAc
zaE)ER*TR4oK@oC(_7(P8OVmZ=85Q1E9Wn0v%3RJFlJr{hCN-*oci7sevQzvQ;Kgd5
zL0+u&T9YY_n(cT?WSx*olaghK>%Dl}R%S2C+2FONxqjD+jb3b0x7p^!b}u%I^EBDw
z#a5fMQ|-{9;p=L<CGPZMmlS5vd5_n6lWnh%WS<u`s#^-D(|pg1>wU=b;nv=c_j!hT
zamb6qUVOk^_TqvUN4URUeCEaHtdbW;S<m*4@+}?5yr@#snz1cX%lR<_R(2lu;)ECf
z^v5S&eCowXFFMt7(kE5ZIp`)Q9cpaL`ofDZIZU;5?A~ilwnp(QFHU)J+KaEf_}+_i
zUVP)l885!`;;a{a2BLdQ$G2Ym^^k)%QaT^XVv%~S9ZY}j$fEg!7sT^k{3yb=nrSkz
z)X!dA^x{vJ_2L&Ve)ZxvFMjuen`V$q9sXd4zus}li@FavSZZ4pYYJuN{;e%u*72p;
zVXxx~cg>5dUR>jdw9Qf6XN^$~ABy<^AIk4{tXQ4P#0jY~b5dO=hljUWf7MI);PjzC
zac@?(4>>;E=tDUla;20NGOMHyH;9+AmC_<*g#30mPbA;YE%3n*|99~(R>Oz8eW>k2
z1?ji>P)X!wA8rx3RajA&`L4XOcr_vGP=(d@@x!;Qs#5L{r%t81lo~$N^x;k)YVma5
zVSU8Gbe9jT9?kvw%Dava_xRAshsS-W>q9*s9`K>L5A_w{J|7zUaIX&yeAXId4TTl8
z9$BM|!yu!H2qWJw(o~qqZD#vF=tB!19`>P)a$5>p2_LfkTZ=F_L$&qc5g*$7(7^|W
zdenz@wi|P)WZWK;*ik+dSwrei_|Vyhr<B#jhps;K@S&&7ZgxQi>8?^FOuc;QD~H}b
z^bujS%!Zy6A!p>LZQjo=`-~3*d>H7%v&t&;VUQ1leHiA$a4AE4cv0jzyX^BmykPU8
z#T_q+zx<yf@`?}hC;mGN!3ZB-w{u7OFv^EleRxgEXj{*GtIqiW#;^}a9OuIXJ9oSf
znZ7Ym3cJT7yQ^@&Ci^f&`c&aGyVTL*j+s8p@*$+NgX8mTAC~yA)Q34f%=KX&kIVKf
zCN369obST|DGP0Vk;q~n7B|eN!!n=s^o^5E`F-G`fy;eZ;lmp~H0+wQQi>_Q%7-^a
ziiFH{u}`jWkg$|no*wpLk>)ELKIJkipn5WX&<FoSgCy)jgmp+~M}64m!~V1*<^$(V
ziu;i8A?ZWPXZ=Rn;zQbp)qJ+=!#h5#@nNkG>y>qSp>^FSzU9L@DVzn1x2H05VQrAI
zN%*dCqp*Qyq1pUDe5()JWN!Cimk+yr*dcT0|M+l2dwkd{g`5*=W#a6Y!k;t;eAaKI
z_k4I?g#4fnhirb>hmo*;`F!ZZM?P!}Vp9-DeK^KF4ImZ3$37hA(exwi#|a-kVRQLW
z)sIho)^E9QefUldc+!W@eE8glFSOlE3w-IrR~$xmW}TwXI|Vg*<ecWw^x+#HHn+{^
zH-Nu4%0J`7rZLXn))zGIfwMk*??e8sET`XU;d4Hm_u(fWe(>Q(7MW<Q9$7$S)&(Da
z_F41cU+1^pM7rq1uk2$_<Z?%T(XMgE<KKMv-G@JXxa7k%9~^%C>BB>{v;X$tvJZdx
z!0QW5A_HFW;pRN&RpCEu&uw`$nPxX}d^5>ejQcy$;8#EJqxj~$`??eq_oG|4(j?dW
zado1>l;uYWn|H08&xPc&{mAhn*N>8Z+~7wAKOT9_S;}v%T#)BSz8|Hvn`Qhc>&N_B
z$V@)Qx6umx_&zsh@v(y0lMKU;n<g1I`caO=kMe$uoMb$p^oX$UB;#g3Zt>$*KPvk1
z%a**lTk>x6Tko;28|yqY$!e}jepL3OiXS1FR7mddqnaP>{ap7J)%~d9x2|^;G<i`?
zKWeLPcluGw&nc>`Rk`ohR=6T(k8(Nu7Ku$)$B%pbsOz`xk~Q_?e!umNQawNF`*E-M
zxk*L?*2IsWzRGIkM`J(u0sDPI5{ga4NoY3n;{iWf_|ejjf=7+!JhEk+5BkxwX?~sZ
z`Q*Iw&*S@$AFWikx`hVk7HI9q!+vWXxi)NGKOXht-MNmotQZ&Od&yvGr(B*R<P?*g
zb071gyB|ILAn)i$CqEwd;|agjp9f60I$o=4B|38})k<{nqbm=zAI?4wnoPH@a`g0D
z_p4v@<0U_O`O({tK7RD|<5@p`=#cZIkfguJQ^Kc({rqUO%)u<CXQT`e4itWvw6X^I
zF<9mhKb{l$So-sRyx>R1=e-r#FZ(gnk2!wK_2U&khOt-d%l&L?-f%xg_%Yg#*O^rv
zFKx^nskT~lNA@T`h_Cwbng}^(B=~1#{un<d`T4<V{#ZZ8`7vI6qHuyA88W=kV4_bU
zTgi_peoXaah95H(e3~EAMc8!oVIrBO2(xW{cA?b|yVS_<(9W3W$6`O0u;aBe<_j12
zu~3A{B9SG9;O;DC3slVU`LWE8qj@>Y{aE408-A?xqsR}JAFGs3b}ja%AI-liIq+1;
zdrw(t`r-D&<A>J|n$-^8aG=omve2N<Pld*^Qzc3Kegs&P+0GxGIk}UKAUP){<-#0(
zMAaEO2dr=2V}5+>$8kU6ek7zP{dh+t#jfSYYI`5o`>{rRt<W0(Mb`O|84ur<nOQ!2
z13Ri88>MXaV~Zb~#54cAw(?||Z0wS<O?<m>hj6E`&xIT4Gib80n<r*EdygM`MacJw
z?Dyk<$a})~{W$2yA=~FeKMvdc1Cb*_e$T=PAF;t@9`l1KBcAZ%6Ap2HT;q7C;o@sQ
zzVYKE&xPU6&;0mY&GLmGU-@y$k1v(@52elPIddl)tFv-W`>}SiabmJj{;KngAKz*R
zfA`}%jzw?fUgRJ-$NGBfEC)b8&hhATeDLEu2M|AQE9b-?)_=fBMfn$0aM*O`Ew!yD
z;6KZBohkUmkH3)fs~^8fxn+vM7Z2K8uuA>m$0c3@=%B32Lh66BKR;u=RmF5g;y->+
zr0ED)SS$bpxYD=d!xktWz;yw%30Tw0@xRaY0aOa0asXKYlnB5XKz0D-0=OxFoB(nI
z$Pb_(fRX{+5J2ew$^@)`Or-*7cGyAEaf(4?DjPtavM#RAoiN2n+PV?Ijne7U<gkN@
zq`Z`y1GpuC3gT_I<#svjxK+HOFcY87x5?~sxS&b^w+B!^fO`X|8o(U^)C%CP0IJEM
zhOoM@xhIzenQF?sGk`NwjIvX$s@@&IJppu8HEIV?M-J5QRc>9G^#YhAvw_UU0W=Aq
zp?ISJ?h|RP2&{9{0PYXq!2nvYO_cRO0L}l$hug~8p4;uPqh)}Pc<`{YxW!fhw6=Lv
zo4d|qH3GBR2JlD#kLnn;3!r@f)A!~b`Z}Adb9M-z)L3U*XU<~*bPQOJ_&Ws<n&Esr
z@b5GFCj!{f$3f-o=>=W5rvY>epnCud16UM5j{thAOUw?S7n`v|Zr=c&WZwu_H)r|?
zKbmj-_IoOTrvrFBfH48|3s^7dy+910Ka0y85WpZ7%+KdVXJ7!&D$$MR-~fgMtc%fe
z5}%hprdh9x(}6`^3gBgxweE@K=MN3wl>mkXFg$=!0lXT(2p-&>Su8R#VBI#!aC$Pm
z768*|#mp#-IW~ZCDl*y58Xv%f048cH++3l^Bq7VPAVr3q62MgMwfJ<!oGCs-$jBtK
zq|<p$0Q@SGjWaiZc>!?N%J~5-;MuW0chQ2Je+qJHPqSv9Sgd_t8o(0Pp;I0U5|;(A
zJb)Deyb*vufIt8%6>U`jZ}L!1Gv?2A7BMR?XV5g`jcJA}05br00G<GR()rH3H(;gA
zYx6`Vnn9kwvz;;a7A^rCur4}$iy+KSI~fsSlr{Mv=jpLI@c<G5Y@TKunP&8U$XaqJ
z9l&ZH=pgz9tr^$Xa2yDtL=bBOcq@Q)0jv+;mw+{R^4rX}d5lhFe-Xet>`te$Hw5r5
z8zF#A0lXi;!2o!1+$`L~o*BT_0Ja6NofQjUm-HR%oFeqhTxWL&tP6L>%$;uR4Pc)f
z_6KkvfcNZD^kD=hl0yL;4p?86eipz70UY5k`~Z#z@L>QS1#pZf3rBk)FYEN@@v1o8
zph$j#1q1jrfRj24=)hbeQ>G5w1S5YgWTSn_(@Hx#Ws<XEPvcYorvvz!Ei=>k4bS?A
zolU13X9D<kc+R)N?}TTC-wV$Pe-QpCJTLqyfD0l&2XIk@LD<erBopR2e+}R_p8H*M
zeh=V}04}M*od0CVPuYJ4@E5P_0bCBCSP%$WdvPUzs{veN69q6}y7gOy=up-I+oV`L
zi0dR?FG7Ec83z`029X^^yCB*JkrPC25VeBVkLr>^>j&^nLF-ep8-gemL}>-#9m}#J
zWrE-@Tiznh3nD*=0*Q=VPP!4qjZ)~7`GlES<%6gY#LfJ_Hr=QcMCBlE34(6`-Wo*3
zAU>UL+!h3<-`Oz18NTKmG}>7u2>ySm5kyUex;==hLF-+GJA$Yd1iuieF1+_l-lYBo
zG)q5iO$>Ye4CBrq9_V4LdDVHB_T_G2?I7v|aZeC+gJ>8;qaXsibL$0huLyblAhsQG
zkT5j}VuxO6xsO!};=v$V1kogjrgCmB&-;UD#tq4nMKWdoi@@S7gLo*2hl6M%|5ib?
zmh*o;By8%oK|B(~qxRPS%VmTPK|B^jH)d6FX5NDCsHW(|!?ZK&aUsbQL3CELv$ea3
zbQQAYyQ^%EAbPS9(hkO9>J>z9>EwObhBkjv<SAi|8Ag9@D`<`C$sh)(4cYiZf*2_N
ztdR8|Br;gYsj;l9KoHLd@j?(U2CWqtrUx-Y<fR~94q|8!uLLnHh*3ej%JwOhGdzfs
zvz@JH7~~^@n9~a*r4M*H|Fs}S2QeXti9x*cc<$>#j16L(_!!oFhC#9JY6p>Nyma<~
zNkJ3_v2=zpRXCab^Gd-KaS|qGO_NDy@|i)*3L>Jmoy`gau`-BNLC!CYc|k0pXAtw1
zyD*4FA`7^`TJw=@xHyPP;*3UdnH*LKmkTqV%zeZ5d^3omAcD$u1!0Q#gK!7o3BntM
z&o0RLnc&0>3D{Ygu%RHrw!%$B#bZL6@gNf7nX;)M(m|}YkKKkK)`+jQmA8UeXY=(U
zZwucEf~y{67Cv~FBSupPm!;So#FijZA*4gt%5KAh9<n;jcJ}ii4h3;Ih@C;~QiKCR
za3KbE7^dAp?6J49S7e`XzmTgfyeIO0&|3WBpm?V22SFTR-w2^i2p<OVQ4oIwaY=4R
zgE$?;*FhW$;$szIC65PjB8X39a=Tw~oMC4R;<F$=58?~yKiy~5DuZ0a;Y)VcTxZ5S
zB?s2$n;^~vaWRNrq<kC1xgdVvHB{zVA%lF+>M0uek3n3p_46V>sSTM$pP!|WJdo@B
zl{({#_s(_x9t3aK*P8?KKZE!yh%zCR4dL$~E(g(ROICIWoL~J4$MX<4W6VE6Tn*w{
z(E38Kc*vT4#SyZ2F(C;;@OL&y*dO@Ip~9A|>qE#2Sr>v5A!{UY3OND(fq9Oc5OPD-
zR!R!PJG01d5HBSxZ9C+JkRQUWAyf>ZAOs_1EpT>I2)+9_NSJO6p`1i=E__x#gbE>$
z)amQESzBiXZV{n!TL_gxxSMqjVQ-J@$|2klLN)O!A>1yvszT~4NFQQ#@fso2l>ePF
z@8a&r%(#)0)Cu995SoeCWxI(q4xxSs_lD3&W&>eE;prXLuVQYC={_l$?NV$KLQ^UC
z3kMh_DLxQF^AH{kp+yL-q_-44B%}l1#A709EhXu&;<pXqkr29t&^?4lL)N7COpk}q
zPQ1OagYYq7M<IPWh5nuNp8N^+2kBjeU2PxEir>TLPl@yt_Tn)T>0{^i6?yW1Vm>XU
zpRhkG9KwJQ28Qr#$eMNkxex}4kPl(*x$MD0nye4E`@9NfrsaPzWX-Sml17G?g+oJl
zh23VlF)W1fAxsEaFV+qZVMGWcdC)oePYC0fra4~?;k6J(vsZkS$22B{*KNLjhA~$B
z{TT+cZq2j0_rwq;g%DAHF66dCaD`xoFeQYkAuO9|%nxB&2-8`49fcVo%nV^x2(xYS
z*$m_A45RE!qy9`|P6%CR8cZW*8uR2&!mTU_VPOc1LRcKaiV)riVMz!}89#*OA(U^P
zy?>_h<xJ!EnMUp`qw*}H(JZ6GEMsK|t3r4)gd&ETWsII>%%5dNtKB?1Fw59D%Q!O2
zn$^u6LNJ6-2%ZqUA^3Rm@<f~ODA&rG?TsYB)2fw|>AP7*IAnd0<(O^7Y4CV{<a~BC
zgjfi1)ix1AGW72kQgq-mV*Y;P`Mx@YuXkiQ!^jR}O$cj4cq@c;A^gIl7Q*@v-VWik
zeBKFRgUF}CcSATB!l4j0hOkM><`8y<uuFUkuL2?rzAc39A?%QO_iTfS;%=Gyg?ntz
zy&>#l18&cy1Mz^ZzbEp(u;pyyu&o~r;RBl=;Z;EVBU`!F*m2C}ABS*U{DiH1BJx`)
z=Sf@nOyqOn7wrGG{#6L4#Gh8pzYgIWnP)=yLF8N8^E;8VA$%`#&eo^uqpcrho)`Wk
zyb!|Aw$H^7hGpXK$oegWf298|{KNLSB=V>5FJ1*~{c;FbY@YeN>#EFaAvnU;@ntF|
zf-s7Qaa|bKhmjRV35gRMJH|A2(1(~IIbr06Q5eSLFiM6oqmuKnFgk{DLl~vPC>=(b
zFzyMXZWzXz+_GW(ye+FBjJ&Y54p)BIx)M=eJEFh{<Hj(`$>Gj0YK3uA80EvL5XQ}6
zR12ee7`G_5qVQHBqcv!qf1AxKg;80&itu(@uPSm!7!zk3EK+BmgUD1vdd)EW(y81f
zWr}j|4x_frIzr~Mc)c*{hphp*Ss46C=U(A`VKfk-(om#P82p@vW@B4#5=K*--!H-s
zd>#m+c^D6d(ISjT6_$}(hS55Vhr@WtR$3_<v)b6oBVn`^=T@jQk+hT2Uf4mH`G%-d
z7>|eXIuFWhC;vG<5ysZi&dy=$4?BN%bqS+u7~R6?9>$YlJQYTdFnWgZ*(*7H!uX)C
zkvrbmD~#S@>(jRPXB+-W&a<<PzG3`6+n^7pBziiGeqp>A#!F%JXH(2E281z?6%eP%
z>OC9ApfH}Z#lc|=Q4Q(yZ~YyPsu!}K4}<uEFr&X5#_%vkgfUc}uY@ryj3*S6oIWGN
z7!}6KVmZU-7_YLI&U3!T{k_vl<iybuukFp_VpwCs){<Cbh2w<d!<ZmKePS4s!q!4s
z<Xk+9%{7G`drQ`|Fs6plGT%vslg~_NKM!MO7_-87CyWhY%noBt7;lBauU+PbF^|V9
zjOFa})$<q4F<v~AH(ym<5Jq~Au`rB9Y|Jp;E}OF?jHO|mE}KJrX}f$Tk`-aR5r#Jm
zAM3Wz@pV6=>U()B!&nu@n=ClnSri8Uz`Db5g<*!R2Ye^z7`#zK;^8jzFUb78^@kA%
zBNj$HjG!v;>l`B-M#$!Dy@)tT)D{zL{JGX$xO5mv@szMfRsr?Z9Q@_U_v=_{ZP<D}
z&sDWxT^Q@RM{K1XSxjsPCf*r)H;j#8><(j37@O2S+rro`=gnbkVONyMCss@>!U)z|
zK<umfXlQ2`yQEmR1UFk@xlxk6688!BhjBopw2B-I<4_ob-^I8lj>GK0VVp_f+Z2w3
z@nIMrM{zugkJ$Nn-bK+OienVR7#+du5$jkV=V%i_^@#P<^#sS9boM7<d>Y0{o)KYu
zu6@so;EOQ64C9|Lu7>dyyJ&mk58){uP4>4iz6s-}FfN3_mxa!R@m&~a!}wNas?ZX@
z596H7^I`lT@}scLT!Xnx&&@Tst{KVC(n&6gESzin62`A#{3i2vVPThlOYNO&urimz
z;8y+&<F7FOmcwOL?+QCZp;cQ(Bl&hNpLUhF7KS5&ViD_XDjvag5%lexi-<MzPt)=_
z*GH_i3rj@cj36rl&dPXwwxjCzS=kZfL~!)${8AC*GR-q?P=u1=FMga)<$-zDx!-S|
zQ96P$5tNNszjOH0g^6N*1O*Wo5!@I-rHJ(;h^brzw}{^)EN|--L~a(ctK2G5QFvPf
zOf1X4V3loBC4$?<t445#5*=8OSR;a(5wwe-J$*K1-5Ein2<{WFCA>>`x3G4^nxwIg
z_&pKSji6ox^&_}9f(8*Zl+NiHr}wq~4-)_5jg`flU5|=1iJ)l&_eanyf(N8LEX+(1
z**t;=BWNL|WdyB681SJ8GT+{kw~qY#^)7iEIkXi%62a0v4#r_qkDF(7h~TjZUW(vl
z9gdD{&-T{yrcM!SC8ozCcp`$%5p;=QNCeN(dAQLvf~O*QI)ZKybdR7%1U)0T`~8AG
z5%h{!FK{yT7CF={hn!+xInd|Hi1nQ*NxumCN32hD`9bb85e$f6a0I7Pj)4&z9Oh&i
z6v4CNtS8Owy&S|p7vT3{)?|RsNAM!+wk!9A2u{|v78*D*#d*100dMZLOy>@bfH*RO
zS44&hhYLq&H}BLpkMtQ8!K>2AUlZY!2xB4`%gz>s5yiL&#z(Lqf`t)GPy<e66Q#2=
z_sS+ktXE<RBM8qkCPy$Of~oBD5zNw7rVD38z~u~B)phFLGi6>WV?Cjp9l;#=%oS3Z
zCo(^R@8rBFg2fSh9l<vdEa8ERU{3^lBUl!}@(9*Mur`7f5xl`8INX_vU}XfWSeXbS
zQr?Wf6M<K}C<0dmW(22uSq~H45o<y76TKWnpBw@a_>Njx{s=<d4L;-zN)HKt+2wdF
zk{gX67C}M^J>#sHqMhpHV5p>Y5@w~vSO1UlmiWd9Hbt;be7*4P2;PZcgE$Ljs`su;
z)@QTGPT>~eR^he?wu{hbhY0Jy;!L|_?q=tavM*viu>OdHPXzmwbs&QGMBb0!1CfKm
zLlGRd+lO%&@Q8Hs57jtSj!8Kw{8)J0_BkQ)iSSe5v0jePL_QaOA^b9euh`Yu{=FOw
zcv@}98fJF<47>dmXKvJbAM9Ipg9y$>@O=bVc$$yOITt~R`Nl61{2IXz5&Rgz`3V2G
z8GoNF*i}^QC-u(@Jn<tq-pLwE$uFu$(d2uizeTK{E59?yP0kOdIm!Qs;8FyCM(`I~
zNuCsGX7I8I<NOoB)rd7A+cggOQRH^cC3i$ErI--H;!)f+-&#rYkvARJN0Ajpi6|ES
zoqg^50%sK2QKSy!<wVhLzOlPP4ml&2j9U8@yet2PD2Sz^C>=$aD9XyD!i#L4&GSY0
z@AAedo}X`2ilTB9<-~6imKRot;^ruB5vSX&Q3U22Buo`0-X<mEP(@0^C~l9Us`wqk
zI#E;;sV=M`tSP)xSc^Lw#obZtn{U*X!uaG&nQh%8v97S5u)gqKVFTd>IX8;pz9<?;
z(L^GPKM+OJDDIbe*8+p788^4Uirn1xX}7>=8O0}+oNJ?aD~gAr)=#@uQM8WY;V9Zf
z@f<y)XdA^NQ9K^C=G}cX`tR@O$9NRP+Y37gGjCaRj9S0SIz@H=ztHl3B8tvYbcv#C
z6#b&;A4Rt)x<}D7ie6FcV~5PIxE|uXuh=_^BNq#v6!sC)>>IT{Rwa2#%F{xMRGv}Y
zSiQkf3=khE<e`5yYW>O@B%}k=5M{B{3sJln#h9<NeNnu`J~PKLMdr&<42|NID1Q0N
zIWB5FT^bg}@F+$^F)|9iEH^reQQS~RYi`x^f97)`wpXLp0&TCc#eU2tSz9UR^(ZF^
z$r&RY%RRlAM{|4>6QY<H#iS?-StV{|fpwNKjla{{JDR+`Nporx)1sIj#SESW{@kJ{
zW=1h9ip5bZiDEWudnJ2b6vHl+m=ncZHU5Sk1uYCGuRimoGiw3QohTN`>|fwyviuk4
z+;}o?X%x$%_~CWua^cD-R)|n}gMIsuRVDIO65kY3bVXrC;f`YE0;5bVr#A`@Yf{UZ
zF*BTB4EY&>Ct4JtD8f-BRlP{mnn;tESN<v>iOP%-qezIqTL-rsbucT%lXr$Qtx~In
ztjrq5tYP(~by2L3;xIcy6mLiIP80{D*2GyGqIfrob%l<tQEZH&p5}wv62+z{Hb<>_
zt~eLd7R|iGxuH1a)HWXFLdW)~H5b#4D0W7%i`_tTqwR}gw|KS-d!pDYAG*=pFa3a!
z%6rOsU&!1;JexE(7w4Ed!k_(|he}!8^oQ&}nwg4|Tpf*C^NAgc;%n9C1WR!cOQ3ZE
zpGI*qir#VbiQ_YM+NWda7sKaKd=bT$QG6A}uTlIK#VL;P>FghPa8G5QW~eB>iCW(X
zpJU79IM496$JCr}qxde0vmDCO+5C*_dk&}bt^P(%+_AtozC4%zZhnm7JU6;I>nGs_
z;m<rf?!`s%UxYO2^LrG3aI}e`am@NPdnt;77>pSHjN-2-{*K}@N5V~6*Trx}gxnFs
zKQ_NAaxIF?!;4}H0wFz%$8cKDCa#YmD~1v=IAbVni`g;c#!xbboY=pQKllrr>4q3e
zNg>Y^XYevHl#L-zW%FbIZjL$~=yqca<zlEA!<{kQ6hrwKD#uVIh6*v<tjbi1S&wyY
ziQ!h6<eBG66=S$fN(X(Rz=tF2a-FxwP*q}$814|MCj2*dQ&x4EnF#-3tr+f#;qDk}
zE4QJrP7L)$?untUNIhXDRHp2`F*K0K7NbsVWcxHxwcEweK8B_-+%LUZ46R~l9m4}L
zG?(&V3=hSuXE!X{A_ne4%b4}-jM0eHxxWv~vrP;G>>26XN_j;1sF400Vt7ovOU!yC
z)G>y~V|XHlPTX9s^Mw7th@0rF4bjJHu}xWBW9Sw`ca`lS>@Dmm>?LPbrcVrgr93Ho
zDrP;sVuZ|&_mAP37*@sbChHl)z?jw5hsW@241;1A7PBUR8mxlc;`1UygwF}nO|8~@
zLHtGGOTw3hLxryh`9TU#8NOu5Z+}L_Ffzsk$8$%;@M?@p(qME9i(^<4!&e&5Uyor-
z3}a&$$5Vp?atz~H&y86VWTr0V-999ri&#zMsr^*`q!<cC$S21zC5EXnOp`KOINi>j
z5yMQI&l2GbQFBD*3g`V#?t&N=vI|WrSj3pm7R-Fi*=Vlg-1+RKstGHzoM+`q$1<50
zJ&qM3yav4yv#vxddE)4O`=S_JG1QA&CpCXknlWsRVOtDt?#p#Ko*29__}C!(a@WW3
zb`1U)0x<+*2*r?$Ar(Vdk)ttqrZ^)!C8y;u-Sws;CM7OR2=f*i^hvXACpg!}uy0rH
zYL#6h<c&dA`z@ZT3k{}qA}tph@6bPH-CN+AuylAghK(_6arr>gd_L6U>+73h*v!7s
z30q>g_(2ZSneHXF$FPIvavYW7*crnv4iPb2h+%gOdpO?4@CExb>kz}o+BzfekKtep
zhh!dz;k_8%XRn)O9oY;XX4A#6zn5{8y;N==#_*8{9jHG)>tFw4F_32p9*^Nf44<eV
zeNKveDhHaM**YV9$qp97k1^{f%_$zB7|zDf?3-*Z*~T^LzK-FqE;--CaE7fR{+*B_
zpLsEnd>^y^7n~FRAY^eW=VR7yHhv@U(n8~Bwo(k)apc7D3&#`olNheX&?}z%TMU;t
z)W`6<Oe%kftl#Tsz^Ac)JO7H|?-(xA;b7Jk)~#F)MRF$cYjQ3Y2jW&VN8EB_!QwKn
zk0UFN>%^JMESBYOFk*=~h|W0Z%&c6RaoiloEpglsN2xe&QmN8$l#!1SN7*>?#0!*_
z9|wywCZ7~D2sz{27)LqjnXn7@I?CHyuMkISuY=01wo*~#x!qYAg;&qYaoiI}-8ibS
z3vro%II6~RM;z7SxGRpk8N8LVdK`DgtpiP7BaWI9H%9Vl){@SLWz4M|w-#g}sS`(q
zhn+7EE8wfVyw%CcTli@JQ}3;LJOS&+aW8i&j)rkGileh4Q0J^@_r=jTjwW$5jpN}s
z+OYl&aDN;R#?c~<W^AIpjtAn_O?al}BJ&nnKL%RHG4EC9LkhKVq0x#F_FI3fTHB;;
zoC8IPc5$?i;}LP1kBWRS&C2Q!M<<z&2|EgZTWH<udtCepA<df>8C|rYuEK6{bdRG)
z+*(qkrxfl8c`xw;-&-xyH;yOc_$rQ5aXb~r({bye&*yRUi=%%WZ^ltX=Qsw$txsYb
z)v%^L85p;4Y#h(VF-Ux{@D<?@;d603FG9~3;&{>KFU9e)_)uZ9Mb?xrOvB<B9>)lY
zBjb3@_8%3;tKuDO&(U$b9>*AoTmXn=pH$YkIL5~@A&!Z0Op0S+9E;*8l-sm8ri)CD
zV~WUBA<K5&Voks@BaYc|%#k>g7{{)XPU^(DJbZC1P}Y3A)PD~DDT|f0LbxQ3rMBlX
zk>$e4i;Oo!Rti@MxkeQ?#E)n=$sVWQam8WA;f})-hgY5XlQ?{F_<0JjR&fO42*$BG
zjx}+Fc<gp(MdOIEdy6kxWJI{*iwx>aarRQ_<Oz`^d-WkJD=l+(69@U)INp-EEsk|@
ztdHZ}I5x)dwq5p}I5-0pJ()I0yy0-crZ_f>Z;fM%?a5qbW!y4+dmK9?X3X7j?1|%J
z`R|QmpU4Ms>=$92_vCy)Nb~(T4#siFj(=FhwaA#f$g0ngI6jQyqc}3PIx4~n9J8a*
z=eYO@A+s3s(>QM2Q*cse0f*(!7)1XHzhH-1nrk$5e98V_-O1tlG|!71Cm*j@PvGk~
zzKP>Z+<Nr+PaIcS`7zFK<M>YGtnm9d&c*SA_|I`%6!|fZ^CCaRaUqW0d$L%N>Fq_v
zFVZi?@n;;r#_=16P$_>1AMRz)?Z6@nnf{97vh=^>SUJEFiC5zI&%73gBVm0|#(yrw
z64t0#GJzWsKmt8?<P}fgx&*FIAS(ga;ex9Tac+^}Tx^s`z?ndH0?`hrw%Eu?V0jzx
z5fyo^f{-v2W0p#wbOL1(D4W1732X9-JUQeiP>{eoUlq){nr9?%V**1K8<Q3r<r26l
zVSUq7A%TY%8|D88Ij7mpD$7ZM82r`*Dl+VA&f6F^f!h<Plt5)-4QtgcCX%WN>y8K0
z9SOXoSGCEjC9L<lNnR}Htic`Gn^iM`JL$>ewIl1U1nMPFU;OR_YKu^>!&-^gwH2O*
z_a-p4(8=^r0u2&qm_VZh?n|Jh>e)D9tyX`30?iU=l0ehMzw6gW7F(;{KafCkIXo!j
z`tpX>nr|U<z)+*x@vPHo#?^o3@k;b?0&Nm_G=+94v`yfV1fEEua}tjx&@O?hN!*b{
z`vf{9@L2+%C-7JT9TQlPz`_JNCGa>~Ac2=zDuK=k4ANe75%x{s$ppG4&`oA{VNYQX
z;cZPEy+qg!y+!&6hwQc97I=y~EAwe#KOy!0A}mWjKzv{V&)T_+FxcipM4n6Fd65@{
zFWR|h2OC4hM<y^TfmdvOSOUXsK0;(=W5=r^;}RI3z-!{8g|7=)lQAM=g;-)t5Se1<
zPE25uc%g8zt>3%En3}+}1g6`{T#*?G%oLer>$64Xun*`Bjd?QX+qt~%unvn7NF<O<
zU~vLVc=jc*Ob#C5a^af^tguVHk-$pvRkqT9i4~_vrb}oF-3iQ4mRF`P0e=F41cE$O
zrLa^efw0YM>RpbA%n9#h#YEzE?$VOZR08P)b|kPffz{I2C-An&8sXXm-m?AIiJVo;
zcf>a*utDTq+h=0}n{4i0Vr;Sb)&#cMe0u`xv=_Ui9I^G?B6||po4`Kt{RzA$a)4*z
z0joC>-<LviFo8qT4-2V$psbr4J3bVl|3?WNP2gApA182J;-|tB34CJvTv%c-(fOp5
zEn^GFzewOq4wXriO5&>oP9<<Dfj<*CEuZi0vR^0gjm^)9d@KAefwLl46qy0fCGbN6
zKT15Gz%L>{C2&FH=L9ZtFZ6a0kv}sYYwY+nf!`ANT@HT;DKb>X;jaY#mRKT*%OXfx
zL);Z{l7B?53a=&LNTQe=sxCE{=ulkdbwZlgi)0C7ha66kY+;U&KDkMh6zA|rv$U<>
zl0=y#%F4`3qMWVgCs8172yYY~nQ7JYCfldHNQESB7U`*dq{FQ;D++HDR!X9>NEIP{
zZcpO+4c1Fy)okS+k?O)4Nz@d%)6T7x#9cPOJBivhuaiVWwMpG1>LpP>iF=jRE{O&r
z&4mqZ|3)JB2^%NT#MYaN+%Ie<d_c%GdLB%oMG`G#vcheWcu2gJu<uf%brKKToDOYm
z&qqWaP2zN8hq))Ky{&f;c}&<**eQv}Ma)Ci(dm*z*Cfs*@k0{blIWg9B8g-YJ(B2|
z#GEANCecg&gOV7WL~rpvN%R$YGKptI80smJr<3SsEB!^-_ya@++WNC1eR#!B;yLlx
zh0iDPitY145--~PC6Skt7%DPmh}AQPB{5v)h$KeYo+FdUy!c0lS0%nC94)-EFKbK^
zW5vfMQJBQ!B*x36{{)eVNla3r^5Rlsik&+{WU6pl64OPv01e%kX3Cr;oGtukf7ZMt
z<|k2<ge!>!66v{IWT9}8aB&h#?A)bEEE6wOPg`N@ZzQqO=Bq^BOd>PPnlb}+t~&{j
zxYt&EBK{<J!m<KEnIU0V7!gK=bcl(>lh~cK{8LG!llUNsBT1}Q*48ApC9x)nwMo2X
zm)elTI`Q?k@^%vMi1VV%I85)#+$h|X#AbH9i`GE8MM{Qm7vG=64w0Qn?6PX|?|X^+
zMD_^x3ON+~HyRv}@*ewu$U)&D;bGzJ!ViU?CUH{aqa==s922rWA185K{DiH1lEf+<
z5$1kIQTpe?FKnMLMZOZA;+bgcO%G;$BYwtKz7_dScs7aeMWTxTV-n{%UZs$g!cWq#
z2)W%0N&K9|#Uy@_a!L5Bo%@@}@4`QX&2+f`OyV!w=WkvG#53yxFy=opuL`dv;YeBS
zTucZd&EhFsC%#EFERljUg<2`xl|pt3Im)V<LT(BrQ@GVGbwdgTDHt+KrBGU=jGbFH
zg*=<*i*O!SZtKPrD%g5Ck(*L@et=P4NQavxQn@7sic~5JZxdD$QmiaeC578<<?E%!
z9X79)LUnO2E?gspnl`^P1u87gbax6(rPofOP73#k-z#Kp-4yECyuQc-YQqL8G?dvW
zh5JMrr!eBFe`7Y0k}>a3p;-zKNNJwJLn*XM;X#><-$JCNaH=k&t;O4<@UX}N{S2UI
z+Y}y=LO$z|qkYPHUd+2s&!uqxLUc&su@pL{&?$v~y5|f`;n@@(PvMCaI;YSjg=bRM
z8zWs))@oA&_%UzFn%AOR3f)uak%I4&yq?^VAq9QJdkK4|G`H|4d41UvM&~@qAbMK*
z$5P|z6#Au5<EW#53d>96e>y&=<3#HQ8XpY|NLg=ZkqqKN(YHK<MKUi<4H4&iQ_rXH
zLJBXY@KVaUDY`d>ms1$Z<C4Op6!^6Cl@wkh-{-KNoJtuk9Ff9Ekx@eCzA92_F-D8L
zE*xX$j!j{l&Bv!O!RFOE<`$+fIfY~jsT8K9Fg1lh3c(bnr7%5(r70{+VMYowQ&^}{
zvr?EXGB1Ud1<pAs%$3<|pMxe-y{1-e=Sy6`JzZwdTqKiZaSBUp&UfmTr?4UgcM6^q
z-jM!g3PmC-Q&=TJHx^`a$uxzTEQa#RWNyvHR*U&$`t7oz6v8P)Q;4ay5g}{Hdh$q3
zTx{*a_37Mr3JD$A5&Il8(<!V@VN(j5Q=qvfg||h>*NVKA!a7@7uLH!accg3(zH5sc
z**Eq%cm(ONC50V!sjVq&6W?wtblYk3T`BAq-(xGx-Iv0Co;9^f9!TNCl=am3J(=$d
zsUH+MBs`qL2ey8MU3YI59X?9oD0?iIQhm+3cXuph-KG3Eh2trl5dS2F&qb(zn!-u(
z&xCE3SvL~DNa0JFU#0Mk?RiS%G*3*CZt|ov$#*H7<q=trXV&BU6wa~KYMfb(A9z}^
zZ>&bu)i|HBzRp;f#-cQSO5s8ZKkEefJB7<BTx3I4asDEoUv-Rr<M6o5_&tUCyK?_X
z;ZllgqFJ|J?wjNMljrXo=U>9oeH~Xg4)DZJqiY&hQ@GOBStgCLX<TF2SDlVDilu?H
z#dCzkh1aEd(2<o!i8P#2NM;|)W1?ra6mE{QH`B~bqhuO4*lwjnN~<h$StKuw{50R?
z!$WDS0tIPQOyjmRj5KbP!a3^8rEyal<<qE;2F+X2)-=>NEBDqkzTe7;JFK$*kxFS)
zPNQxb_0p)4wnn5o)2Nl^x0a}y#vN%?OQWXr>S@$SqftZ4=V~Z>z~(&8c1XUotaVT6
zt~3r_%C4P89Xa2fM(zT9b2gjeJ<9rGzU4rypT@muJdj57G#aGQFpc|Fq){5j=c92N
zP13ke%EZli)kj&uN6$c0DQk6fnu$|)Pqk)r<W0o~(`dn#*^$MCbg9qkU}R=`Y?Zc_
zIB%WC!y;|ccqGj?4bYbRJJQLldIucDc4<78M#nVTr_q5~2drh#xn?@Em^!8Lgo-~d
zq_TdNv$Hq}O>VJU8n2`=ERF7I^hl#;+Ij`CKkJ!BuQYng?32b*B7KE)cryL(ONLKN
z=_ky*xi=t<foVK%dp?`SVDUk=!WZO*h(9Mx&9GimWXu=Rc#(?4m(v)Uwq9{$;yZPj
z*Xnrpb$A-n)0mOQ2p;R5StHXJmBy=Syq3n~G^V66I*r$L)F!1dCXKOaj89`i8sq4{
z(7}|m06a82z8OAI&QBi8Id>_$P@K7$BR+1WgM4b*@}DN8&Pi)$rY)R96d|82^1!yN
zxoONxW4^5~5V>3~pNVdZ)7C@^zBK$ION2|)SSGSuxI*}baHVjS@J(TnkU?B&nBs0B
z*Ch3%t>sO<LOKM}2&Qo+jc=)>5l&-Q8oPNwH)loCct`y(nnp}YJdI>OBbl}y6C{LH
zZgQs5NT;!y2O^rkhG$Uw+@tMtpWmFjR{X6rK3-<56OybKd0WWI(l_wj9N~O7jg4t+
zB96-E>{46P*vww)&)t&7Z_A90T1c96Pi<3Wwx_K*sdfl=3a7Tr<)F7GjYDZ1{y(z5
z16YdcdwOZ`vAjookCk8`s34$%D2O0PG9Vy9BrD-3NDw7R5GAP~iUi3yM=`KD&4$@s
zGAJPCh+smDh$6{<Pme?S)mL?^t8d?P&W$s>J3BLX2X^nU&VfvOMD_~z3HR^70jKn!
z$j7}rheSTyfsaHE@4yj}_k>4<?+Y381CjjRo{t^n%N_Vc{8Qm)j{dpG7dx<Pn8$9<
zS5l5~xr!WjEKi73T;lm|2U=dJc#Rj=dhxyZ4?A#j2Y%dvQ#(-63lGo#JniqmMV_K}
z;1`~I$GcB+ly=}(ab|xL`CVA_R>7Ga_*49x@Gs%tJ8)Kn|J~4K!V(XW>HH3?UgEi+
zaW1M+^v@2syeQ>Gz8A&3fEQPIkw=tEaW807Ldf%j9igO?b$hL|C`H;7cv0Gma$b~|
zSVj@bdU0PL7Y&HCtl&kV^dcd{GT9MqgDbtL;zd<2DtS>^MQjNTh#a&5i*S_}S4$zM
z-hYv$S5s+CVRc~*$KE!(!HZg6^!H+b7qz{((TfMY$eefA@uJHMsOv>NFM7RTDK~jh
z_kx>b`|g69Wpj(Lz84L=xYdh>UbOb2jTg6hal04Iy=dV@BQF|zai<qey|}}Rbwgc@
z&_s@mzf}R7DSMZ2CU0*(Z`HDSsOxSi<gG+n{>Na*QCC|p?ve6<@LrCm7x#<Px1Gr4
zx<(##wfCZf7agV3oo%q|>f}XdcGl79($$NHyqJE$-A&kA_^`0Mu!k2tMQGE@3sy(M
z)JI}p;Uiu=>e%%2qTf-=W}p{*dTxi;+63W$UOeW-ATI`c@jMkK-udapP%nmgF+|xa
z{jEohhI{dZ7n8i!{c<C`c+!h;UX1tRDKAE9#>a|`5)Uo$jP`;!M%kwwkxPP!S*8hI
zO!VSeFP>4UtuxefDrJ^W^DzR+WH0y+%M>qa+=Qu|+*?XbV;7z;`f!QoMJ}XzrC;+}
z&rM9HZyomxFW!z9yrh^jy?EJ+SG<_TG2d9gKfynnfmgkl<HcMrW_$5@H_umQ;ag_m
zJTLxBsL%IWFXda{#X>I@d9m1w^<He?>f$vbFP3?++>50gjo(YTms*WHf40;LFV?8u
zm0qm!f)D1bcCh|Z53?PYde*WfOFip^^x}QI8##AgY?0$8VftY_S1Et17jJNNjnCia
z#p~=^rTpzY3Vtj6;{`WIfY~?MLUvXz3{|W<hN&f9FMMA3y$EQEk9!g1TxcqfcoFs@
z;{Es8;d|>K>cs&s4srm!h<jo1Sj*;_T!$hFVbY6~7ipe+W?1h+XCkTlBC=lW@?y6a
zIWKmq8Nbd26Tg7%@nWwR`@GoCHM88s&ub>Su!!HLYSgyKJ90VXwQikySA51>)>-JV
zl*zie_dPF;dhtHTSq5LL<(z^Kz4*wBk0l-xe&WTa?8slGKI61{@r9SqycDv=%5$vR
zzvTRStuKlTmwJj{WqqUIXRG}pbiO>C2g1gso^Ki4ixB}l8Nl~m{NTlvepK?~q=xP~
zAFlV|N3ZqB;VI!yUi|FEFJAo0^Ro~6KK$mz?_O)WpU>KPPIHA%b6@b{BB$?E;U8X{
z@#0S}{_^6i7w0&z2MYgI%l9tzTqftGa1dC^C%i6k%zY^Cv(Baec;ON$COoCNF5$x!
zK0GwsT7h}eOZwpUfiL-K(*?oht`Xz&ZKOeg4^@4*%7@ZEl=0z<1{KTtQ0POE59O3C
zFQi_<$Ghf=_}-+7KK?U~%0AxiSahZ0^G26SKHQ`K*@>g;TDQJb@ma`h!!kw7UT|OS
z!!<r!>q9l4bptamjQ40-RNaSh#qw(|^ORcVso_ISMPsX&y}^fCK8*EQC!g9r+~~sq
z9|rnR$A`K;%=xO+BR<sg;U*utva>$i?87ZSwDO^~5A}U$yUf#+4e+6X54ZZPH_!B3
z=4t4|Z9d%YLn9xKO?Nk8?aMrkeYit}oK-WC-08#2WgglP?{ZodT;^%+Lkl17X5W{2
zT1qEjElhN5!+L#q(1&-IdG2AQKC~C-+cxeKX~$8W=Dyz%A8-imJNVF1S(Z{~qGcx^
zI{VPY$=YH!A0GChkI#Aq2UB;E-ahmY=_zDmdZ|f#1qV6bxzSfT30)r50QM917jisb
z9fe$x`+q(R@nNXX;*SXj`7l`IaUu2Srh;MOBZR|+PY7+BCs~&dBYha<h@%}s_c7v6
za~NN;YN5+GAIAGI!G~vj_`rt`eVFLOvz!7hIUk<$VUiEixavyePxfJo4`aF(3|j7C
zN3L1!xofI>st;|Jdy=E9d+DF&g7M)+pLIL^bRY7Lmzp6?@{+Q){)!K?eAw#4Hbz@q
z@Tw2<e0a@=*~<1S?ViKM#%;=dASap6m9{T$wMrNGxE~@G`LNiBzWef4`LIMf<E->y
zsl%7~u-xG*d?<C;MFS?fFp;cL=~^GwiO^uZ0&Wnpx{a!IlW?<ei;%vr`>@>y(}xU?
zCLiA9g7hKe!&^SQ?ZfD@Zl4cq4BJNI9YU{k{{7+i;ZRvOZ35EC!#+fKnD5Use27Y1
zSJoZ(A?6q`$SCfgzCSPFLy~8bLoU8ofhpw!G0io<3N2P4%bE3IzYhoGxYLJE_U7&J
zVVB5mAwyAQ+UvtUpY@Z6oFd6Vu79@8#~szJW>aan$|8q-IO4;5Tu!U3fJc3JUu|F!
zdqIT_Bl(D@f<VD3AAa)TW7g%vr#^fp@jKz?!ei{I2#vq=;Vbb)ojlBb?Za^&PB^9C
zihRQ*x7;dyUHH9I`h&<xp8p-?^W~nOefY%(mmkIaR%3qU`1o)}2EY06yK^QvE#ltq
zqRpQ^{Nn@myZ-XwtPg+ta8C9Yh3ADAgoEd~TOBN-3)3Yjl~#D@$ShPHNhv>{(XgVG
z@Z$=Jc|y0aq;SEy0wx;g`%&OWX+O&Nt<zTpKg#-1&X4kbYj1@M`&>-aFOxz)iey=l
zaaMRd;v`HotL#S=KdJ_BRRC4}xXO<={dmidy*IkA_M@F25BPD7AJ<B$=Eu!`+#+7x
zj~XI1g|xp;<a*%^!dk-G!W;dlBT`pbPk57%8zs=4slKvz2^;uvt4KrPZ9>}IF49QY
zSa^pYO+@Y#HWkvcnIGL0xw(`Uj()dDOFvqPv=+7zwiVtZWQ2SDxX<DDi?FHf{pjGw
z5I=_c(b10w{dml=>BJHC;~`}`3%dw!?c?eu(qH(nkny|w(Zk_AMS2N)3;PKB`tgVe
z?H~1{pSV3@1H=ak|0g^>3ao38IPC}f@wlUNu7~+CT-oV<JmJR(KPLL|tRGMM@suCq
z9j}poJnisNevI~Gj1z>x8J20RpF7uEi-a{2Cx}0zrA38xQGCvi$$m`nW0Fd3->Kp(
zeL-ZJAJ6}%^hGBE4QBZ9k{>huc-fD|ek}3h6~}jx$Sglz6`3uZBb+Ow`#e8hbNGBe
z7Kkr&6nkN?sY|6SQ@!+}vfPgq5?2aWIje}JtNmEx$67zusc4IEy^y6FL^k@d$x$|o
z*pszYe48Jyi)<IZA+#IwwjVqE_`;7b{qXwX^CRm=P6mEIq9OrdP#6-j-mo7LaeFRe
ze#DhEgh@XV|0$(?O4+m@CP#RMhbbe%qMa(*>&HHkUBcbMJwh7q_v3&cpDTM%NXNq>
z@A&bqqZ|^kn{>pF_Z<DGAMZQ-1CbAfANl$Cn6;LeKJnvI@y{HEV`#6RulzX1vtIyZ
z0{GgG<9@gUme&bCzLD`co;S2gzjb`S^W%Gm|G-}Xe*EaiDJiEN{U?#1g}?amtE2zs
z$M53y9I>K5{5a#3{wea8@T?zyJ35We`*A^w>Y|WMx}?&7gf6wYm=MC^!V<zOgn2^N
zSW?7pKq>M301BK^j&ND=q5vueP%eP-0aTDuD6}2zMaXFOjCfRZrLdB)vam|PI(TD^
zadiOK1n@+_`X+yE0M!C$6hPwus>`fa0JQ_CA<mdJMXnQGFT6p>Uf(D}n|cA%5wGhM
zQM^gj-5kIz66*^a3LDsF0oV<u@oiFWmkY%^0%#IIp8)y>aHope2hbsarU5hy;I06g
z2hcWvdsNgSfL0=R3mL7Yh#kCj0BsbO4Yto+_Xcpk4DS1nSv$w~fxy3OtfRcT2_F=8
z3ZQcUT>}3eS&Y_I{2?K;_7V4R0Nn%V5kODJvbRVtx!Y!p^N3>7WpDtG2GCD7{Ur_z
zV1NkCXm2Hv$Ap7~cBPNYYe)b?0~i*7eXtLg$b*`}FLkjZJQcvm0PYB)Nf4s~7#%?W
z^QCSJS_@!I0FwgN-^9F-@^k=W0~i;;cvbOSfG;_*{?V8az%x=N3ZE6We8&2FW$y|P
z-)lWNfGGh?4PaUTkpQ9rJkQk?fHz?6RQ_TB(*xKRK*v$;8Ejj?x<0ckfS*@*W(F`P
zfVly@9Kb7F+bcb@0+_A%uLi(Gg|+bSc>WbWPx`_D7ICfaE_f|~`6A>CM8<toW^C=E
z#Q`h{U@2?ie)qMDN>9h~m)#}$!6E^yQ0*&)tA(oq|L*3tM%lH(bwajty~qaPM&Tym
zX5p3qwmR;7{N(ijwsX(|c$3G}O3$+^J#PgtFIKRvdC}W!p{r=!on>~gzee6uE*H^9
z%gJtk0D%C4oQPjbh1AC<b`<b&=DKA|g##cipXrJPuz!L(9e^1?JOCqrM8JAUNGgCa
zv)w=UDoV26R30CA;aigUKHf|KSzaLt;D-Qmv<%>b06q+0R{*;MNbw%d09qc%`{a;|
zx2Nvmkd}7u4PYOm={M2-01k*B<T1EE@0|eN4Ol<8_<P6x33E7rBZ~800Pl-1=1~!v
zeRasiEFC`z;7j&#f8NIde4<dF3O^I_7s}@Wd?C&TFtPSh2lBoOfOt&!weWZVCj$6J
z+_w2PfbY~o>Qqh!@M8e3Ac_TXDuAB?I2XW~eR)3z@JoO<)#v@CX8an!p8;Gt<oZq7
z--V|Y;Sb>%Aq^O_@hYq3X9M`#F4B)ghGNnA04@Y@Q96h5k{b4pkV8rX1W`PQYl65o
zh!R0u5wu3HLJ)aDlnkP55aoh!2T>}B0u`||pV`AMdypBSbP#1!MA814Sw3jBhlw^!
zB!xi~$)=);Dh1&Q;>w^kApEgux4&`_Ra9Cv2+j)=9j}sdwUB1jf~X!u-5}}(Q6q?&
zLDUZ7#vrZ>T1$oVc!OeIAGBg}aB2muU#twpie6j={*tXj-xAi3P%1YCadQy$gJ=-M
z>=Le9f|d(=!BCu$TZ7h&H&j6Dr}zFm4k>@s^Ne(R&^j+QVl6@IS}{{Sm+Q_Tng;Pt
z5UvoK1#uT!W#s)GMDrk81o5M?cL&ijh)F?A4x&{Mt%K+lMDHNl1kpB#u0cE$#63aW
z8^nV_bPD3WAnp(1fgsv*I)=Ee+v{qlI2Px9HG5qo9i$9C>+VRh*G0mj&OvmMPQ|_h
z$0pr^=x*zL{?{?+5kyb<($bFHCy2g00|zlWh)05WG>G9c?#GS?F(`<^$_^0zFNlF6
z|F(+zzcb5v_qraJ&agv+7-EZR_OSohKM}-;AfA-+)PMAm;&zk9h>s0oTo6x-Uw%u{
z_#pVe+B0m@S@#4MslQYvN`F@PoN%VMU`h~EgNSn0f|wS>^9r>=_(Bk`av22iVi41%
z%m`v89mQV?qM<XAuLLnmVu5CXI?0?M<_7s9Yb*<5UJ$PZu`q~5LClxs0-+s&#x_|j
zafu>dE?OSMiXhemu~wxkgIE>BYRBfXnO*g|AlA$5a!Y8iF^Ek;Yz|^e5Z)ksL2M0T
z8;_tM-U{ONAhrkb1`lVa864ru?r%HY-0`2VEcGiJ3?d{FkUJg2%92DJM>}j>`ko;6
z24Mt|2qMWNG>BXfJ5`hpBIEd)B6b_H|KYpDcRO|22K$28AH)Yie5ld`LA=XjJcxtJ
zz9VFN{@UX@?C|$Qj<D(@*0FFji1&k_fo(?oD2R`F&I#g}EI$e2vmibX;!|a9OPYNV
z#FtJ?hO(o59mMe<z6;{}AWj7FjSRkZ9Bnf@!Viw`NvC$kq`|2mehT8}Abttrv}}G2
zqN)}fH)s4!%I{oS+NF{DA5zW;{}lcuJS${O9){-}em;l`4!<aJiRi54Vj)}+LSD!^
zQz3-nA|-@&?@ETSa;2wU2see`4q5NDC>26}2n8W-Z-E*i3?ERkObBH|;D!21AynH_
zP%ea`koASFJnwqqrJ)eAD?LnwB2<1`>8Th3(IdQ4X3SO&p-KqH_PVNua7_r;hHzB~
zKbFkj>MyuD1R^;J4XTAuT?(_dSTlqbXWZ9?aD50jh~FrzC9Ex^LD^KvI^uPO%u>8L
zWIfZ@E`$d{xFv-8Av9p^y*y2M8V}*t5E_PXTL`y@tgSq`rDmfL8mrCR-|dbNnuM%f
z2JQ^~yWIeJE$$bf?>2XZ&^&}IUvak$p+yLH%d1Vux|xCR4QR=tT@_n}z<m~43#+d3
zkT+lD>HJsGJt2HQyNKytk^6-A3r|e1*gk}TyvQGd$K&Q7lpR9osNfF@Z|r3Kf~dZ?
zuyY7qLe>j*x`yzOin@iYxBT@8;b9KoKkgE{3cE`uq24ouULo|BO`j0@h45$yeU)YD
zBO+AD2O9<bMFxaGKL4PL;$tBU3Lz3kG>pL^JRZVHPEZI#LKqsd{#rFc7^bzsw@J<5
z;t_u$gb^V;8NyQ`>#F_>A&d-R6jxD^dvXY)xjsu*d^&`&A&d!G|HiUwvsZb>so4{@
z7fcixAHoEYXM~IO-t1>7ZZBYZE`&+qQxCeBy>Uswln|zdKr&58^1KLdj$#{LR7<7{
z`CkKD`%(xqLwK2Y@l|xc62hzyUKQ`s%r!fNIU)Es)XiKhog2dH5Y}))LwGHO`5`Re
z(GkM(5Eh28NM1`qSRBIHIr+^8SOJ+xn3k%P`U)O*;;V$zSxTLRxHg1!A#4lb^$^yF
zupxvkGTW$9M%(1rlW$hh?q;s7B9|*=sO=%V5yG3&-{RPc*lpMmg7^Pxp<iPgkXbN<
z5PMYF9ac8Rc@H5f&bp`*S$jN$y&{Pak|CsYZuvZfFL)G$U}}~#Ash+eJ)R#p;34c(
zE&GLEZ7kRo!tM|^-YQ_)!)OlQC$fE&=YT8^hVV`Z@A4eQqj-jO1KwfjB+Rmi<Y)-*
za}r0p`KQ$fY(uZ24@3Bf3$M_<dXBs1%7TwMAgMh5NkrpMLiki(pE+^3sQ7M^FGHx%
z+4Tc!4_QACkA?7c2**P>!DExBf*~&M+sM1DzX{=qnDw&pZ{_}-aMH<&JTWdmZoQPA
zcZHn_;inMJE6&d$>y8wrzeD)N;lJ_>DgJv1f2#C!2!A-GXGH!C;V+T1Lf&_6$2rI2
zS9hLV2;pJ~mqPd_1ip9Zj<9vMcZE?VjIv=A3j<;6#=qiW<b_c(j1pm75w_k0RZ!8*
zmn!fKbEs1R-|XQI|N9%iR2cc<1&&fWjP*L=%7sy0;*DWc2%|8J8mg`+jEUb?tQdwz
zrQEP4R4$);)^Mn=45LyQmBXkKM%6H?u`z=@SB3G>D$h0IXI6Qx4ui-+yEcp-^Q>mD
zlxEds@bEm;R4vyDuMb;a2yYP964n+{thCxwCycsb)C*g4_hrMPMq%6}esdVNgi$|?
z2Fl(R#;qbWYZ$g(yhg&r$tB*dBKwi>#$hndD<?}e3FFQ%nugIVjAz4mE{wavXdcF}
zFouWGB8<DkcsPviVYK8RKjpqBjC;dq6~<S)t@YNLF;{!q2-|9un7uEI`@?vU4G5!M
z7>j1RI)u?Nj0eJae6=+o?Pb~Mp`yas)>V$dnIdjf^y+F)=P(`$TRV_;30t?+c9q#7
zxzMbevb;mJM;JZB=od!+FnWd2JB+?zJQ7A98T_!?!#k53>czj0hOM`H^3|O!$5`+7
z<a<5`gfTFTK|IxmacQ-u{u<B!!g$OX84eByif=VMx&n`LivKLdof(IOF;t11&3Gb=
z5n)W|?U~4V4CARV#)R>77$d{DXN`wxbQmvgC>SNQ6=uh(bX*wY!(h>6OOgr7J|m>>
zoZg;A8ww_cF*%GiVXO^fN*GhacrA?iVN46-c`l4FUJ2s`Hbb8jGgz1SbVuPw#!KQe
zg%kA&LgQJCFXdI?Y$0{qV6L+BgtoFkd_@=wIgep1cI=mmED^G<WnnDm!J=C1Pb<b;
z8OAEdezgb<cu)JfFt&!Ro7>k5Nj8XV6mAM*v!ibjIaS=XEsWR0*dE3kVR*yvNq<xL
zb{KCt_VY$s8!qn%<4@D7$R9=^jF3|r6rr)b6L(nI9ZRj2#KMSkULqJBfe}U`jM@?0
z7_q((Cd0TvBo#(F43op2%sa#J-<g*QBO698jGa1!Pp<Lo3S)N|hr>7$#-1=bly@KC
z0rj%`Nag&!VeI4DTjSZV#<M>RBG=MEtyuScMencyYdr6UaYza|OWzCQXc*sz@k1Ez
zhw(ueU+}OE<3pZj*xF*Q&%*dPj8C`%i&@{Dh@bKhOXb=4?ivr3&!v!j6~?hJzESq;
zFlck!F=i>fPJ}@hl5fNKPDQMOS>nksehlNcFn$l?l!|^1<Cidg5~qzF;a9c9&eH3&
zO6{UQ{uA)eF#ZbTY#4uQ7|TSg!8|AK7C#@xg)lDi2o2*O=~qPHQV}93E>cX`V6F9l
zL)X2o63UX-E9cG=FX<?wCR)!;l!_qVQ3^y#M=)%@Rdv}2%0*B<f(j8_9l<p!EsUU&
zNKph8MLfbQg*A&?uQ#!=as*W(s2agl|0!bW=R5PRl|o)aq*?^k9fiI%9e$n2^+LW$
zfD5b^o6*NL?3}w!1a%{57QtN+>l3hE1h++SyZBAQn}xSTP(NaQf;5QWNDmLmts)Jb
zY@-O8uk|#Mabxj2gtVl7r}U;m`x-@a@sV2jEh4x(f|e1qieQBF))ADxqNsla8&8yK
z6G7VuzMAU3CxT89bdKQO2=0sE{s_*F%I9s^?IUO>&g=sb1gg17Iz-Shg5hgD4@Rs{
z#wlw(<Ro1p=o&%y2zu~HT<iH~t>+;b@D9vw5j^a0TK0@syEF8Tpicz7*s$^Wf#oiy
z+Uq=hBX~4|ei4vA!WwrLl5|*S#ivd(Kw~wK(IR*(f<X}s<zk3nu=EipN^w}&wa1km
z@*i<{1W!03&FDzWCp9Kd{b%%s@3MZUkBQ)E&SMnUMlm*maS{9!v7VY4AHjqOmPfE6
zf@dO_7{O~1%#YyN2%h5_h+tO4+EINH2S0)r#V1EFC4#9DOjDMn&x_cbsuQ_+`t%51
zieP5M+L?U@r%d~;+eK7fmO?_`SH<VZa<*g1qPbG$3F*Edf`t+5b&*RVSfrJ}PCb>e
zwqsaqpAy%Dn<y=fV43E{zL{`k1l)t*(};Ed(y9nnN3bS>wGnKO;Ef2@MNl}vvpxd8
zh33*6_fzXU8^kw8uqlGg;@gBY*b>23hp+A8q4K)2t)}D62;PcdUj+Ljcsqg}5u_q$
zak`W@0$&8-2qMb*g#iwG6V!PW!3aW9>@4l0%Er0aZ2kW&O+=84SdO%0B1uPJMv#dh
z8^InK=OWk{!LA5)YY^<nTxplRsO*)ctsD?P%mY*8U<B_(@UCNU$RVumy$Fsf`%wh%
zi+m_#(FY=zdqL&n2tJW$*YadN_h%7&9s$W05q!xbG=d){xS39f9E;#<M>)=sKj>o7
zHxYar!FLgSAHk1ysqmz*->82h*v6-Lh)Lo9M?XibkI`Qu_%(vxBKSRm(^9UC;*SW<
zL{KJ*vQhjQ!CyQNM=j&C5&Rtiq9`84xd_fja4CX+Sak{4g$ORn{X_{D6BQ=9xa3$Y
zih1j-4|*06nMy>F7ez^xULmyXMM?=TTT(BOQd&q~J90T?D+<d;QNbxKjH1Zlt5vBd
z3OiaQN3R@36^B<9xhjgQqxhtw)ktEsD5^)XE{gS0>+r7;wZ1~!9!2N5?wV0NP{Dm2
z4fYmZAGOYeH$+h@il%?NYe#Wo6m_Dg8^x_rG>l@$I#0bQZjRy>@tcHn*?1f3M?q|$
z2sEQRkp?Vfy3LL}#MLN@#!=i6MUyCoNAW}ycd{<FB#JIkG?Q7&C|X5vmw59ijAS8G
zizx0EUs)SWt)plY#eGrSFS9kZ(bloNN911N;@W5@1Gb@q$OFRmj#o#K2czf|#TARK
zx)L?q>AtS6Q9KmIfG7q=(JhLHqv$8g?!vyp9#Qm+qE{5Xqo7xxDCk(Q*otEZVeJg~
zh+6V!)M_>j`YUVKMdg1A^_Y+%+c_wT!BIRO#gHh5Mlnpm>BvNT#<%&1D4vXBjU1nf
zVq_H4qnHuJs3=BLuZ<~DjEUmuD4tP`Y{^&|kB?%U2<u`fT264Pm>9*gQ9Kv5YMB(p
zWQ_^?a=AMsQ{_7?iswaM5WXm6G{$5vUW#I76bqtQ7{$v`yu#x}2D8+X*-^}i;#F~0
z#D=jAbY$?ks*%~(WItbM*S<)6X%x$%SS-FoXxC`t@+elQ@hhWP6~$^rW2;yN=Yn-H
z6fM_kE=V?T(MC}iLs1NyqSzd@zTxD@uqBGEJSXsouI%0x#p_WVjN+Xrwny;>kDw^x
zQR|1#n?ipSZ;8Ck!yyW<I7@v|*uO;VUnPMkf+`9{5fKRsFaKJJM*sc&Vo1+Mk>k8X
zk&GfGg)vR8F^Ah>GmaNacdBTQaF=kmkd}L+*eAYUctCBt+`M<AI26SXQJjq8a1=+P
z_$-RgW%*tdA4KtC6i1b1E$=)1BL7I@C&G_~cB?*hTJ=Q~UrPTrimybzj^cO}$HW<d
zZ8+iZZyYb`jPsqNe=kDi$0$yTpN-<DD1H_{Bm5<b(;~k{@te~^2LD|muUs+aAL5Mj
zrwEn5oErajiYRhnoM*Gwc`ih8F^Wr3{1b&Mh7vJc5wjL*u^71N#+-SmwBCalic2JC
z5ie+Xb{6EtP%?%_Qi$#tN-6uWl!6%6Ewolz>6nFOgk^>0gyn@5gtV-v_?{T9jA2gJ
zdY5md7%IomDTdB5REeQ#%zAvIT?|*ntgl|z#Bi<1)pDd#Er#kb+|D+{P$Pz#G29qK
z9mbF0`WR}*@X133H^gw^!2+gQBF}kUBfT!_Boyn$P%no1F*JzbrWkIH@ev`{EkY8e
z%a*ss&@hJE6y$OQmf8l5W4I%RmNB%7p-BvPDnj!ZnyL-WVz^6+-4eTM25Aw)-7!Am
zWYt1sqCx8z+Qx8?Dr%!rTfaAk`(n6XirqFE+vEWaRC{3uVMifH@4=XL|368Wn00BT
zTMQ4!tbb>^#;n)rKNQ0oueo|w%D-!pyE{8L-Q6pO9x;qv@97!Cwwtl^f7V6I-ZAuv
zp>GV2#4wP9&vEWh!0nPpt|)jkhJG>hk70l&g$nJNNFL*C?kVK6qJv`?6vKBqi;kL!
zJAW+oxQyR=+ch+XVKEGk@#-jQq){`C5ivX&Lo$I>0#C8CF??a*O9P`~7#+iW!+LUd
zObk!64F>8M7#qVldwCcb&pyVmB#xzVJQKr2PDC6{<9IfPpH>xkWAJenxHD7?lVg|?
z!-g0(s%UBqD@ABFEr#b~ctP10V|XQoS>n@$Gh%p2WTuezFN^Tj@mC#XQ4F)Wq+^&X
zWr3s5i{UkPfj!!vM@Qb5Zj*&E>+W|di@Agj<Sh{{<ut{xoV_mVULl1=_WkxGG+q_M
zYDHcnTq|7X)U{ru_`$qQBCp4=J%-KVTO6CMBHLoHjT!Te7~YonrepJ#2n}{P3b{Xq
z01vddHLAfFLj0hKqoT6m7*4Z0F+^gB$|V-V(HP#3As&MfL&AykE@wH0R1E1D%oujX
zuv<kO&rA&27;-V})QEAE_#6T2B6867#IQGpeKG9UNLFm>q6=*f#Bfj%-cgp89951O
z34NIksq}CRM?~HeQs)R0KT!6o7(NvFD29)D@W$|I3|~t5EQZh75#IK%ET0#+{Kx>S
zV5JOlEQYURI3B}^7`~6;2Z`Ur@T~|9*i^28@08_@B`0k?hM!~jQAMZJc=nV%`Xz>6
zd7R3Ij=#lV_mrJtC>k)-nHc_z!5v4bIR1*^tc**<@pla8Vz?N?r5MihWWv5U<6z&1
z!w3}ZzW*aHR~*GOiD0w?dBufXY`oFsia7G(R?F$dR8nSkGxFmo8@KLRDu|=Bblw$1
zn=*0hnHSboE{^hX^wnKS72+tAjeSQD%{*~j8OQY!E5)rw))cQCN0m6L#&J~~)#9ig
z$JMIknmDc%p)c>eBC-mS8mwY}9-GZhkx;)*aX1L})Z7q9Eh)8yG`LY6Wbf)qsTaph
zaoj9^Ya9*ZxFwGI%5uIMh;Yg(WeaYL<90Q*iNr>6+z|(t2V*u?OcEwe78eXjvpDXG
zW3-H$$I&8=N8)%ij=SS%8Ang)t%MK8(MhDWuuU9oMed2?-Z<_Pe?WM@uwC3*6|BOZ
zk@j(Ph@+#5?6Zn}M0Ad$TO1F^(M3gFg%1gNINPo59!C!;%yOc6nj+~XrMIw;@Pz5=
zE5gH*2K~fG#L+*F0dWkB^NR!q$MLxI$Ap98))df@i3jPBIEKbCERNxEFl!$Xb{l9w
z@&w09E1dkvIG$3FkwPk?;?~1HG#C@d({YTIK1(<*j`1QB;&>^Jnfw%pV<ON0aXc5t
zRA-JR#jV3(vSyICaxvzVxOIyfSJAXMo{!^&I9`lndK@$2){SIbR9u$!9bY6oBJ36Z
zavZNXt+HFrQ_8Dx%$7JOj(I#};+PwUeX8MkV}2Y9;#lN(EmRRp8IYY?ES(jxcgx~f
z9>=CQHd{lQw<3<372RvZSH`hQWVMi`=Qd)k3}~}XWPKbPL^cYGnz>lCC629e-lB$h
z9NXB<WZs)`ycM_pMt?nym7NN<3*U%i@|jYfRm<ltfp5nViX$AyjySyWe|Hb`#o>=z
zn-~V-2*$1b1i6_Yvo_(IkRx&ITkrYGlTRMy!l>=uxZY#Lk%;4)IKGV|$$@3x<2V{e
zIu0|Ay>wA`GI8YM*eRZk!`{P`TdD4fV|N^T9EBU6vdB*RxsbTV;&|7N;BwLaVBFe+
zm4kCg;^8=s$d@8Z>1da}AIAq=7;$_a$A@uzB;!wH`LR<MgV<i5Ix)Y9<4YcoiM+4l
z_$rQLPQ7+(X-{%IjuWz>udRO<$M<pk6Nk&d4{@A~<8&N<#PMSsr{ee}j$ak$Cwcv>
z+Ap`$ZtZVz{O+`h3e%Z5{*2>X9Orrdm-|_s{6%aRMz9lGbs>(6aa{UO1Uo)0iy44{
zat6v9C~lyHfl>zY4P0R$&p=57Zo}$@U8&tcA`_JY1Emd=F;Ld9nq-@CaL6xX1p|c!
zDjBG3pvXW)10DlcDyBUhb|@Pep^Aa32Cg!2wPM;~?Pzwrw7J$mHN*O8z%2-?8>nHR
zroo>cxWPaz1Fto6@j-09h5mX2r;b|>W%E{NUS+LqSgV4{I}1_Qz}ej{-tcpiVZDmK
z9^1y}QXAlA1GgBcZ=ivJ+pL&*&%fZlRivQ-a=v<<|ASwV@4nqYBLj^M++pBx149fn
zF>t4W&IY;|XlkIDfqM<yXW%Xa%?-3N(Aq!?19ux}sg|&7my<mdHnuU)))^lv_sF<M
z)uQ_iv@_6=F%x-A4;W}~po1(gk34n8e9%BAnOz>et_B`5@Th@)2D%w|*g!81pn>iN
zddRY;(<Ba&9gV(y4D>bdh*P88T2?^=Vt)ez3=DEg2Qq?z$CR}VF4s=u!A_5c8W?8a
zSp&}*7;fMRe#18~T3#cBPYIv=Pn?nBj5fx=(*`CeJ61SOX!m-&`0k#in0>~;MAgXd
zFw6E#GBDY|O9o~dm?Fz*oKTUePTO8E@S=g~24*<Q<)L8hcAS?DykcOE!MoxuWtM?g
z4b0YBWtQo3ujk3&HKFZm2jM-#3k)nYu!vp;mKfIk81EQZYG9dxpn;Hq<px&Jpld<E
zz)AzF3~TGdZ9Iq$<*nw5n(E#vzQ({>k#z>vi)=8kNo1qY>|ByAo5e}C@X*`fAz=jm
zFaNrM?FQb^)W2<Dhsc|3kBDFQa!fr`=w$=$#r7)sJ_F49g*R>Rkh6u?k8+0%>(-Io
z2Da66M+`&_#0<o_;4^s{o*%S7uVElzAZb`HAW92UhP7`pv)ts@bQET@a-?t0z)ta9
z!uvOPDDF`$tZ1*uJ_Gw5<$!^M;sbv#qQScc4jI;FH+)0dVFO1D%zCrn&OH_1GpxPj
zjv9EM$L!*A9|%7&@SzBmk3>G^ndDp{vrL~#`OLuQjtz^xGH{Fon?RKWzBX{2=gfrl
z*?PjjHwNB3;^MDwHuzfue`q|vGptgk@A)ZU;3VT8EA^v+Uksd16rSRFxP8G-viw>2
z(+un4-rNnIUk&_b;CKGcU2eTq^)&0s<fY$sF`Y5+r^5av7gqvj4gAg3B9ZQw44fCg
zAiO9{&$n9g508bTMNH(y64tp9!r}>(5V1?C=OwJm>?IR$C#;u7mP%NAzgD8nKu>-G
z1qqZ+pp3FbLh5A`C?{S%feHys80aZXfQd!q#EOokN90PUh<8P{-BZZwswOZjf#C^U
zmB7^rT$8}H3EYxE{e*SrWVHlpiI7)ktHf(M%5@1`FMflga7$%c)>ih$1nM|?U6FbT
z+$3_daAEh7G;WZ<t?W48kd{Eh1a3><{)Dy5!|e$)N?4yhylm1qfjbgtlR(=9nj~;%
z0<98goj_A|C!W_Vfx8mm76#XSRdI<czj*?8C*a>z*dl?AEz0;ecy1g~lG&CLxv6^p
z<E3~ka4W-hI}7efpzJE1VK7O{;9doMxvy(MUl)~j2|SQMdzMbfzxib0LkV<9pko3L
zCakT-J0<Y*2G6=e_llAwJ14MZrn^f5T@_){(u%wZhuDo*S`6!=&BF=gZ}hZ2U#dp}
zJrn4~S=N6*kFk#l9<5fkudtu+kpvzUsk6Z<>Yu;>Wd}082*ve>tUr?M+d>9O9Gt-8
zPU#Slp`6f-)*m`gBrqa@=XvZTtPk8L6Bw1iXz`~K7%8%Ag;g|0oa9-NrxO?}GEO+2
z%PfIs9Gi&=yyxtg=9T+%Dw-smESzGkWGgb$G!gz;KV^>l#RO(1@Nxp=(-WAXq2r(I
zFY)*ql|Oceix=KsN#G4@eDY=`@M;3H6PT00(gc<ztbZ#wuyYfbC&$+kn4iFc#J_(H
z@LvyJz+afaB9-$0g~bUhalGum50)peB7v<5Y)fEe0;>|(zyobDR?{qjb#h!Qq{zDH
z#jxw8Fw2-56WEl%X3oAMvq^TnM5fmr%k3gm=tY}16L>3ux4DYcwQvGn5q2|>fY0H6
z5frz+Xa&VX|4}01QDH2BI6E$$;E;ZuM=!qZha{bVnZV&BjwF#uAe%riX}!rdm%vW0
zu_XE>u}f#veLNM+a`QB`JApk?$oGm2;p>2Sh$V0^fp-$fOQK{F?<TCDs9z-TWdes-
zMFK~pQ2d0eBEheGcwfp#!VePo&~`Ch8%)<m{Tlt42dT)Xj_+q8pYwQMZT-yuif4la
z{^FA0YRMFQoxraN{FcD+1WqLIO#<I0a58}(<@KHLd(OohmhTVBazhaEQ{q1hnf*y*
z&SM_(UlN$6t2e(({L`^HoxmRsKa;?{8!cn*rcL}ifpZDCk|>tMdD&bNUJ!as*F`QW
z_3NJm+GQ-4MTcBSS|i3(LZrBmouYDu_;Mc6Nt8<Bo+R#-lAlDmB+82y2ulmgBvCeL
zJ)mbrF72+6L}3!QC2@NaMM+dl;<_ZRPr{SLl}S`h;;N)|-KJ8~`Xyc^i5hWKRvcc$
zqf*H0KS^AZL`{j;CQ&U3UL~`yLXa?3mr_H>-|0g&8aE_SD~X$vxJ8cqy<a<t8<VJ$
zL|xXnFORhl>m_lM2<@4*(Z0}HKZyqNrRA+jG~|LTZCzJnV%r+2sA&?-7-3&t<0S4#
zqDj(v(2SQ3nC?vKxy7>XyOL<0M5`oPC($B_yOU^{{P&7wNnQclZ(ZHxr3PY~q;)-w
zmj&7?IIr;Vg1{5}RhY#6QhEv7CDA#FE=fF)MEfK<B(1BUOb;fl%V-^iy!_Qk#`d+l
zu1P$UM0Y8imu^WstfrFl3Wj|dvxiFAjGoDVFD~_V?E7$V#2;}KE}{NO3`k;n5;Kz4
z;W;pgAxR8P;(tjzmc*c>brbbqX1Tl2Id|75iyr5y=vpvpi1p6`cW)e)#CRU6iwcG(
z!R!-Bj7Z{1@u!j)$@P%3HhCN+Wvp<tkm8smo)+gHn#?kdQ`UBwki;`dWZSwYCh=?%
z&m}P_iD^>mUs*IciTN8n^I!E$;ey;%I5ml>OI>wqS*?1vNB;9kel-FK(~BY_+84Z(
z#LOgCC$YvV&3jp0Ta?5rNpR=ZSxM_Y-dB^D%>n7-nZx)Z<a0&lCGncbwv8T&3&a-+
zudC*!!Ut*=C$S`nr5Y~Yg}y9_<w>kaTJM0}yU~*>k-t)WmGIm^>qW0@@Y*ESt6%Hn
zNadT2o()NCOkz_K7dCp{PGUzAo0Hg*#MUIXu_K#2ZzM75>Y~1jimD7KdR>m&xuP~%
z|M#)<%_QEE*?{@^%&y$z@$$f*oxe0#;FGam7!b0QUL2DU$3KZk644}LN$gW;+?lVP
zB8D)LM3RR_5@}^~NgSI8Q#>Q&Y-Sl`Q31*8S_8WreYeOS;a(wq_a|{6Y5hJr$oUd^
zN677E?Kj6Ba<cCwaWsiBDLkFR`$>Gjs`K6bQur{5k9dry&@hFMdH5u8bqd#{@M#jC
zC2=x|ACuq(gwK=sI*H>v+?4&2%XN(VD<R1-5t=cbkij=eYcD*0M1GsJz9)PqB>7(C
z2jP1=T&H+UCGk%Zt`vUeqS8KhXOj3u{8!;`j{dvI=_LMe6mE_8r}$rva#rMT_S#X-
zi(E+JqN7~mA*Oxhilu-Q3R5Ubp?C@<QYgnksP4W(SSp456!KCinL^n)mhP5L^2clx
zIJ}HVY2o=gMJz3w0u8t}%BL)>AheZ=DOB%~&-)uMjrDj^7|neZQ>c`JvB^_8g{mU+
zdZLO5eXkN>=~1`)+7zm#P%DMn43a{P6l$h$U5amfvhF13?VUt!yEbE@yU{fF^(hc<
zNa2y0)+*(XrW;eZDTVGYxa*{>ClQ$Hrch6u8$mM5UpF_Wa5!FYi?F_$-9UJto9DI^
zZcpLf6z)q|>w%NrD22u;+>t_)6yC_>wMgO4lr`5Qv`2GO@n%Abccsu=oRiM%-6^z8
zp;Zd4CALkWjbq76QufNZM+&!$r2YLVv`e8&3SCopz_Dzf`ge_WaFmWB4+=X8I}7cA
z52dU{+be}`5*hYkk?tw<aFm`-%-%BYBcxYfkw=7&3c2R{r>q@#2c$4Cg*P(=|Kou8
z3Pz{!SPFwuSTM{pm?JjPGhF;};gA%Dim-H83cnBYknk0tPoyv+g=bQQOiyxzQy7`T
zC@H7(1$9EYB8&R@tbOaorZ6srRVl1aVLaD>kvBDkX(AJZ&v05(cvk$m6efvyM_HDW
z#Yv{5U@Ol%%90dcVQPI%W$BA4OqV_*g_ly8Nj-%{QeH`6Rtob{crArjQ<$B?T(05s
zZYDa;kx0U<&F8bfDJ+x?6&BHpr8X{>VrQ48uuR$I!WF`yFIg@t9lj=owJGdMVRs7a
zQdrMkq~J?oLkb(UR^Qg_Y)awv6t=TR$-K=eY)QdCyJGL+MO#zYmI4XW-Id&5@)Lo_
z_{IXh&XoMk6o_vL`Qz8MxnKvI+Sa<1!P`)2<4+-wLXanoT1AaEdv>M}Ql;S(B3uk9
z#8OD6kV+w*Lb1)BQ5A}8G&q|TiV{NpC{CwfrjSh`m$H5%(<b8(J4*vwVJ$p<_oT2l
zg;Htcr?D@Ep1ob4@D!cGetM;FP;GcOg+n6m@UUWo*W)nHX=h9EK9&zsIKt`MSNL8E
zC(7p^6}~V0Y=1>6wD~Xv;zz=dg+I-6eU`#)%L~3u;ky(*7yp8TlfqZxEIN_GF^7LG
zay(@{E5stEZye?O6klSGUYkAtq;OIOzo&3Ig&$KmrR-0_U-&5?a=qzdkY7{y&B@wf
z|4@*>Q#dDbCWSv!_)DDCG5%TANOE2x$%Pasl3WyC67m5tDon04ilu=xil;4`D}*E^
zMCh28M#(hXPS*Bf+X~WXGv8e$jjCysPNPg3V>f%s3M&fBrBPm_g0N6Xn<DD<+$2mM
ziB}3M2`i_OSF0q8c>nWNX;e$2dKy=!t%rcF5t3Y+#=998NpG+9MoOk$Ue|SLT%X2g
z8GN3>4QbR$;}a8~ny8)Tzf`DfqKb(+Y3s}CgK2b1TMzu!O`~2KH>Ir?^WL1snc41p
z)3_y#`e`&s<A<GvErquV8>Vqv8n>s>D2*m*+$r%yFY5!YaT<3hOP9xbdzz-vERDOR
z+?7W2G+KyX^PKfPlQtwwBy=Y-wUR+=4yj06;XOhIq``e@aC^1;S@q&_?Sv!`q|siy
zgRrBJZ)#;x=QO&cVWg2rqiY%ur7<dv(P{9Z<8EmT5P4WgrMpNEVNXu9NN-^uVP7FF
z9}#&}*e{L#j^28vdte&>Q}!|8FySEK;4~f=VT2)R3>9B7&UylxX}Gda@GhV<o)mvd
zI8taE6UU_SbQ+7(Si*IpqA6)iO=Fz+c;N&gV?HA?F^y-PMn0FuB&T#To4VUYvuRug
zX}p@o>@;3b=}V5yi)l<3pW!HWXJ;z=GN&VrS>n{~qB)M`e37}rdBWEmn+1-|!Za3%
ze{j@l$<j2IDH}^;c^WIy2&55AV`Unv(%78FmNZtU!ExRovo&d~6<H@-p9bHo#W;M+
z7LjSA^iAo1-#xfBjcsYXoyHF7ucz@w8gGhk7uo~zRvLDD7{MmqH2gB~3GMioZ9<M1
z7NJ)}B<i$>N?dIqNv4rXTi?1Xnn<T%(lU)xX=KvK@`z63P#U>3zKG}TPGe6Rja{yt
z%I*@UzE|1(!hJ%Dx4B%z13Zrzc?X5>2<d(}jU#D%?O47?B7QWD_eDNP<71vE()ciq
zkEGD+a?DS8K1t(q9{B$eZBCmn)vB-9BRNuMI-bS}C(bu%d@KH)+Vevi-#eCcXFBO*
ze@f$L+L(ZeU()zh`rm2%CPK?U()iusr$yM#Gmi3S8h@p6R#~=zMI4HAX`D~vg2aCu
z%Zq7Ta=6`7muZc&&5N6Gn<!;kQ&7Uh6(Zz$CQ3S-@$*d-C|lk{X-6+3!qT#iQclE<
zTtU20SR|w+F9>){Txp_`X}xHjzuB*zV*P5XYT_!>S|@c)Ty0ukV3=+&(f^?98WY!=
z*k0HAe6MC&SY22{SkuIHBG(IPPXqea;-`S(+~`EBBeHxp>Y2F7#LXsdF)`D`%O>iZ
zXkcQ7$(O?vut~R?eBl_{n`mg_HWRm-Xk_9}6PexCiy*4Bwy?2@P4DF0VWNo%X1V_Y
z^`<78nYhbDa}#Y$v^CMf#NGTDYVB$*vzEeEruBac|8eMC&;3&kH{UNocLuq~#C<02
zH?5tx@0BHg!n9M?j&J><sp0NmqN9nYOpG+~povZ<`kHveMDI5WI@8!hH}Nhex{9pc
z?PAfxCb}~#h1nh^dYb5E;%$|_CZx`6AIHWPA2soqi9sg%aXL&4Ffq`?{~R0I)67nE
zA8g`r6T?+HL^#yMFcCiJWGgh=zT5SLi4i8AG%@R79#i*2t}n6{Vd*Fn<4sI3G1|l!
z`996YA99VQa>zv+;y5`{d`1S(nV2LpQTVLT?%HHdtBL1LOp!R1gD-Na(EWmm7fnq6
zk8YRR1}~ZT)@S`=!mrA&usRc~O{_8TDp$fh&m0qTIlmL#vrUxAS!OFYd*+$2pW%AV
z#C#J}7MNIMVzKx_A+NG75m{;DX3tU+%S<e1JNM?TFs%!-bYx<dxJtE<tTnODMBIeI
z#W}~l-ozFYTTN`>Vw>;Y$OUO)a2sqkF|?Dbq4v(;)8gAqylx_5BFb5d=WXYVo7iFE
z4P~jkDe@K%pPAOLX|J+=69EyQFxD7Bk&ub7qtKW-kuUM%W8g8?qVMhG%ZueFOe9Sl
zm2rwEe>VFi&$}i}j-H8)Q$1yO7k<6jlQpr+#BLKgj#%d+rky6Jlk73E*TjAk2c+2g
zKJf<QJng5u51M$#1d-hKC1EXxRM%nQ5fkr;u$?R-zHj0KwTk>hk&lEQ3m<u);4>4S
zvoRSg$lwbTU-ArN<h9Lka|awVQ8$Bn8GLQxIL}KNtLTJ@Z)8(BgKtfIXX2cR^CrGG
z@q>xKRCLnBk0#ET7&6p#ic@Ujcj-TySaQz&tB~Xu5!#UdCVuX)#ZQ~~L-yoUSm~e2
zlAm?-zZINC7ff6<k)J_<ns<pGF&Pxk;2&Aiz?HEoEhc1LB{H}ogS-q%%APSP(u|4R
zEwPl4UMwmtUYJ2q24ylRn?X4#v@b70uL=&aLseAPBcyVr2<<CnKw~EIDiW&-ugc(R
z$L1Q@u<B|VRF_zT-}W=8C0>*0SY9t;N2@JfCxaVBeog(`Ba)k>G!ovN!7U>7GiWHn
zmNXE#RmlGbZ*%n9MGB6%8fS2ac#{n7%%G__|8s06a#se;GvG#t4Ao+;yF~`Aq?6yB
zK}+%VDs3%(%UpMx43_GN*LyO!H-q~!xIcpzGI%k=zijY82BR|=lR^6oI%F_HUL7-d
zFoR(k>@IM3%Aj)weKU9@gDx3#l|k<e9?GCw20b$9DP?6-t4R-wchBH-fxGmQf<K!4
zJ2JhbcS>8?J{i>A<?5JrJ(@wk4E~qFV;S_90ZRvDa711MrO=GxpbQ3QFeHPa5+DCh
z5koPtE?N?YXYfP@B)nkzVG|dT?oVcTh0QveMhZt|xLbs!A8z7$I)kwpOp{J!oXDgM
z#*0kI;F%0A_hMoO&t~wPqtKl$lVv$YI5h)`3{IElrCj!%&RLT(Lxb~@knS@jzMR1;
zB2;E62+8aW=48NLkTcEAV4h?1T82M4Eq$Ss-5Ko3U=fG$e5u7e^f==gEX%;X#j{zs
zT(}{F6&b7)UnN|h!D<nPT9d)r4Av<i9hoQ+sSq~`HwpPIXiElLGuW2F#gT4*1_6=R
zGuWQtrAuDBvvj5%B5!5zwg>~-x>s4BBL*`FiKjCNi^MZ9GKh#rGl(gI9mK|jijqP*
zPAUVNm>FcGXEWF-k`uCO8tf9cgY0$2^N7g44E8(90g;0lyd(0iqaPAEEaXer-gES$
z8NBcC4@5o`ekA-@_(=wzif|knZt;AP!IwPSXK_4>uQJwsI1gm4CsU45w6ZwCb5Rzx
zviOE4f1X8YnaTT3mcM22dj{W&|G@L4_Ub*E!H-gCc1q-@41RW$Uo!aB;S-|;r^Wx~
z36SgA(a(tdDf~-#mZ$DAZU#KBY%#Urf;h#CBA0~!2wgJhy2aYE7FiTmwuF$%6(Zb7
zx?~paEJ|gOFXh@S3Pj3gQ7((p;$?*6v{P;QEGlGCRSM%2id-oy5>^y?g#EX8Dv4AU
zRuR&Rp{{cH)gsqqVY^gQwz_b^7EcY4nps>YLf`8}dS<PS;A>}ba~8K`aiddOCyTlc
zuP1U-7Fi7f?dxaJB#S$<XyDk~D$-DRoA7pFBVpq#?htu$khQ&aQ*n}3BF%(%37ZRB
zWO27hOCc@)7cFS*@HSbr6~8BodqwWc;(n*p-qgEY7GJ8h?X&2RMaL{2%;JNrb*EOR
zEIMbgFpEW5bjhM?7Efd`B8!Kz=$1wQEFP=wemINnSv)G<Ba2l-Tugnl=$S<?iM_Mv
zBSK>qUB*YUcy)-YRdqL&ellQoKo$eV|Chz!EFLG98EpnRgl0ps80NSPRi!jw8ZMEw
zJekE)Sv;S`3t5cJVpJ9rvUnzo(OHa<%{a&FX=Uj<)=|jE|A$Xhy_012tnfLfl#QP(
zJ|&B(Sxj?!MBVP`i&?ys#Y}lk7tRoN9O`;Gi&to$#q6y0U6+;4ayn@H&XMJ7!ns+@
z6QS8(4Xt6Huj~RL?HAi5i`7{y$zo|1Y{N3Ojbyp9Br8N#%9z8rCX2P4=q%z{tjl73
z7QQU}S!~E+V-~Mxu|11+y|5{Z%~@>8f^BBibYvS?=~gM*9GyjPWbsxOZ)fqQEZHx*
z>`<j%DYT)&?z1rgbv)!)2A$xv35!RBQ6XK7ED}7jvdCqTbb7?bq{Qi!&ce(h<HWIt
zac360vUoR(LmG|US?tYXpKSIBX|`X45e|wRaCA2E9R;V&;Vh0g^G?h6q#u<f+wi`M
zXvXwm79VBtv3kdYh$nn*RP;#}#80#MEQ`;@zhFnS>k#!XrF@meF}7`zwXqTL1W*21
z+@3?DoVBqRLw%dI-dO%!7T;&_Ll!4_7R@0)haa;zmBk)D#goHNS^S*Exh&3S@k`da
z%`%=SymG4h*DQX^;`gj|q2o`rjpVele+bWH!L4H{KFar<W^p!)zj<66d9hip#4H!d
z{E_(=veqpY$f0~e{>7|?m$LXrgxn>)n2=j^We?^R&w*G%c!e-8$1N1CTMl?F#htS*
z$neTZK@O#JsF}lc>}d{VbGRmlYjY@<!=7i|&wO2UrAT>U1z};1FDgOB94@?J*)Vye
zUtC_YQVx}KsFK5^$@%-nxrtSCAYr;HhpWZyqH3(s$g7@14Uv9Bt%kMQUNCB7!No0}
z>vOmvhnsR}aI6&DP%DRe;<ed@9L#+c>*P?E74`Srm8sZdtEcN$4>|7%;VUC<&RGx1
z^2ym-a;VRaOmjEL;Z~6cw4+wT95-CH_UGcwy+rQv);Nbpa(Fa{J922kkxAv<nM0eL
zwMk{u9Ga=wcM0##p}Ete7CH2|#_DEEDXns7Ey9j4QE#gV_vCPI4)^77zp}k^);XtL
z4xL3F$btK8w$GtM4jprNP+5Cd%@SU8lFj6;){opSIdsk8p&YtN?2*I6GNyZX$BQn^
z_LM;{Asy+?j`UIOeRCMF2;4=qUk?3q7_}3lcVa*e19R3Jyq5|8CtQ%jV>t}UVQ>zQ
z=P+F&ZHDCVbPi*c9V#3q94>r9I3kB9b9hR8WDcWq){SBG9hI}*=FK!l3JLXbGJ8%q
zUN}McjBsKO&&rE0^tRI^>5Mj6WQuUAaGLOW&Y;MPLR#|HEaD7hUlPs~zASu2I4g%&
zbC{j8?)aLM!#s)fnwzuUVNUW|4)Z0l*=z}wg^tal92Sc&ag?PZM^dikIjqQGWe%%&
zWbL#Dd36qJ7&C`sIjqfL9oKUXnH>I)s_%eyqWZpmZv(IMs5gKhqJT<Oln#QZ2naT?
z7gT<L1py045eq7a*sv>tfQ{aJZ!ejWWRgq?z4zXG`}Uj|KmTjpwb#D;o_p@O^}WnY
zCchWqk0Q(|!rUVKS%kleFrx@Fi|}_5CKh2Tmll7mtO%2fFh!g*s(&L%y#b!ir*U9q
zxX5WRODty>{S)w;@>^Q<=VM+G<`-dE5tbKWK@k=fVQ~?bNKY3P`QLnGT@D%_U0YfN
zZH_-CsX^e=fb_hAqf~@dMgFgVG22SqlB|zstSv%O5xgQKix4bAs0fiFL}gSpcA*Gi
zo)z3{BYdAm5m<#4*$^iyHD4C@W|99mTwH=@*BAi%o+yGX%f=~!%P}#sQtO9Hh-4jI
ziTx%i+K{R%_{<3Z>BNV|Vl%sz9-OT_QpRGN7^Ggdzq1ItijWxug4kVzJv`6Z!6NJ}
z!oDILD8fOBc7Hm~)R-J9@}Ku(goniyU)|5=_c+eSig3IL=ZbK?2q%hgl4eCXTZB_G
z7hFGlNbj^%N%f-r2ymzwBtyMWgo{PE!~<3ohQ}ui87&9uN)fI}7+3#Omm`o7{AY@b
z1yMYRGC`D;#a1GS+#vFT$O<Amh@7Aw9%qdKFl_StAPRygMYBXk$)FzqTj@3yg+c%M
z&(u0E9rV`&V_=ud1yMeTD&kxP5eTAE5Z49$39Z0!n}>=#QsiMs`sYKKoVdzCKYqI9
zBbV$QXPj+S4dR9%ss(Xl5RHRq62whGR1c!Qc&-sdO(AuIxH*Vhf~X@|I=NN4P%G#U
zJF{FTwS)fhAZJR&Ur&s=oNf!^_8=NawqX#Bg1AHYor0;~abV=ESWA8#psDC>g19G$
zW<fL$qD2rbMZ7EMZv-}!YO9ruRqG(`mQoH>YOL-J;=Ujr3*vFn+tN%3o48*{yCB*J
z(LwkFL3B!&b`-*qc`&U^lukV?*+&E)4WhG<E`lk8CxUpAXLu0ZM0`r{dBLZHct*&x
zf{fugA*lu5HHa6|`itrHL!18v@p@YC9z+k}J%e~z$SXm-7DTTgUX@kBwZ~P#IVE9A
z4MOiA`lLPd74n7{)A`#$^b6uz5E&u#m!gk?_&A7nf*2s#fkC{Nt~)4*!D;@kkRgJc
zg7<}dAo!smoexbfVDe9b_&kU&q-dDnaKTRnM+E)fM*K{c{Yc@g@?{WTaSe;X*FlU5
zVutW<g7`LwUuhP^cR_p~#7{x|%nc%?toUOPsktCeEvjFF7%io#-!7p}GB$|cg7}-p
zL5xe+9Up`~F~6kzG~|RJeixli{t)t~;9r7V&y$4E+vFf>k425Km=eTP5vOq%^QQrX
zr-I>J%nV{y5VM1r6U3Sz)&?;*$XEYiK@bar{_m>Ll4-uw;;1ePVzKPvWkD<vaVdvL
z{(92v-*bL>5G$l~rQoU{R?F^SV5z2yM2`vv1w(=wI~#-{JR)cY5tdnCT_&!7CK4-%
zSP=0b65Q`WYzo2_dry!CP7rRIvm?nM)=74~;0D3eFOtxBbJ}u85L<%SD%ovZlR{E0
z(wLSz)0VqrRZ!d$#NHtG1+hPf6G5B|@?npEPMae_4hkL;JS@n0IVyw>j|n+0$SI?8
zDu_#xJ<UT*$k`w+2sszTd6`+h{ew<ue^K;QmUS;n_KM(DLE2=7fDk%_@IVN~LMR?W
zr4X(Q`9CyVBIN(Vb?FeYLdXswC*(i0Qy@r^D<n@aKg8EHXHzUG*}}9<DIxrtLzxiD
zhWs0&<w7VQf(rR>(dYfsK*+!K$@`xC8LSE+{}w9mjaCf#&#2J2atKvIxGRKkjZ)W#
zP&I@`Av6x*h7hWSP&b5nA>0_kP4pZ>tq`h*P$PtzA>17D?*XN52JueNEg}D|5N{Gu
zVb*_rWr!EFeO^b9*_2s*A-9LnK*((&|BaWdbw>zyl8e|-u;Nhvo)pus@(*^C5SoXe
zUGX17Z5s0bOK(Oe4Y7KXZ`MMpv=pSbR??%^A>188n-K1i?EQipCuZI&<h~HvhOqjh
z0`{GW<ZvXvT?p-^l>Aa6w_^yMIPxL%<xFuL#^k>o@_%dlp%5Mp;gJv?4dK}ko(rLK
z2wg&WDuky)cr3)<wa<S%geN$y6?4d+6fvbUOOfdrF{7B$pAVsH2;JDV5MBu3#dPUQ
zAu!Pct8AF0SiO4)_T}7Gee!zHrgUDTg1qKWsGc$=B>bTIN(irp@EYff?_ZVQ{_Z9G
zb-~_(`IFVbdHHXIFd_t!H$!+!$lHSNhR{z)e?c0&BV>T!zz_xr87z30xEdn-J;C=w
z_<##f_%K0w7%Jo=!H)$$34vcnV$pEPekz#qN%6A~MvC&eAeApd_)_>+Y31t>Mx{Bu
zeHX&_A>8&taW0P^LimxJ?x|uOpDOlKh_`z%prF{mf?~gfFgk>VyRm3Dehpzv2(ve0
z&PI$4;WrL)9651}3t@Z+OTt(h#)J@l=cX{w#K0dR{29VN4f{3x6~f;kjMea)hKV6e
z;xf?iyoSjkOyM5UaI=P~Axz_FYp9`NdI&Q@m^Z6jXo{K{!Yqc(ZOGO`m=nV05VnN)
z)kVw;!Q=`IVSWe;7()n487+rmch0t73qL-WwMZs<#ng<&To{wpyOY(j5SE9qHiV)O
zR&e{5%w8G7DlsEp9m0gkY7L!q$o{QyZm?GN(#dMwWOZe-3WlI_-Y4XQxU;wp59O#S
zs!p-epC(HiqSu+Cs6@n-7ebQTJOnF*SO{@Oi&72`x3!u1^YRj0lOdd5mqp%dOWt(k
zveXrud#0$;O>@^V+G!aZLs&1~x=v9WLiluw|JivHhi+U>hr6<O9>~}l!nP3h^Y}{m
zH^;Y!u$yC;kw12d+7ZG|sY||#BQJG-Y?HeuguR@U5DM1iH2PmgDjg6HT^r=n&*2b`
z@SN08M#Iq%jxlBp#WWn}vDQ2LbO>icI3fI`;3+{Ct(c<DhHx%~D<NFvTBXkrE`@M8
zgdUG((BLBHu~QDOE%Tzp!ACNfruXxeYawK4zVl4Y&(ip*M|^vxZ*R^lE=4&Sa)p!-
z%+ippfgb4XLM$s!MA{b!$=AS&sYXj`DAZ6&^bb4aGtsQ9WGiX7PD452<uxb`0S(9M
z=TsDhW)*}`VQPQBA5vuvH;7mzZF9Ybs%hS>d=71@N%lq!HwlSU@xNDl=xFYVDJp-e
zGKQ79g}R2$8oFqxK2^1zs$N)MvX+M08tQ1MtD&BTdo};iW~#5DiH4>cZqsnPhz$fA
z3f`fi$5eHvAdMTPYc&=!a;j=3q@{+tgf!RCB3(rLR>DczXlSkBZpo$$i1$b~<?22S
zZ8ebJuc4!cP8!;2XfFmG1RoG&Bq{p`CHt@-BYY@L9?>v!s(MtAI=MU5U)7IkI5O2A
zsK+&QxIg0w!6!95B^93*<l1;fCjD7iC#=;~!wVX^v-=ue)bNsqZnV^Js*V4|OQmV5
zai{DC(|rFUs^xSP(o@424UbgGd07L+S2Vn;;WZ7tq=|1eysn|QhEFBiM?+r??`!x#
zvTtbUui+gHZ)$i;!`mX#c|Rco#s9czYJi4;8s60~L_^UuMP-nN!D4f8nkqA0HJPs7
z)4<eWx*r=8$%kU_iQrHT9|@snR{vO#X2UcL7oDD2oyrIepJ^DW;d2e6M4|YFhOaby
zE!i&xdrONfVnyON|0()TIK}TZ{Gj1S4L@o4S;J@zze>?B8d8aousi=|S%qJz8~jYk
zaT>;Jh-rvxn4sZzp70tbY4}6KpFH_B{H<ZZ%)IZXtGUzFw(08pbbnq-&QKGl6i(JK
zMZ+{6_%dr#xdC^TY&Ju2HhY)No1vkBo5kHRVTPK?N!Ku2!yJyPhM<PI8s=$Op<$(l
z`D{YN<1^GU!G(fL1Q%&oEQF2HU}wkdrIKa*%q|yBk$jbg)sjsaP+23{wVcfvidj|(
zX)rXH;#1SWin<_6!)dos4Usgb&SYtzPgYN8ur(w#tkd9#;%e|TESupE4wof|^qCv;
z&dpHkHEhtZN5ft*+o<8rnd-rrYLkY|8n%eIU2v<0Z5nDmp2G#tH2i1*8`>d7I|X-X
z*e!(mjkloZO!e(dwRooD);Pco#p*h?>o}z0FegjLL>)(X_-m-7<2oJ3WEPq`S><#b
z*Kk6^NluoA;yOy`I4zzp2%Zr<D|k-uyx^*S*|)aKyr|)lhRYhRXn^jI##Ig1G-L=*
zVW#jGXZT$pQY`kLQlofomX2H<c{=tV$<Nl2!)(p$dWW*=ozBYFQJ|xgj!(uHmef(G
zqtU>^>3g#_&s05sD&${P%u=OwgbwG7zLZr)M_EZdib`2qv&vIXWHBin0UZ@|zBJNT
zMrCCX$LuH-xFeS%P+7-wPF8&#RdighqpHpy7sJi7R81W(_06DhH61tVxJgHK9kj0@
zPF7Vao$^ChFZRu#ezWMe=(tr#Ey3D4>IkW;qn?navlOc^c}sE=7qf2Dal4KNI_}VM
zr;Y(S2I^?YZt8fJf$3<hqlu0Obad3wR7W!%ck5`QgLRwhXrZGevw0c!<YnBYqm}5b
z1u4>om?HP+xK~FzDY{Pw?c3_OKW&+^p*{8XIy#6>p3*z%cu<rlbUdWvVI7@ybkXsM
zh^+N!+MZRIeN3{Cr%UOCI@6Ono|0%&%F{ZY5t~%@c^zGKysYCD9WRL9jq60mi)lYE
zNnQG9>aL@w=snUNQaW3CRmW>O`s#Q?N3V3<-a1|vo{F%~|E=|=j<<F6)A3f?o+0%Y
z{!Y3U6(+VaNXK9uU+DN!$GbX)=oqf!QyuS#<p(-G)bYOXl>Ja0A4ztYj*o?WBAAMV
z4*&H`K0?PxDgEp}HlGVmS$?JCYaPGn7_DQJj&F4QB&FY`ZGI5)osRF*N-B&WC7a?u
zr}?is#^@NQW4w;BY5U(~d8C>nP7wWf9e@01{8N7Zl%l`V`Xn8bbxhYWLpJyn9aD8o
z)6r>`e>C-)<sY{EJO1%3HB-kd9qV;$(9yqA4*!nK)-h?8nxkW`j(Ixfiw8%?0v!vv
zadc=p7ID}I<t){)Ovhs3%r4<6Hz9*$xsDY&*63I(MJsiz(y^MQT{D<ykRptsNDP94
zsk#(XMAu>J2<tE;fK;uBj;I*NMYMFpQf{T)R7GM!N^QYSFZ;)xE8G)I>R2aEQf+PI
zJT@ss{_x(Cn{;f}u|>zet~pFgp3ER_l`Q!V9XoYo7|1lROUG^<r+7r`*rQ{wjuSdg
z(o%=clW?|-@GP~THnY?L!GjD{$6=oT62?&xS<0rFj){0&km9Yg)qS&7x7n)X`0Src
z6`s*?RmU|QXLbDiM>gLkbWX>4Zj&9k7X(Qz3b~}?vW_dliCgNFV-fxTFk6kAt(MGI
zFi^}uj)7bQ#SN4&kYym-!0TO0?w_p+=P3TKNc-k<)UswJ2NV?M8OS$KV4$RdH|F?n
zl=@|knls0@S+uMqvCu#%1Emd=F;LdvZ%tyzsjPAa${YMqOH?+X3<OA;<yJ6|l#1`%
zqAJwQt;ms_t121(U#l8(eTP*HTyNke13Mbz{&qI2s)5mUb8j%vbgt?<SCLmUaHELi
zf6rAjuP@aoJG+K~ng+T~%DLG<Jp=U(++yHX1GU6+ES6QrKy3rjxr&LcP^oKxczmw9
z&A{zqR=0Mk1_pof6%8eOCwnwc5ou3CY$Uv~@TLZu8SqRbO*A*q!oVd1mkqQuaF+qY
zfN7wWfz}3oFz};+yAA$)x$0deqm#j309S1c+#}xZHE^Ghwgw&$a=(GZn1Xf&ZrE1P
z-arQtsZ@9_hYG{!C`!ev1rHkh`E2!&frkw|V&G8&0}Tw~%3Q<W^ue<Ro-@$Jz+<93
zZr~{cPaAlG)&HlS6r?5jGs071N`Ib%X`mOEgn<_fyl9}OftSVXB?H|^4A7F*nYtV3
zk>=ayDW;VEiUIOh4bUK^za|9pRc`}*4BR<iy=|bc)P2Lin+8~vs+)T1=`AUuSwD`R
z*uNvn0O2Xi&hyn^1MeF6%)m%4JOl3;7%pb-8~DJ$M+QEY?1zFw1xGi_NI9pIJI3XI
zA|m-P1B25sd}?4sT2FQGa|2%)_*%p-1iutyw4;Q4EBK8dn@C0Yoq_K~X(G>b{bb;0
z1G5awHt-8qvH^X*n#7gUCHq$n?9!~?4UCcOSi#=}Svt<Zc;OS$%F+wje@K--1^*KK
zTabPx8vNy7f88FRuO=HHPBAc5$TY#}f-?kJI+IH=;Tz8}_*<)rDRZI9Ihr@uz&r!<
z4J<IQ(7-AKs||GCmbJ*hGOmyX>d^&iu{63waH;Xn1(V_(vX>iJVPIeJY^Ie4hAvPf
zYYeRA(lrp|K~yt$>H_~`d%X=AKOM`8lNZkoaR(L8)dY2eKPT#oVFM8ZrwyFpMmAs>
zIBDP%cQG3+m3`Mj_54B==iV`38*mKlWxEDkZc+nV4Qw+|b)iZcyshaI4$C@;cD;cO
zLQ*32O$IiLvPF<es%X1`ooUM*22!QFMA>a%Pg<cj7VQ`PaN5HGAqNEyrCU5A*`o%I
zaSDW=5Tu7xV$-iIR6`f42@BOPGxN?GILEOya8b<GE>!0k>Oxg!k!rh04PNAv8H?1;
zMe2%yt2{GJG&6C{K!(Xzh~Q2WnI>SOz(h$C#Y}&(wOy==n|Qcmc7?_2jm4^j$sglT
zSthcD<Oov9HIbL*`6j*=<28%bp~e147Mdt!qO^%JCd!(qX5vP1UQV!riSj~}AngM}
zT4<<fqLK+-NV(2L6%*H+s4PW|<#P=!tD3kWU5oZ9{U#IDP1G^@Djw7@QBw?VHF2})
z8_<judG+HK^Pj6XwbCAHr=8bJE4K-$&%sHzc)KVK(v}TPG@@G*O++cRMBO$%yX6wT
zIbUt8l{d0<;nlIZ%}um0G0DVa6D>^~zo*onCjK(PRehI<Rwi1TxZ6Y<6CarP(8N6^
z?xi;q-A&wQqOFN8CLS|!zlnD2SGAl+Otd%A!9*t$4~p`DiH<_vxwYWz>;l>>I9%|M
zDC7^D7`jA}j1eSx)I?_~T_(!oCY~_ytjV_?`Tn02eA>iQLRjnI)49(G&+K2YWr=#;
zL|4haB=~}f7lkzImfdAx*^}b4n<(YJ%BI5}CVFytn0V8~%O>CTt(aaDgI7$vDuiaW
zKhExD;&qen-&Va%^fA%bgn4Hni<nr2Sn@*ow@kb(RR#<8Gx3gz0VevV{Z#7ZkHA35
z4l)rrS~BIqX<YEGi6JK5lcM(pKO3ICWvd_L2VTKY6CasaBMp6Q;u8};nfTenFcZT~
zd}-n<6Q7zG!8Q3`4<_gepZHEbH}M7M(JPqvckVa+bE$l7Vw8#ROnh(R8>#iJ;FHqI
zn}R>2i+(im$~iw;W3KP*7qJ{;VyubLCN8$l_*E1ZEqko+HxuJb{LZ=P?$6qI6BDGA
zci+Z}+j*bmQ~!foV3t21>z4YP@o%oEMQS3~;Zns^ahaN8VycNnCKhuYE>rIe%b8~K
zm9T2iGBw=<afXSRLda(cnQdZ@khy7no{9Ow7YHsCEHS)*RoLhf6U$62H?dUG!9fMT
zEK@5?KDy&?M$5$BZ}V3P8YZ90!y4ghO@xH7w8%uz^e_036E)Fw!IVhdG!ahQM}$NL
zSutiJZXzMgvBe|jGwd{XOt`{FznjUTbtcwx<%jWf7#mD%G|@DSW?^hHvDw5f6T3}p
zF|pOeHWS;qk4~3dy-aOirY<j2)t9Tgm#e3is~rs0#Naa7pR~^;?qL`_j>4!H2F>=F
zcs`^)45|Gl4wyJ-;t)^WFiM7T*u)VNmrYzTan!^y6X#5v=VX~UVdA8TQ(R8VRoMo4
z!R7wIo;LaT3Sa-F-d*8m&n;IqSE#d`amns)mv@27#>6G*;M5h$T%iuEP=S@I&PsKa
zhrfxeFtWqQ2qQBLgi$QaciQ-_2Ch`IRw{d?Djw$h7F73D>hMZcf)TD%jUUL%2_rX*
zyfE^^7_~}GT&0RusjI8hzUT4+tNrTFtyYC$lnSG27&nAbI*c-51j48gM%ggRg;72X
z73TLP)wI>>^lDXdjjFdswO^w?TBD|~Q5D0e#CF5DK8)+aShYsgS*v=iRp-~J%3<D#
zQ{(I94O^?muT{&}s-0_9wJ>fB<K{4K3FD?Ps)zZc5Nd|`_^Ya0q#iC(FBhrNMQTxz
z+EJuR1=X!#)C!|^7<IyE7*vl2)q6od?8!m3JE(F(s!2%I599q_**}JSee3s`w}o+g
z7!AUh+a`PTp}af7xRc{nA-f^xv`scY(e$jE-6)K=x8^hs`>VQ%aFXU>v<Rbh7<Y%!
zG7Mf&y(^4XVesQ5OPTno>hvoA17@2r?g^t^812KjH_V@qQ>BL$><Fp*#9>>(`vq4>
zRK+#bA&ke^S<Mgf0V(PjMyD_y4CA3N-u)|^iA4{G@kkhtiUG4-#GtceX+UF&j|)DL
zws}%)s6P|NvtbMk<D)PiD#P=18^(|@y0R}}ycR~UFkX~ePityJXTQ0ZB-<_JO0c_N
zk1%?M@v?C4!B@g~HH<f_=iIHSlVAHEUf$8vXidEy#u80!(^T&;`h<CXRrL+y4Iys|
z4itQgBOFG*F#1dO9l=XdkyQr#Cp$>^;I!p?oY^ow2;;-Bf48E7t|~gbMyI$ddDFAI
zu0GS%$6<UD#=J1*hcPUS;bF|-)QkP6Vf-y*L>QliF*1zL!~WZtM{_+3`BCso!LJ0r
z791t`jUes674n_n_hI}XWHy6|XEFUG*`LGsC5)i1y55t)^s9(09V29H7{8^JaYDxP
zE^u1;J&Zrn{7)f&g|XwNyp;cmVN4Qnau`#DOck6N#xx-`n;ymt;pK-EFgr{5Y{5}q
z`^sKj@xSY~8D%(k3&L0!#-cD5bITj5y`gIK%X`&OZEBTFT~HcnsAXX+=XQ=_brdVY
zSQ$q1C|X3ZDvZ_KP!TkYU`-fn!?+s8wJ?g<_b}pNB*F-Vp@m_E5ewr!H&^F2pQ^%!
z`qNNG7-kqGOyMvh!lQzHwiQskV5qOU=aw<m{id?RaJXl~xDtjNh8M;Ona%&1DjCM+
zFt%`gnrfZkdch50Y!pI$6Hh!-k!<Cn3gcK9$HUmp_)WDdjNKez;X4H>?qL#sAdG`T
z_J*-9ZL>cN8qkdCP#8x<Km4Ck>PORA@|0WRN&f^^rvy(6o(bb@80Umv6r{m<Ar}On
zSeHfRQd;54za{LS8;^!nMg*A=To*y*2oOQB2r5QUDZ)+X8#G#+TRegi5oAS>9pRgS
zRVl%o2p6Zy70eUNkDx$ENx{MhA4^cQ*(F#yf-({0L{wR+UOl49MNnS2ilBm!Km@a<
zm1GmVzC=#Ki*NTwRNsgnNtFn$kDzJ<H$<@OuY#W<{%6D4QshNcwTQo+Z;ark2&zX=
zBZ4{+|72sT8Nn@SezTBjjc}`wT7uo~Emu1NB8}^cQZIt~5!@C5b&3rHZx>|UJJQDF
zjUs3qfr=s!MUx1cveywTi=bHq%_I0df<GcS5m7B7cr&WriJ)Z!cSX=Dg4Pi{7{Nmk
z{^S$dL~uuyoDLD(6TyWh1>Mi)w2k0i;mqDAWXRc^`y*fxQ@aS-r#WZ#fe5x_mh31<
z(n&~OR6QKQBN4n9!AlW58bN3JkE&-P=n}zW5u6;CP3MnC@B|~t&v;6D*Y|A3lR_Ft
z6%C#i&ZcSktW<w4g6D;Fjo<|#93Q%6BI!o^2zo{EI>U>ghg5$h0($5f!OKF(Q#~TS
zDh90hnh*{`?+E%t@RnG<aW>~6aod-xkpn0;Jw*AiM&a8L^oyXs1WyliOOa$i1Op=&
z6v5yKhDY#e1n<&Y1P7vOn0R<k@MFREBlsYK4>|r;)=*JCis0v{+P24EIWcML6VZ2c
z&!C6vEj1#7&m#CSf}cbmDW1O){9KeTBKVS{x-P4hrHEfgFiNuDNa=Ti-wM*<_YwTS
zUYyS9W+}d}iS`tKj$n)!{332gNARn7*x5aUiGhuc;I|0IMKE3rSZjh9u<lYz(OYlJ
zpN>Dp$rPFEzascs$ixUHagKUs;A{@l<Ot^X%-~$perg2MBA70<W<)So2=$rVn8IfZ
z&JlE^36{>IhqUE_2o?%oB)C{`iQt)be&ov|Si!?2itMPrvsOm1jf**^Rz<K{%+^Gp
zMW9EpR<cEc3@<1o6ahymua1vK1WC!75riX%L=cU@j=&L1OE3{ZEP{9hmnB**FjnL`
zsnjdOl@a66aY#Le6jQ&R@gL@y)Hi!w1nVQ%5Wz-qvMGYi5pZj;bc-luV`?kUhw<6m
zjCA<cnVjtr?1*5el%9*=JkO{Ic1N%$g1r$O_YVQ=i(o$kj^G$)ErNp)9EsrLm^vhQ
zSda^z3KL06A(GRE<RnkI2+l-sR<frfNa-nK@>G`98R~@yu1Y)?1usP~A*L=1zapGl
zhRU@FGNQ<g0#SdTvf}m6XBUftSR#tzLda7(vpG@ZMo}QsH~qStyeR5z@NXiJ=SM-@
z(Jr%O6opa#2xE3B!P0_-c_pcoiK47z$;(AiUik8uVzxpQ6{BbvMWZMxMR8pewWFvL
zg%?xjrAL*cs3PrNA4SzDZV=9<YerE`_>F=$MNwTy4LVQTl#8pIh2N4^ZjGXra2C-C
zTOnbp8%5)|sux9lA-4%qxjl*oX?};0JNe&BzibvY=HVYj(<qun@xgsLFNwn+<7%!r
z+#6RJ3Dq)+yP|lX22r$%qIDFHMe%qPcSq4C$|=UfQJ&AZH;VhBXv<MesO;|f9TJLv
z*ZL&XsD%Ib?*1s+agY;=seKe3()<A-9i!-!RvwIEznDD|#iLPlj-m^P)b@M2w9h}E
zKAPC7v#t8t>WL_xjPk8YcqxjfqIf!ru2H-Y#WPXt>R!k{;(XfV*(jc)L5}}Pndx~M
zy46MgzwV#fYND<9m_#><QS^(VKS#z^F=?)Q6g{Ho8O6&|rEe5(MDa=#uW}GpmV7OW
zUP8#}iuigIy~UE*K2Z!y`fHEr@OznWruDakye&wbS1I3~pL@|(??f>mZ8K2FpeTQT
z)<0_AP3uFVcu#mW#~+OkqZk^+*eHIB;-e@&j^d{%{{-L@HXX(AC_as1+11>Rj(W{e
z!yL8LQ6r-MZNX6-97la7I8yL)!7l{AjN&UHUklQ*a&NyQ-$e0kI+E|A_&&{lh~mdI
z=lS+a6r-c~HHtCP*0urJ*BsT_Rj;_}J6El6)oxdfi(-6~zc7x8QA~*9_bC31;;$$&
zJk`Kce{e!Q^|_~Jd;X1G*Hc3tF4^Z=`AJbsj$%<1i=#N}sVPy+;(sqmH8qN9Ts%=6
z-Bd6mikVTYub)HSr&T5~MP_q*Ce<7s6xXuaCDmLBc%I;V!3BZ~1!=(kKABWYxI2(n
zV?fSQ?#BT+%c58=gnUI5D~0#^-7i`b<rhxT!a_?6MNtH!C}yF!g-{e)6zdpL6nYd!
z6jl_mD9k9rQADDMaycaxudfc5MoIn>vNEaSQ6!?Uqi`guElG7Xsh;oT&xOlDaI(0w
zJSj>FQm+xkhA1{haVm<_QEZB0a}>wZt8_~gx3BZNwpEmEQEZQ5M-)4wI3^x;MX@`I
zL&CY9_lVhnDE123$BoGW7Y}qoaxjY5q=<M}Y8~M$2;rqd+Hi&Uk?aXEI~hgCbt<(J
z&u|i>xFY(wbc>gxI4{Zt@k|dFC3{H>=q**3v0aVgniOSN$h7?Z2n#*eDcYpkEny+c
zLKzEXEo58Bu~1;4q=j4yc^2|5e`gI{r+6J>{`dZn@?OLD>(u6H8HE-~StxD6Sf@%3
z_fLsk>(sS%>W1~IoQ3ihs#>_gg0c{>P{H#50js~>e=_Zr_39gv^{S$Xl?1P|P+17g
zs#y5i&AMKY*=iPUw9woFV`lay3+tv7)ZL(}Tc}~7riGg=G_%lQOy(^XZnbcyg@)p)
zmW2iqe{BnOEYuZV-@<Jc>IonJVyUeexwnh)y<;+s^@@p2+##jp?9^Y^mnAYavd~!c
zCW1``kBSXTGd8FPHu&~;S!l(M$51VX))wxz@VkXSEVQw3k5u`=!o8M%r{Fsa-&?rP
z;%yz(*24W3+F59Cp$8|3-Lde1g=Z{0YoVisP8J@u(AfeX+j!8z!$KYsq;leh>_>!;
zb+VZ4V&O5#K5gM~3ln}SeA2>G7M>8X<FjRH!;8km6k#dJbAm5Pkk4D_YT=~~YRkTy
z7lgbhNHdDv#PWZF-Nk;O^!;TEuTZq`iG^1!yk_BT3;itgvhccvHyFtV)myNyU>`w>
z3pOZXD*L8|w?yY(Uh4fVyklXAh4(}pU}2Dj!4_CFP>>bhW!KhaF`IJb|F^tBy>H<|
z3qvLB4+N=yBsR>_fNAdrHO#_r>B83*KD98y!k3c$%)&?uUkLwP@Fk8$opRl-lcl~U
z>-t|az7l=#-}x;^W0df31iuwj8~ydrRIu|#|D*1Y7JibVpDplEYB8$d7Ym~;{Aytg
z*YMiheu><h*W~u!sK#3O&B8Am)%1;OoKzVvSW(ZNVDSmM+=jz5{<Qc#8Z5N1h{OJR
z#@`kuT9{-Zwox73sPZ?d$rff>{-<W1W>YNxOq(h=O>jCl%O*8LkVUh^|7^iIf^!Au
z3C<T>AjnSLyGbp!u*AYr3(G|0zb@4Ow@EFxu)@M2?p6ycEv(|%Zb7rK+QJ&1`4)oQ
zM=P_}G6vf}PsslzH27?j(s`s<a4mQiObeS|DDOxUVG9upQ45v@TXYu1EF{uAE@l)-
zh;&Yp;(u&XNeeqI?BeNRVLi9xCbfZP7Pg4-Mhlxnq|Um;troUh*dgLJ3(GeticBd&
zWw#X3c%Owm!uO_)Q<nQJ9I$XuL^@BoJ!0V~&)XQv#&C@1fQ4%oGGczmPgpoBBaqmn
zP6|0?;WRtANu5dSG&^VEJP!>E7e%}(c*(+*wB_ZrajIe}n;8RQ{1Aj}X{%Ta#bdr_
zI;24f5y{yQ#T?1z$B-LCo^aZviV9*V8AD+VrD7;8MbuL%Rh`J5mW!c$3@YaLdfO%y
z5JG-k3>9Mj-;|1il>}2W#nQ@RRz>i7!KyL;H{w}zV+=RN@JS5AVyGTNjTm~y@UjF@
zGltt^Xdtd`j`=ftOANOPsTD(QA$4M?C#0^pO-)CAQEn6DG%?)~^KXdXC$8?~8UAc`
zL*b2LXdFY67@G1_7bRn}Y9{2a7@Eh>A_gk#2vf_n0rghGsoWhy8?m`3hI{{GKpR$R
z8^irEv=iPrhAuIFWJU+cJ`lr0LOKd|5`0jQ6))cIf1rC<vX2NpD#+`%)E|rC=@_07
z<?$Gvh~dc?o{}s}>ugr#B<5#Dc`=5UVt6iw=f#FaU1K1=AXw)&e}l6wJ#-W0e++W7
z>K;Q6Ch<dKl2>B>R|ejVVMq+G#_(DUL!I2;mgNrFta`=#JL9j%(3_>3Ri7C83V9=j
zw`1rR!<&*dHmkR2xmnSse+=)$Fi3P}2gEQi%@<V5rc!Z>8k|;|Z1ErD9=1hI*rMKx
z;r(<^KZxN&;X~8PM=^dd_eZ|Ad|n<N!>2KP7sK~4@L!Y>TvsuS6i%DZ#d6yg{{z|=
zF%)f4OkWE5Du%Dq%BUE=5&o@UxhVxS`yqxOW7reJ-WW!Gm(LgB{uIN{G5iw4=osdS
z=U-#~Ee58^F^myDHm&?7WSrpm7(d|qmcOS<{}A%0;9r7&3r-ZABv^c_nj&PXAgfP{
zVS1X+5Hd4{S!rc<40D9f6}*0{f6rom3=3jd7{ekS8Zp>0ERJDG48a&eF)Wo{tcYP{
z49j9z9>e@H8B82H;;I-{$FL@bwf|RVX%PpCJF8PR6SG<jdJK^mqMUv4X~qy1@~=bM
z)6$CZ5k8;91yg?hwQ*u_W7rbI))=oXAQ{7k7&gYRPK?(J{@XgqCQ&x0T~T48w{0<O
zk71YSJJPjwrp;(Tv)z(S@yb^U_Qfz@tK!{|{V^Pf;h>aWj^RoShhjJ!!;u({#&9}@
zGg5RchLb|*>Uaz%gx|LHpOfTNT4Cwg7|zFVA%=5eld`0KF@{TN4_&q@CW=f~MJyJ_
zwRCAl+#j(_LBzpUQpUyOC?TS;F(WJfkGI@7^5SUe;4TOGaTLU{G=XIal#HV=j?;0R
ziKA2;rQ>)vjv;ZBiKA>Bcg4{vj&kCyX&lYsC?AK4BOnS}zdeo$ajs!hisQOCYTH>g
z;;0-)=JcFuaa<Wwwn`k=#}O)*{qdo^s&UMd?%WWECgjFAZi=IN9Bs?xXKho}Pvs=H
zs*I{RHRHHBj$7iml|JLBw?3;DJKi??_HBxfqFuL5@dj?4IHn%Ss>{+i&JM}^qF!Nr
z4niDHY*XY+)gSjSb2X4q?}+2hbj%IoXe7L`V3V}|{5gNoHjkqP2TH_OxA}u#wpHev
z+thd4RO>kIj-ziJZ^Y3ij(g&`H;((___<>?ul&r|rkrhRn^b8V$Nh1%i=(~x=^jUi
zI39@Og*c9P%4X^q$Kwn&j!tnr7{^0#JRJ8oPUkotN!vUs<nT5{`;^#4l*a^V{G^a)
z<Dkt`!k<nTJtN*&@i{4_!Sh183Z`OsQH);_>?ZpEgtIPt-9xaa;LCBm6345;UyI}Q
zIC{s?OR{CQ`$LrCeMGr+yP~*lzW;&rO;O$wd|R-eV1L1P1P8=1FpfdO2dD9?4gO~Q
z?f0Db;&?xfa2%01K8W*oY%wp6`Ed-5<D)n}i(_OQt+%V5+tr8L)yHvs634JOhKrvO
zg8XOrQ!b=Uew-=(c^tgT!R+`Rg<r(+WgK6{@pT+i;<&h7jf&%&IDUy^bR6Htv1z;d
zQS|QwzZaz04?=kP^d})dr*+!@8pjyP{vF3yA>-qi5XW!A#|hGmPKdw9@h5j&cFrHt
z78P=)zeG%#O_VB=;+QNXu*0uARXEACIHt!jBaWGI%!*^K=(7dqh)>$^%;$$4dP}vw
zAdZD`Ea4%*oxVsl-{FtOqBu@%&RZPEA2qVO=4LOG(Hpiy&EBDw$FU-gm2s>RF%-vY
zA*{6~j+dnR+O$#>M^JdmMiWjOJq|;-nJ(@AWJWX&D~`Q!?2987M?8)VacmTW%{x>=
z2wSm*IB~dfcyT1t`Z^&ey7-H2z3@w8OK#$5Z&Af}`p-0Oj$=z4Tcv1s9D9Upi}U3+
z{vv1EA!MiEF2Tz?6cdYRPuw5JfjCZbaN_=T#e;F&zSF;QbtsN1I~CL6IF6+G(KwC?
zKQ4GeaLV><nz0I(A00lhQ=N_D9CvyGk0x+Fjte|I6R4cPMIP62zLp1h30&s+8Rr{*
za4n7(cly_s`H{1dn>A=BuTJCb9)*i{s?j@DW&%VA785L<KnWpPf-KDzl9K@U2($dG
zm!CiZ5B~)0o&JA8=Xa_yyHsHU8+-Y;<Vqz_I)O3?lui6IN`VB*rFnTFN|1kIXkS5i
zMZrpfM}E(!lEC!|)J~vI0#y^ZA%R;HsFgsqgn!e)zv9=W)Qw_%lOX+6PoReInrY?c
z1a3+5>bq2%UFwltiud$C-KFX#c*!006Sytme<)tP%O6{Q+r=N}1nx-S&IF#nHMfDF
z)1ef%K*IzaI!T~W0*w>?zg|rQTPDy{NHf9af=@LoXpsPsW=wY_&`R{yf>iDn!pFJq
z5x4gW(*J!z+6vyEKszDr)1@7RJdi*~A)V6tgF+q>e3*ZlujbNK=LEVW@OlEh6L>6v
z#}nw8z{?3dk-(D)bWflMBTSD^h283D;m-&@EBG9{pTLS1nOzfjDS>VYypTYj*YIKj
z(M1JJ9JK$@GL@EQU6Ntsb)j0jRfpaFkiL?@s|mc8KriBM#h(|XIB>V((;ED2MgIE-
z1$`3eo51`879{XS0&gZTIDvN=WKw;-TfHS@>TdOR0>pj^^cV7uAe8|L3=}>{kWUFx
z)OM>OTq+3!_Nw<1ct3#;xPTM*g^M|Xp$UAHz~>2kk-*0czEt+7f+U|LFf7f7CvaxB
z%H88X`Z7Yq&jd#bR@<Y#OyDcw-wS>%_^sfm1is-Ybt=WWWxC}OzZ1Q&c>6*4j|u#g
zz|X?F>``w>(XR=N5#{d$#tQjekRE;$GA@Df2~0@f6S1d0LC7Bo{ORxg+`rQH(LHKn
znomk#aspE%J5_L+;327-u~+fml^F@l<a}*Yvjj<I3z?I^Tp{xWZx-W)2`oxraRN&c
zcyO;j*G$jtRsHw+n}|<DkKe17bMYkbnT?S)Rwl5D(_y26jnxUPNx)6OOJHpRMG0sO
zW@%QZMhGVOg;4*`%F?~c-RpmgnJ0{%fRR9hTBXed5@Hz^j0i>rS=~w?COj?}ZsH#=
zOtxel!9x;iGJ$motY`eZ`uBO}2A*9BWZ1~GvHiw89(0=$*qp!?sd9qh?N(cbZ%bf%
z0y`4enZTh04kxfHf!$KHKY=|$_6Zj3Q+v~dF{JnbQ4aF_+~<$j5y>7CJSvznJ1#s`
zi%p-D08S-vTF4o}vw|!=$G-x?F9==~yd-#8@QUD7!E1u7#UlbX_;=xpef~YiVm6A~
zC}HE~eTu2PjVzW*HpfPRjgmHUC7UOhpSE1wrI7Z8Hp+-nDy^5c(OO)UO)KSWyd;Ve
z<+G|etXR=TC7b{GqmIq{m8fjvM%!NrRcu^uqpFP?Y)sjwBKs8YR`A5wx=&^8_y3$#
z6Ei+Qp4^&olkn;`Y6z(*c(dRwg0~9R63i*(`>$)Go{eTUnu}Q9#%(q)Li$BF?N<$i
zuobSohC8$Fpz->wJ8d+y(PqDDWMf>(+{QL$<Y(`@uT&Eo#HNDX_p25*TG|+F<6Rqf
z*=S{BfQ?!kOa8K7wYG7;jdnKfw!v&0L6UoH+$;RPw9-~c^U{TEsJ)HOHoDm8VB-NB
z9c^^7@u)=DZhzK;HlA)-YUk-vfvb5B*?8E-BR0tEAI(~{Uy;mik-uhfna6BA&MG##
z+o*XZ>j~Df@r-ogNgGeu`0i*{o5Bp@vo@Zy@ggV7#>V~Xc^faVFEw+z+F+u>A=*;8
z?A3=e76x*=**Gf-`N&o|S(o#B*m%Xpt6V>q^Lq-uENK6b`I?Ph!rzqOU$@c6MqeAf
zZT`|?;k3Dhj|Z|dMrRiLDU;+4>MILpm&tz1#@jZ||B~6yMt>Xc*tny0c8i&XWo8!k
z3iy9PXf}|m=ztnzqwWF4Q-b`-1L~s#ig%@l*mzIY`TI6L5b~kmFu|cVJ`(b=;3tBd
z_vr`JaN(b(l@V!!&ux5RW2=pAHomm+m5s$Vme}~(#wZ(8ZA`QAjg4=mkCScx)cVdw
z`NF(g4yx~MJUAui2OB@y_{l~dzsYOkcN;%*x^0ZM!C@S0BXL0eYGVw?YH!Z**E4P?
z?UUcc;W!)PZA@&L%VjyQcK()AIe*xQe4jJX#v~hm+Sq+SHECG-FB^Z`AYr<AKy^Ku
zRr;W6bSCd?ZuS%|o`Z_dfN|)ia{<_xX=4`Gj2w*p5BgvBY<?+g##1Fn9aOW~k(p|a
z;9S9Zg7XCz2rjg-NXX)Y{u>XL+E`{|y^RevmfKii`v>ew8#@mA=M0~sdGN99RW|mH
z&RuO|jg7T7ill2{8$ltOU`UWb79LW%4Z{Wrvu0Z7lROa{QOR01Y#Wa7n2k8cP||Hu
zrR5>za#tQwNgM0L#*-|)F{Lb7y3xia8=Gxx;VwI*dLL3{0)<~5@{h_%;)j3NwzDHP
zuGz?Nu+zpa8z*d><gnY=!%p!K5dYdC#l+jqO#5v#J?uaDeZa;+u4Hkg4y!{p4vX;-
z!J~r51dj{e+r+;FamvPN8)vxDNLH14PF(drtiCv`Xux!iC*)yuUhsmAi$X35UKV8O
z6(Lu7&NRtoHq!wdlyH#cpqS%}#U1}T?drp7*J0JLeKw!K$##(A;5rAD9b_EwM?Tl_
z7jqsj0Xg`zePMxvk`4-Ka748@qMkjXN;xR)pp1iekEmadsHI0#SqJ4EC<mL4sB#Ww
zjr4mIaQtJIse*&5claL}m@0}`N$}DURmJh22yJ#$-5|>Kf>i}8A63;H-00vY2h|-k
zcF^0)s^Q?-Gg-GYLI*V+-0a{M2R)9e+79YCxK%2?cU0AKKxA|L-eO$`^&QkM%&jL#
zg`DZOboLGhcRFb3ppk=~WwYPAm^J38;{H8dJO8tLvgaOEUl*2Y;-IMmw|aInhi{@l
z3kOB5OW8+Na!*cC+noJJ6>GI}(3)el4u$J*w}Ung9(3`Li+eco4$e6^@8CWMZ5?cI
zu+hQ&4%#^w=U}{p_6|BY_{G6!2M;*tC>^PJUUi}qhyTZBee2*M2M;^w=b*oXM;tur
z;3Ws$9CUWjg~RCJX$Oxvc-+Ag4xV&S<(PWln0n)w`u3Pwd`#^<rY;>*w;or|a10&3
zc>~Y0mE-ES<7)YF<sMgE9gO`ZyXgt_0u$GXgX|Oj7&7_9L3anQa~3$@94H5`Iq2o!
zWe0=AEaRkl#lfo%W}Hyd+vPAtPpF$ts`e*U_mgVGN!7<eUk7hFc-z68lgc~kJAZ>~
z>6Cg?kl9;Lsi#k=5vSDLQ|cWD0~~zfV3>n}Y{kL*4nA-&m<!Lr5Kgg!b*EIuX;t~O
zYI$09KCRw8t;U~L>rbl>IcN?(a_})1>KS#%8TCIVKGbwZ{dGpg&!}@})Nn3u2VXe&
z(!mG^pE(%m;ByBR&#Go;)iY;Rud`~zS-;lOv+B@U^_7FK9gK4Djf32C>Yj6|`#II`
zociLNns81f&Z*1i6ldx?nXm5!e{k@lgP$DyELoPWnV31;@sXF;esy@&RJA{^#yI{J
zzp;WOzX@T{1jm1vjSsH;F6*J!dG&{bKOOuf*=Y`@JNR4pM8Qdd40y7GDZ-};vLeM9
z4rV$CJBV<HI+*S7IT<Vw1Ab9rj)S=l<~f+pg%MJV1ZhUTKyaZT{ZJua>R_3Jpo5Tu
z<qlRjSnXhqgOy^oO5CzK?Nd(Hrg@PAR;QjqO}OsBkf^Aqip>AmL>*WTYzK~mm{d>I
zrDfbf;y;#DT*<C;;0a0o-_rHz>?Q}B9X{)Y-43>h$hsWutuiUw(sQxh!HzWF>ENsL
z{)JXf%^n9w92}L3dmZc(GW)#R@8E#&gMx<~98MRpluZ!%V8AgEkMl@5uTBV_6lC_4
zgVSk##=%+P=gun@U2t%bCya|i7ndAd<~nqd=i-Wks}8R50C)Wrm5Pw|{8kaM@&%RY
z`VGNFF(JhTsg!V$B|JN=<OtzQmhxSHP10L|>#u<nr^8Y%O1miULb)j8qAXi<!4=Dq
zVMFX136WJeTmcsq#1BQfs_25Ny^@RTTvT>Z#YIyW&0JjXqN<C!F6z0s!9_I}x45{~
z#f>g*l6Y<wCk(i{iyESn*G$LE*qEg;v6f&R7q$OmMgx}CcX6AGJ6$vso7)8&2(t7J
zX@Wj!%+yHq#*$@e6Un9;ZSJCli~C))bJ5bpT`t=2kQakif~{T94{P21pBPy8UMamV
z?X&HFO53~WAlX!>9uUipg7m|>ox~>td)UPz9Hk_xCGn_>&Mw~b@V<vGE*^6+*~JtW
z&+x{9ix*tHC~ZCA;z=P-xp-R0GlH!ysAq-H?Q@*vH1FzyMHF8W<xRnEF8(Kacgeo)
zqKA;4f-k#x#l@>GUUSh)6jrC76sAaT$@WQ?_I2?_+JI(nxp><}KNtO7eB<I<7w@<j
z;Nn9UL&fZW7t}x(gIo-j?0bUmri+F!Jc;>z7axeo>J;huBNrdL_}s-8E<SNFOe{Zh
zG2F$cE=GtA&Hl9~VU}s6#E{}&y7<cFBWiwBR8pQvMoBg$e&^yR7eBlBUc?{Lett|x
z@{5bnE`E3Mhl^ibjBznOZ8Mge$i=v{H}-`-*$UHy|A=hyPZxi?nCRj!(NmF3O8ZIG
zqS;gz)3}K|)bcQ$UFNxZL7jFn!^KP&vs}z}5pxlDF~`MR7pq*Xb}`Szd>2bxEOoKK
z#X=X0Tr74m@`C#9f|`Fp?Yy9JFRI!X)w37X7Z=qs7t39&aIumVFREh~Ri#U+?IqRc
zk{WwSIhXtsZ;gw!E({l@iy{|67n%#*#kEVS?q&7BWfgMK{jwT%S^afct-7p^URIe`
zRM<ttMbw4GW8sQ=^or_tMg4F^MXLPsob$3PD&fL*vD3va7Y?_Hiw!O|y6{~7%rVxv
zSnp!@6_s;U?QWfY!&P<PRn_mR`r)dYd{u37vDw9T7dzPBtLng2wZ%ooHMP~nHW$^e
zDgO6DY<*3=cuftyrp8=TORn(&UF>mj)WtCudtK~vanQvf4*oTjml3F+5!lbYmJv80
z$iBaDTi$1U5pqW0FeAwb91)~`+{FnOCtaL!5y%V#n&dRh47AS-Z2LLy^~}KcnSrI5
zfio`7x;W?Jyo*vEN_)8A;-V~x91oXVT$V}C^l-(+RR-_*Ti}{3Z!QC_fq#*U1Rjcc
zDDI(zhb#}--v3|5EM=lS6G^UzJSolhP*O;NcuqMi6eVR@#zR>T*LkSy`5wx72zaRA
zp}g3r|5(z#qK8W2hf$@LH?fLTyvaj#57&FB>fr{dRn5bVVw?($RZ_L+r-m5Z?4hRj
z&t^<@^A>SMgW4YIczDS}HxG3^)br5E!-F2`OT~KyZ}V`wkOm$aduZa}4i9&VLT?Q{
zG!o9%Qvo#f(9FYK9$Jas+(QcwEz|b@hDXxc!`&X*c(~{Pc9wqF-;}reJhb(2zf^xf
zu$_nYX>T3UBxT%Dvg8kWIG7oDOz>gBM+7N8>Y=mnE@`DS0@NS(@PvmaJv`;%X%8<*
z=`$Xl71Gtib3&dMY$8><3bHQ67e%KH69@Kx(xW~ex=Xf)hn_-S_VAhz+Pos<RY8tM
zFAuK^@10g?L!Cp>*TWkg-t_R6hqpZp@G#IrKbcc@wtsr|-;s(`m<EaXu1xgcv;iIZ
zrRmxKz{7`Jz)9pM{pG=;p&mZ+Fbo0iyN^A5LhfO>hdCbRdid1C2oDoH{O;j1@%gQX
z?>vn3@VSRC#O+rezV`5?M3Rc1ILgB}V*jtgw!Zi9gNL6z{NmxqwEa)%*ix3GJ^bq7
zHxJ{)V2p>c((BZwpbh<`EUAna8+POmaWdJ%6c2xT_{+oJQZz|$qF}0Gs_s+|(?p!f
z^Iz)DkStx%;NMned6@m5Ud;0_-@`f&>pd*+u+W3<!SJxi!(tC>JgoJw#KTe#D?F_9
zuuSSM7felS3Rg*6tJ6`X8fADzY0Hol1=AsELQ)&V^bi&^$3w(J)I&nDmWP;!xLE!>
zJ}J+sM(wn7SBU2!DTM8&Ja6!@(ZeYZr#)=)u-U@_u5b@qJZ$x_%foID+dORdu*1X7
zv^UnJe>zDeX7_m5>tUaV{W7pA1LD7gmWMnXW~d%ccsL?4AN6o7J<+uMH>#8AHUF>w
zGakRhfy^Y3#5oV=dD?rp%=14zN*B{rQhu&@xa#4WhYVTssYw3yma-|9MDZlDlgLT_
zv${$ok(K=CDE@aCSt~bfz(FoZqGXa^BtZpQF3sYzD@=t+OhKSj5~YQZml0AniE?SB
zybvYG*M?L~`fu1fK+9qQemS6064xdDr!Fgt+bT)$RcY6YQdN*`4JngxV-hzd;U$qw
zqIwcFk{FT1XGzpd;^ri7N#fQdS{C#7HPfJbb8CsW@%e$?Nz_iFP7-yKsFy^CBpyhj
zeiFCQK8d@MxIKvmNi<5LaT4<jGVVy?&LqDDgXfC{J}4HLTr3bR7C0`Rn<UXRiRMYP
zV7tWw&60Sncwl7lK%3%$cklFXjIJym*jqf1QzFnRiPlNnmqgnn?oOgj689u=F9RqM
zxTi$ml@ftpN(APV2)HEzmrDfdW(Dp~qMZcXp5bK$hGYfCWd+9Enqy@Jj${QoCebO0
zXOnm?i3gK-D2XmfJjTIE;t~GmpG4;*%4P@JX9r%(4t$#(n35d`W(O{22P)+R9#7(l
zB=4)@DLTmsyr1KDXDr{ilM`5<6L>nwZ-@q-NrG)L-JTnGK8dbL^hly-5-%k2BBM&8
zJF~fg&vOGWB{4ZSurW8#EeT@B_IXEh110kU4f6tz<^^6(;*}(NCGk3|<ON<$BA6FA
zoELa4iLrSBCJs>`KhQKk@I-##!~8&>B>E=tM$*5rK2-2cL1y1d;_W2*Nw$9y9}0OV
z2|koKAc=vJ9hAh7wEf^D-c5oJE2f@Wd`~RjPnUim<loYdB>S=8CrN$*4a0?hD)@QJ
zf9~Knd@yHZ5}zmWMH2kNi<SS+>Kgk0$a)WGC#v>)__EQP+)BIm(0lK__uh;2-lTUB
z1W~YofY?Alu~AeI5fwyHK@n^qf+&(H$)rp&$)zaRD2n*s^W=@o-}kL`)?WMU^PK1O
zlVmb;=5qFvK3vLDPx<h)56}3pfiuU44}93@!?QlT?!zu0Hu<ob9m}@+u*HYxe0bi6
zt*m6W>Xoe~WUDpV>aA?`f)9GODv_g(Wvdr`AhMTU@nM?}uln#BXK#+$?!!(WX6C3J
zKD?Wg(>+HK@1N>kS>2YSzRyt^xvEaC+U>&|KD<L44ilG~4|{!hi}Ns7&CFE~=c-q7
z)$v?akgKwasC_=X?L+M%ih<tt`*47r=EFgmhr^1fhl{8KMU-7cd5fx!Mb)^X>W~i~
za!h^r%7>49_}GV|K78iGVIPk8@QDwfa-@o?T}9Q&qN;E)Rlb-SS<G$DJ;l^9ACCL*
zxes5kON*&(#nidhnMWn{QZZGnxawV8eeJ^uAHMV9tPdxB_{N9RKAhp)EABd3SzMj+
z;am1<am7I8>*DH<;;Lu~)v|>8-iIH2IOoHUoa!aisuJpr60XhB66$;j^=k>`$x|A;
z+J}oAJ0A>AU?2P(S#B(Os%M_!h3*M?iox<>X`Y*xA?QQMhp-P3A8a3D%yLIYq>N|Z
zjdU$5Ey|U6G4tuia~&Vz+#5?5NpNR4mHXw(#ds%4fe#m?Gs)?STij(Ie)8dG+157a
zsVht^;<;0Ex6`X)`HK&~`tX|%zx(hHha*q@A^KlFtQenhjUNF%+~6u3?78W~pPX77
zJU4HrF_3J}Dn$L3*#9kfTaeBxob;q=C?o~Z4+At5)^J#wd57ppo-W*@!7GG$GlXOc
zW(j5s2J%!94MjD4qvMp0Vj7BTFf^DNN@&Q_FkZt14fz@$g~Lb<qcoJ%P)g&YIvAnh
zuRL`&(|ga-+|nA#Xeg_poQCom+H2^bp@N2r8tQ4Nuc4BL${K1*p;ZK{X{auws$iLp
zX*D#|6kbaRmAU2J8{<icbtI{-VA8CChK3qiYG|eLxfr+qn`mgNp>fKFX3aD-*U%!R
z&>_Vnk|h1K*3d=_+G=PgBw1)OmAs>dt{S@WUjRw%EZ9XbY13Up4-Eq}4Ajt5^xhi!
zXy}!)p;=!I{WSDXDgXbP4AO9yhQVTxZ1NBdLp2Oz-%1Z8F`1Evz_VfuB%?KqkzC_6
zFj^sBF^m<3gvZa)Y@&uq8Ww6;q+v3XBz1}g{!_-(cKNE$yBSki`Fu4^lBNsJ5S%GE
zOT%m-b2QA;FkkpwLEa5TCrQ45eJIg;G%VKef`%70@DI2p9GBWft0;A^hNT*oX}C}F
zZq~3|!~Ghbl4#pOX%A>vp<$&4tB?0;@9YOPJfvZ*hIJYq*6@gi$26?b@Tdl7glCn8
z)wIu7E`KzK$gnwIeJBdO9r5KcP<&j&dJRu#IG3-U)Iehfa$+oBJ+0vx4I88m8wJ^-
zJLloq6yL;F^p^Xk4ySJs@j1cgHEiWV$alAzT&0>Rm%PMjZ{)wM;S~+rG;G&!T*K!Y
zc4*kC;Uf(nYj{<|YZ~6s@UDi}HSE%`SHoKzZl3(F;SCLYIB)xTcvCu0%TFGd|E8o;
z+$TwIYwnHrv`^kSPqJUb0S)hK_&~#ZVti1L8JUZLNBy&UheZ64TZcsdha!F|NLNRs
zb)TfN9~JVMhGVH*$tr!J;Y$stG<+)tUkRSj@U>*8A38tD?M1_X>u_4k&T9Bx!x`bU
z{7!6=ZTvyQj~dQ%uu`eX;(Qu34SK2$bk2+nO!aFBa02V-rNhz?)X-K(I~^enVGUJv
zRMXuDBqJIQRZx85*wzr$5aTS;aHo!R9dQi_jqjbo9~ufYT+r~dhASE_YPh7~vWB0y
z0V?&7Qg7Uoc|a*mshdibEvb5xR97|pqTyE!zj1n(R8N*v@0V2PN~%JoRP|D-b15~p
zl)9$jx`taC{?>3q!%Yo;a^`TVmr@^<Qi)P3tF&rST3svQUJx5vTHV(04|jMScj)e@
zrRgZ7<CW5CacOssX{8l(5Xn7dRMRqQcp0^}jPmI4>d4ojbY$qr)KNr7Q5{)2vUTL>
z$kp+78D*AHD66WMRXxh8MP=27vT8?JRZK^59VK++={QzaMaruDa;ix=HMN}DR8AG|
zpSi!BDygHCj`BJx=qRnDjE=H8%IWy7oVrm?RVc6Ol~;Yrt4GSKSIWC}tEi)rj><Z!
z==ij}ij{Y-iKSOiRVt{i71Z(yYEK2lw+49D6{)V{`wFUtjz21>nmTIfsI8-pj;1=A
z>8Puto+LFAtgoY?5E?fSQnI3AV6?GBo1{{cX3cf9N+~ULv`lfPwodUjDWC0ibkNaJ
zM<?m|RuvWRCHQTYXKF>oJBxUKV`m**bazARD%ef1yI>E&M=H8sMSAP#qhq&@H+1yX
z(ND+gI(F&kuj9HW>yL_xCyfu#F;K@K9e3$iqT^m2gLMqiF;T}P9YZ--6&1rs9m9kV
z7aSqT?q$*_9iw%O(J@xXc%A3hxmm{PpiR<%$mqW~nOw(g9dksSqGP&_89Juwn5H9X
zNn>UwpD8x8QrVNKb9KxUWs#2gQqTe&3sZTMbxT^_qhqmHCcRNys$-ds$91gNai5Om
zT$MUj>9}9V13Dhm@sN%cl7+2U`5&LjwmhukkyPrxK54mHTD?Z_F{u*8wK~?NdV@tX
zJfY)B9nb67s^cjgPwRMA$0i-m=-8lRW6GFib$r1~56QM{*0Dv$bDR<)(oa%n7Ai03
zcu~g=9XmyTNyp1vrzuz4beyfIwx_a?Gtl#^l9$<EOZ89ECvTbKWaEvLttzQKI^NWA
zLdQuRdv&~};{zRs#D1TScXV9+Ed6bX9;xAu@4KQ<+%M#S;Cq4x1>e`*dyHxDq2%J-
zyhnt5B>1u5VI89;x}S8PaKY+0%CQb*Gkl@rGvUVsk8^TXQq(_}=%PyMOC4Wvwu?yp
zYaQo=bII`Fkz$oqtIFzI9jDoo2A(%?hMR_t_69l_ILo!Kqq>0_27X{h9Y5;0bj95X
zc~srN%I;2bUWbo6o(`SM%E+%^z|diGS2O?vejNcFSJ+JM|2l#?5;_XF|LX|raJaqe
zi0GJASw(g5bjl5tmCZpH&oOEE9^q#yE2pyZR8c&f^Ma0xtcH%uV$iCJT3bc!sG`2C
zqIkmRPda|q5v$_X?bGMedUp5zqT^Q`H+0<8@tb71#+A-3x2pP``%hK%2Ul5DwWF#!
zSykPvs>)SUt*fa&b^N8{wvK<eimR#Ts;OJ-rD`fsP5muSNYV@xudaGjcgy-<b6Sh7
zX@w2kVW1dw19uuoH;`o@+knS_*Fc7WOam*bs~y$V(dsHvT@|jOO4U$3YN$CiRE~jM
z14RrJHSlB&^-&FVp@#aQy0=J8*MFUws(VdU!a$yZQU*#J$Ty%2^lhD4(!iLSYDrD?
zSWWd_O?9TGDpX6AF;Lb(IRoVlcM{gAr8?JA^J}T6YPsHa3syATA!DdyptA5Pf>i~p
z3DP)u{6b9wO${_N@MA4i%Rp@dbqv%s(0Y}(v0y#H`UV;ZxmrsxG&ImC6{RIZ6H)RH
zWaZX&Yr@-un;U3hpz+!CnzdC+1H@L$BBYHVm9|3KrOY}S=wzUqf$q|}&IY;|=xU&4
zZN(1)zT$!3ocXJ8Ty53EKu-gM4BTa4b#3)_ZAHD8f!>m_k6>THeu8IftNxt%wbcNL
z4orz$FM|!d+r+K&5CcOE3^Op?z<mam8yI0=q=A_RW*Hb|V6?##9x$2XVqmO+aR$a4
zh}Kqh>!`kU)R;PIX&rT}j=EGwP2ix{RTBmI_uSnErWlxRV1@y6yL)^8RQ7pY_0P7n
zX{^cJnfx_6t*+WxSAA4hU8t*O8<=C@9s`RF%r!92z<dJ>IPof|ta_?WJ-4<C*-`b>
zw0deoJ+(-hv(9#Zq%1LTuYsiomKiuyPetmfLiJUd`l@SvHMzcexxPA4U)^uu0R!s{
zJkEJ*V5Naa4XiTopn-=BJZ#_*13%YS-Uh0D12v|BT00_pX#=;={SDM=1CJS4V_>a;
zQw`MR2Flw|HEgJ6HdN0vR0kR=qoG=F;0Xg83~c0_H}I5!rwu$~pl~DAv5^|rNIlp{
zz28V(ZKR4eR^1w_XANvJu-U*C0}~soWsTJ<jn!9;)lZF8jV5Y96ScI7+G^kh1FcN7
zHu0i?mkgXV@Qs0&4ZLDtuYtEXUcUSjP1H8SeOzU`!80qcQ+kFqf5X75!e0}7UC>)C
zcb9?PDNeIJ!rv4;c!#?s?la(vWPd3>-!{;;Mb0~%Fb4J;IAGvo1BVS%%5)dwdj<{~
zcwh1!GVr0nGdEm4nfj6NrGwnlQJ6$LB6w8rh0}#T5%MXUdD?y0>N5k!3>+8n3&GC?
z)0(;ik>uW{>ML$RP1V<eCk)hYsu(?G;9CQK8@O%YG&g_tl^i$m9hZQC-^I`O-24q}
zt?IpE;2f8~fw+N$f%9yyfq((afW}GNRGEUhpdrXy)cyZaf(Akc9B~*n5aGHo5Hnzl
zLSqtQGGmg{Rnl95feQwH63dGQE~RoMQ!k62^z*YMCB4zrRZ05Az^_7nOIgzR4{75y
z!RvxI4BRyEr|?^XtD366IPIlBN!Y7AFYDE&>K_AXCJLFDvOU{tBEtlP7Z#*=hmbo3
z(@l7U@KcycnI^JK)H6}vM7D_>6XB++reLm#QYK29C}N_hiDD*-i>^$RFp+1X%qUO3
zC|S)EIWsa8zROe6L=92;5>1pfQOQJQ6XnFXyom~uogQdEyqlL;(ZrHwZuTlBsxrG6
zFj`G)s+)NJ!vFlUAV!~SrfNx2ZNWN%bp@Gg?fML20~1X}X_(R*327|YM9>-Jmfp-n
zbBVSPY$-_nO0AqWCfb_lV4|Z59(vr)#Ia_oy@~gRW%B*1PBWF?Ty-+h*~9=715NPp
ze;yXv#dKFRclfRpdEA8Q{^il#bcd{miJm5UndohzkBR;wwrZ~WnqcT>VnTCwy-*=C
z@b~*;&D9_iyPK=IChjs3^>_!H7-C|miD4#Yn3!o|xQP)aCYhLQVx);tCdP~9XcJ>h
zj1zu;$F#8~h*v*$FPf!!y-6~`#6&hQBcD+kklZcyQ%y|cR1sdKRT|5kt6_osc%LqQ
zsLbNDS?#_ua*i})b}CAde4dH<CKi}jXkvqjjV2bExW~jpCLT7in1gO&IbE5!*Thm2
z%S_xSem-cfwC1Wv3)QNH8s0)JZK1ZcP!E_`VPd6;2TdGpp)R*jRa&a9E!EVPYEw&f
zxTQMVQaxhgQ4{M;JYiy$iPa|7npkJzYD-nGm3oYQ-byWKrPi=Ng&c0Bj8-bEwR+q{
z#nx`0KWXAA6Hl9X#>C*(YGrH154)YM)d#KBh1LpfRE0L`SreN~ylUb#j<|^}e5<dC
zS2!&>QMucjc!_hbjhfI#rGJ;c)x-;?`^s8|^=;J0ZIr)_D%@5zZL7AK*luEniJh!i
zTQ#YzTHjW^*H&q5)t&8B*LG?}JN3GWT_*OLc#Cy5@rH>#Cf;PmcIuOM>U=x(Pdin$
zz3R|j4QsDvwpaU1ylvtg6YsJb?bYG-%5JaF!EIX04r+J@wY7tK&%{9!Mi6EY@0<95
zjkU1B!XXnMa)$eH+>eh;d~D)~A8)PCI!t2X5kDUF;}a8~a?1HJ%a5ZbJ~Lr+hA@|j
z<0c~PYWc^Rw*`J~;tLaBn)u4ZDbc?+al*t&6W?$TIh)U08IysWcNH=)`mKr6CeD~V
z<_G~3mWi__zBl1Bp_%x>#5of`nmEsmMeYIPZHgauQ2q{zcTnH%pelD%I-6#~G~qYF
zJ21O-RJ<p4dPl|E5&0A_Z&qa8f>NIlSGwumzn84@;~f<PISptTGvSzM<VRya;#{*g
z+}n45GLbM*VB&%_fyS3Of>!=TK{kZSWpPgNXA@V*P5i<Q&5wLPe&x=<9oP@AAHSRU
z!^A%(()?}(u9^7D#4QuoP23O<H%<I0gsG<_kTCqs{_N+uZ6awvPEyDZ_;IJWDlB-1
z-!)5mNLr@*U582g46(`fBgc<SKeAHBw4?z`$@QbCAH~G1h#-@S3n`H@rdiUn61}n?
zRs1OFM=3u_`%%V^3Vu}dqpTn0#Gt%nOlJ8vFN>=r6{C`@TU9@*`B7i8RQIEXAGQ6c
zBhi|EKDqzD8vg62uHWs7dZ}6^+emC6S?IH2Dv3oj5s}lTsUOY!XzoV~KL-0T#E+JK
zwDO~?AKm<D?MEBGdpB$+Kic}yPIyPjOR>El9YiP3lAC5pXh!VpN0<L3b@!u(AASAk
zC#gLJdkgkrw@cnW68+aze~AwCW59p>4D#bH(V2y<U|B=`80N=hKkoKpxE~{!>c@Do
z87Vl%k5PV%{=d1#{>LXvoFJ(a1?h8As(~zJiXT(`m@buMiPQeCA1X7%n7L;AF~^Su
zek}B3t{?OKnD2KNI2R_(NO(&yJDi+J42%5W4a4_HcCM+#ek}3hUO$%lvCNN^es`_i
zCm!w>zFas(x_Uqqk`;dU0Sbx_ibC>`9}lNQW?ALOYCoRz<0(HL^J9&lXK>+hKi2xe
z)k+WCZJ3KU+_Fln&w4+ekSg&bo2l%ar~P=wk3)WZ=yz|r-r)b=ezlQ4Z{$Dg$0k2E
z`?1B3H~rY_$8&x>@5gIW+pVmLAFueajd%_(iukf0FG-XNi(p8S?UK6Fj~$YltlO*q
z;jjC#OKf%v?h$+=RiA(TyyeHce(d*SpBPYoTgW?N$>;%z9!#aaCnQ;i_l19uvgEG#
zkslxXahR*a{NFv{98hj+9LG=ObAc}u`;<NQe*RIx&jk5-@wp#gu!{nCI)E?z_=-C~
z0ObPiN6FWIe8a`)#|b}9`f=Z<Y3(G?=eK^G_Twi%&o9LpKfd!L>PL*zn|J>EvG}j_
z@BQvEo{at=;yFKl^y562z`{c3)?{jaG+0o`=f@wDz1{Ej>V6o0P&fUsgpm8`L3reg
z;*17UddQD(Qco$iAJx}-Xfw8#cV9=vV-_5K3ixrPqe=)C2r_y>$VERc3Avoo`4i>}
zJH(GW0=P5aR{Iw}4%GDC=BI!kzj6PUR#3mmIt#xhcwO*DD)r?r+@Du}O7t&37`-LE
z@wecTPYV4bNoi69Eei>OVBr9+c62}b(*wxq<dTh@lqZ1dos>6#i~uqN$dYJY0NJz&
zptwY7kQ+cT;Y9){Dx_;C#lR#+lcYq-fMULI6+lTLr36chWf{RqlD&KY6$0oRK)(Pg
z22d%0`T;ZupmG3J0;m@NI;*MyyxmEC&9VaE3%RNZt}C5eBY;pR#ZXg7tpI8ZsUwZ8
zE6Ddmu$c_>!_Y8*-U0LppiuxNI;+M3Gzp+-0JR>=W@sBgGvUnzTL`ucpj7~^185V#
zKZ89<%cRdFZzpE$1v?0K6zn9}Ie;!gXxue`Zo<2#lpX=}6y7W4oJG{lbAP!n-<DCi
zv+5tffB=RBFf@RH0SpS@t^fuH++W1TGuhobEB?fAe;s#rNAuCnYFNO1;C*xeV`PYj
z2XL^n8X-7Ra8v+CJ1dG~0~i;;LNOaJeKkXHLI4v3m=wUN&T47^(*l?*`rU$41Z^pf
zI6Wnjzck+cZ+B(@vqYR7z#JiS1DGd-sW&^T`NH{3_ksWzrMM`7djeP-z>)y+x~O%6
z_Xco(fTzY`sYIzS6LMbw%To$Z_@urffJXyZ6~M{>9t_~2RO%xEJS;qEM$2S$bpUHc
ze=KFWCV)t$_g@2&$0ccf08a>c@;{c(1h6510|C4jz{UWc4Pbi!I|A4gz~%s64B({z
zwgm8809yliA%N#OaD6@9ySV=c-E+&s_sa3VMV@f7ZdNvxmjif(b?%t6Er8iw+}>bV
z*G28@q9`)#4B)i@UKg8J12`i3t^jri@NNM61E8fL;u~VKCxADF>=k@Vkbd@Y5ed)j
zs@@5JNRee#>#ACHb;~^%!21Cx3neXl5Wt}TP6u!%fDbvNI2i)?RtE0lfP1R&7XciW
z=n=tB1V0r#8o*}(91GyML_Zg7)2L99_uZeF$+rf48NkS{is36EUkjcPJQ=_@LZ*uW
z56k6cvE*Ut%>G>f1p!<L;4FK<pZ$FRKLl_tfFId2w=;qPoEJiF2H+E}3F?AID)q0Y
zvT5U&XdnP9r6&zS5)E@!1Yidc4ImakJb;Agv~h$aozM@XNrf-RxfnoNH^o=aUkc!I
z06$6de+l5%0DczER$SpeEWA`b_urG>0{A_EA{L5T_#=R8+=?yt1LArBH|WhmAq%v;
z8NjUo{tn>J0RG}^@2ZN{^_n+}licR+A<F))YJ-d>vr~tK!WPmkc*Nly7D{~QxzmDo
zNH$Yx^K(~~%t#Mj%k`Pem}w!)Lbm0)&9RVcxrH)`)nFEy6%&V4@+=e=UP6$@$)@E?
zl-WyJC~cv>g$5SNSnkE@vKGooDj&lyZ@E`6YIajSx~U2lDvDl7u!e=o7OGhIe5;o~
zx~qy<O|ZJ)2ix5lRntN(iPjdZW1-tiZdL0_w4Pv%39e;B3ym!I(qc0UEN*c(HSL}J
z#+Lh0*hH|Y;MQ)cxrG)MT3Tpjp|6F07Ft_qW1*vkP8QzorrKI)Z=r+mb{2l^rdo7Y
z)QQxIou%Av7P?#LVxg;uG@vDGLhNCom)P`_>`9T>+d?1FnT65*76w?DYhj*+fffc?
zm|$U|g}W>awlK=VXbVFu47D)A!bl6tyQ^VrW`^3^-7RRiIN8!&on-XxOuM_f(Or$P
zFxJ923*$MjdZ-pX)Z89wQxEk;4|T1Fs@zlc?WrbNm~3IXg&Fi<VTy&R7N)T#J=Kdn
z)q$SsTu*hmrz+M<we6)2%+8!?VU~s27UnSYQagI7Q@zyHUMjt}s@_|T?X6DM_s+Ml
zfOE{kgBBKASY%<Dh5IbrV_~s{do3)L+Aiy@HuqLbEF9_WHsL~VmD5M{=%eQMQOhmd
zZ{Yz8D=h5kqdx1SoIa{}U)8y<y05Q#rmx!HS3P9mVGC<5th4Zlg-0zsW?_v5y|2pc
zr&d|0+fR+@r&dc@B#Zi~js4Woe#+^m9=EXG!c!KW=B)0oYW7!8Sm2Ecll!YD*&+Si
z`mFA+cJ)_3_E$v)sErn$wNN97nn7%`u-U?S3qA{5EIeo7JqrgdJa1vEh20k3u<(L~
z7cIPM;WY~{S$NsPD;Bm%O&SkSy$2{BO17OnIY9j|K=Dtg9Ts-72?N}6KNWnPi}!o%
zvfQJ(7_tYtUjS+hRC_GEX<;8Hq$KSXe2Z23rg*P`Zgv{K!_{YDzl8%F*@0@+K=txK
z_fE(|1KqM1&J9%WbMv?GrG>9}{l~(G7Cy6Z%)&?F@TlO&7OsoW!&37j7CsU3sUXXG
zr@8xiN{7d}cqPjhf@+XzGe`{|<QB&Uer@4|h3_r=AgL!Ud}HC1a2{DhoB4y(w-P-q
zNac)$?}VQfWLa$EISW5Zpuq-lPQoOOgKi-sh|C}i3nq6n3u!_4Ed(sw<ep~1vJkWo
zvJkf5m%M)sQYG$kYZ$R$+@<mdE1P?ig_yK1VWGf+V<B##&RuTDjuRxgAUerK3zsZh
zw($5}>UVDGLVl9$KMP(FyejyM;ID$e2{P9;AvXlCr$l;A^1m$HvcQJlmQLUV_?tV!
zV8ynxD_HXtgH@p*5X2op+!;jSpexdzxOuSKwDcf6L3l+kQNp`_u-lOEV0A-CRuI`i
zck`(lL{1R7K@<<7L=Z)SV9`Z`C?*+;4^ef8s2)Sqv>~p~yr4S@`9Ua2eQ<~>DNe2(
zNoNg92`?>3&t-xr8$>yYmKUrTM1@r9jv=a25S1lbMRX=nWX5ViRA)6tr!AY|Zt1mt
zOsf?{?I2zWVp|Y(f~XtBgRDRh^@6A$#LOUO1<@eL<4@5th*sjWQ4km2bQ{<>h__$P
zY7)d-N7I`!X`!c?U~|D1VodSa5XFL82Qj)0M%4jVVw)h^2GK5v_Ca(=ng!7@h)zM=
z6~tgsItS4+h+aW-38HHd-Gb;IM31EL;dFC|VqhJTdha0m1ko>u{z3Fj+0dQ_NgNQw
zz#s;RlFX9KOB@o!&>+SJF)oN<K@1n0(Ls!mLPrKMN(e2J-k6<a%zvDZ4`M<PlSG*)
z_+QJ(|52z<k?7PQrU{uI#Eewyl2x4@#GD|O1#w>xbH(N!!FfSkAEM?5-40|}5X3^^
zi&9F5q3Wjxyo-Za62!f9GE^-U{Fr|z40Zczc@X!DtCc}K5X5sLu3+gkJUpL2)TBh^
z_1<?yd^m_lf>;;C<3T(c#Ht|H1hH1~KC(G$br6pQd6DyfzYV7h%;NagsKp1*-ATo;
zK8TG$JS+B32tFCaQ$ai}{Fxv&2%+W0p^71yYf}&}i@sTwz{F+VEvzI5?&l1K=Y!ZP
z{DqYAVh}G0|0<eC18#Tpvz=2thyy{q7sO63!1dm}oS#9wDxSHuz81vm$x;Sq?Fzd8
zG3^$7LvWAan}Q97sePQ`LA(>hyW%QYPd0NuXGI-%IVY7t!_+}u{15WnU7QHw1M&Y^
z5XXWz6vT%T{U`{o<)r<`q8tw5h!BdOa1c}csE`$H(vA!HO3M0N_!qL)z7*`x&+UKK
zf6*{?GKg=2I1|KoL7WQW+n_rZr&*bquFXROv(^lAJLk+WbvB6agM24K8tYFbI!qNF
zu6_{b=LCNgJRgKlh$g5DCdbzwL?DRtC_GVEK?J!^MsQ~Yp&-JnKnQ0;hy-DC>_T`x
zglG^kZYCi#2*C*=&Mh&7A|WJ#DBxBZLQV)5g6>ap{!Y;%=@)~z6vX8qev(4(2;t`-
zt_1OS5VwQ48pJO_{2Ih>LGZP7d#%hdYm3#`T)gIR^*a|x5I2JOLo!mi#;+E`-G+}H
zu5NPQ3*uG~f2KqxC2f+*KS890Q2u&m;SlCrEfVOQyK%TG6vBW{av?}R-(+|^rHkGf
za=R`)1P|+WCEXiBW(XtSEkvHdyczB)$dV)~jPjNhDh%%pS4Bf87DCMs_(J*OA(RN=
z=5SSHgvt}2<ye6b@`WqGl7giKOAD3>p)5nTXaADCri0x3_D>I26+-xFZ+_(vDhi=e
zDFh-#hAJXf6|5#$U9g5A&1y+~ChyO$Ek)D`p{|g6g49_`!w?#UFf@c=Av6x5NeDwE
zl?`bsq)iCTLTDaBix9Gr#n38*mXbu?VpkeNYe}Lvc4ONR+J(?QgbpEe451&RZ9Sbr
z=*-H5&?CeHd~%zQQ2Et7T|(%}ZmH(!CfHxZo*~={dwJGbpAf2bDAFs0-a^QE$)Yc7
z*wMqVdnNjF_@o-?t%?o|VNeLQqnUgxh2gFc26MWW@jNg>5jTubyoG+a7;g!=KXyih
z@ZJbDGK5hfj1FN;2(vlFAwK)*sd&OOHiU5@j1OT#2$PvBgo%=L{e*`GlZ3AtmQ6lI
zILUM&Q$v_0<n#zdaYl%zO1eI0g}^|<z@)h$-V=zmA*>5weh3RfSQ5g$A?*DvjZdj8
z3}I0S_t4<Cw8fHZ%7-2vAeQv7G=ya#tP=gc5SE9qGK2?1xIcuaYNS07!U{<`d&2X`
z3D2Grp7&3BMxXRN6vD$HJQBjAlFCw86S`$%?>z76?elCo=~*pFkA<)%#Ao?EIX=(N
z(#FR_SRcYOA#4zXCs<GjPlxbi2+0niC5xa>mc??PsFAiYgl9w86atH&|1nY%mbh6w
z&@H!xjFD<<2rq>2SqR5Mcrk>RLf9R`8zH<L!Yd(c3t@W*eBm1B759*=q8{Eb(0ZiW
z5yJZovUkd8zA8wA*Mz(t!Y(20`?{BL_Jr_e2uHbmGSm3pfzG|N_J;5lr_D&UFNDKl
zN&dDd?}YF!s~5rn(LWS?FNA|EE`$$4I3!A=NXCXp#*O3Y{4&pXP_mSdM9-`0{Wt_7
zl_R2jBKWCbXSpMkN%xIZ$3yr$gcBj04B?9qz6{~35WZ%^N2-<wvcDMlzg;CdQr#M<
z@<yp|LO2z|8S(S2AWxL#vBr4=J*Pvc)xo{=&Hmv#AifXbhY%hJV?`L}LijO+NnuP5
z<9rCd5Uz&sO9)yBIybQpu81pxYjBjBFiM#r_(KSY7~_^6f)zqAgpepv!LVQ?gi52_
zO4=zxo>bx?TojvxAoT(v7x;N0<dWd!RO(M5&<V}>dcHNI6pwn|IZFK+!f&!j$AsOa
z-?=ot&i^ZfKSHS9%gb<$6EDSY2)P-;pDAVLz_eQ-{2jvW5dPtw97e4$(!wYdhJTdG
z6og=U7=?vUzaxx0Q@rf*d{2sdg=7d;UYVa2Mz-*rFe-;pC5+rKiiA;AL?uXX#lk2q
zyhIpzLh{34U=p1ZOA0R)M(Hrh2&Y&fX%I%aFv^QPtMqTiijrDMka|@i)diWi+JEX_
zgLRwYmQq_%8-&qNNS!e1rtIqpsV`W-o)4pO7~R6?9!8Tenu^|8uvr)_gfthVTkqHD
zErqudY%SO(mD*NFyD-{^(IL!p=G|5^bP~dvGcejkuxl#y?)@1(!ssc{L1FX?qqp#W
zf_=j1E5x4Qwkzp@q<<I#L?0;lZ_-_13{ELS!WbIHFo_NiV?-Duh0_W9mcv0D6~<^0
z8Kpj!!#7%W7_G*!38U3`!3lyB!{ABF6z>jWN*J@lm=ng-Fs6kuJ&YM)_kU+j+EJqw
zH!I%VO1@;Yni<B$`?6<+v30Z}nH$EuFqVgLe;6N*R*BJSe%Sq{w7+l0f-n|_u_%mt
z!uYXV*1cgY4P$W_OTs)oHLKJZrT^f~Z0lJT#vM6nv#Mp>7siep_nS$VG3v2u?jx2f
z#<&;N-yEY>hVft+Z-?<tm_Ksya2Q*{crJ`b!hDc3{h2T}NTH90u_}zO$Eej|Oe~i1
znBbZ))`qc8_>+Q<hp}D=UrYCdkPc=#?Vl1(@-)Zj`79EazEM1LQ+k#S^m#YQLf#z4
z6N8H^j}<!7JnMOOMcBP~zE3PIsq+iMUle>PjF-cBC5&xhY!Bm25qE^KGmKqf><;5q
zQC<^diF8POJ&dHQHzc}8ke!_D5aM3pZ>4nh62+=x)w^Nr593-G*TXmv#(QCW6voFK
zf_VNxj`CRd0hXR))%%>HW7P+OhuAbBe2W}K_WaXh)!{IXgz<^A_h=ZO3Helzk0cxm
z<9HbHFcM*W9>y181j7i0@nslaamQwH9EdPZgmET}?^ww&z6s-K>x|Q3oZ^&TkVgJ(
z(s^rltj}Lbr${`@N%B_O_hI}XX5{}3=fm)Edh>(eO1c(?9)=NyDOu=^mPschG$01p
zjpBz<hGc3ujHq~s2vWCGWs%23bOe+31?<Ud=@&#HxfsSJY0G7<kuZJ<<EJoRaO{?z
zEai$=vQfW^*>7R|E+kn)rn2pS2-4<87&pT}1cf8+XT+zMbN-ZWA^%IrEy2ITxE;nn
z-2cUl?-ZaxA>kCs_l{NR<5cZ&?(n5Y;E5p3Mj;#C2r?qr5y8#~G9$=}U_=BXBgl>*
zCxZSF42U2%f+7)=iJ)u*MI-1lPVpm{FW4<6{)<OYLP%Z&N=Uw7<ak>05`D=CN<~mQ
zg1O@q&&*`t0i@-`rqkE?Eh8u&L4^n^Mo>w_#t~GGph^UFCCUm{ji7b}>&K~T5mXnk
zhG0#>#a-Nc4r_@4NgW}(rKR=6pne1mB4`*vBT1qq11-NB^S|HwO(JM2N;ARcg5M1H
zw1|L6%T^Jzj-X8hZ6of!*ExcA5wwrE=dJN!$qo@0d6y<{*X$?;odk!<3sZ<)BIp`H
zw+OmN(1RT)_Vm*;f?g5ymT1z|zt}f|ekq-n)a&q_!VwITy750m{(JK1xtzNq7#zX3
z<J1trp@PE%DGra|-6I~7QLJhN>mqnOf-w<{<@h#pPdOMT-WIS!#;frWOpxeA!8sAW
zxdW5QB|1}ZN(57dOcR_Q!PbUuPcqDiATE7QK1)((OKP%{=ZZ2fg84%DhVBkcu`q%~
z5!}Nb7_S)ai(s+vB`M|J2$rV!G9fd5NM9bo{SiEn(pN>WB7&6>JQ%@4B0ehka0HJC
z;oTZZ|C4|8l1wU`wOaJYB3L7JrnpuVk`BBrGlC}~crt>gI9tZ6{o@t8nmc@8y!)5s
z(-Axq!G;KaAMgGF_kxg(5j-2grU*7mlu28KY>D8x2%e9)?-!=Xz$lT?7rB(`dKq34
z@^S>P2-zmMJ(Y?H>eUEd<A6qRI)c|D*cHLY5gd+ScLZ-l@LmK5IlU*SX%o~Qj_(BZ
zW~wcFg}fEPJ|S-lzQZXYWPbz)gs{~-h?Rkae^tL9asROXe1iHwM(R)mA4c$zaE>f*
zvt%GS62T{29TA+0;M0ivxx+v5j&hmLcGuKr5gZfocm!XtEx+Y|E=aRvSzku*l_-pU
z9l?oYYD)QTg1b%qIzjQ429h%od>6qF5u9T`@F{=@zL)xxo~XJ_RDq+#$4pc|MsPlY
zATQ%Y-1ks0myeTePqrqg3mSr^pkI&%0U=fd3nwZ@!{V7Qw=IYu!h$?mwqR5+Cg=#p
z1!<7r{`O)n2@Aa-*)K+LDT2!p{1m~@5!{U6&j_w?PvGcB@J9r{MDVLvasy;8>c9Ob
zdM$$M5ip734bf?1_DX9iMf?@PElIsCNq<Y;q%r;cBO(d2z(!#k({0SKafgjNZM3q{
z+D5t!kBw{_Io$tkWZ1~Gk!54YM0I+ix;fG9^9P^u^3kNcNiNT|QN%_S8&z%BZBZMg
zgcP&UR1AvSC}AT{#C#hig(yi)8jv$%X~8mrWd+L-C#mwnE7+)LqmuB-g3Q8HH}J~8
zjrEh%*-0uiN%dLlscxf&jhbRs%SLS*b%gJqr0UwJXQP=7^7<k+w9&{$gOoA7H5T54
zHMBvbLgOSd+S~?xwy@DMm726^W23E&UN(B$XlJ9njSe<C+L-;cJBWPQLC$2wH)ZhB
zR_)2E6FYgRx3i5dLdd(?*!5g?H^J^UdWcS?rzkY&W4n9uR2$PcQj=9*8~tqbw=uxR
zKpSIijI%LFYCGJ<2pf0V7;IyRD6GIx8=WS*tzZ}?B9lf68D(R1%5qF9iDv)i9dBcj
zjmcs&!R8x<{^!<pDE3oC`PZHX{MyfZGp?V`;!PSeZOpRqvW-{R8#d<HSZCvL8*^>U
zvoYVs0^2=7f>|op${asgUF_jqC~lWeR*P)hV`H&IAGGn1jU_hjwXxL3G7;|=<oO2o
zC9??f1DDDJ!dKW>X}d=putiBEdDzBkNhN>8#-qYl3HFo63aCFO(KR;K3h68QdK*vJ
zc+tj7HlCZTp0uG$uRdktX&cYj_++wT;D_=C8yjsrYh#m$&)e>IgUvR!NR-BmJ|~=n
z(XBRK5GRZ>&`FJhS-hxzTl{acv7HmZhQ*a=W2X(%hMz;<*Ym24-JD2wt9B=IUbFE!
zr{Bq(U4kT)?pANu*kj{O8+&bhZR3QEw`}aQafGEy)84jm(8l{V-m&p6mxhf4Hr|t@
z#w*?HDka+Hk|a5!AK3WN#z$gsh-+u#|4y{{*hbRkuq1Vy>*}A{IBMgVjpM0Qil1@O
ztt>>hpL26)o6GPe$H)e~F*WJrs}w&eHfL;nXX6_YPuciZywUP>%8VHq&e}L<<3|y{
z7yKbr?s*$N8-|FQAnkRjNwQFSOBVg<NA9J$sduZzcdMX{kc|Qx7bHvPUY<>NtFVno
z%7bkqDm<1_93gQV2_gIMcGsQ%ZpC}{NG@_8yPAH<#$_8nasB?D{xc_ojbAuXOM9+x
z@%HkpG1GtLB4R@>dH=HUyUjDEJl7?<@sjrsiC*IbyX2j*-Fw5vO^%nxQ~a`*_^0Ug
z2W8x{@wbiJHvZubA9Y=&MNudUL{T`3-t9egFMID#_xyOsJE4?^{uz?w&M1mD^w5<z
zii{}Q#LzZ|%qX&=*c`={D6*r-iDG^f3!=!4qDU0OqZq+lEG3>_Jc<%g6cZku;-&J>
z-6}7N>QU5)B0ma7RTL$KloG5USUQR_Ldpu36FgMQTRsXRb1_sDv65irD5^wJRd}^1
z7-;bI`W#}-C}y6_ZxeN=Q!T;TQPhc|ZWQ&RXdz1dC>pRgu6dhAdHkvSO}?S%jiP8A
zMHAr^TQ@318xn?QQ8X7lOYT^s(lUxxqO=zLH&<JUwu_>D6dj`I7)7Tj`bN<&iq4YM
zEsE|@bP-NJU4;~%qIyKplcOWiq}VG81}4$0PZTYMjGdzTM=?OmhD0$iia}A_C6+X%
zB{7+Ou;k^1-=R?qOBp16j*Mbd6yu^8FIh%MF(!(!GH}6OZimy)nHt%n8oJG&AU5-&
zm?-^xaa;DJC?->kVhWw~%3+up#kxj0Q=@o&Y4$Y1>4Gx^*G*CNt9xffL7Xi(M{usB
zQrsp@TNuTnD4vO8LlpN!u{erHrD)b+iI95*lhs=)d|4Ft33<3h?(!(^7ydvLD}=0!
z;$a~VM)8o4!&B5%DT_WI;q2AYt4?(ryDEy+V(^&Y8o{-K>jWQ<Vto`(2!ASyr`ho9
zo+kyFouMUP3Mr}N8>4tOicJz_&DpmUllWW|&qr}b40pz`HHsIacsYt!qIgkkUiy#a
zzgf0L@kbQbqS!72v?Ge0QM?+(YZCpLeHg{AD87&4hbVSO@kSIMMe%VId&JvYQS6K2
zP2qb5>3LJHw6~*pCyEca#G-gNiv3X>l+*)JyvK_D;qKwhq;tkkRa5rle74y0eiUn_
zDw5d~vvxV@ABz1Ju{j*Yktn{5;;Se=iQ>~Jjz{r%6dz7iN5$;3D0H!;+hd~Csh3@5
zz31js^#ym5X)3dgx85}MbrdI}_$G=|QJjq8K;_JZ)6}~Sb9%S&j+&;btjo$Pn)_`O
zr@28L$UYOrcTt?B*);WSi5&iK_`@`Hb(%Y%=h!(>*il5II3I;CieMC>C^S|h3O{$M
z_SqFnWams*2mZ`6qA(>?o$lrhB>SOqro}}!UH!Vvb9$$Hx#>G6CmcmY0y&k5le1z`
zT#Vx0#a<_hcoc~!(g&p#u$1DtotJwyOi8;S-da46)4FN)r6|rg8O(K=t7&r9Pf-k+
zt{$1LxK&<}(Yz}7i{P(<zeVx85Zdq+pV!6PKY~<l2)P->pF;i;WW{bp@pp>f7Bc@@
zT3XEAr3=N}*$BbHf;q?Bu}+V{6GOuo8j0xT&L2aT@C-rb&5pUJ6O@aAN>0q(b#ujM
z5y7H@#bPKPLx~vjVkjL$nHcg#FDXbTDuxfF$)!?CGFmnUCjD!`DwU6+LJSpSs1!qG
z@_2R~!773^1*-~H6Ra*+LvYb`5AACSuN`wg6d0{5(RzaQ1se!5iN!UJp-Bv_VrU&h
z(^TD>31MpUl+q%Gmcngm1uM*cVBlS>?P6#j!yxuj3>{+V7(=%hy2sobTsy_kMY@q4
z*jfD3CqviR|Mmy+9x?Qap?3^D#gbb`vgiB6Fi@0}`_uXg=@&!)RDA}dDw8xG9K(<p
zR>$yI3`1iW7Q<*3A-RSNj*MZ1km9+Xf-{~`F)*-n^06_Di(!>G93R63(Ps-z6r3N!
zq!=a(cS4@KW0(@d)EK6Tp0u1E!yGY~!EP6wmJG9Eph1$eIFh+B%oEFGMv4n0x-f=C
zG29cw;ux01@IVYJM88+?z8IFqu#6*hk6Ud9lI1bnpHe!c^p#@&a10N|@X-HFeI$lQ
zQ%cf9vJM>0H8DI9!;{hpYX#TE@VF4Bu1}5rQ!zX(;{F((5wbaDvmu6!!k<kkn_@Us
z*ZoGcC5Go>c%GYo3_D|ZRSaH;;pG@#kC^>p3@?e&<#;-cndOxjwu!P`Fms05A>^U2
z@_CtvHm}97FNWk)d_9I;G3*wDH)7Zm!<#ANz2f;TsRrG$J`61DZ83O9@Lj>ATY5eq
z(f0%o#_&Fut#B?SrgGMO6vM|Hpc}aN1`fw?B!+4iQT-x5iQ!YWE{<2@I4VPs;ULq&
zXIuikyvJfV9>eD`d=bNi7%s-}rP$blU&Z*=MVyG?mpAhnI5a0?_=eSv;oBJMRrBgG
zj2~HugyD1yXJYs+hO;qzAA?T}eh_5pk3!CI8CLV|6Z`X`eAd9tt8vnHPD}bRVlXAi
zA44DpD~4bUp%}t3{C&{1c_3vutaDm~YpQb^_jc-0sdG%w5sV8aVkqDmpW%L*3=kx_
z6vJ)qnPPA`hM$D|EO;e`t88)%zs7JghCgHYP4sJmzYG2$xKO-Z7k)$V@3rpfD}M<m
z`8$SN9I0z*V`pR&4+%+gP{_fZ4$>VwF+;&YVFz~zC!xZOBt&wLq<RJa)w3LAJJ{{u
z4F@?6ave;jy<{okpuB?$!izd6=AgLn5)J~9{IU-6B$_X%1WO8*5@Zpjg_LoyBh^>s
zs1)(kYmi;hK_v%69Sn0&*+CTteI4|3P}RZl8LGV3+uA`j2fh*+)g9DuP}4yz2hGJ{
z_ubjG9W->%$Uz+kbsaRx_SAFGz`>&*xgX#4#q46gj9tOB-NCf0cc(RW&{V`Gg0}{`
z*Dad~|9!W6&Pfa5Ed^T%`uDmvtVtUOZ5_08FtSxzdk1|awS$9>4mvsL?4XU;+si>0
z2VEWXaM061bcX8Ypt}%q`e8_lNo16{dP`oqWwgfMS-fDv=QR6^{{artW~zaLg9Psq
z94t6Qu)$14o8b;dux<`UIr!k6%rP_7Lo?ORneHF8qaA!PQyDYe3XBoAV+F?vj(0FY
z$V9<Og0x)yxo3)lsSX}=@Q{OP4yHSp?_hz084hMTnCoDkgITmM;wd%Dy^22D!5oJ_
zSn_$e?)909Scm#7HGY;_K1(fhu*ks*2P+--6{Yt$xL3*=kXvN21G`ez62Yq_-HEzX
zl9mbH=U};z`vo5mO#Y(h&-o3r)V^76(;jy4h=b=O^-+f}(#2*6TO6F7rTB7N{z19g
z!D9~AI9Tgo9jDpW><tbc7xI+gdch|IpA>8`HHT&lPdj)<6!Pi+q!Bkdcs8YM;@W9l
z2&+7oW~rL96%VTFJ6k>PV5@@{9K7gY^=$Wk>6aY5?BF#ve6{x#_Tg-`!@*7m+Z=3{
zC|g1C7sJCq{;ITvspPLqE@s>%q*6WXaqy;t-f{GaW3Pj^9F&ZsRNOV*=iqGz??}ew
zVZ1BEa9}#v&xKYi^MHf*92|7;zJsqFoZy^saLB<ivHZ}%M-D!5@To*U7Ca(&*m19!
zvj`I6QNhmy8BG!z9Cz?JXPxL@rBc5XlFUdv>EIht&O12e;9HKAgYQK-?ch5hX9WL0
z{(o?APV{6oeiWW`OU36v6NS~#`Kcs)*&wf98m{69IItW99o~wGLUACDu!D$$pB((`
zxOYU@4&n|HT(%O82|9vqs@xz^AkmA07aSy0FFCmExOY%Y47&=+6$e)x+;s4#gI^p_
z|J}hK4t{m;o8(HGC9_|1aNWTTF-tn3Jxe71<=_?<d)$rE_-_Zd9sHB3*nf?ayl@<M
zh;flP?u_$IqsWpdvwPymNO5ocfA!21C7G8t*>U8=kt-sLOID+39L3@&E@GZw3BhEQ
z^5g$AqdiCA-Px*i9A)CD7)PZz%EnPH?p_)#FZ0tkTiu%N&LS!m;_k&&+E*3>D%Int
zBD~5RRW*)k!h6keuf8%%jW}w?Q7ewxany;Ut2nG1N4+>&#?gv}j`DCztRF{%I2uZ7
zGr>l2G>)T*@TP+F#)-i|(mak9am<_J){5ccOtco8c7kmL+X_za=w3T*&$dgnV;r4@
zbc*8{$xiGdN;1mIbYo>^s_t?05WS~hFG0FGI7ju3qhB0P(?gu^-Nt}8?uuh@90TJR
z6n9_j{^4nSGe_|+VA}KGCO$<zB#xnR42xs*^z7WZZncNUu|j-~h+||NqnH%OJ)(?>
zV{9CAgpZ43d>qr_m@d%?aZD02QLv@BnoJ(Y@VRPA98*OnXAy2GLS~3KQ;->FarA}H
z7NnE8?94dkOLU>&g8vvS5}wSmIF2Q8+$+j`f=dNi*0MN~4#}5`cz+xZq*9m6RV(9o
zFph^rd0g;e!AIhFG>%nqtd3)?D31x!&l({G^}G!AE*DxS(eu~cF=bdU(I*6-jN_@e
z`;RU44bP-)h+|_Muf(xUQlE`uQyiP)*fLi=Y^5KatG0;FlR2M@!<?(07u+iNg5ZmS
zFA2UZNHbni+a7ms1ZCI}#~*W5lCLbB^;#USb4nMWbpdw8u{(~o3A9V#jX3ti@k1Qv
z;&_vre;kM7I1<NOaqNrZojBf&<84+|j?*D>;qaJ?{c-o@eQe9evY-yc@g5a9gW{l&
z_v83L$f1<}VH_U`=Nk!=mb_s5NgSWXaXgOC<2;Zj?PwgI#c_<ALwonM@WBT?7nXR6
z%yT~kzlh_@IL^lLJ!f)X58ny$RUBW(aU$-%AB5qg^w?8PUH*;mQ<C(p;Az1#+>3mk
z?*wU9Yo0p~@0#kC^<y08X%k0596nZtT^ff!4qaSvT^n2=V$b`%`TTVt4l9m0_rt?!
zL9rPzKX=(Y6%tN|VIh$??35A}5)*VdQGfUH(Nun?+B#2Nh~r`$SJ;_xT#Dmz96!bJ
za~ucfslYt<dl&yByERW$I+tJQkh^SuiQ`x9KM6EVxaa;+;d1^hj^8=xaa@bzdK~!)
zs041rag+OY0_h3-8OLATKi6ayO5j!;f5(xQaH9>r%DXMK>Z|Ad69+@ye79#h{FE``
zat0D8%&9UzFROg!9SQWjk}-Xr_nSuWB;ZXTCxP4qG7`v4@SXMeXlB}_<=(6Wu)oCZ
zcn0~x7t{W(k4p>kiX>1pfno_1PvC_Wc}?ERXqj6gCz8=^W!{4;^OpTtyhH+{hL^|_
zWa%XnD3w6<1m8H1{3_nk36x8qd;(=y=LGJ|^j<FF8TDu$lPV-oF@eenR7qgR@#0h}
zCEUq*{t5SMFr%5P@_6`0)dZ@EKC-0yJE&#?wGybCK)nQNv(Tr~>WJGfmUss~<ZZty
zkIk%~z_!+CkU&F8YW;Ltv*MYJ#L1e$*fKM}al%D<V`wa$)+~YM3G@@*B7v4-+)D7?
zNP6o8h;0&B)HjWxeF7a4IGDiu33N=LQvw?j*qA`)1iB>fNCJ;0&^3W>33N}Ohd3!`
z=Z_ZWJrn39%HRZgC$MI|>Lbx(^A$Pk(^sPX1p6m2Ac27i^go3`f_Eh__>|jA#QR_O
z3`t;U0>cs*p1}MB7I0oAFjDeP6&#ho1R<jn7$anC0^^0y$v7c@%~we>F@Z@5OircV
zErdx7Qxc#VvrJ21dIB>Nn3=$w1m=p(tORDKawUzE&gcCnFZG3DvxJ=~WKjb52w5!1
zBAAO|X#&d=xL=~n1n-m5>EVF{RwVF{h^)`b1RfNgEHsJq@UVz<$UoLsCGboF4<E{J
zdo_J^0*@vBcYes41lA_7E`i5Ic_M))6IjpLyTCnNB#BQ+($k!5B2w?P!0m)(3)Him
zmfvT;l)%dgY)W7=!ve)aU$-8~-;%&{Qi10Mw+g->$h<Em$<jj1{z?J|5_nHsZA)Og
zB<)CGX9BOL?B7b@HQ}!(uq%Px-24;RE6N_hHwE`g#ppjtDDF$(?F8PD)OQ7$N_~Hd
zGdpkl<c(7L0##_C`XGTr30z3vVges>Pe?#ZKu@6LzO;`MI80;7STHQ>lLVIi=#JF4
z34EHsQPDq3;G~da2^<&lc>-Sx`9hHPUkdq3a7n-H6Dh)^Z-k#p88GQ|0%sELc|PAI
za5jPO6X3x<FD=PAJ=yz%n3ccVOMWhaA0>KT&?lDE>C;HSOdyd!0atYDX(m5sMFN%>
z2L+=XWg%g~h@dUVzd~yDbiWwHB<cvp1&eej#2x<8^z6}<Gue%o61dEby#UP$@RJzu
z&ZwU`lTT*XSg5Wfa5aHn68M$dR{{L1vVTk9ckZhNC|-a+61c|QxB!_2xX#U=TXzBO
zD8Nl_{t5h@Kw1I*;^v>gZHZFpvrsXRux?56kBE#GDgX-HTuB@1cNVyuB)tGhGfx4$
z1#aGClt`XcfcfG!y8t<onp=RP1$bwTd-1%8C@(kjGGy+_DN%sD0#qnK#RB9PKowxo
z;N0>BC|Q6l3sso{lr2E10{rrMc4@Y2PtL~+-G$>UROJc~{5hM(tP+ud_LT}yxd7D)
zP`v<E3P2mWqFz<p(vlf#6rg4S=!f2}3(^mxwF^*3>Q=V^^$XCT0QDp<5B8*o;)`7S
zh6QLOm7&sD>eGCYYEl3qmF5L#QGox))mK1ERek?IKFTZJ0}<W^R3sD$1wlXrNeL+h
zK`~H31TjInySux)ySux)yJl|9jkz=P$p5~3obU4YU+b*T`kc?+XP>y|o|(CG?>%KC
z2!Af~eR|E>QO|b7-ydeRqjElc>O(F+-teQm4;6fv$nkxs=tCtQF(3Z%p|THEeE7qM
zKYjSjhpIkQ^P#%W`_7Xq;7!Fn?dVZEs^LQ;pZD&I&wXg_i?1m)))K7kLmeOL`tXGh
z4Mq8qi~I1E4-I^%FG>`jxAR8wzslD>d=vAzu`rHbeDSRh-}&&p4?jr3W`d1<Xd>iC
zAAS<jVsvWu_FlB6l4Zi#pS`xpQtU%ZAAXH``oPZYz-1YkxANgPAAa|N70!A|On>?C
zw-2p-$h#?xe~1-tPt)6_G-&S)W?Md*K6LV-vk&ck=-@*~pLZdMzwR=2ZcqH!5x*#Y
z1UviC)ravuOz@$b51ZP1H>mgVp}P+~eCX-JmG;D`w~$_f+$vTg?WwO1{e0-}!vLO*
z9cYx`KpzJCFvN#J(XR0ql@2sC#z*=vEXIcm86l-OCMV{jrQjGbalx@ZjElKNeJXUI
z9vx^%2b%1|6d(LPC_YT}VVVy+ec0v0bRTB;u-u0g+?_dbGksX#^WHQb?@OEI;}bJ&
zw%{DWxq|Zq=L;_C;2oxgQt2YW#ez!&m-?_wNOWmk>BGJbl(VB(WR;BYYQZ&vJk)D_
zSm(ofA2#@~k<Td~wsWgu*3Ck$cku3j-6DLe;GKNQ?8Eww|2XXSVUG_te7GqM*z3ay
zA^UvT&p%r_(gDF^f(Ly#B!u<DLXP-wR7j(a#3HBTlI_ruPWo_4LY?;EqL8s2>5LDI
zXMH#)<h<YoL4I(9O_zMQEZOLBx#GiBDa+Yw-1r!0&s#q14JBOfNIoBK`*250cLg8%
za8Jm6!3To7Wjr7Gz=YFdAENr_PqXtq6{-)K4;lT4_e1v~Yd#9{!Y;({As~cBlUE@h
zY{~Nf<4%mQDHQX0E+p(jL`b^elbH3XkY~J-cO)+Lf{7?`ey`FDelI=~PVnOu5t+a0
z2Nz+I;0N!^n8lCR#FXUs-lx6ou($t0vM8AZQv_25GfP=6UZ4|A`6V0QC6(3hEds9#
zX7eMvAK!HHCR>^)B$z`mr(nSX32*xGmLFaG=;}vqKi>AErXRKZ$m2&|Kg#*>sUP|L
z$nVD|ew6j&9lv*XaraJC%8z&bD8S3_td#czi}_JdNFhH83n}8q2SV8AeIZMJN+>F1
z<S!{Keki=SU<pAMKk}ob@YbD(v;1jZ+V9=p__1IaKl<#9=PdVYSSQ*n9W3uh1wU%|
z@wp!r{W#Z&`01yF&Q!^d%6{AtANH>zz5dLPszRy>vR>T}_GH4FzkJZy8?ic_skR?=
z{P^CFAN;5*)-U`xuruk0&cwGn@-O!<MXV=SU+^nG8u-yr_}6~)Uy|5J_&0+6CuR87
zkMI2a{x0vA)QqX#2T)@_e)QufKbjrJ+RomVIxJr9Om1gt;zv`~{rK6B=6<yHqYcO5
zL*Ip3`td9C8VM}~i+7<`e*EUg-%`=<er&Mg{}ld*@MB+lHU1?Eb588Q*rY<zKYp|m
zoq5|BY41k|;T;7#`N39>z^St+wIdn2`O)2v%nGt7=;23CKNkA2i0Anu^zviA9}E2a
zzNxg{e7yYV>qkEx5I;uxG0M-6Cwss07zg+<(2qfW43@Ag4ioDT!J&SXh)aw*59ir<
z1|vl0e+@?aF~*PSe$4P=tRLh2{2p@8I^K^75^Az|PV{3^EHXEMQ?wTxYN|L)^Mj*t
z+He*##X3jgRO>>s#D8|I6#LATBJ+4i&w5?pA1}ST(2=>`#m~ilEb-&M9}oOk>c=ua
zcKWeP0xtJsvmdMcSiueMLMw%@_G3>MZ>F)b#*ejrtn*{N9~(ty(*~|3#%Hfc+ay^g
zY}yj*#a2JI#rSqVcEosx!`RJb{kSH|UO)EvaYAa}AM-gP<bWRsg&Yz*><1@hg?Dt0
z#ypSljEz}YKk3IQKTb=u3w~Vm<BagLeBKG+;+)P)9PS;bOQK&9yzB>ivh`}L6gzO(
z>wer2<)+kiOYk<Iynft`wd9_VM_s6kwD2KMiMwgZ{Kt3U<VSuy_QU6g-;anNDP2kN
zL-ivloU@uAW{m587%?6YGVJ42_OXQ9yw3bbWZm^6BuZE?S|r_%Cw@HTMc9vw3gQ(!
z7wbzu;uO3P&Sj&{85F#t;8n$I7zDF-CFWdF)FDB{M8T-em?T;DDchAYDITT>rV2Lc
zO0Ox%svu3_&BF1zBG(KRWEa9OhUE)`{9M?SI^O)`CpB^?$f+Qg;w|7kZlo=J#k&K1
z?}3yz6uhZ;=fzusxdq=A%%h;o(73z`@<}$o0_|whJHnZ??&=-5_Y@RV@Uw&F4hktK
ztRP|_-9Qlq?{i}`q-pp-K~V)sDw0(cQ}CgJ-3s<7D6XJ{f-wrlD)>mk_EOMWK}iLr
z6qHu*v4XDbb~&w#f=?8DtKd8CyMl5GK37mv!KVt!E2yI2GX)hCR8&w&L1hI)yVBaO
zbge6m|0_Z7N~ztbQa5VcjjAfBrl7il8oX+Cqh;Obq?LA{8`<3`p*!X8PUX8(Ed{j|
ze5Ig)f;tN7D)>UdmkL^Sr?K5>S9f~YowE0!$~~x_f}eU&eFdC)_Mk;QsG)+d6?~(h
zk%H4b=wT1a+S41Qf`VTbNvzqEzE|*rg5MSVp`fvXAGzZST5u=@O%ya$(2RLc>eZ8`
z^rS;Q=~hq5(#zZM_h$voxxc;W>t4jzQo*m>Dh0nOXxEDt_M*$ZD84rp?M+R3)3DyO
zzc>A<;4cMj*+IeI3R){@qu?I}cY0HNA1c^~e(6Jl`p}X-bh-~c>qG4obWqTlkGq0*
z`qJlpsa0R<s9-{0>Lkd0S=^WQ_oYBzD$<X-Dc*~JyUVfbAxEmGAiMEV8>6K00$#lz
z^-;WQ8hsV?Q_x?*0LhM!QUetXQZQJ-5XlbbV<%*oAU_$$q5g{_MIR+NT5v)Y&u5&1
z@w^l$*v0MSQSIjq`w9gU#b=U&$qJ?jpP^u;kg0;x6igR#e64q;%o09N!F(aJ70eOB
zrnw5-D&CK7P74$)6MdnAMG6)xSfXHQ%yaqyFBCgR3G?ORz+|O@RSH(eJU1&?qhPIq
zUj1mDg7q<-vm1nO6x<}pB1hPwV5?-=pR?N(Z0GTeDN&K{u;mqiFCy`!lD!J{DF|}o
z73^1VK*2!;hj`k^)o+gQS+>N(3XUkazbv!UkB%xhrr@%ID-!d#g0n){^Mrzv!cPgF
zj_GHF%$Me!6MkOsf`W@eF2x)U^rNc^t|<tJa-HXog2xJc3T}$RwLDO8OTlfPr3&tf
zcwg|rm<;!XEE?eb%Mj&E9x8YwdQ|ZXXI&Gb2&yp$U5Fvb0olzI&csq+$GD>)8ZD$C
ztRPYKhB~4kotL2g#1|ExC^(ViU1G|h;;Hawg3kqC2)-1IQ$0^klM}K*^-hFW1ev@l
zB%@%wiUc8V_xFBQ^Ph>MS|nvsk)mRcioGgQRb*DNM8#4SSya5H;tLgDs>rJ1brq$g
zh1pbOS5ZiKnhH|!mWtdea;WIvpWYNbr;1!c=JlsHgs_Qw$0?e9Tf}@S@<=Jx^Qwq`
zHO;T$9kITv;ytl)*#atpBfarqUQk7c-@R{}g;f+0&-Vq3tN1`jQNdz@9}2Sb-u_fV
z_(y^zV>&yOR`IclGBM?I6`!amtD>BWPgPVEy}XJFDk`a{ta?u_RNj$VkrjCv3-gxW
zXRgAg9jR>kOvs)7WcH_ODypmCx8Sl~L*hi=h|BG%DcM?rwN=y+Qdf|z9I&2>_yOL3
zNt0F7SMimK1}Yk=XwThO@wJL?*jYsj6^&GUtD-Rvpo;G#!uKkEP*Gz5^&3EQMkTEq
zK)Jq5d^mu9Qqe?3Qx(nlSP!HU1L=o>G-x3Gta^LIpBzZWK$<_0nyc6%q@{{qRs5}@
zwTf0MepB(MioaC+&LcmFIt-%mgQ(FU`h(jr$UDBf2GQ+7wC7n`(+`u|sQ5=kTNUk8
z@GD7Q4x&PXss3Q<GMGjVragn{#$f8GqLYe&Dh8?OtfGsG-YWX2=&GWditZ|U@B|w|
z)rWY&+YF(eDuxZAYeOi*PzwH-+KXq!kEv^hP+t}Oc&exvz%z3w)f-A}hSK<<bb2U7
zhEn!nRCE{(Rxw1ySd|~K!BCE)Vz`PCJi~`k`(ZSG7%dy-)pB7NjZ`s8MPwL_Rxw6J
z(c#2A+i<EqoW37U<5f&hF_AmPZ5~d2hSSpFw5m$#&Eb?|1bsGwx{aVIaulWtPE#?R
zhgZc+6$?d~B{)~bJR!3M=LoJJ;kAMJe912OkI4EW$u1UTpJggmp2Kn#D^%~-EB~}y
zDW=UTu8yEpa;C2qTqC$v#X1%1g>MqvAh=PG7X)4w5`=G&I9mm|-fcp*vq{BH;kyKP
z^C8RST^r=YWS@u!RUA^WU&R5{doq_Vzdsp4h2(`Hhs7bAh9fGD3O}aejEb`=j!X80
zAV)i?;#7>E=7S{<2%l4NUWKW`Qu)y*TvTyS#eEf*R9seZL&Z%MSGeyguBo`LBJW80
zc%-+3&o?7!<VfQEdFv+9!jW`K#cdULRNPf@Y@|2fPexL%QS{9y8aj$LjUr<dJy7vb
zg`z@L@kqsE6+RVyUgbtp;n7rmG<6tFYev(}(L`hD(=nu}&{Y^J0(^Fip&@qKfH7X=
zHDl<^7%F6@JsLwcA0`!X8Zu}I^0J`f2`}s_LMp;M-&CZlcs7P!JD!?zEae+Z<;Qvv
zIJF#0&s02D@j}H*9*wcIa4hW^OZUcln+UT*)^Sv396`e?8Zv1}(eSE<j2aR(Bx(3!
zoVTBEyoNu<dCm!%w~&q*N68uvkE5#N>G$yz8b?{iQ>uo{8nS43O+&x&p7ZeWG<Q6m
z8&B$Z$~}RyYIt3Wmz&^OdBx@jU`ay`4cjzq*N{^~E)7jIG}Z8ihBq~Qr{Q}IZ)wP_
z;cX3hG`{6S{(+r9Jtk0I4f!;_k<z=^l3zo&tO@UEcvnayQ(OTJ?`bHl;bW<^poR~H
z6w**wND;xJg75RM03m$)B1hv?OvB%^z4=*OLkTf`q@k1s)=O&GTE_bj*`DBCBw@EQ
z8a~lbO+$6@EUTfMhEIjhoIsq)Yp5*Q3K}X3sl+YU5VdlUDjGf$g*m6H+_fLPe$~+M
zxrTZg>T9T}p_Ycad{8vhmS)u9p(_)|&UJst#EoIXZHq?uQV3hW67sc%Z!|QBi4BEt
z6^(>^E64?-{o)`$XlShAM-4w|I5>fL)6DY|Xizt=zxO6k;zaKVHq-F4hPE2oX=pAH
z+GzNP36F60q~a5)g$Bl!8h+K#O89Sre`(&=jNb+S(D0{-tg!Rn8e0EHVG}=SGxus*
zgNf8_BJs@_ybW1<4IMO0mo{{idOK<8tf7mBt{SGXiRXZZ?ixmD7^$I$hMpP*Xc(xW
zmxkUN`e^9OgFiN5!$dkYk&-4+Kb|d<Xv`$qF^T%~teZrfxQ~N04AwAA!*C5ZCeaY7
zuIgkOs^Q5b;*@1F{Wh6~O{Q&=Dbo}hrD3#&2^uD97^7jVhH)Ck^Ff?KEvC@mDYVW`
zTQP;sOri8ClyfRg(lA-W6b(}~)R;<brqcAO-agu|C(xm(#2<zCr_u~=s)l76mTQ=$
zVYY?^8Ww7pqhYRwc^c+xNS#I>O{4Fp(Ld8@Nj91>jgCyC@HASaVX=lK8kX{mnojkn
zd!6bvon}v`y}}<%rxhAjYS^G*qlQ%)R%=+NVLh(~GpN)ITEjDE2KAUhYk4GRc*Qr*
zpvyC8MG94Wk+w<0W(`~TjNnCMCQZmd#b#2Cnbc_}O`YjE@0dwDH0;!HTE`h3yEN?9
z@Rg1RI`(MT%Trg!7do!bq<u2BNjmmxIKZ<`!yye1G(6;`hL?Q}7d2eca8$!Fj;7&^
zhT|GeXgI0ilm`DyN|{9;&!V4ZQO8*{Z5FMYMW<%bSq<kjoY!zcgE5OzXH&)5)L=HX
zolV1L(}vk}YBpWga7DvS4YxF0)o@M2bw1o0?$4%NbLh)CUPoHbp#gJf$s9T~hi+@Q
zqv0MqXb8=r*XGiPbLp;zmUC(HT-r64uFs|9c~oK^J<{-4LqtQm1|K()=d%V!gQ7vz
zU}~^5Xd1qp=k5G%$Oz~>Ip=vb1~hP*A$;vTx;c+h=X-ikgUj`52=ly}Pe0G+4RgH{
zli#2|d_Jw3Pj}|i6Ae%K!$JpiJk#)8!%GcuI+7Mp(FOEEL!AZm&jK&num!Ye0UcdH
zz6JD(j#qVL)Df>Ec_CF_NbMGStM`h9bYUSS=x`T$MG|#>GS^!hlXYa$k)k72M`0aB
zbY#|%MaP>u-qP`!j;uOJM-CmY>&T`fyN)y+;}YnHOQ1zmbrJovh<YxfS!UYeMU+$b
z)~;L}T*vuE^n4M$yO_ROO#K(r>cx~>$J;vI(ebX1JUa5~$fqN}j)RNo>0&CngnnE?
zzb&D@OK8;+y0wG~=y*>@K^=v3yj()XmQur|G-@gBSV}jS((>2Rcw5Hzb$p=XQyt}X
z6xC5oM`;}&>-bPdaUCUee8fFkM(-}8I?JfZGAhZ9Uq(lkQHJGIN?OZLk#L*K==elO
zSsmrLk;|#>a%#SuCM@^HYRPg+e35o#IaSb6QAZ6OpX;ckqq2@FIzHq0E9iq2)L;em
zSV2{FOj|(@DkZF2LDh6r*Ri=)0?H*!znIuBHKC@CS~_a$sH20oqvha-SCG4c-dIUh
zS5oVhG-W06HI0=ky_d#(siPiuAuh4LAQQgpprMYhb+pp)n~ra!{d-n=uZ3@<<69ly
zajVK@<@B?T?}h&$*jUGpLVnWGR7exS&B=-E+)Q{vPLFeH&S6DqA=pyKuR<RA;+tnr
zd@niM?@}*sHM>g3A3FZj@t2Ojb<7vNwT?DACg_-`;~yPub@b8ES4TS??RE6GQhMs>
zprfOXt~$Eu=%k~wjxIdOkHlYE>5U1an#a2g!p=;(OQ{|@nDa*oi|pA;2fK0VErgYR
z?51P5juAQr=oqMDh>oEWc94$2LO3RSa$>@t9V{{#Ch<AcNFAeejMgzmbhh5i5y$n8
zmFzej<ArcDqRnIEP?K~_)-glJOdV6ifn!e7F;#f<?V7Aimn`qu#6@Q5n5|<@tZj2+
zrRM2~HZ|I?1v(b$SfpdIjukPVB|4T0XCDr=OviHR9aj-8wNk7chn3Yj*63KPW1WuO
zyj<&8FZvcicG#d}qwr0Fn+2cCQDEy<9ouwl*RezNU4lCWbFcD_RMda3C<k>M(y>qY
zenECPAS5iWvN^2dcuYSc<fz~=L9X<Kj*~i0#e6t;)O1$IIiB7IzB9Z|o!4<e$3<~l
zwI!{<D!Rl=li_U(ep$yA9anW+(-GDY;ZG$UH+1-P`1xq+xTWL1jt4q!>$s!iu8w<r
z3a_Fzt7zORTDgi&t|Dy}#jW;w_fYr#vVWxGF)za9DDP@&w3<4vrWLE{_-aykLh7(|
z*nBSQ&~+F(0y=p2jkq<GZw-}SLqD$}lN+#xGOVScYiP|Ha&!cF5!MmnC2K9!SxYU}
zdb@Q@UQ2t|((|?6uG#52p75G1oqftjnHO^d2?n0)c)`oNfs6(UucMbb;tXUkP<x%%
zT8KZBR}8cfh568RG<O~GW#PT+=*c=tG>~K<*+3=(rPq7AX|T^1>#65@nzWwwtf$C&
zN;Qz#Ko$e98OUnjbpyN$_B7s$vkYb5Ks(K}Pc~4i4c^|Y*$t!_AOkrJd}5%ift&_%
z@s)W4?;Ci-z?%m08pvnhEd#j?ylo(lfvy{9!3L_5lTL1+&<4u4(QCu<>XhHWI|kk}
zP|!e?jr9FSde=a=jkIwi6_Bnmu{Kg61En@mn@yCsi3*F(<O2gm4SZyvq=8}vJ~U9=
zKnVjgH_`S@baN9WY^DO6sm5mdbu-P_Or^N{20k`W#=!2)<ZPxwTd39+?;3dPEi_{b
ztyrE?&cLSzYVq(IC~u&GfvN_o8K`KW61UL6X9g;B@h!AHl$LobJ=o%PgwtnRsoPeX
zvz4kFsA1r912qlY+)6pOQPpkq`!*W3jaF@=gWE{mMs*C-HSm>z1_r(`@TI{okVkzU
zz3o(eyBDzecG_P&dDM2=xSeinr-lZ;Ht>ysMm!C6P`Mq{bO#OEK|6NP!yS}uCl%RA
z-y8TrM#dCuY+$|tzBl_vK9mNU7-(vsuYrCBni=@nKsy8N4K!zG1AiI#+dvBgEe-r(
z;7<d;a@t83chYYLM((6m2Da`bCcn68zjF~cjV~@e+evwLQN>;K^Db)5)6c*^2HNuB
z+eNc?dA&Hfi=OVHH+ECW-Bc`&IvD6^pu2${209t&%(H@>4e*b2-caV--PDEoZkn;1
z*6yamyZNnOlz9*JG|<aHZ#EgIzK4F;L+$p^`BQ1*_Rxksba4-5*h~El3@|X>zyt#W
z4GiKo8yIC^uz?{4h8q}RU??BBy|ipEUEWLI?xkS{7+de9@Lo#WM<4B@M*C>AfiVWg
z8W?9_!!OC)1>Oqhk9}TWrtYJS`{>+0nrL8>f$0Wj7?^Beih-#HrpcJQ`{?V>6L_ng
z68mX;A~j8+@AlJ71G5awHZX_h`A5`cKTX|FdOXcFaBRO9dF%V$KQHt65cl%33k)nY
zu*kq-1BVS9F|fqIQUjX|Y&NjWz;Xj?46HS<!oW%cs|>8>1I-nUP2df5{;HJx_5rGW
zfLa}(F$ZX!f%V)M0~-yjJ3to?P|892_#pjqka`@X1qbQyLE6Fx*T62G)dsd1*lu8l
zft?0$h)NxzzYcl3439cQI}Ul56x2hs$G~0#`wZ+ikb0O3AEuUvsrO+zzyora4jPCs
zKkW4-`w=>1fRVRdKFa+yaMi#y1IG=VFmRq%Zv!U{oHB6Qz!?L4Ci0%k<&MzotloFy
zv)r&Fbn6JUIYQ@nf*qmpN9dw~O9n0*xFTboe3U*uO3jXXdm@iG>Q$O?Q}T5KHw@f2
z@PN-jgKt5^T?6-c+>X+zqja0s&tr6l8&Ed+onyq<<QTO+Ml+95+{?6w1|AvE4HyO<
zbK8!QpVyh=<TJo2`*GqYjujrFT`8)dCdk?Sb5k1}rvOik<FxfSbwBPkhLdH$mZmy_
ztOTR8MKEL_EablUKQZvsKz<AFSa`;ZKmX|&z>@%87<kD?CxGn%#08KcfGz=a4FCbW
z5<uAi$_4Oh02u?|+v@oJ@bLj81W-DF?@mx+07(Jl3m|_0$pLh%naHVoy|_#Pqy&&E
zN)ExyF>96pUW@UpLS7fl7C`oxo)!QJ=TOm@IVGD*@Qnc86!MlJJLDGfb^v)|N?svD
z>&3kj0G~LeizU7vz`Fqy2;jW{dXI|h+ccq200jfy7XVKF!I@Yo%$?!~0Yv2N2LTif
zpcoGVQi}&rLi7&<=ru6Yv*Wa5Sf-BxC>22N6CN)a03(Mge!@FCAItcZ31D89R8F5r
zmPy~U@t+3JKth!dph5r@V{NDtK&1dGOSXz&^#DE-QdO{;AO~-Ef@%c#Sq!i7H3e%2
zP)i7#Sd8+z0elg_m!f|qSWmFNAp1n!7#s2^1@KJ(jRN>1fIkEHR(v>AGj4eR-v{tR
zO!+B*#xee50E47P_G}VB)0ocU&jB>&Yyd4p{4Ic%0sI<3tC$Zvvl~bFU#Z{4#L8a*
z{2f3C$+i}3E7(TxA3-j~sh#llg4_l!+fjHY!Ons#vZ-6Zdwhu#zf!e(06hZe$%it4
zB>^nuDG@-Q044=6Ie@+a^b26D`1cQBKma3RWd{Z@IDjEMR;$tmiO6KA5Y7%4eV8Cu
z#3tq=0~p0U4PdmmjrorcTgL@3K7a|aP!q+I%d&}aN&r&>m@j-<0Mn)H+yG_-FjG9a
zidg~74q%S>aH(keU-Rb0+*n@_z`_6)Nf35eEY3_gv2|Gh%LCXTak%OgLe>bb6kH{^
zI@bQR0jvvPy@=7Fh&Fp;0GmYI9KaSKth2*b;am}CIqeW~G~m7bc4q*)0@y7|1$p`H
zo&fercAwyW!2<yt4B(LPBZ7woIU2t{mlKm?qVO#`#{)PKz{vnk1#mimTLIh-;7kB#
z1Gp5x<p9nFa6W(w0e;)FcbgNJW#nv>u$9RbF<lqD8o)Iv#U^&+bR&S9Vqzs)_KuYD
z2cQISH-LKq+z;SE0FR~MLn-x0d^k8qh}Pm0JsMUGKnoxkt4I&<9xDjMYB2+_0<Z&c
zqzG5arJ_MN8pmYr1`rZ4EEo|_HbrZE8o;vv+MDQL;yEw=e7>9B+3}JWf76Tbjfo5<
zV4{eL_f5QF;#CuQ#FWuQypUWb5=<nTNRw=miDVP63(sUC#l&mEQw1}d$YO#|Iu0I1
zejPFMtYVGwY{FU09urAO4#Au;Yt;D-$-ZggEg`uD-xl0>!aI(6P2@9?UzGO*-w|Zf
zyFv<>-n*AM%c-C!g#-%=vgrd8MNNEaqP&S>Ca#~LQi2}}78fib$fl1>loTF!(yP6+
z@Q(${nE1r>=0;h`GAS1$T(E-hIwtCxs3^RWiOMFbnE1>@4HKV>SXHpPiE2W)7A_m*
zHASgqqIS$0)uZ@@i7&;Wp^17z8VJ@G<RD+gN<~}6%GV~MoIBFU#J48CGx5C)%a100
z;&GGia7P-O|4zIn=D(*yOL1#zqM3=Gg*O-HUt*pdvxVq+3MKw(qLuL91bN>69wY4b
zr*N+2FB5+YZ*8KDiGPIiiqXzQThm)Qct$ZskLK2_aUD(cH!;9OClj4bbdkBu)4QJ(
z>?+vJM0X)Q1bYhhGSOQ|9}|6r6p*9IjbT#fr1z;h(8M4UIW6R}yi;bdi8Ch7niyhY
zsEJ`FhMQPnVx@@@CPtc=VPd9<Q6@&4m}FwIi7_U|nwVf>qKR>Q5@n~cCyDon9M4@l
zNt`(Bs*`l`Bt1V#`A*Rk6H`r0<6-18=oF1OMQcvcrBn3iRmymp3Z16!PV<#g%r>#e
z#9|Y3Ow2X0z{Elm^Q7;~Pt&2(G+%i4(_Z|*Y40BjCUwrx5)(^JEHkm(1plk}dn&a(
zLzB+X>N9lW4BbCNub!n<CRUr+V`8s~H73@Y*k)q8iFGE{o7iMxGnYL})y~oeK5H^k
zi?g)R1S40mg(IJ(q;pj099=m}TTL*szQe>$6T3|8=6;={KIdrFIof}YoOATvd8%55
zYM!TkCia^+X5zSs111idIAY=`Pr~!m_dG2-Plrq#Hu3Ph7m)GAdCGc$ilmYnN;_fV
zq={1|PV)(P!E<O_gnqq11253#3v}uNJ-$HaOq`ct;b*rmn7C*nXu>sd$;4$74>&Tn
z*2Gm4w@lnNagEO!6E{rU<mK)nmAXicE>gRTH2NYfxJU;sdbQj!ao5B>6Zd%*WufaA
z$-GE8FHxmS^!+93a*39{O^-}GHer|unDCkKo6t<?JUuSa<xBMJ5-BEBo=)<+KI>(w
zdzpq@ra71C@MSVhSSD-}4ma;IC10V$*C;U~mApdVU7;aYXy+9QnF#YjZ6U!z#6-G@
zI13ppJTdXq#0wKIIl>i6yGndt+%x_ZkU=PW)oXwAtJLc%?YT;Kt`aP~V&PQ_85yrp
zu4^=}ES0|I{TSrC_3B-tPS+^WLXw5oEM&EiY$20{%oeg(7;}xbT%!~V_pebZi`R)0
z|Lo#_ueg?s<*CYbdfh@c3)wBCS@`if4ZlvSuY31EHZMvSt`k|%u2T*<(YQ#H)YLaD
zbQqk4pS6$Tn-<=(z}eh_ZwqoZkA=L#^I72Z(G6npT?+*)?6R@j#(NeDa)WKWZljQe
z!WNcVSZ1M!h4(F#w@|_2ebT+r_`pJ*D``b7e$!N1F~JW7Ia}O9i5UOLLdh5}C8V^4
zkA;+p>7NKGYoT0B`PB0M@#IikQAHlH@tI~>;6JP@304-YBKVnwsurpVXXoldYFPN(
zLQM;`EOfNc$wF-lb!50&S*UB_3k%I8`=y0?7QVOegJkPlXlUVU;a^#3U}2*Csm=I}
zg+>;>6BB2@74lz)sM6R%6EXd0;U|f}den_eHI;y@{A{5)yGgdC_;cf1{3qtGF;CWi
zv+%oxKP>!d;V%pSSZFJre_P<x+QNja|NaZ#Ms&_HX=kB5&kC`!TU2CZ-q}JIj&EU-
zg|0ke7Dh?I?iPAj7-V6vg`O6AS?Ft_pO|_}gg(MKcr;Fb3j-_+{EzrQ6E}N^xDB%~
zTpWg4h+4Vq2vJ7H;zae)e4s6i6>+>ca8t+qFSw9sy^}3Wk?b@XTds@8cB%y)Smx|A
z-NFpvGh+&enk}3i=2)03e4gNZ3kxhPw6Ms+Vhc+wjOd!EHi>)OB+esqJ&Y>ZcVt*@
zVTFa2d?0Snm>aap!fFd&KA>k7)>v3;A<PSlg>@FzTex81qJ<3>Hd;7f;h=?07B=&_
zW?{F5Ef%&~*k)n7h50vV`wg;h(35F#J1pMOoA{owUvJXRSet*kNqa2pwXn~^ev7wJ
zru8@J%uUj7QvO?1^%nhkiw57KLwp8VIA!6qg(DV@S~y|hq=jP^_|m2C7A4>2oh#`$
zcj1<|yL8Fh)ZjMty-mH!(isb9Eu6D(-r}v(crz~w+@?HtsPrA)sEB6Wp}QZ@B@35%
z0kPn>aK*w^3wJEswQ$YCbqhBv+_ZSZ8dC3g_u=HdOXcs<w|D85h4{Cr^<BEn)Ag>m
zdfemH&%z@Mk1afqJ{ou8Z{DSc7VmxFIWQ*PqeAzn+&%j79w`=73$_J^mp%)+1=E7X
zlk*;JyhqpWkzpagYw~^K#Krl(xDxm2ulqFfJ_Rkf7D7_X$@^s8r>qaW8^udK@I2E+
ze=7Jy@PPgATS}NbxA4NkOAB!}l5J$Nk-_%nSVlnzz9PtfUc739|0HE=yeJ8Ri8hKi
zPDm1L`&$xoe%d<4MrIpXY^2(#{!60UJn>|sIDYJ!pSFI@20vIGeFQt3jqEmlwb9B(
znhmni$i}xea!BL?f;nyEvhjxSyn=5Ez9pDjkel?jjXW{_(*w#UJip*OG5uX3?Dn3G
zg1r9QC~Tv$jVd-SK8Y)0;{zK-ZSYOV@AHSn&<tx<rWUjDp^dUO%Gvm$PfBqcC2f=v
zUc$ylHgZ-@3HMI<pkhjC8z0-4^4QCkVg5%3#!onAMNj#sQp(^5#N<;O6>U_qQC=!#
zrGgE{OTVNtmh6)f4fvUjsy4on##G}mv{9EUwNb;y=QcQ6ZK=AZjapKi+ss{9E>*C#
z4i9X$3{1Whw+1#E+NfuvzBtdWnDUj4M=Mj0JRrueZ5&^j%4v6<3{iaWB#t}#U2NRG
zxA{GXw5?C#4>lUx_%WvcY~v^4O$3_?HWS=D^WQnvT(Z9iwh(N|16VVm{h|!%Mev)A
zjW#yf_}#`IHWDAwpElarXfK|B+4x&XYr!^xe60Vm(N=i1U%Wf3JJ{%GW1@{oHagkp
zY-6yEAvU_$=xU>{jea(|+30Sgw~anFdhp;pB>N%1!-{&^=*1J@A@z7jn;&}TOYTS1
z=MiOf(`G-S{x$~K7-(aV&2P)0BaghBGkuRJ^)VHA%<tTw=8tKpjbS!M+ZbbGxQ!7u
zM%oy~VIR}X$F$)wU3g6KKAM%8pFO9tJ{oIdoQ?4|CfNLVHFfmSDjyy7k>;a<e(xs3
zN`9Km6UoM6uGGd<8`EsewK31ebQ?2l%(gMdMiV~`^3zQ2>9;A%{WMDkgvrPpbkI*@
zKOnxXV!n+9HWu1g#OJj_PZB7vLVV|5HHA7WG)<vR3N5v<%*JXPYiumHvBJhm8>?(w
zS13uPiYoo0Qp++lP^H-_-|k3jZLG7g-sY$F_|`rurO}rf-=^g~pfOmZ#To@QdQGRz
zJSG?7`P&x{=@x0*R>5t8+XZ*n*eQg4>hmMOHul;`a**s`pN;)Cp4oVA<A9BWe6rZM
zWW#?ljUQb<WaF@nBeAllgdDYTOvrJ;6M`pswXxAc-q3zp6t3%xjk7U+PRMz|3xd%{
z<1gFLIIGhY+k4B<RU6lMOl<5Lkm(km4mNJ^8Twn|O&gpzW>KB)@S*u3@gbjCLhcIQ
zvvJ?X1Mb(zWVY7QiIMqZ8w$_K0*P$(ala&SmaVGjQAM|5*a%1!T+0(1rVUH7wqQum
z5e(XJg|yRYzV1!tu#Jc)%+rNL^{2vFd12$FjRXgY4*#c5w{(g(D9%9!$LkaXnY`lQ
zRpA*O#0&Xqvgg2<&!C2NGrykA`zo8sL5kzOFC~}wq&oQEYFbVQnH^+tcq<=db@+cz
z$|ly=1>K6?2MQzW*~OYBNP;;W{@;+;#Bs(N#F5`{z}vjO>EJB~xgEUiAdiDe4k|my
z>mZ+lV(j1`zk_%92`>kQ9lYzHfP?oO6m<CSEjne8ZV(0NL2fD=;7ianHb6xjyw9z5
zP}JdTp>#GtF9Vdv^loV9=9M+6sY%5hlyLB|gE9_2a!}GiDF>w;bTw(YNoP!ow`g4`
z@ePYgSTrJ>_KAbC4k|dP=%Ac~Yjcv@STxq6PaTw(zBjUn6UX0U(FKcMSoFS4RUCZg
zpq_*JJOU1?IjH5Jwu9;pYB>1ZK~0BOV5*VBy8(WH?R^hfWs_o4f<tv2)OGNMgD<_#
z($5Z!c4)anha7s~&?`a86Qr*kG;r{}gC86;bnvx<ZyYq@T7vX<kP3c5eS`F^gK0s^
z?NURRb_MA>2aHdG)R?Pw@RNfk+-sLsxpc%Oze_J%DiWe$6_T4eXy%}M$rMg}=h80@
zT5wqxyIr(&@T&tih)@u%9Q@`WXArr9_?-{21KWY);7<pCIXLCuw1dALw01Db!DI(*
z9Q?yI%AmF7xs*4ty@L)8+6m8<I~yxJj2#_x5g+EAgme~c5TYpQ#%*)ZL&W|L1~};H
zpqGQ*qVy5$8S;)uU*Y`(IU5xRN_L!sK@J8xy!9}KIvC|(w1Z&|hC3MHU}P*B7vZqc
z$Q&UWYK()ivB+%tU;Ob7CdBHR7}NPh?o%A^`A6P~aw;DY2h$zQaIl7_v4fcoW;s~s
zV3Fg!BWt#Uxen$znB!n;hU9!h5|6x0obTY3xp505a=qki+zh96a;b-}FLtoR;hmJR
z!ogCW@Z!*NS{%oDx2>1>_N|o;RykPB=S5TOel@vt?&P&0;x~7Ve(611z0SdU2YY#;
zcCf+0My}MsHi@&z!Da_r9Q5g#<UUPWH#oUQW-s;Kl6`MOY<IAervy*zPRTnQEU4%$
zBfI&uBJT)(IxhPjKBIFamY$T2aleBD4vz33I5@}yUI~XB9F|&s9+$mYTH=E7$vw@a
zJma$;b8wtjo=<Rsr&f))3?mbVw#!z!d*Vq4&-x^@&cV-cBTwOqgR2hCN|1Ac=LOl}
zf`f~~F9}{2JbukvpsvY*=-HSI2iLhG2R9wu5(l4y+d|mwfrC53?+V^?aNohnC2{;w
zcw&hchtoqbJraB@$PTRgg)4%p1I>XRv$6xH0JkATrl2MGYM59F@@d8Ea}XJWUI%%?
z@bj}FDI0bWagZ+jiC|n1Pla%e&m24#{zCAjV3n{p|1$(-{TJlyD?%EFDL#mVAYKc4
zo2ey=xF}3*-$+b~c_s&uDaKQRNEM!0FiT8tEmdR<;`Jc9R`sS+HZf%vOcNx*9D+$p
z;@$}2%^-#aF<g|l1bYkS4&v<~@&u7Lh<rgb4C3n`@(1xw5EX)`7{t3l6bRy@AW8=D
zUJwO?_#lX)K@^hWMFja@u);y_f4%L8@xBml)rrF>Cj7%7igT9_|Lee{gp^`ub}JP`
zX>ltT#K%HDiA5+AD^)f|xCqzssW_AmA{wDm5S4?x0;6^iRf6~|h#KNhRj|60<%+6F
zrCfWo)aOCej75mHtxgbirAUJyz6kQ>L0<Ffi&9T8T9BQ;l5DgTiyjH0Q4oIz(K?84
zgZM6ppMz*FZr=y-V-P<D@q+|xEEpXtj^8ARW}-Cxzm4(g3ZezC@Im|$L`&&KEAjkQ
z!gASY1AdFO?a%+{fBh#~n;`xPqC=2hoQSqDXD-fdXct6#i5%@(ryx2@72O591kp_h
zJ9ibrHAX#qNVaDXz5cJxo_)CLFn<p6Prt-|LG%w|fbiN`k~j_I!;~dyP!NNK3=uqh
zDt>4X$MR-k(}*BO1~E2>aY2j<VssE=f++Sf?z&8Sj{h`FFVCm7+LtswhzUWg3}RIf
z6M0TXyw_jP2x5{nX|muH!Ks2=c3KeAh4bbtoShlOtRQA{H?t=2LoSS*=16vK5c7o0
z7i4`w5DSGbiYbeQED2(1Oj#Dh@)%zcgqoDd1y={LCWwdW#4om58^pRG?g#N8i1k5i
z2;xW(M}ycH#HJv22KlQ3HV3hV$B?JZ7b#nLGDm1z5WOSRT~BKjp;m)3^~sibM-WBo
zc|YG~Mrd~sJ=Ue{4PqZJ2$d4|@SG`?xT{OT{vZxWXFIG&IvB*EAR-Y;>zcAV;;m7K
z#dJGDZObPf3*vYX7lXJI1P#h`B8W3Q|7)aVPN$PWoC>1qJDE$R)9D}>x$M~>&hddu
zr^e}Yp6AS@q|WJdfr(fz2XQ5cTM~cL*C|(nxE{m}$zJ0#D^r|zF-Ni-s&aF$7vI&6
zyB)-xAnx+wGc;4JTk(8L`Oeab_kx%yG1=!~5SEmB6vX2od_nkwFoH0HP<W_=&|@*b
z(NkE_Bzr8K*eAf#UQgj5jI3~C&dCnK5x1Zqd$Jhjf#ON)VxWukAfE6yE*HPKcpAhr
zUTR!aaXq)^ypp@f>f!~T-8H=%_+Lu#I2RdQz{M*rUUiY^BFV+YhFLPYh!?_~zl5LY
zm6+gSSg#b$a!PiQD%MOfpA;8Ac28teW>K;TazR#JcfH4Lh8{_K!$mfZ|HSJ~c4<|b
zAPMGhk<&#k;ZbDIH(k8tBDagTU6gk5v5P$7P{>7L7kORebCKW0J1z=}{;uGAf&~Oi
zFY&G?M|l*BxOiVoAG!FzMN#1;ToiNhp^M^@<s$zp$b<_<%a#;tDM9vUv5fFfW2HWE
zQC4_4!Dy-SF>3`E6@^z4%r8UnnTx6}zIXA1i)t>ayWrcN`IEiY6RII@bzOY!g0q}z
zGKulpF6s#9;bjxI`3o0cx~M0m>bv+>$X6~JxM=9&Ysofp@r{t^o^)I)x-DH){LcM%
zue!$K)8YvYenLOG_{l{R7uwELPQSQl8sp7`{OqE6OgYd#Lkr<8W6G~W60gMn?&1#@
zy<PNi@u!QwT>R~#wTr1wXwBXDtxw2)LTz09<Kn%i#BXV6>!R7O30-(HpH6KjyuDxt
z!H$BR1Un0|bH<d^uHxTKu)AOn!JaNY9hBNj`o+D@R4a2|7yVrDo%a3t)Yu|V7xHK5
zQ+_bhJNpK?80>ocAgpsS#Klk-qa-`b#c&rRT#R%vYhEJ1ldVyQ6n<IgfTy&4cP4&+
zBi~OxT0F-Hj&(84#dsGJT+DVc$Hhcx!wkVmf|CWO@K6Yu=3=@KZpOH$-jUt@lxB)D
zOEC8a?-b@V*ToVSOI^%!F<(pzTrA{MMjY-xB~FW6?>WB3f?Q;oi{;|E*2M}JrRpcF
zcCp6AN)cBHvdErM9!1V_%=IodxY+1olZzcLc1i~`J)_O8_ij4&*&@Zay4dDoy9<8C
zgeNB>o9LOhb5?<8RN)!zak1CM<uI;<vCqYRp0{Dt3*!Jc(#5?H?uT&5#bI8rT)cE~
z#Kln;&s;p`nRX%Ztu;w}kK!>G$6cIoani*p7k6CTb#dCo85dVwTyt^O#W}7;n#2t_
z&x?|aOOn07C%#-ZiC)rSD=Umw+<!0fTzA3B4bF-uyK(lGh`0X}f%SVX?z=EuSS}v8
zc<4gq3Gd<&pGv$eKlA$TbK#d#ir}a%shn8n#1V8ChSVF7_|cX`Yh(x8h2z3?5sI}W
zD1_V3!NW10?jj<bMK(R*IUj2$*UoV&??~gvy?NYt581d7GKBC!2t`Alsd%|mgz!oT
zuZEB@gm*%CH-z{Q5<;L5a)gi=LQ)7z8zp8HOqNoaLYOPPOOb492$@6362dMKUlS{D
zdvQauuS>yf;>k5;4<Rjt$TQ*yC7)AHZcMS1iRClp4k4HDHw51lWYb$hzIsk?ON2av
zc|*t-Lg(j{U$Q3_#W7Dm9nZT16bPYU=-)k9-wT2F4q%Z}ArT7;77=_ugayw%Q@OIK
z$DUKM5P!8x_%MXxA(RN=qYws!FffFYA(RU7)kU-np>zlzhtPn>hp+z&GN~TICn1y#
zp`0j{1wR!mAM>doq@rLY!Ddh5xNMaWK9g)!K~}1T5H&Hc5yIyo)C}Qkab~4f2(?3~
zBhGaN>xJ-z6!|h1A?jRTvR}obHRK>6d?R8L!A64LhVWeo-wWsXKMDCkuyF`K3W)}c
zVpCC?3H~hDT<{k`j=*le3U3p_KOwXd{+r<Mf`179DfpM*--4}U-HcY$R>a;Rv=h=k
zgbqSFhR`j9?jdxNEZ5jMgf7Cn#yT4vz#bv=6g?WSSInQYePX<?kbZ*w1=%_%gux-K
z3t@c-LqZrT`Ygd=f|EiRE`)0zA!K9-qe2)R!WhYp7aSY&85e69`%egAVoc|DPLA;@
zAxsrMErjVpW`r;^W{vhJinBwQ!>3pX^Fo*(!jhQJ0wIe97lyD%NVM-<FPB{!!m`*P
zFBj{I5LOCVCAda#b<Ah2WTTaC2w`IgH$~YbxJz)e;Fb`!#!77yWxF8PyMxcQ80W_9
z4q;D-U#E$EA)F22TnPI^I1u8C9ylg$2SYe4gkOPjNC=lY5{tl%IUd4^5KhIEXa`Tm
zYCj#q88Jnh9kreh;kt+yLbw>hr4TNMa7~meu{c+SMEx0~gxh~Z^k}qOA>5Yiomi>6
zv3ehb@GyijVSEzCqYxg4@Faw%A^7+tIv;O^@ZdT5WwBBORY5HTU5F7vK*+e^|Nf_D
z@|yFl_v_CN;l*=uLI{e3D;NnOB!nHpd}^FcVISt{A~GMoGSf3&%){QJ^v^j$2rom3
z3nOP3xx&a02Es@QBQ=ay!gw|8eHJ8#kui+;FcQO{7sM$+NEF$DQ<8YHiFu|lqS?%0
zWC<f%7}>*kO&qd@@p{Y}EybQ3CoNh$j2sd<T0ClE>l<QyJB&PGyea&xFmg*Awnm*f
zT3#{b4<nzD|LN~Y73@$TjQ7GQC|1sv3ZqaMg~KQ!N-@Fr1wUZVCTT?lnf!4u{zK7=
zhfyMokHRP^iGy(JdC*HyURvBf7Ho1bzN`>_bg^6*{AewI+OpfHVU!P}LKqdps1(NM
zVbl!c{r&Nk#kpD-Rl@izjC*6_rp`lE5m&YJE|mTBFsXVNHAG>~)>>iI4kOqEt=lKo
z348d3SnCQO_f|41&UEh})(_*WFnWg3D~twVGz|0Zv}h8>*I|4UM&mGk45LvP1zu3L
z;)(o~;9H5q1-}d9d*MF_)|%nX!+-K8@he%lJG_ZZ(=eKa@lP0S!`^cu{I$9NuK1tB
zXwLp&w1~y|BaD_Y{%aVmV*EEDzYA7*L4OMQOYm>O)`DDV8zBv4j<pMWmpWU&pV&T(
z4q=3cWauc?u3>Z%(m9MSLfXF|PF$Q*H&MEW(L)F;?9)4pK4BaS<9HZ-!{`^r^e|?G
z(Lam<;x_&T4HS~^QNoBY1_>W5I7D!$;4s1Ag1zf|JHd_QsrV>iR2ZYf7$bawAd6$e
z7$<yu7@P(fDRmPPCWbLd#K~byjd@NHD;ME3Eev*J!og?qtZtEMe;BjEm>tF(sdty)
z+%V>aF+Yq2VXO^fT^I|)SQN(cFjk1e;xLwm!7rZWI7>t+lRt5pkVe(KOYtj(uL@&z
z%q?FB@3^lK{i67+4`V}^ua$YTYhxIj!g%n45?|8hFt&uTHH>Xx49k~v=xjXic(U^a
z@e|+eT#t0knQ4cV+9}Ad2f4p5ez)*Ff*f$KkbQhmZp7W0<5hh?l!IX$iuoK4<B0I1
zF{NHy9KW2Fo%ei$6JeA#Uq2bfsW49SSyuS9Ghv()!u+fdp2O$ExFGzZ;3YwRaGrg5
zf?W;cS{PX)cs+vaVcg(Zu`B)wFKc-dZ-(Iu!ym@2Fm8vzKS1t;ai5p6SCj8bd+rJD
z9Obp=K^Pytq=)<w5XNKSynQDVM%I-u-q{h)$rhr9p~Vzkh#?pdGzG0No}7*Q?e{oG
zvRpPO#0?`PBrF(-S<{8E|I;v@h4DO$7rdlLkPyMkF!FCm$`J7|E`myfz0_(Q5W#_L
ziJV@E;MEw<81YOjCPut|@e0uCr8kR`B%2&TrU+6ZNR=$>uSJkqIQKM*koqs_+$it!
zD_aEFBlsY~S3Z#z0Yy+m9CAdErEg-+2y#WdQRVkO@o2vh@$Q+-AHjr|^d{><atppK
zm`9MUc_YXte8EfN>^l)}Ta9-G3kY)dy$A{lFC<tvre8df_P(@%mqBh}G2u-9iQvN+
zFCIaO2tJCSWCW!ms2{;s5tNSL;|QunP(6Y&5q!eK7(wL-%0^I*O?4A0M7-w?J{4YG
zaMz)<>lMBCGjpma%GyX;6(OvACWMPHuNpytNE(wG5quuO7crlj5!8;LP6V}L#rZ)P
zb}Mn+D^)jwEfW7rvDOpx?rD#tHHe^L1V2a6Jc6$y_$GoMBlszTMiG1)!S~$M2)+~l
zHWG@XMH|pqdcj#v9K4D6G!tZ{X#_7~J!1Y#1T7-?E8;zE(K3QxBls<X-^H2x+e$+5
zAaFr;_(QUPa(m8r{wy;2TgtW;Y$MoIp7h}((pKWM<4KY`TYH``c@sMba<+2>UAVfJ
zX!R0ZBk0C$c#6NDqI(2ABG{CU&FSbFL9Ym2Nyn?{d}$heBDgBYw{HafB3Kc@$_V;L
zFhInK5e$rAknkZ=%kh^qSh7sGF}z2^&<KW!GCYD25sVZ*PH>dqXhC)!BV;UhN6L<u
z?1Y%e4xA=MFj<r-5loF>n()PfY@Hs#j0k2%Fe`%D5iAgWP6Tr!m>0o($?^jc|6k&Q
z3nN$*!T)qtmWcDxSmb39EEnz_vO8E6!D`7~iC|3xYo#ogS|{Rh!S#Y0BG|}d8^LDD
z9_6{m&Ji4p;7|nHc=O)~_C&Ck&*BJnMzEV_+E>ZDB8Uzna}LXcIlPHCf%iqQpBJ3d
zIKT_k<TzHCGqMkpjalO;F2`Z1=!js{;h1oCV7C*(PYRxj;B*9MWWrn&<!l7!qVZ4T
zd;}My7OsdRb6HN8#O<<RRP2#8?izmtL~uhy_Q{Zrzq7{Ol<chtZbxt@0-m3D1%naX
zi{O3)4<dLNfhFRj2p&iHE=m{?_#*H}phloYp!_HC$VVqRi_94VOd@C#^NEU#wkVFc
zMXhcGp$NiK7YBJ3;eSlLCZ$L4gb&aOdKv*IR+uwB=M$FKe^KJnJ)ILfd>WU73HK4{
z-eA@{k(4nV@$8U}W}+mdBPAWF=}1gRk|_Lvo1BhJ!kfqCXv+uaL0aZ?WJ$+|=_sC#
z*V2(ytbd%ukhmNi_VsjROGox}q^0BCbQDMji36K*r6YJbK8IjV!Hc!ML-R&D-b}|^
z>G=H%Z!+Xg$J^=1Bc<}DBVRfuq<DYF<d4O9Cmr*pE*7KYy>t{6Yr&XLAt8m+Q6wGj
zr^9#B>oVg9+@8y6XX0`ci+O52Gn7cjN9ib^jtc2e<8qWt=YN#EcRsfXdCkk1AxG(S
ze4Gv@oXQCKM6j%2Il)iUy)B~HA!~*l{MNfW`7%|MDk`O;ayqIA|12F}q~ptUR82><
zbW~4AjdcFU3U$Q#c{*yvT2(V0pJ(vKlT-5yIsT{D6^EV~a?}&jFdbhD`F~V>2ecH$
z_w??q-3dGIJ>uIY=bUrSIfDcd1r!7Y17HRdVnBilh=L-57yv;*F`^)5R1{GWBp8q&
zW<eA-e>HcV|M`9A^r=%_H%w1=PtVTm?Cdbb^AbXb;R#^~eMTkZ{Dh2C)98d;kdO-#
za*_Is;cBV*iFD>x7&ulv^VRXnsnB5p6DDM3f?s>dr3smokU0stGa-``a#=#IOUU&J
z32pbUgZ?U0aCt(e&|!b^)P!82<jRE1P;!;x)r!*;rz_I=@K%?2jaIK!EOmi@RdoY*
zVZXIJZ1|^vHzxR9p3G#A9Vni~hAFvO@fL0Et%@CX`(sU?+j$mH>m7=<4)}q0CFJge
z+>?;G3E}(h_*Tp<VY5C~bZ<iDaWaR^m5Yk!Yo3P^(r9t<0_6)8?@P%233(tPixRRV
zArB_x>tKu)tHSNFP-I!Eo~$y-!<uSYLY6CeMDfvttWfe;fWOZwrt_+VtWL=0guIZD
zClazIA)6AyRz0(*_-xn=TwMGl=YK*fi+Nh{nS`uWvMwPTm8@5MR&j$O_ly3|DJOY8
zFfna+F)t=$i*DkTguJ9=iTM36Rm{sgDwT87R9;WWR!-fd^iIkf33)Ri|0LvJ4cV5E
zcN6knLbfO5t%U4I$lD43FG}B`n`U76cVdQ~DCB49_Y?9#LcZh>B;><{>`cf<3Hdl7
zN%5zm1Je@b6J}WJ?fANg-#83`*~J3~=2OMb60%!I<a5P6iu2NCzu+LI%QC}W4oyN%
zB;==rzuxZS8UjPIU#s6J9!SVRC5IC7eL{XvemEiDD)~;4Au~1bh*pm!<i|iis-*c~
z`?wN*{-iTEeUg0w!;iH;C*&8dCkgpYoA<Zk?+N)s$s6$Z^iSn~C4|*eiX^8KatMax
zj9TeNel{WJ5>h`Y4U&>zM{$8oN<1m4grpO~jzdy<JYHB7F&TFF%WgIybt5LHND@j)
zIO!`a4_xVR+DDRn*^z%bh$j7ah*?Rol{kuJlKcW!VoC9|TBKN@Naw<&w2v5)5=kkk
zVyUEDQ`0G(l!?b|>g2?-YN9i_NeY+Ks!6GqlyXV`2rZwK3Q9&q3`@nNRMKi?#VU$@
zFY;Gl{=XivdQz@DS6pt7Rf8G!STz-EC8f3!Ds{Mn0k4;o>+Z2BHcU#Rq;yJ3=cF`F
z`X~1eN$HrBn<J)4Qko{E8Jm}s7P`6iNolEsn_CqzEUl8#T9r0QX`7UxpB1#@zN<3+
zDu1}?L%eEyA+IZ^e_4FuL9a_vx+bMtQo1MQ=zjn24;~ohY>ycJ=_ePQ9vWMEn%y%g
z!~+r2Cn<fC@?}!KN=m;ZzyFmP?98MLNXkI&a#F5J%AlkSPRay!Z&Eg0SXAR=@es{3
zG%3T9a$eH^qo@lNhbxXq@=F9?9F>#{l$@_PT9JPmMH9=IK)gr^m9a?~mz42Zy*SD5
zCj2BU49x%G6hD>mkA5!Itw*C~Qc{SM6)#h~TyaWLrYgBYkzGW$tCKQ~(;(?z3AT%x
z=~2U@hW|OvQ!OtEujP<2>igm+lX87hZb-@lNm-PX8<X;I)XYxG9Z9(<DKnGuYSi!Z
zSsX;=w<Lw-Rt|meUx&A8^KMt9I7i97N%=Wy?&M+eu60+^zcoj4w^r{-%G^NdQ(xw(
z=X^zmEJ(^i<@YJxuQ<1LoTkN^nQfjqBfcal4<==4QXWdm6RJO)lx0a-nUu$qvOFn|
zsF?py@u>1zmRX^MyYm>s>;Ctb)7O70t5jbdxY2=SO;V`vF`=iD@-#d1`+{eZvMVWk
zY3f?_T$hyfNqIIY8<MgkDQ_obV^W?=%2u^L&&k7%{iXQjq-<6~zC}$hB<00G;f7vP
zPC^HkSJ=<$_L}1BiqskMMpE9?>b9h8Ps&>wNIjp8$W-qn<=v!w6hyt3ln+&ZKPexm
z_<znjHJl+-J`PNuXf@vhpQ`v-Qg$oh3lBe6vL`8DD7j{`e_Ls9l0W~Ea7rX4`;xLh
zDTk7BI4R#G<v>!dEg3$T^l#3LuuShB@#l6}JWd()EtkZke4msblKu|_uD8r0%b#g1
zN4QYzFFu)+A2pD%N0V|)`SCzG!6@Yqe;A^}&q?_uDP?Oqzb55WQcfr3H?97zNc|5b
ze<tNGCF?9h@$bNzO3E4K|0Lz#q?`@(gpzYfac(W7KTA>-{-ISm@W~`4o0ObZU$9Jx
zsZJ;*-)MfMB$AS`DH)fNXiBV<bWcf-l;0btEn_QjQsSm0mJ%-|4N}rDB?T!dOi9(0
zR7*)wN=l@pQp#V$OQxh$N=!=1rKEI9%A}-hN{ZD)Qt^-fp0#jo!xCp&+wafvfkTCq
zKbcu7szTFN{r{=TTCJkl7*$=XwNg?$B{h`SOi7im<kgb?UClZ{Y&|7)Q^FAHEcG=5
zNh4L7rKGu%#wlr{q-o$8n&UqT(jq18Q_>+NEmP7eC9So=ZBo)!-MCTuaKE@0?G(9y
zbPO_dO-ZMebWTYZ-DrM)=|Ivg@L|I?e_q&AJGt-)yH`qjr=(9x`l`eEDe0$VNJ@sL
zq<;`KASDCY`L-F9lEEsHv#>G4QgU8OMyNPkkv@4(T1iHxWRynb11XMHw+j@<q~yYs
zT=YMIbQ_<Ni&Jt%O0HD>5^e3&luSs;L@HXHqBtof?XoV*WF?m=UY?TS?4PVl<fNKt
zo1M1#gLtgC^J~Rarln+hO1fpFdq!rY<eHS6Ov%qFxi%%&rR4LJ>`BS>DY+pfAEe~N
zl-!t-n^N*fN*+zg%#_SZ`QH&NO3BSB;Uk*898-5!@hvI2H6^#DgkNFYosxS}ayutv
zkv%&lcW}Borb$nCPD-|SwC_yGUCjSnXh(aOg=B6@?oG-4DLGs>#{VnXaje9=l*~`b
zCeL1w;;&F+OD2_ANb7;Z`?zak!X$it@`03Wvr7!`Xx}rs<l>Yp{-U^dsMHb;XsFbK
zDOsxIAw?<=r({{cmn-4Z<113~SW4bY$@?i;sXN6a>r!%A*n6BuU(#BYlGQ1BA|-25
z@?=WZ>TrC%rD#=8Z;oT0Vuv{9X~k!_Q|ld8*N*kxcFg*eJe!gYDQU6WdNCziQnE26
z&!yyfRX7Ktu0MG;aW-ns7ZiVYeDS4}ysU29Qu2!GO!As4ucoBu$}p?1tG-q7jg-8Z
zl3@+~BatS49YC@@C2yr<M@rsSA1d!CVfec#IjE1ha&v9JE#^?N6uM?-N<K=-u9SSr
zuF(GcMEj(TYtC~GeP$?rmXh5mS@MJMxqXW4F(&^aC10lGNJ@T8$yX`ao09KR^1X(C
z&GkPe`#CeK`u^W&=6pg19$;gF79LV^I3?c(%F5TmKWGvLa*O=E63Nk&9McB;l#=6W
zJrVf4>-tlXJ}jRemS0lxD_4WGbWO`|DfvAmXHxP{O8!X6pD8(&lG7Uamo|z1Kk5#0
z?->5KZi0mK<lmH><)WRIXj;yxRnmgA@0Q?FGpA%SB`MX((<#X)&nnU<my%Fg!s@?s
zVId1e?#o@P{E=b@T4}M<QXwrB)8eRGskB@XGj3X9X@AA@6r0BU=~0lDLai1lQYn#^
zlK<mSIxS_=vQ(YRs$Lv;#?xYyms2bs=ya}>mda^93huN?OO>=#O-o(1R!hqVF;gck
z$780tDmBtlQ%S9~)K+WH!y%UPo`2q_Gd=66L;bWgNK3=CG)hYgRp`(-ElmU7gc+{&
zqb$!fQ?a=st1XqZQf!?T>J;hORvXz)vAtpk#g2+>f2Xu`R?b)dvDz&y-P3X;EkCBE
zM_PKOWougANJ}r0-O^k0*U-$*j4073Eq&9{FD?DkG9WFZ(sDj$PLVq>Eko1t6mQX_
zWpG+9I&O{f%(!~)khI)?xabkj3`@&->M%SlBhoTbdA(3*Kqy3HAj#;oT#%MK(lRG4
zW72YAS}sq^6lP1yST-XqlhX3+!4l)ra&cNNNz3@OJTGphtG&rH6VmdbXIAxdCvsmr
z6DcsP^0n2I=~K(OEG>L<_4<vW7dM88<Wo6+(sFHDu1m|6X}KybSEpqftJj1+nkMO?
zp@Yjp)6+78opZB&jUuzLFdLOh1?GD8VOnlZ%PncSF)cTxWoBAtrKM$o8Bk!x7no1`
zxL3v8=>=w9fqA09+?tl#(sFxRW~b$y0)M3bEHEt!&45Dl#dhb4LUT`{xic+yrRA}-
ztW3+@X+E$gOVaXSTIQzZ-n87u&P?;}fy__Kg0w88XQ64+*L|zd>?<^zZU3A4Ukgns
zr^EwkS(KK=9K<4HiVVA`agkwTQm*f_G%f6?WocQSmWR^va9YL{nVXBuq9ViaN7$2J
zSdXS<MOxTw@~4W--Xil;k>BRW8Jm`kX?ZR!tLc!IXVS7Z&8P3=Nseh+p5}pH!c;C{
z+LSPJ`ukfPRl-auVMx}cWj#kQEgRC3u58~?!aP{QtSe!5lrRTMm~cry|MO|tl$Mv$
z@^V@>r{#sTyqK0PJUU96wyjD|E@|#8>5uHHV(+SNoX1L<SJLuoT3$=b>m2Bk=9aeJ
z$0g0FlEx`zYHPX1a^FnLwzPbomLJk`Xqva3OHFB0r?h!1Ej!ZkHisiEUvjp0vfoY1
zd))oB?Br6@-hH13<^cNx?q*4MK^K?2a?<*U>rYySpSC_t%kD0Ar&8vVwCp-sv@4HC
zi&n1+e@2rYIG=O8N|`T|?@7z#QvN=!E@dcwm6p9}`8qB8((<i3>`%)#Tt-Tn&-NA_
z;7*k?huFR6l|0D6?xjD~SXK|G`LFBN?_)}RmzEBjik^NhwEyl9@0Ro^ZKjkqziur)
znwDc}$)+X8Y-u^cBQ!0)v)SJi|HNUMUBG+4x8CWUOv}${A^9aOzjCG>aTk_0EL2L2
zj&CS!{@`&s(fKnif2HMAT27}WrS1G%F`>xaIm7m(<zKCyRXmrLGxPjai%&-oS(1U0
z4x%!FLTe}^Z8Op?BjJolMv#$6MhY@gn2~5ktPBrwiDksj{P&sJ$;bz#{hnm`x3uvx
zLWLz?B^G6*L`Ldmq<%(9W~5X`%4eiPMoMR-jJmbm<lnR@n-Qbc;vjQeN!>E0oRV(p
z#%jfkRLw}WjF4B#NM$ADRWkmCEeW$#&q$q&^eSU&WTd8s*UCt3B^2qvk|%XDk~cL_
zYom-b&PYS$^kGPoj5N(i>x{Hfu~|l1WTa(Anrro{VKKI!ZEK}@m@~gS%*pUPwpY$8
zMBbU~puD4ECq=q-R?;OST?2(zD?KvOlbx2823hHqk>1?9jBLtCpN#a)$lV#aCnNnb
z(mx}kGjc&j24rMlM$XUhFRlH(n^4BwR>lm<$l#0&$;eR6JVJ4p;(3b06_;zDj8r~K
zvCR>`{k$#tLK!nABNt}m_KeKV$VC~s>xJSe8UJR&*o?F<E;%kE<1=z`MlQ+7O`d&O
zMkZwZFK%{~F_SsOd!30)$W|>aJxTG*($eHFuP*&#8N-KiFVDzdZ<HwYdWoqSxgsN1
zX5^}j+>ntQGjg@&zm8qqtazI8>AVC`a*g7-da-MjB+3}Jq<UF%J%^^O8B^BWl#!Vk
zxs@GQ*PfM;n=^6?=Se+pdReotjN7nA>5fNZ^QV@4xUA{^kaJr`%J#4?b4xv6)}I?6
zl{I&0C(Kd2le?@WSJqT0Hghv_Z$?&R<gtv*<IXza#Ti+`vD;BNKO+k=vQYVb+#UTE
z>3*%!`anh&X&&l%(}Nj#NGI)5#Up*goWLv(XJnZw%N40SqU2G<R>g+OO6AWeKCZY*
zadk$XP(q(I8F@0`PbqntGeN^?UCV><Xz{v?tXD$*tdb2G*{I|>MLwuc)8>r4kddOS
zl*r198QGGNFF2YRc_||=XXNvY?8(S08M&_5?9BLoANH#5>1&FwXJl(e-pI(C8F@#Q
zZ5hdz?OI(@Y~ISqj*Ps`o-8&j9EEGo+9dC0<h_i%&qYQZsIz<+Bq4u^TP!voW#r?G
zkbI&@vP;RQik~U&R%~{}JyvW=#fxHbe=A>QWG`o6Mowj9{<Y568Tlq72Q>da#r=x>
z?d`#g98&%(FGbfC9nMIrAFU(0v)^XqI~BiI<nI5VI^BNE$WbmSXRKoxIi8UdoRD#I
zbt*Qv(EEwUW})|UMoudEcS)F4mR~aRv-00`bH6M8q4=jFo82vL#%cRcXXLla?%zD(
zGV)JG{#A!))<1a9W+a`Fj4J0cl2DQiGNjlWCH<QiELkq~8bY4SNGK~|t*+6>O?d|r
zT8$|3kx|}(v9e-k#R;OkthmZ!fs(&(S)kQIMJgqgRLM%!tdvq-TCt2`Sw*&?ILk*&
z#bl+NDiyO*NlAId3R$^9_nn@3QaLLWS!Jn~mFiikq1A1zJ-%1%(YSdvZfa(wmWs6%
z>tv;FR_X<Xfrm9`!>lyQ$_H8bFe{C-(j+Tev+_n(nr5Y0R_@5koUAm@N{g&qla*_;
zayD*SW@Sp2zhZV;Wu<ji+GM3|R>oyze3rL6q<vP-*DZF)O2@1W%F5uZbjnKStn|)G
zpR9DrO4qE+H>M}M#h7kc>7JDyT=UI;=c!ALx!IWRD+?}|=k?0UW@Gjm^We?lzFFy?
zmBazNUsevi=6{$Bl`{jfGLYR>&a^FOE-B|{7?PEtSs9*{5m_0Qm7B_$*Hx$KysSK;
zoIk=EnUzslnXtQXP0l|Zf2sOtZTSUR8IzR@m5)`tNb!$yrd)ZGTm0WIRxZxUB-I&y
ziINFfnHVUSW~F9%zde&xxlHkL#q2A7<EJXWLh;J1T*Xe_ZC#y}X{zvvQ<mvjnV~v4
zt;FlHa(z~;adG~ru=+9UhOFGE{^Vuc&`ru`D$dHv%~`o6E4Q+X%A46)xh*TVD<`r6
z6j}0w%AHxcD=SwXle>xK&HVBvexi6?d2>%z=4R#Itjx>GNULB2$4<i+Wo2<z7AR+u
zg;}{z`TdFyWQFB>&A%io530CYaVbY3E01R7p{zWdm1Ud&{Yx@K9+zwN=kNWwy&@|s
zHH7>zPPY8-e^ptf_}D*AxPo~iD{Hdyq$*Em<ryVUDbl(&E9<iItX7$a`g$Jk6$}ge
zkP6do%*u0Fc|I$fxY}oB3+Kkz!p({=D6Y6XOojMTR$k7^t66#NfAm+fLK8cOKCl0e
zez0};%`6|`lO0)kJ1g5c1eb><o^{^hab$b7Dj4$qXPtMl@@`h%%gXy%=~ux}VR^Kc
z|8&rj(f$v|W>hdcv+@y-^qkbl$;VmwBr9ceQk;`rS^1RfQqCXHrz)6j70hQ@*`1Zo
zv$7{E8Qtq#Y5R+;{FIfGS@|+6UuA{L-mH9+l>=G%Ix9Pm$M$7qzdG+Z8~d(;KPwLM
zD9g%^Svi`OGu28T&dRr0`A+#)rR95d{vj(zva;(De?Ajik18g{M*26Mj?uG%Ij(N`
zgeTa}il%x+^K({y$%^-r^>0>w)yA+rr?c`~R(@BXKeF-{7oS_*Ke@#U=9-f3^z&k;
zG?n{H2_~oi-^{PdKZ+eH`fWbTBe$YC$5kRLNp@F7lU9W!rB(WD+w5N#WHl<M7|KaF
zCz2E7B&t2Rw4#Xwgq;4CR_&ZnUt7^obXAGv#LLOnil#uZC?|zVsC-q?5KCyaWKK#c
zDXmyWG4Bx9JSHdQa`Jmc!zVxa9bzhJmCwnA<%=p;G8J+{tf*K?v9e+n#j1+c6xq(2
zIjNPC3vx0h=f9Pxc1{N5WMEF}<fLv+>gA+<PP*$B8|0*+lJ+@iq@;ynW5p&pKD+Br
zs%AN9u7vzV<1h<JOI2Fsq_vVZIcb}dcFOZU#J>XP4yt#|NvE82&IwIja?&*?-Eu;o
zyj!!O4hwk?b?%vyUODNlyq_XB+9xM{m3OV=k4S&zdF6Ul2B|Vwafsqj#bG%)FDJv5
zk5U|wlaWfe`13Ud%yzz3M=P$@Y!~L_qMV#MA!Bp$UM0hSg5Y&7J;&u_d`?1B{qNj4
zOc&?mlAPT8bBPH#naJ>*q`TXbax$5%eY|MfX=mher_Hp&(GNL4v~s89WNJ=&Sm<ft
zikw`TlLf#+;HsQl&3+cN5KPO-^qjmE!j2GT<m8&1?8(U&Ik`3`*X3kWPB!P{`kdU5
zlU3T<8#%1{|FHclo11bnlh1$V<mQ|_n3JVBxg{sJ=H#B7%+1MdoD!AH9M1MSMSP{e
z?OZ@+70gz=L-EqJrB`$;x-%!lyA<zM{Hv0=mz{89Vf`2F`*X6lMDe_w%xB|svQXQ=
zuDDNi5*9i<p!%YmEar9#3zqP~)UN)_A@@H}<>cX<tjx*d?4?v$J`S-gC(Ai2b`(Cs
zE#~Ag<&WlskDu|{VdL#~iOOceFsEK+Q>lq_)AGU-PZkauX0O(*Jdu+%Ie9WCPvztp
z9-cWlGr@azsPnWYZ#~1ltg=~`ll3{i;oO>4$Jx=(d6w-T;yj-d@(qd`6`x~xWkZqH
z9^K@HoV=KmojLhPH}rXBvn3}l<>Y0pzLAqRbMlJvR~5N~ujS<RfN$mE@QOdX&Q0>R
z<>YN9Z|$5L=xomk@h!z2?ATkvzmE#N6GXjBB`5D|^@E&z80b5jgjtxadw(xi*?gSy
zUmp00T6Zaas`#1WZbg0?{5&W7zSB=QIr%Clb_h-gdvo%2PJYbEQCc~0_2NwRZBF)U
z)HjL;6uG&BIXM*Y!%AKn;eHn=-z)hcCr6ZQGJXq-su<qAIhK>-Jl?rVR59lif6B>8
zB|qonkDUCe{Fj{ks^m8=fH`@zrbB-glD|~{Tan7CoSY6kSv`}Jf3*6q;@QB&JhUcq
zl2nr7+8zRxbWSp=WEDdp<dkruw6cUl$aAQFB!s9ECbX2$hujSz7Q(C$ZVtf<p&*3b
zA@m8MFodEI>V!}?gc2c?)R4*{lnSA=^70{+3G$c_$_BhxNj!uBX9~E9a$3!|q=NE_
zfoG+lg;i9k8bY-Yst4AZN@^(PJE2wxwF4`Y*9)P32yH`X7eWKon}pCbgoc4nqYxVZ
zPk1xstrVLpwg{o+|2X{Dbs@A-k&UO)K7<Y-bPtq{A#_pRNwIUF=VQBu(CvSe9?E+L
zN-rh!>>EPA5H1g4N(lYgQ6WrJ)4&i0DH#*O;1Gs{Fd~GJAq-XVJVmx@m=gBMa3%jW
zyNVg5)zKlGA9&_X7le@SzzajTD1@;gj0@os^%);{UaTbVpLd=RD3>ak6nIV!;j+NQ
z#!L<2iV&_1tXGCGJ>XX<xms~rFxE2y>otLLU7%ba!VMwZ7{X1e%v8)bh8rTeC4^f;
zSRTS7A>0<i?IA1-;l2=N2N~unxg&%*O70Bdt`P1HtoJBkp8Rg!8|d?t%nxBfpwQv|
zfIk?*0|8&8WN`>f0)?JS1OAYbheKGVB)^qMLs${Qi>f>p!pabyQ~tQ((;++)!m1Ef
zYxRi`o>a0%F~8SODbM%ATIJ6wt_ytD2M!yQYz*{#$n#p=6vAdDFZ_>nO9(G%_2m#=
z4`HkFS3-C-@Odp5Bevv?5Vi;Un;~oqICnFDRK6X;J0W}*#`j^o8^U`bj1J?1Fy0U0
zgAj&=ab6f7hOm>fk!dyjqY!q7@VWAj6+a1Kmy%Bvx!uo#HtY%Eix7TL{mT%(QgTpn
zZwUJX|F4zo3!=UW^aH_Ba7dNIA$-f$2G;KbYrfBqgz#esM?*NK4nK!*T**&?|A`>~
zNmcS={Yzl|HL(5>!k=7)!e|o4Um=_dp*W0q7^g${n+tLnRv2eO_$P!^2<Z_14S{DI
zmUAI&SW|dbk<~;9<jKHFQ-=3-LO}RGF&9EO3<)C?_C4vq6_SArVKq-8VPB_Whv9@#
z6h?_K+%RHccwrQ1VBRyoY4So1$%`e!exA}{lu@yi`u|`4vTDt5%Y;!bjA~(25Bq0<
z@?lg~D|v-5Dk^8HN@^vkqDoaoid0x?gh5_6jGAH8QcqTEE2$Is_-BDI>W9%FjD}$}
zQk_=n`8;{greQP-qe~cF!)P8xi?DwJ?GQ#wCFHHcXcce{Wt%YChS5%y_KNxOr6);8
zRXQnlR?N?tZeer}qhA>P!{`y{y~F6KyqDtt<>?bf-@u2*=>X+}6$b|TASJX836!DX
z|5kEtG2ctWb(cpdjtpZ|80Uxa9X|(dDVo>O;irx<VO$u-@-Q9=<DxLes^`sNj0<DD
z@|(iASjprtE>m(z7!#CCRP;BbWKtNLC-@H%Tpq@hFlK~tO&C)HpR2>TB8)4wI;M)b
zDj*c6g>gd_Gq;MFt|IxhLDUUlTo>@`*+|{58v`ZQ(7$S%snuDE{78077`KLTn^x}%
z<8CFlhcR0T{qImRCyYC_JRkJcJz>lbV?h{m1J8TIm>2L5)or0x7b)JScz+lV1U}za
zF^j`kqSXh(cqojAl`rL@r{P386PIzVt71qVRfqLqJj<;&bXJ7H&+U(eu~G^7<6*2)
zzFP4K#WjjgDn6z7wBj?0YZb>H39k!-?^0lr4Pk5y;{$FqjOW65K8#ms;_-56(WWq7
zQbN8tj2D!@7${qm+}*=@S;;Gb{?}dc*Ok8!#+zYm4fOpZ-ECoP592*m-co!=afjmD
zicHAOy{o)NOP{~5oNxRlC+-a6%P_tQ<0I8S4&#$Bb}8SjNViXwd=|#JDu&h1!`KtX
z7b+50Oz=|?_Xhq4!uVSGzChU@#y0`yoTUFjtsV;Fu##^T-`r40(+^=B;i@I5F8&hq
zV;H~kaMR&C8pg3Oj)zfP)tpdVGr{>u$w|eZ6>0rNNw?eF-!(ADMW(9Zx3_<U@h49K
zVVqL^oZ{&){#J4(jDMAIyZ_{sdEv847|XAK6Uvieq{2vtkqINq6Nj1@@_*kBlY|6e
zfe2a+cZ&D~fdGPtAS$o~F~LWJ{X>{H<!k{jnH_<v`}^zNh4q>{&RGBQ$`cd_239qN
zf(xsfiUt0yMZV6fT8n~`f>MIgf--_ij~7-D{9U!6tf2XKg@y?Qe08vU)Q$`K?JRuq
z;=*#8yu2cPn5QBG1(mtoqkh_|f-1`MRVu935Y!Yj)2Ld4+JZN#nnr>;g1UkwRZV?0
z-B{JI)Kk83beMVrwKf!t9^$ad1+cN8iGYNqsbJBz0+NG#JMHm!OZF1C1=Ivu3)%?2
z7yKY-D`+PeDHtVaFX$lXDCi{qy2`t(rK_2i)eNs&M^rPN1ziMP1>FRLwHe(Nxfgu|
zJ(TwhlwN|~0WYDK(tX)Ws`OVJz&;lYQqDg%Vv-W0OYt4-LsS{6I82eI^8~|{j}Wk2
zSIs{ooX;H>ydrp2O&18}2<{Y&;W!E|5{wnxAh=O5PB30@xnPQVUd;WS=ueDGluS^Z
zm=_gkoh1HhGg<L6#ZTgXBc}?k*Ch10LU5(}U!{0;5IapUUHJ^fYZR|lyiW1a?)>xB
zFq_1L%yX0AcI7h_X9;drw_60a3U1TJ)06)H^bO^sSe-4nL;ds0UCJNepbPF+evjf@
z#d`(w1oH(81ox}5Q1EaybDwf%BWEGWD~ma`)U;mkppwTGmkJ(YpkSHcF;10jWtOY{
zsNy4nLzfq@{L-rM_jBF~0g*XZs`Z)XexI)rtQI`Mmpu!f5v&!^`AKznTJV$-D)eMw
zm7KUv^}O|2!3M!bRp|4)lIMchO@hsW7gT&vu!Tp{_x_2M<t0|DnU~c>vZtEqvdI3U
znt6=}UAOp`g4YH7x_K)@1aAtq2|g8kCfKg}`+^SyZwYn?-d3e^b@Q&^9p&Y!n-<mm
z@4MgQ%|Im|3U&%UQR_#Fw0<n014-U<m+~Gzgjn4zU_z45RV3e|<cq+k;SZs&1bYQv
z>n<Er<bLf_vS0BV!2u<O`|N{f{0={))x&~sm3$Xi<Nr8E1V8#O&cwee9`*l67kg&O
zF+r`K@#89<Q2a^pq~K>=UVah$#=#Z*s(Svpo%|C0N1(9EB!6kDQ!1WT{5$WUI-7S^
za86JJlz@LY^s8>BS2qd&S6@i^PlF;OZ~zy``nUNJ1uWoH?~q;)fJ=V!?xEj$vxd)V
zIxMV86DI=v)!Qdj+H?;QZAR5}coQ-PctAnm&s6lx#};Zf@>SJMN#LF8|9$c-1(XKL
zXbZ~%<&?0s#Y*CeMv;eec_kGT=~GcjCB@2$Re-8WswvW^x)QFFwSd~d9N<o%4p0}E
z089kx0ri0kfs23!>f8tD3p4~80gYAZpx8vQsUkBsQ_>u05hyKzRsnAfv{Bwxv7KUj
z#r&e(Q91K;Qqozmi(*&BZi?L%dnoo)?4{Tn{wm5<iy8U>71kFFQ@y|90AQe!L5hQc
zA;3`O^gmeLu#hn7JdGW$I06_6i~`P9H|GNvs5qJ()h$j>iepsCSH}j~9^F>VQ{gyZ
zJa92^3I01vl5m#NbSc2I<RoA+O&7+0JTJs*{TilU4RaYgxt4P|Fa?;Z{0iV2;9B5H
zegyzrt>Sb=dQJmg9U3B;p~`d0uLG_JZV7yD0B!<iYW2pze^y|<IZ&8{scr>s18xUq
z19zxTK0mEYp3l#Iz6+QK%-24@Tk#&nxxl^J5BY&0<_U-RKHz@f;|M;9-~nI}JtLSG
z!D3(ua0d7Xco101V@LbvA>d))Paa&rGJrS3IY3VU%YjGOZ@>!Rv7pZlds`3om8v|h
zxJq%gV&1w2coKLDc$zH%J^`Kq)&kq$f3R5xtOs5MwrKTP;5p!VV1riauo2+feP;~u
zKl5w?HU}e1(+hzQO)mj2vsc+60NwJ=uK;<U*MY6T8*0icd3-a-z{{EKz+1o$;BDYN
z;C=1ewigw?qvYMdlLPSq@F76lsV250Z~Z9n;RmW+Y&NhT_(sLg6u$&^EBPGQ6SVD%
zAZo%@g<k=Cfv<sm9GALI!)gwb^Pvc0g)#O4;2`iLa8yGM0pBY*415dlT}gCf`3~S$
zIV3*-N7Uic5`L9`%ybMm4*UZA3Y-9bQtQu(Cjow=O}7aX{>#IM;`kz_-#DwQJHM+B
zKOX-93~pOUg`WJfW6gnL?kp$CY2a@T`rN`<HT;8mO%3xe4`JZ42riHKhu%2`M!;{x
z5<n720coH{1d~U^GF<$1!jy|32ZSR2nW8v?a0C*87eRq4h`@@#jv%7dXaw)+w(`hR
z0;6IPxJvROzrdnfVFX1Hlu^Az1SKOVtvvq}J)=rRaK#>rAuJ3pt5(L+6jyE(>BErn
z5mbnvqAJxCD@9OQqpE1NY6OgBl6)Q}sjfOR*NmW61hpfm6G6KO+DA|~f|&~oSsJr*
zBB&oh19ff~L8Az!j`Ke$MVtAzzkbu5Z4yD#2%1IEJc7QF;?@zgh@fQzSC=ks#eS}7
zYS#4ofB7f=^~j+PMQtKz%fo-TU*%Sa9U|x$LH`Iok2swo=o~?>2zp1*g{7wH7D0Dy
zKv%^nHO*Z$O^*n6)-*j;S*`gGOm_P)L+zq|D)uEm?kBH)zMHwve?VeD1P5xG-YuPh
z5e$l8&OiPxTz#oCB!Zz442$5r2riEJr{Lk5f!5JVMktPqU{s)=AHk-Oe~MwbAc8Rw
zTo}PcfpvTYV<Q+BL8_)9C+0m#F46oG6uF^^3{gHwadM#Z^@&s1)e+ni!Q2RH)G`ff
znJXgTl`m6W8A0)I=PLGa1k)mz9>I(VZjRs<j&cOoMsQOEM|KvnTo=I&0l!|!9Us~^
z21>tLhCVa3I*Wl?y)}Z{*f|m08NuzkN3*#;cXV#A<?qEE?4thuj#FW|D}uY#hnzaC
zG<{ObJlP}8k5%OJBUli@lMy@>!NLgci(r}h?7Xyq2Pw~<_wy{k@$K&|QY2ZdWJv@M
zDp?xn4@K~Bz>iLeFV{TW#3K<su_~@md`xkr;^T^|B3P}2i|`W>tWh4X?O(t?9l<l2
z>fH#|Mv%YQ=Xq*f1nVPsR=4<S1g}M~A%cw&Jg3Twiq9)<QrxWgg5oW;{R`MF%3o4^
zS&`x^><zV&zaGK%K;Ig{8_M4dlx@NOzNN|z#kUpT349jl;q#uh|NRI)Q1YSTPQ{ND
z*-O0K*cHL29N8%DjN-Ehc5}{0abA=M9ri@<Qv@d?_#%QYxrmK)PDJok5c^#OdzF8!
zxKDAv;x{~|A~>l0up+m0NXa|3{R!|br?isqxry552St)25&RhNqY)faemqckM)UKW
zjsG0MFI;b<D2U=$E|_)voM$!vZ;HQ1@J9q~>X<(x_)E#D2+k-ut@yVhPp0(wM>)yA
zfp{*0L<C7q6^;6{H>EtSn2BI~9mA64Ss>t{D8f-+7e!tkkVh2RY;sHU*osW(C~*~I
ziu9RN#}r2WYrtP-6%<8LB8rkxl!~H76fL7D9YvWaYSAHzvQZRAQ6-A18XJ$Id=wR;
zFj16K<+VD7oExgBSV@spiY%3*paZKc)uN~oMNM_6uBN=652t6HDC$PhD2m4FQ%|u$
z6!rfnC$lxwob+dSlPH>Lm3q@4CwcQ=)2*Ut9YwDwdPmVFindX7j-pEx?KHeY6dj{z
zubj<bU_LFeQ_%jdQFM!<r}}hPq?OJ+qPRX~?P}-{*%FF<qUamNz$gZ(TfZm<Xfx>C
zKWGo#Sm-}EiXl-94XSxDkF*YtVq_GfqIlu3jEG{d_Tl+ajE>?C4oU<UL@_3c=XV$U
zTE|=%#YItEbD48>6l0?p7sV9a1oMo~lPE4$a!H_1VDi=OL`AwyQhjn@y)25$qo9>0
zx=mGbh2oWpS1INlrbRJ5iWzKxw&B(&u8rb4<+IpDN^VkQ3vW<zBfGku!|Kd{uzGV8
zx2Tm%6AP`k1yQ#vnXO1SwklfJ+!e*$Q5=ZkU=;U6F*k~}QLKyN-YDipabFbotLJ>h
zignEbB?}d6|NP(mmItDEEQ*y;|FpYEad8w&lsu?NeQ6XADStRnmPN5#`6G&tDy~rE
zjxgkL-OAHZ@c3G#e6`{eifa^~ROHI=l#;%64V|Bff){Qi>!Wx!iZ7!0GK$OUnhjBG
ziQ*;o+!zJVU(a#$Ii>5EO^PI&Ia>n$qWVyLIf_@J_(TI=Wp79EHrpA+>rrftVtW*C
zMg98*yaSNy6M7?xH>2Rag>6yrPC~gp|J_fZvV)6uO^1ZH6yA;Ey(r#~;sbT2$QusS
zKU5#`kCp6H{D@1(_;CJi1MgID>~?8mKBZO3ZpF_P_b4u_>#rDJaewO?es0_w#aUG-
zejUZWDE3G3je1fkv0IAk`TmEZILw91LRkynM)4ijNeg1(`zU^h;#3s3)iYh|nIr7s
zn$F26$bVEks(4KCxZ(-LpST!S^+V|Yvqt@*_$&81ir=I7L#wp@6~&**FH&bJte(~u
z{vE}cDE^7!U#;dibLyG1im52hsh9}%C8;|1B^@Z4D6#<`-O&HU7_#u9?(fun#k?_8
zqQ2pji&*%io?(evu$0>t91E_67=0|1v~aqf@hlW6DX>teBp*c+OI|6Z;iWCmht@oD
zyMssC#TMcgjO8DIjV&~>P|iYm3l%I>wEQ~;4J=f$P+55$#VU%`EmT!fO)-BJU&BI8
zt=3Ykt(d>e&tqK+^#cF;O7a)}4fCSnsXei#7Md~tAZKe$=iZTCa|>-Pw6j3oLb0V{
zD+{fav{9tBetq-h`Jwg}I$P+X89G@01%5}xP8Rs68>`2M`R{V+s(and!Z%gI-IYI4
z)4$8w%R+Ap+g-fnqK}2X7A~?e)<!=I{Vn`z;WrBdEDW@;%ED?3gDjM)9$%_BSaFEr
zPz%E>oM&OUh3hO_Z()RmkrpOcm}p^?h4Y!&!dMHVEnHw>jD-s=^sH|_Y8-!dKs@zl
z@$C9$eSLGFzA0{C##tC|;bIGy(5Hc!)WAH@z-(<`PB$=B8=BAVi4SjRF10Yp!c;!q
zX<@R3%Pd@OVG8F@mH6ci&FqF|V?*;=LvyB~InXrjHZoUQxXQwG3p1Frar|lvn;V%g
z8<}Yq8aFay8kxC`%)v$`(%4*Mp+#eJE!)}Hu&|eIuyCV=do0YgaFd0Z7H+d}yM<X6
zZnkiXg<CCrertSIW3#5Q`LMB(CZ=2yv#?`)L=!XH!W|awvT(PBIrMB|es5w1Iq?lm
z%$*j9<%c-YrlxySGpngt*VNo=VV;HiEj(ahzJ&!A7FxKE1J~5#nwsX#%*1A9K{IoG
zws=c3^GP$l83v0jEV1w)$Gw@U+T3((ZZ2->U$RYVZrZeo-O$`Tq+|53;xY@%l{{kM
zaV3u`u2AIQK4xL1@@35ptEWy1@d;I4;K6HQjq)cIpR(|@l4mSDr(~@nL)KYXZ{b<)
zqbkIWN^&>E|JI!Jd0v%G7SbnWvvLyZTP*Cf@R5a=EWE7xD;D0gu+74&T76BCp08Wj
zs{9SbZQ5q)+bz5o_`IcLhlRH-ykjBnNuPKBC**w#A87SM#k}cbt|453E&O0%mxWI)
ze63c-ex~FL#odaZTi6p=^PBk6!dHQ^H`wkz3;R|4#=_yidO*oR#Y2ku&i~fJcY#k{
zKVsphK>5+aQRT-Jk1L)CtQ@$L%6|@&UzD(if4A@l7gZajZ2W2AFZREMj9O1|7AZNc
z__yL2Meg-K7XA(R*<hX|0wt*=Wg$OjvKDeY9&Om%Q1y7o)=xe*!b(IDHX=6o2Pn^7
z5n|z_{js@;wlMWum_9Ac#1@8M1GqL~Hazt&vT=J0Q=purP^*k0FJXf}q9iYEql}Gm
zHp<&5Yopi(e>Z1rJkr9qzSY9SZR~Gh#+7#eZDH!QG!<-Aw9!s;4r}TARI>3+EvK@L
zDmJRB-oQpf8`YFow^74JO&hgr)KjIljT>5;`&*j2HtN_QG6@wH5|;WlUJ7_48%=FA
zv(Z@HnkeQ&=-FJWtrS}*whR)sw$VnFwt<r0R(l&AZ0u}lI@;)DqqB0R>SCj-jUhIM
z+UTZ%y>0Zd@!STxyNw>IkoUCFOAC3vwSCnzh-U#C{gn@}F;EFT^FAvFga!wk;xOeS
zZH!WKo{iy3Mg%^;p9`HI@G(k8+qgi<|K+?;o5B3!Y>a1byQuEsVjGum932!pm|$a~
zjW=y<W1x*m>~<SBYLdz9&sK#K?=QH_#^tI^QJkhYRq+bND{Wk5<7yk}U_@A*uBI7^
z*Vwq$#&zm;y()BItMYi0jhQxHu(7d~nWg${8+X{aS@|uBx7y$j0~vCgR&Nigb8Osc
zW0j57Htw=<w~Zw>9<*_fjkz`!+2ETS@3k?{#(l~c9+LSS&{k%lRu?FmR)z}S-F-jj
zgTBl90VQKvnZ-7!GYQ{r{o_D;sf}eemfIkIh<(+{JZvL7(0~2)BQ_q@Y%4h*-U=~f
zg;pO^WOYd^^LW6S^9hdZrs9oswz0;>lWKa(#<NPEw(*ROwKkRxve(&IuOj*8K{hc@
z$T!#^GWmi(<#`*MSl$X%7-VygC~mfqC+xQuwcoZVzGUNNC9kj>ZM<gVbsJl4yuo?i
z%I{<<L>5-5lWe!~mW@BSxalzMu(4P5w{5&*<6Ujur#3#b@t%$MZG50DVH-ZO@u6CG
zD&~9UW96SH?o#BxJJET!a+1%LaK!fn$`>}i4ER?{PRxvdZDSu-9<D7M5gSKs9I!#_
zcj|CZ@sQ$S#cvfE$W5?(uhk!H98p4ry>~3&CzTwxaYD&Yigd`w{;btsZ2W5DHy!cc
zbynne;VAo`?P+DQtxSP~Q#MX>&9rewyCv%29}Q0_{;SBeXKkFbk+6}}lHX10Op>;d
z;Y?G{kb|(}Pwbp#<5U!fUrqT6$1CE1g%0E_6j}J*Ra+e#Mb|;hfv22Sb_@H2TdC06
z6gnt!KvF`nq#~=Ol$2KFKMYXecH?}VtAnTu%SAZ{{I}K%9bDv~JRKZVbWq7beFqI3
zRCfGXR8z5vBCA!ERC7>WNe#tagZ^7HYdNSLc-C=HS9!fa;p-(EI%wozh=ZXH8ars>
zpu2+}4w^b>=AeUvjt-hTXw%xXa?sjA3*{|!uPJiJ+c;?Jpq+#E|G$Z1zU19HskMuP
z&OwjS+SNff2h7GoH)2l*y&Uv)&`;g+8|v+#PY{(?`a2k?$^b>CqCUvMU?utS;_wYq
z>u^m@@w~u!goBX|MmacNl?xn<R+3MiNBWNm8aCF!I0xTozm0crv4ian-g0mW7k>v2
zIe6H?L|Pr(>fkm9lN?NTaGite9bD$%atBvCnC4)LgQ*U#(rqz659BKxT&dM@gY2=|
zpInY;n(knRgKHdIt5$mE|05uO?C1Fn4sKNI&5AcUnCW0v;Ljv{2QOd1n-94q&~JAz
z+rj->y~DvA2lE`vcW|eJyByr(V6K{YkTURY$6uNAO}*Fg7e>z5n+DlLiVGavr_Ku%
zXKMSYb7g+O!6FBX9V~IMRILwcc>dVu>PokKwq*{MJ9x&yS_hBNd62zQ@li!qS15T*
zk=uRT!72wEONCZDc+$aB4xVtZhV!bGe>CwVLVVisPcAHUBXXXvbFkjQE1Kk42OE@Z
zVIBw1Ie0;<&ns?nu$hMg&r^f!Rjm#24Mma{>AcV*c}YEAR%Dg`pz*4M*Brd=V5^GT
z9K50A&A^8z5qdH_uW<KwIC$T|2iiGrJ9tM4^>-b-r##<RR6caD+rj5tj#U51!N*EI
z;c}s5mm+(B&YvkK;a=}?@P&i@s(cyfUpx3p`M%a>uY=RUsO<|psWbe5gM$tZIXLX#
z4+nqh<p0*ev0(N1&cXK%e$X}Wh=Ze?Djb5qn&(^+k2^Tw;3o$s9sKIxH+A?~@fSt*
z3D+^6B8%Gi=S^n#T|LQJ{&H}JOTBuYa_~~A&}j#MYn4`>WdC(=R;yY5XN!Y`^0b4b
zl2nk2`5UzH7js5s9IPu9Vyc{jkc+SjaS?I-2C%S^^x>mIL{|N0hFsV#UjI%U7p{w8
zZOnCTOw5Jng8y$-?4rO0Ume4D?v->=sJuwAgyL&4ht^UqO1q%XvuzBqjPkNBsIwY(
zVYvRg_@;?d-bDo$e;g_xujrzZi>j)#Jya@d!>TCm?&v>E*rcid#YznqHC?oI(auFJ
z7qwk9chSN{9rdj1qMnNn+L#7c#Ou2_*T%3gssS4iFKVbr(nv{T7fqBj4fJMgLtFnX
zA}w9Ca?#pF8y9?W<)F6as<viXTl0Eb!?!n|YHP~2Gwoe;aIwh6Viz4<baHW?i{bp(
ze8N8~b#~Fk#i(iVuG+Bf%DXB5=7jWc(bGjQ7gMi{vkY|6o40^m^mVcNxPNP?UqJf1
z7@(YP)QN*!40bUja2Og8T8C-=QwQu3u7BAzqn)|k#Yk@2#rZBqyO`nP8W$J17~^7s
zi-|5S)DXswQ*x2wSjA!O%y=aiD_#<abiUNZBo|k>xKhQ*E-rI%xpKy`Oi@0Sv#6b6
zAQj?ODo#^mlB-qBr=70c&&*fExVX{9P3m@?;`N&0h9Db#W~zR(;w;5{n{RP(D`%Q2
z%zSOu|I&H3i#t@A<Kj*icPXFLtPD+eySUfIJQw$<I9KtOcK)21&wXrGhUGpN3tT+i
zMHZ@+rX`!b`vd-f5}KB{c+kaC7Z15u)z0uA)y=X0-hBJ83;q+<V|pAdQ(W%i5f^;t
zFpsQ9U91Q=m6a|YX9f<di<exy?BWUC#5x!2U93_5q>HE6B;{*eu&`CnxOhWbPM#;v
zx_I8jCbe#Gv5{K|obw@@)%2nwqh4_Fe@V8eNViu4>sA-92K+TH6w2w(;&0K#n@YAR
zGLUW9;o@y>F@|+9yyN0s9=S2Ji{U*N@AI&Yp=AsoxcJb;ZWo{PSab1_i;rD=LWk}C
z|Ii)X;Q#B#e%-HKnwiy4m3*ei|8Uvk;tLnWG5-?<tzWwS$7%AfT<mr6wTpc`99*1n
zv7al9i{ma%xH#bApo{Na{NUn{i^DFyb@82x26N-Pt@ycirgnQXti4$<J3hC)d7`~J
z;^IeUc5#f2Z12yI6YY)L!PMzsx^*zqJD4RM%ug;(y7-;Tnv0)Z{NmzQ7r$|N>|ox%
zIex5zDc#Yu?r1LVXpU5j-_g<h>EbUJr(B$7cXc#}JDT(zakrCMIyc^~lfQ`>oy<Qj
z{&f+J!HVH5*EAOy7g-kx7fBZ>7ikyEJDDAw%-&8W*~yqi@ur>4MV-y<olVX~D28wh
z62r@#O=fNUxdML~`K+@!+1Y@mE@twQcq9g5wJyevflquE#!wW48$&DxFNT5`ZhSo6
zs*4%a#mwwtwsbN3x|mQ`)3B>45ktusO2tq*hA~~u`ZDpmyP7Shi&w6QKiSp1*431W
zp==BXx*8U4Hy(qDp<E2*W2hBF?HDS={OjnNI(8LfD6^-yk}8#Bs1id}RcfeGEr#k!
z=)=M&B9(sUihumdzwWLRL*p36eOOFhH->sK)Q_P-3=L!8Uj|U5Y415dwowcj4QZm=
zZK~Kzk#5anxV)=>-PcMLHoJ8UzZ~>8LEc82RQ6k^eGDC9m=(j#F?5WfQw&$fFfE48
zF?5MxL<}Qi$aOVcWB$?6H-<lt#JVYVSL~tKGlpJDXzi_}PYk!(4y*lQ=pVxX4IipF
zP;rprU=C9^GenX3$%m<ap5kytiZs>gW=65k8x`=3aDEJ<V`$aQToA)V`f$`@xKN!h
zQoJ~ZvFt<jVJypdRr352^_ieZH|CiX!&D`cRlH2`a>Xf%45Zr?%CA(sN|E6-O;;qD
zp@hf#HA=3H;kp>E53Dnl+@N@);!TQGnh6WTH*|MziQ%>wZfEat)Q(7R-FKR1$MAFv
z&%|&?3{$$9IWgQB!(B1l9m9$k9*g0g80KoWr7_$a!@L+4Yn8F{V^|o&eOg@*<Ma9c
zJ<|KNx=8T>#Y#W=>wKP*EK%{n82(RrD29h)Sf={&7#@k?QRO{<lDrQI16Qi}gyQ3h
zs}yNk%_C)j|0#%NO$<*4`cpCFW7{n&G2jJvPB+6J<E)S2*%%IaIP76V3>#xO-@|AR
z&&BXO4{8sdhfOhT=B$q4*BD;VY<pw)I))dOZ;9b0t{5@A62pfv?2O^n7+#Cvtr&K&
z)4G}0V|XKmH)GhU{#5d9+ZMz2plvketu(#OHDC32Vt7~eyp{MqPXYhG@=**Q$MA*v
ze-gv47(Q42X$+smuv_{6g>%#Yx0OACX<y|sUn>7fvEg{x7sGz825SpWs`5<?-^K7f
zm!=pFvaeJ;tjH@Ver6_q8}l!($bV3sd%=&>M<{CbXbi_=I1$6Kz{*e5^#6$`I}N8l
zW4Xnjb-V9(Grz^~Z8!h*{?ogg-(&cL$9oKX;nlxf*g0uqIHlFoG5n)B|JEuU&M1j>
zH+(e~)1HeV5%ZtRk9dA~GKMr4v=~zAmUpJk_iSgm1jP{Y{9`TbK|JI$uu5wlqaLh4
zXVmI?C2jS0Jh*|L_dM{E6nGfvVU&kL^(pdD!b3?9r98Cp(AGm~4`n>m@KDo3Sr5e?
zDtM^qA@0F=DCeQPhex}cm%E$ay8ClxV82+M9_Gl3Sgm#ON**eEsOF)%hps(L6%V}{
z#k+KlSM~5j58s*ib*K0hk@$`t=4203%R_AsjXX5=P{%`E4-GstWZQb0dOgjhL=SiM
zH1!p~tna+i(|pm>gnF6xX2+X&Xv*I6(9%OQ51-s0zqFT`vp!y@muc>ydoQ!`>auft
znN7XS7rjg?53N0XK0p3fFGFnSp}mJb9{PId;Gv_3ZVd6z$wOxkUD$Z;dvDXYw;9sg
zOzLg!>TRNr$1lCp|5~tzho0Oo54}Cye}8;UZ?mtriG|_~8pZ$WZOZmBZTpyh>~;@B
zJPh?Pz{5ZfgFFoOa7iC?Qy;UUk9o6?Io!t-^fk@<nvs3YFc0T>817+&ho2vhf4eX~
zrLS4g*Bq=6|FEw)-Pe@r=l5RIer8BNGpV1sz{401>peW{;X)4=c}Nd6k9!#FVd}^J
zKmR^9Gd|A4cn=qIqaJ2^xWmH)4--9H<KbEky@yF2uJmw~hsho;W1xpCJe)2QpWV+~
z?qO{|^Km~j#RG9<UpqM{cCw!->Tl}wH&=U@=3%;r8Ekfcb7Oxq?fLjq{rwhJsT`lb
zCBD5={5lWUdzj_nW)C-bxY5H+9%gztGq&*K{^r;IrtARIV}O}5z_jcTUo^nn;^9^g
zw|ThT!<GSNZ2$OY159>+X)w@C8fdovRlH=Nnd9M34~sl3=6vvQw}<&27I?VF!(0#d
zdYI?ot%3fRwuc6qqCuv?Aal_mbHgArb#Z*5hx<5Q9v<-U*dYH~<BtcKN`uXa!RGeC
z=8?gE<Cl1N(8F>Mk9b(>;UNzXdsyaS+hDV?cl^)6rtA>Yb%>cZ#5_2}>=<Gm^{|53
zJgoHa-4GKRYFZC97Y;QmbHz)Cn)im9LqiS6WfjwIE?%wpgoiaso>Y8F@oB|p6zREE
z$vO|Oe<`eP@UW39zlY~NF5u3g8~l%dd==^@J$}hw@vvF>3yOTK{YCbn@|P4}R{T8Y
zpZi{A5@z<Wm4}S#Zz%phs;&b{ilXZ-dtrBWw|ioD*Yt!15hM$uNJf%mkesvRoO8}e
z1(6^EqKJSXiil*yM35vwkembwf+9%}@xT4X_I&?2b?&)!->X-lt7>;<s=L1y+#<L&
z1KT)~8Tc{-Uo1)bDg%i}{qJDIhB<pqxUM?jaiTGOlYwtD@LdLWW?)wac1wga1ws$=
zJAV)pxF-XAax$}fGq5iM`!jGL14qU4pdd|$h5R6RNU%%&)FZByf4G0lz_AP*7v%(-
zB;+UVNOhfS$HY?nS?!}|lF#sRa8J_^&~PpT=Q*o0a3=#7GH@{imoo4(S9)E=$7HpZ
zvVpSRp>@?|?tx{Uk1AI(@Jj}+awSR?x7;>d&%h1gzq-mzA+P^w{^lybXW+JQzMzw#
z?q=X#2D}=48rrWl@3R>dGWg`Q2O0R2)3~mBn1O#Xkfh;}Wd9O;EJ*9$8F(VRXE2Rf
zrYsuLHK$;*=G@aol2t>h29Jhp8V|jvrHDwKJWT_$Bn*;>li^x5A-eXj&L-`ttN4C!
zzQrl1A*7**hUc_@ue+gvui7y=n01w<L1_qUur=h-kXJ)QbN)8P1*3v7!B4h0|7>S!
z$gUxWhNm>-7M)^F4fM$+*{5A+`X>rLBMNyw*T0~K{K5;kCI%_wTAvkC*fkZ^z}JjE
zui*s^U-h=a_0$XXoEg%ho+_r{MGeI@l+aL8LlX^6HI&j&T0?aWH8hmbP*y`F4V5*N
z)9{jp@){~=m|9OASZuAVr@pSIeyXRE>#K?yg7sDT`cCARHB`}1RYNrm&FZV(_0_`q
zYDax_tiF0u-`PC1#a2xXwKUYzP+voB4RtiUqM@#aLJd^C25Nc(b!DctrGa|TK$#6y
z&4#LhhK3p%X=torctiDGL$$r3y4Fx-6tuE8Ql%QH&W%(v4b3%l*3d;m3k@wbwBt0>
z&`LvV4Q({E)i9}%TF^-CY^1I=QV$!ce2rCw#<E^CbkNXILnjT%<*X)+)x^eXRb%zN
zST8nKS`*b(LpKe5dG$4P*U&>lZw-CuAGL}%Q9U&*ENk`Bz|^^k6LU-xwX%uY*F+t+
zto|AXXc(wrkcPjSs3J{O^ZRDkrfN!4^>I^mps70DR1MWIjB}|d?4lU1VT6Vi*|9P^
zMrs(v%V(gNfzcYqXxI_JR{@OGFiyjVJ}mcPyoL!}H9G#%F_GQW;MWn*F<HYD4Zmo(
z%B!Yfnug;Ve$p^q!we0dYgn)0HJK`J@)Gc!ZW{P5n>Pe!3eFPDv%`7!(`*fIX_&)B
z*Gw(cut>vP4f8b2mk2XnOMP3z@}bU3Ctsl99alfKDrvEXcQvfiuv)_sUg&0OrC8t7
z@V<tn8a`lOSX{$0(G%D-i*q*hKV^lOD1IcQS~FFmK-$L|)=2g<w{{l!M3hej*9ume
zp8Cntsq1**nyKrx()c9LFIX_2^__+d8a8U!ByKGGjfTw{wrJSuDqm{YCVacA)XsFy
zAMW6q((tuwN{H0Ib;X?;c4^oxV|ZBH_GtKCvU>#&3hoo!FL*$(*tV1(gdF-Gk&%yR
zI4W^|bX#(aBbL`0^An<6)^J70Ne!ojoYrtg$XRY#LS{Ep*<RGo3n#gt;i8618mRxQ
zfr-(`iM;6C3`ss~rmktY&P%T&L&pvA;Zy$7bo|O$@v3!G!z~TJY51L6vF=2;Ej}do
zH2fj_j^JHaKio{+*YH5YpBf%=@73^+28xdaA9JM$p~4`<za@L)R$7woxFri_5iDYO
zs3iQeO6}PMDW>R1)#2gNaBHWSc(A#qL)YQe;nTrq7@ppre6~S)x#P}X&p(@~Ky#<w
zppKA^@j52xFm#wYI_c=FqwTI_OGl>e^j!&tbu{m7**a>hPa}y)HYyksj0@hJq-ST7
zI%MR~@sy67I-b_?vW_Y`a_PveqlAu<I-b#yN5``|3hT&Ahvtf@ppJaP^Xn)eq<M42
zL=&+P<2P3{718mWju*tCsE+6V$N9g4#dMIrsH3=)I(IpRL5QVvl;&vYD6gZ8j<OP@
z-2YU{dRZ{ho(eiD>Zs&eD~l=7Fd`dMRYx@)&B%3B=g8=IMMqsR)znc-M{VJBt|N^k
zNffl(n)P(l*U?x<6A>GTXG5urZEhslM6;W^^|CA*Mr@&@rH=NT13FsiXsx52_^{<|
zc<o&O#JJI)I$PU8u%lpNBooniBYGDd{dDx#F}S(vs$*Vr)lIOwU=P8bI(q5ot>d%i
zs*flnOnr3}d(BI-?}C?)fF7WOuT~tWV~|YI!Ga?Nhv*opW0>%x%@xyd9mEkj_&+3P
zBhx4yqjikYF;?8Dun2LSAo)ZclXRTZai06Xjww2hFo=$+I;OFO=d^=5rt6rYW3P?|
zE!1l|Uf1!dj<q`8&@ofTyE>NWn5E-Q9dGMcpkp>?xWu2YBg<T4j*hvKJyFL~Xs)q2
z%`=aKmXdz$%arnSjm~q8cXTY&u}H^a9pBA0CN)aFJ=b^=^!!rD>BZw}o*9SJ-_!BF
zj+Ht-(y>&>2RfGN_>gODd&-P?#^W*RwH~A`XUFF`ufE+o#8c)4&k7y4&Zo5L<5{I+
zwT^KOlRwdsd_V1DmP+$<Fw)mZtA3Z2n=RcFsp9!e$2uL`b$qGga~<n-Y}T<w=l9Q^
zFLZ2Te;X!m(7}#u<ha#HJ$59W$QtXvZOm$zyp>x-vE*$!3T`mkn$8b)Y}*bUU+MUk
zUE^FbJzwkS@?7#aT+2T>O+EN&S_v(*Q^zhY=UGX6bX1O|Gwg10&S>H6D&Moq?-(C9
zNzc<l?bESen$2r*KnD{EefSUm4~$$t^^o9ULH;ktJ$Z~c{HWuYj^k4HCmp8}S48ln
z;4=rEPbH^?pAlsCET_SfAjt(C7j<0G@r#%)>Dbpo@rQ<=b*yNiE(?-yH@hkh_gW~e
zrMjl$I`@BW`#Sy<{U#T97CwE;^9Qev%YW1HyYSnBtd0(MbljEfJsl6E?0rF+5)O&%
zLmezd{#eJ~yg**e^5Th(f4G%-@q!mgUS#nirx#Cqk?aMZA7Oc+yf|_=g+H%k^*YNT
zn-?iUQUwEo9xu|oNcSQ`vR*;W3tdRtImzW88|~&K`@HbG3PVvR21N;ZVF;mOdO>HB
zu&b<itl2J)co7vI^CB)J(~BHJva<o}olBFrarG&$a|df^TS_i3a(hwOiy~e;<3;|K
zs&h-#yQRwG#>^`upJ0B$0$vpKqLA=sy{OgFnK?`(W6wC`IWZL#WR@Rbi+S;)7o)ux
z<3({VN_f%7i@sjWZmCLoolj&JTdGoCl=h;G7iGO@>P0gz%6ajU7uCI};YE2bDtNKI
zrK%!fD+*Tff~m4_nqC$M5>{H(b*LsjG*PVSMIA3*VVlLXwjd+WTGxwuUNrQgkr(yF
znf?v_r!3v5G!|^)MdJCoR1$h~>Rxp4qJ<YNy=WzFZM<mfMQe$l@N6eKd3%XWlF&Pf
z-o=ZqUUU-PSuoM;Zo+$b(bJ3W|D&^PFE4ukPyECn6l$eb#(e#}=<mh6)!G0rMtPlk
z<pz2&NE8;NKG=&PUJR9h!@L;bMdTglKg{8xBp!A>(u<Yzlc*2e=6vli){AjojQ3)K
z`0#i9=B?C_R%*V_`Pe?ui%DKg7SnXWDS}hInC8Xnt(@z!UT}sNiAN2;MqPZ~5Iil`
zH#sr9=<GumAKvm}ju(G<@z{&GY`homda;CSvz7XNM+!SN-;2Dh)!Tv#ym&_lm4!kU
zd9hdszg4FAo)_<XamDNW%DL2w54`x&iydAp^WsA<)``AcaFrLUg{<HR2w{<rI78%k
z>c^bVJn$*{8sW6k^r;tXz4%NNI`DK;;yCN)Uaa@x3okZ^X{#3-rR-)m@+KjP;9G>V
z;5P5Sr(w4XNm#$~Vy_qb#OG@-zVYH);oosida+yhPB+3HA>RuoTFCQ$k4`4<_u_yT
z7eznl#SdPb_Tr2ehrBrK#R;yd*6N5CN5$c|;E%jyLTF;whz$6XDF0<oO7@iNcGin?
zZWqpr$S%<N0_Tq$E8>B%OQJK>&t6=1eVF}4_*E~id2!wKxh>>|7r%OO(~DbP{FX2Y
zF1VP?#Ij6pTulCh8;ciry|^dVKLzi5@gPxz2j~8DoQV&;c;p3(Fq??*Hz$}EO?+tT
z!#~{oeJJF^vp!_;A=&3lo|w;heo$5)d_MSn$R=Wn52-@<OS(r0J=2Ax`J98YJmZuh
zS<MIC=NuW$%JZM1@DLQ81Hw%oEFnQ3LPBUVgp}Eyq+BK9a}H^Tec%@?wjkZ2zJGtX
z=PA>;51Bq>7yqYy$R#9);8Q;26v76uRBquUd4)XVLmnY)A<s4C^C7=vpZB1Ekb;8r
z=RxAaJ{0kxj1Ogfc+S;}`A{@bMDPVcUT$9Z7kwx$*~HQ);X_HumJ(#l(n5FytDFxn
z`B2w~dZLu~;bkAHNUtjhRurt{LuDZx4HjprD*iQmsOHA3?gLNg(NxoiT0Ybk{T0DF
zJ}}Y5o+i%G)ptwrI`W^B1~Q}#eP|?vN@E{*vXO)vS~FfpIiu2CO0^JdDcH(~);_fH
zp{)-cL}}+kdmlRb(8-5askc^42~&b6+D|1RGJaPdy8F<B{##PI`7m#v^E+uzAA0%l
zfe*`k7|~kw_TlL^&O3tp_|Vsfem?Z~VKz5U9|riq=d_IWVT=z0eHg@+i$Zaj4?~0x
zb(IfVtKkeN*^z>y1Y--*M*ft_B1~g_nC!z8(Z}&yARi|9Fj2C!P7<=OwIbj9a>i62
zrup!OYn|@HYc8MR!@ByO((k0cE($q|%oIM$hc|^(U#e03rL~$P*>?r!3eNLkzL2+l
zc*lo@J}i)Ixx7x1MZy;gE?xO=%O}m!mWV=!_k4IiVHM2U#%VDB59!`U&2FQ<Xros6
zu#!XJ$4Eau@?n(^`+V5%!)hNs_F;oujx|2;3)^)*d@k8feE3upifeuNO!%g}$;>jX
z=M)t;zDp~i>}sPnioy%J$%oB8RBC2z@nNeE+eH7`hi`n??!%WpY}u8(gKgO5{O`vb
z8NL#Q{97NsbNNnAMVIfE2=v_JbM8u@=l4GBb*;nKnBVM5KH$SaAL4#w`tgGghkUr^
z!*w4HbF<<lKA3#fhoe6H=)=u6ia%;xK9_pT2jW>Dj{ESF@Do0q6w>Zzr){T%pO)Is
zxV_`6g3kGHUQ8E!_*wLelD#CH4lH}w^}pi7FaM)wwpGpAsvAE1$}QKAY<}DnD;LY;
zw(6D-zj1N-FgBOxt`GOvN8P;5UgY-t;lmvtiaqO@U0$2m!E>KWpqeMi?<}PUygHJ7
z=)+$=Joe!cujAH~;jbhy{q4gO?)>5~^_3*1gz5F9Bu2<05t98_#`D2`CngCo#qazp
zJ9MkLr>#o$I}fz<_>tyEy7+tj@cEG;T=PR0GVWUH%k?~skEi(k2>9_0A3gNQ2>Q{Y
zs3+uy;m7)#9=-tA^uzKa?1$|KpA&axUJ{Yc)z797BYs5vh>60k&Cl(jNV2M}8rdK{
zyB|6HXy`{HKc4a<rynhkq?8wY+K<vga`}<lk7xYI<3|Z;SYAK!`BB)9B7Wo-CC82A
z0^&@<R8Yi1empCQ)iLaIesG=?7gJF`p7-MgKZ^PBq931iOl6{#iG(`I^Y1txNlJ=;
zDYq6XW&9}XM>#)UVjKSO5N}1D&udI)+dA8L1wShKQOS?WerM}us^iDYepHccRX=JA
zspdy@KWYfC=|?R;S|3d=_s}FJN;Ny0oZzqcQP+=ptn{H-U;JqzZy-G3)7XzDeza#h
z{b<UtCrqZcel!!G=7KE*TMD)kY%R#@+6Y;{&uZt#&T>fyV;(K;=^(ux$WiiT>F7r%
zKRWx-#gE>icNP4thqF4Ey7|%Fj~*iS6zt_k!kWN7BK8&RC)nSQ0VF<?4vEAz5AtKM
zw4X7D2pK9kOmMg#|Fl(f8|BAnj!6LZ0~q7SSU(>7@wXr2{21@Yem@TQdAclVf>boe
zkBNRv@?)}O-w>Q4I8|_(AJaL_+Btg>afTnSN%nO?Dtu|+O!1s0_@>}&!M6kxFV36m
z$CXyrJU{09@wOie{8;11Cw{ymKJWXnRLDX<7WuK*k9Q@@O5YQ*gbP91K<p*t13#Ag
zv4YE496og2Cbv^7g|8N5gpd4KC7dQ^KNkM3@K60%>&KUz)tu^ntP|5F!OsOZ2(I_z
z3qRO~MAZzkkt5blQQ7Rr7V+6CxJ@w8)a}CQ_LU!B`|-VGzwzT+KXwcMPH?9myWAGC
zorzM!Jz`~Dk4I!-kiCBF6D84?gWUZ6xb4RuoSzk)cV->(<FFrmQRxvsPWo}mkE4G4
z$VvN@`QeDPV=g)F2eUs3p5S^stTB69B3~3dBY0NuoFIdr_v3=g_q0=&{P@|A%e<z3
z-0<U9KYkJGHNmTbbYsEm!jB2RDf~CVTY?GC--XlJsp6)^v-EdFx$DP0{?%xw?)&k;
zk3YGwv{%eN6p{Y7+p9<7`Iq2~_D+pYxDfoP6TmA0Bn6NqfLa064j?%I1e`x2g#*YM
zK(+v$mTXD@sY2`k)>Ux6(DMY47C_Zr$>{<30|*3=5r7sz<yX~+9;tc&?Os*h0DJ)y
z3mGF`bt-+cPg<oeo?rlG09F7u=B9-LFc{fy=6YFAFQwC}0tidlSsjx2nr|kOh*TX7
zAQnJec&1>3k{Qp3Q?mz<BY>v@c>h(EQ*;vQL{`d_D}dYqJR_z&0Td9DS1_MoenEQv
zUeP&7P%wZ4uc|^KJ}by<kpP|(UNnH00w^EA^8vgdO0fV+3Srq7g%lSo5x_svhEf5P
z4xo&P<pj$L^0lN1ht01!e=I5lP(^g|ib5)JJOg-HI6WDVrmBL~1gi&7BY?71v+${d
zbf_6{PLh+vJE$?|&5|9Q5vVJkBs?P6s)OQF-x~zbFo4zpv<aY50F47^B|c38Xc_>q
zWdM8=D~mL9%Qg?7MSy2`oF5R02|`b1+wyt^@MZwBCEGrLPdcdaiGl%i2%uvCodW1A
z%D@1+2<a=>Rj^wC-2><mK+gbr1<+f>$sH6E#XgcvAQjfg)KA3zf&*NKK|%%xFeHGX
z0Sx2b9>6;t)Ns*91~4js5yB}Z;xJ1-+7-tJFiw0ZGR=LMG$DYA(xXWM=g;wL!Y2z(
z5u6&pG$GRk+4mVj__YlEUk~67DM&t(!~R3^tbp^?2fr&gdLj9(06q_3eE@R;m>a;n
z0Okj<w}bjPfVZVdD+Cv?kwO-7k_%ZBz+xfq2Jl`03*_lHO9Hr@+w)wKhs|d1mIm-a
z0L#Q}xgf<4IgOJ%e3bOnz0SARD@FfEaFyU{!Gf0aofuoPM%wd<;HQFX1wZ3HAcQ`x
zldUf}OE;Mtxm|2c*&q>m29lWOFHPOVPAyH{EVxB*tKc@l?SfzO5Al4BZeIuR4d-wO
z`9t_NfbRlW9>j_ub_TGEdsGm$gV-Iwo&bsl@q7^9vkd{958y%o`#5!vnFj(mC}h9j
zd8GXygxxvHE1T*$BzRcxNB}>6@1gi(0LKD2E?FvPg#09UB7l<t-0q-GN%pksLxrAa
z12`wjmi9@^UJT$;0Cxkp7r@U_FMr$mHGl{EGcE^kMF{yXLaqjI%~h^*KNQY?73k3T
zwC833x41S>dwvuAUGTQxAA)xTOZ?`ePjW}+=dk;X5Wt@SJPg1NA`---0RG}e9YlH%
zj|2FdyLu44pQJwt;Oe0aCO(V#p8yJWRGbn?L1YOcIfz;vRhN#=0vXd$B~0Ymg3e-3
z5lj{I1hH7$GJ*(P^jJZtAhaO#AiP1md)^ZY!U)0_gg=NK9aSKRpcG`B(w}&_Wz8v_
zX1dDBqn_&$?cN_L=T~|{om7|sqs}fA4I(CPg@T9&kr_m;AaVzhUBssZa|m(}=+Bfh
zh^Iwq-Ra+z{!9@0g2*poo*?oDk#J@~rsF4*3W%woTZ&in*&qr__U8M}f+`ZkbCM+=
z*h#$*M6n>s2T?)97lYt?5{m~hqmy%YPl=#28|hh6tfd4?3ziWqD_BnOr6ATwI~k#(
z6s#FUB{5ZRZB-6}_;L_cgj5xzQY}G(sNpIPYB(PymOgLQ3F4I?UJK&&AnFEDFNiTg
zj18iG5DkK8AyqVVTiAQ9w^7hp8cdCaGzp@qkY=vloP9r&M2D7As#OrJgJ=^(+aS6J
z(IbeXom9IZI!T+`3$i7z2GPOg9fjPGZgv*lC5W!BwVRNvoq4njy;!LP>>WfOAwz=b
z8$>_x85Bf+x70u(0|X0pR!uwqd#wk%I$Jd~h+z_BxQHvnXQU`>;iw=+i_XJ`iSvi!
zf|we_G!e%Ko&8~g;6%Ymf|CWO1hKiZI?~y>+|zm8r3eS#={Wz@OwD*Bh?zmm4&p5t
zv{^yC>H4q;6NA%pP7rg0m>0wiY1{lD-VS1E5CfYA7l=Q776tK+@P&eQ7ghVQvqdlF
zLK9_);Cq~tkDZTH@4Ms!(Wxv8;zQvTyQoH8)XE?}3gU7QSAtj-#Offv<2D<_$DE2m
zY+~1f_(c3S3V!OwSsTP>L97enb65Eyi1os|boqDuH~deQThkWl{`Mfg3}UO8wz*{|
zcX38<hm0rB5q%ZJ*JAoc@Y^7UU&|PO%2|EHUEKU7)TJQyaPtph<NoARLF^TgK8K~$
zKEeG#91ueNppYK~4+*a9qK*hTD)^(|F~Q@4KM9@);-nDXLc+vQJbQ3Dh%-T)4dR@b
zC|(TWyzmQxkC!?PW;%1$!`}VOt>zc!a{m&<Rc?<Vctf}r#C2}AA?H!}H-h+;yGIaz
zNJnl89_ylR3HeQsJ^ek1Z)Lddi1L@<T|oxFC**z*4}|>b>JRx>z~xuFsK>(p7JMT3
zk6=>B*{_(ggutpv*#4{`WQ3rFoSi>g2r1%|D(DeR6HFImkw;RH8z2dTu#_)^SP1bD
z{2>HF2)dqj2%!*+5KLE5LaY#SS{93kUA=5q6$v34a#kYuVQ$nUnPPn=gghZ+7oJ1#
zDZ!kAY|qmn<Px4+@RhDkznI!}b=sC!`qjUyDj?QcA=D0`pzuN=JR3sc5Q>CQN|fh9
zC@O7W@#lrG883$LLWnPeOIxW2i-malB1o~gC?y0t`cq4WKupwIT0)fxp{$T{A-ohq
zdEr$AD+toLqL4}<R1V=~;kO!TOf*$>eX0qm9zu-}Y6>^T`kCm%!LP&Kh0sB+<|`r8
z4WXX!`XMwAp+yK2yQ&5uG?YPTB-mJR4o4}3rox-K3Wtj^TZWuJnuofoU#_IL3W3;K
zu#I5b5ZVc$-d@O-uBu}QokG|W!qyNvhtMU2_d<9-gsvfU3t?Ue^F!z!LJwZ4Zq7yN
z8A7iR`i9Uigx*qnA3>V36-}<N*4gy>hcF<786mtD!oUy)aV~XJ(?S>=!VvZ=gh?R`
z4PjUa<5<_;jNu`S2;tYO-Z3GJ3}KXrqXkR<k<LUPCOV82vD?P9gfd>T69ji1NSQ2z
zrl}!J5#I2gC*jEkkW81Bkh~tk8{$AuW@m;lN64%Y-W2l2(UjRj-g2{vICDeTc+81;
zv7hg4URj^B=P)e@;T;)=h3;r93Sn^w?@D%wAjc;$N=rldAcR#RtmYthQ+(9?=x%CR
z2p@{ua={gXD+NCi+_1<Q+mAz--A%nw+{e#}YeLBJd&(yvd>X=9;a><+{7lHY5Iz^O
zUhqISMHABo_Cl0Rf|~{NeC?%aTL{}j$Z8;)fiFYY5yFKKE{5<GCl50Agz$X`UrT$~
zm~Z$gz~$cw*(tb7a5uM<^Jd=j=3dDbsu(!K`6+yV2nRwq7{U)BoD}6y2!}cULpUD7
zkr0k@35(7fof0=aB`|T{(@$bL5&D1kL!A<ltvVe-!i_ba4S{$rg!3WX>!!$wJT~L&
zt}cb}`%Bi(AzTjO3YS9&Sqx_*y~@o$ghvwXIye6i9ti(6gqtDWBZE7Vy%oZ5j1a<t
zWGAs;zk?d_Hdjh_XQkX_jp9S)zL10)O$moTLwFbhtyG$HSAPj1e;mT!Av_7;pAeD^
zCsAZ@mg*yslSP4GqIimdR0GOD*nr1Cnt@4Il5;k7K0>A&@EN%Jt20Y83}{kHH{dle
zSEB6`Ec8=~-vBXSAZQ>YZiXPsUOJOv8u)Ez7E2WLP_}^!$5NQG8;FP)6^seS1v3RF
zop%1(<}mP-ft&`0TuI4iAisg94dgO#F-OJ;EqQ!WYHkD17|=Thvpn(VVMltXyaveY
z#ykZK>^qY3tbxJ?3bK&~ifX9?52Tb@nsoY7dYK-o2o(d*8z6s9kTw2s$usS#v_?G?
zk7&GTptymC5j2XRgn^O<?pnBKp_GBr95EAVCdwEnYv8DX9}Sc<@REUd3@kKI-arKd
zuN!#7Kt%(U3=A|d$UtQSFB=%&)4A4F3{+)j4RkP2%|LYn?MkFIH&DYsO#@8~yjMAG
zP!Cm$x|v$nz?(f(Z3A_9Im!iJ5nR?ok=HX&-@xEffd&Q|$yIA8Syn-@v5e=JJ=D1#
zs;PlyoEtrrcAE#YQ*S)<w=mFBinKD&#=vLyQ(8+iqCFKG!)#j-+X=Q8tkhF=G@Lgy
z^)}GQKqmv84RkTk)j&_ty9xGUH&e9k26~9jmpU<9RNmi2OuXZ%FT2@O4e6=+8ED^A
z_3Wwo^I8iTASTwrSDp<vu;~+X5j_nIH89M;aOu=k10xKK6h6_w`9k_A1LGt+T5ybk
z-RsS<!Z{jr7%zN+U_zhdS|<yc;+m!jneJL=7<kP!F;uo>%rr2|z$*DMef+29n_``9
z;4L9@49pWUSCB>K+0IIzZ{TgNqtmGiM1LSNVUdBwl09PJT?0!Dd}H8SP5=@8y`0(d
zzJa9%J}|J%z^4Y*8u-w_a&h>?zzQL&jDH`|w$i{yqVNa@%dX}XF`OsNtP!L_PGsVZ
ztDjM1s6f&tDe}32ja*_iQ`Z~Lb8ncwFtEYpJYvDbr_*dUu*JYuDYBj0zJYDR6Onfq
z_)21aEuknTo}a^3F*4tGfA*%+u<s1)WSb4=1_9n0u-m{M3G%(+WDf}6%Y`gtzaUG|
z`JjOx3>*^W^(je-+X@a#96J2>4#Z>Ja9E?b9T)sb@PvVrhVzn_Q-UO?4V)2v)>Y04
zIWNfH{w^8#*}z{09vf)E_rDvsV&E6U`DTDMmTc#Fsh489YT%lI>jrKZ_*LrS!;x-E
zujzJIlv~^tx$*J{je*;YFCwjX4Ci@$Bpf0he7a}gzJUj>^`VeI*`sU89Dlk!a<As!
zV&dDjQcXND@DJCx={QtgYbKk>B0O=Pp9)M6vkGPt96Md(o=ktH7QIxui3}6ZSjb~R
zGohPkVWOo8uL+-tnkH(Q@S6xo*pjC6)D9L5n&1uiArl5`FkzX<XCl7|MdgeqVj^lH
zY{E9tua|nWml|C;W9m_FrNW+=i5w=LGC>|Uk!d2kiE^{D@E9}G(jG}UO*}1iJtIE3
zgy%MqwRsl1yEBbRh<QZMD|lnFw}6Q?y;Kns&zUG_qL7K*z0|WN{^_L_O-V1zzPylD
zv8=gybTZwFnkZqSSa0>bi5Eyrlq{6`B3s*A%`238u25>TLaD_~ko;39weS^B<KE6i
zFJ+>%R9D7CSrcEH=_R`-movd%v|ln&o}p@ZDsWg#R57utgr_3g&jB~_&W|4c6wbs)
zTk|KCswS$Ns9~a->HNZyr-<_fLg(IUjHI#SytPf#G11IKa}%#fjSV<N$5TG+t?HT}
z))TBRxb3Q^p^2@%6;mS<ja}YENK--HTX9^vz_adI`lwbWTAR3N;*yCrCJ$`ml!?<O
zu8vMG(MPp2(Vmr>=wM>5iFqbEn&@O=oQd%!I-BTXVxWmZCc2vFW}>g@ya=hgU@t*t
zdzk3y@{cCzy@mI2m2YE7{aoJP!~mB+8l<u8U=t%n8De6nkYOfP_i_FQ9&Ta;hqp}{
zdEGv0Mjtgw97YR{5gf}wIG#d>VRcf86HH7oG1bIGu}%`CKH21rNLfgxnV4?kbrWxh
zspBH24Kswl#y|R(oFGgyMVW14mK)(sT6a0lZ;3KTaEG*WzKOR@tTpkOi3KLk^ihjV
zyvvy&e4*eXL0)=Vmza3Z#KAV!Y7_6v6<@}SD`csO4<yk_=j9@<H1Uy%6~ZY#>f_AM
zRh)IA<nHTaKjw-s@ri`}RFGmK2*q_KJ~y$)#P=rFoA|=S4ijIQ*kEF#iEUEjCKH=Y
zY~d7=;w;6M5EF^fNVYo*!O;_0#{b&HHym5H#&1o0XJV)8^Pgv;F}vN!EV$Ri4<-(o
z*k@wDi33uE`a!oB<Sc&J#1Rw6P5flysMPzTiDTl!m`wCZc%BgJNx_7kFr6`-n?87(
z63@e&6)Sh1b0*Ha`~tTE*=l|^aoI#J3%M;^5i2*h92S1zVli>e#C7g4CXy`NF!8I2
z2PXdHo_x%_Y2vPldnRs~_|3%c+y_Q@viA1;!4*Btb6c=+Uv)=fQaLzS`#7F_-vqJZ
zk#u7B6~Xz_JP)}rD|r7l@yNtq;yh@8XFxptv5DnvlbL9JB0lV377NK1l!dSbSjcLD
z&Rz@IETmXSvvA;YTB?Ow#ggv~N%mNL;6T#FD$b5dOt+9>VT{Zi&4O-Wk#JfYjZgJi
z@LNdF?+sW8SuiXFEtKh$Hl=y$^p`Z#!p^?RvcN18ITML(Az~rU!5Nt)YT;q_^g#Qx
z!XN4}3q>{={9X9YyrfJE6Sw%XTR7WSRi3Ip?yH`%oVk=!kmPA0#i}LQ{hV1{w4WNZ
z%gk#bpM|Ctnpwzip@4<r7D`wsD9(i}Jj=fCavpTRB84q%T;t`FXNp)TUn;=#oQ0yo
zpLdlPgcK8eQ83s3jFJ{M9Y}tOSqWQ;L)TB07A#|-tdMeo)DJyM>D5nFu<(tvu%d-Z
z7AjkK*}^MQyoz8=!K#AQ1gG><)h*O;IU8I{cx_jy<67&AQqMwtAq^}v7Q!M8g)|cU
zPzI`rt2DRJf}>$!u!WWuT3P68p`V2dOZ69fYrR)$tu3^%(AGjbrgqNz?7CWLFZ@+k
z>0qIwg-(*~Y@v&g+r2b8U+Jfa-9+gw*uz3kA-yd07Q!O*=_B};`1hCQnf+CZ{%U~b
zoKzer$fw+p53w-R!g)5*!Y~WNEo|SU9kDRN!bl5yrR*pRqb)44@E+%_g|QZ<S(t8N
zoQ3fgrdlv-`Olq5pTKEpVRe5MTIQc<VUmT(4A@_NTq4NS?0~1slfe9wf#Owz^k<r3
zVYY?0r1)zVUbpaug_#y+S@?ZM@J$QH`m0B40=N3B!{K1T0jkCTHOInS3yUqhYhj*+
z`4&ol=6T1$+Z?g<j0FrhK;2sC?>Rti7@+uBbs-lQr|tpIp#kc2QU8m(J-&hJZq?ui
z`#sC*2Hv-@)WRAIpKw-FwD6&Y<-(T<vLMq6cFMxX7FJsLh%<knTE!{%Qn2elMP6~B
z3RViLVu2|G)y9G9QwwW3h8DiG@R@~m7B+BENE<#E{DQkgB)Fcv8>s#ms2D$Oka}v6
z+Qcy*q_(g}gVbgVtp}-Gm4jO?Y_qVC)<NphAjS6Y;0`lbeQV)63tvgVuelH`<Q=Ta
z4^}M)tHFcSP7Axl#4iwbTi9dad&w^Q!82vBQ)9;p!Bf+NO9rcba((v;a&8~6aL~dJ
zlHD^{9dgNG1{v(^2~0;V{3!Y{!Q&QwvT(w}NekyhIVE`7!Ws7TMdt{_Ss~;k%#tL0
zu1HLMh`MOul7*iwTowoV+!Aty`@e;&!mkP5uy9>Sz9Fi@5T{AMTDU0+vlM^h<dN)c
z@k}`XA<7*=I^VbOfZsNRQ96u2xm$AWDD+WyWZ^FhITfB(cx>Ts?x+fx3QsKjW5L7c
zdMc;=ZHA~Mg+W797Re?HQinoT;n@V=+7L`pNOd_K(iKJxQ2~XZLWbg@N=*~g1-*hk
zLBHUvA!@@A6;kL?&5B4IL%1nO(Na*t!-BS}|2RZN6=DkSmeca`xC@_3T3*ktkVD}q
zh1(6X@O;<6>t+E%Cu&0#KWOAq$gNOap@zaU3V9SNDO8q9^D2}Ul20MOLIDoW{nY0K
z3kntzd{&UA!U{!%@9L4kY*FFQE4(12m_iBHlaER*F1-0rMbDDLOSx7SFC+Ex>3Zx!
zIl-3%%L`Jhpiog^z))u<5MOq6-iX8(<y29qs=#xzFIt{z3j7d3UQ?l#xV2TNEhMnf
zY$~LV;42Ds73wL}S7;zgV?jO%t)URs)kp{*#?r(!mEUDHQ<yPSH5Vjlq0mxzE5X)+
zZCoq=acZY<XN0%C0?%E%s?b59qjEN@t_rXGmC{N0wxO!CLKm0Q+D+lP1D@`@)*^mz
zFwj$>m+-;mgYQ;#cG|uQ{S-b|Sg+8Z<D>Ap!W#+$Id9njh1aCn&;7u?1V0W{LllOJ
zGE8B#!WiMh6-EddDL6{d8S}MS#tNUPFiByY@bQ8Z1QWkIOcqZ6=?YU6rYa=9a-a4;
zJ_%*hBkS}AGuI*KYn;=olV&O`P<Th&W+}YMXDbd<vjyK0WOk0iT;cNs=PSI;_=7z(
zF_G9uoy}^Y0{<J~mkf&(7IQgpG7LyvqVS=@a)tL4-WO%5!ZINr2-1f)l=1s99uHfg
zuu@@-!Y5+-NbqA`+2Nj53acgSFW|hvmUl@LnLbrm=f+v9@R{(Q%JFfmIg-Cn*uYD#
za93fY!X|~23a6-4$k?o~Q^*#DsFu1_aGSz*AzvzdEo6rv9lqj5F-(y#eWUQL=-;_k
zns&)B?pD~N@V&xbUT#tLDePA`BAf$tK*%A5gF=3A_3FdaVV9R#;QV58ltW$k-*d>v
z#B^NYCxsKj`IMpb0?wTdrzJaSn6og?D4dn-IfZKq*M*-~xS()R_$7raLVgy!tiUu_
z%Ch(`3RguZPlz`p`<vjef;R<k39>9bf9FOg<PSkA402E5KKFqzIL#g?{Hd_Dr2cT2
zddSV6dvX|B7=Lm9QAi0pLH>5jW)0(s@P7o8!pIUvviR_}R=$^g_AuvDGm)j3vWba$
zYS?*eI~9*$ns}zWq8^4f3_FZS7``z4VXR-~;g4B?FsiTc1j7i0vEY)gLf$kZjD_F%
zd6GeevHVGjDbXxJX1^;F42MCyJt+8AAT=6BER1*<<UFaA8AkRn@`aH<j2vM+6-KTw
za))`&Hg(aNl)qm}%^3#qX~6<#Q;G*tp9zDeykX>#D%k#yq-!<1B~dRB#&cm54WnQf
zg~E6?jKbnpB#hn3Y4oH|p7N>NhpCPCQl1avg)oYR@nRTXz3LQa`f->lE>)BW<3aI^
z5)V@B`;I>EVG57Ug!kxW!YCWYI2+?_lndh}j!YO|gi$_>3SrC*V_p~)!>ANS)v)tD
zSmiJ>hpU&vXf<4Y+tph3dqx#$(&*vN6{*JY45LOEch01B3!{4&HN&VCM(r@_gwZ^V
z7Gb<1{*A(D97f$R>PfbK7!8Fq5ZoZq7?4>$C7?+dO~Ysw#;JUvB{PhjGmM^t(|;J@
zxiQLU$(DrCo~6QQ9Y&il+J@0C%<nKge8>QA`7gRUjn6I^Khse6|NYgnLl~XH=p07J
zFsgXdbG(pD%s0!qufL1b-ZhMm*BMMydW6w4jPYSi2%}dRy~7wGJ~Z_Sqkk9!B-=NP
zey*N)<mSLI28S_3#6e*k8m^*+w4q@PlQdj(icAc}#OXaUj8USG4r8nvZHy4c9Oo*D
z_!GmJ7RGcDCxtONj45GcEu>B5TDX=(vRt10Im0dWMi{S!@w(KWXa*~t8OE$I-sEE8
z9Ckg~l0<umbHeypS~x$9x5eQ@nFb4lzZVAYzIjJ*A*Y!TDvO1@8^#h>$u>!QFkHPK
z#!}A1;pzh^PO?n0tZ2C?D+E^xeiX*4u=96hbr_$DLjG|WYr^=1i?qhS-~aRfuC-x&
z7REa9VW`iA&>`_J*@iGShVg3{H^bNz#^x|~hOtY0wuDh;g!5h}mf9M|wlKDHdXI3f
z$d{~Ie7*|fTQ~C8LcS5C+jl}(ivBOBW^g&|4r5Ok--od`jEh`H{jGgr>=%dAVH^;0
zG>jj^I2gtcoE4%plNt|)afDk(LG7zc&bCiH7RGVTdGYy4@TA}g!TwSzai91H!q13)
zR`8q@JRb&4jBr6j@=Ls+VO*BB{UUfpkWF2D(6}o6n&5R;zri{4VFn#;h4C9VWE;sg
zG7AT{jZnXHz4!Iq4&x6teuTOscwg|Y;5|Wh=K((ggz+$pN8J6m$#ee~(_?8E9ax;s
zBuoj@KjM&NJCSLE4c>vS+n6~!BdhIrX0wqZB-Mr{#3Ps{m@b$hczuKl9&rv~uFMhi
z+VI)%+X&dGWuvx@ppB4?!ZwQ7Fl?AMa@ojj!?K}l#MxOJVH@cq6;s59Eu7JqjoOI0
zS^hpqCA*CrHgekN+c68XPuZXkiww=<VfJb6v?<O%V8mx^<grn}MnM~SZRC@t<`*0~
zC7GU#KxF(vB0ej~Y$70IK4+t-jk4UjZ9H$|1sla}l(11u%CeRhUBaq&G)gXMqm%?G
zW23YX`Y@W)u&pT!SSu;%B^%{!RJQT5jS4m@N_7c0I#iNU^v^reSteC%RI^cCI#^Y@
zMxCjK?ff`ZQ=Ah@g^{X`jaO`Rx6#8!T^sdmw6@X4MtvI%Y&5sg!bU?Ijchcr(bPs`
zDgIWqB!*&Lj6lwtlA4K5k&#;pZzb5hQ__X1S?EAhTN~|cbhOb)OzmxS5b~-Z3o>AW
zcNV2f!n(y7gswKaNne_cR7|{ZJ#F-|F@zV<MsFMaMymcc2H5Ds;gy2@1X-5OEHco>
zARB{i>^+%8Xa1=rl9LdJ*%)qPv=kX(J7-)++Sqf_+0cli+?FuT7#m|Hh|^kW+XNdE
zZLF}d(#9kklWk15F@sa?M)DLJQ*BJ6GE(th+{M?tpO17ta-JWlUbFGKjl~j~${U>3
zqg10&YNm}@Hr{k=oNr^c@V5l#2+kFpCwMn8Zd+2`mh1w-cLWy-E)t~MyF%FJB|_e_
z@xG9yuKt0IWx_wSvE0Vt^Uk8Ux6k<=<0BiZY}~i;z{YADAKN%!<DfXtE10^5!#+xV
zVmn*qry{Pk@tKfyHomm6!^Y<}*4y~P#s(XkZEO+iMk=G!CL41`sdn2^&yI5Dz*ZaE
zY;5O%j8;@0i%3oreZG={-`e<2N_}nP8_p{!OWbK=myPdvfw%xitKBxdo2)&;+l^MN
zW$b9RPa^EM!Qk{^<V0}(fW@zKPrYjWVB-+G&t1;OQ5zR+T(a?_jbkjrNis$qxABvW
zlQwG9PMbSgtsAXYhtf{i{B6r=WP0h;Q{1V>sMCUHY?K_MT8>fYY@D~TZj8FXP4dr_
zXddU}<b{f<KeNAAJxn)kc&eC}ZCtVO3!~Y%X5)s9Uqz<_t=GkwB*BSvyJh1yZpAik
z+qh%nE?2q~Nm%!cQU5vL6P-mE=T93CZ9KB^mkh{<QT5&lv!Ryy*v8+YJQKka8~@nI
z9&z^eqzJMI2}Urrjwd;S)CfEgAcCwBOs|n;TGwP^wg@gaNlg)-RmC&XB1n%QAO$lb
zSQ|*yBk)GRUnDijGL$a@zxeZpyH;z`sF2jEpH5PFXmTh5L#$>5kqDv@SP>{u!V%Dc
zZv4^HmY84F@WdjBM=+sKmdpqkjg7h0Go5wO^i@$$4rvLy^OTUB5j-s<m#gO%a(ax)
z6G7ex@<ot8f|nzx5<!6o3P$i;1Vtk}u$@{cf|k`hMIv}Mg1ci>VK>6&J6WbZpEe<!
z`g{a0L{Kq;N)Z%`;Kc}DilBT1#d-KAf-(`5ji6)%r6MRTWxM>Ea(8x+iG+!bOz7nz
zU^XyTCG-m7|4r*8X3M1|rT?8$Ye|64l^J=g;)n4<cT=iHP&<NOpAJ@wpn3$eatAvN
z^=JFuS0jR6V^z%vYDr=#X6r=oN(6Nys3*<frxK?65j1eKBvk0!ID#guJ&rPQG>xEH
z1T~_l8AbC5T10Rnf|DE*4toTj^5RC&I)XM4d=$Z|2--%_E`k*itc;*NBXd~fdG#G4
z(CT^mM$j*Uj>0<$c4n`IbQSCsLAMCH3-1v@Pa!P$+E_*0CfHlVK7tp=s{RoSh~V`I
z-iTme1cM@&7{R0n21hU?f-w<{l@1P#U_=BXBN!&x;Ss)XF%%f*tmRRnkdJmvv{D}@
zI6;uv@vfDe4wEH2HG*joOcDOyQ}?G!_O%FR{7(^<VihxanId>6f`t*h8NqCEm@oL2
z;9S8u5hU6$PqK*`iEl@+KonXN4vQjK62W^BEEfIU|M7o6f~66BD9Q(dY!XW?6aHWK
zmviNgQ#2Kn(OB}9vt_N0@T3;jMDR%jRmZ7rVwxn#^8?F;(CxDbc1N%$f^}}apGUAh
zf-fT25Wz;S#|XZTU{eH}BiJTBTLibd{yWC0Qxa{vC|?TxK2Gh3fXFJCF3xiP5BWw+
z-wJ*wxHE!XLT2}I9GJe3U~dHbBFGr8ijP<OBe)my@HpSpOi#=4>Hz2Mcy&<lhX@Wu
za5#b^lI=BK9gE<o@E=`;&g91>`x8fgyxKKhor>Ue1lgiUiQ-HIXCrtN!C&m`8t=IX
z&PQ;8^RT(~7S!GG>Y_C7as-!z{45xm;PmT?@LwXh8o{*)u5*0aTMr_*!4)0B9}(P%
z;HLOc|6Rzf2!0d7;uM)~i$ZeO)$d81#Aw_Xkwxh6X9N!=oA7)b!Qb5ZBlt(eJhh#R
zUVeh&vs-&jP?IO9q$sjPLBf<Q1cF%wPc^erqwqwLJ&GJrq(zY)MLdekC^Dj0F+u53
zc%#sw|9-Oge1h^t@k(}&6~)O3$}c=17!(W%8iJ-EooBz7L1!gJ!co{lB7#vtT4Pb?
zU>M1Lj;ha@20WnBjOT))$Qi}cQ3NJBqh04`=gdQ{C~`;fOcZ&dcqxkVQRIyxUlb*z
zo%scyjiPWA1%wwAEF{R{zirP_M0hd5=b|VY#q+{n5WKbB`7weiL0%NGxL_e^MoHnN
zq9`3jnJCIiww&PqmaQO46~T&vj9E!YWx<!D;J@67x~fJ|O~mT1Cx0rc6-8}kW9Se=
z9gb%dN2B;Lin>wMi(+sTL!zi3MT02#mFA!*>P%D(qu4f4<(#A%MbS8lCQ&qvqFWT*
zqiE(v?#RCaQM8DnWfZL_irzYk2@_S@DB4BQMmQTrg~%+iy(^M;5Kg^Q6rIJ|B?>yw
z)K!ZA7omrU{lvd#6uqM89Yr4z>D*VGNthDF`-^FS;6T?}Zjy5lacC67qWC0=Poo$f
z#fYf$@}M`O`2CJPGKwitgtwaHqeK}U#h56@ve%Q;xF{w@F)51iVxrFk(I-z*lU-%)
zBt=h}rb?V?g3|?O2)-7@>*CB>$cZzfm=(pFQOu5FeiUy<@m3Ufmj{{VMV)gRbE23l
zguP>yddKSN3!-=@ie*uJ7{x;AW~n;*k|-7lU(5y4J?Y)3^BB*$9Wr<*?!749k7B7<
z8Rvs2n0}h%To)o^-kPMAbG1fsvtH^-aa$e5M^UVbV)~*aioZUeOhV_6qgW#jiQ;SB
zm_J1ESrqG{_*|5oQS6FheH33ru_20$B7POcCLvp**c!!V;i;3IW^9XMyJU9=e#x~d
z&()-ff1WBA$-?xtn7)bPTOr>?u`ew>w-iqV*)95B!97uYFN6^i743^+zbFR;4+^p%
zgV5(t6o;cYB4Pq7PgcjGI37j87z)MkQxqpSurcr_MLuBmq<CH&={v=%!~H*svr#0)
zkR^t5QJjzBeiRS5Hn}PBLPYUf6qlm-If`phT#w>%6j!47C5o$DT=G33f2?FPi2r48
zMDeTCax?1ulu2vC#5=W}Up6Uns)z$ke?)Od_<zMIGTjrA{(o|TNAX0mkK9s^h5Y6E
zu<YMa=T30?|09)>Fq<3$V(`R}7IT(oR>4%kY%!z=p=Y8-lJpodV(`Zhh(QypS5OyB
zw9qG<Md%+C9*V(;{o7OOrikGftQeH=UXv9YLrj#KI$1?TkH!#-Auc>KhFme^jv;#t
zIYfC%@M*!Eyp*yX6?aGAnHchki81rUkk@r%HovPEh=B#EJR3vd7;45)OQu1Q7+#2>
zn3$duEGqbX3|pj;FUC+jhDtHatmH2trgDNM1xpE*7AzA(*%&T#aK3^_AjwN&Dj!1y
zAyg{Ha8Z0JOU#!AtHe-M$hpa?nvm*lwgzY8WX0NRbMxm&KDJ6tQLn`C&o1X4jTSM~
zjiDZgcZ#YXL*p2l#PGrGv<5LWjG<AC?{_f!mhn_??ffx4Q9r$D3<FlDHIL!sl#FIE
z94_U_Io0`?u&0&t{cTHWWGlhef^7ub#?UT?_QGeLcK-ODnd<ErL#G(B#*r<K&M|a}
zVO$L3W9S+~w-|=UFoIpUZg!7Bujn5XLys7GO;J4sdkOZAp^uQhF_iLq2gJ}%vi$|A
z(4T3bn;jejZ(m{>62nlJ4-+zTigRZZ8}{xLH8O@PZ)S{&VYHAjG3@?6d8}~i-+iAv
zA%=-Dd=$f~7$(IqIfg%`I1_S83{zuR5W_n$Op9T<^mk4SGh%ox=A4|T&+9Sgko;R>
zdV?K|VV3YWd0A^ZgG{&C!g=bR3i$Rw(dUZWycp&Sq37G2E!Ui{sTaD+`!OsMzF6>G
z!2?s&k{I5LfrN?vOiRV|K@7`c_)z%r7*@uxLU;lb{w%mU2L4aDh24DK_i+qsctxhF
zPhwav<WoT^Yh(D#<?CYj+~tL*Dq6pYVS^|eU44^~&4PSU%hnjS#jrhwFJrh7!>=*y
zh~cXkPRDR2hOcAzCWeDC{1C&pF?<)p_c831*6tMC9m6gm<)=D*+#{TX*?lqWXZKwz
zO$pBg9^y2P;W)SV7>>knG=?8zIOh8N7l+P?#DFI_|6@4i`cS7^BJ5c%w-_#Sw#0DW
zZNnvADPB`I!hbP;b|bKzzr=7&{I9yD81}kw5<1+B;Z}?vVQ^ovzwvSi`CX6>w}sI8
zj;q{tl?Oupj^RlRf5z}IhDR~{6~klK;lDv+ai)LV2wCDz)k%VEc5)nugU;lMloCg3
z9M8s4SbRKj#N)_}BTcgDab(1y#i2`933}rQ3h@atzF$Znjy6-(xTz}S>V^<A4oe74
zbY=?2VT%$GjJnpCM4&_VIC8{M{gJcPJQc^Xsm?cDdE&?^{As~lg1H5s5v1Ew%`@nk
zHx6Px!Tf>+1PjJdNJzUACLM~z@mw4w<0uu!mZ_>Jv-$kHq><0Z@q)C94Ja1Ji!LuN
zq=ewbuak~XRX3-qeA86zD`wd^%Egg26WKEH5(hbsPTUyds1QfRI2y&#IF3qjRF0z>
zyB5dGap$o!RpO``2X7s!F-@&&l-_=tnlR0Il245|YR1tZj)rXTG^OY9)RIbT$8o5W
zr%oKN#8EendU4c`<5aH<ip2j2_07|q(Vlt8Iq%ve?mSDmT^#NCEl?cIc+op#G?#$<
zJ-UUEmVzwODvs7JZxcsb;nm~^wO8Zl5J$&2_z*k>Y`V?)q<M9k;y%x(5_O5AYaGMk
z7#>HrIJ&daI0nYiLk6~A9R1_y8Aq}Fo`0sPUU3k63-%H0E69@xd}lWw)w?aL;@9tk
z;usvqkT`})GxAS&I<@1lxo4t}SY^8EGhK~{V`LmV;`l0#QE`lpV^$n*ihrpK<`^Mk
z;~2+r7S0G$;+P<OqTr-BYVS>+%$6@pWg?#%$Fw-sO;`J;tLv4Mr^hiPj@LvfF*c3q
z^*G*$V`dzWq)BvR*!R0yv*TD8$D%milE`!7&Px#H3ZECp{5al@BQ!%T5QRm^-w{s2
z?BY1yjboE2O9WTO@e${M@b}|b8pj91mkTb7<HI;gNZBgoobUfvh)$7wRUE71_)Ivn
z9}D>;jy0~5_?qie$*vV-!F6$b9>;pgZg4%nkct?DX`_hz*>tmzErMGGw+U_+tW+iG
z%Q$MKrt(*YujBY8j>mEQEv9edxH3bXh~v9Bc8anqj{R{Q5WZV*PaNNKvdvI?In*=M
zzBoRv>RBZ{Wg8BP&(S#c&QL#aQAqZ%;1NOk&_w((j$^KJJdU4)Crl@~cH%f4#~Cih
zIBv&r*7dv+$GJGp$8jN!i*fuc`X#~3aXgu!m?#oi1rzx%aa@h#S{&Eoxar2ZA>>y#
zLc;TwYyC|KgZv@nf#4m%yMp)PxG!ZHKhXw8_%n`&oOp30ic|T^wQ{jPk%H}Vdj1hY
zYf>h%WIFR9SrD06^lg^$D?D7nDVa#k#I8*2&V(luX_;7=iH|aoo{5Z1<j%x1Qbfyi
zjv>V|p-a}A3124sndrJ8%@QODWFja$<SIrcOyR7W4oph2;Y`?>hzL(OM1_A@B1>H2
zo3&FjS+;g+cEKEiPYLGC#M46lkFEEBlA;K^hL^p%JIgNY5_TH_XL@oDASe=4a*!Y>
zf&zlRC@7$SieSJ1B01-rbIv)K$Wa7EP>`e`ilV51@ZY}UyvO%D|2cK;xzBw<RaaNn
z%+Ahq)9bNYZ>~uEb_DDgYR51;f~ru{j#_qv><HTtk-{-lwj*js%#OGn2|FH;Ue1p4
zBKO;IpGXB^wFTDZR#BXU=Ku0ac04FO`4?^#JF41IEfx8Q9S^1W!~Y4ZZbyxj&cxbw
z)Ul(z9nafQ*N%F2w6WtEJL)T@u^mn9a1AjU2p<(TwDT8{mRNm=L43@Prgk*9<4HSS
z8e%jPa;T51!V^M<QE8zp@~7=+DgKllY=ytbq{!AvVryYiY+JKPTUBUhN0pjI*q#-6
zPWV4|{M@=I#TV@8U`HQ2`r6Uaj>8vhY~6V_IT)Fp?0DIZSHwHp(M2uyMJtT0s~z3s
zqE0i3uiEjN9k1Kb!;W|C=xxUvcJx%hTf$y;^c!NlDV{7vleuq8XPtNLc+Zaa?f5_<
zb+%-WNuKQJLpugY?<f2y$%h#IRfmxSr3?}dwquA$GM6~qj!E5f#__<LWscBXjTDX&
zjuws)jurAmtotr~y!Zq=CNe#x&$VMRuSz?n+A+<J*(rUx$SgZ%*fCRl<`9F8rPwIW
zk)CwTQ^0)Tqb;q!Ru<W@*p5|pthQr`9ZT(4VaG~4mf7*?5aX*MM&-`=%ei#_Ok+#d
z<m)Nlja(dJtWllM?D(AV4Kvr;vCa;@DD&gl^>%EqW1}6L?AUC_C(^eh@h)S#9b3h>
z>GEU>FVY=SJ{HoX_-QJJ{Q3~1#84wX)H<%+cI>g^mL31tvDc1$c6?{YX*>4Yalnpa
zcI(4=h8?t{(z#4Ni|r5(t+eg1@Q9G+7hE$Xa*o>Zr5)41Pa`KX@wgogh8kZ9zZRYl
zej_|7JSF^A*lnnBhDTw?4Lfey!O6M0CjYD*C+=jQvt#^F<Gg0+g7BgpKiKi3_!V9t
zc3iUKvK>E3**nx&uEwli?6_*jA9h@~<5xR=v*Vf_zuUn8zB~G5s1X=ubQorFw%<z|
zf7<bv9e=A1kNuNj)<h+}B;O4)oWl+N#F#UATQT=L@PGq%>_~H14}B=)KuHJAX4=vn
zfCG0qaJK__4(myFOwVw@=0KLidV$Dvpy_afdSQ999mtVF7aQ;USHyv$a^(u&)*r>x
zi#br-ff5cR6REHWOXWLI;DDjxeg^^$lycx62TD6o#sRkj9uBO6QPu&6V%W>QB6cBN
zrUOm~T>n>0j)$T*rTbDbK`9J~IuH^M3nM9=SuqFVG7}Dzci=wpa;XZ;t>8d%01U1u
zZ>5R_l^l4`f$<JZaG<gSRUFpG5nNPN6;R88+7486fd7<v$idrDrakPyBRuvBMs<hv
z)PtH1)R4*hoF{K@UZ=cK$AP*IbaCKi2kJRc-+@*Rw059@YBuI1i#+N;LlKUxkpn%3
zTMOVZo*D<9bfAR;%~IkM3VU3b3~Mge2&J@i;Hgw3W1e<^Ub>QzZ5(Lt!1E3~<3L+g
zXy?GQ4m{@oJ7te-OtFZvNM3NDgOpCfjt;z(ihNPT>Nlly7GbGZ9O&x6M-KFNpqm5T
z`SeBydOPr{1Ft#I(}7+Nyv}ht@CH*fNM>0F<p9gF=9><@rD|{MaQ^l3X}s$0T?gKC
zpq~QXci;mD`Z&;6bvWk#otzI9Ky!j-AbE@f92n@pNC!qaFvx+y4h&Zq6Nfl3lqX$1
za^8}ql3C;<QVRKK2gaqc#yGI3cjj0jhsW-i!bhfV&>5NNz$6DIJ21t8sSeC^V3q^Z
z9GLFFez)yv?KI*~!WsWjW{b~rV2%TG9bnkIKNLyEm#c22EM#|_y)b%)vDkqn4t(mx
zXI?CIV3`9uo!I5XatBs8P}M{=6Dw1rJ><YD2Ua_<hKtsLP14snu-<_U4s3Mb&7Rg@
z8T`j_&!ZVfbqK!+H!HIA2xE%_TOHWuz;*{}jnJ0vzz%socHk3^MErA}$C?G7iL>DC
zlj%EoASbO4#CA!fcaH;mxiD%L*iNP2IhnqXM=kS!0|%AP`fQ9p?7$HRzHs2E1E(DL
zmZchIe#!X#RzdP(4rKT;k2~;{Twe=M2)_}Y6fTb!VeoejoaQxdqKXL~<{6FWvcr0z
z|DOAm%yYu?4qOmvKf<^u@`D3Eij1mI<dVn-nuMPmxZ*(d+XX*6@Rx(Xd$ss4?9_o@
z751C(4+pMs4-vogR2Cb@f8BvUrK}xc>{GQH4&3DaX~JXTmIMEAhc}UL;x@N^Zo($A
zO{AG9Wa4fU88qvsrJI0>yG;Bt!pIqEotLd|WDj^Rr`$**(}c}LmT4{N{#9(%M;h%P
zwly7TbQ@`$?U|EfqKJuNCJOpx6*ZA-B2SSF9><ufwv8i=uSXg;MjFLUlrYhuU$(Kl
zIRAB3W|UE2!Z2~K3A>3>Chjp&+O)oS+_6sD*O}HE>_(%EGA7EJ*w);7F)H_39?@aK
zG~qIFWI@jC&gq>-87=!~J53B7WqoyoJx&~Dcun|Bls9po3BQSeiHM1)i5~}M2Tg=b
zgiWkfA}8&L$dM8`F%xkU2@~Z^4C5nR%jB0di&p1n;JKOXB7L+myj+nACMue!Wa8m?
zPSIy`?l<v(j=g?CzA@V1&y!D#O?!|5qm7oMjkH46t3drfZ4Dl?{c$bhA!ae%iTj;+
z#6)!yS55qCqK1i@Cc2w=)kG~5wM}$Wt7D?BiB_7=dM0{}Hl8-YR^LPe6OWo`Xkzwg
z<0%u3Of)vFn;0}V(Zs}KCLUMToYym(nrLQ%NY2?yDm0&vNQDRTq=^<LTACO#+B)@j
zch2I2X8ZKDKKy56zpYKQG4YIvZ=Wjh94j;ar>wRn+KD`CqSHVtcq1e0*$#|0+M9UZ
z#0xy#CN2)h>0+Xz$V<W(h17??Rj8AAXQ9z9lOo&8CSKwER4hW?Rj#~d`ugIvjMq$5
zXl5JCp_+KzL=O{h@G>;<9>Yc(y>!%LpUi&8#GB$A&s!$mHmxsrv2l>S#ov{eIu$0q
zuk;U0^bzT6;zN;sCO$IJUp)D{rvWAgniynS-<)S+lb>^}en%U`p<Fg5Hkj5Apg73k
zCPr$s<Re7-Udk9{Vzh}dCdQgrW@5RCaVEx_n8j16m<hZDOiVE`QRXD!&Cv#nuuYXY
z!^AWb)5S}SG0J#z=$a{$&x;|SBR=260+G4GdBVgPW1$Gc7MoZk-fWCje~F2uGCPhj
z`bwd=!o(VhD^ppkL{@V#U(9C!+gcOrB(4|!{$~-28%=C7vDw5H6JMJ+VdC;rnOjYK
zV&YRx`!?Zr={rn(ER!)jBcGZ0+{BkscAD5_;xMmw6T409F|pso0TX*o>@$%*)-cB!
zv&I;^#u(p^u~zRvWgXJ>LX+MGV~wt3jW47h6+SKGS!2L4@#7}G;t`!rqbnKnjfs;c
z&YC!9;uKfD$-9bK*Wh<T5{8{NaV8a?REVr_-oyokT^3&C&LhH<A9M+`Uxr;uiOl-R
z#1#`iOZnwLgPb(h_>C)yJD3wuCw@2a+z%P0oVdq{KTKRV@u!KuxOF>mw-bLWk;VTp
zaYOv3@RqPxTkG}iwuw93|DD##XG?dYka*GyCzg%1riFNTtdZdaF;|!=v^kOGL}Br4
zVG$>CMDoTN(Q#H*QJF7`=Q&Z#iQ-O_kXRsOOi7V^CuS;)iXr9DIO}!|$Ij%GcA|_E
zWi>XB@Lr)^=n!(8rV~ylTr%BG%(#?Jq`r4Wrq_ubpXT_SNE>gk`9%Uw1f2+phZT_Y
zGLp|DW+Gcm72?8#u$&X+Md-axq=NI`XW2jCL?tJda^9SH(22@UJmExhC#oo{mJ_u_
zstT()@sJ4XJS_5v6V+2n4Uw9{(&LRfPU{WT<4&|4Z`5_7o)h)i#dw3QiAVz{9!)6?
zooFQ9IHm9jP>g&`W>Y7ci8N7q@9~DKbJmkiv~Xgax{FWGZ0SThC!Td;(s<)3;nTua
z!q&nz!e@kSmB`@dNSx>|v%M3~JJDPG1z}fV2PZl@@uGMaCth~qB_}#L(OKxtv%Z(k
zmLwF(UlB5<n-krgc-4v5oan_lk^Z_9Z;15ZNgQvjSYl5pN%Jiy-j?}}6UmsQmytBz
zmFqnx-gn{yaq9h?=;K6RCq9%yWE;KF`bgm;DdbcJhz}GFa$>L(L&QfoG17^lP7HHm
zxD&_58?`2<AFx>;o{*1{GDbLB@f7J|%vdM*6lR*^otWUnL@v$=#$?4z5@#5dDNamv
zVww}votQ6g$q7~kwi&#RoS5arZ0U2Hm@Cqvm^G8cc}|p5FmZts3!PY`0D6}=u~<AA
zz(|VAoz|mp`0L}(oLJ$+N+(uH=Won+II-G^HBPLRvPrm3$i(#`8=TlE(p;Txc4CXn
ztxjwgp?6y<AQ}0w6Q4N2yC|>-+o$p-&Ci`^Kf#zk!PxD@9$r~)RCQyo6Z@Pf<-$EK
z?04dT6IY!0*@=Tr9CG4YPAT^jCyuDjDJQ;g;!_Rgn3SVVd?~^k#Uy(?F7qql*TNIR
zZ-gg>{PD}CKMVLF*l8Be#u+ER=Si7qyP(Saz4uus&N*>j!7O`G<bo5v!`AB>+YeHH
z6kc-Taw_sC=fC$C{l$r^PTY3ljuXE+@%q{HTTcArL|~%vn-kX*|9dLy4=1iW@uw4i
zN%=daXO^<v5Wgv;ne5%)si6KuYlbJxwD!6*7YezM?y}A}TVWBnaF+{ryO1H%Cd?GR
zs9Z*7x$uE_whK9O6>%X~q^JvQljO~Fp_mKBT__=ui6s?7Z@yv}NwGj^q+F$4DC5Fc
zE`04mSr_hg;WZatcfsz0!-b|UG;_gJFmuB$I9+hL;C5ltM1#%if=8TQnna%qewTHc
z$OB3Y3PZxYxwh4HY!MftF2r1jyO409steUzDCa_X7sk}FJ?O&miN<{{RCM8f@e0Cm
zONu<;LhmI-NGeGoPnwlgyo!)tq~YC-9&+Jf7wWoDPvRrOnl4m#@j0jYHG~`?c`X-e
z%eyI@UPmNmD|~gLQD6K~7aF?IK>VMv*6MBKLSq-2xbT<@R6I=!v)vFOvN7gy7oOnh
zm}ETbLUZNvrfU3;>XR<CaG|9XhP83wDe<R;t%R*zXqScVx3eCrWX<O@F0_^2F6qs(
zPU3UqF0^;yc^5jn(8Yxp<fW^l3mwGEO|sHobm1kLo&JM#y)3h<3*B6JMJdUE?$Vj~
zstZ(DipcmLF1+EwdKVV8DAd!1UM|d2<eM(M#k1zZSQp-Q;T;$HyD)&K$%Xopj6N>3
znPjlN>%x2D@28XxL{5I4**B$pDALb`k5URNFn6E}!(15d!XW8`g+qixg~_lHE{t>`
zsU(rPqg)uRn64@{PGg=X950+8oG6^+!ekdtJF};_(07tCRh)#46Ea;fGlVmRvs{?%
z!W{9rLgq4(jby$H3tU*p8Ix<33yVco2$#69)P-dn^CV-r6lRgLk*t(LZ?f8Iku@%?
z6<H@tCT?(HBQHQHpSke43!BBaxUf}ZoA6`db{BStc>nnK-Pb2BeENTtoi2PKWtR)P
zMfSLGKxD5AOx(wp0A9R*q_c5&R1Uguh*#_U%)>4mQ6xFNbdemD!pJXOI3|8vm>k0i
z7rt>J=tjtmlP;W+E5mIa__yLWCmG-IM7Xegl5xg`UtRdkh3{QBEAO63#yJ<x%X`6v
z%P#!n!bKN;aN$P<ToNX-tZ%Tq<@|SNzT(0!(tj2%UtYj#^Q!pt<5uJ~7k+o)rVF=R
z_``+kF8t}jU+RTkDnvF8iTJnl8xraIM<mUSLT+o!w`JZ*c^RMX#$7r<2&u66-Qpyy
zkm*MLWW(l0mK%lL$d=3HMvfar#O-brbt6~2j2n4w6mz4%4MR$CH%hXC8wZaSFCnys
z8vgf;hbJ4Q6n2jrrQKivy=+OsZwr@|a<5#;bVn-2bi<kAEa(>Z2)%Cj-0+Lj75KlE
z!)`>}C?_xWS+CAfxApDcn3T9MA*?akn$q&(_qkEQjf&zF?|0*wi`F+|A8@0R8_9=>
zJm^McH=YVvN4Ga@E7>Zoni~(fQQd<Y9z5*EBW?_KV+a*DYB17`r`@ROMlCm*yYZxo
z^W6?xZ8z$;QP+)n5+4=TPxan_2Y4`zt)Y}gZZvkIi5ri(@pvkxsYo+n@?X-#C;nsd
zkokE<%gIIyi7nkozV&M5Mr${ocjE=O^%RC4lZ^qBjW%v9nruAdMq3f`c5XZ?{+#fC
zQhIwgxVDc@HvXDy*rymB+~~-on_|4^MmIOQi@&5EI|(}ry9i%);}ti$Du#2&#>7|M
zc+HJ>*`^q;3rXH|qlfq#!k)rjDK7``miXJkcZ3vsYivw^&yDvbe&EIckv?wp75Py3
zk+7fe+!TW;{gu1m(H!!DZVZx(1!)d-V;HXp4~lp&+>H@#tZ`#4SA`q#smA5024{m|
zqudzn#uzuox-rg;>2A!>QIB_Hvd9D>cZrE^OmZW+T_iV(DQ--amvb`BjTTd_l{wRm
zS#B)k%)2o=<(=oooD`ocvU#d8Uu1!h1)09sjU{fZaAT#!rQ9DxSaz96|6A5=I@lL+
zl^d&5UMfkEbxKV$*156XjSX&W<fx_@cX_bMjm>WS?8Yx{Y;j|&8(+I|!i{ZiZ08Q(
z#vwO$xbd+YyWQC1#wT2OZhY>>PId9wfAIck2HP$-*r=0pFnitD=jQ)Ga6o!eWB^@6
znv6W`#u2VwH;yUs3q>9kPlhq(xKh6QPj|^8-*EGH<GdRe+&CrgX*bTe@vR%*rFvmH
zgTHs<tZJT1>B$O7??pF$kp7b!Kk{sfU;fV+I1)AnUy&<$q*vYe)s27Lxb4PoZd{Y=
zhVXYcuDkK48-K`5_QeW+x$(D@<e?>N-b^XCG*pUrq!jX46O|@p*W_&J9^gL;&*R-5
zWO%F-nkgi)d64BnVVT(;uu*)jbPlno2e}@U^57m1y6!KanCG!JfnpwT<+By{phSw7
z^dMinKxm|NuE_z@3}%&9ZW&=&5AOBA?t#OD3LaGS!1TcBLD++c2JG^{>w(V$w+9|6
z$qR?*_aNXw(1Vc2x|&#-7Ze+LGKL2p^&sX!IS<Nv5LbFa{U#%m7vO#WDa#a!_e-hj
zK{XE^@Su_h4|-79gDTRKG5-%fB-bOthlR=F97#<NYI#uLh2ceQ59)X@&x83M)b*gA
z2h%*5?g1~x`W`ga*j7(78hG%i2PA9_MH&eU1#C?`c+7*Q9yIfyrw6?}c-(_0*rNyS
zJ!tO1lODA3;2EAi4-QW=*q-*FrT9}q_LbCI$!whx+ltWjtOxB<B2%7Ag^@q+!3$gi
z9(41dg9jZw=<Gok4_@@(B@bAtQ!1F8E!pGC63Jgl5%xlFcMo2b(nB-wn(%cca*)Yf
zM!u1%^CsuVgV7$0@!)L_-tpigrg+fXgLggX<3V3ld(Xp1Y~zDeUo4dzO!BBd^q^mA
zY)PFsz=MGv4CD6h!5|L?doWak8KNRgOb&)?ESWMwLmKJ9sMOe!G4!&#u^x=$n)G0@
z2jkUO(mO$3mYOJ%tj2h@DIQGy&w*c^W*iCHX7E~=Zp`#xmIplbvptwALOw@Jg(S%r
zc(Ble9Ugq_!6Lc(Ot-GJ#afC>JXq?%G7px^+~~mykqyF?9<1W(5??1=<H1@HUfQjv
zTYK{Ql#(>*-Q>Y$54I?b0oz2j>SCw4U1qY#CtO0Mb52e-ZcR5n_24rPKKEd!2Uk4!
z*@Imk?DpV<2j6(G$Ai5de8D0f?DJsBbmO20hdkIXen80L)DMf3P&|_2bdi7Q!B<j_
zd2n2WB3+F9T4u7&Ne@nWaNdIp9(?P;cOHE2!C4PZdyot`qsq)prn9eeDHj8h!?@_d
zj~-l7%n$O?bvfnzNjjBekzYKx%6-_2yS(_-gWo*3;lWK0u6gjg2iHCLGgbeO{|uWQ
z{pG>msYBo}lH<AM!9R*m^I8*i+k-o)EcVDov5*((UW+p&sod>Fh8H<r6!BVzkm*I1
z7lpmB$xK#GMlwCy`|q(A^&;1cVqO$i7z6TBghfh-m-He(6`vd=!{{yL#XVk(^<tbC
zrM)QQMO`oId95W;R*5bz?)AdXZz<F&a0s13Q^*P=Y;L7^yzqMA^TO}NgI-kjBH%^P
zi*jC+_afv)*o&AVSwAAeH5^STu^C2OJdtuS?7o!uevt}ZR7@#_TjV?-UMZz?oncfF
zf7pvhyqGw{s4A=`d`Os8)u^tRTEZHs+?pc0XBf3pN*$5wGmQFPH1MLM7cYA8sMmT`
zZRW+}UNjUB&omnG&}JHqy=Wpr{+Jg{#TiVK2l9j$PkYfyHJb~c6t?i9r3ho5@`Bxw
zv`#7Qyl5l-OiF31PLosgEJdCsx!Qa2LMrBYFL)rV(?JR+iu@%nI(hM~7w>t|*^2>b
z1wDmbym(pU72&JGu3mH#=`Lh&qnXBQ;;(zr!;3dk`p%gKy#s~4ym-@#x4d{;-rmA@
zgiK)=+g-Da_Zj1~edI-dFFp{b*~g2%DgL1s{ZhR8ENiPA;KfichDjVK93&hp9O6YX
zY`Dx(TDl{|M|wdot1)1-6jmFP${O!Q$<2kPdoe>P6SzX;nk1YooFbemoF?R(2Ns#>
z#Vls!X7ay9v%Q$(#d0rJcrlk#*FAT!7lR(mn#Va`nmeDDSWe~wuA+0cg<dRDU;Mr|
z8?T@xGM5UM2?u{>=_|!Id9m4xRbH(2VvQGTz1S!{nY&JWy%!s}b(Al3^rZFG6ynfI
z)@P4jW@nbWn6br+tqR-b#R8jc2M=MEv0Vy(FF@sE>7NLh__-H5y%-<FgdlctA$jqg
zAE*7;<HcUCMn9hMW1koMz4+0GOFkU%;-D8F`q0mZLtY&A;x{j@akt^zx@{-DIOW9`
zUew=XJL<)k>X-bO7stK$O8PfK4)|*>iS}tHxWc6{jOMpY$;}+(&HPE^J1<UqaYp=m
zFMbd?>%}=Q%63dY@5Kcv7oV{)>!SD>XU>dS#*gBcgqOWwW57?HY*)P4aU|nsFMi>k
zmYsRki*>V%U%mV*Aa`Jmyo`ex6+SD<|Be36J<W&8KK#Lp)Qdm8_>23S4?!RP_TmON
zY9F$FxT&)6S;cR$h|Jqwr1?-t;vFeZbk2JFaxunqJzq54hYPc;yDQw~!`(i9Ckh3#
zjl^st%ZE%KY%=Nn{KYIH+uJ?Ta(pP_gVP6>4@G^*^`Vpx_xO<KLoxMI;6rf{#^;Na
z@S&tgv)NW(d^QKM#j9zC5ANn!H|J-S_Mwaqb{`xH>pj~j>%+Z1T#Q>^#aXDVRj;Ly
zvzb0Td?Js;tzfT^rpJeKiX`_*^!w2Fd_KQ474ji0rGgKURD8mRsCX=;#6_~^Sc5F*
zL-~|`pARE{$qvmiDoVLOr9a?9CGkc|sp3ObADa2_xDVBQcu21L9BnGTmdGPMR2Qis
ztSMYu%{nx;+A`}1>-tbngnI6ewg%#l3LE;+$cM(_O@!?=hR1wp>ci>pGm_Ovp75c$
z53l<0nh#I<&_cm4`Os3NwGVB4cuJfpPy5hHeD-l`4L>9PtPjtLwDn<2@3eM4B&W#g
z!iVR5c)^GE3h1pdbnv00591G~zv#m@dl80>n`5k*V;r7iRO*=3Ns*m>=pyp658Xsw
z@u4fv;2a}($vU~$RjNA|+g$5(u)Xd>FCX6Yp@-t%5cU+(TefM|TRyxk^L-!Q5qVeG
zTezafzw75cnU1-}2O@oheTA%3Zm#i>5B+@@;KM*4{C61}PZg`xu7IvVJ`CpE`Y>^x
zF~o<VKFs!Ejt|3p81BP39<mQ3RA;2{^IO*H9VI?GRey}gSRd{`pHDB_1S!*m6MdNE
z!({O(KFqKB@2Z$8rM{+Ox(_pC&J@n_;U($BxjxL}uIR%-=K8R}hYdb#^kJb7i+otE
z_{G9yJ}mcPiTG0Chbpo{oMT%lvPj}8AC8Hvk+@d4&WH6rq|LL=PJwWf51W1X+=rc9
zCyJqKhYwr141Cz$-J1XH9NX+dB$0W>$3A?buup}b`Cw{JD$O%?P08FPaj$T<kXd^~
z))vm(C$c}KH`||m$cMu+PY90)kNNP04@Z6Y(uXJJ8C^6^)*(5rfUksK^MZXf&EMZz
zcx>PJaMFiUK78u~H^c7~L!F$B<cyT>g=bUVb3U9Gzrc-)E8%cDBY#MFx6Lyy`|uMt
zRX?))xZ=al+|PZu&H&zjMtF|H<JVJt_|=Ese0)Ys`ZXVZmutnB|Nb}m?k_X{l=2rh
ze;+FRZ2j>6hLl@;37BWx6t~tMzZ4|pwhwoBru_2GGw$-Eka)TfDV_g)VEWxMGlZE!
z{(z#eAK891@}sdIIesiJU%<v!t|ERE^&{7hJU>Eyg#9R(Zxr+69zRNp7x$xtA0@@}
zg@&-ekMi>k2A7iASiFq5!w*xWtRMG^*o6%4G~aOg;qoJpQrv!c{qXtWk-`9mvH4~4
z3%Vc4Z0;-(^jqK8r7Pk`)Q>8DRP`g~N8FD}3QqV@&X0<z%H{q1N>7RVWRkE|(3nZ?
zm-v8?Z^n`Xdr)TO)JUrN@sJ;NBr@P(ks88B{HX2+hstKJRD|A|e$?`#w!8=I*=!W+
z`cY3xeLo%*X~3G7GU)m?Evum)pDoX3i(V?;#BaUgv+bO3JVw4Lqp7f&@Nqw$@MHFT
zqq!d~{dh|JNk3YMP-i?j@o7I=iL{oBNRa_;{b=XM0zVe|@vI-u`7z0l$@Kcso(JMb
zXFuj0v39fPmGXkHgOC+E`tj|2<3&GS@?+W0g^Mn*dhFuI%M9T5=*KI5boJvSKl=O8
z&5!QVKk(yKKVI|W9ht8SdkK38yKF1^h95mSHZJ(wOuqEI>Bn1sye%)4X5VEjD`Q=Q
zy`{V>d{6kkuvsXVUba4d^p!&Xq2Jn>`^ii!Fb0rpvOXyt>c>FwLBhepA;RSCqlbwP
z7czc?A0x$+H-8@O#~44xro7|*7$@Fhfzf4wF~N_CGT+hUP@Lk&R4Ma`xtY_%M=mg?
zi_8$t6wVUP_G6A8bH(QglXqp|NUR&V<YxZ-P0k`e7W=W^j{|-zVT_J_lOId{xbr{O
zKOC3w()MG8A1nP><;Ob4FEH5XBCb~1HNv&Rq-(wS2I0n(ce5W`{MhP;bCB(Gj%|Rk
zO|I?29m0?O_{5J-{peD>@Z90nUk#s$lTg{ItX)E;?-tqP$0pwKm45}uB&X}3ABX%n
z?8gya*H^7~K8G}B*7<FL@r56k$7de(<4Zq|ahd&?`?Vjv#^zQnpLJZr_=<blLgU0w
zwiAAQBjuzYr?_ajs;g!_u+V6@&=^rUb7m})Z_Cg4@x31%0_YgPSwGJC5ey&{z<EC|
z_+bkmD}akElAC$ek6-=xfm2=D`iJk2s(eX!*^i$@t_Xh?{^Ga3UdZnl^Xu7bM`ZO|
zXz=TNzxi>^kKg_H!;kBJ+~%2LaBk+G+!L;5{3HGsFPWmbfBSKR+qECJB+gxEy-u~x
zv)*af)CEG4761acE5OeTts?0G{QWEc>0@02cT33>W(X--muhY%&B6g>2T&q_k^$^s
zWnB?D4BM1ZB!Hp;>&{fUGO6SRP)xjdN*VWOTF=L9Unwy^fPw&w07?aLj{<zc(n41N
zWdbN0z`ZgZLc5TauP!vm%>aKdV|7iF=oa?~y{Sls`NadmWPCV)NC35{<Yq>t#{)<N
z5EH*=kyWk6BBS*pqnu*O2XLQAg#fAsP%VIp0o)(J0}?9<doe3FbHpO!!2q7#U955d
zRity~=gRd^z&cZp1n_VG2NoH58P<Ek>H*XUpr#_roUz_@y!y2D7g_B9>QLlQ9vWId
zAE+BZy#VS5(11k(cvkTZg)IWe{V}7Fc;f(?h&&cRvj83splN_N0<!U)bJ4}d6LK{V
z;7JkhVr#&S7aJdnv<%=Wj$E!*0kjUF(!!z)_|BQvCcrP$<+TgonE=`bFlDi^MJXp1
z8|U7z-pf6wtp7=3Zf5%co)>>10KTI;s=sJn4B#aWHHf?*It9>~OD=#L0dxuA<p7oh
zurz>I0_e&_{&aDP(Jg@P0rUx=Zvd|b@LB-x1n_16uk*5UXT2@#A$%i%o&od{e@p2M
zV+`vMU+9uXWTV(S0GjX0`(6O=%VgLG%A$+>!vOjPFjLA$0rVG{7{Gu41_m%HfYAXA
z3Se*mLjxGjLs)DKQOqzYtU!gBB;+IH9Vu+IH)l)$V*{8VbDUDfs|c$xC5g=9<v%Ha
z$((KJQv;Zms?V^}ON{9OM3)#d<lWZS`VQ@^0A>d;CxE#DERsGifcXI|2w-6VwU-#J
zIIByH2lnP{-kbB$5@X5|WA5IZ#fn_D#Mr&WSQfx??qC622w+73D+Aaaz@7kBF@|s8
zg{y^Y0$3Zsx&YP(uvNRq29D>KqMHKP9Kc3#+fr+RZBaaxHPftDAI5A8V7p>yQcMPX
z9Ka`BEdhKMz~@ZKu=XOhom?tQjR8xIU8++_HRmoh_6G1p07rSSOO1U2?B_KVz(JXZ
zgw&5LHHe309tj|6Qu#7~uLC#{z%jXwr{cd-3?muyO#t6=*^8eH;FL(xbz1za@Js;T
zr(DV2&&jlU=Q0c6hX8)#$hqwYa4CRa#H-aUbXnx*0Dcm=BIFZ#82MMx!k1&&SEc+a
zY*pHN&wow)ci|sGiq`}9GsXYney9pJ1GvQlte5r=UHnTn&GsC1&FAd^?gWq)M4_NH
zs=`5J2azt0Anp>mTWAwz1d%E7-4g3(Sy@3O36U*FX3-#uC?*-1#9~1d58~w@UJ0T^
z5G8|%1rZM-pOG91x9cDZf-sa=DhRs>^?O802T?|(tngmpxoK9SL!876!kOZ(An#0K
zUB8|nyg~Sa@CX0>mVO`zPB>jb1%KHiXT=+7p&-IE`R8X4qwA)HE83#+k}xtM{@u>}
zazT_2;=Uj%1ko&r$AhRC#QpL%4&s3zDg{w1h}uCs7)0eD9uDG>AgTmWHHe24RxSAN
zjor?)w}#hqnbGBMi&U3hBZ!(o>+W#;0T&x@0hh!&LDUVReh>{(=}f8jAO2_%4OO2h
zY>mW+=<GKUe@xg^nEWdE6G1c&;sq&B2GJsjc0oKFM9Uza3ZiuoZGw1O-d4iofY~qK
zxIQC=ysZd(<a=EPJeShjCrJ>=_rQ#NUdq_N(>esvF^Cssb_$|%5HE=bNB#R9Fy3vZ
zi<IOzxo*1#@lFuEgXku`yYST@UJK%Nan^rRq(=~Mi1bY9y+md$Gu{$;J7qG3?Wvvl
z?^4Old@qRigZLnbK0yo(VptG;gZMCr0YMB5qF)dn1@Wdmvwsk67v$AFnlaFswd>)$
z>DkuX<3T|T4q^yTT<OepZxv5GUU<_o<AvgxUo10L94p$gNY?NmdMvk%3t~hNBZC;l
zX<25J%Fn`bV{{N>G^DY@7M1hZSd;Pm!N9~ICIzuHgk>R24q{3W)kCNe!qgz91#vxy
zKZBSa#0+-L#Sp~IAZ7*eX%L?UF*}GkT&T;9bwSJxVjiyuuGsq7^VJc%SRTZJAQlF(
zNXp`r?pSUtVW&ZmFl<>$r$}>!aHVjSaJ7&{)~ddLX&QT3FL6T<8$~t+u}y>(HV3gq
ze5>%8eb#y3p7QPx`8bGAM9P=7E<oOK>+>M?1+8a&?v%buxLdeKxL3&F$WPYQy+4Qp
zQVs@jNaS!3$AkDPh$BIK5ya6TzEnFFMC0WKIgyD;PV#jSr<8ai$j2f58_ci$pHw6t
zKk+TMyC6<0hR6!Z^s_;n<0%f}=OE7Wnp$o>NQ;Lsc)4+bOJ%unQIS6ge-vH{;<Ct3
zLe^o}FXFqF=l{WLe~;~|@Yf)I6S*e*U6}l@MEATxd^Yi4LHr#=ZU}iH+z8@k5VwN(
zC&(Y{7jQGFez|b-h;7qygMUrj=9*b<+zBErghC-}@N9R9qze&3#tLgr?j{K#Q)1x|
zvPEnmWQiod>&UPinMH)j#G)ZkWSwFm6c3?N2oHu(B4qur-5#=j9a%Dj{16I4FhUsG
zKI@(kN{K9cw-8Ow3WLa2I)pMRTUL0lkTLAk5rWBrA-F<_g%G}x?UpwXLNEl6xL4>4
z;jtBlUr55-5aUCLgb)p(u95ZZ3S-a;W9kay*5<r*D~v0@XY5&F#6w7ga991zav|Iw
zLgAIhr4>eb9($v#`$DJ?;+@JY{$V8h@4B{@O|q_4$a^4!auxH6SIn!j(%_L+4&jv}
z`BgLqc3L%rYT^&2l!rwg388t+I-;5()C!?xh+iDF5^IOhEQH5HsKY^q(Dth$^`sBz
zZlkw;2pv}%4TO&h8-~y*gvR1cc(5XURvHXrYbtZ<O5+K37s8Vvv<Tt&O5=aNv2Fo(
z<4FGTGZ{C}=2ttIU38W4bO^0N7#_li5L%~3J0OHMAv`0qt?<nd+J*3}_;Vq2U>D>v
zc{uGucs_&|Le_n!Y4T}$#1}(&DTMAJysEHH!Y(0nPGu#7Usl#DA#@E{*M2v7ldjjq
zdxY>t2(PDf#;|zL5PB(|eI*<9w?cS3gm*&d9YWs_J`CaA5Z()+PYCa;G4TVDdMB;-
zHf$tRNcx5FQ3(CTli1>5I!RcO1En);kjUT=hNP6CBExt#4_Ze(Qs#W&s1Qbrj1f)=
zVQdKFLKvS4E^#t{LI@M(oy7fLghd#WtTr`-X(3FPK3g~=6*Du0S>nmaIVpW^2=o4<
zv)Tfg3qx2G!s3)`Ns2IFc?c^)I1|G6A*>8xRS5e+*dM~`5Y~jSHH2*nUK_%vSJJnL
zuM1(l$Oa*cY!ulf+^oZ-$QD^;Y!6{a2%j)LgpWhuE&KRc4bi-sQMz(g;f@95pDD3h
zY1`)^><oc~Z5M-6d`}2_#jpI8P1k`C4u<ee2q#0Z<)$AB;YbMeRvCvCv)7(^tVGrq
zsj(du`BHdHcwG3E@N3}-VOnn1sSv&m;kyt{^YUC}aBMwR8G}Ts_0OZpyQQ5C;T(6K
zFuY-$=c>!J{Sm_T5H5spF@zta{3QG_gkeWB*e;1&7QQpPC{wN|;Ai14!mGkxg}-t0
z4B>b2DPLqPTV*}@=ufVBZlqz93iDdSjS$kqKo|`M=iUq<Eo`l1@>?NG`A2wLct?1A
zl~E{cjpynrgLqdMcZZQ1#={eB8DSJ#ZPYzmGAoQsahs3@sjps_SvU-0wlF7*A|geF
z)ESniI>m&=!zdBP{i}_VVZ6H9VEz0s3c_f<+Mr0Jc~2On!<d$zIdZk}$pl*&4gTIR
z%7#Ict<+uCU-b4c9CDdLD$X!m;%?!YW7hQg!tjStJ&YP*1i}c0Q9g|Obg*5&$XK-6
z2q`!$j0mG)#KMS+@0*{N5Gf~QFXs>2Dx`SjF!ruCD)NX#9uQKg6vl(%<qu@gWLA|h
zs;084i9Ey!5#hRhBy25}iRq{rMlFetg;6_f{UDS}n(1}Is2j$R#)a#J(U1YTnf1fq
z?Ix%+kp8GJsWb|saTwhj7pAvK7<5r@8b-4)9uMP*FxrRld>D@$$Y?HXC45rYLfA5l
zr$n9>re812V7AsW+l28<7;VF7C-XVsvqHusga1b+-*vnYMu#xEh0*KLtd3#4$kV;X
zcqNSY9?8GBpwLTUbmEGwYwH}wjnzhn1-V^x_%922;AdAG{1!x49?n_Yuz^LpbJ>LP
zS{OsCXTBar4~2bw$$IH5x5j9)#`s~rtydUthOsJ!)iJ!qi4EiH2u?)sP8hv;Qo`65
z#=9Iq7_-Be6UO^td=SQnFh+*aCyc%<&gG%XA9A!+(ifkyHt>F7e3Tkhe~|%U3=CsX
z7=vZ{0#?`%@%7(Yd^i{F(X^wd{;km8w2ca5G}m?*(-k&GIF<ujV-!4AFiz%p;e;?I
zhA~Neig2<p*$azL4dZ|Lj4)<~F)NInYYg^6FAL_aHO4f{o*TxzFqVa}JdF8aEa2UK
zPNgpiW1$Xh5zR2_thJUXTgSCVyPmf9WG>|toz6c~*tQ~!m0@fMV<Tr(W0-j=eSH`#
zzB&vBtP!pit`kn2n8w_RYYol-yW6C`8g;X64r5Cg+t(Ufh1-Z>><HsynLBxbi!k7G
zkx#?;ETyo!L!V{SwJVI>66xBLBGmVXae!-y3n`3)8t2(C&V_L(jKg6Z3F8Y5=BQj>
zthFYp=sM#|4ft3X$HVxFONAF*7^lNH5ym%aoR-S#jFZYrylri0r^LS%GB_D<CJcss
zpE4<)592}@KZNn4#EW5YCEPrf&Qrt5;j~=RcrI%uOO&wA+D~CzVQ{z1pTqbijH}|U
z)){|>@oN~rsm_ka3$BIndl(NCEkPICA7NY%gM<}`f2CXuxEaPRuG<LuNAOP=x5KbS
zkQKolb)6Zp2A>wOPIMvhbRmRy3GWtW2$xl~RyBjy6}A<QAUlG7(l>sUlM?}dC;ngr
zMItB~L2d+j5%?nrL{Kb(;`ByPTEQiRgVq@(BgmJlKuW0yjFgMLu+c0NLD>jg5xC{L
zHv)SE4sq5@#+x#oLS`-4mFbDV8v(oE3kt(X80k|0Nif2v+TlK#VPPzScm$DDg=nfW
zt0g3s7nV!u$$}Lks3`q@VI|=M|2L*`1XUua8bP%Po{iwS2p)>y;RqT>&?JIKBB&lg
zoe1hiP=m8EBdulxwIV2d$5!KPR_zGhs8nKE7hA5q@T4~BZ1p0jAHky$G*n-epH6QO
z!N5ydD<3XFZzG8u^XQe?gV&W@u+Dfaf~FBX89|E(nnmz<1W!cJTw$NMORW1X%VF3~
z|5Ci>)a*n3Y?0g&EhBg;f>sf<j$lL=TPu6vry~gOE1q-B`bI&U2wL{A?O12DjUZ!0
z+A|S6UtlYBHEUhxw07+1-mGg}ff2Nipl1ZV=#Aio2)ahlErJdabc~>L1YOkoixK?z
zdsh6O5-&y2iNQy$pBJ%_a3pj+94hg01g|K#(qQY-=pMnV5xf?`>k$-uUb62G)_Z`S
zTZ`8!TewFAG~bATlTfWiI!DFfy&1t<T-Xu3AHmz){3GZc!MhRM$hEPH6H7{7tWe^i
zYgtTZ?z|tfK8T<X&(yHA4_PgOk-ieFGxa^I>pLye=Y43SnZ4e)+^FyX&UpmOBUr(u
zr4bH}SWiJ><f013kO+oGFf4-M5zL8TE@zU}IJO8TM=(n9qazp-!JaEw!!~EIjg4TU
z%yAKnk6?mg4z9>v`g~TOf`4b`Xz{{~oDu=a^a!SkkWW)C$qZ$Y%#>@EaJG;Go5vA~
zFNt751Pi&?UbZb#r`tAXvoYrEm6D4iAXaIePw&zQmMMjtWmiV9it!Qb)xoZg;1l(@
zMz~hEE`s$U8zR^&!m=AhHVNkh(zisgHG*vsY>!|^1Rryj^tws>f7++13ZIF59>GqL
zT`7HcD%ZE(x+5j~+9%h3;Q`^n2o6PXID#Xotm6@U!Q+bH%an3V<e~Kj8;h`gC58Go
z5uA+Rd=wX=I2FOS)T3x0#di^$=9L>o-6+mP@I5c{D5^$rHiB~zJQzjgsP$}%^W0~m
zShe1`5W&R=e&Dj__83KO6qh2n96?$Xg`)T=f-4dH6~W&T{2akA5nPMl_Xw^=@b$H<
zk55=b`Za>zSZ%4bR@si+%KC%5;^~rqM!?Je$@Ru{j;CnhT6raU#?tA%5y8y}ZgJaZ
zas4NqyUN<$h0SkDawWg-Dsel4wY!Vo(UFp*M}a78QDjB=glpU#g?B_+Mijh2f+vdK
zzcQQqOlB1O-zdpojwh{cdf_OtqsWO``@kPJvxrx3*@{GQySMeUo%)m0@}ejfg*ysQ
z6vd+`5k;ve?unvg6!}pUL}73qu4FNnj}d?8YF2Sr7u~ITHj1UAC=-Pv3Nwnb>VhtN
zls8PX-5bSwI#avu*k)8rXLqa0mT*R`*RnO)C0tPu$-PndqKHKikHQ~CAc{~F;VAe_
z^O_@V!BkD|6%plfe*XTvWHgH8Rg)LCuKh$5<)SDb#n4_^?1jiZaIC}D=6qI#C>ng7
z&sLGA`#}2rG9QTItvpnc!gSswg!k|~wBB%U$*&g0Ls8V^ltz&_p3fV8KFrD4obd<`
zN~A^<m2PL<8k?QJJ&mNcM&;gM@DBXHuQ$3B&#D(i{V1M_;%W93#iLO)jG|E#qmT37
z6M1Y6mS;8DU^I?mMqgXgD4M9kV^Q#iqNSQzYrC10$AwP_n+u;5wh%I`rN~<wjNeM4
zRTR(3<p1kiN6{t<61HbV+6vnVpA|+c6ycX4S>*XBUWj5$6l0_45Jkr*I!DnZiWj4J
ziM(DxrzoaxFi3U?Yj4P((#3c=idUi-9K{fI+Ew^L6y2ie9>uFNdqweP6t9WDE@XE-
zMBd;SqWE=#!A9{diSG*E7QQ3wEo3BP*xrlceepY|t#>$mcp+!n`U*)tjG~|TM^W^T
zVu1L-C<a9ltdy2!vk@7V<V+vRwY~A*on)BG4i}CPj*McI$Y>$sTYQo>E{gF{?2ckj
z6ceJD7{yBN8&OP(qI5&+1LR@_MJGowg)9GT&eSO8i%jDL@?4A05zZ9O63!Mf{=tpL
z+!UXeaxI8rVHAsGE=zeAN3kTumqx)vrY}z^D|l&$kLg;lnu{t5J{fS0j$&;T>!MgM
z{;6<76dR-16vgH!c1YP0#nvdcMX{Z(7HR*#?c*pu`M+My&u2>iJc^wnRCZlRfAv=8
znWjbeMzJr7liZx;+8@PNQMBA>upNkE@<!tzuXibjqc{@97b)+tD2|GMDcqtIW*tw7
zUyGdJF^YV%(YU$MD80$5{B6{_XY$xh#&=OP+hnkv=Bt4C_bKIU6z9ZQnE@B0_<>hz
z42@#=k((YX#PC22m$~_KdyK&w!|g{iuSD^86gPA%KS%LP6j!;JQ%8L*ir>U}drVFO
z+wU^}5MGbs&nW&%1u!O1x6sWfwy^h2M%fr{Mez?e=P2&*1t^BRn00Ubv>5J=Aw#@S
z4Cyf-_V2xv?}}Mhhs$AMW(>9%ib|oG6+^ao;gn+Mji6&FlFCgcCZC8@EQaC=yGKZ|
zgh<I4@?+Rp!6=Bqh@q6kb(vOo#0_etC6*C#w9LIX2JRAep+jg2okF@?F}TGSwJxB^
z=8J)Mb&JN}k74uetbnQog&|>B*zQ7lgpn7l9ia7v{8-F-Xly)&ga~=L7|N&keKAxJ
zub5K!Idi2L9*m)Zs#T7mN(}X4s2@Ysn6+o}R~xMS^2<f4#qdxJBoD{%NDS2#Ut3s1
zSX21(;<Q>KjI1NV^tv%5#gk{OYPQWr+3)iomDjV`;6~9nh9)t*6ho&N9*d!A3@^mc
zA%<o#JRZXnG5({$n&H};4L&M`cSCwIh89vbKUkz?3?FVbcAm>`FY;6jPsh+oyftS=
zgaK_to{6EYNG)F`#b;CA=U7erxstYIwdZ-3&*itwMMrh?qOi?6Yy5nDoWI%V97C5F
z=Eg9O(-OlgG0cha-xK-><x+mv7(U%>bc>;T46nxUS`33?7#zdvG4zPxy%^q);SJ7k
z4DZCyJBB}or}g3|KQZJ~PcPdr{mmHG4^87cqPJtX_ga>(RT^Kx>+VR~+s>;0F2|N_
z<170IG4zSyqZs<f(3j(np&!j>)9Lc&T5m8I%tmtGu(Sa&42&UdQkuJmtwvAl-40*1
zhr}>6h6yoDjA2*|!($i|!`K)`#4s|3(K_nRjk3>gHfqMQM)7pCOy}E)HjiiXEfy=V
zyKylb8EReH<6}5}#(I}EDTc{0Op9SU2i78eN(_hlWKC5m{$V)PQ?hKd#EckbN|_bI
z{u{P;E|uiFsotUV@Fy9wxmxl{JX5AH-;1(Z&XV-`F|3GTWenFh8w+AssKiCW#lj`R
zrNZ1T#<Ccer}*RvHs=<j&K6_;?re6kCWf^!w2b4aIM&55`%uO)4x6(rz9EK<F>Dh5
zRJb{YEir73VOiPCSKdo!{I(cM9?#ew!!uc#bDHMu;CXMF_i+rL#8B?;;?GwvPV=)E
zKIb`71*RMn*(Ka9+#}p8+$Y>GJix2qPzF;D$viBic|_!k7><gxxt{xF3`DxvzKY=z
zx8)eVj^RWM-^6e-hSM>eiQ$yuzm4HLUfNf!U^dR`Yg??>`tM^n8^aIW-nnwN7;`!n
zfB$gCxfsrC_AUq+b}@$Cif0VdbGBOeQw&$QT;nJb$ImhR62tFY#xY!t;nx^`i{ToV
z{TA!$W(Afdxl+S+-&TW9m$)9opDLamx87Cqk-mS){5yslG2G-<qdy;R@uXk3M*EMv
zw_~`&1sq4AII`l_hL9cy;>e7{_fPg+aoin8h8oSw`B}U_`N-jgH(t&lu_=axdST@<
zh81{2q^CRN6pbS{j)&sBH!|{Ae^c5$ag>hZ)FVbQ1s4~V5SA3?3k!sXu#~XbR-=qa
zK*%o2#&K^PcA1ViJSp82amL|_!!6F&J~pO!W%`7EVe-{87)L0MuoQ+>iX#$7G>%vt
z@i^{_qXOqs-g3g?4_Vd9i|0O6C}~!dd4C*9vvHN22U7gOI4Z|cMFC8#n$pRurHVWf
zNA)=B#Zg}hKSQVyM@{isanu#5EvzH#wDsS2m0L=offQB?RLFlcj)rkGlJeu6%oZYz
z<7g7cV{we$YBY`GiBx<uk;jE}H5Yj@WwIa}i##1it2jPR;FAPe$I*sMB7uwqo{6Jv
z9G}MVSsd-+cs7pr;&@-_&&AOzj-Rs9{zqne;q$^5;^-jKF^<l0bP<11_);95MA+|&
zt;Wl7yb{OjarB6zYaHF;=pM(bieXr?F)W$#S{&p|d_$zC>d=+ciNm)Pc{2{PXWm=F
zw}tP-(OZQ2yK!u&no06O9DP_Mj+H!XzZLEqN6~G@P!;?zj(%}`6i5HmI0uOgh+|+%
z`9s4PEOSU4Nplzn5XXo(M#eEWj(Ks6;^~N^#U0zMIL5>=HjYVgOr~DmHctA4IL3=m
z`LtU4L~#<POc5uU5y#Xxro}N`Eg4CjWafY3>75<Noc}2E#TUe}kY{0c5vDAPV{shI
zc|z625(O+xnG9I=pL7=VY%^BHv5DtsLC)$phTh6#TO+cTuL2_LQ~HKDHl}!$ZPsbp
z9LE+;5&1S_tH?IZ*mmI#uD3Wo5l_Z2<?}dp#_>xWSL4_f$8IjLIIhI8CyrsNc_@y(
zaqQy?&&WAZu@G^;_<=YMicp!@!Mb=4$8jW%FXA{F$Cq(@AII4^j>U02j&I}mPW^r*
z{6_e794ACde44?VXPy*iol_!fwi%~W%9%K5()Infg-OmyzZl04ahy*DUx?#><9|%?
zOL1IQ0Ba__$5n@=evacu@n7TkEsk4p{1eAD2Ippmw_ES}e&;e%?)5lsiu}n9e7iM_
zzhwR`ypi%IU3@OXyoJ`yY;SYN*lyerrX^4)f%Jr>Ac1+?4HCAyq`be~$V|YNz!M2H
zParFS!U;T-z{3e-Cy<jsEP>$ubpDo#4;E+TA_){tAUA=$1d1iB7nfiH#S<uzfHMJC
z0woj3m+nZQAORzRvNB60a8Ckd#F_Ptj-_-0NkU}6y$RS;!8930G!tMLIh#8HUy6G~
zya_Od>3*33Ax)-)#KS`7MiPkr#~V)|k-+I4Ipri)5-%^jPgo&=iXx1;U*v%VhV9Ly
z$!ZTKP&rk(N&;7UXH^weW7*-EG#^QTzj=Q&frbjJo<I$enhDfOpmr*^j>s>Xjk*cc
zlUZNb;6E<**s-(q?y*q<jir+}5qT_urYWUa0*{MVyk)%selmd;34EA9zXV!Je=32e
zMJoSet&>&>>j@X{^Hm^$Hr)RcXq!Oy1YS*`T>{T0@L~clCGeb5UP$1_*E9b|ygjFV
zhw;2P2}^a5x1*3@{4oo$lLB6m*g1hNA}<SfUa<nYDxjM%S&gMGy_indYn;FYdL-}$
z2dRK}mDnqRw-R_efj4C`vU;nWcf@-O6FUrwjfJfCo^m<J4@CM1+wU;?CO~AsM+x*#
zU{nI5<r*LyoWQ^Y1|`r-F$|+g9Fo9L5%OUP3>P0E94Q=h!P<_d?=bikg)s??O<-IC
z;}ck!z^Vi$q;h8`FfoBiGAAc6ErIC?Oi6jCa&_r%z!@U5Qu<7h-uHq5>}5^@b4BJQ
zuqa_Y{&K#|1;T|we#pbf#R)7)U}*x&5?GP2K4@ZNfb|iOx=5OgWLurUdgZPWt`)8m
zCU5DyA%TrDHzlwofvpK_mdV^?z_tXoC$J-7-2$3zqwZ0h#7`6WEP?9fP@^0^Phcl^
ziE=Q?VHZbO+IB60-xJuKz#bLco4|Rl%ys$u64;->fdmdF@Ll5nBkMb$q$t|1m%X|>
zv%9bhvRjCNC|QC`?wRhH>FEU&K|~M%6;wotf)WKpQBgqzMGyoNh@u2Va?UyDoO8}m
z0r_t~W537m{O8oU=hm%TPgPf%-3i@Tu~==Yj?LAvvpRN3c1v|^6S7q*u6aH^c-Y<o
z+a<e0aQ|YpJ4veJKy~a9KSS-Uj(x&ei&@qpGVSNCcRYuM91%QP9mgEKqQ`YYVxFvy
zQ(S)4ai%&hiNZK%tK)+3b37cXBV~yloIHsat0T!TSH~6M%+f==E~9a`I{vAS8^Sp_
zH-+31{Hr?t7IItgjvzhPyQkh0&L+}5_K>D{P(TQIst|Z^pQGIGL7Kx$Em1BH+#Y0j
zkm*5D4{|-o^89=D=6Fz0cp*p077~+-DlEK+-~)oZ<z{8)zH@XI^WZ@bbSWzC!9yNY
z^q`UlB|PZ3L_I8e;YadHdiXSfyiy)qK9x#R+5@Av>k$tg^`MM+cwK{DwBNli>p?kD
z$_rKy94eh*>0=&L7p1ZXu3c$NRfJR(tS0!l;M=tdcs%fW;Pb#QRU#e)gfLE6NYI0j
zqi7yXaau_ddJHLz3dRKEf~Fwjw7=@&SCaBQSnI($4{CT&(}P+bJmJBM9!%Jt_M`{3
zJ!t5`a~?d!&L`5Do)J<<u&&_K9&BEs>Iu?N-*G-Gq=6tyS=7jb3u!6ix1~KV*~Ws@
zn|RPv_zQw}vr{O(<UunJntSlF2SYp<>cJ}>yy`(84?ggqg$JJ;b#?Zj3oplmmRuxH
zyI=R9wFhm4zaiMlgWkF6{H|<U5882BJ$Q>F$uEC;@TLbHJm8mUe^GAMCEDK$DxLne
zRAjAAToO;aXD)HEv~RKW-qQ<r^`M6bJsER);cgyu_n`Ql0`Exn>=H$hsh4Em^Wa?}
zy#+_-q=)=DEPY?H-`y&3Z;ATQgZ>_T#?`e{edIx3c1HLoGC}=3_*Aki<zz9D4DjG{
z57vL>8gwOdpa;)hO#9NqzjIuJJoth`aXcfiuRt;t-B4h##Q92aWc4CndoYaK%7Z^V
z81BJ09{lLRD30V(HE~k*2oFYj@T~{83S{<Ns($d`JK^7Z_*PzF8i>98ZkCSr;3p3j
zFID3`7~{duV*Aa5UpyEwA$xk4Lce-I=UCAPEmgL%RI%bXQP>>$1mP0}8ETRTe|oUM
zgM}VUX7DX(vptx@Rqer452i`L86M2^V7hQd*tb;mKbuCvk(ni(yt-7SFH_?$xrSUw
zo9n?m59V{_Tu3tur9=y*kSt<k57u~~jVQ3hgQXmVl=PK?%LG>lF6XhZOtI*j$%Sl8
zNna)UYQf(!Q*M{d4D2h!4YJ;Y?H=s#V1w+Jje^uSc`!JbzFBaK2U|toCP<xzogVDs
z8R$i-7rQ;!!;!D)irh}y%bl2?eUmHS%-QF`eh&_KaL|LJ9vt)FkOzn9jJc0^&^0|f
zuuRoirgAD5X}wJKUZ#$FaDw}b7wAs!(>wK~2WLDu>p_Yy_Y_yMFZZ;pgf-q=D&Oz|
zm#K3!dvnhV9`)v4^kDWfbxDxqvXCo+R|T&LUKhN<j;(dmR;fbzEf4<k;BTHA#nW$l
zaF308@ovS;J09Hi;2&vsh?bJPFH`T=a<(p0YxifIU8dkg>n&+j=B6;+=f(YA-p2{)
zUQ|BgD(r>J3%3_)xhmvEh8LM$6!c<Bc4n3r6DsGpb{FCxm>p91g}nmH)udc^wih{G
z`=#OSV;NPKt7n$0B3}EauMc=p)Qem%ik)?JxRy4fbUI0%WR(|fm#fjCBE`LU$cv*E
zj#((-MM*E>8cYqPym;7)PXhQffYM$(;>CO)7WnX}7iGNI?8O!@%6d`Gix<3j(Tnn4
zRPe&%h1ZLUUR3hp>&dy*ym*Wk<wX@Qs(S4QtPEJLrY={VM;2u1$>oYj<#8{ni$8OP
zVwR%M3qO0}h3Q4Wi=dQ-ykN!H3fsUSnis^d6h#DeK|?Sq7!zzJRah$_*`{7tLh=P`
zcu`YGEiaxG@`M*pdQn?=T`!*Y;wj;bP{)hUoM`pDsPE{{2w@Qov^DUep%>42(MYmQ
z1fLgd%&8HQtTNn*#vcg0<V7<s3@_Sv(cFudIj3H<^x_pSUiG4d)MD^OD-_KnOuJU7
z*S&bdi&jqQZ3+0mN)=mad)j)@j*F*)>nAa^_o8%_)bG7`(~AyXboAN}GV9~T2VT78
z#oJzV5?e39&R%r!qN@|RhZo(1clY8QshI2oBarlTiry8{Tkt)>_XV3ve?Ii$BQL%Y
zrLPwsdofh_CtiFiWRMsAgfQj+A^kb#j?#Ul`ds)x5t*g!3opL(VzB66Ii=Kx2>(Jn
zUke{5I9!kh1{vY-kzRc3@bA1}5e+}cw)#<Ul;CJV7IC|c@#1GMe(_?g7n8j9A9%k?
z>DZO(cQ1YuK2C7F-~>TdoajX|4xN9n`bt&)MDCwnOy*2+ReQ12i)CV-COF%R>0Znb
z-e9f$xAaWmv$#0druO<JeU2A%y_m;M>ct`{S|CX0LNAh4Xrp<t7fZY#Pl{CNS?<Mp
z@vrb=r5CHbSnb6+3C_|rUaXbUWQ1guByMn8*(hX_Q)R0c+q}?yFnrkV#SSkndvV2!
zonGwnVy_qbc>a5_M{4nb=4@r@N_B6g;#=$cy*S{-NiR<E^joDWuTmRd&O6AXZ(RBz
zFAfViB6w8rnBZ~26N1JnMe}J6#TNS)H*ZbJJ;PO(mUUL}oZxxE3xXE~X}IJ?ja7=|
zsu$P12>GD-aNUa=UflHJmKRM|srOgef0porw!gSYRw<v)#=pI|?Zq80?(*35p|lVG
zcyW)%vJZuQd?i8wA6!1TeMt4$2X&et1n=|Vej&5}&SPRJQ@Rh-Niqbpd?+X+(=iwF
zAzKvIrIQttL5leBfRC?wwpi4MTpx=0@SqQQqA017Y%%FiVsX*g9J3{am-L~OV@?Kt
zL|UonLnXcn_)x}&vSMIqc^}ICCj#SCaOyth=#TqQ*@r5Ut?ENHM`vf4Sf#oT9wFZU
zTu!pc@59Td3kG}$is6+O_8&hRa}f3+;zPfUsefH4#Bb5CCogSHi~11rVWbb=`VjZQ
z^x-`p-uEHlgXP1MKGgQvj~>YPp%$GzUHpba4IgUyK*IFrD#Z`4pYYiqVb?xpZ}X>o
zXtr8aKkTmKLtP)9_Mx5+U3}>3!!thA_u+LP-tggB9~$`3oL%*yAs4`}?#4be5%Qc5
zjeL0ChfS;0y;X`uB*dmZyy(MAKD;2dYO8IrnGZ=1{mhcTBIGr}R|Q)*MKrV&PC~Jj
z53PN8(}xZ|v~l$ILfQ(plRnVQ#P}T@&)Yt{<rtEsoj4#)X|iM8eCR1kcSnCmNDo1_
z-pkS7^`W=$WQ0CGeBi^!K78WChd%o^iOc4@+s<--<iqEyRm=HB`uafpc5ddUGQX{s
zxW5q6Pq4oap9$ey3}6+95A<P>@Qiu(msG#x<*act4Hoj14?}zyD*S67My*!Eg%1;C
zmgyVOM+mawcRqaY!*4!}^Wg^{e)M6i55M}r-tO$EMsbnfP5X1T8tnt|Cm+TLA^%y(
zFM|A;2|IIiwMt*3%CAx5eVD+tB>iM|q7TF=TsCXe?}C2_P7?f6aIz0;>!#B%RccKW
zoGv&+aHbEP)~H$BCX$`w1Jhg|2Cw<|KPHk5m+dcVF7#m$FT{^gek}H32@fJaQvF!U
zi}GQY54(L>?!yWnR{5}6qOl^=O0MwRX-)U1uVH6=*y+Q7_4b=-v(~6}Vq5RS1|K#G
zr@m^9+9Z6l;1(aY`ml|MzYjYc5B+o!X(kz6>)+?l?eXEX4`+PXD~4?+a`*YL--kof
zat{a|S)&e;_;A<<@*_T+6rF~nLXP=x+)+;Oq+OZDqEn(UOMX@&|K-EqKAaPNUhsn8
zMZrrxTo!VLXTA?NgkKfBCU|j;x+#R6zvV+xBqw=zt-8%^E2VdQm|iW5=`Oc`@Y-t?
zvt6&bQv4|MM#{I>UGU>RKPvlC#gF^_Nb{qlAG6k~bU$2vl<;H3TIKfJ!^OlOie~tc
z=|}V0Sy_G*@q>4iDk#}Pg4u#Og7g#?(tfRaz>lJS<U0C;e&h*Pj#5m>&c2zfRb2Q(
zek?0hfLZ=A!*4m3^5bDYO8fDMA1}0amG|ROA>?IwEy6E1Nny5}ANe(0B*Y4SRP>{g
z<9y7Iq$g>s>PIy{Uiae-zx^lE<9^il<5@qdOV;Cu*AJf`em^Y6^dsO$(2t0ehWxmF
zFs0?K%)bt%XnxdlXN3hxZX8R|#bfvp^&{p-+>eAP=6`T}W&6^SN)111O3~AP)Dps?
z+I~DCoDDtc2OF}7!jC#4ZeOeF`oU~ctS96d!CgmfX9M9)1se)JC)h}khUbMe7Hq-^
zI%3y)L9#FU@sc0Sgug1tqUL_QEc_KgzNtvDh49xLPfI`cpRnUFweq9CAD{WrT1wjp
zw)LZ(koJDO<3|ra-t?n`A07R8%a6`}bn)YDKaQ7kb@F52;S`eLiIi^>Ddo$%x=O|F
zg53n!%0Fur6SF=2eA5G;i2knN`+oHCqqp$)1nFdz5B&JhkB|K5>&Jg*g#2SszB`!0
zU+2;JsnqHxm@FM2{3}5kK4&K#KFE(RgnubGSn&Mulw~q;L;M)($JZhb^JAot;ey`?
zju1@F^0&en|2sdv7yg4_g>`oSNBi*;7is_v0vO}R&r<YM0KfP#mMb;@e?a~P@Z+2x
z=l%H2k8ysC_hSOjUO$%jF_BgLnB&J>8R|d$m?}Xg3H~X_k)Q0x6fwMUHjCM5eoXgc
zh95I|L^z%=58G42UNOz~WBrzbNj^_(i~N``PKpbJEcAm_II|2waj72*il%S!V>9==
zAItq%;pbNbvEGjjest?tV3iow`mtIF&1<A03DY_e>&+}k&S)DYO9Qi8{MhQpQOCT^
zj~#yOl%nl|th>vP-F_VK;~+Qh%z}IT*eCwIVqidu`=yA4*+YID_Tz|jk6AX9Y>T~R
zi^n)t(&rO?ob=<AQ_7;#684N!k;+-_3z^LeQj{A&UH}(`U*a+4#}z-W`hfuM3*ed`
z*QMy5;0-_i=K15tO+Rk&WDqflcV^iAyyM4R5&!wWrAZGBDY8Ne1du9Zob=>=;TZvB
z29Op&x@27exP|<;l`K&T1&}SIVBp_AFmg@+g##!eI)gtDK+ymgpPb0<F_9=Sln&sL
z0E!8JP_Ve*LxLp&C>cO0;lzgn*eX}YR!ANdy_#T|0Lls}7eK`TDg{tpvK;3M0eda6
z3i)FJR1v+hQ<|K(ssVfY$R8J-vtK>HyE@plyn<W<<beQ!0hj@7S*Q4<wom}kfc?ry
zt_4602M}=-T@*u*o|vP@9X%0%B|Kk>Y6nn5NX-CPtCsL5oLWzcNS&e5)~h-~>IyzB
zSWoa7!TN%}_4eO34FfpeBQJA<>Jz|o0W^}L=L2XQKoctB>A5<qX@ED8aJ?G93jy?4
zub5s8;3eVB1e-hh%K^ON@SN1V77Q3b%K%;vpl1NL)~h!HXca)t)!dE&G;N?-2k_&1
zwMH6h6F}Pl+6B-)fHwo^zz&pg@qQ_<*Ulgr@tFMy4#`^qye$zr1<);k?g4ZTpbN#F
zX<Y>mu2+oD>^qVr=@CG(D2ePwuK?ba{`3~4@?HS%JDgQM2;jp2J_?{O7yJhGv0$YQ
ziiuh3#C`$v4`5CoS4j<@1u!6h_kwsoh|dEU7=Rvx5yYSXz6jt-09OO}GJwGW><(a0
z0AB?#B!Hm-e9cxCq+MH-{bgoB5?&+kKRGOb;Q@RTzzD_<U~T{-1Nb(8Nn8>Ed>6p?
zJkJ9d8^8}TWvn$?$d3Vxa+D`FsGl4@CV-!XQ>2;c*8s*lrN43aIh?i$0Zin=c9cH?
zU@hv&2$KVt62MHSbgGaU0Zen0>5enmlUbtAc1n{$<^`}afK>s^=jM{4g@Q{1SmZbt
z2e3r=tbO+X2u#ZYSRTNN|A@@4cKjOxSR;I`;5u&Y|3qM@jR9<uqRjzp3t&69Y5)wr
zRgk3P2DQV9wo}?-qq{_55&7N#_64xt@eJRfrf;ynIl!U=0UQkAPymN{QSU0Ia{(L)
z;HYGe1#n8pai{b|04Ig>AF)$wi=1}!GXb1+IKM)}IOhYn;3yY`TngZ_qi};<3*b7>
z(jbZkaU+16T*f?dX^=ke;)>m<>Tmpa-v18Zb^vz*xEsJfJiUX+2;yD<DM7ruQKbuB
zs+(RQh}0k;+53Y?3*x>Ys58;V#41e5tV?XnW(JWZwj5Ck29Yg<{zB49G6F*t4x)%S
zlVORuLF5Gy2qGAS3ZhsLmBsL25XFNi7esmK14BI&L<xz;7E1<EDu{=JC>=x@@zd}~
z5Rd*Rc(S);oer>8g&-;hQ7MSW99z=E?y)B{5UT`HHHd0KJRXE!uA;irC=DLxy1YU7
zgj4+A)p0$9g7#_5TMKGIg#R;o5#cmPgNOz3P7pnUhzDT?@mvs%f=C4I1A(c25Gm(#
ztswFxRE;2N22o3RUBM@Ucru9EL0nF_o+7D}!bHwght4TBXCIypqMrDl5v(`GejAf7
zSkDI0Ac*KAYDU4VhC#G=Q<1ai`5;~n;*}tN+Nc^!l_r8s1z!++QShZ8ng!8ZI3JnK
zdlvDL@hwiJ&Dp44WkBjdv<%{HF}xnc8$q-W;>{phiNdzp3280ZMzF2mwT)_Qr+-&$
z2T>a3p`(zu{$uMTyt7~z!LEYc1iK3s-ekw=8T|L2<h_IF#rX=_Us<Hil)P6tl|Dgy
z5JY+it`I(S{A)QKLG%scV^Mw-{3M7^gXkym2MaPz{~$gSK0xsEAO;E<6vUT~=L;eH
z&w9*1sT{GdBs(OCp+de6;yWS3f*2meH$jXDVq_5Ca$h`|l1yxf<IKb?`S;@gK`?pG
zC|=H}AVzcgf*2FT&+KpzlY{t0JiiH!75r7uC*w0Ni19&8;9}mSsQ(cJabgg^i^7Je
zPZB>B7EKX8JBT?!Obue1h|@)!DL6wER-7eS5>}iW#5~Ea3}Su|3xZe@#L^%Z2C*oJ
z#nN1|#bh_w5XrJ2mP@S_f=L65NEmjNkkvt~k?jBUbwR8TVnYxcgV+?rX3pcE_S>X&
zHrYP{+9GCzFk`dY8pO6Bwg<5zh$}%{4Ps{yyMj0s#OWY*2eBuJ!<_L=YA^XVdrut*
zVjs`jBG@lVQas2bXj(Q)4@vO$n^ce2Q;r02G>BtC91r3|5HtQMe3D0Qq~MR66b;NW
zk)H|T`jxbeo79CM&hk%)2HEF0R-4p$L6V^*irm<wE(S3vGvyMud=Q-v**z(<S^Zct
z^I8xELMYj>$aTI1NR^vG+z#SS5VwN(OO(GIWGGg&Hmkcl(70$1x&C2?H>-~~EApQ<
ztCSFk^}O!)FS$}f_BGOfUkJ|}O}k$(O^_lLcL*6FEC^v?2$>;dg)k|EKSL-OLZJ|T
z58;mxvO~xT;ggVkvK0=YNC>Zo@J0v^gitgDGlWD4xgq3*P&I^VA*c|Fh44rSkB0E>
zzT5{xcqoJtArzM^72aN{WC*1~C>_G4&5DXTlS=X7kbT=C5;}=2DicDv5Xy&8RuqaH
z+X`&rOlqYN9uu)5mqF=tR;(=9Dnx05A|tTM;~`WJArgWff+qxT2!RliHlK9BFBOw!
z_8}NTNE9uE(KXy*>D8B;bIBRakfOLCv(XS@4llJuF(5@Ng!~Ym4WU5@HA1KvLY)wv
z4xv^EPlQlcJZ$bs>G@M3)Mod#D8?sND(a>=c?rpJsOQ9gCWQJS@G^_-x5uzy2+xJ^
zLI^L4p-~8pLuexWdATlLBmHzXm60dm)x9Lj%OSiXq?urIPRAB|teCQTs8>U1A^K|}
zw3LaXKDb;46DO-x2(3eSM+|KQS=uRtwjs2WhT4nxRtRr~&_Q@|emf@3`*PoQY9%kQ
za|m5T=_=SQgziFWyE2&=yhjK<L+HieqJI=ZZy|jIX?Rb_`!b%)GJU{T0TDly>*_1~
zV_7*ITaNIjA@mEOe+Zw2><uzXZ~*5zgfBz*T(ScNSvn|$AGg@AM1w>4Dui!B7!kq{
zDIMl`hK4}f*OH}qxT8}U8N#<A{NO0xh48%uq@OWqp#MjQQyI-I9Ksk;ehuL_AwP%k
zix3*d3Neq`uYlu1nBeH+g(SmHboiw$iaVFTa!uW;CWkO3gt;Ni<BV@rQ@KR9sy18I
zG)_T{Jf`U!Lx;}{VV3aOf^!^Q->T+^?2osWwaMeR^#*RWM`lq7iyEb#3*meSi$hov
z!qO1_TAh2+>D#gpmWQw+gq0zz3SoN)J2)vJtO;QYqpd2mHiUItx8h$f$_C*Xa;HHy
zu~D*gl5Y-yS#qYWqHhz0MLR>-6~eI)j)$;2ggqe~2;pD|d&Ne>ej)n=f7+^EEn&~X
zA;}&N;fRE#vRbZ-<fs%edwHw!ZBr*CoAjUJ0o5&!>9mkDf@irg)3PXD2;pJ~=^9)b
zE`@M81ZZ|!eV)m@62dKxPYC2!L%0?~$09DK>ml3-;U-V2W+}`PnK}=2{VmSBA&}n=
zp-i)sJA#bH^bZe#fv$UkDVog-2&M`$PQ7jFJ`KeC1=9ps(XAmvv-?n7I+m$HX(*;4
zOG7~og*0SqD5Bv34LM@C988_KFs-m~24RGv8YYa%%oCog+5b>i8RR0KIc$GkRxGvX
zh);4E|3T@=)fFk^4@rw91ixNWgyvFG@nONzf{zG3s-X<~vnj2thH^s6YX}ReprN9W
zN*byQc}zoP4OKK$m29VKsns-mJEkD3KQ0RS_x&=M^=R;l;?ockLeZ}wAUr7e#x_Nf
zNz?GojG{>%(V#niLr7FGCfIYEN@%b&j4&|LK)!|=8u}Xe*g#DUwKSB}QA)=X8lKb;
z55o+jwuYxP4B+Txr`OR?S3?I49W^|y*>|_T*{{HBoGBUGXEfB;@T`Ug8k&pJP(!~J
z?j{<VYWQ)RdQL+l4MR7%pVu&Dn__A#gtJh0p8Ew2X&<LF<19$smjtP>G--HQ!z&uf
zFLA%B;r1f;vTgRJZlU4#<@P+bq@T}!5hQs-Ln{rfHM9|>tzhekSuA2|C)xHI-gNvd
zdP~FGlI48@I|=Eg@t#QNtReTlj4o8>rkRn#UHQeZNa0?~GT+hAgCkkS)mKALDW&0k
z4ZVcFD_A4T)my`R4yS>sk7Pd({7~>CLE1i+fS(9{D%el3zaZQCOvu)4>T?YPH4M`5
zg@$XK1%C3Y*$-n1h3#<|tl=vSLpa(Rj%qlj;cE@UG%VJzM8j|m-)Q(#!(>L&FjB)W
z8pd)dYWPmWXbnGU_+G;goHY%jxP3yIi>kSZ*S0C*gWGNNZdYS8{Olwu>;v)7!)d>2
z_)Wt^PK}0f8pbn%2AWwKH`9sZ&bx{HW%M5!m?lX>R3_x)63^zOPth<{!z>N6HB8em
zUBe6wGaWNyCTk_D6X$4{t6{!|1sdi_z+@4lwcPAlD6LajBz?HH)9z>E?P{rpWg2#9
z*r{Q;h7}stYuKP+rG`}+)@oQM6<14hYozYL>vr881Jl`ODoiZhs9}?aEgH6J*evOP
zt#2v!?=^1Iuw5d!hh;DVAGfzl!)^_SDCXqu5!|nVz1^!}pJqSMgf<Q}$Mb-OgBsd?
zmcde*_ok;G=CI65J0eKJ{v6kELc{%Gq=j)(!zu0&4R<u0)^J9{bqzN(oYinn!$ltT
zoc+UT=h=$1OFpVe2HUz6bzRnQMZ;AtDo%Zq3`Tx?iQDdTPA(1h6zAl!#hbEX|I%=a
z&YfxO8|$*@Zw-$;k-qWqLU%R%qaig6&L;JHyx7;>jFu8cfv|nayyqCP{dNV(4%)8n
zb4Yp^t}q@6<IynOVPu3+G>qIZGQ-FUBRh;7aTW~QJuDOk2b1fHZ&h)`3Wx2rQ6!89
z!uA-B<66zJ|1Tr519@SnFdhn{L>R@wcrc9O5{jMN{e|6seNrJtBPkh1sW2W6qcm+2
zgu!R`EcnCHLcCaBGMg?FM%gf`hEXkya$%GYqjDHk!l)2N#V{&`@tAY@>;U~tthg*0
zEhm>th&qS*@i3}~;SVDqo$-X>4Z|nbMZ-sK*LJVnH;x`LC?0m3(U{d_zjMon!-xpi
z1r5QdV2l^?zWu<I{o7R{3@eOXVeAegKa3h-JQGI!FlvTTD~vkg=lRB$$S1<!lLw#V
zOF$U^Y*$p6p5g@#a`oD5N2?pg)8elu$Ro53&;KwQgz;e*ABos7j20weJQqfzFrF9j
zCBepmO$3_?z7WQXLQ3sWOl+c=WSa}VEclAxtAaFC-=SKD@p>4Y!{`#m8)38x<1Hy|
zE%>Hj8^N}M?F3o3eHc$lD;*rAV;C>&{`VPtZ->!I^oC#BPwDC^yqDwb7DjjB?+Eq~
z?CF$_dBhI#ZWz5qc~9{DF!~7DI<n9QLSB*9`-bsx7?Z=8BH|}uj0j_77@vmGFO2?S
zd=|#nQZzu2kp~I+JdA;k;`&2<5yqF29UR72VGI%e*$&00FY!5ILnV84-UF;YO!#oY
zZv>OiZ2C5g?<6}x@O!~u!}uYLAGzKnJ4SG{;7@`KIBJLbIgDSz7#qg$E-7=~wU-Ce
zv>oa<@r)B3FUT&jXrfd1cWzjRPZIJcLv^*Ezd2R1i^EtF#<Vb|OLj&WbHkVy#!RQy
ztT1NtxQOI7xRN$U#N3+pW2fc|UlhgyAqxfD_V~ANPkHP)S{lYy(U%D>4`W3bE5le7
z#=0=phq0O$zBzTRl+wRO2p{T7k$giK8^hQf#-_0S$YWwM(aG$VFqlY~-6j>cJ8^b!
z)0J@Tlq|`fF!qM=W&|A~*cZlr?#&2lL~tOCgJG16pi~5h!Z;j8!3YXP?3ef>VVnx%
zbQnh^$T7j=f+qw|3ew2~?F<j1Fs_GjBaCxloDbtl7*}~hiszExMNV`@d)A1TMM-9_
zIi)nPl;eCej9X#c7s34z{1wLEJkq60x5Ky-#yzpod6(w~$48#F`9-1ZGdt9MJJpDu
zDJc>7F4|9_N|jn95HfUA#_oEqv<Tc0zJ+DCl`iNKWKpJ&vYk`1A|TR0q)w78MR^hA
zL{K<_B9bk>(_U#02rnv_D>&~t`w3G@I7zVx9u!_Yf`^2Zh}ch_Vi6O`!x5BbpCj-`
zxXkR1F;$4*QQ>6-%L<lrO3O!}OY0RysT9Fu5mb(#N(3HJszy*v2p{hGcm!q%J7#rJ
zo|1}FQ|x8qji7~O$pefjhM-_bP!kMC5Q!kUILFA-){F?E5yYgFbrTW99d1U@+lgt3
z$ZX9BYDMt6WS@xONg<6Qs4e6fLB@G1f;z(M3O?=V^&<FIV%8VsS-}Q^4F#VQOg>ci
z`3M?E&_tAGf=vZq5M(PaM(~oPBN_HAG>_or2wsWc)d*UOr-fj~W_yV26v6uAxy){N
zuImjkw2Gj$6SIwwwu0><Xdkg37sa}K0$s-l-ilyX1iK@6JAzITjE`VK1f3)362Z_2
zzK)=41l=O|ID$_i=q^Ft6?{jqhhR^^UJ)=c@|m5gcLeV-U?KYz<oyWxMDT$WeI)py
z;QhPoRoYj0G2x#IA0*f>g8mVF7O|hUHc%9r2So6B1RR{?<8i6*B>6&0zZ4uS_*Dc$
zB4~8?-=|FSAy&gg|2~2rA{Z|G8^I9~jN}Y*1PWy{G2nNiSC#(!C_J}Kq2vRFM@29?
zf}bK76T#0B{2IY;V)!M3u@Ow^nUc?E#mc;_uWN@I7s29J-D|qq8<x-2ofyII5zL5S
zW(0poMe0)`m?V7Wj|KjWV6yN=()v{4(*&mr^5u*dJ}ZLR5v=3Xi#SJcSp;*1%!^=t
z1PdZq7{MZTK*YfGLOsXWj{{pGS>jS|>Phxl#FQk<rD#P2D<fDH!D?=+2zvhLUMqUp
zcJ`8M{dE=-uWo~gTLm|A*YGLu_DtC)(q@iNx0Ed$pRscOi)Xvw4#Ay*e5xJIdm`8y
zK{4H4Hv1yjAHl^4E{WlQ;7OiHd<lr)uw;)39uYh$$k!v*Judu&VE0{$FNhRRMQ}QT
zGZCD%kFVVG9O?@h=OW;%Wao>v;ez;={%&{sas*d+0_(_-&RmV)b_91KxF(+K5!{I2
zW(4QP*)#hWcV&6pk|HZn_-`SP-Ym#Rqu!0+p9owM<euoMI-ny(lmdbrz;KK7`*hqd
z*)%~ep^46uveR|6Ze>qR^7SZF425+R(UB#*pkN`vY#li|K9@DaDwB4p2Sm>kEGn2Q
z$WlHYQ3>bvXZAti#hucJbd(UDe9qv*I!fy(Y9QCZBRU?{aYn~k9c6Ts)$x^%;fvkn
zbd=Z8K}Sa&6?9b8QHwTt1Yso|kLwsX*IovX>8R|qQbotBZQNCLR1?zm$pXw)*WuCO
z)#1}&>Ud^ohM#_Z;HyK^5zrCTv2>R@v`dxR;~udm_x3Io)?w&~>WGL_*Kzsdl&|Dn
zk!>Rixpv$CwZ)_;uHzxeCUjUj@<p^ucdHu0YYJ8p&l5VH)KOc<Q#xMK(M(4j9SwJ@
z`Z}J~QCIlWf)wkqs}5(t%q8vyI-b+fh@y@o!!p|MR(*D>=XEsJ(NxC^(oho}{vEk1
zcBVnz=NT;Rj+*O!Q3vr@-<0M$UgqHFXrbfQ8uu$Y?k;n8-IM#&u#E9E>u9N?jgGcD
zUf1!4j#gYSI_9!yk$e4aHDFlAVTpNogZsvA)lSEl{qEhn+#jxTXYNt$b-d|}z#Hq_
zZ|Qhj$9p>7*U?EwXB`JBrS96C)@_cv#2(d!lekB9)zM9=bm#2sQ9XsfBiKW*;KwPw
zI23yn)4Mu)3!k~l&1@eXAL#f}Z1s1zKh)7z$HzK8(otiZyW<{JIX(Lm9aFZtKV#F2
z+@I>`N5dZV?H)B@kLs_3|AsH#qXy^*FLi&;6(yne?NNhtT->9+5G0xXntQMm9b0I>
zGd4s=vAyo0I=<F1jB8cLR2|cFe4}H8j_kSa$vQ^r_*TaR9TRnYr{jAaKkN8Kg8ZQ4
zCypC8>0b3C=S9b8(R24ICdRM0SLu7zlfuX9_*KU^PT5{nbF1BY|08L?>A18og=D;r
zclIid|0jFZ?>hcqH<q}6*sEIJEi{Q!DK`N5(;>`G-K(bP7<<6|;9B=|9W!)n)v-;-
zOdYdyEYq=E$7~&QbS%)Zkn^r%o{srCuCz~CyjShmtM2Soh4!iP`;`0Zj72&Y>sZ3=
z!%5kvTJ2L8SGhmir+(h2rtMRU_o*%W)CwIdb*$I1LB}c`t97i^u};T{eQJ#k*M7V6
zW!Ae(e40{nnY+Y(b!vtCp>^(!IyULptYZsz=zdjyziPf;O>m`m-!EHlw;H%#ZP&3w
z$6@XT9XoaG(y>>^J{`L`)ccixk^B5|H@mTiW3tb#wV!K1#~~dLFLqDguMV;s`_-ZS
zikz#3hQIf#qdJbUZ#quuD0x6-EOmc(wa{^%9tTvD1FGWzbxOzfh3?Zjif?ugJfOxO
zP)iP|b2`rJNH<Wrw(9~<w%V?Xf?QPOmw0+e_KF~Hk9<|gH67O(?SQ(W<F<}FI&N}H
zio%<*|E1$^wlbjr`K<OSM5ens?(x7k?7Ox9!$YH_n}z}gQVqbseFpyLWZ3(qKWT>D
z1QUD0MB*~wmZD#KW>Cp6kZFKCOR%7ULI$!8{5&M1h$uP23kx3oK85-NqLZ)|f3wWx
zlxIL0C}!Y611}hO(Liwn4;k<p@EKUM-aTr8yM%#~21*(B*;~#)c>@m{_D^6+3z9q{
z<WU1<gp_skce~`Vw1R<(1}Zs4j~TpCkNa^085`Y|4OB5uRU$KZH3OVh5~i!1#EtIi
zV)GbCKWJzD1_B050}1JyI;esMLIyN8aZq(y>E>b!OSFifZon`Q6|NmrF}~H`&wdv@
z&MF5L(_@9)dAr<}fu{}B;{eWg=NtApT!Wti7^uZDneBeUKpg{h4Kz5Yo-|O~z*7>C
zStdqnd(b}ONCuD?sBfULfhHX4gKGXk^{jyn2i2w(?gj?>Zgw{`@SKoF2A&tv@mLyl
zR&Q!x(*ifgyx3|x%SHQ=fh}t@UtR5PXP}vZeFs%@11}pmeNeI6uNZjMKxB^lr@ko+
z(t^D*K+;l><aGmYIJ}jC*23F3N?QZ>A5yfnH}Ix`?i<`447_ci6AcF5;#!*Pesi1q
z?2;no4yn!tx)>-o$NhnUt_Hdpc;7%D1D#j7bN0Bq8+eCvBxBoyt8`dKPXoOSylbGh
zf%gp9?-l3dQfK0&k=yU0yV8fQbMIK<=EQv{!9S9LWh?Z2V&GE)+?D+ej9%;RXW;q<
z_qoch(d*s(8{;#s(sj0NfB}7r`*SuSbq8^H=eWNx@TCE3PYU^9(Mi5CFvP%617C|W
zTyU89lg@7(C$rxg_|CxIIQGTyy@4NCF@~>W_|d>917AfkB#O}ne&VDU*l%DAcbS2y
z2BsPK#lTq3zJcEite<Unl3&&eA5s^}rnm4arg4V-1-9`9CK#B=4s1&O-9Vc|D*3Ip
zKMYJV@TYht8<-+w)y33gX~$cs(+&G$j`;=_7?{C9u9Lo}ubOFqI7@K0;2goZg7XZN
zc*r&^G%)CpS}9jLbc1`5fyKPcPg9nNvQ%)H;Bvtgf`1;em-m)KYL$W2+<FGq8dzsw
zC)ej8wO(+mAhR0`Y~)Io>}H~)KUO7+iH2>CvR%jyPS%i2>boSnTX2u#*(-#G0|pLq
zkwj5GY9B<04BRsCmvry2fg=Wv8aQU)n>y)NIni~~j~h5);G`H%8#qHxo%B;Y?)++c
z;gqum&Pfro=MDR|(iaR|6y?{#_7QQ(z-0qhcpe7qYyZK)6Nl6_E}^&VpXFZX!U(7v
z25veEtNd-?Hvcx3PTnzaS7PQ$_8%VjQ6P$YA~HgX=mnxU>#{HEz9{aGB3s0?DAI*w
z2)YE_QT*e#`@@^q^Kvqy$P%4>E*M3jD3UjDrh&I{&WWOM6h*{9rDzlnL~*%cfhM<7
zh!wK!7W1Nb{ZOikqL|nojG{yoC8H=V*@vQdR653=AC`*ZVG&CUCUs(RxY(ITqbMUq
z3|lse<UOb>L{Tw{cob$7JKEWURw;_dqNprRZxlWuRidaWq?+L4g4G2*f=?~BUljaN
zdww-hm<<RC3WfwZvtc0-K|Km1iiLI3qfx|!kh3CFk|d%S5XCEpl@&#P6g8r#8Aa<T
z+C)(+iYKC|7sWGCOsboH;;YOjqo^IlvW=-vMNv13?se0-4C+MxT?|i4iyQ}Dc>O4z
zjpBtUUW}qa6b)rGo{!==PG6n$Mp1hyvJV`(q`z?#O`;g(vh}87&N^(*@=H-Pi=qW1
zN6}p3zs%kWVe72Uwwl#Vf0eenc0g8d8O0k>wBoczv3*@`#lz}>LH1Iilat6=ZKG%x
zMXxB{jiP-NZ${BAYHx}TQFM%=6R)>U`db{0rg^OOHdjL3bP`T9_ekd`x<t`cI>5ET
z#71izR^5fX6Gaap+!Q^d_7O+ITD_xqFN%+&_#}$=qxP2Jy~jTgXP+pp7PWue$~YfJ
z@lh0gxr~GAjw}`KHR_+rQ1_4G#5;NY1c#KsXHuP|yspn3K2XRY!7l{AjAF15w#cn9
zl#|5`7{h%r42xno_gxg{xTvBS5yekYjNyXm?HVan`W#m7wYlF$LHthed%+(Be-s?W
zR{<gP@IyED=jSNqMKM2WKUwvcD8@$dYZSjpz^PG8i(*_9<0U&Gir=I7L-<5NK3sKD
z6n{oBMY5CsgN)38M2gd+{Fu)k`J`cH6mz1O8^x?BW=BCW`TSNpnmnyFi3_;?xd)@z
z8O0)Y>9ATE#i}S43uktTkfmJVQ7jiez{pzR5E@oXqwAyC5XBndYX#Q{(!efl6uwoE
z*-cSw7QV$%Xxk=yyQ5UQm$EC0-BBEKls!=#7QQ!%eNpUp^n*eUM6q7lV*Eo<FiS$^
zh>)X>Lh(3POB5%gI3-1=1(Rmt8Am@K#f2y?a>a_loS%F4u;OEI>A5UQ;)wcuch(iI
z)hMn-aXpHZ-MP1;xD&+<?)1E@n^EwoCAS3sisEl>{6s-28Ao_mBKy0ecO}k0Qju9!
zzegTJff!O_cK?~e8|*u8u%Y{7NQ<Fl45ea7kHHngLot+y!5u>e*X<FzW0^5DJ)$0n
zp=b<Q!V3x(63iCN5iA_zO_J><=w~9yjp3~$im6x(dBT<8;QYL#{-9)w3)25lB9C9_
z<(<s=h4Y7FC>_J|F*J^0>Jhc%h<YT3M`I`xL)jQ=$M94P<zgrwLnsC<h6*uMjKL=z
zs1(CvF;o{`Ifg1REP37jdRWyMs>SfQlTC_rCW|}{@rog-`(p@*PESzC{v#?JLnMZ1
z3^7rXPF-plPThD6rj*u-ArXTWLk-EY4-CbWFP%&_UDK(>>=Q9O8AH-WtmF8f6;fC5
zX~B9iJmZws7xGv!`zH1cgf|p?POwo7NkhS-_Pj7P;grSjLJTj)@KOwK$IvN;W-&C6
zp}kajIfhqaXe0d97+S>8O89Frw2a{m;jjM(0}?r@wEmCYHd%|m3y2|E`lcuyVyJmk
zF?AI3mSE^nSLYbI#PD7W@5j(poV^6Q#n4^IJ2CVW(nGM3w43DbiqiW(rF~-fK(d2l
z_%Mc#V(1^kXEF4R;o}%SiQ!WzZP_?wsC@UnpJX{cZ<lesE|CYs@Ocb_kE$<Y7${^=
z3}3`>vVRsuI*CllEcLG>!VtkJVi*>~@EG2VqeC3u#4v)pERGU!jEwQdV%W+(cq;ch
z@h^>GSq$ID@B{z;k6}~{dycAkF^rDkrx<36XG{z~3z;hTOANooFfN9%$*dc{3K{Fh
z_!uU{@J9@jM41@F??Tw;U)*3K`BRk1F-&0uQIa}~n4RYMr^hfuc+xXV_-v<iP7HG$
z&g$&*eChcD!G(g0VpuGMrAvf7U&D3ps9GMwI;p#Y+xeJcS{cLB$JDAAR*SMmaIGM9
z8rH|KA%=}HY~q%eJHT&_VGB>KN6}`aJtH5ER3yZ0F>H@vM+`f8e8uf?-W9{{7z)Pi
zYu^*Y-WXDZ?~7r73}<3E8^eJZ4#sfIxuQctj>K?SNS9;(?x3SFj1+!c^b=eXF`N>9
zT5w^qRPbC3=VQ1U!!;?oz|-ltx-9%+43}caJg%s)SHvq)O7VIOH)8llY&T=L6~o^#
z+?Fg${}R$jYV|y>?!++dxVp>TAqqn=drv$UL@5wQY8;5;KDp$KIPMqX5@ejTxE(Xy
z$-3j9n9OF1m?cP0vgtyS&5k2SNMS*?TO^JLgl{=zA2l5ITp9d4K_ysB@Ik@iaf~^Y
zI<`w5oh9S&#NmyjloU~UIF8bBJQByFqEvMBGI5l3csU{ErO^s>o=~jFR4I<fq^PoB
zl{l)#Q7w+g<ESp?=n2*2gz9`k4LYI5ov_E>7l%KNSR8SwVt<0bzyIS1#<A>#VhY8f
z2@g9;Bo1A;5l2+WBL~yy<QoY5Q_YOyi8!8&BN4a1kjZG4G@UP4BaWJJJU`!EOR&tx
zDde@|cq)!p#84-Wx^cV^N9_Y?PsdS@ajLr-#qmrW_2Xz5$8&KUJfWTyWN@YiQjw*6
z+%U5wMAmvfj`6v<jRl(sHWj>jLcJ*Q*~Cjin#Ivv$jgqNebVmvt8uhoGzr);j&?#`
zkK>IvDu|&~9IZucBiJ^MW}>q$NqZ4VXzm!tTXFj?ugl|jJC06q^oXNp9G&Cn!hxD>
ze}9aLgsE#B-9#ks9>+VvhrX7_Y_B-pjbm6G!?}7_=kojKz2kT<j`!o}6UWDKd=ke8
z((Xrs9||T<`@a9-p9&u=$aee1(LavQBs(CEK|($k94L5(pJ4Ll&%(cq<A35;q6`rn
zD)_bINnX(>C)GD`j1Y08jKJtPzLhKu-|<}_;XlMN@ud1u_$WbUY50koC61rt_$7`x
zam<ZlY#hJF@p~M9#PM4k<Knp2HE$wkHVt=9rH+qdf+*zFDKc@`C&lq+9Mj^M9=C0i
z<9x^<raHBfX4*(*#4$6DS#iu3Czby{&65kEe@Ptk<5&>KLTPkS9E&ApvS}jg(zaCm
z%LJ4Cp|~QBm2s?!V|5&B;@IxQTpPzGhp!W|UT{Mk8y)?-G;9{W#Zk5j*%k+j7<`9h
zcM9$j+%3qWJ&tF890%g)nn1S%4#shaFVhK>OyF=FM>vcoCYm@J$1yH=6Rk`fkK+W7
zQxnDar=FB(*VzA)>Qo%3C3_~0OHM0ig`5*SAIAkD7oF1L->A#NuQ<w8AxqM5ohQJE
ztQ&FMjN_K@yK(%()h_&RK^krgxf4g`XIaeNbMyixQcOESt9vO#rc}v7@Yk^YHRk(G
zq?t%J;WFViQOm>=CNfN9ny6r+qKPaM1x-9`qO^%ZCbCT^6U9vAm?&%_*Te(Ia*7a5
z)IX()nmBh-O<rEO+9`X*_C2M3J*Co%=j53<a7wZ0L5`S-0X1?;ns~^>OQ*9-m}poc
z^U>4lJ%28fby}5T*ooQCx6WyQT0J7><)>A76OWoGW8(AEs;n5wnfUFrVnc<0&!&IV
zmpL5=Wmhusn2D%~n2E|Js+jPb2$-m9q8eK~TG(siarPlQv$_e7X&;ZFErqV1Ru7y}
zku$3C88zaJ@^J*tX3RLFf+j*HbdFE)9KH*nnFyPRm{@;CZT}+Y>>2wS{|MUMHaH+>
zmH(__QQfoZz^cM$FSz3-OcMzcmWg~5HB8hr(f6#~;qhk`2Zy!|XVulSs>;Q}Px1oG
zWIk=8o{8GRv&&>YWugwpyi6ujT}OO|mv&AyH1QnAT==u5{kuQ@0<nRK=I896A~rJd
zyb1og;WZPDg)|kU(nPMB<ON50krN@jnP79lmz~mAguE))Lh!8H)zT?_T?ogawTU(+
zhM5>{qOFN`CT^Zn51&`<O}uI1T@$@cbTIMzImOgTNJqi91m8BXO^Q03=whO)i0=q?
z6J)LKLU@a?9wvIyb~}wqFGr-|JrnQC)eSQF40?NVKNkEz@Iw<HnfCj@I}W7u6@>=!
zPfUDjqMxIDZlXWOlM7E28far;#et$Ebt+#-_Dd6kO?+iyh>4*lzW%=+nv)T}G3|G~
zSgU_0*9a3MO?+$OJ1*4o>Q|1Ti62b-C|N3v&a2+%70D<QqZ$0X`pLvEQc6BXl%EC1
zomXQ;Uo3uB`AxFp1jh^RKCgZ^@dx*&iSs5VnfQ|@n28f6CYzWd9gh0dR1?#L?=vyo
z#0;);6B|s-G%?ErAAz^p#B39DOe`?5(8OF3=bK=fC!8Mg^b3k)k%`47mYY~%Vu^{R
zVp}G*B+^M6%`2U{tHeW*i5?cMF|k%k*Ewd^+UWRqn%HDwvxzODY!lq-l+w9f_zpoX
z+GONilHF}$kBPm)*;cYkoSpqVsbmlinmA<Qu!$o)`Ar<-@p#jI^Msi9PhR@XR1zZ7
zNp|}_`%TE$3wfO4Q!>$~1<wec734dd7ff7~;14Bmi3h@A^_7{Io#4%y)MXP_Ok6c_
z&BS#R_jq(C?2j03n7G5GRX6=6yK3SuPG8-0rrYdTo%Fv2g8@Z_c-OSw5&efpv|mkJ
zkV0M{fmF6tH$5X^zqyJ8{#cN5e*!OTO1)3?kPB%Eq$l7?pmw(HbSLb~NxrShI8-vl
znUz4n1PTe~yQWMGn3F)^1d1f^XS=+j3FId5fF#zU!jzYQl2USt#iaU!g2e^-jy?6R
z9kcn^?otUnoIr~NUQ3{K0*@r{DmkB1nLw;_s+NG(*`9(j36xEsTmt12$myV%d<j%Y
zpke}*9Hp9&#}cTVK$QflO7^)6wz-tx<Dyhgz~dBoh49U^WK6$g1A@T>Ldnt&ilM>@
zL=w=YZ_xxk+nHtvZ+Fb@UMzul0%ih<1Ui(+ZJdCWKz;&GCr~ee8VS@);Hd=aBv31X
zClYv)BQMpvcTQzu6$beqXO_IKgreR{49_IcFoEY1sGq>I?7#)pKnz53R%w(#GSu^;
zCu?=Qk<uiArks5dn<daZ!FLhuPO{cZ4tY5Na)x?Ekfq76ygH75OX=$C3A`bMH-T)G
zK<fnFlx!Q0XQiBz&0X5C?0c`}wN0R10wnDPH&x9d?;y^O38bw^e@pOf!A^pm1-l6T
zc0tk8J%M*PfEH?4=#fCr1hyowHGy6UyqmxzuC4@nC-7bZUnejuf%hf;Ai+Kfe2}pJ
zF#AxjUjiQq=_~lLAWJ_H@~I$SR{A^oX9)~&_~$|fChXT8R^eQHAx(Ulz+fR?2~r=D
zz);~u@3U9$e)+7KHy|CJz&8nuNMK|F--=;e0^cR@eFB#+sNWL!A%Pzg*mgnvn!qSA
z{FJ~LA)`fSw4WvWiy*VCI950bv$PSD3ge8I>;$PhQTXqIe+U-3s3s>ch1Zq9YEh;p
zFeibz2~6W<Zb+XlNHQaVnGT<oz-)(ix@o_n%}Zc0uR=bXm@jb_2rd*{Bv@o$$`bJ`
z6<j8`TyTXTtFIK&W4s-6O#=59P?aw#K8klOr**Dcm%w@<8xq(kWK+VvUoML_OExKP
zOJI8fnHI7v>_}i|0*Cl#d;+@?cyL=9-(j8=Qe7W(?M{HWM{sWf`-D*0FXVvWK|ybE
z*O3H{azoWk&wV=m7>BD$)|CYBD2wC5PY9k&;8X&q6F4K;iwT@f;9LTuM`T?PrJ<_;
z`S}DIUsNPajB`nfE(;!=T7=3qIrcdMuy8$r8wuP@;FgTxKMDLL<hC5<e+%cwku={)
z;I3r(p&k!yp3L_WNU^}uWVV21f2x>j;pL0=k$#_r`z?E^q*?asg4;s6Wxs0hb;M=a
zFEM<5;U|w7+;q)V#lxzgg+dk{v{2l#KU~YU@D9}Qiz>%LuZxPQu#h4a9<WeUc&>$F
zLijqBXW6e-N|0s};zQB__F?x$Rl-6^3#BYPY@wQk$1Rk$@Q4_ySZMS|?xPmUTc}{6
zjD@nIOueY6my_!vVXA21F)1RiWMSRPRFcXT=B`Xl@~TqG7FoBt1&_oxEO;&WENB+O
z7W@_hVhafdr8*<93M-N@MMTu4I<x%XlE~7ig_snP$1Ru^65?SuEQv<jQgPO_P|LzV
z3xg~?Vc|&&-7IvsP@5x=k<!${3sUhZ3w119yr}A0cv?t3#t}mC84L9-JZqtWqdX_1
zp&<K^B+pB>vEymtcyLL*$c8T2*Y%QxW)_-rd01#|p^b%CEF372^@bqHs}@=~{51<L
z9sat74!2WiXeCPh8#ZTZYvD~6S*Y|zRy)D=7CMTvqd2<=zGdNUUd4@+PLidevykeS
z6oYhiMC$KY*t4L(2Npi$tAK?*mlVJE)swS7-`z{_UBTXh?^$?XNFTvNy>0VH7I>3q
zlD{guYB$g8YvE%Kc=NnZ1W7)%(9c4D$$n;GfTOe4=fX*7`@+JP7KU5+#=>Bkrmrmw
zv+$Mhs#RP=EDV))$=MwLCgkDY?~=N_&VFSdVPT|&Z@JFrWnbOz{*LRgQqC{jU;FHh
z`91fSW&auWqu?k(W=C82$-)@P?p<g9$@H^@BpGYrR|~&c7-wO%g*6t&TbRI6dfYYJ
z!bA(dTbOELnuR~OwJl7s>>r2zX`x}`%+EWdAHAd|Tln*mS|lrhKYL_p>st1yGTp)q
zu7_GFd_WJ=ObfHPc%HGpUPYY4rEX!Kh4~hiSXgRdfrW(@7Fk$qA+3JOh2{mCcT3$f
zECsDnuMSVy)FHKO>(pfymRne9VU>7Ra67k7eJ>+-^9dI*X`}P;ZmDazg)Qu2Z!N61
zu))G63!5!$wD8v@#RotfZfSQi`?A_%VXK907PfO4|Ka8jY!^S}`gXf(2X{@oRAzVb
z0x5cJkww3kb?vdRpR0?5Q`WUta32@guoPyQ4q7-Y;vqpQf3-;^9+B+84yng2oUl-?
zF3Q)%NeibK{|QWf0;esU;egb_f?7Ch;hY7%CXAXmZ{Y$*FCVk>agmc~;kkS?%Ex63
zS9ogWqjEm3TDT@l=#hL}=W%!0-k1;O<A#NsqTjM`Uq0^7$6pryws70R9Sa5W?PL78
z%j&L$e=OV+XS>TPMf6b;q`zRQC=gsA3M=*<nvs@|^nAGT;m${qd_0hkjC^F~qhLM?
z<zvTXm6eaID|TnjIJI`Hb7$uxCm$6>FDx<hg*UyTib^&wAG!JHw#eP-iW+=HO}(O&
z=*0v#Tv5gIvG0mvdMF<y99~jLseC-_D5Zs@x3u4MeKa3sq&j(7A?5N>UPuMOih`8{
zlea_Rp;09t(R{pkFE!(;s+x~#`FK1Z)y2a&;e2?6d-LJThd&=HU&{)K5)cgLgK3E0
zzH@m0$}TM*|BtNifRdv4zFzji?rdO}u*)<#g9suZCXhI>Cr5Jri2(rxj08oJC?Y0Q
zf`BLzR1{G`1OXKZ0+LapAR<vkGKhS)?>HX+=R2p)J@?)B>Q!}hb@fcoObwBorG)}o
zI&hart+UoB@sBcFJJ7~~whpv&puGb@2SN@w9B?||b-+}xr)!2w#4Th+j{_waWm5M^
zNpXML8xV=A3A(~EOFd?bq;v;j4#XW`^;AWY4i0p5;CTloI?&01&JJ|pI4FM7S$m%h
zt^5vjci<_BJsjxiz%U1fJJ8F4-VQwMz#|Uyq1S<j6mz!&eH|Deevj~e2l|QJ>%e^?
zJeF_O&j%dnFOfQxlsGUQ^Ps#89wcS3aES2VJdetJ!hy#`82q>hA7%~}Sy0cq^NtWd
zKfpRiPo^Vz6eAsY+JRAN<v9mNi;oeGbzqzW&xnr~UcNDN;wPEUit}GNUeC5ZRiBVH
zUvOZO11~!8k`&%R_v$cT=Jar2o&)n8SaM(Cq}vN$bzrgsf1S0z=D>6Z-V}db_=W>h
zM5YQEGfkxAIeVj1nKK-ycFsOiNY^X}-g02J18+;2>%co|n!TE1olRTWRwc;al}MA-
zS!+Q$W|0H$iNBv#J`h>xz=t9q3EQ5tW&+E{4lI`PiSSb)_0M=*X@0bOg=G$W!AskT
z$DCO1zzVKN4qS2IO9xguu*!ke3hs5z-p<TR{XP9x4s3B?tMsph-#D;_vx1kK%nc5F
z=fFDg^$t8?p#Ou`p>32xvdMv=hPBphcHn!7gU;E>scds##`2uQ4*cxEb_aGiu#*cH
z#l3dhdHZg~{OG_Q2Y%oHp0lq!XTNh_&faw9pSZ#}u-}0L3^->$nAXWzn4jg4M7oYR
z@C#Rr^Ok<pfnTMcci@-<#~t{COS%Im95^ZcH$|Ru;I#TiOl3<||6O8A`BRZ+|D&7}
zPeoo(#f!pA%EnYzd9EF3=EN;dTyt1kAijOxUhKr*4qSI2!-*13EL&S#D9m&s+X<UE
zoG2+mZz(6T(%g66P9?{Q(rG1EB+rR_CmxcQSRgS~tBiPAVL2f)ly{;?oCz6U!D$_}
z-3h~qicVB=qK*@Fov19GuIf%y5wGe*HIaXJM5MQd6E&TvCB3#2FAue51vgXe9kJDO
zqP`P1$#sLUp|F7yH;NqHXT3roHj??-EX!;xezOxzM4CFmLY-yLIa_llZgnE+M9hiX
zoVZ;s(}_ErxYLQY>Btr$t(<5na+mN}^?&lTmf40GbjsSvZ13d16~O6)%L$JYUZ?dH
zYqt~s)}oo(TP9VD{qZ^BccOT6c0d_|PK2D`W1K%{W{0IjgbZMC+=+w}_ee=P(LtoQ
z6CFhu&`qS1u(K0gM7pNEtM*t)y36e0M9;L|%ZU%W{qwIGeJD!5JMHc31Or&{UMKEz
z;(qbL!hTLXAkv?G7Gc-`k%7WBoE~X1$O)PZ7$W6iA<aib=zZLYC!DC~LVXv8Ix)<N
z8BWZUceoSdop@G!gz!n>Q^Ju>Jnh6NCq_Fl#)+{`JR=-?K5v`?*a|sIicowmtxpn}
zAbj45iB53yG2SCya9Yo<$zOEhCC*7F_MNv+ae{xq{fZN>Dt@vPuS<VT<})*_dCT&K
zOvX=DJjpaCri;HR<YNlvd8k&-ERMVrA33?}AZ9!9wkk5iJdt;VbDVfLt<QC0?j>u6
z&v#;h6Yoj?K=^(-hU@A=@zh$n$cc}+dT`NjVzCpSII+Wtolbn}#Ai-?<;2%cEOBC~
zs;qS4a|R5}{DRBA6WfMnE^}hs_ADxFbcGXNN~E4Dbg`^*Vzt6jk>Bt{JF&@$%}#vl
z#9Al5V?%RGu&i@py%QT0JTogJRj5C`HH&<s!pOf@z*e^9#Flh0lhd_5ZL$`t>~dna
z6Tk8jbK(alestm|Ck{EWM`8P%*zd$%adwzTaX|c_j*$ufJ&ME9e|F-C4v;REUz|9q
zVIgPT6drftgcE0+_|u7#PMmV$cU9r|oOa?j#WR?h*+W+OLzz?6&vHRfz!fLXJ8^+?
z%!$iRTuj$uJo8kzU?=%^Sgtzp7iaj^tTT<R%aEzAJCWf+1sCitlyD)_g#s4}U6vOv
zWVw(nUebk9E;PPiZ{4xPS8r$AT*z^uv|PEud|{poEFCZWb00i$+?rslLM)?z^1`yh
zaxO3xV~Sj0OtHjN6~l#!F4UA#$%V=;RCA%a;;Sf_39E{v`cp$ZRrjv$c}!bNb!)p&
z$A!8s(8Wk%s>K^zXy8IK7jALk!EMES;qmkZ`;9I%bm6-Tc9upWH}Q}~Zcgh>Txcr3
z=zkR$#@p!G3-;oR_U10!87Y0M3%7~fE~Ih?Nt(BCq0L1*#a8UC3s+pYO2vh?E^K#U
zhYRgoXz#)t7v6Qj;eykJ7hQNs2jUWjU2wbLaltE-gJ8Pwz{P(?+b7X447d;!38e!V
z7I7i!Ld=D@3u9dv=R(4Tqzm`CaK8&3c;Z~>?m`b2I=Rr<g>Ei<ebL$&wu=j6vdeUJ
z;kk?U&3}|QJh*VqMf;Bz?c7MVr_0*;wh!BK;r)V~UhMxxdv6z>{JZd}ig|at(AS0O
zr*ns8S@(;3T)0=g`un22>?Qm4{aJM`S)K3a!Xqv`%C5T5pKpOL*$24rkPCxc7|0W3
z4MKL8OZJhM?6WS}2fHxDg@<_-ax<1(vcFQI%z;bx!pl~kx^v3r%`SM%g<&oXcj0jt
zp5Vb&$s0<3*-pZ*5JWFq-!T~B!blgMW<Onc%7qs$+t*yS{;KuQ%l1(&jOOvG8^u@b
z{A$5%SFBIrdtb57`Mm5i?B|_%<6U^xg%2)eaYxzbT-MIO6I^(nL-B|8{b7pSK6mOB
z`$QLrF9;_I=^eV%da(1d3$M8Fstc1fATwQfO@yv#BCiYI5Ka+Jb^Y@_#_2K{`KHJW
zo<!}xJxk_WY42<o-cIv(TsZWVburF$VIEJb3*Wdf--S=F*jI2U`1kHEyvH-hgQDod
zXD%#M-H+25J{0*#xJdYeJAbjrCqgEtz9h|;i7a*D^Rz<m7vjr>sU)oRrOcJWRl?Q0
z(p}hm#X6_N>sRdSS7)zr;aeBhDj;uf@g^76iLV!K5Pm1zC`|2=&B)Cze9v`hZ}Ao(
z$yOJ(iPyhsr@7OGo6F?ycj15wyIfehDRZ|n{J?AQs-5LWo?`L6!hOQvclmT3bm1pH
zu~7ylIpo5x;)jJl3y%nY5grxt_je3FCVpIaLU>YmO4u~R#u%30Wd1Jv!-X><f4Xqi
zg>x>Pcj2;>3ocw#x#Yq<SM6g|QW?nUBLB;UYrLS`*7E+h3)fx9btBJ>3^%&mo1Y_n
z_EmccH!|IT8ztQ+<%Uf<t7M5}yRH8Op}FR&b%JOTS^m6g&v&D=8*SZaC$YedGJo02
zxlt&yjIgXQ_3FC38%1suyHUZ7o21*_Fx<F7yrLVG+^FeBEt!>t)!b<Hm%WM`Rb`U1
z>FRFOkQx2UKHx7q#oBJvaihM(x<ZE4Q(abkR<&qSY~aR?A`RX6;xGGdxf&^kk&WHB
z*^MS{G<D;4H||hmGdFH=qq!Swju~!E=V#M2Z<EPB-04OOH(JYVnG)HhYxcXu&nlSl
zG~2lGuh`|9y}cX#+*q4!cevqn!{vtCjXtX7al`9ICpS8~VY=aSBO%@IM!<~-yCgFx
z4D(Ehym-y(7z;^EN?b@U3&m7e(v1#obWGP`JoPS$B=6})S2w!J>@Mu_e<OQI>@8%|
zR*S;B-RSGaJ>vHX?-izE?iXh;&GHNKA8@0;8w1=J$mgQh>{LjI<PW(q$c@2n3~^(*
zYCSCc*p0<*JmSWqZan73<8Hj+#uPW6aAT+&!`v9oDP+ST4FYk58&A41$&L8m_NUw!
z>Bci|jCbQ{H%7TJ#*MK`oBg+av>PlW*0J!-;NSLfZm^KheAbQU+<4xNiAu$f#wNJI
zLc+`}CrVU!!3`D?#=q#sOK!aE#w%`2cH=d*GW2izt8TE6q*~#h?7Ys->)&>$Om$<L
zB0q3rx*Ko0F;^yCGu(K~joEI@bYqspp0`>J`S)0_vEO#%9XIB<!Jp{T4D8AL@}<0Y
z6-Gj3o*VOJE^y<$bWVoR^}afgI?RP~edxwV>6k@sT$o^G_{5F&7c!Pe|5W&yaF&i`
zsrcu@WkOc@LS)t7_RWe}$qBs7`Wf}}9;|X>wHsf#@wFQ{9^`tgDfEpS*SSD>u*QvV
zRd=l$o7~v!#yXkn-Pj=Vop7VDR-Qd&e(%N>H!i!a9jCXtvCWOsZv5uPb~kpoambCs
zZtQepmm7QC*yqM>RsT`=gD~}ttUdqX`^66m5Bx{}=|B8uH;(YUOZi23OnB6dUwOsl
z{qr7~=JB-7gFTt%r_zMt@8aip2qI^Me+thEE7|_}Ka2A+FSv1$)5(#4Nl3yZS2O}w
zg@3tmP2}%19&2Rd_>}M<^(l!>BcJI3JSgcwDVa=??Ln5xah*GIio9{W*eNH^gM1Ha
zd(diSPH7JcJgDSB_f45M*0FOPEA-&4F}5;_FDoo3EH5nbpxA>7;uVE<4-66Gx}Als
zq)dMJRatr!VO0;Rc~CvYn_5p_YlzqMpq5Bey&J0IL0u2(d9co~HS<^-6xa9gr4$-S
zX(FWSMh_Z#&`9P@!kdMSg@INXEDU35>f!HgEq;p!%{{o)gWEjl!xlZb-Ge*m^&sfM
zogTFCpuGnU4_bO~mj|sqXs3>~@}P|f`%JOa=pvG~X@w?5DlAS9JRW#GaCzXCm~y4i
z^uXtVUzz7G&!fmBsXQSM!X9+;ptA>bMLdXk5ceReBvhC@;X%@a4pLYv)eX8j@}M;A
z#4a9m^`M6bJr&k1ouRwZGT49J-b)=|!rl^@C*{4{gT5XN_h5tv_jqux2M>8L$b<Vl
zxZi^T9t`xLp9c?k&|ei(ePbRTNa_Gn%7gN<t88en2SYq~%!9{0c-VtTle|aeeMFol
zyF^ZWLLFwdVIB;Xmm&kGFx8VDJmtYN9*p;3qz6wcV5|qD)bwbXJdjowGsbwp(pv+<
z>f@C5<Ou6s?XwCadCr3g(wQygn#c+8b<PVOO!DAG@!1}{E%K5FFN-kX6_HnklZCGd
zUl+b1oFbg+!8DQS!Z(G?FhgXf2eZ=3TOvDFWN}xPcRcveW9=j}$7Agt^R5STdF*c6
zJc$d%=L;7I-xIzs{6JXJZEJlxXWl?-*B55^*n`C$EH|;j#3vqn>cJykJnF?~9xU<T
z<NCJ7UM%(Ca}R#^;13U$dGLh?TRhmxS{|(M;9C#YdaOSL8TnK3m%LKm$y=$RTjjxO
z4=yavIz8NadHIzGUrYZ+xJG#XY3p4Ks}Nazod@fw56a#k<Zkfad9YD@lW?=}vFrBl
zc^0nQ=U=yPqryk@9vt>yyZ8>_PT?-$Zs8BYA3fOP!CvtLLRQ}=vS0Y(fy{$x{in3@
z)pa|&_p{6+9{l3Lj_dZL9{lRTF>&sMf1HEE&q+C9JfMpT%~KM8^Wbzkj1{Rf;EV@<
zdT`x?3@^@laL$AC94-%zT(|GopE+=djV-cowhZI9J;fK*^d;eC53Yz@6*A^853Y&-
zEo_ouP%Pm^rWbv7*lzHGe@h3ib<^aMThfbCUSxTZ?S<Wo*MHAqv3XJ2ivpQB!dx%%
zMDo)yoidEVG%xQ(nKUo!MLF@=L(8PH6?svd_Er$dytl03MMW<vc~RMmdJ?O6QPqpu
z;?=yUE>ctYM21nriy0ZlL&pl4vzEj!GK^IIIx_2eaWJjam%=0syw-fUQP@z}NO+U*
zibm#UFPeC*x!u%@4qkNhqL~-Bc+uR;zh}bJr}BT!w%z8%?Oueu2zzmd7k7G5*K6~7
z(fMXu3olxFaTiCggfT0Yd%C@?l@|^#oL;o{qK%iI_}kig(awwZ;uHNDwIdl6S;$#j
z>Ws$=w+I#XIfbSgVp~2DzZU_KU|Q#wA0l3S(J=F!{#J>4(b$$76UK!JVN$rRpqSn+
zMI}0U(aVe8?7t4Mi?FM(o3OjEhp?xR<IpCjxDR{CaTsgO|GTC4_kxqNulPOb$a}rG
z&x`wI_7grJ<ft+aae!(K^x{D;9uglS9OT7dFAjIfU{01pA`g4<_Kpnl$Gmvli>+R4
z^Wq6FhI;Xm7cYA;%!}b(9Llv#@?wO>kOMg0YyIWKlU_XK#Ynd6wXVT2UX1l(l=x^N
z#mTWe;y5p!Nh?!xz`_9Lc~+U96Hf5rd5LUmq8BfSe|W3)qWVQIPHfNMuxweA_lg&<
zdNJ3Fd0z11o$SS1Ud;Al>fz$oI5WL?Llvh`5n=W1mF?5Sr+e|H$P6!LrM)vn3d-cS
zEn!{DZ+oq;I}R3qN3J=-cfGI`W_Fc6--`uayvHN*f*-t2mB>H+{IZ16Zh7GcUM%$D
zLoYuc%=^rXC0=|azDP*%V=oqqe<J);*u7j1T}!?AT+OZL2y^avu}0={A-lKAixuKu
z3RkA}6D5q*UVP;Rm9M?{Mmj}Sp-KE!xK_AMNRh!C#J}@mqsS&Nz8BdnOx4{Yo{Hbj
zVfUhriMl3sda;X(iOIVpc6;%I7lkIunE26)J?#J5;@;e)PjwG*;(4)8e1AII0j?@(
z{*y?(o*6%Tam0(iyePZ0kpI&4ix)?|_?0v54_mi8@{W0NoU5xBXE-IiIO)ajUL2Tb
zw`Cgjw-=n^+^ACSv=_gzhnd!~6Yt72wztpuyla_1x%hkWWTtV6tF#x%Oyi;#SN7+g
z_u>Ml{i?D9GL1K?T8~?&nl|c}Ir;0_u6S{k@w>BH#B#a!{)5rnYhL`#Q|3j6i5wHT
zCQ6u?oN1IYt#RgmlVzHKiIOHRZ?&-^%X^tdmb}>}Y$gt5<OE{5b6zXU_&gK&CK|!;
z!zgWHPo}Y}e9nyXg?vO@V1oE(rcu^JITM`!zOuIRCZA*55*ZnlO%#dKEEcI?!fwJ4
zuV|u@$Zb<H7?8p$CaRi9^e?Wa&J5pJj+}jXe}8686SYj#mcAv|#%pjWjHxi#Xgw44
zO*~;@sEHd)>!M?oTTL`DF=&wOMiUK9e7HKRk%?POZ1`WnO(q(f_-dl<&FZ-~o7g+i
z)<oD;$hytc3iWXZGMk%td|kP_!+DGO_mw7YH*trFJ597O(cMH36D>{LWx{8|Z=#in
z)+QV#oF>{R$?8OATN6j76|uwZOl-PhYj0xwGuE2|qRWJvgJ8mIV!-sGN7m&Xc+C1*
zUC)(8rmDvtDBsp?8(5(zU?OND&cQJeG7&bhu5)J0#Juaah>32$m#+P0(U~o|QIj*%
zMlx-CZY8%ZX`+LPE+)E~=xCziZDpKQayyw=S{mbg*&mH6-`NCl)TJEO`XQ%iZJ+Yp
zcr0gfnwQJ%X`+{jekL9;(OaGAL*z(m#bYP$HgT_s`%Lte_sIc8_n0_2)b@Ht?uLoE
z{<Y<P%E`T-(=2J7j{ZDA6GKcqtl)tro{3~WWa2?quVCviqbNU_$wmj6+;pq_U?FQg
zV&YK~kEzO$Ka1vN<~Dmj=h?@t(R-XH8piP=+b|QuO}uR46%!*AIX=}N6HkeZG%?!5
z81bitql6V&W*&tx^V=f6$Q)~8oC&@<WqHQLOD|e?;b%=eXJUeh=S{p|ViMPrA+{r3
zGA5eVUGK^e8*fZ6ioYbJnYwd*G(PiHUU6!LKS_Sg#OoY$nQxewBJ#e8sV1hGm?Lw#
zi8oEm7B5-SS{Y`Tn90#AY0NS~?_2+I(PY5eCf-TcW!SqW=5jtrSs<J*WMnG-Jrhht
z^8*tLc^=c=k3~K*u}CBpyqIqROnfTkGZRbHhksM0^3eR;#4^QvA?#4048<=^tTger
z57&KIWnwjFln;I%zB2K(i9#RB`0$O1HC&o}$n)V_6KhR;XJRAQgp$S|Z7T4eOxKxM
z&q<QV+n~(r7g=YdK}lm1hx%Z?@5kcJCcZbZ#l%(<M@{@{Vw;KWCia=wZz59C*unE<
zVi$+5cIjRvjiDOV-6mcwY5c%j00*I@u}9`!aq27-512S;qPUd7ZD+nMY5Zj3d`aVH
zrYdP15*}uYB@LRTN*PB?{9=NH3h|hU<BT_Pf$LQ%qgg5A1TP8`r#QPzoH6mIiQi28
zZsHFe7n|U5v9MjX$SUM#O`MaLoEeBWpDey;;*yE$CNg}WN%68`u9&#Wt6uyXhn*AY
zWa&1g492ia%+Jgve8}{nk5a`-8So*?hio58`cTRTD$K@0V)I!Cp5sH80~y>y@7O#W
z^KdYSRYATFrF|&ySzlD{lWpghnfW-B4{uqqtPkaUXv~iJP~M094>IfeP>+#YvWk4x
zlq(ii@WJkbAzo2f%ZExnRQ92Y4^^eq5LWY{x(`Iw9nS9Ye?3YWHUBl$+uAbg2<hUb
zXKpR7@52|5=8q|5+~5PTf$&CQLmwK6+$1cTU&sLFZ{kB+AKJ0EJ~Z>;7A5?sl+ntE
z=Hj;sZxi0`!yP`{>BF>AMoTHo&_aaDT|SVLP-KSIJ`mgZz%LMzu!q58HvYz~y$=o_
zzAj}rg)X66=n;B_3@}Bul`;Z81bukYho^i9`4INuF&`fHA)=<EJc-oD+WSqh^*d6`
z?*+wuNXV7+;USR@K6Lb<lMkJJ=<h?DETfALU41xI%DC5uZa#GP;cl5d6yM8--ahmc
zXAF<1k2uNyL~^q%G3Dy(!#zGwVX2d4+~>pnis>hOAXV`{IDqF%$sd%MYGsi4VBrwq
z!@@^|j|$o1weJd_5Fg6nZEHQN>7t$tlQ>*BLU@0cG17;peR$P}$x=r7Fu{lCeHfo*
zjOH|uI951L_>6G8keQzqdCtc@6Rd-s=)>kLquGgnp7FjQ?<C=iKD^{Z>gzo(OL;}O
zuo7PLVR+e$_k4I?%IiM7;lmUkrm`nf^Jj3*oVA{CPV-^94{!SLOO|n6&5_g{pFPuu
zSw6hw!)zbk_F=9M^L(KGj&P0-uOu^Rvb?MODL$Wl_JImZ%EhpX*~SMx)Vv{gi4O~X
z_>cprDs25z9~Pzg$383;|3nxvOR#*F<_uoy!{<IM<F&@#`f${T<vy(NVTTVpefZLc
zl|F3rVH4MXA6Bd4danPR%s#B)f-mK^Y~!0WVa~NaP+2F1W~XdpXtqIQ+2F%>(y7qJ
zve}2NQoi?L3s0_eBF$|+Y?q6vn4e{r54(N%iF4bBAAI=HhrK@R^I?y|Qhi`f5@y&h
z@qmyWrhZV!rVooy`I*;|T0D|gmSh{h`f$vLb3UAxc-)8IefYzN6F!{u;grPF>3C+|
zmTmkdGu8PsKKz;X(see?&#9pcK3w+UiVqjl`XwD2J9AaaHQ`@rFOMZvF~g4%e)#<G
z`;qAf{J6_+9aKp_O8HURj{-lkq-6VH^JCx2a$G<d(6*uV;X;ldxqk3D152Jrz8|fh
zvVL|^=tmhpZt<hJ9~ZOpn%JyUQ`V1iew6p4$d6(_>icnn9~JzttBKlt3n5b3k1Bpt
z6lbkUBAsnURX?ivQQeOkQphPXpr&;4T2lIL$s(tht~$cHe$-1>q1eEW8)e??M?(>c
zH;FV7vc<+C|K@4pM^itV`H|`j<4K;d8N&zIxMS6=e%z+`+x@u1k2}R%2xqE?EyYuM
zEAiHTwDF^@II}HmV10hq&X4wfIQ(!*UvbQ4`mxMrxMaG89zVS4T0bf|0|I^o{dnEa
zT}cu0a}NQ;{Ydx`QDoGQn8;<D!TWOeCB;3eStl{cQ^xVk&3M9(j(%M7+j{!ZOOc&~
zo&BhJG`owitFW6N-9@PP@LNCUB<bx(A3v_nwGZ}#H<$kj?-$-J>?^#-k9$S#6Mk04
zw(8;Re&Ve4fFJ$+7$9??9}kKARD=ipU?c+uN!j19JUQDMq81+(KH|rtB995_ecTVe
zN+cQT$1p#)CdLRI(Tkj8Te6<?W0W7G{dh{|NFnv7{rq)X2FVyd#`^KR^l@qLGa{2)
z=8X5_SwEgj>v!Cj!zvS)pZ{B=fB&55#|!dKO2<64EAu6F;AP<}!dHcpg|7*3$g$@0
z6hEf=@sl5i{Fvs)bU!xvv6-W-m}HLetskqW+GhAM(~ntxyyeGiKfaRpZ9m@eW2qmX
z`!UClcl}r_eXbw#I3|89^kcps3;cM`kN4$jUE6;2M%zxOja#lAZ(vKAANui;AB+6>
z*w3$e{^J^QgN>zLaRE!|`nFH}_>^bIk0tEq1nX8y(Y(Pbdk5w%^WzIYR{6nA6_#^0
z=4XGY=B`!63eMH7S*>%7l~U+pU6$1{|BhyUE%J?UO<H8YTJd$l^}-Fp?}QtLj_D=L
z=_S7RV~Zb?bBx}wJ~G(q#{qe_`LSJOhaW$R(7RJ)mvFc62S4hzwJym$GWQDi2`TOu
zxme$NaeI*KfX>=sKYr%)^W!f+j`%TmLBa0|`$hP9j&anFU;Q}d$8jmAg(rk3g{Op!
zWZK{SU?HLThaYD+`TaP{wbZ&!agJ@}7#FyFWms=~&MT4%KQEv{ye#DkR}U$Sxw@+S
zr5vL$*SO~A-oLo+M@9fe0Tc&NBA_)tfKnovLIlt_*XjvNRseYc<Oh%)fLEeTF*(BA
zw8+TP0hE=<uz~;z#mflkWx{f4UOs@q>#WZ6b#H|LDhE&{V7*GW3k_k#0C)Yh#1F??
zA9Kv@SX?z=z00l{z$fD~s|8S9W@vt1jR5}qCW9{WS^?BntvYEhUG)RFA%Kw)JRL!U
z0B#Imb_j2W&@g~T0X!JQLqXicLuQ@;&IWLE08Ik?jWa$9plJZj0&oW43gDIixM@cF
z02~492bj$RxHZ5pe&CVj_S*w!C6W3a0o*CxBCWIx;4X1SGN8418(~{vJ7Fq@zar=M
z8q03Ab5C`*^w|Nt&7&S;_i(fWFaz)f;18g00QUqC2p||hrvN%DI21rEfOr65nGs=B
z$fmpI8VT_ZLhj(5<k1ykb2d6k;qD&{>k>fM0J;UZrL#p?xK%av9*W_cyFLN*44{`x
zZXMrSBf~9}`6F(6|0n(Kfc2Yh9`d~b+!w$z0gMme{s8&~@OS`E1n@ur{R0@p$q>MR
zfVJhwK%S0(wH5P~J(&-QSe@CD$?Z)@ScY)419&umhXXipIg`IYXLE0twfg*+;yG^Q
zLjxGbGakUx0Ss4Xo)V4-;K_isSqf`$LmO64?Se8&-q8V!5n=00GB$v5G9S$~XmaTI
zv-f8McrJj+0lXH#gaDoo;AJZzCI;|A0FwfEF#z_Q@hm@I&U`7&c@#Xe+<7~d{8i~Z
zQf_VidH`<(Fe8AO0Za*CY5>#ay{v9b3xI^%XfxrP(%E_b#GWSgSpmGo1GiZ%(&UNY
zuZiDL7{AFgCxCZ#(ajBDe&C;N+viE)5C0cvDBk0_<2(;$^Vj{nBtHmXVfs4d;4BK@
zV{2fsF@VLKgaLdiFOTKrT!VA+1{*#LU`YT=IgxtU*U0;M0LudSB7o%qe3Q<$B7jxm
zU#69n%vsi22Ubh@O8B*qsi<@QkbEm;t#F-iy>NqYS0if$W7!nIF)5pc-v_WIfUN;+
z3*g59_5`p!fE@wsE2^+l$SPD=b}4?h@CPA9diOFcfS&?5#F$1_<bLS~ga`i<nM!py
zfS&_6BK@fFm;c24`X7E=oV8AfoD`l4;B)}L1@OCd`m7G*@6J4vjwEMcAI=4EK7cks
zv<>1yz`ECz38HM!ioY1ZCC(OAxx&?KX7)AltHQs83v-RX1Gp}4Mi2<1WYCH%5k#g6
z$A>0MsUUKK$dxxMXpLL8xJ^hiFNl2cf*?wZuok_k0P@0g&T>JN55fqdVi4T;r6_29
z_B1@(R;+GU5VHUFAWAi}o(bF5W>pHJNf7UB$*L@Gl_07HQ7wq-GV26UBVDUDJJ~R^
zrp#JF@YgpqnS`Wn5cPtnAH)qoGz_AVVj2W-qev<&g*OG!IEb77KRxB$Q6;Zw5Y2+P
zC5Yxh+{y!Kkkc}V+k)Uf9h2WKh5U{nMwQNHxig3s;`GvFhP#3wwhE%P2zmFi+3kX8
zA4D>U4na7Aa0Zc3A2#P293q#vJBVL$4Nnl>Aj}|qK}4lf^ve|vA|NH0)<e=c2oWhX
z$r&FDBK{vGGtauqcMPIa5cdReuUs|qjLt!HVaM#*U4wW$&#2TnyIT;uo8)v4qDK%t
zgXk4R?;!ecOgff}<{2Ls=G~oVd|N*Irf|-&IR*a<Vw)}d?jZV#kh2w*>3PO|K`d3H
z_p7abK|CPRUpPR>$blS_#@4IKK|u@-qH+jTLKqUn!$Eu$#G)V`3F1*s55+&mP6qKr
z5JQ7FlV{}S8};&yjfV<`1<~@4tnop(^Nry_j8O2C!qGuIB{EX@v~W}kk7tfLo_YVl
z;xR#t<rzGlIW7pA?94L?Xt5>p*&v<^VnPtl2QfwYCkF9?$mAd<ae4>ws!TS`FLl2Z
z#LLoO34&${Q!a9n*MfLm<P9M+P@EdXv>>Jj@n#TjNtqD@<7bJ_R4PU?VJe<gX3O=q
zkdbqOcvqaivYZ>lyddVwd^F#9H{Vzw&RXvU@xJ&6X=S0vhkR*t-p+uJgIF9yaR?Pc
z_#}u=g9zqX>-J|sEa3tYvK}xl4dQdI5<%<_Vp$MhaIRjo{TRgZAXWsiMdp`5tPEmZ
z5bJ~3m2a#H;_D#331YRpUkQJxV`IfN;@=8S<r`Giif5L#ILii^n}YaGWTViKceD8S
z!p2gzavlb;UCJ)u4&hFrQ!%^6e-L(&vPYb4?G<^bv~eJagF&1N;(QQ41#u{dKQtu{
z2k~<d$AUO6^GFcCs&I&Y3F4?kYyOlrSV&F;aWaVCq@PNAPm3^^g<;I_ds?A+h6}9B
zvqE~A=YsH>kmki8E^z^rc_oOeX?;d%<1cZNC8dqOgSZ|<MhGQBK*-9I`5$Bq6^0Q@
zg^(pzb_k_IC<tLoX~QNZN0=+j6XpvUz)~1Od6{K|WrgL^0nA(^ex|fhvB0p0V1!U9
zgkIYErd@$iF$8Ym%di^btRL5utx!-kglZvl2%%#L)kCNe!i{_ZA41I#1~$fs6PXP{
z)(@O(g-|<$Q3VD|9g(^r)C-}02sfxjA`87tJ9<pviv>ob5N-+~5kfMAj|z-hoys*1
zSvSO+LueAh<^rQ>2<{L(Av6o&mJphUaBB#6h0rR5+d}BwzckC8A>5wkcZmE}U{G%n
zLd&#nD>PcCxg&%&A+(j*PS`$#sT=ZHrFNlJ(J9d-{I-8K6>kV;2!RlSA^3DGJcK&o
z3_tUn&1az*3gOV&(y<WYB4J@f7!9F)p+RqtLStB=b@)8AiG{}D5!Tne78e?wLg*aA
z@DN6X&?SVfA@ooyH+8pOiSfhAZZf+I+qcc^8N$$#_Fn9vls+Nc7sCDG{}bLFLSK=4
zg!hJULhTYal`7pYgaJHvA&@^H>>ol=8O!xx2oHtuXb6vmxXcz05)KZbbs2-^5Sb5$
z@CYZsa2pjC&x)+am7mFni98`3Dx9<<D_X{&>&XzF3Sr;-8B;<S$yv9)^w<!_h48d`
zI7&ELI7WDP8Ec@P31NH)i`VC$%&YJ$TMuD!2xH3_EE7U_S^Rm$PZYio!lV#h4B;ge
zX4ux?pZ!2cSnCy4c{PNT`I^kv(>dP=aSsYR!}ufLsUb`YVR{H}hOnrN!7?j^8R9dA
z>m*WtD}<lK-w9z3FP|_bhw*L*b3=%R5es8p2=hbO8N#j*7KHF#2%m=VSqSfk@BxpG
z3%feMFoby@SvR{6c{zk|;oibUAzUhBkbEpNCDtr!jSP#otg%EDmxk~;&#ClfQZ|&e
z9yxvy!txMSgz#ku--NIxgq0!wC5>%NrnP<gDn&kD)>s|FSK?m_kKbp#X84vTy<O=|
zybL+JM(3^#VO<F8#W(Qq%NiTSzf%?d-3en3P0JX%CHH%dZ3x>rMYrT`5pGq?kYwhn
zmF0G%`IY+C3&q_b{18HeFm4Rv#}M{#9)?jI#$H|p1MSyBXmO}`UkLj{I1s|wvc~VK
zevkvsD=UP<A)J&>*UusRDt;t{UqqPyD7)P(vq_OP2abhsoR`T*85B>X16YyeR0yX-
z_)TK%az=w!tiJUrvi%Xl8Lmhnke?0VJkNsoIbp1vagiq|gsU<yb267R7<nZGx=7eA
zua3V`)yrDS-yvKNAtQ_uVHAe7{tI)25S9$1R2W&}HsPXjMs^rP_KJj<E6fWcKaA4i
z1^<am#W1W)7-glG6H+N3M#{TkR~CQF&Qd`xyU+-uVi=Xes2oO>FzSR+H;k%bR12e4
z7`4NwuCSV6)KFnUmi6Tf7Lt^n!g^uU5943uhW~H|Hw>du7`KOU2Xk(;9u@L;nm2{5
z#lNxeW?>UyQ(?0(ZV98g_^n~wCXzUBJ6z7#TrH0qKi;XnWt9Kt>Sz&0%P{T=qg5EK
z!wAaDhT4ST48tX}Z5ZvsXfN&v|FbhcV;U6YxWn*-;g`#suIm#q!(hPaOL-(yGp*AR
zNb4byurMNIS_Z_!NQCiF7=yw{hS4F6-eL3!qhlDI!sx}}9cL}|Cl=>*R(zK*y7B<8
zROlvTbL8E{dkA}m@z%z?sybL#dBdt6#@%7`4dWh(_k?k882rz{2gA58jHk*Q-L_}-
z595C2?<agfI79IR!e9W)K#>`<ZK>CpgTojS#*1OR6vo40JQBv}Fvf)OXc&)$@pu?d
zaBTI8lvwcr>!s;XHmA(Pgu{g+gii{aUbezUhOxZ7@wAjt!VmtmX2RGo#)Yv(y?Q2$
z@nK8|W7njDXBE#X&ncLMh4IgaF;M|8gz?^qtc{MsM|RpKv8#U-@N<Ee75qvVJ^EBQ
zr+8MGyRG=OFkTO150{!S-Uwq#7$1i55l?6s)53T=jCaDA9>$w0GgSSd3HGH63y9-u
z*k*<?iw8c)mY13FmYSF?JlL!}=4Q?bV__IqyJWl@w!VNjm$!g0<}2WRA^Wg^y-jm_
zk?}#Ar^H4t*cOHHaTtrk_#|w7eJ=G4I)3Ty(=a{@V@(*}s!GEmYY>)%u~g>gVJs8*
zB8-(H%Y`e1UkY8SvMP+#GQSGr8<DSt%*KFJ<b8@<8|IFhdFyzo25jrY*bv5dVQdUz
zCx<<Zu|>uvo-fs{-Y;i!82ux;--j`&mu=mM(p$sW7Uol5+nG@Ab{>erUMn(E-yQn6
z$oQ_v*v+Y1Q2av}o07JxMaGX|Fw$OZ><eRm7~TlX2o8jCFpMS<Onbb-PhlJi<20vt
z7>C2)(+u{xS+Vi6k{=QN62?)HUxg>aI3{vjxTVWKzu`I=#;O14zlZS$Z$=U8nmxk{
zjq7j(*%6%ObSgIf3gcQB=fXH2#)U90hH*tYU6;bRoaU^{LXqXFlG986w=gq;>k=~}
zmRLfVstfUwYMmKMMXa18wg_?}s2V}F2y!FHi=cc2MGDIomWiNrx>i91g=x-TnzMS@
z2uR9Bu%L<MDwemhutEg(2n_Lx5mXXk3=69;p4F?QMe^$6H6o}f!hl*Lbk!579YLK4
z>Z&b@EKF5Df*aCGgLFma=Mvg50%D^GZj#<Oo$clbu5K%2^`;Rti{RN}<CX|oroGKY
zZWZ1pyj^%lg!@8ReO^>-w1|L6&RfG>5o>4QRuQz0piKmAWm0j8v=g?Ez!8B{oOfy#
z2C%pz@TB8M&$Ia=@JA4dAR0j+f*rqSazch92u7^uz#+{~D%*ayUP6?(CqEWJJc48d
z9U|bqF%%OKtS>gssc$qps>9tQ=p@ov*hSb?*iG2#duwg%5kb!gdPUGX0{5LcgCpoe
zZv+D)SpKK&?g;uua8CsHM)+q;+1HjA@aGsaTV~Hbmvvu++b`!l5W)Qs^owBDu*`8k
z+uj<Mxic@je*}A5lo=qbT)`lJkX?<SNd=?pyn;ayd~-avJ$VIV2*-g_w1V+S1VbYj
z7Qv$taC4rVV9sL^JRZRloT$N^%N|>&aLyci4wDb(MBSa$w;*ps1W!hABrE%uk%c!u
zUHDW4{cB`@nw32&g3%HD700zW#xPq1J!0q?!?*~)jEXT)jE!PECqM+NB3K>4a}i94
z;H?N|NAP?E6C-#zf>$_)w`c8s(EftPYElH&=4Qf|g!5+PQ{g))j^V3{nJlFFS_H30
z@P^DO5xkk!r}9*aPZ#oSAcJR!&rHY6O1pUDdpm*;B3Kx~I})F(V9a4}D;V!aFjr(=
z1oK4}MDV`IdntS}n_--3#1A9*D1s{$jMS}gQ3Rhv@Tn4h9Km9dMHQ@B{h2t)iU^j7
zFOA^y2$qQt>T5m0`$BxV@MqQfQk<@pY4NKFzUJhNqGJ@_M6f1;TcT(l#kUIB7(u;j
zrPuPqJG-$?xL&wH_?>WAO&h(NIOQVvK7uU~T!`Re1Y0B67QwLyjz_SaR|-#4^U_Bm
z*crjD2=+y=U&?Obo(O)3;Kv9Ct<Jag%y}u1L&EsI@{%8j;9vxYW&R{QB#hgQROCpz
z!T6s!A4GnUm&(xyeiff`v#t8U{1XwJjNnfxr_wRMi=2+&x3rRR-fI01nP)in?8Z*J
zaW?HeCvsj$*Cj605mbqyY7|$vaB+!_B0q}1BDfYo$tX%i@i&+K2r{GAAY??rLQ+Bq
z!>DRlorg@4k&Q}cMUfpvjucy3U(&Dyy*>r!Mscr5=_m@KD2k#uio$ec*(l1SIS;&C
z6y<qN`)9K{%V@)>Ag>WcMG?D@0hL79P~|At5TBeZHVjv<>}pX|kD^`_^`oev80M)R
zMa?v?CBpbRQPhp{XD`+fallh8-VjB@C>ll4ART`r&7J@B=cXu{NN*g)%~9;saj}!E
z+cb)1QJ9DG_aDe+p>k^!w?*-8Me8cKJ&Hq*m-9s7jpB|d?u?=Zo2Z{%qN33zik4B_
z6~zU^IP^lnk&4-^qG%mO&+0iWQ(q}D>c*V5QMBVQ*2-%ig(C`Q6s{=TQQh?_8q-`h
zmMRqu7Pi%=qG3i6ih{%^^a}$~1fv*M(V)&k5|$o`A{s?3ig*-BDKDgB5>b#FeBtgY
z&nlgw=*$dJ43DBq6dNiUJ=o7Ex~eB^x?2?8#hcZ%-X`>lqPNUPn3g1p2cqaN<!&BM
z6!%5ZS0;n+;RvYz_otP9QBb6dCFL3*^FiUjwD+MX21PMgBI6&9Vu<*e{+VC4Eb(uK
zM<qTcd_0OLM1~5xWm>Dyh$x<v>8NBp#Yy#1&d5~E`h4=IqZlP~bQCO%uU*L+?Qu~&
z6UDM9zTo;F#j{b&h+<|G&qXmIis@0jso>{@Usp0Fa!8|?6vc~COp_R^WW2;7RkoL<
zyb{H$QB02FwJ4@UF*S<Ud4eh#EN`T%khAraNiR7wOsQn-_2(a7X`g+6g+D48v!Zw_
ziuqA2P(bRVoY~@U3*QmW5xy&&E1W0fZ=9L-y(m7D`F<21M8V|EDjN%<_>dF6vXL@B
ziega|A4d_cY*1va#Zi0`#iuGGrKE6)QZ0?*bCK!Ctyc@nqgW9|ofzuI@MRP$qc|JI
zxhU_{wpCH<pKE@vY^;vrt0=za;vdDXD0Zv*nkY6#v56~&%(YRh6In0(j#E@*a%E$&
z`mj~FS>iU~_rfhvY!$J3u9)pn>_{s+c`hXW5XFyC9F5}FDE36LH;SJXvrl+1il3s`
zpRRQvic~7*JS6cjSB$im&9NMj`HPUQV<IP`I3;pCiW4GC#U!VNzeVx82)p!$$eAeq
zWH$AXVLWOUnpLY9=eeFoah<C{72|^NqVQ4_mqq$jF|I^Gyvn;k6xYNV%))PJX2eh;
zW;I<chRhfcLzNh+#!xbbXR26dxnc~ZV#taiI|f?}Wn(C(_?#H>V<;U%ZVY)+W>qm(
zstRir#84PR8R@607^SNkjjI|Rs~QhgHOj|OB;6iEaSYE^H7dw_r>gNS?>*IwqT1Gb
zC_^IqP)Ve+a9`A#uBnc(pCr|#Q>-CUQ&>w_I|j3wbqJRCWM;h>>Px>N2JXVtDuxCz
z+!#Z{7#c~xEry#!nhIH~vB=HBCNXPA%~ZB#G29}tx$suuxE0oV$a1^PJ7Tyqh88ij
zlzCSw(rabl{!}cjV`vjY+Zfu#5R4%dL;INZbxNPmA#}#zioqR&Cx+qGa_K$(NVb>9
z6$1%Njjg5csb-M)V+g3qH&rqi##-SRB2v1=5RD-gL&q38#So9-a>ty6TqF!8CM9-=
zVQe*nW-3YN7#yRsyTs6y-tV(0ep)$$gjKq$I=6D_6+`bB_QbF^hCV#T7*_BCkKyhZ
z`o=IhhSy@aCx&}@(wCRu-zzjMDt%uJ12h^#%Vysn1F>HW4~UTWXQO8_Nd|JjV|XZr
zK{1Ss;prF#tJW~#5aGiyJQBmBF+3K-6U-39<I+?3@_~OoasJmFF7F88lQBH?f8%*-
zM)B1?=T!`&6*DFVCK)RvN#z+I!-N=~SHQEv=M+Hi#28*6mpDnuUyR|U|FpuGRGwF2
zcvX7Jr2e{U&5U7I3~z`x_hwItVQP#&HqV|WWxA04d^3g_;-2}|M`J8+#jse)>=@pT
z;hmWE9`HTk9O1jdxiQR(VSWtnRx?-_vp_lt&G*GWh+$z2AI9)e3@Ps-=^qPOoxv<5
zpQQWqX$+r<FA*+{;qw@l#jw7bu{<5~g-mvpBKgV~R>iP6hVNr&Tn4LS=<LA87`}?}
zdz+=dj^Uda*2M5_4C`1ihSQg=x3T9gXRb~24I<wuKfTLfr<b^iv(axoZQv(~TVmK6
z!w)h1sIYA@{8`PY_iOQX&9@!tS+`SUmvDCsW4t9e1Noq-sJg)ibo{%teKG8h;r2N0
zh~q#E2V<xeN9{O%is2A*#&DL`a&>F9IUK{!F&v4ZRZaUTHA?bJ3`b-5HHKr-kH>IA
zgfF7#9i5eb@;@e%oQ~nQ^tk;l@<$A3(n`JWGtR|uUS_!(#)TLziW_lUV&*_j$v8^I
zaXE%7Tq{~-UyZ?A-S|s9I<>^L82(oLbuRvK@HbpjYUgIe(L?>uj017&jzE(-apL)`
ztT@WXQ7(?`IBap`#E}~Ze@$E%M_wHHaTKUZ>HlE8-qtBdDU2+mc)mF;A4gFfZ&WvI
z<;xVuaXOl9kK<~08%c#YPTi78GFUyS7)PZzDk~>bRga@e9984^OkOJ0<Vu+};;0$N
zez}Ns;&`zLb>pbV_$TenYZ%<{kX7o(aYGyp;<z!6TU5Pa9A8|laI>(H@FrnnAzi#n
zHW6<sY$l{gS94{!Rd}25g<EWmJsEe#(ISpF<Cqag%Q)_eqiY=96wpdIsfN)yjy7?$
zjia5En6SOjBXkIzLRTDakpVTVIp&SSjKdd)KaNlwVYvdrVBES-@$YMisT)=#j;LI$
zNImt>w(&R;aU|pDAXg_LlXn!M&R~|#adb&HP4US-w(fj3B5#j4ddAT!j^1(fk7Ga_
zeW=GVX}MMLZpGXe$9t#q`-<NqyjRG8yGB@d`TOJOC*=X*!&R+cHxJ|?#PN6>?aSL9
ziepe5kHoQfdH&!yHveKhwi=?~Yd2X7!o%Wop3itxF^>ru{AsBYPsA}aj$v^Ok7IWY
z<LNj?#Idx7F;e(s98ZZb2@Casw`USZDIw!W$F09`A{iUUxHz7PV|*M-dfFxnpN(T;
z952N2oJ{HyM4lHmNM=x(B>pm|VmjufwD%Q}SJOJ<UyI{)PD@pML;93Brp7T%e0n-E
z6+oOB$E-LOaD>(2i!}^hWpBkXJC3)dydx~AX-$|p;_nLQ3g-#u3oj0{zaPg3aeN-f
zGG5W2WiO25Be}>wlv1-x-l8}@mbjSLln66_633_F7s^|6W=UFKnijth`6`aD<5(`f
zLinX{rErySwXkJP>vicjajc2sXdJ)B@ogMy<JcC*cAk+q)^i#tlFe-p*%-%nBGvQ}
z81+pur~5L#k7G+5TV<~AWxXCq?LWCAj-6b+<2V$@F3#ba#@;ygah}BSgUla=dwA+=
z8uYTT?*2Ha9Ejtf5|UGAqeOBB9FF6N$by>2&m!!@FCwW8){ez-JdU$c7=MDRVjREA
zJSjXSJgs&a@Q2Jlx#a$weMX%9A*YMxxj4?paUqV23b?9(OTsHsE~l$7en?&>3(4Pc
zT#sXN2fWq+83~j~V0jWNlE_Q|34E8p#so?xP%44i3Dikg$HmvrSqWq(U`ybunudRA
zPWc3K639&;PXXnG`9j8*PM{!xLYZX}D4W)g)ihWbz><4seo+F&2~?2RNT6Z@o0EBV
z;U~$w>*>f!2~<v?N&;0AsHWf=3EUE~RZn1UQ3>wwKPj5wi`Z%=P)lBN=C6D(vu*<Q
zs3dTA0`(KPA%X4+Xpq2-BJKnlCeSE>TNAh~ft%QwT2}X(CD1s5o6}|!nbe!ARx0Ke
z@#aDX-!9TJfxATRNZ?M97Q$3TW@wc_n*`cQY%OHnb|Q`hoC&lSXA`L^uK(M#CjoB)
zW&*wh;t3=Y@Fx&Zm8dY7Kv*Ostf^0JBI0bFW=x!0!K6MfrjkscLjoP8cS)dY0-eM=
zr)xdqwO(X)OK=Yyi=-;{khiC>m+;Z)<$EX4C(RkzH-UQ+cs7CO61X>k`{bHj%eX&*
zehECBz#|DfAd$fX6X-8Kfa6fhVCh-Qcrby7Bo0boun2VqvkXa~(sR~RokyiVnZQ#C
zJeI)YGM`9bSOP;8JX8v^4VN<FU%i$wGJ&V%9h1N)>IsZa2d7$Lb7K=2C-E8K_ypJ)
zdWkF(5_mp=HBu%f@InIf6IhVIn|J0<O5oK5CMWQs%$E{)S>%-jSQx;<?`^)8!0QRT
zE#-{_rjR5sL*~>3rYEfLb~19>|0OdMn3cd=3CvdHzd0GqNETLkCxJO4@A67XV4m7d
zc^RLIc`t$Y6ZnFQKms2murPte34EejA11I!<Rc*yvew6G&g!2g@L2+%r<ElMEKT!N
zE3C3Ct+4KjH2*4rFB4cPbCqzl@ZVaj_;mu`NMuEt-)e-{3fBqO3pWVg)QR52r6Yk@
z67eLyPhd*|M-upjN5P3SKYuId#*VCQir=2Vjs&j$Y1^5=-URj~uq%PxQr_>ILH&mW
zeoSDGl=*!#C=&O}r1vM01Hyyp80v?_4=3=m$R_pbC{J92GJ&KuXMRoKSOUirIKfph
ziE>GtOyI*6h36BvAaW{!(+T`0{(Ayv68Ka64`D%VgTZIT&k6f}S=dzK#RM*K-A<xZ
z(n@$afxi>Dp1>9MB!RyYxF)2FW$Nw4EF>8U&J@xtkwhrn1d`|_o+WQi61hoaCt;Jx
zY>dBSO$lON5~Y(Uke)AmqPD>n3zH}#lQH8yu}x66@<|jWaZ3`-lPFH2LK3x;sFQ>}
z2_uQBNmNUsViJ{-sGLNV<Uc)UhE$8h)PYn_T7-J7Bx)p4Gl|*CPi3VDJ5V=?dPy`)
zqEQm{(>-aB#0}!R6n3L{stW7gl*G+RG)bay5*(tF=~PV>)+~vu*9sWMQm&41YZA95
z(JqPhN!*^q9Z9rKw{m9^Et9w_i55we-(h3?Ep?1m@}{~?k@?$5X)6rXu}-cd31<?1
zDXt{kNqCbm|5MQ;-bcYcagKA@17%s4hfEC8>|zfI!@`I#Dx|ALnSw+T$s}eZF*At{
zNpwsieAJeDdfX|Ao;>xMuAPNlgk6Q*gx!Tbgpb(KJBdC?Je<TMRFb$miGE2uki?KW
z#>;h#zDeAZ#Ns-}_jQcZb&PwHxG#zOlgO)UP-G0Te-Z<d@YFR1CoxdL4<_*tui`q!
zjS3?UlF4{pN7RR?b?T2M@mLZss`}$eJdwn+Nj#Ut&?JT>F)E4CNeq|w$t0diqHkSe
z1jV|>f}gTy)ip*Yv9hl5wEAORp&#e(uWO7+Vyv1QT+cXL*BF<?Gf9l+1>4(tnq9V@
z(X5`)ZcA3Qp4GjV>lqW0cs>aRPfVg|eIrrdcp-^NNi3>oY-5IcM!EXNOG&((<ZcXj
zHHp`fcs+^9Is_)<p|Oy>A)K1TG?6L7A@z;vNxYfjb&S{Q8_Vh&+w1>xADqQj4q2Zj
zzr{-+iMJI-bDqdMNz4&>S2$Pr-5%>X<oqNSB=KGn?=wRZAItRtXOsv77K$vmnE8>&
z`aK!^f$-uaK1pI}5}!-_G>OlWSdzq<lh(bM&jw$fP@>6Aw$#h)Ws3Pi82rl$7+xA*
za=>|YcR-a6Se3-;Bz7dRQ!)GISRMN+iLYgTBV3cjw@Iu`Vx7!w!u3gP5!sN$cS&p%
z-z?n36-LjHkA9HN@_iCSre)d6bE-nVJsrG@7ke4(PU43oF4ebwsqv#+zwOOmb%U`d
ziM>heOJYCQBCa_}97y6|66caQpTtl9kF58AlA`#&$9MPQ?(FW&5_h*ql5@^E=Nxys
zr@N;ob~i~t$vNjJD3T?EAW@JU1SClgib|B61VIr5;rIHD^ZkF$`JYqgp8M{5^{Tq6
zx~3;}XW(WA9%SHQ27b%HEozJFQvTZ+xD(}1Ud2QPg!FqExF6M>#l@oxJf_iO<w*v9
z&%o0RJfpPXnBT(oC$43R3nEmgZsX$Oc?Mo^Fezk`_>#@n8Tcmye=~o@SbM&GwXbmu
z@i!Tu7*gJ4;C%+1Zn)_B-)$?I-1vY=tQ&obi#Rvn26dQblYZ|<0r74)+(_h@1a{F8
zC9xTKUz5z7-ngwPE>f6NtsHJ-b|Z@$S))oeH_G!b?y|c<U7`;G=<ocg>`ikc-3{SJ
zPB(Hzv(fkrUX@HEK!qany73{qrZMJoBflF3-1OmILX-OG1>Gp*Mjdt)cB2TBDsIqo
zOp3Zu+Kn=96m#1@zbWoU#Y;I#FqUK_vlPb@DeFc#H)fQ`TyJSgc^2Om7nR(&S6ozx
z#JK4ej`nm^W;0uf|IWm!Y*u5e?nVtJHQlI12g^Kyjs5nY8tS@H&yD(SG;rf1H+s6!
z(2YiJ=x+GjXzWH4H#)k}$&KPAL{m3fxzXB<W^OcRr3EK!$w&cIC?{bXH`=<<j$_D6
z_h@SGMh7;@`*;472GPjQZpdzU+{oZ0ZZ{+*dI>>=!W1`DH@wut5<+7aky82X_f|wA
zUmg102)JRn(S=)~ib0Cx=E7XXa3j)Hs%6sAaaXBhUES!;Ch6TclEQj0p?(tY<wkEe
zMz}GO#gA#?+~~)dKVhX$bQb8K`nxgEjX`b<aD$Tf>}Ie0!EOw3V>ky7rRkgGyf`>^
zm>U#NUMdknZH;ncv>OxLnCQkBjvvc;j^1=qXU4fPp2dRG(y7o<Ork~Q#uOGQ4`rZ6
ziA-fAllXL6LQH15?H?wME+OdeW1rH2Ur(LIIGg&<Wa~Nmk7i%EG1raF61GT~=f-?G
z2PI^Zu)vLlZv5oNWj7YNvDl53Zme>n=+@*f>14TR|4^2iTjIu2H<r1voEu%iNIJc9
zr$XeTJK0vdvE6My4`mG<Y2nOYF|KuEof}`fvEGfXtdMI1lg*49-Pjb>>D<}E{2Ruj
zr{gJ@$~HE?jYjTpV<&fDmmB-s*w1{o8+({6Eg|+&Z+RUaaN|2S&bV>bje~9+a^obs
z4!iL^2cK}`2rI|jIPS*LXho_{JYrI|A2^syI#Md9+&CRoDDoUfUSvGa87@R4smdic
zeq<L_jP#9e6-ZwJ{OrarZtN~0=pjVEx^cygt6b};8_(Rh=Eik5Zm{w=n(Zc&-xzN(
z-ge_o)O(i}VU*u@<3W@^Wb%l1%Wd|qLgfjq=P9n=-KdtyKB7N3;4e2`y78R(3&uYg
zuSNHtzuA1v_{xol_a8UjFn{aDJ2&3D@$diCrQ|V^-9(&(SSG|NA#o}nNQjrvPC|PL
z2@)I<ibyCbAu$@6T|yG`<f!75;F6FcA#+s8DxpA0k%i3&$;JvbltV(QgtTa6ZVBm8
zE+piP@?1=c7Ppsi9tn9Rd?+EGg#4@*qHNK~g48_@qnkHUaN+-{`0qXE$m5yYloZ7z
z6qis!LP-gwBs7%JNJ41|Wh7LWP(wml3FRdEPb(^M_41PaUw{hIe|vu9sSsUCipmnI
zazGVEQmDmh|D)7oPGVgNbP-icLTw3kqIoE1<VB>Og!&R1P>Z+hK2PR6jiYs2N@&8o
zsf1<{nlqnLA1x%@y`5uaNfB4-zgM4D5?a%tvDt=6TM08~Cs#Zj-$6o031JC_M33{v
zcjugRv)}qPvv!t{A;B#{;<SDVa<pBIiARFMgf7ffCR6U(S8-kmdNk4()dNu_7$J;Q
z(WKT(iA53?ORyw#k<e8_HwiPSdlI@!=pkX0gwc}yP0dFVdP(Rl;o9)@o~(=-k^ZrS
zPb3VMFhoKh34J9DkT6g}KMDOM9M5T2q+WeKJe>-Wyd%>0=ENZG!2h|1N*FF-goI%d
zD2((7j^r@Hh&hJMDU4$!jHC57B7MAsi4rC;pTHPth>}o0CrfzC?M~%d(-^56)0r&j
zobqW@`JBlt3A3ZhXVQQDoFm~27U$BQ&t#s2`4Z?rsEJcK?UQsN>pPi~`6aC@R+ca>
zm9R|0atSLWtdg)=!b;X7ID{8Qgj3x$?D~q4T<e&8&A6U%1LH=<O^g#2`zrby30oyx
zkZ@7LHku#_CnWqJVY`IQQ|;~RxP%>&{T=Se^u(PKc1hSRf%qN?2Wagv-z#Asll?T^
zJz~fk!GjXMXPuNo5)Mas#CwFzqY{pBe<+5U(@VJKmJ%mfIWJ*aI!;Mg!Uubr#WU0y
zCKP;5!uY%PSw>}RDRD`{j}rcs@J_-{5-v;lS;8-LXr;u1LRnu%&#Yf*HA=WH;R@%u
z%J_g!gd5BsNq8*bCiCAU++uQD!W{|s8Sk=^rL>@Oj}_{`0~Q}fU8FprO{uhaA>mI6
zzcYWzNa8ale=t60oE}d6E9(7+$x8`;N0nDhUQ3`bs{SUbzh#B=_Yz`cIAkQsh?VWt
zwW*q`X=xG19E_P5KVXb!OknI@&W@*&#AZbq$ugWWTryH*6qHd&MrIjVWC$5KWn`6+
zO~%xlj&vE>Wz0{<v)Az#Y9-{5k;)lzC&i@6pt9hSeR=uUz-+yWC+3ooTSh(^`DNsh
zv8q8rUKwVeltr#M;vaHF`c>oyJ!5>O#oM{r4wubVK*qLUmSv&L^j%nC86{+tlu<-R
zQ5om=IdkVrE+*rzJXzA8JBrI7q_+B(7NumAmQhB=o12aw?>NfJ__|u^=0}cl+(aM`
zlJCWrm$9_8sK7|ID#@rUql%1AMCKYYYRYJ|$5B;AH5mi*Ip}T=)n&xrxAWJMQCmh+
z8FYj6Ix_0Ys4vqKLKAkB7LD#EQ>jO;-;;<mkkODva;>A0jK<t_O@B<AwT>2!<R&r*
zJ#$l<$!Jbo#+lM$Lvq5snh6!138T^yTgzx8W5Nzh+<~?-+R+hBK$!_>FQWq;T5pu?
zjgB%pkt=}q0d$s;A!Ch(uQa%2NHSI^SgAmk;gRu~2cLVO$WUqeJjmsNMxB%~g(gvk
zF2hG{$(Sg^FC!q^|D_!zBglQGL+&TzpU;v)GQu(p7EK!V(xMx4OGXzaT^VnewqL)x
z%jhBFBN;te>?5NWlaCpDGg4TNGU5~FM9A#RJfifMF@OeNw!fmKGEByxC?70iNR$s{
zLf@Ybk18XWjHIQ)-@Ve^FGte|gwn<^j%6GtW4w&_^IfD9PLeU1R?F2m`VUm8GWP#l
z>Cfr(@2Y7srqjCe*ng6mA!8<ujEt)?`b=}sa|Aw>F-yj5N+@Haj7>5=moZ1imok>f
z_#%3Y3uMe?K96yJRHvK^nJ<bei{<}rX1<h_H8Q@Eu}sEtnoSuiWvpg>6=UR2TM?w8
zi;%Un)T7zfaW>M|v$ElTYHgOWMaCf+hh=;tV=KE3$S9_{w#nEbV<#)$(nvC~Uf8b`
zyJYN^u}8*U7VGeobuJ@T%ud?J%GffZ>yvEzWe`&QcXZ%o#5za9K^fm2uzx-By^JF=
z&e6$BO_UKwWgM4rg6kfWaq5o!sn-uOPO@@_6eh3A2v=Egnj*`H>t#gj9Q*GQXX!L7
zE8Jzp1v*R_KgqZ(;}XaJNRid-7X`Ddy{K~f?X*A3_(jIAGR_{iUuA}t6`Lt12VCP?
zBwnu|uFJR~<ED(?WWa+=9^9g{TgKlqUdgy4<F1SsGX9itPsV*2&t=4v6A$RTNOP=y
zka(c1;~{5z6v4rc$FhBo^e2qJ%XrF!lxIx-pmSD@A(L7c<-}hyUUEg(=$N|Y?9Mk^
zW8W(FHJyO0$9nKa##<Tx%6LcTV>vOmoEWmhj`_NrcwSDt=dgU`MT`f8q{n&ez1_{6
z$Oj%cJ#cvt??HkG4i6GNNb(@rgC6C@k}^r7%8UEW?4NC{Dlg8I7k`!)DIR3zB&i-`
z@gS=Q+1SihK~$|Ef)&Js3L-lzTPlbg9{dsW-}~`27LQdB!)nF|4`M0`y03n25At}>
z)q`#x<n`b~4?MIrQExrS?}6lj>_Gt!3VKk3t6%smt&j&LJt)OyVa6hiMH!1R7H2HM
zn5&{F?Liq2s(Mh(L+=h!%6d@6gVJfSRVs>d9+dZ>0x1<mMGq=7sl*jYp#!HvrV-`U
zxne}TQ^ZlzgIXTc+wZFFK_@14Jg7^=gZdt{@Svp!4LoS*L1Pb^aKPhXu@v8ko9K2b
zuBivjSa0q@#6`(TPx~pA%vK(>_Mp879Xx2mVQm>HfWjzGI}bjpD2PxYu_JpUyfgC*
zZis^2(H190kEPAVRFyV=55jbS9&BMf-kav-NS)Eg=w}Qt20d8lj}1kTUICvc9Uqt3
zWEZt!G3mnixT5Gz3(12~9*m}bvN+O%SzFV4M&o;V(A$HL+5E(V0UiwWpbwjU8T&Ez
zXS{U6@%JhFBl<xe3}t07BPl~@^rFW#%!A>qFC7;%f|k~f#C(<PsidnuYI=+ZV?7wh
z-5_y1M^0m$z&Md{660jXDU4GY=|Rc#Vm+Pt491y^pE5S8BxW(0?Lp^CB5UV_IUaoB
zL2d<k6wLKto(DHPxaq-s4;FZ^%7fJ&>?|L*(1S%D9DZU?t5Hc%S?s}=oN5W<QpRPB
z%NbWN&a5O>M#&lvzVcwZ2Rm3<>%sC$Vv`5!*!-H2@~>yI!Gn!VB0nVC?7`_ug31;q
z-!N`v+~&czOfv0Hp@5wpEIpM-UwR($V3!BGJ=hb?yw8KZ%%AgsQ(ODlJiz!J<H2aa
zVGq9d;D`rDJvigRSr0wc0y7FYsr<m?xCbYgn8jjAJQ?+#Vse^>F|)0oWAi5uE_-mE
z`2~87_TUop9~l=pQX`qe#bSSEh0H4+{KEX#s6q*^GQZ|Qq|xghJnQB-@-+E3+Wb98
zQ;@FUwg-1;lT_eT>@R;m`P+U$yz9X|5AJ*Lz=MY##3}awg&)zfq{UxZyrO|Ro%+Os
zr<Blx-`UJoSyZkp{_vn}W$`EDa}QoHu__A^t%He#e|hlIgTHBGc^FS-m-9Bhrc)rn
z@ejQOc<`3_zaG4!#a3C6ez3B5PkXF_SnkG^%7O~%XNNi(9*oaXML<C&1s^Dg=YT}U
z1V)DfDov}{@ky*uXNbEL`@v!KSDLqb?AOo~#eONt%$S8SD`Pgs><V%yNM+u&il9Ql
zLP1UixfED8;^-@TT18ZD9!VWmMSNOC<W=yYg0KQZK|Tff6|_>&T0sE?1r^j+&_F>U
z9&qYL&8niXf+7lvDk!F4X%$gXL2)L;ODQN3<t4cfB$ifCMnPEx<rph)z_BWVN_ho@
z6cgc<6jWw!6$LdE)KpMaK{d|vdlgZg4y~#<o@^gJky>olVQ+2bq}NqYPeG*V2$I-P
z!O7&51Lsp4ad2bCCX7uPn<;3nU~i0lNz;OrmW&IR*-9G)ZK<F6(4Ivax^@aWR~5(j
zQ^XDmIx6VIt^;cmJxn?)$Y4U%-Ap7#ne&jSC{Pt>3aAPdp8_v)J*o_<D*Vg?3W!ro
zkj+rkG-);!ELQNPf-VZWD(I%5JGb&xRdJ=NJ?}lDedxvHBLzK~ykc)}1s^N;L_r?~
z;}ncn(3htBm-Imj1}o^NAg!9{&q!o|f`L&^nSZJ57@}Z=f|0aPIp;9O;WUHQ1Qm)I
zrC_vz&DF$MI=X6t9<4Y=!GvmJF?)|y6St~~33Ld*rq5LHse*|LCUKI<3Z^TVp<s%F
zsR~Ao`|tDHY3$ASoqg%}s+vfyE(%r`vlPsx`08Swg3lCuuHXyW@D((<mRP^KSiC23
z4%g~XU4*Fcb;ZEyV!na}tS_Vv>`7e2{A&&vaUyXEEkXs$6f9TJe^(;ifSN{(_5^yk
z&-c~Eqv|4S4Y5kWYC0)YR8+A>!B@0FsSqmGDp;rBp@K&WzE-ea!M6&wE7(9|b<0UN
zbls+4qk=hSQ#aAzD4<kZ6nvwAG83mB5^m-G5b;z_zg0PXhk~67E-1LDV3&g33Whwj
zZ&FJ4@Z6)|1nm!WV_U|33ii`FQScp&o}PA$@t}f33Jx=;NGjhmKf+bWdo=2zDpZa~
zl^;0ZB;zRsrxl!GP8rTIIjh*WmL>B%n{;%<FDdwu)^?Tj>k58iJ!3=aW!m@nPO3jE
z_=V1n4XM8>xT4@%TsrabPva&(jk`)FyT~N*MzpP)3O%0=w`l*T!Awi1a*xR!#=F$9
z1Y5t)@eddqXST=Wv4SV`VxgkPwZz{QJXP?gg1;z0!QENOcL$~s{=xCj8DB6`MY<*L
zT)r!By&B@Bg1;5KQt(>AKXeqT-FfOZg}qVmR>8jt-f_iP)ozqJ|DMelHtD!Xq!Oos
zI2g(NKt((UBrqnaa4;cP;{Q}kW==U>DpFK*`Z--|?w~c9S+!SY7RIcM*%-4k=3q=!
zk;a80)f$2}uAC~0swk$~7ZSM`bF0Y1gce?26(6d|ry{@l-zQN8RTN-O@sV?<5SxV=
zi!ipK{a?j`$uZ?rlvnZTsl*bDB^gUGmS!x&SeB8p<t!6NUn|f}ROpRKB^8xb>{YQ(
zMHLlQRV-AoNJTXj)m79|QCmd~6`qpzby`go(+Aj3=cIC|vHh;Cj*74fLq%QgQau&*
zRWwjBsjZ`(iuNiRs%WI5F?*Y-Xs+6~ZE2#SDGkW*B)Pw%gc{RAMN1W_1s$y@{#N4K
zkx7Mr$VSg;ZLOk>ind&rp0e7%Q{1fS_QS9`sOYF7z<MVYomF^M=qf$OGcH4gOubd%
zX0OB;;<Nkual0-RMTM$DW7qKBImS&+BJ`=~(llmg*BI)CU&WY2$5cJ$*1>o(gA~cZ
z#JzVCssE;meymtjOGQ`aJsBx~Hx=EZyoZX9m|y14X?sQW-b_AL@rjB)%=@Z{#88He
zo@xD63{Wvp#USd8im@sNbJz&R{x!r96+@X*{4iQ|HN<d6GDosLig7d}xkw+UVmy;M
zDki9ysA4voljzh?F_V@Dn^ROAs3E4Qn5u%l5?xqB5KdPygLN{=OW9_zLL%`9e#ZQB
z#z>1_sF<r_o{IS_QYRNMxy%_N9bT;BOBI_{Y+=_D+SOJ3aK(P<S*l_gi^P{RS;4rH
zaTVig#>3BJzhbhM)?RrRm32(MR<S;+Y+$lc#U>{7JOv7)`wo3WE1&-SrQ*~qM{-U3
z(6(`^ZyC3%*ui8cBYAhJ*d672=mcDDU#sk=!BJ64Lun1)sW_<O7Zty%koF}WQgK1W
zMHPotB!rW{S8+te{T+!%RUA|84}yqOhT|$us3=`iY(JJb_;}(EDo#?DRGe0EM#VX9
zu|-XBRz>Tv|Gh5zYl`!%kKk_SyKG;k(yv@DvG}8kpO{=`{FyOlbNfV|S<0TZD=MzC
zcumDkYQ3ho&Zj4>@Ea=jU(2z)rua?8Efu#_+)<IJAxXns757xUR}rJ(zKRDbUa0s}
z#X}X3RQ#^usfx#(=ZT8KpE~G6MM_8|@)_MTZt*z{$kn(%m|x}2llhm5mn!~I@kYhp
z?0Q9`TGkP%NcdU>Zrh{%mc9R~c*lgAh{TYKNUVl94IgOsF+xKojsATTM<*|tW&TZE
zH$BJk0giYL2^`>{fLfwREkPCUw09(HaB9e@A(sZ1h7=9iHRRBcSwj{LSv6$S(6*Ks
zQ%kI=CC=6ouWO0CwMCQKqDO6!sv%87x(1<Pa&3DdQCVGE9H}k-sx8Xa5e@5z+#2#|
zD5RmVhP)a+)R0d@ehoe9h|lVX@9T)Wbwq4kQ9whzx}wYvX$85H`Rm%*ifAaR(WjIs
zt|3rYOsXr^))fcqiraNXLOoHYo+zQ=<DcS7GTH~Lp{$118rpD@avB<GXsn?;n-w%v
z)KE!7Wes&S)YVW$Lsc59%Zarat7)jkgp}%BrG|!@EK+h3sSu$U66?`Hol0!TVfC3e
zVC-5?kUsU29Z74TiH2ic?ZwcPBS~z=q&Z^?4K10pVvNjbTjn2Y_(VfH&3?3Hdkq~l
zbkxvELy){0I&1b5Z)L^|Ml#(@Bn`XD#gXaJplDDvXd1j4boP=f&&3$>`ZV}yRHJoC
zjJP6oDIl!D&|q=^c`YX0Y2ui4(a=>xx2TumDTa=Ys(+-Rr-okaBE2^)0B$i7LqjpX
zp6J8J*jGb84gEC?(D0dt&uQ>A4AL-0!&nW2H4NdfQH(=13};fYOx!Sy9s+Kk*CRBH
zjEa38Ws8WTS&8s*v@$hJ(J-FH2^uD9n8ci_Q>y#?)}HuO4Kp=-s$rUj=^QYFBO?KX
zRBM)o+3X@tUaCbnN5dD)mur}-VV;J?8op#@KI1|S3!=ePh03C6^(Cw?WsG!~yvzQl
zhbuI!WH0Hfn5@>Yte$;#tktki!w))6>iAm2dJSv5_{xh7v}S1Kc+uXAO&T_9_*27Q
z8n$TohT=7x)UZ{<HVwx$oY3$st&I;;$JQ51>Wl3fc4*j1OGv{3+SoPxyDIJ5dSbVR
zJsS3EI9E?hl$`rD?4uSpq`jyos!mJmzbNh2wxoj^4r$ora<z7(<*qLdYp7pee6NA{
zkV?)Y8ZzpO-u1;%IwPV-L?+$(eq(*{OMUUKzBr}fw1!_a{HkHe^u#k7ex&o)pGF@^
zou#H}<JzBcUc&_@7a1=xiihzL^C#-SrZg&-HT=w+28zrp8s3Id?rONF;VQR&jrOhv
z;yU9E4L4~;(MjDv++l@Ww=~>lg*fT-+ejk!x$e_w{~u_080C+cJZ5~t_&Z~l2I3hL
z>d7BWo@;nPBV52P`wQTuhQDdc^&-`aR~lZ^5qa@}7yoFuekVTGi@2ALH(c>8<G+mW
z7~eC-c<rS)psI~=H0hhtz*xJA%}JclK*W0yKQ=AFi~S9R!;6P?5^gsTiC!dmk?e)j
zi{oV+nTa$MF3whQb!v(igj79?7g@c?=0&ZBf=YH;TIG|~hV~*PGtG;1FN%6m%!?k)
z(*#$qU)0_Jb9#}>i`=Z_@uC0|((`)pA@h7uCBGMgIbp%5Qpk(KQC@_}_ixha`@0%r
z9mTz%-@upfqNEq4yeREO9WUy7QO1k1Ui&U^HN7b3MR_l(u~~r*#EZ&aRAI9c<HCl5
zL<;^tQq>FMq*Q0U1|!9gPGT+g)@GB!>T%A7UNrKeJ_j^lj089Kq6wR=ylCo0Gv+P5
zXwIYsBV~>>9q9&DZ0$uGcD3c?)F>6wJ9yF2i$OF*UUc%JvlrcIsJ+PW+FQNb3yECE
z?Qh&<9w<MfCpvnH7pfN;n_fn`e}&G(=f$3ef=s%lM!<_8iL6s9(~B^3gYie69m|V|
z*@eZfUUZ8p6!4K3J-ry<#X$D{c_8!5bE&;(ZJdee&C17KeB#Bk*qCPr;`<Oe5Z{-v
zA7g*U_YK9|<p~8FiOK!b=ud(}ycp`mN-tJ<G0cnMUM%-w1!o&Uoqv}&(~E!SCyexB
zloz9!k6|3oIF@l7BOTNPFD5dd<i!*(rg|}%3%OcTi(X9gV!9VII6s*rMqDI*%Hk|9
zW_$6O7oW5Fr5AI&_`-|DY+8-PTrU<epXbGVFBZ@&vq?x^%0`6<-Ss-c&!{m=IAAH`
zGDdPy#XgP1>JyGhjfCi(w%Uusi|pTSoylUK!gNFXwO*{F#jm3b?f+h^r*m0HvW^X2
zY@`iDN4$<rUTmgOisWx3ws`Tnk^M}HZ@k#*#WpYKZ2Fdw$eu=maJv^fIR07jw4JoT
zXi|!&?PlfIMuPZWFZR(k;>7_kE_iX#i|^Qb!iyigILQ1E_125;nNy#SF*)MJQ6}oK
zgtW%?P#kA-LS3AUMxOEF6!X)J6*-I|&$4;Wi}TUQR&$dtdGVtcPpOAq{N%-DFRplT
z)r+6$O#d~<FC00`8%O+CR)|olYhGOU;*J-0y&(OD7dO55EgBq&r?6XI+-7kR|L^!7
z^M_tM^5Q;oig^$Xc+BK?#wU!OqCF?_hZoPicuNb<ix*z}>BV1Oy!3+Fq9lY={-({J
z_I$2O{iH@;GmkX!=6^E3^Wr_dDCqWXAEVnxN+gy^B$%>+y_p!vO9zsm+jr)7=t$J<
z=eE#q9;nbyhVGYk?EELqsl%nC7{{mR$gHCvbDt-Tp7EE3c~-`3I<o7?p(9mCepb?S
zr0dA7BM+NGN1bM|RBq33<<yZ&$1lxes?nQ~%n2ms)$t)K<jrUvlaH%V0CloJl#^LV
zM`1RL=qSpB0xq1hhl{W{D<yO+@!L1{EXigmM)H=`QBKD^9rJaRkJQx>)=@!6MK&wx
zsJX>{U8_ukrlYEkYC1aUxH~SPx{ew;TIgs=F&tb^M|~Z&bkwHfVx?{*Cw2H#EEUSr
zKu1FzO>{KX(TKf`|9>$Q){MpGIwG}5iI7&Tx7X2HM;je&qjlRwBXcI(tx)N}u8uk)
zN@pDzI@~%W9hwd=du2w2(G$&}vKeVnkMe*HAFT>DBMBq@39{0su`qO)IwtCv#EPY3
z?3=VM%!zc>(M?Bp9X)i6&@ocSN9-D+W2lavI(q5ot>a@I19S}3@rjN;I{I@=U&eln
z)T>#I1r;I@h4>&HgV{@*#7O+GXgn#ynI9@)p9NG#=@=jNj@B`Ty2@rG;W*}$WWxW5
zlXZO8Sh$+l`{5KFQ)#8`NS~%-HWT90nap6EspC^7vlyQ?78LLq^UoRQFn+-}myrVK
zqlpDN7V0=aZRuE~W3i5XI`-@KZIHjzu|-GmCSnQqYANF~#^pLz=vb*^747Xh*6UcU
zV-1N(&b2ze`kz9|y}S1BH`Z}QGB@bhNISod&9p3E#*jiK5<rAp#J|z8RmV2w-!dK(
z|Gge<XLE;+ojP_g-_5vJ#~vn+bJ>xEWYU8tI<>IBuW#7Ip1y+|a7c&TM6A7*ewa<t
zzt?eu`O&CyjLC7v6FM%Pv`_6*I!^0|^&`%YGdj-dXzoJ`AI|AGuOqJyANp`X$3-3g
z=y=0*FVRTq_*2K6BdI^?_({iQ9Y50!qvH;p(K>$Rup5k57_Ty3W4z8dnLB@z`EQKW
znOiz;M|mXRo{mR49_zTz`h%$Vp^iu%s`Z4$XF7h5dY>|(RDUpe9@R<tOSgZTPKzW<
z&-9l%{-)RNCgK(2YsRWolc<pRR>!|OQhdnl!^tLeF`q`)0Pl3X*Ae5x(<UO;hj<?n
zn8*15CYcz?`vH@S4u`{sL?2vHedONwB;S8$P_hqB=9L!w_h}nd%;G~<A3e}E`I`)T
zjioge**GRUV-Cht#xx(&eGoq6^dS!`xqQg&17VG(_Sztf5E9AE=R<xU8d7pL3;0mf
zhhjbyWRn64F)8eWr>Q8yNaFCOVrNrP+=miAl=R_ZQ&Gi-sy>wRp){Li7|Z)m)`xP;
z?=%%uD3VGAA1eA#$%o25kQfOdBwo#j>OR!-p(eLm!-rZ-$gHr#{`Q}ccx^W8u&Zt~
zm|XRJXb_F3;Kn{Q@u4XzbeBI;#@|ct(=n+TE0Me0xAdWv4;y^g=tFBC+W0WjhfjTI
z>q9#q#`!SbhxQyV)8YHj!H14Mbn@AML88Z3(KD?mZD$`cIL6H=F-Ba952_EneCX|i
z=7ZOVF6`BPcu6zD+{c_uzYhT)f^2r_m_VQLk{I^E@WJFr%LgiUMc!|TboHT|58a~~
zdQd0%OOua$=ozgNsrxa_MHc4}#!r0c<3nE``uQ+`mAQW=l9x(<HpxYNAmbn(1~bXg
zOhjUa`Y_Cg;XaIDeKaGvMlu;incu{dIfl)#Q7?%TqI^1&iHwsNCo@iAoJ#ZCOiW`=
zgi_65{;COP`7oRLDw-_r@MmmxZ6-daNogkL`0#}fbA6b{<`TyFj0=2N=))rBi+%W#
z2^|#G`gvbA!m)4Cm-?`b_2oXSWU_+RKr=C`m?IKExSCsB!}t~BTE=yZUo);}T)~~+
z<ilnkPWbQxi(7oy>BBCboo^Vo`ml}3w~X5vcQESFf8Fk8^N<gFd^pxj>}4dfkI8-?
z4lwzS@gO68T0#M|R1W*_Jy$1wgvn6~U~)XF7bq5Y(uY$%-1Xrejb0%KJ;?qvd(ZfA
zmiB)i&iinKl?#lQ880$kVx;^(GWm%jx#^#M_{E1`qu#4NT#0gup>oZK>rsWO+>G+y
ze7ME@Hth^dC@hlpKAW$jkq?+W^x=^Yk9~OJ!|$xTWPIww^JwHVAO2vT(A*xD7e4&S
z=3h~r#E9!}A6`XkQI&savuZBhFurB{m+>7Vx!(H_<F{kzb%YRpWb$L9ADjI6z>j!8
zn)%V(j|4v)epK+IqTk+r6a6U9gm{u4$$mK5bor6$N17igY-VQ6!kE>MY<^_-BS*AQ
zU9GvGLL}V}!C|HS$mvHe=EeQU?MEIz3i(mkkGy_-=tn+3^7}zIR-#%|I;b%>o5dEO
zT90E3`t4h2Qo<h1#mp;dMK}q?6!RmH2Sxo@z->kD8&krMlH8L>o>Clqv}|mdXsxnL
z$}!$L8@H*sINw}UqOoG74t27ned$8~HK^i8RTir;R%fi?M@=TR{HX0m@n-f#ICY!e
z5D`9aF6#PG&ky>wRei<=j1B#0#H9U<n8r++FgEq$<r{~(H=eMCA1(cu?Z;<+wDP01
zAKm=u?nfIx+WOI@g*~3_{Akauhy3WkMDj!SBXbMU(T`57bY{$8bTg8d>Ux+H@i9^S
zQ2o%Dd;QR(-bj@Q`dJJx2Duf|!+z9nAq*BxMlvnxA@i<Lg&NA@!z^yPhaVsL(bJD!
ze)RTZtRLh2_?V`3xwF3?1DJf`M;|66_VuG5^NlS8nFE;*^<x;5L5zd_7{Y`Cj&j&=
zKSo8B5lluhQj*brjNzQ5L^4yY@qSE+#!v8LBJ)X6Wik`{N^H4vsvpz*nC_=%j$o!A
zpZYP&4@yOuDI1kY+DPWlc?9PAG0%@Ve*1O#3qPn#p5p2pv>$mtpH9G*qF76@fFo(3
z7E)V&EcW9|KfQa!*Q_t~W0@bT{8-KAaz9qmeC2elh}L?@V@t{!KfYquI>xnrPz)7v
zQF1bgtmj%A7$X@r`?1B3SAM+q;~PJ=`thqDSNz!K$G3ib=f^=mw)@ezr5N5)9LVEb
zBRh8ZLAcY8U4HCl?rSOb__5ayBIKg7&yW4=I>1OjmL`$9ambIqUc{f^4jg9up799d
zQO09_9A`rD^h3KJ{5a{yDL+oL_!C|KGr7okmhl|pdBzKjRG02$eJRR+jJhsIm7kgX
z;zuO@svp-_x#!3AXv~NU2{)MEWc-cs7UONkJB)W3sl~^)o%j8Cz~)27r;LvnA2U8-
z{GD-LOZ$|3#{3UIp8N5_k3VUMXhZPhZyMnO$e5Q-NMTfn(3b+F{Nu+PKMDp=C}6wZ
za)tr{{OiYomg1cs@BN4gAU1%U0ptoGE&v3OH9$8xL8bsc2;go@;be>tAdyJ|Bk2w%
zpVvxEVv-!y-?kL408-e@96%N(kzlGtVcA(pkH+U<k{Uo76RJ*Of_X$CGdG)g7|-8M
z%**6M#(a$V87VSTD^aYK@V63$`H-szP=iU40Ez}sEP&zxB$Pm<04fJiB7l+slnS6U
z$CMACOaNsAD95J1vwhJ{g$PxN@CpG`WN$=CEP?CmQ>z4QtQtTyPEMQ(1@wHAa&TvA
zO^&Y>K<xnP1W-4CW&t!0pk4s=+0`h3A+1D%02(qO9%+k6V-6s*NdQfwoFYkS5kM;@
zEg2(XYvyejDW)waoYzWp2%uvCS9;)T4|JkGe+95CjOAfu1mF(f?;u_UAq61QC<Re0
z2u}b?06PNM8Gssq7Jxs1KmcA!SQUBzz5qJRPu#{`{k4_&gGrFu4PZe43j+vqA4Ud{
z+*%j`m~2`Bd>p_h0dxtVYXIG%{ro6^?#z2I2KN3p@;w9S6+rI*PUW-@c`qZ8J{&eU
zfWA!n1<;?#fB*(Y6#7qb0E3uQHu|sb5avSz7{+9H03(=CHVTVGjtXFO0Am6e%dXEE
z#|1DcfXU3qGfrTfNGqqcJyTQIBr+?2sR2x5b9w+X0+`7>5=M8$`7{8kMOWhyWp)6c
zMeCAI8Rjs45y0F4<^?dHO-g0gni5MD7X`4GMfzzp#eW$<ZfC+~R+a>?l%_R+<pHb+
zU|j%T2e6V|s{&Zfq(N(u<z}`u0er<~&i3{jz_rZj7UFY;+TXaX4`3538yGh-l0Kw^
zJt;$nWTzIlaJ%0yZe`rY_-z2&nb6lR6t*jX-2t2p;2iBad9f#8|M&Jp0DC#-z5w<I
zK-WSC0{EWEcM-F1!a*j77!L=~b5I;z)E!~-Xf)<n0LPh+Z7nFt4*@Jmw!f)7$;nSK
zo@PA5*l}yZ`2a33FA_xdv#A%EUkTt6ljW_&j{*F|{4(RujK2i%Yk(g9ZqIeDHa1=j
z;2NFs0o(|{6+}u9Hv{-BfY$;16TqziZU^vt08azBL;DgZdCYh(fCm9QWPYEqQyW3#
z5f{o#CLxt4>?NI)X92tj;Lia52;ezKQWYxnr;NXtyrff@O{zGsjd(@ts(B1mq(bJK
z0N&DO9z=W){|4|bfS4d+gLdZk(VkEk)r|`RL1YTrOOX`vQVjJW(p3@@f=CP^i31#r
z<VxmL&ZrrwLcy7X$iiX)#;if)WRi^rpGl4&QiDii9%+RzJqQs*v-|cSP^!gkM6Mum
z2azX;yg}sS;9YIRhe5kn6iJ*S^RrIDRE5lfK@<w2FpCsMX-T}nuHr$I2;y82=YuF2
zM5!P;QvZV}9Yh(9uf|w5h$=z*PATPrC?7-x7ArGW45AW~*5{m&?;R-l=o|LsQ&rZ{
zR^)9fss~Xch?+sv3ZixpP3fS5s1t<aay*p=OzJY$3!;8hch`(<$h;9_W5y<orQ3>i
z!xN}(b2i&Bwg{pn6Vh7+(VDrttst{4^L9~h`ye_*`4^)TI|q>w#GoJs2jLFVLwH4(
zAiC140LRGm5)g#KJjAF5p#|ZMX7Dr7gYYq#$}Li(fgpm>nB8qfILeJ6Oy*WpIo(!t
z3*uQ@d%iwq(w(sfb%se##$JpR)|&}^EI{#}1ks0wx-VltM$-ESF(8P6Y-VaFsE{~>
zrZ2`pWq%MugBTX1yI5mH5T6C{c@QIm7{&23f*8$YD&v?S#s)Dii19&8Vuex_Y9}TH
zF_FyyFH-7o{>ed1p>b#@$V-L7rUfybV<?ykDO6@M`IK>15VM&K;`lj1d=bR5AeIL)
zHyXb<h<QQGXLCUi3xin1JWHn7)J(B`x7hnXkuRh1OM+M$<&<_s5G#XNAH;?rRt2$|
zUF(8a!(=VvSJC)c?F98F(xtCC52e}|#HJv&2I&v=*c`+b4*rHRa4@wViT^{2{Wgg0
zLF^7<PY^qT*vT1oaeVbTnGf<YQheVM*{NfDgV@Ke+wDZ;@Z;Ny13`Qj#6i}NF&<((
z%t&>=XL5w`C?nlD|9B85f*|rk5T{x6(!*kcpxf!6Vl!WRaV8pkHi(FLA&84X{1n7x
zc3leMM<#jBJ4?2=r%!G#eh%W7Abt(v3cCii7oVI+r)LUW4dPl5f3QfA*Mqnn#2q$o
zFy3VRjqw)a@8xheh<ibLf}40syA~7TkC{9O;$c*IL<8Plkn0I6zcZ3Z3YBMcj7**f
z>8bHaR9-OoGl;*Kykw*s-;wKe5dQ@6AcTh@yb0nhol_z74B_7(-UU%Fg!&=84<aUn
zKe8il2(cl=g^&_L=8(Ny!RTPj#P|VYd<Y3lC}vjyJ2H{YB*x?roKdff$(i>tS(xNx
z%*vQ8gzQXmFs6r)8bVs=|9cBVnFYHdt>j{!n=udLZJwqNL&z6G{%B+|CIvz$$fQtI
zFC0P<=0zFBJNv|;QapqbA(RZER0yR*s1!ow5Xx{&dBzVqh_WG+V@~m8R*3S7A$p9O
zy;Q1%P&I^_A=F}5wGgU@P=k3ShL8#+sU1Qc*6T)dMqHGHNP`d>vbRSF&rT*a3ZWB`
zTy_(US#QGFl(AU|%|mDrLdy_Zh0un@*8hWfxNmJ)X~#%P`w%@9PIO@G$hf_@qcaVA
z2<{Lh4l@|#5WFGi%sn9}OsFSn2paPSoZrVh$moy81en-iOu|u<s+b{IA<$O?k?LL8
z)is1}A#`UxYj7+TYRKI|tQni$D}>%5d=f&RkbNt{k3*QlcMcrdLC_D;`-adjgzX{h
z2%&!n14397!r~AHhA=3Exx_n&!6A73PAW4)7!tzJ5Qc>?JcJ1$OblT}2qQxn%Q2%u
z7#+eG?gn*W_vJXMMM$Oaz_@WCjAvIwp@2ytOb%gM2-8ED5(4Qx^QTUY#uOZAUsund
zGcJEBaY_}*N%(09vqG57k)LtXb3*t$T9NWl@E5ETpT|crpOFq{K?n<(Q=YvY#Frr~
z34w-Ua|laASQf&D5H@nE<&0|>SA?*V$tp&wyE=raVf$kKs}R<Pu#WYw8L#uql52fb
z-xLCgkr>j6Q;S=;-ESDTGH#<eVnW^x*JE~uu#3)%j^Za8oDlYea5RKt+{E4x4n%vh
zkI8<<p@;1*eaHM@2!}#A9K!cpNIyc;#{q;Ce>{W}A^aGE=qP^RDnu?aIT^yK5Kf11
zCWNygTww7W<M|LhkxEdZgj9%-elFSG$1ZUIB_vL%E{E_l^It-^8p1W^zcOA4;h!h=
zgkBHfMhLfAB=cqn<RbE0RJj#Z?u2lc#e0lY{eF~?{wRdUG*)5M3gZduIl@Q{<M$Ar
z(z)4DJYz9y7=MKDJcJh^{7E}@7;$0zMa%xvgnww058)+qGXD<Y74z3orJ^gA^tZJC
zvqJY2CG#Eg_tBV`u$^j)KLKH63L`#D|Gco3$fKY>2qRL<5k?~Gt}v3AP>hpFGUJwH
zyDbV%VKXyhmM|J!bdo-xqiE_B*}@>q&baGnYFZfSVN?vGQWzqPmfywC>nMtcku!{3
zVdM_mZxZu_kvEK!tzzvrjC~Wv#l(IXM!qoehcRQAla#_7Rv?UmVH6630!SoRgcM<K
z(J+c}eD8Wra?xa!2%}^erNZ{al@6n980DCk3FFLpJD@z96~b8AD|S1toE7bCy;yhq
z%_fz~98iU^Y8cg+RA;Qg7<pJ;?J(+uF_t<OM%^&#(XofoER6bL`{^_EVACS~)6R7i
z4Z`%eBGHhs5m#@_*n|~ou6Y<O!sr=BFB+&YTCvv%qjeZ<!cfD|!e|>tJJuz}_F;5p
zLe)Dk=@>?*sPacgk-^-}_<y?0riW2s?6=q6oW0Ebj5?!_F;X!QMv%=AH$ln6v~Htk
zoXIXLj4okx4WnBmlK%Y5q<a`ua@!yOeiX(BRqgjvWcCi@<1qS#(Lan&!sx?=Tz$Dp
z<&OXT=7jVCtc(m}R2T!94`Lh~#*i>Qv`7pMV|W-N!WhPdl8{L8|7(&snuEu1-AKUr
zFeZdCF^oxJl<6dzbh0;)$d{XiJ0?x0Wtp5ZB}|(trg5z=!k8PT`)=8bY6j!XFg|56
zD~!*=_&ki+Y(^eaMV!bSR;UW`dCV6v&X4K~!dMvPRAq6Le;LLS=1Zf>fuL&z@%pZs
z25K2t8OEwGR)?{MPF@2^2EGboZ5ZdnxDduVTIv~gSNDbSHJ$rMQ`d*FA&iZ*<|n07
z*%ihn=9|OV62>=SYz<=vE8D{OHjM4jNa7T~JHbIE!gsRrpU!*_<K8fe=Cy<O(}@|z
zcVQe1<5U=@!#EVi;V_OykL9182~@rh;|MFnsjJ7BA7?xfjr@Tof_ceH_8EF6s-Fwv
zEc5O>aS?toj7zkI8i0Wx*}JxrcoW7?VO$R5=P-T=;~6bonwl`K(9X;;SHrj##{DoJ
zgmImfTVdR0awAN4Y{qZQM|Yy92>tgeb0>_uVccUq5)i>iz{4;ev+EJpC6O{jlKjs4
z)BmYR2lYIRKWW=%@kP}2lF2K^zZoMLsG-+v{uAxn+c5qO;~k5XEylom<~NqwryG@6
z!(Is)nNu!v|1+`q0b@L40;7ZRJ;x*)2o!WUJ2(m&aI)?)kYdmWR>_$SWM_qV7FMz{
zW@9W{&XI$?sRq&vq#F<h^01QAKrREhnNxp=M0laj_NeAH@S%Zx>@C1pvqx%v1BB!y
zLP);>C}g0pfg%Qq8YpI<s)6Nn*>9i(lZuQb4U}b4im^0f8OGu<_V>%>43sx8CvSGD
zTY>eKF)_p|F|TZ(N;H^6a#iEjiB~sJgE{4)Qrkcs!~U_>k6logNfQH24b)>^pRoZW
z#WXa~h<W3vk_WNP3^b=R*Th;AEey0YkjcacCR!P2ZD6Q@VFub5xD|E`G%(0OTLbM3
zv^UVfK-hp`pre6K2D}Dz1Dy?I7;qbqsFRbOH4D1b&LZo*q+XqcY(O!f8t@p{IN!CS
zyNggWKxOGu$K1|h49|kkfS;z`K#;;Zi%Z9xCptJvt#tkVQBugDXKL6pb*QtjiaJaK
zmVr+U^fA!IKvx4j4fHbbxU--;EOj%`-M~TJ(Zj$;JYvMDZc2uo;p0M%Mj4_vC8Q_0
zXNZpt5GuQ!eGT+8(BHrSuJUuoq#Lgj`eukD!(FrMJ2%~opP3=(Q|Q449yW0dq1hi4
zN6!f&{_Xsj;RZ$+IAGvA10xNLqT@2K%)n>^V+_nT@R@<J2F4kfVqmI)@dhRsm}p><
zfrf1ym$Rkptn8>~B=@Xo-?wVAL3hFzRl<%Lo|tI{rW=@HV5Wf!8G`=P-L|RoLo1Pf
zA@Hd|w^$eX-E{wUF^l_5<a1hD1{NAvWZ(+}b6H<tV4i`Jz2d%dI|>v|s_ho@Stqjd
zw^WBamWH&Mmblo!rOU429TLB!!93|)!g!}x%5noM3~Vy6nRb2ys|>6)u+G408j7Zl
zHME3i(%tshS~px-h9-2Zm9X%>v!7dhZD75D4F+=bblw=3_}3@S*>16so8HOsTMT?-
zV7q}G)K-V29PJXe8g!RtaoH`l8TghXDJ_{h4eT<o*T6mlyA8U>Z}PWU9L+NvdpIVO
zWVgPbd8G}BCxR&jSvhFnkbye}?ix5unQ06STr_aRz)=II44kIrUDtKYzzG9C7&va=
z9xs(eO5#as=#h(_RCxHcv#v9xx+I!DbDc48-azG+j-o?cXAPXA1D6Dq;gTr0-q~+{
z!X?`L4O}sB)xb{%E>kN5<9;>pGi^uf5*JD0J4yUvpvATLE!W}+|JvaiRoHROz;y$+
z4QzQC|BEDU7<eU#-wfQOz2bEYDRgwXJPEgG6Z6n*D#g_*Dfy;3?-{sn;BN{x@POum
zPHh7(3_PL}ftUAFgKj>P@`Og9oKuoT4O#q7dx&gjtJNgsnSnoe#OOBW-DQ#cW7nSs
z{xa~A&em}9%wS@t6zAtn9aXZYjFQD`1OFI!Yv5l4dlooX$YQT7-Wcc|WABhv$~xW|
zh&2&s;ypDji&&3{F+up@W#>361t!{hM2B`s1wEp=N5q>*Fzx+(u?dHXL=$ckl8Gb}
z$tJ3rsAj@x!et`Ai2^24Ok_5Z!$hiyEGDv=$Zo>&h>QZ+%TIQW3p=uzpg;5#ei-vX
zT<R!~NHdXcBDaY=CWJ{hxe_}(BA1DrroEF>X}Z!y3X!}fJ~VN@h+|S*s(B?Lp9#W9
z43UB+3YjQtqMV6fLTX_XB~47;<}6~OsEKnPQOrbf6D63hIqxDRQkO_66KN}4rA?GE
zG4i5){XnI1`-Ji)DwwEjqKb(&LlOp+bI_btH0_zKWa1BxpxZ{JE25(!K0oPfvDjJN
zL=6)SOf)o6(?l&3bxqVW@p@cRA4SwQQMity4jrQ+s8AE#Iy;_bO092V;egn_qZ4Tc
z8<}WKySj<iCYqS|v~yx}+VD*@rM@XC&3H_vmPr|CW^QTHU0K9_&Qniw?CtAnV}dr!
zjwU+M44P<1lTtIKy@{)e=)jy>B>tBoI-AI#8C>tm)YQ@SWBXT3E>%=gg>1q@vtweY
z3B`nJqN|B+CNvXX69x^q3EhOxMA*dqS}A@L0Tb&_J3Hr33z|5YkP@Q9&q$d4RRVEE
z6~reEc6Bb}v`lp2&Ub$wo75zW@uTC8lrUgaLU$8AO!P6)*ThFAdYb5EqBlp5SH)aa
zRPB(kS*3sRi;r3S!~~Ulsy%xBOwf!BBs9^Vy{VcQKnqW^z03PJhmUdA+3FljL&wT6
z6T@jpP0TVef+m`lhlwdBMwu9GVw{QbCdQDrc*+P(boJU7MPq3$xb6g+*>?7Cm?xQ-
z$ehe}Qp%Y-u7iQNsV1hGm|<e3Y3~NhG%?+zKfsEtb?i4yTYD!4PP_hSo3wdo!fX?t
znOHzGZsKzjb7&Y%(Dw2LFKk+tbD8vN8bf@Z2|_zVQ^)fe&PmSHMYOzExoYH1w3<3v
z_Di6%@=HE9moP46TxMdqi4`VRvPm(kO+3z=u!_wmnjpT0m12I^Iul=;*lA&xh4m&j
zn5b@{hJ}qLHc`BZzi63J4^8}H;#U*jnAmFKgoz(aY%}pK9j1xzOl&u?!^9qw{!l3z
zly_XJ==gSI!cG&rOzfsJWo&X*ulQ+fGJQ#uy}V<uiG3#a(<1lUGZiMxoN&;@ArnXG
zbnECi%(Ho=LCO(Yjb8CRBSj|FbWP|O_ozk6F%!qBZy&i9dj;W16Q@jEG;ztqX%lBm
zoTby8lZ^c*$99kN{UKK-Bk>!rIOi4TO<W)^H%&-8=Z_|SGI80&)U1imyyEyrPOXhI
zhc14meM}d$^IxHp$iy8JcTHR~aoxmkCT^Ly!A;zxHDBJoXsL13X?~H|rgOro6c=rG
zw`s%C#ro_iHFa^%#C;QwXxL3WpdEE%Hfrc0Z7g%0Q@f;jbg{aV<B5siO+2IFGV#<z
z>0H@{>SFtV1iI0R+0?!qP3`D-&MnsOnDD}+r-$3S-%AsJ)Bb58kA+vX)zEHi!DZne
z6K_mpvhab0w<i8I5o00N!qTy>5?vg1b>}<U|EY%+98~soblsfl`b-yb7GT*M@89iW
z-nFwEjkl0s!C@iM!moo}uCJUACL}-X>8iRiG08&v<}oyP#FH%$=BejMv5?t94hyLk
zvRKG!A-jb`r(D~0k<G%GvB|G=d(v;}BGo6B`CQk^JH9tuX%^Bg2n#ta`U$=Gs%KJW
zE#ZqEak;oNrG0jlycRyRP})Kn3;8VMw@}1FQ40ku9Cf)0St!iG1ugp}n+B~}Jx9~Z
z&MiKBloX#RW}&!+5)?DpN!Mm2EqwH)D{qXW{s?C&i+(vT{=MQPENh{hg-RAGTc8c<
zM8|~k7Ajb%XyL00E>Gc<O+NAPOZzoq+->IxpQu6yZlT~F*G-?OW?}wG*VA@M`{%^e
zv{1{!Fbl&i)V5H^g3p5ALR|~>EVQGcvrykc0}IWm!xkEH=ganvZDe8I*yQrNT#YR>
zp)pLf_mHL*npvRjx|o(gC3lXbmKIvELL1J$oe8Zi`*NtQg*Kdr6sko^>L6zaR@@dO
z3mq+Vve22DZt8gD6OScFh6TFbt5-i^jyqYl;ITlvjmA|JnhvLZm7C}nDlGuNaBX$b
zz<Q~}X{ow}X>IK-F<>D`gK42B)v^$_(9J@38o-tg!$KDeT`kbLY+A5r?)-wv-HWb;
z{ajP$JG=Bt9Q9KwE&fi;96e~1X1nIKb3B-w+{;353!hl%Lj&cvXa8dw&n77}vpsjX
z`f~RMSQu!bpM{nIdz0)>%Z%T546-oTqF;@QF&nedp$*{!9BSdkdM6zt6%t2S7-?a#
zg)c3PvM}1hYzv>!`m`|C!bA&`D0Al|dTTt+!tG<u@wE1;+pSFCrdM*8CR><dVXB2=
z?{b{*i)j|7(`qd1`jlg4P|pKmCi6#rL1k1x%%XMcj(wlvoS2aMxrI42*R*CVd|_cO
zNA6phcsC%<NRIabktZk?SUCKn%L)p*Y+FdnY*O+f3tM()s}dAnTM0|(bhhv{ZQT}@
zSy*mim4($7)^$u=VZqtVv68A+cg^mSu(6}Piq_B?CNFikjiX@R)Cobc)&kwd<;$Qw
z!u@Z?Pa2-Efi{0y0~WSf*koZdHD}=)8tQIwORdD?-o$1H5_)WL(OUqzgr-{GTJR3f
zzTLtOI<yv!9l>NeN5)J~Y<byP=260K3wtbNbb-4I_FC9yA*Bm4cfo!O2dHTacP)Hp
z;h=@H7S7QOQim;^v~bG8_k1GPuI%{1!Vx;hsoNHgQ>~4z6Lf~Qchq{48cw&bX-PTE
zhd|e3r!D*P?2H9^4XXdbMej_z4vQ^O!*Sli1zLv|u3ETAUfRuQW)C?3A5&KXZd3KX
z@4au_bFOnPF4tWZAySdZJd~8sU>;Kvg}cWy?K55TJkRr(F&Qc<C7~i?QAmo4&_qNM
zMe6_V@BB{B|9RH)KJWV0x4!kQaqqp>K4%{-#FvFQR*1aHxnC7xQ3FrvXN*<4x-Uds
z>6(4KkYD@C{`v)V^96OWD4X|eCkk<rv%VmA)gW*Fi|V^VoMLr``cD_)3~dT;);hb<
zi>jvt+WDyvKXXkk#En9nEyOw6EW{s$_@xl%ImZWOUn<1xNcM$7{91^Mg*ZCFU19iW
zHnvRWgff{Vzj1DM^IqmK7Q$2pN_e#z@U;JGA+E{zq5rkpd;S#um*DUh)!&7<$qRvo
z;u<DQ^ZiqZe+!YJxer96zVT&hJV#T|P*-KQy5P^!aOy=xa`i=Zi{`GSSH3Kst-+(A
zga)66GJTboo!BF{U0;=>xfhG-eceB};JWA6_?=eoOPjNU=Q9WAXP44YT0<iZjWy&k
zqlSAmRM${eL%xPPG*r}3PD6o)`rWf{*YN2QztV84hG(mK?y<A)+>>>i=6=G!>Z^$5
zH8fo7ub`nqX}8mfl{8cq2kz3q)5AM8RMEK4sV4Sy$8%K<xxR{l{HM&^Y8vj=a1U{#
zuT6F~1LZX|+^69I4Rthd396~#evQAQ@qgP_J=U*GEe(J6RSP$IYt!d`E~%@z-y(0Q
zxjQZOr0Dt@8VKQFc(9*a7N0{ue$(GXLsJb;X=tP2K@AUSXrbXT?*E7~)tYN~SmQQ}
z>VCgFHy_dPXgU;$9qwba)bO~5F0Hfq#MeqgYYimh`neB)eAs+K!;|bgQSPIA+iGa1
zp@W8wtfrm4y^g2720jS$8Nb?xzD}$lO=-BX$KUsmr{-NA9?E>(F}qJ4|M**TyK8t_
z!*n(yUDEK3hNy-ZJ3>QG4gEC~YIsgVFFLQGuZHK@cZRpOhCcKmmd$&B7c_j`Pj%{=
zeMBBJ&-PQi-R)v|`)OF;$MbJL#g#$Rplb+f2x%}hY;EQ@HCSx({%YvY{uY{t<J{Kx
zPobWoju`<BycUp$IjA%^)L-c1%^vTU*j#~E{g3une6omZNN5<YVT6XHh9V7vH4M?f
z`>p{R25K0@TK89D7I>?7Ey3I7WPdf4#c3F(fwyY!@AYxS4!R?UPshEi?2#HqagJ!1
zs9`j%Rq>A1@V1>bMtUuEUr{lTH%`NNc4$|{K;b0z0?lfereQKiEC+coi?`Xw`@7@e
zLVwl#8(*<-Hm_?lHO$hmiTWC5YnY?q6^>X9b2ZH4z|*jTwbrme!y*lf=|f-7%zFNX
zRIsw{_qaDjMJ+rpX;?}J+IdzKW-QV0Z>Q{HV|>fRLyqcZRSI~iTB+e>4XZTX{;AFH
z`Sah%t6HcU6sk6b>c^UyYc#CYu#SB<F1v4T{;O;*c9Vt;8eZo}7*~Rq&c20e&$5j9
zM{|np@{KQ4Z)kXvgI~i&Hi(9IL~T`}3P0!>U&FooeSNHdPoY}3-M3l8dm8p=*sEa+
zdriZ34Ldj)HN4LY!DF6_g^GJA`)~L@;JoYVWB5=AjeNv5`N6wW>awAh|D#vEyV$Bd
zGIoo^Rp_GjY4}*f0WKGGc(MNzj@y3T{jBe2zMA#?MN9p2y7+i?`%J@O4WDZ`sKKwP
zPHXcHr3p7Zj%b)U-CtExRi=5r;JPu*JLyLDmm0p(a7@E-4t@i119{vb;hfUZQO7qL
zzSVF-!$}QZ9XUF_<5J1#FT0DUxh811s^OZ3?=}3O;TH|(HT<XnYyE4U!dVSJ3IAE@
zLLrYt&vC}x?Y7=GPi9`Aa&^xo4ZmsNhxUFIwTq$<+MIux@<%*ZH2k6AcWSQj(*mET
zo^I?Tr~cI5o<BAGrQshA2@Tgd(XM8kz1Q<M7wwLo8=Pnza=v~t^CsQUvvOLxH#1zc
zGju@5EjluFWa(fkx1ed3){5yUuDf@Y6FYi%oSLo6>x;U3E=&bxA3Zy}gpS!u{1pXB
zd^-HXbJLQNI!XyIts_rInY8>?A!P;g1<MH*=ukpNKb}d0w+Sb?T}XKy6@=W8mQ!s&
z>Fi1pt*qlt9aVHx)j=V{eLC(EUQO_B!FvSn6|62u`!#f~#)?^L>bPG=EgiKbsjZF&
zbkxz&T*o6i>PkV4bTrmcPk4R72BO?hN6Md$JzVF>o9JjN3J;3H!@?gDY$ixe2A2D%
zC_FCMLhv!cmV&KxwB{g8o2C8}B7ahlWj&>%O`4~guASI#FGxuz9i4TY&~Z{n7ad)7
zEYPt~M>ieabwqSHI-b_iLr0+wO~*4jp4IWZj@~+Y>hAvv_F}Y4&iOkFo@1)!u59a~
z{sEfmqvHh~FY4&4W7|Q`&_BzWb^Tnpc)NJ&(d?<3>ZgO)Uy!+U9fppej*t#hho!^T
z5nu~%_s!{?y}X?#=R@z_C7#R?*-JF_QRkdG{oE@xLs-X7P4S5)sw1XjoR0B2;yMyK
zhUgfoBdMc^p77(3Iy%I>yl>~K&h6!aItH<7ay!JU;b0vXG&QPtsbM;X>$ovEd$bPj
zw~vs#e5@O(W0Vf=?X;-n?o(Zz;2EQ1td23eTu;b}6Ld^ujdV=YF^P^<$(gKU3Y&DJ
zx0tTxj`V&|F5kO0yYtNw({;>XFX)(~^GGgxrVj1}@#;KF?C3}H@6_GK%&eCCVCU?)
zI_Bw^FG<`NVqnrDPC6a$>DZ#<B^^t2ysG0h9ZPjA)3H*=%R1Ol4Rp0!#|quu_T+;$
z_q~gr$X%u56&-7JtaC?*T1{_T`2!#MG+nKcxlA&DkKfVNk0*RLH|4#qW4(^IbZitK
zHn3ZB^I!X?>>HdQJw2m!^(F_oIQ+Km-YvhYW3%qASMTWVt=A?&`rPC>_x^bSHA`l1
z<-lNj>Nu$5eH|a@*sWua?tVe$Lwe5E)3M!kQtgmJkLap#H}5VTS9JAlH{ZQ0yjTA!
z%kJ2#W1o(1oB8(Z_*k0yOh?ashI?c73D+4R2XyzA^;1ET4u(3U<FJn7I=<HNxsD?`
zzR+=0$A&E>*RJw&tDmEkufu&woqC>QI>^5g<Odlkd2w#WH!PH`T|T#$p{5PY<SD@9
z6Mi0Ee5d0SR~Q4;44l?+hHI&TTMT@!;|Cp=b^Na5M=qf{&gu9?$Im*>vI@3ujG?$k
z#Cuw8n2&qB=Q$vCT;jmc@vF4JM~12#^R6}2MTwG(3;1}0w7YWt&Ff{a==g)<R>$8o
zZm6pqS30h9QMy$2nvQ$-`~MVV`*YVT+}6XZEsy7J>bUl#C&NIlss7>g8JhjOq5h@)
z2|kh!hI%s%R5DeTAoCV8P~1Q{0|f@M4R{Rr4EPOr4R<dz$3O|gy(QcJOE#Z4crLbN
zr?0N5at)L;Fws<b273gh4Ma@EgRoYn`u0S2SJNHpWelt^Rapc126#Glpo)hf_P9qG
zxYgi|B`O)X&A{yjc!er&V2`POHr3~2bBbH4g5l1-I}9*Xv0Q7F4LoJ3JL%P6-=WoI
zU$E5VTDesWR5dV46qZ@)ZUgric#@h1?ln-|KqKlKsA1qf0}mLeBW7zFs4e7v*1cM`
zqj_o>?gR3QjDq(q^~G9$T?1U->KUkSfE8cX&ClmP-T*f+(C6*!h6aCTrGB-P_NuRm
zfu;sp7<kOUg9aX=<@fxL8feD$w^eg`vc>-}y|Ufc^;^E_uWzeIXx3IN*DUF-pDhiv
zqS+1}_Ity1Wm_9~LVSDNKnGh<a%iOYxxSuj-7?x3XlvjFrW$Bxpgr5oKzFJc*z&c1
znXNh-=x3{rhI@k9NpP60-nLa216>X7U#ahG_vY|v13e7%W}yb2G4L#14X9oQR{xpN
z)4+35Ivf1<n!FEJYnS;e1l02eh;ENG@=xiOTlb0F$!Gk1S)75Ofsldz1_}*~2`Jk@
zy@1jT7zRuOx`CYHih+4sn%R~ZCt;u@KnGfQKD&}t@2_$%*Y<G6g*lK6ez&f~(tvUd
z@JW1sKt&A@sh=>oL4l<vmYFCrFo0vvL}?QP4Gf}=fdd8x8yI3>rGb~(i3Wyolp2_1
zV7P%1^w7Xq10y+R42(AL%Er8fFXsMmy(}+z?`7nx#o0W>JR4Bs42(B0!EldXeL>ay
zcVCk~%a#u+o}o`RFvY-fj%@=|4flLxKGDE51Je!6Ffh}=JXWDo_AIIFqd`SJTO=fN
z49rb)CRviYkk*1~v4NKiERt}nlDjjogq1aTADFd_EjiQ2?cCkHecZ^st(jkY&Q;*$
zk9%tslv>5Q7<kvfX7;0jH3rrj*kE9-fpr|2A@}V5RRgaX_+*8jm3=#?UN?{tQe{Jm
z{Hvg%@C^fR8hDGf*ymq+yKkd`w+*}_wHO#ueBfmuSrk&6=w!(4k@q<E4D2+pi>riz
zZEUx8p6#>~Qtun!a`d5O|3I+awp>cC-YmN_q;?qKlg>wiN5#}`t^fx18aNkHIcxm;
z4BTDY^ReOX|4(R@LH>zwMoYZw{nWr`27WVe*}y>qhd6%?{Al2?fzLTT4SZ|3=W$02
zd}-h-u54lT1=pOgIx0xdk1lktT*nM><vecSYc3ICw??~<xea^5z)1tM!|Hnj-x*lt
z&$q+sH0NDdof4$Z83U~w`D^aT|8%T>b66b;t9`RGelqZjf%67_=18dLzqlv+tknG+
zT@9;J5tUylpBq^hxFi~Qf0TPFcad|an&*;%CK1Iz$?pcP7|1k{W#SJ5R}K8bm8wqW
z>%D!~IM*WTrhz|MK?Bzf++e%;{eN?*i6{~VT3{gIBExO`f7#I{rf&81>zw0j?WV%S
zEhchIlrT}uL~#?@Cb+y0{waH|IKUlaj|rY`cm+wA%V)xG^0I=GCb;o+d{dr(y7!HU
z`ZS_$L{ziC%JMNe&qNs$Jxn}fqO6I0nl<r&iE<_iOjI;^>47qFtBKo9lsDbYsM}23
z<0v*o&UXK@+*~$h1rx0tb%zPFN-iJgttHvdII6OVJ5Ah8WfN6QR5ii<<Z34FGTkdh
z&ycU;1m8f%ZM}7l+Ulr#O?>I7TBds;u5O}+iTg~{G;zO)a6Ie0qo&?dmVx^1c9rFz
zZGXKiuWohdl8M$P9yd|XM12#@O*~?vfr*AD9yBp%g_ny`BNNr5s;P;_CYqS|SIR9J
zb$_M!_u>rRML)zQGTl>b+JD#tgY&Js;yr4jg^8A|povaV*V|rCWIkph(k>@FCxe^h
zm)m7?$8}w1{u3siq>hQsCZ00U#zY4b9Zj?~!KIQXp09QHwlmS*#NGw|jU{sJs3JK%
zwd^z3+)B-gsxIt1wsY9u&BU8h7X9JgNOx(mrv(p){8<w{xr(xOCZ03Vi!E=$GV#2L
z-X;o7XeRoYI6-B$VJkn66<(mSY`OO}(T_tYruwsq)|I_l&3!SRQBHQ9qpMIErn~1^
zKBgY7<$IvF*ESI_5jT-A5j0UJrb6ry6J278_gWD)l!<>@=kk=CTPso1J=2Vt?rU8n
z46AyU=oeE-aee@=0vy;e^-4@_+u}bEQ{0srY+{IsDU_QSYGRm)Q6@&4I2}`$O6CtY
zF~Y=16IWv@FRmKK)pu*Xmkt#lV`8j{aVEx_yq4wiO9!3eidXzVTum@B$;3BtH6^Yl
znz+{5|8`t4I$4CQ>@*Y8P0TYf-$Z6Y%`h>?#9a3NC%%~`X0iI>ZMlSEpg#Y8<lzpv
zwGxUaO*}GNU}7<c(07@fQwwEgEfO5g_kWnNWcCul&nJ{1U(TlBsNhe$Ev)27FmZ)T
zgo#z04kkV`anQtS6KhOtF|pOeS`+I`yukrrx?7sBn%E%D@Qmp-6R(?CZ{oHi+0Tk&
zBxf@7xo!BCiH#;UnRr)}zqI^sbEpsX4^60d*s7vDr*DbPru!||eG+|-J_y-n;(Zf4
zP3$u9fr+N&a=1nRk%`Af`#&_X-NX(P$+7Ml+h34(wl{zD?KXM)hkYhK=JMjr=Q;TC
zgxV{mUrMNDeLSDgf%Z8EOzh{?zmF#;=?W?NlvAL4F3BM_xQXvg{9xj96Gu4xO?+kI
z3ll#-pUv5QlwJR9?y@@zY9$qS{EnG8ZsI!=r?@iQ@B7-sw<i8-?O8S0`wi<d*u6TO
zFmaOI=lD`bV0FIBsk_9>r=-&+xQE#$sm^d>CROjG`q9KsCeE4og)7n?-_It_nmEwa
z!#)3K(meouJ}39Qi3=uvGjW+yph@nOq<S-{el>B?#3fFv9r^o`YTPS+E`Yoi^X~n3
z&I{f!&+?s3s;eA$v}~c8g+J*hZ+k4{S-5WE23Kzj9t(e)xM>0wZn5wWM-+Q@wJ*y8
z|F$>7au>-=3pHlDEzdxbI`4Bzd5T#$Ue`0ONR=v5#i>)IIu<Ffg&YedEch(&{)aos
zjqCbev%P)`&yMu+Ii;k9rd4xu1zXSXm9oIVGp{>(d&*cSYoWY_3KsG$yjG-?h1P>J
z%Tc)4UqBCAdALY&Jl|^JHVe0ld-RHAN0B>6?yykN!krdx{&D*N#n!H5q1gp@OTV&(
z1_NB3s+Rjat`ATXB+AXhyDi*f@f}e#wQ#S6>a4qk+N_b~UW@OuP}2g>zm^YBd@=QY
z3%v2;Nq3i48I1DE`+$Xd7V2B5V}X0l!~gKrwLsiIKsB(?&_bKeUhkW}Mwa{R+1SFH
zm2-G#!q*i@*4)f~(85C&TCt{d)xyIT9<|WI!o>mVmVv6d)bSC)+XuS-KW4f6ExhgQ
zHBhw_-g=;-<Z;@!(AGjbX0PRW(gJ^b`;>*S<RWh)5?bKJy}sdTZ=r*j9XU`jbhJQZ
zY8MM#Excr5iG^+!x?31*VTgsNE%dNpTL@TqhP`Q_zlA~zJuN(Ep|6F07J6BD-ogtO
zc0HE+SW#AQ3w<nbhlGLGN@D)5vh!Gq1sC}Qy3YT~Kvj^hj`j0u7IX^+Ycx=O(Kd%S
zjeJw<@j{Pj;roHgvcRQdPu~*6poI{7#6p6#V>h+Wh*)qe4ExZ}Gy2>?>YhQWLa*#7
z*E-D~6J%KoNecrk475;0ua5X$=<Z&023a`h&p+70J<C>4=W;uAC{0<IYGE4t(ZUD|
z<1I{J`&fKtbdL_lu$u;{Hl1=tvxx?&{)5!$L5lbMV=au6@wRf1;;7^Bn8-G_Fqxfu
zOFpYJ#ln_Bif<0^>eI51dlxs|!VFf;;vPO0kIUhEgEKAnM0J*h*=&&K{MB!9=iujq
z6qnO^)Un(f)cF<`SXh`I|BEb~AEa&>>^AA`gB4fQx`WkH3(G8Qw(y>X<rY?0c-_K!
zwuXh5Ev&Y%#&Tbs-8<O7%EBwudEU<v&VkL#?ph1$EWFA&Xn||{z>e8HI%kev;qUgK
z=h?xkbN3RX?@${oykX&O3-549vm@GiHd>fI*gaT(%fiO4C5i^CE3N!oGwIbP3-5BK
z56b2nCcNe2tq9*!+G1g=g^w+KVqu$w_c<{+ax8qnF~AvZ;UkMHsv6wO%j?B<3w*la
zW6lSI6;G+y#no#2x#O|h!afUM4OS0U$=SnIuCLlF$V0kI(jfaS9AK|mIBMZj3!hmy
zY~lBczQ2xTUq9oU6v#fvMPqpOA;C65|K}EtNW*e-kDf2TQSc@0vvhj9(6_#)Tb)Wn
zRHGqoYai#}{LuHcAfqQNoV1_?pa<}sg;QeZ7aOP9j25cexXZ@(TtF<`VWXmrA1(aE
z)zXH~#?KbcTKLVvWlk~2<9<21u{xKsAb4Kzg5a-$7X>c~j(y2JDC{^y@qg@p=e!%D
zu2}ek<J`hEHi(5{wmXpi;^J?iQLzH@8(jP?K;$>M_*=-Zk!j;!j&`XX)$*?u5MP!k
zvt-%$m31#xaEs)kSqh5_C&{+qvEjAd;&KEjEEwwQ`)%%QAm4^LHNT{dsSQhZ8>#{)
zeWh%awvlI}jE%BsJ0z`!y3NZ#QciLeNU9RNRq!^!+XbmvUPuKSLnLn{$;IOC6jE96
zT4q6&wEWPP64h+nZDWCrg*G=^+`2Th(a6TV6lS5iNNAykjr(lWv~j<US~lv~sB5GC
z+N|1Q>H*<YW1z5J+I|Be^=({CB}ufgjV3l8wDFLQ?<(gswcT%c@gv}8ixpJeli$q7
z)vd+Ll<_=a<6#@kZTC|wFNU)pvGJ&lCA-U#w-B!$lce8kpe5VNMr#}7&u%Js+(yG(
z_pyukq>ZO+w6W3FMv;vHHrm-}Z*#W?{cUa&p`(qSHlDN5$wrIcvbxylYNN9ae&{px
zrJ-&%y4!fh#<Mn_mU4Tr+;6jHPV|`Fau}|8{`W;83R!3`8_(P5W8(!I|4i|eY~Xs*
z+r~=ik)1z#pDxIGQS9_h)#5H!q0okA!?I!9&}|rOC`rxCD|72Vo~L4-o#*o6o-){$
z7qAhu5w#JsadUTGh^2g=7pDD_?pMMiHXIvtsnwM{;^v{MlUb%=^{lv!1beM|7PEYj
zm6NnV{CubyXk(C#i8dzL7|dZ~W2B8yHg>hl8fs&>jS=h}HsCey_S#uzcISP1ATPYV
zETdnY$Qx~AjE(U&CeZD?oU!81n+eZ28-H9WYqc#wT-3fq`w1TXWZr9s^CsJvVq=Dl
znKnQEo;B4*w#q5&jFBhvristfZO~!5J<G;y8}n?;xA8%VoH;fs<dxZSD(~aLp1C%N
ztm*pgWv5^Fev#w0-Xa@|ZG2_pn2ndDcb3@h2k1}bxL=m1!crT{Y%I62f(>P3tBq|o
zUbeBy#s(X2NK?PUj5c1gvD(HO8#(`a*4kKSqej&-i@Im=)Rh%~)syqOjl)yi7ys7V
zcx;gSmxC=%d5Le@c#HmXl<p|L(dL;r-jz{A&39~c^OrsKS>7foh>~kV)zQn|$XL&N
zHnwm*36^0l29oz#W!BNgCpJE`vE9aQ8+&Z*u<?<NooNfyWccPjcgXEx?RsUsRmp9N
zU#Dd3WyiJ6+DALmI1f(E*l**2jn8cyvGJ*m&sYUoo|$#fM!{9@xeMOP19K`K$~(jb
z`H(w``1y5q@fSA!Zku(~#+Np#{^lL?W1d|qht0D6<FZf4zv2h0yQLqu@wIsMjg4=G
zoUrkekdvI?Hcq8|{$9vw8)t;vHq2e$ez1`uKZ>0EXGuLPcup{-Pv!GAF0i?{p4hm=
z)iQwmfV*V<MprrfY+M%o-vzG-{=xM`$Tb^(3Heiyxmeb9;Wq@ISma(l{^8&}myZB$
z3E*FmXGjs5f?0yhNS7WTriumN3&0<6d2zvPL64wUFh{V2Ah$7d1MZ)bGlYhzlEO;~
zmQKs_0w@yzQ>PtvuYl#G#GU~>7jVBwQV@U&;MM?c3*hzuo(iB%0ObSRWJbdP8U=7i
z02KqM5x{)`R0^PS0CxpYEr2@%XtCd0C4j18kem|MHzjBE?f~u$pt`8tBgoVgAu`kq
z;Qj#W1W-4CS|X_(zym_4nNm&}tQSE202-w2vj}GYPoZ%DO#*l%fJXyp8o+~+)I5NP
zgft7_;j|AaYyV|*oe`Z@0kjU_u>e|1G*t!S;{iM&k|(9U)TfZyQx?wG@U#u!=>SOD
z1<*c#4#GPJ&_zf`!A=28AEv0&RiY%_gp~Ng+dWMv?2%4=CV*$toLPDW@P*^yUx>5N
z=hLP44xo?l7gCY{`UbFanCd6d{=!p!7K(&PMgV32J%e~I2rB?PfCB-18bBa`U;r}%
zn8iU7KsbOw0Spcx5`ZIl2MY4vT6k5B1`rD%9zY_1WB~PUDSO#pcIgXcihDiH0y#wi
z3<#i8ZW;1(r`#`5emqPK31BE&Ab=~a-Rp9r7UhNo@E$+UJxmP`U_<~T10erxn7U)Q
z8Wq6k01q!PHh^&fObOtxy?G4d1DF`VBzDtqHGw`4R}@Z8M^idXnkxEphO235GDDo_
zheX*LvjdnDz_I|A2QXLU{DRv&A>}%hn;*co;p*$*YC!<Rg@TI&7YFc?5XzSX+>azK
z6=ZY;n>v8atWf|jbE1t<EjQ=C5kRvMYE=NQ1h6`QH4<GHz^g*m2GDJUqQYwdOxRVN
zft=y>0M?6ye1m8*iEh6s9=;{GQSfcScLX;HzRMo0=l+Z7mH@VLrhMvNq_zd{egJ#e
zj3d+sqDJAa06t9f?E&ma^N)n=4B)rF-MqWg@)t*_y<%aX;KzcW2<{jBXugN`KMUYs
z00`oiAPxm^IDk_DoDSgg0FDIkZ2%`^IcnLw;0v*Ql+86lF?<=oS80As$Z<BckZ%Ns
zA1Y3@k*hr?1K?NBxPsBW@5IQK5$=M2CV*=J{29Ra0sJ8H9|Jfm<R`(O1yB6uX3QU{
z&IRxb=T`t10{E4~Qc^DlaEWyf;Ic$#Hp<xU@yuzI!N6P$zl(h5-C1iqo<9P(%DOko
zAphX*tokEL@ZS3`QMfMHe5AS|<nI7(2JjD8eu-uT(LIt|=@<7hmnobiOGtF2Di%cX
zAnLBq?-4|H5S}2K2Jv9fU2wcXR1Lb1FgZb#2*MYHKZx={R1jfq5P3qVP*O;#pu1?4
z7Cg5zqf8KGh35xR5QGY%ToCQnl%Nh%Zw=x$NxeM?Mk!>{Wg(2-AqFc7t~ipxA{Z)3
zv~m!422n-$hH+Wz$7M0;t{|!fad!~+1kpH%CPCaA<m-8;9mE4c)Cl6fAeM|&wFGMh
zks|m1KjHC_iV6&Mf@lx~qjd%A3Dy_Qo1)NAB#i{AmNG@ca)}Q~)3uZ)^^H=^*lwfL
z!y;@h_(%|s3TYwum>^r5YEx!=S_RQMh{uC?B8Vr0=p00sAf6JP_Cb98KyDl1Z3Wv2
z_LEbj4ngoxpkol7M96o@X_L``jXho2*Fh|8>LKqYlBSjOpB4!T<<A81tT_D88uy*s
z>Z^Rcf_OfN89~epqIVE|f*2CS&>&u*@gR~x6a~>Yh<-tYSZn?~gxk4N?lYrQp%6;6
zAoMghf-r?!LD=lObO?&@-chRKD0f<ggWxwoNFpM41fzm6!MI>T&={o#usT5u3Sw{&
zJGXfYcX)@;fgN5BiPP`qGtktqAcl+n_#j3EF*1m8LHD9CN|1NgwMVO&qtxgi#<0Gl
zTs~IFcca{^55IRjA&5;)GA0J`e!Fs%ObTLh5L3h^AD4>XT6QWY(XC~t2~HQB^i%$<
zAZ7=#F^IQ=m=nZY4k5OA(0%Nh7sUJ^76kGAziwq02EkHBk5<iw7Az986fPF>5<6nF
z+cL{|4dq27$dh6$9j*AUYg4`}SQ$ioPyVZ%XrK9C7F;Fxis0%X)(BZExK5Dgo>V?O
zTD=wo@pZxVf*S<i5PVbcEkVzo;_t8pg7`Uzv+TaoZg;;M#O5I0qkCWZTYcgCWwhE7
z#MU6Tv6VQlgE$(*2SI!o#6d33L2M6VM-ZO`v7bx9eZG&_UqS2=KBPst-9hXL;$w+2
zb#D;+IOJNCBcCwDmm)+852STI3*uAZ6jF^yn}^e>M}qh~El(9k{4$8IM0i^8nBX@Y
zz(T$jq}m%T%6%Ke35lKz;*^l@f?${~E>VY^c!oVF<cA=B6q0i0C))fgj|%64_=W3L
z2>b_o?&qX7G|mTcA;`xiTnyq;5I2MPCy3wD{r*P~mxcc>ctx<yad-8;8pO3A{tTi~
z{c;S~h5Qvn{fh2#eItm!xps|lM+*am{|0%)k5VC&4k0sytPngQctb!4w}jj*#Y0G0
zE+)|wr#xGtw2&jDL<qjLray#S;U&|OR9Qr3&kMP}sSs`rp-c#6L&y)IoERxc+f0>0
zr2X4MxIN_hUonL8Ayf$A4vA7igDIOS`_!)_7Ai{-&yG?2pRp<-R2AV}g4C=Q!rj8}
z3E|!ls)xX@;MEA>zL0zNL<OEYtsk11;<ZAk9m1Cb@zp>)5JH_09*v<z40S`O7eea@
z9*>}Y2n|9wO0^Igiskkpbf6C*G!CIj2u(w1Mdc9RvcN+jv=p7~hl>v%qZpcnaPd^m
z!-CC2cti*#j|yoa_*e*Q-^`_O!x)t_HurJ*EJoUe@FXp-$^B)Fdk6B_81)p}JOq-q
zf@9B?B<Jmo@qK>B5IWIL2<t-V972~6Mu#vagsx)hxe$5@=@vqFA#94LL+Fv_&xG)-
z@SbT&)5|%}htNBOcnFCQ`iR^Td?Bs#VhDXh=odo&5DG&u(sE6RE|__+1OtmRCCVg5
zZQ+3sf<i(eI6|lv77_{J_1oP3il*f;A>1A1o5{%#MuxEDc=4i;`=asy!GR$R3Sn>v
zLqZrX5+)55GK{#>%~<_D_b;j#Mugn2z;FmnZ0sEs0`cE5YHSGOLRb*O!Vt!D0FPCl
zj#d234SRC}bwZfLE*`5UhcG9ExgksmVQL7|LYN-HCnwx<hZ!Nv3}Lpo`pj6>ty{@i
zA*2X#z*wc$X3iL^rsZYN3t>K6@9&&z=Sn{4FKwL6T_m~Am+_Pzrxpu;iFFKNsqj|>
zmkBNpVMPf4j8!W`SS1n`{j!j~W3y9awM5qlQj-d=hVWVlABC`!Z5zV+5H^JH23vAN
ze*34g`;1e=&iLL8!GES8b}s*2>hQO;A#4oc?GWBcm-5bd-{hD5n?h(7$b2N^9wu&<
zr1u232yP8wTL|w9|A0Mm*ta8u4><uv!YBhX5-Hgg!fp=c5DrS}9ya@0U+IknycF(b
zDMJhPaqMl&{+KN+(fxu41V0sID%F_f5C{JncdLK+ICVIL&p8anDTX5<e39l0$EmME
zIL3wzV`&)2L-?8{hEX<*Z$kJsgdalqF@zH#oDAW+5Kgh~<J6AIDxRbEZpc3!!id==
zz85?b!k_oJhnPePS?*6E{2apd5N=3a4v$l3LwubHzl3m}$|9uNg%B>M`L9AQ3SJ7~
zHz9=&XYwt|--TZh{6p}nAV0%*jgF0T`}8l76d&($E_8o~P*?a(4v!H24Iv|poG?oL
zp3jgOMls=8f=J765fZD9;%P~?5KkChA^d(ivzG|N7luErQ!0$yG%uOfEG?3}w465c
z!zdR<G>ljn1!1T#T7}U%j9bI#I9^o=W7T+dTbQq@pnMp;$18>kVT>0-euoGv3RV)V
zEO@72=BoUvVcZo)wJ`1u<H0Z<3gezI?hT_+*j+uUhfyPp2g0Zm=KEd9E0fPqD~y`L
z?-!(6N?tn*&+qPawr&{p!e}6=^~2abUNNLdO1YsJPboJJqlrYB)HDpLku*z79u@L%
z7|n$|BG#yrQfnc?#{^pnrffbQM*A>2gz?9C^+Xs?3VBM9k~U$q72Zy;@&rX83+))j
z3p5f&r!YE)(M1gQ2;-SBx(e?m*j<qNPt(o>H{-Km^kjRA{5ip1f>dC5UN|+$`-J&B
zV)yosyl)u&!iX^Sul)XD6bcE2p@pFfA9N(k2*V5`Akj;0vaK-eFi04fN_^&ERxmAz
zAIYMruqcx|LMS1Rhmi<laTqVLWoG3h!x+X?xkD%tGC**k;2^=lf<wX>Dul|tCaB?I
zj0j_77^A|NCGw#Y)Mz1-!WbiDY#8G>0)<Z$oDg>ZpOBiwwb$GcGFjwP!k8MyG~pD^
z2xGc%?s=wso5|9pg=dE`Cycq0x<GKA;C#W<-|j6GzDST)D_U40c}ccSP|Lzt9>)1F
zE`+fnjFn;R592@>FNe|Mr>s?BydoLTOi-(Zl$q%E?3ysvvUw+{bz!^{#-=b{4dXSD
zye{}=80&>>5PU<B`nAh?h;K=BV;Gdb9Y#v{ZWx<6j3w#4Ft!N!D2%OPYzt$%M5+IN
z7$30RBp372+JCqs9i?QaaHj5(Qb_iMu{Vr;Y56BYJ{AX<%0T0vhVfY#UxjfjjJi_O
zgPi-D@(+d4ZK7g0EaY>+BZ6ND9u@pj@U0%+<1|&xH*BJMdStn;c?k&P+b~Xq@sqUS
zNkKN_84mk2KNZGlE~+)M{;Hlu{5~!JA&eh|Q^+g~KTGs%80XSDzl6bDO!_s9i(xz*
zLGuVMh4C8~zzE7m_>L&Xp7xizP%b-y-@~{f8UGOcH;k)cToeAM;NP?+<htMu!PG|>
zZwhBY|Adi}lV?QSDU%sNRs;}!O9aItC@!2C8KpuBJrQ^#cxR%@iJ)Wz`4N<ez!!mE
zbV>{63Np2nXfiJYqj@4PBN-_vD^Z#vFBiedW%&gWC?U5B-X=%|CRK>w4$;4NlByU%
zr3mUqP%nbY5xjlBkKw)u?u?*{M5{({kC3|rs|nsM`13?X<$Hx!7px&jA(MQQR83ZA
zlDc28mSF7&9*Cfh@Kjk;pwIOqd^Hyh+GIBn$0%tSK_lUf1$Tbt_Gwe$4+=gc*zEtM
zJ`%yB5wwb+UlaEh#hRpANa|yPEd^6g*4%&{HAy`Y!IKeWMv)ceo4sfgL4gD1plt;0
z*jy2O7eV_7Iz+H4f>$Ew7(u59Mn*6yg3b|iiQwf)Di}f62>AKtzGA;yggb$FS|k)c
z8$pi<o{{K%=QH``4hnll@LUAFB6vQ6K9Y;xGKttb;(pzOnlDf;oWfLUzX)GTMqygt
zj6f5v3mSs-C#7#iV2dOmNMQ>(v<gKKjvx|&Bl2VfMG-`W#{}aMB!uKVQoz8B10*^)
zf*}zM6i(rw2&hSgp&}VBI82b)QyE93O*Oq#d~^gaN$Qvg#zrtMg7Fc|70Cp_X%S41
zV50Cz5lj{`C4#9!_OJfmZf%Opi12;a|6QAAMldVQ53J6ZBb<az&P&VZN3bA*g%Vv9
z!Q!+$WsSH*BufRC2_BlHmPfEc_)5W-1+S-Dcy$EdMsOm6H4&_hU|j^SM(}9_pGELm
z1g~=_7G!@A!TJa`M6e}-tr5Ht!J83mj^Mor-ilx&N6}<8u!Hw)u}p_IagIx<GFdg9
z>~`h55s)x?>dumUMCwr48=kB#zvI~!!TTJFn>=lnmcG5Bdt>}a&5|ERuswnu5quQE
z&Iop~ohPd;lhq%S)wI5)IvglfZi?C+!JY`LDQa&7A4l+s@O^aevWLR`5gdqsNQ0R@
z-H&?ze$mB)5%)g-NCaO*a43Sq5qvHZ-s-3B|9SI&G=eWh_?0M7o_ZoU7Qu0me;vU$
zLS{^HbG<2eV9NhS?9WrwDbAEp>hB0{MsQmA8S&)%2!4p*#|VCs=rzu!2+l_EheXds
z@Jj?2xyW+~ovO}@kmQ1pUnP}M)`CdQ-*^e&$}h@S(mG6~Ch@B1r#Pd3M(~$tl3$PD
z#{bj*CxU+?*q!g=M_`$n;h@@7RnkGGgDeMdTx(tjISy_SUQDpKgKP&L;j2!%8Jo$e
z0Z9o54?X4gOOnq)^R0eH8FEF=C^ub8IVkObB+o$^2W5qq6U-N65_fk~{8k6IIXLU!
zoP*mPly`7Uj8|}QhlAG~yzZc)<L=XTckr}>N)9SJxYI!u2Q3}`Kmb)8+~uI2gZiwU
zgS#Ev=b)y;UlZV72h|<a5Q9%mRsE)_#8fr&eed+CYVB0DYpS~6K`jTh9X#OR%c*K_
zL-pfSl~K#>h;j{GtmB}rWUn~QjW%%5&_Oc?4?Ae&;M8{SgRHoN#tv3pE7!z9QwI%1
z(^a0PHrG^-PgC8dsV=`2G<WcbgBA`R6NCCRHEx=E)WP&|8BKbk(%6iZ)70K+>eMvV
z+QH)vx;W_S;0Xs$I_T)2lY^%mv~keRL3{Sybl0D@Y>nxvf$$Dgn6510Oj_s3-hRAb
z_;mHlj=ate7K*%^gHNWba}T+fo}Wb0gZ4{%o_EmO!85|273?YaoM10OzQ{z)J`P@R
zFy6rg*1|zw2SpABIOyk~zk{HI5WCoc=D>D%W`yh+N_Sv7SUN))Y@Zpf+r|v_`3z+_
zARcIz^UDlXcBX1KQ@uD-g&jm3#2myO44tVQIy_VTI#aEjsiM+uBnb|xS*pt{6`rM*
z*33!Lc+H&Vv(!KbgB%QZFv7uL2SaFqBgerjvsAx5<=&sAj?PjgW~<t>RmO&L-Dj(j
z4n{c`>tGyn%~qowd^THU&T%~)<6y;XmsFjjo}S}=FLlTqHPOK&2MgGk4kkO8;$W7;
z*TON?!88Xm9L!{IiZkoys6%tqJTY~7j;b=(HPvyhn&V)ugLw|-i`uxkYV};TZ?3vA
zSKU8PJvvX#SX*w9gT)S3I(XT^OAeMeSWaggJU>s3pQm1#r<OYScAi=$twEAAUsaj!
z+JADsTE)sbSnXg9t2SS~GGBc-Umc&X){6403)F`T)H(;RI{0_KYPdj!7PuMLJJ{f0
zH^<xS`ENLQlQVIl`q04-3)EW<HamDv_(s9E9lRsfHVM8fLK>m+76)7ZpKx0`>3tD0
z=>rGUC!ziAf;$9165J`c%R!xmu2*{;>~*kD@-lkF!N<Zsaj@UP0pSM)KTYd=#(^q%
z4>>r@(Is*UnVo@2U!?g_Azuo9B}nDtLcVtJ4O>|F83*4xI3fI`;CF(j1Wya{FCA*v
z^!&g9zfk=o5|SS!%0hp3Ku$v8FG9#~I5_X%f<%9Ha7D<W>%}iRxa6R7sce2y?KcOP
z9sJJmdAMNwLiI`25?9Z-wfIAnuR6FU<WE7$|8j6$`0Mg-#+3Z+;3n6Kr?Pp=`i~_2
zE0_^={dv1|2BNqn3Ox!Viee%x8AYimibs(xQBM?JA=H0kp~{K6&+H`xeS&_$T)~42
z6;r8MI*KQvcv3RvMNuY-vQhWz75Pz=kD`L`a)JedO7K>}+XQbHq}z8yQ89`~qi7Mu
z><3F!ilRysRimgJ#hp=XT9$Wpp*o!Dt-MIx6~%o|W;c!E)r=C=qPRPXd!o2EipJtb
z^(bmYQ7?+8`<H66h<|-q>b^9u8O8lk)QX~Z6ilikNb*2hp>A42BlU$ddjm;rDA-7_
z{UWt<ou^3@#5Ug)kDe+1U=$BU(JYFGqi7z*jYHl?qUdze?L_itw|a>^ws;>C4|l(l
z+cJvr^D;>oT1C-1ipQgvAQH-%>nYJ}6Ghu7HjZ-ddl~jT?~-;=w2z`g6dhTFsP&1W
zvyf*6y9joTqFWT*h4&DAT96j{E^;T`Gf|{SPmw<tMK2-GN6|a2$t?fndVxY_k)(ct
zg@XMBsip}@SvI4vBw8{iGa`yHQH+fu5JgbrAsI*s;o&GELL9-UU`&wK;!$t_lO&@k
zief+%1EctQf4PxjVNeu9q8KWCu;B7XvGP%O^bV8ga6v{#q*Ix9lvo%oNab<tjwtq}
zOPmnJI*zU=CQ6n`QB00vN)%J0SP{j_D5ga*J&MIqycETZC}u`6FN*n5%;M0EVonru
zC1aO^S={Vm(Zv7wf+!Y7LCGS~NhPIph)YCBvMh?FX(Nm-Ps?eC(U&E<T5y%%D^aA9
z)}%GpN-0!MJ*&PJ#p_Y5k77d<??tgCiZ`PCks$8$;N2+RlDeO|=?<`sZ15=Fi6Rx<
zBuN8W;r55nE34e*bSsf>P4f>$d0Q0krzIbVWm?-F#f~UG68Ubyor1fhbQVDm_lRV#
z;3sXeDf~Faqu3wCfhazW;v(x6#b;3*jN(ib-$!vMio@)|D87*@e;&orD83YagnhI~
zeIZEuUkN!bNfaIvLWLChHp<^Q;#6Asq>%5T_%A!jX%SMNxqgV^M<M40e-eY|qWC$A
zvm!}lB>p1NR4%%4A&Ot6XmSdFi{dhu<rs>^@Vm&bMe%18SA_o&#Z|FPJDV1{>+N4r
zT#q6nhRhglMDceN|3vX`6gNemm{KD$FfSzxSuuAmK#)T66c&#mJBFMXO2qzW!6Q0U
z@Cu=aufLz+6Yh_>BbG@FxiPn8NJ`1nE*(Q&3}s>{8^b*@+#5rF%)Ps~Q&LIF#ZVA~
zis4p~R}{Q0hTCH(A43IEyF-Lq_GD3?$YHa8PgW%nR*vC6NflA9DtMP*HNm?DnS~jv
z$52C}&11MPhMF-nmFWF3)DqHAu(p`37sCTF{v!2%MKF6^Nu{a!LMUk<B;`XR;f-Tx
zBEF^kq|Xn=@Q@^tHxu%3+U6soNjYsk7DLMzW+X5(fmSiJj^WQ3{)*x87@m+^S7Q9v
zH9Qr=s2E1a&?bhqF${}gcns}gXdgp3hDeP6frAr^R2Ru|c8j-T44q==90NHqXRDW_
zYYg2)p?eIyW9SpZ(=qg5KZ@`<LHhq}3_XQkmy1HLwEX$B@CA|>%owZ~`leGgA^l?L
zA46dbRA%-R(xx7Rk=CSfJI#Ya0-{efhESUGInjw>h$ut_V}fzPgkUm;q8J9mFi@g{
zg$xpY$701mgQ;kp#cC+Kb+H;(NA(f;h!{r3;4D_F7pr3;856_U7|z7-eGKDb7$3t{
zF*QMure?>$2djxOOp0N03<r06_Z;_5iSgIRm=?p|i&e8@1=C}=`z6)>n}X}#7R-oY
zCfniLf?0wjG%_cKxiQR(VSWr7Vt6Bl1u-m)VNDEcV^|c!;uuy*i7&;lB!-vMr7w+P
zc?>Hgx=irz^6n4$$yffrXo^$*iU?N=riAN+zb5!<3@Ib8OO*QSg;4lr3~x#5mKZjQ
za8nHL#_+Zj#6sVZRBCRPR7z-{_+Hv(O0q46_ha}#bUu#Z6Coc8ZjWI{3?B*K8N*&7
zyJFZK!ye(pMlUG_I!4@=mhX?@Kn&l+F#VMGQ^C(;I3naT!GoL*r@V&*4|C!V@-X^^
zBr(g^F&vHIOG*7IhGQ`t7tSPx_{0n<Q%)rRR&t$);baWor7fJ6)KfA1r^bvw#PB0m
zZ1Mbg`dl*mrx<=_y_RL472$c|=VJIp2<0o!x=YgqN&QvuVhj^rQkP=*O`?|tDWTdI
zFR4Jl{|86fR_|4jU*qgM;r@7S?XiOET>R-?95dqhn@e{Lx5aUL9RI}dZw!dzmN+uv
z$c!T^{=cW8KVMSCmbjL;ukuw|qKd^)JPsAdt#O?Fryx6yyg16lapOa;Ck}5MIdPPT
zW6QCEu}f6RIDBHqA4hH+k1kPNm#7hYz2*{CD(?Q8^^VQn(xULn5>+<t{>xl}MDvB0
z6QqzYGuNE$J~H%5KgDcXqRPinA&zI`=qXw5h@)a0mE!n*iPBHzR~BK@I3A4S&N!;X
zQ8kX6OH{Qu?xt|C=PrqoJX*$cPaOBfQ8NysjOX4sstc(hNXef~GU8Fs{c+Te<AFG8
z#nIwn@7b_>S6L^HPk->%kE1~xb>pbV#;lY1$bf8y;vL*v4dZAOM`Lm3dcNDFM9Q1Q
zUA$+hdPtI<l$th+<6((5XIlw*M3A|fug`7~$76A{6v^X)JgI3Vq;(uTj-k#I=_s>2
z6-S#m+Q!i?j;G`35l8ztI>ga6j&4$1$2dBtTey=DvwubxA#eB3V6#X5@DRJFbr@YJ
zl4rz7D(Sg6dd1y$6sN`Ud>jLADHsvQcU$v&$I&N_7wAtM(;_7jarBL&UmT7^`^Qlj
zM@YC9haN{jxFKl8VaH(#XWmXr6$1%FN*I)+6c5J{No!IP6&@3er{y%5jH5`R0|bZ0
zF))rn!UxAOL<qC9AS$QI8WzX!G^cQ69HZhG9mg1ET&gCs;!D+7PNf~**SC4c#W6mP
z3DW*-{E2Z~*yT>TNom69lsKlwF=wfo|GBrqiGqs9T!p67d^6*i6-UVgN+mFx3UOSG
z<60bZ<Cqu6FL9g~vpbnl$bvW)#<3`l#c}M7V_zIE#j%8wE{?5nERADX9P8uQ5XbU3
zR>ZL;j<s>DjN|1vUWudFGPO$VkkA2!AC@Ze)gpYdeC|5Yq5L)WY+A_Z>%wbDt~cU%
zGmcGhyvwl{$3{tdCyuv;upovpjoqtQ2hpdUB?k&NODcu$#qrL=Zt2@ZvQzN=I6e^a
zp(yVV+%8B>hL70SVr`eG(dXT9>=90DbnN3eK8fSYIKGNwe;fxS=?EvO`14sD2h$l3
z38Br;<2Wq!Wp>t`Zd3V-bm~!wrb<5+$G35ukfh^re4W<$MhI(nk|RHkpCo!Jj?-L=
z;`kwsGa^YLo0`^sOy^ArCp?k!Gndmi&czXYy&M(j29f+iTJtyd_0AH%#@(N#T#VzA
zM1Aj+pzyNj{4RJ!@DIV|gWWar&p7_#3LnS6aa<Sq#AW|m(r-xgZ^4^_^(Ok?8|KMK
zxNk;z68wJ>WF=frkiabo6cZ#_DZNl!qD;+B6R#-e2$m4^3Hk+d1*yMdnJS$?UIHx=
zcr1Z336xEsUIO(K$WLJKY4>%ng5~`G6BHz%61X*iyA!x4f!h+eJpq0ovPuHwg;Wx(
zkiZ>6DkkvTGDQUjlFA~yQ}D?@3Q|c`C3=@&wFD?H{uu6+Xw3xfPoTPRTBsr9zO?aL
zX?dLlYA5hO0?bG?T1b^xR}?6x{|yqTP+s+3uK4}shOA%}Poo4HC(uNA(*zzCLivM2
z9ujOu9m&#MqK~9?9u+cjy{{#2{uAhyK=*|EM&jQ4e615$y&?bc1fF1B5_l?sb_ujk
zfS<Z<BiJ^9q+PIJx$15gP}o6)9Yx6RVpGD@P7>`b*hR3bAXA@Cpoi3GLINif+0P{K
z0;35$n?O&IJSW&&u$SQTf<rzm*+&R-QPMYoehEYpa1!XBK%oRSl$L-l_BSq9Mgper
zPy&ov2?P=dil!|R>NEV8H!RAGri9T11|%?0G-C<G6G#YW-edwr|IZF3gE-O>7$bR^
zeMkbs6Br@Up@PE%xB7exBNG^%)*K}^`PU*e!i-}D#|e%Xq(0>n6L{uk0mCFAlM|RC
zWNKPIErIE2&QCba;^NQVFG7<d%t>Hw0(Fz9m&CjT=5u}}Q7nlC2`o(DbOL7*{5%jA
zC$K$%9SM9stK3ToRQ;e}T>?wQhoyqc1eYhUf^#;3mlIeck_&%ktV-Y&j+})1C1rY>
zLjE~0lNeo_;I|81@@fLFNtV|W*d%0q0vi%|LpT-Q7V@UxTY?(}_b*rP2%%0&@@@i~
zIYC6YC4u*aY)xRB5b7{67xh07$%pCaM+xlYyq2V03G7bb>jb{rn7=21F8hiz986%Z
z@O=q<oWLi-52RD~bE!FyLA6iQlFx+jHx!2wILy{dxW92bn!uMLKa#)~B4IAdzY<Pz
zjANizhWq=DUB!=!u*)YI--xReew)Av_REgqC+VAzzWcIH3F)^li}ITl&|;YX`viWF
zEI%gjdjeMy_$h&(6F8f|Id;dC{0o9#_bB&Enw)2Sdz51m!>=N|D0qo&lECEzsKD&h
zAz|zNk-(n`{3ZOV;5EV9Zc(`_)b#}ZO@M^qMgo5)a5I5_M8bV$3cos3oS2dPpH5~H
zS;CQ){8htKJc;ZiR1&u);YorLUlRT#yuumHNuop&H1+t{3`TQBUMf)VWw4-R5~Y$T
zEfN+~E{VK!t};T(3g!!@3N1)GFvE-6lDIv|4`OEY>yhgZ`pPF!eub)##2ragOuE&-
zPq0!Fm4)1yL=_=xww9>7LRC%Tt|Y1@ad#3mM1D^a_a;$238wP=j>tee3?xh<sVR8B
zV67x-3wa=kE}}`SBNCGONi;~}d=eLuXqZH!BtA-FXA+H*Xp)4Pgq1|oBpytnuVi^h
zuwxRPl4vIU;Ut<T@kkPnCh>R@Pl&KZ5|1U(Quxpns#OvzR;YmCJ{Y!63(1-EWD@N}
z@|0kkB-*BwyOj!bD@C35BJUtbBb0O&PVyXUB)n@9-IC~@#M4Ri6iJUHo=M_a3Dn#p
z87U;0w#}c4Qr;_x=S9DF5`EGcUm!`_p$>EPlcfHFg@T%(E@%k;B}K4D>?8src}m7o
zFo{qS;UpqS%uZrX5>67)B!(w3B8gZM@g(?>uOUe!l1L^oFclr?D-tpwi9<IsT!oRo
zAA}4_Vz4ANzT^sr3Llov_2rF>kx7h7Vqy}Lk{B)Wu}O?eVhmejl$+(C*cmTLmxND9
z85!l9oWvC2)024rMh3%FiB1#jx;mTLXCyH*iIfpWXC<-sdRdaWT>O(*oy3|X=5z5+
zVrde~B;&#)UgGd5^ejqZu}E0%-WwS-vP7c)d9^%=mqoH7iIqZV+&{{<P+DM>NL~@_
zQrx#TiFHZ5lf<SZF5bv^HHq~}Y)Im@B)%TydtKCMnf#3;-b~`{wB#+R-A1knE7b#|
ze5*(L*fI?C>fIzZGc}11l6WtPElF&ZTy&nM7}y=#l3-sj7xNw+>HAO=b_i}yf)c8c
z5O*c9JBcr3Jh<bK1K@PQCv34KUO4LACrI+K5GpY27v%$jpC<7co0?-lqMr*M7Ob_>
zoeM|)pM=q)Nqot5EQw=D9G9f;*%V29Lp%Rwd?%7`WjQ)2{DffY(#el;oRa8i!83wo
zE4jb>_#ufOCHhkm=Y&xBvyij@Pwkf^Qn`L*cO-FV5vmm7x6bYv-=!peOX6}8zjMB?
zRJldClEfd9*IR_ELT)7ScM{ix|H;Lfe*~9w|D}`Rx<qN`W)lA-fg;>egnvcI)Qlo`
z(Id&EsWUFgDsr<^p_n9*c!U%$Lbed5GRxAMSyU#;5n%~IpP*l`ZHbJMMJOe_bP*~F
z$tyw`A!UnDAcPk3g_J9TDgB~~aBC56E5hwXC|`sMMPL#GHD`&!9YtXHFG^CW2$e;`
zf3(}SQdKR&UH?bccR)!|d|xkIVHem1NlO8WfJ8w+K*<V-WF$(EsDhw~5{2oW9J;4x
z5KxpX2$FNoNX|LuoHH0mqJFRM*q-12eCO1;=f3-Hy{fLM?%kc8>2{%t3sqexL49&K
zrMwFz$;DsFh0^4&x#XsHcB!(&*NO6NN>R!=yn@UATICx=Ar(m~xlq|r-XwX8c$hO>
zbTRMMsY+j!uZ9aXU3l!m6BlZ^@U{yxT$t&?J1*3AVTcPZ7wWiB*M%M~e995ub)h>+
zJr~|{p}q?ZTxjn?2NxQ;(8z_>F36Xaq%|gK=0X#arjB0yS<?G1G<TteqqHJvNz8FH
zwP))z>E6c4e&9k|hqoj7G@Ru_N9pQ9NAgaN(wU@-3rW+I)amBvAGz=``6tBE%r>5;
z?*5of-q!2MgOd9(_HyAf7e1Glo5~>K7cPA1!dK*d68gFfeM$Ng`w@Fiv(MZCE(~-b
zL@uF_ubCA-*s*CY=q|Wj@VGE`np!hW9irb$L%wLfA6@Xd;CCV5LePcL)I%<WT^QlQ
zw=P6nFenap!E_<&!Z$7qbHSn*cVQ?=OimnUCc<S768@KxFu}j0?FSl0l8gSm3yChH
zsEb*`G2~-i80W(H|IsBofgQy&k@_UraxP4EVTudWsr*dbeailQek%DiV!`S5y7lW}
zUr%PaFx!P=E*y7Z4zqJzawkSqr)R$G%rdEKTv+SE0v8s#us3_^BI0u5Vi%T>EF~@@
zipRc@d-l{73|G3aiexo0ky^*GwCQTE3%`)BcVUAI8_9PPH@UExWQz;iT-ffyR)%dj
zH<|nnD*uVQT-fb`WJTHIIEC+%S8BSFvG%)gzy%=(T{z^zVHc)OS4XKFAs(VF!KHo`
z7f!fv(uGrUo`&;XcHxQ(*Qcw~#52URE}V1WJbBg`O0pMRxX96^!X@fLuDWoI;sa4g
z?l_(sBsYn-T)0iL;cxprG--Dk-gC)K&i_p%3=gUQO8kxZJMj<VBVx4{X-{2v=E7MG
z=QRB3!gCi!YWQBmUoQOZLPZUgH2fncuZGt&`#C8YG-T9}M?+o>(CiH?Em^}04$q_^
zv%_DXp;9zt(U4U`Hi|iksT#67o-_?&lOj1ZyvV*1N)tVo<H@bzVgq|OrfbNj;dX~)
z-_ca1LGWb_g-G&iD4@wrKJgMmL1{bkz9^noG!)iQoO%(8q8HOpRKu&Z{bx?}Euo>L
zhEf_zYj|)ei&PL4C4ps}S(TNUlb3Up@+1|AZ)h0M%6{VElTDeM%~09q<gKjXO-*h(
ziYgkaYWPA!9}U$sRM*f}Lpu#MG}P44P(vdPwKTk~p`M2KG`ypswuZVI>Ss@?qam$q
z^2mFch3_hm{MiguJA2Z*8g#Cq3|C)615Q8;c1Ucjp^1i;)SD9D*U(%;Gjb^+&KBfS
zP52K~T4`vlp^b*MGt>vnmMWVpT$*^Kwb#&1!$%rAX!uY=M-81cbkWdNgUnD$b!IQ&
z(oy^}8EG}MCw(lshR-y7uA#dub=l;e8hUByq2W`8iTa{TC|q>G-v7fJ+_d+@mm0p(
z5Y!OT(3jb-H4N6!PeXrMe+>gE4stpss!2zg#t;oI4PMz5vaw~^%O<<Ij5@i5CuS%?
z5BtjU`V-k1DnKG@E_J+RlfxP!8ip}6h%pUu4W@>u21|x0E6+8yQPxdxC_Ud0BYEtV
zOsws24I?ysOZ_`y;<Xcl9R3d)Mrk;pVSN`onW08&SR}_jD>eU2HAaKrSPkPejMp$h
z!;czfYM7;AqJ~KtrfHbYf<I~aS;JHflQm4CA|0j45Q#9M&tNJcCiK}F=1^RqVXlUG
z<nxJ%E{P(-rPo5I_+kx9G%VGyOv5$}+chlLutLKo4UIdeuhg)Lr1VU+TEiL*8yK!7
zuG8=f&Ek|Ug6kc#aA_Nz>}Kj)h@x*LkuEzl?9{NAVWRIY4ZAh$k@I?{5+zYqa37WZ
zPDd$nP!7aMJEY;ToSVlpAJK4B!!dGshe4F%8cu2Qh+8{*f_PG{kPYoUc}6Z)^yFTb
znt1o@yoL)Ju4uTbA-zV%iyAIzxGcOyy8NmsO?uUzspLJ|YZ|W0Wl%>>9Zk!n-H^Rq
zS>4lclM8!`c$;{Kc$YZ%EqmGT%LPiqLk+*mm08CNI)2meyN2g-G1u^ihDRDwUFpx*
zMToS=8lK3-+?D>6V&|DkL<#?-C^d!rE!Tf$g^QA;+bAuAj*R5eC81=}k%dZTVzLhD
zl0r<>%&H@sj#Or|6Vr(K$|6@;<RDLsBL73orK7y`-H;`>jyyW@>PXj7f*u(zpN>N0
zikM$V0UZU&UvfOXxUpZ>AtW|ay`rPAjv`L>RUJjiC6$<eF^0v7b7!iOB&Bqe*6|v7
zS)!QBkjQYaJ4!hnhgqkB+yX*JMIDuNe4}HSj><aT)bW{)&vm?|ql%6;IzG@*RYx@)
z@93zlqq>e7I^Ncy4rH#Wqf@4&KW3_0442kU5>cMsE~23DIyxHbXriO8j(2tZ>PxOi
zXCoc&k<=$PAd0`CjvTY>j?%{LwW~E{s<kf9smJ@|&2=>AK$2}irKOHmB<K33{o6N`
z+*U_B9i4S_;Uq<GPttl{<_<bO)KP&0brg|(#ZWw&+@)?(SB4+!=%(W%9pY~^OZ{{#
zpBO%2s=MRwLGr1No{rLs<Yuqr509qx*722&zB<0p(TBP`4D?GD)LSM?wSGGK>+tFD
z>lmP8ppGH5&2FDzkPgAGWu8aVGQ5&9SckmzcV<*Z=_SpjLrc`5-%a!oCF_+V3fZ%j
z7SLhpi0TM38<N$SrNZP9qT%!!l_9UCBc>y+V<^X!?tbUBDAG2|PqUOP#c&-XbS&4g
zLdUl{zSA*D$4@#&>iAyAXkBiOjUTwqvXY58jMA}<b;jx#r(=SSA33NTpcuxJ_nntz
zaSwY<q)ntEFY#m@Q*_MHF;~aWI;QHFp<||O;~dG;bWGPFyQM>)<a@J}H0d}?Cf@|J
zMgJtZKs;GyE25a^>6ou$k&eYW7O?n2+3L;g`xs=Jt@6!Qm8CUHSt763Y_*hz7PIYw
z%j7JmYVY%vI#%h}qGPL$)jHPb*vxISR>wMBZu)JX1&cbWU)XoOjMY)eQ*|bNlsv0j
z7U{lG$0nv^O~jd4nQc^d>exlHUB?a*@keH>-8%NjSvgznr?^+gK9aAF{=38FTsxrS
zAXj5?k*snohve{Qr5)CBgwCTnj**BcP0F6saZ1NCFaGr6w2m`6KK9}hFV5;Xr(?Vu
z6Wlnj<APj`b^Na5BCi;ib-9N*F3HM=^Q9F_5xlD7nw-nbZhJfFx{imkdpp_}+Z#GI
zK1#kxyrttd$sMBTcXiw&zpvu~i98rinxy3YjSs#|PZaq>$0J!%H#)oVSjQ8&D7o>L
z8&75OI+EQ;apO-N&vj&WBgu`wbo{N`|0{gKjem61Dv~dQ8yVfUB3TKANCUYj!bKF4
z$&G|~qm?aYaU-i6%8mSPWTQFFjqLQKa-c-1M9my-xg|Jqx{=Fm|7$Xxn46f#4f&^J
zUUKOo*?i;)rGOg+-6-cqc{g5i<7GEWxKWbB6>_7P8x>{3ZWMN-2*p>4Ql}_MV#0#O
z9bM*AiU*ZA#?sVZbIXUp>|-zM#_J?fRt{6}b}LkH;|(5HWoHGXZ$;WF@kk|19A*`Y
zjofJLMpZYexl!GX8g99RF5Y9RrXY!omFV)eTkbG#4_(`hI&ReE5bshE!+(|QQ)%Ev
z!~YpEaR}143A3%;XhYJJ*o^o-vAG*9NLsql%8i<N)1{Yi!4KSWXM3A;Ahu)u_T(}F
zSvqMSy3vukaB+&>#cglko^JGVqpKU;-1x|ikKO1_U2d5FiQ9gAN^Zj_T%KIkgRio@
z(4Wdo2HUUrXKsA%hT(?kMsGK?AJc}o;d0{(H~P5orL*w{a>TC~_9ganqd$op{s6cA
z{ShHDt3h;rO&sjJQkomO8$Qm;&6LLtFIPYgKXEwHSBRgU05M1m5yQj?Q4TrVQ~Ud>
zQ8#{YV-!V;7;_`;#!xq^ykh?^_!~EdxiOsKcQlAT!i{gK%$=<gwvkMIPwf3-YNv)N
z=NhK0X_IZV8)MuU%Qf7-FSE39ZXA4+M;<8fqZ<?5h<OnAV3Hd@xsmQcJ`X0lF~yDT
zZtQU5XE&zG*>N)CHaDiZab>nz<HlMyrn@o2jhSxD;)u)Lm`x%RUhKvkH|ENEx-s94
zh165#sG8&Ke>p9nvd9rd7jX&0rA~!qZX^sVsH}AKRc@>%Ph{VZ<Xa~vR8q<oH-!J<
z#(I(sL{T=nvB}|^WlOx9BH~tdkzVqIHF>PIjJ{J&>dv_4#&x&-F~VJL>~>?18++Z@
z=f(w&xZf>zIL9eBPRr_1IZiy}#$h*(xN(&2-fa7C*keoyPlP8JihhzFA=1vcan8}t
zl1Q)fjw01AI{XsJW#Sb#u98ezZx3|Cjhk-d_1N#Q-E!l$8_(nt?UpAy{QDdDZ*JTr
zzel`JeBj1Ix%ACZzcLgQo|x6|RQ_<|k^BfCe?t6#hNo^M$aA^)%eC5rR1f~9LAq!0
z;2$})J;>leMh`N1klBOk`!m9W7d%KhlegynjDiW0?6GH<LW6h`ql+Ocbs-5QjbTm?
zvXh9IgXBe`bj;=Gxjo3^aOp13P?n}V$nQZ#4=Q<3z=MJwRPf*p+FtUY6v@lPLc~`*
zDC|KI@?ylI#8-(jdhz}lij$WhmL!Jq=j^d0cWDnFXM7^_YaWy#FY73;la%wIJjswb
z_9GgnIBWjwXli8--t-{qf#tzl9_*5o2i-lW;z3o9Jcbh0J*e-I=h~obv6LDfyd$qT
zc}-$158ft`?A+!_f^`_y^Pn!tyTs*8N%lPt{#t6=8hX&kgVr9jp`oz{%{+MDgC-1{
z{@-5BJ!na##sAe?IpGH$wDq8)2c0}<N3jF3J<(Oi9`QrREWEP^T^N4kL01wHyLlk<
zOiVR_A5)Q34-Y=|*f&-Rc+k^>ULFkeV2}r&$+*We_wnFM4?ZWCus6vU#8MBEz9Q-C
zWXtDI>POz6IDq(IQL=QD_BBI|IG8xZ0~d*8OXjlwy4O8$d*JcF>%mVAQ$_K~EA_xm
z`5os+MN?$9LC!fu3=<<n!vm8<JaW?~*<BassGHmsLp}IL&Lb}}dNIs{;T~-BU^_S4
z2;y9iJT?V?j?ed<2O~ZB-h&_H8ZI+oc9aL>NJbOK5T*WDl4)5mo@4^?M-L{FOwVGU
zl7f>N3ZF_ch4`}v(ow`|9(lkDW>B2tIA?k=%Y)e-6q@_*l|)FQ;5=TP=6kTfgN5Ax
z>xhdySnR<P50)}qMO@~=3X<i-e)TiRnIdha2RlMZLRM23vW8?WvC3Tai$@;vVxNE;
zJlO1bHhQqh;e%Leiw9e&B*GmY?DXKI2d895IWyno!EO)sc(B)lz+82d$GDHUpLoE7
zgCvJMI7}kTBF-b^LL`)S%!A`pP7udXKkdOvlExb|pYh<V2j`p$7fH^0aDn87d3K#k
z9$fa|iU(Ic_|=2oJh<k;br0@(aL<Dq9^CZc4*j=?@)4}ta@{CufBM><L&*LWB2ntT
z2M_2GWpz9I!&(oeY>O26n8fcM{Nce<51x7O$niY(*f%^p)6#yk_ld`Tto-ISDSvwK
zT(0wSJ@=w}yQIJ5`cJ<+7d|mcm69nk|CzjX)dvle;Kd7G<nbb}7n!`sEPwdOHJn&}
zo=PT3A!Z?FC1xY064Qv;iPE>-Jhkp_t{1(?=_t9p$W1Qqn~5Rai+o<Z??rPjlo$EE
zsJS|CGcO8wQP7LGyr|;EOY|4@;#DtRCND&Mg;<zq<;h;eA;r8X?#1g2OAucpmL!%U
zmL?uHv&uI$%8<)s%6gHgQ_hR>6f1b~h8GpRNE8=OB`@A&sxndhA|`lMD)ougyr}L)
z4f1!1HNB|i#oJ!I<3(L6(y_J|b;u`k|A>+xBGz*}@6jX923|Duq7n78WpX$6+TUc6
z`8T1`)bUG7>P+m1UGr26FYe7#Ip(XDUbOO}wd3jFMH})Dh;51Oi0z55&9;BtmG&XS
zj$U-~qO%uWyy)shH?KT?$le=blMlQ}7iq$!3F+=d4=-kWF~^Hfz3AzM?uFZnUS53W
z#Xv6xd2#bm%I9A6@#2F{X}uYW@&!rt`AYbgUVP<6Uyjm`wgF!B_aa)){v}XQItuxk
zDd8@X!E#)gQ-{bp53qNa=o%{s@p$3&Vw4x7z3|cO_aflMe}*7OmyRKluon?83}<d5
zy)b2T*&$wec9K2+@4Se6G1Q9@48IX``3%Fn814|6q}W6e{FW$&gjjVz#_y>J`GG{n
z9plAVFD5gTF5|qI<i$^%|9CGZkjO#(=*2|xiKFeiSj(Z+ov)-xmnrP~GjS?$8gV*t
z22pG?y_iLwSn#=C%=6-gC=};=vDk|xUM%opAr+b1B917tmF`QuSmwnpFLrye+=~@l
z?Zkqw^kN&=b`|}ry;$SLS})dl@rxJhDe8P_61c&O%@pN8HhQs%d@v27Y+<<7={0n|
z+Aa$|U+ti>lU!_jILT{rTFqB`$z_uJyx8x>0WS`EaY)|1@#35phrKxB#YuKQ>XjR|
zWIRFtF)xlgN18YgK`C;I&eL9;`Jb%l=c!*NUhv`~ONoAoij<XET_L~9#gUX0yv`XW
z*8G+ix4n46wUTMyVd@d_uAH+Zm%1n4_sRz#lOK5TkmOh5Z^Yk;e-OnZBg(hK9&=4(
zOFZSqPVDXHUi{_7D?t<v;%_hhkxPLet^G*yA%hRfkNkdQ^Z`Ch^kI?@FZhtjhYCKt
z;X`I0l6^RKE~%ss3m2xR`0TU32r-KfSxK__kV=x~LtY=!eaP-Z4j*3hA*T<yeaOS?
z;%fG?<RZ_|D|aFkMMyrGh7T|MP{@b;J{0hwpbsz6DSk1CKhal0;jb`N*eRPZ2p09>
zr}^qtqL5-F#eFE@v;R~SMR3u4Rmz8>d9#=H;WZNBWk|{rUniFHp*+di`AQ5GeW=9Y
zzV)H94{!P~dXfDT|1BS?_z+{Ns!yJU3ZD;tAFBIM!-tPW_o1c_wR~vi!}~tDZ!O;O
zp@9z#eW>k29UtnkZ(XANo9SJWNAp#d1$O=SeDa_)R3(>CzC_T72H}mF64JznrWBhj
zP|~_AP|ba4;X^wg+WXMbhgLp(;Ph(kLmP(=U7%E<e}DgJOL5Wy)xn1kedz2%7auzM
z(8-5V{7?Pj1!^m&abkh$>O(glK4O>K3)J5WRL+H}*h0Hhm4&Li4?TSNn%Tw+)u%pu
z=ELU<dlGvQ2QO5;efYwMzCQHxp%29`efUb&bD{cip<2j-n-{8M3srv~2KX@0he1Bv
zT&SKeR5=!@qKnj<d=>1~Sf~d3FvJI!51LP&5N9`?HQhdVWWni_j<U9b9T(Xs9Ru`4
zh(V&13i%M0nJiM~ODeQT8PvsW`Vb|zh_YNF#>s~gzab7I4)<Y%tbDl)Z#GOy;CDWZ
zl%v>}{5=h$$$ub@BCe`qpI>8`9ZMWX98a9!!;d85S==b?Cm$yJaLb3=K1}i9XCF@b
zaLR`bi_}yfru#61=4r&=pJtrt!z>?m`>@A{**?tiVXF_@e3<LQJn7}bMjz(;u)v3v
zK6zA`J(Gn#Ec0Qx4~yh9q_V_^r6lK_l^3$YNl6!J^5p`-)jq8CVVw_am=#6({zAT<
zn6Qa11rs$lInK>KZ1F)V|2Lc%wlgc@4j*<p&Rryu-78nH#rDf_kYpeA{XQHZNu(ru
zh~Z%$j>y?fe$0mxB;q{on1xF_?Zc}+`_g)W`WfO`;yIa~5B(n}7l>sLyeOy1VkPYo
z$z>m|_;A&SYmR=?hwBc%A=d<&#V`Dh4|jd|!-q#cjDJ04x;x7~4k6>-_u&EgLr3|Q
z<Tv8)vLCi&kS_;`^RZm0{q{@t#D}LoJahaR{rHpoIq@$a{+0{TV)c()Na;@^4tQ=K
zW`YX=#TST~h?$9Ekk3G-_>skrtmN7Jc#%Z(RFX7ec47`cK3%LNB`v2Px%|jYJr6OT
zA9?*qCokj9D$e3&K5>dtz>k6)F~`BoFZuDZA65LQ>PI1puMkf(v5!|;VLyuaQPhuD
zsf+T4AI1DA&ai|ZrTut~yrdtc9M6syP{xn449olRx}%r#LsE&#LMkv6k{GTcZI%3}
z?8lqrCF`ZXMIwsys^&*^Kbn%)Ac|PmkD3mzB@?Ti{<a_QkO;3$Qimv`yz56jKi;Fi
zz8?+z{|^1%@it_t5wS6`iQ{R;@O@%)VhcZ7I@v^pHhz5I$43Et96(z?+WB$HkJEm%
z_oIU!qx~4;$A^A&^kWn&bRv!*cJ`x-A6@<E=Eo2}TvEr6kNx=4kFRL>#E;MX_?*1E
zA3bCP_|cPLFQS(xsjNwY^rqN{_ytkS(j?p0kA8j(^ka~t^!FoCWPn2wm8II(ehg-J
z;Ua2&=nPFi+<th-!$hwiem?@_K4PL~kfVf%q9jDA7V*RQA6wK9%a0h9p?-YhN8HIu
zmtlSkX9ejfO%yp0!EgQcpXA>WNBSY(Wci-_2cm?Mm7CQ|m$80~^J9@8i~W!<(X3po
z#``hBk01S*=(oQPlcR;b%_jLV&5!AF?r?NbCX-C@<7bko@-j6_8vANWv_{GdDszZ4
ziL?Cj!N`oW$sYjHq{3W3=J_$7;sQSwl8F9$G{a*y`OnT0S-s1ttEKy5wbYMg^eiW?
zAg&~?B1&Jet?^^6AM5=1#gDyy>|<)ZA3I4l__2{>lOLP?*g}4PvD)g#Ha~>yAWAm#
z61ANuqEwbpa2Nf%{n$eyiueWh%bq7W;KxCdLw+3f;~4p2KaQ|TDXDYZ52-JTa6##Q
zl9(9cj2~zHxG0P7$2mXFGj%~ON}NEE53@}!t?H0p_T!4YxB<Kzz*WCINDdXMr=<sQ
z-H#i7WDg+gthAec-16g@T$cT~?Z+KCIzJxBR<D@Sp?u0+Ic1ipd-B?~$(nCWl3<@D
zDo^v|hkpF($8Uc8?nmtgDNp2=_V=^?;m0FC9?Mm+XGRHYk4h@sGox_1DS>#N(kaLC
z+>gKfNDUw@fYBvV{`TXA05S#ekNgP`K!yN@w96(9BpCw;El~;ORP_v*14x!>2kbRD
zJ347|>#QjOENhY?4?52hupf7RWJSt^B`RA0g5n7jOWE@*dHE9c;J37mv-9N$K=4Ik
z&H!?e<PIQD0C~x!ix{N!{wO&gM^VK5!~(>E#4D^{C}3~DcZshAP&j}h0Td13ZF;2I
zs{y<gKpBR`h{Xda5kN`uQpD247niC!OYJ$A4d8Vu)dDC-QZax^0hAA*0>d|m(pUWb
z*`;y-ZwBy|qgNrRN|drvQ<|8o2T+4zO=7J865S;$$~zQm6Ky|9-2f7G>ILv#0QCd%
zkU@L#I|k5D7F@2_3>yc~B!JfBO^Gdu%>sBofaU?TV3Us0eqO4i328--WD|NDk`L$?
zr5(fe#0~*`NFwI{{GF(D4xmc_T?6RGPzI8||9S%G9>A&qRtL}{fKLM$C0j0lo&od<
zpl<;E0{E$i{f^nL!pWZn@Oc2e1Nb6fe-8O8*6Bko;g=-x%wpk!{h8H>1Bg;&Aju%&
z*8vQ6^dSMPT&i3|v7KJ3^Z?uecmnVS;0xfJ0EWpH3Lp@GWa9w@W!sZSiQxbY63IqL
zYI(8=Hv{->sS;uZkZ+kyV$3G^Q1an@Z0B(D?}#G;_?ATUs>{^K0L1e>l^-0v`7$*o
zfUyBA3Se;n;{q5Tz;v1CGBqK9A9-j~1DNO><D>w-TK4Zw`-$RY;uPY~#DrlQdC#u)
z%QS<0CUF*Vb^vn%m`gq{fCT|8l=X>am><9-r@jygB_+R%Ns%QqFC|L2EP&<YD~KzJ
zo7i_v0BZxdA{WDeJkAoo@aXmhu$~^d!*;Ia_91MLOF^Pn0Gk8Y62R5~_E6atz;=?|
z#2o?bVv}Awsa#p6q)8}EQhOay`2GM6Fg!>+8^ECe4wD}to+KV69wQzno*<Uw+)k07
z4&V$){xth7dTHkvo+n-)UX<%(Qua#$TxKX-Y}e%CAHc7&Z78;0u5JWyGk{wR#c(%(
z+vInMLpZ4D_ZZ$MJ_z6;N#c(Ezmtn6PY{0u@QC4K89j(>K|BfIX#i7}t7ifHEf@I!
z{-ohK@h@V&8un2n1????AYKTfUwZZoL1d&NeMR4~TxAL(C5S9RWDX)Z2vJ0rCT3|u
z#F^-l%8oAvkw%i8n1i^v^uJe|oI&KGlH1WGl{bj=Ao2yFf+!Tk{pBh@vr=5RU;%~&
zgLo;3muVAGTEZ-(NDxJXxERKzFkTI!SP&<JI2A<kAW8%=H7HN^M9CmZ1yLi2nn9Ef
z;<X^k1kt%y#&SDTbFEOXuTYN*tG`-gEz7Z952Bnihw?#G2;z+(Dh5$0h&O|%##H4X
z-U^}$mBf6yu27N{tV)9r(W{dulv+V~3@cg&(JF{{f~Xxt^Pv44_WmnWogf<0DZFkF
zg6{@Vk3{%;B=w06g7!a8GnYtiM1Nyq6Jk?hGvfP1nLy$}y)76X?uOPvawLDqaQF(<
zCJ4a~h;51Of@n|Dfhf;F6hp@#I>~Yc(Ip6P5I#A~Ai4$7SGG+MKefvGQ4n8{d>lmO
z+8IRoB#7=*g!c&IQ}Uic^a|oLNB>;RWo)yw-a%9+@52gT2JsbbU0JPd?F{`H4hUi(
zNn(^iL3|y=V8=Nm2p74Vs1bGI<Q1yjh*TNK!*FVIoBM+Z1Tiv*?<od@@@QK7a6&<Z
zNg_dfLt+GB2C-{}T30D8N=0lINi2vs$xveAh;$yyaK|}<<l7*=3*wQPmN?QMf*2LV
zk3mdib~JHZ5MxNj5@nP;(X{anpFkqh5Peb*lY^L&ND=d8P(M4)Iv-{j#5qh4Vnz`A
zWvB5)pGmy+S;ko;vxAru#M~g}$=Mym&LHLou^@<5L97m9VGxUg_C4H|2eFub;Y&%D
z5an)fvd5N@%iZ3jtsr0NWY+|-Hi(TuYzkr>Me+Z_nqpob#0ICYloDlg5L<%S7Q}XX
zw#xa-A!OWyLAw8^2-y|H?jZKioVdT781^#UC+ow$2ZJ~i#EBpp|7E}boIhDTT%isJ
zQT1B#ksywe2tO9Yaq=uHm4xCfvr?T7;*4BlLwFRz*&xmZF(8D2A)M#5-w2^%2p8ny
z6U3z;F3VLVWG~2-Ag%_HJA^zTTnplQ5P!;)g18aH%^)5G@i2(7%~Ng>?*?%@h&$vv
z2V|5cse5uIbQD+1BvF11;<q4rw9fjN_&f2D%#B2T50{iQ8U0BRPlI?CM8|ANiPmVQ
z{e6VL<jsG%jE9gC!atmUM$R@Vgiq_+@7HBu*l?vn2rq<?DTF#zQ!<C_U-HKkPZ92V
zo<%TA2w6kO9>Tn0DbliqkQzc-2&YELSDEblp(Ti5ju2i9AtzJ0=$EWi+xu#Yki4v1
zB!r?Nq=%4CR=9Bn6+-?H3WV%$g2!8?M1Dvv7{bdT6q1#kmG)A|ejERK7h8WN1i``~
z`vFX;EmP#P1oGWdQC<xpbEdo{nJq>vPAoyp`f)bNmZGOL@iiW`h_V7@$zKnl97%bi
z=oLcvc%^+kuM~nj1Gi=fwL+-O?3={5h*gMHL#P%)^$^BqQZ=YZ$LftyvoQqU4&j{;
zI)~6Dgxa#gA^X4fEkdXp!n+~77eak1^+GUKssxImK?n`0zb}hM(v;Yk*dzpTicPvS
zBT0nK$we1K%Me;IY#l=T5JYJc!UrL=rP%I&dL{aH2;svJI#TcS|7E*|&@F_|L+BmC
zN3u9P%+CZv=q}sIIqHckRS$9@vIrwaX6qS3FIn~~8AZwTR+{`@N%Suq|5qXOarl=Z
z#A`#k^bMh3$R=~w+ZFn=yYwn`Bxz6xo)Ektd>z83m1?llcL<3q1dT)|x}B{2JHr=(
zKZLtf0wDxL7#YI%3`4|t2w{>4(FnmLiH2a2$OOVoRg7GSghR={31Jw?@DRRroFhVz
zj$-?cig5A&5W=Vs#%@mC9m41k#)R+-!?7WZ3t@H$b7&hM!US1=If=N26GNC3!qgC^
zh451dlS7yi!p|W*S*c!GrRuLzeO9UOSE)6t)TLD_%W5?}gc%{s3}IFX6;`WutCe@P
znzmZ)S*@0CPW^4QDzHY)m2)$M)f|0(2n#}38p5&=7KX4WgvB8&k&U`W^;)BbuTjg_
zsIzO-3u~3kyv$m)JcJb?tPEk5Y_PS;Mg6C>YWrGsk38=>wT6|~hOkcNuuipGr)0L$
zeZ8E#A#9Y_E`)6%Y!6|xoL^;Az3bFgk}dM$uCu>mE<|t#aojq!i)5!P6thAkyC;Ob
zA?yobe+U;txD>*H5DtcLB7~D69O4{~gm9GPFuTYcj)icXb%aZ6IoU?J!kh}>bO>kU
zqD23H>wHcw{&Lw*$#8+Xtf%;8J!K_@Tn^z%2)CKKDwnJfZiH|%gzHqqkXT6}vTlO6
zxNbsZt?p2fRgzG)$34FK_lXaP59R7dBH7<U_}$^l*Qv*{0c5v_p@;D_glBR^4I^I|
ze}-^woxM3z!+1{rU&OzO|AdefMusplhLI9RmM{>;3t=RO?fsdFC?qpU(l1Kde_>XN
z*_>3ulfX2J*~7>|@?sb{!^lORhbTpIhcT^4O3Tq1^HNE0(N!4lg;76@{9zObqad?y
zg;6Dpm%?~Cj6z|&62@y`lwqoH7{$UUPF^I8qG7xmMmf&239$rIQn?iMl3|FRFqCFW
z!m?q!9>yDCR1}ZnuMkH0FcO}GUn*A$qcRO|av&)yP4vWfnX58YGmKhcR3ooW6hjS`
zl4@^<@eaj$Vbms(3U$M%<2YqL?~==)GTTJ`24OTL?-NF&FdCEhl4A*@X&CLoXdgy1
zisEk>#{1;Wi7mqD#idAKt1w!J(I$)!!jM$(7uA+FA=0FKhp;@)$R4+6SZ;cQPQn>>
z4x>vLABFL87+u-78*u`AeLgprbV-br7^r&~J!t-vHpz;<ljg_7&sg^JFnW`S;fpX5
zf1e8fGK{an=*v_;;@4sHm%sA5Ck+T=AeEH$YLG*ui?qRE451?2MKYjNiaQKX7^}iq
z9fsG*&J4pBhChseEJ7IHhVfk(p)kT>45KF!hCvb!!z76ki><d;NtzW#Otv4x1P-O)
zn=sz3kfF+YHJsrHqJ+|AWEkIvF*b~GVf;W{#8FQD(P7B<CPW#-RNMI(#)mN>j45IK
z%+!xz{1nFSGAR=|u9zoLm(it7rYKoyQ^{w@S>}k-*)cIsnar#(W`{8+jJX_ZSs3%2
z`791&ei#cFE(~K4Nmu8nJ?qsHDoY)|q?VJfaFms@;PkI?l#^ks4P#vxzl5=#;{Gr;
zgt0M<T?{u7w-GlJw-C1yWlbir;C6;P!q`c&-<j3!F!oT{8^%5-oA5~A156zZ<4_of
z!#EO#lsy*4@i2}`n`GaeHGwC>kebp_LivKpKkL=0Fa%E%&k)asagIdv^I=>d|E-yA
zz8uCCdC4O9F@nMy)KxjlB4``IwJ@%SaU+bIa#f7rMP_e>@i2^EIk(%yJH)$T+zaD=
z7!MdGu-=A$cinGcBt?)RVxOVEhw%qJkHUBy#uK^thw-;u>ce;@7k@dMm=&ie&72BC
zBotBFKeUN6BMW9Bg7`uNnIgzco=jX-(Ek5aio?_X$(WT~#B3y~#57{|h}_xi-#c35
zjNs)63PsSgMV?#{<c=Uu1bG=s-~17zljkFfM@7(UgAyXy0<2b$_!3c4ugC(Dw~C-h
z1VtlwD}pK!RBn~>Y6N8>C>ues2#QlFK`ccq8NtYo8N^nap^(=iaBWaRq`gkDQUv8l
z%12Nkf;Svz#Rw+Q*}YPB+wYWmlZJ`&lBz~fErPlcyi27z@oi!aV$BF@CBprwi4osn
zSesZUf~l-uFM{_X@*NrbaOx8q5hZL8K|_bH-=G>t&_ouEN;5~_*e!d`B58^G%_+7Z
zwu~Ue!)(o^YePK7UC}Or_7U`yWsjgk#QreGhY@VNZ2!IdWP|ERXD4Fk2)abjHG*yo
zKbBW>qq_H9>PHO4FX1QT-5sSz1fNDA|3eIXqU7I^pGEL_1bPJS2ztv}`P1ZfNqr-z
zu~B^yL7#~IyWE$=uZWeBGKkVIf+bIq`xAu>AQ>3Jpa{N>U~mLOBG4$-Se4r))f^Oa
zf_pfh7%^}s)f<7JF9N@i2!aeF5g2l4!CavT!c>HdO_~`&luGZ7O2W&@DV8YY@d$>p
z>^Bj7C%b}t7;$(6BS>a+!nY9!$`VQYK7ujSh5r!2D2I>!AJ15d<A~!OePRTYWP2NU
z-H=aWU~&WxBltCfDG~e}!LkUJ%PxxG=}!Ca*;x@xb1F}l3gk11%X8bGo}EoThd4Ka
zc@fMfm(K|-j$i@#LgJ!?M_ycc|DSv*@xRX`tcc(jDq>hkvMPerj<P0#wGLkw!LUm9
zI;@XigKV=1HbrnEf|C(!j$jLI2P4=T!L|tYIlZ<=u*=~)BG}0$MRsjeyCc{W!Co<J
zR0$L!sr`=s0EwgyMR1t5BM}^<D9)o!Dd}>Yq7*+B!RZJtM{p&AGZCDP;9Lafovf6S
zCVp`WUWnjg1eeJFOI>AnBZ8YG*CM!1B7X7Qir{tx_o>_=-i_cMNup)~#rePyh5sh!
zk^J~DaIPEvpk8*9dcm;g@QC4K;uF~b5j-RRGlIV(_$Pwr4C_tE_*cY!P(p@HD#<_w
z0~rlK$R;IRP)hyBMag6!vw>s|A*nP2Ddbs*S&7+*sl*(=+Hajn%bo}wF{gogn^Z0X
zxeeqoke7NP1L-6MiTQ|%n4egH*oL!uiTvgN(O)r8*gz2jMGcgq{;B~nODkcZ7?t8w
zWIiI6G#~{<k+3xJHDVd!%47DgUgZpwH}JiI9}HCNjtT~<8K`dH4SF8zPp)V{uoAJd
zfj3D+dCNc*@~VdY7JaW)$s*P;P}4vU1D~>cEdvb=G$Mc7z&i$Nlh+~EGf<aArtz*J
z4}P`(41CW~>XS4eN~*DeCI;FWXiuf7ftChZkvB8&zJccCEew3INeN0RAqn1^VH*P<
zkhG;o3_h-N2Z|DQG4P?oI~wTZ@XjO&b5{f1418qZV-cx$CyFQ0q>hZ<lVZR?&_FK(
zpBebvKyL#c>R%Y>W58uVGw`K>uM7+{Fvvh(X8RNS5!V*B*F^XLC;ZyLU;{%KN=o#E
z^FNd>(sUZ!282t>%g{&k6Z1iyT7{5-FvH;nA|ykJh5?f#YQQ3qvBqvvG4eQ3LJ_5X
zV_+EDE=L(b!?(om42(38FiW*j21d&^Hc`a1-^m<f;Ix4(yVO_%<75vQm|$RyOxwVZ
z1|}MqXJEd8NpkTwFwMYp1CtF*G4Qj2sRnLsQpGl_x8BNHZL{jQS@mz4-fy!#s~HAn
z8kl8ZwiMi~?nTnqZB|9~^yiz^90Mh`sMcH5Tux8Sd*`PwFtE_TG6TyEEHbdzz!C#X
z4b*R(K75N>wME_9qEfc18e3K8t*TJ<^c4nH8dzmuHH$=l%^TRNrf*djeCdZur)=D+
zo^Ms_4E$nXuYr9A)*IMhV7q}G1~wYlWMHd-ZE}`vQ|-2?%?5ni)D{_co029|y0T3@
zN=biVyQ;cf?KH5<z-|M3<h9<ezS*v(ZdXUPs|hR9pKMnZcc|{a=G|}LfPte1ju|*;
z;E;jC29C(C+o29rv2Sj(c!%1(LtWjWp6#&fA2)Eqz)1tA4CLRbDvnF9y;BX`sb=i7
zv-@|dn>*DR183#JYv8<GCrxBDalybvIpqyJG;qnlWdk=1+%#~-z*Pg+3|yB>$1c@s
zm+G}k{uW3dyGuP^m%e?My1Pr=GH~0#9Rqg_WZ$heG)}KOH2v+}>Yj+@(p|gNxZUbL
z7qk6tdk()E_|3pG1AiL$-M}9Po)~y43%FZ7-mTL1s7D4K)8A;1?f+zta_>>&_NXm;
z)N=!W8TiLQl8L`%S#qcUy+;+^YunDzTzjwjX0MvPSHZ*!CUTm{Wg?S_%qFs#NHvjc
zBE>`&6Io4c-K%cxRr&X+qWe_meacvy-nl~hxBFC@iR>nFn0V2|vVH2(KDF**di1xv
z+4kFyWG%m6wcoFDo5*9LfQf=8@|s9Dk<WxOF>t>!_N!_8)tUY3*?#rb0oCMy%5UP@
z5BB@RFPV7RL?IKenE2v=8g@YaazI@_puSm`o_bJ~JgAx<wD0F!)I@R9zR<}RGha1P
z%;9p=w!sHg2@`@PiKU38O}s{OV|T7HCIrP$&O~_=d#7UGR8%nWhKY+KacLwfny6%=
z>bI!&Eh?LMQ|2E-dJJ!wsA6KBiC-iuOP8Kq{^h#LL^TuDP1G=P|8iQuM9@S{&Zm|M
zxgFx$Cf+eo+e94`-AsIBqOOT|O|&x6+C)7Q@0n<7qM3>MCK{M%Y@&&YsRz};gX-=<
z)lf!1q#6<Bcq<=L?GGvKkQ#kRy>Ftqi54bWn%I6w-94m|53Aw@(<>ZS9S<wtVKwQn
zYGdL96CaxBXrir&b|%`J=wM>SVRhoL%6&vle=)t`5%nl{TCXE&=n>V)L}wFSOmsCd
z^N2cmL_Im8iXK&sj;h{A)zG7A=~4Bu9G!`NCi<J`ZlZ^Y-tuCZ_|!yC6TM7)W@7hI
zmEoAGbxgH8rUoBV<BqAd$JFOsmWRhw9}{1i_{v0I*%-%Ft>dcyaW(w7+HqVxIIaqv
zP`ys50kTz0xJ+m!2ATL;UOp2;WIN?c_n%NxPuN@f;0cxGq-wIrKFxI#ZWBHeeiJ26
zDvyayCzb1@dcA+L*M#7qp1CKTR4=`k;?~laoKztbVG}F)Iz~(wCKj8xds3Muq9(pI
z@tp~aiiqEk#E5a?P&oxoDM<}8F`UW>;`^smdFmrgd{1Szi62aiBA;eL45Lj<WH`pe
zSdwujCXh(M@v^Y2ApA#}3Hc-wKbe?J&(Dr?iiuT@b1KEl45yRNkXMjo7BTI#J=;0t
z)lRFqCgzdPH?e?Zp@~H#ZRr&ApTklGmrz_vTt-|j`-h~_z`SCRmN*wy%Vnf<`Wh2!
zO~@Zj!UfmM4?7cYTX@I9MiZOlq>G|L6q`+Kkt<IWnWNZhVw;KUa$<6aY$u*IvBShp
z6T4(PnK)|Vn29}d!kRclgS_bbNDi9VPjbM~-KW*~)AkNIOyvmi>1g{7Z_<u4JY(Vn
z$w}fV;%TCIR-aZ<M94WR=ZP1H7m1gMmrYzTaaAr~424LS`=^yOA#!V=n<gHc_P;VE
zyk+9Hi951%w2AVoTp|)(9OVJYLlgPW*cGJxM&)<nAEtb$0F9YyHz-@44Vj;qcxs};
z#VpTE{7LfML{bzPqWFuUr2Z!PM^2?PN<wKFqi8rZNeJY%pz;EV7-YocC~`-UCu$!{
zN)%b5$QnhqC{m+%F^Zf~`(Z9=QDl!I2l>J?N|a)IvkA^Zb`f(qDG3u#e#sj}Nfu0x
zB3~3LihXC4v_d5Li3NxSqj<^5zRWISdxc8jD2k92jp9|u^Z1M^7DaJ}FP~M?N<`7&
ztX*6?t4c*7Sep16u?(>+@pWQ3q8#iSQB;g#T@=4WQ7MYbQONgJ;!!mJKI@xN)QaNm
zDBfZyN)?i-QB-r3>QU4nujwfA;Kg^Ms2#=EQ4EfvP84;c_#%ovQM?;Py(rp6(LRdz
zqNpE5izr$~(Li3BD4ImkG>S$%{Kiqtu7Jcx!T%%8qIh3Mk#%kX`IM}nq~s8Uw2GoN
zJGPD5sWwr3z%XGDlqR}hhbTUb;$z81(J_inQFNoTGs|{~qN~$U%>NDX5yeD>?osrJ
z;xj6rM$wZa_G0(MWD>o^{CO0;c_5-EQi5NyV}Ds^5>fh+^dm}NQ3j9?jA9Up%tXW?
zQMjUrQPHB%qcF*%XO%mOP!wU=nNfHt`eas71ftk<*52O1D5MDyvos+QhC&P{C0xu=
zcCm=!6eZDdXcXVD%djYZh+-7^aN-E!x5V#=Bcr%;R(((2xq8azD8@vwfZ^CE#ziqp
zmL-buQA~*9=P0H|@gv*BC??5<EMWhw`V+}y_9`$YpNLb)d)2Y$KaG4kv0fSb&}Kw2
zlc6|M&)J?iQItKW`khmA<wQQGTAfq#qLBZ~&yV8Gf+^DabjQLd7DcgG&i8^TE23B#
z#gZtNMzM^g#Iu}4hL$(XM?FpI-Q6B*RTQhESmV@LOOI4bWY<TrA&L?fO3L+LcF3kI
z=c8D4PHmDO0a0v`i$DFRqSzM2_9*tsi5$faic)+x$xh-f;us#z9!J?vax{u#Q5=Zk
zpe*k>btsA>)TP2<D*ut=)K56swI%F#K2OSC`a9R3MeM^l9mN@D&l1lO<+coxx)8<1
zC@w{DIf@r7WU_E2imOq1!xMi*aV?7LQQV8-eiS#NxGArD6nEuC%$a`uoQgfodrL}v
zlJzzV3Q_0Pn&s(93)0^?uO3A4Fp6KJ_)X5H^XkmP^r`37f%EFdc~$I!s((TCx}Y9K
z@i>aVqxdI^Cs90&;<;SpWvgFM8A_!*lZ|vi{VB_MK}nNe$d6r6cjl)LX^=JZ{>(`h
zGFZrH0TveSOi#Y3id<A(%V%wTQ4PMR7GG3D-bl}EA=yG63wbT1Sjb`_yM-JUvRcSy
zA=N^fg$ox|?n|oXCH2uI6~ClrUQ#<RsX{NOzi1(+g<KYLTiCZN{kKah`LZf^Sv9<@
zmefe^;!FSHXufm{`79K&@QMXxA-{zJ77AJzeOb*2q;I;cPF+^dFRP+g)Jql)@5}qL
zg*sQ1H2LMfu!SNPiduNpLf0#5{>=0`Dt+J;HT8;$T}WATMHQ2|T~Wn}&#tIa7D`*F
zXd$#d^J^9+WJs%E;SCFAEc+!cOMIPJj#!>39?43Z=1r3(MBWmwWTCPJA=2Ko@Ro%t
z4672W6RQ#PTvatJ)O3_ujwl^#%duDpSO{9EYvElBAIn%4>REWtLOToXEtJ2i>Rae}
zReiu|G_cUnLL&=}Ei|Fh!a`FE&Bz;GwNL8zEi`8+JmE=TONy;5v?ggIrLHPzA1+8<
zRxY)ztV4geuBr|ere9SbS@zoz8zpO@qnxBym9$P4I+J&Cl&&P*ES#s|NvV`Q8`HX5
z=wYFsh5j5!Zs_qTNl#)g;%CIqE%dhV1^Ji6K16$wc`RQs>?@1LZ~#NiLf=*P``ZH<
z4kCVSVK9m4Lr7c}5@)FH=xz%hhkHqUL_e|plcW&IObfFtge^oY7*t{wYF|?(d6Z}o
zU%F;5c-+EJhTmBD!NMr=VHSp47-8XChTmI|_8qx&8A<ZtH8qG8Mq3y|<tGbcNq!`b
zBaSCZuL&g5Wuoj}@<~MDlPydk|JlM+3)9GD#OWk6=$GN7h=_u-EzGg-z`{f6dri%i
z16-H4_FXm4!h8!0<bojQtcCp+7Fk$qVZH1J3rj34wXjMS*1|Fi%Pp+1u+qXW*VM&p
zD(7|8<ht@)SCb2-e^Mdql<R7Zg|!yeiNV5=>uTQo^lCTkx2L3azoCp9Dz$BvjTSap
z*kNI(h0PYWSlDV|n}zK+)V&)j{ibSoQ@L*{y;AD;H`R7Y-L#KlmxbLH_E^|!;rUH9
zVoQ3tTk5l0YUC}o<d!<_O+Pz4{eXpo7S74$v~WnS9u`hmI4Lu+aMZ#v3&$<Yos*h%
zO8U)PD)Vhs>b9zNTlK%K#@|+_ES$D*#==<{@u&1Px7C+_=DmGe<-DVc-%%gkQ9Y`p
zU$Ah|!VL>IEnKp2*}^po*DYlB|9k)BEAr~!QCGR(LMAQCy6lch-I^|kf6Kyc3wJEs
zl_eULp1dOc$r4+?NAurzRH3`-KKa=@_VJ#&Z2vFyR|~&c_}#)Ea_x=TZ)iNS@K}c4
zlsQ8TPe}f<@Hfd*;xh|>l8EOyNvFF?_&?-HF^t%1Kj}<b_I*hiV?fNV_5v{_hD;=x
ziJ~WyT=^t#7Dve%LpDd8wIW*@XO%sM95K8|o`)z?%^5>3hv$yr{Vb^>N|QHU^2MNH
zSU(gSh9Z9q1!CwINB=kq#_&=M^J7>L!^<%gilMKhVt6Hn!ZExlZ@<J)B=+z1dEi}D
zG=^7WC>BHU7+#N|T+Dt5PKg*w#ZWqCKi8%t6(O%NEE7Z7nEl|JO%HO3^FLDFsab&}
z@yMGu$ScNBDTc~1`w=<PMVgQ?cU6@bTE@^ShN>}Ci=lc9EAFcIh&5uU8AC1dcVnm*
z!`m^u6GLq(VyhcN9f!*sS^se%30^;j1~fE`p>YgN$Qu#G(A4SMJcefE?-Qkz6c=pa
z)M?E_=n%t)F|;B7fY_GUj@X`<wM@o~o02-l&?$z`sdOgFCj2;tF63Q_-D3ENM1GD0
zcksVIF?6TWBZi(a^dkS1c=xW7cJ%Ai&ln1kg3@|3{DRnr_+<=V#qfPY`&X<i_f-EF
z&g{(?iy_YJfEWgn42t1v*;FwMVQ9qQib0FP&rm0NiEg4N25H6a+2@qcQG^F#2vQHl
z5RM^2o9JTx4^8rD3>JwLNo0r0KD?*om)IYve-p#77>1LNAdV$|8^d=ojFf|l;fEMT
z$1sL^yL(F7s2BugENLb7CrKz|9C18R!U^mvWMT}H<div(`6uF(7$%d5A{$ch=NP8O
zFfE4ZG0cz`F;mj)7-l-2StN27XlY`WHYbL;G0c<2y!Y>Y#mC-L3u9Om!)tMriDPjL
zOJdj+!){U9WLYX3jI&zi%xyWz+Iwmx$*LGu$FPQcLkt^ZSWCW+_zQ78@f?qOQw*D9
z*cQX~7`Dg>TUu>pwsBiX>r&cYnU-z;J=1r@(5NkT%DLbudt$f{!^If(#;}ha_s4KF
zhGXOhhzE&>h=++sh>!27<0LY~=@?FspCq0lCTx;D!|*Ke9PxY%(p^%07w5ec!=Euc
zmy2NxSD3vT!_63Okzb49I?0U~4mZcTMfS$N9mAa%evRR`816DF;)57Q<x%%yxKBm6
zh|(Uiqlmx9@P}OOV|YrZRC^@TAeXW`*)En(k&e=yIlcah;qMso#i8Q(Cx)ar^2AZ-
zzRD0s#yGOaks}Vo@j@I~;>gNWrZ|%0_L_?=GZo<}aY##u+2TkgPm4ngiL79PORpE>
z$i<F1|EIg?xfzNrFG)HvF-rb83dB()j-nI`5(~%iQXDS}cbu<q8q!53Bbewb_-Y)*
z<0wI~7*R$k>3B*xia1L<ylfn=$I&p3Mm&UavLH>e)sCY)!wPY{5l2OGIkc*AR3fiT
ze3STA9981jlO=0|`>Ov6`(sPhs8^4p21(60-j3sb;~cdZ&b|NdYx)jD(d&@ZCB93P
zBK6{UkGwvy0r9{#`{Qbj$={Eoc^pmRkYC`XHI1WL9Q*Do;esvVXc<TMIC{j<Dvqc3
zm9!3Vw03wKk`Ll&8%I0x_SI7D7KfmiKa8Uz2kI2Z$0VKO=t9ypj*m!WGTlhTpCF$w
zJki!Z#!tz6$MHoRJ;{3!KO=rl6kDs^8T-iOcW2b6B@2r3rEJJR%2&j`#9hOZ2E;Ki
zjyrMOjbl(8U&pZ}j;(PFW}R7a%#LG79IiO>Jy2R4(KxI)^f=scc;fKJ5sstoCi`si
z#o>=5z>Z>;CZe<;^$>OOL>z+=he<BI#1@MqPBJ=<p(G-XjN_X)hQ%>FjuEo*tl71(
z?f;gZ?}$wwC`o-!{sVCo@e?}7#4$FGadC`~V{#l*;+XV6O%RM@BKePTNX-P7%0DIg
z$`1vSpW~SBC{szM5v7QjXOPb%Zhc_?%$gHN?uV+v#w>H=m>0)<ro_2Ajs@fk<5(ou
z|2UQ~Tp7nwlI3x%kc}6I5b^*1KuHrKN+Mk4*w&D&jbmLLzr?XVj!jfH5H}K~uhdCY
z+e{@<c3T|V<G38hl{j|9(cq!#|4<EksCLG&D~{cA($RcAj=i$;<2cQ5e;fzmI2y+>
zh6m#~5=W<p_Vf->IZPBqn(*Us$mbcPouchT94AQ<UE0e3qc^ED>~fZPjwremly-sP
zMdBr53j<r$Wl_~rS3Oi$sa%WWI*IuIA64H0?L_r`4Q$|b`kR+S@4ffld+)tV@4a_W
zDN~Y6l9@?pB8q?_ARq!FA|h6rbO99v5u|qzzB4E0_xWGzuD$l%_uO;)O){Ce^XCfO
zi1ELK+!Wl|3AcHd;2EVtQ*oE)YBNuQibNIngkQPmxxWGrR^TD`$vw}b6?i4&@d`Xy
zfv3V*f5B^695R0{A{WZ!<qG_>0!%o{Nv~HRor?4-GN{O;BC`spu3JvcsJfQX5H*fd
z-Hh>qQMVjTQjx4;fQo^tTh$a5xm2X8$Rg3Kf~;o~l3hiPn37XP;0=Y76cuSI>Z@p=
z!oy$wRg_jyMn!HFc~lfsQAkBz75P-;S5bg}AiPXXy6^skY<}PK#(j@bHoogTW%+$i
zVHHJGlvGhl#isk7qTFNmJ;hZNQ}NS%4~LF<-Akq=RJZNfA9zyURH|!Ag9o0e4?Ja6
zlv7bvMKu-WRa8(>Sw$5Us~>oNeBk-#fv2L1N|G`Bj{7St*AAuaL(iCpZbwyDQA0&-
z6?IhT4?Q(i9DC@=YAUr<ye9^X<CiH{&MS3Q#69v<eB`O8f^koS<c2C5spzDlGk1%M
zCMy5`f>tV;s%WO7xr!F7Jn~F<<XQ8`bN-Ph<6}?aDP_k2rH)r=t)h*Jwkq1G_;6)n
ziN~IXk3CZ#d)lk$dP3RKC}r<sPX`qpRjhjKDYruDwZi>P+J#e9^it7VMK=}QRrFBN
zQ^gk<l|LVQ(miool)05s`-!LP6HnjYl|Cx^s_3Vpzlz0AJUgx{8=-7_;`!l;2Twhv
zo_abz^$b!mSj8+Av$=~@3{f#g#aI<XRSZ)xO8RX$chUQ<bAI6<lMyOLiq26MNB@V9
z6VBpf72}0ZP%%+R)Wan8-?tXB%@h?=RZLScJ(g>xiW$Q5U2-oFao{56sF<r_S<Ggh
zibdQU74t<&D1`+o77C9m<<^Js@<*vlRJ<wTTY_(^U`tM28q39I9G0tC5mPu-S7GoB
z<VtcIpSn%<s_^mLc<S-9hZk8K;ih0fMNmjc&=Rx-`5kkdC9EQ%VkHlviuWb^YC-n1
zPRJU;wJP3;>7PIKyc^@|c@hfe8`3z-2H_vXQa1`=gFl{nKIBd2nOobBRBTc4v5KwI
zsC_E73E3;SUBxFVcBt5?;xkcp34W?#H!mOgvBvKxi4s2YZjYq0+o%#f@a=OE_Y1P}
zrHX?pKG(5d$5$#2@k-QDO~=<N4y*W0!|$5g?cea!)o{LLx+5ySRq>sQ?^Wc~kW0f4
zDt=UPOU2*3*i{@=@r#O!yb@I$S8-a!85Ji~oK*3%ic>0%TyrlzSA6E_`ONdyGtZ`H
zo?o7MGClX4RdG(mc@-D9EzdnA7ASGKly=WOp7LpY*U;4G?kz@_R9seZO~rK;zjF0d
zT;&erz2dp&cTRfl-hFiNx#x<sj>+rio+2+iN{x8lxc*deL&aYzZmMX%&RvfwvlRY$
z-u{JW)C<qiWy+ivp4%$!@P@1b8t(EYrsAoJXDaTic%b5;ibp)VUU;s(@FcwS)PL#W
zt45Di41ejlc{|~W6x#WvJC4s)yik!&LwXIo*V!*UFL_JnHI;-{+;uNKuX#t!_wRM8
zg;|tmFFoq9%!U8)bo$4WQ9~xqr6G%k%o^e}Bxp#~F#8`*yoSg>?%x(Q+qvIDld>wG
z|Kmy0@W(%%WErNUS8nN9HDuF}T|*8HWnXzlymJ3^7+6UOz4A<5t!#hg`R<h`RfD3T
zx`rAW(lmH9l+aL818K;up@4>h8uDn!t0A9;{2K1P^5lE%>HOL=^R?$zqVmCO&*|5m
zC$Bw)G!)iQL_<+7G#xcaN7phc!_rYP4GYuJnxmPIr=#K;)}<p3T(?phN^7X7p^}C&
zTs;ltHB``WI~^5FPvxW)z0$juT6#K?p6;ZlLK&#ChAJAWYN)26a|T+GfsW2m4rHJ+
z87K?r&6n<OQ&U4N4b3&Q&`?`L9SsdNG}2I4Lp=@kH8kJ}yf(2GsFVBh9O65{?p9Q`
zfX;y$YiOdOsfK3U^BJjfM(Uc8_H9(AW+eV=V|7OQEF-nl&`Lvl4IMPJ*3d>nTMg|r
zT+B#GnTRJ+#Z1&W6V1v*2S+FHHO!70I&p0^bkVRO6Ah@X9L+?HGbz_HQT>}r`pi@<
zGj-F@T|*BIJvG=G91XoR^wuzohg(A*4Sh9?(J)p+KMnmg4AC%D!vGBfH4M@)m@AN(
z__o0HJCq@riSKp`Wu`Zz505b6@BbQxYZ#$nB+sQ*%H_=TEHhP%qfr|8n(d%Cvg4>l
z9F3MNOvY&#uVIRYsTw9|n5bcrhRGUs#L?ezln_r9<LPx>WpF(8TdnYYO4Bq<*DyoF
zObx5zX=^;4ji-`L((cF8i#w_L6DaqUlsOvaYFMseg@$<==4)7@;Y|$-c!p?Lq+u}+
zQv#h)l+r26&;;u8NSU8NYZB-{0==c-Z4FB`EYol*fzl;X{zPh-NK+H3`KO9Ek={!r
zRfDF%uff!yYcRNJ8hjd#Cb~WFAd&JWxum{e-y{lX2x<svu-LPRpCl3g0mpy6W!jZ^
zI*IrSc9<8MhJ6}7*RYbCrr{$ETQscJutvjr4ex1KtKl7<*c#qt(o)e&yI)Q+CR4Fw
zx44$cv@n_8=b_iIS;L3yDw%%a*GuxAnL-;iY?3}NokASgp1(76NTDOO(nh4v#~QY3
z*r{QchHV<QYxsnRK*Pruls6uwE;ymgOQA2aE2~oIPzqg4p-(mJ*6^8zJsRS(P~kD|
z=D_!l70N<gvd~`cy>!Z>TN(Ht$^9C>&~RMC2@MA{e5v6Z4M#K_)bN#tuQeRj-22cD
z@qnK5OwB^qrn#GcBnutNLNBsV?yU5!hVOXK*YKl;%30}q?uxARb5<Ii)osPqtn`zH
zjM?ZIufB$!qk^p0%;u(^)bO*0bG!_BG&P*oa7M#f-r_!0+GnHb*(i{Wwq>KS50#VI
zXw#R<1r5LO`qFTT$D&=@oorMpI~{qXw98Ion=6-jer6{#JN?Q-pPlw(rz;w+@=hY3
zQ-5ggQRL6FQ>`3yO}hHJ;Gcpw1pgAeso|E86WNLR-`qLb-P&@v!=D1Y^=Y`T;em!!
z9g2>J8Xj>Qb!5`<Si=(yuQa^Y@KnPy4KFqPqoLGx<vGvu9JC<^75ORgg@$25j^v;R
zIY`M#<#SRx9qDys&;cEtbJBo)%A}kW%t`xl($6{RaZbvTi!$qo(~(6-Rvqy=5_BZ%
zNYRm~qd_j>8M`nSCF$-M4bA1&d2=rMDHq+$MZ2mg*>q&rkwZsL9c6ZVO5RP)no6e*
zDYfn@wNfdUj`pdvEY;1Gro*G7xQ-G!NJnlR1#}eDkw-^f9r<+R*YQp&@z?$@Q|VDE
zWl^YdUZs{oZzxnqM`0aBbQIO`&-=;@h2B@(F}l%8Ij>ML9S_)yKWfvcq>fTL%Im10
zqcm4ZM_C=^bo5H2IcXG3qjX!9J!y0!jo_gQ9;&FLl8(wcs^}Qtp|?D=!9#~Vbkjqb
zh^i3{B&x2XhK`jwR_Umz<NW^gjdV2DQA>C4YN)Ma1yLQrx`Oot>kD#H104;8pY$Yi
zw26+UI=&<7th<+Vn(5d?)K++N9W8{k6l|rVwGjT(wvCVyliV!a(snW&?FBmsb`<O+
z_^eyHE;_pE=%%B)j_EpP=-{UndT<+c4Ajw+JA|9#i|Z}eSFn%Z+NAXTgm7wqA%TNw
zgLDkmF<!?6_OD}zj*&V>=@=>o!vzoJO*c$PT8|XYJA!TAa0!ReI>t)U7{Q<BCvEJL
zG)_3DwnNH9;Zp=B>6k2JM8@=-Ixl1TsS=$g$O@g0o2g@#j<<Cz6>+wX`8pN|pQB@L
z%yOQPOT*o2EYz_?qKgC<3;s#&N9vn8Zg<SW<Sm}|xv6Y!TBc*U4!;hQ2Tm*vK~;w)
zgzJBxYI>cgcW&1M2d@sFBo*3~a$s;uKu1tVSd@^CbiI=t9hL-}-TG2knUtFtIdGIc
zM8vpgjr6N^tkJPo$37h&9Z&V;rnNkU$|S#|W1Wt7b*z_B-lgL`A=?Gt*Resz2Rb(D
z*eVLolTA84WG6i0Pt$D{@$0SbOCPof|5(TI-2d)EOt!^xMN>bK=nlc1g6xFzeyU@)
zL_ZVUBN+YK&%X<5?QuV${?1Kb=s2Kbq8F3A_)^C~9bN-I17GPlq$8JsR0Cg2-fww1
z2sy0d8y!c4r{p0H?CN_Rd{4^>9Vd1CAe^H=>i9|cQNd#|{kV?Ie=2P7vyM|b?(@!|
z<Ft-5I<D&YL&sSi=X6}sahVsgjte?|(Q%QT*GjCDhZZPGr#w{pu`)UjIeCabD}UAT
zn~vXgT+y-luEO_qU(7?uOQrKt`@HmaUfPwHuIae0<Cc!Ub^NL0hK|2<+~h2I>9g+@
z{-AlDmnuI>z0aTB3zQ=Dl-oM)=(wxn9{&i+N1gN0jC^G0qoeugRz514pStF!hdLhV
z$Y>ywfyX+Y=y=InpN^+Gp6Ph5;{}g(PUUd9v<3NTlwTRNIdN-#`k++W)%^5I$7`N)
z2GSe2e^$BMQb{U66$?<;0+hkP#sYMy0L?ByFx)MjNoE6a2C^8)Y9QV~f`McMDUw=f
ztCFoCB^oGKkdj347o<Z4=|(}KLe!)XWiyc7Kn?>r4U8{Db|LbWRd%K+2MQ5?i#St=
z_Wq(M2GR@+F)-AC#{e1FQi^&T$Za5xftm(t8OUoOpMlZ_${5IRpn!p*28tOdXrPdR
z!Ul>Mcvgr?7p9?wNh?e{3)4@9DWM3}EJDQ%lrT`zKq;wVmm;(`z4BqQ@@?C+yFVmO
zDMHJNP+4w*fyxG|7$|R`f`N(#DjC>bg#MVLoGn6$MX730>Q|H&6s0h81Jw*vH&DaC
zH$|yc4&~cs%FtGcH;U5Auu`y?J2Pt=sAHg|fmR0U8mMQWv4JKA>KkZaprL_A2HF)P
z^DSj@G1^{?e)&TAvl!(sPL+#OQv=NmG&j(K>s*{d#pzISD!M`Wqd29OpbjNyaS3W|
zppAi!209sN%dQNxH_(BzEL7H)pzhU`esh(tO3;H6lv0wam88xFx)|tgpof932Ktqx
zM;|Ibm!xh6rj#VLBr)DBNqI_9Pj*s@dKs8eia6+{sE>iZGA{k34+jbMH!#4!K;b-O
zf0g=ouNW-K8wN6#Cf0`;7%s{J10xKK<l+oWH83h_#@G1`j21pdaBNJ^I344KuYbog
z!N5cVlMGCbrA7%SO*6pA(OCwj$5Lk)m?@m~sO4+}a}3NC<9UMfxrWo-NghQe3k@tX
zu-L#718+)pP4F$j<p$msvedvbo-n1UeQEcKA``|H22@FnMs?waAg6MY-+*agO*eG%
zB48kB;DLdM20{ib1E&m}HeefY4D2%Sse!P8h=C7yNg7ybV3mP&2HrKWnw=O}Yv3K8
zPNivnX<ApBE|jLEGE}4twJt*~la=)b-ZSvNfeq}Wh2oD>`j;WS4DBpKJ&!8q%22Md
zw8_9`16vJjGw`8-k9d3yd~Bd<S&Gl3d{#zzqb$8$mbRCrTV*L-IofXE69YR8?BtbL
zj@q<L>|Tzl)k%92R?2;^j4nrO%h7HFpYe(?aKykK1A7e|Fz}^;eFi=^u;0KJ94$u|
z%Mm}^l%+gPE>DY=DCcu4T6sFin?LXQ1`ZqiXsxonJRRaSeqA|K-tFGg<p~w&@61a5
z{mQonzB6#tz%c{g8~B0k4gAE*wgScFRytRp(G|$5K)Wl@u?qBO1v+lvgn^R=e&%Y_
zRbD+(JQeA2<+LglsZT{xE7JEB=}c^-ZWuUg;GBW;1}=zr)xa+XE*iLO;8z2eMC9{c
z_)ga-a`k=_@po?cwiLbzmX#~Q`6AvQl5|b*x`96pG=1{#Jr7L&GH_FpZVBEN{97>U
z^NxYL2JVRxy%*v>&*YC>507~B=e@;?dR{y+@RYY%FLHVD%)oQrw7rP;y3_lG<b7@6
zrI3FFUm4)QL(B&0yh!gw1~1@6X34^OMlUikXM?hIv!X0*G3HzeVv{v$xi@p77fD_u
zdy&FUDp8ggVb2^`Va(=5_LzMRFPe*(>V@J(1urUkk>-WRi(+0B_kz60?L`4E3QCqd
zg82mVdND!rvd{dYaI}yYg}o@^MNu!<fRh+Gxb^2#jD(l)qNEpPy(lMQDKAQUQN|0`
zNm=^0H)1}^$1+AeRPv&-7we?lDqd8T)LN3Uniti*s1b9*uDD$GR#R-2RifHn)Dh0E
z+z#KHIdy+>eJ>h#(U60j(cQ?4#$L4XqAd?!hqxwQwD2O&#1uaIyQ$Yb2D};fm=NZ^
zu8Dv4O={@{V=FIO3t_h$<=3*e^I}lP_&!DB+k4T$i;iCGk!p`An%KN(;*XW6vs9*w
z7hS#R=0$h5_hPUYJw)#-*i*2VU~ez_c=4+^VdQ8((fbPy5FF?Q2TpAej(<ax;a-gJ
zVu<jeg2MzkJBN|Nxz1y}7$tnP=u!V;y%;Cn#tTjmgJ=>flf9V26V-=|K1}suniucz
z(D3}PMA4^drh75Ni<w@`@?y3ZE4)y>nB&D<FBW^TgnKM+mU)7U#PfWfIhARF;6g!u
zUbRMLVzW2BcuOpo3%(t#YGqm~WSL+$&Ao!!KP83jIcQ#(yuEv&dtrF-!8CZi@QEd-
zvhl}d)BHT!@40_)2fYZfnUrODVSBOCi&bLmcoFd;EP*X|w|4J3<|yN8K_+X3tPx}b
zPG$bC7wbjIwm$AXFW%>G*PGJ5^I`*6#*0tA*zLteFE)Acv6yZ4VsmBsNbo~1m~0Ww
zA{W7dm91jA&5P|`eB#9pG1%qBP9aenM$Qs-#r!ibzVhM_Pd_jAda=)o&%HRnl@V9_
zz4#)Qou4LSdv<kDlDIhLj4XaF$mAO@4h#RE|05FpR*>z#_u>aHe)QreUJhQ|@ZzW!
z$9R=hNdC=><6fK)%L|NI<4$^U+KV$@{OrXk(Z8!q`3J`TUYX8H^qd#xy?7q$fjm{*
zu9#Ri{ueJUdT~i?F7xE{B474@|6{6Ig&K`cx-dNXcQ3AZan*~s3(42KxO*?hAKc*s
z6F$$HWmpxu&i#-z%PevDmlrpAujc8|HQ|;Qe|z!Bi^pEv_Tr8g_q@2z*`+Klz30-T
zEESSJu0l<(CG(5mA9(SQySEBmtU_F|v5n)OaI2TQzulhl9$u9`o$T@(%`!aq;)NG4
zy{J}|UVD+whktk@@}hrLnpKsG^-a*KQhFaU_`nazj$WR`UBMZ5sBupVC$0^oX7VAc
z57~Uk>_eOn@jiE4l6*+^Awf7t6FJ%`{^P3jZGI2mF`nW>7N2|T_|H{|1C#7N<nXyi
zBFrunpVNoC2QugPp@5KFf~h_zKBW1;x4n6M$m2s^ANZq_e8?>ZqmE_fTpX@1OU~!R
zlfSY?^@2VW@?p;F%;kJ2>_ZVBiuzE@hwpd0mml?`{P<hCMMn~TJeQVyD@$=7O88Kc
zYw}G(DId!CP}Yai5@ll+Z&xK&7&%(rhYCJy-Jej=he|$F_F>C`g!pQ-;c!9~AFBCK
zou2~sfukInEl<Z-gDo%o|7dOLpAkNc^r4Oqb$zHON;4mt`%s_Tdo{IzU_&3qZ%lr1
zAfb^DjeTI!M36~SA%Fjv(87myN$I+AZGC9zLn|Lz$NImEkTyQFjVbMfwD+Ndkd86E
zlMkJR&lr}K+t^h&yJg<Phn_wR@L`}2y?p2`#qsaiK4Qb9pAUVxbAHWCqth{R=<fq_
z&O0dT--jVS3>KUJnGN+}m=D8a8KY%Iag^j5<HuM(M*A?vhp|44<C*41oFC(TnBc=l
z-0eP0^kI?@>wS2SXQ>aHE~W8VuU;Rf@JE0T)1syGQ(8Vu_hE()Gew!}L%wS6P|osU
zcFbl@Oq}P#d>)r-w7`c&J}mZOp+wo9#U)(glQ<4<iWudrbL!hZEcIcT_*w3QDufGK
zAz7GcKIkHHSw^fl)`wRkpAUW?U*16=R-e^A1ciruuzaw6aC}(l<BM-N(L5<ENfF^(
zG>89*(Ii&Z_^{T8cYIhU#_tOL*Q`s0l=np}{$1JzAKtD;9|$tp$ek&Cv*3q<ykI%$
zW1jq6t`8@D*yh8xrQHvpT|R6VSDy&(5Zoyk{c8HD54(N%%!fTb9QNTGANKm(hYC4-
z>2nWy+ULXPKJ545i<o|ZhqxTpmvhacc+iKhB=u0t=4&Avd9bb|9}#|3@LM0g<Hhd7
z4>8N1eE5-zu14!eq%g95jy_o!kBPx?o<&m7&r;`AW7BT?aLR|%KAiF4tcW)R&k0@<
zJTG`b@E0F03VHCgI~<pN_|=EsM7iR_RUyB}Z2s`!nh$^a5H-FY(>de+l)og)O+nUg
z3HjRxHs<IZ-u-;IC;TOE-9FqG{=kQaK0NZ_u@BEhc_R2s@F{PeKHQM$8YM4yWsS<f
zoPE9$WRk&;*TU2JT|K>E)P|$*Bcmvp{QtVD@FGLJ9|?Z6_oIU!iGC#c(bSJ-ekA*m
z;s+m^I;=Wn@niAU)KotdKe7tXCdguTAvyfWDI}L*>iJYoO7p|xM-4w}`ayo=_M^BT
zCH%<aM_xbj`%%D;Eg3!eq)K;MxjdmdF&6Zrup|}ogLSTXu8b(+M^QicjmaD>CRzAL
z8DC&$`;vZC@S~z1rTi!@NoCkWbt)&ktRP3r#|V3<B)p0rRsE>!$Ej9sLF}rUl>2)n
zcWG1?n^iYmUQ2irZbHcnwf(3g(Yk&#5K>RDzF?K=v}9aTL*b45Xe{Jlk0cK4r(Jb-
z!)flv_7d^)7AHr)-?k8&mV&JWTMM@Fqpc7(qY!^}>gY!&Kl=L7&kugNd1pU*`_adb
z_p4JEKe`I(CfHq&^&WoojPYK6=qV{IepQ`rau;>+ls)LlI@w*$g=$cLKL+?Q(2u2u
z6S|yB8|24eKdxR#c*Bq3eyq6cUg;eoH5n>6Ot4N3at}xHW28hg9ZneK2jgf#&N5E)
zU;X%vKLz}lAkm3_tn=etKPLGx*^eoHO!Z@V4O&x!rui}5k7XPc%Nc%bdz!SwkC}eV
z@?*A$>~^6abNrYq(RqF>5Hq%%FA5V5Y_=$7zgP&TzA2V(`SCWlG?p68#n`?Et?<M2
zV_)%j)ent(jF&@;6u(&Vf&7LaUY=~V+-m|p?wJ}iVpvM6=I+c4_!0CY<cH<Q8nL$p
zR|-0Qg#CyJXX7Uw+$_zzxCgwi5^=R3(I_ixMR_NtulM6UKTi8`hKEwbPy9GqgEsi_
zfkZd@v02C_LH2NRpu2WH^y4F*<as<>{P<Xsw(|57vQ2P79{28!ot<3c9e(WeV;48-
zV8R!E9Pr~);kyMt^J9;Yy?%Tygw6KxzEP8y?2jqY=$C#R@#9+&5Bl+yABX(-+K<Dc
ze8b%<<iE&HzT-xT{=FYR2>DU)r~hkzOvK}UobcnMA3sa<6t8-z37=`nt~hY?Y^*o>
z*Q9gYI=QF%ydM{0{1+h?{kRlUF8fivCb8x3eq7;cX=0j*tA6~!8<&ZECa&?u$gMV!
zWa3ZpZ`7pcLT>o+mmfF%xD_k+5${@l+?MDa!TW-D{kSJ&R!w(Lcp#j~!~ckn{dnTX
z)0icvK9f|odEv)PKmLj3%4Fh|@YjOrOxgcUWDo+ujDp|QBo6F~LuOIp1mgu0Ot3Lq
zCY#vxabl{8J=;=y7fMVqk;Md)tb*ADvkT@hkyA+Xr75{$ge?`5&qPh;kY>UooMK9D
zA$d&HC>+lQ`ArlsQP4yo6GyhDX4#(la$o9$MM_~4{0K&~&r(a6xLK2m2o@DACRki5
z$w?(mlrmA;L>Uw9Otd#q)<iiI4NWvMQQkxa6ID%AGf~k*B|iDbL=~>;p&Xemq~)qb
zx4uazUyC-(O7wr0(5x0!=ZcxAX`+^ieHRjXf0fX$7EP~3wWW*dny6=@js(4y+mrQ8
zG%)e~4tF_k5+zC+n`mO9g^89Xnwn^4qPdBVlQC*{!jHA+w_23GHWjQ*Gee23Otd!9
z#zb2a)oZ&xEB~0#qc*kldN#+$ji^n(olEP$c})!FI+*BWqBGauL?07fOmsET-9!%)
zThbEe*QRbJ%-ZzLGPgc6OT=fs7QcF5LQfODOl+=A99ZvbqMwQWCI*<;Uz>iaO}A@P
zavdsKhuD}G&Oj4`q`jvvyT81Km>6nejES)(hM5>{Vw8!|CSG1ht5JtWnBZJ`hQyKF
z%sRxxF6Zf8hu%1lFuV?pGcn%8WD`@wY=Vi2CT7&3U&p)GOsqOINeW`Jxeo2GLl^2$
zQeB$PHYR49m}6q57|aqZSeF{qrFHY&iwtu`dDFyOLgoq1H?cqn8!R-jD8?6?SQ6vB
zpTBKlNL{xp3?WMemkBNxTp_3mYJ$2Te`<S8_)Pe@pH1vAvC~ArM9{>0Cf+v@GGTE`
zO{_6tn{Z5oO+?r@l(?iWy*Qo_kaFLvODj!$Q<qlpmLdw{S`+V>c-O>w6YChgo~-q#
zLOoi#Amw>oDzVzrpdLL6CibjH8%%s);$stAO>8u=$;3xI0eFacXzJ1YdSun3UdIwX
z<Z(Zi(BsR5J@wqio)L^&mTsGg?Iu1k@mD?KIrh9BnHLf^R`-1Ub;2$apYnV*@q>xo
zCO$K9z{Hol6`0t|E5gL*yrS#Vwi=#ykGh|*D?*87>r><Uw4Y0lkNZN9^@Aq9GI5yO
zXyOo0(fTy8KJ7Y{ur^2B*D?@H*z5>*W_{XRpT0Hmo#+ed69-QE(Zo+C&Y3uG;;4yZ
zCQg|+ZQ{6zfdTh(^Q4J`_34D<VxoMN@Usa<p5$jlY#mIzU7t?Yr?Vy)Im-nTznHje
z;#U*d8&Jsx#GAlHUVRPdk|5jkYd~9riQ^j3xUX_t;mx1NbRDd9_=87^yCRH(VO;0U
zpDPx^g%ECVH}d`yM42FNnz&`c2*4Y_-zIMJ3JsuZ0C!B><<%WPjR5XR-P$&zN&(zA
z@xa7G6OVW!4Iozlk4-$`eK>%O0X#MF%)~#uy_<N>J5P)BFL=?Jc)J1ZZ$Rf8(5nVi
zsbbn2P19bRNEbl*05Sw%&sEB=Qtm8N62Dc7HKZC1sdGab*^n{?kU4;)0FncU3m`s#
zga8r)80u5jH>B?x(mxF;%}}Z}qRx$IQ6owTAWHyQ1IQLYq!I0FM7JAJ*2dJhF%4-<
z*#nsLo)TzGIRaqheoGBN37|*-MFU6+z!N~e0P+Vw0pt!KPXKuX*w>iuG^T_mRILeh
zYeMHLC^IXh4KAk?2%um9g#swdZky1WCbX{!eQSCCx~~+jp`5?0{L+Mq1yDSIG69qg
zphN&A11J?h=>Re{r94fkVN*&fs|@>D8Q+u+c1nA^Rw)-i`2Z>eP%(g|O=(9{_jaQb
zO^MGioVH4N*pw<ZqsjqP37~4g{lw%@Er6-b+_rFFQj^<0&i&roB7j-})DECd%(77c
zb%oaxtS{I=u%Y0_n4iWHZ6erIu$f?U!4qQEQg|!D)`D#UXd6Jg0NP8mLjWCx@M-y-
zgz%f?I|tCChx`5Qu{h}#K=%Nq1u#8;FN>x12%ry-NOQM2J-HtSW$6__Z^?V_rh7(K
z-vIgraHUgx{{Th=Fp^u;oCXAVabXY_-JAyV+z|UW1cwN+&UuFkAKjdW2f)b6C?-61
zqK^q+YyiWH$B%3mH%=5bm>9r#;S&VcNiNozRBD`aasX2TU@}!OL$wUdk2j|oVmx1P
zrr<2W*@ANdm@9<+%oFnO*IMBV16UNm;sBNe@MZwZ0$48kTLHW+<cZXQacKZ7vXd2p
znxHBe)%E{yUjY69z6;>{08F0z0c;ImTL8fTLIDhGLEZjNvv?T>@Q&ol*Mgh?R`POa
zK^($DB0N}UGDnqFqO1;JP0VJkka8_(T>$R}uwMLZ6nrm$`Yq^v;Tr@$5M+_-zbSyt
z0emRR7Qv7HWApKUc)>pI_Pbq_PXgExz|H`61@L(Q`$haTfX{^N7K~2RJ;FKTUS7+A
ze;*KtJ`3=LBpnXm08c;R2Lm`H<g5Q!el5!Xo+<byfFq)?&u;_ZM-1584*~qhdu9N4
z1NeytE}i?Q%xNB@7IZX#V?vG#o)BdHq>!HlPX(|}dgDw0X9GAF!1(~K2JlA!7o@CT
zV<r9~<YEAqgj^OpE_u1c-vanulq>&9y(auG!Rvy53f>4HnvwCQDD2@De+mR}I{;4Q
z5cPkLxBUQ8g2)oYg8&`|@H~JQ0X*W(KY%B^?MwE1Er<g<VUdx;Gu}>Hy2{G{{^1Qg
z=<2Tmc+DRc!qWwjJ_ttE>xw0l3=&1mAd`^Hf^k8x8HZ?=gdh?{PZH$3$wH#3S%VnY
zlJbj^Er{$v<Om{X5V?ZL%VJAPl_UxxcMwVtX(F-{4jxHj8`h&dkJxZhK2ca_ULc5q
zQc5AgVnGxZQbe$*pxu(V8XSrTQ6dPAmK42|AnUA@4We8SsUavKln<gp5MKsyFo=pl
zR0?7p^DXHr2T>)6w}N;(h^j$U3u2+vp?VNCf*8y^h?+sv3ZiWg?SiNsM4ccS2hof>
zEr@zSG!gsyK{Q~8Evb=28wL>#tZ<9io&%F;v}r80c@QmvXc<JSAX*2}Mm(_P|FTC3
zXKWuthah?d(L0EaL39eDTM*rY=o~~B@!VC4VE_Lsi1TvB9)dk3m6fRTK0)*iVt^FX
zFNpqP6HQ_dY{ob+h(Z6?=a3+V1~D;+NkI$?Vz}fQBRC?6Q9`)Hk>Zxg=$KpPV|iR8
zI$m&sV6=velY^KN#H=7@2Qf8>X+g{s1I{=-h#CJej#e+4kyGbL()=Li1~E@Kw;~!A
z#5{0xk?_SqED7@4<xn9pesd@HcLyVfr7_F3K`aYmxkOh4VFcj~LXD+rLFmHU^mKn!
zaqtBZ2qGASUvyJ2dNxrg2rGzi5D^jWAe{fCMr~FGu_}nwL9F4S7oYz{_8*PD!vk?O
z!|1DSh2ITgeGu=7tM`NWIEbynHw5uP5F3No6vSpxwg{g4JdVSMK`?$K$WE9rZWG)Y
z#I7J%*&f6vu`D}c_MeKfH;8>f><;2HiS7|Bn8S6##eE*c{vZyB_=RB9KmT{YsnO!T
z62d%J2#13BTB3)8I3L7?AifFWND$u!apQ})AA|TwQoj@YUhoG&PCY8*WDq|GaV&`A
zl7-!JI3Ws?Q)0v9Oc1AqNB_k*8`ID6cCpxfmj9O^E(UR*w_i!R6vS;ImxK5<h~I+v
zJ%~TKh#;;6aW%-N7UMb>nuN2msQ(D!Zj7)u4y^nY1S9iX{3{?<V$|&K;J+E~h<;b_
zUd)D#9|rL#h`12qL#~I%K|BlMxfnbVd@9HlcoD=)-r++?AHqLDyb}Gjlo<UK<~ndC
zx!epPAcRaIWDX%?=--Ry(Ime8I9k<cJrhDm3?XX>*+NJP{ag7IsY!Aynnj|Vi`&9A
z%r4QKA><Ik3YW#m1_`Ywdn-x{!4txw5Eh3(A><CBNeE3t$P>bgC+??tkr48RkS~P%
zAruIquw*YNSV*v9E2`g$#{J;_#*8XOLnszP@eoRcu(D))^$<#iP%4Dpr!!Ovp>zlp
z6BG{RLntE#Wd+L#vd&pJRES0;SJb|82vtO^8bUR3!dW<pu|^0rL#P$=TrY&$Vp%7I
zx-pxmW&IEugwRk@8->tV2z%hVMayN<EQGeLs27VNG!LOg2rW5uO2{=Xxl0JGLTDXA
z8@36dJ$K7M_X@KyFutAiMoRGCd(1k7&@qHgA#@I5Mk}haCSmhD_lumjQp(${sH+%v
z3!%FZ)_a7|Q#hw`v`+|qLzvBt>X6tkg#IB+j#&-}VOR*mLl_vspb!Sf^dV6qxQd;G
zFqFAOM}#m^$auj~f@4A$E##+oceflXe4L=0oljN?VWLE%P9`xAfeogFFje$vA<T>#
z@TY)~8G>vxOGwo79BBnNWUi2Tg7ZUI5Yrb58Q(W)NeFL-5C|d2MdyxxD+D!!BmDls
zR`fQLR<u-bnc#B46@t7{G$~ORGz7hZK0&{r8FJrZ#!b5`4Gf7mVP2XQf*pbrLO6uo
zA$%4>geOJ_?}hNb*sKcSoe<WAusVb_AsBt}dkc5BUn`u+pHJc@-^}r@7_;U25SGas
zXEucJK?om(uqA|zA#4hPEkBH<a>mV)rE<9p?31%_>c=5`62guUwuZ1RgzZvvG>MB~
zgPr2!Q^~llfoE5YL`&Qg!d~u^5WW?CUkG1>a6tIyA?z0t&GKak2YI&-;cF42E&3`1
zPGz@;dCJ|)!Qq<_xO!YwMvi_L!uKJZ4&h7)KZNjO2q!`~8NyE?91Y<(_ptN~BO4zR
zC+v-*oc-sR&r?$3|J+8MGoBUwoRr8}ehJ|sU$=4amxD_oT;_FcqmGSVL-;L(>K1BP
z_&tOxyx~|VZsBSOfAF$x?atn7AzTmPC2zmnUE=m;2)Edq@V^8Lisj$JIm_b^ZijFu
zgu5Z!3*n*Y_XQsaetOyM2R@;T@sTKR^>R6fCm}oy;hBif1z&`4?U#SQhj4MPLU<iQ
zf`vrO-GS3tfQ5_}(n~ahU>&Isr)IJcCkpe-7NV)~F@>W^7LqM^L`kub#X=4XIW1%r
zC7WP07kkM5pJ*=OiiK1Q(c+?JX|YnsLT(FrEabIN$U<QY`6Nqz3k6~}1ubykjM2R8
zr-;}T6)e9tIWj0YYEZ&LNedrJyGmIoZDD$Asw`$@1S?o5D}?J=&O&+NrkrHUN=1oQ
zvJeu5^HvcLRV`E#!U{h^RntN(3u7&evrt>I)U{BLdHa+)7Pj<C&!oPE1{S(o=wYE@
zti;wr8d+#;p^5OO7Fxton^|Zs{E*bYrG-`!jf%(q%FxC_TT$9s=whL(h4vQSU8Hod
z(9uFC3!NpEEe|bnKTJ7^v76Yi$f=Ah_7t;T7J3W$zBTo+(AUCXj#}tvVOjflzJqR{
zg-nf-`wI@>j-BSty+M*CM|*cty`MYoYMJCA7KU0F#=}<<BP@)xaCcMMaEY=_-Kz1U
zER43mgu}c>@nd3qMYZ_x7VfpCtroV4+X)sXT9{;EvV|!Y{1!|LQ!Py6Dp^?0LttTs
zg@qOtS(s^I7WdfG<arjH&(qJgFvr4N3)$LGnKsn24NYo8S{wSP4b8W(z`|E;=u8{B
z*M=Xoqs11MSa{n)#V^zNddr(UQfD&1#nE!{(bw@*YD>-9(o(KfTbkdNoNrQA)X1{J
zf@(ptpi6DNT$x?&_r{z@;|y*>6NQP-0te@GVvkOV0SiH~{E%mq1&as5!g>of8(3Iv
zVU2~bg@}cf7FJofF*UB$nYj1bQlpj0WqT!^Y)gkKCqHQGZZB&syklXVcuQ$V!O6+m
zdnx<sx}W~<S$N;VMhlxPY!HJF1k1Fe1T*F3WA|&oW>J_-Zs&Sy%$POqBNns9Z4vxf
z@MyW5+bw)z;gN;M7Is+JY2l=WpDpaN@TrBbEgZJ6+rnoSzOZn>!X68IE$p-KIXAo=
z>4%lQk5l)yqZ{ogTYK7Xf!}1orx4d_PhVO%$fIE4kcIm7l#cD)nv85uKeea04pgWE
z)#*UrSU6(gM+-k$_}0RA7QVOe1JAt&shL(O{HQ5E2g;{zcI`lyjwq8l&{3Y!T!e)a
z+`}Dc6MN`Dd;~Ec1#qL5`(V`0y~-&Ir!D+p;hKdr7S39@XyKBDa~959xM1NI3okoR
z?v7NYBlRh*4DLv8b)^2Alsz5kvV~tQ{KnfpZ%vn!ofVaf9VvY$D&C1&bfPO3ADXRP
z<vHJpmUg0#JJEFue_FW1OMpky!e16{TDWC_AEUU|iE{m+r0+~+JJa7X9Q>+_VV&tV
zZzJu~nB22)-@*e64=t?dOglPL(Hsgtj<kG@a=kP0gJa(pNqu7BDesmx^4fT2;kktb
z8;Leva1(fkw~^7tKNeo`K5rv~jn_QWzEbARRqA%3Y+Wdw4My(vVO`v3!T41*JGxLN
z8<}my*@(Bnj|Ttoehz*-_H-A@(UmgKcTdhK)s>QLB-_YtBZrL?8(C~*Wmh&@b)|(}
ziJ!pT)|Iy0SAOeC{CHIEZj{qTE*oh!JT|t?R8nm$%&JuAMv9H4XWdPSaYi@V*o`i9
zBeIcO0_(54Q9c{_ZIrc9&PD+n1#J|wQQSr$8-;BYu~F0pb*E0<X>50Tv%C9n%17Pl
z*Y3o}1eLH+(ncv8rMd0hX>i4~3O%S_51QVC%Glti(!T3K8+*7tP~Jub8&z#ovr*AT
zB^#A(RIzcZ2c`9-hCOL^Px>v7Th&!PiOwt4ZPc()(?%^D!)GgddeW7i^r|QE8PsfZ
z*irbwuDUkr*;wOXt%LeD8rbN~JQo_;Xk_C%8{gY#Y@>;dx49o|G_}#p#t<7rZ8W#h
z!bW!+J#4h(j<wOzMkgDsZM3n`-bM!-%Uh(iwQ-;qUF}8fxLbNrzh1PY7cFm<nAV%>
z^`;FamCiQ0*yw7bn~l-EDcqZm^`>XNN$Er7`cUUSG@=jnw9(5(e;#hGp^ZK^`r7Dc
z!`p|>|E^TMrEKX#d-~ANeduu?x331;7-VCxjW>Ao`_h-&l!YHC75Y-|zI546H2c!N
zzBG)x#m00SGi;2oG1A6(8xw4d;%e9!V`Hq1Kl;+n-`y@v?nmQn@V`|2{L$!sZV?sx
z(L@`QY)rK=&BnZbG?^z`yTrqiI)#hoQ!)DyKSRXl@s{XM{rl5Q8?$W8x3R#+Y#VcI
z%;k(s`qKyfU7ug}rzU%pE60=@{fXZ!v(UyO8*kcpi;M10{4nEU?)k#B#0CepuP}hx
z4xs4++`R7%pk>_QHa6J!z{Uz2stw0R*oJ09w_(}{*f6-$cwX7?+u(zhz8*mL22hcK
z)N>%s8A$v*>H2{bv=Opl*|2S#`BM2|AUzsLSq4$@K~#Sb^&CVq2T{bvN*nLkSZ8CE
zjnzDhY^>!H2hs6C#D}O~ALKql^<og^9Zby!)4Mj-+j!5$``o>Q$v2p`52n+D>F!|4
z@dnj;!~Gv{qm4~A_So2KW3!D9ZS1hI)5b?Ow%FKi;}f22Z_u1K=wmMK4cf{})y9c8
zC}{|l8$$ht(Ci_!X$bu~gkBAyT{b?ovD?OHyi|u$-JvwEmeOme`>)xXL+O5tv>iif
zpN-FL9JKM3jr}&h;JIq!OCI;3#7|--4s$!U!7$3QNf|MWc+)#%<7*p7Y<z3uu#LsT
zC_Ie58AhwKDBo}=WKkMyPAzmeF-M&8co^jxPCwZA(MC=Oxg7jt<EV`XHXhnIX5+Yx
zt6UJ*-^NKBXKkFb@w1InHcoT5bK9>grH50?;WT_WEgDXnhr9d6cf;wtjSDt@w{gYB
zqv7<6jY~EzbH6o6zQ{{*p)#smVx<xEtBv1mY#c#@N6@kn#Dv>&aRl8ML1SAey*s2`
zvvHkw4;z2;Ot5jo#$PsWvh!04jU->~w0a|H=t%cWgV`h9=X`J5xMSn4je9cp-XBRT
zOy$%_y3eaJS;<i+t>sB2-6*$|M>ZbYfP;(<p4fQGJ3LQd-v4bp=bhiiOYRCjdFH04
z^(eZUPvKXLZNHy7dK5pYm-yO7ItS?;WN@%_6!CHWe7f~lqbT@K>ito4_jM}2gDjJS
z%np(qBs++65bq$tK_W*-)9GeuEl1Pf(Zq*xFC0z$_vqHql;R+ZgRBm+Iqu0qKa8dq
zqe&S<o0}=w`FGP8$~=}@jiDS4CXb;H#!#vQ#X)TcbsVHQ@Hi;rpsWLOklR5a2ZbHv
zagf(RK6c1_ENw26)_5!p97_cp+_|iLFqY1arG;aupyRGnCPf?+bx^`VNe73!r4{4o
zIO2D%73U_5b32W(|2PVbqf!n|jiapNsWcZlo+gZ^at_KnsOq4ag9;8RI;iBJvV+ig
z8kJEwG~RudzlwwF<0-=gDn5a>FLAf5>JDl+sOg}VgN75R-vnAXftr<2R!<<FDkmmT
z-K|Pp2lX7ZcF>0Re+La5G<DF7?Hx37(AYr}2mef<8WU;qM0(L9ZT&<#G?D(ENXjH?
z?x2N(mJV7u2(MQ7)Qjqq=#5FlFGr|ySqV*|os+1ogLV!&JLuw|y@L)8Iy&eieR6XW
z<(NzjC)2RWv}iJ|n@oErQ&$Jw9CUZk!@<SL^m?-UkT}0{ttWT>6ym?v`9JYql6_--
zw~c*-_jS<EL4OAW9L#sHz`;NVgB*-=Fy6snwsA1R!AJ)~91L|Z%)xL6b*E6TDegQ`
zr_d);=<F0qno4D+(kKU`9gJ}>R-6x?N=v5FkV<I>rqbV2DRCMVoJJEIOmr~A!Au8}
zc-lCa;$SLw#Wb2Zji&#lgr?Cn2V17my=fFbosK_Ao$lboG<R>D<zTjhxen$zC^ntu
zIOsc_ywlw|&~!R|GM&y$r?)RD2_a>ngGCMu2VMt@9V~IM%)xR8Z#sC(!P~q*9AuwC
z<F~k7(O?Gko<TEb(1scG*$i6YKy{!w&>d7?t^6^AdhK)<TJlUPGn3lRq;WIJ=fLm4
z;o);&ItVxj@}%M~05j?2Ou{Vp+!%hbh2_B4Cau^k`YoJjJ7DDEA`VtMSmj`~^b&tA
zw46nM>{EERPxm@?;4GRoi{5dt&cPW6XC1uDPG-?Thu<TQ^$y;XT<<&BDP)6#4}@%V
z@Uerf4mL@2vx5(Xe8in8<lwt;n`XIv#kftBPXxCMvi{eNbUTFC@8RAXu*<=x4t6{E
zOvL>T_Bhzfqu<ZH9=k7=>vIPa&is3&f-S#@=?5HqDZKpSG|qC!!Pk!adaTpDiXA?8
zG>yYC2j4h2;^13ReiZ!9!S|Ap4So>ixfuT>{Akp2MOwz5scdjuq9+7T3jQp3%Hgv^
z-6HyQa&O)^$3@JdapT;3xzF>~I*Tqi_(jM?!K;Fo99(wrE02^!+3bpg-(#HLSj|c_
z`iF?u1g{JJDab#vZaTQdt2>NVVf^jjHg7v&R0`vcgS!rjgi$n%#SfD2Imj8tg&m&z
z4jxE*AM)-UMuspRN%S#0bnw){Gl{--@Z7-*-c=;Z4S6XfirHoplUKY^&vu76UD(|`
z|7U|R62nLeBcte<!pJNnE{ymv5`=U1XkaItF<Hc{f*ef=Ba3iOjT&SNBfBU$1UGDU
ze|zQ%BUPeG82N>;m==adIE9g0NS-kA#!{<Eh4Y0GB?Uw;C|F3aupnn)SH%QNh0#%R
z6_;oU!IFZ;7w&ME7G5TdvO>xUmKUrb_-hT<TjemSgi$w)dSN^%=&2gU&31|P=ciQ@
zo9co!1Z##-OGxc7rp%@~!kKVjKPzWbeZD1ZHeH|156q%r7>&a2ROiqljK(qEB#frQ
zn+Y}-EK@K(YRS>oVYCUu7luEKwqdjjqiY!5!e}qWaY4oBPzT{11v?3L4x<YX;vBao
z9GG+uqemD6!x$7sPqFF41AW@PfY2+9-lFs>?XKCr!utvK7aSnSNlnDz;4p@UF^omg
zhs099S&=e4j1ghX6J=x=qqt|nm>S0Dn9YPR#t0uPI4+FwT+iL^Zzv8-CWbLd#K~cB
zDvOM)PZK^{aC#Usgv<<MmJl{$KT-QRF=cK{nIFc2FcyZfD2x?hsJzy~SQ5tDVJsEn
zH>Je4V)oH0EsObCF66&e)xt1hsk-Fl3V35?%*`+YVSE;|35H?Mq4&ZFg<&xd!;z#l
zVT6UO5{$&`R|*+4hgJ)TM%RY%P8jQAHtWN9H)h5qvJHp#!`KkU2VrasV|y5%gs~}R
z|8W?bg?|{vM?#toRJOzv_P}AQM7Ign?T#HnSl=DSPT{*^%BNwlA5Mzm9&YR$+AGRF
z!OsQv3w|MZK(OT-?w;^f7>9V~uR^m`_&SWkVH948A}jGt7)Qcr5kbocz76BMF!Dr@
zH-hiO_<?tu2(m`-V;EIC$ImVw|4$e{g>f{DV__T*<1b#SOy<yuFfN60IgFEG{2a!q
zFiwkpA&fJ;zUB~zbE2FTj4J0PiL-O~Mf8h;*RLi18s?8_T$d=P{x0Nd7*~XFMi&1F
z<Jy0s?D<cL-uRDri#Pu;9*c6DH-8}yq}-^JyQ17<MF<xit<OV=J`!ZhCqkZv@hptz
zVY~?Ar6_F7<wjjGXYwkH*I}fKxFeMym|ieL1c>k*P;nV08YeuHU}izKkC!BlGUt#O
zL6Y!f!Ib}-nk|By5!9XQZaCQ`DMtjU68)oCe69!>Qw5a>(uA<$iGX4}w-Da<@<ouJ
zT}3cuE)@`0<s#@fmkJ7J|AmAUj-W^cMTHlOphN^Eg%^)tQ}GNON<}dB^Yo=7C?m?M
zL+Kwbb-%-ujks?c366CCNG%^hg$OD}P)YLEj-YY`RfJcMpsIw#TFKQSU}Sq%7;8jO
zGlE(o=IH7wjBHRxQlru4r;_VMP+wZnK#-f$P)H-e#t}4$plJk?U&b|yKz|w6TsWIC
zXKWQgYaXVR$hZ=1B4``IiU`yQ_`RZcb9>rF&_03=+%plp6~WsPbc&#J1Y;u@7eSW@
zx<)WGf?*MKi=cZ1gCgh~L5~P}Mle8luLyceh5JR&hbu6b*nlg~fjI{z{UhM8OE@b7
z#emJ24~`lO4vFBM{qDNvFg$`$V!$>dA{Z&0buNN4ju!hdf~<^>U_t~lBbX)1#0aJd
znZ#Yey~HCZQLaNYd$dZ7(<7K6NzB>p><H#Wupokk5zLM0^M%Y4<m^$)MN$o}+Y+hR
z;#ibZ-;7x<6|!8A^<@!Uk{*b1jWb4YP*RNuyb-L6;N1v(5%?ppBXA_ij35-jj?3;J
z1OZWkg3soXB_x^@j)`j{h(xebvaE_=wdkBznMZ4cSDNRJ2uI(EfSoYsus(v1BiI_j
zdl9@J!3MG1B=~{gMnSf0JC8O;@F92jJo+etEuu4Wlmi=Vi(q>M`y%*Ul0M;akKj|`
zI|O$M`sdNkd9+*jXAv-GWlscqMTvT2Wxqt(?UxaJ5#tA9<(`!izlz{c1YbvRID%^t
zT#w+J2#!Q>mbW0@|0DP=f@2XJ=lwr|A0qfEf};_<m`8k3<;Mv41djsq-J0{^y>;eO
zr7P|aw-XVZjNs=8PVo|$PjAhqo%89+e0n{f$}XT{pDL$$SuLP5g6W#3osZx`1iwb`
zTLiyEaFNG4g3A#sUqGKOpzjw@(XTvL77$-id9{G@E~MWhxDvrt-mG}9SV%WkDf}k-
zAEB%!rSn4ivqj>&j1k<3;86sRBls(Vn-ScJ;BExBBKTXn;x;#AA-!Bk#THSEMegMe
zz7BIQg8LCXh~Qxa33b!PeWVOtL<!GR`A0psYw04|y@;Mf@HB#dB6!7fAcE)I8xg$Z
zDlMWWP2)X_sY)HC@nV{_n6@-cTeFy6N04qM(yv5@mH2Wo-D#J0ZZSPuOrs7e#g<U(
zC8Q)NnN}k6O7~2LJS#DA3B|4CDUp_QCE{0N`4UQ4iNuvi63)>qE0HWbMKH32Smcm(
zC9;W<T`-5>^rp$2w0jBVS_#I~l~9B*PZQ!1q?O1mgirYAB>opH?@Hub=`Ps(f&~N%
z3KkONq+3g<=t>k@iQ6l2=l^l_9Z*hG|M%IwvYUln`i6Z7ihxLw4i=CuNbjIjK~X>j
zrKuoAK|0bqNv0&3OeP7v_udh)BBBB|>?n$Y?SJPJ<N5yn=e%>zefNFd=Y3w8m&s%@
z!}$HUhkf+ppdVHJsOHBiKUVuu-H#gV5xeHcy;8T1A9ekx=|?Te)=p#Aba$NV`BC4G
z{(cPbqk$g{{b<ka*N^-BxL+(E_TvFR9`vKRA1(Z7<VRyan)=bqkB8`Ux?*Y~mMKo3
zscZ^cicKpqPT8mQ)_$~+qDTB_>qk4`Ec(wIc}G7w`O!zj&VF?9qo*IeB-_=GZhmx6
z$3WvA!c!i~_Q~$;$D@8cCV^38R7?yY#rukreu61|px6xaW4IrW`!UFm!G1j9#}GfB
zVo}-yt25Eh(^7Y+=*<4-`I)rk2qDk<@m$)54UH83{QoGUg^%%LET`#D_xs2=c6_>G
zTHwcve!S$z%YKaa<5fRi^J7A~bc!FZ_%TtklLRLV7Rt?gL8>nkoa)CkKW1}%`tiCS
z(|OK0UCs1kh8WWc8>)Lfn>b52$q&=j+%$hf$UGhqGu)8oOSX>ig?=pZV{zJYnIB7p
zFBMFAUM_rv;7UO{={-Y@pW&`OrZs-}{RsFG^h1-O*y4xohao)Shbe@XF+W0ng#Czc
zozGBF(JkRDrD6*wNo5^BsKnD|Nk7*5vCfb6er!tn+#ppp`jPUJ^1$kwMIqVh$2K0S
zY5QH`bB7;0MWH=ycKfl%kG*MSpV&}m+Ard|8LH$(&mlj~`0*z9jge&z`*FmNqnryd
zpyhF9CGrz#a#F}C!P9;|`Z70Va8{~(;Ky4+&I!IP_>Ld%`f+)Nde4vdMIop2teGyJ
z_v1r9F8J}06n*K(ML#|k{<$BY2%*^(KRy+HN$|2CC#$;G6NsOQlFCy5!jJ!yul%?w
zrC<B;jUV3%|4y)mwEn&Dw!*J*xA`qQFMy%}{N%^aQuNeJbzR6We*Egk4L^SK;~zgf
z0sJodpMp09ZwdY(*r<+smiw1*lD~y4o2fDaXw<!Mg?8Q|0b~Y%0B#GQPyjgr6b>LO
zfQ>WN$1~NSo29b@@CLve2wRpYUSpz{WW&VlLbKdKTe>XwO8vat0EnI<MT-ScJb;1#
zQ~(ubDfVLjhJq3Slnl5lp_E{0!F)lVAWy%`1pd9l`Mz1IYykHM@IU~!2T(46@?ujd
zfXV^fA^c83I;<e%t^g_u=_?`KExdXFHH1_VyhpIAU^PJ+-y1+p;SB<)6+rC(>Pfba
zVBNGCou~ZQ7bV3T3cpW~k<jOZ0aV(a*Hn~7!kKLxz(Z-?B;cOgQ*0(S%>`QswiIlY
z(wCz7QnU%+kpMzLgo9`sK)V1w2;h7G?Kw~Zj16F%7<UvL7(k~0ItS1tfUW_)KG>a_
zZUJ-;pr07@2%u*GeT4T4pmzX|(oC|`W~ogwZWm{%pCsKiTlJM968h;Mz<_i`)}_Mq
zcmT(q%pDZK-~gTwk^kX(GJqigJQcvx0gMdb`2dCnFf4#)19&cg;bQiTV2$25+CP(t
zuIhI9_b#;&QZ)2Z9-nRXLI9&BTXA-gQ4Dof5k8HF#$!Y*J167C0A3P)CV-a%c(+Z#
zssL68Fg}0@qQ4Tr8v)D@V4`Fv1u!{)DFM71z${Vd?X>`24`6x#Qv;aB*_o{t&sKH%
zWoxt5i~!$Vt7Znk#4L@OCC(0Dj#Qs3I8X5YIfY+enRD}O)`9>Qin3HHE(&0=WG_kG
zB>|L}<2p&<GAUXfzzQKN1+U&JN`o~4_$7NhfItAj0Ja9OjgbWK+ZWl<0Bj+807d|&
z@K68|Av6dF&~lC<vC;~&u>c&&Zs4&TKq7#3l6_7rlL4$1owb-~uwF_@nB5q_rT{hz
z-y)c@`46`Tus^Nu2w-ObyCl1t!x+H60QPVVNJB)XRF-%kfP-Rrh$~9SVO|0X;HdB;
zV!3>dA|bLl4$cV~nUjL21WyZoD`Wd+0B70#7RBBQ;9LN2OA%|mBZNBnyTacSd|!}e
z9|mwCfLDT;7{o^bTnwOC5XFOdt3%$$0esFSJu>eTG5%DLel7)YS@@N-@|lp<{j<La
z;L8BM3gBu0e+2Mn0AC02O#s)pr3dhB0N(}heE>fM_@+fwcdjD#ovWym{3u8=eXjaB
zfa?L=4B%D(zXb4W05_zRcX!ZWyHq6kjh_Od^S&cyFNywHH6Qt30sPJVJc#Td{t3Vn
zL`D#qLB96OwX7@Hd!CvyPk}a4@wOle3Gco#mx?!t9LeSdVT(P*!lD!r%nkBAJFd5)
zlFfg^<t2hB8FaUc+Ch{OQZ|U&gD5RLU(hF5MzBCo2|o0Odzh3HUNMMDL6jGMM-X=g
zQ9<}!f~kK35}7KCQZ<NbLEJ68ir_uLfB%6<8@jC?L`~7jYY4eF$cIPe6}r#;>8Dm&
zsS`xqAnFBCKZrg-^bMi`{RGh_h)06_)erXv@lX&=f_NZ^2ZOw8*V8x%Yoq76u7#Nz
zrFlwe8bq@ong`KB^fO|^qLx9l3gY1)TK`{rdZ0rlTDA?MT@c-a=n+KwAUXumIfyPn
zbPR%Kodjt~PKQh>PV6d0-2}V8p=i)Eh)08XEQnq~^p=<@rYaIyg^4Zp3!*=31u-Is
z0YMB5VrUT59}i*>$0vv(;&X5iPo%rUifo!TDJM?_@wC`bOnDv_#Bfob5qvh?ddhxe
z5YGoOE{GR{cp->UVly^vGdhSdX>YVo#hfB91u<TVUQQcRXBZPCOEM{l$w90N@@I7S
zX=77@m?wmD{i@9MYl2e+rv>qP5YvUv2x3+cvxAr^S=x`6Wy$QEAm#@7au#=$5>xsc
zLCg<gK@bbYesK^>f><Q{fLJaK^1UaDX<1ra9>faaELtffWxqyvg9-)HTDTW6{E`g>
z5fnm23qlue2%2gA7Vj73j07=Q#}hiDJYYGP8b)h~1>ppdt07NAJcvXPze=rS5Nm@t
z9>j?t)`_w{hz&x9+;A_7ZVX~)5W9ld6vXBrwgj;?h#g!5H@v({c3TkJ#h9G`Zuk#V
zb$3hAq$|05gzOFSg(mKkp!NmP@=X4I!2^N^1rG@x7Ca(&G>BtDXuqwh_fR#Q4C4JD
zJ_zDe5U0iM8Sc_SoD=@0;MpMf&-c{7E#3~|T@l%rcZ9I$Jt3)R&j;~g5T6EdDTuGn
zxX<>yz>k0+E{e@3;_74JsV5)OfF4{7;)@`@l%gv^d=|v#9GN=*{?gs>4$oIXTn*y;
zAbz0dAifFWwli+&>?>K{2Js#BOYYg!hE_%YmKE|N7i|zfag>61{B$Ne`$TDXkPFXO
z*QJ$TxT&6XBfM|EyY_B~_?zJGLEH@DRuF##0S&il_%n#VxZ7+0p0oWOgh%*4Vt@CO
z?wQ8G%zsNWHKg9xP$+GmEhI}rU5}Uj^=in`P*_8ztcoI<JA*8mc*EO#zACDrn1<>a
zYG^2~p@h_}tf8caQW|d8P)<W>4f&#%(clx3!UrAqW4%BWl`blqCgnw^K?Naq2;M1}
zs(6?1ih`9iP)xbKTSFBQ?-8sjSWU2lj2?a7tD&BT`Xbg8tR+}mu#Scy{9Rt-t4Q6C
zh6WlMYUr+^hlcw!+^^wb4Xrgiz(zGR)zC~sBMpr;JfxusOV9aU=~-sVe6@ML`gp$L
z4OhG;>aY2#xrP=TJq@ii6z%A%xPZ^zSBn;?y$e*;E51t$_%LnNM#Cc-I%?>op{<5?
z8ro~<z)%;u^PU^@4O-|vr((=PH8;n%V4>=)p^JvD8oKdFU#QM3RJ;f2n}y1=NZq$c
zbz7vyE>b-;^kTo*DGj|fJgQ-UhJhL$)6hplUk&{<KEzV(Sfu(6^M1HU_2=|0R=oXe
z^kUU!v9cO^AJ;HQ!(a_hFrGj2`TjV@;6LS?w^+^C?VGd0cWSYEO2g9{p4IT2hM^jU
zX&A2I8I2FTQstJoPk?W>L>+p~H*AS&@VRez6W<68Bf0i8yrA)EHtIx8@17;<$*F~}
zEm5uRcW+M$*7c3iFjm764M#PM)9|9qPT$q)B@HiYcum7p4dX@R;7rjlLHH|z69p%w
zOD78{x6~cRSGg>OOw;hXhKL4B!*mTZG%VAwT*FKavoyTHVbL&K!yFBBHO$kn`gB2y
zrD|!0@3EyScr$<PPx)iT&jJk#H7wDvR6}s7dh}?)A`K_Pz6(p$VvUa%aBpzp>yWk$
zE$mySnk`c+G_2I1Y0x#SqFW6CR@C^SD_^f=Y7Kk6Od0ix`Z=dUPApSbm#IIG6nK{_
zgTtjEq#?|yU#^ByS+343S2-)x{9V3#SE%MIR8)hlVVj2S^q|4futCE{?*AGR8j>2;
zauHT5Gq<ttxfSa574C`(tWfKC;MDW2mx0>0!X2nh8a8X#qG2n0u|nPZfbZ|0d}a6f
z_Am1N%<M|lYo*$uVW)<D8un}0rD3;*JsS3MoqXk+w^D6dsXkt*{#dE{uTuSP<$JIA
z4rn;2;gE*I8opfU`~GCXv{fpyN}XJ#{#d1|tX8d7t78(wSq*OqInKcp!jMi1Ii=xr
zS~;WPP2p2lyD^{B@V16Kblj=q9S!etKh*G-hW9kQui>hOuQhz2;k<@R8ZK-2kX_U8
zv4&4He8fpyt&(efJ6EfV8o!ShF!BCLy1jI{;8SiI#|w&I&;Mn$x}xDT4WDcHLIdxU
zzjKYMzedem!yjeTmNn{24L7{LuQdF$MlrGaH#`tD{G#Dk4c}?_Uc)t(YWRU$t6%w>
z_y+jZlTQ}@ky{GMuB>4v3wC*ZKeJ!o`X)~BUDrUQenZ1=8h+PsQ^OR$+UQpw_*IF3
zsvb~$TTT0bx~1U{9$5j!MEk!r{KJoa9Yu9`bY$qr(vhtrQwMb1rlXL~@5PEQN;nwc
z7Z6o4s8%L@4+q`4UL83)is;DId0MDu2327lPj7R>SRZs>eR3kGeh9kv02k9yTt^ul
z1v*OTD5)b~hfl{_pBC`dB&DcpYP6<G>+XjR$vjQ%BfjU}@1b;zY>09?%Iher<4aB5
z?s`*AbvK6ox(e#*t!ut7bX7seT{>FoXr-f~j!HV}>8P)xvW~lTRM$~MM-?6S=%}ir
znvOg}H8vFAamM%4buiS$^}Zd)ea{-|UL7@c)X`B_M=i!#N_BXvV6Nf5o~E`$NOJ3J
zLG=!0jv4ABLp9LRP)8#jjdk3o<9;0v=y*^py{2kts?MewYAU|N;$@<#9@5c7M{^x5
zbX+#s5fp?}tB`8OAzI)o6mlP<G$Q0a-H5M)nH*9N>u9Z`yN(_@+UR&hM@Jo<bhOpc
zPDgtk9dyi@;@cWhUxw7pkg5_^dB=Qw(?{8)ud|LWI=brUrlU{Ty_xy7uv!~dUCtF;
z46DDwsvx3z>gc7TA16^qZyk@)Qb%7Me8bVASA6$H)MGmT?C+k~^ogh`5w$g<`v2$~
zpkttp$8`+S@l!<QTWa<D1x+k9+;Zn-p`}g>c~Zw~2BsPqqT?wp4;@2wT-Wi7j$t~6
z>qzQYtK%6R&+3?~W1f!Zbd1n3LB}hcdL7T}7^`EPju&){(lJ`c7#&<xh^m@V#oeY~
zRLzO19Z_{Ts$SIbl8%>kjOWU<RZH7_C*43>mCtpTCDUYEP1G?-$5b8DbWGMUg*|1E
zIy76Iv(*h--5zrXs#{D=jj0M}3SQSSUB?U^Gj(i^sivn2?mOZ8`b0tV1HOWtzF9hE
zbNpqxQ^;TC*w7m~=F_JRUB?0)3w5l}u~Nq(9gB4=(Xmv=#hCh;O*pEzqxkyig^sH7
zj&GUHr}V4kg10&rUZrETj)0D!j-MS>Gp^Qf4aAjS2h;kzJig)Oxwu*#cR$Jx#+9MN
z<QcvWTSrJoSVu&M#g**wU5cygaaAVa-tyfpp`J>p=Z^YfIvgEw9SH`RP@59!c*1>U
z65km0eZu`*&P}RyY)HpB9dGN{pkt$sLpl!Y*u(+Ru}jBp9b33abnMWvlRL(v?p+Yu
zbbQ{ZOueMq&Lc6YYM(90uU>|4+U2hPL{jb1v6p?+aZtxT&O*|isZB|D@$Bc$u+W_^
zenwnKD&AWETT&g-aa6}C9jA31({WtK2^}YO6kDstZ}#o{C%^GpHF&M!O|Yyud#yU7
z<4qlB>5Beu^YQ6k+FHdA&@-ET-deuBYt^N->Kz^L>iB}YijMbmyszV99iQm<K*xC<
zA8~?o{Iynn$Q|Qt-vxeTtW#arsgdj4CeHJvQ7a0J)@4?%Q=jU%#A8{<723~NbD9+1
zR-??mb?T#aDr3F+jEBiJA6LcavPek2(s5PC_d0&i@wJX`bbPDhI~~o6`zo$iztkx6
z@OpLqP~j)mtC!ZRmFv}yI<E03;{xD_<*QBW)rIxy*YzrIgSuyf8n{92xt9N{jvL&6
z4BT(vHyyuoS23Ur+|+T48?}ML2L90TCpUQmnFjvS@wbkDxa}LLI@8CKma``crf*Pu
zpLl44x?BF!1OvAj$Tr|LVBGFIzd;o;aBG9gGTe>2=tg%Os%%tz&0?30>Y0tIh=E)K
zB@L7^xVxgLfno-Vi}C!8YJ=EMO!!I|_<f_|59J?<QrbYi0iS^~2A03&<KL8ydVG8c
z8$a*v+Qk1<sS>~Dmo;!Z<1|psKsf{D4OBEx$-o^3?le%rz+DD9Y;w;wpWUSRZsl#w
z++*+yy?{UES2l3Bfhq>>F~B$T@|XJAo7~8cY*M#2x$kA;L-48_s9~Uvfw~6nHBi$)
zEd#aL+-6nS;~TiyeNW|>&8p!A-*3O>FW9W=8K`fdfq{kwHa985AIhuG@M$G{k<IGD
zcwfbz^G|P94;XmRz(50!8)#&pv4Qps(!fIonizQ4Kx+d{4Ky>*(m*Q%%?*AZ^!>0|
zmD!?tR`Rwmz<<e+jQuOW;TAP&i{jhW+ZcGnKwAUt7(g90d%W*6&1Wp}@$_%V)dK$(
z^;Lndqk&EadK-AuKxYG840Jcp!@%AxYS&g@!!BjI8t5jIa&wD24&}DG-!FPHp8Y<a
zYxOdC-@B_nW}uIO{ssn!ahI*CmF4Sepr7GBG>?fk6)yYuHfO$FbkbHe$iQF&V-1Wm
z@C2(Ec*el9-1*rN1H%jqH}JH$;(Nrrf9DT1z?9tT`f2cX!3SH_?^_k$Wc{3h5e7yX
z7|m6&%`F}LUBO5L&l`Awi|QjE@8}>>Z?R4Bk$@y)*p^tnXy7FSuNatU;AI2j4NQ<0
z+h_TfZd3cVsUNqge(w}Cc+WS<z+?kc47_T%w}|j1;N_S4vbL)?fAAfi;A_5JebCr9
z&A{tiIVSEgG2Orn10NZ<Xkey+Sq9!W@PUEZ2Id&pVqmL*xd!GLFb#wZykTIzfn{9M
z1{N4tXkZCPxNn&ndG4{Z$iQL)efyT#s(Xl3s4o?fe1(CP27+SGDyt0m4Fn9VHn2uS
z+Ay&w<%FD0Gy}T$46Sn=8p8Rg^RR)4fprGfOI^!A%zz_2%H#TQhAq7Rb`>{}kl{)S
zR#I-jt^65lxg@r`<4oKj#?&{9%|-*8($#5DJ<sjbHUrxY95-;nzzzdD4IDCX*uX9W
zyCtgq2KGqxy$1HBd!4GAa&ka?QaQ+`vvS$o5d%l13dbSUYc_N&9T;n!G;r3yTLw-U
zIBnpJ7{4jT91wb-4J)4GbW72D2Hr_G{jMk+UJe3{*<Tu;H^3BV;Qi3RD(ODO3sO|M
zi|1p*eLd6X2EGvTiGfcITrzN3vR4GFHO-(6(`VdCgnwz^D{hh|@=RPc@HO{m?x+U7
zG4QQ{pAB3W|KAz-QM$$v_@3K>i0p4_D6UENCo!P-iwx-vZu<s)HNYzT-vmSDiuzrK
zk-cWuI0And_>)_@i9#m+GVr&73=^5ATl9|@cucqBH2x1+mwsTn)0%RUWg<taWSj7c
z&Nazrs?eaYi6W+J&+1Ini<&5A;&v0|OcXa!!bE8k`BJ^4iBeLXmYh>2dhnSjV?v2R
zfdrG%>54&?6+NYtH*tp;R5Ed=i3%p}GEvcVd;0&S|N2td#NDR5c&PBoRaFz!Oms2%
z?-*}&hHav=iPxU?-Ycy%FwxLNO%t`GmD(cKHBl!$M5z^3&qRGuQcsJz&&2&Enwe;B
zx`*lmCK{P&Y~n$7YEV930l=nN@gb?wM53ia%ckkbTbO8RqK%11Otg|l*`0^~Yg9<8
z3bCz;_9i-*XqVP$Or6-#L?`i?ijz&O80~(a>T05!iS8zPm>6whjESBmdYKqv;wclo
zO+0F1pozy#JZ7Q~C&)xU(|!N%+U@Sg2R$4;>#KLr_vv=k-^7jWYJed1K_&*9c!H6b
zxcFF^Ki~J2+o9sU%lvlHZMWMFHRopj(<X+Rc+SKK6T?glH}Q;#XHD>w>E#{j+e^N7
zzxaYX)PWu9_Z^DoAtOyZZ{h_LqquB#s!luA?44@YPIYOg%G;&x-K9J~=Z`fp&csv`
z(@eZ*;w2LkO-wTJvWf8~CYX4IVs&57U25bmwPKfAze}Co<(}bW?pBjcOfm5)=bh;D
zRobocR{Q$wc2D~k?N<CCNbFXxbMrSb&%_%hW|)|1VwQ>7e4_7e#ZTUG9m~`#<SV*I
zRo<fp?oo40%#}1{kGo;cH?hFPLKBNj#Hl=4nAcKxb@$XBb!m@UY+?zI#64=Mi7I>5
zGU2R6PF!hX6$d|z{$Z@<a$+`w)gkyf9USKno(v&qqSEfHjV3mk&`jti>W%ZZFX1&z
zm?lCd!fe+>g6pur8xgbxEx{<af&rdDV-HJXqBw#nB`JKp;99|TVn4LNOZyF?u=-{b
zTTGM>;f@ftn%HLIClf!L*luEniBEYr>{UBW>@x9=iFZxxmbH42$DN5i!uJa96Wnj&
zfQd*&T)L|Wk>hY!^kXKDn>Zr;s9>tps)!RN&X{=9#7WbwbxNwAHo^4znlk_SIcwrA
zsd!Gz-WJa4DTDVU`(yiJ7fie_`~$)Bf*%UD>hkZ-_K{>S3Vtm3iD0w2xFqDVi7O^P
zGx52JAGsj+DyA<?d~M<z6JMH$?p0rjew7~tQYB^ct%>hUd@mxEAJRn}hjx>}MDdy!
zP`Pg67cnTbPyH&SXb8nZxMAWq$^Opy;yU5OKTX^+@rQ_infTkppTh6;xj%g}{bM2{
zgv<~;AuJ!@etjcC>XP3Uf_>Ay%*AxqilSMfXNTYoAtzmw8$#g_iiEJ^;cQQ_9NH7}
z#PalH_XnfmA(W78S;3Ma<cHu3p_F84P+G{lviQpgS0P>-apO;kB&qD}B9;@Ra%Tt?
zgbxm(@ji8z@X-g|gQ#K%l|rZ-!rdWM3E}<_9teT|;kqY;>LJt!p=t>4c-$Wvs)ew&
ztlQSTA=C_^RtU92Q150vWELN_Pfg#a>V!}?glqd$!w~9)P(Osf>Xm39ZQ1+Of_Jm}
z%`LuvpBi7TIBo6=q3nKj{LkVKhR`U4o+0#NY#}@pLh}$>gwP~}&ihrf5Zb?z*))Wg
z_PfzW_p5<{;ver<O}=)Ax@8EhLU=fY)**~Qc8?H#->=@jn$;$RN2q*RtZfLLgpjur
z(msR^X{Do(;s;b`AzcK!3U(9hE|@Z-f2(3n?+_jhVL%82LwGENJ|XNqpw1moeL02)
zRKF1VvkM1Q(+gRg+{#}Re&T>yeLy`P!v6DF0}d+Upb)MeaQjmHpyHn?79UhYLU<~K
zDIvTX!qXv4+ndELYjOxfh0}6a2*X2oMn<wje)h8=JjcL77#ZUGl(Sz6;rS3=2w_YJ
zV_9_FyUmv~ia}P*87)=n-gK``jSJz$5PtnRE3(A<QV1`HFg}C{A*`6?mJ+jOdx)u2
zbyLQ~5GHZOUMW^ghPu-`MLT+2%h$vw$)XUZGQtpE4`DjzeN^U}7ris2lw@8AGeaPm
z6~c+C-r0h41S!syB35D18zRmZToA%S@o;^VdnT}0_>y$3r6DX6zFcsH;7Y;T{XBHF
zhMRu~KZNjO2mx;XT)H8=%M{OF8Oqi|&_ggnFhe*P!l4jCA%sKN6LKG0#O5N>TwKr!
zAu7Zcj0vvo21m%(`^qFjNT$RPHifWR__`3*)2$p?8-#2Woyrz2?_-%eLzrCNyETMu
zA#CRgKbE;e4A}a*cs{cvOuItZEtcf8=kI8HIoEUZ_6hD6JP<;I{4x{|hj1i>Gdv#q
zd5+4!vex-gnRWYlj)ibs#^;3KNx@SgoDLy1!YSm8ycxn-DSb=uoZ#Dn^uw{`ntU&W
zk3zT@!uuig+mrQy;CaCh1uqDWXpqTL+J79vXWU+PyZjR&pK@;zayhME5pwIC=kv7k
zg^({p_)5st5WW`jO$gtmZN3%4THgy9Hr&G|u7&UucdY{+9zj2|gWQ6`Xb{Gf`QBeb
z_=j7!@LzeX&G+62;Wus<A>0h%mMDLQ@XA>ai~iu?@AEK`GyNr{e~ZX$hB&DdM%NnN
z%rFqfZDAA&qjVVgVPu7o9Y$^#d0}|N$PwcrVb^nE;dIN2sfLJ5MMW<WMlm791ycqk
zg|pF8LRi-)<n}Pig;6Gqg0!x}C@Za`VrKR7Vca3571B0$3Q2jsD~yU^x0|UfNoDEL
z-GYp;N*MPDuNp?RFsg@9BaAwt+#5#CFlvQSJB;H8Rj&g@zB;HXA5v2esdb0ckwfbH
zL#l2V^};B6ShYB;h96dR*f5Oy!e|x7!(rSX#sgt@VKftbFpP(UG!kqqSmbSYPMZjC
zD#$Fw=E7T~m6l;_7?sJQ)?u^>qYERHqDR7L7e@Oq+NLdO)*+0JVRROy)BotHwo=$F
zjP7APCZ#>nHoe2>8AdP3(k#{Dqv<SLXX+D1Ur|z}1Hu>>#(IVqc0V*9597HoMhG7i
z#^5lX5dNg#vtbMo@|57yf<py|2@V&0Mv&f8cWAtNSdA3L5qw_og)l}586C#!LdJwK
zHjHs$ych<nObO$qFkTL0vXs)>c+n?Hc7ot5f{cpxlLTo@PUBaFye2qRaGD@XX)`^H
z8DY!}V^$b?7)BVg!<ZAs@-S9}F*l5PVqEj*+&99QFEK0)V?h`T!&nr?Vo~TS)pROC
z8ZY6J``JC|Vp^7tjmpX}{8F@vUjc;Bk~V9?;QiYxC8R(YL22~z5RWFMtjJ`B!B#9$
zLV{tzh~Pjon>Nuf>~!y9Lf9AjkB5;ELY@p`ZJMtW!d5nhu_=s`FM5xJu{n$_vM_ds
zu{CYED~xTzw+rqN+$osqH9eQ;=h-6__X={2?Gv(J@POb!!9#+F1-UC8m8RMHF&?49
zPoxyVQ-YHw7d{;ZvE1RzvthhNz7dl*;#?SSlgBVQhIhhvH;g7{i}bhMKYP9x#?>&s
z4&!~s**uTwgD}nu|4{IP;75WN1!?nf7@ws1r(s+Yep&E};AeuL3)23JFuqLlufpz|
zZ7F^e#<yWiv+%lw@51;#jPeoO5y1~({20a;UA?6vxW-z1q^ICdVT5*N{T#-1A-{z2
zYZy1esOs_jZ=(J0VcZm(TinbexGjP|!uT_czry%CjEsouhv}a%JZYZt(B9+86orHa
zg(Ap`AUA@%2(lyaN>Sm6+agPIB%9(z(tcR6XavO~C>e1hFD`nC|0zv*E+wU`OB>$8
zmmhI&U-U&#MhJO<5G7bPg4>0Z6HMJkcxMC^BKW<77Z&b{pkf3IB3Kwfr3flV&?|!8
z5xiE}+p<jd-4RrY;2wq@LAwa@Z!26a;=VYqb_8`Is4l#Q;Jp#ljPL=29+uV;C0W@^
zUN?ez5j2kAp$Hm$nOi@C`y#lXT(VReMo{kdqK(IAub2JgqeqK85W#~HG?H!}KCGD7
z(<Tu#ji4<f8Ij#Ag60uC96{>{T11dBEVE?<tr+1aS?_fzTyuHp{k6PIv~0tumY1&h
zeW^#p8#zUPN%z*TY3;r3Bj^x8#|S#HJ6*gzBY1UM;m#3si=cZ1T_U)vcg}D8w2FYp
zDwA^ZdqnVpC!faTx3zJf=lR%t4}1D(1dm0~C*nTj^LX9dz7h0`U|a+*M$kWk0TDbM
z!O#c>MsRXl!Q&AOl6XeUbvLoW<Pkj33WXcxJrQwnX7|h?oQ@-IqffC&$gl{8NANrY
zh~OEzJ))lFoJKIFi~DtqX@vM3$wrT;ExmHec6Pt3`Ud8V5`A=pf6Q^;FUB-Rl(B*h
zOO<|!fn{Q91k)mTIfC&KTu7Fl5Wyrdctvoc;7o~Ras*R2R-(|`YY}|0Kd)nUwsk~d
zQ1<H)e9$vz)N{GBIQ1iPrbjR%Z8<Z79pYhj1al&oEBYIP^8~Lx>t6d}nlIT)N7SMS
z7Dw<teMYb(f~66}BS=KxIjWXLU~-}Un!7xL6%nkAV3mx&&V#6|I}xiRSQEj964`!M
zZ;4<82ikiBg7N!{&_Ijemk+W?77x!fB2Z=BY)G08M-Yj?5^f7dx!4A}59GPGttZAV
zKj3vlFMU*XZj+mgU~L5LXJx+?!MX_6N3bn|?Ge;^A!9=X{Hx%m2!4ISyOE3bNw0rg
z-ewWE2yPXmO{1e~M+7?~I2OV22zEuVn`uq%!3g$5u$SXt<m~4W+Op_AX_`pRkPb+8
z&{2269E#v@1V=<+_9$z;@b9RSoZt$K;0zDd2u{gxofe!sJd@+V?l<Y?Im`X(eAY8P
zz4!Oa<D&zfAD+Q}or~aY>EJtpRNjr?y)<V-=efWlyte^AN1%5vd?A9%5nPGjuUn-*
zir``dA4l*>1c!PQ{xpK()eCRw;N^{=mn2S#Ws2jo2tMa_cU1kzwRco~Aw}Ot@THKi
zBDfmC*TTOMWVF+~**ww@cJa2Z@BNM||8my%f<K4>vkdGSXS}*QO4m8v9RF@!&vDPM
z5!~P^vhZkb(aXWy-?$$}aFZL?wLESSx47*`@OK3NaMJy`9arW4DGskcjlYC6@1DI+
zMw>SDoM9nS#~TggW?HE9d+E=Ps@p6SvT(ASH;ame$`-E|z-uALLSYM|>Uj$+6tR$N
zp@fB!7V<1yu=5($@)omD)N*|`eI)zJP`rJ&x44CClM2e$&C5CFK46x;E@h$KF;&_^
zzJ*T5l+QvL3*n}D+yK`W$tEfbWu=wdE!-)DEta!TUiclU0E!l+$W%eHcUh<?gyTu^
zZpKh7o1Z3=EL5>@kA<ohs#)l2p__&37HU{%WTCNzdo9$oP~SoW3$-lNwounX+jleW
zEaBnH%IjF}i_STuse5$mS$KxM;LE=(+-Knd3lCbj-@?AQ=jB!ICtA1iIXpJ&#4}j8
z>0(!T$U+kf4_jz$p{a#t7MfdVAw$GgR<808_r^UfEwr-uFfmVy3E9uc{@<#$w~d8I
zEOfBYks(=VXQ91?sd?^(*}r{urd<ka-8E08lZ9>VvO8Po!k&)EZkU}-aaxXd&3j(z
z-7WO6Fr2|#=xL#sg~u%nve29B$3i~~{VmvW&tn$)Sm<lH>+t3yUM4zO@<<MGfQ2!m
zJajdX!B5C;XS=2R;23P-2@69kJjDgD-1DTxho`yt*+Dm|J#o*|7KU0FCSlWlP5B&F
zXN1IOEj(vo9GkN+!oo;SpM}vDo@bo3ysY~I&yL2r@pDu;{&YCT!dQzBh4WBnkY~(N
z6knoZ;S~!LEsVD?J?@#nSuUS5b!1W2WkoIt&IlEb8;>lmipgxcYvCytUKR411^#kM
zWvYe4_hgVyw=lzU&oTPim}y}a!;9kiC}y*RY_6-fQ5176%(HOb!iStV3-c}PvaqVQ
zcY%e47UC9oI4rWT*aG*8poJwCmReY2!B5M){ACtq4$fT3g;C$TTyTXfT4q;Sm~>37
zmPJCsumc?D?EJ@byxfj<p36HrJV&#jTQJ1NvJkakS_tttVhqPrM08dpXCkrFien)r
zizKUxI}t2udm9oQ0Sjv_th2Du!X^vrEo`vh3+Ih&R5V$t=#J+y2R~Vci)}NzBd)ev
z*lK}mY<VJYo8^A=?3j>8+<Hvy5QCi-tXFfnj6Xc4c3aqEVK0vq3r8&+v#_7r0ylv!
z*@r9~;A(uipnO;FL5^fM56NK*N5o0BVcxpO)gQ<5j$1fk;T;R_a$n-k)6LuFxO&sV
zDGR49oT0;7UcRhzSQ`(?J$1ZiExcvnoCTV_EyO*eJFd9!i0^UkMrOZn;RESo|KqCF
zfb1@}O5eJeSE*Od1q&Z>-;1Jh6c;UgY~iMbTNXaC@TrBLII~>~U$Su7!q*nQv2cZ3
z*<YnUx9|m5zHnx<hGu?g;Va2r<t8&MlVS=phr0Y*E^jIQ(ZcuXT0aP3T_)OGOJ~V{
zws4)}%pJH<-fw~=zgoB<oQLGM#j}4;>wmnT@rQ*!EtHC)bQHaY=6p89`<I2kE&OA_
z6GcuGg`>!bA~TAtD6*qK6t_h&XLx3zC=S%~{xG62KT=)tQ7*^R8~yjRr2XJLDj&D^
z7KtL4M?`0D@hI}5C>rH+AU(yRV8t&U%^t8ehc+F%7p8|2QIw40-pZ~|)+Nc0!WYH<
z(b>V#Ic1_Kh@xB+<)dIjO0cZpoHm|ijdN~~f;hRA?~W+$jJh8#la8wjQQRe|Vici=
zyjL5$iG&}`BzH#<FP+gqjH^W5gZ-W;szy;Qit16+jpBGGZw-bN#iz$r?I>zSQ7ekw
z$K4}k#c?%wu$PIX=m}MaT|43GwNI#e;;_D8v&!CvLhcj1U+{q_9^^1~b$5QIzq@!E
zNAXY;O`>QT#Zyr{9M5eg@w6h3qPg%EQS?8dT1L^Sr+Ykp^Fl%EDCYO`c8a2N6m6n-
zB#O3CtduZ12x%wSKI-nqDZQfv;BW8g5=GZ29*<&B6y2ie9z~xh`pQi8;7W+1cN9G(
z%emn6G4ZVF(I_61xqGITH#L3K`!O)F<or%t;TaIcz$jSCB2Fu(cyJUOj_32ddI)Eq
zHjTVIp?xyyp4PG>GkX@fSTg_VD2B2-y}ZMscvgZO&Y@nD`%Dz;<qYTH-bJ2^Vg%Q~
zxPo6hxg+ojioFoUs3?|4u_B7mQH+V=75a~2Y!u_f$%H6gjG|N>FBADo!e15~FSzA|
zViCO&Cq*$iibY&<wY*cJcr}Vy?3ZL;i(<Nvse;o4Ul+X4!2Ke|G()m8qe$sg=CDU1
z&K0CGPskgB^;UZp2w5nomb;tMV&O{!nO(|NEu6*-a;2<<XcTr7tD;yf*)>rZLb!na
zQ3Rq0Mset#3??lKU5Zj!erB1H4GD$?BZ91J2^rTXCl-Yh#nmXj<^d8#B8sz7ycI<<
zinTl_xNLH~>o_k_>|<=4+$c6iu|0|%QEZB0bJRVf+sgI)ta})4;R3dEsSvmED9+3%
z{Xzk=JEPbY#U3f$EmbJ0%nW`ykkD+e%phxV!5@g?a1=+PIB`N9WbY)=IkQK3c%D#o
zefdMy<s6HGDfgs%B%X-kWE4vp<eiG*-I+yB3%{=w&P2iQCU4T=_*|yFYrN;!I`{A>
zK91rY8b|S=H2t372ZHaXl=lA~v*)AWVf$wnH+vz9kEE3Rw=SMf7*7;cUdj7{o7G8m
ziHG({bwvy=M=|B9yL7317RBdMbnZ(pvtLH>703DRqWh-gBueML{AiJHqWG4(gpEQr
zzKi1fDE^7UW8;S?evIN)6smLKYf=0Z#jjD^h~j5au1E1p6n6~GWGPdMG+*u^|1FB&
zqqxcKQA#VMZJ7Ndia(?HOFaB7NP8NjEHi9(9wC@1_(lh}<0;Itk!_={je0h`Hgar~
zw{eG!!ZvTWMkyPmZRFa>vr)oENgG9Nghyl+vr(MJ%M0_|EM7dH$SsAZVLTr`GBT5=
zXFRpbx8bu<*2e8N%GfBd-P2lSBbn)*>Gdd@%j~<`+>_frJoPQ&DJQXUucLmajS4oZ
z+NfsZE*lkX+-;+ZjY>8u+nB)9jJSs<hx9{S=F6_b^M4yWA?Mlk8*jMxv{biI!$wUT
zwQSrgP17xF@eF}gYI7nkWo?Li>Tq_(dQ+#e{H9jlMgtp<*l25`p^f`&G_$$>alefR
zY&5db*v9xqnGf1-02~2&quYmUG_ldt2HJY~)qrQDPk&RGgrC<eZDFIOjfZWtro$2*
zR%~UvXR!Pp#6ckWc8#ZvC^XJ*ozu=ndmG(sbe93?V51|uW`pOqT(q5Sbg}U$|MP3R
z=kTn;j_@Rbqsr~NhmD>rwegsZUg=)<w%t#V)K><6Szv$J@jf>8kIa1SM>oQLw)=!q
zeq=A}USxocfi@nuG04U^Heq8hdv~@7({ncZom5XSDk0=UgghnqwBS&|VS>X2pAmf4
z#^jTVRYuqtY2$ett15Y4urW%UbBp+Dpm($l;usr;lO7VLu{QXIM3R?mWZdaJY2%cQ
zmpKJo12$f<VcUq=m}p~?jfFNAu@xIr#CWcaS8cq;b9)=J*wDkCsW#qd?s?tDG%=t<
zX8ACO={9DFa;lkUXEP7=*=$$H92-5}%*t-=iu3-fWn+GtFW})LrHgGWvH6b!=u))Q
z#tIuNrTQ`(%SEKmGh$3!Wn*)5&uSZMY-HZ$_1g&82nuJYOl)y{A<yY%9>a!dBO)F`
zg6ErgSQHjcGiEIsyqU#Nqg-i)+`5j9ID27ZmzX7NY_PFWcv5h!jdeoSb45v1jAxT5
ztiDaiX2C6jTWzqRRCC*<xg9nb9+llT_SiU*uDjR9!Sn#`<1!PSqjW&VpM!8nhJ_Um
z%ji)#YU7v<&c*R`#S>!lt@P!zjWf3UO|4Z7Z`!zay72crer^2O#&g!jTQ<(wc-zK1
zHZI$^V&h#K@7cI$<6|y~oQyM-yzkrifbq)##m(Wn)*kJo`q1VD4SYoBmAuR{k<k7V
z&O$BkB^#e|LPcj4lDaKCpV|1_#y2*;wef|GFKt}4@wJ$-l&-!K{!=9{ITJ<t{7#x6
zxz^gXp*Xmr_eb0P3S26NYc_u30chhoH;@=^i{Td=zj8Ee+_G_l>tuHp({EhxT|6Ye
zi<07hq)Y$dXbAty#@{ylZCuL~l6Ydsh#@of|LcWfC>C@5XT^{mgExj8$>zmSIEEs^
zb7TLuJFcyljWW%aFp8%2;$l`J1{#!%fu*U~O2?2NgD-|MG1QKsP7L3)_7(_MjX}jw
zHip|JTO}oq$SxN{`Ivigqi<H>J7Tyq29gSbcL`P$tRz@j@NPkx@e(@y-y^QFyLhU_
zP+fS97-|Y(>Amb`7Y_+jtr#G@ZVdHeXc|Ma80yE+AchBHXcR-k819SV0mj+Jwconh
zLvnvQn^GE!=Z6GSrA^Xp(Rs>0Et|*Cf-@_AT8aU~csPdEF|>)f-v}O!;jtJViJ@)G
z{SMVGhR!i`5#C;~gJ4I&PBHXq;hEUN(^ayx?-@h4H18fmk2K%f#nUUzd&j^mjr(w5
zJ9>x3Fq}gdL%$gMi!wxTKnw$8cw9Kmo`_+P@WE+i*GWbF$r%1qo|2-c1&5~fXJU9Z
zh8JUaDTe1_7!kwRn0qktP~uTAGKS}4?s3Os;e{ARar|$(U#3P2As-`TbFU(_85jHa
zAbmN8@#17+3_rE@Ob`$MwDG(mga;iDQaWMLlo(!(;pqg1Ch%GeQ)B2I$D?sfi{W+7
zuY*PorZd!v-i<MAieW|!Gh>*=+3)UM$CXn)V|EO4VwfAlycl0=m>Y}XjTq*~5Qrfd
z!-5zVGLje;$J~pMr(5RTc*<LUZO)PyIu6PG?4()|!^=NpFO6ZDkmZ7R3@AczWelrg
zSRKQ#XL9_4Yhut|^f1c}Fh#T&^cbQs*fA8GQsruSjTp{W$TvB;jf#X~2*(f+ZV4WG
zp(J%C5?)R*27CE!dR_lKCx*DhpNL_t5cVZ0q{++z@@l8l`WSY4^S*!DyCH@X9WzKa
z$FL=a%Q0Nxnu%c>hnE{~4BOf9LEe3=9>WgdI|V83ieYz}?}=fr@D6-!<sk2Y7!FGI
zSPX~KHb-JO{697{I~v1xoia#{r)^FMIVpHb@N~?5BPwmq#_(1QAH;B8^mBsm#_+a~
zcLY=3X#8Fb@Bd%r!x;amhmT{pAo@q?rc=&85%E$Cp9-M|x=Iy&7Q^Q;ly;Es;ENc(
zjN$hfZi?AgJg#H-HioO|T3@H5bv?vzof~@$-^cJn3_ps^&uPnRLVikz!8Oble@&O(
zNc;IMt+4b~41aK!c2LB@pQ8U0gU4|P=dT$47KLVXmEj=ML6(DT2XJtkgF<4KYK1nb
z4icHXj{9XH$N6`h|0~LMP}D&&shB6oip7PLbWqAciL{vV^PgLvgE9`PJE-BHz=3j5
z*}>fo$~w4Rs@&zEoRIPk?)V=kcRHw$&ZY)Gg%w4tlrCa(RUA~4EcrbSstW(#D)&05
z>7c%Y22xZ@u&!Wj>2IBMm3q=~jsUASba0=8`_o1L4aEa#g=UQ%Jj5x8BR7swmAp+H
zv~lo=1KzyXRIr&~bHNr4S~>__EyB`P4jvY<b;{tBqDY5r9dvil!@;&W8SNajXFL*N
zN5?(?Ie$k+Cn4mW9dr@iHLY|L!fVSt9rSXr+QAwJy&XL2V48#19X#fskAqhnOmxuK
zaes_{*1>ZQ`Z?(DV1R>x4u&{*%E99f203_wO*`&)hry2fyLsxTb7pJt7rGT5isVl_
z80uh{gW(RSXLa?QS>d_9!t)G=qDNu!MMK;l-1#+mgo81|yki`UbuiMw^E`r{^uFL=
zl!Jytye!Ha;vMba#<UFT1BQ6VIe5{*cn1?4yd-sBc0ilk`gmyk`M``+E&jhFrSQq{
zlN?NO@T!B!>}D<RxeXrTYr?1gkMfb|(;dD~D)$Ws^Bv4^FsG?^rh{1yX3K!j5rs2C
zeXj6%f<sR6u?cw#94r*GRSp(8SnOaqM|EJqgj4PZ5YrMVT`IWDaev`u5jX!8j{CW=
zQZO<kyM9;if^HtagMfoC9em{==s<I@-{D_|p*vW5O2xROPpeh0<rxl4t{(?s2ZvtE
zvm8VnL>#b)>GUZ+ZNnuty*0`B;gnm&aS(TqaFBGc*})bbh84VP8IOaF4%RtXFUsmC
zb2G-}PPm>u5*aku-LvQ>2SoC%T#62MI@sl4JB_<|b_lBX$_#DeWvX(m$ZiLF9PD+l
z&vAe0Na-{nZ@RQFuY-{sWXulUbMQWAe`cA(4o)~Y>EMWiqdcId=f2k<@0f$*JfM1H
zlQWT=a&X$gTMo`~4{4BbM#l53;F}KkIm@A@PV%;h%)aa3oitAwRBMp&frBQe)kOy%
zbF<o$dtUHE2NxWC<hXZMP-Gf>T7AM};p^N>4lWD%)Ny}krgDYNiSmWu=Ysr&f<-i-
z8Oc=#U-KAraMQsz4!(78-N7#ozH{)s!?&ZlTPxEK4u0gQKJI0z-pi9h>OYD2vzS%u
z<zAxsmAw{1e#60U=^|FS<=_u)=5Z8?<4*^FImn13GwwF=w}XHF$C4gAakn{=|GXjY
zdS)wGaS*fP@Je0s98qXrIBi3b*}OQ4#?c{;j&b*=v|@4i;wTeG@wj{Ky+j-(<0vIX
zrQ^tt<MJaJOpIswO;3ujR)HAYDX65yvVyk@mJ=*5c!wY>R*2)SI4Z_bDUSQ&cp#3-
zaoin8tvG7OQ6-Lh;;0eFy>V1!<cwJ=GNk5fJ@>Eu_ln>D@|t46qB=tA#Zg~KUHTXM
z29j+U$9-|IBD;{Pp27#?XcXr~ezcCGaU2iPCXN<yG>N0BRBR@G=qlwcg)OD1m0-$e
zN^c`d+c?_A`4E7ASIB>L+l!L2<gb>U;^-+u$KG`o(j|_rLO8bF;^;2CM_S=^<6gpP
zPbZJX(I<|_66lja-#Gfk@mU<7$I(BI0ddTaV?i7P<9IxdnQ_dDV^AD}rTR2MhW!NN
ziDO6{PsK4ljtOx*9mmi(#>6o;j$v^Ok7HyU&&Tmh9M5uL#4$paN2&|-km@^;$_r97
zDvr@I&i_qW%9z7GE{>OE1YS&!Ose|J>6xO<D{;Ikr4!?r6vyN^rbza`hEmh_nut>c
z>7VKKIIqIFE18zW8F6r-k}%B{eO?@Mgix6)6=}dBeM7{Q@j~Hy;#d^N;y9MXu{4fN
zA}*uDIKpv6r0$A1R>!d>j+K&SRIAd#_~Qt~p~qpw5fo9A4yL+5OGayo9!l3`QL5C6
zBg*FDSR3c>`|kRQ3&!Gbgro+O#tF%$YONDa;|+1FPY))GHl}sfVy`#Hu_cbJ(w%LB
zJLA|cgrz&;?l0*akX@qePU{r+3f~vU{x}ZAaWIb4ahwt7hXjub9u_>34&YcE$3;02
z$H_QO{okXH(K5m}<2W0~M{!(?<E=Q(#qoX|AH?x?9Ph;WzX`neKecF|O6(2^J)Do@
z!#FNTEB}p5%Jat}ej3N6I6g@m(B`sm+FVJ;NmpE}U&QexPyD)hJ0~!=oA;|YZp86h
z99QGm)w9UgaeNa8pSt{Q96t&9PVjp{>OaKsW13$R^46T3pM_jc>%YYDtMHV;?{VDZ
zPMAQY1a8IgM;x~&P%eQ#<M=C%A_?Rs@V6XO46jfE|HR=*xSMlE0=Eev&rASmKJm1A
z{;?tyvl7Toz$<!TLEeX%BP8|oMP~CPTRedh2^1Ax?0*dCq+|l66Ua}XRKk5oCadtN
zjJ^cQB;2QE76?*F=_-M;>FPB8e0)Z#3jLH%;0`GwzcYaf3HOPVcZuSchfG#Z;O+z(
zB+yXADhb?^Kvm&%UM+#@!s{eZBY}GpsFgr%QP@PyG@*04r9zUzx(U>iQY!U@EIO_3
zOW^(lS|-p+lm`-MltAMI9+d9<SN9<)Z6??xfu=&}mZ`b$7HNf59!{Wj0__rLFJhYn
z9udMK#@{w=$?!Tz->G+!<~pVur5Q!uMcgIf-b>syfo?*&3-%D~Dag`Z3G^2JXj-{=
zXD%PJ+&6*#2@FVpykEk-2*9uZ0~2^WfhQ7pQj|dn3>L!60{c5=R34K_93l$&Q)xnx
z)rTc8Jb^t4>`maA1fES`Vgi%codiZCFfM@?6BwBQUA>UNs05xDo~k=KfiVe;m0(f|
zk(PA(X2*<|5_ma*35<%r40g<5z~iN95|+~Dl?2RM?#Tu(=~V3LnVi6s1U_l&eKmo3
z3B19pKnYAuxIa2f<IyUF{PhH;Com&{nWD^2>$4L0ZB_;inCAQs=Zl1RvNu106$z|N
zU;z)A^I1#_g)9<WEVv|rr9ze^aD1AFHp>$z(mk7GRRXJ}XiEZX67UPR1q1Abkf0!q
zH6eNehLFb^xdDXIrC}ivK`Vi%kVB^xZDI*Hl8p<l7fd9O6tY%uogj^C+{z<vNMK`H
z*_6QMG{1UUZB6rSLbeO;;B>di*qOjC$?g`+JL9&#FM<6DB-SFi76%eI$l*$2RT761
zIGjMIBswQ?B!Qy|WF(Q9#Ic0?dmJx>zAfaq;0eK#f~OKV&0|40@78-WfwMfiD|p{Z
z;GBr8&TN-2y`?L8-$~%z1l~*F{RF;E;JXAqNZ@<|pL6{uP=8y=4-@#9E3lIHvu@rC
z34D|Q$wfhuR=cx5N#Ijjo>7+suOx6;)*cra#m|J3F#BZ!UnTIDyikwXs|m!O&#<4*
z_&R|OXVf=hNiwB<?)Qu{f$ItUlE9CQzqWhB=e){AuO;vk_vfc_HjMN9oF>eMKgjwu
zftv{|_U7G4xBgoK1J9`6d9X<9w-We+`#%HV&d&{B2;DM$oss8By2lHPQduIBxGjka
zN!*o0p(L`BC_6KwAc^dxdwHRxpf`yeA%z8tCQ&4bT;X|1TsfReOQx~j3}P|SiziV+
z$f9vMsnSwOlolmlkfKjW8Nu6<*@{imZ8z`ty*zi9%(y*?a!K4#GNVU-Z+Q|aV(Fbi
zW}Q(Llc<!$y-CzeqH+><Cs8AbCY#-0s)*0;dwa<5NusJ`s|i*Yq~83^Y~EGdvQuuY
zq<b41FD$o6qIME>lBk>H!>sUN5{;6`=$ThPi3UkDWW{zF%yQ7~OXB_{9+1+xom`Pc
zBrIy2#6wAtQ)!Y!(<GWD(Oia|3Jp?DQpUuVNwiAhVGd50>_?Jln?!5jZ3O>&x=1_8
zb`WfzMBlcqtB&IKu|Do)qAp2vO`;ErIElTA^l$6!mPGd?dL+>^30_s;ol*P8X7@^B
z!KB>YNzC)O*+(V&SQ6wZrC$>LljtxecT^GslI|tq!R$qQ53dXlq}lS^#{~x^!3)LA
zKEW807?N~<svDNX@FboR{<PrGB>00}>nAf<`b^TjzC`kz6g?}*(h=<bpp21{eLjg7
zI351HsbjK>4#}hO=p@D@F*b>DNlZ^-MiMV3@lq0#l9-%yzr((q#48M@muI|;29*ht
zC7GCXztWPVzT{3x;x#GaaJ?#ZS!=40|Hsu=Kud9SThH7LBlpf#v<J6@K=9!17F>ec
z2Lw%mYeKLD*8~E=Ay}A}@ish2aCdiixBv9H-@NtSzgDficI`TKO8QhyPfvHxL?0%_
zjMKl{{_4XNnk64*`Y@F}lapz&>cpqBNXD~h4t<#K!*A?ijt_I$XL_U5`n*`J-<eRA
z1x%=DAzKn5aj_47QZR_9BVvgUOMQ6j!#f|A`LNuFlRljCVTBJXeF#%6A6EIW+6UQ(
z69*Fy6mYHafp9%VZ%x}@%-1rm^TBsOprQ>vY-HtcQkZOFq#sA9RP;fj`56^Qzn;+i
zkQ0SHlXE|l0AtXH5Y-x%oe~vAeNZVLeAwoL=EI=v?#(`I@j>T^qM$OEnAFd_ag?pQ
z)MFkHjvWwA?D5cMyPfuVpY``54~u(t_~=)D<m%%5hjAAp^@Nl?KJ4}3Umy1QaM*_<
zKI|vA?VJZ0i5&2uPfI6}Lop>idz7=seK^L649MXLTFAUrQg+Xmo`s*ePWy1iN6(Mo
zoDUn`Tc611eYilO>%)B?F8XlEhuaipg<O|?xZ=ZgA8ycyt~jnTUh|<=V>@LVG`3G0
z5O<SB%HHy!5$jc2*eFZY@Az<+cbl3etsC$j`0&t&mp;7m;SohzF*}J*eR%A{6PnV}
zF1llc?xiHRRQ(xM^x=iix@U&=E4qG2ggjFf!q>EXC{UZay0(t5*24DQhYz#^i%1jk
z(T7hyxJ0-`*hJXrBlw_aY7OW5iJmwS5K+97i#R>jL?nZVjI0oMFmZ~=c~GG2+j1Vd
zc1n{IFCsyNM?}qOiC-TS5=A75NG_6?OxV|zA|lY-+MRN@w*u+&Zi$&h<QK80geS9z
zEF!Xs$R@%oB8Q0VA|8+R>>cRw)pt!T>Jmf{Dpl+`MdT9c3bUu@5m#;zl=6u9^`Q0f
z+WnwFB(I2kqV*}3E*20`P(&dSpNXg<T90ykE~2oA5+X{9_=1(9BEA$+gj%;}Cxc2g
z?1aT=jH2~?)3Bm;!X*<dUP?r15fwyK6j6p2;{?m$S8PV4EPE@*Sf0`HR@CxVNkrEg
z_R1`hL*gV><!m(()kV5?WVxbLOGMim_L?H1-&t8|f*PXljCDoy6w!-$JrVUqG!W5H
zL?aPhSZplfYZ2|4H(_kU*i=L_5zU#CpOzw8S4wOlB6LuoY%9ugQTV=x5-DwCmfwhI
z7vo3SxPyp}F{Kle&LSRgQCH4(W9%NY>A~bbG_i-Qw&({_3X<L;z7^3&L|-~^BBqGw
zC!)WI!6JsxsH<D|u?!F~kU}EAi*Ee*PQ>>jeh@K8#NlrCi-+ym4?E~Km^;m!C2QD*
ziWny1ClTXB3>Ps%#267{MU13r%xD`;4b`yGy)L831K%G)x4zI#FF%UbO*^A%*h<y5
z(VZ$a4?BJqF<!(35feqw4KoRKZDiJ^mW^(AnIvMeh+jm!sAIWWkk6Iwg!(pB#556$
zMf^!46){7^0uc*E%oH(8#9R^cMC+!Y*&^nM)-5q~XA5<kDt5|f3x92!FXA^cu3`Jx
zbd3GNMV7yF$I@?Qsg=p~hiKiaL-vcfSAWsXKO&ZjSVOvqWg?b~SWPQ8k86d9l}x^L
z*j90^!dtDIe5gA4r>1F8Yk5l7ahGWLWop~ji`XDyBP)M%59x!o-Ee!(TyfM@QG_I7
zvy3e=WDyE2Oc^<4_-P@F2up}a2vQ)4cqQUBDIy|tj6@uv<0wKEu~Wo9G$IkY2t$NP
zt9wUc#X|z!GkN@^lm6a)vxqytCM;;1utmgHI{z2Z;gCRShlt8^Jlh%570T`sv76Su
zh(n_FeeLE5&mKB1P2%^`0;B`+%Dqp-0ovKVbMEIIfHnaV36Bkozx{6_{kSmsknrar
z;i!mXB5qUDB94nVA>zD<3nKnLBy<_zJbp+xNkzk)r)WY%oMC>J0;wd<G2i4$qNm%)
z;G&32B504g%FPM=J-udRyG)C8Mz$-A4K{kNiMTG}1_egX1WLD<+@#i*cqn@_XxrU0
z;jV~#wB3n#LbG%_acigSzdZEZ7qMug=YfcaOo%^XvT38I;^D+h-y}U1@r*XEP9F2Q
zZA=-@bBa$2{xTj)FPY3Q<9Q?Et%#NqT1j{(;=PEX626q^y{7mmB2_|~WWC+%6K&cO
z5+&Fq*d@eCfCPsGr-Te_KsFhfEE?h@j>CdWf?Gnogaio{vt%JL*I|K>QlY~_^B7N(
zkR0={c7mNsQzX>S8&|W9Gn0hO5^_uQVpU|JE)`D7&X!pjvoXqD5~zwG!OPhk5^_q&
zC1H5X|57Gf4-0uE<YSx9CFGY-fO#RtYiv_cg6oX4Vh`tMEDo8KNS+Hb|3X3$2`@*x
zwP+fNZw?E^BovoWM?zf*B_x!TP(?yj38f^I<|>sWl#%e2gz^$9uu@h+IVR-6enj}W
zi8U3JDzcd4h&4G6n<rJ4Fd|?h?hn|iaZ#;Ut?CkLNT^Azurb-RJ|fiS(oBu4-qw>4
zPH_?Wn&y!81`--dXcY6%Si(@QJ2U2?iG-#Snn`HRHZ5Y7Kb7>5pC)fTttGUPFjB%O
z32h~OBjG!?X(yq*gkBPQOX$E#X9-=Hbd=C3=BGnpPge=uIQt*Q?h<;$N=5F**&{+v
zR$ND|N%&Sm9|`?g>C2d_ycHPzVzr7M6$Zrgff9tS*4V$7@PmXwtPhJ>4wf*4hD<YX
zROsE(O=d%n3d1E#JSvQc*{nV)jFvD)!eR-3N*F8QM+s9UOq1}FgmDrkv1PrltO@y9
z!gvW2SeeLVFZY>>K5R;xEa4X}`c=XdCiJu8)1v~8S>u{6VTOd?B`n~gnG$A8n8SP)
z<7aF(m-%lJ<}sm)^O@`(=sd#FzL1t-2P^FVpksGTAijtVdUN$9#3gK$@VA6z5|&H&
zi%UOsa<5>rTEa>RtC-*Gm~aV+Q@G+9R(!{VwG!4bU(dKf!Y(#=&bWz1NrEiF$DDd1
z(%L!x-_@<K7?9v+Ql9l7^AO|CoK|>8C8!e4OSm9Glb}mDOKZG&JUs(qNH8UAmas*!
zQFe=jtrCt))_LGI3EL&?ldxaH4hcIY?3FOThUXvZq=emMBVmKXPRcNweXZ9?iLyg%
zmO|-YHm0Hj5)Mi@B;ha}>!z+r#q7T{vY#7cKO$L=t5j}oof{vOa7+R{v_j|7gmkwX
zb>M`AliU;HrzD(~aE7y+i+L!Kc#c+mOIO3=La4asqJ&GdVakY;aaqC@39lu*k#JSQ
zH3_#R+>vly!jqb=n~XOY>-lY!zDc-6E4Q(&j^9S5cO~4D@JPaA3HRCNAtMz%U_xe8
zg(^~&Cla1Zcp>4bWS!+2RqfAc@fP=x@k=&-MPcK&Q6hyB)ujhs+Lv(AGJH#)0umbQ
ziSOxHNcc$m<QSVx#>83fPZCzla?_V1Ldud385v|;Ea@s()p{g3qYRe}w+!MAMknLL
z0&(#&5@bxN?8+u1YjKZ9MzV|)=823+j5*pSrOHTSo>@jFCfiEesR|VlW+6pJkK+RI
z@r>EoEqNB0cp3jXF65GtTgE6Eqh;igkyl208Iyl^=97_M#@8~M$S5GApp0TNip$mw
z9))Cl!Q?YWQa)!=n8wHtcNF1l(OBu1vNgR_M3yCFd?lkS7nNizC8M;AGO@bp9?Hom
zFQcZ6S~4ogs3@bVjA}9}$*3%&3RnDszeK0or(^Y4i#7hQH)^-GjCwNa%cvux?*A=q
zAfus-Mlu@zU;Tf3ZYrahjFvJ^9T%pSOl(g533^)4{FF(&>P#wcdKz6zY$c;LkF<@9
za=kpck`mi;md5^#jCL{pb)JL{GCIoWB%`y8fik|6(M7f{EOe(sCZns2Zseh+jS`9U
z9O!>!^pw$;ZF(`%rGsyo^p@%An8Z9??0q=<q<|~^QbRu({bdZ0k$$Ox`at^kGJasQ
zVXO~gKA4d_P;*0=52bL0othrb*%6E*8R^b#y4!P%jIlD_*K#e9K~JG>U*`Ey#!o!J
zakK<vOp@_4MN22wco`>7Cr;oZx^JAiF<HhhGUm(pO~$VjgfeEzm?h)T2+vd*)0kAq
zW~c0Q<}(=Aj&+klX*Or)$XNHg`!qcTEMp#pM>ae0LX5xDQTUYkO&`~Zjfo3nETnVn
zuM_`}u~^2R%oj0IPl{x)!jei!St?_hjO8*`$e?Q`8)fSxbES;+GWOoEPA^x<SS@3X
zjHW*%{w0IXHrLA7W!fpbjzu~PB|f`P_6>A~?@9X2lk~TYO)`A4b>%Z8BP>IdAyKIe
zMMgkIPzL=Qre8+U!8Urdgg9MJC#?6u;-p7pM7g>qL#2f<z<NNHyw&_*BP1JLh9Sdb
zKYcq}MRajstBh?j&L}vmV7rVR6l@AQDcC9F9~p%de5PQRjNLLG%XlJV4~<dASsCYK
z{3~N09WogwW$c%6EUTy8ZO@Wbi3emHl&xn)56L(p<EV_ooF#=GEG0Z9<9JN8w@;u)
zN=ZB=qs<IY_2x-M$9g`^^_-?&aiVE|dz}6#1Q%pnm2pkRhEj=iLG_}HOTTz7(MN!c
zD-<N>os_Eo?W8P`>oRW8Msz|jhGhS=Bk`sT&k5nKj9W5p)AV*sd|lW@`W@y(?#Z|>
z;{nIsLm7|Qo|<knCy^==5`QY=8R-fV6+D;mf}&c+2ikT{Sic>-q|c*0o>wwnvy(TB
z?-<`Qc0VCdBA$C_;zyd#iCJHr5I)JUDX=SuQ{YtKQUC=R6l7H3P%z}gfA3YBc|ur!
zLfFnoJ#j0DSCBwQt%0>nE}Rf35g{}BBAKKhSwUt6SrqFca0>Z6DYP!;8UEUns(>&}
zK_<nDXX1pbTD!6;@G8im&_B5(W@F5*Kwv_Oa8jU!nNvYN1^E@^QjlA*mTDdad6|5D
z^1uBgQQMhVKmlPvM)IGY{ais|1@#p)Q1FF<A_}S~sH&i-f-e<RQczhzF$KjHjQY$q
z?5JmHs;7j4(hABbAYPKO6eIckN<mo#6%=%?<SM7&Q0c_-3YPbA|9ny)g%a_KtWXhU
z2cONJw{7;|fUJuvCsk8WT|o^6HR(`J@%(vG*l<#y54&0lE|g8G8%^^DoV69yQBYSw
zJ({u6_CvWmE2ktHH*6)=CYm>F4HYy}&_+R91&tMat)Pj5riyjr=#G=Z^^-z{@$UEC
zob*PQW(t}s$lAlzLP1L!+I#n&bN0)VZLJivrsF%#P6{P8XWTam+9_zSpo4;rO<W)P
zdHx*iS^2HIPtm0JCk6WTDsis6vw|)P6a{_-T@`dw@QZ?96?9k7L%|3IBk8!G68@uL
z7<F4gPX)ac^j7e#g6|Z3uULCX9|ips^jFZA6YUZt5+@v>U?7E7rNlC)1WH6G{lG<o
zSs%nmJI@dWLs=&SwX=tI68iOFS|Cw&d*-%wkD_iY@{Cq6FS{pm-lVtJJYy7$Rq&&N
zpA<|`Fj2uc1wShouUNk-QfkJJ`;BO5r^n|BC$T<R!IOb;FQ>UiHMA2UvndLuQVb|q
zMuBunm_|(~m`~$f?3}J(hJu+2W+|AhV2*;h6mtBAE5h`&nqHcBN+A4A!S4$GP_T$P
zR?~Xsg3<y73n>~4x^jdpC2PaP#R~pZu!N3a!$i8vlmc%`l_W|;mMd77+p|K!N(I+O
zdgk<Suc81@uu;L^3f3t2OTl{T-UfSndb5iHW3y)+9a)FH6(`Dm^U1YA0bQ6PWfLv`
zA|6S>BS(^txyZODkVra-GR@v}JCT5bpn`o0_A3Y}2-7N4pwm{cKJnj{PKuU@f+&Sn
z%lP~S5>$n5LAMd16H$W>N`Kd|HZD`aW`({5U@PtO3jR^Bjb^o}YrBFSOgi(!=7jVX
z0y=@GqFoAhE7(KpWgST0OY2T_|EpMpO6lA_{bc@tf`bZ9DmbMeTQgUM6lY>E@sNVU
z3XbrGb5y}`CdU}*X;4ZhnA4OJrx)PRt)8b9IsvxN=#y3bkNcd0^R&eLXyV5O(rI(^
zBgKzP3N9;nrQkJfm~E4;D7dBIwt}m4^ndhFy2j+Xf*UdACJlM0bJQupf6;M=0*q#x
zmeNJXT?O};5WlbBL5wdS?tDxUsNjWymlSW`x}I`ZpEG~Pc%{8{Y5hc!z5FBVGvec~
z*4tL;V*VQiHb3Yb{w?h@(-Plt#rL$MHld$5T^|&DRPc$ji%$uAPYER2{fP79-k?PI
zt<BlvM+QGK`r+`y>4)2oct2cz^qH7QNG}Z_LS_km)UNJc(?5<BO2kP_WDiMxOeyx?
zx4)+Pk;RX!el)w8n8ujNkIYQ&oDxXP=0|p})xZzI53e7k{V3zNzINsCBflR7{K)A?
zE<bX!NO~S7BYd{Je&nO>ofa&Sv7jG?{3zl_QMUQakHWE9pEH@A&qKyvFt2l3_|lJJ
z%u6yBXDq?k@3b(TeU{?vGUi|TQPz(de$@1%oFC=6sHz_o{HW+hWzJS&d|fh;8Zx+6
z6;>#F{<Kgn#;Y^A&IYyos2kI3GpXapz&|`0&It85Tc0uS8Ed38&kcFT8qw&^2#py@
zY)Z50M|VGZ_|e>t790jEdL^~=W7}d^J3m%6aJBNIwck4FZR1B<Cd8+-wGn>9+4J38
z?fup-aUJ~V=tn2!T^KtvHa{a!X;<b%x-rS{ZMNs#6aM2zKR^2W(bI4J!uz^sLN7lE
zd;9UN-@2C7hmlBMCdRSU0W?fMM)<8aIeh2G_kIlZW0>E15y1~MpL0Cz&ImaMdj|P2
z*bgE@7%io@D?BlAI34R|Npy3F(84;S80p6-KSulUL)pZ!)Unr@$56yxcF;~vNOyPK
zQ4+`b@iUD*gl|F^@5cm6K}@9N$0R?N1h6z<z0Qsn>|~nE{H|a8_?6<>kEt|u4$p2s
zrui|Q-Tvdp3_oW2vB;0be$4V?wjcBT_|1<w)cQ8hTtDXdF}%8+IHjT0?dkk?KNhgT
zLdO5m$>tB5f$G-M{*yZ6N5GGuA4~mM=Eq-tx>*k6mw1-@v4R7Dc&2Wim45nr@kC0i
zn5<@8L&H2Hkhso|^;CC+=ia%*4SsC&TVLWN#=rgWG1<gO-`A*!Q1m1Hs}^NtE>al%
zjC*EyLVj#;xpY4aI*!aEj8R6FQDdY{l`QF}Rg;3y4<efxw=izyQ9S2c!MC$Q20Q%N
z$^4J5cFMNtl(@?e!o}a(_xQ1w7s9MEu7Ca5=f{5Pk{_i4C>_8-KMwiv(T`7l9Hy6l
z`f<aLn|>Vi;~351T<1kUj{9-Kk8_+Q<)j~{srp6hlH)1bOom#QaL@R0){nVotSeyI
zWa|<!rSn|nf*<M`;XD^z^5e1}SNyo@$2Bg!&iIi_AMA2Yuq9E&TYlX3<FOx4{J7)C
zUA8&Nmq73Nao>*z6fHfhi<y)ja_J++tY?M6udR+f_2U^UZy2A`;>sKM%8wU*yksT!
zS*xq1&I+$NOT3?$_LjoHkM}X<gCDy@s|iX?&I+~w>;YsCKnNf%00fX2KvDo1DE`^T
z9YDqa90534In&GS3ScBRM4W8mW0na_JdA733dsSa1dus^ECHmlxNd?yEr1Ojt&5zL
zG6m3Jw>2(GS=k_40494*|H;4`K#l<N2T&k@oNPdrxdJHC+p3j2fIKYb4Ip2v^vzj;
zQvY(Ef&mm_u_)tb0el`n;Q(gyj}c$Q?280I*T=|P&T|%i89*^EDjq<I07?c><($y8
zt#k6&>{Lpr>p7uJ0AB?#Ab^1ZlntO<0PO;3A3%B9E@(snGz_3(0F?r$5kSoVDwC4{
zs>fQa%A^|OpmV}(ZkIgMA*&TYZPx1rP=`rf#)WJ{*PPS)P@hHhoX{vhe}9HnoTZ|#
z185pRvjCdJltbr)<^i+_pk)B@s*^n2IVU8Xw?_IEW9tCguyI?)Zy0SIoISa;LjWBE
z=n=qw0_YU5u1<GhgU-xr=8a3gUfnf-ZUJ-;U^Lev=W}{Hdj`-e06OA*1L#e|Z=Uom
zhryYztZV*#0_e=YhRi)L^kbhS_Gc13FMJok_W?`~U`7Bx1TZLo9|QO)fWZL_p;p*z
zXaK_k^pgrk1~5G4;lX)f|9N3KUrrwtK=K7^q$fmc<&I&Su`$bB7ld&E{2ajK0DcKz
zJPk8s1=U10m=HjjX4Y&^;w=5FL!8ob)A?%vQv#S8^D`|#FN#d8%MGoFbIlB3Rseql
z=toB9Y_|EGaZUhp1DF@Ue9rzx?RHHVctPkq#F@V22^YkCE(~B9JERsD1+bX)KVzl$
zTW4Pu!14fc2azX;6#=XaSntF@5UT=MO|5+H3J0);32|Qle=%RnxGtuzr<EAv8=3qa
zz$PZ43j$RXnM;f^qryl<{s02ZgNz}@+gvLWKr{d~0F5RgfI9)`0T=-s3E(KL?f^Ek
z@%{j|FxkzxHGpjaY-djX|6#I&ac2N&7p?wK+C|%xmX^-<aOvIv{taMX02k*wSB~T~
zB#{gbaOuGS4lyC+Fq4<<ZO53L3gC1A$C;mq*_;eu;RH7spP_9bfNQLi+jC4V1#q6p
zg_!+C+L|s3>+*XpvvMV-Uk#wS=}hnEbrx?h-ekN*8wii+ZUFaKdC7R6@iF6r03I?S
zCy$uW*oi-3d>X*BSn2ZsUc~q}c|ETJcpbo-nDUXy+W_7%IrS>@`v5+~I63^p+!nN)
zQ?fIOW2|yf$Ph%vAR>ib4#u28IGMPDa5ISyV%qe?WabIXJ&cJ#oavE}#MtYikisHa
zrZP!m%oIfCn4X16R>o|M*%<{!FJlhI*){FCxH;<8;x6{QLF5ZsS3wH|kw0kNEc&>$
zjc#a9Cv>t`Fo;4yd=|v#K@<+6au8L5^be0H5=5CGz6zpf5MKsSBKY5LZN-AtDPQrR
zbw6bK_c$UYxwKRerGuEv_euUwY1tsk1yP>usUlTLFRBnk#ULuNw{(TDY7o_e=omz&
zAgTvZBZ!tkv<jkT5VeA66hz}7YSZYty6OZ`mr44~hxM2@2%<g{GN79Y8^$=<e9fH1
zW=xteHl>mB?T%#MoRt=gB(`SKCWyBG%jO#v({EF37exCYI?zPLJWwq<i|ZUjzaaVt
z(ItqkL39hEdk}Paq{TP(9zpykh~7bb8?;WgdouQ7q$?_<kQrg0Ao{X6hEJYJp-U?R
zf*2UY=%Dqo+3y$!2Qegw@0tI=IEeArivrmUWj=y&7~^opKe&_(MpCa>A+BB&#so1o
zh#zB0xfaf!f*8lypBcw9()%|Ku!l)BuKcdbAyf%rauB}+@oNxMC}u+VDuk&Nib42-
z5QCT=wC?byQS4~#ni0hBIbAb@m_-2-#GD|O(-s}X+@N)J>yIE7F`36WKZxJRp80|x
z7BV5TT?3qiy~k!>9K@eN5H1a()DG)T#U(M4o?S*0&LZK;Al6a5wTxdC#A@nZHP@OT
z*0RB0oNZUxKCfB)#s+pu>x0-3q*vN{HU?3=RZ_V%iIn~hqHKT9CPvCiLC8TQhL9A3
z5`;g9x3q}5B?f{B25~Kj>p_Hq2nTU6h(i=PK}3Uyn~-=Q2sH>Th%FTSLFlvq`6m)1
zh~yD=N@fuB3&>{1D^C)MZwq335W9oe6T}YIcLwoK5M)CJyO_}LCgi8vGY=_y>0kx1
zpG!$kceO9(Fum53ivoRXxYH~9;UJC&ae}Af2;<Qpjxnk9qrFRsq?19M3R<u3yi6Ww
z%L?Lr5EocE%XlvM-}iQs4ZXDUB8$W?F-d<#XZp)Luds5JkzVq7BS=5K;0=wdiR)Gn
zw}W^b#FHRBlbh(dB-|l=hUab&_h=eZT=y9t2JwIiDN{yee-y;X+;PN}j@eg^_GD2#
zZhzv_Af5&BoLcGad=bQ}AYL<nNn6|{fyDnIl%?N;^3|}v3*tSkuT<xUAZ#JnLl*xS
z#3vSOKZ&DkTnGqRuddAy!YR`;?XH_HtkG>w8AEV{;0#&8Mkyf#7jt(A@gY>Z^xtdm
zL_DmMNM^|)q=c|xj=NEFS851pRO__kixAomPRtZS<`A-kaG-~)#~^#w5VD1kH-vm4
zWDi-FI&+3l#PARiIO}E1!Kj_f-tS&wt`G=wliRNLJj`d_OUxgFyfl$gp%4nB^DB;m
zA(ZN#K)1`1{#gj0vtBr4-8cK~XV#nLiiA)!gfFQ}&78$TC{CSEc9w5%i}tWylU^c(
zdGT3Fl9LeV<!>~c(mXmMv#Z+6hEOhq@*z|R{rB0Z^k<;xxul9Aq(7rXPaaj`Qp(b|
z*Qz1Z2%%=k`X*bAv3dw+%UVUXLZ}_Gt}QeOp$-?3STBUS%;{?{WhvE<Wy!K3+cyfK
zaR^_B(1f$;mQ9&AV{FdYB7~M9v?5L(V*bfE-98=L(E%bq5j2gULkJy1*#6FSJcLdm
zbPi#02!Dpqg{IeV&>s?g$D}J`w-CBB=|S^D2lSn5#+JCAA@mBNH|zZ<sJdnOmU$n>
zzKmo>-YE6w>;T4rjI*}HeILRPAq?U<|A|F9D1$>762j0BhK11Wk}x`iF(C{OVFYJK
z(gEG!7!^XT?T&h1#8ILwnWf`cw)v55NE{c!&vgAKgdKHUe_ax$hcJQLni#?)+WA9x
zurs0k_OvM>{1U>iA<ViY^lX+;?2iN~M|@lbOby}tG}ko7Qk`w&VMYiuLm)DXaW>-|
z#<`4CG%tkt%ztD2J*F=RVIlKBV#=Zr?zydwP1@>M62ehF97{u37Q%80$juHhL{~Pf
zKwS~S$`JZ@cdnw9mBqC>gf--Zu5R6TZ=#v+khnI4bs?;$B^koT5dP+2&aYsj%QA%j
zLnwRv>jYm2x0@vVuq6{UA<>edj{s`@y4xSZt`J&uv;{&4h7h6yUB|UKge@V2Lx_YB
z4MAnmpqOW(Gd^mOu<MdQiR?{QE-|O<R+@ZPh;L)EJ%k^}xF}0$X9)kW`1q=uvb#gr
z6T;pQ{-xa`go6~8g)*t*T>C<Je@WQSNaXd1_-vPjTJPM4LMV1wXna{X9KsPEa-Uq8
zXu6K2&tzX4h4+aNPSO;GaGH)?7_-7SLrap@T^RMkI2S^PVy+7zTnynn^R2S&aI=I<
zAzY^YDhwfvov&S2XiEv<We8V8xE8|o5N?F<n1bz}gqtDU3gICI<XiXc5bn^P`OJNf
zQL7L~{4RHl_<f2unzssZ>4}OSQ8z}!_qZ%fI+XT=y}4(`KMmno2+wKDS{e8GTNfoF
zuR?fD8+91YFy4glmd4U0Q(V}>cOh(R9QTPPhs6(!9~o&X$iT*CMC@UZo?e77GK8(2
zJR>8Ok`q@LZqBBL5g$fE7%7~kA`d%B4kIy)B=$p9s5*H|N3tP8DJ_glVPp;?3)jsW
zMz*lk!}L<JPv_n+a)ePJjDlh0WXrsaJ7?K)g^`<i9>y`3t<Ru*%=5==NGZg;QW%xP
z_$-Xi!zdia7h#kRqf8h@!YCTXmthnOW8?iavOhA(MQf*c7$w3e6-K*k@xDy1l1vDR
zlaemhON#$0jIv>rqaaC&&-+!}$VzeL!|3^ari$EX1xCt}PM)iTQ8kP@VJw>Hsz%N`
z+iHYSGmPqNMp?3{#k_Xd+EOS>BBgX*f=T@_uEe|ghS4C5hG8@cTRT9<Fgk_NIE=5u
zXc9)#Fd~&~v_hMO(L9W{VN^`W)FO=h+2dP=(JG9UmxcK!GPe%n{AD5OicsN-&?ZbT
z^~!Q0E;HdbG}tf(ro~gO_F;73>LlJO5l6~Tnd3jExjKiDG2Zp%^tdizbPb~$&EfR8
z?lkr=dWF%0MiIv1VsYuI|KqgYVGw>BMjzIRQxOd?os@l?){hLr7(nfY@m&~W!}yUV
zA&fgCUBki{9>xz8PHC<|VGIr<SE)=x!suwY+jWj3K9m*TL3fRMt`T933S)E_#7EM!
zToJxsnI)xM+!*qCMM&<JIpG&8Ab$#D98Fyqlfw9!=bXgx6csJw=+T1-VW@p={TpX0
znBtmDvC%yXZJtw^{1V2mOs2$iDy1}yv(v+v5k`wyaZOm99mbq6PSa)*#@sOGg|UJr
zKMdDy$NVt<Wbzv$DZhuYAjTIm`Gav0%@~t4R|GPnv?PqBtSn<(&Pe)V*j6!D!_dN5
z9mX2Y{zb7J#^21>GOi0_Jrk<6f!5tl8<9<{NMXnn=gh^JP0kFKff7bAruf4Mgsne!
zAiYKgTPTb$7e&H|#%xF*1RJ3qh7rag*3B?BGua!)mYC(vFt#$^#<)GE?+9a0Y}EgR
zv5WQHvC=(EI_|Ri@NXFVV)}k22N(}By7xN{$4ZZcag_P7Fpe`h5yr__X(!lDF)zSV
zeU>(V+J7P_7{U24E>IAL@hOapY;!k^dtqD(<1%NjgmE+G=PHwHVO)<XHz+JaS*WYG
zSh*e3?=Yc>y3gck7|)nI2;*VQ=1~}rnLmjsx337#nZJ!GFT!{k<FCSaO&<ZYSdv_a
zlU&rO=c*Mv@7Umd7$2BWqa@lQRzN04kP?ACg1894N<xJGpCU^J<{23sj7~x(m97eI
zCh-vvC!Nr0i^aqUlGp<&<R_KIY!PISAdNZcnIg!{JWB*wBj^TOS6DGaMMBIbcLZMM
zIburA2y!v6%gyD9>3O-ie2n>HO&5ybvj{53Y(9^m6!XH2U&Qnx5fqK!OU@Q!ED=HR
zSn05<Ldh7P!Ht%V&=cbLip8>w6&TA!P(EgPp9fNrriB$+2sExL5me=DwFqj*EUQOQ
zgLzHHS}{GC!B&TPUB-Hh^%?K(cQlBgA@fFzjTygY3~^h{B4{4Lu86fxTSU+@VtrUl
zj#!@{^w?3W2wF$bhDFlbMnEEwZz5<H!7rm-dH1HZr>_7Jbc~==1V2PDD1y!rbfK{q
z%Cvn>mK_HiT_flb!GGx3MUZ7qe0N6OOe5Yif?g2}h+xdlgx+MspZonH_%?z*5%i5<
z)+l#$mi4Jeq(^4!^R7ReZC+xFR*4%J!FLfnpXmBN0!q=V0$pGk9KnzXhDI<ff_$mj
z4_*~2_RKb<T(;p6)Sr-TG_@7M?W@9w2o7h;K9X@1BbAPg;KvBY(J;9#Rs4y1d(HAd
zrQ;)bI>R=BW`p|>XbN&muBeGg5fD=Meu?1M2&P0ZH3B&TC4y;We=+X6qON5TOs9$6
zWu1r5h+rm-E`r$+%!%Ol2o^-F53jiq%#Yx=2<CAUlk>(ep6VK(KhwW?6DH5L-KZY7
zFoHiQR(rS>M?fF<wTru}T@w~X(Dim&hik&0TtuZyBJfO(TN(jXr!2L;Jc1Pwtc+k4
z84rqE7s2`nR!6K)PfBYd_>1}4n6mbOZA0vc_#)UC<9|o6iTSWWaqo&)AJ8IaCB}&d
zZ2kxuZF6jmU|R$M<`aHT2yzI8A_zwip(7Q68i5vp9>JlLX>IalqC})xyDSEE?3!TG
zcDgTZ$~B?)=uDd<*ndsf!q{%OYkLI8O~=j%{-LAX*S3QO)x|cqvW@<Dchh!9!^LsR
z4BPGq_C&BZLQiF)ebkEWeN>$eWfWPXI6wz0f(IP)hv?8pa4CYzoIS#LI)bB2sNyju
z$0IlqQ%**3DuO(fY*bn_*?Q&s87?}@c#b{=m|S4I$hcZfATvr=ID0FCt4u60g6lDU
zBZ8aEtNmj+zs>v(<K39ey$J5d_>zjYhY>uA;Bf>`BCthakK$<r&)DDtEsdDv>j+*j
zf64fY@$Z9HE0o@F_ATQ(#`lbOuL&QSkj*FhvR~1%kBb64rOAvL7~>f;M&V%MWOOl7
z6*rUbdSy<CDV``2V?2oo1%C>YRK~PeX{IPLN8wv$O(0>mD6&UUEQ;b$2yBy|(aV^F
zF(+d#Myi!Niab%|<!rtvBC$~mTP&XiST7hwp_u(=QGCw4a7_7vNs%auGWnA6{kk}+
zUV?eODC$R1GKx}BlxC$u6cwW=!<@{%Vp5i|9Ao(?QmzYBR4HatD~ifdRN-vZC~Cy?
zYD}s#=04!486#AeQtc?}u+qP0mbx@2lGQ6p4WekqdP7E18b#4K#=nlDNfb>vJEo$I
zQhKfCQM6#OC1a~7S~F=A#f5(y-!N~>NLfnlSf{!jqUgwarzi$RF_?MhD7r+^HHvPW
z?a$afiXKt?hdEXJmPyYjdc~C9QLLO~Evr7P^o{BLm{gsYg^C6+AISJ!6yL{eeqge0
zuQdZhq8Jm?hcX!!#qgLig2~7zMll&3(`g#VM)6}5Kd~|?rjKLta}?v5Oo-_dnH1qe
zIhpw{QOx1_oEpWnC>mZxqpO%6#f&I^IEq0>F*Ax;)VJLjyBo8~IEpW}pvV@?jbdID
zRZUbgF+YmmqIjg@v5McLSP;ckavsIYla7T^Xi?}<{1L^XC>BTYXB3;FsC3Lxvw?H`
z1;-Lvp%>zpM)9zqb6FJ2X|Y^MS`o$SD7FgDl~JsU;`YF_j@O0J*M$w&1>?G~CW^nJ
zcyL{ymjkSgTJH*27sYxe#5Y8-k@??@C8Kr{eNmJx;u0C9DC8)VDEv_bqX<PInf52|
z5&}^W{(ZqlIH8C;OskJ#<A#uMLnwShh}>~R$#W*B%9v}l&4{AYF~<+b9J`}1qu3n9
z7V2{pJEGW0q3CgLW86-&=dn@tXU2b`NGH3P49(`GQo=n^?2Y1I3O3zwi5Aym$G#}`
z)BYdD!6+`Wekh8=QJkY4W`5F<D2_%^;hgPs6vv`C@yJ2xB$MNWF~$2Rq1su;DbA8H
z*_>g1HVV>vxoziZQAE)_U)uB=!s-`}V*g~jx6isq>%QA|If^SZV=t`h8x4|e*Q2;W
zTa$`>DsED5|4nwPaH+UO2Pld=bY$zg=wh8(#d$Z1dr{n{V-&^vC_d1^rSOPam-603
z@tC%nH0KlA{AuPtITq!1Kcg<)5MEFu+!UTiar{y|rFm;?FQa%B#hWLNY&QkM*HP>n
zpR9IFAwO@~+dIa6<!x1O3Lm5R6opMih83y3vbyamx@U35sep<tMYFWJDa<VF-aXyA
zy)%P~X*Y$8j1EQ;-74Krg6zi}IaF&P35=N-Jt`8JBrzs4rZAFas*1E2|LdkeN@f*V
zSjozmjWIi;pkngtcuHO-WSmpAj`*7L?p!Kzt0;UZA&-iG^E#IoPHueMweYATzlypl
z>ZvH8V%K3uK^28me5T@a6;)JJr79|3_ew6NqPU7LR2(amQiQQ6BW1s210p}=Nh_hE
zyow4cN~$QOqO^){8d<j&e#N8=<E~SVvfQh3j8|?7FK!AIRa8>(VM$tL74wswOYXS#
z|K@Vt62?7tEkER_reaS|>(sY8lXFgI4Qk?+P?ND1V{OJdj8xRGfU~}e1}Zkw0aDRW
zMI#lnRm@S*SjE>WhN>8*qKS&8Dtb^)R5Vl3Tt&}YLPr%XRJ2slUPT8LZ=WW#Qqhh{
zYZYynw572yp;GD?B_gCys(;Hm`~Bisyx~mlq@uHmE-L=8IlD0u>B?l~LOb#9D%L01
zi1bv^O9lOZ%@7s6ReY;rpo(>)<Co{Qe#h*iqOXd6D*E%JJq{-gU_wagM{e;u72m7)
zf%QQu22=O=AF}qgvXh@Po#QCgNKUR<*gagu2s*x#(|%ELJEMCfc~J3_icu;~A5FOS
zCSkOSF)GHgtM#`8N|YU^;%5~TR2;l$jd#l}L7JI7Ud5Rz&N7J!6IJYeo;-<y=SA{l
z6*qoPuJj@~`9<=tDyFEIN)GQhXs4Z~;z4{WRljsgn66@mikT{Asn}2<l@bvuA~Kg|
zKF+PG&{WK$kWld(ZT>1Ys`y*Q0u>8YEK{*u#q(Q2mfOM~D$L1Ai&QM8g`ncA+rknR
zOPMsiEl~FR+txu@d0Ti@K4FE5RVr4iSjo+`^70x{@fS@v9S#*2ZVPKwq$lE5m#Bv-
zF79*{x}Qv05})4|HmUHb*8R6d?g+(Q@gj4|N-AXLN=)%H2`~m#gkpM_NrW-VczeA|
zS7Fd_&e=_h%wx%GpCm+2C5=3mJnNX%v?nfMtBU<Jw5twE+f-~<QDk}Y4i&|oJ9eu0
zhZZu;*h2@cpuH+~^BAvRv+top<FsPwUlld(ScBTfMZ^!#F;#I$#bG*dwEe0$qT(pc
zg9>l)glcn>kEu9Cv7v(aamEvjCmGw_5za6<OW}7%cwIQ2%!r&*ah?_8#XgI_sNxbk
zysY9H6LNk<#Z~4{6H_UBoq4))i-J?dJr(y=+);6t)?*Img$60wJ;&ZU?n!rqOE(-3
zR6L}>yCa-_=;)Q=4BQbWu6KRgChduer?j(asHfo>1qlViF~?ULUeLTXaOTmFSHnvc
zuQ>afHghB-X?R0RM#Vc7?^QT7_-;BrsQ5^GzJ`stoS$ejry2gsW!I4Hq|K&TVKXVt
zeff?MrvV!M|FY}l9f2^ThD>*b(-qxqPdS|I$Hm5O4e=ThG!(sS&3~eX;!o@z4K+AR
zgv4YGDH>8Wq-n^m(d}FKRNS3OLl(_yT{4q1YuHo4P5ka1M^@^IhHiI-k#~haYx~^^
ziCzs&@}}j~K>w4KL&Nv~x^2nsTpDs~n9Hq%81re!uc5StV@DmYoC!)}cL8eaxTBzk
zLK;5PaQ8z(G3uU%&ova*@P&pV)NKu4YB+RPxRTR(@2=2zm@DO;Q2d@Se?W?q#a;iN
zF!P0@goXjnTqQM>(lE@KeEvi-y$5F1a|dk^Wi(`H=$ur?Syn?i4dpdd&`?Lim6MK&
zJoZd(Ym={}p|WOuN>*X9x`wJusxh8dtn&v-H8j*@g)D1nsLed%cb11YM_irL-1Rjy
z(D0XzwK^JVXr$q>h9?>tYxr8jat$kJt~4~&Fj~VH4b3z(*U**bQ$q_4Ej4t|(2<;6
zN@=B`b^2ktClpFbXrrO6hUxc&J_}R6(a@t$Qaf&a#XX@txxHr{+)f%gYk0_<vR%mG
zMr+?A4BivEQ!NeO(E*~08hUEztD&EUUK)C9_*O$74d?o%#N8M2+!v~dsnzZa!|JEi
z@0o(~*1y>Qc3;?bU+B+`4$v@=3F+tW3qQ~#KM;^3VYr4t8U|~~^(x-(Pu-l~J%r7M
zYRL0I7^b1@1EJvqVT6W}8b;B;9|$8K2&Y1+w1LOTS;lJkQNw%<?lZ|hX&9$rl7`6?
zMGu6ZHJpDSOki*0DZC#D<9E6~JrE{p$ox<k5=k!pQ20f|6b(}~{Ho#KgoG9kg)VmI
zG@3N7HCMw74Ie6JnXO@thM6qRVkD6UGU%Z&<)LtKeKtBDo2OyZLu*R6JrsV^@VkZu
z8Wz$zdL&HFobU(Ns<Yj-Ov54#i>W!cvt5^zKQ%1TKxC<gdC%<$7i~2z#FLZL4}}*G
zg_RmsY1psffQHo?)@X=mh*Gp@SgS$SplB%gNLWV;U&G%T)@#_Hq5Eg<s*i-*_Z{6H
z37cqif2L3pnfPdEj|9p}F`cq|9to>&Ci^u6Gz2w-G+cK$-H(MzzSO&qgs_HP3E4;~
z*4(XX&?u{6w+3B<p<xF#N0wV%A&2v`$AYP0Gll45VT*>X8n$WJ9z!anaZw_&Q^P+R
zet9g==kJq!scRn#do=8&<@{KPdm@k$eJuQ|VIP^Tw4RAO{#Z~)q#UG0t>G+%oQA_1
zj%YZk;S>c1QtO;{9Hm`C!*SXQo(SVNr=H*mug9Dszw;B}w1$IEgsV@4Ga5!b5ezE2
z;5e`0f`(ffZfgj)O}(h$8Vz5=B@LG~6nHAUte+}HTvs#@US<5zoqB^J_H6vAWhpl)
zex3@-KdGUo!e6^w)t{%{(Qr@0eHsgQ;O?%}i%*3Iw8W^&4%Z{v(s!qRcq(|G3FV#%
z)Uo!@gr~ImYpAQEo{s0V`P06tBTdIk4X<dPp9#>>dvnrj4eu!$X+^kF-)MNN;T?tC
zxs+^Kvdr6;s?ALuaM|&Z)@B8#UB@R4HXWpV_e}WxnUFj;<?{Ebak}O0;4>kEj*L1S
zI-EL^bZbBF(>#UHrNgZwUI)!5rJK(LN(nkVIudmdfA!Asj>TjhnV$<Oj8u_$CgM7Z
z=qRcqi;k>1^6JQ^Bb$!ww6i@Ia_A6roJmRW>KJ%4x%hK|_`v<Cl>}!_9l3O*Y!kL_
z5pwG|e$$GRJUWW6wiR1#%dew=jxo=L!a54-$a5)$s(-GdkdDsJh0k<ryQY*S%}sj8
zb*?XTta>h(&xIq;g)em!(@|ANHS(sTgpP7L%Ihepqm+)aI^I1OT9!$Eo+oA3#-!3Z
z%J6J_#YoD{=fcMQsRin!RM1gTM`ayVXmYl@D(Q3rDU@57^7(aZw=DNUm|NF6X=(aG
zDEJ|%x{jJUYU!w<)Bjtg)M=AKrL}d8DxG{~RZ1P|L*JC%FNATOQbxTH>g#AgW;zDb
zEa_;ZqrHv}I=$8dU+ZY5qq&ZmFN7xa0r5gO`$C|}X{w{TkdW!GlomQ#>e!u@)>cO=
z9j$4qUkYt>JbEG6UJ5%Gr%<-YOF>+l@{NvhhN~UL*h`_UnOee3?Wm(oYDza9-F0-L
znbgrmN2U%b{VFANrR+;#{!3x)OX0vvp@%gac==LTFgUHJjw>&PUOI@=pr|vw>A>xB
zeXFDCiPS!feHr^PlGvZg06OSQzKiMK>-ZtYOAbjHqGPCzsXC_VSXen>n2zx}CeT87
zB@EXwLdQs&KpmrX{G_ApE1}3MVT_I+`ACh`QTvr}BGrmv+amjd?lxhIYaH3X5`LyC
z6`eC)2@`eHEt&i)VYY-xI!<UV?UgWD$1m)GIMpSCDQtG+l`vh$3>}MfET;L_F-ym9
zI)2wNTgSnB*%Dq0bLfcVcRzY1%+;|XL+U(6BJ<fHkp&d|Wm6aG_(MnO*TU8QX^mbB
zbh<n2wXpcLpuZOW)UiazQXRJ)aZM5vo*s2A)A8)Ju#!Baq%EhZel4tEq^m%yD59=f
z!M2+Huh9{nlA7g>uujK%3L68B4Q$Y{k&eEO$2$Jju}Q~a9Y=Kdbci}O>)4`0(jn`J
z=!nuPcq1IjpQ`Ba>j>xw621|_6bWyHQE!A0b?=QpQ$dsIzn)49R@I?V>^)C)z7=%t
z#{M_L!#9GVTicGwNF*)UwpGVA9slasM-6RrZD-@1I(E<!ek+hd1NleCE{a~NwIH?f
zTVW4HNGU5a_tIh?pGv9y+LZk|4(K>UPI9OIG%w|wPHD~F3I}xz{~?u@UXQoJgtx*`
z9mjNB&~cHr4mz?rT<ucM>Nu(66t(zPIHO}_pVWnKh59#>Pt#!E3NN;}Ha$(E_+J%r
zozroi_NBK%i-oB#-wKy>T&BHF$1U1+-U(WK!WA7?DZt(d*K}Ohaf6C_Bwxv&9DEV~
z_*z1{cfyEw!fhRQXk8c2@<7L39rtwHr=91k#5wPTP49&HrBipj6S}WXx%5tWNSpjS
zf%-qJc=8h+PiZGH@VS9!q|^3mAl|?WT5dYt=y*%BUBmf`MzkTdz<c2}Er<8k;h@=j
zr=!AqA%lU82HxxVpkqx+!h`+EA8GT~VKdO;y%1+ud%NAh==Z{g_rk9C0t{SuFLWr9
zrRIqghk-+MC=IOnDfxQo)GwbV)6V8HtP@2d2?jg{avR8FAkjdQfs|IMISnKm)_$8}
zAl1Oj_rlaaQnG#!(hQXRAY?T_Jd=UU2C^`x)+v#g%|Lbo0{6#jAcuiD=d(U<oBZ_$
zp;4)nmX)1dJ_xxC%)68{^n=jjiDTghp<U*Lyav{P5b_!Lc|i)L{07~ih=QCg6hrb)
zMTHG~VW5VAng-osilPQ88K`XFO9RCWls8bpKyd>l43sudhI(sY#K{Cor3@I<=M&ax
z24x9%E3U5$(CO1uUuszc<+#tp=`*zcxU`A}PJR#`eGo2fb<xRc6)vq#K0gXo4OBBg
zCy?1c3QOOnY^;$o{jK#apq4?eI(OAIP|rYZ0}Ve4C6~JDP?yT2>L09=y&fNhb1T#8
z8)!hK2KuZ^&fF?x=tp7lN8xJ&O$_WZu-iaW1I-LfG%(3Pb2`2Tz9nM=Ee*7yZW!ok
zptXS&ABDQl6WY?zd79kDK=7k5u4(Ew2HF{DZ=eGmz9lI)J_;QTbTV-GqtM+zXX>_r
zt_Hf1&xeUK)}>IYktKl=b&rtDDD~jMlK<Bqg<jN|T*=Ryr}Q>3*KqYYkdWh((APje
z15f&<j5pBVzyJed42(4}(7<<w^|^V_=KbEl4-}B>YLJ1dpM;?Xh8Y-aV2DAt6T9w@
zvyR2$>#4)(7#SF8U=$7Wlkn3g;jd4^u1~_5PXfIy)@Jh_xs#gB<{e`5{%GJQgFfJp
z&+ffx^Ck{Yjk9~-Hh0rX`Pl%Sn3Xx3I)R3HC8boxwAyy>WCOn#kPOHMel;+~K-uE1
zr3R)Nm}X$1fj<oE#9+FCC3f$812YWFG%$<%OnsYUU^ep(cJKFg?_7#on%E=O<~-i+
zT~sOcHv_8O`#U3%1#C=YuIO4s3oztbOdVL2_VP{qpPVIS36m>!?=l0+=^z?dX`p+Y
z_iqEM46LTT-9X_u?;08o#YvoZonc)d^~8BIpK`3F6?e)(rKGRtQaaPv$knM!KgM}C
z(Wk>1E7E)hZZ=63xj!4?yo!N6ao#Nkw$g&7NAu~ZiOB(q83Q2$VFM8ZngQKFl*Ym>
zmdWlc3U4EL$=jWRsfGd5z^hKFn<+%2ssDlZCoZD57B7WYSe8P2>^1`dcz46QoyG|7
z4%*+~-D$v`!TS$ILPcjmPud;>dkuV|b@!#~UjzGSPc!hrz<vV<44gG^j*3cKSC$Ua
zu0?UnEA*s+QwEOE-m)+CsDWb!a%J!yr=^j>dxAOH(-nXv(~<{g@J`L(J#AR$pJy1?
zWbhVpr=F)S(J(Ki+%s^|z$F7WXo?K%%;3Fj;41CL8NF9%uk$58%HVBOBQ;M(?==J0
zS+AJUnuHvwskeAOZyVUW&x*9>8NGK5^vdYHYhZCk@3D;D`vx8ucu3(rGW98K^#&dp
zcx>QpMsL6KDW5yMPv|4S;jQSf96qP{H1L{ciIy;}3x{`_!@Ins^YJUk8;S&n_bmk{
z9TbQ6ro)@b>Ah%kA3EeH=k$K06?fV3Mb3nCudHpSmD6i8VK)(H0w(gA$ZyiM4sQk%
z$tF_boEc3xOgK%9_z+L$iU}q@tVnU0aGQuXG27|ApVM0Y>zrPXiHAr{G?8S2PSyT(
zdi87`!W0v!Celp$V>RTWh90{zo5*4!y9vRxK6<h;W;3m~Hc@uSW$Tm6Ya)k<_e*U#
zxpetu*X>i*PZE_SYvJcMk%#q40Xx~}H9<)C`QLYX3z#Ts;!6_+P1ITDDrDj_6Q5JN
zF7L^=$zPZ#Y|{T2T3^h)F7M?P_98Uof0A#Mbr&;H+(bnal}wbNA()uB%vH`rDHEkl
z+(*J!Ci1Ryl`%1TbW%r`mv~v1x2%aDUEWnL?@pKZx;>@5iCZpj1ru43N^V=tNv=!-
zaeJ$9Zx1$fR;rXhc;v04x`}^H>@z{UhKZU?h}U9Ln>ufzu8Ddk>YEsEVuFbVCK{UP
zX`+{jMkX4YXm6qe+keg2(nJ#zO-(d2Q7hiooW+{)Hgem7x#d6J*2+X{&bBe}jfr+_
z-1dJNQx!5J<BldevEJQ8XC_@4yD+BPkXbkCf4nWdp&nfHA6Ceqw~22}3^Fm;L?07<
zxpW|7KNJ0#kcafT1GpAtzccYY7o|7x1MBzSI;d!fiIFBonHWle$~IJYIK^kIZo0S8
zCdQcf$;3Fe8O!+N|FR*^<S^a;&oO<XiAg3lnAm7yvWZ_z%%dM|P5f$NiitVwg#1r6
zF~h`6&Q7D)c<Y$XoV?A7+05oyC1XnIt;~(J@*9P^iKQl%nOI<AAzS`w;tzJU$i(89
zWqRH8$ypNfOx~88Siv@HSzKvim5J5=t3|3pW@}9R#RlmfsGsXhtY?KvDf_pHO(r&*
z*kZzGLNpOJ5i#j^UdSc_CW73G!d3jSiqtD|nC_E!h;7JQ)P!n6H(_v3G)6L`qICQ8
zc`#%4TTN^;v76m)H?hOSKg@SB{(r6P;#%ZkPpourOxbVZ03D;vn6eoMO&l_D(xiu&
ztW(g#WNhN7iQ_pF=qHAMPdbiK93FM7IqW!YBJ)uPr4zJ57ubo=Z-}Q&6xfV{n{md(
zSrg|>oHt?H4EttWFmchu1KQ<GTrzQ)R=SDXCa##cYT~+y8z#&O&Se#xJuWz|(dsU5
zk%AW-H%$yI@BF-ila$&Q9Cv8d7jhph=e%d)E(KC~=cYpLrsbXfbB_Ba2+8J=iN_{h
zns{a6|1otHP*NOE|KJC=dv|bm9Ng?};qLD4?(Q1gHMqOGySpS<2w}%}XLc462%10=
z2$F;(Xn+JlzM8)Oz4yJ>uimd~s;jH3t7~kxC*!^77nktr5?*s2o00zICHz|1!_B!N
zOa8^9tHe7Xxk}y%{I3xBThM<lfo*ty2_<9bgP<*9+|$R$OZe{+xH-4=R&n*D4*&sV
z3m`dw3;|>eAX5OD1Bed56L7~88-QFZkuCQI5EF1a<v|^~8~vh^CobTc#2}_n%x?u_
z;seMMKvDn+0VD=6uZn9eo58|tXV!o_Wae-a?pF%H7eMv^as<FmND08t`U}N0dK}GS
zTSr8ZsImd9KW6}W17Hv53b-R;PVNBmh%VSLzN1X6?8(QS3TGA!pils%11J+f;Q)#R
z&@}Aj_rgqz3S3;!VjMR8qnOF11gjNH#-#$dUeImAul36YP$z)80h9}1X+cl<04fAf
zF@Q<|)CeHg25;p6_=gZx0;n25`WxPl858&xz8VW>^OW@`$W>#iv-hgTj6W7tGk{tF
z1po9-h@sj%@U=-xVrblfboBzLA3*m2dIZoQfQAA0=AvT&jRI&KK$`&O{}p#&eL|A}
zM!t4$mzoC9EP&<#Y>%N<0kjUFMF1_?s#-B8VyIEA80O1juK6g-w`Etn^tKa}LHhtY
zq+xS?e5U|92hb&et^srlpwoBJkz6q!a(eEhB=917#=(=x!za_80gMS?YyiCi=p8_x
z0N#v>8W7+IkLW85?iaw5UEWUu=+9vj>qeSc)U)I#@1Ot%2QWN<jnATU$I{HgaV$0@
zfS~~l3*gW-Z-rPIlQFKtM(+q7AltUlJ1T&wlj29SH+Faj#1dnEeLOCJ@d3o{@h%A9
zuifr-!h`@m4PasblLD9-z^ni!2QY>GFgJb%E3XtYHGpXWOlNJev?i9$=JIrD9kb%^
z_*1dOe*i2w*4?0THn%MtH<u@oN4ML{g@186k9{715lh@1zkwRM$IGD87wHxUuq1%n
z0q_r6mU1u$a4vxJ0W1$-MF0l^cz!i{CEMxqtPWsJ0ILK}{p||BFhV9z-iOg^16UWp
z`T#btPXg|{@_hlc`!RYGhj#!w1K1qEmH@T}+_&x91w9!TwJqTOu7f#T>V286gwL}p
zfIU1B-^K6dAm8FWSR;n%UNPg|`tH@#pRu%GRQtS-J}7KEB<Nv5+0-Kf91Y-D8t1qG
zCj>ny=qW)z6ZCUIPX};D0M>9efP?*_81UPxF9HaJ(p_iE8+tDU@MQoO1HAhjE(Lfa
zwRGQbVi_3~5ccRoMh-v;Koyt|aVt&8Fg5}(d8Gsp;;b&3SOM4pL;|?X8A&u@oen3E
zIO2v}s>Bg<QZZ}zTC`#(F!QP~;93CRrs-z^K6Haq%ERcJg5DDHT;-Q{cLFGOE&4mb
z`JUTy{tw`X06qlpZva0A@KXT41@JV0`vFAt^*#~wK>$Ao@GyX!ouZieIDkh2b4Sc!
zn!QuhFGBKHLAlCezYF}DLpp#z0{An4XYAVmUIg$mO%;o=aH<{#uY_T#&EJUTe+&9n
z(06IA{t?ypqMB;b&JWQa1IQ;Mzl{I*sEl+n(#wdJ;gQ`$QL<=Et2lxTrWs^p6oB#c
zIP%KwGymK&&NuYL$l&}CD`=dIOfoVH>=%>|#mh*LktidJ;7DowBmuI@$R;CM;7}ZK
z;U+#&O%XKp5DA=JP!`A`Ku#IC1W45&`8;`K<dwmoLe(rx*~kJiW;O8?l2Q7xx1bo;
z%`$O?WfYO!^U?8=Ngap8-;Sf=GD^reY~YB2k}^ukn5tr$iqbO5$Y`OUrGm0D%E`DZ
z<DQK2GX9LC$}*}5P(emT0hn1y0Cr$i8P#MQmvKTybs0sk_*%<oBcq0lnlft1sLgJa
z(NM;f^->)f^<>nSkuMX~Wr3$Dm(NJeGSQq&G`zC!Y$j?Xqp^%;GMbA~G?7s^Gu=BZ
zy~spOW!x~NoSA7<W@;hhbY^PB1FY|BDdUUz(%Q`QBr_$&Q(GDBWK5SaLq>ZU9b^oU
zF;GTF8J%SGkkOO-ji=5sy2|J#qYE?R-PC=%t#4X9b(i^eN$OqQw>zG0##1jDy=5%i
zB=zHfNuWOb6UPMVD{Q+pLu#Ht!xHEd8U1A}NT5>*RA-$3X#x$BF<8b}8RKLOkug-p
zNExGK43jaOjY*^tGEx%VPPx=bq~(e9RU+L^q|q|Q2<7~fiZWTKPZpY+g~rR6AY+n@
z$vo;iDW7sMWTA;NPGzAVvQSErtEW*Cwa)CHo<vi)FIAc<=ro~<t1~$~WNeYKRmN-?
zb7U-&v0TPn4i6cNWh{}gKZ$N9(R?0=3}mJ9SzWaYg@#2k+GeGtS!riha<bAp#xind
zqbAvCg^ZOlHptj0V-^4SQ^q<O>tzheMr&kj%0>^n`qzpob68<88$HQJiOKX&4*w<@
zo7t*l`sGbZ@nq_p><Y|Crfo8|%h)4huZ$fscFNc#W4Ey6-0;{-$#iDD^eUNhNYt;4
zudzhNDE~eg2W1@MQOG#J?viMu<Z25D`dFgFGLFdb`lz^%y7=g*jAKG!o0I;zK03+H
zlyOtWEg7H5_*}+UGA?mk`RFt+e+Dwn$aw6dk3KrfV^5)TqWO}>zE&x8LB^LdF7hx_
zXif?pN^!fkQ|Olz3doRUd@JL+3`K@2BP_#_p~=u?*g}aR!;}#cG$=S({H_LOGPMLv
z#Y|H{M8?-LzTs@+r^|v~`F~=m&94g1wX`NTgcvvHqfEK^ZC<&4;&MkwrsD4e{$5ZP
z811JYc=0NjkdJ<p@so`EG9GXQ%J^5t3P1fU;}1>+G9Jo!#C`ecv5a5XpSk=e4oOdB
z{NtyRM8C=y@mgw5^qY*Qyt;{g7nBFc_?e97GG57eE#p(77cySTI6Kq7^MrprkwNsD
z=r7Kn+3Agpx13(G)5PqwGdqnu>3=7~%1(a^%HSUX-pl+=UWuz8IqmaWQ{Yz+r68Sx
zcm)Xx(kp-huYwo_(+@})6jaSYU31W*?37Uf(`Z3G3M9dtmxH<&lWM<8iB%A%;Fe#?
zq#(0`b2%uL@<6WTphN{(6=YKoos+UCDA~}L#2uCP7tKjca?-e*lySS1tYA$}k`%n%
zBKZ^qbJG2sL<+JiD8Wq><WP`PK|uwD6y#EnTR}br`4#+^lQQj)@+iowpwxDWa=AfL
zH5c{BMFkW$RF>qT4jKHdzmp0pD59XKf?}+Y=x{E&or~V)qCB~&xPpVZNy$yEa?{-0
zR7yc<1(g(3R#1kMzk+fK$_s5j<)%z|sC*vkkcSHBDHRk%I{PY$Lo@TZT~}eJDX68O
zHurVL->;-}EDu#vP+dU{1!f+qso-NCDwLNPvwZWs)ITrPQBYUG=Dbu-L7RNk{;*VE
zK?4P!=cPaMl9Z2%=c7gn8nd6T_?igXTtQO-R^+2*3g%XH4{>48N<nJ{zbg2RwJB(;
zxDl(f150|_Dd?=Ai-Pu|+Cfm}cNCzLplnrF1>F>k=LlEOT|o~80~LImpL#0jrJx^=
zS3z$DeH8RnkeHuh-X<T-N7wVwpZVNDb!+Xbm!JA8SZhfGSTaA&$xl1;)2L?BAO(XJ
z3{fzY)fS*}3Wf>qajQ}VXt;tA3PvgzrC^NUM;D;cY(EE20ph}9W7FihI;#Nfo$dcr
z!9)cc6>L&4Nx@_V3l%I<Fh#*s1+x{*Q80}|TER>OvskhK@pR8%<30Yb3eepG6uIcn
zT9B$0q^gpCE)Q^ye*s7A5^0`-`P^!SzkNZv*xom<Ae|~mR}0c&1xpmHRIp0HQU%Kt
zELX5X!3RC1U?zXhY0|oM(#|_6j|$S^pHeavqSYMU><tC$cv=h5xI(nO5M3xle-xti
z3Sy(AKj%xlHa93pU8I{8Y*BDr!3hOh6>L+mPr-f#+ZF6kut&jO1v?e&QgEs;?N*Rd
znA#V1oin#E)juxXDNHCrd5TcoA~dK79pLa*a7e*n1q+JM)DFIEt$d#qp(6^8@^UCj
z^^4Lm1(zXxUxd;XrC|a0vG7S&uHXv=7ZiNPp~&l6!FdIz6`WB};GlGtW1}doDM}ZL
z($%-g%!w4G{U4HF6eTJ~jf&Bi3N9)LC|F%W`bxni1%DT#qQ$9iF<MuQzAi>rviaK=
zCs~1_KvgijIK5wyiHpX5SdodV1}_=T25fe5y2%+vL8CSPkOE7AtstzxQE-hTlb0a}
z(op}RIsSdc>9T?=JR_H+uN7Ps;2S}ibK#PdioYpN*A-MLLETFbU-{hNLACeCl%U%j
z9wq3Wf*(Yf-QnSvpzjoXF974ag3sVb1wSeHS;0fjZ%d_{?R@tYyevT+JP#D)DM^h=
z(jx_r6+BV!i-P_oX<kWc66-%zl9pDNZk43xB`HfO;*-czUJKddC#m>d!5<3#RPc<K
zt%`Oko-264=}tu+6)zRMQjk$aw2IdX{^EF3@UMdV*`+s}ITgI)<Wq{qm!iKF{G;&4
zbEWqRc9(JkqsbtDxD;`~Pko*Ik<%t;eii9d{91~lOH<C$)UY(AS23zI)h<K3Ci{1m
zCaC;r9?GEdfBz}A40%*|Rb*9>O+}1~SQVL6WL6QUx@q>yGSpv`d1WYGMS_YX75mH5
zkS`@R;7%DzRFQ=nmZh>~X;@jh_$E2!ODS1}q$0bD94fvpOP+G%Q<0(~XE}<srH19m
zuYy#JC`UWX(fM-pdpSxfPdQcOQqlUHzkGRWSDqd;l=7;`r=p^YN-FZJD4?RaiV`Zu
zm8XI#3aKcpVtskn4`<5Lqj}P^@>E1cQSPV$aVaK1n;hPfDoUv+qoOQd|EpNq-Z!QK
zy?>VcYg4It1=>=9%Bd)?qJoMYWu-4F(9;T(RMAyiydqUrQAI^V6^&F>RZ&evO%=7+
z&WcoBMGfJlkrmww#Z`v1vm(`2@kK?dqoS@j^r|A|u0-7{(d0^0Pepwd4Y-#|uJUjt
zimptJRWwo2LPbjzO;!FUCVs3;Uj?N~mFd_fskw?im1#v~I$oLlRj8GUht+(o+0-i3
ztqRSlLTywqWo_+MbYNi>eN}W+(Md&j6+KjRR?$U8R~6k<+>)e=Rp?O_N~}uds#5Q&
zw4f>-t4cjpM5<CR6}?sbS(OS`qjuG3b~QR!jjU?aj|Zail{QAH=&xdcis34LS??dH
zVvvew)rfCx2CEpN{_lb<^|EcKieWta;u?%E!x$8+P9xZo>NKu8jaD&6#aNz76<e#*
zvhn_Kb&9S*MV=?;twEJ)(0HEoX0a0l{Zz$70hlwO2JzW&GRNl?-xNXl%s5@e3>A)!
zh>n>mW~tbuVY7zW>>Q45%@v-jVjho<4OTH<#R3(}R4iAqkb|V8cZr}3774Ie&`#pK
zxm3&}A6lVerHZdqTvD-0#cCCYRUA>VM#Wm5Qx!W^tmA-Gv7PxfX@iQ5HE0VDP{qLW
z(nhvQ#b&m%20gDq2{qkWYgUuCsTg0AW@PriE92v8o^<{PHEEZM-75B~*ry^xE!x8#
zs6~0tO66<O$Xc{t#Q_eRZ>57OPFI)onbMHoQcl*QA8XMe6`tBurZyc_aZJTI73aD4
z+H_pSXDU8daYDsOUPRH-!rHW>Hl0%OO>KHrn@+1Zqv9+NHj?u23u)(8sc0SQQis;m
zA-xWL!AY!+J53i=Tu|{P8x~4QsY{jX(!jd3OHZCxmjWte6*oD|R46J`6_-_9QK6~O
zIW|-TIevag`Mj<>a6`opbtzjzUsOHfOU)1`C0^b2$X4-B4WGj?T#v%S^9<(IqX_G)
zM<43Z*K9E7%=*;FmacM!S?j;{ss9G2m-=)~#kVT1tEgO`#@44z^+~HwXMNJ69{$@Z
z?x=X6;%61#sra5(nTnq{p(XosG@!dG?r})ROF!@op7&2XCVkaZns6_DlLmC31LjA`
zevra8^F8lF6^~Rr=H#iOUjv%jfKD`^-x^TC>{5o3zCuRIFPwW-{HEfmF#dNHe{hm-
zNF^K6;D)raAzf-nj~fy{I`B54=PF+CSX8{?6soy@4STKPFBQ;`K|{Vq)VdM9QSnyA
zI~5=I#(q%oFGt{E>2LOu0Ph7I*~-VviH+zZ$4Mhfr@8b$VL+6?Y&>()3%slmWz-O@
z!K1;ep`;^SXhgp^qWq1iX=57Pm=-m5Cn%OzjfPAbGHXcCkf`BsV~W=>Zk7LIV=@~P
zUl>SDD2wKvCfYZl3QZ_U!-59B#8&=n8j>|g8hjc?Xc(y>MT1{M9SwCg{v80aYbd6n
zxP}}Wa%w1`p`eCb8glcfHRRW@q6uASLU}ag)%asHG$TpM*pv#5_WPUCHBBnp)U~iL
zb2JpzP(;J}rgXe1MViuwrc_iz)@D?#8QrKMmEZwtsGy;uh5^l}l!mez%4sOAp^S!=
z&FDlkSJhipD$ku3^CdN>!M9Ux3uYw^l{Hk?P(wo%4OKNPZ%);i*_>K6cUz4Xbl7SC
zf##$)C!W5V8h&X`wb-#Os5UojL1S7_Jq`6Wbk)#J<KMubp@x<kT4`vcp|OT08k#ab
zFCA?`-?yOmEvT7><{CQROlhHE=U*uWTDpDJVcL?~Rh3$6XrrN{hE5vVYG|jSy@n1f
z*^<nb^k++|zDj!WG9`a2;uBf5R`f|L>a1aPHD4DEpSGg@o1`7B=xi(MuAv9doreBA
zDSxK#siBXCz8ZRI=&j-BR&>3HKSOKc{|}aKO}CFq4O&w_p2sr&S*>Y+hJhLeX&9_w
zPiu;_rd8ibY~&CP4_ec^>nTGu#J8c_nIxWtVH$>uAgR>G9mpsRqczOcFpnM5hQ?@^
zz=mlU%b}&AXBla+5F4-Ii#Eh=nW$lsh8Y@WYM88HiUz(VnWkZ=Cf#a7Q#G7;DSiGj
zd44C~bPeg-(u^lk;kIr^e6p+CmS(Z3?fkO^og?U<8!?{)Rl_<C8x0FJEYh$>!&;8j
zwzOEo5}x8Q{_Rhsy=`f!hGjhO92*>mZD}>fj0V0p;j&6_xFg1VD3z139q~#`X-Bo&
zQS7Jw4ZMg-NE_L!?Px_i3bmsL?TAk$TX?WK#_QOsVVj2S8g}rK)Zx*wQ^PI|-)Ok1
zVK=*1!+CZEcdB8ZhGQCzYv^}J+OOddFG&ptG#uoG)}C6or^W5*OnbW1o{sQR>Oe;|
z-dI4&+<{tlpdlUTgocwEKG$$s!=?^&N<*HG^qB^`13m0Obvshmj`ZyT>5PW6JV9?$
z=5(YD-$;RubWQ_P9_a-QUurNkm>Mo>_)3GKLDg`H1$gQ^`D6{hb#yOR_)#Zo<11B9
zC%Rh5t8tvaOwQkl_z8o~nMXWo2x<svh-kRXPH-ek1Lx06oyZo^64u~oxG~AsxD(Ck
z<o13=!`GaMI@7$D(wMXUTb(GOmDDp)x~Ab<4bL<@*KnPiXt>YDXt=52mWJCJ?r^M5
zl`dA6250v3{n2+CzSr;rFQ3j-wlm%3*_kQ*Jj>62gSyAd>Q*!}`8woBPAt!pf8tOP
z)t@yy)bNBCIL|_7dc?l%Opi5O>+C+$n{`d9P|NqLhFP6`?`QZs*7yIW;i-n-HT<FB
zPYwL(7A^(45EmW`Q?9<y@KVFS8a}c%4X-u4)9^R1L_XSuHtW(~8s2dD`6QzYz18rj
z3ng@=e>A-3St#WHprKw@>f4oOcBNIN-37S6EB&Wof2==BM>-vWu5_a-rPl%7&C>U~
z(W|ahvK#g8Mj3Q0=tda@|3EkL>WI-%OGj-Tu{z>(6wpynM<yMab@+6o=!n;mpd*Wp
zBptgu_;Pfon%yZ;N3jy_<wsT>*;u}@?_hVj{yceDcWQA<O4hNsJ4u4F0e+o-{)L=6
za_PvfBM0}=gT7uY8Qp2(&6J<JQ+yA~t%Dz}<kOK~N1q;)M_8CwP_9nzLFc$h4|?B&
z3h5}Uqk@i#I*RBhs-v8a@@$XJ8%3g&j?y{?#z^^lQrn(XLdWu+R8r_U*pqJdbZ4Oq
zw>|5B*^|l&K7)-ld>7A2zFt(Z7gf?xSw~eJ)p*Dq{8e;}?nS$MQI}rC_Y`+~QFR?P
zbkx-GZ!ap?n||%(FBI@s)l=H{raC(6>gdfw&{0oEeI0FewA0Z*M?)PgbhOm*SF*p6
zj&0|qraBtySkc>^mnPh*8*S|o+f2u)EAE^&*P-=xt!<^FwT?DCQ+?dT==Vx_<NeQj
zQ-MD2(e^qz=;)%OtB#IL`%otxo!Q&#q^W&qtB^7KP~fb;n~v@}UN`Xf(($nm_0TbD
zv2?mGmFY`8b@c5^tNPNDzLcdO_0`c&#}FMu**`k^vp;nV(!r17OZKCd1^oj!T5d=^
z`q7epbfO;()_Hqy%K8bl%jqAcW4MlytXxOvm^4Dimu>w0KcNbrxM%b2pU`L>cR!&q
ztaF_I^d~e{2l`W){_a>N==fB}KAzJnzKLv7f7(#lH$}%J9g{^#eSXW5Q*}(!F<r+D
z9qV+g=j(qRvv{uApE_piSk<5A>6ou$j*huHF7>A;{VDeVsx^QX=vb&@sg7mr^Gwnr
z9hYnR>NM~#*0Ds#m;tn5099Kj=>zD^07@L_8dhN-tz?}#@(rRjI#%oM)6w8S`g<Ua
z97y{H(psL`LDb-?G<pzi(6Nz=L_2hBV)F*kRvm8!@w&zq_WTP;9pv7*-yKBTbZqCz
zT`VOHrkaDP_h8zoV;8S79eZ@hgX#TX+N)#2U|L?vzjv@}$&A6YU&jF*2X!3MaaPAU
zUaIq@azp5_jw3pb@;cJ-xsKC1j_Wv~<0MCvjwVAWbW0jHg!T@h&vbk>ggD@nhtk_2
zbZ4&rtCqg9L#g>tI>S>il)}rUgG1>&XA(9;#}_&-@I30c$PL+<JV%B7&QOXP=AJnC
zmS=mcbR(;@wS`a7q3U=%jDk9<4<k*7uEWsLZ5YiSMq7u`?zPf@%96>kF^q1V^Ct|a
zkPg0hvvlzD6I-muu)sXn%Q~)bIx_eK;Xd>HnkCsA`RE%FAy;)=)A6m2>pFhb@tckt
zI&N~5>iCf-h^JUw34bSa-sTV$fSG(E{$Aj_f^tXqbns0dgP(NV=e1MP`&h>Var9A|
z%+ER=3Y;p*!m0Y72<9(o8lLL-ou^wz9XsU@9e?tAXJaI(!!_4Gqb%tek50!69WQmf
zVlS2T@dY-Q*MgafnOR~uwHZ!tb-dG2X@@lMp7b~8_QlfF;q;FVrtbx1GydhE((#{;
zC<7};Qi_3e2GSeIY#`nM3}i46J%T(2G8$MnobsNMqWSgc5-B{~eXnHp_InM)7$`o1
z<S(RH1Fc68KLn05kjZeL26JgL%)e*^B^XFDkd>JRvKTlyg078lV{*OEpUptB0m*>R
zz~3X>2MDe9NS{2F%2$(oBdNwn>OYeF2LJpQ*$w0{kjFq?133*G9!a?j<Tfy(v80Wp
z4<o7cD0-Yh8ZgBFiR8~`AisgLWu#tb{QMxL-zX|zV8JN*d5)iN?F$=jFcdS~+x#L1
ziVDDZUPTl)P=eq88YpF8v4JH9N*gF+pp${l2Fe;JXP^<&AynQ#1p_q<)HG1hKqUiJ
z4OHV!*^E(C*+3N@>}U#ZmKu+yp`(c-`BEl-b@p&AiLY8WkEU7%Y8$9ypswL2fu5uN
z=SS1;qp6;O`Ud}<&_7{^lxqyN9zzSpPy++2C;1v0I6a1XUP)<epoxK|2AUaYW1y{p
z<_20AXvMR@+6-JD<K8U48$*LS`$lF$?y+P<QfiKM-QLbXdjlN|bTn}O+mzm8Y2H|>
zyUu@TEZJizCcpoWvDC#tS6({?#u(^kpu2(o1_l`DVW6jhJ_h<4n0P-WX&m)3(Az-1
zTvGjUl;n{HjH8LC{QV4k97mrRSUQf3ag;Kiw)ON6H26ag(jWtad4S{HC(J_(3}q*@
z@{KYu%)oF114~G2o+Xbk+%>gtJdI@G@vhC+#?#~Rlx+gVd`KB<V4Q)O24)!;&r@k&
zvVkcEK4p_Q#y%y_d8zUQ>N$aCO`u5zzM4RHC(y6krOWfBsXVivx(cTmm~LPOJMB{%
zE;#!?rP&7NaGV%eXke~^c?P^0rTGT#e@fXWQl{g6R>H|P>Sc1XiB#``RL0|9#L>7;
z8a|Ph8dxUGK44(EffWX}8ra4wi}6I-Y+#FlRqVjc{?!K77+A||%D_egn+&WspiLw$
z8w6N+D}_sHl>r~+^7}*zMoEd2=v@wJyMY}B_8Qn{U{FWjPF`F~rCq#;&iYd(5#!y0
zvqw-KY_n)-KRfM=zwacfKZ&|zl@1D14++WwoSKdrIL6T)M42Ft8#uusWa5U2lLk)l
zG?^G?;xmy>%bTcR;&To~17|qk4fsuviE|uI>?;Eg418hWf&s@s#NcnR;-bO(i$deM
zFmTC0z<|sim_+=Xd3#v;Y!cm@M2avb-DDcP*3TE}x&gz0X&`90IluU1YCM^SO{Qg&
zDa6HqCFE_6%qg^X3WeE4lPP8jRhmMV4O}sB%fM{|U$Yrg=$e6V4SZwZs)3PTNYAEF
z#b|%FsqR~n>pVwOY2Q@hTf!Sc=S_}^sWf0J-7)Z;fqMpTk%7r~QoiTF_+7dyWG+sn
z@1_#J==qVCs)1b7h)+-deCGc!m6p9t{^qabpA9@T5M?5riAM$=vv~&ZB912pe&KL^
zn*KLlywhmNDrwv_`jxZFdFjRwKM(Dx(9cWqPXo^kyyL`Z;JJYpyg<@P9NRBBmZs4w
z1FwbT>1p)CH2TZH8v}0*c&1a0>C|;P&6rMGrc-D-{bS%guSWy_afYAa27mq;^nrVv
zLI3iSnL$TpkUfL=AppOrym>`RZvrL~OeC7fU?QUluZb8Fzs(@eOo}$)F)_KhRDC85
znn}xMQmlzM6PZl#!-N5=rPDJh<(ufsGwF|+l-WeQ2?kua-z+AQOh_htCbF8yW@6+l
zN;diaQ7SNtYX6v0Zx-#HMdmC@G4Xm9)tXI>XVdA4e*bLBZX$<?LM95E$Y~;%>AnNX
zZz8veJSOs*{L_8(m`!VE)8W~);;<B&O~w>y+ZWP{*;I566)@eCX+aY$=FsptRK!G4
z6D3V#pG(C|6gTm{v#*4SZCj+@JNxI)q2`}S@*H|Ghf105Z5<n5+C&-C%}ZqktumL&
zrGbj9?TU}j{{2l<GEvz?6%$oWv^LSkL^TuD*;*5gP1G>axv00ci8>}~3e447?7E+#
z8PqjV&qPDhebL`*F4Z^Dz{HigG-WOwn(N*dbMN;L`q?4;>x(8l7848RQBxDmOz@+{
z<|ew#qasgJ{+mk`=21%%t$6*;BYru^kBRt~JZ(+1GttdNcN6VRbTHA0Z7|&*BwU|I
z&*o7_F`{pNOi7+kU3f+B^><~H=F@=rv~WI+YT)l-qNj<zCi<ED%OdJ!;^Tbk&1$RB
zjrr~r_YoQjE}%!#q>c+{)B^g%be|q<Sl~X#7{GH^(mT+^AORQ;7GQ{=oP~y)?x}f{
z>0Y*t;JCWt8!2e&*?F{yF($^E7-wQ5t2Hs6<xQ+Jv7Vh~Vxoz8Cgz)%#35>8riocR
ziUl-<gXe;Oy1-KfohIz$Lo-Z#w}Ad)^A@@fre+KN924ahQk#Xe=uPrm!I`{}7MNIQ
zVx<XwBD%=LVpc9m%S|ldAa_y@Eu@OAeGHbefZ#A@hnyc2yMiZiA-!Knt3+FFzS_i^
zG`v>mXJ-CIt^>Jj5FD;<HnGLTX%lBmY~|qO+2qMGvE9TD6MIeUGcjYYf2WCei={m#
zcA41CQL%{ljnd#nq$c~9FkM7{Eu#G<HY}ziyiOO>0TY*-`3{;mWa6-i{EOXwD=wx{
zi|MH7`k0C1CQg_*wwRdmQ3g!;%<>t#i=@vvr!6LacIR0_{FeVLyVQhjB5dM32ZjmN
zgeDf(1wk*G_)-8~Zmj1k6PHW`Ovr+%2*7+UERZV60i&BRdB&HJ!O9y-WtLFqB@{Ff
zGQqD|Efa&Ur!e5cz%dcwaj~mS{5{vdYYE9qsOtd#*X+Xr{%=fNHSuH#eOM)36C-M{
zl)mLGwA8hS--eG|N;gHM-7;}o0FJ{yCQElr-WL%+@Tk)w_Im;D^4bxvdwvuV%gaAL
zh@VW{H}Sy4&pab+hKYylC=<VO@-$KE=ak26gNbjK((0vja49{^<^RP*=4EcadTQc#
z&I2Z%aVlFzfABh8Mw6FO;aSp&2EG|prROGIaaJ_(!o*9Son`d(GJ3w&|Iaciv7G)g
z!N2+8^CsgrCYZhzl%G8O!^w@4b`ahmKA8B|#D6BDf{4E$ak~4+d0;tBTu$F?a__~`
z1;MX}G6umoy`T^@gP`oI9m^>?2z5D0w^Cw)hz%lB5SfGcemTVjk!=N)TtWQnrWebJ
zfAQ621x;K*N;_Xd(7nY-3?fU=4X30aq#%4jWaTD7BnNSD1-)HC-aY=hG5*jBN(sUr
zM4lk>20=k&4<c6(xr4~T!Ye6f5Svy~)0H%IC4IS)eq2cv4##F+Mfpzoo2{a$4A|P$
zR5*zIL7ZPj_g7JYAPNRih*hnormJbrYTB`yiUd(Kh+;t$4`TWnDj9UouqC*cHPm7a
zy<1IOEhP@I%`8whh;l(J4`M|S<%6gYM2jF=2Hl)iF^FnGH)~Z2x><`$<sho0;i}w`
zxWA|#bbmEkL(rN*)C!_@5OsoR97K~K>IP9Si26Y^2;%4(y0(UL#rj{ZA%0BFA;FIV
z8V1oQhyrVg3!Bt5h-N|eyw+TJwdPv-PV)0>CO$M~tsA{;28VI0AX*2}CWy8{v<qTT
z5QBN7m3{4l=nzClp1%1K-*t8hqH_?vgXj~4@*%lP5Z#055yaB9)HR56YpGiht&;uE
z*HX_Qme~@mqh9QUYbktHUykuQx8J@&++0TkdAiq8KekF3c3~a$4`M(N3|NLKzZJrI
z8WP0NAf^T}Er?-4auoZJZ4-Eepd$rs-q?M#H71C$L5vS#0?+Jvs=J=X1u<ql9bZom
z*VCs#OblXD5R=)ZU-;jzr|cW3(gvCmM86HBZlJqed>b~<yxP9$LCgqZ2@frZnL*47
zVo?x_gQzjU|8xV*=GfavbAp%~#JnKp2eCldFjoBfh|ORyntxm*nB_N8?vB1D8)^DE
zKi>|F-$=VQ694>T8PCf`S~S$ZGKf_iHX)P`VRaB|*a<;=8N}Kk)&;RQh<!n<4`M?Q
zJA>%9iAG<RHnI~gOPdAV6vW$&E^|u|TLovEpxXuILpubhDjMz*cy|yivqxZV$cOd^
zaX?hh@In*dL=Y!~I3)1lG|3|zb!qsR7~OF}S;?s&J`3XWAWjPb?vzdC-kEYoso*RJ
z2`@Jx@P(k<H4CH;>S7RI1@UVTzXfqAhybrpv2bMee3Zl`EP%qfB?wJmJ&2$HMi3?s
zY7^brMABwTl@EzSmY{YJ?FHWnA`--9!MrNy6+yYl*Fk(EFzey!HG#hs^m>}ijDony
z6Bop7G4P)Ry%WTDyfk+Bz7OJ_;4r=`I6L#>2f_I<jnAC>JmZ_`K@dL&@i2%=%cTyD
zJ&%KU#PNB`-|c34E>C#rHTL`x1Q&jT!1!qpzXy>agp47a*i3%}@lO!%IZ*^*@Af?l
z;&~7+IL&URzk;s7%OGBHO5Z}v;h20a4l#Jc(;@J?AehPJZ($pYvG9i={^jMcg;*z-
zk3swwM8z$x2BuLV7jsD`KzczTXlj$_5d8ed><~O5{$7A<Sd5@q1dSCmE`&@WWDX%d
zgoKcr?Gwd_QZ;au0n?-qvWlarmShVdIRq&LUkE8eK9$dArz_&EpG(RfLXHsfg^)kw
zI)R(BK+X_y3BV4?EwtqcA+O-DOsa+gqFOwJf*}+VnhS@(&Dn+`AruujwOULtxw{gg
zNy!jO3Hj2ZT2>q_BfODnKhp|a4Pj6SgF~nkLgf&ehtMMAuHPyl)DNM7z*R$7`#gQM
zkh^NChfpJgnjzE*p>_y$gaFI408<vI8$!Jhc<FI9mETY_<W<&GG-)KNjYIt1WLG9t
zvYEh~E|}9YgjOMR51~g0tp&eR2%SS{BXHXg+NCvYF9y{?(2jz#89Xjl(uI2wVvM^A
zz^k5Z;G;c5=p{J)1nn(opEQ}i0&puH-6sO~4`DzE1Jn4asfjxp!rLQnp%Ebjx6tk_
zG&F=^Aut#&C<E?mq&Ug~qXZZo!k7@ohA=LTKT&}3f=&?hQ$cg^KCunGlQ?V|dM67y
zMNn2XJ%kxNgs;*2Ys?H`RtOhtd}(8L2y-}2Y!tHH?fd42aMi*!3-dylAHsqV7KTu@
zua|ceTol4$j#UdO7M6stlp`dBa0tsnSRTUXA)F3j1&=O-y&?YT3s!OR=NJfK9S2N8
zOuy<e10F}O3E^mu1l|nxZsFME{t1ybiR(ky5W>a~HifV`gdHL53}H(MTSM3u!gj{0
z|4gUEi3xG{w$MLYsQW)z8f>K=Tj@k%)Gl^f2z%H$TV22H6jTv(e+UOSqBxjCxUrQE
zaun^3KV-%q3gK`FOY+7X5%d__BfxK4iJAY6j$)cnDzQ)F#FOlS>ItiIc}|HS`HVw7
zbJVIN&zTU;hM<O^g>Wu}^C4Uc@!!7S-A24&;};=xEu3&6gfBz5$jhO2%;%${zDfhV
zYsb7f8YPENU>orta_erR(3NO~6JWXYT=Wo(5KNv*9`(~$-fpq+@NE06_!+s~|FVTR
zRJPIUVo6pAOefDu?}QKu;hzxRhj2NBD<S+8!u=4w4&j>+ehA@5p0CaESNTx$m>Vp-
zKi#zuz764e2<0+)xVrK0Xa+ZVrn1CwxfQ}~f$s?VT^j%U5bg?mFO4G|NH-upuI@T-
z$uGT|4tO7g@N)>ih47TatX0fIj<lu;w|t3@LU<g)lMsI46c^>0-Y+TeXF3MV{8eyH
z#(REe|8JvL90u)@{s`gE5O!^&XM(;6;kf|J`D}UoOMw}1^>qk;ad(>UO$hJA1TlUa
z!YO|Y11^83F+YUxZwPS~GFkW-!ha#8w*U(Vb|=N&@kUv=c+&T98>O?{^vEEC03Hjx
zWyF?RaTzT{TVTK?YCCx?e81isV?kN(jkWNsR}@znXSNV;A=!dtVb#6(6F0mG7U~y_
zOSF*1!rq$6NrGk*G^?N&YbG;bx;G_(H&0lb)swkPlHUSZ_|(Eg3)wB?u+YFlLkl@A
z<g!rOLKzFWE#$FK$U<QYc`f9#kl#W99+Z?Y;7WY86Yd@nnO;Q~v@my8mVq%@a&324
zM-dA}Eflj*+`^bcUhhHgkOlF>pT+HX6J5eWlkHT}!uWb|Gv39O5*}#y-2E+dSqtSX
zRI^asLU{`nEL5>j)j~xJ1)X^QTN&@(R>{Kie2H8t3&5><ZKrA5>157?mD{O?g_;)X
zu{T)BF9|&o+#NG&S*UHHj)gC_Q(X&O7;q{0Z}i0?F_kMMUfIsS{7-6Rp|OSj76!0|
z7Mfb<Vxg;rW)_-TXl0?b1>Wzyg$0h}|F%<07U-48yGQcYk!>urwQ%xa!u}o9&O&<&
z9W8X?;jBu?w!?Ku2Qf^>#YDBUg$}9w9n{T2cMCl%^t52^p!+-M<qm3k&UI`r3;ir?
z{v|f^PU>x;kA=P#7!P?H%ca6jT9n22i3O%tKcpXMVUUI47DiYYY+;Cnp%#W&czM9v
zV<){f;(zO$xM(M(ujctu@^l-LG}6K-o&^gNxJk~qN<Vl<Tli`xjj=G+!Z-_WKTqVs
zW|X@UePbtW`8lEe=EO);%-=g{l7-0@j$1gvKCv*>!a57<Eljg8oinzDr50vbm}y~w
zg@qPgC&kPX9;mg8W?PtJVdszDxt#ee%(sxWkGtJ>{4Qd^e8z2e(IN}mcM)$syx0Pl
zi)E9xmrYt`VY!7h7XRe|18#a(unq6yR$2IL7p)ZfAMB#l7Gyj9lMJ5O=aPBsXZL#x
zu6B2-*}xNLVH>Npu!+6O3(dk-?tM4a*-dZDBt00E&~rDP%NWy>H@n_VJJ?7IyDaRs
z+<%%c+f55gWEzwq)5+ar?4~{JrTB!s7Jk}I`vhgMpI3SsK4{^Pz=zW~M+7)3=rKWg
z-{zARPFc__=sXGwpYs%0xMbn9g)<ze7A{!GusQzOZu(d|=B$Nt7S8h!j>jiHNyn7O
z6|;xFwBX-ErT5T9;e^hm-LLEg*bkgKEU3ITcX&JPp~L=!k$Y(89-40WGKLc>{uga<
z$XN(ma4ZBZge+JVYzt+dM2{;IbK|!6+#YiF(5ak>_x8|>JruEUnUj@;Z!BD~;N45S
zIe(G8bT{6;s`*$ohWD}I4-nMaOW#_!&VI828#gT6wD5)_%EB!Rw=M8qg<Y?C`GW#?
zEc|NWHw)kKf_)zSy`T*43UJTD4{4kq1^CIreE}Y%@qf1PFbzMl@Hh=WvG9w)Cw_`$
zg-<Q~&S~MU_a%qHwdiTlQGZzYlanf^5eqLYcyfA}&zR}YC%sYc;<CPrdu8E$*7UC}
z{Kbj!T)LFe38|F#qAXa`^UlKGLjE5?KMML@&<}$CD=7EHI{y<m%0@cd?SjicnW8e-
z$Y>+hMx2dk8&AHD^Vsm(?l#?feV&rHqsJeKkFmk~5*M8w|7d1XCL5V;<hN141{)A>
zqf6!(-nclyMxu=@Hj->ix*na!#-&70RvXDSdhey!>Yi-eOLb3j0gq(EXCuW1=e_T8
z$K|l$w?W*+!Ki<0d$QZ^iHX6n)ouvow2{k3ZW|N!x=C#5Ug9QsZH$jgIKG$i*?5;b
z=6&gyeq}wMe~jZ#8}kmXg>4kEQRhnZc^gG-6ti*C#wi=cZIrN4iTf49FKMHUjVp`d
zxs(#1w4hJdrDM;OwNXxpakV^qBh6zK)0kCkRJAdY2Wz96jp{bq*l25`hK-sw7Tk?$
zX=B>*s9MaQnsj-Mw>Fz(qppp5Hd@#?FgdBdjRrQF*l22_p^e8i6B~=MGiW5LJl<5?
z%m#1r&|FYvGWg%2S~0Arm5prmJjLQ;THDC8(EZzZI~(n7jIc4%#?2$?I@suHqimUE
z-l)8zjZW<CQgK{53(&>Jl4<F=+Ra9H8$E33d#SIDemo-r_u?58pidg*E?DLh8~tqz
zu`$%f02>2s3>E@|Y@|vuaK-qQfiQTOs18q4l6sU6ja(kj4(9+HWn;9BF*e597{_Aq
ziJ#iYl$d@z&%O<Nd^{J{#w8UOUYTyPjVU%Z+t^}bDm&c9avLjbOt&$^#_@O2^F-G(
z`O4o$=WH>vL^TxW=88Fj^I<Q|wZW7*^SMbr&jK3@Z7i~}*v3-9nVC5%dpO}<KF<;x
zjJdGbGI3}|=BWN3VprPOAePK38>?;i`y*>O=RAvEYlFWhlKO>_b?l{>sP%#}lfPfE
zQ5dsHP_AyZvCYPA8+&Z58kDe|qbttidFnk-*R#XMPLBEa(TsQ5*q%8(<DMmxd2@2!
zw|}pVeKz)UP}w+W<Cx9c*T)<Zl)(`J4hx#NkB$mZb{{c5o+fjG!($(@@MktYw-Na^
zI_!_(kF#(R;Bwl=8D6m8MxPb*oG|$Ki|7&;qrR}wF*&A0`nYSqL|?S=6-QJA*(11Q
zBVglJ7`MZGDuiMqCXCoHR2!O&pKUzk`L$v2wAu*Ucy%{+;3luhL3<;*Id8pdBP4pU
z1bsZ+oi9gV-jXGGNPNV`WnQf|zUIaLA^JNT-`Kcn<2t+D#x-7pzeeB7<^9%ncgtLS
zJpRpk@047gn{1MeJEBRueH13oZ5x|TCv=oN*piO#JNPp4d-jQqdp3TsaiM|dM;oIW
zd)`*}T&nIl^(6KuPLl7Uhwh{M9QOO@fuL;LBVMpJJYjglc*4uPi6<)Tromrq{A%Mj
z8&7TgW#f&F-&w6E{U0{|<PzmxbvzRs#xHF=7t9xe!(x2&mEgP<l-n}rEhjxu{YPkH
z4wt{vl)UF)w(+kJV4d8A=|>y?3Gi+}7OvjjoRBVz^kG*U1kDge#xSCJzBVUtN!5A(
zb$s3?o<@}P=&E;Tbx&LvnZodgK|GZuy-qH7v){~N%<{#=3z{HkVi;M%ND?@!ppu~3
z!bldt>I^R2$|tHR;r~^$hmj+UQel)1BWD=7!pIv&zVQF{Yswu4Uw&}OBY-?Qs(qp-
z_MhndVJv<USAbRRqk>@+3Zt;VTrCzx5e~UGag2)!@R>h-@wB5Q!YC>5xjG&eC=*86
zFiwT>Ss3NQC?Ce^FxG@oA&iPF_IE;;Fe-&nIgI*YGzhy}wNweCx&Vx;hEYx6jPdSQ
zQEG%yGmKhc)E3OTg5DYK9;(CM%a_D}OFhAVJUgLb7>&Yc9Y!0$X&grLFj|DsB+R=K
zxqWT<GF>wP7_Z((Ok0N0Dvk4R=Jd?@BXd;SFxm-bM?u?%(LsQ10dV<{If~8e6h`MT
zc!!x(dzf|&qgxo=!{`ylU=a^J!{`-8w#=SS#Mpa>(KifbAF&_$2u`fWy)5q+#_qU8
z-YTbm7z2dBz%T}d(T5xIF06kiJlN;v)gfUF4I^f9{ID>lgz?`#YF#N|xBw#r9U0~?
zK47%KW5W1U02Ui7z_>8R3ot=Y-d2bYahb?VOmHUuzoS#bm=?x#!C4~cj4)=h%>vIC
zbhe<ZVNMux1)e8ps{RE6FBEi<pe(ug{|PJ&V_6!1c^E6w@X9b&rD0aJHjH&)@Mlo?
zPHKG^8^YKU#?~-4a;N!XxbPOEo5EQB#JgGeoE?>YKWz(Rdl(19I26W?Fm{Sr*cZmG
zFn%oQnNZTRhkY*OFP3zjyf=)hB|RHUdbrB-wV!(o^RxH#{|V0FFph|Z$AupMC?7XD
z8pbiUv!sU$D`d4NI39#rR+6Kn$6THGc^Id|IK!(ZF6nXq#Is?X3*+lBz6s-e7+-{;
zhhgwy$>Ld3E9L?(man{DhH){Bufn**k-!akvFxV+=YKALxH+obeoBAEJ9IxS+E3f}
z(`WlhV-5S=2swJj8`)2082n{~U>G6J31R-07A|wZ>`DxW;e-(pqvk4K9FEHxH`nVa
zSKGtYE9|ZrZmMK_HH>RvTo2<$7*q3Q`Id9qX?GV^-k6uS=Kj5W7Tz`b<LbnlVfVCE
zs#(mPFun`pUk4u@d>_W$Fn$Z;X&Cpy_#upkVLW2*h4E7u_rrL=8R<`NW5jhV;eE89
z{@oh?a~Q94B-j~Z__0#mjGo7w{KNPqj9<eTGd7{vtGJxaJ$!Qf>y>-4&6lh(kG#K!
z@dt;fgXs?b4C7fCnH~Ohf&0vgKaul1j2B_N4C57B6~?VHF;C;%S$@rN5}){27;iW*
z;uGHr`cD||girn!6bD>Sz7OMrsOq=VX}8m{@JF8OFrpk+TY3i&Af2FJOiQ1^K}H8L
z4q_cdJMcL0ibE`Xep-4KV311V1V2;S(NreORNU=NaL~(f&nAfuvN%X`kkvsY2bCRU
zbCB#HkAu7pBnLhR*&XC?Q1k!|yBC|{!0(`B>zH{*qZV(DA_pCZ`*?$_oR0g5gG=25
zl*>VGA#=2H-0}1=+$x`g{0>Sm)4}<;m;w$8IVkM7k3kALXwo=l?ExynT{tM_pg7O$
z0eW+QG99FR2kELOrpiI;evl>|q*4w_J1Fm<f`c*+$~q|L;J`szebDtJ7X}v(5_7mz
zbkLeGCOYO3E4k#Y;-IR7`VJa6sOF%$gF23TluHc(Y6)7?!PA3@sr=dw(j6k-A*w45
z)f2SrA!>1m8aim?pq+#E4jS_i9JF-M%0W{H%^Wm$&_W1LKSXN}(V;_R9HRS&DE2Vr
zJ4~$|v~kc@_@BqvXHQbEOztwTd6<SCrVi{<2VER=6#|_cbmqRQ#!Nfxy5jI*3LU0y
z4!S$&;h?7j=1i>|_uw$SIZQ7r#jS~rNjO3^j!<t0eH`?4(9gjL2P1jnipG56pud9w
zJl8GV>OjZ+?BEawLj@Ql=wLy6X7TW$YArELREM*+!&#U!si`!|!Dt5)9DK@S6lz)3
zcp)}c&~ZG#Bg7iGIUkznV3LEWX_Av2Oc7#yrN;`nFyO-c84hMT_{G7m4i^5JFv~%y
z<B4B8n9cGI<~o??U_Z~egZT~?I9TUkJxe;+nJZzbgJlkaKP4=3u-L&82RW-G@ebaD
zkI=FswA{f82df>daj>~c(xj?MD;=z2S0~4uIYJNE+B%6`+I!Nk6$0sw5{qr%sOGAJ
zEkbffog^-s1kSrBYOBM4dctl8dmL<cu!GHTuuC*=ag_dBnl$CAmrK8ZmvO58y~3(}
zJaKgr**q>6D<>UvaLB=z4leR+IymCsgoBgpr5_V`I7b~Eb8y_ja!>khp7d-LhsumP
ziKiTV=HMJJC<mWAIPKt!gR?xpM~O$rg}eUVj^B2a!d2Yfzi@DY9rz#}_sG?KN9pZR
zch!95;F1HAUB`Z_mK1OxJ5Yow7E>K)4s-{GusQ!RR~tKx3!7K&r-YivDCEF$U^|HL
zL|08>5O(0O{a3wgr(2E@7w+par%l0UhnGFzdgdDkR~=k)@U4S~B0{b^xZ&WggL@8c
z^5~Ay9YJpi%GKLqT`=JC9p{R)D(h#?4-S5Ea9;@j`2UWw*aHVY3*pozOj-VsgU13q
zNz=pp-*|amjr-;p{m#)?!uwRvg9{V+ea9cX-iK%V)4?+b&jo(r;EjW~4qiHV<>0l0
zzc?=)r#8olC0`$NsdSv)Iry8G-f?=*t3w?6M^xu0#Z5j=z5mGaffLB@(JcI*gQy5n
zBH)jOrHi;(`gWF><OtFWj0iGBkTHU2QB8`#BLIuVM&OO0<ZUmP7y;U!Nf#GECLz%I
zwl{MG@ewrr#C_(F5J95gXGx>=ZoAJ>xnvcbY!N7e!@Wxp_#$Ay*K$n#k^eo9%8)rK
zM+7+|m~k01FT1|V6+xj03P;@MQMn`7o#@FUXkJ0{MUY<r<`)p4U<B%g1g;i|plAdy
zBKSF5OtA=xM=(2rIT4iLfke<Pg6<KNilB4^%_C?LL7523Mo=??S`n0sxSwpR6hY+(
z)*h$w+`AY;MM0UvgQ^li)d>E*A6-K*Yrl@=QZ2&Y!icRN0Uu=<K6>&v)sCP}1doqX
z>-W)hBd8a_vdP}2Jp3)*`Vlk|pn;$b1!ca&6B<DiHYq+mS5qmsY8JuMUaq%WM$jsP
z4iR+Z;k=H1l*iLLg4iscHW9Rqpj`wp**sjz3ff*6!_|L}Q>O^p=TGE)KIsH?j(}+w
zakQ(TT<sA-&j?0EFgk)>5%i9re*^;}SotWr51V(#Tl5!i-w2i@MD>dxZ!OO!f-)$|
zR}1w#10y*3z&n(u>{sug2nGwaL->I}|0w407chrKFg$`R9?uAIXr#d3ZgyY3_`XRu
zCW5gM%#2`G1mhwY&z?U)ar+V{MDS?@(;{FE6WOZbNoA&`pAx~O2qyE~O>-~*xG<P1
z)J{xsIX#+rrgJPsz<^8Yw>Uk=+_214C3$WH^CGw&!Ho#!N3eh`kKj}U3nN$*!KMf{
zN3fVj8o?S4g9w)L#6_@zT@k@@j+qm*@B|$?L48jA?`q-x3Hoq?R<WM{qv}1Nq$s}c
z@!7qyJG)C*cG*-2A{fXyDv0DHps0X~2|)=80-`90fTDt;1Vy3=M3kI!&M@86J$brk
z$T=&b1eO2oH{bdE{hd?io?EY8y?Pa=XQsMpt9y#LLGqOcUwbf}BisXCyTc348f<a%
zUm;!|QFEDkZkhV*@6xk8nC-zl59WI?$Ah^X$sYXZ!8^;;w{)p?Y2Tk&)0e65JosMB
zlCugFu3M%G_PBXH$4?$C@ZeVu7IDlkQ$KT3cSyf?x#ImP3qAP7<6NXN`ete3{)O(X
z^K*E2(qa#I$<Y!Hq2+3+%&!5<)d~+*da&1neIBgxV6_JuJlN>L8V}Zbu+D?^9=yL?
z@&1mCI_Y(E_qrdmmn>I}pUQ4fD`S%fn?2a=!5$BGE>~MT7`{SHTA{Xju#Iz{6O(ce
zc5xIfSLrL%k7hxG73#0^r6#mY@3=y}v_h?4q1w(Xd2)p+wo>i);D86Z2VM^jdT_`C
zj|ZB^`8D;)m5PV(b3u4#rQ-3AtUk}8H#{&s@Oj{8w_Yt}bjs$nKJ!<q^()ovyE1|+
zRo|Z3ArHbH9P{8feefXa!C?=McyMW@s<cWqU!^P-)G^x@jCl|jLJ3>@_MJ3-cNnuu
z9hEMaye;Jfo33>B1rIKIa8iV)1WyZ|@!+hGbAsmu=dV&*S2=xm$%D%tT=C$l$Rn%N
zh4j*ECS-F6(G4ohT9f^|2iMp~9$fdJsfK16{`BB456Ww}N5c&dZgQGy$kcGlgWDds
zG^A+wn~RbM|9WtTOGNRU4O6pu599BvRMS-Fdjzl7EVo*vYTzMIcWEf5q0MUba&Ff1
zt5u_wrP{t(YUpa!KdW?_hI9?zuU2kB66Vd)P+Wu3P*y_;4J9>{(vYp8-n{J9t5uo3
zC68UtF0CO)!{ANsJF8W$hB6ugt5t!9JPk)jm1M}*oP{yLNeVR-X=pdiY2nLKO0i2R
zcWe0LY)Ux|<L768Fv|JKmp58g&~UGYni^_psHmZmhRPbMXt+<q{Td$7@Ss@cbrNOP
zDBd^MXpQQWmDLW;Un*5KRMSvhLk$fx<JsNUsIkSJ*5CzyyuhXGiPF4#tG0$Z8X9V7
zq@gY=rJ=rt1{&_P%6crnbbe8(SJx=sH!*sR+OS5g+v#qsp^1ivG(4=qyGHTKxf^TL
zLuE^M`NLU=?pv!mnAwkLXs+RL4NquzR6`35ZCP0jEj6^#(3*|U>}%CiYZWi&8nBi-
z4Aqxw)snU9-DWxMHFVI>Q9~yU{B}&6yq}c#n1;@*to47t(WNYN|9qrm7Y$uCkTB$)
zNa?2GNewS*cuB)k8lKkhyoMJvbl1>B!*d$KYgL27QpFaeY+b8*YIsHi3B$9}h9tc-
zl%JS$eyt+Dx;vxaX7^p|)ad$oFKg(n;Vlirsi|S_J=y2>@~Ri~(eQO<R$swaHM}OI
z);h&Nd4DRbQv(DC3cfD*h9Hv$2^lQ-riLLxh9*;o38_&!Ys5PB%Z04BHKcx-{f>qa
z8s63Lo`zB4_DDfC(Qkp2uhuyu_Wh(}={n_`=N`j@&vX>%7^`8Nh7UD-q~Ti)-*Gy`
zGskQALc^DubHMM%8a~nRsfGy>{akROhR-<o<rLq<3BANgnsfXw!(<Ip*upd2-)NYs
zInOg+2~Oi6DVxgBylg6kUu&2ya&ii(KSOfO6r81Dwvai3O-q!XtAV(Go%&wG4;oHr
zIH}=B4f8bY(6Cd(d<{Qo_?3f1!vc;04GT5=qB%#$T<DbX`7iF=W9|n7ZayS%5}jG6
z7He3dVS|Q^8kTZi)XU<v$ZIq#)3BTqe7#zsVHH=H^@@C@Ncx;{SE-b~n$xXPdb9Ov
zEhql)0)}-O)(dA-GrCFR176xz4Od3yY}T-a4f|Ee!C#g9RIpf6Y@>pP;Nb$^@0|Xv
zYnO)I8ax^_4STq5j7&YK;gE*X-mJYE`0x2X!TlNz2<g6FQ8;+LI=I-~_qe-S1-H(r
zr@_)-bLQSCHFmu+G#oCTVQTQP@7ksNS)7KD@Bk;mwVb-wa>5!S8locnVZAcfD{9`@
z=}cRan1;B9edRKab2;6h4s)n%aK;k(5iVjHj&Tj#pct($@*g*-^o{D2hSM6-bfoJz
z!v|LlH@PfpIH%#fh6@@l%24DD>^!ym+jZ_s8ZK*?STEzAb?z%c_Z1DlY51K@7j$10
zJoiZYH7<i1{^GK);q{H`x`s&`6*-+@l$?a&hDaE_&Bb5CKN|kkaQm2>*XU$EQ&8@f
z)9-g!*+<itZd5KEDLPVhK*wD=is^XWTe9?_l<@2nb9Tynf2rx-lGE0u#Ac_sb!6x$
zsiTyROr1O4QCvp}oflK8O4r=2PG`*yx_i5_8)v6;li2mmrLuLD)=@@Bp6+;<qhnOt
z^seX9a&>h1C#}XNMeMst&8nWo|Mf<ur5EbXS={&NsGy@rcMcL~ROu+I<8B>1lsj=W
zcR5ijFE$+=9Tj!xI=nh6>9|kFdpbtyxL?NuI=bq3T*retD(iSeM{}Kf@=;YsT^;pw
zRMSyiM-3e{bu6otHFA@hzKI7XX8iQEn@9B5(s@~)s;#4rj$yAjUy6y0*4NQMM^hcm
zbZp<G8tQ1GBi73Kz-lC3HP(4OoYNPZ{z`jD$HO{LN^v-G|D=+IEi$^cEOTd*dQ?XX
z9c^{A)6r5#D;=$Mv|)>FR=jKM@tc_=ucp=AtS(efe{8dwGt1pxM+Y4pb#&7C*Jt*<
z-<0gpKb!lV9@CLMGV@~ftogMw?%7zXvkqbxLHh87j&3?$)$y8+Cv`lf;{_cr>Udg5
zcOB2@cveU6&8i10%Tms{d+K<9vvQ{v5_1FY=h%|}qy;vsUQ)H^buj#X!uj-hNyp1N
z`snDZ<Kkx3n}cVI;-T~{pDgtXYeeLIJ^7hGRL<Hn&3!B<qo0ocI^NPTT*m+%13A)k
zyrJ_ZAXR&ds&?L8{Y2UzDP^dR@zt|lSm++C<4qkySn(~Y*B0eSwy0sEGj5C1!f)$%
zN5=>q@9J2wMe!c(A%AB*{ZURxQh5gWwJmBCYoy~R9Sd}f*71RkDLSU=7{g^>$3z{U
z=@`d8(($Q|2|7N~QLc5y$CPx=UNtFuypEsGq>y|f<z9Wo#lW4My+6q2&ypL9vOd=_
zNynEuCUd|ach}mgzTl|as^)HWJUo6lbKO?e@ud5}Ry9q>S317a@x6|(bxhasjgA>?
z;k1m@I$1ZTI%BM7ot&9E&w*F7b<EPi&1qMDP9e_GF_$g8O?@kFkT6jH2OU4^n5Sbt
z$M!bGrMvyTrH;%l*?gOt*re18i%NFirheA3P{&#w>)6XWe${zw2v+D=q+_v;B|4T$
zFE4q-*_n3eozmR28G0yV8OP_HtZ`DxN*$|otk$tc$L59E=TD|_KT`WDne7+5c;D-E
z(OIu!gN|J~cI()vV-q!XY|%0J-^}+9mRhw<?cJufa-M!u>hLx-uR+!}P9GgRH~=c9
zGwc-diBUk_v10lj9eZ``=TPSW%TB+&jXOo1uQ2p5HJEmgv+t*p{Npu$yShJ`c1VXu
zhsIurItw5rOBUrAI!qldFH*el>G10~!ilLP!1@j<=-ei~e4Xr|j*yP94nE9Bbyz|o
zg8!~cu{p1WAJ!313aJ@fl|p2o&M_Uwxukqo>b#B<IxYv(xI^Zwj+4Sq2~v2Pp8`o<
zyl*M$oTEQM=S%JdP9OF-Q+52M<A#p>Ch1o=%eb@(zbg2fARp5H&~aVIpE}YOq$Hl%
zNJ<ozA}3+qn>zj$<y-VQnU@Mo{YS^Y9QK*1RHObKNv*wIrFsD`?(w367k7E_a^s8=
zUd*bR^;D!(F)xT|UZi{B_98=~lw^64ndGbmCB-HB%$c;3UX=1WwaE6Oj2C%ceu6vE
z96^#?A&+i%o;mZqP!cWhqR{L3MnCx=TI7Y3+9bWK7k7J6&g;~-yx>I1$U<4Ed%dXW
zMH4R`@}iO#_jys<i#lH1@5KXN)bOIFm&e$u2fe83#h=?%WiPDlJl0iJ@#4ugxg@)5
z=2Y{7SY7ak))}>!r7*pqRaWgCDu0JF%j$Yj&x`tWiAGfV$NsdAI}|tAyu3p-^g5qz
zyo2MXnrP%jV~Ni7JLB+SFPeJM)r-fyXy(NuUUc@Nix=<hP~YrO&1thR{ZTJkcoFfr
zTMD)pY~@93A#DVi+Ez$AFL(niqYNEH($R}fLLL(g_I5Fe|0K5gv(%Cu>ej0{Pk7PI
ziymI|^dh)JJ;^>|Q<TiODfL=VJNs!bx_i<8XbL%fezZm2GhRIBMfIKPS-SCbDTeHw
zs+ZL3c|of6XrKNP$B7qzoA}2>Z_3$;CJIdS@uII6$GkZ1#j9St=7opj!A$GNQoK0i
zb$0#_@M54B2fg^Awfl81-Vn3fy%^-hU@zu-@sk&CitsZpKKEjX@S$D|^WrTphI=uZ
z+xWeB+lzO+c$ZDeM&7ALP`K0SuYrOiy%@!Ty-U5%;&$>>G1dL!{P0dyc^A)Ra@59n
zG2V-hIqJL^=fyuC7JeuNkuds^NT~LS7oU1D!HbEK+H;rse3yFso8phT^SA7BUikfS
zmzpF=vsk0u>I*Nv^kOo{;patDy_n|36ycX{xO}_RS6+PW#Z0!|#lrEQ6;1cz8!u*f
z@y9Nev)l3N!QJZN-RjNV>Jy31W@GMFbG(@A#kU*)yVdtB#f$Gay!WVXd(@ykYSJF{
zqZjkMd~sFH-=p^LQ3ZQd^}T9=7e9NkNqk!<xYUbfUi>2bS1%TMv6w@mlAB=(+rNP`
zn8_E;a4q*@g{ZCfVx<?WyjbJKT9K^wf(q1RAXz6u=1pWw$Tx^^V=`&8kS&5+1-A+Q
z&(01nc8X+|;BGJWaK`Obdj<Ck?(>4=fbc{qROq}{b-cUe`a{lZkD3=chet)__2Q`5
zF}yIj{tJ%^emK3j-;03opkOE|4-1KSK^@w+Bx(!B1ml8-1&;_)jmp_Cg5iW0C%vd;
zptgZiUTis*{~P<ui__xL^5ywwyg2K{IWNf1dvQew`2{a73cn<HSu8h|zF_KAE+Y+`
zEY~<lxS$zMA6@4{#0Aqpk%7OYtbD^M@rD;Sy}0GYZLZG-vJCvqVeCb!0f@rCUfdD=
zPVF<P?-C(NijWa|)m=i;1&ax$2~y{DvqE>0XBZgxnq#53NJ<NqNT!xFP|85IL~}Z4
zGEg(eK(0v2M+(a%NuB{lnaWTgLh}o!g37?X1}YjTOKjx43VOGJat2?LQl7o4yn(b1
z`S%!nT~1Yy1|gwNCBwNrYRW!!pMm?Cab*4j1|Br9v_*+>`y7SJ2C5i*150(^r>YvL
zX5jUGimwY*H&DZH-Wy_+ftravtz)1rYf3c(^$gTE@ZN~x9AFI$G&JzEf$mazBLhth
zG&4}*x0J>P->FeeME(#Z+e$oaVA7=g<3D9SVxYO<EPzkZ2Lmk(JZ|6#11$}N_o;RU
z+8bykytRQg2HFZwAYGzP2Ll~N*u_961CJT#EKw#=fs%w;B1>0EqOhBROZ$|5F#kyd
z4OZo+?^gqAWZwN!COx5k4+A%}f)@<DXrL!6(xdn@f+WuhdCovDA<rk}PwZDOlqm6%
z6!)5emksnbaD8!pnN#^g_p4V7^fAz{TY6u?R|P4bq!n82UHuGvxnK1+xQSg2Fu23q
z@!<^v+gcR9Wnj30K?c64Qp7M=$eRX+Bqc+I3==%KU%hSM9RueKoHsDSz`F*%HSit#
z$iPSg;|zSr)ctCdfr~Zs#~OIw;5K8YxX}haU|kL<hB2(g^*oa24yb7#=YM2iyn!hO
zrb_KTHt;#S&%h@JzB-^jH86p8^3o?t>Svr^mb0IP;pYSD3wC|Af(lw8Czl?`|Iz?)
zvS^Y_qXh#q4a_p|wSnmdzA-Svz>Zn&K6MKA9#G#m%|CWPjjUIE$<q9?2i0r?a}3Ni
zaP*k-DYN%z;p$hMc~s?~dg!3~o(*VVwShGTev~49G4QK_dBW!#_{qQm13w!WdQdH7
z&mL6dM4AfLb^qDcwaCE4gK8Pa@Xq|jl52_JQqHo2ih-KT*+HDh*YZ{xSS6|CmrA>a
zgwv|_!dlk1QPvg%TMeue&ggmr8w_kTut_AFlk(M@c>`e9+$rhX3~V<LFc4(j4eT^<
z$biSdE(5y_>@%?6z#apCG{&{Y*vmR@PW$Cj#;p6?hYl)k^*LbRAZK3_EXvMX+bq4*
zdnHITmXe+4HDE|a-9TtkIwht7pCtJ?o2C{~_|moFJbHym%oySXF>uVlaRU(pQ3Ejp
zaRW4K8L+v!1`Eh}NgS02Ow2qiMvkyY#H$lK9XqTP@xfc}69!HiIBnpJct~NrCOBm{
zC%ur<rJ{kZv*HY`u~HW}EDfZXNHv|c^pb(!4P29T^|Ig<!K;G58Tj)%7uEjYL^JS@
z2pRp;z%A*Qzc`Dzz|M4Z7;Yx@$!~L%iVisy*scFc^p2p*ln?#U`7m*p3Ac$16U8K?
znMgPBkxE~1Dve?NbqAl=S}M~-mWdK3N}6D_xQS`kQ;1CUq?asZBHKi16FDZzFV0wI
z<gYqkc=@1O`@JjIL>Uu#CO8aw@NBC?s(iWpk$p4nFU&7AQDmZ$iTh0O90RVg%0yWc
zce5-xUEy9K<;2_argQMZJ%SZP!YI`$iVpexCLR#J!o-6nDw}xH#8W1!Fz5x{B&n*2
zY9^|is9~bDi8iKl#9U1ijZ8Eao3%{THc>}-T@&?8)E7>*20|K|AYqhE%0SK&?V6Zq
zYNDBmhfF+dqQ|y;9vc--E#mRHkC<p~qLm3Al~eVQb57}_Cf||IZ(*YAA=Oflgr-_9
z&425VYHOmM>0E*Fgo*YhI+*BeqKk=+COVn?6JPO~D&8pZn92PW>f|A{Q1W&)@wmx<
zY}L9kMJfN}6?)X89@Wj`oZZcn3V7rl8|rBj-A#Ndt-)hDc$`HK6Fp5lWAd7E3^VbT
ziRVo8GBJqVs;TEqykKGg2daq|P3N%O?>*{O6EB%~nGNg9?=9Ge%_4+Vps=rS5=M7;
z)N3aH@>Bf;`wQ}Bf!9sE!5V4mElvI9QP0dT`ZKra9!(8q=hBDjYKV!UChlm?k*c<)
zc!p$UT@5$!He1HTCnnx8F~Y<LCdQa}*L3bbde6j26D^D7ch%J>6Fi2ckM0}?_rCDa
zf^>=UuXQz+KIa$J_Ns9vK4g7w=N-`1M<%Z5YCK1{S26I^6rO0r*5fG|JPc=oiHRmY
zGx52J*(T<gm}KG$6JMK{ZsJQ5lTA$JEEvHzq>83c=yk4szytZcylR?>uQ&@P<{$E^
z(_ZB=R9QoPV}eJX&SbZ)Dw<)!_h!)}hI0t&Ec#=p7f%+>HSw*9#U_@R_|C-lCVrI>
z_yeooF#ksr^GtrSD6gUBoA`+>!&@6Fs0AkeHPk{5Q6WDIvf}?Gl}xpW&D%8pVN>-q
z)lw77oCa4s%88oGg|}*yKVykAC0CkQWn#67H73@wri0Wm6YET@r_ZKypw<RXZBy+s
zvD?H(6Pq}^O>8lp)9QAzP0FdQCbn@t`jp>PS4~B-U7|Y#Sz=qCdc&vonAmILpov2!
z_OStds(SAd2iUn>o&L)6`P93I3jd*I+kB4+&2(<lGl?d=CJYlz{EFuu7we#k{LY#1
zFZ-P{33;&dSU<}}z(mkQh~a2q+(g(!#DrzSHo^0s=|hxBHH+r>6;Dg%<#$)c<}WH!
z6l1M-=6n6>u!$qIFkaoE@t2E^n%wMK#H$vLn>b<OBxkqDYe4av37*e?+QeBC=S-Yo
zrw3HSfa2{@=Q%c-I5)yv;NV%G-#?%(a?vxL1JI@hoD=FUvylVp3cU)b>jCvUoy^a_
zZsJc9JTv?nH90cN6n&6UR5qyoGQpcTc-GTx_D;0$hKUwIbyM(`3=&312Gut~^)EY`
zbIpfNKDc~H@gdWPEC#(G)rT~nbF9tspn?y?y9A2~vQ5%O%`Hg%3?C9JNpT-a_?*?a
zz=x8_)G|U!`H(H7v=2ExR4|>8>vKMCs86JwJRkB!Ct;29LLZ8JP(GCP;cg#l`cTW~
zocC4Ehw?t$BiX0(2sj_^_3@fcRP&*t50!kl--ic$*mqwMPqw_zhhR{h4>|_~Ri2Rl
zpbw9S6o*Y^AF7CjtdQft10hv+e<2?Xs{2sGhjAgr!)%`@TeKjgYWtj1h3ooIkM-J+
zU&rUHMeK$8KIbgZhka=3LjxZg`q0RSjvo~@_MwT7X9%d-{}etXMWlzFV>Zu8K|JHV
zna?>^uDuVB_|TjVht;D#wDO^~4=p50e_BdLCbgmP30FIblC%}VGed5NQg|J02Onl%
zC~O^8FNRg2iN}2CO$F(`&OUVUp)2bv(WeBT5bP$%E`HMI9C%Cev=7~V=;1?8NqSlE
z847v16|aMl=yN{w^5J>mFA2Wj!;3y7IE{Q3RtzNcpBdSweSGNe!vG)p`kasQS0xt}
zUi0zxZKqtS5qa~`K%et%o#!Jl*XuG2-VhwbZqf?|3+L@ELwy*=u@pn;7~WzQAI69A
zaTpuNxZn2Sz5wnI;2j@E`0%a|@A>enAC)$zjr3uZ5A%GO@5B2(jP_yViHw;(eBk3r
zCTUXy#|Sbymc8%8haA-+nJ743@M9l75%Q_v1i>A<T?||Aaxw2`K78)OBp<$zq{)I`
z3jV%7iwbYTQJX3fl4(M|^5N^GWV(-k5IbHm%n<VEU9MR^UW$=6TX2pKr-x<E75rB4
zJHds+GQaoX2Omhbe4O{A4@B~xd|2Savwl41$IndV5Z#eh!jE6rI6j<Zdrr?<B)Hv&
z9X>1;zQl*6LYDck+J`lq`x2${3Lz^6S8?9WO{H+H59@r`l+;--WCMFdQaAd*(7kCc
zH8)Gr7QwB8+XR_J<()q4^1&;T-Ga-*>VS|v^dYSF3hoo!FUX9PAN1jn4;~*Vq(t*U
z7tSOG3JsB)KKO+AeK;v3!1ck0kPl%Wj);WWBR)iZuzbkyq@7&tRM7VEZH2U>hKoGr
zL)?eMv>-_l!^I@Zk8*+>Ogkn<j{9&z$efj_b62LGN?JZG<P1mGZpZ97AI|%5!H0`n
zb^VU#mwdSFL#l8_uZaFFAFlfFoABR#xGCfsH4WDvK3w;q&!?$>`uNhf`v&{^)6~Cc
ze{QN#(oGBPKTX}Y(h0YH_**jm<HH>xbo*cWJU4a8p){8tmG?L##m`3tr<zFmaF-v&
z{CGsVvWsB4B)R>_5RxgFmDDfp|G$23xihV#AEo@r_M@~PIes+oqoE(Uew;p=cDEnp
z{3zo`o<#Eniv$b&e5ugUVR#@jSNTy^q7)|N<^8zFk7|BY_oIRz_p(Gk?iZbkf|dMe
zHa(Tu6X@7s1^uWZsSo<mZc1jtJ`GZ*svp}cx+$q43bp;HBc!GuwS<Ji>Q-3Q^`o92
z_5Gk%RQ{hojM7LWKN|bd%8%B5K6v0E$=KYFhy7?O{1KKVBvEJr6COV5M+-@6nN*;C
zCbjXStsjs1(b<nsm)v%O9sRt~$%%IGgMs9g;hCL;6t+oaw2L2I{dm%kr$qR;ANv}n
zb`$=DA5^9e1BFlf(cO=pemo<ol=Ps2e2bylfLSi8u?X^Bemw6-Uq4>;;{`unWMAxa
zz2e79e)yNWUiPE6AA@(M{qTb8xh-jL^>>jFDe2=!qsplizUIe)A!Xk8W3(Ur{OIq;
z06(s4X|Mb7h93ht67t;7)^JbWnALx(dypSP{21!Tw|{30_Vb!`9Ioxoj;JaTb^Te_
zFh8<R=e*@d?V70_BWk!GZ?jFdWxXT#uHXp4t)t3N{+{rWevA@A$v)lnfgfZ1_{NV9
zx2BEtV;obfxW8o7kB{h5PUa*(#{2QH9~0=go$`sa%%^@Zyb*C88yH9?`uSAm&a3GD
z%#Y7SXIN$DhZ=@2*g-v<-C2|UnBvFSKXRt}@s%H|CY2$d#)8Do*M3ZAv-Eer)Ze`%
zqQ=!KGsBOWe$4V?wjX^)yXX5c$B%;%^}X1iEBLM8cY@SmDL-(kM%9mg)Qmdr&6A`A
z|4H})ehLU#$d3Ra!=j3T%8UG1?8g#6mU3PPkQu--`SgqmF85=FA1j5g^J6`$;Kyn|
z)^Jpu%2+G%3%gw8440O=__4dekDY$(@?)bPoBY`9#}+@RvqQ3M^@D2Lg>MsN(*G<h
ziK^Xx?D6A}pD!Idnl!stO4;Yfes+g&mU2*1NfL!>e&`&KlIj(+%xDTRl6HJT68Zr@
zf*kqmK|dm*MmgP}!GtqJ%MaU+m>+Rw^y9J^KP-60k0U~k`f<#U<HAo0(!vQLG<b@W
zI>{5|o|Wi1Kh6ueAVptH@LjHi&J{nd`the9fBAW>u<JKJeisE=PT%c#c+HPLM8Y~=
zPda}?B(4C@@ORzx<CY({{rH;}xUfqSjVJ8W!Zg3@jtI4dS<QC4QUXW~0L&Y39-Ptz
ziv^rsOB2qFiT-s5oPJL<5jC>{C>=mf0L4X(k`e)w6kaMR$rd|IV#p1kFo2=}zX~}8
zG2{u!7c3Cx6LKYz3IUW2;BMjN0=P#=c|oeNrVI)FdjqJLkP9Z{4+QXF0P}*FA4KH<
zssvz+a>oOx8bGxGK9Xql03QF+Jve|j1E>)|%>ZfzP&?o(4ow576F}VnK7P;5XuSZo
zM%DSKsviI`!5au~7(k-{8VArMsq>J?ndM<2{YqsrOS1qT37~lZj|T8^0KEff5kSj;
zv+zC>K&t>+2hcHqP63qgmT4o{E`YW|ZVb<)kfD759Yn~V9~pftfX)GQ3*bpn>k>d$
z)<|@i`a}Q;wS*D!rvi97fF1$#44``e+n2d0d}o%6$}EDGDIqdCILG~L0M7-`i=7?-
zqb~&TqL4bzyBJO2OCou0lKYhaGA3mX3ZUs5?mhwZ4dB%Px&#Ua1~7Dt`?UZM??wLr
z21qDwDF#-Yf#h{Q!&~YN=Cu?9h0H=bL!>v~3ShX9p#cm_^fJeu&*}QN1AMI>@ACQo
zKl1ki7%9;)f};W$E#!T{6+=>)@q_>HvBJl((}mD-B79oGJ)XTEz$XEG8o&g0ZUEZ?
zm>9rk0n88JrvN?=U{V0H1DF%Q7Xh65$32ZMZO!>IfXVFrF_}}Of2Rr#v{bjhGxqn-
zn{BDD0{A+B>C9`XZv<xsFhfYMk!}hZW+kI@1Nb(8AH_(yZh7Bv2(@*8&muNDn|6NS
z7`Ra8()o<-mLi!KKxC}*>9c_TSZXPkboxIx>u1TnFo0hI_%(n<0W1z+2}gSwH^V&-
zyUIW8A|aAj+m*)8<>dja2w-IZ7q6FDAHaqHRt5Oe1R5VJS`)z90A3p5{w6)QRqd2@
z?D0XEKc=vtwR>X#o7fufW^4&ya{vRoXHJ@v8=9S4>FLy=pSbge72L4YOAlsl4<JN^
zPx5vIu#*K1FSCmsJ<h#9fZd!IJJWjI$=DOX-T?LmFsgj!%_*)<vz(u=4+L;9fI|Uz
z0x$#c1)v4^R|~vS!HF+8Lwd{$E)qi|MYc1do-3c}XBXS5(Vd(?0Kov-*lKJ?=cM-+
zZACZ2Y&Y?TJSxNzv;&AG<y1Z#z>xrs25^kiIf&*#9Oo<xpjZ%TL7Zfp2XKu`*<g3W
zr!!9na5Vrv-kb^GYyjs1pzyNbc|k@m2)P)*rKDs~HTM<a&1bl%@S9kmk>9y`%y5zX
z!J)W3^?Cq*2JjcB^TmuC0o;_zzCGT3D}dV^dqtV9ApWN2Z1;%$Id=m1hwb)C$$ta*
z`$!SP)$M6LdgVP^x(q9o66A?eKoARUbyv_?k%neDLx|DzAewzprcMwK6}sI)WCVGm
z6S9IR6GUDR#e+D^HsK$pL6iuhq(n;v(a_~e$P=Wr$a8|o6_OC<2T>42r6BGTVPO#E
zgGkw&RuqI1N!cLo4x(HT_5Ndxc^SPYhzg=}Zx9uQu((7L$^9a!97Gi%4+uW^A3Ifp
zs2)U(AgW0cGqT+EKcv<SqE-;gs<<cZcA_M;#U+xu%pOGjAQ}WQa$IVYAh-FYH4I|c
zuCxYQ)5seI(O857x2BayaXl2o7rW9P4)R`}G{sL7R%&ZnGeIgm8iel)*JD9+4)XUp
zv<#w^G<!S2)`D#RHbUA4ab}V;^4m+agJ4HN$~z@fy9CiSh%rHom88dsLG%ft?R$Ao
z1ko*sCxdt@h`Qt5&jj&o5KjluJ&4KIa#qiB^`Jkt>M0rjkoofV=A7q(cs__1f*|iD
zc>00V7lU{y2$J4Gyd1=d2U3}u!0Wd&$eGkP=se*M4PsajuLkj25dDJaA4Ka1(uW8R
z2=Ztb3<_ePL@9qg$X|FA3Bw1UWfBJm@us9sxs}6cx!Eq_TR{wG`v>vm)||J4cqhoa
z&&q_#XR=Zwf>>EKwN=fGcO}<*Y>kO-1|GLNDhO|nOosP`jArSbvOW-`a9j`{($&ZE
zW(M(55aWYbJT7%o5Fd+>^3Q_!gpUy0(>@Ji0*A-ARC0!iBBU~PJ{M&seL>%ZPYz;Q
z5MKo`MbxN2RV<TyEehWx?N3kIq@5W_omoN57KJ&2-vu!@ssF7Imi4`m9|V6)rqZ9E
zf>^+%DTGHu_?eTMqcn)!LHxoAnCo5@#A^CBAn(^876sAkt5ovEK`aSkDLo0|_W^k;
zM1f?vD3Gia`G9Sy)L#>X`{%qJK^R@L)&`v)m(u2EtqWqsjhyu|gf;}RF^Ek;aD~|%
z#I_)|2eE~dE2g%JLi?B+v&H%J|0zAQ<S6G`3{CA6gBPZx?g?UV5QQNWg&gDif*5ei
zeJ6<hK^zF;U=W9bIK@F2geM60{wpyR3_=sGvx{kmBXeh(UnHh*pCFYfX9!5N!wOd@
zh;R^*Afj9fg4~wrtbTg;Oe+XGh?qoMZ%eDcG^@!+?l@=7y}2YugE&SD?AbTc89KFf
z9p^0GnYMebv#XPmlae$lrk3o?I>R9mQ&)mG%LO^xeJ+UeL0kx8PigmMs{NI5F^CRt
zI_vGFB;hjNYG~foAbw-B2XQTkn_`4^j?T~eBM9R4ApQ*EFX1-?C-=>xoFVjE#;qW3
zi|}vB_-_#Z2w^IXB)BW&R5m4q)R5y0Lbxl0Vj*x6O*)g27D9Rmk5_Y-5H)uQ#Y5P(
z*?Hv15J{$BmS7~NCX8?o+>%u?gi;}-Ww^6L$O$1ggwmo==^pp}HB!rja4x3u1xfNG
ziG-mbgxT}Tkf;#KhOqR>ta2gD>6n$fC++SK{^^l<S6n^zbY}SwdOqvACxi+i+#5p0
z5bA_bH-t(d+!w-wAyf|G{t&*NlDqJZ`vI{}-l29Xqg6uaJj7i!glZx5KaxXUJ%k#f
zQ#*v3A$0iIT}z@R=cazv%XRUwTvm2+i(GAHZoLrdhtN<`8-y_GU-yKeZa&}M7gr;0
z<unSRaR^O9cqoL2LueX8>$n;aS0BcmXOHD^wfynIW|G&8t4Bg0QhugOR*Mim3*qw+
zT1sjwW(=WC2yH{yeLm-n5O#LSY8OIRc0>s6mb=>1NluCoI*C4wbPnM$;Y?+ep^HSX
zO>tg&eS*yu!oS0v=bUaK=Yj3X5S|L*Y0>E(!pDQ$w~L&y*Fz-##?><+JR8DuA@mC2
z)ev3_;rS3=U}^|`LYP%Qb^q?H7ilVlmnHO;jI^+GlAD2qp<-?(pRf9|F19*zI<p@e
zJcP9q-2(-?O-LP(Bos2d9s-3VgF+Y_f|2QdGlY?B=MaX3Ff@c=Qp)fU-e&43_gf(x
zpW@V)pBnFku<!BI_o(?{nGvG)u3+iI>R`D{_WS!GEbNf=iS+*H5IzWDObBB`7|-g5
zu=+#yuGHLdAv|zceHg+=98{Nbqg~u}b8<;oM1^q9qlZ<$!)jfo`_mAJ69gxQaBQ;E
z$df|&f`clI>S25t!sHMxhj1l?DIrXyZz1d#f2M`7DTK`-e8uq@!t@Zn3E|fe7KJb)
zgqb1C58)@aFegF?KZekvf_qK~b3^!EIHTW&P<vA5cY=K?xXCH}Ap}ZD6480d=z?Uf
zh5QsqDkL<2N$M;PVF^2e)!~c_VHsOPG?xpmOj=mMhB~ZR#43?&6~0Dz!k_ix(#E9z
zh7jl#lM<<0IC3hu8McS8RruU~u5Cg-@8{Z)Ox+p6E)IK%?g?RUQh^z%mauRjgh&X{
z5DtcLC<Kq_m?8MsQ2kt52zm(KWJW^><%#V65P~A1sX#I*BqW@SCQ7kFh=mXrp)E)Y
zheJ3L!db3eoUr{|M?*Lf!b#!BI2uKb*;(8v5wf|?gm5}(nNcPYsdHW$>Y^lFNGe}S
zwjR~4hVUB~(lD~a_&tPcoWdd83E>aPawCMBAzT;!r)2+2c%quOq$ya+-(v8#C@}hu
zL=zsm!bk}tGwk$BY8Vib9>!f^6bn1Gqn~L)5<Fp<%5Krj5Tu`3LW+k`LP*JE7A8@-
zbQn2dXJl3iBUcm(!YB-*jPSfL@{?sH^ozn!l5}qvWrf@wMmZr=C?Cc>!Yc^Ur9`fT
zZxy8=mc{6OVcZ|a14&8cFdj^DW}!|MiB?UPUL%Z}VGIgma2U11s2#@BVP4aKI$_ie
z<54P$emyC-iSYViGzg=i@J51-!_Ek#@q`Z#h4FA0O_R>kt7c(5B06lD=8}bk@|L1Q
z{+I|`h0!{UHes|4qg@ys!{{V(8gCy)hyS<kiLw&qb`GOU7+po-i7>i_@p#g5LgC3U
zo)QUjQNqANdxX(5i~(T`l%!|Ecp;1zg+D9!To}ECQ2BWw%=l7L@~V)R!{{BxD+ys3
zeUquIU7{4`eJzZBVf2@z|H@wv<Bg>7f7N+2j3Hr+4r5y>_s}qgh4Ee(BSr14Foq}f
z6L#K~=sRJINXp+$w)6iA8WqO-lA7@6gD}Q~F;*lWhVhY*aWWnf3jfRaNf@7ou{(-A
zQA`M9Vi@}(*dM`XROWz;ph5&sjn1DG#^ErIgz*JG0>YRa#*{FYgt3%uK01GD7}LV|
zDh!v2A1|kV9me#qLm2%=6lR1mQ&OosD~#D9{3VPzLMZ%R$Xvm1IjuTpekaJJA81PC
z^TPNkj0IuLmndIAV5;kg`Z<h+?43<%<mDxh|0+6ESR`a|*x6IfD3g|ju|JFhVgC1u
z6=AFlV^tWNlKQK~bE;8!O&Dv#SQp0nFgEZXc`2pC5%tLtwdIKOghQLe&0%bj>{|tQ
zvs=U1E__EAyTZtr?i9UKB)_|h5`>aHVeAzlCHuG%x}6#w6p1GcEsR6L*^(?p55pTq
zIE;w6VMvmhs5o~hNz^YG2qPFqDA|m($-pL!N~$HuuA$Ht9utfUQpk))StHrCo)f{b
zFph_DB8-z^JbzS`j^N_b{8Pf|)#)(KgmE^Eb6j#GNR8lp7#G6$D~uaqTx9iYXI={9
zviM1UC5)?Km`Bw0Fn(i|!?+g4A5t_^8EBK3C_Tad6eD!(rWm;u#_cc?LMr?n#y?^F
zD-!0q!(kS21_O(BwJt~)yzi(&1b0P{6+!U`ibaqXaU8qlEhMH#kP$&<1a2AXG(sT*
zeIs%+C$WUsEEPdXA+*m_Vs^4DayCwG1Z5(4wx2ssP(_d*K|utC5~aK-g5P?&NEq&~
zkFpWm9YMKdYWe>+_1*|7M$kQi9uZWE;JyfIMz~=+?fwWJi11{sf*Ml#gAr7ZV0rt(
z$`Mo{S)N~2u$o{~dA)*2_oy@WsA|{7T`Pjx5zINN>O_!x%o)jbBd8a_$PY@aII8ML
z&>(__5j2XRMFiGS)i{DC5j2gUS;X1s+pL}QHSnPb9!|E#jOUy`2Op6r&nIjy<Wa$$
zBb^&AT1L<+g4PkViQw@Fo`|4r1nnYtEP~Dvw2z=e1RW#j6mhmXb5n7<=57-1XC^W`
zH!63DU}<A?Wu=a#F;HG_X$G-d1W&T#BH-3#Zk#4kIJzmGjzBd5H#RfcGlFL#_#}c)
zBj`Oa^VtYqkMQqKJQqQ)2%eAN1y=2tdNqO<g}fq2$x9KuoaDWQFnb>%eG}1S>T5#!
z3HFa*KvF)CB?=!D!Qcqqk6?5JZ;Iq?!68Y_p%Dxd{+8fyK^8|h-ics@MBil}33=~7
zI-~x>KM?+*ATy2;GFEV0(vy!QI$rQ&L6*fZA%ck!td3v}*ME*QN%}s5NkXPZFfD>F
zgwyhuLM97Nk&dSDD~ZzQ*+RaKV0r}K2%jN1i{n-ZvrwObolE^W(l2ubzZLvWyk*n<
z5W$ZT%!^>YWLXx$PZ2B-zDV%r2!2gkTPWn02>xfEWU&aBBz2aGx0ElBU_}HgMZPMT
zN)H*Bx>h7RBG?(hx(L=wbc5j52sR4YB)C~{iy-r|M%#pM7o;gxlk!A;cL~`Y!JedK
zZ_?WX5&j#F-y^sd!J!B|5kxurA~>}mN8>cvt9%jX{Te+2uMl!Wh{<K7jr+ZQ&VDn0
z1Of3OC>Ro)*da3<K}2}}lFnzA9YKt1dj!WLh|9W{_(V7?I!6SL3MM{%PKeI=2rfi$
zk}gTo=?KmWIU}hwOC#q*lHgplFGg@hQpqm~xhzPtlw1}58@pIO<Cy&qF3wSBX}TW4
zpAr0(%zIPFjbz?i5!@F3cLXU>q(<>i1pkWUj-V^*e8ACcqF#vNuBh{TLLo!3=>K0L
zqv=t&qsWLNGm00Ycrl8sD2hk%XcR4?C=o@;C?1I7!6-^aksXDKqHGkUqj>h1DicLs
z6gg2$Kc*ORMab$i<VR5$MNt$5QD;<8nW@wvA^uv`eRmY)qNo(beWFQu`6%v*qJror
zvfLX*MG+>l)584{B}tS*{mM~PiK1~7O`@n8MYSlZM^Ph+gfm3y)Rdy@L{T@2T1hu*
zi?>v$m-MiKNa{=8MD~V~)F=u%%n~1xyv?F`B#MWlXqvQ;P^M0E$xBVvk=QbdR#EUZ
z#%k*eTSw6*if&On8AaPD+C?$5b$<T3qV`dAh&u1eb)hDUt6tPeu-IgWKPH@{a}++>
ztX|YLipNF&33l9ZRd`%6Zyw)lDx1$zo{Hk>D7r`S%$odX*{2Vc=pmfZo+L?5-+o(@
z|6G*Uf9LgLw_eM8UXan3qIfxqccK^(MeU6I-cbyQVxaI>qUa-}ui&duye6by6#d!e
z)A{34Dzh+<zs`|d+08I4iZ_ycP!xlOzZu04$wGyp$yBZq%=?zu93I8nB2QR*H;VV7
z_&kb9QH+dYR1}{?@o5y>Q;Xh@;=?E=-pm`#q<Y0a5F8W5SRvy$FhZ%6GqkuX|0B^H
zFUTw(OaGEgpd^aVqBz;2u<CL3$}5@8kE`Ct)uQ9-yEU0#M0o@OHn5r{^Cw3!C5m4-
zB%+ua#k45CkK%_YzLM0LQOt_sYmO6%eiOxvD2U8BwpS+c;BhsZ^%BW<f^(yw@Y^WX
zHgHm@Lz2kyV-)kESRiWi1%DD`DoMg1^?#0Hp~#O&_C--FmgwpzmWbL)i7t&|nULk;
z(hAP&)&+~+D8oW&YLz6B(DE8O6U91_Bs^g)){CDkZllOaHbt>HiY-xYpKwfVk79=;
zZ4;zqr^t7S57&+>N*I`NZxs8Y7;0gd<*eSHFD=|3#R1xn;!qUVqxh4>9V+l}zSoDz
zS=P_33F?C0C=4N#^O5rQapjA`&+cgL4nz^;sCcF*6vYYlW)$Hl4>Lr?6Dk@-Jc`3n
zSQ51bDUWfjJE2GtoOmRPqfs1-;<)H=vXBs&bSjF|QT!1_-?_!lL~%BXt5N(W)9PFl
z7oxZ*{Cr}fMR6%P<1Uj3zapk+jZ^aXD6U1pmkRle_i9f5$0t<wp%RS#a6-}kUs2qM
z0v7JFaFcC#)LBweE%0^1TT$GO;&1lR2{mA9K39@|qWCw8h7B|CaH+Tc?`zkQ8JQ`T
zGb#LfUgEviVwO{pGz;mL^J+7Lo5~itRCU*|z&GDBEtIy9V<F3e|AgWKRop@e3nV24
zO9|3QwwR)vt}>cyp^Sw*rdl{QE3>kN0t<x}Dp|PCLXqWk0mI!El<=|^rl#jpLM&&Y
zyoGx#RIqR_Q$>L`8P<6+7)Z`Y_WLb7U}0Hx=iK8O6^f=-D0<N14ik_Nt613Bym(c?
zYJ!YbXN~3-k<_$M%R+4nbu2t(;b{wXE!4Bn+Cm!(^({28c#8*`TWDyZk%fmWJZvHD
zq-soslWOEir~R8qtt*^VKT5QzM4JiD>rhZ(QvRbBT3Bdlp_PTrqI2S;a-C9lpHh#W
zQUgw@nWt1+3+>qE7P?w!Z=nNQ-a=;!Yfq_;Y{t{h&C8v{X5f@lXqD6Ii_>byX?5zf
zdfdVj7P?t@(n9VT)#!}se@0C^qZXf0C(o#qv#RD<)!jl53w<rTYN4lvXDqy6;YAD2
zT6oSvFAL9GXnR%-JF8}%Roc@0O=s2lvnu<XYH?1zWZ`8Cy;-`2?&s78=hX6Z>cBa5
zwq0h*dDX{4_4De9^J>(2^_qo#7T&Nh$U=V$11t=*@VbRX=hfl!>Ywwf)&<q$g8J}+
znt#EW`-3gKX<>+kpDX9nntnljUnBF%1y${$qU0?L!!4|`!PVex3-4I)S<c%EBP_gY
zVV8y77T&Y)-G_w}Dd(uRFv`OFtm8#BR^+2Cd|=_575NvJ=8uuqd;g;P?4n|paiZ{{
z;75Yv1wXd%i4f|1YGH!#27{eaKDRK*!Y>wnweW?7FD-6FDZbFcWD8R`2QB=-QD<Qq
zOSCY<!dDi)<~ZlN#3vjnJy-aGi_X)|ObfGUT;zN<m`$@)-E%F>VW-GL5tYA{)Wo9>
zJDrjrEzGm9fKwxi`Rr~k`=ZahR3p;V&zAF8MSUvJ!<Qx(E#l~E<7QZCVX^QfNy$>q
zog`l_WQ8DS`YH>nEv(@nw6MtnzYG7-tHhwWMe8gazo<&0XuSpE22Lx>`Gtg>xS5>Q
zccpI?++ksxknMsIxd?-)J0)tr?%HEH3p=0Q_gdh(O}@`^9_;rE9uPbzc*ufBJ{>d*
zhDdY^UJGx_)t~&-ATdSGhksh|TL@SPS_oOVWZ^Q~c2{B8LZ_<v5iUVTozo<u7Ay<4
zg%~Sk;e>^_g~Jw(SU4&T%a&v#v$aW>M1D+k7(Hom&lS#CIBVgw2&s_h6sEG@&q+sI
zV1Hdy=Or&Yh23;fBqV!o7hJLMn}y#kT(z7xWfE`eT(j^8r;m++Hm+OvlZ%hdtA+5F
zg&XX88x?Hav~Y`SvW?<4Zd-gg9k6kijejisYazu(s_lIJXSid*WjntEeBaag`p=&c
zC?R3E))>WXq}fQf;kKQ(uoEGX%J;7`Y-CE_8wJkK3w)QkgpHCm@@(YWC}kttMy`!A
zQdVgjIkuC9n!FZ)$d|YiQF6YQU0|coMmbR^vY~90wQ+Yszj->d@Q02z_1sz|cZ>JZ
z`3YEFlK2jF-C)7JHY(bvW23H(N;dAZ@qmp7Md5y1_Q*-?3Vv`^wo%1KO&hgrRJBpf
zMs*uCZ1CC$+9$FWM84}yyxPoN+s1`#=k4;kvs~M2y7`uOJu%xru)ZMuPyCkBP@?2b
zggj=WvyF#rJZz(>jb`-3Mhhl2%6h~Gi)(H>AFt))rx=#o(nc%FZM3)1+IHT2Z)2ma
zn4&Y(Y__^Mf5{>LvRO(88y#(Q63;U(DQ53*IE`-8co!R8Z9HeA7mb9|9=GwNji<!U
z6H<CN8+Wc|QlH9C+vs7Vr^vh8&a3V$=ouT&+L+TRl~JlCUZN*?-o^_y`q=183;c|*
z!C~{VjhAf9YwXmB279woBIn!s3{-g4#%nhEivzUD&`%0tC(=G!kK^ifNu6Zl3mb3P
z7-VCxjW=z4U}KDpAvT8Ec-O{zHip@F%f>r4M%WlGL#tjBye-)|JZP=aCB?y+=n>*b
z8>4KzFA9t@ux;r)fA|_L!k%xt$J!WYW1=+Ihc-U4@rjL3ZHyPqkEJ_knI{hrfBQFw
zIDu8L9V6u5w#xX7pG3(hPdrG>i!W__W#elpWwMPa(%n-fI!*B1H{EQa={CNx@gv*N
z#ta)XZG0=Kvuw<^F;_TCnPY>~gk<0)#qLYg<vTVt2k=lAe{AF-13$1Yt`+A9q1t>K
zzcR0lpKL6!@w3fMefULMj4u!Jk`%u1$o^sn?da%UY-0)M?0Y3v*jQ>i$0jVZvD^m7
zJUR7gko|S=Xz7)7X-fK^{IkAU`f3|%Y^>$DZSB5d<Eo8yHrCtNU}Gb@vPuz8^Vno#
zvkk8egTrQS@hvvC+Sn$1+$FW$#txgWS0LssY*ov>)5abfdu{Bp@yL`EN_Gq3@0|N=
z?5A&+)bUG-4%F)9yrMhvk~(PPkXZ9@eY;l3A~Y_Bmy|B8eed2(o<L&S+|`C-Hjc9m
zxoTZjmJQoRz()95UQjSZv=I>=6{LNpGLXb<#92y*%o>-~VOoC0G0VeDjtD<0NFmQY
zI$`4^9ax#^^Aw!2aoWaN8|T>gi}KId*j>VL`};34NX~O@v2j`aq_ERvb&)grvbrP^
zl7x`a-?)G@z)c&sZ2Zop*v9Jb@>x@cKlmwNW58wgr!)d3f7!T^<TKw?x5XO27bAwh
z*+lHt<@vNm<Nr$19rp4wMXnf9VvdkJHRedj?~0*V3~4dvt9q%J^94UW26qe@!Wk_t
zNtrQZiG*L|DJ&6lzRQ;s$^X9NljOvZ8^fnZFyRQw#E=(5rNg-IF!Ez4h+#||Rd={@
zs=5m)-<<YM3`H@h7|O<QHy!Jp_jL^AVkjST_O84c!#y#4@P)f!42@#W#@7ll+#5qh
z=8fS#sYtCD?vLSt7&@KHtscXJB4nki#ZWnhDiW<4!>BgSe?|=5|I8hKSse*v){rdB
zRg<Z$Q%P#aP$!1b<;&EKp&m==lr`tF+HzUd7v4aSLK<ltLz5U@h~dQ;xOe)Y7@EcK
zNDL3h&@_hU`#C#R67NPekKxf6o{ZtC7+Nsox!c6hR!GYj?*nxttp%_C?Iv$0oaBiZ
z+6(WHlys!S!XHaYIt%F{*j4ax!Kdn`(n2@koBF$+j^X90nLT3YDWrQ0KYy7@3Bxln
zJQqVRkv}V#NSgm;>hu4JzC_MGn&2K7L+=<SR&>9bXlLP!_7T!IhR>F#GRp9pNczRl
zKZXIq&#iU3fJi&9i?ufd2MG?2Vc2XZX-Eu1V>mxLuVZQVFunpD!$UXS!($j1!-p}v
z9m6{@j1VE^qhokChW8{oGKTksu#{0k*4}jA-_J$04><5dGFIG92<O*J{V0a<F-(nN
z(Y&mWW3WbNeip;$F&w$9KH(USVS;cPB%dgGnKUVeFF0m~IxEJPG2Hk#lVJ+Sz#P|P
z&XLjXgyglhsU-)yrp53Tt8*-4&v<vi6~z%gopyTXg}=#~5yQ+FX2mc&hL+2-hQ~1{
zhPg3Zh~Z)k-^TDpcIK8Cw#M*X4ByAlr)$;^G5iw4uQB`>!#wigne&-<XBu}G{}jUl
zk^C&UFoxl?TvTAVu+R14*__(L@)pIgIEE!LERA8+?zD9=EEBRKhLtfa7f$)=RM)B)
zR>!a=hP5K3gq0<(XObv5JcbQ1Y>Z)344bJhNeKmFBD#%>Obkb3I2OZ>7<R@Gh#?rm
zt{74~W$lmQKn%Otp8L}FNb@e<nYK5EeVn|@oze2|&lv|}IK<W9M20U0PYhZN-WUwp
zacAl=-1$DQoZJ2Q*vz?gQhhVC%ovET6}lOy!<O+2zEMB5S9^De%Tb>DNDSc^A~8hS
z<1yGV#8`zYx$8z0Z*WBo8RCwMCoKIin{={MafYr}6!X^amUldvdNzg=!cPjG5<D$<
zMzH^0=akoT!p{pbI`h}mOEFxIp<5hJ#&IQvt1;Awqh=hx#qfI!`EeA)c_$|Rh~cg{
zip8BR_t#^%8N;m@{^Zi+a{a|o7jt&qGcZcL&1Ijh5rZp^e`5c)OaEUX3AM!j{FFFS
z<2>-(*?9lIya|#PM|vEkr8svS8F7?|qhuVJab$_Gxa3M~&QBmSmXahI&yN3}KNK>W
z6GyHjl@ZK~J8mZmV$p>ntQbe7IEr{`e;j4wxI2#Waoi(G3H#;#!z;vb@Bixn?c673
zAB>~2Xx=aQfC!mdMWWRN=~7jZlT;T;qKH~?)Q+P`91q1&C#l&$3aXn>i=)1fM7<g&
zbsCAa#z~tGi@a5w8$r=Dj%IN@lGJPwNAoxy{f`kA-7=X<-X@N=adZ|*yExhl=_Hmr
z#L-cr|Ld=W+m9v7?Gi^<QFvVNiDWM%^!Xy&Q*7G_?!j?99Y^;#dc@H)j{bjVyc)+d
zaXcHxni;vAT+hYPD~^}qcsY*e<9H$NJS4mrhj&|=FU9rK=Po{*)hf!J)im|p?{a&`
z(I<}khVW+d%va)Ya8p`ej-MZL`;^Hfz7|J6mJ-JRmQpp9?~A>9MSV6kb6^~=$8m6O
z>KkzkqQhNXUrx_mGOZ+$2Q1UiH^ti_f<xmNCWP|0;`qF>^Xc$*9IHEJakYFWjuCOZ
z8+VRM;28+-2^lGFj}rdA;Ap`Q1gYt~1sun?I6jQyqc}<(M)qNhkK^Mww#Kn7j!)wF
zG>#wRm>2*5sJag5CXVMV`vd7@*_LfE1_?q*=)H#Cdxt;@5CVkW0-=WzLJ6Tm=siHF
z2|a|~5+Fbby#->G(-rB8>An5uMnC1{|K7gueLFilJG(nOcRoueOwYuOOsvhsijl(E
zV#3T!`uzwj&jj&VjI%Q_hsj*Vd5rTJzh@-P1xyw)E@E8FxFi!xnRNKWMrtdVuVGxt
zxQcN#<HMo<yL<V8qO`N6e`{zw6(T=o;-^gLPRqj$nb^qs#5Xb7%(#VdD<gIPITPEM
zZ)ZG|i5*OKGE(1NOm=5tPfYR)lf8_;W@2AVzMsi~OdO0!qSHCd)gz4LJh^u~6M;+w
zGjW2w{Vfx}XW}GtYQ4kc6ys^eKN!z2o@G3ji9a)OJ`;as;sQ%<P<&?MQYNl(mF!&3
z#Fb23&7|*|*{Is>czm=FzaH(v@|&5s#nrzVZ^xRVy-4|=Ok}dq$4C-CosQ$yM5xe=
z#7u-TA#uD>@N1cnnJbJcW0*0*c(6+Rv=!-kCJe5cnRuRw7n#VSOF$;>QS#5k<4ios
z!~;tHtn-LgwMsmdH|;E>QHVU{re}=*mA}lyt4w6`A-fN+x%F)(Y(BhU9_<_FL%a|0
zS<&*ZL28N)VfVq|LxK-39|Yh3hIW#LcGl3OL%kAxNb(_>Eks9;nu_w7+gx-@Pe&}(
zhcq8@_>gy}Gp7$3KIHZx-G@%6)9BmxxqKLUBIme4);~}4_^dqh4x@+BOTCzoJRg%O
zpIc8w@-r{MSkQ+;|IsPzqt9}~?uWyVqCOP!VUiD%eJJij2_KsH(A0;LK9urVe{s}i
zEbYVlOh{73hqBDeF_vds@<OQKLq#7d`9Qp~4=*m;sxT))lD_?HRavtdV|7NdR>Oyy
z%xf`{8VTz#uN%{;$9C#7HehVX*vN;*KHNKIb)k;Ud}!`NKOg#Y#}+<(;6n%IEg4%e
zwq|U@*w%-3OxiP&9rCuL4<Gu_#fMLQ_$Vgt#N=bfPbg-1(9T?q@~+Iujcz`C7UN`)
zN_QW6u;g<ediv0dc^^h<?ad@=q;JeJeW7E34+DJ|<U_s1u4bc!!L+t7g)u&S<-->~
z4DsP*PGKlxkv6U`nGEw`IBjkl*9ad*F(E#ZNw1wY;-h1HtPkUSnBc?L92on3@l?jg
z_(UI`9JW*W#)rq>*oaUo1=SQv{ytpu(eIMbC*DC{0dBt2xzmSf#C@3V!wesO^kIV!
zGkuul!yF&z3qG%YOrK5RbU5t}fBixKFk!9_^L!|9Hf_ES%Y0bw!}mTc@L{13i+ot>
z!`623`<LaQFA6QD9n6)mgp60WdDDbHj;D<pm$T1cVFkO|^^|?B4=a6G<-=+pJdK6G
zft+i6c-u0^<gT_KXwW&r<JkfsX|D5Oy$?jFoT_fy=))!-w$stbEzCG&-%QS*vTyTY
z3yseFC&uBE;z|B9^Q4vWRC+B>KQ$?S2kk<d@bR+rT|VsgVUG{L(5d;|e!+*mKK$y#
z2_Js*VISGgDNs4gWIy8p#)Cc_Vv?hVjTDYBCvwz>V=;c5@<0vij=ILQ^xu6r<3s0T
zX(!2Sl5mRgv=4vyFp>UHqMP2MIq2((!`i#f`f!ep^Df(;yh?A<g!4Z972~8yeqLm6
zFEL(byyC-EChl(pQn=y6!yQg4&wRMa{1)TiKHT=<jt~F%5b;6tA(Q1Yqt6FFlYkE*
z6S5FwGJZ*X$OkFLNlp@lt7=R$Ox;i0s7YtZJs<8fF?=wYWchHH3H6=5(G^vGKvBv<
z>iCe!BOjuzPh#??G0UX$oU#+kU;6Nh$!o@VKi<Uj-!ifJ5$Cto;d9Me3M$}gHpc9X
z_eTkWAM|CVR6o-Es9Q48=|_SeE<Y0eRtjCaFuvC;D@P^yF-USIGrGAc#g74}Z6D0C
zQTH5veBwtZdJ5!6x*xgxIGH0Mj~^aC?zM4c_>r3>Mf&F?xz~@pe(PFL-H&{JyyHhn
zKT7$L-;V-*>ygo`p6LbsR*2Gf;fwfDh&ff?W%8aMg_%T;B<U3OqnO|N9_X&Sp5lHi
zpDvW}qec&bNNGRH_^mJRS3Kz|OG}g{&^H7t`BBb~@_tnCqgO7WB0F=?DTGd^EgG4y
z;7rcSepK;WUo(8)k80HGJE1C9N%ChG>r3c_HT>4sg=+dyi@VqMqoE&-{HR0A=*Qu)
z!tnVv`Z|0)Km8NOQ{RsUtVXk@YGXf|_|evnb}Ve_M@v6i`O(ae<}7L9$CcdHoi-IB
zt-0F950XclNEp>@??(qeI{NX!e>#51`XBl6@&DJ4cJJ&*7e9gt!eHLVPZ@jr(Ur+(
zesuGrJM*55wEI2$=yTQfxgSICI;q-=<xvS$`*5`{V?W0JtT}*jAjJ$5>Pua|@M8#7
zX$9sdq-RSQ?Z=mX>zkgGsfPJ6oM$nDaU|m?Mp}mtzDOU#JNT6!WBnNC$9O-c(Ne#0
zPVnPvKPLGxnd0rPXGZJviGF;;9o_dl#qW9OokIQE*rxa~)sJs!oBmAOJXoMtAIx2s
zLvN9z@9czS-&#+2X819aItDQ*h*^Hj_M><JB?6e^$6P;l__5QEc|5`GjPw2Yp2-5n
zjeacjV-fSkjBEW^;>S`y{%{Gms@j%OaQe~NC9LpcwI6$3!b(5Ba|x>$iJYryTjK}e
z58O%$kE&XyZ=E0O{iy8{eq<#126Co`jk;{&fk<aFlP!L1rMUVj{wKCcnm_xoEyk$}
zX|||g+vUe@^2(1h+-ncxK0kh8vX}8!M$)f$-0HQTs|Wlz=*J;i_E_r)CPx^LG9F_*
z?#IgNR>$A`_?^8aXHNQYik%@(PV*dTvLruCv-aZxonk-!<nHGgquvt!MUl+TU-HvO
z=<(JMTL4%5xax=LN0uMg{J8Fi-;V%yyy3^4n1!2u++zMW<84Nf7xo`NGTDtQRc$^$
zXr{Et<Xg}W(GQK1q)VXDLw<z0mqf{g9N@mBsZjD{d32_2j@u%B`Zu37Yn|mp44y9y
zcb6qkDIrjl`f;DD4;UZQKujJnk{#;!ggFs1{+#)1#ut9P^wX;zto$4um;8yk^d`1S
zaRI~!kS~CD0zd%S0!RrUHGu2^*aL6{kQlJS$q}$3QwTt=YE9h9Roae(!2hC)Vl^pX
zg=liXid#~4vkr0ExU>Lr1dtIx?f`PK!CWy5=>aReX(_1CdgkHoB%zLko&db8ke7{@
zIBi98{(v<jDutL7U@RE;-=<hi0c$(n3!pGJ6$zjyOK1^_u_U_kB?Bl$a|~JuymSC%
z0_YgPhXIsjovHy;3!ofxvROWW3Nc<WfJ)3OGge`IKh}EuvaNamH3HT*Sepj0<Al9t
z0QG5A<88ILTAQ&BBem9LQjd{z8Zc?d*od()BWX5aBSe}7(C|#!H9=?|K#Kq#Jh!e^
zEdyv3K<j{Y#cUHm`v5)&VE)kbwzM+$Jna~%sRR4j?Vji1k+cpotUKP10{A$9zXR4Q
zk3I>YQ^2~%n-)OQ347-N`Ufz8d6xivKLT9?_$+{KJW6lk-wNFW=t0#0{&6HsyyqE~
zBJ>QPR{-X-9P93RCNFpWeKgH_3mkXp%SeOvWAbkC_<;co3gD{%#s)ArfG-00GJs(L
z3<+Rp03&wVo()Z)(tLkB6(Yj}h)PB<A%&3vjAA}IfM4<pW0+6aX?r!q(jOPVQvO=>
zWFB#R022cEI)I5>oy7PJBbg${$il3hwkfeurZV|9X7jrMrqlFC3o`;(6~JodGXt0v
zz--F@0n80xIW5=4obzb$16UZqq5!^U2?-ZaE{eW(;2PTTtC<!Du!KBhh3LDOnq9-P
zm_A+asMm@Bec0QwNrif?3E&4h6aoAiz}f)T1+X=Mp8{A<$MdzIe<f^U@+0Gh05(#b
zyK_*X*3AKs0+lUHwyd)K%w#9yHpcA~Zvo7x7Efv;=Gca=u<Z(9cL001^%q8xQ|rpD
zmd?Ha&dp9ZOBlfZ01gCjkabQ5a4LX9%t`GqlOv2r12`6wA7^qRfZt-0-<j;I7Jr(u
zL;z>FN^X!5Dp5k7{~5q}p5yfZ{$d|41#mfl3(PMvmbsBYzEQanK-EbJS1A#FDHQK)
zyT(=e000R|=SBcG190n3;<s3b`0W7hP*ewy8Gu9s1*{j~_!xtX{s002(7zS3e`+J7
zR*~f)%AYJz0#E~Z6TsU5!j#IU3lAs}Q6?E7L;}!Qq6c7*+KhNJK))1#yWC3Ed)#`T
zk@TrAmEHF|H=hfS0(c$({p;s(08avVO1m>H;j1e-{}P?gIFfJNv;J0k!TcrTE5_H1
zp*hxL7F!T;K{$d4+)YcIkq{rW{-<V7%t^TpK};9z*@DO(gguCsHXBu`oQv3mAe=!Y
z1o4=MD0JVG)yFzDi9sX<ksO4Z(`m;bQi4bg;{71KDhg>VED%J&Abpn#IfF=N31ux$
z5V>MJBZ%BFo+pSe&&HDi6>kuES)MP}`VN!)jQ&mOg@SlDh;m$gFQ!wHNnyq!K@??D
zEY@0_Nr@op-1kIBDHTL%7M5Ww%Q$!2|9mJPL<N>qWURzknXw8Z85wZOy63MJL}Qjz
z526N>nvC^=^z|0&T0^BalRAub8C$U%^@C`@)rO3u*@#wkztyWr5KV(<#`3m|&0{((
zn6wO{6_eIMv|%##zK2S5#C9xcAH)YtIxtRUhd&JBqaZ#G;*%iyv%C{yH%98-nMs!*
zK4sFC@iWG;)vPH~=^jK6mVD0GGl*VHdI!;$3F-7<Qec;pc)uWKvTp-|7#PH$AO>^m
zIL0r67|CP^<4_6)Cc}al!GtUf4`K&fAVO6tqk<UCd`u8uF&P`gzpbP^o`n+_zh<Of
z6PeJ8O%7s85QRk)5ivE0Z-Y1=#9u*73*x&Vey12aY@Z&)j3D+ir|L{58yIH=F*}Gk
zK|DQUn;XRPAXWr1FNpa;xcb_@4`LCkEnw{ZOjt;#udj{D;vkl=a4F-mp!MX93N^iZ
z)<%6-QtX|ztq)>V5UYb&!)j}}`wz@XjhtB*<#hjZ)<*V!<SIQm+{k1T<K`f?1hF-U
zpMu!KlAjrO1nE12)&#c&u{{XtPNNg<Vquh1bvHMW{a;wVm#e=9u`ec%4t;=I4>FR?
zLqQx4(q}<&>WXFaXb{JEm5vATTg?6mB0P&Io{aT96~yTn|AWbyAkM}l=Yse%#%ZBw
ztP4S0rmZ|`zZkS$97N?3lhku*SAw`2#I+!<2k|_J7eOqWEZhjf2*M2FW)KGt*>45$
zchGuE)on_QK?H-i6U09(>3_+d8H6v0=*y`H{XyJbX=Oi=LWmMwubf&CQV=rb&n`AK
zi1FWAnN|rRUq=VYiOUP)!$Cy2iCX`-@1Z9EI!W$(hNdQD1yMhT@R0E?<2}avj1L%}
zRkx82l}B8C%=m=yX;gvnesvp7=Ox9Sh@{i5R}@r1>ru%YO6j8Y2C%n5*hIvM)^!A;
z<r}rei}cJho+Q~=LL@sYJUnf4h@kg93ZiAiDI$TZWk0o%kT8))NfMDP!Y!h}1CK|f
z=a6YBBK;^T(nRDCkxN8|h@5OWU9>*BLxVn^Wi4RNk@2rq*>a1>!>#n$Gy2pe$zPU;
zA30p`ipVP>pNMzJ6mq;LqV@yN^NaTUG>}NYcV;ihScvgmMiN%&7Do?lhSabX6;VvY
z@JY7%B8rPBA)=mWJ!dW{V&fiXZCZ`h@uftR7EwmT;N4Ct)tQtPQI4j`yn=|zOe#`e
z5zf`|QO${yY*kqPzKE(Zc{R3AO*9Ir)nJ91jI~6NoP<NC#@7+CewVYZh+w;PB0XLT
zv-;T@h-fIHk%-13j!ugw3r$3<-tBBEV&op@)m={FREW0_(UN?wpRH{DY^_AJ7E!B8
zw%S#)wGq))#P1QDjG&!}_9B)mSfStp5gn*WMmrfDMSLjYHwnK>_(;UZ<XZ?|gz$-o
zP9h$Ocr2o`h%O@j5OGGtr?i_Qz8A4T#AhP9iI^bbYZ2W=^q{^J6|`{_Dl|m@xPc<p
z)K2Ur;`ne!KgQl7`iSUDyPqSDgvoW2NUc9N4XKkjK!lnWM`aL8NQZ<&L<|)%M#R~^
zR+leDjN(?ZJdAcz#0Vbcv|%I3NapPycu0A)h`(RhsLNNZKUPHOg>9UO@l4LtO{6N}
zL=oSJm?dI1t4$K|9h2^A;$#t1=n^2}>DP(h(ni!xnkM4<3ma9VIGu$w#0(KLxfk(M
zhBfFM>S&9r^dO$>%;lzejPpfA6&8wEBx0Y4{UR1~(^?VhL@W`pRD`lEiAGt*(^)QJ
z1(TH&07RIt60zz<5>5GsXww4^@ez#cMf@mYn~3cqN~(z)L~Lc9jUqO&<;^0tFbTDY
zqk*Up`AGz=_Roybm8V(k5V2dt9(Hf1h+Ryg{_otD^b1#i6|q+YRY`wCi#T$F_Tm6H
zonSo3c!=?^h$9rwB93wOI3q1)bf<`rk>8?C!yUgfIY}!f;&g1?NP+AVo)vLX#3hlw
z4TnEPoR9Uoz~nF9DN>WutgyK(;))27wqC?l5!XcA6mg3+DGaWQxFI5{Ny-#~gnx5u
zrij~2yzj)_5%EuqpG}LS4f1i-FCsvPmw7ZWXgU%Z6rqXGX{p(G`Tmw!%RX;Mm@z_A
zGi<b^6ekB;#2F$?3Mw@*OT>LPc$dSE4BlfBU8@Il;?%^4tUygqs7XYt5L$=ujPjlc
zZwPrqcp=i4Cg2PqA%s^V2DVM0f)HMdcq8I1OX5TLt8IcUWVOaIZrp7nPDmwN2-!oh
zhd|uHNKN+^+XUuOO;-qsA!KmhBt}w5VUo<~4&nNkIO>=hLK+W89dm?`GlX<jpr%~0
zj?|Z`xkHGOJS_Lbs`)~ACxq%O%pXF55GsdIC4_<@`o0)Sg-|+#cSCqDgyJ#Fg?YrH
zArxWBl`(OZ6B3Itj}Ae@mEdYgM)Hjoq)Z6qLMR_XS?*4fsB(o6DzX|$mh84wVorpN
zywAL92-RYCNJ!SA25W>+GlW_p)DEFh2#r~%P6+iwXu!NKV?D;`Sk#d$G>px?NeE3t
zXwC{z%Y@CiN}4TV@|H|aKJc^&p=}6#xY{m+_Dntx;e!x5gwQ2~PebS!!iO>YWbLC6
zI`MozX5~*9|6Qfdu>k1Ga?<Y+!e`98#U$NhI<!7f|9gheD<<q6+kNWWH-vt%Uj0KD
z5aR=x3}PIxAY(`fLqnJw!n_c^3}F~~dp==G2*YFg<Cu(K9LYF}adZe{n0&=JmXXG_
zJ@gQc=jsH;uS1x~gdF~c$t1?f6h#j`dJmVQxoc_&--a+PgcG}L!Lq`4#5=f%Ob=m3
z2s1-CyURv}B(p-89Rd+5b0`$2I*7~<;rkFONvJGgK?n;&xDul8OJY$7i$mBH!sZZ`
zgs?P(H6i>E!ZHf82DarPtRTzu>75Jq_=1A{qJ3qEe!||qDg>&oW<1i+cCe0ZZ3u1Z
z+BSyZsB5ElAgl{veF#62a)`d+Xgk@;7MEYxS4<fCuJFMHyCb)-C4{XZ917uZ2wA=2
ze+pq|2)jZcwVy-S7Q*%rc7*7MW$o1cTz%UY7cB><JB_|Oggqhr62jgP_J?qQd;J=+
zZou}1Fu9>EP{-D)M?9JOFuU!Sy0(MtCyh)0vN;mM(Gbqiq$mzA*pG#9GK5nh9H)g1
zp<#AwtlvWTovqR6BkI~nE$aX25YE@J{lV7AIE`{Hgg@EIi<A}`+0IiiXSa39Zi}>W
z{1w6lN;?e&DrBK{UE3ud@iH$Ut<p7W4Z$WMPQr~4Zc<!Pz+|`G3gPb%<Pa2|*X<Dg
z2_chxyTcY*+ikuO{Ita(h#{2uJpM*6YqEh5^3=E1nMx=&3ay?LvOZL^rKIJC8iGj+
z9zr;T2<wom8YzTe@ZLRdVD09;%XTtym#0H6jmvJMrJ(1%_d|FP!ov_Ah47S8J$v|=
zacD!^6ZW6F59}HLoRUB9{@V~<Qt}Vs4G-7qqWyFo+iRW(y?&OqjC`ZFOw+Gd(9bZ%
zOMrx25;7!YlaO74OF|+oQGUTLL6AUd4hg&JSertdMPoT7YabIBxA8jEeU&pwLb3$6
zgcJ#>64E3@id)M<MSGc(Hj&mphlHGDzmbiiF<r9WsY~S9Z}!|0@<=Eo;av$H9-2b#
z9SL3uc_qBaZp+6)T61!SmL<Q00+O|HWV|3Z(WE{qF1#n9uw(^rISEB16qQg$LRlI}
zLU9QtC6tn^qeQDgIweS6(DIFDR9XTpAWe$w94RP}tF-<URAj%rgbEU9g5+wS+(Jdk
zdM7H8DiYq8@Uw(%5~@n5CSj6<$r7qds3D<;gwG|^lu%1TD+#S7)Rs_3LK6v1$(n?E
z5*kQo$o|xqtOHA<lRq?cBMFTqE9`Cctwkd_xk03vgys@jvNFw`<SiuY>{BZpbE=Y&
zHsqd!P7*pxXeXh)gb(Q^pLR+@_d-Gk2_2bCK4#hcvyP4CTe5)gv4l@}8KaV@O?pFb
z7YUzA=*Alz-TJN)K9lgr1v_n`{quOzq(Qs0P2xQz^pY?{!cYmlCG?TdU%~+HPKUIw
zgnm3P8k%;24ALA2O7xil43^Ndmu2k>30+&-=(tVdV>P{`@TG)d626i!R>E)zBP5KJ
zFiL{2u8j&=C|B3Eq>*hj#e;;y4Qyojqx#nVl4Ii}jF&J`!Z#8oNT9s*HAgZXD@tyQ
z3tEdtnUj?1+!3E5VXB0!5`L2Kt%PY3R!CSW;X4V_CCr!by@VMOW=fbXVGb>CkN8;<
zD4dEkvKb|<j{?r6J<V>becV2e;<>m$A8%W7+3qeNERe8J!cqy#BrKA!n4_0mrLu(A
zXF)^T#sb!1Sx%wb$X2*_JWY+N9ZLzTB&?ROQ3CDq8VNs0STEs6-mkS1)=6;Iv*o;E
zuUtZ)-!r1<-5^>2cq-q(>P{)>)@A!937cshj@Zk$W+9JAAzi6QJUOtYM|^F~zMXnW
z_?1SHu#;9v!X8>Nil6MZ-MnkJ>R36J=6JJP++Maoi$-tuBjJ7t2P7PqaDsx9r$+Hf
zmJdnR1>&%TBNC2Epfx{6!5__>9PnZt>y**@A8%zVWw$+8<2XstCE<*OQ?#&jYKq#b
z7qt;m(^(1UC^fYcO35hH!}TX^(}_f?o|o{KgbNZbO1LNCzJyB>E>na^@JqPDuHKYz
zi^)~V%FNd!T&GKbgf4u(ZWR@z3)VLM&F7I6ZcDhs`u{Ly(nK0qCyvUEy0)<eg@A;h
z1d;VAmxd(JwNhhciBV=GeMN#A<6+8*G5&qecwK_Q`$(~BO331-yOcm$Sz}RR+(fVa
zm++9%ri^qMk0d;%BQHac@kGK?32!94mGF$*<GvJ%FC@HVo3B|yr{k4`o17)0nXN)2
zn@vWX47$$RWyH%?<Y%KLEiQmL#YxGFcDk-*m#vtgC?bV{+u@XvAR|#mk_?w@Wu8HG
zt?LfuWXdhcGTbtH)VHO|R*t0^(blKP*7cDz(`4k3LFby5j+&_ClCAStNXEM|GGyeI
ztsIy~hDU~123?rQNM0HFWV|CIKRZTtX7hd(kWr9)sAnUu=m!z#K`uE=%k>@)O%4}l
z_X^7>BBLl<E=E(%FT}UD4cg-(QbI;aR;Kes)#KT1rDc?nQC3Dd*}B_oCZoKJ3Nq@G
zsSW~_icG4@sKlf)W0hFz`!cG^sK(XS&mB~#OO04-O(wNu)Rs|4M%|dao{aVnJyH7~
zTyivEdBa$1BPNYyG>J)?(yp;SdDvV=3wE_7V=KnijBOax>c){;ds;dgQL*wrrPB^F
zrpox1o&w4EP{v0xK9=!~j7c&+k+CSR&`CyT87KPKh<BltZz+5(qo<6~ZG}%|bY=1x
zBT2f+=+3+c<H+tV5>l65G6u;Q%-wr4_L0$7MnC5L83)Q3z@$c=B<iy8p@;Ab8AD_Y
zr)kRgtD`VfwjNFv?UvLflK7>JVH6mV#5}p<2uI5FZvwlkaneK?qiA#)V`xLWC6ALa
zUdC54#>&|H&~txq;%UYS-1;>eB(>$|lkh_l8Mha4EE<+LS;iC@;a%2)N4<lKNMx6d
z$TS(>$@sm4@Q#A%GG@qFFXKlUGiA(@u|me2j)HK@K3m2@I+eHVROZN-%X}W=e8%r(
zEZ`E=*_9`KQA~faj3vyMGA@hBmy<saJ)}>6iL8{diejL-Yc=B<#vd5pj1kt#SSMrL
zcH7KWIjFiprXS;mO5J5_lChaqQpN=tTV!mN@so_7DWdAz7WT9*xRf!r$=FV3M8+XL
z5j$k;p|dGtr;J^6FfZA6%T^lC$$v-CA>B($&9_DeWH?I+zslGrV?V71{kkY!&Mw<2
zA<(6YE=GrC9FcKK#%UQxWgL@noI;CjQqH6_OOLXDlhLf0@VktYGM=up?!m~bCVAs&
zAUc>-{*ZA-##tG30n)Qu$>baz%zW|ZW&Fv9I;p5NE_p)A7iC<MaYe>ep37x+m9D3x
zK-V3**3gCZnvCmI8VWaL_+<EH+$7^N{+4lD#vK{|$VlZbgfuns<W+rJCglgdq*Att
zT#5_G5M_j91bHBu3;m@dahj54C=~x0Lb#Mry^*ad`%Jz?WN0$7Dafusmtjy2rzy+0
z)-8_K)0C0LrtZqPFXI6nVcEKuAS1N+54q`)jK{Kd_eCzzpNf4;2ys2*X@h8Gy4JTn
zqiy1ydLiSDjJGmg%6LV`JiC>Osl4X794Hn~H}iDAVN(!CPloBwOa&m$>5(u>><SzT
z{o)=H6$lEPiWLb7iWLboF5Ntk8f_nC=_Cco3UVm)QX06~V2Wa00%)gbUgTJ+f;6(m
z_liFsv!^S_#R_!)pFw67copPTkVk<>0V&XQC?v=+GD1V-Q~vkoFx?T+(3I!tkmgrV
zKtVwT3o0cQQcy*~`wHGw@ScLg3W_KwuAqd1q6+fQNKAd?Ni3MIb`^>#c=jw8k&+5Z
zDfsY_r-Fjgij`!_Dk!I*jDmWPJXA=s!b~4@Grr~rj`9jt##=fS6+G;kSc#EHW$s9%
zDw*v`pWd_AR!~iW{E?%&f=y#{4``KCLjhq;1+`e2em{b$zNSJQ1%%(#5a`)pJq7hS
zKQ~a&PyuD6Ml>%4Tjn_%D`=vise)z-dMW6wpt*t;3VN_wO9ibIe4?O}g4Qf)PwTIs
zje@oc+9@z!*#^x_)Lz@FO>vP~DjituBLy94`phRJrBk6M*E;9NEctYsld7E+bmeLn
zMv{E0V9+Da_m4cEv7{UM%!DLVNP)`d3VO!$Y4kn{`YM>9;A;i_6!cdxTEQ4r7{EAE
z!N8dQASQzqd=ZljQ81MGmyE+0hsRn+Flk@kF|1PDC<@WnHgC>^uM~_`FrJ&nG1^|+
z$P;RfdPu7=QNcIdG+n_YCe$=l!Q>d9qF`}{L=t|hU>Xa*QxKSHEem1)GQtc6Gg&@M
z!5js170l-9gX&hVdCcc4_+G&_UYWCue#V6gDz+6CF%ntKWQl^MG08F}>3eJ|6|7RQ
zHiC5#EBsc|zK8L77;6;#pjdwntfjLPM&7W+*C|-9V8+a(AL(#$>qf>?DmE$D%zTT2
zpXi7&-^w_*UL5t^reGJx=XM3>a#@lc+`5ydRxggqZUuW3{Gwnl#ej;zDt;ve3Psg&
zY`=m7lq*yusyL|Nkb<y+h=RikjwraM;JSjN3XYL+1%E0yuHb}%(+d7j@SB3)6`WLX
zin7OE>-tMb4p4dA#1<{Y&rlLzmxxCdsOh|dzZ6_jaG9GfD7eT*qJ7B}=@7rdQ@hGK
zQ3>G<1veFB(lKQDEyg<v{#J0CjgSrv6dmgymJs(-7$}hFjI(}Ffv6y)fRv+!2K{#m
z3hSuc8g+?uG)n#oY%1bZ7<57vJW=peL6(BM3La2yQE-nt-v3X>Xm`R#-1Io+VRVkq
zC@m{^t>6u}zEJQ|!K?r1kmvt;6`j{xUK8SEGhT&5g`ff|vZ=_<drJCt)rzaAPIMid
zsx?z;B6$LHk|(i#Ar<ecNLJxik)k41g-3-~MVg8nDsr=_oGQ{)<WiAAYP`!)j1Cc<
z3rX^@a<nP0ig#4xSCQ{O&d}%u*h0aW9kM{>Jr#vjysx4vD;H7ee_<%4qNs{uDvGNp
z@gF0kA048!iZUuHs;H!*tcr3f%B!dlo9Tajqj9NAWj0cUhmKl^j!v!BRMb{cM@4lN
zHCU~tidsyl_1_Wes;H-;kxKvcu~xXgiUukgGADykn^FBHDw?WjrlR?OW=c&_9YV6%
zQbj8jtyQ#9(S!CvMOzi^cvCtvwpY<n#fQv4VC)c^-A7!dmH&jv$2<yEsdQoq*(csb
z#iuH|s`yMrH<kVmWu1B|QE&g{Jz3r_*4m3nZxwx1^kx39e*c)x02KpcoW}Zs`Ete~
zDu$}~QpGS8Gh#Z!Rea5Sgo=?WMyVLBVjN4xsQ8M>*#FFeMkM#h@^}>!xRrQxQWI5t
zqhgYZ$tu28F^yZNFiwrFPqh1YEF?SAW0s@xnJQ+fn5|-titkk{P%)P^=g0KtF(KvX
zhznILV#!h!i<vB8jJ8JoT*eaO)N6%`l`2-LSgm4jOuk0NR^~sbSgT^4iuIJ?S@NTb
z4NNx1{EXU(THdT;3%CBe0zawvS;aOL+g0pRv71|WFz)>SE3k)!WapQd<>(6hN<ph)
zzlsAYj;J_F`JXip$Mg>|`F915sW{G(-&LGo@*CrSSKuT|qMn~t@rQ~tD$Y{U2;=V_
zu5&8><dc$%uX^X1|HZhhUfc!ldr`$D6_-_9QSnxVEsU!wuBo`M;(?0mDsHfvrsAfG
zTPj2qAr*hCxUIsc!mr{EEBvD(lL@)^?-Zi023Q_s{I^L`A+sdRsHjk53jb~dkq8T;
zc67Q5s4!Jzskp1+9ydjmqbnTc4^=!;@iNx>n8|a-Cn}z*c*dN%{M+jVOK6l=Ovuh_
z6>nlZI(l3f_AnfDQ$cSHWkeX+m}F-pIcW+pp2)<>m=K1GNp!@dFp|S?hmjISj+lNb
zN%q>(Vro&%oMEK1ge*rTl+ecfV$03@OIw_WiHG->s`<irCyc6LR0~^=BgA$#dP7wH
zFbafGFpNTByc<S|FiMjCXTp176bqv`^TH(WXe$y%QLfTls7i$hX%Z>L^73I+2%|Lh
z>S!y&j+G6g9FwRrA?a5PqY~>AC(X)XRAKvM?R{2`%BzP_BaG%@v<RbS7`4J^7)GNo
zYKKuLjJe|z8-!6ejCx_z4`Y@sjwDlU)`tY5oG?lnvof_dVM01onlf(|wmw}$YAwUo
z2Todt(I$*m-1Kkvwqbk}#>Zi_V|n{9J_w@&ckCE5NX9>m^&<WW^Dbe08b&APo&TfR
zHH^=AIMR%INTgdB-Tz~uXBfT02!{~~TYug34&$3JCWX-_j5!sBzG3tWqkk9!!kEY_
zHm0mFFpS}0j0oeG#=@X528Zzlxm_)B2;(rup^RUWS4gKOD!tO;<c}QrJ{RcG(8w@G
zg)useF=2ca#)L4wX5(YS7$3$s=209xIfDvuLfSPVq)eaIBR)BdDPj5ywtZU|^k$f;
zVJr+|Q5fHnx7{7n!uT$1J#C&&6QR;km_aUe5=b(W<+H+=&4l*lqvnZo!<ZMwd>)#N
zF9_p%<~bHvKMX;o;h6ZvVJr#by+6`dhpo5o7Vao44P#jt%fna^#>y~Og>m3>=bBDJ
z<9kWMW6!dINtMe8-KQqd`?}YJ@k1DE!&payhVgS4>nZ*pduUA>J@)(<#)dF@tW4Y(
z#^x}#gt3Vhyh0*L2#FJ+vXu!r^WvYR4dsO1k3AilIJSqeBaEG4><Z(27=MMaJB&SH
zWV8`#%uD<wjJ;v}7RK*k{7PpbjKg6Z31dG^p|Eg}7PGZ*fN{6aKBaWrA?7vP*+@?1
zD1{$O==Uj(h4E+`W)6%e`3V{^Xdl)#=gBZmQTAvWcP@<6<U^{1<Y&0cA9P+?#I3k4
zkmM}uQ}s_KO<Tm#5TBG4E`)I{jO!G@V-qhjUJBzflPioQzsls#rOq2++zcZ`C$XH6
zel+n`82^NkNtuVT)6qmKx5Ky-<DV~bki-{8kR^V`0OO>`o~XXaRY{1G*rv>=Fsh6+
z(AvlJ5?$z&86v0^ff0sD2{VG!2(rSs8^#+7m7>BuMj}tcxX=6n<3q+rjE@<gFp}mM
zsmae`{5g{sj4#7@6_dYa^7~`Y+c0bq#6_&Js3b%X9|5?UjZugod#u&Y#1TR0v4@nM
zF?rXM4p)pPMvxTa$q~3CkgLU!^3J_UX)G@mLGcK3M36Ir^ayfA@Gi?U7~f&c9YG!@
z9>#nTc$ws7e8r<L{Ln#W^Rt9V0VV|*3o#D*!%}#UdEp3(Fd<3N2u|<$-+W83urgyw
z#!?ZKj-U+lvJq5dLcPjGP(FeRT=hJ$rr&aqvl3Uw_OT{dC8qg4ld6o>7^^eZi1H_%
z+7Z-=U{nO7Bd8ley$HHT&?AEStk5KarV%t?-jJ~oBMs3wf_}M^i8PC#c?2CJ^vY#=
zyPY+cwu~(qTgCKSGieh+=O>;C>~p&a+Q(Wyh@b;aaD?T2t7S<avAhf8$Bdsac48!*
z&JnC<Bg8*tVOPe_7`sLAcYABWKaZei1VdQZi*W!WHT7oFCxX6A`o-k^BY3_xi4+FL
zB!id?X8eMY{2a>UOGZ*27Qyfs9}&UG2nOv>Bl+Pco-q-8#Z4<B7#qPj<_jYjAHjqO
zrbjR%g0ERPC1zn_1m7_C_KBOsWOB?P*_;}|w=vCWOumbt$_6Jj&5X(CMlg%{Y{of^
z_Jfv7^I|&li7;OfliYdYS;TyCOtOT@(g>C@S<Xn4S`A?(^Hq#wb~TeV5&Xa;8rAC~
z_%VXr5$uUzLj)Tm*cQR|2sTBqIfAVb{1m~K2;LhO?=NCqg9r}_N$bkQ{meq*`G&<4
z?ucM#1ZHnxR|F)9YLeR1B5}uC#{Ck(-UyCFa5REnBiI+g!3YjTus?zW+>3OmFBvC&
z>Py3s5vm@hM_6U75syW1Jc1Ju{KikTs3|IscBH;UPSH_~;8|+6=c(ELh~NxO?KL*M
z#@PtY(OGzi{txkI1m`1YoP{P?_$z`7<dTkKIxa?VDS|N?zS69F+RG6{BG4kZ!oyvS
z;2M+b5d@grh~OrZTM^ue;2(--uHI%W`df0#f9#peeG&ROHrx9Ht-A$3OI|#&o)QNm
z5GgmZL}4VML<um)GoE@>=HZxxZ0eN!BPgq(oCcGUKjlmfDH`rZaE~&xhIkG4BX|(O
zQ(B4$9!Bseg2xd&iC}I~XRD{4L#gg7f}{6S&&;QuvgwY>4#)Ed9NzfX5xj}uMFcP3
z+FwTSDgt`t@()ivRhl@@J@veepy&_6$ueoXYPf6~F79%9-#F=aPN5;220?>ULv|`=
zoLz%MLvJmC-p5s^uH)(zyKh<Cynk{fXsG@dTpAL2g{Rkb4D$&|8p<j{vWB`^o;_z$
z8&`7%o_bO>q-iLm;av?mH00Fa(csmPt|6C(3=O$8_zF9MH|+GL*_%Oo9?g15c%YJV
zPd&$(*VcPA^J>Va;T;Y6HGCFv>FLfQKMM2OI16Z~UD0VivVUvX3u>sC+mZ0hL-?MC
z!WxQeD4}6*Pg@ZUMKu)DFvXG5$nBVREV;Uv@cuJT<Ca26jowj@(i+NWIB~^Zsj2l&
zq2~W2&#35Z^~|%lecH$Gy2@*)py5LeAJGsRDrsn{p_zut8mefhuc3j4_cc`2P>cN0
zaAtOLH4Xh5x@u_joYr2QvCCEKey^s6_H*4t3K<D?G+Yb0>uK~cw&c3B0(G23R;*8=
zf2=gr&`3jL4NWxsbW0F63A<*v^D4rshAFsf@Ab?x>Zs6MLkkUUHMG;vQbQ{Ztu?gK
z&`T8BytJn!JDP;;k003AzvpQ0x92D)qz$mO*YJUc4jK+jNxncgX3snwX`zmx<ywIj
ze22^Sv4&5`a}E79bkfjSLpKfGHFVMNsfMn!_!|Ct=2?(sFIvO(ex($bYJXeC+4qWl
zKy!Bw3Ih#2$pH-|U%2K5?U5Vt+ue>5?i6o+*ZGA)Zw-Ak^wkh}=6Uwallt6K>A7cs
zhJhM}YWPyaAPs{xe4$|ojsD#8D9w4UoFhlxw0aALN);VvPp5Q>cMj7qT*C+rBgv~Z
zo(xGi+}c^~N%|;_{zvBA^4wFhx?{A4$9dCcJogZe)i932Mn?f1<26hm|216D@U@1C
z8h+HULBls1CTUopVWEb}6eJp^YnY*7s)lbhOw;fkl{KD&y1i5h_uh<@(^<l&#he>o
zB^-b5nW<rxhS?hCP|Vj$uPrB>%t|h|$URrX)|^)8&ZDqdV7>2gzJ~8<#GArBn^P(2
zns-xJq+zj!6&hA*SVA$cVVQ>I8h(9lul(44@43BcLHEsa&eFH+w1c!kt2C_EutviV
zeBzFlPf?#+nP;trJTE+1!IWv2GS+EWuOTbL^^=-h#Nl|ah-0IMO&X49II3Z@hAkTQ
zX!wQPqtMduvxaSKt-=dW#WE?HWZ!t-wOzw5T8hoW4h=gs>~lG5PE8}Eu{vzZ*i9j{
zDPzzJ&t7tsVoAe64Wq`V?Yfb?k36|%Kc2_2UjyNHFD&<V<Z~a=@B+@mJP=9J8##}W
zf`&inu+X{F@SBF;HTtP*&`j6dwvRcOJhZN30GumoJ5On-dCE=4=QQp3Rr`Q*$!9g3
zqf?{dJV}~6cE9kfNw<#ehDAbff9jbRo<}b{7d2ec@I=E?4VN`s(I9J3G+d=ar{Ql6
zw>4bXa6`jQ4YxGVYX(m(5LRtXPk!lX|I%{1_HFyG1sr!Y{G-87K}$JskbB;JdnO%K
z3fh;RNiRM5Q?08&km7BvQ0C(lNrR{%#MAsNzmrOdEB1<Mj>JPYRYREeg%Z1lhz3oA
zuEC)5IM3bfrG4p3&!9ACk0A-lR$+?AVbXECXkE7MQS#UDK*K`~GaIHfEuOGL6zZ%^
zencnzSND#Wp2sf|9$QJ(dR;T&GY!w_@}VPD#|sTFHQ04HbiC5=T0@+UcpaBtdLA}Q
zRkJzXXn3o^rbB({8Twl?mDE=r=os#DXV+0b!;ww5d?@kCT8&EwZ7n9b1RYKtE**(F
zY^Re+-s?hgf{rSwwtdYUPxc9^qL8E`S;uWd*t<b+>zFLMXl)78bmY*HTSp!pId!D#
z$fYBLhgiK&Xv?E~`oul<mFG+!clA6Dj}EVnd^+CIvFMfO^~L0~6EpJaC|<%TPjru}
zo_e{2BmRQ0?S!YGjzT)V&@n{EyE@*}(LzT{9ffri(NRrDbsa@@6w^^wM>(>fqlAu<
zI!e(H#a%zW^4ySxVHI4D!g>CB<@q4RQJRzsyUH-q9LwvdprbNPQ%B^Lr=pIZ2Bp=0
z?Qy>LRH6lW?V&6C`3~-KrCe?3vZAA^j@4V-AKtVR*3eN?M<X4Lb=1;PTSq-wTOD<D
zOjX^b&6Lu&GV1ao?3|PF;cHI=9fMwbroHw|F63;eV{M8R*n~}VG}X~eM{~+!UT48o
zsihy;?H63r-gQ@fZ3XJe*Pd27TI=Ypqlb<*I@;>^SjQ(i+UaPo<3k-E>G(iL2a;!Z
zW`E=9$m5cqi|HxKYipOOWW4c|c;op%$<s+kXC0sF=&GaP8&C0v30-u0PmaCg8%y){
zanEP8<~3ZK-Xt6e3*Bg&zDr)Gx<1#@Q%64?{dM%x(OX9!9es7gRdfF8PN`bbS#pao
z<c()uX7Xg4W3*x)pkp9SS;t@<HF71ad+4rxQ}{ct^UGxS^f#Uf`JI8fuAw@<)UjO0
z3LV2JK56N6e5+%Gj*&XX>KLbEl#bCl#_0G;N48_hd)P_eP4~mft}|~uJw8gS^=`^|
z9TO-ZbxhImwN4+iPZ&|h`HhZ=Is$JzRA^q4cun5C@ifYtHl-@RVDPP{Od;1a9pCAg
zt7D#y={jcUn5|<Dt?FCPOp1-Y$>Y-<v$!wq4%wkcDBss|^x5L>UNCLGj_)akbu6aI
zzV$57f$hSEx1NQpKk2PCZqA$bCA5a7og7|DzHt*B$^CCV7vFkT>R6>?n~v=iS~}L~
z*ra2#jvpvObZpSEQO7!p?a{e@q%D4wx?abjI!@!QhtSJcpI*6~lpe3dITzJ*ZPBrn
zVpzw|I*ghQ+83dib*U;E5vt^OrrEsqlCB*(cIw!tW514FI(F;WqvIFqRWfB{HP@T$
zZu=DXwr6&FS>0ZWE}QpP9k<G+4YGO9)N&oraZtx$9Y@Fw%0Go%GYUGVS8&o#X}r7<
zccpjg+!@LAZ0)!0?&CU6=nzaeP5h?gcZwDReGQz{af)(<fjkCI>-a-QmX5nR&geL+
z;~yQFI?n0%Q^zGrXgbd8_)EtHy6xBT#Oat~^L8%iUTX7xI6Tpp=<KpaD3>eu6&+W}
zNgaRdxJGladFfhnL&tRzR&-MNX=(CJYPET(&}#VJxNp;{KC*}3B<G6r-l2RI$8sHh
z%9%RC6gE17Iz$~IYAx)Vn&w*b%3d$dTVp|*q(j!xG0s~&r<3k!72Z%XJ2K82(V^)u
zDF_c>cAU3cla#^r9Xe&CiY|lI5{f!{+|1Y<=e?)nK1GXxYz7|ac&OtgC378*bUfDa
zoRU0^e%n5$x4ZJ=geN+l>Uc&L+>Ts#69{Q&znbTR6~dCc_VaPx*E-(NNi+~|VE^{y
zw`AvJa;`TCn`%031_;T$CC}|*oYxuey%|W(ZoqCJ(Lj;`hXKKW(?EiO&XcTYiN7uk
znV7ppyw_!*N4)o0e&_md3dxfVxDDhqkZvHwK&pWp2AXaY(hTcr@@E5QGr{%jg=L}A
zR$ITKu3QE(46Kd!QpOvT=ze+GIVRp(XO97|fw~6j8OUoOpMi1)${TpcKz;+o4U{lY
zz(7F*?-?j;ppZdt8uu<)o=lgdv+>?{4G`w6@0gV2C}P0ob{?+mDr%sZfq&w?PvX6C
z9jyECk_Ji{C~cq&xeae=cn8C~6kZC{vId4ca$hg(+6K#?3I-|~sA`~^fl3A{8>nL7
zeS@Cp+FNb4zT$ln-ql0WZs&K={XbQ!8>nHRmVw&jYO=GYfjtffU2t}7ao>XX)zY+#
zY~DHs)--mM$!6KFZ=ivJ4-NWGG#VOcWT2&iRt6dyXhI8UpqYUYuacMlk=iz!_p5B)
z^`p|-7Ic1}&D-3-p<>P!jCUN4)&|-bXm8*Ha^OfxTLYQdyxFsR+Zp&NoA)e_l{=fW
zgvZ%|jJFgz8kn;-jY`$*-j5A@VxXIW?gl#1MjPm2;8R-d63&j<y^E`*ewp1np;*HB
zPH8nBBy=_K8Sm-z?3VvMh#RPWh<;;>ZY=FRX==CaMWxhU1}@J}UN|I$kZzj`WTf;n
z(BHtX2KE^kU|^tuMFtid7-V3ufr$pbG4KT~zJW0YzA`Y>z?TL_85nKgV0P~?S_cES
zsyX)!v<)|~BA;_WJ}Y!b(yTv7C9>su#*Uwb3)#K&$JbZ`;|z>9Fu}l?S1EV1dt2PI
zZ|Lv7k;9o`_tGEBUmG~*bhv!BNd_hxm}y{^fhh*28klZi1_}2G-;x`4YmU<ld}n}u
z@TH{P+s5wIU5*j8(#vnm_|fits<~&=N>V%+SYTi-ugrV{$GPJ?u2x<v9O!R7OSw_b
zwa~y{_v~Gr4nHd_F|gF2UxUIX1Ir97H}C@;3YwjPl?GNB`1t}#ly^*h?3xr2CggRj
zrgKr-wT8`Rb6CEuGqB#kj|MhSkUPA!9A5gH>l26fONaNQW?k7Um33`4u*JYm1G@}t
zrEMa!2DVYKy-NPx;ia@gSM%*OYe~=@-W(6zJII>DOXZBiyPE=-j+lYHloJFm{fp#C
z4aa;f4;|Qof_Fz&LOa2`-@pL_e;aiBhl3Q52L3c~-oRl4M<}Zs^z~;PHE@iU#lQ&z
zJq7RaTXt89<Mbu_C$Ey1lydw=O^J@*>EIMh8!dQe2;S2M{-Co=+hpKTW5?-Nt}_O5
zWjNGVIkZOcS9fHr61*E0r=AeJe;K%7;HrUZ1}+-7M1g1E3Z)L8a6|Aut>Jhsc%M8^
z=zPVs;#yp{Pu<rI+%RyHV#&arfvI$ZUDxS-JlIML-JRaqPVc%UwmXzA3_PTv=^PpG
z8HgCr4EPNM49Er)110G_HwKC<O6znkRV0H>Z-`N1eCYI&M5O?};i{3~O}LU0ri|Cf
zK{pJ9x&gz0X&}o$?=dN~WgXkQQymU1V*fkcdDp-_1M`2%xNji5S$M#lZrJ)Ic&Yl>
zz!L*+DY=<=YT%iHR|Z}i*nVAjPKSuD_=A&Q7<fqubD!{af_G_xcUOY9zz+A5MZy~c
zo3m1-ko9yf&P2Qkn8;>gLLSGe@@bb6ygdvdy9v7qx+}=(@;Xc_d%sQao?Vba&uX%0
zA|_lWelqd1i9{1gCO$RM)kLxhw~0z7Dw{|#k!s>y6YrTwGm*nYUK9CD<TR0PBDaY=
z)T@}Y*9{?;3A*$oE=$QUQ6pb!ahJEJ%R3^`<uMVV6JlcH&(@z>+b%fYF_GUyK@){c
zgbrH50wy{v5w0or!1B1!F6%7Zx+2gY>4i-cF;Ut?8JdNOVkSzOC}rZCOnXCr0_hYt
zQNo0FOQ1r%wz#~@^@RO51e#-66Xi@)Fj3J&fmG*3mp3`lTb{ZnddDStFD6=tE526R
zowaFIOuTQRg^89Xs+y=~qJfEqCaTj!Ow=?{%Y>5XZG9v;KFPajZ*pxDBOLC!ChD0e
zoaC)zVnK5^ky=UK`eY=@+x{Ilae4^Q$V6ik%}g{m(dJafgd}gz140uMO?fXGO}DPL
zC4P6WPV!ECD4ZJYZe^miiH}TtO!_9;nrLUDJ+0E@)NAX6nbn-*$~v<(b9`W;OI24#
znu{l`1Do2N<o(b@$2#d(le~nVnCN7pGpTVa5*_)Qxl0yIBmI0Y?Bsms$M(-mbTcu-
z#7q<2P4qA^(!?mzH__9?Kof&Z^fJ-gM1K<lO!P4^bV~~DQC|wPWbdjU(yBa9?ME?C
z&$%JPnf;u5i7#Pb!1_aGu!%2B3^Os@#1Ip^esj}BJhN%aP!nI8)-ScStm7!1?EQIu
z+6WWVB5vz{wF|5ZZvIQI(I&>2m_%wOzA`bE;@QO4CdTnZK1ufWTb%a((}eM~N6B6y
zGn2i|9taanJh&o!V<NM>gUXM|-YF)gn)sINo1ni9uP1vacXf|lpAi_B{2i@Za|b=;
zm~J8~*$OtoSte$iSZQLFi8&_bnpk9Fv59#m=9^e(;*UYL?@fGo+dko3^1L+10t%0E
zar8imy3Z|`HvWbE*x$A#CYGC6Vd7rR^ra@2vCj!^YY0yn*T|yjuKdmc+uf^8tTC~H
zPK1dcOsqAr&cu3?9$VRul}vX>>~-DVkKEoLx%)D=cd*+_M{JXc%_g>(*vj(k4V@eN
zx%(P+`YST;33sOn$?y9Twwd$;TX<yRv56ffcAB_g;v#K<iQOiSnK*7@kBMJQ958Xv
z#9kA>n%HMzKOM0OX_H5|54pX|E4tpKI;K8Lxa9U8Gwp{=95!*p#8EmUZxeL4cf<vI
z^56uz1F^j$*i*dqiaAcu&A*AWCeE4o-NZ=~r)kCL?37J8MSEAw_1hzRwfe5r3*ydD
zGD-3JP72+NIBTa^E0ZH9{xosk#9!o(k=iH4Te`Tj>=8Fjx#z2dOC~OxkW9!Xu9&!L
z;<kx9Ca#&dZsL}SziEFdBfYTCOYv^5=@^^hy~*oCBp3a784vMKiuWIi4HG^Se%kcw
zcDl8`m*UNq>J3n$OZ6^Hb%-W{l>Igffr73!sosW<l0$SNm?$Px6DD;u5vFWrLN{Sh
z+Mz8@^<GZ(ni(ndWd3t+{Owl>v)@baQqH=Wxl3VS;yy*Dl_A}aQoSi@)_jk@PA#40
zeMmcA+2z_QRPSbcLdoBRHw$^Q@XW+>`eQ1Ke&Y-;OuVG5o`q~#cxB?XiMTApXQ6JI
z_YGy0T8_6AnYCQXSE;rv3}@qn!k6w(YP#3166U9QvuDAc1xFTyEbF=4<}~kYRp`;e
zJ>y2ku{7`EQ7M=1q`0z>n1vi!$eD$tEF@>aorRPvP+XC>zE{aN3Z<lG(d#w5?=Ka~
z=kV5imXVf)G$!d;$d!eREac8Y!;WqmV&(>+*~5hHIlOtY(DzPq;n#Lg7JYC!ZbS}m
z*2<K8S$HQ46|zt<3;DB9APXh4P$~-rvrs4tg|kp33-fY#cjxfFn}vOi9Pede$#>QT
z!Z`10^u+D1<Sd$nVl>(MuKP7y#j{W%3%(rQr#ZYSIlbj_dP`@aOxFL=^cB!j98KHz
z^1v$W?p?TCpm2A0cXxLS?k>SKAx1)g1b2c<LhuAh0t5&lXb2F3`;I&E*UbC<=k)2*
zJKIxTK0VddJt&(%xdh52&?O5^$U@<Tk+#<Vovys-aVRu0vM38xOrTN%H4~_nK;;Cg
zBv3tp8VSr21632)mn-%v3sp;CYZmff4RAg0NTy!#AdlO;c1rC8>M*?tG-6pKP%nX%
zC4+s-1%H*3>#PjaPoM#_J=J|}<id^GFMa(|{Uek>zEo<OK(hpnh&U>ud4j(dhlK(@
z63{Y%RtdaF;AH}>6KIpbssvUi&^Cc~35;iwS%L|4NT6>5{SxSyK&J${C(t8-&P-_n
zT@&b*K($m_V1z0(2ye{i=U8i(R7$xJy;i{AGl5<S^iH5p0&`PoeD{>osdPV;-lh^;
zaj1s>w&m-ezy}G8Okh+30}>d>5=>xd0?TKm<<3eRp&i6OhsOse@VD&hh9&uiF%PrS
zG(?9dFoGqU(LcShTiD@`PGC#|V-pz1BxI!<W1@qz(yXksvW&ml?a-HIv|QQLi3v<f
zU{L~}BrrLFDa`)_W+yN;fe#aymcaA`*2jXp(y{ol@6prHC)vUr_RQQjIwOIZ2`tM>
zTo{u%OjH8%5}2RBu1IiKRtkL-;iaNtwPV+_(gJ330v|DTUVQB11QhSC?b+Rl;-?9G
z#-NzY1U^sTiv+$-U}*x2SrwVLqtlq2uh>S?Xo&}*V46E(%`|HBB*4+IY01Gm^&;A#
z=r;*`o4^WIh6Gx!PbsGcQg8UWr_rB#-B9hQIccZ&<ye!z+5~<};7kJRn6w1;va%(x
zA%TqvY)@cE0-F-poWOSpp538WiholYZAswxw%FDLcmgb@xzk|(uE3nXe4JF1DI4u%
zlG(%(*u$!r!Jo5F(vfWLf>A>~wD{}5l{+bAv(f$pzGol_{FJ~C2^>h^Fe_mKKPFIY
zer#nnI+cwMvc<6$WuwX2TmnDNMn@C4mW_JX4QI$s#}aszjks|1@8<+gBycK$(`>WZ
z$#@w$$#(SISNwVQ2H9PE>5-inlV1`ToXGU6S4W%1&n9p#ft##63H+YG`2_w-;7S4)
z61bSap9x&%^<Ortdm)~${vJ%Z#1g3&<if}>G!8*8j`>Gtr>l%r0@o9`!D7u$hfhTV
z^@Ce)WIn$uaNHkd4IG?4<E;e#N#K404-&YYz?}qt_YMCg+!(@Lwsb_NHVE=(Xa8l5
zy`ILimlN5k%hY(YgYG2cVFHg5c#^==1TM7*ZnzkJoWR}e^oi<QpDA4^2bJs<E0Keq
z@#qf&&%L@&Hvg*xUNd9?H3TFQ5ZFTs$SgoiKw_sY00LxIJofMjSP7^JXbI>nQ<hq4
zuwD-8Mt+`LeI$iyFN?Eq2j?I=0f%uGkSyR0Tl$sov>fz~wW4_NtyeR)JR5w^4~S;|
z4LRs!4&sMGT2}uk)t6pC1_2obWD?*L;1>`O5ES^klkpolsO_})p$&0%upIae3E)Th
zqZg5|;2MaWgCYW=0%8JE1cZo+k*g0!#85C-bn@F!fySv{r}t+OkSd^%fWiW@3P=->
zOF(W0B_O+i96T=Tr0Hu$G@a<-^1zK6F%nR(R5Yi67nxj{<`IxrKt2Ka1(e<#_nE%B
zB~sti^XKj#T|!hq!0@}Ff&vZ_-6G<;h=8I3$_uC<pqPN-0!s0X0(-we2>~S;jhrMA
z`EUFFT;jeHl@U-oZ*WXb7x}UR$_Z%XwfSe4oK#UjB>`0gR2499RkSiQr;vYfPU1X)
znG;<#SR4&*&Pmk-l)aNY;c=*@fLa0u2pGs<1=JDHPC$DBb(tsuO$0O*P+vd;9z{T7
z0o&>a8w&W7Aq)@BP79vv;;v8SYwG7kz(D3$GXc#7v=Y!-z%PcI!T3BUwcw|KCxQ&Q
zT%2=f$k;{zzo8e+MH`04+j@U-ql18s0(uJQC7=_NFQA)%?gF|nGWAl=?1=C_=*GFI
ztAH;;?)ya#0pn)IIfiz%b+Fs9;LZ6-y#@3U(4PSc*xw@9m+>r>nR~Xc;qS*p)$n)C
zMLeOxfk3O8?%L%b0fPlh5-?f75CKC4j1l<L02szH5->u*NDsFOjAt(DaW3U}E*d4k
zE*?zIP1$}*87<($YW}CWXq<rY0wxHU$P&y=^>WieA=W5!*xC|f#pscnM(3s}0;UT5
zl@QF~y97)VFjK%R0Tu5gSL+v;F5pIre}*^Q;@mEmD&2|f%}w9yzW0xOb6J!E<_lQB
z%qbeYkek@vbL63e8*_{=8;orYyj&6cSimCIRS~&Gd?Mge0XGHwE#NZ&p9}b2zz@tf
z0gDB!7qCIVmjb>L@U4Iq0+tB)TEKDv-v~I9*<U3OE#-mkg-X7OE%Q*~#<&OWld*js
zT9}7c3RopzwSYAO*5)C$ZjM;GF-E>U4{fdzOe+~&C%B0dd<)kb1#A+qOTcacn+0qU
zuwB3oCMQRHtAOc>?>lDB=%lk5(%s8L+XPs7h#NZv-1SB8PKZSE(wc3_T=odqD_|cB
zS8%niN?sb1KiDxZWlR@dbJaIKFNyVo2L${m;8y{^v55&dB;aQOCj=Z8P(4e!V*-u~
zc(gg~h=7mZM~-^bEyzo}e#)r+Bp`ApH2oN^r^HSQI3?gTt1%OGFcNqjSeKWa>ZynF
z(%*TB0|L=}bVk5g0e=X%B;cHY-vyi(aDiD@(e(ovtENIqp83v&d{KZtF<XIrR6QU4
zDd4hzs{*cZ|Db=y=Ez?Hid>Cc5pchG3YTb?6rNs=EbjujE+F0H&<(GyQ!sE#z&`>E
z0j7Z40`3TSCg3?Uin%S|A(JNHp1@}&<Gz3g9(D3rw97}M^U>z#zCXW-F3Lw7=zh$)
z8cz2_z*7N9qvO{X$2R1n_pO3Q^ARV~yb$n`J-h%(z$*c-+4Bn!7$B3J2=JsO<G`rF
zJ%>g(Hq{m}S%4xyV;TkUEJ$VbE)*z{pH5T@wjYxetr1OnlKMgIFlW(NY(DHlMMOk6
z?ED3!7m-24TLJHwMiCG(a7_F?V<qxArGZT&+(i0h5iRl)7iP$<n*KUBBlmKoY+n-b
ziSUaEiU^5lGB4gEe=s1T&2!(1{In}SrLUBFzg#dZf|E2ditZ!ega;uiA|@hLL{<?g
zBH|)4i^#%5r22O@af7rcGe$W+ykJWFZhm^3pVCBR6Ols%iO4Rx-n)1Ks$GEM1&D2Y
zcmc{OVo3p7UNAPJfQw-s5qU+75HV6jJ`wpvG!)TDL;(>6MN|+`QA8mTg+-JSQCdV1
z5k*B56H#2mu>y3n0R1pC^1cAg_#l?GAeCS^*L@{D{L2+|;g=CnRzx`w<@sVk%JSUx
z>b&yhdlHyekk)04)=^U`iKr~1wum|+s)(p6qK1f?BF=4z94SaVAE+jxI@47z*x_+1
z*Uz_Q%$7d++IwFu(M@n-fOVN~BI=81AmT<ra^yg_ZzBtiMbj0ce1)h&A^J=YHD<Pp
z=qjR{h^8W%iD)aL9nb%nnIc-VEJU>A>xJm!Lc|#ME<~+Fj4MPn^2H_wbL=ie*Y1VJ
zO^>w~(LqFK5nVhoFBPJWBIb^YJSs$;L~zacJb4f`3Q?>=Fk@lrE~1Bs{@htaPZ7OD
z^cK;F{a%G&uEQxi?}nZWp}ySbyFj0u{!KRml?qco5v>Zla0ak~i5MbcsE9${a88-v
z_G38)^Yy~Sg+JjvOhoz)(QGe#I}6ir5uX<(E`0AO5u-&c6|qdj7!hL`NfGmyA`#<7
zd?;d?hzTMlikKo|Ds!V`oR?SDR`pL3ak(%}W}Pog6`y72oP=)+_-ht%Bc;<t%n&hC
z<QFvb{U_4C2#qS@j`iYg_`v-TXI#t{F~`I6yCU>k5t=Vz0aGgCQxOYAygr%yk%*5)
zJS;+ARrl*$7m6=pxlf69-Qq?LKV$q^KSg{k;tLUrMI`SI7*?Do(qD@B$}59@4f4;-
zMcr|07bTvCjTd~JQ?XpcHzKx*_>Q$g#0nAXM64IFQp73|YecMN!4;*|BHAyDa)MvK
zQ|@~4w?%1pQMy@_`lbXoh}bA%lZegCmcss%2xlqA6T-AD9!2~JZdHs*6m!SjCStpY
zy(0FB*uk8<oxD@TE|K%JeRJkUcC)tE@lPp6%Zt$-@7_ka+;zJBBEA>#qlkkdI68Wy
z82uok?nB=J5nQ;##bR_w#LHqNcFr6wPKUjVQ|m@Mca9ztaa=@38JT4KB;sdQBniDG
zoDgx69fE{Z38zGy7V&~1i1<asuOhCqIf(d8#2FEnMEoh@ESr^x3nDHuna_Q{vtqmn
zcN&p)o`IyqxG)-juzvm!C|R7^7N@UL!n`1RS;Su=u8O$EzM?pF%@n*MVo@3Yn2D|n
zsw%iojk(2%S#(px-y;4KabLtO5&wwzSHwLLw;8u1DMi)j<KlEj#9fw7aXRRgKZ;Yj
z5_Gpskl!O_ua7@q^$_t?#52CPkpB_)%<aEff*y-_!j7l}^(#TEOSn?#@F4nJ#ED1I
zf3%QLg4!$#ykZ?=osp1ELPCTf!VqDK5JgBLRFO~Ghb$sok`%Uu{J}aUT{!-Le?Upf
zH9CG)^R0Rm(%BnGzUq?C5@EBq7x9kWT_kw@Xkf*GsKdg|=zrtYOM6D&v#S)Mp?Ycm
zTdYiyTsdaR6^DfM62cNPO2{C=C&4cvAYpk)n(=E|%}gnmjS$Cnj+LaKglTPqAqlsa
z1-QH@Ntq->B&0})ONjD~0sqvUX?^Wb%mW@P<>H)K!nfZ<dHcp+r_;m_+~7=B3272)
zOMD1FvPsA;p}2$+5^_i&2?Zq-l8{qEE(v)h<dab8kZW<dCCpqA$ip2jrc^9NT({a8
zNmt!}wSF+agjOB>1tj$MMl39$h=igNib<GQiY`0~wJn<ZZ7J$DBJz8(|KAfi`fg7t
zDWMcYmQYzjX$fT{l$TIJLRk-Ueimm-4elsK<-DKV=sw1M9Q<C2DtcFrHTGALP*p;8
z2{k0hrHI#It1<UV6YtC7Qd7c>y|J>TX?SU>#T-cTbI6+Ox)SP1Xd|Jmg!&R1NN6gd
znS_QC8cAp(;pd%6b4wGyVKrvt!|6CngkSFVmL^`SYA&ILgqBRKhr>M~`fF*I!zdJ7
z^Rc_8-&(@%!BMF+wUf|ZLKg{LC3KL`Q9>sPoms?X=)jz4p)ypf42^!|<LPdvp%G3T
z?IxkSgdP%la_2JCDjFYLhGv!_o(%>+4}DXHo{fz6k<gc|Si(sO{g~AfK9Tq^e|#We
zfQ0E1W=I$)VUUDz62?myEMbU*;SxqLR%K`?TYVW9+hNReGs=azq2vjVlrWk_-zPfC
zBkFIj&lm|~`L0XBS7j(~S@*69%nb>XB}`$#9m~<NEKTzIPurTDwj%Q2W@IXhuV-|c
zgex85A4*u%*q!F_d~cf-nkiwHg!vK{NSG~Q4y*V6<hc^QC`(EGT-EBCE6nr%c@p+`
zV=a{Mk%W&K2#cnc|Ch29Zyn59j{d$Cs9cUZl%xCw!k<a_T*7t<I~b0H#S%71*eKyk
z313NABH?Q$zZ?yG;+s*9(&k5Yl_NAwS}I|g#NRy+E|>5PYlVa-e+Btx-rB)>mwjAT
zuzFnft@P?uUcK6@*Ld|>uU;o%y>~nJ<Qq3h*eqd-gsm*!^6m<F{_<3}JQYv^r5glK
zTA}YGKDyku&8z2U^Y4_fOTs}3hnT}mvV<Qb9FX{{3fRZS^>_4p3Hw=d%F~oGsq+rS
zCYC2|e>x~$-wAzL-j&6Vd~bQ$7KveNj>8g;Ncf5MR>Gs_fl-}fhbzR6N;oFrxF?`s
zt01p?a?FGiV-^>Sva`BWo=!<PE#aBO2jJru3BR(jNVqBCHwkAX{2}3zgtHRPNw^^4
zqJ&@tx;-uaJ5#+Qz)E|b4ZMQ;vi5Xy;OL78lguv;e@eK_(wA_RZ!hT=D~A7Kc2%Gr
z6<nOJNvLJV_Sa8&R)MawGE|_06^QG<CESv5Pr`o^{$bB1;f{p69_H6C1$grIt^yre
z6z430e;MIwsi_rRX!j*NknoU6W=yUHHjj_As7T86$f@6=qbkzeiu9QI8BTiQ8U9nR
zzC9x8g@l(9ED5%RR}x-Jkl1yw|Cb=J1^JRhHtoD|PINEyHpH$we<IYqR7{beO3)<e
z?4=h*__fqmG`MAZfa5AlbH)vJAX%aZDw4@U^l)<|ypaGI>1Di?@J>RqjC3--7#2NS
zk={#gQ0rbrN|N2IA#U7U8|%C|VB`%hY8uTT!zaTpBfxbfm(nMx(W-{~b`X>imXZ7}
zR{p<GNan9%g?N5@e?U^sN)(Y1mGQfb^D@7*AVtPF8RKQdWn`AoNJe8BS!ATjC@Q0v
zjI1)!WaO5SM@BXo*=6LEkxRynyMg{)<G-hbbI2e@@0hQShr^B+p?|KqcABwvJg<y=
zG78Hm;&sR`qiZE9D1%?G3V1bl`(sn2kPNQ5{lmt<gi4eP!6EAd#buO`QA0*e86{<u
zl2K7cB@a$%8LRyM@-iNtM;RHT+l9)?C@15iN;IZujO#6xsDccx8KylbURg#J8C97l
z8AALi$!aoARibB=sJiSXQU9;aJ!{GQ%>vYuQQsRS^fprTjjs-~w=&h0QLtnRH*!^`
z1~M9Y9ZFSp;WzZ^CNi4J=pm!0jAk;L%V;m7gNzn3TFPiEqn(UpzeifhXyg9nYwbZ8
z?%m5k)>fv5#r-)N`wxwY?XOH7Wpt9!Sw<JW_iCWiec#K{;d7O#tBikkXL*zyyW2d_
zO-6Sa&nr{<Dpa`&aif=v-ZF;B7%HQWjJ`4k$QUT&vzwuQGWvTXX7bKQ;t@ZPaivG}
zd|v<JYra7;e)Rc$?|p;4J`Gp8v#((?hRYZsV<Zz*HO$YrXImnv1ESp@_(sVXBjZ?!
z@T95n(cUeit5BgWDPv_U^coXnOq8)s#(Ei(WK5RvDWf4{ij1i;<}%x5d?;g@jF~cK
zG2iY7es36@F5^NKdR>KP$lyBH<mhbHy7sZ0Rq6Kw$*4+mys@}3U&aC!w~UWv)GFg2
zvMjoKWndxe?JGAn_@b7-Y*ngJJHAN9CoF}k#AVU$$meWUGQN@Vt&GJozLfE`jHMpT
z{zd&?@x^Z<OV}bF1UMy+>*7jyOjTMYgKcd&-&>XHf0;7;%aj!|R<Z`lSj{8e^qssB
zEs{UDzA7){#@5JK%kr)7e=sf@h^EUmFo`vJgN%(b4$C+qW0Q={GIq+?#ri2@tBmb3
zcF6dSS+_6a^{~JCp2+d4v`yyk61v*8^ll(t%kSS2eO8rr%h)61dl^5-cwd!1o9cSk
zy)yR6*zZxni3D8uuFo~!0an6)0|!~M-e2)*F0?~l`*hHaNgibh$~eikAmcbs{$>0u
z<Ae-OJ}Fy`?&b2|d!5pu8ciLTGU0+d4?ivA7a3<|oRjgZjNe$<wgq^VhqIE-Fju#@
zFvobK@H@!X9cdFH{$<tZf{cso9~9(N@P~{`GE5nkj6Y>umhni&W2Tf<QN}ISZ5dZ(
zT$6E~-3t?2jV@Iqs~S100!hQ8H+jTb!G_hTcy;>QBZM2bW!#Z*PsV@VmAf)fDcq|%
z{mY`S9~+Sr=lVW#czxud*WrOzZ*JqhkG$FB&TpT{cq&7XA<B5h1|{Pas~_uab?WwU
zY;R8g3mGrHySOt)e%KEuWX#SP{G~cAt?qJFk|E1bWoR<)u1L9GofHPOEs#{h{nvgH
z?l3!Dr7l@@83v=bC%~n24YFl8?2!~?RPctKKR*H#WKi&qh0Bis1yI1LL`e!htU+Ja
zpe8jaS#jMgH?HnX`LPBC=cce#`V{yT1Qmo71Qc|t?QUk#YtVgf^v;KKglbX-f0Va`
zWKs}OkVQeNf~bO+g1Car3JTVwX+D37f|3t?<<er${z<M;lNRiBnbV^tWmS--AiIJb
zikpV<u39jgf`Kvr|K1L`54)yCHR)hY%B3K;f@TVuE6AfDuY&3dYADF3Aisig3d$=e
zz{BxC3Q8#`q@b{ZJ2k18;zo3fC@AU`Zu1@-4wR|I<HZ$}@TgX55*Hq>wBpXsUv!C;
zQSf<-q}TNWWfgGAREs)P3s+E3Q9&gIl@)NVFHfb))}jY5LrrVZPoq+*C^+<ApsIpu
z3i@9Q$SvJ6q88OuP)k951q~F`R!~PlT?O?Nw5b*Dc{8wZV|-C9s$M<3u@)VzMOR7%
z8!Bj|ps|7`jBvTQP>YxeNwsOlk10FEK*ieBl=)EG#kPflmI`_(=&7KUg4Qe`7Ar$m
z&{jbQ1sxT%Q_!zvyz1WQ_}bLoBeqL=H)7B8C7#M&`8nf;+SElsR|VY^bmyVfaOH4#
z@#etkf83XX6SXP#@<5N{!Cne_^X&=-DCnc0FN0+=6>!2>y`sT?lY;WY!27$t^~FNZ
zYE$!nf&&!{QZQJ-5C!}o;Kc|Ylvf!l9FFqVq-z)5*uroHBNWUxvB1Pg1*2H9I`Zlm
ztze9TGb+xi7^`3$i&#Yg72_35P;gVh-wL0Aib)FgEBIc)WCc?ce5&9x1yfn270gvI
zPr)>WL*JOCV79^w`oZ*dsBj&c!6>Z{%w*-MLrH1={~q|-)S)?wn=-fNgzMqwD_Ef5
zBLyET*qp(?&|})ZIy9t?%kxDFe9fYd>QJ6o_!I9hzW7TW`dq;m++V>K1&bAY$%>?4
zg@UgXEK#r{vwyjQuN5q1wCmC`h4*7pfx6VRE{%Wc<0}m08y>VSt*=YR>e5ONvQU?T
z^=OrX>vd_hS94>H*I4V->%4lsS8q_T(Q9n-YVOIg)2#}=Q?OUTJ_XwpY-hufL%Y~6
zwCE1z$<WwNug#-#yJS7utzZvZZp2+P<-&~(CA0N->`SeX(x4vwpx}Ul-&iyXpQ?(3
z3XUo`#%j<0VR7<d1xI*jC$e#N<jQJy#<jPA|9!!f;|hLK@Uwywj7-howH5Iz&wP<Y
z;9;5INd>2w+x6&_0(L1K>d}yT^oxRDJ@OCKqucdd&YV?nPQhOat|<7O)rq~mf=j&r
zSAq6%gp=`jE%Kswi&Br$>buG0HR{u8&fHUQS#dX`z33R{`l^C!jG=-X3V+=)-o8Ff
zuTM+s)A6e*`|Hz??CI{*r&|jCQIM=6or>Gc9QI2J6a{w`{HyR;taz^Ao`U}rJXG+A
zC7UJ855)J0z<mV|xMzJg;fiZUyV<o&j}<)OTW+{{zfTo}8xR+6zfkZ}K|+DRzN-N>
zYe2jR{z}1X1q;0nT#M{c%ljqvz*hsCy^BX0(2u$ODpSo~omEJIuE0=WD{vH;>`QY7
z2j+}kYd~yh7W<icsqEyxdFsl7V??h#Anz2sSCFKlgB8ipka9Jo(F>yDcWxi3NUtJA
zMO;M&6+RVV6&Y3dRRmN7RfJUBsv7S2GSKSV!18f%p2Qx@l9j`f%^FfB6%iFt6*1L)
zj<kH6eN038x*_$L8|n7c$1~wiszo!a$f6>L3R01(BCCpQDzd9cQ?acfotHwdO*bTa
zxFIzz6f9>YU1~@N+Xi#0$fY8;iaaV7>AvBEqcw`h=ihc0%krwYTQZoZ5#_EJ%g23q
zQ)(kBsG^XHaqKQs6jo70MPn6BR1{TFOhsiCRa6vLQ9?yo73EZvR5@V@rB#$+e9{NY
zH6q@$!mf`K`@3z8^{)|Z-H6JosGy>vib^Wxbcl^@L_4d57c`<>jVSd&jG6p<BdV&R
znu^*g>Zqu$qK1l^Dr%`nYE1kFmt}3VWSYNd)!><W;r_>S^eUBFSLIViQC~#^W<_IH
zD{3^RPF`c%l|Zy~tf7i?p>&Nre!lDJZ>pl1iasj(s%WmFg^ErpA6|-<Dq68LRdiH&
z!()^K9j#TgQPI}Bv7L(cDpt03V;~=U!2j2{em?NzU~Ele;!sH!6<t;IQqh~iUJG<%
zVtYn=sOYZZ{iZDY8q-(7l%6WovZ-A7c24BD^4!O~I#(`ZKNbB|3{^3Vhf^^?#b6af
zRPY)Buec3V@mpj1yD<$?!S$QQ)SyoAy1;3QQJxPBS2056(?l^!Mdl{du?g`EGrTb}
zTE&ti_W?0h<y{!AI;~mn#=Y4iO>aUIR7_N{M#WkclT=Jr@sWy;RZLMam8GL%u8I#;
zOj9va#Vqgk=_>YIiNv18W_UkWHK7AdT!v@qAD_+I;tT%a{ha6hJ72{D)~kO551UYO
zQ>t(>>f8@3WaVi}^_tQm6`!bBuHqXNpQ`vw#aE223f?jFIm@wLw#CfMru2nZ^AH;^
zB!9`QyXhj&JCY_grLR?d(Ug{|SjJpxN^BZjxbdxu6)IM#SgnFh@>L{wswu5x&J1uT
zOWCve&*X_+Yf7ve>r|{)u~)@D6&qCEriAa<f>dl$v023y6<b;VXT?AHFYu(PyB8qR
zjCgZ>`DSh)XuFCXDyP+94=YA9+Q~S)4Sm^+cCjFu5tqQ@(2K9)1;hw%e5?J&w_nBg
zDvqo8NyQIrN6(WFsyL+LfQr27VyE=*k19vAGBz9*SybPDm|e$x-%%AuJWg(I<}&$M
zGdiZ?y4U_$#R(OsRs5pjqzbbcwRz~P(wt6t{UgoY{>_@xudFsIW;CZ>VOI^#2;pJx
zedkpC&LY<Ep@#D+E-+^_WYKU@#UCm(6}pN`D*jaQpNjh`F01%U#Z6W`6<1VTRdJ2c
zVCFZcE#5%sTDY$>H<%pn=Y*Y+0n3wbsrZMbsp1~{e{T50ci8an`!bYwefV7uPqv*M
z^@8(8rfpvsJ)b?8rB3{Tiiav*sCcR3k&4GEo~U@r{;ICOaWOx?$FcOEsi=D;d^dL>
zOD6ww75y4SZ#So5pM+kic&$QGA*)ERyJ$frTDW`=REX@6TF_8$htdCPMFp?R*lmNV
zhsgpl%=t(LbCNx_2A>8?h0SKma5Ok7-l%x1;++Z(ebjG3y<5=O7R2YxF7$@DpVObL
zA)N+jNUvc{3p&_>_#}tY>*Hfz2J9A;mM1I6)BG9&8Zv2!Xb5TuX$Wh`s3Ci?V5B9L
zSR0MKNG;jYjW>2{Nuyd)R6|TdiiV%hq#ONB%EFek^j2VHONwha+LA_`aNqb+HDuM$
zP(vdPX&SO=D5Ie)!_<&NLjes1HIRm!8uDt$r*VpPB$tN&T2da(eU-@V)odnKOP5#q
zTG4MtY-S{wUvp>s{J<@wp|FPH8lQ-Tq*H++8j5Os;CAYeUKvXVLX}!kF%4Yvz0F$@
z?}Ott#F83HX(+9se=8c_%8l;wzvVQP*HA-4O$`+^RMb#KLsf>>*R{%(4|($)+LjGh
z_G&(#fiE6u=&z>XlU7t+bA1<=HLa+YhT0nHX{fK^c`M4$nu@okIvVO~ICnD2g}XJ-
zusdIH`qcn$3TWTj9lf!JCK~!^=&PZrhGrVtYv`b%xrP=RT5D*d;l}gm*w(b5HMP{x
z${X=bMt8DZ=$4Q3n%Zjkr)koL*3?b|*9TftM-82rOB#A>=&Yd&liY^7^SwI)T{U!L
z95&^++M4($HyBP24Ly0FHZDF~xWPWH&f~D}SztsP>c{NTFigX69$Lcy4MQ{x_0X8x
zh6ZX_(S`<T80=l)8R^9~?z~h}e6ceAL>oGIJ>v)sBQ;FcFh#>C4Wl)T(=cAc7}m76
zzH-$t)@xKZvmC7D|EfTEf(L4%hDjRYZT}Ce;$DN#1}VNSTDL9bjQUw&rfHb2;iiVa
zHO$a3Q^QUTyEM$wFk8bi4a+sm(J+^_OT!l$=4qI(VS$E)8g}f7c4|voz7DLe8~li|
zYD<e)rW(5Tj(zOa%!)7D(x)0WwWZHIl=$a?w!}XdYxq*b*BX{;_=>rG-`)Ahn}YdJ
zxFs6S-1Kpy#H+OPZRx!)e5Wmaqv2Z(8yOU{OT$XGL=9^-tYUL(N5$F^?~LenC9s+=
zdZ`FJ^g0c^4mGJAt!J@nkaoI3QLg*6qs<z&XxPpqXxOUZ^tBXsZ<mH+f2SLjH<jac
z+cY<7$Nlvj{`KwXhjw%$cYL>oJsN(|@T-Qs8un>8q~WlJ{Tja4@S}!<tf<^s!~H4o
z18hp|{*Uv#kLgi%|FuJbF1G@_&*cc)xQ3tD_PPJr2%n7*YEQ>B<Zn;MJubCtPbb))
zL}I5j)QQLHKF@xVt>Aff#^*FU^DW8lqbj5SH)fQEKQ&y|aF#)7_?_K8D_eVa+_49e
zm$s)1p3-uT+$FwI!yg(7-3(;(%BlAB(<Ilu|E1xIhN~K`Y4GQW{nwsa&4>g#&~*)Z
z``CLi^nJ154G*!~)g!q(&@HwX4R18O)o@$m7bPS#2paBc_*cVY4No-OV@Je%(C~n-
zD}iPms9y&ctB0(^kE46ihxfg4A6t)D@eT%Nb)csjp0U+yc)|A7D!!xx<*T0h#f11v
z4X+q@2g=lu&Ug@BYvA(z!7O~c$YNzAH5eLX4T=U;gQoF^IieLi5(me)Pm_-Hb->?0
zDaIcNFxmNQu-WZv_@P*|^1p$e9VuIqzhtg>wz{r+nctD#X?V|WTt`$#l8$5@J{^7?
z>2yFxdL0>btm){|QnO}Mf0lZ+hQB~Gg~OXiI#NJKP)9}`nRI;cYb2zD0|=?RQ^Nd{
zz33xX11sDMRhkm{gCUHH#B`+S$gU#?_tcSDN2-pjI*JwWXVKBUZSeB@P^Ax&SYBy5
z)@{r&c4ItO!{9x}SqIk)jdbMHkxNHz-CaUW7m9s*A$dgw6h0EE^H0p~NW9xOpN{-G
zIveO>pn#5oI*#l3Nk<_ag>{V4F;+(r9YuAt*3pJX*HK(YEgiLWl+aO9M@1c#bd=Ij
zT1R;u6?Bx*QC5dBBJfrD_@xir*du3Cmt$l)5jPHgmyv@%`a|E`$AQW^s_3Y$qlS)$
zYok>eY$w`LGgeLKxk_}N7UjC84*hbP?|7u`f_SG+E?sqW)YZ{MM^hd3bkx_;Ku1Fz
zUypG8Hm`kbEtgWIe(JDJ)JR97e6X>OMc3RHG_ITJXs)BBj#fIK4Ha#{^1AE$y%X*B
zAm8ak3rEM+<qGqPOj{l8STs5Y=xDE_gU)Bcp{I_HIy&j-s-qhRTRKza&eW`Ku(OUX
zo*cKlaR+Ku-aq+^<nB5+m-T#`pxGqWOGj@VeRcF>4z~`LS)bgpGxgEI9+H3Z+YKMa
z(%*wHq_a!oKplg04A(J2$6y^pbPUxoOvn6mK@L$4E|hw?RGbeeIOoNJzAq6Usblkq
zbfY-<qoZbH|NPEwBHV8k!h1WrdE?`BjMwpvj&F5L&@oZRM>;;%F-gZ{9kX=I)-grL
zR2?7cn5M&A8+~YnZ)>g@UhhoPb-dah<z$H&I%evSJ5x#*D&2)Hrlif$F;~YtMvP_A
zh5jubKKeeAzE$+U?~@nkSjcSYLYuR>a6and(zQs(C(ITdU+VZ&$7eb|*YSmp(-*=y
ze~7N>LcE2O4`|}761Jd&UFa(vOLQ#Lv0UeG#rp1cp|4pY>EofUv{XmcuEdSDUFr3K
zl)hbwCpIf|tkkhh$95g7bgX8!Fq2uzI@an~uVVv~*_AkeX5<gAV@+<7e80ZG)63AV
zuEg8rHtKv*pKFi5bak<vuO)BQ@tqFZn6&7Q`}n@!m43+?-=SltjvsU!(6LL$ZXJ7d
z?9=hSwELb|>|tmR>&d<VuXpd)5$Z+*ySdQ5_aNu>+CS<zsN;~1!)z?4a{SnhPH*y`
z>qbWyY~^5?T;XVUI;!KC4&H0Yn_swo(v5!Bae^I)frx>VI!@_$s^b}RPscAhuIRX`
z<5wNO={T?Bf{rsf&gwYF)}({aT)OixRHi#M>rR}s&x=Y^yVG$wa8bt}Ixgw>llfdT
z{Dtfa>q2)I;m214ua*QZ>)3NU@)z50qbN77>A21whQ+~NMaNAYcXj;Bc<Q*t>Z%0p
z==g^<ZEL{nPPe@Vhwm5~{|xu=bl{FJPY?R`MYw7Yy07Dbj>kHluyjhKK4iw;4R!XV
zJYtk;`?>IqYkJVMTH!rCh$E}db-d8=R>wOXFIg>hXzU+!yk<*hi)Q6yme%+4^2fH3
z5kZH@NcNy~J>79jd$po-pf9TG?(x4|>h>gq6<&v<;|;6X)j+VE-(pkkNjB?GPvWwq
zO^9P+*$cUkj30Z_dv^W?d<Ogmk`1IY00Zd_T<l4yy{K$25^4rERSjn>7tCN_<O$ay
z@NVmXfuMn~fs6*4_M&0EC}d!EFIwrX`tc*_VuL8}q}bMrq6T6H${HwVAjLr3Kpq2m
z4P-Wu#XxogISiy4$Z8<XKsE!5n?#$W1<!jKLHw@7S+d2_M}O)?WFV)3Tn2I*;B>DW
zz353V8q&m_&m{MD8FD{4C7*%(28tUf!T#SsK?6k$6lJizsgQwwwvRg(HrzcXrF*+U
zw!vyjF-GjNuS0LTP%zvlkW$h>DFdYqlrb=hFIM-ryO+}VmTyaMs!~3Dty=6@Zz^w~
zf`P^cni!~Pppt>Q2I?88Y@mvPss^eV_^UTP>rKghs8Am=YQ?JapnP4-Qo}$^1Dv|U
zsYF~aC>gG8ppJp|eOwZ_EbADnZ=ivJh6WlL7|@4!xBh2+C~aqiXNl|n^zmtRE#8Hj
z8fa#qwShJUnj2_gprwIUOpBG&c4D+lwQ!@CQR!Wjy(M$$Y#(ZCpdF85po4*Xedr@!
zn9uR!X~T=EDRLj`Xdpvh%2qk06N|=cbT!b;z)J(K40Jcp!@w#7s}1xt(96IK12YZu
zHqeK;WMH&`zRX?&gA5Ed(BHrZjJbh<%%8qA<59RnUm8@$e`<W3XLMg}&Jmpx9b#ap
zfzVGF$(?x#nCqzj+rBj1zz7D?mp=6h|E2V$BRyhc42(4}$-ra-;|z>9Fu}k?R-1k_
zBpx+4MtIK2$yfj5Vd;J}#lTbp9~zj(jOyp|mfwK-_M;j7Xu5%$wc@`-V*9cO`TWLN
zthWX}Gw?af#lTzx9~t=Az&r!<4J<IQ&~P`TZ|_GhOZs`=G=s`K%(a3&3Ev_EpLqCx
z%KFeVI_0m(%+^8Prpkfn$y(?OR%Qds`E~<e8u-e<QUlAFnPuZ_8a$0(!hWwGeeFTG
z)6d<}X7-~WrbS}?>01LU46HOD6?OSDIqc_Ma_4f!O7(Z23u_FlHE`a*1q160tT(XV
z!1o3=7}#iFyMY}BHW}D#;5!4`3<NTUwy-(05ApVmtp@)2G-K<rey;2Fr^)@PSa$!q
zzkNFm>@u+1z#g{fd{MbVbV+~O+MhDCjqPPg%?!R>6*=0U_8H)sQToBa0RyKDoHp>I
zfrAEqGVrs3Lk5aH2pr*V1`adf17cjb|1kp(Lb2maSN#;;U&C!~Joi8`yUbbf69)cl
z8a(OM-2WE?zZy7a;CBPRvH3j7-t1BIl@dB*;4I_w0r9Q}-U7@G-Zagjdp@u+{|9u@
zz#j%~8@OZO5`!{u&A@d7m)Rr@TrqIf!0`*otZXcxS|3n{4~S!=13sWRAJ7d}3<I~A
zKdcX*`~PO5qA^ZP;zhvZND}8@Pi>d--3RVe<gS5#4LmmRgssWIe@vQzhX(E&u*}fu
z59n|_{HTt5u)`xyxV*l6=L0Hx30$5UcxK?affuaITcby_`gfd&@jT(92@&-J;<d=!
z1L(DZ1iK3p)lCQnM0T4dGMkVL$Oe*3B%4qSs0K_P(HlZDpc^pQ7u^kYSP-o=fLac4
z#guY5Y8!A2yfN^W`xg!M9YCuZ1%zqwDFbNn0J>Tt{La98=9Sl<>vSeyBBO~+CeoY8
zU?OB9Y@&ZPzt2R#1Sd85O;;_Sc(-sP=>6n*=KBG}TbQ#Cq)KIi5ff1pF%u~!N|lHY
zD;TWueYDX)TG}_pxh10q($U$`EGAM-6f;rWL{<}NCUTj`Z6ceA>?X)WP80s@uKw&z
z4dyWM(ZK)nlRT;DY`E`<c}(OrQH0Suj(nyY8d~>j%DRDMCWrHzC}4sc1-+UZg}g>#
zuih~|UB6oXqNbY-%S+59OqArdi3*IZiP9#@nkZ-D=s@~!AcY1|8Pi>A=S=c>t)k~r
zWA!4zDubw^iApA_n5b%kzaHCa5LISO1`z|?Fvvx<`|Uu(zkSYwXblrJP4we`P1G_`
z+e8}^ZB5iMQP)Hh6HQIjGg03}BNL5Hbbb?UxHj6rbl0F8nizK=a9|KEJP_cmH>~Xp
znIDwROf+Y4m}qI@%piA%a_O5<j`W@?A8%!1S-vm@b9`IJ-`d35QbBICGtu5e4--92
zbTHA;L>CiXO&C2>I(ZUIH<&tmjk_N5-Aw$oElYP3Yu<$O4R#03lr5TJYjQ6Wy-oBn
z(bshIQewVv|3YC-a(-JQxJ!<7A55&wAD9?mV!Vk7CI*@qWMY(w(Iy6)7-C|miD4#I
z<n$kH8Rh++dn5izHDkkh<=4coWl~3YIOMM8zNqfslB0C<;26^lvW;avusZquoZ>ip
zFzpyj+`hak$3zp8Ow2Sf%fw_8Q%p=ZF~h`E6K@97G}fpgB<v1+$kw#meKTdl9Q`V}
zXEa=S2=N}<U5V_oP0TSd*Tg(;XnroQejWO0L1ferir0y8Fq4lGTFB~WBEN$I4n8)q
z$i#gM4=j9Q;#1ZE3so(A#u{ki9}~Atd|_g-i9;q1oA}biS0*-@*lc2niLaTZEEE$<
zSxhWqW(9Y?=KEp@E%y-k#;dmup|ay+O&SHy4WX3`a8k-D6RS;5=LozULeZhFMAn&D
zZ(@UqjjU16eY`uq!ca<i8sf7`))n%H?)i9=^%fIbP3$$X&%}2owwc&zVwZ{SCg<v>
zOdiTvF1{V!h+RCG2TJ%a%;8hrkf`sP-X0U5c-Qxv_};{iCJuU?b5{y)9ZElNyRrX(
zcZC~24<-9<h(D1q<h$q*HXjogO+G3X$4ne&;hOl(#7`!EHgU?tX%i<H|3`tRHN)43
zGL6|!n&6rTeLmFPUslG5{lW^<-p`9!XH1+man8i=46SaM=i!-$5vQPE85|kbFMgiQ
zY8YMc(C9hL<;*1$f10>z;+l!etjQ*>u&YTQJ^McT*O&3>!>D!>H<vQQsHE#AZkV`f
z;%~15?_pmyjJD?q9~ee&@B41C);;jmXy&H7+%a*N9ixSag?~-lGohK#O+LvM_nDa{
zUYU4c;-QHrCZ4iO8JPC#FnYuq(lGYe!|kz$TZZ9OZa6g@PR~p{H}Qh)VmN*CbL6w(
zF6OV9^Q@~TMDLa@!)eCNv=hTgG9jC8Sh&U1sA57j!HK)&N04uXdlygka*iN_og4dY
z3mGha7{O)}F!7d0ITqpV&kp+>uk+9m^o~J2@k#$gSC61S|Mb0QcKzu~vXE@K4KC>{
zz-uq`I`}O3Ercy(w9q1RFu>ZrJ@Cs23R(zRc-AtSwOJ-Ef3%F2DxZ>dQS?$3cd`_<
z5VKIgLO}~D7UCAtEM&8g*+LczsTQ(YX!~=HTO;W82#SrQt&e@|V@r>uQ2uy!3pp(0
zv5?n7hmk}Uio&1E!t{}p)2kW&@{yF=!ugRd2ZZ|}-T}JgNFbku{FeKKdgom)WTCKy
zQWi>ED8fK26ths=!ic>7BBSVO#ng>i{3R?5I}{i-iq_OhDe2u?Z<GtOjD@lmDp;s!
zfdkHYKT0ZR@j?9oUX?Cy;q<g1Hx`Z}&ii6NR>^WtrmgJN`$kbU3)L-rWZ`2AH7wM$
z(3kJEP|HGX3#}})wou1HT?>sYG`3LBLVXJjEHt#h=ZQ6$6XgTDE{r036!DRCyk(VR
zO-(E`W&T@e$)dTO*31HDXR(iJZh=oB&NQ01E;QOrd)Ss7ZZ(?PFncX@vC!2*I}7bC
zbh6Od!lcpk(`f3zyiEyqw6N)Ilp_XQ-x*EWjPU!>ZaPFai;rJMZwq}a^kAYaaCl+X
z?6mk8>SbZf7?(fXt~-W4A47Z=Ynce9E=}pr+_Ny=!UPKgEDW?T(!wYUgDecTFvP-8
z3meAJ`Th~!Z+^rBGK|R|%ZX~?;Vcvj|9KZVAEwAy8qEV)7;9mig|EFsV2+PS8Zp-0
zel=$-@iArJjirf94(o%385Sm6m}22W3)3v{dLoPX$;QA`3n#`BKS>7#Q`Xh+^T{(j
z1D|POmW8<%=2@6+@oron9~l0AEWH>@b1ZPp)Nv^|j^<lfU}2%<9-Pisc2*6h{p+hf
zjux@=xA2370~S7IbFi?|!YT`&Tlj*pwXoE}Vhdlg=2%$53Q#jDcaO8pelm_;6>$B@
zrg60AOk|mb<rcoRu)^!}$2iI|o;SUs$u%E8?s<3Tu|N{fzK)KGuC}no!gm(7Sy*df
z9dpvcMs`Q#{cXn6zH+JSdBjzbG2>n2H!<4dX^Y2)&0d|3vw--P@x+BYY`3t(!X68I
znS}AQ(*j3smp_W`vas7Tf%RUJ=hgA<jB%fLrPAp5ehc5TZy8T16X@S_DOY&e*W#n9
zao)lO3x_Nmws49~!@>~@M=kth;b-P^MOsuSTyO#%vv8cnJ%P9|4$PAt6X*mBZUU>W
zYqKAD*MG6_tA#Tb&RY1*azDiL?UgX^7ufCndual7UJ>A=yK@$PXML_0<nm$yU9|9r
zg&P)bTDZgpV&R&F>lQ9s_{&21Q&B$5?F#Egp+Kqm@vD3#qyK+xjvevPi`V3seJAD4
zE#Kc3Zdtf(;f{q8F9QE~h>f@vnPU0AUy}UAyU<<c`9!+MPXSh~*S=M){R93A{AZzm
z7k6nmyf@233y)Y2ZA`QA*uoPFWo(qS@swR9yHFdMY&>T*vtU>-Exfew%7SD;w(y$i
zwIEm!**QerS<uw{Q8v9&zol{JA@3<0`zWL^Zd;O63mW^A8g70ycjIhr-EtEKZf$d4
zQ7sF$g>*Lf&~3-U8w>9(B-to3k@x`E4itaOmh~v~&cf=n7&nq_cfs`atH98OktP#e
z>7=)j!A5}3?6zIe_-yo?NPjGg`@Nr2Teu#cSCj9zkAFCkLQGWsSlFw7nn)2FQ5$(|
z<h2pAkzym&Mphef8|Sm7%WNZy&5K;V-TD0uU%1%b+Y#fV{?lw^vq3g;+W2=Ooo$}N
zd(E=j$l;C1hXPp>Da#~Etq{&-<BMLgqLV1M4XznNJ{$RM6thv>MgbcInNt4C20zWU
zDe*!!emWW%If)9};F|ldp5(@p_f2yDEn%aijZ!vB+t@!Uo|xor2FzY2SbQ>#Efnh7
zCRlqim9tUaMkgDcZB(#P(MDq%O>9)MQQ1Zv8+C0|u~F4V4I4Fi=oNv!lZiJ<RI^dt
z!@pqzcS6PG-}}k6Y)qL<wY}>Ly13Wt*{E;h*rVh|%=4$&S4}29oU?(AhX13zmMh{}
zPr^qhQ&StwY_ze_)<$z1Eo`*3(aOfN$@FG2MW@iQ-0^+6g2ks$Ya2a2PWifytCsC-
zw71d0Mn@ZsrqHeHf%#MD$BaoA*GKrV_3ae8IEA{{=xSq-jlnj$+30SgkBz<zghkKl
zVWYPVo<Hw@8F)5@{8Op^t8m$=v};_90~-Bo^k-CU46xmpNxP}UeB&by22CaDZe*a1
zSySmu*j+0hVq>U{F*e597-r+ZouuJ5M%Zp<0{=VG2A{V2b=0MIl#S6Iw3DR+XFrWF
z*l{+-+nCJU<FTUtK)(3uMCt?^6Kzbg-Kk5vmHu;U{M<+gzO_?nstwMRJ2TaVJe`rZ
zagE{In92CC2HMzcW44VsHomm+m5sSJ=Gpkz#v&W@Z7i^{(8fnB=xe^09uVHW75b3)
zNNNtJRR54ZvGJ*m&uo0oJ+J!ssGK$*Qr{10>WB0N<Fh)x<ehJ^C&A?(x;QMc@wJVW
zHdfhK%F1bDITOe|y?^=a-<Ka!hH1pd^2oiDzGW-O8(hIgF^$Sjqt!On*jR641511w
zt@Xgpnnv|P{&g(1X|yWj=Uq;GrVyXIzR|{tY3_(yY;3i0(8eJf-`Uv48gAoz8{2K{
zu(8+1J{vn(`TzFqv2iJPc$bac+%4G+o^#E+We<38GEb+{)2ZQf8a|zVV5u=<**`o=
z{&YHVlEC`u#4C?q9F5LQm+i2PBQ}1u@tcjKtkO1)v-Pnnh(|}i3pKqN<s9Ijd6bOd
zlQvG-{IP(@39sf6k58x5Y`o(lzj&I)Ke^4<&)7I?<D8A(J*pW`zIbiAOW@!0;`Vep
z&$ju_cfrO*uknZ1jsLymHU6}5`Tt+}%WGWm>Z@MOH{P&u(}rQgwDGr%TkNaZpltkO
z<F<|aHXhixW8*GM#Kt|FW6`1hLn7@2UtZBSD-rmQO(Va*Wx-&U87@i>Z9HPnZ{rDD
zO*}a7W$1Z|f1?zr>iv66@O7L)&uzT0A=!{^ytMJkhG0Xq@!CV_vl+z6W>xp6By0@#
z?qaa#|8qBt@GMucq1w=F=&Tz(vT_0*=gf1W+J+e<KMh2SN4Io{S~hI<y$(_wI5ytc
z@Hy~1cx&UGjrTT^9Pn14{bsm$AbM~Hh5N;l9i(#r2e)QW;85Us!Ibn4GB~JKGL_q}
zXAn0SjevuogNzO`IS9|B^#!9fW>SdT4#cBTF5IWXMc1cA9B?*x)NvmlBWJpti95*b
zAk9HG2U#4XI>^d{?snb6(wVelCe_X9zciEX&!p^(o`XCN@;ZpjB65(+LE~AJ(}Tv&
z+=V%daywW!i@3pIgzM$P>t|6uMoe<^w+lKb<e>c<ba;cp4vIMV#lf!*iaIFfV6202
z4vIS{;h>F!whl@<DCMAzgSrk%J1FCzii4^S$~q|Lpn`*njvKu%@1RRl|9`XSmsu`F
zl^oY4W}fZ3dUF<4cEB}XujZh-gBlKMa?pVPo$W>&MqUZma`1ckl-fK>G@3LrjkghX
zp6&Lp=b*lWW)7M=XyBlsgGNlRgHf~TZHeHj*~F`9P57@efs3=LQ$v4Kj}JWb_p_;m
zgO(0jIcV)*Zt-BI!S3|(=+nTH*>vQa*c%UiJ7xvn;$VP-4h}jx=;5HJ1CFhAVu~De
zb-+`I&JKonXV<f{omwH<jb;5!q`Nm({y9{84)t=-+d&@(eI4*oOWo%X?_QZ%F_mBB
z|J{~0c@Fhs(vC&?d-d`;G|<5y2g4oySOx|&a0f#j40EviKi~B^F5#Q+MnZFG?ZyC~
z09JJ_jbxG?jCL@F`#51KSNMbw;O%MWl2SgHODpHniNeA04kkEQ?O=_Ai4G<?SmfXn
z2a_F4aWKolYzI>veCS|0OUFaL-CyA=#e&luKCsu-%$c4jS!YTNk6xeaqA`bA=U|?L
z`OKmZqpc=H)6Juj^JoFfVjh)g9QnurAF{g8tNFaUk3F!R=ehTO>fkd6%N#6s@VSF8
z9DMCyse{E#={&l(H2Rf;FBvhfGuQj((Gmw|_D7G@^j~V`=N%cn*Tnc3A`WwX<KSBd
zD;)eWk66uG9CqLLS9)Wu@@mxsvev;m2j4sR!NGb58yxI#u+zat2b&yhb?_bA&U^|a
zLL3#`>|l#`@8dCUCd@VmmFLr>`Lt?2ZD&g~lAF(Wso3Q*9D7(LSYCHS`{uiG^;#m{
zkBqNMA3W)!ef)3Ozn_WvB*cva4t{iS)WI<a2OS)8aM-~S$32th>{fS1eWJgshnx%d
z$9&?wTE`vy<lv-(Qx1N1aDwf60sZ8C+k&4mg}#d3pHF2L&}l|5kL%FdEO4><jTz-2
z^akNKIP2h?gC`E2vJp8r@9-`I+;DKg`F}Kh1-RA5^LCPXW9Py-_g?%ig+eJ%q(~Ll
zmI`$*h03p#wos)C6)L#9ySo>6r?|VjyWPn5CjI{B$+OR%WMy_No88$N*^tecCbErq
z%a%>qvN>C}aHX!bdbyx8u(j%VvOwNZ`L+*8a`*q{$n<%ejJe(P?b)(}IBcyZHcc(~
zI(fOZ+MO+XvgKH|9H$P<mVMc>KU)q^pR`e>+NfG>RM9f2gV}P3Ttr=Q!#bQTynbn;
zYF5s8yN$ZsDo2$wsiQHfnHhIY-`-C@ku4`FdbMp*lNSSCoXM86)DqcpH(SnS%Xuov
zY`LB-7qaCdRcN+c&6Z1S#Ik7{!%w8kaf3tJMA+cemkuk~$mE00jcmD@Ew{4eHl<)+
zYHO$bEKsC++VT@g;*)tgOT0(rpDns4h9@4Cf3^hK62=;g3mPR#rZIR5OU`JclDizu
z6NYnI_F$%X0#8g&EKj(TxT%dASS_7~E6pb--%=^tljCia<B97DBTCHGGksQXt8#df
z)06U^RPZF}Ny?Lgp4{h2x+fW)<n<(<Cz+n)@+7w>c|0lIR@H8+UT>=y17+*61edl5
zHa(2x_oRR)Sswl4%QtORyS8d_TeYUG%4nx(_W$Ayi&L*co)q?^geN6Ex!;o-`HcrW
zDdtHLPq<%Jw^v3{Ponfhs$*`ucsuo=CpFut;$HM7N_V2k!$Y2w@}#UM4|_sS*QGt-
zX3%Q|)0#XbW!Ti6d_2Td&J&)@das?z+MTaQ(dfNa(UV6!sl&!SdDN4~JgMeMbx$5A
z>O9ddNL5c-*LC~NOg-sIB~L07?f2O)!>+=<{+HftQj+-=?UesO<h!y4q4K1bC$&8p
z&`!;3r#7V`?X<O>s&Lx6+)g>|)l;54?aA|=)c2&GC(n5DtS8TTLLMmHUUe;(d3#6(
z-N160x^{c@@{8^Zp1hi6yy(eG@n9Lw>1F2cOO3CRdcVDTCBFIUt?2Ffx+iaVa@~^~
z9(Nq%El(zUGR2d(J$c8IKRo%<lXpF7;K^5>d`(n%($JG8o_y*_BTwFEQ=WY6$p@su
zlkSI}@FQ-`p*(-JS0BZ_(EAE|p=EMof?YVj_D7CS;`?9a%;3K8XP$iSNmEandD5@F
z()Q+ARNm#ZidDYw<V1T#Q<g8|^4r=+od1m{-+I!*la`(|_vAYg+LNC=Mne$0gF1XH
zvQYgYE?=XA`d<gts)PF3lRh034-}7oRzEs2=P#c8>dE@owN{?|7MDC<HBwN#evkhy
z_&$9}2Q_SC+Fzdh?MW|>A%~>3Cv80G;7LbM?&UVxdeY95_Hp?g9TX1}?QWcTzJtnF
zC#{nwojvL1Nq0}W#03g<R0AvK2|K8+@n2?okbgR=>+`dURkeG1vUs3Fj~3io>f=dY
zPlkIkg4pn+zsGZhGAyq3PDeGslYyQLivJGwWC#b+F~Z5fIQ=g(y`%bMv$Je~!|j-n
zo{aKjf+rI_InYs!_GC;aHIAt#V<~{0)FYkLN1arwPHMa-D>|t?ofOl1V)rkVG0BS@
z2C~g#XSJ!GO!H)iCp$fv?#T=m_GG0eGd-EbVuat5*`EC4$pTLnl1t~hb3B>n31d=R
z?WE?CJ<jCG-C50#A%F08s$<n0?uFFLMr3ZmE|z$*)RSeNET^z^Rv&lfDI}M&+@iDU
z-&qBNlS9kft2|ll$p%k0QvZ7l-yrKq#JIuXkECXIj%;cE^<;BrMJD|FN@|m%9om!H
z#5<I0Pqun;x^sl9m-Mvk(GGnHZlgFHx4c3r>7urK!jvE2yFA%VwMNGCWRE9%Jvl^v
z_GF(Y`-wwO4tny!7n!PyqM7UNqX|0Vp7m8mrTg3lqcV?pa@3P!UgT}Kd>8c!vWQ9c
z_)!=2TNicGlT)5t^yCsD@#Ksr7h>SgdNQ|*sxdR`LKk(;lk=YJ>Jq`piy68Z&)-#D
z_T&mRuqW3@{j+Hsdqlc=%aCYtdvkvzT!rUm-Sp&^C$ISOsxP-axfAIzDelW%vMY73
zFB!gMQww?G_zY7ez9)evA(fRM&0}+3$aubMv=YMBbYI|$>5Jiu`0{#JMY9=R%vgS;
zIeB8;_T{&(sz+DF{FtsP;Y*q?NncXFEbgi}f!xzo<?!V_KRsuhvX<3NmFgB9v8>sR
zt4@;3m;AmI@Flk|d3?$1OFlx<O?^HlAKgv=(oNZKWPV>Yz2yX_TQ`;Ei}Iz>5&ixc
zfP!&a*q8f!DdfxeZfapSwY8g~1?F>I^7-9V5nqb3N_X{uFEzTWVsV}@H0Z8=?5;}q
zQqq@NzSQ>RAzw=Q@~AJ5`BK`KGQO1ar95w5Pb*98wN9+-t{#rN>(M=;O9fx{cUO=2
zk{GEuJyb<sm_FJgdUQB29{1%5U#j?0l~9e>pY)|^4^`QhO1`wt&@Y_G@m3G@cMmo0
zNV1wQ3`#;)so_iYxc#BmBchY9Y7!MsMVwQ|m%6?@?@N7Op7P~sU!L{lIbTNfP*WGB
z>iNR8vJqo4o{6i^?V+~zP*-}W)=hIhIoEl?mlu6`$(NUj-k$%Tqv+i4Mya$?Jr&<{
zwR)=8NL*k3@a0cm-tgs3Uq1EaGg85qw~1|E-uLAlU*3%<C=Gp?QP^$Z%hAlVjYU)W
zCq(SWz1J7N&g7hJ<@Lk|zI^D*$G$Z7<s)C#?6n$RO0dBHV(`A~se1KP44^r=r~1T~
zCcgZ4rh8Qk+vh}-FF*P6voFnjMm>}7eEHrNhK>8um#=*Jn*GKlzwzZ;Uz*2l9z5-+
zS2LL2?WxjxMPnRzJMly>ReNi`AAEVOm-;bIzv!h}_|npsUwrwM^cs}K4ePcnzcTro
zFTcl4bxo#P#hHb1J7eSYFJJ!lrKc~wNIqZM_|nOj&c3wurJXPBed*xK&R(j{sWh%a
z*BqYJ(U&f}qT|eGd#T$^ZM%Ze#h0$WboZr4+&DjEx>2}#M{d3f42@pCrFyH!QZB9C
zdi&DHmw~<v@};jY{e0=~%K%^2{x7pp?+Dc9y;T=x7&~&IGbYO(Oj%1ahWIj+VQ_mZ
zE;{ki>Yb@!z6>Xa#NB;Xz#Zw!vbYxWH+JM3<I7lLz=7*v99fhsWZ<ZQ2|kZ~$#WW>
z*D%SK$<!5rc!5muWvVaF1oCVk(|nmuz2QqhPVi->FZ(D9zRV(-2q#1F`tpx2bJ(LV
z%YB*a%RFBe`m%^EtWTq@!hBz*6wW-{TP^T~DFMFTTP>#O^-<3T1(x`-lu|h@QbBq8
zL{C@vveK7TzO44;l|HKE-U3bgsN+)|o~~U(U}|UVJdyV4sOSx{-j{!U+3w2@UpDx%
z(U;A>Y$4T(Msl=?B<rK-jYQ?JNB2=%DZC}@Z_Ko9gx@xr=C$Ybb$0r)%a=XA?DeBl
z-n+^9&5{o-$-1%Is<=;MtR*@ueWtv-_jbMmz8v)Bf-e_+ImChZa>AFB#3WhNmt(#h
zCkFbcJ$)2og0yLu;J5h`6Y@!4)!}x&Q@)(`<(x0)IjCIr8KSy++6#Tv*_d8M`bMLs
zGc=|&=*>UazU0egUvBtvlk(!rRbQ_8a^07jmF<K7q+0e>Hw&gS_SV?GigQ0MjNhX2
z_vH>1moK~fsylrZ&AL9Tndcs5vvoA5nu%Q5zIZ;5lcb8@OdY$CszfVaU$j6T2&7m*
zH$Gwnk{(D#AQA`yaRW&NVg_ObVh7>`lDnUJw4dUVSKSgRUT^e^z;518r3I2Bkeq=e
zgXlFevvrDYw7d3GqxvbD-R3))mI`ELTsSk3T!CZ-qS#s>c>>8BNWMU7SBqAb$SO<^
z_fz=;o^G)2>#xFoszBT(GX(>=FOY}R<^Dhl1#;|Ag6GaA7FSR9SA_#%%DQ(;rHTYn
zG_FD_@XmvQ6c6O_K%NMsL?9&tDHlljKpqODR3K&9U?BDStA_nm=|Fz$ugdVwb8h$k
zipD4W&`58Y;MAHCLn;JPF_1?Cc`RT!m?VvmcNcRX31n=G#NLL+r2dibms@5udw(*J
zN`cf2q*fr61E~^7^+0L_Lbsg%9?+@=vb?`ythZ``9PY1p;F`0MLIYH_0qUaxs&*iC
z0!CVtr-I1y3BNHf^v?WgfO<NJ4nA;WckKW*cz~)G2-BGZ)N_G6AIPXcMh8+qkQdks
zM-j-2fxHyRhk<+)$jgDe639D&yc@`?fxH&T>j4)_863QTK2UKLohLiqt7X4Q!9U_u
zS(@=yAa4g!kdNZo$h>tq8wB!RAPospAe+w>cshP`A*Ws8YV!R+`o(`g2&BnC#Ve{6
z$j5<v5y+Q;G!EpGK$-^9j36Din#82}i~!_uKMkZpyimZS2cMHhZ>miL743+s7LEva
zY@qrokgo%29>{lbEt)2N6G$*neH#d``vygQ(eUi`L8{dt^?e{(sR;i+1@dzsJp<_#
zNQ*#P2GTl^Hi7&S$ghF?8OUFO?4O?;I!OH%$nSxiV0AvqWB(EN68-I*$-fLh@JP<I
zzvG)fUQf3DNZJO{E|9K)bfdgHn%<rwQ!TSoARPkf7(^~!Ig=*<c?YY`fpiHXe@Fbv
zt~6M2CwliI>D`IO?bgH1lRe@#8x4-&?;S{=Kn9VZf%GLZ1L+^g00K5R^7uC_E_3@(
za?xNlFpwfcqAG=d$s7{M&_G56GLkeMqFN47M}JKp7Rd0p<*Z84<dE0J^XYU8_V^@c
z3>h_$je%?mWLzNQ16dTv;y@+@GLf7R$gDsn1u~i1K9K3u|KxTa9$cB6KSWIpq;#_k
zt_L!GG{c=izKwlm?v8<(9mqd{%nM|GAaeqlOO`vs<@8h-KW%g_f@A@^OSkE!j9(TD
z31P~n>sO{r0$Cc!>Oj^6vW#*;EfL777_01h1zF<LXuOQkL)VK7rsktWe0$tk8_2pq
z{taY95cw=EH&m@BkJZq)#ZL!o&kl{wpFZ}iy{odjIgl-Z94Cnb*&4{UKn?~xpe@@2
z*%8R@K=#DwN;jgH#ZHP?Any;2dStpckbQwHi2t@7s`gXLhN=T`dH!Xd#SRCI87fDq
zi`agA=fY6s3{%riC;DxO-tx~4QzrvC7087^E(UTskTZdt4dfgFc-n3@O#MDg^&Y0q
z6M@52*#i;t)J{w1KrRJxIgnd{+z#Xl1(}Z40=Z5JI^|p?<in!K5iERzayneyWXWL>
zJk0YX@*OIu;fhPmcd6NiNB8fM@rJAKhO0iql}`yG(L<RON=T6j<<(GL3q=pb2&F_Q
zB}0)=5K5j<@`hrDVug}3lw>G&C{8G8q2vg~4Q17E<qcQ)N2oG++(al$PYqX8Q)Ne}
zHFGj*j!>yk(nHA=O72kJ8lf^mnOGvN^9Yq0%FiPdFTyrqgqmL<ZQ}@ac!bIqO8!vp
z3#Cvf1wzRRMTJr@l+XJ+{s=`Q4Sp0*=NBBQs*Y5N=}zHL?hoaGP>Qkrk*e9qsKFv(
zWNchCPU*@2!BDv0T|A_BN{gPmxWzUkF7{9;r9!D5N{vuT6ZlXb3+3@p%7*fAC>27f
z7)rTNR*Y1;;_}=XFCWs+a5U?9B$V?bRl!k;_Lh%^Q9N9XQcRx+<;hSgg;F_`1M@S=
zj#AH#QcsmkXGoVS#4~k%DDRI_RYUoElwzhp7|o??hEgk(=R$@?lG>rv3FWC!o(>~1
zsT)SV<F<}c<437Qqtv}^$$A9X%Xl`FJEPPyaeDvgXw=V)R`o-9fe?oB3hOSgUJT`>
zP`(?j{%V!6WL(l}A8oQs7_A5fGaE;%*F$+DlwU&mHDm-^c`KC9i0V+@4&|LtJ_zN*
zP~HutK`8Hq(lC@+c19(hF)V4H8?DL@cHa0Z)rh<?Mim~T-VbHV#UwKyvFlJ8hw=%L
zFh+H)nU*V${c$LB21g@p5=Jqy>ke`5o^l$GQJ)eghb?BBh75@---YshC|`u~Whh^V
z@=YiUUQ2xy3LEJ;MztKHn&-Bsk5LR^_H8K5Ls?nP=vmQu>0s3I525@R%1`90F!IP$
zx@e|ze@4Mr8@GtDK^|xs3a{;BB6R&0%I~4{38il+tw_O8+J<yfFMkr@q)sTUNs*%V
z8Fu=0(i@{1FHN-xqgOEPU5k#5T4*0ihfunO(w%r7t2&0#DU{A6W!V(n+H{FK?HZ>8
ze~eVYH*u{Vp|m(rpcf@#x79NgUY+9mEYLfY8DrJ@v8rDv{X-cM%E(X#gfcLcL7@yL
zs>i8{<Dz4F^~b3p944VXn)>}xa#$!ACM9XTGdz^y#iE5@ZjbWsv5&P;p^Oe?4Ab#W
z^KoiyC}Zuc@u7?#r^dyw^%xh8g|Dp%VPxS<KA9ZKlu)jQaxIjpp-c;9Gl?6@bb=Sk
zvQU<XGLy_e>V&c|l-Z&D6Uw|$=Cjy1HKknIpzg^zq0FTKPRP12PURl2)~-&LyOU@-
zUOoJH+M-Yv$6YTap2w?U<JA(%@5ux|q6x{O@sW-F3KBPzb)l@Mk_lyXC~HDl8`t9W
zc-MGEAHOX-r|4hzrRvd)@!wE3gt9S|P1Im#or~iY&s!ZDlH@09(Fuxf*jZ*P^#DN%
z<v4jDlpUe$3uS*OJ4x11_Jp#RQlHzdG(nx7leIgPOe;sNF<Csv`pyK!m1MSXAe4il
z90}!UDBn&{T_>nRRA>{_$qDLkC`?%<n4ngFl*&Pmrq8=4cr%o9)D@weA{`UPnNZG#
za++H1jP>l8XtvMmjd5DuiHaYR7ecuh%B4^)$0I#AGo#`}MW;G1OjK9Ms}rO4KaJDt
zq1*_ih=!sXZiaG;+E_zE!)+>rP&5s?hP$EMi`((T$aF26XlFa?)5cF!UVNV!25<~W
z%@Ix*r-!d54Gp5f*5GL1c?7O|@0_Th!PH=BxDfYFFq}ydFhi!LicN}q+N5d7p&^%s
z+!}IfNNUK?kf|X>s50#9p0%raGF?OSxE9lEJJUK(QuJ$@Y>>%d$9XhdYo^_=A+Lrn
zk0<kKVC3=qaatfw`8P|0`oDa^ICGzdLUE>Wobv6!V$&z7V5swehGH5jXsD>+K@G(<
zl-5v2LkSHfH9VxD6rqjXhjJ7Qmq3*`Z%F3u9oCLXs;q{GHI&m(UIUjO&rDL<WR+{O
zDmz&{J2{GuYFy5EM8l&RYG|mb;V})5Yp9~3s)i<$Rk?)mgoY<IEYZ>{X{fA$T`<pd
z;p7NuA5@9DtEORNMYp<!V6ysjn8UP|hT0mQ((tqf9&M|`E~coLr$ixE>uNZ%B{wtm
zH2gkAO`oC;<+XcEQO{^#`fQxC<@y?4(9l&!Hytl(c!|8B;g*J%HN2u>kcPn;UL~$H
zw9wE}!|NK}(9l#vGYxNQcuT{F8a~qSwuW~!G|=!KktX>MOi|6pXS_=^-b_{7rZ?2k
zNW+47!SMZfbRQ7lT=vx|(dZtU8m0f!@Ue!*8a~lL2lbrvHk*=<pPWrJRGO+j)4+N4
zr*Yj^;_{zPRiDRyTTWG9kOwq;r{Q}IUupPS!#5hfB^@o7Z`-<`r3S}UNWSL8;Z$`h
z{`-T5A2s}>;b(%q-6}UN0^{RpiXSPzOj9GKsdM$+Uo`xxp$k!@;WuJZLwgM!G_=z2
zhlam2{H<Z#G{u9TtotW>^sW2P8%L(8)*9LplO3Gv2NG>G&^YJVlw`XY;5%_g9W`{)
z(3!n+&XC7$I6dlpah$&1JF}aH?i%`N=u1jz=&7NXhTa->O;-#W%XI*bCF_OMh3V@1
zUYR*&&{P%uH4M-&P{Z}&X$5yDbCkD<*o75bnpCl6hUXYU=G3rS!x|04Gz`};MZ;7L
zBQ%WEFiyjG4Wl%S)-XoHSPc_*S`XBUrsBgYyT$gUm28x^<P24HhMK@fT=^lHG;m$6
zYkK<IGt|Nd6JO3yVZn@r-J>_xG!9wA;)ta&L&HoB^T_}jW@(tMVXlUPg)-^h_8$#%
zVw|uF|Nc26Lc%=qq^A>;Buam_OpeNDZ-^f)iVIJfp_WqTv`a42uv`NTiJ4zP<ufDN
z>?=G|t<<oJvR2d1hy!>TGu2v>NyB~(2Q;kL@UMpL8g^*dKz`7$Rl_z7&mOWiY2e=9
zmbjPA<p1{+j~-W=8A0{-Ox1E`<lSq`Otq7Q(6C3tUJVR)&Zm24s@?pXFnIBl%03M|
zcS+{w%#(4`4r(~0;gp8c8V*x1H5}J)f&govuQ0l3b5G`J_ff_%4NTeE%Cm`+<fRL#
zuHWac);RjGJ)_|)b*YAnRF$(7Pr>uU_M8S<<DZXHmbt`HH%(rpV$^V%q@m)P6+zCc
z_AK>BA@{n58}ZPXZ#+wNjGx}taEBU6$KyKgYPd(z=(tZuwg!(XT1QSDK6MWDxeiN5
zNSJl#It(3qpGyszrJCl=T+R09X3<fw=(t!S4Lbe_GWO0=Ol=*Gj)aah9XvWpW0-TZ
zl&eQ7?u9f>W-A(jJl!^WBPVsFbmZ4TBBtxe(2-k5p19<IZ0pqItV|ub;=e3RKcD<e
z-o-HV@tr)gRX!aRW=G>Kpd(91z1iyMjdT^a)^N7U{YoaAEu^D_j*>bG>$qP>5gkQ!
zJgB31T&($Q#UK<9=qMIneMUw?J$<%fK(Vc}qjR+n=_sY6oR0E3O6w@2qpXgHb+nDw
z5Egxracs64nLqX5KdRJ2cBOw*1syyrSy9I$IvQ0-d+i_9;vd!TAN8mXp0Pb&CDQOu
z=y;M(b-b^ml8(wc>g#wxM-?4ab=1}Il#XgTs_Uqsqo$7a|EOF4D0`0L@Qck+wc_E|
z)<H+9TsmNbb#&0|`K3APX(B<#Gdkwy)VRR@^&Iu(^|bDDA{0HV<2fDA>liyn(WBJV
zm)xy$)QdV^(($^EH*~zL;}spR>Ud4ZkvZzloXD~??_9+I?oCcQY~=B~i8pn;75DzG
zj<@3sEhR=)%kvI#GB@glX#*Ya>G)=@YN(?}e3SPXmg@r@AL{r)$B#NbVqG0gbu`oQ
zv5v+%KGD%c$K<)ucgOO%k=y+JbJeHB#=J<=ex~Dd9rxy{T=Sx<^gQ*2jxX7Zj&F7J
z)YIv}=PMmw>!@8clFjzVtZ(-kP3EaT=BYtvo#r~e)A4-_aIbla7Y_#hq~m8Df9m*4
zM++iTM=KqFkV&pszv%dtz|2!o{8oMi==eRZn>{ZYW5#^N!-;fxy0%m#xqs_uO<vN`
zfxNNDYNO-P*n3`E9qn{9xShB43cJq!Jc(oZI_l`8qced#>d=^+3qkyZuNZrb??N`1
zA2r^cNYnAOfqDkVg<d)?>$sw$w~jtKR+Ec#^wrT%$0S0iqrZ*;I!5RisbipyK{|%%
z7_MW}#Ax0)I0k!&j-jOQ{Ak~w7w<pTIoWJ}w7bOoC^8SZLdQ6Y@B{Ae^HsTG_83ZH
z?7x~iZPAj{cpVei?0hv*N5QgDE$U4EouXr^j)giF>6oTtx{ldwglt?jwP3!Qp<||w
zUGvqg`D#|ou4P|#xyCg|2d6jM5NE!QxjN>NvTvs6U7)HiP_Hgf3u2f*SrB1kv5qA=
zR_a(qG0bug)Jb2eW0{WSaT(f3tkCgWT$1_43)G=FkA+dtjkP+~QD5oUM+wsLuZ}G`
zwo-}ZGB%LzSM*IfHpcDb-)?={OxsM&vrzG<7yI3&W4n$WIy!FDpIoSVw9QXwd4DH|
zqa$yA*{x$wTz6~`aR{g7<%Ze&bsW%fTE`h32X!3Maa_j<&axJ&!#e(6sE$&y{u|xG
zXmrCCs$(3^LdDEUs==eFZ4bL;mS>%c%Y0cb!t+@j=cr(HT+;E?W#_z(!wXfO5{U~s
zc=6O5ePA+h3`?F*v!`}Rze<%$Wp1F5f$KVMP!$_+4cydmi#ptZVc@ooJJj$x0_uMv
zp99aCD!xc%>+q=UW7t})br_eK7c*=;q^5d4Rb!FTj7W{s>n2k%00Wi*+d#ub$~5rH
zBJMoWz&QFwJF!S57OSThN3bOfq#4L-AfJI8267t6Wgxc!`eIGSX}W>Ni&ZLaoS6&*
znFd<Kb%(?$OY-z+9s}HGVTh$WOZEH)3K%FDSIII!JDHh_)rG}M#drSxA$q@POH|ep
zRoKA&1|Bi+sDUB|iW(?optOMp3=}i)pn>8B%0H6%=n}>EZ~3&;i%Zn|BO^nR5(Y{d
zc*p?dl>Wzft+~%FW1uX{vqu9D8{lk{fl&xvxwv1NG|-a#te<+?a2da&Vtn&|OVncq
z9yd_kKn(*=7<ke^6$592<nK#Vr5FP_CgiJZVA2wGu#n4?M>(n*Shhq}i&Fwq(?Bf)
zwGGrUaA1j|Cjo}!tC8t4^F_nFbq(-n+fxR(A!RI$J_nvL@T`Ge26`KK&cO2qni=@Q
zKz#!*7<k9Py9Qn~@REVo47_fDE_q)z@QQ&~IkYF!3oliVFO59iMep1U`watc8hFdV
z+Xm(*()Lt$>n~N`E>$$op1m|8F&C~I7<i9#B#p=q1{xXo(7;CqHZ4_$2PWSqsxPF@
zEL9(H;7e8EW$Ni=>VF1!!hP=UB)@JxHo%k?TuqoU@R@<n3G*`5YMI)8F_N;>Mu)LM
zn;M`w&ARhCuP+UJW#BIZe;fGPz&8e3k_iobYoNJ-pUFZ7zBBNBOohG6)DP^=z)uDk
zyas0z1D2`f%hZ)K3I1jKBikfzFH_UcCaD;IjjQ}&;7<d;kyn?i-wm`PU{!2}tsMP*
zl;(dZle;;rNS<tMppAi!209sN8`o`TpnaU7v3=#`%9xg?gMo4NGat_tNk?Y`T@3V~
zl8?*0x?FWN(9J+q!=_u9?(xm0%Ok|Tm+pSL&H81zs&3hR4D>ZH*T6jTq=EhhMjIGo
zV1R*v28J3KW?+zk!3It|WenlpzK$~`AKe4?S*~_2SC_V@h8q}RV5EUj298ZkPu+~-
z*v>DRhp*lD%jExRpLKJ&8cR40Of@jgz<6%{8kk7Vr1-2*^;f7bS43h`|8`<B0bZeK
z2r(swc5>Nh);it53<I+a%#LsVUMqS<&g7k=iKQ!|D2-dYCtFTU{$pU*3N<G#!_0gG
z3k<9`@UMY|1{N7uZeWFh#Ris;+!O(lY)?J{$=2?394<jHGy96Ar`anFtTM3Lz?!%<
zy6k4WgKH}y)U7q})JoNCrCMizSB{m@%?$=N8rW@M4>{AoW&>LdY$KIdsx2hSuGEB;
zs&`zHg|{2nX+T@0cEpWujPI*eYFGT1nY{+~88~F%FnOb4X7t6H%id23HE@s^TctSO
z`m0pKRVq0>@^05MJ?*!TQ^yP(C&QR%YvP1~lLjgRj{v6(oTkju1VC`cz*!2rpswJY
zf%8;%f-J!W0~e`s1rDRNQ|b-eHE_?s6$4idT%+12T|Q1{EcNEA6w!Wz<NY=o_$@Nz
zDs?l4oSEAO?id)mN-g2&;xyZU#}|Y^Xy9XDcxzjeNZSVnLISo*eO)V^7w-%@Zs`K1
z_G(2pG7XE_5U8G+rof7;bo)Ak7af(jf`lMLkSRzL<PhW(Bn8z=xm8xHmshKw3Oi>m
zSoE!z5)9#2KwQ1a>ImRmg4}{Ug1iETH02#$YfdJbKJG3|xx?$a`2_jnt8-jl2?`3z
z3LX~RCnzL%P*7Y@Sa83fh@dE2JC;5_E}WKbKOo?qX6jh9bxU8D#p14ytX3riB?S)&
zN(tzhyv+rR4qfTljJ;1Ro&LbARB1-YIhIjI@Yuxyyjf0AUQkI;Sx`YxQSgM|Nsh65
z>JgS9Bx}^80$wZ}u2zo=7$&Ax3!CYj3rT+JGWIv!7*-Kf71R*a6jT#5-I?NPCVur-
zk1JMK6XB%Z8dXd1dF8a9*C@uOsU3~f{dkRfO7JwR2$~7%37!$WC3u_Rng!1ZUJ|@a
zs17Bb7rY>Nk^43esQMhm7>8fnJbW=KS2{O?x~@^L2wr8ZMZxQW5o;9VdT(8$>J3i5
zA=oIXd~xLH>^165vf^6B%sYa21s@1L6f_XLCm^EUCpOlq*Vd|rg4JHKkzm=&_BU%I
z_<40*t3Kk01fL1`a`{*=YOQKQoCJx+f=>hs)~da0qp+vUd@87)HzQc99$cqB7tGsk
zeOJsTzkMP2QqW592P+D`7PJtw6nrE2R`8?XCyCbazFeo83pRg}PB)3)3BHdpNq>ny
z2)MV%%+G?J>!J{BZ*Iuompi9YzX*O6{3iHaK;r?*?ATEb?=vN|%#6F9_*3wgpp&4p
z;BP@|L3=?5!GL@DzQ}aj2-*_!gY<TS#q}e$`S0jxN5R5%5fV<Xi;mPW(}m~~^dJmu
zVRABay?SQ7>LwsO-Q#pl2{(6Is>yoQX1(gWUiA_56`ZDW5cCuD7c3X7V84Qaf+>Qj
zlu8awFh($z0wowq^a@4`CaqV)NK?jl4Kr4(SHoFxeFRLcGR{Z=)8p$^|Me+`E#t~h
z_s8vVg7K^+m@Jqe*swA6z`yG0f7L|lhkq3>hB{^SkN=H6OMCyTrU|AC=97Ga8G@OD
zxuh3KUomr*;2!}4%FK@Ozkqca|0T{dbMjx6e}ig$Hc7WdpXW_26f6=fWkq6-+_*t8
z3Tl@P>W2+#NnC}Q!ejFBlx`EGXkEEdu!{PD?UUIAYY1w@t5_>oCs;4|SMcfP)aVWB
z#0Hhvs0wdXH8w^794wx;iM&A>7i<@7Vf9N6CvW-gCh2EmE2U$oeXw+{#v>w1-R+S{
z!>wI{-GW1c!-746y@GutlYpyvEJJ@jN9bVTVdnr@$j#tnhJI5Il27P8HDw<W93@8y
zj#IccDk+!xW}_-uI_*R}sFQ^GTh%oNtm>V7r>F|<<eRxsou%@p&IFRcc`E<N^b&#K
zB9(vSgAI2Cm!p`yxEh7+!l8}o-bTgmyVO~SYOQBI_j=@{A2;J(=%VcwmD{Fh_?0&)
z{=F->C&-Qr`6KQ0{w7tvf!$)0nl;ARwLbZG)jSL`8wxbQ1{^?-ru+~@zlX*|ljOfE
zL^e4C<2Frjk<GRM^3R4%im3}EfHWWnqV?+JW_3!-DzRBTT*$7oSq;b^Nk<Au2MPoC
z0~tUjkPpZY<N|U7d4Rl#VB_5Tc8LT%{C7I)a8aW1=4ccJfGj`(1%czWQylX3T4^+&
zyASwdb2Pw;o2)`{^-*#8B0y1~6i^y?04N4L2owjFZ&ozjpIFD<wOL)*tV#eh?Rba)
zY*8iSl<KI=7In9flmW^D<$(&ovRvtPwy1{z`e-T__rl|`gsRb&DCGvzH(S)Bz+-%~
z1E+z<fhT~zKtJF~pc2p=_ztKHQ~_QEUIVHE)qrP#=YZ-!4WKqq2dD}3*rMp7@cT2C
z`$t+WfGK;)zs0HxJOw-rl-X(D_m^HThGgs(^$a4d!ZLK<Jti&nJWwBa0eF$)-J;%{
z=%9Fti%49xII=~(1iTE;^oZqOiCdT-d*^r^cmwztXbijwyajy3r@-65tu2Z>hAjUM
z$eC&H#wjxmfcN5j!~eU}2zdYh@*e;n#(D0=u<-X!rD}X9rMIfOTh%8(6W|-*+Zccb
zTh-rN)u+H`K%<Gt&*QXdoHmP7-uxoYd>N--#p&1Vy^qdE{kN(KTcc?+A^aZr0r(5}
z8~73UiSz}21AYct04;%E0Pb)N+?9TEYec(STUGvTis$z$Z&SYmtpI*<{z)+`mU?qr
zRNxO{a(nVvl{~GssqWiUYoHC#8R!DE1=<nwKnGxK+w^g9`LdUjtKv*Y;8O9-PQb21
z+OBP?ThFwvKsSmE=^Kyw+BWszzey6MCuL{5S_jn|=morTA=<B>h^Y5Il$Y&Mrav%%
z)C5)l1A#%nWMB#~7#ISK2F3tGfnmT1U?gexb)xAD(WminR=F1)q2+nEQNT0X)w|mj
zQyPbi1;zp6fe8Qu6}8{4hHY1?;_i-YR}%qx5|{*JZ&%$4*$jw06_^Ih0p<eJff>MT
z;2+YWsLc%^s==9LE!UnEr|g<%>JMH^aAoPsf0FYkJM0Bm3@nI;|MZUNxWqyV=8kB9
zOlcPT(GInQcP=_hDRcns;#%xbeRinnJJd>G6|e)?39JUz02_f#z*=A(`5D+ifO&I=
zQahstsUj#r9dBoGu0HEfo*FyVW?&0&)J)q-n0G1$onf&rcPhq7+(w1Q)-EPE3Z}b&
z-M~TM5U>Z>3+x9D0Q+Ldhdl0bTe<PdROZ^~6YsSPiFP~H(4FcqaD>_kI6+9B$}@AP
zItm;ER_=@pp8sqABsFC9OzvLMT`)Zs(hK4l;4H=8L`@UtsQk%$CQ>FY02ir*O^At0
zz-4kKa2L1&T%||?x2c-S=eY)42X4gh6Zo6dvE^*`#XL``Gyjf?!i&%sJ-=S>k(xjV
zXeJi9>92Lp?*TqgZnMqR`-3}G5D(DUr8aj;&$mnICTLMyZdZg)m@rMGnP8}5%Y<!$
zk>(sT(%1(_Wbu^WOV4D|Ig)E45#OW{KJA%vn8<0O_AX_gch+aw=g$>LH<4kYl!?+N
zGEL-SJ0=R5$ZaAI@24C2P2@FExK;A=UFws}NT~D04K~=N3Yf?;BT6X~1x>WxrT!z?
zk9+blU)aR`CLT0V+(Z#GqGoR+{{tq9nlPSnd9kTtaZ>~05tT4e(!>WjqwiT>&y3W{
z56S(I38n=ePcLJltcl7ds+f4#L^%_Wns|&)P0+U+y?IwOQ6X;a$epZxXOoYZ;59F9
z`SJMvlP1pWQe3)!!UUH?sevoS_nVfBdZdraswS$Ls7?~^R?9|33cU3?hf!n7>{hji
zG!{1Tv57h+>Y8}n#2Y4_GVwG4F!7>^dM2JR@vMpGnBT45+pT!GvZA=(?p8a_JI|XK
z^j4~Vj0d7(=5F<p35F$ll@v7ba-4r9hUe1mh`v1fN0Bl1MEN&Oyk+7&6AewgZQ>mh
z?M~|r;=;64Dbl{cyC&QR?Yw(bi)C45_ozlD-X|tad}x9e#bg7{ly*)@MeC(`?2k;;
z-=qHH|HdXhG4Z{LA51hc@u`U~OnhnLGZUYiXi7wx;L+y9#Ps*~sJ?k3l8xS@7Vn8H
zAHFj2wTb2?zB6%{4OXG?cEo<!d(^ikn9h0DF0wa*pKmKVrT@{yPbPjb@hhK}bAL9`
z!bD3Faj$xRYufzn&U1TJv%Tuiz3Mj;znl1*9A%;v#c)=1K>JS<f0*dMH!{3rn}3<0
z!TGGciYZUKoO;IQL~&xjWIGe>3A2S+7CM;dNDj16+(IW4olWdBvEM`&6J1SAGcnyn
zHxu1W3^Os@L=O`^O$;zG&_pj2y-oBn(U)j{)ZM&S$v#D^ImSfjN2sc~XG+=q<MGnm
zh42hAF__pkF_hx7Pw|6=o4IxNsR=tQ8fBHMnpXK#VuXp2CMKGgWMY(w(I&>27)ylY
zu^H`d(D%tE`_#C&&G9DEpL9p&j}+R3_)e>R5hf>_pmX&pCZ?L;vJ7`TtvlABeQNGL
z)qRIEg9A6Q&cu2XvrNo3vBbnu6aSc)V`71cg(l|4t<8(m`h!xdXQqx0$(nD1Dcirg
zFEV;uME2gBX6{#usbuy?{Vp@H+{Eg*)(R6ViRAr}X++umY881VF2nq5`_&o~2lnP1
zx?im&D)y_L`_;cDHc(5L*kNKL`QOAA6I<h^oCA?OZjSSlb7<Sh-tiuK%>$~~fvDe|
zCU%+FZDJ2a?|^DoJdJzMCu5H~XUp3y52(GdK=CB?0TTyJ1mp@6hscoB(k3pOIKrWs
zI8E6%am>VV6DLfZG(q9w5?uEKYRmz3%0$JTxd&8FqfX#qtCm-+v*bGJd=nSR13B!^
zJ?nf7Btar&XIFQ_DX9vdWGp+Nu9&!L;*N>CCa#&dZsMkiTLj>MvK!b152_m`Y7}#F
z{;JnJ7=6CoHu2^`^~piSx8Xe#q@ZWQr$mr3`s=+9Mx$PIP#r(0vJa}odYWcIw~%2W
z(}H0^ETmb;VF7#tSPcD$goWGXGcAjId1?Fx;98$bXpR+0V!=bI(joQcAqJ{*Y3jc#
z<>s`Iw2-opZsE5>YQiD4=8!sgNL@dq3LI8%#hjeWLT(H9Stw*7kA=Jz3RuXpkk7&+
zha>Ph_lh>T^2c4&KO6=B`u?!G)Fz*@P%yqZEiP8r!u=MCSSV`Y*HOteht;9Oitn-~
zAIZbDod+!Zt?XhJh#BH%KryF;g_0INx6stWLl#O|c+SG}7D`(vW1)(Lsus#xc$i>V
zc+^5U3*{|Tuu##$t-~tqh^l@>JyJ4SD0|_ZXs-3j5%rjb$1OZz;YkbMWm}&eQO}>S
z=rsG=pHq#yCWlv7l`K@Y5Wa2jG(njexvE*HZs92lPg|&Ap{9j87V28~{fMGp=mAGm
zEeo~T>0Rx796OJ_bjX!{VME%z(}{ZV*q^cREE}Ahp7ZU@pNnM9ITB%P*AZ3U!V4DO
zvGA^i7cIPG;dKjdSa{jOD;8e0@R|j>=<hu#a-?%$PW1NCj;b~Xv`(+4-n8(Rg}3AO
z=`H#4sf@?>CdwaGmx|d}PdW`Oyl3GfKDE%$LL*{tr1m}sa^70FI7dw_{n6s-AH;P(
z<XDa>UTpkh3ysM$7MfTX`CNpw8L70To<*Vllz84_bvRYvGYid*s)}`8rp+vTK`m;b
zvxP4$d_|g)g)Dq+;TsD-S@_w)w-%Zc&lbM7@aIuA<*2GqJJ*JzYCqf`EYS38P>0ly
zZ2WxmerMXk;%0ipsJ~d4Q!4dIp=fG!;HbJ5L-@OeRu)=YXk+0IHW-)u+X4+m{vz`q
zi-O&APQ}5}eF1G&+gfO6p}mC<N9simTLq4(b&XP7B<Wy*Q41eFraD>}Q!CQdT`Y99
zFx0{@3*9Vqr_@;JXQ79Mo)&sr=tF4xInN$by;#h%euxk3vmy`ZH9DqRA5;A;46rcR
z!Vsc#XmX$hx+-PViTjpj45I8T&6sdZ4XJ7GE0yQz8&1(*GlyFkVPTww@x-=;Q5HrM
z7z@;X49&2jaOU=vkxXs7lxM7kQ>D`uAB$)-!NNof(=1GnZ%(o>g$S9bP3C<sQrAp}
zW!h6Yka%Kt=9sD%oAl41qBtJ4Fx$dEWH}oRY|ODR*MeiiwK31ad<%yy9I>!~jAvn^
zg-sR~Sy*ggjfJ%qmRMM7VTFa26#wI@{&Dryakb3Ca#BAdlNXIJ*~Pc5ldEEe`Q%G&
zHPun&oRjN0>tbRRKWc2Su%5(y%5K#q`7e=nTro5KxEen{wb{ZJ3p*|Bvar>{HVfM=
z>>veiMQ&g>)v$NOL%4E0^7lo1yxk<dg}oN`{nvQhyE+jKbH9a)zqto39EcxPIHBsA
z?jaJWT1LGSk>ALp7LHlCV&STV;}%X>IBVgYg_A_Ah0_+!kjMT^?yi-}i&U~}l>Trr
z$yc`ZS>}1-B#wl8$-)KdpQFi(aW8zzt{a|Em)U!K=bDA<7CZ~Sg&P)bTDW83F0~W!
z(<HO`3B@Y6Nx=r`r;K!_qfV%M7OMS{$=$<jqT+<JI37+w1!BRnVcU^(Xf{^;FGFnT
zHVhjFP9#po#pI;o@{nm`VM+U;QZ8R!4825aE*jX=b0%Z(C2XYGc+AG*Hged=X``r(
z2W%v5q-^B1k<UiD4IYQgZ6l8jS}A1M$h48m2JO=CJE?dvQ}}EeU5@<wV@COtD!+{a
zHVWFf&qkJw{>KxoPAXatDz^D+WbFOkNfp*fD`ew-8*5KSlZ3)Hdd8U|HjdOx<5jn~
z&Ap2UZIriB!A5Z#C2W+kQQ8KB9F??j>|}K6`5`;{ZsNs-S^c6_#>T^Tw1+rztzI_9
zOo>yfT%4(VDq@3*HXh+H$Lf#T=(IZ3;1pefW$y2pu2+jzY@V?3q>X26`nE(R8<lO;
zvQgVc6&qD;)UZ+0#*e2IDbB*xY;^nHuFmw7VkWbyODE?X=9p8ePTXT%8&BDw50(|D
z)X7tduaBpR*wgAruC#h=?Q{gsb2gs0@v4p2Y}B{$f{hn#ykz72hV)lYs|MTBYB$Ks
zVlT%H4mqt}VaZBqKb=-|clkO;YU52CZ`r7GFE#!5oIP@87TayTZDYY{^^T2_hf?cL
zD>|Y2&vxQH8x3vDvN796BOCAAXk(+TjSp;mXyZE@-`n_z9ohKG#@9AJw$a!|6JprL
zivEsuMin`uKCw~vOa%F7F-Qxm=WJ%<a~n-<lzqviX(b=cxMh7|<4YUs>N#AU`)0ZO
z)*1CpT>e`d&B+_1RHI84z2g6MMh!cos_(XbAYyI&ZljfrpKSbWqlJx@<mxkO!Gks(
z%5h!s7aPBlh0aF3A2_3avvKW=diRjVJP*SEVdGEoq>aCAY`l|7y_Heztm5gvch9O8
zXO%H7)!N3&YZ3dkv(ethP#eQ+bg<Epyl11AjjIn!CmUT!&=}Otl!ZT3mpEmuJ0<e3
zIFsmmR&}@0BQEes)95Rsw~anzavK9|OgO9h+Tf}PBRo>o_p`D6Y!qo|pp8K`XnRZ^
z7#!Cf5~o+=vE(`zjcB-y5jG~Vx{Z-GM%fr^V;l#S(;jW3OkbzYIW;D(#lmIcDxaKF
z<89Du)&v_9If`>?Y<%rIr>5ALYGay>=|uR6Xw<ZpY!*gu1V+YT9O@Z1*4(saaxCW^
zX8xh_w{ghEVH<O){B3L?8g0xcFWFel!qg!)7TH*8W0{RHxz%E_?s>&UswFX0+Icl2
zNLy~>iBF>8tRyd;S1U-7^NN{K=hZ5<a6Vd=Tua8VvEIhNR9^+scbr$r3yQ%PXm(ZQ
zf})`&t8cQgnM0$n+t^}btBoCTFO!QoZ}oBxwoh)e@%ja|J-*4zcNY{FpLg5XL+wY+
z(>Piz-D_hXl}3=o?;vg=wY$LWB<vcV{zy>Z<15ZV;`xH=Fv&S$<EV|BHf~X?*f>t<
zvvI-32^%MEoV9U|3^OqQx(llDnZzj@r)`{x`#p9+@nT1LFGlIJ7uDf~sf#u)k(bDv
z<mY!&^llw_>?bL&C$7XPx2`zTzHVd6#YiW#yQps1V9FM5+qh#xbD%r8YvY~`&xTKx
zcu{4O5AU}p2I(^<X$(tbUQ*RAsers!B2~F#dPrr}F`A(n4#a`wz;>ct0S>(JCH40u
zWjfJo;(V@{V=t-Ym(+k#X^e1}aFE6-Il-Nb91e0i7?i-^1d<L?4&HR}mWy-;84eaW
zSm+?rK`sZ49K7!!w}U(m9&_-xgS-y%anagA2?zNd6mU@3!Tk=h94H6(IVj{{_a#-U
zmvi-!D(Il)_2|v0o=E?>LfVUkT!t$u;-IL5Vh$dRL4ANtT~<{tD-!NM>jJu~eLsJs
zUP?N6$ic%7$~h?IptOTB4$3;{%Dv#hS@gL?=L0PEK!*LnWkrXp<sDRTP|?974rn;a
zM{O@h6NX0}Ot`GJbW6W}S*^Sr;r|H-Pda$P!HW(mIjHQQrh{4zsyL|Xpt^$^9M0%0
ze&4-4)~@D67T2tm<BDRWo3C!Caj&7agE|hLaqz5zx&(4!>S+h_E~cJx@c9Ub%N;$3
zI`s(f74^v##kBhsMIhP8a}J(&P~XASD{Au<)#Or6-h9cy%MRWkAsoCyYC3q$!RzFW
zD~f_cUpM8hs(g9!)VZog)Jo%K@mmhwcJQu)2Bgk5>m3J-PuJ_JdiQG7#qz7_JqMf^
z9Gsine^oVfu(DhlGaoqk&_Q<xJsf;Q<U9Dq!LJTJcF@?tHx9ma@QH&a4!&^kWz1Bc
zaySl}I+#_*{fsatZDyLqgsZ|h9sMGOlYLduB={@h{94re*YQ*Or~2Y#W^)JMIr!N@
z3kTmj_<@ADrdC~3KN17i)K76qu39kvYh0JrTRNaM!jlV9ba%$Tzd88bL0bpy9JF%q
zhl4*I{KYaoQd~WrGayNx`8#fhg<Cu5aNEt>McaQ(wc*WTikbGjNuF`gEiTs4fq7kZ
zcF>9BE0Vf=O)>2fKdP`J`WQJ|-7fv8+gmc!b%yFgF9)L>jCRo5K_3T09Sn2O*Fir@
zkb@<AwWqJE{v7);Ys3BS00#pdG`p@CN}Fld>uTr`XRw1I4rX3g+pb6W8SY?&gORNM
zj%+uxelL+uo6I6ws#n3xp1JHX4#u)D5l;UP4#qo}<X|%KMuJ{fz0O8Db7Bl_&Ks)a
z4K=J^#uNwB$qzTwR0q@IM|?Z;Of>BZX2gHF9!NJ<vmN~7V2*>i#N-V{R|#y20fy#L
zkc--TMmvShC+Cx+24qaUp_ndmu-HMuMVgBx4wgDN=HR%4We%1**zRD5gB4^g2kRWH
zcd*LAY6oi^tc^R}cq8(m!B8f&+~aArOE*;Mo9bT&8yswMu$c^B(AgOC*obxMFWrnV
zQ>%K~76*48OxxyQYupGu3i7_<YUD6yr-NM%4mdbS4dY;sgS`&+Ir!?P8gx@Fy{Rsb
z)X8=GDa&4>-^1z5YsE4TIXLX#)>qmQmcOYwyb`G++T_qi=qT0Q+z6j1h+7A@*|mdH
z4o*8b=ioef%)wczosIJAX`LsUi^sl9Iq$mQ;G%=;4sJNOa8ud0)FlU(sU;j-b#N_)
zoXr-wrFbz@HBMi;r7oOF@^I@-!owDFr17hq>0Jl+_#$v&xX5<kIS3tSE<V1c9xiGB
za!dIRhTl>_+$=Lo;@0-wQdyN<ak&QxZt*%U_&0f5nJyl?tt=NW-e#O8#k9~^r`5SM
z*TtCIYRl~io*XW6x~S;l5f@1pDHnxY6sG=nk>Mhri~KG!T@Zn}T;z6f`8Fq+Dse~U
zVS$g_x9_ODZuFKZdM9eF0K0afToiO^Ntpcdj=KMv_17JBpNpbzq|+#oWq8(->HRK>
zxG3SGBp<~sJm8|3i@ful@fFf(Wx*Zu2jlz4hB(FJ%!OsChg_6$@vw_>E=tEYm)=oj
z2!9Tn^Ut#JowU1j<FA_BRpnhUmTvdEszQAKm%9;!j}j*?o^tWDi^n-G7u8%;ck!f)
zN-nCp_%m<j_`9mIi+dktJaQ{-O1?xD7Yw6D8_vylBfn%dT-0<?$3@+^a4i=<O-ujx
z3B?#^wOue}Fa0Y=yYS?8VxXRjXI#AGa?=gZx_HjT^DgQWlXq3gd#e45PSty=(LKe;
z4llU)`JQ?)hPLy)2-;U%yz1gL7q1h@H!?f#PI8%-Z#OR8yy0Tby~yWqj~0<`eA~r4
z9Ip%C#k(#VxR~N%s*CqrG<4C{MLQRbT)gk%I~U)(_`t=7E}C&@E<R$9E}FRbl$_?`
zM4hz9LaR+Nx3P;)TwE`Zs#ze%A6s&6yQe;L@wp4Su{uM5b3|{|rZKb=Pej`COBY|c
z_}axcF0^cVe~pIlV2|X*_acgaOTuN-#y~Z9!F1QB`F<dixU|i{Z^R+T?xLlOUtCaK
zaN^n`Zdsq8ajoX70%}MdxAX;PPG0wS7p+|U9Y1BWe-OwTX&X)_{&ewIeDnEiRqs^l
z<80MB{%dWv+PGl)bGB;lqJxWpE(W>i=%SO0o-TU1=<K44iyrKKzh1S3>gs|kNH_Xs
zc5~6)#l&p2AzNLHhm-W8LG^ag$3=e*#09NW`nqUwCQ;Fgys`C*J7tERu^l7-8=m^s
zQ-fU$q0qS)>td*jVJ?Qd7(oC$HN#UIJau<S@{XrQy13t0qbU2kqCmRrXf(OhS6ufP
z=VH8z2?U1h=OvyWnen2pzVX$?MiFi&aX7x3=Bvprn0{5#o#tY?i#;y(x|rc&ri&FW
zR=SwwVz$d&MJ#sl4_U~?JQwp_FjO(y`JsDqu8X_G*gM98cp%q&l?c>YUoCWT(2p`p
zTr735%*AqIubx{fP<4Z-Zo@!vO>)W3B%Oh*a<SUQzb-boSmR<XnQ)V=Cu0O^9pMSo
zmOvdyY5!A3i_eoS_F5ZVY;v)~#ZDKS<9@fr=@u7TBYl!(6}NdYlaZa;P8JPRiR_dY
z&^v)z(JOP8i`{Yg2g3-GeJ=L9xZvWVivtAP#c3C3TpV(7*u_Z~r(7JNyoYpclsN9<
zsEcD1&rp39sy3mjd@kRKxV4FKYiw{$oVgMzI#xaF;+%`~E)8kYY^~sZTEXgCK{i!x
zPSzy~wToLWZWFi5^eZl|y0}IWu5C-b^l!#F<qzk%PFdCp-k=bX^R<Fqj0D}J^CS8W
z(N3L1(vu;zg0y|wa3+;D!I`BMq_FIZ)4)YY9g@Iv31|uE36xCWp#+QsB!L16WF;c|
z9y5WA1Y?xKO2AGaCnxp^IEhH;9?%OW5^xid#tyZDOw$s`k%;Ukndeo%VX9@dbV^w&
z0j?p_?mayLrc|)G63CrEo&@qH@T^|&YrSB5z2FGF;A*|#e!XD61m-Qx%Adg0Uox-h
z1(~V@3MNn_fuafAmq4Ke3MX*?|D)+EpuQ@e_uqJU<96Q<?>ivf-QC^YE!{{X<yS>S
z1wj-MK|lc|1jRy3RO|*3R6q~}1jQf(k^i&T|L>eVd-m?#ot>SXovqnfLdX!R3Rlb!
zmO`yOno78Hjom3jifbsLp`?aV8b)Nu?HLL^T9l=FGa3Huv8>V>HKkQ#ISu7CG}O>Y
zLj?^LHPq5jTSFxcl{Hk?P(xFFWKb%%N>bCR8mcko2aT)p%)>hU3zxGNq}1_cO%3a7
zsvcBFQ+IpoYN)4Cy;%-qNPUfpzLLRrgU4813m6SF&}YiV1f`+5h879%rW%@Q>PAnK
z&$3qMXVVf$r?Ey$4Xre^*3gFa&6MwVs^Oqkrm%xB@cbs_x7W}?!&D8^G<4L^Ny88g
zLp5~P&_zQZ4Sh8%+m+r`LpKfGHSEa9?UX5d&SVYClpY#-YE-I}E?e_@Y3QwCd8Ry@
zDSL0K5w@R({u%~p7_4D{rmjnHsm1;C_09c(tZ#FlX=scteRudtrf^*|j1|!^R>L?A
z!%2J%qcw~nKIaOK)Tq)X7NqUDoKbA|b4n<g*YrBIvTuQEi}4yJXqckmHcj2Jop_fT
z{w8Xeq+zl~l`7%5*{z)25pwUd@m$C{$S%lq4Kp;{r{R7LGg%Q03pL!KVYY@j8s=%3
z&l=UrJ_AWBAh&CnOUk^RcdV#Ge`7g^bna6?7HB-W749wkPs5!W?$xkF!(AHBPlc_&
zNW<Mp106o74o&XSuvo(@m$LZQ27Mk1GtKZ#G5uEx$O9UdYFMe^VbWZ~gBn(7c!-Ts
zEtj*+<?LMLorCSt;tgr~pGGs+;qEbEKB8e2$*W<t2F_PEJ?9>t;qnChF&0$ap<6?y
zN-!kLwcGEmBcEtgyu>#;)@#^6X46q$$3`+X`=EwDH9ST9HGHn&3k{n!Y|(hX1A8?*
zt>GCBFKBpC!&VL3G(5|`reV8=MadgC)Scdu)b~^Y)h@d<9vup2-OsaKlKAdfDt>mB
z>`p!z;O9$8_~pc3nI+F;$t#+=$+(A1-ZW(3H4U$8cwfT@8s5<GriOPlyr<zUb`uSs
zwa7o1CHs=>?~o@OhwB}+lwe@gzghc<?WUZwS;7g@=Qq`=`9lpKX*l**`ezzG*6@i2
zdri*JI=P=}Sd*Qdk*!doV>mBc=9kgF)bJJMkA@Q(zSeL+!*?3KCk-`xqv4Q-Z#8bx
z3OSs)I%msaMwZV%qG5ct-2J6u#oE**$jbgf!%>#2;W+zIBb~=9`;)TTyk$|0b3<n1
z_4uTQpEO=W!8r}5G@RD(vxYMocavoHi#8uzqma+d5n8mHy)B;oko}8>^BOK__?2=v
zM@ek9I3G);-#tfu)3|Dui<F`o*!oLy<nbI~;4clAG&nk39hWs+q3G6?M&?xwe{1+x
z!%Yp>*mfHJ(QqRn><3Te?8y<%f*z}&pUx5F%7cDB$I~=k^VN}|gSz(|Vrt|{zg(G@
zD}0@^fQ~F3x(-7}wvHSfxjHl*!Dni&SSD~9G*A@VS;He+lFp_MONXta{Pwgba)rtX
zjAVkkKUqxR>F{-w(!q<xfsRmz=qRKk(h=)O=_sg!>G_rfv%H)u4CLt?e`U>~IA2#|
z&6l~VWee-LMMp6m#R;KOP7xivKvYtbqDdM@Q)w=KnN>ok)RL=5-4`<QOX|G6lHW>`
zGCIoYsH~%kj&j6PM@1c#baltP0tq-rnaoO0c4qF-6zA}hTv1g=H668d)YdVnQTFkY
zA<0->M-3e{lR}$~u<3ZQbd4so=uT@Yb#&BCeo+&W_%zVbP{$%2_vmQE;&cqsF<3_v
z9Zhv~*3m^rGab!!wARr^$4lS(Ep)Wh(Mrd&<=y=c*ik8^d%RbZ%bK*+(N0Hu9UXKO
z&5xOQ$2q-*E}e9tk}!+wsH2mPe_E-|LK1b=(M?Bh9es3k*U>{qPaVAy^!R+n-MVbm
zg~`qgP-he5uD&|@>DaX?ePEJ?hL8H|FdxgIEs+5_-qEGyT^9ACNrWLfhLR>aChHi+
z#5%_47^`ErjuARW=@_kJq>k@&AwRPSwhN13m?H6LS}w)rI3444OwchgDeJN>%Zhrr
zhE#pT$|{q~XZ!r|_7okr>6oiyo{p(Hrs<fY<Mt%|^u(W;_%n2rF;wf%(lMKKHq@xG
zaE{9WH+Wh4D|;-C&hvFF&~cZJyLBwo!4=d07<kmaBLVWC35Yv&(DhBA)xMC&lQo+C
zr@vUoz0AT!(Xm9weLB|YcwEQ*Iv&umQpdwOmg-oh<3SzENwivuq~FwcCK<wY2O+G`
zl~jKyDT}`rwab1)$0{AGbv%|tKB|Le-Z@vN<7<`o7;?uCifC&MS*v56j;C~N((wd^
zzm6vvW2bFMG9FK`-AKNAD*rh{mc8y00*w`K*0Dv$HXYk_Jgwsy9e*S#w<ft*1c8@0
zraB$nf1g~v?j!@~*r%Es&*^wx$7?!X*Rh*ji9Jrot2$mJqv~p@`wDx#sVM()0`tzq
zJ}0-D_vK}jH)StLQCw%T4S%Y&-WxjJ)bW;%x7qYXvKh~9%z>u-x0yN9l%=M;tK&T#
zpXvBq$9^5}v!+MWKGpGojt_Nw`HcO8DIYQZQr5>hK1m8?cuRuAzQoV6q_8DlFtLuW
zbsW&~6?>~Cg(i8UEH&JBwq$h`y<~%sGXzTGLpr`CcNv&w;INJ(6jKJ-iL8t7DfbL$
z27b_Sl=4=`6&=TP9M|!yj^A|rsN;l=(>i{pM5^YT)Uor7c1p)jIxbone1Mg;e!GFv
zwmPHZEO{>@_bp4#>G*~6O~=c9ojWW=y?3|ethD4p60_A3#$VL&yN<tfTq6E0v;WZX
zCuMS5`<Nw}wzRNSu0xM{qh~2LtG_zus*b-Y&kbZ4xTfPeg@BG534KoetFARov}KVk
z|B{Doxk<5RWUsR2<Qy-}z!!78cWlWtlv;nbfgD414K_*v1N5^D^le~MDT4k(vn{>|
zkoBl@$QIpzVW6OaJOicy%YbhnFkl<#Z)CLDoaq^G3{-T4<DF}Oes@Qq?H6!D1CfE)
zK+3>)M~R3#9l7VL_(?~)|E=WMTR%Ga2E;&71H}v!GEmsSEe47hc*~Jvj->yqJLken
zjv7z*?QvIVxy22XFi_G!DFeB#Do9+Z<_fQt@U`XVUe9A)${HwVpre6K2Fe?#V4$Hv
zae;~kDjBG0pq7Ek2C5jSYLG-|?+VSEPj(fHQrK2EFr%KjUQ~lXAT$m`wS?LR>KLeN
zpq@cRCN=6UbLISG`&n1&8#q%wmj;3w7~l>1PhFwk*gz8ltqrs>(9}RP1I-PzNJyRY
zWF8Z<Ecz{z7@CdE+?3PG0R6G|`fUxgBUT1F80xn5#TxoAu5bgv^yG)c(o1PiIveO>
zU@)^A=xU&wf!+rC80c=Ghk={3l-fC6Gf(b%B&VkV`n?P_$oBT6uYrCB1{fG<V5%qm
z4K*j{Ss^zqnP8BCwVu4;$==ac^@pri-%cNDV3>iC21XHrf#C*5B%ql1TTi$d&eoyh
z=V$|C3`{aGIZ06c$+WQs#<BGcy!)g#!N5cV|9HYM6Gy)Ey6DlLlCUDV@m62>?Bi{0
z6kpo;GMx=!;B5o@49qkz%fRErjXY*xj)BDn?lo|`fw>0$XW&i)^9;;4u+YFAOyJ7`
z1Ep_w-}Ys#ulVF=U#Rc;%s)0Y`R_7tw}C|l?jf}1xtz9T1j3gT>ebUL2hy^j-6xPG
z2JSQPkb#v3?l<s&fn^3BG_aJ-dLWC;M$OEc8&s|NGUIXsjF}n8k)^>31N0gHutD`d
zJZ4~xfmP&zJ~oe*b_DXMfz=6p)&xSwqvV5uTnQACQ7G#SJYnE@1G^2ZH?YCLHUrxY
zY&7tsfh`7}CjXzepJMztyXDjNCIg$vEul;}?hFa#>PD;oPX%WZPAJb9_{GlOn)n31
z!@#o!b{g2lK&XnN<GI^&1}=s|{O>%W1o-5yvtBUpBAMC1Yh=Rp=`R_0*}yC0<dr!k
zi#t{%{Vv&ee3P}uz^h3`Dnts}>jvI1@FqL2p{)IUFfnc&$-Iobp;`LWNNSeKe?F3T
z$O#6H8~D+{dj|F!_{zZ72HrRD0lD44rv^SGr|ro9$iT;B)Jyh(NT{Q@JurCQM~jP}
z8Tg#i%)pmP(X<^(3IAuLL_}^Zba}BHFmRBqK=E$i8v}<7d`q#PfF+(Bl=-MD18rlW
zigkF}{GP(!z)=IoI4G3Yhs46&MJAw|9t#(1YhyWK;G}`y4GypPi4`<(*1$Ofr;{Rn
zrVvQ**)!ixubbOGGxb6&6y3iVIB(!LQkXT3<pSklO3~_CN#|F}@RH8uSbg$}D_2rn
zF#c)aF9X-vO$=NzaM{4$OlDxoK%2_{)l+gMDdj2!_$eiYsPWP&CDhOFpOPB}{xy(p
zBEtkXOl}&eUyjd`N}5S4Lu$cA|7Oc<&NDZqggjipM3#yBY}{`n+eD6uE*834$Tgvv
zc*4Yb6FLunP4qC)(}ZclGEvh+EtB&BI3|jjC~m?v;hD%cAtrnifr-dO%mkIQUr9-5
z;@Y$Bh#!?~Ve6z!bZ_k*Nl8Hyc_!wI8a?S4padvnqKJv2CJLKMSlu??y2Zq!^DPGc
zIAC2%2{}JiP)e96X`-TuN+wE~C~cyQiLxeWgtkRNp(#9?`YC5BwRQq|ylifH6BSH+
z_>fY);64N8d1WI1L1uLmHB3}7QPsqtf~p~ypqi=HVobArinXS^PQF@LP->f~W1@wL
zmL}?&sAr;)iN+>=KagJEL<18IO+505ovG`Es(BUn=FOPs@$uFsreeQlCYqaQYN`#Z
z9e?O|U5{}ks&h5{?RV@|1*MgV)+Rcc=xm~miMA%%nP_j~c-1iTwBpi?hPhir3CxOR
z^$sRFCY0%3Pj%HUCc2vFMw0#)`IYfPK_N$-E+|f(l*yB~{?&S!=xt)IiFqdanCNR_
zf{BSH`kCl&VmPrfF@RMzd3ypwS*bi3_FCQ`6TE=XHBSbcSeU0MLpRLCTmOa09(h8?
z$dM*SnHXbYtclSk4j*v2q&m64Ihy>vo+snTE%_?t_ykF^F~gHgOg1sq#55CA$Y8s2
zZX=i8n#QM!w^hid<HNYqlk_u8%rwCl0Uq0H*UFb!CTMMY4r{&6nw|LF^X2v=<*1~T
z`6d>aSZZP!F*k9CiA5&vF{v$sJ5AhW;%*af4^3kSr-hce`LaIAMU-C3m&GRTHF3X*
z2TWYbm*uDQC8oM4x~hVGp9%U*#)WekQJV?88~dP%<t83x)0<df;vo|&O?Byve_74c
z>v{jA=k{$Gj_H)Uifn9RjfuxitY-U)(2VCek;m9&XiO=2D(mYd`oN<({=L>(6YG*1
zJt&H98%%68@i+UCi6>1wW#WAkADGx=VzWuJQP^u@i;1UA>@e}HiDyh~HL;yQ?6l1y
zv-JG8M7EjuDuMR12w#ZaX=0a&mrT5D;yDw~C&d*gB)iD~C30Rc@giw>Fs3#pcfoj;
zL|39z_A4e%{$qc0Du=J@mM<iGOwg}+!g`Hek5o0Wj~(G+<{Kv7B&$$#jIb|s&F;I{
zx%EZ6OCgz5NZv8=u8H?d?58{_tp8`u=+#@(mKKsv4_GaGXxj?OhbBH^i<>xV;$st^
zm^jFOWa3j3pPBgF#1{#+Zx)iXg%o|l!t$kwuT8ZDU9qryMafWDniZA<1Ts8D$25mb
zd~4!66W>!@l*~TNUQk%&?O9lkP`D*w|Dd&PioLk7yi{0@u>+boZ{h;MnmA$Nl!?<U
zrBm*2h1F#2q=}yrG`w3BoS)gVZjo~)_+aiC6K73KO5*v80UG4_g&df~{A%Jia+itA
zWOxb?HrXvgEs;M={AuE^1m=O4)u#Hg!&%(8=v+tb)^g_X*fjSFxr<GZz$tw=t=$Rz
zx`}@%3@wzhaKpsE>}wVr3pY)qQIcEGETmh=u#jyb$3musE*0(N4_O5)bwBy$Es`oC
z^s_7_Z>tnhb)iLW`sXX?-3#ct1;c`A!Lm@Tadx*NLSrvj?;dQD&k^L-BC@E6xE4GM
z`P~1t;9CeRL>6L;mao(@e@}NWOn@&j(zxDFStv+X)7zPp#e(uIJovHFX(?o(u!UPJ
z6d|^+=It*c-xral7qYGuk)oD5Zz`6+k)l%ELJ12?>*UudDxABvFDj)il(EpzLL&=h
zEtIoR+d>@+<t<dOP{ZQd5EU&{vM{r#RI}8Kx3YyQ7OE1@=j?^=TV5$eXF3L|Ck1Ue
zX4P-&)k?zKipsvCviWG*mZNEPE!4A6-$H}r*YX<K-OJ=ZG{reyR5FVx0v0YNjV&~>
z(Aq*93r#IFv(VB)D+|q&EKF0on6w~-j1(O|m)v1pd@-cZXm-hJYoVQm4i-8liQ8Ma
zub6C2Aa^b%o&FEP$3JMDEoF9qbva#3x>@LM;j)D*7J69dY2hggn=JIQ(A&ZcR@_1#
z3w<q&v@ps-KMVaW47D)K!T<{cEey6W#KOPDgpjEUGRVSz^(A^Aa|5@ybSN&jS{QC&
z1RLnyG(Mm<r?^lpgyvOQ@rR4cXbUvbGs(ha3u7&evoOKJL<{3BY$-0R-S*nyJ_4Zz
zMREC|xL*IHc5#|D#lmeCrdpVmRBb~Uy+8>`m5}KcDwmMAn&plvA$*#rO$nK0VYY?)
zEj(ahj)mJT{LjLj7Uo)*XJNjD1s3?^)BAy9;02}ig%+OvTYI{MbZwD)M*{rr5~}pO
zn9RZw64t_7f9LVi#3Bp#SXi8-;qK_Y7CuT+Qq=Qvamo&x<kFA@^Decp%)+A<R+Dcn
zEVr=I!o!w2kN$g{w<3Y?5J_E4O(1_NA&(HN(|TG-;pYFL@!qN=0RxX&SYu(Mg(odM
zPO4tdUuWS73u_ZsvZTV3ZavdX&e>pLR&Sl=FM1!0sb(;wq_6|>X=WzaOxjxb+QI==
z*1|IuUbpaug{>C0S$NsPD;Bm}*g>AR@O)Bwp9lPfCFNO*+F96T;k~4+@BgpF-4^~V
zDK92{<OK^yYUGf?UP>~0r4&|sEWB!AuZ7oGVh68?n_Hojy!Wtmxt@OJg1&l|*Q1oY
zNy3tb7CyG{wuOBxg&mDtQA*yiz}-c{dG|kBB{1K&u&0#V;-+!e`U49eCclo9k`L~&
z{wyU=3`zTh6t?gg{jzS8X4$!=<#S3fH~%XOUs(8(U9z;=Ip^$-e#g=Z&x01ev2c>b
zSvX|jTMIu}IBMZAD`nw(3%`t0JE-4Tp!xx)d7DpVjVvv9mX<Z8<(P%z7JjsFBEe*L
zY5AzMoGUGSfGmwXu|YNNDGR49{A%Gh3qP}qZAv>s3ssgn5~X_cIl^bH$605dwa+I&
zE|4oa=h9s5!H;tIm~UPgxyZy8{<3h1qN$AhVWCACIr5M8XOf<e4$~~{mLK&F59Jgp
zX;bz6D#aj$iH+tqu35NFscS=Q{6pbSDQ&~D@h_#ig#tEcqk%}K*+{pMVPjkwMUz@H
zJigGEY4a9XHg#{1q+uZ2Mve`g@ixv(@RpSknmo<5@k|-f5}$ehEu+pCc06RoWyQAP
z*obVzHe4H?4c|s!W4NnV`jby}dsWLy^Rm*vtb{glH!AJoYmcSvdseLiQZ@?OYG-3+
zS;<QfxUa0jt&okvHY(VtXyX<eMQoI`Y3%?-Z4|R<_6H?wZV~5wy3ya0nY*`4?zXbB
zuDQ-d<p*V@w2d-0j+DzRZ!5j}Z-2JR+Nkt3A56yfMJ^rTpDHVQIjLl$vW+@6>e{Gc
zqpFQ+HmcjGRZjYrlRMYt(5Q6{TN$X_RZeQzsF`3mr<}s@`*Kn{`DCD;jrukk*=U@^
zG+>LAlZGTqGVgWEtMpB5{I5p-(SNMX9qp#9OL=KrUg)>5(UQ4HE*q_Ew6@XBMt2)+
zY_zq}$wp@z?QFES(ZNPX8*enU`<9oL<)wk?rqZ%kw$Qhh7b+T3bab)N)mDdPB^PJE
z^^?v9;wAkaHhS6^Xk(C#UN(B$=wqX=jbAH!+-o8Oyk1^-kNA9f=|?)3()-&OKqjf6
zaHh|PzX#hGVq>U{VQh;E^2fToW)-B`ab;QVlP<aaDhQcmgpH9lX4#l+W0Z~2HYVGc
zVq=Vru{I{!m}KLz3Np^d1RGyfknstjc#igB1^K&zl&mOSD$1OSGAU4JaJSi*YGay>
z=}9s+>;9q+r=42gSlyzsak!>V%T6<GtgR>v%&~Dh$!p_I8*|ARHs;${z}DR3d{R-u
zC)^Vi<z_|Uwfco5Y$f5A>>W0RlB(lfHtx2u$i_WHyOQud)?l4WyF&{Z-kbGAC0T6a
zUK>knHBaE&fZ7+Fl09H!sf`aDeCW_(5*{R{IjHGixs4Szj@$T=Y-3}kjW=14jfZVK
zVq>R`T{c$Pc+|!g8&BI<O|sZ{(#BIZ*4TL5Rx_pbtXER;bvB-0)e>vQES=*!-A9#V
zgN=;|K8GsFxk^HOm}?XJNM)&4SvW3iW*4q3ybbh>jjd#Ro14JcM%Jn<AKcJ+jfK!S
z$sAc(npO3lCB-VsipsLHvOH(wc^i9dylP{&jTdaZXyYXt?^l-Nm4ys*v$EPctI;F>
z<pjf55}yMWX|>nJYc^gdizbm=8t@#Xd==?iMVic4oqa+TdE3T58{gPCWaAwh@3QaP
z_|(RGtT^du<3qZZ`OB-wD^=uu8^2Uhtw28chza~`GW^F0aHFb<|IEhcHV)W0XyXeT
zU)uPZ>{nIFR+X>FkOvemF-$+-S8L>fWpe+Qe6Fi1-;#@Ld~f3iX4#Q{#Kw1tWBAd{
zIrO;&arFNpk0oiixx`40DJN{4q=a-}IQYrNDI34r_`}9&8$T0g8|NuGZDqvotc`Od
zU{!gt1h-Y?Tvg$aomWk&P=}L!kVqED*gVp%P|mJZO@6a+F{xeWY6|B+ZTw{;%|W_@
zOExZ3s@S-mB)Gy}JklYaS8e=lqjnj!8s*!XY5OhCJ^rEOCnitj+(;6SNTAKFCO4B$
z1~MFEI>>U6?I`>I+&tV+O=!etZ#604;FD@{rJC^CRE~qz<AWL1CD(!GK(8((t4ovW
z(!aWx4lD;H9h7olJ8&Gt4pI(W2c84pLEtC@KCAA`C39}9E^kzq@9SiT4(5-rBS*~v
zXuErQo1B6U@*LdapooKf2i%Sm2R~GoCC6#_P%Gr1umc8IJDzY+_o=7@-uUARsJMe-
z4hoJ-Bb=7?3zl%y0C%IhqFZSPWgJv;P}xCQho&b`!QrU{)>rb1)sSu_yz&l~9#+Hs
zkQyreq{Oe{psIsv4yrp?mBjE_nKx?4f6p0^_n5MlgW3-6a&WhUIu7bO=<i^FgL)3?
zJLu@3lY<5h8aim{pp}D04jMaX=AgNQCJw%-AvMdXJ7`T4Y=2KmX_15*5Ao_wv~p`I
zd|Eqb<Dk8R4i4Uk?Y1O!`H-ECeYPFzQd0<l$y(JE&c}w<l+F&iIOyr1mxHbjx;g0X
zpofFgf4Lc^G8}YoP1#mcUiw9yv+zP|ZwGxG^mWkB!RL>AKhzZZ7i&u4TEd-{7PW+v
znt=`mIhf{Px`V+EhBz4MV3dQQ4u(10qfpf5WO!%s?76k%RtLiqx2~3IxJgUx-L+)2
zgE0;!IGE^w{cbF2Yh;geK<g;XyJUeo-obmd<ZLaO<Y2Ocsbr_xs`^tL+?F`DcusA(
zX4zNH+3)Pgp;pEW2QwYaBNsWC<zTkMV|?81a88@ss<v=5vue}aTWia*+QL_g=CVa*
zTbq}qFL1Ds-00wc4pxrvI8R_}?oP_OGpWec+VXz#xyZpi4z>}XgT)T+b+E?4;|`WM
zxX-}~2M;;8-@yaqABuf4d>w`Gs@&|a&Z_zOgO0lG$iVUhY-*_@_(}&4J9valMa=66
zr$d|Ts153h_q%)Q$mezBQ3tCXJeJUBN%dSh=347uor5PGJmugCvaW*-4mKuWf3G7(
zT`68y>eQ95M!G%g%8a_Q$-!oJ4F_8t@F;u>i>oVp>&n=k`A<7IaU_d@<8@_!no%^(
zo1M~kuv<CU<KR^XJ4r@go_Da@!7c~SIiR8)ap2As1@8+EUUcvhBiVK<oa=SPtS4_3
zR14%+5`12{q7Im@KajT9!D|lQX76_JI$77jn+^}}P_3Tu+-l4ftyMi4R!>oEZ9U<c
z;5!c9b?|;t`io(9g)ZL3+Rl3p_7jIB8GW_p%5*+*@G<$&#Sj;tIQY~-=pu6Q85!8Y
zZw@Xx_`<=LlxD1~gRdNX?clJ3BMuHYILNN&;CN;(t7$zGQ*EjHLhDcx^Q{BA&y(W5
zbMU=`V~nQ=O8yen@fGx=6ejQ6r|Jp)ocdC+zFGznv6B@34$e9_=in5(n}g4WtA+5-
z4$hGI>&wFW(!9Q^Z|}ta#ld+87uZ0K(kml*-NnlI9(P3fO!LzE@@jqg-N7Fe&aSeg
z_NRlt99(zs59Pmu%MPwMxJvn)KqJ@^CoPKZzsV|1lt4&pAlE1~8pzxRa>K#D4sJR~
zbHV#W_7(e&qI#zrS@nL%Nq2FifuNyexY*x7=$N;Fi!2wW3(G~eiyRla3&TaRhLY<l
z%WwS~isq_b-?*VHxIKSbL)qIn_mA546JfUP!g1lc@Lced$WUWy#EX{iVs%5gzjiK-
zDhEm4?G05~v5S<8MlKq=DCi>3ML8GcUF5qE7sXwaa8bxbVHZV-fXj=nTnys9hSI)9
zevt$Y=bW3z*tBU+<AlW;NsUHQ(nTp3rCpS9F`!-c!Y1K}M#8&YWnIi_Buu%pkt}T_
ze7~TAi;6C4x~S!%l8eeNs<^1?D#Odqp43Pm-hJkJha*ch7eyN7R(DZ@T=#Vr2iBJg
z<kGM0qK=COE*d7t>~AD>UDR_?Klz+}O^wArHc~bHr;!>)OEs2fcUetbG<DJ4MGqIv
zTr_vl+C>`|EnKv8(aHts$tOOWG?p`8>T?=Pi@EtK#zi|99bI&Cc{YvBjpf_M@@r#x
zwXt+?L7$~`cF~2+*F?0I&dFrEqpOQ<E*`j`<PRMKJzex7Wn5%#PwVZXkBfdT`nxpK
z<n(pH=cPDIZ%I?ys`am`EVLR_t_c^>7(|>~r1)8FOHPX>GStN|7f-u*hLv@>#KQs?
z3tfzGG1A3tE~dIl4|9}@u`b4ub6kvJ<8DtI+eGGH)v4by-o*qL6J6f@S0e%y!q+#E
zADakY1)WT+CR=_}nUYZQ(VrCl(_Bn<G26u)7c*Q?%WEdvlrX6=o-R}gpdRC<`&=G-
z-R@$pi+L{Qv-|W*pOxX3ZYr!r<(FNi?A%n*>JAtGbFsq3LoV)gahHoFF79)2w~Iwd
zq4&DDhjmO6FE8n_yDd)Qmo=5z6I{mMPr|xb>S7sD^5w~<@^(}Cv8imYn*X4SY0dQM
zlkDY5mMcw#T6Qa4JnV9p6dPPT;$oGHH7*_}m7dL^HHk;rc13enyLgNO?O$!ljVwB9
zm#uYC;gn8YrVh<y9lI4-u9?C=H$#n{8_9bYGoN(vR8r7w&18Mod=9ewwTVpPVhgL*
zOfK|w*Ce^Ny4dF8YZnJxY<IE4#hWhPa`CK-oi6r}kzDL@xxm2-E?y+dRds0V>78cs
zJViv9yF2j-{75r-$;HM)+RGFX&1KXs>y-q7QWw?idasMuT)gh$4Z<vD^Ev}<<B&w$
zKit#bq0FRgeA~r77azL#$i+J@-gWW5ix1elU67JYK%b!YvpXbup>><9$dNm82<KyV
zLl>XB_`=1f6#gy-H<#JXCF32nxG4CK;+B(5T}ssL^PMkUtZOb`B|hU1y7<P$&o0im
zIOO767sp&2cX61)(8Uifj=D;Jb=ifi?_7M@T)t20b*i~S=JV&Q0xd*Z$gQoie{^xe
z#Yq=Gxv1VkTDQ!7b%sqt6BMoeTF5CfKnpodrfQ)&KK-*U&bj!5!ra9#F3!8S=;HST
z_-+EEkx3W7y7(=L`MQPB8I{$wh@~Yw+D+ZPF#gNMB^Q@nTyatRSNlqmOK&OX3*~Zl
zL<pr?$~70)S(lPHQWF2TxWU%U$8-7k*Tqe?dxQfK(mbSl=pCR>fD8|r9?JMA>nnSm
z1w5*GV4a6757{2Ndg$gM$3w1%N**eE&^+iK#6uwuh6mF_>>=gB@?d-LJp>*Wv{hq}
z<Dq^_aXok*y0nyuEft3MC;kVH&FMtwVQWi?Jbar(7WAkgnVIJy-$Tz|w5(QAy_MQo
z;<muFR(x>?w|FS-p@fGb9*TPS-`ezIo?0ff&CwrjCGA#OFSimZtC#dp%0pQX<ve`#
zxBbEnyR?V$=i@S-I>7z3m7HiL<vsk}N`|F56+AUkbGlfxwNzv+PFW08@lch>cxd9G
znuqEh>UgN@p@xT=9%^~0?I~psj{Bcy*wnRSy{-<;XZX2aa_X_x9vXOP=%HC_?#G5q
zNv>dGCTrxOZ)<t#YzAFZCh*YSLkA|lnAzMzD}wcKduwUop{1ur*aupxTy0o!+kNB(
ztDUDT@U->7M_3fJU$V|lN$cpLlZVbEvWJbWg^xy6E~N8xk5}H9=I3-J3c7pfLC7BF
zlC~atc^KtkG<m>79}j~)3?X73`jJE)26=d;we<IRyGlN6P5sim0W3mSn{_<IWJQj*
zmP2K-hk6)BBs~oG@DK4!cZ#-Ar-~yI%v-gQ;caB3r>=8WYUgpR9OGfEN6jKk^DxfC
zcn_02OlDo$2zS~iczAlAHPHhNQPTD@{VC+DwCr|I=DgZQ9%&=DC14qt?qP<9nI2|&
z_^yrYy3Zn$P#TZFp=9!GV%1dUB#AG#QPi8~VZMju9#)VuJuLKauZJZb?jQ?!xSK4*
zCVSl}`;~iVlIt!q`3;MXc^_(&eUAsXt%9@I<9kLK9~V_;?n6$e-{)behh-k_PjXdj
zD-V!c+RA-H@+;@rWzXa^c+Y;2obaB_LGU3DD?P08@TiA}$&K679!dPSzsllY?zz$D
za7=%-hsTI*t?b~LoHZVez^AA!`8Z>W>mQo-6CTa-;AanKJZxZddwA2sTOOYD@RWz=
zJUpKuvx&s?@QjDe9=5RCu2eYFdd7sdvem;j56`myj!65kt(v~lZTGN)tzSXhc0zwA
z`M;g)N<g)4r|Q1j!wVkvczD&riymG|e!W6^wv!d@<YhMN_c_leDVg}2cCy#QYaU+r
z@P>zs_L6EZuYd9Xbxk=oan@a{y}a#VpN9h;4tjXU!@C|n^6)Vk#>0LO?|b+lDW!jV
zg}{RLvbw!|=z%XYe%)SnC6S+a_|(G}9=>ERrpQW0z0XO6MQUUmH&`u9zVdLrz0knX
zxQ{H}asJvvl@8LjgM8!RkcXolj#2)2IPBqj4?iR&uFABJkV>`n@Azq}XN%c|$9E7u
zF}b9J<doHqd-&1ADG#S91AostLDAPt|H;G2B>R>Q3gHhDpMet{<jI-dJli?z;T&bD
zk6a(WcsNhQ*l|2u@bIgLzdT$@vj67cqKDr}w~kV(qx?ZB;X0fhHSQ>XQU-30>29;^
z%O0*!h<UiiazC=KQZii2yrZM=@VEHkv`0Fs)pxTvyX9s3hKGMC@O@<XxJfF7nQ6Xa
zuyyZPXJ^=7bQHyV6#l-_{LJ=IAo&}2Qt`w;%g3J`RgF5{u$Vyeq5Ft@#6AokrcYgM
zI6kZ-d!bJ=nTAfSXnc4+0v{o(TvBb9(fK~cAJ2O8Le7OI7Wcp#cTy@7DIW!W+~T8%
zk31jwOtT`ru#fwmi^WIvyzG9Rq>!)VAstQXee_&Rg^;2?iuow%qm+*`jq+!7lKX~w
z#gk+u65sLd(mra;@t*1=dpjw{X7+ME%KLc5#~vRQd{p!?*2g#>m3&n8(cVV~A60x*
z^-<49eV;mqsP1ES@!Z-3<%3hcnm%gz_^Oj!=%lpcHvg^{tff1hrH+rfJ}7=!O8Fx>
zRXa-q9}Ru9@X^voBOi@@H1pBi2PafxJ4@!yxQUOuI!jX@YcA!SdEWabNAc~`ou$IB
zRx2N^eYEk>*2gEeS?_k18o%g&*UZ(rNN-We+HuIvR_DAOeRT5C-^TzSoqcri(c4EK
zA6<QP^U>W$4<8$;Yr%8;E<)w2F<lfL7Iu-IK6)jDT9w2wvagSR|3~MZ8&!v`cS9fO
zV-O>K4EHhE#}FSweGE&I@u?=Jx&MmNN7|JD`Lc_Q@G;Wo1Cbcx<9rw4Q^=!|#5Byv
zWM)?>+*Rro%-;C3J>JIzAIp3^=wqUfNj~QJnD1k<k10N8`k3Y8)j!j3^D))OG+*s)
zQpIBV!c@JkGTjFix@Pzo*i~kA75cM%PQr1!kGVeH47C@k+aLd-U2JC4a>7GhWpvYg
z?vgF=vCzl8K9=~n!^i)8+~Z?0TVzAdwyts~o5RQ5J~d>pD8YGm1*h7<cwbjVF}51j
zi5bwk$$jJm9}oCg$~rF1pF7#R_k=}_puNYf(%po%v+8w|<vv#Uc-qG^J|6P1(#K<L
zXde$JkRSE2n#h;QeZ<G~Zn7$gWPtGR?<QNj$xq$naUW}mjE^VSJ-bWw<Ows{c3bab
zgO4YDJeB0y$ojVb|C+sZy33{{a<h*uWQOiCw!4D4sJqZHu+_&lAJ6;P?PEI$yE*+?
zA3NE3iC%ZPYfGj#IAd1=fs2tpy32F?)m`4{E=Rh{3qD@-@sf|1eH87X<RJla!r!!q
z^y?vOddQw0@~V%$?C$}z0I&IY-N$hsKl*rsNc#BH$7ep?@@a0Jd-!<Y$37qL_;}aH
zdr6_ZAwtX5wC{AFhdRr+)<dd{wLb9ip^uMze4M2DOKgs1sh(=VRqjf`Ws?61JMYtK
z=Kr~mFMNFC<B*Rp*-3pI@Nv+`)(@>NJ!NE1`P#>Vo{A2%v+>}U;gD>*@KpO-ABTM$
z@$sFH%{}GyGdTx(%H^IC^pdi@<a-}K_&7?m$Jzsi*vEXV`YMZI0-@Q!6FyG*xa8xq
zkDq*;@^Oyh-N$JkKT|IGILp#c<#3ytKC{pt+e;xpb~^9lf{$N){N`g(FInG9Uh5@a
z^pexP<f4y1DBpU^+EJOm`?%3dY7R^N>Ekc5P|KY9y@ifIuK2j>BP~FBfWLiQ^YJf*
zJW0CMURhed?&BZkWk2dId{mU_=@@>vxAfnVL)+auws{!=G6Q9uzd(RDddt4Y)x%6b
z^_Hvvzq}i#^${+;vjgM==zmIO=dCXKdH^Fp%>cCmm;tN+B?FWSU<Ysl<Oh%dZU8Sp
z7$6GZ2k1A(<B%EzN{kojBjXc|rZ_+<z@R?z*(LMHn|8qfc}W6>nXFwORmVaB3I`|_
zpm>0>ePqBT?Un#V0(}3RYVo2;`t?al68Uf+DM1|eI5f=2zoi3|2~aUWr2u6EH8U(9
zpaKDAJLLj!bBw!WloE{pwU1~G@+$|Z5}<m38Ud)ETs1(^zS6F*<n)zl0cbRg7CX89
z&M|BHEO%R-+}Z)^1ZWkYb%447>IG;LplN{m0U88o6rgc{>3yYP0G<_Y@2jfwa9{bn
zue^LVtH7NB3DPV;^8hUZv<z^rukaj)Ml3tjP>XIVHdD|sOPc^~19T41B|y6X?E`cS
z&?&%?T<>OI=|BqilN$Y0%Ax&)Tjh)TsdIs@0lEd~9-v2nwf*F?e)4;gh7Wf4WQ+Hg
zy#CTFq24E^+Nti#HVSAr81qB)4=^CWg#f<>7{~?+@N|G@0t^l?B*47^mXJQACu<jA
z27v?^9$->{$pJ<L7#Uz(fbjuF1=u-DHRb34FCWV|{e9XPHX;etUtvp^`Xs0ST5Cdr
zM(AhH8R$+7K%c*+1h_50)Bw{0oIYt?%Ce9BtOgpsbhG=4-8F$QGr+6>3j!<*Fq;{P
ze}MS`%^}L|Z1-QXcJ-IF{bg=|YCV*&I-Oy^-(R@>d!fJF5#WCT?hJ5OfYJjLeVCxp
z0J)o09w2-y;~omJZO)>^=eTp%09l;i$-sR9?ho*2fYkvW2(UE3iU1D<SQg;H0LznP
zy`~wD50DZKs8N<l&g2a~!si5OWq^kRJk}}qr2#7DkpSNfkX4D#&&L9+39vE1lK~!Q
z!v$Cu;E4cSNTv^zVguFD#`*wzHe2Jrh&Qmr)^@#t!kHCkYflB(6wuNdwy@m?D&S-%
z^20p?g%(lxxo)6r4X`c12LV0|usy&If(r0zfM?lK0bU63Vt`!%o?|cmHGOx0eFKGC
zH_tOyZT+VNCNHc0Jy2ds>iBYiR|4pR<d#9wc#xXQ(QzksFNHtz26!jH>l7^H{{U|X
zc#}j+%jT#zd5}Vn=Hlr;H%Rsm62gBsz<UAq2Y5d~)?fv#>|pt{c{U$dVX_8yd$m?t
z9|icBeLuht0X_-vX@IW-90>4PfX@Sb8Q`k`Uj(@LyuG1^zWCRIJSn4EZ?IoUtq;?)
z+Ygq50lo=vD8RRr0NoYjM_$dLx&CiIu?~}O2g{Pda)iynCjK#p2k8B>Gy*vq;8=iD
zWW@k~-l885@MC}z2@y68mXl1MoxRuBN${VN$TtV83jQ463<YU`^8wBhG1vR7k7v{g
z*S?W{E=k5+CT<uWA1oN6(*H)xDLO(l4Dow_KPVnU6b$iafWIiHL-mHrr2v-$To3S1
zfGYv6Qt}75mOxv7KBq(ir{*Me-d%f$ELyDH2=H%!n*q{7B@(|at5>_0*MEo<UTmd@
zpusdo&KM#YAvO&W1`32+Bftt_hsX}`Se&Va&_m>ecy);6CP2PUN;x+~j1V6$wb)W-
z5`QC!cS5)!{18EiGDB6psD0;!*mtWcD-6{HxP1~Ig@{9RF!OoSijIN25cwf0gs2!o
zLKF&7JVc2Qg+tsDqDY9MA*TPA_c!h0?)b=1xjIx@pUEl~Dy;x#m@2Mhh_WHdg(wxG
z@-Qh)G(xl=Cc_dpJ4v&2n3QLglkm$`^h!(_qDF|CA*zI^8lqZ=>cn}N92+JS#n*?)
z=CfM0TZNmMR2QigqIQUSA<|Z>VW>`0{i42IH$>lCWzns&`&Ow>{8#7izg3~sC`4n*
z)er+hGzrl(MCTA)LNp7}JVcuiZ9_a+C$mL}mLXat&<@`!RjczbRa%ptCshBfz9q9A
zD-xn(h)(2?qXlW=e$#U~9YQ?#y)ygBv5719Lc^ujRl945ZXtSx=oO-Sh|ex6JbSQ$
z!xcVs!-h-m5PgVnh<+g+8ZP^W3m=KNcB@T|+`QLR*Z5|*3=A<S#JCXSLktcvB*e%N
zqe2V~F)YOJ5F<idA1?j~DLT)-mDL%c;M3d+HNyvwkb6eR=n!K<j7=)Fc7(h%LJp0P
z%Og|==Z%{QAtr{H8e&?ANg*bOm_iOA`;C<5BW21+SvOL?7%7EE=l?NMPQGnT4>2Re
z>=1JjfHOnX8l|MitmM-erAog&#IgNOw^1^7l>Al1o16S%U_pq5Y}^RdBHR(;e<8jJ
zaVW%{A?^yXBjg1r+#O<3h*cpT4RKG1#UYlFydmxlu_VNOA?^>6$7dH#=9lbaZy6;I
zunWv|KN}@yMhVxdOUW2l)n3{15GzR45GzBZkEV`RF0W<L1_d?GA7<_H)m@uM*xdCC
zmK-fZ!|c`UYauq04MMC5@p#A+G&F3jT5T;Ect{!_ENC;D7r4}_fr0gGyT{{!qh$kQ
zMypysMSc#kImDI_vqsB<qvhDCtk*`%(;*Iymit;bTSNRYTAm3Jw#=pa=(Z5sS;`}d
zwdj{Vo3k^-t`M(>cq7DfA)XKMa)?(#><;k)OZhDGMfR*Q(r}FIS?AHB>`NiIxlPmM
z0~tg45MpnL*9f*lF1IZ17^ASFzWrNcl-ZUuW8}>cZ;@OfJ_+$QI~V(Gi1#U8#>(Ko
zoWo~w-U;z;i1$M9pr6P6olh!8{UF4LAxe)`&`umv1ljm%`bWfSrE~fY`&06Eh%Z8X
z$$l|bKIdmY89P=Q7WMez+rqK3d8~XD;%gSVP|2SIqy~!~EBDV+pA38(;&6z}NIg$=
zB*b?iehG0t#P=b72yrUJ=@3WBQ6Wx*IGOO$ak9-=(dOjy4%&~zwu;(eqoZMbYO(&5
zq&aZH{yD_$-=&`kaW+(@=coq5G$(%1sQGh_(2k{d-=BUV#IKa_A^r;STgW?i_?^u}
zI**g)<D};}+4-b5Yn-b4{o~}79^R!8mqYv=;u?E*@`fXyx4sg>yO?>ER63i}zlyhM
zoLncV$H~7T{t0m-!RKH{jgC5~H`zuxc3Px-y7VNF5#i`K;b(yeSrNPleuV4@IT4Hq
zW`x{G4If$rJ%T%4ij9{6<Au+%&>GB-Uam#+))5^3N|LcZa!xXJyzo}<YX|K72{EU#
zL4+_u(FnyNL=oZ$w?rrsAr+xg=luK#5}{y(yoeX=v-t!D4QjB&LJ{Z+^W@^?93C2W
zKCMgy7lFQbyqfmx8Lz}h@dza%l#Ng>DZONbQV~igVLoqNCJAg>lRmO>_J7X-pZzDV
ze1wWDH$sKv?~(C}!j+S76{0agt|u|oCJ4jTBh-knB*J|WYDTCPVPJ$o5o$-M6QNy%
z_7Unvs28DGgys?IM`#eCVT4BfJ3&GIxOwib6I$a4G(Oyvkw4`$Ny-|W{9RiolN4(a
zp=E?N5!y!TT!Xn<MYw%}w2rVLNk;#!yKS1Xd1-<inIIh^bd1nFLXQZYB6N<>B|_H-
z1Ip%(uawPpX=2-dPLOU9%B;@etn5Dv9(<6fXM|o6db3$8t9_w95&AM$q#pR|_a6l&
zN`LaeM1^^k#HX$xO`#5sFeJjX2-71BjW8_2xCrB!CBpCsqa%!oFoHNtlqC~oB>yIP
zM=^n|?yam(KF3BlKT(WH@^SJxA;QE6QzG0JVN#@ap7{*@yh+k<l1z@U=B74ilB}L2
zQwgoKP0_bwlEP|6gqf7#5e*SwR)pCR=8#qqO5V^4a*wFE{>~(!&3xM3nj2wWg!vH`
zM6f2y!lZ)dW?2^#IE<+=S?-K*SA@k8?j?JF?X;ULce4p1^^9PpE$R0p__GTC9C2q%
zR;5=TV6T24|NaOMMA#W&SA?YzmPL3X!ukjgMpzzURfI<)tcdVXgq0B<=4V>=>dCTy
zvYeYNk0fYBQ>4Ze`LedsKwBN*u?UYxSj*O&B5NY7em>-OBJXVOIi0>P0u78X*`eX~
z*eME!4G}g*cqYQu2v0_MD#DfsPe<rBBzF@jStfTgrP+Cvh3~%)7@W2)$;BhEHhtr5
z5w=Iz!HyPz7RdKZ5msmBwERz3<a{|rGOFrTD&#&F;rR$}MtCd2?g%eXN<?@)!iy1J
zil`TaS0enDz@*_CR&7s&bsKXyQ3-F8S0n6=ka?S|hnsQSIln+nzuzElG*&gGP6*#9
zc{{?s2p>oIB*Hrp-i`1c2_AvhT^FpgXK%^j5Xr>vCxrTd{q#2V`C){QBK&wX>xI{{
zs5!&!_fI2y7U9bXUq$#lQtOnvlaya18OJ2y^@-2y)B!jc;Tui>3Zi;J9E$KQ&qGs4
zPvJ1hMJ9|fHO6=Br<5TvO2_ztf{~IiMox@l5spXrl@%urBpn+i!r2HXBm6`*L&nb$
zPLV{nN!r@HUv87r2@aqCU+L68KNsN_@_&R25hnke$NkBoQ`Kd8zHLWs6JpqMs$7il
zdxWbI{*LfRgg+zv72(*w8N;S33M`*WiKh%fUy5)!;+;`!PU88Cfol=2lk%~8dGVhJ
zHxdNWWBeQ8CTkii)#bfY<-k<AJXNe|YLksy6CA-aVl>@iUEP;eVwx0Sc$#Fzs8e5^
z<`15x%FT_T#Yn{{7(<U?#PDMHG0YfN3@3&g<HkPQjxp~eHFaE&<f7I+A4z$=wzKA7
zP7ouE(Ykv^9D|lswoj9Hrb!gz{4_~TmuL4`O-^Rz#mJ9wON=718g3*;p%{f@G@33n
z=*pPR)71^W>C>fXjAAiL#3&h~ICB}<!>VR;9yKwU&pa?)%670xs4df_OpLNIy2j`h
zqg;&gF&e~Z7^6ariZQCks1c)5jLI>p#;6vfN{s!}h3rRl<ipcd-8q>Vc-i4GC1yy?
z7`0;5jZu$C&QLSY+fA=FX~nz~)MXP6PxTYzA1|h})@}0?+Kpl~j?s$MkI{tWjnN`T
z%UH21`%aq~(kw>vSUoj6XolQ9Lls)SUiN!cvsc4z!}u5-VswnLxn@qg80kB5c=5S?
zQp&Ics*iU{!k^8MlQX1qj4sLNkF%|<38?NddN3x&@EAQ~^or3x#()^TWAus9H%7l0
z4<uR><g1|>**9mX>(T@}Wpu{C7=vOAjxi(#AJn^kE$h3#vrf$RUOR2q9+}T;ZbM_G
z>oP3ynPo(bkuk={m=I%BjM1^0yN-#~h{oGVocSC%VpDy0Y>aU+-dw9B!+-w77?Wa5
zCK(O&kfkb}3{%tzXUetzsr~I~F{a0OKF01CGh)n)u`0%+F=oY>9pl~@OJdB4aeIva
z#ke!ZT(V+}g)#1k@xdl5UTMvb@$`Gvf`m9#W-228^=Hn1n{5C2cg46T#$uxJZ{FRp
zI*eYFB<?X&M$MGAM{=H=DV&<#7vp~Zjj=qYns?d*F_y+y7UPr4_9rvt=b6F>F}Zud
z%PcEmJQQPPjEC9!<6IgWr#XF=yR>O`YL>c&@JIrmy?AxZwKg`fiDRsZ@pz04F*e3n
z8)IFJCt|FpUpSjbX(SHExZF}6SC`#y=zN2ZdTxaIWQ?cC(#;$`BsB8Z99qcV!urP8
z9%DzWZZ|&@V=GxMDY0BxmF4w9?hi+E_&Ut9F?Pn-Mfs56S!I?Y&hcXUw5=BHsJEUa
zEc%5QFUI&W#)%j&#dtZ!mod#3;FTDAV(g3YPK;M$?2YkSjMvFF36MFngpXgp5#y0r
z@>WtbUw?a(Xv`7@-exl$%Kdnjl%A6RZjAS0d`vR31IBotXrIoiH(MFH{2<1MF+NJT
zs6maKxviZNv*l`QHGBD#z3D>E7v$%5*`LMuoa{YYCe4;*vt{dS`C_)R2laJ~12Mj*
zFpqIC#y2qzCzu>!b!JQSne}sF=i4Nv_8e95Vhx-l90ih?j!DeXBz!E!aZ052*_~gq
zFKkSkK1Wu}5$a}~jPX;9-(&m{<5Y~(G0w&Kg}f2tOpLQJnl;H_vgO;<w#*%el*Y)?
z)!z9S7h?Pt<6=_N?Q`T;Hs6KlzZa$7nj;tHsEs==g8q#0SBz^huE)3(<1$SJ#JEbi
zXS=NR%{fX1XxURaf3pdG)~|Z@;%CxVJd^$p1u`XnjGH9#&8*F(a&J8DanG&z?W&G7
z6F(z`%oNRgVogfD)LS5h)+w|}AuEOK6iTO1CWRb6kC#Hh6!KEgQqWUyQgBl+QZQ4n
zQoO#4?g_N1iBI5%*5?y92D}vf6v7mulxm<Lh4+#)N8imUx-l(IftzxS-}bhZN-2R~
zX1luc%Ln-+g`z1GOQBE-g;TgCg(4~ZaJ#UARp!e3hqIO(cG}Ms4lXpHS3HFhDU?j1
zREm|zt@CWm<8Stq4ReLFrkCdmHE_zNP%edfDb!D)d<qp(sGdTN6e^}rDTOL2ROR2U
zvh{AOa*AgBz1!xiHQmEecC{34&Xt1m6wyAKD>YN7l|t<l>ZH&!%C0$22F#PG^uNxk
zo5HFj+0aUs%u8>OLc<iArqC>fMkzEV*c5n?kp1`Td2%{QxucX_V7@d@p+yQUQ)rdK
z=}k`2`O;~=6g*&2Gi3ODx&0d@;oGLrE`@O^j8CC`3LQw#6b7cyF@;XVB!ylnbWWiQ
z+aiS?DXf?;T@#W{uIhA4f$o+0stUY^I6fJYHa+6@PN7c<eN*U{!u+NA-_4hAb~=B}
zmvDjfCrcd68M;6|d0Nfc2Bk1Kh2bfTNMT3{LsJ+=;7N6kv{4DBFHj4yMMdou3uMm%
zL4L-_6h@^mnyj+Z3M$$>E@!fj7s!|dtFeiHe1S|zVPXpZBd8Q6r7$^#+f$gE!ju$l
zOJRBnGg7#|K$cBU{jR5`rVuZbX^Bs0GZP@Q6CVq$S*+uwtYP)l5&WDavhhNhmjo81
zu#k03Ve9kO%fDvQjajJhp}Ql6osvCiVa8o4+?~RMDJ)N6Q405@@IVSnQ&^nBy(uhf
z<lUdbk_6gg-&*&vvy@d@vJ5X?DD9TU>;4~2Ujgn#@x6cHzHkd~QJ>vCyPxd~h=8DC
zASD*4fY_~H?8I&wK}tcoySt^OyHmP51tgUJJLCWNJp0TuJ3Djc%$ak}%ubxsOr|xH
z6|Hmn9LnrW?p>o+D!L@lHG%GAj0AQyli%1i#nP@dlLt5Ebz_fj%p==yX{#i!@Feh;
zSvtSD^h$ss%l1v6Ujq9RIFLa91O_CqFo8c37?{AI1STagIf20m3`t;Q0;3Wbn!vCG
zh9@vW%UZeSl3qNQ{8qiWG-)pM+wwpyYjgr*5*W`WGiP&I)m+9V=s!`dON>ikkFGbp
zg@i3+>yW&O<k%JplPL*IO<-06zb7y)f$0g%AgL4JdLwyebTy@iUuYo|A6hE@u7%7_
zU`_(_6Iej0+);FH0_TS3O=}_ZNZTN*XA5<%Z?A^Dt#odYma-^;#R;rWU<36-0!tHE
znZT+9mQm1#r!1$INWf|-Z?%-+E#>j2(sm?s7q*nu39KRV39L(CTT7`PDZRQbCyfWT
z89ClkvRcW;1U4nGozwdSHYczpfvwD(z&9teKl#kMt+LXe&sJ9q!zXSfI}`XbfxQXr
zV}DWMknLN^wccj+R<cKT{na^2t?{*WE9uut7PeCKIhep9>Ky}_1`bn%6S$PX<pho<
zaExtF;Cuqd6F8B;nFP)zXa_0pTq`NsT23Z#DuL4pZqa51t%VPv)oCqnwHErXr!5hB
zAi9viMe>HO{hu?bBr<P9bKb~l(v<}MP9ViVAp=(vxR$_;1pXms-j;ElDsiE4(ai0w
zVN&P(ORm^dbl=!?8X~)yP)5mES78IG24J9wfhnz}Zik$-xAKq9FzJpx&A@aw>uhUD
zH<V_snwRt8)VysPT9$!g29gF`1GgB+Hc;9?!a$CJTmvNylrofsz&rzm+emR1cO_qk
zgj2#mN?G-Tz>v!MznR|fZaIbl(|~QjF<=o|8>u_cq5*+>+lUxo$RgA*ue6b`+eqmk
z*E8T7C}-eS1A&3iK!JfWhH4`XPV!J_WT0Cci4D{$lE%oWHnO3Olr?aqjnY(=MwKpa
z;5Gx54BXD=sA2#<6%1tkBoz&mEs{nz!MoFP4!n^2a(>1WKgk^i?lkbRiBC-2WuU5o
zwFcH1xZA)z23i?tO*{?UXW%shuN$al;C=&*3_N9^x`7%79yL(cKuw}#;2{GK8>nsI
z0R!*+MDt>x*>)}<*U{9jaF?1Tw)jc4dhAc~h@sXPPy8fHbxJ)0j~Qra;7J3I8=z{f
zZ{X%n^84k~Ck*AykfVG94d;te%8mq|Qc;%KR_J#2X#>v~c)`Gn2A(zWoPp;JL@9;o
zsqMD5l3gled+R(}*5wi0mkhjY&;k-(HE`+koCRg`pJ^-PI{)^Z58KM46LXukl{Z+6
zfzJ$lZlJM&Hw}Df;3ETX8F<^k2O5WW47_V_CnAHJ3-1{i-&Wq&>6_ciskTzIooXY+
zu*PB9>c=Mrni%-hfY(lHwUf8osm|hG<d5wnt4;P@hf988;7bEP8fa?ZD+6B}_}0L8
z2EH*cx1BgYOZA^+b33`(PTu`lz9(^tWexmUe$X|x{aMx3%s_MUr-7D+@(jq7qdyC`
zJnpY(UEh#FVp6TOG4PXt;RZ$+Xv=H{dK&0u;AaEv4g6x@R|6dkbTrV(Kxgvdaii|5
zxsPjCRyTDmVS8~$=5;a9)xd9LMFZs}?cf`^)!Iwb_R^gx?WKptYI=Kx)gB%8Hqghw
z00RRJ^fl1WK!2SF9aJ7ZHFf0e4pRN~ltBgt8yG^y>mVG$hVr$8Y|t5oks2L@4~vX6
zFp94R<{21mU<~EjzzhRp4U97|!NA1-x+6#%uOqZX$5J<|=T0(kXi@G|1Cyy7$OehD
zJE~he8_z-ZXa|{QfFX0vG%(A+?*?Y;;@zK7_sy?$kU9F5YiOKEa1vgBWa@ka3k)nV
zu++dp1AiD;WMDDny`!AiR{HXxoLSY<xRL#IM|ren20dXdGqBviDg&!2GG)?uv4YjD
zFtAcXZq`xN{`rF?*BIEkJAG%5{N^90d{QN2y@3tXP9|Iv8x3qS@Hf??fz1ZC7&ypA
zF+Uf74D2?rhw@@zhk>02{v^jfU%GQgnblF|pDz0PwH#h>*u|VZ^Ec|c_8Qn{V84L_
z8i5l{tb?PoQ#(oJPEzBqO!~!c&`Azc!x%Vk-~#Dm;21g3z!?L_4V)n5I|+9=Pg3Lu
zrnl%Mrzka@)Sf=$eLJb<oTXg%{{OoP=UBB)ylCJrY5-m7C4)!KRL(E^=3mw+X`R(;
z&{<jzNxx>`I)@<>Stf26_=oD<1Wf!({XoTQqL4|`h>DDTYpLO~u!(kuGe>PH{gwt&
zud@^}Rqv+`NliD^x%8qY#?H6WbRr`eCU~}u8M<_qVkT}eQQAbpM7GH-Ls~gNo{2`k
z=d>x4HgaWl*{T`KI?LakCErAG6D3TPG*L=}qFHPL;lqgaivnnvFilt{#Kf>GrRk30
zj$h<IZ-%z1yvI5wc5cjkj&{_`$&|tAo(bQ?<0hUk5ts-~+)1@;A~F%1D9<7$3QTp<
zwVa7tO_VXgV`FR2WR^9-kTv$Qb6@;LZhN_Or>!{^OjI;c$;9m@KGpcN(;>4}HgSiE
zWxohDWEE3+wB%CoN&U5|iMvhIG4Y^@dq^1*HBHnqai59TuNAFsqT#Pnjbt>zYcG|5
z6+Vpo`m59+V!x_Z?`W96@K>p=Y4U)H-M`AVrrFnjm4{3`Y@)7-dW6<R<$T1%%U$GA
zo%6o(Y7)}Bi#%q6?n35%lsBP^Ebb!piJpm9OuWjfO+0DhX%o+|M@;m)CFLny_KJqq
zYilM&=2;WZnRwpB3!1_-ro^?H5?$rO^z;`^Fl^mbUSho@PFH!XtGwG)Ve%SVXX0HG
z@0oamFipH|;vEx>O&+pRQ>nL1ylG-lS2gEkc%-Y+;fddbzaEdSQ7bv`oA|)QhbBHU
zLDx=If0M===%-Iw{-)rwAvN>!ny@3tT^14+J~Qz-yTHV96JMD4(nK#4y-j>&;%gH>
znP_X`8x!A}_|ZgD6W@^mP8DiVKb59v$NwhZoA^PueWQlo%tUh&txU8w@z8+WGrvg-
z{k0|e<b%9Vwxu&{qf^qliQi4Wn5$;;?M(b^qKk>HCfb|mz#cT!$lK9GCq9KUzv(8O
zO<dof{);ZVphi05FLhHb>f24;dLr*P6WvU7H_?OqP$zAs{<NW+^fYm*n-u9T(p}yt
z4L*HL^ffWb#AJ4yiT);rn;2ozydDOc7-C|mi9uwKJ=rWs_=CyP@0I4m_%Qax-8p4`
z&aTy6>W{FtTq!itRNiLCP>@YL+g(PHjJ?uE>yY`!nV=!@2_`0*7|%}3%i_az_5Xcw
z%To`hebQaQpJHOFNh^O?Xkwa)=_Y2Im}6pwiJ64cU5<B`9^GY@iQjeG|1+dHPM1yT
zA$|{;OB`76{<J2SQXBM;`DD}{@=g!=gW3aymY7&-VrAj%MY{N69e&$Gt~6F!qDK$;
zy@#w|29v)?xMX6LiPa`{QC>`}VcSh?GO^jjIuq+nY@pgV)$!m1r!v>|kiJeHdeSzZ
za0BbPp0dTnRukJz>>yM1RITIDooyzH3@>zNB4?+mmLI$H6dH~EQ={?Fj-s4w?=i90
z#4!`cP3$wV-^3vkhfN%yvg#>s@3fkX$~|a;&&u1>jOz$V!Mb`1U1yFyk$KbvL#CfF
zaguCf;tV@o!~fsD%woOdl*Z(&3GPswXW1rs=k(Vyy%dHQOk6ZkyO%uIOBjCCOD>zZ
zLYyrWweUAJn~8s@<f)F<rCy`1doAULE`FWr=(e21!a}Wj3AY$-nn<ybY5^7svFwyQ
zE+h`=C7do6wn$!e*@4x~>m}=1#pbLu3+Wbav5;*c!$PKoEDOafwM_k3Y6cznGBY<B
zc^`kZpHEkDITms)6t_^qLYFeBJ?UNRL&>u+rhQJn4nNzIKBrAKcQ9G7q=gf`q?8W%
zYFIEWG`8@j1<Qh1xX(g03$_Kv!fh5RSV&rMEfiQNW6=gad<%hv&;k$4b4BR8J2Hy&
z7QeTmSY#o#=-o;E30A#Lji-w;Q_5Pnm6<JNE3%xW%%7&{W2jYo%imqH7cR-EXrYpY
zDi-draJ!|(!OE8U1AXIr1>vdQQuAW5J1yL0;T{Y3TKK%TTL0%$)xzC6fBW9@%CKzi
zPyLs^thd~6p}K_z78+WpVWB3eXQ8fzS{7<sc-X=t79JpRs%AaNdbPXBIu_38R?x%O
zLlzkFl=V$r7cVk%s!Y4+^(;JLp*{&-G3_x6CHu(ZI=r`!oLrG}Wn1>fV@2EC$a>O3
zBMZ-4c)`L`7M`~7jD=?{yxvE??<3qR8Qe#nv%n?&+lQwQ*_5@QkD}g-7GAROvV~VH
z9P1<3`$$e-3H!>cY<ORJ-9q!e@|te%vwh|Jhtl3)+)|!r>z+zyIH0e*W#MfLZHc^v
zcPzYX;adyeS$NOF`_$(oorMo9d}!e#3m;pU)>nFT&NzRv&<i_qKe4d6uQai+<C<~4
zufpe3U046g>Ypg03rO~$g|95Nn6M8yrTfX(Y>|<BcR!)W)o;i`#}sFNZ{Y``O2l;W
zA1ySs(2Py1n@0BsypdF|p920xKWS;9m4((8+F0n+PlomrI&0&nIsIf?Kl#Z54@-0Q
z%eyB(TWD{gw}n0yI#}pPKDW@7rPzZf3ek~eXA3thH3()mwSFOn7LI<Hawbgsx1aoG
zp__%C7J6wMx?8B&U+zC*^w8)P@2`+~LWk}93k`zxwb0MPFbl&i^tUj;!Vn8XnbM!;
zNina#yw@vzkcGi)<Lil&uO%1~0`DOF)t~>lX|x7B!oo-k<1I|EFv>!yAtlFH7;9m)
zuCdqvRpU4v@6lVew~S8VKG%H%q|pF5R5Wd}g(=hwE>^ji%5I|2IS3p~w=l!PF2QcW
zObfHfib7Y6_}#*63q=G)1#>LSwQ$J7VPb1xzJ;|G)>&9!VWEX37M5E0!@?p9i}|T>
z%A@zE(I-?V?JD=kTlw_mx6HzF)^1^yg%ui4PEkf2&v-}U$&tFv09j3s<+XBxX4V>N
z1AW40y@d^AX`*LgqlHZtwp!T6E*l`5iPC*(^WM+dLYVzi{?{UN>HyhpVf_HvVbQl&
zE)6--yy4?@^LAReJV0(4D7!7}v9Q;|K3cdumCl9bV4&0-s7UwhK-q8MfQ5tl>7Wz8
z)Zr2KJ2kU~tCS!M$Ej^BoTsj{aFWt(;VhvIl$}kKCOl=~v~JyOU6v_32C69&&+cBZ
zaM8kF77fqh!a#YTMn>^LLc7qJJ@YxcxU5TEp;{XxGy}-+nuY5YQUryBe29N|^Vh;n
zoo&>cDGdh6gEz9@9i)J_U^qw$i=OQZAj<0^EhNt!B=o#f{H@Z2pC+Kwm;yl=<vIqL
zg3^M7AWKk8kSEAzk3Xt(>@9+9L5^Tnn6YD!aPNs{cydLZ<k?s?ySSi)proLbuI`QI
zN}c9&B2B}&gQUr)IYkDGAut6=fy>2Xfe37Yqw@!YrS@RiRgl?uup)bvCAo#@|5xA(
zB0)@>XM<(=V49-DHw{xJEiV}g7&2$-5V?1VlsZy!zz``bC?}{cs3D-4wDJNPI;tYL
zO;ABlNpQPh?hxUYA1kUTSUp75MZc4~hw#^0c=_lK!JSMWnR2h-E;jAfoYb*7cMGa&
zB+Cw!Cx^-hL**X*`pm_w`vkPE!NKu<!E<jHrq$eg`dKgD%&94;C3slyh@iIM0l|ZU
zhXk#LN}r*;T#iXY)ut6Wjgm;i!bIc5P<d2PSMa#t3BgZW((93=!xV;(>FRC_RdGId
z3=^Ihp*?|yf+vL&AM_Gl9>P<?y=#0Wcv|p`;7!3>f@g`CK%YLw^MV%yFAH7~yrCh#
z$oP6|D=nD_?*iv>U%Okitd7HE)G%eV^L1up)xra+m_JPR4U>z*)UCr?hpW|H8mc|*
z<i9O=NARKGBf-0Z_XOVQ)DOs1Q`EffeZl@@KDF_R&y<^tJ^KrNEciswMDVF@RITA^
zSA{IZOJpw%m$4VJKNEZ|_(Cw_lic%P=JTN$rLWoVq=}%d;9C-0&`i)=@IBEM+7bu1
zBdG0L4VQ!cbLK72;WEOY;fh>a#^<yUv?S#Pt(j-I+M3}Ul?JCa4Occ;+GsTT*38)L
zTkQlt3pxop3)<`S4uXz?qZ*VoLhc_SuZ&P&e-ZpD=q~6X>UV%Pthxxgl1l~M*d0Z*
z#93MWXaQrp>f(+gWY`Gd5X`c@1$_jwsXPUJ1^oo01!DyL1p@>_1;Ydb1%m{G1w)9;
ze&vykR*UD2P!~G(kC4=n!rzVIf)Rp|f>9b(a&MWD^2|t~j%6RcDeB((Siv~K6v0$7
zvv3mx6UlpIi6HBPk<#<aTX^fC%}AL{%IvndP<DEhlJseU=@fGcK6^pbw*HfUsO$VQ
zbw$i@piR!o>T0CsGi0R970lyF3c*_PiC}?XsbHC4q2Ld}BEe!&hv(;w6dnuzreFFJ
z!IEl9KO7w?|MA9h!3x1Dik@I4JGxvh8H}@Z<|#Ew5xm?ep)W`}Y+WZ<FW4;D!fsuW
zx<P2&8k^XtdKo+lOY_vMf?dpz*Rr+>wh6Ygvw|#I8s8!KdwllGql7KmNt7s+8aUxI
zvPZC&Ol6~mjeX=>Y7ZM#Y#b0Aq&~D!%*G+XVZmj=6~PfQhTx>&l;D`)xZng?Vw5x+
zC8La-Df7)rm(>)7DW?Tz1Q!GsMR~|&@0=C9*f#H+;5;cmO6Uf+?80=0`$oy4E2aNp
z6{CbUPcD(YODgY*e+#Y(ir6S>;~H6x%HKv|8#kzLN6Wv0n}UD-uXo(a#prf{8u<3n
zl466QYM>4oNwx7J8BT}109bE(YMPC78yPm*j#jm2+88ie){mA8qyK;J++ri!hGQdX
zBgaOrjgmG>*=pK+qgSCk8~H?Rj1(uiw5zoew&H(pjNCm&O4~@-Fl?C2zc0N(c{L)`
zA0w8HJ@ZYmVcTe3Uh&e3lj<M*tuYE)*M?`Kyp7vz_%;F?1vbjq2-!8SDiMxtM7owP
zI{)9t6$Cmt8Z}1B+9+pZkxsu==b4_PhTsY|D%z+-g4k-UW<X!%&im>Z`S9nQiZ`+e
zb7=GYJ8ax(<2f78+qjDe+jzvrqc-lgagU9fHfq_p*T#J|s@b@o&$(2NvjomlNe>p!
zsxVfWgQ#w!hK*Oo3LmdkPHh_x*m%&!LpI*nn!!<{<5;O<t2rvQ;=}CF+)SRSBUd!-
zq@=H|je0if+h}0pF&mHDc)|v!os-8ZlgrD-3cb4X0wXWIHnj1ijYc+}vaz6SE=73P
zSSip4x}LW24BI<SijGtCeAdRehjaNb{sOz+#>X~3Ar3ZPw(*vYw~4Tg7fu#>)y8W?
zb)39APF~m4W0C(6a~+?0Non=QHr}++Ohe`?Bk$OFS7-Rh#(Op|v?e~VK_uU|QKCkE
z_i@6IE_y%Yrw0@RoJv*w)x^f9Homd(t&PuYd~V|l8(-S$_nhaAM_11|JWjI5EByc3
zR`e?k|7#uIHeSB7@x6^7$rXk1;?R6jqsqd(A8c&>LJc%c*%sRWByq;eJL836OB=0h
zthcd&{AQz#jnOv7*!YQTZ=;8eo;KRq_}RuUHh#6y-bM%Z{_xb!HkxZ3I@;(qUOH(6
z#_5!E<E7XH>0+a+jo;Xo9Nc<af~qDtLEe2hr^W>7rZacf;TsdAmyO;w2HO~7qmPZg
zHu{ku<m62GVS@CZAj>DnsR=TG=y^G}Oq78(2J!0-rDi!qzI`%ts0KC6#&BCXPh|QC
z8zXJ>nwnF0qKwjC&mGHrVQ5M)Q9c`&J(m5>j<7M$#&{bOY)rQ?!^T7#lWa`3F~wHn
z7kP%y(#0iOO_ZqwSR`-$M46_c4V<XxKa(P3<98dgZETw;e@&F(mkqYG?t98zX7BPc
zhf?#f;@<gWMH`E4EU__gXUakwe^3~yUM8tqw^Q%WIN)RrdMA&^+m_l`W@C+wwf|Mr
zGjF+#6*l(wH&@zNWn;CCI+K*;5FTI5nwrU*+O){pD#dzklB^>>)zZG#{+KpWI&56B
zaoNUZ8(XNQZ5$>i5LGG}8+&bRx3R;<E*raT937axlYLEx;M<G-sjL2ClJMWHtd-G|
zk!D7P{n`77hK=GiQV$aHoh1+GY)zMBch6TkYQiL?7>^K?jk7k+X_&`s9Jg_TjpFz^
zSx(yE9p^K;;3*rYb>z;;!iNy*PFAbL=WSfDanZ(K<gv*zVY2WPH^1)FdD5pyjVW@)
z#@{wQCLr6vRq6^Gg&Y)iaGlEE#!Z{YEWybD|9Ac&&rgxoQ{-QA_!L!3w`tkj^I~My
z6iIae2Spqdb-;zJ->WJyTs1|~9Hcu)ZJV9tAj465J5z^uo;Eh!m$p~KDKb@xvFuct
zH7qN~L9T;@1H(a{gM0_Y9h7iTWvbfsI8Zv{si{KCW`tAH!Ny&Ar5u!Y@Yz&ZJ<MeI
zy`OJ7upEd3+kta?F8_C!`TXlS1)H)vO%=yM(t)dSm^oEE2ScW+w(#L==pb_NeG)$;
z5j!Ywu-3sk2W1?Tb?_ZOIVk7gRtHZxbnbxi4qZZ^hJ%_8DmbX<;4TMM9aM5~yMsF%
z-05J;Z<gz3ROV~b>?#hZN%)ZE*6DiFrU~`x-45<?P|d;pj`{()*8$HA9O{yPAN%6o
zv}l^#Gfg2`-BEkE(=KFggPPvda!}jB!ww#C@VArtfP*@YvMc`NG<j#5{5VY>bnp<-
zKBrp8@KFbK9X#&f2?zBYjGiWErb+g6dCbB5X~Kuu>N{wliSwj`3&+$hPt`<5LpCa*
z$oR-(IgMD|V>y+l%QFt1b?~l(_Z&Ru;CTnHIe6W{3l6upQeSlNl7mL?D?DG;0AJzj
zbXiv{<wY~?RR_%*=JVm#H~7`Tn-1P0sn-=<ams4!;EU<X;tIdEpDshE%i9j-PM0my
z<sH&<x}2Ua?>qQ_*&KZ7(BlR^BG)<i)KL~ei_Vag{^=i+4Q9wEI&6GvE*-O8K9v2L
zV(g61H9l2lsP=y4;A_&{!M6?`n;|cHIW#W8bSe{u94TI%AwM|y(ZL`GgB>(=(9FTF
z4!W=j4q7<)*+F{;EgiIS(8j?}x{F)uD!lx(*YxoH%KY>@>ZozNt%G*@Qxjb~E%tP9
z(AnWJQFL_B?^&ypqZUysP0s76Gti^Tpc&Htcy?C@zd7jbppS!Y4!S$&;h?7mwRVOa
z)tP&dOIzjMm?7N`W>f33y1owRGID?ePUidR%-J)gKZSj!YGa+6B?ppqXG)0%8ABWl
zbuh!hOb5f5-@!Ns;~k7}Fw(&&atk}OZrU3UW;`=ftscDhQRWzuWu}^Pk9Dx-MsYrb
zIl;k12a_F4p=fL`+HI!HpDB|Z?9nyyK;2Y|^R}YX9ZYku32GCQ<_Ku?n`LJ?_}#%D
z4i-6>?O=|B1r8Q!wC6gQ$M&XWQE)2vPMJ?Zm?@l_F)Tex%FmMDKhFR5Smt5}OGrQm
zt0)VzWT}JY6xid&G6I>Un%v}%j4x-&3bM^C;ooT5)A?O=`f4_TUHodHiTjH-KbyYZ
z!3GC@5<wChi6_~{!3_tS$$k!wJ2>HBtAlM0_L18iY}ZKs>0p<G9i-SS*-4q2B{yct
zJ-^FDJNLWaWjBey49#RO)ktBbHW_Dlz`;QWM;#n<xIB_}?2hz94h~aytx7$@PXAry
zId^|LFE3B|UDB=@rL^&ulMYTfxai<72d5pJad6hbIaXRSlYbvvEmVyisYc%O1b%PY
z1&XtSy&Bpj2bW1er8IE;ce#&7j8k*-W~=|ls}$1N^8EUu*K~_|Y$#e`w*2GZUuxqd
z@{_pfASDU9-%d{|WnL%=avhTRY_=3mA~gw~<*T<v?QinvQIRBy>TJ_yt5#$rk(oqJ
z61hoaC9!_CP!rygM6o13tgH^gG0fKakLdi1wAHD~<ILL^<Q7k&L=r|4W)dZnD3wI%
zq#A1f-m288IY%1Kk%Ug^Rxf>jjlvckgeT!9;U!@w@#Y-)W1+>{b50V;Bxd|wy6GGl
zJV%z#QHV7@m(CTN6LTa?B1+=vB%Y!EPof}++DSZ+M42SYCUJKX_asp+iCdGXoJ5r*
z$|rGK5|!pkr6ejOQIR#yRRI5;qwFW#UOboK<8$TqBp5RNjwJ3(f~yBT<_iDC?n>gz
zxl%QW*Yzu}Ch_&&B<@S1S`zmsL9enLvL~I%nm$+PVWfHzwUW5&!L%Al)FciIbGB-*
zj1YL%JgJk!gGoG*MExWlO5$Nn%(_WDLiFaT|C-8mlp23jr;q8KUN4EqlIq`?hJe19
zl>K;8g%8b>21ztb;whbt<b9H$HWzJ_#JBUL^E??kPqk(3n9}p-$+Jm3M?BesNjfUR
z3rW1eQc1j+#7jxMoWv`n=gCY~-RiX*9{V{lH~Uq#H>oBS1oE1$;`}_Z=d0Jo?5QN)
zO5$yTnlC@hms{IeJ?G0iMBtG1p3XdezPy_R!`s&vr8V03li*SLt^?9PO42nFz931H
z_#}xYNqkDSOv1UYoX%9aoW<pLipIM6@_7=6=S%gS>aXgnB)(4K8#XNo-VMAtU#tZR
z6Rtjem*mD`28&eEDL*FBl<effchQWQlh~BR<|Mr@p=A<d*sV#lN}@F-B8lEfv`ONp
zBswM0If=zf3bjq5T@pXDUlvG*o@zy|J)6UL61VS6;Sb193#229ERZ?n(tb(e*Cc*R
zqFWMObgS75l;y5TG`lN<PoD+SJ*nmrJ;;aGiqgRu0rn&sRkNP1o<D1W^dW_l7@WkA
zB>E-MpP7>w$ZoYW#%@(p)0tuZ#7?CLB|*Vw*)~<JCKpnNCNV6D5lM_pV#5NNR5|a=
z0vWCm_$@_c8%3JDlh6ALjE_#D_(GL9j@^;O!X*AkVnPxVlbDsn?@3HbVsaAGl9-;v
zl%(>aRa@tuO2)`b3!ccUuux_s@#8|urW#Xtzi%d6y-?^HY<3cJl9->w0z&vy<|frG
zGuAbaDRkbAthd`_6+4}|d7&~$#q>oaauO?&See9<B$g(zEQ#ewoYpmNdDr5}vBG~y
zr9Xrl1kArGiPdZ))q4_al2}U_@sufeetKa~$~tN%-D(;@X39r@$f!S5gwKlO#+D?u
zCh;$oVG`St*q+3hB+e$WgW4}iFIqT6nMz_;61$Vwlf>RX<i;P;%ShX6r|l(Hvr_j{
zem7<{nx4ClN_CMi!j3zjyN?G-4<~UXiIYj3qC%tOE|TLK8Rj{r^E|XjPUw{97b&dr
z{>*zYE$cK@)4Ozxq&VSR66cfnJBh1FTu9Q~1pZ3m5*zzs&Yi1M<?h_PuS;DfyDpOb
zi-hKDu4rg|HMDC<Tu<Ug68|L8b(~pvu~cx<$Z0%{*`!o%y-h{GyOx>aqL7Ph7db8p
zyGV7xF3E5KR}Bh9UGRGCy^E!Yi{}<A3_o5hylK)-$1~Y^E{eIh#l>y^Q!57j7c12?
zZLus(<AO%kn#GdqBF{xh7o}X}yD08r`zt9WG;sfyY`T>Fw?xL-#o{cH(k>D%k}g~q
zhRz@^Y!{{r%SE^QGVYs@eRV_n{5Yfgvg|qi3pqMZjU@^zUM6a^L}=iS@xVpsqA5k&
zMdTuOQP)L17X>cLxVYa%br)q_lygzZ#qBO`by40$1s4@v(7N(%E`C}fPglupq9OmY
zP941GnNMEfsjO?f)5Tpb`Y(|xF7D7Nt98z*F8<21?jgBc+^y3KEmgP`(LSN>b5YI3
z`G1w+BQgfV8ZK(GMi&pdYQw9Ri`p(8&;?)XmT~)1sk@Zyq#!)x;$at$xOmjXONX=R
z+Mq=3QoKBM@3_1!6-&OqKJWFV@|cUqUA*t&0~b%YsPEzx7q7Z#;G&_6XIwn%qTNz?
z(#2D{ibgJWrpXA6Aw~FU7t5E*-lg)Ki|1Xu$ckLN;Nn>GJT8_NE}nH|sW6_kOyTn~
z`Q(w5TRUg6J6?0~x{J45yiKw%lQ&#6cER&<|I@WJSSI&CK3XPkx?tF5nGDqsW-XI<
zT)gYzJ<{q*Q99%1LoWj#GMkIfU3}r<V;7&eXyW2i7i)AW`e5Sr_u*yo8Jjjr@f(-a
zPEE47y7;AwZ(Mxq;w!S^_M%_w+IhW^mX^PB!F`h-T%}`+FPHDhgv(Vc`247|-M(C!
zyJ+EJl#9_WTDoZEqPvS8E?T>2<D!#`&g2RgZC(8AqP>feg|ada<g_Eqz3Gkr4_d24
zTHEE)!9_<6wr-$2{QlzNR~NsLfpy~W<-%2$E-t$2S9+0HvRt-)qx98h`_kXPV)b;<
z%f%oUgI)A?(Z@wUGMft;-swvs4^^#h+9>tMMyYG-WgJ~DM#YQ)E(TI;SBSMjwQGor
zp)Q8G81ACh3Zc8|N)^=KA9sPDUZJ)FM(C<X>hQxAGRDPN7qeZ=aWT%tc$X)=F~h|K
z7ZY7faxs~*qYr75<yx+gDJ!z7jxNn5ohjS}b}@}?zpW@W&nJtrX%D;vPXW1@<>Gf2
zcj~(Uth(|X^TIV{lVq-oc`g>aSfXp6?_z<Ag~WDL`ZoH0q8RSa9=1Yeu8>8#zjz~+
zrIxx_M*eiM!Ug~SNGo<Fugk4pAw9FzEQm)wR+C96j{)usu-3&oDkUG;KGwU~;Nn9M
zA9>j5Vv`HcgYRLpi!ClLySU<FE5W)r?BWQulZzcL_PaPh0deuCi`_2vP=S2I3#4hg
zT<ofo`|G`FuWv58xPCtG!R@8?D3`O37+zAFbc?oS9&~YtJ;-~eLkrz~S6b#uX);Ak
z5{^=uT%4m4aB<wl2^S|_oT4IHDGN_!PSrO7nXT4JIqhP~3;AbUoTbb@k<Mc?d>Fal
z;v%U{ekR&=<dv0jN0zd3%u@A^W`46$=KEQHySPey?jgs+H5b=i6!B2h!wnbzxVY&e
z#Zw;GS>#_=ZGXRZEwj%`Ddb_%cO}WdsUAEdx3H&|<+V2lc=%(b;;S?d=^l!CxW&We
zm6GA%o>lVI@SIE!Svr6AD&fPNkFQeu6pc@(lSy(t<atPVFg)aYDDI(@hteKOc$ic>
zkEdI?1Ujr%PDu|8S@!7~C3y^~b>H+?SBdGt@*o~;51+46zZlHG^O=r^uB#;JDT$t`
zYjiaN!%8bs1Rg>UPk5;BA@UFtPY?HcDDY6mLnRNldnoInoQGRIl=sl3V&1k@az?{R
zT`jjU<(X1*`es+~P|-u>)xy~(`H-uN1YX(0ogVJ;P{qR?p4xtTWVPHlRfvB{Y|dki
zi&gdT+G_c6wcPE2A+L<x=b@U12R%IG;eHR*J=F40+rw|G6|HJ$%xik+*+*>$Gkid&
zOkXXVS4$laTp{EnitCvVdz{$dQ4e+5N7d6#ua+Tg6kpZz@WqYnDaQ>?{~q)3IQwV~
zjWlL97@Eh!dks7^^zbUN^6;dGMjl@9@S=yOJUs2;IS<c!c!q>pBj=CjR9mA^dX~tv
zR5P(}iVAma4rJz1@xJ6?RT^IQ@Cu8sQLCEFP~o1O<}I?Tq-MSD;SCROdw7S)duZ(8
zO%HE*_-u^~TqCpB$e}grc3#$6HAP{;cRjr4;e8JuP%sZ>azx|NT#7aqd+%H;4c00&
zKKAg5hnXH`d1&I{QxBaz{6d&y1`o|VG-ty-eCgpk58r$A+KI2p+aA8v1l-cc{Bf=H
zT`N2*{<{XaZLJh<tmafduxmUt^{{J}x-ENpt&9uPcXm%{;h`n_)I(bjt;nm5Q(Ajm
zU`L^KlDkgW*WKQ;mc5sM$2w`};b)TihFasTzfP#N+I#5Wp`(XRo;nr4^bgjlR`6-l
zuf(rpDi4D_3?b{X>pk@H(Az^d58XZVAi*`xJ=Q5~xnRX#6>2$_9lK8Yc<Ae)Ke^q*
zl67kRzn_Oa>x4T>%y4m?IO}DghZ^hU)5sb`LPged>t!ef%ELGh<2?-bF!Y1MqdbiE
zFhW;EQy3#XFeHRA9&PsKaE<P(^~!+uSPu-DK7kPrQ#?$isFF|CD}0`)P;#<{kb1W&
zJI%wgPxEGw_!V+HH@2p;j~ZKC1>zzJzy9uFwugNl_IsG)VXlYu9yWNG=V88wr7Y`V
zfro`27PD#8GaB-1<IOouvln@ozFw-&%4S$*UDl@ca_6II7uHM4snq2j)_7R!VTFg4
zy2vUr@CI3}<Cz;&)qGuhkJ>p}M~T}YuWgXt8)T!0P3&|JyQ%*@Z1J$w!!{2*PQaX{
zmz18fLAEn-gY2ZNt<2g%T`@eJcUAcHPYt~0W9qE+mHH{eDx~i5u$TIwSlZ2c8Qfa-
zHp&4H2R;1d;gW|#9u9jr?ct1vBOZ==IPT#DwZ}$P*D((dZ&bE5Dy}JXl7h2QDYu(L
z%~QIT?{%KD>>&Mmo{A__?N$A^@HlRxT<}1n85ecP^vjHRxalFq$KM{Vdick~zq;%-
z62ErZ;cF$Xa|j^0>Su7e#UhI~$}hQAO8KmMee)^Zg?tqDk>(@aN2;$j!TA*N0bdOS
z+ciEsCs5SqS&<xi3(D}-ggnbvM|zkcQ)fH1QHtqEkxi<NIX-fI^!3rtN1l&-AJ6-E
z!AEf)C45x&QN>3|AEkVRJ|Z8beI$I?J{%v057UR`Ls*5j*Z19<8R}BffvlBd(`%;W
z(p_>=*X8>Ne7HW!ZxYW3pEq^w4c%0#l#buzx7sAJj{;`!ahs1aKFazi=i^o%pZFQ8
zHc4Ju+OB4$_id6}HVbF_$F~-);G?3CN<MBUKB*a>7gI}`BzT$4s$H*a7M^gp!^fRI
z9`f<9kGp(S^-<kN4Ig*=xW`8|ANRAm*~<3Uy*`?4misie-8BRz8hQnTUK(rqsO6)M
zj|YAJbt+=k_Az6#Jm7=R%KyvHZQo;?rInfch>u5oH1zSLkGekU`FPC7<34yW=|8jT
zH0@=5nfru~rDwC)*Y$lgAd;msXzz#*BaM7K<>Of&&uNsN_Hp>4mGx-JXMFW9pJiuW
z-z<IZ&*emszDQ_C{Y4)y`S{kycg*196(1k^_{hhrK3?<jwvTt%p@P>*c^_~2c!OQM
zMgHfbF?+dK8Yhi(Y0B`@(V|?vdGSgqdMtg{$9q2B_wj*dHqPZZ*l|k3g~X~`gqLUO
z&gNs)LHNSQmp+>K_|(T|K0f#H^%nW%fm}{qhHgtI=H<0nus&Oa$J)Q*S0CT_ShGd_
zhf=283z-bbrQiGb!AA!l9ew=hqp6P;K3cMA^a|voIccaT0JB;t)wgw5W-A}9eYEw_
z&c}r<(uOoYV^rQM&%BralaHc0@-y4JRk6h6t<qi-v#);b<fF5Xu0DSA@e3R1qYJU(
zV)(IaUIbwNMaMG#+$xv0N;e<fef09t+egke=|Ldd<fm<FC%PvIJ6`VGCVj|Vd2Fnz
zXy3p>Y-WES1ALtJamL3$AA@`>^Re8=U>`%sJU(Xn80uq~kFh?+X~Z~|4fioZ$L&}0
zNBS7$W3+x9qeB|K<VNQTUCVeM6MRhaG1;fBQEMWlxNJ$1kqB(aN}b|k_>D}?*r)l*
z4A)e$_p<Eddl{z}6q>G6xGFHq$L~Jo`&i&(wvRbJ=K7eYEBd8LcBP?e{`uwUY>sr?
z-FUhnccG6zd@S;@*vFsS<eqv;5dJEeSmNX6ZCMSz%cohPrMh^^c14F36b<sck3BwC
z`B?2^n~&}6cOPqgY$6&=xz&2_P|0=t1@N(fDo7XHNX2q*2IF_=*DcgYI`Z>&*{b1x
zp<j3S*hx%$?4oLFnmb{;EZ;6=4ja3-D@%Qxiqp63ULX5>9P@G9$9^9Nd>o=EX&}|l
zq#vY`sVTBUVLP*Yf{NvEm+T|@>row!xhwaCkCT)g9{y)TOd*$&$an3K{`qReIqTyb
z(GHLw;5?boM@oP~0WSLZ%f~ez*L_^_ahW>b$5kJ^X?}$aaA($wy3)>2v(pcDNU5|e
zT5iAL;~$@%yKz(3-fo9-fiz3!9P?7nnjJ#^FB~8>KvsZafl~VjP$WRn03S_PzK@xb
z7J$p$nE}!RWCUvYZto7ca!Cy+AAYY!s9OSL2gnJK8z>LX+>N5DT)rUvn}&IpbzKkC
zPc0sxM1U|r6rf~)QUN4@9iVi8L;y2@6<|}9G=o*_RMd;~hB#S;!zDv*Z8!mv0lWZy
z09t<Fe8b-<uEzQ7Ky|<)2=JmV%i^^fro;gX0^Am$LVz*>$_BVKK=}ZjcS@6*Y2|c5
z=A5%rcI{NhnRunT{9{(d0F?q%(O+*5P&q*DKc!2H{0pq>PwD@s;^A{)#_U^4-W8x~
zfS*FN4RLpXdjf0@uqD8~0q$dZfVKgu1-L)Js{vjMP(47601W~(3{W#btpE=Pc!cl+
zJP_a^Qsd1OGCbkeVg5hmhd<@P01NA?F6j2BjQ>*}4Ny10;{l!su;EWdB|h~6Jf^Wd
z|9>g<0~Ft-z7FqGi1t#R4A3aR3nWf}rvf}3;Msr&{7`0>+`CIzWqc;Um`r8CgGHVv
zi5|1=>zdzSm++@-)|}Lr0=!Iu&}k;8rn}^o0Dl)GnrZm22Y4gE=K;PT0s$Hact5}g
z0p1MoR)BW{ycgh=ZdQ+7>N@S)0p1DFv12J-aAtVtjPzSR&#w1HIxp9JNM;N0aez+(
z462hcc9-yvfdAdJ(B33Kyj!U4KMn9%fYrO?#4btSty=eGfUg4l7@%o@uLC-0z;^+@
zCy{HWeH*Bs#EWNh-n~W5$+<sr-){MVJXTgM&I}!!(kwvp04)NvB&jvDUv~=)rnS<P
zY@@^00qXQm&-f<$pr6l6_bk|sj2B>HfJp(`2j~!>Pk_E`RDezax&-LTwiiR^0KWvB
zO(}YEXdALy*6$YXO>ofpEkHM&-ZMb=0Bj?r>E>=Zv0His=y!h}BP`V`!1W^1TZeq@
z7odNDp#g@mT><uPDKwCT(s0&IR*PeU0}Kg3*Hk6;sN%QlaCm?b0Y<ZP1Nv8$|Lu`I
z9dbtMQloS@CoN|zDYi$(1sJbWy6lmSy6gn9%EM`uwKw+30j3049AHU+sR5=1m=j=b
zfaw8d1eh6M7Rh)m>+~L}-6-eU+;nQ--zfrnWka4dTZ1J^&R&@pU_P}6SvtV$dljBd
z_e%G@GHI`HY5I=<yY|W=o&UQ2x-`JD04oEm3a~r?kN>Tp#0^i$-zRtPlZN|*Q{2@7
z)&y8jap3xoF3bJs9{UvVb^7%)9Urq#HWJ!CA>(Zd)X2rftE~aHQ9p#J5Mq0P9RU!c
zNQj*Q{tR%A>X#@5*d5?#fMWsnkn#Zz1USf0gWX3B(?5SdDcmUY#y%;CG7kmHbI=iH
z_$z1Xvb@6@hy4Ar`iS~xJRaagfRh1EQOe5Y@Pu~N{qoFyIUV2(wbP08UHj$Z{c@Is
z+Amb3o%HJkD*pig2DlmEuK<?<+z9YbfXe}{?pH0n8sG}0l1lY}R5~CJA5gAfuaSAk
z;kTr5eBm|W@{^0ddO+GAP}}`?XXU4aC={xr1*su!@1-U`g+s-z&rVTzuC1f~@`{E?
z3sEXW=@985GD75r$P1AfA}d68h@23`Li)i`!xnEz-x6Z!zd5512*V=%QX1WD-FG@?
z{sGAkQ9MM65G6yLJs@k-Qz!^GAJ3>U#pErOk_V;sK}m!#LIfeg5M~G~gdM`sC^b8%
z+9*2S{h;hSC`kf5BwmOs1(~i6FCP>?#Hw8>JY&hsQHVH1L5MP;a{E=`kkB+K)60e^
z7oy%F`TUUF8e)F6lI258%P!ofT1m!-A1?Y>GOJ>UN+Dhh@e(N$qH>4_Lp&6sN{Bl`
z+#BM)5O;>Si#k8VJ)ydH#+@JnuNvZ6C>nM?q!6BUNY)&ZY9a0qQ7c4kjeqqJ?L4by
zh#LC!fX;dKkkBIN10lS_LZfyx*-ayybwWITSd6=J9}e+Ihz21VhIlkYUE&|&F<tzB
zhvmVOs$Jh5md8Up5rX@Mr|wAWdRXd*n31DY-?GE<WQax~o(l1FNUI|`q&(AW*R!4>
z!Xdb@wsAq;a~k0DAzlb^@UX)F)+(w|rH-ih%OPF~(ImvDAzlsfT8MW-yc^>65O0L|
zC!_G2y7;?~7W$u#aI3d*h>E)GTRP?K5d0Sy3N^aD7vlX8A25Z4JtBQtThw4QlK&9_
z9ue+|Fwe&!J_*tKN@hx!aq3nz0)7_a^AJCT_%Xy6A->dLzYo=@^p%c(8{+E_-|+b-
z_uC`V{)q73?Yj^Ij|d++dYFGi{T(z7(JVys5G~lnb<=o7l(lnxyQK!gE!x&0T7_zg
zOTpQ3MB3=|es$Cee7g`olPe-rj?g|thY)*0><!V8WDGGo#GDYFL;MnAREW_behtwj
zMBfnoC~F~p3(-47pAg+bbPv&!y?InF9TE4a^kBgqMJJZYoHC?jFH-fWx}L-Ef*!w`
zA6323Kg56#LqiN>qe2YQh@Chpg9+-W3<)ujrF71wEiJ~|e~>pk#E1|hL*@OaA^i{)
zQC;78NFi?Gj0rI|#FP+ILyQYCKE$LDlS51h@phcmuBN(UI8j%@D*)f<L%BDON|j^s
z^f8$hVmg^E#P3R|(>^^WGuS(;a%SrMzaCTAPCF(Wj>%zK2s~}h4KXjox)AFrbRiam
zSRP_Uh=n2k2(g5EBUCmJ7E!Alm&GB@X$Y0HLt&2HcV8%4`?;KDB=3dvO2=g-B|XGy
zN+0j+92ahcF|4~wDX}#n)`seTmJfaWZ3wY3#15+T5S!SiA-06r8lqa^v<An8GYuAb
z?YKInuuWsWoxO8h_%NN%pCNXI*d1bct+d%Xano_NAb<Y2?4#ZbQ8YqYgaZ_r5SKz+
z4snPg7UE=xQz4FocqR)+LmXqr?MvrmCg+444{?IrlBw8<_b)j5KeRFRbci$5jchm-
z;0fWWn0s|t|Ad?mae+!~gT<wfA|It(4DlCx^ON*9PRREsq{|7p65{U=DG>_s8LedJ
zYKUtgZp_KOPT8cSq@~@^ts8zqb{|duH^fcq6DSS;<!Ticj*uDw5sE}geLX*1{be6H
zp_V&ncaeJ;yu*+l(SaAN2ofPPLRN&F2)Pl8MYttGwk{Z+l(j>0YUW!{os>^c(kpaY
zUWEJzr6QD$l&lqx)b+Zumr_eaC>g1>tZpY|@<}D9Gy#{;K#U0gopPs_VKY*`h8z7a
z$By7cC=;P<gk%IaLKq>6;6+$`Qgznp5A*y8frha4q~x7aiE)Gqr{w!n!aJJ}p5o}N
zTKD=XDHq|^NbS_z7Aezn<#l?E{W)~f!AaV%Q&J&9#R!#jI?W6cAPZKBa0jJ6LWc-<
zMz|}&TM^!lP&LBc5uS|DD8fAv?v3zZgoh&B7ol2&8WCzn*l<ejk8oXMMNri><Rhn~
z787SEzI`A<ZT;N+PH|3P>gWti4^PX(5gv)~ScJ!QA~)P0jZinj$q~6Ne^JYl^>lj6
z$8(;D&^bG&0l%J>`Z|$2JIp|iZ5Sz@VdSX@Pe*tq!mAOUiSTTM=OR4MDk^2XeOfiM
z>1lZ(!iy39IxT(djF%$39HH?2`MmALxf2~>{Bc@#oR-%jydL2V))Ha$={*08R6V1L
zH#{SaBfNV?x}1@lKWD!gfnmw+);mm$@Lh!OBfJ;k{fO(;_$<N)5k8FYQG|~p@SyLg
zGqUcC5;6YqeG-BGi|PFI`Wb0LLY<NPv+{X_FCu&u;p+%rlG<lw%HGVk&&rc$Rqd_L
z$~WxvEo!_Nb5_39L|A-Qeu(g6gjNw+le;1`i_knmiwN6!&E}lkdQNuLwyK|#mJyyh
zr{Fw0P|bqcMEEH}+X(G6oKFsCzjsb8*#7osc87B^_?-M4;rDYwQzRWDbc!%B!X$P<
zgkK``k1!y@uMxUL=pLa*gsu^Oi_k5?u3;(sL%DHIXhny$Sm%Y;1A9j36`^;8KE$wG
zJ|}5&4yp6=%y55@(U&96dFiLoc>KJ=a3C2t!srNN*s~Fa=ue{}<%w*lmbDQPhD8`o
zYU}(g!UzwWjg0W$ku#=nt#53EaS?u4RA@Yre?=Xw$>@>IHvW2ECTN)R=cG)IFeSp0
z2umYOjW8|3oCtHtGs9D-lL8TDN0<>|CL!p$W>Golf5}7o_0bk;9hGOl=V^e8D6<jf
zM_9m4?3%uiD&m6tq2tWPIKx?MlzJ?4L5@|imPJ?|VPk|%l-39<Bdm$AmTlaYK4Ne7
zDvH<zS*;=esLQh8Itu1j3eI|pp8iBLp?qj?a&v?&q(Fpi5q963!~MG#c}}=RCVwTi
zQ>~R#!*0bHX0PRi{$x*4G%DhSir5`t4?DCR2A0F#2>U3EW$;89?5FaNP_6*C7T{on
zLu8d0KgT#sMMo_W<E|J-BOD_^V&uj+9^nM_UWC6XzwE3CXCj=9z|&u+BQ$(bX>UHi
zT#$1S&PTWq;iATW%mrC~L0bEIeJsLdop>q2=?lV#MKHH;>fFLtBV41j#z>8EJ;IF$
zDKQGg%7@WETG#!n3trz^=%$Vw*{+mN+C@oUpdvo6pT#H=BP~XHtoEQEy{K5CX#D@z
z2Qp%%FtcJ5Bg|N-(;|8defy%q;g%TLI<abv9NtQ6)-gXXMt+PqMnR0?F-pX6VkBdf
zj8Q6v8N<@~OUK~hu0)Kk?<ooxG3Gp>1fSuvJJKZv*QI|NlinrDv11C9n(^{+V|X$A
z7<td@#h+L$e5v%(xnYb*LvC?V_%N|djIuGx$G9y<IsNHY9ZtF^IoTQi86d3?qhgH8
zF{;G4wmIkA#jHv?&+R%qsNwvr!#i{e!It_<s>ZlG#w#&ijd4$mdt*EiqkfG0VpNM!
zBSy^__s6KNi+nauT?f1KFNIQ*zob@-+A-?Js2Agb7<FPi8Uqbd9*pr&jE7@95~ID&
z%>0aSQo5ynCMSxFjMeF!D)0u`W9+q+IqjR}KOST8Uvm5}X%M4fjAvpz8{^3sjbc0%
z<7wTeM1W&);Y&)DIhTY-7j~A-e=f%JF<yxAqQ<k@B_T~zrFC*UJed2|XW1{sc$xij
zPu4S+<dGryuf=#h##b@Ej`0SI#P~SICovkwcr(TaF+Pkj{%O@yZ^fKX;++`p#&|Er
z`x<`!%X!?2;#Ur@pInlbm!$V4^*Zg6e8jTzvp4D2CNVyZ@mY+|32k5I^2RBzBr^JK
zD%!c9`2|URSrz$G1H7p7e-q<d@=}ZzF}{oOeT*Ms{HQau{~`aK%Tj4??up}ydAP0L
zG)6Q1sg;J)GDfQytz)zyp`KKjfA~RhE|&JYEORf*PqDJgvH7yJjlqy#+sEh-V@Hgg
zF*?TR6k~FXDKR?7_$5aF7z1MbN_LIWBSug1c8uR*bc@lQI$>z~Q){gJD+&&u<Vbbt
zp4z@wjNUQ&#^^_C4^eI_`^4Z?>-st;eM)lu>c=apYX-&`6k~Xd5ithGYDH*BjG>g%
zE3){CP|=;bQfQcNo&A&&ijjm9V;spCEBmOsugK^aH?PQ;7-QLqYqDvomyc9PpAf65
z+G~HSf2D~rCdDZIx5ATQmA_?bjA=1e#aJC<dW;z{7RLC4Fk{Rjd&HO<<9A&zi*U_$
zwvM;dCQV9Y<;;sQU#D<mg3kgSZ=&HZBI{DU#8??)NsOg2w*4(v{+4Ar&vG3O);VYC
zF!w}BTF&2|Wm@0nuZgiX#wK=6jCC>A$Jh{Kqb{<qRrc*yg}!1r$kI1Ab=ns_^Eq;D
z(O<Wc&Sf%q(qo%`ZE#h#$6&|_&z~`N#kfjU5My_YJ=ESYPLR|w_Qg0vB_CsdjA1_(
zIuPTaF8;)+qMS3+k`Mnr*!&~xXq|pchwQc2hvYZDDrE0ASLI}kQ!&oRxDexXj59IL
z#yH0!1JgNk9(h%G@^JZ8b<v)n4qlauG5(5iDaPd(g|Ep|+j9u#KOtS3w64UUo0Y$*
zyRNDG@(i!XxWPfE0C@%YC&s^25d|n(02*kz86%|tg*a?o%c^@#3Ku9%4jneCWu^XK
zgo!U*le7Y)7a+R;IXXR~09gg-dQCF*>!;Tgdc_KGO96Nd|G#mTyNygNGFScV^SWz(
z0g4wOQ2?U=B??fo0Hq30x&Y{uGvb>1%UE<xE^JIE*YTbsL$d%@0o($31&aBFW9v1s
z3zU7oJ^xE_3Xm+o<!kaoioE?$`YqSRFF;U$f&!E&Kv;mN0I|j`zAn|T%M;f{;d5Q#
zS+)RQUKeg0bUkeG^gH9_3vgQjW|Axgs8E241^Bc8pB11|0d6nA(*<~@0F?_+r2w@H
z@IV3XU^5F)tpN8I;I0BxEx_FcxTgRet_u%~&eFBebilm@`UF?8w3S)7uRt9VW9`)o
zP@@1f3s9>7o3Bf?YB?17MuW1?URTRF?hR#EvrYjXEI_>iJXU~*3h;0N>gu-8YFy15
z@`#SpI?AIu;y1U-7NqSipYeDBo+v<r0yHGfH>7?6=q#JsgI+&a@0T~^$pY-w_wgGQ
z;3<MFow4KLjJIyfVdU8YJoo=-x(+C-Y9_qpV=L_2UCP4lh7Rxce&5o2?;^b_KXw$b
zAc$f?1yQl0f*l1BK|n<j1RIKo1yn#l5DQ8NQB;uff63}O_vFmYolGW^$s{*rlEfuR
zT$;qtB!(q%aS~&a7@ow4Bu1%>+V7UbgOQXKUC2HyB}rg(5*MkjkDie+*T0n3g4b~-
zF*b?qXUfg9<x5^jur@DC;_@WMC2_Svz9NY$lf1?SloC&9&i$ik-mt{OY8UY}NsLco
zLJ|{|^yYk?7=Bh#K7Uk>=bt<)$7a_jaYGW1C-DTUGKm|LxI2j%NlZ>+3QL{DZAsje
z#MC5iPU03S!|H++XUngzQT9KrCYd4IBsDE5|Hn(#X5OB}9Z9<5#+^wVI$Qo=clkS<
zcCP%(b6Iy$i_VpEnexQUv>DCPXOg8P9!%n)BxWUXZxXYUcpwROMjN!meatZ{`+k;P
zc}}}&N0whTF)t&t$2rOW!)!0A>~oTMQ~{5jlhd$!^3cCXHoeD^SgtVVCNVFGg-N`W
z#FI%pmBjN&%x5l1JfjkFgio&^&$3)+vv_v<xg<V4SAO<fxj0|`<AJmnl6WzR1qzd!
zB}kcvCK&cRU%rS<iMb@PB8kOGypqI{B$g^UbAqMj{yJBmFMl<O`_C)K9mToJ6p_2q
z<PYX+NxYuK8%cDUlEGQ)YNzu{-<C~#C6)7B`I||+MZ?lGdv4zxJ_J@Lv4&PcLsbp$
zB(XM$14$fAVqFsNQa6(LHi`F=ct43Rlh~ZZ2T6RG#3xB?OycmbCF_&mU2-2Y)AQvY
zsgQYXQ2gvIkbg{{Cb21r&yx6@au{Fs&H3`<=gTMOmsQs37YZ{kO%QWS5?`^cC9zdS
zeobmfT(Y!OS6^v7w<YCzCI78js+b)~?4-3}WD>iQ_%4Y(NqkS$RbO|r;XGYHaq$m*
zFEyuH_Kz%Sn)pExU#M`RBXT`-UlPA0@oN(M)u)^4X8-th&g$C|A6J$BZ+V>Un>2BV
zg-zmA5~q_mlEl#@{z&3v633D_p2UeHeow+mm!<ek5$U1eQR(8Ybn%jc|D^p{nD$qa
z>v33}F1Y*pmvr${heVSM!LH$-B+ev}p&?Vl*(A;-k)|PC!}%oc`a5q}hTwWimkde&
zGFPg-U%iZzQP5CDLzaeYO=@Q4g~gLHM2;pqCdTAy_{WiJVR;JSSw*3mh5`+q246!$
zL!pMo8k%S*(on3ST!YY1T|*5Gr5egK)YP!*RDLZDB^o|f6h?L|uB`~x(Lng^_Qmy%
z$eUhy2JKLW$juaV{!>>&Jq-;sG*p=NHL%iYLd*Y={4~<!{w2=T(baSPOmSv!PE!p@
z4W<T5gQnrg-)XuALqoevK~;I>s>IcqviNDOa%@G=(co(MWo#h_3Ev-)UcqN7gg`^c
zR2tpSBGM3RXrZB{hLpzZ$k9wgbCvv+OtDp6Ps7pI7nx#I_XLM1tu(aO&_+XB4f`_1
zsZ7C{jVY%SJh#ZKiy($gDCnS}qlRu8y0fyDq;=BJMMGEe4AEHwmrIDrhtzsN-1<v?
z4-Gw;^}@7X%r}vJjUqyWa4*Dih`t*7X}C+r-8wGN&|kw*4aYQGs9}JHCpA2!VW5UV
zl%9qu8U||^qTx~vmuVQPVVH(d8b)gvt_n4R)uG`uq@W6`2(5~^xQdurMeqpcMH(*F
zFh;}Q>G?c<NQ8A&B-;NpjMZ?7hM&}H?NrgZD&letS7^9K<E2!%Qo~gm#%Z{k%Agix
zH+`F!QZ?~vO15r4OA?u&VWNf`G)&TP0jgfB;d;f-1;3?V#{y;v4&XOWkdnDklPz(a
zO2yTUm08(0X_%_vehsrV+^pdi4Yw0V!!#=4*tA<U+@?s~+(C{39?BA{&le0moS3fR
zP7O0P+@rqoa>Kh6aJPmTtd5f0%0V&#HiX^Pq+y?>;a&~*X?P(^ypttn<&^g~5)Wv2
zP{U&y9;dDz$$Ut|qZ;OD^o58=Sj!C(<IiPs@zK6EZPmE6MSBajD9(TGobiN)xf<qC
zo@Zoxytz(-S5`edu7pPbp4RY;hEFwY((tT?=h%ESyshDR4f8cD*6<2>(D0&$1sWD=
zIFKdSSMK~KhrZKaQl%))mQr1$;brRBH_|l|T{JUhiH4;bUeoY8c~<UpUe&NnC25u|
zmTOp{%041nOvn~2`x|UcJBr@a<PN}}KPy|QfnlGsS#PN%(^W33HLTI_frbxh|23@D
z@Sgg5wozi8CLQqd>f3i!%shqvK25~Dg1;V1AF){uSJu-eXxPB4v&Ba&wZh?l=qD-(
zZzLzqMg`N&+GiR**YLfDy=*BOzSQuIhOHVlYuKXUD-B;O%zfD+nIrn}$&edYXeh48
z5mbh48ot%AL&J7rw#>dKM@s3khWR^Hs@)oPY50z9L7m0Ex49hF?$JQ+b3<Dtc!A~*
z8h)g-H5{b2Qxvoww3Dow^(Fh*&?d=xoUdqd&%=I}Wr;MQx0RNUu7*Pz4$~-U;AMO?
zN3=HF+`B4Ae4ZnyV8=E5MuVfHgN_p#e%DZ2M;#r1XgEm|ts_gvpBnz6J=f?<pB{Aa
z`X}jUHJqb_*<fj<S*?F&RZJ>8!zNHOyAs})BY4N|!EGg(x#Eq1`RO_`bY$v)j*?vA
z<cf~Dg4S<Lu9%i977moRl4a}2p_2$5g*tL|<msrUgKi@p%ayWPoGbEmRMll?@u`ZL
zb}sRhvIalpiXvTZ1+1Z?rUHr;T6Gl`<_UhHGPF68S4+i|sPK~=MWs5;0&E?Q4*Fyl
zI?tg%(@|GPJspj7G}e*!Pg#8;^et<k!_1SMG}O^APw*j3|6NUVT#+a3JYSnC$`@zm
z>pBeL>#$hxrg_YrVy6kcRi*mu*Sr_=gsa2TQK6%m4xeo62z5j{KF$+7Ov;n6RGwJJ
zk;e<p<w;qk6!GsBh32fUb{Va8w9(N*M@t>O)U})Bp_M{wmM@0p3yuL8(^kc_Q(=66
zK}Q{(bd1$;iH^=Xy3l&-=&z%zj&3@7l9Vnl-QZ;q-F5WPF*9HAx($;0e0@=G9es54
zr37@W$QRt-m62EY!K$*Ui*tDXabv#tK3`m@V}Op4I!3W{3)2Sb7@}jSjzNln!7BVa
zUrLY9Fdf5nJTkHHu5?+moEaFQ5I9RSTE|5?F4i$dM`=~T&06eg>BEXU33=+_e>yjx
z=Thu9EzG=B$7MRM({a6y%UK;duF)}G$CWzP7UL=%<M?$?4i}&szEF6zj+?$ubge2l
zhNRb{2|6a~;9}XeI!0F&JfQtVRVg?AD6z-9LB}K=Q+3>|<3=5mbxdJ$9p6?J-2F?2
zPgIo!VM}KP?O9ZEiw@q(ce{=|bWGE6tB%`LamtR!k;Cd=rIPT1DxRsC&O%iacdD-w
zt4S4|K~Yor4HOx;N5?E3n{<4p<6a&2=~%4e6&?5Mn62X(9nb1`K*xhRp3pH@$3r?E
z)-i{Tg~C)cnbAYl#G|YTwMNPQg1cUqR}+t`uOC&DY|qp2q<Vc?$M@C5Q*7NT{>%%q
zzpGgwXrP|c@w|=&Iu<gQM)~t~yrAPnwweO*aDm`&&I>ABTObL(q+^kem)V;B%%jIS
z#vFRH=63aI3F}M88XfQGcvZ(T9k1(nL&tI|k}lT;Uej@mn2GFVjk2pJgq;w>6JjOv
zZJ4=A$J^9N9Xz)4mSXtkgv^dz&uZ1)&$Q3JCMUmrLGD@|>vVjmW4(@db-JR$lj-<?
zoF~NllvP?bJ7U@>TEa267IG)RM~WKz#824n6ud!&2U60aZdC9CPZoTt%l{w(pX>NS
z$5FDX<4YZzb?nvggN`jazS6Nn$4(tz>-a{;Hk#9!X@Au!S(*^sleU%2IMV;Xb|y@S
zZ%OA!9!L0GjAll=bbO~{H><U7_Jn0QhZ2JO(28c3?P0y>@-nq5g@T6-f7J1lj{Q_u
z9Y5>Xr{fpu8x2>Xl*S#$@&>Ic?aKwhT{(RV#m<v?oP9c|<B*QSsvztXURhW&_)yjn
zT}~QYrcxc(@tcnGG;{_|==fd7DIKS2|8<;XJ90ArR%!1o6eU}8{?tLo2!E+?SeX5a
zqVSK7GYaP{m2gn4&kMzYLNUFtyq{Hcj@7p(jc!iU4P+R|Gq~`9Oam~GYsmIq#gKD=
z*#>e9`KO#^$a|nDs42;uYDH2R%p$?Y-m^$lHBik!fq{e}-Fb0~Z%*r?8;S&fIawBN
zf3=Sl6dR~+V32{q25K0nX`qdPwgze$C^29f+zN%-2I?4SXrPgSQUhfM>KkZapj`1&
z&yY=97^rLTyq;{}d<f9vG=T?-q#a&eB<{~GYiyv2fu;tM1~wN7ZX-NShPi#HSZIda
z#oC~2wr;>6!^*)CKM}AEI0jM%Dh#*=JOhD&P-X2K7+WlOn#n5`<NnHI*Bp_DEjhF^
zcNB}*07DXKW}vx&mIhiGc&u2oP-*!)(CwTY()=}|h#KD7z&pi)4Ul4NXP~`-o(6gu
z=wP6ufi4ER8t9}F@>b~1hWz1Ti6*^XvaeXQOro2C?gn~r5$f9V-iveSQ|nx@s8d~x
ztuA^S=wskQ0|N~7HPFvMe?u<M@g^7Er+I;*IqkZFQ?t{jSC`!K)XzZXH6?=^2GSQ4
z)34nS149i=HE^?mVFrd9xYEE?R09Je4P0zsjDb-GMjKf9Mdn2YF4|eZYafrzE#@tF
zuT&QsNLJ-?xq&MvF$0$vxYWR92KckgALpM{zEx_-+<AzYVdENNXbmyWz|{t>H*kZ2
zYYdDxFu}k?Me64lOQzHiD{BZ2LO!V>u2nj)yN0;V07FukWZ*^vlMPH!>dO5UoN(rh
z%}pvf5t21U_bxK8TMSGy@Q{Ir4X&=@HiJt=m}%g4R-b|C2JWOZYD$_dmK1QPHln8B
zs>fYa)U51`CV6)oy!Ksi;rku}2JUAqb0+{vDR+Ey=sGkX_Zc{%ZrYu#6y^Z~53=pl
z6l^toXi^?A@Th?&49qn!he|?iRD8at@@3Y%d~<6}ak!?K$L40>8C5|UwZv0w6tzTL
zOFYebX^`N<L2Qp&g4<V~H!$Bop^YLNFBo{yz%CQtnOI<8p@H5e`j~jhz#;=j4IDG@
zvVp}0HW>KCz$*rp7<kLTDg#RmylUVz1Fsucrnp*eU<IXGOWamViiO*fpH;vcQ~)BE
zX1;02?KB%|iBq*i-#Iyn5<v}r+rVlA?-_XCz#2tooq>0$_6i=mpkyu8vP2LVTOz7I
zUplQs@YE;ie_-H41M3Z({zd+k@Oi96ym~b2BLg3+w6B&(HZ~gg)WBW?KN#3#;4=eX
zlMMr(8~B0^umGDC^7<0-r2@X#leK<F+7<<WW$-pe(f+1vhFcA6Gq8t?x$4t)13L`t
zq=Kne_Cd^Rmx1r7X*5&k<k7_sn&n*It;Rv8eARyWms(s~@b>CMiL#d`7yoGBCj<Kp
z95C=Rn{&I2eFlCpaB^3EpW5PATBMVb0*ySK)IIe|+CiGQwV6i@-2GSPA-4KCg@;wX
zgWAjg3m&qV-#-7if!}EEOw==R!ocqa(oJNT_=98(oH20Lz@G;GqQngRW8iNJ*_Z2>
zG%u$Vwd-q3iP75_2Q~!WtS!zNIIljXnQ|hR!-ik>XT8<BaC>c0vt4ec37Dv5qQpcM
z6Imv5P2`!l@^D_ZDaRP>rjOMYIVLYJ6V>X7d=phobgLt1nPtCVqQJz;4F%lH6V(w3
z6OEhI;8Uo8A{7>^u(}FssIaCAr}oIGZK95eaudSDweOXcnz9?Zr;aF7z^FR1EW9Ic
zNgdJjWP-bN>YHd_qNRyeCK{S(WWqNQkeZ1mCNvYeDLYdd&!&n3lP4AMK^<Y3Fip57
z*n%vI!h~b;ZXmH;<w8sX9Aq-aQ%P!-%G^T}k%{IeT9}Ace1*xYPejV({V#%tuoyN|
z@skw(Bc<Y;R>(bvuhlAVZK92dt`wJvwkFz{Xm6qe+i9ub(gy2-cfEBqamC)U&Wi0$
zicY*zR@|BNL>Ki+pu344CVHCaW#Yq9+3S5@D*7LlXiK^moh+6AJAF;`V||%;*u(`U
z`kT1k#0@4cG%<h-laz^pCI*=pX=0R#!6t^77-nL)iJ>N*onJ~1;Us933ErPF!UXk}
z%VC_TX;miWFxtdLil2*BIJQjwt}>opdZ>P5O<ZE)Y7^I(xYWdD)E^U9QHMvDU2e+F
z16MFqeq1@omp@-?vZj}bS638_Gr<L~w|1wGH^CW_2_`0**fq7de$)JJUzc4=4kr}M
z$|}81WjaT3GRee^CZ?OX)5K&GQ%u}qVw#DY6b|nhpGtvyxhu*9wfANsBy-q0Zl%Jk
zOuya49VTuw@o|};#_|(68T)q5_lojeChj(IFIh4%!^BKhiiuf@Ec=%yR~2y*p7_*!
zPCfC?ulr58_3l9voY|Od;=$$V518oEqWol;V3;+!*e(~3n0VC08WZoBm}BBG6N@QZ
z6OWsC!o)L_yotFc=9zfX#8Xs{a#_El%LQpNucsL~N7l>j<+2u@qxPDZZ{h`0j$r9C
z_8ArbBI&$PzK~|0Rd70U0WHRM=?ZC)V*X_nt}GWv%H>Q5=`1m^)WmBhUN`B?9Lr2B
zH?e~4NC@8C#LIe!Q+WYXM<FhnSnvkhxQRDSyv5F?AaRY5%seZ^Did#0w||i9=BrgM
z9AWZ#OChW^vChOM6Q7xQmkd+vCN`LO-^2&hWE1O6`uP-Ba<XWD4*%My#vc)RLHa%+
zw)T)c_$P|yMiZZ!^l2%2y;ZPaMG>pDR$bApuK3)<7bd<o@r{WuO>8!?#l%-s)VgA=
zmpknS*+BS=tDil&uHYbHtBGwUPm1AN5=>7#SXY)}eqFJ}N^m>G4ih`sG-gY&)Aj$Q
z2lIBD*kfX<g_|vWZ(=Wvh6TsM4<>%3skD%7;U^P6oA`~YZepK_UrZb^aa6JWtBFG<
z4x8A|#`|;m0TTyJtgS1)sw@6cS@W1DeQPkg!g`XEV<wKPgoJsI21D+x{hd`wHM5Xm
z;iQQ_O`I`t*2G^X{-*g-_>EO^{?t%_r%n9BX0BpLfxtOs#?LFvY~`D=Y<)qR1%~75
ziC)j8XIg-T)xXPv(+zbM3#~c0O6IVE<XFhHP)cMAc^2|5)UZ&~LRAaZEEHNO;;Y(o
z#k2($5|%XJ)Bel7*y0}1V%`kJKi}#Wo~$Px&daT3p~OOM3w11TMeOo^g=|f9p2=p#
zwEz5=;MV$b3&KJp3ym$*wNTGOeG3gNaECl^)~4oftd`(EAcu$zRgOFYz_d*)G_{bl
zpjq&?m8_{JxQof}QLbBb_aqEfVzZh9K1=XWr)j~m@L5sGv3i0b>I;`iEL><|fCb+|
zV4;(R&K5!ok%hJv+F6J#q%1VI(85B6%C}v8$#XLWTlK}73G!4<OA64EhPsuCxBJTe
zolhI}O2;ql70|&#M+Ho-FF4TR)s4K^eOi~CE*834=xL#sg>DL=yM-Q<Reh1lE+zd}
z>kD3q+kA0ZZwq}a^tI4Wp>g7o4=2MfP_MPsxPtliSFaoDi-8sfSr}*GY72uc46$&L
zg^Mi=wJ^-WNDHGB=J;bd!!6m3j!>^oXZg1^{G}ZB1taH{ji&yqQjg(R3s+jWN}-Ll
zaH)mMEL>vYy;E|baMszZ%US82b57S6S6JXq=1Q0cgh#E+snI~tZ4{5$USnarg-I4}
zv@pTKL<`qjxWNMb)n9ATcZZblbt(%sYQmKR8?KK~Vf;7JCtH|e;U<gz40EO5jGxOo
zHxM+2S2hs0SeRzv3kzRbxRnf8SZd)_3%6UigYvZSxP|E!?zC{9h5Ie~8^_%iX0q%o
zSKo39a|V$c2pTlzTY2DR7A-*EvU@GO)<Cp8R>p9)g$FD=XyGBnWaUPqO%24u79O$i
z@HMi5KdL^>q39Zjve|MrgTSaoIZu#n3olt%WMLj<W#Kss&s%uP!qaSP4aMW9>wLaQ
z=KhR@XPLZ%JYh}!Ki@#iXO4~XU$n5m!VBc8q2NQzg;bk{VyuFB<2>P)EiAV1iiIVr
zTAAvWhJx!#yq=!^^WRdFrOPZVXZy17frS+;orP5v-nQ_%g*Pm`W#Q1$bP9x8@km3l
z(!!gH6g}0fY$&L58ykw%7S>o;Yhj%#>^myt<!HMVCnp<<#*IY7!+Gyoa?k&JDx^Mq
zXkopDjTSz&@R5a&Eo`vx30qtvF}jg>=(_TmjRZ%tbbrC{>z?I5)WjyXTnnGGn7SNb
zlcfcX#Mh0)iAG|xg)J72S~zCmD+^y+_>m^s!Z#MSTG(k}mxXP#1{S`xu)~te_oTpM
zj|_7gi}J>T2DzfK_|C#^3wvlWER48F_HH$9kvD{nZ7gnWEcRMh*tl>}WAOtkuCbK)
z&ldJs*l*#0D)lcGepSG<s3xxkw{`h<bC5E$aM;2T3$#n^yBB_?(w=B6$I_ySXx>B|
zxA2>Vvlh--IAP&;3#Tlcw(tjyzlFan{B7Y+^7dCbx5rOwBE~e4xpVKXoT+OfZatpE
z-;m}%r!)M=!WqTGZiRE+LYj>{8~HZUZDiQUv;i9@)z`wNqGeOTF1U(~99vF7WZB5J
zr7`c@RD7)EO|MlWSG`VbDs!xAqneEZ8wp#EL%0&ehw*%Pc<qs<VpGf9VjI<M7!FJa
zHEh(hvDn5dHfq@@At@VUZPd0=$3{yVt!$LqD6{D)9hQx98^T6I8;xw#wNcMTeH#rF
z1B(>{XX2ubO~v<o8ps`Vjcqis(IFRxEtduFXq4U5M$$%`vvQ_av!UDE&?Px9P0G+u
zicg;{wrw~zLK~3{*M?`qw-MN&>rT#ZP_H=Z8;}%)ndGXZh;5{7RM=>yIGNC~=Iz_%
zUtx0_EmX`yNx`d28M8V!r}*i#)?~m&FB`pWw6)RBMrRvcY~IU;4mLX4=w$Quz{1Mi
zDXn&=2V14B;9d)MZC!12v(eo~51YFw#FnJkuQ(?{PaA9(vo<8oB}IKr^s&*`#!wr>
zZ1l5nfsKJS2HEIu%ilegVwxr{v@yWu;<7Bed^9nbWHr%P7rbj}h+;lXmtTk57-8dL
z8)H=DNE;6v%^z*c?qHM(S=|?@PrPTDe`M@}d+MTD)#|tSWtZ5v)W!@OGi_XE<8m9<
z*|^@u6*jK4akY(WY+Pl76TIVW`8P3ZbLMcB=_D17w=u!SL`8hQE_mFA_tamjUR&Rq
z&AYU2urbNTtu}76aifjNHm2IR+2-7@9FQN>#S|MiDg1OpmZgmfZ?VBSmT5NUAq5}C
z(_!!JHtw`>7q!L4bTaloX=9zES#;aWrR2NG{N!R5dD2&MU&lQ*X4!bc##|fs+PKfg
zgRBCQRe8;(h-@smGHsS2Mt+&kF&L9@QT1UPkJxz3#^Y4`R3X<C9#u6$0nSmahL_85
zt22>bQC!Wl@uZFUoYJxJl#QotJY(Zo8?C1maMd7pUrnAZr3HS@mXo4~4Dq~;4-CPF
z6kfEkz{WxwFDaHdo6Yrwt4G%Q;<jR5*hhp#Y-^@?S%rLEVq>X|LpBcEc-6)-8yjqV
zVq>|D6*ksTH*CCS<8>Qv*;r+R{@LEJvC_tyY^tWX^SJ^xI`$wOx6?N)XZ7D^`(2y4
zn)Pdn>87w>l|oo+W1WrlHa@cPE{kmAee$e09KKVU?p3BpOXOCzuMcfr7AEZ^)nmp_
zlIM?Y&>JCZVWZ8f6|sk}Ha6M#%*J*K!N%t{zOeC?jjyQ#iY!TOR>1G3*kXfEO-stB
zvGwoo>NhsF+Sta%rQ-SN(rdDJ*w|^~I~%)I+FdjY>S$->L?3a+TY{(IxLJ3vjUTAM
zWYxxxHh!|DFBERtr^j-l9lo_-M)x|u(0<z3Z{vWXb~iIhWV8P|s9yOu$N!OAew770
zV&f<cse=Ls$7~$8>HY#~4t}$7f|l9FpOs~?@ds@Pdksr`WQi~Dm%Z>`HvYD8#>QEt
z52tMWLp$c?pH@lstI~a%o1MQW?VKgf(X6#7<V<NZTS_C{L572D2RRNh9l${q2U!k(
zD{?d2=U-!sic8Bl%9^E+r@3Xh4)Pr2JE-bV#{@4PI`VtsOnUAfTd?b?<46mca8T%=
z+<|aV<e=C=Ee9nIs?+#8sOiYAgd61O2<4LtB>#Lp9_80|P{%>3gEEEC#S!Bi$stDw
zT&5vFk2G~1)N|0-K@&$hhUF|leFqI3G*n4gDg0NWL*PaZ7{1Xlx2c1q1I>Z%;Aux>
zX38dZ=wKcC^dNBYA=yGL2eyNc9DMA+ao{?*#lbWOo&(>(a0eqC1P($6-5hjx5IKk)
zv~|$VLCQgeBd7aXDF&K3XyM?RVl-E;bW_7z__S27^Q`>V4tV05F>O@Ln~rGD<PJJI
z=;X+)gNY9LpOoctBj`p)bav3ykymeYQOJY4$?*w)jyPx1!$D66{Ty82pqGQ*4*EFg
z>tM|Lb!h##afQd~iTtZ0+W0b6e+NhArww#4NRhhG!2kv1x`KCF4R$bupMK9D=AgbS
zWj<7Wjc$~k-2@dg(!nSPS2-BxV6=ma$gP7*C})K^hM|K;6y{o2eC~=LTv5XlmpXD^
z`ehC-XV>ouR?x&Cr<W(LP^qqTK({t)`{vR4^VO7_gGmnkiDA5h2@YO7lzAPirf&Hd
zPu${(iH^Mg;#w8*+AmJ2UGLxqMdxKtyw|mGvV$p(oP@bqMSkLm-#l>>@xLsas$#e<
zMoX3Mi(4Js=HLZp!LJVPaPXjmha60IaHoTr4(@SqmxH?**(iSorMf?>mM_K9%$GxD
z_Q<mw-0NVrg9jY^Iz>u}&wVWB`Mmp8IP;|3Hu*o5s<>a-!xWB#CmlTH;86#296ave
z30B#giO2X!p-ocZj7EvM4xWEHr^-R8Jo6l^Q1MSYc!u!~<~yLH5`N+U?^$x#Ir}-v
zR&BS~sWADeZXg!0c{*6>;7tcFIauW2RR_x)yzF4HgC!1@s?xpU$T1ri={7IVBv26u
z9-G?uNTK<14mY$fS8`iH?Fw=`)+u|<k>_h(ckl+=MIZ&jhrnA7R!KT|-@)4sRy$bZ
z;2pjO#dY*tcDU4GVy<QL*^{-7t?Z;6iM`8qG`(PQAh`PWfrAfKUh7##MY&4*A`XVx
z$8mqu1~zsYMi&Ve8y$S=;E;pE4mLUX%)uV&n1jz9eBofbgKr&tNf9~t+L5CR?nB<f
z+H5Zy-CKe9$^k>d->@Rm%C|b$=3sXq{tN^|#_w>j)4_L)bg*l3f}`JEtmtNCjZR3O
z`6NQoI27GNv6pR`Svc57VUAAwkyc_}+D{Iy3&j=V<iPLIQ2avmaIoLO0m?rVy%REi
zcPJKatA3D%^z9<rpR`Ekd&I#}2dCNIY5yG@ckq{kziIy+oN(~FgFmR-zU;Y}q)sHb
zdAL<1PO=hPWdG@a&nQLb6wTL%>A%&^VA-i%J6<n4Lt{=0?;^*=IS1!y=Uu?Xosr-P
z#55NTqw;hY8Ll+T&qsm}fhy{C;JA{lk$7}$T9ymmU$8O~_P&f<7kMu76~ebi<xJi2
zNK{p?)m&7M1s_r<bW!BOcM-TKX1t3A%*#a$7d2g!xTx)-mP&Pcbei*9I&blFRYHyi
z>$oU&QRbrDMO{}m!_MlHQ23WBxSmU6g^5vdT23KV=-BB*BNvTbm@X_AO<Xi}k#wQC
zSg7#V#&Qyv50Bn_8w=e<vzEn%3ORMpPT6+hxNu!unJ35IZ=B5A+*2+Cc`p8nML|l0
zE_+pUanaR9>>}l&g^QLhDoDgdbNAoF*Yv$cQ_qAa)UJ|NE?T?j<f5~SHZIz_=s>oE
z9C}u1N8z;1Ztuz~sOogA`ReV;Xz(nsDrS?EXq%Ff<TErSy1D4?Vt|W*E_%4=>7uWT
zelB{sn359Z&zJRfF;C(5QOVy|@C7b7<K17$@UunIQgIRILRap%*qRc9SmccvgIx@9
zaVRA+E5sNryMBdeQ6a**817<(i>)EHg&65#6jS+_>tnQwi>N;y?(%T4i!m<#aB-5E
zx)|$XzKa)JT;k$V7t@L6;xZSPySUNCWEWRZyez(pYh7IBVw{U>T#RQaD#X<++M2}l
zjQqzdWU1d<C56vR?I%zf=E{b1or~*T+~8u8i=`E^HhC*YL6H5-$;A6A$+ikH#l=l7
zZgDY931Q{W=~G?Y?8;&Pu?j)oWwc<oy1327?Jn*hX3gxpW+HAThBOnsZz<-nT;4In
zf2F%z-0jjsEIT#Ka52-xeI(-I9v8D%YxC0XrTQVCLnH37WUHh#CWo_KJmBI%O54RJ
z>(VFJ%Na3S4sNe%CQC$ypKm4}buq`qQ>+&kk0~Y}r(jhDaYrT5=CXm@C^zBHbMd6o
z4PGS8&92;3%)i=aTs+UnQfZE!b@7~{FzC#`eb5KZ#EUK#xcJ<~7u0+gFS&Tz#cCIe
zT)gb!4Hqk2EOzmVi{&m>sC<_wC0XjqEuGxc@~VqvRH_L%L2-5M>g==k<?+f$c6_h7
z_>KihWWP=TQdi$}@s?s>m5Wo&1lPDJx=KHj+~U5*#XBxOa`CZ?wJz4V_|V0A7w@t;
zRFOmd_g%cFl2>gm<@14pN3D^R&vwk_Es*Kw^7mUg8>nxbrFXH3Qe{OPDA}kmIf!l0
zTy6tyu9APo$VB$$6X{>N*zDp57eBh#;^He8J6!B^@wJO@sLw98F^mMye6h>BxVf0y
zT#ih(yZDv`SEP21mj8geSWFk+yV$F;+wFovSl+65eRHvg1yPuL_7rd*NbhF3`<jcN
zT>Q*-<l?Z4eJ*}+agYf=Oh4CL@J5wiUF>(!N?qhSv1i!<+Qt@wK=(yC+m;m`p@kfq
zcGSf&HuDxz8pnC=xP>@DR`aueQw&U1@xLp0O^Lj0<xiR>nimgkJp9cnppEs=(8FmL
z|G3EZkmKQui?cNE9x^?gb8+59nul~xRi)C&MJ?pQed8r%WP@4<Pj&=VJY;$JSmnq&
zXxNW4l3pNkJ>+>P@le}CzK5zF3Oy8gJV`D8yQ`_R1s)O}y^_jOaBBL`7UJ=B1;rk$
zmK+nJy27d2Qhu%Jp_YdZ3Z~x!#?<jp>Opv@>!D0xlBIDi#RzU)^Dv~P;BirI>EZMg
z|HA5dsIPElDGH4|H1^<m@I5r~(A0zO!SImupn0;*a&X9VSe%vRMOttA36m^&@_t6g
zgY8L&a$M-7S}s-8Tu&Ow@`P-XfrrpT%0q>R$U{u2J}ot5e@pRgC?zwmc3CqI%{{d6
z&{DBPjbhh4=5S6c5B(OG)@UWm%je$D)7yGzN6YD9jED9tzK1>@`g-W-p_9k;N_6+o
z*+Ul(T@@*-mFUt+TIO-B#J!464-Y*(^zzVKA+-04DEwzziEBD!(@il?7O)}r^KgNO
zp&oBJM1Kz#dKgRrdib!F7{FR+E$AD6poc*oc#Q7XR-(<3+;go2_a~4^E=Jp}#c&TJ
zJdE~m5jkls=CqbY80ks(o}(zws@a^qr`>zAwcM6@ifhpP<YAJB8$Dd&;ZhG*d$`8K
zWgaf~aHWT<JlU0Vz;Fcx{%zJJy`>Rj3{T&WBbu4dxw0kA(#Ct3;Nf}?H+Y!n;oyMc
zYgIxnsuKS?Rpjl88KzzFWbp|FPxdgy!&DD9D}>4c+f537Bdz=v57Ru{>ftsI^lkNV
z^=z@DAis^Ee$w+2rFXlBJ3LJHKy$}`QiiSDh`T+^pu+pe_c7DMJsv({qoAsIxYxr=
z9u|4H&%^y5=6QJ1!)y-^czD>uBdXL7QqE)39`ZoHA}lYNAJj%X${KH%F~`GW9<MEv
zBCS|Z`nZR=6kQwfgkt!rayi1MWh=`|d&<Mp9-i~?JgYlD?HN^%&$8Veta;hdYTOY)
z%=sQ(@bIFC1u8jrv9gWOPA(+>M&bH4f{OiO8=2S39u|9e$HQ6=uXtGEVY!DD9+rA|
zRi#}<PMV9FD~q^Dnq6ABN2Pkr!|NX2^zfFdh^lSH8*Ec;#Y&arlD3laDpvR3S!+DG
z>HTdFt63c?o}UQ3_(<N|wql)!cRhTdQoX0b?9bBQ_wZ#~K~H_O5=8!xV&q-tZN++p
zkkd|V@bHO;1Jnc$8$EnV+eL%pVUvf?JbdF}tB227tscJe@HMHagkRlKz!`?k9=5P?
zwUZq3nbl5An_YHiY4*g;WxV}%n}_WlzV)!flj|uTwG-oa$^nv`&@l3M(t6C1XUcYY
zayga9CH8pu-ori*zj)ZI%<0dna)0pfBa57u|C5J5RbJBjkOHc=7ql?HDhm5myCWN4
z9>|%{CvnKbVGpNhu00&_aMZ&e9!`2V=Ha-96U@cHAMYi8V@cJtv(sLd;&-;$_M*}Q
z`JWzY9O7yS{-)h%Ajbf7C`7+K1n4vQADSr-X+D1(aF#lmhjTQ`Y=-TnJ`iU{d)cU;
zZ!a=@WctYRk?jLMxaj{8*>=nL$6dvjw`>#0@nyeo^Y&c!%j{=!`I^Y)c&Vz7YCih<
z=;x!rN5Y5c!}3w+qsZs&ji~3N*hh6AB|d8VsNtigk6J!v??|JlPcM^q!F+M5#@Vgu
z^u$%iN2xEZM46ADRe5td2(F)U;8E_QPX{4XNKWeeXyBuXkESf(;<Sc78u@6fnEYP{
z@kj?@l;-jl(M=sh(ud|_<Av#l`pTagy%H^veSUY=(GIfbvVAx{+WBbj!}a0$Xzrth
z58p@NBleL}NjMy(CWO8mR7Wa?lQwK(yuP=BoOBe;eDJxTqpYdb|4VD>qm_@=J|?Re
zMz-<sLPyb7rG0!;`r9hLgO83rdiv<)qm%m7=znS5eC+HfI{WD2qpOeKJIZY;Te5S}
zNfPg_(0WjwokZM8O#COkw~Fb*+&hVJodk!w6xszo`ZISQQ+!<LV}OsbJ}&Vw(8nMj
zBYlkWG1$itAD8|vt?{Fs#84{3lEiQy!xX`nRdzpj5+hh6okUq@nfquT7x}oDlIbkB
znt%UJ+2x(Z7=?f0+3f%MxI>{`>f<sW6MbCkBV3k#xsR)TT;t;kA6NRgO5u-F;gbsg
zH5HCmG0bH|7coJ>-*pz{UBq<?zTU?TK5p$IUP0L;U+zu1?uoKtcHxaaI$V-?yo+FX
zlaHxBX8E|+$IU)&AwNE*`<SLE-0I^t1x&~-xm^Km|Hz}P)^!ow7JjFXyL{a3V+Q5l
zMHaT@cG*~FDog_TUBx{LKB~Un=i`1K5Br?Pkqu<Fj|Zv13Vwk4e|cHlRm@!=|7Cbc
zpT8lG`k3S6F&~fn=-pM^*i}#)XLc0}y9(|+k^T7IoOwQ;^zlxBwE>=@viUFqm;s*g
z@vM(SJ`VeM&d2jUKJ)RpkNH$8AFug%-N%bQ7WllM4olgT)@CmBvB<~Es!hGb<kVhX
z1WAEZlLMQNyUOwWE57u^#h*~dyy|ntiEHH<%X}=S^wj=p)@lFJ4BpbkACotHtn~4&
zkN14MN#o#S4O#WEN)@@Ro0QnwK34nqrK?EmCK!(UAi*gn7IUq_A+>cr+H{lp{JxJ5
ze0;*@>ElBm>lFgsWO2{QM?OCGu|e@RK#^T=QTdc^f+4f`)R!aJOQ#f)|4phr@@(1{
zKECv^+s7Usn|*BYvE9eFKECqtwU2KUao%{#23z@SPdZzDY*X<cpOGV<9jtU8yGWeX
zq%x%?r<q#XO+*vQ=@sozH}SoXy)2!NUw!=G<3}I+6a^;#iET>DrTO|<#nkRDrP27J
z@-ZEY_WL;C<Didm=VU``)m_l|5Ezyr2ard69QBbGAV0t{AIE*1q0y!(_Hlv|@bNb-
zfR8_Xob>UhBL3l(MOnY(&^a5EU)WvzxK!%cDHdm0;XexDv<k;59{7nvwR1ks)4~U+
z65#G%GSUL12gnGd-f~kVOPZ<R&PUQIe~yQ<0z6)h>;NUt%i-?*-9?T<;Md$h>J0x$
zs|KhRpge#GP!J#ypn8BB0SXmnQGntA&GO|Y5LzULe4gtrY6hr9vH@xb_~<_l&vX|&
zK2X*}u0GcZP#T~tkiLAm&w)ct{#VuwP%l8k0F46F52Vix{?Rm08TmZ~8Ky029H2>n
zrU8<HRPyRo3az;Os{?YLN(->?Pg%>{f1(Gtyocn+3SbAgDZtbKP5?K+g#iWx@B;V&
z+6U+mAP5i!XhUWKL;>Oetpc<TkfMCn6*LRbJV1qF<2FT;I?1|j5ujy&msAWr$Wd0D
zD3HTlUey%mb7V-Mol3<^kO_AT&?!KV06kguwV9pOr|to|D4=VAZZrsr+IKy~i5_Cf
zwS}8@=M_)Q=oO%EfPPe-o}zaEwy!<`cmdY5-bELvw9K7zeXO<qWcXB8t#yS10}Kjq
zNq|cO3=S|Pz=!}N0}Kr?ERYkY!vj3>SK&*oq;m52kfA=hd{ltZ0miWG>I#zjJ*5CI
zV%d9&i&e;1`LJd;7mOuY<!$mZiaNmf02355R|L2+z*PZwIEcvodWvxYuA!luRCYDv
zdy1(&#Unk%buXr!Kb|)+z_kHx2rwzY0!9Yd*i-!4Q(Uh|ty=Z(3d@aD>0V+=Aor?G
zR+`Bx4=4w!=*<CcA@KlD2bdP%)&LI%cqqVa0d5a)Pk>p}lK|5L%m^?uK;vGbxKHk#
z0q#<gyqg)R(GF!uYE&>@fXi_9nDTpBkfrIf13VDmKE=<{(wzG#Qaizu!Yo>+UP8aB
zoObVF3R59G8Q{?Xb65)jo(OomUoL0wiTPLnrX~G>y~NxAv<%nw67vG=eY?i%_ZOaN
zrKnBGcqYKJ0bU8PB*1e4r^>N_DjmpOQu716SeZpH@q(hpA2enytAppi0xSyfvO?gU
z3+#p#2l%*`tUjh?xHQ140bURAMu24jmMhHHRCutLc%(dcg`&yf$9a`%Wq>yWtP1e9
z!g-65ZzNTv_U5cgv$mRzSM}y=6asJmVQsDp@Gdno#DyW=3%Edlsv)X{_#nWC0rm$t
z5MVtGLV&LWd_xWcYzVL^z-NlcC#?MdpHc~H%iG_0B`$MhgDUAQJ`eCkfGq*OQkY*-
zXR@UWvdwJB&(z?P`9k@qr{&6fQ9`!0tpT=Cya9d)usy)H0d@uWF2D{lFt0G^EvJ<T
z>{PGB-%WiOUif_g{-W-o@^E+AKQ-3<D1W|s_ZB=&`6FA6%K9f2Uf%m(TemO3F9Cj~
zVXTnH#`zF97~l}~Kfu`lhXWi5@F$fvz)>3i0DlBH8Q?e#=~g+UKcOW5TL2mmY6vC#
zyUJowZ?S>7B(muM^R4=2e+M`f;B<h0m}76jUwCd3Ah)Ejc6C9mK7#HJ&QY}jWQE8M
zkrpC71VU5^r2@3<BZt8mA^P+YnJQ%DBYWgN=RZqihs!4?L~e+@5SR9mrMsh#JY&vd
z`}rYOsF;Efi4cB>AVgt^q7daFM2O-L)kD+@QKIsyp~9LWDm$-zeMITYMYUCAX^65A
zbwXtJ74x@9vs0(9%<FvZe7~=#8=_taErcGTeuxGk8ir^Tf?ZphQP`uexVA4>XV4@B
zuP5VV2sf2A4Ur5nqNBVlfO{bbJkeJeAxxE>7s3i*hv0c<=CZRxxf8-wp9nMNGnG4m
zt3E9VLqs9Egy<R~4v`AcB1Fp&6)Z@I<{`d0n*MWNc`E1nF6DoouEQROn}=J4XdR+`
zhz=pzglMaXH}5CfDPVTC6#flW^KV~Ozy)i03s{Iwp|l2_LwT$3-|wY=_+}0*c{hdM
zGeoZt-9z*s+y5)%nIKm2sD7e1t1Lv{5d9R|{0(Kyf|RdS;RT@___bUsM+gH#3=Hv9
zh^Ipg3Nbju4Iw6l7!qP=h|5D<5n@<~;gktUg>rxI2+se97{%J(S)Ldyo6qPF7l+u~
zPh6z3o2zmu&yi&r8{!gbNQlcq)Lbf0y)lwYf%HpBfKT29;>r+Lg_saxVu*1et`2cc
zi1Dn`49OuM_X5d0#mI2L1>)L}%W9JN^-S1Ut_9q<E&uKYiD%ar)&8vP#t@T3+#BM)
z5K}_j6yo*}cZ8T4;%4ebh}%Nk!a7<ZIe%VJo~EcxR`8ui%lJ39{sJ*Q#GN7T3UN2p
zwMt?C6It680&m!vq44hsaq0pwQ-vheyT6zfg5h=j#r+{>hj=8!qYCqZ5D$iUD8#(}
z;*P_K<^5%G9uDzYfAOq3Pt6{7PKd`sJRahO8_S=z%by4_S5*^d3pp=6FT|6I6k%RP
z_p_q#3=u-S9b$Ee=R!Oma#az_Ld++T5HE#T6yn7Y3sk~|Y)2Q$e7T8wNR{%A7m7<S
z6fcKZ9O9J_OF~RjU!T5EY`?W&sY>#eieZwcS7$C~qYm*#h?OCJeLU?oCV43B^$^<?
z&XX_7su}cZ`kNu%3b9HhKc_yOZc@mHU)O|qC&VU}I>g!#>uBdgd>GO}Wg(0IZe{6I
zSTaDo{~xfPGWjR%qYxjfnA8BVK>-_8NV1<Opz8qfsRG7dQTXrx@p*_ZLVOkS0ui*?
zBzJ02;lHFzTIFu0xN>v0sBlwh4PGqH)y8i^Imn?&;mr2-5Z|&tilu_>2(dH74-tNh
zuq(uOA^JzSFv9K-duYKTltlPG#NH5RL!2XKh#x~732`*UPox>*K!}4O_J#O`atpDa
z(jFjd;p$MT-?{;UM__gg5Lfh+6ZnTh9R9Cdtam=g28d%Jj)yoI;!pMIw-A5)hjT&!
zzpIcQ<i^*PZR)QOe^VzZShl!<f|E<#28wlNA&)9A9$t(6<3AzJs3gM&N>0wx_(#Z&
zkP{(2LPi8cs1nKJ%>0@eNjdQ8exz)039=&aVywy-9`MhNkQX5lp)f*zgsKs$MJR~m
zNSo7!*$wk23>4h8ScyMlpeTw^9Ldpa^+>iU8l}WZ`E}VqQ6oal=-+d=yko9*ggOzL
zM`%I(2xSq>2v&sh2qHq$2+0U_Bh-t~I6{+1j*;p|Xr!`k5OEb-&Qp={@hw@~2MYF*
zoaf<dl|iEJAVF7SnkpA(Au4&(nYD^(Hb~0Ej^IQHB7_m1QEv0y2wsGN>Z>1NS$TG4
zKmOf{^e93_gk}-0A0*-k%qtbi@%FN8IRv6FDTa3s5-lUNiqIuO*9fg6w29C@LI;)U
zf$C@*p<M)ePN1URvrqn&bX1=@Md+*m+KOc=_m5QAEkgGQeIoRY&_f~gjL=H~^(GXt
zyX>vtxh-n$R`?{?PsLn7?VT!p!7--hlEeTOD#A+<7DX5oVQ_@05pIq!B*M@Lmq)lF
z!mtR#BaC742qPkljJUf1qa*w=NDdNm2TO?&xQGaeY%Qn!VwDlM|1o}Sgi9h^8sRdM
zO-WHC2aC$7`!0h8aYm*JuZ(aNr5E9b2;(AL9brPmrF^dY=Ux*@kAF-xUeSCqTaNMg
z)Xh)3R>fSW!ki^?NIWURjS(hCn4%)D?k*E@ZJp!8(Td5Nh%i`eswlf9!n6oaMR+>G
ztr2dEFf+nE5pJjcM7S%$-PC6xf6b;VQg^Cwjv_LHNqUsOnJ3pqD|LW3UJ-LvgnJ|0
z7vX+ZaY^nxr3temJfPCj_h5S~=fMa(^zo32VUmXx@JNJ5Bg|3oV-cSC@9X0VXrV6P
zn5*DcJO~hB`C##h;^dhK&qjD5!iy1}i}1X{nXkgVg9WEg-|C+I$6&!74)4}LlZVn4
zL|CXANYx=??~hqOAI^U{!r};@M%WbLl?Y2Byd7b6gryN)jqoNL5mlWzMpzNyHPy;!
zA-NVn{dqmY8{{@EyWbG;(`soel0(EwHq0TS)ex~NLgn!U{@6Y~L~6*I2=7FAkA@|}
zjDzWGBdm+?F3GB|MA$V%a7Kl|2N6Du@Nt9<5l##d>s5(9V(U=8xGQD;iHan0iz($?
zrP|2)dLxe&{TcI(@J+-eU3?MYONI7zgw1Sp>M!-H2wPZ#$8*?DIfSk`R8;!J<N51t
z3VC~kZ^@fF549u0PPUf_dm?Z@YBW^rQaInK@V9!|Jc`2J<a_l>|AeE5ioFrW4;3?p
zik~9<%mx)>NQ`|Eexap`(Im#N5%$x-#>k3sAi}{2ry`t=a45pz2*0t&5soN=8FcQa
zfZh)m98(26uEJ+NEMQ@OX9JAzSA@S6&PmqSP$_55ko+0Rd6IcU1#K*2G7jYPzJ`A&
zK$`a$nK91N{+!NCi;=FnxpUN?CyLIi@N7^-e{P$b%2hBguNd*a9RU|iwI=z8HYT!T
z<iw~QqfU(67<n;@ViYSn`7x@-s20nC&8DHEAePSbP7M`_VImQuFovD^@2HPJ^%yl`
zl&FMcveRif4^}glS0vO@kv%>xV*kj<(imki>cyxZ%L%CR7$Qd97(AECUvHL?ta9rG
zja~zluwjfwF`5n&ZH9@9hDiz+ca*lMX^doyHZj`9&|>H@f*4^8BZe8niQ&eWx=XfY
z>p!mS7(e_Z`#X<y_fVRz;@O8zA0{g5N&67Rh+|a5Xchx?WnY<6INTpjuA0Ya5u<gC
zXOCr4Ia|iq{)8N_wu*6VZw9YZC(Ka?!*(&+$LJBGr%K)-M&}q^VswnrDF&|s{GnV<
z1<xHOy2jFjDErXv3bR{`<*JO^3bPNKP4tS<JH~}E2E^zSqi>A<G3efbS<IbW+)pLB
zK!p!HBD;Y1hY21q=WXVM2gZ^tfk6tvpbLl?!(u!T<G~oiV~mJ#U5x8vjEpfV#$_=s
zk1;yNMKQ+4xFiNoJY5`P43o#$t+-maxMbZk(hk2rz5G%|md6RXK*N}!GYhX!G2>!f
z9plOvSH;qD^3$ndavkBCST@7)F($AGgA3_7gp!{agJ!Ktlfr9NS}wQ{|ArWoV%#3%
zju<z_n5;fci!tTDvQLe1W@ph&F?b&z@o%Q$4Hvg4G`1$j+#2IHDn=j4>Sc#y|2sX#
zoiXl>aUY4qxI4x@3ZI{nSC-FUy$=^NRm{*QB!yWq9zK-Ar8mNSZe&M5fy8*}tpaKS
ztA>#e5hupt7_Y>5B*vpLo{RB(j5#qLi!m?8lhp7S-&e;IG3HXL!=-L;{*w#1bmU0*
zsTfaJvaP}y!^M*d=lJyn&r+q8CzJUxum6*5EK=c%G55UTr5FohJR!0xm4RO=Qidy3
z@|Rh&>a6aP7)xWkNg>C0HO8_SD`LE+=q!(=xn`0j{=cpG^;rG|Fy@UI9}E|~wtgim
z@h|yxRgAY|tYr<Vw5wyhqkuIktgMBJFG~h)-j&W>XYa<?aZonB1H;Apq!#1D80%wH
zPoYK%AI11M#)%le$Jh|#6KYqCJux=M_%z1XF}{hhiDpL;|0>4kF}{f9g6Wqrcv^&H
z`J5XrHY<cJD(o;q%9amr*<-jh#<%1l#y0hpG23J5vVg$O7`s&DcPixms~P{LrN`{=
zW9*G_FvcO;iWooA!pGQ8O{4Xr<tH0#M8^|65Jyrp0t|OOBt<mzP{H`a>GKmA2b9@)
zs&maxMu@{Pj?g&7I3DAu%C558;$@vo!iUxOn~JAfq`7^|{)llh#`zd&Df}68Yoe^6
ze`5R{<5Y~(>Xk96Vi`|wu?(pUXV?W$wqw(HEc%?nNsg4#NKYXng{%~^Q^-t7WTa3f
zg~n=%iLW%y4B2<&q>!6JQ3}N=<SEQ*DHJFmKZU9(d~-;i#${M}d^n*#aiXj+C8x_s
zgwGS6Y~U<W%@k^-IR7Jwm!wcTg(fL9O`%Q-r76@;p+O2|>T5j}60JN1q2RhIq>~oz
za;Y?54gbSwqyRF|_`jGQBSkU=Ed?(HKLtGnBL!Q1HC1S-@N`w#*7$J2&Pl;lk@RE6
zIT=O<DTFE}rNW3zuFd2Vt5?=(W!j3AoSEdZRC5*ILWM0=*h+<Cl+4?v&@P4ct<j-1
z+NaPVg+a|RxH&qe(1~?gfxjxyIfX71cm?t*&^3i_DV*e|6uPI-BZUuA_%MZ@DfCKV
zc?vg8uG%|=J}KOn!u=_fch2dX!h{qirqC~i3sUHx!i6aeOJR5l15y~6!q$;ua0+97
zEdA>>Y5E4GFm0q*Gg1smVQ32DeyWvouIAq(#Z!ArN2D+^h09X7JcUs#U<zrSO2(#e
zkpjl3kTDml0uuNi0ToHIm!xoM3XeZ0o0~*X@mG+33RkCaWeQiN!1#Ytt;xDZ5h3z;
zg-k$Fqob$iYCp80^x71zOX2zyZb)Hf3iqTiDTNzTxIKkCQkb0LK3Ggs_&236RROo8
z_z&{$Lpo`7<rzK3Fuav&sXkT4FtWxdF<pgsr*NkN1~kgK>py^BXQWX1+G>=zVw9lh
zW~IRJ-V_!+A<Ot~``WWpcsYfxopT;Y;lUIhO5x!Yo=V~A6dp<8(NW@YGC#QLqY9p*
z!pBnJ!{q$x^eBEJg}Eti<ptp<Q>c6h6X6+!Ha~?IQg~LujC?MI=M~J#;_HhFeu*rl
zut32J|HCB0>!ZZxQR0VDvh9<}#fsHeRJcTiOI7%43d<BgoKvI3iWFW;;r0Jw)}-(T
z_3++WD`^2ni#JvHmI_y;@OBETsg~8M@!?m7%<G*L)~1jeE!I&>wL0$-4yq0wE#70r
z&9C!5bzpg|Nux!hcj~OC@lWB46uwNM-lmf3Ka_r)0>cd{6#ib5&nGEt{15(A0h?6#
znF>E=tC^TNaeLP06t<+WJB7bLm-7H$rLc<)|FO)kX{p#2wq<y^wfJmJVOt8@Rm`_3
z>|kYSIgBUfP6ZQS%y%>(xwR@&?MdPL6!xa@0}(!~eISJ&6+n2u67^3h{H$X3rSOZ2
z;V1I&tBNGRc*Yz|anrQ~4ySM|h2si7qQavoRO0-W!U+}gy9yau8P8OIs2I}xi)BpV
z9M#6iIYseq&g%VfDZ|r5*jxIK3JIK1z*!Z(I9i;i%qx&yfx^+5RVt8Gfs6{&>Qb9e
zW(80o6_PN+><aw6J(Ifqb@My|IqK7*NtyW-s9J%<maNScs8)f33UseP55`o03^b}h
zV-l}GQ3Z-CP`v^TD$uY3H7YQwTD4jgD5*eArW!4%FqL{zy8@*ZC{vMjR9LA(<rPw$
z>Q_Lh$hs=5r$Vw<nU*xKD5ym%L5*#^x0DP}XPQ)C?GLq@Du$C4&?=x;z^Fh)1)5dB
ztbkPkPvH>FR)9mEH)rydkE>$d8!h|_1QiI?YgB=_0*tK0A#zH^&-%2qGNyS2+E$>Q
zifmDVmKA7Kf&WwW9#B#g-}m^!UN^!nadvl>QUp;!zywa{p6;3HFd%{$F`xv=Ip>^n
z&N=5GiUA`Ak|HRQ6%kQPC@6x63jf=0zT^M%JEzV)w_d$^_3BmV>Ym;1h$KUVR6F^#
zpDC#y3&7@vFGcYHtN^IS(hJR$E5dq$iB#R&o2!1iy}EyY<8KhaExk+i3-Isf(J+8U
z0X!T)Pqx+ETi}fu>HwNa_a6!1(EuI`;PC*S2;k`eo?$xUe=>k3qOj^@I<rp&z(lg4
zM%J?dG!5W6$x>4OM7nt*{gxA+8j<#!2hcWvb^){qprxq25I}1otpt<G)NCV7&_eqF
zIt0)qfUW^_6k*a-rvN%j(}7eIRPH7U-38~I@iw;}DYM&``g#S>I{*@<J^}PiabEuV
z2QVOjfdLE(U@Iq20D}V<62QU$76mXgfMEel4q!?E!vh!*z*vUyMEXc+XtXrJK8_M0
z3ELf$a&=q);{%uwz(i4-Bs#21Z<ApmpBlilq|buW1DGYsGXj_y0OQOEGra8SY?0GG
zYt0Q{UI6pCQp6N-fs{6Cu4s92080W`8^F2%mIkmafE59(6y@b9KdF`+#8uKREvyb;
zjp(q6|3-Fw02>3?L?8aAbvl#m>1Gjb5u{h!0(dEa*8|uQz{`wq0Ivk_YRWzplFqX&
zrq@#PHv)JwfcFFVAb__xZ@FFqcuz{-N$I>RgkI4C69d8_roj&bICV1p;{f&tuq%Mw
z0qhB2ZvguO_(=Lf9k#_Pw8{RGCwu)#00#n~k!0z?lx1c=leKe5@N>b#f=2>48o;pt
zjtB6406zq9LgZfsaGGl{fG;HbC0!E2MVIkuI@kXF0emfzZvr?g<cwg1Tcwci1gUQX
za4yBKz2y5*_(j2=0{B_T`2c=R>HH$3R^_4#DMBN^1@OCMF9mQprTIs|yOOe$iF?J>
z0RG}k3u1N<*8=!EfV+dZCy0Lnm|<t#7DTlm{te)I05<|i3wpw`L6iu3*T>8txS8-b
z$C5$sOqd=7g19M&KF!s}=IW)|MHxX5|7cqJ^Rxb}AhLtV2_iR$QbFX?>>A(c=4w;7
zg3>|c1yR&O&D!U8TX<Vg*A}Ww5DQy)yCtvP<$~TtynGN9f~Y9m7eu8XR1gJ06tZp*
z{vdeyE)Jr1-E^kp)ts2T`rjNx<sfdA(pyB6I#q;JrDNUyPoF{>xjl$?TBrvr<-PuK
z0m&Vby)%gFLMW*r<SxOQLDWjgYYQoAlyz?q_XROJh%rIjA4HuXo(kgWAR=e{b%U^i
zu!DFYh(HiQ5k`VAgoJ_!3(=DDGk#sjg5&9|YYLAEM*l}14`R9~I3lbc#DhZIAQD1Y
zw_XrQBMpLhD2OLg@`gb?lH!eoJRC%0A=KwsJSzM#!N&z@jYUriZz7nq{7ewf2GJpi
zjzKgH;<+H&Na^!}Ed-kh(n9l;KjbZgcp)WkC8V{KvUQfW6-m1w+6zhcv{MkBB|9{T
zE<tn^-Y1A|9Md3rO4hS{JiW*N)asRz_fECmH;8^g^iRnL1u-DS2d1J*JA*|yL~7B2
zVUiu5(i|aVq~It)24rjy<AQjxUg0#s@q&|rm>^`LAWPZD$wB_FD5i=ei4?MkX*yS2
z5HnL%lBIKkm>b02Aoc|@FNpa;aH76X-xx;Twg<76YbS`^3;c_MSRBMxEz}ahWkD<r
zqILb8dZm0NTB_witO#Od5H(sV>Z}T)fe`Z5qOWiBtqWp(5HAO@J&3_Ay|uZ4lgi23
zD7Z;*v*4B>whDQXt6s=9L9Tu3Gd(chyV-d~oO~mQSA|gWnvmB8cL<(nn*L@GZw2u-
zJJ?b&y(i=y!FPk$8N}xYD*h)Y{~(ADgV+_s<3oH*D}F7R_F4MwAohraoWhS7#ut76
zaOVl);~@42@ktN|g7`g%OF<kA;?p2b1aUHm&qVW(pk6nf>GL2COZG?*$Ar+-Q6cn}
z{CG<F3n9M>ekpj0!3^@%Vfb3I-v&X0>^Li)3E~^>u{}zhm5#stK_N{seHX;JAifXc
z2dQ#iN`Dm2(w~I<EXazK{36Ke7lODb%535{5hfd=&L2Ts3F1!?UKXSd<yX1$OP2gE
z@r~r~|53Oe#El@dkQdu#^9s^JC=Q`g2yM>$ON3A|g!GU%@eo3O2xUUJDTEA>WQLFv
zLT(6IA!LWJczWiQrD^<}3YD2kg}hIz<cYj=2=~<U9w|_V!m=Th3t@XpRTx5fA><W9
zsF32+q{J6Ofk=|sBH@0)q^1htW?Ihn)eYg65Gsdomt=1Zp-SlgzniNX!tEj45yEX!
zO8sgf@1~D;aCZu+E^^+-G1W-vP@yJEL#Qp1dqcP{guBU8b(8mlRAa6CMOY`~-6tj`
z4+sxP-JoDdkhQ|%8#VP1A|V(O`Dh3+A*RHZQ#vkLH-v-`OVAc{1dkr`rhPr(kAzS^
zga<=tAX&;Ah47H@hJwFm6_sn4^Kh!Pv5;$f3#s{N2#=-Yj|+Jsgqm*_vFND~o(|!|
zFm{FUObE}0a3qAIA@2sNX$WmYXve;^%X%(^=R@8G!qiMibHNsZE!iU>tpr;Owh^R0
zO|=i9LkROi{3j#t8rm_0o+0!S-bt{tU>CuzA#@YcU6A@cgmB;P9RepX6EE(4Lg*Vp
zzYzL|FeQYkAq)t4yUOqoMuad>_#pZqWJrjw4)6^VJ~V^_EfqB>A&v}TR0tD7m>9z7
z5XOYi$SD{rB>M%$#K}1>gv*<J;{|y<AfHe_XHp0k4*IISpeD0={hV`syggyWFMjUN
z(?XaY!i*4RhA=0DxiaF7UQn|_m>t5p7u4G?sM9Z~Kg4)eD^<CbI@#a1AcTb>ycWXi
zGDeF+SW9KDuMn1mur!2aA*`07<*CtJA%wdnhjOLxRf3#3YyQ*uwIm-AtY`3RWW6M~
zL2zRTn}krlIfN}C{u?Y_Oi8wdz=I!)CVx^$WO`YOwhO)@_-abOsgt!Mgm**ODNEoD
zSsHJK_}Nfz@iM(F<Q>7}@_8?Wk3-%m^!*S%koEGRl<pSXm0Cf2Lf9*keIlW$kHk2a
zB-a=30rzveSnB(PV;aK25IzmzGn0=ja9GG^AsiAiaA;}DtAFIb`-!41yZnsUu@H{a
zfe`)*;Y0{0IhveZt<)DGl#cp1l;4H$rSMaNUxjd5$k!o!6T(^HX9S1LD<C0$o66Dx
zpQ4-#!MsuNdl~&71b-C#DTJRnA-R8YVz*LEZ0=X#)K6wFhVYvx|IQ%4=({BNhaj_;
zg<KK*Q;-*<Ya#p{!pbmKh4D`a|Ax>ijMiaX58(!Pp)kxa(!wYa#?4{e5=P0e_XH+4
zj8b8w3y0uMVPu4n8Aevvd#pztKH19-BPZ-VkfEzYrq&gTSX4TUvSE~yig|+hVU$T`
zn|b{zFT5xWe;5_Qs3=B!VHAW>D4dp)_Gy!(SoD(?DutoKD3S+3$<oSU+#2TpQ1f+0
zs3MwogmGsWRl~SVvem-4UCh!q8euKEU0p~`QK%vOE<yH=#%qO9Te5eH!ab=LZ;^Y+
z`$fpRzfc%;gx3w@0U?1ff<o99m6JZd_IzPD3@z+kQpxo&A}LNuG>ljnPloY+$Lx3*
zRu~P#XcUGWh7(4EFdho?1;SV@j|+&2FzSW*zv14)8Kwur-ZKQ=`Ld|+L^}C@_r(u~
z(Kw7Jq^(B;9}j!?#g7VqOfY$mOgH$9C3zR0eWI{Q7*B=qG@A%}r!{V0&xi4B*xS>Z
z3O*;;t(Br=ax2v=jOJmq2%{x!3X)KM;BYA>5*}RJgwZLC&SCEm+g7k$*!zW|y<i8y
zj$!oKlTL*$VRQ{+XUU?SPZxCyqk9;m!WbP!k1%?MF))llVQ(Ah6-Hkn<h_OT342$0
zX8TFDe;5Nqk`xjLhcSfxN<H-*8pg0NhKqzkrV&zcq+oJiqO~z$j16NhqY=iqFvf>5
zBaE30LKqXn-T`2$v@(gk4r7W)l1&g<N}Lwv8(RLa-K20<7_+67IjOeT(0_iC&ktiE
zO@*=Ge-tQR9LAC`mZo~TOiGuBu|f!qGyP|0br@^HSQo~6uEA#M+=AB1xRZ0xH-xc~
z^E`}gZ0LhR4%VhHHjBctR*F01mM}=R3R1sHr|g$FQKg}m!`L3iYiIqhaJ7c<Cdd67
z|ErXQ@jByExv1L7^c`Uk$@v`P-Bzmly3%ij@rP_~Z-?<t81HiCTq?Pf+eK^jp0vAQ
zlaHKjF>W8EBDOn>Jz;Fpuvx?2F!piDYp9~(qcD0`@n>kr)bMc_`@{Goj00hOAI1-1
z91P>rFun-m%P>9*<4_n!!#Ebk=V2TU;|S+QYjsy^HBS}YbI|X!Rx?|xzb{n$bBh0X
z7$?FwN%vZ-={0?qTB|B;RIH6E3i?ll@l_b#gmE^E(_wtg892p%CX8ln)aqtMquO}-
zZ?{qLn|yCIEciBz@4`42#`D{Yer}^WCw%7YqJh)=O^5q`4CALTu7>ef7(a(`K8%ZD
z{1(P9+=tt$U&FW{(Ky%9zpJ_T;PK9j6(4J>eh=eP7+1phlVRjcZtDf=izB{8ZPjIt
zU|W@~7i<dohm`Ztfjz_h*TVRlJG_Px8vY66U+(;2+~8ofRqKcQe{HLZ+NnnE)Zp(6
zyO#EMXs1eQNY?-jH)$B&PE{Q3pW9Bo(oX%@P95r2g!W!@Q>ys0G`@;6OKHf~kfWjM
zIRC6&>A4z8Y2I*@)=*JMo`!r4WrUa4P@}ynE4-W_vsA7iauQ~J8VV#^C|D#&Wxs}E
zsX}FDE2TJnxLG{8MX<7liSMOTSXD!}B7a8>oiyC0p_+!<HQb?LY8U^L8t&9kU4y1U
zr+p1~X}DLzeH!0Nfm#}BYq(p(Bkfi9_NrIsQVZLwwEg~jGz>fB`?0;MR_r_2Ufr*u
zj)uA#9?<Z%?yK5CJ>Nl%?VuWT@CP(}J=7P}u)c$OWUVixA*|t82UUBqcYe6Kr!b<y
z(D0y!1{zEa=MMU#8e$s8btpRK^Tjn-8Wx}R)z@HaDA`eMdaKCQ;0WJ0yNHsS9aTa@
zJ<YqCwCL!K$RxpsG&I!ku!hDOvQ`wmLd}+?8?lL-iY|6ky{=b$L_?sHdbpE%RKsH$
z3OlLCHJsYv`(U__{0WiJS`&@0*TB;np3(5UhGrU`)zDO8{+xz>oxGVaWM$EePU^3b
zMVmUQ<{DaPXr-aGhEF@GmUK)Ad6Lj(8xb<wK|@>doTcqFv`=Y1b|8bLOr14!k<nbI
zp{s^Vom77f12~`>x^pIUR_=_V9vXUT=%wN6bblWWeK|TlUvGx4vuf2@tquD6Y1r9W
zo$jngcUF~46b;lcNW)kLS;JrrL&SmM8iop?dz?1JVUm4vXZi>YBgKbN8b)gvlaeRZ
zs6gfM8YXC1reQf}orXyqH4RHNOx7?(<2T2%7IMC6n5JQlhPfh{u3@HzE1eZfXQaq1
z4YP%}s^zDgrSn8GU&8_+NoDFM$-Q0FA`PJ~s!bO)q>I|#Mb-Pg;!+JyKH$6etZ#*e
zl^RxSSi{Ne6g>5T?{pWnO5<CO3yQj`d%CK%(wF63RmZOC+%(^M>E;GOE}V@**v%~(
zwrcpLzwa#_FUrto>d4ZuO~XqXUe>T(!x0TfHN2wXRSo;N6>E4+!|NK{Zt5KkJ2bqZ
z;Vlhcc2$E0_}<hoYMSpI;Tgkx=*B<zgs+?G|A7Bp4i=l}CVT#CzV|e|ui*m?FLqNO
zYS^t|kA_{6oz$y{LZ)PPZ%X*FhW#22axQ83gx7^h{sUaX#YKhp6fN8DzZxu9b(eqX
zmZHxze%KK&ohdxiO&#Jih!ix~<}2A<9p>iHT|G6c=$MA%8ZK)1O~VNWO~dyZe$em*
zd%+dm#eYsiqPuF<U7gbKm4<CE6`f|FzVLk`{A-Obb@YT>7sRs~zU6%AuD(klrwy~5
zkdOaa_@joOH2kdLJiGr-#f^?{dw2B<lZIb4tmvUm^iYL8)RpZ%qldb{N!~+cS1tOT
zD?-CH4S#F+L&Igx9F6~e%MUL2e(#~iU8=}Es$5T1r>E+&*>_b#%f>~2X~=8pf261S
zN5j9|-gQ97_g#ywb7$zO(sWGhscvw$|J=W!r|N1KmC$iZFI7^<GriP^Uh45g=1n>>
zbe!m=HuO?vqk>DlRO3on**bD`%-6xoL9UKcIy&j-tfRD!JRKn&VIBE8%IK)7<2D^-
zb(GUlq{FYHybfP)RY6BZ9o2iQM|!Kiz11sKirm+HJ{{ULUxAK79jkh)BmD|?^;X3?
zD$y$)m392W@4o1`nP&T_k!yW_^j7_E6xQ#fZq-pm$I8*ZeRB)@^zr5r)3!dUnvUCb
z)YMT+#~nKEr2W3Cx{lXJ`%d*yb*-YJzN&_fyL7bdtNQg-tNW@K8v1MNxLe0PI_}l6
z|6zaW<wX;-eINE!pH=f8?W^w7F+AUQzm7UO>gsqvM?gnV$JM^7YCo^(M+Cd{Q|tPv
zR@;1<4qZnh9S`e>=rDBHIvgFQjwoZ>U&VEAGmq)~&D6V0ob9L9eBvKb)o<ze_(<W>
z@_tuGLPvca4>Dr?ReGhOdi_;Bov-gM;x(lKjSTax>#z3qS3Ucyhjb7d3es9*9gpZ}
zs^d8wkLq|#$5T3<*75u-|KmE^obvS>;Q9Q7jwf|A5l?>WuY3bk{Q+w0DE~7$UhS0g
ztd8H;7d^1gb8p=M^}LQ|I$F_ThW$ukbH;X{YN6xc0QK(x)skbK=?l08FNiggHagns
zXs4q+=Uxl{Ea@f#-a$wAhx{FNZYiE+a?g{2s*8@UI!5al!wEJ}brT#&WgR_)_Y}*0
zb@UR_Td<EH^=X8upJe+B4oDSk7^nv67_4K64(bopF+#^k9q$cP!$fDe@T3I_nMUb2
zE@Z5ZaXMz`n5kpDjtM#@(-|E#KK73rQB-xfZ=#ON1JxwXw+!FigS@llR2{dz=$o#i
z;UG0l$JBxTzDElO4N~g{c}~vK@%cpm9JXs0%x3fksSAVDZG+WZ&W*up9_548_`zy{
zj)giF=~&De&UK+<iH@aQMALlBb!-}}mg)TSC*S&nf6jRS{=uq6EB^|P+G_8s*{gM|
z(Xo}=xX%B9!a5z#4pEzRl=!#edM=I6eH%H89xm9R<Hx}&XNdZxchM$J(IM)~7re39
z!s=ywmGAU#)A5py?K)oJBzd9eWgR<Q|G*($FIsFVdR5139N&chO&tZ3e6KS;Rf_^m
z3dnbe<PC`}vkRok+q!p9d`HK-I(9PPI=<6!PRIMSGeqsv@sZB=Q+fPD!Civ81@{QD
zXfJ2%u?&)rxkz;!(Q#DACpr%3_>@C1RK4IUI>^h`P_?hne`1L0UdR6#m%vape5g9a
z$a577Kb#!*q3Z7@1;=!p((x5Xoa_3*oD(`uGIU4$U+DN!)W~l-<Q)KrFFjarnp<4u
zqHh_TQNFKrSa0~w==es*Ssm+#sxOABvcpuvVQSDYHEWpqUdIpAkDzP>KkE2N$3Hs$
z)$y~A^Exi+_=EeKj$d_L)bX2+H-@R<>wE`?sSBJNHx*q!U--nX^p5@gJqP)J*HJso
zTQZk*T;a~6<1cP;&-niwrYa3rf9i-0R~?3{;lma6uj%+($L8Tmf2?TNkG@00)pZ>=
z7?}vNBS?#&L<ET7rU<e|sFD$HFG`P~`UutXo`Spk7B(57G9oy8()aoZl^H?D5o*{7
z_0tG7bG+}?kt!#GQW2Dn;7+R`SL*)rXT`h-?2&5ONR=PKJ3fDpk!tTqHT9IQT!b$i
zL#+sEM^GVxiV@rvLA3~c5fnsFDFPM2zuSC;5&SdFR~*67uM3MJ@YB6f-b^FjGfGYR
zv*OJWv>c@d{!#H(Y4H}p$`K45rM}b(HdXdliJ)o(OGc?rN2wd5)a?=6!5&3WBZAOq
zm3E`zTlIZ+vesyIwY&fO3I4kx-if`YxZR~u!Q|0ib9YB@PXs|$iQw=k|Gg31A3>c6
zcx}Beg3Y5<-}`)LMyt9J{5snA0DEz)aOvg3%}*5s7}7DS_81k8K#L#}fe}HAF-ni%
z-7)Ia7}fNGZ_*fLMi7laAFFy_E8O!#;q@`<ma$&D7Tt*8w27}xI1#uJ%r~&W;JepQ
zFM@9)_%6aPq2R#?dPmSFf(CRT*WWAR9oQaX3~OaIjG$2j4@b~Af~FBX7r`TRZ<_D%
z2%d=G(Fh)6#j$FNH23mY^<)H1I4EZepNV)UXKqkWMR0v(&eIX>8>>n@TJ+QVg};wg
z&q|!jjZ@D@&@6)P5#$~yXwI%h&_03=5scne)VSE+l8s*Qy%0gG2&{3cwP3pl+C<P+
zIQ!^zbDW}t$UA5*)s7K#68oJa=o&%uUEV6|l9Y^7-Go#d<84YkBIrp|h5i}i_y%1+
z7a$KI)ejW(mA*GE&if{Uei8JKU_b-|*@Xx`ieOL#gCkhSfsXL(hx^+5mqoCgb0&ge
z5e$!DL<CbJ*jwx$8NsLs#z(x1!srObMDWQtHCB+VQ^G9MIB|(&LIe{<d6M8{L0*Pf
zofnR&Vv}a4MKC?ZXGAbFf>{yFPDvI<Fh}^@2=X@h<_VI_7qUQ#n5CUX!WRoJ5nLKU
zQei~|E5)m|5$sC%xxKH7co(4a<J9U1)<i(UwCA>>^5YesLTrd&BUdP=Wdxfzr6YKS
zK^UmEMDWmfwP3vB7PK{j7de#U)i$yGas)34VJIlvE}VqfS0i{W;$16WkAR_gQ}~Vu
z-VmFV(=yXrl6_l{A==4sMeu$EABZX5M87m%%}{>cS%1iFXS`~B)W0i&-4SHm=HJ8q
zM)+C4bS7^m>`d>rGyP+4v+^H|;L`~9%RK)if&+}(1a<!e)p&yHJwbgI!J!Dgh~V?8
z{?ECbBRInCh2y@faMA?z(gal|t>_pPCU__3iYI&}CaU9H#S_&D!IOe)@yn!zs{T_E
zd?oyJ1YZj|69E(L^QuIwJyD(InwqGh6V<s0zUK~Upt^w{WR`NNmNxJsJwH&8<@$e$
z;Af5wmoV2dcRy}}5nPDyWy`n{!Jo1=e~aL$iR!ZO-y^sb!5_lu)sWB9xp*f`RGTKM
z?<cCO-2I;P-!w`6#dbw<ErP#=Q<;+M5!{F%(?FJiG=q0cs`P`tR+Cf-10@Zl8-U?m
z1#U9HWK2>SLMS0;BAGHt{o(iD^r%1EKn_bE_2&wf5@fdNiNZX?yUOPqC}W_kfmM@K
z1p^fg@D{$Df%261^K&Zho}_#R3JmxS?@<!(9}5i>(QKch)05P{lT^DlMLTNxiw#sV
zpbXTVtZt>x25vUcWU^wq#Xx0on4G><H85<lcjt1uklO^S8OZ+Gmz3XOfTi8ar`0gL
zowL4y2Mye1c=s|j4b(DF+rZrhGy}SUdkpWP)BOhO2)Wll1wJnl&SzG2rH>>b!+XH>
zfPsJz@}Lw^nLI2)+KDip1}p=%0n<R#K+Hhgz>3L=$G=x6tK*Z^`N@hm$fc*Kx>J-R
z{c^eaQ?rfNyYB}1?hE<(tfQWRdQ((KmCY%{=Uoj9JY=Aufkp=U8yH~VVFQf~bTq&N
z;UfkfB{9&_z+>#b2=~Yy`-C?E{7)NbKSez$*u=n7Lf9OI&lq^tKvM(H8E9spxq;^m
zjF_UBl7wnW&Meal23i?tZJ>>TEr+~kp6jNlPw(=#HSoX^Ux}&euBob>^sBvK2f;&A
zyxw&((Ahv216>Wi1`~Y^Zxiljpr_$&EZq(C5DE8K9?MzOOR^-rh43(MP4(>X8CpNu
z8Rq9b%RmEz=&*s2hIbKU>0kpx3=HMOFfg1Gue0hfRV|#V-khqwo2r^U;~x_8jWRIW
zz%&EX4U91`*1$Le;|;uWkFUZsRb!fJG)?h2SgUD@kB%o8m?*uNWMDEUl7Xp`*cQ`_
zX^P1soWnbcW*V4f@Izz%_ojJwSf{0EHW$uxHAir+fq9ZBVXcJ*78wYe&`c~gu*AR~
z1A7fD<)9Sjtv0a6z%nikK9a4KwOq&w11p8_Va}=)S<C(BK*2kPcTV7*v(CVJ0~-u%
zG_Z;NGVrQ_%^WhryDQno;P`wGb|~6vpu~9Ji_*I);?GN*3DZ@qf$wF`$p*gdg3Ce$
zuNipVz{Tn6Z38<DeD$+$ujtR2uHG;}d{gi(F~w}T8S19RzIVkRy0lZsdxGy9_#h?!
zP{=L=yHgSl7B`lChIjm^VB#YK9~;<j;1dHs8#r&^fPsSszA*5mflm#5X5grSV+Ibf
zYX%M*IKo}1o4S97dVGfZuxk+~<VCw+>I}7KhB|KG1Q+JM!jpz~e{^t$;-xTWrut!a
zQI(nM6#Hf1TLa&5A2{qkZQvUNXAN98i@r9%Ul7iCJAm)SYX0YDs-D}6Cd^cuW~y^+
z-RHYJ&i}oE(=)vXr#EPj`@aE_p9D$X2>X8Fj>J9LL<tiY7)%3K4gAG;*7W~o;EI7i
z4gAi<)xN0aEOp5M@ec!+g>b4c%TcSE@W*DUcC*xddke1__?PY(_?t6omfA5({X=WB
z)DN@N4Njq|{wHRu3A0uDY*ll%Drq9!M7D_>6EJa;i3}5&CXRgQ(>nU!p6xwG&N6X&
zwrW$;$Bl@;GVt+Zu8C46N}I@|@*Gurj(Tp6nleY_o8S#88+~hzn!DUr#ssmfiE={9
z3(k4jM`1-1J`)9|w*%i|qOy=e!6FlWAuK93QAxNGyg4QBRph(XL=_V?P1G_`)x>Qk
zUrUSXruTbFH50d+xWmM^bJXoW_^!=SSK9h{?^ZNd)lc|&(^td9T_*UW34g(f%vG)C
zs@f**HgUg+IwtNhaj(hu^P}`=AAf3j!7AXvY4BX{C!uS9`0AQ?z(mMI>(Tyz>0LC3
zpZ2jdXky)5^~32xB99-G>n0*5-Zb%+>0K5L6Hl6GLMIOtm?okoVkY7yEE5l!XkfzT
z;h*ic_fEX7iG+!IChF6|T(z%$LFH;iU(Qtz_Vt&Zr+BLyAMJn0L_-sgn0VAgBNGps
zXl!~9<nNj1wf@{Z#oNY-GyQ$%smDw_ZsG~ky9L-XPmSs7=g&Yth#D_IPnmeyL>m)r
zO*~`bS<~BCUNF(r#B;)%2|h2#hv7_AXf9cj7A9Jzc(X(4t%SE0<X%LDb|%_$=uONs
z(ZNJV6Jtz_HPOjLXA?b4^fb}ML{}5tOmsKB6Ci)i;Nx7L1FOzg=6uz5zM4N@^<o%J
zj50Br9Wl|@#2^!cP4qLpN96+q`wQ{`J0-+{CT0j9Vq&O?ky6T{VJ3!~7$K#60-w}L
z)=KilIX<r6z4N_Djx#Zy6VJp{6BA5KG%?A<WX`nts(67~_j#%N=lbg}P_xPu@nXk^
zvD_J^nV3%F?C%0Keu26W_Rlo2?N0x<3)D_(nwV{ZWR4)4AfInyfr%9+R+=cgP}N(g
z7MfVZ{olkA6U$62H_>jPT5954fxlT*|LldHZ%ny0eN%S(_*3I56RS<UX5w`dYfP*)
zvB|_{6MRIx&cxn@>e52BUMAQE!Ht41EmWLxl^3aoi&Wo5YKw`jCSIhsCSEeJ-NY+2
zyGXtKKgdRtS;}9PB|x&n1igC0^v)imTNf?ZU$}3P`nbHG2bH(kO@^z#?;X?Iz~2=d
zSvQ^hJrnPn_`t-6GGR`d*kxijXUJXt&rR$xy`$qNCJxYl6Z^RHbCva1@5T!*EmH6I
z^?%Ijef|5n?R=O{a**?%Lu}#@*Fv#hE%rk6)M7PbvErleO^elGCT?yfj+!`Tf)CJ6
za3h-LJI;l_L_M)YU6(4omZ<ql6sPVN;?<YZ$5X<;5<Id*oiXtZ7jF!93}?C3n7Cmg
zEsF0rKqfAmxME^q)%5R847@e#XTcu?e-!-5#7|YcJDT&7rOq!VeieQ}@S@;vg1-x1
z5~SuILQXAF<bMkP+r(8Nf2DM;31Jh|`Nzb+Dfx9FbgV=aC8NlTB0q}sD8FW2ikgVx
zn;zNZH${;V^*pC$W)xXbWJ{I?DWTgrQRIrGlwfJWzm|9bFBA1PkfJF3QIr+S<pgQA
zd=wQ@yrK}FU_lgxLh4par&@6om7-`G#dA??neSIo7*W3F0yjr-OB9u(xHXD<qqr}M
zDp6F8qIwkjmKWS6czYD(_IMsvi+Y<gIg9QPerHNjBZ|ACs44m^{bP4}tte_oad#9Y
z?##M%Px?Jk)Lq~wXDP}3qDf&;NFBktQ9KYuKzNx{m5^k^f?5=M6cI^DPl#X4_m5BW
zMWaYWQ7;Pem|$GciozD+2(r|T;>0|!O8qDv6yf874FnqtJ`_bmAyjJ=<vY(kvlW-B
zN0%y+N1}LCB##O1+MQ0}6Hz=FMH7)c6~)t1YtM>;XGB7UXQP;~qM+f50tz3S?|(ju
zW>NeU#m`YRkD^5sGozTrA!A6R7!<|eC|X6)I*P7Qbc>=*6m6pz_fLh6QM406-ad-Y
z{whhr)Io$>tEQ8865d&`OB8P{DWI^sWcv#Ch@xi{y@dCUqL0|2Cauu|6M4TV`isH<
z!GTdEjnfp#5D|`!VoVf6qZlUH;esOtM?^s*R30Tr%S>a*qnI4U6cLV(VxkbLO-QLt
z67pYLQ=^zJl4<|1d`8Nj*-^}i;)5tYjACvS^P<=o#il6cN3kG^<x#AViVLGy6vg8I
zF|s6zrBN(P#V{F3&L}p$GKy7Etc_w_6sx0HlWL1PNrj|)>!aB4KL%M!`DQM$D0W2g
z25Uv}Vien>ctzB<Me(wbmju~s4$Xf(eKm^LqIg}}N}8eq6ZxB>|4tO|ax|lOTe7Uk
zA}Z{R;=L%|PuZmWKbut86~*o-zKY^>6nmoB8^xh0KIejp;-e@&iQ+&MAE)Z>Pep?s
za`+BL@u?JjmYN%EE@_;W4@Yr?t0{_;Q5=<Nb}WkHqMz&_b=X1LVXZHs_%e!9Df=v9
zN}BpQiZh~fj=N<PXHz<?^{vRi`=8cX>w6LYAV{4brD=}K`6zyg;*OZNP5m0h1#ZPL
zl!@VD6u)s#jsY?J9>t|7{)yt>DE^4zauk0>aV^Sk4dBlxu8PfM0RMB3S#mb?cgitl
zuZ!l5DAHp8w=PP=ylyg;6q2k$yeWo^81ho3nK5L?kR#cwn788SZLVZX#ZWp`myJ@M
zEKNqKYz*aMxFuz$d<=y#6va>>hKe!xL|!1641ThfU!p-%m0~DP)n$>2;btlNuZhYr
z+$xePF;tD=wv=zxQnhZEQr1nTJ7cIGLyZ{jis4PSAR0r>7;44vKn#HxYR7PQ40Td<
z?}_2Q819$sy)nG=TqXlWJ8V6PbyJ$m28D-X(1e6ie(EtqVlZMb#kXX%lbxkaW@#-J
zLtob)7bHo0Ki!GJjiGl8ePT$&P%nn2F+3MT{TLpM;fa`cQEm{!L(<Bll5H5n!!hqT
z!J<YYA#WVRBO>JWn(}1nV^aEfO6SQKnh1X?hG&FO^J%HYA$T?=Vcq9rXcj}Kl%#nK
z?M1Cc3@t_Yf?zwrRx$77(>jJWDgCx0;qf5pNe7X46r^#s)j5VPlI<Epcj+1}bdy@F
z(j$hRG4x95|JR+qG4zXJVhodF=pVy?7$zj+AeuvC7#72z7zRsrNXi;pr19Y~j7ar#
zq$rG%c9Z^$j$w>s$8w}%7@sOima;m1rW+)aW0(@diWpYLFg1p0F?9RHw<v~1yVIu&
zpDj2ehM7WU32xq<PBo@ElAX)=&-2d{K0k&9LKX_nyjU`+xmdDGVptl(>$}sJNtQ*+
zh0x%t7*@w{D2C5tSQEqg2Bo%evB$7h_&Pxf*T=9y_(s7^Dfwn0Q<th2W7rnMyIdwq
z)k`tFOcKLeF>H_F6$#W1!B+)e6C7Qp@bwg7SeV|3A*n#lqPL~=9l@mLPO<-94DZMA
zK@1<pus?=RV%Q~eHoaHK?ilu@Bu$nS?2F-}7(V8_T~a`#8VT`0O6SuU4yHIOekMGr
zc{qk6T>f$Ibb2&~V=>%_AuW#MF`S6u0yo|mPR6{0-<cS`iQ$WwcdGm{hEp-*%aQV{
z7*5CVwa9r&<Q$+v$z_UoHin-?{%s83#c(c$?_>Cpt7CzmrFnbO|K6ScgDCJ+`BMz!
ztZv=xW9j)AevzVI1u0>te&gmJ!(TC66U|F8TuGJw5yNHS^onNx6i#bbMKjqVkIl66
zcZ}~^$G<UL=NwM+(N(HlK3|eWCE_R<M<qrhj`X<KP<|X`;y@fX#gP$5X58z3={U0D
z$c}s7mJ-Z~BUg$TD9?@@l1UhlJdr1l-(}+{7e_%Hg(55;M@1nO1nD`e_=J<tU{M_Y
zIEqD*w2+K>5^s*<mN;&Y;|@`%97ol-H&RTuidR+Q-qAhTwcA8eO*DD7XV>UFTe(vt
z)dg$By)iA=lU_59<qQ0^1W7vaBp=7UaqMY~y^V2S9QVgD@*#|R2zA(E9KBrhcJV+Q
z0fxmwj)h<xp*Z@-F(8g`99kSL=|CKM9FaI$#KDhb8F83#JQC;2LJ_3{qw^1+%c%cR
zRxFNq99A559EmvU#j*CQe23ZN88eqDH;%iPsfU-T-1TMZ$I&#WtaDF(!#FO+vmcD3
z0b|lVjr<{z)F_+YD2~nNGRE$#^l%)F;~-&bbUx$KmpM7LvL1`0bGh8g7c(A@<B2$)
zjDx(1;InZ&CFE&A%AXN(ZDk4arg1zM$MbPCO9_XaN^73d+}J(;x7z9KW2-n?$I&y6
z#r|@04`sB8qXWC2p4&DKX4?t27i4x&MjDGc#?eW1Itz9Y>?+tzkUHIk^oV2SGQ})k
z7~3n3-f@sH^%2rHj(#ag^BrXe#xaN!@AHfcaSV=QNE|Q4@p2qP;}{mlx;WOyacjNI
zCgIHCag5;j#xW|6S#ivcV{{xZjw)sv7sr?sA1j2ji1P7qOo(HmNG8QGHI8Y*C&w{G
zCLVQ$)%M;1MlwB)8B#iv*7ChXIZNlnvHO-X%LL~N&WmGy91G%D7{`fQ$}AD#Gw<as
z60%tEt7YoiGPN|0-~Gj`UTwKr9>)qPTFIFsWR)OGSI4m?#V@D(DPeX)9G5R;?EW-k
z+Rd39*^M%Yn*=w<u|>#M!58D$7RQ&@aybV$+*IBk$18Ds6~}2#=~Ef6#_=u(;y^~-
z%Neh6X<W{DU2uos8*#iD$6LbRj^iC6?ECrbG-}q%Pum&CdvUxU#|Lrj<%)>oLvBa4
zy%!bkmN4!TY?O;Vas1<^4SUBsd43ef$8mfb$7iCvKaPV!J`v>u!l_KnHQ!~>8q=XT
zj>d5;j?d#bEDA>ijpgb;&Es+0btU6VM(n$c6LFl3<BKFOE<RCQOyQ|GsDE}{8r8m*
z33=rxKOn_#hhdbR`Ar;W<M@{Q#%*ObEX%uInEhQGjh3r(aeN=g4{`h$$Io$`7bky8
z_HJg@E_o{>)qaVi$MtLyCX#BA%!+HduE8&0{>HJ6<5C=daK?U{ah1a-q<nT7vrJdw
z_)`qB%kS(dLCIgDa4n9%88_ko#*t>BgymVd9tZ2*NEs<9LRh%TLb`>d1uD>5hJ{QE
zS(Z0rlg%ZOI=L1~SvYevql1Ie7V<32vN796zJ)RtUbnErLRkytEKIY|YeQan3l%Jk
zweVcI?1~nA7M`&1q=f<tg%)BK;ueZ5_$^emaGQl<3zaNXrf*cJnBD7ahO*#f=H4vM
z++yMOW@%|BDt<8E`yN>p3m8zQ_dj_{u4G(TTcR3EE!475+rk|d#&6E6Vd0^-{C8TI
zyj(F=x4^GJlH6sX^TXLpHN`B+-4>?qDds0*mM>TLSXf@Okm+6__gT2#LLK3C1vLu~
zq;vv8f)+w4Nthiul$Ergi!dT+STKb|Q<_w>EZ7zrS$LS;wBXWV3k@y2aZ~Z$<tky}
z+Yidrvryl{56jhq78;1dB~~bAi&uEpbYq43^1d>Q|H(bMrA%XspCQAe79O+E;e5^>
zdByaTE7ao_`m9h_eyF(F$UQl+RJ9f*npk+sLPraoEIe)D84E3G*}}6Hzng&O7Ft+X
zwL;yy*n5fJa~9rOp`I6PCJr#$;YP-`pR*d=$Z7mZnN}8BTWHTlE!6lv=l;UXHlp_3
z3f0y^JK?nR*ut#4_1um}^1rH<S!#MtXA4~{^yECT(A7dW3*9aBu<-fTf_1y{HkZt<
zQ!mrFEqB_nEWY&b?-i;ydtqUOg^?Df7w1=Bsrp)otW^CN!#gW6^%pWgaG>BI3xkCW
z5gaN=&0!XXr}&2(vmRTic2qAO#hBDCH(I<MBd9O(x<AfBzjGPmEi65mF~Pz_3zIm3
zb4yMZo#NjrwOr{9#1u}UR8OzgFEQQ1eb;kmSeVH*Vqvz0^%gc*m}7yjR$gL3{h2e@
z!rNss=ULuIVdh&{VDV{f=0XdLEG)KAKAOqw(3R?eYGvlFR3}!du^Y3NT3E*UV_}7~
zwaUV3i(i-XmTLF+J#W`oSZiV4&*|$doL{LZthUN?ulm6}@{JZYS$Nd~zs$1P;;$;%
zTP?iEY4CN%7C}n3i9a>&&3uWYd2eRU9hozc`Lc!W7GB|kU8RPf<}Y6vB(HI~y^%%d
ziEmhVlchE+8*i~++*oX6*m%dnyWC-H!1kQnY2ku}ix%Fq@V<o)EPQC;n1$mOc3IeM
z;edsMmiNV?Jr?#^_{c&<Cws5OKhG=fcq->(?j)<!ehZ&)I7(%IvAkT@Rcgg571&&H
z?<)1Fh0i#DEF89Q$O5NO68SD!@)tLz9kFoKLcPN!J}Z^Ow=0*9mpQXaov`@PJ)E=f
zJ%`4^mlnR}7H8p<g=<yum4(wXF8pXOKaBFi1G#N}@;=%2jfJxozP0e3G{jO0-!Ge;
zz9oxq|4wwOu<4iFA1wUHnf6)6FBX2XP;ztH&m0uagp>K~6hBtNDkqM36@Qf`HU@G#
z9nAa9!tWOTV(S)$F3G=S;ZGrd2woPv!noy@WGO?+bTyUb1?z8_3^y$NV|f>~e+5ad
zTWE7fB@*hV$yk&SEGhVEadG7C%*d)T{m*3mwMu2$$g**djeBim+o<YRENvst#-GRX
za%|*Mvf7(erEEO3T3vg+INwGY8@Ji0W}~c)ayI-nifxp)ak^Hf&qjfb3O3%Xm3gC9
zW<?=S*UDs;rG++%x)v1KpoBI<f|YFCVxzJRWh1mSi$yn+NOkJmDn3`WQANnyTA96T
zWri2$Q{i?Sci6bgMonp&P24G@x{dR9W!4aVHb?zHZLjrOHb`i*ws>{74HhwbpN;!%
z3|y^_4KLSvwW`C`ZG>&q6$_L+z>30yDG6)s{xwUpVc0Njkn4gG+xr*|vrJJNF%gne
zxbQ$RiEYEN(auJD8?KFnjjz+Qo7t#mqrQzNY&>b>K^xc7vzZ>V(STvM(a=UC(R{?l
z!$KMhPUw)v>PdW5YB4*eLmKNoE?E{evGJ6RXX%(!dD_M^LXw(PCV4I;dH(-3+uTMA
zktA)lWcO{fveDW`8<Dq7wUV@x^rVB0jy8tb7%n=U1bf@)Y@>^fu99V=-Gs1WcN;xy
z^ptEb8%b0DVILcPZS=Fz-^O4YLqu(W;J}oHK|+!}8Y-Ng{I5$RY>c-tL5fD&JkDWs
zvaXGBsk&oRO(%OnYZGluwK2`cB+;2HI7RS3o#{4arYy`z6(yVg{7}Xm8;4eAt+6qe
zT{xV<G|$F-8w(`6P;j}8MXA!oHkJrqD!42qfA4(G3gIgSSEb~uZ8ZD11kJ9svChVN
z8yjroILLLd(Z(hlhix3OvDwBJ8z0#C(8g99FWPv6OTfl98!y>--Np_ZFEh@Ub6%Ah
zK4Z1oZsU~{=WPGx=bYDU5ZA6&Z>(0otyVc}RQpERZ`pX8JHL&0ZSd=~<qv21*Ld4S
z!I7+-vY9)@0zYj1p3VOxQtzj-ySOfF?6>iWjXgH@+W5%E#~hSK#b;xgb=IhTHhx**
z9Z>JOwcJzND&4U;?_VSPfQ^GTKDF@~BUUAMVC!;;HEPBm`AyfT)w8n>*%-P;ea`Ne
z&1_a4jgfiO#xWZgZTx2AxQ!Dw&f56a#z`AraHHU0+4#~f^CkB>E%W(k?kO8z*?6>D
z+K~$x?}oB_ZAwcV&X`^{_vZ%LXV`Ze-y@T0`rh>KY@D<4qm7?rfpe<dTA|>38y)r(
z{a_=lK{3hG#hE|b_|?YFqxt7;EMKDzu2H|(sI!*;lAM1*LNR}>7pvcGT(VKZK}iRH
z*tl%t9~=MLxWW-!tFCgFTb9LJus^xzR;Q8t#YJc1@Bc~fuT@QEW!3p6<2v_;i#dBI
zd&h$t^u)mz(gZQx0UTsG$ab*YC|>$c#!U_!m7C!p)4@~Em-#3=bN(CYB>QJ&6*!q&
zzVM8c;^E)H0}cWX@*LzlsN$figE9`vIw*4BcTmnjc?UiR1r91WxV%<9dnPM;TcwJQ
zcMK@E&g<iy>r}@@{=;wi3mrs6Qta?W0jTWYR>!+#;MdlkU7V*J+$^<janNd=Vq#tA
zpS-UhD!1W{EbCnEZ4RnAsNvu)2e&)8!@->nsyi6CPVF_ztXZeNn~}GFor)jNia+ID
zF>5;fmr2~~;64WzMpt^OYHn=@k0r{^`ziNs2gG{>Z(gtRe3cl$`yKCF5_QA}eZ8vd
zfJi$*2O(B;@VJAp1I<Bw2M@B8-Ek0e5O>gdXz?@amEqt}+dR|3{pB*Ff)$QskXsH;
z-Ja{x)h~<r?PJ^VzJTlqeqAR!;h>&_?fGe|hm^d}%p_^x;2{T(IC#`SLx$+roW|l+
zBf*CSyNGYgs(9~R|6yHL^-DSYD*c2_Sx-24(m@LcEgdxB;5umLpt*x@zRG!8Dn8?&
z@%LVQo^{Za<2$Xya}Iwq!t)NE8RCsQ)2j8#JeapPmVI=+`u&%z7dRpg+Bs<NptS=I
z@uOemEdD&Bjf1vgGkt?%Vnuc*{aEom{e1k0c}EAG7#Rm$9DMKK2M1jpbaSx6!Ab|+
z9rSQ8+~Eg>(bGXM2Ll)%2X*hxuCX+K{C(NI9rSTfyg@Pb71B?zzqCl9_mqj_@@jFp
zLN%Cu)N+}Ia1b2~lWg5hX_OF0IvC|(87IHvJ*pbb5qvdoiGwi?#yS}1U_9lV3=SqZ
znCM`dgXs<?IhgEV$B_JA26|zc;$W&|hyIdZXM=j=^}HuGsAsR0o#9}XgV_%HZcsDD
zw@Dk+bjLegFwJ2fPiFB`Tr2t228M22*@X@kFalf`X=%hoQf09NrrZtQ<B_GDT6+H3
zty%m$UyES&t?BvvWI*5C%vBCnJNUrChYr>_SW9Odyy0M-gKZnsS6}6wx;bmTgALsO
z9c*&YdvTdp9c*^6g|kbtTOGXU;3WqyOZL+ZY8!{%0ST3pJc+NQ^eLypYYtu)2}>#2
zomT2d*)kg^=D+FSEeCHqc*nuJj9b<0_XT%4V0w@EZSL$_b15fbmT8xR-46CR*vqhQ
z&RcvquUGy2t3T%MlQ<l4z|RhT<ltimfB&Afp9@OJCk_rcI4GR*PaUjpoksGRkc%4>
z`R7u~03K%drSzzSV-AixIKc(z;423w9q)Adg@Z4-gLU;@AI-yIh0<Qy-!bhp_qy7d
z-#Iwv;A;nGxN01n<vMk|Q!7u5tV;zRM3dR%k&;G8esu5?_cRx`y7<|_c?TITGF|-Q
z;8zD}E=st#;NYTz>ke)(=Ie@o<A&+rii6)BzI7q9(#PqScopDO{3|22#$PU@)IX&%
z|KwJ=QC;QM_iqNX<bOH1#-2L(M<PbazoJ7o$aj@5ccWZp#?_2{KNj%=93@?(yMT+E
zT$so5n%2wGHmW7%vU_gMdv<M>u4VF5tywOzUF5mQcah^F*F`B8rRjP9G8GzUpNVI7
zK9WI$x4&4Co8*T-Wt4GI*7de`pNqyD)rN~%ImN~0Tr??>U*1Ip7ZqJ}-l)F2m}A$-
z<V{e4i+a~{3SAVr@Vh8>p<F!CHJ_=Hkjq^>PC4;r7tG!we0!JtDlYFz@QjORUEJoP
znu`W59&&NJi#uFsE_4@nx~T3V#GY2muHoV?7x%fi-$hLqwOlO!IPV@8wS|!1?P5kw
zNs?I$OAzmMF*~Ou)99<-tL^GYzv>E(*r*<G5pWSqWtVJJ6jE(pue`7e;vG{<%;B$u
zcjZQ07>uxss3<2~#9YLgJ(TMRR=t#E38BPhr!HlYxG4#h>$%|POYW$iUth?BVuzB3
zE*dc!E}nGpu#2zKGaIw5U$b7>s19@}c*Mn{E}p(K_v-!<#K&Ab&hS2w$uz!cS`!za
zZ&cel=P#(4y?JTgQ!a>43$hnYT|DQay^9Vmo_EpAMOzo`Tr_7$*QpBe%vzgN3l}Zv
ziHi?5<TJH)(JIBuY*KB6ldx#{*{nI+^B9fXOQkxx=;We{i>@wiZkgYi^J-^)tv@pA
zZSta*Q=!b=zh})|kk`%S7ZS^L7wjR})5Vo?B`NIV@^^ELs)y0_(9cDGb~ynvfdMWC
za;y^wCossxU{2Ho@)8*0^271?(8Vqn!(0q^G2X=l7b9F8yPosf_<T<Fk*>G-j}r8*
z0xre~A1gR6C4YXCx|o(d(Z%R;-uGxGxtQ!?ii@d?n~N<jrn#8zVxfygoJ%fdy4b!+
z&80Id(q_4^R;0~wz3(^87F=;GXXPdp;HSo2L=qL}yI8=PBXKyjNnO~a7IU~=taq`&
z#Zni`7zY=txQI5Z<($}?)e0A%9nZmu9AmS3X0uxDVvUQnF4i%^o4t6pd?#y^kR_Yd
z)e@P_zsUJ*tAC@50V~qz()*j$CKnest7y#oM8Z~j>*5s`FS^*q>9-=S)D}g2iBr97
z=F41S^(q!!$>?!1=T(<~M}fCoyyoI{7kj&w-63=G4K{r;r`i_PV2gTji+cUNthZgf
z>tZJ-!xr@pM{stTGh5VqF5c&EuvL8^t+zOybCbW^)h%jFqN2T3?RK%p#h)&&a>ka*
z+{>kUJmUf*<KiP1AG_G^;#(Krx%kAz0T)MH9OaV#G3y|s;o^{sPbK@dd~2KX&s~ro
zP6^*^l}6z)7st6|T%2}s!o^7!U%2>^{gPUY2CJNsid0TkdF_tuuU(vR@r{eKVlAn_
zQYt5#Bc78Y*80iC_bz@Ao7DL+<p7QU?BYCkQ5U~T>3>Zm?ObGMhm`z{yTp}@-(8fP
zS>lq5Ke+pe<c@P0SLj1_8cWGpns+Xv`QI6QMERGCYxJ;RxxZchZi0V>XD2)f({;(-
z5KI$c3Bi(r>4FfvNiah&Q!p#xJ;h4e$q`AeV5x+++f$yOK$!&YOW^(l$|g`Qfjbl6
zCz2oRkY7H5TN5~YKCeOo6%+6!P>_I1;LY_}Ooc-H2^0y*FRn!4b6Zt$0!z25N`jQ!
zoWLy!RF*8|Bova2_%pXk0>r9<w<S<b2qm`*xg&ucqE<bD0}Zm%59iiM;I0HnY9>%C
zf!f0F5xiUQn`3EA_og^C>m*P&fd|;51TL-2`t?EvuXnEu$eYG5)F)8mQZ7Fxd;g_$
z3N;Ccp5Ti1B6GZKc8x<BPan$Sk7#vrGouN_5@`B)Mn*lv6R;9kl)&Ny>;#+y#w9SG
zE*;Ns6L=<pXA?*yP%nY{2|SoUgC_Y+h(gF86Y@|34HIaTz{3gL_%`Da!N!8&qD)F2
zP3e=f*5e60k-(Fp!0dmePl?*o2_z*=6L^lU*2|pyS?==*G)tgc0^Jj6o<OJLS#6|i
zEd*N<6KKW0JX5Z9itId|#Y9Ql1YZ<@_6c-IptI<A6l7^9PKI*ccXr4t>`(8KK-UCF
zC?PWSNT6o|gSmkx&`W9!NMPgftlkOqNuX~6{RFAcM0tPFAz^l)Xbuvj8x+#*p$QD*
zG#0fdUPv2}z{mu~N_G_G$Fs%=juxa5N<P?Lf|w)|63{MY3@Dq)QU3e0?1>3XN?>vV
zQ#j=|W=&6EMgmh4n3lkTM%k3`?%<s|m1ZU|i;@HuCiqgg%qLg)XLD{ua_1y4my2aa
ziFpak7avY-^>%DNS0`S1w9LO-6>k{%v~~&Sd;;ea_$7g52~4b(`8pRux%}k`tVm#G
z0;>|(l)z>V&DR;L6IhqvAGc$TWY-FwZ;{3#rVR{;NXT0pO-stRB(ODs?Fqb+z>BHU
zZ9=F+&6g5*S+ab{kd(YC+1C<CW|P)-B=81TWdd&{a4>;Sy_uZ#b^`Au@V@YO5_ng7
zTBBU{POh4A+0Kt8K1krh1okAbH^Kj62B!y8yj02EqDjJN@V0&5|3}q#KuJ-2U+=P)
z-Pv6>0J34A0YM~*AQBY?QP}D3>6z)Co}OMrl9^-{0Ywo-1rbanm7stqqU4-&&N&Aq
zhzg=2+3)rn*Z=Q3r_MdMUcGviUR8J3^i&sNV-YqLVFOe76u-|m;iF{YW{GZLCrGsH
zrWA(lMcBawrwBh5VP_F`aa_739Vx<YvAM4Z`-`xr2z%LzeLi}^;BMZY(t#ozEW)88
z92Pl+i6kP`5;}CGqeVEzrLPDl#Jdt+S1?Us(oZ5eQ-rfcI8~B*S_s|s=OUcrw0bmY
zxA<zpsaWoBMc)24Ki$|(%Q;_!3!H9M(tqbVQ-nW-Uo3)uQ?`3oxxY9irzw|;@HdAz
zv*OYpb1oO*3g<E%sUYpDAju6O*NSjm2w$9NKTV<hCY_{A5<^k|$pJ4*sQ@4(MUaxL
z%q(K*049XXkfa6R3!v(p3h4oyt6i~002u*f2JqgY)G`5_I+R*IfUE%jR+*bE!khqd
z1325%d%~@GFtuy|#Bzd^+!8>A0P+I-17mJ}00jZ0^(#eQ7=S;(w=z&olG1Na?{YY`
zVgQu_Py+b5MtbD{s<0ZunMBEyrfF@Pr9F5!wR!-z1#o8o^#i;=!R-Om4xml|sr^dT
zq@-V|T5LkIv>69eS*zTpX;XV7)eYc|0P0EoLrv4(Z<;pwP$~<3F*&C}0Cxq@B!H#?
zG-RIy&?tb$0hB(Ry7c~BHnZ!Y)V8NmYc@+;dnlDPZx%rF0PYFk-T;0}&s^Lr?YkQ3
z?3~*Ur>6XvQ(r21UjX+9&@zBl0X!T)`vBKfv<~3G03HgU?=<Cye^M_D_x5UrPE%%0
zQ|47J+lK9(<7+EeBp3)l4L}pF2M`q!6f^`wf?>gkpebkx(%QOZKB6trn4lvV7jy-S
z1=|IXP<|wU4gow9z_S5#44_j0PX_Q*0AGBb+c|(s)07(1l`a818o*U2H(I*vW2{)|
zvX2Mwgh&odQz&P<_O{8LI>-Ms$7p+Y*8sY)|DVY19zaha<UNEmpRSAymu2+10G<!v
z)c{@#;DrEQ44@A?Du9;)`0iqMuK<kc%F7fsPwP6(AN)P%l>mCP8q*cyQYHgQzv;?n
znQ6OUEW7CU!hQj~9>ALc3<%)-jlz$oD|4nRZv@b5iLbxl3V*5X)0GGRE}YXU?WH?&
z1_tmBM@Pd$8s4Q>2QWN<5gh2wJ~u0U_Xgjf0EmMFct3z40W9c}#OMbi94a_0fDZ%s
zNVvMg_i+FVMTh(oj^hsBr}U_enanjZfKhbU9jVXmOdTD-XLMi{HC24hPNqk(!U2p4
zU~B+e1K7sd5y1EWmISagfG-31iZjTUHZ9=&S~MYmDeRvBCI&DmfUnuT>njesobwIs
zOjjn;*~a*|<=CfB_P3nHH*>13&Y8+iTbNpPyzj#%Y2OF%L%{o5_vfGGaAUb|4d3(t
zW&|)ZfLW}60JW~CGRzh-FMv4#%niUk=NoZ8b<i>2i7~$U?1}&iXDBqtr~7+nDAZpR
zz+z6K6R8Ea=Ma}kh1Uu$7hDm*$^ed+&RoUHB<HS{dM@pl^!3^FHSGLWX~iva)&;OW
zfDHkBn_7xh-6VC`7=SgydmP(Lk7|<Mc5Lnz+L>4O^f=%40Cog$B!Hs<><nO600#m%
z$l;)cU8xLvI6zI(NcKt(><eH&oB5Y_@6qZ;3O@zTq}i3z*kgwRI4t(pJmG!J@ffSo
zAnhkE9qjD~(~h&fwbM@oa8m62F|pE*^w=3nySu%Ok<)xcEtmOA0B5AaystaU6^sih
z`yZLV-(Ai(GiUq^g*v}-!D&>E<U#<yvs+a7R7|~`dQmETHGn^a(B_{){^INl;O_wX
ztxdihz!loeP1`y{IXgr7IV(LkHS<~k*8`ybjR5`$AW8KG`X-m$<2iLxa_3ymNmji9
zEzMH+1fe2D1yr28p0lfQPQ#fB+s@Qf$yIr6a=PmETaJoc6&b>5IaBpKs*H*(71_e+
z50B2yp(m8uomy4}u~0=h(J!y!78M+t3M%r&?4Y$dc`Ax$diOj9^!ah#ZQG`_Y`=<%
zDk`Z^RDKmJy}HUz5a#fgtja2?sHm#qRuy!)YASloR7Q@<In*S*&&-^U#LjIh{@j~d
zL-1mgbpBXhOGRxJ6ID!7QAb5x6_2U>f(GtTQBQ@gBB<g{74=o@-IaQuiUum~QqfHH
zx~`#gQ6oY2#@#B0?@Dg5I%j5+^u{WhsA#HU)+Ddmn=j|EY0X9Ro9ehn#l0$8NPn`b
z3uY?0P15gI(NaY#6%VLrqoS?qInr~D%C%-QS?GZz)|@-!52;|!&^_L0l74umQluiF
zLX{qSe!Nd3pX`f$>HBl0Ld%9!`(YLBRfJT8RYYVUI9M?irV2|%RD~_VIpdNiUC#cl
zcXs+LrRprjQ4v?+atKtk69pRNxQ}U)&S52I1s)Om?3oTK)~w1QVYhTt(Md&T6<t)k
zIxhK96&o{>8qZP^x!5^RsCZJvKo#$B>{L9hqMz95s-l~UmsGs0qB{*fQSliS(^us5
zP%)}fT2JcC$hj~h=c`NE&#HJ%#q%m&kg<MI^`1RhC3RK~U*uqzRXVem2>Y;^zKX9%
z&$Al6Rel!Sv(Q&0uc~;BoiIz8Guso6TbJ{?iZ@g|GfU~O;w|abHzhhika9MVO?X?y
z$GyFc{dZM-)iLP<6+>0LC#@KyVlaokbmsfw&#XTyHbe!Bp#CrwAFB95#Tap+kLWXO
z0<Ed|L`Cy2ee9)ARiusgO)s0q>Cf3WQpISg?I@9-tX7Uy{fw6Y`cJiTQ)ek$UD+sp
zGkvUzFF6Iq`^Jg>c$J5|rE|sZ&DM$J`Mt>#RPbdIt^i-Fn5^Q4ikm9F;T&Y;RqRtS
zMa6e27OGgpxv%1T)?DSMmhpo$=YuQR(^MS&m6c1Iu40CYnRIg1`?U0I+S#4Y_MW+%
z-Trj$TRY2cE}gkOIhTIRhR;(mU+S=czVvM}*MT1zm0NftV=)I>#ab0hR4i4ojBWI#
ztx&O2#d59*dsBI(II${cm5jw|Y2Ep&UYAZE>%A4TPQ`lGp-K97S*bRt*u){G%ZdJ~
zS<0?i%BfPhTU2aSu}wyw2D^Ug%W0ZE{|n!bvy>ewc8c;Y6}wgJ5uNh0l}57__Uejp
zzMmSW@0Z2utcssi98hsk1>ej$q~e&0<I<?ZDvq#Q*cGKSISoG^>x~H4gcBSi6+g;M
ze@(?tDo(K*Rh*Ghc)erKFiXeT%JP*t%)-Gsr{WhCmsI?%;#V<#QJVIfit{QisQ6v=
zE|=rSB~zJs*%n6s;F>0r^yy0A75p!m7xbUYDjL6%eVz3zoq0v9T~%>SMc>r4NmG66
zFK5%2?g&<7>OU%yG~A`3p@w7)r8MMgDA16i0UB~N<Z39bAyq@BhB6w`H25^si=<y^
zoSv?M<z{H8FxEHhs^{k%T=s)KCYkFV2Q*7VrR6!<n&*4RduNx`P)@^Vb<_6NN-MA7
z7Rp!WaBX46@1IGkpdnB5zV7|pY{gfQ`R;6`P=jAXEe*9bRHP{l)ihMsplGP9;ic`#
zRW(%6uzN~U;{n-a*XC5e<jqaG&8-^7&Q?~>R&LY03mj`wLqq4QUbo+_p{9mibA2p=
z(JEj1>S(B|;SLQ?luPTrEuWWTR`24tO7%2;bQN6p>T4)JM`<AZm)Qy>jNYx`L~0V3
zzD63R>`wjppPa@TPYXm-4b3#%r{R9-rREy$WfQKa-osQ5N`co)xvO$oXyAO|&~v7@
z)bN1l(7jt}{AP4I`=qtzUCv0ZY)x&Wp{<5O9ey1}8Uh;5Yq+36)u3tkK*LZCx`v>J
z_8K0cLd5$%tf3*KA*><7qUR`%22+Ej!PYQ7H!Z56@7Yua5=IjwCPGH3AD3LNV6k93
z!H3zCbCh0ll;>KdeNr~9gNBY8I#H<MZ4Co8bYY)s=&hlThQ~BKuHiWi&ufT&pZx?K
zMnhNOPilBd$ck+hnN+=O+T=M(Hx1o2^w7{#!!sJ5)i9}CE>jtn%~6OgW@hi5qnsB0
zf`%9A24ZAnk8(+KJ%yJw^wKcnGcQ+}n&n=h)7C6U-dDq`8U~2+YwW-g$rQdJ(SCxj
zYq&Bthr<36eN(X9TqRNNTN-GYsSD3!@}<*v_z0lkJq=qcrVY|CSln#IuCnjbGk;Be
zaISLU@6_yuX+!8*bCnq=HB7^Y8b)du#YR<2uUReqBf1Cw(4nDqe%dF3B%cZy&Y>6b
z9RF35pEjEF;=P=2>1G;?tjy0ee6HaO;bS;<8om@hR>L?UXFv45KuyiBG)!a%if}?n
z66IfOI6bV~WDV5pFjx6Tq9jcEPQz3UYc;IX@V$l~G|bnqK*KZ*(=`m4nmmtvt6`>w
zInw0bt#W2@tXt*GmQ*Snn~=mXS5g^eO&Ep>S*T&DhGiNSN$R9lIg2$cVGUb(lY+Qh
z!wL<nMM(Kd4XZ?x$kc?|8WAQ8uGg?Z!*R|;4I4FV;!>btkA}?}wrJR{VFw3D!^K-O
zw+YVqCW(Bp;7*b35~T3Iq`eyUX*i_eu!j8_4v4}*L1s*-CGd!bqZ*D$QbO{dacZ8_
z@S}#GHJsy&mR6i%KWku8qEF7S55Gw|TVgp;hhHT6o8YgaoUoaw^Y4^%+0;=%#~&L0
z)NoD1bq#;9WAD%9#=_qkxWjOXPRJ)gkzCerDLd(khO45pu|_(#BW`H8$+cZat`6>3
z{KFMq=jUS6l5`~NC?%ZH6y4jgp&jT59`ZIixWSUDBTa`-M><KrQrS8(BsEKrYMHw1
z0_otk38M@&!i?N$;dV+{-K!xtRk*uSP6x5PNVpXfyTiwI^6#|FJRSKu3Uu62A+!5j
z??GVfT&1FpN|XdqF9=0PWgX{q{Gy|Zj;cDwAI>?Z<5nHjbUdx2tB&e4%ZBI(>!_jQ
zb{#Er+^3_aj#@ez>bP4+Z5?%V)YrkAsJc3M;drieW<8doduuOm$tHHGbf=DHyOVjP
zZh0xYf$m*R?$Y7ikdN{4wbDj98tYg-SJ^vPX`-Vkm31`NQSbRAhJD?WMkb~4M(7^h
zyHmYakhefZ*K&Ga&ADGkOWk`C)OEDdd59L;=xD2ZSNYaD9%2~d8@4j}L7kr_PhUFT
z_w|vaNk@{3*rK&Ls*Wb}lz@&G)+Aq?tEA6UG|}e^#*b(CX)`F64Z*{uOGVgTf10Vo
zV&zlP`2ZEwVe9C^7U_uTaCEfO@vx4#4wpJRl4teL`6Vmuhs>m69lT-SQ_0Wo<h0lE
zhz|BrCmkJhbkx0D{q)}1yvyZftMk<y-jsHh{^1p$(Z_T=uH(zuIeheBbDq%gl+Gh<
zbI6~R3ZJRtJx%i#y_=5iIwtG<k1BfT=&56fjt_J^qvKf}Z?PdPSI6@@`snD(hSR}x
z^wRN)*m+3@uaz&ebLJ@%R_DBbBZv1P9MGw=a(e6NJT7_i4qyJ2>{nUJJf)wG*V*2s
z$*<`c^g_7-^OQF@G&<hYF+j&B^ORZhl+E)z$9sKIrE|ZfUzn$?FOxe^M|4<Dnfc0l
zI%eF=c}EA0zsrfxJDax?gLDk01MvQzepr-trO3xSVGiX`9m8~dp<|4W4|RN`V-!ot
z%>9@J(am&z(mm%>deMOF;X1~3OsYTME4RVj<@i)GQVcR$_F7KmwA|5D*6}&r=EZXC
zG<G=KIQ++)u{!8ZUvc=xC6D7=V28_)wVv-ieA!LXC+L`{V-m-DZO(3A?$<gx%~vRA
z_Lt`?-|Cp6W2KH&I=*A0bnp3kp^oo${2;zPTgNocIIjFUX6l$OwPjw`nVUt#>&JYv
zxF*c>`h1R#xjN?Qn6G0Qau<l4&fk8l@5A}Z$H-)r7IDVOR9ZqE79o78j3ehAHwsqh
zxMhuZXUL4tHBDcwV~wQl<$A>-exckZ9h-HmV>5MZ(6Ld5m9vr^&SxAt6>qM#=-8@b
zmyX>!w&~ceV~38N?BvEdJ+FKH$&OvuE1Pv@l@d3u+&7?wJu>~D|0idkj{Q0g=s2k3
zFe{myO9d)->z#c_2mfivhruH{j!NBD@wP5Cmlft(bexNcEJ`PJ{3zrn9cP4`5~R*)
zE=Q$Hjoq4jwnXx?5DI_g;+C0qNypzhe$#PY#|0g~vyI16|I%@hi@%OPbzB>ggxhoY
z+vS|9nZcCwkw0cHny(~&dAY3PijM3ca)P)@O&tiLbP(6sA*WIg|KTeY#0?!c>9iA*
zmfg(AuABZ3_3Nf51wBj_%x#u_dcKkp#IoAuNRk#PzB_VKgGdX)7euLj6*Gf4^Gj;F
z@C?BU3lz%B1d$a)`11n3D9b>d+#t#ZQ6Y#tF5vr8?>X%2aV4W%(ECqo`5<lydh03!
zqxnG;h}m0%C=6n0Qf_65`h`~vqEZli2-=HGI-U|lodw=}sS-q0Huj1<YhTVe`g?Y@
zpf{(g2XR{vHN^hyLDUQ)vL>1GT0zui-XQ8qQqcls)@NQ`b6`4+P~lXOa%T{HC0h+b
z3!;7y4T88Uh=xG~f=Ie8{q7)o_DE_ayb;R^qDc@<gJ==N?YE^fG!t@95Y0u0k{gqg
zi1&(|{5~P~2hmbY(Ix}s4~V>V5D&6{f@mYzSyo#i)G6ZFO-@SaQ%=sH2N7gjf_N;5
z-j#B9-<fGh(?T2wwmJwi=<RJj9E24_G>GCL+67?;vAkh9H;Cg4lvof>5OG>qpfF11
zAq$lK_hgd)d^VNQjD-pVN&6rk38F&~Pfo4K&`Gj)r2R%|iHx1uT?>^iLG<5Rk@|dd
zW^aRZ{=4?^Af8~ZAf5{1=^&mB^5lPXrB^ghW9S(~H{sob=s_16T`sF2r+-E%5~e;A
z#P3^DNS+Vk1-3DWKJ4~_oENECkn^%M_9a0Idr4C1Ny)Eplr7Ir-ymKM;tf_wl3tU7
z`UR0XDVh4O2f;u!`T!*)3~zGE2!A_>fkAu_!q5=j3F2MW-@wxb-V0(-5I+ZTE{MTF
zydT7-AT|dvgtsX5d~<`C$6P`0_}`&H3}gQU@lg=p1u-><kAwImh_OM83wj5jz12A7
z(;$WiF@m1CC7+VdgBTgaC`ld7KbtpB`Aj$uNn@bS7bTiwO622%_%euZB>I)$B*6)S
z69s99#u>g2VzNlc69&JP=#&z*?}PXuh*|W*q277I(}I{zUs|Z-bocZ4(-}d$wosX~
zP?;G7k^MHCgiX%(d&gidRCtQ={GfNTE)RKI8pMJiU$`n*$mM9E(rA&gD2T;DETJnd
zQh2Q2LpQw_jg|$y&oeC#Vg*NMSl&t*%?&}U3SxE8JIsH}0RI{h@~qdjL97d6ebD=M
z1EUQ6Tj1G6%Eq8~q~VZ7%9bFu25~ruBQgZ+v28+lhU9j7#nZ|TPVgXh3Ev&WJ|TMq
z_X_f;ULMj&&HX_f5DED~A%}wAdAW?Tbv(}QsI>H$jQjB*P6TmM`t4K@r-S%0hzX0l
zFGKyr5*I1g7b$0gILo<kM;;F#y?wFwjjeGb{JG8jzXb7X5X}rUH}G2!=UJA4x&|(Y
z<v)V>le0khMM1h5k6!#M=zS$2)j*m7e%s<w5Pt`8IfyIl?I2*FwBaqV{KU*PUIK#N
zL5MfFm>5Vla5IR1g8zPgC~?jq4?iqrAjR<15=SN`<gFJgJOr=LVsET{hIbrac>}i?
zNH>sSAk#n@17!`AGr*%Yd9o`{b<Q%pp~*J9V|#N9<VxV_-;9o4tnl!59{#+2vBGm`
zD;Ov+P-q~}K)!*qi<RspO1&k@riF!m0~HNaGf<s{F3Mw*BTJM@1{4F84OEe)u}ZfJ
zsVdlYiC0N-9xZ#Dfe}j-p7UA5!0iTVio(#n1+@*-63#;csm#FW9fmhs>lxl0<j~U_
z=`D8}sBfTwfx9Sw(|@;tMg|%h-tn+2I{NvcHy)PQ*gz8lO$}_7qIpo{iN}(7e&D-B
z{(B7EYv4&%xSo&R(n5-O%)osH?l;hqb`01CVg?>C(Aq%QK*Yd<1|Bj{WFTPR$`Yl@
zQl*UneW};3wk1S0aO!*oPB(s*NRzhc27(3*;UU4NCCg&j5i$)}2BHS|IXQm6gQrAJ
zSgNdAs_;ugH0v0M8)#?XVFRv#Vgso?{FRp}U-<Hlijf;j6`o$(-oPUUI*9S+%M^Y%
zfIi&OKqmv8#b+KB>{8-C3FjfQ`HvfTLi&N62Z6G0Id{4m=*Bi0xN4xgfgT3FGBCmL
zre042&lq@ChJ#)A94AGl|22s|FPzaA47^yvUo!A=3GXH36~W$ueFXaozADHsj`cI}
zx`8(g^f&O4fsg5d!}8uV@RotM4GfTGE*<3WuuK_f;2i_Q418#KN5l_Xro3zL6)gXI
z1_l`zY+%tcWr%?f47@L#QTFOk;Ry+&6f(<}PxBZac{Ps<$R`FqH}HjlPYnz=yme`W
zfl)%pM{+{RDl}Ro<ey2;@I>)32F4l~Um~Y6!#L4ToHza@r>7h|&aRtiV6EYu6g^4Y
z?`s2-4Sd7p!oWNO^9@Wf@STBa2BsUBYJg{WesAChHg>T8;vN1A%M_md%ldQCn_*z2
z?Vn>{u7R0`cM^Nu<;pB}R}W>jAl1Ulm1hR}doEXarC4BKp@F5GHC*-$EH<!2dUf=2
zg&#7Y^2X&#=@m*3)4$BXtt*t}1~~Co7+7gwm1wRuu!b{bh1Z`6NdngySTD`lU|=s7
z83P*)Y%;Lfz!tjD`^pZ^M+4jFin0)OTA^?O;qkxx=EYkpl=&-^od!Y${#^!kv)sPQ
zZc*DK$c1#jfdd9k8#u!eH*m<naRVm|95!&oz)=IoI2O+;*H$R}up<u>Zm`ljgZD}g
z|5yDBPa62qz)zf^hWGUuo(kJ;rLxD$_fO6Hbfwo29?^W(z|RK$Fz~109cp@xtIE^<
z^9FulwO1;?O51-E{AO5s%}0~D8efoU^}FCjL4GstFD|(TE^{$&>76P4w`9p!<(0zI
zr1=@L`m2;{2Cj3h4k06i8zpPei~PU`m+me3{}@OLAvxsnRKZe$DS{9zE%@L4Ls|$v
zktA*&GDF^k<-ArxC=>F&y~tHPD}?M2aze-rp==2GArypAE`;(SR0tt2glcX5U8SD4
zguLUdd2}|vaXDg@!o$@wFBTMr;18i<$h%M;dBDGUmGbNDp2J*QrBn)m$aAMFhfpPi
zsv+DO!gC=!Pn#j|yxH0z)Cr+_2)Bh$BZS*Ss2M`75cs`3eiSKhwbEv__pP7L=jHKR
zpS<$&3-xtFcqoK6A>0u{y%6pUp?=8wx_wK*1|c*Gp>YUzh0stWcMFcoOlF{3lMtGU
zq=jHJ!FxhzF67G1B<e8SE792%z36=*+%Hk`gppPuJWwKO9m0eElecXMMIk&ALWd9n
zB9DY%hM<O^NmLKPD9IZX(sQ*!%b^g$CGv?cd3CTta7rXmA$ABcAv4N(6^n=9hEOb$
zhXvaSGHF#MPocd;S?7)+bPAz+2tC;CA#@4hX-Rri@Nte^2#=NIO?1MOAv{$gS)=$F
zXpo_62;D@U=$xLypA~#Yu;m?IKPOUO2;s#L-Uy*T9WR8JL+BkspOE+U&t4(C!l8fH
zKYF#IrRFVK?M;NfA@JhWFND`a-o4PPg0F=zZl!nUiM0iPtyXHSQCh80-V9-Yqz(?@
ztq}iY>fH#v6Y{>U_52!TApPx0CGmlecO~h)kawUo@0tdMJmitl?}soXgiqEe=il;g
zUE`S@7Q%-iYzkpBl|%SAgc%{sq)rH*hA=sVZ$cOz!iW&YvPvP049P*eA$%UfDB+_+
z|DNW@<K`H6gc`#ak~BszAsipVM2UVW_*DoKLf*-HRHlO054ZXzh48fq6Is3$P0GI)
zGDYw^!Ko#MGW7@PlWBs}C40i!tPtjhuporlC3fZrnJYL?kQG=M!lDpXhOkN`iv^d5
zuq1?~!daPRQe2`|D@2&6_G;nl1=mOg)(Wl@Otfo52pc7PqE-}c31Mpp&qVNS1lu@L
zAsh?ico;iE*vX|JjM`!B3SoB$SGkykz~l1vgm65B6CvykVV@Y^AHty!4hugJ!a*S{
zg381rAsqc5$uZ$fN*vI4GKAA1oC)Dau7{iReiA$-$dmneUf)?(IE3FqI4{C;A^a-j
zmlB<pYdupe=t2m;hj2NBzeo6K>LQ()&L(Pqgz)G8=>Hw^jtxxIVWgZW$ShYRBcs>3
z_=k`dhA-?@=_c2FA^(VlF>6wi!eF6HDkXA~6d@2SEtnd{e<u*8hfxqlVHg=<WQI{j
z6mr8TD<muIRVG_7M=Uc+o8`i&APVH=h1?>@KFKSQ=ZEp7)ZZUQ#V}a;+rp?Msa3<c
zH4H^~Wiif^6{|=z(PTzxxmp<2ORTX&D5)XQ+XZWey(1GTtP@7vFuo7thcNC4qh1)X
zFr2V=INqIM+#N<E;q?U@2;LP&Lm|}RNyt3#vvC+r!e|=)_YBWwVKfgT5QZAYwKd8;
zY<n23!nik#7Gc~M_Ld;x{gO(ah&~WTYmu}OqyqCkDEbdc7Dn5KL0%-$OXIzNBWhvr
zqd&ngj4<@D_j#aZyYi~6RYGB$&n>jVh=vgkBN9fNwTc-A!|-uQ7dB-uT01kv7E}G#
zD%Qv{v=*m@FrEtI=`f1fw_)!Ly^di#9QKa>;}L=#gtQOi5g`=vbioE|Q+VtiH9LjT
zIgBo}DH$nwT*zaB<JT%rl*peHvU07`HH>ayydK6IVRR4k{3Y~}ZtNMxGhy@!|9jNx
zvtc|J#`B3J9{wE0i($MhQJ$OnlBjVY$ayp?8$$jH$FzD%Z)qS8R%KFO;jc=r*TU!*
z{`Z7uCh?5l{$aey&Iw~g7z4t1D~u1q7#hagVGQJOv!BCwM{K@ZQf|U5ac~&#i*QKz
z|IVPMS%yTdhK2DFCr%h2{{MMD3FFfe2{jW2M}{$q{vXCyVT=yrvoOYlF*c0PMe~cW
zcOZ5`lhtMs<3v7QicZMcA(T%DV`3PS!}unQNnv~~!h`}bQQWs-ObKJEBz;#>dFDO3
zR{5{;)54g}B#x}V%#1K*hOt5TtT1MWu{?|wG9BiGu~5id!Fht5BlE*pAe^5jXLOP9
z#ez%1SSn<h=n$zuHG0lU@sQP=o1^@z1Swoo;y-J{SSNhFAagO5)!Qf)+a$PIa7!3l
zg=`a~PWC!wM;JS~{xf`@e?X9Aw~#%8dj<Ci?iU<*F_St6!#E_-!-7WyDL=~Yt(8Y|
zB8-z^_#>zo!H-hnFJb&D<R`&Xf~N(~gmG5L&w{MmIU&Vz=>6a=rGDcq4&y=?zlV_&
zL2?8a!}ueNt6Uty_*3TKUtwGdg9pxYGX5R*&cI}kU6G{A;eXF5rG%5>dKfpt-eLIE
z<gxP<-Yl8L|CGo}MUWCfdIT8}@LY`2Bs}>ug4Bq&YVqXEL_rB7zKCayb}}O<6G8b1
zZiyf(;;j`7IXwR};tgL;1i2BErE<ipPXjp&-#6ONz)`CpMyOvP8S^5@7YWOyGD|F!
zTr9m(#QPY*9TC2O1SNvX5mbqwY6P_-s1w1h5pad65y9;dREwZ`1h+-NW-=q?3<***
zf?6f12|4RPQdjhug@MsKBd8yN9zigI1`*s9LDLAD@%+yS?v9{Q1dSu!5vgolp7bZ{
z--LB2;jDS{2=0mC-UwPq{dq1cb=da%BHnSS4@A(KMn?PZ7i<|pD``HDY^B<R5j+&(
zn>@HFx!OolkziZt9Cka4pe6@ejX;y6#Gn`vgd*q^LFWj<5kw-0Mc_odTS_y6s1R~1
z@_*;?+QNA}Z(LH_MeuM0uJGa#{lp=??IR$0<bU#Z5QUB+PaN>uC4wg+c#;ki!DEt|
zkUw6+pAzzP1YIQ;E5p!Dgx&u~(jx*MBivJv7M_dX`3T;OV1Q`85J9g9UWwpEiM}LA
zJ1-029bj)E{UUf>NFQPZuSW2icru-V_oa!uN9KAX;@u}FB>jam=`9u=!TbmoL@-c{
zQ1iVA-YMblM*h7mr?o*5436Oa2!=%PK?I{B7#+dTlCnOPEW;xBFoKVSe=JF#NLkFD
zsL5~<ju2#7BgMW~)d)V1U}6N5BKShGj~AUW!p90yf1Hqp>y$4e_)7Q$LAHyjEaK}3
zCP(l?1k)n;CW3Dz^*b>&rKBc_o|(#-OGj;!#EcBIFg=195zLBUw&a>Axo9)dX>&Lo
z<YOQ6BA6>lv_lC~Nft^L+F268q7uHiq@S0H{<0GJ@(5N4Un#gsaJAqXK{k-4)<>{`
zQ?fmpx5vf^HgRIc(I}415p0RzktjMuv6VOf5lpu*!@~9mc0}-{g|95^j9?eX!o)`=
zc1N&>^VCEO6MG}r7s2@mE<~_Df&&qpiQsI6htK#9MsO&C!$c=dyIvt@d+HHdyQ}a-
z1V=f))+xsXj}!N%GD<wjOF#raap`-d@X<#z>dq^8cAau6g428|S*HwMrw}_0EBu-B
z<rn|X<{4kDQ_ivN>y%#ve-->qI)}pFx%fxmGm&oMj|l$c;t;_<5&RWFyUFFQMbPt$
zLXt}n{4J8pf>$EADrDa}g{i*v%Jm3th|O!G3R$tn>y;$aTiZ*UNHvjc^1CW&r36z1
zAxL3hy|;v>nHchz(q4Gh^ui1inI;;VxZ6Y-6Imv1HBrq(wuu}Q4bt-z6S*eJn#ea%
zVB+&yzH%nYo4Cb9yFH~CDu|HsJRxuX>L-73y;5kxFOo`v)TFhFCJr3)6zUC6VYIS|
zDpCrgRfSNEyt;|oOw=`ThvcmxNwrMeE~KU)v$L$)qEJVWW{0d-D6c2c`hs@~dc~Qz
ztE7lTWqy31ppl7LWAmDtXl$a1bYn9k{Y;TJ*3Be|sm+DlV|rf1=zS*cH}R^8*VwTp
zTA2u&h?sc5L~9e9DrH?e;eU|wtgL_uRmekvZA`QkQY6T+pw9M|1)2%n<SVZk+cQ%h
zzol@|dL?MWFhLR$q$as(!ZPu+iLNH1CVsgy?=ce#T9&a*#7sCQ;wIXgc!X^XWVnLu
z1d9djet8d@-i8=ci5*OIG|`1kHqpsMXGzLx{;vW{q#AL~xTHj`$EB<%1X<{lCY}<$
zd%eQw(1wNGOgv}ec@w@3N_P`IO!Sogd`2YC3TF}nB{eoEFPM1A#LFgLq`&p`KIzEs
zU_L&jOfM6}-h!_PZrN3)j}XfH3Te4P>1X0~6N5|)Ht~ju{w4;Rc*n#x?*E(Eu_^y8
z69Xhl$+B@N$46(pZGyNetFYt9{LUMccTK!!@+Y<oRw?Mq+p-}~4`jS=;sX;yP2iD?
zAtpZApbXhuz;Pc&_h?vV?FMDW2IbLB1s^ksy=vhu3!j=8ZsJ!HznK_eVx);RCf1r5
zWn#36#U_@R_>4|yVxoyjCJxd9ziw$_$_f7%j=PC*CdQjMzd@N`;!7c42~xtvih+cI
z!mmwCrZ<|HZQ>gf-<p_iqSi)biiz(`d~f0h6QMdjN~Y4jBqgHLgj0CmMun0YCT5BP
zc|vWDiMb}`nV4T<FkxhYiG?CrRAM0^rzw(tBlDM<SVgnP{mV=&mr<tAtl$tos&w3_
ztYptzmd(=R{?(%P;l7l0Cf3t|WkS8OQQ5#@GO?X&PW>_)IfG1W=JFEo-n9H~qq2of
z+o)_6q-2MQohFW&IL5G1*~K;A#6ID>1^2M$>-d<opG%F2BO*K~c*w+IA+$q<gxYJb
z=8-ekaT6y@oHB8mV`So_iJwIIN5O;|vy)JnS<aX^E97Sr=OoY|Ehmgm3ly|F?my2f
z)I+{<7Rp<=VB&WZ7rFS;yDWZh7awG0{b}N|i7O`lqT^*{T@obun~pJ{faI!)YbO3N
zktF)pP24bX(?mjnNF4?$CtE0GA;t1CQi0)rNvef33uVLz^?jCSA;Us?iG=!@B4jQm
zWm(9!kYgd&LfQY3CsGr}Z?RCpLRAa5TFA3-cAbCJLwS|=735neu)IrBp@oVTDp~Mb
zm~g<mkto=oqFAVGp^63ekJ}XA*6}4s0;^f5ZsAS~^)2s8dYfP^!5V_M3)Zx-VRJqe
zYFm6o1a&RkA@X__c)_Kd3jbl36W&8av6X*mqtejA-K?91$1F6m(AdKL7Ft@^yVl>t
z!hIHwbXJ-)$!Ka}O5OZs7McqozsJJ87FtM@))*+v-lQxmRk*CUuob(pc42!94_Ihz
z;Xw-zSqNG%EVQxER(j*^O-d1~J*A9lK@$=Xq$#~5ny^frkcF@X$3omf#DZzTwh*(B
zx;fvnFl}01RFF{yMk!<<r~Lh^6_TdqxfY69=hg-71RoZpeM*9xlt(OZ#p__9qlE#(
z%XG3Z{-nRlCZ)55E*6e%P1#ox9=Gs>g*PnpxA3Herz|{Y;du*BTj(n7>S5uhrdh9V
zQo8XzZIja7!Y`YYDw~yoC%ta(DLT&xJ}cOIv+@Ev{ErI#7=1M3MGG%kc-cZP3nwOK
zyk_AQ3%y12RSSJAv^wc$=qr*0r&-D=iEdWj+^l@OS$W+8@m!s}H`yEuA2Dj-Eemg3
z7-nI8fq$TM*AQam!gnmZYvDZ$C!1lA$Vu3T41+EF+6?bYk|(KL_<>{@YGL|jh0zZ!
z3|;46v)Nn2KjGqUq2?Ba*M;GhchMQoS+hkMVPT|&QS4zi|8ompSQu^LGYds+e3URS
z?-<Tgk&lyhC6b6tIw8hsXM%-^7QVJH*~0H`QoE;o^ET#BvOpX<+RxSI8&0k^K3>_s
zWpQ<U3{!-BXJM+4?@Q!A2${yVH1{-TT9{>F9ec*YYzuQZf|JU%Z{u6iS($5LnT6#n
z#R8)Y^DQhW;R}T<vaq;BvP8&I!PpjMg@u(YB~Y-&!YU!;t1S#}_HSSVDOoELlEugK
zHgJ)NqHGi!Eo`!|nf+$rFS_xz)U6h_SvW_J;{88+n4Qm$xzOyiyqy;I(2FeWvap-$
z*zmkwb@KA&79Jg$vCqQXy7_@Jc?V=(?-$g!r5v<y$O1n#dzc<>;h69vT$wjzP)L#p
z<R|C=7Jd{@?y*HVZDCx!jGru=5<<RYWD@0PED+CH_*n>>#^|qH5}Tq!R@StvEaGn#
z&a=W<S*6DpT;MobxM<-IuK(i;82%J;`lO${{}$yES6T~~EnKmX8HKUNf0a|9bpZ*Y
zxMtzHg&QKFFgc2w7XGo26!iinA8t{oNy1P{Bq>o$-l8NVrK3oVA}tD^BvF_i#g>xP
z3=uLrLm4SLOE6n7N06nIi=xU)Wtv6NJPNH+cKIl7iK0Rjc~Rs?ac30uqbP`C?68#E
zqNou?VHEx-Dn`A_L6s<~Mo}pWB?|P&s{B95REArls1`-_C`J$SE*1$)klV#V?I`L*
zF;B~?DOgL8Wl`rqv*fx_(B>VYSx-3SET};gcSU&uX8~{UxXw3>qH)w)@b4BRX(WUm
z(nLs8!M58{m~>AR_ex96txAh1?jw&vkK+C)p3csDNU)_KqphNNpoF)M;=vMraf`y#
zHc_-KkrW9D2&#f*U&{+h&8Zm^i4jF8ia}~dIEqLVrtqksC0J#v!c<%Mgxz`Mj%18S
z;R-2^;$b1Q*^YJI>Q$q?NEjvW7)7Tj;x=3xoulXy#ivmWXEmaDEQ(j7crA*@qj(~U
z7dUWje0*x=)O#}OO~9vUA&RcT8GSyAZY8{X6g^6KPa)3;J{!ezLb%2<ON+)S#1~66
zUlQ`NU@yT}1bYki5$qd9=dB8J^^4;5DBhzmQ1C_+{iAq0ih&Y+Gl~IGyd``n3knnv
zx&9E}5g{e-Mm-4$1IZwf502t}A&(sMlMjjFgD8g5qxPjFG>1j;VH6*U&c{)FA|#QT
zz!6c5jABX@-$gNsZXCq~ah}hj82^y(^C-TEV)`+EpI6F^q3dq+E(Cn^AQ{VyU6gTx
z<D>Xe$X9}^ujTLDQeh%Tr(4D(df;(C!`DJ4NAXP*-?E^6DHJAfY82mdn%Jmo;|KAm
zxlxoq?w=O*9!{qVlFW!=rtn#Uvjyjrr2hG+GB1kxQ7njJVHAHv@n;l^qF5Zo&M0<8
zu_TJ6QLK+*Llky(-!j3~Q7n&Qh47V8tP;Z1(5=29TNRQuQLK$(T@)?iWf+}2GKomO
zk;_O2Wos1MSb-=ub6pZODlkxi9Yuxhl5q#uw2?_Y8>b|)?~Y<m6hB3AiqkfVeNh~V
z;%F56qd34Nh|f?`jklZNphQ_Bg$#!!O3TNhIL`G!)M)mEkduOmYO`p{*__i+oQdLG
z6u(44$yw>%pGA|YG)3XBQT!Ig`6w=keM(qQCjBmLych+`WrwgDG|OuI6~(0}a%|+<
z_&bWrQIxikYU4^2SEKlcYrBnWQp63x>w?VQXmtfv^(H6jtKQ>tvW-$UQf#kpS?&Mo
z!_r}Ub)%di%|^P73>!WXGKs<jX4)tt(JUL;wl}N^Q?$nHWo?wRQQ1Zn8|7`>Vx!Q8
z-$n%+dA8RZ1(GG7NgX_W29iYE$t&8ZWJ3`h8mDF2XD(t@8@JlH-9}9t)ofI^ahr`A
zVw3$t;|XgtmC&zcgQHX1_S}GhJR!fsMm-z4ji8M?ZPd4MkBxh6?-{>=jV3m>ZB@wc
zveD4??$)MkRqkfFos>p`jRn6_^QqQU3T<Yixe!WNhZZ*0RrNh!qqUIxY}{{ydx<S=
zv=TK=?YSKaHve9Mw^$FdjoTE>#zQvRa9p-2ZEdKcRwU7Y;IZrqOsc-kvu|$m4h`n+
zgkgJ66TBM?aio6p-`7bA+c>{9FJi;AVcCe<o(sinI6`beT1XHgd9jUl>`Vu@Ie6Gc
zdm9BY6vps~jSh^q@vXJd(MBg5qil@k`fq~|GVj`W&qfzou<@9U$8Ee|<3$@!*m#m7
zVtcy^+%$N~#?v;smPEVR=x%!(0zFD3R7-3T5TCK}tfW3C_`Dz$5<3Ym*?8H;8#em0
z6?J^QZ1l0w*TyRn?JbzHIfF?IuiEHm<8>Ra*`9q$p5Er|btF=0v+p)#<Tm9^8v|^-
zWh0)HH&Bq|Z5t~aWZeB(;XBel>>>)ee>=#=r#6PO2R0~!ZM<(|2>aj0P#Z_KDRt@<
z4zuy0WckF#M>dvhQ$8-SK+Zr@lr!`kmp4M}{2k37Y4iCjpWDb)A4yr!E&Veavu$vf
z_;VXy*cfADtc`DMd~0JI`PNj1i8jXD_|nE#3CZSs3MZ7L?mCpt=p-A-U6ii{Ckyg^
zmCc{R4zcmQbk}!+?2R96OtUe=#!MU2ON5EON_5&R8LtE<&apAq#yomRR@QtQ3z$7C
zi+8gNZ7gELZ7j8MVVhEFyVvB!Tn9#!;ZEr-+m&VPTTX}V%5odEw<{|IDJOqwyRyp0
zY8z|lS~I-66b6!YHrCtNU}K|=!|ZAsn`~^halpnwV#~rUoIxFwZFIsf%53H3Y+k{4
zQ_5`T%w;#)*kxm{jKXd%l|{ax+m$`^4XGIGmOnmeA4hPzvR{xAaz58{L+_C7?VYX}
z?eDWT<*1EgHvY8nmyP2#PT2U}_O|{eZdXp)_{qj8j?v8uKeBGym9yKG(>Bi7_>D{1
z4&|(kpJ~d*uQtv}O%li?7DxV{@H{(B6qrOIvHlL_qK!X9*lm1ao0@r-xcJ+ce-AQZ
zxXc#WxMAZaXUf*}tD=_sM+Ne0BDpTeQux;HKV0@>NQogS=Doz5EJ)J6S0Nt^AKalJ
z=5=85fUMFnq{cwPkS4?@m@fF(4ka^&GBISukR3z$7`i=~!H^@QEG46oa)r}uIU%gT
z7Y#CQiJ^i-^91u_czuV$j7%c>W2hLzhcSE<L!}r`Dn=j%HHOMDREgo2@ADeRP&I~I
zW7xh!sT%{I;Ht$?J%-z2_-co8bw=K@5A$loyany{7>*4tB&iwm_5^ChP&<Y?!V^g0
zM`?L?#85AWJ7eAk4#QnB)EC~uLIWW$epuL0$lZdC1b^D0P`ODAO=D;lL-QC~(sB&n
zy_|AS3@u_Pp6%@q-^&^%=N$+n-510CEU0u|)=s6$vAilfl?P({_e2KovGtuw>lhx4
z;UTFuC2eEaG%>kN3_QH3VVN{aikMxlDOwDA4Bcbs5koKrg9XLVE{4uKl~4?k7|a;L
zF}~4V;JaDjrJc%{or)F1^qop9hN#%LW4OAmVAsGDq7(CW;a2Tb;xQ0i!NWV1hefk<
z3|(Sq&r1MX)X%$T=pgcrf}KQ2Imh?W7#<TLH}oElq1s9RQ!zXp!xO@v6r8&$o${{2
zyU8dJ5A9E(kOR>(hG$~vAH$n5JR9R@Q1V`mc|Q&Cvin>N&(rv$885`}qL5<;Q(h86
zA#2quhF4<fP50QTyeico=@awzPx^{*=Slx-G4!LSNq9qam@#*k!a%|&(*ZFIjNu(g
zdW(~SgSE@s`pzGk*J_vYZVZEB7#zcUF>kw!D-!XKjKcS0&<5w-+?h8dh7V%sx=R@<
zI4lO<1@Xb3659VbhEHPH62sOQK8;~`4Byg=Vi*y_$Qbwo(1aM?*rkk$;fokvm{mAh
z{O2=4I@0GP`%_59#4t7nZcC1fVLWHSnv4-*pX5vWzesqS$LPcuHtbR+#qf0ulVkW}
zZa%{|yr6ehNVXsKAK9gR7sJ#TR>ZJUTK#<t3x)g;!!-I#3^QVw8^gR9W^yUmt#D_4
zb_}ybhf%g`j&S}w#BCV{dIE8N3=2fgDAg9lusDV#F)WQ?Sq#hBjim}3>{cGxt$e&&
zxou?u?QGqxO#HK8RSc`?7+G0d?)bymni$r_us(*hEOcz%Jte=d^=gU@F>K@<5jm4K
z3!yxrwvCHJ45b{TIM@-x&KOR`a5{!vG3<_Ee+&m=*dsOED|l;r@8pX5C$sjk1BEks
zFoq*B9HonL8cJgii!%AK7>={+*7#3S(ga&OdQ;<sa7N4SQGSeh_>&-$&Ty8+@D~Rz
zhM!|NN1wbi?@wY3zs7JOhTmC44CmR{ttsoadb<+|WR(0Ohp!|lAz^CEJxcXOh1_uX
zo70&t6!SJHE(>0XA+Z;6XldScsq;T<#nQYR!fy(4X>#@`Ne+@7Z>c0F!a-??Dh^T|
zq&eUwMxFzogLDVHQ!VF!3ucCcEC<;RG9^k$86lj=IYM$BlodjoOs#kzg$mrTVzj*2
zxka#ogX0|vXqNJP2L%oa9rztobnwL<W%?dv&>p3d<Ner8lJrnM?_jy)R(4Ru`FE|Z
z>flxf)g*dv$!2>E2e&&I=HNpIH67G)yhrH|9MpDD$3bTYT^!VPaEF7|4jyz+&%w1l
zN@E929Ng)kzJmsi_xpZB2X{NTOL*cZ{yX<7jU1dhm~wS%L3pp%V+>6lG;{E-JaX~^
z)ZD>64(@f(!a++1tyubbA1_JwIe2=nLVmyF9ZyHnf3Na@gQ?%=4H=S0PE!v#Xv5+h
z#2pM5Nm~a+4(9At0uDkB!VXji8bhUQ-9di4!iTR`2s$ui)c)S9Jo}hJtT8t);vnXL
z#B^W@i8`=_P?)GW35CQ#S1P#DOOH4pFBWVk_^@DmLFVe<pd$zOwY*Lap2<wvvMaCr
zK83A&)WKs8-f+<0!Q&2|aPYE&UJjmgJXhx<&+`tRVh=dz>Y$s{_E`tr=|%O+^pt21
z;Vgm@hG$Bm&q*qyOnQOUc%$$|!EH_RUUERBoIee`!U5f<yy~F0<NZ?5N06kikbMVJ
zUUSgT!Gw-VY@foN-q%@^-~2P~EPT_!01j3MWr%~f9Prl}8hqcu+YSb@AT{G1A{|33
zNB*uz-V@|z8ij);>9ZzY_1H`zpFoF7XOh$LK63D}gMS<(#qo)QPaP~}DI8x1BOLFk
zZIXkL4n{c`?cg(+HNT8V8Mse5_i^6moCtL9?&)7T;Qc3mDH}uOeaeP){;>|mIUr#e
zFNCI8;#X{=gNaO?pO>n7ox>-KuN_Qw@Qs6S9n7XXalSbCj=o1zyOgO8zGwG7nlaPC
z4??Cpm?2~ueWtpPNiT8H;HCD_3`&Tz9PkoMvT2_(mwx_Fh12_#c@E|~Sm0nGb$GY$
z;LDB4iyT~d)Z5MAiG@4w_1@H7BB|70?qCJiX9qhStaPx-!8!-)>Dz<z9$xQX&H205
z|7vR98V747%hi3}9NFMtql2v+dQRjMe*SF4U->sV*z8~nC;ongt>(jmyI=WXTi$jD
zufJb-*Wg0(m-j2X9PFk;I{4MW9y*4DlMa4#u+PDM2l@ep-G0EqK?g_KK!<Pscnvx1
z;0W8Y|KIse!oZ~2`<2!EmE)Yw`;`-%M+X!J@}C^<zV5LD%Fi;sryQJia7Or92fQuk
zNHLI5=Ny}Pz_a|DgYyn9Iry6mIiT=GoeK_rcf6bbi!4IOAA*S|0?Pk#yhjF-%UqxL
z7hL1~I;dQ6cnmLUt<Cu3fRb}iX>m{)aZtHVXFI6eaBx!yIZI5A<Nfao7^=omDvp#m
z5J%}a%EeJWj?_5P;uy6tpU?OU4l2Gl%EXZsN39ci>2YMlk$gz0a!ARHdtG$bA%)9(
zw(y*|_ZaoyAtg5s?T}JdkUHeNox3HD!Z`eKREXobLH@ir);v<!t8IRM90hTH(IdZW
zy$oWzLrTRsoc9ZrILIr-ajAS3?^`OzQAOl5n7c8H$ok(JN3}Sr$N9Mg?{axt95v#&
zU0PQwj@oh5ENLkfs9z_JJL9MyN8LE?kR;0MN#zp;8zdSPN5eQ0aw0P(vNw*SNgRP<
zsKsa+N3%FyanajF^EmEdbK+PV$GvfI>-+gQUWjw&3irivKZ~1J&@zrzac^V%^JD%8
z;%FU5Bn~qUy-wbPaf~^nXwr&@q_{S5w2h;PWtG%lEooz-KGfGGS5VLp3<-t>*&OOv
z!sCL`IBX%5$Ama>B$VAairL$7JRHYkaXcPJ`#2uqc!hjj;^-iRymK5K<LD&ONB^oo
z$ul$Zp8l;Ag^!AmoI-{t;&?iau5mmW$5TxGt3pDJN!{Y;9>=rv0m<U!{i{NcIC={4
zY>IrrAtjNE66Sp|j+f%#>pdglc$wZ3$H#0=zr0rjN#2X2x9~o3^o`@yI9`+J+k*Y#
zcvHyhal9d9&)yW~>Mxwv^Z`QN;t1~bF7ZqnC=!x);=IIrWzGEAlMfO;nBx-15aGj0
zG(QkBRFI}V6!K9?>fDolX8%N@p9&5aOxm6@lG81Y(Q$kh$9Hi|jpK8Ml?CGkNxl#=
zMsRE#<Aj`U0){W+_$rPGaZHTk8<9^EWUjA;{M5uVH977nlQ4W6$CMHsrhXsC4{`jW
zWzD0za`Qj#{d_P}_;kS;Y>WJAK=~|5oh>*=aIWBrL(2R(7R0fT4H=fQEbjgEMw^S`
zSRBU^I{#hCj4qXeyt1^c<#DWtV`Utx;#e*E37!8msk4r5&jrc_Tx^JABbSs)*$3m;
zB!#lJyM$~O+#<MDaGT(E!5wkz6vFzKIjk_(ZfVyZ!M%d};@B_bfMDV$l0$JErvGPU
z9f{+oI8F&aDtJurxZnxFlY&1Aa`v5$<4hcvWy+t8<L9`y{{I=rIU(d1*cHNmjpH{V
zFEvg%UqYzB@OvB=OZ5MUgGWSC_?Jj7mB{}t$#Nx*t8rYTXI`zq7esHwah>boVP#4u
zrP*QSW*q-;sccx7<a$`jMY0fb)|U6`B&A*N9i(<H9(IxHBF%-*MY@ZC3)Mx2i%b{w
zT{Lh}#zmHkiY_X-$acN=b8c}_!9|XXTo+|slygyD<Ze?iB;MFbkUSUpF8F$npC~$o
zg3II$pNR)j_@2-3<Nl_6|HnmT7d2hfa#6)aRaV%=Z7yyVecG(%de@-x`@O}#ieL?v
zyFcZ2kyDaLs_lX{>$<qZMIA{><f<of@;hl?lxdUIxXVRD7tOe^ySUp$BNvUu?BN3`
ztQd7@wu#h%d7Fw6zO!_Xi+f$Pa`AwR79};j-^G2RP`KY~SIZJPEznMD7Z194NQ~1I
zjkAl|xM(Z&p(K1*DUvKCnhV`U%!T73=)!QlHyCZfkf0?Pb`cR`3epJG7@`v8`;7@X
zchuwVzZ>JO>+Omc3wry*^7dVO7f-l&(#0ce!f}5G!H$BRTy%EPML3flXO{|pOpvpT
zg(g;vr(8Vk;#rY*73?9%T-{uB7oO0hq^CrmasORyD0$As^DbU+@nT7?UM^k|{__9i
zO<3sTqOXh3Tzu|&zgfKMqMr+HO1$QRzoJsYi|^|$-f+?1#o)ur02gmjc|rc0F0L)e
zpLJMy+r>Z^@3?rE85iWAJFH|LQQQUj@3|P{g1@d79Z?3m-g|Ux;3qELcQJ%f7eiTR
z&K(!SB=x@+>Jl&ACGcbS-xuxp*!8K4;VwqF-XqvZ7o%K^b`dRkOe0}n5v=?dF80$&
z9`cQGG1kR67vo)gPfrMBurgn|_}ax}7hk!k_nUu$3!V~S5AjcQF-iQKuc$qIMES<W
z-!n1>HqYl4{kJY=by21Wl6*%WDB=0d@q>$LE~dMf!5(n2#Klay!7u)Kf+VwC%oaYU
zL^4+hYs=L6!WRfGbg}4vl9swy=3=wUH=VHD^>&QcxLE6Ah47UwR<VbLGl?6>Y&!|V
zIuUMkv7VOz&XiH!GX=w?u}Pas^vSmh-{E4XkZmrum!zg|OW9Sz_Xyc7NK<=V>=XXp
z5rtQ07I(nKK^KQy9OlF?M&n`}adFf|sbZuQ<Cu%%Y)En8HTL-t<%Emhgq(Eoql=$}
zpK)>4#VHr3CCUpHIhB7FJm=yUArvzFDuJm~Bc6A0!Q~rVxai^%N6p0_F8&n#zeGP_
zin$VbFT1$n;;JYlgfx;!BDwD32EES3KOE&Xe!e%JRE$@Y!tN*Yl8eFZ=){dQx292y
z(#0rSjB>@E<E0jZe*s7ro+juMq%flxnZ+o>?8V3~_U_yHlfk?rO5exR`6QAflH6h>
zZsv*Qi*ZXasuiPpF)9=zuh<*<%EibpMuG53#V8cw7i20&ghNwNqWoz<5kd(^xk@pr
z7K7yfF?AhKQWVeo?)HPb;{tK_xPw_yf)W%^lpqL#1W~et4KuT|J2N{=5_13qK@<r}
z5Hpwqf+Uq7AfiZ+43cxsIV0i!O|AQXzxVpp`?|WSy1Kf$C+|{><xbj>M+sE|s2ae1
z0n`qlS^#$kP&0s90o)Tnby2Soa8KcAjfE=7NxwJMBMp`kW}Ou0{s8KxFq<9_ob-X~
z?x6tqKJ%lz3J8GJ1_3k_&?taM1UxL1O^pRK;lSq<vdYplfMzKstF+TxthEsOn9!C&
zTM2C~luw%42Jl1x_lNL62u}vkE`X5%j0(7$L;C<;54i8BbP(DxfKCB)4xkGoFZW5F
z3ZN?|g`)_dTL9fTn*o>sciZm~Kq!E)-~c1GQV9nBJ1(eFB_|SqCYXl?J%Efo3YpY3
zL^3K(OdCsp6F@?&*#Y+va6Dy=DtvB8TD+B~cL03?cqM>W1LzyT(<1po0Q~}ZCV=Ne
zJ$WR0HifDCyx`;`$QK2_#C-lACcEQ3lV;7z^G-tl00smwkO{L#c}=o+5T|L6q6gh~
zO$Q67>mG$c8xp`!iQ5}OhY2PB%>dp?;o$<_7CJ&`zdg$60N&xk38Huq?*=d?fWHG+
z8NgW1&eEa}1NbO_ae~JSeUIa9UVeg5g7*XXKya44Q1@{Fp9C;1faw8z8gOrZvV19E
zqR>eJe3s&WF5rs*#_w@I_W4SxUkC7wfNuks9Ka8PzZ3d>0KbXk6sb~Ws(=H{Oa3U}
zgtYSR#Ebxb4&avnW(N4HYX$F3@y!ZgYnJaPq5Se<b^vn%;M4Fw0+<`Xya48N3G-5M
zf6=eZ$&*Fdd);>@dM_(l5WvC!_*CMz0QXERmY6RRN+t^@f>na?Z~FcWU`YUf(R07A
z(q3h00LvI&xwW;No^btskTvh$ic}%sZppWyRt2y+fHeWE4d7G&rvq3Q!1@681+YJW
z4FPNnV0!>N0{Dkx+*h<&=q8~&(W0p>g0}{+E#RIvl0z|`3hoSGm-yLqn|sQ)JAgd_
zB+vc6Jz2C@ns|ar`2ztQ4B$`zhlSa%K3K@7@DYY(o98Gef~!oJ#{xJWz=?o+w#jl*
zdgrMf<<A6gR#pmg_*?+z14s)ZJ?O5N3jtgS;A#LD1Gpqh?6OcU1PZforCbZ(-vDj|
zaQ%PQ%gq38$;wKu*4rs9%IkaoTZ|b&*8&ARLDvp~|E>MZpnJJJAn4vg&k7<th!R2M
z1koetPD*YNc|p_(qHYlRL6i*Qt{^H0Q7VYiLHElbztA#4_=3Dy?Q+TrEhp3~l=p?o
z2i-H7q97^=r%<XCCLpaSR1wPRh(SKmJEU4Eh&xk!-gB#x!qtPQn!?ot+%5E;Ad){y
zQzM9)LDUlFeJRO%1yG=NiZgL|iTi_iAc&Shv<jkL5D!XIvmhP{qQ2n9LK_6pP(adt
zBf<3Z;Z%>rO@#SK5KaF_^3jxJ^C15`(H-w&LjQIC`<<NDQf(hZn;;$!qHRk4NdZp?
z?YCEHm*S7vt8@sWV-TH!=p01XAi4$7MOvQ{${V5Vg@vHIaFVUu%E$=>5ey;}L^$Xs
zaNi)*AhaOtAmTyj!i)-yq<S=hpe_x@gl`Jp5}N#(BPR%c<I__(38DWV;a*bh9Yh}i
zG{OKrO@mT>CWx1UcsYn?gLp28=Y{!#&}5un{2xr+SHyu=>Fu@*R{6ZLe@b9r5U&L>
zD2Ty9Yzks?5U&R@B#7^V_&$iCLA(*f_#oa3Vp!1qXmL~!ql0)eh_|FVJctoNj11y!
zsZ!vJy-M=4L{fep$np-?Lbh*=(07AKez7<<h;hPUHCZME@qQ4W(2npw5c-kO4^xt~
z^Kr_;#2_Yd0S57<w0;)E=K?5`{4A05t02A(;+r78O<71bC4ERrP7dOSAQlJl2N!z~
zQ-hcr#5}I_Af^Q|D~O+hm@cE65yVXCokL5Gj&^A9=OBLJRHh<8X0mloiu2Q6<<}tQ
z2k~1Fi-K4n&QN9{lS)44q$f$O--VNOkMz$VmISdXh}A*-6~xjYmItvSH5Lji6HFt?
z@^=s`Q#RR3=9(bZ2C+drS(ox>y#NX%{oEMDKf*~mL;jW^wg!<ILRJXdg4iC!#UL&P
zu_K6`K^zI<Xb`)C*d4_FAP$HRdxF>-#J-eow48K+^k5K&gn#&dd`k+D9t+}l5T}DU
zBR-r6;$#q~Qj$rRk~4Ky1kMF<KIJXdFQo9Az3wNgmxH(xL|O>xAzbAq6U5CRZUu2Y
zh=0Y08$xL|IegNjanjo<=ZP~y@PyoiFD4X1|6iqe$W3V)p+I&BB|^9(gi0aggpeD8
zFNA^+@<PZDp;QQ^Q@SNnfLdijC>w%TIOT*UtzFow@M~Oll<cc~2t^@O5P`ywyLPC{
zQc*Zc$ju*C{o)S+AIRPr!d)R$3*qh%DvJPRs)kTSR49`)PXF%-p*n4ba9;>DLZ}%+
zt&}JK??BRiZQ7Tnx+#N6JERn-7ji#)nGwRw5FQNSp%Cha&>(~tLU=KRh9NWxp-Tu)
zh463)jR{`!wGE+(fX6~;8NwqWG!41?>X)Z8nhBpWj|ylWLW>a2ZSnAx2{Kt)h0sQt
zT8F^<!&D*japAB^`~)unq}ons=MdTp=peMC&`v`6nRC)6jdTs6TL@+dRtVjtRSiKC
z&?AI^fS}Nj(6G?Hf4MiVS(07r!i<D4>YhR)gs4<wLdl_+Ex30GeL{!}c9Jslizfv1
z4562REb~9#`iAga2+s@i=@9w}ps8m<cs7M=&3A89aulTW<fRZ^mZqs8yb{8zAxxHP
z{}2X*@Cm0fgn=Qv7Q(O)-jt?6Aq)+H76zwmzAj*h(7yY8Z>0GAMCh#$hKDdNgz+J~
z9m0qZMu+fD2qQ&il+ffY{Xe#N_|)Ltl<rsoW0*yMmf#S0|DP)F3G;&xJ`7<(2=7ZZ
zsYscRQo0`tpbD9^IWdGuA$%{)&xC#{DfD?t{)>?Nz=FbGh48g7zX{=60ZAj@r6h;8
zEJ#k@4=K(R0c8FtV4BeBDJE^s3gM@a`^2hh7(a*bO9)l#d3do&&g>BOG6ANQpA*8|
z5axyOYY6K@*bu^eMkz0EDIE)8K?n;&_$`D*A^Z`-pVIVu2#W<!j5o?id4Ft4it|^<
z{o0hwWb5)2f0ck0A^aV}%Fusz(vp&^Ls%oNYeQHk>NLxyWa~z0+9vcLp_@Y39Kx0m
zwuapAUMcp!_v^Nc%#ILt3fL9G?hy6}PD=j2Z~H>nAHsnU4st&XyH`MmLO4v{Lbx5m
zkr0lCa3O??A-CyR2&Y3h6T<NjPK0n$n5Tq3q$?C)NrJP?7EL)9Lb8?o^C5(q^G7nX
zE`@NJdwvMlxGpOA$hjgG2z1{358>YsZl*Y~T7@h(q*`X5+eM^1(!xj&qeK`vVPu5e
z8AKSx#CcB`bbyW(mui+!3S_20wgA2hK~uS5<b_c>j51;53%{gL`oPvwf(iHzGili{
z$_a-~vg%E>em})m5Jq`c!zc>FFZ>EZDWil@F(sLNut??|VN?q9O)b|>WuY{3R~V$^
zR7uJ6g|2F0+#SX};s3tYtP@7{6s{qlW*D_noO{E#PcZN7)egJ&_xRmVUE$oHl6fGE
zdMW&%fQQ1UFW{bi?srCw!gx50ej1+9&^U}H433JjDjo@=X&AqTF+YrEVLVC|#(zx#
zf33H97*oUeF^m>rJQl_?`;?YpIAJ8hXcb25FxrIico;px2!v6!g0F2DPleGnj3>f)
zGK@+4ly+fk+NX3B++Ju0p&ct`bqb?%7+u2X%iliTr)2L}2)KE63xmH&+nt{5cP~7r
zMT-_|g{!(31j7i0p@pG`@!WnTudOc}#@13rY8cb@D=YUa$M-9dFpMzlFwWN~7_-C|
z4de7MpA`miOsE-lk8!LXd)#+myYKfqisH<W1Iqfx3VMdoD~#b`yd6gGF#3e?au~1B
zy)d2*<HazpjxFlPSv#N{db{WaMk9<pj}&z~pgc=|!gxN6fd`aYoeRewP-Y)c_`A9T
zR+Zm>KzS()PsPG1Eq$+s(LW6S*!Ykz22hy8WRE=yUkhUpy=qrf|DY0mLn(Do+1#=q
z-&gp07!S56{IaI+*@Mc^Fy08`ql3!F1B!-)@!LV=O(xaG+_z*n1RT_eFh+*)aTuR)
z;e;_djQ7Hr5XL)Uyc@>2Fvf?m<De4n?;8`wSVn1%@9aS(|B!OMVqv30O5a1u2Zxkh
zlYQ@VJDuSBAdC+=@V35xCMx%wD8KTM@)6hOVWsG>GP`2Yr(sMC<LfZy9abiV(ekkJ
zSs0&-GilR(+F_+tnW8Vk_>wU^tbE0ZZdUmIVTG7}eiO#GVSGpb!>}3`{UCI57*qbI
zN<Jl%t<xkM`Rl&S$?1X#`18Lr!<ZEY`9BGBp3tAUj@A_XB6POUIYQ?OP5x*w>4Gqr
z-nW?Qo7|uNUdWJ!v4|@xjK#vd9LBN3${)<$FgAzrXBbPu_$!R1VXO*cbr{Q-@JEyt
zVf-D&a^~a_Wxx?-L5spsBa|PHC@aG_(z$T)5hYfw@bnR7O&Dv#sCHDDP*7OvsIo4M
z^<gwWs`Nan3_7Z82xDUy|Ag_=QRUcCc>(5_vW2-F#=bE2hp~-I`<SvjjO^pec1~g#
z-Hs_c!&q=k*~QE}rhIlx*>Fs`bWGX9xj3%u<tjL?ymeez*~WJujDumE2;*cJhr&1<
z#!(K9OXj$8gt;-R(0@YNcw9+4p)^0C91r8!6H3c(e2EiE;fnI7xO~Dm8^*aX&T#ph
zQ1+cra8j9ZLRoV{QBEq4pHvPuDmc$B8Wmg!<6;<>BnO^8seE`+*?3a9BEe*kuL`&(
zt=EPAEA)oYn?fnZpKiV#Mw;sW|3bRz{up(J3Xh75Cl&svHB=N+QCvl)iV`YHsmM}M
z;gpi2B3D4R@YzHr^M^D~MM<d==SwRA3uP{Rs+3mIe4elCDTT+8aw_goQC)>sg->-K
z%oV68ucA;e9V?<86_r)@g|~{Td*b1~`6fV7@!~QM%N;5z3Fl6scd2-FnTL{WBCR62
zRYjP()uej2P>R)1QBy@94ShA#QgN^9?o<g4_o=9@;;M>kD(a}HtKx`?qblxK@qmhz
zs{4}#^;A5lVxWrGR6L}jzKWoVkctK>8mefc;&By?R6MNWQ4U!}V--_Mc^^^HRK>Ig
zo+eT?*JmAC=OMrCR!=h(+pKKj7AhX&M5t)Zj@Efvs<^$~bD@FfllGZxeXX%8U#6j_
zY(r056;G(>qT(qPPpW9AqLY|iv(D3AMF$lfRXlx4`MgI7emhXOsbJ(OrT(d+&LZ>k
zg5tE(RYf<c22^wxkk-)CgHy1nfGW)oxc*E$r6>(OVHK*1o+^5&&{XIm99I!hVW==w
zSSq57RYOlqnyB9Lfh^jY_i7#;7$9!jDxX)n&w^*{EAFUBFwGix$e~zoP6Ve(#Y-ys
z(rp#bs(6kW(jkq*>8Iiu6{{;}(I5WD7L7lz;sq77v!H?JbRTzsY@)!+Dqd01U&YwU
zIj?eR8oJ?nVuy#HPH-So>gNnl(X5qgXON1)D!x|njf&S*3{f#o#dsA%RlK2Mq>520
zhN*Z{#c&mGt9WNq!CTDd9j?K1x61r}UltuB9wFmpY>8P$s~E%HDbF<}k>uT{9hsR7
zIEVRn0}p4A<vkS>RD7c1QyInkDn3y0Aro?kr_K(~M=Cy6k)-!Gb?1F(mP;q9n8X;W
z_(H{J63n}0fSX5WmV7nuOELA8_`|>d=FfJm{JV&Leyid;6|+^$QSrTs$ttE(QpFD<
z|05HUDk`Ru*3Y4<v_@AsFU(1TC$@TKs+h$^TCu`UvPPJVy-pQ<*1+?#ieH37m7XI?
zaEx<R%u}&M#a}9ZRWV=1A{D=@SinUs)_!BQtaszj@<N*|;@M3y7t2`wQ1Pe8kjW%r
z*97j&*3Vh0V!4VHDwe7Ed!2_()cRW-W-GtgqP5wllvPX;6>C(iRk2gWF7a(0CwH~7
zRmFN08&qs0IHhb+aqE;aWOCs@Y@J-VNp)|xZWhWaUm$07o9cd5!LnVz4x#)>@ZBo*
zs5qeFpo+cRqfRTq)5<fam3@NuGr`^~-}<yddPv1#6+fL;)}2;9JFW05yh~Gkta58Q
z#;M$?oMDPSRN}ab6I@3dm6Iw?sW`2|uec{>t<ESHPAhfKD3m-aV>u`EJoi$r9l@7W
zTv2gZaFS9u3Ha^jb#4M0I%)V<#SIlVC1T|@6l%D|jfK@x-ZTxl8uB!xYsk>x(EtsZ
z8nQGL(_8_5B3E2<cPGBM+h<Y!o;yorYbc@dKR45IG~8^O$+<Yx-K9;dWKlR@1GBEQ
zhB6vTYAB^)RGRyYz6W>01KDLYe&p+Z%~YVF;zEyCgHMbwdDz9>b+Ue3lU-s=Mw_jk
zA`KNZG}7=eB{e7-?$S_MgI~O=B$Ts%2SNRub~$N#)_Lw^rwu*yq>6^B8ft5(qoJCH
zyEW9%P*cM_DXr?7JH<>ex;oICSxdvc-1#+dZBqT=>G>S^fj^3~m7uPM`=yuq8XnM4
zPs4*69@5<7Mej`o+;%t|=06pgnS7<cfrf_C8oA(}D01s)tf7f?-BQCN8k%ZoAp-6y
z)6iU+9+fVh?CkD`91)uy6F$eqLABD*T0<KRk85bBp}mH-8lKP)+~Ijr19v2MORt|p
zbvn!~t_hDd%`$nc=^$pw>8zoP23>PMjd@DrzuuRqw7PsqLst#mH1NmD__<|w4Lvjj
zH20HX^^6kKu(Gn3-w|wC?0f!<^6nWWtbtV3plL9sl$d@-sTe82k0v6lYKUs?H#;%S
zeL0`sotf-KIJSnk21jsf`3XB-(y~x^TiDZ6LoW@zB_RA^2S$vPzijZd=Ki$=0Y7r#
z*DlX$cuvFX8ioj;rx0v?o>;?+8eU?C+?&;3D8b7DUeWNX0RCB$`xh1WW)09VFvWRI
zdK{!-a7v4RA~00L8yc^;F+syH4R2}~%XG~tdP~D_&Am(;qq*n61aC`qgiuyTGS5?Z
zw19VnzN=x-=`0E)wZ>`gneh0OB+rdGiuW~qrr~o9A80s`nZ@#<hK~e)oZ@^U;8W(U
zfJs8PpHV3Mh35Xl3(u>)I=<BKm4>f1e8aiZuu5}J>b}+Ri-y@6zSHo%hRGU!&@fHI
z)P_Y<nDY&NQ<+*y(NkB-7hCK5QG?yIsB-%vYpid&h8Y@WYM7;A#s2a<dE5R$;k33z
zKWW&k7X2)g^F=&I!(0u2YFMISo`zpFEM`Dj72Q0e%-66`!*3cEaPgj1UN7n6mE)vB
z--k-!BJLF$TAo$(vr3tV3r3$+emJZAp+S9L*>G0*OT$tPd&ax}6t;|$^;p3Q4S#F=
zf5U?1oS?Gq4ZzmEqSI#;-#MlJIc2qmH4HE3OT$_X>!_<?FLS_B)@#_JVXKA>8a8U^
zd`|g?d&P5w6CU?%lImum<kRLhdK)O(&N!4R8hB2buPQq<?BpDsQ~o}uq@7oGX&~J#
z`9sjBwQrw>{hSfTc~GIRY~eu-hcq11a9qP-4M&)D=ar+}J@)wOpI1)*T-f%!GUU0!
z+2@rLlsT`Q<euEEu;K-!!v!Vd5ntkhaz?{hZpb=3I?ic0&plkj4GkAGymLXhtl^4=
ziyAIz{6whWy>#E{Nxscp3a@Iorr|o*-PFQa7nB_rlxr81suz{#Cln6w6yD^vuVLIp
zWo#{9=Zng77nR!_h>mm}ys+)|kZ<M_J_26eLPs$j**Z$-D6XUL;38a7YFtt>b!6%8
zzBl8da`2)u^F<{`N3M=jmz1(P@^n0YNy*nyQipy?;cS-DF)^?3_e)9{9dBGxN(-er
zIZa>nmD91Wg0JjlrQT)5r@I%D1v<*>?q7Hm>L}7tLGXKjc`E8qbX3!Ew+_FKJIL3;
zKik@|$yZ6oT{^zKtlX)?ysV79tPJ)S=Kff?`m$1mp{rh0RmZ(WMbqXME@)J6kB+|<
zdG6EEs-IF_M-8c#E-b1kgQ`VI9cvf4TM)%a*VT0Y)2EJ(x;pOH@qmsinZ>VW7O$t{
zL7ji`T<m1qVh`!4uj9LG`2HFi=xC_(A7&9+gho0Z))D#u;SbPQM-v@o2cq0SJffqi
z4)jK`-e{)dQ3l_{a1+gSw9qloz-tB`)6r7Lvk^QOK`R}tIY4%yqYWdhW4MmDb+pwH
zsGZeaM-LrO=y-E@i6?cm)6rgs>h*TkQR|A*LC3AjN=F@sYP(0GPBP5AD@qp~PcaBr
zl&7vJU3EmSDE+P|-E_QmMIjDw2s)nA@jU(45vCSnE4nIYRtLXg)};F0kM27g5y1oo
zO{H+M$<pEINC?x`5l^*Jy{C>|Of4Nxi&k$PeWaC&Y)#tfr{fvMK?j-SByF-aDf5EJ
zzoui5ju&;jq~m2BuP}zfe^p0+0RvL<RHTzh-DDSog+u000k7*AB7l8S;0+zaME6b3
zk?#JwFD09_PEWRu5YAW~<8+J^JWA+jq3;NNS11+7=<W~B6YwxSUI*!?v@BqP(D!wG
zpyNXwAL;m5$0wZP4r%>6q>-}l42oyV1f&ynOw#e0XniS^);`zqg<z_%`jz0Xg^s^g
z?i(GX<bSVYGP5P(#^DDYQ*`{MW08)jIxfuc&eHLdjvsYQ(=qCbLe6yI&ybkR6nbj8
z`@rRA9lz+9t7D!B%ofTfs>~6wFSdDq6(%_gbj(i)P<LU9U$auy?>ZLiC>Mb@f<JWp
zspE`}vpSY=VKU8h?9j1P$1)x3b!^bFT*nF>t8}c^G3$!*w~mchl$AQRb<X_#h3pH3
zC9i&0ehrr}bEc_h9k&a(Ka@0gLEeokO70PF&mjdHIT1QGbNA3Opmf?Mp&g#coSRer
z#sY8Msot$Rjt(lZO-3<npO?7oRb{7+T{;eO9qHJuV-Ghj9s9W_tZ}39)}-{kItr({
zYvGsDX*~j-AKQBl=%{m5p@qXbj&QHgagvsG9Mf@}(JSqq61Tdl^jqoOG}?WC_@n9W
zrST~pr={!gRi*b;<<+b1@#vh6^V~5aC>Fs59T#={tK)`_OFAy=xF+%xyTau8I`=B~
z;m<RZ&U|rIxt?mBC8lobxUC~Cf?GOXIPPUx^0PNRf{X|}k`-B7i@#biEBc;078cqm
z9zkXVWs<ECWJiz}L4E`!BFKp#SNN3tdR_6M#dA+haTV8HRZ2!sDuU7x6t2oRFI`u<
z=8lEs=~dpcqQ%ys-)H$ED2U*`2x>=Ap7Igg9dUgtil9OS{s`_6;ffJFw9czUuw<<p
zb7Im;5!@L;l?bYe%v}-mDV<h1f}dxUP4@MOblUBjQZ0f74f7i9^Pc}K^PUK*M^Gbz
zni2eTJ%fEwxRzMBH-g~C3akzk#X1qx6@CkG>HY{Fq#F@D5W%S?o|)G(>PhQ}YfAkH
z8br_}f=41~7(t^59*&@K1kDzD$8L4)PrjxQ&;jDxTf9x#6v3krG>_o$VE4mkmd_8n
zt#9?nUnRXi7C}qy{}Hr~pzSvA;}Nux?ue^wbAxdDnnK)Gn8mIuPe#x#g7y(~h#*R4
z1RWz-UOp?pK}FChg3b|i5#esae=35mQvF494|XG)c_`dHf*#UJPR;8IIU%WP5rhSh
zqY7}Eq!H_aBM}&>))U!TW&~CQeT8F77qpfT5EtqQWsf~0=oLZlluVxpz8mg3!$RXM
zPm7U$5j-PcdSkcK=Q$k_9Esp)1TUs^XGZW+1TRPMN(8S)FeZYr5%iB>Km@}gcr${5
z4B&O;wFm|YU>B?o7Ccnw>k$n3pQbkiQzprLOR6J;4j1}%%I3%jMny1MJb5RAcj?~3
zbSknWJEetj5sZ)ETMkfk-;3a*2tJNrLIm$e@IeG03ZL>xl_dQnf=?s(Jc2JGh+J1D
z3jIvzB%#SzvFXbQz7ozi5wPj&|B*=!fz0nCm>j`$X`;#x5lo3-s#Ix{<wwEOQo2;3
zeM-&{!0Ie68LqDgeu-d11REom9l@Lk)<pOZ<KDRu%!^<dXDWhUBbXn-?-4BK(u-iB
z2rP==H!kYKxuh&qNn(OOBKR}HzbJK?OH%ZcgBcVchh-@j%OAxFR!A$sN&$ZhrQ|9B
ztA!58%t~slmFl_()(ar>y@MJ5M6gM!dxdU}V5fjB5p0cMTS{_A1lt9#teI7+rfcw1
z>K^v)66S89dm>=#p|8FBq`E(X0}&jI;E+@gbNWOj=@o}S^<$}wZC;RhJc1JuoaBDO
z4Z*;p22MwCCW0aZ6%3q>;2d{a133oHbMuejCb#YgE=F)Ef~yf+i{NquS0YHPcQ=Gl
z*WEpK%5|mexiSRTBltIh8}v~4JsRd>nU|&0aqsO2(hR^rF$3uaG7S7t-s>^k=}zw9
zYIXM>)Q#&(aRZqKvJ7M!cs1xAsw)5M_R?G^!Q)jka}DGfC@1Rq1|FF1EoGpzfs%r`
z8^3(eJ8@42`DF~06*2Q)WyhRss(TIigi~OkyuqI(aeWx_ulpKdZ!K@LQ&4<nZbbu%
zf%|FAfZxC!2JSIX-9RM+cN(Z_pqhcZ3{*ByMbu|rbr0naJ()?mZ>hKPLT_Z58=t!k
zeB3YnOYyvhfd$jN_Zqm*KurU+44wvOtr%9a-E{BLf0fz>>WHbj4E_}F)wOP+g|r(=
z&2oA53_NI{k%5Or<{?hp4W)tL`a)~mP#Oy8b;FI-NTH1lG%@gq@OhkSD)GGCIkRp%
z_jCB>23i;h7zpzG-#|+P9Sw9c(8@q-15b)p8v~CUctUVnp`5#F3~b0ff~@Z5PFXtx
z?G1D=F#m>9?55lMLFt{KGvhYX+f5X^7<kG+SHTr;D&)7lsdP8o16B{AC+2yHLk7YI
zdK>6tKsBHlFb!A+bWx;DgK@j5M1-;$C10AF%<($23Z8$=XG_&FkT4K8+`~65e=)}m
zW={jX*qY(~=*rvT>Nhu)z6PE)@S=g2M6sWNXAC?m_@373&lz~$zzYVJ|Kj!cchBx-
zPcJd*q<68Xlld~ED#FCCh}hZYCHor~VBnz0P=yELK?VjJ7!t+MC|)Pv5{SaXs(}%u
z@^>59W8e(~!wkG>;4K4_4g6qWxPi9~d|}{AiWwMb;3H;~fl&rV8yII`yn%NN{8lb=
zjDfKR-WBYuDj?^@r_<Zd$s;9x&%gu&?;H5QKqNPfobH`nK7FGM!G|&gDt=<%Qv;ug
z9r7m{n8e_S5h_xP^z&3Jt6zyC?R;n8OyjJt4SXY<Z&Unp5`^!insZB;VqmI)4F)zE
z_|d>L1B(p&ZeY5B83yJV_|?En1G5bLWZ-Af8dJ_QbcVNU?d)F+%r-E`z+5I$?d*8X
zoEJ{I)9MvU(0X$Id;=6-$fY{lyFi48UCK!c{3h1OU(C&iGi6|fi2Z5cF9S;jFA>V~
zbEC<BX9df+U~jou{kN#EHn7IPN&~A5d~W4e-=5d@mNIow@wEol8R)**yPkP_OS$e8
zuuzM~1y=tNT~^26QZ^abY+#Fltp>Im*ddA(rr0(SBi<=smr(9VY^rv|9cj}=d3%L<
zMCd*P`vn|evKcrem}2VcjKe9sb86aA1IMI#oVz`zN$?4wCxxC8+TuXQSp(+`TrqIf
zK$`>Z4tCza1p{SF-$etL3|tmIt1R_RA7u!x8MtoXmVw);)_)D$5UtJ!GHwc>*up#A
z=PYSa*IIhi-F4X`F^xc~<Wz{FSQN#h$c!Q@iqaI0B0JTZA4Q22&JmC+G%t!@WsYc}
zq;N__QGZ>AdL^@LO1@kaqh&<iD11>A2)|Hhd7*)W?s!>>q`GNUM#U(UDEv{}5k<Es
zx<^qdiaVoth{mJ1D~ifd)QaNXD5^wJHR>LQYD7^@)QRtj;_fJT7@|#9s|$X<c@A;S
zlnh(%i=uWE^+cUbb)u*n#r;xk8FqEu16fKw+~1AigJPM+8${7CidIpyj-pW%4@dE6
z6wRY(97U5Tnnuw~Bx#oAktlvF%Br_FKY3*Qf5%!x@mQ+&WK+wi`_t?Eb<j3ZJRU{I
zC^|*aHi{>rXct9$vH7G7hd$7sf*ECKzk?V_nmw6bwsRC+r1dGGNj~LgS(#mhQl&=}
zfheAd;@K#IQG}u}qp+d~N1;ZcMWLtsr#f{bDO1rX_-7VI6ay}}v5iTUVCyZ#jv^jK
z&nSAOqU1!85PV-LPtsxfOwc=uK2h|I;%PD4Py9drQ_kycz0L;LY@bpko=ZjMl_;K%
z;)N()jN&C>zAQGY?Q<RbxWJS2@YN{#OY49rUW;N-6aytt;f=1rWDo}P5FkC?yrr<v
znKz;s7DY71pSZ!BQM?t!(I}2ZF+7UG+sec!CPndf6eFS-DT-sF7#qbXu9RZlmZLLA
zM?v~d6z>WcoSnz&xG2U)@j;Y7*NiXQXFa<+lk`2o6QWpLJL`R+?49_dC_ahemo8}^
zi$KSx(#WLzry@h}Srnf~u{w%1QG7v}C>BQXTNGbK@pTkGMfp`PzKP;n=2#TdqWCU~
z@419)rB8`sGFQs`-XDarJK{0pb4aJs|61w1KwkP_-t;JDFe_wql;M>cwPvPN2*_ml
zC5pLG%!^`n6mx{RdAECKgY?%Z<}=iCHOJ}#QKu1JR8nA36u*o7UmTHuKch(M{=uj=
z`){{jl4356Vp$Z+qgWxrtAzd?#YzD*_~>n=%Wc<kviG%7tczk-6uYBXAH{|!wu|J(
zDE^6JYf5Vq?MJaCicj0RZnM0e?_o5Oo@`5bQldiEjwp7D*8lsqCyM=191!N-DE6gn
zQum<X!zs=o0puS^0d{meiW5<Eh@oQ)C!;tOMa3AD7*0oVCW^Ee(qlLq#knZ1NAa&H
zo)>yKiVFfRMsX>MoEyHOx0P3;?z!KUD0sGWHHvG@v{W<}-d4!G5ydTL<2*0%%_!EE
z@(|n>4i(8~$%r8@hWr>jF(8IwF%*v>JBAW5S1~h&tQhvZlu10`J-0jJ+zOtY7;<B1
zDi<|7Z!5eD$3t+*7)r%>_YLJ^C>=wY7|O;_jth!+KW;0`vG>}fd8JB@j{{Hh6S%D{
za!3nfsE}$c5}=)R`F&K6KZZMEs2jumF;t4-&KPRP!1MOIVyGNLO%bjV<G%=@dJLmJ
z&aD>1-7(ygvNo(uZoM>rr!;?G>9L0Jho|}Lr)SlQ;a*ys?q1{EN0($o$s0{|VmNWw
zJ8w<K12NQ#p>YgNVt6oyhhk_T7V5{)tGRFDPWJ#oXNVid&`6pd=J30_`8>F3-h$@7
zM;NOZTF1~vTARhtJcbs6AB|y7iLCS2eLII_JjR&E&`S8;I||60oaSet9hS#qcp`=;
zV`wV^XP?a6S|y98*6m{W{aIgop*zz2#2M-SP9j6CU<{oFcZuPt7`h7Xk!tN0!<Ew+
z-KBb9r7w`;Cpn=Q!ZD~ZXeoXq23;_<l3p27rMxL%a15`<V8viF6ApUgF+3Z?b1^tE
zBx2~vh{f<sjPLn-dW!&M`o+*kaNii77I5ln4hx%DCNIbtm+eOKc_!-0as>TjctP-s
zF}xJR%Q3tX!>iIe@4zIzqW!Ih|MPHwGz}E`n$STpG^?6V$ssWejo}OzT?}u;Ff4{Y
zV)&E$e++NM@Ocbh#4tRDw__L+!&r`DRlx|MqlJzXI!Y+5y%WQ`G511%XY!OJ9T&s+
z7(R^QBlg%j>%ABTPR#uvh6ypeA4A1-fBKNj`sw}->HhZJUC%#`;gcASeV#Xo@`bsd
z#xOC4(dlji#MAvfhP%t*vlzZk_kX=zK81+ks~D!mFrCa8zF~LQ%1w^p+Zeu!;d>eE
zpQ26<0V&H5F-(bJO|=qJMc_xFTSe@0x_?FtGh>(=!@L+~#qg7~&W_>d80uvBe~Dp8
zhU-rt!%vkDGyHQzfSe^6{$FD}|17_dL5N{~3=3k|DPrd`{J9?gLmvMkW@!wIW1#Nc
z>G|!svga4Sw_e_BowAq2@K+3*W7rbI(ioPp_e$OkF)Zgwr?+(Jv)sQKw=S7Kx5`>2
zU}X&bJbrRUd;F_oFnZ@r_W0Mvur7v09{+mIU`J26F8P4l%hK2KHgZ}QXa2(#m!7?e
z?)7&szP84&Er!D}9AWOkzn$A%40~hPLFZ%G6~k@@d7~@I(vY_zdgt*)^?fn)URiJ;
zhJ!Ke=QNGY+}A0egL2?M#C%9msvM2s-(`6xxZ!hVIY)J~hQfbbyqyI9r`<A7asOwh
z@c$)#wrG`h5&m;AoacsP;t>-UVz|gn)kL9*OEFyL=4>Lz#FZGXa^E%q6W3z69>Xoh
zpWVf9Lnh@WSL;@HXS*uT><B*mDl^S=H{^5^83J;Pxxp#lso;f+Sv3V0Gm&K?+eC2_
znIgk0`YKzB_dMuc{wy}!gXYlp({oManJ8<boavr*=bI>HqO^&UqC!r=V_CcI@?^+$
zO&Jr9R(Cz|n)qUL?%-nn0uw$HZKTIYG5<#bicC~6QNu({F;dZl-^3jz6sc1E!8U1?
zOx$UriixTw?lMtXnx4L##$yl#Sjzs8Tg}AXChjp&on5T(=Dq1Y3H?dB*jdbfshB^r
zxWAT(drj0g(ZIxgCTepOChD1}BL?f5xZectBPDG<IWq6ve~Ld?-2b2nZY&LVW;|q~
zWpO`mMA*gM05(i{_^^paCf+IGxti_XpJ{C3)J}J)eplSz)I>8AhKVSn!H2&lI-BTX
zqJ@daOgwI)t%<Hxvs#)M{b*Vn6Rk|N7LHQdTfJcxn`nph3F)i7i4G>7G||q)pW?%X
zAwFI;cjWZN(8>Jop~=G=3tsM+b*Z@jDVj17FcCD-%|v%b&*vV{dx$lDElbS8$b?LU
zO?>-OdEJD{FlPES>Snsbd^FSljDV4u{)maM1jkI6CZ0F(f(grnZK98fz9!-(922ko
zQqappLVD>b)fJ+3Mkrf*3zNoo^z=M!;u#aqif}&@w=(@ttSfj<suY;NKjWAC+^Kxg
z#7opNF-V$THu0*7{w7{AF?V%FsVu+K*<G*$Obir(dReaXTm|R8FEiN0>n7eXF-)3<
zm>4Rci^#kwbX-UGh{G_xDNUYHd2gE-Vd5hPA3GRnVic#?#=AEE9To4GSY=_g<u0pt
zO`J1v-ozLaV@-@RG2X;N6Tg{w&%^{1Kbn|k;(ZeznD}0de@L??zGS{_D)+I8PfScS
zG0DUa&$#R5Qxp52$owJ8zw*h<&rE#I<-^RmoJMA~G6hQ(W-rU~Z{C;7d!ApJ_}aub
zoH#N2ozUZ1{(@|OvuuB#Z2!1y|72nQAasg}sV3%RyO9~!!F>?PGTp>16F-@lVY+9P
z<jfS|T^ll3{h9K@C;mmiY@t<#RGe#Ko{3*g%r~(>n1_o0_k=5bj`#lKd8CU>{4P!V
zO)NI?hlx!lHZyyft0q>PSYzTZ6H863F!8sEWzzMyKT0h(!Q0n#hR=4HFe@2wF8qZq
zXTSJQaG+V%T9IF8V!Z&py?aRAU}B?*e}vQjMPG>$?szjE^}So)9o-faJ5224qBgP3
z#C8$u9&!~6MUr5biQOjlNE1zwvsdUoPG~>h;ErylH7MafVB%nM;3kflIBw#wi6bVC
z3Z=}defibqy7!|_i25lLr%jv`982}JuXXwv8Zj}rg#VKX?(+P+g#Utxi`>U7JZ|BV
ziObv%E%+^5F>#fP-9onI{yy_H6KNLGEnGM8uZbJXy5+gIxJ!@C9<jCJO%rcUa5L&Q
z<6N!8u4Ei6)aj5_%)*4v@;nwU|Ktk5!qpP~O^;<2xA4Q2a+PxYnUdQrbNnSN<X9+Y
z!D}JcLY@V6T6SrRzl@ieZ=s}x4~Dw8_ZzhEl(Nu0#|?F_9Df-L+MV91eKX67oiEzv
zza1~{vrxgp6P3IL7Rp-~lH)J5@W8a}A`ATvWls7si@5)NS<6@CR<zK5R@$^2{~Z=8
zS*UB_ehZ6#&%M(^RSVTD+-0G%g(?;{RCjmCV>$j+9n))no>{eP*4-9rSg2{?9t&q)
z$*gXn$<f@rT-UK$7Vfn$GS~louD^D!|2_+~84U(G*MB85r>DrAZ{z0h0~YF8XiQxT
z4_f#u*WbWGG}BGLhb**-XVtf`HP?SO*T1%EenSh5EIceDy>{5mjnaAkqVIDbvG5pY
ztwCN>3(YJ%YN5G>f)e>H=wY6}YhNFaU#zlhx--9}g;o}JKAL~a>uD{f_*^5N=Wol1
zS$M<3FbhvwXlEf|p(o>Gp#uYMp@#@}w9wf?7r~t@yxk~m_`MmSE54^JbhXgULiLwD
z>@j(UT;pYTuM1cRa!^#U5V8=qpj(KD1(nk$V4(O(;fZ-}0IO}zFgOuIedM!hii~X`
zZsGLd42!fv79X9kY2P1djs;#x5iid3_p;F2;v0JCZ=sKcz80Pr-KQ=0ny#OPXDqDR
zmO=ci@Tv72XHavOLs1~JPNTdREW9X9FIjlm!YdYf&G7zvz<X_l_x?|EUmxinBL-L)
zC^D~Gcul|{p*%gvZ|fN>_-LM=m!%XQBGsWnv-ACLT6oLCR~EjuFq{Fj@TrA~7Dg~(
zER47Co`q2sMq7B-!Wawhh$0s|O|cY9cbEBC3*&@OTs`04E#HmO1PkxW=sx0NvGAdU
zg(GEC9}(F6V8O>0K4CupnmHoh|Cun^I?2M9V(l}FH@)4CzTgBc%UC4>^-h;bf^RH*
zYhf<UTKLYw_ZFsEm~LS**RqA>1KkBa#llpv@T1T@d)!Rko$sGnI&<4Yc{41`wA{yJ
zzgWCah@UK+Xi)gGg-vU{JlpwbmX}o)3e4uVBNmp=@cuf}HS(*4`Ai85f6#)3g%*An
z0ZRU6VNpt$k}TzSd3i&C;Dw*Pe_B{-VVQ*`TwfN*A^)@tZ8@{T!rvBFih4##|L%$I
zlvOP0#*?LPN&gyYI<z6<s~z687S>r<&)t9<g^dSnY_#x?1&<Bb*koZdGn2c4g)LmR
z7WP@#Z}DAsY`3u6!X67d#M({^ySTD?<}N&%MOv>-CTWL~{u_T(+{^4;m+{WFv^gj9
zJDn+hz`{WbM=c!VPH5pU<8R=Ig-5m&rwX?+>K6V}{DsVt#~DluCoP=f7&A+<iT?L0
z>8B)nd8?$q%k7-A7S36?#%<ifc?%b~Ei)S@rT<*gf06q?cl&nP#FQU@M;V&E!tI(9
zaWenY5hYvH&t_l$TDW21wuLksH)SmB>z06x5;Tq?-A0D({?7;<pur05vUeTH;!~Sq
zHj3LQvQfcCrj0BcC2f?lk!_=dja(afwwrq#SC0MP5RR4f=iBaJ=_H$2Hl}5kwo%50
z&qjfbvZ7MXhSvt&>w6(*$G#j|Aa#3}*77zA1@O5Z3$0bOq1d>`Ms*v08+X{KY@>>e
zN;akydG54vmvp+KV*yS5^>1m?(^WF7+Nfr`!N1!EqeSMdl75bh5#VcAHEh(hai5La
zHhwtittCC)E7ZJPft{9Xp2;e;>e#3&fFY%mcb4+kv+<w}-A2U5LpJK$c-%%?8x3qU
zw9(u~3mc7WJZz(>jb=6)i`gc0QtZ$Or@Kihf3H&hk4pLJ&zy<r9Q&ivx~!D{F&iyy
zw6Wc1XRU0s<^+{?GyMBL?wyK$4GJj3l)IyJ+7mXOwDFXUt|Huy7Ho77%+`)JI?2>f
ziv!u#*v;F{HoDNm`q|@Zdr7<5=x!rqBW$CGjexis6iUZfsKQC41(lI6k)}zgT{l*`
z3)BBxNyA3e#w#{nrIroTMn4<R*syHaHhS9VWg~9Gk<le=)RD2!Y|;G{8Dx6Z+eRN7
zeQi7~{eGG7u`om|6k{(Gd)CHtHeR&xl8xt+?%814|6Sw`iZbm=`(Kviq!!~wO0E7j
z1~3{n-mo#y#%neP+jyNGuJkfKe3UtesrZ1KdmKCCHpIrT$2?Dqhr?{VY2$4hBW%1S
zmWNBf?2eXcpGHR77{xPxah^;zF~_*3Xplz6*ci)I<Dis-arBlm6-U=N-m@{m#w{DS
zZM<*e1MWpOHrx2n#z!`OwK3nu$2LB(@tuwDZG0;IerDry8(Qzoi8gj^Dwt$rocPJU
zzOeC?jjxl@6FRlD{~H@iYUX}x<4|e;T9GVP#&v8m6W+#58?$VDF)VY6jUTy=1Wy%R
zG9M`8pU!}n@y}rTiPol8?(yO$E+rdtY|OQ>&vbX}Uu?{_F-BxqonFTOR_BZojq>K%
zSXRcrS@;WVEVQxQ#tIw1*|=E7|A&n~Z7j0!JGYT8p5kTwi@86P_17xvdbq^Kg*$SW
z(t?e@Y#g7PIWFHld3ZjN@ot?gmgf=~?aKQ9wz1a6IvXpwec3z#F2CBw8k?_b=kzJ-
zXZ7u}e!g?tc5Ci>4zR3$qm2zV%6H1#Jk(8?e}qZErY$zMvLhQOY;3c!-NsQahsyao
zZ0xjgc|_I$#@xnk&eZbUy&Q%3xkti9e6Xy4pN;)owhv@wl=I(H&K<=;M&3r}a{j|i
z?8|9Kn7zXPK<F{CPcim#(#9zcnUP^k%K1-oD;SY?&c+!V-7XfL<tA3nU()N^Ja6-m
zRK8ck^as8EOU$Txc~@;*<D&Q`|FVrM9G&APb4RZ~uWR;o?m~6aZ`%0R#trTRVu7t6
zdi@Ior^S&TN4Yq>ab(2Nv`=n{IC2Dd;y@h51Q!>Y6-TB3if!`xNwcMT&g;(=P%4fK
zkLKhF&KFuzXi~Vev{I{#Fw4fVW_ljweQ^}TabFy@<0v0TVH|hGQ8|vHI4Z<(N8G*k
zq!?+%IFz{i<brSH`s41Qr)sz~DNCg|?i5MI=ci<qII6}`Q)H?My(f<9qI-875Bl6l
zzP-a+BhHH&_eAtUdv`0VC6f0FWmWh2>%>tvj+Sw>isSw`9*E=NI2y-MPh=j7qdu((
zep75Vh{M{O(J+oiaZD3VHF>2o^KbVgut^+`#PMhx&Ev@3lks{vPt!P>i8{p=i+qbX
zLbqL)9*bj#a6X;k=4$IWFD}qNjt+4=9!J|ae!G>?PIRA$<4KNPgx9Sv$S&|dekF_5
zH{$N{>=;L95$hzBoEr0Ty9jPj;Krd_9Npts9><C}dc+Zk<HI;UiX%u*;^-U4({Y4F
z-sI@wPz7so=y62iFye@k6NfF<+O5pxTdcEo=DmB+%fdT0?81)2i6aq5T;^zA=`_v}
z`8~x{Z=t<}CSS7ZBY410Z@)O6iQ~;U-iqVdIG&4RU>vW-@q8RF#PM<*uf*}92-Dh2
zaZrVTrN*f2SL5hUj<mihzD*U%)}3>_gM|Nj976;Qj=RrI7@46`eIt%xam@A=)SFT8
z>(*RexfJ_3n>)$yINpw9JU8$-M#M2vgvZ7)Dvr@{yc5T}ar{%@KU3gdO6(ozj-8<(
z9Yg-E|DHjNi(}$^*Ut%Y@MV(s8UM{*-l`(~Krlh6^8SzG_#}>>;`lj^PpQIOjbln2
zlj8U+j<4hRM$|tSAHIy^3jtK5Wxm<|RUG5)&Kk4c`>pW57utAb#&-hlD({~xfY(RU
zFSrNysc}q~*&+Usnbtjh8W(I~$!Y8IW(a>~9J7S;p_SX$a&z(*u`n-=UqxWHROiGo
zR{#aNh%@t<t8pw6<^rJ$h4Rg}-{V*u$DeU5VYEMY)0I!M{)nSjc|QTGf5ovhj%6Z0
zy1f4fF-ZRM^8UZ$=sl|Zx;WOyu~Gz930*C8jnK71kEgUY#Bm^wgK=!+bi}cV0ThAV
zacqfWD_2|`JLA~Ke4CWMU7Fa}jq>g}xn9mk4#6(rGYD+j6USbuqR_uDj{V%Y3f=hE
zF7yWq{fFW>9LJS7uEudBj-zp$jN_EV>X>L9mmP`ne4YD5952<)s`7k^({Y@M<6Io)
z<6!muHJ)>aGtP?q4L$!t92eub6vt)Z^jPRESDD|;<|bb<r>Sl`%3q7)dK?}HeD?5f
z95>>)9Y>nuZkRXYxW!Stn>nJ;Uq7P+3z^DpZ@RQ*2<`S**0+WJ1-G(`IVkR+go7O6
zXFAAoknLc(jIq%yFJA}UBRJQ=;sY6Z4)PuM@yC~ga_?B-Ei13+moD;`cEF4Ajt)9G
zDC3~4gK`eM4octYYw5t}puj<G2X!1Cyin+%nuEI?6gjBi;0_0s9Cuw;bfEB2isRlE
zc%Z)L>H40R*JczP&!|=3bEkv598{5}$`05{8S=RqQn9GMr>a<B^&SV+Wh}KE<i1i+
z!$D1{(hgO4pMlX}xmTF?3Du&$x(@CaZy%*`2lX5@aqx(P2OT`*prM0CBH6#9r@n&*
z6fW{_ADR0^k(&uD4?Ae=U}MO=wemudpJhX_@=e9tW@45%L)d%L0mh`cFk3iyOaM7l
zY~`S}RNF{jPda#9KwDuxA(Ubi=9zOl2c+#qpo4==?c7=J?4XN-z7C#t@RWnD4lEJq
zCN%6ob<o{G4+jCqeG?-nd@AyVhmdf{WYL6g2-Q<E5dlk1xdDtOnGVb(^L}@wu-Fdb
z4jf@79P~<x@hBjm%&g4b0{Wz?RO#p783(U9806qt;lJeIWe3kWc;3Ma!b$F{FAAQz
zD`W6p?<<0-{wkC0U3aJLpW+N~FffJRDe@0?@VbN14&D*wl4fOxI2h{S4F|&<j1uOX
z4&HJwg17n|40phH8(7|U@Kuq2LTC3}i=S_t8(f}MmK9RSd^gq0SOH^%($#Se#yfb=
zanEXaCi8)V2@c+O@Q-8*7Zl%={?Ngd;qK*gK?VOO4nF15=!LqyFwwyz2Y)57G=a|?
zeC{BWKsbRfINe;N3FId5m4mMx>~*lu!8Z=Rb+FLEZw|h5@V$dy9L#nw*})GEraPG7
zV2U{Qql0M<rV6fE!Oh#VzZaiZ$DPgBFJ;VhFw4Qu(#nHis|x;~9FR#s0fPNz+8pix
zmotAAnYj+;aY;5x|NW7)rH{C~`g{iq9I#5vLgpe?9sKQJB^4d~!ErfQ%94`#Q%o%p
z%FT9}!*kK{kqZ9h9G#Av!`v(J71Da}rf-#l)eg2e*y>=7gSA|445@>44%R!^AYy#i
zu1kyD=fr2~ep11|iCHa86Wh9LbFMUbwp7^WV7r5z4t6=%;r#c~`<4p+^OM~JI>BxS
zdqk0#9G<-Ksmgu_2OOMqaLU0!2ZtOa->y0A;7AHnxcv~%Q3uBy9Ot||oPL7aNSm~t
z2i!HX+IG|Fw1YDau5!<0l1MM-9b9m5PB7oSq0B|WmzgJy`)1B1Zqze#x$&~;SOx$4
zWzv^+&A86ZpFvBYcmg*Z+;otZKzaiGo2K0o_1i+PoXISE)K$z#z>`3`<#|ZBM~Y$<
z{ei=-SA5;w`Y=0Fn5<?eP*~BQl>i?vHmK+hzl1ckujtQ9AU}b}5@?w~$plIzP$Pkw
z36xHtOalG{?nvP7>b|lGl&6sd$|c}UpzgZjz61)Su=VMReioW7N}xglN&-nv#RMqE
z!fH~CDwPtrGl8mN_Aa4S#F@$>M$4PJl%z1NRb#6(-6LYvrC;({C{QbbdlP7wK%)fi
zOQ3cF^%8hcB<o10_fuY~6sB4F@PJq#cqjq-R$p4_5;^R&K>})-YzjY|K;s0OCGcnh
zO%iw{fu<r!KiSICcw5H*<L1I_A)%m6wsO3!5@?-3cd52X;PC`H32vLf6PyLXPjccC
zXrDlG_#7R_MO|8;osI%nW$Bzimjs>?PS*sw37|YBIY2r?z|tdufG~qX$zhY4fR@0g
z2~12tPau-O&;;H{z(^pP!1D>bz<v`j6X=ydZ^oy+&k|1(3D^n56Tp5qdmUkpmRTmh
zXTm)<=Dy9QKGO6|0(}`t!Tl0gC6a8NQ_=sdFrO2;p}jk^FA9E5=t~K_oWLsyyqdrO
z;ZUG#Ctv>rXrF*|pzsO!^l%XQQhi<MkOX)HvAg&-)b!L$OB*K4u?dVz;LQZylIrjT
zMkFvYfwvRbD~^$}j7s1g5nzv_1r$^K?<O!N0Rl4jzTrMU8lS*>()w`%6H@XYNCe)O
zs?ovSbw5ntBdJywU2;B=YM@5OBmqAq@H3AB34G4|UpQYU@J)ipeRt|vzM_+d-Gj)t
z34E8p6b?<AzE9wXl+0uSgSxn39J)K>#{{M&FjJV*g|;o7H6wwp;sf!i0q#BOS<>|O
zYgxY}Fgt;H3H&OYISI@aFuam0#=>cxpTNiay}u=}D1imix=`ro6JAci?}91$X9A0v
zay2sk5KeFDaY?F`hsb3KEKi_$PqgTX6$$*EK;@pO(i1D09toUD;4DME-n*KSOkk7X
zH3_UuU|j<1#m<HVHYWN1W}MyU2D!;2Y5ZNp%?WHt;6MTg6WE%-wgmQYW)s++z>WlV
zC9s<-sAAT+-WjdyrteIEU$0P?@9BLfPV)G;FM;3oW|W@m-Os&lu9uihf<p-$ro8li
zMCj23jtQUujohz!j!Ttzo#G!iGW}!%rxG|V%){eyrWd&vkLMCN&n)VR;yvBTy^z3_
z1g?tAMWL63UQXbgxO6Rn>j~UWAgw3<<>sHjEfJvZ%>;Jt^FF@2c(Lla1kQHXetJ)2
zh~--M<^CU0*8wF(@w_j5a(8fd1i3rnkaNyC=bUrqr-a?fyEC)1AQ(UpB#0=2f`XzX
zkt85sLR3^T7zhHA5fM-kBmTds<KF+he)YbtuBuMey|X>tJ;@<JaPB6Ma_{7DwPeDq
z^pp@%Lns<TRtRY!<QJJjAruH9U2wq=GD64{%-Yqc5Uf;}QUcFs2-+uvBB7vt9u8rA
zt>6cD{5!#Rl<W|4LMRnN=@5#EdWjH93MekL@vM|-rIUGbc17JlO9`P&2<0WIY$&*x
zh|F@Kpk7TSy9y(-8S+(5sT4xx5Sof)l@O|iP$z`C60H_Obpg~Jttd4@s2M^n;nXjY
z8h#|msJ28G?+8xP%~X_nxv3#E2%%vJjY4Q5oW?>allx9{z{-@GKLz8iSqRM~sfEzi
zLR$)L6+-T#GR4}2&{mkl?F8`MamNrkh46L=8$;+ELYEMtAvluSHH4ud3=5%K2;D>I
z5kk)p281v$6ueaJ6+)j7`iA)0B5;+}(jesb3!#4q?9-YjvmUCI_MV~~Q<Om=3>L8=
zY|<t{m2+2gbN>eo4`D<IlR}sr!pIOtvDYXZ!srklJ(M{%gmI!fCIs$=BIm0!51#H0
zu1R=Ak|u;Ok-~y$e9@*N{GZDM%d^L&S6H7F3h_2h=ph&(lzlUe991NLub-@i@cE^z
zpB2RvjunC(Lhk==+KGfPMK+QRJC-_abfz1E7s9*{=7$gq!4Ki75N3oBr&tJ2<mEm!
zgvUadCed{tCQPTm`J~6$?`M(<l#%BRp-+my=S2gjni;~=Av_bpoDgQ^*_j<eyNkgL
zz`%VYbMyGmGP_bi8!`|q2w`CeD?)fRgy%w76vC1aUJBu&7RWpw!r~BK5VJ3G^tH=o
zjx^h*j6%FLgk>ST9KtJ-lxvguGP~eE=2uC}*~O(&dCdPc$^Fd`-U?x52&+PPJ%l$x
zSS@^AYD9JKiQoZmW*KFT@YjW~UclNAwwF;dx8~$-%-bN$YsG^tYVU-wDTM1G{20RK
z5Vo*KLf9X|))2OZ@O}s%gzzra>2)FO3So!nZXTCi^+M84s*KA%Sw<mcsDB}8cL;k#
zpwqy_idzCd`7nf!==q;#eHy~YlC(F3PXuss-baJW6PZeoQue_d@|np0`a{weA$%Fa
zHz9n>`9FjMAsh_hkfc(WTC{LDgd;5E`J@wK^JoaiLO4!8FRO4uyLhd@W6d(TMps*m
ze=RaCucv><`GkEG!le*Sg>X8Avmu=0+`?I|Vbb>^);q5}^{N#*AHokIToAq{{CPt8
zkD$@*!k0t162etURpieU*X3CEYr@$nk~c#5DTIf@$QQ=V5PlBf&k+6!;Z_K@L)@{S
z{d)*^ME*C4{u08k%v5v}%LOfSS5gTmd@qDQB$~@4{X2wzLijI)gfRXU3-?1H|CI~D
z4^XZ;6%)fq3L`ljBr(cB0nP&m2h&LDa!N`VsbQ1~qjVT)VdM{^Xc$>x6bK_dj6z`)
z4kIIs%rFXyO6PLQdo2U6`=e^`Fu-Z2i0~g4s!GYppIuJL4kIUw62dPgl>FjhtjLo&
zP);eC$G=ogQNkz_M%6H?g;6$)a$!^oqjDJKMW#X+6$RuguT(9sd|5bn=;~2EXs9Y-
z{LwiWeMe;HRrN4xgi$Aq7H_B53}bS6rB)cV!`S+E)-&Z5uEuN^t<yqpmRIVB(I5=I
zHTWlthG8@c!wVx8M&mG=gfTRXVPP~4qnYI1BaG&>EVxS;EyHLPMn{RV0IkDl8%8^c
zwh1G5=L7le!{{JPo|?%$IMe8#pqn}gvvW9ji^OQxJUiV4bQe0MaZt6MVe|^4cNl%b
z=o`kMFmg9Z_6uV`o>qSW`&Xt66p&uw!T1^+#t@PJ{C~m!zTshv2ty4+6S0wDj16O4
z7^Cv+j1FUr;QnWWMjkKt(J&?u2!2Fp<;0+169rEeI!P#x8j&9gBOK<Nj^u|LXPnJW
zCeS67Nm14}3^NQ%I6Rb8;-%mZxE)4BI5qQ1?u6lrk?y~x(~ciTJdB^Dv!;YGHH^(+
zYzgDBFs6m^QW#6am>$OCVLThgyfB^+YfpzUD~u<@cq)t;VQ}BhOyT#apb#@K>)Es^
z%sE0iy)ckJm;NJ#nO;GeAI1XqX&5hrxvjV0!Y~$vd2LjI=eU4#E@|V=;J4#>;Sju6
zL3vSd|8w~$vqUff|6`IaqY4LtFkcSil`z`$%_RS51?AN+UJK)`FxG^zQVR2W7;l8J
zO7LHKEwfspZwlox{D&(BecfVV`r0tohp|EU>o{hA37!Mr4r5~&?}V`_9PE@PharAF
zaE7UU0)e^}m91fH3**Z$zM`vyv0W^D7RHV+c82kB7<<EbFN|Gbd=SQmVeAfLPZ;mB
zRr95Hl-y}&-T4$<@JDRVipu-Zj5Z^KSz<#)Wyp|XpM>$Lm?dW)bEz1#e{NrVp2y$M
z0azya3yE^C*MTq&hH)m0@54AG%oAaJ9me4>j)ZYkILE>`F5qfKrQG{Dt(z50tMtJ0
zzX{{JFiuM9w;Y>!{8Mx)4&KIrqaIn3F}zZ+SNv=k=fb!c#-%XMhw(!g7esOLxh(GL
zEL$XbAdig;=W-ZV!nhvBkGc7BC>2h)Cb-_1lzmRd`n4(CeMjS5Rl6bl8I_cqVf-wv
zdyD-p;C2{y!uaG+(l4B!!}vXnUq$#gp=ZVf2VuC`>Bym^qo;#j;~e!z7=KFYUt#<$
zM#!f;ll~QYU+8~A$xKj@s0OJ?LJ5)ue1A42pNbR}FF9E1AXP=0igp&-Tgb1XfQsG*
z`WQ%8k)h&$8XnP*siL5YJu2Q;QAkB$6%$lUR8d65!_-yLUPVzASt_cksHP%YMUKkv
z^r3=^Vk(NOP*jvrQ9{MDe(IZ*lu{~6s(9BZrq9aZY(`FL6{M^YLzgz0WmS|@@#~U=
zcJbgBXJ;j)qKZl?jMj-;M-}U_JEO9S^$A(Lu=HXjrHaaLwPd7LR;sJ0L9C*wikd2F
zsrW)mZ=j;KiaIJbC1uuQ8Mwnx4R-W3C{~Ji=Ag9tlEl>bSH&BuXru;j*qJH+IyI)9
z+Ua#FE6vyxeEu(;)|#m*TBvBLqLqrfT^>9k_o%E)s;sz`l~=B%x8W^tDrQzz)>IB^
z)Imi@75!B7r;&mwom6yJ(L=?Dm6gsazOAfuQPEXJHx)ltR$iPF)VId0;yqP7ucnl*
zqV$%mdkM{~qL9;vZCgd@EA;vKDFak2RWnAY7^z~Qia{#=y^=my#ZVQ)L~Dr9j#ZRJ
z12T5kNP0s}8m=N-B`Dh{m77m6R^{Ouj1e(1pKqJ~jHD8eSMi97N0}sHh42smC$$#&
zNh&6*n6Bb+6(O2c;Rs(9Y6{ha>Ou{nABi1Hg)PyDiYs|JMuo$utHKi;6FOC>uOhBu
zir_6<vYPe`)=0Us{g@gozfTiB|IR<5;z<>+t9V1jQz~WzjfutV6cta4%yTMcshCZN
zR54FD&#0KAVlLe{l5<}QQ?;tnv+4t%oUdYmiiIjh<#CF%3+A^H$FdgD!s-kjnTb_Z
zUQqF(idWR&ZiFRbcBzVG?4YX3OYHHg3c=;7%FFEQ$-%G8m{q|fyj;Z!6|bszO~pzT
zt5mH0CuLW1PI|Qmxi_t*jIE~7=4uWTx~q!KD&7+NYgMe1?A8dSHHP&n-d3?u#Re7s
zlnbV#r^VFreTna=i2j{#Wi^F#iwdhk>boko3v;WAZ7SDE(wMYoRK|z>^Y2jco{C*6
zxQ?+?vO6qxa__3zEu4$hln+=n6*pA;q~aqLAFDVkNqbd%qT(Amxr%)%K2>o@#bFhn
zsrXz34yf4ALCQYbl=YQxxP9wOiRP;w?CU!uk3a_{iAT#>ks~UOs`y&Pe_IoesW`6U
zgvjTnmc5b0kb9j)uI_iDOT|+vP71y(?;}nN=9%#`0=^eoqPlX9Eg<*@6_*5DU}<jz
zlki1}UOJX^neM9Ms)}pE`BCU~${&011b*q0LbI<XvPd^o{LD#7Lro30=%SodIh|^_
zqv978f3tTu%c=NHEIeLaxvS!L6@RMuOE~vb{Gnovkyy8S;0dd9(jFDiKn_2ytB~}s
ziu)>{;UNvrR#*PxoUb8C!`kXff`$_!oU8?N*M6P==KmDo<kOI%Ax%Sm4aa*1e1=pF
z`D!R_FXnr#XmSBjN!P$liMgo_YA6LY6w**ZLq!dRH5AcMQbQ>X4{Io@AxA?o4Z~_E
zSsJoMJzhiMU32kmfrl5@P(s75ve<Pl>Gc{9Y##VIqqInt)lg1@qM?iyyo2C*GzMzz
ztD%(Ff;;_k%W&mHFgI4xP*npTy@)GosG=cv<?TuhrJ9E7Vlej+j{I60YHR4Op@)V#
z8tQ6js-c;NdLl*(jWpEP&_JR?RB%dZNa30fO4wL~_H9xVNwsP!%{8<T+)+bI4Xre^
z)zD50cHq-gYmK|D@T}-&G*0CbN_!FRAd~{DYbswzY9|eyHFVL?RYNxo_YMXxiLTaE
zSOtR2S_+pvdur&#_S7(3LvJm3wcTIC05R1^LthR31p5sNGEi%vL<eaYtl`k#5BzY5
zFo$aVPFB#KO=<=9M+lQ(w1$y_M+t2@B3R!WqhTy-w=8L#hVd-k#H6!bQ~&p87Q@8z
z8INk1z(&x~QpZFMlQdk>a8<)(4IvH7HLTDO)}U&brC~N(PlL|fHB8fBXfQQ68eGZF
z(hw0~3uV^VouDF7iT0|ccmjM4aSgFNnK6~}PZ2y-10QaetPfUoxR7YqQl@KoT*Hh!
z$tN^CnTL-bO<Gt>c}fE*<!9#cpBAvCmhy~-eUr1F)38Xx91U~XkF05xocY41$~=)I
zX90~!(vN;RqfDaW^BP{z@S+GW)*j65OW14QBrVmjOv6i}&YKtuY!7_+WsbXZS+59X
zlpAt*FyvJYuW9&H!)F>+YFMRVn}&BaysqI5j%W?*G_2O}rkGm8!O|({<+mhC@YI%|
zFyqHzy@m}MHfh+*CX&>R8r~6bwp2P#nw*hFNUp7H5$2sCiCZ-=$}M@5Mh8D?+coUa
z@V<r*H0;#yo`yYnx$M%gTf^msfjc#-t^AgiNt_$~P{T(WKGv{TgvZTE9#Z(h+`@tX
z2^)vyuN&B3WCwG?=Nk5F_)fz~jn8TLQo|7qM>TvUBl>`bg936#_aP03#q9NmavrH2
zbmG*v(~ogpJ(+bv!`Ey{Em)>Fq^9v${Wl`{Er*HBlSd~6nUa4>!)Xm$k7QlYa7M%T
z8qQ0U#pC1pSq<mtlVW_SP-^|4q1NzBs$A4?NrcH{xXd!oEckA1<(h`;8nSd`>-bT_
z4Gn*3_*=tI8g6R%UBkdS%Fi0!no{hJhF|zA!2YeR+-B-qfhX|6^*URgQ&Sz~u7=+@
zpk}6|*HN-^g8yh_4!ECvk3*o2@&_I4kph28)fUuI{?YKSh5|a$b==qRA7^hJ%UWb6
z=os->u_PVIIui9@l4RIaN0}T=hmP;-C=UtqvpNbflTvh~>PXYUGnM&u6ssFB|B|Gp
zb(IVqed;O&bza(;`e@taOdVAxCC`~qppcHjI*RCcSVvJE=QFeD+g0nOYIT+Ab(KYR
zgFU)Aw5DTkpVXQ<it8w$V`VI*s*aL6O6e%Cqk@joI=It`IhJ7-I^Gq<&+95>b(E8G
zwmKcO(#-xDS$=v&JvhKsSw|&F`c{g{)G8AFtFF@dc1AV9)pd+{uSgA@*Ux5;*q>5M
zM{ON-sIH@tj>gPuVp=^N4Rrj|KDEB66s#9i{KM?5h7#ol<BN$|O>{KV(VQyvl%~vg
zLR$H1>HJHQuWteaK`R}tbu7{Gk{+z(w$ag7M?W2Hb+i*sdmUYLbQRn|M@IpjbaWQ*
z>aiRKDl&8vPEQ@(1(4H2N2}|>igYg>z1b0L^PO1?xq$rsItJ))bhtVO>KLSBJPWU5
zu#O=*M(G%>W2lZ{Qlk+<tDXpcs)h^ReI;w80CIXt^~dNKm&X~aBbUikn|}j!JgP&}
zq3f8y$zQ}mbQ>L$b*!uW;1}oqs9+YFHKIURhpMBB{Eq*zH{bAoa|}_jbl5Cj;bc?C
ze{zPDI6^lFBdX))xhbcr<^L#}@@PH9(-G4#OUG<c^mRO@W15b*jwx)_xye)Y2Y0-r
z9ta-Krt5fI$5T3Hi2M_@$)5nh>qll!l?qaf=SFAhcv{Ev!nyrxFc&?eV~&n_I_B%h
zeWSsb8gq3#%U120uySKye}RsL)Y7q7Y(A%B5w+sQxG0)?c6;2BEM6r|$rp6IsN;ir
z%BgzF_Gi+0kH=DuO&xc2{I26=7F)+59fx%+*Rev!b{#u(ysG0h9c$T`94R_h>3BoO
zY8|h$i&F~nn8wgQ5`L|x@PxvfI_B~mfsQpCeeF|tw1+gMzH;_vHYL~V*q~#xjxB5f
z9UFDLqhk{@T9ul6`h(Ba3|~(wm8-Z_s<Vxwk26WZ;ONTOE`?YN+N@e%*{S0_j$#fa
z9lLbw*6}{8rehBsazaoHp1Gh3cTw`N(uX=e(($pBs?D;XR6Gzw+OfW}PsgV^zR>Zd
zj?Z*_u4BK{i>WLODNpE-@;J;_Iu7VKD5*T-L*^F<l6WMF^oWk5IxgzCq~n;5<2p|2
zIHlu+j<0omqvKmqWK&G4AJpYLJt!eh*04qlG;&(U86D?1YjHl*ahAh`8|hODGHcpr
zVc0B;{-EOmhmRbMsad^X&EjcfUe<9%$1NSVbzIePO~*|-t&Z!Q{B_*W@e`f1zQU$h
zSU=ce%4_kM<A(Y{Ez;y13hnbf$Q^0(Uv&J+e(C?<SMoPuvb0-=72#&TdpiE0HyWs9
z;7=WY=_qKRkb%EBYw3W2hYbA70kR@7!9b#c`y5a@c#`O}lg+@&CK*UJf}a3(6A!R3
zYaV7{%j7eVVj#bP0tQkIuy`zLni2RC@rU&lerF`zK+=Jv3<H@ImX@S0`;=9qBNaAK
z#6U>{r3^ewMFZIeawIP{c$NS*BUOqCE^eTN0X79WPi6#O!BS<N$|`L@F;K=pStB@u
z#$vE>c=)cIf$|0_kUs$z|13pehD+^AQ-HZwHc-VtO9QP8R5eh|Kz#!Z3{*Ez!$55V
zbqv%r@Us%sy%s^ml-zS(JX=(kiah*f;8gwKkR5MOr%mF91{xV?YM_}ExUqpI0%)Oo
zuQV20Et}HZKno*yjYSLOvypkQj&*5mppAjf2D%t%YoMKh4hA|Jfm88MXnV<#Vz)aN
z+<hmxlM!?o)oGIht*e1<26`Hpzb<gm1!i)013e7x6Dz!|cUqqxOY!(#FC#dR$a1!;
zRj{vteg=k^7;2)wfdK|~8hFpZKm&sejAxk*3^t(GNM#sFNx?&f4ih?D=<MMsBiO|a
zlw8SC!W=DhjL@+LK0cT*P8y+L1LY9|kFp1=<zH@Kf`N$!78qD)V3L8!2BsT$+(5`c
z*g%vO7cJF*VZbz?(V&4BHfJr}6HKJMh}$w?8;BUeWLu>{@XO24ST<mHZJ@XYJXYDj
z6a&o<CB?*=Z(z7cCgsl`FBsUFYTz*g(+n<dXD=BagxnqG{o15IVc<yvPqV2FJSFOs
zpCN#+z-H!go@k)VHt>u@=NXt|V6G9oQh(OKR(YdDtsA#8R!P3|4b+nRqdKP-d(OZj
z(R#_i^8#MXv$>cx&BO0CP?iWzDHZ&;T54dKL|-<rF(>c=hF65cKUpgbylUVz11k-@
zO#$JrGO*gfn}S~#`UYvil+*tU2KZYB))`oDaESnGC6y06+Y6-*Y+Q^RICJf9U^_gS
z^Kk>^9Xe;1)NKaWU9ri)W&>M9WvkFNGlC!PU8RGEvD&Hmw{sk&=HDTd3x>p8IoxGn
zw}EdAd@Cw@4D2=ViQxBzejxNip&tqTSm?O=8T$<IG2jr#$lpaj75tfj&kgK1@P&Z`
z!g>3C(fpH=zBKR^Ti|}tn++7w{r8I=6eD*VD17Fpk;4X#7&vO+nDD>m9MVuZZs3GO
zyUz(KQn;bgO>XY`&cI2|P9}0poHB5lb0()s17{3;&zZr%Edyr_oHKC6z*Ph1#mEH%
z7Y+O%xL(5t{&~s3WqLTDA(fox{#T$^Lxrnn*9=@Y@RLY#jpauHHw<)_eQ_+w<DX^S
zG|)FOd9$2wzir@-fx8BN7s+1?{A%Dg!T+rYeh6}s1A47Y@;$bRfxkH68yKDR;5Xt=
zk*xH;%v@ng{=@OuP|4Y!^`C(R69r79n@BW+2?{125|Ct~PjYgy;1iW|@(D;Wk!m8>
z&bX6VX~N8J;zZTJwdjx+zs<@pk!j*#6OB707c^1GL=h2V5-VF+FoomNMCP|iMNMQ0
zlMCayg)C;GxQP}fTAC<fqNItMCTf`|Wuml+N+v3sP)w9DQO-np(amjvvL*(OPhGP<
zjh<Y=M8&*($J*H&8!Eli0!OVP%xXfb3O(FVscxbMt9Ci4MWzxsLv0gvB(;&yx+dzI
zXkenAL@97d%HL3`$tVNcv$2ULCYqXPCSuJ^?5LW`s~(t|uTkI<IgON7CR&^5Wumu<
zHYVDd=pw?q-bia_qJxQ!CVm@~*<P4a|Cdv#k<!TouVwDcx;F~^=iu4mR}<5^n&?Kp
zi5@0;=9Ox=<nrNXa=*~GLB4%V>?)JfUj+IJ?PmrD26<`K05+G2r4>?#4o@9qVz8u6
zYozcNXetgfG2BF1EAWaDCPtdrYvL0VqfCr8@wka6OpGxx)<oEZYGRxjocnvk#G@w0
z3wD;J{LjP-b_)5qH*ZfcF;Q}vBy_S+-f$8U@Uj$MGoec~X2LLGnuwZkOjsst;Yad>
zbG34*Yl6U&B!b+)lKUp&!kl7as)@%~cv&W$MxSq(G+mNf$id;GeS>F)Crvyh%#9{y
zn3&1-F?m}!o;ESd#6lC#nV4<j858qN%r`Mdgy))gR>1f>fhX{lBCU<MoR6EJ7+oMq
zd!%-Y*!U)vn0U#=Vm6K$+-vcoiR~HbTpVEF)x=b}EW%96-A?whiC0X#VPdt3<tA2`
zc+JF0hJA^zit$?ym7Fsz=xzeiRVH4iAC?LHnSs}-y=met6B|T$jfu4;)|psu1}hT0
zz=3z0Q|zxs%A$9&{JuGN?ew=rlFXdO$~z`Dnb>S%i;4H>PLj0M#JeoEiESqC{1dE3
zk}~X&)SbfQA5ZeD9w@%s#2ynLnD~$u4kf)Wlvy*ibz|kDyu3b^@^l;>48UHEm3<~Y
z<ybIr*TiQgJ~wgJ#5oiDDQ4n0ryWuJ(!?PXhfRFN#x!w|6O_D;KejxW06WVcy(1=$
znYbY3Ich>{{9t}2hv91z-<dcm0^bPzmLA?F_?Oq>e>f$%oH21)055MOpW%CnQtUi^
zY-iRL6IV_AKy~3?6ne=7#VB)GqSTtxSh;56x`~@6eikOb0`sGZ8zz3rli>!uovnjh
zZkf2vIp;{eUrg-#J>k`?lsh8xL1X21iDDy+<X>5Asmt#s?s2lUP}ssBCjK-53lCZN
z%f#O%l4KPBBf9t5J|_MZ{Ci$IB#1zw&|*!3rI_p0Qj;ahJ5g)P%e#Dh+iRhKg%k^^
zlElBRY1V`7D5L%CK~0o&3z-(aE0UREq3y@%&ov3!Is1)_f+D|0qD3rZS;!X7!xoAP
z$lcSzr<5EEB`lP*P|V`do1hVji$K-~>7^``wxC!jV`1LXg!_Gh!Szp{1oV9X7%gX^
zyoCxDDq5&-p@D@;qRyn+7Agy_Vxg*qY8I+Xw3dY$0%{87k~M{SCk!c96?ofx9pTp%
zT2CmG*ene#G?Hj53yt&m%>*>D&{RN3j#o6#OKl;brG<mi6s`04ZP;9Sxawqdu+Y)M
ziU?kfpp%8p79O)P%|;gsUD>}D{<P4|LU#)<Sa{Jw4+}jlOt<j3g<ckVTTm@%7W!D|
zYhk2?QPP<GEDW?T$U=WM?~!~BFDDJ4he%2GEl(V5VTgsHR`AY+6&z+^xP=i?s_)HU
zNS14=EdF11Pc3bf+}l6e!Z-`#EsV)4`B(wLHCz@Ru`tQPWDAc9bApA50=l)x<UH@o
zQ+@7-B)IV@WFc&!OH;*Z8aT|trixC#vXF0e+R8|VX~D7(w=l(mZ6RX8vk<cowcya-
zY9zaKIXnHAd^x=LY}<~M4PwN%@KsY~*u)1<LF7+mGqUbugEPE*IGJWWxVwNkdg+;=
z+Nn=ic-q1&3&c+feM;yIp)-XRs-Azgg=Z`*u&|KrSvGqPy-}*Raz@5n3vKG8Kg*Up
zA57!(g-=kPpP|Xa&s$g|m`nOhTAat{%Ks7zFIm`c;R_2(EiALJ*5b8qc$v&zsRzGH
zSz%$*mh@LFEVq!fIA`RLgddwKuUdG`!b%IPEUdQhriItV=2NLzZwR>8R3Tp4A$8@t
zz_;JBu!iHV*@HRoe#Ol77B*OTk6mx!Z3`PMY_+h>!aK~)!WIjghZnowC37?Tx|y=A
zKxX4+3c>B;>71#K{$2E43p*_M&6MpHX8cuj(5-YnVC=Mzdy~=&&6M31_E`AX!d?sS
zTlhd)=_4yRGWMZ`eNvLmLdj`7F6|S#<%=nwO5tbg>H7qH-%R<;!sixlH&ZwhvLZ#B
zD_^pgEnKv4$-)5+D+^y+_{PG+byE*nI3|jREgTWR@53JD*l(`%Y97?RXZiHw7EVYK
zF*)DTubL}oEPPLovT)MEDVA0(#(P#zTfscMSQPg*SMt@&JZs^ch4U6pH&>YS1Lvhq
zNqi}DK_m%iu=uHz%NDL!_{qXe3s)_Cn3bPbtKG10jqY7J<+_C*r2y~9^|QB{D@<Kn
zIOS&xw=6uLopo0VaNEKiwkN0G7D35>weTAUxZuh{s})V_-$MD_!aXba@NWHO36Hl>
zzWA-gUl#u6Tx6q}jpl39|KSgWjUsm7c>h|sZ{a@+2{saKq}j+X{3IK&@sQwT8*hmH
zd=gEuk!s_JaA<+w^(Hm>{9p&K`!j50+QCQ7(rx@KG6iiE5=FjP*_0XV4=m6!DF4GY
zirT1dqlS$v8`(Chh**w|Vm3<KQ0(9vCB<!&5`GCAB?WNv7>@ydcO+vYFNokppf<|d
zs9>X_jYp#?<wT~ujeNU;-mEKmRT5@pq1{>rZ>*R!vZYd0IMwXn=-lFVNu&%lZPd5X
zz(y?_wQbZ98OqnQQP;*}EtNpHrSh(l^25Sl`MRNv#x}N`&DTgIZ_D1ECW85#Q*3z(
z_vtm~yltba9c=$=VWXvuRyJDOXk(+JNRr=HKzkcoZzr}Byj}|5!N%*6bRNFzWTUf<
z&xFZ*nR_=I-E9oBG2BKE8$E3dv=LsAb+}(jFB`pW^s%vOX#%5tZJcbWwC|PP-$p;d
zjQ-J586X)IZ58y$AkiIcV~CB_<%2nMsBo&bQo6QMM%Wl>BSemkQ8q@~c!Uiu0%L59
zvoW6ax{x$h42H$vk1dn`CsCT3*-Du}v%;TbW1<A|KX0W(9!Z{T<3uavTFq3|hGrvT
zBPxoz4bz5Y<DKb=1`F_14v*W|l2rL{!q9@rvxfw4avdA44c|swk~|wR0S&vSUXUCU
zTPst9GnH+=ER~1Q7hg}WwL6Q?rPFOZ&fbXxcP~6)<4O9hjaxRJvN40LZR2wrGi^N0
zQNZ%sm}O(OjTdb!vGI(JIdpp)&)b-5<5?REY%HWJwpRGzzj-$1+i0>bxZ9*v>!5`h
zp0mM$z`&QPe6%>-FJ-aK|3|@KY_}(Ydp2@!KX}Q;QX4C5ylP{ajh97WIUTZ4@`TpP
z-}BR7v2kX8`eUsXJ~eTUeMnDwO=MOHT}hwG%kg#L@RG?lZM<b;8;7TjH8$4T*vN*p
zvChVN8*kgef46<55;oYu4Gg@Xk}9`41_PE~Dq+$lI=Pr4XS0pHVt=b}N<N>nAyjm`
zjU6^Vw0VI>P@SDNcG=i%<2{KESR70gdu+Tf(GP^a^<^pp`Cp5*kA=C{#wTn>`H!|w
zI28EQ2Ja5#hkMfdrE<Uhej8ud_=b&XgV8T-9JKM<M+J$$63ziTxITqPTo2heY~%K>
zgd;YN**Go+j|$ECFT-n`d_wToLiudNynbn|wEimTI~(V1{J_Ct<CLVHW}Dmi-VScq
zdv!oEhvZos=Oih+&4d1}&_=mn<D!jgHm=*a#A1uURU20X(Ef$J!NY2kHp=)O0r*k)
zKiRk`;D*r24O81r3)cGB7yQcVZ5wwu(M3=$f?wEEoU0?qAHi=n?%MdzMnVL?i{hU)
z{^C4i;}08y@=C=hH<15r<6j&1MeHA;6krl_$)yB|5hO=|NWe^rfG>~usfdRpnlFMB
z0pu_>H4@k);C}2$?TQtMAU(oeaLA4zBZ5qkEF!dE1cf3fESLtVlAC+9jq-2=MI)ev
z+)dzLol3}wpqNOOjG(vx%9n@)AEY2)V5X%aC>=q)f0AfNiJ(jbZ{^kWvo=ck2r5L-
zID#e-RE(ff1a%^)8$sm=s))f_5mb$!S_CyBs2M?ZVbT->)tN<ZYvkrwJFg76%z6@S
z5JCMsEy_1!Q{+Wi7`~cp8bPxNT1C)W_{}3|At1NuS_=MoWH86J5!^0<_7SudoZC1Z
z1b2#{a|9iwso7ce5>mNTLM;Z0b&a4~1l=R(5y8v|o{per1ih#j!6Om$j-XEj!y_0G
zLEi}av0!4ezff8j6v2Q921f9Qlg_2Q%WagKQvJa!t!xXS%uo>?7Qwccg7KSBD`8{=
zV<W*ozEKg3mej9HCyWu0(^jc?u)sJr`@sU^BVd#&q>n~0Ap$#sNCXojm=u8~@{=RM
zeIN{BiH2C<9x05f5v-h>NKm1zqBE}uOnR3*DqAAimwYiEjlhXuY6Oo(;L^=*X2&A%
zBk%+>cXAlwqBSLtNj_H?rbRG4f+r$)k}W(s=j+Vm8L7#SN3gzO4zKW~%u^Ahtx1?c
zw=WbdV)VHZ%v7@?m@U?xkKh>r3x&>!U~UA@3Z5^N!t+=#DJSs)j@-Ypxzh5Sq%IO#
zbwTj^wK#$oB6u-^CBl4J=t~hSjbIr)xo1kOQ4Yi0)MN$%s=N{jE|^*_l8^7tc#SO<
z!J;Uhk789Mc+999MZGAW9Pma2t0Q<bf}0Wi%#jkonh5qs@I?e`BUl%~o(SG&ts~gL
zUXI}12;PohV+5Nb*c=I-&zapj?5XNW+?@8@!W{k_Y>8kihbQ-+w=1x&t#VoFxIKa$
z5$uX!cLX~*VB0D0N%3m7Q&{m29!ulz-G2FM1OM&?Cnh5JFoL}ie8OJ18yuDWD1whU
zQRJPRC1+m*pGLq;KNtSwGRefBMR2WpCV{&!XHc2sFC+LWf^Q@EE`kFQ9E{*-1jiyc
z6v1K9JtA~?nPdiPF;MHcl<n&Xz7cRjXy0}UCn%0GhC2fiPeyPmf=dxxj^K0zXCgQk
z!TAWj7vZx)**IUE$vUV8Pn!%su*D*{C`ns~rE!6){M+gD>cZKXS0cC?!Sx7!lvHjZ
zxRz&OZ@%;!f`7{6`0W&4P;cK$xfQ`}&Z|*mM{$QP#Q8Z2MDZ&p{|Nq#;C=*mIr+1L
zBKV74FBbk_-%Sq&?Af1-wXYPE?e7S<?U_3j{}BOVzA_{KKl)fZB{3RMMiZjJ%umda
zB+NTI(jJN;UlawSC=^9X6sb`Zh$3B5DW4Wae!<*R%|Jy)GlY{VG}mB_sj2*{_)$Bh
za1=!(mxqNGjpAfG<;uLQW;0UtbLlxz6pNxllvf_1xCkghOGHsJic(Qfh6YPVaj%_1
z{7`#^_Y{?hqHGl9q9`8??lGnS!{(=R7zipwQJMTGs*9;ALaPd;Fqd~IQ$wP)qNpvP
zW)!?UjqkpBp$EN}p-wayzvbI2^`mGIMVlzvM)AdWSq+6Yi}D-L`5FmsEVPNxrb6o;
zN@^~E@+}0kjG|Q@r?u!Zsa+K9qZkpz$S68Q(J_kNQS^zTlN5=C>=s35!Ci!Q6<TX+
za4?ynyF`0L(KCu(QCzteY_1^f)?Vo=NkfG8i=uxN0|XBe`pfKufl)-;2M%zmK*C^Q
zGCDMhVS<MXeWy`UZqleIMn@5g!jEE16l0^997QOKaZ!wqVuA<<MT+8)Jj{Dk$ayph
zeh7Q`y`mGN!50%IMY;PZdy(WDjzW#XjKYdS6D>UoLj?HU7V47b0$WleEU*AR9XV0B
zg1so-Xs;Yd%YRjDQVSiFcob8ZZxl~QF*S<EqIfC_?q`@5#dOhng4H>Y#7T)iYLC-Z
zIt1<Tq$G6{%;*e>Qj1|$6mz1O8^vsT-S#YUo?)9;RVMAoV)WT4=0~wWlI98BIz4Bh
zsMG(S6X1#27dj}5qj-T{?Vz-S7o%7b#h+396~#+YEREvxDE4y%Me%YJYok~f#Vb)P
z7YlDj@nyf%6`bKE`f3!fMX@p(Ji4!n2K%MA=au|e2jvZsSuK=xxh_d>Npy|S9%kbD
zC^kf~EsA%A^L7*)qj*Q~*Ykq`vMGu!QEU~?W}yW-1`WmG(_~}9+Q*W&N3kP{52E-m
zik(rs7sdM`wkwL=0`>^)P)8p4JEm3@^`hVAD~806qWCz9eNlWWGJB)=B#QgrWYw&g
zTHvW*2zM0WXS*kV#=fhaJffq*w+3IZ5u*4piW^aU6~%!lzGrF_2ctL?#n(}M6UE^u
zjzn=RisMln732K#b#qnlqqf2dUiW-`FYyFhtSshA7T*f~j+2sr+_8Tuiqlb?5%nux
z4#UQd%KS&tj&xMcMR7ig3sGE*;@^(S%;Q-<h!`=AUy9;#6xVVUg_3!d<GoXm+WODn
z#1>BiUgv-n&QDR?6tTNe{2UE#hW|yPx1zWm#ff@BN8Az4WRdUgr2Hz;-=dfyoZo5c
zMqu_Hp9DH7e+XstZ~A1Df+;+@<=`I{mCYN)e^Dem0Y5=#C)q=oC^$*zr=1k0LNLKY
z4)W#UBAt~q2l*WoaqzG(3pmKkOHCJ$A(Thj3koRYps)i*+jb5Pk`T~lQ3u5&HA^Tt
z*#dGLjO!faUR<IjgqF;cIbW`T;-HL!g$|ZfPA%)8oP$vgMms3)pn`)o4%#}woKw+3
zO$W6cRB}*RI8_`}b5PyEALo;*@;KX1!4IWUGMHp)uzmi^=1Q8`S*h)yj)P_nnmefL
zpq_(<4jMUl`EF``2MruJ!?VX1O=Xmd&vjNBi}5B7nmWO<Cubq@cXn3(Jek7p4z!R|
za#}fPnTJ2^th5%)<!FAkqn(5H4thE0?Vy8$j*`^FK_>^D9dwoG)QRZg;Cy!S-OdWX
zFF;r9=AgTS^e(xBQ89`HtByS#42%Y$kAuDr20Iuc>irzdakB?F=r4ehSE{EDbTCMw
z2MT2N5j*4$buiq)2+<nmpwxvd{sDjS&x8_l5=XL*9g?ri3Kn3;I2h|dcVMs>C$q*m
zctljV17|#eV9tA#eAK}N2NNAkaxmFJNRm#LOy)nD#y=#59jFeb{gtE%|A{WjWh3~Z
z-z4QR9av0tFkMn@2cCnNgNTEua2%nogYUa2H@hf_U4z!}9mE|>m82;S3S}j8>M*&X
zS3aWgnDC2;<l_#WaPYK)Sq`2Q{tTfs@)Z01LO$MtIMV?ieaUIsRhjMJ83)fgn8$W=
zFxNruVjxow>`9xrH;wC5^XaP&eybI9M-aLyFWpIhqN~#4cE0BvEOPL?gT)S(6)SnB
zXR6mA^#zCTyfR*NFmgcR5_)W{j1^M0Wpp|Ea~y5sc*VhT2NyhC^svIgt8`HpbzQvX
zV5Nf+E@*s}gV#AQT@-NfhJ)1(&e35Uyy@UA2m2j-;b4t}wGQ5Mu*<<Z2kRYdaj@0F
z1_y6D*yLcdgN@Q+?>J!C+EuAlGw^eIDVs63M&xgE@UDYvQqJuTb~vEGPHDP-#-_aA
zA*efB<9JtPw}U;x|J1?z4nA=3v4g!1J{0Ch4o-cLczt*9Z)jzgV0rcvnsWG^g=F#>
z{imyve{IH}HBvuw@O5V5%9#nDi(=Vs%9jqla_}u%U}nMr2L~M-ad6bZPeXzN9}=;{
zLKz+0EpUuu4o=XHFpmq(zbEY*I_KUrW=F~>>30rJvS1EQi_BR%fCKg~!}ktW2q1o<
zo5H4`*&o<7oK+nB>ENP+OAc;3xZ~imgDVbhut<`{RkoOe>v`Ex@keR5+=gA&O}Q!7
z$p2XYOUU`;mf)PMVq7o%#lc;P{_0>=H-+Ih0aW>2`1geFm&*RdS+QICe-08{{LOLN
zFaJN1`mclgoGRS{7rH47)MZF?0T&OsNOCcJMzLg}<p0`DVKkqMR2OM3Qry5Rc1;gv
z0QPv?NM_-4w=t)?DC!2S!H^*!(?vl6g<KRCP{hT<c{1r|i}9#FSCA;5<sv(epW~vK
zi{cXHg#fv$B_-+V^V3SXDD6UVQN~3T7gb%96|wR{%L&cBSEquDiY_X-sO+Ld-Z$x-
zoWOy(#K#3g(rPZMyQtv?>xblTe!oOb7q#+?)E2-y+?xKBRnJ9zN_wd2p@EBrE<SMa
zp^HW?8oN+kXfB$#XzF5!i=i%>xo9rxJvlI4v~<zIMMoE{T(ox4)<ruPZA5_i4jYi(
zt9dZvwHMC9PRZO+KqmhVcXH9$MK>4SU38Jut}YIbNVpmb8jXST2I-xLlY8V@dwE=X
zFBiRC^l{PG#XuK>B&nZ^{w@XxF48^d^u|K_2_4iWd9Wm@5*^0gcQIKwBV3GhG0w$!
z7o%K^=G@X<8RH`NTiCQyJ~er)8!U~U)(fm#mi0dukBH(#7hLdsRPY2BUy5bQ-|nvP
z6#OI?89jnxghYTKOz&EfkdT_HyD(fVcJYD>(}m??nv3Z!Y!?w1o{N~MM1{IS9ih#7
zC`E<`E0exNr?{9ZATBiDwXCW9*!t&5kGXicf=p#Sl*e5>;bN|fXI(t$;wcw1T|6xU
zGh9q5m-=J*<OMwxf>|zRyLiUs&uHM}JA`>oXtAEkiC1z+=ed~gVv&pIT`X|1khrJv
z9G#)3GP)<v_2eI4BK^Id4@TUYXNxbZ7!>107fW1haPhW_ms~7$vD(F(E|#$vE?%YQ
zyLiRLatSM3ob4HuhdC0Y^in!^%wFkYm5bNeHFTJc*%f*zy?X_@7(%BBeapofDfv1V
zYX!U`jqskNu9qsa3e?)jG45i!iybaDx!CMto5*hwn%-O4%HHp#@LQbBi1IAVyBr<8
zAJl87i(M{ui|~6w=k`|ixOksqzfT~uD^K$0-pWTVK6de^i@#j#b@2%;vw|-6x%kw@
z*P{NJi_huyE{?d^@8Sy=2ZaBn(65Bj?DFHmi0Ir$Iq2e0F0+sFgyeYC#W5Er@+6Pb
zi|QwHgYn?G!8lr3Kj?*TTzu=|JCQl*;*<-nd6Lg?+Qk{+^YVvW&hkFWITz<$+;(wC
zl74V;&Bb;4yo-x2F1fhu;);u_bi$O>@A@bk)}{X~g(=!MFjBp*@}r9zE`ApEpIqE@
z!GnjdjV-A5&CgHG5|G|<!9YNjUtIj^;&+bdjak3B;Fo$B?uz=o%E`q1<PdM4xF?)H
zgbwJd{O#f&7v(&Z_wcWa`<#<K6!P#NE9fE3Lw*m59+EsHdw>@hfBIGuDR;R%<RPDj
z6c4E$d@1%TeU;n0vlw#Q;oZJU0S}!2GrV9>q<iRjDrxDA;CDPzI0VbJoWdT8cqs0n
zgolScEc`Jm+e40rq8_q5e(yDvoC}W?Bwbxw1}47;<Y7nkU{)+Cc1n3D?FBdglcRVj
z<DsnZkM&jl=&O|I7c?n%fRI+m%eS(Jig~yaYbq<c6sY2%s)uTl#2fNA-Ak@c$!Pv6
z{ghfBYI}Ir!#odlJk<3t+`|YD^*q$~(8CMf7dP<G&_jC<9XvGh(AYz3G1bIFQx7dX
zwDizSIL$qLQmp_#K+H@Tcyk4RI%l;Gs?bUV)-OzH<DspGb{_cK#LYiUD*1A;amfWb
zGA|EZMXWOma3o(B!MQSw5_I#>Jx{Uzw%}o@r-xo1dVA>Op}&U#9{PIVWuy#DCG96h
z2nMpFJq-0QOgMu*4DoOzJ?PeX1%pA+zn_wOhY9i1SCU4080A6tU`Qj3_VB2O2_D9H
z80%r2hw)5mlKhCIa$WR)Ua-B8A9W%opLn8&Ngh-Wyqk;B$sR)VhbGCqpu2|%gxT`_
z3o^>BkD8Q<H+`8NEDuvWO!Z)U!DU|&4^a<Hq8-PB>%sF76SKVdi>2M27&N0V7UJxn
z{lQOUsGm~f(ags@OcVYr57Rw7?qP<9nI4`H=93<t^6*pX;8~PmUO#2@xj;8}C7j@C
z5nIwvneE{j4|C|fkzkEtt`}^n+Wd9Oo_@-qe#(3g3p~8%VHaK9!*d?Lo{6_SEE4tQ
ze1P}xyobdeUhwduhov5taXg++TH@g)k-1YK=mLiG;@B^Hct!Z+%sZH#Hnv#qC1bC8
zcwP9fd06RTmEc<y9-OV4KPY$%e#66RFWA!0t2?<!%R7+Qc-Z7&vxl`F)``k`4{v+e
z=wX8gUO>bT7Vtd+ee4}C*pomb#N=#Yl%q1QB-=c^>wz+KUEY1PU4#iJ$*?m|cejT<
z9J%x^5AS>UK-9nR@S%WDJnZxEk>HO#?Dc}LnKMU*d;OG8J$&Zjb4l&+^n;mU^tj~H
zJ&Nt8Ry5`N&KY0QD?A*KC^-j3m~+>mJkD>OGmd&V=HaA=Qyz|cIN{+N58rZVaLks=
zW}rNmvk1P+Q)iUcNKbn>Bg}Iiz8Ao<ofW`TVrrfDa3dw_2M?wCE6w^VU!Tpn<l!>y
z$M8)IS3F$hFo|JY4A(qd=OB%tcMLyLi}P3v<zo2B!%a?-F+3c@&mL~kA3P+)aNENj
z55If3=iwK+z2tk>!*2rk?|>_QpFWyl^$#Y%e@i6);o(mY|8S}ofxkTb%^7|y7L*HS
zp?M;9Uy>O8tY5-b;Uvb86hm4J`D4M@Nsb|347{)oF+3!k&qVCM{z^&=slusxxIn`J
zO4An$7KkA|hRhfW#*iUNv~a{s<^o#(0YRw>#ZWkppZh73M|P$Z6;8<*>;Xzv4B0W{
z<jE9|p;!$3STJ>$70)P<$Dj0O;LoLED9y47bLQaW^7C@a#6VhbZL#t(REVL`K&4F#
z6=SFrL){qa#rTnErE&~aV|+mn)UHYl{GI|q^%!ahr;gB?G1Q8ob`0AFC^c^7T#~|5
z?9KpXOj2U3LvsBX8pP02gc~xW7@EY;G=^RSQyL31cy}pU%_Q19h86-!4-DF&d7;ez
z&Ia=dL#r5COHqjj3{=|2&`zT5W9Sq^=NLMOB2zoYpo@B!7`h6xhtO^@bQi#jq$swu
zf6Ahp!CcfchUo*96$6z%G4vII;W6|Rz|_Gp^v}ZsVi=f*2gUG_<T50WGc<-_d6=hB
zMhG66#~CGHbPQwiIQ-7b8%OeuXNSfRiGlckF+38(qcKd7XgCHnhKYhF#V|RBkl?ce
z6$)2bmP*Q?3Dab)1(0K~6RQ=<O|@cRlsFoL6T|DoF}N{!BJ*4fu^9Xqo{C{c4DlGI
zur*?MJcg-x<(wA7V}c6|3Oa?MTgl|inGfccCt`R~QZow$<7H+HPsgx8j59hbhG$}!
zBLcJOV1tx~{Zr@0@N5k8Vwf-db!P*`&Vv-b_^W(1D>O(sd@O5Wo&{bYxhRI`V^|!+
z3o$H@VTB~U7{g03ERA7F41C&TeXH~ee#@4{@Nx{Vh~-1i6nJkyu&&Z$XWHCB%BwNF
z7ULQDz@-<|NIJ7Rcvx+9FJa>#WmPPAW3_jXvO0!0W7r$RCo#Mg!<ra2$FL=awVYT6
zDH~(pRT%4HST9C4#Gw6|@V4NRgB5<Uy5V5u9f@ud8lDq8*KOqhiD7pPdqn-+7<R<4
zGluOVLxB=KQ}`$Ay%=^eM>&6_-N<4XHduK-h7UySBcUI%9sZYnzemco=?}g*{IT#m
z?aaFIb|U|J?~CEnSa6T}XEA&g!+{t+k70idU&PR3BEA&ih!?a8KkZREl5#MHLv)NQ
zS;t~H9K(?qj>b^xr(m$pVqFF+KcCNcX0S5*c=6*goDj+VHPadH4_3a7;XA7PIPBwO
z45v80eDv^fI)*cxoqQDY@qG+uWB5IWdoi4g;XLQ?7;ePyLo9e~z7WGj7V`7p;rUVw
zmpR+VaGmpi3|FP7+!om8>Vqd|Wk_(tBp-EHHqxJBxXF2m9mn}U7F=Y_aEmpaS@5~@
zNw;HYKP0&3h4fcpQtK}BI+^qvhn1KjhxY%7;ZIK5KJxkaD~7)%-vmFf^G^)-CHk*e
zpeZu{6VAdR3J>om`bhGT><1nNp>!eQ+>2IHe5Cp)=%bL2G#~kWWQYs}3i#m7Na;SB
zHp(8>x!55^p8wfga!K#bAxdE%MSK+XktHe*``|ZFTJlQ`LxPW?&|7FEJ2z>5&fOtO
zaUUgoRQFNCM@b*0B&mXr(moU)<s`aUNiO4~tYC9)F!eEzLt5SkQwb{isN{pkJS+RC
z;-jkIfk%?|9S(A==A*(;g@L%Hk6J!j_-N^)wvReKny@-P>iVeXqoI#RV!6JL2L6L<
zj(FJ-L(8E`W8o0z0&i%*Zzl3|hUPvB@P-^=w(`;1M<*YheY6pQc0Sq*Xe)HfP^E*9
zSMCOd@5mNA`QX39t(K`>d~_9=@PENmM>qe$C*6xSm1*BcFCWkQSnQ*>k3K#OAEuAK
zKKl6>?PHAS_V+Q^#}L5-d<^t4$j2{<rRWJQDhJ=!8|q`2j}h!pAJsY})1!uqFq1AF
zEH%mxj_`bODuI+Y=#n|s$2cF8d`uRx@jf2$@hGuG3q2hC?_ikVW1?_qgi&U9VW<-F
z5%!_^(EY%Z7j4T?3FO#Rv;Rsic|WLTkD&>Zh9z4*Y#-BnO!pD-5%uBwh|`OF>>85b
z`tZa!g{czr|Nlm#Pd21YktFgT^D)&2OY*}v!ImDYP!_*g{J4)Ne9ZNE(;%Mo@sy9J
zeaw<#%#g~?6!nB*O47px$`4a!`*?;~UrL<gW5BS$bJ%*M46D8>Fwe()9}9de6fL$=
z?f`#IqO95?0o#w}*rNM_j~9Jx^zn|5B|cvAvD(L*K9>4e=3|AASAD!J#i0FHeDF*e
zjm#dVEcbD7Z@vw~l-GQ$WR55Dz2Re(kJtU+MKGg$Kec{Z3hDgvB^b?Z)wg`C^|4OM
zuqLmB>jhjLo%*(q4V)-WC9r+iL2TG5!;&{~DEat=&gNr_kF7rT_;}yPHXrY@U~K=~
z8u{4aW2fMwQni93gU6EG>&Mv$yV>|Dsrjqs@3toO10Nsy_}Ir@sZr0@5<e0}%0Ko-
z=Ja2aUfB_J{h`#LH$U~UpQZBg8Aq9j(OSnE4}Pz|%;gCE%EuMS`XDXmOXv0GR6pY5
zsE^-#-1TwH$8jHLeVp@g!pEP(l<!6HYaieE_*U>Kq2CETDYVe=z|LvG1ZM<P9<HqT
zDHxmQ=}taw`1ncq7kpf!k5$RM=;IR2K9zo%rK0zWk#55kK5}0b$)|@a+d8LS_wgfJ
zwX4Dnz-xyqdxtAGCG|F&sDJ*S>G0pC-||sLu25!ncO>-}jwTDg(hrAcym>7D?>_Ev
zDvP6H9DlH0oTB3>9LHZi{^pb(M{*qhh$1cg=i^_&_l2I8f{~vP4`$9pp@n}dfjAzD
zBO{J7Bb0n`qzJ!29H|1*;>a)Ht#z3^x7BJ}`X9rU8?OXE#OcB>I6}#cqhK6QP7S(}
z-z;0YE<LADYLPgy;>eEUVG)~kws_GvmX&|->z@-xsW?i<Q7n$)ag>OIU$uVmNLI->
zh957<quj*(M<@zQ6-RloP*!L;q1}!Kzpb3@xqFa+uM{f@zj7Q^Sm5RvRpdIUs&Ukh
zqd^?i;;1eHHR7lhM{VZ#eNxRhyb*zVojB@}Gbgd0$o#S(oxQ+)S#u<{VLW*0$<Qp0
zMsYNbqe(n?2B2b7YOP2ozWYou3N(+Sg$TEdqg5QO1s@p^{K4NOrjCqI+Qrd6j$u<U
zd<r_m(J_vn<G2+^r#L#t@pc>=<LDAc*ErscW6Jdc-Do6^IB^_3;^-O2<Tyfc^opZ*
z97Aa;jy`epjblI@1LNo?Rp>92ckghA+wq&h_bIpoVUREf$HDgwEYc8(65Jl443A?(
z9OKD}V`LnoBx$VBku4HO$1x_38Y7i{BNfugBb9M^x|7<Jd?b!XB|0gN3GoM;2`9$!
z#K@p+UlvNh%M-$JsByR=tO<<>)#EVYFypY|u!XZ%v})PG#KJYwGb5F#@ELXJ5}{z-
z#uH8~4nL0F4Ia!AyuD{?9FN7ZfYpp+S{&0wY)%}Hvq*8w%(L@k95dp0zFVO9lrV=+
zOlM&9={RP^v8Zn{x2MjI<C!?pMg?`LCv<N7!AI7fjbmOM^Vw5Y@cYQX1&!yZNI#F`
zWfAMcPk_a-IF1+McrlKb;#eBTmp>-w?vY+1`PSMIcu4NiNOsmM!hAK3*Wy?n$BOua
zD-9`=d*j*4I9`wAjW|}tq1R6C)GxJ%6fD=m>Nqx+FXoI==sa)5u|~XTt<ZI1dA-mL
zLTPi-#FTg9*c8VXEEsj;*b>LSIBvh2wKa}yaeNTRhjF|c$M!gOv8g3#hfu2T%(L^J
zfR0D=?V(p6%}4e3g|lRoLQGvUKN79IaeOR*oQlU%89w2Jb}W@*pXPzj;`ls{{i3yf
zlyXQa_*EPS;y4}0nK%x{aVU=Cah!<bu!tRvgJrlhN;$&0Yjn_GG<Zxh+HfZG>o~rN
z<0OZ0_0(@Am+#`JFghq3In75aq>P>tQ`G%Fj<a!Gj^j!k=S1rV`nIH=r=N@bMKOL!
zm{g~!XGSaQM=P{{RkFAq$29>g)kmY1ALF<Y$9XB+PjTEGt&|+2+>C?tEvMM+IPS!e
zFa?QI@QY~u$%#FVUj_drWw;y1?{VCt>n5c!u$rWQaAp|te^h-3lodtO_J&9HZX(ID
z#6b`hB#H{6h^QnH$pWHCkerds%$;;6UqEusQ9w{pPz)#rz=VPUQ4EM;LNTIX`k$#~
zzw`d*^r=%_U0q#W9j2$Jr@9;w+VC%7{)bNi(W=vcxPt%A#DCHjjM7A8%Tkf8;uaNc
zR6xZgDsEEahe8<@IVx(YxJ*StMXrjfDypf-Q<1NtSVa{T1;SZY#o_@<p^DK16b9xk
zr{bq0Wy%XAQb9#U!7nYPR8mnScx8cG24|3s8MhBm_78~dUtL8F6*W~TDn1yX{53$i
zVqh$}e8$DKaf^XUZ54G?v`}$_ipy2hRdI!iD^=V#P?<VVSvOEwx*>-Mr5zZkT&1F(
zijM{=4E0r9t)hWM8wzZuqETsTV?mmzXe!7xrF7bgd9PJ*T`A>y70v&Lr=?iqMuBGs
zDh&rIcMVb|4pLeP<z|7c1^R=OU4xWcRcyXK(O$(v0~5FL5ul>2irYFS{+Jl=g|<`i
zT8BiPYqIZHUC=>AM-_Ldc=6l9yHxaiC#Mt3oszY1N6ww>A!~9vGwHr~>gb}PtBP(a
zx~u4=;%*f)Zq0aRkkW&>RL~jSEp-!g)Iy}UihqjGM@3&1q_8aB7g>Uk|6ZC=#Sjfc
zHS||;Kf8ez_lf~32CA5%VycQkQWp{@s2EI~{6ZP6VvLHRDu$^Tu406WQRHt~Wu&CO
z-!ontEbJc7+e`1wCY{Jw72`{#jT5B1e9mAJ!$hGxsA7`J?;3IT$wHx@y=f|@t2nIU
zZPrx9Ock4GRTZiVjfPb*S4C2VuEJB{t1wiUDr^-g6(@$mQe)R%B~GYb>sIWDSXUs4
zEQnsA=vXXJ5voY5m_=ztIlK@yqTRaYzV}7!2Cd3?%vQ0pTJ{{8{cIUJ(c(ee557vw
zQ!!t~N)@YAEKspf#S#@u*?&6bEK+$>Pr+g~dW&3gGVn6`Wh$1dSfRpgm`^`WbnwMc
z;%e-jLCR_sYgDXLv7UC=oJoeYq9>8@O%rseMMqT|RBYs=F<8m}wV+PJa_?s3Y*F#B
zif2_kr(&y$Z7O!DctXW?6_2QROvU4($qwqT;!*aHh6&0cq;IimgB2=9BeWf?(DPf*
z{H!Nc>{ju#8kfcT?hyr^qCE?9=+G>CQ=-GxvU^oLBMhwOi~m$0=kqG|sW_nGpo$mR
zQB}OG;uYc9ui_;Y6do5^FPEO{Xu3;>#m0G6jh$$*6<EPT91AMmQ1K?)w>X!sv0hiv
z?DhCjJMP!~x764v83Vndu@OmpN5v5p7gYSE;;4#uReY)9D;4jt|FFeXe8yQt#W4;d
z6(372K2&jB<S_f-!3s@!a&@&6B|U+foQd7OQA2C6Li}@9ho0X!5a<F<a`9UUU80?0
zHy#!%L(`pB@ioV$ieFWHqvBf?XH@*4;ydX=-_zjvIqY2v2gfeg*pYrzah8*zil3=x
zuNst0r(RTs)mJ9PFVu8%_nV5}Rs5miPieJ}hvJ-y-a9kP^{Y;coo5#n)AbcsbyVYT
zj&V-c8VWT0tKvUS^%|fdLqn#9$G4W-IapcMHakm;4NiyHPxPrg=DkZV(Qt6ElA|G^
zp<lP$GFsd^q%h=a$dh^C^x)Vr8kJ-RF4Ry~Ly?Bc8p>%Xuc4xbOSRY(-OprK&@e-Z
z{oSz&Y`7MO<MCTbi`}?wNA+S2RW#JlP*cQK)lf}Cbqy6Bh~?9b8~5%$JQ_nq1lH2x
z&foBXSlV&9Xr{J?IvOsQ?DaKVt)Z^qR|vdP;8g<a3A|16Hqg*eLt72)G&IuCSVKz<
zH)?32p{a)Jh4UI(pu?pM*GjaRKt``CMW_Qqa}6yt+#tlk4=CeAKIu1UxK)dPD`=(R
zW=U<W;T8>T1n2J$bFMGs6N-V}EN|0ryB6Oh&WzocWHDEJ4IMP}*3d_UbkuMcn~AuF
zP8#mi;%Psg`6YG114`lDac}9Wp__(YQUqV4x@+j6p{GQToKEoD7B}n2w)O$#ZXptX
zYf=0|L0``E8t&I{4;x(riT7%_kEL9Q`A0ui#IUYY*#Q~`GNa^W(jX1{9#94g8xaOF
zGtfoDFb%^se4yc&h7lS@YWy3qa;I{+qcn`xutLL14P!Kn)evY1HH>5XYA{6d1Pv24
zOw}+=!-H&>lSPv?OkvXtKKGi!|GO2AWnDHjdpi4=hM5{v$-b;_7T;@TIN6$pPwuUp
z)SwHUI0J9fp3o(p)=UkS#&=buG`Jc(;c*0x&&#Gy&U5b<op?a;soSV5Zdd-fI(}3!
zL~JPy4+&>l!z>Mtos8+THISe9TuEA}VUdP;8s=*}92oCCE)e?XweyrAv7r`AbeV=F
z8kTC<Tp;qx<-Ff4R&Tim9;D<q+*KM@YuKyd84YVRtktkx!y_8jNp^B>*05f~1`Qj9
zvZ<7Q{Sf6~A}(l)hKDt575X;zzz*@7&J(W{*u&$--JxNphNm<nhbWJ-E*f@ec!J&U
z-gqnKap`G9Iu40%w|`Q@ZVh|b7F#O}8ln&~iGc{i(~`vKvl^b`G@{`UXAccIb@E@-
zu%Ep}@D~J<jr5m9tCuyrQkwTwp<Eb<0~%OFiTpP%)O=0D>l)tCa74o!8s5}Ep2O^`
zj9#cooIj}@_6v!>P2yi!i-*K}-3&)*Ne%C5@qRe>k=_@CH{X?{^3SOcIT;R7E@=2m
z!*LBCY515;so^ILKeG#I_*BC;8ot%=ndo+k4XWXD4JS2xA(WC68h<^U%Lf4!{z}7X
z4PUd<7H5~7@hD*+{+)*JCCiT*&Im&O9|ZYd&a*<{vBqCC{Hn!!L5tcae$#M(dJa+k
z)bP88b8II0QvXM38+|cEInQ1<sen9$k2S0Ox5&99iGTPA5d1$4S;=^wVaO09Q(*Vw
zS=oZ1G*xS!T_%Z~Boac&Pof}++$8cO%2WmlDNLfQP$~#4mqd9%_=^owOCXVoNw5ea
zMM+dnqT(!EIt#@~R7ql{2h~H>B&so^g&`KICs8Ab4hA|JsF{S4#IYnkOrlm2mnG3Z
ziTkC9+DSA_#;fQ$61_Z$x=CCi_|*ch6v#raN}^s8^(9(!sKP*EgVNMNUuHE*qHz*U
zl4zPlrzGx7;+iCyCDA&GTavgo8F!u=l4zO4bxB;GMDrwCB(ZXBCii<=4ZYaYQmYd;
zCUH{|t&+G|vXpEElc!fH&!*3_+9Yvn677;`pTupYI^3SbFwv@QDdo=#`5ltzn8Y2W
z6w0C6^d3gY-QCVf+?7P%B=!tdx+KvxiMxff8%-@p&m{W2lU3sJvIna+H{M0*B}r4H
zEJk}L(MKqYgmRDI{RG~d#C?Jsk)*!g6bwjWU=m}J7@NePWc=spaDjsbGWviZLj(>L
zI80#w%EcoDA<sxbMhP6vS_?8RiSbEnOJaKx6Ox#igr7u^#DhspO2SCOOk#2pQ`lRQ
zP?MON#5B=uMiSEn`A?Mmwxkxb;=aeAC80}dG6}joB4t2sf<Lzs*<7~JO2SFvW2c~2
z=Y*X^D#-^{_Ep2;zTqa}NyhiJxRVoxNkmC3Nn&Xd=_F<)@lX<TllXC4&dtLVW}GeA
z=SZ$~^_6)^%uixL5(|ZLs8%+^yxS`;lIUWA{iH0)uY06mSrW^W*qFqoBv!C%C9x)n
zwMnc>Vzn^$KNhQ9;kNiV!A!}xE{XL?Y>?C~LfJD+*^*tze<U|2!DByLl6W`?{>Q;A
zPh7~NuludS%;;4peuO+pyqd&;Bz7k8s3g6R#A8W3p2Sm0Je|a@B%WXglcXmF^8b$A
zf=v6g;9Dv5uVKnn!<D^BJd?z8l0^A<E7tZ|iS`(-JfFnAB#PT6h?72Txbk8W`z7_I
zBwpqa+Ymqgc301MMTm^@adR+<LrJ`q#9<Cz`P1{YBwiPWHw3;Z@M=jafo}`tXcF%T
z^5f~OBkVs?=(|b0m&E%V6yins1KL*TEccD!%JC#VV)xVWh>nkwIFZEdI@;>^B#BQs
zTK5*!)bUvopC<twm*_Z|#1~1NWA9DkR1#mZCnRw;iLa74oy2!Ze4oVEqQf^ye9KT;
z)^%#UiNU{b&PeJHNmNZ`RqJx`l*ps^75*gjpOg57BYJ1ivj?*_^~wG<iQkg=U6ObM
z)FmTgGd2_WXA<X=_&16FlDHrYO!_;C&RW4=oX6^y-+Q6*KSJ*={7lWzk*Om~kDZe+
z%8;$oX>fMDq|C|DMkr-;<mjlZ#}!ZL$kkD(qpXfR{UU#Xj(ouvmddPtb9Ol$<#k-D
zqmqsadi)W#qK+@_%$eUN_Pe{}Y%y_`Riwv1EnXuIF}PkT)=@=ARgqR*O01@XHyhSi
z6|ZS)2!-91nkYJI>9|ZsZ5>T@Tq8+!bX=+9D#0(;QCG(mg0n8WMYno7>g#BzqmhoQ
zsn3v%20Ci?&v7n^yWGbkl*?LGZLEVwo0<q@5^*LGHq&vfjvIB{#3UWp>u90l1|8%q
zVQ4N{h%>a*ajw)FL|W;%S;s9p+6Z&*AhZ^QoHuTc-8O#QC+k)nw+XSq$hgEiMk?)e
zwAV39$7~%Pbad1)TE`e2cj)M(qo0m@b=;|=Guul?4;^>u=pquj>b#9zX;?X)<$f8N
z)lG<8<}un+M=u?HboAA6cc~7&b<njDQyJ(Kg76*+|1YaGS2Y9UX1Y&De;q?~4ApVJ
z<Qk}BkRSte9QZ2cVOTIEdoYPYUocX6>FFw)Mk>Q3%G41$hL_^o2IP;_F^aVqUclCQ
zab&!t9IIoTj-(D<*v7LKI;QBDpktzr2X#!+@lm><%fy@tb1sgNe*F_ubxhMSL&r=V
zXrGv_W1ToH{E}uY7b~WUG)+geyMTY>ky3A5WkZLl!`Bh$uyoiu938HXlrWdLJtSw=
zDCMDBGOCYKJoYhJ(bXTN^lEf*?=hrI9cjtJyZrWx+nhN%9@4Q&$7&sOb<ESTM8{Gc
z^J%~%iA6f^J60A*mW2X)j#6%^lSkrWNn)Y1Mk&iAX{C<k>;R*b6#|JcmEoTUu!b__
zopFPXwWatv9qUW+t)rBUIyOmkvyO*#Y}Mo6AGV0(3jM3pm~!zgW}6<rLTWcAcIeot
z<5f1Ojz@JorsF9cPwRM`HEL1rNrAfrJ|U2Qi5{SRT9n%@(LDl5*~>w#;}zO=6rR=b
zoR0lc=<_=E36WVC_~Sh5@`8>RCAHj<cpK*>!HK-gfnOtj;4)CoK^=#5{Hf!-j@NX&
zuHytJWF2p?UFw%VqT{HJHwAx7$6+0BiyZoMc!#sl=-6(=?_FNuU7^3P;{zS<NhfD^
zp36F><3k-kcgg!m7>)~UF<L3JKJGBRM=Kw*bBdf#Ir;1OQO8-~`CP}BI=&M8B&QS|
zr^tEV#UAq2#ww?Ee68a<9pCHtM#nod;-}%aI{up%^VH~BNRN4Ebc~#z_(6ntQVNr{
z3i1<MN5`*{^fTLWd}f#S1;6R|oimIO3qQCx`iL<6p~s#>o*S)P(D9d!8eBFT_*=(6
zIuZtQ4gAZZIi(x%6?hp2G7Z4MB?ht#WE&{&$CC!bk7Z+{{WGL&86%$GE*}!ZXZq!T
zCt7`SG%L?QzJUq`Dhfk^fwBh530`R6m(j|oFN@wg8CRB}yn&~O#4od#8mMHT*gzEn
zMFx0jW@Q5dyJla$x0pB?=8unuc2xt_3{<D`W5f@`nw<L6;_lIUjG`E*W#Bpk*BiLZ
zKy3q88)#slj)BWryAEZqGEmn*zcI=c2Cfu+bfe1TF>!U+E)$v;)-zDw0KbuuvRUX2
z4Ky;))W9_c8XNH!z$TKBADwxMkDvV5j@%Y&Cd6wEUQQQl#q6iYD9sJD5c+KfZZOc&
zz|96)8@SQHO+s&F@Q${NBe&LAWl@i^Wt_?kw-{(+;8p{~DT<+A?K}pK>)Q>qrG^ID
z8%Uqd<hFplAT|q=-2P?nFwn`s=O#{?xYIyq10NeWVc;$UT?{;8V26RO2D%xTC)Mn3
zpof8}2BsP4X`mO)ZeWywyAAX<Fo5<q(8oYu1NR!Z&%iyRcB~JDkG-h*$T1a5{;lh8
z;C=(ETE@MX3(N0ERUTwuuz_JExeN>uWT=7nOZQ2Rep6<W$Qf>6gn^?SFU~x4jXqkK
z#~Bze$QT1-1qtLI!wCi^N_4XH&#$!X2MtVO@48TVp$Povm3Uz=#lRnzRryLUm@dq=
zfs}z624)&i4QK{Tp(hRKf*9;PZ^rubXl~Z(0$w-s=vc*)Bog<JRU8AZfmx*#&p==x
zl&CN8=vZaY?s(iqY#^a{cjeK!3U9WZZD5Xphp2gu!h4S9O6nhDc}r1j$@%PE1{NAv
z#4t|TVqmd>B?i_SSZ83Vfn^3((!7#uxxf_$>YcoJ!fkG?g4IG?Bk*RC>Gz6<#@SPa
z>kVu$u+ac<QZ@<CW{v_ij@~WIW5y{DGZ@%vV4J~9VU+E{Mua>(q_NYW+daHy;B^C!
z8T2QErw!~Co?QZW8+bwx@;}LjlRK%2?=kR{(96nod!#&L;CTc4g!rt1=LF&1G)#KI
zz>5YBl*-v};AI1^Nc1I+;x-q1$g3P{r997$Qx2BmhYVgW6D$0Nfj12tE2Y0>;2i@;
zBzjoj+XCql|7a=C`v%@M@E$wT=1hK@;Kv2Z`Jgnl;h8x4p@HK<`KXl6-^4yK@F|Ck
zi9RMi;{fDrX`%v$p@A>h0}cFX;FN(c4g6r>M+09OIBnp`yYs&{@U_VKR^T@R&xrot
zmCC<lV$K;3$(==!{C;(o^Rt29g+k)b?DGbGHNaGc--KTBqZU)uokfJ_N>k4pxL_d1
zM8d>hocs-Bn8-Bo4-G3B|NEbUN`#caEEAWQ@jRbx0)kji6>+T5kx?0m((z9AcqP|F
zo{4fo$v06TNLhh}oRQ=h9)<kTz3}Z8**_hM&jo$nBD<oAOHEv7;(8O6Oca^8%tUPy
zl}!|zs43a2n5b%^hTzOq%|!M8!&k=xw)%MGlG57^6ce>1we9%0C)6=<xrv4*8kwkT
z;tCV>Ow>1VrSM!;DrfL`<u@aqG_Dp(1A*_oU&M17JQ8z<UC`J>6BE~%XlC-J5~Zmy
zOd1m7%*Cq~t~J5yEr|2Mt@f|d+(Zi#omg=bH<)N?;#L#4nYhu!O_H~@iB=|VHsd!P
z=3;37dJzMWTTHYu<JpYf7+x)i<=<|it%;73v7L#dS0vh-=pa$=V9w(4%HtAB<lJHM
z+P>H<orQr&cN2G+=)yiZB%`Z|ZbI+;Xztc=xo?X8JxufzVlRPr3;aWps!mY)nz+Zr
zA`^>E^fPfUEnvblai59)CLS~~$;AC82ACLWVw8!2CI*=pYGRm)!4zd;2rb{Ha*GLZ
zT^Pm*5(*q{f*#aIm~=s}@Ps+>X@_%1n;2tayom`W_MgfcYhs+JRA*rRe>IEwd?~pU
zY@!f<3o?0|L#Gv0CYzWdl%$ENCZ-9lnwV~4hKZRHW$C9TD2a(mOQZ0Li5K<J*gZ;d
zUD$YEiDkkTe71>{3CBcKD#0}om<UaHCVU|td!XRKUb+25$aS*+#((<Kk~B-;IyYz1
zL}iYNhfK^hG0y~VZCEHt^Ue5<vjryVd=s}m-$#ZO#iOGS@1``dls$x9%fvDh%S}9L
z;xQ8|Osq7q$;4(8t4ypmvEIZ66KhPYHL=b_yV)57e=S@r`aC*OIV{N0IT^gxa3k|}
z%jP!@w#XI}51ZI-;t|^4#5M{!kwv%m^(ra6sDe6hV|fQ#_Kpl{yVH!X`u%01LYzsD
zo8UbW47&x{W#S1FPYO;31}5z>@sv=WHnEpO@4?vMGnynAh&*TFc@yuLIAUU-i5E<~
zYT|&27uo1ynU_txBt3_}F!0Wl0h0X{Nn-YO@=5EUiPufMVd9X9*CdIhloa$Pjcnqu
ziMNIR`MUUdmwZrR;EjPLmj)g+@ve!FOnhwOJrnPnIA-EQ6Cae8Qf_y~EGhT6P)ghy
z@D*~+uy}}_5aOpMJ}KpYNti#AXusb1Uzj*$;)geL@3ruyiLW@7S*T{=w27}dNm?kh
z@QsOYIVYR=+r)P!zBlo^iE}2-Fr$f|ITe`r(ZpHuJgAhPq?EkLUOhSUCz`aa^24#5
z@Y9;#bjZ7YlJYA@<s{`dfmH7g6MvdGZ{h++!6YS`r0kfad^t(^Z<11JvQpuLn%7NM
z{xR{di82;)Ec|C8!$PKoEQ=n!l%126W0RHaDN4;LO1CLWYKoF=0TwQ?;>SUog;f}c
zBrN1w$g_}d(b<Ud>J;UJh1E#^dy3L@s?u$0+~{Q`OL+?w1Sv-$d5IG@#8Y2I3zu4`
zWTF38xf54p6j|6iGNY(Y;^tmil`Rxoc(q#IqwiJxY}ln$BrlQb7HU|y*+OdzH7zI>
z8e3>$p_YZqEL>^fDhstO)Ui<4!W9;O(pM5+RJ&ZVuWgjKcB-;lv|{OBPgUw!sBfX6
zg+|n5nsPPSrYXs3N&^cF<mo(3>2h^q%QWTVX-Z<c($vB=7MfdVVWF9YYb{)7;d%?l
z78f*_uG}|WSv*}iIGw*vDA&wT2F_4!u+Y-NO%_^NxY6P<b>;0D$}clwv+SOs)Sanx
zo~al!l`Zuu-(sPSg}W?tv2d$}+bndj(9y!}7TQ{9XQ4d{x~X{K%sB6>GnHRwDos?S
zr>aa-l{+kSvT&z`&K4G_%3G@P>R-kGsxfChO}SH3rfW)93*9W-ZK1b??iPAj=xL!B
zTTN4*)|9U_rFK&3kyO~1m}^&3>0_a<g?lXYv$!v+Kv#-&<rZBTtt)RV&2@C;1zq{;
z#oYTW{P0$8e+&0pV03^)2MRt&;9!B|Vd_u|!z_H9!if}yTNuHpjo~&%S{P*^vXHhg
z+CmXx9aORZ7z<-9jI%J_!UPLbEKId9(ZYikCJVzEU8!rtHJxN(`2E>@Yksfb(gj;D
zoyKlVgIk!%`Wnh)Ls@1hj~mJlhLUe8H=4=_GtQ-1NLtV>7#2(mp2cfPb1VzCg_H%y
zf@>-pP34%W<XdcgWw@mTmf~6{`*Gz7>#}_d>pR60S|G}V0@ql|EDN(O{9@r(3v(<y
zWZ@|bPg|I4VV>}8vM}Gm0>Rf?SjdL6u-d{J3yUo*v9R323JXhxVVQ+DErmC85wa}8
zl@>@OzDklxh;&!A*1|dqOeLiRmauIQ%0_`DNt-QfvGA~ktri}$@VF#xv+#(89Tv8i
za(-qhJ1ubI?$J^TaRv(6W#I`S?zZq`X)1S6>7R$G{CR&5>-$|%rmgI?@C<vAg%2z|
zYvDNyZ^UZjc?<h2yux8_;ROpXTG-FBEYK6w*50vI8{5juBH6Z;J`*w<POCi3Rt{J=
zD8$z+91?_I5=%Zw7p*LQT`0U>`RNw%E7DsMeMjJ73vUZj=gaum%n=JmCHk(w_bhC(
zWApB_m6@*<9JBBt=WPpLSvYRtBMYBd_?*4h!U^I3l%uKt#r>#HgmO%>HxwWKCoOy-
zL<-~wol}DIQw}%QPFwie!WoVf&i@v^m8686z5LF?_iVx5g@21E<}FSsKbFe*NszOg
zg6fxVE>5w2w&D$wrCG{v7JlcvWTS<Ra~A&KcTyWQZ2W2AyoCZAg*Gm5BwEO@k!j;^
z3;&3;e>p}5#;acj9&Z0nh;#zetVSZsMz)PIHgfFvUSrs}#E$zFL-&-zKqO%!SBQKY
zV*i|$Qt~9)@wK9S8?#ahk+L?**{EWps*UnCD%hxGqsT@@8<*PrAuhJz`B&mTbJsU<
zqgNIQ#R8i|g-f0+x^YkZKFctCTy`~~|4=#pNwcO6#YTM_SKFv%<1!mpNos8yb!=QA
zICEWYqppnuDP^nZ%zeL%eO0b3P5m{c)GNh#;<|y2>pNyNw9!b2#2edaV&hsH*V$-l
z;~E>yY*cpQ>UVMDK1OfklX~R!*jRjhNfv>OGU)~zEp6OkqmzvrZQNwzHXFCwXl3JO
z8?9~JQYwnfd~yE2Z{lri+*+ztQ%9jcfwuO=&y?+Kw71d0Mn@Z4_Y`)2J1Z?CjuNW;
z7@P4<8+Y62ZKJb|yKHo^(bYzG8$Co|Hyb5aq}?V}Ab(FAy=<&?lu4x&;(cuNwK2fP
zKpXei=x3w9jr(ofTdLK4l7-nB)NA7vQJ<GH=y;_6h^#>+JT`{d7;J+M(wR#Cw?j+w
z&aan!z)^m1lo6c#**Ym)k-{h&qit-r@rbaEv0>OSZH%=s&c=8f6KqVgG2O<*QaO_a
zd650Hl(NN+%|6A(R2x&iix<@=4;0O?G1G?5;qX$Krm}CT3cqF}X=BjWMR#wnQpt@Q
z^wS4&$-`jTh-{>7*ut5z;YfB@qQ2msjfSpr*X!j28==s<xeA>sxaF(NvN7An3L7hJ
z%(3y1jYT#V+n8%(o{fb>zAK7<{<X0{GP3BYqQF{L;c<PYzLZ~KiH)T;mf0X);@oCA
zAD2C|c|`>~-aeLPW3`P9Ha6OzW4bkL5gY3S=Z$8Rxt^x`te^({$GXKtHrd$BK4W8>
z(6<PD*v5w}^s@p6A|x{GudLkkeBlloJ8k^VDaFR4HXgI_hK)CEJZ@u`sQrqKCu}@v
z<9QqVZ0r`|(>C_n*kj`<8(&MM__eOAr(}-6Gd7;3dNw_E=X1lbuBQz4Vzck~CI1B*
zFS4dKUS{bchfe`sn8kg(Gj-xNos*Znx@kODyvngG3<qtzCdeN_<{?2;Pr0Wk`*n`B
z{&9zV%f?|FU)VTh<82%7u%<SS+c?4w->BeS8}CW3qXOr9%KJ7xuyIVHdquIM0{;~F
zk&TaSd}8BM8z+Q^|JJdTxS+BHp9$r28z*g)^%ed~L;8)r(%)BR_{x_yzOwOyjUR2C
z7S3;Nd`J7(_=Y{ikFVL<>&K?}o|gPP>kNx{B%@EQ_+^kG993}E#!r&*H-SIf_{GMr
zf*+NPKMGU=rSsr;mi|MME=i$G3V+%-&-vfRUp6vQaq8caO5|S~|FEk!SGd<f_@B^E
zH;AK|DP*OPE&R1EWFZx^G0Vw1dE8veNg<I!r4)*UAvcAxDU?egFNJ)e6r@m?!nUT_
zZGMPX3(R7kDkv{W6$O%5A%&S!<H>>HQX#eql*%a-r%*EmC50*}egQ`fNvbAL9fayB
z3<?xKP^NcFJRB(WC0_h}My(VsOM&+;U7kX1;jEKFtDZS@c^3=cR*;nyKV0?)%9SZx
zmBP*x9!;TM3iVSMo5Hvhu1=vr3LR6pBZY=3G)kd$3b&-tIE5xDv`FEG6q=@RO$yhg
zaD58Rq?Bs~?y8-~7NmSW7n-M#@k0?q&bwKB3Xsw=g&T#fl|UwOnRHVseuxmiS%@D6
zv2AJgHYv0d%B?Bfmcs3{YN)iO0%6Rs?@+<EF7fiXz3>p}kiuP()G38KX_*uTr_h<i
z6z)!;x3G0dp<4>w1@9_w|H=FwDfCRCSE-y)p>op`IXrwznL()ZNuh6wH?5$*Fx-<u
zzZC8je0#dwfJ&9uhRWc%aogQ5!~rP`qyq26Lv?1$oYrd!KNu0?4@l}TF8Bo*B5<g{
z_1mkANMU3Oqa`|uN}kSoDvGyTdB$@7Rf#b|XSC<-1>;kgkiwi49!g<i3J<1WreLKo
zDTT=?Xer)_Q!qvNr=>7Gg{h@^8+})CMhg3{t2{FWRfxoS2!~>4wJ$t2K2|cBf}VmQ
zsdOR5Pdv51EwEEar4X{)r{GAEmx7;yEBHaNIgf`iJ43*+a9LTN+(@TlXZW*(Cue+I
zm)R-oc{Gp2Q=u|9g?TBgPGL<7^HW%m!jcr0rod;x!W0&zu$V^vFP2&I)7i6`xVv%Y
zvJ{r5@YK+F<gQ3zWeTfOnEiWPZtuwjeG1BEM{#uupDbJ}<!(q}BgcZ^>jl<Fl?C?|
zZ%Scv3R^iUh1h5ywxsZI3YSO9Q!nMT5+U1D7#1myq_9JH^7iKs{-(?ZNjelMkEQT<
z3I|g-B&oYncqWBsQ+OhUCxx;*g{K9fK6?atDuqj`#zT)`FUQ)zi)+Z|Qg~Syo=;()
zATO|)1bH!qlTsq#OF|*Sl`|#0BGFe<@n@q0Df}aBuch#M3P(~nn!+2L2bvY|CGKzv
zZ>Dg3Xzp8V!6)L5+9s&}wq$=tASt8wWxkujckL1%u#J{yyeIhk0&}`%kbW$M4<+e%
z3f0;tJ`%|DmMyksGx|vipK`iz(aFVUDSV#7TMiC8IGMs19C{A=I5?HUmz>QUC=R|#
z;WQ^z2iXq3PT`vr{@~=C!nZ6jg<sfnQuscFGbx-+;inXS5IuinZ|Rv`Assg{LsLP1
zmZT}qXY$Y*iNB@d%S;>X&i-BK-P6iBLFguQT3R`u!UaxBPHg$Vg#J$o|EBP_;3Uo#
zne=+}UnymWP%<S;!-0T<OB|GUP(dhV93&j%3Z5g7d!Bg?@*NaPl%fh8yj!X>k+KfT
zIk@5U#c$I&6RT8oaH)f;4yrk*<e*4077L_fx5^HV<Y!~n#adT!u(($|lQUEoo*DwT
z{SgnArd<C!xXi&V4%#@V?Vyf>>m4+AaJhrJ4jMXW<lqViS30QYpuXfi?Z(Pn<skHO
zYDz&@GrNff4sv>3?6G%_Ds1eaiGyYiu9aL(9q@SDHG;RCr4XkO-b_cxaGireZQ`%D
zEm&CxH<z#pyvac;*22ubQKIc<DKn>nUMLy1_lYNp*33Ig;YR(f4sH{kyByr^psj;D
zB-&132Z8TBnbTg7XqNKzZv`C%e@tr8$-$itI<p_<C63Ng#`lfip1L^b>Y$sj^>ENr
zknU`hI(cJ;ROuyAvfV9+o{FpU)hwm2gL@n-qS_AnIk?w><{;_dJ_r3BjCC;1!Tk;f
zI2h(&xPyVLf=C$ZU~q{{2Sc3r_A3hHG~Q=eB4_r+Hsy`aBOHu$Fq(4YHiuD?CHB@;
zCSEfzjG+ymDq`w*2NP&{VVLOPK?jo^Op%O}1o9e)hO^^!?9`HSnSD$)iCoi8cQ8YU
zGaaa<sdQk-3A4Q@qdRaMxRPWzFdbM9Y>B2EJn~7_@KT+7{2jk6d+aj~A_u+$W400q
zG(RsQo^~+H!CVLP9L$z5$H7D7JQXhp85+J?xKaGO&UdiD0pIu*(!!<kIZKmg&unFh
zgQX6hbMU-_We%284F@|MtZ=Z>!FmT99ISG%+KG?St#z<Qw52nXNA|^w(mNX}q_5);
z=$zC1`r?faHaXbrU<=zKk$wK7_~`G2kFp+iu+_mf2iqn49Y4hj&U5RE>AbFFzHM_j
zXQzWl9qe)Nl!M0{JT9D1I@sml3BiB<KJLBU<!$TJiN(7elw9v}YFpW-g<-FQXB?1D
zHil;f;oEMl*#+^7jDr^(yz1b9gBK;~Wr6zz)=uFi2j7+2=N0Fo^KHsG=-@R6uM68D
z2V7H?$bUm9Z#p=5_Ttld?6Iu39lXP7!Nuh+jyO2#;6Dc$F5Y$Uo`W+EesJ)<gAW{h
z$%)#*F$W(y_?&~t!Epy4iOf$Od`tysjYso7;XE@Xm&Y>>Jy!JZY=xAnbCl26Mq}e1
z(tVEd1#{_nr)Z7kh2OrELA-o}#P~T19gUuL@Qs6S+3t@QeJya_-U8wc#SQ6qLit{x
zF-Q5)!C7{OD-yr6t%XR=UmX1WKWwD@D$(CKGk;iy(Q^*|aPX&t^Bk3f^Z#*h!NFgg
zZ12hWn>}idLWJS5IZF5CG4k{r<zELiYb)0_P%>R)xyW;o?;@M#daaN*jq-R5TwLO!
zjEi=w3idvbn{dIEQjWks=P0=@NX)#a3SohZLKj6YD!VA_g6HrnxbYwH`#UAdxhU^~
zt7S%;RKAq3qKiviR1yYWSjj*lVX=!UE~>i7{V9W#YA&j~sOds+F=9+MDK#Vu5lXA&
z;xZSt-S~-52Na}mfyAWZhZIuky12r{?JoGg*p)7>a?#SojV|iBai47BqN$7eF0OXb
zKq!p_HWb+Up?JP(Ecj@_8NJ5EbuO-V(agoQl5}miM0NR|OQgAr8-zHhTcU*vLT2H#
zMtBn|+cdH3T$x*3v~tntiUhwa-Rz<@@g2qdy41IA**21Q=0nP@E^aHunYS%1FVXfc
z?wgaB_g^fwgNu$XD)fnkU)3b*P8XeBoOSV&i@RLD_~S(v`(1Q((alBDh3=xeiykh9
z(~K^9y6ENNeis8=+|71z(a*)bF8a9W>*DCyta~V`bIyBbv;HrTNDAS7F8aG5o%o9B
zl?ey3vcf;a#bC+)fI#vvONpGJE{2uLETN2)N{x3h!Nn*Sqg{+~G1kR6m+sCgm*l1J
z5(P+^=wj_d%2XHATs-Jvl4R%oFOywN5uB;dNJ~wZsOmy<F~h}77at3q3^W%5DGWpm
z7p9AqE>^j)T-Yw=xtQ-F<-&0hxkw9}>mm@ubKz6lFN=7Bw0UtnZH7W8a{eJ@mW$aE
zeaMX;AAB@0%n?fe?v>}#XrIJWQ{B1B0v8K~zRblU7mHmiEtSK=nM(w}V{WYNs#oG^
zmSMRNSFri!Dm*T`+Qk|d+gXs%*Sgr~Vv|cZ_*n0v<S6xqQkgT)7H)R2#l=>kaEV2M
zeEWFVjn90}lY+LnxOHWLS-0#C7du_-aq*OkM_oMTVwa02*mHWuxn}ZiDbAk@<JAuT
zAAFMCtXs}*7yITaT`yEREux<0oZ#X)7tgzRMoN6v1;d|AEti9J1w2yD?E752z=Fgb
z{pR-yX0C~+(3f1i?BX<y+&J-yi&tHIL<!|`4!Af-19I%UIOOv08@%n}9T%^=c!T}w
zP}##S-juT55?FoS#kS^3fMS1sxA+JrmcC`rzg^}iP4sT@=Vgl;&r{xY@#J%5IQxAd
z^V^h;iR0`HweyaNkPijkGEX60ZJhYn#R;K&!j->^Z^PVAX+Sex<b1z9=X0T)bnyjw
z+7&YOlu(F#>EbKFovwL|e(mBLMnx3!o^kP=;NO>0cq7jbg7e~}A8CORI96TxnPqXx
z@^FoZUtRp>qN0aOJ^b$C9Oqjv?$3YF$ehMKWP3R8;)08RT>R_eFV1@>ix_5i$@`lP
z{ai+Gu@9Fh|GCKUV)vEIe(d{<O#XOvYh0s`&lkYMB_8rU6nHp&BBP9lgoj)Y^G@dG
zco-)VI1paT&p!E5MxIa@WfGYwp-?FHJf)oIR$gEQ57n;4;(5wm$zI7rWe>%YRODgu
zm^f6S4jyWIs3Y`h9%_1cYj8a8RrlhxQw<MSHi)B&hg!mOnZOhCl!|5Jid^oYu7@AG
z=hXM&N5d5!uJTZixg<&oA2fu!Zp;4nhHN5NduZUHp@&8u8hdC$1I~}TO(TJQ1hSKm
z(#*rP9tL^XaG>gS9<KM$&O>_-%{{d6a4T)qA#sC;mZDE<4>t<ZO5jZbt@+A`9yvLK
zaI+WxA4-`Fw@6YOf$Qcgw|S`4HRpB@ZK<|6nB~Ih!l{A|9y)sH>7kd0JA}EDhdVv2
zA5h38Q)i)c@z7O}y9B;DU+LzdyN4bU-8AjuJIgt#)SpKDQS5FH{XE?3p|^)VUc9F2
zE6n$>gDr?PY`H*Lc6n^@`#juVlC(hSFUa#f$`0@_(8Da@B+u);a|ScX!w?T!7ARvp
zjP)?o!!Y3=?qQ^dQ66}xY=l5&VIWR8nv?-KM;0jKJdF1+iCx0O1W9_(gYsMPM8V4}
zR6ZXYzbue4g>AP`ndV`-hpB>ZIaWZ*>?851l^MbxFAR=U)jT9UEDy0Fgzmxcpa(Dl
zm@L%8d>;#Z*d9_IuJ+NuhvUIzhxd`^!}H*KIOyS!hrr{@Ber?i?jiD!_OQgmQd+>n
zZ1ztnkwwq(FqebH!$Yj{Yw?Rf2`v0MbH0ZK!q$3WY~H>C7YSvt$A95tQ!k^c9@epO
zJ*<$VRUTFgvQpp}$@Ogaj5QwC3dI!46Hga!@UYRt!$RETVY47xJi0!vQtfEbGYb_u
z4RiLz!+fhGosf)=c-Z0LSr5;7*y-U>NqXADV;&y&u-n5P>hoX5E)P$5c+$hal8Zv}
z_vFyESBtE?r)bIF<7Zq6?C8aVaj(dE#>0_ealM|GDCeS=JnZxEf*1b`#XYnaJ?!^l
zgrDlFEK+t2EBmsCS3JBb{0BVn9htd!zW4eWvF5LNc-_O-9=`GL1~Ym%=HWw56dn$H
zIO^eDjuc)QAlZ+2ct?<4mt8z%%|9{U6ADFr;NksJyy+r^dvQGLc%0@E;wcXwbEtaw
z%){p%c8Q1fPdt1ose`w~1FF*^W!noGCpmV6$P0iLf0fG**-T>i(!*Dr6+H}JbdmCk
zR`{)l?>zj*3Eac?9?o!9XWnu-KX~|2g#7H`EJxPCte+%GCjdO+Ten?Y_g}o&^B5`o
z02I3yJDhdS!yg|0^N``=Pfq?G{$T@oxZvS04}Xh<*`=k|zP0kla@jGxom1Mnp)t(#
zk>%qOA7%VFn(YHVe*ZPr|E9MK7>G0ENNU1IzuOZfshbul`92DK)bLT$N1@M8A*kZx
zn?*`FVJ`A<$ERh=3tquTMIV>?@$;w>Ddlqb!!_}^KP*xz`*{DuxPryP{Kkz1RsDFU
zu9{CryNT*PGIL^UmtCwVBC{^(K5F?Gxvk=5K5F}@L%3ME+y?_W|G7}9%<_0$vA#><
zN*{#v1zzQ&o*<;`Z<1I!7+?0tXy~JnkEuSU`DpB;iH}}B?)K5t$2C6M`{>}KnU8CI
zwDxg}kL!F~@1rH_;$#20{N_Gx@G)w!(!vL~PkS#`2-hu+Tl^;0`tPbm?Q(~WE!WD&
z%|3Q7R@S{4Z_(r|QQG*p)yHi<ZufEZ5@pMg3JX51aOV<bUb`H9iPF}`;rZp;Np&_a
ziKTU9-F<ZN(bY#MA9wob?BgyUZ}qBh|HFxAmney)O0%WP>T_kLELGlKS+Sds?ml|>
z=;>qYHRbzP$cdIJA7<zO^=s9;b|qFURgPE6@9m?HkD)$>`RME89v}Dn7{FHcaj%d2
zeDwE`cp`CpsdB>~WwMqjdEIMPU8bDLsrJp8G6Q`KqIy1t&@#)Ee#?}{n^zy~<LJ5k
zXHH~j_455?vD&MbDZ_n?@G;iMI5rt=<zuvuF+NsrkNuAB5w`3WMZGg~jxAF*+*x6~
zk5w1SKj>qURDXhx?KNvm6!`0vHO>qFWFO_1D^rA_*>a`Za%DQ(>zy*Qef%~ke}>>Q
zeW*S(A4wlBCvzXV4}-J4kCYEn@>&9&<rhcjT0wOAHQ4d-;&SEWa>e%%_(=Ph<s%gS
z$j4(%3Nu&4sf4vxD6_X++{Gd?hmCT1g33JPW3Fg2PhhL#StKs>vB*c8AU@i$*vAqd
zkNDW(W2uj2KGv~+(y-b2%YCd7WQD+$0!d#b$ZB@W6$+zkOX<TUx`9>_%0@QgyVW=O
z*z9AAkB3F=ZR`pEKl0=Xg@LU=W=h-X<53@f`S_a^^zpcl_c%6v?DFx1k5_!W>f=dv
zV;|4^*ym%9kEeV*<KtP5{qblu3{U&mD@D*J3<JM0Jx88ZnLGr}QW)*}U5yufe0(y0
zzmJz_VPXDKbRaR7FbFUEpu;6HAMkOI#^hM=afn18ulsnzN3OWIp}(3r$1~m(2|LDt
zUVunpuD5->!+z-FUCt5}GD?__aO{jK81CiM|4d1sJ|Flv=Hpw=Ha<S|aooo#k@gWa
z^zo^W&nO`;<Aje-gifuNcgdy4o;rOieojr!WuEl$g^%o&3jOn3b#wl^H|2abryTtk
zed*&XcHqsKr+s|QS<y%3mCAK173x5TId#m~-OBeq&iMG1J(go(ec}fnXMOzS<42lT
zj>k+}R*}m8?Bf@zH!jxy4v|3S-+i3(ao)!TAAfL+=Vvke$&q-hOf0`|EWgn(Odke%
z7CPKK`yU_wa-t5P1o+QKMu7YP1pzVxWCchB_<B~2>;MSj`7=l0B>~Dvn7Z=f=paJJ
zR&34O0Q5ve&b%PjoZ1!!C>x+CK;;1Rn^Z19`2ZDyxO7^(Vt`A7xO-HRjP#yFFHfuv
z11(k@ph|#h0ex(tYJk_P<uD6>xmqaY)(GN?vn(2ur4z3e;IaTsIf4Sz4p1jRg8&T!
zTpplqfU5%36a8tiD*{|8*`KZ(8-$Le*h}jNxH>?Io3DpgDh%|J6!gh%6rf3fJ$iBD
z0H5l`HH~8841S;NW&y4Za6^EW0oVlB1-L#yb1HB??p-aUILaS449~BOkA>VA;HCgK
z2WTy&*BKUDwUyMJ4a9JZWMPfyI*g99ZVhl-fZGGK4KO6Y&;acMv=4A+fX)Frl**^)
zhmKSrz~P@VI|=dlN`)SYDf})L6rg8-UPA90pt~U5O7k)c*?LHn_}u||2e>!DeKg&v
zGS{BV?-QV}q~0U2Ux019E}luitQ!3T+#g_Iz|ZmEQ--2&N6r9tm^*S>uZp9C1H4Ft
zVpl2aRw*$~=g$E?Tcu14@L+)90Y(HE8DLa^(E-K;$Xl&6TCKD?mA|)F^|1k7-VrYp
z#|L=2X}NJh?AbVPdwEhOh(7IBE0Y3D4lq5y40e*NvQvaUEx=SkNEy0Xxq4Hag<+-;
z)d0b2rQNjHL5&u~UX+tU-?UmW16Tq63~*j3c7P25HnPXkCLI$_05^aazz?u8z}Ciz
zAV3&kL4d|h5>bG3fVlzAtX5_Pm`!b&{lmfotK(YFVH<rK>+r5bfA<RK1>ms(Qszrp
z71t;W11t)#IKYwsD>xE66fO<Guq?pxAl^*o1~U1HFc2aA+xm%B9Bu*Du%EbvEw3$D
z7ho-W=FWJj(`b!C%6fLuYYR@y%-j@UbAY!4yc1wcfQM<`0Ixh*w3W?DWdb}AV7n;8
zypIKVMDQH}c5)2LZ%~hxrt*{SbN6RI9^jH@@go1p0J{V13oxZ>f?*HaE5KffKE>hI
zDucvRtumeo@LVa+voz@%h4klza;92>8&HhCz&<0C{Q+JIz(cLvWN3S3&bD=huQ2<S
ziB|(02yigKAr8r=iMIm0#);zP!li4J*8|kZ%;o{qHv+s#)2)du|F}SM9v1!=1{53#
za5RWN)1MCTZh(8_mxM0@ycgj803QT6Mo#w903QZ89)Pa^Cuo1#p;l#vkJ&Wc6GUEL
z6YrLP!oe~khdgx7{5d6jSa>ps9V)WuFV-mY_&HDTQvtpV@IpQ1E6!<0s$QU0<#N6b
z@C_R=z;^+D3~*Mo+R-QXd-kFLKd>o#<S{g8lex^!Ch}8&p9B0Z@_!NdYk=RV+u{rs
zM98vAN<0_fj}nF@F|kayj0*w&3UFhHn?n2@;GY0BLntBsEp5}>5dR6D5h620R*38n
zIbpp03xSt}C?m**3K{es)As)2C?|VW=j?<KOFk;G)_EcFLllH43{f^jQHaVR53$74
zU4;-8LzE9uYb>r<8@JA-La!u{(Qd61+$rt!Z_Q$%R1HxrL>0l?uT{=H7muLo60H%U
zuSg(e%vz;Zh|5AAlEI%t@@t3SfuHL_wC|j#6XNm^bwgYcqH%~OA+8K@RfwxYGzd{I
zjJrYo5Z{ch(riWnafT7&<F;!Uq7jv!5kF-X_KqpmT4hu1MAH!0glHCm-q?82#<il%
z648XIJASKny_DNr;F7sH4erUjAw<hCetmnPD38|z?Odz03c+f24bd&c%^_NcxFtlJ
zT%~=84n(LA9RY>7EyV31j`zr`dpxUci1Q;7IYZ(%g?3Wtdux@Btk=O<!_Fb@2=Uum
zh4)`{3UOzM8QXGx`J%#~;@Ib|5M3lo&tCC%T=x(?LQD-YEkw@{y+Vu%F*?NEA$n8K
z5Q9SWp?O2xAI8^<-xH#rWWSFVlRYR3xi{o*PzBrz>Mu#8d@`g;xpm3_w)HxNyJ~|;
z4>3H%>`n1|+>j8v%^Jf(3=Q#6w|I6+nH4Pg+i?Unv2sST?WPo*%~5_XC>#@FY>2IM
zb0>uuC-NtRc;flErsKo-o96Bc852W1C^)ZgAcc_plO@*_fg}DXoK8E0n8Ol7%nYH1
za6-5tv=GS<b_k36KOq{fQ%otvD6I=A^o_$*BC)Fflj?==Lqs9cAp#m91apy-ft)20
z_@CM=R{VdGO6YTiXOX~pA?Azx1p*hAN??f;wK&9*5KD!VVwaT)FOjn{#42|32$dqN
z4&yyr&PbUN)=*U4#M%(+LaYz5A;g;@-U_iX#HJ9>hIlT-<`7##JR0J$5D%Bie}onb
zu`R^*5I<MRn)yx^*IIY2i(OFe2(dFn*I}R=Nv@o!%;O<;g?K8&(`*!x@FW|TY}MlR
zJVT3m*b{;hxLD=do<G%2YF&MAh-ZYE%PsPFZL^=3=>8Bdh1e(f3j)Wp|AZhck@j+k
zS3?{K@rtB!ZOIk>!4Rj5%Du+^Da1npZ+SoVo$>}7Xmw`aVW5-J-)<~-IK<l_J_+$@
zh<8F93Gsn2Q`@5<-V^*?fn2tgl=yyWU5<tLkOMHpM<G5Aae@<9UPehZ$y~xu6Wucm
zpN055#P=c2NZyknzM_U9z6fzD#FruHLz~M~t_F#)l&{0s-Rrj@z7ymdfm{TVSb}p!
z{X>W!L;S&UA?lqC@eAiGPPS|#q1?2+CIh97Xr}xY;`b2e!g%dXIV`K4U73Lb&xg3c
zxjjTigugiXhxmunz8H{s`R2kkFijUPLB)VH9qA<|&5Dp60TJk8y-b80K`x1~c~=H0
z3<;qW3e1g=CrG})0)gZqb6LU5l~T$_s8EVm6eL`y6h){UVOoUg5sD*JiEwR%>mpQ*
zaI#5)ORQ@mdf-R(2sI*bhPf<4?Fcm^9J(u^P^D>AcKlnZRun7Go0#fE^k<l;7omQH
ze?CiG9-(f8D<WJe4CJ{=5GFA&dUb>b5gJGFeAOi*lc8Y*`dDrxkPO6|NNQ7oWSjMO
z0kvwzTul<(VYog*^9Vg6^o-CV!r!+g+C}lY@rDR3BitDAT<E2(Bis_<Cc#??yjdW>
z=Q6d8;I}cCL~s2chT9{wjqrcW{0`MV0$~S%9R=PIp_3q_-x;BEDSlUkE~R)^LApig
zE{NJSgUr1m+#O*w8zMsQ2z?@qisEy0eIwi>RvI3mUxa%j3}!S!y|;7ki*SF00TKE~
z@e1KyuL|M7QrixS@O0^|g-h?u84}@mUe?eEt7K5~Ks%4P598eB#AAVBgk&5kaQFBs
z^_?m&u2aTJbh5y45ylHLA;N=#Occ0IzKTu~yz{bxvsDYH2tHLHC4V|RXGVmX5tgK}
zGz~R^#%VK+qBN2b^azI|ydA-aU`E&&VN(Pvf*oN&goP1O5u6BfM4B7Hix5VLBKQ%4
z2+ic?xS3tzT2z;>mgxwygn72WZ`Q?|ds*w1dh6ra?4byABg`w+Z9dye==}sPim*7s
z@(3%aZG@%5woG8=Ads07&i|WnxNq@FS~9}g2<tfK_rPk_qHpn<2*cMaU%VAh2#l_e
zupz?Kf8rUNVd*<HJG4tIUaxG9u!XG?VQ++oBW#WEScJzTY>Tix!p>6N9*MA{6#qWI
zGLPeSI#Kq~DE@L?>GF7yMwz=JJQ-nkgeQcv<Qj`=9WwSv^eKS{rD{9R7d#W;*$A&j
zI1u5v2+v2@AK|44`y#x+;VjHe^Do{IbaK7IJ?+E>h5yLE9N`s7<u#YwPCxWhybNGC
z7~!=DuS?P)fh{*EZ$x-g@VD59L*<?gvDuRwl#PPC6X8gNUn2Y(;b??+Bb<uxB`X!-
z{RkgL_&CA`lKn%0%zG?C;agR?RzEJ3{%^+%FoqKmK8^4h`~SG?Pb6ud6!AGHs|a5R
zWzb_4`Ms%RRe5Y%!B-JZNBAbfw-FenkgrQi`TDJ_?;?C3;l~JPBb=d-14T`T;D-n&
zHYmgyM)oiKN%(&*&Gp1(@oV6XT`K+-;r9q-(#T2UT!cR&WTugo#-9<+b0Xpd7~z8C
zTG0c4MR@tG!ZlOlPFrqL!M_pylOddujyu>d8<e?YDsw@#{mUXk4(jYQE=kK<fIw2F
z37v<{5^3b7QJ6;AG}aBz%}XO+gv63JDg}ZQ8F!)_f9~T)kaB617h;7pDyDI18XsMw
zG~TFm-Kd-&o*2DRS+G&5oJMgP-O}iuMwK+GrqLpe8`7wjM)fqVPNP8@HPWb=M%^^7
zNJB}ZmdLD=j{O;4mPT!c$(elJ=6`(L+@ms=r}5g8nL9ULTv1$^##L$5OXKjcc*Rmb
zjh0>W4#|gaMtRh>VH%CnxF(HeBKh>E1&z~al15XB@?IFO!@KW@TkzU6u1n*3q4UDW
zl0$B7o5uSp&C~Ij3LeL5nZ}K2v`eGCu-%kK>ojgjqm@K&7Dyv7OPe%qm1x^EZcF3#
zG%kDm;+pEHF#IC0;eDAMgze5WI;YVwjXTolB%$PUTg6SWw7Z0-tH3U49B-J}_N9wE
z()`fYBaNPEJebC$G<v0RcN#;}7?wuwH2S1*UmE?>IJ7ROZyNWc(JzgS-(EaTcW)Z}
zQI6l{rWM3{LHDOIAdSH+g%-<5@HUx&X$+!;MF%qQs;uFH4-rjB>2xx0cp4+p7@Nkp
zG)4-2bQ)vQ7$x}Rzsi)HKjaJbwm0IAI$r4I#}!XZgSS&nNW<Es^s5>xFh89+IgKf4
zxM_H4Oig228b%ss8q?F5!8tz-Esb=m0=~S=EY;y~w<-^dR>?GUj+D19&MMqdsfH?6
z8v8aWDT+N^WD8`}k-S7$sGmlV#+)=BN+V1oqWm;wu?L#jC4oE)v(u$sKFZ~A+9YLe
z8uQaw!12;7d!7i~JgQ)!Ad8rtrv9VScbk;q>vAe?jtgqCSy`6G@-z~&kUI-2(pZ_s
z|D)<Fpsgyt|6hFM-PezP)X)t|D$>&3NQe@m5+W#}2nYy@@=n})&b=ouihy)?cXxMp
z3(|t}-)CRmcm4ir&HAj*?AfztpQ+O`$1-p{1CuiF8~K@m4H@`71CukbAOj1@at5Yk
zU{(fZXJ9HdTn1*a{XZGW=5%UbHcotboA{Y5kLHE`=44<lRY-x@`5BnU@-S<TVWf9+
zw9)*c3@pyT$_%W^z>*9s&A{>utjNGJ)~8K;$ZWoPZ|bx9^Bgo@T2zf$omu+Y46KP*
zZtC3_zRDZBj-x|6`Zi`@QwH{AU~dLCXJAVP>OM-^nSrgWuszelwhXkMl%4Ws>4_aI
zoIhRsH9T$?^@?!Z?hN|k#hVx@?8~69&~cPTdIk<q)isMcn1MqXI80%>$bK*<Ew^55
zb(}lh>tm1j80pyQFi&LQWCm_#;1&%WF5+wk&e43u{0w8{e>BQ?J_8psaEXN%GQ1y|
zR~N$N3|z^;b?UAexXMY_7)k$im-zS@UgJ`r@iM`UqxXZiGjNAy?+iT4z}*boquC<^
zk1}wdb3Mqw!wmez{BPd+mVOYUM+#+T2zo~GI0H{;v{uSRuk|Bq*plUhvN6x8Dl+go
z15pzGq2b22Z?7`&lDbDluku^W5dUW2KQ?>5y;o^c*7RrzF_L#KcuNAkCWw_l0W29X
zLr|ckEE3`*Ok_?|T$U1X39LX#X%Z5dCuK^KnWQkLO0X`!=^I&DQv6k}91?O$*b%_a
z0CLgd&k`=ExTqpsLLLbz3Q`s1m5@(DHW}Gv^jCA{moP!XFA@q!5E2SXC?uhygbyVY
zmQX}OH3{!aC@P_tgz^&JmQY+m2??dS&_CGolFUmn9%M-w31vB2PQv9GB7$^K@3644
zgenp$NT|rsN)kwcQYnyfRp#$8zRUPG+l=T`mrz4Oa|taZ)Ra(5LVXDhB-EBrM?zf*
zAN>Cr$wDN1Jti?TMMDXVBs6>))l5QT2~AkPDP#F0UyhlAkklgnkXlO#tt7N#h1L?<
zNNCHP6zcIJU3AEF?9FD1_7Z;Jj2&2kcqa*+C44DifP^j*x=QFpNfJKFwD5_9ZW5@_
zk6A*5%yyU1gQMgXIp0%)%5vhpC43>FkA%-8e9k)LPo##4^p((`h5e}Sah3>@ov$Pe
zlrU1lC<%ikd@W&^gl{E$!}^0I43R($L8V8kV)9HeR03h79=?<Cy@V00FkHf7mXjvg
zC#1vwfs=k@94%o?W)fu|%R)MYaT3Ner~3Ix!p~e?RBseWjaIJyRYFigh(?6ut$m##
zL6RU#pw+GYEK!)NjHK}SC<IupG3tz@Oi6|WQ^H{hM`)x-uq7;!uvCIWlfQ&%68@AB
zmN1F^nIhpg3BNP{gN~Z|RpaQ>dy>0ljor$=)qRzN9#pQmlRTBGksE!wgc%a%OIRRb
zri57%=Fwm=QfEt;BVjI^+Ewn&Tb`1Y#gMt)!#bM7={lCw7P7)(&a#MHjmu6#QkYyd
zcA13b61GX$E@6d)l@hj4MQu!7C1JIM^%6EvYSq{^64pvsM}2sI?tL>woBY0)GX(`Q
zvQfe&37g5oNlCG@JPCbQPe>O7!;8j`8=tt9hVzhU|FGB{5_U>B$j*?$E(v=i?3J*a
zCG|Nk&5-+O29t0=LU)#s=6EKT+jz6zA<29EOS9-v3CAQnq)sd0xP%iDu1UBq;iQC9
z63$6D&t^|cI3wXK^Dov!-xqJjehoYNf`p3_u5c1PBf3O=o4LuwO=^&~W|p{0vrr-L
zpdxrf!hP1cDdCoc+Y;_bxGUiv3&n?t?GC^BXGCd~c#!S<#YqnssZPH7GS?#sk0nIQ
zh>`I`!cz(Vaq2S(&n3K+@JjM7-CxlBAIaMyj+Pgzxht7|awkvzrJ+P$LYDKcS83e|
z!q*a_Wbe2>>Fk{oV`V@_f{a8NZ^_6aBTj}-#_T4sbahQ3vIquYJm;b;f6o$0%u{8g
z$w-!wLX-Av@4zXnd6p}ZD{H2HpU;zX$jB*Ug^ZOla>>Xo(=t|QBqLo$9vN@Tct=KF
z8Tn+|+Z{z^<mbGF84Jh|G74r|yD}iQ5cAX&?=16tKrBg$$tW(Pw2U$`O2{b53Z)n$
z3jfnA%ffOp%FCdnh@42?G3jKdf{cnXYRRZAqmqouGOEdVpR-hv@ve;bWK<<r$9R|7
zk?fR<`1Zm%tIOWcRy%5YRb7L5O-726oUo3JVzqpiP9~L{E$YhnKt?^bTwg}N*`fjS
z7PG~^>B;n<yRnQWGQN>9ScW`XG?md=Mi&{)WHe_<3mL6tv|-+ou@xgdv2QD*9r@WO
zwj)d0v*ixV$J9x7xTQXn(Md+#QSr3!*FlzamGO~`zT}LIZZbZW(Tg(5_(Vo`89im3
zY#!T#P0^ZoI}sZ<$7^vC(kgAeS^k-f&za2Kl%4~zU&vT^Ev^sM=NvJJm6w#vJ${bp
zFXJm217#5Zl5qg_w?C38N@jnl;Tt65d=uZ-GHxa3r0A4-xrWFXD#MoH$QUN$TN%H|
z_*KStGKS0aix$Sn_+G{c@|O0pkTH@{%lfL-kENwBX3i1Be~@vsl=nek1jkajGJcZr
zql|Gf$T3Qy(6Wl4@Ux5wd?3V0ShkSwN}O+^j0_n88JY}<Dw7rbbc|<X6y_?mZ~a{4
zdE*Mnr{)N%77DtIpbS%n#X2DwPv;1OF;XH$Nl3iKAe<NkS4LRIOc}FeOp@`NjA_*I
z>U(|ccNvpq{6P)Z-_xJMxu()+`op^*Kh?{-5zanW{3&C)j2WCtZ*YukUWd#(GikPr
zIWiWI!!qW|m?vXC>(HOJZK7kdb@Ga!+9O;fV=>i<jHRqVjq<<sv77x{V3~~NEZ^~|
zHvsF+6{}>dmT_0cJsE3ctd((C#t|9oWUQC5Q^qbC8)R&hF>zR~9Wpk_7%<nX*v&Gw
z7ES2=Pp&OQC_CL*q{eNNv0cWac}b(^itt=PgmN`{ki475bp;<i%-qkV?_u1_xR3GE
z7I`T3fQ*CGTblR|G17+?#E;52CgZw{8#0c|I3eS-j5D0;q>NKc9`M@5b$8?>LU@)s
zp^OVM&XF^hVknUOqKr#2uE@AbV`oRs!*j)D&g=F}s&zDOKJR`@$90W``%0(Wq&_U;
z{#-$SS6%BA_kNqGvn_nLWf0z>*{`kFaQ9{WMH8=rI0X-6JmkDF3jU^YY5p-%U&(k(
zlfR4?GWG_2Pg&tPb^C7V&zKjE_Rb^P_t8=F#6K*d=t~+M1-%<m>I47E_)o@b8Bq#~
z&lAy#_iB#<aSB9Yl{aTPFnLQsr%&HVd<v2jB(pqTL4txh?<6HEZ~lX$<(Iq76M@g-
z`{~Jx>B~<ASt&`ud<EGuZN94@yMi1Faw^EBprV3G3UVt*S5QXretgSA7yqnWLP0(S
z`4#W=dQk-h6bJ={6<pnzR8Ya_d7=>Gm>x;Q>Cgy^D3~=*5V<r@6r-c#y!k3cN8X8(
zPD!?0im|kU==t7S93(HRpn1Qzatg{Tcw50c9Ie1esgy*4NM*(Qr>uArAMMXrML|^s
zbaoT-#jQojl~-hYPeC;W?<=UTpr?Xf3Th~*si1{|mI`XoQ6EVDKtVkPwW;0|)MYoa
ze4LBq8+j9i`U)CQjpg+<W#xtn8naF#MpC1-cbYJ#R~~idi)O6coRMzjC?h%9N<mu%
z?G&_T%{GjK%Xlr=UO@*1T@-Xx&{4tE!AYGt^+Rf6CQZhqCr<IM04dO<{gFcNCh)_2
z(VbI2R`3Z&J%#yV?tDQ>6ne1GdxoQ+w}J@@eo^q5g3lEURWMA!7Yh0)_)@_D#T(as
z74&0+w5AIE*0FQG=&xXU_ngCLC4Qw~pn|Uze4}8Hf^naCgM!}nj`=iamnk`j59W+R
z7-xNyczM3p^xrD@PQfU0L&0!r6iywf(4N2EbT@*d&sdY9#@ErK6^v0ZUcpZa#wz%c
z3R1ASsyE%8Zz24>yc(e2qHp}_&1pY#_HJ!r>9a0cC-YYY6BYcX;CBTX3M2(4^;-q9
z0!4wQKxchbfnPyDp$qtQdbmx$OOPqrUXw0XgRBrzU?`wy<ppB*Jns^sG%q!2D{vIJ
z3c{>L&+cetR7#zsU`KDS5$jD(E|cy(51Fjs57wE*IEBihYNTdWFpa9BfHx1+ds*Pv
z#JCx(aHD_BOa&uL`%d#J>#w_dhdEop90hY(p=z)6b_>MF1!94Mg$m9nIICchg2f8<
zD%huBiGrmHHqmH3m}ME`Y6WW)EN4!_6$(}=7|}M4_$uoB?c>_h-`xkZtW~g{b=EO{
zQZI^x6gDW>n3?zR@c7LNws3SS<1Pi;m~5wGS7;CS_?-$UP)6c}yP3}(5xa-{PmRlH
z9=o3pgpTXDf&&T;a`cdbqnYx<OpY+pEz&V2)OD#Jo?w2G@f71}MzThl=M<c$UajJD
z6&Dm-R8UMsaTS*oTviaP0xGW1?4;naf+q^DDY&lSj)J=iZct4wNxsF_ZZgs-jLhDq
zCR-rr^DV-AG`Dcl-;96J{IB34)%*hSUJ-9xAIar)p|cCbBgK0pOP6Z&KlM`u&lLQt
z;6DY=6}(XJkAjy(7I<rDq%HJD2ZfLK#k``aX`yJ{DW%o(Y_AnWsfbp+?nJ-!O=$0p
zGCFa@u%rd&dP_wX6**MoR1v4bry^BFnu>T82`Z9VGm$Y#h4PVa>54e|4u|XvUMNyn
zZY>nl0Z5Wn_5Ll&#zOj=gCyCRFF%%)OGR!K1v#3oB9DsvDhjB`%aVMIYuKN9VXwvn
zIl~LB6gcm7?~@BfAr*yH6j4Dd?~$aaih5nVLMhM^^d(f3R8e0=0~MuIlvYty#k(rX
zs3@x<W|64GMU+$Vwu*O{muIAP%qlRcsDj?beA?Qp$$JZh)6`d4MHLl2Loty+YskE(
zqMC|YtpC1>>MClesHuAE%+Plck?(IQ`}!K*bVO^s)K*bPMO_sikhh$R<`(*gj#96`
zPNp}T_p>E6RMAMqhblU$Xsn`%iq<OHsAx(xwn#Kr(SkEJV<bsSDsho$l^I?3c2f66
zp3iMnv{TWM<rHnNV#FfRfulqykT4SMtfGsGPgHd0)UGPJsrZ=rM=D;<cym>}oi9{Y
zE)qTHsU2lk(VJ>RMK2YP)89NvAUQp#C(FJ0SLH8M^ieTQ#h+A}D*CCIs3Jq9Cwur(
z#c&nhb14H<3{vqm^RHA4WRh>Oi2E=1H!23J_?9I@R18%yjJo30n5v6C|39wcb-d2+
zC(&|MM7~p@EzEXfancACBUOx1F;>MW&P%C3FzLQnj8;KAN{}R<oBpGUaVmaRF+s)n
zOwFH|obTsdOK*9WwEa=uUsPJdC;nFz#J^oE7W0!6NrkM!Qeo3TP@!_JkP5$w0C}Q9
zS5dh~ES>o1kqbRz`FbFN<UB7QO^dgXaU-)tlS$4ic^nn4ir-ZHt|H9BNsPh8;&Fcr
z<`V&BoUGyx6;o6^8w~G9B)@m2m^ctqRm|g>nXY1nij68ZshFu^mWstHmawVWq@!X!
z^EoQY-Hx5BVjbsNz`{i;I;VQ)#DyvjbkFt8-du|}c!PJTie)NRt5~CAIct(|C6g5@
zZY&l_OT;Q_Q{HljPH=0<tcne+K*IGZ_U`cf^qvgN&q?pm$n(uAwooZ54yxFyVw;NH
zD)vx4b1rR(*vVvvib_kw=Su{=nAoLa)e^7vDD36b{VMj+0iI1JvxJ?p#!^9tR2)`u
zLd8iHM^qeDag3EI*QlZ1lKZs!J@MnzyT-;*l=vwXr&aoS+?!7Z)6~u6oQm_*2`71H
z>as7rOA!i=oqUNVH}b@f)qY%2ah3YO#oQnJaZSZ_n%Vp)<i`yaH);O#dj@Z*xUJ$X
zKeG67N5x$>9^=P7758bBsd%O0FBK1HG^u!^;-QLfp2hvmYP4u4aSD&<T(d+FDX-$G
zisvd`sK~lhJY%&%b&_cMqUb*~o$^LMweKbUtKvVJ^Zht}$D3zfvu2bZ_q%ybTs5Ds
ze{YY}{L;HBi1h=0&_yO~Khf>e_&7g&6zv~Zfp&<vkTc#-zj((b`9VB^F_Don4u2J&
z>_>_pL<WzJCQS3A`mCg^eq{3_yB|6Hpk=u7`H_=rBi)Y&A7;<RJU8QiPrXkX^7ui&
zZ0Gf(@=~vf>1$`om7nt#U=)5lK9Qwn6<=XLiuh62j}1+HMcG1Sa@CJweiZkkgdeSz
zit>K%3!;*Kl=7oAW&9<&te@6KNG!wppN6~&p>+kz`9Tj%t~~ReaK7!wJAT?K(Q7i=
zL8GD{mHha&UHWHB#RPV#s^9yC{5?Oa`SC7u`nrZB6yEovHcP7eQNxd#%t>C$kFP8F
z!i_vNQm*rVa(&=OJwNLE(ZG-Pesu7op&vAdxA5~W0Dd&~qX|3H%#YZ%aZQ<5So~(+
z)#e<HJCoFsj+eUJ_h{`$8$a5zyy>Bw6s16<o!@&H()pLfj#Tq4;=1_J)sGLEck-h%
z70o+E64FP%AF-Tjphmx#Zp<kQC4J&YcRzag(bJCsethNk`g|`xTC_{}bYv{?PyOia
z$7g<g?xzP<>HYl(-%R?#Pm36!uOG9PdJkdxaV|1Wbv`+N%9pG|Y7?_Z5A<V@A0a;s
zsxd#l@nfPN8Ga1*V~8K4{TSoNP(OzGF~X0L)GmI|vNps0_}-82IMBrpEo(!e>xCHN
zluBU~HM-w>O;0+JMQ=zr){h_k_{oo-{TRoo;~6Q5G$YCrSn>;19T)V!yj4XMDM)mT
zerT+t_@VmY&$JLJh%mqsA`zRqAHhscLeme+k3apGPCd{M$B#*V{KigFs>_<;Obb-{
z?|w}7V=7Dj$h0$s^&@Umu4(LQBs#;7nSLzxV+mD0$!WCuv4Atq@ni1)sSPqdk9z)O
zuj<Ivg^}ZBr0D<ZWGQt{KbB`!^$IpcsVg%j5#=?0to5T?03Qdi&QFU)ATfZX05;Hg
z^y6PY{_|s#ADjKSN)x6ZTm0DS$6i17QJ*}KWgFv8#_fzd=qL^(QWAw-EZObH9wsFD
z?P1)0KMweD){k?39Q5OmAIE6Mqd}CZbA(C6$Wi9B8r}&%PBK5u*g9JjSv$piN(bK=
zKO&k9<v5a`XZa;RE-)d<MLLS5BBzpcnI%^k$FGi~Qm!-qi^dL}1^l?_$1Oi@v+zFS
z9h&)>+-0OKMaUo(N=Si@_aW6SO@^FGl1F|#W&W7)Nv8bu^f)@kXMS33!>hWf3vx#+
z{KL_ge!OCGs*QIDbnEomkGBHI5<pbIyPu*E9Y9Pbj|~9KuPpVJBaX|I#|Plc<bE}Y
zk`g#d!sGx_0;mu`#Q;(RNDH7y07V1H8t|sj^Z@b%kd1lv0CEJ7lX<QHatFLsQ%I-f
zw8UmveH2KTH-LPsKwqHcXF>{v0w};-1W=HPJuQ&}B^3^M-`KBy$Fox`;C;7NCV;X5
z6lb*(0hA1&6!VqmV@e0`FVEqd`+B~WV|jVbMbS^n#JtTC;_n17<y_1U%W_u=pmG2W
z185XLl>lhhjG6(|3ZQBL?*{N*rvCc@RAc^2WA93dLiGTqy@;w2zz<c$qEB+w4xkPz
z)FX%MB%c`MIZ!u%4_MfIuy-9>Khs(RCiL*OaR9X4O!EL*1kfaarU5kLBwF(5RZg_-
z;~AmQGJv)Lv<skB0NZ&PqSma|hB0omXS{s?9RldclH~=(hfF#L&?SIQnL>I#+%<q+
zv|ik@sE;BFt&(3n@UH(q37~rbLjxGb?cO7R&jR>7fS#GXq8I6B^4?7Py^~B`?u&re
zEe8kChe_W6`Z4JrpcO?hkolL40|GD)d7YoaAeMX`0R0n0(Qi0PKSt5*5=Dn_l=h1K
zHh|MJlYb3hVgTO-Fg$?o*==(8#{fnIXmQ1)kpYaNRtR{Tn~Vvd%`!2X`OL0yBpDk(
zcxW<_!?Tjcao+I({KVwv00t}*6POpN?fZqJBq8G&0W>~ezz)C(K%!dxDwiC95`Y?j
zpY@FZ0s&|N1Os@xoOc7Ovz+b$RkjccAfb9PeJs>wXuKJK6~Ofo(RW5fPl)!=C9eWl
z6~O8MCI#?Y01E<G7{KoVOb%dn0CNKPgSuz{(*u|hz*OpNZ2!*y_8st^5vBa)wc2Cm
zNAKtU<Ad0l0n8$0E<KVoH-LGZYd%|8RUu~D2i~P11yWuVz~TUw2C$6EV)+s(jtSv%
z&bT6gl}sXX%1(j!8Wygn2|s|f%*p0DCgcq9jR9;9U<(`Elxcr!0Nbbovs%Q?d@e4M
zaaRDl1Nb?J2|?@$U@wgY9nE#@3t&I>Hw}3-Z#WzX;GY0q25>NdLjfEP;0V=i05@ou
z2XKsf$jY4OxQOG7rx{NKa58{XG;g#>xmYw|oA8DVg);%1B_qoOt)W!#&$#o{?c2m%
z2;gD>zqayS3gB`8S7>;)OQ7gg7G7iARLMsYLQ1+Bz^wr82k;j)=*gtpGz|_)r<H7p
z-wEI@Rnd{G_t*`RJXj`Z9kvGnJPY8#jyw+o_?tTU;e<y4JPF`w0FOCJzLBsqzx0Wa
z=K+i@=A-W+U(iHxK1<4S@hafGLGx*d*YGd(d|rL=zX0t)i72kCXpPpr0hq@yepSlr
z0B<pmW6YwV&~ibaJ=4`%wdEo~L!ySPns*IMnx8Efw0=vHhGflK$b~|RhSW@+#$?+2
zDcM+`vSingLqkrE=3>mPA@X%Py`cHEbyQvr`852b;b#r`HPmmO*iJ)x4Fxm^4F$;=
z4V5%h)=*eO5e@IKlSLUzXeg<n81v$c)^cyOmeNpKLz|xI<yaUVh%y?=YF_1#kOJwH
z*YLLHEw>wqMz8|wSJb>u2T7-jhN>DGXlTgtcQw4Pp*r*T7^^Y%K3t%NhMF4cYWP4y
zEf&_+P)Eap<>J(G5xYW^Um-fJ5Mx(}dYoEc!={a1mz%S~bNJW_(MUsM4J|aZ)X+pj
z?Z$BwnlWk0m~B{kb0(Kp2uf<DVOx{rHX2%M_^y5|Aw|g)g|=J-MLTHT>IB_2^w7|e
zg&%6@q@go4XyIHRX?VFKxeN2I8k+aPmbvjH@225n7XDQy_7e^Fwk4DB<qFYLLoW@(
zG<-{@H1yWcU&EIgKGX2IhV?n(`Y`rLiX#3671S=8LSGI2{*Rm_12lZ4;TsKuH4NmW
zK^nf+p!W2P3>z37!HAt98iuk?s};$6tHe^O#ILBn(=dvfNyBgr-*Z_bG>l|T%6_eN
zbi~eR4P!KnXZctSKWZ4qoZKKa3K2q<BV>YxUo<SCj;i5T4HGrY(lA>Ctv{ck!O&o8
zkf_^eP{?6w?(gG*8vGgp%ylCCXQ-xu{>`M+S@+@zf9M}W7|Ik{8f*<yHB8e`p?!j*
z;dc#_HMknWESaR?Hzt&NA(W2-5ek23n35@<W=2ghqe%ECOJ-!sr!%3XnVH1vW*X*d
zSfpXGhIusNRth@(l}}8epHJsg(d`lzFfL@QUN*YS_N2vya+Y6^RBNSJreV2;=NevU
zSfOF1hQk_;Xjr9TwT7+K@ieUA-nBu)Mh$B<tRp$^x453=<iH=iRO}{>ZqcwgQ{H!_
zh<v}aUBeC*?$@wW!!8YbGj(=r*pta8tQ50XdP8O(OSZ2R&sT~A8V+*w5Mu{k)ie7l
zaa6-G4L3C0)NowG2@U6H63}o`!zm4CGz=Mm)0~AKA}L>ZL%vHj-`PwFMK5T$sNu4P
zD`cv@_nfohDshR1cIG>#s~WCpxXxMHtP=Ytq|bWgJ!BxfrQx=QhZ_FYaEBG{X}GW9
zE|t4VMAS(0FHU-(A-Kvrt{sezNcd^O6Ae!_Jl1fUg+)7y*Q-R))n0hUxrz-*_=iTZ
zhN3!(>3BucKF!QJQgr;M;kAZ19X=gVI-+&&=%Ay;>6pUtNijNNbr7K!Qq}o|{#!b-
z=-5*<XDQy6rRHi8&sh=~6Bx<D>K)#5vm}oG)gUERN1BejI`Zkrsw10@oH}ypw5k|-
ztrj_SZvzYeYVWuxN|;-xCCfce@-Wh8t`z7Nk|Zlui~KAssH2dM0y>0_d#i<5<Au>}
zz1gy`jv}mcte`j7b=&5x09IT_2_5h0sHUT&j#4@*=%}cpw2m@5%IPStW8y%s(6XF2
z@{0t0GyJv=dZhmjWxtV={y-rGB7~K6RMAmYM}xOxE9+>OBjs>Iub`2%=Q3M}Ea&^a
zj_Nw<>i9s%vQ5b~bkyQh;x(CUxRhL5M;+#FH_>dOcOg_yM|~ZQbTnpp106qqg@(-2
z*XC?n$2-hNBcmIw5lwV7WqGe>zJ#^$jqCVY=xC{<au8L5Xr+6X*%>-5%ZAoE+URJj
zqn(byy0<D$d(QZYj_x`-=;%nwIy&j-rh98LcjnZtIzC<_x-hTT(mQ+#A93`XHQtiT
zAG0#;GtxsxPaR+C7(mU+3Sa2xLqtb!9s7MzpXvBqhjBUgg=<;Lj`U0s_GL}t{dAm8
zd~=u7pM|9P6_c+y*FYVEbkI^fl<KSf=8E(i9TX+aAv%WY7^dS}o%Tn@I33^V7*6^+
zM(g-Kvy_oKeqAF*FjAqTGUX&3qhqX&|4B%P0_lv`@e}n89XI;M{H$YwPS@Vv!w_2c
zl3p_YLZ);OkDZ<T@B<&cbfDi!h|4+@>g_>f3qsZ5*Rey#P8|UqnvS_T=IPLN1a(Z+
zF-=E^j)E-f_)UkY!{VaDI&2+|4mZ=!`5h7{kXM9r*9dyW_NrUb@0qE8=$Oo$grq}Z
z3P-oC5r68K&U}_m%kg=8KF;Lm!!zEnqWxA5ypEd9k~xgD_lj4Fjs-ea>sX^>p^inm
z_qoL~R#?oqM91|t-k7DZlqE666PD{(p+h!fSL#?55v~<#4<9X={=AfLt&Vj%w&>WZ
zV?C#CpbBKt^h<2gv6=blE8ajTRna%I^P66`O~-cf<eB%Smboc;@S1GIcj?%z<1S4C
zG%xActK%|f-$z|e$4MQhbR5ueP{$D+M|B+1-#l|W%%-RvDSSOX&oLdxb)29qGvmsx
z6(k{~f{2jhw2m`6&g;0K<E)NzI=<#qQs}f+kOGm5TrQDIOsX{Vy&M&1t`%3P(sW#-
ziqdgY$1Q5#wc-Zrq|n!2Z09yd?=aFq&0H(!WiFYzuj4P8rFFd4@j%Bz9Zz*UqeGx^
zS}^4ijbfUje}B`~Pjt`@GL&oWT0wh-JlF9;$4i><*(|+j{fB1wVX-tJy!CtfzjT+x
zoAc7@{d?Gls34+)hz}wmh?pQ^gLo^5EJ4p8g0!H7cV43%Lg|8^NL&y;P9lDrv)j$n
z6N5+!A|;5_Ad)$?#DS=Byt~<hyy=nkW(m`RpiNQf>!9pG<Org#6JH{ToI&IYB0Y#a
zL1bMga&z`)&3v@a3k|otLF5af7z^_UQ6PxIL5QC5^zoz!qF@k(f{1)wN&eK#{J^qE
z5Jmrgd2zN7(JUE6sUS)RQ6`8A>;`#KHi+^;yiNXy*mA7Ap;|O?N}}*i5EPB@ia}J$
zRG>nu2JvnXy+{(odqHp2>sCRu4x(BR?*~zx$|@on2GJ;p8bQ<yqE-;KgWlgv^@FGr
z#GF}iACTtg<hsmhA#sw_Bgb0%h`h5-Gzg-9(G=3BsitudO@e41M2jG94UMDQkfuR2
z3wp0|&U}?vyJ+r&hRHN9(a+Z{gZO-SEKNt0+9rs$L3k@v507aV^d_+ngXqME(4Mga
zH3wol(ycVluANy(ht`cr7sjqZZ&Q+wBKl8!9|!SC5ZyC1dot<4*l?XVrtmx8pm%>U
zEQoJ|_>5ZWqqxt5_#%itROhTYIEa39bkuG7`UVE^B@4fzzLb)40P}()-t_PRFQNto
z@il9H69g^$Ozu&xv@G63zac>kW&Q0{le3hI{*L(%L5yZHobmf0Mlc!4NV!G@F>bLp
z*2ZK?#sx7plmAE!m$~Z2cozOdbspnQLB9m?EA@5*sRkwnkr7125GsWr1tACVGKg0}
zC^Y#8u_=hnLHL6R1YrhY1@Y7Q7%hk%>%4Vf^dN#kJnbVwY=7(VWa0)(s{H^v2#2~v
z5OafYg9rz4|4h;hYQ7+T3u0=JJ~#FL)BHV%KY}RRO-v4Y?{SC_PGJfC$Vt&@LHrp6
zrA`lG%sO$vNs6eEwV7;lRuHp;nASh0dt%N$<C5nEF+YeEL97g70Xw!Rh{ZuHWR5mo
z%`XXJX%NeTSRO>n%yT!9XRY6y$4PBf5UYb&7sPtbxF(3T|Hnea&IXojWF)h%T1QbJ
zvV|J7iSKZb7MjM^AhrduorZG|JA>H8%68valj@MqKD&eT0VMXZd=DetGPK^8w4a9I
zzNCYU2ZGqRPEeG>p&+hpOePZgJ^5%5-)D_$+a>xK4Wb}U1VO?ZLEL0=GKf=5PBWef
z;%pG-f;i97t3g~~a)t3C<0VG2d6@=Xm*}6Gc!8o6u2JhZiN4Nqir!*PD(>$fZfEj4
zLEL42FH>?qh`%!V111j{$<(7v`Qsp-Fn`MUEK~lR$qUARxLhjk-ykjA3SS8EA-oQP
zYBDb5P4!VB(6^e=%wrg1LjaSvLde48OlF-&h}AbXA%w(`w;yH65RyVj4k1qnd09Cn
zgzO<~_{*0XLRtt9)(QIiAlG`4H3Y(JjE776a)fZ><D{Gv4Iy_3(?`aqhtPbO_rDm;
zfwU|D`Iaw)>gz?(5URfI%O6645JU(CLns`=KWDv5{eFMO(wDA<xZJ_5<BEjvOEurl
z)5)FJi;p^_7Yl)~IAaOcp=hZPc2@MJm(n4W388EV<w7VQ!aE_9sNr?3>IY-q4&h#5
z?^BkCUnNywIVBBRFDi#nC4?Phfm{mV-4NP`&>@8PLZ}u(gAf{q@IDvxK?w9RqIw85
zLZ}%+s9j?15bA_bi&LMBeKTI@Jw;uXY-!+~Wb1{zw-`j~vyfhkMBa=v3ZZcbO*pkh
z2rWb28<VCXG-EZ=Z_ecC>)a9jRw1-zNgKv?jBOcr_Vw&jxgA6JFoa)2m>5E*5ITqO
zbqL>t&?SVfA@mO6GpaW#=rep0LiZ55arU8&qCXD7Uhh>@5308+$vs2p#Ys~Kc`GE)
z>6^l*A*^Se&qK8ME&7M>We9y(E#+JErLMvoXZK?XT{w}o0nCXEWb#!AhbP6;e(Qrc
z`eePhH#>Q72tz{nA%xK(3=Lse2;YS;oFx1g=eMl+zyCD94`F1c%@NczPx9v7AV!5S
zr*te$!qt~~>j91l;V0G^8^VtvjAK4&MeKMcbvB3^y?l9k<oY>;3DnPj^4=~{_$35u
zL^@qYX3*qM2C0@pkV8<YW<qc{ugVw-!5=~(1dXG52*D6O-r&`q#7JbqrZ^)6lWeli
znzAu-IEj|*c0&k<Fg1i}AxsM4w-Ekd9dR=0_YfvCKb&dj`35m1gth!TK#j$@|D-V$
z!c5koQf7oucmA7RN6Qh+3Sl-U<=UR3*|K=Li<uX~eCo6ztO;R32n$149>R(c7Sa4b
zqnK7<3VBxoOF~%68B;fUM^TZHJ{2H^l{7T2dcA8^2;*0H_iL#)V<uJctqoxvXW2x(
zg2{#uHc|`nJ2LvPmNe-*7Q)RTYzg5lH)d-H+d|k*jjP36*_?$wpiL-}Lilu|Z&wJr
zLwFMMzK+-v!rl-qIE-5%><eLk2<Jn%5W)c}B{l9i<G~OPF*zK<Q6`jhgh}-DoX0XH
zdlto=2;n40Pla%n$>|WzFiCn#+@(L$Q{&D>^y#Qmz39adu0|xOahF24%=`*t*JH_~
za4j?SI+GiWKXdlm%>QD%6T)34_ZTVTeH!u)(}_G_$-@x-4x!ZEJdYSjPW&+^5qTQI
zvk;z#@Pa1EO=5Tn-#;O|3?bG447{RV`Yh_;M)5j?e<=%X1j#s)+m7T>2BHnb7~Ynt
z6g{{z?#@Q>mVqpWr<`OU&VbKAB1hvH6BsEKn*;?S)hk3tl9CNXQqv4%HE_?seFNDH
zWH(UBKxG4)R%g#)AfJKHIAcyWm5VVqW4eJnO!6`|XSMtW3K$Ru3K}SH;B5oHR7&48
zFjpaiR(?hi14Rv#GrU!RiWw+wptON921>Ank_JjKITM@vd$vXn6Dez8$tH2{Ma=40
z?}G5`CPC!CO=4X!-#Z5KZx*!Q_p2tp3I;0Dv9yVbgenHA8u;G82m|jLc+Ws*16>UI
zI|J_<XkwtL0owhlIyqzD0|PY-)HG0Qv#4dj+$?Gv=($<k`ZBH#yELekuX^|NdIstn
zXl$UNfd(ume;P3%$%@Th4O1Xafk-n0%?)%g(9u8(11$}-HPDWeTCsi`1FbXdM6yTh
zw9k}BQX|$r<Sd<7pOi`1)xbvv1{xS-pqqh@sj&=vZr~Hv=|P8JpgTJg(eD*;%s}r<
zVMHFmFAVfC@MWeyeGOVJ8~xc6QlP^jXQ)uZ0S3PMKXMX&ZQ$}|G0Z^89?9Pr7;Jb8
zD-AL5FK0v}-%#r0jl44mo!q}Aw>zYNXJ9xJ;`DZPq=8WeRvTDj;0FVv4NNxhhk-E$
z#u^A1&<y-&V4Q(p>B63!9MAZ(fu9W29-W)Q*wMKsP?uwQi7kRc<1He?fMh^1ppub{
zXqi(djz<42-a+}v`Jz4wbd&XSOYa$uZXjsDG2j{q88BGire0ydGQ2JDNM~tB@7Csi
z>o<2m<F<$}t4%WS8<UUR*xwD%<LHW`JpJig#HuY~ih-#H7PG=M1AiKrZD0;ZryH2b
zWCml;BEG<PiL(scU?&OZ8komP3m9oh3i^z8J`Mk^qUct!(7+;=H`*%bE|nf8EHSXu
zpq0!qaI08OJ;(5t=qI^<tDtQHRvK8v`hRZqDq;6lvDUyk11AlfGO*sj1_Qed>@l#B
zrUC=o3~V>B*}(bx>03Bs<h-z9V(eCq-efyFnD3;a<h(fx@1l8WoA;D>uYr9A4jVXP
zU_Yy^of><P$pJ>O&GY1tfi|P^cn|UD`iJGmX%KaeI>!9HZQ=wIO6|N&oHlUAz%?2O
zO59lk=Q!yyIcea6fs1s=<a5`U$fm&BuH?Hdy*pnD^Z?`vbz?5^D(518ood^_O#`=B
za@W9ZGQQ5sawk*S%f2c<;p|Rve;If{Q=Ex+OguF3w}BKBsU{v7cuW(uiC7a)*wiZ;
z2nL=qe?}9yffoiQY!fe8LgXKg(hc$?cIiKszh<PeR%{bdrZ=BNGZG;Mm{>IiNhXp_
zyk(+Hxuh&6=-10Q6Fw&KCK5~}nrM1CiR34@2|^0TswCfT<f9Sy?%iamPp-5~o4HJ6
zWuA>OJ7W&UoQ${Fx7;SuP2@3=mxV<b^O-1MLYT;JB6_>mj#s`*DzRPA|H}nU6f#lR
z1VtlAgcORJC}yHK$;o*WWlhkFwvr}FnJ8^~KXADP;^|L7dPXt&W-?t}&|A53Cf3b~
zDsLiR%XoS>N1@b!xC*BC%)E)|J=>{hqLPWq>{4|THB3}7(QLb@YT{iJ@0qA(;(f-U
z>;t($gyckOny6)>zKKn<bJsS#{}$_#GXvu4FrU~cN@^7Kfr)x1P7aQtP-I8UXKkZ;
z_Kj~~g0P{9MkX4YFt&@5zb6}WlSxQN(Ucr8(cDA}6D>`A$Yr%M(V9tn#x^FcT#9zg
zBe&R*8*sW|?_i=M%ZW$s-#eM;Y@!Pb$?dL8NI#P0V-ug4C^r}7=c2ob9wrV<#lflQ
zX`+`2|0Dz^;Zqa6O_aCswvEqBd~V`13!hu~!bBhH$tM0b(U+R6RKkQ?sk=<{Gtu9~
zmnIf(7o(_|Objsbm5G5S265@%n%KWxd~IT=31^4+#>8L~Ls&@i4|jOYoppy8#uDNr
zB>c|Aa1-B~IJZNLFfr2fmVG8pNraDfh|wm-nE2hqWD{de{Afa@LohMU#CYoACVn;X
z6G>j?DN-qQf{C9^<k~4J@ANE?q{B`zk^08T)b%@sWFmuI?MK3$LN=k8II>gJxt6%-
zc*?oI69OhQ6Q&8vgl-~8?MRipON30kW`pH-iB8CVa#32hy}l8<gl*!RAF??nToYX{
zXDRzMOPFl#5|d2)#s$sTC7dDNC(2{D`qp30_lJooCKi}jXkw~~X(ncwm~G-luhc(H
z%rJ2!F_HLm6I*u)T2FhX3EByQ!n%XLvH8;Gm{|HGVV;S(CQk424zTO4tR$IlVouq#
z8lR*sqSi67#>83^OGue&>_zM<6U$62H?hLRO6t0uQ}68(X}i7bWf_Uo+AUU7tHs3r
zv|HRP=UZoDy@@U4hKUU(Hqvk~v6(92?f5CX#ljV-D|d@SocH?4l)tB?Z8Ndm#10cX
zX$V(%^H1Wq4XLl!<c;1V7T!ppEuVIq*kfX^iEc--oHKEr8k%|n^-Qj)6EvVq95ivr
z#9?X_8g6^UaT7<G5FTSS5>g<CBhgbVr05wYrx{-_@#gBYCa!KtqZeBjGIeg6xM<>%
ziOW>aEWBpo?KJPaOyMd!R_Km*!n#f^l9}tYneCQ|+cbUMiMhkV`&180qVF=lM@N0f
zyN&wG!~>R)!Q%gBY56Mp5%oG6>=s&CctRuPLE=jjuS`5;PSIyfo-@8M@lU3F`t^MO
zn)r`qEelmGyfzVKL0BkgA=*NWg;Wb^7Gf>Hg3m&{g|{q}yBi&6c{3Q1EEc*P_E9@F
z;JPAVf`vp2NvuG7_$FI;P|xd@DJ=PHkNB1~vs%bzA-9EemS?w+!$M9rPG(7;4Cdmb
zDwng|tDBO?!nwmS`7GqOkeB5)+o99~7AQ~_Du_HOWTCKy(iX~CC}N>wu2_<nuu#-O
zF;**XVFBlz{!MPuFKJ=PXnx1UsS#e5Jh4#T!kyu<YZ`eC_qK%!7AjhJht+DA@%mni
z$<dW8RA!0i!0yETuDARwg?BA9w9v@Hdlss(!uu9#S*XnwQr$ug3pH8Zux@S&{SIcS
zW1+5vdKT(iAjha4cJ2`$SRf>W4VX|gVm~5m%$iMDI5{y_zka!!T4-jWxdq~+*@CN-
z>b%r}L|S~WHEVuoc?<EiVQg!m9TSqYXVQVOqlG%_^N_HUh0Ye99?#N+^Va?+v8#oT
zEOfJQZ;znW_*-B1W!Wn}wm|p^V|T_Lj6E59F@DO}oAKSf;tLCXEEKoBRdD-~!xo}!
zMBC_Z;Y$mLEF88lz`|D+ObeEUfffc?_{qZ07QVJ%?-fHW472bJJ2sec2;=O%UX6Wg
z;X4bXEc{@BRv{kFbv44m%ohpYQ@a#QBr?*%(Y@Y8^!R0-(VTazg&&!WvG9`ZjI%)9
zY&;9eY_@%ZqV@KP2^M~_pjz--_|?Kh3o`4_d+j}EqcSW=9PQ2ezwGl|QdqK*d4PG)
zf@VQyete&xKx!01EHNz5^2HRjEjSjISy*ntwGg&2-NFnDlPvsZVHyqF{o;2Ex4+Ie
z*}@-uq?2l8rJg^9`Bb)+xZgX{>El!WWc{D7dsEO%3$rXNvar~~YzuQN%%=gu3Ue*Y
zvoI!)XFTH7uTMSSe&!wh7E;GxIrZKpY=0^B`MSBOW=QA4>ijD#thBJ%!WIjwEUado
zjf`t7tYfm4adf}jqxOsS7B*1WFV3*p=Zu?JA>n}7YGIp&T^4q;WIN*y#)v;Vnddv;
zmA=QqUJLtZ$k0?!9{VjEuyBwS%Co{q-pY!~BIP602dL_3uv<9BIwZVm;kbnp7EV&?
zrI<4o&RRHS;WRbDWbcXDe~rCq;hcr@7A{-3V&Q^?ixw_fcz1y}gKeAS{f1LH*}HLj
z&?jr_bJ2SeqMkN-^R(?67j)gi4XU&Q;--aLG?yL_{SSyPR?64|;x2XdzTOai#G3ak
z+_&%-^9PI%X?~7-b58l&!oPLmer%fdm`(vSS}i=I-fQ6%Yd*K|f(co(4v2r46QSs=
z17gsnw0|x9NAo|+XT;?tdFhhg4N;7ZSQ`ax(3U;0@s^G3Hga$@i;YAkag093c*X=q
z+RTM=CD}-}k-`#+rZGvi(f)JKCWWjl$;PO?lQU<gW?m+_Y~*H=&X|Xhri)14d>qZs
zSb%K`8)Rh90a1vBg&B)57G*5PNZF~x5<K&iWF(uVn3QHLW20=Qyqt}U^U<X6j*SX7
z%D5=&qN0sTHo80L;h-{U+Q{l4n}e!0-nHSk5wP)|jcPW!+W5%E`!=fEXlkRGjT$y;
z+NfuH8(Y+}z4^SZjSp<vEsJ(C^#*$#7G63a%HHrgPeg&RzKsSp8ggnQ8;xx=Vg4^S
z<vBO)-%44_9uzyy=e%~v*PN}ju+h>+D;uqCbg<FUMjIP#ZM386;=KCTX(b*c4(XNp
zsA<-&4^o>R6ki<_AKK_-qqB`JHvTv$c5d_@q%1rrjvN$s4tm{291`7Zd~9Q&jX^eg
zb<Xw)&D%D<q&l(D!$waM($&6=&#4p}y>0w5Jvy>Wc%4I{_aQO-kodwz9~*sb^s_Pj
zkXU<2tQnL-bwc+4Nz3~8A@TlU(d@AJmcsxWU)h*;*ejjzYa8F#7-?gajlp~%Lu?GS
zv5FOjvE(}&!)@HA?2NZNWc%KRJvn*=r(Rl_l`c@f@9PcHA8d@a@w1HyoHWM9k2c2H
z7|T&o@EsB3ZTw{8&M0qaQ^<crEV`fgcx%cpHhyI_#l}SHDmEk=vW<#I1RV=)p4I+{
z_~D44lR}uX9P#{DS-<b-teOqo#t|DwZ3JzEY^<b1uwmFRZOpVW%Z5ch+n7uZVZ-5!
zYko`*+i;n0IwJl$A|~1R&BpIG_G!LKGrcR2Tt~(C@5fECF_r3;HK*D5lUywV+Usz4
z8&9X_qTC4|<eowO<hVB}eO18w#d5ZdMK%`Om}6tEjd?ca+gM;@AseZ1R5Us&h8z_W
zkBYfR#nz+Z$x*Sy#!^mQVdMCD&(ty-%We3MiM-Y0)2n+s??i9UKQhj@+Qu3idu;5r
zvDU^q8#_7UdK(*TY_YMGqZ@5(va#95JAeCV+|l>y1CDw1W*rmTY;31SzY)EIhv&j$
zV*4?1k5m6X%8O~(*v&?Y9Tzo@i+wis+c;$7u#E#OCp)i)dN1w|a<uz#&+^)e-b`yS
z9<y=P#x*(?8z)%jq>b}7F4#C_<1|ao*f?wB9GShGQpfTAd|b>qF0?&azdVp~krgg6
zl1;i2xNPGJb&LjS&-Nu!7&p^*-Np?YaPXFcn>KFQcxvMr^-}6!HXhh`XydMpdp7Rd
z_=~EAojh_}Tsba`AF@6y;7tqJPKdv4JhJiF#uFPQPk4QdwixSpLVSC|J1Dxsp@sdQ
z+jwE)KO3)Y{A1&#jaN4QrOw7Wy9>o_J0UKe5HC)Ml#^brC<oCFVjRResB%)+C%vt;
ze!u9=0L4#bS$$I6$rhKz@n)(d2gwfN9QYi(JRTkIAi+VRgVQHP)G5zY%~PUC74P9y
zih~=YQche<N#%^h(;RQ!`*Wo?-DP)>!$C0z#U12ykjp_q2Oli*23l^1c2;|H#hcC~
z4`W^jJN9SUUC674{0<5@5G;@6ifl+!h$V#?i!c^tjN~doML4MEprnIR4oW*H<KSHf
z?>Q*zpqzsW4k|h*Pi=H5^=$|5I2hh38*wUe>h;t>Z;w=>$)9S8rhNyry;_G;qR%NY
z`jiNr5_CO3K0S^ux2idK-=XJ|sO6x#gBlKk4c{Em(o^ESKl2_wC2BjU!@kvZaIr{Y
z+0&xUX>sX%mYYT6zBn!FJ80mborCrc8aim?prwOW4jMaX;-IO6W}J8LX>swi$TK)w
zbB;bf?KJ^~7IZjyyh*jSgEkJ@I`D6Z9$r6QTajAqjCk*i=zK<)v8f##bac?w!AA~0
zWDA`gba8O0N@^zu1I~EXau!bOe=2pu%#?P;vUPLtv4h7qqd#$Qw`O#qCs`L|OHD1~
zRm-pQvi5Y)%fUbggUA$HBY7Vty&ZhU<a5R^7@H39?rkab<!C>~{)}Hz=?<tqDSXAG
z;j5Id9ehK5$-!<1gB=WUFvY=CY6S<w9Q@?qX9wRp_>TMAIBGiwS#rj9p&fo5eD7d{
zgOLtKIoLZh>Ic&2qwA41zNydaQ5j3U>2ZvMu?~K8u;Gk&&I;Miit+3cO`)VfLtugf
z!-47G7YDyOnCKvbs@Fllf#g7Tpg2%DOU<*Q^I4JoYW`y{62_eMDsxrMIL(1h{lP)V
zLG398XfQ50E8hMx?PB4?Lub7WLvNiGmIK?t@6^!jo8uttU=le$EyZQaDQCTx2){X?
zeGuq&jClTYf_$6Isedq*-<ErtgFhXta<JOLbQaEWFqg>;#+eRgIhaj-^_=J4hv!6>
z9J%K?nD2P|%8_J&gM|*3I#|Z~iySO=u*AU_*6*Gk7d$6Eyqb9Fc$U7?qLw>Y;b0|e
zuKg%=BUw9`g{twb^I{DP$>91(D&soGdmKl?4GwLu=?#!g4z@Vh>R@xGeu491n}h8%
z_8sh`p>$q!KQBg{7d>;v`Ok}G=LKEK&_1Vos97C6bMTyOlJgGIs>NS-aDeR`c5uYO
zLFR`tE&H0r9(8cc!6}-)92{r)3C2EM-dtm!<Y>Xl>1Q0ArEy9_!@)TRC+|j|cW{AI
z@16Im4j07x7d&#=!4(Hr9bDs7+SIT41<{?8hFlP#3u6Aogd21UaBzzi?$A(jaGQC%
z1h3qC4(>bn+rc9Te>r&I;Gu&B7o)E|PgpfRrCMUPJxB7-pyJA=K6dcL!Bft=|AM$V
z)A#s-c(Efb`J(5^3kUyjQXUsC9lWB6+C`F!e;xcsL&HU!>(%*dn*3eFxQKGGx;zs4
zcqhtO7t6Ay!KGL5D1K2i+LTt0ZGL!Bm@mBkM%7EF9-oVN7YQ!<Toemf;Z)A}WEUwe
za=6IpBGpBj>zz2VaakLOdnIONzG_!0t)!aW#iBdDi<~!?i*!!<?tXM`7cW>y`n48B
z=XH_KMSe~#>Y|v70xpD$f-VZVDD0w$i#xaT6u2bbz2qG`Z9_><0zY9+(c&&jx+vwM
z1Y5Y-&HLn|=6}(pIT{(-4GSceb5Y(!gD@I~@wSV1TugHDn~Mr`@$aG+DZ8lTqO$9q
z+S<CP;-adHrflS07w@@f<l@OCQO(8sF8&mvj*IFpYOq2r#+r=O?HA1R?zw0#s_kOP
zB@w<P>bm&AMLiew$p;q=U97ky{x0mzP6sZDyEjwbYLM?NA5mjAa_~Y*6PGp=@cK+M
z7tLL?aJ{V(skR$l7A;-0a?#oat!LH7^;RUN(BX-%#AUC3+PP@&qJxW$F1onr>f%Ee
zom}j_9^IKFR?7N4zSx#&YOmC<FAMdu_{c>!GUDPB7Yo<|898)W9GIWtyCS-~aB3&^
zaM6=$_=;$7#VdkHZx^4r_}0aDE<PvYr(zx)&fUkw7u+SrKhL|hV`^U){ao~S@uiEe
zU3}wWfQzqO40JJw4>SMm#64P8dI}LU;LU!H3+|^5rb=@$)Wt9tzec6e43K|DiWQew
zy@}Vd1Fwh|BfOqA+{FYJzqt6`#RwN8U5s+^ql<AaesD3Gdg<EeF{E%s%(x;BUlDh&
zh_Te?uX-PK6uc_NyZFh)&+JCUtD<C)_=S1m*9=W-MhbMwb1~7y@vFjek-<8e3*Cj}
zLUy50Te$GM2#}Lk#bnO1mhq~VO)Z`J{8l2hevmVUT+m$)*)&|3F3S9wo2~)qN`NFb
z)vXJfU|rS>GmmV`NN2a-T}*ay&Bb*Wf4G?9V!MkSE~dIT!&kf;Tuh^`=wiBy87>yP
zSmI))i&-w_xtLGmXmRvx7js<9W&6*risIKiPiR}H?$^Wu7Yk{Gx}cHUZ*E%mY57*Y
zn>vCOT78psDa{ftR?)oSVmWnJwy=^a;hI=Z;YF4mtl9BWmNhQcx>)C8J@ucIxYO6f
zQz`8wr{=gWXtb8QF6vwt8`;7p7n@ydq2pQ?z177w7LrTXuBTG>4&O`I$&y1Z4pT>B
zzS{*|-t3`1=3<|V{Voo;I7pt~_w~9i=y~<`<-OMmWF&N5%)c&<xHw8KwTi#&g66Sf
zE>5~Q#r!zq3D>(-r=-(VlP=Da(8bwIPtGyfTPgpLp<bW7=z^~KFVO(mAA9h+c=lf6
zo$G>j*Sf-{=p=rXW(i*+S-aulri<}6MWHZmxw!2jI_#a+@3^>2GoFioT-<YUpQaHm
z;x88uTs&g_kf!KV@1pK+j+VY58s88DZ;0K)@R%hNZ-}QZo-wC=PoBHp_0PwecQsDo
zB@N*MiBy5F=oH}MKNqiQ+TRi#6$TBl>BZ8<=Z&Mg<I?%O3!#`WZDb6D@m3gl!^js#
zmN4SNc<^adp0GEveB}QP@#2Pv4<jLr#4rxs5EQb7k;FWiF@-UeF^!RQvNECX1c+y6
zo`W$bV=l(rjOk(TCni#(60Je0`NJp>h6tlz7{h887@nS(dQ)Usn=<c<)N(gPvzy|x
zo1$<SMZzc=MzJtzgi$k$;$f5sqiPuMhEXz%QejjMqe>V@qT;NZqI4K#!YCWY>YIWL
z-n=QwF)z>fHsd>t6&NcrR$`<qwutZjG+*>Bk@uG8<a=RM3*-GTs#CQr_tA}T?r|w=
zeclx^O{zad7pTf=wZf<!Mjfun@cERwVSErqy)f#BLD7FcOl!_+l#4p;H@Cb2(kP6^
zbS#rlViKB!Y3pGeq$&!dSs2a3wEqQu45LLDEyMUCj6Pwsq8d1nrE?fv!e|{vn=smj
z(JqXRRHb3G=b}3>F3BwGVZpfDg}h6$|HssKKu2*q|J(S3eYU}OHW&l8PxRh<@4fey
zO1_XnXdyr-0Rjn-03n2uP;T4Z?QNq&2qX{)HH6*?E%e@d=RZ4+fA9aE-n@@SBWW}m
zX?L|+ZO?#9$t!kDPwErETLHWuKwoB(N^b}74%IuuZPdE~ycfXV*Zh~R`90VDMX&om
zpfUsK7eN1jdoiLZ?qmLM1p$)(kZUAR|GNK^00so`CHa2<p9U~6fT00=7QmnY22%q)
zi9-VJy*dd~pc`G{?0nZdEP&6c_XGHXd@?nL#@+A$MvyU&C3U&(PpT3(^16Ri0HXsK
z6TsL2CSOb19_4PKIdU=ar|WJX?Yi!dFCI5&g6roL#s@Hgwfc%_aF=_*{W^ee0$3ct
z5-K5pDFOTxz|R3pWtr~+m=?gd*=>1z-9J5m83D`+;74YDAHYm%KKbemf6W_ir9V#g
zwZ7s1ZlQN}0CNJE8^Ap31ubbpzVu-?{Jsvp87!tVogcu00Mr1q02T(YC;&MCg?uA`
z4J;sK11gy~6wLx85DXv`KqLSofN%i+B8Q%>=aC!!8#nwPSC2CTumZ3HZ~}PwwlC_Y
zKhI5nvzzWJbkCdqu{T|Xmj<vbfVBav3m~PecX<G70{At66#=XaU{wIC1Nenq;-{N_
zeXzR@v#y|b$4!5=vq`k9^ysGl&^34F`7MCo1NbX|odK*TwFB53z?K012w-CXn*#VV
z;J%&l-}1M=<tJ~iKR$_iYV0llrkAl>1K1Y8_5gMSK>r4EYQ^84>YH`TUuKHicjhfu
z&%e2KyGfG(b}=TeqswK}jxl>Vx{n6?>=e4_9Ax=}H1Gp>8o;vv4hL|A=C?ck2LT)n
z;8*~c0=OK&@c{k_;0#$WfD-|n4B&LO4NnCyy^(vz_2QQQ*3-nS=a;i=hYKuoE`aj^
z6u9l`Mxn`V|HbUQn_eee3E*k~H?uj{0=SWluTvXu`{!~-QvOx|w*$CCQ*HqF0=Q2$
zzwNJl(QWw7+y3OOc~?ez>B4b~<sSy{h|75#z!L^^hd`r)gr5iSA^?wscnL4Fhj5I9
zR{^|c$u|K+(}oRN1!6jHuj~I5a&UBNBln5}2{|RiGAB-=4~txR8bRM2N=}fFC?TJO
zG|Bx-crKR7BO$khBne&#J_*SZQY2Kr<KMK__tqW%_&ff<9oIfr-%Vdy+ig)^38@lp
z-iWzXGWEM9N%<udkl>dfBt&Y)6qMZAAVWer7yjg!>ukiyWIo-h6_QX`LJ<i?Ss?4t
zHS1^S+frRsi!p!pEMG|pr6fAL55pytmQY4Q7YSV@l$B6ULSqR{B$Ss>K|)>0z3HmR
z8LLRBDxnhN$`a_`>$EOJ#a5$6NvJ8ImW1fL{u+||07ZPOhP$*_o8{{;UDV0_ilM|^
z|B7kedJ^h0vw?(0TnpX0G?d&Mm_~Q~4=TGQG?mbdS|_26ggOlqo3ngN#w{e!Qa>?C
ztQ8rGU!4<fE1?sMwUf|Za_?<^Dvu5l{W1w3-F2-!>8_tv8#=R0)+0|h3Ed@kmi}0x
zf3>^yzQ?qugkBPQOX$O?Z!?oz{VfSQPehUB$ujRqcvo`oofh16A4ToE{`V#HmGA)x
zQ;nRZpM?J8EyNE+Z@TNJMO~_5Va2#Zt=($}g^7vyM8W_GpGp`gVUUEu5<W9M*Y5h&
zBEBN`{6n~$#e0)KBU|0`50#L=hP!${jQIpUyyqXm_&W*HB#e~sg@jRLOlD4&Fh;^y
z314&cO9|s7d?jI`<X+&$Gjjsv8l1BBsJq%Z;hwvWN(Lc3iTrt^dw2H@ixJpW&Na~#
zj!u>Et@Pg_$%2*XWRThS{L>}Oknp{PMRD$}`%Ln#s@{${;<RS*KX5L(&7Lh`j)WB&
zR%)0lVV;CP6>L`UlZ2nCXJuTLF<-(0>U|k)WGtl8s3HmbBm^W#T+Uw-WC;rOvV;v1
zR0$esE5YH^poEZwFynFm^XW8*7@JH-Jc%(R_qWu`?)i7za~;EyaO<AGx*4}v!V(Fq
zB&?<(@F>SpmR})ZnS|vM7T)rfz3*>%-%nF9<yuLD=tb<n`~F`ftRc^rQ1XGFn7>L`
zOJjt(V4-iyeYgB2_x&gC`(NDm|IP*Gs^{(S!2gGYjS{voXA?F2EALjue=^-HVT%O1
zA(`;NAE$Z7j!G)K*u4|j&Zz`;NVpnw=Qj#FnfW)<T}*c~-NPErd*I(M;eZ5>jCh&8
zCBY$@YN*K)4of&9;Vg|o2}dOylW;=9NeRcvA;VGsP#4D_JuPw51OKYANk`{+Pf0i}
z;S9MwQBv%o|H&+G#zTLVhyIoi{k<RhSJlioFX4iOE2N%;i_|U&^a}X01bTX<+snWH
zmoo98f6+t#tYfafU6XKK!VL+T@mT%PKlX?_vqh!F&HmYUTf!Zhv1y`~aF<LW;jx4#
z67EZQAmO2eM+6?a=G|8$*%;$)f{K6S-<~I~_9OpO3C|=vm+*qd^&@|!GrrFrxssLl
zdQR1dpY_N;Fg5wLgf|i(Bd3fg8PPIw$cT~Ar@YU2<Zrafv;UF*8t0-Nl4W$?l3Y<y
zIS?x&PIgB@>SO=O#Eg26{RuJ>Wt5gtMn*0fxn&fTkuD=ihF3-&8F^*+WF*Vj^*B03
z#^Dz3(1?1P_&Ul3^k|kUBcF^k8TpAWNb2|4PfIuBAG-?w_Sj#5t0R2;u|Gpbri`L8
ziplWH5HbqOC_**n`tO=mNJfEH-ZJBTjib{`7ma)I*k5*RQgIn2WR#RqiW<1oL(4=1
zA9(2D?q0j(1fP3#Gcr=j$|xtJj*Pl8%FC!AqneEBGAhcbB%`v7Dpb)Ef3GM0flvII
zp{PH9&8*6b?Rnz=;fbqi4H-3M)RIw~`3;Ju>v8Fe&nLdQ&3~gV7dLHiMm-tzWi*k|
zR7L|C4P`Wv(OAZ%Cw|XUKTR5ypZeQ8^}qYnzv7f{&hNfvGMdY1DWjE)ub;ZLw4jW1
z+}Vp*ns_NXpP8GV`rFEACqt7Fl+j*B2N|Er7$~Eoj7~D%mhp~^&N8~l=qaO@jIJ`e
z$>=Vl2h~0-Wpz$(|5|Zpp89V;_0yY<(|0{F&;0a_ZEx}i8E?t%&#l%Ea3{m`Xa361
z{N11V-<9zmwNyqw8SitG`^xx0hVn9Y_6^VAXa4ce{HNw64VjVBU&e<rK9Mm%#z!({
zKl6w3dpnnmU-QiWv5Y0d(+Ny^lK8ZEVu|U#LOGHL$rvnShK%oJ43RNZ#yA<{Wqc-M
zn2axEjFR!WjNvjy$QUW(z%&2)`<`ph{72eE-5AZc6VLtCp8H437$ak>j4x$;*T{9Y
z+$B=``{H^&_YZsSpZeVY&DFFCGQN^AS;iC@6J<;yJInZn=#yCKx&QccKMlr;N7F})
z$k?&M)2vL~R2kn=X)>nCc=0@zUcAz{?iAyj@MTi@a|w5!`=`t3`(<+c3;#?RKgf_|
z$TDWh_)*3p83Ag(j5#uXlJT>QxokI5>}$haY@a9NkFx)*am|;pfF^(P+r#ceQQ?KZ
z<qLn;+U}J%Moap<Px7ZP{Pc9GWS21hh3g(FN4F)Ug=B<f?31xyhAtz*{EadU8K#V-
zGL|vNV(O52U-)gNRLEjxE@4X1nJ@gyWvq~~R>nFR)(ihi8LMUdB4d?|V=w&Pm;Mef
z{cB|07?d>VrT<qMgXEN}4bs1R={H{b|5qyWmy!v;$@pEydJY??nWR-(e3c_<yGeld
zH!|HM<4+lzWo)6jLdI?xTV-scA@Iuo7mdvr?{*nGI7(Rxz48xx<>uWf<8QiRzVfeo
z<tMW&8=bsI#$Hx_Yep2EHcv8i;I_MrK$E|W6EaTHxZ4|hNXBs%J1pafjHB7@Jw^lP
zqT3zHofsNu|1f_9Z_z&`<Ft(PGA_tClP!Oi!N1hk{7>q0<e4vGYv%s%x%Jp9|3w)O
zNxgb;v=`!vjH@KCpr3+kGOp89rl7cj8!~RvRIDIY!7UlLWxU~H?~uP;OMbxkE?HxF
z;yt=6IF)ptIk{f@>%R6sl<`Q$V;ZC~o|9Wrzx!gIlJjqje#T;bU;96M?WY0qQpOq&
zUdebZWBP0Vs@MMJZ@i-t(-(~L9((PNQV^}+%=>9M6wF-iT7W`~0w}Jz2tR)9k5k}L
zkg6b`;@%2o$;2y2P>`q~mxA01d<v2kBq{JJ?v>(`Dk%EK-)Csj|K7O$l|t>k8J$N#
zUIinWqrLH;d*ja^CG@+A>$iHUo=8qpkY7Oo&Yr2jub`lUbdHwDM26z-C8naPIO&3!
zg%uQ0&_YHb#a*={`%^0YETgF69zH{#EfA-Kf|3d<E2zR*N+~GMpfuAmOv@@L#~}V`
z%pK`J3shiEMFsC3$yJFd6<$?AHRktLP+dU{1)UXiQBYGsEd@;#G*eJpK^+D46*N$=
zyk1IOmaoT{MlluAJW4bq+bU?Rpo!w%Aq<TYyKcMp#+O1V6QcyFy*NrVr=}@rtDv2N
zmI_)aXsw_P`AMz#cTG>pZ+*L>1l_V;E0#<*6)D4g?G<!T&{07r#hv&5jS@wo1(ivg
zg<408_oBtLXwj9G>8_xMf^Lj^@qd1Ml8K&0^<oZX>2oHEzD1%BtNSSK9phUH-d6Aq
z8G!}fS3v*TBeC~5x|(b0tKb8U9*q|554dgVui!%klN5Zd;3J}@XE+Odtl$#`1BkQS
zeGxoZ!KaJ|D!3Xg1~K*J5Os2hAqs{n_>6Or<mU>8G47YcZPzHKBgmZ;e8K!N3dS-R
z#dI`NQuRv(;}m?wQOY=8!34(iH7iB8EbwIgd0`?m>HD2;6iikSR-h}G!kW)e@V$bm
ziaW-?CG)c6GzHTc{KT5X$Zlyf*<uS7EK=};f>{cFR4|+F^A-He!gCbNRp_(<tma&l
z<s<{T?#x%PfZR34ZCxIwTdpKhG{6}pro-pDwv`nq3RDG}f}nyBIbmJ*N=Knxj5xg@
zd3208^1Y8-E26+4-&3$cfvF&_Na7L&OSvdZfvvz%K(id}Fkj5fSt)T@<B06Gj5$>1
zy35fk6|CauZ%kJ!Si|5KrsRjQiD|zoSj*A=dy~j*)+r!B*?(8Cp7|RTY-B*pKNu)6
zViSY)G2(EH*rH&og3~I_sMw}pI}Iom%~h0z*g=C@!9K;sf6*+&;BTh8nC@muse2go
zfY`6#0L^16a;i9};1JEd3a%?Stl)@(6ADf$II7?nIe(P9`-rqUuHYZ?x>M1gKo}5D
zpSvsPr${AoOPVCl=QyL_Uj-KwTvTvY!8rxzvs-i`)4hnVhd2W9znpQG6kJwtB|G)c
zdFkY7_aJiT6z?5K9CqC8tQ!h$Qa|2~ensP2!EFV172Kl{kuUBJ%^`KYWpldDK&znl
z6+BSzM8Q)94;4I8@R&>fyi$BKmKmN?%*ZKr<P^^oJXi2S!AqK%7x+%*6n~fe?_I#F
zoFZSW*jqFHwSqSaqEtky$e|)e#i9o8E%950y>ie~C)TZW+0}&iVnwWqI29QxGF5m~
z#H+}wB2`6#ibNG&6+RWYR7{E$Nh(@t-rTA?`BP{S8y|=jzs8DW6)7t1sENs=x~~f<
ziS#)gE9f1>tW){&sYp{%Kt(|nKh}wp;*eiO(uyS7#ZB9xf9UE>SMky9+|}d6gIJLm
zC;TdeimEEAsVJnPu!;&Q9aoMbDvGKorJ}ToVk(NOD50VxD`RDN+r^3fx02qE6W_*(
zcDGy|%8*m3D5s)4HUDtp!Z@+xQo@?E?jl33Kip-UEpeifiq9j_l~q(xL8+hJO}O+Z
zY27~=XW~Sm4H?x{)KJkxMN<_uRn$^ZUqu5IwN=znQCCGhQnFQC@hYxgy^Is+>doU3
zojjtiM>JH?h}CPXf_mgDkNC+Wu3vQRw$vlawD3|zFVlT{Jfek)mMX@n7*FO^(ON}k
z6<t)c;ik>)@2*F+W!z3hdlenB?cb5Xo%3#EJCXbucO-UIam6DBsu-lAn~Lr#dZ_5B
z;$0Q*v3xHTeN?=q;$DTA-YVv=_|J3R=G1pod~n!PxwP-@v)JmI=Y17@ReVStM0^rZ
z(N9Hx6}jU@@pwU>NW8h5&?w&ZrAhIk#7f`CDn3y$K*gsj?0E58ycl22y#!olnS2R?
ze2>%{Ox~hmjEW&DhN}2X#V{2kRE%WhKUXoFI_^W)&32DUuaYZ{HYpMQLdEJ+QKQH>
zL)>BbmoItc>%_6FHbuW=a5BN2Jewzo2`au)@rz0uyfKlyms+aQeo=g_;u{sSS$MLF
zDJrI^n66?f*(bqm$hVwS;9BaB&EvjfTymjj27~Wa%%stAESBu^gNj+?&&;P>Rf~B?
zCJ6FF!n8;@hs`@z#XJ`HNyX0$R+f%G)ztSq**#QnAq`0t5fug}1xQ<eoXS{IA*)bS
zcNK1Kf|xkWby`hDP(_FZ!YXu?PB2LNt8qNpr|@{U6FZLcnJO$5%T=r(`>SwNEK#vk
z#bVBNdH~KOi2DcANq>?b-`~58`2?~!D>=GK1xb<sEmp5)PR>N}tBSQMcB|N<Vx5ZL
zRFG%xQ1QEp^(r>0_>=rCQ4IMi#|9ODsMwfYBb7se+-$RoEzI1eVry2h7o(34Mw6-T
zlO2WaG!Xi@2K<XnLFMmM@wbXy<SmI}MWQ&AC}tk@l9l$VIHuybihU~ft2jWDzltL&
zj;iQ{xMw7(;xNq*vAO77yvQYL<r2S|o^ws&I_Gk`_#YJ~RGcIO(r7B{8<R_180}iv
z|C2|HWGK1B=;XwIRh(7vLd8oJ=Tw|mab3j?8ve&(FOZiqxXAPpQ{rD{aLDT?d{xD@
z|Bru@@e`)ERNPi^Cp-0_io4`3DjM&Py-$N8E{Xz`@PIi49%V~DR&n(^SAnO@d6vz8
z&VX{gQt?{F+Zx`{@J2<HhKd?0X^7U4LqoEL6b&(&+p}>RJQ|?k$dl-t8farPF=I8X
zVfzq{*N~Z8<kqk!mq^f%s38|;ymQXopY|}9ps%HpG<Y@mG^oAZSIkXwi{qZ;JR0(9
zD6gU2JKj_c`7{*KP*kIzmLflusll(IfQEt^(lumg=$YH?kugloaY^(M+^pQf&Mkz7
zLK+HlrKd&yY7uuo^Re9So%7w?qL_x_8p?2L2@NGRl+sXI19fqFlBkj-`Zo1a=v6ea
zW0LqVNtD%4PQ&b&T+@==>Viq40&7UPz~Q9I8mee$sG*UDs$3@Vt7QvR*HD9*H8s@H
zP*+1O4YkQKN#bde$mJDxHs-CTp}vM!5pM$x4XV1=*#=%Q+$&CMu3t6Q&_qKQjb01#
zu+q?4LmLgvG&I-HLPJaDw_-})a;E&^p&4(MR~$Z&*p}2_erFBsHFVI>Q9~yUVXxTg
z74do9OV25<X#L6^(Y>$4W<9Gu_KI$ttG9;k8hS9!;}bnK^wN;$u&1U^wDpMrKGBDh
z-eUTGWmofeHN2-`oQCll-e>;*H1uQ8m+1#gXZl2c4IgUwLUX^U`bfja8a~r7j8i|+
z@TrD@j0Z3c`@|p(gEb7%FqCW<?duXu+T?S)<FHS}B#S)BF8*A@a19d~)Ay1iG>p{n
zWo%T%WU;)R+s3ZRVieanTEiGFxo#%Lk_>g<h1dnjVsWxNOH9!46<JAxPNiv>q~RwG
zKXb;fHB8emUBfpTCTp0YVXB62HGHRGXR;W&%yTzcWNi_l#m1BrQ9MP=(C|I^kA^uK
zW@`9B!z>LyYUq|C2B(N%ig=MClJW@JAxs*U&m$)0#9R&YSiNC+M2*3@>6uP6PoGb@
z@(2pDh6NfHYM?vnMH&JcBn{j0h`V`QBkUWQl8{%>t%X8^OM^z^cT03oLrBBjsQ40j
zU72cm-DXajnGxYyh+}Io7@JHjrkz>X(Xg1KOEfHFK=MneJMxO|L%hqGGb69qoL8*U
zuv&v1bbqA&3rz?#c!MYw#IG9GYB;aqf`)Y(e$%jD!vQiyP4DkyHwNo9Y+&#QwS~b(
z4VyIl$(SU!Fxbp=)4|lO436g&l(e1k4h?@X`1xFp1?O@QpTgf7b}@4|(>+Z0YS_o%
zN?t*M#13-wn1<sT4lyR?VVdHy@lgh8BV3*TVSGlz2?i&bo?=R=ry2BZ;s2Mx*=+tf
z22}4w4VP%VYj~~UvW6=f?rFHM;VKK<WO|M1b*49%Qh`+aEylN*-k}a<Ks9D5_JE^L
zm_B6sh$(6Hm;u%PG@J8G!*dNUG-N4EGA}heW^26B5EVq;AX0;f4kAYoi9zHFA|~iI
zpF$i11d%hF6U!hgyC;bFY<>dCq`DT)oz3wDk;K@`G)wtp#wkJM34)5sDvh+wmz~QW
zL>lA#ObY}tCL^XG<8-DOL6C_u8B=vxjS?I!6hvVLMY2=#ri$W0ln7!<5L1IF$^7y`
zR0yI}woK_D$}ld=v|Kiy>a7?=r64{DVn7g;gQyZjyCB*JQ8kEaK{O1aQ4rOGs1Zb+
zAnFEDGl*J2)DF56IE5hzG5dSEs{ut*-N8t&s_Su51ESuz`av{H6(dr`-pQ_fV@_%w
zL<<H@f@n$tK`clW5AL`(JZn-#%OF|>5tUE04WcyzqHP$s<<pCmd~QX=A=)8`-a+&U
zqGJ%9g6JGXmmqos(KCpyL39hEd(hptb~CSAIE6-aQ)8dHpciK^TGm};qaEqR^NF{D
zcsq!GLG%yeogm%~;scf;f%k%VpL&F&*FH|6u(Me_1xj)Q>B%a6NH)BfO5vj*$Sedt
z<}3u}wDEqFPkb80=Rph)Vqg%1IB77`p-hJ`rPaL8f*2Nb_q`LQKvj$gVq_3s1~HCh
zzF<0r=_sb7nSPs3P#7BoQOZSNd=L|Zm=wf>Aim0$%#!(<qa^kX0}>`YndxpSCy4KY
z2(h0`V>&m8c?_lpF(ZiYgP57^ML!Z?JS&?+!(=w&Ia&N~)5wi~V!SAbKoCD?OU|d>
zXS|T<m3;2_k{GK@Wu^+#tg)am4l>Oe8ezsd(+E?8Dao5bSd3|IB(0nv76-8;h^5ra
zA-o&HvLKezxDFvUgcU)o4B|u(CxciO#OfgaCjSZI7dFefAbum;4!|0Y{>pSM(}<n+
zdl2h`*cQb0AT|W?M-YDou{ns1EU<}2*4|k90)iGsKJF4nVB#0F7cP2B5L<(IoKFyQ
zTy=K`1%(|!{1wDb8XbZER%mNqjBXVA?_KcjAod4wAc#Fd><vOM@*jU+mL^4F4hC^3
zh@(LqW6t3qjs$W1d-q8{!oquN#2n`&;{3y)3NPqUb*F+j9mLHbZUu2Bh<}5)7{sL@
z&IXa0<~r5+AkJ}?*4esU2qLT4%RyY>r0X;yvQw`HagCYX`03^b<6XS2emjUeLA(g!
zWe|6RxEI7DGDQ&gS>^%L|FghD8klK9O^JKL{AWy`20?+enw%z{Gsybf?^O`5X{ryo
zNfh4D%pdyi1LvraYYLL5HzpKfLO_V#enxv5Wl|WBCnhcgPY9KW8A5yr2_g7H5FsRn
zkSm1L5b}kPJA|YVQnJhUGDr@&{pAbc&japeyrlc?qXdOKA>?I&U2MQK#sxws7()K+
z5-4vv<4mR*Ovx+AXR>C1Ld+=^Lh%p^GcFQBQ3lDgT_+)TDiK1-5Xy&8A%s$#R3?P7
zA(Uo(l4~c)duf9B<w78krD3rFX%$1Dwvz=2R|%nN2rWZs6+*QTs)tZNga%wljSy;w
zP=|5N5Na`?LUQL9b+d83Z2ry6c+!ee8-~z0geEM|D1@K+O%vItX$Z|iXdVJJpTt^(
zP$IveK$!9pXdObE5W0uZBZRggv}3U@OxuUhF@#QxJ1`}A8k>~2b9R(QS=SJ{akNc-
zL4i_xa<q2{eM0EPm@Gzo3U7t*cD68OTs+3*zZb&$ghN<D=l_K8K?q|)7)xRy^b27m
z%l8lA!w`m(=hRRBD1=Y*i@_lb3E|@qJ|V*rCxn3^3}WGNtj6qHX#|MU%Es^SrVkC_
zvk-=b@HxxOs~M9ONP(F(-2qNfq9a1c(=g_z{Njs{J8z5%VR?Q*Tb@RTK(yF<zAr-<
z7s8YfriL&+gb5*h%>{nNbP{Qm5HpeSvHXJOA}W*40iZI!VdmtJdn^DkzYXEL5PqW0
z3Sn9Z(?ggQ!jIIz(up%dm>EKj`YD9J=UgYR=DM9<{J@yNYzA{fm>0qv#w1L;AgI{b
z0)hhVDx4p}f)LaYG!|GG!lDoYWZ{gMcBzm;keRQ9@ZwEu^x1@>1w@wuf<FB0*(xp=
zLMQ|y1T%#1b08do9zrC91L5@QUnhN1K$O1f`Lck>`P%*b#0tR<!3m*j%j8uB#P$N>
z$#wT;KyH+>lqUZWHixi<%t(`e2<t-lErgXJ&=*X<FeR{x!RioB77!F&!_hbS6MqeX
z=vt1(6?Bt+58;pOT<b&F!1ynpmy$Lz-o*4zrX@KGC2gg?V-DeMA#7*7gXv!(>?A*D
z$?jhyk-)BO$=wY0Fx|^^Q9*GagoD&59m{nbqOPPK4CCi8j)ZVDgeqZF4dWP1fHWh8
zks8K7A)KIjAcXtWI=UL(O}r4o#Sl(~a5{uD%sJ2WU#28*HiUE8_()eT?V2Dag-gu5
z8N%i4)GG|GhHx#Lb3KF`*|_rlSju&aqqmvfVS1Nome_+3o|6NF@Q|4#|0smV+4u>A
zr%a#GG>-fv@G^u~G--!H-(^#HO^zBy3`gIDTxJyGXr}9)CL&uhmO)OY1x`niWLy{?
zj{bYc8y^NyVkR;tR~Wg&NMfAK)XS6vd|}ian418F6lUgOTK#0+d|}Y7W}z?&hmjVB
z{8>i+FbXiBEhUvpXB1?d9!3U(%rN|6_x(usd~qZ!n0bC_Qr)|;MYyO6VH6FcSQy2_
z2=9-jP=-N?FiJ8gmCY|rTAfKCfwIgg$FzKQDlK%AVimc}N?}xH&^nw>%xYm&4`XB)
zUxZPE3JD{jyk|rhwZf<!M)xp!kXF}{>V(lKjK*Qq<tTCLg;Aez1Evj`(y{<0H3_3>
z7@e{un}yLTjMiZ^XHE;Iw2;y=>@KIwyO7i-Te1U#wqdjjqkY(&oT;=m1qIQLoJ4#I
z6z$BkOBh`lbYn`Nm{Agio*eDRCG-lTcNl#bzZJ&YVZ0LtogqVF@3PqYVe}=1JI1^h
z#`u0-;!_nLkUXdE_{Y_O0v$@zKa3BV`B4}H!x$9C#~l5H=>Y0V@}l1|vgCi!T~iDW
z<Fhb^vA__fLrI^5Zqnx*9nO@ZWIC#s6r)a|E}*U)6~<)ZgfTjdUb*APFda+I#$a3+
z6B$s_cm@-geicTSe`ASBVNw`hXUlvO#_GDs#GK0RI+H2+@V8-n$9Njk=}c!Z{hlew
z*kyD5z<5?R=SK#!!<ZAs+%V?x@W~oSBu`*|7z@aqbkx$ZFpNcEn!Rx_j6fJt7=MPb
znHnC362>oKtO-L6<K(qOo2eE?kU=O6gF%=n3Fr(WVeB5_rziz83@ba8_)Zv$!&nl=
zUj@aoFqVh0lrc#XXGON;%4{a_S21%n)1zlnf6bOzAI4h7>zMw=^mnFIW>)PR82k~&
z#%#_e2BgUr8Zvc~N$l@1wldzvl$hHY>|pvA)16G|XP_j%i(1Ep?8z>3FN1wy>}Rlg
zk=yn|H1pqyr7(1Q+F`l`gmIK6|1eT?<k4}QCjT%Vhw&tg6O@bEvNY*V7^lKG9me@E
zE`)K0dM%8zTu#;-e;RSL)$<$=mZL+x?Z+iu4C7K5*TT3S#%1PT3F9h*vgv|8N$8v|
z=qsU->EcEhH^aCU#_cd>ri)0rSaUjwwm}vcm$4_^y)k>3F7C1#_rkc(B|He@VHl6X
z@Mee-PZQ}C1}RDJRf#?g;~7oDI+Aoe5937`u{z>(ybR-27|}X?6N1-aya^*pcPEO^
zs-^5WpIkLVJe!^J{_});Ra0V^4;?vmbj=Wxd-{fEi0?97O}_7)OjUSvB<M)g-8-Uq
z9pMb|_sZNGQV`2upXJismj!e$aaMJ2zr9?VPe-zjtb?1V1mfq_k*d44Eu$l!jx@%8
z9r<+>;4B&0@+4f4Iq5o<+)o^r>Mm$!GKXv~bQIE2SVs{ZC7D@NM=>46b(GLSn=nb3
z4m>1EVQq#u#SJN?qqGixrnnsM+tbi}|5#Q>IUVJ>gbF$;>i_*`gpw-hsG_5)?(XKT
ztfNw<YYGb0bX3<-gR`{F6rX1ECu9ohzS=sP>1eLIm$o`O>N2ROqrQ#?IvVQkZb_Q2
z8tI_dh$)AX3bu#~WQxW*h&IvDl#5-HDb8hz7CKt$?oG%-9j$b<*3nHzcO7kXJUErm
zfoWT&?U)j?z3$Ft1SoXW(J7nXnL!uo*=!EIh3}!Gr;d?2zR=N2M{gY;>-a=RA02N|
zZ<6LZ-q!IB>7e61>YzuiRbOO^mDQ6^JSs3L;(MR9-L=NM`9k#nboA5FU&n{k#eVVS
z<8*q9UDhw^`^6kJ^L@YgNQZPfHYPoBfR0af4At?Oj)6J`=@_hIh>kD)BIFlu8J-F~
z-4}m*`+9#o=c8?+!*qPEW4MkHT-{o~NFMGAJlhxh%X-f(zt|%CM(G$$o}*)`jxjpM
z>i9~>L@HCqI3444OwbW8M6P8Sg@vds+^&2}h<x=DCkQb~$JaW((J@&^RJp|2LTnbI
z=UmU*>yzk-sd4_qBSL(u<2xO5b<EQ-O~-T{vvthTF+<1qq?I==wvd>q;|CqHsAqNe
zoUSSy2uzusl-WIw0)b+M+^XAsnOvbr;!iq$)-hkl0_v2Pu?;y%PfIL2)H||}pz~OU
zH%VMXjzO(B6EErX-B1!;k7RNo9jXpZho!^T5oCd|4xK@W>FQ}w5e9}1lflYqQN*O8
z2A+v0Ou!-gpNU^W<3$H?vcghk5~idT#HaQ;nC@Vej@3F!87OVw7aeQJVIt@g!LKxg
zb$B9(k6@jS->9xQ&mA4V>sYU2pN{=HHt6_+`F}CpsAC%glH8=@PaT_eY+=q;rWg0P
z=LqF2A5V0<4thS?ku6Vnr;fkL&T|rXQRhC+M>4y0?9s88WvDNRLt%CyaX`mGW}YQO
ztxP(k<A{!<%sI@o^698!H2E_=&Ga9pCz+mLdh}rWDF#$##|yDU&*=D<IdmuxMbGIt
zuj7J_i#l#H|B{Z&I<8Zf>A0ffDl@N<O$rH;r>}n8Tu0raXp0fi-E%!8e2c{h+-7jH
zkhrVko{szE9?Xf3;30!oG@0voq~o!UC(L<9)4q<UjOi8CiJP7mjLB{<8PI7eRMC_n
zKB7^D1=aqByglM}7Cmv7I31OPaZChYkdtX#1hEWAtX*MOc~UPSg2V`FL{Kw=ToL4s
zAR~gz2$CZ3MnERb7lDs+r7}&9ASHr4jOjcdDkN`qnOR*-mPv~sKQjwN-0zr3hC)H+
zq({(dRT@S85r_!NMNppkg(4^xL2<@~nHGtlC<C$p$(P8&OetEDK`EwLT~H>1ve~Iw
z9Z`Yw&*oHQP$_~e->bsWsu5I+xIIe+R?n8C&!Z?>D}n|QG>o7&3)G3AE(`SRnO=`U
z{cL&Cp-}{lBWM#rTV^(ipf!W05j2aSIpda0TQH>~$jDZ$7*k#JLNlvU!tEmH7(u59
z+GnSBVDL#{(V0Ql2)aekB|9~%$=xI9na$}D!7T3FUfG-_g~eMDydA-&2>y)Voe18I
zU{VBMNAO+*??*5of=?sp8$s_?Y4rW<hY@@b!T%!Y$0bnPNwNM+sk$uNe#Fs_nSK(%
zA+C|c21YP6g3lrt#7Tph5`PGT0!Q6v&tVaah+t%dHf6ab4`-TXjV~e?6~XujCPXkg
zf-w<{%PwIofr$G}A7!B<GKdn+nqdfk#fnX2;mcQJsZWbW@J$4hBhVrUMldCUsS*4f
z!TboFYlrV5_&$P}5lo9<I_HWh^52M<k=;g;`GJhdsq-TEkpa~;CxY3G=_5XhQkcup
zD$U}5Vn9|RKVOh7FGsMD@uCO<45VzYqr3wW+~J@^pmGv@$VSmn1mOtQ(j**#9zi66
zB@rx*z=*))QAsk?5mp3t1WvYB6LT>aLc^9Yb>*@M3KtP8BUr_wV>zd;U`o@}Y6feV
zlKd|WKDZbAD}zv4Ix#8y#?kdme`iW#ocJ3e_=BT_H%8pA8VPKUU<=I{29gbIjbK{@
zmm|0m!FEzIg5weV6Tx2*?2KT41P3_#-%R&Juq%Syj9XLNk9x=;dpWv~DHUGrT<k$|
zHjW;NfF^TdQaBtzmdw#?$zxo?TSdf)2u?<DKAV4v!MO-dM{tHlP0#dyBRET5SH#^6
zprpE&8^UyUE`bZ#xh^ue#FTb~UX9>d1UU@E7`Pt6jR+n^@Hm2-5!{O4ZUpzpLkfx8
z5!~S{<cd^U);x2c@dKjdd*gEvpS<NEGl!n^K8fII1TQ1B$;8d_jOlZxBt}_YM6ie*
z^))l!L=a`Tl9ZZNax_PYbI|W63IiSk@dk1-KbC16)6Lyofdt064I~*zWK7IlhPx+?
zCTjZjpQ04JoJ0*tF+g)snt}WV@-WWJG?i&SrX3=#OaTK04V2`J=>{?k6eV-%$Yf3-
z#(u`MLpQ6Itfmz<P=q;jS3vw?*{Q`1lwiEh?|$P+3%oR$moZS*fMy|Rp`3y81`1dx
zXrY3EiUtasC}N_LfyxFP1B(q*F;LaOU;{%8R5MWBKxYG84Ad}C(?C-L%?#8sP}@L#
z0}Tw+F;Le)J;Qy@+EYZ(qRq1+qI+Um*+QP$MMXmcjSMt4(8R#b?Y=%m#pt3!F6!PE
z{#jIf@hYKofw<-dS{P_+pq+u123i?tZJ>>TF9s%GEh<XGOG{oYN2I?lDoPe}GqyL-
z!9Yg?oeVTDCi)f=-ycgFloUUbQx_Byi~NaQ4RkZ`zJb05x*O<W;4K4h8|Z1Emx0~}
z`WRTw@>`3E5@8R0yf&+~dz*clneP~Q*T8!Q;);t|_mZpDOinK@Dis$Uii;1Zr3OBx
zel*a}Kz{=t8u*CJRouPJ7@gsxoiO{Kr2kl4EG;e)x}*;<@Tq};1_rT-4i^_!i;I`V
zMbQ$XRtdK`T}p_d20k<Jy@8nqh8g(Wzyt$d85nM0gn`ip#uyk$DqV^G!oVm4=0<nt
z<fIZpDj`;u5Py{rW2xT_j59Faz_}74siep(DQcH=%kNZD3@#}io=KQ!V3L8U2EH}$
zwSjL8Og1ouwVF{<(DN)EQ$TLBtfZKDAof^E@tuKb2BsUBVIaDcs9(zc3gg{UVp=J;
zSPCKH7?@>1G9VlH(ZFm2KO2~DV2**g2Id*~$-tIU;sR%(j}zl=c%GILg-VM?rNsgR
z3k@tX5FoEx=j&D4Ep}9CL7V7g#`LtP7*Gx91|sCc27(4c2Eqoml@@fI@1@cr{<`<Z
z{G=RZ+`J{r2!o7cz%pQSyIL}TS{bpZxn~LEBQd#_7+7lH8jUXl%g7B3>^88+zzPE^
z4Qw>9$-pWDs|~C(@EhI#8(3rDR|9LwAPwTLw{u_plm0u)h;#Y8cgl!754^t{SZ`p1
zfj?*_DJwF{in?V*zp{c(mnC5eW6O#^4Qw{B-M|jA39Gl28p0q_)?LQjTvog(>o(*s
z8Y~9>Hn5Af=9l}=+HK2;cgl&8<wVzmxoAK6UIY6KoHB6Qz<vV<3>-CZ%)mhdhYTDx
zaKyl^gyfUuL|l1Mv%H}3*rU7{TizX^#|`{r;DmvbT)R?UtSK+-dcI|ilTVfxvwHep
zlow}ciZgK0z$F7`$*BySH*kUF3sewwE4W&9sUSYAAjVV>N(FJ5jA=$)F>sY-PE`<1
z_oY8zv0N3!4Ffl6nl+JN;+BEi23{C=Y2c25y9OQ^cx>RFf%^s?7<fqj_HiERb`o7-
zi&PYyDvJIU-RkC56i*C1HSo;9bL!=aqQc^g-z$m}6~&QcADx~NS4q^UBwiVKO_v@M
zF!9Dfl!<5)IZSk_BnDIxN+q^%CGn<`pu_9vySbbuVok)E@R;aZJF`b+u_is4wi6Gn
zELtCM7gcIaN=`J9%S1jCX(m#uCg(QcGm&f}$%NO$TYKD%$MY+TWtByWi99Cql9-7<
zDvPEK<EPrbe=CceRYd73VrCU#R1x`26flu#!f&FWiF6YgCg`sRbfosiD&kNTk+-U7
zS5-`|Dun6Is}u^ESYK7_uPUw+^N6pgiDD)em{@3{xQP-bJ|IaGB~6qv(ac116Qxa*
zF;UY*EfZx;lrvG;L=_X|O;j*Zk*0kUYI+7)AgY?6v6k~tY|Cn{ao(PuQq@E?6V*-B
zU<I}wao^u<vwa`bjw>|E_g*!zwwkDIqK=7%CK{QjYoeZs`X(Bf*jG*5t0w6Bm|k79
zsqPjywz^neT{Je)#6(jrkd}kcHtt|`@r(uX*AOjCv^3GpM0XRdOtd!9!9+(BZA`Q^
z(T?n6V)?`5?l%(hSM`<uIgQps@{RRYsUbSl5S>hPHqpgIR}*t;h#`l3b`4Semn1q)
zYD*1qxrTVS-`m4PPZMvOc*jI96TMCJp^h{0sD?<p=$Te2g{GY%HATmo;?(VAccL@#
zo{9I#B}{x;Q{+l>uMRa56X(}-C#Y>T#jTp6pNak^#+#U6;zJW3nHX+jgo%$$d}3m-
zi6JHiP<9goO$;&-Q%e-C<r-v4E%##KcvHe09ct2{5Ey3Sa}(=oiOEIcX5UGq#oH5{
zdaahAZ{8`_NE4$?j4|<riBW9E=-PsIcNeHF#+sn1?@JTom>=2Vt6N*p0@R1K-RizF
zG10{LCT5zLWYQOEm}=r%6W^Ga%<@y1mKl})Rc*1So%@FLW~YqrOiVK|-NXz|r6+W&
zw%E)C4oZo?Q(Gj}5kHuiMK(7v*Tjz|X0znfTG1IPne>gr&X%6ib;LXqKbiR1#C#KH
zin|M&9qR~sbvU$+C>!IOT}NE6BNmwmm^f<Um<h>*Y+@~$!h}LDYQizG*o0;xXd*%_
zH4&mF$kAaFI(gtiPgGq|vaV~lmnV{`)usuHymu086OHSNesx_VbP1=eE|WN>u2^DX
zsfkr4R+}_sVY!JFCRS4Ub;X*xt}{^A?BguYnEqm7jfr1r?s}C}u%1{wiTB^u6Lcg3
zaeg!LyNSO{?4%KDVuOjzCbrPnH?h&gCKG>}c#<#evwE%$+w!E$WN^5ixLi+cHL=aa
zb`v{H_kQwuJ+Y=tI<29RgZ=19ntU`lPkr&XiCrf4n>b+7X;E~n2lmnsqXGWLTcN(F
zQD1yeU(j1}I+!>0viqahgC-7{IBeobR?pTKo0q$<!YM4QFKA==+WO+SiGNJIGV$8P
z2@@wx+%<8}#3>V}O<Xr|gL;ZoGI7?#IT|DNMPdW7{Z3+?2I4#w>y3M-f%v?ExM1Sq
zKCc^0T*}6m8C)@OHJfvd!PJdOH)--WaofZl>c>m5%NmG#4P3K)IxD$EL(!t4i|?Cw
zKo&Fc)Wk!o+QefME&T2@*sr08``Q0ZL!mSjzrRX&X5zVt7baek896V>oNnl@OW$iK
z5*vxyjl>%hQ5JGrNU{)ZA%}%H3mywG7GNQ#g;)#kk=Woga@P@!M4syfW;PPE+K}_Q
zC*DGWg+vRvEVuTZRoqSNOB;#pjl``+f=-7!hD5IgpM^XY@>)o?=vxW*bwG-Rwd0dx
z8VfqBvq)o+Y9XJ6Gz<AHv}r8*HFldhuCWMr^i9u9o!wYO8jExb8KjAY_bp^v@LQ;B
zp`Ha{p^%00bh~b$u!SNPN?0gqp{Rvo7WQtAE^gsfbV`+Fo?}(qEnfG1i4_wPOIavw
zp)B3-v*u+i>}f0(Tumq%iT)?Q_iAI2qlx(Teu0mgh>8{}S*UKIhK0%&s#vIMp_+vs
zn~0>X$-gxb^f5@Y<FUCD601BdaJ+eZO$)Uw)V5HEjJelyqKT+eC-GSmw?%ZIH{C*{
zHWl?PG_cUlLVF7hEi|&w+(HWrjV&~>(9}XRDr7}+ou)!*>h3~0a4mUTQ_&^p+gBmA
zrG-`&T9cuuicKE6vpQcl^<-1gdspJ^rb4RZZA;c}=2q9iLPrZdEcCR{$wFrfT`Y8^
zhI4BBW@2PB(apk(b;<La2|6XF+%`{lwnohYDZMQ8w(z!vcc^nKXPjT+TNLv3v0yh7
zZ&^6ZC2YMOJM@_6RWtD}b#8M(7stL9KCm#}!UQVELO%;bEqrF7zl9Gid}?8!g^w(J
zY~d3N1IU=oMfLpN_RYnp<|6+x&xwV;8O=qDEg6GYjlmX%Sa?$`ncnGBb53t6Q1?Ot
z9cD7j!six7Sr~0$xP=iGMq2oS`e=h^RzDxT3nSsqYdrM(wpIx#iI#7Sg|QaCv@p)X
z#M9nhHInz;O%FB~xAG>^-gP>`*jpp@D@wBPgN0cZCRzB}!nYQ_v+#|D$rh$qm}=qW
z3QvQxzQDi9TEWCd*9-iUH}PCX+=k|2nuX~WzPB)w`sG2w3=4Bsc!q89&|xp6N&9ih
zo))f3Yc=1G7G_&mWFbH@7Uo)5U|}KA**=<}=2`g30u9@rEzGxYB|4t4zl9)h_-}V)
z(W4X54Rzxr3$g{pf@-;MC`wIDd6^k^a*mItomMRbbymL?B4i<K!Lni7&@DvBjcru6
zVOTINoU!mPrBa7l*k)n71;@f-s@=kR3ronnEyOYl%Pss<FK#JQ@g-JRSZQI6g<mbK
zvas61FWghc9|h=Kf@V(>vrYnkl%BEH!a57TS*U+HddB(xb{DVz!`=9IvW3`S;SUR2
zENr!~(ZVJRe_GgV;ZX}wqow#E>>1tKeHnLOF4(T6Yq~2&6umt9kns)+e~|}TIAUR^
zg}<q%T8jM^4)l-OMWdL8yoKGY72Rr5-l&-5eHJJXpm61K!T}2hY3wwQ`d@6+AsT2o
zqXwrZb=@0#)WR_fCoP=f?8m9q7EX}qS_-O~!fg)pa6!eMrirnYNNXi>ta5LA&RRG}
zGp7xYjq?^RSh#25zJ-exE?Ky4;f96F)Tb7%TDV37{CI5BR)Thjz0*oK?|P@Sa<?+B
zYb9<{jjhBj3%6+~)s1f&j=H!v_P2&ncP!jxt?p5-)<U!v4=g;S!AovQcC+x<!cz;+
zXc}oP=#AJDnt~4cX@M^GU?ROOrPEqIYAv4AKxi%K;J8;7UeoMkBgV!X>Z6v?Q8uD&
zENksrj5Hb0D<kO#x7T1Jr;SJce6b|iT98VG+PE_GVwWy<@ir1{6t_{rMxu>eHuBpj
zU?aDUBpZ2cq}uS>@YzVVkz%7}8&Pe3`nzq!ls4i}-8eeCfQrgPg|tJC<LUh-AfJsi
z+r5;?ZQPH1{~)n8qM(g*8^T5*8{aHIhK)=ceyXvpt4X=GqH|kO;Hdk^S=dGq8%1pt
zv$5An+xa+O{BCy)4r?pu{FbZ((@NSXWuv@}3N}h}U1e;PwejyX-{Q7n@(lMmWp`Uq
z&PKTlv3F{uR<yBwg?B*ZRI1`J*I30yRT~3s46;$pMs*v_ZM3jagOqP4>e#4DEu|*Y
zp>Q^6{g7T7)@FSO^c|8?&qf0q4Q<r7@vvA51*)-;jm9>b*l0>g3q7PZttD=Mkw{nS
zGVMe&8<&5J`ZzUl&4Z+tHd@)}LnYg2ZKI8i4mLV+L)zMCXQMrJ#J$+4#|2J(mDa9k
zM)P*Al{(qzY@@r49yYqz=*sflNXeAMTE4hPgL3z5CkC{0A4z)J=w;)xLNUE<Ol&78
zJME>(I@;7~C*HR4j*WM1yk}z@m;5i&_igmG@u7{6Y<xh4+vsPbKg~QJCp~E=GTRF}
zV7c}%@7Utrn(alMA5%WI@rjKAHa=xdh+iTuu0wk<mO^pY@&0Tt2HO~7W0H-pZ44!q
zY<y{BoQ+{NKDRN7GY+>g!p2A&Ur-Oemwu$ZxYAxsEA5)}_p?bfImdJm`8$ZwHpbW(
zOMTkGwFU(O<84eJYp3{nzU}>risjGnhjkEoXWvB9ytA)I2l0)K$u{QLm}_H-jYcKn
zzqRol<tpZxN_|R4lA4}rHm2K{Y2ybQ&wh4qZ)Vu|o=V`l=+(@Ir}<~u_>soNz3ACw
zH|EnBq$K(6WOw$MXX7UuAsb;EKiimZL$V>;SYTtJjYT#B+}LxRF`=XAogP=UquY=+
z9fe{;wV~Mv+Mt64Mt2nLGn2y|1uZ0gw<te7rb%5hbsG^IrcE<alwo7m7T=zZVyoj>
z*HO@4ermUM_uD%*7TYN3Al<<d8%u4RA(PUaU}HIzY-6*H6*gAdSZCum8>?)rw(+Zt
zwX7Q*qy3AGH8$>a6tuaBbj#gIe0|4Tw3DEVLf-<uJdN}HZexRuG7l1a<n*p5`-Gyy
zq3AzsY$WIJ<Ti)!CN7PlTWoB#amdDDvKWm)8#`?LMT4%BXumtD>f^-8oy1NXe^W2m
z*k@xGXWVUL583ceY`!}QG>(4mB!2HC4s;UxZ5&{MgEsDU5-FWUh0bn`k1KlVT=63|
zj@me7<Ft)qHjdl)$Hoa8ojQxTokgx=?u(L>Hr96*>q;fk&dkdP;&X0~U$@&!%kRbO
z$L;Sd&e}LfGm?W`4$j-SVB?jI*ETNNxMbrlRZ2tH#uXdaZQQVNm8|+C<{GPXtFxdV
ztR!@C^|@)|mW|tFMo#i~5pOTgr2lk``O|$u>B%zpZ9K5?l$?zw5SpBAJht(KMoJek
zzl+%RwR@{TVM7-|zDEm{&uzS*Idf(7OB%T!xM%y5^GM6xd#W>C#2Xt?4stq(br9_!
zhl3agaNJ4wSr;+yJ8$ut8B{Vw)4PiDT}7M&kArvz2@aZf6~&Hw-{~qwb`@Gz_j2}o
zS64E(gCqxO4)QzjI`BD2c5r31_kLGFrIA2tH<98XkAu7pQXSOjCh{>&iOog$#eF)m
z$47wfjtV%K+D$Yr@9oh|4DTi~9Ar9p%fZ_Y{0@YJh7KAzDCD59g9;8RIw<0xsDn}t
zN;@d#ptyq)4oXtj9P_-D-<=tbr~6bS*Do6X{LA!}-9#A&WgV1rP~O4LZm#~9x`~C~
zrqg6tu)D}x-kpvrIjHQQzJmr1syL|Xpr(Ub4*vC^nuF@3yaVZvg1_B}9WXMfQFlS1
zYuV)54(d3l>!2RnvvYSbq`O<b)yln*`=+~C)Lra;<ZfIiPSuT`#txb|=;ENOgQgCe
zIcV*m4cXa23kNN^kSXOdw{#bU@AxiqQLUJn*h92+(9S_e2c4MH-a!Y)JxD*Zhj?@)
zmge5{F)5unY3r>VD=xd!RNWq;n}hBSdN}AwmG*F#uV*ACkL)3OIUup#4*EEtDDA5$
z_=|UD4_Em$J;XZ>-gWSqgJBNdbMU@{52$2viSh1LxUU2AQuIC+?&qMtgCP!vI{47R
zM-B!!_|(Cj?a?2T%|FB^)JHu<%bwzco?>cGF_1MJ<X|v^Wj)2wo&vqxdh7HOZ!xHC
zr_=cT+`(`MUpg4)U<4`YV2p#Y4!$6RXJV9t(GJ%466bn}DVvjMMR%s@%iCM5^d{Ep
zEqe48^oPFj4kkGG*1>lUzH%^;Yn<$0l7p`ud_&aqberLBlc3t?_7<rn-A~%5kV86f
zdW)UC#p&K6cOTKXj~KSvl?i;CJj22F4lD<@gP9I~a4_G&0&;RB&<E+W$XDwmQ}~g=
zY^HOV&Sg5!!A}f+X4<=t$dX^^Kx57#rU9muBr%YgDh^ZzbPi-zuAqZZwq%%r&NRZ*
zpl<rV)V^NFL8W7<n;mR%u$a2Cyl07nr4E)k?na~aOqV-Y!C<9>H4c8IT|gWqfz=Ft
zA^D<l6s54%!Mbc_7UwsP{?0T@Y=eV8IJ%MPCI?i)pNuKXq&{?!!l=WszQsshjBO6K
zJJ{jiF9)w2yr$9W;BN;v9o%xT%fW63XJ|+|*yGUcAC5ct$H6`a`yCv1aKym@hn^gh
z4>~wRl3P7zW8xS05ybhkk2u#y9HklHcr1luEJhsK-t%{S9EB4OPC7W{;Nh`Yl0Tg-
zNr0kM&RGZNXo_=imF9m37aUw7-QwdevOtzRiIH$>&K#E=JnADTdd<Og*5n4+^Gjrj
z{U5kZ!-Ok(?BFgbzc~6nmr0u6V?LGefK+n+%lL?yq%-lKIC#n>KXdTH!AqJRgHg}P
zVsm_yowTB6{y(O^1Imh`X?vG_*ucu(-6hJxwxWO{D4?h)1{4D-AefL0FFEHNB<GxS
zl6>dRy%X=ufC)qdR8$lLAP6E73<MEG`JXA|JO4R->Qq-(S65e8_ssNkpfZHlw<0Bq
zj3_drNR6ThFZKQ=of8*nQM6CVrL>~a&{l|oxwd|v!qjx(;rm0DAjP7{7KHV^MUdiA
z<U~<zLLr%X1w4f`{;^m@l32(5D2Ax8zmyfEL=+_jA+eMorK2b#$gsi;5^s&7ToeUS
z>^PrYA&SB%%16V;Q~se8QW#VecSLcgFx(c!?NL+|ytFWotx^<~qqr-IyQ8QgNz8R4
z`wgC|QT(5@dx*CP2b_DOxG##2E$p#SBZ`_)Ow=(+N3AICk78{M>tc8yirREe4fz@#
zjN+jvrbaO>iie}96Gew8I!5tG6pu#3-_xz4s2jy&QM?|-8&NzS#S>99lq9A;8Abgl
zo{?xhflmp1THq5c)U$%TDDb%`o{yq|;4cWIgdr_d<;ws4ZGS0>SuMilD2<|MEDSFT
zd_`cBD4GgFvE+GGa3Zfou`lnx-5Jep^1OL7wYeZI1hy2owy=2Xo2hN0XnPZHN9Pgz
ze*%+IN~b6~NAXq^W1{FH^j=Z)j-spJ-2_sH?t=6X*i#^9X-MxA#egUV3Z-up{RHVR
zkg2l@3kKc51r8QCB#NPe42xoa3pHGDBIIB7LujaxQH&BI@zGJ7yAUo4Vi+sLi2}z(
zF<y`fH#x7gPzO4dnIzH40;h0viib*0k77m?8>841#Y{<BC~#I3vjv$WaGt=q^lDjV
z!;JHzSRh2=b&qE+iehmTOQKjR#I*vK30x^~xxf|C@c0F0StU^-s|8sT1vecq%CJr-
zZ%48ICeH>zvRbOmWQ%fO!52|%jUpO_7lj{%7DX(Icoc~!bm?n1uIJ{y)S4|-$Ck>7
z!Vx;Vi7AK`g&oED!f<y6i43mLlLCWh(}F0rMX{S5DvIq<yc5OFD1Nyk@7<enK8WJI
zDBh=UY%TcxdKyc-QRog~;0BWqqu|9fy95&Xi2O&3k8i2=M8jLcS>oO(-fgM4(_~*1
zpHO(quor(C#b;6QF6<Alr*Y-^e&+f&yaD{nC=NvNTNJ-X@l_OGM=`mT`X!2kQG64{
zu_%6w;@g|L9f{(*D87$|H*_CjaYFxjaCt^mE5&QUe~98}6x@@3qwXc;Qr*W|spA|r
zqxdO`lTrM9Q(Dtjih-QbN###bf$IgmTdC8MdM1jqf}D%uR}P_PLxHR;@Aangf6&5F
zWN9d-;X)J_qe#(^s^L-;e@1aNioZp}%TfFl#g&`cDd7dthr460Me$D**QE$5zgN`w
zm%0gZ=h*P&yoiQ04H=qD>3^33ExgRVs0OBf*(*O?=#BdqFguwuC3<5?f41PoHQb{8
zr#VYx-W;JvL_)3>p3lj==dYG7p<$+mSsF?TLn#fVHI&g%RzpV(oiyA^%9Kb|4fkj$
zr=dVYc?}grLM07_8kB~L8t%|=n}*v(Ncq<4dMh>Qmk0yZyHl9kO#?%X)}hTSYp9}y
zQHHyiD!I7ZsPXlj&i7<j(@<T*^BNjxxL3n{8XnQ`sD>IEYHFy>L0&^G4fkt!Kr-?o
zq{gkoKb0c{va%0pJpVlPVGVVJVRdV@ueGXuviS8Qnb%vZx*8tS@RWw9H9W522@Owb
zsHdTK(>z{#(QIdK(e34m%nH8_*srtS&aJQE84b^Bc#aMIZ|+Zha`}D7&pKWg!gul|
zZ${3}i@c!WMGeg~ys6<O4GlFk)$odjMj9Gxcv(Xe(S*Ol#;we}tBtDPCj1Y`bte7W
zs8=<-rr~uBZ)oB7%lmIeX0{2BPTKo)meodm(I&K5a}6ytw58EBwA9c_Lu(CfMCM*M
z_f(tkcM?~R6m6?^{!*-3+b~OerfTRQJTJ6Wywv0NMd2kZ{4npVp^Jvm8s5^-RYNxo
zLp2Q3&|O0h4TCid(Kzjp+fxItC+4g;rS+nHL{uMveFgRt*k9lPf#e)0$RJ94Is6KK
zt4!90KeGL{<vX`k!zF2ihLH?y)vr(GvXuF4)x8&Q9i?H_{G4r{q>a%qR>KqxQ#Fj!
zFkZtX4U-xDC^CU+A1hXGe&$5_XXOY3<<~fv%cFH#Eh$(&HNr4W!*mTZG;C<AcvCPL
zp7^<7S3%gCvo*}o@Rx=w8s=)4ry-_6*Dznh0u66#Sg!%^<}B2(Si=$xizG^l*H$eR
zd?l6Cu<Ry%xgaY9{@7NLbG6`W1XgJmQq~H-PT(8u)CLV3HE0suBrqzFoSOyNqG78b
z3ne@0RHN>@Ij5GS#x*1~9MkZl21A3XVXuaL8Y~UAhW9kQuffsq)t*dGgU>D?I4hpi
zz}s(!-XCF7py3^%Z_}_{!}3@1NMztw=fUq%-j$>?!wN|GK*J6VJ0&lZNcm91M;dl(
zJa{2xmvFAEpZBqbJsc&@rrwal`QBN-W)uHJ!>8oY@U@1|gqg(8HS8ChT2aUs8orb$
zH8~&%$0f2I)bNc&f6(x)hVL{S(r}nvb!oT(;d@CU8y65RKb&$z^dUk@o$CchB}(Cp
z9@lV!wOEpQLBmfsbDb9Cq=uh0oD%#OaZBpJEL7l(hO-o+;a8#mq2V`4qRzk5^6kRT
zb-sE5FBUv6bRx`nQSeIw{}df~^~q%oAGcFXy{h4F4eew2UkukY{KH`_h8i*atKm9_
zwf*U3V@Qc1l?=SqF@_>B9+HoY7&2pk5V;f~J%*yO@Q-Ty&m%osmFDCCiCHlei=lW7
zIWdr!EzGwFydtW0t`z>qX)LE4L}J+Zak+BsRbCAFF$^q|Rw9OyF_enouI%vfU0O1h
z5%^Gh)vSG3*`e*#tud5~p&*9xG2B5NVyF;9VGO*d<MtSoh$820v9K=u1xCmbY4syn
z6=NWr-(FRUp>hoO#854UDl9IByJM&t!`AlU@_^o7<)t;uJuSu6K9sX0vrP3^c-%c@
z-Yd$iy(8@GS^rZtW2hCwQ!zX(h2AfzPx31uhT1Va7{fy`JQ_pY7#^0SIx##V$o>D5
zf%JdjqK+Z|Q;!Mp@fe;E<h^U*C|5GOU|hwl)&Em14`$Yjfsn-dF+3B)YcaeooX^Ja
zd<+c)e~uOD8aCMrF}xVV%P};G;iVWF#?UB+#xZ#RM7X(Z$NyB$ZTZfqGC%)MG0J^R
zO=EZ^hF4>F{GV{@>H7av$quSkhfqV_2Tkj}5yP7?G>@T~6ht~3s|8hxp>+&xgvd>B
ztpq8!C0tg~HimXL^?61_o!%Xxs17l76t?*>bc&&K48vj=9z&NHy2j8ahQ2X$6KnSp
zw(c?Xpf3r&sC!tuHX^OJP#C4-^%Hymn;?e%f<JmboS7L!mk`R(7>3;BZ`mh}+wjRS
zb4v>Ij)-Ao43lG+62qt%M#s=9KWn@&pV3m^ieXF)M8?K2PLNZvu<04T?~^|vhKa&Y
zhDm~Kdp^SKQ^omb#4t04X@Zk~y2xawV3-xdoEYXx(rkfqI;eSc*DEO$MG5~F%^tWS
zm*!d!!@?LA#jrRAE>~C<!*Y?cMBq~Pmq)_K$_laAD!O+JD+Rx=eJ)*#C$%zljW84W
z<kf=Nr%Sy}lj`WHV|@%8*au_S6vHnuoQ`303|m-G4BxOX#1M_)qZoF_pv4dqA@9bZ
z#}JQkhi2Foi5Lt)&UR2{43^+d3^qH|%5Xk;Xp_9t*Z;GaE2&?1P+kmv49pS;Wt-qU
zLv?!$@5E5LW4O1jVaL$@26t5N#qfR%9|-4;7<R_6OW=oWT;aLF#we3M7B*5oi(yX;
zE51zM8^gXBJ`p-^MI_}@cE-=rUi~76_yd)5_s8&g3}3L%R?huW*uD~YfR?-||7-fc
z+yVD(4Bt_5M|CuY?}?wyJf4wx-;^?kB+FqcFd=dzh96=$za#vQ!@#nR#qgsr92a;}
z;E5Q15~T9op(TH&4yV#j2_(W_pJ!;67#`E{xQ=r%{2If(Iv)8a=eHPsk0D#fEjs>S
zK{5Qpp*w~PF<gw{uNbbxa4CjAIV^0-jC4}ZmC3r$F`VbT%m(dWX6J#zpWcdG<;WjH
zhfeBmcG6C&X(#nnk-VXu)VxmWItPCp={hoWr0OW513GxGgxg7_={VUi?_j5JAu(Z5
zq5s-RWpq}VI<j<(?yPd#7ZlU+TG{OL_vUr%93E^~x3em)BS*)rI?CyY=*ZPkT1Ocj
zc{=hL?V|4OqDtr}siTyRk2)(J7CNtU=m4?K>aR}=4|Y~uq``$)Wpz9^I{)P^%1%!y
z&{1ATMICqOsGwt2gM39DDr6Pvp*{O_QM0<J+jQKnV_g^3?NIvrUDOX<)SWsi>9|YB
z-8w4kxYR{eAy3zEr$(f!>fBY$@2aZmxJO4d9o0qDrmkvdS9Pqb%I>DBc2iBesm~_n
z-KV35j+&hO(ea?L-7k<uckiYiV4)XNYwMVPu-L7A^Y{#UNXNrEm{do{qdMxcDRl&&
zmLg^Av<N?DnQ>9Ku*y&9cv43P9UXPl)A5v!S7}cjPwS|!<3$}W>3BxRvowW{=P9I{
z;*u3+{JooMpyLG{$0|m;Ud)+Yn88h>Dc#kZEpi*`Xr!a5j#qS)=&l-5hwiG0j+a@`
z%AC5z^9U#Wp53gwsy;n$sgpCbyW)*|uj_b2M{6BzbTrfPrjF)1TIk^kGmE>c3k~wd
zXXcIkBGOWa@n`xc-<DsKidJF-_nC~gI@;-I&!`S_R1WLN<4LRkFL!XU>?)6DQ?Zh_
zM0R%%>wB)d>ZId$GqbafE;_pEDBeSLqn@40R4bLubrIcZx*m!MJ8Ul<8@J@}{jj%=
zK6-d)KwljLbPUwdPon(=lD>36WRQ-*I>zhaRND}NqXiDtF-*sB!I?Dj2BL$LBsXSA
zMhT^1k8ob-Ey2g=7%RxQ8_XG*T_tq_P4q^%V`#FDDLS?$5KUmJj%hk}#IZAu={jc6
z$Z>RxW2TN-I{wk|ua4O|=IHoT$7ed`>X@e^rbE{;U&jKm;RYQGbu7}cnu_UItYeAL
zSL#@*V`taW%XO^Kv5ej7KzfrYWeHWW@a((MJwmI_?x9wZvrOn$Yb9gn-@<SCbvoXb
z=#gZ3hV?oKV?ESH9h-D)reZzRRvl3tTZHYe3#r`Zpb7qwNT!f!CsX4(5<1?~@jhFh
zP0Y4FmA+kvrNidv5v2G!9Lbdw$Xu=<$3%$70pYgLX&C}~<A9uPI(jb(ztP^g$^S0R
zD8HpX5Xy%-c1dM-2;8ZIYh`&)#78=I3&S1`i9OZ5J;UmMER@+L)As7vr(@=~p=EA6
zQ{)q&Ki5<3*YP<=GaWzc_(B98rYUrMspEi-uXKE^<69ly={P7^n0<0j^^M@&rHJou
z(ho`953LW2i1$?IH)Q_6KB(hI9Y@(^Ud|$A?Zx!tH~HBRCv^NIg|dNegi|_x;W)43
zS7AG?gRiWt-5H6V6?nrMzp=CExX7`K<G;`;fmJ&%_yvJ`daA>s<ew6~s^hYbzjR#T
zsCz1W9Pd1zI!{H2Q@y`+ToX1@c;Cu(9Vv0#702Ciq{dMsj`DF-h$Afy#E~CIi8zYJ
zkse15Q+K3h#E}`tgsx?Z$HRd)D~@bIh!-PU)$sj<;T9n_ofRP`qY;Vb3M5Zn99Ko*
zl0qpHM_EBi#Zg)iX5l>)x5hzOPAEi3EQp6!h0<2xg`q-c5tZUlaoi@++vB(+9vYL(
z6@@}u-FZ_2andVGw2DCPDX1F9J#oAk$4hZki=%oRkHqmPi;m;IIBE-9jW}uwLJ745
zxnJN7ttj&WDU?-vFph`fcsLF|zeuk`#iUT;=N6%E9FN6OFOH`q`{Qx&?BW}oPYC77
zILe6)pN^w`91Vo{OdQV&@;qCiSLpDR`CJ^|Eed~UGaT*_w#5s=!=#3BG>W5n94+E#
z9LLLXydg<V;%F+!>v6mi$E$I?cGFf=gGS>bD8d^Gvuebf3ICe{sT)gaN&ECtZR6nH
zqE<p_9Y>ouhW`=r-zDm`qwrp;JyYYLClF`GPH{w2vM;_DG2`eQN0&Id#?dW~(Q&*L
zM|Tl5Fpf_?%IzU|&p3L;(OdAoarBF$&kY`t*8c|2m6QS0q;{d!OMTZX+@i&T2E{Qr
zjv;Xjjbm6GBjOkt#~+ewI1SiaRqL(l^;V-q0{LI>t$4=-N7ONKa6|gyIF`gQHqKjV
zFrKa+#|#eUaZIE@-uxBE)Ho)^F<G(?>#cV6R#TqLn8xPltr(`qaZ!-h_vW-oRkPxl
z9ml*l=F=t4rp}4;BDvJLad21Kk#EAjncGLz*^C8oER16jI|8z7E3Zl)^=u!d_s-$e
z;?g*l#j%l|AII`IR>ZM3j&*UYjAK<CtK(S14x5(MzK@#JM@9RnJ*kmXn=*IyQMHbS
zpG9xSu|AFsaeUK9o#~^vd^EkUYP&i7y4)PcmN;T@=y7a~qjKM{nWA*gzN)L>8cioi
zJdT9a*AQ4EJ90<4vh(|@@4hL#=S(q+RemqRU<=|1bOj~_dIEicfxvA7x5x30Ak6!2
z9Pi!4-;d*ioA~aM6+Vn(R~%y!;rsSSaqOmJB+#2tQRZ|UXX4nyCeALqH;#RDA)y~+
zmE-s{j?d!QAIIl$d>O}qIKH4C&I&!5i?8@<!Cb_@k}O{f<S{Iyw0k(~TefK&$Kv==
z=-<b2IF2K69Fl0gb79x}A&#SQ5E5s&*jF(SIUdJ}IDU@flqCHm@MIiWHNrkyx?jk{
z@C!$neu`yHuO1e9HjZ-~Y7(fGz^`%q7Dt%`$|mqTYsax7j+6w>$8jN!zv8$;6UA{U
zjz8nL97n@`>U7_NZv7PB207XL(X`^tK8bL1+|@Y#j^kP!|4`M{sr6pW<>imOW^sn-
z&}32Gzx0rP>YIKlHGv`tWG0Z6Kw1JwplAZ=MEa|W{gvjFYtvt4B#`@DM(0)Gv->5L
z%}ol$639-VR05?FczA5VNE8|0U)_?xlK!f=z#M@Qfw=<n1m+7Ykw8g7$j_ZtH?BT;
zvShY#_10SxD3?H`1S%&`kU;qaZcm_M0u>S{Oh6@YTLO(Pr{7*FoPdo}!@t6rpYQvt
zqd~bl61X#go(occJ(oJ~)68Bkg&%0Tn^`4+yAr6DK=lOfPM~TcY`A+8_@}?x);hQN
z099px;>ypu1Js)7dG{u8Ujj7}AnrVw@yY<zZ-AOHK&|^Q^Zo=LNT6u~uOv`Afd><)
zpTIK-JVYZT@OT1GBv2=TM-r%;z+=>8OD=CAc{G93zu&rkfZ9DkHT@uR$Pdlf)~oPj
z0`(GjDuJgH=xbM~aJAU60V;E#;uVmrQQ<&!p>4sl2|Sm;O9?bg;Q0g^B=AB4FD9_D
zZdQYVYVzG#55JoG-idGkeC=dz`+=%a0*w=RIe{h#3>~PNK9#|Z`Ol5Z=VZ9~Rlz+y
z^5O&4s|mc8KzkY?f!7mwBY~C)v`U~^0&gbJJb@N8`}>iT14G+xSP+g^*9L~mgkJbA
zt91fx5@?%1JF#JjL7_`OI7o4Q4w07!DKyCFkU+--x+c&qfldi@PN0i0_Zg%jbxVEn
zYTn^zO3fOiUT#*<J%JvylBDh$q;_A+U34Y=#2|H9#P&&WO<fMda6$SC>?g3lzyS#i
z6l9RV!2*W}WUirt3`=ksUMPfNgiuBb93^nHz_$ceU6?vHfpH0pPhdg<OA}a@2xn*~
zCNMpL8G=s|I9cEnfl~!eOJGpdQe>Vf(FFn-ot41soA?|-<|epPAQa0mKY>|ahx5h@
zg|bNCVu4F;^4t)+T%v0Pu1H{|AggZjtWJOmP|n%})+O-vP5Pz;*5AZ8&}RhyqeB^T
zZWertzy;5Td9?&$3H)f{xCuRhIQ_@KFawDMj0B1q;Q~uD0ZSU|w*>42oCJ0z@L>XO
z0!g9oNWc?hdjjty;3vT4=s^OD_NHzVx>FE-p)kBF(f0+uCy+CBq<@e=ho#|L-{Q;R
zZ_r%{e3Zb~2^>sdHwS+a_;~_*IDm{S*vqKo<zcFy2*ND;6ZkZN&p4b8$&U<Hg<pj4
zq72mGiv+$*;J{7JuSDA7y<tK8<M2%a-_infh6HzMWqy~y;RKEd{(S<666iNrk<M#m
ze-H_`<)<A>;Hco-{ycB6qL4++%bZByrv%O<a5jOHl6oqEUucBpWquZTL!aa)MNUiV
zrosO`7tSScVn{eRF#IY>y!!KZIxxro1TG|yVj$JP#RM)T@Mi*-g@=Xm?*p^^mB6;a
z>Kcc&1g<1-m7VKC=7V}zyT3UgAl$<6#@D6(P2jp@<XT7Oy>SB|GcvV^fixo=8(|<*
zkfH|CiM$*3?hK(2`Dw7q5}a<sqO%R$VxYKz90QdNR51`SkZa(zL8WgqkY^y@z^w+#
z87N`k-@%HZw1JX>ml8;sH|S*~TJ|Qf;AV-+KzYF{7$`JQW=N>*(?h~rFo<*+qFC1L
z1}fg<zr(<t1}aH(^blnYQF(Rp?lN$<fmf-RfvN`XG4O<eCk<3HP~E^I1|BtVuYvmv
zJYb-<ff@#C8mML9ev#AUw{-qL{d9;*8yZgOv)t#G<UMHMAp;K^sAHh)&`_(-uZGP>
z+a9PLj+{K7_V3#>>Kb^=z~ct4ZOgrTsCs;;TGOK}=c8H-RrL%!Wnl3z)zHAx2I?DV
zVBiG<&lq^tz;gzkm(qs~Rr*lHYnne88tzrUJXDn(rd~Agk^x@NH+fykW5fRQqUOU?
zBLj^MylkL}fu;stF<?mQwP7lMxVm?^;=+{|hO2hN)$0b{Fwn_BXDOwbfj12_H*ocl
z@QtN~ftCi^8E9{ym4Vg<+8AhSfLE6AsN}Ny(~q7Fe{>EWuBHx`(hYPFIUQ-(%305y
z3Qe(MxZ)lkV|}EHfvyI68R%`Gn}O~IdKl<QSSs9E{LilN?R5Ka#f)Eyw9|t35rI5X
zps#^`28i?*I6&Y)frA7xX|RDIH}UV+rw%tTf?j8$q=}IRMj80Rz?TL_8+gmW1_K)n
zj4?2lu5vtkiGgtj#!GSY4NNdF(ZCD?GYw2KFxkK~1JeymVUPGLz102LQ`tJ3b8g_-
z7j7B0zsMcE!4uo~ML)~HYy)!*%%jYBsa8J}W9l3O{|r}q%4NjLrSYC7Zqy~hDlagw
zkfSU6$bt05M!1k*Xd%8#$)Im9HLy%{W72X1D-5hOu*$$%1M7r;wGo!MMsOkw^{QpQ
zO@%vQy@67l!qn0uRLv3U>z^{+vpJg#SO#nZn++a@hOGvo2I3s#rPi8g8#6#98+U?k
z;Qe+fUscNH5z~f&tWJ1wgfb2M)Dd+Br}7RJCYyl|3?%7_BH<m8<{JnMY%{=1^jQ5~
za%CGWww?X7T7<QG*TBGx$a@BUcFQx$D(^6`)4<16z`%zFb{Y7{2+N|a7-(L~VWGR(
zcG-~&H4FC|*k|BV1D_e7F+UM&?3;wvBf_Ke7}#F>4SX(iR)o7*X`cfIzB2HKf%68w
zHgM3u8BzEf1K$dA%D{I9zBh1`zGUDKJ+?;ZoJR~C7CW#xsBp7R_(AH+f=WJ>@uPtg
zG!ENnZRT--hkwpI$=Y#XS(3_HFbg?5Ps}Eyv|l(N@YR<O+5JVR{8=gboWNfV{AS>H
z!O1zHep<z5`D}&lr!p__5n!T-iHim<8Tiw{Wdnb6U@`F5P5!F}t_XhQ@!Y5K!XElf
zFZ?65_}9R7Bb+m&<w;L5!`7j2YQjpTnc?7{ZX&}31TSiah9&U^%rtR}iQ*=*OcXPv
zro)kKh7~E-KD^p2$3(;oeLmj|8;&8@M4pHmHbOB_6pi-tB$P5y+C+B~Jxr7_QI<kX
zJYnKi6Xk^eUK0f-%A2TUqOyq!CdRZctZ1Tfq_EJ0GDExFW`-_wyNM>BXS0oHaKbxG
zuxXYy%DU6Ux)F*^!z@)y+-2f!$xa=rn*U80-Xn5Isb-?Olv}r11?tbC{yq~mq-r%y
zJZRz}6SYj-Z{h*5No`?fi_mV&zHNkh*hC!@j|%+};i1#At*If~uC9s4%&<Rxi~_>p
zX^|&Q)Dz|w0-rL`z{CqCo;Fe6#52OoPWK!QRleX^iFT<~_`C_W=7AB4MZaj`CDz?U
zQxgrzAaY(7%d-fE#wK{$152cwlOxnCCSIj+OrF>lMqe}Wx`{UgC-WzF=TRmRnvq4&
zjhmZc*P|&|g_b5-nP_dIjfwUw$V6fPNL!la)6{l?)4iFcM<;YJ(a}U#6WwUQPUvK!
zvxzPyXau$n8}acv5tg#HYiUAy2(3rh(?l=6d76lu=xw5piRmV0nCNSwpNY5F`t(&3
z156BMld;`R43hc|F)^6cWG(pA>x5UI4j;`7bdTXCMwl2SY#e_^3c?yKK9OU-nLk>h
z*(3jZZjLoE!Nf!%j-!Wn!gv$+oDMra`^Y2{lTA!v>p!2tsphFBzVC=>5@q*cMYy+-
z{y)>iEcOc%t4z!`F~`J06N|)4=hF8&VLm<lK>9or6-S0GNW(5L@!Uv7;$jm^Oe{CC
z!o*TOv!2RWCa~Q|)xLcpqZ}baXYLeApogzEvBty(6B|vel_K62{&mdWC~M-#@a<^5
z(8<qnZ<C45!VojD#l%(<Q4<=qI$eH^7-7%I@bSb(4Eg;~H+pHpgkj<{6Z=h=CM*;0
znRwrXZNf3(neb`1OWCgYXHv$58$<m)CsG3wM_5f0@0i%ehAYH@SIe{3RE*}OVc#`D
zyD|EKi5(_(oA}toP7@!R;SlkW`QM#}yF@rSGb%->75#IMiM=L1k;bY#8KmqJ2cT<F
z?59#|HVR*{J~#1&iSO86EX%|J69?IYOrB1e`Bj(ld=h=dZu>#%*Cx_ODYhVu%%pEk
z@OiO)Ys%@Zk<T7VJ0t}i7I^fbv?C^dFmY6b91|i7tzWB<6{$H&@t^()c1a7o<me}A
z#k#N}CaPGt%fc@vPBWv0JPT(`oHbF@Lb`=>?Ea(F-zIpZ^RFg;Gx@&^f0(#r;!hLR
z+Ty&43mo=M)UKMz-Fz%@cgqS4Lq@5~%w^(=iK`r=K24u7N;#uKujb;V?*!rT8rMwx
zW8z<vlh2{$(=4P|NVUKp@kOkVa($G#YqaXVC+G3e>W3f?R;UT-gc%kxEo2KDDO--`
zWLao6S`jH`fsk{sjNW3QxP=@G{NEk1!1YL^Gw|RD=E}EFV4=K)5*A8YC}p9vg<CC@
zvrxvuhE5TNzA0r6rlYLIt<B}F(TdTRpU-1x{$=<9Qh`<)ttwh56hv9L&BE=X6|br!
zL#emIcVqJ0A;dc^RH8B#z90VIoO%1V)ZG@UO6qeK?y*qKLLG@#7kIyg2Q1uc;Xbba
zw_v}eY6^Yd$<*naa%u^MH6oqG)wb}Ug^D#pm*b_13=dg&*uvQ}X$Rj@*p~N*g-0#a
zweXmQXGG597M`&1q=kAG{(Va=z9WO7=(*IVsMY0LpSDn+RvM#fjZv?S31`MAnaHz}
zw_TBpkz>^J78+Q1!NQAHc-nR&3oluiKSni_DEWyqFo`y4%<BA@{xa=+Ag77I567ri
zEWB#rH4Cp>m|<ZieZWF93+-8og*PoUxA1rM{8`;{T1dHFd*ojlqgt}XEwr}K=7usB
z+6uxF8#Yh-ZcJzpW+CigL5)>|Eex^H(LyH+oh@{+(APpg3wNF?-_=4N3mfkYy{?;u
z?iPY4vU=Q<)>DvP0(%R*_)|_fxr~YY{Vfc%Fv!9H*7}douWrDn$Ewz2<*Ye6p5z*5
zVYr167RE?)q=iv}+&-oJ(6MT?g|{p$9jk~_2tPm$3o_OMC%{P=Z()Lki54bVm~3GR
zT}2jVb9pmUr&^dM(xzMC%g@EJ>Xvb#obiWqx7QADBb{X-ZXsb|wuLzs=31C%VYP)d
zRNKM=7Hwgfg@qOtSy*ggiAZ~3oO<T<2ybku`eyFf;u+n>shTAU{y3AmYY~=PSYctM
zu%+1rZ;w-}sMt8g(Bw#Dt%Y?KHnTHYc-z8yn%BZ63qQ}!_f}-~I8b7Pg?;1HALG=^
zca<vgXIB1rb^KKJRtr(q*FwxfR;7$~r82VDhAsHOc%@t5FMe(lZa7|zAFm90NbxML
zhrIJ(x@o~;N3h^nc-O*vqLORDv)~J!WT$>MBN(p&3)?JgxA2aIPsfM$`D?r?_`Bfz
z@k}1i&W)cVqdD(e_&{>)varL#P75DOG%_LNuQDOLpZBQ=D(I8*k%iro)OCVlVCr60
zicOQm)FeJ(5f+-dc*VtM7WP}1YGay>&n<jmVYH36Y<y|qfQ8yN9<=e5g|9jC*eGk`
zpoMQNT;_;p;adyeu`YEp{@}PF#T~bB!ond7hb<hj@B`a!f;z^b>}ojX92Fi?h%@}i
zq2tbQQsO5ICpp4%G+--OIK`3Q!f7kqU`XK$`{nPMpw@kznY}bpq-XAtwA^zRezowM
zh2IG$sQGQf8GHVsqNutP^111l$JcX{?0E|pEL>y{J)e0=;GY6FcT6EA+A-ydg{!pW
z{QQWG>l0MYMD@3YYZm_DfMcPkjdU9oCaUWk{B0Dmkz$A5UT30eHc_S7fQ?vg%H1zT
zHvW@0Y@*^#J?5{4vnQ$yoBya#%tog0lfuKwvTfXAqqvP68woN`REH*pc6i{;3aOLS
zU6WMlK{>fL^6YSjNWP7df|L;0Xp$n4p_D{R+sJ>QETd(SdaI4{RMJK{J2Y2;jee8V
zqedA*o(EWHqlS$O%W{>C+icu!qoR$wZB(^!hmAXJRJKvYM)M=#oLD6rt0sji(SPou
zsz*{wpUhdXvtYzs*_@dqa*vIBZQN(0nvLo<Nb!ZAM_wG9q>4_>Jv&LUUt|@%rKXKq
zG(yo^?iWbp0ULiG%OvuUjfZV?v(eo~9UG6>Xew5E)W(`mvKmfS&)TSK<1rhL+jzpp
z(~|lm?bf`=Q?$>{lJ$gAbaJRFZ-XL*NPQd62%UK4$?7>9&)aBV;{_XyY&52*Rgo8M
zykw)<WJUb?ubB;PjGU~9Y?!S6yi#oYWc9KgUKR26WYvWHpXFSetX{G4s*Trdyl$hj
z$bW+pY_zh`nr&fY!}y%$Hd@gBLqgwZX~P^{hMQ`M=T8Y?8yjtHw6oEkm6{yBinL3}
zEUS$UHagnqWaH|NjMQ4W3{34LxrR*%7o&EO61(24*VZYjhYhtad$5fmHhS9VWuv!^
zJ~jplok@M^0D|*JEu;N!(g)b!3Mf(r-K3CVsNkan4!cPoZezqve54I-c3`exiXt3C
zA)lApxF?gZZDR!=Cvd!t2{tAQUS)47@-R%2=wusH1UcNIG>Ow~%&@^r(uaOgWTuT-
zHa>OmnS<Fj=Gb`3!P5@r+L&kK0EZnL^XX<bd>es{g*F!1h}zI>EVi+P4r61jjiol0
z*;q;M6+>xlQkL6T!I5f8xZLiSDeA7N>i$D1t0lGg;?!Mj^7szC&c@p|Hrd!L^!02?
z8yjsjoT}PSRX;Y0%$XXV7RAZQEyBPp;adgSFjX};lK#b16|<q+ux&Ut;_TEm47R?F
zGZ}f8rm7m#)b<0JmJOb2_5OzuE;D{=TIdfiJOI~5(uOC}HVSdqG__<%IDBohvE9aQ
z8z0+v$Hu!hc2I(i_iVf`{2$Qw?#yWL@2xz2i~NTrd-8bdhc<TE_=tTfQGpXam#3*S
z`*QQAtLwEQdu;5boo#$ZbL~yt$Dx2Lf2gxu16^sl+IBv3KL>vsUvSuG*B+n$Fo`D$
zd2$yQes`R%c%t3h>FR5m)JC?0TO532<69el*f?+FI~(8I_{qje8;5KhwsF+PF&jrj
z;U75K97);nb9QvPnw(dLhiLt1<G76zH2(S2kEVw<8F@#+iMjclAwNG|{cPiujk7k+
z+4#lAX&a+E;S3$JmAYky>ic+p<YYG2*SUFRezozNjo)dRcH!{F0}u!!_lBLQ>I`+k
z#zh<d*!b7RB^!U*_{+u>8<**RS5odcpH{S1k;W%88_iHxIW*bm|4ZsMcB>hokb7(7
z^Ll6^GiRvl9QGX)b&&2L)j<&lX%66or|m^&D6T8`W`_Dha<#db``pP$hJ#E8Sq_Rh
zD3}>aV|Zz%8aPwUo~icD49}1$?jXlORR{Mth&ae~P~JfW2YC+i9h7!Z#z6@OB^{J<
z!cnF7op}qJhVJpF2yFhp+_DaCbx@8)IC$$y<Xn&Zva{4<v%;-LO=pFLE|{eX9ViEP
zI;iB}HV3ymsOaDh2k*^NJmIa_iJXah3Qo*Yc3}n=WR{q%Dm$p+;4TMuJGgIlD1?7-
zn#@**o$#fdVbp9@%|Ues4>@?)!M$X2aKD2G9Mo`7(+O{`spVk)Y?XaETv@Sgw))_U
zY<^_%$gkQC9+bL#Gh1<*g&ot`oKwfaBMu&S@Pva$9n=+u#~g6s0auKC_iEUb3_J?v
zNmk)Zk<W{wo`Wm1l{-8?XO6mSj;inA83*GWjCb&?gXbKyrw|9vJ80mbse@M>ydYv5
zI%wqJMF(AY&`qVtOHK$Wys?A&TT)+k(8NLi#|vIxl6mQTde=E&^+(K6uR3_mL0bpy
z9K7z}4F}B~v~bYO0W0+;jgXsG+s)*M!z{_t(m^W+tsS(X&(tqSDa>3h^zC!hAwjrx
z`o2;bS98LmdE!I|2OS;sbkNH|CkLG!^l+eEOzq;JtAlP1x;q%{XO@_&?w+fjm>X)v
z)djri_4T>R`?fs)P4srq$H7Pkqa5^g(9gkO2SZpF2Ll`obTG)lh`FlHJ&|dWedSzb
z%vHMuAL?Kj?LY<xuP(^HI9Ju2rz)NZb$fN5;!n(O^THBGI~e0&EIo~NAF8GZapSyj
zbUiNk1U9{c)ehD;n8fCDFo(mqgDDQCit%SSsP<&mG&azYyn6A>=|a3Fd1pG9#rBfJ
zC0N#My7c_8(0Ozu2ahdKT%obR!9oX19W0ZKiySO=u!P1b8{P%^Ao=I3G4qu-UoCgA
z!of-htEj+js!TMOUn^CXW*(UT-`b~B^VM1h>m2NGu+zcY4%Rz(-@ykWc>{a*^C|B-
zSi3-Nbg;?6X1b`Ixy3=kfg$)-fl)S-ATfcuz_>v2U;aDYyoq~)SPtx)6vu&k6HhuI
zGqW)GLJS;i6J)!CcLX61QwiU5uxo+(ae;FBho2rr7KVnZxlnybx`U4#?4~6bs_Nfl
z-abCkZlU^EDn*{X^rD4o4{h>y*fIAx_=G-FJe*o*AhO@V=Nxuily&iigD*MAyD0AB
zfP=3b{OsVAgRdPNbnuhN{6^sS4h}i^R`Blx&JmRkJ2>LtxPucMCmkGhaLmDv!mwwd
zI<YW3M6~0lIk}6}!;94YDS6zXmR>6DMmQ;K{9jDPesOS`_Hpo+gEJ1!O43CK=N$a%
z;137q9sK6tccI^atrjT;=DiWUAW4i4TBI(~izMk!Arg-*Qdb<LxJY$z)xqBmt~vO}
z!M_f!3(vkqs#1DZ#$t8H;&7<1@n^9Hi&YU9X)e-TWVqqre0Lh)qNt17*V9`rR*gsI
za*0}|i!2w#Tx7fGa<uS`uHjHNWU*SdSS{`o_OA`KE96;aazsL|3um#4xH!02om;H(
zT$Eg*@?Df5A`GPkGFK@Vm6n9HBSLtqi*hcWN=IE61un|-gYJ>+YA!0cD0ETTMHLrH
zI4ioiLy+5CoGq4eyWsVfs5=FzB#;7+mkghJ?U$&#T-@!Vs*8JEj9Q{%OLLto=}V{P
zae)vSW-U?Cm$It6xYxyfE^4@V(8WV8YPzW9;sKh%g}y}H@8Xvw>iE#`H~pte)ard{
zYxZTQFAep7*hL)|kGOc0)m*CXS*rMUI;M2i6C3kr#s*7Oo2BY87mvGm!o`y=UUKnO
zc1Ar`*2S|fo^$cEi~4T3b>$fsy_c$KOV#UK@w8O6T$8!+Nbd748n}4D#fvU}UX!~m
zBf=wvS+07fVAoQ$ZB@A)<ue+(Xyl@?i}S|{UOJcE#KoX9sV}?O`)Jld3Vb_!sd&{5
zCy-maXyb-k-d+><x{EgiX(o{LH(fNpiMJ4>rHfXABy!7=fwP@$T^w`qql<Pf+SA}J
zI=I;4VylaeE;_lG?qY_E&U6?T{ap-j(bYw>n)$uhn#)u-7u{X-ke0f>H1wjLf^+JF
zmzVW+(MO_v1(Ls?AUtN7wO|<NVz`SDtfPy;E{3p;mMMmzF8-Fk@Wh9?XuVAR_DaD>
zHoA*(F2=hU?c&0SoG~}0y+x;bG~4_*d#q5HMBx)$OqA$U7n58}b}>bwOzO8xZCa*w
zEK@%(Q!g!7)MuKDsp;kR7@0F&%yO~V#qBH9Y!`D}99^y!x|r)?o{RY|7Ko4%C(3VF
zuKYfcVm))-Xdh`mI(N@<wMdeRu24CDM3%T%O0Qd?mbrNSMD|7(%U!GxhLtW>xmfKY
zF*WRT3~T5-E7aSPx>n#ifusJ7tQTa1K>qb3Go@`3nVW@3J)<r(7eBaI*)1nVCwK9#
zi}zi`S%l#4xiDOqE+(u{+gw;KY!{vjpM9K;IzPvCkrZjf8Jew73@oer3iU$GT!w&t
zTQisQz?87v#XGd;x|B7-^JnMCU%6!&;*HWiaIwS1P8T0?#CGwei(M{0a<R|FCoXoo
z_}IlBIy0MZTM5eFE)ot4Y&@|1l@;n!PX4&q@8WZg5-Y<+Yc=hH+ABk4-dw4;%(%}=
zb%6cO#kVfL6P>^280F#{7aLZpVpTFeT&Yg1R6LrJub|(%IOO86iz6<o%R$Hda^!v1
zx2#gnU(UUAmCEgwd(_2^Dp3F9E>3U&N#ed_Xw08n{O00!7bn?a#k{9DQVGJ;Uj#WV
z@QlEkGgE_ZIp;VytWv)UB-<bC%N+NT;n;Y=#YGO$Nn|E*iRIGIU0jn|To!mm;9ml7
z+>w2i9w^sj|Ks9c7e$gtOXBz4IoDmJB#|mO8Ja8#XEho4vxATnBvCYp^dw06dq&E!
z4^mpK3eA|6M6o1FCs8Je>?CeUA}@*jBzO^L@g#DRh={7Umk0&sCc#|%<Hk8sBK!VI
zEs;b?Vc<!XmCB_tluF{&OW_DyR_M1TQ7#$&#b~fRwIGS|N!*@9#Uv^uQJ92E;<hCE
zty0{SSEFpf!d0r?;T$r%tJL0A>Z6`1cO-FV5|xrzwI+N#@ps0R=Q2CqA8GJMv16-L
zl_c&;;%+IZY7*51xkn(GZ&<8)5;rauuaQK}BswP1iTWgQe-h6o@tiO}KqG9Z@TB0i
zlXx(Rhmv?W37(JiND_|<y^g@&t`*iz;;|$iPvVIruB=k!R;$NWhwqsz@wL^VNk^?#
z_1F+kh28n7WO$+N(@E4%;u(?9=%MTme}=z5o=>7dGMq_knZyf8yqFA6CTW($OGz}8
zT%4e8ltg3NGl|!dcsYqCNi<F36)N_1;q|s<c*`dbD6Up6ugsU({A8<fpz!r1M*f`o
zh7`1Tb@)E;#;Tmr4Z;b`H-*?-U<(R7Q|y(3{LwF#Z<R#rB-$j=R&;Jph9uev&Q#Wd
z;WOE|(ILqj%!~77qjM5nl9)gxljxd6w<P)}F(8TVN%UZAiZOdiL4A_wn?x_cdkc(;
ziKq_^&On5LYy*=Rl*DM^8JxrrR)p=&9oyWID#T$)^j;V~ABQI~B8iVzt1*Yu`Otjr
zSo$d8r1i-EmN1V=VyqzJk{D0NIGg(0YBg(KX46MAimeS>Y7&({lrmX(GS`I7*Z6Si
zv?Qj}Tee~0Hq1z3CT;GciH})H%w_|5c*(<@B<>wsxFm_Cg3J{-PvCs!6@&~61z99;
z@eSe{wJeF{N&K3`Z%M4+kdnk<I`*~nRY|N)B1mFe5^IuJo5a>6qDibvg2#O@Y)Inm
zoA`P`_%*jNiA{oUPGSpvV|6My?S+N4Ylnw~Xi3B*)k#86BA$eigemn+u)S8NE?=G6
ztx6U-tz`I9$)@A2PCfVWe|vuxT+eosNK)a|sWg<AgwI~HBvQX>26GYFp2Ryz>`7v8
z67P!G_mlV_iT4D*_CV<TJLsrMe3ZoQBt8`RyCn7ejxd#lu6!_y@Z~k?W1$y+Fw}e>
zC;yZ9GKm9{<<lhgC-J!``5BG2ChTHVm5{agLNab&qrOVw>m<HS;=3dcvUhJuCH#i{
zYkxX*o>V*3{QD#hNfJ{T-M>Z=o>`-gB*WFP3_m1sRPbX-{Fub?Bu+^5oItD%zc+sp
z{A3b83vx=}F9J^sJR^{tX9X!(t8QfcJ&8Z)s2(bNIG@A?4kK$-mWPWR{F6xWkm})2
z8hNeyJBe#aTu$OIiC#(Ksvt~atr>_g{FB7LNnF3lL$?2)vxo<HDC&j8G=a>L?jgfN
zrWclSLnh(>g<>AEJ>24<xQDVHZuOAkA>yH=hf*GLJ>+@F_fW#an`>1<l;NS2+*{f?
zx593TzVmHLX)o+qWxVhfjHH*-{$$~8=Zlr|P~bs%xXr_o-Kph0RPa#fg%81FYgN_t
z;VCY})7PonJyi5?hle{oJhJY;`nFi7BJ;z^CBCD!IZ{}~!(AR~dw9^p-5v(4Q~cpr
z(?eAc_jsu0p}I)EPvE^C_+CBvQrfC@$`pY$gns{lGPS($PbI_s9v--f*W6P6ArB9G
zc*4Vz9_mmH5088Jcb($*AYUvW^-$Ntp>^spFWd!LyF>V3;_t#2N>><hF1wzGr#w94
z;aLyknxsALp}r^UrO#*P?8&SAw(9b>dd|c19vXOf!Nc4xVfM$*q;rEdCplFjGVX1~
z<2oC9;ZYciJS_Im$U|cfFMDX>p|^)V9-4Z1#Y0;U?L55dfoIQtUO%IShu1v3?%@qK
z{VS2?Qq5*;ELy2#){?i?DmNT&nMBCYQW#o!Xzihm;KAF9;YMnE51l-8Cf!2^B8Yq~
zNgX*1u1-x^uex~X>V>NXdU(8nT6ObynQxf4yNJ3^@ScK`r<ZUtwXcVM9%g!&<)J^@
z&ck>Q6NGJ`hanz@3O>lgs^8KE3qE<h8s=fRhfy9zd*Hu&${FEdq@=D~uQ+r2-g@<x
zhcO<;((E2L@8=v^udc3FCwAuU%gHL(pdQ|!T5kx|o9JPRhpCcx(hd0@R!GtkqhOkc
z8A6;ckQ8R2C2wr^{$zuiE%Z5TI1lp#Um%cd^95;?U4H3(84KC&7sKxk4#-P9ob&Lj
zhov5td05WkJnZ!Fp@)^MriX+F!^3J1YiK18TRp7xu+GDJ4;#eVZ__zfr*f#gBzkW2
zu*u_T*r}VP#Egw<PU-LimhjDuVI89$Vjgr!)dUXTs8+X0;gPLzT7F0Bd|@*^Sd{Ex
zn+My2<00w6qn*>TUAoQwbRrBCNXSO_*-d^7$89EU_wbH~cRjo(x|Q9MI!40#UU)F<
z2Of5Cl-m&@Cx`T;6nB23+U4OR58rtB*28WOAA9)1!<QcRc-Sj)_OpFGeB$9#51+9+
zZwgm{)Z3)GYzphO`C4T7rf|@v*w3Y2WH{jAD-Q=H%BKwJUsL%Kq5gbWP?<HWQ@``@
zy@#JXoMg}SaM;5!Itj-p4?l=8k4pA+Qp#F8vLr7o_c&d2bt)@<g5&3(IgkI9!@4ZG
zl=HKPQyxxxIKwXdZs?7_NHZ}@-=f)PMHGoF+7*GndH9{9pO4#o{6VvL_=^HPT%fPY
z^PNxIi-KR`BS4VL9tJ-UJ`EX&T=jUz2XcHwd|dPJ4~KCdnLhsYaNR=@A89^l{}dlI
zPO6W-mvgv-Y@gT)K8i|6_wl1p$g}ox4q?t_mF1(DACAMf_@R$w`=FmN%J9HuRa}yY
zH{GmqedPHl<D;yPd><uz^jniz(*N%+c;;d#<)gG8TArq0E*`~vtB-O%%KNC`qrk`I
zbD<m4q~z)HV1#&~A3D|I1F1ADk=uP#^zn#~M}6GkhxV!J;~pP(`l#fivQX|4SVbTi
zx^7l?-^5v|YCfv_cu3T^*T;Q6?q?A`YWS!r)u|<L<7UN2KTG^(vpT<7)%MY9b?SpY
z{<)MBdd`DcCATQz5BsR&W5eoH&cIV`KHBPv!sL0z$74Po_wj^}Cw)BS<7pr4BTTC2
zhuxDFcy>$Zw-dIe)c3<-lS%BP&-!@I$MZfKkm#eKj~9HrC|WT)t(vhs!dEQn*2qU=
zq0_L}kj?BQ_RY#|>f;q3M*|!S@T!m3=okTV1HA6z4Ikh6_})h|TENFLAIquL{_N&H
zy8GziqlJ%_tgMgLK05m7M9=vly^YUBbmiLnXzQb$&z){+&K9+Oi>kO){m(}SA9|e%
zjkc=cTh*eis<R(n5!j6$7*$<-boH@ytNLK8I<{5)xmBsC8Xr|Xee|MaA7g#=_R+`3
z5FbP7nRFW;{e2AZv9V3+{HWTN8Tl)!J~@~@(8nMjgME-lqZQM_vQ8fj$Dd(7hO-?r
zvPbzCAq*qMEWI>EW`^lUvq$@Qi%q;ClSJlau5mub`<TfWcpnq!s6Hn9nBwCLO<mK}
zB>Hen-5XPV&g4$@G0n$xA2WPB8&j=f>YJsR3uCHbG<Qc#U5%*<x|;1{j*o>t7WtU#
zV;<G;v4H%O^0(xa|7}y=gSvWAR~>crmacZ{YO#+cK9-8MMdIrFHTet`<BIB0w-r8C
zO1pgQV--7{55tG)V~vlsJ~SUOAM1R)?PHUV%`~Q_*3%DZG#}A#Gg;q9<7!o0r6odX
zTi67o-!xrkA?_7;pP|Tq*38v?#HqHS62eBJW~h8qSw3tZ@A!DvhvUPgRvZd^B*nrM
z?g`TFhp-`<m}(on$W-$>Mz)JrkltlMK9zaT$NN4$^s&pw2a;unkDY7+Gt@9HaKFHh
ze4H@VZsDnIsW&Xe?Bv<wW3P{WK0fhrz{giUKK1b#yKp6Z;bT8XDoq8sS)bG8EY;zY
z!mXBy*y>9kpARV0-wxg2Ymxa{sjP44&);Sql;{n2`j*XSt4p>z<m0f9D?YCJIO5|6
zALnV_@nw$sI3~zBj*~u)bG%a7XM}RX$Im`a`S{7_Egm6rc}LZD6p>#f+S5^|1!>}_
z@s3*IsK8NYX-46>%~iij>Tf=N=Oe%eH*(f-!|j~pydX&{U3JmNB_DrskQ54q|0Re$
zHjj8(QvJ<Az(-CHD!}lMkBlHx@?Rg<Ig+f6qy#7uAT2;@z$p&(d{RAmxEKNy4frXf
z(gS|Bt1(HnDyiO0DpDvUQzT>sC>9_)z%2oa2mINmo_I1N&r`KL)!gHom0Ip8)`I+b
z0rIIpfZhR01mT0DCd&#?GC-*Sr2~`+aCd;J0m=rrHNb5FZVyn7r3Bzo;ld!?L{L7!
zuZ5@(fSa(ml9|)jTue?;D!}z1yd|MxfI9+I4p1cschKA!gzJhcQBJM$L>QQnY{Pe_
za_7!n0bV&>j8jsVCg<D};NAeuJB9yAtFe?jGpYyS?vfkw?+d`i^EE^hPD<Y&-~s04
z5E`I%fCmFS9iV=ISo^|<0@MlcNDwX?epn#Yc$CTqd}mPg0z4Mr@c>T*crw6e)k|>w
zIRlkRc;PzmkGyd0aZz7A6@;s)i9ZwI*#IvFcqzbh0iF-=0!!zfAeqJG^6v%#cpwiK
zIiKtp(i;Y76yRl=NG!nh)s4m4v{j^eK~vgRPLJUMGKo^*Niwf-@DI>BK$`$>1ZWn>
zPNe{E(i%ayxSgxD$=rfsyWP@Kie|2Db;8{%JihGbj%XX8U4YJXk^t=koGiu91at_(
z#pf5Npd%Z!H#$jnuG!|oZ)T(fZUN{Tpj&|Mk`x_=9)k1?!sYQ@I)|(1*;3rB)F(jS
z07d{aK)(R}11t)#IKY4a0|Shwp#lsF5Fd`=0Y(HE9AHR*p#grLUY?8phlyC?ly<wX
zMg|xa;H>~-0*oe)Tb|aYVzf3_&d|rW<zXz15b(Jijx9Vdf|^VWFe$*y0J8#2<`Z*%
z!PEfL*gJY*ipb}Rbh1qkFtL8x3^wt>aBJARwZd7E*)&C&w7CK1QOL^FIl|BF4=sH)
zKfr<j3j>Vw!`A1)6y)D^Hk@c$!dwB~4zNDJvH;5itQD~<0;~+MMsSwCN_=v40J<f8
zl|txv%+9?D>*$c>(&&DSZV0e3Ks10BU{iq20k()&u)gGBixAmLA1j4Fz6@7z#RBL7
z5<$5AfzdcK_6qR{)xvfsGlNA<)@JSs@KFFefJ1)^kPPr{fcFA;0sH{ls9u18ouX=3
z5Jk-ws}iS)-Vtx4|I_~Ovwh#p-w|MEfb)~^L4b!FW{oTr_HG)DMSm!EyQg~D-Rz73
zz83xW1lSwk^8jB2*vF0#;8S)hNqS87ZkWDo{ON@2y|AByPmRnE^1`{nFUjw#uY~h}
zKt@UDrnZA@)&SoI_)hqbuonb46yUHZKpt-2JL88t%V=;~;0O9)Mx@t;aDUv7LAZwP
zY=CnCj*Hk60e%uBD^Lt4>2d*11^7jXly*jt(_uFc72t0~!e0aY#^G@r?%#&r1N;#n
zvJJW0a6Z5Vj?&vuWE(C9xD?=8fPZMTb4C6Pa5=zVbkPIp!vkdm>b6UHSJ;RLvaSaB
zn?3i(^kaeI-y$CW^>4r}0IAmlq-+b@x7Omqe*;zh!!pNeX8pS=Gi@9GA64%GB}LJ_
z5AU)M8(|X}7HWxtfD%*$6p<jHC<tarCXk?F0t5v~BBCfFiik+gh=`&{_jLD6_e@XE
zkaNyC=M3M|ci;V=-*--(d!D*=>(;H<-PIMKAyq?~hN2phHQb$y6b(EC>~yh=K}k8E
zKIR))Qd8*~GBjjr;FLS>lX_C~4=5|9p}2+{FJ$vHV^aRY<7IX^8geyM*HA-42@NGR
zl-E!}Ln#fVHI&g%Rzt6=$**f_LiOAMn!hzQabJ2l4QhVoqSMI}HI=8KBE1^&HT<qA
zUUgAPj9)o4E2ybD_hyVbR;IFsDjKTN_{{9RnyMy%f8>cPevy5ThMF4cXsD~9mWF#Z
z)YiBb-S2L%PRS{*`{nPf%^>GK4fku<mW28g(-qgW)RVM$pBh)9(zdp`dO*X28aiuu
zPQybQ8fj>yp|ysGH8j@HOv7UunrLXM;SmjwGIzS-y~#s$HAPoZ-Jd${^+WcU4P}~Z
zcw9pZ4J{>!N3NAQrK{JU%A(ojFQxtz$UOQ@<`Wv)XlSqDX$@^PwA1jUhNoDJ3sup8
z;wp>x=ciT)`1V(;k&<5~`xy-#G<4MPtcLKd^g4fJ);gBjJfJ#h_@i7}&q^u1M0k3Y
z?B_MSpkaW9ff`=a@REkNHT2f-vW8bQyiSueysDv#hVB}AQ0>&rUuvgx)zFO@oRT^u
zpr(teA*U-{45-(b<-b#xewW?8c*>g^-qO&M8Q1)?1Zmr*6aJ81&hYK5XQ=DfvifM~
ztD(P!_cip>@Q#LeHM}R~(7{k``uWRWSq^;-#Z}OQdA;(<A|Gh@P{T(W78`1GZpO!K
z4`s4XP4Z{?baKvR4ASt4hA%XX(J)xU5DlMe7_Q+{4Rfm`eWqb3lbfH)N#nhSnmsai
z7%Q<u_B(&&oHNu24I|mkHH;P;?wOuyBD<>T8~l)|o;Fp99QCD!u^PV9FhRpt8pd(X
zU&DCKKP&HRGEG(Usq7C;#iiQcveqW~({!$>xb}XLslL~6oab?A_(20N-WoM6b9~qA
zL#Eo=J$q)??4LAD*6?uv0|NM2!xRnkbj;WBi-xJ}DLP8)_*KI+)<RaLWF5b0n64qH
zA*5l3hM5|EosjakhFKbBYgoi063!f<^MuY7Iz1zCzJLWn7Yb$E4p;M*_?^qw^QVTT
z0{$or-ItL_{xb0vZ<0s6T<~8)c{d_CD>VG0;a?3aHT<W+kf2o>G!437J1^ny3JH|V
zv=nJTnB>rz8Z7aWPp_@P(Xf{V#Wu_lM#E|iYec{m>S>4;$}>ld71IzGPJwr=hIJaY
zvLkC)FZ_)fHfh*U80(+BQkykw5%2XozE$>!(nkjR8QCt(of>v&*dh4Zuq^U-3m#r7
zX%Ac1Z)xPb8_&qvTx`FF0~#)CxT4{phC{4q4JSnSu+XDIj|knoF6Ed27C1GW)No3}
zSq}9YP79y*pV2^*9*|O6n^EjM2Y(5=$VO$Uw>za27|iIGgwGPYs^OZ31U8ZhDc6Nb
zaGOK1;F}tc9RM{mVnN(H!oMrDpu`e&6w#3+8j1>~1{5f~lfb&8mu)XaN2-oA-EW8K
zLNj$_2q34Jj^cv(h^IG8N4Aa}VU`e@TPVr*K;n|R|Kdu?GCIoY{_|+8j&eH6>v&2>
zdmR;Y<msrRqppsMIx6Y7N5qtld>z#VGgf6CRRvek@v-IiS<-64;WLrAMqwy}=xXYy
zrE_@qQ><M`3nJd9`$w18*U>=u_Y18jly6oIX|Rq*bu`m?^DG|H(O5?l9SxTzHeZ?8
zNXNrEeiQ?0T+86zjix$x+a;cRBjFJpmhicoAnkVf$8<E;(OSn7Iv&^2LPtv-t#s_P
z6!(Ty4f>R>aZt4l`X}YK(a}~%I~`AQOsJhwt3m~qaQ~qCI_PJX)BaO~>S-O%=y*rR
zyDVfK9d&fq(L=|xIy&iiNyp1NcsNgI9nb4{LGW`ryr4QBR9ql>lL_gl9P$-5Dx3BS
z8^gg0U38p&Ip<ZK*BfOwlc26Ty6G4!IO*XE{Js8~j@Na(t)sV&>lx||9dGIAsbkvZ
ztT%ORH~l&7I%QH;?91t;<H(%sB_Xvlq%PLT=p(h?k2P+qzPkVA#p6mU+%31@W~KLZ
z^w;s3j-fi<*YSal0Xhci_>k=+mh-WWA-4KR$C8y5xK#3KTm4|GQVnwk>G*^}QdwbJ
zJ$Wj1+nI8MbsV%+F-Lu>gCnzVjH8C>_*};*9iw#&7x|GwM-<@w{?mt!-WHDfLg<%5
z#|SM5CH_jsI2~W>_=XDI)OR*yjMwokdkwR%<2xM_*dBEJq~m)X6LtKcV-f`%o+YJr
z4)Grl3!ca}998G7GAA81S;x<;Uma6*Oc6^0z5PEgeAS%zem4KhFMd3`=$qM<!s<62
z({;=dnHf4}>e!uB{`;_+rK8{;_StLzVZSQrhK1Flu$rrb)K5{zLLDb`oFqrbVjX)$
z&k`NK>sYU2gN~&-{$PvM5!A6v$DcZMky%dtI#%lVPsiUnBBJmg9V;Z1%E|dxa6u3`
zt8{3E90nCg26PxY3M46GiU5N`1(G^k9kvcfykUt|ps*l%R7YILYPMb-vHzoo3fGA6
zS{>_zUywvWy40{y6f(u_IyMR3tYeFgtrCl3+y4LBcCbt8*i{&7_x}mqQ<#^1I`*@J
zu$k#NCX$DQ9u<06=n<hzm-eszK6O`E9oKO|N{{pudl?6}08{{Hbez>uEP&zxoYQfh
zeeI{bTNKuDQTNxJT+?w$$7QBfC-n-)M%j}{&AbHXDm&DHWKKBKdtJv39XBOi$`ou`
zB)F~P4hJP22>~PrkP<**07U{o07dDIC`u*;{DG1BPv4WlD0L(1&DV2x*GWqiep&$O
z0e_7OWikT30lXK6UJ7&JM`pmkmnS!X5+a-xK(+u1=Ln!=Notr|kr&*Q6;7!DN(WGe
z`SmiGC?%^+N4WsX2f(|BDg^wT=7}WJsu)0YM*=w%&JUn+08a++Q~)nURFwc~)1CmT
z22d@4>H*XU;LnJv8Nj%R|JHqvs3M@AS^?Y}z_Kc3Ny#Co8^C=5JQhIn0PYW<UH}gT
z&?tcVl61oW9uUwVfCYJeujKL%(g&H=h&+}L&j)@ufW`qd4d4-xWKNk-6VXqBWtqPB
z(EyrBXu-8Rn<MJ+09pjlCV;lWZy7+V09pt9`+5ql?0F)9t=0U^1x${Bw4EeMZMoC@
z<v{HNcshU{0lXH#GXZp9X$0_c03AhPXQ7P#Yyh3e-;hd7`dk3dQ+Rjc3ju73XS^7|
z$%tZOqhS<yMa=FJK-U0XEv)X@75#?MO>FBPK;MV_?|Rz6dVig%kP|?^0NxDXtpKi_
zPwE{&Pf5L30B?&DmJ-`1TS$Y+zN$VF%7S8wbngVvKY;gz`L59S0+^Rjj3zOO4+8iw
zfRDs5Mj?lV$sn#Z8W_N!0G0>vSHNF6_KDD8qG7PmApv|UfQfz<z)-<0r}{Pcc>u#j
zenbFc0{Bw!ND&wn!05tQU$6m){MZ1#3Sedcv)HZz_&R_o66Ko!#s~020FwgvHh}LW
z;`afJoR>()geC~5@&^BbI8ku=TE8~COilbTfS&@G9Kd^PlPUbOgpS;ib~oaW*uMlY
zHNcyCFfD)?BJ*1SFI3ASoi2c}=%{VnyhH+)z-+eC02T(oJkAMVE{idM`7~xnnxDiD
zKi$)Z(-(>5O9S{LfW-kU3E+3p&+Q~sQeYk>mx(=p20&A39x0iB2e5+UhJm66{t4h;
zwx0k_1+X%J{{mPYz?uM7iGCvhQ-BtLE+8PZdy`U3g{rvH&k7(IKuGvb0O0^^Nt8hp
zhy>trGzcIrHjo(&z!QN?SJ6?190C>{L)QkdPE_p<V0{1^q#T&mMmF^Twg<37;%;Wo
z60k)mmE2tK*Uq*8DvD0xo%|vTU{?SPVs)@QseexZdjr@P!2SS^1aLHf0|6Wi;E<%w
zSS%%q6*REJthhdY++&i;@c>Q;U=oy}Z~;Bd!9RfOV)j{~mxZ1adOm;)0bG=bmxLBH
zDn@6syds>d>~w`WrOw7v6K~M$0B!|vo8!FU*D2-ih;V}8cfh+GvZf~Pl3W*5YY_uU
z5=167CmTpH(8$2U22u^48I@VaKv@H62GR{=7$|07V~e!>8L7o3R<?m01DR|Rr!un)
zG?s1q54bAVKnW2jCA6gB&sN3fCuEn%;%T=pMiWaLXzD7SF-v|q0~HM9iA;IJ-(kwD
z4JsO_WT2LTdkrW9`39;QsAizDfyGynDwaSM!=IMq3pVpLDUw~?Kn(-;7^ulC)XD97
zZ`%2a89X!aZK>IjjY@HPs<weT2I{k94AeDnpMm=g)HAT?ft-2kbB4QWwyW+m^=BBk
z4S$WR8X9=Oz=H-JGVo&C6z<b!&;uvSw78jm&Q&e{NnG$>R$~KA474-&qaRHTUZv#U
z@$`hyM-4O=Ku$9Oj|t^nOOG39A-JW`Rzi6tQ)>aqQU7YEHiFv<r5LYmdP;By104;t
z7yPtP3O^$tv0Pc=XAL}O;CbP66583orY=ckPbAa5VBjUuM*Jcx_e3(IyljA}(=nkg
z2D%zB_rltXZU(v=*tZG$H=&1t*9=ULVMYwEvs!6}gJ&JQY2Ymb6GHetgq{X^8F<IS
zyB6Ly(A&UYCjK_j$3R~L{Y|`Yq8|l_$Cb%9@vedQ3@kD5J2?j4r+x!7418eVLj&Us
zd~M((10Ne0ZeWCg0R{#d_|(8>1_l}U#K2$!LkuL;%Bm1mbbE&9HIAxxqiRmnZx}-j
z3^Q=7TZPXJ{1;WJo_gL>6z=W$p(729GVrAV%8xd{xL+6;V_>AGI!!J{?_v?#<EgO*
zzA|vlQx^{8kTUce1LF<+WMDGet%2_hOf>KV%Rw6a_XeuRRPmUf3WaIRt1(69B$l%Q
zdZ&%fI@zNvgMMcAf6MvBz*MntiqLaclga#*E!@Cw21=&n@;tZiV``pRZgxzqim90f
zW*L}oV1a?zRA^wXfq4e@#?-Z#;+DO4f61*LSC7V3t<N&M$JIjCI9o#TgvHc9MvaU6
zhE0#F6>)X!RPs^-e;7Dq;IM&Z2L3eQ8HgEJ&gwH@urV0;+rSC~D;b@g-N3(+&1SsZ
zB(6%WRt;CHXI86K1~db@fq;beSgk%>?I-lB&{0~2*Y{^w27(5{1|kMR2G$-<v<)~+
zXtmn7TAf_2^46%vYy6e`CG+4Kh*IWmLhoTYpH%ic=8J1o+`wuB+YD?su!f;*+Xglp
zSZ83pfejp>4D?&0hV82`VvXWHrm1Vxsx@l=8g*ffnv;Mn2DTcg_*eOywd$U=zIkoe
zsvQP)vh>*04eS!*ce6bh=q3V`d4H{cI__6%)qVp9MBpGtk81wD6^5=@t2VAxx7Mm7
z299z>H31XH3>-Ib*}xS8Ck&i4aMr*%>YtNv%D`y@XIKuO_*amZT<6ai*IB0?U8l|)
zxM1L-flKTT3$jO*P3gZ*eY;LAT&K3KQxm8AEA+0iDH^zK;EsXo25uO*Y2cQD-A%H3
zMYEgFD9=^jQx5uXttZ#1yM1%+vV)jNG*QF^hu@s_s`Yx+f4!Qy-p{@zw5W+>6D3TP
zG?8M0^P$B}WSU4bk!~WxL@~w{$;?y!nm4-c$1@uA^Klj@Pfg^Q$QAuu+PZse=B@Rr
z;s(`hgL-L$f7@Uw6Qxa*H&MYv853nq|9Mo-#HSnl-NY+5_?GZLZ0lQ@c_u2FsANKk
z%svS^@nZH9+mjp5Of9<6-|Jo3L=_WNO;j_{&cu@@?%$}Yn`mg_0TVS$++(7qiCQM^
zV~~k^P1H6~$3$HdEjRjU^$|LBqxycM`aL7%=TfSk>Hh<*Z=!+eFYMpAQJvYSayO}l
zn^ekAl^!(lkcnm{9y8I%#KR^YG4atR)!0N66Z~J$RIJ@QHhcZ-3X?0Q@IT$lo7AHw
z-ZWF`M*fo3+{EK1o-onIL<^c>qLqo(jN8or$@0Y}->QG^Emgj8#`I0<b1l2ADAa||
zpwwC!Pnl?MqNj;oCZ0C&jEPrGbTQGvL`M_Pn|Q&*vnD#3=xpLSiN0x*^72zIZc?q!
zXLAy%^k((k=<F9wykz2K6R$8YDx>CR^~`3~d$XFHkiuId8<tHOy;*fN(apr`RAQpL
zi5{l^NB%Xohw3TwHv1D+_GUG6ZVt=mO%rdKxO-n3*H+PcZnK|}N?Q~Se%nNE4*o39
zDcM&WWz^rI`kJV}CiNX=WO`yh6GI;;)ozP=*Tj3w&V8j;|LZsJZd=p`CO$Orqluqb
z$R<8EF`o6Z#(&oxU}BiyfhGpA%1jIv?@$v%1bkX3d1p}~<v%m=!4^eOa<T9I+{ADZ
z7-3?Ji7!ozG%-pzqfLAvVCEJ-3luhTD~vVql`y{+I?e<gRjm-6l=;T=|6&t-D+1q{
z{562@1(P|^MB6=nx<3?hCJA`2V};2kel{`N#2gb-3PY!v_(ky4Le8&}95vAWW@5UD
z84@&8=*gW4<j*oOX;&J-Todz5{2@W}3pFeju)xGZ0gHq(j|DoHi1&A)OHD+Czf8Oo
z_*1}g6DM{iWM0TvVd5Y5FAMir_}9cr6UP~3;y)9sOsqAr&V*({H{qIyng~cEbc7lv
zOaYeAkkFve$7W>Og@7d=7EBNk!1wBUE5Y^Ho{5-=cwy*j_V-QxU+gu)*<T8D>jiH!
zITeWwCN_$9lhDmVf9zXki-4^KOfQv31W?Hij$I}WnAmAzmx;Yw)NT>jD|Al*-lE9g
zCuKr#(8TR6>aYZ{tPTmE?cs=tqY`wC!(F4S0!qn~CQflswUA}uG&>Y!Ox%&^XH8r-
zamB<r6X%6<LFgqD7X@(hFO8%tzg3Y*aMi>$6W2}L5brIaH-)aA?@tQ#uIxu4=dOta
z3#k^;EI(qR1qdi&A!innEU;#CpYcBui&{vw@cn5y-GxU$i`c_keLd+Gw_>Gc2#27U
zh2j=Uyp}+mD~DHPQ=0`vF$=j2vQXASISVBvN@=0gQ>s9NY|tnpn5mbyP(g4-q2%XT
z82Eud;ZQ&;S-c+6??;tIpsG-YR<ZnVUIMym!mKW|+x*m;7HV1OYWX)n@t~MR<CE^S
zP}@Qs3w13#YN45h`$V{&h58om7rc3muZ^=44J<UW@UVr379OztS)&InJS5<!eg2#Y
z9YJH^5H}UjL}=fw>Jb4QulsXck6CDLp|yo4EIe+Z1#Py_%EGv<YW`Lg+N$_V@ud!a
z`R}FoM!7Z?+FIyjp|gc{7M`^5jD-#s68=ki%0hb!Pg{8Pa5Bg0>s!_3i^=z|tXN~4
zqT|sh9W6Y|tZhwxWSe^9ZYA!)e9pr27GAdS3d_*Ki;~TkEX>}WImIg1dz-)R<@*u-
z%hjtEM*QlxkS-#VyV3udJ8PTjW}&-<9#WDl%(n%+X5sZh&KnlqwD6XATfgRCR^HP>
zufouk4J(n;+d?1V^eyD~v+!A2|3a?!EcCbVNf3jBc;CVY7Cyd|`cM!bTKLGqMhlzB
zu`s~GDhnDLhJ`^Erdjxnu`CR>@U?|+EDWJ$3tw0mL(LY3GCLMVS{P>Ga|^>+%eDN~
zK_Ayhq2uSk+HH!QQ5H_JthfrdP~grsRcpJto1F2b1=6pCj%7<Yok?%YlZoRj|Db!G
zN73L;=6LoO3ll96e{1183lpUDczP8b-v@rMFv-Ht7N!XQM+-k$m@K&EcEv*@$DT~i
zo0s|VcJ+%er&{>c!i?=|`F0iAt}bp@6?dpsJJfVCEiAS0hlQCIW?5KZVIk|$!W;{8
zEzDyccc^JQ)EjnYXotE(z!}SXQ|GfA?)32@3yUo*vGBWv?1$2t>{MNZ-+!ly?D21L
zt@ml(f}Luag}*HPZQ)NQu~X44x4;c71$c#pe>nI{5cw-Dkkb7pGTMWcC`MtOgG{@W
z&t_-Z76KLw3#P@NVhCCYu?rl^ap$LQkkngVEqCosxdm%0{XI6@u@JTpvEW)*ZDEat
zs0GhLj0JAt=uXvgZ3TX<t6l1WU8?;q)nk{RueBD|Sy*pj1M6KlJn?nXF16rT&g|bR
z@WRAb4kT~3u!RF}5ZOU&wXn^?RSVZFY`3t3UDd*Ii~r-W%ffyO2Q2Kiu*bq)3;U!}
z7Vh$2Q$wPhU5|;r+b)|+YYtjCY~cv2_>qi57D_MjyUgxgitAyHS~w%}MRuzbY-1MA
zSvYUu6bF9>Svbo+vcP{!?-|H^cDLeZ&fwi@!fv(UkIV}eE?T&3;fm#7)-Y$c(s!#%
z?8TEaL&y9tj{UpUt=)>t8?IZpAr__wanr&r3q^uR3gWhfI~*~BNDQLF9(D2g?7Nn~
zN`WuuPhHBck(R*LTYryVdI+Lu5UD|=1^vFC97IYGw~F~IvMO#)tC5nzMB9jD*7dBp
z&*f$WQA{Mi`UE}qsNzA4ZknAbl(&}W1d$s=^&n~lQ6h+vL6oNfB3~+qG6JZ%bP(g3
zCvDl2P&SBig2^O@G%tvXK~yW0tQ16k5S4?VunOY4i5c8O!3|JVM4)OAgZ8LiMf~CG
z^``z1+O#4bd0E{P#He#w_XSZih*~0fuh2R{)Mgv7%5m`z>9?J;>I#3t9(8{Z^@6A$
zM1vq6WUN6+4TE?fh=#MuuGphU`4A!Hc*P(l)F_CDgFH(XO@eqbh^K;RDyrH9|M#2b
zksuxoqFE4+1<^c+Rzb85;_)C_h*(RZ8}=xpo8M;WxFjrNSP}e%CnP9&uX=DV{|Nh)
zLf1|}r@g9u5Kjm3auBZs@k|gMf_OHFP7*q7ui~$kj$#0xJDr1gE(kJT3gY=7S2E|l
zAYN_(ro!7V<h~e0ui6<IPo_|YoL7VB5=5UM`ii!$LA(~k>p^r2qI(dB#-c|MzwTB4
z?p1GfksZxJyctAKDhYy2ruddb<Zr2Ud)0(0;791&LG%_TKZ}^e(#6^Rf_Nv04>-IB
z@va07zn;`Ti1!3j=9n1seh@?7^n1rgL3}JhgM<zcI*_evpKmi=)qU!N*@-l7ND!a0
zov?!k@fo8Bu{?;snB^coXDeD!YHSe0gBTG+$7%kewK<bgy~U}W_NkF<EuwaG5MKxw
z6U3JSsGn!+(GfJek?|GVY7k!s@l6opgZL$gsZ8$itZ#$(F^HeoK7*JL#3wDX$fWx|
zh>0TbgHUoN1<`U>I>F>1Z&y#G{Lk!wA7_#?MPwM4%wL0;7R1~j<^}Ov5NmcPQech<
zOb=p4p|+U<W(l3mn$mnRy59Q~>3p$gNe~MP<rfNA6vScyG@wBKckwO_;tv7Kgfi$)
zmZ!-49mI+t+#sSs{39i!2N7Vs2f<55RtE8(FjukjCZ%bDdD{pvFGMrM8w?^8gvmi5
zFU=ATi?rY>6PtQg7m2WUoJ@BlC@gg3J~c;b*$W~joDD2A;(hAIKD9Q8)rET2(BK^j
zeD7T+ob^Hrly77QK{3j266R*1saZv~1+kqSB!uTf*b&4|4n!f84`EjjyMsswAu)tK
z>@`804&qD@`-0dnagPUaAc%uO90}qm`$Z6kIe5-b;1XQ5-)|>e+rZljcuw^(k>`SK
z&Q$MvAnimDCxvs017i#STyeiq?N?`mI2XjVAg%{-K8OoJTngfH5Ep~~!ef4(aJes6
z&hWr?$}^QKL0sj~)Yd;9yw85cmB2SR_;bt;;tu)CaVzLA+@&xhGU>Y<h2#c`&KX5M
z-S5Be6$v3Jgsc#<LqG^cL&yl>%$m&P5K=<mYV*{PAH85HufHxgg!GWVHh#!)|5gPq
zf-M$8@sPh_pNqybLm1T4U(rE(aze<JxMe~pA)r(Ur9&tg0#}J&J6USNe${@8zsQ^x
z_F9!#Hst4#j&m;+LdXl@!4Mt_p`ygC8bY-YDhXC0<cIuQ04j%2CFGyyziPj~I+w?K
z^WuZ*A=C(=P6%~FxF>{~A>1pm3f4u}3i;avm?KtD?T}w|T<^_e7VZn-{tz0H6GFWZ
z>W9!E1fEp?;I>RIA!bgwxSdJtkU~54mVfCaO>Gpy!y&W@p=}6_Lue90vk)GW<Ty#v
zG=xV&{t@LYJ)R{0DD%!!+)v~+58?3;T8HpnPqYZ3WyoJH-ij&iOXnJLt_<fgOIk=w
zQ=bSS=Z#7?CEa!*JRQO_Av_tvQ%q}X@}ASB+lO$Kw<;V^J=$b<2%%#L&xX*6Ch^Sk
zPZbN3Ipwx8TH86~uUoEmz;Br^gz#bry+U}KwJZjA38AZimqU0(z^g*nq$bdH3!$k*
z>>m2xADkW`ycWXiA@CBqjtA6R6b|7{)>pS&9;`%1(38coGo7JKu{R|{_$-8>A@mKQ
zUkIPHO#4{qJ1mM2`iJnYq&UM)<lTSohy1&o81bVJJ_zAM2^uG=emkJ}KFR0rfDi_T
zu;yIiAnIY02!WqDuZ=_f+DSu1{!^jL52&LD)a?UmSO}koFgAp*LKrSVBSRP!!U(}k
zi^q1gudGIg@MQ?x#QjAGV?r2GB(K&%e;qYXH>V8mjT#ri*DQy^SZ2ADZ`ck){`PGO
z98dMl{x0MntN7BLB>w7}7{U)BoCx8h)Y_yFW(fF^Q3On8Nghl7P4Le`r-bl}fT==%
z6*^5Q?^0pa^HS95A^(EZ?&~vVhA=CH*&)mcVJrLNjf}Y=%ww+%AwZcB7KE@eg#SWV
z7{a0umWJ?$i19Qz3NH>}iFkh(I(uC*nRLrS_$!3JL-><jX-X>HasdolA>bdO)LFp)
zSE9dlQ1#AAqs*!hG@A5w=Km8gM8M?$5`r0mCEj2Nb_kB(kkDplQo{lwh28>tsK*N-
z7Q(s^)`t);v}%ortrkid+PPLRt=hoK&8<kcIfRWNY%1haj5@azdWpA%u$|+72s=YK
zEc{*UyaEnLxl!95)@ca)B#He(8Ih_Av=JW+;gCdWR5zF2BZ3KzhHy+ULys2<oC@J|
z2;FRSw{b?gRcRY#Y@7|@TnOi-bzKeNT8R6j{T6jm=-`9uQV5p?UkUjy!+aCwhQ~TZ
zGOn{2|Hw$SaU+DAA>0b#HXmL#irD^M_&Xuo4I#k>&p;kLE4zAw6dsoK>+a;i#Z;0F
z*eGfv+4d9q@u1>e-n$O^-8SuzO0iMxklKAAy<z#3G#lwQGHevHk!>T#MsXXNw!g?Z
z%f=&z)D!L0yNCRUbEad$A(d;RgpHCmO4&I5lmFZFbgkUEhtwXCIeabs+gDXt8|7@Y
zu+h>+c^egMJYeHN8+o?>3UQB(ngli~*-*Csj#1f06&v|tYTx~SkE5$fBW+X{X4+xZ
zuQ+NjJEi>h^Q^x9ELJTW_u8muqrQ#WB34%@gX-9*A$ytc6VClY`L*>`L;pLXfsKZA
zU9woVoICnS_fvexMk5hxCiG#UkJxBzqlxW*sWoMO<#x8*A^$sJ=}{Z4)BTd6d(1|2
ziSoG60?Aesu<^8wXKXyd8Zk242_<MFpsnryrG1gVm<#z&*=TQLWe@e!5?{W9jgBm$
z!q8`Jydbz!A*ZvA=WIN0<3JDf!eQSr)?lG8*?8H;D}|D;+W1-c6zC$%t~UM?P7fQe
z+1O%ZtBu!bzm3^8=Gb`C##=T<+xWspPaC~#d~9QYjkj&|w$b0l`!@R6=xd{&jd$3D
zmgWWC&pvio-9D_;5q19&^{$PS8|B`UGI2-xgY5@4zC4@wp^cAhv^}Cml+NWDAki<f
zU)z@6@Jhx&8-r|oW@D(0PizdfF@(+A#)W6HCvC0Np-rhZPo;4y1h2mwctq`8m_5wK
z=Qc*#7$r#zw{fg$%CsZu>ZqI%G<!()xFhOJhaCRe7%(+=#}PG#soVI;#$+2~ZG2_p
zI~x;hjI;5zjqx_VwNbip3XZDt9o09iiwoIVHxnN`s<da)PAu~u;@{htX!CS&{K&ZL
za(-a5`MdnU<*8HVVNfmA;ix)xAeGmQesEO%Y-5UzX*PZn+kUYz)yA(j7_@9|7W?V(
zKq@Cv=$&q3hK-pvX4&Aan$MTb7&Rbk;!(BYsNcHc)Ol3RwK30zYa`0ubRc=YjYT#V
z+qhFZdx7X*$hxkoT5U^SV&iuknho8?QX7BR_*Vp$+4$4OUpD@>aY-~6JEoRPP|1#I
zD+DmPe+1lnOwn~ardEpgKO3u<bikiFp!?#O3J5=FBV@x6Y}&92gpaBJj;Yu&Wz&-K
zNnv3!mSbaX8$U-8;ha6@<I2aCXJajmubWLA<H*KBut9wJ-K;e>Uag{dP#z`M*;sEQ
zoKS27%kUS)T|9ikZnUw9-II-k2e2Gh{P)2t#h>=Fx7mP$q7Js(*kNO*ja{~Xmf&3*
zyKU^TaoENYwt;3@dxahlx=-kSR!3GAgXj(l=a7x}j{DXgWdmdB*|^LR(#8pn^Bmr7
zoV0ODGIg3`l;)3$M|$RdEm8hCuFlyw&o*r1BD>_eWWIK;mY^#_XRa^9ap{VUtF+L@
zEzxt$#&r(+Hh$Qi`sd*s*7%LGc^gdsGvT%f^gWb#hb@18YO@{5HBYFQPG=@Keg+eT
z77>~xwA~3sezJoU$1leE4pJSYIjHKOnuB!5f5pmikn14BK`{r#9b}4Rwu3uulClK9
zd_ol|k<sdmKSMS2geu{nq=Rw}$~)lo0i_(2q40$4DJN8E2c-9H&H5{nQ`SLnNyXhK
zR0UB|(Lp7ebVB7hXew9RD+l=wDm$n`4JTFYlj^yXYFC5oh4GwEPO5N;6e_RopoT=R
z=inX(H67G(P}e~%$A2xPJ@+~&_$@NKXi9Adq-4_FC$a7qTB~Ie-Qo4A<4>w3CshLn
z4IMn-;6VqEIcV<SAqR~_@)4mA3vD8_v4htd`@b*gnmWj9lJ(aE{*1??4w{JoG2cZW
zceuzLZ5*_9(9-e$O|+I!+SW<{*GN3!fd6h@>XscpsoFVs(m{I%PdhktQavRyKi0*B
z>giWcs&AL()H$V|anQj5_g+1DN{v3{x4=#gI<t;ku93rY4xV>#BaEA2yx`zP2d%<r
z9mY!zUUqPhY8|}d;8h3X9WGW!7YAJ(eBj_i2i+WW=L(-f`+GRJ_;|(}4lgoJe9gh@
zj(?XrlcTryZU6cBmV=%SdO3L8!8?VqdOPSVxKAPH*s%05UsmepfVA}ClJ7crPlEb8
zc;7+nl$tHM*eCQO2Om55yfE$n2ZJ39aWJruGf2QELibNA|EYl6r_?Y9pE(#R-jDUf
zf+N=bS~#VKI~d_$q=Qio#ya@Q!Dta<=oklIh@%+2bYDu)MU^p5z&Ap_E|f1*KZB<y
zF-PCAk<)kwaR=W!nCM`MgWnze;9wHln}azHesu7YgWnuXcQ9ErOmXmwgP#RgIQ_pA
zr#kr6!8BoN)zhCot?KSi?{!*@I<00DraQ~QOlp%Tq@$Mm<v&+K=Q~*7V4h%pRTbpI
zIIR{sSmc19fU{TxhW%Gzse?ZpXbyA-%N+da;2#J7(f~VkIa}!&^|yn+*i=p{y0T}K
zvMQ`_@Lfu7?TOhdS>0!Rh0D&U{~WAxa5Agnr)N}Bg^VB1r~s355N11ZV6p_lsX+%J
z2bSY6a^8PN-8!R6pH<KA&axdi>@_Dc9zCmipH)N8D%U~(t*M@awPzJ)p`*;yS$|y+
z-Gqlyrk_b%?O=~&VGU&*tP{M!!A1w`1+&s=*d_;?9c<$uFU&1WnuA+bk^fHm*S2yP
z$u(1VIN0f6mxJA`om<KLAIGuu!#$~q=Ty|o;w;Dg=hR+_zE9|W2M46_v*oi3kRE0S
z<S-RR<uHyqIL3iAjMOlWJ2>Isl7q`E8Hr1i&O82{6sH`Vc5uc)pLNM+9h{R;;_%sw
z_UHarM;F-RgkO-CD-N!THz|y34z4@6%@LKon**lsZwck;opem-wR8Rsvbzov!YC5<
z2lmj<spKSvLCP~cNo%(8O9^4$q@qHTg>vI9IcZ^}hfzl2W`t2pK#tJjVPpx&6iOw=
zAU}z0@$wp@+%QUnF|aT%CBrBcMrjExU>2`Ys%#kLgi}6@yf7*Xt`O!ckZ)Bb@e(NE
z&>mt2RSBbN7!AT`7)CXbxmRd)p*6y|CybhchurlC|5}0xHqNb3JB&Kwtt+%%821UF
z!S{zTr_kE^VeDG$mm%E)VSn6f9>#-VJQPMFk#8JElQ13@%;q$uh@Vi?Fdhw~nJ^y_
z+FVA+9ufa@;IS||)lgwc;_)zA(8widDPjd_JrPEmFcycgB#gFUv<qWG7~hBSWEf9{
z(Lap$!)PDI(_wTAqk9<7gwa8wzZB*UAUrk<oy7ZWp-!6JIgIDRcs>liAiWUAi(w?5
zSLM#Dq35NIW%;%Iau~1B?MZkwj4l$l|JEYBW1_2I&OmbGRgW-U6K|g|UKj9Y7;jPS
zG`tZ8+vm`mm3j)FIel9|FV@j_{`-7y@h&;9?DMK`82!R{M>y{Z9WuY-yKK+r6+uBc
zd=SQmVSEwB7&b+zh#?~RaTo*GqQV#y#wP_F>Eldd;_0Np!kKi@KaJtjFg^=oXc)u7
z7$yAA!x$dMh%iQmae7~RjSH&L1@-5-?9DmZJUsS=xc}BPS|o?n_V;SheaX_epuP!X
zY#3ij&^YNDUxzXNk3`mNw`{*!$A|H47-s{1i~UZ-3VQ3rFn%C^fBMWYCWY~17{7!u
zHH@D`hQd?Am>l+Rz5iM0D?Ip1?%*4GLH){t4I^WQAN{v5)?852B^HAik#0tqp96^;
z!6+~*jM;3uk`{w_+~3?V=7ljoj0F;FVVK*&kb6;aO0)Y#wYr$Er1aVJ-@{lM#>z1M
z6R|(S_%|#YWWvZlm;7fK%c&tR>n{mi5ysyF$Qf`^{UbrtQ*AmrU(6zNRTx?r8^YKa
zh8{*B3@eOa*q;#NTp}e6iEawza*j|Kb{Jk5G2u92ZZY$x8OL8#;V}3n#wgrB;)W4r
z37kvh53>1*8SyYyi~L$L1r)32zsnW8-K`VOdZA?QIF-67jLl)37tWS2wuW&yj3Z%e
z3uAj22ZX;PjGY4ZvayA+JB&R-kMN?}1O7AuDW3?W`@+~C#;S{I?M1%~dCxWJL5X`P
zjB~;y=O{=1Fir^nm{492aFQ7ropm~lGhv((CM7d3DQ4{~<A%X26t8{fe;3eIy`(O1
z*a_p3NL~)(3Y+xo|Ak&<e+lEd1lbq-h8Mk3x}cD6g>gHKHzRl}f;(Z{4Wo9%pSXTw
zMA?K0%0%$dn5@JIibRkU@rUb_2vP+gf}#SFg?7H=XD}^-^a!#d$d345lo=5ei=b7k
zQu)bv>&Kkpf=6CbnGp=xlr!^^Vo**5B}GH7&=Mj;KK~C=VW|j83!nI@A{EL;P%eV<
z5mXQ+PbSF|P&I;T5mbzzQUodj-cePVNncj^5uCWB&hPMFt*aF3sh3c;dLgbUpoY+U
zgmM=Hg=<B)gDLIah`-^NGwpREs2jn35!@d^#|WN{U}N*FdJ+GugXR&`kD!5Y8b;7K
zf+oy+1P?~=Py~%4c>A(?ID+bz)r|kL=~`b_V=nt;)ii=fB4|b>lI{!&Tvm@pK+4d~
zowJ@Dhz<im`gjB_B528yiQvfyo{FG#1W!cJCW5vS_w&=KyeE!l7cgSGi2w0*OO$N8
ztlCHLbOg^t&>@1dS5&hrs>>DscDDQaW!tlIN7l=J<L|6a5p<5Adjx!lKNrFC5xf$?
zs}bOM`U?^6p7X(rLJ3}(o$zuYHfJSt5d*qL&@J-6v-`3iPUBh1bOhgCQ9UAfErQoY
z?2U-OhKEMd^_hj95%h}SF0<As?d=G9M=+h)kDw0=KY}kK7#l&q2;PZcBqh%je>Z~n
zA{flZ6G4CBe8~10!TW+g5IXycq9onN5e$f6pfDTttT0HxCqfx|u8#_d<fp<J8o@9D
zp9%f*!5qqb9>Iu0`QZXeUG<ey^C<C-7Wze@%otX;2z(Xcrb7HA{I4VUM!-a&<Ar`F
z^jo3tTvZbUd@ppCX!t?!B%w_4M*+##)Z_?$7Cc4huMzxGC^J<+rE6-MfZq!F%;wAp
zW<{_$f-Mouj$lp%W&{?yNd)sESRTP&5zLQZK?I8<SVFN46&6z7OI;+jMsL#21bXRy
zk6@VuEsfw0X=!9mYn4+F`ey`x*U0#DOWxlRtcYM$1X=|DMEswv6j&L-zlFGIjf%&Y
z;6LeKYz%q?M~)>MqB$Uma^*Rr6hsV05Q@NyAQpig@uy4~6cJ%ZXjtg#`zw;~3XVoF
zzGpVQ@d#E6XF~*QB3K*2dhvFA#~;nsi8ihPVV4<uIK3dbjUuoqf|Zpj@sixF5p0X#
zOax~m*dD=-2o6MWFoK;C?27mgpuHl$TWEo8djx-0ui`!de4_1-;P8<w+H;5?g5w;Q
zB<M&4#{?WL%oj6WpoGFFBRD0Y1#`cr1=Csvor~Z+OHVi#BDfgAq%|3r#mih=Dg>0g
zBDg^3wFs_9a6>q^BDgK!rcfGrM*tsNjI}bF#b0j;E)rc7agpQ#E>2F({JTu{*z7Di
zmR?a8$u9m%R4FdfT)#YtQ(aJoAYC{a;w>hae9C0G$aZl(iW^bnxX5+!QWP&oQNl$@
z7ZY9l;G&d^(k?o4I>JR67iC>kcTvMdITtOisXUik@K9cKRuD?H<X3W`TvTyU)kVIG
zp4U`m7rf|}LBw>QUGoPYUO>zXaI3jKy|pXz9v3xTJnW*ei&`%3by3eneHXP|)Dh*B
zuj}GI7x#;ofU)Qbln^k91`_n3(1tD^5WpKiC{z2B?1#kL$i;Lqpoz=vY<R{+2N#dH
zc+^Ep7p+95nTy9<G#AX58CuJw?~gOrF1&00X<)mqDJ~{#?cxa+Pl;F?7j0d%bMd5j
zznPPlaNW;l{&n?u%{0y&@=4m>#nUc!_Rr<?SN}X!PXs!;cvhlNxK53{PJ(0UexlF2
zc)`U;7o%Lf$O>}N*F`@UFS~e!<>umb7q5zZR~MYeW|S`CEk6j|Tyz)Q!}WK9w~#f)
zl{S=l^SbJAF!>D^Z@PGkwIedUUG#GCwqWk~V{iJfQ~H4G>WAy9k1#ny$hV+(T)gXI
zpo>8+-gD94#m5r*zR(X`e8?8K%wMkgk?VKKWVxtfMSco<6PW|t|IOwRf8t_@i%%uu
zV4<@z@tKREE;xVwxp0PwJoPM;f*S5(go~d~lp$y9uX(q}`s>F=yZA<gzi=@|z?Uw*
z5-?UMWxkw>afSG67gtXB-x}j-p)kJ_`n}KzE-1`UI!aD*@uQ2@Q9KdFPcA0AxZ~n3
zZE!Kgh3g{f;ujZFT`Y33n3lVkCVJ+&_>IlX#Vqks+YA9SU6_)WD?(?xm?QjemZtK|
z(qcE%JQwp_ED+{G8goOva>H*$!`rLe#ub*h_}#^SE>^i%>f#S}Y8NY9EOYUvi{%^y
zBnm(MX5Ubplvq+E&0UZ^Wpv*D#GHRz{Oe*R4fq5+667yY%bif$Zm4TFl;%Qr5p)r9
z5pZEp%!MUpObb*vF(#|X>;6!acT<fjpYq()3bqT!Mc74zgTvGcTzP1A@de87E!E_v
zZ}6)(mFFVnV!w+6F5;|87aLt{a#8G&tTm!}9Y?dLQq~IP%@^xkY;f_}O*QqV%6Kh1
za#L+~v4#D`#V!|HU2Jo)-Ng=OynXhqF8(0KJyWM{`m;Tohx^Bd>~^uo#a<WtICkAq
zkKIyk=j;*Z{Oay@%eU%-Tk4>TLoRPu!Fd;lT^w<7f+MPnqb`oI3oK7O&S5PnZS*a*
zK%y)>S844nb;`wQ7iV0YW%OGLw^hyCs{W^{#chABZ`a$t@(V65y12$c)x{+jm)X)>
zTy-&{Vb<W=YT|8wiyy^yv{1{M<Sn_aZn(I~LCnQ%mdtH+{I=>G$V|VZ)?{Trc*nn$
z;F&urA&SH(YDZBgiXu@YajcFaHwrH6DH=t36d6%25zpj}hsjZ-L@~LON{u2dirLL7
z68FBN#@$iG%kQXSQDjCj_e!~)cU18xF5OX`8)sxiksZZDch&QE{VeczbBQQQMxmm}
zkD^o*rK2d%B}7q_iK1*2RjQ#}6r7J5epgMut5zOM{_Cz<@pGlTsNZWUMo}s1-&YmB
ztA6U}pTm6OF7H{(ugr*1+!IC3D5^$LEsE+<)QEzMF*+pVzmbqXn3QMICggLV*xONl
z0gJ+WnWL&H1@{Q-OUSPq#eGpUjp7jry+4WuQ8bLAo_MLDK1(UlSM@*?4@S`_iie{Z
zeAfTeqI-y$O3W`f!o9IXX(E(ST1c!%#oH{3$D*J>r&?Lfg>(P>#1>IJF1UMQ{%48#
zEu&}^g(k5|-l()EF~3a|ZKLQ+lVsOVyC|L!{G`yQgtjjXeOkbU#C!^Oh@xX5|5+wl
zh&w8ObI^0*eO~AbQM_0fnz%TTYYAS7;;SgeMe%ABU83k3MK|U*iXl;SkD^DEn`H4`
z6tA%~zR7$$ir!JY&Rj(CrsSm;pZ@#QTT%3kqC;=L*y*@VkCacnK2e-#?>|%CiK4II
zeg*VmD*1eq;Tul>DBc%U1BHGN#fMRR6a|k7;$ITR{aE+|qPR87f1;h2Gf4&slip8g
zl03FPjpDN?#z@l|Dxo8U4inlrH|cX`<j2h6LK$&n6r<P|isX-GqbidBg<t{(t(2<-
zzKmjQ6ubANKJdQ(Jo-9{Z=zVmDvM%#6yLHVL^1km`giP2$;Ez&Vrmo<qWC_FiBbFz
z#m`YpiDHtZ9%z{N6KlUn{*OYb?S&%wlcP8_Igfx>gZ15>HU6XQk`pt3jba*0_*n9+
zD1M7#dK5FFn91%lGmGEyD`)#d*8TtFaJ7Gv#hC+&<j)pi%Fl^%wlI%iUKI1ASP;d+
zD3(U?M-+>qSRBQYD1K)dR>=NF^0-&a;%%PsHYu};<QLnTx-5!6qgWBeKkR^8%J3*%
ztw{dzDE^A#?<lrP6edmZZxn0p=KL20kCR#%1>JQCZIYDV%}CXw2t=`q<ram(?it0p
zDAq?|MG=f5MyvkJ3`v<#TQ~|^uoLx{JCeiAwvi}YVMe3yILL7B^vwTeKk9VNjz_Ut
zLf1sGwonhn7`Nc9V?z|%qW*T*jZth8{^lsQ2q3d+?IccbZjFNP#!PX06gwnnC(CM|
z-^X|6`%QOG6nk04o02a?v5(qlUKGbg@&L!uFOm*NaZtPzKEz=y;eUS>k3=!7KaNUJ
zhot-yQJjq8bQEV;*M;(flKeKtcNNmJ!aNrRjW3wUIxn2*N%<F<cfprA9tyZ3RF~+C
zdriD`4rknCwX)bf7#?m%afgGChvpvcMv>s*+eTUUd;a8JqK9-386JvwNb>%-SREdU
zdPo)l%A^R`k(5uI>S0m0tTdtY7V}WtLpcxSJ!E>m@!1}7JY)%`_heFjuHe#zoDv>N
zdMG8{n@Ra}6f090TGsPtmd0=KANmzMRQFKBL!O6<9x8cI9;$e#>Y>lisreG6vfz^N
zm1G?C$C+v#?>hHuttRq6?4Nm$hngO0GixHhZZc{KxVJE~ttD<<5BCYb;I*7t>(i%9
zJrDJztQrVy?4cpe6a1iuMgkrZ%JQ5t(=XMB#k+e3ns{g`_z@3}7RpSViDrcY6n@-8
z3lD=m4Dry?Ln{xj(*_T%Jv`yzIS<c!sJkt>jfW>aJSDg->#Ireb{_U6r5##?_8y)V
zerFHQc<A8aSr1-XN=Fa77vaMNImD#TBfpdI3%sNmdlFvo@S-rgdw9vi%O1Lk_Z1JX
zQq_U<t{yIJP42?VDq3WZok~6ZkWc=KPr;;V0QK~cD6e^_wLOvEH$A-N@jVdz#HyYi
zdb7HtNz6qr4{r;T8mKD0X-Xd{@KV)M-tq9R1byt`JrDf_f8=5QJDKl$_`t)5ERdcU
z!wU7l>%Qq&zbpqT93a92Jq!~4R8IE^qb$fF_|(H^9)9sK)x%H^!z9H?9zORl+{4!%
zzVR@^;~@|DN`gjt80}$<hcCtZ1@k2{&;G%loBY;wC^37i1QBy$WSj?{D)44g|7?Nr
ztXU5eJbdr@6V$Ed_`~vdB7FK<!o<Q@KY0J^*Z=G-QgABWj~;&VFj)kC_AsSTl2iHx
zv$(%{nC9Ux=H0_@9;SPk<6*9c8HJKFJ#e7{mjul6Fk5;nPl)>FoZkz${%xLzh3v2_
zPY>@5tFWLj)<NVi_OQgmA0C#msn^Hv)LbQLsfT+uX7+oeVs25tod5K&-1GnG@XzLb
zMe|z~%^xUy2CeY$pJ@B1Q0KoMRu<xKMQoLLH4nOg--T&<usl2*L*p2N9zq;~Vkj1a
z?ZNSI+`|bEn~LU#J*@Sx&O^k5>mka<CQ4Qdjj<#J(2|oy^XUla)(D^8^&U2`WIUX|
zm9dcuJ?!zYmtCWEsm&g?dD!k@i-)ZqmS(2#Z9g?RpJy-Z@UYXvE{f5NyIBpA^V=ln
zf1B(pUz(inCg*QU&fn)@Kby_`)Po-HEWiP_lN4XzT5^8zlzj3Jc_`5|lYq=49*(jR
zb}V~LC^^I@JskKV>%4~x9!^OvPJ1}x;jG|uh554IO)B_*bdjBrBe{n=9xi*hA_6y=
zsh0li_f?MvlK8`K*F;?RaD&BFVDNjHJVWx91dS*H{&~FXAt8n$F(k#17(<Jc{IMzd
zBRc1B$64Q$e8f;RhSV6+V(5RTd~ysO&Xr4vAuza%AsGy}&Y??>;hyC3XOeOTR?e$1
zAiH=BnK9HLGv?cn6+`J5$_UPmAt#317<NkZ5;5FN$uAj0sTi_S^Q))kKb@MtzeP&f
z7|Mx!)fmdhP(g6z81e{G{eo37RE(ig49w1!5^4NE8!7z!nEyv9A~yn5iGfQm3jRA+
zi}BDE-x#{dsrfZys1?JK)cgj*yf=pXV#r?R?{lmzoH|15`eovO*4-aNy%-8!`RJ`L
zm_LPy8;axuF+3>Xp%@woD4wS1R;T7SiJ@r>AH?us43EU{XbjzB=n+G+7#?GJ#?Uc_
z<}o}TLwkwXB8HYRw2t8k@wSS|UsSQY;Kz3x;XfHe+Zfu#FsO?EHo|LPejb$dlmxA6
z?w=a*bPU=EJR=;gh#==#!7s4TV(28ea}3YL@Vwyezkz>gZ>HuKsa5JF;k**Vs{&pY
z`p<8E0d^7GO=wqET$*1U?Q;E~*Le6(3~$HKTSDK6;Y|SrqZS3;5^v8KdKCz)O8#k~
z-y{0O@Q!f$3hh@IT2R98#_%4SUkqP6iSNh2O>hJoUiDuIK8oSv7=Da#nLP%?FffKu
zF^p!J#PEqI86Lyn7>2|!OuV1Q@L3E)1s84L|DP?O1RTvikNIns3OFM~W~9&pu`gm6
z6T^fUzK`L{7{<o%O$_5>_$r2RBKEb=`f2%e|5x+3F?=UMOyd9Xi)R&?D9Qa$7&M7}
ztw9m;DKj~SdmClZO^e~@7^cMVOAIe$U}_A%#;|By7Ei0D7+<|eU;8wNlE1M9{-RFW
zWoE`OD~7IXc|Z+j$1sPzZw<<<!Q2?;#n5v#dacI%7#75EI)*bbER12}hGZ@Vh*EP5
zi`g$?_?>+`hJI=JOJn{5^1ovETfBb=T_*HTq05C1U7bPU73>!={3o1$g#Jt8+odw-
z#_sf0qKa4(pbMq)>UHys7|a-~LV+-!0x^U{0|n^p0%6wOYTp}?AgXc&&;~DtSPbzP
zR>!a>H|takYhqX%!?qZ<#}Hnhye@`K0*KcO*uabzaz0PXCx3GcTZFT<kiRS~e+LJv
z7!Jm8D27X=%I@L_6T`k3b~7Q`Sq0B^Od_9vbU!;($D{+oXVuV=PkK0pqa2Q6I3m?e
z4#kega3Y42g`5Iaqy<rmtVv}?&c<+#?IaF2j`J~Gh~bMk#>8=v#&FPxqeUE-W4OWr
zGmi3cT#exx`$!x`<G3EfjTjQ*NQ~oV47Zq(k4xWSMz|d;2417^NKbIf6^*&e;b^OW
zL*n=Mm*R$?B5@?eeY3e&Xk&tZqr|H7Ny%}f#E}(8b{wg3q{aQ)J&MPX9!Kp%{Pm7v
zar}GPSF$xN|B5(j$c+2j%>oakaXV5@9Jz6nj-yN*CE_R<_wP3;#k|z7l%4K(nS0Xn
z`4zhe6?iCg**N~W&+iL7`G-5CD#Vc&N1Zt8#!)ejN^w+;qgtF-Eg)Y^trAD&IGiEA
z+2fY;ekFe|8}YR<s2)d+xWCV?b{zM_Q8SKOaoj5$Ui{Hml4h=HIhP1>Z7n6MzK8qb
zxId0YaXcJHy*TQ}@n9Se#nB*+hH*R)$Kkj9-CIK%RH8f$W?Fok;zl{zz-@8dgQjv4
z8Z-NGJQ_!nIGV=&yC<^ere122mB}kb;&?2M=5hSm%3sXTIX%D4Xa1Z&wQ)CJ%Q#xa
z(L0VlakP%(i8wmN(K(JbakP!&nK(Mc(JqcB<Ng9^=JY8kg!XYf9S19s3i-B7ZEvRM
zlTv^tb&TU#5#vTVR!aA?NzcXcd>q~4=pM%lal9DED{;IU$4esiavW!uq#nGUceiy)
z@=(8>bcw?&pVC!|j$YnivbaGdmKbplMv3FiI9`k6b&1Z*ekNx}ycI{!IC{nLb{ynT
zp4WU(Apr}ValcQ`?;A(II0nZtB#w6^`Ui1*7{|LTv^e_5{X1(Y`F<SS)K;M3=^2$i
zisR!r2F5W+%7FsBXl8&!XA*2(%r%*xh{1h6%KDTBu+@pc&^U(0F(QtUEXF7NX7hO*
z!&$R!Q;f}-%ojOyqgy47isQ(i{vJjKahoKWU&b*uj=6Eni{q;}#>FuyjvwRrI*vu@
z`QM5DZ`goOWsYZd{y(bT14@dbdmr9~hYc+3>@JyIc8i>|faIKWGGXLZR1_2gm<3D(
zBPNm(L=X@W5k*ij$DIx{9j2#eK@mg{5fv~Yeox(X{^$3dQ|F$iZr!?dD|UBv1>VOY
zoDQ+P3-&d9iWMZ@r_1q-fNCrC+!384P4W41tS!g7ax5>$3ih&ctSZMEkvz35cQqRf
zvr`V@%2?;Bt44XMGKicj7Z$A-;SJ?@NkEr8-MQ#q7B2-}DaU4-#|~SLEws5DJInEA
zxt`5<l_e=+#M^|!X@~9Qc%8U=)g9${Lqd59NAgro$F<o{e4Ra@uAbA|CH%L9a{E6y
z@32nyMLsOYN9EX4j=kl0w;b<@!29Jmb||av2Mu}N?3g^YuN)tggVVhH3(1H#<f)HE
zjQA6FKvQ>+W&`VdD$LJVGLoY&*&567Q#nqQ<Lh#imm@4ksvOaB80GNw;E-nujSIDe
z+Cmu=6TllKoHWNRhbNeaPf~y`A>Ke}Qs}+AP*INkf{zG2AoM$--<0E90SATl+)_*>
zhXfNGW<yHjo_666<v1$dV?yWd!jI)3rQ~t;?pJaMelEvJj#p8%iQ<=Xe4MAMMUfT7
zuN*en1~~Ya<7_$pDaRQpoIg11mt)G{yx(P9<rm0b9Q@1iO`hVw(tcYp2kp-bO1TE(
zTsi(NM@AHxQC(S?HB{;vy&JSj6jh^oRRE%RW_l?HXNESYq1gC2l4M7b6GiPP>O}P}
zR0icnQ9X*hC~8CziJ~A1%5djz%_#DtXe$vphVy888c-NTQ53bJ=v_l`9&%WzepBTp
zWm;7?ih5C~C>lpmKdLP$j-n)r22nJO>c`W>8oC*CQ!_7GY7|8&Q(;=o^()Z48j6=|
z&_X^tnnckwisn(Yi0WOme1tWV3{pd7URsK`RaEa#eq40EUPHBwqFof@q8J}V`zSg@
z(U*xv(J_inQFM!<dla3;jIL3fNAr%?=|XEy>P*pqn|{yZ0L3xChbTWkik?wCJi7Sv
z8mbpF8$};lb(4Mu4Jy=!t(~l)NO^K&|0o7TF(QhQQ4EY?P!vO>djIm^C_a7!L!$ao
zLP<Ur3u`LM4~t^BB=LHcd^##*u17^NCW^7Fl&*QBnfIEia!lqE>dwEbPPFqTL@_an
z%c8hEib+vSj^d&yE@qUPY6|fTToA?7D3-S`9@3?h)p21|KUO&6v4~g^mqalwic6)$
zSe|?Y&?-76bVU?b(jHcmlXaEU8cXByd&;Iq@xGkV#G1W2ifhDXHaX^t3c0NGx+w0B
z;+`n3k78yNH$?Rs<C~+HBjCm;W<@buaGzAhO#&#uUqa0{XWl|D^+a)NnqRvjXRhEo
zh0YUthtR>P3`V58OT3J7Z<Mc*sNO#3Tom_5F+Ym0qbQGJK@<z4SRchpQ9KaEgDkF^
zYGo7;u_~i@jP=6mh+>iCWl0oEj_Ng*{JL2zoTv<XOQU!+ss~b*19!VT5yg{HJR8Mx
zBJ)%f%c6K%FlU6g$MBixe}AhvW5a*njQG5SE~iQIi+n{C*KO2`Y)9;@w<?O&QM?ev
ziz2g5=$a_jrj_t?KBlYJL&_TI4N<%t#m*>?(8R_lHbt>b)Kcb^D7KI(zs@&{9wxUn
zidWMDl;P6l*P_@S#p@!lLsGeTksdDS-Vo;H7wL!BF18KUcoc6%@phCaHs})A6UAOu
z@nae9MDbKj#SH$xSnsl(H_F?)us%8aqWFldJ*pQ#ejqwO6v`-{MDeNMFNJ;<#ph9c
z!7lS%7U#;|s;Oc%)zO-Yv-Dqy0JU*_LNp2^if^Mh$bNTmnHfbOz>2~a5R1YW5Rbx%
z!sT!$-eszc^0b_efZhb_OO<8kt7H^m6e$rqAhbg0exVfR;y}`G#7i^2i{em}>k08k
z6o;euUihb?I3nQ3D2_+*Llj5Fdn}5|h<yA}$xl(7h~gv%{3w1F0a{2t9ameC{u)J>
zeD#}TnO^<^s|-CI#hL%V{GU;rjpC|&MS;Jf_&cqK8p!!aC`12^BEvwYfhq?29?dE=
zP}Kko+)<V@b5CwH16c<04Ad}?Z6L=$u7T<X_@`;f+xaDXa~?ey;jX#^R}?><uXwm+
zO#}G`A_fW!@J4c$#^!wWS-u{<r!^?<bZ7A|D+{;>yvWcEsg{A-0(fp@9Rnxomp$>4
zUQu7)fNdaVpn-vg28s=o82VcC6$Tm^C^gXEzyJef29$xGhQ8pnv4JKAIvVI?ps9go
z2HFarLCp=cO5+v=TBh-L`Komqw=wX0zM`<+IxWohLOU2}9Qlvm*+93ne3wdK;5-3O
zK3-NCx4VHJ!Z}~)i))I=?^P+Bo!8qyAHjXooPGkvbuSxeU=T~pz=H+`8yI3>hJkAh
z3^g#!0PniJ!oY9?BMeM3FxkLJ1EUO#H!#7#Xai#mj5RRM0Pnp$Kceo8=mOs;H2=%O
z-4S&lq9#gF^8(i11!`P@nqpw8flCZbGjM@{3k_Uk;9>*3QI~Od7AUVk{aB!?6sjhL
z>if2(mm0Xtz^p=bxq*I#s{izQ+ge1j8)d&(sCcU^1+Fx3m4WF7i2rBcYJ+Dc;KxFh
zS)}R|Dc&2~rAS>^q^>h?y@A;VZZgpBq0*TKPvzB@t}@XZ4BRePul5>OG|SNU`Q9_U
z;AR7J4BTblZUeU%xYfX11M>{rCfQ-E+sQ0aON!Kli}d^_jk&|nxBcE}fS4R+WJi&@
z$H2V?X!Cpn_etFQMc~sSwf?Sr&Hzw&fq{hv4i%~5T8bAL?_L-o{~-g*3_NY%VFQmy
zT`V%N#K2O)iw%80EGy_y1CJSaGHuo40-i9?yViei;FNhvn7n$GweXCguUB4OOFe5~
zN-Z^0#GVs@=M5|uz!KmEzAFu^Vjedat~RjKz?%kMFz}**H3rri*lOs%JnIasH}Ep2
zdJMcIahdTA2HO9xfD!qdhTcu=M;&rD8{EOFOZyekd9;?Iz!rAu+8VsdA~Nurf$auf
zH?YG1FIuI1<$s^bKRa)T1`0E1mw~qod}QEb(e}21y(|_3yT!|h?=YKU&xNA@J>k>f
z4@AlP60}d43u`O#KV)g2%H$@;PYir&pj?7JGdMe^v-y?KFARLiacSs(l9XrA*Am2^
zS;SETh5=JJmLx<b#fsNw(4@Elhhv?oA382Oes*3D6JzJ(cm{knMFRnqo5(hiG!U|P
z_*s7$NExUwaNNL8RA}IUp&xU{418nYTLXvL><t_=@EzNaWQq@_wYAk}b#nLCR^QiF
z8Ijy027ZvBqa34V<v;sfex!|lgFXCm!|HX^k1WYwt57GO#U~8>Y=G-?em8K^z%K?)
z88|JRUk&^wphF!+0ltNj4*xcj^o;NcF0P~g5d5dmTSW42181qn&-%wehKWoQysP(|
zfq%uMWp#8btzx3837Dv6qB9ql`dR;%(%U7Okz;}%vkgo%G?8nfx`{j!HB8hpQQJgK
z6Zs}0CJIcvTt|IcM{yA&m#kBHP)8M-C^GR|9o4X|+H^Fx{rKEEChD4~XQIA|Wy?zj
z)>V6IW?xZP-BDNdTvgC0$e%E=tk^_}iPk3Cm}q38)I?Jg%}kV;P$n9iXky|?Dy*xF
zRmFUa&MS$0UZvpux@uh8g61Y#m}qIDm5JM5Dabw9AXZmBv7)T%uHqAQRn>Zm574$I
z+A+T-x|nFs+?nWTqLYbtcI$No_3A19Wmr-(!uRbRC-S=1Q(aA*XQG>l?ks_S8Wv8^
z<vHYU56yPEMYz0*QTYCRJ_Xw3(DgLYD~)@b=#$2SQ25$6)%&p)Objq}_Z(<qiis+D
z^#_?4Y+{Isp(aL~7$c#>Ont@?#fF<0VPd3-150$Nj*?JfF0~p_PmLAtw9G1#OpG%z
z-qZ^!CYYF5DRwyP@_K4<z5hm}$tKp<Q`{rKE32lOxWL4PB6d-w5)&5-xJ2mgbgWC$
z-YZO8$)*xRRt#5}m~L`F!(I#jGjX+vT_)Z#5gyIE#>Dj|W}28`;#w1JkK|ovf{uXO
za7b@3aifX*Ox$l`mZ|qX)7@cWw#l1NwD)Ecw+Wb&4!uRdttQH)1}Ss9iMhg@XX1!3
z&kDU$n0J}DyE3lOdn@t#4H$90i3KbN6EB%qXyO4AkDGYH#DkJemhdC=I#~~i_hA!!
z=jSSvMJ5)TSR%|vg)SA!(ym)yJtnwv!~2sao-(o0#42GfGx4m6=S)0J<6p^m#{6%~
z&+-lh&x^ovNsj4qy$3hTuVDMB|6hHrHt{0sUCx<&!Nj!sio1u_m{?1z<PYyU(Ydg`
zT2o(bV7?aB-)7=9_CymKO>8ppiX`!>iOmAGnAj?yXr-QJx$1Bg{)r~|L{i*t;&oB7
zQ|Jz%ZwOr%&HcW<qJFwJ*#;VD%=@6<Ht~^(k4@|rwePS=2-s`lJpokyu7Cl(3f~v7
zFU|kJ#D{`+c)AmPV&YSF4GRM;d}iWv6Mvcbn=Rq*tS?NsCOi({CcZN9HFGTyV<w^k
zOcNHX^2HoOXzuPttJh}IYfC6W-v%mf!ZC5H@JWxZjQA!JCVnt+)I`9+-^4d2zGWLW
zkup(XV!vn`yEc>ZR7g5xOXdM~%#9f|_@)NBnhu&cY~p(p-<dch$z4;u;oY0`n=l=h
zlpGNzG1iwIGw~zGLldXi3{3oF;-raROq?)LXAgd62eh(sm+5E3$_A?BkNivaWlma~
z`D>-xMVf!w#2NAaK{K}K3D0_4GJoe7zFywF&qn^_V0AF-J}!Va@sEjO3ndoLnfRCE
zwuKrNGAv|T$hMGUp^Al{Kg+CUA<IHl3$Sp_xd?5b+A0}(v?+h3%vx8rU`r+!tJ9ln
zp*s6Jr(U;ktD5H2w2*J1mWA3DA`(<!q0rJc(D)+ZRL1>4imQ%=x)$nNXkek9gi=Y@
zEtx9{%a|?`qPL+1mh)#jBUR@WG_p`?p^JsC7RoFr3#~1*vC!B;6AR5Pw6M_BLbG&2
z%=l+#BVATRhW;CAX@O^iwvwP$r}J4v*MFhQu&sr57CKt!WTAc9h7K0SAJti=J1C~^
z+RbkeeL#KxGx@yp<va`BEcB7Ab+^#NLQf05B>MR@Pb~kXo7T^g=`H-X)@Gh=pjZ@r
zE%Xyke@j<!WzjLqgDecT@Q{UvnPm$@E!=2fmW5#!hFiGM!bKKFSQts$EKIO4%ED+1
zV=X;nv!@!ySeSUc>cunkGz({M###DIxrgu7S71-HFiBFJYGJa4ug_#o5icivIKRZ{
zbb<>k(9vLCeSWcpODs&M*TOXF>6CMsh08_Zr53Kcp!nZ-{uLGuuEdoVuCny(7WW|J
zHq=vFRK<y@tJ!!cY2kVcGb|jr2G?5P!FQBl5}cwZ<%H5qOCL*k19MSR&r$|`vUx{5
zgJxTpYhfN!v~aUnHHXnH+-B)h0dKLutGy{k*L*K}?ZoY31Ah?QL9u?t_gc8m!krc$
zniy84(cKpA5hXOQnHbQgp}OC~d<zRLJYZpgrDxu#?Sh7ij(|t@@sGfRtSLY1PRZ9J
z78Y69VBuv8i!Cg%u+qXR3rj6LYGIj$r!722J(e#2CoS-Xcj|dUOkLJcan0mYmY#TI
z;ZWci3(s13-okPV&xvh^R+Ta>3NRP{&c+H0Z_d^Q`&L7B>Tv#Qky&G5t%Vl^Q~8S)
z4v4kuEUdTil7%ym)g$x&1u>LmzR|)a3vWqYUa_#54aUND3tL2zzp-Amu+;($I49c3
z*=Ff~b8I=UTiC%Y&=?VZeYXDd^@e1mZ|}$ti*@<zVmIXU{tr29OK)4)EeW-2koyj+
zpj0<bzWu(-C>EZy@sy4CE$m}gwb9bX2NpiG@Pmb;7Cy4@v4si?`z?H8;ZqBi1)Jl)
zh0iT~#dd4qi*(+(Jorn&>#o)LEl=|e3sJ$UNI%rfH2=ue`gHD?1=oUSAufDJC{<C?
z7o4;ZvW-#fEB%!e2y^yxIVl0;aDg$GB@-MF&LMV8PyclLM!eq&J!s*(wEVkk8Xgw>
zz0e~<zfNT&i>e;8@FT}b8wECwTlh(WvTU5-ILv-w;U5bpE&O8P4;g2EWu>r+E&R@+
zsGd>J%{*n{G>5xlHK17SdajgX3oYrnCG)*?y6ydG;V%*32=linfA(MfMf}3+`R6RW
z(K<KN2JydaQLpD`2%eFdSH(tE8?be$Ruh`)5gE`z|DBmptg>z7*jS#O#~XrjZB)0B
zXLHv~b`2XfZPZ>+Fy(X({}AQd;2)yzQyHsH>t98MHn`p+RjeA@D6&zDk~ZqtXlSF@
zMqL~AY}B{Wz{WKN+0}n4TpW~eHtGAT3mOi~zPDIC(k)VAqmhj=8;VgT6?PetTWaII
zhxDt$Tj%s9{d3E6o-Nirw~39hKjhFgwb4v)bD_)2^T}*wqqU6zHU`@0w?4BC?X=O!
zMq3*jdgQjVaW<^pUMN8a8y7vFNiceM?xm5u&NeO|8R=r9tBvz)bhFXRMsFM4ZS=79
zuGpS7=Dt)^t3;b|zKuId)DtC&kDj-=CB;Txrf8$TjW<fvgE@u#EZTWr{yXE#PL-(n
zP4XHxQiE&^wlT-XEjEVO7;0mpjY&3oHd4cEjI%M`#&8=KG*TmMjI=Sz#%LR3m^&LK
z%ZlbSQePd>b0AlC&dqtXY*{1qMk7VxQCI55Fu~Tx2wV~`o@`@^jZ1A@W@D<<?*%q4
zw85ZuSK=aDZ<nLH#Ky%ocnuJ@9&m^6G#h3koiEbMZCt^KHm<gDrD&MWSOQ478;)Xh
z1lQP@VdDlHH`=(?#&tHXw=vVkp%Q&8)#?>Fzcy0UO10XLXBKh*nPp?Pjhk%TY@<!7
z;?Ct+oePhcc@sp2V%G1)x7xVP#zQP{8@IE-ZOpf^z{WflxQ)BT{yW7O%HJgblOvCn
zs+AqH@3C>Ojr)XoCQ^344KgW4%)K)U)3M%@<Q@?3gF>&1<~<@{sf|b3J0?dK*;p)`
zB~)^oyrkV0dCbO7rHYO^AGh&@v<l)~H8M!~ZC<Bk^<}o6b9mauGd7;J@tiJXe8djI
zZe`;&8{2KHpiUc`ZEUfzN>W*CW1WrF?4&kc6b==xVOJ{CX|)o%-o{HdHl{;22zc4X
zV-l(jSed`c#w)@vjTO8t{H-j;dU~kbCj3{0wz^(-f9^?tUA)A5ZR}vvwXxI2n>OCI
zvD?O%Wonm=w`lF(nTN{MDmRC(SXGsJM`G=<F>RgJQ(LL)`WF}1%X^o7R)XFax{rl0
zR1463z{ac;7dU-v;}aXcjf9O)Z7$$}Yx8oS{LgKCVZ*XvGhG{B*(kRWwehv6s{HSK
znNoKuWeA5lO&gCZT|RB@(EWlgW+Tpo3iXj(SKp8IN;#~KPDQVUC0;s~np+asNZR<#
z#wi=2jTBq8jUQ}O*w}CL#w#4Oc`<87hk~jHY<y#*+IxC2!#<@dl=_a%+vX}<d@l-X
zHdaj<Ya8f#HCB@wt8W_T9kp?c<GhWZZT!f=pUp;uXQd@4uggF1LeA5TmAkF#NgKb|
z_?6|{SnY_H77xkWc(i(~u^Kq5Ky8nlw(+Npzc?^%kDOs%*v&=N&yDq`eMS@YH%BvC
zYa=6ufB4MpfO8^HuZgO5Oh4l~Hc^=|REeQ#42bFK7}rGAt`WJTi8k9?r(c6tH&NL!
z<is#Bj!ALk#!x+moiV%_LtYFuVz?;ATV+u*h89^h3SuaXAwQ<q)J0<YvCHaP|8-tb
z47FmMK0?PBYR6C~hQ={8p`IqHZVdHes4tkw(KU#nIEIoK8j49VF@|S=G>V}#hO!ul
zDaOMw6q9%*qcT?Y>*_WY`4%y>jG<W!mA{9Y3zN8&fYw?`J<Has7uv+oR+#N#XfJ@w
z-~D`^-^H1(PBC<jVNeW%W9Sk?*BE-o&_~41i{bnjdd9#*fV;)eJ%%2_|4U45&{UUR
z#tZ0`*2xD%-x&JEFi<$0Rp>8ZKn#yK`b&qO^Q7G+;*c1I#xOR9aWM=Nu@NzhjA6K7
zE;y&;D8Zv+7{d|>^q2d`NA&Z3&CR+J$4ltM7$(IqL2%_3lF2blVW!$vy?_OdTy9rs
zJ-F)B7?@vffw_?BHdS=oDSt@}(_&Z@!{Qh&jp4EwZjWKEsJc9cYhsuY!xb@H$@!lc
zrnB}3)cYTktF8wVQhMpGW)=ir8^d)m+#JIkk-0vG8)KLy+GfUZgG9fzsbZAbG2A5l
z%7}k_TZMo+Z>daTZ`Q48on+o7n90qPDEGy1e++lTaAyp63FmI1rxKARP1QXytZu6A
zjp4PX>dU6;T-V~tWkT~~SP;X)7#@h>A(5x%2V<b)>o+m!!@_^$|1g)tur!93V%QMF
zqcJ=d!^#*|v1P{aL=4Zy@LUW}#{QepdOC)uVpzt;wo!9pLZ3;89(@_l3tpb)WNy%6
zD`GhIvIeWu5!b}<g2=p>mZZSi7}klmK}E)T0hO^B@#Pp^70$*OHpTEt3@hF!-YT5U
zg14kKlTUe?w~gf!!}dyrUdHP&eP{!N=ynM64WZvQRl8U|F+I!IDUP>e*d4=J4l*&k
z6T_YuK8@is_KqDTdt-P%hJAwH75bjgb4}F;Ecxq8J`{SQfyN&R{#YnW{u3$oI?dGQ
zF?<oj!5F@a;Y;@G7+0#mkKt=J{ut~SVlhNxFk-OSR=4XdV<x-#b2(F*sk_?i2lPG7
z6l*^ogCja!Hil;Ew~>W>J=@Vtz1cT+<BUimh9HImF?<t4l39!KDsvpTq3RdS)PRcW
zJ5J=JV)&_Z<lAOye+<7hQ`yZ`<L0VhU*@+gw4=KJ_HC}lH&=&ZI2^;t7=B^t#c(8s
z<BS-?4>25NoyPDZ2g5@pIXz0QZ?2X!SG+}q&mC^5*wkE|i0O0bdA#t?1gOz}Q(?Th
z;^E%EGQ}8vkKvCPPDvI{$8d&4ohUuYSant3`}F&8wHE5n82%E0zu9FPt1d0nxE6|!
z<{iEBu5F>t#qe(oMRC-MBO{K?IBLfAi1F)Rb*sctH4el<d?LTJnt-f0vg0VdyB>cE
z=ZIupT0S?9>T%rPLids9TBy%ks2Y4gEU!V3AIG1xq=kyaQ6RW5&B<%2cSh8Xqj4Nf
z;;0ix-8kySQ9q7GOen5DDjUR6EP%M7fU=f~t|SgpGU>{MuY^{vOQ9L|Us(sQjWms;
zSscydXc0%-INHUzlLf8fXdOozF@9uAHM6DSG}Hypl|I^1EtUzc_HlHO(2j9zYpK3!
zsW`E}_E65Tma6lN!p?DYiKA;A=f(9yZ9*K~;^-d7usDXt(IbxY;}|5-dkXCnN8dPl
z3GOYlq?Ilxx_)u=k7Ga_o8<+mXDc<ZGGZ(B;Ena^9UR9H;S7y~UP>}nB^?pRSn-aG
zV-&MFv+BAV>yM6OOdJFhBd0QzadC_nNpdLAxpe`TzD$l|N*w3n_&1KJaa<6`fjGX2
z<H9&Diepn8uf%b2oSy@jAIE|?rp0+q6mE=TRveebad{k9$8k*@SH$%<@>Ow6kK;<g
zPk8#k7JePSw+;Uj4ly}&Gvc^jIM)ijE{?euSLGA1GIXXeZxDJxD>XZgn<x;+yf|(a
z<}GpD8pj;Ll}Rvzx5aV0<nCrEReCFPeMcO3$8k?wA4hX%9Crzyv8r#?Z!-6a_kIbz
zPZV<f219uq&B8byh+|b8tK)buj)&rSG>*sOcv!?1rBi<-j&PgK`{Fp3#Ni00cWGST
zVnFbC98bjYY#h%?lqcg@7RS?ZJSAT1Kt5&Yo{8f#iA$?^1PwXQ$FV$)6(YvxZ)NGN
zOsD%*m3&UKzYxcoIM&ATB5Oxx;Gbxv*2S@2#9o%%aYEyzbgT_=@PHaB-zXfu0}yYH
zV@n*dIO1_^jpNlgKBX~i^KrZu$DTO$#<4w)*W-AL1A81hB<`C+--u&pTptEPJ^bH6
zO1Ddb_!>;i)OU-Q_#O7~Ci)y3x_9GvKaPD8^qx>QgAc^ukK<sQ`7n-;;@B;<$;`4?
zK8fp7fY>A${qs1!h$9+@5yzKl{a?rNRT{JW%hQ;e8O0Q8u{xw>+UZcXJ%&1Qcx(n_
zrunoX5l0~2l+dJ5+7PB?D&tm&cfU{`k@RgG2We^?Cxr7I%W!(eu{aKi_i!BF3t-$M
z0)B|=1ILcWLASSF4Px5!qcD$)01f^*j*}cP#rum;%ADqaEcmxH=ahg-tIi1iJ&r%p
zp_Li`D~`W~b2iQYCtW5P4l*4Kb}+<26$e!vbav3i(On4+avfB6P|d-U<&i9*<Y!B0
zj!^RR9Mo`7-{Cqy)O3(9{5m2WaZu=>NN|BrZl|r~$kBhTRBcC3r*j^_kQ!%DU56hL
zIrSXeQ&W#%4ILCaXy%}~=qzzi=0G`UB;Ha-Z~mp&m_a3th0|1M6QP4Hiu7xf+k3gr
zNDBuo9kh1PMuJ*7|LtyO&}~Nw+S2Qwqk~Qk+B@hVGJIEO=>0S6(a|uTZ$mE~cT@6k
zq^=G)BXqu_4@x>uXg3Gl1(4H2z^<)Yrl*5m4thK2<DjpDeh&JxNMF>eXL&5Z&m7nt
z46HQRK{%|e#XI@cTB}(hpS)Q)7ZnV3FwDWr4mLU%?qGz2i&#Vs_V&*m>458|IA=AA
z#;_zEjCC-{!DI*DY{(erV7!9~yrO-B&Imb=ZPPC&6RB!I<jw(+DGsJex)(a2mtq$<
z_+*qWuG_Zgu1C%#4yHM{!NH9VE_HC3gKHejaB#U8aFv7U4z3U-S33AQnNiwWo^G_c
zgVuAkgPg|MPo6Hl>TJQ|UzT3$;5rA_v(_Za_}1#rYYYAyu4}N%;3A$pKrqX}YzIpm
zEOl^`gPYkB9Ng<*j)Pkq%ylr&!L1H&SjO$ne-}FN{f!Z4w^mow&wj17x`WwqaF@e_
z2XV#b0^U-`(4iMZ?tQBvXA!v<i7#FEIk?}!gAN{YFyFxf2MZlM;J|II%*Si~*;+O1
zoy#ej=55rJHabTSJN!VyA_t4vLhi|5esg4|@E>WT@Ka=K8)ddpk2-kF!3qZ}9X#&v
zmoc7p@C@5LyT&{`<zShEzuTyWZPnPe>fqLbnQhggw(402&pCMB!E$!PNA&mX?iU)q
z*j8QfTmG7Fa(F!--{@93SnXh)gY^zxaPXpoH4fG~c(bjVaH4?kAwgS}+fLirqn+ZF
zkuR|qzf^UDqfg`6-L}!??bMuhsyY{7e^PssgSQ;K?cfy$n;mRn_xz;xs}8nFjcgS!
z^}Oa_yKvrg@VbK?4t9#S@&*kGyy4*BEs@GqoqV9|l2AU)zkD-uH=Csc(}Cq+58DYF
zm4i<myzAgSN1s^ukqE!<V4rx&;m7+24nAZz@0-22omz2I$qvcR$1EASLx(AT#s=o-
z#h;%$_(C*%DfBC$j>w;Gr^+2fo&RP73;{LT>yoh@#2h3X1P<a390{7+Ubzz8bKnc8
z{6OZ<^a&CxDNIJ+&%Ws(#iD4hDrkue4#W(iJ0N1r#X$$(u_vZ5HibhD4s*N;paOjF
z;0XJUhZ!DzaB$Rt=fZb!j01&(e;s7FIPTyl2Y<4`XXl&{`m0cSe|B&(jelVyd{xW*
zmgbxia9ZdYp}!0LgC*ZyuW$KFyaay>IP2h_H0K<PWm<$mnJ%ihxTaZTwTr4Q;9`c0
zYh6@xk>#R~i@q+hUF5iE>7td3To=_{G;q<-MV^ZqE{a^#a#7PozKa4ECx__|F0QeU
zP!E5K$zuCLSO1Yb-d=GTd2JVUT-0+>-^IQzrFC8Xt7!HNjrq@ufBEU<=CbnHD0Wfe
zqRfSI(a6;U3mw0YN?rYT?A@OF>aoTynz(4@qPdH`5pcD9Q&(^2snS9JcjK?U7HK|z
zQSr}0YZq-?baBzuMOzo`Ty${J(M5ZS_1-g?BUhI$-TB`ytxl3?XIKAu<j*XoUP;e$
z(cMK47u{Suez*Q+;i~)dT@8A=db!Th8E8KPy<GHmK{J@{`naBP>gS@ri)k({buqxj
zKo{d(OmH#C#b6gBU5pYlhPW8!Vz`T;V!*r=Ma(IaX70F~Z-g+pO=Gl+F@ndrdfx#B
zC^nWUM)XsL+Y=}`(ZwVe7r404#bj4+q~b5#De25oY$|KBhT=+o@-K36v5QMsS-<C<
zTCBGr+$<YRns-o_xwxF|g!MkX^eXNhqbe8Q*NO0-AR}JoVmd8h&34UW+^gAg9xCDy
zVcgWl>~s4YYvei?*SmPa#gi^(y12o`{VwLaxY5Nd7k983xR}kPUEJp4b^<f&W*4`(
zxYflR7xw-Pa=LX;q=sN}=DHxBC&E0lXh7Q<46T&BOPKe#xSJ_Homa`f*TsFpuasfj
z1uho4c*Mmb7Y|6#LqZ=ETA9$p|0fFdEOxQP#nQA%k4orcLjPatkGuFPk;`<S68;LI
z%UnDy;2ELMxp-CpV^t>fym*%jW%QK-Rtc>Xc!4e7#TplDso%xdF4nnN@8Vq-@40x%
z#ReB|xY+69Wj3Lnxtm>Vaj{YGCKs=``pAwM$BO9)wz_!L#da63v)3OhX6QB-uL)+u
z;5tt-cer}#AcZToY8f)$bg|3D9(F4iZ@G9|l<$^U6sAn2hId$TJb&XmeMSc@p$5|T
zU7TK*^MQ*GCDuNn4Eo5$$1Xl~@tJTwadCF5wts7waY(@D!vB)}G?DcMd(C&+JetI~
z<!nVIxwea#izwTJ3zOZmESHY_=@|u<WPy6(qJ(N)7mg^QOr>E|n{W|ui1X0e(`(L?
zE)Kf*&egwcLZK<46)yG*Apd}XZ(Mwv=Ikh_f5^pQb_7q4)!(}~!XOuaxcI@vQR%H`
zIR3l%kwc|;S=7f}{G7%=aX^@l6YRMi^iyWq?{$fPaq+8*-#B#qUiVa5vg)ZSrv;Nq
zNxHuu%lOm9UmVFjz{B5Z$$tf$b@7jYb7}tCEA?2N;UUx0qiYqRT{hLJez0CO4_V@^
zDKuMXbq_fLD4grznhq+mASX{aHH1#AtG9*bdx&@_@KETXmhg-I52bR-)E3TcvAnL7
zRXq>&Jv8vp&_iPnO*|9}pT$_}p~OQY@s8LCPMIEUR!DxCaFhpbC#Scmcv}c<CX~$P
z0(eglaZAD7HlmG(8#^f0;1mySJ+$-C-a`iuT|J!Vp`(Z6SC?(?p!n87&`G?Vg?152
z`-eMO-8=*xR8NoZ=ULr__V94Nfd8d3$n52zw}(C+`g$1QVWfwC9{PJ2;$f(V0Uic=
z802BF6vf;3l<;uo7h9K|m3qH$N#VOyiiUX@#~BqS=jnYJbzY6M?5M8ms784h?P0u!
z2_D9HdUefMN_u#t<9}}^)3Xa2W*08sT`<wZBo90ie6oja63SQ5uT-|tQT^Ca5BpO+
zT;Opf11|FPXT^+8iWgp7?BNm*(>z@2;YtrzF$sPJc(~ld6%@X{fUn#)_0HqGUv4LL
zeqPaZX2H|{=&z<3Z3`}&S#ZUiq9z^cbm*jpbyC-QxQ;C+f!qYH_b}7L^*(0$n0+$u
z1`l6(_?p$>VU~y49&YmRw1;Or-0WeFhlL&<@X+F)yjwio6YmmytB2b>-0oqnhj}a+
z4|lS894tE0D|`NxHMZWDegD$xjPhfhT++K)=@R!|5BGbR@8LcVKOL@4ZKQMyJp8y9
ze|6DJ7Bw#`f6&8&ozx-^4|(7X=HxugvSs<mE$5V3>|u$Ar5+yjIKzM^r3Q_UG9UBs
zxZu}1sgF9TR}bbr<>6c>wamkNn^4?Y4d|@srG{rcJm+DnhgaDKvhcizmpp9nu-wB6
z4=X*a^6;XEH6B)bctLc|>Z~s6tmER*61~Wr+4-mHIuGk5^nuQ5YiGU2?CB*1pLbR-
zd)Vk<vxhAbx`|D0Oxat9OJ8AWpULF5=%byLx4+J&KDo;l77g5#zs<vI%%F!o9=3aU
z-NTz6cF~f}*x}&~4?9KA@MQ&y3U&YeaB#tb_X}@2p81xCw>|8ZP~Khj)sK09wyv{q
zQW+cbUY4GR&pmv>?0b0M!$%%I_OMTcKk)D&yTi(yNEgMkT*i0NKc2Wnh({8A;^9*d
zpLrm@tBZQHi_Z0$F6zB5daKdHowDa0jC|?+_qJc|A<7ZJM++Z@2h+npEOSZ1@=)Pn
zzX#hx%tPFR<H7fkkWg2s$1z9#zA*`Y$p#*h!ViV=)F$!|9@CQmDG%M}>eXupJbdHf
z2w&+v9w>){BKbY7^>9e=VWCI5sNAmFa=MYL^*1=rayjbZn1^3H{K{4*V#nDUJuH}~
zyZH%EA9(e%hm#USOy=8*BNa=_cwhE!9!`1q!^58*PJ1{bGQWE$?W%@M)g$?$#rjja
zQ&;sD2Y(M|S&3g~R=u-qT30nUZOPKE>R%5TKI;2u;3LyV6(0pY3Vl@d0Ur?`v+k+F
zD{or$DXQjUYgd)!BkZcOg%afW$Q4{&Xr9m-LTd`8Oum3eHx*PnRNCTXgCZZbeAM<)
z$H)9jbs6%yd49m2D9Fz^Pu2BNURbZ5uh*Y&K?N79H1tvIqs)i$b+MHAXyl{R$AF!B
z(tvK<BV{}qk)W}UCO(?_Xy)r(Z2x?g!vhS-ul8+(dyVfqug-$vf|fp7`55A3sAy~L
zqoa>bKHB(bE1Y(|KF7FHb9>=*psDBSy6Y_7o<4f{=;EWRkMn$V^U=fqZz^fmt9mZ0
zyN{kCf4<1qs-xGI^!Cxm$3Wrql_dK4=+D$;Zi*2pGeAPeO58z$2Mc9Ko;oQq%*Sva
zlYLC_F``n^$2cD&eT)+CXrW_hRk=ROuQC_oeN6B%QG%`(&EznxNkShN&Qzb<TX2bw
zX+AFWb=-@D{?W4j+^6y{7W~qAiV83FahZ?ljO*ia(Qt*2D@A~FVpMyTkGSY0rP<_M
z?PG?IYkge9?BA$oX?{FUT_<t>pBY8n6t4)m!N&?8D}CI^R>voTkDGiv>f<q=mpx&Q
zkA=S84nuc~kGVePiT73?w+U#|P2J9V?520b+~MO+ANTsWkIm*})?GsH7CPU|C+8j?
zhu0Kc-A&yu%mqRhbyM?wkdjZC`4t%t_;}FAnr`YLA2nLlf0*Uds{q~ABNX$o*auHq
zUgBe^5B}_9c2svwhjv%fx~utu`RIS##}huD^zoFBWj>zq@m_besk;iRN1m2)XgIe1
z=Z{97_3<1t;$yimDZ{^(L3dT7hvI7gRX$ex_{PV#Y&I)%UhuKa$7?=bq<KEp`dH`V
z6(5^vl8={sZ1l0o=dq2t{cjM3O`j=v*@yL0e)Aq`LJ!qzZO)B7w6$B<uYJ7AF3(Rq
zKj*gTk^6e6CsySjn_bkRZOL{YulxAe$0t5^khUq<<>M^@ZwTG#<4pn2$FdmuwvXM+
zppW-`yyIh!kG($L_3?tFwS$_cN3PpY=JimVIr*)J+UMf~A0PVoh=p@OL5uUXN&U`O
zAAFKO_k8ttmpu2G;!k~i<|D?Y<>PZ7U-;ag2*byhKECqtHAf6q!TG9s%k1qh>+$5w
zq=HSNhyQt>o|#d$7bY{#K_k1s_VLqz{OjuI1rpVJD#wTGBgp~Ehv&ohk?;}txVSi5
zwaBaL<ndwDy{9(m*ut6|22(yNeC+pefc>tgiu_Q@-?Dw~EOdrtbNkPxU-BQ079RBR
zosYkK{O#iqo0*SaeEjO;d#3eO&IzGM*kybi6@1Lcj{>-C^0<JXgi`p%p6bHd#RPOe
z`#355L+*cn(|!~0?>;}uv}U@~KF*|ZWyC+k`=^h*^qmf8ePkq%nb1-Gk<fEO{}oE*
zRV0X^)dW;c0BKI;|Aj2^W(%c!^#t+~ct3%C3DiiSW&-OIdW6YOAd*1u1o|XUkU(Jq
zO%iCDK-ZdiMG1Yz1#g_Jl|bzT>LgG%f#L*85~!Cz{RA2$&@h4Ny>k!VP_(LL2~V}<
z8~X!2_0qD=T?-l|P?~^Bpm73UoGs{etX`R<*eyGIc~AAa)R);){nAr4OXy_@?GpS{
zMDqk%B=G07vX%+77C_u8fx*qP3EBv!t<W3Id~zC}$mx(kccyY8r(*)01awZ|JON#p
z5dnF<6a|{}Qr*N$JY{7GX^#ZXPoQT4Q$&EAUMwiVeG}-Hz>Ea0P3YHbo)XhPfdL5&
zOkhv~lNlwUkB%9fz=#A!CNLy{p_0L2LWd`CcQ3WPmwL08T6tl?s02nQFg}3^5;`V<
zu?dV5+&r$|0l2J}v$8Au<rVjcOiW->0{0%tB=&nLQvGmA;DQ9MOkhlJbzuS*B`__4
zOB1*_0Um^ViKsd`C_-UQ_WssO_4_ODvIH(q;0jh~Z}sz^#s7GE*7}v-3a+RVxr!CX
zC<$E6(%YVSO#(OeR;zmJlM;9LR!4iQzkAiWjxYZSJd(ho1ZF0115HZcK1wF=Z*O&L
z0=FeFD}mVw+?2r03Cv00mIVGjTw2;kjqjrt^-(YO(Y<o!-24fPBey3oH-Wpv&Up#k
zkwCPMx>Hmgd@cW>Wd6=R>U1A9cW1r3MTQaY5s=+iE4e>`#b>e>CNQ71AS;{~Na!8=
z%N|JJ!2}*k;9=I+tjN86RVRtE{DJIC`>Otj^A;!YR07KqSdzff1ju<bfyX5}@nZ>a
z5dxEVB7rA`+41GF&sP_0A6fQv0?#C{GJ#bIJe$xvZk|ivdDiuoOl}5Q&Ia%fxbtO2
z0vrF(FMhYI%OQVt0xu-6Hi2~syvPc&vi7`#H3@7!t5X@$CYyUw$h>Kv-kWpT+RT>{
z*pR@>RFc5f1YS+>7OK2W34I<KPf>d%fo;F$Z5FykD3^thvrU@iI|+Q+SG|_N_5^nH
zRj()TMgltp?+|+Ohw5)8uuJgU|A+sUU|t@yJ1xfOdlI<n{9L-d0^UvFz5mClUh)B3
znw51nfqxSCFoBN}_*jZ7o`93UC$xk%C-8X!W&##_y@WE$<q3S5;PjdvaK0AWLsq<u
zij_viYY06kwZ<RiHVb@F{a8Z(G(Xc<5!dgh+yuM?eoWwa0)7IC1ine&+XMoM8zzuS
z=-q!w@$&CLMFRU1IFR<TT~)3;?AlK^r-KQ6CqYLOIF!I)!ABDM;m*+S#Y+%WtMP;2
z8ye_uD5^ciLGKPN^HTyR5;&c}84>t7fnO8g0U#$6_(eG5B_aN2`Axj1gmOb7FP3HW
z-#Lg0=MSM=&bOc%KHi`67fW@2&fm2Ba2CNic8~;e0^|nB2#^_|N`R_?yj{GWzom8_
zm(XxEIN!_>=pVAx0!*!wn<X?`D7~FG=2Q=m7oc9Chx8gk3j!1ds3|yKXhbLl=Ila|
z;5unetpK$JU)E1ifUa)v-yul#12hQGFfCacpg2HDfJT8{Q%Y5p3M*sH-G#;hngr;U
zME4|`251)Gt^jujXda+Nfb$p>;O3?ES_a@UR30A4vT7CZq++xQ&^FK|-%%(*I|1zj
zbVzf!DY8?5&f@JNv}=I#Z`EH4d~lPp<8%-7<7QTX9t;Z5GeEBZR|mKzK<@y30)3R?
zMKyE#2Iv=Hbbv7|?EnJ;3=J?Wz`y{50t^l?B*2uQbe`1mBmERF_@@2?7ZtqOPYn++
zBEZN1qXK-=Pj&gD0fQ>~sa7}XSL=P37dG#&#s(M{;3C#qfbjt)1eg?Ha)5~eR@Ox2
zWt0@|-Cs>%JqEZSz=h1|n8MlpRo5PcKfIj(cz?B_zuMDZMVIAV5@1?@D+62=;L-q>
z1-LxG6#=aN>d>;Hzxpe_Ed6^Tr+9$sI6w^?pr!|U4(fja&Xw!GB-HTmNBP$bP%{Gk
zqnxGGGa9*;)!Hlfx&YS)m?`*1p=915z$?oo?zK8|c7U4#eUkRg0d5ySJSV^{f^SW8
zZWEBT9&-iEOY`p#aHr6->u^tidjlK|a4gWL_1+h7F=`ff?%W?>et-o576w=wU>!pP
zJQ(1~08a&YD8R#kzAo*t0FOx3FA=&(=wi0dnz|VbyR2wwfJcQn=NkPr#G`s27ccP>
z!GFK1mkH<j0LueB9q@W?-SD0j`dske-KOMleqaUbOZYDYu=A>}3b5?1%+<nqQx^9g
zygGxDF9!M#>6!rVY;VMGpY;J=3h;V>9RW53cv<AP1lTB9X0Bfeut_k_v!$1Avv_&h
z>ec|Siu^XAuL<4QMAzeX!4vPwe<Q%o0MP(OfHwo|3h-foj{>|E;OzkK26!*PZW<F{
zPk_Avo|~lK$;bDL@KRlZMFZ5^cWci3?D&x?`vQDGYX>NEfI2)t{W(B&9;g-#R3Ec>
z2lyhum+UnGK9kfxXGhM?UNcbf-t(Q=+3ycjmmjb9Re-Mpu6)+TxPPGP-z+C@kUpB8
zJL{VcQYIT}fQkV7S%v{(0sMd`jUXPt3E&3sSb9HaEoz-Revq1ee?h9GjPLwZ#cOth
z07>@f04Zj9kg7jebr`Is4pt*=-QQbQE#uI7Aiy^Pz6)?Dz_$U~&Cq5XWU-VN+&Wl|
z-&Bl|*@yY_H^7kqKQOrq%Wj%bynlZ_zc1#0sP`lAlBPw2)sF#=2dI-o-6Vbra3a9p
z0nP^aIne(OP75VCDc~2OzXtd%%|8`@tHCKicP7B^!v90)pF;l<`cq>q^AG!GfSjb(
zO!sd92+l}zG6hr-T2&|?8Px=231zHo0i1r%O`^Ksyd?6IhzPDBw5HHrvdFn0iCW?<
zOrj`>9m1p@UOiU(|A^H~qJ9$Xh0`F3hDkI}qD2zL!cjsQt0aln2CGI%lnRHqOgIc`
zoR(>l#J<6*snBLgz3PBo3bah3jmWf0OSYEK)8Cddv~3dYlDP0fy$brF?Yf9Mh*-xY
zIwg4^hURn;dY;g(LMd4(+#`welV};DRfwKR^h#o7604HvokSmzT$)7RB>E*WFNr&n
z=%2)ZB>tDg)k%ESp#H!l?%$I$GKntd@&*YVoWzhMh9)sAiQ!3%5GI=q1wQ??nDp3S
zMLH^p(MgO+Vr&u@C2?^Q<B}Mk#N;HVBr$<WaM@21lak07qPkyNRCkDe{PpUU$Ezo&
zO6Ud5HS<11-M6=Jb?u_&Kjl1LT=ve$f=iN^mc$iFT$#kBNnDoHpAVPQ7)lOND=Ktf
z;887~Z_KG&IB``H)03F`Z59^_e|m#{cjd$Snj|-v=W$YHMiSR1aa|JECowyTo06DG
zBVUNDAEIs)Gj5>fqdL|s@siIM+MAP@lf<n_+?K>G!mr#eoh^InovbRiC&3MmbCY;W
z^2J><{I0n(iMx_moWznO?oQ&#TE$EMDSnW(z$_$jAB#GPg-JY+#QY?}A*$fV2JMEb
z1xcJ5qUbgqD;_vh^*>ek>gcjdhpLBItt)fr9!}yB!Ha~xJ-?95Hy0K#o3n~?Z>XsL
zC@XiUdMt^@lXxMX^@PypX@G#Il2|6-=_H;N@JuCL9-;7af(f1)s+J30A#}s)Ofpv!
zCy^B*JH(4gtV!Zv65l1UHi>mfe3-;XNvu!er6k@=VpkFyl6YB)>-8iyCb21rtx3F^
z#I~X872$7A>Lpt&ZMrQ<m_v1|*v76Tp+nE=irAj~?}WO059xt%M-p#H=*}d*5qU0^
zseA!`D~Y{Hyqm<^BCtD&caqp6`1DXkKuQgC@3B`3pZI+N>rZ5UAYf=lA+>#+#3xC_
zl8Cc|e3$iU5?``|h`?t_e4fM?N&QaFtKa@hT4jGNp;i**G&l)Eyk^??uO<|8p9`Zf
zMO%Ux(MiHhq9Td?Nq9*v6-G*e5=jI}B-tv&%dIh7^>qKP%*xYO_&QA`Z0(iW4v0+U
z>-{%^zZJUrXwIP|4ztIF;KS(qB#tC;CW+r!yx&y+A&KJxh>r?5CiF+4rNh)uNt{UH
z=Oj)F=Qp9h2>msQiNn;4Vd}kMiqTK8V3Vl!c!4)eof)QzhpRtCj6r9U_*3v-Y0lpQ
zCJk5r2soGK|C_{%!?iZLOfk4hh^hi0w3<+c?p+$m36UG3PKdf8xUIW-h=LG>A*%nA
zpBJJ=h`BB6kY6)In~x*;AtE6z9Fgq~SBE|>C<>8NOAi{gLw)sdEumx2W^x-Hz4b!W
z4^bMTEChc5H3-rAU=Ald8-^$j@ncc;f|oN%O9VFx5j&Gd?_W+tg*e_Q_v?7cng@#-
zhahbdqG^a`f}0C%5#o>Gib1VLs39X%Ynm70qYxj5Xd9wkhyfu6hTKM))jmYm5a$W*
z5Tc`iPC^;lSwI)+%*vp*Tc}5dUP1}Fhv<>U=kqBbc+LpLAiCb-?GvJJTBcu!{%QQ|
ziQ+*a28UP};(-uDLJSRYb%<+13=1(l#04zL5F<kU2~Rghz(}E^gpLmJ@CbdF`PdNS
zLW~#Yq!5!sOb9VCM2Cnz(Cj6VA($cpQ-yvY%p=IYD8$7ft_*RN@Gl8*nE=X96L4vW
zhgRj#dwH6FMTnB25mz)!r-dsr8T!9;=%^K$GeTS&;^q)@LR=^O8`GiJhnShhHwgG?
z1ed@5m&e%xZsMT#d;xXd65`encZRr2__qn2C-ioqbA|HSEDGNd;?VvK0=m0H+#BM)
z5ch}xIW+Qq!3)xy`D_Lwb?MPy(g&H%5HE$;z)}tINQh-2o(^^QUlii85RZpg9AZg`
zPVeVW8L0=ir6C>-@z$ck+eWIjBNeaMcp}7;A)b<0oA*RozLB$Mr22lOsxnGF6XMwr
zt3$jH;<*sdhgcqBMTjRl7Bw2BxKC&M9g&qxbZZH(K>G06;<2ODst}}1=tVZa5NkuM
z3$gKV)~r#g{<yOHClsuggeb6jl;Xa~2S=%wDG=h#5W7Nb3h_#aZS2b-Hiy^}Vrz(3
zL#W<Gz5dSPcK**tsc@9~eUuvhYym%4w}*H=#LiHEylib<!hiicn3pa^Z-l5dTG25f
zZkXcS_*)^~4)Jb?_d@Ir@lJ?6A@+v+C0*8HwCX=v<;qXGXHMi?F<NaJt=<o@FT@8S
zJ`CYMppW}FH(E6wqb@&|*LRHmw>xEw`Xt1sA>tvNP)`tj7NT5o_qlk#5K8`+A-)p)
zwb1SJv~W};jdW?40;~{rniCVigNED?9y?kJFCNYJLnJ~pN})7`AVf06-yu%}Ko}ww
z;zWp_LsW#=AL3|;V<8TN_=asP#NiO%vW1UP2Sa=pqTY)9d&j8f#;9#$)JJ0!z2CD~
z_TWf}A1FCS{W(TW8LRFZs~-NU__49->#^#`5VOarqQOPSL;OU|V^z*LRXk1&8K+K$
z_$9=d5Wlm%jZ?pdIL#sJK;Ca5PEqYRT??^s>cluzb-WsKpnCi9>JN6|@oMgP^=F8`
zI1E-~^&hY32>uCij-zx6HB<PP19%EqDP*UxV!X;sp=t_9p^A9Pq2|}dt53$O<2wtg
zrSQ{ul{Y~(nV@n~sGfp5LFJ~<Z-VM}LFA<gDvxm|s=5<Zn~5qvg-8l@Q>d51^%GS=
z3e01z6be%)N@4y)^=dM2%|x|(qN<%jofOVZ)TLB4$YaLqr_dm!ds#^e4O6H+N!>9?
z6{pa7k{Ufp7YKuRE~38&WhtnXUR~BVg~ll~NufsyTZd;iO`%x|?NVr;Li3b91hQoc
zt+*n0XIYCBzTK*4R9dHShk-UJv}Inll`-{Ilk_>3bRSGo9a89+Le~_|OQ92!PN9pK
z#9E^O<&TMQ!DMYuw-mak&~vgjthrFu-D49=&nGj5UMciWVcffgeNuREvf^=$*G^Vz
zC#&+ws$UBIQy7ra$9vKZN?~9cZ~P#0a0)}jo0_cXD8ME<Od9I&6h;UjXQY5pDU25I
z(D5=d$E7enh36}<yaE$an3#f@f|bIg6eg!|X9{<vFeQblDO{MsMJfF(=6PH^wc~=6
zzW9T;co1`83>Pk5oWdn3OruN+m$9@{dP3%Mq0?C=DO@3#%qs<4l|tq9XIH0iO$s*)
zb4Ci+rZ6*w8`$2~<4o<c>)0?-8dM5%e&)s$t{PT4D}~t-h4-e>Tkm$<RZ{h)6rNmE
z??~OUITCb>P%<my-j>4c!l4aw1<YgR3fR`aE}3_ya8C-arm&45JLldM9!l}B4vp^<
zdcV;5LKg^KDD(kVnE*=moua=VA4%ak7HkTOQdpeA5(#}u=u);c0gnlNlKm@{@i@&8
z@6~_gF*;r4uHI!SJS}{3o=M@^G#)oaEf>5lh4t))%%gZ$rSO7))k3++w^G}SDXbCB
zTA{}u(FX$4y_CXc;Sg^~;pG%Iig!~AuLz)3G_TT8W(zw`T0Za3yw_5CmUVXu@1(Fj
zh1XO1Z}JZIroP#4q`-^(_+M#f3Oogl?o9!^Qg}<i+iCusDQZs&dsB!?-{DQ8@3J2m
zS)ZryUJCE0uur_?d?erlp&tsJB$tqWoWdt5d`cTW`0vis&r+zow3M;F5XmovekJs4
zq2-kCTt)$dxgMCkV2bXTb_%f+uB*WH6^N(cq|mwoZ7SfV;HC6l*CrL<o1~vYMGE^<
zNTjqkNFkX*m_katl{9B<F&#q>r0@+#j|${f;M)`qvOTBpdkWuisNrat!if|Pr}UbN
zA5u7)!uOT9UCt2!PfXEMRmTJ$7y6^n_k`d5LmlyF+9u4CLVpoT{=ajINq<Y>R0^k4
zI3Q8TIX6Z9k;0!Mmc<;U@Ha>G3a#pF3jgRzM}~OMNksDLx}@roW(vPb1+P*nrMKo(
zZ61VKO=u(GkeOY99O2{&C1>nZRigqmE6|_<4TYIsfjR;r6)31cVOp}5fT9ZgZ()5#
zq^m8QPmA<6tGX4amzJzwfz$m9$t+HDN-I#3#*GB9l*$Asp^ej_H%?W24QN`SUj~{9
zZC-&E0$K_szm<Tl*XudJwiTFGp%)gmt3dk-bf`c_TDUiBPDN&?3N66H=SNe%0$nQ5
zwF2i=U_b>1R-ju2x>ulg1^QH=M+MHWK+g*FssLZ5o}H@h-H;!Bw&<jtRnaTb@jX3D
z-?swS^v~#5f&QZZqp9k<sk(jg?1e(JY)}OTS73MrMpS@D>J6#D&<YHz!21V_DL}C{
z{~uFd0VT!peZ32p+1VY~nO&TP-NFL|mjq34Cs=R~?(XjH?(XgyG(dt&f=>Ii4(|TF
zF8=$S-#K;ex%H~Ly6Tm5b!ih8l_e?L$C$$WYN47z)FPd1iT$Msi?0{`dlObCh`K@4
z3*xsR8VB(^wf{jh2%=#Sje_Xdgw^^jX{zHJ)r8G$!ZI`sY`p1tb2!i>h^9d_528g7
z&4?sKooK?OChT1fUx(6BFPgB7O<9pee)8NZh}J>03A$eaGJkN=mSejh+9%69aFSy^
zIwngx1<^T~cj4s5I&=@BM-a1um>opVAbJJetrL@iZp+*|hyg(i<h)N1eK{d{KTi5n
z2)w--6m(~Th6gbsh{2qbbx06HIUmOH`)m=(M{?_!AVwwo9G&c8Y!Kr(A0NboWY_Nx
zP7LBZnH&V&W=>{G5K}pymModh$qbG&IX2tm9ZHAE^PuS4O3mrqAm&lQpa$@|XFewj
zI4%rgQL=n76~b#i@~|w3<w0x}uuZ^<AXWx3NWfr$Zm!4bAZiP!BVbJsYlFB=4O$TE
zf><BKu^^5Iu_5RVJ#7tQ8z&n%ZVF;ECtEm@hoVi{_8@j}>p_k?gV@W-t{`>?(I+v1
zyph?%h1Ykx!R`xUKery>SfeQ;;UUfsb0q7LAdV*U&P~~gAWjDHR}dG2I7Njyh+V7w
z=g7m|*waCrp$u)xNV0xV{8=gk*?pC>Wh3i(?v2O=PDpquh|ApbEiU;xh^w6ZlkD>f
z75IYD^vJa!u5;lHQbJR9lXD_u$n`46yVUqo6&6rQz<)v93nHC>^aAb&@gRsu0VxDL
z4B}A`P7vWB9tRN&LZYTV==NrXAig$bbXT$%#QnE1l@i^*7$pcb2t5cR=yp4`AVQS0
z_v47)U+yK0o#Q7ogRp|IskLmzDl}u%pClpeM`+WGJqh9|m4P7M2k|V3=Rv%r;uOS-
zAT3;R4>l*C^P9Q<4zH<s4B{<+(ai%%6v&Qd>`XJagGxuff1t)c==N;C2JwkEHJ^j{
z!X>#Lx<h#no3U5TSo-GdTM!Wf=uf0*b5^f8yU;q2QUC;a1w;!-CAe=aurB`D+IS)!
z0a091>S`icV+8mF1O&thNG-SxCY@xSM!@*zkrY&{0Kb6F%^7v<=?{W_aL5A%MRUjT
zf;*v{mOnDAIm;j*qu_Rf-?n6#1mxM9K9_*p0x}E8A|OFPRsl%@n1E~)v3e{~a1WwC
z#6y1AoYAS~*#+bf@M{Z}Qvh|~NmnUau(u!FuD<p;DUX1>0!j!dDc}bI`2-XaP*^~I
z0R;s7D4?K#CM_7Lk$&0ezlQ$N=)u+#{I=*TBA}>%VgiZ_7}mm-zj*Gew<BqJ(05yj
zUEPA6ZNW+j_(?!H0p$h!ETFW2G6Kp97;-$$5<N5j^JNQUo8LBGZowj2vg|G0Kq?6M
zg(6H3a_g9uY;8++wj~R3Yh|vP>Kv;GsLBaFRgDw6Ot40>q^5vcoPWPCv95r60@@4c
zAb_S{e<M9p(gf7!R+2Oj(2(=v>mnNoXv}#i!FO?8WK+Rycw2L9#*wVeIcdSMrGQq+
za=I#=T-yj}%O&lS<<T4Qhv2Rm=uQf0o<yW0w|1hEzzIpZaMG1yHvu_YF%pvJ9s+t&
z&hiI)3+Ts5ACBbOSHS<jaihP00bD*X*_Ccc86se)fW-oq2<};S^dm$6FT(^37chdN
zCtwtna{*HXcO%$nj$;Lk;e<AVk#HR6;{{9*+>K@v1x(`P`_3%#K*Fiq&rAWc1WXg$
zeP<+}&V@6$^}A#?Nd(LjFo!#R4}U)Qu#ig@2=3N4dY1ez`k%Kf6|hWj*Xqzu*>b`C
zAd*?f$qJ4uIj-Wkn&TP)YdPuoHi0~^=X?XljT}k1iIdG7w@?E2rYGTc0Xs-PB1VYV
zDPWg?j{-gk*iB{rrst&K4u|gHe6N6goa`5HgcI^`fRlq94{<!qu~jQ}l#^o|$>(ta
zCz72ew_>LR{3+lxRaF7+1iTk;R=_#I{p)lDTB(8y0&coG!CwL{3iwCB6#-ulL|zhb
zS-{_<x(B|Mt=Q>SY(e$tyRBHCl7XvKl3n%Uh5$OsufE~8TDcW1eQOuV6lu+F3%Dad
z6d(z>E8t&h;RQUR_Fup~YWW2`5J0=~8@Fa%TQgdJKD{-&+Q;2QxwSQWEFdUgT_gm`
z(-pDjTeF69{3YVtX<W56lLaUObO8phjH*Cmj|d5Plj!crdefTaXv2EG^3o3)Sxo_!
z0GmADaGT<iZCLBKez{&!bPj)5z!L#a1w5l?1-zw_AfR>|MoUZ&e9QVmz)PwlZP?g0
z?3IAc6lNRtnoH`Xj;D3+={ClfN$Fn|beDL2ptf$A_gZYyMB78d<7qznXp-@>fG?y;
z0pF;N5>Zw}gosEHB}C8xYbive6p>CudJzzjN<>-_bRWG(M3jg$B4R~%jgVJFj0m3y
z+9DJ!x<!<ZJ)u2BsYUnv6C#A<jnFS5jtc`E$v+9>Isbe-nm8rj`5PHTWE7EIL=MsY
zh-4Cx$Vp}qSw#0-vIG%XMPw6kvJJc0hK1TNUt30dg!8m@GdD>D6EX9(yKRRsr-)o4
z3W_KsBDaV<A`O?}M-h2N{6L|J$WN)x=l^~(KqVf+>8-K-Ir;K3Gc7+}Q!r^#TUJ;^
z5fMd26ch1eN$i-Uz{v(lhc<bOi|D{NfYiyJl>46d{eRw)TzjOzQk?w6@n?!Woeswn
zvb`-UC!)NFZX&vq#z>7KnzwNO)_)aIQA9lvzlo?MqOyqUB5H`JBBH8@_b*abBjwac
zy3>}uXv;4S+Y>0zj@1-VOGIrEbtqjU;(l$%a%>2+YsczRuyqm!ugkLJgJ)1XcBvh!
zFQS2nRw7!9XegqQh^8W%iD)e1cM(lQB*a9J-d69)N+%s<Ztv=|MSIp<L<=7CmLe9m
zXJ^_om0vsiragNm$FvdARzyb;okX+~(Vi4So~eX%V7WT5Mjcqc4s2=%_O5Ky@eV9Y
zYF}p_R2LClMI`;fO8mh}bqnNv6VoyrH}DU({twne#MQO22mbc;6wymWZxMY&3=}a)
zL|+m8MD!OifRdIF)ztCKd!CTvrn}lLoG!t*9*FA528$R%1(nJbm4uGW92fUXM>ioI
zI8sBJP%VC>h*2UIP;x}~!m=rrf3)cS@r@BNma_P|XPk&>BBpabUc>|u6Gcqo)+rn(
zb0nYXc199T<yIP+n8C>$jx#yV;y9Zl`E0t<^*>j{JT94^EWfcOauL_eN)fAgWEOK=
z!f~mHWt=SMxPoKnQEr@9Q`Hke2Z9|G-5;^FA~uWI!udK8>p9uLaU;h~l<@VgPZ~ob
z+$v%hmlNN{$##xA=qtcUs`N?e(kJZ}u}8#SF4@nK{O=Rp5ji3UxP*S<+yFns9OCgg
z%<+hbqnsS$NUq04oJi&;MV#XNPmZTKHW`~h-p+|QFXE$vPYy1K_)A0&9X)ki6mf}a
zjf!7XTo&;+C052(8UKj5B4V<HDH5)VxJDIRLOu!CsX&^Z8zOE}OI6TI{1#P75h*03
zlyFDHT@m+1JfL8&d;S%1!18_b`2G{!{?9#*H19mPBYQ}NFr1)?2#I(k;<1RJ2tkA@
zVtz*^k{Vz7WR7H&xR4}@2r@)SNQ6)qVTgDw;*AJXgeBssh-V^f5srv3H7_Ezb!4|Y
zGCC9ZMMp;8ub57(_*);fInPDB5b;vPD{4=+#YG0)Pe$%eEMwugp6TNzW{MiwiM^$=
zA>xaOuhe3Q_#onwh|eNcc4E(WW$QmW{-cP~o!lDXd*&`0EM3%J>ay4HM|`7}P(q{x
zI)IK&LOann_T-*OS@6(mDEeeTLbQY!$=#5ZN`i+I;!&J<CA{v$$m)}jT0&+CStO*9
z5Gx_Agme=85&{z9B*aUwGyA$MbZ36!JG1S>Gya&~M|Hns$3S`s86;$skV$e|{(m~e
zt|=RpyECI>pDTA}bn{N*&MZMfRtec9<dBd}LZXBu2}}YVEC4Za{5#*XweDASLT5%F
zz5y-ba!SZ0A&-Q-5^__-3Iu-4=<dVX-r3c_na=EElR%6XJ7<VLzk~u3`by|W#PIzn
zp^${a5(;u_zzmS^pUlxkBvg`6SwhDF{-P3!NhmI%goKh3%1S6Fp_GK5B>XI)G*5-v
znNgdQ*oD>I5K+Agdo3oGA$b=@_dk}GP(i{k5`HBezV$5X!seBUqRSQ^y!F(-7C4$1
zS5d;-5AKKT&j?=?32h~`lTcMcH3`)v)R53v!tWAlN~k5_HwpD6)Rs_3LR|^<BpmMI
zrjd+THlCK7UgFlp5$@1a0|^Z!G~zL|8@tQ!_KXcs)hN0+wuywM5?V@VC1D>@G?UO=
zLJJ9xy08~Kgfv}Qo~~}lttGVKA&6&Do=ci`Wt0)^C3o9h7YSWC=|Fx+T@r?LWu3UB
zGw0-o3<(LlN$4e^w}kEzdT>8!*JbI+35_*<_t{6n_s7XfA@r9pK*A^qqa_TajJWP0
zGn|t_90zk8B4KE<>o87=-_1xqM{qup^uULg$4D3}VWNad62_4lkGh?fUY}g$kC!k(
z!oses0`n8nj+oEcqR92-G5=Hv)2K+xNGoGH<xA=4za{)5VTMG1%9tf#wuGY+j*)rd
zpF{1^LhmXGb0y4^Fkiv~2}>j_l|c8CE|joH!eYv`uB<`vxPQ8`PhDBwZmdQ(wv0ST
zSRr90*Y<|Vu~%b!)RCsRt*ekgH?6F=6Te!*8VPG9tfRUh(ZUj}m#{&?771G=Y?QD`
z!e*)hOCu|8&f24!n|&Qu$F?aSy}BFQCSkjT9TIj@B~9zU)r~#p9%#5VRd?5C{_bp#
zguN0DN;pKNLc)Ft2Y6)2wJi5DeQBb%pf9&4`Y@HN?rc+zlt-v4b!WtjNij#dv)kR-
z-Bj#2wFw2HPe?c^;gp0wC7hRVLBeSXXC$1Ja83dp-cC&)&HQdJ5q&?UkGghNch)*4
z@Rx*(5-v%&Om#nHG`;I`t8A&~#YFXB1$waGd$9NY;;)dBC8Uzwk-%%z_)8%DND^*H
zxJhN0>Zw2a76o$MbD!gF`UFV0E8$-W_qc?d{^Nvja1Tb-?~(_}t`C!4A9D=^ISL%b
zWSuPR!DI=F1XY4Y4PZfkgp7~`UBWABDkT^aObJgUJe6QklPJNF5GFn3iQe9W`3z6)
z2c8wh(yw{tIo*Th=@$P?!gC2PB)p{N@sDU4SR>6BO`GtfhdYLl)%MXcn>W;4Ncbe-
zvxIjN-b?r(;Ul${5pD-*WXC|QwgKu2R&YG2d%D^Bg;Y&V$NR`{)VAF68PmOcKf50k
zGOLUEB4sz)DP*MN1pkA1HhMi=!%;H4GNL&rg{P4blgxdbq~^G_aDZH6W%y+TxFk--
z{jb?bNM>NK)ahiTm(f)QZU4+5BcqIJGOEkSBqOto!ZM1;m>VCJMRtdSvdc)2kyS=E
z8Hp5{3`X*vta49wFIO}j^+qM9?g9Vg5rHl}Sq>RFW#p2PTgH#F`&r2&Bd?77G78A}
zflKmnB&Vx)TtnplOUOe(?pjF3Xs$HEqB4rfFnY3zH$BB=l#prOIkqgRBA>4$$Dd`C
z;^ZfeBtO}c5tioGG8|V=@|TlQUPc8OzsRU0qcRWYSBmHE$ci#(JtqZwq_Ur|-?%^(
z8E-XzRZ@=Tz1@=$r>v|Y)0xS>W-^+S<_mgj%BUrywv0M5>dI&+qmhhyGJYc!^>TB(
zY4Pa#G8#};o=hT65<izWrWE~&CNi4JpsM#fg}~)K)1Y%=6z%9IpVTR8A)~zvA}u+#
zlF^!zHXPf@Xv+zCu-e8G4(P=QJCFipbmUH*IChcInUn7x$j{g9k=<l;m(fE;PZ^tK
z&~!;J8NFp>Sr$KAMjsh{Wz3N2098*v8U1C9kujDuCS#zCVKRox7$jq`j3F|H%6J|T
zO-)3x)KLd`LQcN)3Y?6PF_HqO+>}A*V@LFM)sn6^3$5|fRZw|*v+*x{<7AANF-68y
z853kolrc%hWXh@DEb~)$1fXSaR%1gv1ul;Y%<Ao4szSnP^a<carAH>W2jUII%;d41
z#gU@jzE8v)D#kMA$(S!=t&DXt7RXpAW08!-GIsIE&``#?-fW4C$GutFK5q1u%J|fq
zE#pXJxr`Obd?hEVWUS_7O|raUrKt5XHptj0V-t^6t3Iq(PXE4DaWs@MU`%Y^K5Tg(
z_TiSd_Tt!WGPcW@tzeFV9Wr*(=S)F51-oSImT^MHNf~=&?4`&r@Xh!&<vtnvWgL@n
zT*htFT~c*`s>yxtK^cemyAI1ZBIBrx1AW-TKFsOE=oGt4Z4<nGS>1mE)RAlR-1p??
z=u@)WGru6?FByMQ<DmOaQ+4jk&d4~+!`YY@=O~+GJW1z!_9b)CzBGy(b5X`6stYpS
z$+%3#yDw9zHR#X&re6RVS7cn3@vn^kWL%SRUB)enBoFNd$D16_7fCqKmpOge9oZdA
zzbm^V+wLItuB2l9T%F&e21-Uyh9KjCjE6EFQI1eW>&J%oV}JEy)uzPL5Irrzp+Rz5
z7$eG%WXLiUDkrNFAM|s_-f0ZE)gyO2e^z23Rez?@CqRZyO$U`v882j*GAtQkN+8vD
z84g9bKcgF3Y01#I{%lu&HzrSI(88g{1L$8H*#@u@16a=iZ1Mp1l9K<(_gcmq8LudJ
z1~3})zcPTm8^H1pWVExO(m?iJMw@}`3l*(A{__Lb2U6xh_L1W!j-M&aL5zf7sXoex
zP-r{6-=iQ(L8O8d3Q{V7f>a8sKZ~5Q!%IWfG}cYAA~S9f^D2l|5UaqiAVz^tL23nQ
z6s#J=P7GoX2eI7IabE_pPF<2}4R(_gP!OjeUcrIEY)|QIJ$J_T8q6jQc9Z#RYg~H8
z9Z>3|xX0RLP>@kUCIy)llvGekK^6rGio0VgkAkcU9qob~3UVq)RFI^ADafwi(O@>9
zNL<MW2_wq;-t%CG{T{a=1<OTo8^XxYi*hUOSK!8>NP0G}f*%xGS&IA$3M(k0V4WFR
zK*5g+3UY7l@4G#~LJCG!i>fn(6&m86W-u>p%AyL2DJZU>#}Kw+2$Nko(hg<$hPtnK
zJB0nDp!-nPM8U9}(LXCFt)Ps8vI=S_sHvcwg7OL~DX6TV0;O8PuL>$Em@<@YAIeS+
zWp{_VFZy{)M!LbG%rI6(K~)9SC>Ip07{+$K3D9j0cZM<g8q({&40B&vOF?Y~^%XQw
zP)9*s1@#pCMtU30N)Km^hO+^~+2-MlE@*x{oP8b68Y*a{ps|AA75B`dtRvXTOz}lW
zuvR17a|T2fN9Q9oRnSa9a|JCFv{lefK}!X#6tq^*M#0XPv2DF^Nh9Njj$rfS<4dpc
zMr4elv)$S&=s?<2(2?tK?g&OZk|>5`eCuQPj9`_2OW9dL7X@7vbW<=$!C=Mh8`Io6
zomSVKw5p(|f?f)GE9j%3uY%hn*p(r1HD71`GJ+M_lVz3==%=8+f&mH!Qjwb*`R#ek
z4<lLSk*+HGjATQo6e)Cbt7lTYZ<vDNq+1136^x*)R4`V-I0d5=j3%|y9RXCL%J>os
z`j(7j;RXJsvC;7Z1LGA;P%ufsWQs%mgo!*Y8#iaVU%~xulDWv=)pWVLM`Ie5hp)bw
z9H%Ro!3jyK_6!it;?`=k@?XI`1>Y1zsF<%{fr3j4E-P55V39&I`|e-NVg*YSY*MgU
z!BPdwsLU&%%Q2Tz%xQ$MhJQ6DD-^8cWEDqp+K@Z-8Y)ON{AAX0vW`mlxmdDpP_R*P
zFIGPK#*O)u)3I9=yd25=C!+T#*s9>4z5Z<qwsW$B<1WfyPEw6x<hq-4A~&AL?p3f)
z!G5a63XUo`rr@B0LkbQnI6_6efZN;5FpBN=xj)*OPbXCx#oCWz#}%AVa8ki3syG?h
zs8McC(c+v%E!-c{<)he+5^<FL(+bXTJ)Bi=j+65W{^EpOFK}W%inz#$^C*IZe^cB@
zlh-}36kMT#q`*{QDY!;CIM4rBK~TYU1veDjRB%hdzY6}N5~bh{HD8@^m#iW0jXiPS
zl~ev>fX4ank-Df}kml(-$fMeInxA@2j}+V+#h#C1(WBk?*L)QtC=jXHRB&;hUs50|
zP!y=t9B~g#mU&B$W&^dzhNGE~J4&OnT|ch-Xr^=j21j~u>1MCB%xfzsFf2fWMUH~7
zf{CNq69vyXdCKt_N0KL=kA0EMUs4-*K9+>96};hkc+2slf_I#}=lFpmY3W%l|EFaB
znUgOHz9vg($w8!w6slX~XvQa{3OaEqkBYo1QmOE$$e<#liYOIc6)zsdbsEE>Rm6~=
zF)UZP1fPo3Dgr9vRHRWsCpYz30l$hfqurB69&nw|;^AsFvc{`Ot0J9>^c2o$<{iVR
zv0YHhPdj&hZXBQ!BQs?6)jOS#NyXvyS^A&LoLNN{6$vV`(g{#1va86ZB2h)jUJ*$u
zGUbSBvciAeAE43T(EFI|OA>OZ$f+WiirgxOjd3%J*52%R;-O!I)nnL)G47uooyPEk
zib5(1tH?)TKJ}8x&q)ClKPF2Ga*}y0E5b=hjzyDQi>WA{%u8@WM?I8M@e}7ib1bW(
zbh4i^oYa2qDaT29jupqc$4C6Cq9Um-g!m9Dsi>@?goctDs;H={;+2ZmDypfdu418z
zMJj5j?xvU)Dq5<jsiKyO+A7+W$XZ`T0~K{t)K%S&T|E`weopvJMg8p2lXFFXo07Hl
zSk{o5ps}n8_s~eicX?wKzpL0dmQmJ|>xBl{nyP4~;?J?J0-LMuBp~rtDq2&{s_3h_
z^K@-Ec2d!n-maoO5AzQ$?7%tgj3#d#xr9iCA5wQ#(M3hqWJwQBx~b@%EXkuJ_T;>m
zir!SZl*I23687Wr5h_Ni=&xdcih(5I!eJ@~b3)#Rax#P?MSx;LLNdcueCMN7j8-vS
z#S9f=RE#AhsF*@&R54z~L=`KlddZ~f9YJZIpyJqe_oOM3Od|E>4}5o>s$v@V`FNlE
z7eJm#K2yakE}YMCwu(6_=28vfL4Eg0-sW*vX)Ghj0u|roi&ZR9@sEmIQNE=rmZ><R
z;;4${Drnqkjf%CLtWdF%lQxGVSE*RdIeD1cA#R<D^(ywL*sEd#<)(^lDz>ZGq++v*
zEh@HBLAu~>>3Z<W{T#%MV{9C&KF-bJ9V&LJ*rj4O)!7TNtKWKVPfx1-Z*+%oj4t5Y
z**)Tyb%A{<E`IVI<hY;X0ctKj`A9f$96O}q+)D3ZE}u7!k&t>aw3z>xioe&zA6Icg
z#Yq*XX!M>WD)x_Kw6Ts}{ilk*#<A1%UQURgrJy)J&+)={d9v$86_=9v<ul&QtKzM3
z?v-Jmc|xwJxT@lsit8$FkZx53Roqk&Kc3xDahKFfswl;7tL{O6_xLZ{zbgKtgiu9$
z9CMGVUX7^xDjuk)G@jM06aP4OeBu*N!;Kl&we~-vqC1|^(M-ez6`~58!cifqkX7g^
z3>AtBRfVP^MCEF{t6MVr$1}R4jV?tcerG&0Rao?RS}eWhcI4=o_YudlJ{!-%DxRo#
zs^S?nrxRE#E$ic_NIj>flA47H>?OVNn}-JI@=tK5KHE=l!+%5ioaFzeB0|GkO5jJ&
zhzaZ+wFCV#zE|-<#YfIRsVMbJ`ma=Axb+Ja&b#hCDTH$;Fv3U;DKvMXV_FR<HLQIa
z8LzqBGm!AMCzS?|=C&$P8oU~!IX^Ig#c1$p@M{QYxH5sI){sU+Ea!AGVa#oJz~7v}
zKJ%#3F1c6b{c)N*-bHc>yy!%>@P#j(hV&XTXf(=!Od9fP_(4Nv4Oui~*N{U)f`+Ub
z5;Y`g$i`p&DSK49rIB=g&Y(eA8JAFivnH}C6WytkoEmaz$gLp{cUpTe3w3_T1J=5|
z4l=tZvV0oyYbdOth(@PO<3|kzH5AftW+Ia(vZzTc=Ok8f5-Z+5&~}o0tU*y8RB?{Q
zG)(x(&AXwK7+v2(q?CrAG#u7&M8nS-Urw)~qK49%d+b9Qj%7KP<5-?!1&+UPByV)c
zKqU>8HT2TZTLTSQSJBW|!|$5g2vpTjO+$4JH8j-JP*1~e8fs~%t)VXEPWqH}cLrum
zVs%LQwE}-mVzgoN*)DJ7S6_V%4Ky^=&`5)HA`5+pZ%tyC`@~T-f3z<C-6U2wjjxG@
z)RW!ocROlms-c;N<{DaPXrrO6hL#%WsMuB-T2nGp`9{3XoKuORz3@wzk49hHX=tyZ
z18IgUr`sv7xHKX6WL9W;pxk8Ec(PkcJ89^wp^JtWe8Xus3NRw7E62h8Q+DSM_R!Fi
zlg*Raz*I@pOYEbeFBLy340k>KH1yXnSwsAt*Z~>_Y8a(qG%0*C8>C^VhG7~8b1O-P
z@NkHb8LnX@w~o+2h9nf9?;gfz7^`8ThDjPOPiFPHr|$mDKTgAV%3uD-<H?K+`9J^C
zm#RksjWj;a8#6`2R1MQKOxG}1!#oW$G|bd6OT%o+smUxsjk8mxPB(>>p2Fs6prbXf
z8cAbLCp4YH=4)7>VWEaaJpAVGJ#{j~eY}=%?zV5@6n1tBTg>It9|V?CEz2FXOv7>w
zD>SUsuua2u4XZS)*04dtMh$DIo@!X9VLgAU;FG}nDJ*d+qb8;NR5#kar?O2NHd7ol
zY^A79W&aiN(K%YwIPaLsXif5osVt^j+zt&pHSE){U&Ag9yEW|5uvf!P9>|EsZY|C<
zjnTb+b*8y15DsWKsNoRh#fTK`rnx_@&1R*IypfgaSI>kf>SED4;iDRkX*jOo1aDRT
z({NJ5DQZ$QT%-8k@%>3HNj~2tY7MB;X*jFl990Aj7d3oY6?dKzHI30Fvoz~*L38hf
zojHvi{FroM8q=n+b6PAlN|$-l^f$+UI9}24erFOnU8itvxtBoEp+h$)moIy7YPhB0
zHs@r$%gG%LAEz<0{+le%HJu&1<GH8dzJ>=H9%^``;T;95;jxCG23v!pLC_#-&@_ao
zPHB)eC>m5M0~1->>F%cWG1HlF!Ml4pdoi8m%@M6@Ff^DNEK=GGR(b{-FoVsU!4Az}
z^hfq=27A~$DXig%hL;*%X?UvPnTF?7Uo;e*$x8Qkf3IrHbn|rJOg3kxd+y3>p6PF>
z+2^F$<HTJvS-NfhRP_UG@@4u!Nuy>Vgs2ccQL)qz5kh1LU#QY)_(oMpPZ65QVrH=-
zv)pSUYt3RGWBn;YNEre`NEJeK-mLDeoudLfo5s`BL+e>=2i(O@UUCW{O$f0e%-@Tc
z5PTt|4!K{4J;UPYAU;~lM*$Xj8{-er#_fpb!&3x87(0u_9n83Dci`-8PudXDg|IV(
zT_L0oAwvjtL#P)*#t<@vP@V^sIpprhOA3K;k|l%$PO@^$#*sWEa#EZ2e{qsGgdaG`
z5kk&nKe<B4&3T?=32l<f7ef9JehT5|5DJ9wV+ch<C>BD&5DJA*ID{fR8d?0&(^h1n
z`#$<S^vvEGpuL%;a<bwfln9|@2&F=xJLA^PVn62hMURiWP$1epIeAH}Iwnv$gfbzN
z4WS$lXPMu3U>5WIoizH8`@Nv+y#JfUDun3JF#H-q#Sonz>!F)mDp7t-^H&X_S_qZ-
zgH=M9UON8eEJj#8L}zt+YH}n}gOfuE5yWe8UOR+3$*vcl`Doniw-7pp&?)4u+^!!&
zgAf{q&?tn)A++Mc-#L<NGkTEorr&Y4yRN%A=Pfw4<VeEa+^Ka4Z9-@p0-a9KE`$!;
zwSBUm#k1KT$^6`G);WYOA<PJ2W(ZwF=oZ4r5JrX2J%k>_qrB9@_YAo`jXojt<)l{#
zy*VLay;4d2Lg*jDkPwE3Fd&41Aq)y(a0t?DR^g#1Fo*pxhwa)G_;n5&dedLGYSOR}
zhI0ju2;oxZxUO?pXt$TH5}q=LiCN<4OE;Rzo9x@N(L06;X9(j$7$3sq5T=AMA%r|D
zFfoKlJcK&Y5$EQ(Rqv_nwuDndm=;2_xokRBlew;(&2?KvlJuF&W`!_2gry-Y<H?^B
z!om<1g)lc+8}m4sAHo7o7R+_^yqNPP$$q}CwC}$qa(M_VNW&p)3SlL8UHjb+$JNRH
z*MxBLST+iW%sMVy&v8Qt7hc7Xa5J}VPxilsldU0aOO}wg9m$+R+a1E55F&I$>ew5?
zz7XD!8n1iyhj1VSAw<WB;a~`dLbyzIoU-Ye=WqxoC>kLg;Z~9y<>Xih$2o~B9Y?}b
zoSzNhTnK+A`#c@O8O~47bx&|TpDe$~$%PR9N|sbf6-^#4kxG9K5cwyBD<M4Ku2)02
z7Q)?RpVvdUmCSF1a5I@ZbJ^`=eutCq5&JhpBSN^xCHF%hL*X~$uY1V(BaS3|%t?@=
zR5ecGdJBc1b0UYJBx_O)K}+VeA;Jj3<ksgQSe%48+8iB@3;Bs3PdI<dk+Sa@C+B=|
z#9wg!lH;ooUMKrmxYYkPgm)pl58*=yUqkpt#dvS}kED}S?g8(gsN!sk`^@nR$MmUE
zkc4Jq=?hN1@c~7mQ|L&kqpa=@xkE=P-JSg@tz+dHcywgckx56Cj;!;TS4Xst7#%(x
z0UdEVQtL>gBUYz59UP2`D>9E&oyRh)j_){+y*ubXQZs7!Jh!sM>+Y8#9mljfcKqlL
z7^dge3>?Y2Xf^DOSu^YSK}S9vS#%`OOLb(^kzGd)9f>-UbTA#&*14T+x|_S&1Gi(p
zh`%DIj$AtO=*Y_h+&hoaLet!ou9q<n<)pvou}AY*kqnte{}7X3M*$s0brjR_qmF_)
z3hO9Bv1;Sr_H$ez{`eOjCf#1qd$ISY`RtGRthkO6I)2jevyPHF=)16;<TN=lpOw;S
z8<FSyM|Y7GeH7@#U1eB&8Lr0f%fid)D6gY}j$d?i)6reWuR1E~XrW_JRevQNm37q7
zQCG*U`K*eL>N;xZs7fg%4Qz>}@zv0+gy)L`HFea!jaq~{I>q_|^#b|l#U0xmOXH2c
z1+1Qq-*hzA@w<-tIvVI`L>ZS3ITo;nI*!C;{ItSbW&vxkfQ?_kXzgng9ZhvK)6rbV
zvIUH0QfLj>*|)w63z)QkeOSPneahTYM=Kqzb+jS1=;)}Ut&Vm&+Uw{*k_)lr*9H!k
zOYkma)mO#-;g8C;ko~rhb<)vUM;9Gkbqrp}NQck)Niqu-x*F^ECUM_FHmz9np~R@{
z)3VaBnZ0!M*0IgTb{l<k^re`aXl$aNj{Z9K8Q5=NfR2HbUj_;q7(~J9xI`+w=NY17
zsE)1lxQ<~uhU*xqW0dZm%SXRgBXm4i$P!9N(+%vSb&R1>tz(srv6N+$i8|)!7_Vc3
zj;T7P>6oZvl1|+uOyR|VjtHxhCMt3fOS_1+!ZBJ8Ouv59b<EH)Q^zbFw1|tQSr5L6
z8J5-kOnlrOM>h`7s1lf~W1f!1I+o~|uVaCZg*q1LsIrK)Uc^csie0<NRYj`BEdOGb
zA~MTT$^sqBb*#|cbE_&YW-S-9QH$Ba#ccGBxUGxX>BX$yx!BcINvVP?VQX}dbuGtr
z9LXBHgl*8Vk$c$0aSO-Il+jBVJvD>lb}H&RPV4Ue(49JVadKS8Zcg@d+{1A%$9)`!
zzHql~9-wNj<B*QSTzHJi6(>hIl80kU+zq7HInr*^6I^~W+4U4Be{$58urr*T)p3rK
z^E&?GghIH$NlCsR_M(oom)zK1*73KFe{@`-md8LE16OtTKk<f+n>w!PxK0scQK^=?
zqeD+p`)=vDt>c-F=Q{4_xT{0fq3HNm$A45pbUfB^Pse>KBsw1ID87`{-S4fpl=WE3
zW-evt$t?5UU&?|y1RbIdi7M1GMvD*WWTD*4Smm^F4VJOK%UDE27FCC)!_r~v2<gyu
z7?cFkPt_>e3HWwXM(XU%SjOyr37eO>S?}lw>v%#%h(5T>+59p|`Ij>~R<ZhWR^Vo0
zyXB0E)(agkb$rtiVc?aH*E&Av_^9KJj<-7A>3B~?eL4HDea6Mh8QqFPi-`6wce_S(
z@$n}epLKlE@s*e4^UK-e<?O|BmT?8UJi%XQg&T)R11Su6==>K0DGk6tD#PvGXA#qP
z<{oIP!u%EN&<f@?5N#mFfX{GS@?90&ekOfE?yO*+SGaS~>uA}JK{e5vWPlm)8wePP
zGZ1eelYz_z(i%u-AcKL722LzVq>-`o<Z~sf*EbCX*kpA4*SM%-^8>UfC5wRs16d7Z
zGe9jBEgCPEJBGf4<So%a8!^ywC2Nt>J&W(w%&gfB<TQ}WKn??RDG5mka~sHG;0FWw
z4D8Juo!7vKm26W+cL0iIcX@s;DL@g(?k0x}2@4r0Y+$K@W%OXW=pqK18E9^xsDWaJ
z`)gU;z)uE#Hc*0FOL8p5@%!mFr45uZP}4vy17!`AGf>GuWdr36R50+1fnN=*UCFMm
zWGPm$JgZp6Rm}arxa+A%=`G_96;?4&)j%}^)hVT`Sg%!V{VFz7@n2iz=2r~^`YLzg
zl6Y+cbqv%u(17PiT?6$D{6=|{H;R6-V~6@5t1+I{jP{;1G|<Sv?*^LCTUN7wYeh6R
zFzTbHQnC1AtKDEP2?<SkAhg|&tSt<*q^vYB%s?y3yStt)2D%z(O;IwiE=59H104-?
zGSJRIdoJm~z5T&C`6ol(I`c5eiTHP?ZU(v==x3n6fgT2WQkEI$YoM2bDy!Lu=boXf
z*_*8Ky$ukySk0DPh|M=Dw*Nuzi~30e3=E`}-@sr4+jz8TVF_LLKwtSG27;^ETP|FA
zFJd@lu7Q~bW*HbsDK#*T3X*}*JU(L#jHN959P>0Hb$+iuZVhXaAwWwbCK#A#V5)&>
z28yim_Q((==kQN5FxkKq!`)l-`lg?-ei2`l`<~ou*mMK6NBP^F_Rb)+oc1<Y!)6<p
zV_>0yMF!>?m`7E~zygZQ8n$c=qlM7I8dhD1`)hj2sI{!>TDI6g#VwJa3Z-0P;M`re
zc#rzS{fI0#u)@G*D%JNqD-EnNu+hLK1FH?UcS=8-Xym`sJARD;!nGXN8CY*%1Luv`
zGLm;&>vpQCn?wsj=nF+bZQ%iKCG8p5ZeRzu?&e6YI}PmOoLUdE?%{lIvMUJ>7&vI)
zgMp6*4jJxY^4BOkUV9H4IAY+afnx?P82HO@M|hU5WwgNKIBBC_(g_164V*IYr-9Q3
zt;NE=-tlJ)oTW$BvU8NuwXEiIcc?b{s!v+$7RZCe{TDXGU!*EiA<*{6Og_<n$-rd;
ze;fG6z!hrtDF@R=QC?6Fc5d~+!o`8K`Qw6B(|=jZt{b>v;HH6F2HqKXPr38lciX^2
z%9O;YI|lAj<PH31;GTi|RKo9gXbkX>kXU*h`(qs|_HRZy+UNo0`?=T=>)0a$kEwJS
z5DYj5!UjYGl7SG_L<6z`#eix+GeC!;kFFP8eOv7Eb?o*!_I@2px1Q<I0mFc4z%pP{
zGg3MJXx5~yDcyUrUVaMn`WDD=HjCOW?umh?)WREhP2m`LZs3K1m(+OHi!QdF)m_hM
z4r1nd*67dJRqL4$;kIM7O5lxww-hmQ9U4z<$out-R!-*Jz-WCS&1-xz@Yz6m({10r
zP$|0Ofr(TmzH<JJV}$9-$wZn+!FkGLNuxW79?nynNMj<3b1%nejxij492e*Nzdhrz
z+#1i(Zz8}+97lQ!4H~57JRQd#S+kNbgNckLGMUJ1qPmG1rn}lCi-{jh<TH_ABCCmP
zCK65LG?B|hk_l!ayNMhos%>DSH!zyMIk-35sHc$|HZa;pu)J^-Ej!6=B9Do@CjQCx
zf49caE;%}yHGSix{3Z&R_}N5h6F-_LXrh>j;wB22C~TsLiJ~TsZeTArF#kqIyBce4
zbSEs@T0YuSP{Kq>6QxZ2#1*^83)GHkzmZMaNZ*v0bsOC~Dax2AYoelwN+!ygC~u;I
ziC;|I-RQ2jaW*pFCRTV8tGUT7>c8@E#&2SkO;j;al@et_>fv9ri5=h`W~EHLC&gag
z#Hud{)HL0HG}_-++e9t?Al-3Efz&Zk*F-%NznQ3SqJas|drwd1{$&05ERMS6FZN_<
zXhP=!DyJfUH_?P5W}$+GrY4%1xNhQxiRLC+n3!*3fr*wTT2Zu@d#9LaZK92do+f&k
zXlvrjCU;8xk26`@nP_j)(mwoQqO*xECOVqvM9N7M@!h1m9!Z3-tBGzVdYEn<?9O9O
zaU=PsU;;_V4`FZ9U1mVj+`~=uG0~R_MnY6S6N60*G11?|022dE459>XX5%h+Q*U+^
zm}fI9vzhhW%xD3|P%5Y`qlR(ZygeiF5&T^vO^h-z+Qb+W6HH7rG1kO56XUt-^v&$d
zW>$Ap?EbI5e>c0g^iDDnzZ#QG{QX}<yO%L}ZzO~^vwqKGNE=g4Oyg=HKAn>p9A|Qz
z#c{TYIh@SpIFBP;%|MSVG_i<WfASwUvDm~C6B|v;h@~6MJ$=%|jlSkvYGRp*<tA2`
zSZTs<dDfYD+$Vy_Dif<se0bqmW8zvJ|60zEwDw1CVPrix&cEKo2L1^7A<b+uvDw5H
z6I)FjGI7|%HWS-T>@l&|#12;vkvmQ7qAIq9mDs}SZE^Lv+eFRfNj<l)DO=b+6Z=gZ
zFmcetnl0@37S<^y%iS%E_N`p2n6&3bBAv<ndmsN16S?~&95X@uD5-ROLY6*$GGskr
z;v`S+DHDI0xM<=}6Q@m_;X=~GIZn=U%s9x^%y|<RNCW)9C^`U&B$v4BRTGyfM>zk7
z;}wqNGq?`lpS{K<n?(1D*qijmy}oD*|8z>aWxA8>w@uukYG~qL6aSfbV&bWZdnWFi
zP)w*M9+-G&B4|P|@raj=ncMN0ldoG?=B=#KR#!zL)ld_%i4&6h*~)g?oz(u7&wFYn
zLfpSi)y;%q!Zcw~@#7DYw=EysNB-Q(f?L`9NS|XOY`RmftIM%8+uXpPnRssElZnq%
z9ZbA5@z%sU6R#+qm+{)f8#iQ6xowPQbDD2sBe%Je4)6I(KbZJP#fFDNLH&Hv9lAfb
zjeVhJ-$Y6au<*@9goQ{8DJ<MhO#E*fd$)}xZFgTyGc0wp#ns!+Qd#g=h_c|d+|Ngc
z?QHUPcXQLh?d)x)Omv%1p(61y7JL>`TS#N!2MhTu#9CBbk<CJ)<xai?EM%~d(Lx-z
z##>0sNji?{E!^Mk&ca0PaFI+V3klqbcxFzraJ;_7pY?yN<eJ2-xh*gY**VX_F(=0&
z9U^jZQjLe4hx5G2PV{(w3k58cv{1^zj}{7AD8^mMsnB<C91B~h)FFaGD{6s|IGN(y
zsRT!|(j#PkvQU~!e&$G$?};kItz|8cyd3A0<X<fOYT<>2mli70D=gfijIdDILKO>V
zES$Aa)j~B3<1I|E=xk)vu+Y&$Ckr(#)S?#KLNg1sE!45lz(PX{buHAh@SBDD7P{<U
zUAOp`*Na}CF6ytMQDb(nH9Ht>*K1^<v4!6)G_i1V2Wz^}YwTc)PPiY(3Q{2DL6<bQ
z(859+3vKCjzeKdO(8@w<!aKD4m6hJf?%xeunIG3+Cu?V+y@d``Jcy+9?JbnP@bNfW
z<4u9k9>Y#M*;*%aXNru4fffc?=xU*xh29qWSm<t{hlQRNdRZ8?la0ydo3oSc+sPj8
zWLx*dKHbR@PI>!U=x3q7g#i}+$`?hO+9r&Ri(2ab_{@xnyF1uFzB>k67-C_Bg^?D9
zS{P>0uuSA|3txA#EW6n9OwmPlu?qRK4T|!QvM`$TZ(*E;MycZ7?DVHd>l?$%_P{T`
zTDw@MU2MuOw(>*fi54bV*kEC!g~=ACSXg9Xv4yD?rdgP6VUC6A^dbv0EzF`kdgoiY
zi|yUzR-Y?U(zL(4f9+yb-}>iTm}g<Wg$1PTxo)ps=6=Ryh<>w+Ewu2|$y{W&`_vK(
zOD(Llu*$*?J93$Y<rY>@VR#)&n|;Uwjl$7S@yVjmt1Yatu+GAI3)?qlthbvje;K)!
z()GdLVK*DLo6X<NuDy3vw8_F|3;QkF;)*R6wp!R}VV8w%^dP;3C%pJNfAe%1ckQMX
zo3Y|<Mn53CE$p$d*TOyvG!jVRka@eC#T#z?eS28a9(K^eAq&SW9Jg@T!Vw<SQHt#z
zH!ZC>suSYc6^%Y&;iQFA7XBnX>|r!AmSLMa3wCi2J542gFN-aeP2R)a?P2FEcb4G_
z$MYO7aQw@{MNTep{F~!tj=it?{`u~7-7_Jxd(P5T3)hk**Dc&g<~J#jwC?ou9Se7<
zER|=Lg?}ylXF>TXTBXXUdMY)KqH&&k)FN4UVBw)fgNG0;NIZ3qEd(tHycX;(oj_lf
zUr)r+G<}a@u`>5SV+e``S|>oMYr2;m8|~MquHE;CIO-e?jwVO)My@usjk3?-7`E_)
zlcyG*b3#tfsH9DeEjKlmkgTsPyr$;DMr9jsEO*yi`5V3n+a+%;yyKGh7Cu<`$T`Ws
zSooC8KT{db<tO1+F8Ri>5#N>-X(NS=lr~_4*~o4ql?{)Lv^LV&h_d0ek;X=>jc6M&
zHheZx+n{sc8$OMt4a;<CUEjToj!>YD$<%l9+X&c*vk`A&?q0W4Y~9OF?PZrY#ope_
z7FCa<;m!0mGT2D4k<~^<8<}imwvoklzcuxn1!ykyh?V4|jsCiqW!cA0^>%-av)M?b
z#M-!D)zvc@+C4!lE>d*x=dh8}Mll=3ZRE0%+s2PJ3fjnHBd?A8HVW9Nx{o#4$9}Mp
z&&IfYtj7{}po4A)NL4BQ;0^Js_p!VCSRosQZ4|Lll*i=xKIYr+#=m>_tk-Kt=iKk6
zw1kb4Hp<#4XQPyjpKO%2QHEaq%#Bjj{p@EOJ#Hk@uQxS@P59%Uld<J(RIu@@jfyq~
z>}S8&(55A1ev!0xKg&|ut>dSHZWrS4epZE|N=h#1ZDOOEjq0|0CU$)rHEg#lPW{8W
z^z43ClVdH8wQbblWY_g*a;j%j%j|u-pZ#WoFkg*?1{7diR72YxJs{J_M&o4uyN$C|
z+&Q(THk#RJZleX|nvHojTH0u3W1x*eHd@<gW21|Wt~T1*XlJ7XsmR8p_1I}dwkHpJ
zP_B@hkd8JwaqV^HNb9Nm2bi5Vs^9_k@3_?6Y;>m)ej9yBOE!Ai=w+ifz4rhcaDY8=
z0^SXAl*~^ry);~3JAKxEJdpmRG#iT!u$Si(wmywJcz}ftu+InBU>iehOr&Vo7;0mf
zjnOv7*cfhOgpH9lM%n0}Ds}pU?qZd^cVhqS=KpO};Qi~^f(O}HDh4*j+n7KFwO(|A
zm+o$_?)$uz53-I2*|LM|_L;cJHm2B^X=9d+sWztBm~LZ+jWY)sElv69od5AbcjrER
z9O+sAA@*Bm%(gLy$9cV)F0+!5VQ_5GLu|f{1vXaOSYu-$C4`i3V=4Ex*v9);k-2xE
z@gertyTCFV%WbT%v6568A3d{b(%3`n*r6=D4zX3XyINpY+rXnkY*dH%wKmq-*lc5q
zjrBG**w{!##dgnCjycS742&N=JK<ZQ=o9G}^(|?~D4C}jeZOyw*lI)E9?*M5?69%Z
zMr{Xm9PF~Oo5v@mgFQC(+IV2&p^beu_S?8%<1ZTrY#g-l>7(bojYBpL+c;_C6vf~2
zRX)s)P`>B#(~7mDHjdfu(zW9piJY*}^e`jxr|mYm14||xJIqc~gb%Yb9MAGspW{eE
zQYNXCF2%TL<C2ZrHtyKCY~ybm|Jb-<qsc2@xnj{@<J|Hl9A<}^uVdMyt2VBY@_+JQ
zw{gS9^>w&u;}(~Y(6b(&`I!}WZTw56`jh9rjsK{93wrNy>ws&nkiG)nN$zctk8C`)
z-JUrugbvyuC*6i&L*QKGNJ5G7h0?{XDo4$R{VX#%g}9aG`iYx1EYcM<Q`bGV4adf7
z&chr@_`=2$&Y#+N#>sOVWXOrk>h7_GFS+#<HNX5Qk~iG?mg75)d(OE2KiK%lt)Fas
zvk~FA!p~gtg_N@;@~e%tx%?!I<W59VaMJdb`xXiW4pKSrIPM~iG!6=lPmJQ6tX@u{
z9mFI{e4M1_NSF1*I`BIPIEZsl-a!Qi@ea~D?udF}2k9K7caYsd4hI<=WOR_=AgklH
z{FxkNc96xvx5Lc3=%u~AtL8<~jP0J-sB8`r9V9tmj(h$I4f#?plpZO5gzYh7)|QDb
z``nY$K`wfWgZvJ1JILc8uY(^PG(5uEZ1v`Nm9^gyHt7hX1&|v&S+3-cF5uut2L&m0
z4(QzVMKQjp%W(%cdk-FA5AS-NBg}u46>(6MG~=MSgP)1y_LtyT%0b<CS$;jrO7fT!
zA*Y`>CsNu$83$##wH)_PLW*tEqi)%z(VJf!^tu$N>Y&e2_AAGV4k|gQ?7+O6m4sxf
zIGDvrH6BiNjx`+A<V5ZmK|$4Wu!e_O*Fil83mq(S@SB7Bq=E8LGaNK<aCCQUQ^M`B
z4IMOcK!@!#cJRA{CXRbt+Y!rim4|RejrAO3%}D5=g@cw3hB_GLpcQ3@$DK&+?x3}U
zHV)c4Xy>4#gH8_GQ>GL|wzTNrfDR9-vpdTlJbE<1o9P(q?4XN-t`549l8-UksQdL{
z5)D*VI>u&dF)fd=D&yjNIOs{*aM0U9e+L6d8xHz9=*Poxvsg?Re2mT6=$(IzO)bC%
za`|8fLmUjERKN2aIp%8hD#sS5-5%y}2ecGzyn_i2MmThtre~ysQ4W-2Y_x-MTr$SN
zSS}$~GUU{{eFT|_RItBzHcp5ywbMJv!DI(h987iacN+h62h%wD&e=;35i*_mmF_bs
zzZ}eV=u|QHXgI<-4(9UM&Pz_qd<P4XIeA#@V2K0GL5N~?%Tx2Vcd3JA4wgGu;oz`?
zBMw$NSmj`&gH6d9vD!h2RY_}jIBPksbFkjQ2C7r}P(LOcAt`~#W(Qj+vp&Yq>F8S>
zY@@c_!CnX39qgb2aL==g<I^a2E!j>7!|%CdHy09Fnv{ufAGaRhxS!*|dl3hd{Ty--
zdpe4|9d&Tb!3_sD9UOOXf=BFc2PYkz;{2k6KOLNQaDiLTI5<nys-WA3pW_lD=Q;5o
zXJp9w7q_;!;U?!2=a>ISLc)Kz^@@Y54z6+D>ISZJ5<kN2P?5Ri;Gu&@4sJWR!=3Ir
zxaWZWN67VG$}g&_{B<3VyFV%S9Xz1Ya-7XR&Nd!rj~xUZNDgEN0)KqfrYxtQctjq;
z_drHP#~tS(C=OKaheDo7Q^3hB<Vyzz=O#zXf$hLac75s~oXnqak~tXhjFaaaUvP}x
zmzA1dGOrxG=8`uY-*SA%@jXZK^MR9RX3}Q|UmP5IiNi1Pm5PvqlFv};86v`n45R#0
zRCtOMVWbQLPmt;f5JsvnR)n!K3{MzQVe}xUno-^`qQht&cE1QQVfeyG3?nIw)M2Cv
zW5Nx8LKv}O_`^sSM*1)UVZ?<IA4b|RD!ff<S3S_UliS5wi#VD~B2uVlAVV1c9%q@u
zkVeL43?ow*m5)R|ii#pbBuf|<c6iA&X%~?-jBH`I7%YA4pEft^>hwMqM)t5<wrhux
zBaED3{2E5ZFmi>FJB(ss6b~a$7<t2VQ9BBT@k1E-!pI*+fiS)ucMs*udxF(C!8)H{
zQ-@@vtt-?AE)+)LFp7jxG>n>Cy-QE9)kz7vPp}s!*kdhb+|WSuNme3^l3|nyqih(Z
z!uTnSpTj5}#+>@mduL~i$P?FnVqEr<Ofch0o@9+rvT~$k(m)u$@c5T~5=TcBQ9|fI
z3EIlnCUwTbhXa);;bBw@qk0&pZ%0-Mqbf!6fV;`4KeAN)=I?cq)u1SaQ7eo-?;_tP
zy4Um3EY+Gc(ZBo}RdQBroiOT#Q7??&!e|`E?_tyrqd^!A!)O%7@{_Fp=-53c*`<>#
zZ&@GR%R`U9`s`^w0Zqba8b-4)o|4lkR^gO86PGfhTl-ps(UNC(E7Efq?Zarzt!+5A
z<w%9WyUsn%u0t4|lO=y}(vf4QFlfO8dFT>G*D$&z3rRwzJGYXDo?-L~qc^24j1eRZ
zqc0V<Q*1EF<D>h9(Lam<T!9p^Y%L-NhB1g+>CQxw(5;I@xX+;+hjF9_hlerb6eB`s
z7tpfdQB<O;dPj#bCXBIRj0<BnWn38JsQ`yDHH>LtOblaE7?Z=8!o%Nwik&*e=#zc;
zS)hiV^zSKlrEK){FlK}?GyMP9`tIneitg=%JR~={aPLhZgb+yP2m;cpC?bl0fKn8(
zpn$*&h*-b^C?HrsKo9{%1OX}1lp?)J@4ffl+daLX6X4rt^5$K?KfbkQ?e)x_J$=tU
zWg32@o;{tMx+!R`8l29b8*G1WyNQjDV?rF0;`lX=iE)(rJK^Uze&J~j+{7l4fF65Z
z2}Z=^IDU&`3UyN)|7>DIzRzhsBX|EMMt>MCZ(<Ms$_Z~~aW8p#95>>)8OMw`{)l5{
z9JAus8ON?TX2&rnj@5CxLK=U@F_+qEVfsID%!^}w97||uY-S7MSQy8mI2P0JEL!BR
zIR55^AxRoyPizjVuzCnq4Z*(Dl<=hlqDv`F&RG`6@;Gv4C#;BLWgM$`M3N*&u_y%s
zYvWiKNA?q`<Xs=fhB!8nGRN^R$qxbjpx($+Bl&`eTjJOn$F?}O^VCL}fl5<$JL18w
zr-Cw2QiONMu_unBaU6?dZyfvLIK-pu=hdWA9pG6|baDp^%XXN9Bb-vQ6m&d}6LDOO
z;}V&jI8McB-z(0?ahg}{3^niF;1_78&FpNPE?7^dW}#wV;QYKbp_jXrB_<XA_|mM)
zR7kRZYeIyt!~+gRyv8}#IsJ4qqtIJ%+@_HghaATp(w1}4yEGg~Igf>Dfke;!x%bH|
zObrzq5st?p()g;Jy78HmB_~6pcy}mq(D%L>hstZAajJ7l*%>rgz78%Swc@bjaN=;|
zcu0054lfQrj{G<t#Dg<lmTYEQc!GzzMLRanbdQA3Y-R}}5=9gdkt9Mb7e3X1o$41|
z_e72q37*JZ*9A5zSwxD6T_Sdi2#H7)@r@Xq<B=vJECz3q%|sLvQCvhd5!FRRL_|g8
ziC`jPBGN@<izp)^LqrKNxXG)Oh>{|d%`B69i8G~E`cyF*+rqL6Ii)$MwT0zykSpS?
zqGij9C@13S-(wVo9Hl^%_=1SXL{#CD<waEB;0Y0ri>N4~GWSw~{n|z=+=*4<-v4Z2
zln!|*1y;FSRS{c{B$Ag>t0AJMh-XDK7Ewz?ZOV~HA;~%->WQdNHPxbZMGV*y6yQl7
z+Caop98kWL;4fPk6))5_N&*c<JR?S*5z(kHojqsMpA#XJh&JV%=S4K(-~~<>^JEvz
z%-hRBa}h6!Xd$Adi2sP_L6r8Pi+D-I%OV-};J}L3BHB<BiRdVzt%!ES7tuk)D<WPM
zgWK5Ki@}-Oiz@{MrjvHOEi7*<BmV0m-VpJoh~_22jkYqnZK~r|_UTqerz*WI;vErP
zM7%4a6IJSdk*3oUJBzT|$Hs3B48`KDtgDD_VlW}qUBnmRoL!uMW-E(rW9utt_7u@e
z#AhNt7xA8m-XcB{@v(^aMf4Hzfrt-zU1%<;)i(CZhdD(bkI_9=lyaACtS|MKh)+a(
zDq`d|_Qy7sbRtaq3L8Ebrj=l=E+xORsZ4+B0uh5n3=uJq3LxT35rc@Mr>)q=zP%cJ
zZJko0`zh|K99kyym58AtzUG;V+t@H_naQ!r+u7|uLyI=&&{EhY+u64wz7sKA#0U|;
zi<m}b*v`JEVX`<hkxC+Bl!(zHeh@KE#80GS)ys|%@gsG|*yvd9B|uDa1jvmSF@f_7
zLWxhpKa2Q9#PscKl8E1Ud4A>I$(&NLDQF7k6P{YgEYm;o&vrIl#0(LCh?ps2hlrgb
zW{H?BVvUHkBIbzrQ^Yb6%SFr;F;B#N5er0|+|F8dkL_bAnLAju9YOakq&L0nobS8G
z{t`j-ZxM?)Sj_1XPKm#igMT;;EeNd;u~Nh;5vxVC-@%6MU|kkQ{@B4*?qK_Ou<vHa
zq#bOXi1i{ii`XJ!gNT1cY!tCcMERYp<xbXrCtEfkwih{cqFp>GOzSzfir6ONK~HQK
zF?J`TV|7>j92;;ici~P(Kf8J*hA;1A+t#J`$xq%RVlUY%i5tvaY@dj`BJPRUFXDiR
zgCY)zI4k0uh{Ga|h&VwN7lW6mqau!pI4*+J;I;n*it$S2Oq!vt&?M8ilXyzRX;Nbv
zJ5^)!D31?|tUi#}q*bi$E_PnT1rgUp+z@e5#3d0|MO+indKaV3-Ir<Lw9dOC!r(Ws
z6Wz2ldSXrR1nIkr-4t<4#BC9Gcvr3(9oyeD^`MeW2TA=lG%|5pDs2y>ukZV0dqrq8
zc#nnRoQj-EoXTV>Irwo`a8kNXd2#Op5he#NrxvFqU~}Mbx|m1tIQBWs=QQQF2uVKV
z_>qVNDabmJQvyeJu_OtQP*g&)glq|AB&0~e?)VZCN=gVxNR^N#AuOS|gos3UC<Ghl
z$rYnmA1Bbp_NauIgmeiRQn1gRf{6crX#q1+LTR2d1(o6;i>E*hNE}KwM?zT%wItM*
zP)<Uwgh~=B^H_Nj9pHe+BrqP4qEMRUB~;+$d7P(1i4c=qMJX_w@~%MhpO8>RLJeMp
zsyuEr3DtQy|5wNYK+$V*KBZ7cLR|?BBs|3<)+<cEzJw>Km39XylRQOyny2}Ughm`R
z{68%~Vg*HdPQvpN?n$^Wp^1bSBn*-8m4v2Jusi#G3ADhknS|yNUX;*6LY?369|<j`
zVEyw?Eu!?D(n`Wh5?+?jTEbh@cM{r2Xe;402^}P~lkkd!S0%KkkGtK$-EE8g@PHLr
z#}iWMl{>U3kKVUmm+*#!C1sM{l+bs4blm4Lnhw6vG+d=ru#oI+3GYbgETM~pFV>*L
zZq|vnA)Vt*ONri<&{aY=3Eeq!z-~5`x4`1v?DTHd>!axH-RwlmoE{SBEYqG6dU5a`
zr^M;aL2M7}BjE!HA4>R0!XOEQC45YUp)TITN@Yj;NoZCj<*yUT10{SS;Zq3<&qY6z
z(4X@Of6h51Lv8>y*Mew){1+0wlt2;5<xNW5^;d8KJ)LSx7f2afqC+L@l(0*}FbQ8v
z!8^=1+@!3P@U4XJBn+1@Lc$CQe@OUV!bk}dCHyR5l!Va|ev~jy!VeP0P&eI597}D!
zE-)$Mqru;XMtj(-2En}2PZGvUm>_|kT(p0d7JZF45u3FqxESac36msDkuX&X*7^S`
zVX}nZsOxKHkX78ZhtbomZl@s4-z7}rEj*o5RwQ^Od+u=L+8&m<m(7$gOTuF6L<zGc
z%#ko(!U73@N|-BQzm+(TbgXV(D>ZH9$I&;6MxWcuXs7u?Y8eTCOISqxdn0Fb)8J*V
zZBlNX-*RvNC$Gm|_QILaQVIW1%Sc!$VVQ*GJog7vFm*3mvX|}N%ih0|vr58h32P+$
z`z^Ac&KuP(_ROB31+MI6iTl_(3F{?npil{0By5$ik=ndxjP_HPS0alJrEik3nX3OV
zyXrnxuX@h;ei_@S_xA-SNNgwmzF<J@;Q12XEn$y@;}TAg8jQ@_%jscG_fbtbIKU}|
z9+Ys1<Dd62@*a`!%<`<GJgH-xF5`)xq!FDGCU=7@hJ@4Hdxl1<go_-X<@B6{^BnZ<
zole4+IKIm1Wlo8CrNFz7UE|<7rwRL6LHai(+~S<uoD%a62Y1Q1ahbRTQ9=nBC1uby
z0ZBsrZ^M=ZnXE*^baDy@DyJH!I;VyNlY?KHg-Oho;P48%WTIuH$?zoj67o4SK}MpC
z2OK}-^bx1;)C$x!jeY^iC@LdaMv@H3f!!`Jg9K9K|DKK#;^2RF@`I$*Fy}-$Eyiha
z84(T&>><$@_oj22LAmf}0Uc&e6DyfA=+}KI8Cfz)%gB~dLB``U`V5Jdk?9J~v^*JP
zxN>Ba<$!QG4svDC)0Vs>!(<3t_%Tk)b4nN0Q4qaC(BwW<u%e7gGAhe>LPixCHD%P2
zQB_7Y8P#RfkWoIGUhSXAnq^s{6Q=up>g{L4N(D=&YRjl2)7&oV$q1JV)5|0=U*8|-
z=dts_uk11VSpykQ$*8EHl7gpYG?Z~%#t9kE$Y>;EDpg#@voadX=r0GeNc6+xIT`<v
z(Sv$iMiUvtc|k^d8L!D`Dx;Z<<}zNC(MCpFnU3Q_OBpZ8cv;4>{cQh!c5^>#CF9Y4
zR`LLQb!MzJ2^<KDM6SvK)=tJNGA)-)e3d$Ve=Z%!Fr;#rY~#n*)4CpD9b~*N;~g2D
zWV|8cO&M>==qO`JE%sQwvdb#4p$FL8GM3iJsqlM-CWMD12T#w=GP=m<CZoHI3FX5T
zmGGnk>|GgMDQ?$d-EX82U37qz?iW3LfIT?Cddlb}qaSs5y(qc&IQW3m-ZI`V<oBVj
zKgbGXKIF`gIQ>{g-$EJM2uuQ>$oQ0VKI8QB!q8(269>o`DB}wmU&{Dd#xF7kQF9%N
zj*{uN^yI-ZhRFCz#!wmG%J@#kFqt+DC4MdA8|sA($!!j@(aWPB9c0VrM!!4AhRYZs
z<9it+WxOylhnDNSbRjbJAZwYHvG(ccvV)9X4oA!QLB<#vW2rS{OqB7XjBzr4k}+P!
ziidghgRYpGobg5ap|3N}O^qEs$U0?Y(Aw`$hs4^v6qxaj9Wo}#!HJr5!OgES_AR0V
z@d8TjHx8yyfqO*BOSf-NlQBoepE9P)!7Tv6MF3Paj%OBfW^piE#?_O7%v>4sWUQ32
ziegPjnNR&oeai6yP8V|e7pH&ASR`Yy4D}%E-9Dwxsj?J>CPx3ECgnR#k`A$DWEl>z
z<(#hIlxneB#u^!0Wo)DFIG(&##zqd-aY~%^GB$AhZz1QqD|wqZ-puJ1PNlO6B)nb5
z4jG4K9FbAtXk;gK69>Cw?52{G4)2k%ml{V#<{?Jj{hayPrI2kVzCJKQoP)eW56K`m
z?VVs((G?*~4_Tr|skM1%^*IT|KPlrBjS(fd_T@B<f>W9IWyEEik#UyBg&sb~=@m}T
zlRe~s_!l|2#OY-kyoVSuugbW_IoCP8E#n3UH#xn<>04a#4##&ny~pWb&KG4!GGYqS
z705Ca>I)efZ=9bFG1|#U){=HH=%niJ=L|j)He{GGEb4UX3k6W%$Z%ymB(p%4UxrU+
zkPN<z1&7#%L#*7{VA1KCA;Ij}u|t8aNKlYSCaVUDD8V6|tLA3iImFTq2SJq&v!V);
z6@(QOQ;?z{q##v6ni7nc_J>(#HT{j#F}+RMUWeJD!|cFeR-8;<6+{$7sR}76i-o-S
zVOIA@kXpMVEJF$A*2!gZP(ndT4*K#r_fi~ZDJZQVyHK*Mf-;3Thl4&xf)vUrXnG-m
z0L@6|DZ$z&ra<7}F-~crS9v8^PF6v|;~WfF6?iKvc!F9<fvcd3f~pFBR4`6KH3iib
zbX9^2aFrLLH5AlTP)otX7n8_QF13|l<8u=QbrjT9P)|X9s;q*B3Z7KZK*3YISsvC(
z?{|dNHi8epWjoTz`;3A{3Z7H&yn<&bug_!UmIv>3S$Cq1sir3aKwdi3h<24WT^V|T
zs-~csg60a^D|k)8iwasOXsw`)f~1xSEfu_^;AI8JcZXUjm~@0~JsP}ptvbSt?U55l
zSX%|{6uhF~RR!h|R_rLNca)`Fi&jmFjlQ4!;ZZi_DC?l$bp>xLct^n-3f@%kmV%B7
z)=dxXILgi*4Z7?dA=-9iUg9y<Wo4+7g3b!<puxLT>tn1!#bEA$HvC2|q+S0jQkvgx
z*-b%rY6Jy66bx4|LP1Xj*Gs0-)N_9Yy%fBsptpke6@09quYx`bKA;9y@DX)N$<$8A
z*u0y`{g1JftFhmXvB}Z0!?R=k6nvuKQw5(XSaysZ`6RvP+;Zu?V`J`TS8N;oT*3BZ
z?4^H$>JLybkaSqVmkNd{_*%gr1%nj~QSg<5)5n4u-9N@;FKF$d)Mdv5PU>;Sj<atR
zy0i}8@gDr=WNx?PY|^U8ST3;XIQw1!?ZKqW`<gZgmYj`LFiOFN<7~8oA2=Ap=~x97
zPcY)sJTlRr6pUB!mlEuan!xpHvVz|fOjLs9=szp?h5C-;_4@-3xnH^1w*8o*V5)*?
z3Z_#ECz5|x5KBooeImKY$>b}S6YD;nGeg0j3g#;KgOp)TXr_W$3T9KMw@sbHDS<x{
z1256O^~$C_h}6uF%p-l66`D`oG&N@dHBNHMLhAJV$gcdz-wGBfSgc@)f_n<?D_E-F
zA4<G-jNVn2DOj%Hkb=VsRw!7hV5@>{3RWpttzd(Ke-*4zu$J^k!Fp2N6O1P72cHVP
ze<GN&e=UuDcOq!*jS4m?*sNfSf_*(=|8VB66HGk8Qcf~@|0kL43U(;iO9Iq53U<-p
zRj`M5O_h_Z;mIJK*H5w`C)sZ&*(&bcui$`!gXFlEwm*~1-IMIGQ|yR>qY5r5xUAq9
z4H*Sz6r5FXLcvJ|r${lVj;Gjrr|8co+kT2&oLz?ElG9JIa|+H=&nmb`2Jkd1)gmgK
zW~8W1P6vOb-agF+o@Q4RTvc#W!7T;XXvB?AysqE|agK(To@N!cW-q>!MyKl0!ZS+q
zwt_nf?owk~$uw6^i5xr~9OmYpW?jw%WsZ~5o?#;C8`*yaiUNbWOo2*vI5SC8pi`TV
zj@?fQULIbwf^!BMeVJ}4uzCAfTH@bE<d58xYuRl48RjYQ$!Mr(t0JG&V}J0gt-gu}
zWY!csQjnmc^~}U4R3xgw((bT|Vk(NLNKye6Mb+SjuMnrnDpELjc48tin{b-SIpj^_
zVEGwVTt!4hSrz3}L{-F8lv0tUB3(s>ijpcaRa%goRzd~skGpn;op?6o0I&GNGwj*9
zk^U)VN~_3LQAR}$#XZXgpJlVp1}(FmQ`&oV?<_mBKANk7XayB{957CaBdB<+5SLf6
z_Cg{tALpEkh5Sk?Di>lBsG<g!^;A_+O+|GTpH@n#rJ^<mH8`!Q2G2X<*HKYdMLiW=
zE2SJLo<JM|`-&$NxF=OKQ1O(CqrYZ7tI~ZOY2=<((XbFdqoNVV_s<2PjX8c!#q%nf
zsCa>UUsBOjMKg|Da@t(Qi_}~yN}po|X+C+5_2Iac3JRTmj&0`NmsRNJSZhv6vYm=o
zRLCk672hogy{h6Z6&*Ql&*^KNcHs1N6>q3`ljE_M6Ub4Nw^h8OVwj4rNj+3_R`HRF
zk5zP0@ve%VDtb{<sOU!RqoRjOXGVo-&t27hx!tJ~D+TXeEpA0$zn>O8&z2`f-&4_B
z#Rn=rR57hl1|7NlzKWd_Vtpvt^3hu7gTv}+D{kBKL3j5#&-$w9r{YT$gH(J%9igJX
ziUBHW)XDga_sIH;lvn3RKUYDC6WF*uGLSU6MryI@><bmOPRB-_XG9097^31U6+@|I
z8nC73*#$9sSMzk*4nW7o&L5Qa+N{VoD!x^5P{ko?0TshltWdF1#RwJOtN2^RA{8T5
zj8ZXL#Sf$d-{svu5X@7||1)FgPqC@lYz!5wY3f*N?W4&*su-u@Cl%wl_fHiQR7_Mc
zlY4(w@r#P7Dt=cnNyV=!rf~jbPJiQ+5}DOKVSe`n0tJ-7G!-*===4IFf}lURm+&kO
zW*3IeDdbb!xg5_^F<-?3ju&$J7pDbz5nW6wr{W(K%Tz2?ar-=rUSRHwkbRzQ)`I#j
zr!jIN=%5j1ctMTmDiy0$>`}2-#TpuJDt4*Ztzw;u4od_1moBjN)Nv`%4V?a~Vj~Be
zINi?aW))jF*vcshZzEgrLJEN$oU`-)@F~r~7ub{hj--7m_N%z71ylbANL5}<4@biE
zq^6Y;^rm-M#Ss-(Ra~PXsp6Q5(=_T;99MBd#Yq*XRLr`-)?Q%OF0dbSS>=n2Zg6OP
zk+r+X&Z;=4;-ZR6D&oac&a1e<Rc`#npzd_K!itOR-bJ?k-PmOnS4hD&Wf!}|p1;KG
z&avw%ZcwRI+*5H=#Vu+^6?Z82qA4}kq<6i<NN)#TVr@T7uX7`9;w5&UvQQzakW{pM
zF?f?9cVcCk>e*qMw59pD5yvB{3XQZ*Lwyap3WJQQhA(qrs+fBz*kPTa!BSzXbYmcG
z3<NY3)!?b{RXkMji0r?L0}B!+Z%llkf>yOr7Mm^wbxF{WsG*34Bn^*R<<a?&7cT`T
zg3_OmP0M1T%Pj9QOV*I0p_qo^8bTUUHKb_>YjlZWkOIA=b-f(?)24+AdR~}zAVxGq
zHN-TeYji6g`(R(>R*@(zt{(Y(>gdeU`_Dw_0!=zap@bHkrBIU7Obw+tDBC<r%+eYv
z9}Z`0D5D`qLs{}_ctS%t4Y?W~(@<VRo)$d3m<B<^M>k^=FSGfVS(D1ChuWu?lG7?^
zcw9q84V5%(z09897dgXATd!@ZcbRofPc3zYRnbsYLro2}w7|kw(@<SQ4GlCq^UM|2
zHRZp3F)1rrTZ8{&LLCitHM(_+HOLDWTol!;D64Enp48Al!vGBfH9V!^X$@~^cvC||
zjSd~cOB!C*&`86x8k%ZorlB!4orWeFUeNG7^<&f2jwv|<udsWqQ|aQfnO7LCvyzh1
zS6pGuHN2>yrG{1-vP%cA+%0%f39y@)RX<EWdWEe_C>voZtu?gK&|br98ro7JHN2wX
zRgJD0Vu@E-=2cepD*Mk>Mt74@+;Lag!3T*QDDhc%UBjRn!EvVK7F=a-Y3QioJq^7z
zyshCK4P7;K)6hvnXANC6ysKfyRkoYXB&nCDUZu|pR`(iv{~ELMv%6E-H1yQaOG6J0
zKVM4!^BTK1Bx}sIAXD0UKy-ODyouyB^wH2y!zUU((D0##k2UnAex!Exl0(<o&syj%
zkHxMBFOc=GvyRu<ry4%f@VSQm8fc3>UFJdw_P&z)1`7|n&QhjD$6se(P<v|lO~Vwb
zmxjR_MrjzWVTgvWG<>V!JBq7en1-)4e8U@a({*<IRBn%<WlvmZk$u6NRs1>|u3?0R
z?=_4hDnw~l$oL*H++e~D*5n3z;|3eLtlSS8#%P$JVWNhy8h+F;PQy>6PQM3<d~$<*
zwk$Tju)kK{VD#tbhZ|Hi{Gwr!hF^Km;Tz1XpLzR6@TxOe3nq7Fl?iuPA9`?uc6H%*
z4GT0Z)G$rMbPcmK%+@f2bgU-+&@hvyP`6Gr_F6j4m1N!w+IfzKKQ+wNFi)d{3R&x$
zY{-uZG^;*e3l2Fc-!^^dP1fxut6MtdFAaZd_(#JsjrQ6HLtwFnC4_IXt2dc`lPx8c
zevr2GOxeyAQcB!nd+#SM*RVpvN)nEytQ#0>af@yHBmHQzln-j;tkJNR5;U>M#5xV@
zNda{HqGN-Ge>G@ixHN1e+9Z5J!$}RBG;G#DM_6p3-bo1^)UY%&b*qML8n%=EC?TaP
zc4*j1T2ZU)E)Bai?9p&3KQcI$)39N9{=>Ar8un2~uZ*&#(ft|@km}|K|2N2GJQq8}
zlReBSrGG@jQI3xla*lIQc|x&Mq}WRMK8^ivb5CnHqv5QEa~eHaa8JW|4Hq=rqG5YF
z`63lS!*!0yds)L(j<0Z9=6E1;tuVCgaoi}xH_4P8M_wg%n{)2`ANc}436qO+zE~Jb
z;y~7*6mnEjgJwyTi=n}!ajK)Y4vRGTVsaB5FX*r}I2v3s{$!<fg!SO%mX59VX;kK>
z<ZF09>p#iVlfl;k9SJ(J<B5qnis*F2R-iw(y5~-!ZoS14Z?mF0l69o$2<e#GI826d
z+7Hp(l-SBQVx!9j<}p>rft28jqu<x1i|Ht(BTGkd9T6Q-9WfmlI!fqxvusZDvN`F6
zfV|{N>L6yOj@oh(0df?jG?hn39UXObl+lr+qoR&VI?C!Or$f;3n2uZ>zivRD4yJ=P
z1(d(dw!9pSxO%sl_)&U!9TjvuuH)c>gm$;tSGVbWm7rdWZnML;S!Eqh=%}uvhK?#a
z*8YyFI;!b(C<ntGR`(8Taffxe6Uf)pQA@|j8Hu&2*sEg4dZiD#6Pyw}<4$lPU_Bl6
zbv&)3p^hhYG|+?L^OO$y6>r^PDb@4n65*1sW~>~R_l%B4IvVSEPN!8Ok!Pu8?y^dE
z87*aLTqU*XUG}^VabeD4HLv5{Am64sn(25|M|)}?9WPQB9}G@dYM}=cg)dV&Q$sCz
zcC9#lsQ~l;nNOcgZB3;*nc7B2TOI8<ex;Cpc9&7mCuKsf>FB8AZ5@O=aQZr@Z*cl1
zr*CnZ9L{=2M<>dHdpqms!a+A3?{YvXkYv|F{KH+=onwkfLF9Vq=vf%rOGiN{Egqwd
z3GeH{2Dd&sKG5-@j*oO&w}T-%c03n-ZAA2A9es85<F$KjHu_T{9Dl0gGaa9Ed~#gk
z%l#5N6idlnmpVYlK<cUP(Qgjtexc(_9fNc{D4MtME^FxLUHh{Pok>eS_r9WLR3gK5
z4CN^d)A6;AZ}ecc{X5Rtcb9#ugD7!`Qjd(#@jYpRj!`<s>G(;<XdOT37^7pXPP;@|
zTO(QN9cbX(F9N!*L(Y$sLN?zA>LrfXF+s;f9Y-ew)@i`B4DT+J+NIM>?j+J=9f|?f
zz+@f2=~!=IgMleD+-Nu(Xlmeh9n*BgNlA1}*D*uKUP@fYA3A30!3L{!I%esZt>Z5p
zf9t`WFXPsR=IHp7S7)w{dDPB}gV9=W-PL>@3pi&XrxaB4TIwP)6grmcSV05r9$P{k
z(IU2t#+QzNbR?Y(*T2Vl_l&;PD@Ipb5#8U0t<<qf$7-HS`+IDSj^PP8pWI_>Ifvv&
z-wRrAJry9zHt6_Q$3`8SbZn<C*0EW~79Cr4Y}0AO8tdP!?D~7`=shOiW0Cvp@%ywR
zhV9g`OUG^<dw80i?lZc0>&yG><F@SS^<^WUmu=8JZ~T3>U&nbJ7swXTsMm2w$6+1E
zb)3+#=3a=d>pDV>Po`-~<nQ~e_^I?`l;C}K@jg4L;}rFNt?(JLqW9Tpofdwx8&BX;
zBFl-hv(&lN&TI4NZnYNipoAB7T+(q<$1NIPF?N}k>Y9!##C(UHvC^(m`&+?!ytW<L
zbuu+)!Z&y$uUwseTgM%;GdjLXjgtE}6eZ4GGGc!wlDp6O#3U@~kjZiyC}BX+q3X1R
zk`*<e>Cmac-Q+|Ah7ME5Loz-Ga>-dbTpb?Sf1NfG23MOAvsauE^+`!+AaF_ICoRh(
z=6lQX_H*!v^An69oqcik%c8s@Mvz4kr{I*lew-y6NHGvHkZK@mAZ8%VK-fTWgVz29
zccK+Dg1R>mgHETei5RptkBt-Azal#*vUCHqHmvd4a2<)Yl2}OtnFjq!Vb2;UWgyE4
zz6EL+C~Y9yKt&@kr)3P}7+?kj17!`AGmvW_&!A-|>}x5=g|1qwa4vWWTp+QTi_#x6
zP~JcV1CJYYsBg|aiCOVjDLJ^8?e8<8w`BH}%qkhEY~Tq4bPZe;162*05o6nBR*mO4
zG$ma-8Lm!MTbxIZTBD|cS_WzxsAHgkfu{`ArD7YXPc3H9d=OJ*)<R*VT0Ip;#TfHs
z`WS^hZJ?onXACql=npX4ps>Zu^J;et%6wE|bQK)|>g&b^o-^>g0m6OHhMRCOVO8Ft
znbBqjnj84kz-I<tG|<98PXl!NK}!Rz4A2qlUo9>Bl7W|rX`rKl)&|-bXm8*(18oho
zGw_OmR}Ik1-t>xj^r`;C(BQDC#&uIisjS6!866C~Zr}|AZyNNm&-SS7lFIu39y3&y
zu{>5MDK$f5ZyR{Wz`NAo2KxS$(8)k&16_>ZXLv;|*zr0nnnIK|bax{ipawM1gJ?7*
zuX#?jDp5Mghi;TEVx<O04{b>9Wdz3RJx+Ub`aY+9IQ@Xr4>={Vk2v_4^5vjkA^#Ht
zot7n%z~=`2SI1N`kECV>1{xS;V6=fR418(e8w1}O7-V3ufv>0$4Ep9`KW!>|b56z(
z10&j{Z+<V*Rb#^pdI4r_8>D=*I`eCar7=1I@jC;<xiX9(MM_THucd9&80{HMKb-fy
zfsqC-t_n>Mvx)v-V2ptY1|}L9Yv4x%;|%;{(93Pm(UVGM-O?C+^;DUhTl-LGyaCZk
zApXw=elak~z^?`l?n!s2<X*~%x*F^MS!}X_-we<-*2^x$2F4RJbvA{Di5{djjrgQX
zRA2)$4E$kWu7P<5W*T@nAvVjvY%2fi%<4KL?;I-sli|ne1T!6f8d!QQn2mbj6y_UP
zU|=Dy-Ktd~IxD`-k<i8yp|-^`78zJ<V7Y-6G$JU9fqzIb3~VaJn(6FaowfZfHcDq#
z6U(g8*)^T5G_Z<{gMl>$9_ftsQ-2f7p#Qhy-%9UuA-0y9{Xen8M*2Dfv}PvTU^EFr
zQ_25Q_Z?5(NXZ)5Y+#Fl!v>D<@@zG*!@y3Cw;9;Z0TsK2!FF-HuaL8wgFT$?<uvD5
zc)x)I98<)D1`Y*7h7l%8i5xX>%)liBmq}rohmIRKO~#7j6VzWEoHFQw_{0H5@GIji
z=Um|Q9H-|wUByE$a!g{hh~<ibs|IcxxMScN>D#5;>jrL6UmJ|(^5}Nmn>5C!hUj#H
zThyfaVOontboZ&ey9UOW$cY=cM;e<RPB7Vh14J`SCejcitv(ubA32%VYuK-OngN|`
zf{D*e7zRuOO-#IC!ZKhRs9~a}3CDnIz%$@egZvUYd?s?@K)AjcG(x_CL=#0!Of}g9
z8apO?$mt_a6HMHB7$Iho37AMXkzt~!iDVOLCc-9COoYt9ET@|EK^GdlGyU9>*dmiH
zITkr=vSKERn~0c*a+xxEHXSu{n^Ln_%*3;!Vl6CI(F%%D!bC|E%!FVf(?lr~IVQ@Q
z$TCsdM7D`CCc0SkI*~fe3YMc^v{;hOI)0u(W~ZEqc@2_sP2`!VVKcfIxBD}xzgG&T
zv)kD0F%#uYR5tO1i3%njH&M|<B{MkgAYp3o>P34oX4pX)*6{;ss+g#1qMC{7CJx!`
zhRrOSHLZ|Rze=c<!wx^q=x~@?X7F)J?r9UXP1G?_mvf%vv>vDRIsNIve<d4m?^B#U
zx{%P2gJ(ExL`}g#V-wGDKq)VZ6?>lJ0S+T?QxnZhbTxy+otm3?(L@UqElv8g4AE2(
zeW?EGuvR8sGV!{JH%z>229M6RCfb>3%`th~aPZQUL~^fC^eKt2nRt~m+jB~Wj>O1y
z;NH;>%e=`!Cr;lo(b2@)9FxpDCd_+b0+ia0jgiiU{4OTm<v4prj6%Da=uW+FqKAo(
zdHJadJx%l}#Jx<sXQDUvzW;w{IF|B3q0EOIe8lMzhxO&4AE%#iS`hJb6a7t$H-inc
zw6A{vHK2*FObj%Gz5icuO5jTqg9`CrQf7Xb81aXi7|!{_3PZo9qzdu3CcfjiWM&=-
zk1+8)_l`92L!rzl4n~{7nPc5v%pGH5tcf2va~x4KU}p8lpt4Dn!q2mVQcW;1(ZtUt
zelanPG~sT}A~AgLOsHLAc#?@<Nl{JwW@1V(Lh-wa!z;_u=Dzb!MlUpr^&FeWvSRcl
zxHdO^x``PkChQOYVd75{b4|?TUgFF$G26r(?mg(xDL{;v)HU-=%r~)sYXT_)_2WVl
zf0>}(q|gEmfyE}41Y-e*Z7enMkBP+=mRMM3V!4TO7ILlNLum!s88g_Fw9>>X6RS<E
zF>%(!ITJLcvev|26Z_~dkcsssHjue6vDL&j6B|uzGO^jj78BPUmf*6H<)a<Oq|;kO
zy33w$S%qVv?NlmKDiga+G;-NaYActeEW?{F`^;qrT(+rR>K<-nXdu%U^nMcuOdK<D
z+{8gDyon<wj&gy+oGzOd9Be{6!Abu9tjL5BF*+e|nUf@6DRRQZNvey>PEo&Hj-4@a
zn#z`)^6AhFqO=UPbTOPaalu5~gh+jD;*yEmWGYQuHgSdOOFC)ds)=hR&NpM}yQ3eS
z%)M?x9u>V|f-s#1PnfdK^jMeav6dctr+E0TiF>?k_sQ6{N}>B)XftM$`{|FGr%a!m
zAyIS_nhBlSyaW^zDy82eL4H1(Q!Y#^9&i5`F=$AV<u_qdUq7DFo&`2=%)AKw6s3I!
zq&A|I>zeRP_$KmAJTURlgt9M8-S>&d=ubitEg%ntACWey;RFkb7K&I%vJkZpvj7W4
zEu>mVvyf~dg}fgpgsi~+Pxb;6y4qv&R%GTUM#C10StxEHV&SV{#fFzj+2^s_>tlDh
zSehT4qnK_X!$OvY(iTcsC}|<nLMaOk-zi()XPx~Z!Qnpp+h<2O&bCm-LXL&97DS&R
zpRFAlyhD=9&S!1%1Nl4)%))0DKDQuPc+5gq3%!pem$y*CLJJEmEj(_aqJ>5lp0!ZP
zLS+keEY!8|goP>;T}iHKp(+Q}Iqmuas#!SRDoR1*YH%i9s7kn&h1%Rpc-tp|Ks^gj
zT4-RQej&d={wb;#=R94=|2UtK{4?CU*NHT?@SKHag`v-L(9}W`4qhna|H@;Lw|ODw
z#s4GF%EBuaUbXO&g_kX~=0R;aZBr=k%}Jzu+gZ51Isol0yk_Ao3mv&Y2Mcd-@cRFe
zf0N@L^@9SxZQ&gYoh^DC<LiqF#39$I5MS`Z?^+;ALEh>_qTP7=cPAyW(8I#yqsjd^
zhd@sYy)3-PnY}IavG9R~_qn&>&ruTikYfS`-jBHVV@~^WO2VJ;)IQ~uI=W;mp}&Oz
z7HI68Y{3Rv_`<>*3x8Vp(h83K|JuSg7S`vpK^6vE7()8V6?hn@#2?B-NtgcQH^hBw
z;X4bXER41=+`@^YVR9olc(^L@dkZ5Aap%(s6!e3IF;q4SzgZY-;YSM-E&Oa@oQ0n(
zjJGg>boj+UZ|TbQeUx2~=-qrqzbiuzSc&J7ez7pg!mp&d4+4EA*Tv1=I3m*Y0h?lB
zs)au+%(U>kg=rS1TbN<t(+6xK7v6h6ohIoDR+X%Mz-I9p%_bFf6ShB@cZAC<o1Hh8
z`mR;<FCOYXVDl`@w?Kg00t*W{uKqCa{>^0;S!n-|k)y&aweSyhnT_5ymRYo91v@P4
z<YFr<tfdEmg_Wd!(bQF(5?F0v4acv1kU-w`9B(cR-N3=W7B+HFVoAa#vIa{6$t{I4
zTP<uW#M=wSc3Id><HbgE8+$D5B{O9MHuhPx!2yN^)4~A@2T2<(T(oe=!eI+1Eu6A&
z#KKV;(bRDky7x;P_>i?8lX0w|xtiyF(l~>z%(&SkM#toyw&?c-&XML&vm8i2YvGub
z`NKmtuUC`~HXIiT_Sll!{E%I;aM{9L3->Hsv2fMG4GT9dT%+<_NI1R#*D3Cu<hu{q
zHz#A;`=s9@H4t#y!W~lAIT^GJwdf<3Ryp`h#2&Hx7UC9U3kumf3lcBefJf|=M?o(<
zaVPY9N{VVhv!L^!a&{2$FCLm(Gvo9lW?8T;Jh1T4f<uM3;92mgc%S6Zb~cMk=F_n4
z8GANCptxC_KC+Ntqlg`t^h6u4RLgLm2<8FlG*?=NN8oU^(nW0~+j!DO0~;weLN?0T
z$hDDbBh5ypjZ!wkHj3GZ*+{ohoTnDC5w$_rx6$GJFHeuPOAz`d2)`r<88%ATD9L3`
z*2q|pAe>DQ3RdQK3*}|mC~c!G56$MZjEx){N`g=|QD~khjC?bXPI&H;D6HR&R)>*i
zgW0HRqnZuD#$z@r+Nea#`$fvzs9@u98-qsYeVHiGR@||PLB*GGTG_@EHmcazohXp$
zph2|gTKHn3kX0?Ux=o)IsBNQ;jhZ%A>@QL+o><F<lql>hk+)@6G;2}p!{VrGqn?fW
zHX=oY>3d?W>j%&Gszrh<p0e?@jm9>fv(eDTGd3F8c-E#XlakLpmDjw8(7A|kx@ry`
zfAJNUf8ItD8!y;sYU7V0f?p@Rt%xx5<LJdA!u`xto6EdtqlJyvZM<QlrHxj0a9H=N
zoW8_qTTWl5_D>R8bJ~Ve5+m1+I+qI&rjxgcwzu&b=XBt7#l`=g{{1HRcCzsn2OT*j
z`L}Jn!}059vdG)nMi(3J+UUxeJ#2L2+5N{xhhq^E=+61H&F9dPfYXzEdvQwFfsp`h
zaeCjzCpJE{(T5uRNWl5P#)pOYBO4!c+?UgSoPOVlk=SQ8KBu=+8~@noZ)1RsF*e4M
zLRJsm5yJy*d|~5D>UtX^Y<zEHu#F)$zP9m=jjwDBwK2@bR6nuc>R9Ts>GSgT-OZis
zCVy+=I~&7Eoz?~W<?AL1UrrCb-7oS|lF&Oz7-?gajnP~)r_uh1DZ%=d5hRly{=vrH
z?*lJQum4DmL*HmN#@YDE#&{bOY)rKAGmWG2EOSwG_{I>~9Qtbhg;J{$o^(2Q5>Ind
zQlLMRY2etHLM62Er;WKbez!4=bi>9>8`*U+oeR$(6+M*P>Gv{?X9ovO%(5|?8et*k
zP?W4xdav8IKRl*n%D?r)zgA@PY|OXumyN$|Ea1@>+BkkAks>Zj62_*dp5<9Dva#64
z5*k5$V~JM+BXf9M@mGs6I<sY&jpa7B*w{*g!p2G)8|>h#liVr})^fU<(>0_U{Ht(X
zq0D*?ZeL3HmxGO*ZsK$^rw@_@N@^R&`#IgtDKU3&u#+eaShD}zTLpnUxxL)G&qfyK
z9N=E!ALM|(YmV4BN;brS>fjjFnntdJ`VLNzK%3}E>Z23M1d9HXc*@3U8)s~swPD(@
zXh=e!@9}ds&fB<P<D!kbHtyNDM8ny}bsINqT(NPLH|aGSAJt8N0|MPRLw9Yw4}nzZ
zrj1)RZriwHqx`nKxPW2V;b9PFBk1e35RTCiXg1<hLK~_LktZeDkg29kQfa=m=b^}e
zv^<*9B6*F9R|UEa!-fN)WKkg$iP0X7ywb7SMFpFfl#7E34qO`^S!@R(2fmGb8;K5z
zICx;=p^Zm25}e?SZd$|EzNoONYM{FPiwa~3rxq2G98l^-9XdK5uh#wVTlc?31-C`$
z^{dH8iwa}vvQ!6Y4l*5-au9Y<%t6dSx`W~lA`TXfEE{$3my(Oyd5fK7^1k+T_*PLN
z!$AoLKYWRjPH<XaVsg+3^up6JS)kpKSq@4&DCZ#8LAHZ34sslnb?`11Bgt_2^s&i8
z(yd_C>%n$;c@7x0f`iAL;8u=V$--(b`NheyG)tRRE}eFHKklHSgQ^ayIjH2IvV%>3
zCp_U`>!L{M<H^y%=_iwgDh}=@3$!kRChV#^sNtY4X~;(jHJxC^?9h6dwH?%QkeDKn
zqpa&t-7BS#qvK@Bo1YVV(m?|UYq|VW4xV<<!$D664IMn=pp%2n4jMUl*1=m2`oz;3
zJ9y4PYX@x{Jnx{1gXRuibnt?MrVg4p!4vtxwP3<7GeziqKGG;fc$H_}!a*wsFFCZg
zs7y;P_NZ&tS3GEPitw_7r5v|)(9XeY4mvn^#lf;4Bkj2`fmaIwCH~>WzyiGP;0*_F
zaz2HUBQXjhN*jnea{k*6-r-;mPrr+UYbnC5#bw@gK(}`-ogeDzpyi4za@{!S&gp+R
zHBy8c$HKiF%xawTjf3|b^mgz*wS$BH4hA^*z`=(O`Z@T-!AA~0c7k22eI2|U3R?TU
zknnX#pxw%}vG-F_j}rLI!RMqu5EgQQ!y&;936V3o108(fV6cNByr^F~7{ozpr=TS}
zi_r?H!dDK4IvD2QYlluJNTvhKhi@-?X-4E;c9?ejH7uHN<52Rq4!(0R+`$M3e>j-w
z;Clxn9ZYaA(ZMLHvV*Y>ek4_iCH>%F49{ig!T<iPZImjEbMTXc@eaN3B~DBg=r`<K
zC77k658-vG!p{zVaWKWfR0oqB{OVw`gWpIuil^qL1tXevx{>h9X~O$y!nbL{?+&Ip
znC@VPgTK>+6KO)bRlzwkS!TpJ6>8QlDy9juNcSj|hMt2t4zz^{^Bl}~@TY^h4$RIh
z5*F%(g_dDqfrEuKHhGyp3=4Eu>4b35&db6=US}GuSmIzgDHy5rhY3p^{6qS{h4+O8
znmO&;J}?M}F6XXvu*$(|2WzNobbqLwdp<0j<Cg`ONKViAJm!Rjbq>}$*x=w_vbPRS
zl9ebXY@`lK3GJYfNL}Dyi-S6|^T=)EU@OndTN^O9J177<9qe+j+rb_Oha4Psu-Cyp
z(h~;<92}e&(p#l>DJIOUnt71=x0rDH0Y6WvSWvGc4vv!LcW|6aJ2Y!mF(G9~R?%?Y
z@n=%{A4)z}Oz8e{l>X0GyBR*^;IxA?4$hK#JM?=B=XhcKV!|cr%3{KK2NxV%<d{;X
ziHt4z$(J2u6c?^IxJrY%xbQ`BVL|aA-y0773d21I_Z{4FaGPS0opF#-CNQ?!iVF+Z
zN9eH1o5ck>NQ#C=+@a|qNDgF@i3sD|NX1By4!PzL;eC!Z2Re-r7azMY$gmtwuH&Mv
z3)6w+z@|Y#Ce%f?3;M($1M8C6xgPfD5#S)7j6WGJ7hx9<9Xui<@1m%S1Q&@einvH}
zach2PY(!WU5iUi9a5TuBtQ=`?vWpZKAs4AGYDa^|1YKUU=~_<x?;^Ae@6^puv#3za
zMR6AyE=stFxQM!lxkz`>I?TF7g?<TnbV&gvNDDz<n2}D$t(0_;>7ta2EEnt6M(8O#
zA}Y}0w}nw*Q&cz+74oA(85gu5oVgHO<hX%VEbF428$7aeUF5kqbud`eO8g>sgYoqk
zmwDVpMHl5cuE1%NWr-A8$wg%sHC)tm@q~*iE~>ex?xL!TXT4apm@xjC99l+IDkeM^
z69%pbZEO>}-7v85<*z5!qKZ>dr$kmAi1msIovx+Vb5Y+#Hy7PqJn5o=i%u>&yLigQ
z(=M#kl=>M$Ll@7uc-}=57h_^VBVL&2C_C<@lpDJk`Y3qOB1Zx*xM=F4or_moG;`71
z#Y-+;cJZQ%7A{)4XvI^Q6AM0Ds9$!)gu5}}YPr1FzTDO>+PG-H32j~aTNb01q-jJy
zCeU|B&2-^a3Ucv=OFvPA7JJP_2N$pNmTaC*Z-BzXqG3AHoQm<5i;gbdcJYpjUFiZf
z^-T&*7cM;;&a4|Ql@VwKowi4}6?buiBdN)1z3ZZ@i;H@Q9C`oa24}UAd!K_IE_!m%
zi_`Zw?agVM452`>5BGlH;zJII*(XEj>!P2F5!CWWl0TuKRQ9PG9JbSF6gox2pSk$l
zMSm9qs0}%v4%HdR!4MZ;xcHJ<Z)|iBr-R+#e4c^>dFT+Hueg|7t?Wlp40Gw&e0;+>
z!#Vwy)9+l6ONlUwMUI5&W#D@kBVCMgG1|osRDC5}^;~F-i?J?#b1{W-aWT%t&n|wU
zwskSy#Y8tasqgm;VRv@=1Q(yIDo3l+_h$qzhsOr9NiKfneL9&2W>S=GEKAqh#WMt2
zUstz;FxAEHE@ruy?b1JROm{KE#UG>zC4_gT26ni231L_XVWx{eTjh-SEN5DYpm*kw
zm!~<;#Xlv4xh_tW5I$ZSYvu%FBqKk2Pno=hF8*>csc6w(ix&Oc#Ud9olZwttD!SOk
z5*Jq!ie5`7x|E{3Sf5aILqgGIE|$Ca{vk#_#0nQHU6gr%oCjFt(pnKT_0i178W(G6
z2zcn?!7d@JBRk{b5vAZ_gNuJ%Y;<wYMSOkgCKsDs9CmTU#TFM^UF>tQ-^Df;+j+?w
zc1qgeVkgIYNDn#K&1s}$P{;C|64=X`wMz;II5<Qp?@c|(@wrXGs3*7YZ0b=L$6TCu
zalyrLY7iG^T%6@%CtaL&;Z_Zua`DyvAWEtq%oYAPDljbPxJ<XbsYzcXjT@D4(ZwaQ
zla#{6RAOGHwsLWe>@C@%{vZxTx$feIi<>Uyw+?qN86ryV1zzA!OA5DL+~J{jNq{q3
zl?=VNE%iRNj0@34rDLfMC3q%Fa_K5DC@xg8_GIK;r2U(!xzKr$?ruo^mug*7Xd)(C
zF6Kpo?KU<K>U$^DKN7i6QgB^(E_^ZwE*_8y-6=-yhZ2eQOQDe^5(yJc@Q~=CtcP+Q
zig-x!knSPF13VP<5c4p5ZECWIzWY+sJPf1r_&nSzDTKVh8b>mPR1dYbrq<0A!XAoo
zu_50l6!#F}!ch<8C>A+N;qiT`H%_OP@X#hx$l@tbXh{#5T!sWn6{b*{hh}qHhSMBQ
zDbx2dg<KDL9$xg&!UOXlczDu70}qdJnMxiiQvouC@*XO9c-%up57wOG<i5%jh*Ba?
zc&Or`CKcX8RVw5MS=Bw%;L)pbN*od+TyaMbTH8Y%5A_Ozh*{Ue=uCl*ktDJDh5QYf
z!c!ie_VApC=Q*>Xhe2NyYvkb>4oH~1Yx0tw<)Mu|JXn`Xopm=;XyT!nhgl;MUhvSA
z>h*n~e&m*qOlZ!9Ng+u~TY6~a;VmyvhL=3N?BO*J9XzzAHtAoijfb`#NSz3iYv<ur
z5AAvMS2%StgW*F-kqqVax`*o3LT^%EmlEFKxFCp_B-W8fdE3J~9)7M{tP`iiFMlr~
z{n^BKJvw$3cRbwn(9J`44+}l~MNvHT@G#cHj~;q@=;h%H4_{KLJoNVPsfW)zyzik8
z^|gn79zNi?e9Y;G9zOCwi#aKm$4UwR1E26vVjl00&xa>yqY}o|P5PWO2Xfk<(*Yjp
zmI^9J?r1n^kcYw4O+09bM>k#KI}gJ>3?+Tzt@I5K`r5;Y_p@mHQY?y2cH>*#ywutw
zJbcgbC=Vlf?>y`uw0zMkSvxkSZXB7gv_F3EK!q8@#i&Usk#Qb=qJiUKj)(CcCV2S8
z!z7*;m46}!l*rFKBFX>iVX}wm9%gv>%>xx+s)yfs38(N8L7i1#%?M26d@9=?90dL7
zVP+xof0C5!pPV_D7n}IRnMZg~(tKWk1)P3!JoRr6i##0haMZ(M4@*33^svdpQZBH{
z!)g!zcv!~0%RQ{%U|`?ipw5*X_ZeQA@EVTSdRSK|u-?N45C2kMa{&@Aa0L-Jd)VS(
zr-xl0w(=;%-{E1Khwa=;!v8my-5&OMIN;$R58dlwpNIYbKS@gG5YO~5&yl=T07~r`
z7e43Vyoci+PIx%UIcGRM<>54sMVS_q^DK{EP=*U0E_%4ZB`<ln?BP1cS3F$h;96m6
zDZ7Fw1?iCYCKtHn;Wh{V3%%#zzK5s$K%+=3PG*W8om@urAbF5IC>~Co&l<EhRpWe>
z)6z|obPfy;CYcMa^EIChevCLCTn{CDl=R_ww3`MYAE`d_$<&Z}_W>UdJv`!Smf+)w
z;R!W|Clu&yqK_heFbd8bO(umQTGU6fj}*=%K8cYFRF3O;nvbxL!KH+lk77QGbFqjY
z*q;J*r39ls-Yg|#?++@N?qh5zA;ZVCQo_Pg!j@7(rjJrS9`{kvN0yJ$KFazi=i>rJ
z@sZ=>9<N#%pB5^l(oL*E1<5S<$n)`-kMce!9maDMc<$sSnUpLcD=PpMcu>tO;n8zh
zm3&n8QQJoys<n?QKKv}9rjM#Vs`;qyqlS;hSwj0Pp;wmhO_p%*SnB*N;c%94H%q8R
zwJR-DDlJge>hg^0`*@NkUXRk;5$vZUSI{gCxIn$q0(I-tJ{tOXhIerzPM_!WSxy`K
zc#eZWa(gP#Cfxf1rxeuO$BRC?=A&CaTKH(`W0Q}~K3e&B$;Zz=e(~|LkJdgu^6{~c
zHa^<=c-zN2KHBkOyvgY+K3?UZy^jt)Ug!8VdTlHHUu*e>5Aqh&f|zd=;*LK47u3l|
zHy_=7boSAO3%pBZ;{qf@vB(99_~=0`<D<8ao`w8gT)sezWZw7D$HxagKIHjQ#DX9y
z!2e|W`sn9ln2)c0eB$F%AA?BQe0=89DI)lSCrA<d`xxM3U}5<SYEh8LmxY;<cL>Kr
zIsK}TUyvQqZ+v{~V+`k$_d6dWe0<NVHoUNeBY9m$`50Zuq1=BcY#+k2_oj~Z@uQD%
zK7R5s!N)`&<9V!#{fbZ-=*6tpfm8wo`BG6Q`S{hxJRkFYOfJlQnvdUnOyS<CoRT^E
zy%12`={{y~?;k#9`Iyb|Oh2%$Wa#Gj_>*(yat<*m%KvQ90va+t{_(NQ$6s7*F{dQ+
zHwTNTF}ZDD!o5p*BE%uL+{X$ZYkjQaK`VW%=3rHUmuIww<Nsy1-p9Y3L+NiQOp5SE
zjtOk>vDL>T9|`%`=3~2$t3IyLc=xf>hx26Vqds=|$X-yI++H8MIo`u5J<Eu>&&Pfr
z2Yei)A-p5?Fb|qNDCxD*!XeVn(!xijg(JKSgSfUI^KsnA2_GkYoF`M`<CKrnKF)EO
zGd@O@7S0xyd2(qXx*@ghf&Ut`6{UrXJ}&ctPxulC`$`K}$e5HCGO`6SQ`b3D@*(@U
z;p3){TRv|4xXbwk_VZ3*`W3T<dp_=SZ``M~E`jl+W@(TuENc)vRTUp9wSy0r2WdVG
zAEpnzP?Fw2D2hd+AUhb#gl)13*+Q3W!7I$=Ar+4v0i>DyqviqUkIoLP*?$dnK8oa{
zRz7OyBPk!qM~Qrt%tz6DB<BbE6V69Ue(;q<E;Sz^jtkyMiIc{?^b%4mAI0<WYqk){
zM=T%d`H1r9#GypU6=au@kF#e|$!uokqg4L?W9z%4r6{(qJDfcoFDL@{k}fnk=bUp;
z5D^pvMe%_Oh^QD4R78@XC<;bE6h#ol9LPa(PLd=VFk{BV%=EYW+;@NL{qe0;Yp-3W
zPMtbcb*j3jx@Si6(^5VyxoOEuOS?9u%4n5RX(^pfwtbEmYZX*1t3~gWipr&BquQ*H
zmMAUN(^4ZX71L5FEmhJ|Rn;ykk=&wGPRmi%td>r$v%Jk?uYV|&Y|b^)QY$TW(o#45
z-)mNF)u94Qnb>H(v~Z&72C-pU8l|Nxx8k%kPD_)tw57voX{vs<pq(R$S~IQET+uEa
zwM<JZ^{2JA(k3m}EKfcVU2`&-Xr}gQsa87blumB`JE%@a#ge6yLF=4OZV0=ilW%pk
zEFE=EOOLelO-sMDT$+~4(sG3w@0pffN_wYd#B%TQv@o$c`NoyW81^k4^-0T>+6wPN
zdCSVutI~3HS_Y-%T2<~(-_kNr`2fXXr6bm5j8S>tRD%oQI+YLRQ0(#wj9jmhiKU|(
zNz`*YBSX_NEG;wB@_1TqqA)G@q-DY`@0PTjeIf65tumahrjw6mBhzx5N^VWdoWmX^
zqgb(Yw6SzFTIB_^e~0or(=tZMU1_;n$;z3=j^-8<oxC?KW7Be9TE?YiN?N9-Wqexh
zPs>ATnV6Qp4to!z<w1I)e8O~t>6ODC<rAkH52s~PS|)1|g%3?P3KC06rlsY9`61H`
zC66dhXSBbWQy_m-C66hdE*(9QmRXEa#ztD6Ov_VgnV*&y(=uCqekLu?va`ycR%|pT
znUUv|lf00Y=L<QffReeIou|k-U67WS(y}ZqZ*fl3vM?>Lr)8;@zLJ(#)3Qi8m;7rw
zDT~vxg#N7b7~V`IOkBKgs2c6RsgXuf(A?W;zOT-=r({)H-c8GUY55>6A8Pzi=l!(Q
zd@^zPLh0zEw0xYF<!M=wmat4zrcBhSOcJ_%6-jO^6Rp-YvNkR2(y}HkjHn4^lKp3W
zS~jF*R4e-vb>rzWQK`e;eY-t=^n15Vv^gzX((-v)zDUc~v}{Yu!L)pumhEZTk(Pao
zpUHVU)3PfqdzJ4_3)7yo?9`@dflZt$6Q#>U)MVPPtsGEim_3x1!)X~=HaeM>Bij9A
zMD7^cO)8Wu8y(jwC(_cPY|^O)idU75PNn6vcI1p&<8Jd{S>6BB@>N>?NXvOn&{pqk
zT7FE+xwL$pmT%JXZCbud%lB#dL2Er;HsV><qO#FuHB0+XZ!GpxT7Fh%eof0S+B#>1
z9XVPyGRj52rR8@n{K6fzWVz^1Mr>OCP0NL}{LNvRYW(v*wF=fwIxU&B#Az`y$y(0R
z!^ufdRV^2FD;IGmA2-@IGh%5e@669__O2=yNk)*7R7O5qR{WxjT$~XnBW^~#jNDo-
z84dmphM$o@YlRuf$w-lmaC_nASyYA8c}6w&@Aryj{(A)}nUPDB7gsEyc-ge%e1j=B
zBY7$*^*{2m87W8OSt**8{EU>($j*%H%1DKbL>YM?BM)Zy9-UOmNS};cnUTsFsgjZU
z8EKG_s`R9&Q!OLaGxFuh<hP4!WTa+B>SUyDMrvuQoe`!wX|GG8<R8a~RHLL`M#kJ}
zJhQb3vkf!SC?m}?(jp^NXq=Iz8EK}xi6Ye~fA%$-iFI3Mq*X>bWu&t@&{}ocWu#3;
z9=H6q>I~bWOKi7&Mml7qV@7(kaS9yh7Z>lMRW8d&&x~}<NVkl1r$R<9)x?Tyj%iPR
zkYL-y?Oqw_t+g&!W&ZLog;yvabB|BnHzWPHKWAiEMrMq#*srTHa&<=fXJkM|Zpg@x
zj9inEff*T;k!#iSf?@gJ!MQFYgEMk{L1}L<d3h$sp{W~nxJdq^MHI4|H)Z5z224gq
zsbjZfWOznKDCfA1)RE_KF%=BpZ5bJzk$Y5urfyeqXGZS$pK+rzV={7AM(*aU_4eKh
zlGfSTdsTUCM()$zjmyaRjNH$m{v^fjb8JaCZsZd(@=!)z&B&sROw7o`8F?%tGcz(t
zJ?9Kg&B$cs9Hl90miDJ*<PjB4*PcGgRtkGcmze0r;~9B^eaXnPT5DEDp3KNo>JNvM
zX|@h8N0`$whj#AqpQZyj&cgLYp3BJd8Cjr3H1$G8=4n{Y{hz+G)_e_~7Zus}msJ1d
zj4ad;qPMT8gqp9P^Ipry;*7kVk#{n(M7^baX+~aG&Ym(<-pI(Cnq8)TvdeE3_KOzY
z&B%Kh`6weFYw7zL`GAN2%4v#;`USW=BP%kpCL?RL`bu?Ubw*bGkN?RmoJ_6D$oh<I
z%*ZBsaxNJ<TG)`0Pcp)IW|jl8IU`##vR#dA&B!)gss+=>QYOyG4jnp<A&u;2U2YnT
zw@<vi47^?5>5QDo$UZ);*p=MT?a#;oZcrKdG$V&Hax^2y=qLXqf_ueu<48stPB)my
ziJxWUct%cS<fQ5p$f?Xy;)s3TDTeVr4~M<a*^4#aHyQa>$rqd#B@}*@k+aIbX1sN@
zr;bZb4!_ID_bNQE_(Mj1$;hu6`7tBsGV)Vl-Jg}P7OSx0Z<?j>cO^X2_(KUTQ{hiV
zlD{(YxAGaKl8XOk<U&T$nPg8+WyQ%#CL`I5#M&ti)NRK+BP(WBtgP7CWHf$xIHY_L
z_y4RwCGVDtHk6BqZZ>%q!1Ljptaw>@=#b}U<;B%rpvbzR>VLi`(c!VxMOnExD{Zn#
z>&3EiNj909dRZx+l@eL0kd-JaC9{&7mHY21NpG3*vQjpi^r(~~N$ISVQO+vNmQ&0x
zEG@5uqr_`R#cXnksg{*WN-8T>QKY<TRtl~%)m2g>D>buHOL-l|+KL4_bqhJq!Rl+L
z8f2wmRvKlcaW)C9r&f4PI2wCXEft$)rCC;*E2pqUR!X<@NcNvHm|Cg4wc?&r2IXzD
z(k?6Qv(h0e*JWjJRyt;-Q&#$A<*KZ7&Ptc8TtWREUROnuZS}%#S?R9M^vFujtn|vt
zrR<bSI13#AZ3n%}v(j6g=e-|mQFyFe^mDn0ypNi?GAn&~B`ti~!Ve=?tNhxm^v@>G
zYX)TH8YKg>GDr!9)aSz;l7_pz%qH*ptlW^5aakFkl_6QVk+Ym1-AYfgGBhj0voazp
z!_+Z4aI=z|6bo)hZc)w~4?YzdnU%|rc@6TTI>)?=^P^E&xsCp0<@T)Hot1mCa)&D4
zrFdsn#?a6F<o1J!q(E}7mX6KJeX2km%KuOK{;WK3z?+zrhqK9H!UI`(Pzm`2B@Zbw
zN++qE*(<%_`O%7F-sG%I$qETmG{bl#E7P;`W-QBMnUR%8v+{9PmS^QL4eYnF@^)5c
zDt|mHPh@3QR-Vkt^I3TzD^KYVoo$x$TvldhWllDEY{%z)Piu?MC_bxrSPua<Z7lZu
zL2s@~Ud_s)tjx>Gd@i&sZ}lCfm$R}UD=%@NikZyz=$_z0Eq$d>=g5mWuVrO%R+do0
zach~J65o>_eViXH&C1^Vs7(22>u25@>{M31$d8t3bAI_Kt0Vl5_JwPfvqpS3EAJIb
z-dFO0;)jYKDOwz^tgPf(h^0j=tFp2>E9bNFXI9o^Wi1=c%D$|u%gXw!?9%2Q&&k=4
zm91IXmX%MkvXLt~D->>4{HssGxBL&^uABjX<vNc=JF>D<C0W(nos~Umwtx8~NJf^A
z_GjflR({XQAKB!A*TJkDX6SDBhGvR<nw3M0*h~?oSKl;_WaVg9j%DSutbCo7Z?bYc
zD<`t@IR_^zC$n-YE2pz^CM$f{H?Dj%zkD?Eg!i#FbX1Woewmf8vT`;nKdB_QLgGek
z#c#9n9pzd1IV<01<%g{Nn3Z!}?-infs&HF{=&=gX)JKxnLSCy7{gRbmwJ*PMxGF>^
zROjCcQC^hT<YHvRvPbo!=r2|Kn+u=ASTE#u${p`t?h>O*UdT$170Kh*G&ldOWU~@;
zM~$UyEJiG5EIF|hiN%V=j>V0|i$!8VEU8$WSh_^ffGDc7#(QXmHztZEM$r>d^lB9O
zu>`S%v20Oi-iab=ve6qq^A1H((O52ur9><xW4Sn%VzFEjOYu1QX!b=E{i0PeQB>nt
z?x}-bk&01nEP1h%iluZc<ts+@D@M&LM%^k#{VGPcR!llOwqjH+mi$<1#ZsF(u~dkq
zN-R}liDIc3OQl#U$1=HMG{0i>hE^H;Qr_~4(T<9VSJh&v9!rf_YQ}O{OSzAIr6gN1
z3MxevDn)f-sT)h9SQ^JtFP8eTG>D~PEX^xLT`MI%45$>{tYmzpXj-MHNt}H0Z5m6n
zSe~yG@x<nBE#0ozGL}}c+!M>av9yk*O)ULlxhj^nv9yb&Yb@R3<g(a4mbaFB9b!45
zwR+F-JI2x}PA<fq6}u=>PD!}O>mEz*Sgwd=;|{M!ESJV|SuBt5^?Jr~xsqOrbN6}_
z{yWVeCOf~j(sfUAS-&zCVqY~&a&;{IW4Sq&TVfdy%QY&$QIY$@z*v5$6b*{y+E}iO
zWpFGv#4=}(7tSz<OxMRU`cOiKsGQ4zoO{K8Vi_9CFiuL_<lV@d7+q70e=9}30;6c<
zXm~8Q$8tw3BVrjD%dMRHC3%eGQJkjA(Wtc^uL!r%axAAO8|zkiFRk+KRGqukF&Z2b
z%U#NwzhN@VBVXd!Sni8uNi46&GA@?!u{;&a>{#xPlY5mJu{;{f_eZ@4V!nAL6DW*j
zVk}c)nHtN(tT?y)B!&<tsB$vhy(>pUDo0Ic<=w5>X|X&K%XDpYqDmgG9I=QmV?3rp
zuCkeN^2!9e@OUgw(4eZdS?A4)WyK2bNmV166U)=Fyco-ZSe}XHSq}ShZysmxm^b>M
z_Z-7XHQzhvy%5V>u0%b#rAs$$^0=YRk7da5+*d#GKCT?S6w7O|ERN-6HqC&n9KE8r
zD3({1P{N8tW_jlG`$_N8;~p<DjJ>4{(E}d$iZ`^mHT#phg|}jPTeHs@cqf*3WBEFk
zZwma0<wz{MR(tPj_5;NaWBG^;#j-q>y|L_LPh(lhZ6TJe-2Y=)9n1PyHpH@q&0TA+
zjb&Xd+bTzg)v>QCM^=?6w@UO0-HT;YEStHgt3=JKL_MoSeADKZD$%`ryoakqPgRMw
z#j;%+-5tvgB|GU4hp|eus!FuGO48GB758XqtenFAv3#l$@&if^#!|FuqJK!UhZT9j
zrQ~QV$71;`mfgpa_drHfjgD*SiC9j?aw?V!M{~c3<x2)<EN8Un?-@q=c<$%QNq8Fn
z6}wX^I=jz1tHO#^qyAN+Z)5q6Yu`XO1K+E>oPm4;Kg9B5EazhRi94_X&%n>I{1VGQ
zvHTm$ud)0_<)TjgLC){omj*e1#`0Gzf5dWLvp-zqFj3CW!lgzUB!AP?nH0%|Skhd2
z2E;%nmTW9Bw|xV@j<O0;?<My1TCQopGQiGGuNv`t2mIgL#e0guz>?8s%7A0w!eR6E
z(Iyo-WDFYbnlXF>fq^`&#fCxy7a6$NK#qYT28tT!@?H+B)VkB4CvOjNiy62?4VE-e
z+yE_<D6HFcNIAAhBf07r`@+taGEmw;83Sbv&?`30t`Q5|C~u&GfzE0nGVnrWx3+;g
z1}Yk;WT3JETB~NDx`8Unt7_8}($vdUqZ$Tk8mMJp_`5be`S;;u_wZZh(51Qt>KSNj
zpdBk3XkehZfffcD8favosext&=xt*IO$@k4Q?)9%?>thHK2K;<YTA_+jS$&HO9QP8
zbiClTHbDCv<O0vxP#Xj5wMXsMs}9<Wsl9yq)={f;Djb=ERiiG-oAyZ_e|J}YuVN1a
zmm0XtKu-g=8W?4umx0R-TxVdgf!+qLFwoDyRR;R#2wYh>4s2!S`BYz4zt|<e+CYB;
z*BBV6<2*pIz!~;skb2l<q;)MLWNh*dA;<9eOU17@aD#zi25wTbG&RJ)jRqJV|1mIB
zJ)|-<Y2>G>(ai>KF)+fwNG+loM`^f@B>zyAnm1f!C3RP&ZZk02z}>2Ly8#Z`7`~BM
z&1&D(y+eg}YKxqLyOePHSnHm`7TKe*2JSO3&cJvBGYvd$;C=%S7?`0t4{EJR1|}Pr
zVBjImPBieafidse{kl1=-_2)0t}u#BF)-D@BODObIdrMPiJqoLNZ2nf3XVpjBc&cy
z;bVn9(B~(V&t}ZbGiDihQnOE~9fkxQrp_D#PpkYHq7M7Bnq?`&>3QWZ7?^8dp7K`=
zylP;6q0Wm278LTAl)P+Up_0*GB}2N%z-tEh8`mEaIgi}W+25_+>x}A6#g-a)LzTU1
z(VI$^8Q6F<_od^BdrWWfEl`zLtd^|4ce!S(MU%Q2?-_XCz>sRum}=1nszCCQfsYw=
zbNuB7Rv0MREbrWIZ+f+8LA7XAwP>}0HQe;Jd$o3YYYnV3@bYeNmw_77jP+cG(~K=D
z*<j!kB~R}5HgeE*dz%zDD^hu@ma^_P1KYJ}>g+JEvyj&vWbZbx$G~3I{8Z)C-=`M#
zD;`ihs7U=os&m-D5d%jJ95Zmzz$x|WGXuvBoG=g#vT1~V(g!B;(`x@rVNrpw*FZZs
z<bBBv+=Or9D+6Z@d~M(x1OIRnpjWxkw+0?N<o#seJI#Kt$l?9Lz>n(5IYnwxSahHF
zGxySc-Y<&38u-n?@5))q^oN1-2L4nzvn>5fOaCsET;MKrz;jH@eKPO0Q(l@Oamvdm
zW))*?&M;w`uuRxyaupCWQ6nKjc}nF4Le~V-@>AaZr@X*KXyQ)`e_6;eQN#rA{hC`S
zYT_aj3rxIZ;$joUOmtTZmnhaUQQJgu6D3TPG?8nfvdZ&JlrmA;L>Uu2WBGBr$4fum
zC~KmeO3ItqTP+&6!pk>tyjt|tI`7A7Q3Vr`iGufpsa(-SCAH>PPsXr{30}dgs)X5U
zN~)WvVWK7-E*|myRceydp{sSR1|}MssB7Zb?;cY<CG{1%G_)F-Xsi}mDgJt|z5=Se
zsflJvnww~0qUG%t@77wXgzYZfkyvYOqK%2RCfb>3Z=$n_vHuq9V1hTsojCYYj7K+l
z9Ze8frLy|p#Y9&V*R1lE?eU1+v<gdmsO3vdTxO!DiC!kAn3!tfaudBx+-2f!6IYn%
z!*S!Jn7GnJUlZ4wxXwgB6IYq&Z(@KN$*Jw!eY<frd2MI>;=F5245YQ<d4sgHdu?a-
zPbp@ZNCum@o^lgI=~xlt1`|U}+-QOo3v@_mhnh6ozKFr>FfFCz78Aow+-~9y6C+HF
z<kavl=1knGrl>&8;fwQFg=w^j2Wux+J#vye)tNCSj?zB=|Ds5;?UUbQ;$9OEnW$dd
z8LK+uP26wdKIK#xS6Jl%6Kvu^6B9W2MGW%RMU4MT6HPp9Vv>o;TJffFHWjEgOg~vn
zGx3OtCrv!14N*AV#0<`qD$|phCLU8x$5`=k6Hl0!Rajc!Z8CtIN)ykUc)`RR6Hl9X
z#>BHGo>NVBftH!rI)|NRndX|9r;T2vo^Ukgn|M(rZK_AC^0JAACOiwig;z|xYGSvE
zJth`$<#L^xSYcwZi6tghR*yb5@w$nnCf+mgzKJ)ujz0C?rb`FCH%%;~DQ$)AzQqXH
z;GLObTyfZYhkUy6t|GI8xn9<I<Euv>nBd94hbBH!Qg({LEbCq(veLvV6Fh|6WMZ|6
z^LxB|R(fBr_STqKYhs;=^&HF<Ub!041{0r{_;yQDaia;zN~%V*=5%uJO@+-|+9tM|
z$>n3GiS3gOf3LTV8|+?hyW$Q-=XCBa6F1E9Pb~L%`TMb!yVt}C6DLjVGqK+Uzj|=M
z#DSf`5feP1K4{`oCFF;c99F!r-#g01&JdmBcmCAlE3%()h)h&jnYh=qMs&)=Y3_I?
z{xWffRp_~i?@WBbsM9U+8xvo0^EYvpfqlyRTJeJ!2Ge^p3`(fRjr4mHKbZKVu-1=C
zel>B<#7`!E*6c5e&lXl8`K?g$yY9fWc3vg4$#(xX@sEj&iL44&%rO2fEWMy4ZGvi4
zj!hUAQr3TcHkF74%Ytozu2QD}NuZ^4-cjNz7L*1SLJL(aROS9}p@@Zi3+a_!Q44Wr
zw}gd~7A{hLv0^dBODq&ul7HHuS^;*h5#_2d&q66Br7e_ILY*>7W*tfN%N6qS+ExV%
zk&=pvl@%*lczLHsPnf=+YE-jO-9jA;bt&KN)v!=Y3GW|jD&fVQ^4bNZ(~No+?wsZ_
z)cLiJ`W6~kXlNxXg`d-T0cvESv4tiUnp$XP;gCK|-#6K4waP2t#1<A>T4-gVwS^@X
zUboQ3LR$-r%()iYS!i$J2@A6<bg<CT!ethETIgh9?9n8E@2(Mbw$Q~wR||``c-^&A
z-7H*LBe|&Yn$?5dsqHddYT^1C5lJr#ms_~S!f*?{EnH#YS_{`%=)+nT`da8`VM>kY
zou_?X5NFniUZ@dWWud=?0T!;dlIuQG!AIt6EDW?T$ijuk!xc56`>MHIyu7mWUScqt
zvoOrUO%`sjz!!D?W8v2t(GUwaTHvFN%{8L^HKNlsqM>Tjsu`888MUezb*q_pezTR_
z|L`j_BP@)xFrKkw;Z_TyER3;m7k#c7-9|eWZntn-&FI0J(bF}fJ1oo`Xy0jpoJN+^
zjCR$GeykbY&Ec|epM`rY+-qTS>rzIoM4{t?JZ$kUsTDPARcajLQ-u#$c#t|A1Pc=^
zJY?Zv3zIB#s})UTcWOm^2En@5)r!W}iXN#I@vL(AT63y}X%=Q!c+|r4wIaTL_K1b)
z+O;<QDlDoMt*jMouN6H;4>=kZj@62Otd+dH#8+Hsjr>UqPg!`@!gCg8TbRRMSa^mJ
zIL%=A72H^o@E(##;qz8<WBfv4SQgxNQf;1v`4(Q(5MmU)qGW;MONuWmE>!Hk$b41F
zBE{Df7b~(ZOP5-B!$RlU(QXTGT3BXbi!Q6TEWB;u6AK$Hyu(pi;jOT+(!#qI-qT*c
zZ{b4=A1VL90>hr&{8+Oj%L^q1@>MEdYhj&*)ymftYG!Li>kE0&+R+ByG}exoXrw~z
zXz8)sO%^s=sP|cNAz<P;<W}`?o8orG9f~^@cPVmzs9QVQV_`2nv9RC55A3yt0~QWi
z;3@0(7Cz;gweY2duPhw4aD;LTC)Jswil1>Fl`!nt^zlMJ2i1;FDL<olOYP`11Fv>8
zy>|4ug)dadb1GKhnmwyoKBri+!TZ|6H=6xc@jJGw$6wUs$<^%R9^aBWXW=IcZj(~K
zSeREk`q@H{qse!s-me|Ky2<<1!fy<lm-2Shj>??zez$PCcJzl@J8yvx_-N{H3;$Ti
zwUKAzUoKv5$ab=>(_CWQ#_a?%%Cm~h#uf}4rVUF=ZPllowM04P<dmdrII2VL+VBeH
zzKuY6s7U3U!Xj!GwQ-SVFV?y&EoS4ALWSZsN+>U>SkM-AO4+!@#&8>@ZIrQ5)<!v1
z=w>6|MtK`GZPZdp1;r{hf4U;^v!Y@pMP@52;oVeKCDjzG7nas2EUm4iv5h7+>e#4j
zqh6s-0~_@V`Rc`a4GVcAJGnc(%|ufh&1`hE(MgM%+h}8>t&J8oTB@X#jn+z7op);m
zwdh+r6?Xg1ByVq{gPq*LvXn?kXB%BqfxO`6u&XNY=CHes9yTtuahZ+&HU`+}X``1a
zU#WPxVs9G-cZ{@fg^fNcWOZiyDktej9UE5{YW|=8H8uv@xZcJ<)f{BwT06OCW)-IE
zY!uibzrn^()fr;r#{X&JKX&rzfC|HG++>5@WR;r>71+lSHb&auYYYW1Mcis*w2j+s
zjIwc?4L<09vTZ3MAH3dS<4%sYjR`h*1Nq|d+%Y!pvT;Y-Qg_?9$Hu*kiqoE1CmL(x
zJ{#k0+;8LQE#5dAKea5ymkIOgL^bL}E$T#k@%Wzg-UBxHX6(On{D-%B580Sy<4GG6
zZ9Hsal8wnWX4rVt#uOXppZ1v^u`yM-_l!S{k^f90WSXu*F7U_HftgywES-7W2FVkO
z)F*#R`|fV@Ua&FS#vB`b@AqjN&)Ilhi=MIZtdh&?By0J$IuSnt&#Du>StpunW1fxq
zHu%)?MH>rLZC#z{Xr1U>orw0?mxVT7vGJ9Svo>C}liQ3FHcr}DWaBj(i)}0+Ipuv~
z<8>QLZT$$(7EgI^*m%!QKF*WB$!`I3^iFwiDZZ`vj^exae{V{u=JK<HjSsXID}Ja7
zA1QvUSa3M7!p2I?u2NjBxW>j>8|%~=`m=n7v0nKGE#=)QB^wz4Ha6SXVq>3;{i?tl
z&aF1K+1O5p^+tNHjU8HRr{b={-D$UtJ%yaLxC<5F0Tmv%aj>xTQzeJA`eDT*Hjb+B
zn2pbr<kyXuXr!RgQw-D{-WN8$w83X6rxnjAeok+v8Wi$QY4&oDFCF#cM;;sBFsKAm
z1mD{Dj;#nD5PWar2gZ+$Kl$bB-5xJnKXR*yqI0yr(_{LH1FrlR#a|VFD=ht8$sdZm
zP36ngf7z%isKy`f(eU_(mjD|VY^1rj3v5X~!enf$-r$*hug6Yq!(tnT;O@^#G^rbv
zKj!iLfq|EIAUSmrK?!~_Q~*Irz~c)?;0pqQt654sK}&v?+~I|i?7bHWE*9hniU^9T
zgr$^Ifyl&cx4Ka=!6ky?lJJHbi<Q~pQ6X25Czx6{sw^laC@shrloyl{logayYXj;g
z>*DpM$;W@5F1~z!*$RS4P*G4xQ1GJZh7-x%0uP8r){S@vc+C;7iq@rN%Bu@%2paJZ
z$pw5W$J0m(YYJ)!Y76QJ>eBf&UOi6MdheOK5%0qn*Ny568VLAFkjj)aRD&PYjhYCW
z3a%FP7c>(z7qk<!=P#$O^LX0EPns<X20_q@#@BeQ*)JX8HkxfK$ypiY^AC6(1YOQ}
z9R;6l_PXrwIte;cBIqjUDd@$q5_A__Gu!SV*r<Iuq<E=d)v?^~>qeI`qUuJQH+z>0
zdJFmpuH@Uhb)zc;ix(s##&mJLsIQ=(dUfbXGEltnxJtm!&P?=q0GklpNCg3(kMq$y
zbp{Fs39i*zZMJ$$*9is-u2;zo9LcTT5am=OFFn;5Di|iXLvW|yCPCGD(MZ9qjEYs>
z&4OE$3|AbXIAx8;qEY;nSx!y8sB67wv>IgVds>#do%6EE>p3F{&N1v)z35&oy^G<u
z(&Ksc-2&o0iag35%SP)(O!p}nr#N1bryTq|$hFDCga-u^1P=-LK$F2Rk)G`H_=Npo
zH9kr3*gB8<_Ef>N<f|~qaOhShi~144bioY4qx{2j!KZ@LJH5vQlQwvB1@C_9%@jN?
zctS8s@T7px_j!)-6eE0F@_2XsT90QAvjuYmPcv=>&q{J4@q*wv!SkGg=?1e*Jn<v)
zkvh*_D4ZvlFL+U~Krnm1x0?MGyv+4mFZxKZP~Bd}<^-<@UKK17yvC)f^2LHBg4YH0
z_a$>mq=bY>{)X~56$=!)&&uN`-?s(tutzHYK#?bq?+M;7<h1b4TJJ-utxe3*laJM(
z<%%m5S1PU&@VPS;)(F-L)^V}di*^h42-XWW2tHw83$_Th3O1?z&5ED3vI`RJZxd`6
z?BtYjrL;=!WOk?y$p<HLDPfk0oPn`di>jQ-rEmKLbL&O>1#f=q9#CYJ{%gH=>P3fC
z?Xcj8;Hco3;CI0vv@bZG{Es4bZ1VWE6zZQ4oD`hmbPK)~d_&LcMP~$Gs)f%LDfvR>
z)F=5$a8~6xdZNqO{8sRz;GEz)E?B`2I`x$QQL`Ag@q!uuN$`uxe^z7>6@FDdXmt`2
z+>3VCix`~eliz8;h2+<o(SLp7<X_2;w<Ws`(?5m#%#33m_pvr>yd6iqZ1QRk`T<uV
zIb%0~IzU~(1T4S?_{JkQMkE_Qc5N!g?3o%?3UB}yU_nVB7r1D*#|7d80T2Q?NW!T&
zPy{FnT&&sC^`eV_V#--cAtfZ26q15$300sl4=4rX1Lc9zKpCJcP!1TgF6kQY+;%Sa
z_{to2txa3Jo`;H503x6YP!*^MR06v2g%jYRecr1lbI;X_()FUCezdwpPz|UK)BtK~
zTjx)C{D2wNPn@Y!Kk8CHss->*nQH_6>PIB?fcijBpclXs#npSg2EhFFUPGV}&=|=n
zP5Yf*C!h(?6yU2GG}R1fPPeysEr8ZQ8=xi73d!mHm8Vlo?e4N!+7@W9ZnOh_yVanC
zMIC^S012~9wAPv30lEU+fbKvK;LfdH+b!PE`q8#+iNdA8WooC~sa(EH^$L&5>nATe
zF_2h#InW!p0vLG0>jUsL4+^hTeSXcPFF>T^YM?(YbC7`nbQR#QPu!tu1A#%nwMfod
zXRh+D0|qlf)_VNeitB+JfT6%J;E^pJf9ih-1LJ72Vcy8PNbY`__>)RE0XGA~fe`>-
zKDn?yd2R0&;N6qS435->=*F$U^!gFM2R#b7O~-Jwj@#|3zzwHh&l#{MxoY19+zs5z
zSpc5c>G74G8oaRwPI7Nw>G7oZK43h%42%P)|I%7-S^bE|cMkv$0uzwz?R+DYHy+e~
z2$%>w3`_zh15<#v)_6Q9V0YHmkER0CfK&COS-_t9(Idd4tWIw=OUVo+49l4;+T<}k
z0X(jp{VI@j<g)|dDPTpNyxCkz4U#*b^Yx=S0Fi3X0?#pqtD{nNJP*78%qx!h#W9xz
z_@fBU7r}gvDg)j_MGp&rmuM}8l_|UoECkx6&_0D%fLDRTz!6|bMRyVKA@C9K8n75x
zLQ_M6>q?Y(Ww84?uoU>EoACzw3%sr4{3fuB`WGcnwK|-3-r-7Y5Pblwo*R<9%Qy$#
zS0R6SazKkj$kePs^f9m;_ypKUuYg7M-MP=@cDqn~C9sOs)%f3+xod$ng)=^MX$~dp
z0OESZ4ZxNGMVQ@0H%hzPfbB{)Q?7)<tx5*>2zLNGf&H4@rMSCL=kf;89_4!#_bL9f
zH^u5q2Q+(7@l)WC63Rz*EO`_-2Bd)u@R`cL1HK22a}!{6spO2}DaBF6?bGbCWwZL{
zz!$)mDrfd<;49^40j9q7awuf_2KZLxpMG6}*&meu%6$O%QTaK=pA@O^Gv}y~pC487
zaxeT{vwtc6!T2dG{gd-}+9+t{Zx#Nd_^;vx;FbmvOS3=>R7;_H3PuWMDjDihDR7Io
zQ@BX8lt>Dx6r2>GlCfIXO~FecOd%%)zfkkz@@9|%)5_+#tXQN_UNi+3QNqO1i&H43
zMVF*dQb}>e5{3E`w29ml@(Lx-Y<EhhP$q@4g_24sluIFBv*lBWlvGgMP%^)ut%@lu
zP*coS)}ktkRTcAx=GRD}W(ti{Xp%y$6l$k%WOVMj5`O&$>^dpbPvQ9s#@gae-4uxR
z6mQv;+aQI8spJ~hC<UfX4U%O`Y?{Jv3!L?LIqz=|n<;OeLJK7=6<ep!O3CpC5jESS
z(6%sJbz?py9a89+!lV=?r_d>dDF;hD)-bv`h0ZB-Nug^B-BK8s!k`qor_dvXt5SHh
zb$BVKrcYk)6s}0&vJ`rzu;lsNUh3iH%IO|c$G7tOsF3{16#iDX`=-z@g*M&H{D#TJ
zt`(6J+A^oVY7R)@niLw0v%l?TvQ~e&<k}RjOW{VArZ6~#m(E((tLE^LB?mN&Zb)GW
z$NX&a4cr18s->5D_RA_9mcmUcxj!elXS*eZ;VFzrVPp#TrNGz2ZcU*>Hn}{FNnun9
z+deFDTMDBY2?tY`EDcLv<J_LY9Vy(I!n%eLvrOMMOveAN6z=9+RPygh;a+XRZ4^~%
z6piH+G)ff4r7%8)`%~!KBX~%W<N+lQrZAyU!hZ~(sQlqV$wNJYDJe`%;hhxTO<`IJ
z*LHUorm*mN<B=3TSe=@l!VFGC3Xi4mbPCUC>oZxsQS?L#kEbAAlU=l1qi9wNPipB?
zDa=k`P6~IaZ?hENRD3pt=Tv6_!!LywQkbvVt&O6&DG=u=F6^BAfK@^EMU^niqL+9T
zD9j#j6upwdt0^o>f$vtmmcshFi6_tBnzNXJp=RsNlGjsM%2}QqzQJ{o!dof4saZ;>
zOipBaTM32lrBF9EK4c`6DDl1uKS-hXWzPFi39B)GeHUl@J0Gijxnh3fsC(mRRSK)Q
zUR*SGu}0-LIk?%uT23V$OX0I6Iong%k-`R+7Ii*J;rlM`M$Typn^phsEAqFbaPpM%
z$KqmJQ`pz3$Tmh!<B0NUjia3@?BW*Tpsa)4DeOt%clJ7kz0^$MObVZ;us?+ZY$%1}
zDI84UQ?B<Ej;65c3+qq{hqV><bZ+D5o9W?>KFL@e<4QS`#52>?C~|@hsM=}8Qz^`Q
zA*XS*<d@>+EK2URMijNbNa4#A&M}@-_==;E!nY}Wm%`U6e518S|7pD0IEl$idL$$K
zeF{IM@FRnvbIAkuB}R^D=>^3Z512ov@GCcp6n@d_C8s8D-;LOnc;z&SR!)`kDg4O|
z*@5riFFKq;HibBae^U52g^bps@`V)A^kH{Wu~}X&6A9CS`L^M}bdo#!lmp92X54ll
z4*0LW<W+7;yh?qW{4ao`r6jJB+D(#<JRIZ)4nhaT99-fc$3YPXE%#U#IVkFYrvRy;
zQu&zGt4YM|@nQ$}Xsso^+~N*OILLEQ%0bCO%ef9Zo=n1<X?~OFeN`qe?chX{$bUVj
zoP&JYchJf~c?T67)OJwELFAyKgKBE0l7q?)swiJt$?EZ!%QX4s<mjNP3NJK?synFR
zpr(V_J?vVAtygav4d0&hw624C4w^V<>Y%=Z1`ZmjPD90&{S#B2n<m|F?BLF((W0KE
z>NL)2R%oY%lI9McY8t)LC>h2NFE&~`Xyc%tgR300b<oa1cLzNjw0F?KLD#~%9UXLX
z&{?y8FVF8%C|}Yv+EzT7wQefua8>ev;8F*dIq2=+3I{zM^m1^ygWQ*m_N9{O+OR2X
zV7NQg&pr;WbnwwjMqdX<RYHZ|n<f_{?ygrm=<i^#gX<j(aBz)-Yqgbug{==#QuaV%
zwoJ3=I?Z0zEE?4;x<UC62RAC|v)B5MgQ3cYaZ=o*3ezLalHq!<S#*no;SL^m@PvaA
z4n{h7(7{Vzm$;Q3ujk(DV61~t4sLTWT8%t#XZ~FdZg+48o$Q}?C!N&zAEQ}HzHAoV
z?SN|cIJnR(A|XCM+`hZJd!Lis>*h6&#;K|C4(_KW`TFGdfr-pcaPW|WiJWD_eZ;|i
zRb9Wj{jh^c4kkO8;$W)Qo#vpb{t_U646u6hq%XDq6;_$<V1|Qk&7(&hJf=o&ZXV6l
zD%6?OJeuX;NluE3JQq(f-W(is@Tr424xV<f+`$S5&p3G2!4e0rJ9y5)^9~kpOdPzR
zcII<Z{x;@1n8!iWrax4q{TCf<R{pYsg$`bGu-L&X4qkPzNE3CAs=^<NMvI7v!k(Wc
zTftHXZ#a0*!TZ|Kn-1P`@V0|xnysdq?<nsy)qdB(r7fa?Eux7k|3Kw5@}ZK`8{{Jg
zA3IpuBD$eQGQ72F7g_0G6+LvY#lh-A{dEr3aPw!p^$1VhZ+4xK+z+gGu))D64mLX2
zRH(UK8)~~C=a`bM4z_90UI*J9>~OHBP;+OpUtza{e_BMvE4gvYWDm)0ne>$D$7_OX
zrr7%&?00a$LGiPBfBq+E)-pmV_mG3b4*q6E2S>Ox9DM8GI|s)ceCFVD2VXci&dtZc
zX>F_CY&q%RhCAdG7gWpSVnO>4wv5hDbEq*r-{pe(QZ>&y_}al&9D%LYV@H#f`;E$Z
zuXWii5+Z+g%jkOtKREc=!7mPe)Y5Yfep1rt=VXG`zmN=0?YZ`^4t{g+rxyLrsCIB(
z`5z0D{rSNW34SvrzwLzFzf}IF_WfV32nU`E-$mL%MvGD|vJPSgwhM7#xG-H<?ticK
z2U|w-9?J=DNDQJ_{^#AyA2?90BA)xyXqAkoqnfT_E0qK;Ld{<6BF9A$<rldqs-*e-
zCTn#V=L~KYwZ1y(PB9mkxG3(Tgo~1@L*eLF(UW_Uf3jeDs#R3VP3{S6x~S!%w2Lw>
z%DO10$~RYa^Iep8QN=}77ZqIo3j!)@QANc{F1H=5RNrWggpvZw)m&6}vAC~Wph;m3
z7l+K;v-u%!=W4sjO<g?~b(GXqoZj1@kg2|l1}Y(M=we>iMBc<jQx^+dyyT*pi{>uw
zckzIW7A{)4xYosWE?T*0P01C;)h^n&XzSwa6>c9F?Oe2X(alA77ad%5R42PCc5>0#
z#j#=Dp;pn$$4YeJ^eHLm#dmMy^>A^ii_2Z~c5#`Do-TTE99l<P+nPly`mJY50T$>}
zcm;i!DI~-zIbVHTroJxvDZfgwMeB&d`n}!$E{FpZuW>O@2_=JE>|Ym>40dt7i&6ah
zQx`Y57~<lWp3ZO=H!2yXNXdVc3{|}6Q;U+Dl;5m)i{gq!!3ZTI6{&M8z1o*3GmUmJ
z#>HJ)bi3jmigzk*{W(#)+r@pFCBMhTy)MRT_I_<~pqd(|lJPFKX%%Wd=wcdEzhFXP
z-G^LEbn&oeX?c>1$u6dFPMegZ{!|wQ&5_f{Bb?S>Qqx_`aPg>%$6P$);#n6nT|BNc
z__T{BT+DJYn|4lwPpa_#*3napiq_HPW%K@WU1sOF*sV*r>A2(p&79WJb1p7kUg8B8
zbG6FzifhkU^OVeY@%-d~St`HiCZ9S<-fbPd>|&vdPZ`WEUUBiNi`Bf@cCpCCYc4+0
zx{Dc&)AHX^zQo1rN|rK^j+I!Z{0$dxy4c)0S>~JC=Tct${_t%V@3?qZ6)68e$$Ku|
zFO*b2liV_W=wjr)#H){0zFcvI;!4F6t)o>gh}2o@Vx5ahZK6Fc*1Oo?Vuy<^D@uIg
zV$wS${%##@aj{Wr)oxW}lakGfZQlytUmb4cJi6HK@@Cs)wg7jkg<Xof6@Pglmp0kT
zUTtfiTG+36KqUtYY_^FGyEx+FZx{c#ILdYB;u{y=y7<h+aTlL6&QFIY6iLn~IjMNc
z#py!%;^QGpYtPIlenH<{e8rWnrDg9D3coJY9NH%O&c*jGe&r0R@CU~EWI3n&$3mMw
z73%-YAgoaG7j7(VqQ5%i|E}^s3QKRDEawaPpWKM3qsSKjb#a0Fu!oC0q+MiqA@GtT
z?yQU0P0sOCnl%({zUHsQQly&SA{6Bd`?=?4iKE>0;Cbj>%%H-7SwdvG?=zDacnAyY
z<|rwmc;Z>_Vh_bUl=e_YC6{<8sie3f>y}XR>XB5glDtBBDJ4sLJ7o(c`5wwCAAeom
zkLo~q4;56hRkM{mRQ7OFfSUtU@le&nWFJ#}RP#{XgX@D&ENXbD>4EP<o%T@6Lv0Uy
z+_B3;9S?OqTt#ah>UpT|p{<8@9vXOP=%Iy|Tt^zw__VO8a%LMVX`;xJrDjT+dthq!
zMzS=RT6$>Zp|uvZ@$l}Q$#;91K53iZUWHvfbo0=`Lq`vtRMJI}I-Qji{NVY<Hc@vE
zJyg=i!=*|t^U%}7j;o!fpIf~=T+Z3?aD|6K%W~gemV3vt+%C&<SMLm)?F^?a%bmY0
z_eu|awIV+b(0)G-LYrh&_V+Nr!zK@#JzV2qpof{NHc0V04}(2itDMSg>w4uwJlv?{
z2L32=^xyw7_>YIND&#;7^)QShrrDc4jPh`shg&=h_Yhy{jPNkh!>wBS%FV`_o24L;
zkM?l8hcO=R@<8Do9`5u&d4U>zAi3MaJs$4W>eQjZ0(pUv`&2&8!*~z(dw776;9-h~
z2R%&i@bLdM`jCf-+6pVuER9UkQW|7-s)uPF9#hF99;SPk;o(trhMEOcs8-PW|5<q4
z!xJ86d3aJQE@SX7OLj=6r##G7;T#W7dw9mfvmO@Gpoix?Jn!K}9`Ad2!NXh+^E}M|
z|Fu=%=SynmWgSd5O&<#IRS%0iyzXJChu1tTR<$MC$AXGfW1=%}czCl=P6<m36yDM*
zRCwFNI}BRQzUN`NhZP>)_wa#-4?TS3;bSdgt^XZ=R$S>}m4|g6)_YjZCOoVy)GTPI
zzyVey+2G+54;%kSffkqwoZ%7EnLhbjv~;V7Z63CJaE1n@Pg*-vXiiG*`FDHR<DuV;
z?ja9*J?zt>PZjrjIG|*(mE46g9b`ybHdC%`v&vx)N3`xyRXgtCn3B)_r`8GOtb0;P
zak0;M_}s&Hh4L@d!dII8(&KxWiDfo%RwZA1_@+?vTP3vcy@ww>{OIAFhkrc$%XL>F
z|0fT>dHCJK&mMm9@ZPW_uzzK=><Wtxcb~a8`4gExJn%N}PY>rkG|}@tzisrFnx*`2
zEv?fwy1>m}g_e&DqoRM(eZxmqg|Q+($&Rm;+<};Wvc=so%(Q(>8Wf7pCx3~gW7{a@
z!}0M+UI`w+-hESWepHU{Bk*yjkHO2F&_|AsZa%vEDB`22kNQ3u__)Z&#Xc(dh<p_D
zafy#S8szVT@kz0d@9uVT)qV*dr)E1P6<I|2#PeY(AEkYi@$v7Wu&j@AH26T`e7;tp
zu)G#gLO!BxRMAHzA2of{QiaMss&d=+QN{mnug_03Uhi+Sr`3HBYbcVi`!rJ9M_nI0
zBqFb)7C2V*eB4(r8Jt1CggnA(=%c+4l14rn`)J~$sgIUETB)#^VhhFQimy%ds64im
z*;=!06)9=s<H5GcnOM6*$upYmpxKT-I{E1Aql;#{DqekM9`%`4t#NwzxYWleKe>~?
z%tucjH~1LhqnD4%ef0Iw&qr_VLd_N7l}fH)m18CPD6VN6Q9ijsiK~2E?W1_R=sF+$
zeGE{|K|ZcgLLBJhVB6&CP_uS8_k1!+*J{zPZKJ_TSoeA#)!QXHOgH)%=Hn(U`j6sJ
z#UAaVoBiYy4buoExA+*&AZ%_^QgmDnaiq#`RczbMxy?t(%W_8h*swJBc7~ZYaR;s4
zYj&9*j#0CB`MBH1JwERBF~LXIp6*y5b5wIc`{+I&<9uv;A!odgZ`wr<FnR~O_bVP~
z7d^;3f%XyQo!dtb`54<jXf-RGsAeDb@%++ok|K{OrmFC38u2mB$0I(b`<UV5Lmwac
zc+|&ZK9>2o>=}EekH=Zd#|u85@bPf_XpWDkea!Olq#Aijakk>Qzmp3MKVlP~VVoED
zpXH?AP;znmi2ON~T;wICbA7zz<7FT7e9ZUpqE=s^xNAvbgo$LKk5_!W?qjKsR~hrF
zutf1SAB&Yxb5r|>iG;#}x^MV+Q#s}Tr}>sj-uCg1k9U>7ulSzg|EYbTSsMS?$8sM>
zd>r+$!pBM<+kNctvC7A4ADevsOj@|c$6D2IHNslQs8+s_Q_M*rewkb!kM7I4ZCLo+
zu(045^Sk!Z))o1ieQfcum1#wO&>>>l#?7Zgl;0tGs+zmg$6g=%e5~v4?o!;XxJU7|
za=H6`9Pn|7lXa<i(8s4f+V(Nt`8>tcrjJpiv_1WD_pqNlD`9rQBKw#+_6ldm$7eo{
z`#7PJ(>~7lIO*g1Bc)EMgbtHGQ|^*h9U>-XS?dcQU;6lp)3GWwtATY^HL1hWZ@KAl
zW&@NB@LCi1dmnCqUv~LF`1sLB<u>j)AOCP$^YN39pE)d-yTADO&ByP`fAuk_kHM!o
zfA~1><4+%dsr>UX7KOxu#9Du=d}3wy0{!pingOf;X<h<+$l|2G*S+OseZ)SD0B<x4
zC@B!y0VF^wfD_>9t}b8h8C2ONdAfvRS2x`~Ayn`J_yK|dVUPq;sQ@_viYVtwEE?dV
z0GBOvN(Q(%K(PQN0{n1C&Lshgs}4!EOaJ>`A_;|*<Z2OX<!N1-Wh$-0z8#`+0rCU1
z50JUSFCU;nfL1|rXv2S0t{9+3fSLg+1z0>juWEp+qGZ4;^HTt;oJdaU<aMW-nj){R
zgimB@1*jdMet-rlsS{w*rEbG3jJk!I^^|mLp3^WuqX3Psbek(S4$xFd6U7tb92PYz
zD7w<ko#(YE<Smu-8WPae)&bh6&utYcX%}F;o-%a^&@n)#0G$K$4bU$@mjGP@^bT;W
zL&V$lZUHXkumrfX1OLkpJpxSY5RpG{ZP+uwT^;k8da1Wp-zDUiEB{Et@`?a`0^IUY
zG7eX&-0GNIfUXK~O@M(xa#6cFK!1*5$7n#nuhS+sRKsfK4+_8+Ck6+&KESoguM4o-
zu=r}n#qEmRppqMDFu<}V<`6pEF=|)Y9jbCx9HxX%Ldo;yJGTTFPE$F!AqOJ@j12Hr
zh_^%B8emkAyhfG^aa(}V0VW5S65#d#chDI+S<k&Qz?cB{1sKQ9Y8S?GFh2<IR(_A-
zx$>9XOSO&>3H|5%_Wn9&e1Hc6Jjjv!I_G}HM~wUl>_sK_*DlHaIpN!!Un{vyf6SQ}
z;9+fRl46_dO$w)SoC9nK@JWD20!$CEFu*GTW(0UN!2AGn=E!3KW^%m*cqYK(0iFmj
zTm6}(_+)^mSg~WoxAfoWnCud(b|#+<=V<Adj=M*N&jxrtzzZsTj+RH|zBoC#8<|T7
zHaPQCKCf9w-eZ4K{lx$a0=yJp*K0{HUJmem$LQ>XA<u>QD;BQ?cqhQS0Tywq;i3qz
zgeyJ3n*m-Au(ZJ12z&FY{F0p_CR$j==}`IG0XDvz!w=>yRQ}NV9P?r4JuO-hU}b>!
z8NC5M4DeBaj{__ZaK8C}pY`<Y6fM->DjD7>I#o7YrL|TESQFsouk*NFJK5Z|0oF0(
zxJ6hcnPt<nJ4GAnB_X#lz@`9a1AHA|bAT-YJ`Hdvz}5iUIAsC$1X$fE+8*HWDA^g{
zc&BKGHeq*8y0A<6#FIID1MFj*jF*Etl0`<y{s0F8R9Cf<&5{Rmhx(et!&>D;fRh1^
z1USm&7T_~l=5W=pUzw3S&X{Q@*h%Z23UE5WSKPOII%fiW9^i`rU#gMO2TBZ9omE4V
zml<a0^TY<dlEchz0(=|b&j5b~_)e972=F7PO!+20IO99*0e+&{0KW$KS>+TyFh{mE
zOsxGD;P(K3aHzG26HVcFZQU;iC*yYg*xdbJyMJ@J1-QVio>8&Y`j=7qvvt*5C7Adm
zA`>7Rzz&n`Iu2ljFhf`&SQ>nkL|VIEMLLd22oooik4O2ef-fC0>x9XfXN?dwL%1Ql
z5PpatMA;Cp&+@_$IU!1h$PJU7q)3QjA?{0iMMGQ^;$m%a;VhfvqE{39mxL%DVqE8_
zM2Lb!PI;bcl9UQjuiSqls&oj-%V^Pp&QUo&J_%7iL<N;p2@xr&q*zgLxmv3n;{UQ$
zLsSb<T}x@7@^2O-<5nv~?GQJIxFtlL5OqUb8sajx9-@ATwjtVuXb_?yyRUT{DK-t!
zEJWiFO+suMn>;Srt1UJUlc#kpLbPP>KFBGtHt9mW897}(OnUuS=csiEVw(_M|4yEF
zv=7lCMCTA))NIEPliS$W`N;?KP9bhOk}UJCA-)`IcMH)y#CH$Kt{@5B9%1r~k7Use
z$u+cRh+ZMC2{BOZT&~zJMDGw+gy<9E$`E~3cyX6xoS8;e^}F^?qWY>3SBL1Yr2|5&
z%GfOy>T&eYBGtP@gF;*zVn~P^LtLjiH##M*4>33de-DS%yQ{$)w5Zs?Bvk$rVrYnA
zDjC%!x=9INsNj1PEPY~BFg(PF5Ys|D5@IAb{}AIt+#g~TH-A;WJH+S^w{ryYoiQQq
z2yth~!%}JeXPE*c`J3|}?GoLk$}g(}_k_4N#8{Qw$HC{k6!!E;muSe&WFj62@nDE4
zsxu+PLm?gxF-fx%6|bsmnq8CeY1$y4VO+hNIXMLXA)OYcssf9aPLSy#W`uYy#PcB@
zRrwPkW>GW5%rJS*-g%NdUZ`KSYxHD@r!@Oah@ZZ;W`~#);^`1$z9~+F-MU8mF3Vve
zXL?pOhj)!$2r)OrD<NJDF)zgY5HE#zImC;!)-_^UpqeCabdC7yQVR=Py!eCsGLMD(
zx<-payvF4jVrhuQ#P0SI)%jBUIBt8$9sZ3FZ>n%v2zHaZ%DnN(Z-hQqv<SLI?}T_a
z#L*DPLcAB^{SXJ(>q_niAwCSTTPuDP;^Pq8xE_1B%R{W-4nTf&&Pv9TDy$7r@Bn&s
zh&3T*Ut{D9b;sP|el^%!$C<h*>3EfH(S{J8gxJUxG0xc(VsnV!pEbz0gy_^Q+8Sbe
zmome<CA0Hrw`hry?P`BVh@Bz$GhDmqr^<g)+!JE2DzM7F5c`$?+}dRJp!VWZMRw<q
zlEWN<LJ7J@pM^Ni9Uuqoa&RKV$q;r9BnPKLoDT6zh+jjT3Gq2sWr*)Xe8F|f3DV!{
z|0=}U5MOhX;X=^=(_y0|11INwOPk#zJ})MZx+nio@Pj&bF2s*YDB-WI{uJV8%@+KR
z$$;+BZyb;iMh;q(^Zp1yoxel;!~HqLpWIcrwU)4%3LM}UC;ts`Aw-sAKE+9g$Y>S1
z@kNjPyShgcyGPVvHfHsw^2yB{^z9#5Ir!>usfFE>appVysT`EeLAjj&N7Z*gNl|=X
z@3MQ@1*Usux~J1j_drWjkt9h_M1tg;bIv*E97GV1prE3dFknJO5Cszo2%;De0Ywlq
zDheoK;=A>R`JMlFPMv#hy?XU3*Hm{`)u2E_p@yi2n5LdnifJgJA);Yd)3CUP(Y#4s
zdatHI*VM75%pdAqY8o<QaSev1CaaVNQ$s?7t-%pB=GG!_7FKAcs>0RaX-F~^D=%kW
zq@D;H{TJ!cOyxFHGiePaHB{12SwkreA@if5tXR8BLuqE<5jS(maAZ|+UO!S!!|rB<
zS8KRNLwOAqL?M&gY0biQ&BALnRMc>thNmSt2EE%X{9011qM<4)TtgiV)ihkMp{9mf
z8mdcis98e@tF(A?RbzC_`TF+@YKxqNAJOV+xKYDROrm-C@~}Mq`31|ug5NtezrKcB
zM6-j21{xY_XrrOoiK2}(G}h3RTta(ow+^=|eyfHi8t!RRNZwMCYp&r`_hKzIwBU;R
zcGa3gnuo1KNZwlFQh~g!@OFajHT5-fpcUz;p_7J-#Uh<G^w7{#coz*_HFOg`w|UrI
z!(Gk8&CSEtn}@wrH?V%Xp!Jr}tLhb!(|A7({WTQPk*8yThJhN^XjrRZ5EuEC3a4sn
zAI@M&dWeRh8irA>VXTI6A{-$&TEj>UqcpTyoKO5j3OGi?@tW$r)1S@5@fs#*n5=<+
zT}sJB4U;4yd9-cb<|^vl;1qVqp9(U3nuh5bW@wnH;i)<KJIfW$(lA@YQVq*A%+WBH
zMULk!(J)WL_aof-8Ww1{V^bdaLJf;FEY@%vTfCY|j(>&B_k{dW$l#xE6}>&1dZ&)6
zhVNk4Z4ut7VY!AC8ZxhUR74FgoG8jCpjD!<T9BFyx=T~LA79Y$qK3OQtkbZb?W^Gl
z4wEW{_iDIL!=svdp536~eh$MX-Xj_w(6CX%>)XAD*puZCJ#T3dJ}8;#(IR}9RV2n+
z{_0YHWs7i=hR>F%<;P>9^SI!q7U7c`HnV2f?KM2d0adwhdyDWH4bN)obJBY)LVEe3
zhkT2M=b4#uMW{oh+p6Iu4PR+Etznyn?HcxJcvr*Anp*z7#_Va>A^a5$uL{}8!d6Z1
zV(;2zk<f9MFO}cW@Rlf$zbWLO7U6CUZ)<o*!yfik8h^>6P$^F=AiolEV!?h5hctYs
z;edwsG#r%Z?+Y>_)jkludW*q`A8GiQ-HDSqdzXg8tQHMNHGHapi~J)R=twG+(}~HJ
zA-zV^^f3{VQ22%LFEyML<rCuNFJ>k>@sx&^Z3`IpYYpFM_)n_(TMgfd=I`ugLVnS3
zR>Kb(e$;SA!%yrjf@=?WG;(^AGMFL1ivDjJ&WR3%=UL~QA{Ru?tk!NBVRDrJ!6B*P
zPYste{H5V<QOKyVApeM$rTA9}Gf7_1vGB6wFo(mIFaHJa9H|zc`MNsCHCD$s9Yu8%
z=;)`Tzm7s3#dKV+qq>gbqVMQ%b(GK%(V^*BJHU?XFm&iTxPtg(e11%Xw8<d0f~g~+
z!`3n3<~%A`Vr0)uHF)c{441c1zs{bHq>i#W%IQey@O6~Z5sGG@gKBBvj9XF&C5%NQ
zSLrCNql^d_cPn!Dr5qw1L(A)^pyN6nl_d0P9oOi%R(O|qZbc!)OiuQ{pjFmUMMqVg
zJF=XNeD;F;kJ_fIiG+mm8ais~XrZH}j#@fu>$pWn106SrH6~h5M;#q?b=)YDn*<q=
zK?9Dfwf)U3j*k5UuY3{a*0P4W8bOV9UY>wP!Wp`uc@Bk5BziLuHWlPandaHFM)b5>
z>1eH^la9_h+UR)ZzeL@2T6-OBMThIsb~+wy6S;MKq=QI03c9*lmUq$7RmZfJVQ(GX
zbnyPq?mBviLa&x#Pm%NzWDuj!4hdZ!9eu?tIfVlx%JppvYfdXNP{$x0gLO>as|q_(
z#}Ek}s$-ar;le*0lpdku5otm4#3J=bGD^p2_JR8%V{~k}LrFet8IEV4(Q!)0S2`x@
zn51Kqj>l+R#}pm&bj;T=Rcum!Hp`-8x{ev*W@hDQTZTnig|l=JsYW+Pg60Y?TdOV5
zu~5g|I@ak}#PaG`p<|_l-lpSr9ZPjA5pOB6u#8z6m~)4Y<vPs0PUeZPL91~5#e&hT
z!aH@W(y@j^K*wr{#T4r`&tVYBT_U-Ag=+n82I*@D>g#pfqhq6v2X)-5<33TiU$9fJ
zybVI`X%#-Zpx^=F&JyR|d(=<xLu>*aM_PpsvodvT6Z?NoQomg1TZK~==RdCF2_0|i
zct^*RIyURruH$7LPw9AC$MZT~V29E1teD-RW9~pTB%jl<vs-T1`bu3rv@G{UQP`^E
zB_YYBxm4RGys4;t-MPdL@xCtjijG%lM8_^2uZe{E(?xSb>u|r2H*~zI<1HP#sW3$u
zWK|I93fqKxbnN9!qT{fReLCLN@qvy*VrsvR13KR0l#;J<dyr$cjmql#61uv9>N#!N
zgdd9cBf&aVa`#rs{g^deQYAtBl=UV-UkHAt<EV~f9Jy6gPL7MPo0a#ukbz?V{x;zW
z9bf9WZAe}-S*4$p&==c;?xCWmIVBz{`h(!tI=&I|tsv#!>G)pwUQzy0#~B?z>G)a4
zuUVa6bet8wtVJH9{34paiR4^X=e&>~el`Bkago!bfvXJsspArBJBD2`{H5b>HfR*j
zMe&c0e>vktacva;>9{O$uZkikirlEmts6xVA<-yeQRGFDA64ggi$<~dDJ>F3fe`ZI
zqE;waOprpl5~83?9V)6tq5mHRO5)<RqA-L|VhTwJ_CyXPws0qk_huKPm(GhKDZ*3~
zzK}q$q+mLVO#M)^R1~2I$*XU6OGm*0SVpj{U^zhw%L}O>c(vf_HpMGOaa|OBqUak%
zr6?*#aZ3~pqNtLMRZ~b+!D@on3sx7bA(+=TtQAG=C~k<Nj!5c9QCCPk!5al{5@b%k
zof5fO`1cJX^lsT=6B|a+D2h%|bdI8N6t{{(%P5)%X_k%KRLI*u=P*k1C|Zd3*I$&k
zRTQno+eWaxU|Yd<QQX*}fI1z-OVUw@+cxYHMOWdyqTp?B45I56Mfa>`k0^QyKUquV
zmaeyW-#k;$FN*$AET=+K{%@M9`SDRqh+<$AgQ6H5#gHgQi+rfy2*F{3!&%ZJMH%Iu
zMv;*sAs-dR*m9b(bFpBI2*(PJV=v83Q#dh-Nm0y-Vz$U9M=?DccS;mfg-^>$o-3-&
z$nu#S4n?&af6kc`#oQ=v7x}y>=0|ax@CAa4vib|z6WXfDd~sINS-eZ4SR%E(ROHJ9
z@5t&L92r>=#mXq|jAB(3k3{ik6sx0H6U7ErZ|P!dqiV%<cNFV{+$A`vZMZ&)d!o3H
zMcd=u8^sfCLpo}5%LEDEM-lIj;(;hOM)6=&o!opV3a)dgGkd1`9eFs4cK_tO+&1Lq
zt4&e${I$JL;pQkFi{fz_l!X3j8+sA_$tZrBoxgZQTD=8|aucRb&8MTdx>L?GQIJ!z
zC5q>x7!||l7+#3t#VBgVRL-|X)uG+@qxc|-m!jB4{U~0JVoy}P4c-yOD^a}3&~^o{
zMzK>8omr<aXcz9{i0)SKx=3E*SX*733!68hsNYT<>*H<eH2zi;yQ6qpbh@?+-{F92
zQ~bhr1;o8k>|;W=<-Hrl0ZtTA#BF`QXin^0a8Stp`Kli3^oo!iisD1|nHch7_$Z2x
zqxd<BU!wRVio;QS8O6ycK4s@=7aon`7%RVBcqEF?MDkoaRr4oDxyPfh+82JoQ8_&C
zbJoBR_x8Dw$(<r6Xh(ETNxEN0@l6z82|q1Z`cCy=_-z#5MR6vIV(pc|@1yu3iXU0V
zGFSG?b?sjGOS_QB(4QpY!4uxuD1MFN_bC2|;x`eV7o?GMSyLB8LTilJ?{ef~6n}H7
zXVXM+DT=>D&Y(9#Cn-t)%gLW}evBV6Lkg+G(929^wpv2a<x1l+G(X1s9l*OAu8N^(
z3<WWmF(hIrjG<TzdJIu9Qapx844T9$5yQE0>0_bOCNJ;%lIrL9_a>@a#$qr;AuhNl
ztyaG^8!81$Bwh^380;9F7~B|kHn5M3y|NxAPsQNJP)am|7}7D66wc`FYG}hgRSV0t
z+l-Ba)lz5ARJGJE9Yci}u8yIMXqJs(L`l6|4CTe!x_vlKYU3L5UKc~97_JpwF^0P&
z=$ZCm<ru2OP%Vb*W2j1Nj~jF}&V(|gdJHT@4T<<&SyiY5?Za9z)Q;hX80y5(IfgDV
z)Q#cB7}~N3%?fXdp<WElS(#M|Z;qjU42@&BHHKSac)5Rx1~D{@A#=Wr)*8h?M?!bH
zeb^+1rZF^&!I~ENrLw9$BHiXk6mJnj%NSa*y+-A?j^VS;?$&cf_jk-`!(~AG@Y_$+
z<A1vt+Ka&sF?15wF@|!@RnzMo!s|My&e=7FZka@5=$=izUkp8B=qcV_G4#pGdkbmS
zA?%waw9sF8MlvvlK`{)bWL{)Q3_~U8*RuMs7>36%l4+IEN3eB-RGpbiFHd(8$;ZSn
zHiiddcqoQ(F^rF4ehdp@n81oXQgmtz(_)w?oZd-7CdV*ENU;KkLb~ZO%n`{9!I^@y
z1ZN9Ur*^DhZVdC7N(Xfm`oS^kt@y$i7R9hKhC5?eoYlM|hTDWMiQ#r3RHj=R!!l}i
z2+6sYVD#lNtjNY{RFJz$_*(WZA*%(~#PGZ9SiU=kbunzn>aQ1aui!m`pH|Rm^FHCs
zB)3W5AHxGNY@{ntJF)4i&oB0H43ETkb%Uy(M`PF&!xrI>2~s#cne%uIPsH#fJKpkw
zr(<|Vf;PwSR92^GBUSuo+09lc@?2IvpsDvfe*&bUD5rZ-g0{x+QdZ~GCo0NzcIFs%
zi14@+@D<^&3Ubr<Ycagefe^>dal8@3n=zD#BNE43G3<`v*ww}PqxN<T@5FF{RTRS>
z={6t5@No=#W7rqNyCQi%h7W}7kKsTJ?+HH`!)p;WBIurzE`2D5i%W9p{ZJH0KJ5^G
z62svbevaXn7(R{RNDN=aaGC=rhNCf@6wPBX9FO6I@XrND_RIT1$gds35l7X8L-!@?
zWR5)1bH7jw2R)Vg*P`}a4ByA_O$>L>Rl;vs>N!roT?Ic#=#PS#pffT2#QCbDUa_MZ
zh8crrMd5r5zY6(HuzJVv9Oqt9qvq$g<^90|a*oO={3nK+J}B|0s2!dcxg>--e+l`U
zb4#eQ@ox<O#c)}K`EfPF<iwF1M-kz9g4{SkIX_Ymd6f?@?jb3NqnHr#LN;Gf^_8%A
zR?_2jLyJR?<LWrBi6a_Udp7QR-U{M~#non~cpOF?W?VgPFrp_B6LDB^*l{@Gb>q0V
zV>l>Vx>toH<4DEvamSF(7sBYYoQ|Vp9HrtQ5925+g#0QYrQ;|g<ok{xh2^rL<>ROz
zys(p!Un{(39JS)8DEzuODha79c)eg1!K!go6T*lS?$wCZ#akoJ>ysRMS+v?xz`AkV
zAcT@Sakc6uxiKrbiLvUcXPo+R+!DvBIKGObK^zTP{5bB5qfs1<<7gX4JBf0uU<<(}
zf=vaR#rYpDsy?f?DkQcPPSQ$9>p0p7$>_9?qeC1M<Cqjj$2dB%!s8eiN9Q=Y#L<VX
z^P|?4ttJi8OR&3OPr)97<vXeV`9ZPV-f=uxRsD7}@1)KV_l>LLNd4mIFKS0qDFzLS
zV{lx(5uFgnkT{0MF*c6BPDh5tF+7e@ag2^*1T)a6uxqDqq(mg4qhw4Rl;jT0C(kI1
zi(|a#P)OsQTf4OUS*60saZHKxD=n7CF*S~9am<NhZX6F??M{zlMjSKa*ws0YUb<Ov
z%$6WZ_IA$8;Ji5Ii{&M8EQn)a9Jh&gQ5=ieG%^b2O2HoxWa{+Z9>-Eq`#P%a>J%=E
z<A+WmlUNbQ$~e}=Q8-V#Q_@-;#~LB41exwyc7QnU&gO)%GC9oP`Z)gV;@%U-+NG+7
zDcm3ly%xtkl?(5W<AFFfiez&fPsQ;d?ZokL9FNduD(`U#dX)XVbNE;sn^^6w)!NeR
ztlDl^N;`5f@kAWNCq<LwY4-V^g)haiEskg6cs7pb;@A?$i*dvoXwS#-f;dK}>(M!+
zBiTyJLLTZIZja;TI9`ooXIy=X-4O>b2zrH`?bh5SYw}MHD^k3%c6@Y+MR%!p_`9UH
z@NwpK{shGFCMW+mK8fRS9J}LqJB|-IlZ<fRiDOS32jX~7^0}8?<w((Yh3^x5xpTNb
zjxRc^AMW^Rb)C+^I6mNH(j|O9j=wvr>uz{T_mD^^WS)Dyp8kk)2**N`Lh^yP7ktWb
zSGn+uxH|TDB#zJGI2y;XI6miuFtp&fB*ci?vlbl*B{y^lPl!IFd>O~dEN{~#JRQf^
zapW87*0XQo_%@E;<M<<v^^X*M#~u>Lk5Y>7*@E)heMY=z1%DD`S$-Dsiy+Tl{Tjz_
zOr@#%c|9jWJ`bLc<AU(Kol1U@eI|~7MMCeTIR44<zgQK*-}BX;E?Oi07sq8GIfn9P
z6mks|5iccq21a#J6<gFmfq}RI!$6^gmdNT96H?r`vXF>m<(d#(FlvBDz+!^5W*SI{
zJY~Sj>L(4@S?(Bcv)nUq`LP1VIx$2coo^s8kTy^<t5eFrYRM;m`>0UbKpEydfzb(+
zHBipr&T9Axls8bpz%UcTO<Zl@8UyDHoHuZ-fr<uhGqA+Kbp|RK=wP6ufyxG|7`W9y
z69ZKZR5MV|z|97(H`GsIEd#X;R5wt=P`Bumt#5N9cTMuA)GNmu4Ac>|8x7Po)a?Wm
zR+yt^tu2+cn<R+*@h)NWudMn84t5C}i0~FeZLXk~uAzZO1{zB!m6^mZUBadYnu%sh
z!R7{9P;x?z%A-%EnUL8vY-OOe!83YjD?05Bv}2*VhMmUd&#s|z@`ij7zO7zfC)S~X
z@dhRs=whI&fx!lb80co8yTlz}pof8;2KpH2YoM2b{T0+wr?-Tj6F#kL*e|2Z#lHc1
zsnC6#N@!qKK1fK5kJa!QYG5QAh;3nDIQx~XLq-@_lbd(9#Qieuj5aXFz*qx(T3nK=
zPUwsi3(=QyScHBf)vP#CB(n`nGBDY|6a!O5GDC2hfpMh^ryIx=nfkAE4QH|~*blpg
zIo-mlw->OI=NOo4V4i{b1{O)g1qK!x>gz2lpWP|ZEv(orjPzEEy~U!yShpKkYTz{k
zuNzoq;0^;%7<kgaasw+2+-+c;ft3dC6#cb=s{~gwR#kO)XAN7Yo2sY@f_F*i@^0aJ
zb^rqp8F<*hy$0?x@PL7h1~!Po{er4266>hogVZ0FOJV7rYV*}21|Bu=n1RPdnG3m1
z*;qe!Q@e<%Lzf;_WV3;%47_TneT+|Y2piaH;3Wgk8hFmY^9Eip@Xv(&EfSq4xEbs4
z2bLn2EFQ0ZQ6ernWo<JsaD)4@fgJ|63#UO!UJ(Uywb@{UOR`fWy96oZLGL#VylLPw
z14j+KWni~~_YHht;B5o%u(KIBAj*3T?90Rwq^TLtTEuq^l&+s9c~9gAv!PoTI*aA3
z_aTvdWZ+{V9|~rIJ`w(@fx`yAU0ot_$|2tSRgohGqTNH<JZ9iH=WtQ`+`tzGzLKh7
z5H(L2_|m{h&K{i#PO;H1<$U>tb#3>sad*|Mrw#NM^0h=++&%o(z;_0|H}HdjUkscz
z@S}k<27Y2^Gw^ix@a+QyA4rr-f;2+%D+h9mg5TIhHxv}>5qdpBdO1a0Fz~wp&4g~^
z4+9rDMVpwmrr4hbE*Z$@ELW-UF9UybPAgluyF>AR4E$>#&&1M^swe-)Iju*SW2&j_
zvgGhcc|F%e5mU*#^$59l(WtN143*@AEKKmq&QU$Wnk@_N7_D9=6iVD;CW@OVA^fW<
zdPK<T9;ybSCSoRPny6(WZo)9(n(#!yG+_z3Ygl2z1TVN~IJD3fi6eNGd{Rl8NSUa>
z>Dq*EB9NdmCekKK3NLM<l!?&9RpMo${g$X{=e8wjI+E@3ajL9|awejWrpudHzEn-Z
z<P{!HUt{806IEDb=D`F%@mwc%3dX3>RLMkT6My}2<tgu<7gedNnYi9Wbx|wTqkyi4
zd1a>u`N>7aYMZ#hL^~7hP1G?_*F<9zx0<-o#7!m|niw=Lzn(;|Z{il}oU(2<(d@n}
zsWgzFdXw{=l`8*@#M`Yyq(XU>r6wktn`mL8DWjOU>+Za}XXT%}<I0F`X`+>h))Hmo
zoP2IW<yYf2Cfb_d*R=j$7jS*f+fh20=xCy+iC!i;W$X)fHqpgY`(!3Rq;(a^4r#~k
z!g~mQ)kE#U=q<dTiT-TXo?#yoeMM5Wr)u{BCI*@qY+?utEAnGabFN#ds=a&9klPnC
zdl!eAiYy*fFv7%06Dv%tWCt@b+QdTgb~$5Aj5RUeREK)TnHX<kwu$v+3n!SEXkvzm
zyL*O{#Qs!9=@|~`8BR9U-D^_>ncOrJ)0vqrIhjfC>Gi4wXPTI0;?g4Z>UEc7c#asE
zD>zT^bkA^ssUBN8&(7zb=SA!!Z3-8gxXr{86Stcv-79RpHNDitygth2a*4IfR1@hP
zg898vRdAouohDY9_{GFome<4@6R((fl`X>NGx3CpCs_~^>rC8l;sF-W#4}CQxZ7aj
z9uxPPXtFr(zVVU!B#HWBmZ4_~tc@lf6yakg9x~O#7u};K9yalaiGIDpq3sKZRNf>K
zl8pCp6O@o|W^<d^E=Hbax+b1C@q&1tHL->DyuaW%X1iBd_Zihcn^aYu@I_I0DWlda
z+-l;>Y_7J6@alZ`Wg%4FA%wp{J5B5|@qvj$CSGHkn%HAvuZbPCRPTMm#G5AGGO?S(
z`4;;fiS@SN--}hxSu#*%p!C4}eJ0*zU9BoOXkvdhl>?@_n2rkXiR8w2HGW5UpEE`i
zkD9~}O?+hHD-)+pd~D(q6Q7wlDhh`s%BR9>l~*-?#KeN#YV;j5aoofS7Ep9PH}OR_
zMJ7Ro?dR3&{gbA8zjTVjJmOZ#QLjWEX{bVb>?`=%#5X3sHSwK^A5EMw@x556+9Kx%
zA=VC6uKeDrnI5{F^Ajf%&UNCYq-O8%R};UPC`_PO0_RMeH}UkF?qw4fgk0hTCFFO(
zKbR8}f12Q0k!o}q^0$QkEBKEnWJ3ST@|*;66DX2EUIM(qnW6cDBuFTm8GTwV5IN0e
zgvAp`h@?aUkpwj1u>|4?{;wjU36+`u#U(KkFte5!lnJ#Gutn$ydV;QCCY7XcDhCPm
zuA_4TU4*0)D49U11i}QaN}yo^jS?uGK$!$;CvXGT{|S^!pejk9uzUg)5^BD!l)%*q
zT$8}U-eJXr`UPwy6@IPo;l0D_5_q_G$k2nm!^#N^YNRn%l>~n69Tx8sR!iXe1ga-c
zBY~O;wCfX+(2>wott_Fp4lAckLA?ZSPGDG{ux<i33b{#;k|TqR`U#BrNe!!85}0Kb
zoNc4#r3MMSez)q+jT7pw#byaKPpBJ8Z<QQ25o{_ruTR(_ftCrhNuX^4!B*|98O8os
zTG%Q9V(SEEypYG6l)^H_+a>T+pRhv$^L~o7PvGN&YL9nE5mMeM0sbQ}N!J82H|F&b
z(k+4RLV5`H%!c+7(mR2-`-B<&z6tb8puflmBrr6qIgk~Y<%1I#lI5@cr>^E3mcVe4
zj1U}|4L#E*9FxG<1g5`i?e1f99X?L@(gemQFd?B<<`Y@E1ZE~MNxYOyPGCxwPZcsv
zaC!pg`=}>bx>;;@5zfwP&PiY{tA#zYZ#Z9s3xrd-`R*%Eor@A!oYlWAfhAdfdjb{v
zD$C0xd(7<}LY616B7v0&+$r8Q39L=v*pl?B1XhcLoXU44aJNYAOJH3B>l3(FycwN)
zvNowqo{2*8Kmr>Rm|O}|O5wo-9!lVpi?3WfoWLU-#SZcul=jk(vKLu+!@{Nn9!ucy
z1fJl7u!X?FlL>52U{`|I+u|wdNG~MtB1f6<X9S-Wd@g}4LVENKpBKVzGwy`DRrrpq
z<fR0*3E!TTyewo|-|!V7uL|xIEUc(H{Obw4!CsxfX9>KSz*`BtFQL2HsS?<iP@lH>
zPWzn%_HgRkSny5nTpk(NE1cdDgLB>$o&5<MNZ>tj2Ssw`n=3ahA1dX1kia1^`(Xly
zg?z-$FXR&ruEqJh;g;6!>8l3sry}R0-%-|f0)Hj&cLK)~_&k9h68JHJFA_MB!080O
zPT)&XKFP{wh9x>Jl#zw&R}yqYgx?7NE`iG@i+r2F^Easp|9hFfO8jFVy)kkofu9oi
zodY(3pA-0n^GpK2C2&?EQu#i4Z_w_HT4|hPPfp+hr?u~_^J3rX7e0PO*}TZ<s9*SJ
z0+%ErIfcbn=MUPZe#`zz;9pMB7Bmb0F*BU!EfiSDv5;$_h=n}s$}R#bcWRQyOFK#O
zEx<y5F||^#&_eu<{9+c0TWaRaY_0rvKz<4Fz92ffg{TF?f@xuauD&>==H$mjA#Pz+
z6P4S91<QhK!Lwjna4hgxQ)c1K$Ec6RPEw+%=oZe2guGP$Fm0hEgDecRP|8ARp|OQq
zEnH=xw1pZLYFa2`p{zu&XrY{i^1`pRuy1Z&1>x6NxY|PH{$bG<-A4UYUG)&$QN8dw
z3zZmTp^Am-qFmKNH4DV+E!1178iI~wu0)}b-dYxFTe#UmeG4~;<R-y77V27fS~PDI
z36(S6dKMU(@xI+Zyv0HTw!**?4J|aXuy<gIZ@1>qOGnZ~G`m>nYN4rxW)_-TXknq9
zh4vEE(n2c>t%cW@KGQ~cTMN&OQVW$Y`-gw`E7n1Toh*!8kl#@_gGTWMnuQeui=FEq
z5-I5>L47QA7t+H*Pm4cBD!07_tpTdioHlC7MAuh@{RI09wjU4<vM|`fLJNy546!iO
z!gvc4EDW<S+`?!Jyla>5MMsGKC}zpR*UR!RcT*Xl8!JhSk<hV%;{;a@2q#*YBz%sA
z$rh$q{Pk3Mqnm1Bx`i3yoo3;2F>+x^?o5&JQtLw^nJwPda)xfMg?Zwg&mPMvEtU7I
zlbcwgrBkZ+F1B!+h1C|;SXd%z6y9m!b_+`_EXzt(Sh&N&a`B##B+d<qtQ4;?P}LRP
zD)HW9M%G%m%feIa7;JG1>nuEE;b9BwE!<;agN6Go+?%z0AN%UiNKG-)ZD9C-g^iZl
zE%~4*Z2wuUITsHMxz^=t`9~}~YT+>!+)^*?H*rKXRcncdCHfN*<w*;hE%0o1CRf`B
zhSp%!j?Y+l*1|Rm+bujNn$Ob+r-;dUTP%FGMa?8HTG(pgrEK1Qv(j8Pe={)rN9@0B
zVTXlRE$p<A`G)vPR?{66?#lAlgk1NQdLQ`7v)Y?1j)nO)7TDNr;ca#sTdnlov9O1e
z1G$a89Dq562Q9qMQEcH|v5<`A?YF?g&Q%A62RMhYW`?@tJihmVg+rV-ES$ISp@oku
zoM!K`@UewYEF80N+`?fCpNgH&1X-ob&k+k}hRZQVzEfpi>aK0u<$iAA3kxSLoD$6w
z9Jy6;zqBxDkZRf61yikazhdpl8@4W`^irQhzOnGFg`X|_V&OXr-_x>%pDeX{*)=Hq
z!NQLgNO($`H~jF56`ErIBn}y;o_fw&_|?L1k|NE%ojqeUrAy8Q3%^^)x7B~KQ1cH9
ze_8n3!bMU3)50YSi$j-9_MPPI9}EAo9c>g5{r@an=HxG&FNn?!3f;lV(bR_}R0cku
zmzO7@yh^mFjRKqdtYFwEv{B4P#D*rJ#ch-j@<V6!$U}FqZE@X3RD>~G{fIMY+7T66
zUhJC^l(1ph7}YU16D!k2Z3${TIP`2JZIrW7-bTuXZ=<9HQMtVwI10p@7CbyNuauC`
z##KT}+bAo9`ekf1-lh62-Qg9v6>MB>qoIvPHm<R8t&JKsYKn428<lKS7Ji+L^X2kB
zZI)ZbMpYZvi;%BVs@baTc<a=R!6C1oqN{FWos_GVjoPAivyB^U)Uk1sc<Tx>^&5q}
zCd!%Z&Gnd*iK=Gm+qlKXSqW-jWBNul0TLVAxYb4n8y#&lvC-5<8yjtHG_%p%M$4?_
z`f`z13-SK_M7ouY);36ThJ^QL?_?W3G{0R|zrB!ahJ>A192>oC^tRE(Mpql%ZS=5l
z<GB28qQf8Vo8}bo(cp$5Ax~X1S3PY^7^3<~9~*sb^rxDQLt|B+q3dUZpWBuW2?t7a
z{{P4z8_x|1d3o1I5^IQ!p*Duu7;a;djma|1N7xuAWF)(UkkK~A2-&wHpYy<2;hDX@
z<AqNUWY9z#7lx=!*Hc6?O>nB<8xnWAjTz#dX=9EMD$f!!TX07QeQuV_vq3Kv7TQ>3
zW8oV`f3dOH#%(sfmJ%(oal4KCZ9HIOsf}eKyvN2JHkR91ZDWm%6(VG9+-V~=+F2<W
z85*u)PaCSL?yLR<YqL7*Y}_UMZo!mX_&}ZY;@x>%4Ul_n+$Y`*HU^4?`9s5vHXgL`
zx{Wt%JY?fx8_%+;Z9F2HPuO_U#-lbi*?3GOwDUM65`E{02<NoTB7e%p(?WO^^V+64
zkAGh9jCc=<<`x^z+jz;wHW9vHW2=xC1%DJBTIQGB?KWPvvD3yb3EE-f6&tVGNS9H+
zGQ^_8!dh1qhQq?wL_xDvpP`rdrj563d}8A;=YJb-+c;q3Jsa<c=3X27gzOQlKP-Hg
z{byLXU%ZUIU|2{m$w3?M+xXDNM-ub_d!~?O!@>@i)a-g<m-{g%v3e?Ldsp76$JAQx
zQyWKYd|~5+jn8Zxl_<vr`7Cfu$O~eh%Abq(;IQyZA(VV&<D`vKHYlX`>#XK!Q80&x
z-`Mz;<3hYY+Bjq5d*MIWDB48j<OjI{<EN~blAp5*XKnmy<2M`UI9F6I+*dJjo*kYu
z%<zyqYJO+0`@QJDHmY<ePV$G1i#GnWammJCoB?e7BMQ7^hM|Y9Q@0$GG+dxY^nW%k
zOT-+9TUV5Y2Uh13A6=J2m+z>*`0C@LuZyA%3LI>3aKD2>2gMw$_@|(XgW?WKI9UHx
z<Z1^I2bzO24$3;v9Yh_(9K;=r9U9^LhdE=lcEdx%LH*A(+kxZ2bgrz{5)LfkS5H<m
zq3ghN;5!H$b?r>j!MPuDc#bJ0UP^u&9Z5SV>7bN@(82QhITZ5d8M=9A)g?1m@!?mL
zhYk;q4{|9f=b*fU?q$;z9Najnux0z=YlerciY>##hnp5M|JOLURti#4@H#=tD+#GA
z*ldti)j>4}*E^{0pc@T3sNtZdgT@YSbx_MeZ5B|<a(Z}p1JiQwZj(atIu3|+1zE<M
z9MltjvxD2(7il~~J!(<m76%O^dP4_|9IR?+?<<+dQAwmi69-Klb;o9B2hAKbchJs3
zdj~B<*vdg`AuR=aG)hymjf1x0C9lvVoi`#R=^&C$f*rG=nIL+*WF=i4&^vFt)x$wg
z2QwVZbkNH|ZwDhBjAY+%(AU8r2ZJTg{fI)C)&4@*R|m3<MuZ(ksBtkwgu@&R7c$hr
zLXkf+LM?UH+@)}ogV7EqIhgEVjHr!wFoC_u!8ixcjtIxz9C>7s>L>3?T#|{R_QQy9
ziV#YsIhZP38>!Nzn=amZBg0t^W;<Bv;7$i~9L#mF#KG+>ri1wo7CBhVmK_;R92qWP
z_9PaUMt5fI+$NF>Bg0olhJ14A)2?8tgJllxU~e3CC9UNg9iql`Yl^V-sBo1?);hS$
z!D`{tcnyMs{D$f$^==32M0l^@diFO5_Xr<dKh4V=CW@W=L=qXUJ-{xv!}`g=&ki;^
zc+kN^4jy)})xk>+9uc+Yn5AZgk2=`o;4ue}J9x^$(-QQA;FE&4i{;J2J6DxQ0M;{G
zVRt06j(u!Yc%p;8#X+6+>doZyqWOY@7g>SdtI6}^z1lVh+Z}x3;IM<29qe$h+riro
zUJ>P;4t6<sRrvKksjg1<nu9kSyvbQ*K;G*T#2$FIec@XUGTS7m^H4JKj)Of8-goeU
z=<MZya<E_cJ_iRR^9LMUzEgY8!9kJ#A;MsESa0-|7C9vHj~sj`q_fCB7S2>Aj}AX|
zaKyn^9Fh(`b8ytb7Y<Ia6HY8VCThpYB^K{l`kXpj((6ZuUrNv^L9Pr>vb>@*;zL!&
zuSI@oboiZvZ-i6$t&r2B!|xsZ;NZus{0!%-Y;LVF;V%x(au#(Fb@8i%-yD3r)-H5$
z&cS&H|2p_jBo`P<$nOsR5OUGMpF*f#V@ya#Lid*l|90??kRnA2GxE!PRp=_?bU8wD
zT@-P_%T*}JV7|!tzl=p)6bOI*ltq_`Rm?^4tc4OTB3Z7{PLV>Y#auPdmv&LcMcjqq
zV#Rbd(oKF?aACQyT?9<gh2z3?k#ga?@LVJ%V%vpz=`L!FG#sN^lR^C#s>#r)8!73c
zlxSWhnv4<(Vd#)C;VjWF>!O^Cn_Sd$QQk!b7uUO}?&4|}*SM%6`qv6p60GRrIu{)p
zs-;4Sr!4**Oy#W2Rb#@c!m9~BE%s{&ujQh)i<-i@U|6|0{|4c81!<~|khdkujlz$Q
z32$~$-$g4ItzF#WqJfJhE}BYcLl(bVL1Py*)yM_2K`-sx>f$dkLf*_pb5YKm9d6;G
zr3-UxSWX-j+PG-zqO*%GF8?J=wL%9M9bKF`tF;%Tgsu~-bnKOpk|AAPba&B1qI45n
zKQ`>?s_Pkhx#;cUm9gQ<q3(CtSihjKAB~9Smo6?3um`x<>0)}mGtk8#7lU04aWTuq
zY!^dW92etUjCV2I#R!QtTJSOrMhix|7$shEemG_h$G8~l;-9{%2JCU+1ooD`g%7qb
zKGVfS7n58}b}@y?v7yJQf=qQWEn|T--`=I;H|rU!gmG#&AiW#r=P~*m7js=a;9{eT
zc`oL=SnJ|07Ykf0bg|UMG8c<nEEZEsT=kWoFEnlw?*vJRY27Z~uvp{{7t3AT>0%Xo
zxCmDYQil`H4Qo^%UhQJ_xR7oQgN|DnPWjy~)`{|ct~$U=$$A&}xVTq@|C=Q~Icz;P
zF5KYaev!X6E<8Ohe9*;1E}nC-h424eJR(6)xp>sYCKr#nc$@`ql1KNX+@1S`izi)d
z7BwbRI6iFOPgN{kjq%~rE}oH~%&VJcg}+xi^1O=|Tx@sovWpj8Y!&%77cXV)Q2(jf
z>RSozbQvG+U?-8FSK0l>hg@jUF(@tD0Cu@}&Bg03-f;1$tL_GQQ<M*|{wGA<a<SXR
z+w9DTEbevLD?#rF?hzcZw8TCa@49MZ%)s%=?0%6i9v{BP{?N4Wpo{lieBj~`rz01i
zxcHD0Y0H9k%hDgQHkPUVLK!bPgJ|Kf;5}mPh>Oo$9F-`?TzuhTN!`NZE<UFz*;BOa
zco8OjLZUG44vBSAy!*Ckr(Jx_xyZ*=KE84BEo(c8r;_;2#rK?clDIaBA6)#%rt$EE
zhchmI;^6hr%EQkte&Ian!SHaF8Q_%bq0qx`ocvw<%~9auJZntS`b+S47Z+Xp>EaJ|
zzuKysof;ozn$P|!=Mv}V398#uerA2azb^jc%<Li0!(|sa9&*JowA=($lk{c?ITi9f
z^>@6Ktoyp4sD~Q;-RC;G#9|)yF4H>w9ML@#_fSH-5l_{mCRlZ2-az^D8tOzv67%ru
zg(5#*C}Mg@c&Or`st3!1?V*f^vK|}{u7|XTk{&z{Ne{k6ObOERpb23U$z<SRPrDp?
zDJ<n76ot})oTKiX5MJeh$WZ<+6U%uhFQM0Ys37EO57&5n)2@C>=&topQRL*?CE{m-
zl|)#Xxhhj4u+!B%T<@WthnqcAm!R4nZeX=|sOh1W2R=S$YMx(|8uhj7h|Z0I|4j(%
z3Nd}{CLv6#%0!jP`W_m3Xe7d0JT%CLj-OJ{*u$+JntEs^!nPB`CPHRU3?G;nHfM2~
z<hBqAx8=VvF-#APaDR1c4{bb5^f1XoTMy4xPxtiD%R@U4?LBnx(9uIz58XU;^3d6X
zxy)U0p-2}G$1mC>(Y(BGT(!pLu7>Vn{LI9#hllBMny=fpku}w|-X4Z}80MjmhrS;A
zdFbz9poc-8I(S&SVV*kb=pmRC)}9n{yISW-;b0F#JgDm*=S1jepE|=mjPfwrQ%565
z2#yqF6uL1U#(5a;sXeh{B`0NTq^}>LUU$<?@Nnd~vNPGk6c39$EcP(f!!!@GJj`Z>
zS=cTmW_Xw>aT|UfOm3yq6r=ESz#I>AJuH+UO6GZ(PyJGAck75r;R2Cg=&9;~LhhBl
z&BGE8cd^?@(CzGF9#(l+>S39OJ3K7+u)@Pi4{Iic+a`tIl+lh&Qti9#I*kVvN&cD?
zu4X9v2|LmVH<Obz4-7WUBVXrXy@v-qJjC*PxYxr55BIZ!Rmr_iYJkmD<PTLX8T|)5
zY?Pb?lfx$ERkj~y`yMFrsE17=e?;);Fq_9PRdewEAF(sHRl$=UHhcKW!)Xssd3f5x
z0T1tac!ml)tsNd-VYl({oQEwQp7-!F+o(d`3m#td@REmZ9=3XF(+eHVPQ0gB)yZMo
zRcc+gT@qEoFCy$JKTeCh>S3n`l6@X_d3epkZVzvJc-_MrqWq>{k33ZgH24-f>SUE$
zBKbQKx>s<IAaA;xC<?Usu1NNKXnrB$=jI)h0)FD*u!r|OeBj}bDA3wRLOzsi(@XcU
zC|}IU<1vj-JskCLOza#H{7f(>H}ANI&n51c9=`Ap;by{IHE*0?XO<0e_e*9@iq0v)
z?^YK3+QT;<{^K<3;ad;iarWah?%{h;IO~C>_<_~J`QO7&ocTGYi5+qpzZ^Kfh-B}8
z2<6qA7gGP6hw~D8$-@O9)cjpcu}hHu!P0s7lf@TPl>9q6{L91NqWq8Gzk-#fgiMGo
zCyCr7tR(CtiX@SjRH^Gp<R{htuOAr@DNLfM2nz%=narHtEtW*_BuXUFXi6AKLQ8_#
zW^}s#Q$lh^k0!yrSg|DHNf=3(NhFe3KP8+qCFC@6XkP)<xKDfQl#psp66qvLCgCRG
zC6N^4wB{#~lGIO3Q5_>lqF|~b#8OFw5>!5ktCA?41Z%9UNXjJf<0kckNVos}NVz2F
z$SX<Q3Q07d8eT1uDO1CWNnDr2_#`GIQ7MVaA|H`Nl_aVr(IJVBNmNVX`Xp{mqDd0f
zlc<rz%}LzStVGQuY6-b1iP}lrkVIYaGN_J_Pb%2t+%!eJF^S_V(<F5DM46;M)skqC
z1U2azCDBlVKB`y9(8j_uMrgcg5-pNwnFQs{Sc+^~45D(YBw8oYMndVOYnw#7B-%@8
zMkj-e-YJRBN%Tvie-d4i=$b@NQR|k?NslDDXF2tm2V$=zdMD8*n{MC#-|_(Q4o+f7
z5(Be3gQP^6{0tT0u>TWlxNuq?Db>z48kNLo;bR2H3XaQ$u9+H6Okz?J3zJxs#N?#<
zfuNh2#1!FE1*Zv4PvZ0uYerUwd{z>(#XBd7c|zu9LvI)sp`H0jED%X1)?&%t+9d8u
z;<hA~ByoEZOOv=$<jW*iD+KQlTrSAP@Stw`O5rTguX%Z^M1Qs58o}LDL)OXNNvum^
z=M5zu;m{x{SGXaG`<Vguw`Yspo5Ua03hzr|{@?1t*z;4v2a@WpzXy}*DyNM}O!sw;
zN4keZLgB+nd{$N?c{GVlN&MBh#AEEn8zN6gW*!%G+T}bcq}Vhyl%7uVQyoU7Fgk^2
zlX#9zoKjz4w<PgAEhO=G5-%k2ViFHGu)j@WYZ5Od@j()YlGv8S_9Wg(Vowq;C$S@m
z*OGWWiC2<%HHlrya^a(;bBQ~JZ?8~TXIjWbH6?F|<jo}BN}^0dn-aR+66<XV;-?Bq
zstrx=O=4dX2Sqqwc;wwA_9t<GMHn9Gb1~=LPLcOmbq(yg1M;cgVOlu%X6^kXh`WpA
zeVD{YoXuD*68&Sr!|cyO_#f_>bUzjEq-o*NB#tHVWfCVjT9f!Zi7%4a{FwGzRaFY!
zHbAo{lGr#+Ev@$mo=V~?_Ov8Ui1%wT6`LM@BZNh(HC-uxm&Es6|BLXaBz_k1qu?1q
zmi?C`&I<os@Yf{HC&7yPEs1kU9PM9%kH&Pgb|G776#kLKMbZD01Np)9r6f4PQhuUo
zVYlhwKS}({DK3RdDg4KYnlow&ehN7$<fafyA)Z2!6!KCio<fNf@>4(x#ZqwgSw&N7
z+AK(+FomjeJ9P4i2yd$xG+p%^x^>e-szp-JQ(%ym!sE;Ho5^oMRN_)dHA6zlT_I))
z2_aSro2Q4ia7Q@3RHO4KOkuAilsh8~#9BIqk||^?mr5Z_p+X8*r*M^omQA5t3Z+vh
zlS0`UVeM{i-5KGcA?mKD@+q~}V&0f}8ox&LDZf^dru^xt`4v-WKO;<aPFGH$N(xO=
zXvR{fP%VX<QmB{0^(j<Op-u{QQ>c+b%@l5s=(WTeBi2sgb4TOv8aa*suLekN6rG31
zU)gtYa|#VpXp}<z6mF49qke-FxH=s<<4WB&PT^MOWMe+fGPFrH&&ykC%~NQRLdO(3
zrO+~kR?NACwoajqkhX%y4ywf`Q(rtIY$p<u4nppo5mMecg)S*{Poakhy9#y_d}T)X
z<qXvpJ*AAjM97Mwgb`_$Q$(K>`lirNri=b53>8B803icY7?i@`6#pbwqi{$H8)m30
zt>_&l3d03Q2#yrw`*wzoNnvaX_oi@P3gc23pTfKp=BF?rg^4N56iwQhl){uOpUi$c
zQ+*4jo0`Hjkxv(#A()iVS;A)vQgcoUbF-YEm=_3Nmckt=EEK*-aB&K^30WezGzH$u
zb-VCYOG|8?k(c>Ay*!20B3vQ3Qt(bernQPKE_qm!!demDmBM-<cMGmdfzRpG%-}s7
z4pLnkQn){bH&S>rg$GjD$mVz;vLl5DQ+P=Dizz%T<S}-n6dn=&sNg2S9y7!K4I@va
z@MH?laFQ3{X2GXZ>cs9-!e`G6>1dqpxfGrkA^8>|oi8L`$Vx^}wzsD6l6beJustj1
zdpzpDoI=LnD<Xe2g`GlnrSQ6t*RuK<wL8Ai-b!J23g4#iT?%if@J<RxQ#h8w9u|CJ
z!MiE!moB$gaG&6s-*XS7@LmcZr|?M%2UB=Ig%4BsD1{Hiv5OuO&4U#pbo5eA%)CZE
zoWiG^H~7Lwgv(}zbVpJkW?mp~pBWzKa8BW?6i%n`1&8Wh>qH7)rf~jL5xUQ2h9?;+
zC&bB5i2})i;rU;u@J$MDbysRkkr7G0PvM6Y3Vam$_>pbR!JfkJlKM~VQ7N1i{xe5(
z$q1kBe@)@H6pR-N&WW5aglX#3Tk5sOc}B0Tc5(la!bQ&HK5~8hnZl(M{z>8A6#kMZ
zRQOxS<=0)>`TT5T?SkC@Qn)ORUMkQ%P}?cutD4F80Uz|{2~v{z5=2r|6#iXQteB9f
zkC>3+K1%qA2p@K!h~`80vF6Ew?JsH<&#JeJaUX^c*M}!MrVrbP<0Ik2^40NGesSaH
zIcnDEC@c0Nx#USvPWkYKjGk5`@R9aW(nl$uJH73X7N@xb=e3$??m6K*>Rodq|IG|b
z`zYh%<urDrQPxK}AM*mt4^ZAm1t0JEIOyYQAJ_O;<YTdqYkgGo(ZoknAJ_S)<l`1e
z?x{8Tm3>t6alLq}_^8V0vx{Zk@KpCv!^e$2Zj#WNK5F~8L3k~}^ek1JIzH<9nAl0Z
zvZy#KB)NH3SkK4JKI$_+qY83|7WsEbk-VWr$p0Inuz`<;zUooDRkD$oYV6}yAH8RV
zX9hcC#cVSl&3z2>G2BNBA1!@!@zK>sD<7?WwD-|LBDV3-PDoop=7HCb@R$h+T}L0C
zM4owQrKB?}MC^C-(cMQsAN_sw@X^ypFJ{08Z*<SZWzX#6U)jCT*T)u#RqBl^Z)OJg
z80=$+kAXf0`FKl08FBxta438J_^{F0BIDn)e|Wuse1wmYKBoCx$6}O^(LN@y#(eM)
z+!)E;I3Ht$@EjbCj2B*PwyNI0a@<Mm2_l)yTB;XmT`WRm&{PpF*%+DOW2TQeKIV#K
zmXFy&Hg>r3_Ky|9jLq{g-^T(U<eAsh3z>7-5Xd_=Y4A25OMGnbalen-eJu5{e0I3j
z$1)#xh{4sAuwTs%FP3sw`B>p&rH?y(be60R6(naU@7P(xDz((^$FtMa0J+P@-9FZd
zow4=w^*-+LaW8vUv%>oXNshKIBzA36>;WGeeZ1&ntLQ)I<0&6c`*_I5!#*DI@u-i-
zeLNwdn|wSbWacxGCuWCqOzue^n??BR>@ag=@_@*n5g`?x^YLs}f!-}Xp63{!6TToq
zk6+W~C_68S_cb4{``G4VJI9@m9U|N%_==BLee4w8a!yFcSajos@ZT2R@bRXE?qhBH
z*zIGFc&YQYkat)ubHe*?h&(u`M72(ly&~k_&{N@EHkNq58<AhNPr(6>&^`rE&I#Z5
z@d0Ov0Hp#P^6{aMFMXW!@sW>@MgORee}lYFe04zVQ+CMDiXImH%+T*!n|FlcqM!bm
zU?#W6d>r?2xLV=oKECkPzSiTHBFkGBKf$@nwn$EK!1^c>ATPjaA7A_U-Nzq%|L@~l
zA3yo{Ig?Kx-~0H%$0Yd%8m`Iz(Z?AHVnV^lG#$w=KF<0$=i@vl9R3}QkKeL7JLiP&
zX6x_*^IZK(AO2-dcu{ozVbS<2;Ny~b{}TM0)8^bOHQ(}jwHo}-$7LTmff~-$=Z19e
z)X01J^Mc#}?dFEP=Z5(K5I_r{2Pi6P)GQXDK=^@UIfVg6h|S^wN(AaJBsij}6A^`F
zbHiwWSO7PGCz5yoGeAPPA;>?Pu>#luoB&VF4et?aB+tH4@Z#L?)wy9()KUR_A?yCm
z2?Auc5vD~#&V|8|xnUUKssObE{xbqf2PhNZ`T$eg7M2ZAPBg1>{tr+=c;x_B2e>A{
zb>iizy-lt1t_@Hzz}VlNKj(&PpHV}St`ddwuGCu<QEomjtQO!s+0J@@+^Qa+WXr-D
zf;9!{ttF(@Uy(Wi>IUc?pih7s1Kbp#Evq*`y#O}{xHUkN0QCdh5};9l#$vyLV8Z}^
zzAnFmk~$}CUJ^yej@L9mvj8muv<%dtnC8Tpd6(q&?D9{!tpc<T&?dmFdEvN)YHdJA
zLPtsa038B!4bUw>#{iGc3p)kqEGd$A5%Qj-_+*}XT<RX6hX{KG=qZG!cQZD(?e$hK
z%O&p{pdafkz&KIpA7D^`!NLaw7%1e7*c=jIXn>IcMg<raV7LU02=L!Lb$w8s`Kq3~
z2$GBrFeYP!m&{BFf7_~V-WwlaLV)Q3W(1fRU{Zi7qVwvtMaIkzCktOVKU_CIoEl(S
zfEUEt2ZA#tbasF_LS_l}Ia)AR2#s^wGgJSszPlj6!T^=isFKE_0E+`03Gi8f+eGuu
z0ILEl32=LWr2+mq@9;?V9RZd}D9^C)nBH>s^U{SY1Xl{udvSiaI>4F$+X8G4ur|P5
z0UitRc!0YDtP5~|fCmDsXZy;3d)*h{o&fiX+2jIMIggZ$Y!Gj?1tIU#-WcG)01pRv
zM1(5_sg>bF0opGJdoFMu4e(3f+{p{VO>6~`Fm(BX@Ci|VCcv`+o(!;=LodK(Gw*4(
z+O0WXoG2(W!lC0|g;M`H)?t7b18fQKyhPkJ)8QV@3GIt-4N&cH;w2H@FWD=%QvLeB
z9AHO)cLVGX@JfJJ1H2vJod7!n><aKkfHx(|ReSSa3-G$|UQf6+?ZUaIBYj%uz9o{~
zf)&TPdlrP_4yv5&39wg$ng58SWM6<w?^@q{S#Ut)hXQ=aff?XnfcHi6fgm;c(TDiO
zg771ed>r5t7FqI4`C$=$Dp+Nqs^`WF!=nL?1^6|<Zvl=6_*_DN3h+gM6M_1(-5&yc
z8Q>&Kx-k4sLQiq#5Abz>c?-j@1ZnCUHqgS5?pq<0(9!!nH5Z1AOYceD`cZ72p`B<!
z^+D?U)X!`_8mXzDWe;3ZoR>>nUKpMWa6UjJ4K0le0e<J$VL>GIKLr02yqFz#mje71
z;BWTQ06hNxuY~f)lrEE#OFtImq>-COv9uc3MbgMiqd<7RAkru*B(X?Exu`{s&57{6
zVxb5#A3ll;XK0BuYVKD{FFlQD8bKQAG-7GQMZpy`(nzFX2{#3+EDER0E3ngW#LMVi
z7KL<ted?u=6k#e2KaJPFEW(ecyovYBT9r!4G)kpWK8*@#glSwQn&r~Gf5tAIMj0;t
zg;SI6X8Dl!(00|A_?7l*QNA{fifLRUyiQDY61wZs>coAeG&b%k;8^C-dmgK)nntxW
z=A|(|jqB5>PMtKGrcr}MPQ%=sZj?r?G-{`Da~k!<;0=N|r7?U_SSO9TY228`r)LU&
zKcx(2whPuvW7UZK_{-K!SLaP#6yA~su|XOQCGLtv;g&@qp8{yVaT>QuLQkJ{>1~!q
z^E3vgF({1|X|znEYZ~3sXq86mG}@=pA&nOo=eH3%ZPVbNyYZlXJMq4{>B=g-V;Y^(
z=*%{ns-_OQJ*@e(dN3qEw<zqMMh}V7KaHMg^h%?58hz5>4!4Kp1Md2GE;aj#PCuqz
zOD!$v8lO`QG(hA#N8}GqV@Mj4(wLma&@_gnF-C%h(^Q%_eCCa0BR0w9>B!7?rBP{&
z7KJK<Rilh(qK!>sTpHs=I3bORjM(H#TB*hAL(;kebBct{NMk0ekxie*^#4cIdq6u;
zyzk?;J=_Z<mwMqMklooNn`}0lfPf$<U;`DT3DOjSFG!ar(u?%od+%L(uY%G<1wlj+
z6-7`$DHae5{+@k9{^#>QXU=<`x6C_zc6WAXRwS&zb04`6;Dbu%@Gpl0eHbiqS0Z3_
zldK^E5>w4E!4rI#=)-WqBYYU?!zdqGwaOaf!&o0i``nvG1|B;wPHf7LbO*?I(GuJ&
znKj9W$v&*`VI^DHhp9fy^<kb5(|nlj!z>?WOT-yI%w%`%<UV5XdncYHMOyjv!|x>L
zu&(Z=u*c5#VSx`zeOM;3YK>G2*+p4<!Y&a?5BcqEo^DOBTqKhuS7h6cRI7Yg?ZZYN
zHi>GD(Dgp7O~zfvRz91DL+oAJj8xS(q-^k^bG>|@k5rq*W}6S&eb|z;-^wvN$=7?F
zZ-+>tvSn#!Qv2ITwa16OKK!cTHx2uI*iZi&Uej=ZW7!9f2Cs(q#Qv-gpZRdehr>R+
z@52W^Y#60Z`*6g^1E6ryhmY7xN2%(g)G;59`*1>HeJJ$MwTE|W-A1`h@Uah{_^`8g
z=44?hImP*{x~pRNR6L)Nh{r~$a~zUB{Nlq+AI|&mg%4MK_|b<ieYoJm*FJpX!&hR=
zxEI+{a?UpKgNte3`f$mI%Rc<z!*@PBD?d{CUW|VprN;QO3XWD+=)YrnnfocH{!969
zipLr4X5%LxZiv~nr044#-J=!zz|R~VqgCPy$y+|$_TgV29{6yF)#$??KHQZkzj6K-
z&_`bTPO9cU(ccrvpFZ5@^!rm9zZ<9UFCYH);U7^wcRh2VWZ*ra|M`%jAwvT+q-sdh
z@WYsg^FX@h&H(G>A?1=7=h2X*A+Lr^3Dl;KQTa6Yix=Yj8pskbgvY3C4Ns0yN`s-H
zfQEt^3TY@TK7AT^luZ#0B{V#up{Rx&jW4rQF%88v<O-&fuLnQe0ZLF(Ln#fVH7seB
zHF%7BUEqjjAlUc2TnNOoF7(e&GW{9?8lKVctcIWlQ$u+T6*PpHwAjQoSQ;W491SrI
zwg{sdHjhzLlBFPKa7&aom9&h8vSRkA&~nU70ryhEz(2G;rlBH>tf8ugN*W#)n<s=`
z*p*vZLlq4K7sjYx#V1!bxRg;%Lv^uvT9fsS0+~+<`}i`S`+i5x19?tE4Gj%6yez7k
z8eY^;OYrj=UeM55J|X6cM{Nx+X{f8Ao@nc6c&l$ZL-ts=6!lrvow9f*kht{!(IvN`
zm^IeWL_;GDuW0T~0xfwK6KPY?5;WJ)EQza(RlRDaFtpI{x`q`RR<gY`d}rkAtf7mB
zR?H8L#lC~kHtb-jIc+t(p`o4hmU<&I+SBJ)_nyDkST$>`>L`|-geJBDzNw+BhVdFE
zux2!L*Dy%KU=2Mq^wiK#Lw}Y|?BCYVTSG6w6B_t}UGw+R&{xA(QflV^;8?{#z%W3}
zLgUmx4Q+?HUH!pWHAKTZ8b)durD3RsVPZ2vXsvN>#NmQ_3tlgDv`EGZ9mB>w>rUO{
zG`ug`tK-x}4U;s?)-XrIWDQfqa+Zdv8m4Kuc_C+p7*A)1tm*cyL_~s_V%hDu`<|Dl
zQO(sbPvdV&utenZg)Y>vKmcw28K)L$;J;?dk9V`WR0G!&xQ4KdJz>1!!UDr`G43^9
ztrD<N!zK-@*&qB_Yc#CYuuj8z`fTUhpt)y^bY0_)sdqKhpXK%h%K5j!%^J37IIZDR
z4O=yA)9`_YBO11A*unW+!$A!@HSE%`N5fur2^pS@zFQKVIbQ9f<#@F}ne(&b)g8(6
zdm0Y0Hj?tgtj`G#+pDAiURI83I3@-kF~jngx8oX4Xt*a=x(_v+<nT<%YBNDGFj0n&
zHGHDsl!l3~Wb;szp&~z{;jD%$8m?;iOv5?$6Ac$Na5L=Z8oto*C2K$u+WL=s4ZWb@
z)y65!8>aJrF`M3Zhve59zG3M!d@p9-GCvd4CBXy?Ea_!oY5ao*vIK8ETkH#u`#Arj
zh8r4w=5X%l`$@w!wwGY47!FA$e_;>Na7&!<oZH8adv9yF!x?5m2Fu95ebMstQ19;=
z{$L~O?wGyHs^GNTCcjt5p8_6mO4nV<ePRF7@HYpzhJS^n{6CgjgZ@l9@x@<@e?CE_
z=pZGVrXyWPh7RbUD!-0AbfqJ&uvy}kW{jTjkWb{aBunZMgM{a7!3BgC)KN%4VWCBY
zrcQKI%+XOyM{#DpP5v@E%Ie6~Q9{QfI!fvY>M*64rG#oa?iNWet;44yKGCh-Y7>>N
zL+LQYz^@}9pvgqVKm&$w8*fO2wvMQduntQ{gelf?pSE~R96{|l9!E!vZgo_>@BWx|
zt(o?PFO`9q^idt<bkx&%J^;$=sGy^oj_Nud6VFw2JfWkaj!MEluA{O5#_c*$4NvCe
zNf90$mQhv5d=Zj9rQ>NGFX(tt$1^&f)loyto)gMh;^<!~ABu5J9nXvKny{l%-2B(l
zQCr7L%#wVHOi3NFsmrFEq+Wl<TVj%14-IsF--y;!>1e2<k&fm%Ue)o6j>bBg>S!jh
z3d!R@6P9a|^3=~to$OAPoyR@AH+W4)OC7Crw9xUo?w-WeXp&-}4MX?AZe8v9!qY}a
zTOFNsbkXsKj&?daigPacPU)K3UPlLEQ#_v3*Rrnu=j|jc;|>s4Z|dl-qlb>JI=YGK
z#y0PaWGX#%yrrX;$YWpRFeFkxHc9o-(U(;ezzYHN)6rkYbptmHcbE*&aaG5U5^JE)
zK{^KO7^34H9Yb}@(J@!YFdf5n%+N7Y#|RxGbxhJRS;r_HqjikeF+t*v5jsxjSoWF4
znN1qyCf*G(t%*7q2zXor=@h|Lcu=kGo&!V4{Yh$?4$|pDy_409Mc!FD`W4EY&D0lp
zM?9ZOe4~5DJoXbE@98+i+Saj9#|9l6bu8lHKRQ<HSfgW!j-@(Q=vb*^nWV)emJ5ha
zR*fgSc~~WE;$2=Jk*w9RPRDwYCsy-lHg<3Z|Ks*9t3qrx>Da7emyX?HwnfKQ9oyJ>
zVs1k-Y}c_v$4=26o~*7$+z!dG_lP@%?$NPN$9^4q#eny0HSgpea1%}2q^BJe;hD+m
z`eapfiaM<0eH~|Ye5T_A9Y=J0qT`f~qdJc1_)y15u|F>KgwRS;)N4~zr<U#q6(5P@
zW1+pLsB6!-50BHQxMe@B<5Q9Ip_uF$mO|v`IO*y5R>vhB=XHF+sZ7V$I=<9#LC04T
zg+pLDvQCQquR<%dcdv}BqHj39>bTd1?{s`G#y<$Haoa8X<%Fb%Yj8zyo%Mx((s514
zZG}4u*LB>`@ti^pg`ai&!l^^KedZ>+Vm#{}XD1!EbkzL2=xrT$#KW&bf7kIF>qo9B
zMW(t1{DZTisE8{~RrhuL#aUFLgu>rC{?U<7A-}@EIvz033K<Ij=}1vXl@uB4_MViw
z;-S5cG!fR|--Q+O2+k`sQz1*hE0Smrp^U5d%kU_86^e*9TWCRrLIMg1HUD+%Wa(5@
zSb>3nY*B?Ag<@h*TquRRMD^8F^@u`Ag_uHIp_D>t1ydoU;8V~P3<bYL(S<6--`RVv
zO;vxca@RKkA`B*dasn(k%}p_^U@1hC@&zBHMigve&1s6E<}~F9OF(;uG79As%8Rh9
zay!POtcNe%X04#`m_kKSwHN#A9numX1GL~NKnj%=s)+U}p-(70sqoP;cLt~`5`t<1
zstcVcPM%hHCaHZ^xgS695>Qj|m(*CSutebng%=fGRd`LImO^cX1`01LT>L!kC51W?
zw`yl!+wsNg3a+P6Ux6PpFgd=wBW<X_+Y*MR3XKH6qR?1jPsMcJ&@wb(&d(N4*fbM^
z<_fKT^-|J8;dO-p3Ii2dQmF8zLRW>>OiQ7ILPv!*l5SgtH<<1;)tw*zi=@5c`ReX;
z-9F+r)A?!KAB@hT>Z05`mZ|+xd7K58nC?kcbW`ZA&`aTMg&tzolbKPVF+;C^AHK`x
z4QFqKJ_`MndwbAVVar7?LqCbK^Kd3Z!4%KbdhW;_q%c@vio#TdAqwv(j8Yh_FjQff
z)b>b);S!O?Bbe?fS<d2HiB~;UWyAg$g|P~g#Ackrc!dcH6FH_N&pFf8p(}3b%;|20
zA2^sfSz-0PGy<~I6s9Z8R+uBvXDG~6n5B3Y&BGPQ4)@X$kJWP(=84Thg-@Dh&lkLa
zqqt2rhPn4AE5_$?9ea_;YfM*5ng0%Io5FU5WeUqhzCvNG!a9YO3agk6mUp;Xqj)r2
zzQjs3{j{B~)+@X#_L~(p2%vl;iz!7Q-Xub@TNJhmri7N1>|hfse5!CpVVA;gg<}fG
z*_RadvOX0KDeRLd2a=xm3*b;aC?NZiTf>JH-d8v(k`EM)u(wxp+l!&lbMEoT>wk0~
zwK~erp-yldDSWK(p+a6O{bbVf%IPZ8O8-RIQ=&?EIL*9GS8Ypq&nkST@SVc<taF9W
z6~5xYQ8>?@$%YuL_#phHM86;`qtFBY*PM8E{#sPuu=5Pf*z;}Lw~AZx-2rt;Dk^ru
zb6MdBg=?JN6|N{;RrpciCxygII$Cn`-4Al=6wmMNHmLXwPW}qNDBM&an{S3<NaVTd
zhi-?tr9i+_d4E;-joseBn+ASY_=96#Zfx!<+*1e}unhdkgji|=`3(HU$)9<fp)$nm
zAIWEmfqxYq(7tAB**59_Nrz`DT-7H{HIQZ?UF@|Ps?rR_AD6&D9s`*oq)iq<GKb~P
zm&k9xW1xhAM+|rkWE&`Aps0ZYVqeHWVF3jV^i0O$#gu^)X^yD2&rrn;6capmhHAUO
zlPh@8FgHteCufv2pc_yIN*O3^z$aR&Gy$i??Y$YwFyJ>3G+;76GgZKNICIjHEN9W^
zK6knZF^6kCp&yG!4A=&qrSnHUQ3H;FN(LS`5Hk=rP~JcV17!@9HSnl`a%6|Py^-|w
zow=2UrZW(eQuvsGipg9hgrt=XR54K1Ks5tT7+|a?nS|IU;!;xGz*7dEHt>w7C}G5e
zhXf{l&H(?hSi?X~1J6q;FR&_lxp`pH3@?iF*i2R1z)J?|819zgR}H*opss<JXR3Mz
z>KkZ4Y~U3GjSVyuKaC8GovGfQ`LMsOnyH!?XlkIDf#wDd@67v07w@-M@*LTjee9Dw
z*Lu0V@gp&AVW5?P*5c%K11$~wA#(THXJB8?%ytIai?)q{wg%oXuxV`GCmzk_@00V*
zQXLFLI%hI;63~&AP$nxO=`0emT@7?Iu*$${1Kq_{PXlim=wTqYTe0yeDUn&Kmw~qp
zj59FaKyL$m3=A>wj)A^n-`~Ih1N{svecc_xeY?5&A1JCpiM%yV8EoL6r`=oDhO^XA
z5sox4%D^xK!wuxj${1mQw?;ImxaHwhU^Ly%QezE_5kM7Lt`(FSnlZt^L<2Jo%rY=Z
zyiq&Fz~m(6Y(Le&G-0P3V3;BJtN$xDe3sh^vklBKu*kq-19OwH78sakV7`GJVsl0)
zU(+l!-0$@G(s>EXXyDg6nJWzU9K~e@mNQ&SBj!%$A6h*8-gu=ryfsU$5wO|776WSy
ztYdfjIc>dxciBD8=lM<Zl<e-^Ab6wDO+u-fSHZW{z%~P)7&v8MJF_INju_Z!V3&ad
z1`Zn7EyBI*2?q8EX3_G_R{I5iw8Om#KRVo95_yk)g4u@+yw6U~wwv#^QDnCIKrHLa
zA1!Onc5CLSfny>(Zs0=$Ck3A{&`z|uL(@Mp@UaMKJZ`o--q&8rJZ<1p1D6c0QsRt(
zvj)B}@TGyz44gA?YeV{ZiSoJO{`mXcY_)r~;zs7Re)kUTf~dYSa8baa&Z%D;sP{(t
zHwL~H$-k0x>v5UI<~;m-@p}V57`P(Z%bZdsW$^Ucs~p;M+#>vB;73u}MZH}Aq~w~g
zjpwMJ4gA7sHh|0kZZcyWn0}1&<F<i29I$>g@#9wmzj5UHv7k%w-#Owq-T4vl<F0{w
zoYVYV)5D(z?i<MRBd;HS8Ti{kiXW+d{KIMAzykySNs6)T^xCf$cZ3orK$;)ve!!1B
zeq{LFiyBo7ednmt1F~q7h?Oa-wR2QHKl1xgz>k7{{#QNS<L9r{)3g1cXRjYLAeb;Z
zg_QC_A}=g9Wa*qya{MUfhtChqkK%sh`ccx4Qht;Whm81$fP^t)l@=$ICo)XRR6d@g
zbU&1Mrlpazp?%N~(~qitRP!U`N7#?Demv@j<wu0}e#HH-{fJ759PvP(42iNcp#-3-
zGUAq?oFC==c-)W5epK+|F+VCwCaFr4G!d(k`22m2s^Z5Jemt3Uo+t}#7?@CXKc4cV
z7M=U?v>(s-@thwul9m5#5-?UxN#zAUUi9O6k<&xzxr$YtNRb(MNo?x+QO}P$V#6d7
z+WLMp@Z)941}!O1P`YX)J&K*`6#+Ak<}{VKt^8>1M>9Y6kH~E9ch9AN)sNTwXyM1}
zezdBW#TWPW=RUl4w3H}4$okR7k5PV%_Pa;WwDqHdA07R8L)dmg+Y8ODmqLS1esuQp
zUoGh2M;AYMY7j$LKi(8<BQ+uECT#FU57$O|`Z3av>4h?h-}1YwCB1~c?MH7v`uO>S
zUG!rpl*v_;{-PQt>;OLo`Y}i(?}%iuA43GxZ<?A|avA#nXNUVSA}OImro}axF_M`-
z_qkc+1WP*Jj|qO<^y8Kv6aARv$4`D-^JB6fQ~X%N;o!$qKc@My*pDU5JoDhkTtDXd
zF;l9JD`|5C%n~|VD9`+)yxa@!qrrSX7IM4{bFWql{QPB`+e;TQ32B0rbJbFbvO?%G
zq09YXIGr#M$tt0YxLN>J>-<>n$4NgvViWtZ!H<1xaX&WtvB{6^e(Vs-&3^Yxk}ZPo
zG)~>>$2O60t&f2YclxnQw0nf^_Jg5QA>5SI_ll5aJcRau9|!$--;WRcc+ZbRejFAp
zKg7*HPw_*b#A~2ZvoenOanz6B@27p}$1$-v?#BsEJM-LLw}1J=FBwYDQ@`AIXY7yt
z_{5KI{P@<7Q!Kb2pZjrMB7W+}SwB7#d`9Tw;^Z9rzpQ0d`QE)r_`;7b{rJj{iyUS1
zl>hIv3;u_n_qP!HuQ^{eP5H1=8XrjtbjZ5o$9LlGD$V@vpX})52R|+g=E5dFyt%>}
zmM0g|AH|q9Tq?ZI{G7{S*uBxEH-!CJ=r4Y378T{U{rH2EyvXke{Z;61LVuTTMzedI
z{5fw2T%Y$j`HMDP*uVYw&ySRIIsb_8U!gR6Ab<&_h*@gDwV^yMfRlffCP=UZ5CgJV
z0pty!?WMGuBFPuP;{o?<jr;+40`LZq9e^D`G=KsD6b!%!z#l-N015|CD&SsIiUh#V
zpK<~yCT!6FR(au6RmFuJ^_-_f0J#$SNrgWWK*<2k56}NkJd2^wYq_NZJdnY4r3uvo
zm?oA=Sjx!;k~kbdFo2Eolo`O0c`79Guf*O8po=Fb5<vSQZU=tvq}LH`nE=WL5KDT9
z2f!bO(tzR70LleWUR0D<NZLFW0NI31MFEupxFe}l4xmZ^Pe?7XqMjD;WB^r@l4=1|
z7yMLGQu2PzGlHK@N}dx?gBkuREpd8D!#tiB1E>{1s);lcwF7u5fdANnLDUJLZUAco
zSQkLO0O|)o<52-L5YRq=4gtJO96+N0UJ2l}09pjlIDn?9Ztra-`ENot;C^CSD&0LG
zy}1Zq723OJ+MA`^HJsN2Xc<5&HvN26vYxlKXxj??zW~|<kg)9E(;b^{1kf%Sof4`j
z>=;0=0NxIuQvjV=x&Yo3n;zn`YXIGZrGFZC7fc~BLr(#337vT&lNsn8zz`{8p8)!D
z{a-N4K2U7>2QWYa<5I{lD1gDDBBt;i!9xQW7QpZTMg%Z2sZB(r83F0&0LBC`Hh^&f
z%nM*X@xt8kLZ<~VA%Ka3CkdSzz|$LYCkvh;lq><m^Z;gvWTw#BVmT{mNrO27%oQP{
zFbReQqFoli!T=TtUMzH}m@WCAxQxC$fE6NHDRi~itok3DHA(;L19&%pYXMvjU<1cX
z00#m%7{I0gHV3dXfL&4*TLRcBfCn{jmm(`|o3Psh*dc(D6NB6f({6gZo3&qrdxY){
zU|-UPajCuIbuHfu;4CMT01gFkIKaQ6<AVTBi{+63j&d#v;G+PJ1#moo69Ih4v5=n5
zz^&5>db)2K1KE!Q?iTn@0yrf$be^zD*ncWMX?Z58J;$LPz@-4bV^#aJ&IfQIfUg4h
zLM*=&+9J)(<i!BK4&Ymnj2-7*DZWYeC92pZ*pYbJ%=ZCY4PbwP?8^cC5Wp3|WZh!&
zua^a~e-sJXpTrd<Hv;&X15H@Uf8qUq0JnsthuZ;nHz?(IB!|T831oj`dvX7-nEesJ
zT><w3_$z?F1BlF5e+F=$Sz76<HaCmxKLPw3zyr4C|9N`$bxTA#Y(*|<)%hwlh_oO+
z3*uZ5=|N-!@pwJ&=pYb8o*-HV(JF|{AhLpp1Yrk}H;8;eTxp|J5cz}f1W_c2qCt0H
z7QB_>4I(>;0tq&VLP3~ecd#=Q4uauT8P23RK@<z(kswNnadDx!LG%^_+LsUsS%y+U
zXrd||gipY*JRZt3bF=jSVT~aClD7cU4I&goFo>=DJPeofr2aA}Z#W1m2!fN_Qa+YI
z5DoH2X?Q+}7lMcd5f7pgD<Oz7L6ns|JSOzfAj%6UCzLsyD_N}|?E3-tjKqq9`Jr;<
zAgTmWJ&31*ctV6#g+3|tutcmT_~-eGFAy2`=^&mB;yDpMBQ$e?s=*>0_At~8x@V#i
z(314UAZi8CAc&WPs2v11tWo}w#Ny_rIziMGTrY_FLA<^|m0zH~Y3<=Rx;+-ChN5a5
zL=ypxf_Q~ZKRAPX=;)+r5Y5<3LA)l~=0Znsv3G$x54Q+%M|S4x%+-(XKp<w|HKH}m
zf*2SCyLy`-+6K`*h#tbe5kwaO?Sg18phFOy1kku+&^<MppmV~wl8YJM45F(@x+N{w
zFHk*$cuUy+LG%*f>`Unr#M?=m-U3)reUp-YLDbw^IN@`E2)kX$Av;L$;2?$s@lFs!
zgBT`~kwFYk#vKvFPg@EfU*N7Me6`DUGAf80!j1`IY!Ksu7$3x{AXW!4A&7}VER*V*
z6vSi!^MjZY#MGd>AAc692w874f|xFtUxo2c*&mipoyqFDm&qIc*+I++Vy<ZC37uNo
zy)+jw-3QVIK`a#Eq97Iru|#mmg=%RKH5Muco>oLNo}92;R4as1vXY~6yStXPCWy6c
z#2}8d+XS&bh&@5<4dUG(HUzOPi0wga4C24Gxm!4Pg4h(qW_Fc|?mX6Jp>nq~$fQKJ
z#Ybs7#Q)A9b_qy)#QSx(jNL&@TBsOU@O`5CAc!MD><_y46$gY89As4|@gV_+gLpqF
z;b9R>Wzid+qv9bk8J-B@Lt#$~JsHHuL3|R#N5Zykm0huZ3QNkkr$j=)Ly+j_Q(?~t
zJuCFkLiKqN=Y#l*v}^G%g7`9suY>r8(_IgBd7-)>px`3)mDpbtT5*y3Hi%1{MuNB*
z#CJh_AH+2jzY)acApY#->99!sD3TvI7YU&DD(99H9)h2Opu@F`)U_b43#ObBs(xnE
zH1ZPM3gUJUzXkETL}zC1i0W6NWNG$C5O+CtT4XUU{m{uhVJZ1jz<uUtm6t4w_O}%9
zpCJAfK*<9(aT2GP7&0!G!gLcECR&H^e<8p`9uq@N3^S2wBFjWQ6ZK8xHIdIm+(a4E
zo%4?^Qu$4IOn6OXn+S`rfQf=80)h*fC~U$fxQL0OCUQ-bFp*=Tn2F*NeqN+97b|12
zdUCNl$?&k>M@*D7QOZPV(>?o_!X}Fq%?Nsm4J|bjx(Qk;6NU-DiHV|GBa{vaf|9N&
zG$fQBs3NsYL`>KwqAcKI<(P<>pbbI7fPiLYg+5{8NfVEnC}*O)={_q}G*QXK2a8n&
z6OWnTanm$*nz+lY`S^3a$(fIvF0E{$ih!>dE3#EhR5S6S={{Ce7fSG~iKhfVos>Ld
zB7KRX>NyiNL|9Yk3nrcy5EN|!*Gk5!ZQ>;pbxhQi=yXC440P4N#LFgnnC|@C&_p8^
zisx;bc*R6x!R>@LG4ZO2*Gx1OmNv}<G#5JTyP}k|Fwu&g#Kh}Ko0cZ3FL4j>bc2bu
zNqHLq<r`$ZA>d>`4-MKUwH*X>6xvB>+a;<?Qv0Tfu7bJp(9J~mB&LU+Cf+j9%f#Cz
z21$unsNMql3GHK|Z&E(yMhdn4g&kmGpoy_d-1(ezun30;eMe|QHQdAq6Th4I!^B9Y
z%hNkeOfxac#Ap*^Omw-QGTFowx-v1&#D`1Nc=kQ9oM56zxok=pYm!L#H9IlGFH2PW
zx>=p_c&D3~VPdO^Z6;=#m}O!udx(kICgzw}#SU}ZwV!KZk%`47=9!o;uK1hj1tt~>
z&a+g7mb#vom{@9Jxrr4Vl}pt!6Nx}of=$qsqNT9*QnlK|8WX*jD&qAFCf+sCv7vh|
z3Xjm-V4`wX)@BnMS;^05F>GRmoGL-EMO4%_sg$za#10b|*z-;7G_lLX308%P-6r<1
zGEE#Zab~I7Yw}Pd>=%6dk=z54`GXv@9uHaOhgSiD!zSJr)lpG>Aoz%2+DyLg-XI+_
zaa`p24tei<>E5fHH1Uy%(<VMO@v*2VJZ0h&!Tbd$S%w=+)fp3KIUG!!H}PPp`b-SY
zafVs;uyra6_<}j_mG?{05;PRyMH63(<c5iFOnhtNM`16S_|C)+Ca#$H-bDXpis3TH
z)cHIKoJjqu81p;Bo#O2$6W2t--QqO3&YaiFccZ)aXA{4exM|{+Xn!?v+r%9cEi%$y
z%Sb;n&C8W8hJ?@GO!qSS=`wZK#68Zar}MlP!k;GYb3P2AWC(wm_?we<2zf*J$Hc#!
z5JLFibMMjy?sfcuiT@;(ln~NFh&0Nd%IK0kQf?n8xm;!N5)eWjUJIlSdo|3LDY)Wt
zHxKzj=<sb$b_fLo<PX6kfI_bTKA~(akXtZ>oDhnIP$-1L61_+WMMEH^HsP6|cnG;6
zln^0Rlv7Bv1T7Up=@2T1P$dLk2wDhs2+<Jqkh>|v2*EE=lu(WlMh}Ewh7bxN7(zYC
zFljghOKc({WHa4do7tj?+qIf6S564A5Xy&8A%u7cWkM(yLhT{>%ZA*lepG1x<?grZ
zQ-o4N?PKDwQV5TA$gL>&&v4c%N%8RzjtF=ngePen!b>4k4WU{H&xG)-7*`MBDTWub
z6W?DwEyCN~+<yC<;F=*kAHtg*(`tmk6-CNl2;oIh)e?GZxniJv;=mHO?-Z^RLfsG=
zh46}K>xJ;Lfchac5Kwr9VxWCPVF}j1;3n5Ngr*@h3xP-0H(@1+P4f`itxycFiZKB#
zhpkX8*j{qd&g&txOyX7oiVpC!388HWD??Zn!W;AuLjMp3gwQ^OQL@nb7JEnt9Ya{L
zLUj^hw-7pq(1j%xmS)`rbWLh`zB+{rJwoW2v`HMg-YbN+C40S-CF&DGU%~x^n$6s|
zjRQj%6vD(1mK`lIID{drr42d5LwHAQj!Myn3LYku28=Z#gpp!7O6WMDqeB=I!dR+q
zrO^o&<;DsaFWL!I$yvdZLYN%Fln@U-#gY(~hA=IJ=^-o*p>e%@GuV4Wm>0tQkh_y~
z7VG@^lsO@AbLebInt&OYEBF`5-U8`_3q_JGzfM>r_`Yb5Z}s-|=Uv9(wo*O&w1+?b
zUd|d0VS6q2C*UOurmqfR4M$%XIbo~~VI9YQ80lfG58>Sq4uo(pgbf^Gw{kayusMW{
z;+%Qt-oO`&XH{6Kws1&>u#G-BMiyu84Pi$J{Kv=65O#&|`}sVldV5NAO8N3wiQOUW
z34wqT2HNc7kZhN=Unt`ezZb%x5H5xAT?mImct3>GA$%GF52*PdgyXChj-U{ZhHxyI
zldXTHO>gGjVtpu*lOcQ*!fpAm^WzXc3AuZFPl@XJm2T}Nw))Ol>p2s`S>`8%3n6?K
z!nqK>AbvjOb9UgB>byi5Dp43KwNciLoQHn_`$|+_3%wY^{dVpn$u}W<E0S3&6$2&T
zhj2NBJ8U4fU<g-2_&J1MIA$pvp8v-XehNMOC)%|Tu7_}g#q680ex*7o(GT~{y(}MT
z-4wTUc#D(O1#jY@lG~ihR=KJC#!BXV9>TvN{1L)k&htt8dz`?TJz;CCQVg_jwaPtm
z<Zlsj+aM(mSVh97gfV25dn(=1Rf@mKrYbe;cKDO4R7MyGBYzm4Fa{J#$rDCq7+He1
zzMIpfPzq1L&MU_GL`WM(q|h4%wFSe-4!Z|*7Z6HS!k~~uDJ-;zsAya)%=@1#-qi8L
zhT>u5hEYNc^e~iwN5Uu>MyW7L3#*0Qj^`8nla!JEr?>Y#);Ep6BYe4LR@>qE17QTi
z_^mR2ugujagu>9uLNAMO7*-hXNAW=vkudBq_C~NTf@l~{7++iX#zKt#!+1B04PlfC
zqih&&h0!aFN5d!=#>-(e45NG)6~cHrjAz2`Gy7v<R1rX2F^oz{{CF6Z1!u2TR6P;K
zlVMa1qgojK2fKTjt0yhHf8erDC5@jA<GC<uhw+j~Y6z_rM$Isu595VoEZV;)xYBBs
zNaE+4DK%EBI;`8IP2W%!J=Y7Pei#kdE~^!@l%S2mcqNQZVRR0oaTra)Xd|(jhS4mH
zR)U)gZ6Wkkp|1(0&x^bBzAm_>(7sZ})=BOEh0!s;Td1~SydlDNLOX=fUcdse@0he-
zUn;eW;O;_uI-WPf=o&_y8lG+<nOrKhz{hDl5?Z0Wk*5E*!{{BxxG=_xuumBMSiOS#
z3T2%S5J2N$VGI;JD2%}ZhJ^7>Qv1p;DMOQ(KT4+k@GwS%F;ax1!Wfg(ju!C9XPILK
zbXnx)WI`Adg<TlNq@?BCFeZmFMcAqA>H?;PF<ronFlHt#x2$%TR_JGTQZgruJyJ{a
zl9KrX7KHJQ$QOmNSR_lrSP{m`FqS4QmxZxhF#7|2t_ovy80$o`CTX)ajGi}B5<O?(
z%@mrg4}+bGU}G4Y*x4++U}19@Tf(>>#$RD<4P#pvhdGGC*dBH_fbcfpfDFbRVeAZJ
zR~WmQ?J)L>kYjT%M_CyA!uW5sJO42J^p|@JO36Wvce#srPrxCeJW20^Fph+ADU9#J
zI2y*WFwTeZMHt7!I1$FFFiwXtsC4>=VSG$5%yTk~k0iO(qkRm#L*wT3PpG=*Zl?P*
zj5A@LUW;>KoE3Wt`4jdVE#3Ri&y)G&edB8z+?}UiCM92oaY5|A3gaS+U(e0|u;KZq
zRd?@~zTu3-gCN3~`&3qw$35SNaXE}%!nhg64`EypCqIR8HR<g~*1)B-N54<|QMTAz
z3*$PcrZwtD7(a^*_Xg5!vvck}-mNfhhw*zDe}r*Iw7-Ti_I#d(!`)?GhTlXuwQjz<
zoRNlS+zaE+Fow!&HL_NQTeOD5QvYTJ=6DKQC}QECF#ZkW0kaXtoHhJV7Ae-lO=@Wt
zQZ0A#Pwe|kw~!$$Eab89`WjVZja&A?LbEJ>bBlZy@>|HZP{4A%c`SGZ5OW^pZZ!gi
zf))<1QH3mbj~)Rfq(v>{Sa3MmS}10rxCPyUvXE<`goV-;e3JSj7D`#}F-IkZ9bP+^
zHyD>>q5IW(=^QNlI#jd36H%Bq!-C&J*n(vtAof8Erhvpg*$|VHWk4Fodw3!iY|%!A
z@&_O6%-kT8*zgs%P{u-43)Pr&CSl=m3zaRDvryi`V-_k}s2~yl9hXsOgu5{NU3G6I
zk#NC{eUicgZxmx&R1x757I+u}ze(e>)srIGR@YPA!c&542z}bZGZvl|d^S7vISWIt
zrQLZsmCpG|9v`d-YFb#*HlxAJ^cOAEvM|cRXbZJ1ykw!1h0Yf0SV)|}(9S|#3-v72
zx6r^s3$~+$mn}53(8NMh3ymb9S1dHP@Z}nnzE(MFRpYg8WxlgkHM7v%!mAcuv#@Th
zIw$h~)+%eAYw+?qHE^A3X`vOJSZE`zT3dMXo_i<IbM?djnYOj?h6S=*Zy{YJaodY=
z2caE>GD@v(sa;sT8*_SF=wsnc3tcUAv(Q}(-m<W`Wq}@aB`nRzGFGcAX}v7GEy8K3
z?rWw6-=_7o(9gm<tUU|;Eo@z<23Z(vVSt5!Vo94Jtuy|8P?~-cV2FhTpa+6s7KTe^
zMpzgrQ78|!&R|4>F&4&J*l*#0g>e?fTUc&kg_upSFvY@D3lo#ECRvy)_?(oT(Wi0H
zS(qil=|X1+{b!w;%@Jf_p@l^j=31C%VZMb077u<eV6RtSoc1<auLiGIYu2j`r@d#_
ztHtaL7M5CAX5ruUZo7ouRrTLh#q(wN7y9GXd@C)ivarj-ZVRg|tg*0(Q#xC}X8KwS
z>n*%X;lBLqBo8azRU0g9wD9!Z6vkzst5fePf-S5`3)?Jgx1c?j*6m*D`|ql&E!}qw
zJ0$K-q54X93Z-@rN6J+XS6~WX_wE(dJ`VPnr_=`Z@&<L#!h04zvhcBmL!2Tk9I<ee
z5>IyR0U7UG_<+VQcn54ye^m0!DwBQ8!f^{Xt7d;Fu1>I)HmJ=T)ReeqUEFh0ghwv8
z)AA=4PFXl_;R|+*m$FY=IAh_gg-<y_wa;y^wlL}4mfp`e`)yRdjq03*&n=wX;MN{#
zndX^avQ9qnTx1*d$i2Y1?wE(+D@lT&+(vcqXo+tvToTFP2)?uMJ?ESVf)QM{@Pmav
zEZntl#llq!x7Zs`co=@Pa3hI-vT!YluM4QXQT=S;7mnqPDq(+9<SRD%Zd<rx;a6dQ
zPsaL<U2dZ<VM%<?!k?T!BPbEUeG7ka-j29m=KL+0WYN+i_=lau!h@tFCF0(q|HoOP
zR_4Axyr~hSMchk3>y4_-8TY!$kP!hQIKMq_d-<h!W&~Lg<c%O-1O+1~6hX7oY560_
zj=&?qD~W!vK8IoOM#WGd0%GQbv~UDPBglz>!XgpoUr}Bx35rWx3K<rycjvlCBtJf(
zB_k*$pmYQ$H%en|R9Xaj1WF_n-g+X-h`|3p24u|$LJ{<mxZwz_2wsk$VFZx~><FHW
zpepbGBXA-pA3=o(ViCk6C>z0}5`{lcFC*ZqLhx>I|4CF%*sAyQ@Zp7-d`wt^$`Mp#
z(Ha-46v5*x%SJVuPe6@}kyeS|2{CK&Wcu|d(iyQ@1l1#WA%YhpcuG_?ggza?GXkC^
zy`S@31jRPFg(Y?==l=*6{9nfN5oA6nUaqdYa#c(0>qJmnz)M0Y@AjCtZUprrc#J<k
zil9NneUu}%#o=L<+bDupXdFSC2pUJwB!br?XerT~M$kNhSJ`%_(wYfPr2bmOT{CGB
zai8+|wcB3V%a))tXca+gF(BqPx3=P{eFPmMctdbIp|oe{7(u59x<$}kgq`U#f;R<k
zFO<Tpb`_l1F4t7@+(RTiBkmqLX5%eknbzP<>TSWjh4zV{Zv=cM>KDPFh<h$5aeo#+
zf`KAWl!ZdFiSt5-MDR`oLn9a#!SD#?Mldge5#nu31Y;u@8Nn#_nU(Gg!!TM@OE;-;
z5sZ&uN(56yGJ(~2#WRr|NsdOD6hX=a&ty?iex+X4v<Rk0@LnuyP6RU|m>I#Lc-D6f
z+>SIWg4ui;m6DPsz{{q4t302L9>Kd2Y=~fC1dAeA&QTM=xe0j}v$NgyL^rD?5iE`1
z^d`0Je<<UwjDUZfUlYMv$;K-7_Lyh2&}TNQ)?avxA$ff*veregUJP1ocKh4L2sTBq
zJ%SyqvBtTZBiI(fxXo%y1Y5=IueolXNn2h`^PViaGlD-G=kAGMcR%m02-a;@A8%H>
zBOs+2!ylW~{s<04u*Jq!8wXhl9Emm>+Bn21rAe_rIdMgBID+@t-y%2?!8Z|n8^O^C
zjzw@bg3ma#2d5rq>(i~|;e^l+IRm#zImzrj;R%(=`Xqu=4DswUtcM5>PgXDgn{s))
z=hFzzJXeCjw=a`dC1Z=KutlAV;L8XuMDRIhxrlq!V^&GOU{&+JG+%b~i1(`qE=KS*
zhr^@U1-p71ZBbnstD<!?d(F+f#H1s*8NsaxzUSm0!A}ufi{OU{s;$es62VpWqP+!r
zY*9b58Z$kiaj6%^c|L#HJK}iy^$2c6@C#dKt!MTY^)rjS#jPu1(zb79ZVYDMj^IuN
zzen&#1iwc3Ha7D&R>%>z6CPiX`Rx{!w$(MhEA?<ssJ&Iy*s9uXReweBH)m!W1#JAo
zk@c-7%|^QIf`22p_muB}2>)Xj6=AASY8OALG6ZMY$ZG>hc^(^?N!(+2Mm`()ZFv4i
zQtGV?MrZKapaGL8XrqvgiZ&|QC~TvM4bw)*Mo}9%HcHwkWuusl;<kI;d4#U?oLn0v
zg!T7HBg=ixR59e0AHSBiq1n)F_{4^C9#o}l7&b-}O3ky+>$efG5w!9151z4GRpY58
zNmp-GN4F|U!Zs`$Wo(qS@zP08#75MHW20)#Ok3#p?b2i7Ib~da{werigM4xJRr&ep
zqc-MN$==>I_c0sgY?QarD412jMz<QiGgj8whKlSDTUFH-p2uxew(*>e8aArfc*4e0
zHlDWeB$KdF%|>+_wGGext%^tLu?PjXJsczPZR+;G+<xtIr~F_3XKXy1EMu!}s-}(S
zZPc|<&&CU^gt4AFHg=cKdeKHLo0|fP)@F%po=%WKJbzCP1HqgInazjgt#4!CHr2q!
zie8yq2R`wi*B+TU?2f0AjaO`ZvcpZivF$!5cDB*QMiU!TD&#h`(ac73CiiL1Yc^Wg
zc-6+{ZHf;{46oa0Y2ytW?QFEN(b`5E8>d+i$@7Yq?ySXmhLoYL2wg3A{@UnZqoYU?
ze|Y4fXZ#$xlkL7_$!wVQrj4#P#<MJ}TN~Y(c^iY+qipoF(bq;liTjp~x7h^p@pdnf
zY@3$R+eRP3JhO#qRW6gtEouElGC(L<zVsm-Y-0%fjE#{t<}dZWV`DfwRm-fQHohs7
zHO$7XZHi%fi@Zfzdd9aeHp<3m8{=&E|19*Jxm{(g&KzTdbgXzL;7_GXZ&wp-OtP`W
z#!?%TS(7$q+L&cyDw}@0nr`EfI^NdX)ih>xyE;%M^<IhW8SD=Y^1azLZMKa$%#V!)
z>}+&ms&ewx&CKm;p6!19wST+1vRy5-alU8nh5w2!vay&WsFv6L%|~aCcZXVLW4Vou
zHa4-zntE5*SZiaQjg>Z5u_>!$uNJz7&R_D7Wq7TNXT6Pg*?)GZ);m<~5hWhkp*Ap|
zJ5<>n%BA0UNAE5CMCZJl*)BWOdg(CRSou-B62*2KJ8bN<v5SK}io#Lswz0>?XEx5+
z*vlHTafH3g#tr!g<$fCnIHsi14%s+t<2@GbM9#Dq(n;SJ`3E*GODf#5?VaL2P#m*y
zoE^+Y+U(2|Ha=v(wQ=pXdob*S9qOcw$Lr?%$i~Mu3hq?I3>SxFp5o{$pH;h0?&VJD
zgF0k=YU7NJvywz?r+R9q+aW(^W!m`N#veAmu<<36w(*15T(EJ`#@B+s63V{HDBsw)
zWaB%Le9Oj~k{Ni;n|KF7?e`)tTgr3A##I}?*tjW@ADLkr*KPb{gXhh@EUDk%FmIRf
zvluXL-<_((MOpu`ahoH;#%~<*S08>qc}L8w$Fpj_?XCii8<5WT^>=OD<18ITo+$og
zP1<;1<3AgJ+4$SWzY-;*nVW5fe}o;~%)M{qC`gGSHH!2oGNSGboE8NG!7|Ak0spi}
z%5x4gqsWRPe-xf5@<x#_3T}U<szv9A>rrIAQQT_fj*bFRWQ(77s=Es#3<ab3?|e?U
zTizm36pbPlMLdceu_+yeFN$JO6ptb|>Tb?05yc~-+FCiKqyTy-6~*h1yKnIh?o_7=
zXK7LBQG}uhN1>uHqPz<#YDRgWuFoGuFp6KE&I&|vVW;|Sr&=`6JE4|akb}=>{q&)i
z-#PIA-4<T~L{V{BrX5AY^`6ZGywNC}D5_4%q>zE2OcZ6KcqWQxqj)rma#1`H#gkE#
zms~x@=mIJ*8!4{;O3X$SHFv4)|CfE!=c^n=iCwBnlm`sDIWPNkkutj!4=1b|MYSlZ
zN6~Ya8nsJxOUXGt*Sm0+dMb*i#o?@!Y_9A*7e$RI>O@hOKBL%_r}*<xyb#5aU20?T
z;xCHj&0VT?6lZp+TEY@g@)A?rr3&p<^`dC@hOa*T-1cs1nOPw#rvY<VH{Z)FvVgL;
zJ!N*g<AvF49L10*-ie|~6ipeC4*4-p6m6ntF8EcUuSL;<Z4pJwC|Zf6IX@(jFMkRw
z_q7%Y0VQn(cZuT7DBcj<E{gU7Itc9)MMnYd=da?Sv#=|M=j|Frw<!8X(JzYbQS^x7
zZFU&0SBn9Sdqwe<V7@j=#NF1pSnsHN5h3Uk1u1cVu^A|IKr-$*{%*cN<{)7Q3!V2t
z=FljHMX`e{k9~_`L=<zPm>b2&C`LswA&QAnjE>@RX4aS}#zr3=en{hSOshuLc!|g!
z+ibTQKi4xUipf#Th+<|GQ<$sGg{O+ar4f03mAupFYLREUNJj2<XCbq{cUBa$qu>Fa
zFZFkaC&S|1YF-rc*{h>i9mRqu7Dll=iWMBT9xRGtaTH6Uc(G<mpP_D)rR?y#)&1RS
z*KV~e3Q`KwDrR$Kvh6n|R<b^;W&O3myC#aYQEZN4OBCy(SkJB%bw48<-Qi)n??$nK
zIbjdkqfYMgF*Mnu4wUts@0q!kt)JgBt$k*dK=!sMdhbzPCwaC@K?rs-QO^IuGU<by
zCD?mwW$uk)A5%H&&KUcnIKT>&*X4;P$M=%<hoU%~#C!le62(z=m^eDbaV*Ncfj|s-
zVmJ}Shf%!h;57#)qxdL_3JxA~+=lx&iZ7!0GKx>c&#9=p269^HryM3xoQ>kMD9(%I
z9NTD*`aB8-f(NxSNoh}(^g<M0Me%PG52CopA%C;*<tToL;_E2BiQ?O2KED%iN$8;E
z>FfaCvls1gYyL_US2-s~ai7&2#ZR0b={bsPQCxQ?I^Qo*+@O4q>T|us&(d}Idv4;4
zy=p+u{5Ki5Ru=p49jc=EJ&He~_>FVpUe&gMXU!DvT{$fJF8k_?%zG?U!@P{%=$40+
zH#ybfo{V+gznI(ed0KV${>@2Xulh&w$zx*viz3BANe87Iq&i4*P*f@~-9d%}uY+s{
zaFEAAUI+OcWI9+-K8qpC!K5PY@gv0i`X#@_@;F%6*uBK?`@o`;GkHF60g)GSP}o61
z!LROByyO*eaIdR}fyN93ISz_BDDEKF0e98a_n-uu^+F1l_aAX^y^}kW5D)6)cFxic
z0uF)>d=4}Rx_DMXspS?z!-3yH{#oud)M@74g_;gR4x$bm2Vt?~?Q6tAm%YkzFnq7u
zQntt!2#z_3J9yMVIR_nQWR!7GHtC;Dwr{WES?=YN65hC8mRJ=XRC3Tz<c~Y3ETEQy
zDy&$4*3%B2aqxtLCmmFEP|d+RuV+SXrHvVrUh1m*rlz{sKjmOXcb9$ELDR>*49`1w
zPH+vOH61X}AyqH1b<E5c9o*lm$nu)Vh_xNO<e-j&x(@2!a3|Gz;<;5UyS{)14qg`U
z;`!nXjMB)#D<a`r5^iN}?4XITO@%fSO0(ty^6XPB9K7yezpyPGv~sZC!MhGxQ{rGE
zyN81|4%#{x=wOh8HypHc(A_}~2kjknaM0^&P8Zg#gH8@OUbKDc)3(0O4j7sb%phiR
zZ#wAexO-}dtL#(VSd;ryt9`1cgSQ;?m(&OBQ@tGYanRSn+YWj=po9nQG715khLoY7
z7(bMY4Gji67~)`rgOO|t2bb$-4R>%e=9#}w4R!F|J~d2Y5j2c=%hb&p#WFr9I>y0R
z2j}*w(GC}`vo{QI`}{Zu6Ua8oLR!vvcC#Lt1e9~1>|_U194vIO$iY+x(;UopFvr1k
z2W2K_&X6S9Ey=vQPt~5Bcc!qj91t`5T-Lzd6s}+|U|ki@p66h9eb0QM)J~c0DY9QJ
zcCf_33I{74*!$H|2ag}~EOXFkzsmoYcR5FHW$%E2sn7hK^4X~p*UM$Ea<H1hzw)ec
zuvU`mzTfTt&3fjp6PAGN1_#@PCEh4tlY`9;wy?c~-6k|~P7!UGPtqL@b~@N4s@)Fu
z3fLo*+Kl7w_}$0pMZf_E2U*V!4mr5s;424*9lY=0QwL`peBj`SgAX|mNc7o~$)gUA
zIXLd%ga}JK<-IHN)BDv&B00@j>wx;$!6yz*CDXmy+wBi;jC1dB#^1<1>)<oCpo7nu
z%IDn8?M)mH;v7)tId6>jeCgl|P7XhKM*QF*eGtfg^L@`n2VZlbIrz)LHx9ma@C$p3
zgG&y+b8ywckCNQ?LVsX)643O3di#J|y;l-!bM=#hYYuJ*OS!*I#&rkd7N)<RFMGj+
z5<d&>JD~*eEeE$9{N~_y$Nl#24u|tL@3PX_zj7YPgT@&}#vM>Yj%NPBcHda|o`bs%
zVp;h%98jcxijZ<9@wbD29HhjM8pFR19yl2FO^IRmir#xM>pura2YJ(udx)Dg_N?lk
zn-)W{@>%IIyqxVhdO&5w+)FCM-tW^gW5|kOY7En2$Qwhx7|a+#G31ZIBW8LG-Wak4
z7mJ}lGH&4*3MO$OUcPIlUn}OiEh56ALUV*tUOa}}7)m7VOU3X=3<>*^5;u{b(lPjA
z(2}ueK(|yWkr+b#LIXmBNhjeLtQcy?@KOws80;7xi=kqSE20leS~dnpa4d$h|G2j+
z@fga8q}DEXR6Z)WTnyy}REVL1m{FCmuM|VI7^;i*@fa${P(|<)LaWB`q<~A(F|wlW
z1oBi2PsdO*hUZ1~Obj&yJS+6M|A~@F;sue{63XZ=#;|#=`xKVQNu3z##?YGD80y7P
zKZa&8G>@Ty*tb}k*_iDcL&F#sPw<KedEc^7-tX{KDEes<LsN;hVtG2_GB6h9ug36N
z!buD*1yJ}p>rl=iCvGJ|?muc1L)#bz#4s?1H)3cPL-!bZ#L!+0x(MwMLq`FfV(uI5
z&Vswu$>K5{KihaShOP+-8%Q2PZ=QVkN1L88ycI()(WV?!Zwu%hLm&3EfP2O7%SJh<
z`o++nZC5voxaC2$V@4(ewS!_9EKw%LFeHX|Vi+y#&=`irFr!M|5yBQvcYD<E7<e<!
zRppT}jADl`lQrm>Vq7ic0{$2=8+lNTjq$setZ}py$poQ^4M+4aN!ZCkrwE;TP)%n-
zF(8gSam<WiRt#5SxEjOk80N%qEQaGT%#C4Q3|nH@8pHe;7R0bJhE*}#8|+ya!(vvN
z;6*~e{3~VNLA5l7<-#r#N(qfu(2oGp)iJDz;oTTE#IROu)(NE<qpTM^Ld)5IP;HEX
zl1=Pd0{%Z&Oo+zYV%RRm@5iu%#gE}Y3<qP_6~pcr_DK{*-y=4Ag<_<K5xF3+|9@Dz
zeNWiKF&vV7QgZ*GVxAfO15q7`;iv#gC_g6|I1$4qF`SCwLs6X+`cVuYCk>dE_MSQ&
z!>2KP8N-Db&ctw5%+AN~S<>utk(`sH`H2FPU_^#5VtC;_xAwl0oO~U_H!)lkZKA5b
zjp0%Z-^K8K48IP`q-COJ5*{wc@PinaADXwL`1z65{z%rX7;eY#li+JHT#w;K3_nY+
zxEaI9_tY<J>&o6`?<rEU>_1%YyTc^J=3k+|#c*H1?=k!l!(G9D3Z?x$*8gwrCC`@c
zWd2IZ{}%8MQ~cN+1rK8QPb4XEq{fjJcPGF_Z)c_pAkK(`#sm!UuBn-EWW^DV!-^ws
z9QooX9!G8*`IGk9ad$D+6Nfh`nYB2hKpX|*C=^HGIEt{V^T&m~GC3qacu!qET4F|n
z?4ohx#8Hf%r{v`}pReCjq$T2bBo2QZmroWeDO3|$Dvr_ud`VjTOeSq~VF^?mhTw2f
zA6bTgutA|_93cTK26?H9#9_x#D~{T6MB{Mcs1nB$al|D5kH%3>KwM}Up=E^@xS3f#
z4o^N$#W*U(-ED&v;&_bJwIGG~{(Gv_AvLX>=kYiyQ+~*8L<WK<<ER=(%{ZQqqgou*
z<NRe_&a-heXqNj_9CZ$<r{ic-E_>!ccM^U^Bm`WndoB*r8bZHpo0snzetSv15XXyg
zcMA{iT?_Q{w(OJp5~IY?GLBYp)QzKF98KeBCV8&URN{C!j!uWv*h9*@&D$`JSK??a
z+D5dToy|Yotv;lh#KAzoq)D5{@oF5elMZw*F|WmWd{%aT+3DOu;;yo?&xf*qY^z$6
zjiYTGZ!n>3&%r}#cjvS=aReIVyZBT#vwgTycDp!s6w2X7l7Q{)$jq?+l!2!VI>*r^
zj?cv5n{jj%a3YRwadeO4fUrH{=o!bXIA+K3Rvf+J7{v;S<84+#9Q?@nojCf$(Kn6(
zaSW6wA01LW1Fc^i{S$2d>^~2wL2(R@V~9vtA_D&8B3*MS*`aX^i(~H%Z=u7A_uj+f
z7!k)v8W+e6A663^Wz|2d#>6o;j)`$hiep?HTvQw%#{?#QSapnLZHjyO;$zSzca%+z
zV@ezsUre3BlD5fw{~hntI37LfofgORIHn#}D-SDDT5=h1W*oZ(&xvDh9Ph@lA&z-*
z%#UM997|dD&S|f_;9U^MLUz0ly*V2SFN))<!)nGk&*C^*tjQ%<7RT~9R<Q-+SP^#*
z)}!+^<vj!|rN{*Qh;B_BYvWialHyBJe*J$`eFu~j#rO55%gn;e5*L=V&}0PMo}THR
z=?UFK5KsZhNum-ZCjm(!Q9#UqfQqOHs3b9=h~%7e&N=5~_-?;-f9L<5Q|FyquU@^X
zdKJ36y22XeJHZ5W-3FyD&cc!`EYHG^ENSz!rCInP3l-KX%d(uGt!ZnO(96!FHnLXv
ziEV7H@@p1Wusvttmn`%jpOSg6$m?sJa{ZQt-&tjAl^aJr7uz|X33MwZt*IZoR|)tt
zi$B4!MleG+WMOR<)@9*O(Lm062|Bb^*_b1<NkE0230tzTRq(bf?8*t<E?|eyokC|`
zNZc)8kI=nBADvF3+n<F4?8U-4%F4>ZA;E`*9udks+*zv}&%%i;Jj%l3ESwbnl`LEp
zaEfNh!Wj-PSvZ%4OTs*#g$r4@nC0wF&9hFauukC)R;uFmRf5YLLMwn9TDj@<n#kV~
zdOZs_1l$yQi-VqQ)MCWj!l54GyIHuGh5N#J!1gbId?rLkK=*_%7^*XdKjr8o0)J=W
z-z+4k_(#0eWUng)5>+IrNETsgOHmz#5HFLfzD{ADxwY0M9JkO^p^Teb0A+s7pWs#T
zor>>Oq^ZcOBA<%<D%z{)prU|^f+{o>eiemOq^qc)@`Vb8RTL2orBr07C@Q$5ief5?
z3ofCe>a|2Bv@FYcA?Kwwq?sz(NHO`!T3Ur7l4VqsQ?aa_i}N;Rh4XQDH@)Qr6I4=B
zS;ey|vQ*4or#z#g3YC-jWoqsP-apnUeHuC6iPcnWU#I-i+B<!<S5@JY=u<{{xwENm
zSNAi&djcwS6}45=QDLYEs)(!XYpDCGE2JW#BC5hvabcYjR`G<V*(Rlv4sVxHYQ0l6
zF%^~yTSZ8`qjz};&Zuei*DEzt)Kr}%0sIBbkM~-vsl!E|lME2lRq?!v<|<mKctORB
zDjKP1tfHRE!<XFs)+-HE^ct8^pCjrgUV@iYG*m%86Xj$PK@-*aZT-o5rKtd&fAN^y
zdWEwVq%BpnqG46+ub+F{Jg2v|R&i{-Lie)dfuP_E-nOjD7rgC+K3%VLRPl<6w^dA{
zjEYVwMyMF6qO*!FOkG8P6<sBIcNMRxc<+<6ZbGTQhwyu==)*iS^WrVPL7`(PT{fq$
z3UV&>$QYnvpo%wC%+uY2RJ^WYDD%8Q8LT2KQHF>H;%qPZR5DC;9$Ui&4-&CaD&ABv
zM#WgRgca$dRlKD-f7PdMP-=E_&u!|SzSuiX#dsAHR7_N{rLk+-D{lU&;XM(&wD<I9
zo^i3v>djn}RZLMaUBwI)@2Hrn;sX^Qs`zY!@-EA$;(ZlAY*6y1dH8tc+K*iul$#rr
zd4n^G-SvK?;_nU0$0`B|>8Tr)X_7sHPgKlQF;~TxDrPZzDn3^+M@8?~Gd@+ZyKTnd
z;>AA`@8;5JWcrt9mffh-*r<FV8aNwsy^-rHnuw(v?fsg@-{=@~`bOm&74uarP<fFG
zzEz#2DdhjYQK2Kq_AXMfSj8h1k5w#Du~fxvQM-%<QE@=UK^4nY{3y%~D(`$L@{@|+
zRjgF;vx;9-{3=0I_?v{T5Zda3hbO7>n4LdVtP+8>D*jZlTE!aiGKj}JWS{UroPET^
zItf}Y^tzI^QN<<|o7vc^xVNj=!Fo}#RmC=rR}&LI4>>J%;BgO6oY<*imx{gYDW%eO
zN$Ga0*u#Nnu=8A|%$1>@eQf6{2*{yZrsO`vcB106iZhbp5ury_To(<;R2&!1385z?
zQARwaf-cvl|61%>6&F=p5}9)x27gRAPs>ztUtrTc?xb~@iAv}V6<1ZfTol)sgm9Rd
zma;~j#mTn7O%=B!=<N#5&~!)eU7`2b?`jq#^S*c=Fh2smIp&n{iHfHjb$ux4!(VJ^
z93p&9U-(DGzbX=aNb(^;IM2uhc?`<fq$K;0;zMrXL#SIQLvsmm3C&I-)%RbD49z2a
zkI>S3Qknqr^ZJlaaDE^6H02|Qw2*L$2~8JTSZEQU8A6Ntz?<$npZ4Ud;w~<n5<;n=
zq<~Bx{%n)L%qu>W@!?qmSq94bP|k;SeysPSybl$8n4n>zhKk($<-;)_j{8vAhi80v
z&4(U7RPmvz56ygN?n5;yVJ3a3?L(Fist-{gVm|nM&?LpM4}Kp4f<r#&J{W?7KBpp>
z6Be9+l$kUoh=BZvVD5{g*Ag7}p}GLuhl<j2YKXU%(3;GxOvO+Y?Z#Mib$ocihZlXQ
z>%;THWN3EX)$^gg4^46;8~D)Bhej;swxpN-e@SMqaZYZjvnjX5Np4&C(9(wvK6Lb<
zRgRu^KD4IhP0GtYwDIxCS!YUwuI>N9?M3)undDalboQYOf#6O;vtuopRfM3caJmWY
z{(nMy`q0aVFMOEmLvJ7Y_%P0g@jmnwnSnkG@}ZyL{zCavY=8jnTYTMz!9I-iVH7Lw
zmUoB`!+aR-!=l5Up+3AJVqL|;|I|t2Urw&H8R7eHz0I3GjP_xy4_u?Zw{GT_13X;c
z^%j%fq>P~{epd+kH^@D4lxu<y6MgvDhiN{%?ZYG=-uK}HA13=S#fLh1(x&>HA2BmG
zDew5OutDwxlH$7z?d_s_&xakG6as!MG)zzX(1(wF_^z}2%~bEr?^FA{mO0&r89vPP
zVU`b{u%cHN3vX8Lx6Zh+Nh!QpneD@;K78iG=RW5<!l{ML%EQM6CT>>dFv@1-=gkUn
zzIfV~K78fF4?ZmS;cFk}`LI|l@Qn{gH#-B=w?51l&H^9)*{skl6u_YGg#W!zdKU@E
zwMAJXV5!h$LTP_a{{QI1Pd;q*VVe&>3;$0aR{QXa55M}b!iV2{_=9Ggk}`Tq%I`j`
z6q)i{lr!ICR=?(yVwDf?&d;PHXN?bQeOT|q1|P~#`EOOpIv<8kNogwHjiPF^51S;`
zu5U7v<~zTNwuss<zRBD!V4n~BX>A{N`moD~-9GH`VQ+TQq9=Q4E_IHapGkVahl3K@
zV2fj)LxPX^a9992%<xgcQ4u)dbJiHpRnTzKhf^G;d^qESTSKabvp$^j;VFk)AI|%5
z!G{|@+?41SeYoty6~UK$$lktv)rV_7TxV0?qIA4fipi1lKYGiD+Z<zAK?&YFKHT-;
zfrL`vo`Cy8hi_5n$jtUWVpGfseUc-e_-g9kg8%X1UjfrsW+rHux5Ud8R!N$ZXrj;!
z-BXh_q-cPKTpC)OPjm@?))s}1VsyPMcWw=NG!)U0p~0iUt0BLJ0vdkZqU_wFd~(a1
zrs3QcC9ekMu{WPkM&x`&LCx7-QCP$2I%$PObGlG^%WPHBdSw*VP)tK9jVJS?xQ3wS
zEuo>L<}4~Uw<@i-Dz};!%+#D+z<Fh=ggsZ$P)<X64P`Wp+^UonO0cI)`m(+m^R_Cx
zYNjn&=BcQml7`9}o?*E(wA4^VLsboN4b?SNlWgc33=PjxzXnyq%!N)H^K0;F&@}w9
z)v>^c{th!B@-Gf{_K62Igfzs2L$9eJA~-Dcpu{4M{vWTU!4~iO+K#pw8ft2ILBoq0
zY6-u#hB_Mf@BTT>*{DvL`=Y0=hUb~*5zhaJ3T+Ze>FQ}{py4GA^(8Jjmpf-R)X+#n
zQw_~DTq>2^Sb~}et)n`>$jfe1nv0in_<Tj#RoeL@+)6`h4gEC?(D1UxWzXoUp&RR>
zzo)H+_8K~9;QV$wX76&6Hp|mdG<4F?S;H&DH0HMd+DSIZo(%6IVr?a8<Tj<dhSxOA
z-lp`>&|5<v4LvpV((t<o@W`*@0{Uv`r=d_v^1R`xoS}VnsOQB2&P&ul4Z}1H*Dy%K
z>ly}Y&Z7FE8vfm;4AC%7&ip^WO`-P<Nta**TZM)(8pdjTT~8dPVb*^4Xwp~H-qcWV
zyOZa)G+dqGq9bPJD{Ob%IA+yO9G|Tx&GWW~N$eVaxctsVz>_ts)39E{6b<ian5yAj
z4NEmF)9{{#_ceT_;cE>aX!uaWry4%f@R5d(HGIO>rD2+=ox#R%&NE#@UCBl^eO2%*
zT8Zy4+ZFC0<5n{M6aQ?x!fmskv(%$qUuu}6;R{hRSHtcL?hh)umu^>Pxm>SK@?4nf
z)bczH3)y`%e8YPD&NH9wXRl|0hGV>Jl)e6M@9OQ!ckGoK7HMEl8PO~C;&x>*tyJD!
zZikY(Ls`PXZHHr@A0#1yl^T|7_))`88h#e$ZyJ7K_t&sOyl<ZM<ZYOoO|$Q9{9X9j
zm>T}ju!^;&VYP-e60|l)z><Bej83r)8aA?8HRn*BO&oFuyS8fBreU*&=YCD!B2hT|
z#~qj3HSFLB%wb2vP8LMNK@Ep!6AgPrY(M+g;q<+N_h|_4aNg5qbazrYpgD)Z4wu6`
z53{?8%qa~=1yJC)fMXggvBL@GgtZxPvrV?zq3{61(>ao71gzE5&TF`!;f{v8!nvs7
z3R{=pOBycc$oJf#T+?u!M)=ZoOPDt_+!VmYW}J9r>ce*^CASs6t>H^a{T@4@hDRD6
zi`WC94~15mn>qch|9amO4S#9)Tf<Wc^1!L?e*_b7V=3nZ?)NI3;CF1BD3l;cK(Zex
zIUM-0YKL?8uG^1PKL+?Q(2v}H<ng1GAFciH_~G@VkspoyNb@7FA65OR=0`q1^7~Q3
zkCJ|8m23e&kH$hF!MFB0H=(Edk>N*C;S~0xhye1}l}I?U!#VuCm~e^<C6k;?KT7#g
zQ8=ajpiae)GJed-lgQArew6d0LXMt0qNKcde=P1q|8;%QO5&|7^cg>@<b+Z`WuEmT
z%a0m<)bvC3!zZC(KQur5f<r<Be&~J}eq^f+G;~gG3`$UTPUtnooBB@fh#yfuV&aVp
zwfwLJJpLykTfVv<-5NUuXT(~5Jm<%Ye$?}$wjXs^<ekb3e$@5jd2#g8QId{;Ow#&(
zH1OjkKN^Z8gUDx;Yyo0&n)uQ8*Yu`Rv-A=-6Ml2yv=G`-D1%tzFAHwtM_WJGml>s<
z$afOjUMQ=egC8CJctyN*J%uUusvm2HrLs7kh1tcAt}LJ*-Tmm}2W$T|KYIAl(~n*v
z&`^rgb*GZAs*?&`@0>dA>qoyFJ5SiD^!I~Cqrf1^+Z%oi6Y#pw!9s`lF;u{`T}~;6
z`!T|g$$m`nW27IW{P=vQGQsa`d3e(g9=G_G-+BKTE%a;|?-)PE`oZ58Tpk~J&oj=C
zd2RBHr(xAR*Ydh1`ti0OlSG($7%^DUnPz{-kEwoq<Hvjnde@I>eoPnqo*(b~@qr&7
z`tgw;9}DwDn$sWYN_?97r|6mC$0y7i3oZgP{g_STFxzRE#Wq=AIlNOjx+uA;o%opu
zB<*riudt=a7k+%{$5(#L6+SuSe=V3`9(&m?#kWiOrG=B?0zVego__q~$G3ibCt^#5
ze(%SkoLDcmOjzv467h1)8&|&3=F9x}!H?xRGR-?Ab5t1}^Zx9|FMh1_;}1W6^<#wy
z{O-qZwD#Ggw!M?rc@v$alhd-7(6932Pmx*U$LbtyJdKSq{N^HE%bFVFS(GPpgC852
ze;q}2Z1Q8XACUl8^<xW%m)=F_Zuqg)@2t<<=ErtFcKET=kG+2EV_$eLWtS-5BXqaW
z^_{&fmn82joxb0X1Ad(G<E$SC{W#>u2|rHyaoCR|ejH^3@Z*lWVKP72i=B>(24cSd
zb9eJ8@tzi%Et4&F&X4nKSAJY!3!j{Fft6l2;i6!Q(Or@#3%9zi`f*M0^_);n-!V!y
zy~&>9$8BcA&y_hS62M(Q?)iZLas_bTj|YDI<;UNm;i1sSLLUizX_xZEkEenM?ouX5
zYx&2IfBi@fASHkVaft!!k)TDpl%#-jVFVv)#3{Ai=XWVZR}|oR7p?%$VSqP)v;a~A
z_-mKq2{><D1i1sqBOKz4-Acy?-goMG^9FFGw!1(81q056bH0F6v-tzuHJp3!sX|Xn
zrQ80rLII=)xN5@FtVY_ZuaoIA0w@~5vjJoUP%MDr0h9@#YyfJL+$91i6>v@pDjC4$
zJw=V(N@f70wRbC}15iZ&u<l88Oz2L#)N%n-44_f~ukBXKOK1h5Lv|~HifNSts1iWc
z0LJfDo)O9lefn%#wE!whjWdVTqXys$KxaY$9B=L^(mI2GTD1WD0q_`**;K`{k10YB
z3?LN1hTY1&GoD`)(o9LK>D!)g0QAyPTPy%8fQ<oc3cwB^9>CB5-Uy(205t+=N<#%u
zGk{tWm-~#K6YzWhF9c9qFqPB^psrvZ8r-s0+KU0y3!q^Djf7c0fU#whUJ~3O0NxqN
zC?EY)fct|cM%;~s&$D^?^4}!DpBK){Ve<f52)|zdEdyv3K$ifz2GBZymjmb!Ku0or
zdfEigHh^{kylHz6_D%U?qKDrL?E|1@a=JCk^NJ{WHGob5w13|DTA|~ce`l(l;|x2b
z-2&(yKrfMeEr1>ZdJ3gZI*PrSlKjs7T)hM6BmC@dhrWWlRY~g~zyQGm19&}vMMV+^
ziMQ_Nq}{VUgN4J1(;)%pM0e(GSOCLCU||3w0vH*<)BxTMU=#}?{7C_f7BF7uTdY~y
zP%twyP5}Q65g*&FObB42aOTLX>DvKZ+wEAGZnE&F2z^Ir?{M0C0lXi;>;PXB@j-w`
zKw}!)Z~z|#@G-m69wpBt=Uaw=9J(0+T(05yg!UhwXY;$xi{H!uX0fSsNY(c!S5n-(
zr|+`>J`dpQ0OkcSCx9;k_)3y{d5<zTz;EirF9Ybm$H~=)dlc3YDLM3hBXoWM902)w
zwIJXe`><q>lKEZ6w*h<?!1uHsn`;0o0$3ct6548^_s0O1O2i)mTs!JnCb(Z&H|N-w
z3x3+gdG`Gjz|XAu774rdD8C4wOdiGjTL8avpa@`f04oC^XO(m%f<HKjb<RUTN8u-X
zlr;gYWA*}AD;n0c$dmo8$4}QkK1<yo%u(fXZ|30enP)dgEj|ST*c!k#;p`O3pzQ(d
z5WJ&jD!sdM_%9Dv_6D#ofZGAw31EK!2LiYdz{LO#25^Yh3*bxuhXXhgK;ON}$pDT@
zqQ}{W_bSIY0`FCPdzHDFY4n~DCUbr&fXRCm%D3#{d`g@R;CuiXa)<l50NRX9R0g|V
zaiv!&?Y<O1^7*7I0bCWemxYdj_ZsVBuW~bhTLD}TIOo;h2q1B=>x*iRWhz%s+tS>{
zrMcD0yYB{YkNsLlE*<v+co4wf0sIrd!vF%qJTtp^pKt)*t2`3=SSU3-WnZq4o9-_G
zUo`jr%aLElsC^2TfZp4yZ0PAq)RCkkS%-U{(|A&JRM@99+Nac*?R{;Z;v!#10UZT(
zr0V!~pORZg9vv*yu6>F}hgU~F9g+P?nvRaI7RjqSP43w_p1=1gh4(uO7e`X_>&QRI
zMNmk`=yL9K9X*DpZqSQzQ%qqU_4hmTOGR|_6i`e@aUHo0<S|e}M@bzAmlgR<N2ZQa
zl+n>k=iD_ECaNQ<JJ0$uI?CxNFG-gbnzwdZ1sxT2RMYXSj>8%0m4sFiT3P5bBFP}S
zs)9e-uVe}E>j>yjb@+6U$xtmvfF;s(7&=THVI4tHMGYa5%+|&z1dKvJ8q;CvXsM%>
z4qHcD$MZT~&{17S4N+T1XiXi@>8LHZme7^^mCgH=+wx%I<^?8QSNJ@`>O~#(Saux^
zX+U8%5So4D5hb|_y^)T_I-2TersMlwDOJ;)s%fI*qSQ-skte5xj;ne8JM++&H?6gf
zm$QR(w9(O4$1CD(mm}XnKzkh}4mkDOF^6C4fKs}E(-Au9=&YlQj;<2aUB{_H$=w9E
zJ>a}!Z2rOZ8ry(y{wm>&gcA-Zy>)!~R^g#K-q6uUM_(QNax}lLqrcz*ItJ2uCvtVE
zoiIo^Mbe#x>w|UVZSEez8hPYwQEBz4&@dgtb<EcBsg4mkM(UWN;~lnq9dGKGpkpGN
zqV9YkkJT|w$6Gqau))0UWag_H|Gl4&*YWQ76yB;y=F$Vo+d3vmq6wW+SRFL!<eVIC
zKA=pcu#V}%c~9tvYydj9RO163d|RfTN1dD#EI-yUO$69!=$)SCp(B`~;}ab-C1{pV
zGH)JG@*i~U{F#o=S&upv>6oMA3msqU{2PwBw3`SsOVxOtZSSP7babnk%)KFu^^K1C
z?6x|-)3HFrdUZ=#C}3+Z<&(wEzePGeKC<tEU#w$^j^#Rj)Ui~@G95pN@c7}06yw_|
zUuduPPrlLLspy|{{H)^_5#aGzzv{U2rjzIj;bi0ZLFIQHD|P&#W0j7RYz#X7)UjH}
zE*-mdtP$Z&IyMVft7Dyx^*T0)m)bV!2u;g-X{)oWJ^!vETXbyIv6Ge6)U%DvdtSzN
zcCLd8!TO=ebUQdoh{Y&>Zh68U9eZ^g(Q#DA@AcC5k<Rk$*HNjLi)RcT;P9g35PPvC
zx8R`iPEOo?eLcks<vyn4xQ-Ld?Lp=0LB-oFwO<!E_e9rhmT_9g86A&xJkfDh$2lE0
zbllW&UdII;S9GKwQaCtY)Nz^Jp_kKtFG(ugkAJaj>Km0D8(!6MO~-W|RSzl89a6d;
za_ah)j@vY*j=MTO6b_lKZSOsaeqYA}W_X5Y`61<@jz{9Ak8!4jNwdLI9e?RaG>~LC
zz5Z{V3*_AYFs&BuuP1x|6+H<C=)M^1R9Uit6ay6xE2#!xAeVtlhm^#_ipxN|CW&qX
zToRMzO5<Gvbh{5JpN!2zQ+Nz`4U{vSc_g|t1H}dBHIPq0eglOC6c9Rnd3r$ug>rB@
z)h>6w)9H#B$PhkpQ3J(t@VMta<diT_GKZ6Cpp@X!1{4Ej1eeVTZFyK3cG#J-DleQ0
zER=!Shm}eOeiuG*WdqL`sA8aMPAu;nS2e*5Wn9&Ok9G^8QwW*?zk!}X^a>(iKsT_|
zz%m1dfuMnR4ZLR{WWY4=mVq$_!UiG+S{r!TK-56Yz>5az8L$l425K9qV_@H5C2pX|
z5#>1p)eY1TPE7;%=D2E+9(LLQF)3w2N0hn-o;UD<0j?yeSQ)jCI0A!?C^L>IYY!By
zZ=ivJCI*@sc*#IR14I8x{Wc-}*Ue7Nwpg9o$N*_$p{tK5-0{)OKuZIySY!jqlQLV-
z;H_Mx4i&AYcz8?!cdCBTHI*k~wK34vKwks>*bEG`H}IN)9<0H3866CCGSHb>`nOO=
z1Fz6r1}+>?QjaQCk18)6Rk|4HYT$8a=gBf_d1^NU-3<`TS&%{6|ETiwQKhGWUIv~l
z^A<a%^p=Kt;HdK8sM5#4FRh$`owUD!0S1N{7;a#o;q2HNOoJa&2C?cb_qJn2UpGKX
z;YP=lAuPLrH)yWC&WM_;SssEB21XhfZGgWL`W{neHcuU8;M8#MJI9na4Ukfjuiwtw
zeqPsDW+Sg_lF)HN#|xccV4{Gxg;HkdpBbc+4NMWvJ30KRtccMG40>NU9~t=Azz2dq
z%#l&cWlm$`7w;kiGYotpc!7bLv=Xx_-q{8|We+tl*T82vapws5+`#?n&aDb`#9tct
zO88$Jp!a|L|KV?hIbY}~ZUh$aZI0x30={RfuJ_-L?8U-aB6I~!l-KoxfqxAAYhby7
z9}WCu;AaB|3>;)-8Ti$}MgyA+tT6DKfj<naGH~LU;>6`zBLgd0H8q{*9gZu?apg|~
zYYeP4u-ZUn;V@`?Bd>8F@6(Ombq3ZO*kFKoTG&lTu-U*C1G^0DHZWmF(X9qPI<D+w
zt1gwc&A@g8JJ<`3JIVDI+Nyaf7bL&kz`e)7e!frE_U<)s`@Q6S%;#dKd62%7oH;x*
z_aOs^4cs(vi|yIKQ3L1Mm<=2=aGXufz&ZBxB5CzX<vC&CBpVOS!iT1TGY0nj;i#e`
zpzGbccwZ}R`EljOeAn-L^IzmZYT&AYYX&YG*n3>LV&M95#pQG6D^gD=PY)zs`N~^x
ziI;m!uCuPSv>QSfd|dRlfjhK-fxisg<*>ls#LmKcH}HUi%n2oHNXA3S3F#vPrB66z
zr<+;M&2{7T3p%ec-!05I|FY+Ajy6l22WamT%3CLtgdh@why`H<krYI75G8}i3?d~6
z1mOw78$_<4Q$|-1ZUH+xI>S+F5V?cM69lhI=9I{VZtf=Soqg+zLf*6>@&-{bh(bZ+
z3nG6I?|kho5Ol8m=Ca1NCDXY>ZO{~D;R%J84x|TBB#4Y4N_^@q9K>PCdC{OV3dK$;
z#R&vIJ)xwZRLCj8+@4hKz33?wMCl-&4I(QDC5SRXR0yJC5M_h->6)ip5aomDF)2@@
zlgfRMXHhNB+ezu1?x++*zmrOpAgVG~CzZ-Vp9#Vo;i0!$kjwHtoXq_6q;hC{kwwLm
z)gXL9_&MMQd7r6!TqpMrClxJ-c1K-jPAc3js0R^Z^dO9&bI*7%h#8+d)+T*?t4LTZ
z771cOZ|9**7Y$-<e`hqdgNO&wk!9bNt9lSMf~X%vgCJ@KQ7h;yFsK{EH)TsaCmO2C
zPu|*s>j=GBE93bfUI=1iK2Q9(>%}0>{G3TwFX-%GB483P1<^E!W<fLzqLIXE9K<l&
zdHrZ2UV=v_mF7XT2%=38ZG*hy$*F6))<LuqT<Db3mR=6xl`m4_g4+qdgV6Rur{;6k
zEzog+-z(%up*jW8O+aU%U4*i*U4v+R%K3ds*FA{Wa`-)hh-Rjd**l0nY;_^HLg>r-
z3gXWoRtM2Phyk=o5c7i=7{nl!G>B<Iye@ed6~voC3=U#Q5RvKLp+O7}g0m%W2pz_H
z?37IJ(0U5N2#GRMf?hwRj1J<hAl_%INW+*Q#s)Dlh_{0n7sPmx%$w$H{>?7q1a^>+
zQ-hO&n9TMQ#8i=)LNn%1%$8|=&KU~+sh{|65bufn=S!V$hY5drJ`mv#vokOz<)a|>
zG;}I!x^O-X;xjg(AU<K`9!{Sb#B4U{mFcr+gn=${NVzbKoX>-p6U674iC;;?FGS!=
z!E=T3T&(ORWK{mOaOP2)?5AeyTEK1+#Lq!2WEYn9_FWK5gIE^C_dzTY&ikj7#R8TH
z-FG3K5$S#q@48dUasfXIC4b&2<rl%f2C*W@2?uAA{5RpO68d`(+glW-TPffV*5IdJ
zdOQ8%s9nRZ5yWY><RI1su|A01G>$~vz;+%)xfQM%l^va%g4i6ymLRrDXsJ!EZB$4*
zZ+7hpVut|Yog5aLr4ejy<{@Rog=16p2C*-Qqd^=CVt)_^f;brD6-Wt7_q%wD=!Jc*
zU+yNHtekL&1IrxO;UJC(Aa2&ob36#9bwU!QwuhS>ohOBPDu{pgyBK;lh;u>wLvIl0
zgSZgHqaYp!aWRNXL0k{wMi7@p!}a~Ht88g^6RxmfpG=|=t_49#N9N5SZUu2)Bwya-
zx*f#bAnwtsOq6=|y9nr*bGp)96CQ}<Lw4cUlbNeo_ub?Z&^?i$r$PJ`#I8-Qzl9z?
zr4T2CkQhRIhbtxI7$GTy>RAcNA!q!d#aeH6N(AvjO6LwCHG~&Jcrk?BA>;|6atP0a
z;0eJSf)YZR5Yj@(8$!Mi@=HWom4<q2ldC`o1w$wjLPiLMLP!sRL4`%;*lZUa6D8+H
zGY^?Xg<m2BdW(fnT!b0A>*LgtA$CBN5?5OIlwn*3QGlSVl%;$K<wVJ+elM97LZ}!*
zCE@%iVmuy!g{=}oRhBx08X;5*;n@&^A%sH63PBCQ2sz`Sk1zir_yyBT{L&2P|62NK
zB_K?l#X0SalLVxu(3sG$(1_5e=xI09c@wsTV+*A>E}*<9sTo3@9DXeU&k3z9luGIf
zcwT7su^7})FN6lnm@w-LP3@P`FoZ@Syv$nuIlZw^E)Hoaph*Z#1vI0%LinLoDrH&-
zM?bCX?&5A00%>dEbZw(Bv`q+YLuePmcfVz}7d{23u!G=^LSGR|VJhq#LYENUF)`Id
z*ATkV_#xa4p?e6gg)lyZ2_f_dp=ZcBZe>&my+Y_6!W-i4BXp2ZhV~7iUkLrhJ0OIC
zIsBkI+3!xK!0S1j!2*VaFjPS6)6R)5!$KGy!kdEW9U(y@h0Z&zyeWYE(E{EIVN4EZ
ztblPL=d9XZ-=|Lu;q4F>hp;4sNn&JL{<9D!hcJaD70!ntd=$de5Z;xz?@{t*(g%Xy
z7rLT#p36g=PyUbDdPDdmgqa~smmub0MhHAG_FikJPy`g46~gQgJ{9F1C#BGlNg9hK
ze;&e|5WWauZV2CmFkfW83}Idf<u`i13Srx6<?Eb${*=#s`LvRHMp+QT!VrEM<NaQO
zyx}zdDEXGvD&FDaou}KP5GtHeKJA)Jw={%hA?yrc7u!h)%R^Wf!uk+?q!Nw>smW_Y
z_&J1MLijy|m7?U=5LSfno8Zl3m6kGTnSGM^b7z!4LijU;)gi13f!=5n7bzXnotNfa
z6T*;=scpsk<{4!}2pdD#6vF0^vt8nN>x>->lgA$Ogd6AH5&}2u><D2iODbt?7rIO0
z#tNnL6wNM~uH7N*3E^}IXF}K;!oCoWhHxx|i)WNyo22az;XnxPv&zAcb7<t@5Q?2u
z4v8Lu#xp!eI1Zdunw?dShj1c<L3=!0Fv)2~UWj>;160q9QyfE{_4GZfke&_UTnN|6
z58-?W7ecr~Rg*jyL*T;2OCfab<$TYU7@Bn1sZ+N#D3x?ZvpiSX5_)>Cu{O^t1UG5S
z3hrAW+-7??>fy<g(|>cm$0u2CrhYGk`|Q6anwfYI!b1+iCaRct6vAT;#U|2BJPF}x
z2ni+<P5dRrVY+_{SbJ9ahk3T0udsia$+M2-lT0L=aGOXqok1+c1Wa&Y7=LtXPYP`s
z;mu{jC64D14lD1@Z6c5995CWB@oy;cpR)=x#xqgNpHt2zrsp-0&xB&4jEVdv3YaKt
zqKJutCb$=-kO}Uu8Lp*q#WmAPH&JtpiyMwIOy`Ws5++KTC~BgZiQ+=5pHsRocRpJP
z+MH7+cJdVL<H|Hq%0y}E?BjG3I)bt$%9*HOqN0hO=ak>Zr<OOJ`<^~H=aiAlyepZg
zY$7Q+&EF%V;}9<|f1lgHUDb5nuM87G6V*&SE8Z-jexa&RpHR&N|9(<FAYKC9#H3=0
z1R)cqiRW|pVH1`KTf7kyQ4=pb^~7>Q8zMb!qPmINIh-0MYUSXX0&*8ie@?(J=bQ<1
zx;iH63TNG)UV2|J@uGO^nRv-WL&5b;G!Q_6?5s8tZxa)Z1)LLY*%u==H^EoCHYVB%
zXd$$v&{if|3wT-Ry|YP_Y-jQyJ`6T7#6$;aD&0(UH__3=D<=M?orT$1XeZP8BT375
zG4XV&r>ijOZ8A-H%|s6q15FHKO_}IrqMwQWCVHEga^Bm=bS|7NbG_it-o(CaMduZ|
z>gScuSGsCncLt~dCXUr}XEaK9-2@l*^L_+=!KF8LbDPyr6K|M!%fuKH!%Pe}G19~+
z6C;@6^Uit(w$*b7ik8fu{-%i^T6jjYvrI0+KUsAy<@$Jl=SG%ytch_ZCYpGg1!rA9
z>mF}n0+k%}@J}3f;(Yj-XOfA@rZbT>#e{!RD%a}snELs%N*$S)=hs(L-!<_b3m8Vv
zFy1%u0o!C46~p+@#78FXn7C`=V-wR%tT6GL>0IG4-NbAYpPHDz*E>V#Cnjc^I6uWT
zE5~jO`pm@VCKj7mVq%VoFHC%A;(Ox8x#ybriam%8UcBVg^Lyvz;9*q~zsbS#1uQVJ
zFo*N4$wO-s8D)`ho)a97C$98+mkMXOi62cYqs3@O2^}PqQGPP<vx#4r$+)B8*BqVg
zCHjL2-rr5EG;zShLG~RJt4wS&v0V!Fr-`*D)(Kv1Vhx+<3};Mu@=@;f!rW+LlZg$2
z$z;%G6I)Dd6%J4TTd_2~ihNTu==`gm9VT{~*ll8u2<#Hdvo0Ar{=72?>=n*Fb{08T
zbH9lhEfaFZynmio4w*P?;;e~tB6GyVaT6y@92GC)9usi*ymB&!bK1nI9Q>E)KO^34
z9n;R6xM1R{iEAb<nz$tVD<&=rm_ADRtE4m17QW!*YT)C9>%zZj;+B9LG}jeZ^$W^v
z@n)|qqU4sJGwzwV&w(_Id|^DGd_C6__Ae6;1wRr>=3@c-ZYKT3j>(}r40jm+aJc3G
z7)El~iI@-u1rh}}-IcWGX40%7g~?9|17YL}gI)^Ikx54Z($p~Wgy9Ku{CAZ6kM9+2
zX<_GH07juOY5p(@h*+603WiZAjG|!_3nN{aMT8d4(Zh%tIhfIlhfzYjrG%CYBU6%K
zR<n~}(xt;tgh~9re3lKPoJ1)vG&|ds!j8e86IwZpXTqowMpf}v52IQb&xR2QLk}ZM
zm=vDhCs7T<CrY$1n66(ipY@z0ZF4~}!U%>D3&RqAD2#9zkuXdVW|oT8b49~Am&Y*_
zqcavc)NG4<oXYDv92SQHHNvPVNe{oE)S@c4yJ$Nv$CKJ&)Cr@m1T_q!Q5esM@j@6c
zhEXr<oXP)E7>5ct4|KZvVKm6e|JN53hVm7(aTra)XdgxgW{gq7Xc<N;5o^w>JYA%P
z;J>OTFLot=D0SL8jF-b`BbnzZj&yCqXeVOC%<a}r&UX-9$1pmD(K(D)q)?NOCcPR)
z9~7ZXmoU19@tVY98M}qiU1S*4{$>$6rggo0%K67hy~5}ncGm5D$G9RtB8-t?^bMn5
z82!T-5Ju(g&V1>>Fb0Xh@GxE%K<3ae2It@*0{*<9yb;E*F!I0ZyfbsIGJEoq=a7sF
z<4rcjvhI0dj1J>1w(~HLUcs0!#)k182W_VK&^0cMNnuP5V|*AB!k8Gwr3(t(+XASQ
zcwa1YN*M1*ic^`~(#)psrqD5z?p@(<n*i|#VSF6MG?Dx;jE{11`$$HB=`4E=XNG{{
z7nPYgfYCn{{AJiV)aWz8pNBDrEn!OH7h%j5PN&7G%ethI-Y=Q<l}OV2H5<>AL;{xg
z8!7dCp$mjA6#8u#*XB3}Eq))yqA(VRu_TOxY*b+^4P#jt8^hQX=6QWs9>&Tr{*dH;
z6uKgepThW=?en7YOBlZjlQ`P~+2A)}{x0;@i^{4n{-lNfNnIDl>M+(&!yIRb?t3ta
zU~Sl0tIY2Lt}^0jOY6hfz`Oho=9(NXOu9LYEn(~oV^<hkMPaXc?rm(+O2ImITCrK4
z?P2T?g>Oq9_T^3A9mZY`5scW#y@%<RP2z9Rjyt?t-uLY1kP>oUtq+9p+eL-oa2Q8e
zzhPVs<7gPi*#5&fAI5RE@Lm}w!Z^u(XQnOr&U-41FK)WeWEYA*0+=gF@oX4$=PoLb
zE-Ic&%7rj4hGAb)_WYQ+_IWoC@9lm`xe~_JFmAFh(DGqiXYJqe-e5~>=Njhsyyx?d
zyrg7oEz0v?Z-;S*jqsA<|G7Yi;+ZAKd3$tpy*VOv{@5b-sWy&y91p^H7{;S89*5zI
z!5zbsFrJ2y7De7D{*oN#iNF)V-+Tm!_g{|i5obK4ONby*aFWnup(#RJ<afSR>2itJ
zCDbi6RcP)AicLzKngMSFX%V~=!PE%yMvyOpW)U=xAb$jFo4QLyP&$GF5fqG|Pz31_
zl!&0DX!!n;QaFMl5oAPAl-eRF9{KORv1V<jRq)7>Z-ymQ>gMDmGvZvNMX=|R(r1B(
zREeNW1a<`R2+BrKE&?qAe+1<ts1QNb2&z$Ar-X_TRF2>oNwJd9GnbquT1BwlEjjOs
z^p0hm#ca<CM~xsWf;%G9Z@V*p>l1#;WhD@S9zi66Xaq(CLE(oZU=YPZ5tzccbIuv(
zOA3>_4nI~LYsVyrz+!X>svbd&2wsTb#RzIjXzd8<L{Llcb3$8*WL?3}3#Ep2pC;BQ
z?C7i)L49F1j-WwKXhQ)n3FV>UjdJ)eH*yB;CbU(jl%|wV^$fVIw1{BTkixAacsYWW
zBH1c}fwi2es_Lav+C<Pcg253CiJ)Bs?IY+NL7xaZM9?vUt`T&L;1!A0DLWORyuXRj
zJ4et(yb~`gOQjS%>AiadJtF8C!D|x4gWucM@FeU{?<L+h2BZ*IE$8kV!G%H?Ak2P3
z`$w=w-kNT<O&utlK@q$zfXn!qT%n!bp%J_h!I%if3V#@j7Qvel43A)hZ~`gGBO}g|
z>{6B79A_A7wD8}G;6aD~#%-=zCx2W76C#)x!FUniL0Dwcy)E9!LMKIVPRd386ybQT
zDDOt_UIZH=*cie45quEAf(RBy@FCL`nXe-JQ-f&{d?w!M5j?jtb9Tfz<bOs4pG1({
zA#r8|vm%&T-l^iMSDdEBPY*7L{WOB=?>qVYT;k4&;EM?6Mx1+izZ4GVt6N-AmJTZ9
zZ|MFyf_V{q6Ty55dNN4KK4XE=$^SNj?;=<l!LkUx7Xk7YN3cj7h3TbR5&<!pKSZ!R
zf|U{cA;LdK@Jj^03jT?moqNHkbEGTtyk~_lf6LLyQiT7={9U|#I(k>-@YhE0X9TP1
z9pqiZQg=_`3jmjW^1KLjg?C-V*=e|*t)-OnZnG(Z%@JH@Nh8=2!PW?lL~vA8ZHr)6
z1iK^HdEUD{g2Rn-?;vK4Us1SDjFh?J54$}P?2TZ?6=h!p2O>Dgru(sHKkXytWfF%N
zmyPGP^9{20ib7EEBiFGAj<c2{I3K|Y(#2lx<31gMcY)_*1gAK>yp~*hae-r3lr8SG
zGaNLoC}$;C1Q(q4<Gvih73R>Beldbe93SL{f+`Q(|6Ebh-Rb<@c{PG-9Qs<h=*nMJ
zZbon`f~OJu6~S#PWXp`;VFY(0xEBFGa__S_JuJk7$GM-K4@%}X7x$m8$$Z3`ia1A`
z*1oDd=BT*Jdu>D_d*Z}s+TRiU!*M=}q$sKdy#Gd!5XH-HrN-}iZja8>^{P_3c}8*+
zDN*E(B2N^EB3BgeURAi|+!cj8iqt43Tva#+#bp3&Y^3z25B2a`H&4`gWG5!25qqPU
zcU9SVRmm4c{wO|*;^Qa^L{Tt`SEJ|@MWHCtiMjYZio#J8i9(OUh$173qES?3_M#{j
zMe!)gMo}*6T;W$Dit^W#(oE%KQpqSXqbL={#j8&HOueQMC{gfOvofNVlJ7n(P(F$Z
zOg)rVC5no|uN=jbt=>w4yU#4b>5*pyQ_1?CnYFGd?0wHhkrjoX1&<}FQRhejUlbZM
z?@!|dSF39ZpZoLn<mN-XwB`v!(d$+B?FPAnQG}v+A&M8HFrx@FVia|vh(w)RV`5QQ
zQS3iaBudcE!z)GXDB_ZItths4NvR%1jVNkH@u*WquY#Gw`nd*OQ|MAhJ2m^9NKU?{
z)Q#f#D1N-AG_B*}%-e*<Nj!<2+mz}>Q9p{tQ8bC7K@=}V;cJ@v#H*<ruPF=Xc^gXf
zMna=yoiFI7QS7{?wEww8vna}>dv0A*IN7`Tyr)GJEu&~9lI^4D5JhXY5b>V<G`Wp{
zwnCq4<7yWLDYbPJKmmIHy{5b(UWRs#qDvG*qj)2Vu2FQ0VnEb61+lwOf<6LX6WSw+
zo-}3@y~XRf?%YgGmks(x(Jv=f|0pWI?q$$G;S3V`dQRxzD251T=cUZBD27KdF^adN
z7?C40CW?_ccvKW`Mlm{yw{kcHs-!+vIOBwl7dk;GFS(%RNrI;eoh)>UPzJptz;!9%
z-6-A@{C*T42&jABMS+DGnIA?$N<1x!=~3t8?Nw3Ch~kqd7BGm-M&v(_;%+I=EWxvd
zGRmh>d?vV&<a16GUqmriIP-F3zKr54!Cwo#RnWtTbl*fVUpOPqCS-HIWs8d9rzpP5
zjvK|IC>BStg#9j?Q_Q_Iie))?-N^(x#$6soHn@I1;pd#t-v#^<#jiP>6;b?_gS%c=
zRti4#df`8!SpKC`kAFt7I*K(>tc~Jy6lbV5iuKaW_C~QGijC|eQS6|VgvkfQwkS47
zu_cPF!eJxiO(kQlJEH-2e^7v6C!225j6G58qE&A><N0n8Ufm$~nGUYDZ+P~xOGa@Z
zii1%ckK#lW4HJ_OMR6pGqfs1Ykxw|!zOO~?F^SvbS@f3kH%^N86g8K1FRb9aD$p_M
zvr(L5FOK4I6z8M35XJQ<Ziv`LiE<^1O9C#lO;&O8xkdC}jpCZ{$*J|N=VlbQ#CtD_
z+XC+9gx-nbod&siQc(5*LHDD0K)YR69<mL0`tR+<@lH&962;$9{38*c@+%-m!@cXu
zzk(BENQxmL<_yIR<&7dah7|E4h7CoX9ENgE_su1I?+qn2hTJiPESMJZ#NdgcZ4B*V
z@Wzl9gD(axhP*N4i=mQ4q4NAOWW-Q3hEuCO1!5=|Lm>%D7g|^-gD6=fhGAbSXJsc~
zu^39lP+CHZ$528*$rv(Y&e7=ntD8*~;g^e{d<<m-mlaBF6v)<AK{yqKX3wNm7R*GS
ziJ^*QtZEF^1UxHL6`B=;eM6zx_=<_7{ulxh@ue7a0kIe?0fxv2X_*+z7{cOZlt>KO
zafzcb=ifR33vS0yOJtbOcnsA=32}`WY6_+pz0bu^JBB(j)D_`+LZ6S}g&h6V`C<;9
zdPAunLxUK|Wc2J58^+K`yp2U|bHPnwXeyvtjwCbLB8HYRv=XtGbMn(V_TOD6ZG@9;
zz4kG5h#}EJl7)^jyb{C07`~-I44q;a9m88ObdI4*3<F{q7(>?>x=HkYF)X>EbdRBD
z484T&n$R9X|9#KfTR>l$@rcqVhFdojI;Sdy-#>-|Hyy8eQyCP)>ufDC43D9SJF&}a
zX@g@J5_68D92&zLEQ{$mv^;?)>Gi*q%u{zp(D+LW@Nqmc2CmMk^R&>Y7^XFGmfyT7
z%8AFsFqY+w;o}&_vEpKw9K)2DGs8b2hKVtJ-rDK2yY{-?X0v%(h;M6?826@gZtXj?
zgDd^r7~YFvY7Bd~7ae)i`KzTBPJ2J*>?Zz@8NR7}Ae2g`N<pT@Fg=DjF?<ojj2QSI
zVRj6k#_&lDGh>()bFTX0p>tjTbv}fNc}&V@F(eylTW>0Jd*%K-2GY5rYHkc2HSfF_
zzKr3k7?ga8U&nA%EO1%`zKLNzJ8#&#Am-d^#}{K_g70GZK8DRPY>DAY2`q}?hZvT}
zuvpBpMCekXDYukm93pNxRq$gBKgF<G_&>++OAISx_#=j2g+qbg1gsF6aZC9<hhOcM
zvPv*7d*W7$KLxKYoLTplvL=SLF{~5LdJaJ`6m~hI6WvB(ZW7AlPn(Qz-aWR)uq}p*
zF<gpadki~RUYa_FoiXf+VSfw<V%Qx+$>rWXtdSU&-cM@JeI>UzYlnhz4nJ|W{(~_b
z7UhS8u3F>bSN{>glSJlt3@2hZBb<|L@C|aGis7_)dyYw|HRivucg3vavoV~LUUObT
zFEEGg{`=DW_Lg#4n0I2hOKZn)HHK?3T#w-<TRXdt-2QMwWX#4+<GdY1j{?Zv_(Sis
zmdZW06VC9&@HB=8F+7an5eL|$#Oy!pl;MqCq>tI6b~sl0D~7*C;lDBGHi2?^6UqFC
zsehfxB?0An6iKi^y788hY$3%$z=Cc87IIloEUvGH%YxfNhJ~UQQZ3}R;I)v(@!xW4
z$0L+CFcN3eycY6VC}^ROh5Qm)KxosK94lqhbPEX^in^Zh6tPg)!pU0-9YgO3EoM0{
zMVS^#S@7Ieid!gQ;o#UjrEe=GEs(A%S%Shmv$3@GpK&Jr;4RC7Sa`-l6$|A>Lq!Xf
zEL5=2`e7k{F@<j{op!swuj78<wo;j6*KLK%0;^i6X2CD=&sxZ`aAr`3#=<sms}_8c
z^Uo_grEAk9vA}H4-ewsWPI!jjRu(+#HY7ACv{FS!=9MCjO~Mu;7Q!|nHlh|{79Lo5
zXu+~zTlmJpd<$_4)h%?f(A7c>3pFjgXrZ2kS{6RLt<({nRP~&I+Cujwq}LVjyoDD8
zOpYfXIFUeC-$DZmFI#A1;Ux<VEi|*xoTliU)<`6qSZHh^ua!tngNXBRX=-8jZO7&<
zEVQJFM2t)}wpN1qO?T_I!X?v`p=(QvS$M@lI}7bCbP$=Da?&{a^8FohM305cJ4z?Z
z`K3Ol2s&G+I?CDZWZzM`S?F$Il!Z4fyk?<?h29qWh?1TbZj8?}>5h|`Uc%{jN9k*!
zpM}8|hFIutVSt4}7GAgT_me_gQZi7)DBrQ8ds->%tcX{W9QzNo@P>uq7DiYYW?|an
zgc<o0`ByP*RS~{zj+9tG6?E!|%%#J;qb<B;;UfzlTNq<utc7<hOtmo1!gvdBTbRTm
z7r_Jz6D984I|^qGvnLN(>d6+Sh{cE>E^<2TzbCx!T6j-{KNS1FFZctYzepJeW;yof
zu};%0OlNgl_}sz_3!hjxJvVc<NY1n{O8_Oe+)?NV_RP!t)B-8-91CBFz*iRL3gBk6
zF9qDXqwuU4Zs_~k!aR#xkG-oKIzvIhyUGF!3oUG9Yq#(%+u^sF<@L;;EqrI;dkc#!
zEEWwvT3BLXDI4v?#N`&2vF;9}^PTVq3+i2k^E2FByzmR})S}J>5I?cK$qQurZArga
z_|?J+3%^-dZDEat-z}^ZovSST!PZ`sOLNm+z3UXG?p=j5OMgn}_`Awl0qZQRr}0JL
z>$}PZ3upUga@vZRV6%lS7LHpuVPUJt@3FAg!Zr)rE$pzc)50#{Q~xio<k=~DuH032
zb66Ye%|1wTpM?V)Pb?&MPTtR+k~i)B5gCUp9F~YjSrKL3M>qoXNZ2+gg>k9sn3$qv
z1E(+Se<9(dg^Lz0SvbWi<A}jbO56(;&T)`z>_j<l;mKVk8#8I@q%kjBxMJa!h1(Xc
zTDZo>!^STu@_m~*VR95BxGA<GpehF4v2a(C$ezKwXW_oY^4(LsZx^BRN0#$?>9&z-
z<FVi;7M=?DizT&@WIF<X3+EpT|8fMjG3mJsGT*4-&}0!HfQ=Nv6reX(4&No9$qH9)
z8+mLLw^71|$98&CK^ui^cx|MKH?PnFHk#a1@(Io_)Yr{1;KLc7bnzCpQN+e;_Z)L&
z2&b5h8@+ND70eT{$RE`&F;X~pNgJ6qR2x1UrEHY8QN`veCMY(_*eGwKf(@g4#`t?m
zSsOf^gRY#7PUE};6>ac1_ft!fE8FPyx3`i|Y9{9y8z0Jvsnu*eYh%MbCCkR>*`5ur
zx)$D3IL*cPNlI!q{M2tFNaeP(Q$Uv-p1G&+79qYz{oLLivSHfJsa*VP!zkP#xU+oP
z-}jWLjhKx;Y^<_jF|Lh~Hb&Wq+o*1%t&MgzYS^f0qcP28qn3^5Y`kcro{icz>PSK_
z*tk_Jqpsk{q2%WUFqK00o$U1(>8fv|fsLm3l}0vRlF)`WwEIdq`A0w*f)ax=`rKEV
z+Gu8@rHxiLn%ih$V`6U)&wS=(_dJ@9huE(gmD-x=J}vaJjW#xT_6sk!<;!iohOV~1
zWwt7p*4{=38+~l_wb9YWD>i!A=*dKBy8B9J8(nC58}sffze)DG(%`nUQ0FxpyYDOA
zSwO#g@=PyrwKdMamAjRkX4Z>E9+#&#tues$L@q)d)WO})Mt>WFScA-P>14BH>Hr%9
znNTZF6WMgbgNqq`u#FLHe($Fav3b!U-mtmZ0mH=(C$D<4XI7hh;%vm=2AN(*z1v2n
zzDXrEKDRN)##=VV*!X~r!Nyn{<7~WRW2%kuqTy|J6B`p)DJ>Hw3g?oPYqE_gY_4A?
z^M@TZ=YOEk5%?Y`@3NsjP~M|i8s;XTdtW#|y<g-b8z0;F#Kue;(`-z)F~bJ$a^-!^
zT(QGDGI$1c;|I#L=6U$P^1&qcEE}`wE_p_@OC9(?`II(HP5g`|-QsDu#q))Yxi)^V
zvE0U&Homg)t&Q(&d`<h?SSY!j{XqG~#sYEkg~Lo%?&gUUb+Uc5tLN;NqTkzCWMi?7
zB{nuaP<A$QoqC`=e4s34AAhKfxai`Q+4e(a85{6Jr;I<^_{qj^Y#ug#w($!q<)QM<
zL*-ZY0=ZGN^+SbVg?M@4-AWt#?k61`>#6>R>&V~?Hnu-)thP}wjzV#)kz8%FvE9a6
z8|!SW7tR(NTiGjZY!vUPe#x8IUnXU27D~XJ(BadBN&_-D6T8F4P8&DbS#0d0p=_MB
zan8mb8+&aWwQ-Euu(4mX9k#(o_5m9QZ5$HLH&V2cZC%;F?T!d@moS;iaT_OXoD${<
zW~`UOy&iO@g>%LR@of<<_DDHz<AROr5_D1MWgAxnT;gltBgckUZTx-Fc@wy1qoHty
ztn_9leS;(L(j*?2belu2jel(<#BtZgJsXcWyxZW?l>0Uwh{BPLoQC~SFu{OF$`cz;
z#rsJ~{KZt*`*K2OOG3XtQs^k07)MeZdE)TIksL=#9IiOraTFV)AdXXylw5I?jygLl
ziAm{F<H#Myzf#M}1s5H$H|~tpdE>|@L1{Sx`Qzw1I+?D32z2b?JkB0JQqton9ETA{
zFpeT|WW-S+j*4--SIRL+QDz{H;&Jdg%gi`R#Ze-Tl5y|~%cT0sh%_|LK<PLXMp516
z;wTe$4(Tcz$Fq-}OlAl@ZIvh=cWziFr|x5=QXG}z(BkmN@k|_5C@fjZ-YHX6FeR(S
z(Nm&l#i7RG6E8XBGn60@cQ#P-fFtgABS#k*f{+MAgqlLbLbK;gqJm>WEup*Ka57ds
zjv8@XsfDYxP?Nch<4FxXt%2v_s2#@#)$w6<)QO{R9I4fjyE>ka<Apf3#IZGw7vrcG
z$JjW=#Zf<w261$Yqk9}L#nCX1)^WTXN2546W;ThVX&h4@D~*MI|5#}jNAoyZNlsb_
zZTWxbI<Y`Dr%fDf85BpSINHV0K8`!@dR~d6L)<xaq;to__+4+Ahu)47o#6j5bsbPr
z6kT`IWdplQ+z7icP0l%|i9MZrh9E(bh@c<{h=NEI2@=IDiU=qoDrN-%6$2m{Q9%I#
z5wl`MGXL#2&VRmh>fCed)vH&zy1J{o`iH+tcjV>ek1oE+j}dHrKl;tDXx^G<_s(2@
zJeRNj@|fjOevJ0xPCq8Gdi@yV#{@ra_hYOdxA`&NkKf1Tj`QR61s}f){(WjL3F|61
zo^^Ce-bD7*i@rPj-Y5KxFZ%dK=(*SPjEla>e%$59bU$YJF@^kc_T7F=^`m@v?%0by
zUevC9=XI@VlFxHfQ)jXp^r<+@k9+)hZ*)dSrQqlOnf!^v?2EqHe(%O%awvVSAM^Zp
z#gAA0nD57Zeys8189x^Iv5-1`JnF|HKNgG42L+e-v6S6dIBR|xy%&8C`1x=2JQ8Mr
zE<qj=oreYI{+9cgACLR7!jGr?SnkIYB7aga@u&L)vOBF5;nRYtH|953n7Yc3)r=nZ
zy>QVN&@1xOjAuC_{CL5S7yWpSSsh++z0}w`KX@<>-SaGU^>UKb`uXdg%6&<!ac_|i
zw0ZBg!H)~C`(73dw99+VkJqX1$NPS~;m4bPZ1iK3A0J=zz2)~l6?vP3;-c@LF?l?o
zpvooRJM5Fgvo<qDF?(Tn=98=Qw)(*zGS<7~dza(AUq0Qy8?(1@^7muAA3Io$Cw%Q5
z%l*)gkNoIy$=7Lr$;X@o4wlfhotwRr1NM{LPyGCIT-Lx#K7QCf@scmpr+AMf@u?q&
zgzRMjh3pq(Z69C`lbm-epZW2*A3t)?`SFDxhdIg`WS#Njh#%+g$UVVH&yO$t_{xu?
zejJmCU;DjxNNDOfL-V~A%i>GEXL;Fa>pc%V<;OSdtD<?b*qbG)zn{1ElJ8qK!6o02
zrunr0ogd$GL{G^5fmJ#uhmwyk`F>`l`EiNUnjgRV@tYri`|*z-XW9Qb$~fWs!8f2T
ze3{7s^#=#b$?7~pjh~wG#dRJpHnP6=LG(F4_~QKqKmO&6`ffShc|SgFltscd)kQz@
zQoIab@#89I_y95jxaLPn0I30_1#p+1$~6Xm`oj|;xUA*SK7Gl@lVcG;<$JR$1n^<6
z9RBy@?@PYSfcL^PT~+|kKAm0pvaezQxtyH>&;rN{AU}Y{0W=AqQoyT(ngNv2NB~s=
zs2V_csP{feQ2^Bfs4fZx0q^dB!omQ~UGP4!ta({x?*K{yC=KAf?p~eK)e!wYHN4s`
z7hW%bS^?A+?h~vNfFh(qxBm`It{VU^puEejA3%cu8cHZFG&`NvNO%iLu4w>=9x7}V
zK<faSiM)9Lq08QZhb;nV89>LIvw1k@yE}8+1kjc?1L!Vl?F2gp&|b(peN#FFyuAsY
zQqoBzodvrD&{asU%RV}0poe(X0QktxA3z`g>I7LuBBw$qfL1A4RE~&*2I-}oYD7JN
zQ2~q&zzDz$z!G6RfSv)^!kqwIA+Z3)Ns5e>AiV+@9KetOdI!)afa?P28$ka628jN`
z%f5a>o;#fT;$`3EVAk~k3=CipFGFqfc+0;%Y3=vRzM%o!Aj&rdFiZ$j8BUVq31!Y&
zBLWyH!kYze383N?U%M+lqI<=6E8F_1+^GRf3t&tDV_ApHHhX3OFV^sa#s@GlfI9-1
z5WwxCy!gi4W<RDe=*|EpvDJi67V`f=ldt%u1TcN7k7{=(O-&DAMgWTfSS)sC1~5;^
ztN`u_V0Hla1~6A7j5S9{0y$4^`6rLU`2pM~@&y4b6q3j!gI<u_E(u_10QU#*z!fj)
zn!n~Q<Dj@JlRTmGPyi1zZV-!tcqD*F185pVvmhP|;PC)H4q$r#%Q@DhuHFdX$pBUe
ze?EYx0$3@0T>wu9uuAxIf~x~~h66KzH5_8!d%dM~dfr+IB5xnhT>XIWtt&pBGt6Il
z@qZ|@4i~Hs;04x9051iwA%K?yXt5~omO**^Q~b*V^LWerN&v3~u;+@8-|xRFrbu2F
z2`^`qzZt+=0lXc+#sIbiur+{9$rLvWc}Fnu2^jHR@xC9xHjZxLiKo^daGnwGM@jvJ
zoKZ-21h6xJ9|HI>fKLM06~N&Djs&n<ln(@OkXaJGH-LRY_6vS_#T#z?dYAaANIvIa
z58yN5qo46!DI`vRCjE<~<jVlQ3gAQlCj&Sd;KmJ(2k><ODOY`Up3hzWcOLKVhX%6F
zw8$M&v0zEZyi);u6To)?tgTmmnv-FV{DP~#Z^c^qtr_HJ0^S0w=~W-MZ@y>F<tNKO
z1@JRRK@hn?{1U*g0bB{-Y5>0la5lg*J#a37-^IwE0sIvJ&ZYbz-X2%I68$Yau_>@^
zOToY5y%4~~0L}}i4$pR8cU#7XLkceiaG5=@dLB95z^lG%EKU#^K_KYOC#izzL8J+p
zB1ur5xc#XRL}n0KLA*ZKTd!t|4oOZBJLErin?5XGb=8*_M1BzELDUMOQV^AcC=8+~
zh$^CAHHd0KG?f3$GH&%C3X*n;=6i4MZIVQbgD452G>F7GR5e7WW)Nkx_O7?sraN@i
z_xMm>%Vt@%gYX4WFNpd<C`oH|h16lKiorw`HDJ;rZ!Fj-hz^UrvgBOzO)v8<j!i_q
zVMuoKAX)@5GKialXc<H+uET>+gP78y{JS42v<{+85N(5K7eu!px(Crd=pBjKDTvOr
zDMmUb61vCB?do9R%42C=g6JAV;(SXAUpbc6gT=Y#3k1FQVf;bwz|6nX(y1H_BE;Hz
z)4S@0CA6E*dukmGLJOi#5Z48v2Vn%!Q&M4&8H6p|61+*y+jN3(gNOwY7vr?n`kF6x
z&Bs^o_%>QE(d;dlIIFX75dDG}E|UI13}CEe==DJi3}R3+SA#{KKw6{ap+Vdb#4vF;
zN+^YsuX(+6!!_>+%A0~1A!Xs_1z$J4C5TZ$Ob+5MR%7F=(Sj2NZxtL9#8@G>2~uZV
z5aWeU5WHP5m{Em6cO-T03}RA}ulYQMK~sXbCn>o*h^fM-2~HQBAvjZTmLOww-Je06
z9mKsNnIkwi89FbB`NHoLTp*Z8Zn2boe-H<PSQ5n2Anp%hSrD%V@f!Pc5Dy0NbP%h8
zcqoX6gLpEC6`cQrcr=JJeKVhs=#K@lJcz%a%zK=DdtN5pUa84%ulaIQlqM<4V{er|
z6@-(btPJ9|J-OG<&YqQ`tfmWMO%Q8?crJ*o{ffC-<Ev}W1o5nx&1sy^qhQtr@q7^5
zQk0k2&5S(mrmYX+1yNYqBjwE$<;5U~Uc&|PauDALe<kQWRXhEb_kri@LA(*fM?ri{
z%^=<i;=Lf=58~}0HU_aNh<7+qq$>Olj{DtwKX9`cr@^g3Y!TjRjMrz{Pbq$vV<%Oy
zGBdXY@c~2YXMM<eyOwcU^<D0ozd4?{cXhQ`s<NGvOc1+**d4?jsS5Wice20D$*Fp&
z`X@mU`JcNzL8Ld#|1qy%Vb|QpQkA{TPpYy{kZBzZ;?p3$4&p=*ha?YQr7A~*_)Pfc
zL3|MeC5OfPWe`V_I*d#ARZ?<H<i`aQIwylT737hv_=$BT^6v#1>$H$>*|I@=m$Z<G
z^~3*I_?gp`c>f6ESIGu*LbcyScvd8|_Pcl)^k)!%iSX|r&IR$W$o~l<p>RHF;ew<{
zeadO=au8QIw}+7)#?>IMv5$rDL<lJ%q=vlt-v}Wsg!B-)gwQpFj1Uk)SqSAJR0tt6
zgxnDFLdXhvA2AJ*?{~6==Ll95{J>Yt(EO11Ia0L{s)tZ1gv#QrB3Lzqxo6WDn)o8A
zAcVpYN<t`=PzDu+P%NC^D^Vw*TqA^<|084)l-CNOb_gv)XeCMeLZ}}?1K~;tbwa2c
z!VdXVtzHPsaJ2&kb^PTGLue#A%>)|@HWh3V!p|MO{3pJ{YA!;0TZH)ivL~l&9YQ;i
zw@HS!4S8RLF{phA9YW}sly?%sQZT5q@a@lf2N84&Asj*^gzh5j5rRL21)1qZZHodS
z1VcRH+xs4hE+m|vVyPj}tB1gks%Rk^0>8b|LRc$bX)$QSyD4S}RtR<oP6)S#ForrI
z#6lPl!u27<L+BYoUukHzb*~Vv6W&{p-}m)lXPE5Wn%#8Ldy}o7$omU!_|cOLWF3Yu
zQt~`Fgdq$PK2(q`H7tZ1gpZqElxSRLb$AFjiEu;+i5|jl-`GiR4&fG&j}jc6tV6cf
z&a-J_L%5CoB!qb(j0<6W2vb9t7QzHkz9WP?L%2PJiQ;7x)<0u0xk(`&EQTo|Ob+3T
zrd~&V{cO=1%R5NnZdQdf(@&|&^blr*aIbX5nIX&yVYZl}+C4%lrzupUmxMS+go&;=
zKZN_l`!HKg$l?%|h^d8?oK0KAvb6Vl%hC|;XTymOy~~6=5aO{3|MjKVt|GdJ*i5^M
z*fSpq;Zf0fEQH5}BvMR_f+s`R<}0GR6vB!So(f@Q2v3LbIZGPCst{I(@DYuNuqK3O
zLU=8N*F$)gog{=8LwG5K=R)|lZ8?8tv_6D&Aw18XoTfNw%Ae!CePnJOz7WEss=55B
z&{w`9H$8nr2rq~53N^=h3a_$J(!A?J!uv)DZ-%fngm**U50c&rVPgoJLU>#Bx1PzP
z+B?#JHixi9$USKa{~xqYkape+;r)=ev-|-kij4Gm-P5;)@SY?=Wb_Xu)~Phb_@-dH
z@O>Q7A?y_WPeRxg!fp<qY1#Zb`-2JPdqTLDrtB4@eY&D_Wq*jjv%%|&GY+y{hGiWJ
z!MIZPDSP7~?;7-(m~EZzmFuwZGa-Bz!jTZZ4B@K~j)riO%^`1-9t+`k2w#W5y;q)|
z%_z(^|IKuQJ^$7`{?htX2;YQon)NKE4#2y!aMKk!lJ7(Kfz2Ai9}@Z_XPXdy3E?O4
z9x**-x?e;1O(f(yGtwzPOYhV?o}V)*UHOx#hwx7be~C_o3Em2p?pz4xL%1Nqe?wR-
zDN@eLp}Q!xba}Y%vM5{;yefE2keVrBxeExRQo5Iuj4%+!V_`fVMujjk!x(!acV-w_
zVPuDKQy3${$O)rj812GnFL86jC=H`V7<pmj(@q$b8NE(caTry?s2WDKFsh3t4_=@f
zUxI=#3d0^2iDp91ZSIz7<%~#I62=21puA=nWnt6{qkb6WqU;Mp5mGCR+G2ze8KsU0
zN$Q5Zh>Xr1c6u9x(J+i=VKfh;Q5cQG*pjX^P1>hg6N&h8x<X}oTZGXvjMg+FIuy1N
zg~OuIRuWBU64Nu34q<c*!wka;qf;22!{`x)Ka4J6Z{$*^TNqu%0?SJ;U3Vc&D<C8i
zh8jkYTL4M5u#}5mvaldg5o%%Rl60a_Mlx@-Rxd-b!*Igr7e@auTnUPY(KC$L{}i)V
z7`?-|E{wY}6y}63mZ9{Kx*}m_`i8x4XJ~MM2nU5RSdzXzjDbSdWGKwfkT8aZF^mlw
z#tmVdO~xhRJ0XldToPr|6vM01kzw2%<_Bfod3U$4exNjNnmZ<pQPL&edek>M?7e|@
zYZ!l2OFvsJeQX%FvBh`fjthg^ptp<Kc)<yRgP_EZ`M8;QhuFL`j7dT!hjDipQ(3?;
zrif(y-RTR>^u&pC)54e`LVBmOF9p1l=%_%P6~;Yb%ogKI1@9G{6UN*y=7lj|yo<uP
zPY8#}LLmzTU#y&)cwRyI;xLwo@cBL7jqUwmEMskm<YB=F1s@XR9UM0r9ufYiVB!HX
zBQ6hPWf)I~y_>`*!gx~13c;rYU+(37<FG1>)nU9I#v5U*3FDbCUX{>i1)mpOD@f(%
zgsc-B^=-;}AuojSVnQK|mxXLdcuTV;Kw+#`!bp(U!l2`yStxunjJLwr6UN>!-VS3U
zyH<tVol=A~P&S3}P8gdx(8741qd??a1>Xzf-7wB=sjvm!+(>sr&GZk#_%Mu*!`L3i
zN1~QMh9=bLwF)wJgmM3|!r^DVJ;YDK*hTxd7w-;(d&*3Gwvn|jjQwGp4&&P}4uo+q
zjN@YM(=ZOPZ-?<!7@vjlc^F@WahO6ViDU5+n}A0+QAAVu2$%L5bX4M!9}_~&g!0#6
zoCxD&7^g)34O>Uf*86``337(>UWN1@I8`pn{Vt5}=>})<RfLOB_-y${cB;L;Zg1rN
z62`9#Qt^X|-#D5$DpkZ){LbOPffK<k5&Rj(U+l3F)QaHmF#h4R8Sy6Vb7B0;nOXRG
zX@bJ<Gt(ou5XQwYE`@P9j1&pI@9y*~T>pnL;PX6oczW0OOTET%S3#k-dj%ymf;7>j
z*#Q-lj0k9o4iQuko+%h=kVj#51UV5@j376HYROoS%uLUVAU}ewCFzw!SS5nW5iIEI
zT~;nnFRCiSSu={d&nT)cynr?%_@y#VBwew{O9V>=YeY~p;;rboD55J9&gE9^2)}er
zZyrI52z(JJ5!4a=yEhaxh@h_UJv-9sMNmKD-IXNPR19qxL8Ay7N6;jKrV;F@3JRM=
z{zE22FR^6=ts>|ZLGK7!N6;pMXargWZ6jzGLDvYnMbJLtefZW%u!A7I9V6a{btH71
zMc5^RnH9W7?;b&q2*M)t3kC%Pf+@4Szh8xfKPCDR;S{Pu79T7j*M+-+Mg(RAmT+6p
zN#KiBsX2K_eoVY^!JdM9D=1yw$m|orb*v(h^cB2bu%BRmL0T9P!4Hy?fg%|c!C)an
zA{Z)U;-_Ag=xz}2Fu_}<6jL%>_)QUv5JJhw2#(G4lt)D{I)aZP_&9=FBN!9G$_Sp0
zU~B}pMQ~39v!(gQMKCdfJA{uHoFI5Ro4#o(JJp>LOp0KJ2<e?1!8GA_MKFa8Dtu}(
zG%r)>{<XKw#JJPhtHr`h37wVHq4K>E%!%NU2p)}KZUplpSQx<~QJ61ypI{;b3zB?s
z1WSZJ7{SsA?vG$u1P_RW2_=+UT~1@_bnS#ZB%u#;D9Oea<&TNv$p{`7Ldo(7o{)kt
z^NF}CB<LwYnq3va>Ihzl;6;(F5qwVY8Np{GSS#e0dEQB_>x4fqNbh>aou0X)dFo3M
zY>42^2;P#Qmjz!Fd`0k8!Qt`<_jTcK2quib9l?7MydS~F2sTCVjs$Iupm`u`a|ByB
z&?Nts;JXq!N;p5d+!n!ytc1>a+}Qmff=?zD&tK^s%*E~9?HryFWT=3OoeYZLR0Q8d
zuq%SyV&v-x_C&BZg3RF+zlvaA1p6cSJc2JGI1s_X2tJD-GBoqk2wI-X=0QM*BHlNc
zEcl#cee#I2!x3!$IPXXVUq<kDZI4qSL0-&Mj<VB=eNN-YBcL02Q{K?Wb5BHYQu4rq
z(0KwCH_cB+@NESDL~t&GGZB0j!LOq5JqJ+)KM9{x#hbT(O!Aq1yeFkUi}x4K5`BDI
zUdsF}g0r0EBKU(de*}NA)X~(OCTZOIC;rX)d?_<=sL@s_#lI1p7YivWE<|uKf-6b;
zG=51qqg+mss}Wp_;QzhUp-WYfrXpR%Jjr1qpA}SOs%WC3sfsKW*(z$NsHq}H<w@G8
zrlPuvT-7U4o{D@SEia^0Qc+n&6%|!gEV$skcuby1g<d*(3se-UC{giorZW3f^&%C;
zD(=~uK}StWDmFu@iotp=IfZ2^%2m`=QBTF7f`VEqYOC<6_+@(Pk>*)1W#{v2Xhr4z
zOV;5`rH%?B?bKJ%K=r=7Zm5F4o}r}Wg4`>^iW{l8oT-##DUDU|#Ws>=Dw?b4prWG+
zehk|}MH>}uRkT!j4v#`fD=9*238fwWMWUUGJ`5U@%U2@Xt01<Vn%ar_Dk3UW6<t(x
zRlV00f-1VH=&r)Adh37wT%d=F_NUT#o)}Hd%u-fmDFGEkhK5)tSxVo&#bFi1f7fJ2
zRcPb`@@&=na)(EY>naQtrew)dK{vj&yo!+JmHO}NvmDiX1K$;e$ZL5$RrFG^SH(V+
zPa3m&(+(FKIZ7WD*U_?yekvBKSj1AO7@*>26}PCkUd2Gw+Z-P*b_S^!s^SLWg9V4M
zzhx<Wy=RzsnRJ&eUVpxkeI{E;>{;KWVuZ?LYVt->C)>-OJ}P^ZiqR^jshF<fRuyAZ
z+^%Ax7#XW#9E+pkHu27tD2z3MIhT_p*Nfy16?dw*OT`owlSK2?IT@4LI@!w2{vzi2
z!OmVz?v|jbD)_h4QxfstY-NUunJVU}n5$wId!35eD()4{**m?p3KxO<=Xuu`x<mOM
znJ1z5sknABZN7@49OeAR@&zJfXonnSv5F-s)~k3y#Zndbt9VMqN)^jgJfPw+w!4Z4
zRXik79#!#hGVUWn`sR2w(_)yHXBK3+2)Ph_QpFR(;~#iIH%>}jA>O6aa-SBmM#VGi
zIl`&1nxlA)H@`irVy%kjlk(>{a<kLdi8sC~m&btc44h3fy|MP9ikDQpqhhm)4ICya
z-ca$TidQ(ATBW|K;x*M<6?>_(K68}U#mJ+Q;kSfuWCqT9-S2HSbfLGQwu#Ymyt}-k
zIm#9l_c>WxRlLhi`(`#zfdA)JA0O|3)H-+IxZL+uY~$EJP~ii?T`E2l@)1V?$IDCJ
zVwG;YiX9@~$tD)UmyYNXp}R%0hxIRaa}@3u$>$vV31t<Z3h^IIW9T8_pRt>5%cb`V
zP8TYUsQ6OFX$ksDkU=Me92Gn!cwF#n6{lV(rou__o)V<@oBzqfw<0{F;=5$%;9$y+
zD*ug$e>I%f@H3|`R#X(PM)51hBj=weI!3+PIIH3+I~(r;B<>$7{#5Z-($0Amf2;UM
z#kr*9Um>X@a_JbI?t+SoBD|E;xvb(!l5-7~5=CkhB~g?{krqXI)SIHKM3E5%qNo@}
zu1G2fW=Fk+Zl+*X6xAy#{5~ru3V+mV_w4<-d7?&MDT@3gPy9xwvUt^sO4TT;F>Vz7
zD=P6weo++sfU7{TP;mB=?Bb|*H%C_?mQo{%no-n=qHYvrQItnfI|^SEd_kJ8Mb(O8
zPj=3G1vz(BRGzD-C{aASKbNnA@{K{hpII-8`cbrqqGc2fqU^xlTkg%GXcR@`sP_X$
z9-h#I`Tr}gsUUMsPDj!_im8LWSBw4IyrVu_MbS3uo$~s?sI=Bme8e9YN3pS@vbUnb
zw+h=u(LRbL!?RCSREV9T=p4ngD5gizC5p;#`}8P`D7r@ZG7{hBLJz48&8s>Dn3<-z
zktj0zrv_Or3A*!09=&1V#kt<JphgjYDVLg25#Bl{m;Z*I-Z0OM!iwUCD27F0N8v=#
zH;R5yxKYHS=q<{O9v9L}u%}?FT&44YGzRq%?{$LxBrOX2M=@9=1ERP-ih;r@9~8yC
zqO)Fbh{%Tua=txEVHCroxGjotQQQ>8h$u!yF*=HoqH}W;gKqZLFf?@wd)F9m@)`0}
z@vRa%R&Y!dKh($PyRvx7G(#_yVSE%5qPR1PNuqFj6n8|y1A-VjG3vd!S3Itej*`hy
z+$B0w1*b%Dw~%XzJUcmc^1R9nWq3ckpAp5{D4vUAW)!ocxQAULiie|kgk_9^3Uo`N
zm?L~{6!Tc0!?OCU%$^^`eIi^C#bO}~llqH<EFYZucp#P0mnP-+N3kr)9}x0j6b}hW
zXg(UnW9+?2oyVhiI?0zu@r3Xv1y>~HPerj(I6oX<TC0-s)lsYw{)`~=ysOa5jFG3T
zOX|EJ<oPJpCnfA!FA9H2aD(8>$<PB`%3q7(b=H-JSsLDm;>{@XG~{b|i#kypiQ-F+
zh$uEi@ktcBqIf5Y%^WFFd>qA=D7Hp1F;Dp*ig%-UFN*i0*cQdf`M&g8pkt%Z&1?a>
zw=3m-7{zbRbE*GGp0Zt9a3>opPuU^-qfuVJ-Ljw}kKEbK86b*Jqc{}B-YE7(u|J9f
zqSmHE6@I+)dE31A^OS?@s-Gf8aXQ-@)St0i9?0dq@j2(Ze5E8``67yM2Up~)5r?B_
zmap(l$giR}8pR(`{29fuD2_+*J$q&pUq^8wif?F2QaLGjihW-GiPmyu2Hm$JJQKxt
zoNeT+Zzjs&c8~0){TRhhqHtF5XU_aAukc@@F!Q}G>J@Nw23Hy+ze^Cw&$E1gMe#T1
zY7OZcPe#JIC@w^CQ562=q&+_Kyzphcv&$9if7o{^ipx=4<9N|<MS_k!ka3l@^su*<
zn3zl}K~goZA@qjce4e49f`&|u|B&^B{EZ-yE=xm24GmjmWoyWhppmgWItJy6mq#5A
z7*bqGLuCyeHFVNYMMG5$wKUY$P)+kLZAC;4)io4oD3n-?K5|m}ujeZ+PfITmNlgu9
z8cK!N5PT|`TfXsIu0dB*`0qBNPlKYNiH4@4R!2j94GlEZ6>mL3+J8r)H`LHrB#ktj
z$X9qMV!BgILWO1;nrmpIp{<4%8d_>-os8Q`^L}>B#pfl_<f4fB?UJD#gtQm*Rq{;n
zMbOR~x@Z`n;d%{SHFRT!H5eMYYv`dNq#>-qpR^FraO$(%TcQYRuq!FIR#N6wQX&!>
z)u3rmg+C(3X}|P%T4FtBYOpl)($Jd`H8>h#8sehtY8XA!msN)C$MZ-S>(db#Jtb)1
zX3yJ4cwY_uG+d{7Ut7-{n!Em_cR%u85&BDLH9dECC1s$7K^n$s7_VWlh9Mem(J)HG
zPz^U|7_Q+aQ69$3v`f2Dcv(lU7hSESj1ccg4L56`x1_SNs?=MZHm~ee)UkNVXbrb&
z7(*jt)A$j6*J&kVHQXk#$c@Sh9W^ItxLv~(4R>ppsNoI`lQc|b!SBsjQUqs=?@ktf
zj8`tYp1afTqW<uVn<eg4PE&Hc<TTBDPCG}zbPY2ki3OtYc4g%r4YS!LG@R6MuZB6C
z<utshVXlUG8lGT84f8eJr{R7L%QP&I=uB&ohJ~89ElA#WQSM?5{5$Xx4NEnYAITk2
zkbg*$ctFF08Xnc~m_&R?!^1+jnaJbL9uYqGJum-{CoL}*!t=pgd82QIhNm>F)9}28
zl}ts$T2WY~VYP-e8lGY6C*S*J6#k``dz8<L4)<hf`8nZ7D=U9gR@Q5HLBp#eVbF^j
zUe?fOT*gZpHfY}EkK3AG4y(xB9EQH4;rCqca!mJ{hSw!lW)-hp-lDRGT^e?4*r;KX
zhL0um9Sxf`yvKnf-Ypuo3b{1at0=m6#oJMgY}4?ehL1$@0h?e|USB7RZ*K3A+Y|o(
zce{oi?4qLZi6GyR<I!-eoP@PK8a~(Xg@(Nv_G#F!;edui8a@-{gMyz5K0YhYFNeu9
zV(%&nbx00tsOK;IQsaB$p7)5<0C!-Iikv~mH5?PpnxU8OYtbB6MLDJ68x2RQD1WjW
z9IkL$!w(vMl+bTAoDuRJyY~(GyiNXIyoZnG@(}x<H1MU|v%CvnZ>gg2<nUiK{HozM
z4OCcPMR`jq=XX*2Ly#}`GRj}9E<NjSF~!{eBjlXmYZt3u&~Q=1IUWD%xTN7SjqA8y
z#}y7hPCGgxI<ARwB^{M@r07W1k)|VE_sU*TM}`gv&l0SlBU1=NYc{KPUUEgAEy5gP
zrOe~+cny&&l03nD9mQ3>9#Ta|RULJ8)YDN-f(msM>8LK83I#$sR8@*~l;|kaQ7)2F
z9W`{+)G=UwiLxS{j>`PcuYRzgmMGNL;nP8H?I{_G4&F7_N!olq;(f4oLsg}|js`l~
z>S(8<p^ip6TIgsgYK?U?6~Z~8iIA}aGn?sXu46`3<>(vUQejn9rB%{q8y&5MZ>y^C
zQ(T7TjLm4Tql1nfI{Z31>gc4Si;k{3I_v+<Ip0_CYV}lArCZWYceaJp3^zfZzCSl0
z@}QtP!z&|Qi1ky=+b>XcM0NDk(MyMxv|zK~vomz&$5&+NFolp?LS|RUbr?m?QFkRu
zOh;VDvfkd|Zyl>Cy>;}_ahr~D5_+AEK{}tap|6g9BI(aM*KxgYelNpV19k5kpXl6l
zzCBJdM8{Aa!*$%G;|3jBJYZRr>$Jo$nyTit`-w^3rDTMTkvc}}xK+o^I&NXp7Zi`u
zapKkD>D3fE>hK^MK7t;jW329dxKXTNF3Vm`d99kl2W8`ROwch)$2~f3*D+DY-8!b~
zxI@RCo;6ICq<IEQuTbtJ9h;Bl9Xp$QmyRhSuT|>p6&|Xl&`lG`48iH_`EnD%(3v8+
zu1?Nu9rx;3sAG|iIXdR*-uFuLb<AV$>Xr_E3#Nl=jB=lj1v+=D6@I^&_=Iz@7-7&7
z32L@9Bk{S`G93@-*rH>rjt6x-q~ir0FY0($$0Isc>S$J7c~r;D)83ut3LU#jN*>ek
zxQ^vIp3w26j$fZlA6Gw5n^#h~x<bb!sQHxcJ>Oe9srYFft8}c^u|~%_9nb4{M#r-{
zo|F8n75hwrvFH+nLMqU^UP4JIA-=?7>Ud4~2EmsFUlHV~GTdOL+SEsLU)S-5jyKuK
zb-b-(la6=Tf2u1RMRP#qRC3;$QF${P>rwBDKef6-@~)2ebR5_5HS@1y8~c@xPj!5t
zb56r<9eZ?qq<fov+jZ;^^0DAIhthWH_(b@&ue>+DcInvgokz6u-frDq2_o6AW1sL%
z^2!_~2iU{67gYSrQ$D2Qu#O`-KGX5JjxRVV9Vqxz3_f)zjr_}`oullHN&d@MX~%^7
z#K;NZXV^W2oD@8z;~O2Pg@4PbCdYgCjBfP#g70<wpyM|kXLbB23O@_}B*;>*EY$pk
zZ7uHe{a%SYr{hl@f3c^D!scX&t{n2p^0$tEL{7fse8G7g7dRgpFbrJe*gTn5$v|ZT
zm!wfHbK22ym6JbbcmpuJ7Edv}jnOp0R0ErLq*0hIK?z>LK&F9Qkz^UjHjrbWqJjVa
zQISW)F%N$YNY4{Z@_YjeZ}5I4P{lx115FJyGf>Sybx~+wpuj+(@H(^^$tyBYVxZJO
zv4Q)h<WbW9*4!EfY8t3zptgYrsw-s%$|VXpXAC+LpMid_<({dRr6hyM6YJQzhWAgO
zdV=)@*Hu><8u+xja^QyYMh1wD1)B)|{(gn#23i>CVxX&mmSV7#fz}3ouCAOI=4)f1
zt$~irXMxhrKzmW>VBq&=-l~Rk7twtrBl1W_+XAJNfzAe||64{*c{foe=`N&Cfzrc(
z-$1}X(11#`b3+Eg2ArD35yN}hc41n{8z-vMn;=mGnt@R@i+POL4})v`Jha#}U>R6#
zV2uHr5e?iz1p}^u?}n!LGtl2a%s|{gPnPTH%m=2V_A$`QKyL$YFGzj=j%>Q~X4Z95
zIm}yM$=mG($^Zk`lN%UrV4w&G8yI3>knnHDXOw*9P47d+J52Bf!4(Ax9fSDME{`m@
z$-oE$?-eK`4e-;>Io-<1Zx#u4MjN=*z+40K42&@_*1%)~cZr?b3`{U^yMb{A#v9)K
zHTA2Od7YMSqUhXd;0_^_{8XS!5}x%%ZeF1>#lYPL?h(mU1Jl?L24;wt@7oL;>|NAm
z8ki-L7y9zBW$!XEa&ARlH)k8T*T5XsNoDV@gz}W!T%Y5c&z{MiZ{TqQ3)sC4EMvD6
z3yTaaHn7CN;9I?iT69Yd+%G{BRL}A$#k*?IJ!s%z1CJPZNJ8rtdUeHiAwJ4sQkd$B
zWVwMSMB!<{Ck3BkuMjfheBo~u3cL@2*(KI`cMWu_4DbR?@{ECJ4SZnWLj!9KJZIod
z18*5vXW)4QuNrvGz<L8O7+6}Uyuz9<R9-Z^2Ot{^yu?29d~F&bzRX!-y|>P3G_B(H
z>3LOxd9NFI!@#yeg}<cX)0Mq_^4AwCExs;z+rUNxTMfKxVBbSUn+$9*(Bn+rJDgJ3
zZC3o3!<^o!#|jmmxJ8?5S7p9u;C%y)gTCC`ihsYZ+BO5{3zaYG=Y3@0V*_6pIBa0M
zfgJ|+b9k~V&dJ+pV2^>l20k&c%kaMaU!<l?7@E18ouq3%3AX~VGP_!lvQI)6s3`|I
z-r4j;%I5}}6e(7bGPX!L#LiZvd?uAi!Y|glo~v=hz?TM28TiJ)R|bw6IBuZ%z$~7(
zf6Ty5^24kpH>ZC!qWEhACk&kAZ18K^R33;?H;X^p<wo{tR-=J49DQPW>+oWJPuI3V
z{`c%NBXfUb&7Uv(fz@85aDpQK#O5ec=vX1Y8u-nCvKDpL;w+~WHs6i-=tlfu;7@jp
zL1;Dze;N4Oz`y-*zCZpkaE`g^gAsl3FRPC8RUED2xWLJu4d<eQi%SMBvn&>lTDW51
zD(zdSW8s>C6cg{7c+W(ti8K@AOpG^?ZX&}(I}`0qz(fTT)l5`3k!d2!#J+i@l}v8{
z?k`fZP2`xUXd>6dr+bP<t}f4$pnMY>7pMOwC8B22VrBk4C6%eux3mh)E-tKUB2ujE
zek{AdM4^d>CK{P2GEr=zmWkRXN=%fRC=+Y6P<v2%4HGp@^eOggsrBpLeQ3FaE+|&`
zS+387Vxpdj`X=g#ylyh?YKd~BSZQEl$nS-8jGJAebShCAn`mO9g^8A;+*Gi+iLH^+
zW+r-;cxll+Q765XiPjR@*2LYutTwC-HGNe$Ye`av&lWnE=xCxhGijoeiOwbhCW0oq
zNW^X?x(n%Q;wL42M~U)GL3$67_)Tp2q>Ksu{y+v@$VAwLWx{4HnNUT?FcCGO3D?<P
zrT^uPq-bg3bom*j$(AZrBBhFB@&f_HMY(^e5;L*<{`77GN@kTR!7(L0P4qIsN_#?#
ztS?orGtt+?P!l(p=x3t8i9seN{F61n^zL7-XNeXUR`{Wi7o&k<lUe<sR2gjIn^J{t
zh!6^gG1SB;6QfNGH*phFF>#BD5hg|olF$w{=}71(NeFK>F-DA!6{LQ`-6n+kd56j-
zn7G}<6DFQCG10^wCZ?O1Vd73U{rDnUn_^;;iStsf$zta&!QvVUL+_T<rwUFJ>`_CR
zX=0X%MJ5)TxW~k76LU?>GjXp(oFmAYneJdkZ(f~m;yx4fE;NylP`JRvu+cfJQgRBH
zu=%nI?>DhbqAwMs`~edWvWFild(6Z`CLT8Nh>1rfbYcy!K{wP;cGOT(YbvERm7L#7
zA7{gv-Ws4uO{HH=?@n-qiKk3#HZlKr@k$d<n|R5@1{14HtTwUE#PcTBh(TIgYvLIb
z&zjh=shn{snN-tD<vCGUA$+}w7fgIGI(uQq|E^gtns~fn&XmcyFPnJ9#M`3$s^DuT
zUS|e+dYW&TpnH=&M1r=6wcRz9-)kzdM{_rt*kt0J|8W~4#mDv+Z{gq){j4&Di8d`O
zeBZ=26Q@ml%WRnV(8O0Jj+*$$M5TijcAEIa#K$JKvn<yNYn6HV-ys&XGG&*E-6js3
zIAUUtiM=8}#5qdHLBahd4zRX&mA&$c*MUiB;Zq4>wR~pcbKzf@cyXNfrY_x0Wy+U{
zxI+q0E%z?j`2$OpTeF$rV<zs;DLF3qwTTl#P6~cw;*^l-WeRof7d&I)J5G`oDq8s7
z#1AI^F>%hskE}+gl$QVGY+&MN6Tg`F)x_^6{wPy^W2==ZbZ1R`A!P0-@A$+&Bv+J^
z|0Voy!PUQ|QSvW)zKN?Qu8Hu1iAyFf3%|(j@mpF#?TU$%gXwe$Z;FLf3t1MrmMdu%
z(k;M(uUyHnK$jpy+OJ?C(?ZMaLVD>qpt3Erey$)f3UV#vStzhjXn9wMd<#`ARI^aY
z!cXyx$`&4PoOM&VQpLjk<;uo#rMiV5cb2|;pzODDg=2@UQ)Ho7;?}fKVqx*{vO%?!
zu`5bSMR=%FP7Mp~Ybj<erOd*?Ps_?J)Ur^UnWVx$1x$tMj;W>0uBEJ~rPQ@h&%#6t
zcUY)zp@D^%g}8-=78+UbTR5|}YGVscXwyQ!+DcOkAJp=S*~0Q>_+}QGOS+t^DQsz>
z6$>kpwt|1xQrcJ`GPJa|(oTdOYbzZrbhOY(yj=vT(AmQ5+6vXWTIgn>ySO#Al^&u%
zLPxcLg`kDcYAYcNng!iL*h0jDnzR#T9(H;in2zLfZN;!av;<8H?4|VD7M!HS6+$6{
zdRpjZVT6T|7J6IgV_~r6O~}`Y{Q(x{`IOo|r7tVQ@-FE8EpIK#w0irL>n#klu+yh}
z<5LES{!*DShFBOXMs5(iQE-@GhT?US;TCQZ@6RX7=)Kv(Ef&U!WR%z$BRE>{*8j0Q
zRyb3?O$c{h7=65j2@;q5b~dpjai@hz7M``R*1}{9cUf3z!Kj%(g-vPU5eu*FDVu6x
znuYlm?h|X%EzGiTkA)c)X0oGxna(MlGaGTXg?lZ`O{P9a2(N>k6t9h_GfyPF6=i{i
zh3wB3_SDQ<WMS#urAwH~KyO?x7M;1}MN2Jg>`*jOQ8ryHTxQ_`i=Xm&1LPqK53>Wm
z>^-8~AeMJ2%D0O0sDwVo@nT`Qg(oaLX<-GML#A;mlhARU!0GEL%bVM;D$3Iq-;T~&
zWns02H5?Rml!HBr^IPQBwM(C2XRG5~_n)({&cgc^wpn=I!dE>?US-W#SZ|^7Uj;8%
zc#%z6M|sJ@vO3Dk7B(<@$I52ZQHZbBQC{JYsiUOT^(x_Y3!9iqUF8kdaGTsWExaY!
ze%rzgzZ7q@5RG_`eK?iT`;LXp7PeT}YT;cA?^zgBH}k~ynsf{6W=<4N<qw`r`M|=5
zED^gIn|M*lN1T-ED%&l5%rW~~VYMS=Ol#OTrL65wEbOvy=yd64g1as3w{U<BA>O?f
z_6eD>qmYhj2gOTrNXVyx!|N)qcFdsga|>TsI4r_1lbT1QL|&BBrR2vf9Ji3`AkV?q
z7EZ9|*qCYKq=i!!Qf#E!_{PF%3ui4p#=*C2xDShe5j<nzJI?>Yf8=~<;RoSVIMY7k
z`}P?mbU(9(h5ss{za@33@P~yz#e3PpUz~O<{A=O7g?~hth(!zM#G5d9!NMge!o{SW
zL|UxsD@n;!-Ua+mlr$UZHrm-}ZzID7Y*e#R-9`l)nKtrltejn(WqZB1qK#Y|**2a$
z>Gk#;8#C%EtLiG->MCE?RZ8nAZR#ocqF+g{vLK^Z5mHsK-EHXwHVSPtw9&{$k&R*-
zJ{yXS5*x$oDK%}B*(kM9LlRwB&+B{J>nY_nYS|c6U#V^5uX>8p*z0VK>MKj?dkS@I
z)V00KYkm8_$M5xQykB2=V{F;E`pUG^Weu2O1LctpMU8DVvC+atOB+pXG?P@OH&B|}
zI6khZ|M-kx17%;oBJx%?Ivy`;!zON^%$=Xp+Qym&%EkstW<#Z|jaChn0S%Q7)M2h{
z47Sn9MrRwA4ckT+8(nQa*g?ofH|BhA>7p5>J#2Khv8bW4yH3H@hKk=tz{Z7!UjFII
z8Yy8L5y_7(sM?6y(1f>IRMNeXH=j_GN46R^Op)K*NLka!v*6fpZS=8mosH&qmd0%K
zw9(5(T-5f64i^BI8Yy(WZM1IeS?g<~pN;E9r@!C;8$%l_kF5T0*KbB+h2DYe9#cxs
zJY775p*C){F~-IXHip@_*~Tpr@kSdr*%%>wxZr|ig(KN0jlJw$XsqmLtn44+<$sif
zo^4Y)f_Dw<08NySFBOfoahr|FHtw=9&c=8fci23;6%%aSZeyZE2{ieyt|kiMnwi!n
z+5f#Ax~z$J>6tY@{hs;hQ*7LAW2(fOW@EaLO-+<DNej76m033KvGKQ!SG3~UHtw~t
z+{P0&=Gd5PdrO6fZOpSV-^O#Z3YXcq&&C29ECO%h7TTyYy>zjSC2UYJ-ms~cnWe&)
z?JK)KNyxcgdcekmHXdUAR4wV>RN-uSX>mIFBOGWy6h10Q@|cas#gV6ki=MQx!p1He
zyIGAKJ~m#r@rI43ZLG4f&c^dLR<oNeDtyMqv+SRe?RzCB%*<NmT(Xf`p=3={WsAty
z+jzmo1{*Kic+tj7jI|(x&HaUhMz1R+f5pbDY~N<eYc~4V%s<~$Y0*sKro)V8O7n$f
zZ*qv)c#q@D#@jYF+SqJki~Zl7(Iy-3Fq6%^+TcNLiE+Bs#=AEDX{PX^b7)@yJ8;jB
zOSjqhz{W>5K4u?iuJDT4qq*{-joRIdM>JQq+t^`ar;Sf+?^5-6b0rkc+TC1XyZqSP
zGhWa_*<)j`jT4-ZZR}&y*!arEQ5y%C85^J3_?&&ag{S<fjYFKeh10vdh4O`s!#0lC
z_>!|tZKe10!WL(|M_vQgRXx~3IVYOOr1mKMn)Tl^<G77VEj?=&dV9;xQ=A!W{AA;2
z8>ek_XsLW><9i$5vK5%zzJiUri|7WoRDNJi<X+=PF<8g;2G^vP$}jA?HvX{jr^tV^
zan{D~!X3N(vnPvQkmQ;;p8j9#2`!bxi_j$h*f?k7UmNFn8FG;3;DU{dHc}j~>vCwn
zJu>H#jmtK!BujCXX^BBvyJmZfrAn>5;&7GD8cuhR=^)GTYCA&^f)yN8J5@?yw&Ps|
zo;~QTMRO#mA`|VMaYws!hUPn{<Y0}1XBgz5ii2U)cTknl9W-~)!a;Qh1rC}zxWAS1
z;PR3}2R;XigCYmT4o}@jse^K{OtUo{)O1khcs0ph)Kaoaq_>uX+72jWx{2;o$3b1m
zUSq*}4jMRU=)i2H)E8u)8%a<?LN7@Zkx+r&W|FJTtrX_1rGr)uY$oBLwSzVef(}9s
z+B#_GpsRy!4%$2D;GmO(&Jw+&1C<wrMJ0S7@J%a)q>F=;)?W3J6T6EViC;($2hAij
zz_MFj`#P<au!9JjueD-`P<5asV?`a@CHgBDWauJ%v$aA^(}9)Lq1SZ~bI{+x00(gg
zM|YK7$9mYG-P1uY2fZC!Ypq1uD19hw<K>Nx-o6eV+*?N1Pe}hZ%JmKgI@np;yT}f5
zFxbIR2RAr)B`<FX+v|_CUwUQ?&dYmfaM`zgGw3K;l9xB!!A%b4IhgNYgoBX|COWvo
z!OaftZKK@cV3gy{pUc~pj&^XXg9(mz+cn0)SO?=AJSSPY&B4k#>G!1+a#S+)@yzOn
zrCZx5ya~Ns^!aFxu^4nG>%_qnDgGn}li6N&IR_E(ZU<8x+~Z)jgIP;5ra74IV1~Df
zE2oz@Q)0~$2~APL;dZZsIS$UYQHT`I6;47&;e8GkI9y|RtL}vk7CBhrV5!5uG9kaM
z!ds^%8@&mnysdJ-gJljLb?}&j2ORkG@>o|7vu+(cL`h~Ly%ct7tB^dx>J{(f4wgH3
z!oibND^I0k#YW>^JyU0e19}stZpklP>45mO;3~n@f}`6i&pKG^;0n9YfeOz#Sm)rd
zgCh=}clhrTY<954!3z#vbnvQ!*QBH`Ie1yf20@l$c_8JLB)_+<^16dJ9Pjp!L2o*E
zi$!jyY-04b%G(Y$iYA}5(0ih-*J|&G0twZ&I(XN?E(g0EyyxJ32Om4w?qHjA2I_ps
znMY0kfJ3;Q!etdDABjPuow9=kUzYh+J5RXN!6zJ~Io@a*-cGr{owCQlUgk=aX@T;6
zw8^yEDF<ZUIOyP?b_%@=;>GKbgU=}Ml*6gxa|d5Au8d8F)^4wSDR#bd@V$etICdNy
zb8uXQ-?E=LIN{(M2d71HlCwd3<&+?!)6vUWtAd)&AbQUTl2G`AgC8CI>EJI1KRNi>
z!S53KOH$`I2fqsEm6222Sx%m#bL{P<L_P-pLxMD}RahKOxehLh<eY<llbVcjUU=^D
zGRER#Y9_sJU)d!GmmQGMQGQi=#Wlec*Xtpvf@y;3f)r*5d2DY=ri&~WN(^;k$aazA
z;&vAkT~u_D>%w;7xX5#n?;`9X;-Zp^$}XC^Xy&4d3$wja%|&$=Rb4D^?_Il@s{$8=
zF7|g&>bodnLN02$D05NbV(%Z`+eD?VSAie2S6*mRRKo=?%_rI`<t}Qu@G&zkxa_Yj
zI$S`KQ@M_dw+@%pbx}{`|F&0pc2MSaP*!zN-tM3@aB;DN(vT5dG!}&><Q<iwj^2Il
z^&J)R<}O;e=;ETQ%O7o{6}M4-DC{WM+C^I-l(Z4TMOr%-?Ok+my#*WPTy$~4Mncy~
zbUG(ByCviLg>-k(BPpSUfbgJ;kdT8*(rJNaRToiKpo`fZ70u<Vl7+epLkRC;=#4fi
zVGs$OMdd~%B(95?i{UPAauIjY)5TC1H@N7<YIH%h>s_qtsPqy2zAmm4gA?a^M*6wl
zQwzHOE(Rny(;DdF`B|mBlN#h=u!|us$SJ3zG9wNXBR3{c#scLdT#OXSSQj_DxW&b2
zdR>f?`e&?JolBW#wjE0`Msh{r;f~%qFtw9%n~QOh$?+}{!U>WkCe5|Y9b)8B7k9dt
z<YKamyIk;b;xfT0E~dMf;o@%bQa)A4G#9^i%%FFsi&-w_i}0SL&b>lr3ntX&2%qa>
zUQ*|D$Bg@2EO4<<BukU>MJ^T#Uy@9Mn)i!@gelTJ;Nrog{zEPvcJYXK-|t^S*J5DC
zW9&;DCN7?E@vVz9E}nF;!o_<o-gohoi<K^3W)v4syI92<W4pLm?P86KwNfF^xOkS)
z>!d$hH~sl76}xouhQ^c?d80Zh&#~sk`)1wr^{g3R){7G51wme3UvjZQ<oP?xp6#T3
z)=7EQ#cLc^F5Y(WIvd@^u+rQ&U37CZ7(J)6GQ5sA<u=}tzR|@d7n@yd5o=819S*b|
z>8TB~cpNeFv(?4B5=4C(*}T$QLvC~N0p|f12V8vU;v*M3U3}u=V~)+Gg$wtk?QpT(
z^)}9!T;tA))mhoJyKt9_-7fZUu3)0O|JzrheHz@y397Tgh`f}4xTEZ#i%(sA<>IJ|
zLoPmZ@df)5tLsj0^?sXO{<)Nwgx(|UuAP-H#m<ZsMN3Ujc+ACd7vH!z?c!?}CtRF#
zamoclmv&a>U#|XkXXTI1UL{xSqWHTg%qnxjf>ZLHi|;vka@vgH2Nyqb3gWgbi{s*F
z7k{|;)5S0BEiQg@ahBs$Zj%#*W%S=AC#*X1e`*!}<>GG_=UrTI@sEphF8*be)=lTK
zilKC@)w{cR{G~2le%J&Iz3k$Oi?kThV_u72b&(SDDvItJ2gnNVYMvV7Ij&xVvZXR&
z_`ZvR7%IfPYG)`bgh83fScP4coER#`@YfS%HDkz)Auoo)7>Z(8zN#ochDtG17Jg}a
z8C{has>e_eLshX*O>p+p|LwU1x_WcwgsxtOi(@E_p+*esiY0;+vJ~{vF%M-il*dp@
z3Noj1acv>Yxle4e;MA!bL%kSYjNzpi>c`L^hFfA76+^=q8pUA6V8_rnh9)rtV+h62
zH0G`4+QiT{hGsEud$f5BEn;XHL#r5C$57>qvfg#F);*R&m(e@p;==R?x+?8rXdgqz
z7&^tUv8(cVSLN@nN{1NAx_JfZ97C5FPVO%2A=ovBZZUKhemtJ>MLdH+bmaaR0<7nF
z2Kl!l568d@H=jKkQm9A_Y7C3_mqlaHM3OHzp1N?#A30oR#`woc<;2i3M}!ZAvxdar
z#t@4k9z#zN4rIZ*DZOI2E{49sd&kg6f+%O6`^C^-<k!bAK;#t8I+Vu68x<0oPqauI
z6vN<TC^vxO`^$#LFuI#^Lkz<xk70O>?}g@!WKEL9FhW8pp`+S=UI`i<<L^;0FNXOs
zjEP}v43lHHiyiNW!rKIIk71mU@q!Zs6Boyc!l`+OkUIq@336+Ii<~Jj+#~tCJBFz-
z<nJq6wxg5}EvLmWJ%$-E%#2~-FQu~t`Thnu9hcLyW8PE!dj(16#4uO*>~0FZ_r<V)
z4HN?xX$xam6vM+YJi-PN35CmqEQw)hQgXkLonLu>S$ZIb2b1!LgcP1Ccr+<lF66No
z9v5<PToI!@5yO))tPsh{q~=pXxNf1s)52GEQ&z{YM))%^tV?P>D`ag9&k6aYo5Cp1
zCqvf@d4ZF|-W<v|#PBkEV+=pX@CrNj?xMG1csqtyg})~Fx*&tz5b~xVA9rkwVN(o8
zV)!zKcVgHa!-1H$%-+I*9K**kY>(mH*neB4+hX1t{yo9>1-W_pK@1;?!beFpW{GM$
zV%QnOK55NQV%Wvzh+%Jxn>%UD#%__5u)Fd(0EHy<?iYC?^k591N-Bq9_&kO$gnyPy
z<*;~}sJDBYQ^L($ru$V4-^6e_hNCeYlUh11cvA4|7)}VGCKuJjQ{tsCr&k8O-^Or;
z(Yq;EyD8tXpEN8f>8^awt3V7t#`q&e<?xPD?v;@I62q@C9%zL+ar_p;*%+?IFffw!
zdklZXaDff+O5vX|+_t~MxfuQx@|WP>g8wkv4_4$~;LkQsr4HSBk?(l0;zgO+E(vmq
zyDa32V7*;s*J4PCBQ=h+II6}`Espd!GUCXMBQFlbQ6Y|saqnh7Gmfk{vg631d{r@T
zKZ(2{B{GyZu$0j8X#l<Xaa4+<vP7))RXWwG#J!u}?9N^&N%c4i;;0cv%{U6<D2k&b
zj?y^ZY46?V7E45`(Kv5@nJ(pwSQbZl9JS-{#ZfEn-3Zg*vv;O5h?<O;P~)?Rx^dKt
zqgfoy<ES6^nvz@pd{3r991Y`W#JGH|La?zQy=4P3nkM<xt0{$Q@#8BBSz|5Y-i7k)
zkh0csw25P7FFf4~ZR2Pc$Bdqs*^{4RpaZ=mJ<&0aPI2ssV{aUt<LDBH9fuP~*EqVx
zVa1_zDCE;iPFdaK=)pQkrWlPQ5JxbMkVqnNsBwhj;L{K0ErHyHB<FKKq85jqjBCVU
z3V*s{DuZa8<#pqT#jz@m)p5k*=o!c4IPQw0R~)_L7#YXSarBAfx;O^MF(i(@arBGh
z`Zxy0`S(nvKTF*{V?Z2SLG|y>=VRr(s&X;Oh1{UHw-T7$T_GPD#|_ksW4P4PKfk06
z6SAwjcQr|@KW~a-M4UglQ@G4v#JnELEpd#B<F+`)#W7m+Zx!T9gKkV5W8?hKnrDGm
zbK>|oCWykFaoirqMB#VD!F_YCc9@NUJrq_EH77|BQ_1dHG==$$V?OIJj;V1>i{qa7
z|1otP&`uQZ7kTgE6Tw2sdoLKu01DVp5kz|LCD~-NNwz<VAiX2K3y7egAR>Z=B4Sr8
z*bqTLih^`dz=Dd3ie2G<_lxoWJ7>;4cfR>%cFH%ivy+(#|8h%BjDmBsNl{FW1~X*F
z;zOrM#8q5SlIKo~VtN!aqL>-QtSEk6S;#thPJ(u|P}C{aQq75CZWIfnSQN!QY~^lM
z=SQ(1ig{7oOWSLyD4}Bo###ntxi5<QS&)`0JN;hUQaupGgHbG}QAM#hiY3fm6icOg
z54Kc!t<?3cg1IG^;u-znD3-CS)+wNSL<oz?3TM!YD0;UF9`TkJc|3|IqIiv6CW<Gc
zSQW)nQLKw%z?RTzNqJGLV0OADinT1@6-9K6_;eKOqj({T7o&J4ikDldXW0j%oP_7o
z1y7fXdOnJ8TB)k7)l1ZgVgs$cwHmTA@0DClZo58MZJ>LVg_Xt3H=@DE!lo$Ri((^d
zK8m+Q@{Uya+rs^&Vd~Jv-sK3>w9slDH0$OlwnVWtiuXm6d1kU7FiTNvk77p@pKgt?
zDk!1y+UY?iIngEVieh&Zm13wI!=5NUVxFV;Hj0m<*c-)XQJkPvNAZc&#?dJDM?o_?
zBu_aY{Gj0I*8k3^4@=My=@-;ICf?(M3tOvCbL3<cr<lFgiY@-R<m$BG7g2mEq;KuK
zuY|B8Fwb;fi?>bfyfaaJ$2N_@eyRBTD1P7`PD$!)6hBJ(zee#>6h8|;#}Y|xu&|uH
z|H6@0J~YZE%kk;IMe%zS*{=rv-t=b_f6=HuEGpkd{T;<WQJjzBLKLN9L9b+1H!d$^
zBi3&d*bjfyC>=vy4EZr2hH^2KkD*K~7yt`m{71`xTpSC!KQmvWXHaitW4JUHq+_;G
zvn7$sVz@j8>xxi?SkN?ANUSSkm@nUYOyR{gs$vWu{Zaa4o4~w7G2Q}HR2V~1EcgNL
zrAI@>F@$5dDTb>)j#MGWP&<aJV~E61RZ>$iREwdy=+}tx`cTD)lo07^UZ`9%7W^ns
zD;C^ILdQdS*ThgKh8tqRqHEn4>Iu1Cu$-QMZ4B4NpiYJP(qRs%bGe>Rq`Ogc>I?EM
zbF<{?7QqIB-^TNq&qlG}*OqoMwC7tOhQ=}69z&BD+QiV7ylwF1!jzlF&@6`LQZp@L
zXeETT)KUn$Lu(<uYv)l&eGVPmp7c}OP=^>g#xOR9yJF}RL+2PK*326nLzfu3N|atP
zbYrPwNW`GW&?APPF=(-%k4FVbVln<nM?MKZmxy%noFo~8LGz2ji6Iq3ItG)C7(*r&
zY;(G$E9jUXa!N?D5;q2qPp2d&WDpe?O3iG<-n6tB`o{QGg~2fliJ@N%{bLvy!yrDZ
zt-4cifFPsOQAlr=Fmz}P!z6TM48vn!&<MeCZ51`?Xhl>T6$1&qW28bjWU<aUCXb6@
zd<+v}+)h)-&txV$ds*Q`(cyO`y;EYC8pBU9{7lpRsLZq&-ihJe7^bt{Vwf4jtQgkB
zu$Jk^Fgu0^Vt6oyIWf$Q;l5Zfm$*l8z97BxVz^g0Cw}zOEr_8;I-lfzkuQv4k&u;}
z!*rA{j$ug*kHzq~$RCRFcg7%Px~0r{jxWm+V%vXHel&&^v~!VjGcX;aJdx91CFDs_
z;Pha%c(Xa-JmIMro@K9zVI8~q>Cn@HB<qDdBe>~U(ep99Ks$-yHIcj+!z)5w5~Tji
zLdNU}ws>t2-bmIkUytF<oX#6UHpXzHSxhy$w_?1>>fa?(dN;-JUJM_{us4Ry>^N-;
zw$mDy6uvKfiy(ztg?tdhww&b6w(^T`3?Ig@llk0HxGRR;9Q=hZ@gsB;(tSjQo}hPM
z44=gCT`X8qrrRIG(HM@2_dpB>g&d0EFs&|{pVc`cLeAmoJs!i!7*56TsR%z4JR!)?
z4c8VDKab(77*2Co5c!w1vG2l^6Ti-BejCF#IbP5!awf;$aU$Of{~;$iE96IZicFB7
zb20o9!}%C4$e{OY48Ms2M?Y@mrNZyx{X_6i!M|eoTgX3x%*Kn~6qV9&k%qX2goe@@
z@-)=cP)kF;256|Lp^}C&8ZOpwxrW~B%Fz{QxHQKv(fFmqiDmxhZ54ycX(+GZG6~J%
zu6;q2D{}f*YN#Om57DozA*7+2ND4I+X}C&wv4*gQD*wf5r><-lq@PVQBJ!%a&{`5y
zT|*5GN}iroW3FmzxLU*Q8k%UhMnfG9w@R$K8tQ4dQA2$V*J`*<gf|FYFU8@r=sM*d
zdQ<LMw`jOo_@H)bj)XSQuvSPz4UHt|HVut)`j3^qi0LpVO*J&r&{jh`32LsPwU8DX
zT54z|*``|dxgSV^ZA5{>_8K~9=&GTcNIGg@t#;PXDOc4$wo_dssA~J5mbz=`Azn>G
zPYqGwG1h~G_7v<Vn9ZB6A*o@ihG`lM4Ji$SH4M>^){xOqqM?@tlLcR0na<T<X|VZd
zE6)+k%I|KkJPp2vW$hIuoPiK~Yv`k4pv3K~;SM4FHT08+Uc+F{Hu>!kHSg3gfY0Jy
z`u!0)N(PB?Hl3jwhOu2Vj1}Q<4I?#-(l9~`raFwp%rMGm@sea?-6hHsG)&YmPWX5Y
zbX3S@a*~EA;-zG=#w*4CKj+gm%+T<lhQ%6YYM7;Ao`!oxnTg-6VYU=uj^uf6t{xu$
zAaaieA`_giVS$E)8Wu^c`!w7yL5xnv3}=<8`G6=;!h+DdM8k5CJfvZ%r2jB$Rf<L(
z#%07uL{5?|_(~0rv5Mjt9>?Pvo?wTKqaYqkNS@U2j)r$NtkSSr!y1~ahBq{9)bJF$
z`PQOmH9V(borb41tk;4!&h`(&Ket!U2+zJLp4ae#hA$eGe_g|i8eY=yDzj9l;AO#A
zG;9!(-d~zRA{~FDe=R4x{=vM89aLsp_)YfEQ{f4I<Si{2-hVVowd$bW*1%;Du8eKc
z_&<Ze>);O!n>D<z;i!gV8n*CpI|{dJ*ul*IeeqTe9|$4eCZtoxi$2t_Q^R2mN7y?w
z?AEYX!#)jrG<>AtV-0gEUc{q_v;GGu`9$RVnE__?bU8{6YB<E^u6R*a^Wp2t(f!uB
zfNvANQ?hTC;~GAd`u|zOXUuT>yptMEX*j_ibnhj*&y^y6&g#-|M#Fa;MGr>4)NoqE
z*TTQjpzn{gyC(FFkZ%R4Lm^$3e6QgL4QD0j^(%`h|55l)^4x56TFW^Nzp!^dQtnp`
zo#%!IoC-dHf1|00TAvQVROe3(e@U(W%@ID1yg2?5FYEcdh6@@>#e+KMg6c&=cn*SI
zy8JjmNgQvU2)tRHEM5{v**I>Aqd^>(#!)Vg8gZyN%Exh89N{>s#Bq5%nEdm5@CqT7
z_JyyE2cHQQ;;0x$r8p|bQ5Z*29HBTy-V+Q3^p5GER;&qra3Lv<2VI+l>0A}ZkewmA
zIivDN{8l*<=Y5ZbRRycXQC$cnTMm?|8Aq)+u8ZUPIBLg(-6otrUlYgGar`(n_>LYI
z4<><i;;0)BR#)ii3At8~Ge-V?aRa;3`0&l~;A`~8c<_rxeZiXqo7WB|mMfQrZ;hj2
z98Mf=9F5|*Esid6bd95N9Nfo9*F28fg*OpwD%dO+%6UkOI9iIgRUB>OXeYdN9BqW$
z-67Zy*<N@@L3%sHgPk)EcTk<;=p5&5T7eGTUnj%e;^-bnS~O{^J>tPsCmu)7IHGaH
zM6QXDa+)-ALXwC>7m^e-;{VE1qE7`To)K;eT5;H-Lj{I15sw*eTM(Q9WLw9BF{DJW
zmms~p<LDzCuau?tjyU?o(Vw}kSJ2Fj3=(o@90P<<I8eyJ4r*|mw_T|}4@QQ>K^!V3
zK{A3i6UXmy?mELLwtgHd;#f)hiDPV>*IeL!vAVlx0CCI^J}!>&aZHF~Vm$bOogBv$
z23=7!NsymKG|s7UOcN_5&;D>mGE;1CP8@TE%!=b~A+rS+o-Ivx51+m?OuM2v&5Pq+
z@y?H9fe;1_*qWEcg>fv3^P0_I1>k`=9*kp|WN&diSlgkcF>gzRKSW~_@^Bn<*_9tI
zJv|Z!EpU0xdLI>1zN31KgMS>)#PMt#PsH(L9P8qEI*z?X<yOV{M;@VPT9scdUP{&o
zSsTYwLN=8tM`5)cg&mGZxaPS&9{e0u!@TIZIG&H=U>t|ycp;7#<Je3ah@;m{g)hbN
zavZP3!NUb7&xAL`@hYt`j<@4@EsodY*vO%SC6y*4C*f~=H+NKYSwhJ>al9+?_XIZy
zQcfLqRjxpClCUL?t#Ry$<D)n}h+~^1xRcNAsJ6%Pp?G(QmlDPz(z{C}y9Kktk6F?<
z_KRd+PXCiQ{)<a;;D2Hrj^juiKgF?qU*u>U$Kv=Zj?-}*kK@yLa1!eCI6jNxgz!^r
z$2tWk+56-rNWSdt5MO*$`$81H6r@+{sJ@Qln>fCY<A*rD&B?!u<BafW)q@>w**9rF
zDbZQ!J3k6O)-m|*`&mkTE{<QM#(tF=`;8s>0RPFQkdAf8xBs8)rwKGq;IBCT=Ext%
z`8aAOP%D88jF><;fhq}HltAeOE=%C@1o9HdPoN-yOA>guqk`bY36v4Snxv5FvuVmE
zaA^YN6G5}m%OHLnl}iLab5O#DBVLifl?hZ%Ae0Ddra}U&lS;xXCU{?y3M#5jL6vBJ
zVFE=76pKQ(4zsfeBHdMq;9XEdFd|qrfocg<Pw);^Ma&ZFC<&#PymkUtCvbBDw<Ll+
za@X*=YbsouKppYc6|5)7(B``%*YW8I+#qW81#c8&tg@ZdO~UJRQuH=R1YeE~6KIq`
z>rU!cK}x(%>b6ACJDMcWIKhi?)a`;iutuJqTijGK)^k(1MI!ixw@U(D6KI(Tw&1p6
zA_=sS{B#g(o6B3f1ls5L;v*5}wxf7E33g84r(J=tTLRq^uoC>Mkpj-vdL$4_Kue%!
z0#UZ<_DGk*ktv;2#S_7MFrGj%0VBa1X;eaTr6+=Of(%NrqzrW;{6getoT0VcRF=~K
za+6Qo6Ctq^a1wA?IvR}39DEvy%o9p-l3s~_Cl8!m^iAN71U4t}eiHo>=%2tu9g}q2
znZSSqK26}WL@+E5Okh+3qZ1e;-ob)H5*V7mutYEi;EZBq0>g#VJ3<IY;I&=Kt)CJZ
zlfc*nwj{7Mfx8$tfn^CilEC-`CL}PI#>wX<FiDznW`cLE|NEw%mcSI@Qw5vJn~pEO
z=?Top>7>}Z*HoC5z}*skwjd>Q61;UMu!?z7jjX^26Sy~l`3WpY;6B!{$XUAgJ1M&R
zMNYDaDR&BntOs&raRN&cc!&w!md|<eQi(`H@590wv^;@F6WAzEUqLHkaXySZ$F@u0
z@dVZ;@KgeOc1NBNT$R9+LMS=YNv#&XMzB<8MIlGabqTCb;F$!TrUiCXbR0IHO#}lY
z^G3{$qR%JrLIN))@Dg)aui#a|mj#bT^C@{n_y#umdqwopy_Uf13A{lg*&WGBxWVa7
zvCp>>csqf2*g!G@yvN~1`aZpzI3iv3@5r!O6y6uSp>uGogU0qj0^1VU&KxFiIDsPx
zwCk*zod|!Jz|I7AC9qrSY9EW4z(>r06-gY7q&xF^5cO1N^)W}D&T6k<t3HuW64;->
z0a|Yt)wzq}1qBBaIFtaFkvY;f=%PrDas+E%#8bV;61c+2BWGtno<NHWmD|)SJdwaj
z4mCQi(Qzt)&l9*<M}dwn68MsRGl8EI_=*vKu1t3(fzvtuwUBQFzvYlSG}u4?T`u(d
z1bz^HHYfQ}2>b831b#_?eLPRcue|(0#(`2geiy=_;BO&+B=BcW@)tW%7sVjDe-b#K
zlV3>i@OvP?NJnWMp$)~)b>RtUb>@apz8?Gr4IO3plrE~;p}gpxV80fHm*}XX<0>6x
zbzG_kn^eo`L5&saD6iu(9hd94LPtd%m2_OG2Qxjo3PRRJ^Xb+{^DFD9vm+7`AxTz9
z!gPvs6f=>o!S!EZJ$SD*>Z&3-s_Lkw2MZufjTXgO3J<<j*HJ^qo&_PLqxH^6ZQ(U_
z)Dl8@)X2BHs&j`Tb#&C#Ve4>o)YEaTjz&6e(}NF_>jdlTxLyZ8F>cVowf7tKU`cso
zkNlfj<#WPzla8Bp+@c5b#s)eX3L(E$$bU=gjdk3vqos~kdN5=)5o|8lRL5gm@|x*L
zF9|nZ5@u)%kuTel*IGv#mQ=^<J@VV?Xs4sAj&3^I>*%1Pla9_hep?*wsDsKRbW676
zbrB)+pY>AGT}KZcaUBUAJ@sJT7}KHYh_beO=JSh&5)xuf!G&Gb+OFzwSM^lAf~1aT
z9ts;eQbN)+03jJcHa$Zv;fzksG0oM{pToEgk7mGMwRDu|=q0>wRuV4PTSuQ9=dWN?
zyF*96td4k@&H&bfj`}Tw9cTmf;9W3C$6z7kT+AP;W0;QNY#kk=bc~juk%FxG>@OOu
zhcP;jF{*Jo#_G6B54OfJ+x&r&WblpQ@l5l^@C4>?L4;(ojww2tB+)d9sXC_7q?3pw
zF`W&{s!Im;KU2pn9ouwlr!nZ5t>Xcme@TWpI_BzF#PV|Hqhp?q`&cOHU-#-*Abh^y
zl@o$aN7qTqC*Ci@g|q?jvKMn4UaVt@j%Rf|r{f_VOLaV<<4GM4v$=IVs$+$YN670G
za0W$OF1&HKf5*v{;(d&1?k`P+$61q?gxX8!DjlnJtkdzd=&aGPR>xDqv&#R?HrGom
zdY@r0khv>4b)MJp0&7yo+d5v<@sf^Lb-bqIWl4mYc}4U|HsmA)+aj+^X5P@TQ3yld
z%srHx&giDz5y^WxHtTp-IH!V}ba1Gr0w4Xpjx9R2a<qx&XC>K;eIQvK+)eG!@u7}y
zbbPC0Cr1VyCv=?Dv73Eg#}OSzb$q1bV;u)rpWPJQULBtZ-<Qiah5K`%Eb>7ehjbjy
zNwPtF`Y|2HrMZ9Wrub6+RL5sJNM7p}yu|+_r*wR&<15kpT<{CQnT_*L3t7KC%$p6q
z7G7OmRcCa3r{fPDf9m*N#}7Jw;gGB2td1Xb4BcB=%`g5*^v?<MaX)jU?H)Xrg!mhW
zK6!WlF5c`bo5-U5rQ^Jm<?mdH{t?3BU&u*HB|$HX%=cR9B=VBTPXbAlNuqobmnDPa
z%oit7RtR~4kV^!!2aqonUM`930p!b*xFU(lBD^w*3PLL7LYYFv|KW@hN}@1{q9lrw
z2q#fRLRl`lY=YVI%Z$k1II2p=<SCnKNmNgwMiMHC8<My&iJE-SXW^@p_`Fq7tt6hk
zuCTUXt;2cb*CbIViMq*P5%{_!c$~bR@M{Gdu|B)2>yyES0Carc)lcH4B<`(S+>i=M
z+>*pAEsAbUVs3ZUAc?nI74fU#h3<;prh6isP;p7NQ4+T$gGJiLN!%`ktF`p9AkC6!
zp2UbGMkc{4R$3$xOF~PcWfHBDXq`kGy0!&9lW3a^78|=J(dSIKT@vk+=#WH5$z&J7
zPLgtG;Y^%ft~|3)Tp#9v<!(uQ^HZpM5(9TddI)~QeOb?iqDkC$Fpo1O)?qvek2R1)
zLY}23`A0LsPdr8vsU*^T;_=9#?usis8P;|ZRx<cajk&Uua3qSG4Ay_RF3R83xW$g4
zbS25)oH!i^x?W6>MM$D=5`&W%lEfX!;1D0(0Dc7s@1Mk-Lb!fK`Sx|?hy#-tB*Lus
zul<psNi1Jc-0w()%dNwb_`bUuo(#;M8(&8yF*=Edl32<|><o=b$}wKyV_DBhj1xXS
zi3v$e6wX)hBqq2eZ%Q(F9ZweFt6TCIeX4L0ep5_OVnz}(nRvYd?$eu>#H=LlPGYu5
z=CaO(%n{7afjQUB66)WZ#QY={u+EdXKZ!GYBa4$*n8cza9!TOr$$wstpbK9k*rf*#
zJE(;{)DlsqK7;s1dzeM2QSb~6JBdfwPnQ)gXTycdJ)Xq2m4%Ncu|kqsnG7~=JtmwR
z{<-b{i6ov(qQ%y{RY|N(;wd)klJM#z)<_x2nSOrr@XnV)>ymgniIa!&xEEr*q`;sJ
zJ=C+T%p{&q;su8GQ12x1qC9j14Iqh^l6X0ZW-Wtnf4WyB;<+t(uO;z%5^u7$KgxSU
zGQW|{y&#nRMV@8h_LaAisCG8=HaigwAQS%cs^WK(!Ssf1laTjlU0d=v)!CB7RzAqU
zD+WH`)7kn-{E)=<Bz7e69le)^KO`9&+Ly$I9%`pZDBLAvcM^Mqd?fgBE_APu1@A;Y
zNn(Ez2iVQWMUEwLJc)xzygM#(D2c;t;%51jA7OEX92K=J|1^nH9A`xGSrR9NQ28W_
zFUnsqsd16hNqn8emlFC_PKU{UBcas)mP2K?d}@-P$vvp<u0j^!Y!W}RhZ@k0U@G!c
z5|<h%XW-`~&LxBS|1U}WmBin|e`UQT@p}@rH-!G+Sh_77>Z$%@zm~0Wv*P(L`H_E;
zxY!7Oa5>MqN}`m3iwwX3gXl^d$TN^H-b#)03v-S^Wpcu-W`TiAa<R%9$SQNisl0*e
z25K0%%)sRat|0j^LRZlUdh3-2DhR35Q<d~ol?+ri5He6`AVNN`xX3`Ufhq>BGJ=zj
zWw|NT2sVy#e<`D9&p-CH^Y5_p`Od9sU`9_>O%hzzQz-*A4YW4U#y~9twGA{e(A2=y
z2Cgx1i-86P>KLeN;Ccf$7^r99S_9V^NS_FEs5ctrXUF_^8s$HEIPXRS^$px);AR7q
zFo+o-l0PW=B)1wMZ)D&$14W1O8X90a)M;$scHvJP&TAwQ8JGI+_EgOb@Q402qw<;?
z;9mU}%x%5GmIhj}QF^LhdMciOr*c~(Sib9IptF#6g6$1-5YkbQ3Zba#VxX&m?gn~D
zJ#^!vqd^M%*eCXnD*i0e(?HZfj8(m%c*XT);|4Tw^m194k}<>cl14CW4m2>xfMFoT
zYB7*8(AU7^eUWM-%b5o5V#)?A1Ga$`2SSdZC+G^ERe6;Ak`odxaP=~{vr+Xn(8mC$
zJ<sgPBi<njYon^4f&Rj`MAe-J1{mD(r+ED)aj=0Q29_Fl*uYQ&!wk$aaJPZs21c+R
z+7(PSFw(#%=E}f011B2ibAK=0Xai#mkc<^%C6JF7K7lCY^Tzp;ST3e>JTgTvYt{79
zF^I9I8JKik!F1Y~kePy%Q^;4_Yy<NREHE&~z+3~p4o6B#%HCsu^R#&e?lrJ=dxZGn
z_Yso&4BT(v0a}ZJ@nu3xq{{a2LIXV2xJa;REdQIRdhAeSv4JJ*GV)t6U*!)8C*iWd
zG6PQ-c+$Wl29~pD{apD`!Ii9eA(Uj-2Obme<Lsfbo<R9315fcm23F@Z*BDrv<2<&{
zh))}MRwQM*W4(}P1R46Af#(gpz~ZpWi*V?HGL$p@?2&(x4F+CiGo>&*h1U$cZlGHV
z-BWnOz(x)-DU?nHlZQ7A>@o0>fwv62&7Ni8T?4x~0>soNX1FA>g;giyJ;BWe-WS43
zW9SFMw;R}DfYa%1;w53whX!`$yxAzkx-qre0C!=vim8tc>@{$f!%NGeeFi=;@Rfnn
z2KKY-88~L(I4j?e927ik;E)hXIIB5g;HX$dcB;e7d}`n`1D~@eirNVSCk>nuPW|k>
zC>xjfCCezntenxm7R@t)-w1wd1k)!fu$I0v@V$W_Sf#nWOpN}cfuAG~KO6Yfz;6=k
zoW%Mim;Ubt{xI+li!72q4g4)?O!hApe^=#f2AJA~oV--(-`w))l;@>_Dd-g`T$u`f
z1IkYUDU?a^->FcL!euF3o(jH4E=l3i6!#ehgG|{}&|m7AdF4{Uhg*3;5(>Y&p>TA)
z(AJg3@02dCkV3^2ZcE{wJ!LATP&tL`Bw{Fq!W2{rHB;OWsESgk!bb})77PnAwMYuL
zz8I>W3T~dPnnJY{ciE|xF?BGe&c{@ZRB*K&gKBH4a7(yW3g(L9Ynb?!aP1VX7Dvu>
z>ZDLtLhGe)tq^K97*Umu<a*{`GS*I0H>OZu_)RI?l0pOFH>bEsMlI6Rttm82p-~FF
zduO+%%Enc@xSAYSZ^YHF@n9=X;}mXBp-Bo&Q)re#+Z5WR@LeXqc?vC3Xeqp*6DjUq
z&?<%2toao0z6kyr@}@+v@I^;&`xH8)&?UuHO4TuiPAPPjY(x{PUm`f=G&d3aB=k%|
zbxm=xQC+1gTUTtm9(?GDu#rN~6r!o%%PuCUNk!2cxD*m1B-bU`WG*z7LOO*^DwzGA
z>0I7rMG3bAZ9zwnlV0k0Dfmo*xji1~%Q_L#OR#qeeS|QGFP(lV^iN?Rn>B?yQ^6V_
z-2fq610?6#;NTR7(9&{3O0vs_+0YRwj7;J26rNzN+7<9sI4XtFV!C5e7@NXfw2kuR
zSqbA(7|%?mur!4UDNLk1h559K`JqWEOiN+9@X3Nx1g8p~Gt19NVNavbtQ77}VWx0y
z&!GLxrseOC%%vr#z>OJmqyi~n(7Y7BY*ut?QgED^WC88xlF-5w7Nu~XaC+}g1*<Du
z+~AVJ10r0U!h@-QSHdZ$&Jxifd6=!RroxI8Rti~`!XrYK3qC41N)LX0D6_lFW72|m
z>uOk)5Vw^+nZl|RzLsiPox++F-b~@G6xOEjR0=Pq@KP#RN@bNYx9cSC(<wZotM$Yb
zo=xGo6rNA<`&zw_;^Khfy7xc2;+C!3ld4Zro$D2OnWK6N%Z~;rypjrTQP_~;M^n)E
zA4#g$Qg~gGC4YlCPpXZA4COvsjstI}@J<Tvrm!i6y(#QV;k^_#r|=PzO5yz!wxqBl
zg%4TG6XC6b+t~3B<$WNW2PC(rK*vx{33jqL!uJU7PJu2PM9lJfevnnVj^#q1uurA%
zSqdjoIFQ1@6po4hA=Xd5f+Hy$WvM0q&m|R8pzzq?V4}$A$5Z%Jl(UmYN=}OR3mQNQ
zrzF<rxwwqTiDGsR`IQJy=YqbG*7=rZS+|%ME}h|+kiz%k{aVleA%(NFG4^ZT_MF16
zDg2zmnWU;=sB^TO#pTKy0ne7GSG(Z&+muqpf28myt1g4B8T^&P-zj{N#+PaQlfrrS
z=rqhUF0h-YQ6-J5(zqxc+$xZlMt&Nlg_nM;sxOD`kq)jMs3^iRf)}Szkj5p#%cgOe
zkV^%bNI4<p1s4qn?h3d(jVsc)GK~r%BvMFCBJUrlln!nos4N&tqfkhZAmznE!h!>D
z4oA|cnnu$!nx#=qQsXC5qcp0gxw#rDjhboPEa^KvP%9l=VsL#LwbQsdjcdePPmuCD
zY19?2?J7g>wP{?J{`al}-e$n)H>88x2Iy`SwfcfL3GxDJ%5M?gK=4+<hG`6wD-mu>
zqp@UfNO5?>#K`Sw;N!d|tba4G9Ojwds?F1Akw(ijTBXrBjV@_^p{Ukrv`M3FI{2i$
zxnH<l8tv2gd3j!^G%np$m}(LpWT*~l%rjKSG*%hvpfr7cN<B3$(lre&jd&W}(&(N>
zk2LlSh(yzfrO{J3A595eNt1j!k_H<i73YQ$l2u(WDah6_grry}LYABfn#@YWPGdzH
zE7Ne&aMPHO#>6x{W^zDeTsruI_R}ayqgNWe(-@luD|2YqaJmQjq|rBxJJRTv#)vdV
zN{#hr;%N*_<4*Brl?MqQlE%<921}z{lM3#Fpc^Kc87>OU4;_W0q@~7)klxX0{HH*2
zm*jzRCc@?zpXPg36|@geN(U<jlLh&$eXj~nNn<LlJ&oxsNE-9gn2`pX@18Wu&j`&-
z<Et;r&PwBMA(YQfV@^&uHz%YHmFGzmR``N6?n`5N8jq%7q|^<kitbNiVH%6lcp#03
z(pZ|trqSUC(^#Cw5<c`m(F2?F=pGbD@62n%52ry~MvL85Nb*P;bR_hSOQ}~<itYGm
zN<Egw<7w<>Tc_~^E4f+z%W1rl#*;LaG*+_{rSVJ}&!#zysI_T46_iocN-Ha^)&-$z
zPg*^l#(K6OO(p&BsPddx<4b8gpT^m=dLfNS;^G$tNh)O2?HSc_ThRuI^=2Axu_1&r
zk=KO0F8D?o8-?`C1S!9r#ye?j7RkG5gcgK0rSV=GG)UGG@uvRadopVC+mZLv*pkLp
zwnawK?GW;T;5NbSg8V3B=!e303holKr|_dRK9<`1ERDTs@Y;}i{UV3c*e9IcPtw>g
z{D9y=!9%&w{_`W$Ka$4LG)RsKk{nOt(;TnVB%da9B8`)2oT6q%otqr={m;{2DQKu)
zrE!`)F@tCZU#Ia6hq4T+W$<kpXT%73pWb(pNo0cV|9u)i1Qm`SIc}tJK8>H)%hEWP
z#xESGP1VQ@s&W4PkzdpJjm>d=0j>J?H2z5AFEI~V$e(FsjfVz9@^?;7ej$xg8C)dK
z>S3yhrdnaDPfYdOz2VXsd}XS<4DyBWDfDt-txN_NXHbyAB^i{>;L;4rW$;Kr@IBjq
zbEK@L%4cv{1{E@>m<jCja=|MzxIzde*=+FXl`^QDK{$gd8H6$@%%CWP;!Kc9S~ZcH
zS^X@zDualGQb_loLiG%4WY9f>9vP?%YG%+dgGQMkky;tlmeNgPcUIx6Gq@&$It<F7
zeg-!&SJjK_W#Cw9mZfT2>e>vh%iwy(veXTkpbOk6oP>_THH#xRXE1V3#H@1JEg5XE
zR0BbhTZK^VwhS7})4NFux3jw1hdX4@B!i|IG|Pb1+aiOO862=wbHRQGA}mp>4BBMS
zmi5U2N|0r2C-v4|kn(I*P~MS`lfKX?gU&hLC4;WQvmJpoz!88(Rn`u!YUI!t%RtK@
zo<TzLMj_3NsArJO;L!|LWME{F%Ai*Uy)%KSr&%HG!WrQ#9l4poRj(CW8Q82k$(SqX
zXW-@XnQfyIDFu0-4Ekp9Kn4$Ha7PCHGMJpflnnZ3xbTb7RJ-ru0fK`w7?Qz2;e!Mj
z#8XQ{b9}gvVS?Gi&Lf16%wW|22*(H?o55Wfj1xXyFq_&0;S)2MB;=3trLsv)&0tyv
z^F=saa8?F)XD~zfOu?JW2Pdp&3%^HjP6l%`U?P-nzAC_Z8Qd#DOg1ZDAYKODm%;rR
zEX-h02JH(&L<;H1>)L8@2Fn?DTx3ZG53!AG)qY4YSzVgJ99umsxQtPRP);FVVb9uX
zWd@J2OG-mOp1~6tJeR@q89XTs{Zt0)GFT;?u~rLNBe*sb{F=a>t|y0G@^l94*_$>+
zhMtIQu+=k};5G4V277JAb|=1&!HXHZnZa8byp+Mq8N89f#tdGOq&8&mD!ad<vNzkm
z#?d3C=536;&MrAG)ZPgOE54*SOighVFT{Sz2_`Kp``a13ldFe!GuR~jJ;BX_@8?1<
znj85bgKaFDi5E<4&tOLe9ZYmI@nHr#*;`FqZDLmjyV>tdTw-F6i~wgc{OHC<8GJ0Y
zv^Rqz84l6dm%%3-0~@P0M=I~nV85e&anykf4oZm*WpG$X`IaG`w)?wv_*e$VGx#Ed
zFEjX*!<Vc0GXY;`pJi|&gQ-pPPiAl`gU@N+P4gK<30;;`?W+t<bMVjLgDT<XuHuaD
zn+#vpir#NCSTMTSb%R>^K7${a;jy7oW-tn!&ETgDe&*=ssvp@yQ|bd(oy*`Csg{4(
zOdM4>kb0`Er+$|V|0Vc`;Gcr0C1s}ecLrI>`3x?wV|t1$PC3UD&RZ@r!BMWXi9D09
zm|y}46Bi39BboVc>d1F%S&>vVQO(4qCd!#8Z{ji&g(iwj%<$CZCay4XrHRfvgV`+G
zx&pn$;rHLpBd=(plKHRwS2hvKadw$v6E|*-?DLeiF%mYx+k>l^xXMJt#L|h8BV7uo
zT@x(hJmIP8CTf^LUDYyi)(c)z%EZL>MYOJ(CWxF!Fq8w`H74qq;Jcu`WV^13+s)uT
zThGL`CayDay@}f-+c!|tSGNe>C`fO86E_LJS@6(pAqwdln7GwMLlceuCzNuku}T}8
z@X7myo0w>7qM3>2CiwZlEU|uCNKV?BXlbIAiPk3Cn3(DZHbA7LZMM$E`>-FBjzc;J
zb`IK|OqeDt6Xcx*yGU`mn&@VtyNTC))x(4)DfDDjjEh7~#8^4yi)TDv{NWqL)oT~W
zrDYQ)bQ4JvhKY>mr%a?x5cf%Dh*?4*^Ty2ECLT1g*o0%kHQ}+COqtb71<~ncqPL0P
zBzhkceN7BCG0emrCI&RCGC;6jmN%=?U&x(;J?mdO(8M4UgL9!na-ms;;U-3y!O%3$
z#7GmPXk8^ijg2-zH^#(R6E$;^yF|!PIts^|=wG5H2$E#ww1LTHFzuYe$~Q61#B>w$
zOx#Ojkh07&akq(?Cgzr?HMv-`={0c=jnfReGn3j^5_IItdIiaL>ZRtJSYTpNt`zqP
zxj$Eyg+f?Z*2V+Evyvqy9%5sONl)*kmNFaTB5O=MY+@NZh>7JU9%XmiRXDm~=)wDf
zp8IGo&fKul#A7Bty1L*=!N*NJA>{rh`4kdYnOJS&fhPIC4vf%CT+95+&y>V<^2DbF
z*9)?hpAqt`iRW^XEzR>^H1QILSt~HSmrcB4;%5`*XzeCm<(Mp{$h&A>qgBt1Q0H|M
zZ<yF<;!P9po56I5?;2+NEfa5x#d4f{$Hco*)tgMbXJWJP^FM~(m&*KmP*A;FM0u+u
z`+<pVd}uFKskiFTTh*Hx;)8bZEns3N$A1&MO`I@slIG1yFmcetArp7@4w`0RZ}qW>
zy|itb{ed!{nAmUPfM9mT_0`^rjzV5xdRVIZn294MjuLyT7mtO$+#T*-6h1DQ{8aEW
z!M`U5GvQMvJ~#1=iEo+1-s%f>(zJSTcKAz^lWLqc(WPTqZeqFWmEt*_%6@I4avw#)
zf$j`@P~*@KtZJ5&LrNc2X-;sId)ApC*|R2oG_n4fP`^IvCpK;$wXcu*g&l!Iu7%63
z;B)Uc6Q!(RCFggk=RZvRY2q&vf19|#0d_%%;~}T|Ozj`q^R?mgf}BtCoziMi<RS~D
zE#z52!%^pA3;Dt!SVr)TUn?`T=H1}}3;Z;@#6npMms%)i1tUXw3v@sB`L}10Tw&o#
z3pFe#3l%I>v`}cF$U-G6*uaqAS5>xx^(9{a7_#_7c46rK$l~k5#TLRAA{MGrO|HMI
zV&N(aZRSVjER67FeP&*y<HHfYsv7iF)#TCD1xxy>nigtVoWlnZnJnKUOrH;;)h+F-
zt`WPfBUo3Ewpz~$Zcn;aaMY~G4Hj;+@RW^pHtJir$wCzySJ}AP!YvjSTUcVDfrVRH
z)fNU?!48Cm7P?sIN<KE!h&jK$;5I9Gxiq$LyM-nenp$Ya{FC3Inp=3MuWH5e{!qCE
zpT*CCAj82&2eCCH_EnYcP_3sGx3$pDLVF9tCWbm$=xo8eLv;}BC`gN4c8A(^hx+9X
zRi|Gt8|-GGhdjEwAoI}h?Yy2=@Ie%{5VN3Jh+F6*)s?V<NxoyjwV+!_S}-i6ELb8>
z3z~vd%Lq~Tgex@3r<cyQK;hA@`Cd-PXDdr+NlwzsLT};Qio%TBSNI(k`U&AzbAKUs
zS{SLqOq0<ESr}|#k%b2=43R3GY+;Ipp;EEKtY8coF8Lq9SQbWQoBoY5V}*>iFeWSE
zG8Zqsv@p)XcncFOOtdhGK_c(Tm4_zz0lra&$f?d$NuM7|vuTqSrdya{;odEwnO4wQ
zxJJQu#4HPUTj<#@__}{?L5KrB-$ZjP%(ZZj6?8Fv8_u(Wbrp`f_ma@4EZk?|ek&N9
z7m_r|=O9d^H#;)3jo3O5iZ${>m5un2g{2n15OL7L!xolFZG33q5oy!cM3ZXEEj(&r
zg@u(C9<#8@!fFeTTVU6C!orgl2K7@vT^Ig%NHM$Wynd?8!0;LiYb`uy;du*B_ft>N
z&d)}ejdk=|NOvw?Z{gWoeLf?E!cz|hn;+Jl4ZT1kpB))}Z}>$EFIo7qpL*Hihj2h%
z5u_UVs}hlf-q)p8->|Sz8v0EOn=HI1cJh{mw?+7l;JboZ``IjftA!7Qyf3&VXI-?D
zZU3XZ-NFv>(wrE?cfn2zyJ$Sc;oTPYu;wj%Y~l6y^FFb#mmO+IWa{*M4kr67M5`2E
z(O>a@f2vFi?-w0*-a{4+Te#RpfsG?#ffRlthIiD$F$>4pQ&Q?v3!hmyVc~_@kt@c8
zPg*!-;k1RXrTCv)_@}>Wbf;?4Uwy&KvGA1zv%i|!U#;!0cJ)`wUJX{dI5%c3eQV(i
zAH?>x@Qa0CE&L$n^rMBJ=uN4!7C80}yHm}+Q~hk=oQ2DF6tST<->IHn82Rl^#Z}hd
zEc{{NPYb_WV18~Gpe~vp@dv2CEd0&PSeQ3J(R<#)1!<IH15_y+7uhIn2fg56)o__t
zi+danStG-FHu7z(8lWIpMil6!qb6&Z=0~Hw#O7CLu)1=o9jug=vr*p0Wi~Fi@yEb$
zp^YnSTuGgQ>W=NfHB%KNoyvk01uNOXgpfgWAsh6P6xqQLS}aHswlVkJzyc#Ss@k~Q
z#%vqaY*e@5*l=ysu%T?Uw9(2ArX|@9RntZ-8?|j*ZQ~jnjcnXz2g6+*qCADXu1IKd
z*V?$w#`TOYl3Q%tDC8zVYSzzb-kc*8HpqqEDx{$x2fD^~u*lrRMpJpv?KZN-Z!=Ie
z6G;mj&27-@w+$27F^_*6%wbsA)^_j`X=9_UjdnKL+vs7Vr;QFaI@;)BqpOWhHuwsr
za%W0jEGEeeRO^kxZhT4g3wO8i*XGFnSmF4A!D`-9169;U%!XwLUjZ7QJ3o@NVc3Y<
z;Foy9#<qb<myCTmFlb*Um=Z7F$Y~oHJD4e%f_a02AEqgJwRyg6qhZr9U)j|6Y>c-t
z!45Xy`F7CtO6*|R>}8|3jXpN|vJz~JvN765KO6n+;9b_y!ksh#8$)djvoX-dARB`j
z-3AxHvn%0T1JACC6Db_dJWJ?E!E9(&nG5M$#vEf~oQ?C31jE``I~aBE66C0R`yiDZ
zq-Y)!?cjwtNvws|J6XJ(*i5l8)eeU7X<~cRX%&9?87zp6SvJNFQgo~zA|-QZmNp)?
zvCPIjd}xh=dF%^9xY2RGjRnG&*tky!Bi^42T`1MNNbms>@<i~1HWrJ7oXSk_AqiS4
z$UT#f*jR33jg7UU_Na{&%s|aNI_j?!wZ{Y>7konSNx@ZuOmnr6b1m|jAiYFJf7-@+
z8$WsY*~2q7p0)9Wizi(?XXAMrn;pFG-~}5m(gqwJ3=Hlcdx-`q<YgPLu=~>_Y<y<p
zgpJp1yl&%w9h`}N!^TD%AIn4EwDA^Gv+=$S-XHk3jZHS*6aJ2kX9lTvrCcN|&M$(6
zgVkHs#anD_x3PoKt&6wX_<$BGd}I7FN;(c!AKKVyW4DbxHg-u6<xGT*<RcqAzr%w(
zymO2a>hqZPUK{&pkb~7H98U(T{Vc^`b!c$#=z}&6**GkD=INeec5vS3h~QDG$=zAU
zg?yURq41=QQ#P)3aGk?{QpOiHE_P7h;7c1{+4#lAuQpEG_}a$L93d+ge`DiY8{gab
z!NwW(dK<i}>V}ntzYJDa4^iEQ@HX9ovr-{HvT1Bg8KQXjaqSSbZ;1M7h^jwSony5$
zS4(RJ?f9FG-#L;y$aC<AjX!Pt!(PClfVIK<pE-a`E#_KZ-=XT^q3WZd>Vl+P%E3iW
zV7gxoRYk*8n_<BY_Hn~hz7veYwT7#*2SadB#=+CWf`9h>WSBZPOkLujtb>q)LI;;R
zDCgjgKE;(BlxNv*3tjH;h+J^@^<@rv4p(D`t1BJM9j+=ksOSXijq8U8mAq@X`fPac
zho_YtoF6VXX1`Zd<e=Dra!}Jj*g+Ks)f`lJaFqjIxf5|vl_`%<=@IJQ5o+xSHDq(}
z_H4DGxQ2s2N2nSj)!q@oA5YYBP}@OW2k{OUU+v%;2ir!fIyBvpYUD_@WTfIh`<x!B
z%8XL=nE0sR%0900UGLxq2aO%v?%+lT^&Q;epn((YD(8PZ-Q?hAsg^09g&T}gFLW-v
z)j>lCjU3$Oz#XL~j#3Lp1x0&rlsY_0ou3)0yFJ{*K~o1U9kgQcN2_KInmcI0^hYaR
zgx+hkdUSLUg*#YUJ7~koygJ<8L0bp^+!djG&uB%`PM%BB!9lb`9=CZjsFQ=vlD94t
zI*2*w%9OX}b#u_&K@V2G18!nx<|*W6Z#wRE*QB}G<=N<Q2MI};-I<PQQfN4s>0p+F
zl!LT%a0X=@m<}ulwu2E4MmlgLVqZ2r%kIE);7jB77Az5Dt@aY~&*-3r`#9iIGf6)O
z{T&Qsn>xX9vu|4E-|1k0gZ#sx*XxI?j8TopsCwm#2Rj(X<}P16L~y7ey}X~CINU*2
z!aeY#987UA)xl^7V<cl^9o*$$!I<E=?ie-B!FUG~B#6bF?0`4VPZaMY=l^e{PcAQf
zeT<ssV7h}D4#+<pqn<7sT*ODmix%&8Fxv@++*J<d(5fA*bnqC<9xiu}gZmuZ?_eJL
zRGk9m>Rt!)g)b27+aox0$J7=&c+kOO_NlVv7CCr;y(w9aJh;DcW#JO0?_imOha4<*
zU=)T?TwHdn(rOkz;$XRhM;)wiaLI$ACX<RQj8!$ps^()=zp-j9KTpOgp6PpB%Jl?0
zQP1ED=t&2)dgia(8X>NBu*Sh!hfAY))xm2H)-f9np6Bo`hQX6`>)9v_m8;;Nb?}_X
zIlj?0D11@8<gW;MN$_Ro->c&{h&LPebyl)?HwkWZ@Q#Cb9lR;tw;a69N|vh#sZWwk
zpAVw<J<-WZwm8^Idv?*&4MwUD92{|QR1~&3*zRD5gAX0-6v=)EyK-^&3fV2VNAM#D
zA9I+JGlqXGk1(};BL5^OJRshKf($(*<gmn|_n3p@4l1~)=;BicpRrk8ly-yWKH=bN
zb{1*qlMYVt72x0t4*m|la&Ve8JXU?qX4(@Oxjb0Usd$%aahEdgQr|i_<KR~Zzd87h
z)>SHW*1?ZLzIX70kn9y7KRNi>!8r%NP<WSGf0uG@EZg-!klKfLsqgMm^>&1V6F?6B
za_~3b0vr-KmX1@Uo(nbH7V0)m{lk&g!377USd-(_>T$s^V(bq6zOQKaIQ7do)#8C-
zzGCv+;5}R31$n*;xG3Y|ViyH2E_G4P#U(E4jaU80t6AfN6w126%cA{wRsEvk$H%Md
zcZ9aa!c5^ZN#}CGD_mUZ25(_H9;dD3qOu#j3tG7dxhQne&_yE`MJ|e6T<hXGmp`wd
zii?^qYPq<|MZ`r77s^Fd7u8%`b|iFrqOiIPI`SRk6&=a>@v7IrNS7L69^U7rD79VG
zaZ%UB)h_70Mv#P$UcD+5nV@=3Q1x6~xbLFb%PX+=UGJhk^XcLS7dN`txHhzAUFf&T
z!9JOrUEJcLfs0$+;JmXvDa1e3y|qVS<4~~K@4b&hLno-)+~A^>W^V9@6pdZnE;Yjg
zGEH1Gbunv#dU=96-K_Ad397jmGmWZ+kd|&Rs?gioMH?4wrE)q6wi9eG*g=q)?<iz-
zoe+6v7hS~LRj`|2cR{}Esla5TF5)f{E@JXHW>|BBSsWe5F5QLUBIWWA#LFdJ3>sUU
ztXq&~F~j8s((5AQ!gOJ|uw8H^t)C0Wh3lfXi$1iFiOO@)%SDHwk=rIJ-vzNm${rBD
zR{9n5|I~Wi8t&`j4i|rREz8}N-bD4~Uq$_0+$ov^q|%PAEuJ?~t?E}i*u@YRvt7(_
zG1SE{7h_zEburw<2p1z=jACf1(3maZP@{qk6aW1~kkKwau_Da>qkD_)Vo6<0b}_}p
z(TVE9L^a;U1bJ4SNkOhAx|k%6+?}MRx|qf`a&fnd=`Lotm?@@3qoTdhx@c*1^m4)W
z>di&}3@Ij`>*5|4%UwL`VxEh8T|DSwv5WaG7Pz?I#X|O%riJ$j@_HX~-rf_76px;y
z@~#doa<OY$=m9})MPp8u&=S~oUxglWv6Q`Lf8>iqFpQHdlgx7#@ra8DCMgmgAz$HQ
z(<Jqn3-XmN7Oe~MPfICzoV}@j@v9BOt6Z#R1$r3nVGWy@UD!i;4^O#R=i)OLCtN)3
zV!ey)ET)TRTs-UIJr|of|99~`+l9i1!Y^<@SXuazi<e!zD4e;fur-gu%eUseB6%a<
z;Nn%$&&pqS@dgcPX_zTcveCtx91vW*Eh)U?;$0z3=X9%lDr|DW)Q&t9=AcSzeBZ?u
z_K2z>eiQNIh#wSNU3}mMgl?OQ?8QnS(y&{qovcQ&&%JZQyIt&&E^yezM=m~gv0uEL
z46{ej?WI@p{D~mtEDq%dMD3v9Ar~EmP<}+nQNd#_j`J13s*u#Oc+$lw7eBf9*~RCy
z-kqWE1ix_cCF^8M-d8Tph~%_*sqnRUzj5)c5Vj!mke#zJ^m`XSh@AW^ZEQ>4k2I&V
zrKxky#V;=Myr3R_b@7{vf280%KL5Ma=btYAaKUP%GRGfQ{$DQs772wsqjz3vjFoo5
zMJX?+y^91%N_+Tfk|N2M^x>h5kc$N`@lYUyDQ8=utcOcQLNA-+G7pz~!6?z(3$9<I
z+7%wI^iaV=MGtj7)bmiuLuC(Fd5CxjdBJPF$V0J*LgCrT28CgdziS6mi~l4fRXtSm
zP}4&#QLgSm38^8Nol#`<YkRob!!;i2<dUU4tH8vwvyN*$T<75y4-GtA@8Jf~yh-pz
z5A|~qv-(83n{!#ZRYGs`(AYym4~_muIh%poMbbo&kE5`u7tDE@2~yI+LrV{>Jhb*;
zdayjS@zB--r?_zs?L4#>-d(VRhfYEm+EK_$-7X^U?4gT?t~p6JA#3j~$Dkg<dwPfp
ziFwe3WOb-O!cLbEq3$8+!4RJEkoJ)A_$RZ$Bj^@%&&#4Mjm!7@Ko5=w*MsN5_kvNb
zzlRbJy*%zK2)w-o`v}rIXGPxUEAmM0@X*f#z2sTRogM~w=-9XTp&DVX&lF5ngP0Wm
zn@Nz*8X{z<Aiwl^8PNz2yFKjj0zT5iC=a7OjPWqm!zK^!dAN(!?%@#+%RP+uFu}t;
z9_D$N=wT8qlTF}ZvWF=irh1s>p={T(eBuq06>&tJV!m64bq#f$tY&(c<>77*vpw87
zSuLKd-kPkwoUAHNQFEA|DQfl<HP^$Jqw=~>3F6-CVZMjO9+r4m;Nd<G_j_3A;kha5
z@D%ma6jgnyTIAsYDNA&!dQeECsX^RNmjrou$iq?(4|`a~j7?Q*r>ese%AoU8Rn2Lt
z-8A*6hZP=P@bDtLo`=UgJndn<B=xw5wH)3(JmKL<k*xBtnuEXa0n-$Zt1zk6)6~gn
zDl%QIW1~+GB(0|_9tM2I!?Vn-hv!*8)7ARv>Wk^Bc!ugaLye!I9-k3tzU1L$53hT8
zgMGon1`n@#c#Ul_Lmir-{+yxe&s5$_HFl<2H&bn!sWvjm!`mL-@$i<1KW3`fEH!49
zsx~V~jSqclmU`F2p;?N5azP0X6l`Y09gTb-_`ZiNLbeM2YUMMCZku?wd)VROL*Y9G
zcm0nVm3a*0Bj#{N;St)lhrJ&5dBJ{rI-WZJMEHKe1A+&0p@)PV_JZqcsC?85&bA-(
zaNG+n>|(N?diac%{72;zGyo2p>>3_UiR5z+GY{p_G4u<m`7A%};ad-9MCWV4Z`k+s
ze5%oXCz7**-wXcW1qVeL^rNUzll8-Fob#~N#|J)s@$f6#t7Fk`9)4%tatvu(V74px
z)5BjLhWQxo<8KfDa3u7(vjs~J=AHKdA7%WY6c^aj*HkFw<03yGr3Fdygyj49aaM4;
z<YFJZRg9-LYWgVfafy$zJ}&i9<fGU}IUnVHRPa&JN9oDsFB7~%@Nz%s$P`}bgM9wd
z;FUDxK%|m{hD2Cd_}Z$WLLt<le%MD9AJu$R_i>d(q_C<eL<F<RlGpH|d@wE_K}Swa
zCc>SNwV2!Ok=j14_K|2=#Cwg(-L2~SsOO`HkDh*Tl9Wea&fk-Ft<S|?T<_xsA2<4F
z>Z6&D`hIXFLIWSS`nXB>%|34NQS0vDcvm;UhCUkkxLraiyv;{r;r#PldMAob6Ok+u
z-rPqEAMN>QA1!^f^3ldeTOX}+DO{%E713<>KaxWt>FA@A2)nWEe01^ARlI*lXlQou
z#7yfVA}@~a?xTrFqCR3icOs#LZF(ZC`Ka_o$PgYEO!&}+Bn5jMi%^X^DSCZme3(8g
zAFdD254LRCJ{%!D_C+t<zN42gh;niYc~cgvy%+Q5qmPfiJ_h?3;^Ph<{d^4c!IiQ8
zf+Pcc+$o$5N-rG=C4<CrNa+2!Y%x!94rL0ngArqdkC8s!^n*@4%ExFQ5Bpf=V~mfn
zKIZzk$H!eh#_{QA!gu=^@AIA(%<_YaIDV~Iexi>DW~(VaCi$S3Zn6(fze%S0nC4@;
zj~PB@vMJ}NwX@Y*v(?wLRlyw9XO3dmV<NoMg9E~BA9MVFM-q+_^L*S_CB%DB@2Akm
z_ML_E{orF~fgs6!LYV)BJ{I}l;PZgb)0aU39~7iyagIF1uIhtc3g17RM|{M`av#t5
zc-9XNWwSFr>SF~5f$9Y-Su`I{2!D+EpQ9)Yu7B}^lfr9!tn#ti|Mw=h?By_PeLUr3
zosXy45f+zQ&%vRSdVG#LHb-5Uqxd(AYOdmSZ9GEAl0N6-c^@zMc+uxw0o+}N*L}R~
z;}stpn8_oN^LqY&_^L=)C`#TCzEO}~24&q_(spmN7aWhg<KtZ)kyk5hlCr<=<2@gn
zg*Rwk*le!qJy&sX*uoZ>t5(fb+gP`>*b*d5_%?~`@NwG5*FHY<vD3#c7Sj)o&vO{u
z<KrVA2Wbpr%6;qy|Dr{Az{g(U`vgA`+@A~OKYkuE^Qd;n$6+5wXhoCCf9B(akE1@0
z`8X~TmX7jIg_F>G(#I(uU*;sA3;Dtab?6w8YII)-p@grGZ#cq~;HDCM>*I`%?|gjE
z(V%U?4JG)&$5|hhOAso-k3N3l_*{b0CHPso*k6L@IQY|meQvbFpCV!J`(4N%g8qjQ
zy8ncKi|`*G=Y3qr>6a=&g>J#Eyu5Rdm{)>)N=kx`j1rU)a#;y37E(~cGur>|cBVqv
z5|k4;`KA9OFE2vw<h;BDR|x0huFPrj5GD01mY`BDh+ewF5>zcgH4zq-ptuBK;Z;g-
zRS6;`$nMjoW~B?I_!nIy)kUFJ32F<eA*cjvmINn%sdIG+t`W(#f^`Jzm7uN=D!er}
zD0p1{p5wX_T%VKgITm7D+*lH{2=6Mtxg>b|H!A_(t+$k*K?!axLBs!}>OG*OD8BFU
zWtO|l?t<dZ4oPCGfCNPWQIaAENJd2oD#CR4%ygWv2qGwgAUWq8BumaY=O|)Al#HOF
z7%(8p|Mr{D`uqORsq@aQTd!WFSJl-u-8~`i?P(5Woe-WB%-5*7C_NSOWc`r$N_Abq
z^+NyqehwKXH4NeD5H5e7&QB}w8_3Uu&?tmwL*7oKaR{wKXdOb65S|O6sgTV>cs_(?
zg0BoysMaFH|7<GQQW*Y$Aeo1TdwiP^+6wtn2<<{>FZhKJ{{*TaQ<=rnsp5Yz<SjcX
z+(ArHp<@W0LI{Tt31KZi8PvQ)=McJtyw`hQl~!=WK>S(=uM0`sRlpk|bPJ(7ZHAzR
zpbN?Og0+wrsK%9ql7SzDjE49eCN_t>t-Be5C7^dmK0qPT34woO!P4CjV#35jcvC<^
zWHN+20i#5%N4`F@^bDbwG>!Nz0n~Xrggznk4dI;-CUKZTcsGQ8A&dxNWC-tt&_9Hs
zQVmvVKnMdv7$nj6ITuc*m;Itd@MQW2Aq);-NC?DKqfGI{!$f(w$p6SuA&kwpIa<IN
zkp)hsj}tIHgb5)uuTzi~7$%0W{6;B)DIrYdc!ls$2-8G!b_jC>Os8{(Ff)Wl>lCb6
zr{F9hZ?E>UGt3R)!w}|&Fi-fRQqKh;EDT|B2up-qB$A&`p?>O<WdtdbU|9&OLs-L_
zgs?(1S8_&_FS$zajXDK?%CGHOVK#=aE`;^}Cv^k$hk2FRBxHj+1&1CkwI%ewe_Gip
zV4KM8A?y&aGe31#2)pyKv#->?5cY>~=RN%M9u9<XFoe@R@o7&S3gK`Fff#aQI1<9q
z5bP))cET}Ew-73Xp@eZFgp=eoI2t|<;S@bw#c~y&&`1a!RdiDEX$YTj9Z*q4#pfY>
z!NpDWCdHTR!wUXyLO2(~nGn9>;#0cB*$}=KccKEL^@e-<kn<s2;F=u5Zy{U^;Zg`c
zgm8oNI)p1Bd>g{G5K0_OTT$EBv3mN|5Z>P8{jz^OgsiH*@3`!X!R>9lGyHwu741A+
z={sEck&Ax_H@WO{MXlnyFxp3XqD$Js;Y#6JzI7D?zp!291AB%mw?g<mgftZeRQwUb
zpCSCs?qaSGDxUCeqi&1+u#@}e?u^p6y~l3<3E|%m?y~nbl|AAH*pQ!wEB+B)TYM_g
zrTK+K7E}Qh8G>t!P=*<~I~Qa#P_z9cpI`U`qq4G8WD72=qL_-}DvGGMM@8Ea%DpP?
zQ<0;hsEVIz_-geEd|frb>;V<IDuOCDWclaz37(B-)qE(RzU#>nDoUzQR6L-fl#2UR
zlv7b&MQIgfM3z<YuGE%x2pHCmP%20TD2W-E^q`7|gj7d*(TXZ6si-Ur6|Rj?__kh^
zkxIjnN>vrrR5Voaw2JB~9#PTea<RH99u;M7YoAb2L-1oN9v4tkMJ*MzRsP+BXMBdp
z7n^%ct3x}*{R~g4cuGZ`yE$7%DvZ)*Jr(sOdjl2c?s{W!ZluEJPM=ZHT*dP$8mV|z
z#cv~(#wwZ$Xd;r#a{@XZ%xU(2m=<EK4ZB*!`F{SEB3p@UEs_uFu#|S9_OgohDqc|W
zq6#|0ODa032#iwdk5UTP4zwAi1ombO8Ra$S715{5br#^Nh^gqJ;#C!|sd!z5szOuI
zRZ^+nUBw$Jj{IJ{n=sWkcn^AcLB&!rcyW}XtB9zGib7aLv-dn5L&ek~ep^UWg{7kK
zKp**(bcDYx7UC)rDrTsdsUoQ&PsIl+2CL|y;!PFrspzkwr;1*j-G%+{sCY|7Z~ES7
z<!u#X#&{Efvitr(9~FItCsXA_PW{o!yOM>`eo`E>4^Ux`R^AsmaI~^yw8H2>i4IaR
zsYj5}Au5Kdcy5?~f{I}(hO@Y<xxv-hBiO@hvq!T~6(d!QQn7oqa(cA#^Jt~m7-jB@
zfw3yasTeOqP-K|rFh$Sh)*Yj?AEQj9ah0Emt1y|}qGFoVXNpLY(*;DvDF1<3DrT$r
zNX0ju0&`fOG0N$jtVJs3s+gzZLlyH?Ea1>w@;q(H80D2cUOy}pJNw5de|?uj{lzMl
zaF|qlRW+SahVREHIb)TaD*hEJR&oMrD6L_Yiq-Te6&F;j;Ve_JMa5PX>)3F;$fo((
z<KGRo8mp`q;~P|LRIy3LW);R*&!hgV;2o_u|2?P0u8eIQf?XM3s@Se#hl-slcF}oM
z9A#gr*rQ^<iUTSJNyfb@_OT&jl|5sXi({2S<CKFO=xE@Oio*<V`oI4%v*xwj<d)nz
z<CJ#elw&H6b3j#`R&hebNfjTfI7L4hryM?$J9V70X`HhA<1G6BzvC2Tyz;4v&$#ld
z_<}3Ic!f8B-P;Djj{osSfu{Flbr`R-TAf>MYt9+=kBYO>I=b%H>~j^)c;%dmA2(-T
z{WxvNcxB>v<)Vs9D(<RC({NeE6|Tt~Xcbpgd`nHPfhw-4xUS+%E&umo?K_c=Zt)h?
z72_51KS=5g_7AJqHtVK}pLwaO7x+yye-Zqv$TqdS$-<;tDt_mxRm(@5B5#fGpBk_H
zC0TB(_*=yt!T$)@wJ6Ap|FY)=P!`bO(@<Ok9Uxu9&prK_8nQGL6bua+8vGNKLX;Y|
zuk;ar`K#ww1lbx2Yq(EC4)weGiZD9Rcdv$>)qVG9-UKf*!SjKlns;F(4rrhZYAB{5
zH=j%;Q708@Oi)TlQc01eG?X+w?=7RDtcG?P+G{AMp}dCX8lKlsLDVW~sH{QJU`$XR
z(D)K`+JhP%lB9|vC#0p#mdZS=p^Ap5G}P5lRYNrmH8eaXI;Z;kt7~{f@S_@@Zkf*O
z?`IQ~w28{&8ft2ILPH%5wM3z|h99Q;D!JYtJLXPQKCA1^=qDwq!m6}VEwU%IFI!JT
zeGSiQXsn@uhK3p%i2}X%X$^C(mUu>@^(QL*CVCyUexl+(lGa4Sa~g(K4tzOLX{zDX
z>%LAu=QPu>_1{chH2?7X-~6-u@@~Nv8d_>-rQxkE-k37noT$8YI=8ikHX7P;yqX1O
zl*^(I-#<xtLBoq0G!43jmo#+H@ZH*MRl~~~4n~8WG<24lyrQ9_hDxo2cS@yGc46rn
z-q6rZ!)qE|7oDymTTW8QP%^M+;xeD+beE)C!9YkuSK)8;@vB=h!Ws&d@H1GV5Ye!C
zLUvT7A<`6SU&+}U@GlGaT@5h}^>ozN5!aB=@Q;RnH6%6UX;`3Pp@tqB-qbLKZl<B9
zhF%&z&@h<2p`o{ifyCwgZ)@no2JX%7r=hQgcQiaX@!oeeG@0&AABJr|mTK6iU}wIU
zs-eGz0UA!G6)(Cy_kF47)KR$)ug;}fFj;(%FgMBthG-b7VS+@5X&A0yjE1oqMhN4-
zkvU4kNWp9l^Nyz5^bg!Q=RGH|=7r!1H*4@DWt@ibqQm8AnRL`d4U>eS+GNeUmJu*a
z(~!Q<H+X(<x`r7VW@?zFVXlUGqBC2v%+bIsROW?@85us5==^*>m9$91Vhvwt_)^0X
z4NEm_)UZjzM;i7`QdVeKso}uo;4%$t?{bmMxJtv}@_{uP)@oSIsaM>eTGH2PSg&CN
zTUX4h>ff@?pFHkMfz2AWXgI}6(r-0v)3Be$xqxWcp<%a%JzOQElDkAc+B9%c`r&#w
zH+QnKm#%dnXCFuEVDUPW6^>f>$;v?uhcq15aDr9Ra74pV4aYPLnyhS`tX!My`QhEk
z%KQhtnON$l+>_k=i}4cvtVUCme@FWnx=m3=6v;ZR;WG`NbJU7teJZl}=(G|iGdk?f
zop+zVcA2a*8ejOrPa1A&IIH1n4OcW=)$olNJg?z`hI4}R4tlH8MGcoEdYLXN4CTY)
zJU4suVA{7Du4(w5D~9M?=j;=ZIG8p`)TntwGXAImE4?d1$_V+NHT<G^+mgRD{HpP_
zGW;od&#cJ4CE#}r#LV)CL<t5?Q6_xs)rz@pOWwaV+!1gzGmGS14QV=Zb-sXx0y=!U
z=REi5NY}A-ijt)xTSq}15I#ePUjTIq>1bS|0F7kkGfip~D6AtqGk9`}*Z&Mfbi7c{
zcOcvIihD(^sL1<7=7<c4eCKe<VmgZJsG_5)juJXb>QHn%pre$I`$ea`j(+EZrFE2*
zC~+Abr@!_(wwy3MJA1>;P(h-lPp3VYuUT2gLxL-ctR(W>W$%WI;b9%urOwrKRM$~c
zM=c$Xh|Xgosq?6g8u^%oKCbicU$dtS@PG8R&o@=6ElE%6d|&T>RjMPPVr8#-Pf2QB
zTAuEWMFSlTb<EH)Q^(Ufp3(6xo2H|Yj%RgmTmBaNR<gXLql1nnI-b+flntM%w9wH~
zM>9ry2b=47UdOqw{<r3jxt-Zca<$RXR!3{Wb*6e_(N0Huj)jgFb*NL7NreL6t;s%G
zy6ihsm1R?vLB-0RovOU7;}sp64qZn_9i4P^)$xWH>8#^b9j8iXjacjJB22JS;58ku
z3tloc$iPzW?cm97I=bsvvLh|TvUKp?u;oDiQ}6qiKV0nQ&Wy0mhlCN=k<by<Vd$`R
zI66!*#q5@VpQb9oY0BM&xvq}!jeId7XZo|I-SVTSpIt=Fq>eXr^wg23qlYNeo~AIY
z`ZI?&$W&nHrF-}6+xit|mfq60Z|mqo<!MS^9q$Okd+-ibd>oqhbo6I&99bO$biA))
zn2zB(2I?3j_6O_uK%DTCww~wE15@rdL{f+54?UAc2s2j4NFAee&`Cz?7$YQ88D$_~
z7$;=m_1S%<DHCb`QgE7%>C==+Iwt4qPtmb&nle?Q9JT2>c#=Sd*=OmP&B+_~m^nJ;
z>iA5@=Q`%;d^r^Bbgb7gU&jKDh>oQ?7IK!|$yvmSRwBR^o-6iZ!8FyZOWH>|mg!in
zV~vjGQrrq1D|OtMrVvnvU{yX~lwobYT1sJqj*U9@bKG@olB8`qw(HoeV~a$$>bN_}
z7o4uVa4J|o7Tlp@r;a^3_UhQBqr!A$H@$a+l6<0g#*h+>Htp;=RrEkcz3Iw6j@@*H
zJD-C(4(T|l<6|9%bsW)gLX3BQ!*^82F&)S0@MFCG$v%}s2iOw|ToRutxXO1*$0s^|
zJ(2aPj?@+EwB)s02d7T=vdnnJ_l1rxb^Jm1&~Zk`SL^{DKk7KE<7*w4bzIT$4X2)t
z3py@xF2CaAxe)W7=S(U4zg6habmfv*CcpEk5?6J6%XLP_cS7<;tW;;;H68y*q1{w`
zuj7Y&eP?xmff;`i=2soR>8R8^a8u`dwfKczJwsuOZZ!6EhCP#hOULh`$&-Xsqt1>h
z_?M2`Ix@m26vp2=?y%=|q=mhD{-fhx(eE_FYx0q*{@gBU1;X%!QBV{}J~z}ynJ&@U
z14}@_q!~)lJDL74GQ%hm#yvu2g^?Xb;V}N_>D}Tn)T!)qcV~>L=Ph^lhH+mQIiguq
z<c1jvLm-Uf)6#Oo;Dk-(`fP?$ER5n|Z@!cWd)v|b!zh_5_oZT`1azw6D;-7|!DYiJ
zFM#^x1aLkUYv;|)2f}!erXna2!9!tG3}a##lftMJM&&SG52I@s4~J1DjAz1VBzdcb
z@n{$|1XmMTUF0KDA6kA)qECkLRM@)`JucCjVbltvw%{kis1pVyD{#+Dg@K^1DAyPA
zLYBW?7%lGeZ+_I*K$wOipB71*Z}jp%8%E<Wo~N3Wo9dY+VLTT`(=eKeHImK4;5tB%
zT7o{>k<l`Y4q?0;MyoJdi@`Qwv<sts7;Pm=<<zqCf*5&GNM?U2KlRC(3Kd=nqhlDI
z!vDLFF;{0%cvWPVFm^}1XAc-&%eU}G7~R5%g%J<)YZd7&XDZ#96voDHd}<hxFrreT
z7KWZ*|8Ra@+A(CT?J!IsEs@3Q`BGO;N1|@Nej<!y7$1Z&IE=h7dI;Y~<eOo<C7`Fs
zULskC-?wJ;7W}rzRQ>yg@s32_WtGBsFTcJ0g&YvZ`(gC0>p5^r4h&-u-T2iCjY}7%
zBtImKp<#>-W1NiCFv&Pd8aO<R5n+s^<H-hq%A>2Mj~0b7BFUu2Vm!OLiZ{_1CP)$w
ziYJFLC5)fKxEaP&x@gtH`@=X8#xxFk7&Am|Rv5Fxm`SfL6bOv;o)?-E#$5J!7@NYF
z7siKSEa!D0jQL?K2xCbYOT$=5XBd;VD2&DAEBLuEGGm@NDo>IbJ_=)**e7PvXh~Yh
zNgBr5FxE-Z>M+&_pu&CeAj9JAUj5gHu_2#dG*h8*7O^>uEn(~terp)p!q^e!o9}$z
z!M8n(mCec)f7d$(?71U*7uz^f*)5tWk~|s8y+ZC2`N{r_gJB%vc!lw47>C0+BK*gF
zvW^NkDRR#H{$pHW_!EEx-g0uYO8IdZLB)S3=sy+4Ct(nb+Mh%DSs0&(aV?DNVSEwB
zmoiW1Te)Y#_$rKxVO$F1Y#3j2SnK=Fhw)7q=cJ&(ET!Eafp2FjX|uelUJ$a+ByS(i
za9N^P!?+@VOs!eUw_&sqWp>ebVSFFv%l_V6{vluI2Ft4TzY|n~6#sJ=zl4zyL7@nK
z70tV0q($(X;9Ft*F5r(a2F_CMgz;w>e+hG&>pvYJ!!y{noVOb%rp`a2`L9TlJa{h<
zfiHse2<FXF24obTf375Vxu0eQ3Pym4SHtbIl)t6serirt?uj5%_^b%BBi@R^MXaze
zR4yWb<h>CTjo`j~J~!g6pE(f(gyCXH<zRklF#((%B_k*m!G;JnMsR-wr6YJgf)){!
ziJ)u*H6nOSG|O>?kDy`%<s+ydj3V*@DW&phZwfyc0RbmkC4va5Mo=w+ho!=-UKP<#
zX>z%!E>Y%U(j$V|36Dnp-#mRhf@dOV6hX}hYDG{xf+r%V8{t<Syek(o){$IKvZ}Kc
zhNmP-P+vepkqtyrnOU9|oXVS$&r01!_VhQ7ph*PJMbI>YW}?<y+QN*iFl$S|cD0P4
zRRnKD_&V+XE()z9XcIx(2--!^k(H02y>tkB{w2|QA%YhLr0PJ~A%d4hhxipqI${Mo
z3+NKTtI|5IrLX1Z>Kei85$|+`9mOmu*`28o42fW91Zo6Y1aC&rGXgz=hO-qb0$Z|&
zBZx#0jlhuTUsZf2nb}JBT+cr%UkEr6Z-Gigkc_~MASP;Yk)viSS3dN%g?V(#p8g&}
zGRoZ@1NX7LB6ur;_ahh>LGK9Oj^JIkD}p}xntdbQ2AIl}??kX>w!-Z1N$P-no&EyO
z9?9kE%4L=cgM=9z!3P5B_w^@hcn$x2wlXY&;StQ`#ED=;1S2Du9Kn<bMny0>f^iXy
zXa7&~sz?1X5sXchB767=Da?m|1hD>-B4Ehs?fptPHG*lv&x&BWfEoE}Ol6oUoxl#6
z9l;#Q$coVjlRji0MzE9v7Xg==1raQaV3A;^E*3z3Nd#Px2uM<ga#;kcB3K>4@(5Ps
z7ssTPf~VXrmNrLO6T#XD)(OMx%(b2_+9i!`WMyb=Qv{niRih{u#g+)RM(|YxXCv4a
z!S)Dd&QU&(U`GTyBRCep@d$QBusedo5p>?4vxk0L)xST20}<@yV71TQCp?o%%~1{t
zZaPO{^pIdKs@xJEiQp)`PI#`sOg$07$p}8-Y>MFHd<&-p449*2?aJnz=BE<<EI*ZZ
z0nA9A@(UrqjNpvagbWM)I)ZN^C?56dc`kzU5!{U+Es6^fT#VqS2yRAjNiu#L!8HMw
zBe)X5)d(82^J=wQYIr?@?;^O7U+(t;e&E_JsTJocE!qTs6tdl1uQERi{yl;}BKU=B
zT=|8$CGy>=!QP^_O5~pr+>YSy2>z1PZ-l%P!9NlFD+~={p7QWK&oY0mqAU=FFN%Al
zUFlI2j3QewqR0@C8AW`aQb@2rih+`Aide`Jl1BE<QwrzfB2mnHJ2&k^<=!ZYMsc6;
zfhckX<V5k%hhFKyD2heF5hPZH`C^QpxI`2sMYB{C_eW7W3Z65NXDAazsv5+sM)@cz
zL@{(<M&~G$C?1I7=_sCwg11Ny(sC5FSymJkqo@=`<tVC0@kkU8NBJQLeATH~)hPT2
zGTM*w5t}1?)uPz+q4G?~TVWoJqDB-oMeVUDQv008qd5DaQeeJva7p&`#omQ}=<8|K
z<||J~iS?tX6UCEJka;SKdIE^+3ZQZdu*3#YZ`L$ql?r&X_00V2Mp3kiqIDF{M$tG5
zGEJgr9>w!fJQqb%VVXrzWN&u+kJFe+&?1TyZkZ3rQ>RT7ZAJeTk?o>*A&M6Tw@*p2
z@KO{VqIg*t=Ax;TeM;KtD6&(2YL_TpjpDT^UXQ|zV(-?Rm**>8r4^wl*cER?(M_V=
zMgH?<aO8YNjY5;2(PfMxQEaH27M3n$tD{jE`5k*gwvn`Hu_m&DxlzQTh**ePh)0o#
zVzz-f29i<aF&AAT>K(-Ks?;NjH>3Pn5WQHFC}u?QRusLX7#+o!DBhO(ycb3PDEg!-
z%#D2%??mw~2WzIns~AJSC|1l@7#$GB`>d^K4iw3q{0CCjps2SKU>F?5ko+X3G7O7i
zcoZX|7#YPVNunC7mrA8%d&fpGF6!-+rij9LkrQcI02N+J^PFLlL???R!(GADD5go2
zm|<oVvm`n<>OEV+EDW=SnIrP_e1+Hgc~N{A#r!B12uU3ly)cSJQU@xeuG&kZ{16a&
z7<kjbvM82wN*X9`U_}%wIZ|}^C{{(WI*L6U_bApxu{Mg$`8L-@@#B1D11D68z<PH6
z$bvjoBeRiHiR=GO@28V}n{&5Bu{DZql50m4JEPbxm>2q0+dUm#M|MSdgXvxR3oh_3
z%9R!<`=Zz%#i=MhiQ+(%#{xK>U+$qOjzn>k&hSs>VGj3I&j`aYP8P{de7UH1b95q#
zlTmyu8F}$yAlZF^a$1<rMSd#sGq!!dXXlG3zNF_1$>?A)*!5b@*HL^E#qB8mj^bPt
z=cBm6=5zgz;$jrnqPQ+uE=6%UiYrm@ccs4?m$)kAxB1rQrCRr$x5#`K#rMLewg+T>
zV22;cJ##zoQxrF&_(M{Ej)G4Y{2Ik?68(ikFgokt0)^Y5TU^-|D8JK_3wjsvOAD0r
zh032%{FN%MQL#}~ecXQBiQ*rwbp|pG{2RqxF8Bu04Q~}n6InoHyN2mcv?xoGVey25
z1r5OPMkK>PAyK${J(qh7hT032ECbmF?lX{Mps;}=28xOfH)i(;xL0KPl38sQDl|gl
zDa!%FJMPOh(DHk)6X+yC!*dmqB@C1_(A>cD21*&Y-@qdV9yMSrR7x9o(7;0m$`~k1
zeFNnUC<Y!d@L%s$FuabUE7B}CBs_fP5bS)ZY()bP8>nKSl2nPQl?6;%s8lsjP4Lcz
z3iZRUdK0R;fqjcSBQ*>>W}tzAh6WxtP}4vi15X;@c_TfxmVw#^=zdR#g`=`3oUy|@
z)OyN5T?6%mKf6$2lS$SWNl<8!^0a|x3^X$EtijJ?rg1+Re$nfn#s->*S~COB8E9&F
zJ2Y;<=zdJCxXANf1}e8;2O8*3Wdp4Yv^MavfmaN)G0>Jnb1J8Ufp!Mk8+b_!z98~N
zk+d-MYHk~`#@?fckYTi=flda$Qia#pM$zmdk_rstp7ZwDuN&xUpj*D3ev{MQ$j7N^
zNS9L$Xa-yZF#|dqC<?ZLh=Hio%@pQNYo8&_Wa+H1MYD?(hSa*@aJ82%Wm242vLr;Z
z&zU8U{@K&dRMx7efnEk?7#Of4<1GWd4SZmL51hO$`UL$A^fA!az&q^o-5Kv1=x5+e
z-}GLKl=1n!`kn#uv`qa0lKp)H0|g8c`PU+aNrMdxF)-A?FawheOg1pwzz73l42(6f
zYIxd61Ec6U4bo5c@n4h&kVcDH^WU6t2F6pfUfKi$7nkQgHzKV{b+7X$iUL99#mW=|
zQw>a)5~s06a&ereddmD|oH|plX0n+x>0<}dX3@<SdtNcuz&rz^O^h+|A*Zc@(k9B7
zSYTkGfsYNGGO$QWS;<NoSS)yn$fX88GLZNqbD2a}h+J-<gIEqbo@cH$u!i%(z<vX3
z4XiV;)4=LR-ZWWnV6%ZO1~wSjXkZfu>xtqQcBft3?aijhVr8p=ZJf@_d^^PQfwSpF
ztNOPK&K!|7X_R-axXZw91A7cKekAisQ_n2JUeW1UF6;Qkk_QY_?c+agcxOik4IJXs
zGjPPfQ3J;~@h_E}912{!Sn{!*Wr-OGsDDCoofJ9awe(L6oaP#6;I4sB4SZ(cl7Y(x
zK9_>NHt>ysFARK1-w@_217|s2k=&d?-qqx48?P&tE>_M-D)9va=LPeZTt*o#=0~p>
zxN6`R1HW<>8@OiR2Lm?@TsQDr;q>ned~e|I!k)pDJk_Z<!H))h;$U?uep6BjsGPF=
zGv|A*-(w8iGVqsy+oJiqfj<oVDP~jp%#s3>e;c@C@MCmdS>*q3iD@RjS*+Y+;$9O4
zO!!Qsn<!`^%Y>8kJPoF|k`yw%Ns(dV-^EI?C5qofrin+EC>@u0j@N&Ql5OInB}!ov
zMNIs(L<uZa8Z7mG!6|AY5b$%XOPILNL=K~3in)R&a`SO`sZz{DaT5cVdIk@QEXm@Q
zDy2l;FOo@Q%9<!=LN%e8C~u;IiMl50nNUnTV4{|Z+9n<p%au%2Ht|q?DHTo7Cu!ti
z6IED$6OWoW^G;S(6V*&q7kqtp+T_6n|C2RLJZ9o?6E!7u%HV=@>8XPYG7!@gqfdx^
zGK|&{{G^GeOt94{9VXQ`(ZIwDCSEkr(8SXwnwe-WHlH!^tck{wv5^U8VU-w~n0U@a
zQ(<VCMo6YopEuFML>m)rO|&%8N_1L_WCN)~WlDy2CfbYT6iGWNQ!kn5VB$5Y0L{K^
zqLYcvCSEboF~6nE!qzdhi-}iF&}PawEimbI6J1TbVWOMKuVEl0rBLU;qS^dZg>@5Q
zj;x76CL$)HCTx0_3ByD%=;y;)ynQn{pzmf`CVo!_e_HJOyj{>W5i`-(#5*S9CK4vz
zG||&UQgZc>;#iYBcHJZ1Lx4)l?AmA3dzs$P=x?*a7fQZmqPOWi<Mhl&igPr(>qp)L
zetk^5|B>=#8~?i|`k8o-p73f~_$~jKxVIG<R3gyd!~hdNPY*5}=>O+j&igD*ey97u
z#9$M{Obj<MghRGFqw3L|UmE*|n%MA>!och!q*gpZ9mSdt@{cre`GPldkAI{TT&9dQ
zF^;pqLXL&;CMKBpl3i_LqKQc+HksILVloHO#9R~e*x_Q0ha1y4G?z;9BxJgY8A5*d
zWvQ7aW|^2x4_~G<S*FYpz{P>jiCL|)KQuAl#7YyZxc-}1Xkw{kTx8<qWy)d`&-X4~
zw}dyrdH20UlJ;~9eq>^qiRBVj2sv$;*DeNv)h2c=Q`WP+Cf1l(D+&XP`@b#{SSOeO
z%aw<hEAKB?HnN|WdwI8**lOZ5SCtjYHWS-T95!*p#10cXO&pYryG-mhvCqVQ6MNW3
z$+(xT-v7Vf2MG?CAX8_rR~beRE>{jo-VAxN@u-PoCQh38*u-%zWeb8QL=x=W;iKHV
z!*?p5`9#3(9X<voeJXWh^*$5uxrr|XR9~Tx{K~{x6SqzLZQ^SayuMsBah=Pilzz^{
zd9ErZE^@3*ToLjT7psMte4>w4?XW^29<V~WYT{dt*9zs4m$Emk@RGhW@jV^h#2+Sp
zkc_`@zV{B^F!3W-Q4=@mhr)j^`nfB;T*SO${%YbkNou}Qxy99ZL>2=vpQ-zkjx-_r
zFAh_d|G(%R6aR>QmW6*!++`LEJ>~|}Eaa_J(k&FUP{6{dm5R^umilJ>i}NYC%_|jH
z_;^sTkcA8j*H<bztCWXUDgVw+^IK@VN_l0K!Uv2ixAIOxvMm(0P{hJL7VfpYYdy)L
zVvT^;de*R2sjPs7TnkTGsB0l;p_qlT7Rp&DZlQ#QpI0emEV!$bk`}hLD7+|{Rm#GI
zRm%POc1jD_vC8X;=$*{+7AjbH+(JzY3d>#X@f9sRV8Ps${h);(^86237<#{V?fxy0
zTggIY3lCeUV&M@Bk6Nf|p_+y27TT{?s;*Wj`-vPYrmoEl)UfcFh5w?*Rx2cH<=2N*
zy|G%UZGrL$3w10!DM^enu+VxI>RV`Ip{<1m7LetC+QKsy8nV47Gu969^GD&LKjbu$
zTrDj;%Z|0s#KLnHnptRWp{XQ2zeeGmb#RS$C-uCA*ct_cgDotqIGi(njZ*8|oF{+D
zIe6FKifu0#Xl>!wF<$?-W4kQ8YT-2tFIaf1bm5mQbP$6tTIgeYE5MdD%F7lySs-{t
zBtb{^(wQ6rhRznc2!DQH7D+DbuhSZz9ktNa!W$O4S>DC2JIz{1ZTbF_1k}_l=oZ3~
z%XcL0pTpi&*x(phNIJ-KU|Fy&s5Uek4jsV4R~F8)nLPZl_}yBJw2+{(h29q4mip(3
z>?N{?g*OHC6q!2Qc+2t*ThiobpgtD*T6oVwe+%!VbVR-@GIbJ?k^?NfZ(*4511$`)
zFhuYNA_uc#Yn0UQR%`<CPzyYRO8wS6Ty)5vf4{^i3!^Qpvas6182XQexfbSG7{|q*
zE^T3=g}>H#9`YoL2bO0~vM|}gGz-%$Oc6U%^R4lgmbbCgoFU9i3$y4Oa!N*Wwvcn!
zGgotKo4MSrk^IoYd<%;$EU~~d0Wu3LEVQsllowa^e4}_X?{|>gwaQWp%PcIn@KJt=
zEk~xUu)tdJ{%fU>yx(M?{u&EwEgZIR#KJlY>n&`zu)_jR{x?|IY=H*|yr11@VG~!C
zRX&!^Uj(*T*vdhy@0Ghv3{LBoOHbZuVV8w{7WP}%ZDEgvy_^DT72aPn?<c#x(-@MJ
z3<oS6v~WnGsox!nKH=SlGwG;>V;pV^pGxX+u37?4Sp2fL_xlUWq8fkA;jf>kEKhzS
zlDGWiKeO<Kg)c39F1b?u&(37epJ7i{@W-UbzP9iUmkt|MZJe`k-h$6Yx{V8TdkfdN
zLbA8T0&QO5)L5%r7Rl&U;lJe^T&sL7-&*|6!uJ+#(SIcA2Ma%1_(|{$3ny~?>;Y!H
zY2g=6XReKsH2#n`zK8qze@hwUV*m@i@%_WXpBDb%@-F;e7H(VkTkun_`%?GOcQ}LO
zhWfQ1JtKFy=G$KHrP<y{@m87#J1I{qXahC^Hgaub*eGQ48_viUWxtKXYrPUPZOmS)
z@MfR5u#F-%?z6oEK=1s=Mp03|S0ua9J6d@$ohKwYHrieDP3-FB3fd@Uql}HRHj3LQ
zVZ*;pDb2p+!#_4kN#4(-tov<l<h(*DsY6iCMtK_#+IUFRDu{eQq#`o)BU-8tD+*It
znpw$4pG1)Ld05C#p7$<Z)ofI^(ac738;{s{)J82EEw2Y^*r>5id3$g6<2D|%y|-x|
zjC&3fkNa!dcx9b3^t`{ejVEl>vGJshMmC<c@sy3aHX7JyXrrEl`ZngSQ`~h5<%xAl
zd{^$%HW+<I_=4{Q$baO|qHJt~V5yz{oQ)<nsL4Q0%BB*f&hs`}*m%*#OEzw;Q(Cf1
zZ5%(AL)^+nYa!d%Xe)rVWndCzdmAs1?CdSScr~qqjhCsmCc8V^Vxyyt*KKsQ(aA<<
z8?V}U%|;i&)GxYTVMqaz1S$E3;BNU0Nvb_YP5Q&&tS0Lf-A35PMH`oFL~KNDEVr@3
zhC#oIWeu@0)P`xpvSHiM*DDDdNnQomKQ>|<_b*GuZA>ldf9g-K=bx?a<K;5XMh_eB
z+URHFO&dLJyv<>?(aXkLHnwfa?QLU#)RtKmtXH0C>fgIw;Zy4u*DHN(yu<OjoI7Sk
z_K=<4M0n3ee;WgB46^aHlRLo1`?fa$8=uY1*r4?PAxGK3@6GzVZBRb2G1vxwq^`f(
zd#2*O4azVZ!)+{KJ^T7c*cfSJk#xl<8>4MZ=Zvs1#>QA1lWa`3G0w(#8xw3y<j`+W
zN}tNvyFt0QLGf=?ylZH#zv@P13fpVr#|Hz`Z0zv`N)E_f+S|K5X|~bp|Cu&s*_dbJ
zLry>&HR}iF(3BMV^zq#AMrFW8WoO;oxf_-F?Dk5&1vVD4ImdIiZd6W-h4cG!`8fSz
zR%}G@<{}>@%`O!SABkKhlDB&+ZLG3!#Kut@t8J{YvBSnr8*6Q_OV``jU}K$)KjT?@
z8dRvZE_<VmO&rz|{;f7P3)mu(ObYN(oNYF?3(4nm$W!iOO(MAmY)lyxB-qVX+t_Pk
zpYUY%3pivKCf-)T|I0?@pbg4HT#Ez{vkAvI3v7HtH|rHVVdEs{i0jStk8PZ?@r8{q
zZG2+mG{?yCe`e!TI{!2u52H4{kjvKtPhIxjY5LrTy3O;7&pydw=by3hm5sB~Atb-H
zQG1hD7Q^FLGS9L3ef;Nb+-;avxQzcoKDcb-ip_7}<F<{fHomp-o9!LlT(fcA#!bQB
zi6nVL!1p$O5Wv>~Nd74Jr~kwJESO2ZaB*Il{VP4{U>d<K;eQwThsZzkHQzg!_P32Y
zoXZYgbMTMtZNdvU@HzO`#*m8{cSWW-9%dNxXn}MG1s!yB&|rV|Cm&?N0c8^h84d~w
z_B&7<JRmsJL6(DT2ZbFJaZtiRNeA~hxYq$+_04rq)WLlY0um*YBY=`N8BH-k2gUOF
z;`y3XDCOXO2jzq*?VyZ+vLdOLGDQo-<sDSW=TkNxbnuXaXQiNu4k|f##KEHuDm!@C
z0kc#S3soFc6&)5wgQ?PqtLNhy4jyyR(81FV9(PdF!IKW2a!|`bZ3j;{s3Ufmmmy^&
zRRPMn4(d6m&z{V$ZOT41nVM3jd`6;;@^w<#$v4h7_?&>I4w^Y=F1WRWHV&S5&_bdu
z9kdca`~R73E4YKmb|Tw5c)`Jof~odWew~S#@nr|E{Qnsq!gpf--^}eSvWw%b`Ha5q
zpsRyYn-#~w8xFcTxUfkv9CW9G1J!}XanH_5Zc?UgQdTkinWH<1INsyF3}O07*#JQ_
zpJ9}*7nzRtl9A=W7QnI?bsg`WM247ycs@=z7*H&iWDf^#I;iWSo{OFidO6tYV4K4a
z^`p0g*$(D7c-uiA2O}JebkNtqI}Qdq806qx4&r8I%Y~fx9Q1QAcC>egIQF4TGW}`a
z!TZwQ4x5z^HY+?++TJ?*wBNe`ec)g)=ZmBcbui4qaMrCr+T{(t@Qw_EWP!A=Hu#op
zRz^9P=wOnA(GE^-R>rUt2k-H4v}D#e2jd;IEA79wS(zZF2x$EKO#fsDGaL|1aWGZD
zG?CLqzH}gsfvGbkI!k10VdgrR=YTJMZgB9SgZU1w@5@=~V1a|Xo0a7+XDxQHkPg`;
z$goJjZ$o|LmpEAJ;3Egi9Dal!D=1&iD!;|c!q9jNE9T)<4pxiJH4fGbp#8N1)=3i>
zC7|5sV3RPL9c+2iJIUW7QDeD>w>#M3;0~7~2Rj|?a`35x&m8RLz->_uIymHDkAuAq
z_Br_Y^}@gI_qHqh*?X);+w=o8zD42T1IgoCl*0~=I5_Iy7(1Ezob{J7k2^TQu5i8E
z2V+Wr$9>zI_=wZDD#f=dr#J=ZOPmW^mFQMw*jCTf=MKJbaL&Pb2VZig+!NTeRr$)n
z83&y^1o;X-&;QAs<!qI<d?WHJ$$No?R`*?X@U4T34lX&k%!TFK%qt=ZRt!&LAh^c<
zaqydiTMoYC*g3fA;AaOvIJn{9M+ZMS_+zV5ZJXzE&u{Z8)_t2Yc$>nP;C^xNE7!X1
zN`vjnVo5r-P5EP+@;kFQxXl%~c_6Kp?@tGRamgK(R`)Oe;lnw6FQ(sig>RDnO<%1X
z;0w9`(jU0KxhUZx&Gq^`(?ynx0xo<m(p?mE@#Ugmh6^xtmN#UpihG_vZ@WUikfi!u
zZ#7^v+eKm5J8`-{+h4@RJuY%w1YF$fqNt1eT&}}GhPxAe{{=>KT?8emm<#eW^_M6R
zFj~?@DHr8jly`A`yK=va(k|-v^B3QtY|rz**CJTPMOhaF43+zP*(<nskOo~SE^2oO
zHrSy&;NtN0wEg3K6<t(v@u-U$E-Jft*hO_0kGQDf!rh@%by3a5+UvPZ#|60``{hE;
z<Q+<%PjlDq@HUOKd}@dCn2X0<JmI2_i<&MzKAlsGrAQB4-J!&@0(IvFxS8zKw8WDx
z{<)G<ey8%3i+^``!}t9z&k5_hXy9V2i)}6%x_H_}R~K)%c*aE|7caQnsNh)_ja{^K
z(aJ>=*V|X{xs>KE^rM;2xoAoYI~9gz0<so*`_JcHthhg`g^SG1z7BJPJnU-CN_O$}
z+o`m1(bh#f*W2y4cfE5kZult~$h;)|`HG8<E;>j<UKTlTr}Dtoj81}Ib8&j761g|4
zvkS^DB41@+3HiFD{!k!5oo+6=yBO(W6f?R|UBq0(U1%=&dV;||nHtbtglT~ewo56p
z*vEHFqGZZtab}g>rI;=(QL{xlE(U$*+dbdsN|f0f?@|&jk}i6?c-uvuiykijyaPR5
z>}c(6U)SV${oIQl>*DvkT>dEVPE*e@3U%`_^l{PG#Xy>M@s5jkUG#S`z(qe7wO$A^
zyvHW&^2V#zE@i?lWyvmuzen(!E$_RyB>V?12D=#MVmO<yTUoIycZiFj^oQL__ua~*
z-Co|IW3pcD<lDDf8R4SMEpHDw+Qk?b^Ia@(G1kR67t>wLa53Hmf61NfVv36iE+$Hc
zlVO-7Nz6Od#Wdl`Fp!}p!AuvkT+DGXSMoB;Yyqi^^CbI+qM6E-k_%lda<P;nl5dI`
z7mM-|kzRHe%U%8r3O3NMT&#4l+Qk}4U6o(fg+5+yGpwbHN)qj)NXm^aHgPp@u|+Dt
z3R8!H%ET;!csqy8#rO0{7du_-;yiV6#Kmr|Jbz|3ygzHdi#;xW+^wwPQ-v<}(cnE<
z4<5;x)XZ1Bbk+eE2VL-^F?7^JT(b5k#7A8mbMdK*&s-dLae_-wz~B1A?2{a?fd6Bc
z*8*hMOJiX46CqCv!zcs!&s}`sqC%ek64y5uXIy;a;+%`GTvXhnd@Y@JRxqP%K5?oa
z&I@@_q8CI`fq@E_U0f07s>tguzIAbp+m$`az#mIZ=@{&^N8#%s-*F)ln>W~MuER0-
zV)#k=_O^?^UEFl>vx{HE$Su0Ji(g%gkSxCmNxX26@`sB*CCZAW_`f8|q`fZ&@32v0
zv;N^6e9W5{|4Q^OF99(;w<?WE42@Q$J=oLVv2$8_3<YCA3>h&LiQ%3Y_U=&%#gHX{
z*e@VcB&}r&C>+DlcQW4|ok>}@aM62X-tk3F48%o6-WS9E&odZh7Je)u7(=lbKJS4q
zdZ2g=C1NO(MA;-t#!xDTd2xIg$Ne#sj^X1NPBArxvN4Q_VQdWLVkjSj8$&FH3Na`#
zG>_r=7#@h>!5AKmp+*dR&F~?S564hZ0GUbxDvRVDUzHfD#!yY7kBF?EpG0K_Mjwme
z@fhlPyl1m!3{S*RCx%)v)XvXBgDIO&#_$vyD^b4in6i+v*&v37F*IR^ORlG5XcWV<
zf}e?b?sV-)4)s%Z8ppuZl~IPKF*M6BC}ohATg1>ZhSy?vJ%&~>w2tAW7&?er8<Fi}
zXe)rq?F8_If!SY(;l&tOC6>tO%Q3tXLl;r#7(=HRItxx!g9<4?{a1x2!|YvScq4{L
z3{fGw#h}KZ#n7E*g`qw(Qc_<R8P1QAA#Vt2i!@`f1TaggIO;h0`tcYNF$|4iSPaP+
z@?tnNEjTcS9x=ShuHLJ>D{bi+!`lLS#qgGZyD~?5$Ixx0w`%nfvTqFU2zY3(!a$xD
z`o;MFO6VWM05SMJoxi8|#xau^2&guQ<5fHNgBS+0$Mz~iBubuSqo98{dth76=om(@
z8he$IF{E$H85QG!e{kMjg_4?|j7sCLf#YJB6T{pX#>X&0a!rh3dd&OLa8eADW0(@d
z)EK74y!VyvX&SgaHt@{3+)kBz&2j@|W{4)0XT~rqhS?H*xn}ywgT-H~nLaNDevoHH
z3@c;!FoyXtETF*w{-vBX!-ESsiTVZ?#jsd<fEy$}aj`@&!2{*|AH}eYlc=13xk%1d
z;#Hj2dzI}m?1*7?3~MC1Hiiu`Y>Z)@M5(Y|z|hvgO)+eaVQUQAgxQiWnMAdeW=eTy
z47)g*F&vIzx2Wyo5)s25t|t<uS}Hqp9T0pl-`aotkr<A}a9sGKF{CV?NJaN5CnXn2
zmd-4n#BiE@9)}jkr!jmM!y|D#8u#YH=P?wIqeL8EuoD9QFJs^fAZKFuDu%N$d>zA&
zT$Z^^oy_<qhRe+OWcoRYo)<~}LJSuLU&?2wb0vnWF?=if*Ep>6iZGDB9>aH{_C061
zfW#v{CfyKB1sc2=!_P5f$5A-$W&9<Ezhk%)!>=*?CTh20_)`Fte;4qF$X7R({7b-X
zk+e*Of9NV)*yBJPcVkFnV^3zJi!2~ArRIx+*_o8813`wA?vHy-E+mp9LuMRV|0iRS
zIPQs~m@rJeH;$Y*0un7M@;;F%vniP?OfZgA(ad#LZU;)nQ8tbq2eT($$t=aIKpYqL
zDh#Cslo8pae{Q)r%E!IWzEz0h!8jfgtcZMox%PRVgR2-vr8ug@Q8kXrakSZ|JS@`Q
zrw}u6=qankQC-|16(vK38gV=pM{DZG@pv3H<9IfX#&Oh&W70mQZXEUEs2#@>lCe%4
zZ#|Uxq~OXceZ)@*Ca53Bia&B1#__a(2622o$w!8P;29wa8pSdGWEROLaXiO5-^lrR
zpVBnW|5ZWDIBHzTY#s-%Sqv@WcwR6`MmLY}?vY!G&fzD0B-_T(E{;xdbdIBa97A6S
zc8GHyUg(AVHoh3gOM*)k^ll|ymef~7Qmvza@WkBmhjO}zS~q${9IwUkx<tE*{84(3
z@{Rmx_c*FO=nskP&?t>qk0Tt%s5nN)5s4!jM;=F(voGm4;>dn6I~j)=$L?x=D-Jsj
zCk{7`zBe=D?Di)L5HQ4qd0@XnoQNX@SZ#iP?9DiO#?dR1c26IFFAhN*AH-4dn^L{w
zcsq_kQn5bF9!I}8-iza%INpt;{+UvIWQfP$(-sAv+OKrouk?>&KpgMKF^~&_6&U(&
z&ZPay+WpFj{mS>{13X&iE%^xf{^8&_hOkTHIM_EhJdP0phQ)DWWhNPhk@*ZUD>){P
zv2jd{d#fmaqrcrUom<m!acpd#JwA>JQp3yxo*zz%V=`yZy6h=&Opl}Opdj&7&OXs0
zo;A!jBaWGI%!+$A-E%}P-jOz26sAnbCOKCy!TdND#IZVoH3=+?V^JI(6X=w{;y9MX
z@fn>kj-_#Y6vrA)nYecWT1HolV`Uu6IVC$3t0J}HV_K}+Dlz-YuFTaOtgg8P>*81+
z$M!gO#IYd`mhM$Rz($dq;#jsLEyZt%W2=zcM6!D1cgC@c-4e$!+Kgil%Z&sN#nJtM
zvNw(c?8Z3u#j#%))*&y=JEmhQNn*;waU6-mH`d3D3~6J1$2kyj96F$UN`EU8ILS61
zP(F#{W6l?8!oULx1MQGMEvdwr?Y)uuB91TVbqTah;7lA}#c{ktvF8)K-N4szoaeF=
z$2aukHQCDjS?8q3F0rcjXRSDzb1{xfaVQBqknoOSFURp$9Jk{hz7ogPIKCBpEsh`J
zxDm&7iGC-NI^T23tSL_LV;n!l@oOBvNz%<Ye#zJQSwN1QPE(WNmN0*a{9R;mhd;;s
zzjNTf<G2$?ZURB6)jx6g6Ua>9UtR)4EiHk9l0<6-67VIEp72h>|0@NOnvp=E#Q#pY
zsmau=1hOTmsK~+z+#{e!!aLtiWxrP#T1(aTK3WhaAd)1LiU}^0(oCR)fRZ9hrAYn|
zkU(iEot9J9%1Tl>k>y2J5Xo|B_Cdh}4H9@Lfr<%KN}zHAHS_t06R0M*ipZ)WQ+cZ=
z@JIrW3iFuA8X{?p3Xcm;)uC1bwG((EfjUCgOW;WXPl-%*LS4Zr%d}8GzYiNG@U$d7
zBeH1%jRZWKK;s0O2u_vwoZys&W`djNr?MI?II^R&S|-pcfqTpQTeF!56*ArAi*W4{
zXrI8#3A~c<PDlG~^X}YVNO-%Q7ZZ3%KnIb@R-XTNtK@HeP}y6>N8CAqE(wfHU|a&P
zCh%GU?<UYMf!7o0nn2$K_)VTS61+J2yVF7f-NcUXyG(xKOie&bAdx^a0X>0m0#*Wc
z0+9rw2^a~OoF+SSdu`9*6WY;(-ei2>NbabE%KC$flYpB*EP*)dEJ;l5eLL{iLGJ<1
z7w%;Cu#4p-&?AAj66l@4n^JDi1bVU1_p^eBJZt>SBLfe9-{u${Qu>I_n}@v5h%Gy$
z@Y8wk2*a<Qo;akumq7mn_*K2Z3H&VC2e7tRav0uEU|<4+B>KVsk^CKVNCHDS1y1D*
zOW^yLvqmN`Jc06=fe|!vGK=9(bN{FWMkmncIUmCqDUlbE%)`p~1SZg0asQG8CMLWK
z!R!R)Brqv~$q7uMyB=1ivWF9BcUbxSLeBIAX0Tfhdrg~}0K+Vak{Ks~U~U5Q64-E9
zIo&FoPs@Lp@Sc;Op8zqRT3o<OfG~@={!2|}1<O!@1}T>&_y@1xi~nW1q&@mt+Oh<e
zC$J)cAM-q~SSk8_9`>(dTORhGIjpQrU|j;|6S$DTdKQ|%{saziRauz1G2v~Vw<oYk
zqGUEFuto6J1hxrC)=cLOOZS@TXWsJfV3XHn?@VA<0%fM9?M`4%0(%qKCxL(!D0D<&
zAUK%7A+F2`?_~0D0!I?~Jb{vB0!I@#M!(|O4%?f+30~$(W<4A5pG<)AR01F8hgxEX
zrU<BiI)P6mBk^Yfu3q!z$QM%XmmDL}|4K?cE0RTjoxnGO&xsm$%fpW-7ZbRYfIo@M
zBrYd#C4s*ZxShb&1inq+mjn*J?OjH%(fPM!|HNh<QLZQO9i1nE9}>91-WGEI&@3h~
z@T*x21pHRvO*)m7wc}p@pn<+$#oBKP+)Chg!8HCy0vSgY0){_@tUNf#hnN0N;7$Vn
zNOoSz`P}lqT;!7|n8aNUT(k7FBnl+qOL|>RnF8FR4DJ|cQaX#zK_Q8Zq__Wk;HXk4
z3ChW7fh^H4lEghpWGA`(_HXXzFPucPqssN{EIt%^ZxXplen=2SlivQb*HPuZBq(!4
z21If?6if2d$m^NXNfb|_ghWdwQA$9OdEOJ$RJdQF1E0;Fan$pKa!Hg=Ld%1mhYCq3
zNt{pO0_(<_B+);K0ZBZRM8zatPU4j$DkV`li8@I<nZ(0MR7s+G5|1QNH7WPq838&!
zeYKiIc^~~~5?v0LteM1`qe>0Ij6Rmc<4N$Fb;Oh<4(8Nix6BIEW)VYtPbBer#~`Cm
zB~dqtXOd_{XBd%Hk5w8Gte?cZGv1kS@h1KTNi<|*oA?=?PU4HB3c<5UG)|&<63-{m
zN?rv$^mbO0Bq*OtqA5EziCb)Y_aGU{7D=>B@*kGbo^^i9-zteV0*G5DF>X#aLEC($
zN}C{~FG%zykuN6EeYU65dwE(18OjHaDIJsOlteO#yd*la)k!3h-gJI7iPw?{ClO&A
znSExk8?#HUu1UO+MAxh=h9A#ogpyE`-dC43kpv9<HHr<_*&)ZgmPRF`m4uyyk%XB<
z>jXNo^kd%0I!U;q5Kkf|;EB;*c7~SsdfPvenbrLKy{ShMZzl0}5`B``Ej`v#^n1|_
zDrCKtL~j9<iDL>G=AC{_>B~+#th|%NyGe|HAh%x<?+HUpo`K+f@%AZ6Oif~75`&WX
zK$zi4j7VazU`~f20)~nlCUWyJh5X1Q#&QUR8I{Cn0b@kw?#%e%m@-~4H75#~kOc4G
z7@d^QPZm)0xH2t?=}8<*;&>7>lIT$~i`T3LNz6=QmNa&D5^Kx(=Or;mqP*dno5aZT
znFJpuF<(;e#C*w>Y0cVZFHB-l5{r{qlH^hxJetJPBtA-FU((w(ElXm#fGtU^5U^3?
z$|P1Lv6^#%){<D4{NLs<wHaG4I>Z}<|8Ix3NqCywEFiUI+RAd1*q+1=A$N=1DRS5U
zQQIS!dG~Uf<nJE$3wc1~LCy;SheaL{`9IADfmuBQd_wO;5}zgUIVWsx*2yG3=32y$
z|4=iD(_CkcD-53ssIe-W*iQKC99O=e`{nr0CGlkvXSiY<SH4Q(YXQV(1q|usC-^3b
z8x_1P3vTAr>QnGy5|@%FmxuCsxXeYbs{gMfZYOaiiK|I`o5ZywZYJ@w4Ab=_I!+0O
z!@=()`h5~V&>9{4u<~OPKP9~vOgbG`s^7`v4|eq1ZpW2hlHNJquSxvIQVwSGTf6I~
z1aEOTrUd^K`Fj$7BvEg*j|{V<0G;aZBnsuhpNBh1{KLsBu2mopzC3S9zbnx+!Oe%K
zr3)ZmP=Gzmb4%nQBcJEx?{be|W*+Xz!@X>2k6@O_Y>|cYP(%QE)}d$~?#siv<4Vaq
z<m4fchvIo&(<UBQa`O<(^R76=l*I&db}(8(bg0&DR9dM#Z+*T$52f=^CJ$xv!v|mH
zG+LU?Ku{qMN*-F|p=BN($istq-Y%tK9v;d=MOHfxkL96K9xCUdY96YwdgFckK*Z6P
zf)D3`vPvEf9#?L$x1|o87knoF5y53oDE}W<?*T1E(Yy~Yi_c~6y&!S}NkJGD6j6|%
z2nwPIA`&DB2qN-=hyfLMcH++N&dwq^35X;U!7LyODoBu|g5(@T$vNlrf2P*;{J!s;
zK6Re1uCA``uI@?QJvCV3YTv?I!r`f#^}?tfMx8L~hW(!r@D<a8VgDUeMIQJsGE?5m
zVf5iJc#Kc|FdBsMNZ5ZX%kXFz{1%hOJRY-A7>|YV?0vz;lCdc*FO&0l7*B-JBn)+Y
zpy4|?PloZin!~`CvAn7_3*#v&6qA~V!L5-!Rx8hh(K3t<VLTT`t1!Rd`#v+YL{954
zUbrj24T}h)ZP?!%#UC!T3;+9$w0#(iGWfy=vO7{ZjBa6cqGbP^d-YIfwwNAzK8!A5
zbQMeu3}iCPi}ZoX%1dE%5BpEVbx)K}tyX%l3+5KgqIqGE_7qCt-eJ7Lu2FH9iauey
z%6152X&A4C@p>4O!k8S!8)5Vf!(pq2@n#rrg|V=8G4}r3Vf16mgz*y({|qC{T8E*t
zeZ)5?5D9~;_@1v_l$gK>!wkcc)bxw-8!O5XFqK#KxsL>+VcwGY-;3j6B*GX=RpoNr
zFp^;m4r53dUKpt`28MC%tx$iV?}jme;rReLr0+=}7$m7_=1}%{7^A{?FO1=AlQ2g9
zpDdJNuK(!hFveu^rnNEY{V>LbF-Q0RIR8Ny<HMK`#zZQ7K9DZ-zoI`3<D)Qs31dMR
zAG06B_$G{R!}v6eDXjkff-l0DDo!;mjCHFOu6X203)92+jBWL2*5_g5tWijb2`K+%
z7+*=ouZ5EHR48W#+vJ(t@98jM%w$)Fak*ruTm8Uyba;AH{XnPs0Y(YtgfW*+&OV|C
z{uET!C@t40-2U9~nZlpLn9oLDqj<aX=CQ}u_@k-Bq#(D*ab<W{E3`0-MI4?Bv%X%V
zEDqz>F!mG+RlFyk_g9o$MkB*G8^$?~(=dJuV`mt<!uUOmKL|Se3shEyu_}zUtZ5j3
zhOwH?CSN)Ejd-OLw?>*`LXF`1FgAqIIv(PN`i)_13S)a1#GAv|62{grw$b_5DCf2m
zyyk_fu2r}ig!;J%hi<<^lsvjt8MZF3;LrTOIFp32FO1#v+qJ&f-(mbi<7sL`|BmIN
z(EVXtS(wjV;V0;IVH^zOP#A~9;F{iJVH{z1uT_pR*II>|nTsKJopPKr)jEZH6&dYb
zHRog)r#Q8)E;t>=8Mgd7pZ{~*KaKEw7#BDdtGGqQ#V{^~0o9*ZFSFb*im3jYYDTYy
zaf6M&PPxX3cT>^pG-F43hHsAL2ULt&r!Y)fm=#n}RK-my`0QNjpZt%P=U?v~ys2p@
zOGPmiAr;vwimT{0Ae19CS16;ix&}z+b`6wJakC17|Cpsz<f*t_MI{yaDvmA5t+-w(
ztD-<fp$eWC`qMh)@H(Zm3eqwv>V8t#a9CkE73Edjs^T^k6;xDI@kX5>FA5B4ux?l&
z+$X>&R}ph{5Vy%!R>2-uNTmgci@g%4qN1vbF)GHYxLd_NDtfDUMMX6g_o{eCMN1Xc
zRotiIQ56kU+^?dBiU&nQ#|C~s)>QETtvZ=kOGO<4#I;3$pl*gk$%j<bQ}M9s&-M*e
zJi<mR8>+8@uM5bjS|dmq1};P=r;&=sRXic7j|puowDiG(CMup(@sx_@Dw+zD%cq+O
z;Cku*mQp{hqJ=Q2jm&gXEB4XQoEKGeSJ7HU8x_y0Xse>5icTtSyq@1qXa^PTnZ16H
zoLcLZ&g+%uR19A4yUO16%558z&MKZ)(M3g96)&)tRXn{xNo-K&Z}4TV2qj?lmsIp%
zYpCd{qUJ^gfgIjuk1g)sZ}(FDr(J@VRs8f|kb$_5idR*HRj5o=@jCn6DSVUttD@aT
zWoxBSn|nij+36eo;XnSq;J|*Nw^SG#mA6&&Q}K>qCJ~cHRA?$Z6)6=ulT`2k-h>KM
z#fXgx*KI~sSb`a~B@2NgAf_U&V%|pO1v|8Eqd&%7$xaPPX;^~(H1E6IL2Miq@2VIe
z83zjG3i<R-w;}AQ&cWd<Ma57R4a(&V6H4=lM{<0r2uur(W@S4C-;=ys+WYO3w@INh
z^FHT&72{MaRIy0K2P(#^_+G^iDki9ysNy5le>pQrGFF{hanzK;$$~!=%5x#8>SGn3
zsQ6UH6cyj7_*TVK71LCFq2fyw(^Y)N`Jr;r&uL7Xe11&){c?8QO-k-v`CKdYm5Q%b
z^jerZYLn7_lVU#WcbUFPnW18)irG?1&yK-a0=^Ua^Co5ICgr)4c^5Y+Uca2Lf6AT1
zk;V5p9Q*WtcDIV3Rs15%l1H-VshIU{&h$gs!)NEuSHW}mZ{4g=zU+)Z@BaQB$YQDE
zuPT;sTrAFN+c$ryie)O+s#vFDxr!AWeLpE&nR(l^{NLC+DpslZo%6#qpYw-+2RAFk
ze+phLv`e$#noJT)`PK{ZhZNlMuwH7hLB&P^i+UGsqN{IK25wfis@SGtLj)Tm*sfv+
z{Xc?k5$sg4i-SFa2P61P#cuX#1VtkFTg5-D5$*paYY+XlOW>3WUi<c{*r#H@ROb-A
zNW}rctldEY{CCU|0moDvS8+6xN<L*yNc5!8o~r^3<eye?M#Wi~=q|8B1)LLlp8R?N
zPI?TNR9qG2WffOA#Vz#tXL3U=8U(Hhe`5WAC2!E{Is};-jG$-)B_p^c;#c9Oh(DKR
z3x&`up~WHy31I5wwSgSLxk8HzEg|&g2v%JVP1)?PCoC25TZW-#1bGqUM^F$!VFXno
zs2V}(2+BloXT<OHvJsSHcERO^lF5pb-WtJe5&vRQL1;yxjNUGwlF-UR6`>pEXQi8w
zdGCtg%WD3$<L(IViJ*D}_lfdqLhlty;s4}W;{6fSh@iU^&5UX=@Ia;(wFJ}_S|@_>
zLxZdutNBm_^&)sUf|vXFZCgKr2GSHyMes-jkBWS?MSfDl2p)@|v7|PN;K;9m7xra8
z9s%i-5j2h93Bimu5pe9A00T2NlPr`cZXUtY5^WK|a}jim;F$<oM$k%_Z6bI!g4PkR
zqyG`FXd6Mh2s%hAv!`99eFVkd&!uCKL*F3nBm&Pz&^aTSyDrcrgS!eK=S4P71oI>K
zC4!eC=n=vD5sZuAe-ZSIz>2_*pqB{08o_I9lZ=Mm5xgR}Plj{6Uf}fz-jHY{g1!Q1
z(mU+O2;Pd|ZQ=A2+EhH5b~auZpiDS|we<pO<X_L%BG5&QOhbSv^!wZp>l=;0iC}O9
zLn4R?f1uEK1c?Y-c2ETUg;Q-=z!Q*)fS7?sve0)U7$AH`(;PAfvDq_L4UJ$_1n-H=
zun2|=7!kopv5;m^o|e$^(GiT1)aMraqmN;1rWPO2sl;36h-XfS;A;UBBbX#$as(eo
z@JR$8N|gTjkpTMbrx8pM{8<E3BbXM!^o&e;0-<nvKz$y;7m`G`|1yHF1b<w%km1L%
zx!*|i+X!YvFf)Q#5qzJ~^PPa%nK4C$99%yLGp(6*nJZQMF@m22{48{yP~MVJV1W#i
zm7FCaSQx<~$-X#(6`4|g6|f|Nr5VmL0n3FZhvxs5;r|}NAA-|koP&|0?9T{RNBnI~
zYosNwE$|CnD+a6+x?U)U(k70hMOg<UI26HV!CQoG6}n9*1-3`9gO`8^c5(8LU{3^l
zC26<Ne}w)ml!rty5buj%e*_0INo4XAsdOp<bsmnOp@v2pjzn-Yf@2XJk04h=aSbOT
zILV8PhP*2Iry@Abk;R*?2+q(+BDlco(Ji5KG<dV}-IA>0ZT;)@d699d1v&LyjNnql
z-=u$8D8ZG@%GC(2Mc_5czaGI{)4%;7z9F1|=JQ`^lpoYkRKrc0|8a@}#gPvUHMb~P
z8j5KMX~@=mOL8=SO7FPEzZLv&i?Vi$(rkWK2@N+>Si=LFziPdthA&#@-mT#l4QEBN
z6sw~lUo;f3*4d%kG!zP;p3=fEBebm0aze{%xK#jU(l?M5G*lGM?LsSQsH{N|d{;*D
z4gq&+{%t2SGE~t}RhZYG4Km!Lp_&H1WV=_GkGBq1*KnV3?iX4^C_RmVVtf}-OY=WG
z)e%}-Lt<`$vQ=reRjI4tK@AUSsHfp!4UdY#`WhN&ctmLS8-;eU5Gl<dt?)oTDN`TQ
z&{)Gq8a~$WxP~X#ZW?-PXrkds4ed0v*U(f$Gg0^qn=U`}l!h|rv)_>(Z!Y|&H9Wsn
zX(5#QTe8q-sFl#x8ro=hR&ZOPOya(N{^W?DdarCQ@9Ci7ISm~}`M#~n|1@-B#i>n0
z7Y#3J=&qrwh8HxvwpHn-fnQ)FSMr7z%UQX)#AwR%xV*!8FKOtZf#+f|TCYg{%&khx
zBY8aCqNj#lVq~8uf`#q#U(wJ<!vGBfHM~lN8v1E?N5kv%H_hLqFnnl;i(va|c#Hm4
zHuR>3>81Q1r&8_P!s)myNdCC(d0`E<XjU~uG-w)h4Tc6&1CQn5@}A@mxuv%G_B7e1
zSQ=<*w{1#tn-bOFXozWu)8{p$*pC`qQI%wI+muz?l+%*&?8w60?aB|Ma{5c^yBhdS
znF^Kd%ACV_gES1*FhRpa4MQ{x)i6%;Z<&T^7|!A}jL|Sc!z<H+qcpsyVI-9t&h}Rj
z9nL0`ftYlx$Pm9zCDU@#V&s3I`KKW<j2BRBe6Vt<vi6*!lQc|bqdi!LN1So#*N2+F
zB<$gyWj@jHsfM35%+oMM!&HvDdqZ<IOk<@qe68Ud4WDWFoR$nNyk~!Ywd%#c(D3wj
zg>NZ|ztr#*M@04F46lqS{;h@?bj8Vqb2!o$WX;qtTf_H)XKDB@-CPU&VKu6LKKF4D
z{2<H{&Hb0FJ+>=9a_DK`afmdJM`Wz^Li08JqG6?mRT>s(Sg2u{hUFR-aX`(_`c=ac
z0gE{&%*rj-y|Csxg}k^d6}5cQXAvtj|K-@Y?aCkg3$Rp>%-=QtTrXDk$teY#l+KL^
z{Hb9LtF|a>wZ<b-^Qe6Gc7^=4Y%Aff7oEIb?A)$w(y*Cb=3s<_EgH6RI9TXtVVj2S
z8vZh{+rSPDJ2jlsabCwRGU@6%zS6OqMQdoNqmhn(H0;rES;G|#do}FSaE9|92hoB&
z{=1EIzlH-E4r(~0;V`{aY&b%<=WMUxq=sYLm17!O?NE->)psa&?@){#z5|clp`4<J
z*Un$GL%Dy3Pt$J_SY<BPXE;X>q0Sx31)&#(GI~kFALFtKu4=f(rqEGN_b&?9H3W4O
z6?}sudUkF=a1o(xClubK13F6RxLHS*j$*pM*epj!NcWEwV#wD0A<30y>EniSbrcsF
z{{D%n{AXfG9k=Mn(~+;^*I$BUmJ$Ib5f|tv)KOYT868}`MkW6RrV>+(M@yC0QAtN-
z9k=SZO-JrdrGoBn63=x)6(xGRP+GzyMaLaF9?(%s$DKOv(s8$rdvv_^QDMD4{>$Df
zI;!gaLntw6HJvZFaleilI;!ia=jJ@MQ@Ky-b;nNshpmyF$|pOOnmS&dmpg4lkP8BL
z*3GZ2qYj02Jgj5>PJfrs?!uh9Iv&*VkPf~^pz`fImFqi|`a0el9O7s3209K6&8ZLy
zJ)+}L9X*{8Kg#n5jve~tJf@?uj<60@$KyJlVEgN6N4z+ziH<h9KeV6J(Nsq>9Z%_K
zrK7d(&y&q{JVUeR<vp#Vg^rTDd_Q?a=<B<bmO4nu`A{hT0=a&9-m{|Z^pF5`w%5@?
zM-Nt3$8$P5>gcBXZx}iW?IM)X&N`kKykwXESBS2HU&y2$7Uqi*?XKe`0iRSXLCKyv
zdPyzbVe9GWO?z~_p>t!t|M{bjj#mXdB40yD8D7)<mu5`utK&@_Z|mr%<1GnfGL_XK
zNM|8n5?kr(b%BTujb5Q+ybfK5p<|Ga!8%MGmX5fNgbtgo`<LG!zpl!P>Tq<#L?P*m
ze<_V5iK(uRl#c$ahz?Kpzm9P+ZF)T|Q{UAwP;znW@c`Z5nB06<*0~}6yu>CQqT}i<
zq2W6E{-q3+J{qR`o9{ju5gegoq>fSa2OVQ{j1|ezI{poRDa^?5zHr7#5oyjhe<>4m
ze*)n#4*bi>L>-fKOxE$Cj!$(=(eaT8f2`vZ9dm=eB@6@%ye*unW15cXIzH3ED4DZG
z=5rliNXCsKwqZ#Y!{#=5{0ZjQI+p4F%C2v8e5+%Ij+q?4>?{r(Dq$(?CLObN|A=*#
z^}UY8e<`D$E<Utd{tuiSbS!ESy#9SrMt{=rGgEbcg&4Oj%;R{`@e9qK=I>%yAO>`M
zFNb&`bJ2~}0-or_5V3RW4GEQeA+S_rz6kppz*!dG3NF{NLdS0$MDz1@>G(^>?>hd_
zu~Nq>9p!f`>zPz3^yBXAKXt6uu|~&Q_GzUYZY5hs{}+X%d!)xV=-8-Zla9?gcCg=_
z!Yw+s>e!}ZyN=_#^A^=9-C(!xHXU{=?rvqOU`BU}p4q#V-8%l(ah4uF*}t{>ha+9b
zVd~ehSI0gb`*j@T^z~9O9Ud)}bAXdTshlc~4@i&DRdk#Ze2j(aIHBXDMAHJy_<zA^
z9cLspt<cxg!Y}%Qj*DzV1J4+^q~kItC<FBkT%ogZnl(_?z%?D$bz~dJF>pgiz(5fL
zK?B^Y&XZX9-_=dKm7)f2GQb6Lmx4Jk{2eH#c-otQECa<1T;Hu6K9)^7y?=h0QlZ>}
zP_BWJ25vD>+`xU~a!UxkS*WovKn{OyRm$+kZ=r!a1NjCzP7D?Zeb6Xm;JdPiV)>;-
zhA%VA87Oa{l7Y&GzqpI<_Oqu~yww0Lyv@M(!wM@1ttj+%$wg-Iec6hE`wi4EaEF0A
z4cuj*ih+9#@U!WJ@xiJD2JT_?BZZ7Ij2|DYW`N&e89v)yzPf=re=7|4iB5tu3v#(7
zu%>|r4Ae5P=cPiP5AdLY+LSa<*WkaZ3wr(S@Aqu^w{oF&{zHa;irV<Um3jt9S>*->
z9x?EQfhLAOzddT;y;ln#H_*@kPcmsF1s(64|Cj;N#+fMJ=eKH;&(&W~8X$ejKvMzD
zgpzZzNT9iaw)69zmMlC}jb*ho(8|D9>`()(4YV=vs)5%GJj<g0R$esFU4+{jXlJ0k
zfer?qGtk+<^M*e^bQIdj@MjW6IaiQ&5oT8dFJ$=Lgu|rtgB7Qamkb;;3VXH8|DS;#
zQUnjxq&+<a_cHLZfZntxKlF-Vf<75Q$=40MVPLX>4-ND+@TLLRK+?cl2HrMc7%&a=
zGw_aqhyl$&*zga?RfVRHy5*_1>Emt5*F|%hZyB%+I0j<EjQ*b_%Ev`RLYV($C-4lU
z42&=^(m;O$?;03lV5ors1_l}!WMD8ymYk+b;|WMvTpH7WVWM`p;UDvxP9k#@yWYS!
z10NU|ZD5Rnu?F53NoruA3|%6vjdZ+$2?iz_nDqa(IW3%)|H#0{2EOFz%gy=3z^C;5
zd0BO?gr*pnYT$DNUl^EXV7h_NG6pka+A0>8R+VljV*apzKe+$Kz_$ig8(3pthJl$J
zcLtUkn8kjl({cuIa%LO;#g`9aKXMEj_*-242Lp5HBnGbjtvvLP@BFX+qfq82&Ko@c
zN9a8IXS9$}D*4600s{+0;UWWz4g6}Lcda0k(lia0N$q~;ypbQ`m(b-j??T=Rp}!f}
zCi`gqU^9+Z7*-lsCHT(_XVO2)T4Fl+vb<de)*IMh_=gv5GqBOXCTZKP1~wc1Vumde
z<xiq%eB}i}(lb(#?Hn(6=kGAE(*XDS^^t=~bN47$mgm;pqx@~)A6DGNk0$mQ*lXZL
z6WvYhGqB%4RTFocIAGwQf!j>*B74ZdVFS4)ikmoM;HZJi>>Ym);kbeG2KX-J1V_4o
zGlEYEJuP(Xhd~CecB9N$1LuU9j*?!G=tW)vGJFbC@+v2PPV6RNa;>1RKVYJW>4O_=
zdC^836i!j|Ursu2mWg7*&lVaI$}DL!awN*U<lNmUr-X^prr*3bn<#1G789jRyu3$g
zw5DM8(!4wq1ttjcg%WV$Ej0g~ff+4hB7bRCSrcQ11j?Bhupz&^iCay4_e1`$O@1J#
zAZ=Jt=<OydnW$_+G5y0HtFWn8D0c|GOX!_K2kueGCr+R7c#nx{Cfb>3Z{l7P)oHMa
z#wPAFalh%m_-e3MsbQj~iTbAR2@ja~Y>%>Pk5bn}Efcj(%-N&V5xRO)9x+#AK4{`0
z)Bn!PzaiH%@vw=L<jegSK?4(yn0S;8vR7#+I+--Dda#jTG8ui`#1kf3o8Z#@CMKSg
zq-RV7Hs>`p@w7ynnRrS#%_W+q6lfvQnQ|6i&%H`Z6Rm_pwU?>|+n9LPL|fr}?S!}#
zWRR4|=f@5vx|rx{qDhrv&zbmsuhLOyClj3oJTH{|^?Q{UO#dW@Zfv@Few50&5|wYF
zUNX_c#7GmPScHk5CM*-SiC*k_6K|X7XQH=>SHyrOuN3w%@v7iAO}u7;UqX+s%Xz~D
z>FYwt>1%>Goy3CPGW}bTeb+*~<n{eM@Q#VF300Kb{X=fa?gbGOnh9Mvh6$5K-sg{B
zQiioJ_}8PT3CF}B6N62}L^5Gw;k4ZSMa#xbkhW}5=$c3p?^QgZ@0v&n=r5G~xw{L9
z2bdTr8W<&Wh~TTOaz~gLYGRm)+<kug3>Q8DqkO5($@x7KqfLBn;tM*tiLoX=Ht~sx
z_f3owVV;rr0WJL6f1^9u#CQ`EOf0z=n#isnl{2JN_EYEcCJ~?aKaO)s{7`az#Qtg#
zth!Ixc31wVCZ?E}O3%NLy{e!8K>GPH|75diCZ=cX`AopnyMtev_{zi&;`U#g_{K#4
z>)Bbw3%+GP#&Twf*bEah1vK2Ja8KfvYkA+9=(|suO`G>A-?NwJ<t~!?vXnU{ZkrO^
zwom!V#Lt}KER?V?&%}HamrPtX@r#KCCU%?no8#+JXrYM}CVn%KvtL=nna9MhroRGn
ziHT(<mYY~AQSM53;DrGB{{e2h{@ui%CRUr^nt?yqDT4zmImYK_t>T0*-hU0g#`NEl
zZ!ob@>|bkQor(2=)3m~VWs`}`CbpZ{L2n!s+(K<8wh8|2`NE!qg6Y7j?KH8AraoWz
z7u|1AaNM9E<;f?9;2%!@^j;GuOzbuN=b%G0W}&i=qsA=UZ=&9Q-z5&1XyX+e<e=;6
z|F8B!--5%m_EPo{HtBxlsEK0~_+23;9kgFLY2qx$j$U|*+VXNv3ne%sV0`tW=XkBD
znseU71rrxDObRfG^oohAtZ$FPYztrSS9lA0jh6t^Kc@8tNBswd9MJ&_MJ%k|uLLb*
zS-9nBc2NsA35UncK>$sqKrss;%byYxErUFfgEYtT-%(J1t_8jaX41_TN?Lf(!b29S
zPszQ-LKzEXEtHaIp3r=u1wspjQnIv#TL*>+0)q?7S*T{=UJK>Pv~Zh+3KptZsA{32
zh1)IMY2omGrIOG)gjTko2%rrNOl2UG^sY?Oq2B@<zRTr4g}W_~-b0;t`#spVS7CLj
z*XGh8;`=PzZ=r^Tnid|gP}@Qs3m;j9wM2$s%cR2M2NZ(3!lwq}bCU{xo}X9G!qXO7
zSa{e%eG3iPdSi0uUC(~Z!Xp+oRm^#mEptF=D72AKzAzz&i#i%xc-+Dh7Me&w%`7}+
z;YkZkEpXs>IpF)xm&1Mfj8n9^h0($xrF%SM`LE_4pOL%cfYQ=JD+{eH-)-6mZExXO
z3vC4}6NBvpFg2kUcF15dJ6Y&#;jSpEMDe_ZF0{nPlQz0qc)`Ma3%^+CX5mE(?^+mO
zp}U2bEEpC{3q5GFg*PnpWt)GO+f%C0OEAx1<df9P7J9QR3w<nHJD{+gU$ao|pz^9v
zZZoNIP<fr+(!~E^#G4eBWi6V8w=BGEp`V3!EQBotRs^;UF21~nzwplv6sQ*VJdhuu
zV=OLUAXB&eh1nzj&L*`i|K`)Sz+W)4eL5agq81zrF)@$A+`k#Okg(udNLok<-^-+?
zLG+-~UpNHJGSI>x`j3U5EevMYSeR&G5}Rm1;ZO@BEsU}-%)%!J{qr`5TOb`_f#+~C
z?|T-WyOuZJ0&g8hTNq<utc82l<c*`ByqUA|pz^+jLsAO=E&G9mN8wlV_acD_V!+5w
zL0;@8Tlm7lmli(s-47qLEDNXm6i&1F-#ttb$x??D2J)w7qSQ0p!e<sfr!yQ<B8U9C
zFc2R)oBfrAnHFYomay=Rg>N~;{>YmlG=28YqQ?G^|IWf}*3QVDYx#GN-*co74KVrx
z-A_22F&Nfe%_j3lk-Ri4U=I!O<nwu~+S0u1d7<xy7A&x^(83M&rj11w7PFNsY_#yJ
zg(Vi&SXgUeDaXR75IgP<slqbxjpY_MQlagD{NF76&LMC}S$s&@en<%%_N%i}Bv%Rj
zlT9js{Hl>0F7aL5DtDdbzmMXUmh~3SU(YT$tZcHd*}`smi1gqVwm^PpCkN(XWvhka
zokH8_<cF2*mVcSsVZl1Ad?RJ;vQR4(`ipZ^(@@}%(BFrZf9UNNj&Kx@EZk#ZuZ8P}
zm3<cWTR0&2AX`8{m-$(fXJwNzP==>q@p<Yf{no;93nwgGv~bD7NeibeoTI7iUkhg}
zoE5;wy{PWL6C+?q0}5Oa0dn{u=`wwcWo266ss)B?7Sb8tcs-whfeQQmon6Gn%{EHf
z2-+xW`<$C>e@j=6ja1VD*x)~cvuqTzeIE|l$hL9E5v9nGP?IA{@7?*i!e>%(0VQnk
z*21^SMkyOrZQN}m&qltD+ikqLI;+4&p$-1CzPv<B+bAobjE%Ls0u)HoauTK3tu}76
z@#n5U1sfFwP=I_&l3B?{Wy!A4Dw>^9a+feEQzgS;F3R6yqneF6HtLEE_u6<sB&*xF
z&&K^WYDl!EP|Bx`NrPI#tSyuVkV*QWjrukk*m%eW-<vVi6Y#Lm_RF&#vGJ(w-(x>6
zw4sg11a$8hY$Tx0zP!c)DD%n@<%tX)YXqCxXl7%bjrBI3veDee5F0~nJZ+<ejdyH>
zZ9HS6rH$8Yyl$hFjn?c18$E5bvGJ^pPBuE*XltV#d$4TiIUD?n+TKP78|?{}1-bu)
zlt}~~C6(ZL8(nO4v+*M5e;eeyAk>$UETr9q!;C!yykx^W;y>~;P+{Ty1-)#4H1)Ch
zH^9KlHa?)Y*eJcP;1wIoDS1?3>Z{^2JRj^0+yCp(+cy9E=D*VH%SN{GmW{_RXLCC(
zUpTMrm*4l9+<rDbez*kR>8Um%Hlj8h8yZ__WKLFg$e{dDMYo|$%v~MMF-5s$!(5ZY
zU<;sfo?jZX;o3;rh}%fms6L`_!lfX0l*}0%@@$OD4h>*?9#sfZHu~FmmtI{jz-XG*
zZC5yuF4V4Ykd46th^cv)jp3}djc@2(Hb&aqWPwj@j5?}}qFOeB4Ze<k&&FsQGmk1`
zY>egjnh@ab?DvK9eQrMa<84f^!37w+F7OM*L>rTBd}w2m)F>vepvg~zkJu*mzaKTo
z<k=ciXswNDHh!B@$hMkp<1-syNZ!vm`jikCmed_mIO}o&ckO*Cd>a2%X5@ZrV}^|d
zHWu2r9xt3}W4?`FY|NtZHfGyApOB58^RtbuN0lFJ%w-qbm?KegsOl%dY04;>l%L1h
zUiUM$tenHeoO5ND5Dy7lM1Qcc!p34YRGa)?Z7dP6ROm9Hs}=>BL`rSH+4$YYAFSX>
z|DN;lE7>b;{5(uqYhxAX2dU0#n~N|prCsoh*uyR4+&|u7MHV*)ZLqPCb6pfgqu69)
zvyJ^W4%pa2n{E7KV~>q(oJq9Mqswx++hx0r9X58_*d?0Hb^dL}UpD@>{XI3$jmX)}
z;a1bXQZw)kK&fL&{bR~rP74C|NiO1pHV)aiz+5&Cb5tHv4jog@**Ie3sEuPbKA)d;
z%EoDtKW^iMjgxfIW6F=m{3cy{Oewd${23c(>2fWL5U<%#bZd*y#pXrkY|cM#<B8V6
z)9r$nY+SZcBnmDw<M|s`*n>81*tp6L$_ZT)N<J||AnG&IQGRt*jw_>vgl>ugQGXXz
z#VE3(C>F)7QQQ_qD2nVTZi%8)6gg4<T5vc~cykoFf+=4-iV{(9KLs~;JbYYv`?yjv
zig%ai5l}cU3Vy#Xh~k4CdHGTQH?otCD}_;%j$-Jkf-+H*6Fp@m%Izm)mXBiIaplBu
z<)ITwgC3y@QU7-vd`tQE35BOK-5v$6>6OIP%2EI4^8ERu62%=++!+P`ILT<5R*mBB
zD4uAM+uFfBQB;d!QWTS;xHpRGQM?|-8&TXx^P*@NMWZNcF#ElshbZ<!(V9_wx+M1j
zv8`4VwWI#<u^R+RdZ9W|)Q#dnGQ}l$d?;T>Fk?N*{%{oaqi7)bktiM&z*K8>VBUfN
z!DCSjJE63SqIDFFqj;PaM$sgS7VMP4q1Z14PewudR1{4GG!se=7gmurkAj@1qy9Q8
zMjz5b&qUEOim4}*^hjwF#j`X!3jfVX6z!tu%p3bC+DFkLijK@aKkN4s%5zbWvV+JZ
z?Ie7@&|~NlMOSuc6y1gSLKNKuFk|}lAZ1>PqK7ckuLRSS0zISX6~)U@^k${16niy_
zR|F9E5fJJcASUI;|JUeU673tsn^EXd7-Gy@QS@Vv+{orO_P3)Ln<%@gZ6TxY2s0do
zDuA3w6q<wwXXP?#Mq$yB*uwO*bp?E~v)RjKLeVH3HY2@-o*Bh}C=yY)QKX{iA4O6M
zCH0~>Ds93BX<XWWi$c!jk%77uau^0iF(`_`?EMNkY37hjUP?0K@F+&m+9=+SVq_Gf
zMD3U;-iu<i;CF@x%Ds|5W`#d#@PDuTFn#m!ym6A$FCLmG;Dac}M=?S0h6%xq6N2Xw
zfxAvBFP>CBjN&79YZUvV_&ADBqWG27q@zYLC5j*DKXijArqNet<$fE*^e8?f^Q7`k
z6rV@&<G20`v9IVkqWnvt<cvM(yTR8P=8coexxs}qM9EB{v!eJ;!0ad(z8B2jkub0z
z=AFv{8^wGUAxiiS{U-rGNB`a9+;&OsFHwKmTp;|4r~GXf3x%_Y!&!nqsh(1nMzJi4
zby2L3Vz~(OZeeYd$1dSFdTbPbaPU4GTph*AC{~F;L@O9KBm2&0gMUi2rshx7YXtw4
z9r~(X;GLoV65I{+*k$<)|3tBomw+fXN3kV}?NRIy;W-0xwu;O)p>wAdQg~++yQ278
zIDbX4n*(Y>Fs&zgxPT#z)66|0wwFVDLXb8bh~i)rB^})2;82u*i@<5l&ruwqn??P5
zByQ`tHofqelzt)#;^RX9cS<?Q*?2(VDZ1!}oX9;v(z8*V<FxD`<lv1F%K0cR(K(~I
zKo1|GFkFn{YA+vOA&4U2porsdl(-fJH$+_LWIipQfZ+zGFWEE^bWl`evK-tb077Xz
z1xT6YKTfuT;tt$XN{-{t7`Z|Tz6%6O2)<e9=coLPr5xlrxXa=9ZeKXxL3szaIw){>
zw0=&ZgVGMlI4J9&oCvIuT$D5h1j#43%>hm;`Af2HcTm9r&*)&N$SmuN5>#?f*@5DK
z0t|NwxI<`V$<=vLpsItr9X#Zq9_N1t)f_zNp!MycdmU7FP)qQA4(@mG@@a*9h8hlP
zI(R^m4o=H8KglJtsif9+P)GQ69rRxuAU}7ypZZ8QA3yA%zJn(nG<DFx!6ObH7vcKd
z0*^Xq<lr$@TsR{#Wi^&)_r-zWLSN4l5^W-s(Uk)Vn>l#OK}+E@7uq6|`m})GCF3&=
zmS=Rf5<X38<KS7xKm4by<6i;aa?s8}dj}mHJm;XZgXbM|ly+X-CBR?5brKvb8aOaC
z(8WPl$KQC{!@&!Vf1WdkInNB~=J@Ye7+!SH-N8!|<+?$x=_T`j4wpHh7aP;Ts}5ds
z(A&W)4*EE-X9nJy8Q`mO(rxYjrLWVC9rShZrUNo5^ZyfL^lb<I9K7Qo>>xqkbD%ni
zP@#jU1I@wTrxn^}I?(A16LSsf+~?mMUOlah9aw15>&_@#lIlq99zUbR9mE7je)A{c
z6-#m-d9#3*t)zo@9Sm^%i=*ct#V!_{zTTzjK;aA#I>^Cb0hH&}aH!y6LK&rIE<_wj
ze~aOv7)CjG&%tO1V;rn<@TY^Z4&HY#-@z{q#<81r7fx|7)xif2#ygn6#;+0l#KETy
zCbHIJawj>MEM|Y`_}{ZW63S9O7AAiXPrN24#QjrTcfoyL(;Q59Fw?;-2cM<uekHs6
zmF&+QeBt0r;d~>M+P-q|wcvZja;o}PqBDfvG9>VwgV{96!Ovpqi)WPY9sJ<HIinOV
z_2>UN4(2-e(eaOw;TbaI&|Bt7cHX)1`o({xk<yVCuo2qk(zO;kSma=_gI^u|;o#{R
z*-IQOb?`e|=8Uq8F75EgmxUd>7OoIId}sTclum`|FM7PgOxJp)@XyT8TkT+tgR2g%
zIaupporCStdh6L-)EqC%yc->C;+jtfTOI6JkjJB#H?!O`%9S%p<-sAYGu$Rw_|c)#
zS!MXAg*zPVbg;|8Uk=VVIO||Hz0ScA2S*+J!<l4Q=#azBjM(E~uY-NUA@cyIEXw4E
zh|~0-<KM?JYOM{VDLKbP{)B^*0*(u1MhcvAa9Y5BS;#+^;as9N!51=|ivrSxUKV^s
zD2ux;&3<bPx5aS7K_G@AF$7~M7eo0NipFqL3?*W?IR?a#6+=!8xv_u0oED4uvvDYf
z>=@FXmZoI>+C=sX#C!)Pvt$gn#841JVGN}td!FQF>dEzie8K6yW8Ts+lo5shamtFG
zbd+Bh=`D56Diva=7(?-|gEeEgJ%&m#REeQ#43%R@oXvarm%O`TP-5UEo}Pb440pyb
zw^cs7uh&_HseD<-MSx8rId{i!PYey)m#!AWeFBK@jiGu5)1><|xQ3WY0b2fmSXC>A
z+5+kbCBLqKQD>EUF+3c@t#RBINBtNY#9+l>$M8rDkH*k0hW1p;<{cbr5yLYvG>YM|
z7#hd$cnnXn1r}sI5d#M=O>GkMzfjQYIOOSy94Sp>{&;C7^eLguV|ZEs`G?z=ZW%+X
z7}~^;-jw=!`_dfdtz*7Rvv)Y?o{fPIVr_-8jvb`LUNO8J!{R<SJ;$P#=5~ysQw*JB
zc%BV1EYzJokR9q0L)REyh@o2yFUEXNPWx@zIVm=NZQ!LCdPtW4#rWya&zttuv`p_9
zUWq}AL64zNCbeG-ug372L|+&BW(;o#=$nzDX6kv1Hvb>aJA%U*jw&D`^yv)&_6TPc
zgROccd+u4qq#K-7_)Rk!gA>DNF?=qK7K>qc3?tZg^q&}9>F7ZOV{&=wV>0HS{piJz
zilKiD?@Dx_Q1S<`cliI24yDt0u;gWv4iPXkhG7{_?>-pGX+MT3F-(o&J$6~C&=~1l
z)@!ub%sP%0@O}*AV)!72@iBZD!$&bph+$$3lO>f?#H1KVnUP93fe<r%9K$Cue40^}
zW>O{%Xw@|FPqqf<z3DN3_FH^1?~53|jG<&4x5V*P3}45vBZi$Zd=taB^aQbgMhr7!
zSP;X)7-q%r9a}PnA7hv;sXqw)K2uYU);WUH!}g~bewOGjG0e-z%+Jgl|BZBlMUuKS
zhGq1_7=D%L5}`ZJ`Zti2;gqtRmdEgiXjl=$-5UbGNk6i?*%~X^H8HG?VU=Vo9rdT9
zbSY`NHimW54(mn37EVerY!u=2B(^Dr%@SqCFOKGIjbWR}mt7IqE`WUET`~L>!^Idb
z#jrbuzhgKV!zm8B81}?)IEEuJ?2Tccs5&TRQUCrJ4hW}nHU9!l&LN4Wt47Yz7>*0)
zScXsLiA=d%0DPKd<@l94Cjw_;I4gkTn#}WpF9>CH$cVt@7_P+ddWDKPaa@hz8t3*n
zZi?f&$OPj4OwMqFgI!D_E)qvj_*}r#YC{=v5JyNjS#cDL`*S<5lH}8D-dbc!(iQoi
zU~U}6<0v7Vn}xEDOC}YeaH+UIaTUf<VMHJ=?qA>Y<0y!OpMf|N^0>mkrWTf_6E4Uq
z6Zd_arva3Wqnuzy%M0MRt`JAXI37))VFI_uQ7Mie;+PXh<v5f$UWlVx9CyTVr`Xvd
zj=SQh630Vv)Qh8P9Cyc2EslFxklZ8DuzTW28(%$+`{Jk-N9{Q7m+UpA3N?gMGVM+e
z#PL@x|6Y;RuM<bzOzN#N=RBCv{4gi~xPN_rJdOq#nMSMyF9ftdj)ob@_Hvi?n8-Aa
z`~Ax!o~ZwcIGV)qWE@T7XfCPEggzxS?ayiYbR2<N{sGQ>h4M@sE#qhv=kX?J7f1Uz
z+Qji}+@Go1#&N7!Q3f_L>HcO#$z<Dhh@*3+ou7-NV+MChw|Oal4u3w5E^%~?BRv(9
zL-1l8-Q##aj&X6k6i1IZl5u!6FOHsZsBuK%=oQDyarBMj%{Y2XtG*`ozY<5EIL<UL
z`l_@8yQ3ETD!d-Y8{#TO&nf9XdQ0Tr5&Cwf(fYC6Gyb%|5RRjC1AlU0YiMy;ao8fP
z$6*LCg;Fx!IyWjfMoR=Z8HEXnQiCgiW1RBTnG&0a#W6gN{&Bn;$ACBnip-EW1_>A}
zG%f#aU4LjZ45dS!^DP`9sUzbU7611R>OJ9%$>bU>fMxNncq~VsoCfv*n>vmU<M=3J
z;g_H0PKaY-9Fs(Tve0JdlxTh5)Q{u%gpzT5Ee3xY$Fw-6$FZVM;gmS03LyStSMak;
zxu0h=e~~fZOYsxB-#2l58^>(n*T~E#Gvb&T$1Dyg`L4%#;5#X+_z(Ua{`VPebL03i
zj{F1)61;oC&m1pt?2cnz9P{H?9mkqDeu-m29LwTZ9>+o{<&&MkU*lLLc(G9GWScN7
zk?2yP?4T8K{1(S5DLO6ldmMjA>dK4_=}QLt;?GQ*ucfc*p$&0tjALC!|N1!6Q`x3C
zHpj6`bh2Js;@B3)b`jh9pUzCKodVKBkJBbEsdT@;<M@Z;J&p@;?2%DSJ;&nM8^^vl
z_Q!ERavjcSI~d0y;iT)xicsMZ;T#n+UOis=cpN7<33M%bGLBPmoX*tcOdMxL@|;lm
zDklwAHf_?yI4*G>PM|~rmpQq`frLNzvWTmk`Qx}Ddag-cKH>!ueuoxGAecZU`IB<d
z#J|^tn*@w(<1bQr&nugiK(Pcu31lbyt3Yl7ISH^_Rv|4wnzrQT1WG1QO0wS~G%Z5`
z8kzThIE4w6rm2HN^%E$QK-mQDOW^(l$|X=f0VRPu61Y|5D{{gYa9aWu{*MOgOke&g
z3A1u0=}rMv6SzBpy986RO5)!!NPJHM)e^Wj@$a>uy2!9AnZ(dodZC6eA4;HR0uLlm
zOQLm!)=r>K0(1KKf8|bl5$pb70uv|tUjP~ECGc<p7uxx)$NiNJ68s~ZpY%uqySw-c
zts5oqSORVWNzyU7jT3k(f#wN3p5Pw?i#{QxG)dr>R;3x96wow*W&*mOQ^<Tefffn8
zp1>OkJd;4n1Ue?rDS>b9E!rx94hcM$Kx@&{M(DE%v`wI$;PwK-GDp!Wg0%k-v$HxU
z@I1v5=$Sy51iDI(_ekIc$@^jg-4p00_`jZgiA^nkTBmPN6$1ga5%fynWoh}|lBG`q
zuSm1+eapX*V0blw*CgrF+Wu9bZvt;75Kcf9*L^F2ev<mO(EsdwClie%pe5iW5KBN$
z{ChRDB-KdxH``_cw=^$GU`s`!LW_z(JWY2OCIoOqvqrTi2D}7P3Cv7jRs#JKcsGG@
z34D<7@0<rn_8|#eY+HI@0)rA5oXPvJfT0NtOJH~cBP2RDfsq2<6UqvXN+A8G_|dGO
zFgcF6%ZycfKO;jk*nr~`_%wkj2~41CNz$YQCMWQrV9N80z()yuEYaIG1O}c{KFMfc
zcT7!SS^{4r@MQwih5vab^|OrUv&y_Qd?kFA__frIn!n-b7Urkt6!K?e#?E&M%uZly
z0^1V!K7k+TkO?f1Tyqkbo4}6={E_jipAz^vQzCUz&pe6F7s{LMg$XQ5U}XZU5?GwT
zuWVsST9V1NJb|TxmkGTtnpX(^P3SE@l%d)`1hdid&MSW=usVT_!dWB!ur`5p{`DwC
zNw)ub)<sfj5~B<Ro9OMWb2lfjC8H|M-=4sZ1WqJyGJ%~5?2^>OLjOwOp9J>MF_NL(
z3H&W{DOIJXk-cn<UBLq)xsOV2RM;=H)_H}N929#F3AI<|9TBmkLRs!H&Vly@k0<y=
z*#C>!sRT|Za4v!KB5+3NS)u7FkY14J#RM*8dhoJv{u`lJGCh7hfg2PXi_2pXa8bm?
z7bEcH2n1aebx~?4@`mCj7jQAPKc@9ZmWyI8Zt+mcL&!z8i@TG!Cy5*vxh_6+F~vo3
z7bRTub@8T)n_ZN2(ZIzc%teJRs<^1?BF{y>i;Av)eJOBJ=%TEPaxO{>hs-iAE^z?9
zTEI=jjFuPvtuAg8FuJkdSrr67QL_lw6LvhW-0q^1i^?t(7k6g#P{|#FlQRnS^U7U<
z?+p8^r0#ZckBeF^Y74WPi~C*FaB;7T>MrgRCU;l;STlG_i*l5&DVzs{mVe$iAZ<n+
z;nZ{Su#37b9+W7*o>Sl<!JnL0i0f6#sqbR(c_p3nsEdX!+PP@&qLGWoTs-5VrHjTc
z9(U2q#ZxYxknBxdJjs5McAy@DrkQBL&3;9iyLj5gsG1eWb@6A>7A_u=hqwdh6?0l{
zD;Lj-p4KitO8Jv&8yDQa%#*&_W=y3?9b7!;;w2Y7Ty%8N$wgNeFSzLJ;&~TcM3Q;A
zo`Hej+tGfd7`nN5(FLQ2d-{~2yX)_L@C97-bn&W-*Ie{+@iM#bg7S)};y)iL-`m9v
zX&mzVNG^icMc@tg%LV20-eCAj?nd5n@ir}YG1x^v7hFaga}js(j*GBlQC;XR3>OjR
z?H1J11?~2~`k5{)7f~0E3tRYARtMO#{FSO-mot86QDN~q!GsIf#k(St6q*w1xnQSL
zfRg=%!|cQi16+S!-auid1%|j7;bNq4hPoIgfRe)naKrv67w<_GJ`&Do7w@|m=VFYD
zv1v}@f6My7#dsH!U3}<bf{Wf4lu0faCW;upjgmvnY0Ac=WYW8-`#lvurVk&^`^5FP
z&r@Kki)k+Qx!CVwx{J?T{NiGPi_hsxE@r#<-o=+vk#E?WF1`}{wNSPdD>%c&Opfk4
z!SBTKS%RsVob*5-_`&rTkdXPKm^a78To*aA6{WLmj{eET&&<y5__55DD#7_8#vP`t
z$U+y3T&#7mj>E*ouP#=(_|wG_ky+v5Hy2A?ER(3dJg?)gf#p)%zzfRnF8&by)$&Et
z{<%`3wB)ZF{(gtAE-0%x|BUe4YK<hVzo4vlvBAY(F6zHtxKWs!U2I_kW)<HgQI55(
z0=B!@!KV8kws9~H_A9v4#V$@_!vkER-1WnXOW#*Ejq#Q5W`n!<$HgAWxHnV%QZEK+
zFa_BA2V5L<5lEs)5{E?WsEcC)4hucvf?wY#d|aaEU0iT+f_>rQl#A2CJnQ0&bUlqc
z<MIZnkbQK{^^f%{xTt(r$)6c6isUuUr7kXuC0AU;2IpKAJ^^L8)9N~hp>VELF3Q@m
zj=>~~CQ&wta!K5j1d_NpiIPcVB~dJi;z^W9%FBPw{7K{{kuA}!XR`TE4Nke#L(LUs
zfTRZ+qqm4mK@x=mN+pq(M84p|vvbRz@W*Lsi4sg{7%Y<nf27;+qTj0JlejerC5bzd
zxGjkaB33!+|C_jC5|t!+yHIi{pT-1My)wjiN>Y_1?h?>H``^3Gs+o+{lDIdC@00i;
ziRww*m&9{PbWGxY5vZL+og``qrp}rI9uQhfC_TAu5)UTPJc*~1cqoZ_Nj#cFLrLYD
zv4;iJPohB*94wq_9uZE>F2xpoR@f+s$C7B0#FI%hPU7(-x?S`y6Hg@l!JBSC{=1n)
zGcbG8B$_1=N%~J5KV4LwV%{pn2wEiZOcHI9cs7ZaNwkt8c3t$>RJ2aw{b&6je540s
z+a!99SMn|?T;kO(iS|i!5aIM(@uuo~c&8*fCozJ(ki_#zbV<TW!cL-V5-%k2MiPB#
zXA&<a@p2NqljxqrOH`XguOxbiHY)j_0B*+TNkM*;J7nK3n!c93B1wIccvZlkwS!FM
zb>X!nUT4c+^6SejD$Mw15^p7;`c=l;N%Twl^X)rH{|<qH{}iBPI8$QO3Z>_BEeTzi
zhEOx<uQTB=p)hGQ2`33Ji4@%<oD)kTk<k#Rhs!+g3Ma{0b6D{d4!KzLPhwyagOYfc
z&Ay@x!vFyk7@WkAB!(t2jE%6?uMPt%%SnlVojyG2Pmgsc7LH2dy(B(N;-e&HpzP=*
z#wB^{h%pi+XDs_muu(O{=y<VYViJ=COi22ZJli(io0Emfvr|~g$4PvW#8*jtoy4ac
zDYuoKmc;ZVricuO<kTd%ERB+%3FixGOh!LvCr&QpwEU&;*}^pV8%h0^mT+`z36jY$
zGl^MAe3!)T5rGeC1ZRsp0hRD94$?VE%uQln68n?*F^Qj&SenGLBz{g}UJ^@0=lmpo
zNn){J>P#zNAkl?F7YXG7P`?UbE@B1>FXu?Pq^wHf&m>kP@tYX%dlD-J(11UZXeu|5
zO?#nat>Ee;)=1LMB-SReE{QFiI)t-6iA_mtPGUn68-=4@QW&V@zbL_^OUkw+b|k^U
z$fWHeNoG2_D~Z3@8XT=j?2)AOnLPin7n&ELW6);i+MD#x%W9Y?JixjnaXg6=od3lo
z=oLqjI4qcBkWq%C5<Mmg$vm0FDbB_o;Nf%<XOg%|H^?e}R;HBmNnD_X|HHW?ri%S6
z@gm1a5|`QX8BTiWT@jsY`xjnI;yUNgJ=r&SG4c@f5b*pc4>KX9hN2$QJxjddl9J{5
z(|!q|#rOyyAX{jz&>YVnDg04mafwp6%RTuw3oa>?%P?p|o`-x7byIjSg#r(S9=`DK
zrH9fU%6RDR;Uy1cJ(Tm%z{4XR%6llWr_3E5?(}f0hub_<@KDi1Wzl)NhijLVN|e0p
zcO2U)T}?$&yI)q+%gS9Is(7g3p{9qb9`5#VuZQX)aF5Vxp8uzkxjp=$x^ZRjK4IQ3
z^xD*a$8vhOJwVGnJm{g8huR{*S*VTxu5}-MS$W7qJrBJ1e%SNpC@P$DS;_ygA`PoA
zV!JLYk9uh6;TefG68gA@Cp<jn;kynwjfF#SQ@^53JUr>)X%8(tG!;G-KINeq+i-Y*
zN2b$NnhU?!6~Fqt_vZP}1iUJ>^w7#fYmeIu(Zxeo56_BZI}h#I<_iLCJ#dbth7Q7K
z^`G;w>q6dy()k@TWp(n<S@82h(~a;#Cbb(o<$zzu7d;$(*)Nwn5PLAy;~WJ~#Cm#o
z%fs6q|H*}yJ@oeQiig)cyzZfo2)rtkk8&JPd^XutqUakQ?weD#FY7)i__wH~<~Kdm
zzoKwn>L>EL2gAcV9>N|};Y2*NeeEVraTH!~Yf;Vfe?~)WdayjiJj6xJ7U~F%(z|y1
z?UwF(f`kXx^Di;Pw1<H><)Oca$sRuR@UDje9!7f@<6)qOK^}&B80H~;=Q-HJ5bxia
znZ3{E8t!2Pt8+MSl!s1N{LAr3&%gQMN<Y@+Ju%~<U=BNCtl$qkjQ8-qVBVUJ%YX?U
zCW?DZ;v}GjZkicvCU=Pq=H>Ga>LU*yQ|%>Xx`$6#-yi))n<*YXmF$e}{~xA$m?lwT
z{?VSy&pdoC9Ntdk%Ko6QJbdlp1Y5wvHy*x~rr7UchKHFRR(e?FVHVBsu+YOI53@ad
z&%VB*{OsWe4|C{IqL5BCR{)pc(UO$|3V!-O(Rm)`dsuNr`9+uu1XGNG%*CGne7DrY
zG7rCcSi;tpM}9Wukt@n_4}+g5`kRN}nM<-?UguwTDD#K+@AD4-BNn)-{OMt}hwUDA
zcv$0Mtq5-ty3WJC!8fh<@SL>a1`iuKA<WCG87aK;s_ze*J#6u?)x*#G3%5xYGWQQH
ztShNIIZUKw_DIrS9(J>6PBP*xluX}3{NwqjrA;rmc`u9e_;*Erdf|1G^nizhqTvt+
zjsUvZVGl<Hr!Rlx9P@BIlgbOqDNg>JFjFX<!WrRT<Rs(atl)D(&wIGwfx^t5rk6cj
z@sOQDP6}5!Thf10$V%b5hZ~&sQ~r1fr2IC2vTLwN%Adn|Gf!sOiupxTxG9AfuKIo(
zxvH=qi-~+Fg-IQQym0f0gZ=V$uOhiA6i?yi6iTL$emdsUL<zxc!&_1)l|nuze3~JT
zgw&sx@^4W%iM>|CZy9zgwUtSsYzoy=xG#lrDU?s4atcZcx2ABL6n%RN@g?Od2(FmI
zYg39c+FpL>NhOtpPd#^}aHrs^LhnkU|FK{d!F8X^zq%sp-DAPKQ@AIEYAM_+fxj4=
zd^W^(<2guF#c+QL-c{uR$yFnTngYl_-8M*mtrTjD0C61wOnNAVdMTVr;dBZQr%*qI
z2`NlWp+O3dr0`}6Z>8{P3Jp_uE`^RMG)m#I6c4_@GbuC{{Y_J7mcrvHJdr{Z;XIkb
z11)^FxwA?!K63JgpZF<BYM#QZjd{GdJe|V&!NE_(KU=2IDuwnbbP$==DLk7(TblGT
z+DMzTuc?8LrR_w3`0D1owO5t&ZDfgSN~aV$r_d{fms5B?g)S*{PvNB$y3!d^=$68Z
z>~6VFPTzr3LqVee13?e!OrfV}=Ks0KNxuYp@|xeOy;B%|BfF2Jz9N*9A^ESeE9os$
zb6-#4jTHJy5-$gQgipV@di9#}b_)Gca8ih+@J<Th6wH)=7o?^TNrBTKHESvGEDk*d
zBZb}%1bH*Y#^JzB`y{W?Rth#d<<k-@G%9YNx~9ZaNTe_*g~2Jf)XCmVA(g@f&G$^6
z9^7whu)mnZJEC_}|6bV#q%bgrZ*R>REmhlcFmFf-LsJ-?!Wa=AmcqysMzP8%j7a(S
z|MadeuKA;hYTrwNZz@<pp6xm9kiT$oYzpHf<L}p$_cP#w6vn4;%k_VKvf6cJQVNq(
z_&tR`Qur{1k5c$9h1u+~re!});WPTxuYpfe_%wwnDNIdax~NLORp3==S_&KX<aZjH
z-$Ppd^Ax^F;mZ`hN@0dbex1TMte0R~H7YBId;NI9;vFns*UY5LrEs)lvHD^X3;jNY
zA5!==g(a+G3UgEVnGH+OqbTRhA5-{ARIwviadz>1i7pcQi_isZ$$zpIroiyaKYoL=
z+{N@;DPpO}kh466WrEq83@cLjO``u@saK}3Duq2M>`mcMdO`|YMPQB4bsQryBmF<7
zt^?YN+UY;u<M+6{M}37}->N7mq9`^56+}eD3Zf##KSc#80*WG7*<SD7y%$kY>>a^^
zigau!0xH-5QNW6d*c*Jm%<??nIXQDClgT8ROeWbRySr(Q^3{~^!5nOsqz~s{%N+DO
zx0t1Dd%Z4=YEPZYk0hyD?j(FN2cOQt);ZWV2Rr8A^Eucqsh<g?W;muM@2^qw`2LzN
zgjkrQ44WT8+C2wf&cSzc@aFy+j+(FL;2UB1TFj3;oV>mj3Y{UlY0n&dKL<Yug{eOZ
z!n=HX1+gr(k^A!;{K8?VW2BB>=ioPbFdawg_?-@%PFP11U3v09=b%_eiH^VK;BWf>
zIrvwE6zQsN`{&?*ME?{$&y-WkI+8S{X(d<kb#?H!;PrKs=>U%aB&nW`LcPk2;3poa
zX*o*Wgelk2Ku04XGD;`UVcSqwmc}Rp+t^e`g^u<*I_Rhr&K5da>ZsCDt)rPxn(G*P
zK$&_9qXRXqbhOsdR!2J>Ol?!k#-vm-i9`rH>Zs9in2t`YaF=3D$00fnmDGDKQ9aAa
zm(y07E1iZ8*Kvf7&N>d9(Sl=h;Q{rx&7*X5)zMeSnL6&gz4B-s$Lr{!qnnOnbQ~)J
zyXyycJ15M+aYCV3{$uL|9VhBIRYxx!Ckg!&9X)lNEI4~4i7L4&;HORLZ0Qhs>o`rv
zzlYcBqvLep;Y#uhR(sLG)@?md!&D0Ir{gRggLMqi(O<{eI?mUXBO0LN932C7oU1E;
zlD3Xk#MR3noxctTw**OSTcojc;uq++P{&2ImRBn-mJ*9)oy<4&*jbkd<uZZHHB?s%
zgG<@=>(wgjavj5TT%lvQj#Q=dtPDGvfu=i3$CWy6(QzxY>)=-tuhMa~h#IY9j38qL
zQpw|VwM1c+uF)}G$MrgH&@n+$S<rPluGKM7$0VUl)-grLO&>IWV^=l(Jl#0wK|W-W
zbE=MMI;QLRXu5hDBBfiAHo8cgAsKJhaU(O*c)AtO)YVFo4?fkMD#<xZS5I5rnv~5J
z&USY+yG_UKIwBoe9e1$nb$F6AM~AM%(qT)Kie)K=4pX9R_y^mnc*NuAaE0=pjq#y|
zp2XJ?=m_<LD?pBy^bs}Ik?6>?R+4MWb~Sqzbj+o0b=<4-3%3V*bDkiB?!etC=lJTC
z<E!WExKGCeIvy0_{W=!V@{ca2bx{>h$aeQbwGwFUY%=H5M|C{Lj27;<@VJgAXa**Z
zGV!F2r`Wj$t}yVlj%VmSXk9uM>UdVidL8fTSfpdIj@NX&PSxpnUdK|JhmIF?yeI{|
zB#>KPO9V-`f?sCO7HO{th0mvUk+w|7avdvaA-Y;CuHZPGRz^$U+}d$=$!Z;3&aKh0
zmSa%Po6^<Ys&#6Y_zjWsw!k+9zNKTGAn7bXNVa!`(sN$%1|1u9e4%5fj!i<`qT@py
z@9B7-P5!;+10inK4?a6^&CKi{>G)X3b{(Hd>L)t3>e!~^Q)+BQ(FIGY_<9Rf&F9m!
z&>gy3eta&>>5gAoja?%4I~{v;?AGz6Fnp!sYaQQ+O>)3~%e+GWpA^06lFILO{Gj7E
zA^yl=qGO+qpE;JJqMvlosMZ&0tmJ{PiW|s$u=<5lfDAVh8In~szl*68XKnw|@i$$Z
zfi4FAp{t?GHPFhyemXr)69$?ZC^AsTKz##c28s=o7=VFN19c6hjsJFmI9S-H^$cVT
zG^(TOz(-E54Tvz58)#slp=9A({G=RNM{8uDu~0ZUlG3P8RfVB+)yzP11C<7<B=ypJ
zYpMm|cga32Q=BcB8Who(iPL&p8)##w=cz*tv^CI9m^B0K4RkP2W2i@LE-=y??;Y79
zSqXO;QOxXA!XYA!_+bV*893Zf8$L&f5cS|=7pFFMB;^?BW1z1jbv1CDf#VGvZJ?Wh
zV}y9Dp*$Pa&Zk{gth<3hqKY2WYTXt+4V-G=1Oq1u^GOCyHgJkGIaSoyIvU;V(~T>8
z8R%``bYWw~=$Z&mlPF)>Jwp(V*^BBnKhr=zmSW&M17{iNZ{Qq5eboJI;bHwb9kY!C
z46J-u&9>(7>VXDk*U`>3l#k^{Q_nYWfq|h0E;VqW<ht0vVAiv9@kIu5S>-kvh8VcS
zP(zaAlo{`@qrFx~+a|5M%)sT6k>>YQqq<b}a04R@ylY^CfsqDAQI3Jcz?Eb(aEF0A
z4U9H0#=vv~*BcmXV4Q&o2Cg-5m592=z<2{!3x4V?Rcy#zNjYaU7Qxad8kl6@Is;P;
zOctKM>S$98^?!D*NclsqflV^(I5vEm0cDmgGPJ83g!5(tvkc5IaHD~n47Ctq>t-5g
z(W;U-*?3kp+rTXbZZmMZWVw}wadh#3%SxISYdwlJnn!wu#eSJ%KsON9$}tSs1{}#{
z3bd%zVvUPHmf{-l4Fp2>4Dc0o5>rt`8ciyS3}g)+DHg}V!!r@mCqG%0C$oX)3_NdO
zu7SG@JYwKc1M>{rZQy<b3k=*NS?)D3-%$RF;Xa{I0`*2AV~e#13_NJy;ad7bg3!-!
z-RKmnF?()#(PIW4H}Di)y@4lcIiKXP>ZZQ_K_1$`GX@qK{7kwU$j=&hm4Bxx))uA6
zFN%jzZqw0bUNG>Yf!7SYZeWRlmkg|+DbkQQU=1u62}_yLz_Qx1Zd_W!Kq2gC&Q?5R
zA<nRhmH($^je*s|$%ma!i?y{vBt0ELZy0!seNn8vX@DMvOKzI+Is<PTct>)r7kGAw
z#zg{U^3wzx4Qw)SfNsIWdj|h;jIRxRW8eb=n+<$sV26P%20moJNZyYOd@RVPqLWWJ
zF4hzsx}{`viN;?s`eRgWw;9-OsHrWjIrkj6PW#-zP6N9Pd?DGHMEfM%ZQx6xr29Xl
zd?it?!M-){9j%%zGO)+M_Xd78@QZ;T4E$)|Cj<M0la|9=d&LLRhFP3C2I7YNaq39%
zR|CJ%lZ(4kD{Vn87*g`5fqy0YUmPQX{3DQ$A>3U|*Gv1^WwP~M$3(G-<|bO0C^1pj
zL{k$LCSN*6sfh+A8k(qQB4eV=M7eozcCK$KZScX6FkMu8&lmIbwvo_DY-}PubmlQ%
z6H^UFK3r6q2uhUds!cpyqE!iVI%zf&oF8~(YD*LCO>{8P%0z1uZA^9a$@aE2)p-XU
z1s|W=nfPFZnkG7$s4;PviB2Xo5psx$LrwLxLWjo3Nm_L}$sW!%k9?%Av#Ep}A<V2*
z7gG%@F3~w#bv1FciBC*?YNDHoV@%v(;!YFCn&@ugY7^I(IL^fJCeAX^UnKM}(bL4K
zCQdMMqKT8Fv9ug+gPd&Q6chAdtmj+Oa1wi&IL*ZACVESDCUF#>!753#ufS2G)l|E;
zL_5<&KXyl5C4v7^Z0J;;ZDN3lOHEv6;v5qLO<ZK+ViV_@7-ZrClV8WeaRb$~a-NCv
zP3%}zG4-n|4hl9<3At1Kpn=iBCWc5^mzW1FA*~7FP%3Ik3u^Cj6T?i5HZjKJ_s#g<
zPmDA%N^*@54Y%B%Asa2~N+JHwR685oG$=Wwiak!RGB%}i3rG-}%2l-#e*JYkRcE)G
zV&Xaz6HHudDqqA3OswUZWMZ=5Tt9QjPc<>k#Em9yGBI7~ht$<>pm~VSDV&;|QA?+s
znI>*FG26r~rdq<W;Uvxy1~T7j;x-d!)Kw1cb|G?#XIp3nbHbWACUg_aO{_3sm@rK|
zWa42HmI>QLp3OJmm~c(RG?LN=o(bPXWFjk~0x2;RoY&P@?*Hm)v^pYm{;X%tM8f9C
z@^A5qBD#pVChjtEpNacT%rkMfiF-`kYaYBAk}ehIvnFB;Tx%^6WP!B(0TU0J>cLQX
ziPZ;(B%_a*c+|uacCm@aOgwI4p^0Z%H!l9AZqJx_ii7e0>1UIOojktzUa9aR6N^ne
zZ{h{ve@-B$U^ax)AJvs=^+lFari_8~mrc;lmzsD*kW}-pnpj5t$Ya#4bCp|LX=0U$
zEh2EWi8UtPF|ppnTA{pd;tdnOXY0NuQO@;min`u1v5vk-_LH~uD!QB(frNn<0x9!d
z!8e-NM7;@~{*CuN6Yq<DHk%;l2O@!rVirajDC9%o=XCRtsPtor(%)`1v5nrq!Z8-M
z)57T(E!4BHgMP!rk0$og#@4m`!o+uyWv7W<CU%?n(!@6=zLiuK^p%OP8GT-zzHy8Y
zl9<jE^ig|Ed|&Hbe-JrLrNR7UVxNhBP3$-Evx#5mPbBqMy6d6EzfnbW5o45j^E99E
z4>nU6cu2%RA%D{qo9eNb_CRmkX;j?<CW<W7wbWrp9ZQW_vXxjUwv<=r1tG!>6{>m+
z5F%Y@#zK7y%`7yxP$tAi78+Y97o0uPz(Pa8wYmrQf0{_N(n3=~Dg^Sz4oj@EP%Tkf
zex;0p78Y7sINZV!7Ft>S94IskhgfK1p{<1u!p!=#v(Ua4|8Qb8jgSxHoEJJ;YCTqC
zsk?}&^EuQ)r&`X#EVZXWdTOqnEp(BjqpX8_+DBRke^%QV%Gq|6)T1r6JI(XWV=Z*I
zaD#;z7LK!UyoDhaF0s(V!U-16w9wDOi55<>(91$^$$PSeQv~6vkNwiq!l@SOJW|c&
zF1w!ha89#uI+fWs)5ij%JfUOt&al)tN-eXm;9a4eWud=?b1e)KfoEGd$HG8M&BX&O
zWY$;Q^FTv2_B)mwH@k$DKhMJX7A~Mdg#Y03;|^S8;bIGeg~(j=&n$>XHqXsa{Wa9W
zr546nxXQw17B06i%EFZvhFQ46!Uzi^CF5{`>84Y<He=E3eYG=VVYG#@!a#wkml$KI
zcCq24w7&yaTe!x;6bsi;;T9%XxYoi%3tT^tfd<b;Q6TY27AA|R{?a2;Q)pqjh3lzv
zyLg&NX1CrWNzB4p-Du$^3%-TG!b}S{Te!o*ofc+Um@U$%>RSZ4)xvESo)u4WyQrEH
zrcXk8$(HyW3#P>-G;|Awlt|(TUU=wOVq0)Th-=|pXz8vmA0^1(i74teWYcz6Bo^`(
zB4N&2hy}?J^779l@KP>03$!9$2eL5F!dzjvzxHhFZVUHVxYtrEmeh3TTS&X$S84SE
z3lFfH9Q@D0gBBjLaI1~mY&>k?5e^(1?QA@1;V}zeTlj|iKNg;_@HU5ug(odMWnn3Y
zhJ~jsJY(TG3(s3vNVQm4EHznwTk)$^jTVuos!=KbR9V%CGZB||FIafd!YjhF#KKF0
zyv!obsvOo%nbV=A8e5n4d*`EymswbDVYP)d7FJkTX<?OQp>1$<r2afLn6(yOv+#z6
zH!Zww;fzv^{mbPyr|EQDQ2%dPSSP*DMG?n4zn`<79bw^93tKI0u&~j>77HI**ks{7
z3!AAH*`44#^1g)+*xs`;hyC5`%2JIFBV4zn_WY4l=@Wq;3*^fGr^i*dZlm+3&$sZo
z(9<6OOmOzg7Z!F}*lpoU3%gPVS&cJeT&jH~6lES<L3JwQGvl`wzN5djQDS3{h3_r=
zX5n`WKUnzD!q39L*HU)|eiEE=sHJ_i_>xlX7Yo0#GP0!M6D}G4u<)la9I)`0g}*KQ
z%U+g;EDk6x{{Nv`N|keC*e}{kxABW?)UlN_+10xqoljjGuu);7(nhI`dNvx_YF^0L
zsBfd(Mgxhm%b2CiM!K*}*EVEpXyd0+wJ>NbY)x!5wUtk1tJ!_&^KzAqW;U7&Lv^jR
z7B*ViXl<hnDKaCl$*m-HWj}RtM+K%sti6p6HqNrq-$q9pH8zg4ag=asHaZJ(h>b&S
z9A=}F4L&X%ZmVHSAq*U$ghvP)z3TuTqu3xqVpkhS+c?q2NjAFKIL5|t!gj2!X36fh
z8ir)MQLbWgARKR_hcKLAqjx<ep=~{l9{yw-r`R~n#_2YfxHwgKdfDoUGBx$m6N>pr
z-dpJD^{q451vcH9s#_oG|IZq3kMyJJZdbmJPcFR0$EE4nHU`+Z%Er|;&apAj#^pAK
z**Mq6ARB{i46$*Zjq`0>VB<oTK2KTi<^cy+zZcnRNBUwZ<+VDhn~r>;{1O{Og>spF
z(4wfTOKo+IlTJpQL9Vbd+{S1dV{DADG1A5;8&^s$Uc9-zr&@cnztoH%M7p&WnX<8h
zj}zE;gwlUMxeIZPP^Q?p&gOU5F~P>QLLtLs8xw6zk|;O-Nuiadc0SeSr`Ivl#?3aS
z+qmAw3>!DvYL31^_^+y`TJ-v7>h%rv+{cSRw2fCQNStM3w(zjFw+O=8GH~jAsGfGa
zjXP)|HvY76r;Rx_mfKiiL$_hrxZB1(HcXC%7MZ|CXv4B$+i+~Swp!8oHfG6|EKBrk
zbt*xGO<=Vn8(A9#DKWN@<9HD~Z4pf<!{Y#<s7I&SnYlLZlIXnJzMv@HA-vbdd>hZ$
zSZL!u8~4+z+jvYk7ua~f#)Irx*&up|HE&(=u#HD-yirf%gD@rhQBUL7pFYmlJZ|F&
z8&49hDB@@u^jHm3xq5%f#?u@u-7;<ETKh2>?O7X(Y%H<yl8wbSp0n{nZOu>S6M^9L
z$!xxoz-se^i$}dSUSTeN@Y%*v;bH2bx2tsyy>#z)tCrcgG^0k!N*k+eY_+k?#%ddD
zY;3f#$;Mh6ui02<<88_QI$L4mO~L68skihg{w<oK$azPS-nFqo8ns?ZXRCR$g{7n?
z;6&cDvDwBJ8}HMwB}?iXDf2^#eq`fg8&o?-Xlgv4*!Yw-)~Sq6+mN!h(+|*N+xXtb
z4t9`@uWWp6;|m)*ZS1!3CHo?y?IO>#42BgE530-Fki4t|EB}p@^_@UQzZGQYy=n!{
zS@j1SKic?(k~7*~N!n-QXL?leKjdK#s%1mBI_X^btBv1;?RT24teOVrYIwcvFB^Z;
zp1GcM@Q;muZM1jL!NGnT2W&KU(8NKJgE|gM9n^DB?4ZO!U9KX;L((>=J$^Bj9v(s*
z)4o~8L45}e9KN)x*vcG~3sPQR^(I5>M=N>FrjZb9IG62ER}-5$sBqBIK`RH94yqh9
zbI@FPQiojaK&!8%=Xz(<*G4*ZTSzK*u$4>)Z5*_9)Yd(tgj5>uAGUKay1quw(9uDS
zgX0_=PdN?_ad4D_t_}`$aF~P64!St#<lt}zM>wiy=~UC&^80xF-Y=~;b;u+h>8Kle
zbSB)AI@-Z84vv+YbQ2iY*Oa?}*4;rP1JBggxbp1b-~<P!I_Tx#L<c81IK@Fv2RGhV
zd9nkp6)Bdd5`02gUSHcQilPvP-Xilf2bapRHJ1~o3#D$E*2h6#hi{#rpMwh>T;$*^
z2mK{=kb|=w3~(^e!MP5qcPWp`aE_!t<fsQgM$=jHJO}4H>Mw+(T;Qk+<gD-)xn>tT
z80=t}gDV^iac~Li;NUVx*$?;MsNSI>Eq#c)T<Gn~R2Sd)lkz0P9gK7^iVZK*MhK*t
zoh)N5wZPF1#!!1Mj&(8C!8ivWI{3)JRSvFpaKD2E4z6)9-r+wxU^$rJ;96?T!A(-`
zL<dtGTqpP>fs<LHRA8!uX%4P;aD$_Uz;uB$(SZxq@L?cv23xeI=)n_JRcAW5*}<(2
zZWB4P1X4w_9ljK!b_nT|__78$Z>N47%yFR824-hUhZWuFC=dD8=}HcRAr&wj7@0C=
zv>iAO5(jy%y8o$h9fUMd2c84JwiM<H1n-tK%R2lYC~^{|b<w^2cl&hhdCE-{9Ngt#
zo`bo<Lkd@_cheHO)w$Qfd<XZ?Bt*&F47|@#Zje_sc<9VogZ}UVR>Q$62df=C<ltck
z&pKG-;1LIpI(X8-Qw|=hmHfDaGxi<S*b_8{Tn+aXS>n?Uo^h~H*wTw$G$f8V>S3{i
z=N!D^V5x)W9lYT16Sa7W##wt@`=X;xo#^&iv6mfiLLow#d`Kbks)OYYRybHD!g*za
zN$Keu_a#<3%2R#cr*e&hwGK8o*y!Lj2d_I==iqGzZ%D2;9lS-(jwRf%qFPu(nlurL
z;-TR?4%Ul3q(=BI+bdnR$-#Sc3)9NBIJ_)}4;*Yx^&l(E|HeKM@|18(#K9-@Q7)Rh
z_|(Bx2fwpW2iqKMcd*C7_YOXDu*1Pu4!&kbIQYWh%~CbecM9Ak@O>$r#07KJ{P-oC
z^I1zSjK6X4t%L7`hohbjC!L1Kvv6I-4?_RR!9GELbkvp0y>xLusA-xjsGm8a9sK6t
z7h(A59YtrL!U<_Je>(V!j@m_;i@)jo>DyhDxcHaO-@yU8eOEnfa&f{Yr_)>=S9KQi
z?km$S>eGO7>bii7QWrdcVDHy+k#Us==3<g3ENO{!`{l0MRB7s>!bJlY4ax7Kv5O|I
zstk>Rw@JB`n({X(*D769Nm8}IL&}vX+8D<mm7rFPE;_jA=qh_?>7td3*239FU^^FW
z1>u$jcaNF3y+nC^op_ClBV2TLp}9Cj=!d#E%ta@`d0b8&HktNwxQq0M5nWsy>8kr7
zN4p38<WVlVx(DyF(#bOmLpK*!iF&)cIL^hxE*^1lyo(+#M!Oh8eY!Z&#UK~wxfuU;
z<w-71b8)(hlU<zRqNh}#my6zloa%y3o;w4q3}5!4+F8UIF8a9W@8WD1eO;U>oLols
zb8(j7y*H~iM(<TIBNaP9i08N%C<wdnTtUdg5y8iV=+}z#U0mQ|xX>?jagmElU0mkk
zVi$v53~_M@jYM`o8gegdjk+bpzNUnsu6o$vqavf1yBH?jLA|l3u5iH)<>4CHMz|R1
zViapzuBl<@;z~AuSvl8%oV(LuIM&5D7lsRyI&^WhiyK|s<l-7~x|rr-x{C=eu5~fV
z#bl{!dc|lW%bl6IvRs?u;yM>oUA0@1TilL!3)8Nz-md2H>m|z#E@rTjwa<5~cKVn$
z)5Xm$Zg+8qi&-@3dBwN5xYfn%T3wBJtK!rR<yuSC1-H5I#USrw8`%rp>QK+AestmQ
zvq)L8<-&GRa52|~<HB{3brHMpnB7I-B6P9zQl-fw<lHKfy!=^qx;$p1C?w}1FZ86g
zCOk<=->SIF#XJ}Hxwv1F?sjpHi+f%5CQ-U6G~dOSt<*L<l|#6|#RJ0mkif92<Uv6=
zf}SncMh+|b>7MFGT|CBIF1~W{xQi!Tyyaq@izi(?MQeBQii@XRJmca;$-B_Svo4-@
z@q&v*E*6UcJjZU@T|v`gV7Uy7&a2|pj&IAAoiMt@#Y-G|8;V#oqwJ2Q^bampyIA95
znMhvYVx^1aF1FSyyZ@HT&JDCxqUzL*Q#te}YlZTfi`O~6rmHddhKo0uMK(z51=W0?
zj=q9(_uDSsp_gWoi}fzvb+OsS78e^_Y;>{7#e2l%wm*fW2$%QoyZFGx{zvOu@_)46
z4YUtkeB|O|7oSi$D~jm!(#eatI7#ucAI)i-i|wvDh}_B1;bMn0=L`B+vAWMCBl%f3
z!U=1ucDdNiA=Xrx7PF@UzowsY@tccpTzu=|I~RLg{N!Svi|<|h;NnLSo9eUe&Vwt}
zy{?*D&ugH%`)3!w2oLf6HOfkf{LT)dljo-!JpAe6FSgFb0b%=Fy#2p)gGU$t!_n73
z;~J0h`Rvb(MIP#S2fZAh@i{ved*C$*T0T6KdMNWy?xCLWWIWXOls@Sg`3g4w#77D2
z<pv%a3PWQLjRZ;OWiFE_r-`RjN+Th2rKcSG3?Dc8sPa(lp_zx~9wzyU-oism4?hY|
zD-W$b%<-UmXyc)+hoK%W_0Y~kdk?32=;fh<hmIaPd+6e!##8^pJ;cMIQUT3_*FfVV
z62%_op_8Y!2&e(V!#y0~sU0ff44g`i^l+4iV?A{D(AC4yp4x9YM%YrGZjzl@=oQn+
z`Zy2Ad;Iy4QXN+#CwOWCJ*W1T>4_drlBAOblIIi;Jq1twNpBCQc{ta@AP=W|IK#tP
z9{PLe<Dsvxo$09^v(#d#;eMhM%GvpP#n~R7lMjEL<0;!4;PKN*%H#$zZ?`)15<G4`
z&%^m1F7_~3q+LMePzka-%?HVhfs2HGp}a&h#KR??8rl@XsW63?dAQu;$5b)R!!Qq5
zP(|NXjQ23y!w3(fJ&X|vBRyP6#KWjG+DZAP5i(a2;RTPep4y8T=iw@0AbzzVOua@B
z{<ecSZ>UaS9Xw2=F?g85=HHIVG`}wDWP$cW_sAiCT`Hu3_T1YQ(>+}80S&d;LcBrX
zO&(@=xY5Jv6{;Z&)ZR=FH%lrPtFt&jI;)#bI~!=Xc(_$0+~(m9L2mcJK$*NVNqDEH
zzMDbB@L+ma>fu!n7Kt9_d$`Yo<H7Zi_fVj{dGI|%9<owa;Hmq)q2TEtWt0txg_20$
z<!IOq)wtl$OZ$4Rhr2!8<KZq3^Mo@snACgRD{4vags>I&dsyJ%X%EkMc)-Jh9v<`X
zxQB;4JS=%1^$xzi%45DqXk!gEdM8fwsb-$=@T7;QXj&ahxC-U;O31)P=|T_BdU(OZ
ziypX0TjXIetxja}k1DJxT_VTA^J1mVhEy-{@Dj&}$B+DjXW1P7YMYlY(Wh4&<s@jC
zhvgnNd)Pvg@UYUu+sy7^6+6qr8y?>Du*Sn$QXZ>*oi0W4z9xmT!dt2<M_MgX8-B~f
zx>`D4VT(o=alq2mtoN|d!zK^!N-EX9K@hG<-eZ5gUqU(Wry2PsHJ=4M<yW}_@S%r~
zID|cX;o)Nsp9s%q9zON3Rq*W|#_1|-qlGlo_$wBQO5g1wvcpsRUF?ya!u+L&uLRje
zPvT^DvzObn;5Ose9=`Fg$HVs?z7+=M{f-9NQ29xIlbq9EA6MBY*VsSExF&rsot1}u
z9)6~4^3l!5FCKpN(AY;4AHR9{oj%-0F<mG{dD!pafQP?mU>^RFQs^a8`yr&S_*aN@
z$m~aU{d5aOzABU+pu|UAAN75d`QV}mKI-|%_$c+2qvNP~?Cf$Xp_!bXb3B&&XyBuv
zk4D142iw%t$;`6$j8(7FH1$#8qn(fTJ}T+<eYEt^%15=2W<Hur(P^&q{t^wog-GkQ
zvt?@^ZG1ekN{!{VzFHx31kr;r`anaigO83rI{7%<M-40N<4_-m`3G;a93n#AmGQ;b
zOPPi1u}<6t^3mDHQ9il~Ll>VP9mNj~)jfG?o5ww9q=qCFl`8ERAIJK*#K%w{-F+PA
zqo0qnd>rqihmT%9diyxR$B8~p@zGOcQkf_DIN4WgHXe>xD=UbcDoLq9QvRRcR-ESJ
zbT-OIUms^kDz}1FJsW9MHIXxYH49KVd^~5}`ujNB$N4@k5at0s2KqRcebgdzjt@@g
z9Fn~MImpL(zPbp?zzr@2A{Y9&$j8M#2D3z2Gf<N(f+2nXYlx5Z;>V>vE~9)OqotI~
zeGK<8!pAU)ULkPL-EyIYZ~poi<>N~K;KM#Gjl-WybZUV59OL6EA6NSr>tmc`Y`#Dh
znyzE7@iD>2wUT!{3l+8V4ntb2i9YxU!&Xn0wE?9~@o}BtQw2^FI9=fN0&fs_emAuX
z&2W>CzkU28#F+wb_A!f^@o|ffTYW6|vBJk~K5qAMzmEkz?(lJ^kJv}f#~dHJ56g$`
z!;s3GVyo#_I8q%tK3pGxkI)C*rsu;K&U6vThMZ?-A|F{FNh6I8mYbZv$R}Q}XVgdD
z$Gtx0Gp~=iKJNB$kB_@(!?Hm%PkNTBrVrs^C9N?H)XA{(OL#Gc^6%rA8mFAk13n(~
z@r;j!J|2=fJnG{y9}f%u`Rbxa1i7Z7@^L|)68MCVCw;XRqNtbdtfH|!Ep$e^45@t9
z$08pu`dH#)vCyCM@w_1EP893&0+q}!DoEeGBuPtsyz1j+AFoh{@`@a*SF)j!PIy_Z
zov=A9Vx^B&K6d)p<zuyvHMBq<@A+6uW2WW%SnuO?A8+`0OBs@K0&lWKf7b9Efiig+
zc%6^8eSX)mio&UCGQ2Bw*x+L$D^~kFcr%Z@R}}FpH}8|#$5tQPd~Eiy#mC1!KJoFP
z<YM-Z=<6CQZE)VF2@zpme99rywLWKxj*YeLK0Xs$`huQ^yFhFaoj_xa&qS%!jhF14
zA9wrslDhS=&&O9jzV`9Gl){D0H$J`-{977~Tr0gra_ym>8><7XAAJ1iV=v1RIu9U-
zQ2x(!{<PB427mbYmCj#;{4Qq6s;*hCUIR&YE&lZJ7dwuB_>vbk+4g^Z>}Smb{2AbY
zkD>qz13Vj`PJrS7R|fcBfRX@p1DqV-lmG}&8bAwhNPv0)G67lyXc?e>fU*Eh0yGU!
z9-sj;@`iJu-bZK{C_St9!5=RFqp{Xll9<}LiB=KtVn3<_G!q^Y8L9&HtnuK-YUSBH
zQ0ovjf$Pj;TUWLU&^kbe038Fg3D7n`dy&RBT(}L@F2LYx<WZti+2k2&mDoo-=hP-z
zjj-`?`_KS~1?U#wm;jxGctn8Cf*dZ8ebhyeqXKjdaHQZo@%&(`+8UkTL_0cACe&nq
zO`Yat$4ct)0eS@J9^g1>1-%?OSs%g^gmO}#zAbQKpl(|+Bek)*iN+nFo&ov?I6J_p
z0eS`K9pJP8X9Va&QBw2MMLy+lO!W<LW`MH-aGSKB&`+f?PbvAjiLwpy@S%7>fO7&|
zOg#h`C`F$i;DP|>1{lPKZzwuXGN$V#Hj23}3~-SU(`u8#aWo{rB>^rEFf71ONxf7c
ztHI^LWo(YE9x&T&sJS8lx9LU%7#U!=@Q_~GR1Fp$F^me-nFw*MsWv*mm;iGF+!bJK
zfN=qC4RBk4s{&jdV0wV-16&hee1ORTriiEs0VWD^t-v!x>?COyUpAyzhU)@M4KPg@
z_}o3bsm6w+v)By*W(2r7z${6<QQ%DhxcN-mm?=>z^R_FiW(&^c;w{pg!X#B^^4uQa
z4oOM^+!<g_fFM996g_|uzzo2*Kgdjz;K7y^Aa(L~07uxE<Oc8r_XScciBW)TfLtvP
zON<47T-r!Ir~6&`00q%DDa<u5P&=y&0z434LsRYU0QUsAH^6+!%g>(NAK<<KyobQ0
z1%DRo@x2lo4+eNh7@iLBaDYbw<pG}HfR&m&8sITWO(x;-09&uY&r*jc13V@4)G+vf
z@Qg%<^eSOZ7I9#%E?rEM=J?%JLj3svF9g^g;IjZPvIy2Nz{UVC1$a5Y+5oRnR{@p=
zSP@_)8xmj{DM|VA0I826{>S)(_$taDkJU^Pg!q3+L|zZ@Mu4{iyc6Kf0B;3YCv23%
zrjdc7{*%V&`T*}rS!77d+7#fu03QbUD8T!Yv{@v4Ab2Wdizq7P|5)gh`KchE)Fy2W
zuubaEQqr&^z~=#e3a~H07Xfw#*dtkX1=t<n8_7sHUk3Opz}K~HPfJPb{B3~mBum;5
zCVd~^hX6lH-n{}@L(<8RX8c+Bf0LwNXyFn~rTzZ@MEynI#UUA@afn6JtNx+S4^R~1
zU+LNX0y|Zx!CNO(6AD9yUjePfOG4BY90E%P)~ii@v7zFxFVQlA<pLWBY$%Y-O+tQu
z4`+nv6QUwi_S`Z=s}PlfR|%{Z*i2ya5G@4Z%k}(C8~Iy@XcOYt5Zy!mJ^<}P93J9`
z5bZ;B2ysY=LqjzrJBH9gwLg5?_Et5ay0yZ`SkhMxE<P+&*E9ID#ZJP>$(J63i_Fd;
zx`gN&ssj#k9vR}O5OIm}lRZT(bP-2~=oYFcBTh`mNcMhzsKb%tLL48Wmn8KFaYBfz
zwzoPp#EBtJ3UNw^o*_<V^=7CS)3{P%52o)ma2TdTjI+aY)70i(?+~YjIGxPX%E)<j
zg?cFK8{*6mH-@+=M86Pcg%}xPREYi|&JJ;Lh`}KSgg7U}c_GdZF)+l2aX2@`pip*=
z#;NGiYZc_9!37~M3>9)wsEAzSrAa9=B*Y~lE(>wF2w~FD5SP~CshnXUt_U$a#E4q?
z|H<JKE9H>wO6n)X#1NB0j1Dm-#5EzthZrka#!*GJc~gGY=jssaK5CUl2`7a7W8J|T
zrsYl!F(t&b5Yr{^bs?q-lGZ=vVaDr2+z?`h)cHT*luw44A#M&4g~*1O6=HS>J%kbB
z7E#D;A#N9ex7OC}ju3Z-Jm65OV@QRtxU@twgcZV<ymkmDgd4(>Xv$AEW+6<g5rhb9
zE1Xi|5V;TwLOeio4UrFVcZhpJ6hh1maaV|WqJdP%f6{n9OUk_==7+fN|EVaI$)fL<
zI`G2DgCQOY)j8v%LU}mEBf?Lf|Ck>O@px@}Q{q!0o~9YcI5EaEAr?|;5oSermaZej
z<`7##EDrHph&3VBvRi}d=Q+k#luqoD*|fC$g%B@>SQ3Kx!lmVx9hG@0#LFRGVbL7U
zAy$T16@vfeToz)5j3eU9g+k_UhN$_DKS1ZZjSQ>9gFi5OjSZnib;+<ehBu_d^&#Gr
z3Xt*^?WY!hn=KN2@t?&^dRLe?2;3-;wcQlry%6t9^aBp|zC|SRiVNX~Li{Mi$0CG<
zeiGtSx~~Wo5w?cdMzt(0|ASuQ+luWWJ`4FNJe>4q)qbDPW%we*_aS}=u`|TOpSAod
z#MdFlttj0UVt0ry1)o}{=+h;|8}6(Ah8`)zcOkBSRjqpq;%#~@XuC%!Bz}2VvDUHd
z#}Ge-*cb9I#+khWU%R>TXDY2(=9dt^a%jw`dh6N-SM09;8#BszdU8(YciPoC>i0l@
zhWLwhuF(DtQ73}`a25CQ{-OU5vGwKp`=u8SgeZ#eQH8d7Ze`C(jW_p-Ba}p_8vzj-
zL}(bHG(x=yWf96FWFpj$Ft$=7LdeQ95J@S-NuN`xHHy$ULX${&W=0uOPSPtQR7L0$
zp>Krh2+blK6`^Z{<`G&%&>|cXp=E?t5o#oR>j?8Jwf2HjNSg?4BeaY70l=yYzNuj#
zv4f;`6u3;v`uCEuqRz#KM(W47-&Sge3vyV5PJ+BwsgZs}gw7GVL|F1q6~mDcuTvH?
z5GOo3LbnKKMCu=Q$3!?b!U+*hjL<#8aS@J>&?8c}oA?)%x}{|g#bvKfuG;%k#nbnw
z*`Z05c2a~>BlL=Ja)eVN^pv_CQFTxcWccv1hP@*Yo*v;eLCzgj%_sw-EjE^NdOb5j
zKNhsOd~C#@o1=e(D<TZ1v?}fF2p2~f9AQ9&b0Q36JtLeS;erT*B228(&J#!^)jSbb
z@CzecB$cT=P0e(Rs<a{OtanQ%Ur~Hngi9g}W!E=oNXn%`FZxyCZ06+=$TKVg@eW0m
zBO;89@Nmb>m<XdHd{(6~{7;Z8g`QGI3x#Y%NFNvBD(X4HH4&yom>yw#gbC8dDFUx$
zwIfUt+<vQQvLHWKX}ecej96SwRWMu^VX6e;j|{84KEe&cHZ#HuL2eRwqd+pGxtQe!
z`BU)h2)9HSoyC|eZjEqTgw|QK$>R11cSLwU!UqxVq!~weAi{$Y^aw_T0*#?EV@9w9
zi6ht%9MNPD!KF=BYy5A!7om5x7LQey?^82dN>+QB&1IEg#JdydI<`6+sn7K+dRf_R
zPDCXF^8#7KPbU}6jc`|ld92U!(tBzD5$@)Y;nyLgxJ^eDGcfyo5wZgsEQoMFJMNgu
zZe5G7{<A(QCCe%vVi!bsDZ<MU9*OWM4S09`B@rHru<^<Ary@Kpq8{gPU@za98Ck78
zDHI~lL|7>J^Ys4_7DZSb;W?qqGwaSZ)ut17lL+anxx9HH!i&*Ck4+*e8?UH7(5Q08
zZJAdhydL3=2umZp8ev(4<q=j!SjCz=SKj8u;uW>XclF9XUtG01!dfcxv#K=_7@bh9
z5xy3IfkX;ldr$FI7goQ?;U8fgZRx`5^%35U@OFfEB$_f1?w?(@A;KoIRcjkL%-57Y
zSgjGhgR=L?47ItsIl`6*zeo6k1CVYo!j}=giturSPa-s3SFyNr@uzhDwEQP3XU!<v
z7Gb;SVW+^)*y;$sR%<(0TcPm4k%5w<u!!_sw7_PW-4PgCG*k4>M>hC6!uNC?5x$A=
z!mgTc1%4-x(LI82b;?QPN0IppD>gl|H^NU5_OTzEX+KBm&Hc&Ev@v&<o!3mWUn~7J
z!f*6fpVw#UJ@YkxM*LAVO0%e!#orPBp@lTl>SXb6g#9A3D2oHc`xc*YKutglJy%!Z
znVJulm6EeKtN2R<))feWOPXn!EarY%(J+ffS!Ln%1(pdc7uX<+4a-Y^TVC2YizY&8
zp2bJaw5D192B@+siwcR7QYpxq$raUEj2~5xU!iFx{3q_Kc=?u0i!54Z(JG4-i)se*
z2DRK6Z<|HCEKbhilq}k3(IJcDvg#1OV-_`89F|3=EP8HGBa1=H;t&x?{LrlWL@JTP
zvsfKgADu;y-;0mPqH`8qsFne0!}*m)Wk+Ullw_$lxvXmz>xWktHP=pPuCZ?2vN$G-
zW3y;GxSlnvXm_r-I~_=K)u+cx9axPXS)3sFiM5oIvKZ36WPJCMo>`pA?r6caO?9s<
zdS@{xi}SKLEsN8$7?8!4Rhi9GGiPMcCyTyW@Y!e2&iZH4L5-|t=$}QuEG}PGdX_*^
zh!dWj#Uihm#B+o`P~f=&$<X-z;`6h(fYB_5WpQB^7iICm%9^2BWhxi5Zh{aWEJ%O1
z=n_Fzjci2XrNVrfz^av{%-C~Q#%Qixk;U*V7B<&LWbt8hZB!N`v$*z#GKLrC6<wJH
ze`Rvg@aq4GCV63IY!>6P_=R1N#Z_5coyAjGJe|cg?Ds5YW^r>C6DT2zDOp^XMX!~m
z;UAe(uFOo#ViI}wR!q*~rJluizput@ub=Br&0<;>(?x#ZW%QLre@)F?FVP#am?6lG
zS==ND`<=TY+%YCHD~s7#WV48~xFw6~>WrR+K_zE#8~uM4cSx3ALzO+;nT3CJ9iG_E
z$zmTrL;F+>UpD85rp+vZEW#|TEbJ_tEJ$SVvTz0GikeYha9&U$e)wSJt{EcQ=MFXP
z=CVk#;7h@eWs%RKz}kLUwSa?5DsXoe_hi9eYu%N_JlbRnZ9ofUY4>I^pY;^{KHB^_
z<s(~Y_e+-FU#&T7XBDUT2eNoDi-)p!IEzO`EG0ieg-=sO^v{$LGBC>0AJ5_msRr>U
z1(|V0^)u|;EI!ZTi!7d{fo1XK;_^*dEaohEOXlS)UdiIQES}He1u2^US6w2=i*yTp
zs=jKW)oZD}Boyv+EzRQ9EZ)fC%`BE>u{?`a9D^L!S#UkfMy;fItSBW;$mQ{xEY@c6
zS{AQo!6?J7CB<nHSI#Mg(YH7}vv`-rmc`p5;T_tK2q7EAZV=)|foXOY!6dfjy)53R
zRcEm|i!CfAi>+C{A6@og79VHviQpdztnZaER4pj}4{pn1dlsK%(faA)PJd+>nlC73
z-W|fv=*}#5W$}F$KV-3+{;H+MjfiilLs7_A0>2jcjX+lQhgZ~5+IRE`Eww!~_?8-f
z7(MWu2Bi;`|Cq&ITFBMaKT$1}nF(VQzK=a6d5`(3nBli9Uy(-J80}*Gk;R``G>*|E
z#$W6pD^oWHV*JfsFslEducK?C<_A{KYN^$Ul}kL31z!v)68zMORmHJ-O`~)B$`VRj
zU3&QAHG8I1bKWeCQ7=X&#@)ZFeU<VU^<$L9s5`lOUqPAoUV#l_G>p-RNwVLV!lp4Q
zVziFYCPrn9mLsbfn#ZV$!H2$Tfz1StTwg>AQ(KTtD3shP#+jZnm3Cgy(94Rp3@sr;
z`xqT!XfY0n(J@9%44$l=@of40mfDQv6_0nxY;36=8sji&*D*0V#p)k$N5(iR#^J1F
z|KcNJ+&Zg%=NMgLY`Cj>tzR_gm14q*Ep_*_)VfN>qooe?rQIZYNGt7FLAu8{F2?bK
z_lS}2S-k0v`m1MDopxhY?|GS%Vw@cF$0&F<hf`woWOwAyG>21T^op@8#_|}wW1JRa
z1Zx%Jbe0mUwe-*!ePZ;DF*wGM7#Ch&m*LD9{bHOIqrVh4Fvi*J(;G4j14zHTh{!pT
zL}X-Ad~S?EG0ux|J|)Dsh<&uEn1QJmNXGevYDO=XEJUbSQZA9`s7|VLdkkpD$}n6i
zwYn_E<$??oIBQb%6)}bjP98=_#kewt9mAoJ7^A7-Lb(-VOpLKHrn7^lDQV+kTpMFz
zjH_Z?E!nS$F`-t@ctOJXH4JI#lVVH};^bPMpB7eK7h|eKrwL>(63Kskj2mLih;bvk
zHO6hUhZytu@^6e;R7ERoW~>fVcpNZ0#w|i&DyJvD8b&(d?J@3%F(-x|W5Hv^ya;z^
ztd0+uL}<h?X_MoNm^aOmCSCV?y{WA<H-;DE(HM`#@M8oqvN7Tqp=dQ?9cGl-t&|UE
z`1O~HoY3dSxGP4&aAA2qMnQV#kyhILt5lcGi?O1Wc3+J9Ip|{CBhh==C_$K%N+Yr$
z#se`PqCzB<Jb#2`4+<pDBSIv?jD$>jJjTxp>pvIc`4~^ccrwOQF`kaGD8^#$|FBce
zE${wb)xsFxw$g5^sf-ttKP!1lT5FkMY9w}StsVbktMUu$y%6K27%#^l{-VGoG-h!H
zpMPGnVSVYiLgg!xcPZ(uwO6SMJ#*98hAU#Mq+g=WOB<|;u{y@*F}{egCdS$r+hcqd
z<Fy#C$JoRXRHgB|9B+u6b+rFo)o%)XOW*^4w|zUtJF)td=(=x;*2j34BRa-Lrpni?
zuWqd+t(CeKwbtH?@qUaCVr-^WFDu;^V@r$=V|*OrlNcYx`115hhHOtYE{J>@V=INX
z)`*irgkgVcZQ9jE^oo1}I<TyC2Nm^vIiuB!%Xh}uMa{?fGX_5vx0^7=9*T|el~BGG
z_)Uzr4$qwXMiF_wjdAfCMT`>vKE_^}bc`Q_jg%i_q-^`xYeM`j#xH{WTFWzXWpT<w
z{@;bjDC-6}EBuS*@poG)@Shm}io*BPljjcZ`5zEUQ4V#4Qk+AHAaw=S69|E&0*~BU
z!7jVisje^4GJ)j+8wg}-!yFn3-dJEg?yZ$JsK}u*hf8u8nnP6%)j8a{tn|zrn&r?u
zhfX;hp5tFJ&@zX%Io@u{w8|-SJ)(`)Ca2C)TT67utr;c_X`{8vp?wYq-l*u1!<zM_
zn&2G;)(E_ybMYZL97?f^il)u0IxGi52Fm18_J|z1=WtvOopb1t!;vg{V`(=jg2+)4
z?V3}c3qCrBj|XK)WX5BJ;n*A=mcO8qa(oV_<<!Ptj~q_O;lvzH%AqG+eGVrJ^C<#H
z{?&H=NcG_SAM7Rc-U3OV)kZr#hcj~U+9*TqQ;YN!1`_+_a8?feCA#vF@(Xe}JBI-|
zoRh=A9J)TEM&-GZ+R80DPbh;V%B1sa5%Mtag*jZ50}+Oc1sR;f5J8&GsV4E#94^b@
z#vE?S;qn}Y<uEP>P7UnDE2KlO6gWJG5rU9DQjk$Oq<u}w|8f{zn>r?kv9&lEmYiI4
zRSs9@a7_;5bC{6BbvaDUfouC~1y0Igq98{MFMj33;>kHo$$>~3C7hPS^c-#w9_C7u
zu9qnB8MSnB&dlNF99-&CDljXDTWEMW%;xOeMti-DcGQqE-az0M>uovQP9D*fo`XR<
zOls~FIEVH;Mn!3OCN*EBW=SgtTbTRJM8kWF9l?KSqxm@mIXpxo$sx=k%HggY=H-yh
zA<iMm9o&cKV**1ir%oACJTFNFfpfWXcvXG9is9}Y?h_*MdvdrphxxU+_(Z8T|8rO%
z3=ib+U@a#lFr*S5$>E6{o|NdLIXsqA#~F`HG(BRtaAIX{aXBAOpQ5U#WS-99nH+Ym
zF0J2I+-44ob9gPm>j|FA;rSd+PjE(p7jk%!gE~P~f+ab;#F3K2Cpo;#&dOnZ4)5l0
zd|QpbM_ii2t2r#oVL9dG@H)F-M|Jx*%U96q=y_&kR&f;Pur`O)68-ASG7|s8iBREh
z<nUGw>jZyOATK$*ol_S$`4ZDRId$hDJvt|{fdlaSnh$g8dx;x!*p$P2In<q$Vc3$x
z`>agI%m+DarWxFrIqAFl45Sbz{3wTgn@e^)R8IJ54qI91^_fh9Z8>bGYs%rb96rlo
zM-JcT@Iwxt=kP@iU*+&Moxs}Coiw(!rC;W-D~H{JZ|5uFYfJ0As>0F*#VZ#Sf0M&^
zl*W(L2_!OpdgV(CiubVjua;8Ck3!#@!%y^7MMY#_*q6i4Is76?B&Kx2ZktPf&*6_8
ziW1aG@TX+?Cx?G?_)7%-Em;;Gk)e<tMMY^%_Dj+Mfvg@2ElyPZk)R|&-2|*B`3V_F
zFHKM{Q7s})2|RJGpP(#3d4dLsI)!hPps^qg1@geUNrI*cDr%$YAvGZnvUwz0ouFBQ
zZV8S_RR1<-^!2L46SPRsGC?aLwolL@LF)u<5)5jqJ^D@kwh8$1QM&}|{;fOp`m&?`
zsoznmeMo{s6VxQo65PL__<N_AEv2?u+rxyRlhi*|FZH~pZ{~;uofC9PaAbm`5*(di
z;S_XD)RV$<YfGP{@we4(ZL4+vqH12dvYHsjCU|pZrrXO^-4h&_;P?bR67))N=cKX|
z5_Ot$Qi78OIWYkbaY$h}MJPR`IV7Gc(O>_r&m?B-E!j^KIJ;kQp9Fmq+>+qd1ZO7b
zm*BbtQxlw(pnrmk6AVspc7nINWEjpBWI%#*YAFK+>AtRLP=fOWKR>~Rf?QC`bL_ez
z=DjEZ*@zEGa0%;{V040^2`&}3;R!AiWLRyk%M+v-nfD68nSBIxB@CkkURletcyBAR
zjY%*z!Ngh#;}Tq*;F<(i)iRT3d~NErf=o!jyvI&gt)u)&wW*T@nUY|G-;hbuYUwu#
zGMy@wqHjnrBf*UcSQBO^Cqr79nZkK<f>{Y>3(n@SAhO+-@E6Q*q=U$RewU1z>?C?;
z!sqU?ISKRxMgo)Fy{Te{cttCL&0hPih6iw0+??4szuHaUCGZmj2^O&-3Bm+Xf(H^j
zm>`=VPWTEK<|W7_Xw*)-shw6xkR-?_czRw<`*vFYcFNz*Wv-}*m(X5pr`?_49@;ZU
zkW+MTg82#VlZt)OPHWI!>(O2t*<Q2Tt6U2bzFMo60mEM{eJH`h37$ysWP(R%9yeD%
zn&A2N8hOa@Sc1nBd@Z>cZQ4P5iWQ*o)4Don54%OrBw*1@qBHE&L3>tmEnHO<b<m!p
z9I5Rp`hT(|cv+2ZtmvTq(?PXpiKM<HSx)SzJ-)1TX@ccsNbo9an1JoNs-rf)qiXD-
zO&h(`QDfUz3jfxQ+G;`82wW?0Uq@AwH#qdzxp~}}$6FlxY*Zct^LRVKI|=w*i(~Ux
zpWxjD`x6|Xog~=EF__@11e+4Pm*CR`TNAvW;FH;9TM~T8nk3lF?vN7=7IBwZ_oD<K
zlR?VmNe4Me=V1pCMz<x{p5XHYU$7q~*JlZKh=gxe7f}w+J{Wc;*hN2?ASF^lnnVd-
zlbGO_1i#XWCHOAEj|uiB*puLUDf9;lm$Mb-Wf5s9KPA|g;O7LCkWx~a#3}i=1iwq8
z{!Z`*oj+^1y6CU}Cx@a^{(lnuTU&ExWGKp`PM&|BL(4ph^C-!qK^_hBsGA4!$mCH!
zuk^#_m*!C~f3VezvXZ2iNou*!NlEM6D38W@ROC^aS8ZvMSJiG>o0qxBR+UF}9?kM-
zUMoLsENf0At#GS6TIX?i9!KQSCXcpx)a0S%(Jqhnd34C5qvTDSMzPG8_80L(@;Ee)
z!}91PJfyG=OeI2?b}0Ef=W$dXUGwOY$B}tu7-V2b8*+3W-SRj_>YoZvAsM>oaa<n9
z=g}jNv+`K+YWW+ll%J5tDS7nF^F}L9%A?o%A`%Ht&Z|Lp>iVKnNzCJnJo@Cpq~3X)
zmdELWr_AI@vk>W<$C-Kb6FE#Jg^+=w`re%BpU2sG5MdY~$XTn3&dp;`9z*iDB(Jvn
zxaoafUS0n?KaUIY>UDtg<fVWM^SCIFi&^xO<%5JWIIrFpV0366m*#O*9#`ja$PJmx
z^6G`4;UevFD!)b>md6#$Sfll8RK_paj>uzV9;5QOGOw0l<Cwih`=7uud5ji>bP^fH
ziXMoh^lS1MpGS6b*-wjV=7rT0@|eob3ahWpV`3f)o+zG_$CNy-%VV+_lIrNNntjI=
z9U-IB@|d1i)=o3KK93vn_(mKc^OEzXJZ7@_dAyXz&3VkqBl^7lv(!T#x8&jH5#(`e
z9=FjHt24v;XKv5q4%&mJIeFZf$5SoJ#<r=_CD$BEV7vGUh&;?ZtUO+<(d<0-36U^G
zT**!eo*?88nLUqt^O(<;QgxcfFfWfdk6a!}9(j(7T6%$&CO9*uoJ2@r;EOqT3%o~Q
ztZDb<aep3<=kWw}mB#~lJe<cPwBd#24+?yUV<awSl!3^jLL~kejp5BAo;NWNA?3+D
zo{`k2*xiDVpMj|hB}#<RMWTwu0-qE3yucR(z9?{8mr5%6<vd==V{;x`@>oja$>Vhz
zc^=DzXO+O^0?E80kClR_5>^YoM&Me3uL(S@O9L{$DL9dhoCWe&NB=LBcWdeIa2BY=
zS(y#BIEkACe^221we$}J!CO@y=J8P;yYu)mkB@6pKV$O+|1^)Sd2ADWdu?i35UahT
zmhw3bHIJP%525Um%6#83!wP>Tlppf=F^{ilsCj%Vls&b1zY`>t`F*W~y+Zu8mggs$
zTpmBOCS5AiB7VuE?2G1<|C{jqF7S_9{>ZETJCA?z`0ifpxflQDv7ZBK9;VL20sj2G
zfL?RadoJn}P+Y*S0(KWrQb64TrW9~p0VtrffYS@y&_lffG6ft`z@Y`yFQBY|wgt2+
zpuC`*Tgw7?eA%FYh6OY#pm70J1#ItD)ue!?f>adXJyM=h2pKAcKH-PT>H?Y-(7b>a
z1?)Y$m`S;fWu#LqVZ)|ntthr>S?dDY2tvG@+<(~dW5tZyGVKfKP(Vki#+tF1`+H?g
zfnQ@(#oaWda`lm!!wTqBz)=NsEpT5Ni~gt>*sAQv0*)xC5Ak&_sBJ@*)un**yc!;?
zm)6fzR%UqGLgLW{bSvPP0*<9}=C$ZqK=%TUE8xTePAcGdA)X+xhd^!;l8rlrgeMDy
z$SDOd^`)sLDbK03^j-z@F5onYaxjvU`-*)E=v%;L1zcXhnFaJK;M@X6cgVCort+);
z=G>ksugdT=q<;Zt7chX`Vb(jRfPn=(GN6QbJh+$$!yq=Nfb$EuprAg;(A3N<)wBx>
z7+k=R0xl|m(TfHC^kO;jO9US(u>Spua;f0&-KFqh1$^^b1;c33^A!aQFJOe=BMZ1v
zkWm8vd;9Nywb3yJj4h}Qy|Pv1@2ssE$By1udQ|~e7jO;hCedpJP7pYEeGwTLCKfPB
zD3b-AbVoIbQwx|@z`_EaEns>9*B6j4pisaK1<WYm_5$uG;Kl+bPR-1g3h+wgO$GHO
zu9*UFE?|}*e5s1WTMDSW3AYw-TLJv01o7&dz>nYFSpfHSU0M-!UVtv541rbwrXVzr
zS9%oN1vmxlzd&slbN7|VR!#E@hziIS5D4d>VMSpr64&O<v43rqiy;x>aDMr-fV&EK
ztboT0m{-8v1w2qt4<HQp2r|Ebdj)yo$BLAGUjg?EWkD?`lO8PKA&EXL@KKsaEe}&u
z2|aJkgm0F2bTUtH_&Av-3z)gK{HX$-mdZRMkSlXmkMHs<D&VyOUN5NkdKMS(Tmk<_
z)ptNiQG8!73wL*RXP2<MLyp_zoO8}O3j#_|K$0X0N)i+hC8MxCJ<~Hiv3m(3f(Vi%
zX9PsR00Jr^ih_bDD1Nu!IKRK&Id$&2_3G8D>Z(_-bN99!KC9sPAP0}PB<|0_cF9um
zp^zPdJ9F@nkX`Z8-8tAJe6QfXxcp-w96(-0Kahii(t1up>LG@s@(M579L>S899(8m
zd&lt{oZvEX+xK}-=GgZ#PUqkZtK3dGm4iHA=cVM69GuO;1;!;&IG2M@g|O(n5Guzs
zDY=+~OSWSq#)^ncpXcC<9DJFBucR~Aa_oD=R~WT~kasMvd@Y=W*}ltM*SRjrD>riR
z4L!5G@^*RqnBis)zR$t$Ie5tMwbXGd2OIY#{mKQEgWGh)OvjHoxRb+IP#rht;U|&I
zK9|7k&pG%-<m7jS+@n`W(Qi4pPn)}wc3e#?+$`|{-R5-%?;`z?gFhK^Rb;4m#HnFC
zSCLP}Upe@jUP`a#_?K7s2;Y*jj*sR$uJi3M#(x!wDwy36a_00eoQBN9g&cge6)KWc
z<X2HZwS#=JiZm7JDsInnIaH*mm@+1lDOHG5#l7Ph%u@4)Y`A-|i(ASj{wS{$R577c
zX=XE3WT~j3qNWO$ioz<&tEix&h>Ed)rIc1tMnzE-#Z)wyjp8aMj&hY$Q9?R!S+{4r
zlyJ)TcS`KEI<>5daw^UjO(l=s&Bzw62zLECFB3hMyNQZYYwd}QN-BtzRa8+?m5m-v
z>QFbanu_Y&(hBxZPbyZh-?LkJB%_v!+T7S}&ZjFV?0Fp(byd_;QC|grN7aNq6r1c)
zV-*dBH;PN9Rj{X?*`_L*sc0_pMH{kPaFfT|gBiotD%z+R=EiV0+Nx-$;zt!fsc5gF
zgNo%UR;cKxqLYfLDqd32Sw$BW{Z#Z<!FO!Cs=)JE+;{LMY&R9%RrFBNQ$;Toed9gp
zt)dUD{hqK^y2Peqgp#LJ3{Wvr#V8d6RXnYNmp+E87$oFb!NGz<R6HZ3YEKt+uKS%s
zB}+a`2zMeQ;*#ftJTG{lf-+jg3&LL%9HU~qkg<ZaFiyqw3JM9+1a8_V2_zGxbdrk6
z^e*8oM9!i}&^b-TbQQ0tm?fLZAK%PSF;m5TZ(_$;E?&)knG^SU@!EZzvsKJdv6Q3A
zg_h!&tKwA^^Eu8bj(Hp|xdFF8#cL`St9V1j>nawiSR@Lu(%8K@auU{BqT($neUn{1
zn!x8VD2$aZQ&A{Sk^2=C;z|{(R9xmn?8#WIVvUNeDz>S3Tg5w^pfZjq{ZPd^6^4p{
zNODwYDm=nf6>cHaEYsWNRiUf!$0a^`)X)SLCHHX>nVL#AC<<W}p}1yDEh73oy17gh
zmWo^z>s4%4@t&w{P_a?PCefjtcmGqjc5heA{uU9wA8(gJTK+)Ab`{4|99Qw7iXAHU
zsrXpMP6iVdd!)*)xV7E!y0Na(!d@w&o&72fs5mUygMx?RMX}anRgQ2q4NW+zLaC@w
zenQ1b6`!iOAj+pyoKf+K@Y7tI^Xx%pIxCWM|1o%8#R#$RnFy(KQ3Z#T<nxt|OYwew
zuHp+7U#j>@#kVTHQ*lMLkD9ItUKM2aYaxSja9zj^!EfTF*MrU;<x+2|xJ6Hxm`VP<
z3SRr&R8dj#W&XfOQc<}rKHT?w_8k>JGxWJp+>KvU+*RRpgU=!^J6_}-<GG5*Dt=`Y
zTI9H1QTdJDPE%4hb$#ORDjur%L&cvQ|H_H{7pn8-zt47({H5Y=6%IEZR8*cwl|(o4
zO7<Tbsi-8lk;jePUM}*qN=iN{B2RJy!dXgZqa@i4Dv+dzJT<P#z>?-hx*H8DDf!*V
zbR$c60XGT?p}deA8NvruQkdmSwJtY~jdk(4GV;Q16mi?Jv8Wpr7NPXWEPhI~gc~K@
zXz4~PH%hsYZ*w+NZ8u80QAV<5-KZ+0oEzCf6jpbmqVV!=K7s6Dl}c_@7D*LBb(Jk#
zemSG>HYZ6nH>!)ghF~qhnt~fEDL1#<I(6Kr>qb2hGTX?F`oeE@cQtUMVVtw5u^UY!
z+tiKbas6g)I8EoJfNiRU8w>o-n!2;K8*SX^=SF|V|F~vPH`=**c!LgZbabPe$U6yk
z5$qh-e7(1;s~b1&W?j)-G}~R|Jp{dzQYq;b*X%8%k6>RxcHk)?g9WKPK*&JBrv(QI
zE?8t6AL7O{l6_W?lA%J*^>U4H<2g63vnQNBH%7X#*^T$y80E%jHx{|E*o_z57~{sP
zZp?RMtQ+IpSh~qM>{iBjHzv68k{i?9c+riCZcK687sr?;37O2<m&;<YD`Ui|BB5})
z8#COP<;HB$oax5PZoDEqcDXE8g?x@1bKRKd2KoPl|KkhjIav<w;_chk{1B)cuZtg&
zFBHPt{cpIj#0|e2h8u6X@s=B2H*{`=8_V2y+l_bJSnkFOH`cguZM1!$veJ!JZal7}
zd{ap&-^D&IS}j=;o@+F9WUh7N*78g@hieMfxsl_BDv}r;IGf2*jf<kP;-O9zIU%jA
zTt1cc>=IYEl`bEBW2GzYw~TUI5&~{moS@l`^Y3H_-MrVC9daY=Mnrg2&=h=kp^K&T
zYW|8Y*NydVY;a>ESMh_4F_o1~oXRXmx5~=9Zv6a9%EHPDk#oJpjU8_6lo@|taH|{J
zgnS^lU67g|3aJ`$e&oh3u0BqO+kV(!x8Qy^_6VV5uaJF24mf|76to{mI1n#ADCCeE
zhlM<n(qnEMcjJ;9mqmC&@SGbb-8d!uwBRR#XWaJj3~ip3?0R{&;k+B4x^Y1y7X_*C
znUHDw?G6l(2O&Op<4U~r3pc(L{#9J^%`)5URmpxWcujD#-}#Lj-@4IMLo*HExpC8t
zKiv3}L!l_&yYZ9TewmB>mPmeZ<2ENnPO*O!iEDqt9ge*4Uj*;Fao3G|!hdz+HzBmZ
zJr1!y&#dE;--SFBq|Hs0l}B!*Xh_xY*p0v3pyY4Hc@2r0&7X+mA2$*tyM1X<3Yqe1
zNYaoj!h9MiM_hq~S%=2&DB2c?P7P@qDr%^tAzed$4J9;`)KEY}K@Bbqg*6n?kf9+{
zL)L#PvM$?Yijg83ifSmPp?F;9e??S?rBWJ7Ybd87TSFNQW&dL#)=5?&Q8bj-P$6!a
zl9(wPsjQ)jhWgU^sv4?ksHLH{hUyw>h<?p@Emn!uBG%DRS3|x36vb?^h@^prh8h}a
zXe`+#qQ=4bU%OOmuAzm7VH$>OXsMx<hTa<bXlSjWjfQR-^mnt{YG|jSt7c!ZpOfQk
zuh|dBcGl2ALq`qgD=VEed*>KKW=rf#?4n_J#6`j?vCklM7o8p&dJ3U_FCmXAD}6Qe
z)9|#0K^g`h$>`5buA+>nqCBNxfQFIbY}Z%}lp+!;4AwA2!%*qlGa^4xMaffDQL8A=
zY9Lalc~ylKf9vTQp<#mPJf~qyfz;<|P{Sw<qcx0^4!l5ltY}x#*m&RGuc{OeWG}0#
zj2DTofPGb;W?$4WQLIf8oUCCA9a4G~!)Y3(b6C9S<i!jPGc|Pfpo<4DYj{P&9~%DD
zFiXR14F@$G(lAHETn(0nTn+OyysBZjh7}s-YgoVmDVDlS!)qL$@vcQ07HfE2v%gNc
zkXTjuA<I#sn(~J9a4D<YExts<n;M!_Q{EC}pP86#^LFM(DGok@$mal8YFHK9C=ILG
zy=uz#YKo>|jfS^1yrY3;*J;SnuvXMYR<lnSRm~2+ZVgQ9swoSnrVbx#zY@#39t~bP
zST#i#Bne!~@M|zM`z^wNhOmZ+@Sui}5X$*dVU!a+!o_3?>9-=W_liVj*K79v;yn#p
zG;GkYk&A*0<XHA*>Ce0DoBTC^FVws{)por1HEh-FH&gid+&0brEZ&D2c4+v3{gG@8
zxohJYH=q39so^6HyXc}C_G$Q7!<}l%9u0dLG3qDgudaOloBfrQs@0Ve%`^9FIKc7e
z*XFA${2loV)s+?1mBSj2Xjs`W?+pz{H5}9MxrQ$^9M^DyD?-Dk8cxbcp4M<i!ztnF
z_C${DC&JIt8CIlH(qcp+$+>v;0@ve+#EYWynFv`L)48PKvPfuzk}v548m?;iI&S<5
zonH)6VPG@cW3Nfkb-|b&3cu0tEq4JLZff{m!vhU}Pj=j*j)tE#{G#EuhHvg<{UrFK
z;DwA-*F?u1;Roiqeq5bRg}WMl({NwIJq^EdJgeJ&LOHSBL;Lz6Yu%`>{4Vw%3N9I(
zz_u2CoHTB!;}L_uhQBCh1oNQ22TyqMpP|o#>K^;C%mfeML6Qe~Buh!62YH3(i%Zs5
zOH1~^;Xw(J@Z%3DLNYu^^}s1SO^{Fbu{7O-{E{u;LBY7ZkjH*FF!teyOcAoJEDv15
z3&$lzJSZx>m|$_i*D9n_xuoz?f~7qu<3U*u%1O4e2iYFmctt_Q12)Gh<t1A|I9snI
zS;|>T<tiRjjTce!cXg$}0!Iyx9f3y-an<xd%adBmgW4V(oSRz5gSsBH7@XOthSFtg
z_FtDW8hCJ^r;`t#xAmZ*2Y2Q;8hOyzgC-s{^`Mo<UNr-2D9wbl@PNFzVD74vKUXKT
z^kDkj)H$V7TibRVZ9FLQd&=k<3XwM3dC=ZtzZAgK!Gn%*-bu)|RjFM)=;pz74{mtS
z-Gd$;Eb?Hn2R%LL<-s5i27A!kgOU80vj+=4u-`H1<3V2!`gstX<LWOsK=7%UWST7>
z=t2K!cH%pLtTn`A-!>iZ!2}PU@!(kxhI%l}gXg$W9t`Ic9Cg-B&s<Q$cFPeSWbAeF
z(%eW7MzLcxl(8O+md$7B7!O|XU`q{!iCHF+;#$6O9^_8rem~!f9!&ILmIt#vnB)O(
z7EJZvB_WeNm?DJ2?UON0_zVwb3YpH?oNVjAEZJ8CDcL1L;vA8@COFrFc^<qfd_G4e
zt{k&WjMaMGgN0HQlf2=<5)Tf0aKwW*J$TCl(*w(cr5-Hv!0*9>sgC6ytl&~gajf%T
zC5I?US?$3Z4_3uTfRYC_l(#*2CobWg>$M&XSe5#G|IF-1g>yVmJ#b5@#{(}t(1X%7
zl^Qjb0e3U>crBj?PuEl?)KuPiWM7{*JP2?GJy<s|wcB(@L`aA_Z4$#$h4QG7PAQIM
zHI-Zs)_btigO5De;K4=@-lxx$acmNNPw-tqUYyx1Wcw1=mbiqPTRqrDCzp#(A8_!w
zWTdoi(77W{$SZy9+$GtAg1bG~<H24J_Ia?MKJNjqw|wjY6K(P|mdM0LW0ntzoDyES
zI_j|>ML6TZCmtMQ>#I_a%NCtr06A>?_DN2b2d6!FucmUWrtM%$GVF6M-p4uX!8s4k
zd+@0Te~olq@!0>Syx_q_4=#D|nPjI`PNeWMU0Qwy@df+lLF{iAcWWwNdhitkT`h(0
z+*PQhWR}ZpUo!Qo$9|USYY(n*n%;D96%fDi;9EviFOt0Yj%)Bp#zT+&?DS0!zW3NS
z(QYwNc<?iMeCuw@IQ;0rPa<hu%f7nxi}2s#I(I#|C;ZpA#M#TfG<RRJ4?Or?$d6gs
z6#n7CpAy6#d64MElMKgWZaCwc=id)2{UfDMB+KJQ{?R0l*Z#N=pV(yRBXZpGdinJO
zS3WOBPRguyDkIqohZhyRsOSZMwwLNfX)nrn;q)TSi;`X}t)--Uk>87=UY!3nrGOWF
zqt@5Mnd!By74)Kz7a3lhe&pb7SxOH4ke%g)%ZtKZ6!GFjW+q=y8eQw($na5<{Kdph
zalsOTe5IO}c_*=y7rA#*-m9gQ_1aH3SMKgSQ_KEfW;rjiMMAE4Q9jQ39kxndRQ94N
z|J|}Xsfrf|UUSs)qP7=Ry`Y_HUR3vjud6(+rPPoPvxhZ>@I}-*UhsAaC5^qP>qR{;
z>U-@sdK!As$jgs_**xb?7LkdPMICL<xZQ-qRomVoz6RLL3vVxHb1zzW(b9`nUbOb2
zy%&7rz72=ki+0l7r5soL+RC`viZ(XuEvegqYI7W4-N^{nRyupp#fvLmT=k->7u~%0
zz>Do(boZi%7rGZdFM4{>%Zu?|Ob~;;y%@-C&yo1=wGZn0deP5|{$4yK3In|MTk3Ux
z&N^3H;ZN$H)K;GMVi0GluWPUu&r!#VAznP=Mdz=IKkLOX_F4E)K|Xpnf@bw>H6fF~
zq9|QQsawb1<c6=fMtU*Ii_u>E+Rkz3cFGtpniWfZL68b#y%<ODs-v9#BK!3^O1O^l
zq8AgrSm4EL?C{4)lXz_J#Y`_Idoe{MQw669zQlw7s~J>dn(oEM*Aip=WhtHK#VbN)
zc`@6IIl`$h*NdHXlo4)c^_8wVZYL$LO3{2THj9PVy;$hQ8ZX}FJbJO%i)CIc7o9ig
z25~!V?oBV=^4hOblC$noDY{ulq0JRutdi_XQJ{o6)Lb2Jh1qw!P`z-A+FCEx#VzLu
zDO*?3q%LcD;<d=VQhL`)^n0<lXW>m=yz7O*xh_>Y;6>1jkj$wi81^C}Br0eMemFK?
zi3|2oYpxgTz1ZNjAH`>OBUkP*TYlk+eN?%b>q7Lmda=c8-!yz*vb-(mc-z+B^pTUd
zVz+tm%~OTz)m3=&@k6fS`9)87v4ex`#o1KHM^a^%7ko#U_W^g)4!bQaveErs>=XWR
zT=Hz6!Uq_Lyf`G1<8k?6AxFG8>cz2m+Pyi8Mp%V-k}I7a%eg+6aE`IUi!;J`=kyaU
z?G=u*g1o`{sgO%vTo!Uc@G~zi3gO*V-c+U9=U#l_weK0RE^U4(rC*7p>jnGf?AKmg
z<3iTaO2>6CZZH_?D68WeFTSP2d+{5C+xyP%y!hUWTVCAc3Jp8^)wP$#4-BEpQ|}7i
z_TopH75=l}9YH>$LY-fPlROxYdvRWHg8eCy`(8Zq;;|PGxWwKn{kz~p!5W*h|M22Z
z;Vj~Xh`+q}n}J&Aiz;~H#Xk%ngEAdD5_IIzk)+!pI#EXvk1L<>ygHaDq=W=g#B8z%
z3rx*RP75hI`2J(6jt^@lI(58US7G?ducLsDqB@G{D5#^5j!Yd{x*e!9^#A*&7GGU)
ziLfw@>;HcBi#mKEg^7gUye+PygpQKB{S9qOSf!MX(o!p?6MJ{2oNf<DbsaT?Wb06L
zlowt>u(Du9!Ad&*XqrI%Dv~9ss^jhY>D44lQd75|xTve6o{n0=nXN6Pj{fh{7dLre
zyeFx?js`j!>h_CEO$13A32Cg`?<+Ai)zM5O&2_X8LLt?d_;ylj9c^^Hp<@YK*U?VL
z(>ey}XwOa7(N{-59UUcg($QJBucNN1tEkUscG1yIM|T}fMi%KRc<V;7GdGI8)UZeo
z9V9(<^wQB=2jzWqKC_*#&c~(6nMkTW$v*$0qrZ-)baYwl7@%XI4&Em!dMsng$&5}H
zGN#^18LVT7j#)Zp>v%@Dm-9Fs<8?f%W2lZ{I)>}`zOM3ujuASZ(=kfNXmO9{b&M2Z
z<WZ`;l3FR?YV@srx_Ydx!bG((bcuS(ST2@_1t_mnPbqsmV*;y8Nq&h%OS4|oF;T}P
zHu`JkWF1rJW*mfi%JcOU9+J(kr_d9s?Z}>{W4bgnLx)jMd0EFy$*R=kugY|+YMIHW
zPl@^dNSPx=^K=}kr_AL<tZ=n0n)<4a`8pQpcumJ59g9Whb<SOiW1)`S8=V)ACN$|~
zr<E77nh(#?{&s}lOnp<wTRM*FIHqH%j%7MRI>I`Z>sUdbujcURSjpCP?iQiySgqqm
zJ!QqUly`K@8I`q${w59mBmG>fW6iGYbu_ikS-!r)H}2h>(E7?3^IcuDlUx3psc|Ce
z+grrsWpnivU58JHpIfaXpd&~Nt5TV+)^;$F{Qb3!5gkz-+qpb-m^v&S?@POUN-bB%
z1|1u9tdC3h>gy&Q@9KC@#}*x%$?Mzix;EtFe@h&!LWS5{u_RmRQ93@L^Qeg()kNYe
zH!_L5^0Pz7ULE^bJx}INjwF{hN0LFZzOsiay}e`PtM)_n&IU@^2Fk~D^@_<uM`j+>
zv0ujl$(HgYP{<dJ59v6}`C@0PI3_nxejJe6tbsia$EDBLIjTBN=s3xMpyRZTFLiuH
z=a<q?bzESyp$kd&oR0JC#t=JjjoO;ISnPbJ<D!nsIzHENN$2NG6Hh-(nX4t-erR8q
z`a(zQDtlLWcV*(YxA?2Sq$^@7tE=m4Ds#q@6@Coosi5l``2xrOZnp9_IyeaYLTu}f
zj&Hd_6B54Dag(EZrTF(ce$Y{Fwd)o;b~-5{eYh<)4+_7d<7cjp0LBLJi;lZoeSXaL
z<DQORIodvK_u)4k_qo=5812IY9lz6)eQ4#wLxwf(fP5(D!=E}Hi60jC;jxatbU1uS
z@!@aAmNVJ+8YuaEc%tJU#(y93_>k9U%M*R5HPcS7FSn1+iA>B=A3htC1d|0vo-C2-
zgVTphpS^SE#lSQl3iwdahjgF)p&Lr_`|OK^<b{M}h@8Uzm1g<i@}X!$r7%(KkQa#)
znk^=!B>VEEmhhpZ4<w}oOA9hvMhKt5;8mS$A1eF64`GojK9u+U`;K!3A1Vs3B*@EI
zRH))ZRUfMPP~C_6J~Z&5h7UD;_H&+f1#1b`_SsKwQpi+CBwQEd^@O+Pvz<OP@}aq8
zDR1mU6CavNHdZl)%|!Ci&nYd0?0zXP*HLR9+HmkW4*62s`q0jYZ>PKZ`_SHp4nF%+
z8@+t!$SvC9?B+vvA3FKa*@rGZbd_Q3e<YEKr2~&7a#VYWkff&%l>D!#w-3B1&9Uku
zW7Su%pCBiiEj}gf4iFqD_%ywugu)^!4EAA&56}4Utj|6q;67-$4?~4BJIwd*+t7TB
zb_D0BrsFvl`7qMQ18-NEp7uisFI>xf!DnCDe%pt4d>G@ySRcmuFy4omKD_M11RwY(
zrk7-sU-V%jeL(E<p6pZ~@4PrC`%ve@#3?@eo=7jvd3=h!Lm67oF^xSb=$P)q4Bx;1
zuUR%Y@f9Ct`LM``#XcPWz&YE8SACf8!yF&xirL{O5-6YN0}0atA71lep(wvD$kJF5
z$uLoV!)HHQ&$PmaCG0I-+J~h+Ec0Qx@82iwV~^AGQTdoA$x0tq#Y<QFuqMu_z|yro
ztdn60`;g;<>Vw}0!w0ty8aHQY0zbRN<l&?*OW+roygtMvx(`0#ykJgAfF5!^g()aP
zDu?2l<PjgD(uyhgo)4A}xx&}`ut~@UA2tf9@^<1>c{|`;$!-?p#PQ^Ai}3daxB9S6
z$bw@DIimle4?7rS{7CiN6TQ=iAAI(4)JHz-@?p0RdwlrJhl?`)dpXGTNqV3UAN#Q1
zhXXzw@!_Zs2U*L9!=g5SPe!>)iN+#3kuV*jV|RCUZm48Vbqw5+%}2pciYA@mybq^*
zIPJq3k(~3{UswCYhqIC;XQEn6@~H?f2*wn6gn7w_8#2q6efXTjhcA7&;=@%Rem<Z2
z6{l}HF85D;@J=GLU;A*4qt{SjoL`wg^SYSgUvJn1v)^zLiK*{=_+H3O!I*E{`VYVD
z!;e1v<g;I&`O}9-KHOn*KKvq*-+Z`FBK)4<uY#*LJE_m~z=uCX^1I+e!N%8%#Y*qy
zNq8(0KHvL~4}S^&TaXG*gz!_b34U<jn#YesKl1vK&yOU(z0&vWbii+aV~~Vdl4L&|
zQWWf$d819?tw-#Kkez<i@S~<5X?~;=-%8EzN0uKhKMMF!Q1lD=ac-gg6@?7R(psh;
zTNCW_%^!QD7WSj8ALaZg;zv<Gjy6<^`BB1;l718yeR672PAug|Y0)X;$HjLOSe<fW
zwjYWgmHepeM|sg_X+=LO2)`;{NFY+Pib$#nR*h@Ya`iZ8#ae#U_G6SEqy4DkM_oT!
z`_aa4UmvUIM<XHR^@TK$iVX$%FO|lAG!c1IKbrf|!jEQ>WfQ#G##${U+sbeMGlf|u
z%G>(U&W}NU4ECeFA07PY>qkF7I{MMckM4f-@T0RIUHs_kM>oIy!gcJD-T&UFj$OX%
z=|?X=di&AG|L+IGX`e;0cdldD-)~<D9N@=5Kb{gE)A^sNr=^GN-Vi^Y@nfW9S>;(j
zhWRmEEDwzfDIdXA&&`k53Qn;HifxgwlxAP>V~ih@4kXR=W2_(Jgin(Z!ywmqKPLF`
zq8}6enC!<CKfeu<F-c1K+0WS8=V1U>*5$u5ruuPWf7VNW{Mu0A1?1^sYGPvM3|3FH
z4_#gs$t!|vk;h<j{FqB?21Xi~=f|sl-16fGw&Lf5SUBa!X+K``<8?oB{aEkELO&My
zvC@xKek`UZH&XZ$pJje~@AHNqOZ@in8ykAlkGK3-D*f!)NNM~<#>~N))Libz3O`6v
z`K$NUnX9>o{P6kV_v39p-tmL)1Zh+dq6)4P%n__M$3X@6e<aL${P2oI7o?<VT0tYO
zAN3>PN6?RuNW%ZojKuZl?{?C%=?BpgWOEz**yzVTKR#xPIyd>T*^l>xzsqjdRVZZI
z;>QPmY!~_aT)9Fh-^LN>X@4{1!?@%lKX%0VP9Zz^I*A{<{n#Vfz46j<y<NGh><4M~
z`*DCPn(O^N`@nm~co*MyJLrd|B^>hOiO+RdM)-)}3q>7c8Y#!<PK}h~f+zeqDTJ2@
zC_KZN&Eg}<xWQ@i<18bOAJboRoachtlhNPda4kyx)Q<~(e8vFc$CrM5<;Nv%$aq}#
z<8%7(#%yvXc82^5X_w@RA9TMKN1R`a<SOU1k+Qdu9h9z#<hhlOZ~S=ZaD30z8n(ZK
z{jDFjucv$`c#~1_jP0L%vy!E^8Fd*R4HPo)6X(cp9~h?__}PzNxcuKrOfYbl{ZDn=
z_k-^`-J`>c2cBP%z*kg$quSS5_hvdC`0+a%<tp~$AL+)Qemvs134iRzUw-_}s6NRt
z>bkuLB)Qs1At&-(??IIkZ^-XU@)$@okk>#y11Sbl4ZyJPStkpUBnjcoWk*~RyV2}4
z@V4A>PWz8Mzkvb<cn|uezRtJDxpqu<Wf;gbP}@Kq16hV0A4(c1Wxyr8uz?~%iW(>`
zq?jP12Q^CwU;d`eOB*O-pt50qz>rx+&awu|8ORn%1wj@m2Fi1D8Y|>w8!Ht>-l?%t
z$-vVhtRj-C2C50EZlG$>%$f#j7<fw*h_zxmMKfunu3>-tp^Jg82I?88Z=ivJh6Y+0
zXl<a8fyM@!8fa$x8<`pXnn<@90~r9D8)#vmrGePbwkRQC5wVSdljRGvH_*XATj4Ke
zq_#6aq`aenjg1xFRXo{P>13d@f#>#TSFM=oTc7o0Uv@VG-3>lz;~K`XJ(<wMKz{>I
z8R%)C7d1b0_BPO0NFPB;_@YO@IHx~6Y^)40Fv!4Q1LOk*pXN9y3bR8b`>bKF1!kX#
z6K01>5y^1F{;cTZqs|dDD+)YW=ARcv85nIK$AD_!1p{L^?;j`8$={sk7;9hxH_*U1
z1LF<*3hl+xseE~aua-<SFv-A711}qxECa|{?((u@ih-#HUNSIEMtFwc^thA6_A;^E
z>njFk8CYw8?>EghFvq}~oKpjH8T<__Ht>dlR}IWJ@S1_w4U}%8EHJ<aDS0?e&MjIf
zTd|09iXs&sX7p~N)T*rTGeKo8WG#^*PDk~YSzkS!xzxZiHe_J6f#p&()tS1&z|tnl
zp(e`iLYXTK9R1N=cbBeb?3$6ehKq$=O3!=0iITsm@{R!_OV@E6_S*ZD<qH$t1~htC
z01X5181NdnWZ<#^-GI-)5gIh$H(+qv4eT%wFc37b$-uh?LI%PHEV`M2h=Hg9)35^z
z&j)#)7&|2-er~ze(_ywaH_*F8VZ@Qd*jZ!@Hye1*z*Ym>3~Vv*zVUx&l&l`J^8uah
zNaFVY6vZ0a$*D20-@pL_yA13$u-CvoX>N~HiCLgB)5ju-amq;!iowIut3!h9ZLH{+
zf#U|w8aQX*gcO|?JSoV!r{dPmh~yK&*cP$$yn&0-jZf*Zam~;Ee;qdTxq&Yz48Re<
zmj=FKd^T{$z!d{m4csvBjr5Razcz49s$Y*=V=I(@Yv4Nrw+#Fsa!PI*_+Dyp%ws3)
zx1}QWe~fn^wv9g<_{G2j1HUu=8@OlSS4N@#=+GK1+>f_N&WaBW{9)iPMqmSf$~HbS
z@HpNgTcJ+O{u43vPrP+nV`)MFc>=bdBnE7+$SX*aF8~Nnic5IqBqe~<07?f?CIDvu
zX#r#ekQqRF!1jj%0Tc`%f53Ja8jN8fG5)_kWCh>~pjZIKrApxdiUd$pnxGD=5ZO9O
zi2zClP)e%Dti_DPO3MaNE`TZlR27Bn04fAfF#sii@?!0OeTb1t0aT8+5^JJb0M!Gi
zMWOVhMgTSc)ALv>bwpA(fO?|CZp7-cw7yuQe>MuBaR9vo=o3Jb0GbBSJ%AnoFmN>s
zpmhLk0`|R<<^i-2(o&F;Rzg}gRoVv7E?|G9p^IR9!A^o51Um}yAg8mC*ryx13h(wG
z3A;zLJp&ki*x4&!pLUIq2-7!!eiR1mdr$oXcq)KrIQ|lI1_aP~O={*!*FetZcIVRp
z3<_Xy0AHNQ9ulyx9WgGEGw~wNt&<tga(+K7GBki;0Zd6ro!3-h<WxU!jtKBEv&`oL
zcs_uU0gU2kcX#p|u>82z=m1^_z-X%Qt74xvRrs;iaRH1E;F}P>4Pin6FLD!tcr}QL
z0Za;DZvguO_)+vHvlWg~051jL4nPZFS^$4FRpzov0Ck%w(*u|hz{~(%mh5c7R|IDX
zvj0?@^B>8p0nF!ot#rH-z=8l?3t(vg%K~^kfZO-7-Uwhx01E?HB-xe2?Mu6hxn2BV
z*S#!e-wfa_$^K7H;qm}h1h6`QHBz)vaFrnI#;U*lpIR{q`><AevQ9830F{w{t9`$o
z=n23Zz{UVJ1)#Gt5ob7nNC3V7{E{^S2nd;Vr6@~-!bw6xdNfnWqr!6oFojrgoeF0Y
z)(24HCC3IqYLdSjz~%t91@J)t?}_Ht02=H~V(FFusQG?enS{da?9Wuk&bZAF1K1&w
z8fOzI|0sZ6Tn^_FsJUBo_6P=#IVt%#fc;#*K~xRmKmZ5nKLI=m;7|aE12_}FC-jg5
zNk;^a3mz3b7U0E-L>8TpEXm0LP6<CP_+m5L)6UZWnGN9E0L};SDP5W&ofvUm5WE<`
zgCj|w2~v0|fXfVDpCyogE()Cv+MMaD0IrIJ{0jY~nL_e)0M|r#J%AhWQjVc7;9}`_
z0o)AWzR151;FgeI1%D8{D|nlJF61Y{JAyw8{vudmhus0DdjaG~yT6INqx9`T0KW(D
zP$Yi{QZrWcX8@1llE+*!oENE1{D;0e*yRW!C5VL~XF?Epf=CP^uVj-1^9iyPLS7#1
zB2O0n$$^B_Ae=$Cf+!rsE*b5#Aku^OeB~F+45EOLf`XJ65|R<*7Ykj?GG&P*|Bk#x
zf+!k9i6BafL^+yNEMBX)kPT-NN(m_&L^&a)gD4|}4>-|Ob`VMsm4c`cM0vrAQp%!Z
z%@n3si&vW|mE-aO>s-}>s2;??Af67QMi4cFXd6VkAZi6sJBS9?5}O54Cy2U1+!|E4
zQ4sZ5dM&X*5MK@|%oSQci08MYyfD@lHWW^I;~<&@(Ue2lTw$VwNaf~1v<PBnIJ;#K
zt;7O3OIr&s*j#B71pnqh(w@C)u5=EfOAsA`=qMe&eJY8mQxKDy+dqBi8br4s`UcT2
zi0-1$D~R4fSTkHb1bYfn^X>|JrSyq!^`fB(U3WP92XSYw^Qj=n7q54c4-g482L<hQ
z{Tw$Zh`~V&3E~-%P&iD;vw}l|Skl}MFT*7}La^o$J5Y=aVw7a(3XTrqWg#yFF(!zy
zL5!mhNE{d+#BYa_CQB*FgdkoNK9QR#MKPq!DUzKU#7jX;3u1Z@GeyE$Genu1RAV+q
z$X^L!mI%pb2Qf$Z@xyixbEW6=gIK^32%%dDuLbdX5MOXEWS|xX;S0ha#G)V;2k{0s
zHV8EccMxxKnu1s!#0qN8a4ijDS!`@)xDGY9-RwqlWn~bnf_Nv0wLz?okNn#~tl@fT
zVe1fo*y;S~R045b5II4-lIx5Wv6PbV^Dd2^*+TKq{iMpmW&DRY@<g(AL8=)+1cEpf
z#OWY{L4@dCL43rzK}3Ss9K?I#QPCiBgIFJgDOpR9j!|Q&i?|_(O>xP_AO?Npr10Ii
zq{kXtXG;(t1hGAc_k-9fMO{xNY!lLQr>*~C5IeXDYZA$4ZnTl9<t)dpAa;w|QNcYy
zd>q97AofajUl2?uKC~?y2;yK6hegh8-Mk5h;vCY%5y|p-xnn^b7k)zUBt1b|jNzFe
zJ_+LO7Ru*AoDJe!5Etpmyg?vHav_LMg}*-3KCof>EC?=Pl1p)&%M3DG>{8kxeig(O
z2B;8<g>W^9uY>p_h(Ck47R2=+ZU*r^UFA%|%ze%qL3neW-$)4hHi++J>fhp9)iQ&(
zg7|@}EQp`!inQ56`H|CfCV@+mv-wjH^dBlS`%4gagSa2W1F>+At}f))xGy~vgR$)I
zToJ=u4`no1mz)FmD2T^FB!}P#;jbY6W^51H!TCwtLV{%fVGKEJx1L9`iGs6sIw{E~
z9D>Xy38~i7_TH2b3WiW9gwzn6A*6+n9zp?8$S*iv)P@Mo)Dp^E&zliKW(bAj*0O}S
zq#_MY$!qtahzMKfvw86lN`&kc-7$ocA(RTCUI_I=C>=r>k=F{LYzXB-s2oC-5VAw4
zo9iqeLIoj;AgfmtQc0>XOP#uY``Dvu2-QSbBZTVl(iKOOt{$}GLrsy)Y-z{0+VRpl
zLh6Pvb*YQ;1|c*QN$U_Ah0r*JmXd7}LemhMhtNW@%|eJB^RNmJd;Z7S!&ahD`K*0(
z)Fy<sl5H14dm(crUUdi|Mi{a>g^<|I*;$aJONc-GO>`Vh>K;Om5Y~l|6GG1rdWA48
zgy|vlra}ngLKu2DiN~3JLwG8L0U`90ai*j{b$HS8K+?bvo(^Gn2qQxL54&Sf2+xSl
zV98Q4gpxZ&srf9eg)mG?SBd8=lUaUFBvg1Igy-XYWC)|;e6$dH(HJ3P1-T1mmGL|U
z2;oK9Y7WIqAxsQml4K`yw1rFwq4wDXZY&i@h)fO7CCmt6W(Y5b@Ja}3OM8d=+FDod
z8Ln9&%no5m2ycdPprtY=gjYkDFMMtY^Q3jk**epLkiFkr9Kt($oUaMKF1Rp+MM5a2
z!j+cF8zKDJ(q5!*g|IXPlGVh+Nz26GiV&6yVLzk8Tm`=^wvsF5+hVIkNJ7muA-qkS
zT$o3b){1;^E4v$2TPbP?ZuT&QgCS@ketsMqL)avn?`02#=ppz*@C)YwwkgC2At2;M
zZ&ombPzYfT;5=6(gs2emmOGqGBuiT<tjN*J4PkxU&W4bE7|#RscSG15!oCm=w^H5<
zVGF%_mgA!k-Vb4G2s=2ryOK7vQnrOa+#bRQLSn)X<E6}!?+k&+v`aj2Hy1((r<x|v
z8~3u^49Bxqv&cUVVSmUz47jp7FDrh(I`1L29>VW^onMA<B!r{V$<IPKCgfBIr$aa{
zoLg~1$VtIFt&}ry`MD52iSx4|JZ@#L<?|tYDq~K5K}v_qTD};<r4TNQgl8@+W%@jX
zFGP~r+OGRm2v<UUw%>VGHuG!YrCQrNh-)ES58;N$`wX#n9Q?@ncOl#i;ny&J3*-9`
zZiTQajMZWMK${`-4WnNeKZfuV<5(Ew!uG)4;nEHxZx}y^@Jk4HL%0`0f)xGAAqwG%
zG;u$K2lPYX16wP<hww0jKjK+RW=OAyk3wMfvEW~#@ONB|&HW?%9nsGtt;9<6g@Ler
zmXsMrQW(inR4@#O2%TZ1g^?mWRd8!-`)r6QU9ttj$REZ<5yr5S>|P6roeV+lUbDh*
zg;6++B2ue_V9_v&3!$}QLMli9B_$<WO0cwG89{2^>64rth7v~OFq&|{4=0rmqgEKT
z!>ABO#W0Sock)QPQW%xP;I{;;gi$q&YGKSBlJHk+rFs}O!XV+8)Ql5msX$4cFzSZw
z1OA3#)DuYq$+D=vWMgVnU}_{q<wm-ihS4mHu56`^(mae7VYCfn#O>^s(gF6N6(@b9
zi==g2(nbi)whN=Z@D5?HtuA7-qqNm2jLt$j@3SuvxUMDg(4|`#-NU@)WcRkWROu<a
zm*9<I_G3JK!uE|<Iww>Auzi5^981G^DvSYP3=HGxu)T8`9>yT4)wYfDOc;ZOGXe~e
zv7#NypXIi+QHBZ*6J+?}hKvwp8W}0%r7)(2F)C~yb&L+<g)qjj4`ECe$v8n4O$=ka
z@Cji%)VwJC=o$MMfN7Fsy;0W`Ayea77EKRhMi{S!@p>3D!+1GtA1%xa+i~obFlL7_
zCyZH=<!*vP?%9b<bHo2$k$5$X`C+g$c7b9+7%L7Y)jON8FpNcEEER*axmd`OFy06w
zc6h)L@n#rrN!^%D8d(;`^0;NzS`o&|xCLIES;H|8Lk+_n#yerGW%Z#6bkucW<Z!tS
zvOR&<yC`8I*TV3GaWITSVR*yP!&omaF>gzXFARSeMi@M5qLF}%NhpkP*giK5vhza|
zX0}lx)PLR;4Z~`qtZZYSGaeo0GMNn{Hw<!0F1N9FJsZN<7{;bB-VO8o6d#4LIgIzh
z*cQeIVQdNG{V=x5oYDc3+A2&WloPjy@nIM{L@g$va!ie6R~Wn5^AkxQhwX!qJ%W1$
zxg*%emF0JGFF@Qc<G^h{5Jq-edmIjjafAz;&d+tU!^tIllnXhG<6)c#<C3&;GK^DU
zd>Y1uFiwYYCXBOToTIai#V4{5*pph)+Xi8rkEfXMGqG?{kjfM?kz9`R&qbfYz(U7Y
zVf?}=<4%e`5XRSGTw^5X{L0$APEU}tct(I5oZocEH(`7$Mc)Zhev^BFIKLG}nX#@|
z#P~6cJ8}6>VGL<&Uol|%nM1esU!A*Q+zZ<m8QMkcakwAG1A0XSdIZ0R@i2_O5%i1T
zk1+lWqih7_B6t+W<1kVqa7OS~7=LqhN02vyCv++$^Pjk9#ymeEVy~S%k$=z1^GTKx
zM+6X_6qh6mnZpZ5aY_3$M_L5w5qoe-M37%dW&~Lg6cA2%!3YXPkRjP`*1DJ|B)UXW
zRIspMkqDoFvd;&ZibYUdgcJALl9Iwp2{Kzcf-=Hu9k)xfBTyn}5kboc%12Nkf(8*Z
zjG$r!l_IDS!L_5##vc1hNaYBsL{K$?Y7tbAVERn^5R}ML3W?-3Bd8TY?Fi~bz%%sv
z5j%+0ji6ox>v$5k)9G((pTAQ`O!p-2YpXPh;PbXh6IzJahjx?@n?}$qg615nQ%U8d
z^*`Dw<gFrT%~UOo7TQG6mb{(PBZ77jw2z=m1YIMj+)n8bK_?;P9ffd9$vex2lXMed
z_qYz_G0mP4^b(sfukIbO-Mfz<8|ojyQxQy#U`hl7A{a<{#NNR%H5uuebUNwj2nIzk
zID#P&JR?PPX_h`q<#x&lkqnJsSiIJ7A-I;v(&wZVl93UNvbV@NI)Vuiycod?5sVSZ
z*a*f+l_l-$_`@__M!3W*+u<il(WHod&5hYWJB3E3M(|Pu3nF+ef@z$!2<A$a8G^L%
zN(3|G{AIe|j=V9;vqU&Mf;mFYNQ?90ny(6(AHl>X_8#YT$-c?q6|yjbMG-6({ze2#
zgiwvfH~E}A{aG5pvIy4FD<W7P;a|3~CW5!Q91c1AoJ&|4!K#RT9L3`w;%ec%;QWq|
zuJLQj)MRN+1iTRKmLfF*DpOO7!1Esq)bvH*kKh88xmqI#MDSq*J0b|ur8g($MzB7D
z5M6GZy~M)eijfGS5tuSBRs>_^V2u92;6EsswIPD-5q|Q>xiNxGocCbXyMkLI*c`!o
z5p0QX_4^`^jVjf)MexD@U&<DLYNzas;G+okMeuP1yV$*^3A~EMfXwBvTl%v{aIYYD
zVf)3IdAf8cf&+|Q^IQkT0oV{{|8N9HA~+hsF%h1R;CKWlA~+SnX_1^{%xV8`%p^Gz
z!6y-%lcF~5?fn#uoQ;64#e*gCv~My#<+REr7w$bTMsO*D<R~0bT;>vvAWzg@m|xI>
zjM$wBz7q0H1m8w*C4#FFd@Yh2g4ZIrF2r**iHR-7t{r_B!A(XFDf(XU7NbxElcZN1
z5Nh6z;72L?DT1c)d8r=B{yBnQBDfpDJx2Hl9!BtMd=?%s#LaU2CfWOf>)P9kD8C#s
z{Sm>R4E_<Yi1NoAx-$t+MC~uB$hv<Eq5eN2Pl(#VjmMKjUW81HB5%}=2D{rU`JzD7
zo<U}lqWD!BS}?<v5=H(f3PiDBm@74kY6Tq5DAJ<#7Ntk+T?rF;!6+(qP>M!TOoWA^
z$cQ3ScvcjJqbL%EE3W?sf1nlxk;&fm98D@7Md>KYL{TD&l2PRDP2y$hufo}-q8QV`
zp4l3Eon@o;UBawSQp-_utjpU$;bpz@QB;V+a|zx{sK`D<vEmR`9zx|Pszh=2L!A2%
zRoU$*E^fl5O{gA4jVMm7$LaN`8AYuq?pt_Zp>`B?qWCL{zoV!dMZGBAk78>S^`mGI
zMW?9!DdUEMByFN-6h&jnHi@EnT;4Q_W^q2WZ9)s-E#s0_bhbDTcP-sE&f7)NKF&Kt
z(J{`~&(7O9iY`%f70J_442q&#6y2k^J14D26#YfsGm2hO^p2vBWIvmomp$wo#i$Z?
zpZke0_NC>ggi|;mih;r}O-||5IDK#wL!$hQHdaLOOcc*XF*}MmQ4Eb@SQIaC3ZfVu
z#R%GrTX>ER5a<38$s?m6a+7JCX|!ZX#zrwNiiuH766NtxOo-w|wt|EodL{R2ZR@{Z
zE;UwbGCgp8QSvEK%ovbDGF5856vZ?l(*<V;&Wz&aC|=>13{RUS66%vPk<5)^UKDRc
zu_TIDrS!G9&U_&YxOMT~z8=Lw5iSy39M?R2%=IR#Urc-}ilriqRf%<bSzNL*id9hr
zq6kK@I*K(>Xmm&^eLISEQRGDNP84gS_D65FEloMs!M=yiPJaJKx*COBG>Z?kxA&K>
z1-wz{A~B-iAp3-~#gSXm{84Ocoxna6DPYfRNQ$CSm{Ej<M+E;|Z=15{mi>}9NAVt4
zQxxl?*dV3vN;ftNr`o0{C?R2D$7p;DXIw4E2|BVQnZj+H=mN<<34Rd8c7}*3c0_TK
ziztenBHtUuz9>EtPUT%fc1N)%E_u*_50~0@jtcIN;((BYQ5+F+D2l^E(mN_l)TD&u
zm<X9YF4j&&K~v10j^d0IeH+CmT;^QeQCy1RTomU;ej$oa<8@<1>8N}r5)xXt9L48R
zT#4dp6kmw^%P7A3Ppz0T>wX=@HHOW&wd+D|aEcElpWKp6q_tP8^ZzpWzKi0flzz`Z
zC*+pk4^c2BS52cP(~puRxf8|DqVNm1OUPY87Tpu_YZSl5CHIANl+OPi#Y4&d5yjqp
z$$tue6vbl()q7<qA=1c`DE^5e+k#>t!9*StIVMySi6-)z7+_+ciF_ttqMC{7CX!4f
zn<!$Us0oLO6cgzt@|#FCQTcFMnu!IglAR`=>!_?Ak<OURbbVw(0TTsHWSYn_QOLxc
zj>^uCiaMldh6yGgJIrerCQfx!3Jd1p$81~M*UdhikhhqL;wH+O$Tm^JL`f5+Oq4b;
zESOIHCmj`HzSU{OGE#TnmuY295LsO@QQkyV6UVBjRWMPJofMr}v+PHUS*4O>$*a(2
zC%YTO`kic>HB8hr(auDB6SYj#HqppLV-s~ud%srSMC(1Sx+d?sCNo=4gyapV-$`L=
zD1=3W2Bb7G(ZWPa6HQGt<K}qMnwxl|lcIN0#z~{CXwAfjgVMHkQrejKqfI(fTOqV?
zaj@f8e{u&C9Zhs)izYtlq;z7hIxF2eD}21CvxzPy+P;-=zmrm|v+~mO`MaCwXWH}L
z!$eOLy-f5r(Z@tz6Pi1HbZ2EnXQj@XB9YGaCNsUT*!ieOMt>7e$%b4K`O_u_nRvy-
zEE9uG3^6g*#5fbrn0VI2a1$d;3^lR3MgHW1u3;wX_jTmfN#C$4`RC5cbF^b(G{?M)
za`%coL?cZ&yC_Vfghc8%UZ6jGlFl?nNYgILcoP#$OfoUq#EW#fvW|(;pA&tPKbe`f
zdwkmFUCC3pAzhT0OiVK|)x?-CO0`GnrLMZBi{{F?X){gC5FRXPdmtq*n;?GwQu=KA
zo{6O<mYJAqVxEatP0TlO^O&o^Gs$baC<oi5kC>3Yz{DaGi^a%mCSEtO(8Sp;|Bh9R
zl$>7l4HHXbj@~r!mJm)8C$3&^2XVQH6(-&`@eW((TpUZQ`l#F*6RX7RYQbZJlPB~}
zebPl)H>&Vj6YETHOB;1nGP>GrHJ^}DZeX&TQ)c3-iLXs~On6OfGx325oeRgrMiZM%
z_)QolEEBmV0w#hcA||3H9=w>|%wO{QlA<ALE-c9Gh^|V$*+m~TPBXbwOD6Waov_}-
z`d9OXx+)vEEnSthN%`4<YLBztHL=;m`zE&12M(5d&%_owz`Q&M2IRjpx+ryybya@o
zsw7pkr#LYU+v&z!QzlNE*kNL)i6bVCn)t}XE))Ar95DGK$RfMBLQNbVm9~c?!?4rM
z-rm$==_DVEylgjxrOmo2y}Bs}O&p@o#Fzb&V@P5*ZDM3MWtCR$IGdYpcV_0?<P#=N
znjo3{ypwo_i^as}CcfYdnmA|Tq6xEX;o04k)A`fRoA}hk1-kt&X-uEV_{8}BjO<I2
zP40rroZLd$A5TmElHGna<%)@?o1}eZVtYZy!2KzWH{{W~Derevu9>)Q;*p8RCT^Jc
z#>CGielhW_iSJC@Ht{3l<ivcRbW?7c_};{OiTQ7tnApvczB=VrH{}Ouj^rmhoTdlX
zr{6K*UY}N|yHa&h;=aDAcTL<g@tcYJCVu6jKAl$TdB=|n(}$n6{rrK6-`P(Sf0}qG
z##fFhTD!Z#R_ad3SGAWtq3&9a0o|3qO#IEjYa!FZ6BGZiISWq4e+zjmq*!)nO|+2L
zLb8QR3!V8aEO^cd3rQBZK*(t-Ms80oT4q7I!@{5eY2A~P;ZLdE%Q2?Al4jwJ4rwR5
zE9n;UTPR>*ad)Mlg+fB~?h3QpB-Qh$WLa=oC}E+bg~Aqg{g__FLQxCa=yVS6l~+^p
z_E3shc%h@?rj=gY!qlFr`)fIPOvuGj%0g*Y@1b;@Y6tu>7Rp*EXW1dTP7j5Nq`ZX+
z7N%R6Vd409X%#KhwNTGOB@3UONv~|7is)Ch&}>s$O$$#I$Y0Gubs;qbAIwXqu$CxL
zr?!PU!fBk@`W6~k=w+d|g@zUyS!iRSt%b%Gno!L`bIV@WO)ZR({(M#@eQ*zDcpJy~
z0_iO*w6xI5LYcSHwz`V!>0GY0g^b5pFHW=lxt)df7P?#L!QMWT+`&Q@3tcUAw9tto
zDb_k$@CbQOD*vt?N;eDY{Nx8MY~F5n+ThWpds_Iahmy9)>8YOfRh#^MEcE5}S{P}e
zpN0Mw23r_nflm08g#i`@T6ow)=~pYgP*0`K_Ht#rIG&dA86;S{r}B(t@1cfS7%q}$
zEey5nop|SHIbxTd%9Bp{M_71HQiT)cn7A#YER41=!NQ9cw)akX!NOPz<2WXi_f*C$
zOQ~8tjT619r!wBchdmW0)|zPH#;lad7N%I3B+dQNHjU9{&$RTZ^t$0`t}PiaS(wJ2
zUrH)5x9G*5%FjKOnHFBQu*Jgr7GAM1i@wBBvM}4i91Cw+c+0|E3-c^2w6Ms+s}|;4
zc%1{=OZoC)`T}XFOfTg%3(O{oFi<zGY_0Ug7VbZj&arK|C;1Igb7!Y7iIb%kmRWem
z!deT<Ev(?|U(WkdFXjEw`Bz$4ZD9?&G&=t(L9UegcM|KFd0Ultye$?|u9jPFmgLs;
zRnyj4$l+AdPA`R{`bl=W+X9he;<cb#h*~f?>=yhM42wUhN5^;aa+%k^nYL_9;krkQ
zMS3Yg3*PDJAq!y(BktL=5Rrxw9QG@mmW5mk?^@W*S?I2;x3ED<_x4iG^-}1f8!c?2
zd-SmR-Cjz*-byKl<2?>zy|jeoX+?S~TP<v}@Tr9h7Czv#TKL$)eomi-9TxUj*lS^@
z#ZRlH?3NhPsJHTw1s<*K5@a9x^;Y(4jw9#Fz1UmX$AHt{vG!Ej<(iHI3^f)`TR3Ck
z5Epe9$59K%Ec|`4z+u57($!A~6r_=RY3awg#5g`x(@u)~lyDX?QTU04vlh;CTMm{x
zJSv?bh2iU*L^DRPMZFa>E$uV*)513vzGcv}aM{8aoP7(Qb3-<#mwzrlcgOTk?is(b
zaD{G3?5$k2aC3~~8aKSR^0hRr^|t-?IwQamJ5K)Dq+H%Uw&Xi%TDW83XHM4o^zSYF
zXyGRdw=Dd?wLHjvsQ8P2vTn28f3oPzTzZsne9H8(9pD!Wcj?tXCpYM$4D6%K@1xwa
z@T-O2=-6VP$|S#A_^VvrE4jFui-%mN7XGyGh@B~tJTDiIS!$taE}G@yZw7xJ_UEE}
zF8*Qg&qaY;6wF1QTqNegk&BdESf8fl%|*UkAQyp(<yH)Fus?^YAt@Khxo9~s4;vj=
zC@(QJ7tUOK)<;RtMU`4<!JZE8BGYoQNBWjO7bgbTyX-ahix<j8MlMR^qGT>IbCH#c
zqPckY@3i}U6jv?^vnVBfcYk|tRk*KGBp22CDkRmPNh_9%;*whTwa2qmE=uR3TrRS6
zQFBe&<PD|E<k|;3+`*O21(7=5TWM|OC}mt<r9v($QZpB|a#1N4m2***#&fZtuTq8m
ze7Y!|^V^|LuAu7wkEyGGa^m{lYaiK#?BctNEi6-{#kIIQ6nA%bcXuo9?#U!0$!MUI
zQXC2tDYR%yp+yR`P^3uzcW#>h`JMC5cfR}G`|iAXmdPZUc$}Ay5*{3DE$nP9^zD%N
ziz})4Raa>b%6RB&MJPuZy1HmX=snEof$|<y@E}wrsUkI?lDp!b#2c-J=r)3OEB$j1
zDtS<u6Rz)&iAtwou4*3V{YXs@YI#tdI>DP(gU+RmQ2j!tYHftt9@O!mrw6?}sOv#J
z588Ur&V%|MH1MFA2VZ!QVRc+X4;p*W#Dhj2On#O~?*azaN+EK0b==^!aZUM%-P;Jw
zJ!s)UOAlI6SPAF6sQl8`d2iL)gEn+7a?Y7;oWA;Pk(+pX4?1|zm8*C3ppyq(n3JnB
zlhjO3l~qOJT{)d`?-o9g2R%F(bSLM+8Lk~|1Xtfoy-D|Av<G86=<7j04~BX$%!B?O
z4B#q*83$4=CY0)U8==eal(kh8hOn~!T+YwSCJv8yM=}}V!C&0kO+#ZwvC^%Md#nfJ
zJoJT0OlD=g2NRjBn;AQSN%oQHYZ^JHOl1ly(>$0;^SqAJA(KBk3vF|5%<y0)%?A%=
zd$8AoeICs5V6F%2J=oyEJP+o3u##eGCNA(`p$AJnSmwd4k#UO{7qjcy$T%uXXw|e8
z^6yAo?!lLQL<(Es!SgxE^iV0{bj0Fqg;gG`_FxSMtfk%_>ZZD%&2~2Vb(}4^Y2ro?
zNZjJVR#rAKZe|SU+2+9xTAm(k=RAKm{O?S6d9a6--PHc9&P1&{(AoB1E{xt!OWT7Z
z9(?10#{;hiK@T(!L=Su(jA-l32S2S!4-^kn4`dIvjBwgqq)+tiM)CDHU|qK8nQ^fJ
z59oavxpWT<T1V7lLX7EwMa_2OAUD9K)xl&1S6oyqeqq&kYUd&9#;WmV(fGsc{hIMO
z#~k(GTMy2AaDkSg2ghm2cyO8nPVioIlKJG;vFnqQ8kSBx<H237c+P{f?5Z-yd5=%!
zJ2sQr2^T&1-h;~?Tw&!BonVU7E!2`-g>cn_A3XTUgB#Rx53YOgBW*`bow4||ozSeE
z(<i;!38dWQ>V#A_&T;~Z3`xF2tIUg5UflKIXAgey;2!OzUc`9us|WXKH}>F-2M;{>
zje35p>n{&}_h5KCA<#~E>cK+~9(nMXGe2Q$Ki^qje=y(3N2kbVG=->PdGh?}!5ywk
zmkN~ag$FM=?ca>A82@P}kn1gHpj022{KNRpgZE70i#t6)<s+N_GDdk}<#3iptk=QJ
zUS#ni&P%sm9Ww)Ck{2#7;=M><GZSM*Mv7UaC%U~z^nwVPRI;~sI<S7Z_^e)J^P;>L
z6}+_dA%_>Acu~lUoL(e*k<W`XFH*cn<y3jR$i*agBy*YeLZvfK&MN0)^0K%gCMmxc
z1(+9PO!vaq&zY`NI<*%B7N>Fp3VTt+i_g3$=0#D~KV_^l*6D|gZ5=G`MF}rTdr^j6
zB^gV3vAeynMR8x@JY`v=;BrhJ?M-`#6f!G%@wpfEyr}O*C3aQ!qJ|fhy{N)wRWGVB
zIo&XR{5|JH3a@e3^rDs*by+8+wik7n@66@A4pMpDUTCqxIim(%G-THoUNrKeG4p0#
zG+|QqK}=KXigf1}rc|<ZaQgguT6A;vw(#OiUnfby4nk`$+IVrui?6(B>qR>+CV4U0
zi}qf0@M54BgS_a-wdi`Xj~AW1=<G!oFS@eW!;5ZAy3=4O*_w8Y`njRgbxF??dwS7}
zU0aVu_x6Gc>CHL_eZ8RT(tgwxEi(4^Vq<nUWgb8?;eq?+@$|u74Dn)&7h}B`%2h@(
zQr%%phEqTXVFV+IqgWixc(UYwb9kKBx#e}gi?bb#XV(PAiHr+72vexXzRx+&i}_wm
z^<tVA(`j^urcwNCj+x=bOfS?vPKH^mG)Q;6bC}QdVh4BW0xuSNvB!(OG{e1E?8SO7
zHh8gw&XFV6da=xl<zB4xVihZ2dT}yK+6v}<<|l64>%70CvYM4OUL5Zr(CghT&c7}k
zb}&QfX|Wr<*u>^`FE%sTN=q+i>`#rNws>*jWny$kXOy?G>&11~4li9^VwV?mIk7vE
z=VG69in&lWai16az0kbSy*S{7#|y~|*$b~1A_x1txZTs)c?3@Dk7Q`n$GLt}ya=+Q
zdJ$k!gTprMcP77km@~T!FYHJylXem>T9=HyKi%olkQWEpRd_Zp&k50o**xmSw_beB
zoGyKjc<~MM5fh^0uV*+$okMfARn!SuvqhY-?w#UHs*@aZ%IjQBQ8`W1JHpR0IkzkI
zJav&5YelRRanXzKY2J$HF5;3Gm%Yd%qVenaD_&fseVemU+8?~QMV;WqH7~A5j`$-d
zB=1igcEgLCk@(xwa*<9AyAx4}|LnytUfiS2--}mXy!PV07tfoy9((bG$pbHb^Wt|}
zdQ#4ZjE@-SKZ{xXEQTV_Wy2p{JfmPQh(D!Ko0~%VpI-dM3UN|iaJIi0Uo!UYC{Up)
zZ@hTxMFtTr(K+-#UVQZ8Uyga_#d|M4(AvM~9E-4GGgp*|XpW2%5yOOBu_8KiOgM}X
z?7H+UCSF8>i0mSAh{z}+lZebBvar`JA}Nv~Q3NHQ{4s^jiw=~PI{#TrwuratjhJnh
zoi<R(DI!Hgs)%IvhTE2ld2Yu4ZAo4c`9!3N&P*sHqO6Gg%nOJ}7g11zAff~-pNJ?V
zq8RhSB8qUT&qNeuLij0@=W@DJnz_iNQk>%{`NEDuNfD()9J}DWN25|&gq}5uPO2Qo
zR1;BMM0w^F=wz9EE}}(KR}~SJL{#P;2sfUvDhDhb?ks^CB5I0g!wsk<(!Z{wv4|!j
z>WHYzVnY%2MAT>AfN@Q1%GI|qRDNmd@*R$%1~+1zGB*{`Ohii&twemmVhcu!X-=cl
zA(;r3dYNNeM|4WQ&lNkeS!`Po?L@R^y`zXuB04aq1BGjK7STmSR}nua#eQt+<f&W*
zo14WFiNBxRLqtCjJvt@#6wymWZyLvo8TwMUeC_VTe8CSfq&#({(0hme)B~Aa14IlI
zF^Eq2c7_=uW{MarVu*;LB8G7nO%yR)M6S^(qeP5mWrT>4B0foWHYn1^h!`tkf(U;{
zVI1RlMl$JE{OnUMB2>boHc7-}5mQ7=6){c3bWTXFMSYXcM`F}2sk21PX4g^?b41Lg
zxgE^5n3Z{q3q;IkLgV`-f5fm*#3B)|I7$9a&f%8Ouyzu<eC<5%ZkdSXBEA%{Lc~fD
zYeX#Om{lTHGY^{-NrXfq>qTr3vCN0%K5P`Ri6*cQg?-p8VvC5|BJPOTDnjfe91`)B
zh;1Uai`XGzCwUviYc!EoI<sq+h}|Ogh}bK_M?FJhO%+$V4v6sZf%c2|VPq;PUYceT
z6EbubL=O0|lkiz*=R_nCvItc~fb~D#L@88pv74%d_9V2bhH65_AiJt{7D&`Z7$QBI
z#$|GTo4Lg};#CxV7!(qnkAx1gH_O3nhedoX;)00RGu%f+d?Vtdh*NAH74a>TAODFW
zFO_3#9%nqk*e@>eG!yckV{%5sStj9H-!VV`KgvZB-?Mp1#8o<d5trG#!bo|j;<a$R
zh@V7UkLXwbiMl~M<OcW6h(i1pCHW_c2vxjGOM|AmkN(2m{fmfuBHoC2E8<rgFMrBI
z5syUNXHMn=CclaJJ)$g_<bKTjxrjeSJYoKah^N$7;}WR~m1iP;DdX_J*!y>+?h7U_
zMT`>S$@_}U*AXvO`A5V%5!rmm?!$W#A4FvE!R5n85&w#a^*Jr162&COhv<kBPDo~4
zM1c>J2RlcJXC={xBp(ud$ml~RAKWZb{M|Xp;hg0^<{*;UhpdqdS(s1&HJDsE*i2^3
z$r#pCm{R~{qp6t7hupLZ3diU1A+Hbld`R=5fDh?D+%FWL--nZpqKTC5<zPV;i3mOv
zPj(b4pZL(cvp}SX4?~xxj__fm4@G_W)Q8V}DCR?XA1YA14?V6YmiE!tnOr6K&~)^Y
zK9r)<Jn6jF_v58ehFxVD%Q24bEL8O2b05B-1Nl&i#i~A3^Wo+XF_nF&!U|=eH!szF
zsNq9>9~!V&(}&tV)L~wWaaCubZX~{*4~@QaF5##II|~h2Z|p-8AINOP=J(vHram<D
zVfMqA{6*t~Gt;TiZJ8E6w4{^rp{Eb6d}!@MdmlP*tu~D9d}zz$IVbs;x!{BjQ5}8g
z<U>~<y7|zVy>#?0Oll5uF6T0d&QA%tvodN%^zEcHx|Z(cLvJ4j_%M)kcJ=k4A1RH{
zZ%!QDhxt-Z>(4sXP3+=qGJ|{=LL=hCVCubqyG9p*aF>`m%!lC|nJbI)j;13A)4+}L
zVT=!BeHhJ!6!MN^K0T6oypMhdiivDa@?nY(Q<+a@tUWrGst`_Nlk$)`!-ttP=+t{Y
zEbw8W4|7<b$2ga9I=5jybE+bC5f(9D!nm06w`I;9n5E3=c^AaL^kD^^nje+?Sn0zm
zAHMhDk`JqWsJg=K@xklE8XwmBu+B$&Na_aK_I+5-8NTc3{Iq-%ZT>#&@nNqITUg)j
z!ww&|GT+8XVP79{x?*QU+~vb=AHw3XE&`E#KI|uNX4e59XfwYPbed}Hh^kI+-!i*I
zAACNXrI|T2&F^zw!BrmuK1iI<I+Q5;p!h)XwAEAfpbwf4-}rFU2c2{uzVhL)52g<m
zwQZ&Apbs_^=k<cgg)`|lx;U>Cha%=1Y8dUAKG3B;>BsUq$tjHRTOW@3aEg*NaH<@q
z?WL=5f-6$|$w=mMEnKIW&$*QA42{~QToinc&*D2qI-T=OE-+s7p>kJ&#LGTh@gcJx
zS^T)_!w)_@_Th;S*L=9{!#y8<_2EY!exi+Hddgkygd2>v7;iG3NX2a?cNmQi&N`*|
zpSjjAj2*f<^ZdRK4}AEIx~Q---xAlvQTg46hpasEflP7{lJ^fEp3+|J!v`Op`S9F_
z*FL=Q;ZHuw3m;xG`HOK&lc>LmWOmW}pp|^ASFBI$Dv<fshkw}IwAN{xzhV44ns0nZ
z^rH{|`Viwstlw!;6k{}FpsO(Ro^x|4&JXyJ!4H=opG|i%<U8oR8GKzJHQtX*ez^Te
z@FSxiNmDbO=_*uS>bzx6B$M+L>E<YRx(cTZ=XOU{KeACCKZ^O0-H#C$GNk#D-;W%A
z<n$xij}$-hvYzTkE<bYnk;jkkZ%3WK9Ti3*R4a@`^7#?w1^h_&qX^e6$oPpLh5Qhh
zhhqx=5C8uRMLGYcjFhlA$CU7+BojJlDJJA9??-7r%J@;1m2we1oGOeJI8Vh$w#t4~
z@nf(bL;UplGOGE}%8%B5RQIEX9}WG^#S)d8e$<KZT7J}K{(fF`*jv|+dJ%7ZKN>Lq
z<C;^kkspoOY{K}3A59~X&6r#&6V;r=EYU64Y{^*Ebn3R@0qWvMS3lZPle!7*{AlmT
zYbmV*yE-xN$oNHlXIMM4o?~5NHzvLPnB2{o+uhmh;YUv<y%;;PtB)Uj{aD>i=;y~j
zYcdXG-k)&*W2l=j$d7Z=6X<5<)301Z{TSxQK0o&RF`RnXkJ*0A@nfVPqx_(^4^#XY
z?Z+5u)u7}Fe%$FMjO7-N_hXzNo142xdD~5(v&hw5nCQnOj-=1yQadJ1_JeTh&{)bd
z)sJa@O!s334QqE{7Iph%*GxaYyx=D9$eQjK>!W^J7d4m9Wwjq`{Fvv*d^Q*O=|79H
zl=(tG7WuK5Ch%eBWzoURu4R5K_hSWZ_>_>t$km~{(^m`HI-d--?d2@<RqWca!o8Ns
zHb1uevCfb6er)h#Bb|;PTl_fmF?M8kVH3v?p^97m*fBru-(IP7BZ%&q5ZU3!P7c_^
zxXX{-Oq`=Ei55yb3w&=x**-V!0CU3+(+`gyUYd~m69*qj7ya=0;rB!GBgio_t*o}O
z3a#|~&I$h85UL*mI<M|RsJn2V+e5m>!8#*FT7KAmoTZWVBShJD#(v|+Q9lmS>G++`
zU%v9AbFQSX{W$E$EBfjq-D>V3kaC1G5c!r#-I<A}{W#{waX(IQIqAnKKPvWc`hg0O
zvF{uteuk?oYo75t+7@V6r`Oz?xUe=ocg}(r{P;Xu!Hcvo{kY`EWk0UaglQL_Lx^wL
zL!c7QwxMOxz#hWf9>R4$ex#lWz#G6%e%$cmrHsF2WayTB(~kub7D~9~$8DN{e%z%!
zt+;!vgrEKR#gBp#1PS;2_|=a;X~p?*b9UT)KN9D=AJGu^5FYsP8<XD|NqOjZUNMP0
z_TvdP@<IHtwAerVc*=ZITI@3>q(5h342^$5O`?rgLM91+Qy=;fBOzA8Yd_xj@!pRQ
ze!S%lp;LQDtB;GpXL|j?e|IxJ`Vl2LbA!si9DKir5Y0-)p8xep9Gfl)h(u<PkfVF*
zn=#4ptRzTyIL=jo<J}SxC8S75m5?MMvxMv%vv+0eu5!pCAuF52>4@2w_uQ45gGo*a
z$r3hw=G^z*d(7Eza<QIILYjo!67sN_S3>We(d50mCjEEGm0$YrB{f|_Eh(x1VNc<C
zZs%I4Yfs@52_t$6pG&ADp^${a5{gJDDxsu=QWEIH$`%h2Kb7#AgkqeWYL$>sJi^!T
zNs(DvLKzk-N+>I#oP-K&mXAbwdJ6Z3rxQ}4BoshcSwa<w?((6%gsKv%NoXjck%a0J
zYDlOpp$>;phu4hcsm0`QPob`adJ-D2Szp41o&uE~6`Zt0=wn<=h-)mNiG-FCT5(uY
z3C$#Y!TjHzLURc%m=osj_1|bVX40DVHWI!{M|!%Gv#sQOGG(k!?;xS0gaHx;O6Vk^
zvxFWJdUE`SK5<<nbd}JJO{&#h!iL?>^}yf5lIipJUNkh+&vdmP4q)s{3HhL78T+#s
zN-B70PQoAwgV`L#I7Gs5CPO6*W0GZ{djr=RAz`Eh<)NEC>GmATWcLzAOBf?zXW7_u
zy@c>|8Yf{q4P|ln1PQa4Oq4K*$z%!Bn2>jhgsIHw;~_GqNAwvIW->3nCXw{n%;zx9
zjl|4jGM_P%>|P{cF-;5^Wo0apuvCI2!KS&o&Am**Mw-kLmb3Y#gcVFyN?0XfHFGhK
z6S;=@dI@VKtot85kOv#sq!^0aEMbcTzXXZJtrGS~*ehY1gzXY`u(*qH=l|5Ay1Ut=
z4EvaPBi{W?4oL7slmgRJ#R&H?@o@`f3Bic2Fi|B0m?#{eNzf(a{liU%qhd%fBk|=P
z#)KpslyH}}M+t{$%1Ox5Tlk5VEf4V-31=mIP18?8uU_%rNcdL5F$qU$Cs~<53eB$L
z5>7}sDd99%A##cfxwbELQz1ekk#ihyRiX#N<2woGY2mQ)y@X2=F4D;!%G69wpuLN#
zT$b>tmvDsxh=j#!v|t;?wrUtl0oNt`NQ<jsEGbk-xk0B{GXAE7U5(=DEN)47@LBwA
zKBGH~6!Qyh{t`Y&_$c95T0w=<ev|OKg!_CT3V6UoSds9M8X(~%ZQv3fv-n)XpAw!(
z_=DDLZ{ewgXOUWDQlaXk{3YQ92ZX&8M&%W4{v7;H!W#*1CH%wY|K_1E%0S9{u0rHr
z2~jfAWfYVVEh9!ol8nr<6BbLacQRbe<77a_+2yF++qu6Q&tig%j56j_a^4qE$t1%q
zBT+^RZs!ZjU1Ljn<=xIso<&Ah8L2XI$;c)nyNsMNk~v8Z8N>Lq*D-ILJSi+L;|yf>
z?=9qJC9jNpO!CN(*_$RKzl;Jh&P;PEc9@<1X@9rXIq~V;3<pNI1P=a8Mll(m$S5SE
zu#6%sek!9VlcOovncE$%P8sN(6k&08m0~QxSW?Eh-p(8=O})`KQ|?<agym$EmvLCe
z*D@-|s3>EajOj8ymr+SZGZ|mVsLa)C%cvuxij1l<(t5^MW3i@;>N0A`pbt-}&>L#X
zPo)+qeWT(JC*JNY)RoalMq?TEWRO{3MgtiQStLCiPdXLiO;~BlUQ#HmISqu2elq&Y
zXepzWj1Dq7%4p4zaeah#GTO*!D`Qp#=k=7z15VYR10Ih`>?EVJj9xN&%jhDbtBf8p
zddi>x@^+KaT}GKc0&%L_qK`mk_197PPq}uTa8v0cgYIDTrJgSqPlU?kKEePQ17(br
zF;2!H8G~gEmoY*HxrWFX%7<Rl&ACXXGK|gTeT0!RMlm15I9kTrwa$o8S=UE6+DG_Z
z%{gAi1j-|0iVQL*a^xiD;Yhl#^=;dDLNceacT*kr3>h<JESK>m^@EIrj>(JJRimM6
zHqC7rb7jnv@t}{ekoEa87O+W|j&!L{I+aE2a`zRMFroZQnJi<hST}ZsjFmKRWn8@M
zUL|9-jO{XZ$XFv|t&H_DHgM!RYQR@cXHsc-G1o>Jn`CTd*Jj4*eT6Md()v1s-m|Z;
zjZNZH`U*Q`?2>UnhDXM38SR$3_sZBOV-Iyg!1+9)S|ca<ey-9#-MI+d+gI?)5M}se
z`2SZQ5nb|Mr=z4u{^NZGMTROPAR{Qll3~lxB3^@u&iD(r&7=jJ`rjwrAsL5c`Yt6h
z^b-y;Qs#X91p1;NmHva1j>z~%#s%sh8AoM&E8{$;>fJTEY(L?cjN>v+(1Hr3P&vco
zB;zR=r<ru?CxpFc**r&cj|++9qQfm?{9eWnGOo$E6lwWo8CN3ws*I*1owaaX#*Z|~
zWjvAT?|yJY#yuIo%D5@x7Ol`o{B0R`WZY$QN=>J`y6thkdbA@Oeu>1~I^n$6yH7(9
zQ69+njd?iup^Qh741bR0`#+J$KV>{+{!GU6NKDtC{=0hri<KAT3OR><CF3=1i7E=H
zctZ<B#%u+16#OG&Z$E)bJq7P%yqEDo#zz_P3KA6jE8}uMAzHzT<B3rUx|uoYD;bn6
zMnSBCIK|m#Tnf~wE-=r)SZ$%Rt5eyN9~l*7Qcy%eQ3Y-Vi3<IF1M(?IQjl3eP6f#d
zvM9)^AUoH+%G+!<=CRG48Ipr}rvA<_QAuGlm*U)|OjU3q%30~T735((=OlNL{z9Yv
zLK>UoDySeo^8yOenPhI9I-0Wy3O-R#p;1&J)(bPzcP*&aoB~OoD)@}N3Mwin#;%eI
zN+~GLoMK8S*uZ&8D=4F&oPzS~DoeG}oIa=W_EqAcA<n2#p&M(TE2yNPhJu<3Dl4d>
zplT%BpKY9}wWC68H3iibTyEf8+sygXIlEd4YAdK4iL9d_*C;3F`B8kgt)w#w^%XQw
z&`?3{1MZFrIw@$Rps|7`3YsctrJ%KfX6$Xw_yr>ccZiK8Y@wi~0;|73oUl#A+m1<F
z1>rFAwr8b-f{Ps7SwR;CqZEu*(3NJ0f_@76E9lN)Jr(p~(nEoZt_Badsq|LRmqk+g
zD0rQo64vvyPaB|Mpn{<ahH=0k1w)t&W~8u`uJJ`8d4{t%f{_wZ3r8~lyT33-!B_>8
z6--euj>U<L;~6Q>1O>~Q(QiiFlOjs^1g9#Pu3!d>(;{uAMpEQV##xd0)>G2wDwwBW
zwSqMY<||mBV6B>SrGkY_h%Z;LNWo$SOIQ()xJg_}hi3Cli=^Q36jG>s$;t`^CCbKD
zEE~Hjl7aYI1?v=?Q}CUF^)%%aND5>H8x?F)uwTIe1)CLUhcawcu#G3l7RHK=uwB6p
z1$)>We9qY!b~4|kU^kOn(TP+@-^(VEeF~nyd6(^pD1HTA=Ar_hLT}2P7YpJ<s%CTM
zo<ci-f{=oP3IYm(3QPs`re5P(t^v-<)fE_Qrk-?_>zFXGwKH`s1vZOUdc{yVq~I$B
z$7xY3IIQ4n1&8W5JHQbI-zfN&BMYBNIjZ29;aXiKJ#~Okg_9qnf%w)%!6!L}s+?wW
zig9uYoS`Mak!KamW^$e;o|N{Zf}a#zpvlaUI|m5gE4W0fPr(&dt|_?6<OfE2O{cqR
zbkB_rLFGD&q})(&Q$du9Xce~<+*a^N!D9t?6x>zttAhI+`7`4$v=Mz8{kpuf-tW<{
za(jqBVDIlV#B1YzWBy=(@Q^kZz9Ex5P<TR{9yMFR8wF3P6BPWV;Dv(c984Mhq%CXU
zfBR&ufx=4#e=B$u@fI4D(s`gzylwiucgagQ?5%?L3O>-Q0B!ypwr`-|eA<%k{Q2fb
z+W#YUZ#8fx3H{S(jEYzlnN?&_5vKwwGO5lS$e_Z-Btb<y6B231ql82<vO?d4Ostjc
zR*}eN!}+mEk;u~ng{&&FsYq6lq9Qx%Im2O}Mdwh_uXJLk%1#^By>+(MR26wt<W-SN
zMQ#;QZfBo-$;ZmawFVYI8k76E99PysLb{5ADv|=o9DtzW6BT<^>{C%lMPU_{Ra8+?
zL`6{*rBwQN1ANNWiwzR!Bb(1u6l1eEWB*C9C78T;=PId!kPgwMRZ1BZiv|h7LCz_c
zRZ&hwc@C?f;&T<1R8(ZM0S8bF5mH7B5~`}GMlKb7Ra93|Lq#hUtyR=iQA<Tb6^*#!
zk^Tv_Rn$>&b&yb3rGIO6*Jr(+igDf2=)Ob)71zeNs8I68>}sas3l#(YayL=YlojIS
zC2ZM0vAK%fW85uNv}D)YLBiV$88QzR+Nfx&qKk^ID%z=_k9#_(=%}JSb27c9W2tmv
zv$G1~lryY%Q_-FEUMhMp>B&ej6cCQ-%?ec^v7d_mD(0z}PwiAOP{m{wQ&bF6F<8YI
z6=PKlQ8AP{O2tSO!&D5X(TQ_*hBK|=msE33r_o@i&qwiDj8;M7i#g6k$lqf!jbm|w
ziis-5GatgilT^Gb>rCCGo32cw65L3es$v=k%u+F($qYscps<-VM(v%`TsByktzr(l
z=Bfz)Xd-!!GdUNiSg2yXiVZXqIAFPoFI6n2CaGvv!P$YAs#vCC>tN@DOO0Eyf+JU{
zSj}W5<4Ja{QRy`W>r^~ov*>>30+N0WLAX)HCKWqW>{PLtt8AgPs&idLUMkyI+^(W=
zQRiBs%p%wDJMLX9lDV6D@|x40J*?1;h@Arx_NzFc;x%0&s_@XT(r%{WwhB>&Pen+@
zK^1-#5*@c+lBGgcp{Ou;G*!+MP!VL(|Gm?UvdIaW3Z2&75a;_9RET758EbMCA~r3z
zAp&LVFhn?{;wu$rRh(0CSjE>WzEyFIvmH_Kjf$f*2VO<x%jb;RYaToL9_(=yCsdqL
zaax5o&ABc*$yFu|5sJNvKf~NJf-kOyIFsZ%73Wp_Kr2PX1r--nTvl;~!@gH>vobEJ
zusL!{x72V~UuEy$lF>I=zpmm(6*pL<gw!O$pQz{AOZ+Cg)=Sy$sJP4gg^HhPs;GFR
z;<1W*Dt=}CcNO=U{6>q5&**`QZU_E*XGEN`J*3fRLi`CGMa5G#!|~5l{Ke*T6@M~m
zr=?J#U@C|6;U$ZIGm`R(2_<~1g5IUZ1swc`)`E)ntdJSS;s-WAGXATgcAWEpNHn`*
z7-Jceh6<#Ed4>R70mL&WF;f5u5uP!CLL5oDJAg#iU(Ze_GfMzj1DF!P)Bv&tkUfBg
z0W_k30CEOUIe;nwBnOZZz^4Ix7Jxr@d@AkX0elibt^jfekSBn=0Tc)zJ%D@xq;X7s
z#=OyK6kqe}L@Lb_+{Nxj6%2roVn`tul|md@m~o>JUxW$iMFUX3OD9r{l~MteW>P$W
z5|NmaOlGE}mSIvpfC>T7fyxF@jtTKc<r6Cg=o>7k#4&Za4TRyNhe=g-)nu&3SUrFm
zOwJUGrpQ_W)Mm2|W4!?CG9g#meK%o!HX8&my@GSfjRR;BK>GkX1TcA|yJ-Nw98F7U
z5#KC;FQ{Pwv<QH9`?dkJ44_p2ZP;wh_!v?2oEh>is}<EeLllv}9!9mJ{1u{!cMPCY
z0D}V<5<uqwx&$z>L#AGgT?6PAKzHU>t3;FDgLzNJpIC{R727+2J^}P)v3~#qnDk?;
zJyaOTWDp}|z-2f65|+r&0EPuHHlhz_GAe)(Oh!iZ5*;&9@aO=>M3fI{nZ^Y$K7a|V
zObY9aFAHR&U@DW@>@`%FMjaTy+5pxCFe8AO0W1h$VZixco>>9RXEK{{4kPJvnapEs
z`JIatdIA99B370Mus9OAgvnCIWsLNJ@|R3j1h6u!Fs=z;HIoTLokw|4$@w&DeE=H*
z*v|UK05&n%7QkjE6tk7dmH=waaFhAqNfhBdm(!RX0qkV&t^oEi*&V61hsoXmeVN=j
z(0(=#FrLX5O^O(RFMz!|_UZ5kAW?n|wKd2AD6~$4$QgthKp^0JPV_v0U;tVGmjbvP
zfF6Jmz)8+#GE%~$0ayXp0fbojDuBaG4hC>260?4G!q?1?Fv=O6A2U+<CV(y6C*QJu
zjPW?*3C0S0oO3@F!07<autMeqCT9aU$K<;J&NIo=K8XqiTnylQR?a<jI*lGva3z4N
zv;%BT{WX9e*mX02TLD}P;5wT>2GILgr%6<P3g8Bd#BFZg?EvmZlsinKhP$c!Oe>Mi
zdyI6wO;zp(@F0NS0(379Pg#G+NUkSL9x*;<%v;|X&_9@88Y(=CG-J%us8Tyze+KYZ
z051Y~8NlBG#07yMUIp-)W{#ROI*2#4#%Tf4r@8_B6Tmy>9|L&L<O3r`o(Uvg_}RIL
z3M)}Tr^@0Par3{(7{fd^=nOZBbZ<OE5H1$81o2_05Fdm)h{PZg*vuG2CMI-^N`(UU
zB|F)uByp|GjC%$;H<z*ok&Vswhh5o&AS97~<CYx6KS8_;A|;5_AaVtfJBT?!%nc$>
z5P5@W6GYn}@&%C=q`yYO=RxETqCgOz2Ju-C=|ODj9$h4eqD%?~Ap}9cG5jQmLP2b-
z9Zj4{VHU~U+uc!!oJo!@7DRE@OEH$<3?-S9ckz<MLJt#5vsoqxGRp>0E{O81P?9~}
zqbo#$$*dGa<sj+@(IAK_K~xRm)EDt}gQylnbuKknp-3v^BCHuiEzVFolCw?_bZBzb
zizpXbxf%x1D2S#(Gz+3}5KTB6#mu{qi;&9bwh3QE;=`xhoXr-DEg4%ewr1SqO=}lK
zdm4@)`m)j?h^|3&3!-BXo%kq}wsR0&*qeWtKqh7G9z>5IdIr&p`-=L6IzQat-qbt}
zqevqCg6JQ_q#z~-F(8P6L5vGxJa^-lwW9|GF*t}JK@1II6d$7J#MEI-hEx8Dsgz^{
zn<E*+M<*N|#F&UOmI-AeeFC><BK7}QX=GBvh)fA$Y7o<dm=OfIrg1z)QUG~pa$|_o
zDa;DuVpXT&>`4F53u1l{CxSQ`#DX9e2C*-Q{Xs0ET0v|LVp|YPf>;{Fx**mEv5eDF
z7p)3nc_j0fEUpM*C6jPR(NR_hu_mIdjgSpY$V+Fmk@=>GvYE-2NZTleQf&`n2kSej
z0o|i_{f~Ed5PO2y`#%cB9|*z|gdIdE2yYM~*9|aI5BQi+W<L{&Q4T_h=qimDk8dyt
zEeM^@k@|TFi$*vs2#ZO05*`fV5S!lwK_~T95Qo_eclFnt;mH5QA7xHCzh!bPh~rGC
zRg~~l5T}E<KqJNCnIO(Fq0DDFKZSi4#QFc3nWTIl#HAn}2Jt9}%RyWT;(8E2a>c8R
zG|7KpLc!OVP+w7pQ28l{8$sOUcCI>|NDaFc#BGkb6U47f?ndhV9K<gXeve7G6YevA
z!1!Abzei%o`#6XvLHy0igznLQ1o1S8XEbo7okdNB2$knS{29bwk<ok+$?!6wykdnS
zU(>4q^S6;0I+ypfMbloYA+LsyLHtWwdf!aR8lp5rYsjb}lZF@#H~&hB(*Vu!#!_T{
zN1>8|m3TrX1?t990F?x;LZ+K_QnE8iWK7bKnMoGLtc(<sjmi2PX*nWFPA1{BDH>AQ
z%oXwG)<6#mpo;l4q-iLlp{$1d8VYF63r%Sa=^6@Z_)J4FRs;=&G!)kG37fA+JMSEe
zXei3&ryAamjth%K{+}1uP=W&}c>hA@Za_&kOKE6oB{X^I&Oauu!uyzV8p>;^9*L}=
zp$hYg8a`)IiLtVVt(>IH`xvTKmBnfrhV+en9pxmi!Aea=GU-Rzbu`q~kgOv`M?DSo
zH7wPzOhW?=4K)ncFhWBk4UIK)(a=>x6Ka@-4xFKxhA%X<)X<8}<{DZsp|mF|BxZ>G
z;=8qmwyd{dq~nsSord;ohQp}A9og)}*f|nOsk$-mO{k$e^Bx*{GFe;S8H-*T!lbW;
zeyk7C&|kv<4TIREn1M{fKSC!Q%x3t|LzxeYM3Q%;hEW>kvoc!47!6Z3Ok;Dbh6zl@
zF^*>pr=6%_l7`8w&=IF-2<NA+pn&NbW@wnLVUC8Gkr?`Z`z+=(%2efca_o)d*trq!
zJPl8~#_n1eyFkN27HJ$8F<H#GBoaybat&W<*sfuRh7}qHu6OQYZPu`oV^(QctvTNs
zr5Els)Lk0ZX;{y$jkNS)VmHtzk9XQYcck--N~9mFZlc*<G@b~FTWDTs2n`dq(cIXd
zmz0ZjlXhy@rQrt+*EH<but$TULDjHV!#)k71|R3&&*;%`Ktt&+&ZXD2VS<+?5<e!W
zbUwTtp6=Hilr%gaCJ=d)0-0-(8PE{aa9YC|4VngB!x0VNXfQOG)FcfDHCP;MGrsBk
z-)Dt%EANnouQVLi@HM;K!=2kTiEG^zne=2ls^MD=Cp4Vom}43}Wg_ml=6qk2f-x}7
z?CV@ZJ}HV*8idl$d|NVHIIH2DhD%(9l<zcL&~TB>^Nc5^Cw?FCK6)8*JFk24gv84l
zuCREOTF$@Spt?tf3)eOLsNt1{*BXA(a6`i*4UcJ;({M|}uNv-axUJ!ihMzV3LW4Ul
z<}U394WsE!(dxlY^KQ0^I@l`e9w$FI-u>%v;Q{mC8GmD>uoryF4>e>R;dBL+C)DQ}
z{?zaXO*ReBII`u-sC=EGnzVF={;x>gml|GBM@@CM5v@(y-^3p}H^C~55Z=)6(QMb@
z((#XmceKOnh}Q9*>wcguow_c!({*uf2mfWgPIl)<Ju$kY#OjFCF+HD?oC<XOIW0P6
zXH@_5&NPnKk)R{9jw~FUQHPrexiaZ!$>)-&BT2`e%KtsbpxX!`E5~Hlk%LJ#9Sb<}
z&$7s=BOCuPywp}_LZ<4-rDLFuLha&n>&T;{8CS`xWBUl9td4Rz^65y^kzYpvb`{r=
zuA`uiB07rdI9M)r<(U*g$0y7S>3B3kD6E6Tvm*rJnVZCa$`wD;QA~%qIGPF_`ri@4
zu<6lMO6Vx5qZG%K(NSwqdTHiFD2&R9WR%xYftoi`sKZ!MM-?4ab$rey>6LU;W?pZk
zKxQ=^)pgXQY&vS_c)U7}O7nRsx7#=$$JEwQdbVSdxVmc!5vo#`UIld2*U^CUG}O^Z
zcfPtzuEsi==xECN2+mL9vXR2^xHKYP=nzK=&2_Y(5z)~~M`s;f_!L^}XwQTW+D1oP
z9qrh>GE$&#+&$?K-$6%59i4Q17%5N*pD&TFI=boTO~D-BT}RJIo*qn6M+roF=^#S2
z`s(!f7xw__$@q-@boA$#N}~iS<fR91ZXOsrNXK9uLv#$)F<ZwR9m8}C*D+DYBpoAk
zj3hEj7_TF1{q!PD-J^7j)-i@tjbrRMN*GHG=A4w4_ypZ~QW@1cusQ!^j#)n={m>|3
z3iGKtrqSHiF+;~p9kX=o7$vlC=?v@t6XK-I)iF=UdL0{d%;&nxbS$TNt7D-~PdLG1
z9ZOk1#z!Y*37aoQ2~>!Gsbd8z>vWuNnYvQP8XaqOtkSWXO8G<*snFpF9fgC*Odl<5
z)Uk<rV6@X$n{{lV*4}gP(y>*?HXS=7k=toe&?&H4W3)hp;=|@{7OB=AChbNG`*j@9
zanHc720S{vv~mq38aUa<E$UEp1a$bQk$sZ=j1r@)qfY%)g^@`1rLjRBnvRP)zSp61
z@~?Fq(P2;zj228CmJXXnpI!Tpq#UH<juyV6(>dop#GFjJhk01Xi{G6kf03L0jgDhF
zj&rS}I=*Exc93)X{e+H_Y<{QX6cZB9GC8f|&1m5a<I=4BfM4bmK;^uS3vANk>nZG#
zj>|e;>3FT<ijJ$)8#;c~@q><QI_~JWtK+(kA9dV{9OWk_HyLlxIy&tNKhvz<S*PW<
zS^s2=5dQFpl%HAog|YY;XE^Tbct~52jt4qE&T?kjZ|wb@@yts1V;xU)Jg04zl|LAt
z>3FK6183O0&pFlv=6~sUNy{WBUQlndvU`m1H}&=%=i?rGjPORsTiWmq#2C(I{tqo=
zI<Ag)oVMoE^!H4D=DK&&GZu+U`InU_!}+8ydaMv@AkKixK)iv%V+C-Y4r85j$-un!
zSYa5Oq$C)~Xdsh;`i){9OmI_qvM4dhKxPBG4D2?L#XwdAa}CThkj+4L1MLj7H;}_X
zP6HJUd~P7wK#GCS3=}hvY9N<^0tV6z<TjAUKwbm+3_N=m)o4KcyLVB~-$hyPqS6fH
zH}Jz8cg<4n>2us&=DKIjbr&=s7$`)|HXu!mCH)fv58g!`nB!hJ++D;#Q3E7?YJil@
zT#Jy(jk)gP21*zxW1uX@lr&I^31y~QrK!Qg-P8c8NSVtSC~u&GfzZ3C>+hnznHYQR
zT@+;wO^mH%pt6Am1{xZuVxX#lS_WzxsAizLff@#Ca;n4cqQX_)Mk-SEItJ<*s7IY?
z;QMz`l>8!l3B!e&+Q>j-11$`+G|<FAQv+WZXl|exWiI8WD%4SQI^mO|Lr_OiX2MoX
zT63GJ1KSvA%l$xJIw`8#!9Yg?lMGBY(8)k&0|N~VGSJ09R|EYxe>Vf&4fHb5+rZ+9
zu|2qZdm5n5r#y5}%G1X{UjuZ4;k4BAL@1!YfdK~SxD-j9N#i)!zz_qY42(7~)W9$U
zBY8}RbHhf^q31dYDJ>PMMV&zA7z1ND$pi!A42<Xgq)0jt;n7C9D27gaB3JLc+%?6(
zR2td2?iqAa%U#pBE**Wk0gCy9GtV?I%K#mP%-II!7@(um5veDsujU(AK#io^>;@JZ
zSY%)gn~NEj8~BpR5(7(_EDM`soqPK$n6F}-k~exKEi1kSy_)(nvy-#Y)2Ouu))`oD
zU;~G3HL#Hh-GJR}U=#DTW1RcmRJIuO(C=JCwy{oRJCpiDTsxW2LkURS!~9zV#|-Q>
zu+PAL>Qw`l0h{)JTI>ciju9Cp12PjIqo48Z>6{7^N*G|GGSbsZNeMD<vLaDuVlbMF
z^nD2m7*oP&NyxxK1BX~A^BV(S(eyCzbwoL0;A#iwF1>fG@TO_}QPx+bI(3g5IAP!?
z12^b(%D^cDmua|#_|pc?aM(oyXCrye8#u?D-fn!yWS8Z>5b=hU@7cU$fK2&G6s5Yt
z39r(`GjNUhb;chJT&m)HDoSPSE%(hxp1THaMfhz4cOv}mSmEag|Am(SAI=92_i2F`
zcw^wLf!_=~wsSr)oZo(u>vs-*Xy6f($Bes%B#`S51FyykPifOL@SL|?+G$@J_>=0g
z`GSV8c}Dt5IXx_$zM}AVB<2;9*NnNw3I8zZWTLZ)cLv@Y_+a28ZIUKFG4U^ZGnsIk
zh%ymvI<FToCR`@sO~jgrV+AHUwQ*-)-e8<SJh4k^0-F@SaGWr5oRHB3A(@FLl1!wU
z$Ymlk$7D5;%|w<+{EBfxb`v>FU_ffJ3Hqwos>#tu)YP0DuzQ?94=zYyerBAI+e97{
z`Arlsk(b2GuCz#=d`upW6B;x_*;Dz_>2$^k<;Od1pi+>%^f1XnCJLLVWumr;A|{HO
zC~KmeiBIXzUrZD?QGz4ej2DWT_^Y{V=6HJYr*p|s(xgX}B$Q@vDHA)#3pY7=8CD8+
zPbzPsf{AJ-s+-QQQ!ARNWTG;AKR5AeypU&t)0iqIs#50d&MSDO3G{e#=bI!{HdS@r
z9M$0XnvCrx2z5-<HPOOEOB3}>)Hl({L}L?ECkXv}#5UkCs@0H5y;|u_m^3r-ZIbiL
z?xv>mJY@P&<QFEIn^-c_x!5?s%^=dsL|YT>xJqjp;vd{?7>x<emsQ%E=)kU+DY1V~
zj-~jHCg}GRcP9v4OmsD&n=nlJk}$fPm~Uc%i5@0;niyhYsEJ-CdUN%GgeLl$=+7p-
zDc*4+x}S+h1!MQ+i+wpk7+~U9c4wyLpXl_@APyVMSbCx`%*1dLlT1uDF@h$QiE$>z
zn;69bV;Dy>QkO~#(#JBVJk@UGnn1HI)yX{3L@Q1{Yj4_siNX}>Koc`f%rY^J<7Y%_
zO*gT*Ng^$9s+E_&em~p9920XX{+^q@ACjS6radj(-7NP!uJX#Aw9v#Nnhz#+nOIDn
zY+}8M4JMYFSVl9!#A*}EO?+uW=o`1v#0suhxIuc=^wh}{-78P#&Rw8j%e+`)VlBJq
zL6q6O?#0~TbtXI$g^Lq~jV3mk*luD6=h@7WTN$^QpiT08zxZuz(kE_#+3DeL?9&k`
z)ov4eOo%3YCia@xXTr;o`xy_=A(-rWoA{Ow8a+waT0Wl2s)SfSyA%^D6UhW+mQ56#
z<P288L<XK4K@)XY(Kw98qA#1KiI9ndELtXPCZpMP$i!DP^d^o|=bUvN=0))h^RF3?
z(6Nd{k&DVvR=%Y*%L?HM6DLia;#$il36%4+iL)lo(K1YnI%DE$KIh}n^RME+GeLNP
zkO{SoO!89LB@>rTY(0!^hjE3fn3#A7lMdkr6W3@@2;s93uABJL#BUaUxA2pR8#JI6
z)>ybnojFM;ZlQ#QTPALsxMSkVB;lEf=O*r&_}RoSChqYmKQi$vPa#@aznQpi;sNV~
z|8j5qPF*@#pz@Fjz0f~4@q}Yuu1fgBq%SXJqVkkiG?72)#A&0pkZ9qBiI=opTZpmn
zH*Gbvx0`rx;x$*NVR}pRaB}n;6E!D0qxMfk-_z3dfq9hWER&Da7&iM&7M4sFqGma_
zcj$%;VXTD=7F-+_#|XyCm!0h^o_R*b1jg%A(=#z4@9xP$l7-9`@>s}gA&Z5q7X1?+
za$3k1iOFu^Xa#4Jp_{IR$*iYZ$VFY<C@RImv<gmRTJo1;DJHjtd25|5G@peu3xzBc
zwvgXK0Sg5!2wXkg0zDs?Vraza_QEF?F0V<ZqRxw(x64hW2#0-Y;WKs>WxP6BC}ug&
zHlgPQQC%u;2gaAQP|Cu13ll7qww%X+RJKsXLK)6bma&|L@)jyssK{m|3x7=(KDR(6
zoQKTYgJS6S(N!%}v(VW>7Yo%b)UeRZ!WR~5TBv2Ap@l{kYFnto73(wBwNQ^q(iCR|
z={tVIVp1EhvapFW1dW-~Pv)C4X+nL%k>sLpEH}5%!a{2cZP?qAv6Y4JV+ZJF*Z2=n
zZ7sC3(2-s389Ojuz3${sQUAMh+lj@-Q-rP-x>@LNVE`-LE%da|%R&z}2h?<WuQzcE
z{aESCNaE2Xr$gu&(b-BkWT1sX7KU0FW?`^}QBwpeLoCqCZkSWda0??WjIl75I-m25
zvM`z&ywYjg#3e2>vok%GPZ8+b)I`Qv&W&RK6z9<;6D{X^3o|XuVlv6XWD8T6Pqi?e
z2?b1JQhjye3?_;7qe-MP+rko7=2)0ZvyS;f#`%mCvw+E!DZ(NqizE88DbAyJms(h6
zVY!7bBl=1vE9e}vq=t{O%0kAePVia_>nwz5nG8=^Z()N4k%KqVWM;CDakGW(OoVee
zw=mgiVH=aNC7hP;U|xNyu+zdW3%l9eV}Z)vh>N`8qwi<sfCUc|FC)30(=)d$_}P>g
z4GXdb#ez!XK2^{nkpU(_M$)P191zZLTCmt<N8%~-K^h|qUs*WJ;!hU7CSu`?g|pP)
z#c6BK=K6-V1q<J@dCbCb3y%{W*9i+JEu3P#QZsj$oVGxmydQtaN#vY`?=1YlG3OaC
zGhVQ8k;(TKE-|6tl7*9~P+cllEL>%sc(z7q*O*_c6MNmlk9>$l&Ev^+gI)q?=eKa%
z!UH~qI~ML*_{G9K8u48J&7Yqw<o+v)`r%g#_c@Hrfho~pkuWtWiM$UjJhHIG##S4T
zEj*!p#zq+%e^_`*8EoXS@yx<=+T?A-+W6DL{Hem6y{R8*pP`ok3omK&xA4}&KfFL*
zS$IPY=6`8<&C2-0&gEY_SK2!Z?`f-C9{0hbXP!9gn(*{bQKVC$oc~&gvYoX#W>Rdl
z4MHkp#@WbhBa02#$Y8_8F&S-SViM1oz^F`hwkfxbBsPgB+6aq8sARQ~ja?~>*%@=%
z$YCR#fiU@h>ZUT!#Yis7kk`h!OiA<>;4>TfSWmN&-v&JkqJRy-#wRSM+bGC|+Hi5I
zP>97MHi|MSY=cB{QTf!y`q8P)cg4O8E16xzIHtIb5;p3bc9&!`&orSF4aYR6R#_Y6
zY%FEHyp0Mr2G|&AqoR$^Z8Wmc*hVEAm2K3tQOiaZj--m!Y*dZ#mpM?KIXz^r29tin
zQft!@Z8Wga&_-Prt2a%oZ=+tMRxK?XDef_`gh^v!YaMcS!X`GF+GuT~jg4j;xu8aD
z3npJstLnx!XI^%WGZR`eZ$(Yzb7^a%osAwgdfI4jql1kuHo9_5M;o1NbY|XcnsDH9
zV!vs^&E08D$GE$(IJjnXcN_omFNuogNTU<!#d=>G{cQ9mZe#j1VgEJvAL&UK3pig_
z-Z@PmZ+{y^$Q)#2u#KrUrr8)`W2lX>Hpba#+dF<3ry6NvxQ!9a&1u5!m{_Vc%EoA#
zpDecH$LW)JX__#el}U`GOt3MLX6$O`rGdUZJK4sd!A|ul9PpYOFx|#18?$Z9U~wiR
z^%#XwnPX#~jrlg_vc9FIqc5<rkj=$5;<6+zB6G5H2;$*dOW2!zy0DBof4Z>T#+No$
zu(-y?S{uRB?v*xH*`SXgS2H&KE*J52G!<=Z<VZ@j!3JH*(oYwO6K<k$nJ#ROc;`(Q
zw%OQjBWDQ7A?%<owQ<76NgKO3Mzs;JvD-$m9Ep2u?6tAa#(o=q8<LF!Has@GHbf5I
zyCjy%_UEZowk>f^)5kjf3#V)&wN=#3X7P#*!jx7{dkE>Kagf$sdd83q&4$k0V6+%b
z8!c1NHU&1D%~G7;gEkJa`IU_$Hojqg*v8jPDB!^3oJW}-WBitpL~>C%ZaeRKh@7%<
z+NOWs#v>bNY@DUG*|<fUgN^TOT(WVQntd_DhUvn28y9H3)BZUj;d>iXTDfMAasIiI
z%Bd-_S8QD6$Qw3(uyM`CPi*F1;<|2Q(UjO9ZF*jPYUitogj9tTa_ztQUxwQ@ez9?n
ztK6ZcGNHdZ{h4d&P2+#HVNVx+XZ^m72b}Xa8x%m^AEyi9mQdRs+jwH*t&M+Z|F`kf
z#&g>6ZG4<APzEZ`I90ZPa{OiE1t;8?$^FvC-^^b#Qd+rd!Yk%PDES+1$vkiBI~(t5
z4-X+j$my96v~q1kh44v+f*)xn@ZZ8lvnw`)RYj91CWg(G{)9Ltlw`q$bXN%RAtbRv
zF$p2(MBE`zXJ!nc_Yzkoc8%cfN@OpE(Idn&vz~=9YY5qxWM|C5NMZSBI31D_LRwgf
z=((8W4k1rO$s0mG=GA97|JRv6gaT})hfpXIQ;><k_(=%UlVP_>D$HgPMly?rFe};V
zkYXVer=@fdDF;y^gpwh=58*=yr9vnj!Z#rt4WUd3Wkcv6!hjIUg-||(b|L2#vqA_J
zL#Po#%@95hp;E}Xpsf;e?jBSQIX5cla~a~zW;j>5RYRyo0sZ5vQ|BLck<x#LP%DJm
zAv6l1F(<4OLIWmsL#W53eh6#%K|N#nk>d?n6nS%N5<=4uT87Xngl4QaXZ(VZnm28R
z&?1Dnd68$c^EqSd5ZZ)LVQ_rg5VrLCZ?9WBL+IWqic0$sI)u<Mgic(&M+lum=n_IV
zHn)#=b!Ad)bsTZR?jam{;arEmE{UEY^rAUH0U`7ap&v&^l>$YsD3eIR6jq9Vr!z2w
zK_SczVNM8xxuZsfFgk=GTxDno!$KHN{lCdIl9dt6$!u0P_1;9M&8u2u923H%5GIE(
zHiU6BX<K9*AHoDC#7FH*n8^It41vrkAxsTnMhMX}g=ut-D_!(Aj=#?kriXB8hCsiq
zJG#wHUv8O6?fKg^D})VGQe8J(b3>R%yK4wLLzo}J0!kRd>JS!ktCobYG=xPVEDkxp
zTB5g{v^za5j%DnnMt&K>a^{1ZI5+xMgs_rLdK6glOo5a&G^}*25H^Oej$P{+!#{zf
z0D3CdrVuuVu$}cSj9Ww47D98*Krt`0)F}~ObVl5+5O#;)4?zlHPY8QMI1qv-gne9>
z;`fvC)Ok6se%5)X>}A~-@rvY)WUDnlP7Xl{!3x0+K@A~5D>?)t<ov!h7=lLqQxL~F
ze&bN*6_DO&iyflPNVcJY#83zaLpU75*ECgF|0?2rK2u1UC462mzUA2e-gh5iSLIp4
zw;>!0;a&*8hHyOO+&jG(!uKJZ2;n4~r~Z$s?|_n`_`cqB*#&0FEFcn=1_jBIbC#Sl
zl0`r=N(RX}=bSNvfGDU;?4H!q(<2BdQ9wW>BcKvQ`Ci|#e}BJo>fCed)~i>!W~QgR
zniwTUWMRIXW{^)EoM0YB>?potR5Bim+mud-l(xp`#8I3)ii;Fa9mNkvai07~+x`s6
z>7!UN*s_;!mdZI|qgl!Y+wv!paWuPh6qgzOnRvyvS@Ly(UykCsM33UpQT%!oU9vcC
z9K}uP(rJY{&Qfk2{r4XGJ8b)H;<s;Qy?Ye*j^e)ER}YTLIS<xuBVpPsYw~ohkofyi
z{BaadWWDeRoj;G_@lnVL36i>NmVC3cR?1VE3`?vp{LhZ!FBuEwy*o?!M|3_L1*b(`
z97O_&@I)t)Y@SS#;>3nut*4o?IFaf^n$tRsIfoNDNwPYTjYP!kPB?6yPI91grs%nx
z__}IxZhDibggi{m>qI`1{C2L~vz3BQ6mp`m3r$>j$%(>F_?%Fkc-e^}P7HHmxD!R4
zDCR^5CptP&+=)ylYC2KNi4smIPLy?`oD(ITDCI;MCtefhPOJA`b)vKr6=y5+f3dy~
zuRf6f=5UL|kMHQnyP?WEQNf8SPE-|3Cn`Bn*@@Sk=rvoJINR#^&BSI09P+ICr?Zu6
z^elRHC(h4S-X54*!-+p<EBz)FkV}8Hov0&iaiWP6b)Be3<A%ig#0E|*zMQtLN_zY;
z!$wZb<x9{q`{!utL^CH^)9ejm3nyASk!Oz5oYAF~9j!>D^ba3ce>QDcoY}^SwiMeD
z+sh}~>CD&WDDr0HwY{=;a-y@PV~`VFoapMrON$fxInm9D?$Sml-gKge6COTj+0%)i
zOJpk{yKZV)qd8XFdpoUvI{HX|{+hr09Hp<*x>)z5bejC0?JqrcFV6reeP+&qEc)r$
z)QNMHx1AX5#LS7w;q>$&QvZutBn)+8j*=AT?@(MiM;YP7NGG;CvBQZ`PK<V9z7q?a
z7~{lPC#E_v&53uNc+ZImPE3^gmv@YF;;T7|Hb;?*Y~xwzo;k`Sk}1T=#QTS=&%PPk
z3Y?pxyzj(xDP8*6i5XHcr*-;bvAN0*ZL`f{>t;J4{OKG;TDt6yEF=1+&vT;wTxIBx
zR8iz2)j}s0Ik86CE@S7!5+_!&l%>SwG7VN+lWG~G1LrF89?TVzWv<nMt0=B^;?P`0
zj-R?PS6S!8dWu_Ql{vA|iA{_)nV)<;!`f8ekhfS;$uiIKu$6pGL&r9mnfp>p&r^0f
zvCD}sr7N7+?Zh4@4mfepi4UCk(20Gr=$u&IEyqVreB#8X%>FU4t~kt@`Wg9N!JMfT
zo?10;%YydH=<|hf@u$DPpxGfOCN)Vu`EsI|WjCy?=CBh-oN&vWku^@6Z=Cp6=55S6
zGF`$^CtOaf$S6_pc&5`SU$-&`(EsL1DLwcsvzNJK3hh7Z(46o)@xqA&7XnTMow(@4
zB^rdBh&l0{6JaNGDiJ5%pQl8f2rY9M#3nBiOzGQ-Nf$3<-YA!L%!%VNnoj)a#P`gy
zY@TwG<b)GHg;MUfOs+qpz$qEu83p#vQ%*Z^#wl;7a$KOzS>icjWS(+f_M(1PlYg71
z{NzN#3yv3gkZZnjSvtyzhfX|l;))Yjow)799j6?^nQ_gD8_fQT6W3*5%9mb#Mar*E
z`O2Ltyy$#uKyT9E7O@JIyW(v}>Tgu;IdNZ>=V+_kp7WIl6lJfFdHB1`mUStQop>V4
zVZQQ*^i_+rKV^WbTI4A$N1jiAPV&r&znsW&1k2|uBkL6Xo8muCNH{mZa-Qfyk_#nW
zDCI)33n?z7yO6_$Z{{m-S!*QCg{O@&vbd1yg8O)y@a#|1ugq7nx*(X%h3qakTzEcT
zshUu<V?xnF3#=m+bGneng}g3n`^`nnP283T`CQ2F!pklcaUsKn0<zn?P}qfnG$`c4
z;@>hQNLNT+A%f@XL4xq2E);X2xC@ysR9|3qqlES(C0wYzCsQFxl86$0#f4X0s3yiP
zly;$vOHR%y`2FCt*IX#;LPZxUxloSfmUp3o3-RON;#gYFNS9Yx70X`Pg(@yobwT*+
zM0q2dka!TW20hdz)?@{03A#{+N*v>rtVgB33k^sby3mMZq}>)FO-0F>`i=|3TxjOP
z8!j|=p@j<rT#zU0ThhLh3!SAcF0_{VxX@O5?|7CD#CF8?#J-IaL>KJH=zPADrHcz)
zr9-AGeO&0~LU$K>x$ve7k&^{_xX_d2YK>%R`_Dwt<D|C>qD%CTW=dZd`nk|9p+tWd
zW-U;}+l~d+@3?_dJr@SKP;-i-#G>qPyU@68+F%!k$cX37G1LWl*Jplt8ED=d^Y1x^
zyD-9qaq%8-;nWZL-zAPBjwX&FO43*t?kbkedoFypKoKG+l^oCP6I_@`B8n`NDK1Qv
zcDeDU8`E5P--Z1y9B^T}H2HLv1uiUfVFtNGXOhfvVK&JeTc1lZk2v3ju^BnUc#+Ic
zDmz?QLbA$*)g((@SVpp(D8?&XSZVVTPZQSIe6tH{ZNAQh_2e6f8(r8$^0ih}f;f?|
zh00c0k0hdOCwbH_b0^6z7j~2Eap7az<^vZ#wE0J}ila$!Z=X>7)P>Jn*z3YR+val@
z9%d;Jw|THYIq1R{F5GtEjthre_`PQ4F&B=z@TE&mCBk7Bj>uGzzP;l3n&^`Kf#e$(
zzI7q@LPf$+7o0X1OOFd)+Jq?jT=2_=?}AEEEHx6zD8@lMDqNDnc9PD#Vrfv3)Tj$4
zd5riSab|~9N&4P}6E0lm{69&QS$aVxl?y*G`lAbHNKV_SOIjzNB|k?zFC8^CS-#Rp
z#-CicNbwT!stcD%ekNWaR$ORVULzOs3$qLP)mCnh+;rg<NekM`yuItfU!24DT)6MT
zZ}xot(}f2%e@OC3hQozF$mN+G36fpHV;7#-mQP)HW^;K8>A4GkyYP<-FJ#|yqmmm5
zZX~+#k{gBHNOB|DjofbJaU;bIxaCYjWOE~n``=$5X>O#Fk6vgkI=P2gE}3R`!{J6Q
zH{^7MbT@L4<aFagGslvSX@a6l5E4(y>qb60*|$*1??#3j1>7h|<;_A!e#g32Fm$FP
z{?~9JdfT{AdD)Gg*BvF?P~0fuMp5eWR?}i`6ldN{Hv+7cWEWD>jq^PUzUoG4W-R5#
zD{fSsnS7r%W!!kpjq=P`){Sy*$Sq#Ex+O>vLd3(ZN15Whf*U7K6_CnTcH?z7-f*M2
z8&$-Q8+F{M>qa#<s=HB(m8n4#<C<<rULlW(LTbAqT*P{A)OVwi8;xn)z>S7>uK#9f
z;zm=qJj7~ssp#<}L8({^H(I*U&W-l0d@FixO)gz0_HD@9veiT0cXV*0qZ`AE<>>B4
zCpS8~(bbJ^ZgioUIJ{m7ITl%?xx%zQYU8DdeGlg9NwboRl-_Rik-_qyfCqiu=;wyd
z4b_eQZVYf^og3@j7%0YWEO29?8-v_<+im^2oZ-e`H-@+|!HtP-45c{2jgfA=Lq3c+
zocP)?>#z$6quh9p%4j#nkc=h1D}@%aPWA{-w=Bm|98Z*}r+kh{<Wp^BvKv##=NGfi
z*_cNDK5;s+=OXJ~^qJ(dh_l_8<HlTaNt#bGPbPUst76;h{`=c`ksC|gSjyDJZphaO
zNtLjS$|~Y=H&(b&W`b4Wm2RBAWc`j_%_Jdf+*nI~PqFH@!Htb>eCEbp8Fx1}GwDM&
zwvcRfW1AZ{zDpHL3EL^|c4G&LC_71ZxiOwC+QaAvcB-61@{!FycH<NBPl-!tFCO+W
zdPLBT{cap!^h@GF;upk2M6vJQ%JCKXVdADts}&m;DPOzsjT_&(ag@5-ws*SWvU%xM
z4iCAP_*MaHG&MK;Zv5uP16j*%1l{=AjVo^JF4>S9$J{vXMwn5Z7;(dJBT6ndF`1uB
zQ%yHwi~c=T<2yI9cd~A_{N9bpuUh9SoOR=bENVAS*||=;@q^8Ol-0zOD9%uc-{5+V
z{Jd;vBtN-vNv3)e$3;6=^WGVksf_#HA^KJ7cZt{B_{ELu<hR_o?Z&U<H)t=$H>LDN
ziV&&W9XC8LC)Rm6QQqew(R;KMa-T%5r95=wk?g=8q<Qc=#edv*LGp(ie@f-ucw*=J
z%Z;Zte@1eDk@DPD{&pk(Vyl-DJV^9dJ)DJ@<iY(u);*}njHVDloOQ>l)iB<)oYjMD
z9^|GjVs;O5kvoX##2mz&M6uc5)XLs`v69DD@{;89$g_}E1ti=)nrGX{0tG!7?!gET
z3VHC72ZcTOq(@o_4-}G@iA6jpN+L<cJScASOp>mPm69Hm@}P?cT|IckgI7JM>p?va
zN_%j2Z_$b#RPvyV2d{Zh)?<CTmG_|j(=6r4$1k?_LkSfay|J-GWs<5MRP*3<52`Sl
zFC|%m{QFtmgBl*x@}RZ{XIdx6^VX!zO1i2;E)Tp*Qh_6R>U+?@gLV`fdeF#&mL9b7
zps@!{C^q+?sRzwGc*A2IQ&9F;x~sTD-kLpNMEdk58Alf@Ej*B-ckzsL@!8q~QQF9?
zSeO_ng|>7e`o+acdk;D=+R=kfBoltlB7YNiCYMj}?(NdL+4ciH=<Y!eMtjOW??FEg
zdU^1s2fZowv2)39lX%nmdvH3MIe>bk#lPPZYRg?@9t@)RHgTv2gGr=TLr9)Cw(h!o
zhkO`u<Cyf39*pu}h6gh}812Cr4<^YN@m!Iy9=s<#+$ozx-}PAkEC?CL)bX~>1P><C
z)u8T462xFKlco@-dN7UTecOIIiIOMxEDvUTu+)QP%s$711tfEc^N90_a(k6jdm;HE
z;$q?w;v)|Ca*y@Fy~cyJ9;_f=NnAx-?Lh^8vd3|qh}72;CF2H?jl{(@lSSD~zQu#B
zw#}hu`F41)(}SOVxZ=Yu4|aR7#fz<8?D60O52kvpvG~w~k34wUiy~g@->8p02zn5b
zHR8di9(?A(UJqOzxINhC!RIpBJov_ghXXVBd+>$aC)qVq_yH;h<)dFNi4V*?<iVF7
zeC5Gm5022L;TTj-u+GF5`}w)8T-lc>-?Br*{-_5MbrOZhGWW>fe(K0sKhf`jSLSVM
zs*fl{^+2=vsBh8(bW(1KwI0JB=pN+oBBvJ-4-Bc52ai06dSH5RS-Qf5m<Qj<gp_6I
z!7&c*Ne@2cA-%^v_}+sPbeP)3ntN~3?I{m_@Zd-4W0xrYC7B<c$adC)b5xcsQO-+`
zwaOt4yy(FN4}Owf>YhUs2|~orC0d>zmHpb1lq()w_28P=EK%eo*S~mhovC*{_|=0O
z<hMOIuBYDg;1-GWn?xn-oo;;ryF;7))g1R^D<=QVg9jv+S>Y^8t={<EgFig@+k<~R
z_>-w}r*2@I^%e242TweBO7WQoe|hAX9mqZQk|ZHcax7I|c#z;lsuyXTDv4esdyzt(
zM3lGti9N`(5UaB2Zp5rq9A0Ge;=QFxcA^l;vT~`C?uDRmc@`s=7X@gX+Y5<G$m2y`
znUG%0SezJF@_UhCr+&3mDd<HZFJ6*)`&L?PU|L}>1P6{yZ1z^#9|O~hdQr@aQC{m;
zd~q)_z1Tg&F~ExwUMODF_M(m#C0SwxFDiOb%8OULc-4#2UX-O?#*5dy|GsnWzwc!$
z=S6wyBF6PfUR3s?I&-~Fltxu0sX`R9YF@~DXC%l=+-i7Hle+L)wt-}+>qR{;T6xjh
zi~3$Up3YjHExl;yMI$eoc+u3(B^eug|1G_l7jJmc+=~{rD=98skYpDge{Gy#8!y^=
z(cOz4UbOR~y%(Ll=<G!YFFM*Sl?nOq{ls{dE?#t{&u+HoxLZjT($kAxUi9&zFH_&7
zhu(J2#4Y>TmF!OvuZ-Y8$>PNzFW&az9WRD?VJ=k?vpNQQadnWj?uO9kP~x4XO0ALU
z&z2MzE?x1+F~W<HGLf<-rY%z>i1BDI#&Dp=632V-F3EdDnE>O&;M@E?s#ud@0>z2M
zNnT7QnPOWG-RGF*#rs}Nmx<@Ku9YqGVkXIa;w<89qNL6tnd`+oTPb)ieF6DGTUq4A
zVw*4VVyVq*EmM}0uaJd6vdW9~cIs*`){w7_EBDgZ3AvXpg-X~!aU*e)7n@1mTxMNQ
z*yhD{FGlz<(uW;h?3DTJLpj<1WeLa(_sQ{P1@?IHf%Lg785!dJ`9JjHb1(Ljf8@o-
zUVP%kr;JMKUXste`0R9&ME5c34_o|z7YDsiz0kb)!iz&*eB;HpUQFGe|4ZT#;#b7O
zvPRmZO48SimTzX69reP=sF&#S!YxxpmKamRdGPy;6nT-f5FZVMOOoG<0HYCN(2FpM
zI1G_U^>h-+E}{g(izpR&k-9kf&WmHRoB5F9!*MUZ_u`HhcfB~_#Yr!&dGU)Er@Z*V
ziwj=-<i(F(oc7|Z7w5b<!)dv^khMG~a0Z_DTA$|M)yFpjvyU8CP>w4sHMZzQFD`rW
zvlo}7Z>tvlwrZN-qGiezndJ1am3hy0$`<luUiacxinqMDA&a!B<@_cU`6ecLvv$h7
z?Zwza=vXbi%J72sytwbhpI$ts&2L^j@Zur4*gPWngZ96Zi#PEgR~Yis^Aj(gdGQyM
zo)XooNzc9bTV_rnB>C`<7caa>@FCG>)kMx+-_P0#zqU+~#>!t{;!UFPA&U<$`%uJ(
zR3FlO$n8TOAF}$8&4(P!p4|tB59#DJn<UFuP(jJteyDXNM?y{?a`~(aJL0x$&K!At
z$mhdLw9oHDh7SeF#Zs;&NpBSJVNuyMu`ERWNcnWhSeQJ1gR9iAsLvXd60|JlLvf$=
z)%TxeN+!*ONUGvPNgqo2(6~`fX^vddd4;JtKFL$shcZ6vjxu-0gx9409n*@nNfRvZ
zLj@nY_|Vmdiau2GSwBo#`B2%1*L|q%Lmetrh_!sEN>a^->LfLYMV4D%a%%eU{QAGA
z8eXVt9kf`NsV#k|=R<uT8u-xA2RTf#nGd(SWEX=*QdQbCAvTqY{a`)mDWU$QLT}Kx
zxeqN!I(?QWeQ3e>S(H!jCbagU4Rf{ip`8!y$vZc3bchpTM`9-*Ci3XW5qw0k<h_J$
zK6Lk?zYha^=s}ylL@Bo?NiQGXB<XGIeSA38-ugk;&sOd?EjZBT!${upVGzmNJ`DC@
zhz~=3c*keG^;=$_9e?Te|G2msPGeC<`7qjtNj^;WVT=q}PV0M7hvmvxpLLyC!n;1a
zM?TJ0#*<8trrAoh<;oNvruwkehiyJglPR~|G24eZVn9BfDB=u~nZ#MdeT6aChj~71
zV01olC2@fd3rQCFu*8R@J}hQb{79~4J}mcP1r={$Ed3>2L`jOLuA;u$hc!N|wR5fW
zA#Sst%EIM}7;lv6&FE%3bqk|$hudZI_rd3b>cdXi{C)VuhfjUjEtR>S^sx`J2k!CV
z10O#0;UkKoNLX?{sZVVyHIAS8u-At}K77e6`+V5%!vP;YXEc02N#}NY(1$O4h;OZe
zA1+tK!&g2W_QC0c%ZG5k0-_x8;cI66#)qRM-^#jZlUm^)EA`eBYiD*-7vdqA-9+9~
z%=(1#i>2m+--jP;n}83x4-p@NK5Utk5h8|V;@wY@sG#9Pl;UxsN&L=-7;VHLZh4IQ
ziTg?4`*4E%B#Ss@>v6Lm<<pb;8R7*W&Wip0q;o!;r)Atsl%IUK=))zuo|kDRjglZX
zSADo9YtWDOe*EIYbsz4l_)W#HKHTtOhKiXg_kZq1T~*wY<?q8CAMVOdsG^XHdy>V6
zzh$GAB53xftQsF4_|Ud$(T6@flI_lCz4l$gAF`QbIE2VDX+1IHi4RYi<+&{95$Vs!
z{~|`0Tjw{*PkvcVSC=a<d`M7{rXs6~L{=$PwR|S2NLG=;02Nu7RBvp$g!p-MZ%uae
zO-dFI*;Hg#kxNBx6%G~YDsrfh=NTnP5fbFnO)zKN`3fbEio7cFtH@B1k7CZl3GsJ#
z=38NX*%QwNM3=jmcq7wGDhjKpr=q@!msJ!|QBg%D6-8APQ}L>b(khCp$W)=ID5;_Z
zeaeTOT;e#<AX6NcQt=8!dE88H%MoSiYt}`WGAdr9US366v0>@uRFrC%(PD+tD_$A7
z{-a_#d1V!^tEi@;x{4~yC{C)X*x4aDHq-i;lLM4$P_M0`j*6NpYN_}x=8)cAT|IpR
zok(MYU6i^ij;yc-qJfHrDq5*%t)db0Hc`=3MPu9l?G;Kh6>B?YZLXq)iYxD=y}_jH
zd<t*>=!BMx$}wX3)AF}b(U#Fp#C9q=kVxIylg!prJCevTp(1uB??NnC$-0NXn~Lr#
zdZ_5BVz`PCs`XNGvFxSdO%=UqIY`CZD*CACtD>KZ{wfBFu3~_SV=ofoL9z_(<EX?}
zIfyRN!9+_}F@$`c{ob5+R1A|jf7#mM1xGTq*EPpj6{E<PE>9n=VvGtQ;R@Dwl6O_S
zr(&Fn@hYaMn5treiis*Ft4Lj`Od`g)7>go7$TaHj%YfQuVkseRIZMTC6(JR26?0U~
zRdGngmn!C|n6F}kij683us%yv{Ls|;6|+#qA}YcclgRsam#SE%V!4VHGH|MOci&2x
zv@5L#uU4yAB}Js8E2E;UQRThr=|a}2I9IvodfMxU^NW8uo_CXq9WudGY^L)qDz>WF
zM!uamea^q%uckgr+NEN*iqBN+Rk26K2P!@hZ10fpp^A@Ge9Y*?4e6rv&w)NUASe9_
z|5Qekd>;)C5I?u`?w5{bmV+w3peV+YOYkcdFEXvcb*nfmQ(8KzZMLsf9A(`^|3<~P
z<SW-(^>o_0i=_Y96psooxle`PPE}QCs`bT8vYaWJD0g23R0L&#yR8Gt<k3Z4MMT9}
z=`j@sbA7Mkgo>yNQ$>u*G2(Z`cRBi!_qZKBNn-gYIYs<I#g8PX?bMGOSR2L2LCNP;
zTu^aU#WfW_*{MI1TqIsnahW9k2C*x)%@511>G}(!w}{u}Q-I`#ikl>Tij|NcW)g0z
zxI^(S@g7n1j8w-16%S<#(ojXiBNe|(W3%UghCfvNsan5eU(oomti%p!ALmPaqT;E{
zw=P-xwsbsGQN!){i}+l{-zxqg7x7ml3Q7^;AwjeJBx*<^5uU6e#pd$gcNPt)8qzdm
z6;VSW%^Lk|8U}`wa%#w~!J%P@mNi|oF7D-s^Ho`eS2G>CH00KhM?+r8H9tK=L!D`k
zLhaJ>iSav1ehqTFpeW+7fQG?;6%d<ME0vct6xL8m!z&tI)*z>%71xl-a*Gg)5{nUk
z%a<+&B{V3E#?MkKN&cdyH4v|Acy=NEH4SAol%_6X84dB<TFPnoY^73>dU^5+L=iPk
zp-LJm+qwQ)sZ`ZaO~VKcBQ;dlpbkmc@Jd=u4K+0M>TWe8d6iO2Lv3lPwC-4z#u}Pv
zs7qc?LwyYmG&E#X4&=W(J?kfJ6W`8`MjGT;ez9+=p_zu>8v1B>Lql^7(_rZ>G_+){
zUK(0yXsw|uqir;_)zDExCq~;5J7{Q6A{ht0mHI#4nPL|^HLiEl(4Be@V$c6S^-YTL
z_XYGNA1J*+(vR4mIDjZE8l>TEYYt$j3@F7ytE?B$NC;j`Uo|QFI~s;*7%l_4N@=bZ
z6TQwVr59~R$*hohuHknLV>FD_a8Sb+8s63Lo`y9V)@m51VZ4T!8fIyjpkbnhsnSIp
zph+4gYnY<p_0Oy++B?Y_eF<_$(EBu)u3-j=yvM3)tF&Q!h*(}IJX^yY4NEjE)i77X
zJlZVMFkiz04GS49(%Tx`q|^UC^EGajvRJboW?#R``jlCwVY!Btv}|5Ev2Rl13i4_l
ztW*A0X;`h{C@md9>mzTShV>eDYuKY<gNBV7wrbd>VH0z0*04nyTf%CE+}<xZEN8Od
zcBTs1NwP!3Df$#;7nN9zq917ZP{Upg`!sx{;bRS-%6w+(CmP~rO@GXkEc+ZNJR>E3
z2lD4MI6yqwJz>9w7genG#*Y^}q~S{qCp4VY@Rf$c8vGgp8jfiAT7z4IN5ePqyc(Pu
zz9pAu+1j_Z8Y?$^x~K?WJlJ~Cr&kt^t@vd2?y}0#Y$fY-t9n5Vx`v2`5cM$eA=_(c
zh-&yw!!Zpe^;kS_&eW0DELWw!w#q%O;rqBQx5SsRuGp{cmi3f|A2eLk@Qa2YnR;Hs
z1r4V)oY8QWO4DjMry<{JMNVO@vf3KopEO+5<Xs!qh+HCGmJNiYdN<2+*VW1t-6~qb
zRhjlI?z)CwHQdv1U&9RzH#OYSa9cWUa*DhGws4x|?T!p|i-fy$HJN4AYM(9sBBb9a
zJ|HFxOL-`hq*cP!hc8L4KQ#O)E69%$emvIjL^feR(*1ZUd!205e#`S;8lG!N_9MlQ
zzh#XV%aPzmq96ar;L7sZYITu>O{<m9Rx3$<2qvtt_|K~q&_k*pX?|q!<7-|P%fH6z
z3b{o`T*YtK$>v9PTFU)1qU7)+ryqs<c*&1ke&qHepC9@C$m7S*87X;bX?d8D(jn2B
z&l!Fc@S~uu->!sPlO3ljL4IXOC~WIR{CL^say_T0AH^7zD?i0a{;6f%Yoz#5(vP}+
z)bpd1AFudP)sJd^yy{13Kg#=2!H+Vuf6b4w(r*hBrP__wDAJsA)P;zjihfk`W9b^@
zb&8e!))glyYb2Xrg&E~KRnxtW>NKcD6q_0(HT}F{slN41rZ$y2etgQj_5El-rKKMY
z{b=MzGe6#-(wNwUC}qiM3{Cyk)iAj$sX4_KejK`Jjo18DDRS$MkXC-Q_M;6`-D{M#
zeu#d5WwLNd?chg8KZ1UQ{OBY$Ia3GtF_5IQA6-bg`q9mg?&M<7o1}--pQM+qzv;)`
zIu0@DL!~dVAF)4C9*dCFxBM97$2LE<`|-9Pa>;a<AH)3^Og=>B0LeRk++QOH2^N$f
zWQ2%*%=OF5{xHgq(SGa8^ZR~`@nfubTa`M+k9SGN`!T_f_sGW)5A{zK0|^uTm_#M}
zTI*0F36uS}kWr!-qf`Bu##GS{7fzVYBBYcVe$4b^mLIciWsV;YKPW0m63VVs=KHb0
zj}?Bb^kbn+R9>ZDO0tN!n7D-48`j;n%gC4eA-54qbQPoP{8;bDYH|_R__3C}bL%vT
zZm{*uerzP)WGk!2T92J>VRS1|PBz=&$4)=IjP4S*e`kK|$0vU5mg)U@y8Okt$Bz&E
z$l5nm!iRo*WOL`R9G}WEXIFgX$FGYVd;Qqw$LHj2)+)mXr0)0QpdVlO@qLYi12VYI
zEJ6ei`SB%1iAsnP5BqUMHU~O%6Tk7}TR)EaA^q&4;v`BmJ}x6UA|8q#I1+tqg-Vo`
zY9xL?0wnQgRKtGgvP=SK9zetoLpHGhk^+eOVft~^k86I!{P@m~b23#Pryld;ILTS5
zFv$;ov>Taug8U@$6mjiZ>w@i%<U&r9oFR^BW?kgWGb;7GOe88l`El8{yhw7%j~2X?
zDwaR{afRX;USj=47NZ{zWI9p&)sGu~-1I|U>>|duDBkwtjx5P#RzY|DxJU6f;(gi5
zcv|4m29Bir)-yg;W?E*C{CFapJZ*mW;}4QQWk({BL*(M8$vtEAA3Dj_Ed4J(p8Fx>
zZ(@(N1%!*Y7c@%<Se+)Xyh#oqC4lk)R0se8WC@^n0GR=#(jZp=xdTWGAS<KUh&hPa
z18@Y89>7udr+7QLR>{ev_@(AN0ptxp&IT+*F<$@$NW?OK02wxyGs&l1ODz~c#}^5Y
zH#%MlpfHnO4xp%QQ-q`zZ`LXnK(<;|x0J9`OOq(Xk^z(=c_n~XNe+xHD#r726%;H(
z<+T9Hl891Hn#|)3E80pGl1c$oCV8Fsgl()EK(zp>2T&t`x&hQ<QcYqVVl85A>9Gga
zWqcVU!TJF-px%_&FaWvrt1)?_0M^#c6dMUms8pS8-Hz3a{K&n876G&jV5~#~){Tg*
z0%#vVhX7hLDoPuYwgI%WmAWIcb_}3X0DS`JOR;kRJ?zvj0dytr7C`p^niRM0;*&6n
zH#+tVpchl$wC#HbF!B3>V$d&u{uBoXFo5JO;y~N--MScL^S1-I0jt780vH;=I{^#}
zU=&k_+cqNu7(t$=;J<f)#&6mj9l#jdCVf!>aq?aOGXt0vz_<X$2QWdZM1yHWxt(&7
zZ9kc03UMkilBeMNcIxy1W{?+LXWa!l+twEaFo%3@0P{%Z6VrF4FR*PE%Fr{HWL!*f
zNdQaj)MZk=J60=J2Cz!zypG<wwTrHnbreKe(Bf-ktOHmVu=x4_b_B4Kd;@V~0Gmi8
zb#nk)$hQ)=5x3i^A1%kO0CorPTL2FN*b~490T{9|2Jm439|fRFQk&F|iJu3sUuH`z
z;}b?dC4NTS8^AsiF^*r-KM=rI0UV}yFn}-Y)I$M$X>)NU_D2G62H*<dYwF(+zm=_k
zr0Y6Gf|$8kv^M}>03JH&a@_h~K*Frwl1jxgX8x9>1>g^0>N+J5K*%m7DD%*^3{%uu
z+lbVV*Wt|oVgXzW;Fkct3*cA)=K?s-;>7v!0KR9g69N2S`#c%IDVxhx{T~B3&1iww
zaE9b8amT*=;^BgAc{zZe$S)Ev*}7EkXPaLM;3|2%&ev`IS6OT86lvOx0B%yeMZ8PA
zO}s;lXS^4{eMaNG^e})&0sI}nKLPws{W0;60RCi;Nj*PkoGkc+x{#*<JhS;<B+rTB
z@I?R#L1YP9b3=MeP(or5NmP=FDMZmhBDInMl4#Z-vISv=5DOuD5RM>T3!!WX=|SWO
z;!qG@29Yy}TtRdQqGJ%bgUBN`L6i+5ukEu?5c$aS6J;W01g)7_Ac%stA{Bdyyl@aN
z2T>%5qCu1lqEryYf+!wDW)LML8q1K3(zk-ry@C=HsRr96lkk-wUbTISL1`9LhKe*t
zlyc<tf~ZeYK8OlIR3xtyM3o?_l2<0aPL#j2<PWuKLDUSQRuI*Ls1da8xRC$gq$bkC
zwS%Y=L|qz7DWZ&ik`(_VOn3uZZy1D(pcpg?qA|rLLA((}bMmG^G_x%wSBoH8GTJU^
z{Uz5*8WKdCp!LU}q{jc(YfA(9L#<{tYi+itrI1cRbPi%g5G#Y|B2^7yLJ$*!=oUnG
zW*Hwu50ZXC^bewE5WRxdYI-w>KGb`&OXIVpFBNes(E&jW3}RRi!)0fqJ~)UWK@1Aw
z?I7ZRBZ{R|QgA2@-eH~N^IW=dL=Yo`7|WzlL5vP!47oH)nkjduNJb&jz3&F`UJ&DC
zbedS5wk6e?@VRRhls=SkoD{@lW}F$slpv;(PYYWAQN|}md}n)~`t%@XkcbB<XjTxj
z8J#0N7Q_Pbxx{%ynMezRSQNy<9?Ehmi-TAa#8PtE?xcp&#$}93Rb^U=XUVlHh}A)C
z4`K(C)&#LRh%Mx6>1|yQ>x0-3#72rW(vquJv;H>SB=bt@R=wa>>f1PPWo}EKOLJtJ
z3E3IMCqaA~#I7KAv!(I*zbA+fg7}abKMLYw63JCYx@Dab@2=0tWrNxq#J(Utr;U_*
zFo^v@9AH%J<MUJWFQ`ageHFyvApQ#Cc@Rf}_&SKoLHr!VH$i+GgcgK9h@(L`nO9}C
zUF5zX+;rk0dWo`5r6E#nX;CJP13?7EgY4u%grreHM7h|-M(50t%0xIh4cmh#(k_!z
zG$u*Z#jWVagZMs(6G5B|;&c#am~@J(^#`sF8LS`ww|MvGKO4lkATH5NlFkQlA&8$?
zt_<-->hY;7sqs}N`jsHA2Jt9}--EbDn_EHLCix|Z>m<JhaU%%1AQoS$H|@1~Cy2Xj
zxb(JE_?{r^Bm6!U@&AB|l=#rDiKPC))IW*wkHW{~Pl!*6&xkT=e+Ti8Y{enu4dF!)
z39@^Ktm34XB(Lo4i6JC~kQ_ov2w+lL$lBAggpkT;d<jby85+^EQp`q_8j9`+Su-|0
zgd7xehL9`tf1lmCLy&5SS-ueRhfpE}C4`I+3WV@-2t`6D$XxM;6e53#SU6-&!g%Mz
zXQR})D3gj2ixV@6QbfrRN`<URCC0K0Um=%rU!_55Vi}@{VqY$V@*&I#VQvT&LZ}!*
z+Ys7?P$`7UA=C+>ZV0c_z8bMg2vtM>e)ovavFg-o*gk89P|N1EN#YH!7eez8T7*!a
zVuKJGk~9jTDT(xIWA=FyqHKN5sJ}ssJCQoKWHerMtB|##TZhnwq701~v=5;}2xCKd
zH-wHMbPAylQ#%uT5W5h&61x$*6XX3aPI}7NQF)Wtn;4(@eM9IMLjMp3gfKFMQ6Zc+
zGX{n*D1^5|c#Ba{b~jEQ9Kw(ghJ`RZ1o?h4l=u!^NoxEXi&&0e7Kz3cDP72Dio(Z)
zAjV?$9y5yaehA}27$36s_6ZcHl1~g_QV5en|Mwkriaq+%X!gI>O%GuPm6^8BSs~0O
zmmNvAnt37258;at4u!BFgoPn&4`Bxl7KN}Xgw-J|4q-_MOGDNd5?MjZSeE3K5m_F>
z3L38@%IuY}CWN&itP5d1EoB7bvvdPzxQv}tZzJtDg|In<Eg@_TVH=gWaeUCF2c(ia
zL)aC<-VpXl|Aeq7gik~GjGkrYe?amf^L|A9ID}6~B(DT<B6W^eK<qycVSfk*LOA%J
z;>19b;x@v+lxZJ=F9bD&!!-LQgl|JQ62jM^f4}gHnRvFo|A*iWS>L{#A*(-Kw09Hb
zw}yw~CG8de(p_2z{t$v8ghEzF73Z!MpmDqcl120|UFp;#L?eVKNqlvD7s4^wPju^D
zHpfHwUKT<a9m6;g!bvd;;Q@_Lg>WGx2SHe!@B{J35Kf11CWNygoRf)1(P{;QeE7=8
zlkkfnTngcK2zNrb9Kz2b+>-uhXI`;;{%Q!<LimLqZV<1B@GIA;G$G#Jo783Y#(O~U
zZV2~6xKBMk)?z6o#z*{N2#=&)VH64DciKD);V+ps<bM*SEssf_gz(f>WWhcU;cwZK
z!^j!NKeG9UkR^=NFcQL6^OK1}62nNcdAu`I!T^={s!t=&PRvToMwC0U<TsSV=IPSg
z{5TMwxx&a7M*c8zGgXv4BzbL{3`PqP3lIwu;~rijFZ>^+Xc)!9s7<AK7@1*|3FEae
zN>CC1rNU6iOa3R9=&vyPDzP+C?$;_y@_HCm!YCI;`7kO_sYH}^RkZ6V9xB_ps*=<o
zRwGJkbrR{fnk2RCs3g@PuNy|aFzScVAdEM{Xil+V7>&bdLf$C+?^sKgreQRrD04uf
zacmJrON#BnXcb25FxrIC*3R``%Q$aO<M`Nh3Zruv{xAX*yM*y(7`@5661#=boumh`
zC$SeXKE3;d(Kn2D!+0-@eqr=y(mTWfVGIi6ZSsM{x5CzXk?B1+j3HqRr6{XuD!=DQ
zYJC40Mtyh~BS=OP$AmE|jM3qLmz69H=>Z92!~cGl7#GI)Fm{BoGmHsgObla57)!&L
z6vpH*W`r@5ex?wog)x;R?&tk5riZOH_`hDA6~^o^=7+H$j5%S<rSUwwSL3<jYj7cx
z7KO3c_7HDHJat(Z%fnb7#)dFf&~jB6tHW4H9xrhX`Pwknh5x_r5AjkqhOsG(ZM2c<
zZ4P5g7+dYK;-$z2B1zl-<8xOSyTdpf#*r}ggz-Tbd!_5b_%Mu*!uZto_A$vPcDv%<
z#MNhZO+Kf=fiMn+v7bD?lYbG$AsH_*v-8H=60dWde;vj*VfdKq+c1uX;gR_n%WzV0
zh2geKiI*GC<)zIo`>U@ShDQ6iO)!j57<a?C7e+V?J&cReA(Jv9w2_*h55ou}8ipB0
zER2(3oQh`;<2b8&jQ-=^zL$k;*FUcO5XO(RKTA9v#+i8b|ICeZ|52pG3yl6`&)!R6
zTn^*sFs_7goprk!#x)YzTYjOjkoZ<6_-hz9!njFY8ge^~TjY`?;f~aw+otgQqKB<(
zgBdy=gz-@J?J!=@^P?~xhw+5_((f`iD2lf~?c$`KPs8||2G1z|6~=SBASptO#YRd=
z(2=Oap(9;Kl5Wi_=*U8ntXo~3LKI6$l8mW3(sX2{K{jGMDZ6gfd{tHJM{5opId$Y?
z#$2{d9!7H$#WJt0$Ft|Rqtf02yi!_FM<J4zh=p|oj#&p>9L}9kM9O+MrKpZ#Oe#(+
zuOm}O2^|WfVp&>8N%B&}S8V-N5;JUhE2HBzTQ94l9Jv%BNfmTd)KN*de&*ECQCCN0
zUEVcgMXM02>!?a1N;Td3?JuN;j+#1ZQLjyu4v9~7`RP<oM|~abb#&0tKu1Fzt#q{3
z(MU&Q9nEySp`(fIv#IS<JWFV<TR*H?=xC`!?#&i1ySjYV$TcM)ZR}ia*^}|gw4*4z
zqmE8Gy6fnnqqB}K)TKTWx{`PMPp<e+yts#+Ozovx*O#OreRTBIap*X{JdS=k`s?`K
z#0e7vbPUvy$3R{KZ|NAM;}0Ew>UdkX9?Kf3W0a1;I)*ShlsKID4sn={PuD48If79k
zo^{G-9b<It*Kt6{SRL<*lS_`zbiAiyoQ^f}?M}yd9TRjclIrQ0C<eolrt6rYW0H=^
zI+i{zGDXKU9q;Ry%8`{vEFT@rA3u5QL1*i}pqV;mNk21nwvIVEs{NcfSLeT?-4o?N
zO9}I&_cl6253N%c&~hR1+&b$Y_AQyoOLVNz;VziGRL3$MH+W{0BrT_zW4&dzQpYM?
zUP_WGd^L69>vXKw@v)9ibZpSEQO7nWZPKw>{xV?3EmR~|t@X-Qn`f?9w(HoTW2cT?
zI(F;W!=%(Q$yv)J3yS>*IzH6#5%rmLwQ#+1aJ?cZsh?7R=_hLye6wEJ%kJH$<8zYB
zX(+d>=zDWh4(j-VmcPij>-bW~IUVP9e5K>CjvttGM90@UqB=|+-{|;Ohfjy9<ERd&
z4i9ZyIwZ*Hrfwa_S%Ew2<xywF%T%dD$qkC8!!L7Nhc1g<M^HzIsSP(My*DV6Hdxgb
zF1U7s647DUc@Ns6B*nzPOiLzxM?6M+x<NUi<D{*eA`yFKqasN{B>br3w5^}fahAN_
zMk{sVMrGSZ<xD93f{vebT-1^4wQQGk{H)`Oj?1D{N)+X%N{LsQbWH}ORa#sW6n<SM
zmCOwtH|h2_9k+DcmSsZ!>PF>`j{DMY8<o2>5OU8Zue_BUui*nK4|P1!@jH3zh&6&O
zB1w;RJkilMf_4!+)$vSrzX(c2tjFj7(vcDY$e+uOSI+Ubj(>E#AWw)OiAka-lKfK9
zkxbI=W`c-WB1nxOPXu`*)&YQN5oC=ZTLhCUSoeEmk07&AhQ2E`N5uNHazv0G!MUpi
zd_476l$;UdiXeC7-~JS(>?W&A^F>fJf?^Tmk02w00?b}0f|nvFNG>--iJ64L5xg8h
zkqBy6`uASG_zRDAy+|k?v7S9wB4{$xx+O1@8B5SIZd~no32DMB5mXY(2wsh#G@Dk2
zSXPka*a?T2$^9PXA}CL#0#U?@5qvY(I&I+f2&zQTFoH%ARE?k-4eAlA6KhK)A1Bm^
zpeCcWh>|f^$#lUwjMkNEthKz=w^JLCL~kTCww0FBoCumS+AM;rHxinYzd`)@MnVhQ
zQn<Kk6+vq%ZERf{)jom_5v-12O#~ey=oG=I2u4THIf5?IOA!o;plbx(n5Az7-R-<@
zM$m)2C$X2U`+8W_?#*bQ2$om1dQ3t;D*cHAhy#gY@OA|C9$PhhhxUUb7{a8Xwt@H=
zMn0T4f++SQNd}j5jEP`u1id#YGb3ocNqIMdsT|_>A{ZCJc#5J=iC{tm6B(T(Gt<`N
zcbkZT1ktB4@B75*M42-)BG!B8WERbeV0HxZj`%qdER0}L1aoDIzLzpDg830Fh(PWM
zmms%@i;a-Q5iF5*MX(}*r4cNX3T#pi)Uh6~nA!|mnpw+1+mpI7f>jaRx|txMe)mKP
zLe@sGE`lE;I32<I2sX$Zi{RS`Hb$^X3X0&92sTHsg_YbL!PW@2MX<}R^LCP*#2v(K
zTvI2AU-eGh6Tt^ExTmwU-kth*lk%Yq{htXRMXa+WSDec7X#}4|@I?fNBG_yD+#kU{
z^3RC{4(2Jg*;=OuA~+bq%1u1TdQ*-sBls$UuW9pc-GA?OJRHFhDss1Hqs@w7ug%KQ
z2%OTN5riXfMc|IW7lBGMPXt~P@!zn&RZ7MO>6%QuAxZuS0!*5+S=r7CNNSKuU|5nK
zK_mh*f>;EG?IB7c2k@3UYt`qw2>u?Ld?JFA5gcRE@d&<;;IQpY$SLaUOvexGCAl$4
zCV+e;I3wFs1iwY_KsK=m&PQ-9f?p!IK>ME}xG4IId{WA@yN*k;h}v5>sa}rYXW8XS
zreC4iRdUfwpHBUJWY+5xB`Qyd{2IZH2yV)Jh~QEm<z580Be)a6UD|9&&3kgQBH=d%
zA!2i%mianleHg(b*{cmC8~8nfKO%U+Tz|@zyG4=R@@WK*sXVbutguCS7QtT;JeS$E
zG4t;T{vnadNL21mkRY3$L=y}o%9l6pw{ll%iebILF1rB-MHt9pAk{#cfhJp&tOl}?
zbljpyv>$`;$Hfb#8^~#3@vh7q1|%%JY4uMo1Gx?B{lan>z8qgEB%gu&20BL3DT)jO
z1q>WD;51OsKp_Kj49qp~l7Yeo+8gL#;AI0v3^X#(nDr@Y;8g>q4UF3CC}yCzflLD>
zq|OFP85p_6no)uhN;2w9O?!nIg=9aHTE@U@2C5pUW}vKrat10hwY-4}1}YjDusB&B
zn3}j36ZYcs9!e#{x;s~V3V)rJRfy|YP;~<}4Ae1D*Fa6f+DvL0sBKtpVUrp4efDG_
zl2@=Ea|v%?pgzMvdT3}sg6I-$VxXykb_Oo2PARk^vzdX`OnSpWa|11G4=q_GV~f(t
zR)qJ<n%2fZTLVHQ%&l&fdv%M_(Ll=q$}j`N4RkWl*+3TqU8R`@1{&x_54{Y$X`s7-
z9tJWp@y+T?2|W#qh?Cw1`iNTt{i%rF*G~GTSGq*SMuKE~%fKK5L!=)JyiI*D(Mpm7
ze|YlzJO5Ecl<Xs9m<${|pDHt?%uvTD1LF-$FtF#aW3+)W2F4nA*T8!QZZ1zB$L!B#
zaJO0mEuqa;Wg^8X2BsRAL@xSdlFF+KOf&Glftdzo8JJFShJndj6$xUtZL1<S!X;@o
zQ$-Pdo`LxWHX7JuV1Z0#1M6gp^8U|7B&%eq8(2cV)WEsX>B|i)V>Eu}=L&MsS28u8
zcQwT|GJ^lHTu;7%C}wigqq$YtY+$E>T?V!o*eWaNa_Tk%+gU@IPM34!PZ^!ILndun
zHX*yEyA13#u+P8;w2>x!Lh>Q;BjU%z&K0fiOP`8QMuk_F!=erBH*i>%`I#&d4jA~t
zz#$nITd6T8;Y;$bh!Txk#>o)_U(2ju(v>+0-`csZY*kza+y*WgxNN|~5)A`U1FNbP
z^cwIPPz`8yO~MBJ<N*Ug10nLi?6Hm$-9Ut?Qgbmd4cuOn@`HhT$Fj$0|DAzj(rGQz
zi=Ih8Zs2<Z`L-!1h$m?vQ3<E0h?5`L^QR4*F>uzv$%CmEWWxB;g`8vbJTYg9Y$E=|
zq>Hk9Y*Qrqvw<rHUKmJ-;;Mmb2A&w!-EO}axK8q$fnP~Pyk+2q&2Nf_%hsuYw+-B(
zc-O#vJN2IQXK8DTmSB{%Zp?dN;Guy>vj5vQe;W9MTwb&!29L>izmY@uQv=T!{mZ~}
z5;+D?^uNjfA>QbeEFm$9q$ny!@p=@=QKUpsB#NR@Ac`zeq(_k>iqxpJezOtNqL|qr
zJu9)R^gx63?9?4m>-pb|*4C54Vw^LId{N|&B3Bf-X>jmDQl2RCMp3d!hUAKMwahZ2
zC=f-VC|;tCJSQt+!6<s{EGlPN7pC}f6k=Sw+rQ7<2rm{z@hD0~@k$h#tcgNPNh(2O
zSL2M5RK(lX(J8M+A#YeH6UA#3OA|*vO(+|c*LmkDA4P>I%0)4p&AHG!N4(sMQB;ar
zcm7Llr82JJ))$N_QPhf}b`(|Vq*@f!qu5=_>Yo}^Y7)h*D0QN!8%6UdT0~JViuzGB
ziK40WZHvqXQ8XeE-cYiPPZ!eIRwUXiiZ|#=>My;ze48>Oi}f|EC9BjXindX-A{Vi>
ze3G_Km#Ru=7sXFwQra^~o+FUTcVHJ)s#vsh6kVeDD~jh)bd9206nYeqD7s6Bi%k@>
zqUae#uP8=EF*=IRqN#62(JzYr<h`TlL(-Qhso66U2ShP2ieXgViegX{L+sSIqZmw{
zlsi$3<0xck6z@=vY*QpUoO}dvB(eHchv;LX7|ZBX;=55yAd#f^NXA7mK8lNUA~-RM
zNl{F;ZKjY6FJl#*y=vk#TYsNqI&nr6x3Z>-!R#pJMDbx1A4M@Yig{6aQ!Q3TF+Yk0
zQ7npLF~=f)B=|z|C)<=IBuk}N=cdS8bW0s{<l3$*qqsbZGTW`skyTNwj$%s`TdA*+
zDHp{$@)k6xmXW?biVab0lp%PWx+#jyB$BuG4C@C)oNS9?yUesG_Au{`sP*d70@w2I
zjA9p+UfUH3VyyKpTJfvQ4=Bo4_o0>WaTK3K@nsZWMe(WCaBI3Ah+?nI#tO;)E@}It
z*hg{NcIERZ1jS(2Kbel?q6eveA?0>c4v|YzyR44GQh_KuQFx<RzdYsZD87y2C=I@m
zCeVY^ws%LNZdY7H$u8mccEu;rC_+($X{JRHu<iX(l-{ApE6#&d+U>CF^J+=~>qQLY
zMikK~ZbWf23R5<yLD|nmabDJb6yHU0EQ;e%Ih@eaC43*n$tX@mae_+mCdqOA2iZoN
zB>x!2KgDq2VF3|^2%e#GmKe9Zz>HU9WyyRazZA8yTqcj_`uRV8u2R1i#V;h+qxe-e
z*k(oJ-Ud8O&s!X~qWCR}2eLKM<__^L@gDI$QL+R(D-Uh{EQ&`q|DEIy;-AFFQ9Q9z
zpOUQDp@@gX<(Yp=^<<fw=xO3b6bUAZo5(bgXd=l(hG|WSWD_Z-JlR?>mkCHnEFdA9
zi7X~kO{7uDYU_2LCP}J1&Y#_cgJQaghGQ~vkc*zvgrF#5mfJ)g6M5-8AIp+by3S7)
z%x|K@{A4M;fQf=83YmDxL}3#zQx}7{r5F@3QPh;@H?5-y`pi!*MnBz{SCkSaYM7{L
zLNQU&L@5)mn5bZ)qKQ{clr~Y0_GO4=iFcnQyk<hJQADy!5MG|TD8eh5sBEIDiE6g^
zx``^Zm(+Nu&LrWIJ)WzUiN))();H0>L~Xf39(Bk!x;iH6O6!hisYm>LhjpS?L*{B_
zqP2-eCK{V)Vxp;u<|bO0XlCLK8VC{Rt@{*}5U-~wEltSp3sK~!Ya0`7O>{QV#Y8(A
zcO<r#4m5Fkhmy2YDZkTNL7k}gAn$6Tn-txrXuKdPt2?9OP((Q~vX>Z}7-Zs2(>g#>
zLT?j&O!PI;&sO@In6p!nqybb066L8PQQkH&*u)kSTTKixG1SCV6Vpt*V`7+zcUcpu
z(r^<aO^jl61Tp?N>Sz;VOpG;AY_aw9tGxE8V;z*+k}SWY-!n1J#CRG{G%<-}f{8Yr
ztsk>Br>9Idt)FaDs9#-beQF1GD({<^ZeqEK6*7fP%rr6I!~zquOw5*6n3zlZ))TDa
z<OL}6OnmT1()^y*CDvcrV+&0zlEF2xgqBGTBxm4pDwfLX$Zt*HWwNGrDe~_4PP?q$
zUP-fcCf1u+Wnwj>You-@&&Q|tidYpMO5+U_H<@_yMZ!iC8z^q3C^o)b$~F_*O*l=s
zOzbeRlSyBg*kxk3iBC;@W@3-jnfk{jJ|y{wc$MD7&%<4cT$KAnb^t1SP3$vqfHt2K
z#b!Ur^FLGN0&n~s90z67$gmD!IAr2W6JMD)Y~pJZ-_SCCTKf?bf90^gp?yp7sO_!H
zZsqDEN4b(|ZWA680TV$JUOQDY;j_7FqSpHk`8gv_{1pGmZ_WIW3Ef15O4!81car4s
zYJ*YJM2sX#th`(K&crbj#~CeOHNEd{W#(>cEF^rgTRCasl!@WTFya_~F!7^_>ffQp
zcQ|e0j4YxU+Qo3z#5vhIVt6$sceUYyiEJ@skKrd17fswVao@xx6PINU%c;dCekS>q
zc*Vq3l5524#9w4DO35L{2l!mr4T?93x1{+!3rUdFJ5+Ymcibf@!iT?pGx4X1$FkT3
zXIKw9Jv8yi#P24i?8y3uY%)BPS-2!UVa69G5@L92;+c$yiRTpmF%fN@82vn5!r!tJ
z)^`Zm!}>_Z#28XyKnzJSt5L~BAzN=avc#-%(}<}=iSGL>H7ohIw^JqRh#@_Oj2H^U
zki*WKCx)Ccyzz<kKvOP?xrx=Xrps~MdCBt;^T$xOoAuC>gn}^?iJ>U<Ld2Jdg=2V`
zWK3nNuZoc?G4y5gi!+)TLkSWw_@j}dq+Q!mGNwFptaJ=zXz)f1uSuaXydFapD&=CR
zOtSLj#PTszAg@TQL=>N%-PVJ9azu937^=lkCx*H)RA*{!+onbgHOXt)O8ME2cqQw_
zP(OzFV|N7`IvT{#gf<OhkZ7YA8k5A&L=~keQ=8d-Ru0VCoV*3GC9##A+M1+I3?Wvs
zeaw1K%AgqDj-f-$dh)j;u~Q74W9SlttjF##^dRXPLpPGYze*6jXAHe!=odr(7~YJb
zw{$X7r!`9GBfLkV*hpx3D*d0YEM)*w2a11^Bke6GaaUqIIEEq8|1q44VQ38R#IQYv
z9We}xVR#G+V^|c!h!{r3Fgb=P;zV8nAH#bwjEiA(3}a##D@~(5vAgx#P@e9uHS6CM
zJwAp>OqvkGL@^%fkPok)?Df9>3rvk+S`4#dm>t9WF-(tPCheEMZEf;1$b&<(zhD-5
z@z$Ie=2Dzb99JLnNW{45b;kmmx7^}b9K#YuH^s0thGj9Vj$us<%PFpmVO0#9t6_z#
zi#`9=_Cfc=iSw;;{~uM~0WCH0fB)L$JzyUl9vvP5L_k2gh!p9)i8Mh$>0Jat5JWms
z1w`q+_ue~7+s!7s+0Ax9X;KwM1(pBJXU*??|L4rP=gytad}cB;nN6~j%wn<m#)+j)
zED@fqur<3f>>O$te9Mlj^55O=GAEWhvBC*XdMi0HU;g*M*z4<+HBPK`;)oMR#mPD+
zwmPxRiS<rwaAKo~^tRcFO-^)?o!xf7Yh6NYaiZ0FrDk8pb|-c?aZoIGI<d=%y-w_N
zVz(1FWec!9lGLtCj%#PFCxHz6ML8gNy0i8B^@Xp{A&JhLhr>cfuUC#aaomYZPF!~4
zgcB#7IOoK9Cr*h0bDeeKv=e98N_P7kUax#KD>+`u1t%_YFpDw&*<a8SKk!_WPl^S^
z{)!V<ozR@now(+N(+Rij*(F4EBHG`o-ueRt`J9U6=h^V^yl}$jgx`shd#u66U~uqE
z`R~eV_`50W0@DdrCf5cf<V2WrnhQByh|r-EzdP~FiI@}Do%q>_`%c_oTRCypiF;1`
z=)_M>+_q~{eS^Z&`Ibb>Rj{sF@9-yPgEbxwe4fH<jOx<e51e@D#IH^~CCS7iC!RRL
ztDVQTpC)rtf8n|FUh&))@)gQeirIhTi7BT8Zyp)_!-+qgNOmE`g}<D5?!>=Nyp-%O
z1plG`)v13w!R&OxEQ2;E2`(hM@N%cs4wFV$ev(|6B-LBHL4gZdTvk#x!BiL0T*&G|
ztFG1vJh?&1eZXoo-VtYa!QsNgZRzPQj4PWq{F)=O!FmTjmkYUFDC@#2F640`uM0(8
zDCR;w7xIhG!Y&kuli7(GE@aziwM;=53c0`=O!DsA(~Ey#JtivR0{>qaRW7Z#3ng60
zbfJ_BB_;3E1GxQ~^{l(;$5s}_h0-pRaiP*irNww<RL5*JH!7!gSO-$hg;!m8U2>Io
zp#p7$GpV8rueorynq}5csxecrvKUkmTp&tS7pl2X-Gv%<-sEOhx$8D6wOx3_g{3Zh
z>p~qD-gIGt%lec-T^HVRVSw;@F4TA7Jr{bq(7=U;B6fA*Z5JB3(AtGIqBM4)sSC}7
zH*ule{RH}HE>V(}LRtuZ`lj{Ibt@M}4YvNxVQA|@2Nyarml(7cjJ9?3ZJE|d_&Y9i
z7BV0sk@oMp&_%+Tjn>D?7#4+7yNN+}K`K3j%#v#K68@p!`!0N7+w>OF$Av!^SWXx|
z5~Z&T{cM~5LI&4#40K^ooVzgGg%K_cv2BLBFwEw|rNoggjCNs+h#&Jv?bJ_%m{RRe
zg@5M4SUYu`kZoPFj<=ODKPP<d!bA>oQ6{_ar3+sO=SSFB;VCXmbz!y(U%4>N&NV~G
zbXMSJs}~q%iZV-ZT0-I+AqxbVI#<X%!TEyK`=%{);cFKbNpy+eVnNz(Q*sc$k?4RH
z%6Bd-b0I@TK^4ngSm8p@g^&v?U0CJ9F&B=zu-b(+F6?$;j|*#ESm(kf7dE@F-h~Y=
zY-ASxAt=L@BQwt?rOWH-g}Ygk;T9Km%DCO?!Zsn>UD#od<ocVe6L3)F^iyTA%Vo_N
zycgT+!uR<d`&~HT!am`&>9t9rc+iDIE<``fN=}jCunR|AILclSSH$l&DJNVw>4MV*
zmkXy{I87%m{J`UNS+{8y?9$J=aL$GE61}iVVW7i{5}jPbI>9fwa9N^P1i3+Hp3Mp$
zUR{+a4Xz2{!y;9P#|5toZWlD3t(z@xy6C>BHG>&0_*^jUynYt~pE&prRQ&ccAbKas
z73SpcLV}7!6;T&rF8spAapAfPH(dDHh5IhtbYbLX<u==Yv+|=0Ke=$rg@LjBacn%c
z0QnuxFg!r<$qL+)A{c$(vObJJ<uTi&Wx<Dnj|3?`v1|A&J^85%zq#<jg}+7oUGNXV
zXM%2rbs_O5e+684F3Q<^R=-!hka}~olCih=KQ8<$di*e73jb@flB6P8MOGErRHUfj
zwF<8^?oLdBYE6k*RHUj%Qz2LS|6Q4ob2VLd6**PpQsE%3Qr!8{(^U|2sAzg8l_a-#
z$fqK|im#)oc~s;TLeAfavRjk_Dmrda#tleq+S%&mLMjTYXsM!=iXtkCs;H~-pB)ra
zQCvk$6}429P*GAvc@<l?D48lssVJkOtcso~$-PpN6&0n0(;K72S5%Z!@l}`f8Cw+o
zCu=q@#0$k&RXh<=K}AIsuc@e{;&l~ORa90n?_j|yg6bCK#unw*Eee%tDyplfA$rPI
z<<f=h4=1G6+p3V){w6028oN~)-8rqciZ@go*s9bKd{dB7{{K=>MST@5RO|P>fwau2
zLwOnrX(;%%AbY2=iY9DB70pyMSK--d9f+|rnM-lV8AzybFKJ@nQc`ObZB#_ITG6&D
z+No&IQdGRJ;sds@icTuJspu~L-%;_diY_WT3t<*)voe<6rjT@1t=mA79xCRaaP(wH
zj7)!z9_nOIYLnSyoAptwUMhMB>8+xVioPoP(K8DwXbqT;*xJKW?mxDM%9Ub?{Z$N5
zF-VH$`jCNa;Weo>nkNuB253V*RK+kAdEChB#&8uQR9shaLj_OCkt)`ySkGFi7^UJ9
z6{A(mQ88Dwwssn$V!Vn8!ao%pD>zQ@GnF64bkOW`6%$37sbZ3lse)gqm@MQ=6;p)J
z_@k>u7)ThVshF-}h9vFko0Wm$EQ!t*{7P`{HYIL9PsO(?zGKs=SfFB|q%Ibu!PhDl
z2_M+Xs?`z|->6tBO8$X4;vSA3wTf7#VwLF2?Yt|5tYn*<$WDXR5?v#>Rxsxg%V+Q2
zX&Y3WRB=khM%CK4ag&P8Dz@-^QL&$+QN=bD;dzc-Dt5DdRP2!GP8BcaIS&4lux6V=
zvPZ<dD)y;3^iKlqDIVIUkQ|ZdK^2Ep9AT<hQfFS`Q5DBkoKSI0^nCLj6dC9w?&q|M
zGn^$<Xe!RCIH%%@imNKlt6b@gOPpqlIv6gh_+G^i9LdiT7#;rNKV<Z>*u)hkU6ZJb
z6O^4do}{XX6P;&}B!vXMDts#Z!VTNMsUjds&{pU<UNkYxlZ&ZhKs_clbRIXjsp3bT
zO8zX_-1tewEfvq%m@00oxWjoylI{vV5WFWy`=5o}7yNxe3YCW{9@(jn=_+5s<quM+
z|Dxho6;CDUH^D#RxdfjHJ}Qz%%Rhzx#gndKK}H$=76oqnqvBr`FD07fwkph!;6|eG
z_{O8jww@y7w>$~7$s#<}jWi)y1!*78l3k(>!F0hKf;k0q3Fa1bj4P1Ojr?vjb)%UZ
z1>DGRqoy0R+<ZKaLT(gwqnI0o-6;2p^>a|fZOtcrGQdEkxEm$hDC0(1H%hv}?b6<E
z<0$P$rtq}M>7`i1$?1w4rFtfkjBJy3zEigRCG*qr75a4JRX57Jk*!V|l?rZDbfbzJ
zue<S@o7*8d7UpzR7E;NLl{2&5YnRHf|DD9DZd7xlh9p&&Dp92Ukjv>rD#Y4uyy3=M
zZq#$5j+={Y9rFe_-js@6dg7?-hI^aBLaVe(tM5hwH=2kaDh=geN!}LYMxr+s{O6!`
z_zXODE^lZq;%YZqxY5#$R&KO*<5M@ry3xjswr+gnMqfADxpAmO@ps(l>_&S=lao8R
z(b0`gRvn7BO->GGW^CD5{J1CoyKZ!GqqiG<-012?H#gpMqo<p1TA_y<f5?x*@T5|u
z23mKoH?}FgxcJ|V58UAQz4`6ve{MVSY`1<mY6yNP)%&Tsbz?YhShkGh<bH1S=X~zQ
z2sZ|}F;EPK2o4e)?8Z^~jCLG{x-racZE!{p7n76u8S{~1_KD!fZv0phE7~WIlIT}b
z=x8^_NR(MvrEzY2=EgiX=DRW8jR|hd;Q<aw|J;p<ZcKAyx)@J#W3n4x3je~5<J*;q
zHLPk+abv28-72RgHB3*;EWSt2q&~xqS#HdBgG&@<ib1PUj<19;^=7{mM)~RTxl$It
z4bBo5xUo<Smb>w_8;jidPNGa&?8Xu|zHwW}!tCDd%2GGJmDH#4mgK)tJCuzhQ<jOy
z25GxPSs{F-;3~mUJCrqUtaW3ZL^rsxQOJ5X`1xXbX4vG$HW4=qQrY6hR-5M;ld|27
z9d7ItWw+oiJC*y!?h(FMaP|(XuMfC!kVD;zI$j)d<FFfZb<ERogk9-IT@7z(IL0P*
z<0f;-4h|>W@Qa6&Zk%%Cv>RvKaJiwf=(7dS3SM&KoEzuexFAvL-wV0u#-DjDGlm~{
z?l&mF=w&yqNa|HVr{J~!vHT-1+#-4fnOAc|7w)l@xLZS_K8|)N#guvmL=3tS5)yVJ
zX6K5y5tTrn>vkyDMZY1)D8(Q76X3=zH*RwzD`~H3xZ}oMUf5{Jr{SI(KXV@D{NToY
zHy%iF&)j(E#v`7{k5ZqC@>uW}H=gi}ZjgLNTK?e<<yX;j?o@sg^1B-hd5c>2Uw`oM
z-S|s%Mqdbd?nc#}R<AMqElSs&%1bvAG&nS*Ye>|Pq#>(@0xi;$HKb_Pgp;ZP8o0)u
zJd1{r;-Thu*5zE9hS?Hbw^PX`xv~pptCLO-IV5{74Y@Vs6wWN&N?JoPkB0naW)<1#
zY*7aCGna-}Gz|MPoe$_TG!)lRLPJ3fg)|h_{#%DuR7epGExd)|>&=R3IJ;9JFR9^Y
zGrg1sMGDFkJXR-1v)bvUH4w{am{l=xTE#?SSq=O8ras-Nl+$o-mDOCYYACOvf`*D3
z<`*qVrQj~Bp&BmCT1i7?4OQ4*N?HvKHHEycp{kH-g4G3SaAQW+S{e@LwEpz0tzqEY
zRFXF&wT^A`re^JXPQ9Ln`Wh~2xU8XphK8E;HSc*E-qz4aLq`prH2m<Pqp^n8LdctF
zXv)LU(A-v9vNeRi{5^pN46QW$A8#W`Z3Wv2wioQ6q3$k)#_wq8tYMsn&osQNp^Juo
z8v1J}T{W?*hVB}AXjt4XwVQ?^yOb%rlq+dDc$NO1hMpRFX?S152O4^_!b*+;b5iHe
zb>z*L(ua+&;Uf)wHEi2u_0F|j%9CBnzT<iR{=IO*lGNP0l>uxV4Z}5z&@e~?cZeR$
zB7~Iem@rfb#bH9ScTDi)NMw{@q=wNN#%TCh!zc}L{SytPIwtJwU_BnB&8L!UtnF>h
zS61Hf8YXC%s$rUj&oylDXPK<Q{hDL>w;2;POwvHY@P&p)*Rzl?=}R$~!uCu{WOTZQ
z-)lQM>{e!Lm?3<oAjMfil-<_d&{rDfXx3d4!(0smM4Yc-frf<|zSgiu!(JJmi!>Ok
z3a)1hYgnS;8x2b}tkAGh!?zl~6Px9N%WRyz+ZvYf=qe4XHLT&eX{W~ZxB>Y((V1m~
zhK(9FY1ph`yM`SawrJQYsoMnS*G%r***X!3@m0z@HSCt8U4qnqxmRRms`Zz|J`MYM
z;)s4g!$A$lS&iKaZ4Plbb#@%(DWKtqaJ8YO5Rch@Sndf8CpDZB<&5BIK{}!Tvl{*{
zdR}yj7c^WH{yhh<kW#lY8JKiM!&Nqyl2%T~H4SC|Ne^p?XmDz9X;9gT8cd!|EwXEz
zuMRqj*G{iF+@W*uXz;QN#G7A(k0;=6g-D+a<X3|Ud@>)<aP-5h3_&3w_E+0PMxz>H
zoGo=^({WwH4GqsU{Gs8dh95Z{X}GW9Ck?kW+|{gAptl9@2r|l5o#pmfI>S8?ujRu7
z4G)F?#&M|Ov4$raei4PnG@$XXwuh%0xE3+)VXxC##{au*`KN}zG$iXt(eYfv3(oEO
ze`Wox;a?7E4gYAM2j;qeE1jO>&J)C};{a=e=_KKC9Xe7an#K0R>}mgFkX?sEM`0aB
zbfoLZp(C%3d^&Q9O>R3^F5N1ZKJ$pe3dHM>Uq?aPrht$P!L19j7P9rYQdCDNQHtp(
zuA_wTl7eg^9!sWhW{kItqNB8qGCInN{)*tu-PRKrhDVb!U)51wM+F@fb#&74j*i!K
zYYf!VQCmkP9hG%d5rtw^9j^<&f5Q4ftfr&7L~H1%DdfA!>3Q}jmG)R8`3)U)bTre^
zT*sR_>gs5y<82*p>8K~hyeh7*qXCs>i44rra*v{ZYMqJi^hs-^qp^-Ay7dKYD!i&}
zxX?NQn@ZmF9tB(IXsM&UZf)_<N=IuQJ@+W>B(;r>cF*&*)veuUn1#HZBma1*RR=Mk
z*ip!)JxXUC@9OwO$7mg0bad4*K*vBG-E?$k={nxmvAhg=i2Zvy{u*voqbK`UF3zv+
zQ9jVoo2fcJ((%h4h1cF~`{(GRgH1t8hQ2!b>FCd~u~&J%I2#x5y|GuCXs^P`57IG2
z$51xrsD!~%3hya~=@_nKq>hh88DSUKVXspDgkx>*v{7u^dr92wXuP-@qvKN@lXZNl
zgW^~n<8@3BK2FDH;)FHf#XRwI9g}o?A>u^#X@a#Q5|=CUlAh=umo!DkR7st!W15f|
zI%cw$8zoQI@tu?yzha*ysl1YpuXg@QqH_c%?{du7u|UT`4-R>-P{-G7Y7e@2ut>*Z
z9jA4i(Q)BG{v|p#>e!^?8y!n^e9I!l!x|mS*!VhDOLT=G>;KG^&ahIVt8`3kWvvG$
zA+8l%C%9ga;szbGC)uoHi;jId_UqWn;l0N3Nv-tDLmk_6Y}c`aX9rv3QX%KMth;pV
z*0Go4e{4bC=J505%)Un)?j33ks`Go513F%LFZGy?RUc<PDEyG%Vcr7hIQ3d0QyGrx
zQ1@mhIWE~x2%e;YjzZZJ88V&L;6JP5oR0h+6!73Yn?=XZI_~SZsN;JbAst~IKj^rm
zL)YQaaasI0ImmTf(Q%dYzbJGyhS$&It;dNf&$Ykuxpg!>3!ZLN7&I|kdak(M2woil
zi5fb5I{Z3JiSov+?^)|MaQZw)P`W$FTbp6llB9@^sE(g>+|m&f<Lf$ZuxI^Q;{TQ3
z<hWJRe$=g7<6cLt(}YoGye-Ceb=(mWKb@)H<K!^cI;S4!c&H=EgJcgL>3FQ;g^s^<
zJmG1j<9BwVj$d{3fps8HN#rvAHx8a3t=r7i{TzSj_*0xe=Xt7QTpnx0GSL3@%=E8Y
zr*V}2BL**ZBzW*Ir@L>ge}T)tpLlPtQs%=Pi5`47+p#Mnu}ex`>M0(idXPquPli3n
z;<2`-Vz@tF$?8Ei4{~^r(}V0Z$eHT!fKKj~_^+MQX|T__o6hAyZV&Q!kXH=oih<3-
zKlDj*=$ZNGN6)OVPs#A0pa)ewsOCW-kJW&R2c<nI>_HI^ih5AYgDpv=GCe3RRVpc1
z!h;XyrsPbr&VrTs9L!b9V|78deG0LR2W36@a-UK`#8)KCtHR3(vL@v{*grRg^9Gj}
zR`lRC4=PC(=BnaBWii{ePx)z|^125^>cr|E)bOCC2dzA)=|L?I8hFsqgW4Xv;Xz#w
z-tvGi7u50KO%Fc*xHuoS@CgiGjxhJ6SFMVAQj=xdiq{vCd%wc^zwJRI51Nb8*n=h>
zG!xFgZt4NMIK6Y$D*KhTNu_#<eG3ohff?VeiaqJ+tvzV#K|9IP#)GVNQjXP3Y41S?
z58m-u1|@5ybo8K;82r@58g;ax*jZ8;&G;pWOH#XfFwuia9(41dy9Yfyc+Z1@9t`rJ
zrw5+J1wIla>E*%uY<~}Wi}ImhA3L?l6Mg`^z=Hh>v9E~zJm@cEfZ#SsV(MTIhI=r=
zgCU|16{J2)$kqMINDn?1{+Zw?4?Y$0iQs4t#&~dByb;q6SS5~?q;Z0!4=Ce>Oc4BB
zkTyLIC|`Im*@NXCtYD{mFvWwfJeb2qdzi@wyi=vErg<=(qhgI?Uw6k04`zBW%Y)ex
zC^B#}dIl1<;atx49(*ks=Xo%CmNH-X0uOfgO5TvovB-nP9=uqY-fT?z5|(?{vDAZa
zg?z(dpEr@pcM@GDI9rrBu4IFo>C+A<t2~(Ss<q|cY7f?Uu-1ch9_;X7rw8jj)_Q|Y
z9&GktgYb=lTMj6Z%Eh;Mu+@WYqR^~R2gl%Ft$(z)i;_ENEhN~*s(Ro)pzM>H@9|)-
z5N<od13bLfI!vbS_uzn-#iNHkIN|}k$l}FO4~}^d^dRKHagX)EfvX-|^WcOBCp|dj
z!D$h{7d#_)PVlT?-OD&H<boixUlelxfI|L*2bUyzS@4SBhZ+C9jqYUUdf*k&<$)@M
zx!giD4|H3}cfop}-H<5ToZKheFKBuY;7FKj*$~4b-uB>*2NB`aqaMUOxbDFXQGT-Z
zn;!gV^XD}kw}jIhvoPHC;Hd|{aX$3mXA$oUJ{Ei+_>jK>LSD!rKN0?m2fqq={>*x(
zzF$)M?;bo8<zEl}5JLTh2Y=f9FAtvE{J<2e_5POVKOXQ?|BSx$Ai--@EKx8;Fi9}k
zi+F=Gl|0ppG%pq(R0?|0CozLh1G0LNF*75Z7umgV2+!$7E+Oe&<PcKuphBD6!t)6-
znny@p!8Z>o`E9*GoCpp+s1)*|uop$VDC$KeFDiRc%xnD^mG$BkFN%9nLZT(TDCLFX
zMW#e)Fy`yj(!$HwO6-)Ck?%DV2RW0<dGV?wl^3iiSV54tey@3P@}M;#6RUV}<DkOu
zx}=g+^`htD{MEduE=mnAYI#xHi<%M!^iN%|D0|-e|NRc`_$=j3FY0>nrVn*}c*~1=
zUX1o)j2HF2Xy8SAFFJVf<XX0dUh692Z9#6D*2s&-!kc*c)XPe0DoD~yNOLc~Xm9-`
z)Ka3Yyl5??MkpV}Hp1I_(M|{zKCI~IMJKOy-#5sMcf9D#1M#Al7wf+)@UG}xytwdX
zfs{kmEmBuex_QxE2$ddQyk~R1Jxb+$FZ$Zb2VV3R-p5ux^x`9%_sdeepUwMwF~H^n
zg)A<SIM|CJ!iRb>Qphkbh6@?tg}Kdow~^u1G3g(RI7;vn!Rk`sPrVq+gEH{0fpK1Z
z=EW~w{OZMcFD7`g(2K9V_?%<d%rZ}Kq8F2deBs43FQ$7j*^4i|m?9$0rpC<%r!L!^
z!RQQ$&bCu$3Yq1_xeu);U0-=I$BVgk>YzhPmqV65Uz7!cDGMD_?<FkaNyJ=UocCgh
z7vJy@yx8T%QZK&sVuKeOz4*?HWnQfIBI#M$a<BCg=(<D7N-tK>G9z)$A!~5vOw6&$
zi_?b`Zjimki?v>?lL5)3_3^QKNSS}tx)R<b(H&ms&9T{wEnaN(Vw;HD1-b5mW(6JA
zs=~*o^EEz-1_$!&_F|70$Gte=#a=J=dGXhij3Zv`_u>Gb`Fjz5H}#-oXRd~0l9LWw
zwK^;cZ>fqMR(dQ<IqJnR+a}@rLVQ+pQlh85IK{)1cNKXJcE*ddUTf1Ldf+>rbq^~S
zytv3Byoh-5y%#@7F25I-ytwRz+Y8N$D<WR=!s*3T;q9dkbmC$oA68Tm#~oJ4De7K$
zyw(e<hUixwT9=?+FB%O<J8)R>iAW`QSTVf_co7sOWb1s7lBs+{GwMZ5#0Oqn=ltNs
zEiZ11a?^{SZ2KR*)>E46Qwo&aYaQ1eFYbErvz>a6)8=MtQfk@8x;wis`lV$Sf9S;{
zi9VHTKNkLkGwKoL)g#JNFMi`(XP}gU-@SN7KL$4n$FWesKfHM9MS_7p*;yPL)$yD^
z$9=Q^EgoL5>+@UDf4umYXKwEt<SdR@CgkXOMB#m6qJbm>$p%skz(7_5*$iYckZK^!
zux<}$9#K{vQO+Gv%p=NbC1XOqQVl;#UHDM~@lmhDbOSjI6gDunOLm5w2J#rlE74pA
ze036Y3-{DX%x56KfkL)r0U-qqWZ25gg#7ei)Je>eJ&~k{=tT__6H?qjN!zl7kdIXd
z&FEP%P};zo2I?9pW8m2lrM!U(2Fe<E#Xvd3YV%@8l`==IA@Qn#5&^4s7%Cd5Y@mvP
z*9=r!owbr+`oJXe*9}xPP{Tk?isGTVV8sX45Q<}+qe?9i-!MR4TX4j6>td;n=oH^F
zP|rY91I<W=SeNegC8>ddh6dgiPO-6pM#6hYC7T#vpw1{)z&1C~PNFRgv^3DlKx+eS
z4a_^LwD})olv$`Sv^UT}vUC*eBpCmq#XAP}iDef9T@CzW;9mpX40Jc}y@4ML^f2(A
zfprGf8|Z1Emw_(~Og8Yofe#FfFfh_UZv%Y{3@|W|o(+6tz&|3TpMkzKuAffMmyxd>
zRro?Td4Fb6th>=c1_m1#W?;C1AyTFLN0p%lF22ZQ&B=+JBA&<sX}(_lv4K&X+YNkX
z;1jVQBL&fHv;jW%V_BbaFc{WjTRzF;o8ZHHr;j%<!N5eZr)B)C|J(pib4Djg(dT2<
z1o)+aDFzl9SZrXbfoTTjvONt<H!#D%Yy)2zm}&c&CFJMo>8x$O!D&1|dS(UY7}n)?
zfn&;iF<5BeYXb{}voej3DJR~vx{~%ZUSi-I1IrDpFtF6Xw`_{u>C43UJ3&rXG+y7!
zdWKNkbgVS6N^I5`VANkAakZE+m9Ksi*RpN<r42l$Y%s9Vz^r4+aRZwSY-TST*l%Eq
zVf}(^H?V^(#&U<JY!eT)dRR}fb~4q#UQyUnyA5lO+9Of6Cj*OM7EWsi3>*~wh=D@}
zI##s~>aZw%t6RC=Z;^16lahhj_WQg%mJ<d}8aQR(G&@npdA5~-vj)ydMox*n-nRS{
zkt{5TkL)gRG*(W#D7fsHa>>AD1Gfy^HgLtjRRb{t*9}}V;4}~-c208{Pz`ttzW)NZ
zc-93q!4t=<erNj=84L~~114uD8LQofSiANF4D0pzpeXF7>yjn=aV0GNBZAbU2KYe$
zmUu(P;o9#U{%uzDreyq4#Giy`YwD<dT)AW5fq{nx?izS`KK-5`$<GGv+nm=736C9*
z4E$o?R|AhF`xC+Uj$2<^cxvD`1AlOm=lsw4&9HuD*yijnB9Ex@Rs1FPFQl)jJm+NI
zJd=4jHvZ;$S|JC?O9Kf$<oBU~4~af&v+pz?vigwZ`|k@U$wE?mfDc)GNcEw|T<ew9
zC8sR|a(d3@gTse(pH*&lLB2^*;7)1|AM()ioz$FyxqQeiWW~OOA?>p*-Iu_myrSgu
zfg+U*7U#pOK9u*NkPn4@DB(j%ABu?EqJr@~or?))iN%FHdM`QChf+SgB2h)KjBQg|
zNTbZ;vO*5Wk_vyDQO*|Wu!0X2eW+#Izve?_AF4>Sk|1}Ee%*(v!fOat^P#$s|JyB^
zD=2D;Lc&m6IBWQZkUD~C6%*g`p`H)L{V3r_eIFY5u-b<;J~Z^<Z6EskFu;dKJ~U=i
z`>f@cO?+tTLq{Jv`OwUV=03C$eRn78mAV$fTl&z-hl>vqa@}#bizc?F&w7sUA0)Ju
z)OJ3!XGVFEkXbtT@M*C`l6NGvn;_pu>+Hk3!kN@XNLRtUZ#lZ#`t#P=-V@%_hh9S7
z=W*GoANbH)IF~T>@mY(qK09u`EBBEPeSPTX!)z&+w~bs2I?#tfK1}psk`IG@7~;bi
zR?LT?;$fuibC?gqZ9ak{?e2d&qkZhdC?7uY!6QCd%4nbU-Y5yfSjjR@km6@T#@l`-
z`0zPfet=cCZJ#J#_%PXrMLsO{;Y+cZ;loTJQ+$|e=b9#Dy5P6Rm07kv&xdWtmDxUg
z<-;8I)JtoVK8CqskTR$Ed><D0u#l(2Fl!sZuYJ&uD<qM64kEWBr126Tz7hMSJ}mQL
zdAt<C?*!RmD}>N^uxvHB(ue!Ul~q1uoUjgLtq<#b2>TH6VZ9F<d^qC6Q6Dz?aQ;EU
z4j*><u*rwbK5P*`+ih=KS%2aDE*AZikoMdq${ru~3fb+$Lm5B&BzjPAzYMbj!kLj{
zk9f$3!=f~hS{?J@xDS3&PWW)rhaWgFd^qK^-Y2~vc-n_EKAaVPPLN5)^Mv!l4Y&1f
zDZ@n{z859_7UyLjuK3^+&sTl8=7ZY@%?GC_E<x5OdJ?MeJpblvTF;>i_X>Ih`E~=%
z4B;frPbfThc1R1GJ_Kw%=tD?&HEExy4>2Ep^Wk?Nu5;#;q{lwo^x;Pz9!c~kA8xVT
zY!A16xa-3`AHHksxFa|yCw{h5?{oarb?_bG2ck@fx86dlXWN{y=7A@o|6<$!>cdl;
zPkfN@j4i{d+mCF1{Aue6e*ERbb01##kTA@Vz+J<H{O!X(LVj7CmHNsP%1g=8#EC>d
zlKe>aTP2$NkVQy}9}q%u-w7pEc<h9dW|QoGaFfbhe&qJUA!531pTm!wHotR1$>T>}
zKlsvdK@sx_77)zu$2A#a8MghXM+t@eC@l6x{3s@bd5a2(zr0Ld(vM6(I{W#A1f~4e
z&(N!Wloz6~VnQgE@uRHGUlCGHu+@k}USU@7qlO<f{ix{2Ykuptw2~iHgj5!!GC3*n
zb>US7tNGD*yS3eLb-#6qOESA&S}o4%el+ldytW^2_)*7?Hzit6ka}G|-m-ZpF>Ozu
zM2Zdlc-xPrel+u=>iEP)<YOJZS~wc}Q7JP=6F;(^R4SdcesG)n(ZY{*ezf<4`?R+7
zqm>`6g>y63Ha2PNw{~u&5)ZWOaXg`eA05S@li)joG+-)?yZEv1m9$}g4ELj}AKm=u
z?zfiK_hCZ`>EXwFe)JUH%a0F)yf1kENkZ$TN!GG+Rz}E2qEqQ7q^}?O&SYV<zpW4O
zW1t^{SO-yt_%T#S?mk($RXr^k%FIk1;m1hoetgD(Aze0>1K<se68?!FD-x~i-qC*C
z>F5|E_^F7DR>+smC*<S(nBd1(e$4UXb3Z2f@ueSA{Fo#jCJTNc*hyMA&Zmkp&5!Bq
zUpsY%AG3td^n=E6ou$wIpXgjazLw}bKjw?^0^0*E7mC7+i~LwDe2E`R{rFb0d}CYE
z`FDOSvyGWCUffDQR&kI#;tx7j`>}?D;U-$%#9BYr@mz=?GlKPgu5m)qAc_UC(T`1j
zs3zPdHv6%~kMn+9pxd0OTm3jDWSbw`{n#OVzaUe0`msy+Zd=(SWG@Gaka29QoT&$d
zSDcr2(2qm5<zYXL*!(CPK`d!}+>aBYpA<YLc-po+Bjl_fqbjAJ6Hao`kMDU_nt08`
z4}M(o<8MFy@#C@|SNsV25#nIr)ZvH0xnh;WDX0m$1XV$|APrpAEi+xB9zVQ7b`-Hh
z2A>~(+tTzS@c*ZV{rK6B`+h|Hi24!p<GLSrZTlO3{OHF|620jMKU+kHw<LN;@V4Nb
zTj|tkz?$3>h0%Bg9{BOtk0*XSwDm{q7pdDXe*7xpUxH8l_}!0Z!hiE)T0^*oWTnGD
zIRA@h`lQG}@?6Yb2*wZpU*UyK6fyDAj|3BmCX!5KGm+i2vLu^)Olpx76A+R`FjX*K
zrJ@fVS^p>MFp+K|uZesna+t{ZKS{Yv<dG;H<~Fe*u{a6Cb~&{Cl2lNzfMAA+kLzc~
zZ3>xIL&bSf6R(ItF_SmHmRLei5iBW~DOk$H<n$agC@s-4f@K9`dka!8C!FL}6Xk7Q
z!9=`Dl}uDN@u`WiCaRct-NX>n`emtVqMC`WCc2rZZlZ>XwkFz{sA-~>$(JDVH#bq+
z#2Y3Wm}qFCj)^x-yk(-EiMpn>sXfE75*ftdnHf~-ORnQrlH%gqV$;Y(V>_vdC{0Z?
z6H;w(L6#CX<}XeQ6D>`&5+|+2V9@m>2KsL!(eJt!pnZE2@0jRpqJxMX1!>cX1#P#g
zM6-=Ze%D0Ya~Hd~?k0Me7%2AdndoVvAKSr1FHt@)(c9$Tk=D;84}^Xg`k460=CouI
z#l9xuwMw02+4L8K0fIa(7Cp$sV2QG}REC-uW@5N$y?i=KaD?DULF<}LNZq$AgHMEy
zHZev>q?RR)Gp$?HuT0D_@tKM7CMKBpT*T=nCJLEs;!6{ggnuCz-)Ec|r<j-~%2Ywi
zRjcIq_dLmGh&WSlmWkQ6&5q&eb4|=MvDL&j6Z2)ve9J~KvB1Pa)A|$VYr!QZ773xU
zSjf(k$~Qum+EFGgGqIdQ?v%301n-+x2(BfXSS5V5;2L(^N$Xwvkl;EK>v@(*(ndih
z?KU%T%Ce!i&Ej*5AeU%vH?hOSNfW0`>@=~<!~v=KZWDV<>|=+XQucC~ol;1MJQ3o!
z-xd#=IAr3mi6bVCvNCLh8tF8q0gaEFI3eW!vVSg4PK$Wn#04Q|Oq?}wPWb#&3Ip?A
zH1WNOD<-a*);HOHFmXu;`M9nH7%rP2GJ4H~lXHa$Dl{X;N!&&=p|c|bSQdcCgqLF=
zfJp%uCVVC;1yDHvzX{VsMgRo^2$%?(NC+S?fRKr>iAN?Ln~0c*nz+reR5qdb<<uB|
zSTCjiXyUqw8=Nl6Cai9p$>DdC)23m4H;Jh~iOns+5^Clh6L(GAld*c=!~+g{;T?Nh
z_7B;HPZRh_s5q_}p8bi5UrhXE;yKMsJT>vViDxE8mQBc68^4)Iu8pmiQV(8EO{$H_
zv7|pt{3)eB>g;IYvwXfV@wW;3{Fl?(n$&;T*H5jNE{POhiWo03DS+ev(gMgD0JHND
zQUX8#e_TpsG)n-xPbs&(si^_$6ywOr7C`m@_qI;WBj^Yqrw}UXLUIVYPAR#B<Q81v
zOQk_x;rRl{A3y=&zt*x`xtC-m77Czn041d$wknG&5<pRjvW1HYDbBhXsU-wSt~bw-
z89=E3H-$-60w@ze*#JsQ^m;8zd?kQ#0aTE@A00`3HGuK~%zT;<4^&3Ql2}m10A3TD
z&b>1jtrEcN0kjODm53YrB~%TdS^(7ps1ZPe02&71>{5Uqi>?_!tpI8V@J0aj1J=N(
z6Tq7RycIw_DTqbX4S>jS_muUGbQT>i_v3L2?cWwxO#_$_OQO$40W_A5Aa5c`OSou6
zNb>+%1aPXBRdgI%2hb*f59vREwgI#Ypi2N<rOxdG=ommJaoa&Uk;k<pmc&MTM_RA5
z-G=W9$<nZRH_1q|_XFt8-jV2gf;|HmyC8*0y(IegDW&*nh0zZr+FP&>Pbd-l2GB2n
zApr~xpnm`ZB=u~T#DTUMGY%3ySddX>92UUv06t|wa`+<x_&9)3(sUz9Vo7YYPXZV%
zS;mOM#*DWoJ*4|mzqy<`E`af3K>ahj{h2x;fX_u=|Ew^h{3H8|0KN`j-ruQ{1Nbt4
zDFI9kV1B^bZf05l(}jG+))PYU<EbgcnG&5PIGe5dG?n5U+h#5u3a8FgCM^hHp^*5#
zDxBOFvA_5spa7N#A^%3mQo(NpBjZw*2e2Z5Z~&12RtB(&{T{&S09FUECV(9Q><nNn
z2XjTocENQ4tQWFDa7zFih0tJA0Gox6dDmKqvQ_vt!T2hXA6!|e@8aPEaMaGVCx8RO
z_u9%nA^X{kvY6zcL=Oobwr!3C_#c+F!sM7J$8G&Y04Ht!?!AOF0h|rsY5>;)IA`lW
z2st0X1tAx0{rdpas@7H-43`49Z0lD7sIxvZu9xT500FopN#zVL#4V@=pmYAWb9seu
ztq3y~Y@g}lPe1^sof;Gp5UjY^Dl`<p7rU%>js_45;29^z0ImmcLu?)k-VETbkRJtq
z61*kIjJJi{5$tqYxfj6C!tV<<+?z<72LU{k=p#WYJhUe=82Ht`U)bgWJeBBg0Wkc|
z)8w@ETWN&`Rz3d=;AH>_LHuQVcpktD;eQMMBlxeKnlip%V$eFS96{s^A}NSuiKYaR
z7DUz{Aki#>se<vPQ_PYrh;&i13pxa;Cu}UJ|7$H$V#pQGBA7dfJVNpczPMR9Zj(QV
z0zqU1QBd^4f=ntD#J<+nK@}0@kCHjaiw996h$|sn4WVQZnL!*4;#knSzA6>OTS3$d
zLJ6XD5M_cW8^r5DRF%|Mf~X*bmgR)JDp)><>T|69rx+@V@>&p;Y|F|)RIz#2E9up2
z{)Uk1LDUdZ)7EPRQCs+;)0WRVw*F=ib!|Q?pLOon4_X_pO$nkw5DkNPJBUU>bPu9O
z5RHRqBB`B%Xc|PbAlgf`c@QmvXd49gOm7(kcL{G5MC%}a$_{QCUM(%TjqqE4S=)7$
zyOGh34&6x<8SNn0QIJvY@byj*ohACNVAmjiZ-Fj?G+^i^IyZ2CFNmH&d>F(>LG-dc
zd?4igptT=a+`hLceFQ1?4WeHV!-5zdME@WL1TomoJ5b0VLDrD_i*YZrAwdic{<lLk
zw|8II2qS_R8N{bSj1A&r9&hW^Pl6a7#3<q1N1MtR+vo1o<lEOX*e2tG_$-J?L3|O!
z_#h?(@p%vvgJ3G#gn_w;jK2Ta;*;sWM#h(dJP>kvUR5JwY7o<cm>$H8Al3!3K8Tq?
z%#z|(1u>hw5X9mjmIN^;h`FLK2;!zE=~^Dl3u1l{kG6sQz|@Sw4U-oJ@wM12;%IMZ
zZChVzh_wyhH$f~FePs~e2Ju}GD<sOKWkD=wv)94c<P6{70;f(Z6nnR}@-nRQSk1mV
zh&8tTT6R+%tFJfk;ZG2Ig4i3xrXV&4u|sUO*p^#u%Wa~hH%#6x<m(1jm39i>6~t~K
zpGtB2gfsP!ko`d%5HfL6!Gl7$Pd!r)2XVx<WX~QC;sm2X{1U{;AWrdca;Dx3;&c#a
zf^Y?)25~lsb3vRB;sR%_ZpHZ@C{Oc0KgxbFi0^~ehajrocKi^;r68Of-lvtz_WW>7
z$dw?j+RC=J*_fBn-~3sOHrd=kXhHnQTtVnTc!CHA5eZuNQ(m6+w;g`rMi4$B)GriG
zFj+}{P$h_95TPJmo>my*b8MVM#h}O;CB`A~X4>^2ZUn8ryvuja&Tx~J>71SVEivP>
z{o6t8&&<z<5_dQkolzL>29dfu56REcAom5?G7o}yDEyJ&V_Prjb^OW`?L)^OLHtRP
zZvhDYCipuCd8pts;mbn>{|e%H5II7~8N!}NnJ<F)Cy0N8_&fODyI}3lScmhHBjizL
za>(+Q5JI95@+2X&NeKbMvxJZ}glr+CN;FN7d1=g$U83nBID}A%Cvm&CTp{ERp<f97
zL&y_C-Vojnp-~9=LdYM&>mgJPp+E>3Ayf#VVh9C8C=`McLg|pT?5%JJE%&2%2p_+b
zwMYm>MJy)xUBg5gl;BT52$`ZVS}KGq1uQ*|WkM($0^g{L8^035t062nqm;AlX;xnN
z#$Hyg*Fu=zFtJhym4#5LBB?Z^lU-*ND%C=$9zsLWYlKiUg!;m3g|PI4<hsIXR$Is$
zA=I&zH$#Y5<1JgMXDhUC5W=>#>9fDGmSM2C#vwEbp+g8A#kgq*twLxmyqRG05L(!N
zTH3X3V=HY#*dRyLP7c4lt<!TSDj{?ap@)d^Ds>LwU5R!P>?+tzkoDo#5;S{{ohu5P
zqGt%b?9}&#d=Nr!A$@H9jiv>e_oEQ{+6qe_5W+wnbqLEs7!<<b5XOf%bn(Ng<RR?k
z5JrjdP{Cn>!v#l#Fj9_%PU!Yho3u|t7!$&$k~%sBF0`Z0P<KDZia1V?%4c>ve;&fb
z5axt1H-t$cd=bLb5T=DNIfO5z4W~$!&W|1RKS0SKl1~@$E5R8d#QSJw2(xVev+YsG
zvSz56^XMvsC6c<VSK@*Yf2^@E#Low1(m*|<d@V_f1Q-8L-fu)%8p5|i;zznXgcTti
z4RL`VR)(-Dge@U#4PkW%YeLw}mh6?dHiUH{j72iba=%%eHC!(qHVCrNjY2lrWibn#
zZwp~N^$?Co>JGuZf;$Cwg|J%)J?s$@A1(Vr*dM|HQ4R_ovQy&*tO>I)#1G-Pq@E7p
zgb-Hmq%`9xyI;<Pa8{C7v2!7u58;ADzZbkHNY8O^KZI~el*@u~@mdH@wni9R!f=J4
zhR`jH?qRq?&^Wz>Q7{ZW1WyQ0L-;KOZwN*RH$u1>f-eMrh~Jya5(~i$As{>)LQqIZ
zuzME=4H(8xN{_Hd?po0(oktV6-uwFhSpF!SsXvGC69@L9><qU;xE;bBiQWz2o~<W4
zvoX-%eh3djco@Q?5Pq>ea34ncc^twMTk*V+jm7;c<ud8_5T1pQBaED3{1L*RoWsLN
z3R}nWR|tQH@Q-ACF8D%_6=v$c!e2@?=#WZ+<YH=a7%5?7lPCn4nkpoVZ9^qZc-Am#
zluu(cJDXiRJHkkpB)Wa{*lMv{VH6N0cNi4&2&bMmjC^6_muUT$`57qE$)D{}D2&2k
zlnvvRFp9A6WXGkFVH6c!Ot84Emk=`iwRD<ghEYnQiePEmri_qZIP-_`YMA@)q&Eqp
zd>9qNXc)%ZVN?v`wJ_ccqe+LfN?}yyafMMcj4ENg9!9k=s)zAibL)q)YS_ZZi>x0|
zzHY|V%hMkwF)&&yjM`zmAqE%9SZ{3A38Pp4WG2<lWv!j78^&8<)DwdSf<>36)EC0f
z>?G8*JU0qs{^yQtXO%(w(;J7a#f0Z-=b+LwjAmgp52HmGM%A=;!)O_{K6l(MjP_x)
z3Zr!xZA57+$fUYMvJ&Sy9mEb{yc0&}Fgk|ODUA2aT5rrzpZ;4W@xrr&jl-?w&0Is<
zC2XzF>?+88Z`rCn!k8S!mtnjYMo%6Qvxm_yjQ(MK5JvAXR*X)+)jq8c4<wAfVH`P_
z=Ob2WNc!|_ITpO0&b2^Q@>>7WRywN;2xB07oHYz%5SuGk>aZ{-^{}=$87%EEL~tmp
zde&;;0s|}@8OFz9j1S{RscihKYg8Dc!x$6BCt^&4S34(s8pdGBGET@?Ns23<aa1S{
z@(E#l9>zrRLsyf8l&hWjg^(p3Gbv69V`><S!&o9?ru$EhX<<wcV@4P=!?-uYS~ATr
zD~!2e%nPH^vy9ncd}Y^UP8i(tv2M@on{H*9AI3uVO9_iF2qW}%O6uN}uftfx@m4y8
zBBMmM@Hb(s4r5IiOT+k<MfWYvg@xbo1exGi7RGXMp4Q2+B8-(`tg^#LtrUiNXO(Yn
zI@X4<Aq>8pwT|uIC;R#^jvlavQ?rSQ8^hRtR@r3Nki%?i7~8_QAI5_)wuiBUBZ^Jb
z$2zo~VH{_YwB#<yvOA1DVeAcKpF|IaaY)GiFb)XO#F%*xv(PY(u>zt~VG=n5Eg4RP
zaWafkVVn*_<>bua9md%(E`@QKhqf^FTo@OHke?TFLGZxOso&fB4?_4YQ`%e+el3iv
zLJTvVB7>9Dkto)VX$w;|;Uv0{riQ~K#4E@PekS?C@P}bar~eqnPhkYY2(s5ii3zf&
z!eK;&M+HltvzA0&w^MHjxf#Z~Bi4z-aEr5zoq9WrJGKFn?%Dd!9B=2XS&l9CkWH5}
zH6?;aVLT4w2}k}Psegp=XBfW-|22%KVf-eXNzcOgU3iwp|E+%;`Y7SAFrJH;6v2xy
z{^rae>xgLokLWK2|K+Hg`CqPt2ofV!Sxx5_CngIo-N)Lq01;$~AT@%t2=YddFM_NQ
zYx%k(f^;F-1hYrbcTNWN91-LcB~JvoBFHUzv3r>`U@AkKOfbZG{s;<3P$Yr^5oCx#
z!3YXPK;yVgJXcXkin}c)ytrTq!2wIs>8(@*N(2XDI2c3e2+Bm@iNYI2*$7^VAQVA3
zf^reO8o{&(rbkddf(j8dj-W{d6(e{pf;S_m8?kPYDhXDNpt2AuRfN3GW~pl#REwZ`
z1T{o_!?vjzK`r4O$|Tli5t#*PSx1z5<*aqZZwcovZ1v-!;I6Le4TR93VFYj6yio*q
zVU^W1f@Tp6j9^d%%_C?LLAMCHi&@JE+6ieTcrJ^hHQOzMwh@qTjU_OUw2z=e1Rceu
zvtTDdI)5jESRd;XBJW1fC4#P^e_AGy3d7cG89gF+k3DGH_Y~4Qf?h)2xAhMqICa|k
zct{^nKD70Zgbe&SwVx1Hrhfzj?CLQ(ID#P&d>X;n2!@Ky$AZHIhYQl}hzLg7d}>Fl
zpivQgBFbo69}~fnQdXNYjEms22*%s}MP)(+Ux?-Bw*5pQlLVWcv)+1}9Kn|nOc5nZ
z$;7Eb8dR|QZbk$%BltFg?;@BL`R|%!o{-ssUkT2MV6L6|<ALJyBUm8Og%K<k^0nY1
zLG?jqe3n=e!8f8Xx-^1#DrbXb5p0NHV+6}1SP{X>h&81%tc_rm@YRBA1o;6~CavQV
zAc^vQb}9^;BG??k;RudIuqA@65$uatA4H|`wg`67xJf#Hv$jXDgU1`Owkl>46>e3$
zn?s_9vPW>Q;N&wIRJgy-ex7R)kQ@{|B*+JzRE|b)ECT1)bdS{Jcmx+C_&$OY5uD^W
ziQqH`Km_L_I1@qtOOCT*mOdhtoPp$mD6B@DQ2Zf+OY|9mD}u`rXt&d@L~vEe(BjG0
zY(kwO@5rob1a1*E!MMS=;>k?aIggFZnscD_l~iv8Mg+bH$o+zW2uvZRXJ(}s6i%|b
zcWNYpD4REm4N=4*xP37D%Lo#pxE{fc2yRC3V+4Oi@H~Q_BDfX7?-4ws8CxcTClS2g
zAn|Sl_aa!+G2277a|HJzcpy<Kbs8i#?4C#@A73Hyk*z<blNssl&MCh{@M{E5*@o59
ze-j*CA(4SmVxtp|KX{toPp#W2mHbaO>^X&mZCL1Ku@};w{M^Ui5&R?kUsmadLjH=@
zRbOHhNl}cBVoVgtQKUriW)yX!KonV`D8nf<iqt65qR1abfhe*@ku8cGQRIvwdlVC=
zI2=)=N8x^vQ2daE7hWX9F;^71qsSLUkExEwFB0-Zkv9t3bf1^HWr~AXzp~@67YVcZ
zd^3uIOp2mJ6osNF97WM6ibX-QB2oCJIF?Uwd@<F^GW-zeD&H{2u@?z1UL=%^qEr-$
zl%5#{9n$8=iv-q+p|s?s@=6rtqNo~0wJ2VVqI?upq~;Z(s2Ig-QB;cJ_KSo|l9BbN
z2fC^p#j&x;B+dJ$y)O3j$#Pkr>QU5;qE-~IPj%FY;^7pB_9CHn6mN)`|3yL_A<Wq6
z5LkIu_^l}FMe$A)oh4WOD4IsmEQ$tEG>qcyC>ll4L_%Z9%Qied)nVk%K_?{fBWfN+
z>nPep(ISeLQLy!>w-S36!GhXG(JqRPQFMxe)nID-C^|%~I<OrW=#9-not($}ZWLXj
z=o7_<QFM)>TNJ&dzbpeWdrz>3cwl!>?<uWHKkrBJK@_K6BqaT971UcSXAX0G6h+@C
zhD9+vihfb_k78gHgV>la64+b=q^U_*rNL3K-G)RlRD4ooFS8T|9?pm;Mn*9zicg~W
zSe&!v&yG!ApOC@g80e5ul24-;8^yvXKQNAQQG6D~v?!)Wtu;vFqnIRQg5c+Z69sv#
zMT0M*m>k8IqA)r|Na7hQ@6;$JoKr{`W{5sFikVT&5<WYMuk2iXQuEVh4x74$wH|n$
z==1H=1#F5A+2Vc{Me!|lNm?Am65Hk*Axqg8;)=%0qF62Ba={f*tmN6(F>^>Etg>@4
z%CJVFYok~vB=koCX5SdarYH_XaWIO_Je8u@$15Tu|JEpu?#@rLD~fHRY!{@mL&(l3
zZZ#;*=vPMm-BIijaj$LjP{DrTPdZyRhoU$f#rY^ML~(?kIUb@oO+H<jdQRDOPB|6@
z@pu#`I3Uj{Cj}GFE94c<D{-?kQJfVsD(9jga#hboo~QC3;?*d=7yg6bC0oB7#TDW2
zjc_cTpY@t>XOzz(pxQPXXNIVCA5B+f|4h(Dr!k`jhg=lfW7e;#KMIqlK+e=fF$AIr
z@_dY;Q4FCd!aU2OcpgP0if9y1qWFdLKhNUKy!`m&L(czE+=$|46hE?q7N*{f;wK^G
zx7m_5|Lf08DtDr&li#{exfca@!ur`xy&uH`n|D61Y-s0r#2=b=j>m#8Gx2NGx*B{M
z#c!N3j;0PhZ*A4_JL}BXBrB&qlVhavhmb#cXlt`F`XY+IIZ?-uOAhlNPW3S)$M7$w
zWhL#UAW1^ZiYCVJ<#}r_zmymdLk=E(v$QNRq{fgQvzGnrUzeU1L$(;Qi?^&X@XL^_
z0MQWx!~aDo?mn-W=dJtq+%e>dp;8Q$W5~;bVkjO%i5T+7P#}gPF{^hNGGZuX^MWzl
zkpnC&%8+T+mr05WFJ{}kT`#j_44J&zkD-jzC))+3<prfw3`9k6^aZ7C46npcF^1P-
zC>O)4F_e#?LJVDaKKiV%=z_w)dJ-9BDs33ZS!k6QYQ#`8hSy`L8pDMQYr~XkF&G1t
z>Qa*<7nBNrIcmjFJBGJns29T<G1Q6S%@|@A6b5=`AgL<~yPmv$3=LvvXxlIgL)?s{
zaSTmj_%w#GF*J>#Sqz<HcsGXTG3&~+T@3BTxCM_fh8GtUhE_4O7T!j%t*v)oZhc#|
zgV;B`sC0~3-$3Xj_>N%ti`JJ4y2Q{mhL2+C8$&m?>V)(@Y_T$F-DBtx!+SCGjN$g(
zEFTE=is5}B|6IsQk>TI^S$m7pShJ!ZvXSRm&wP4ZRQkoxKgKmM7#_p&-i`q=3>Gp_
zaF8JNkrx%>kQj#A%BqXX2&wkRF)sVTNRFR%nVZUjAx=JtVRQ^*#D?PfvQ`5gyr_(e
z;j<WK#xN^}@i9z@VPedB!*R@B%u34tc?=gXDnHz?E{!I|@I{OZ=d8g$HHK*%|H2ua
zBIJRVIo(!f2)VP;`pWCE-xK&foY^sa6~mkue!8gS{9c*Mand4vVGLEiS4iebbiUvM
zj=+C2DSpl9hV(za%xv(zvN(n%F?<ul(ik?xuu(eq+Za{}VMl)#!!nyMk70%ImA104
zcjjuFuZdx;@O6UgZN1a?3Rl%`ieYmMTViO#WsoQGTS3+aZ{;9Ak$)Q-P}bk>kd|b#
z>=d#q_Wzi=4lt>y@4L%#*j;uOkhXMKhTeOxBE9#Hfb=F^Kok*>DuRk2SSZpFDI#5}
z^xpeUrX`bUnWZD>|Ktw&{r$f8o$uUp@4I<PUfxXF3x2bd9ckDpe3zx{7Q(Mo{E>#e
zX*lA*Q3v*=VL!(K2a+8)kcNXCK+^Ca4TsWjI1R_sa3T$VvTu~L9T6ls=E`tX_%Tc2
zgD%uhrr}Z=E{ph=;Hfm6PQw}DXVY*&$T`9Df(cKOSdryo)FqF&T;ZWA=G8P@6LMWJ
zx|AEj`6Lo+-4cFV@D6_kgxnLPcS>IKL6nDS@UWkY_=pFu<#h;A1f7B|_6i|0Pni?%
zsA<sB@GK3_)8G@GVk8Z^aKB(64Z$>oxYkvY!-COAo@g3k@<Ly_L_W4MJW0b-;RDZ_
zTlGa6UWys-z$=abX~^I(_17Z)BT3!}kFGK^|C@#w2VxzFE+UF?QY)h%1eqk013AW+
z8zI3`5*^4aoI_%g1Lgx=6XUZukkx@P4t(f9HV58upt=J!9LUb<4is{ru*1C2lv6OD
zU@ix83rP{AH;)4&GbQI0^XOh%eg_H&FDN*mU~HVcFIL2XR0m2qP}=eK8dp&V><%=N
zk3up}F$aoUIZHTDQus&BQs`nS<3M>)$~w?|f%(E+IS2Ue8%YHRDmqZfVZKgV*~&1M
zF9JJI)q!fFv@Br0OUv@jDYI@(2bwz2%z;`C)OMhbRjZK$b%paSym}7Q7v8{uhC;TV
zvM0ATueq@_7Uf+BnmDjyM{cggd!mpxcc6s>JsjvMN=pY?JJ7~~R${U)KLFZRco%7N
zI|tf}*+H<AU`Ge|!9E6e=H3a#9PpZ)E7(=4bQA3Ez_OjWDE5*neI4lMKyL^7i0LjX
zZ+gzRz3)JO2Zo9`KyaV~A8_Loj2#t>86*mm4-qn0@X{%J&K$97_Sj(#40rIQ0CPK!
z5*#T=^T`JViKE4Qv?+BgN0Oz9^M~7aIxvo+0}~vW=rAWf-Qd6^2PQkP$bl~%_{d@Y
zUH`;^PaT-zz*GmOF?d{|>1@@(OdkuXr{4Y+^B>d<2d~4&f9}962R;+;Ou?L|&6wE^
z%yD3z1M?mDLdsmhHX93NDq-Hrxwy)_TE4)6g>1m{n3|{UoH~GoBAc<;ffa0zH0dkB
zC2X^huLT+NjRW5bUuG%aIj~$f@0>DVrNev#;ui;QrsP>A{0G4w1?l=p$j^eS1=k3!
z6<jCC+otOs=yKY=;vMr$pJ_Kbu*reV4s3B?tE}>G4s3JaR|lql^mhAf7o9UjaBhJI
z1yVQ*=ne<+kGCCaf?W>mcHno1`HOi#kYtaLKe$98`z(FG12ayW|0fTMa>&vTJMgFQ
z*-c{UJ?6l19wQ3sDLCQ4Ne3bhq&x7J1E(Btv2FPhPCIbMfm;sTcHpc7=eSu!r|Y}}
zR~+W&0xyViQSg%Gz06;wUgmUFS0#pF*BrPm{D!5hv6}(BFndR8)$_*ObKtI(Az#th
z`@$bM@X&!r!X1KXg8sth6+%V0Q;_Duy(w-7JPwSNS*pAasN&LOzzhoaIiL&i3-Wtd
z0f+g8ELIP3n`E+u1xXACw#&8L#|}K<9{e#6PgR~uZ;4S5tKgXf&&7P<z#FSay%h4w
zfxm^k7F>P$?fL9K4*Y9Ha@L3p3gQ%`Dk!QTqXH<%ry#$AObX%^WL1z&L4pEDYG#%s
zA&G*S6*SzMi=s_IvM5>pgLJ(kW-bM}6=YYCLqX2}1ROtYXWbM9c|^>s;K+V#^5-I+
z*l#YbeF_SQtB@d-f(j^-uoPBMMD#AA*cB90P*s%T3Q8y_r=Yxok_t*GC~alv*~`Y#
zAqB)TB9>LKy0h65mI?|gi&#;xl3=Okg`(anVzO>E1=SVQP*77rZ4qytw%4+}3}%z+
zh)K@)`U)B-IL=PaEvA^~Q_U1KSIhybk%GoT$lq1aMEHAxO$9l91YIo@v{W!y!4L(l
z6tq^*Q$a5UZ4|VXur7k_1Um}0SI|KSKjgs-ES<#c%)Kc&yNcOOL3bfN{u3On(py1a
z1^q<tqwt$JaZK{Qm?Q&*^j9#zQlhiYexP8GDDO-#=UN%6V3>jx3cgn`T)_wh^AyZi
zFjB!N1ydAERWMq?7zN`MOi;|JX+BgiR>3%S!t>}XbDQ`NnA<AHc}!Hm>BTt1>SP6z
z6mw1+>PH>PuO1|SBn#C}+ovh`SixKc|D3i@XMb*y`iX)@=S}kNd3-7g`3xbSDVS*~
zpDUOpe74{mOaDR$2VTy#Qu>U2fr5n!zE!YH0q5>sB>0u!mx7DglP}olTB2a7f<N<T
z`C9aE6tp{IPWR37`=LzViMU*_#Ru^ei>JgAS1RUPbz2l{Rj`U1gj-(0PYTv6c-cJR
zXLeTwYZR<iP`IDD`Ye^Ungl<_tW)rdg3puVJ7=-6T(l=_P_U8fI5op21)C)Uy<2N0
z{hGnN`MyoTuWT*%NTuZM3Vu`Yhl0Hd3Uy1`p<tJS-3oS!Nu^h}q~9&RhuyDR($F*Z
zg=g$^?NhK{!65~Q6&&Dkw=0I?K?UzgE%IN_*ctq%<szr+sDfh({yJliBHMG4rh?}R
zUMM)F;Ix7?9!Cn!C^)O&x`G>u`B4U*eVkKpUcm(g7ZsEVXSkx^lGP6{E8ruD%od&a
zkq;YORm?{Yt|_P^&mQn$(VGg^&9U*&zNO%{f;&?8zJdn|?kc#afSef;`^A$G$ypwX
z_{ef83Y^?o3jCtDc(6Q3?msiht-vEnk(LQw1uA*gcuj#%2tUwiX3H8+5>OE28c8s}
zoe@$H;rPI<^mC!G0)zV{L$0~EQi+f0dX)ExM6&wbGv?bjoXhJO^RF^@B_D))so)g{
zB`0b*@wbB43JN+=$cZ;R7C4eSk<E!iB@))2vi++d#)()bGB^?MM1m8~&e-FefDrPG
zPGmW2C&?tr(n*QriB4n|Gg&an37e2|6>RiYJ8LJ&A_`6Ncbv%XL@p<CJI#%`xLcN~
z6%%qeLCh&Q-ku>vTzQ>n*e79ZgDiQR_*%w|e4^)fqJR_q&YJ&Eu9Z$$pOW~+S$kn8
ziaKF;q6k-ESPqs{A-ig4C`Peco>ESfmg>d1?yqu|aAN&gdr46^TW=XB$~sZOiHc5?
z6S2G?PYk(~OfWyAS;>jYPE>WGnz-&)&QisR6KCxXY01;G_Uca5aAM+Mb4bj1&c6JZ
zdC{Y`6aU(ZHgV#;sTt}xF??!rT_@@}QQwLCLv4)(8*ojXXe68%C5xseyekUBZp^d2
z=R{K{n#rP@Gv^62d5Lr8Mrh$go9}I%`X{y~apJLxCo0-H(awouZX9=`y%Qar_|=8&
zE_8IF6Bp+~BNsY5(ZvbFiHH+jo#^JoY$xV8(cOt2PJHOZShn+dOiw2UI5E(PUQYCO
z;^@HSK29|5Z|l!g=j?sCFNC}=NQF&eDbqg72TlxfVzkqo<7KeZJog+fI7E=<P$!02
zyvY>vs_Y0cM>;V|2w#n%$ZTU|#Ze{0I48zCF+;o)th&><*@aJXVzQ8roR}hnkAL&f
zo+_M#**<n+x)Yy>64gHy9z6^GO!!Pe27m6vEQ>SX3n%6}%}*$*PRw&+z7u~sam0xQ
zPAqg{lM|brSmeZ)(%RKdEOz26CssJ|y%S5ESn9+wadC~lcH$c+zU7+UOr<$qwp-k5
zb7jACV!6|NdXo=dRm~H>W=rx)CssM}v(){;i64dh#9ekfQ}<^nEF`W$=G1V(7iN!L
z<HTAg);aNu6C0e^$lfkh^6fJZIu`zcC-R9k;-r=FTb$U+gLFZ{ekZoEt2nXKiCs=?
zms&dne-m6YAfa_Tvo4=%Bkp$M4<~r}>vt#iFv&Ul(|yVON(CQy+v~(Wu47lTqi&d&
zM1}beIB}2zjuVGvaa5|=GV)tdBuCj@ow(t|O(#MXY{#8A>%=)8VoscN;?_C)UrwBn
zHk@+ev=f2<^|V8_A6uKfjz7oeow(@4C8v41bU~0GXt>Oc>BKcBu1oc+f(<$K{i(cp
z&zluF&p-b^)J@IBa*GF@6AzpqzwN{wC+-Tr=R~IQ=D!!}+<Fh4c;tjjQl&ZJ5TXe3
zQNUMa-_9xLWal|#P7dRC!o#lHCDF_A$7^mtmfGj-niD?hQMwahCtfW~@pIKAPtXZ|
zdWK&U2#LvEOtaR#>|M{>)0s-H64+gM%<4`&<@V%Y?!r4RJa^)S6B%8A3on^dI`D4;
z64;;rcH$q79!|Wrdi5KoI&U6jEHN%*aGA$xtl;qJ<{`-vC+70=_Dn9syO8WMZ*8z7
z2+1s%C|JF!=}HoAb75rXJT$Y2nN^UcFDW*=3q8wZ$l*dx7xoP@8<xw3+%6Pyp|FId
zxR75+9>KgW<P*~1rtP+FF1mo21qB!OG`~ny)fP)+DI#L33q^%c;kR*%xlr7N5-yZ<
zp{C1xk))IhrG-=xEF)OKg|b4*36>XRaQTGfioz>dN@W-L=|;M$ic(Fmy5+6mGXK)k
zTg!#oF4Pgdp6l(WOY2&sz6%Y+75ywJv9Sy9x-j2`1uisk;XM~VbYZLuO<ic_!uu}t
zccHlpEnH~NBrfxGxTOnigtQWDEjXY{7P?s4y3kG(@>xnwVn;E1xzLF}0WNg0yxoO#
z73?NB+@7n4ke-69d-A-!x9~oKeJ#D8ke4ORlivX@40U0cC<6sQaAA;;!Gc2s8Ts_Q
zeYnL(2;l=rBQ0f=3!^PQM#xXA<Hxx$-i41`nBu|&5hn`%?>VJOE=;y+x#AP1x-iX!
z*_QIL3o|S}UC1YbpSn=_Tk~A|Gcjihel9pmkgkRE?Q?{GVJUN6m}l{($CDSju*ij<
zU0ChHm#()X?RP>J3x4Io5*L=b@U`V#=E65Fd@CmZ!A2)yjXu4@@nN|OD_r>Ag_TzP
zk1nhd{)1qX`fr!=lMA`(gC-B9H7;xtFZo(Ia@V==iwgziTKakyHi$^?Mj`uV$8Was
zZ*gI(#kUFRRRO=bu!CL2jV^BNbYU0utnp3U*zLmaE=1VXUD)HoA1*jtP+Zu{gW83Q
zE?nYa`;%?I3&&kJ;lcqI4!Us2g~OsBb>UATj5)&P$|NvRq;kylcE+2NE^tcW(=MEG
z;V<DdPYKzUA7{C#Kd`Z!cj27y^1ckLPUV7SUUuP%3wLB$Y&pGGrTR4&uDfu<YQrrT
zZi@ct^i(e5wxy43pZTr}_guIy$|Gsm1K|$^8O)q%|50c<UC><ciRcn^yP)q+_PF2`
z;#y==T_93qye=^z7yK>+gzw6appYZ7Wx~P@!RQP^k6n1;LaZAZ+<3~a)flhE`;0#U
zF1!#Pe+Pf_S3vkHL2fiIE}G$uDE|olD;VQ8y?;ndoEsTwx{==vh@M$6lN<3uxU&+3
zuu7u)?fyz~!{$b^8(G}Q=|(O$vbvGYjqGmZaAR7dEbq9%!Ybs%D34-pH&Wcl<3?U9
z=D*%3FW^Q&H_EtC){R1LZ0Z|d)D63k!h%KINEO09KyNWwRtYys3Mp=7=Aui9Qu;p%
zn^ew?@@~|2qmCOD+^Fa_J6J6@D!EZvcuhCPH%1lV>}*wqFk3arR$Z`$AiXTC9_^EL
z-KghABXQN2S`FN2$i@99hM5`P*o}8Zr;E*F^7q_m>P9m+n!C}Ft1rLHE!=1;yrrAx
z#kN+$TMM=k+%ndDk({L+&jLgt?;wQ#W;<ERis^A(-RS1V95=pjqq`eD+!*7=hi>$A
zqn8`Q-5B9UZ;2lu*hjFhm7$-I_XYb4zK$<C(2Wn=7-Yo^bz`u_hX~=!0K+VW-=SdJ
zqIcp(x-rVqN4wv?Yd=<$se<FU3*1<t+9rrOQIK~JCkdG>$ZQ`8nc_At@6(*-#>b*e
z7n~{hi5s5^nIZU@;HVtA7|-&#8?!{2EjU1K4$gIBo*Nt7*yzT5Hx{_D(v4MaER-15
zS|(%>cd;9b-S|q(uLYL~E)}dX_wE0#Z`}A+6xNM?zT`VGmvbG3d~bQ9(+>O~=4v;7
zbmJ%CKfBRa?)otUZ~v_kajhHcg#6;h`pDaN@Yi!k%UW#WHhdocyBmAl*eraD8(Vo4
z3*W(^-i=>{Z+DwF;28Xy8+;puBsx1N$u0@lEto4s?gzPXm<PVyoJ4f58~fbY@5TWM
zI3)Nw6m!sxVujw`FXN4~KixPYuA^?~Cos05nP=dawi9lgbi?6=;>BNXoMQ3dG>aQ&
zIG%Wr!-KPKoO9!u8_y-fc{da{oNioj<Dwgv+_>z<194q(<Ek4s-MA&@H8*l!FxQ3U
zx*In{d~^P-a@&o&qTCT=%x{61d&2Kq3g2L&{?Ls_mXgNSTKrCYvdeAGn#kf4;uiD>
zdIeQMjbn?F$S~avzbFAW3?USQZiL);`EE=tTaK_B#Awcl8|iL5cH@Z@icj6BvdzrH
zvZl3pit&Quwg;I!c<II~H~x0xwHrhCX3yv`Z;-uln;7H4KSKT$q_QSs95L2|3=$S6
zNQF1HuAR5>ic`D?2_Ey|lXnCYJxCTpC9{wuL7NA4ubQ8c$|7b~D<+$eALKQMe4A`J
zJ;>$3QV+iNAh!o89yIabJ;r#D*Mo8%l=mQ?2l+j)dr-_{{^2R$L8=Eug%|XokOzf5
z*f=jPdO5m?2MsQmr*)B)MTq2sF4*tqjw|j#DGy3}P{M;#4GWc&>UlDnmq}@6Di>Qu
z6q;p)EVy8=;6X(XYI{(}gGwG$_Mo~4H9W9A%2UO|=PL8u>{GO=nAJSkBp1WEP-d&1
zKcS{1sm1M|l){`N2gTJD-cXuaPrUVIMatO=HSoakXDaJv&Y#f8gT@}b>%p?7Z!fU(
z+Iv$Ent3qPgJB*t_n-xr?m=e{T6*4|i?#KjmBm|o&_?*mVhPc6qIMp%x4a#MbQIi^
zKc<V29v<}cpsN+r&4cb1=SwlYJm~GgK(<-LJ|6V*;C<nJJ?0FDTuOhotyBB}5qHe7
zQDJi8AW=r=ii@^num?j#i3SY!V1x(LJowmyksgc^*F+CS3;EE4u^x=E;@4j=CoUW3
z!30sp3kFx4%epGANmk@!4?Yq;#Zsnv@Kv8&jGXSlCn7HJ;8PD~creR@*`j>r!GryY
zp9`PKZ8*g|du`tI?KYg_!8{MRQeRj(=Xwx*V~An%MPxIU9!Xy4!6Fa7^k6X;D*6&Z
zx0<?Wgn5d}GWhpGWj5Hp@nEF~t33GDgWv`GGC4H9vyPPILRRnqWJ$8I<i2SCfvG&^
zOtS|)_{oExJ=iJcY7f@16MC@OgS8&4^I*NloC^LI>1olg4A5j(WZezieJx`)ax7JB
zG`C2GZ65sU!B*kX$n75d=D`jt1Ly63BHtm6&Y8c<gWVqd&TS%9_6z>u!Cnvc$)fYF
zGB5rx6&FD~AOY(hm>)+t<iTMv|McLvkRyUe1&;|btolX!35%Z;@|Oqv9t2%yIQV-o
z$BQq#IOoB69uZ!2_TqvE7d?peB7+x~Jh;qw4+0)s@!+ZlX*|$8xF&0KPw=`2H$1p0
z{I&;oJh&zN&|}-mpAzp1kE!_fJZtDh`+as25g&5n%(XqT0?50+j#0#Pd*JcFDV$rt
z#Utyrd0oyciYBN=y>c7N=Yj6Q^9p9EC~sc|JqUU5%7ecpEbPG(51x8pcn}dK-Gj$M
zScRD<zcKT(JQMLn)aAh>(O>c){l?t&(G__u=D!m2hFxfK{6C_Qm@(eBt&Q^{qZf8B
zig^JqGI{Zi7umh$fD`XUk`VF)A&G*S1^>yLZ1W;ncospUMr>BEdFeQtn9-+Ob9j+c
z%z|Fz@*=nJ{9dF8$t#%0YaU{(7(Ht8d68w1$qR^=X~_!-FYHATA*q5zy_k8?94=}P
zG!M7pUX<{no)`7KDCtEhFRFV{!;8{hl<}gX7nP(|Sue_aak+Swa$c<5Z4N9uB}oPG
zY8UO5g;W)!w~80@2AE;hM2YE@l=5$KP0L%`i(10_ejdx5b%dYU9aGnfX+zAlXy8Rd
zFIsxhN?eV+c-M<2!W#>6_22WNsTVE0=$^SKt2FbXxwyi4%?!CNnd{hTcg#x}>RWr!
z&WrXE&_=MW;MqBe9fUBrqmY;X#BA=Jw6J?}7w&Gh$BU1>=*FdZF~*Azz3AaZPcQm=
zF~DnH%j)GtUm?8(`v_7m5Eo1AC+7QJ+^%ZQ(KpbG4@4OuI7o1);9$Waf(<U&hY4Yo
z;X*oIGVfuH6h2CDwBWXuHtJ)APZAs_INpm1LM95H*p|q!$-+Mpq&dZlsTNP@lV!Ta
zXL|98@J|J22!1AbENrgD=fX*5c`;k~&4Q*rmpk2yGhUqaV!js(yg107Y)@F|H7`4}
z{NcqSFTV6*u@_%?vB`_gUM%rqsTbd~UwQGh7vGTdi(TQxw_YrhiZr8hCVVI6a>3}F
z2F&?Y<JeVR{NTk#EBHq*)-r$N*q=oCS&)&dz2-b8YXq5aou&UGWW5&~g#0fvm%GJ_
ztzP^t`Zg<mha~@1%<Y1|39{l&A-e>3dr^6QJeNz{BMP~h+~WJZ*l+OzUh`{H3^?S)
zVK4ra?Z!=a!iyuqj|v{M^y5NG|CD@E$X}LzO2}!!K`FVG4No}7F2^r+d2yaU0bX3>
z;P1sXFBbMnsG8k&nf>I0EE{jzu6Qx(lAX#`FNoyVy|}^sST^A%d#@L#^5T}56Gz8V
zWVz!-Vy4);BJMtHyDtlRAjl;?6!OT6G)v+4qn%#3yy&OmeHCtwFk>_3QIS`L#|y6)
zsuvo^PZc&5J|1Yj?HN@-h3<vli+~qFFP?hwjKfsXLLn~<FCxOjf_&{R-HXRu(@#@b
zm*t5U4`-#)q>K36ix*zrWxzj@{G}Ivd+}QMD?!FEVYEau{Od)mYPN(WMm4jMWKa<&
zBAdZNCHxt0e57Pj(Re}f)LyoD6$vUx5(P;zbCvJJlO(Hee=&0i$)X~wrDRj_j>WSJ
zN$}*(DI}L*Zp)jZA{vlSMSc}G7sobJQ9wmO)jZr9swku)cLiH56}43qR#8Mns*0j2
z%Bd)?!mgs}1r%3NLPaqZt@{>Y>2$$tSV<M7Rg_UtN|yD>CG&iNUdES|TI4-e+i6x1
zvzm&EDk`a{tfGpFsw$#YHcG{-m+Um7yt;}SDr%~DEiQgCjF~GPNUqQ^v5tzmD(a~i
zv(i@QvYj8Bt1nA$AXxme*@i~4YFxX<Lf#c@qT)SEZ>pm6W%D_@<|<mKXsM!=iry+X
zWpQiCLsxedZFmb<MLX5}oJ2<zom8|JPO}5oeO?ktXG`fSq>GA?m+jQMiMd304;B9o
z$kS8B;;H6}^iuJnWo&F0^M73*6@9sFKQ{T$fqD9?7@%UciZv<*vL#vLM=&9YYMv?%
z5*#c@bBKze!iNbCxAfHWwoxiZt5`1UGDgLRD!x#W_G`*m72{OQ5I$bT1Qj0(pQvJz
zir8(KBIaZj9|?J~)vQIGI8_vqX+l=b&O4oZP-;=+ZPrg!BuV6FDrTzq+=`zqWR~S+
z@ElQ?cCLzfD(0(LpyF#4-*BU;SfpYJ+i6c=<d-VGlHkQww#}FA)Y-75qC{Kxt(E*c
z5tj*0nh=|9o7tolD!x~-QpGCSAf<-I{h;DUcCgYJep1n-SxlSwc#8RtV(t0ZpH*y6
zioe#O&{_%Jui}7;bt-;Qv0lXn6`NFSR<TjVUzhECQRr!j%o)qu;(ak&RIJUKyj#V|
zDz>dEwz2cnO#W5HZz^^$r<iTa#Xc@<+o@s~P2n^d7UjRI*rVbP6%Q8M_6qKK6GP6j
zk1pW{RUA@rSH(RQhgJNk;+%@}($pg=jtWWZV;j{x_Lz#}Do(IHT-l}ZXV_pNrv<5;
zQlVWo|M{@w;SaH;rxwX@LGoNtaaA?%XkQe(q~fxQkRub7k6OmADw6A(irYL)rYB!l
zaf5qmSe~0~*gW%5Uh-R#gyfD8ilgr*-{)Sgmh4cWa0O*Ab4NcE@+i8~*#}<4P;{zr
zsc6tVo_C<!9QIWNR0LIcRj4ZbPhuWbN?5%(QRDc}VV_6M;>5~NW9%Qt_=WfD8k^;c
zonlBuSVg*u<kj(Y`r1lWP9Pd8A}UBinQ{?Xj=XPs%GKmgOaS=;c+P`VMJ^q=b-YyZ
zN<}jtn)~oK2PO7Z4c};Zqv9VG{WT2G@UMy(4OKK$)ex&8g9g`nTX79>8Zv4~(U3<2
zCm_hAAz4Ef&3x)0UPERf34&A-g_OEtPIQ^1app$5O^{|*4cWw-OYj}R9D><3jFBn~
z%c)_8#dEV6d15H$)vzmjOaToAB|e{Ee!*G=V+si=tf7dIomcFs8j5Oo-7A50?IMyC
z({NZaZ@!iH^%eW50SP5El+;j4Lun1?Iwq9UP+mhB4P`aFm}IMP)-3%x$5zl#QA1@B
z8Ah=ZSA0))5+a}QA=y*GR!u`K4Yf5?*Kl=6LJbWyg_OE#XQ5I@LtPD>xj{74(@<YS
za}6ytG|<pcLlX_}X=udiEn*sLcvlF!T=YI5krNj;)y$u*W`a@I%?lY=T54#ep`C{I
z8d{6DjfS=w=wcYl^24z#Bpoz#)X+&{CW&%kQw&S(N~X6f*YS|8r)EC&N77Bq?izXs
zX?fL7v6qJ463|DmpI~1NZ9Yq4t@p(wneZ@vAeW+Hl!nn<!FqWIX}JAiirOz>u!bQT
zhHBV8*L>)OI84KEY0?M{BZW}^ssva_#%TDEX*Dd+Fjm7j3HVIIcnuRYe5_%*hKU*`
zX_zXm$r?TqGDYx@@8Z@r%rn1F+{Qj}%r;F#Gk>4BPlSIeSg*QyYJ6y9#u*y6JU6%7
zObwrFm?hpXtXi`*%n_b%hIw&yuJC!5m*ViN_JtaLziR%Dvn&$Vml_sp_)7Q^4NI-~
zC0Fe%yny_zhGiNG_)yS??=&peu$xIVtkCeihLsvtvCnjl&$Zut*Nk5=`$5Bxl4OI1
zpEUfe!M-)uh!Gk2y3K0Me0_4AhBZRS*J`+R)qFYh7g5#=zHXI=%0>;FG;HQ7YuKjY
zSIN0mLxq3eUP*XaCc}0Ozlpv}!wwDFRr^j2EDvLo$yuUny5`@QJsSSd;MU;Luvf!A
z4Hq?B(y(8{0S$j?IHlpBhC`C=7>`FGM+E;AWU7r@<BwXLa}gica6-dL4N7yfi>_~P
zc8Sc_%!QuTaF$0dcatx}8L3jgdF**1-W0gTq+Za#CubP>^SR{98m?%#r{O-2N)6Yz
zP1qqN_&SdiAvXjW|N96te~*&5Bg$RDj+f0|QL1@tm)T}ld7vRpgF{>o1s@5Py=GUq
zT#lb&GII2wIAZ%P=vdcmyjO#&;cpI5+?X1C8p0Y34Z0N{5aQ>dI^A3lOHf0Io%}+E
z9<t&Q4e1)5X?U*Tu>?O6Tr>D>{8Jta63MzR#Pw1zEgSY8z$<Rd#G-V)(eMw4G9QwB
z_*X-W5AY$A53xRE@FAnmY%L3G5#xM#=l4SFGr1O<JwIN&30BOyOGvc%+G}>356M2{
z^dXlIS$xPUuIxT!vtr)y;h@#R?duYA_^{#vhE6dzdu|_6e8?w}c?9!XweDWCw_juq
z8Z7xmtllAWAs-40Z{$M}AN(^@OZZSyNU9G-h1dn@D&|9R;m+)NXqNJ!v=23WsOdu)
zAIkdBCR1`HAIeF>@`4O2IzOp`4;9&}A7Y|~4XErx6(0sq%2PGk5+ADhIDM9l3XuWJ
z>L%9mp*A<>b$fju>iAIChk6psmuRAEakNh!l3j!28~D(oYeGXG?v05bR1n3l+Z#(H
zz3&QXBKV$QQy&K0HV=muKD6}V8y~*)p_LD<eVFRQG>K{BLkAx^3U4dePO!b;^F&)G
zA3FQ+z7PF<=;A}E85z6!z*%D6tc;)YI(Ii8y8F<>hn_xM{yepx551&fA0PVq(3@+z
z!|W9!wr7uWBFof*W*OkaKp)2XFpgDx805ofA3k&02Kz8Xl8o>{pOJAWd)nvb#l~Si
z3}@dP7f<ucr<s~xw~zE;lti*U$Ph;y<HLt6*UcWnLb799@^~L6`S7B3!UPGPDEPI+
zOcwr;4^w>RATVS_eAZ>=vOe}<x({FYFqhdnX8y#7Pkop{{_O3D_n8l~eE7Pg`5@&?
zAIBDRHKWhuP@L_<9P#eIZl}qqROb1xSYqZ2E)ZNOxX6bueMoHd|Anc(@?nX1$(J&f
z#XF76_=(fD%!l1R{LWtiAC~i=;6Y?hSm(npK78-PN-<aY@UsxQe(>Q(i~l5q-*%zC
zTKF0t)(YWGnb=9T^}@Gs-wD~^!$u*S1X*jdko=z{l5Z3Kn-9NQ-t9j8u%QrLEIUNp
zDY#2eyKdj(!yi6`eK363>%%@DuKIAzhy6Yr@ZqQr$9%|>CCe9WGavNfkPnBsUhQox
zf3g#1G5M13G9Hl)vS3EW<3615;hYcWeOR}k&`BRo`Ec5Yzr=i<Y>F&rd^ju0ZBe3l
z!H0_?UbbBM+N56M@!KZ#NiwcjBKdV6Zm>6Uq4#rL-G`e#Jn-S654U`{?ZX`(YPGT5
z6TB-J-z9;{ec|(dwvj*bA<YMm4_+S}J}B&OKDew!M3?9mldWa5+jNL0Q90Cfh*y%~
zW0hoR(zd9=Dt>7Xn-uUNC_H2-9DyS~q;r7P(SKaV$38saSgiv(p8D|2hc`a_<HK{t
zAI$W(;0qsK`cOZMsl4J4BqS7{@>;yvZoECF{^jwgn=vthB<BWY%wX|2lKZ*rhjV4p
z5w9b&jwBr?d*qJp!35pheTjnGkHIE{O5ZGCA<3d6tE9@NW1zLfcXVXe&A%%-bmY`g
z<%XU4S*WDw$fM&4S4u}-9r+lh<Cu>8Itu7mtm7*k1$7kCF+|5u9ffri(a}&xBOR$a
zis~q*qr48gj$%4W=qRb9xV0|xr2+g<dnp|;eax|XOE>eRue6RbI?77e(i`?;H|#Gj
zXR4s1qK@i1YUrqBWvHT~vT)8QXxy-0nx9lvM>Vd+O_LLA>Zqk-_Du7_NNpW;bkx;R
zkL!5z?bfDPUotchY-j1SZrU5`cvnX|9qn~A5$}6Cn(EL_7MkER2eD>4TI%K$RprLz
zX|AIMS9V;UQ+I8|RytbiXrrU8j(s=nL_Q5d!a~wPM@JpKb@Y+6opf~8(M9;toA$0c
zy6Nblqo<C$p411m&CbwWIEm+`{q;>dv6sY?^wp8$mVE$ssE&R*-q+!tpK;jGc$WS;
zs@^i!v>j362kRKbmAYj&6|TaJIF?~LhU*xwV}gzm5=PfZ-Mr>WGD_zMf9<1nj3Lp@
z3sYkSNoL-%6UT|k$kZK}sAGzbsX8V}p2=3WkA(2wDZ{4e_*};<9UtqMuHzFOpX&Hb
z$4nhFbUdFIo4HLK!&q8m&O`I>F|i~RXX}`wW1*z_LU5jr`8ww6{EDu*I#FC8E@ITA
zzDUQHBHoa&B|4Vs*rH>rj<0omqhphf%{so7n4j5U9@v)Y_)g5_I#%iULB|Rm-;1(R
z2aA5o&cfuxAI1Dh^r(wJRjYNZVQcHz*6LU<WSt<DUvz$$)x5sPvVrZi^tPLlIUr2y
zYhF&_>($$I{HkLwyO1om%5D3CQz_eZ{H9|EOZT{)I(F;$UB@m7NNO6#7ZCOcXT$#B
z;2_HDvS9hMMxp+<?fbcRZrcy&IH>cpmG(pIneDS25q?<5pF*g!dQv`qGSYrr#|a&Z
z4kyPM9e?S#uH%M|KbEJS()oo)`&C)oX&q;DoE3gf#|0f1g`d}PKb!e4_mY^GbzHIZ
zi0E`tBwpiC6H1=5F8QX8TRb{Crj)&7zpdkrjt6wfJe+rV6zI4o@o%J&_k~krz(c`D
zI?{wV1asUm=K^){pwN*n!5$r69X{?d?pDpFvL9AR&~yx&lvwMIo%7;8JCy3z5zt}i
zi0G(!*cQ}LI*X02keFdX>i--wzp0(H$Q-+R-LXHG`~y?W)p^FA%tO+T5Bzw+i$5Iq
z{3zkaD;<Ax@B5M6kJmch=tySF!A$??_*beY_|2R#eq<Cq)^A?q$siafNb|eS@epq&
z!Fa)UYMP@Q>n8e<*)I?O3$icS{8)Cuyf>OfA{mp_k8DzgPqZ;%4nK1GQN)i_KXOR}
za{H0uN1wK~9BY&F_|2~s7Z4=L>qkC|=l5gd_IUGK#$#*+{U~JVg@tg5MJ1bEkgrvK
z**LkF-@N)48J&Sx(vMPpwDzNoAEl*jRsE<Yq>Nx$Kg#)0-j51?RP>{Yh+NG|epI&j
z<U4kjs7Pd~?nf;@YD+*3KWbW$$Frc0A9ekB*N-M5*7Ku*9}R`q7p(M+t&ty5-q<3{
z8CBl%qq!d~{Aen{Cx47><_D`pm)p`0=kb_U;-Vg{($<f5ewo<KkM@3a@S9KR?7YKo
z3)(yS(Utqu5Asfabe4);1gS75vAdW(1$zh{_|hCj>1y_(U~fN&eFXdZ(a(?fh4=Sk
zfRJI=GBJR+N{NH~80^PhKlb@C#E+qVeB;Nrehl+tI9uq)3_nKrG18BTeoT^Ojq+oh
zALIQP?Z+5DJ`|BlA1mbY9Xkg)mO8CaM^4Nq`1u_@v*nZh_{fisC2WcxQ-w_PBU9I;
ztAov-m7I6&4ey$f)2*DJaJhHQ`zfFKG1HIvek>5z=YGugV~+4yf`>n|ec{Jk_P6ON
z^F&G9Wjpu4#@CmY^i2HWu6>~&i~RW7k8|DPr&TQUr5}s^_{xt1vP8~k#N{sWW2xVq
zDsyZ1*fAr_s|v^Er*;{4hacPg_|=c)eys3gy&oH7Dc}3C%8wuXSm{UNr>Wx$faOPV
ztr7gmkDvYg?uogBR{Jq%M#eSY+Y-Obyw;C(e*7XaQDlH3joB#T7IuSM1vmK-+b!c}
zKO&t?lQCPx%U8*^`|+C}yZqSA1Ef<z`-`?6e)DrGjM>RiMN;*t8~eK-Yx>yuP0#le
z6ZWt(BqsbJIJ-vdey+YBH~hHi$3Z_1`Ek*YOFZzuw;lH5gdZpU_|uOgese56DtKJ*
znBTmmMRD#e^BF>3c>hZVmb2_X)sj#7ahgZBA6q|-r%6scCjsXLFIb~chVRXPO_%*h
zADmkMa?%yQ`QGJKL6U2JTo=yQEot8J<2J{@01&_(KkoVw@FVEQJ;wOq<&N{?fgcZf
z#QEX!<B@DAhhUl@rkHzK5uWp&+0$6uet1MFvdJ8EkFPYZ)o7yVf;4?RqCbfv@mmT{
zOGAEyIg<PF(hq|>NL<gjE>_G_KOS?Bh`B0gzNT7E78-qV^|>EfVKe6|KmPXPUk;A}
zvjMLq{vW|Nek>_$JJZYDO2u~|Rs!M#GYGED{dSz`(mrFR0KPh8Yktq3C4l$<8f;8X
z2q00y0*SGi14s(MCML5b2T-|?dBvu|SMmHWoi%`L0lX7H_5gAPkUM~T-^JtzAXA5!
zoB{mPK8CMRP$8xS%r`!$=MkMGs^<@&KmbjGcrS>80Tc?La1cd;C>%hM05%4&DS*@f
ziU#n00R0272T&}4Y5`OaV9zBKmxh%M;G<cEN(4|+%u<4-1<MEykquamD>x{rd;k>!
zsL1~Cg^i`M1XK#}+fU}6rBWq;s+RX|r}!EH)C`~z+aCZg)z%82UI6Xpm}lj+1Lo;`
zodD_z8P>=Y>vJ0h&@g~zMslNLHlvPtVW(Ul+q+y%Rt%th0Ph9RG=Me%{Bh6TEPz&%
z;+qH1LR!Kt^Zf~1%K(V21zU+ulZ4ndfLGsUX3pv>Y#jpV7(n*`dPqzs!7c%G4w#R}
zGp0;KbY)|<n!KAudIr!dfW8t;y>|e8EMB&~*|m6;nAlImNaxrA0SpY_(*S0OQmlT$
z2LTKUV6d3u1DFuNkN}1TFf4%K0gMh{49$kIBLawYj~yjAlDDyX#)o7hQ~Xc@#z_Y1
zV}<0oZ)YtQE`4GEQv#S8z$9@^<}Mb(y7V$;nwaF%1Nhi-MeBZInHOso`YeDs0elg_
zOc6g9oF&M*v)QTzvHabc%MK90@&Hx@Fh76=0emYl3j<gbz*6B~3NGgH!lU56*;|NF
zaf!HSe$6c(Kvaw(!<Gf`odht9G2aKUGJs!1Srxz!0jv&SO#nZN!uX%KahjP&=+Bly
zbFFa3tP?K@#c06#05*s>YHki-O8{vBI0D!jz_tL62XG=_z8dgr0NVrjO?bv&%#Hwd
z25{K)#_SUDfZ*-`eiyPQfV~0iV@DN}8GcDNCyn19K&O9Wrn${0?VqnOpY1;=0f)HD
zWNxlMt@tAW92I`dQhMFDpA6tHF>eNNDuB}gTnylnC}#q=AmpqSe=dOY!auzK_DTNZ
zGBMX>5w8kf34qg5u^HFIye>%dhLDf$+iwMMo8!Nj_X4;t<gQ@!wS@=59|qw4HMx18
z+^qXZ6xS{&0XPGA$>S~nR{-t+40dVpdIInTpbPg3s)Aa;e7%D27x={t2?hk2IVfa7
zDRYm6Ie79CvCVvSB0Yd70X!A&WA1`m$fnw!iTTePvq{gb3@?P7D;WEC0I!)Lh#Wz@
z;n2!~D~L=%{2M?_5V66x?-cVDjD*{7c?J>Vg2*Uj@t{Ozjt?Rsh%7+_Lota#b9OR{
zNkL?`GH_jN!jlD`#pPl^R^i#Kn0JJ1m~JM_DLjv0t{`#?NfD%%_fPW*&lfb$2=WI}
zKuAHsLP7kwz_#YTok(wL5JiKi7DV+R>_PJ>6qd3=iUm>JQc4IZ8AK^dDIG)^i?_*_
zTrP<6Vpb5W5=2GITPcXj7XMV{iLELoc@0aiFQjG=wS?5R^g2P*6<*I$INxT2p!w&A
zrJ;~UK{OWfuBG=uOw%Bm1@U_jdxB^lM2jH$1kpE$mO-=%nkQ>rf@m$Iy<i)`wu1Dw
z6Vjt9Itb|~*h#Rn;J*9jjr*>`yG4<63k1<acuz~|6-0008%vvKaQ%XKKZwaed=xal
zY}-GGAwdicVt|+fxsE{$5<Xb4z(n(dxzW$&4x^Vh$by`T!5qGZi#Z~QkwQiZ^6EX`
zdFLh?6U2u>j16KO``(>Q69h@d2T^mD8Nf18#7RLo?whliP6=Xa(46XXdl1ut_&A6)
zL97j8x@7($h`C&J5TCMd4^EsB#OFcG3gWXMW{R@AyN$(Y5j#7Gch@9m>lQmF2%6-K
zCz%(-{2-PGu_A~CK`ad7>ma@fVo?xZ2C*cFrCez7gvCL8C4^@~GvAM=LX0Z^bA21c
zvLL>bFuI~%Mv{CV#L6Ik2;xV}OMMj^DXD%Ek;>0Pm~eFvvqxpf{J>6e9aq0-=1n{n
z9@t5K31Yn{<Qsz6D7>J!HcQMF!L31T6Y^^iEUe4I?a3|qn{3Y=f;$Cw1+iPUXOCm%
z-uxqoy+LR}_=4C+U5>u9LF^CWKoAFm$k!#IXT^j=L4J_S&i^@wdGH2tBxpW0!SYuS
zM}s&f=J6m-2C->iEcFwjoLFxoZ+69Y%8EZ7#2MkgtSj`z1N*rk&IfTJh>Jm73*tJD
zj#aixL0pj*US`)V6I*^k#;FYxuCi7T{I5Q=L-LS<DK~<+6U5yhl5-cm8N@9i<hR+k
z|ISHrFNmjYk{<@~h@E6{;(hM=b_oxJx9OBQja@DXR}gNd^(H8SPC<T;fJziSqIlW1
z=*I}W32G4h^Z-9Vpa<a(n$vMt3L(I8m3j!-LI?#B4kAMcaUpZ_8bQ30b%_L#9>n7y
zo&@ny6ndWq@gj)lK|B+5ZZ`kOv5-(9ejSRB?1}$7h}Tl(4aa;*%b0)oE5PAYOnq}a
z3q{5gH#{&ePh|`NA&f6yC{qZTLr4lCUd#l+L_vCA)v(z@n3^ZaEL&odg=Y~w`M^%`
zoe;8zkRybgA#)OjX+sluFON&f6+-S13WiW91YUaO)b1%EUYdh;JNaCv_`D(H3*qTM
z=0K4@gaXpe)C=(}R0@YsB!p5Slnx;^WIiip520Add_<~f$b7ac`jk}h5K4qll9BQl
z6-7QkRV>YXq^b-zwZq(2<wGbN-3aWTA*`xfgd$xPLTH;5Q_*r&4xvg2PkJX*4WVWT
zwS-p-p}G+2HH5HkZ8jr>`XMwBrEUm`U1Au(QcsjjeN5g^_`8CQLTD_6I)j^p@LmW_
zEv1<d){W+A8A2;=ke4X<60JjM!;SC+WuBmI2<_N@13wsOA3}!^J`ZD77#&0C6vEjM
z&V|r9gf1a`9l|#ubPb_f2vfMHLg*esj}QihFgS#sp||fE_Z8Ahu(x0z_JRBH-73cR
z3*r3``dg6$g$xkP^q%blA^dzcgNKALlwC!XVS=LthYRv1#RwrI1xE=!dt<(bJ0`?Q
zO3jvx6(kua#P-m<wJ{-tiIzSogvr7`5-ceJ(?a+-gn1#%7je4aEWuAg_%wtWA$%4x
zC&J<``zqBoGlczTlUY6&QsSs>wgk@+<PyIKVXp8LoB4+I0^v&p7g{lkLikenV!^L0
zonz@zi}S7L+q+V}4ViCZt_@*X2;Z@tV{FU0Mm3XvV2|pMc?G@f)l1FiZ&z}kN+%rj
zYjTaxVj1(JME(@Q&q7uUt`VfS{zLn^5Pk_^eFz&u*dD@fA#4m`QwYEEFl=et9Ksgv
zdOp85Czgd|tC-saIe_zK0UO-tv26#BP&J+bCqvj7!mbc@hwwW$S_p?j*b~AZ+*TnR
z2w`ss2PfP131OSbiM<}$qxwN<KSe5khHxZ=;}TEhC`ky%Lj0tW{ntxo0L2Lp?I*bC
zmdWIQNvqg~Qz4wT_!%J+uiDOsaDih;7=^;PC`)<8!6bxBAzbEwV^6rkF(-ty5Uz%B
zErjbK+z8>mxahqp<W2~;Eai3xu`hDcb=Okv@p$<=H<bsXJQOT7*1T!%2tna65<)lx
zXUP1Q;tfF!!6lrgI|Pr#7d<q8QZ+ICf<8fAaNV5bfDpz6g?#(aZiEmK{!%bq@TuTq
z!6)3s(-T?cnV8Q*cp+rpLwj^_PWh+wI)pbI!^21l;~xo#3!ANF`B%&sF=NBXAY}Fp
z)0;62gptXLj1QyLp2W7l<uWUVktq6ni7a*`#TG`kFy0A+JXtV{VAinN(<o*Sn?Gl{
z1#<}I6r`9-$ZjJxC5$}6^M;Y%^5zqgkTpZ_MN)w<R?6Fmg~KQkM!hiVhmjga(J-op
z-=4qN!zdm`2`=4IS_ETChEYn)3SpEMQr_~G5mGjcazbuAe0vtzY*T7QE2dHym4)*}
zxJsB`_Az6sg;70>8lu+>qgEJ!!*APATf{nH@a`}pS?Y>XFBsDxjD}$h4r53djlyWm
z@i~l6VZ0kglQ24j!Lv5TzZXV}Fj`8jrh?7FXfA}_B}3v{S-fo+t;67_5?R^^*^wbj
zJImWXj14o*6Rw6?&9-$8qe~e5!gxQ7t`gHTj9%PF!n+Ih5aj)3#`hLZ(l?Ag!lS42
zRLV6l1Nw9CSTO^_7%03}@7ObqY(F=!4GNnRXrBti3=LzLxIPYJco-wXm?Y*%!EwYe
zMujmtj4`5oD9HSgy=LRbN-z4KNirdfi4yaHoF-2W<D)R9Shc1KDN`_Z+J9oE3;!gH
zPs5lYoF89fDwfa0oEb*DX68!G4r5LjHUr59z6fJ(7`MW>9mc#c=7+H(jGbXD2xDOw
z-?Kx8u_%l$!&nhEr)FYV9L6^m|0;|n7GE01*A}nWH0fL6%Pi$PCfu8{Trip^WRG1X
z-i=nw4`KW${3mYMFjj}LM$GkLtPNvb7{6GN=Xb`lMDwgV8BgzqFi5Cu3S)B^Tdc@!
zLbh@Pu6`T;YZ%+PQjQn~{}$#Kqs)(^?FwUe7^lNH6UOgh><Qyg7>A|qA7Sjbvh5YJ
zkH==yB-T10=0VHLHKO=u7$-zIB6!sD9t-2R@ZyimC7u-im*qVr<VL-ivphzGUkl^B
zkP96A!-ytl#Y<t%MrAhsvUsluUKMP##{AkH%XKkt2;LMt^KrtRFz$vC4#NoJUKsbo
zP{MF>BQJ=1z@h0%CX$Cj$RCA~W^o65we>!WD-0j|!&CF@-Yo$hL2nqU5Y4Jp{*igh
zSQpbT7ziUMBxJ?#6fzP<dKfRmcojD1A7horG9+>>o^UK;r%kjylU1PdT*!+sc3n2N
zKc|rWJB+$_5NF_Z*ql-J4SxcJ{2NBBVJa*!Le?XWJcD7zlN>0Vl2LRR$YdbiK!Slp
z1DOpZiGJ{01{Ov}F<L!~fvg6q8>nF*n}K%>R5HxtBD;YcLW&#6X&{$@f@0E@+dzKd
zDVCDQKwbm+#Qen`%fc|00;06$tZ_mL3l=euDx|2O-9R+Hn3$V}rm$iO10}^QC0I_d
zw1F~0%1V_9h0O((H?YzXQ$h5Kf;6K`uPkO21674ktj4sH%?Z$I8mMKUxq%i2Qs$-9
zHqgjGW8rlK>l&yhgx>lF8d$ucf!kYb6yG(>-^X^3>`jF<G4P&{sMw5Ec<1F#rfObW
zO9QP8d}H8S1Fa3TF)-P{M+Vv&XlG!!ff4-wZ=i#L-Uj*@=xCsmfvyI+8RoQ{oegvm
za`%<_y#^{I#O?-q80cvrYW9*CPSHtMrM?Noz6ScSNd^WPcwf8&3=A~TU--5yW+Y3r
z`ps7{gAEKZFx0>>12m}<84yL1t?t|-4UCfN;|+{9FvftlS8O!ThX%$P7-yIdj74)2
zqhx}CiBgN^B#W@t6a!N^VjGw%;xq%F82D89$AZ(X;28!!Gw`{AS=Rc_6xaXSHrv1)
z%SAD&&oeMz!oD)Fz`#P`U&`8X>5HtUvcZe31x43oiI__bd@bbc@MP+I@?@ET2k9w1
zqWQ1;J8s*o@yi8Q82DZYm6bv^UAO&c;3os6AEV4;{A^&gfl29@oQ^dH)*5J*j^^oD
zXPCp(83Sk8r46h%utAg~Y@30N1~wVkY+#Fl-3ER)u$6f_W!`S!Hv`+)tGV3I<5>71
z!gaMx*A5BTCAibTn!R}_vNR|gyT`yEhWR<dLk9L5*k@qBfddlBZyhp*-z6j-WN#6Z
zkt3@nA2#r()S^g*UiR=~296szVW2?K%%S_XlOkqWmG~Ejoied3rwp7nKxNt^I}6D<
z1LqCAF!0jA1p^li1Pz1?TrzOkfWv@d;EI8(+=&M68MtQPx}?2r;0AY@f#r|Pdo;HU
zJee2EX)gG+>t3nmjkCrrlkOPUkui?sKJ)Wa?;Q6!r9Ke;P%!^s^Zq8qG;#5ZY))=E
zdxD1@ScuDjTgahR=3JmGG*ttdh(19-M^Pd4M#BOIYB$S69yVaGVU{;yAYJ&(46)H{
zj}1&0{?v+jCgizbg~NDd;BN!pMX)@A*9P8j9EhM(1pgTL*Ff0_%0&<pL2LvCA}AO^
zh6v&!$QHpn5%ZPyjDlGN5kaO1;)N$fkR*gLi9#|*5PgT8iY<a<%ggt{v;K!?k6?Yj
z*jBrdSHv6<<g~oGBFHT~C4xLcq6wpzFM|C45er37Sj^H96p=-zipiz(F?(Xs2<#CQ
zi=eormx`c-@RCvGY%0T8XqK^J*xK?DREVHa1dSu87(pd*)r+8V1XYAHrfLM$BB(89
zb*pYoAvFY#KC&}&E#Yi`9U*lEsZ*(M@diQ~$|{)e&X-DfH-h&fXexRW*<2KxS@EqR
zXf9$4OKE9s`PLD%5wUFq9fY(KY%dtyj7-I)bdI1)1XClJ7D3ktx<xP|f{_t)kDx~c
z10}v^1id2YFPyb{N6=Szp9q*CnysHG?+Zqi0T!qEf$%{Q431!k@L_^O1*0t?4i__8
zeN+S!BA6J#=m^F{@SznsK7z3kjQdX{+i+htGBZqyU^2Twx8(oj{3wDcR$WGZEPQqZ
zb0U}?!6y-XD#~YqGX&Xyk)!Q1Bluj*S(X^h`9%bCBUlu{m!i*$V1W>N=Ub5rEhV}x
zi^cplg0CW2A{%XK1mB4GwICbD>e2kmth$|s#joHFjo@|!cOqCB!Kw%jNAPC^KSc0j
z1Un`2rwD$IV6*Vm5v++|gYf_5Su5r`!CwT|Tm6Jf+!(<o5y{!wEyA}7Zj0boA=@L^
zA>=o~|FxFK@2&`Ti}<_X{s{I&@CUh=%(?GBorL)hSo%RBhXk4MNCZbCI2FNZ?%W{>
z$09fp!AbERw_3|dDi$m>_v~Lh=>Ew`awdYa5nPSnS~O1t7lknFypRh~J$LLSA(sWO
z2u9cUy6~Hpazk267t1Y+-;Lm21X<IOEgknGco4y}2%bmqFoH)B_#+5JkQRX>0&j$$
zWwa|+HW$YnU$WE6!<_C2JeHSRLybTaliVjnw}QD%f>vZCf{?|-LJUFHO1JdKLY_qM
zR7i9my@=pt1V~4wbaM=U#o=AZ-~0)P;Eh%HU;YYMoH=78hVe|2L3o^CMnMM9#VJSP
z#Y{>^f{;YP%z_M<Q#6as;>qdABK+xjbEJJI9of@SJ{=X(ks}>B(@`iLh0~GCiqDsh
z+`?1Rkw-}0^#A`&VXN|6kp<FGP<XUeOkPCHlIciI2fIO0G3{1-F(Jj%Q6j38Fn=IQ
z2``<FGD6A<mJ^I_#%S`2>8P2GTIr~ij>_V#l5WnjQeAk}bW{_<gwa|x#AID=tJ>*k
zB4(X*)D==M9re@EKse(Y3Sr&G>1ZT8Wo;gs?^=2^=X>dB`X6Omr}!4>7@2PVWons@
zR_SP+jyCD&n~r|zXq%39>FA!09_eT=F`WcE2zC@~l4?G{)0r!hj;^9~6MU3AZoiU&
zNH0rI5qqbjm*tJ>eZ*vv_tVio9YfMFG#vv(Gy~Ex&<cpg4-#{5I`XYB-+&utMUF_v
z@N`h8NF2Y!e(4xSG1Y*C(dihIjt|o@HXRev%}+*-6D0ZN+m!JZx24%9rsKQ+W9mAf
zq$sv%_w?MiyX@>DNJfEWNCJWihzcrVAd48u0xGBk6B!i+#DIbbC<+RwpaPOXC8MB{
z1SCt&Iql@>3IFyR`ybD#bI*PEy^3AkGt<*u^<?gqE;&W>eS-=yxDY!Fv8xb63Nf@0
z^9nJ)5W@=bdLh0l#I!=ZQHVD=NeVHh5W@@cRw3RmbRMF3n+=F$y`wlnairoXMY<{;
zac=jGX7BFzy{q`1BJV%Hn48B3LOv|SM}?Tg_Gp%|h4{D-;|noP%`W;l$|r@GQ0T0I
znR%XMBKxj)u2^zL`AmbqD8yv9-p>o2r%f0zMU|<FU%K8Yvz$9u(+hEA5q{*afI@t&
zu5T2-FT}Tnn5ldg`=00A*ZR)Qd*2cN4~3Ym<{ZVTIZj1$l~?uVUs~jh$$~;GEX2A(
z{91@b>RMii6@^&LaVx~1^L<MT@r&xq6q)6xLj0_JYagdZrVdB^D+~Gmvh(=OnnJ89
z#Ogv=Tb=TGH<ie4uGK6z+~7Pk@*7Jo#KuCbS8;<|^6yIiD8$+OeVHNMREVvG_)GQ8
zidz&}>^3DVZHJQWg$NyVYGnFbmFAa?-G$i0t62a!0qiYw{tY})h?9lbSBU+E_@@xx
zx6eMJctG)>;vvPuiVWEJL)KB{#}tpdIs;De@D(D+s&$^9VHJhA!uGpo!MQ@5FT{mH
zTr9*TPSG{a%b`r$)|6qQd6id>lFmOVjko4@8tc2p<9NhhScrg@uwbe4FKW0D5mt0o
z(key^Ve_)E!g0ko&J_{oRIlrtXbB$2pK_Rzg-9u%aKulOE+YUl08aoP)y=1A1>g+;
znk0a%fRlYxpE5VpsC4P|Y!aG90^mv)B?I7kp1A?|)XWQ@sFHleVfPx0VY)7WVgVFa
z@%jKt1kih38K#Vvq*MT<1E}_=uS@{`0PHXG%Cclt$_G#(fQrg*2;fE~j2v*Wppwfg
zD=AQ1a4IW9ssvC~i>elI?whg9>S~hIP-Sa9U#$RY2QV&xj{~?lfI0!R2%sf@V%PT7
z4d8Yq<hKNHtMc1irCtE_UEV-RmyKu`z#ReHspdTa+#A4M${V?njg{Q3IJBkNL<jZ(
zHSc2|hxwYSa=#+CKH)gC_6IfKp#Yi%&^++(TE1M-m-iVspIZg+SOAX)oSST|HDj9q
zHpB}a4uESnwPo*C`W^|Oof7g#mGFU(Cs<SfZv^mW08a(bo_PaU_duBr0dx$Y>m6nJ
ze_SUmuqy|rMw!mayD09hp3g_wpH{t_V)p=gu)w{-NH&}JYyi&%&@+Hu0lX5xs{uS8
zzzYHAO{IQ{FDmv??5()qi1V^i-vBb?B^9Z>tmKa){@0WYRqP+YfB*&tFere*0Sr;`
z$w7Hc%<}4T2bs9=(J*z9zpjMK91RcPt$=f@<URKEVBXsSj8rlrfUke{Q90Ye9Hq)T
zilYN~mjiXrzphCK^O*Pj06t)W0Su3pdgFDcx(~Jdj{?{|&^K1GN2BW)IX-}?0el(2
zCjm^*dM5@jDd7Ce#+Q0-_}llXa+;q7Fj@KMieD&BalL1b_<2X@E1r_i=9UX$S^(1n
zn87v&a3O$;0elm{w*hPpU`qfq1DF-S&jI`rz;^+BAHd?kzpK^#z}e#R*-GXFFxOQw
z-+$%>FyB=cC|MZ5B3H@8EKzf*;xeM^<+qpRE?*zO3gs(ZWmN#H16UKlT2+2^^>s>E
z@^4C52)}M^2;lbs{>Uf+Y*O-P02`I?cLBpH_H}-AZw=tD0QLv)PXOE0yCZ<V1K6&-
z<zlDrI|JAiz&=&xH~V)qb_WnR;@`th0o5~Ky)qRs%K;USDIN^qkdniSM*=vigl*0Y
z$Z<7K1aOiQ{_z}UXWLE%a5{i90i0FudBt;z-|sHV7$#=F6u@O(goChxxDvqC0OGt}
z1#m5Z!T>@VA5dg`P|5$-4-Bgr;W@b2=~Og;m@51|@@-e=3w$DgQ~+relZqS=Bj^O1
zikV*1WJ|n3Ac*2YTpxs}mwFK;SwUpGN>1?KZ|S)~_=3)|gbZWK3nD-0d>bb(8pL%P
zUraGGO4LiJSxT{F5UaG=)Jv;UMzO5oDX&#Nh#UBb%PilGihjikK~z*iy;2Yb$}21K
zPZNq&lvh=(rdU0QtfPLqYN$zGD~Q@`Y8Yd}xH*VALA({h+ac5q;+7y9h0r*JTZ6bQ
z2qOeD<UFrcFNlYOXd6WRAQ}X5dk_tScrb_wFBUM}5yXAU?+oHDC5;sC38HZjcWcT-
z_WR9uuezE9@%Z~bCMr!;VZi-L9th&2gHEvzxq7o8ng`J$h?cI>I*3-v8y)p$N^YYj
zGd>bTyC4<@u_%Z~gLo{6u{=zyE{G?Bcp-=vgLpECr-JAfME4-t2c5U<I|b1>hz>z?
zRCBMsXutnw$JHf>u0cE<M3;FvR5Gqao<n+Q@UuZY7sNBl8J~F(zGo1<f_UC7jbbnl
znF4zU(I<%4gLor|zCrX0Vn7fBgLo;3mxFjEh*vcigER531+lJWcI_(J{Z;29d8~zZ
zj0XiVIEZ1qB+j&k1aYWkHeXp98gyQ|Uw2zJ%}iq`z8S>uAl~Oe=dljr?I1=5F)9f5
zg5HUn%Z><w$SU3mVssGi2Js%puviw~`Ko@4Qw|f`Kx7Qbm>@pnVG4q6qnK$Ykz?|4
z5aZdTAf^ZL2@eX-mmt1i`J6c~`6mVOsS<u%ex`(Chok<<K`@a}XC#sOlpv-C@ulkY
ze&q%*Y(@}Y2QfQ{Icz`>-v%*LOJfW(5?KP%tRTKq{=MQ4uKvPNKf_qj+#r4oVxFtd
zSHij$1QA-o{g<8gEDmBx5Rsts(YZ8;WkDPW;vmn{Abt*Fa}ZmC_$7$tLHruTZ$YdG
zVr39(f>_H5FxFbdaYz=d=7=42UOgr!u4BJ+RX6GxaeWXQg7`g%KU7&Y!ek7+f2z4L
zh)tZUt1D!J@Bb-l)(B@!;H^RY6~yi!_Gs9)Aa(@txAN^g8MCtsm-}`Gu}hWwhEA3l
z^Q~%kJ8SChRdHVs`<1Y%ttxpw(qjJ!a=T=wwTFT@9K^*SE(LKUh@(NA4&qD@$280F
zAWm=^Xch*a4C0jPCCd7K{l;0dZvCUav#MNBJQu`yo=v-*w`DhI`Bca+^Wq;wQ2A9w
ziiJw9DRzjK2)O#V4@=V<3L>n^v0_eNqIz^<it!+9&TZu>MIN|h5Ovo$e?6yNg{CLu
zybhcbLXi-x5WFGh`y^Lk;#YKpAiOH}%+3m-S9V@@$eB^&x0GF9SS~jNUkF7*xGv-@
z`@m<S&QJ5@h47E$<!jiDo5~goIkTl!2&bO$6%XP15K4qlGK5MY6ogPJgwi3W<7E}g
zD6XB0gI?zVl?$PK2sfx$QSnB_3W}kA&cHHVEa$5nf<J_tRIj2~O|h!t`nAr;R1cv>
z2uF0ZY38l-)l~2O^DUaSL%2DFI@;`digiP{h1dTOZd0r$Sbu9l=4>LbA3}o=ZV#bh
z2zQ3KU9z9)4kbi}(Yz~!j6(D75bg<~T?mhcaBm1LBH0gx&@6-|%I{O8*ffOuUH*WQ
z2Seyn!ijJ0>TNS5gqE(-N=a+QHX%H$<igVh%=L)!H+mW5kLh9U9zqW#kB9I?2u~`1
zDugad+AH$tcTmzXgiaxJ4xz873`His>q_jZ-ls$8=EhH1g=a!|R?Pv5&xP=klAfG7
zAv_<#3u^XZX^ou;_M)03y*cv7oTonex=KGbOqG{ac}4M6*ZZ21{)+EZ&mS1VAmxKY
zc-@T|62efI4^vX}wDE?LHx-Aw-ZCeQ5h08WAsRv~gi#^9qepO|e&UY~VN3`ghMYh6
z-VNbBCGRUz`GBW}{uB362xCL|K7=1a7#G6FA?H`*mm!Q-@~I+~PePdB@`)i#a{1?b
zoUJN93t=)#4&e*crz%cSe0_9z24uGM`YMEJDo$6N8Nv)DUx)Bb2wDI9`vmW|A?~5<
zJTA*LD}?VfhMXt$Y!2^UVVWDl9G9~@KPsOW!u${hwDmGA2w`=XEGF_rAuJAINeD}M
z7W=bzhOjJzpF;S9SC0^W4&fKoe^p%0j7k`}LdnVyRw<cq%z6KMjq6>jWF3oAovz<h
zSs%g%C1-n=`8@<8T}&HQ+#13rB~&&m*`mmQX8%&MErjhMEDsr(Tsu_!TXE|#|E>^r
zE8i2sVO|!L?+syJ2>W>j3t@UuXM6gCAskQ_dEqhtA(y9*`HzNhEQE_8Tngd1>Zd|D
z9l{CaCl!mnkd>+ZjGE`z3ni<|<WWB#!UZ);9(M-hPQ}Y1TnnL4^(!G<RYLFn7qbG&
zLm`Bf1QkCX;8aoif)P=Zw*_d%L$G<N3FEOa5+NjcnF`~MFj66;dASawSQthaW*E6)
z=TI_vlw>JdVR)55Q8MCGr{rwqIf_LTM^5)Yy#+qyd5R3n52L7ZG<Jruco_FcR<$sy
zhjBgiFvfPuE*Zw|eR*ZWC>7?Gvi{OxlnFa80tY@b_@XOGxiHFyaYGn4hEX{Te;5_Q
zs2E12Fbcxl)YU)!JKy5t{&RUHPaOB(KCZw#;lJ^Oze*V6o90ywI~U=q(<?MR;m_IT
z>vF<hLlug3!?;O#%`j?(QQOt)@K=B)-u+-0Iq{Y-ZdG!dVtvJWihDn?8iaAXW+7){
zmOIsTR~U`h+AC#P6o1z@X200S7CwFy-p!$4Px<nfViU#8o9|7-xIgUd!u&uOEy8FS
z#)Dxz6h<=@n=9tKdn=Q)3Zu1(kA%@CjE9xC<uTQm46?KgX~$#A&5rB%9uMP*Fb0P)
zB#bA+cq)wN!sr=B`>^vJphFlPmDH$icGA8)9R?R0>8zXqUDy!~Ag=|poAT}~YOnNA
zd?t)%l?*%KpVPy6Ym7zp3Uk#pysW{`hw*}v7sKcsMjtJiL)}kFUwZpHw>_DrR&s8F
zvG!No8ea|LH4W<@#sDP)!&u+W7^M8_Te+c#^GN^DFouQkP8g#(Pr`U3jFDlC3ggW%
z*cc|pu>HfscuSkgM!v0NL>Q~z`?t*u%dE2UZW!-{@xJC|#*9u^CVd#jM`09+A~%Y$
zVT|L9jd1Tpe9U<mhA)D=2tEm8LKv6AxE#jBFed3iKN`lTVdr0usbPE>#%IbWD^mPi
z$roWv`M+|)|5X^%!dM%|x-h1PF(ZtHVJr&c>oC3vV|EyG!uU3fnPGe%#^L7KOtX}H
z$8&9V9?i?c3y43s-cqd`ac&s%!k8b%kE-AFypwT(^3EH}k~2|U9LAC`mWQ!IT}#9G
zDU6@PSf&|SR3_uJTKL5+hvLdGR)w)93>LLI3|7sGSRh+Mg^BUMhVfe%d&1buqZ!7A
zF#ZZ-TNuBG@kbb&!r06S;AY(DHjLG=Q!Ih5En#d`eM5F-CYHZFj2&U@3}ct-jQQKm
z$Xsj&6^8B3;OxA8VeAj%U>Ju~;kf-1#sLm^t$!1P4~KC?z08{_fgL12#$)tIHeW|Q
z9>$3<PKI%c7g$}d=B$#_VVrT587KVb!Z@$yg)lC<ddZgxR-EuN*Of4?h7k)RuCw}D
z82hSZ2f`=}gX?8B>T40H1XT|yhQo*`i7L{|?c;4;{KLqKIFFenIa{t|GkGEoNrjPi
z6+;y>!W}dHnHVbquZmElC=u>c>3FlXG!~c>K@sJ-u2SiKD?g&2CJ|UC{Y4|r_47JK
zl444VM{vCo{<z@xJ$~gV8F9W@l~OFNSSEt9O3EpgSM(Px!>|ewRE*%G2*yTGDT0Cs
z?vLPs2r5V5kDzhH*|?-i1XUxb6G2@yt3_~=61u8KP(yj3wzIECO;@iKL2Z}ctmKDZ
zo&85{iQo=3Z;jx#2<j=n-HogtK?9fbmN?@ZvSAIJl9}#|;4bwxa%0X`GVXTyJrUfi
zyosya7eP~(?|aDiU<40EFd%|~5j2aSc?3^K&@I9r0%#d=ZXG|R*eZgy5j+w>Yc;92
zQSvZbGQ@c|gsEKwkE{5o8}nEM50}fQ>j_n!bajgDBj})JN5w7?baK6&IZDHFnX9WR
znRi>dEAJUWFC{$`pNZgECC@1`OSO~!=OcI_f>%^|QL(RLZ^b@}hu?O}XX+QhOA)*r
z!F?y47iYRFlDrzhYZ^)3UkST8D1yNeyb-~h5e$hq>;DJmfN7}mVTu%AS7Oe^a3!N6
zct^=w5xmWY`LjnTl8odPdt)96bB)%R4<dM136=LEcwadez@a(D)jw3iddKnNAHj(T
zPDU`EMMbbYf)x==h+tv_-$(F61d}58G=gs;&I7KWDSi>b6eW{6;gv`^lU}B&5lmO*
zOU17um=?ioe}2Zh#rBcRh~R7Wk_Y<~5WkIJrYf@(zf;Wl!*R`4zEp8e1ap=A7{MYX
z^CFlZ!2;zA6%Vv>s$lAW(!W@hC5lugR`D%!`A-r2to#>O`DjPkl@Y9pV5cgp6@QCh
zeFSUVn6(kCbNR14zLT65Zct@o1e+rG-Sz$v!Jo?GR({PkPLnoAur-3eRNSKYds%1D
zwneZ*&FzY1$2)6cGyTm&aMIzsBG?_lo(T3va8zUVMX*1DL&_QO4=-!V54cLVSxyNP
z|H5HcITGPskpGr^EP~^%{#Y6FR0O9ZNJWs2;Ea0>Ohj-tf^!j^=jAkluwE@MMsO*D
zfbz?V*A%Zra5aL3(OiCiW-33*`TAX`uEa^__d+m&kecKrPx&JeL?ei~imfCb!O~Bh
zJ2Omt^*E_5X?x1Ko5y5C;f>;_g+4Rtd?WQJl2}TDy`0+}h@#zmzeJH0b*|@cp7Li$
zk>heIz9{md7$3zaQRGKaH0tczGAxSgq9_(ctte_oQ9O$4qo@*f-u*8TMXT4GuUI!m
zQ8J2BQIuAtoFZLiq9_}6&d1E&3RKFg>juSfQKLc>6{DyWb-r^JDDr=?%*%|G)$~W5
z<)P@U8pUIE^QtLUSEN}($xTtzRC0gYEQ&WrQ74L5wO@6k&fk=GL~&;nw?uKPnzu!9
zyArzUMNvPB2LDkSMlo|#4qZ%vC1vi4qEQr&NAW}yjib0bie^zXk2-g{?up|5C?1I7
z-YA-=a$gipmC*au6V6T1%w}N^s`!xNl_ieOZNFMX(K3pMqiD;~h@!Q68QI1yf%}eq
zcFMV9`3Mi3ijPH+**DE8L6w1R^2sZVFrSR#sVI6y@q85Rqv#Mtw<x+t(J_in8re09
z&PuvOk!i!cQ~nmko%?A_PpfOYR@WnnXQOzI1E^w=cb$Mn?jB@4Rpb^PFGTTT6fddC
zfZkE`Ro+MOsuo4PUlcdKkW0e!GADz2r*(Cd*P`ej#egUVMlt*0B15AX6vf~uhC~t7
ziB0~|5NC#G%!Zxv_BHdp&bb%Gn^FE<i}$1WAd0u5&b4>k8@|y>-i~5K6eE>?XqZf+
zqM-L3S9w>>_Y@u7Fo|O_W)vT?Qhxvck2e$Wu_`Q$!4smG7{#wq{1(NeC_as1xlY&5
zqL>`TQstjV@kJD0NAXP*Q&jm<k&}6<k^>)mzjBpnQA}4p!&T-TDapuhqxe3GA2=sf
zpQZSn;`4KzQ*U+@bJScI#oQ=<jAFi;bg}$-%7>P7_Tyk$5XI0n$YflkuEmN=qDb#?
zUJzzl#><F`KP$H1l=ll~)F$T~T%iid$|zR3e6^A_99t#p6lcAV!!X{V>i<UB^-*ky
z;`b>2h$6*`qWCk4jZqwn;y9<!+Ja4-1AqIrM6sDC;}z!zW2tv@w?^?-6x*WM9>u;W
z_D8WJiobb9iegU`J9#;(l)X!lq{5Fm#BuNVh<jChzGvQ3-s@@pqvpXV4n=W5Iqy$W
zKODu8D2}R9>a?Q_-CUN)RQt65L=-1^u0?Szic@+eITywGC{9OF{(28zW;~<fSst}V
zi_mP?Fz;3)`$7~KqqwB5%RI}JJb2pwf5NU6a;ksq-#R2O8bu(AU=$%<f0`TNC?Xoq
zRnr+pWa1dcqKHRfN0Cr(?Jvz_6in^*<dYK_{DYNm#85QmT-D7OJW8w>vSP?q?p1`M
zC>DFqpA$oo81h{+H-@|zsQVO2SQ>*f3dQTlV<;ZO^)ZywTqP7s#ZX#F$ru>MTufzR
zD65<$FlF@euJ?hts1QTN7(O+Gw}>jmP!L1&1X?6eIR<|WtKwK4N0k_=#!whTAcm>K
z%2tb^P7HNpsIF!WMd~*xsTo5pSE(Jt&C2=hodLJRaBB=}V^|l%Z86k~;e{ApjG=xE
z4Ps~;!y_?VZJl*{42@&BJBEg8-l2GB40pxQe*+q+*>St));3w4MwemyJux(m;r<xz
zRacW3?o;x28T8J!81O(055~}v%R9vIPz=pteB0DRy?G3GG$=*VB8IM>QiB_mruoFY
zlB2J9TF3Bk3|oq$jTTj_bA@uPvlzLf4BDyEK86l4JQ~AeYCayrlS-aY{I;o6?^DW2
z#vJf;jG<EuJvj0)bdI5my1FZNjp6ASx+!OkOqXY4$*9sq=KW<oo>f;*#pe{4uXkL%
zVt78reS)06FmX(J$IvH+cVZYFLtl-2HHOz>=odropLi*T@%2l;9K$Oy3{91079!35
zF$~b)w_+F=!=M=6P;+n$Lt+>f!|Q6YJwtU&rVK8{<}v&KoBF03Fg)h8oMZU5DkEYT
zsV(Gyk5VN|>wPzd_hR@qhM6(E&%+VJgcv5qFeZi%*+`B2D2B0G-8d~XQ`h8HSs$yn
z`)PlV_I|eElbADHOp`c`WB4+LuVVNthRHE}5yKP>uDZ*^QTkl@?rkM&ZuKO0damDI
zaw<o@L8)EQlG9?C9>a_nzUC>g%Nfsf1Lp{SqghB;0&z_DQnO<CPQ_(0d>_LPG0cx)
zK@78Fm=nW~G0ao%+!%N`+WdoePy0I+ab_v`iJ0f~(b5ZJSQNwJ7*6Io2a$6l<6RQN
zQqB8Gkurl?XK{M}6vNM|{1U@To{TXpk70!>>^>8RdUcGui~83n(#+^A@Yk4g6JSdW
zTb2B#xITsrO6dAMhCh`5skqVAH!0c7(a=rI|B7K7N0`B<oeR<S7<R?5TQ49x6#rJ-
zsW>ZX?1^D7yB5Q#81}`mKZc_*9E;(f7!Jg6D2Br^9OO8k_GgfU#U9b@8IdN*aaB%e
zFe524k(`d<jG7l>I2*&c7|yH75;EBtlSvn2xTHLjmjPEe-`>pIv?%Xt48&`SO}b_W
zV+h6YKpYRo5so1eL#ep)Z(1~l7_YZ+=bQX}bDSma<1yGV)M)1XSDuI=8AB?DG{x>Y
zxp4=LIIK9l%FQ@DN}hSqM;8;~$WlcVsl2bQY&CNfizq%9G3fOv&x<2pNl``W^cIVw
zcpUuenQgmXTUbJoW=SQy0bZIUj<Ru-i=%cNH^-fC%jM&!6h}cEH^gyc92Hcg-f@0b
zMVAlJy|ydIQ7w+@arj-mijt~|*BUtAcprPz`Kz}^95<<0(~YbZceeRvsuM?DHnm??
zqd0C+Z@oC`$8oD0d7DPE5T*ty-WkX3aWqtZdZm~89m<cLcD{t)rM$LoXWTfByW_Yg
zj(b&X632Z?CO+wu)-;a$<Nt0i&b@k#Gfwu0;%LSi<IdB|&Eseh$9r+SA4khLTE)>P
zj=piUj-yQ+o#W^dcW!?@9LHmEJRV2eI39_kL4|+sN3~P$qj8ix<7~Oh^n@zy<9Jd@
z_oZ1+DQQy6x%br}j*fA3QsuT6b82a>u4?v(<C!>~R^CmK@!ffta-59Ms?sZt=aoDc
zM^87VY!BZH%3sX5)@5y}=rpf)9M|<LP0}xpm*RLwy)Vb{N*qJt7|QO)@md@M-EtN+
zbt>u~#{g9xb$c`@j=`#IDVEnExAL$!UXSCgINnzAjW~uYc~g-k?7G{RTf=F<2v-@Y
zB(v@BDCI1N0i%__8^`$S26wIcAdWFSc5!?a$A{_~AIB$3K2jVT$2cX-`*9rmKFA}P
zsCy+(h+|?Llj8U^j?d%xLc>0bW3rMnm7Vq&H~)Lorl>eovHuxA$AMm^X>rU}K0S^Z
zaeN)eH)?(#$G2|GEG08}D!uAt`A*Fi-#GjSH-<f(6USU$K;oFE;-Wa_yWR!v{8^~V
z<iDJ}i(T&$PLEF<Wf|u~(X5{oe^&e@j^&((cbn8#sIoHdETooE*2J+kj-PD&Y-1h0
zeDmE#TN}T|@f%NpI3Hkk)(U&T#_w_b5r^2wvhime8{@bT$Hh1{#j!b#192RTV@n)c
z<JcL;t~maRV_O{C<Jb{r;YRab*_TH8ZdvB6i@s#A^>-XJnW*oMV^7@C_s6kU)0C0E
zeLTPVIRWIij`ID(E-b_2;$zq$HYtwNah!?cNE}DwI2p&OIF7}^VvomhB92UT%uCW~
zl<(fUzJANlZJAT)_alAFZR2bl=Xfz0<$Ft;be@xQlv7;^RvO1;UNGZG#Bn8#t8s*Q
zd5_~7M>~!{96{|-g=J25c8yJ1Ya1k84m-Vw#1V@l&WpfdM75h8$7Zn&F-9%}`<{#=
z6^CKNw4L}g`>t(ZA#8w0MXwFmU=@}PHi;c)3EQ=<tG1DCBgaNH8`W(Tv5{+|tc`Lu
zd^YlI6t{7`jeHwLZCq!gm<@Kn;ILB~3)yQM?EVfds)UV_HcHzlW8)=l0~=7v#(`1J
zIFrvCY^}D9E4ESI#tk+q*(hN1mf=RW%|=CSDvMn{*kZ}d!pO=t{5GoEV0YNmDq32N
zW#F-xe#Xz3eYR1<#!WUF*tp$BO&hgr++yQa8?|lRY@@DrypHX(mMuT6lP5D7Smtdu
z>e;BTRkJkqg)Qf(viv`7qoIvEY&5dbShL@$VRzZi<Y6%T-d&H;-5e7eO>A&T@3EcP
zvg3^ZJ{wJK+^-ok(}s7p*#;gy*8ZT4hio*noztO}jn+z<E4HxFQVCsyY@?0x3{v4)
z`G}2nHip_5X5&#d#zqet&)9g}#uK*lb*sJYJoNaa;!`%hy_U14zN3_$VXQfl*TF_d
zw#r6l8)v5EFg<Ofi;b=}{%T}q62)#dx~oD?k@&2Q=QzT(eFJUuw9(5(KOSfs&#Ty5
zk=_@Syr?+ynn9(H^1h0E!GX%l%3rhbijr6V<La+`fU9KU2iX{`$`D1CK%L()UbivP
z#v~hW@X&DLZI|IT{z)1i+IY*x+crkn7-{2O8}HdT>Mt_N=3}VFJBlQ{K#k_mt&p7^
zd^F#;@qvvo>Kzm`sALlPM>fXV7^lJEZ}P_5_*i*nXU|V;P-L25<Lntf$)`3xv$4p=
z0vnTgP;AV!G0R4Wj=nE!d}U*rjVU&!@}xWFh)iFq_h><p=}Nw4gA0l<%}~OyZ<H|X
zTMe*!7kp>qdmHmq|3Pt%B6H2=A%36&$y~SCA8qFwBP*J(ty;+O`KcsRrWTUL8bEW2
zjit&TFO6k39x3hg;ujmsZJe`l-o^?WD{bttvDd~b8>?+>(81@2!WtV7&UbFwtmQ`l
zul%b2rkGj(f4y=ZDVo3A_(O;BPh!!m&B{00*reo<@y_b{TWoAq?_V}{*!WxdHlAxY
zncLa@ojzvVsp2jhyH%&cL@$x+Z0xhK-**04JIc9XJI^c5E?IJDv8)4}JdG<HR6L|e
z^RSIj-@GG=G<kRZn2qB$PS`lfi>KaiKg&XtpH@8M>Q{z2ck;Om=>;1XZB$OcpTH#>
zm)Ye6+P&?+V&f`5@)F2S;F^s>eh#+GKeQSFo~kxdHqxquY(#CuIH}Z(a3Z~BGLpOR
z#ckL&5;l@HGCEx(O!Q{LjD%CHCjm=|nfN!mS4|`!N*J7pXD|tmNKOL963$6fB!OHd
zz66RY$y3Z%JQH<ZlVQ3}&G&V4hvLewPoP8sB@-y6CSyt~DSFm_`&sAN)D}BRmQA1>
z@9pd;Szhsm1a4GPA%OxVbX8PR=|9SnH%eDYplSji^zb~CK(&N(+TN#FJ%Jht+>}7g
z1R5l8djho*sGYzq3EY}+)^WW#fjSA)O(3&;>kwVamHL)L|0=g7P|x*Jub%*yawTb)
zz#R!RPT=kY?o8k=jcKH1vJfu%%9u=P_aty{0!`GF5m^Wc6Dw`XVex0*uSoKMk_Q#}
zI9am<2L4f!OG{OHrc}!WS|zY0g{>*HPM}Q!o08a^#KQ@+O<+U<BNKRpbBP^K;MoMe
z>|6TL1pau&*Cm0+)O=j=i3FZZ;3?&u68QA@lI@juQ0%D4yv<6MB6e2uNxxH0S1s-7
z1iC4q(mjD5E>DMy=Mw0dz>oyE!&I*X-nuvMl>}Z*;Q0hzNZ`c;8a?A(*|b!@1bQbx
z(uafQiZtncNprod$n4)7^f((ep7p<$K>q{=ByeoC^Pc0_v;GYWat9_bC;^heiUU<-
z)kC!b!xDHsfj1I(GlAhOP(^zAA{F`D3FnO}n)H&4O5mLYpH#<$Bt|FjF7qbwMiTEa
z7ms)nC6f3cfiVf3N#JY(A13fo0^1VUp1{}y#w9Q}fgcn2IDzpAe4D^bmX^Q-j$Q(M
zXNT{(OibXj#J}$!P2#XC&%7NoIf2jB{6cYR0#p9u&BT0_z_bLWtIpECNnr4pycr36
z?J5k*MAADefgfD`J0;(9wzz9h%uZmAikbL%3C!mJ^2ASIfwp#00*f_ZAseRe_$*0a
zX##5!Sew8yx)NBW0j%ri{}lC$^5u#v6j!?S^2M&zZsa;8zbaB^6~8H8ugEglR1Vr7
z32av7PsNRjbZv6W+~US>Rq~gs??~Y91db$dRP~(+97^DD0=v}Qoxq+1_9mQH`~T4n
z?o)lgVy5;3$`AfWq0S~{4&|`~j;rg0J3blxq>85$PyZ+HxdhIuStN-I30zDdlt7r*
ze-(qgaE-}h36~SN;^w-_Pk{sq)eN|`u)*wpCODEnGyyXSPZBXVS0aJ9%WWl@gPu$v
zrDodo8cAm=a^$TfyvlQufGg6)BuQkcLY}Q8Q(9(9<f`IJBF~M<PoiiN*CkQRRTx?P
zKN(9VQ7Vb{Npwh}bP{EfxIKx6Nt8{ZToN}YQ74J=N!*Y`K@ycUW9AjJ8<kf`qGA%2
zlxNyN^d~V8R`n!mBvD0OY;DyfswMxO@R`V))KyEdredZqwcRl0s+&Xub={(PD^GcS
zqwO{|>nYY(WSN;_??~d#Bw8iWI*GfIXq3eLNj#85<D_%eGqL@5YnFSGxK~M&B<@p^
zX#neO`kyvDs2Q1yRX?O*&5~%IL<={jrHagzX+WDK9#`ezB-(O(`ug|x$bBS<?Tsq5
zOXATa9%Dd{?95rlEF@28{F91Lxuq>!jE+fkO5zn&Iw#RZN$(`ODtR`E=aP6@o7YX1
z?uu+lk0hRPIjiXTAKuI5&ntN$i5HdpzwdpL=$k}86<<<p^J&)0|A~1uiPw_opTvM9
zhN?bLk@a#V7UG~J2CFheG1F7(!_;JZxYXX8oNw=y9;G;3@h!!-lNh07q#|SZ@9;bP
z2uR{xUi_07>+0_-8N(@|B!8DvAk&9xexz7tsefD&A16WYcvY_71tx|~Okz?J%ad4<
z#HUGomc*PS<|Z*YiO-X0cd1|&2R4Z*NepRUYI+iX?8DR~zEbl`#f|$M7jc?;889P>
zuhsQU65l2<^FLwqX3}>_<Q(*UpTrM5Mk|CB%}#<Q3Gv4y<|T2WYu?wxee;u8pfO96
z_~;qm!Xy@}NxmqFCXLN0ujegs6&A&`j3cbd&q@5Eq)E4&RcD>M<tsV&?sPt>H?RSZ
z7OYBQbrNfmSer!C`-)QkEs1rS<?k=8UtMv%t1!U1|IeOsd~_|fKa<#~yv{29*C2_l
zoS7*+ox)#9Y)hg@3b`q4Phy7_5=!FlBz7iooE=PJR}#CE{Pl+eN#|$vBVmKMNBQ0)
z_9>yVUr9gP@g5{k;)p7T6kk&PsPbcqnQ}6CGKot`Tu$Ot5~q{=@oSvXn2Sj;;A|4-
z)MUx$`6=LX{)*2OdnJjhDh3p<B~j?c{I`~%ip&yDBBDKwCXr6UNIAzhmP9-WTlGW|
z$s|(BKd<XNQ{DIr4-*NKsqxt<cv7%Z{4(t5-V~s^q>!bA;*qm{rcACJ73uP&keA{b
zO=yrpeu}%y`!Bc2yCH?5DO{Iweoqxkp^TE^DO{gI3FW0yD4oLSkw(cB%H39mVNA{H
zm`o&PHHM^I3gumX=V9NCDO5<IVhWW~sF`y9ASg(ovXbhG{uHVzp{q&?Rn9qg(W|*i
zvvd9$%5PGfy1;q=u2u@QQ@A;WIw{=3?yIY=VkYBV4V<vsQmB^#6&6C1>5-m!x2Mpt
zm#=XOcc;)Wg=4#XOn0Pkr}DcL8@YPtbN+tk{Jpzp-IKz-DKtspz7*P~@JI?xQ@Ecc
zr_elwV6UtPQg|?hhf*lkKBwAx-?iU-!_WE2TV|UrQfQe%8y);sDM+=f)+sQ6>DzP8
zp&@xV1-fXGw@cyC6xyfIA%(|Mcszxt_>+MFZ<$Y|@TBHtA&g`dZP)t-Yjv!sV+!P*
zSY5W+D%<RwLKjuo4C*akDb+27?kRkzE$Kl_;pG%wq1Zk9*%V$>@|<E%#a@cfE54w(
z<(!|vy_J*nQPMYseo9_aymroCb%F2I6kbb#`!A13p}&%0iUSk}rZ9+YQ$AFYkwZ97
z&ihHWJZlnPPvMOe-gLchr!YK)dH0%cQ5l`LVNn5Nm>Qq=k91>3rSJ}?sG9Gl@Lme<
zD_`-f`GFfVMoIrf9`m+1m-kT$V^bKH!pA9mm%{fcjMwq`JcTb(_#}l1YEDeyGbNK!
z_%y|jGv^jlq>gjiGEGjw&^248Xw0+}rYo76LahnjFH`s`qYuowur+H&3SaYBtMZK^
zOUPtT)WOUYW@%~U8Sw`;IECdYtVm%_3UgCfn!>gTMSkRHq;U0*vWrrfujMRAVcI}v
zyA4*lP<iNhUPf7*!V-;Xao$hm^cOkHQrxxK|5FM-r|?UP`z-s}wyd7{^sY={RSLhS
z@J9-(Q&^M2Zz(=_Z%+Kl|9YpqwLEYmveu>WYYHm^KF0Uj>YsVuzdnTxJS(eavz*cO
zaIt9CpDAqQ58hkLZcbqnuLIq(nQC~<_p(af<T0uDsZ!)G_JzGj<60WqQ`o^nmc|EZ
z{GGy1o|S3bmBy|VcBc?YA)3OT6!!A;OyPJ6L#k)*Q#_QyekD}?N#Q^W2h|LnbYe1i
zSd}A+M|nbh=Ar9E%K0DmObTaHIH{cGDJ7>BBb#t8h4Vb=T<--XmlZFja7jtSKb&_V
zuPDFD=5@?rqEe_zfR~6A_eKFr3#&p`eg$Wt<F6mekEIaTLvwo?b_xle1!+`DBgrds
z3PsY$O(V@Ik%l)7q+zC=hmkyKSm}RPf2H~V6<j5aU+zR!8rf+)s0+I0XnZE1#Cv&b
z&-;C8<fTzIjdE$^r%^PG>(VHe#(f=4E+k9LtOQ#;jq5dU_+2L#QwcRorcp`>>n)u|
z8JFKx%PgP94QW(RrG68qv>TPP1TG$1U)xiVM&&eaN~2~P{xqs+K=m}Ly5&?;!p5^1
zcQ-L>q@4w6xyUW6tCdFWG;T@bR*ktijXG)6O(WA_*2tJ{S_`w>mPWla>T6`Zc~%1@
znQ>qkyVEd@wmtkO&in63gUA!7Q5ucY=#oa)H11C0o-|rC_q9#q-ZYw|xnHxt8AmCN
zrfEEscHXk*Yxu<b(++tc?OYA`g8zeQ@Fo4sf&lb>-MLJ2mXk)yG+Lz{lc`M_t(D)`
zCp)7&tl7yQNuynw`|&wdKbgi;X*{N!=HqER;qs&TC8@Mmvy);6#g1uYT%FxWDo=AV
z{F*l)ja5bSyQT5Yq^#~~^k9u?Jex+JH2S9TTpB&oc%F@Ce~<e1KVf>VX7@^?^sTw2
zFZf?nv9}_<bC3AmEXXJJOXH<9UP<HCG>(ii>3UgXtYf~HkNRl7mPUWhiizfoqrS@{
zN`89Gcj$<3U>bwc7@Wosj%SP9chVS|#xUh0(s*6Tn`sPJ@<tk8{a(N@rngjio73O|
zcS-hBp=)Fsqg<WA6h|w*tN5NG#eo<6W77CAjrD14NaLe4#-{OO8uQW^m&V7eg~$Dl
zvePg4$EWc{8cXZ=K1pK&r_BZb#56urLOw~!r)m5!AeSc7WK}*_e6Lyl6g`wv6~9#E
z#8`gBGmQah%;0fn-n8?v`;8*WEG6HjG1FD9_49qF{CmX>7yMKhIa|#+Y0On};)3&u
zJU@*EJn>aosK<9HTV6kJQJNdk`tM)qTdd7kqL?_Hw@keZ_({pnirk`ic^WIySn0NT
z4JVB9)tT%`@JGbjG}fv4tKx4Q%+3FP4)W*5?`iyz#&ModY5bYS#x(Y&u|JJXX>3kA
z|JClK`Dl?XX>3j7aDIhx#q(cjoc)*bZTtvGV~6s;6)TSNGlr?iMgN@_{kzg2?pEBR
zxL1+G%iW5<Ih*@W8lyM*52SHW+jfZEpO$rmMXC8zF^iE$(>TTxwz>0vJ(0@EG){5a
zf8d=w$$L7DGa7s)jk8M7yx?LQ=aipUypYD#U4ABhg}B6Pa`S@AicL2={Q1wEe@P0{
z2=LNs$aRJUd2vgWO7Swzi-vNV;WQ%3qlz)bI6nfEBzXN-!brB0iG;~8gqUZDX^6)V
z%Mh<BK1CRkV@S5aEk}K#N|quO=Ay_{M0u{OQ^}N^uL{d4W=L^EUN+<vL#{WZgdvR$
zx!aJEhLkd-f*}X5_{#UoD{aU#1M;R+^0m9@FJnkqL&_Oa-VomMz0nYgHz+5elHnEk
z2&f?ihEz7Bjv;jo@f%XbkQ#>E#M%w1#zI;baFrOY-%{NWu3AHr%eHWxmYRmtGNiU4
zBl5DiR124Xp-95un+=)MFqezH++xVBhTLUHBSUU8q@E!S47uHqOk{mSUehICxF6i*
zzC{`ua)%*z8p1VaSO^pA;(w_OeyU?07rmj*)oJcA<X%G_GvskYny^PN<+U;7VMFdS
zq^TkI8}fi5EevUC$b*JN+8PfT(#((_t7Ip1yJWr=&B@T5W4Ng-#a7HXG^@2DcTA=$
zvu`s0_gr_vbLM?tTSJJCZ~&DoJA_9KnKaBt@d-noG~{_hUNEHhMd#D%DMQ*D(!r39
zhCFRZH$yrZ(%F!%oN{lPU3h@FP4JuE<G17wz388I(Z6|#Q)72SdKl8vkh2}~8b6lx
zj3Lh&@|+>|SRc*YWm(wZE9jWZT)hluW3`0?N;u`bRC@g5InQ;^f04Bt(#Md#%+)==
zpCK<9lH3J(E|<8vJ~I4Oj<zAA4SCm){)U_w>>F;#TZRlUWS}8~3>nM;Y@hw6;anJp
zaCn>Ky>7@*CBqD1Vx<(B-Y|q=8I#D9u46qP-vxe~lfiIa3T7IqWRxNAxXQO(owZip
zGi0nG;|w8x-;fWKkdHCsL**YS?hH6T7}wwC`<TbBZ_XsGZak0gTX~-tGC|2iMJkIg
z`g@JeUDMk;*^ti-x!ICBmV9Bz6hpE+lI@YHER$_EWw<F{88VHt+LZF9OgChPA%7dP
z(~z$@Ee+v$y}=OfFZQh=b6K?^GYy$#$ajp?cR#;3<jPIv=Emj^s?2uvIfiU*c^zZs
z88Y9HG3~O~8M45Tg@*iO$j^psx#(Y{xWtgf+MTvroTVeFFI9b+iZp-WAuwdw2ia>>
zUt!29B`Y&wA7nFTH3QUS32P0ZNkZjUt@<}bwqd;?2c9rU*stFW`Gd#8kd20H(w=Tp
z+-%5JC5+j^GB5d#mN3cx;v~8F?{jY34cVbF^zwNp-bC7E$WcR%8M51uJsdHPJePV<
z+^5LZ_4ga{kMaYG#V`38!xj4v8FJVV1{~qpI>$$aYx^H(b-Xy6Qp^-CiFuOM84@t$
zlp&{iyuSCHG31;f=arvje-}6_XI?PmB2Nk)6xE-yEQ*(S-FvbE3DZ?WuBnT>-X%X1
zNzjmxA%-cYDPdkE3`y{mF(j&yF+<{pun<O8FYnaCWE=A6u!2ZI>6BYq+HC{94EAWV
za}+H_>Ru&K6vZsXY{h#o`HPs6tK4Two)Y$pDPMU}MV3?NzU)z}^SWK~bH%6Prd)4I
z2~&>cR4!=>Ur8&Yyp$=WP5I_EA9W)2vg)nS!MMSc8%=3w${nWjZ*m1w-npq1NkvmC
znNna%Wm9f5rJgB%Q>vI!+mxG4scOpNpG#LarG_chly@EJZMD5L#hXm2sR}ujTFNu7
zI?8WxmAa;60&aEVpC0UGuKK2o|F{Cnp|^qJ?TQrdH03UB=VPWcGKGKF-e*cvQyQDj
zBxkzYlzWul>ncr58F0zD0^e`S1Ddz3DGw@XVM<F=9#Y;+ksWVt%FYLJJMMP=UT<Ye
zYgga@3)-0Su$tu7pd1D~qGmhAM_m{7$4z;{lqXGj%9IyP>1|4TQ#!CoraWs(M^ieP
z!YyUHnbO&mF3O))<ZiRnyDHCYJDYVUsB~AQhoWqg=S=Bo%JXV+TU!S7Qcg1E5?=TZ
z?_)||Q(iNrKd)(z7U^fo%ci`d{3XTA&#_lc$^6>Nm;+21Xvz>%hMF?S6mCtzA9sT_
zo`f;{;W^Bd*Hw8#v0D=}^Bb16(EFAtZ=15ql-;I`Fl8hUu_;ST8N~@^%Evs!rf>(h
zySL?zHsxIo&S~F!rf`48-|ow+cBbU}rhH(^7*opn@;~H(Hf5~x4!tZY<4l=)$xlwC
z`H3m3ZgRF4`NEV5rcBgBKgpEIN<LMb+S2%p)3urNBG2clWcU;oWy+Vl_?t49WPH{%
zcE^-irhKR73{$>U@-@#OC2KDEzj&bxBWIdYJm%c1eCCJZ-<$G-YtGiNEf+Ayl*5;t
z`<d4+`Ab~(|7glQb<I~?XvzX53}|rKzsTi1JLU70$;rokOHEm3%1@@u-ki10lwVEx
z*_2;QS#HV-71x@wQV9cA@p4hhBw<?3S+`x*C}tE-G4nT5)@$%qQ#L5s=;r<1ls{bl
zC$9$kokBLLvRQG9>uq}3|CcG-)ZA{$->$yHl;>KTeENlHrzu3%xW^RUHaTs|8B_L}
zvd@(L9N7H4KkNEVnevY*2TVCQ)_2g9Bc>cR<xs{P>pRSjCk@9n)_2U56MDRkt9NPA
zpzEZ|8Sqi-ymJfl&YE)0l!z%&Q_ky|*yFN4Y{~^wE~<G+@v148m0VFAy~o3|^_nS#
zrUX<8DFzkk;tQulhP{5-|9hZZ%#=90Jj^=xWS(tGf~Q8RVBux|fnL5OyVJ{OcpOYA
zPxDH00W?jIcsydMizYncRX%o7Hq9o-As+c!3(4_F5s%FE$d4Y$^@z_SojuaUBYa*Z
z&m%=Wa-B!=J<f%$)ypPRF^?4YNK22j@<@&L+1Godsz<6Z-XkSFQpzJQl{9bg$c-K;
z?U6DbDeI9%9ew3IQl4hiAZNO#pGi)v;E{?R@oP*aj}&;MvU0i@_TTu*FZ-&vB~)kC
z9=X#acX{L{k8o4_+8()CNlnFCibHS6uH%uq9=ToHzw@&H7LVNKk$N7v)gv^WN60Sw
z>wBbuCic;ZIhNzNR!BpQxg!&)u0|f&Hpth+Blmfvu}AJGZQkvXdpxqQPWHX(%HU_?
za+-SNepQ-#<N*zM&?66dgf5oQOcjy|$H2VZ0zUE<8sDI_+1ewS9o3)oNE?syTHnJS
zX{+QB#m5xedE`+gZ{Ff#4AbLkKH-u2t8-{R<&pN<@eUs8q=cR7=#k5p{l*nPtKjP8
zT|M%&N5**MLyvUxIA1vX@d$dPyGMGc`HbR=iq9%O=aHTs>E)5<Ju-Pw)?HVO7gTTf
zT5hQiou8t;)g<ZTk-o|^t8={Ukyku2+#_$P_^L++d1SEi*F4hS%{9Oy1C>{}^6&S(
zA!@$ik)cY4xsk7X<X(+=Qx)FtVx?~@AEh|LjU1_D_7&$x{W~5R?U8p?dCwysD9QRO
z?|qLDkJZg)V%SHVLh734k#QdR*dt%4N!NHKlN3KuoZyj(t~c|p!KZ3|rZ`#gbH%z}
zW=&DTa;7Tzk|Te`|CJ&|rs*D;!PC<t-+1I(kId1qnTp@@5G$GGk?)ke?vB!IkFXGC
z&*(3lc5ZIW^T>RUq&$-L$O4Zn^vEiYtoArxj~97lnaBBkM7~&+C5lT~&SB?&Sh{}F
zfS(nAQCzOL!Xqn{Foug`ukpxQk3=;4I*<J7krSL|N98w<tmo<DkzF3=V{QXyxRT#J
z@`sW?J+j#&Ta<59+{DR0#=~Hyt*ZRRLT)f<zCGRf6~?sPBRkYZ{<o4DSNyv@vd1F_
zJ#t8uy^8x4_j!b`0x|d>HAxP5<jUtxX@_0qsFEWd`RgF2=bFb{{kW3O&*h!;$SIGU
z_Q)BJT=2+6kMNZxmcVq@Bj?=s^SoNFal}iiT=mE`C6^Viu!X<mWO5aHB&cFQk>bjc
zIU$#am9Ql|5K$f2m`CDDY(?q`k0f2*YEUV|64R36mRxU%#}dnuTuXeGv%HnpaxUOS
zEP>^$zQv;^mSm}ztw?W<5-zmP0GgRKwMg<*&sQv}c%3E1l+<kQe79j_2}?>@QreP|
zT3tpgV@X*{s#;RblE;=9<t(XSNkvOOnweMLk{h&y8!h?gPw(!xeZ+r;J3rMcSu$yh
zufUSZmT>7mza>?akWU+Ew0p)RVOVv`!5Wsdc|0p`O&<A8Ecr-5O~qP@wH0}Rt!v3G
zmdt{D2f5Xf+t@0vRP#zbOX^!P*^<vKX<*6imJGAxbxZi5NJC4SThhXkJ1n`=lDkx-
zey=5sls9&jyOrEy$xm0Dl|!0Xa-S+qEqTz5xnIcxin}!IA?3|1Id{!j_N1jHtt{zi
zNheEMvs3DQ!jgxTFyK)oZ7q33Njt@&{c`Dg%#C^6lGWFoeFUCV<tfGXuD63FD~CA?
zo^-aPizR(6>1Rn-OP;pm1vjP}4~iwvTGCyW9<JU!?KJW^OM1CVPfM<9N1k_;tgHSP
zmG^d)K9+EunO92XzhueFmJCw;71!I}l2?_#rdavvzw53HP;(#;hpP;>WQZk0ExG)l
zvlPsqg-##&_uLznd|=5KOWw3(xFv5fta>)nC`;aU`3Or!D!;>b{T2Pc?;T4<Tk@_Y
z@2UR28=3hZ@Z447Lrxn@KCxtiC1WjTF$AXZmW;FHV>KV{TfoHI<DOQ|yZIAU{M3@q
zluWXmt=Oq&yz{c0RTsXnWQrw+EIDk+R7<|J_^~dtE&0llX_f>k`kK`=r(43eTzOv4
zv}A^InqMpVM)6zAxx7=H#To0*{!WqPdnHp>V~!<rdF;Apm;1`Os{d%oQcIRuGS8Cv
zmMqY)MQ*NzyfLNE+c0vmic5HL$ST?Cs{bcTezxQ<OSW0^izUk~`OT8`maO0uvSiPc
zoV7d_QgRjNn<Z;3IsH!7sH@IbrWuM1SZB$v%zo9Myz1xOu&USm8!Y*qV|W8LvoAb(
zE!k+vCcOyMyXNHW*e+-2lDrPr{DaioV#!t>scU}T|DS)&&x`+dOLkbY&yxL?{B6lj
zwnVcJe>Q&?FC+D`cdN;U{d&!R{F;9+hdNwv?}yHPt)DBE`NxujoF|W22iUtxWtbRA
zPVW&*j#^?{lCb2MCC4oZS`xD41PA1@|B}X>wB!^?(X7*!oL54A#*(u<h1DFnxC|4;
z3u<0;V*=Owmo2%%^F=RNyi#3LvbLH@UZ_04+OPR(hM8-HI7^Gv&x=^nd!0Y37*nJf
zx8$ZmKS|P(6la=Oig+c>6ZvcZ%t1b{R}8P*wasrTdK76|N=7%&gV!lv6tldN?G^r(
z=kIs^im!Ralj{|qS4w%Mv{&-HlJAwGUb)UIbuWX78QbJKw}?Icvx<48xL1xpYh15b
z!t0zPtqc7n)g+-=#w!y)$SdoWa#~%lLVtO$vmNJ+Ua6qu2E}z=tD;vbdBv|`1zusQ
z?3Hdg&WkX^3Z1z@tfJnGS=}o&yz-(~dVA$2uhjHPBd;{}N-eMKE}3744faZdn%T9z
za<f;s|7Jm7-`o~HJ_>$|S03u=yWK0~w|eC^CFJ##)K_ev_(h?=p$0Sl4kdRg-sP2!
zVS^$MG&k_N+v|L>xyLK_dZh`w<CTZK(pJT$UU|SP4|=5{mw;Bq*V+G&k`{{1ywY6B
z*!(;umebNJtyF2P*v2d07dpS?_b5K%m3Cg~zy_%IQN{LNdCV)1D}RDV!7ERBC9d%|
z2L64nsiu<EbDhVlI(en1S4J$h$UAGUE?()X<Y~ojiu88(N)MMmqvTnyJm)HW2(y=0
zo>%h)uVe~up%wM<N?+Cj=>_TMm6tg8AdMg|d*v0cEcD7Eue|D&*SzwnS3dJff3FPi
z%1Ez_^2$K34D!k_ue|ORRxwyH^8oe`<wL!adA{@wHHRxQ@=Yb1i&lP1$=j|z!Yi4F
zY2We6Xs^8Ql@HYQuHt)&d?Ghf#Tc)AsLCfiFI4<U&9RECWt>+&cKLWEEPR5iOjI&S
zTS$E}tM<y*Uiro=U#M#;hfB#6MRw#XB`kTG5;kMHtITj?zV*sX<v)65mRG)0K9_UD
zjm$Lu2d~U_l{rcRbNuWD3!mqe`Km17iKg3YQY2aIl_g%;<CVQ$S?ZN#URm#z4UF{4
z&l<nRE5CSUx$@PDnYvaeU+I-qN-{?z<65iAI>lcVe^X?Q4Ex<Hf2g^`D}Q=rqw=ka
zn-nt*-t3hvYG!i%rF@&>c0Hh(WBRunvs1|~#og`^-{+P6ydFYK$Uo{j=autbIpCFp
zUOD8I!(KVzm6Pf^qIgX4sA8sy<8Ene$tka#Q5X4XC7ITq<pJtya%YwcDy9`LdgYQ=
zF1ztbuUv8YRj*uAUg(v8SAt#%@tpOF?Uk@sBI=4MMp<Lk(%dtJHIfkjuOz%e{r}#S
zdtPLk#7GY$8<GRDAYM3U6BHRBO0pE^m8w7&QxQn68<0_akUUlLAw?nAL5e|2K}ti4
zL#~JLd2Alj%v0GVASE?8qY%qL%0h02)Pa<Pl!sJ-RE69Cxe-zcQUIx-g|LK*aL()h
zKj59=l_7rod;U`45vc~Lj{h<B72sA>-`nQ`=bi4E8^q;a&VWdlbT>$Mcc+L*NeU<_
zAt7C&fOMxIBGQ6%qeyp4erwkC{J-CM_VYgPT6^tYdrzF1J;=@lk#W{AJ`5up+mM)&
zJS8nPAxAXN++pP5f(p?2|Nm4wUl{rSr_PlBM`0A?RE5GQ97Yl5q^F!I+mt#K52HjF
zHNwG(R!PQkVU!P}6!X%I6jdgSvQfT{-uw-tVi+H@rczX2l}TmBDvUSgX_S@{R%5X`
zBPAzg%`j?(Q9Fz}VKfP&X&7}mwtg55nABrTDYPN;#*B@^*jP)V98xlG7DjW{w_$7%
zMk^*Q8Of~6li;C|)?xb4RY2N?(T=02GVPf}o(kK)lRAabIgHU^j0vMl7+u5Y6UOIZ
zbPESJ4=MBtqkEM1VA7M00#VJoj=`4cpR(9HjL)Ka+6BFD82!TdGOFnx#us4>VsSti
z1DT}k13x%wGnB~?8r-DVLr;R;6o-W|JQ`c@yP&KQVT_DwMuqWJ7+<p(^U|f*r<`hR
z7*oTT#`<w#j1OZ1^KTd@hcS`KB*qRGgKVcTC-N;5=V@d*li6X+VKRgKGio!F$t;>a
zPlHNQm>b5zXzaW&=7+I5L0u3=xeFO6mT(crE{@uK&xHOF_%V#7G)BN=U|AT;!^i>T
z1bzx*MHr{TI332yFjj@}dl>sE+c4IIu_ugQ!&n;*&I7lHu_KIiVXO~h135_;n-`@f
z{U#z|Yz<=@o8{k^Y6}fq4Uxi_<sOM-Q;d<wPPW+{#?MT4F_Jzdt6!)B%RLg?FZcFx
z)V?r&WAcAFtX-7)Ksfj-@Q*N#g>jHMiHDdRW<0`pl(G2J$h|J9kB9NkPpMCav3t1s
zXBa1#5O4B2RQ_os$29d!7-z!>0WrY2FwWC=bms}r!?+N}#W1diaU+aNto)1dGUFA-
ztBhnXjt_1^{>|bwDv?P;H@MSC;bs^Q!gv_QtuStL)E&lqjCaFm_B2R-pG6`K&jhI+
zvG|lQs(-?yFB?B&t|f+Egz+-iH7%$%g||#z1)FCCnm1vj+-anJMBhbi-qRf9-8@nO
zsexD^E;!i_>@`3K!U%o>Yh*@>5&<d7l{!IL3X3YxdA&`d!J-A&fXO`fd|}A~!HK4-
zk`&xoby@U)IoyzVAOXk(L|C5|$N(fVPsf;^aZ=V$MkbU)GLt06l$~VgPk%oen-$2+
zJPYFoQT@>B!iQ0w4agqlzdw!S0&)Xwfp)-muS0o&kAQ+eUZBVzH6K-}t(YIkzcScb
zxd1>L26h^%76J+b9|P6M3@8dz8WSl86a(nGj6x|U#TiQgC8PR`mxBwp(m<K0rY!K_
zX@r#JIg<)NMJAPiDk)@4q%srvS)^)IllUxB9jE~`1)2dhfm%RApx?9LYN$5Q=vky5
zP=}gE-~VMS^ejS3!umi1fCxneN>0_7k&-t7l9otBs7lR&R?&L409r=*^1(uD=4}{r
z42vP-_CN>VO9cO~bp+^9sBS=aplh?(PF#V`j9o~>gi7CfBo%#&Dx5E_2hbDv1n32P
zK|Wb8SY$p0J_Gsyz1hA~#o*HNbD%FU02oLGJ&W|?sQ%0;mO_g1|Dpx~gMlGH)(mmO
z7>6>FC21%OkBTFJk-#XfKQ&=I@Kuz54U7iH0ApD*E~@|IS@78Q!_LYC)_fDyPXuP)
z3{lh+;9H=qfN}z+0@Hv!z^}k`U<R-g_?f&8m`Rn4q}~k70{;3`noSdgMldN8RdOyc
zk5+8T8JG_&0KNy701JWIl~ON`_T(bq<o*mPJ+OIf!VkcY9Cc?(>{2GnfaT<A&mxiM
z!MJyL9vSzXJ}wYh39JIv0~^T95LN^0$N^qN)&Of+bM|@U(esG#BGTkVkZ>a~v}Je`
z$U9@nj5KGPhAG_56}tsEF*|N6<2J_aj5~mBFCrAR3)l^`Nvr-sBQhuMS;pAcFCs)J
zjGi607x<0loq&7-_5r^GuYotfe&7Ib3AhX#1P)Q>OcKs89tMs9$AKfD2M_}NAB^-p
zFXFjgM*gG<u;vu?4-?Y=Fg%7nhf1V#IOa6XotME?@L4(p0O#4}BIAXq{ecU?9|0s@
z0j>gffqOJez~8`4;1-)*1FkdqhmpQM*7s%P2J?9@BdfTG+brH;?6fZUyP-ok<~|Jy
z@C<kkJmjdyz!N5q7!PvVr_2|&)b6nOf<?;VUnVa>8)*iuc*SA~=5K*_fFr;a@E!;W
z5Cn)q&`U9lX&6&6re<uy3By8g0I=4jZu4)XYpq}xHA#RbKo=kjPz0!KJUrijdjhw~
z5D<fv7Ng0yNz-kzFBCJLv-JeT3Wx~s1;h!67mz3*qkzT#MiK<16Odj&T24qEeu$H-
zD-a_TipjuA+9W)Q36+&BVBU`4Ka@<YdBDb*1$wIq*#+bf@PUA=0<v)|eU9xEfBo%4
z7Sq3qjAQqp<T(Z8=9cE-sPCL$psB)n1T1Z;w5b@$FQ9-BENCSK(7Ssd3HUT;Vo?DF
zDZGlTIHDF3P?!vks6`lwl-{ltW3%FnB^X~7R4E}n99~L5X(3pq`qdK42mzj}9V#!N
zf`CH;4hyI#ppt;50-6b^ETD>jIzn)CuF6<lKn(#OGq1)t=}I!it|;{1E@3rUS&OkY
zW93Mwu7G;X>kDYegpxF%CX7u(ghC@$HWtt%8asMKq`80=0u~BbB%q~$Rsx0!7$%^#
zKsSN$iGW_z5CQE3bQaKs`lqtkUO-0yotSr^++Ib3FKAR2=_4a4UjQNARX}$EJp^=P
zGt!V5eR-s(fRyi#(Dyay10SCX=q+HNfG-4mCZG@Xm4N=7<Z~LG=i$Br=%XGf-yfmZ
zXXv9Iq^E)g2pHKeD0Gm3!2(MBl1RBxEa``Ea*CxQh70&oz(fI)1dO000>%rNAYhb$
zuLO({Fjm0V0_aO0qXkgqDU)L>RLYi;lX9E@(vwJ8Q8kEsL+<^tMwTfpoh)FAfbRs%
z6!0xA{sN{8n88V?CeyfLe_jl}%tB3|Pnl3|RQXu~W|J!lm@6RV+a(lBMU&Y)0rLec
z;2fwXDU~tW=oGbB!1n?+2-qlKiGUx-dG;r)6!0T;6!YZ*mT`Bb^e}xbg-ZO1O61s-
z@5N9Tt)d|iu!iffR=_&$XVOz{G&*FqUO>>*%d|}bHVgP!z%Bt>1Z)+sgYxGur)(3j
zohzAAXHpWOu#<BjvRl9}0)C@KUcer<q=xV1=KsnfHHu24gue^eFW`WHgRG~@r_`S+
zK(Q$~9}#erCQcjizJNaj920PnjH&ko{3+lJ&$UUp)e{0vQ@dV8PLdnEijd|MNBNh7
zj|Y+dtbpaY)pG*Qvz}~7d4ZK=@S<nTWdYX&{6l_wE%}OotJI~Jk}3Sf<Zl|{iXw@p
zud7uzNY@425O9;csJ3`pz#Rd%n3Jf~3C$lHbC<<?R7pLCl!T;zAmAal<#2-#wdfJ^
z$Ba)Hp9**;;JJYEvB7@M6o~vQ;FW;715s}vUJH05U{F&GZi=@8-q8#yhA)cYy?~Gi
zKNB)%LX3!1B2J~n>9j~KB8`ZA2J#ySi-3rp3O-RlXZ)gwWfGQ4kVMELZiu)kLJ^^g
z7$;)92u*}8qN#{xA`B6xh@2vFiLgZ2RF;U$A{-GeMePiy7vYKYEf0atljB9iGAA)k
zMA59lUY7~1Nz0fn8oTjT<llRt3?dRmWE7Fa`eYHAL=?XlqEr#q)V?2Z3d$>uFpG!}
zM9>Zv#Luh^*Da@hC?W@o*%<dd(z1&nB!k&ERl?jN@`$J+qN<3z)FC2Dh$tx{Kid})
zQCLI)=4AX4lY)dXI*CQ739Kp3nEHOG7?Z-gf_723)<P-8nhK1iMU)XymN~_i7g3J+
z7pcV*`=9QGDn?@~F{#W*ZxeqkqMC@>BI<~!&dPuHdnu`Eh^Q$B&xVm$i=&Fxi6>rH
zL<1Iy*Ar2n`JTH$k2Mt0NJL}SG-0HoNuPqvMYIsnS42M%EjhN0h_)hHF(<RuOd8z_
zwG+`^L?0GAi0DXOB;pemJBjEbqAT;xGzz~4ebSA^?u;agJbXPwoOu-?u@|K+6|~~B
z6ax{xnWQ}tbS8zKZ2vj=)s4W6LVq?GCSrhyfy}=UF(f7V3t^Cm!BL*Ko;)<lf4mnO
zF5*iOBSeg3C3(vzCSQs8S_BPcO8%p%V_83jarn0XYNFl`O%U;oh>apPiI^y2l8D73
zz85iB#1s*8M9dZOt%#{2W^>wUjFjz6Ces;bFn%ZE3iklT&SK4rtwBMnu7&5Zxc=0C
z9yOoE1tJzQA)7@^a(7UOFJZn~#1A5V6tOgFvx3Po#^oY@ViI~C^f`r<EUt>qtTil>
zel3%AjO#^gV3LVbZ5FXb!~qcpMQjzZO~fxE_OQWrBJ5*3MC=stvxs>m)!*)h2zQCt
z&Enp>p%e|3@++tMUBq4{zcG@2ACs25!uz9|QbzcYh{GaIlf%$DlNfVE#Gf2{l<|+K
z<uNA58Dl#I%{;;UB&~i?n^kv1XGNT&o)>Xd#Cg_Vj>cXPagq5Y#&X>1WzkXiOT;zS
z|IN)wY2ZJsxz6~{p<ujjiMTDImW0|8?ufWc%ccZF!aWi9X(^V1W$J;5hqU7kry}tY
zlYd1#7V$*HQx;!DW1lg3E}|3H=Ov2|xVK+LZC*2Z!#IY`-idh6Vu(wm4vCRa=|ND#
z)T~J(AuI(qdPqY-mLNpA$V8GrJK&|nDy&f%H3`KV1~bu=U`fa!A*Tdef+HbOLPiO$
z1W!U2MQh7TeJrO+#~3FeUP6L|S3825q-7<M<y`0V5;8<JG|)-Rvoa=2$iyTfAqx{<
z!p6}-H8Qifvx52olgd1cKV+Vbk!-R{nDaO&F_(ng5=uxYDIrfZwupqh67osNFQI^h
zLQ>$p6h2~uf)f7EZ+Df_3rAx~Nf{QEP>jurOSoAss85#rp;8h`OZb@eWh9i9P?=Lv
zY&lj|U@R};qYN>mtjHoA87oQnI!(~$RC*N&RXJ5k>D44um+&Xs*I@gajATp)$2t<~
zN*E$xsDyeF>Pu)Xp$!`}kkFLLq1TayOd2sZme7O=9aE~Yt2AS=Ib#b6Ev4X*s#c8j
zFgEeF9Mzcymq|Mb?U_&=Ixy)dp;J_o^K^1o3Efy6ETOxE9uoSo*i*tMO!`RZMMOex
z37?U&l<GRcBRx0l|BwiU&)Jwt>C1#BW`79-m=BaNh{^dR{R;_%WJZBF;hI_T!z2us
z@U4WY624^RC<$Ll7{Q!uMl#tN^1hZZTEe8LehicG62_9#mR83x5-D>yJRxfHjf9Eh
zQHe1Ft_6isn9NaA7`xsJO_MNP!dx0h2{R;oCt+4J?XGKqL(XI|u`r*UFrP#7l#k04
zJD)Y*OIW~UAtUJ*Nmv}^FUzV+nEw#f{K#Y}d6yJq`;&wf<QOuB$yh0270pl?o{ZHJ
z)=0Qb%anw*64psLBH^fn^%6En*e+oQO|fX6o0#-F72eEb3***k>^3H!?^Sn7_*ue1
z35Qs-i}6>+-Hg95?qQ@0?Y%U)B<y2xKO<H6cL@)8K{&t~Z^D1a{psmr4o7XMCVxmc
z#^OH`jx#wa;S`fU8Ba(E@fpZz31?VyMZ#GL=crw#cu4{slFm!GAmO4EoL%g+V@Q*O
zj#=!1m)Y#W`qcN<r@qR`scwHs_*=p?7S)ppM>Yk6ex1b|j5lfZ+Zn#aoQ@;)GsN6w
z{x2<hbQF+qpIXP7r;HD!;GjmCJYw-N;}gdBmxIioNqEj8@fQ+aGQZteBJs6^H!M1G
z;O%cEq>_<Z#ygr;-GWYgPd&g<F^r_y^-ppd8DSYJYY^2-OavKXR8y&fC^J{08tY9&
zlcBR{$gr3+zAu<EioXdCxOUXCHH&>tg=1yJ$*3Zus*HFU2{Q7_C?F%PjC3+G%g7=l
zy^IVpXsSjyd7_LYCK(yG)ed|(nRzD0HsjUXd%`{^p;WUz4O;qvj2s-BmGMJH(r06m
zUB->}$t32Kk&89C8S}_^&vPxWjC`z_cQ=%>7=FZJImUuA3dtzUyaXd<RYXQn8O2y!
zbT?Eysz-UXq>NH5mX=YLNttMD&Pl<TlJS+@YIzwIqWX$5Dlw<yS7jMPxdT6zQB6iC
z8J%TRmr+ATi>Q4~8FgjUW3d)vZ5ef#w2ccoq(1Y8j3hQ-(rByKNJe8BO``f{Oqw#%
zD?-hg%;nN4RZAJIWVDvihV|_k+cLIeB%1>j)eg)%Mm4nSKIyy2_(Vo88C_Z5EgIXM
zNe>x4qnhnh9P`g*^p(*&s{c$zALg5*XXgE6e8HOjQJVoW1~MP`ebBLkm=BJ|4q>vk
zqcU8^mohF>x62qIW2B62GPcVYCF3g@Kgjq|#@8}Nv;7PiW1=}sk}+1sI2Ok<e#1C{
zk<L!3(1|h%MrY_`8B=6@D`P780LM;aOB&YcOvwKCYq8(Sm?>ixYv#$AFJpEzb`F!d
zGXCaKSP<1OX0niR5#y3!!6NXzj3pfIejCh`r81Ur>;@UjnUHd|jGv->1(TIBRxxSu
zYtV0Nn6G7ACu6;gvt@$$LV;?&QU34rev^#NY_o-tVz)98-bQvX`Ax<?89QbCEMpgI
zF3Z|4GImGpS2oi2MES2W_C|Ses^PuR?=lX{IKs;PG7iYWnHZIFP{tuvzTxwqqcZ+r
z@tllf(Hu_6IL`b}87E|%WZr~N()NB6^vr1)XIOcb4u#KxY$>FW^Q^xh<06wwjQQRM
zYuZ&Af62(EAiILUWn7b?DbN-CBjdV^moomPwME8F84qPVl5vaE-eaWXx0&2wyvtbW
zZR9?a2aII%HM{p?7N0Uck<pGze-^cQF5^X%&#4r7CF8XW(5)K<Z)CjXsMHGHF^N(B
zJF9;$BNXNRIm1*6D03<_4eP^7aEMH~auK7Jk^;IkCL0Q}0)_P|<4n%PP+%%Zt00{M
zi}kULHlxExX<Y@Lg4#R_-Y*Gqi&GFEjZI+EmnTko1(_5?6l744s32q1=K9@G67%ET
zBFPFWmQ+`k4+hRxkmg?K0|l9*mRXpjcw<%tA4c`X>qc@gFR!42f}9F+DafrLkAhN4
z;0AdW<Wo>cL18w_ui)8*Z~^AzlOHiD$VlaW{75UJps0cptSQD=n1`=;)aI6`m5g#~
ze(5MLqo8b*mt&IHR;Z|;l7hAh+9{~4po)S93L5gDR8>$zK}`i8M^jZ(=z-fHP&KGB
zwOC)5v3As^4wLTl0)u)A>a$quaM1Y_8YyU|pt*v^tZ%~DlreF;P`YAb3+80mT0u+Z
ztr*wxxRbsOb>rdxe51WWS9yUibx_bzL8oZi&e3vd>7ZB&T{)_og6>RuFdpSRdl6Sq
zQbQ>Xy%l_>ptXuND*7n+T)}MxcNFwh&`-f?1#1-aS1>@qL<N%+3{>z1XEla#kb<E!
zrpyN`7{a6zU7wy#9?tx0#xEI1C>W_=6!WhbCwBO+mqv97?yHQZTcf=AjOAF;j8ib4
z`GlzE8zyh!6DKQ}qF}Lt?-hKjV5)+J95qeBbOm!1%w=%~<17W=DVV81<o+Qiq0DD9
z(p$I0DNxtVW6gX<(kx(-zjWaLi)e=O%C>}+%cC|wF!@ozQU%MD;JuY}iNTfBemmx;
zsLcu{D;2C_Qn7N-*tH7QDLA0upn~-ZHYoU2!CnO$*=Cc1%~WT;f+piF3U;u5E8{i=
z_uodgGdAfRPkg6>pIO|c;1>mZnD34nq*#(j#=mh6lxNCK$bBsSu3$ftc6@GjNWozR
zR~7uF;D~~w3Qj3F%?5uc_>;*o#^a2qxo0TP6D*!&Ou2!4M!`7+=UH<$+W!|=yv#_c
zE-JVb<taBhuCPYqmFjO=`J=Jdm^@R15xK7528%ZtZ$)kJE^=4FJq77iWKeNm!2>E+
zg`@@##XY3eM!|ChkCZ@s%=m=yDI+N-zm9#u{GEdL3SKh*SHUYLuNAyy@`jP@e`_WY
zo-$$xLn_j6K{1S^NkwmZMR~S&k-G09VHIGFz_?{rkX%-wsEB2a8nw4nXi=`KFrwUK
z(q^n+M>S3gQQ@gbZXlf;ALJRw%J`^Ff{L`v)2V1xFZf~tVWNtRDzan|OQ}erv?><X
z6Z5Lbq#~k%UQ?sTa_IdOpKMfopawj%3fiNCNLCh!WM}fBifl~U7STybn|KiB<Q#G_
zQdYTD<YE4)8GJ20pNfhPwfrgysQ5@lK^2XPsKr$jQc+k%F&2w3lD;UDe`^Z#t}cmv
z>kEVwN~kEwQBtdT5=*NnqoS;eaw_VmsH@WT0V=4duA+4&kwQfkRa8_}F*;GK#LCKy
z8MBHXM{TOnSZoZDan?5>GOMAYrixn8*xD*cpOPD;t*4^CipDCMsCd&S*qE0>0~HOa
zR%*b>AO)MUK{FN2nWX4jsAw5YNXaR*Qn6v3+N@Qit%`Okrm2{&qP-gYMgAGN^c8ea
z(NRSwmG&{v=r4)xDmpVKu?v%~D!MW0dpb<Y9x8gO!Jikc*9nB5sOZIF@OOra-pu>G
zi;&ny#pf#es_3WUOBEwj^j9%}e9uc9reYuy;)9rc!MLiLI#>nakZ9~s6?aD@kQs&H
ztlS=>5g(~yjEY?IRpO&q{}tocjH4MT;aC;pRE$?KLB$jm->UdV#Y7d8$ph!A6v~HU
z2q&>P^Ie2^#ZU|>>9w7yG~7%`GlRTQ#RU}?Rm@Z|OAXfNL)0xQ=BQY!VjXMdlFzGH
z#C#s(d=(3rjJp%O=|*9(iWRK+Ud0j>KQLdaVi}Vk8RKS4%bAe<PfRwx3tp)!P%F5<
zv68w-#cI~CVLbLYbbC{fIfeBqwy4<3`VA>*RcvCinUQSHzKd*Av0cS)D)y<^p<<_s
z-70=j@pIH>7b!mr4nP!Q-Up@c;i$bTepQk4j&OWipp-c3_h_mEO!ljI$Dev9gM&05
zx$TEl9O2lbDvqo8Q^g<ARL7XyZmpeAagzC2##1WJFgeXw>h^zq_;tScbF4Yf7*klJ
zf-b4JtU}eGX}F@|s)}bSp0mMUD(;XYsrXyPH5LD`l9Jq1ah>@M#un*3Qc}1@>k@17
z{`6n3-c#{7n(Dra2P&RC3O!WuNX3n{!JtrR*EYZ>DxO9ybEOSB@CB{g8q#QZsp4Ob
zdZpqmb&-nKEWU}_ue~9>kMbBT@Ual%!y<{Pn4DPuUwy(XiW<O#Ea|Dx8*_r1NKuWf
zL1BKncaTcgU}*3)WY%D^-qqkSu{79B9L6kM?N|+Q8q#S<uOXiGlu3dH`uGl!W4A+T
zHB>05=6Vv!z_CeDn?wy=7D*XdBtpi?8Zv2!XlTDXs7W^VnJgMU(2$SKvNC4ZkVC_V
z(R{LLsM|Ey={+ZFa%;$=;j7!BTw1VA1nDW{)lm9&=q)=~|0Ci28VYFmNJBvl#iIEX
z(ok4K5e+Tk|MTZ<X=93VY^JrzRo+L6M=eV*S@B#gt)YyDV>*uOD665IhBi9d>L^c5
z)^I|@NevY>RMIets-&T^hANc5hL#$tYWP?~V=eetb~O#vwct6f1{!K;s7Wniu@+-(
zMvA4E;_EQ)^FDYstRD0FjGHS4PdYVZ-iR^9o-%Kup(&R_ycv_`jQXcSD-EqR^w%(e
zYObNJh8`MvYG_A8prNCNP8vFBNO=uE<u&$?@`pRqz;O}X8270$R907wHYf{f)t!~$
zdBHpHpJ?c%p^t{oHGHaJ#wP|TKV#Bc!@v?sie{n`)0b2AV<a1TB|jzGfn3!g8isPz
z7a9gJ8O-=i`rtveVbN40nG9$Al5vFg-%bK#cJM;@YYn3{tkJMm!x#-?HOwY6wj8Hn
zl7`6|#<NKF6PSF%IFYg5#NZLNDH^6}n6BYgAK_cZsWe&A=p<6?3=K1*Iee#~{_g*t
zshg!?|NH;=Tn*oASi)xWG|Z>2W4=(sVkV0iQ+6=;?3nuYVB`nZEY+}#$&WN@|AgCX
zG0Rz8$w;OD#AJo`-|h#bS*6h(gQV3ozL^yg*J)U<;UJrB(6Es_S;KA?H)+_SVJq{^
zj4ya(w=v(rxSf&wa3>SW@Mk6|RsBW7UJbvoW>1P`wEy>M_+6ueNZ=~_qiGM&L|7Q~
z$prT2LmCciIKr{V7>_dkL0w0q#x}>JY5!zG<(|@Tn${~FnRT4ea8`q$L)39j!+8x)
zG(6RCLBmD1zo+4nhRd`%X}C`7zlN(CU1`Sr&9P0ipn894SaBdN5enB>e}s#^L1V4q
zwuYOmJjY7f{NWCZcNu9T2)%o-YtwxV4_Nb1!y^rkHB{>uWJrPPd_{?Q{oZ}1;kkx4
z8s4(y3tIU#{L9?VAAZGz?B8;yz1A=;-GBb`PD4mXj2^5Q?`bqI1h09f(vg}q^w2+v
zX>^2j&{t@Qzj`03uppR^DLpUg!J4D%Fm%YwNmO*GIy4r~{uv%OULYkUF?D!4Vs$M2
zShYB3o6%u(8L35aI^uPt*O5U-f{wI0M(~P6IZ*eeV>8;?V()7qk$IAiWE~lqlg;P%
z<1;ajL^bUiYOlv@<osE5e4wKoEvh=Q>iAGcQ60soo;tGY$fqN}jvQ3<aW$8Y+&Xeb
zbD(l5=R7*{Mm0%VOo|5<h-wNk`AA1W9pCUbh{dn8!aB@s!Q;e5IF`1TBwk!cX%<T`
zmSilY2QNXpA)gG&u%;|yO1D>FUQ<Uc9Tjy{VzDw~HO4B8RT)2Kq=eO(P=+<ghld11
zK%usdhB_MQsH3B<j(Sm>`uhK$=?!$O{V|!08*^+k9nG0E(a|(&U+zSZVG9;pGN#Pj
zRytb$kJwH}dmX#zSVj+)>*%QCCmkzvbkfmT$9UFv(a}}M7di&%=%%APEBor`p`)jc
z&sh9KM=v@uifV5ipE5~7(ooJ6NbJLwpEHt%qWbCRuVX+|Gf)S`k|l+dRD*R4(=nXI
zA&f&A$?QvVJRM)@_?k5%xzJJnlLKWkTE`e2V|9$<JX10!q@q(wAwGfpLB~WLlXT40
zF;B;29aD77(D9v)Z>fQ~)oF}GrZS;N5T`S_eMTcbQ^zbFv#D2gq!^UB6(T~hDTHk1
z>sX-EW@Y$6$3h*8bS&2K{r}jLWyxD1LMnyuN1BE@mQ$^At10DD>@pT9TgsgDD|M`*
zwj07$YTyuUwT|6)gaft3HRK*T*6AqKUEQE#qmK2=NsJjT5N^`3nKdc;EzB>qQ7LL0
zEdu>j3fr0NVBD$WXC{S1K1J=;@r#Z<RCH-=zm5Yser3Lw@i)eOjK4FI8M)#?9fzo^
z2dRJPIL!K0(3ZXtjxg`{bL6NFLNcbIFL6TnQ^yG%?{vJ^;qOsT>bR@po{m#GPSg6Y
z<E##6hkA?Vj*jy>uIRX`;{q$sElW*N6fWwxq~kIzDPP8rNSG4!7n}W~<8LO{bmXZi
zQlQxDthu4%Cgsfeq@=ygddlPu6H?OallOJJpb14URJIl$FnP%MNXKIxPjozG@j2r&
zMzU-f^2_qOmM^24f0?|}@mj|l=Cm33TPD@nGGw6W2O-0NX&}ZxDg&vFU>`q)F%3Ne
zY5>edMtZG_V%t~yZwEh#McD{;)g!&iA`#7i&b)A2jYJBTfwTtF8L(OJL@iwdo`F~v
z;|wG)iD&#e<fo)<TP-HNfeZ$6MpGpk$izHjRFh;NIm)Rr5d*$~%m%WsGMj-9qOn;G
zbUqkP$@xQ8E)MzGnS9k!%wd3#Vso)3H)9^gyo~322Q4jN;3ET}c*Mk`pn*aLCOVkp
zps;}=23lBXX`!frVg_oMsA;0Off5FG8~DXQNrV3N!$1RH7$|L^jDeO0S{W#7pqzpF
z1{xSBZ=iyKY6hwssA!;)fvN^pIC^CRRg7Q}yBG3*4*91z5HVx?k6E8R#;;+Zra^m+
z`t<TcEd$>zQ|lP0YtWx8LBixdlKw=ducg;Bu&ICW)l}ki3~Fegk%6WLni)7yM`&zd
zP|xHhRH&p^+9f3A*4o7Q&8cbBir7p``o`bMsKzb~7UAJBerp454D>M2lZr6V&OiqP
z9my*U(0&(3D@C$YiJUs0JUzA1iJJ3J>ujJ46|^mRag1+dlDiuCrc-=(1KkXec$k$}
zMurM6kNLzvF9UrI^fU0Of!+pf59sGh<)4f3dvr-P=WF>h1APp9ZUlQ=(>rKyV|*e>
zRmA=Vz2dF!{9UEj*#=OTB6#I(kb%Jl<{MaGV2FXC1|}PrVqlno;Re1oFxtSEG@2K*
zQRD^&G7eNnP}<WN$yhIy-!ql(wTyqhBboM_8e?EAxkLly8w2xF`P3ET42(B0f%}=3
zrmd_boJfsrtN)YApG2*A5qxm=TLV)K%%IUR@VJKXK9xVsz;pvgzKx@NDBPQ`($1eV
z4a_z$$G|M^8S0$k<I|)~?a!qSPwii*9x0aEpU1@!S!iI9fmH@p8(3`Md+K}|J_Adr
zb*cS+O*1Z|*<C&IgMl9nET!4>FnM8WKh3~+BFhb2?<CqULgtIm?Zw(k11Ix@r|;GV
zmy4~xBYBO1wFWjD*ka)9@yI%Ir=rRx1M3ZJFtCwIOr`Hg9rVC}g9*eZ6xOoU3?4_{
zYM_5^aXV#xN!>;swJ+h!F>Qx|od$k3Xxkirmq8oR_=9#vh$p4-iSIG+tAR8o!Y1|_
z_|3pg1Gfz9Gw{2C(+18M*iSBM;HZH=3>-9|O_B~77}qH_c<CmM?=G_sQ%`aToe7qG
z8pmTa<MOMg3>-J`r-2jXtJSoVMz9}voisjiLgMrd)}Dvdvj)yl^$h%F;5^T}3kEK7
zKhro~GH}_TjX`|!x6Wz&D+aosPIa|i@G2sSgnv`fY5aev|I_%_I8~wXX<FvcualRu
z_>|3V8@OZOg@Km_?i#pf;1M|kP4E*5_YM5}q5jao0}lD;NpWF+O<blXTaus9%*rA@
zr^NwU-mw4Fz%z37lPZOw8MIeV)T&|sUjwfUyraG~@Y=u|a=(!Gmgn{Mp+ScnDxh~y
zP<w~{kclJzNaS@fCQ9~5rdK%*UrI=2f-toi+&L#gukQ*b@|ehLLNp<nNM|Cw3E6~V
z!ZqQU7#H?cGuV60FtMV9u9>({LDd=awHHhimPs#_`!*F9_8sOl3y24!Q%#ID5pN>F
z#P504I1|+bft)|B8BBzikF-BjZ|lHdsmWj>(L`1gADYN$BFV(#t!fq%$!wX)M1;xV
z{+iDuGvhTbg?5sl9O}$aKVap_0vbKem(4^D6FE&}H*xF3;JuFo_`ULpAHiSpg_O$#
zVQv$1o5wf%O3G&<zlky?%9<!(;v*A9OcXUy&_p2<y?Z4VHqjhDJ+Ve_I<M)f&}n~9
z_#OJEE=KFWi4rE_7RFD5fBFM`D)f>jN|`8a2J?=>m9^T^Z7Pv+Cd!-mm^y)Kl_VZ&
ztyeHn(L^N^nf}qLn5b%E4gAWCRN<?Ov?WzymU5_W!oP)oJBp3wNJFydhvC;UQQO32
z6IV>sF;UmVG!xTJ)H6}v#3v?tnP_05A@zxgb|xB`Xl$Z|iIygsm}qLE88ynp&y|DD
zxp+vu3;(;^;-qGgDlf#y4zHC-H$T<ZCfb-dT~C@iPjlw08|Q}}Hjhsf{Prd~nCNDr
zyNQk_I+^HdVtfrbM=o`v>UB2hT{gdqiBAQe0_ESlvNlfedzk1+_F-*kKK0ytcT;1v
z&NPX(?E92D*~Cy2!%Tc;qK}C|CI*}M+{E94*w;iq6OZb~ysM<=4T=3t{3`eZ$!SC4
z0LHn3|3L7+VDBPg4A3Uml!us5Ym0*DuPYiFZsJR-o{0%2Mwl4Melo_y{1VBdOnhx(
zw27}cP*oE}pTu&aPl3d-)Lo)KjwXUhuNwrKZ_MB@I@!b&6BDU2=|huD%o2SH)w)X?
zSIJvN|67_zed4E5&o>Ow87!rmL6gqJHWS-T%p`jg%T4@bVz!AnCKj9cp1hH!r|2&*
zvCzakngXIfpQ{=#1?3jqpS*Rcx`;L9Srd2&4XEV*Kn)xb+{5{6Q{s;%mYP^bJt_IW
zHxvjd?FthsO?vJTn|Q=mnOI8=FR8CK>B(51!Wt&4b8G8pzVs2+o7lhwt(N?glK)Eb
z>BAhGO>8xB|Gc`z#Kj>}MmflN$v-$(Hq8zbJ53y-`cwWUcA3~mQ{KdG6Tg`Fjpo#O
z_hZ@bDf@e<$EfRMfA9Yw<wLu6Kdh*)lKlY(HTs&yeiLsms0X+X2bq)25fevEoHcRI
z#2+S(nINA$Y2rAIi0nU>{Xfa&I%=O>NIqeL0%<7KDRN*FXE>0kDLw@v=V=k6DU(IK
zM7cGMrx!vmn!)0~t6eZ&tM>?HYoxwv;xAeiEu^>bw~1>sDNH;!@ej>z>IxGNOx!SW
z)5IMUcgeMmCfqV{n`ZjcNUG=3<E>u7#acGSzekJPUUlr6<kLIUii)3lj`WaR+QbtR
zPiZD9KAqU4sTFxlou4alL6&5i9eos^F5GBSwHGE{(t>P3weYWrS0++fNNwRYt=NAH
zukt0lH}QtL$izGDE~@+p#ou>TrMomC3$qkI#sY<dickEt;-|47T97P+Ex^K+<gj1`
z3vwaVPf&xNsigWc6;V4fX@lKV^#`iHW<j?QXCdB#VZpTETESm<vsK@+aJq@+SeRN}
zw>cjoA1zi%xkdFo3+GiomXS8$NwDyT7N6F_>Z`$vuIYMdF`8fUUu3Y5XrZiyauzaL
zNV1T}LS75W7BX4*&_Xr~5evRW|D38>EM&HV<ejqXndyL_`SfX?4=iLDsa+eFCaVQH
z*5^t}%x>XwGc^aDv1@+&?(tp|HK&DK7TSL%bd3vra7)N-fsopp&q96+1uYb!a(|1A
z()<DzKC<XmaL^lPR%@vX>V+*7u~6JX2|E9`uut=wT}!6eV$4Y-z964k(n2W<r7gUy
zE0I`+JA|U1YyMwsQ{F-a3$-oOu~5-MB@0z8d~Bhzg<+Eu>4c|>g`-KHtou21pH7~u
zQO82BZlQ*SV!mGepjwl9ex^3BQ#>7%tLlEOlp=J$u7!FQ8e3>$p}vI$!y*kW<m<0C
zu#h!d;L?PRtl+Gm{-?pa{BLIpO)a`h<6AW%%`EgPu0Qqk<`xJiO_N$#Xl<dhjV?CY
zP!SexS-5SX9d)3EB^G|L(7{4S3tw9pZJ`qxTNq$rpoK0Lx?1?uLT?M*EOfW<3AJKS
z44tF)u&`)V++yADX<_!j1PWtxzZdmGDRG+~^x<dZPP*U6!spc9{=w+<wb0L^Yk9xF
zh3|XDP<XW_bkr8Jv`tO1UsxDqVWfpo76w}wLfvR#xP_tArP=hBx3se}R3c>gtgyN}
zHt|afBPh2)F{OUiD0DfTiq6tcUW)t53QlO>>HfwC!Wimd3zIBNwlL1ZcncFOd_zq*
zq|&))$$RRYFVj3ywPhvsi8PJ}A~iypG8q083*TCpV__~?T9{^GriEo?^yxf6MGSw2
zg>(E3sqdm*K}tG2&7!X0(0*4iO!F+vr(U8NH!ea0y?};tgmyHyKIKgELgHDHi7d8)
zvy1N;iOk&_`O(5s@*J99RH%jJ7Is+JY2haeD=ciVu+hRwnnyMDHRRY9?sbS?MbnTb
zloFyp@rU|)XT#qzKwC%MX!z&r3hTL&L};3Cvar>{HVd`RCTzB_#X|0`feR7R*~oTs
zfGje(?)_dd6n?g_%fjy#_FLF(;TH?PTG(r04`(=|X?*XbxOqk})+sY_jp6@hfp8z=
zUc)~?ixoMlMd!EvZNuN(Mmc2RFF`+SfkNHH;6yjh^hef;9J6qoRxk@!E&OTWgoRV&
zKUQ#7Q>vM^>1yO8H9xKR?u<ISsdmP~1q&A~oTY)V=={(>|3651)-nB^IrV;~e~Dbq
z^e=OTiTp*2zlDFOw`mq=-u~|DHR{Yp+LC6<eAB;SVZG_!w1R^Xof!OK22G<i{|>ns
z<!>XWje8dE(}3DAY&@{=kXBb4X>2^Ab&OVZ3$JLr8pS`M$y+`0oW?P;{?x)VS{W_~
zZ}q@?Us(9Aj_{J)vV{J6pGIg!wAU8iTL{^7F!JA6cx&Mutx<Ia*`fv9CqhYLY^1V-
z<z1|jk<h84-at5P2ix~ZHe?%u4Z51HZ26*%X8H6)%cnuy)K_TIA+f9FD>hV4KGO2b
zJWZ?F$aOt61=EIQBhf}i8@3I{M!by#8?Ft{My!pMg|)cm8a)Fu$MRQOejHhjQR6lR
z8;7Rl4A&;hvkQv%EI*x%^fofsQ0$=VGTVMB+fTBQY$J<}4{T(z5wWqkv$)9i8{59q
zNE>SVzKz>O^vsMmuFF|%d`Lwnc`tj%X0u_|QP21yosehevhp+)ezW~tHgemjWuvx@
zJT~&$C~2dVjeIup+bCkAsEq<PKC*FogfecicHQ<1+US-?Eku?LV{YFH5iiUds^?SN
zrz1`=8^x*Bj$gtK9)_Xkh$t$L<CnHk#ztiuRj89UsAVaYu2!;9&PI6~txLyNuu+lg
z*7=k-w3Ie|B7clk_NH8p(CwY7HmcjGVWXbof6Q2okuo3Y_;mSJlhfwPEjC{rsbizA
zjpjC5kd2M{Hk#OIYNLUThBg|rWh2J#9G_lR%IgKAPz2ig`U;)uH?vVKqr#WN{z1oY
zX`_{m4mLVcJ!$c$!EL3sw{h0-8&r#I*{`*wK6m_fjBg#Ep53BNygU7*cCv%zg%)|r
zyu_fGuGC~3Z*9D@(cMN58bKRdZ1lA8iH+$tX4vRu<5L@>ZH%$e+s0=$hS(TtqmPZx
zZ49t6kcQIr``YN6SL|nF-`F(EUZmPHHn~4(;^T;njM!h;7-R=Gnv&eWe+JX|E>J0C
zb^T#BhTHg>I-!;NrHv6brWTXFvN6)eDDDs<lth(P3Pc8$3O(E!D(m{QPKsk~jI%Mt
z#<w=c+n8VnH{2#uL7Zd~W$XGAnYZ9_Dft4|&;D)Vd0(alfv$!wy8cuf)7WOw(9r1>
z(swpy+E`-a2OG0&%(k)E#`iSEJbw<GEwnM$#yqO9ug|AB<@pO(Pa^SLp1+7jHls>6
z?dimCX<qGq&E)c)zbumKM;l9Rtg^A%4o)PNQRQ=~D{TC6B6&II@RN-Ve&XUE<5p60
zo@p&5F?7LOV`DApDb-c1W3%;)GwLhf4U4&2DW;?6Z?th_o<`5PZL)(8UJ&1EW1Efh
zHZIuMZexdy12zuQGGgOr8+&d1W@DF)-8TFZ;;%M-u`$^5_fXS3fBe`qbblbekxqMS
zP>%`a^nEnPn+Z+!B!?O&{!U4{#_cCfnP4~w57{_u;}lIvss>en3f-H0g4$&VHzl@E
zpJdUGF(>gjlRp`ACWI!?-VszcFYt={xwT@`wKFt`54E%0#;2Zt&Ze^+-;DJy+PFk3
zvyF!~F59?b<A#l!Hm=(E%f{a}uGy&YOK{ww`xpb#>;KrGEAi~H{?|<eBG*|gn@zh#
zlY;Dj(C%{)cWf;09e<ZOT|3h?)IF-e#NbX~<ygPsiwuu!Jht)5#%mi-s4`S@&gvP>
zlmcQ~=r3$M=g>AbXa#9rQf>&22yMrx`)UZIWBpEjq&GBK4r+9=p<a%>w-Its)xpOO
zVjQG$@S%fj4pKWv;~?Haf`hO_y9L2?U^$?T+e8Pl1I57tE=6+CbZ=yRtbc&SKAP%)
zE~s?}nu9B`J_Rb>U?u5a#`?Ac$H9f=Dqa4#4m`@Os5a*-p~QN1M(5PA4&oe~f0T|=
z6>KdLN$Vh;1K&Yr2k9MTaFFOAqXW8DqIr7erVxqqlN=;Fh&V7R293=`u`L6apzvr@
zu!(o6I6r?aF^hw&PN1Z}w?3d7^|{skABH<uiJ{|fb_Y2elyXqoK~4v`92BD4_zrSA
zv_1!?6CXLq>mZ*)SI}a92lR*X*&Hz`*!sR(zyaZx_2TK(*MbfzeV&F&DdGelEGX)r
zn1d;$Rk}@G+(8NI%p5w+(8h6oNe6^vNr6Zi2W2U(gUSxdIcQNu9~|dbbTA|?Q+dV;
zjAT5uw>lv)RTXXvUH{UJyV6h8ySeph4yrro>!6>58V+hYXy>54gIW%1J7`XMI;i8I
zu7idS8aeo?f?Cf(_Wtn=nAc~V9_Q1U=f*gn{w6yc=QnoH#KEsiB2B6C@qRPr4=6T1
zsCi2Vt*Grza6a6vS@2DV#_|5P&(&F{653GpoZzo#Qr2%Lba2qoL3al|9CUKf*+Dl4
zk1i$j-kdy43r4Mr6WmPb%DAGdkV}+5iT8WbFva_yI_OP(cqaK12fet}^yNxQvL@dD
z%t0U4NJo-a=L>)C;6aDv1Mxm#e+L5`jG{(480g>&2SXhUb1;bQx82c(kRQhTgUKO#
z3K@%puf_YJ1b?`LFCC0<=+FtbhuUXc^0s!dbUP&}A!zU8K`~Vm{I4C1b}){{mu7+C
z(Md0@_G283rKTnLbf0QVTWNv=I%0l9Eo~bt1#*ux=ZoqC6a2~45C<nb+HV}+I+*HU
zk&DGHra72S?(HJc#S91EIXL6cVH7hR%yO{J!FC6;9n5jC%E4*}a~;fcu-L)(4(8Kn
z&XE?9f96ydkSF`%rH;a$3Oe1;UgQL~xTyk5xYf%XEO+pOgC89%C1*(Er`!Xlo8Dyh
z6V+jU;tB`Xvx)C21;_m(->NH}0Ew@0u-3sw2b-wvonqHf108IjCa3YX)Q_K$;7`4v
z4O9Xj7*asr?BLXm@GDc^!sTYnsBNWbn=z=#4hK6O{O(}CgP$Gja`20TJ#03<K$z|s
z?shP(ui1EM(w30^=_TP;YI}me*THWNQogH8*Ae?@E@aW$Hq{O|IOyOH2ge+|J!l-F
z1>~}D)WKn@HZ4I3ehNNG@biobwq8H(;7=;IvUr+C!NEzYC-p{7b#Xg2-SZFys$qs%
z$@?SWrJ{(m{yAEX9Q^Cx6?uz;i{zgUozmcvgUb&7c5sarz%23=2UlsKaFCSNFOW8H
z6<W0Gr}Y!23IC7}m(W9fwCm)GY5gT>{Tnp0#S?GR#OW-xuN9oj-EnZ&!D9zc9NcrT
zH?9AWN=fVACx52t+%)5~Txkf&(n#k&qWT=gfT}T1X)#Razi{x9d+(Wp=d_G>N|X3J
z$aCeF0$slsOy^JND!z8`hL%T{PLS}{!8=;XU5GB~rSsp@YVV?Ul}N}%jEk=6g370I
zF+80=Go5etk55DXSyK(WfE%n-vqmIPAR@VtUEFFPuergMW}1qk-$qwl5UMUp)Cfe~
z4L-B-JLhS+uwBHth<DL(U$W!Eb>X?l+FhueBj#c{|JP3OAAO%3>tY>ZKKLt~xv7}o
zVspd9bS~18af|rUe33Q%)A;mUlblD?j4qN~w0F_LMY4-bF3P$n=ORMYa8bxbVHcTQ
zWN}fz#YZkapyFKQbdk%&`*i+?E^@e-oK?@}BD;$W>HWg#{krLWBJ(rqv@u})Iznz2
zd0gZrvreh#X{&r(G&MgzlO3x9m%ejeE9heG7U9jQpl2xbNbeVMQPf2#7o}Ykb5Yzy
zNf$$!#Z!+Js49M$-Y-Eza7wK-Ds_{C$#m!8cu~<!3jP!*<AN5DCF%Y0E-JXFMWf@Q
zqKir{s<^1?qOyzM25WSUup_-s7yI<z+{Z4exv1&la(aJ%XN^w08#aos?&AA4LJdY*
zg>sM6o~HNfxTx!*nTzH$`Y!6bXyT%&iv}(lx==ItbQxHFq1wnrV-D1o_a_4lA^p`w
z_mt>8&5RlR7A{(H543S{wX{|ygWrns%;2|nF?z62SWpQsk5b!Gl}4%U7%8icE;_k%
zGK|qKI=krNVvvi$<aI8(x%kvYZx`KNq`4LD=>~gB^l(AP=#-7QK5_AR2A}>K=;eZN
zKxzFm7j%WvpU_1gighs|gWuOhKdu;YTA6oU3NA6I+5>46e0@qM;fv@9eppT$;$o<a
z5iUl$c(z#^Mh@9c8cq%Ob-Ks<r3?BWkdpuOI#pa|xpW<26ghk!;VTzQGx#;81hZ_6
zi?Os~yZDZ3<zhVfiHj*z6Bpl*`|;vG(G4D@drN)msC4X}<l=Y+|3(J?TXKmV!c;1y
zQSb#c`$4jo=udMoovM-OQ=t53x|l`D$-7*{?oWOodi4M1Y;xBx)WQd}c~s&vZ6S$C
z;(Ql+*Z2jD2i9uD>9nWC!1(W7EOAlLLm>}8xcJe<6BkdZ2`-ko_|wG+7t3Az<l<)+
zyIibrvC_pRntCo)xmfLDElo)`_<LoIi!zD+=Z^%s@S(c3Nc20M)7Eo;Zg8>D#Xk)N
z`j{F;U7V4y#l=<^J7^kKjcj9^*@^ykT3EPU^fWbzw2tj`|69#=yZFV$5f?{Y>~Zlc
zIRK5mi@oISF1985^y%1r)TNnH|4~jKvq3HTRvElPJ3#BwQ5<q{n8`uL$q$s1iNR?M
zE%<4k2le@bR;0Z8aq_)l;xSsdG6sE{mGPvDQ!cJi<z1Y1amK|37Z+Web#cxOt_9A!
zc$rl!lSi!2_H@4b!yNSzP2MxO>f$eM+GQ74I1FW*zg<kq=pW1IZ^)InDWl)v1O2*-
z8{|ALZqvkBsO|Vnt2b7=Nlo6YEzYanadDTDY_RV(6tkX9xaZ=5i-(-^ea6&De!3+8
zk&DMJ2#HhuDG+();yEp<9uhpfpsG?2co01N>*5uy_AcI0+t;hFIiEL-HC0a<sU4b}
z_})dx3vTG8_Ru)i>-9Lf%(dhg52-v5p+H5X@o+o89`=IbB3!QMLGoaFusp~f6c4&b
zFWTTeAKwctPF6i=9x5c!0xJ=&X%X8iBG&Dvwn_4B4~~ae4{>z<b5R(U<hvg3eId+E
z@;wi`l6)d`um0DA!e2>#s$@T{hjbotdC2V{y@w1QKJbv$L!yU_T%{}?k~}1Ppd)x@
z51BkfJosMl*E5BawS(zjDA}h#BJud=p$5r*?_~c&57|7>V=Xy7WcNU;!RTb4E(3FL
zw)EE?8IRf@`5}@%kB7V-@_Q)Y1<z^Fjf;F<aK@Y3*615Cw4F6g%#S?W&92eM&Fk-p
z6!uWW!&e@@_E6MAF%NAhPY=aCl<-j3Lp={AJ(TiL#Y0sOr9F(fER^+7&I2t_WjuUW
zJ-KWdV@a}K-ovlSekJNm4;4L-hH6ED$jxNGvIjyEKlV_~Lv4><)%R0n@~eBO=><0i
zsj4-onKktcnfzKFem<{KpnH9VGWm6ALC6%Ot?!`$jlPE_9!B+u|9zF(&_g2+)j5_7
zT4wT_dT8dMCG~mj$goU)${)eaY0#^REj$c=tP*MEVL(%%wTH_8Cby`fPR-=E^U&VI
zCmwov=-{EFhpryFdFatz=;WcZ7n~t)&E(JdI6~`l7Y~QI#O`E34jc(q?{~gVbEhYb
zW+s1g``9z>V?XuK+rt+g26_0*Lmv+Vz2Fjw{*0SaNc-GFUl08}(8|!C>O=kiR++v+
z%NX&CMuNr?sS)vqNBqH*%EJgR_>YpVHHK0vJhWI6nH}+mu>%nKl4=<7DNw?ZUhov(
z9}$0)2SU<}rcv|olZO=^#(Ee>qvm0zhw&aJc$iE>>ERm>6Fp3#I@gT+I4k4BNN`)s
z8Xg%jO#7~_^xNSK-+GwpVVZ}B4V<Z01p3pKJ}yjW*V8G(PO&q%CPZd=nC)SqheaOF
zH;SL*(d`k;^Pu{EQQvRj2S*mVFE`)A0uRGB2HWNnF81)fhov59<J=`4M%NJg`~D9e
z&J_@e&-MKuDIY&*OQBkkWgeDuam2rg(^rx&dD!7$r-#)Z)_B<9VI!gMul2Bwdd9;s
z-+$=)bnZw0##Zekw9cn(^03*%HqK{@hpis$%t8M2@g}-|i&~-Nd@<WS(EdL~S^qOl
zc@MvP*zaLCr~1Xi9-2EXMf#iISMtNm{%_Qco#OX0Cy{a^ai51SnS=kl4tO|7H6e!)
z{fxu3LmrNJ2u(2#lRHsYu>DaQGFE1oVo;#iUAe^L9{!}BX9L1h9!`6B7K`VxIOE|g
zIbke%#^M}xIITIc$Qp|a9xi$iV<E-jl84J4-4Vhw4_7=~rA5-i9S?tb_}jxj9<F=1
zM&hQ#N~QE6^%8edL1Ezr`B*pMmKXdZK;$OXA+t~9L1v#ccWEW0X`5SLjkx<B9(Z`f
zee%#ld=@`P7GGPh5uqM<?BNMVef3_YK$_>Y_<MNc;Vn7d8tv{=?Ij%oJiMa$n8klh
zH7u>QKcUi@?bx}g=ZsHyN6R%Y?DRK8C>AlXNE7@2m^u$ADT?mx?=I}KvoN#d4wGlP
zCy;Z_IY`bqNzO^KWDo%f5(H5M6hT2y5R?oO6p#!80+O==Dv0Fo>AUv-d(Wx!oZr25
ztGc?ns%ECA1CkXaDd<<t`aPaOLEr06a=O_%YVxfBDT?(0N@f6IZq&@A@Kw&x6}S~R
z6}S}SQlKbEQ;<bLPQ_ZRcp4<Dg30YOXIJoD)XXN%N^L!7qGk?ZLWW%_Pok!(fCEWW
z(5a6r9J4M<E7>9O?|Uwf0<VIw0z-jMfnQ2-6$&WW(MKEFEiI%VD5*@$JpHb5h;N_Y
z3R6KuL6paCpEWxg#7v&*d3H)qKPi-3K^_H76*N<jS3y1nWfYWEkY7Oo1tk=eR8UYs
zAq9mM6d_D=@+<VPovyM<rhDJI_-=Y`qNsvm3W`g6hQ&-KI!h^VG;!`f9xAO^Ul+@7
za?OsJ?bfE2Q&65esNf9+6%<rdP*dUWL{w5xS!$@RSZiPv1yvP3!4+$ywymP9mgd2j
zSwkWTwG}k}#`^W~SIoQ`Gx_;dS3x}m{4b_KA%A@Z4HO)D5NfPoqmiqjlxieOlcnx$
zHTa)b6CRN()<<M>1ufX^3OXxjsqo7H+A3(r+7z^52gc1dakJxaji<!3#?5DYQZm<0
z;J<k76?9O*A1@sh42@g+&VNr9ZZ+QIc<7q3i-N8SdNnq90<D{Z?h5*FP$}r4fWJ`k
zolfbkpeF;QRkPzJ6KkM9`^3Z(JDgkMX0|G6xrS#RpkSba^$Ip97^GmZf;kG_S1?4u
zTM8yBn8d9s7^Yyfg0~e6SCDYdRWU=Z5j<+ctZ(V=O`(x&(x%WT#k!l1kT+AVF$%^i
z7{_D%nd?~GOv-Kga+~87{N3KkG(mu6Co7nuV48yI3f|%PSHSB)-epVHrZmcJ4#;h_
zIm3EwYHo9Pp0qMq(`G1mPvLX^oijP7y60N-&^b%NY|f6uR!f*x<~HXln5ST=!jq_&
zuV4Y=6@08<cW(0o1&b7Xs9+(-RToFQE{+@R6EEjBGv+b*U;ko`&pg%^-`=k;;rQ&}
z`h+7Yk2!OHsO|GmmNe&b1)nPTQo(A)`bG1Zf>YI#d3ovz1)obluT-!~!52I<dCVS-
zQ%2>n{*+;bgf$AjVpn%_@TpvDC3w)Q)Nd55Q}DHd=Yd?$3#2jeQdnLt(rZTQw;Wmu
zPAm9D!6ptQ1wSb`px}ERUj;iA>{75r!Bz#^IZqYbZsltCZsu*AP`|nKqzu%#RYP;~
znEWo<uNMDs#}5kjDcCQY-otk0F$eT;?&aYgXpM6!f1K{hWB$l-e#p6?bH>Y!6Ap5a
zD>$OyC`aiZuAdb=%wrzrnCzU$G_`Aner3{*NrlH1oKT?UHLK+{+thQM<PeId_0Mbm
zH92%j0hOCL!^L004Fxw@0~db<R}@_35y{~^uizq=eSQik;GdODKNd*5#C;j*;@6&z
z!%{xXlXjU0E>9Z2UtN<e@?6$+1>^IYGxM6=?}fJHHE*#K6#Sv!K34_>ce&lX=AZkW
zJRhE?f6_g!nKjaQt>f>Cb;aX}yyn6qDG#_u3jX8*n9rPjH)UT}*Ix>n<TL-~Vv^4q
z36B(v5THI`K~4%4LsdLg@QiDkin1!6D|o?WS%s?NrGi&nv{g7&yyi?%kwHa974G`3
zL>2QkWlvJAQTom36kc@4A(X6Q-4Cuz)O;r23X`J3Aptz+pQ_?L*)&i7)7+EK<oQFF
ziZm73RAg6?MMcT&);gJ0<v)n7B^Q#%n~t<i{&V?Ep0(y*06A3TWNq>{K`yEGX+Bd^
zp{t0i$jw%%@Tdr=2&(X^)|oV)gz5RsbDcB$RTS=%#KcX6RPd5ZQ$<8YSjE1sPD7Ny
zPvO0_(xNJ#Nt+f^@vGBnQo;NtuM5hfBCm=9EUO})iu~-2dInGD_HL5e;IOk{ev@l{
zA#O!Q3GRyuUcp;L#T%v5imCYE$52sG)>d4#(s+4nc(?p!DHYY?+PM5?X=yD3=q#tA
zyoxp|+N!9a@?QxwP|;9DB^8xb)KXDfMHLlQRqImf>MBo5THk4_skpJx8k|iUr>@!^
zs-dDLvv!A==nM==<T>^_Y?6w)vaRL!jobOndMfIx_#wY}I=?kYsEt%KR?$>NGZn*I
zWaic8qi=?qsMcFq%T`ZouA+qs{xjQJ1-4{w$&JoP88$uCiU+8G$+Z8gtoaI<{6XDL
zMSB(9RCH%=sOYHj#n5<D1^<%chL}33*m7R0Tfpq1qEi8reLnV7sH<w71KG8}`Bnk5
zhl-vm`l{%sqL+-2-YWX2);~eDnmGoJ(iU+;ybN-b)?c;Wp)f$j<nsPi?NU}2FbAp_
zq+&1&uFd{OZO0Ifiu3x*cpCX`e`6STO~nosJ5`KOF;c|>9v~H?RE$<JRmHn1-c~V2
z#U$3L@`r<UvFJD+I2ETyS$`G1`pH=;pL2qWP5E6DIo=%BcOmK&9-yfP|J{CvJHks8
za%ow6IJXrrr>U6ES)gL3iWw??FJSUQ<?-cR{2iCSt;R2MvsApVVlKB{)-jtE3Xn_e
z4rME7#tNGARLobg;<Nug9cV68u}H<2DpsrbP{m^As`y;RN8GfEPgE@BKq_c;(GnHB
z52A5FvwOwFWh$@t%d}j@y)`aEv)Kuss`!juUC^9b(A@SoWx;_I{?uB@f!EgY1&5G|
zWe=>CpMR{ZENF7>tYL4f*vNfXv6gLk=(=8z7o6j#g62AoN%r~dj7z=NGg8*8*uWjB
z<NDTC)<cuS^*a^Si#opNXbfcLmCu_w7`XlvG`FhQreeElU5rOFb0Mq!OoUx3cB{Cm
z;u=S+iajcht2m)zFXu0}uHt}-{ag(SnLqN#@^un@HQpGWudTDevz!NI%pX$mvuYi?
zLoZSq6fzI1II3boA+uK@^N0ix#ym(l#zX(W>gSUxPH`Pjah|hptn;*rGb$2WrW~B(
z{Du8o$RwOqaZUx#HSz2di)<@ocJCj$pyHy6-#A(Vu00D}Ghb)CQpmid;xZ$9SgXnv
z6*LJnuX7S{fN_^q+*EN(#T^xQRov#tFOzoSd`ik4>%Ll^eqra|Q?0MQzpF?pZ1v0^
zD(>@0)k}Mz;-QL`g-vo9$s+%);*p9cD*k2vtaI`vmn_X4kGXe+&3`!HC2UP$^C^b}
zJD=T{V!boy1!u$|*NwvFD}D+H)BH(-UrU?Ey^}dfLk11)b#%~?QA4tZdm4V%_#zpk
zXc(zslm>@}R1LK?)X|VhLuL(z22%rP_qt9Frv{gXG!0oaY#!|NX~?Q!#X5g34GJq<
zre)KRT|*AxoEpA%xl+qyr2o60Qzxx)sv5rh+~wAwX`rc#5)LoV;gKw_C}Vh%mi7BJ
z1Y|=&(U69)hNL1Uv-kiRYD5FiKK-!7Sx7@vLrg<lLv9V9PIlJ#!<9!vUJV7fcX^yl
z`PleEiG=*NCsPr#pm4gsu!bTUifSmPp@N2r+zY3xxQ3D%N(q<H;K`RrCsSz+WyMJ@
zqapuqe1?*%oW?&=tx`r2lUh%-l7?#HtZc_u(NI;`Th^+ry6vx_p{8&x+fzMvVymYK
zZ)p7Q6|FT)sh6p)hI$(6Yj`)Wqg2%l4Ky^=&`3jLjdzx%wGeGW6=*6-|KK8K{#D7%
z*+t#`G+Ww!IyrdSXy~e;n})U;+Hun-o$WQu@9pd)+(AP}0s2puPvo<hI&0Pwncmc}
zr*T3T4x5OBCQoj3*U(2pUkyDp@DBy+_8Ea*qP;bI^1J2ir=h=w7lU0xG%TrM4A3x0
zV4!IBmC1B64Q9Vh%t+wxthY1_)p)57hHKW(E~XJ0?%#1bb?c!DbM;)KHN351aN|sC
zG>p+Omi?n)nr7WfGp|b;--0ks!*~r7G)$ykcJU90cR2hsEUo37EFL<iXx7Edj<c95
zK&F#dbMb34ozpeU(D0synHpxX2Q=%yv)LN|#l}Y(KGyKQhPfIRX!t<GJPki>a52r7
z0hZ2to;Vk3Sft@Y4U0MZK5*V@?_eS@eJ<&zrYTD}^}cW|)v$~`rdbOPof*5P()pyn
zliIeP^HXk}Q%}R^8dhoeLc&&Zz`wT6-m|J}-K{oLzhviY7SLHUv$dFfrD3gxb)23W
z4rn;2@!xi==h4)#SHlJk-)h*ZVVj1H8a8o9TBj}C=S<$`{Eow5pL4V5_oCA|!uL71
zumeY@)Zgd)Xj^Ezh8-GqYG9Gi9f`XHevshZqAQA+%v$0|WWkT#a&d{fS>Lr!!+w@3
zV*V)llPDkUPR}6?KWn(niQLxuL_4hEtcG(Mj%YZlVf$_4n1&M?PD&3P7p3!*hSM5;
z(QrmQJ0|;i!#?i>`K5@p0{5Plx#iT%ziK$I;f4fU&~Q=16%AK4{HEcOI4^7XzKg>(
zH8YF6EMoGd^J-D^nq*xUy|*x>P*JPG9`3Z8;_0<A!!6EYarO+l?r5Oi6@7bG${!rG
z91l7iIv!|v$hB9;%w~>XCOZGr@KnPy4S%uO6P<sH5*~5yx@CN<;U5i8#7UF>e}%gg
zHJ`K1jS>=c>%~&M)9MA+%({-3qOU|>Yv}Yv209ZZCP|dR83Z!wNVYwbi<(yoI(WfY
zs*bj`98n!H9hr1w*5TCQ(xK>3b)@O&cgdMUM@}7CglT5gk<I4p0u`UA^sgyuUMgzl
z;!S47OnNjOx(=TXzYez!j}EV0s&p~)k;`>5sB|f2vS2{RtYT(Ra=%`ax}%sG(h=5C
zx}nR^5fQ)nKO0J0?PRIAj@&w`=%}hAkB+=L3hF4Nqs{_nJ{_lzxT>vozE{_kUq{bJ
z2?ccQuH*P7TS{RaMOd?rGCIC`m9waBT~>Xem`N_CqqvR|;xDPAl)$9EDa_(Ut<<tQ
zw!Z1ewb{uVe9Gx4ucLx^=&YopqRlfV`st}GW}*C!YC5XxsHdYoH{IM-Lr1GV&bm5k
z>ZqloHXE#CV2>P6R~S5ly)|zV^$ne`+Oc@at(4mcH_*|LN90yYD;<3BP9xD~IvNYm
z(?p=Dj=p8nXfid|(L$UpMQ`VG(AiolX(QTJly$aa%g3h>I_l`8Bko3SH#+NhQ^y7!
z-?Gg$lDp{WrlY%#t~&S;Jf~?Yza;cv$LbibV}g!eI(l<x=_q#7`ufy|Enx%dIK3C0
z?@Uqq>FBRpXM+dm7_4K6@IcW)y7j~=W-+~`W2lZ{I@UE$NcXI5o^W7R3e6EZM(P-)
zTPJPa)-guMXyHdS6S=vC9TEv++2*YnCw>Aw6Ln0|u}sHuPQ$a9tYeyv={lz9)+N(S
z?+8rQ@viMT**DV+9q;MZD?yiV!g6Hln5SdDj@cY+EgkRcn9J$V+A&ARj8=})MI5Q+
zTx(l7O0;&UMH~ybbsZn-Sgd2Ajzu~i7k1<==Q`2Gajcb<Qd>Aa;_xft_*loO=8ltv
z9Vsibvz}V59Ngk3vfZVk*(#=es^eNqWu=Z)IzHp@?qHoiS)t>__QcP1JWovw9dec~
z>ij~-8je*RU$W++mS?rV`H_j_wZh-9S9QKw*b2BXGLc!-_5TyLQO717w>g`}xiWN0
z{7%O)9mjQiuVb^0EnGUBuDv?;aa8NPk_X$xL+5TCJ9O;iakM>c{MJ{UhsCV#ML+1+
zWBd85lb-!L4(d20&L4IB#MzNM@qn0Fi(5sQe%5isE_GOdF-L9B%n_;ltUn=#`&S(&
z*^^wU7Whx|$ToHG3jllR7p?&HGM&+JR>wJs%+xp&6WhQcdY+R)$3-2#>A0lhD*IXI
zRYu@V(^qt?@9E^N(_2+b({H1`uHyz53JFN}FpKGy1oL0}J38*_xToWH9Zz*U<6bv)
z{GsDM7k^=1aL8|Q4>=w<*z#KZr;fjL{4M4q9^Z0_H9I91EN-Uf{-fiGj(<5>`X;6#
zal>{e^*LA3fvy)iUa~R2Ia{^Y+#6C}=}6+MzT9}NTd&4Ta9f%v%6=dh@2q8XqjE>5
z>PE5~aD$!{Hym!H3Rf*|(vwMe{nqT6-Eg|$a%0!J)NG<@qFF?<iZY(L*@bh6(#+{b
zE@8#?Fiew8bL+YrZks&<UN?LKem4ScUUP+z8&UCuMNLtbH3V22IU?;O#KcLHoX3s4
zZuE4c7pto4$md20H%hvZpPu4o0nvhPYkeprT3ED*8%5nHCR|*A!Hi)dlyalA8+F`x
z!;RkxIm)>4>j+mlH?|Zv%Zi5DIC+CZc{fV+NUh*TMfUkoov9L=BwWSzRCS}8aCO^L
z!;PB4wQNsqH+Z`oi|;Mstm{TwH`=*T&yD(SG;mut0$2ao*}{#6ZZvYEu^Ua?XeNGU
zE%PT0?(b~sM)UqoLUY^y)p~zRH(JRKc6w87Ezm}km#%R)+q==hjV^9{xz_0DMkhD=
zF0{TCb2fEmnA-xTyTwf=!sz<0u5M&0VRjSk?&jAaE74QYbo6$kkDFJ=VP<hxU$^yp
zZIBy--KgHk(T}@R%hg|WfapNcK~4Na+}8J*k#3A~<1OK#au9hOhY1XKV}$L=Tf!VI
zF)T7(;B7a?2#ggSXXjq7r%e!^XnQ8HtKFEw!&<^*@yj<|)TwT~>&7%UrnCRu_}+~f
zZoKEl5;s2Kj<_+)jRkIe;I{5po$bb4H|7b?apQe~U3U#;G0hjVSfxaA^}LA-#r)8X
z#cnKeV|!6o2g&+K{2z;^*N}6nt9Mb?Qa6^lvBu5Ym$2N8PkB%z<})`|xbe9gE5)o=
zDe+YU$C`g!tK9fPJRS2Uvhu5}p>d|~`&lhn&BH3&TI<F)50lrsvB8aX63pDM1-@~k
zOkS(0-@38UjZJp$TX_>Jh@Z-aZRSvS<7dg;>c%!V_PDW^yW_?VPIEVQOV&;vWhwQ#
zvsLF0Zm>P9icI~usB51a``!4-jRQQ;c@r7@qcpONwDX|d;6q#!UMI5@Q{~o)hut{h
z#!)wpxpCZ$6C5E@CwG}OoOI)q8>j!LZ<|YPc`GHdKhL^x&drytAmYcbZk%`HtOw^j
zxZuV`H|ly&&x7CGxa5ZBvHl8Sy3B=C_zK(a#x=L)zvJdLoEBUcz2U}9fm@>V-xlBl
zGw%sJbmLEf-$nlrz3;{Y0me7Klkk@te~bCrjen*&9=Y+vjep&EEapGyI?YkcnenL`
z&)j(7#!HTYG*>Hc8q;%5YH!-YVTtMbO0t+sPlCNKi5?``%&SZ@dXVe^#FOHIL!kVV
zgj9hn9%L2B<UwWur>IMmZB7$tUBb*JponI-b8`sf^dOh*Ip4-$DOJpuCzEv#+`=9Y
z3=d2Xykh!9{h|TUpeW0R1i~InC}Gl!co6lVyayFLh)Gs)4@!6t_aJwA5f2J^Q2ntx
zuLt=&$nUYbtAGauJz%$F7?8-fe6lmiOocrt;<5U$s0YOa$mzKRZmy)%S&CbHl0cKG
zw0O#hmK81ML9=F7Rz)!h)jg;rTv@b=?XN0OO>|g_vxY!T(NBh^)bgOV2X#Dnb4xPK
zH$0%uF6^S#_n?6X3q1J1gN7b7@?fL~qdaKrK@$&pc+k_stAEjqWu-Q@p}7YwxkqBQ
z5M?`C+qvxp+K9FlZ6}&_QfdbQ*3i*|PBwQISS5#`i*Q%bZXR^EV_G#gdI=8}?QQ$}
zc+gk4p9lRt7{E4Pa+GQ39OMCYps2fo%Pg8mbBIK~WtSc5!7!VLdoaT0*hOnxjpnHE
zV4??a+x{^EV@1b_ju+)zn<T(evptyX!4wbP5zlndsiN<SP7|GVKbgTZgbD8n%uLVn
z;Kebk0Zenm^S<a@59WDrw1|sozQEAti3>eg<iR=*zV_fl4;Fi{N`gNUWeuMSeC)vz
zflox2iY^mfE?V|i>*<T139k^P`MJPKQLaB<*#0j)SS`H9_IxF<R`hL`^BWJ=d$7xc
z-5zYPW3~%?>*4bQvB`t)Z2wjdz8BssdaQ)G#RDoEuuVK!t2)R#gm-#yZMfAl_3tG7
z;K3dbPKbZ62m1tm_F%ujkD~l<oxw~$d2m2H<bxg@viXW^=&%Pz#B)^in4NoEAboK-
zDSXO<(*nQPF=sqj@uxL^fA!!zXPFmuytv@OMGsUjG%tSh;F1R!y-4<2EBs{-?s{;~
zgDW0fl}fIOb{?I9xz|0oA?8gFZpl%;?ZF*^hnJF>c=V~iOUzRbo_X+x2lvH%Ao|#Y
zhXQ|k@RtCe0`a%NBirPL{t+fT@!(%!E}=A^3nzNf>6X=RFFbhZ!7Ew5xTbO8dhJ1i
z*IL%Nlu=K;k(lJQo~M_=i^&PrbBrOonb`}c7b(IH(Nxh)qI(uu$JFITnwYt~$Ra>z
zR)MLF60!+o7tJA>Q#5IT$}lFyi{00f9-V>ih1-h~UX=90<Av9YA`<EI!tX^yI3W7w
zRwN!s4hpk|kQZTLL(~*qyw{owOi?dl;)#2ao8U!WFA92bqo6aN7x}#?;Kl0_CQT|6
z2OAUpg}f*%0qGtFu(qOJ6qDM>#l7I7k-n8uUX=EtjAShwouRB9Q(2&#7v*hF1%ZlQ
zRI)w8mZntkqN*3w#8cgiACI8f3@5dQ9aGbbS~jcB#5cUC>%|c-j(Sngi~3%y@FHPc
zh6Y|V^x`cqa-MTG@}jX9J;;WGsfl&C(OS%=qRrTTJGX^EOOE;PT?}sHMO!c4v~$~e
z(ZS~S0{6=%b`<Dj`#bY6m9(xcVd~;VSKHrBpu1?bl4egYdI|Ry9pFVD0ha3P<!u!I
zwYERUK&sV}fwpIm7lUmc;zgU1=IjY6L%kU0#c(f1aP)dH+l!H2jPhcd*ZTLFX*9>P
z@Y`OD@nWp-crPXhjPw5g=R8mJVv=1d{pqHBdJk)uBF=ZbnCi7|1AJG^^epC17juT_
zdtS^GpnrTxbB-79d$HJykHk6Gix2GFc>?oA7l^XLg?8>Dfe&r}#{$dj+$COoV)Igg
z^wuu-;#1rIneG4Fi<Mri^5P3Gc5$M4@ue55z1Zxv-blX2i?6)cAWU<uz&g>$W`mxu
zg}?D)y&W@nbM|kAH+r#&b0>e|cV2uio;>-jH<&XmENN1=h;yqK+w8L2z1ZQ!PA`TY
zO0g=Jutof<&WnRy9P(n1bvXWeXU9G-#wR82=UnhwPbB-vivt3DqX)0SPJd^|&*C{O
z${0G+{l~mG?!`?XZuxM+i<4e#_hE+*r@T1rMP(nV`0$GtXS~SjLpC4IdU4K+KfU<N
zi(kDs&o+2*k8{C`i(Xvw;yM?NpyM|$t_WQ6;xel(;iU6GNwdd%=T-63%(B*U-tgj<
zcy8MMizUt5Ufl7*QOaZhQ{S<v)Ze{$ATfW~k@vkYN}07J>>+1FhD3(_?ZqQba32zV
zc<jYL68y@GCtm#P#S1Z?iazt=xxm^ER{dS1o^hqjm*Om6+S>GMVFFj4Bp)*P;P4^U
zhm1aJHz7($7Wh(XNbzB(-*u#vnaPLDKBU<(P9I!8)X0$NQPcQDqj?t%7R=(qvV%#U
z%htBC`;fzjJdF1trw_S&h)G$+2h|6k4}KpsA9NqQ;&<CMdjx98UhoxE>HWY813rX(
zFnkF55R#ahZBx&D<T^bq#q=Q}o~RFhmNJ#nR##_U=j?k?uU^`WOIB{t#Rro%e3^l{
z`Ftqm<I8rD--iM|6qMY;qRcHM(6_W%#D}87^GcgrrP>lcloU@nA4&<75oM{;K0NDY
zbv{#BAD)&rX_oh)f&^6bp^^{L0U_qHRZ1DFkyU-D=EE=_hWk*R{psVaRcP-+O&@Cc
z(A<X>KGgQ1j?~cDhc|qv>q7&3i}eKR`|!sFowZexIve`X$cGNXboS^KYT`pviEJZ-
zs+lkkQ%ix?qOC+3&zLsck%|fAwmz_X2_1as=tFlOdPrC&(Jnr87I;&1v~01fFpG5a
zVV-z;`q0aV{yq%wp|=lxeCQ`J=|{G&@L#j6>63mC2l_C`hquH(SXwf~uG8CDV_3AT
zf2erAeK#}B5k8FcVZILwd>G}!Xdfo~FvW+rC1!%?7$3$8j1wL2!xm}Vg)(N=(J2$f
z$*Lv^%$b(?9UrFpc$XPwiRWF>={`&ocqC<K`0$<&ZFLt5#`;^weYWJj@55YyIikD~
zfLZfoY7kyX*$;eJ=)-Cs*7&f<hYx*N?!%`(EcW3eAC^i%27m0s5+6Ph^WWpvh9<6a
z@<NXAEbE{w6Tf$6>SsQz5dOl4&)K~h5?A`Lid`|o3S-Jx)|}Yg;xFx*ePzwBd|2zl
zMjtkbbDa<0_^{rGuk9GVQg(xFe(M8G)(~#}-w6NCht2FpAHJ9PYn7}c$h1|=ZKAV=
zS;4iw%D&TwT|V#`iKl$n?ZXc~{4C}kANC6TB)U&@&CgCo?ic=1^vH7;JqLU^DCQwi
zEt?f~I6c6JqXNf7kNYt0RWfr=h)FmpP_(RhnjZl^oZ;dxp36R*6G*S~S0B!cc|r7&
z4;Ov-jdQcC$x0@O5~jaOzT(4GiMi&(4T0;TZEGYlfQc2}_TdiKOh2;tao2}?KD_YZ
zrO&!D>UXYG1mQnK@B8pT;Gt-(F)0jV`diE=K0Fe5Ec%Zqb9qG&^<S<ww&xj_HGjf$
zG5ZcNUit7^IMt5?zqRR%qKTqOq8UV)^;gbBYO<IRP4UAa&?w2ltW3h0MQJ+ya0zdU
zB+$(2M>aqFc5Ze*G@EnykyALA?NR(th0l-7%(6_nm~KBj0$x#{=#yzK1_Xo&L4lBH
zSkw?bm@_fzN6e3N0sI<3+>hLT-u;K%0p#%`uOBP?_}q_te&qL~l^?DBDB$PYx>4Pa
z8h#Y=TMvdR;zv<|!hTe|oIp=8Kf4s=#YwY-A7yPW=|?G>OZ!pA=G0tHMwatiH@6Zh
zh`*v}CDF=$RPm##a5YheeLPQTQq_vDX?vRZQOl3oV%8C@FZzZbbp`5)=E|GMQVoO~
ziZ&8$ENa!v`R;Z!6|<RWbI}%}Ek(OrOm5>xTR$fHG0Bg1e%|<r5q^yHqk|tE{pcrQ
zo&4zRM^E85MOkzA^cwu=D$vdLZ<p=%5c98Q8Y6oN_ZIErN8kU8yqePAj{$xR6wh0t
zgG2}0F+&7ALFZ80GfZGO`&o0a@=>;boWN*5-WC{R`^WlG<hpfCnZ}EAf+!EuWIv|(
zvCxl2e!SzyR6piP*1LAunSM+Yo-R7WkN5m|dMTmHznQ7&b<Xl*wjDpmkN5qU>&I2;
z1O^c1OYQ>E5A4Xk<&r<Nd8r?ZZT?8$W9}U<1QPy4l;$#l<)W<lQ$Icv{`gixg}8I2
zAFKSh<;QJ5zVPEqKMwivvmdMdSmVd{er#s2#IN(?Yk{?*J+CEyBfvU0`LW*S4Sswp
zywUdbO|p*WcVa&GTf=XQAG`e6?dLtb);wa`Ca~R)9RfQ=@AmdH>jyvfh{=mgXzumn
zM={C!{Mc{v?pp~z2_FzWDEfR=D#H#7pZDW}z!5)=`f<#U<9?hF&pAI%3j88^O7yho
zm2f83z;s5;v!Y`^GwAtMxQk5ui+)@a^EXlEUJ|%0dPVdqXR+Iwv)9GEAxiV6-+H<r
z;SLvnKXL`21gvhk$Cb*Dzy0`KBLA@C?+ZNe<Du>OQ{eCw^%1M`BQ?O=nemSwPyBdg
z$Nb9?D9leBR{qS7=VHF_<E0GF=l1yID1FV30BJ*F01!wDAcH_g(PYslF6Y*#R&6O_
z5*z{RDH8;y%;L-@>I}dYK$>tC(X4_0Kfj8a)~LuX{u}}16euYjs|trjwE*-0+`^3a
z2jH>UE8r9T?3y*j0>VMjkmyOn+KLf?DJD4*K-A`#K;{dsJOShlU`hb*1duO)`~h?d
zpmP8P0w^dktpX?%K;Z!D1n>s;B7mX+RI=+SCQv$n;<l%RKuOV3qK&_`x~NP5WdkTD
zp7H@y6sRD|+*h&`Jie4rIe;qStSVYVv|0ew?Z_d1)U>&lK<xlBX0+xGQ{4a>+qv}u
zsBd$F02&H6vOPu1Su1~&0GbBSEP&SClG1BvE&(k>TZ%T3$kqWqOw1anZAIIO(rh0<
z2jPyQ@f-h*hc^T089*;_b_t-X9p5d0?!rApyUtKqN$&vqh&f!eZvcY@`iU~2e*go7
z2il%N0_g*Ci11sYLq&&)atw?JV5IP<044~qw$TB+9l)3X#@e270<~_Wj2D<+Ju}0Y
zCW<*JfXQ~`$a3b?0NxGYivYe1V4C<B1n@xs(*u|x=6j-Z1DI)-n#GyY(ltB4#{yV=
z_`c|hegE~<ya48lC;dZ*0Sm?aTy#+Y9|o{k_@e+m31DdeAB(vpfc-|||9x^T3*a;H
zvxemYp9T<q9Hz;%f<sGY8F{7Tt_pw)1<lm~tO;OWdRaDA;Cs<^0ema)b$YJb@r}TG
z(G3AOuKf2Iw^2Ns0{G63Ou3z~Ie;wzY!%Ng+rKS<?KbZa*vWmAVYXY$AMD&c0(&`&
zhgxg<{s4Xq;HLl%1aL~S4vHQL;Hbc%0DcxYESmlid`y_dD_l%IZu1F&lcH@VrJT0?
zzXWi`=Cd4@dy`r4d;k{$*d4?VL0k;rw*blnQ8tK60bCB?WdN@NxDvqC0REJ+*8;dM
za4&!xc5OEU7*x)xjp<eZw*$Bnz+F4H<Hcll7qfo1J%0pnU-*IOL(x4+8PaR`D}cWP
zcoe{6@xKsd);|F};b9f?X#mdzZptG0+>YT15Jon=nEX0`gdn0p#DYi+A}MGMhU}sl
zf<O={!Wn}|7H}<dF~AW-s+ieCGo@#VW)8wBz_6rV{xqAj1d-Kd-v7==d@~?N5IKW<
z4kwf#d_njnKo!-4&;-UD3Nez&Ev84*%cGF#zZEYK<WniEW-|qY2-zGCVtYArRk<|N
z_C$jG5VSrN;^HX~L_vYvLFBPx@&=L5=KKO5-Lwu$A>rad6b|wp=Wr1*iw03Fh)IpD
zS^TLzvq}U}(ypOY5T%9FbIS!$K8OK93=E<|5EX-H8bmV*s1!s!fyzNt5vVF!OSD>$
z57YQ>A8QEIWT)NC#qHJ>vySK+qIHA#X_SL0z6<rm(;$e30*!)bBEW);1!$%(@6Cf~
zA)YQlv<#wE5FN!l(ZYI<660G3(I$wt;%p~+`Eo*g0p@lH;;PJFa;G3V+x|B>gk)6H
z-!+JCL39tIhvfDOqPIX#(dd-~wwYl}eS+v4M86=uziM@Uf4jEi^5&o*1_$v;5KDs?
z62x0U%nV|d1Pl#gLJ$*!7#76vAV!GuZPAgUqeNNZXo2TPt-(Adh_Pah3u3&0zr6Ly
zSkmX3B<57n$)fa65qL**XgKlRAf^dV58^$68KPyRlJu|TEHyibxk1beVvgj}^L`K=
zWN4A+i}OR#1)?7WvCxiOM1J<)C&glMekA&_=#n5R@33;01+hGcZ-Q7a{!fGWB8V@A
zKMP`oz~`b2UMaAOZGJ54znJSp*QCd!tJ|?Qh@OTu(!RDm>0i}0@aP1wIf!q?ztPU!
zB=B93myBB9a<|z2odR1$w~1~S-65KNeabEYHi@P71hF@W8X?pSVP6pYgUB92ju3w2
z*bd@B5D$Ym5X8YCE=c^LAbt+wtngvcQ=&&iS>e$jjs<aC%oCy~gJ><sh`CowJ5Sq@
zzX+TOS`Qax7SlQL{3?20lznnBh~K#W2XQ%wTS43w|CJ!F3tSat*=wBU_R4T0h@0Z?
zwEe%Mc}L7YMDGT1&o1?Q5SdQ?7js{nTtNN|;xDelAs~dm?Z_8FJPP7*5dYYorvgtz
z|K&PUTQ5{we`e=C7s#_R<)y%@AYKQN5VHC_gJ_~?lIU{3H9?p%hWOCz|2RdmoT3iV
z)DSWWFfy}1UfE?=2x+!IO9)wQ&KBZ3TdgU^lrx09A><1oR|rZ7Y6w~gkr1LG=pneJ
zNKn)hf=|F}*Ta`U`Go_btd=Qc=Y~TtY&Hef?zeu&#X`s}X57wgvokyWc|y1^KN<3i
zzno|R(Sjiq3ZbxYaZ$z>38ARX#X^`r#u_apLVVT`N{PRWom*O<<`FBPYzV(KO<R=N
zSw4gcAyl+uDuqx^zKK;9PZir=HH2y*R1cxqYU^ipql(s?sue=*5Eg{+K?rq1cq4>v
zA#@L+u9RvXLW>aUg-~D22BJ+uXlU2jNT6{DlP+4{Mw;6GW&#LWACWDE-wdHu2(3eC
z6GB_@bP{bBLI(jxwilT0ads5gCudPQ+qo@dBy<t8Yv{k<fIY+<8p5y;dWO&|gx(=s
zyqVA^gubEwzN7Y&m_efbMY*j30s}+%M8?lx+do9$Em15_86Lt2?p+9zLl`N}QKCF)
zz)D7k@OB7e#4}!$&aokk6Yf{b`f4;mc%mrJZ__g+gm*%iWyenym=WUXW#_xX(?Xao
za8%m%p72aj7Ek};Jv)RsA-o^LT-!fSpiv}ozCiyx&NW$`3qx4MaT3C%5IziHaR{43
z*b>4=A$%Od8b*e&gq;w=O1qw=0-uJkOkla_eEHV*nH{qt#K%TiGd<r#YZR>#{zCLi
zJ7%>2uQXdL@U7@N(XU0n5nUg`h7caxvp8PC+$erlyD5b4guk~v&sX`khOkY{Qz2{*
zVMhoDLpT(|PI2xD@gY~(WykLh;Rl=7CA;<s|73gi^HV^$%w+4hFdg9PA;auvJLZ_c
zVbLR^M@4zV{&9g5qAYt-piBj8IXWG}FCm->;jEo|K7@0^zuKP7gRHNk7sR|6!l$>b
z--(yGJcjTpgx4Wl4dGe{e}?cECt#}cdWcWx!X4ooqBldhCBWQ&t|#0L;hxlXU!1>(
zkPx*d;2-}J^FRU~ihdVxa=U*E|0~MiM?4n7g|8<36T%bWlZthepN8-(gy-y1>7p0*
z9AwtZ5Sm}JR)B;s62pAy9<qj!6t+ePQ>HL7gppCqWKoAG!bq`Ws&}v=Q^S}Nw%VN8
z_B+FH*_;+e73tn=;!(m-1+t6g2qULJE>Tu;v{$Mo><z;wpoifW@Q5zjW9=7{U(8S#
z0fC?>{cUA)VeSh*0>T(AW;Bdg80`w6eF4P7$Q?%gI2y!}CycydRE(ff1o^_qAI2~P
z!wnP&qhJ`{h4FnDg~BKt#?&z04WmdHMZ;(wMvE|tg;6|=s$o>4=L|}OQ6`MC!X-sZ
zg;82yX$6x3<-(|!GogZb%8SyuvzD`>&6UEaEL_F*bZY3R9!8BY8ilRP%xa1f>V{EE
zxONzI!npO%f7czoA<k0I66)EJ^}}c&+)(sz1?w8T#&&KKfu><Jvpo!J8AhwHb$8W}
zFj|MvCX60o^bA{fLbVO!O@Ve{v=`_QMrQ%$b`<C&T5nx0COW&=xm^XiiFOy=@Vmi)
zUSY6EKk@Vy?Gr{{f&Z(jznB9=2Zk{yjKRVg=Qx>I$y;Fzl{OCxV-yd17{kTnUW^E1
zr0|j_$u!><o+LUZjIjda!k8eyfbs0l3MOHq?b(sTPjj-EQ^I)1_M@UXEsW`5tP0}`
z_6%SC7{=l-J__T#FlLHpmgoY}*`jm8ct4D}Vay9#Uy|pGlV!<Fgb&2C(DpA1<3pSI
z#p&ZPmV|NXD|KZUp9qjY4P&YBGTXD9lX^`uvzR^;=ZY{sw{v%A57Yl>b@G?&{7#Oq
zdGtSbt`?@bM&K*awPCEY{oR!e-$*2b*N3q|_*>hvF^o+%^Ut`=VQk^#GLX-})-bk(
z@mCmshp|139bt@!IeraeCwnrCBVim3W4AaDi2e}9o-p<bGxA4)ePQemBUsU-hx(J9
z`}lhDL7NYS@pG6D(X#5N|IWh%0@E?^oE1GD#)&XahH*;FU&1&O#%bY<n~d~$mQAmL
zdQP%<`tE#~&mpvGz8J>UFs=#zCVENqau`<x(i_Rh>tWm%&y6r{a$JRRJB;7Ob0>_u
zVcZjqOif`h)2K!%6EC`lPfz(nVhUz*q`l$flh_}Gt=ASm6#bK1FO){}Q5cWIPz<OB
z{t4qr7-<Hw82C4gr(wJfBf-Ek7O80Rc`Pr(cpk=!FbMQ8z51Uln&BbNM8kUPqQgLv
zfeZ%d$tVf~$pXb@gy>8WZkL*ioN6GGl*%mX5_O95jyb;5oE0)<HIU6fcEj3qiIG|k
z!+JyvQ!WEHyBj&hWEPpK8PE;*4EPPWr3jsDwnx}2%1x)&5HMgGh!_YO2(e*O6*rNd
zYZ&0;T*z!d)WFWFu2@G`%s|{gZmB1aXm9BdZiUYLT>K4dF84N2&_E#rd}h;|1_~P}
zV&Dz#nqgf`Skyp81C@k}87OX`gn^RWoPn|i${8pvS!Gyoo^|Enq>5&l@0@G7A@Nt=
zkfDNsLlv!ezBApZXjT?Kxt4({2C9l#%|H#?U!8kb#nCmRtEPAym8`P0?c6#7t*a;3
zGf>|^3j;01)4)IzJEoz5M#7D45AP9fD%{L~^IkG5Y;NGxn(TyD;%{q5wl>g4n44g3
zI|J>->>%37Ku3WON;w<%bafVHSm8=$7wJIuVOIm)gu5H)A<$E_m+0}C88S9aW>_Bs
zeV-=uHIU;_az6w84eK1m00Tn=$O8=w5*}=O#>_J4f6Ks7@vu0}5e7yY*luEniBSed
z8%Q&e#l+hN#&C`pcxqs*fpG?w8CY)cJv-)j1G5awHZZ}!M8i7KH_5<-na&voCL5R{
zo_7qqYhapzsbVsQw}q0YOG-DXyo>Wa12YZlc21@Yy%OgbxQ|@(49qw1z6`LrqDqEb
zd<gsk10NXHRRJFx)(8DU10M=35~Zi~+s?(p9~o#~Fp-{=^C?TD$S0ypMT<>HWhI{)
z_{`wLORZtN!ocSS)*4u6VE10<4-@%FTg$)7z!w5v8dxK+T9jE+E16#jFRx_X)%bO~
zKTFCtY<$eRZ+g9S3wvgRfsHQ{2pbJ-GVq;&?+siwaK*r811V#jKeAPvlEPaJY~v9T
zX4Y<j9ilr$cZqg<mhc1n&A?tU8M)uUKAV|KPt#`!2MioEaKyk-$vR}<Fn6$sgSkK3
z^^h5VOw7{;elc*|zzH!~19MLbpZXuq8Q}|}XGPD6{wjLjKzc!zy(pgFIP#w*ToO*t
zx@zFMfg1*{iIb6R)lCDpxJrxjwt+ha9!Tz8(LY#iXU9F^-$m1RlV$J!kNMERp9cOi
z@V7Xb`$!5B9*gJy+V;fmif3FxmpC~j_$Kh@242Xad}$zKe&;K$^C8Dxq>*16NHD?Y
z5tVUSW|C=Lcb&mRMpGXCZz8h*7-Pa=BGp8@wB$@CI;JJ_2`6Mec7~8{I!(AFK0Pa|
ziEJhcnkZx<yNQKYonEOw2h~I_K3LQQ-_NqGlJ&AG)#O_jtV?{EGyz?7TB!^kfdbo;
z$=WgaO!!R%Oax7YOkObW>|WXxHer~^V<N8!(?rBX+=QpH$;X$*?8E{5q>@P|fho6X
zDNR1#F29KaVy639Bt45Ug-sMOG0DVaw$?;36Fp4yG*R3{2@{P>G&WJvL@5(h*ccO~
zO_VWF-b4ix59_8(Kc7@qpk0~dawfj{Hy52u6-`t!QCYGgr;_Mda?;XZrVQ0gR5wvy
zvTB&9X`+saH^i(ZT3dA5jLfaR4zWmGF$wk9!pbIr>CkJXfr%}9lbfy0)zAdZ5_MCW
zm}qLE0}r2xW+s}OeBwP?n{aOMvq%f_F{=$NO^ke{(%D8l?M$>c(U#r*FsWr_vs7`V
zsf01I|G!C{Omt?o$CA3S(@b<>pG@~3*OI%M`0;^N8<kaU{8{PF9;=&@zKLEYdYc$#
zVz`MucKZjI=xd^%m<6jQ_ZLXt)<6@3Obj+LM7G6h>3_?_P>Er+*-C3;?0p}>_H*&K
zi!*n$$)}xTJU<0YjFB4HjIk1MH&J12OcP8@6i<5P)Xlq+r<i!h1RqDan8$9hHr2!&
z6YraN*TmvM&S@s5o0wtZJrlFUGrM!@OcUwK0K#nBPjjwR@`30)(fOhaL|Ol*mCc31
zEV#(Thc+|oBNHE+d~P#7F|pRfIulDxEHkmv#43}&q#VmR^-Qb~{*(u|nj`nGuJuh5
zwlz&)?&plm;5t{?{KCYSCf1nvN+MTtpc*OzZd5j@@fTJwQ=jh=zUJ0Vd}rc&6YC{-
zgNbiBvtA@vm6uE0D9%kLZvE?A0IPV8Dwb|GvDL&jPL?eRTX@vsjzU$;vzrrGC)>k-
zohEj1Nr}J_!SpX&yG{IHVh`sp@1A>%y(adVcq!(7jv^D6O<XbYlZgW+&Y5^J)_IUa
z+Qcanr%n89;;@OMCXSgnBDoAW{VajM-OfErIBwzuOFc_CDOm(&r7OdJkt{yv;S8&K
zmO#&0@uZji)x>!d7ff6<@ta*dy>cqkCA-vB6W2`KH}OEiu8ZC=al^z-;aetd3#1ok
z0|<A;bI-)@0{h=|G5ukJ%G`(Id}QLWi9dz^68&400enau^&b;YO+2I1#J`gDe|z`b
zj(lOaGd=5-^zCaC2@xbltZrvY7Dy7!AevE>x9@>r2a>aY<mBB?H#cTZjaV0s`XknI
zohgFM5jZ1oiJ2|JM}H$tn7LU5vPQtAJAG}>5rG<kCjOieoIIuGia-%yK#AiaU9!BQ
zZc&fqGK&GM$7k0Th#(k2D1vYVr6SfRml1)<^EnaZ7c&w;Tp%jSfSADho?N+YPo4<!
z3NM?Q!T_cM5fqD{cmxF_C=@|qJF;j5MT8qoNoCm21rw<y#52KVF;ht~Q>JAmmyV!J
z1ZBljj{Wl@fzI+`5-LQn?yO3v96^-`mPN5VimDM*i{NGiw<4$>L5&DLk6>j4H6y4M
z!P^n*D{<`z>O{~yf))|$BmRvDW>!wFA3@y+>apyZWICA$4J4pp1dRk5N6=J&xlIIC
zdy<<8tnpZ-T1L={Q<9H38=KNPf;JKKiJ)%;Z6jzGL3d8oMvnFobcmpH1aFGjk)7W-
zf&TtI6FW&+a+e6YN^UpN%#9PuH%|Dfk%Ixu?GZswfnE{x7NC<c*`=O-5%iB>L<A!v
z7!bk02!=*5EP_E1431z(1aC=^^o<6kNG?$_D`8c`CBP*-%C3KO1Q~l~U~YPmF%gW7
zU|fU`ipSgt=0z|eg1etM--%#q1QUfPiB1+})|3biZb>1$%i$M6%hrxTRje-()7k$K
z%!*(J`-IOt=YgwYGBpe3pgCL2Ig*vyI|Kdii-%c!KjZue7DlWm3oVd<TZ>aa;Gtif
zdZcXPq6j{WU~vQ=MQ~-g|I-LQj({%*{3L><5iAj=Ij)M?I%^_fSp>_)xuA;4qz_VA
z>N6?3LX<I_v#ZFfwTlsa5y6)ctd3w!1V2QuCxWkJQg4i4Qv_>;*G2HPz&D~BB3Lir
z*kN6L&GfC9-&HZc6WAQV7J=_YPx}(KMzAe{U1BnRI|uXXl${amustWLn1zE0b7Bd*
z?IH}@8^OK^jz@4Jg8kw@7{Q?kezZ&dByb>t>s730`7-?+!BKG@wquS6WT<Kd9OHEM
zTUVr?jNp{`&qZ)r;EWyrOT>CV1!K;Nr{Dpd{HySJ(F>x56Rd9hjVstOToS!3O7ltt
zS0lJ4=Jg0}2uy#&`pU{gxE;YAj+`i3MR7NRdz?E_7*YHl!5<u-Q6xvLkGA^}JdEJa
z2p(`A6>>G)n4M=-!nvJ)MesC&XA%4z!6TN<?R+fyB!YhghK$NcC-q<3e9rafE9dJ7
z|6H)f)r$yT$^d&M%I8PXdH1aA@ktjok*zxGN{S+b0NGd78sUf{XB4@jNQuG`MQRik
z`#S4==yFAoNjS48&uKdaUMz5>MUf?n#owl8jUu~1Hqp0#(&=Q%VVg=62W~ihQE(sC
zC^U9Lt&kptI|`3*r9;V84khyylin!uG)<*R^-Da91O$RngltcN#i?c#ktnLLwquA!
z5sM;k6ns@8_az?1$nK7M#r(OW))T7ph!Uz)<$D&8KZ*iT6pW%w6lJ3*6h+}EN-!ph
zr_B?JL{T(~Vo|udIIg!(oZBja4{2{+AhCE9*3;VGbPVp{C>2FwtAx@~kTXialjaHK
z*f#maQ89{URn78ZR)|`!s!8`(5>I7OI;%!eEsE+<o>a`#Fp5S|)QF;HlrMC!JWOvy
zQCql<?U{2yuNy_ZDC&!+f$bks)nvTyg3(w!%|)BoxlIL{Me%2CS9;AYq8N7}ncO;x
zHsmPAN70tMJSTNv6oa^@QMBiQ$mi@3MVBbL3U?Ik6h&tN=DsP==$x~g>{PEPdJA-q
zqK80FQSSbqot%8@S)VBSMXlGL^%bpIJCWR9m@q)#!UosiDArcjhDNPFDF{Qve2YDK
zRHI4fuqcK{F@i@~V%`=VCCc2<0&O!o#t4iR<)dPm#Yc}$h+=vaGoqLnwSKrw5}h2y
z6oGf5e1o~=XPO%Q@2AZ)+w;={>oVH+qL>@SyeMWy|NA#>Rur>so+I$SXwMI=KQZS=
zu}I7XcFYF?3q^S~#fO|G!XJr#BKooD646Cf&7}gY?d9?0PowxOighu39m9$!KIgEH
zp>hl>qgWNi^C(_K@kJD0MzNo}5XEXvZNu?h6yHa&hV_WKHj4EE>qHswwZJ!`JFA)-
z1ip=8qrfK7tWK+{?oF(lwKqqxTbx@&w??roitWNXMH#b0;96C4m+k5FZRiK#J)(O>
z_u0A6s+vD>t%%}W6u(AsQ2a-tI2y$v;h*iu!<;Pnler0|V^N%l;-q99=bU;k#WC7y
z;VJQ)5j`EnFLv47E3~sVFS(O^o<l2&`%yfI;$jrPMR7ZdI}&gyimOpv6TU2ZMKoht
z___eMa#P@jXt0`fQ~WKK>S;BM>8|+iiLzn83()@uhtOQBkq^c5cNC8}Lxukm-SXJ_
zCiz(SUs0O>@Uug>_v)02)y${D&+J@!UPkdMiX1WIjNx?@2{B}dA!7_P=Q|Q()+sxF
z@#B0<iUDJ-C!#0E@Zz78>g$}DXE?!t7#uOA#*h|6mKavGbYzObDL~E~L(+)M1SXd_
zn^iN(S%tHUW)mGKe!iGHR}4xF`C`Z)gBpVtLm-A=3=hURwSm^FN%R=pF?eF|#{OGB
z{Q^EwWuhY;LNSD6$SY1G22&sw!`kVIrMsj>Vu;4@^W=<VCRQ7dA-BZPpC^X4Ev$#)
zZhAjuz!~dp0_$5l3$Tk8Im^aSFor@g6po<?`y`rDLbPZM#RcdoCa}1gNxu6sp=1oD
zVkm9rmJv9!TPe|xe?p}2TwJ*r%Ezpey%j_&in?2+d|%D15<}G(`oz#TX8o$F7DIy=
z8pcpPh8p6jDf)(Jtr%*@P)C?I!l&QuURTU|qO75Q45O102~3S*Xca?i$!Z)!lNg!`
zHxq3UL-QEYD`9PnZz=wCPn#Gz#?Xl!B~IqHi=llC9b(oU`n(4}{Wkp0?9v!|NKBU)
zs;zc*6YeU^Tlnc=>Mmw_!+OThOJaJ94i2iUyk89cW0(`;cU=sKVPFiCVwfDmpcn?n
zFeHYzVpv|^ajcs8RZYis({Z?&V`vOxVi+64uo#BNFsmc~P{YU=Msb9H>H581;^-LO
zj-jMKi6-AXc)Xiq%UNs9=iwd~vwl)dknu2H^!@3H^h^~0@cSuKVt6Np?>abUvypvV
zQ)8IHEa7)Wr-@D%ja+f@1zS}rSp#Wi%zE+GEKz!LH%nk8b7Pnn!#_2&&tp8Jjs@J8
z7(R{RgP8SY;NuvU2rOi6F?=YzIEIe|SSP<cFfsBIY3ef3rJ|pYPNhj@*zKy$vA#s=
zXEEd`?_9wnILb0tastZMzlh;00k-5zcIhL>>KI=$WHpRTWm?PezchvLO$_T}cp1a1
z7&gT4Z4BpP_%()&F>H$AM~-3kPYmD3u#*#cs=8T}uq}oy!dq?6-D)QN+hf=vp0rcR
zG<U_YTg)Fs_loWjeeb0euuph@3}rVOG!JmCIEGWA2V*$I*)4ob^sp!cjtCr$A-TFq
z^SGENL{Ey={Y9t$wD2#YG|vc}6=m7;?D-h}jPYGdxERB4G5o<bp@HL443}fLc^kJy
zuf%XefS#){Tob-7dik@=bXqBfTjI%i!ZPm&-xZ~KFNWW3=IfU3a~b4{TEOwiLH)Qh
z)5933BL+DB=3uz(<m>ZZ#PBGF$2??Q2R5c=>FIbH!xN6Ka(<?N1s?ZxJ>y#4)4}vS
z27jvr0>AL{t+lUXNQlE9M<9;GIFjPl*Ka*;{r1lgM_L?N;>Z|BavTsR{h0(((#<$h
z1=^RlJ~fy!i|LHRB~Y=tneNXjW=_#;aby?BA(~!8E@1{M0;;GcS}2d-9k+e~)oJMP
z#NmyD;1ea37?E`UGJ<jBiz9y=p*X^Ec$~>b+<L;l8Apri=EJ6`kvO7p#NvFF74pWx
zmp0}W%_B;a^M$&-PI9^yh@)WKx--3M9EIX297km_i^Nehj?!_IiKCc!N{AL0W&Em&
zi6yx$x!t>zIQOj&(O*`$LLBAn$ntT_m}1?)UeWec5*Sh4tRj$JNwqkt$5BH(b?nHR
z0=43(ZF>%tv2J^RBaXVZr(WE8CJCJl<7gDe%)FSD7med+LVs?Y%8jORG>fBVZq&++
z=Ip3A)ZEZ=qh%be;#e2Q*KxFtqfMM|O2XVY+Q!i?j$v^OkE4AY9pcv6zrk^IjH6Q=
zJ>%#VM`sQp@plvLBHC4SX7L1`3Sg1$V)hWFIjoP-TeyE51LEitM_)0=7W{uqeFwM`
z#ryRQmwS@SO)mA)+vP?`*(94}Hw~nS^xk`ws&u6H-fW;$sfr?qbWo%#N|7c?6+u9H
z7o?Z(>>Km@{?9YddCq&@cV=g2XC}#Jb~dS(kSSH{o}0!`^1crA6Q!%)C@20~p5$Ez
z28d2RP{@H2NkbeM>cC_NrZ_On0Uml(B4)Ud5rQLmvT3CTer6u+z!(R{Ixx<GiHXSZ
zLMAxSw4d=bdgnVvHJB!ezVlM%R0pOxFg+3fo&z5We?OsoAmua5M+v3*GV{crj6yzf
zU?#ht1Irwk<-lwQ7CErkfjJJ$mEeVf^VnzPuEnPg%xCb|<^`g^eZ*-0WmaowuW=t{
ziHM&G!fV^qx%lV8mkNF%_;^%KMt<eMatBt4LUX`G(+UT^c3`C_ob7);VCGT2;dzxw
zB5A!P55v|vu+D+A4xD4>Uv6FRz!3+2bzp-78y(o>;3l;A$$_68_|AdN9AzafJ0195
z$TkPIJFvxptzyn!V|_TF;Ff{b9b#^}`QIK9E2`LcIq-vsKRU2m$jd6mZXQfS##r}=
zvd@A2LiX~YYyZppiztU2IN-oR2e{44xhlq1DsLA^KP;|OQDci04)Zhr6zJF?^C(Aw
z1HZFlIB?v7KO8vYzzGLVvIB3yX~9zt<XvyP{DSHEc4LZ&E4}44@qbDT1O9U0Je$se
z`wm=i;38KQD%LxKe>-s5fh!JN5|jGR-BYhRaLs`m4%~F$y69ZL_d_>pg{S|m;=9FW
z?4EjCkXe|R{jNmbOO$h~iv58D|2klG8i#x6z#|7<IgsS!+lv3YlmE<tC&DY#O@AuH
zTGjsCffvHFs@h))30F1N1e&Cr>`tTz$>v0|5V{&wwZjRs6RA$*aKa*b+}pLUjR9$*
zWIq0{{^dV3He0hfk?urJCvu55j}v*F$Sr*LP9qmnJ|{Aq$S>lgvbJZ#43X*O@XSJ-
zi;keE6UCe;>_ibK-v7?pr>gz<++_aDp{uwP0Vje^lyIV?6PZrl3Nx~JoX8SV+KDnk
z>`uHUWa9B`3}ABbh@y}?op@j}M7I;l{|SrVvhzCO6H#@-?=)`T#Y<oojZO4-*6U7`
z7os~65)yVIA|&cWSs^he-mRX=U}8B@;wBZow5Wm;6`e*OtK`I+PGd7?rZ<FCc4A&z
z6U{1ORuzmZHJqsF#AqkRNZwjJgw(UP6Lp-Z>%@WiSq+_N<iwX}vg$ceUq}PN=~e9%
z8#~d&iSACk&H3MnW>QXj&i_udaH0)c!){?}>BR6#Nv#-MDT!ul(fK`rysZ=M#C*BI
zaJ^e8se=<8S&kF8T3b6i(Zz{QPOPbF+&?6Cbz(~Eq;5`ZuWB!F)s}kIMsjPbjVrI-
zaT;sGdOOiWNKZj3y@YV&_7T!ou%8qCg>d24;?-7$4RB&0JJJ>NAXeaZ)<`D?J2AwG
z@6EQ;unpze-L(yK;_L~dorlYrju7NdYbSaa80F*(?`%h_+Q&LE&WX*;=)`y@COEOs
ziA7FKbmFgFR;G`fnB>G{F{e23o{*^t?=&ZNnoSIQUz86L`iD+_CCj8f-H91ae4Nnd
zQFmgdn6m`u2+kHfUDeJkbDg;Mfsyx95$8M6;84~A;j`Y#qP|%87re4gED`>h;OBx%
z1&dgWS}k+pD<{^8LUXy0ubo(tP`G>fN+-T?VwEUs68dV^Ifqf1wF!mqd0+3u1~E4Z
zekZtzT~tWunVIoS6_K$;lwSn5I<bu%z=<7B{4B~&!5;;83H~6+yw}a9-3k5^CjmJN
z>U%`o>%=}G`vt?LEOZ@k;-C|UMCp|;g9_7OCyt2ntKd;VuBf2vm=nj@EnS%E!U-o%
za=g2sx^T*g(@s2b;;9pVIB~{_drq{C6#A3B$cY=Alv<e2u^cBZIC0U5Pdix83wjq@
z$*KP>9gO|$suP!lUlzRLl)p`@8H0l9nuym0?=>^sl#*HaEg`oB?{I{^X}K#%*FR3&
z=d9(#?b8_?$h!m9e}&V0DC7}81%zx|Z>9LmiRYXrUB>6a3tmdimd%A^mqA{N`ARU!
z1(S$t+$OqMx9l$1Tu65z#Ra(dk}UXA({s3x=7PnAR2N$GGIi`_YTe6J`{Purcw33W
zFuGVmP8Tv<$nQcf7jnCd^UdQzUKjESU%A4}#Lv?=&B;s!Tqx*5QE?S=8IgsB$8%li
zlvKn8ez@=}N-@!kyD)aIQ3A1~3z;sIav{qFH>-CNMP8=ZT_`P_=4%PDj0+AIs(DTE
z-zH8rOCqLFB^yOWOpgm*A@NAR3jvpL)26BmK^HU^_`9P{V>AEn&|Sv*|FVK17s5iQ
zM1(|Lh$WP2)$HY5cwNl$f|XpTknmO%a>ShUh6|O2zbROSZJ3(E0*Or3T&V6s4HsYh
zitaAF?LsXVYBSP>W-eSGVyz?C(1p4#)N|pBlw^ub^+j*s!h0WQeP5ygl}4g8W*ttZ
zG;v`_HT%43_U0~}EoyD!LR(&67h1Z|N)(E%U8w&siG->5v!r$|wC9Czp_5#W4lZ;|
zT(4QBZA`pyon7eSLRS|Sd~RhL&_0=Ib&Y~_b(3I<@3_#zg%K`{bfKpUO@^BLy3o&s
z?bYnP1be%{7mW6C;X*Y#UpCs`g?C+iWi5ugFu;X@E(~VnUC_HFv)Dn2Iy{mgHdJ(q
zyeq=r$X|3czQ|Rok*oV#HvZ*0ifwDjnBc-_7sj|?uWlbJINpVELZ~pFNOPhDGk%f_
zlM}pgb^A0nDZ95DdE9v4g%4c#(S_YEeCWbQE`0AYZskpPVTKEzyRei)%!N-}_|%2@
zF7!T(nSyg%m?ebDY!|GDQc0NRia1a3*Rx3rT$pn#`$92!6MzAWTv#mT5*Hq9Px{OS
zhQ0hFWzWZHht4K_!4r33oeS$-SmxqOb+MWa;<5}IWoy~Yy4-~oE_^N7SGw?x3wOMx
z_;FWBSn8P+nv5r|abc~9A4$m@B-eL>4A|%bkGRQ&Z-tQGu3Ks|&rvGLny?YJNK<Te
zVH+>2@EtDf6hd$OPU9{Yeh_6ybz?!`PcHoI!ZmhO7Rzpb&33|tlN^9|tb1M9=fZv$
zesSS|3rAh}&4q(59CG1^^Z`??tiwFkvJ@s>M4BYOifgu9*56$?=E89o4$C{y;$fVQ
zuFpw1<-%zW|8v%>F8txb85hp8`*E!GxBe-3&Sku);w-Q7<0Ohqe~BJ9FS>Bah08Ad
z?ZPw(AYPFGMlvQI#{XWM*EQyx8!jyAV0q=jO&4x)ZsCP+;js%(TzsQ3?n#6EEBKEK
z_j#dRn0?l`Nz25=F!6OY4_$b~M)<t|7fHr-;!_u%CtCO!=QMG>aN(th%*c3Rk{c#B
zvbmA$hSiNt)$Q2@Nz6i01mOl>vPse6MyeY*L`-vo>0EU?b*2#utTs2&-N-54T;e6h
zUBtX@<onZ7!HtR}Ze+NT-;Dxp_}vJ&`Hp53a>L;^=J3LT#oQ?FMiJo@iwe0gE~$hY
zCEdt!!!AmuV5x*RJT8gBOs~07+Kn=9FbmE9=_F1!TyD7CP$ZX6&?Avvw-L!1gISnS
z6<1sd3XixE6`~31ZiIvwhY<3jx;-YOykJ?ua)OL`UC53=X1qR?+<3!{5pIlhqp}-s
zy77)1J=hvY_<{^HbE8}hdsR28xl!GX8gA5cqrThtJgw<QZ8z$;ky686OB9m22~+vR
zMw4L;c=N}NCT=tpS0gtXyTP!G8g>T!FDzaH_2zE0aHFLgt=#D3MrSu#yV1st_HJ}=
zqpch5+?Z3ter9M=vl{mPHSE7W%vZaft)o<c%3G|n9G8b4*&wxx8(rP#?nXB^erRdj
z7^jy!PTo$Cuj*KOy3xyx5(BIQ-RR9@b+8O+Y3=VuAK`rk`w7yuriPu~cikWk5d5op
z+8{Rule_V7Z`N?Zp>Do9#4yt@q!80Cq{P!GxACmOBsV6rA7)ubGiIt~j2mO!80SWV
zW~T9OOmJf&8-HLnx`wSw9#X@^#E<?dZk&=6d|1Oi)s0F=j5N)S_k_QnP*z>GedNY;
zH-1*IN5Kp?K4$k;P*}kyZp?J!nj6>MnB~T7j+cz$>)EPq%ynal8=tX}E8FI|@u?g7
znXFoE(s|1Bg)b0XC`i{LHx>&YKgUe-b2pYsldg5+3pWOgN?z&4H*S0>;xaeB60%(I
zYrz$Q*=pKrt}#BESGloT6n^lfT~AuW)@Ynmzi|?gZ%CXn+PaQIwWht+kG2hNY~;{(
z<6CyZn)bil_|A>ZZX9;wh#TL#vBixa-PrBMRyVe}vD1w|x>~mj?hveaA%#jDcd>i8
zaWkhmuDmzILh_Rv`#J5f4c*w|#$GpmpKRU7+2caWm#xznz(jIDN+Ulc<e(cbPZipI
z+{Qw#v`zZejic1vIOE1|EJ0#UxpB;m<8GXA<0RXsbz1z0zuib-`o9%BEr*MH|8(QL
zWIxMEPsm@q?n5lh!lVDw)q25=i;4KSUg2-+B{wc}MAx)`QK!@uH?H#1)G2kkX$tWM
zPnn}q0TkSF<F*@5+<3~NdIERcd`CR)yK&czd!l5kWlEi3qU(W}BoBrBD@fO)g#MWG
zc`YN7-`1XSdRGj>^xSQb7lJR{cqN2Nk^=rOR&k+?Jeve3E6AS6#qWFk`CwL%p&-9v
zydA)zAXPyQ1!)Sbit%4Cr!|`bt-d*@f?NvH6=Q(Y^mIuk<`!381$h*dIGjm^m`?%I
zq3y<By?iE-y|;jZf(qK!u=1Y&tQOXhHSI+d6jiWT!4d_<6ckr5TEQ3=qM)RL8VYJE
z$W)APSz(0_d?D|O;-wU1DX=SeO+je|UIjh{WtedmU&8^n0*3;pf(tWCOrDj+L|qZD
zN5Rs)DO6Y=iX^H6KWnZ)R}hdh3MybQ1DKsLBq0S9nK51nb#;6uzaB&t#28t{R#rg;
z1r-&P6O+p83TD-`mlu<Se<xK^@TP()3f@qRf0rr?l3;G?x-RKe6;xM1!c<LMaYC%6
zptgdJEJ{Hg1$8;SEVQ;(P)|X91&tLn5rxY;8whDA*hr9(yt~p=cnbwB6*N=OT;bb5
zjJ2R6hi5WZd|ha(M10)UM$EQ??G&_E(1A5yZ1eTA5}CJ?g3bzx^s^3C&_zL41@9>6
zp`e?B?uxN=XX3}%myEEztsr-QlQPe?Bqg0S>8YTXf&mH!D(J1CkAi**`t#JbU}a5v
zUy_{0Z!Yp~4bAVew1(#5?JX=#ub*R(Vtm{)4HkXIP}2|ve{4u%$$3_qXZE)aQ!re?
z2nFOL6^s%>Zm(e?Rv40PLC*qX6--nxNdfsd!SM<v2x*#?LXn@ylNG$L-~$Cyq}NSl
zkBzVH6Y`$mZ#9jN-47Lfq!_O-<BR<GYjHY10u+4A$zQ=7=4AyGY~601rC_#@$;(Zx
zU}{@CiFmD^d7gq#d1wU-6*M}8`3k5rG0X8j1xXeuU>M`6JlbykOu^?0*0P_lH!Ao-
z!8Zz4N$Y*7U>OIg@QwwH@57EVrsW(6W%yRd<Q2T)3eI;*TFJvrH@m8v=9kR2TD)rn
z8UMdr>lJKJuwB6p1sfG?V$Bt7ON4zZhu|;e?-b+r@@B#B6>Jegh41(LUr{WUX{Ump
z*ntZeU2d0T|3UCa!QIlw;uR+DRj^ONW)HsiV84Q2IFLPXd2m3%LC&8FZgW0Sa9Dw@
zmi@AVBMN@y_^oNVpx`JQU$gb-opwUOZ^CK*F65ZtaRvNig<^*;){_cODLBn8q~Hvv
zK?UbH2Ai4w<b~^HV(Qh|I_8Ki@>Awt?9VMs=Q+R&S??FhN&IbPCXaYg!CihPD!9Zt
zT(%4;o=jv5Tv2dUTH{)xO|A>Mq2Q*1V}BY?Y!UA;J7-Z3a(Zx2!9NNfDR|6TsFt07
zectB)DVzC#mss{g_*ck71yyU=C)Kh)QSg-Wv&R??&lKaO)h`vi67pQ|1t-S+S=5s}
zhBw*6hr$eE@*ta#y|wH#nNmD3i$V?$jwE!82Tz4p)vP%@Af|a>6=D;llE1b+mj}5$
zDCt3_2YEcm>oJCKQNetI1qCw%^LtQ02xD&7u@w?tSg?o(O!G&l(p5~9;)%!-ESxI|
zxjxood<wiKNRlPQE*SrbR9bi$L5Bz3k7qE<?SbM!OAlIk;PDt=1uJ?`$;0<qz~_M~
zO2~t-2YwF%9%KC&V}hb<g1Vr$wz0S?;z87da-uBGX*>}S6HZdrW4!d7gz0q=%X?7a
zf8N^mH$12;W&;o2<bgb>BW6{>8i~kiLaKXUdy<bu)fBT<!dqKNqq(Vdh13(QpYXP*
zZExs7BQaT@#vU{g-qeHULRe-qAuPXz5FX;keOawNXyd^L9(?FQTMycKFxZ139<=wM
zg9p7NvLmmEkhcXp33m0Mvk;ckMaY2K_HGHKyO4iAFHY|}!h3ko(}SCfjfR?3+uqxQ
zJ|6TH*Sm>a{XFQO;I#{94Deu}n1ejnbNRnjf80)Cs0YJ57$>gbiTF`MMhK1+eD)}1
zbizBvgRu#|uC{%=2NOJ)D9RKMrV5!PIN1X}Lc&T;6Z1Vmn#}%wf*-AI|Hy;syzU;X
z6mf<J3p`lp!N(qa;=xQ0W_j?bxMmB^^<dStlsSnKei&vvW-`x%IGLZ&&1FoBgn#M5
zG7lDeutdzy1ebd7c_MP~ubE$Xuy2}C4)Lpm&c{`jC-@2vc(M%mMwAVLt2|gOWQ_;w
z6On5fDg0`?|9Ubz%tlc*34WW1{7%UG%ZhICV5<jdURb@@=D~J$m=2b69_;X7r;Nl?
z9_(Vz*@8VD?B$sXr}?7?yA%8;AwP4@uWGE9=G%VvdGM<TM?D7LFZhe#0S^uep?=7N
z!@`dU@^!!ze@l3ed+@sl$Hcr++s;JqiG=qg^YS&pBh9C!lAI|1@ZgN_KNHGXA)H(O
z^5DD&7d*J=!M`3n^x$t^kvo=af+UxOT=w9KkgEy(!LmHpJ-ERRFUlPc?h3i(!R<s0
zAL(QX_r$#K!9PMi>TRXS^gzsj#60rgr3bG(c<jLw&d-Swo_p{t!G9@dVy+irPTX0X
zJjsjfUZi-93Y)xKabystWFaRnW|2d<#S3%7%W_f^Jckzz>eyKan-}R`M7)T4k<*J@
zUgJA}-;3N{<nf}6*I1UrFH3p7crqbJaWC?Dk>N#tFA8{3l>774urd|&qHuy2@}kkp
z{DbS*sTUDWQY_*9%4aI!MM*C*y(mS|W-CoIoIT46yO=3U3jW<J`)fSAB?ajvvhx(U
zm(AgY(+l5Jo68Hg7sLL^DlyW!x}qunmJG!Uj~8CnYD<RC3sn;N$~t!9`X0s_&VUy|
zIW<jC7o;BYBAnp9#pak7WxZ(SHTrfrFJAYeJ{!u5@?KQ%qNW$Knx^s5{)%3_DKWSI
zuvYSd_=Xpig>)NdYnPT$MZ8tL{M!Q6y{O^E<fIG|B1>i>VL7$f>?5qTy{O|wT`#m-
z+3I<5cVc!1d}Ft)sGFmq7op)cre<tO;f)2G2sTZ4`7MPp&An(LN=reloQVOgr6!9S
z7|UhbdC}gBCK{S*=-@?1FDCdg(T}&h=)_8@sHvi}7hSw4=fmqhboHW}7YDpJ=tXxg
z-uB`>FW&d!9WQ#YUv)|w<3&#|7ThrIhz|3jmlwUgyjP#rNAO+2zJmR{=r5$~raTN7
z;Ke{M28lAniw$+`gN3hco1b2$p<+_!f~etMjF7Y7DU9@Dloz9U(3-}72Tb30%FddM
zmHLe1_4>g&p6BJoL{TPrF-6FRHF+m{v1xS<22T}bn&3~3vhMIf6|VgBV!0P9y!g<I
zkGz=9Lrgc%@?y4-8D4zs#V5jNdNJUrm0qT3I_7vW*Nep*S>l~1xWJ1~<7B#dzK~-l
zZH!+ie32KAdK)EtCg-)(i!V6Pgl}4GT&adjvcB|UnHOKN!4IS`Wo)-nB%$|fFIIX{
z=vA@3GOWJw;#)7ilkBU!Snb6cFN!rWuk~V`7wd%|9Aewx#YW+qyf|IQ&H$#Xb?kJJ
za4g)tZ`<s}_g-xAVyhQByx7T6c@5hHw+rsIn5YnUdGY0FE7Kk!KX~z@RDjBEFMbm7
zXF>gFW;}9kebbWG)_q>=_hRZs>!BX0zi>pDGcHdsAM)ZbXB!_JJ{<AlS1)dOag#G!
zUHefl&Uo>s7r%M&yC}y5PYE6uJmJMjA&ln}bEgyhkA!~Ki*sJ^H{E6ShwfQ_amcq!
zzv#tzF)s*GANf3`+N#vQIc!&@UJ}gT(fB2JMe<%1yynGqA+d%z=(@#G@5Ql<^b$V)
z7lXTAB>RxvhkIW9<Hd6?UU+ezQ&vgKW5EYr{OiR-;g1B1jQ{WbKD}!j?*@9}#Zxby
ziHpmn`i?fdFU2(ZjB;KHPZCb^O#V{Y5}YfnQhb09d3?z0gV_g*xY7kveMs}cDm;f^
zas#7q&uZhAg3X69$FmkzFP_tfToTD(>bZUJ)HRl7G3E22fDZ+I$Pib43ET0lu~Ms$
z4~0c6?n4nFMSUpd!yA(K=N`s^njA0=#A2CB`oP`Njs+~4K9ur-gegmiUGOy@N(;GP
zHHj{#4=x}4J_J~}4~h>e%^NB2yk6Yn!{b^OuMaaUwz&<>J~4kBW}?VDwAasM1=$p%
zteOwH&ltIj-pu5z8}gy7&-m>S_8HR%Q^bd;4>2*%S2O+%Co*7DE=zeID){h^5BGhj
z=tCu+@gwd7o}CYseHiS+5Fg(3p^6V}eQ4)HRUfMP(A;OtA=Q1T;X`BLHGQZhq@iGK
zAL{r}my@mRz*EnM`aU%9ft&WM?wQ8jewh919mR=l>)IRnFuJa>i4d`gWG89rLo>-v
z&h3d>h~CnNRz9>A-bRqQ&UQ5~J7~-~?b-4^^zfml4;^{3KD?cX=_I7951kWA7a>!h
zWp(qRyAKT$I|U_2Of2dhsVd3R4z^wr+0TdGLiz~y6`U*8?l1gZUIHHm3LhlM?E2SP
z-%1SIe5em&eHbTKVVDoYg^ciFq>xc;1R>mGjk~LjiHE&z+`1Xh-hL9l*R@aaVS*1E
zKDRMV6f((&$q8j$W7||-pnleAg6|2wFZiIYojSkme8^6I1Rwb@ot?^ukA3*Whh0AW
z;KNKGX8G`y56gX+?ZX`DTA%qaSI7dNvAxVZpRp>8UG7sK=8OKn{b3gRut*eo7YkV;
z$o*tK7qV24@m~n}(uZa7fTu|mSNQO?59@qb&-w%`+(2d}yP^-PB!*?K@nLm>$G4YR
zD^;RvgAW^h*ec#lf|~`u75q-{e>>8A@52^Rn32cb=EHU|<0rC1_|Am#qYt}<U-IE6
zAAa`XcQN+}9v0jyxX*|ELVoe#fRO(k@t~N81bLJrLVlH&JSzM*;qeL_6Xm!MCxo2z
z;j9nmgrD-^v=4vya7N5O1><Kyj34eV5&!n#ybl)=?Q>DYc=_@8%c5NI;i`~pKHL;S
z?{yz;BsjC&^5M3acLeVy%Dg9Lyvzqa{L7hHMP3yTeR$+UiVCQB%xk*KYEr?SU!M4&
zHMBhS;h7J&R@k2V@QRnarS*lFF9q4v>7tmV!k*JaLM5AO%wWla*#&QZVm7O=sJPh4
zl1oLZiXR*0SXslGt|EtuIl~HG-I$W5!m7fiBKOOr{nM>fh&feoccA(0ObpH~MX`jI
zozn8D$WT#SMF|z3|6E9^XV0%<adj*ISty{Qpo&7O@h?MR!J>ji1o=whVnXO8FR2>0
zt^6tiDl%1+Qjx_IQQ=bIR&l(q?KKr;gp?MfvNmdRB)C(>jlMRDOp1tJL60E4J{778
zW{Jm;1XXA%D)SJ0?XQZEoKyuBVHFV-WmS}8Ls@e~Rm4=xew4&SlWEqYB&OF@l$U`2
z=_D1UkZ+rtDhYW*u>5gjq3oL~s;H={qMC@jF4a{usAtSkOeD2b)K=m5Bj86J6?Ij7
zrDC~?dMfIx7_VXi<5e_NF-*m96^&FhR?$I4M-@#}G?f!+qoSFRmV(U%dGr=ShUPSJ
z=do6*@%y5+3Ucm0)>d5Y5|QnN@FmD^spzDlzlwMH{a-~F6@A3jRYf-y@2KdZqPr+>
zC-U-j+wr$2_Y|d<;ErO(>$7_c?^e%PrQA0W-;dRnw=EA4Ww7ADgm+NF%Pd1w3{B{7
zmBt7aBYEPtv(8pGR)h0&MzJT?u<&uP(JIEM#&cm~1;+`}9A3{pQN<(`GgZt|F_~8(
zr<u2iKU6VA_*C}5Z}UzQ{+^2Wg?ymm*pO_DJaoypW6AiBRO80-bQLp%d>lv3_6bX_
zXQzux(`Pg99~qx>K&hCkVxEdmRV4Q={%2L&d|tlSEDKdEQn7&gt(5USvN2IyEUwQ~
zEKy;OrtolM+L@^{hD-OCs`!Fku}spJsys3vNS(?G6<@2ktKy!Dl`6jBDXTcDVwH;3
zs<FQ1Fzds$yDE06oZKvHRjgC7zL#~qip?s%SFu6GMirY>d@K5QD)P-t9aktfV;0o2
zUs+@`f_quFsMw}ryNa#x?7gg9$GAhxoe5=gJ$v$E+u3^dA9zJn>{juUihU~ftN2-}
z!J6z*QT><fOnX&s@mhik@fQ^bR2)=sNX6*-NfYWPHLhkRVIrZ)bVN>vXJqVp`iuED
z6{l7Fp@RH(UMUWC6(__zC3sS>OnnmrqIa#tGb;Y%Tp{{d73Wm^t>Ti3zeHic1vXKF
zcdl)^DE!SXrnhRFE(^b!@Lu7JwAsuo*F?F_v#V_!D7n7<rixo4-WGhvX}TkX1v20t
z756#e`;pI&2P*zm@k&LK9|g->c}wjfTkL7(BYp(1hfFs=QSm~^Qx(rtw5o4>*?VHQ
zJXcY1knzp!rFcn>Jjyirk<D*B@sz`lsXeU8et@a8IlCY2hv#5Q5yA#Hi*6BQK&p^Y
z_3deXSpBg1v8cYCDVLCRKXN9N->O=23(q4+lVKTt<oBbvA0_<gyUSX3wygkfAZ$TF
zKMMI#*blC!Eh0#g^-(IZsF=n4Xq>wg&60j(`ca0tTG{H4wEkTvga59U@*~R+yB`@t
ztgi_cuWl<XWD5^E#Om<F>4(b?H%s%w=QsYp;BkqHRKO!hlj(eYyXxn2Sh*<D4Emw@
z(aVqCe&~LL{Al4vOFzPXMEq#zM<YL?e#HE!?8lpa<61ngZ!hadIX_<aV{yYAOqKj7
zFT8>u75!*h(G=Hb6gC3hNGMhOsQb3HPP{UHRAXDUw^a9|mJsq9e$*8HD&3k{J(Egp
zKOEUiB>ehX*N=Ms|Na%NFQkEBi3aw^4ojQwZH@iLq|`*pZz|YKu(_b;p>cnpl^?DB
z=txDxHi9=A8aGVZ`q56z_JUM8_|fHsanGTX9O!Mq&VsB@7a?5*yZO;Qp|@>dJSzB(
zA3YLEPqu1)V+ZLz>==II_t8jk^<!^8f<eOj`|)lfet?jHe!OUEX0E{!#>gRl3{CK1
zLWT>D@Z<dk#xtR#{21-W7^(kQ-oI*W>@Lm{#`!Ux-6KcFzMj@*yHc;tEI!GP$?VTT
z<O*U6hlwBW1kfXZX@0y%J%C&Ryzj>cejN7Wh#w#N@sS@p{MhNobU$YJvBZzh{KmtK
zANw)ek2%6W5u7PFi<j7C{8VJjT&a@dmTjINpZYPM9Z8hMek>HSh~r4eUZ0(bxtOSY
z?#Exj{OkSL;Kx!wzVPEq4y6|6m25^omih6OAImw|{rFmR2B&?O$^d^a1NRL}TO~UA
z8b4MG-_pQNbFCli{MgsP&MZ$v+33e6Ib7b;*}nDTJK<XeH%rFvIa!^~#(1VJ9H$M9
zyxS7xZx>SMsWI?(`Ef{2hkFtH;Kz@C?Dpd)KYsS(7k;-{ma)f=y?#_0YTnN}_~Gf6
z&E72=O+L_?@gkq2TQ(+!9q{9z#D8DGO7oSq6#t6-)sLfoocH5`^b=n9-~9Mp4tLCt
z<7}BjR^H)9le80loa7Y@*iQNJrypniIPJ$DqMY&L?zt4YYBjWTA4`&RJX3Lz(-rsf
z-q%Gx?l4%&|J#pCeq0uQ#gFTL-0<V7AJ-&l9h1lYWvrCG>BlXJx$OrPdg-E0LcHh4
zKYo}3$QHnTPX2y8_2Ze$E!DH*Uq6VPXCC_TNW{m2PXwutT9f&lLqp70oNWI!cJY0g
z@W#!g0QRpm^yC1t2ap;-jsQ{uMzKr?V9&}Fjtg>g02a|3H8eg`(gMaaxg^#A%-xfR
zg-tYV0i;XJ<5pR8<qjZE0ImSs0ptxJU%>cZpi}@E0q*#hqhJ7q0>&0V`2`CEj8mpr
zIDjGnR2q}@ZbM@W{h|Ss2%u!ZSQ%AJuy_F11{e!MGQ}jB_%fAPGjGz&?v|{8@r0l~
zfKM9QUkjjg0A&Jju)z6NCZ~{7l`_fw^Q}q%o&eqqpi014ALR`o96-0(*2B$hz5vt!
z`~d`{V(a%=^#Hh!L@)qNl(zef&yJ9oRA@#Rz?q?(H6~awfU*IU6aKnj`2hMqwK0IH
zf+(9B8h^M~68?r@Wx+Fd%vA%Z7C;-896<GeF&Q=ppkV+t*z#i56093Q?EvZszyGW8
za)<bvN9u`EU+}tSyvnB$n=6230W=noN|V6<e?MUJ09qyV76G&rUi^~r=7rV?oh7#m
zpuLz~1Lz>6Q^MO($XoxX%+8{834j~au$*pUc2C5=Eu{Fml%4_f3SdV7I|Jw)K%W4X
z1dRXmIbiz+Fe-r20rX?j1@NwPA@-tyLIw!_P}(#ofWg9t1TZ`iGc<r<34Xkxow-H?
zFj5jZw<sSIFm`@(cC$<iU~B-5>Sv7$V0-`*0+<-U<N&4w@W`98^}dy9Qi2b7ku+60
zfUmcSIs@M0M?e4{1n^-1AG6~H@KFHMsWh?75WLYasdl3zb7Kn$ab^Is0{Aq5`K;jt
z^K721kU4@>*sqB5<R~Oe3j$aaz~TTFayEEqp+aP$NzRO)1@L*m_>`=41WN<>B7iRg
zSQfzg0E$hpeHFm+0Jz`LqlWgJt<5U}SQWtP0KN{uYss;a7a{<AgB)~CEpH(*tqFj*
zE`ZrRvaMxnv@|o43e61xYz$x%2U-AErdYQI@SPCy?}cm@<dEDVgxiAAwN3bTL7EhI
z1@J=v4+8j?6G8yH1H6Tc;{p5>z|Z`U?Va{3=O5Pmqtw!Stp_-PG_vm%+$Xr7L!*ZE
z7r`rSEeAQ+_gW7L9u_<zs5i1xKgv<l$iBa+`L_Um=cL!vJno*Ac!JZ~Nn8owY5*q#
zI2FL@0R9NzawE%yfU&;uOaSME{3&==kowa**1r<`JO^ejW7C_90sJjjt$elQODrUS
ziq(=ENa8iU#{S0HZ?p9tuXtYTjR0;2aEskLW}<nU=ib+LCt%!~_}`s}yCOPy+hnu#
zA1V1h$9v(7b)C%**&zc!5PUVmV@|VQT3-l~JQ4C#@R{IqPPUqfE~b|Oyb2&mGMa+O
zE`)lvAd-boeNrqQnG(bqJ|Fg_)f|LHT&Y1=h2%)&N)u9Qm(`X~(u3&S$j)53gUA!a
z{vdt{B5x4+f~X%vgCH`3$R9-Apz(1~fVmW_BM4^@1%oIgX5k=;2T>x3B4RS2Xb{B`
zoWJNx3b!Ye%pgh$&q^p4RuyNi*TgI>SVpk+>Qq+{?jT<08J&b8=ncXr#1s7QNdYwo
ze-K}D*;xG?fgplGlnuhs)128jSqmb>u%Pj2rSn9*#-~6ei1{H)G>BLb-zQ~EXk>gb
z8+F3EOh`G&JEOFTC6o`MLJ$*kq*n~0suWTwh&O`9Fsv+CMet3*t&Qx|m-fh3Er{wt
z)Cl5OBYUkNY740;$OBQV69i4BxXFgCC(Zj|rnO-Zje-~##P}c@2hk*mzCrX0qG=G#
zg6JAFmSr{%qD2rLh0|;qM7soU6+~;{ZGvbUM5ksp1~A=dWV|q?y|_9A@nIoTTz`u(
zB6b$+B1jj9e76Me9>m*0yd!3hAbJMTOL*X(v2$;4;e7;eeqzhr*f>ysF-Hi#8^nMh
z1_~c4$bdmX3>H2_&}26D`C%F+=5WC&H<CsQp*|{z(Za_hl(Fok^NcJLc!7dg6~t<3
z&q+aiz!MZcnZE*p_`8|a*VsNah-pE*7vyT^r1yhJ9g|$yXW3QLvh{erkAj#U#Nr^9
z1TiCskAs*a**_8FHJTN~Om>ys#+Sf2&K8B@+#u%BwZZ&p5DS7>D15#kgBJ;*mx_^h
zgZZ-{J`ZAf5G#UM8bq~T*~Znhd>O=NH7#ER5vZR;a~X5>$^1(2(_<F$uO)llgPALX
z=<rs7%H1sA@Ivn`#3`|UWBZyQ)&{XXh#f(!3t~MpN_W~2#Ks^Z{j)LgnWjxad>1qx
zk7D|kO_X>lYIA~bkz88^w+Z%viJfysZOcy1EqAOx1ySCbzAK39n{7V`{uspWAiDH6
zQ5oFW&X}Kr*dxK@dxO{~{Nu*<&5i8`f;h-AsG)#{LqQx4;$;x8f;bYyuQJ~61#vWp
z-&k@GH-h+`LneqngE$++@t|>M?6e@s2_YvL)7XAWkm4UAo)OHQVWM&_$lqB;#w&v7
z1^*VjAb3&meq;M3A&k5%Bu5iF7l&LGeogSNd`5vcgSeZBycNW4;dc^B+kolPIoW|E
zi2Ff22;yHkujfHL6!KW`k>EwMg_GVB;UrIkcoqbAnIN|}F>a;42qGStq`{;aXOT-V
zn+CH6i-u$|sb|-alHkz57rIeoN)^#6m_sm4Ff=VYy*A<Lf;k24&ZOKL@(9l>c(7T1
zM&=WqA^2TOTS1K<PY7rTYADRgbV}nl8MlTa8j5NtreVlpTPY1$8ZI?67uQfi2zf~j
znF$^(mU_`|Y>{Nw5NTq6O+#r7Wi&W6od3e+5^Nr|I)&6}Vkf7Ut^rN#iUw{`;?dw`
zUs{ug$)`cp@L?O1;<frU5a%?pb9XpRLs<>wH0YYqfe+L-g*4+kf0zdqLLL<o6C5(B
zcxF%IGvaj(<uz2$P*KC^owiX+vnpwLLqjbMwKY`M@TP`IGpyAGt7xbugi2Kn-G`e=
znEnZvh&9AjQ^V~UJYRbq4Rtj%)(~rBz40Kao`(7w8fZAHTBtC-p@xS6QzOZhqe*)E
znW+>Pe~^0nN=h>g&3QTzydFUd4J|d)2%%;Otu(Y|ZFN-C(MCgC4L3C0)X+{tdkyn6
ze9HAdygFXXL>8-|qlULMbkfjS!$1v#G<4C7&-b1hdTHpYp&QRal(#j!qk&)A>1Enk
z+SEhCFJdlhWa%w2{WSE~&__dG4Gf4!GRwQ-9U%C>5}19kC?hqDVpq{HRKqY)m~nWb
z1jdihP_s!I-$6!wv;>UPFh;}JM1k>Rjn^<Cp~R0eS;G{~_@n<5%~(}Fl^ui1jihN}
zQh86q`@%m+C<mL^KVsWPtxVH}%n<yTSl338rOnhZONyN>I7g8BTn$gV7)v+jYgnM+
znuhBd7HU|eVFyn~!(t6fG_2FGUc+Y^KG*nN#rToFRPaj;%QSo;yhh1v)S150uw0Zo
zO^n~~dCXX$A#64HN)6wLYn9*{!PSC8&lFm#;efm+=-w^kNBsuTw`$m^VUzH0HGHRG
zv+$eQjsNt&*RVyy<PLJfSq@hrcg8jepm)3W-&zIoT^bH@>Slk?@S}#^8h(<n{enO9
zDhSylxUf+wv+NU2lAOm_4fTtd2L$sJvmVxPM8gRUCpG-4;i!gV3D<8ze&=*l%&1t=
z6r-xgMJ&<OXopi8PHQ-);V%*Y(D0`ay3VkzB!>K~h>e@t&uh5A$w$LwQ7#JpEx0GE
zfI7%%cBU&Dcc@OkD*BUphSGF+>Z<0pxjxGj)y4&=w>XeB<kgK2^c%fRcQj<zk)mT(
z9@AY7_c%#vxUb;>heH=jl8%2loH-|Jc&_1*hQ}OwTkwP<uIYdG11B`KKNXRLE~Xb6
zUTS#7ekCa$@V_vVj%+%Tbu5<no7Idvz|f8DcUZ}sI?Os|6tr4&r0U3_8&9uT1=9p+
z_Sk2$=|~rIePiQU6(Zl2nM+4*-MF8hN08*7mU;5&$k35rM*$r{9h#1UItuCV>3G&5
zwXlvNI!fy(qob&fVmeCc$kOro30rX;C3KY3v9Ps?W~PWFH=CQTp0JTH*>$|8gRVQx
zO&fp8ibuwS9XgykTsqu36dfMP&anTLbKr!H$*Y6NEUb*G!!NZ82)28aL~+o#;<}EI
zj<61Lu55|u*x1u}#I>AmZ0a5rj0u(%9Ghj^w9NXtT;lRN=1n&4mRHj8hK?&buIi|)
z<4qllcnNe=(NR^$SP8DCbHSvwu8w*-s_Ur1UePJ7reGbxS~_YAq5ktW6EU-*slIMJ
z($YsqUmXo}G}O^ZM`ICN=xCy&sqp4Hwl%dk6aHF16FGB{5Sd!)XeF-JQj<11+UjVh
zqrHx9qIVGNEXeqdLf#VWB)BzSdY6Q^D=RN0cc&uaJ34wMygh_emVjP5dW$(FUpkBJ
zr=!1)Av%V#S^8Pu6&xfuK*vBK)L(TdI9Pb`lQx>ebPQ*|8fP7&V}y>8I!5Uj&6+<;
zqF8sRi78HqagjJq$9NqRbWGIofsPM#<Hyk?!Ks3ibxaXLeaSyb(-QnW4i@3(ni{`W
zKGHE=#~dAVMVuixQ%CFjNgwO@B$4YyQ~Rt0pUnZ%Fja46pC`%!!A}$3`Meg*jFJ~7
zl)e8XEz$8AM;tFAd$NwDI#%hJ-OT=ljy-Q#SMcarmM?|VTqfiz9m|CbZ)T_XwZt%N
zrH*eB{6#jb*0F{oMX|2c@tu%$I@ashAbgYHM#0sM3o?x9TQT35oVHmAmG5<I5zhDV
z(ex;m?K)2CIHh9;&qBv89Y5&!g~Lt9k2-ei*sEioZhVmaB>1y#%$zj$=;$H~z2bjp
z7QAfSvfi)bZpfI!59&Ci<EW0`B-dfVUv(T2vZ9$Ww_hw}d{{93uH(4q<i~{k-pqbN
z$koGHL%Y~c>-a;*1zym9aYje+rfD<#na}I^Q^#2y=S2BSkS@=<q_yW$NV--q{=qre
z(Q;A8-?~Anyk)th<Fas?Pny}U>A22GGK8EV+|Y4T#}ge-b)5g*dabFAf3@G@G+Wzp
zn{yXWO~;Z6=6gEs>v$miAHliXO#kY5sN=DW%84zqJrY73^ddj&z(oE`$8+6ypPe;?
z7dl?*KnUg#UhzT~wqy$#$dn|+6oO-&afg;EIfU#YrU({lZoDYj5;FGnWl9s08ZwTO
zBZQmfQYh9<%g*nC`>I)NqH_Uut`KsEP(5VakjxW8-Vl@!JR#%@AtQuxRST5~p-ST%
z`9mlaLSf+r1Pg|cKF63Fi-eFg(_A8ik|7igp;!o&n%hS>ZErWX7Y~8Ek&JC_&kUhd
z2=)+O3n5DmebQ^WIXGM1zNud|x0AeP$zD2yJ|7qbQh8C#>ImUf!yL{KrW7dP3Snz=
zyPFwvny0ue-Vl5tlx6ioP(#Ktq>!LLgn*D>2)YnWkO9Y<+qoEtBpgCS#He6Q@I7(G
z16~)Ul3;nk3L#V!vUGu&CA<+rWwtFFA!N)s@w`<fpqk+A=JwPUc1H45Cfs<rRtU92
zXck8EFzSR*H-z6qI2J;^5bB38G=yOxGzg)gG)spN8il}D9kmFdrI5xUG!fENu$dqO
znhQ}{*jt5+&DmOq&_+nD7RLKS=iarp<#EmCc7p8%X@1u^e@7lDgiaxJW`l>&H-s)B
zV`pQg?n1hT&`rp;Y1u24#@ivhBW8~fdWO(TICa~$6lUoyCeM_-A5UkHZ2)_t-O^w9
zyMhB_Ch7x27{tCY)I3;lh=e_=mqg|Ctfb)~j0j;-2#Z4)88VhSd>q0jA&d%PbO>WY
z7%Sq3A&d)QJbOh5Q$v^_B7-M|Fj07@ow2Jb(_}FpJvGc}A-tc6d@qD0W3ng~%x(Q3
z1O^OiVLW&6Q3%r|W`^KQ5oacH%@Z<9aCQiD68c<TyBo&gJ{4uY-~z#giI~Hq)0Twr
zne>*;A$%Uf(h$~!uvU~WLRij7;a>_a3*jpvea>gGgMBUh8$p^YLl}JBxcRm!p{y2i
zdxd#jLfI6;`UKw~WTW7>EsPJQZ-svsLN=Sxfxi!73&&Ro+d|kM!Y?6g4`D|LKZWpf
zypRxn6tXLXA40}w&5@SIEj!|F(T_GT%(_Jj-Y;a@6T;pQo>nqyxKF%mhZ}e54uo(p
z9vs4<5Dp7}al;5ZBK+47cnUO`T9zn4{7rQ9D0n=C6Pyymu!M1v(?SUMLwFFv=@9-1
z;YtWsLpa&Oeuh2yE8CwToL^|I*go|v2gue`rgK965<D+>A%u$w@83c$g>X5cto=Rp
zn#`!&Q0_XXl>F)AEan@WLPNO4O0p~R-(;CE?}Wg_ne#~tW32-9d*b~^FmFryzaczi
zYlQHOJuQUCAw1b_<ENFcOWNr1#_!4}A*5V4CcUiX*5@I-3>hCQzLxeEY^Br18niSX
zd3(hPHVjkPc#<w#7|CH|7hXg$r3ir__m5=&(*&z6HH;i#WQAc58*8Z2!pIp$F5y-|
zn_zkvdozrcOS!|y6Gl-H^M;X6NTD!#wX|o1VZLiE7)E|EsT2^xT>myO@-h{c_#%RT
z<uVluqj(r4#H2S<NJ+uaMPsp6DdF9JNqH@d(qV+c2!~N73`ZCNaXG_q3Gs*F7Q$R!
zAxapYgtB6rjk-@vRq9ETi4_its3jtGA@ya!SR{<HVU!akDi{kR?s`3p@?lgDqed7N
z#8o+rH^ZnHMkQW?{Kon6MBa#(cF|fz2*s*G9!i5$6V8UJ8AdIZ97cmMYIE`rqn^0f
zM2ulMb?Ie;$XPIN!!R0!(IinO&!};N7rkq3n&6XL+FOLtGK{aoSQ$pEFj|MPn3qzq
zwh5zc7$1i5Q5fyQXdgzGFuI0~KkGY$vF>mhcU<Wh##^Fv3Zt`-K-ClmuoD*GU+Q6u
z8)ADmi~(VE5994H-U*`zPo%%KuVBwGdJE|#NPWrs);_{XxP*^NzcBhI6q*CW7!=0n
zFvf&2I1E0&HZ+W3LWT(TES@|(j1j^|364zY41P4-%m9+HtXmk9!<Z7r_%J4fF)@ru
ziAct1&r=xo--G<aY*WLS7RLKwd=SQai7*Cy_{vO-ml-F+`rD?nS$MZUY^<xCA^5T2
zCv4BhNi$j0<0QIfvl&}j=Y%nrBVws-UKk66d@49!kotm__Js+)D2xp)?G$-|mW1(H
z7@vo+RIb-of?o)JDY#6Kk%2vhh|77=MTwi=gt00NYXr6kR)?`BjGx2U6UJKBDvX^R
zx$^Y-dLf$yH-xcK$R@#W!}w0f(U$i6EsbZ2zYk-JC|kqWA%x;KA=?FisA0@hFP~=H
zmGJ%$#*YcUJB*)%*WYi1?PZS&<7yb!!q^|iFJYVu<F7CdumQ_ikMJslaZotTLtz{i
zp1YN?xZ-FSzj1~S;}pls$En=A^7k-~g>jsnyqAevR-OoB_-t#{)O03pVtG1@Kf*X0
zHuk+_IwR!IFz98Nsiq;)B<GbqFW2{y;Ds<QhVi%XLappf3}Ct}$`wHdTo2<$7|+6Z
z9>&cuZiVq6jDN#OYHht8#yug$T3hdgaW}!~`X`M02_>#S6fa$mglu|{ME!9XPr`T_
zM&(xa+P!V`wr*vA5yne)n~s*$2wpKbf|Ljlfhhw13(u4+B%5IQYUb<_Fp<z@7SWP$
z#bf9l)5@MhFimh?D|>nbIU`Ua@I;U+g4_|j7D4F<9-Kg)2=YddkKS3<KkH{@M37(f
z%m@lZP%wfL5lp^iE)+rG2%b(WP%MHX5fsgve*Dwaq7iIpWhXE2Nr8t$ti{<&r>8!t
zX5piAFHTrXMnFVPQ>h4F#+sfLft~efXXZa~Ct4ZH3-i~om5Jc9QC3F;vrAjJ<*%zr
znll1d1jD-~yCe8(g7M-EBENxnBZ$(aSbY(w5%?nrM4*d8F(^c1%n0N6EZ@@|S3;tP
zBZwp-Pt`ZagqKYym%CZYM^GVxol)$HqGAM<A~+hsZxOr^LFEVzM~trWW&~9t=n_HK
z2&zU<ErNy-G>V{l#902sR5yYe5!4j3mS7#h+Jf;-qT*ODg8CvdSA&GNaRf~w#;m*S
zXhzcrno0FKN6?%%|An^|Y$@0}f>uK6T8)>FGqs5z&f7)MK7tP7eM_*TAY<;gvUd{B
z4ZCQbuW0Kv&)O}5?h$N>U~2?#NAOO>c(`d<1U(|?8Nn<udqvPYf=TQN5%h_mFRx<+
zV<YG%UdE4zpnrnDD`Y?f1BDDq=z}8|62VY0hY1cByp%oparXcA*&Zp%s0jAwH;s;9
zZY2{5%O4lP_y{J5cVJ5LL?P7a<$YH^T}3{H73*U8B*M3v8l_DWd@q9cg?u15BZ3cw
zd=$ZSAuNH}d7zKQBw^l}!dcqjl;qhF%wbI;m?z>Ff}cjPL<ocD3t14s!Uz@#Uo6O?
z;-!5i=I4TpUn=KC@}(&8qkI*?@(5OlvMLezbp$Jgf0IzOm-$vluqJ}F5v+?~ljv*^
z)^ok^4T2j5<46Bi_;-Rl=w>0`C+fg2vD+fp#r{^^yq)9y2zCgP>=d$MSn>}M{20M*
z83lVI*cZW1!heon54*$><Bl{_rRmxCNAQcd4hbHJ;Ght?*s+QKi##Ga&0jfbv^Hkr
z-y=B2VHHL7D2_*Pg0n{iFC#b^!Kn!DMet7qrz7|yg3A$Hp}EL>M)17gpMqy2I46YO
zzant7{_jnc7b3Wr(EpC$l5kbLSA}1T;JOfQQq8<KBDkH1zbWKa1g#UL-4W$3=O1|!
z#C<Uz2|f_~SMZ@AOPhGdctOTvF`sZ274l5*c_L;@r~I!XNQxpBMcJrvOWzblt|)Rx
zku8ekD6&Vn<iM5^1)^wQ(L}yrT&6jS98si2VWD?iW~v~`(AM_F<?Yre(xb+uA-6>h
zjJJQzgqSCayit^lB9j@XoAX6cIEo^|Gor{JMS&;^idjf-ll*P8W2o_8Pf<~d3(_nm
zWMh#e@)E*%1F%#SSy8A__@l5#@mdt_C=~IQj-pHyjwqgIH!Tbsw+fw6xT1V%vSn6l
z<E|jnj)PWuNjy<_#pRQ{6xU14zSj0Y)cDIok0Kbwwbph`kc4L%iXt3EB#K5bMJ24+
zD+{;hYIMlRQZ9<uqbMIWmdSA!pykQwOcX2dBOr<<$8D9^@(ZnRMsaMQ^$o$wg1jY5
zy^46N@^sc_(yS3hO}5n$EQ+F56t$yxCyE|X)QO^Q6m6qu7e&1&>PPvvBU(h!Ac`;3
zZ4FtsC<dgblQT7rqG=S(c=V{TPw$*TrYD8D;h2>Qy;QjA<@C&qmQnu4ZDF-rN#$D$
zwu!>r#!j(4JA>@H)-{R_3Eq)cJc>?Yb{6a+Saz_nIKT6T;-9s%b(3DvUGQx|@2jMq
zQS^#pLKG93s@r-;@h&SYyiXK;g;4JoMgIg>+t>$2F(`^rQH+jaa1=v$Wv`};U^_H2
zwQgh@8pW`v@uuAtjZDL%;0vrHZR`ba+eY##@3T@Qj)`*3p><poe+{=Wjb%fXGf^2Y
zq=E2BQA}n-MZtHMOo?J@6tkju_JMU;6z@gxQ54hVEZ!IVKyafx3h|+Y#mB;oC_WY!
zP3HY1ikVTI`M~%B$wV?ciaAltjbdIDpGqV}mb2+a5(!iNHueQkoStT7TF6e`!9=n+
ziX~Be7RBdLY>wi4j_BGJ`;XS8QGCIx8O5?FHnPG^)4qygc@*D7u_}rc9CRHmOkWEb
zakUir$|&Mwbrfr&*bwEzk46}AT@>p%hz_U5bCEDHm^#U(C`v8Q^Q|DscS3r!u|KYt
zz9q`#6L!8eAmumf)~K;t#Wun1f;%`5JkF%}Lli&qs>RSQhTT#8#1dl2is9!d_C#@+
z9WRQ#QS6K24>lUFX%xRiaf+=G#epae^3wcaI~m2HC=N$adZ+belI=(ozee#}6u(DN
zIVJt5Ae)+;`Y~zY<58RtLWL>rV$ACstar!d*O0!hjh!oM`gF7M8`Pg1H79Uh@T}lD
zb{iqo<6E^~h~i>G`8$eB!WWs77;u#{2FFeemKcWAuw7>hMDaL^8$6w+=9^L6isE(@
zcf@=kcvtX#6!)U|M|i8TsZ5NgLS*_^$U~lZ8+*^E`M7Px6FH-oQ9NZ+T*;vFjI$p*
zMi~p!3x4qZU?o}I+V(1nq!>&wWQ!p=hLo7m6)Qd{kUfTf+ZZ!jrTUpfCL~;`G31D$
zn3!oXScT+^!4^Y$49~|F&lAI|dO30m<`QJ<G3Ab7dvEKFM@boN?RjG$ve*pCo<D{H
zF%*oUPz*&yDV)F}LiW_lWMVu`x{8ZfLa?M@rr_=c#{Vz&7+#AZ8bd5*T(8nGC^2|q
zC?lprkh)WdD+afagXzX4X7Y-u#o$XsszUrR1cU?=djDZoJ;6gUgcCdxGaf@=QDtK&
z7eg)4Ul*(<SU!ddLMjTr8ABx@%<@JIl@okjZlg+7#H<=K_Gq1aH>tXqH4-s3h1@nL
z)sCT#@VYTHjG<8s^~9_%*g$Y<K4Vu{rp7TekD)~jO+;@RLo*>PhhAq}<C%+=F|>|*
zPoR~MvUv<|8{sYMncK(EfoE41wacO-+dqcuG2Dou6MHzP`WU*zj2lNgtJ=E8&@F~#
zF?<z6_ZZ%e;k_8%kKvsddc-gyhLJJ!jG<QygE=%}=p93!7~YLxKn#6(fl6BX#qj^A
zx(+BQimp2>>}6m8Neh@jcSj6}D5&7hbWhGRAc%@e&N(VcB#MGal8g$HgCIc#lnf#{
zDToO~Kg>B`MEP&urak`W)Vb%@tyizAUWMuI>75-Q5^U|gY}2Lx{nV|sxAE0h>A+$P
zD#n+~FX=-MUOrUD!-S6tN4CE7+anK^EHOgLm|{F$%=fM_su-iC&=nmnmgQI}<BBo9
z7*7=A$zrUNe%aktD^EH06GTcpVu`zcESgk|$;EiS81srTr5IC-F|!!6Wb=%0x^P-C
z4qdc<$z+DI2jqFSIK^j+F{c=Fm2J_m0u#mOoYGS=o?ncGQeJTM1tR=2t3}0FT#O~k
zE)|A5d#1PY{H=;Bim{UOQjGn@c(E9(it&0eHWy=cF<vUh2HCF>t}n*R#aPRMD|>Yt
z?`>@^#qgD4yeg3$yZOP=wU$~xII~g8reeItquX2l{o|K29SvH)_p+rJ+l#TI7+ZM=
z6oWGoYvW~N5!23M?B=nr>brz(RkVlae=+tJqwOFoR!kr4Dc$C&G9(9zaj+Qg6yp>l
zS&YM~^|tUxF^-EIEygjC$K>ts!YXem%VlGGJE81J4!o1)^W9>+SBy`J@jvPB7vsZX
zoEHB;IK7ScOffzx#@S+gT#VU2mh0Nxsz@xHe5r>AR@b0%t{9&c<MU#Cs*0~UBmIJ_
zRLaga-hLxXr}|j6zA47H#i-;%WgosP#`nc2<wL#?Kd=L_au<rNKT7(s7(a1N4;B4f
zj9-iKoA@un^Fp3`B)=EqFJ=EI#-BP8StWJGsz{{rcQO8vevxOs&pOzdTp}fWm=?6I
zMoKE%x@RdW{KxC?q4C)2e1KEh2e%Jpd?@Qf1s^W+;p;Zm8Se3+oT{*>ybLI^sG>x2
zTV!b!AFBFL=tGeY1wK^s;aVT=YwNA<Lk%B-ZM|3faJdgxsNz*VTuI*6Ya{)TkDTL*
zddk=IVTP|vEg{J@KI?5dlJ@6H^HGD>hthwz>iTet57+rn+Xw!?*XxBh32zYIDD2eM
z%hEbN+^p>JRyCNd=fkZ&+~q^D54ZVH--kP$u{7}Eb|3EWVN6?V>`XI6mQ^a*(1%9s
zlCn#Mo7#GP9G4FvAN)QTKA4PKVcCEW7u$MIxAi8w7aiMY{TG|C4-p>{J|umJ`VjLW
z?n9+;`77Fa?`Y?3+|Fw2!;z&Yw)3WZ`1I-0CBH}7hqdjz{EE}_Y3cp#ygAO!yJ+b{
zE0M-NH1XkX@utH2eQ4&xJ>si-m1!=*D))-qC;Ysfw}qoW;KPFsf5?Y%-K-0Erq(`m
z@}aX2ZB*J;*iP8qvG3qRNAYDvSJ}0?DBH`2u8vJNAG(Y85cU*SY;QfU>+Rz&+@i0P
zhkbZNq@S?AaDeb=^xA<ULxqEU80^CkaXPu?c=<c!jr^<Q<sS24IHQ_FB8L$^jP&8#
zIKGQxln<kQxG8`-0gUnCaUaq<@s5G9K0M*WUO)Ev@g#@OwdzNqALD&^%7-&PeB{Ff
zAD;H%Ew1^AWheSD$%hp_tn^{B4^t#A@nI_GdMlSJX8Q1qR?#%!bm42aS}%;v@?o|Q
z^L=>1hdDl!SX%I`56_9r^<l^MJSxxoFi#4zwnEV+3w&7U!y?CWu@C(!RXJ3q?5^#3
zTes(tvwKT@Sf(zKFZZEh&wP>>eOTqg9v|NHVYLr0`LI*HTEnH~!zLeI^I;tqQZ4t(
zKD^??dU0mw&CVyjs_X`#t!!i@8yCDc+5Ni2Ek0}&*(|(mc>XpYwsSAEb``gF(F4g2
z6_Lk(D%`~(6uOyqi@f2(!5uDU_cHhs+;s-K5Bso>A$p=<zYho0)q_495@8sN*6Qod
zwXP#R{Pla8qa5Aoys7;Pj&T<H6&x4R>}?-T_;8YQ+M>$ebE{0=R{0&SvC-~RKD_J0
zd-C?74|R51yZe0~K9ExH6YCN2;or)f_E|V`Yvr>(e9Xhp504+8`0zg;{_x>XAI@=y
za&_@A_u(^k_)+)QKKwnm^ylJV2q}Ik@)gg7_FiV!q3k!@Q|-O~RCa&w!;yMLzxZ(8
zhf-?_e-QpC{K<!(MK-?TVG-Z1{FNu_cZF>SyMOcHotkBbwD<n54wL-l!v$^!KW?f}
z=KK#={H>^#^y43{NgwjcmK{*hJ$qDHmmekk$Wt2s37BGk7c%Un{MK~j`vH;CLMj!j
zdCU0m*10lcw&Bhp1>q|0a(-0yqlzEp{a}`<f*+TOR}@wf{#fi{QB^<M9B^Ibx5E2j
zzp@2>RP&>{AC2;>*YIQD<7KH|?#C5Ut`yE~?`5LF)v8rfSW8IbYy7zGytR*t{P6lQ
z#gC~}{HX26V}1<x<9a`C@S}+zcl&W8qv40&55o`ckve|d;zvC{ZdSIgaLgn5EV@;k
zq>&%D`BC4G27cTwv7zt|KkgLyY+?b;n6ee!MCy0>QS67$@jwIHr|Cz)kBs!7A0a;y
zj!jr3DvbDXw2RdTrkIqtAASERw3VbEDT!&J-Dp;v204+&e%w3VvTy1~Ge250=F;!+
zqlF(2_|aV1d)3f=PTl+c{Poc?to5LywDRL2hqv@&!?;Vm;uzcd(aw*4e)RXFJ?FxY
z?tb*}qa$&vhfccs(aDd_e!Th7<;=35T{!l!R*1UE=k-f!k~8&GwvVuvus09eIhUf^
z*N+3^t#${fXrS<6;Uhv8o%yZuAU_5xJH(HnempA9o-~=1&qSMHe$b3$go>Wv!S2UM
z@lk$^_T%ODUY0VA@#AsnV}(>gFM7s_Pjr;=emv#pH;>jTdfHhD<P7^H$7Zr0-yC*P
ze8!Jyek}B3k)Qt&65(B#>&LTx%n)aGrpPQmW{b>m^tOjxEWNy~^>eS!`SH9T^Zc0a
zw-hG3=mljLaK<;~z0;!PVn3Eh+3m+tKbCQ;PI7JYW4RwI{8-OnY9p`o<0U_?^tfMi
z_Vp@1Ry+Jid+!=<=MG+`wIb_;?8Ym8yvl*hFTACLcY_}r{dmof*ZtVUEkDYAbWXvs
zVeaJmJo3$cZ1H2ObY{~MS!9=PXIp;kbapX2ze}8ituVde#~yl~;dxWIv8?;|9{KyZ
z82lJuSRc~|8E0-N13?3a{W#)BEd!B^=cpgY{QO;acb<Xc9KIia`K`0@Z9h)<@ueSM
z`EinpA7}me*pE|wyz9q@ew_B>JwM)8H$L!VNC)e>i%8KXXZ-lcDYZqKvFH;&{wMN<
zALsn|)Q`{n_*~vtYTMZM|7IzE&E?_8FMgc&<6A$z^Wz6Uev}_$MAh%PCVww;;MTk@
zz1=_g@j<vs^AS~l<`Go6?A6b^z8>oSwQ1h3oRnsH6`JM!$rV`5{hJ@Z`|$?@dyAX@
zVr<BTGH+cdQ?YTL^;1;*U&iwMH_v}RE{eMhlrX^g`eds0(K-C4Jo1tTN*TyE00T7)
zTyCJW0k?sQ1}YgSW5D0Hpqzp72Fe=n7^vGfpNZlP!U_g1lZ`D>w@GCKRSguVsLFo~
zsu`%RtX<vqbA^<vgjfE@_-b+5)O5sa3|woV&_I!azx%q24R{S)XP~};1_o*yxZXfL
z1BtD;!N83MZWh1EKpl~p^YiRP1CqKD$!{@G>(K&|TOH*#!!n?9yOf5)JDk!xMQnpc
z2JUinDmQHK_zV#JLPKZ@myF5pKEWL_kTj4o@aF(`m<!mz$pO}Hltm3|X~l$bVM53~
zo;Hv%@Q{I)2C@cnjQJ?{y{gz){B8qH4DbW`t?AZoVrf$Y%~V8wkAddmJVThh&%phh
z=(YtdgbxU9g9jb6Rt8#g0kp~MX<)kcMH>Tc4YV_`qe<yb209yPukLj)(9yuA4qhAC
zdKUv-4RlwjeUaAfKb!_VoNO=K!)Ek0(8oYuW&0WE?-;PU?crga0FM|LXkd_m!Cc85
zy+;iUF)-A?90PL={;(&88F-u*^9CNHIIh(D!^@5|KpbvhgnWLo%Ub!PB#vgpWJYoB
zxKd0{7<kga(*`CQ7$^IugyV%YU|qVM;AAHmn9TSXm|<WFmuT6l(+o^idd9%%I#t*-
z)2AK0wm8$kECaLEx{cIr8yY`r;5h@Y8rWdqc?0tdtTgbVf%yhrFtEhHQUePNEHtpl
zz+zQo&)FY)q_Z^yc5<14<?7)IjgI=48XyV#zskUBm997Nl7Te_)*4vH04iK`MPs^U
zuc$D+Y~U67u^XbYk<)G94Fh`&yk_8a1KYVO3~V;A#lThr+vJUH+3k{Wn5<5+)4(nR
zyVU^>nK~T~D_@exfV^p7uYp4<-DhCGfdd8(%7zC2cIjV!*uathUwTaIgdY~iMcxv=
zZQukqi+ID1UUC|oGVrc}_ZUXT*2Gd19~k)1Km`+*nK;dbv;*H8_<@JsTb0ik_{hLn
z10Ngs#K5-(R&B@s44gCYxq&a}KkMOz^rohsPZ^x1p3j8Cms*?gOAY5Mp*hS7!q?*8
z@Z5OZ-L0edm5k>*1NZhXJE5cZM*}|@_|3rY27YFEmw1@Y8~8=M<=i}GfBg^tLz|a-
z*<<2Q1Ai%dfxE**o{7H={3GR}_O;8zgE|U`tWwfMDHCNl-cjy+6EIQQgj+ULm}q9B
zP0Gr$xx{kjrE8M%Cc3W6qqmB-V&V#sO2Wz}syLQaO%#}@rfhY&s$pI_m+byrY2qpq
z_fRx(wTYT0ZZ~m<iCQMEF>!;58%<nmT8HFyCTg3=ALK4HQDnkvVn;_Wvn)zH<eE3D
z;Chu7toKkUwa%J_n^du`u#SnFMS>TqwwsZ6i-~&5-fE)02<>k(!O~wkdTG!=BKe(m
zEfXOV4NWvMahHi=6NU*k%33}d_!-!Bc~<v&S?@5I9Qb+<I~L&Rj-bl5RVao{Bu%7D
zL`+0gD`p}t(pD`dOlvG`l*VZj8521ZjU5AuS+&AWHZgIxiKZr+sgxbIhfF^-V`BgB
zHF2MbM@$SfaleTcCVH6YY2pD+w`z4V@sNp@idzR0txU8w(Oy00K-!pSYoZ<Ju9FpK
z-bLP2ql!)b9cD-Mhee%Dbdk@lCc25(edsPud-k~(BR0HbKPkOU^ij0?auKe}V|?tM
zbNKyD4E?O?022?(k`-Bfkcq)2#+!J`#1QEtOpK(ZiAPNg(-0mrF<eD-!qyoO27#j>
zA7x^UiN{Th{*S>}6Hk~JCuLSwYu26=XLFpgvO}xS9FjM|#M35bo0wx_qKQc+rkR*7
zv&kl=n3yWg_&=jiuxbBe?y+GHoy;&X)5I(p&^ZTqVQt=lZu#`g@y<2ztcm$1U!}lv
zCZ1<-WXW#Rj4`1l-Lm2W6AMjnRV?CkNU>MiVrR9mtz{;boA}+tA0}3qSZU%b6JMKn
z(ZnhfZ<^R^Vzr5vOl;@IF|o$PS`!<&6rXXgGf}swh$r4FCf19;ESxwqpZfCN?pNu&
zw|j$d-6U6)H?YaXYbIVdvDpM~`k1zgY!ULdj><OEy1ygY$pc}sbt6;woae4i-d!ek
zv)x;)>(w_j<UPXJptAc+>=!?6;(&>RCf+kqv5xzYiNn%QnBeEs5fjIhWzkU)ipNd7
zW#Z#qE{bo<jAZ!uGAB*Eqb!>{W#V1g(~MQ9Ful)D0f`?vK3R0e#78F1a({L5o-^?&
zJ=2K{{--Y4)rp_6Z~fip`@6po`CRz%8W)u>O%QJzo%fB2JJ)-9OfDF+-6G$b_|C-l
z5`W;#nh0DhL;Xh+KS}&qXp84f{Ayyr)coH}*gE-;sri4J_=`t(0A&K8=L=ln+fg!r
zzq!pP7yKh6xoE;A1M(69<OQ()k390JdDUrOicdthBVPz%=>Sel$){L008aoF1E>_h
zn#~^nCwb)pC?BvQRzb>T0rc(Uovv}Q)VHFra=^MHE09f<0IG^i>13T|)dHv<K#c${
z58&zmY6j3|z2}O6HSisiTvv)*C40t!_O$}ICID{$*9CCx^?BFIpfG?J#$Gz#ie$XB
zWtG|@ta3vD*E=G!H#$0-xH*8j0lXT*h7fKEpdR}lz}f(A4dAu_f&qjAs2@Os08BO%
z;J>MLGXlih1GpoAI|Jb88U}Dz0L1|;>Evw`z_Xh@6nzQ>N9~sl37a<5G=oeJ$2VK^
z&Yc(zAQHf^03Hh<8bB<7`vSP1(cX%90F47^62Q0#u0+6kbdU@n6+k)w_p*YFkZ#Gd
z0pye=KitX7x_1ZAEP#9Hvui=q0DkP`W%Z&hC@597xm?{V?A*=O;ElW%0Xz`EkN}2q
zrUH0~BMqQW04)P(6+o8&x(3ji`c|~l5ZZ_{+g9Z5wXXKm1Lzn)C-$(jx3kO^w06<v
z;chM}>}NN7_`>c&KAoUGq_ekY0KEd%!wP0&6J5N7=&K0up0r;8{R0@F-f{?oL>>;{
zkpKpYzc$mu#G=8<c0BC*?sX4GN<ZhPxE@sm7?9xsjNt49@LT{R0~p0s9l+xOj1FMB
z9-gdw+VyqKvSYSkYyeLLFd=}a)rTjA3p!f?9H%D6bEJn|PYEeb3}8|Kb5t~$^EKCM
zeM$h`R_2jU4d59~&9ne!1Ta%((=~j~)GU$N0g%uYr_Y|yxyr6@Zyk@%2QV*y<pHeV
z@|b9aXufK_AY2f@!T=WWTa4XUs#=S=6ggjAt;a|48}q0y3xF{pVRj`aSNE8!19&lj
zRROg9tIRjgdR|=QS)D5JQUJ+T1usvmI{SmdbvzT;^B~Fu@p1sK1h6lF{oF4M9m;JD
zU|Rqi#F^bFvPt+_0Ixgx<^Z;c_t<9D+RmM>=T~p4t2=}{g}VaSEy8ZUA+jfc1vM@`
z>DsG`ygNR?eYf6oD1gHO9F%819irzW0UQnBw*Y<*;8+0119&fh_qnJPC0;G?Bl2xd
zW#H0h<;eiv3E-4U-*rU$Vu_X?1n^-1UkC6_0H*^u6X3tzc7H1TNcc$rXGJ~^z&Pq+
z={Hl{|C4e~_<m<E#m@rxJb*74)g2yYzZ8kd{wtZ4=;HmBvlGBoi>>Q<+I%nlXW<Xr
zxdHsd^I@v{nl9dYFIWalzXWhTfL{a1bnzBFV-->SLt~k++LIr|p8@<8u%1s|;MpFu
z$ln3{6Tn4@C8SVviTJiuu}Mi~O9^LBw;r4#h|)ppY%dsFwp<JMtsj>u8-yo_9YO32
zqFfN=gQy+E^+7y)-d!PxDnV2gzf4#$h)SwX50ynu9?B~SqFNAzLF5*Dx^(eY55m{p
zIv#5Tad{9|1aV~$1GiMJ6~t9RTpdJBWvP5tJCFE32d@d@+93YTk`x88`!Kxh-uArf
zg4VZb{348_xFLuegLsw3yKqwwb%J;-h~Yup97Nq9ng?-j5Vr(TFNmycZVlqLApAiX
zLDUbTK@fKa(J+YHRZ1tWrTN|V;*KDQ%r*+*t{{qosCdL>4s}y!qV5y!J>nuag9ro>
z4<Zpn(D4%y2?ded?g<BBF89!L)G3VxVb@JcNjW;j;a$AxATlx_r~h0Kjb+e8*er;<
z9s8z1tHZRpCy2pa3tH^<kl&}$Zb5Vp;{G671o42BRzb8Dc~JO}u%*!MOq(D&2GJ?V
zH-ynHi1sS#pdrvL8{$}O%g#Y``A@~J|KUA?=o!Qy_D5o`AbJPUN8Ije-yr%2F+fT`
zIj8=xvIB*W2<;Z_Mu$il=IBF39#x3gCEIdD5F>+_5yZ?OM#<pGAjSnTT6~OC_i?p2
zHi##J*fy-H-KFtCJSBsvK}-;t?ASjoGBJorBDOtSoZ>{D{23KZ3u3wxD@JKn5VM1L
zQAKltm>a~xAQo}&1o522dBW#~wEx%hd?_yo7dWMhgIE&8vLKdASt?`|dpcGqYsX=w
zQ-zUP6~yWwUJ7DO5bLC`bt>A%M5gup6mUGe;uvfY*(lr;#A`vkF1}5;IfyMmOb!*<
z9=39dcUcp$ojZDe-i`AtzKeS{h#Nw<F@!gQ*b@XoC>_F^oVXx9p`Rf31+hPf(~SQf
z90=l|oWH|kDu}~Dyshk!AdUucJcze~I2PoWIC(^-4&%zQ6{4LbKOy^*!dXkKKAZ~T
z-5}lz;(du93Quh;$)XR$^A_bZF?&XRU^hMzIV=1)2=`vhe4yZ*vR?=BjmW3M&w}_|
zgtfj9`7(&F9Oe89&$mH*7sT&D{1L?WLHwYipM^gL@snfOY`<&FK^L9;62y6l-%l_2
zHHhED-!A7K^*{kjnf{dG3gIuO?u8)!cKAO*Ty*#>Ur~vWRV7bIQZj^6;`xrk5V=Dr
z6T-D26oybX1WyPxLbyDHav_utp;8EyL#Pn47RhBoMx$Rz>(HyH>`O*bl@O|OPP=%k
zh4_uhrS(vt()nGy)T^tszEN~V2v>#>A5?Hn2v>!0bqF<OMsM@OMN8Wh{2nf<6~YrM
zJ?!oLBUV5ft;s72@#OJ*-NnnSSNu9*Z6WJkFDJCQDTF$_+7F>#2*=mtv8y+SP*;P!
z(8bI2#tP4^A>0<ikPwE3P(OqQAv_SmgCX1=!W|(bLr8^iX9x{L2!s#}p-~8T$-fyw
zaR@$fd(-*FjZ3Xx+KKiq4uufrNL9oh(mvwwXb3Tf(>M{bN=dj|(;;L+xF>|>A!KFK
z#IekYG`5CpS<>g-AvASLo5=~qd!@8+^!q}%U)=7M-IIqxXeqI82(3bB9YUuNI!kF2
zLI;tyLfW?rp}iWlJ#=(*JKH6M9#XnGdN+~oPJeoa&?|&|efH5??-2UPzz$%)5c-EO
zz^VI)$ix3J7$`nSIN0&|Xb8hXm>a^gAv~s{Q6Y>L86HB#3hoghj8xWcWlRW<hcF?8
zr$ZRaC3o0b%;UMtWb-5^eY<Cz@ZTssr6Oi0hA=6F86nJ+GMWC5xTc9u31Mmo&p4L!
zN&D%_+Wf#>E*j60GFv!DX!q*55S|ZVc?c^)m>0tQ5Eh59L<TQ}uu$ZVAQp)1-|bl>
zV)t;V_%fm07LjccSB9`g`isI<!qp1hOHKgkWUW(oT?p$#cv(|yyL!dp8$;L>!iQ0u
zj^ectUS|L!m>9w45VnMHER5q}Yz<)>*FYFO!`L3eju5JcQ6r3<A?ym_pAasFu$zZ}
z2<JlhG=x1o3PLy)!n^9g-Vojj;q4Iig|I(_10fuwXQyw6M2?1VID~3ly+?%XBsr(d
z4#jb2P$!&P?}(ff#=2UUPYn2bA-pf;YzQBSoDs70!w^n8oR%Mn+s;|~G0!wA5?N~N
zpM~(blwU*mB7`qP_%4L+rF<p)num!#T<GDO5WfBY)qha-M<>p-`6+~-L-@rR%Xt}4
zXLG-W@Oub<NMZI*$JJks&4m#Dc1o=(VU!4?To~oU$O~KNKZGTP%$5ox-{Dgh6qFWs
zhfzkPLsxIvFg#(9EKp(<rV3$HmceCC-HIZW!iWyHKAWn9QB_Jo7}Xq`!jje*e)fgD
z%fq-LjMiba3FFEzt_mX^Mkb7_!>Ad?onbT#qgEK#gmFt4^}@I|jKZ+BPiqT{gkB+o
zz}depY)vZ-t`FmeFm6=Q&BB|6b%Zq7GsikD>ngiP>*3ZgZV%&*Fm97r-?3~EwgOIL
zChjJiHwxn}8N|XU4#OuN4Z|OXAs!Z*VT8igNfHPnDDv-Wp&zD*%xs@Lf<l{0#-*^W
z1nnK3a{7=BBNxWKVcZu+W0l@5Y{H&9_YO^+TFt_^N4&YvZiSxj52K}H(?aBdFdh_n
z$kA=%R?4!^ZNnHm%H1`LZeg?wqrLPF!cLmjj>Ohh<U5D)wc^=DrR3eYY&L_hx;?Vb
zGp4omG^1A-y~7w6#`rM$gz?o9&)_hIgwZ#Qeqns@K(+p1JR-6sS~MVxhsCKMUy?t)
zynA36uPrVd6h@bB`4oqS@u->@qn->Cju1X394;KGOR16KqlBZm_MWj;>Ep_d6+R(+
zQpgK1mOd56gfP~J@p2eXhcPjX=fZeCj7eck));4mF(r(t;?srCgfUHo0Xd-s$#_<<
z?+S;yXNEB=jM-t#aco#L*Wu4PYj|Fm*FRV#{RQEYFqVd~AdH2|E)v=^wOF;tmxZxB
zjFl?#?#^QeR{Y28MVZ-qWVQ5{!dMf=T5%fN-qtx)UJ2vXFy3S>DI3Dr9L5&$jbUu!
zM2Np0=3hLy{yl!_XRGv`VQk|^fL8AgXAScX`oRkBU198&P0Q7JZ-}tg9_<kt>~oaE
zBKyNQAaYO*(ejY8c5jb_aa375!f%D~b{KUdxFupOyc1!RjG$BmC&PFrj8kE}8^)Jh
zbz!`xS|5gSTI78$v;VkdD`&#^RLVzToDJh+aq6F_pH}ORa!$k!>}TSiv#T<rJ@v1{
z_$G{B!Z@$eZ^QV>sry|R--q!757=(j2NTnePOQj(4qI0*Z0pxBep8i;!r#OA)A8_!
zrj^EjIm(4F{tn}xfBUIE(7+Y3{Fe~sMJ`P@qm&=PWf4@204kzQX%Tk>WgMlfh$n(_
zBIO;uLIhntwr-ucSt><PHG+bO#VbcpMP$WB&o>8M)gq`KLG1{xkDx{bmq$=5f@>nU
zB7!R;s2M?{ZeFIVM6QllcUZPU!Yui<5fnyHq#}y6q|W4x;5v!cZrx*5WV#`On<A(a
z!Htf6{<FIH*Q#hb+2T~{MR02b4@B@_1h+*{KZ0lku?T)`X5DT~Gm08SaC-!IL~v&W
z4I?lk2t?3_T@@A!?-DYMJ`tAsBQVqui>OlxMi7o5qHM?!snfu&9*-aq!QBxwjUX98
zDuTv}a5{pF!r139Uz01!O3XzpZpVCVYZr@}uxVYyRy=okvk00;aIchmgm-QC+$Se3
zRQ>+QrJHo#sy`U8{5%vv%ZPOpKM_Hz2wF!lFoHo5w27dts`QGWT?Fkp*AaA;(m~i+
z*fD}mB6MZ%0%A8QJsiEe$f*73=_s#GFX+wgDcd)Kha-3-f_@RpLw~lrtY82`vE5@I
zECsu*(~OCq!h<6i62b5YMyT%42!@F~Dzwjm$HZyO2Xw48GJ?@k$VZ8=l`$fZt3~Q#
z9i4G_QqdU472CRCJY#aE>QfQ?(kgF41l{*o*-4BcS4$MJD5gX(HG&FJTo%PM5loBV
zJeN=e(<7J>!ER1g1T!O;6~W2~UW{ON1al%-pyuXkjL${zd<4%*VNdLnZC(WPBX~jk
zlnT?oXY9fV7Rh*V1j{2>5y28=mpUGniLi=&3t&53C2?H@>qS;a@RDP{Mr5sXCcGTM
zD-mpsV4L(;BiI<hrU*7ftW%nYHap4m8n66iz>d8x@}3^}Y!PRKw~OqIU{?e?#Pi>@
zDl)N@$m^Cp(%+8YL<DbgE+W_$!Tt!2N~ghr2o6SYh_mdRkcS!VBd#L~UCZUxwVXY`
zW73aD@RsV@;>if!iQuycK9As31n;Wo6XAOid>Fy$2;Nur1EC$UGZB0g!C5K)_IBE`
zf{&%xp8w~Ro>Nagb)rZ6FCzFZg6|{vk_#z<uVr8l`5UL!w~nhHM1FSkA4Pt0s<1!5
z@Z=flX7%49_&tKsQMjY{LuMD*XcT{n{}sW72>y;>^*ql%5lq?RVj{P(MD$YROGT0A
z@RCt9*6E$^C=lu8D=H&W-qFj7c%mrhD0%a(Wl;L5k`<$<6vdTMTotwc1g3J-I`poH
zqDmB1qbP_XSjtsRwO-$gT9fmtM^Qsre(=%5<xy)kNeZjFdFoyrMa?McN6{c^o#(Zp
z@J4Z+_%*_7qbL+%X_3g0NKx%5u8*RgvNuF=qsYxs+$2&*Nc&2<v~vsVMsbUykL+Mw
z3f>yUZBptVvabDZkK&Ff?u?>g6g&G=<JBfp2_3wRq9~5S7sXvsjEfZUx|HY_4{*Fu
z7~&L75qkTiO+hGXUEhYI7XNXjhdd&sUbrY8MIwslqIf=vWE80=hDGsM6zM23QM6}B
zqsT^)i{im39#SV8N6|EjX5vkvxZ4>^{rT31*F90(7sdS&n+xxa;-!67NLx6T4~TsF
zLLQ5#GqsGOt#~Wp%x>P+QM7S54cdwG1D(91c&{jWN6|^Va}-^o=qlb_*iHD^Udwq8
z@t&OA`JP8t<?#x<kCgtxzCxPy6S=9RYd{naNAZZVJr24Ci42TlSvTvs-(bgnh{#ak
zqfwZftl<xjVnh^AN39RFk-{-iJT5XSiqRrBFUn^r(^zH437-%?$>n#<#iH?1oY{@1
zqL>gx^`(}5fpB6JlcJc+!#|4YsuJ$%n#%J(ilL`#{OfsI6t~LHj3{QxY?g4g&~9Rm
z_}nO-jiS%Oe5Qd5^XEk|KZ;{f9FO9KC>BKVaulybu`r57QLKn!rFPKbD3&rHQ7loG
z1Ak$q=axYQ%a#3mU;+6(+dMBuu_}sn5?6B>aEW#(_+yf_f9pM)x3`;jO%%knLW;bo
zSkHL2wr2U&C^kf~D~jDwY}9h)wbNFSO?(Oz#p{efdG}^6(RF3Eh?7`pGqy#sorl$4
z?BEXKZd#mA&SlSgH<rE;#ZS?qJyE<VZ@ZURH*|ZWI1t6bDE3L@P2YZ=IsdE7qH8-A
z9Ab-$3y(x`Sfo|Q0%niuz@bAn`c@QgNAW)EMsb2<i6?g4<v!^;8O1xwo)W&xoweJ=
zQl|H~kB(cM&y&x7Uzt~ZyyQL;#Ya&rj$ug*XQTKyikoAo8^b4zVHD+Ks1U=sC_ati
zw<vzs41N~HkJgCrc@$qr`7(-cMZU6;O+@jH5*O0BZr<-4{rf0>5dX8AmqlmydVY?g
zsJoXJqWp7)U!pj#<^8L$!ftC`{;;Pwihp?ii*w@s61gDcR~Q!^JwIlhw5}LR#E=(5
z$rwsWvCnWsF=%QYKPDiNmZe49F_aN0>*$^s$~m0DzbuA|F<cu%p~OltFxoX@s2oF;
znDr^J{<gfTBIE@zREwdyvRnZ68le5<F>9Kx5MC*~Du$~?Y6@9eD~4;t|2|>ORLRMC
zMKO3|xK7?UakXO@)utfT-MWXmK871&xG{!C-Mvj8a&0Vj-6XR*F)&eNXKsn1UJSir
z=pDnYG29ljR_XmQ)Q_P-451jpG29-*9WnkXO_4ul9V2(faF+;qLy<<py2o6_BEFb)
zRxok<vz8Hqsp{l`7=q%QIA$X;L}O?Y!`+Nn4DlE;@{oujDJN+zwqq{(NlBly+d7Wy
zQ)R+oWMd%aVrZ;Va(1byIBo8Yp_w?vdtzwra4xO;VpiX%^H3VH!qXy#2V!_IhKFKk
z8AG=iy2sEehSo83jG<EuZDMH4&}nixU+ox>#rf?O%zewO&o3gw%b1gQj-jiHy2Pw3
z(`H{0Yq3fXRix5WMHI=2ePZYv!>|}0i=kf({bLxUS?012)+xs{Aclt-x;o_^5e^hG
zTV;ISU|9|k4i$1?JSr02?HV4#h#02E@JtLNxi-}9_?UH4jgH|7Wyf&o4lkhcxUyqa
z%8os$EDw`$B3$QBG2k&gP5X`o6JwYpJ#sd0vc}5+vep!dJdU`!rqNXl&&Mz?h8fO&
zc{YZbG0ci#{gV9IG0c%}pSp87d@WrYpNsJY&Z4fdqWLmj=y-TRWI@dOF#SQ7D2v2-
zeYG@(Wn9v6+#1JnuCy3_iQ#+<D`jvrhGQ|j7{jU<R!ez3hRrd&6vLVr)=HtzO);!<
z`1%-L7JtQ2UX5Xc_(n(J#r$jHE7h4TF>F<KpKx0YJ7d@t!**qN2-ylRDt5>4MhtIC
z*%JfPEjrmI{CEWoYA!C=8?%sne+&m=I4H}*!b6Uqbvr%eN7(0`)+he)7~bL(#Q0kZ
zcsqs@F}$ZDmY$5^9qj^gF8)*E?+Tj>-<KteXmFYvFov%c>W_H%$MCuM$2|N+_O>bb
zADej7N}ozOCuH_Bhj2$QeG$W#Qoa&W;gSAL4BsmIT?{|O@M8?$EBmXifob!TvOn`9
zW|Q??#l~M__>Jdh+;aOnmj}<`xV7v5RR8~u;UAH|Vz|IQzhZ@scrgZ79MN)acN`_+
z$cqE2#fl~4==EIH{5VQE3bRZsDlLUY<V<DaDC=;K$b|0JhgA7ED#US_l!|dw6{!?Q
zWswT|!BmAd`z=2O5^bN=<ERnG<#AjQN3A%niQ`I*%L=UGc9pVM3v0%$%SGzf#!(nY
z9f?K4+HqVj;uT&ed_PxkgUFWEc{j!}cE5FzbCZ<H3okv%zggM3aoi#@M_cbUHWbIJ
zacqdAK^(Wo@njt1;<zJ@JL6~{M~65X#?dH_TpW$#xGRq0I3f&h9KJaGacftG;xI%4
zaRf!oI6Nz@b;T=Q8t_d3`)mEMN_mMD6G_C86p0JpIp|8okrvMiGeR!-D+gG2Nk_B`
zn#6H;91q0tph}y@aZeo0<7lR=ZA0UG<G5c6Lvdf++AsVTjCzYWE=;$U3e!Vzw2Gs3
z94%!@<%pVSqikDS)CFNXadx9)9G&7A6vyB=I>*r^j(#fY8b`M{dc@H)j_!6v-Z+R5
zd&SXPypN+$v`hO+skh(LKaK%$JRHX(QU-FJEXlX}sSYp{Ohe)r8pmiEJQ~NaIEIVU
z>@g9ZA$HJ4#4(b;|G-Xe^4No-4LNa49FKF6u(t<Y_D#(baZDa*#bi94#4#_9`Eg8$
z<LNkN#W6dMiJX^B)@R?$I404U3u7~;#4#<7>2XYr;~6P@V}Xf9O#F!C?cR(yh|Kb$
zm(?3C&Yu&<T-GY@X4YQ$&&Khblzl5b&&NTe{R?p{h+}meFU7Gijzv7-<5;1kyO`r@
zQ?Mj%UG~!h`BEv%6ai*e%Iv+c^_1^Lj<mJw?e5-HaS*AjiDNC-LmcZl%y1D)IdI-e
zyv*>HcbDmL>523!a<brvYhxUn;y4z^@i<<SxGRp`BCp4>IgTyjTjSUv!X~zfY-fiz
zT0PvUY?0ohdqZc!LE#?Zn{n*rsN>kL?14CH_OOl`CXymux*SpwmBS)Ogh#nCW%(9|
zCglsw!ihM}#PLxaC*ycWeK-}z`*D0A{;u#nA>+&*ekguA4qK!`!nV%F@u|qiaeTrd
zaO!vC91jZJ-0^D4CZEaXbD@3T$7_-=*&>G!$JZj{--uK^>H0p7AL4jEg?TCb7{^a>
zY)oKN0zb#`OB^i{cp!oEas0}IE`b{o_$`j#c^W6+Nnl1Z&mVCM%Ovn;9Di{y$8qx{
zcd3Mhf5-7p92cdOkm3@uD1E|}=kSsuUkuNuo-Ynz=>*&&bC0`NG<t^T_01@kK=}l!
zCQy(-g#^-T%UqT~#ROg->HfH^^-5=@1gfZGBhMC8PGH!f%58dB7u&|0o@xnHPoP!;
z*CbFQfy)!PDuJsLxFUfo6ZmxtrafL``9(Kf(SF8(%8&N&9^2!onZSvQ)lXHkM5b#K
zC`!PaK-)c@!UR_L@UGg9>k?K`L4murNa1^h!+*A}!EQ|8CJrHix(Vw~_ShxHs*X5&
zeoF%NID`Z;3EY~%Z3#pZh$T>8qxL1>PoO~pw<mCilt#ikg$;#vWbP6#7IGAfEyHCf
z8x)$tfY6R}D1orDw2UOsVx$%Pcmj-JB7r0)`h=_gSogjj-c$k;ug{~t>6gNbJ-pcj
zatSm^;BFa*|0*+}TYlpNdN!{%XN<dP0?iU=p1{2c{@{{TYj@Or52M}F+n|2YeG1N+
zJM!-5s4KbqRJKBzH{0`I0uLq7Ie{(-v`nCtrmsT+2S(Q5T(stlPjI*46mPcXsBHr6
z82rI*2D5zvwQsQg3WKrjm_R34(uPG{6X=$}lL?GVpt}N2SECZ>!LBCID}mk#3`$^d
z0(}&R0Zugfiu4oqXFnB82IpZZk0dZq#Ev}mAqhMt<(n$*p(2lR)rr_q9WGAG5h5cM
zZO#INGdh7W2|UhuA87p!$+5ETu?akpK*OG1CMx3-cq)PC5_mp=2?;!%z^nvjb4C)F
zl)!Ywb8^BO?=uNZOJE9Dvd2ADdP*MXq*G5XW5NYIBY~OR+P_#Ulgsa;`c-z$%bSzn
z|K7@bHi5aS#a%XeP{D`WD|0sIB``mMmuQf{3kfVpU~vLVH17)&SS0&k+`Vyvn?IOC
zpGy;1mcVk&4%a_h9R6(8%D)z_NMNPL{v!8_6OC0O&yUErBgsCjO<*0Tqq2KsPw!T5
z(fR})Z0UMAfmbBH$_>)W#ZsmX4u6fSf=59T)sof;usMOl2^>jaO9ESUCU9YFOJI8f
zI}+H*6{XJaN`P%K{`(Tx%}5S%zmdS?iS9i@k~b6B>+o4W7w*>t9l5s}m+`>_4sjNK
zE?m;nyXo$NYf~kUCU7i)UwB9+a6Eyx5;&8<M+v;GCfEvte<FdC8t*#^yq^G<$|)xf
z?<Vk`I9Cf-#RuXa3Qs3s?^cHBtb*`y0-tCjaIpVN;9LUVC-6hU`oW@qPFDXkfzLE4
z{KJaRSvP?%<>za*DDu^R*7LUsd?%4B^WRo}<oY?``iX~s0*&SsvK9890eP*bmpkrP
z9{vfGNuq2LzbEiV0)Hp)4^MuLv_rqre{p_a_wXHiF0BjPXjj+dk$6!H%#}omr1eR`
zGo<lNd7t$3<|VBow9U_jC6geQN+LfABvD#fD()n>8cCR3y}X_z$|bE6pi<IWz3f=|
zBq}6vnZ$}o>jY-nbS95B#L7ujNn&5O0{(n)#SPV~CUH$KFS}Pgi5f{fltRlCE>Gf$
zB+ex9Q4&`s!M`;KB@s^IswA#XqGl4clBh5Jnk23jsVgi@!kff(;zh#b)2`Y{TrYl8
z()v@u8-zCs`PX?=h;@><ISCrGEv8-*T(_u7J)tEgahv!zhYPFjK!YT1PvVXw?o7gz
z-Y|(qNfamHOIm+{$izP(yeoO>?+w|CUo9FcW%lG#rK`0q5petmoz^2sM3Wev#E2wf
zNyL-rp0w`l5;RDnMG_Arkz%NmXqrSb6=j4?lE{kCI49CLiA&!`@%_)F^|cza_o(PT
zVROg+UJ={){{Pf^kc%OSb}D^H*izUkiPj=)tBnYqw-@Q;=p7iDq3(`c47z*m?C4!Y
zx+c+0#BQ`l5<QdXl|=6(1|=~#i9U{ff04dP^kYDJS(lwQ4oKo*$L0}{ff^&fa2(?3
z!;%;({-~p{xyKyNK95XdR1(XQST1pN5)+e{l*Aav=J6!PCh>%_PbTq{$T;D6$A*5`
zs|m_JEo3W`lbDjk0>@@*5;K#SmBcfSGA)Ve;xiO*+sW)C<|OfgV>362=QXHjr93CJ
zBR0>mnJ)u&z}86?s%VjLaS}^JmI`f~6-lg2;$RYol6WzRRY`0~VrvqslXxkKSCV)&
zi8ZocufDAnUnl&xp_i3qw>KoQQG9a}n?&pxe@*;#$BY%3XunO$8%gXD*)H6X#Lgsk
z{b%j%cE<Il3|My`6^C;m`yGD3sdYGsBT0N9{b&-$MBY#0coJ`kzbAZK_)ZchL{19r
zah-DbyCUqZ{hhBpJ0Ciwr$u`A@}A`e=L%2ZvJ^g{n8epfe3QhvBtA`IVK47jTr+#D
zmqzISv!wMT`E%hH!Y_pvM&;3xX5S|9T@n{LoD{xK;)f*uNaD{V9$e-5QGU)RF>+_#
zPf7fo#4kzA+v{S{sa{^9)rxF>6aJorQN1ihw)j^P7t|1W+mbHg-^%{O-K}hi6!KEm
zJ1y*I$rMVZP&x&7%9^kI6rbE$cZf`o!fcro%BE0GS?V4UzINj6Q1HW~yz)*q%NK`I
zsFcF(Dcq4l<rJ!<P?Ul<g{mnlEKIdhC`j?2v!HqkHBz|R(JxQoiWII?wp|=orEpPS
zEE4%G-hMs_bc*QY8u4qLx`nAr4-KwMp|-?&!s~@Mr*K0GH;UhsvYrFf5z-GEBGy&W
zEy91rTa~>{SYOy61^cVvJ5y+wLQ11<l)_yiVPSC!rU;|tOTq7OL!@DO>;02J3PEK<
z!Y_5iQIDh$b?jpzabZH36t0|MJr+x||0!gp<WgvwLbDVaE89ePw=n-XYZ2Zf-a^=1
zNb%kjcpH9S3imq-AO28(AcY5|RPAjYysbFot#~wrVJWmup-l>HQ#kiXLH`s6Fy<+=
zPoYB!|12xhh08{yqp(v7oka#TD0yFllHJ66rqD~IdkQ^7Sj4(?*jsM<(A#Fqf8P}P
zrBME1>zhF$OZi&_rE9n!=5pGC<~<7@NnxOj2c<AL#a~v(fNa4~PV^3}8J$PIYIGjS
zV<`+zSy!ZUQq~pAh!mboVO+|(<{X*ADAt<j?%2dLI)yPQJf6bX6qsdtLga~Yc@`gM
z-9U{`VR8ynxDptIJsw`IO-SMC6egyuTkJ=5Ydk3h`zo6DQ&V`UNy%pzv>x79hq<Sv
zFg=ACGN%13k(ol?+RPTQ>&{K#S@n>&Y|o{z=S*I?W*$16pTY|qbryrNSdhZP6y8qb
zL>h}ySe(MEDQrk#NeW9-)}`;76qcp1JO%#J6lZV+r?sy8r4$;?yo_XJ3cGjX#S~Vh
zusUV^^|AHW*7Nd7yo21=?DecoVO<LA)s2^hygy<em|kHJ>XhU?>BbZ`aa*NvQyQ-^
z$egb<Dx|SFg)J%koWd_DY)xSs`<cQCuD29+u-z2iNMR?#vffjvM0Nf>?=JD5s}@n&
zlfs)R97|b$=eswBeJLCk-%p2Ciw>r6NaTQ!HZ~#h2M~^=aMUS%YQKx6Ovf1wc_8O6
zB%Dm)9j>$#K270N3h%1u;}qUY;r$doQuc!sK1|^ZBiXXbX*x75!n#EMZh+01J*y(R
zWz(Oi;{Sv!qWD<~U#IX*3ZJL&MG9Z4h;_dbVHNuq8@^TcJ0AZ3srv(;|D^DfV`(>G
z<9RM)9>r-ZKEI{#dkQ7Rnf)V$3n~1qT7L@v5)OJS{~wWyDY(*?elLRdB~&pleQ9*;
z55-bx<V!~yZV~FGWkXU%iakJ&csU^}QoJmUifLS%MqwJ2(&#IPm#0xVjVftWO<Ob0
zR70d7jcRFYvsV{VCnpYm(Q`!_SEg}Q8duAbern2FEoC{gwx4U#uz8XCaK3gC_lq|T
zj`zAWYNv6%2FonFcf)`BStpH~(`c7Q`!wpNaZ4Jl(rBGVy)<r3Ba=opjoZ?wpN5%6
zAZ>jPHV`&U<8~1$chI53YxnjxO5-kNi_`Fn_=NUV1nmt5$N5etm_|&cAt6h{B9Szr
zj>4;*cp8Z`l2X!+o)WR$?!U{GQ?^+e_lPtWHc8`dk)}fWr+xD@?oHz%N4YPJ2ONHX
z8ZE@nF0(!_m>x`DdL^%=bh|lTMYQ3n;1xyMx^f7dw5}^w>~wWVqhlI#(|9(GPHA*b
zV^|uGad!5gOB#JRcWHD@qgxu?)98^#FBP%$&mFFwY5cy!#l$RA@3bY_yk8oFW!XQC
z0Wy0yjYrZL=-3SUkDn&rm0_(RQii7Ss0iKC8`JPKMx-&GVj3fzT2G`gN_=!0V?-WL
zW2{qJe}#w1?#YvBjFV1>%Xec!8c!=bGmVL9OiE*F8qY|XoW>N#gWWnkOmmd!8U>XZ
zQl{_p*q0Nt(wLpboHR=Dmn9Sj_W8Lqo=;<A8k^FXm&SbV!8Deo@q+3u7A_Dj6fP1b
zdRteOOT<Y!bSPM!#)>pvag>#5tVv_7vM&l(rLkJ%B_aQ+)b7K&G}cRD))rq@_V(!o
zuR8h$5&m(+YiYcm#;!DWOW7>kp2il(a%&pf($;q+^wvY2+@YeKLVh{&MjCt4IGo0j
zG~VR$OXHx5_6hf=aX{p5eKpLleva$nklqe)FY7xX@}sgjE<7gW#UAyyxXo4ZWE$@<
zuo=wD;8Ys#@{q}(W(M!2@qQYgrSW+hAEfbN8lR?-8tguu#u;vbwDsxvQ5rALEcjUb
ztT=z@hRP>AH|AF%v9ss6;5&JlWx8RO=ZiGHOamE|&fu#wzUJrS*2-f?yT3`}+cbXT
zl1Sq_?)0rz`Z0~~#eWdmKP>qZ&#^Rq(K&fOjb9mOmy3y|OguJ;e{fTzQ8HsW`74bJ
zX<SUhmBHWg^N-`7wP;{ti45{&|F2><S1N;i>2@pb49a9sDTB%xl+D0n)$%+xyllA)
z%4e(t{NS0q3K{F&>|0M3F7NHVOuV9y;^5xi_Ep^j_qnQMP?et7dI~bQLZn&-)ibCe
zez{!H?BRW`8>d-=x>7prugYN5K9^Oo&|NEo+cUT$gKILlHe>xRM`6bLwdz|kD9XT_
z!F9^sB&1$j<oXP5$lylt_j`M<?Bit-Q=JTMb}Z|P?3z+g&rxm_xh;eGj?zG+OCRr@
z88pmbW(IY?s@y1pyE5pUL6;1QGw@~5gdNMkpMjA<G=o?MW(I)_LQb?9=OC-k&$A;O
z&hXc3tw{c>#A%s9CWEZ>WCp1W(vFR7X&V!nav3z1LvohVZPN^zW$;i2Ei<?$gXS5u
z$l!qt?v<1KGPplunc2qwI(*RS6%~6`w924$2JJFvuc9^?wEa&v?CO@E3_51eNj{mi
zyFm{mT{GyG!SD=5WY9f>9vM8G!6O;;R5W^L&?kdlPUl&-ZwCD`=%2xW|KG#^uF`=S
z49Z|=29L_gVBrv_b-UeR^7)vG=++jABe|S1n2^EK8H~<gOa@P6@TANhmxr<9?72OV
zaT$!y;3;|g*U7&QCuT4ygJ&|Bmce9IoRYy*#{-?P3XK`4>2f|pMYbQ?KbO#~3}$OB
z%@I<WEAp)HxeP8`SC!)Y3|`<i%%Tdf|1(&a!FL&apTVLG7H9A-53vlEWUw@Ytr={~
zU|9ysGgy<sTK1oBnh95Buu_D|i=0^=kNTc>bp|g<&+1PyS-LKRjTvmpV0{KJGvM1j
zugKt4aT+jfkaFE7&ub!^g|7=)YTsOMQI>o=w~zSo40bXa85~r0w{TAeZ)Wg@W6bJ%
zGuX#n!0&(mBht?S4!Mu@F-JU<!Ql*!$biZ*6&-a9s5Cg_dMkssGdLlecZ9DWa-GcJ
zHRluLlv<(Z_cPYT&*vF@A@V^6ABvpL;Ec#eM3J+?kA<HIUHY4pbK;*0KNB`vX5Civ
zdg)6w{c0aCubRHf;OmTaDaG`S$hX4Y+dMyH@M8w9EJ|cS<DaDeoUu4p(JvXC&*0aL
z^-di}_g4nLiT|F#A0mHp&793+sck@;3;Yyt;`2`i7ah*8$n&z`+mhw8m;S`5WEQ2e
z$j<^<l+MDFwOVltNy=ow_it^_Ww`<))_V&~<+7Ll`jTU*ki}(LYfu%1B$Y(?ix5?_
zD9GZ0EFR3FS{Bu_h-Z<=qDB^%XK|PMa7ETS2CvJab{1D=aa9%rW_qp`UL&lTMJ*BP
zU-$76ug#)RN|DejtajYRqU+W4ty$cb#SK~9sO(L`TZDClHw)_uukUNkPQ5ID?AjuX
zUj3|vcVy8(<aS}6-jlggoTUv#8VQqqy~SDhverWK%V#tTBMVbXAd65IVew!VtMyk}
zw6sY?Iv?(_>6q%?xF|1~MJkIHa!x&+MdK`*s5B$YW|0%Im(bnfv}`WYG>c{;_c(g)
zbY+&_tL%MQ-0$ck`g*^8-nt8WNZn{BWZznfw92BjNE=~Wr}RaB3&2@Zwqq8(L^@^B
zS)@xA-9@?z>8)E9EBjhcmU>9(>FDvr);8&_Y@aOpiuB8(KPS|&c{mGuPto!biQD>m
z2WK%Pi_=-0$zo_0k7hA9i)XVKmbD)HJf6kaEFKf*vy0(bjL2SkjxjQ8J?a^i#b^=o
zF(P|L=RJ|dlQNr@#W=3aEtrtS(^-s{_>|DK*K>c%f{9s7%3^Ak|9;W>j%;!kQ`nil
z)>b{*si5u&>w8kRYi0|G{AQ4@rfZSU$YQ1lznq<w#q2ERWYMo{6?Z@Hb^W}==dyS{
zi`Uq5b$*^2eJP9iS-c>=Ad5v=EY4z~vJ3lGjr6nHT_U%61M-)0yY=%f%VK#JD;RcV
zS7-5}$SNTX_-#HDiLI>3Vr>@d<daXL*zNUMyqv`=JdQZnLGIgsDcq2?9(gfs6tN#$
zZ4&2~r<=3blEtAc4rj47i)~pPPz<+cu_KFJS?rddblU=cJ-RcCtLGMMJXM7a`A52+
zADRC~7JIUIQ{MJwvF|@ku*Ln#@`>3&^^lLDn)R-7MEvM~`h1LsRo42p@vSW0k^Z(S
zo)DfCex?^)PG#|~vhN8$$l`qw&XoPi!H3*^dMo3jEY4<8GlyC^e4NE6S$vtrS6S<)
zHUF2jelzoPHoDn!E{jjOP_x!=LUKCd4_m(*`9;?H=}21gKH}>vzRBW`EdI>m+bq7z
zqWn(qPJssBYwmu};)g7LRF$8yI4|;Z7QcvW-{N7S@vqAM=9E(D+0V;ckH50Gz%ya7
zr%Dd(_@5uMD49d49RA7Tj_Zq<E{eEvR<=YAc{%>09Ph?{US{(pmdT;42!y4D?i|j^
z#-l8aE96j4yu72(;IbSlDqAUsqkYQKjH$8|W}9uTTr~$`fv{Q*)pMwk!{s?#k;9ca
z>-=Y`(ccQ)+eVeEa=1EY5h_e1*W_?*4)t=lHD_(`!W^#4p*Clvth-3)&4Dj1u=@2m
z+#scnkY82bn8Qutd~JYhiTm;99O|mkTXNQm8S9_R_x1OpT-DohsGmb9hj0!Ja@Gmp
z&%wy?&tBZOGm<B(-;u+eIW)|nQSQ=SC>FU(XzvJL?$XLJa|o#2ppcu0X9d5e|M*Q0
zUo{za++}~iA7Lo=xuUX(saLhnT#?Knl|x~36g5XWhfEHqo8nAUWOK;nurr5UIW*3p
zNe)YLSenD#IW*0oM-Dw1;T-Ofw~mTcbM{ALxi^RVa+lr<T6ElXzsAl5!(Kg*!-F|I
z#7W#xy=4xqG#tLX(Ro8*>m1rB+g8|K*iOg|(m}+2fq}#6ltbqnx~TQ8!frY1Wg))M
z(me;h)52+D>Xk$993IVKm^#)chXLwp-yHho!0BMXIkWva*naMpp7%T~SC8Z{Fo!`o
z>-7WnlXK149Gt@t^<k*c-rbMoFg%CHa~P|NBXZU&OrsRrkzAjh3aq)vVNA|?=ZCMp
z@ckdUdLoA>b6B7%<8m0E!>k-;=kQd{dU0av|1otH;8s-O_Hco9&%Fokr7qnZ8l+2*
zPUW8NIWu!akWf^*8w5mBK)So6JEXfoP?3^UP*RbQx8^_2d++=9x4!kS{qH?{c1`V>
zNynsgj7i7WEM$kAV_DntGLKKkxODtBFwHhCGsOw%h?B=hb9|GI$?3?RV40eZ@AhJf
za1sVvf`vNCbXLMy3)f<CN}M6(pP7zX>6o34Iq8_2j(H+-Mq*%X6WPb&wY?x63)$6M
z+nAhHu}JnV*xI&~`?Uw#x%=N6BW0QF&hm7uNXN=_tV+k~bZkn;=5(xK!HBbMYbEV>
zc}k>g$#eNcE-LHT3KB)WAsriqGdG&t*4lz4wxshE!nQTtSai2dl5?4gCnYC;$g(5d
z_;CGB!Civ81^1-mdm-`f*zZrrfpp|_A(smW({U&rR~-1ofy3!Il8&Jc40GUUI*xG@
z4&-*=csfp`8z-5G4xCKKsdW6Fjt6W_HX`>i9XHc)HXY~E@l!f}=Ip_SJBW+v_(8}8
z!T3kmE(yOZ7+;C~BWIy*R(_f7iip<)e@VwxR;FAp#4l=?;dS;{^IqAn;&xZ?mf-Dl
z+!6AD*LJUiv4r?uI_|TFa8BkDcUiVg@-Q8Lq~o=C{weq*9Z%EoNciJ;4sr|YnQ-Rw
zPdc7+)9LtIlox^>x*8Wme0lRJZ>yS~uhNYbv((>+@^3ocro-Yu1_$6U>LkH|j1n@5
zIkc;tfqG^!;}?eXp<;C)$$?~taax;A&?ZPTivwAOrwFDxQ1>KwhRmq!rcVwBa+*As
zgTIY7?lb3cAg_b}a70+5@;Ok|focxqcc6d+1sy2lKuHHmIZ#*}iaJnCND+tel?>*<
zP~3qM4%kJHFGAp*b1q$GRA~pwI8aHV$_kcqpuFS%zPwbyVXRkK)zvs1ttbxf2=aD!
zWg%4@#(k~0Lv<!}ppgTOC8{RV3aRBlZ3pTIe^-#n<2TIfI#5p(=Kr4K|5j@>5V0Y9
zxUA1<BBsLurvptLXy!n32U>`j&H@N|U$B)RbBpKyftal&AByqM%eYJ*uLEwAdrTjn
zD1O0!85<PBJR=S$4s;VU>VWFNXAXSsfaZWseX6aK12G}wA35-$@HVCrsF#y^TL;>S
z^0BG67t+CjjzVsCH7?v3K5^hvQ97HR9S`H51Y-r}7Y^ezpo?Hv!EtTVW{*$kE@kWC
zKu-sH2_GQXTd<E{U%`G3^cNDpWQbp$4-{pP;9$Wa4s?<4Kn{0cgadOOnCHNk4vchQ
zvIA2b#-;Hn2PQZ$(SgxY625Wvl>=iO_}XE-j5gMR@j}SQIlzxGlJM(-#I0Lwe2smQ
zj3BNX|HgsLvKpLo*Hqd190$I2{C6K<nvm%Z%y3|)1GB`OZN~DWNlf*mtDSceI3DLa
zu)u-u99ZkXLdj~mAiKdL2Ns)ri33Z8FEf>4lhRfQUn#gsaJ3n`Mu?@Gowo(nIdE=a
z<`WLAcVL498y(o>z&;1|JFwY-E#kRHaI4@h2evt|-GLoqvLqad#GPWYcX4>`cJQAj
z#@dqa9oQ>6ABu4dGU|W>2OW5$ryX<PP&|nPN2KcF!}+L)bYOD65O>@(hmTD->A)!m
zPCIbMVXU0FEKz42xFCf7=h!a7D|9mk`$Y$SFcq4Y%%~qF`A>pB3o^Hc-RxH#xW<9t
z#1~Fnci;x+94G8f++;!r@;H&#iCYfb=3MGTCMWJVaMyw7>^u(KlU?}Tfd@kFJMfzj
zPX6&{6Aw9?Iq=AVKSXEaGU~AdPaJqAO5E+KaK2*6W5@q~LG*7C-w3{N;2$9`1z!m=
zx7Q8?x*4<jzYe_REaXH6r%e8W@kzdG=>%3XeKL!f<V3O)h&voaq7zn=vurlusZL~b
zB8wAQok$TSUe0*=iP@dV=|nDx$|1-{Flj<^3(|*4;;GmQ`J5=~L@}o^tLJy305{4H
z`#4d^iNeBZ77@a`A`8wK4<CmwG+u}<?u0Ful|Nh{mUN<&6J95LPLy_{j1w)LXyrs%
zC(1cd+le|(V;(E-L{%rMIZ?rhicY*EBK68nR1(gKC_YD35tHA+qgmaFnx<zB?zr4#
zswK+(t;U4*t`l{gXyim=5$ieeo)h&M`dZ_;H4wd_D2(N{;+t#YL^FwM>f|@FO2qSQ
zE(*;SCSlFIFZJVa;sdh|TRV|1+$wK^JB7Q<Sho`%lXo})zY_r`bSGj?1f9lmwWwss
zoI^swf)OVaiKR{-RYVfa6hCyLjbzJ-;v*+-q!_0(pE`}tq_lIQy%QZI$;X162bNo{
z9i8ap#3xRWkE?BAh!bLGr}0|NXM&HAOy0$bu1;KZ;s@@#6WyIy>clc9dN|Qj`oJ6~
zdO6YCiSbTMaH5YBeVrKP#Aqk_IniHyMmRCRiGfZGa$+$3XIOY2lCQ_I=L`{t;eta2
zhY2!@cko{HNGAExR7MIJ(@ky(3jf-PF+%<~!?9wHV+|ZJI`Bj%CW$iBiEo5Vabl_y
zlZD62@U8G^PE2<qUJ~leaE9nCK)e{UoS1DYPcmBOntYxU^Mx;PVxjZD;{{VKa$-q0
z`(lY&BFL}!E_Y&uw8e2JRywiDiS5Lp*40ifQo=^3@lfwOr*SxASSMtyVCrb&K(=1^
z1}AcexygymPHd4>Ot?+RRzZI1KTdWyvD1lNPV9CXbMgUpY$yL2XYl<_>=i=3Pe_5e
zHU=K!;_Dl!9~AwN;9<cdf=8V=Cgjy=V<qGXCr(N~JmthWv!9<9az^khd-5S;x;t;i
zUNH4bPF!}v;z9-&estm|C!RX-%!!|!xWcaJ#P3f0B9(SW@T%Z7!Rt=k;QTL~&3%i+
z<neQ}+s^+^((ao2Jtyv)Jnr*A%!h(;<qzS1I`K%zV@_XtY)=H~z;X0kbZ+ql`_<C4
zzr_4oIK_XQcqz&&!8d}ho!Bo&Jv#jB#9I-`<6BH{!RkVi3mIL;KWo^3G6~5n2p1A1
zJU?Wdk8!e1b|I?^DK6MthMC1>=nuOYw`+L!IMrozD)MYD!^|#7l0yjBiln)a+l60T
zxavY47xKE$&4unR<Z~gv3-7s5--QA$6lAFmqn67UN`+h~<w9xUg<U8jq^Mvq!Qz4?
z1nq(^yV*;cggKNEUe$%NE|e2q-i3FBR1l<3MIm+C8fO=kgjW`<;zC@cUd@H-BGwSB
zDL70%A6i=q%re(;;a%Z%1?!pmfQyy}E;Mw(<$~K~bjU_7yf1{ju?tO1-qeL=CT}jJ
zg<wk;TA8|1-#7{Uz=hVLq?@`!h*L24dnG(BcwOk=LPr;TF8HOu9|;Cr(1mcnf-Zzy
z2#XnU8Q*WD$e@T46;xf&O#kwy5i|LRLfQ!OUH-O0+L^H*3u!Od`6xP>`e#BuapBW=
zl;C^j`l!#v{6escU{}G`bu2wx=;^|I7Z$kC%Z1)940mCK#PUSFj|+WW=x5gXAR+yw
z?+tKappa4fY<G7VU;G>F!Vqy7YWfcoa_ghCFI^ZZbvV_9Q7()YK2h*1!Lfp4T=-hZ
z|DKPHb78zF69k9VHJWLX@NWcZP8Kr71uo^K`K_4KT$nCoh6}S@nB&4sF=q+VjjtpV
z=ZZPc^`9AE)3VToMJ{Y|VY3U1r7GBVD_vM3e5v3v!R2P`3hrrl<4ky!D60k6n6cjp
zSu42Ch4rSsLC8k-Px-9t78kaPa>0ddE^OzFA?6O#|ELQ)UDze&ZWj&<+2g|ZLiP$C
zbYY(m7G}Q-2ZZy}^fV8dI?W>{=h~rTCO_`N36p=j-*!s)X;V2P<gDO1!SjN=9=s^z
z2SIM=l90=SKf3UfssAkG3P;3^e000!!gUTJHv(?laN(v44cutxHb%;?E<APNnG3gE
zxb4Cn7w)=@QyNZ&_guK|!XGZ<z{l{LkOwaOZYmQGTX^7m$VNYGVffR9M=m^;SYzeC
zsgpDLa~J+{p`;t7-1yst7gEB)Zv5lIOBa&eu(|Qdh1V`*ju&hn-iS{IG5;0*R?s5K
ze@6k~8QsWarsA;%!V^u!>PC|Ac#<q`WOXCWjofaeh@R?3HuwMC<;d<v4$-GJEy1H0
zYbmE2xy&4><Z&afm<8R)Cxku)gyc8fSPY7V#Ef&AMcgPVN-@FWf+biCnLzBOb7>*v
z-KZd>j9^(e$_a_D#;oYZJ8skxg*jJpqngPp3#lSlRggPgT}TZ<`qy;-cNncLN*y=e
zb)&8sTTcj!{hq1R7k}o%`KOT^E!}A4HjZ?S1)B&qb)%V(=7KE*3-!-QH-`7!aEbDP
zAeGia(%o<faSGb@*%;*(?h&Nv72*?YamEsKBjm<+Zme}9>_)_m-fr}9LvbVO#%FGP
z?uP0%4pkouYHsL4Vs5k*@}VFd+PLwN$%{8OCcSoU#6O|XUi1!TY)2uT1V3@(Q&aCO
zgcqt`m`Zmyx|qDHkZx=&S;g1G)O)(oOE^Ct$Bp)Nqn{g--I(G=e>VoWjd$(GyD`v>
zL2l!MZmb)F-5BD=mu`#{WvJjVHwtz)?n(_8lVpS&JsXxF8Rdrm2)=S-j2ojRP^5C<
zjIqYxYtx^Xc;kf6lq*M`0!@&uPjq9FkZ%N89^PA?>c+QjEOld<8`IpF?#3e4|0>%I
z!Fg`XcVnh-inH99Eqsot%ypyox+F#|5M`m;_@p+?6^AXZ-Nx%e<cr-{V)}E2d3f5g
zT+CH&tT6SJLcTj};Wt253twX@?Az<y*zd*xH`cqc!Htbl&pQM+xv|-8EZp59<~BF~
zb!*f=7sqnt>UQBYc}roZ@Li^|TgV<azBiS<ZtN2t|0wrCHx9XR&W-aNDQ+Bb8z-6Z
zbIYURcG`_&ZsXjN;kX+ogcq7)JL$$L;p_HV7{#rhapSBcStEx|?$HGqhCjM-(HxII
z2)QJ9S<v6z{*xK|vl~}To~0SCxpCc%FFfet!3{TVx{colzw0sZS2rHJ@x+Z=BHk9f
zBY4-1dv4qpPS1xzeskk@ArAy^^vujChCjsoQ}B`Cmz^>{bsIk-{Kt)#ZsUQ@GdG^Q
z@fYWRHh~+RyCm>&GnbySmiRse@s-<n=$yxcydJ!E;|;rq8*h1N@F0r^d`8S)H(ET%
z;4%K;$b<<VWb_z+UCiVGJV^8)vzT0FPtoc@k_X9DrdjGssOe88;e%{qRu57<#w9>*
z51LL-OZ8w@cRQa%XY(Mt2RT?*-R-#qa|+U=Gciq4#myt*)AD(c-vhe`B|Z3gr>%eo
z<E|$a_n@G-74l$lB(1OqMLZ}f3Nty<-Cj&M3C)7r6H17Ax4XTR2c<p6v-mn5W8rQY
zk5NChJt*rzIS<NvP{D&rEMbN`Q^!~;da(0G(mR3&M<g&Xx5^S*MX;(MovV3J-Q+cd
z)bya1sTAmI{J)QDhS?k>bv>x(!FwLm_rU3aixuA1Uhq~@0}mQ{(8z<v9<=bFrN{VP
zdlM;nGuELHDxrv_xkNFm!ecE|T6yq+2dzbXUoftxd*JXG{_#|Cf42u74`LpC=z-S*
zAM3#b#RI>Yf6#-#|I5TkD`wbZY>t^k#ni-K70yk>x2VhJ=+nl7mE{unZ|Dwm;~w!}
zOFPikgLabYV?iqIJ^%gQk-Vb^ojk^02tN`0)Pv3>!YO|4!NLm`lA93=Lst*Fd7ycr
zd(qv49v=Md!3z(1deF;*Jsy1TL2nQGc<_}6V?5|9`F!cYNDumX(BFdrX3j%}4D?`-
z2QRx>2YWC?l=$X|!%WZN9*i*gWhn+LXOz?c$!K%mzxH6P2kSl9z`p9icn@ZKFvo)l
z9_)K%Wti^4L=Ps3`HhDUjxkmEWWm`TE&2t^w;oIrlYGQ$>!=GBCY&M4Ou<=#<<})p
zpDTO?>)eBR9?bV(0jo>IWgaZz7!kfya7jnY5+Q%Rvc_|s)6ufr1M1usb6X{`B;R@P
z#Rbc1W_#GSMv&%OiCt&<Fx5s6HhHkygDP7RtV`22dyL;ovO%|au+@WY()v3@WH;C@
zgg?sM>A^0EivOCEn3sRL{61kXbN1kt2e&=g@4*4-AwPR?(1SzLZGPf7-H*c_T=3wc
z@FN}^6>?1QxZnvvdY<&)l*vyEIU{&h@SNaz=C;eo_6K$YR}TK1l;yu9{IUl>3SsQz
z#R-f(H_r0;K6K8Od_~Ihiw9TPSF<Hw^WZw?e-CbY@T)}qJ>STO{=_)B<H21Io_X+G
z9PUZy`OSm-V$w&kS%3H7fd>y+Q6fI_;7=j(e|N^qHaM2{*n=lh_@{zYSi&~1tbegE
z)f4!OReeMP&41XdIa_*B$ctB;_BknejSG`E9{kI4?nAPeZ#~E)go?$B3?@$yl2I@l
z|HowN5Rxcp6-@G?mihH{n<!ZXvwD#tggK{rk<H}aEVJbho>MTF7imIrdy!8_9zmwc
zD`b}3e8?}nfFPF(7WSfu7Y)2<=rzuPi+WMUi?YItc~M*l^%6qtf+Yn@36}O^)mGzt
zn4z2~HM}VAMFrs%1uF}_BUnjr4g2|FRPmy!nAN<fE~Ls4FvN4K$=dLuw&-;P>j}Oq
zSXVIRDBcrNUyuo3cSvjGMPn~odGWr8O$1wd(bV*5CZxGw3&A6sGcqmjp?%;*YcC>R
zC|;zKtg?9p9bP!Sa0#z=z_{3CaC_kqg}hjoWS`0XUIe@ddJz&OZ0bB$q~}~-s4lie
zy->Zz-(FsJx4Xt$d6GF}pDpIahwM2%B>2$Ai;uiG=*1x~+IrE>ixFOY>BYxhw3oK)
z?=_yEcJQL37oEJ|2X&d-C*J>_t$Z%zQ^C$&d}iwP_@GUA7caV!2=6P{U9g8>Pr+V-
zJQeTlMIYhA<XH@reqJQ^FwW`+c#R8zfr2E1yclfqAwq@<4ig+M*nGcbq!**S*x|)a
zFGhRul@}Xir^a~kwHFJ#Sm?!AFUEN>Q*`#>@m@^yVv?8>1bMCZjTe)>m|^-%@nRYW
z%PGrLQ~B2PWDe84C^;_|2_2YrmKU=nc8(Wwy_o0yzw2vWSI+nTw-6%!yO2d*Ec0Ty
z7mLlDmk3#E=D)(!*Lty%gTjl|W)#12yhiwU<|erHb)rOPC#?4(dfb>s7&dybN%YNL
zZ1G~N7u&qpE(*&N_lXncu#5G^*U<QRXD@b3H{Qc8I^N3gy%&4E*e7Pq4YvKJ&a-#+
zy@G?RhrKxB#T74p@#3f#$GkY@#c9cK_z>%HFHU%k3xShf)I4j6UnVf&8QBU)$`3-$
z3ZC=gys2Lha#1jE59686CE=F^e`M<mq5iWF{yy@m7uRIFe+pjr;*JpR+6^H$x#L1^
z3Emc*HpjROx$DI}G4BgL@ZvWizYA8A4+}gL{)Zsf@G#XQFCL5eMDUFlPrZ01{J9q|
zy!c1>UxI&g7|NB-OEH=Jl@J!=wW;K6Xk3;5E9P54i|@ay>5M*Od00N5@!EJMpRv|4
zvk&kg(Fdy!YrM9cJ|y{&>@(KLak-t%hb%s1^ZmE(F{_YNA5w&HO<H_e8Zo=+lY?s)
z<@;T^d`R;dUv1*o#{Qj?mfMFfa~ICzLtdZJNousuMC2Cp`%u7#f<9wSbs--L`%r`q
zT@vdY$yL;6EcN7fmWuhXxm)gs2W+)C#yvK>4<&v0I*74Bl=7jp554{9<3|}E%KGq)
z50iZ;=R<iP+&*|%Fdr)VP}7H6tOu!qYO?Q@WTTaRsN%!Oy$M`l$i>@LedyA~c&<@h
zJXu{egycPg+CJ2gBDs8c*N3{2ys;1Ue0YzwH`~_0hx$@=T=dA*j9E6@`1OE>%>SUR
zkst{dST^yYsSnM3;0j5ulWgrnbD!~{gBCut^r00i(1#Dq`s7-{c;I41E_A%m+LkU+
z4ne2yzt2^%Cb`_v%Y1z3=|e9c{5}MH=;%WyAA&xFd}!-KJ0HS6M10VFIKM7Q@nO#T
zq^J+757l2;#|*X5Bx*i<wmyj=X-)z$Cgz7c3JCc~aPUwIqdt~|?S1IrL&o(<n}%9=
zmNIsz<;YM=we?A#`1p}J^pI_JW-8XL4_$ruTvBn1U-+<OL(-2Mk`}H@>bW7QTf7(@
zEn_=cx(nYuGJ$Rk!#Y}e`_RXS0X_`mK5j_r>q9^BA?K#+Y)I<w!-Sz0IuG(;un%AP
zFvf==Y$hMLiBUcb^MM;;h;MPY4<pzuMI0&EWkdpF8{W(~+J{N6taKxOErp!K<SdvE
z<9rw|v5aEji4%O7D9XVGC1_5UGEDJdst=ESc*0TO!!#fE`*6UA=|0S0hrgAy(}$Tp
z%wq475iy%>;loBBHu*5u2mb8-^c352ALjWm--iV(o)3#z5)R&R#y{T|`HZVD{wY3w
zI=a+{WunlGJ1}a64=a6G<-=+p*7~rHy_CIceZqHwE!QWUo}NaNmv!rX*ubva-|E<I
zm=qbcrJhlY))vcVpK%GWh0Ql1jj>x<JReBnCX2B{O2tvL%ZJ@Q>|y<{Nci4|y=?si
z%bl~9rXA9Ft;f^yeXMZ4sol+b(1%0p7(QI^;jj-!m;)>7rS&NLNjK{mAI|!4Op3%(
z9rxjc4<~&%Mg4KE(}L=X1abzFr#9>7J?s-+7+vL=mhg0D!bP8P=KnKC8K(kX2uS5z
z^5L@RKMK;}Cn|C|P;G|o7axc>1+V&WO$e3i9Q7vubx#77UwybG%5A|rKHL>@PcZIt
z--qACr2p?i9tb`Z{KJPog*+1E)e7C7`tZz$27Wa3<GBw!=TG#*>c?L`{O!XFAO7LV
zm>(Jacquhg-)8;S2j>jiD<579A%Ek8eXoV&ttb}1;gCU)gk>98E`eWG$>cZY;mm$x
zD-ce?i;*NhlKm*;M`1r~eq`|@rysfeMrX_F2m55IIH&l*d}j5qXY(7?%aGlV9Ku<j
z3>Uju)BMOS37M8{n#Yg4e&q8TeW`#S1^r;h$S>yqUNe$VEaFE|KdSms&5vS|Lvh(C
zuVGp85`NhIC@D%Ai7n+vX+OSy$C`DhWk!XJ7jh(*6}_BbdBF;TEJ;N_-Z6P4KPn5a
zA~<S{F|v3uSY0x&?MDqiYD(1k9`;&(5E)o+b^O>jG2vZ5>iSX7Z+xkScMRSWlGwpg
zUy^fPqGux}_v3RvzVM@oA5HxT_!0D@nIFylNcY3xH^yBHKU#7Z{0TX?*fRFCw~`##
zE8h1TSF#`Y(OL-k(VfQZ;q=4hhg(E${qDFlk00|tw#T{GZzw)Nzhp%-<cHe9*uhSI
zghh<7^`!$u{piTnIc#AcQ2l7tJxvqT{fG(qP_T{QM}lqrXeZ=jKRO6us`f%y$UHL=
zXmY=Z><pjy@u}Y!kDUcS6J(#^1$Y;~QFYz?NXwMmm37tAPLtT(j~;&Xlpe(?h*|X#
z{^|CdOxV|tetwJ$U{nD8{TRUJ@MAywBy(m>s%bkoaF(VG_G7N>=@37LazlO$_hY;t
z6Z{zA$CrM5?Z;TDfsulv{TRhoUTfSCc<^h|SAL8Uot%MPdX?ym9mhSLk-$BjC`~ZQ
zk8k`&5-OAZn8Fs{hgpJC{g~#*bm8AhVQQ60m?4DSW2PT8C)PE#NTf2`k2xZeQ<=wR
z^<#k_3nhn5eq)d>@?)(Z>-;!1IbpFBV2Q*o6<p@Wav{ufg^-nktNd6kWQ`g7osg0{
z6S!;Z{n#kGu)z=RCijlWGO&1?{n+BiR&m}YKHM&E5;E0x&QudD+;P_VPCs_}vD=S5
zMo-3GKQcrzvP0VQmxv$E*oYir2mCn5DK3CU0UYw<FejM+vIcO(kE4Fv^5eE2$NV_%
z#}9s7@*9^GC;T`o<fI^#Q$kL2?3hZop7wJlKQH8h;6)Z#o(o(yW3T)1qwt>ue-^xA
z#{MGYs^B$0@=r3((iv{}antnqRR|wZ-Qf`P<BcEx`f<;X`+mHTsNV$t^y85qzYBjL
z$b24h#uFax_}@3!AB*`+@QL74&MIFRD><KY@)w1d4}S}xII5@pAK@=e<&__=g)@o{
z3~zau2q06y;FbU~2uTp66936*<^Zgwf&datu1rcu5}q7@E%4tTrc|kilmJo#C>=nV
z0J4cs?f~)#$sRxsGl!f3<T81hkPlYa@&=Gkc!>b=o3TZN6bPW8kV1lm&Di+Q?u&|9
zEP&#s{!v!rWBB#}N}5V3A#9PdLMjQCGh@pOsUTQU@EyVUC0OMEssvC~lxhLg44{_q
z>H*Xc!fnMpYX?y0|0(=g)w==I4WM2C?*%|J?nbO1K!bphDy}pRph*Co0{A3=rU5hy
zz#V`mfaU?T2*445lY5uT%4^}40kmRm3^J}k-VYc9ke?j?KuGHV(gS$0-w=uXoh84_
z;|hRHLxpQ%y#e?F=om2G_4Wr42tW@Y7C<my+=o#FNkRdHg*UsIFT%py%ttZGd;;K8
zPCnnPzs#luK;-?I55=>cnYIl}BD}4sWISv6Sa^F==^$iDPdoP_|89I5Fm4Tf9>5m?
zbPgEz4Y-e=1yHn%F|xV@&^2J(+8WMO0dx<bub5PN2yw~{tDXV$3ZQoYeau)s&3qs$
z1N-q15Ws){1_m(LjO7#3LBdzcZLT50hXycA2!AcXz)g%W{l65#dkdr4z5%=m;NJko
zutEY@7QpfV#&WP6#<u}X3t*h^@q!d52$?82DS&T;Og3Yu2$>q-FL;dGjMGhhegHFs
z&lH?x>azowBYdu@%;VVHV%!pBSP;NMQ(qLoV&O{!mzw(Vp7s?1tPB_ndanhrN_y<B
z0CoqkI)F6+d>6pl0JfMtd7Y4rg6jo02*&@Hw@LWsz<>7;*koG+*e2q3!5xA-1sU5}
zZcywA;8+011Nc6Gy%M!g@L&M@g&Z*bxgwpZ4h3-7RE`Ka8bFbbX`Ikbh<QGM3qno?
za4LY)!p{hv3*f8}<}=|7V^XDgQIwwpxDvn*0bB~;asWRD@RR8AyD{{%Z#A~gZ$}V+
zk*IH1C0rH41*H_P2XG^Ro9wp%JPF{b^pjfw+z;S44sbE=2;L3go)C69{tb#f@OLrU
z&HfDFf$)c>@`sRnJ?)Q#JQj@i)n@@b58!nGk560v3gB;v;$wa0^CEzkVlw}K0>&mN
zz7j%CG4A#@080=b1kpN(3_&CWjh@poh>SsG;ysffN(YfS2n3D6m=;8$kgS4KtU)9R
zPZs3uM_UkCg!4up9a4m+29Zrj_8@W!$stIG_yV3>LGTSAnz@6>6GYx1@&!>`eDViT
zp<anX!V3gZP)vGell%*dUc}6;Xb{Cr9?!W%5Oz^Uu1P2v#G9kWj+6<aY!G#Vcvqsz
z304&>&-{a^7{oh4R1&3={5rF85LLuHlVZ(sGvE9aYu6NOHBp#h^&o1Pyrz&^g0+MH
ztp%!U#x@XAPw+j#`hu*khCwt6qOq7w1)B)+HtexFmS#btu9}O&Ew&JogzeQTi1(%8
z_#l90dJv8vx&_fa2xri^vl<K{L=pslcIFNm2L+Gh;|;<m#2-Y!%sKw%3o#rt)_%7Q
zqFoS?Ae11YqQnGMK~0cudJr#q+DRBb45E#xe<Xw}z&T-l90Vu%&x2?mM2DcU7OrCu
zp9Jw~5S_R?bBueuWzJYip0RY6*w2EXNj;8yv*U}P@qR}a!LC8nylA1>BZ!_sd>O>Z
zAbJJSJBYzS3<;u75PfB5`3pJT;qMp305SUqjXVGGzxxdoZruM5qJ{kLkG}%sSY{Os
z4PuzY4mW*9u>V}JG(KV*6~yQuz6xRttDT>`yJ+Me|BWCC(~^%1Vtf#PhwvhV2|-L`
ze-5EU2$O>NhI<#p??FrsVoDGvf;bt()F8eMVq*}Sf|wS>bZL(DLCgqZW)RE8oE60E
zAQlUsW471)Am$36C)j?X@js&l!WWu8i-IWM%NSovL|H1hOpw2?ivLz=MGz}RSrx=;
zA!~wID})KZ6H@L*#&xDrS2ElX#1?an?&cs4nz37g*c!yPAhrjwBZ&Q`zEj9P!CgV@
zHuXJ0d~fo-Y$o|AE?@8BTU`f4Ct)!d4slGGo=1W>YVu=295;FJy%MK_I2|_y&j|h^
zcs7W0L7W$ULGW@A7lr&FcuA1kTH4Y6qse~~@^cVZOvNEJa8=A}L0mWW8$sMO`HVW2
zTPD9P<c{E7!Fxg6H)A=*AIK<12#Fy)4C0R<{uG6S`gstKgg-WwCqX<l`LiI(?K8&y
zU+i)mi9!6s`8;Gy4h%2F?cX3?33)B}#!SoinCSDC15o_q@1Z0J&uHe5Nl4}pvYyUm
z<QYOz2)WJJ<PcJY+XS<ide#t9OrCAK@vt>p2-!u+Vd^=B<O(6pRQRGw9^rXI$R{Mf
zVBru7m_7xC6cXGmFYgoyp{SU}Odozv+a5y65C()WP{dLpydS~`A(R%gObBH|C>KKc
z5SocnL9l8F)k3Hk!aHJC608zJWg*;)>hcU|@I_1Y5Nd=_FNF6(sA<O55mHOAwxHU}
z{%#0$L-<SPXXe1N)t9J7Av6x5fpF>#h45YJCZ^I<$m>j&H?o_}O}&MXmLaq<mAFIe
z5F#NcA*6@kkSJ#ee$&S##4YF%^a}a}`Hm;c5D*>|3<-t>Yg{)@N~0ls6hd23)DScw
zx*%g?LOv916T-VU^HFRU!pEZY3ZZ=n9YW|PW=FwKL+BhrC*hxjj6Xp$3Ez17EQHTP
z=ps6mFUaL9<#7ipT}|iircaL$dYU}$)?3Uzf_+2iC#1h158upWPzZxV*c-yWkTJIm
z31NN+3qlwg!mtpAhcF_9iJY`U_%ei%A&eEbwnr022^kZ@Xd%WA^+LuE_1Yax_*xX^
z#!qdJGx>NS6GDi`ek0~A!O4PC1et1T2;Z7~S_spH&oGslLN4vH%{G-eA<Pv%Pw>qy
z<J$rYg)a|bMF@*b&&44uG5OLEmI*(x)Hq(O3}ICWJ49J6xITmpA*>Ppo#0x*b%IP%
zd0yH^;adea32ruHx3Hn*jBcAK+XbESC-I%8&n_Xm1^0wdYC-1jL%1sI{P%}&AcV6a
zoRiptAsjbT9TIXlgd;+fQ<kG4924H$JQAG{^JEC8gs`-yLpUScA&W`Qhj2m6-$S@4
z<VFZLL--+tOJZIQ;TIMrgdaorNtB-juL#C7;h)W~iOKx;Hpg}0d{u<zucm%Cgj*)R
zE#wYyv{C2x#Jn%~n_ygL)C11{A^Z`-pCL@^Wq-nnYpbzZ{!s`Wd!{`Wr1><2XKW@p
z4AFef8OHRa|34wTWDSIII*eB#ybhst80lfW3E^MPdtsCh8-4yQXYVkwg<%mhLl_BR
zWDFxy7)hegCvzB9lS4?N;PGB|20A2*X)}GY2+1m#B3NO6LUuE@fRG$v<P?%Cj5Hy+
z1@j8#3IF%)0%o31l>CCLkE381g~BK-W=TQ%6bYkf7{$UU9yWemZ8!B2La4-lW?jnE
zONUV=jIv_BmLU-LtPn<>Fy0ltVi@lTsT4+KAyvYt9!8BYs)|`nFrNJCLCdMFwwj{U
z3S(K%wA#WcvUqjFs24_aQE0v=q){04O{Ia5hG9IKVf2m0rrtzIQ^96o%vx?MebBhD
zY9UI?Fj@(DKa5U%`Ae|k-wEW7Fq~lw4r53dt}xtT=wZad#=Cf)FuY;opM&IFHQ@`x
zA2u#v17SqM#;GrPFpQ9hVZmSIvR4rv6;uW3sR`kmTpxzfCXD`J3}7ZA^3tPw7;VF7
zC+5dtd>TgQFxrRFL6nXxu#or~e&+Uxm>+GkeI|rT7a^Yuei25c?Zyg<u4ZgEA+H*g
z;I?{%(KC!*+~4um-eL3;Lf$8gzF}iw3HhB~b}lR-DfDe-BE!Hi28E5wlYd89U1Jl5
zhB1uI7sm21hKDgCj5%S<m92cq`VV7v7$d_N6~<_aVN3{PVi;q>##@<V1xdc<Xj+n)
zgkfA5<HgL-+fH**7~h03Lp&!7P8H-g5T*!W!f(TvCVaYJ{8Boe;mojcMag`4CB-rm
zdC@d4jQL?K4r7Uwb3qsj!&oFcRjIe}-G-vUWL_xowjmeNv&CHjEaga%7vxuju`-Np
zVQgpL2xD~^>%v$c#+op=#EYx5SlishcN_v|ENjEYx|+pZt=#kmcA+q~hOtpRxrt3-
zZ00ZwCNoryBrrMq(!Qa_4cHxFBa`ph3PN^<u}jEq!99ZUt3TqtFpi0`Ka2xH4hkL?
zJS50JI3E#0|D$YZsfXjHaze<-FnBFVhcjWEWlxLXlL*d*aXyT45tNVMLKqi0*F}tz
zWZrmWXZS%X?NS(*!}u|bpTf8o#{DoqdWkDx+zR7%7{7#ZHEi4_y&1-}u<^?Ob@mxq
zVAh!*f)GBiy`9Rh;#P|<`EIq{5q_7siDxBwf1mufFn(tRa*7V)K^PCicoxR<F#ZVR
zPs!>@*jU5%D2&IF1GoErZ({-5p#H{z=BW&Sntz4C4?+AL#tZSMLh~O<!sO(dq<S6Z
zqn7{H+Pw+mUvYRVXc4{K>;$G|NQmINyw8#;g3J*hg2V_4M^J>-6)|qZW{n_4NRnW3
z1hxpWM8M^OY>xP%!PE${MUXp!JP~9Uw_Jib1er<B2%euba!V71w`$4rnz03i<P*#v
zK><^zTOpG(2PP>hXpf+nsTUVgLXfw-N=8shc<Bhr2#F_T+OlGH*qcxxf{GDn5$F-T
z6G5d291%Dps2o8R=_E}fs4ApR1n)*rO?Y*|8WGftpqB93f@in=x4x95t|;tg^@Y@n
z;5}2xEoZz9#B3<oD1ydjY?BE1^oI$XnM(5rT13z?f>xq@VCwG+;RRZ2Q%R4Y$(;Yn
z;1V$sfja_E1YR)%f<8gNU|n;aTTsl9U|5hZF|inm@Tj0F$RzBCm%g=)7;240@S#*@
z8$s6XM-jA*pj`wXN6<cA&k<v^vIW^gh+J0MF#;l;KaHSs1V2XbQv{zy@OcEQBUlr`
z7ZG%cV0;7<BIwFq8Zox`RRrB5=n=v22u6s~GlG5*^cUVMg5E;<2-3f=koa6WK=_ad
z1_~Ku`V5ZzcfXGQLn9bw>YRJOH2J6q_>+Z^f^-{g>by%ybBvf@3yu{WC&=wij9`+~
zzzV@{BA61v)CeX=uwRA%@!JTdMKC{t1rbaax0!;Bnqj)JqGpLWJAyev<_c1uCxj0>
z77AG^xX6rM9KjOPfzAxe#9SUhr{2cjqZn3-vP!Vfs)X+%SR29j5$u({SQo(#A?qX9
z5Wz;_TLd==vIaH_iQk^x8o@R(x0|u7$(_P?3GNo$W5zPozKHQTpo0+{5^;Y72Sj<Y
zAT#yDA|7GoN5BsUadQmEA~+qvnFx+Yj1M4CIU#N*BRFN|%<Y~v`42+Q37!|c5Wz(u
zbYt>M!Y>Q*P)qUW2(EBiP!Ln_O9WRr6Dla8;2I~%2%bdnG=duu+>GG9q%sN?!5!hZ
zOyzb2vojedZ+A`Q9;ZjSX8BE&-y?V+<Y5GVnm&IB=_udAeI)#`AbZp^PM#ct3X&B3
z#aa?QqhefmzKGy;1aBhvM?`M)WdyIxghuiB<p(j}3ObM2EDACxhR&}j6B88Ul!p7B
zNkl4{6+n2RV7#u971$J{iIPP@Rv|eBQxxP7k}8-@koja65>FoA{alLi1vc(cZUuQH
zHm`z$3JNL6CuV-Z0)oteo);T|Z=J_^Q3b^mG*Qr09EvL_r=Yxo5(?}JN}8!kD<~yA
zx;lZIW7;wb$|}aPYCg*B-65@lf{F@iDyXI49mV*(c4Y-s6jTz<jWSe~9IBalGHrF?
zHB5#3Ra-$FF&ip)*VOAPsH+&yOzVmAo*-+Od9ox8#3XN|ps`}~3g*nfsAdY9EAT4t
ziBAg!PCBGmTPkR!;C%%jC~!y=om(qNSB#U-c(&XeH$lBN&yh?Yw-Ar=-(2Tc5KzGD
z6h-u)U`UYvKo1LH4iO<=^)~uORDmichnpt-B(^k-=Y$_BXs6&~#khiKBMu)a#sx)N
z!D8!-CE4v2^it4UK?emL6?BrQE(*FT_(b@pf=ty}!Dqrh7yLqyZ;msHp__v43VH~(
zTx9$djC<Nse8?Haa`F_nkAl7m_zaily*w4{r=Y)LoQuZ)$2~~FV0Pf1$kG!-6bx11
z>Iip73{x;%LE&~N(hegOe91<Mp-BuQ6^v3)MnhQ*qq&<3ZbWf2iZKelX19r=b`)b3
zj8kx*TTw7x!2|^x6l_#5QNbhyGZoBIuws46Hwq>zn4(}^Z+qEXNe{LsO;zx%f`e;q
zuf`f{o~Lm`uQ6SaWQKy#KV%@8tzeFV)e6=q`1_=-(}U!>3g#)8uV8_Kf8G>bp<tnc
zMGBUSxma+if@KPp2&d2f-gcT(ho+Dd$w?Si3Rxvcal=ttk7w5J6#fk`aV?9g;AL-n
zN+0`A7p&`9UD*;CHYwPw;Clso6>L$kRl#lrdpPz}5^MIczj|1Bn}Y2Mu4YVR*r8yj
z@LdYlPO?%VPD@GpeO5}aKx(U-1@<Y}ui!@oKPfn%pnY-Mw;5B9vRat`4I9HD_FLgc
zOeH;Q(PIjZD>$|`^@M^m3eGAx$u6znw1{zJZ0+0G&nY-B;w8Zg3N9-6LBZ#J>?``%
z-E)i5?ewD*;$?9lxzfk}Gh1^}!D<gv0+(=whXC#ZCw~RE72Hv9T|w@?_M7Z-><<#Y
zJ!dEkx5SKdig(46<~>uV1H<nM9w<nT!WP9t1%D`bqTne9$n8vjDtM&ev4Rs#Qp@(W
zU%H;s@K@L^Sz7kBKT|O5bn0sbZxm2`&Z7Xk1p8`L<F(TlY(%z~IU?#<6W8WTdc|tb
zm-JCz`@afq)=E0GB4xoxMc;D9h$2H2DOZvi5~E0nB4ZSpqR1QtOnv9X6o$A@pT2h6
zg6!5Pk|cIiUpw_IQJk1;EgwaND6&Rz`>Zu3iqt5wMUg#<5>eQr$Pq=(s4;$vMlrXq
zJ(pl%!8F0#f_b9ID<q#FJ@ZFVz~lvm6cT)0D6xoSNFQd)P)y9?rdTqHQc;wNV&89>
z7~(#qC6;FDzZuI$v1oJAa-xt_jN+XrDo0U;q-AQQC>}`8m7ZA7^tHFL+VWZwtFl_|
zq*RNddK6W&B-V)H(MOiIeeE@ca1(`XmO4?q8%573dPPw;ih5CuzH9p;iua<ZA4M#R
z52I)hMOwq8^e7xrG>oEA6pf>}@dNyg(^^E)M0nFEnh9ynjizN}ECY+tGKyAFydO23
z89oqFsX-3%*23-m>|Mi!_fNOZ@@98N;flf?g(nJc6u~G$Oy1A#i(=?)t6w;a9f-p6
zNh(9F#reZg{^J{J6j~Gto9{`+Jr5COnHwf%TA7vn=r`FY4oFMXrRqo+)rLHZPEmZq
zF7ziH4O81PZS%BtQG6Ul`zWqwOk(I5MF-(ub+W{jFFRQVtt_gZwtX7KAC@egCC|^I
z_?!v*87+JKim~XiOB7wB#w6J-itbVLh~mqADY^5dUfWmj+WFLqmoccHy>}FSqL>-Q
ztSI_M(JzXrQG6Rk|0o7TF@i~=*k8pqFp9xZSbt3Eu*5njinFeQBoq7Dhp<j$>%#<x
z3tp2ljErJb6qBQ<)Zae%h;=k)`zXdSpCi_<coYyq{xx^)K@pPiQT$NZHc4=T;6%YY
z_Y9rk8&eGQw@-<J$bFm^#dHp(^O(Ug*eWq^_ta1N+fQ{!*;z7qSq9teDCR_QG>T*F
z|540~VpkNqIm&*u&W~b26bprCc#^Uxip5dvh=TpLUbx7TDAuqahKn#PjbfSb<)*Si
z$jT^InaXM*S5Ic5|98UIMzJo6^-*jPbBo|c!A*kn+$<!XYOC;VQEdNz;!Y_Ki^Ksn
z<SceuY<r?yf|B}u6ni;H*)(jdb2!AxER}jd@Sxzt!3o)xWnk3dD2|v4eW)L2b+IO+
zxD>_7C^nxc5>r!IW2d4xP0u6NGlJ*Y%0kWwQXksienI#}!DapJBaT|x{VqrGOB8?g
zx4+nG{V@vSPf`3Vg!~G*L|u*I8oQY{`}HVV46u_hlpJ9HHHuqNOj7ZUirZ1#;Y^~U
zl8U=g+>7GhDBebKKZ@U?_?vk~@jE9OP90G^=GYlve@Op7FnfUg4{qqb?N33^HG`L~
zYkR_3!kapEW6G|3)~8WCV+XireJ)7y7su@M0wn)%cDjj|QM}@WT+TN9NJ_p7cpXKX
z3)YnKNrS#mc@qVZ{mr5xgNhs~a;ivBkx@k^6`57^X_9m_yKP(H!t^=NG57PQSX{U;
zRQOsXCaSQiNK%ok!lois<)0l=7hSSuQIS<eii$^;B$@{Y*zc6L-MVBYW>b-!H88;b
zc7T0zxdM3x+H<K$Q;}Om9u)<O*q$9o*;X&{b*}<>Syuz?MN|}3kxw-SLVh|3DX5~b
z5Q>F_Ou17uPKv20uA;1JOb%ZyPc5OMlnN3CyO5HCC#xov7E(sVlB*WR_A6=S99~XE
zc@-5@;|Nlb<^RZ-ZK_368C6+D6&0!qO+{4|)l@W4(NINo6*W}6r=q@!nyS%hn+&wa
zUMAO4QCrM9D(VVh)Vo4H8<(M;sgQq^ns}~o;pllJmriV?qOpo}6%G{@w_D4cPHLi}
zsfuPQ-Z`JzO2x|59L<H(Y$2qjV5u?L81=q5d?46b@a331P9}ey!b3od3vj7$tMI7s
zsu;N^CBk-8;a3q7GoZqLD^pN*pF95ZnbgwzQi$YX5!(*5GnFFFQ9;J)Dq<?esu-u@
zLltdQ3{o*z#nMH_7C%zaRz*7%AFJpunY35YK}8o8T~%~c(TVleG23S<K2h<his=LG
zomEV#RPf!>c2DEPAp`AHNIqBbg^GF!iHthh!n$Rky_<^eD(KcnMGqA{RrFHPoBd&+
zoesp^zZPY3rX^=4eO2`1zBf+1Jj2RVzYeqykn#)^ocBit?q<IGY1+KJLsSe^F-*mi
zVzw6p?OzHRu406c&C4y+N2(a5Vzdf6FpOb$l6;s6P4cfLispC~6I4v3`FqA(uA~Mt
ztfkhb{q+MDPt9JSR_bIGQ&imI6ro}&dxeVKD)y+D#;Q=UUd09#GgQn}u~x-8j)nVa
zvskue*3~LztC*u=u8MiAZ57K@%vZ5M#Ud4pRUAu7%y`wZPz3||@*=jRtCl4k;8!ib
zEwc<PVxzKL#R?Ux#DV%s&Hxh2C|9OLCcMAQ@_fE^jf(F$CtOKkC}S<i?mhQ4hTcdW
z-7<9}`{!9~Qn6XZrp4BQJyM#~N}5|Zaf^zrQX$(^>{M}dZGr7#?hw4z**FKwG047)
zTO4FBS0T&yD)y@QNyX3H<zI^KQ*lbgX%+ib?D)3u0gh<V53zkkq0eCzM?^d-cuerP
z;H2ZJbU0~xG6&nDY}T^2Gb+xiI45KO2Nh)o**W&ltGFP_MVSpaIdC>$)FpAatl~!@
z9KRH=upRH)eo=9iRd)`PAK9KKq+a6?c$vKFp^c4uoioD>>kSn*h5RZ=CH5ry9Zr3m
zGc_b>xW~Fx@k+&O6~C$YUBxpM&pB5Nvak53$O9G8LH3872Oi)L6@PLr5>E4pipM4|
zd)fBX<fpRaSY9x-=OBCiOZZF0-ztv(n!@lx#Xl-uiaB>q1}eliD*jcGsG&wV>%+YT
z-~T%Gt+b0pLk0~AnlS+~WY&;TcqWY<FFON8n6VU{_wg){nykU5A-{$K8nS4}sv(z#
zG!2)ZAVotcYf|c2V?|u5hHM(LOY$5VMhr5}b8?EA=imI~xi#=iKK-6m38m%{o>!1!
zK3;48WFaZ2p^%1B8cJ)JHpqUlZ0eskk_&72=d87ehN41>X(%qFgy5k;cE;K@loXTv
z`mqe1#;2aXY|M(h?k=aHyoM?|s_Lkqp`wQ68dhj{M?)nI?KO1JP?-)IT4{J+!|Ert
zsv4?ksIH;T$<&=$6KZIvso^~h^)=MeFfm8!y|PKe6OwAvLE~#&sqbp2C#0@m#=&-q
zk<%H8-5cAU??`Q+p`nIGOj|RtdF{kz8j1|IH`dTZNK?T>e^@Cpwz-BD8c13SlAL@|
z^aBm8HAFS28qzg5G(<EgY$FX@3a4iJx*$8SOM_d3M}wE`qQS4B>a|p#kf30I?f7mI
zMTR(`5*9ZSitV=**mg9vOS1yKY>Ao%T|+w!A8WW|PYR#27J7*oZ;a$h`cSY98&^nM
zLF&0S<=-^5FiXNIf(QDJ8alCMHU4c7pJ@10!!QlQHFVbSnT8=6hHCg+(hkX;)L+9F
z8oFpW^vc#%Lk|r-g?H1?T?qBf%Tsy@?<?3_LmwflW?5SewvT_6qvK$EKMh|Gw$pj#
zp&|n`5C;kl5*#d8<t~~yGqS)t8YHcFWF4X5OARA6jM9t~t@k^n7O#@J)t+Np)5PL`
zB;RbG%ER{<W~<>_c1sOoHH_0RUc&?p>j&EpG)SFr&f1}oaU`8cpFg2JvaPWtPSWs=
zhRGVHXrMV&@La7Faw;U#HO$bkK*K@}KMuCf)QrpXTlo@a$*7sFVUC8m!siRlV<G2c
z;0$2BY>eOeZ!Mi)C3o+f<;h_CA`OehXNe$VmugrheDE)Y^H0mOQo||@e`<Kd9?p_z
zIIrP?hVL}2)o@J1aSiLZI~ulX*v2tZFm;0@uX3xvMsu8Q60%uvi(uX%_F~ttosBre
z&hvpC8g{Y{HSE@KK*K=|do+BnVV{Qm8gB2(aA#MBy&7&_vShqqOd4^8oaB&(!y1lg
zIBGiFxMZpS6PP6Kc4JqD6B<|3rJiHY&yaAEo-<P#46&cmKs+sYM)0f#ZHRs95Ibjp
z&gX0wHT<CAHx0kDCv)P`@T-Pf%<4^%T|?|Ya%lXEpEUfe;o-BQS2SGJa839xf-EQX
z>nxR+H_RHQ$Uq-DY$%cXS5o3_4R<)PoKL+gNODieeYRugRGJT%gN8pe<1UK7g7s46
zq}4AlX>idKLyXz-v4$raa_GpZ<Ee&coUU~w=s0;e+j9+nYk0wmwb=gRzKH)n8Z1NY
zM@OV;r;8jqi<cT+u~9f8&f<-Rw?h6EEWXxoV6f;0Rvl{3s3Vh(Y&x>*$gHDBp;ViW
zEIN4l1i?fdRvk&glLd#J$iUcEL+vZ~rexKTs$<JCYl@DBuao~=n1L7_YH#xxPtFy{
z_)GGmW45mzTXX41(@|JQ5goa8<k68=M?M`Z-z4`MYOlT~|KGo*^2~PTP<wtU7|T{b
zNI@Nigq%N~iDFS5#dMU?QCc^~*Y=@y&eFv>rT=Ryp~EhOyrhukKV>STqpS`dvTF>r
zmDBOlP<ut)xK=7Jyn-Ob9v7_?-_cP?M`dx?SiJxP#cDKl{76q7HFVU}u|&sG9kq1S
z*71psPj%GM@vaV^4!@4NI_l|YsiT#SdqeF!mc7TqG)=0nqk)dGWs(}|XriO3jz(g(
zpP8Yt4)%OTCEdtCY^I~RL{V=cgd!b`8?)zA-q-Pgj@CL(jY@H`67Hs?3wP*n3h6pA
z1EYSQoMA{xLAMT%4iW~hkc`9ZgN|ef=m_dY-#d5Q)}>)$NJm&lM2Dh-Bc-j5s18-f
zhhl1ix?nL&4m!kyk8YJp-bVOGf;9J6&el%H$6~e@?5LxIkb=XEVc5y^WLBMZe5T_o
z9b<HSuHy?G8`ftSt)q*MuIz*xQ>N6jaRTqAqmPchI=Ztbyt4Js(Njk+;k^YZ)){6@
z^{;+T?Wd!^j^R2+=op}5ppL=ZaUC7G<0f*5#m%8QhUs|nsRgHuS%@Nu=Ni6by<Njd
ziJ~}4H-<J9@~O>IYrJFqn(d-vj*hu3xhH#@Dv9HCjMp(i$3!-Yj%nQbF#9CIDT3b!
zP8KZs2vdd7C$3BvbC%!?!I?VfMhAx3I^u36c~ZH|I*+Y0sK|UBo5vPrSfFFyF#AFs
zi*zg&ktPG9mg!ioV~>vSb*$iU)3H-}<A|3TSLxWUV+T{6!D_)ZI=&M^Wvz~NCSNaP
zgWyKNP27r*ErMGGnQEI54$L<PlCsyyekUQdQLAjbbnNC>xSHwjVfL}lQN3m2UKUu#
zSsmxt8FU=baggn(qskeaO|)%0kMJ43s(|1f+X<=p^IzGH=s2o_<e1=bL7G`NW_@}k
z`6PQjr^+kI45xLRF?qh>_VYR}=(wok2Tnl^lNRPpefv&QrL@%Z=Ws~}XD6j=>iiS7
z%Q}d|f5Xo@uIMNeL)jR9(Q#GBUpoHQaZSf{?uCx~I&SF5^^5h6j=MT;>c)xUuR8Mg
zNVz3Qa+_zE!|fy=XRtLKZXc1uRxTy!HyyvTZ=Az(9W$F*A8-!rp8AK5ha7req_mk)
z;MZJ9!Qu8lSt{=PaQkC+KOs*Ap9!)bGHUd2`{A60ij6M#LdQRxw_`vIFLk`q@ml9^
zbigMp6LKUbugq4jZsNbx3nir|rfzJM`>hU33>jibh#_Ol=+#TQ75po=ahVp!OfmeO
zI}^pk7_2eOxt~%bhNKv><xI^PL#`OQEl){~!4^Z77_!EY5<?CVQ|S{!cHwJ=+vzr<
zNou=0U?68Wzdu8oY%xy^d4=Q_Y|<df_1u;(hIYA=3dWE>2ATx~NycolQZFR2g$2)B
zY;C)x7LB1;48>z85ySUWtR-V8CBz=%xs8QN=@@>VVqIG?jhuvHxtKBIRgR%b4CP~}
z5X0(enJUImDP}xU`C+*IofuwcNnB}5;7v2$f2$fpwHRu}P&<a|G1QRK){OC4Ds~1^
z@0Uu=J1%8zT4I}fs1w7x%p`_J%>0az+sN)Ibz`U(!+SCOl{s7e7#hUzcDTLN^VFNk
z*(xv3L;lVP<5=JJuL8wwd78%1EQVj(;8q(nkD)~j3qHic579D)Rx#X);dTt~$M8W6
zy<_MTL+cpQV^Cs<N~s(%xMT3d;AFkUP#{ZUixKwd2z&O8dAu?BVu-|y!)2RLj=QIA
z{utOTyN<92VhF}S!Vrof95W7-<itZ~FnNSsjX{f{3w>hHV~EAjA%>1pjZ^9r_%MbY
z9a7qGiz9M;6hm9Kj&Pdog?ubn@QyW3_=KVpH!;F~X@vcg|6%Gqz?`Vw@9|w&PLd5I
z%OX;CfdvNXRTQLyB49&N>?N5@+9WfXRiua@2-17+z4zWxKt(`0NKuN?J4jIk#Q&Lh
zzxn)s&+|U#IrrRm?%cU8Gk5OXNVemGh7TrdGbJ<OgCz=!g+Ut0XFhcBp`#C-cx;8t
z&wY5|uIES>Z{dsSbql+)D!aWG?4QoA4)+&6boF7S5379m(uZz74D?};58ZwE%7;Fz
z^at)8Pn7Dx%4+JKv(eMjhp&C8c-h&@hi`=R7NoLSOCfI5Qj~+vzCQGmT=n;1fDc!t
z)|`Fpx*P1n5FZx!z<bM~KCEt#G2Vv>J`D3=xDO+I80o_(A4aqB6!&6IY5}n^tPA#?
z;@)vSJo%i1;-7o-Gf1P)L{?uPWvUO;giI2g%$_KOQLXwY)7d<HnB&7-A7=V+_<)->
z+lN_6-l2~|<?-s&c}Zoy4-9^EG=<2hg+6S$?Oenz;KLGHn!Dfoj^#cql`CE5LxJwu
zG+yHhQ5c(E#k1OnH9j2k;kXZLeOTwiRv)&pZ2KtdefU;9V;_1quwnT4R>-?akYqDk
zLM=DRcjB|fhpD{AK1zp&_}+&fe7Mp_Ipo8SK5S<m<~sMVm-(=Rm)tGi&pzyA*I4K&
z-Yp+-m+*><Jmj?9Y`53EBs^-b5Bq%B@52E}<e=c{J_@5~M_494{NlqAj$@ZS#G|Z*
zz6v>w<X4UuK9t(x`GX^Wf6oaY*tM_ZW;NaCIqAbGcHw=V(}E<w3n|xE`7Ni+84iO}
zQ_l((spY)j!$o#aKVI|Wk`I?z`+hv@#}zgnj+}lJ^y8Wj*M0cYhuc2fxQQF=xqX#(
zL+zK&H+>-9Vwb<4PIAX*-#tFy_~vlj_2C}J6Amm59klx#tCPIQ%+!C9JY#0+Lk?v=
z{L4z`PlF#0KmPL}#gCOsQuF)qWGio~U_QZ6|1!V#vL9O0{3swwps!NBm6vWbrzq)u
zxWwp2@yv!)Vj({~eiWsHAAIA``7m1LcYFQl+*ir)qp%;DeiY$2)>onOfJH4)dnH&*
z4tdItihdL)_oJjAS$^dBQPz*KlbqRplomo>%8$AGy(DFlN?x#>ABrCp{20D7wY(pr
zpLDcc<LxrpnHO98fR_bW$&Z?TyGSehQN@p{!mA5b6J*pl%l53{$B662x>m4xEk9~Y
zY#l$I7E+fP>+4_?t$wMLdVbXRqlF*O`|+F~4gBa9@izC{uOuq9a5Q95?{qiv+rO}l
z{b=GxQ{fCY^Z(!b&Age1NxvigP}U26wDjXeKU(?0hrx*-lwx`A?wr+{SJzKDobB!~
zCFAp^t~P!UU-IK+A+HF2zSkDp`tiCSUHtgMk2m~i=SRqoupe*w@s=Md&+bQizy0j<
zOW}-OYn^ZV@s1zw`thD0pRl1`!~1@GAmn2|J`{4zoAQy6w*3?uee!glAAZppqz`qC
z!8uuxe#(Mrp1<q4gFJ7^{3H=SqJHRp#F!0tnU5Z4@ug4Ke#-S4uDBmh9K<`rvJ6)G
zQ*N5+M<U5BKXQeCD)^aThh*&MLOKd|VxvmxozHu_`thY7!`LKPBYt%EV~8I^{rJj{
z9)8^Dr!+j7-P4b+{TL)Q(#wzDevI#@^!MW%A$<k=2vT=daP$+txSzrxZGZ#^`mtSt
zgC(8Q{p?=^PJM7T>B=jvC;BUmFK3PLW1=6E{Akl(8Od(4!8wYp)Q>TK%zh)Ic7e>X
zevA`7-j4}F-s`Vif3Gl&4oqz_v)W(zX`m<damExsrusoLO^{?d`%b(V$t)hr)~Mon
z6?52G{5b2!IX~w4G2f3Je(dyPfgcO~*y_ityD}E}vDlA|e(b%Ky2KAon{#ISQh#Ns
zAItn$?#Bv0R{62oZ@-<iW~Z!7l22!+tnp*5AM5;BFCvu*{q1YtK(W6<XCA^J`Gfw-
zCO<Z_<H)c1w?e-2V~dc|0~G4p*fl0Nzn3z6`;Pku_8@k*JMQg*KMB?upitSxj^oE~
zew^@Qw;y}_IPAwSe(*<RFE8h|d%qw1{8*FY@C{J*<@3H*$$h|&gOW1ybI6bWAEuOQ
z@8~o@@mBF3VIrfPgAcfm`awMA$8jOQ3R3AcKso8hDL*)Mkgsv(X?B*jE_R>49quUu
zl;8az{vmiqkiWU-{kY&qAr&4K7uh5H_{Wb2eq83@@5i5h`_AwxyA0h1D7V*puS?!;
z`f-abGnvn$zou;TW^K5NA;UBFE-c0gncIGQ+VGAacm25M$6pe>FG&4w*21)cBze<`
z5B+%L$G?6&_QSaCoYBH@Lvb8^oc^C5eP%dQRHUk?9L;{z+>w8vl1~LxI8>15SCJ;9
zfZ%}xE{aYSE){MS1yyvNSu9<}C)Z2lTUK=4(p0|ZUFuGm=T2Gsk$2P!Zm)_A6*X1V
zQc+k%riuzGo>K8qrYnBa-J?c!5fx9UD5~N~6~$DPW3u;46jxC~MQIgfRFqVar6OBJ
zDW)(`S-r_g{OO*}xdeqqLd#K6R>hzTY2>U{>g*lmB{fDVsvV^G_BnS&6;oa)Tt!92
zfl4J_wb;GecCe~yuRN(HSY1U873&@OuI<cU=lM+PwN=znQCGz?DxOyH#z2K{IeF*2
zVteW7lgsRSJ?mN3Zs848)KmYjBiC2)oXWrTDcnHC=L419g^RHx4<4vAQqfpN6BSKW
zEE}jC8mKfA!o!=Z$Tvt)2H98ff{K<Z`l;y8`+pU!RQOe>Dq5>(qoTcvw^h8P;$;=D
zsCZSimj`fOolnXoj=0$1U!yokId}<eRlIxM^Sa<0D%uHoQ^i|C{Q2FCrIEZtg|(@|
zry?iQ`<{wkgOp!T_QdRz_f>qL;zQOQ^Ki+wkA*Ob#@tq4;><rb>$Ok3U-T^=P@$=a
zsEDcvvfNgshE#-kz31KQ_hhs^3r8sPQZ?t2_Fi2@OvM*$NGjqgrVmp1UWrRA3>Bt|
zgbIsAr=p{jZLW$>ReYwROL2F}`GuRcFGE7>Aj*nCN+%VaRs4M~wTmeG1}Ti4JjZrx
z`l!rvRlQ%T_=YFC>F%bYyNa(=d+z9K!5)GP_Ed3skUeqKOO)P8edB2Fjj*SWioR?i
zVGph3;M4&s2C7)0VkMiOiovXU4z?<Ws2HlEQ61M*6~k0)c4fSgR&cb6Lv6gnRg4fq
zK2pdi!T3JU7!_kxj8nnIRJ2Jd#;cgXp<}Qzk=NDGQMN`t;!}ea#!eQuDJs@}nH^Z4
zJx#?mkE>pB*L1eP;;tEjGgZtIQY$@^;#?K;*wR!iXA^R|`&27+=2ZH86$?}>RI!K+
z`?`m=RK;T9OIT%t6<VH7!bzAGEi$Iw!MmeMuTrsE#cmaQRIFh(RBTi6y^3|L{lUt5
z6+cwT_<FGN=~tP@QVMQRu~Ee)7KMs$RcztqINa1%q`AJ60f9jd3tLr;9;}cs>IYs?
zDc9z~igFY`GKYhe?d-@xcBt4TgyK#ili$huIY}t)Rk2USFDj0x*sr2_0ms3?N{2RH
zJ`x^KaggoJ;XWjISdc-!Ox#*0^C&yoVKh4HKBnThieK5SRGe1vyNVMknzi=QPO8|k
zD|PyrH1bm-ZtHF9f2cSkLB=w;NASFg3o6bBa3O$;DlVybFM#(0xUAxeifRE=58x`V
zRE0ADR{+=9x>TeDkQ%^E6}MD8R`H*TKRNiE!5tNMnaE(}whDcnt6J}rdo1why!Tc7
zBjhg@tdOk>Q>p*`U-|<Tk0}0^PJ74#oSj1QuPFP4Z);zg%St&1RYcFq7eM|190APx
zC;iz)PTuFF1&}qw9*znGu(5v`2r~HQF%JtWJpgwA<pWRxC>TJB*HtJ04@s2_z7zBY
zP<xKEbiiJMl@UPU05St85<rOnN(S&m07U~B@fgJdcv1+tF($Rj2ro%-QD%LcO-{>_
zV5tDIlb$8dc<O$e$|xpYMoy6<SXQu{V51>Qg#dmp>*kMa)c~FnUQv)@B_Wjss|aRQ
zEV}76SCw|&8UfS{;Kcx11yGAu5kT_*S_DuhfTsg^Hh_8od^|*{%fi{@+MZJInE?L%
z14|c|B-RhuH~j1)oN{?CfCd5ky-7pCCIK`OLZxv4orWkRw59=mwrso61`JW258#CW
zmJG;g$&<e8{rCp%o_8NP>D)HNexcSnfHncV7C_qoUJBsl0A2~;)c}Sy_Z}Of+#90s
zSD@HXW$0m8J&K#9O1&Py8v(o%z`Fso3)nwWLymZdg}p3+H|46|3ZQ)eZ?h`>85GHh
zTxxi&s<Tsu{jT<d06q+$cL3i6@DVROfKUM806q!8$J*plp8)zCf<FK?fLXmVdlqpt
zc!>TP-U7ZXEr6h$^lr&~tc5Qf&PV{!0KN#IYXEwHAM)gn1rQHlcuNNxp%H)?z^4Ix
z7C?gSB;m~s;PZr+#0p^jr8JUzrXB1Mzyn!L+KCRrI|_0sDfQ06yCi)mei^`|8)-cP
z=qdT>7C`p^zDio<p$ccA9ao)AhbkP~zYbvUl+0e@Ir)mSPXK)bSQNnG0Qv>cKY%d-
zj16Ew00RRU830$s@I?k!$P5Z#Z~&`|Wej0y4^@WIIm0_tkm7JjaD*UZSr_@LW{qNb
z4pl}AQW+P(_y8sZFfo8BRwi#d=VyDr8LCVQU@}h>z%-WCP{q3Iox&`oxX+HU_W+z8
zzzlX<Nx4-q*UW&upn_x;6RGE&EjUMz!MQ?K3{~cf{{q2<g1aPFO9EIL!2SRZ1h6cC
z<*cRvz6;pD-~*p<tYCq+^sWqG6|XdaHLU$>*c8Cp0M-StLDFHCesknoKi0XPL*G!v
zCS#o&S%YJp4AOryyU9qKZwa8uRr@x0PXJp3*cQO|>}bQ3?E(B0zz-Z)xROwi;{78|
z;tp~6Ie?u3>`F#ar{{yWGj_Am-_B^aF>5co#xRApFMzpIi<2A-;1C<zZtri5%I`YN
zHatu@62LD3T$<;kty`bJauwIn0Eou~j|=`P$cs7=K<R_UP6lv_1JN+$bO2}MddYte
z;13bWPYzSg3O|=rDi2pK@+<)i(J)lQ<p8d57|~E)!_@$;aXi#eRKxWEZUpd<)yMHa
zz=eqThnEw;U#^^AD!Bh-mp|pa9l)Ic?#g-ZF^X0HgoAmbk^C*e`vFvVGL4l*k!uyW
zbm6_>$~U*%{|4|lfI=EP8vbMHm2m096{lv;V5DeB6+)g*NPfXI!2%i}#38u-rkidq
z4Za30TDlOoU_lLChbt6wZl`xH<J?%)?bVQ>p|FO@wKMzg$e$^sh+v-bq-HNSt*oJn
zhGH6uYbc?iq=pqovK5Ul3kqjx=vg4GwD4@fQi4Sb<SU~gM?+c7zI<AF4dqzE$8An*
z)7Ww5atbHPDrk6$=5SOLtRy&WxI(4p#MG*q{m5BO!=d4JujJiYbqzH%Y{~DgDM(UF
zL+vE5Bjjnpx`NLLJ}ao#F8Z8?1{&Vc@UDi28X9SMRl{o<8f$2x;YAItG{jvwLz}tz
zEY?&*GY!o(w9xS863_D*UeIu5xI*4i!_hUR$`^LLYGmFVn@Xj%22Mfq_vM?W-ZmOW
zFZH}6__82_uLwD}&)ZhR>l)g#zBKTi%NrWH&GPWZn-|!QC(^JjJ^d{yx6~2#RWsRj
z_fUO=y(;fL4ex8{py6{3A87bc!^avv(ZF>+!>)QiVsY*BaD7)s!LmLLT(_T5-xbv0
zXWbpLO%)Ol)HLKP>!cXc5Y`aUF!i)EuEEd{)u2o8Ov!u{V;WjVTqHD8L#{+6G+07r
z|6GXr?N^+ivg$RwJVMFyR8Bj8n4H>?txm(28aip1^QW8H>nxe<BKU<MuaSd1mq~Qf
z&|Sk<n!Vtmr-rYE^bmY$d@99W8hUH^MgxPb$EWtu&{tyn333@HeW>@B-~hpaf`bGZ
zJ6OXn8(bvAGz`~pQo|_?BQ%U;tJbhm!zfmhhVdFEXc(i}Z#l<m7^mUW5z4}kz5Jo%
zui>Zl-4_;@oTy=vhM5{>X}HteJz2BYQJhL~O_92rs$rUt=^ADT89XzMR~rAN?1(c3
zW^1U~zZj2Nz+%ztnJC&^4fB$GzL4SP-Gw@M7HU|eVX=lK8kTCHvRp&@&{UFT5@fRE
zRA{R-tk&?WW-pgoqhYOv?=}3O*$+q4UvRBs3qOqY8a8Oys9_WPg@&yfHjhxAS<9Cx
z_*TPr5~M;0TO6U}DdgKkq5dPwQ^Rfzdo=tcSGPmMkrU}BrN!<P&fqQ$|Bg_8*6>en
zFN3S<y4x>I*{flnhW#vC4To7B8VVe79b_MubZYfasnb7&$cs9{UZ&xghU5QF6m=SX
zXe7UBIH7?L)U`({KeTjmEIqB^cMa|!3I_3qhBF!-F&i4rYB;Cio`%0Poab0nAm<7P
zdCh*$dqKlR4IK}AE(wxc7Q(1&9Q-xh)$oepy`kYI+j9ly9Sx^%dT$B;lQnoMg-ca$
zOOQGpxMr0<TT54`@+i&#jIHMQo1<v8g7?|HH)Q=INb*3)L&0IC9gjKqvu1<f>a~<0
z+Kp5=@in|cdTJ2)g2*34S`dyPoIw-_+Jyi?lKH_DS{`u)@sKZ!f+;i-ZKT3RTPO%m
z5LrRHJ$r-52%<y~C4+e8Ue4aq?#g=U!a-yPQ6z{bf_S-H7Oj|&qCq?<<hL|eo?cvn
z6I0Tdw{9bq4%f0Kj#RRPC>6BtwHD`dEgh*`9I504Q8tJd!)O&oxgg3j+ab6@P=crs
z#PA?S1o2c56@z#;i1&i16h!49>Id;$5LJSxDuuvLQK|(o>`Kwva-}5IC0HYfZSKM~
z1#1OyJl)<xnX`X&f_OS;k27_HSXR5}GlI_w))S;i&s%rg4T5+pXg?7&45CpGjf3`2
z?Q21_+2w2!L{kYi6MRvyxnPSRo)<#r7lLS+<PQ1qZ52doQQ8Q;l#G2jh*y&QRUxmO
zPjik^+6M7Di)EDZh9F71Al?+-ew4ysd&%M3g6{}+epG;Yem{s0g7`X!UM!`c{hB)(
zgdW64L3|v<CqesuJ}BrD^b1l{S&YK9r1E3MEb1W%hJ%O*Nu8BOF&0ETXullk8iYY|
zGUqcv5>rSb2unz=;HQFTua}`i2jL{22hlOfI|=C=L>D1n2)5psL$@!<ce=X?b`RpK
zAbJSTT$@Ur)|2g1c<-RS45lBOZWZS@L3>KMk06(M^kwTk>8vn6wSN!;g7$;?nXBmo
zgZ5$)+Mpl?3m+mlRB+h;Vn-<>gBTUWh9EWuF*=AbL97X4Eys`}7#qZ*AQlHPE{O3#
zObFU<&}cJ+Ocb0H#N;5R1Tj^D(}I}J3L24`=b1-{Gns#Jm>p!d{l9eP2$?H5Pw;fz
ztOd!~g+Ww%C5!1S31TUa%J$A5WzWWNoxrjn{_E*kF1SK)rQoU{RtsTkr_qPFP6~}b
zwd>hbGF>fixU-9THwCddh$}%{4dPp={jKa)L3|gq*VS(c;-6Wic*vfup6`SBK^)Gp
zDF(4UXnzEBip?*G9Wv$|65JWYULm`J_*uyAAod917{w7O5BCMJU&I5_wGSp8^2V{l
zLHrWLksyu+@oNyj1#wIqc=++8XWsaBLV_ogu@v)CVBSs#@w;S_{Er~c2tUhVYLr5w
z$VPr%uING#7llx{B;>MSw|!}uD0q!U!Ey-Vx`;OfZwlTD;?E#%3%@6LNARv7Q#(1z
z9)AA{;_syLaFoIh`#{>NBZP;nQ_Wkjk@ry${|51xwH8E52x%ev@hvrEe=3qMg#1D(
zA5Y~sBm5YI--Zwihz|s}&hpToJ!P8Dn;wEYggGJ14WVENg+ll&gbpEiLhy#rHiXwh
z$Oxfu2xUUZ2_Z9t3XL5_Lg4Jsm`SPRPlQl3WZ#xNDVQZ#Ot5$eC4?}xq>zC<yxBrZ
zCH2xmBGXgLhEOhqIw3qALirG!qm|F*q*mpx0M8i0Qz3iQrBxKt<!DMJ9w@v@2sB1<
zIWdvHEY(7&9<oV|5NZmk6+&$x6cc;WXe4z-X&ge65S|hKYzXy))E8_R!gE6C+<<A0
zw%0n+8i}ZL@n;Clgug1-JcKqvT7>X?2rq=tQi82Qcu@$Cy>hcer(`;<^TgZkmxR15
z_)1dDJJ)LxWIAtz&@O~v2%(UDAMz%vfEVs@k-rr}dlBCjr1DM(?+WKfY7D*~!UrLH
z@b{had>Fz<A#|GU`B?Ciki82*hta9N5d5O3f`Jg%oEM~<CJrQ#c8+k!9)+SId!TSO
zE*uHjpQdu&RTm{D7!Sb+Vc1Bw8A7foi4d$1j+{!N4Q!S_Z=Cs56!OnQ=orGJ5GM1y
zOh1HgLg24?myrFfYtInA4&e*oT?HwA8A3PV-37l&>ODgCGawy!zrj_?y+Z%@wQ_GE
zCD)|(388NY{dlfJ7#70t5c-EOK!O897%YTQgM`eQlsZJnP{F|Yw6_j=MkIYk3mGXm
zDul%+(|F(*362e6TnOVs*t;ZcLI@K@WNHl3hlDueXE$#xrm#byAZ=<0(}YhKoRQRL
zhA=D1XXiPLR_28;KZMh~s1O!}urP$pA$%LcqL4jIt!2YIfTtbq#q3HB_mU8n3L#$>
z!txMSNN{BctA(se#uiH}OP@6oj6@2r3t@c-8$$Md;KmR(g^;?~UQo?o*-QuVL$CWg
z_MM~nDTEy%`vz%C2wOw;3J2OYA>RxBz*r&M1vigY=&+N+R0w-mO04eZ9Y2Tg%PuEh
zBJ2*qJmIB6+{ZSV-+dxvKZ)!YejtQ{AsiBZB!r_v4)a(c2S+RAo0jGw$3pm36!PO7
zyT&M;$0+2#i8y17ax!H1h2R$NDQTi4oNoOignVJ-56k^P$i}lFoD1Q62p2-Q7{bjE
zZplz{DTJ#+IN)3saz*fykL|@I*MwgW;f9cvDK3hChHyKCe?oX5;++uw62hpvLhgky
zvSLvN|CZq0qqr|*TUXaZA^(Q(SjeLge#lOtC+&tK<-ZV8!ub5x)YP!8kPx+iBQ1;q
zVU!A^bQlQRZ^oYtqju#CM;Oj9Tw!~Hv4~*0pj(h)!7vI5_aqf>7#YF~3uX%LZsnl!
z6T*uMp87JAO0lp#q|l0oQ9^i0!K|d7EoAE$rA*jvv6aH8EF>q4vO>xUmJdS-qk?d{
zRSe@P;rtMZK^lWx4qYW|uavGOysBU|!RmrF1Z#%z>ll0OG(BsFQ74S2S<7MmJtdll
z(L!RM4db~m8iY|VjQU}Fh~pu&rel?cVKfS(aTra)U~rZgNmCZ%IE6;HW?|&%3_dT1
zGliCt@(U7`H|{Y5t;1-;D~+IB1TTg0au|PxaXXAx!gw`|WnnB2<FzmjJizoYW`xl;
zjMu|>BaC)o<c9HS7;lF0Rv7JB-EtyxoN{QKa%Ep?&GE`RVSEyXFN}93>b)@D590&j
zA0>13p^y?^dp}MpANBJ3g+~OB9e1iEVQ3Nzh7k%Q%&u|V{pxrnI9};FUKurBSu<XV
zhM|WM3nLzeQ8>pUhGB-0kl>N=N{tE1OB0kYCn)14C@Ur?^kF%C7Dk6KdWP|}q`!B9
z^4AABpNG*gj80*64&%!2?yn@OOBi2-(UtWcMz=7!hxwMaSgDLsPft|do~U%1XwQ1J
zx|K6zqSAxMZb;*S#9m?a4&&L~rKg1PO&EQ`7%Hjt4Wl0$e+$<@2_BlL^cONfkXOyr
z28A&=j53pyA>#Se!W44q!@?LI#)vRRhA}RT@nMV#V{{l}!WhfCo1`okw=05Qt<ESo
zS*bo*nGnXrFeZgDnc0}EteUKBpR81!qO_Qz<W5mWOi^Y}QFz{|ERaCTv@pmQNj7GN
zF`w=Kpi}RhGb?Pb4VW#NoD;@eA<WV|A={@Y*B)R&7{rBwiv$;ku_TP8Y}E%+8AT&m
z5ynam1!3$7V^tXZyomGm--of9-6RYyR$nW)S#X`;dch50Y!pJDO+vb7JIKEk{#_Vb
zlCfKbYzw3HE;k*1VENp{k6~<QlXkdIR&)Kt{w}jvJD36CyOPS!VO%a>n6Z1q*he0=
zAHetXz%UMlaX5^FVSApL>6CoY!8hQ8+IfEo<472%Io2J*Q9+UuLXHU@XCD;uo8YA>
z3LR)CC3uQuE9Cbu{s`lY@C$<UIUB|~;pdY|-r*M|cqtjhvFJ*ef5v2wX0&TzTo-;L
zsoWHDD~w9R3)10E7<a?SjG#ya_rmxq3{M2!2>uS^KKsQ16pG-VFdi`dh@Iv`Is8At
zM}q$fJ{F|I;1iw{@gz@;AYYQ_7m^kM9T-JJ1P&3Mf-b>yL3acNBUn?&&LNG2ZH%iH
z`O9vvkDB4k5Vyh+dw%%Q6y=Esibhb3!HAvbCnNl~R(qmy`W_cQtt}Bj$%uVF#wGE*
z1<ex933Kx72uelln^;<DA!P(}1WQj<%159?urPu}5mboasR;kj5FbZSF@j1Fl-ccm
zI)cg(RH1mw-KD&%Y6M)#L%mwWo|ES*1Mg*2XOUh;4Z)g%wFGNNP)7)3w|<t%ZA|J$
z@Js~HMo=$;`Vq8>a1tBOMZl;gf+P)uG>o8;kj6}*r<XdhX#~w8XrA<ZA%YgdyTb8&
z1Vp;gT8j8$GO7&+{|LsVINlQF<p|nF@Vf9<1YeEdH6c9qXeB!lI=>-@v=e+Y0vbg|
zwU6NK2;Pa{T~R(rIxzM<;qNCi{GkM?^K_p?;ESLKt1kk71Zo7GBIq1JAYxA)gd>PV
zps}1UrU!|&9lcT<p$JYtRjPM!N0f&TQ}hU85u{glHaY5CnCp$R)^feM5g0;DK`IF$
zmLMAyl}{u1EP@UZe4g~_7(t!`V@c}lMHkjf6=&be-Y+Cbr7K%tl6Q-syYR1)%CaLF
zRl8(-&1P9KeO3g$BIwOBY3=wXf`JhXBF=X9iD3LHZ{G;|MetX8Hm$#q0laE{FO!}<
zID#P&jEG=l1g9Q(hDI<fg5ePyKI5(V$TO>eqd#}FD42ctKa7fCG+QjoQ;yx!D{G99
z-j0kB>$As4Fd>4e5lo9<Vg!@e)2G`tSo_x$-r7x$U<wbMnDxPb-Z_hHoeB2JR;EWV
zgV`>Tar|D^OxD7!w8K}kYQCQ}TMBs&yTAnJTtSj~bP&EkaNYb=ii;yy62Wf~oQPm)
z1j`~g#LP>tSsnpbm#vCm1xX{vN?uo{m#aj0<GnfpzE@fk!P*GcF*btlBlsbL4WfT5
zNQaF=Hbt;m$homO6u%R`C4#LHTs@ISg|<z^(;KqMe-yqmg6%?n65Jv9;j&V6*cHLg
z5$qOaZv^{<>=CRrRoNfG0pSPPv!*JO>*c&RRT(%{;eiXLDx8AgEFZtn`6Xh%8#*F*
zRPa~?$A$bVIOtR=9Zs@ZBe)sCEw*GC(6}SVjR<~cDHX{1BVykbpAkGOcuw%VAfqmD
zs7dlmLM{tl;k76AYY|)*{{He*9>VX}xWwYm2yRQa;-lZ42<~!(iK0Oi_t^Y6R7Q~%
z#orO!=O7$Kp(y@|;6VhBBls_ZhipPEoiuMszDE)K%gSAz%3uLAg_sgWY81{WTv6nU
zB7YPGqCgaBQTr$!lIOg6s**<>QBY*m^1&Wry12Qc|9_f!Zk{L#N0FJAh+qa&Htlx@
zMWT2@lqUs?3YI-*pN<a2q9`s3c?ltxrYelej-pf)m7<_$Y0=9GmJwvKIYP<`?w#u`
zAB7S{1qnVCMa5(ec{tBbE8<G297UBVszy;Qil?Kf8%6afYD7^x3VoVVQ;w}A_~bM@
z4-KZ-_i`k4qL?Jgx6_noqNo=|{U~>{u?yiZ(dk2;R}>ASXcWcEl1}5OJy0<Ag(#Yc
z(lm-@LYha>B8ulFkvt!k0FBNqqj*t#S_!rhY%S%<SlUaX(D@Z1uL`~<*ftqOw{}sy
z$u<+mUvaz@Mf)gnVkjHK+flp|g{dQ<<J~CUi=v>8LOR}$;)5tQNAYcxJ5l4KC~~9t
zG>VU-_Ix-W3E7E0iQ4laz9{@rsJyx;3{kWwf-FYibO=QeN%F9eP3ucVg-ktf&uq|Q
zQN%^zEJxl%hbh5C6qXQ9p>P`HGoGF0`HpvG6rYPeFp5D@bc~`?6rH2!5=D<FdP>w6
zg53nW3Vs<yUOGHu_b9#+@qZI6Uq{h9if_0JXi}$JAK@hZqUf8{^Co2aOK?CGkEbbg
z7#zhADp5>{VrUe@q8J;+xG084F(Qi5QH+UVWEAC_xkp8DbV>%-GL24mSB-gF_4GC`
z>QXLc{1eV7Ib9ha#ROIyn^_dkI2>JnOKmt^$#*P^Uwqe^?3{78%*ib!rbaO>iUm<D
zjAD8eGoqLo#jGfH%ySlRkkM<p!e8O&X6NiE(lcEAB4bXJ|7nGJQOr-`s_6<p!lIEZ
ziehmTOQKlH7P85Ce7aIB%h9r!dzrM@zoskwFL;+nQTnPUf0la%2Z}8BZ>w{-r^+gh
zHV2%mqgW$^d~Fo#gs&I;xIn%QQEW`cZW8igfqdUZaj0<q9Z~FLS3T(5!V&C>cWV^e
zqW0{oZ9;yC;>V=2J&K=_yzmUWGwzCFk0?JgwS(9#NWxEd_eQZViv3X>kS=g3ii3=e
z;#3r;qc|+$@hE<c;+H6nusTFxH#wFZEAo2ZZ%N(m(NUa~AftHpybk_*6lbG27sVe*
z&ofeJj6I)JE+mg)`WKTu_i_|hqPQBxwJ7ehSj6Xg6gQ)|CHzLx^Uo-5M{$=`lgt~_
zxg$QG?6gM!=I1XKU=)spISevyD=#=7MDdU{r6WzpqbUB3B1K24j>l2_m(0(zRkG<%
zdr8XEzQ*OL`E+nAJUdw((BabUA<Ln|DI~90tQq!@*nftSuEVWkg9Ld}iXI(a9c^^H
zq$5K|VI42%XsIJp=PFbCp{$mUCv+6m5mdZf`1hoaV!HjYc1;~u8as;XsHmfojuJXb
z>d4ZOt=s#bD1xPQ<mf1?qqL4PI!+JwGU|^R_8z3=#G$+(gWR%=czm?Cf+$Z3UMlIL
z$OU_qbyU^um3y=*LdHDGA+M&Rx&&(o_Som4`0DI5X0ObatlB#2==Ma}(>m(vct*#w
zI+}}8Pe*+njdV1Y;B$fv1se#a+$(gsggx`tM1oBPhi9g=$VzD@oKaohaI_Hqd{Sv#
zGKEW^U(~_HRD4C)N=IwmzNs$yw7b%HXYI<_FY9<khsMIx@v3gWVd3*sK*wu3+Uj^+
z#~U2gb-bseKwWP;9dGJ*OL*dDT6-M_=cm&6F!i>G?+8+%^ZPnJkl-icM&&~Zek91?
z$3mEnFRA#2sJi`h#zbDwJ$xSL10bK`Lps7bxRKz#n`vyH5gk$8{xziOLSj1NNyXsh
zFR^!KvvlO@IKT|(_*BPdI=1TArlW(7&vksKV~dWCIy&iCtYe9ehPTjJM=u?{b(BhE
zcG2;Lj;=Z!B{E)`>HJbhHyzz|%riW^KmS_CS2}v==&7UWuNg$1k%Y+Gb>7c^qoWV6
zMaMYZo=om5I7G0Yj{ZUh=oqMDknq8R^n5r&Au2PKp*n`?7%uv#Wb6nXBZW7cX}i%z
z>lh=-m!gc<F+sPNCrx9I6Eazl$|SbHuN9IhqD&RMa4LlgZMu#bI%bMEOK>*Zz;E_W
zDYQAF%oUucW4@3Df(r%dvq%W%^Ox#arel?kS@m4YSp^RF3LPui?9bqdZdv@IjY{rS
zCl|}D*0Dy%S~mVYZrTPN>x8do`#F-Lh}i8+!Hq2ZGX*#4*erznTOmAz+o^Gup6{5J
zuS)w~#}7L8%Za#F^G6+#gV?Uy(>{$a+ZFVaj&FZT-NC`cm9mpV!8z>G@w1NII`-(;
zt7D%;(I?O7KtklCD7(fX9fx&X({WwLFFKCsII80q+sr&CA4NG+!RtD%<5!mC&+aR_
z{k6+)x;>F{PR9w|UMYG~$0?3H!WlfH<9FeI2=as9?c-C<CSz;=lfq-q>$o6^Toj~o
zNyp_Rcg;$>s$=O)<;(vtad`0?I&N~<j3F~-Kgr(GF}+FFKRW(otG<HUf_DV(3f|N4
zmyW-M|JgB<KKF%_F!(^nL+O=|IPy!!WY7IqloFL)|LNTI7pXDii{bV!?m{u-k0C9F
z0x=+l?K72&GnIm~lzMf&rwY0pF}Pw#kAd7NNC%ob2Kp2fh5j^(Jc}m=uZS6fHD@WW
z&QiEF3ahe63~REopNOGo4BTe?Nx_ma6ca+Fcnl?y{L_;uS;DggO9_@v#+Hep*V2MK
zq+AT;W9S%1r#O@tD#Y+d3}<5YYo@1Scp-+CF;tA9QVf-2c7@i8p|+4Jf>i~p#ZX-c
z9cl=v8H0A;J@kaVSf!3A&&BYxkh+4;2r~9rA@yRYFXZM+_Cme}F*KB5Bf(}dG#0|B
zCPJFV@ZSl$k<gmQ&_cxLlRk`kF@{z#^oXHn%>MOk%{%rO+8lJYiP^pKr5G-M?tM9i
z@GRw(7+#HG>~oISVrUn`n=uTXrL>LV^%&j|zH633qe!D0?Je<dFIaQ7@=grz#_(PY
z@5j)AB^<*CF?<+9B!*}VAI0oD0bdOM7(N!xyM<3!%PIMISD?la5HZXWBj1Ri1oLi|
zLc-sfZQnM~DC#l9Vz5M~5@)M3Q_L8Q|K}*`2?_E<xk>VA%)a&dEQWr`)H+Jk7cq1a
z(pj*JAXA_-u`7#Ilx{I}7xI-LV|m}g+<wi56a%-C*u%!t*wI^Xir_af^ogM_&lp4h
z7>36%B8CAm3}mUs>^H@OVi+955aD_ITK{i%Ym#B2^D_i`j*MYc4C7;%5X0yg#<1jL
z7{~M_md<&`uNbJ1PmEzw43m>7P|1tR^Pd{Sv>2wxFe8T5>{Bt!jA2#`%VJm_!|WL5
z#IPWSh0Lv<GB<{KG0c~9F%c^N+kbme42xq}62nsQWa9rby5*ge&MRVA8MD8<$jcjX
zm83?pHimUEd>_LPF|3baLk!==uqB3#F>H!qa}3`mukn9}=cUYKdH7aIc3aXXFX~4Q
zK{4!#;pZ5BieX0#JCmoQ1CQddd3oENEcyTGdt>${jr(HQAH$T{3im)h5W~Tk{h`ev
z)^ZF-g&&UL7a@6@m>rAZxCBoL{wjDv@HY;9h3#ErX(vTlF<Ut;gv#$EEnOsMV>lN>
z-8i0!<9rMkV)#3T`!QUM;S#&>0bFH=<=Go&@)w7j@N;qg6_(E>Czpa>W6>SL^%%HU
z&y5&vvcJc`y^(E;;ZNbW1@9#F9kUh2-izU{q_S{PD(5h{1NJ{G(ik4b@F>Qw!cih_
z|Azj{pA{jGIqbxc5=Uwr&Ny5m=8L0%ko<yaf;`GK&>plAha;(Y*A=9a9!H@#JR-W|
zD42{LG}z%y@{FWjSd`LX`<}3f@F$W!MTI;WN3o>xY7cM8II`mQlv<TI_`Wzhj<Ru-
zi=$K=r9~+tcxtwiBZQvAe|DGW;2%e&xc%h|l?oE|R2(;F+k3B7lwhX3agHzYRE~p4
zy=olQ;;1gCs}V=dI8x@={<TD@BUoE7FIh%CEkUO6Y#jCC(Bp{3Q9q6b|9YM(mG)fR
z-oKr<6Aj{M7)RkbN~1WM#nC*D#&I->qbY+2-7i*lXzQIc@)mJCAIArAd>F?IakPx%
z<v3np@t#P3QLuF!t%U6Dkx7x(CXSaxQRXOb%~4*B<Fz>2$MJR?ZAE`0j&?#`7Yxr)
z-V}0ub?RF}CJy(OA6JG+y(2-A_u_b0c=@O7v%D|7>l}Lv=#PY}aRlP{IO+dM9KJaG
zag3XzjJfOXT;G1e(vq=ZAwj{A;GX&Rb6F&gs00_xv7g=Iar?%yLmc^vxDD3PB`>F=
z&A2^foe;F*$Q456(>Oj$^6%y-pR=IWx%eWZT0VE@IJ(4fCXTale8DtZJJ`#H#O?W|
zu7Y32(M?Eq!LQ=zA*5#<-^9@;j<4hB701+l_93+1tdYO%8LGZ<^owJVI5XHkjse0s
zo0K<OH875&bL?3l+F*&=*DPmf9K+%m9><6{j>U02j*)SUiepn8o8uTA$Cx-4#<3`l
zu`IwiX2&rnj`49!h+|qD(^=HqL3ggwzHr9GI3_XKIL>u1%$w3F%p{xETxHT_d#k!G
zbCo5(d1i?JuZ=Qq?#h@M$1FDcT^Y2YXG+hFV_qEd<5<ADo9C=?x5R6|6dqRI#U|Rf
znd|Ql3lE#CERJJI9BblO8^_W(mc_9mj+JpNXV)v1$?2fAbCtSl?dP&parB><aeA)e
zny0Le1G!~rZSJJ6i(`Ep8{*g~ISFKBHky$!e2FtSsEm0wod@R3Q@)MkyEqQTaX5}G
zacqradmKN-F|kcX`_0a6Y{Pf)JxidP>j%Lf*<UWDx0t6;*%3$RThBiBk^1&k?~G$t
z96z(c#Ic82YUbF>ZaB}L8v1IUGIyS`d7e^sz8%~z`8gnXQ1IFL$}d8Wu;St<`XEO;
z;G|vR=V=F=i!b2UIDU)c_c;ED<3t=M<2V(^={Pd~F3~ZkjB&yH)_kRE+svP5W<1_l
zrv9T6snv>Zyi?-O2^qEiDZxqma~%KUxDdB*H4k3G#kf6ddMl1U<G3W8!OKFf2woMu
z7RU8u><w05l3)L`^zFEPzjs%93dx-~{>RyO{*L2*9N|y-=gasfjt6Y63G`3kA%`gr
zi6$zT_&1KnY-0xI82FDvoPm}GUNn$uAfJJ31Emb)H;`r^!$4sJ1q{G|(}2ss-ceqD
zk?k<-h04D<96xF)_aC^Qu8@^(;Jx?D9CDX&8z^X?kO7ZjH`?Cwm2NK-^$PFQA&UyX
zaLF`K)WDMljy>lpVj%uIo)GjONqKEdCKm)2Gwk)i#SJW&uapoZDJdjNkYB!(Hc-Yu
zQv=Nm<QOPxps|4_2Fe*IZ=jli>W00UgJPigepECt;Z#ZmQJxY$=2S{0iK;AEMUb9V
zg`60ZuZDq|1{xS>XrPvX+6JC6@GP(EM0y<qPYZdYlq+vHq`C$s3MbYx@Jq9z^$jp~
zT|9+*C_TrEZRI8T&Pw6tHnc{Djag$-xic`=A#i~DaE!CLfffdyH}Hai{qvP;<ue~`
zaDBDGej4RQ6Wj@^d1ZGi1Fa2oGSJyT8v`#H@EPzMc-i1LBY4li`>dMzN|P&i)v#|T
zUNg|vz(29f*A2WWg!~Ny?S%75pF!GN2HK1Aw%|L0?+P-OZfv@2Y#$i-=I`{y58WRc
zAbuqHvEV0y>$xuk>)JrjK!{o0Wv{Z(4D>vSiWgJueLIUdc5HEm4MYq?4d@0Q%vU-Z
zh_L|}$Tje(0mHy&CA|p)mH|^Zn++8rgL%l{X9hYL_&n)Dg|T^tgEANz_`<-~26`Fj
zYT!!)OBSZ~WZnvTyBXXuCO-?dJDbyP5A7=<J=lsCIvKpR!OJaHdh>b>Og1pZz;pj)
z^)WESuqU<p8tBJ1yg=!1V2}as{xQHn-31Djfd&!_6e@#7r$|23z%T>D4UAx4>+P9f
zV5EUj2F4i}FUn{GW0*2iTcFTk{TE&$ZHffftV?AqZS4YOqJc>U_AO9WJSa)GsRs5u
zDmjyFpuTGw&uC!4GS3VHuaC87^JomtGVu3N&(cfj#JL7%z3?k9-@trcvVm;|zBjPY
zz#;=H46I~5vY^<r&byZy_Q#UEBjt$Naf54_fzo4~%cTnLF0hBwRR&fYSi_95cX(aS
zxz3^s74Cw#j%ki}a<{|H2G$$cz_Xn94Dr|>&TN#!HwjYtmNmE+-x=5<WUGPt<5Q{R
z;SUCW<e0<jHL%^lPX=}v*lE~{mbr9iaXCkmtK65e*e(OR4J<djl@=;L8zAzRk@sDD
zIEb}zylSQFH*mnfaXBg1q8wzk-g0x}Zf<FQ$iQKCSOZ549OZ~)*!!Hfm)*|u2sc7!
zkf-BU3?~enH1L?irh!uiP8+yw;EsXc+35^iG;oRi`Y6tDsNCS?7lOQhIBVE<5$6n?
z7m~Hxb-@7f#OY#}IoKBUvQun|daf9_%3K{NcFn*|$tU@B4hRdC8|+F86$WpK{-<E)
zh045z%3TBZ4E)9VWi4c7bHkP%SL}T9s_%>216IUB<sU&7J~sq=Xy6fxx~YqW{I8Iv
zQ&Lk*q?+)W$S{%5M1B)#CLhCr`{?qAlfPoz90Mi}EmYFRdu}aM944G5T&DfkSLr6)
zCZ-m&|0ji3(1gddJL#93vkI9ulK*quaeYf_VH24qN|-2VV!?T55!2p!sL%xG6DEq9
z{L@MAlZ;)HT3mQBK?b?#npj|w!tZ3W7b#gLvQ3mSQQEY(n4pz4QAT)<V68<8#d68m
z@<NQgMV~TJ(ZqKqwwS17qOysE3Clzk6ID&TW8z&C)l5`3(a1z&6E#fKG||9BLlec*
zTpuk`sy1-cGEv*afS#T@CY}~j*Tl0X>Ir|wguX~&EUmtY=R_p$FXH?~3is*7K5$od
z{(dzv(bPnH6K}J$+c=t;_+ydM(nNC;KP^&dElfNw`~^Y&SsTR{O|&x6+C&=@?M(Ud
z*Tl;v+M0OX#49FV74bC_%3_5d0^iTgB+}kmtgK#}N_>NtFxDm%-xO!hGS6GAwPm&&
z*K(BLl9gue_+sTf6YrbQOax7QVB$j)ADQ^r#Mg@zzOUg%AKU?eyT^QD;>|nWAq}&A
ztaq=&FQ^JK7+`&E_4YnrG-M)d!Z2Z)xLrMqk50=LD-jl5aaWY(CWJg@BA(>mFIF18
z=-|dgH(J@>u;-filtpS{poz~+bTHAy#1|$$H__2VClj4bOm6Mvt^U=;%EbZMT$ea#
zzK0*HW<BTX%BE<dmx<mchMq?^6UCM&oi8|lsp0N!;wuw9O!PFtAnj`*LszEKMy^c#
z#<X8<F4~o~c%<i62Tvap#J(o_3F$9Lg*hB#Vz7x7CRUml!V{U8W@0)U)e>cxiMN(0
zjo-={ZeoOqV;j691;?8hC1kYV7{RfE>rSMO6T+QXCJ31*$YUo7nJhSky)UWLpS^X4
ziNz+Cn3!o|mWkOW=J4`QxfYmMHy~xMiFqdG3#Uk1H6SG}xX{ER6KnGqpiyMhQWMKq
z!b_CptiC16x!+tDHo1=Pa8Y?>RoW^Ot4*w71{yl}6+ib6<bHAdR}K!pYneVXaKOFZ
z#0DW7O>AcSndhXqDM=XoR$@uEn%HKdSpv-y_};`1>~{&2NZ>~k+c`ibkS~FsOzbf6
zn~4)9cAECa8hcID{lnh2beD;rO`Fhmo7j`&uRSWg&%}Nc2TU9^ag=4np^Qy#gX=IW
zn)&aY^411d9+Dg}F}z1{654Ur+6LFJ?4j#Y^AwVkCQg|czeKrZ;<Sn1O<Xc@nf=$q
z850-SN@efdvnI|b`8gJ>Y@*93a^gkP-dUIA3I{q9*GydJaN5+d%A1mhH%yS<Op3F+
z=cB#S)bS^~kBK`b?wYvImdW8O$9YfiZxeqB*-<p3Nu`3+Kggf@z{Eon|B3#HH~%Ic
z3ukQi*~N(E{w}m)i9$k4N#MZjVg+)&`4dP>z?pz6f!lMOX>WQ9Bv9_%OeDaq(i{of
zxM3Q3dIIi*Jt15qfr3K3f`tS<f)06QOrH!17ET~j$n??nJn$33Ns1=$r0`;bJD1q8
zB@@U>pl$-sB#@op>pWCUpi%-ovR$Q_rG))kQzl{8CM`!u*@RuE4ElGv$|pcn5~v`A
z{HX*yo9!qbSUF)oBk(4tN&;0A_-lz$ErHqz)JdRv0yRXbDOgKRL<brVBvN_$|8aOW
zfqDtlPvE%(8Z7egH8CeKxZ!s5{b-OtlLUr5PUm0pHB5lmNU(8&`-fyO*fe3^s&(j|
zkJuuC=MzwQx&&TGpk)FdCh$=LFDB3`f%XZ!ov=3s=WRyo1a37d+9rXQ5_p-luvDSF
zp1>;!yeh%h5@?&$%Sde9rOF!#v`gU41X?du-b%)j)9CZ%QstcldLMKzU8=k*m;9dK
z`+^?`j#+A#z{d%El7Nq;n!u)K+;=8sY)>h;eW}8A=G-ET`_S^A<Fo{VtdRs_34{{p
zdnGlJKs14H0*8Fr{6B(+OBL?5&RvF%6?SpZh$mnq&^duF37D+$wNB46rNJ^Kk${!J
z;ET@O1Ue+R7Z5&8;IjlC-Av0{4B7k(M@Pw9Cvkh&-M-bF{<Jr1cF8Xi=(Vh9w*<N;
z&^3VxXT4u0!1a@y3O>3i<tsKMX#;%{=$XLREaYOYgQ<4g=#{`XtTo+!?&vLvzq(9e
zkafg1(^rn-L*;-31}1Ra!mkzv@$77?7M`&%B!Qs`9ORWIFf4)L39L+D6>B_!k<12L
zcmksm7@fcv)_%g?{ic08Z>MDn|2B7O?@Z1K^KpJ0tGh$N@q!FaN?>vVGZUD_wpYl_
zC5uzoVc+qx=T1#v8r!h+;^{(Wu+>#6c&V&1JAn@dduALdv!SDRP6Bfin3u5cofamr
zD1rIH8C)P_%ra$h0!tEDp1=xGmI^KtT(iu+xq9Xv@`8D|n%#{fa{@aOSewAQ1omuC
z`;IARdk-#C)+g)_r8ltf`4t$ON&=gOGx%)+{Pd56MsZ65e>QY)O<)_xe-=pdqO>0q
z_#w$dck)x&F2Tb6vUVo0D}ntifdqa|*h@J6XyMqusN`<p4DLx_ukd|IrAH$-e;>~;
zQ&N{J<9B%vC-4h@RxISVa3q1F3H*`3nFNlpLK8Th!0!qC%JFBpQnp-~)>}NkCI0Wb
zgA)my6n-kH)LgC{v&ytuuDo%;&6+x!z&Q?;93K)mpTGq+>GH0-(uyu7c(03V30z9x
zaspRGJejX736YKMI-3?pUD0o{kJG=u=TE_n!&AxECXvo}#ErU^k*}kf$@O^L#l2HB
z>+b~aC-6@KP4{O%NZ{WD9&;9mT}BihNMjU(|B0Al*-><$o@(KP<qBidEEKR%#KIF6
zV8LObkOhy0)<?a3-lV6~f{S+0lP*Z&wop*`n>7nD_~jjVE&O$<sJUGE=8z}D0<o}#
zOd&ga6l1Wcg(of4v{1`JF$={l{IFcH%DGBdC~4V$UsaLL%atq(ITp%V$hJ_*LTL+S
z#29rU)lJMJ<;0o1f`#%H6bp<Ux7;4G^4y*h2L>xi;!MA?kSc;zEmRXyU9g5AeU>a&
z_}^rwmfK$<)V5H^Lb>wpr!91^WY1@kKWm|$h0iT?v{2u|a~9sSI8dX3g@zVdSa{w-
zBg@`?r?G`5mc5|j&8kK3v79aYkCL15qWF)Ti%W7XL37JqV8DH-Ua-*8LR-uJG?L#b
zyl5e%n*E;<tyl#X+F179m9$rcyky~J3rjbrdR8daS17M0V_&n-YK6U<<?ELH2~Ynf
z-Zw0?v+$;6^S3O#Bc#2Bw=KM0tuP-*sdE|9{9nEAS~l_mKd|tjg@}cyg^w&eecl<e
z5VlaGlH+3wpRitJFJGSpzXjDoKoreFP{^k%>`i@(Se`sGXM~rR%w)OGo^By#;WG;z
zEc9Ms?}it*Fm{DvFcD7pSV&l~EaY1FRFro{Ip3V_AueB`kkIG7EC>HkjQ#7UQm#%G
zI$PYh8{;i>vG4`cWOZBUYT-)@Ut8$KDzHG$x<y=V&!W3!|7Frwf;|Ko>?vgD3T5N*
zVplWmzjEMUyL(<r9}E3hRxHL9N?!}yYL92<Bm4l%e#J1{!a&O&9|l<%%<*6NP{HSK
z*#9O*8z#Z3E0qyEe1q413J@~N!e}951ji<0`3Nw<!bA(JEv&IH$--m{D=n<DxG$Xj
zx%xs2i!4mFFwMer*2s-Qvn<TEFhe+lGlg83ol`HAHAf0?zJ<9K=CKW|ROmo!nOb&%
zxZMvHUhz!f(*rUVGyVDAr52Wu%y4px7_)7DD$7J)F1SLF?c}?g&ao~BH=H^3q+_jx
zbr$wo*vF=_(*7^h^%gc**l1xB8zf7ft>u7wvxV>3%~yNAweX#VEh28Uu+8EhsbtcD
z)_J8u<i4Xna5x&5`lI-K`-Fqy4huUaxJPi8g`b5miidw@<m_gPGIAKCja;d8tX7<V
z<+h)BTd5qdaL_`Zv(7^ne&Mih;jjd`Px9vO`KTXd;fq2(y=y)i$!``;u-tMnFBc~*
zoU-s#E-L2Yw1wX-q~;=DE*kB3|6$>lg+DEvv2fPHIbP#pZ;dUU%NERA?(>2dEL;?F
zNsxMx=Gj+Rzr#|mvT0dZP|9)LLhbvdcb9hEuy9jqZHcQSjqUBWg*z7RaZqIm-}T(J
zaA>7HDD@87Z)CW5>2HqY9AG_;`*PsLmC8RB9`K|qm4|}WkGsepuT=iE@K}8Q6HLjq
zdmMFQ{#>NxA}bf!xhRm!H#>0T!kLSrtCSzEpxZfnEuSmb-u0_UF8HV0>A7&{qM)SU
z$%R))p<KLwDurvGG9*|y7n!+Wkm=_k2_24Ac0a+CbMd6O6%#BWSX_`}Y{^`BD%gMg
zQFE12Di@`5q2!`ME*@>m{`q8jnOuAIMNTeSty0Pgl9UrtUNGZQ20!{!S1G(h;C^?N
za#1-KU2^e7E~@0BYAzbG`f^c?*OH4Gxu}_IkI%7}yvG|k`qy#Q%C*03Nq>O)%zrNG
z<YHQe>uJGf1?%SG86nIeqw3`%ca=i2Ej_L5LC<r!AT|(ecN&dz(Igk|=Hk6vRN9fl
zDr=gHX1Qpdix#<Pn~T?T@q8{`$VHo6yp)TUx&I$o-vQ-B`F_2-z)hCT?$VY;dKo%M
z@1PWE0wP`MAR;I&Gs$EoJy}E$0YNM%NJl}MNbkK@K~Rt`O{6Kkes`W2&+mV}bDne0
zeed(U@4P)TlVk=hocM4}ww6xpvt{SYVrbp(rMGh8QaC;RUV8m|>1~|2a5ufJ6YYdB
zfL`jfH-u1Gw<NQJ6U44gbabMV@F`7mcNRjuixW(e(7Fk~dc086Q-%2;weC*zaH1zi
z+=<~%jBuj26MdX`*NK5njLnhU*NJ{k^mih+&6cz;@f{~VS+4Mb#si!nW*)XSYLfSy
z805qU6rC6>uJ_r}kJDHJz06A<D`BV;!&q9q+&pJnekhITbV7B)kSU=#;c{ZZaz%H-
zErdKqcp#4`Br%b?&k4U16P=jkM8Jul6Co$U9R2dPfkkb>7dc0qO6NV^2>Y2sd?zjH
zv_2PTSx$@;zIwUB<R~XTa^mZI#YeN%Y@_fof*%WBeV#_|I48zCF+r5WH`4mN$VU7$
z9&mEG@|hEpo%q&?>Fk7tMLy@qHcS4>i7zN_OZ!qVXG#)znPq8Hn9+%EoFJbn_;k5K
zK23P`Wof)u&(G5tPR!(#s8w_pr_+&?*}~Zgb0j&}iFuq+Clct2;e7TI*SLzpD*sQ1
zg-+ac;+_+WoLJ0V&WSTlEOBC~6T6+*<HV2b`OVhLUzR(qUzaTt{7H~MBwOLcN+&v$
zD74Cn4eT)|Ry(oAiM7m_+qTY$^+GP5wvv_GC({_b$%)NQY<FUZ6I;Z#I<bw*uzfNk
zlQtJ3etgc(NZL*(cF7?MtWcPwi&$%g!UrMp(q=FF(24y{9B|^G6DPQo5>sf0oH*jd
z&rWn%p&aJoJ(vDd-CReVIOfDJP8=77VSDT5@gA|SSz+yd-m~fTn&kS`iQk+!>BK21
z>UWuV#m-qSmT+iI+Rk(7XSwq@@wXHIIB}kH@=3~HPITLne8Gu}PW-_k;MU>9HSV9K
z(=R)5g&SRsl+U*(5@Uq?PbaQRz<&zG8_cyrx#`3$CvMB3S+S2UC*BcG7n7CN6y{0A
zu7hY&F8RI_5BM>pBAbebPCRlVK}Dj9$K2d*TTj+)HY5RAxt?&(bmEy4&!wCf+zQTu
zI!mLG@S$Y<%7a(9*7pc1a;V6wBA*JVu&Ll<{gxC-x2vdGB_&0LLrAiUoI)tRHa+e6
z3MEzLdxexdD$-P>3(ut@w-D;ppBAE#&?si8;5}!aX1t^#zly*1r_eH06cB#yyF?~W
zZZ23*MU%;Pk|HXKs_3Mmvx;IWimRxuqK1kRDoUy-r=q-SJ=E^l{*+Rxb!&p{QdFyT
zrB##>va(ciSrtTz6;$i*20WLmEUt=zl~f#?Wu2hD&qn~M7FH3gs-l_@z6FwEO%;KC
zi5*mQR8dPsZ54G?)K$?`MKcxkRMc0|P(>pZpDs&Wcp;^M3Sx}EqT*E*joGNU_dgc{
zVll6&Xs)82iZ@j2iT5p3v{KPpcuT>ImCEZX+6ZsU0#{m(yZ=D2P0kYJ?Nw-J>~Bgy
zzwL=shD=DL!n-bf@6}J&Qa)X&bWzb&MPC*DRCH7EmWtjg`ba;#&7rwv-?>uh&T{6b
z^$_eS$Yd`Si&k3ibmI?iYLv^xFW|1NRQfZciUBI#Wp6Ld;9C;-&jp?b*2~DnCql1T
zS$rTnBr|Eoft11QN%nvXO<edu#SnIyhSxL<RWVG(6BSQY3|BEi#Re4{RXA0sDrTve
z%?hY+vENio<ixuGw+gQcA3NtrE?tF32)QA|RI#RjjY(cZ`Bel}gxJR0DFMMPLyLwv
zc@pw`q++y+h>EC+EKxobq-&&**sDoKv7<iD6}#RUqhg%6K2|YS#V5jl9#=T#y-+k|
ze7uASLK0Uglcd7Dp!-}!kq0?HQ!$y{z9sqS@#Gr^lD|;#C7a1h7!^}hOj9w1Q+;OI
z*Mi>&GC6H`t_dyEzm?=n71M>x5TuI%e;vtAoTFkc=edeiD(0#9PDO)N$}-jZa`t=G
zdTRP274s#zK#=+mLKdpXTxC70YO#bda*2?oDt;7leqAw&KdGoNzi_$l3olo(BF?F-
zW`}cVn%k;wwDY~yYvs87X_n1yTgN4-qV%LRa{jtzlZwqM_NzFcVvCBcD)y?_$2zFk
z&Y9mZnb*rZ_zCs0wHW)SChU}Hxl3@jiajbmyO&7s(-ziQCBNw5ZJ#z@r14h=2UQ$W
zaazS06^B(E;p(`QvVTTefy4M&#R+aNhb=qGl^*B6s5l<y{m0tq{Z*2`37!-@rQ-K^
z41XnZmVNtI+Bp^HRouFe!q?4QP;rqPmx>!C{J((UH5HdsTvl;~b1YxdRS`)TK#Y+;
zMZ7KneWQ6QEls<rf_RrD3%RZ0j*7p9|08%{brA;iS*5f*llz{E`yxKz{?8x(2=Ct}
zodJ)9k6NXW&w3;M8TVmsp&E*5c%dReLv{^0G$d+B(yRw1adKwU@aT~BBSxP0@?I`K
z4xquNp|FM`8tfX9HC&&XmS00o4Sy{u?9h;^Aw{#c*+CVo!AjG>B~QyEBwa9<U~UcH
zty1X98;{8+Btyeq(feiCGBp&?K=P6xNkJin1WO<fe^13X%k$q){8dbG4J9;G&`?oB
zNe!hml+{p9gQ8h44&WWX(yaVj>7mVO{NlBYhRnr@RWfXRf@^ur`Wt)WgVz75I=z!#
zNke4~H8j-J@UjNZqAKi@MtS%mKTjY}Rn0m{tENGHV53zRvaVBlEs44Dm%XWm+T6iD
zC{#y7UA9O=eGN^dPa0@wsNq!&jWsmV@Jbvnt+GDHX(Y7&bjDEJej#ysx%B25T4>m$
zVKYZZLn{p-4PgzfHN382kcPn;+GuF2;VlhsYiOrgkLG(*v+hN(m)_9Op59NDGbhrC
z2}SK4G<4L^Nwa>7(pj*phAu*=Y+Ie!O*nsc!X)2Ty!yDky9Qq4_h81e=&7NXhTa<b
zXc$ORG@~yEMZ*9M?`r7Jn#YY#gl-#3qcMg?oydUqq;;|6`x-vbU}!Kk4B_U_1KqNo
zEImvEe;k!<wW4VlE}Y2`8l1w_xWfAnjB#mjYZlQ3J%V5UY$;yNdUT{u!==mVym8I<
zT<|S^e$9H9UqCP@*y`)Vh=!<!&ooTdkfmWH+j7i4QL}zVwe~vr9Q6-1jMDHCSIuko
z(Hh1J8KdE2A!9X+6GHDNLW+dai=Itjazb4Hl+`|ADU&!?AE)rzf6RS+uHg#}GiAKK
z)bN#t>6$fZr)c1N)2#Qt@u04>uLbk3Rw}PnrfQhRu`XmI|29teOPCoNBGs~!%+fGh
z!yFBBH7wS!g!AnhU+RhlLdd@p@;w)CL)(1eb6*tvA?{r$WD#fVYQC@xOEvtcVV!2Z
zfomCOmyp#OmTOp{VcBZyJzOhATqVe4M8tdDijuF<uvYXPB2rn;UKM3yJicOL`W6ja
zHC)s1r-p4Bwre<|;b#pyH0;!HP{Sb&yEN=39<-h*dhSLczWZR0W_{4?72GGdU+{n+
zU8hznhq>-9TBFH(<6KtPQ*1{y9Mf=8!zm5FXgIFnR}H^u;1h=bTCJRrNyvv<*w!e#
zJiIkJJ@@a{PxXFhm)1$<%(=)pqv4E(vzm3Q_JZI!!SjN#`?q}mBgr3JHBD`_OF}Md
zxWX0{%SGj?DCE~U5ZrKFSiK<ahK8FOo^#G<xTRS)jvjMIx`5jn?r8X1!=BW1+I=Da
z2;SvNtXlk@AYBhce8@eVlk<A^SUkxS4(J5sDHqzUlxLdtlT;>&2`=l8{P|qqY)o_^
z$z}adFq;c-!6rPrU=Ek{EOff;E+mVR?m|u>se&mkIE0j1qtLc*NK2C>v%IxN$t66u
zV4k?1*M+?gtbZo%U1-m6A-@aXbS_NGbn!jN7Jo^Q%bdKB3x!=M;sXC7#}29HvYyjY
z)P-U$6nCM73ng7B=R$cGO1Yr8P{xI_E|hjzZ|%9cI5GB89(9fK*W$!GPf}tp=&2yy
ziY`=gfjUKoRTeQ8|1zukB&CXARTpZmOJuUT3pL1HsO7>dF6*ywwOO&NIcfET)Df&J
zSlORe--QOkIsF>C(8y(N@6>4|uSy9lq<zbbrY<ydA+H<x+<47}<}S=~VYUk`TxjXS
zP#1=|tY2fca-o9@9bIV6L2+5H_v(2RZCq&U!s2Gd`KqIKF6#z0?F}LA1>Y1rcm}&S
zCU$c1yG3+!@d7iwvkP5Z$hR|X*xj7|5qVl3!&@%&bfK3EZ@a8_uXGpe;X)dJktMHR
z>Fq)vm-S8PV3+kXu)ge&0=5Cd`w8|Jd`EEB8s%LV2D<Q`G@MNyB=I}eSRa3j90~7B
zQ6C7h%ppSf^0nbEjBw!-7sk2ZbU}4-C&XwM_+L@Yh0TF<(<NV>vwAM*E_fu#o&Vv&
zVnl-zGAW6VF!j3N<Fs)h;KE2Y`~-r6VHYAoLN4osr^-tSQAsi&OUUTk2{a~YAG$C~
zM20cR8OS@s{E!{P{!dN*Sa58NPs=mjg$XXqaABqkpStkAKYg+bpS!T4V6KUrX-f)E
za^W*h{)P5V1#%Jh9>*7)>Mp!GsTlj@OEzaj;jaXz2!1VHM{%meFl?F&-^TfLA<<OZ
z@CMeuXz#31_-OPwF3fe|iVIg=nCHTGE*x;-AjkT8_V0OU7xuX@--QJ({2+xdXZ2iI
z=)xk-A{Vl+RhEgq#D%3oesqCGoyJO%|0D|eN*7jfL|oXyP0WQgE^KgNqYI~P>1$nB
zC#3Pyod3*DTrZqDla+qUy~zbCG0t+fx-ckD`c4;ixv<TJ?Jn$)`0{HN#?TnU_*=6R
zce`-uRtgK;BXwhea|fjbv!(3kWGIr}BbqX_M9Lu-4!iI>OK{-`^{dud`U$Qe$x{Ec
z{iqAaxC#p9A^*h%;&DMsIf`G&kK#AMlY*x>zQYqJ@&-HKUYGx+^fNA;b>W-~=UvvX
z*8dQ^AjsrJuAq|%B(zH|T#oA$uetE23wK=j+lA{~Zbz-Zeck5VV8f@_Z@8>ivc9%f
zx#<G&mSBnc8QiXUI{J?bcU?$v!{Np~m-Pww*kzqFuygLS1LxTv@IY+xn}r`q@?7H-
ziceg4%4_Yl$}<-d+(>j={J9G+L}XqjlibMWMzY%~D$0R&18&&d7SG|vx^l^bW>}B?
zxxG1&NxK_N@}<~0C7xM|yql2fw*D^7%TNC5JIxJ+Kf+INqzlO<nA?p!ah>ZZ!;SoI
zOmt(C8<}ntaHG8&Z@Tf48wK4c>qa>@3b|33G0km7+~7qVe`Lb9vGaZc-wspMjWuhP
zVp4(PZj^ANq#LE;^(oB*31<weM_xvfhu13Q-KgM3LpK_^tv#e7k9Z8V-KgY7Ww*87
zUv{Iq5b`QQs=86ljnIjNdutVnHR9fyLTU-lxo@k(qb$v+D_BpkzF-4Ex=O55UUB19
zw{;q`^)7z-!`|3!y|BBL+u}{!XzE5Y?*Edc(!!1A!n0S-#bnF4&SYyhUYERW+-N6+
z<+OEM@AW33y}_fLNFeFpw!Z%z;fB+Vj&5{vqq7@b*c)yPa9c0@>gu+hsMEuZ2J4h=
zf^P}FE!f=+_BmaQ>B%zP=q>Sm-00`VhtFT?E6Lu|iZh_UaFQ?ADep?RywAzz#=v-w
zy~mj&d~jTuy-pdz$$TY+Hr$P&!iRA(?8sa)Ke2qPLS2Vv(xtkgaW=Y<btv8C2H%&;
zzeyTyxZS8V)Ba6Xn(hYCBghdq-SE1tOCcWzPKaNSO2Cbva6S)~$#7hc2pP~DS#I!x
zaU@&k#^!a(C^tTKW30@dkK7n7WQ^b+>#W(uJ9wYCG0u(gZi~;5n|>4A_>^;7I59>(
zb7L|G(T(G7eD1~<ZtQep7w4fHUvZVWvEGd-ZhY;=cW!*ows6Rr+L|23EH|dQF-?-+
z3eIq2x)25gUnCM|N^;iMiHx7^#vC{1x<US1lZ1If%(8YS=ex1Mjiqk<=*ACj>unT^
z1W6VOsoFoGY5#=9!k5IA7weQ|Zv5oNayQ6t-Ai5}gnYG-m2RwxE9?{MYb3eW4F*%0
zeKci*8{6EN*Tl9_Mt_qVxz{VS&2DTFzEzNC;1n6QU4nNAPD@SN?ZzHA_PVjpZGG}a
z@1&THbpGOw&x+)!5pQ?zcjJH?2i-Wt<-A^Lx?Uk3cB97qlp}8Z?8Z?s>c_a&)>~so
zBRS#5uWmec<B1!;xpC5so2)jEvR*lpC%yiwDW}}{-Hp=}o#|%;FS&7+%g2rL9Jm>U
zX&2qNAhTj<yyQP5$t;)MxZ=iDH{KqScFm1HIgQsV)0(9ZYihgB<>|%^iKN2d7_P08
z%#(AzjE~#?Z8z?4xS!&0H~w+suJ8wf_XO#>@5ZI+c}QpvMSLW9aJ}->jc44PkJ*!T
zJa=2SdS1A#(;i;i4rov;LAPF)oTwv7w|>u=O-BwL5T0F-f6TY(u*W%jj0*oaPt2*K
z$qn#_d_#NXPt|d|t!<yz>e4hF={j=h$gN|h*V6Oo$g3l4B4Q$+jtm|73}hI{uOm~(
zb`N%VP(a5^Ix2Zk*<)oXsKc)#preqE!a9oRD5|54j<!0A=_szFrjA-VO6Vx5qk@i#
zI!ftKbd=T6WpPGnsZSX}mNx2E67Az#N#%5u7m-PZQK_V(vX1JK>t!8PbX3(*O$S}E
zEDR%IAtap-C)Lo={cuw4wl?zGI_j_!bTrjbS4TY^jdZ-CqrQ#?QeZ<Ju>-}5iq+&*
zaWxi<)gk6>CQ5T1EhN`#f^@ai(MrebQtbsNl3MHF(OEs_-CCjm1E{pq@rI58I^NaM
zUdNlPq>dgsI_T)gVs&)Yv1XT*rIU`%(z;j!S*30|-qP`Q{BTt0idB`Qr;c7a`snDZ
zqqoGw4jrpAv7e6qI^K!9{>w<$KppStaOzNX4AL=J$50)^biA+Q18MA#|J%<jIi*<+
zmM~lzJ3_E>^Bl4IXgXXvJUR@~-8yt3{~eL7Gj({SOrK!P^<O6kb%b>6*KvTeQAb3_
zQXN0)i0a7V4A(JL$4DI?>iAU0M7BuBM>;;yF;2&59b;Igj<NBUvVkl=R=5Aic&X9^
zIXYc2o22729bf49QoNG|KNpMzF#A`MoTB6Fc+LN}<Y_v-)iF=UcRHr)m?6Ql1!oG*
z68vva=IEF!O019=ey`&P9Se2L*RkOL^Dfe{SjUohIV_6(7VElYI)2izRmV0R%XO^K
zu}Q*K>R6@odswW~v09Wh@$9jTJnniO8+2^^pV|Ijl^C;G^euw1BW~BRLy~)R?3B`W
zNivpecRVr{yjRCQQDTQXsN;~1r#hbLIIQD{j^A~h*736}nZMR6zv?)u<Cu<LBp18=
zIM<G1Ez%R*aE>LJ2Qn!#@;4nPb)4d2Ic$wGmpt)|j<c+i&Zq0(oR0H4uIczw#|0f1
zbzIhQMJoJ<j!QzyozE=&JU@+jX;($O_$aAhTib^0nb&pvrQ@cKTRQS=P#ADSM-6*6
z^4hgBm)NrLpa<+0{;lI59S?Lo)Nxk|xhEK_6*JzKBrE?&T1w@yD6ISwAymB2GoR~t
z!EM%qf*vGzkmy0W2e~{*@*tZB$sXkNAiKwEGCZ((ki&!BGRcEYtm^5<lI*fMbN{hD
z&rA{S@E}#PY+so1>}XP&$7;gM&og<reJ}Fo_8^Z3nI6>LpyZYK+e=Dhc(7)3j(n2r
zos>Vn2Ql91d1e6-V@V#dkOw6^DCt3A4~mGZs0YP7C@y@{!zA{=ijz5FW5gqt@}P_d
zWj#<NfF+dnfTKxL&V%wIRuGKwJ{y#Z@yKck_LqhGJqUPE#e=FIRP&&^2i-h)i|z8D
zrU$Qk(8hyW9@O^WH4mD5P=~Ga;1v&E^`M@V(7=O+9@O{X$A=j_H1XS`Nvvce57;w#
z4`&b?d(gy#rXDnt-eVYz9mq%$A~{J54_d`**iuL=ptT3FfVLjA^PrQs-iSxO=|Owp
zz3N-rX$KEFdhl(n%+~4Im`pjA)Hxp6MMzhV^`XfTeA|QW9t`qeum?Rn=;^_Lcw{dR
z`gqXSgV}Af^%jw&U)=kS2mOU}5^{RbVw3Y-5eEvs=fR%~tqytLgAY7VJ<voS;=yns
zbPe@jm<J!qav+Wnox~XzT^_haG+EWdNxBCfNwRx+P?lh@H=bv51$jO2#a;ArAp|`L
zd9cxgO&)|jh<GsGg9#E7W%(YA@*qo+BL(*juyzC5M;?4E%4oqcg1TazsEif<iQqU7
z7D~-?FUt7TgNYu@^WZxVCVB9g2U9(m=D}o%{L+K3JosEV3;BX;@Us+>DISo2Bl_2I
zkuGw2zx80c2eUW?9?TGB=Kqwyj0~G23i(_qin(ItfA7J3PDl@yNx%XR7J0DPgCAJu
zcot@7M#eAkU};>8Da4;VSnk0p4_14yLcA-bhX3Va%o-2Yda%xe_3@%&*;(e14ax?|
zMLvCD#^yNR>cKmYGPVeE2c~zMhp$RZqDa2egX12Y@L-q3?-tx6xL0tW2m3uZ;K4x;
ze)iy~2Zu!GJUrsTVc{(2!=(JNUE-K5w_oBqr%-I7GUitg&U$dpgZmql-#j=eF{cE7
z7d$O^MlieGT1sEFv7PteiU(IYplxgyJh&)?{0|Q<32*f<<1$zA!wiboB=1cRZgDLL
zzb^Qf;0-|*dyKoT2Y0wd8%Q$nw+H`t@YsVVoEt{|yAt-mgL|y1@ZYvu%ltjz4+S4_
z&)jJ3dru`v@|-({@SkN%e<7S16AWv_n{8CG2}w4PQ%H6LISjynO_GeU8`x~*AG}ea
zF_|KIE(5s@I1Hp3NHdTwNbkB&t@+G_K&0g{z~knXENmTHLCkL;)4+!YMj0qz;3Wh7
z4ZLHZpn*aL#`ez79xH61h~(;Sps0aj2AUXXYM{7*5{C7$QrAF91Ema9GEmuoVxY8v
z@{)y1zKoEvhP79)8s!X(d}Q?%Kffx7tD=Dk(j4N;2C5jSVW1{k{XDa(focY-$BuqD
zsoW1%#@IenOGGAX8|ahEnhAB{3O{b@8K`fdL0oyoKtth;1iN*}$#~kU1{%j>R%}$7
z8F<Y=I|FZs*xW!{AuSBFG|(y@`MQwSf}E&r;)Dgp#P$Z>G|<^Vmw2l?82F@Fj*b#J
zcS(s(1};ysMu*1cbT!aTTyIJI+w9d^`D35^u_e>PKu-ziCD@xyHqcjiKS7ogTe)1e
z<O8Jl+y>q?Fwnqz2KdoT8*X4woDVkezVHtW3^6cN_%OjbN%<Mf6N6Z;5h6MTRRfw3
zmmmWetQ+tcFbtSdnE+h|7PiRdm!wZPKXADr@T?=&>Y#y;fv^Nb3}hMB=W<k%A=%YO
z8rGQ)%V(~S42(8V#<Z5n7y}<0IAGu)=O=sBz<kLyPH>We&kT$g&fp0`J~c2guG}AM
zb^BxkUm2Jp;^zjw5b~wqpAW4Lq<t;PSq9fTrW%-L;9CRJ4a|@+;$-HB-L6|nGY!x<
zOjI~(6lWWlV_>d<c?Q0hV2a-vU~r@JR^fjp=I4xM>lPUJft@1<+F)R#fkg%u8(3ms
zsev^H)*ATHz%m0X46HQplYt{+Q<e*|9CBKWtTM2g)mxas_0F>h&M|%tu9K1(z`Cs$
z&W`{lX`2je6J@i3Ekd>$_+6GEy;Qav*kNENt8HMffqk;E?54gjV-M@RLE*8;*<`kT
zzw`hza#pjkhYTDxaNocKR+Y=SiSnC)lT<b+KMNi;aLm9j296szAxHmJu#Ev)YcZB~
zihJ)S<q{VQ>t^7zfiniq8aQv@f`N0Ag~5zuE*2i+7Y+OoFM&F}v?~VwG;m$?t0G>L
zW6|}OBySN7+%RxclK)lX4mW=T{}{L%k7pKs^xTu8V&!)~UxH^l4-GsrkYd7N;<14z
zQYD*-rv{!0&t~GeffrJKqKO34sxwPt_E<SdaV6G}>?U%UfN6C|tUj?|yDWrc!JOiy
zo@ye^L}3#}Or)F0Wg^o=0Ta1R<S~(9qTME?ya#zD7fC)7JojeCa+{R=CbUfo&l#w^
zWLg__K@+8UTD!>#C}dhE@Uc}{)I>28C8dz!=D!n$7lxbzB_tz9zm#c>xMEsUCA6eO
zX%j^9vL?!zC~u;IiGe2GGf~k*B@<0dG&QX|DwR#tG*L_V%O<LrsA{5`iRyB=8iKKP
zM`Xo#(Ap;In0Q58bxqV0(onFzU<32t>qiDN3$2mpOuj0lu^<bK1vE3!-o%?GUNh0$
zL<<uwO}uWRjfAxlY%OK7!py>qZP~Xb-iVjOL&Pe{0Fn+SI+}Q!og)FAOms2PRd{FV
zu~@CTnRrXYSoT<DdYI^GqOXa5;_79hH%CqShb8~-QTm&B$HV{=@5V>rzW|b0X@g7*
zmU48#_e~6sAMpbdLnPzSxH8PNHWM~sgeXoEDkq5vmkGBhEH+lv|B%FE!Vs@%!fV23
z!fzrd3bzgx7%;&th(;a~ot#@%)I=5s+KU=;yK<z7D<-a*_|U{CY41lSzLogVCdQcf
z*aSZprie1u#3v@knHX<kl8Mh`VoxyfsfmdurfgC+Z&I#oQqndnH8=me`%O0Sxrr~N
z$!y4%QV#3SJ^3rs`tW7LH?^^SE&4ZtRHmAkCOp>m=_Y2Fm}z2`iB%?6o0u)$?@WAe
zVvg{+oH_g;kaZnf)bmX&FtNnMQWHN&%p$>sf~*7M7solX{AgmCWM3{tG2kch#<sf^
zCRR$4k+JgEm{@D#XA?(Ftdo_y#l%(<>rHGhvC+gP6Ri|%j?cZZr>t>ImrZFK*Q|+s
zCia`yVPdC=T_$#$;5jNUtQf<QqLJ(|u~%jY_YDpuKMoF<IB4Q9$Cn4<B>;DxMHwW-
z?whUa4u-KD+A$Nqm^j7V!{ifRt^N6giC=~ABa+GAgrEGsEBCaCGbS#WxM<?61e`N*
z-n8yxFiUKAis2t7E=j;;^WRg=*a>GoIp4l!;!hJLyeR3#bqP!LBF&4xOx!SW)5I+k
zkGO%;B@^$S;2lBEfxm_PBY2nVG0B=L_a*s2@Sz|@dY=gIQ!9UVFP@rs#{FMrSEAS2
z?q2XCz>9V}a*)$VlDx<!E^?k!#Pl3qzzdrfc5$T$CVP=n$cp{>X^eD8vO&VX*Z%3U
zjxt5e<wb5U@_3O~k_={*^2K?Eko<z7%}N2u_>va|y(r{GVXt-7z#cB*MNx4Tk1G_5
z#kqC4B)e-Vi7D@eBBZnzWxOaWyqq8>5+h^CJ02ChsOUu{FDi?dt}0%<EIf9<kxErB
zs>Qt&YkE=3i!q|q_M(muuNQT_s3*Li7xlep;6+z2x_Qyii$-3&;YE8dUh(2pFJAYe
zjTeo*XyQdnFIsug)Qe_bG>`YmYhJWqfwl5e;i($Ci=D>JfeW96o!{CEb~}5U*j93J
z$l7_W&l=_;CwWsU)6t7gUUU%7(qdajXCYlgWF(Enz9mVvw}%&R3+EQs-D_=hyfsR_
zr-;40C}*HIE9OOCPK@W7OcFWC`}5l$F9vw=t`}|z9_Yn;LY#uU`7_9i!Ct)Y#Rpyt
z^J2KvnS~FLfT3OlWaV;O9^tjtY;4&Qxr9|O92KnPrb)0%kljK>_rfDdL(mlDO<j(c
z&ud*s`dKow|5P+6t}HJ?Lc)R(!KmP%an?EQyv@o;FFq7ylpvLlyciwljQN-)d+~`V
zlf3v$$T-3AUQ7_euur|1D4hMw<YX^C_hN=9UwHAQ7vIJszY_Ab7gL1ni+^5xBgv_P
z)8ek_LcYFWl^L6>vqYKg#T+l@dNI$7wW2WKJ1-Us|6Xvu7Yn@j!Hb1nEb?N+qa3{a
z;T+&tb0~S&i`NLuwZx01Ui|3AGMQtXhpWB#N%->kTwNh#r5CG&+}y0N9NHRL@|<$(
zyjbtW2088?!Ht5O1UCzA@nWkN+q~HB#V%1;!VXyxoXnikJ7qa=w(k}%ldQ~M;hfU6
z{azgK;-Dz^1P=)w7Ca*Ovmo1b)Qe-nfAQkD7bm><l{>H(N0PJs=EX@bE_iX#i&I|w
zE@9`qI4$Ii7iYcyext|RQ?Z*=v1{J*62K|<hZmQ;xZ=fC@4q+CdBn?ceoeyu6y(QE
z%&tr8xclAk;-(k3#Cu2ZwzwF^dH%N-|FC~#!rv8dzAe@n#eLxq1Rr|w$cx8bJmGHR
z`}gYOskqAd@XU+nUcB%k!H2TqP4pqjhfE&|_>j$q>^`LVkS?wqd<UTqb|3gMLLP<2
zi_>Hua{7=eN=jUJ2>G(VHD~T-Wd??4pPbFQahl7AJU-<0A$L4-_`{@pah~C`zA0c>
zexJ3=#Wu8;d?+XZiVuZ+DC|RVNfr?-=EJ<A1&YSw>uphD%fEyVC4Ja9@!xwIr6jnw
zbWUmEWdvgv*StC???VM2D*C`B#zN}&P|1hNKD_Kh6^X3jLscKLwkR~#u$m9mMd!k#
zF$=|-5?srN+ENY`2D8ArKGc(7ChPmqz=wuX6kS}rjU<?^S0$#g4^4b%>O(UhI*Rg|
z56y+V;X?}_S_*&NXPwCL5VTf4v=)(^CtYoPXzN2epLI3&-$iKbWURe}z3D>-A+Zw7
zy4Duj#fPpw%>Ds$en2-L-eM2TM&;Rf+lTHxT>c7IzCsTldiwC|82mN{y?p5H!^0>Z
zMbXEHzCI*|kQ72cANq5M1AH?G-tl3852hbpKi>6Wpb!7}aMy?Td>G`zG9P~OVXzPH
z`|yzuqkZ_mhao=reaKhJP8%vj6&&Wna3LdnaK<g?`ecS_KDfl?_Q4}W7o_XSgB%7c
z;Dc8bUtGT%wDqW?Fdz_Df<A<N2>TF;D<ge~a+oA(_Dz2JxCrAv^kEc-#;}po=5JBP
z`0%k0(|wpBkz;-M)Q5?}Kk;E)ytMH`CJ1iaqD&I<r4L^T`OJsOLO%E53--_74i^4V
zXWPhUjwzx~6{PsJ58nvyH7=FONAKCE`S5Mrdwh#B(}!7-TqrnO@O!~IKFsBM5&oUv
zKP?hj$mqeg`I01GAmj(Zt}Bxl30dsJ5+O@{_)!S^fx)y@b+Fur6+Z0oVXufQeOTwi
zdLLFva&<g%jgYlId^y1ywGCXJK5P?lQ#^(vyE)Fc_^?&@y)D*AZTDe^4?9KKC3v}I
zN~{jMIj^K4`+V5%!&UJf@Zq2jXM8y8!yz9Ii+Iw9BR>4>!wE?;`%xjsxYw1ny5bif
zj*F826KjaqXIWMK)ra5W@lX4uQ90$q?{Vd{kWyQfb8+PlAI=NE5LYe=NiwYpUlM-V
zhbuxZ_OuRhP57TaTo>|};B6mn2)XIQEgxpKutuELVykjTbn?H2Y;0${$Mx>RYkoBM
z;{g{YcS}DC`|-$!$K0{~u=%Yadm{0P!k-F%=EHLzUT|MJl7j&W;v%UXPU-Z#RFWUr
z;!1WQIsAO_*}wDO?uWyVR6mma$mzEhCNri;*hIr>Y?|;4Kl1yL?nf?3<`&H7=ij%G
zSNPzq3Y)<AilzUZSDB)}Bv^pumrXo<Ge^N##!~iZ4ixdDs2`2|c*T!meiZkklAph&
zM+x@8I9q8y%J@-I;!Ck^>ys71aa$GgvZ9xdmsU>5g?kAVgj5v#e5*C<UiPDkBx?&+
z^`n{})rEU1qlS>0f((A#BC(cK^|uXHTk7~xS6ub{Xb_L7@5d4;xuGZ(x>_rp_NpJv
z;xUc=XcFg5g+wd=+qW(JXz9m5Ki>1>GJpTi&Yzju&5zc8yzWOEKiZ1k$&YqI-V}U8
zu)Sdae0FB+AiSgC?>{)G&^r6kMHKR`LK<CnyyeH+espKU6YPCCwYDm@kfVnmJ^kqA
zM{hs+_|b8YjUuf|E#<TX^z);?9|ua=-|=GrH-Bbtl2EL7V(lgg5i^OLu0ehb=A7|E
z^~3%ve;beCevI&=&^F}*KZXbyDoACRA9c1VB-4|WXFsRDvkpl|QZ+wbp5Y*O`EjkO
zquc8aw;#G69>4XgGn(N?i*5h@u8+j$ho80b<Dee_KZ1VD<DA^Cg!~BmG0u<ienk9;
z`Z0!0evog%ID6U7jx5${n_@d<8_7j<%J!ijqlA3q$7neaMH&y6xiZhkehbI?@rjT@
zr81eE;K!$aeB;MdKNh@^bD|&n=9T!I{Z=n^k{_S>F`3?N%9K)e+NyH)b=#CL{P@z3
zul$(eN7>V*SUB-(;ayKyd}dF_G(VOWPnzq;x16PYQm6Yd!;hJM%<^N7*zErySK|FZ
z^7nLG-CVZs{P^CF`K*#3Kl!oTk01P4=*Kd4&IL!_R*8%JD7RhdywI`qJQj1_@^F6q
zNXu=b(ye>ydu8k-&yG8qpG#fg$4WnT`LUb*zdm)99~=DG=*Mb5nr>It__0>VIzQG6
zq4?fR+xSM-@NM$rkKTz}{n+NmW<Ou(Y~LbSYk>71QYN?iv6FrHb^`eh>GNI#>`bZ)
zvaPL~IWH}Bj~{=f+xD_!xe(m8-R<oAxj)oR?Y><Zem~)mABX+;$B(;y9P#64KhFDc
z!H=U%4z!>2<CKtNe*7YY;&CA-{P@+6--N$^*b4skdFrr_GJp5u<~fw?pHe%&{j?v$
zwkv1+I4gwwoYauyBHQK14GwY5RN5sW*90&7aYe{g!KD=wV=;gFab1+Z1S$4`mHnn9
zZ~1XMuHO;zx8S7h$~`~s`_ZqTJvD#_emvw94Zt42BR{IPw?Fseg&&WFKM|z()Q@Mv
zS8P|9T-hTvfv0VUQnwvQO$;C@fSDsxvjvbtNcI3|RJacyPMAy%AZGxM09vTlP*$9q
zni9a#{El6Z68JEvP44{4Hb+{3r;83+dH}iNJhzZM0nC4tKvzZp`2%<(i1tBb22db?
zUjjHDz)JxX44^s751>#0g#)M=K&=3Z1W+`9@&Qx`pjZH-I@@VV0L6uuh$|%nC?&k|
z^r8$XExb(JTUJQ90HX8q&|5KpN&(aepj^J9lgirtEmJE8@Nxh@t#?!jpqdc!ssXIX
zkw`+T9>7Id{MWOoqlY<a2T&(~R|9yGmRdJ})%{awjRL3_=k)_<AiSYq=OM`q*zvC8
zl>k~^D|KazgBcr3_9g)|71B)bH9>l>ZdY0c&?<nf0c;DPbpWpiFfV}b0%#LJ+W;bL
zP5|xLnE^Nh;I`a8fHwp9KzN4$ItI{3c&7k53+WX=7a<IOJHQ7uBy^Qzw*cOX>lEqj
z9zc({(o;xG?=8IZ<AlBe^b4RrPyPcKB;o+UcmF4t<qVYMdxFe0SjhYFBm;&7u%)_v
zs3^k(hYQj*LTX5&2B3-P3cwrpx&zST+#|#gGzD2(pAf%bK#)ZR0|*HZ#}(EpD}a%b
zoE5-_as5lqnE*ZtV6;@@lK{qvYmDH>0gM&G>@1cxJ^*g%p9L@>Uc#pVOcXvTuEc^T
zOY(EUF9ccJuQ*0h)RX|ej>mr!z|;Vy1@LWLnIU9)yk~ganW8Z7>;UEn@8!qbcsxI{
zzvt59EaJisU_k&saC&pGA9XC`*sa5o0G0-@NO;B$WpMyR>OXRUylG!1dJJ!VZ+-SL
z<8sNqLhzSHiK{p>AD37iz?uNo2Cy!GO#%K{59`@u?MrP4V51P`WwL%p>n~j-^peoE
zMF>AG8!U2c58!9+Dgo>WV5juwt^f|Q!h0OM1K1;xdj$^!urGl9Tm|nGU^&D^2OU%%
zy_YScw{j?e!)!=zg?2>ZNw`fN3!w21Wx?PA<b%SF69N3nog|17LHriL$pG$iQw`u$
z0KW%tDS*oXoaVmtwvBc^fHQG^Hh^=&Z<n{c7ldDod;bU^re6u*D!0%V2{!|nyvTM<
zYH}lhKLfZf{I3Aq&#Y%z=+6?~s^{n_J%5YY#d{}!y8(2#QR43a{t4jwXF14YNODhH
zOg?0*`4JFAauAOLm>W#}W`~l$S&1hBJPqJk0M9v6L94f4NU@1QBn6Sc;K@06ep~d^
zprV($*|G)ECudsrAZ9(uEdPCK_YyhZcw~d*vISx6P#D>Fpl$s(j+{X_f=CUbX)Ak5
z5D%L=rminh{zu!FYJs#M(u2qqL~icwK@<ogPY`*7$QMLL5WkOitdPd8e3tOzp&U=f
zJMsrHxt^tuyN8#8C>TWHAc_R}UUKV+zV37s3gU;Ljk{%0sR^+d73n1gkdzFfRM0xB
zd?kpKPaF!5Rmxs3h|)on30nW^DjP(VAgTsYE{O6$R0yJ?=r0FRNeE*qv#PH+UgSt4
z#*)NpK~xW-w#3vBtSQJ~dTR;xd^eT6P7rm2a2>Jo(il)*s==Bx5YkYvQ4rNS=d>;X
zf@mDHKI^~f=V-!i45C>OuLaSD4T+>y>6g}=b?%qeO0Y!`ErlH4p-`l?4&rrD$S>_s
zln*l72KnyG%yvQC$(xPc@@5bntbW77AUX!oDTqiA(I7ep(Ip6W^@t#H?o_&R#DnM?
zM7JQ`3gYdcb=pJgxKkl^52A-CJ%i{aq_<$@ol4D=L<aN=qJI#Bf*2eG2k0I4Ko!Tl
zT6XdQLA)Epz#!fe*P7~908QJeY<}7Peh@>0DBjvS<@+FrAu_Tz9$Ks5)1At&poPN)
zsW^jBgSgf;Rb%-<xPv%&vdHS`jyXG(?K>4c2oEPGE8ip08-$PJelFFN0;%|e2m}!d
zBFz4|pWrKP?{^|GDBjHj98{R3NS+nM$RK71F(-)Kl^h=iF*b-#f*2LVMZ-bmqaa2H
zF(!zQgSfX-p|NhnOQr4Of*2pfxvcyQo4{%Z@pTa21ktdQZ6ZgRGdze%lAPWtks|H$
zAifCV%OGZo@|AdrQ-l=Rr8KFP8jGA7#J53A7kyehfUX%_ry?@T%ph9-S&Ab0Wsl?a
z70Gis)dxBz4z~EbAifLo)m{0&mxj*|Vu6tAyA&Fei-K4j#8q~35KDqs8pO6Bwg>Se
z!_sYQf>;~GGT}e593d-$SS4hoV4=!ZByDvNPpT!7tP`DNlaTd-8-my<Bo;&O<{-Aj
zBew?mV}k^WJA&95#Lqz-71u7oeH@o~<enh*3XdIke-H;aD?~Xgc<6t;M})^pJ{H6;
z9H}7Ai+G%Seh?>xp9tbtA(_&aQ^HRRvP!?l>qdS?#IqcW1r8=J#A7ZAxhVLD#K#VL
znM*)KCRyP>gSZ~V;b`iMApVkV;qM^+5ppAln?i00-WI$g*k_k@kK!)p9ye`Hrvlc^
zgwkE?pG{1?AH)L=*<8m%!AF8j=D%F(i9|B^X%Nri{5fa!F2yS0H%CGUIjSe|iXdAE
z*+cj?jOk(I2mv8n2;pLgr<AaV5C|a{LUIT>LwGfW#v!DH;0U2?2<1XZ4S^q~c|*u2
zBuy|~FqdHN5K25u$P>cyUDii%MhN*sC=^0r@n#AZ455IKmjoGhaAT?O?&TmU5<*cC
z%Y;x&NQn?ihEP0&or9B8(?DZbsSuP9N{8^<Q7czWkGUSyumWi1C3_8G2o;4_609m%
zS@31SDuVl^!qtRV7tHHOtQkVB5Nd}|CxiweGz_7xxate?DD^`4r-#*2+O^S+Mxw{+
z@QUzPA6r*UO+siILiZ4QgwRa%4uY?R&^&||!dr*%dI&9rw-UT^-^xpC6T%xIv=5<e
z2<^nhVz&-*FyKu|GUnn{E4c3CgpMI}3Zb*;-QwOZLb`^~E7j_sw<P(t;Ltr*ANHh6
zl4=OOL+BI2un>la(3dy=Ll_vsdm;3f00s{b@{VBaxbJedNK5G*B>MY;gF}e5;)4)|
zh%)qlBKQ4hJzIDLb*Y0>0{$yU3&9nFTSPqsQ;0{<5M<t_P13y~_(GuK58)e`Mb!PH
z3WY)lhwxnp--i$hAsWIbA&d(lD}*zJ9rNC|f5^cdU?0ixZJo;fyo%-+6~ad$j1GZ3
z_%LBi2p@;Au%m6PC}o^h4E6CLOyIFXm>R;TAxsQm|0kus4q;LVV;eeXUkLdugvmla
z7yPDOshIc65Wb2>P7$*2VX1vyN8-++)3{!)*l4r3LWNHkoFO<<@aQgu0kegZ%n4y`
z2=gRK{3AV;;`|U6gm55)gCYFDCWNqqD~N69li5O89KsSV3e(1usHGwN7=p7?iM1gt
z3*p5sWkm=pL-<MfazS<u^;IFP4p}FbB>8t+pNVTENy6m15Y~sVA%u+~Yz|=yXW(vS
zQwT95XV}(|W!pm7E*XdKRwnLNR*8|cIq=dh&XzHb-Qumf#(H4>o)B*AR`v?+6WlLI
z*P##&hcNSbiSr>G3E^k%1|ggb;b;iQWO|(KY2CZ{C4>|4dL9>Y_EC;sh0MBK>i0+1
z<Ub|x>vYHOLQZpr#7YR^oDjxr-<(S9(l0G_VsgEqsegoUiG3JGr7$kD+98w*Tc@U1
zL%0^gqYxg4@Mj3uLwFdnZY#C=w$xwjjaCkxRNtV&L7D5g#oZ%>yCK|`<ed=y4k6bb
zg)UmzJ<2P4lzSl%9|+zT<c&Tm<PY1}SACrLB!s6SWQI{7jAtP{4<S8_Tw&|n=0ynE
z!pJT>K`=3lBq8IIaxx%C7ziU(6dUUwMsgTA!`4eQ=%pPvnIlEK<c=_YX=ml4k<ija
zVL)z)$tRd63@UlUVEkW|@JGc&#%F|)U%Z{{R`R7V3WiZ4jFMp#3ghJt$$k5$6boZ$
zx}$Iy^^#JHgpoejUNnro)n6){Hw{Ay6c2+jwOS=)@0z9#NN%%7sk0!J&+${jD9yGX
zMj64fg5?CuhfzVus5aRe<<7yF$~;yWAA~U^j4EMN4Wn5YuZ2-9jOr3uFN_*O7+foi
znqep?ImVZbNm}hN>WH^)JZ85qTYcdT!e|&qqqyE!$SZ=c3O;ftvxFvLG>ymj_9)H6
zXc0!IFgk}ZWslM_jK;q^+J<4P;Aj;_>oaIA_<9&^!q~b;p+amIMy-*lv^T<NAI6)K
z>>$`tu>6N9GzN4D^U<1#J;Ue~M%OU<m9*2kh4EGxZ%eYfV2?1$pG@ugn&mBdyA-i^
z82!U|N4$Lm`?9-w+55#%${8T~Ai;OT7#PNTVVtf~G<KBM<?K)Mr40__{V+&qC-*2r
z!x$FE=rG2FF+7YBVfe!cuvdGeI>Xkstg^xb?RQosYhk#;aEGCXv0+XDZx|jS<YpL#
za9)2gNn_F%_pY3jb7fX)kh5a1wdaJw2#2j*B@)JmLZV@0g|YH<j@Wg|NY44a3i&AU
zl6)j&>h=;JhcPycPs4m^l(p}D!fDgnF(Hg`95vN3K8%ig70+HJ!*ooQV^vt=n6p=z
zB=h{UFeZobc^F?<6)QD0j4#9ZO87S%>o9&*?6j{%iE)O}=ps&&7?K%b%;YSM;<YGd
zg)y6Th+t?0bHbP##*r|74r5*z-?2qutdcG0`!IeAW7l3~ei#e51S&cDs`-BiV__JJ
z!dM)}kDN=Zk~4-RFOhaF739ZUzxCFZOV=_9nCDMk9>xmp2748rKu)P*FTPLt{w@3J
zFxG~#E{ru?zw`5O)2nqV-+ER%jP0!6A66l=hUVNDM)Q5jW|wVK7@Nb`!ZJCTzj171
z(q*HO(@1uNv6B^Mze!CFhOtM;-Z1us(KDKz1@7lO*=G&t0dY;*r_h)@B+0|<fqe>%
z%F!^6h4Bxo&D|+%-6A*@#_vLo3!Y%-3!&>bAt%EqRWyUi)0~8&Tn*!_kV}H+!Z<JF
zg5bq4>dRMne@K!U_wTb#+AnkFhz%@~$>g;#{tV+fw?PTJEqExq{YDr!h2IK;UwSf<
zR;{sB!ksYwj+Z&;LF&CQ?sFrJAT@#qVLaq^9r-u@5qJA|<l``&#Q9UML8;91FkXa_
z5J6%D*(Fz!V77P(cO=Yzumq2rL&PB;TGtvj;da5~2y#Y{BD~mstA_RVD`^p=NAP+C
zZ6e4OLGB1DNAPk4c_PRgL6HcGMlhpe&U_JMM37&2&BlpTnpaHBlw<)xDlZ8sC|F3a
za0K-$TEWF6SwgV5;KKW<2R}-st7HVFL{TCrEu@TK`3TAiDJRItno?AS2r5QUNkkSN
zE5AwvRYhqMLA3~~M^Gz*+B|yW#2Vx;axlA9g2b?#CX2IGYn)gof>$ag))lcHgCl4l
z{1rjQHx$w+g4m&7m1N_%mtxZhnnlp3apHy=sjmrX9{0A0pk<u564F|b6>b|ry9oM4
z&_9AVB4{5$_Xv83_ss}8M9?vUzS3CMp;H7GYNU3KfQQITEYKxhW>+EIB6v&4+i{)c
z_l%$yE5kx)GFZLEtF6n!0-JQVMugU`apF6ozZb!v2nIy(ZUh4(;K=$aCb}yoK5uXT
zphhZ>J2-;(C6YbK0zZg=UY5W?92UXw2!4*>Xapl7a7Ms43LS_*jX;ZFI&($fVtfSS
zA{ZZm9)Tx<4<i^Aff0cjK`??)1ZS$+y%G2#@Uw)o_Ky3l<v+=n9Ee!k^)N|>BZx$h
z#avwy%Z#-}Blr&)Gctm5)$FvaWcx=E?Ck6Km~*(VgJd)Zy0>FY1WQKSNGOgK*C&D<
zW;!NB@M#1S`#8Sjs7-cEjNmi&NiWAFNfsPyqc}N&&m(wT)!wy6;uk{5qx+SwBA61v
z*AaXZ!L$hGR<pNEOe9VfPBLe|@~!Y!+{sMNj9^v-t0Pzw!EA2+tW^X{xwvLI=0@;+
z1oMT@6Z}qa@MjKs7eufqg2fU15W&I-V&b*idFbkym`J4MNKE`Of@Kk`klvUvKDm@H
zf%W_;g5~i#f7m;Py|gldRq-A>_qk(j1nVN$!G4Qiy>!>c2sR1XAjkpQ9Kn_d!hIdv
zBiI_j=zb3JZQN3v$t1Mwxl)NY5)yYw82R1^w(nPVN3chf{reS)`(iwT>yxcq|Lj)|
zM$ox&>LJ0yf=2{>36_2=f?v4mqo@?c@d!>ta5sW`5%3$pUn95@!PN+Ui{PXvr#P1)
zI4k^j!PA08(v@=&oEQFw;Drb-3Sl|94k*M@2b4<@TxQ=EN^LF5aKUR4{1w5C2>z7#
z>+xJ;#d}kdcLZ-ma9haN;`&?oKY}d(rvu7;ZvGLx6h*-(9!Bse0$UXJC?0e2Otd|Z
z;6(&agg=eonUFmPlq&}mdK02Zj3P(WicE?kn~>~+<pU`c+iXjHW4w(7B9gQokuy1p
zoKfV8B6k!iQ8=PV6Yt&Hi435nO7cLOgO(lzkz$@G@<x$gT=@hu1jj~fxeh874qEle
zjG{mkorQlOSSX6ZQIwI$B2g3-qC`<lNC`n^EFML_H|>MpNi7*gDG|NzrjC;mN=uSD
z!^#Sli=uoK6@<sC`f0W_dinWPIf|-LREy%}D5^xk+w#1#$1};j2bJnk)QF;C6pf;&
z8Rf%69Cf3p7e%co8gFsXYKvGWYHct58|0!=UtA3Y8Be9l@zh=KI9`e3)hI3>RC2E=
z!6dD56iuQaX(~ukXr!%q6fL4y62;Oej!w?sG72LKGm2JGw2tESDBAE?Q4ENpZ4}K4
zJKl_<Llo_VGx<go?c;p$lZ0&xlRHMyHHvOgbc({i$kAD_i{P_^%C@{|Z$&Y1Y|b80
zo>t-QD7tfXOilRDdPUKj{merjQu;*EHwyibwW*dlq--deMv=+>;+-Y>yDTk=(x)7r
zDBg==P!yHBr<HugJ~)c^qZl5=h$udY;#`gVw4p+VM6vIX5>tk8cCAh(ce0R^Noo|D
z#N<1f<ch*AT#q87yMy1mZFgCbHxDTtuBOh^Qu(a}&q%#dd=|yzD12;V6oDv$?4QoI
z@lk}L2uJZz6r-bvMF0I(Vx*906j^cQ=2Yt|rw^kTB?_Kf-`9^3&W3*?<YU3Hg1HV`
z9WpM8d}VWx@KR+$6rV;dLYo-Hq&UCOQu#cJFQQl&#iA&t<aK-*#q=m<2>*&0#n+sH
zQB38pZF8o5EBZ9SaQ#Ha*Ey_E&lsFElVPf3PL!{0N}VN~$=U2}ey^lD=0-6uitog`
zK=Au0=5uZwRv1r<3i&}?(+(?(quAQpe)y<kQd@h<09)Qhjvu2~7RBi(&P4H36w5h9
zqu3qAiYR!ufwnP<l~Jsc<Z8k7QLGWNHXgH%)A+FUGbGvu5%=G4Y!b3LiY+{7JaR`A
z+v0pX>v_`=%e7O)t@#r72ssqx&2y^)dj<DJv0uo6C=PNn9F#~`3`ve~ZE`Y8z|Vq5
zqc|pn-d~C&5KlyLGOqj@#cy$bBA->%sVIJrE4ecg&kDc9RV?J3;Q1&n2)QW8Tz_zX
zC~6gcC5o#QMZYF^L-0>Q23!~Nm*A99i8tf=ttf5_zaz-g0|x&i{BAtvo{;;34+MWc
ztUQk5Nfd94Li<s88pSjA>PT!KiRV$g;9SkZ)hr}rAu$X6vd}*ZNm<C2g^F3Ilx5wj
z%ARF?KbV<?99euj3~Us$tgFTRSxC-8&Mc&5AwA35R8s^US*Y<m2a~i^Q9gLT6nU;J
z<dtM@!90T0Zy#3j3D1aUOh2M1N0g^;Dh0CeQWn0t;2767wO|$sW#NlGw#&zCg|kp3
z3q`X~EDNQxP$mn-vrr-nC9_Z}3muOrBs8u&a^g@Hm}Mb(OfQ>-auQIUZ4rxw#j;e+
z!pm8x`MSMJ7OG^SY8F;jPHmlqYFVhBh1aq$$(~w+0a<9oJ}G0Xm4(_u8VJ@Ate=It
zS*R!c_J!n$i;@}Hd|4`y){srEX(xH*|1otH&{9?JcLsQS=E0pu!viHA?-J4-0!m1C
zcPS+;At6Xi+&gtAX%rL$L{P*cRl*>Y?(RmAM!^5R-#EYZU+b*B_P4+9p1S9pxpUKr
zH=Sr8VT}YSHWbphj~Ut6$ve|zTM?TkW10zRF38MVI?>9B;l<KgJJHsOc22Z$;^(i;
z8zJhJcC_d2o1}CSB<UceqZ32gJ7_X>PAWYwDP5iD#>NiF(cOt2PW;h6drv2NJJCmY
zFTv&OEO+Nv`a03iiT+NEXrG-XBdI6w9VZ4l@vRfzIWfqI!A>l2^0k~8;>1uVbSJz{
zyz9g;C*F5rq7&mfW*;s%nz;#~GE&GW=F?lDImU_ioEV$*jwf+~UVXnx?}VhjV81%a
ziOFKRotWap2Tn|PVulk_IlQ|$7(7k9^Qv1v6f&!-qgy_+h?!0}6N+FB{z*M;#=FFP
z&?SxBBV6Oy=xL?N<l`K1!Vul>L_i32285glJ25w@M4X5xdDMwmlK&}9n9UI`3g=xS
z=Xso-Wv%lmiau|yV-fd7bNeceA16L`VqHe|d;8VJPAqZa6DK~EQN6;6rA{n!V!0Ea
ziE@6Rg@lR6FzNwwB3u|~St+j11)GW3Xq@c}CssSL#)&Uwnt#nAocPL#wPODM!otMq
z-|2*--YmyAP96xEgy#27{NThsC-ytBp1m<t+2zD;CpI{-(TPn?Y<6PIP~{iFEgYOq
zY<1#CCw}5sJ(WUN0=GG_U6dV3oi6fvBT`9zb>cTCewR$LmrdKrMvb=acx2uxK(dE}
z(}~yJsl0-jcZ>2T*PJcNUUSY`PprzyL}GNYA8_Kh6DOQF=)@r>R(z2D+EDvpPUmlx
zBZ3t#DMz^oTvCn+Qa|a$DGuEk$`vP0J8{N|3r;i|s+^VHJI9r?qjgpRFx~H~oOhZ?
zeo<mB30@ZDCa(=u_B1kYW4`Xh4JZ1#(9eaNPTb;B=0a%~ZaZ<ui2^PZbm1>2?s9Q<
zA&U$5ocP;`f1DV-7x$fb;KUQ*57{TN988bJe8eFa%d!8Ag<)f=6sl3y{?rNLGx7d;
z#`2u|NW3qcc<IEyT>o8Wo=ge7XE!CQ3)w_;xRBxkw@P)Hr7&l>U~|FlGJ~meD<WOl
zUC1FZir}5LB`BszCOKWm<w9;3^0<)Ch5RDsm2A2BqV4I4qL~kC!XnaLDC7b!pr|es
zcHtElGF=#dKz)_v9z!v~B7!uFx-hncsWTOKAw%>Mg1L1*!hwH_6y(7kuY;6yf!Ads
z2h=hyyyij!7aF>-^RiNwWx4RW3*}rW??MF^D!Ne3h3YQwZjeeYR1vcFJSw~3ZEL?Z
z-d@#(!SgM5MrL<au+|W<mS9c6#h+yjRIqNnmbJDE<J#xrhMY2WS>n*l9(5e`T&7uH
z@C`wlZ@RGgfO(C$kqeDoXyZa#7v6HA=2S;>7h1UZtrn9v6>KJ0y`Gf{kMLW%uxz~T
zSe`WUR^0qmrL`cB_S?C@<F~FZbaP?J&CK>Lba0`g@J=pt7BZh_v2JEEbrEyl0rm5&
zY297;J7oS}>)}FA7j7L;dkOXyv>a6XxUjBALFydI{aqN~!h9DNxbU_M?{H_iFu{d^
zE(~&E)o$B+>@Fe0To^87h~QAccN4ffg^?p%7$qk8NFiBrTSp5SlhmouJC=PbO66K+
z5%0S&k&SgB=E5WwCcEGh?-cGk7iPKObYZFs(?p!%!iUM+rVAO=+RQV7GdbO)2r4cY
zGzoAEdXih&532O)VtNI4ew68VA>cwV850s>u%3g>%$dTXL<G-fO`{TbVV;<?1*yz&
zVXp9g?ai&&x?5Wu3td=5(S<Ku_{fEiC19lsi-mmZ!crkiT)a=)><y-KxvboFnV6pm
zHj|E8E_?--8p;22G2bX{;U=qHSmVM^F8u7mmo9we!VfO2cVVr>d?U!PuZ64=Omx(@
z!oL&z-i3J3k*LE4Q8o*16x<}(s=alK5QhCIggw7CsZ^1AZsPzuW#;pX3%{~HZhYm&
zZ!Y}qLP<ADxv|rQU0fA8P+iz9^Zm37XI$9h!XI2)T-fWvF^<du_I-jRhq-Dc`2iOW
zx^PI$pPJj57;q%%Jt~9&6pss@5IpI^DIw_xRl3f)aE_}t^BH6Qe?RZS6&I=&NV~vU
zb1bvq+B_FsxWtuwZ62n}oErBtNUplj{dl2kTyqYp*9C6~aw<__R<|U>+b-M@@|WOU
z!RePA47l&Y17_<+x*HE&c*N$rk?O`{&h&%oOBeoi;R%b|gr_b%bKxHsp1bfu6pG|T
zMlz8wS=`9xHVKneNEX4YZu549VF%R|H;@RJXl0B|_^7&8UW?4`#`=Nw9Bz#NE>E^V
zQN<018)<IjbR(}D`P|6mMs7Fq$R;;eo4<Wj5@hB<byjyJzZ=8?67c2&3ln1sxl!1S
z5^iL=QFDLBD{d5Vn>YTw>IPGJ)!yw^YI<5)Q8$XYQQVDH$+l!jJ``JAckpIW)ouPX
z91(A6H_Es%!i|w`yyiw(H@dpf&5d%*(2Y879z2-;Wh%H)RS0=SH!3B0Ww&{9vWgp<
zH|D2{shS(r-KZe}HQlH!q?X{zgXX!c`rl+F)^($v8*SZaC$9Q#G<2hp@HYhCbfbX~
z`;QLBHx}NUO>pBaH=2mq)Qx6BY<<j}nerV{TZ%&7T1YEFKEv2X$mY)G8Ljqi{89s*
z+&DAD*1?UvB~7uT1nhoO^%hF&>_!(c$?0P1?nYlxdI(bK=|(T%z1`@;zREN^s-s{(
zH~NcffE$B^yq(<Y9XAFFuYAa?^I$iIh&fd7UBT~Ou?%x#xbTLD)RBkO#fQ{UZj5%r
z>xR#bF>bu)#w0f;%dSkFtc-P|#}#Esb7dSyof{+*+<4!OiL7=Dg^3Ci$rLv}aHC~c
zhwetOy<@5yAG$G})hK13CTQ<xo#DnzH{5QFwWaY=<19Cv?*FboZaSp8gr~1^kb5LX
z6J+rDO7=%B)QO*^`P~S(5p^TRQXV4cHcus$>{7JOG{s<FO;bXGVK*W|f@d=*#@*(P
zL#y3b<Hl?^=D0D}jd^Y?bz_+u^W9kB#$vY4jfHM3V*j}Du^TT|XWTE8^Yhgi$M!j<
zug>VQI^(l783$KqeBwr}<<?K#`1G}uFZVf0ugU1JCZim^ZY+1>b50O9R<L4Mve#U0
zUCCjvCWB$jgt>jeatA4m9$A=ZjvA!g@!QxCTW9<EL+V;LzGlyRkm|uYH@<P>vKv?2
z_|}c@-1wbKu^ZoWHkDU?c4Mm>KX5@1bAuaOglrUKz$VU}B;U5w_G6O&#C`qzzdPBs
zah(@^J3Ap0JB0s|jQrJ&l*8tcQrGMM#qV<Cup39**zLw1H~x^w{mJ-0h3s`>pO7QD
z(zq?t0XGhcawr)Yk2#LIag5W%jk9hXcjJUq;3PXg(`;R}+9sZo_|t+bhZIcYcFv7U
z$$ZWWxgdB^@M-gmQc~xuVm@@^k&tU#(A>De#Zb)KZrpL>mT*2-*tL?Cng8X+-=dJ;
zb>p7!)?cO4yf6Gg(p%%W^4N_hZe;bC^?WM&zk<&M|8e6v$B*!rf(-lYp4p9crFs_G
z(CR@JA=KHZY)PKt0fgHG*(e4C*DKjQ$n-$<AcqHv2M!O?JSgZvy2t!A$>~8}A-M#p
z<n|zs@CuL2v!nTh=NBxHjG?QL2S3kIKAWf%_8@;pd%1^&$zSo{RS$}IP~+|NqJqUe
zC?<r;>4E7P9+dDPc*c=1i6uQK<-wZ5_Ie(a7D8UrgEAhx#)f!M&V$NHy}Sn%g;x-K
z^fF~vIV<BUdC<P9nMoB7s(MgOywwHEowHDXyep-Kn4J%+G;4WKTg*CwuX|9}gG5&J
zCbFvU!5bdDDFF>UXzamT!W#-U^5Fjd6b3i(ps5EfJZLF;Gr{H_G?H@5tV?0htwdyS
z8xL9wpC#3x@?w8Vdk;FWTXbaV=;%Qw?q3aAHFWl%3um+k-+0i~gKi$Y&Hne8KbLyd
z^zCZ)?jH2;pr;4DMC2v20Uq@BppOTAWl!}N>?asIY#vMeB$)1090f`Y^k9$&x(8kl
z2755XgK-{=_h6_8?|LxGgV`N(WS7T(hIw%GusYm>Pg@in;lW7Bko>`fY{bzX^GSp;
zg6|2A6{NT~VB?>l2_CpSs5Dl2--C%Paed|_4?gf<s^l|SaEb>H53Bi(sM9?7(1V#C
z%o2UN;0(d$M^q-Zf+7<|r|2abD-UZcZVx;jXdDU5<cPZAh<f>m>hr+w!6FYn@*u#0
z$3}TD#{<KIkOwgjCRehDC6k(KQllP3gtLfoo~-XlinEiiD7^}$5a)U@k8|g!I(dm>
zzC<n%bZjtZO6rD`g<OO;q%eK#!D0`Vc+5LJDo?fXF^Z{!m9j_GPuPbZEcIZS2cLVe
z%7d?)Sw8b%xd$tVHS8w}rmXb9(j$X}4<a==s<!jlzwltS2VZ*dl?TI)s%to0b7y0T
zAJxbpPCcr=Y-d@^tk|@pYMpl3|EW;yr=#k(9(?D)Ne@nW@Vy5=c<{RiJ3TnJRaq~%
z#e)q(sB9FniTgcY{>>gt8<mCRM-P7DG#A&7WaL&4wh7-ZSkj?#bEaQB_*InOl94^E
z_FW$A7W0S)dy@KoA%A%Ar;xpZ`;y+nN6icmcyLgZL;ur-+!yar4~~g>T=0b8uo~uu
zr-fhk;ED%lJUB~Jlna9A1sS%(W@WnQ!6i}JZ!?>4)q`uC*P>icM&9<|hVYw$w*=F(
z*%^PwgTFkun~c0CBvF~ag|jOj2zltiBM%;X@Wg``9=sIsso+0?&pcQ=CzE+HJr{*%
z$^I2W#j2Tm%_8{PF*QN5X-Lr!)ezGF4K@u;G&I#<*O00~)lgDHb`3c+<k65<!^v`4
z6%DyHd^Nz{xRTwWq5WAUO)#fs{ubmC&O@wK=WGoYC>@Wf)sdD@Lw*efG!)cOL_<+#
zyDK$a!z&v8ylyF^Vcap5sjv`cVmp}SRmtu5D(3HaF%21-`FmGf@YqYsiI?UtS_uuA
zqI}`bq*+QsX$@60RMpHWQ$|B&4c|qT*EIay)>c+SISu=-*vku66s#b~+ETA1d{BGa
zur$Zm&Z*TjRM${fLp=@QV`>czbu^s6<ftiTEkWwFh43O>vntltHSh+K&yK0vj;WJ-
zDrcW5^)<Yq;Y|(SzsP8yp^=8h8X8K|*i4GKGE&~s_?e`Xv#V2Rej3earlGlpUK)C9
zn7K%4p`inNZ?Zz(lEj|Bm4?<D+GuF2p`BoR$*`89Ffm&q^^O`kasAiOg*9L5s9VW#
zeS)p4h8_~!O+$ALWty3P^hUpH&AQ6Li%mVnMX?VDz%k6!FiS&U4gECq*DyfCdm6@S
zc$;AwhG`hCVW5UV8is0km*eDA=3os&G=y%aFgKo9o7vAsktPYvg||~iXc(zsl!nm~
zM(>i_Db$(zTFo5BNIr}or(wK?DH=Y|FhRrn8YXF&oGgX8P1MW}8!?hOuv{uEXsU*3
z8a~u8U4wBuB_T3^WQJ_Z>ai47&#A$s!K=ZiVNEl;n;X8ZTs@|GI0&a(H4VCu$<I@n
zsQB4qyBs0uB9efHpeW>q5MF^L4{M10KRvEtwuU_#{?IT-!(0vDa!hKNr{UjY>Sx^b
z8s-aMpkbkgMH)WR@QH>`HGHgLv4$lYULH#MvAX%|@Kg1a_0>~ouFRjZloNJPj%9)*
zbWtZ^wktS2HLTUJQp4vORwZNBX!t_-YC%Rap6N?5xj7#h_?pA@sIoVfJ=EX6PQy3S
z-jAB5&}^|k|Mwbx)bNu`x*s&G*RVmuMsAXlUb3_~mMR@rH)+_cVGGCkaW(Hb^Glak
zvZep5VXKB;HT<Sw8`qiZmQKgj9U8W4$W}q2`AP+I=>8(b@zzuRt^3oP<8W2`@0xi<
zW2fl51b2(VIs2!Ey&5b!tUC5_@@nQ^t@|1dXgH|hqJ~Qv4rw^7p=EpfSq(=t9OdN7
zhLakOv7aNh<ARfp|My?}gqX_r$|(+>G{<QTXGB?bTxDXs?cJ>BxCn?y^Ma6V$JNUk
zu4wp+yYHHERm2;~m}?rYCpn*mys6=qn71|D5i;Tj^BgR1ta5Bs?n(~#xLyg-@>-dp
zFR%3hYu-8ap@v5q9&31_;f02ZJC&yzo@sb4oaR4568L0-QubO(o<+(_jxKI8LFwJe
z+M|<|VeGmrI<o7?p(Cq~Y`XbJI7QGd2tk{U!hc)nN)?l&O1f3i;n0z;qmYPcg86jh
z)R9YgZXJ1q^u1|r%am8g&Ew_`!1+ZlAV{;Ij;`%9NG9I26xLBRslTG*)g&*X<FRbZ
zuwpujC-n>+`TsT>qUtEAqk$I<y(p!lw2p6ee5a#~j@NWd*D*s!SsmqcG}X~eM|m9;
zbkx>SM>l^XDhgK9QAx-5x$Kq2tRhHnRUOycnKuhDRo77?sn^s|E6IzWFz<$aUB??b
z-W0K}j(SONeI09I-UHkqsWjHnQ1}}mTO%P2&)VJ+(nPSb&%F7zxsDb(#_AZSqos~k
zI^NMSP)BPWZFF?k(L+aD9qo9uucMQWGtKQ2ZD_BfgO0<i9ETsJP$72K(S`l2qnpGm
zPwMoN_ug6P_eUu`b@b9f-k+$WkB+`N`sr9=GqYt{Y=e8Coso;nnb{7|@wVjlRWi3h
zItJ?)p<|?uAv%WY7^Y)53(c875%Vr<l?-O}So9PdM(G%><2}i$Kr6=>9sAcPtVSY|
z+cL6fx1!_O*elBON45z%-q$fv$0Qwx+B!beF`3=62_NW~s$+_zW+%*JdnTHUnI-`w
zOn2h8nL1|a2<ZsxaO!aB&~!XJuedoddMh5TB=^kYjrxx*JayCKgsSWC>iB0ss!uSe
z!!LwNfL-+1LSl%L;1L~B9ZPjA(-C8RPN;Kr%;PwGQXsBlwvJ2PZF8hbcY0XK=j&LY
zqevIql>zCk=PL_!e5B)J?&bN)BEdobS{Cadej+CIB|=W@FZ8L9ej6MMPpC`X%4a&(
z=qQji|8gBGxFZ%jR_a(KWs!fbqx!8Z6>nwvLX>SM)YUqO?5OVtq<yLL?pCa2^E*4f
z*0D~<H#(lQu=?AWi6XffspAJ7DPF*f^*T1_IH}{5j*U7tao_1UpkuR+Ejo5_Bp+7}
zoG`E2|ES|9PFo#YrRd){qfe;Y1b@-7UB?dLiM>V_)31!oX(RbvHrXlIx|R6@fs^WP
z9eZ^Ap`&W6v_Ez1<>D`V(`L(vnbzzFZQWa?kss8}W0<NZ)xIayLmYmR$q^mLg&Y+;
zrh{qkFXs8`6QXSFW}cTm%`wU5baVWz<E)NzY*AO+J;C!jF6+1={DR;`!ApXB`>0oS
zT+{KFnAf=rK6BjEaZASyQS_54v$`$(jv!6O5LcX3?<SRsmF!fig_Qd`9&m{2c*Gn=
zIkI@s>Kn&n9nU!GxR0dHRGxB)_{MC-;L>T&b-dK^uZ|Zws2}*V5OorZ*PItt!Hnzj
zOx#KJ<w-TGDA@!jol3EJVfUh_7sW(L^&+PixxC2k#V3E+nR0lc2zMlvG%tFVQRsSh
z%8}cPLSFE^eI76JdZC_D^GQAhh36M6Ajn@m)+b%OO;4Gp`wDw8^_2RG;H!c~1V1{Z
z7WX1hQK{iYO)oOMd=?9t%*2bbUX=5qq!*P^(@J?!T1f9v)^4M$WxROJi?>HvTgOs~
z44_!viwa&;@uI316&dVBWiNV-vQC|=Ff0*CJW|Wdu$mXuC5ObeO;gk8s^vv(FY0*l
zx))E~*>C1DTQPI6`DTN<?7Cy-#o2mZ)c2zM3fmiAyeSPly1+t{>7S)aBQF|zG17}s
zUcBW+6R&wbxw98dy=dk&Pl!ElWN+>@f1Zw=Qrie=;YCX!tpr;OGT`S^YFjVbdBMns
zr&Lb|M|&?ictOI{QAj7jqNmj^UUc=E@1W?$H+*{0mo*f#hhR^^UV@D2EhOF{mAoID
z;Ke{u`U?(Vw<IIKC}$ny#b7T_<l2V`4iS7;aHto)GbxF;pIy3ZlHsC{5dCdi{?T5H
z@gnZUZ0^nF%6nc+@?x?VW5paNNPWB)6TEm|%!z`<hNYf@m98mXeBgzf%@lpA;7q}3
zUVJEIy5J1K3HJ+gE2dduI=yglFRU<?zpPeGMDl<TUC_(g3h@ihs9Tf)K`#t3LtaFL
zPz-b8NX4S;9}!vSgfhpAxnAt{VviT|*a=>I<Hff!JQi>&dGV<i3%yw6HQ%c7k?2dj
z_}GiZJiNJXp%|&8kZf|~=WSyx*JdvDVucqgIX2d2F7x6uR<f^sxgZtt&%IdX#g|@u
z<;53XtoCBifV4G&{6q0V{x1;8*Lv}_7wg28_?MAD#xvkM8Q4E?*%$J?V5=vV4PI>Y
zVuu$;Pb#G=+c$afqZdDUQFx`YnTv*I-NIUZ=rC$H?zPSSvlrWBL%tMiD=T)+mZ4^^
zds^M@MZeRk^R)Vl7r%P(sAKlu1b2GzyL19)7R75v9lN|BlK<hwpI#hcxg5r|3)L8%
zdFLGVvMWxj`@Goi#Q`r4dU1$zyi?kXVam^^)x%!Y7;Y|l?WfylUh0~IZzCz*HJyJh
zPIz&W3ql0dA~@y6X)i_uF*1lVUYzBg@?*Xq=e#)2KJ;O=4;Q?+$XVt?M;|VEahc1J
z51Bq(@$!-o{_)~D>*>XHFJ3vLKH<-0mmKq!+HQDp(~DbP+-7m7)qhW`cf9yZ8u-wQ
zyI$P$;=UITMERQwi2OHah35>+v9Fu?`^!ZAkpxhA>_x}k=Hm0zi)T{SxbITG8=ap1
zQsJC^;YC&-viZ#U{?dzG9qj)KT6`wA3T6?kc1BI{0Y2pPA(szNcQ|Z5<nUofRi#iv
zhuw!%AF})Ke$*_BocQroo8p7Rhcutbd3EgDHY!POAM*H6$cMr{<n`gbOnZJG3iyyu
zI8FZ(OTi>h7ZQ46p-z0ohXbE0MSLjg!_eH;SA7_HNonA>7W1LF5B+jmGkh44+sc8&
z!~iNIb6Zs(O8W4o4-I@M<wI#7Uh|=>4}02M%lORO>^F=vUmcn1c9ip(Jz3d@Dn5P^
z)KT7t3PLIhRuZJ%?2KB~$FtUHHGHV)L!UEhHNonFtI~_|wJNoIC|^-|-DkdHrM6%l
z!3vv{x<1qsZ+#!$5W>hQXH;VKotX`Nxc;?cWL5K~%|<>n_Teobn)uMnhk0kzramzJ
zGtI{H>I`Tbur>Fgg%2%#XyrpY>G`kEsI7fy<3n2?@6J+bX6DZH)X2Pd#ypm5pNt{z
z<U?mRgst|Wiw|Ad+dho-p_>ogeHi4!U>|z;%!h56`uosRcrU@;NxhGdzJmP(NBv`A
z`~cx^vp69G1*>;3vl=3tWVn!_g6|3rW0zh`p=*SgBLzqKFj~mr3f3_`es<8xfHChV
z<9rzJgU<)Q4-+KdLm#Gd9QrWPhe<w67IB*36d&3@vP>2Jfe$}eOE42A<~dp_Ji~{X
zK6p4h2AldUiF67k0$jq~f_ySv6T(Q{2d{8tasiqF;ZdLYC{xe}!-tS4%r-1_U`#|5
zdndCXrkI#<HdAUcm;2g>#Xj@NdhVwAJ}mO#BOey{u+WEtX;yy+`=dejCLQdRme@Y#
zaOz|Wr78!vJMx@Wm-z6B&pgKX)Q8V}ST20256gr!sj1Mlf>U^?c~}1r6Ky0befV4y
z@>M=mKdX|g@!?A!8u`)KkFR`K>%)B?9{BLJ59@q5;loMp2o7l<_WH2ThwoU!i0x+|
zw)*fryI0KhK5Q1UL2#oFn|!eJ%(3o_8Qkrxx<&LKefUYp)U)O(lpe*iZ1Z8eD0{fb
z2-zw4ix0mF`AzV5!8vEuuVlkrV(u1XKAX>~e+d6mFkPPU+0VIOUO6I2azMyI!9zYA
z7Q&aK(sfk$F+rNgh49rer+hf=!!52t1C=vAoaM4GM(Hs^;SH1LxZ3-0*@yF751Tlc
zF8FXU$-Bo3Uh(0o4>x=mKEPZmuW_<-lGd`&++EAUM8b4aL<ZdU;SOtc%n|G2_=|h9
zhW##wiu~ig=fmGV^DjBgW4{!A=))r)%J}h`ACG-_!e!QvyncR}&hgZTXIwOVCV#iM
z<GBwnxS0E4^W&ut|MDlmkAJ#YE!@{m-fC{kBE;%9m+^fS6sD}A96hVjo8m{Y>lPBb
zAE|yQemKON-H#kXm{s>NRt9tvO!Fg`AGyVq(~s+t33H&Ak<2`wANl=w#gAA0=C~~&
zSV*v-AL&9~d6`02;s3{r_)*l43_nV+K7R9egsHe6i60C8h%jaPp^B@NU`anHCVom<
zjZ;WUCzY~(l=I_FKN|Q^-jAjamGs$}RfJR!tmsE2A#_z1;y9;P^`n{})%~d9M;$+2
z_oJpCciUTQ`BB@Cd+n|NY;+XuZ>PdUUe}L$e$@Bl4OU)sBEu4q3?S)YOY62ZwV@w;
zhs>v)?ZmhIXyQjNKYIJk^PElnXyZp)KbnczT#$MTAuauAl~h^_srMouz3qf|@uPjx
z+rf{H!aE6ePU^Rt6=i%^F}wNEJ*oE)($kNV56y?*`uNe;kKuld@S~r&1}7u?`!T?e
zw>f@98JN_UzG4|9ymk=_a~P7;hYERDaG2nj0+x|}jPhf;A2a+I?Z+5DCi*dn`!TuI
z1R-PnaNbkK`7vGy{~*(3=I@L5#(rgTGX4WUrX+c*Ln%{}e3~C03LiQwgB#BDW0oI2
z4h&|PjPdy4N^-Z5Q3b4;5Iw1T{rr+|4(1RLCFDogk6_Yk__3pa*=nW;BSnu2#srr=
zGJAElA9KW<>&LQJ%=iL@@)H;Mv5-9wz@z{c`SFn-*#msBAwKqFu^)Rl&HY&7$0vS#
z?Z-MlKJ{a%A7A*fn)%2?{@jmMLO%0jxsVlptQ1oHoXW(>&Q&gNx3o`(r^dg}^VbZ8
zFL2=9Q)~R@+eN<QuK)*mHHB%dpPxaol6>RGw|;E(W1HW6vhO=THu$m8kMCKZ$&MfV
zSno$S$(fmxY~nPJ6x~<1=#PGE7EW`Ekd2kHo*3o$$&a7?|2=<qCT82tU4Ks9?Z@O6
z<~-Wr$1i^T>c?*~eRc}w8j<yPAwRyC!I)jb$G%K0R>saZPyXr0UM>RLm3w~d^Yd$!
zxa`LjKb~w>4*1Rg9Vh%a=*J;Hdh}Ng`*DmhgYD!;{5UEi`Mh)Lanb4O`<mk<oA1YI
zKhF5g<IjtJoaMp4ALsqJz>zP<oFD(Lm<OMil=^-v6OU0ZNpOETD81^(HI9w-%56XL
zt;)mBxz4>4%(x+VQ}C7`f5oV$cTc<H$GnxwU(&j}ek7Xtw;%Vp;LK7U`0><_XMQ~N
zqjLp?>5-7ff=~ST>6}WD1^vUS4pOoN@Z66VT>t&}S32Ah;106$6~t6XtYYr(YrdW_
zYXI2-NC^M|*aJunz!m^+xnv?ac}`7`|0zlUjsU6!P(6UO0CEP*(-av2<O(2nz<frp
zcmR0<$Sb@sy+WuL2q3@kZsp9U<O&8*bf+ynfSp~GLc(eG+-ZA7VqOiPh>)TIG^}LC
zGZhQq-f@#;shz^$5&>jN>1qJwgs>(h11J?h=>W<kmDhxnD~Ym6CChoWyzmMER1Bb!
z@G41fWg#`sn`iZ_3ePb%wMGCn13Vx{y8vnhP&<G(0(diEp0}wJKz-KabEU(1_4R=H
z=F++WJS*a;7r<{7&3|o2M>w9nukeyqg8<$Nph>{|<!u;1qX6ptZ0@zj0ek{0dDDP7
zJ6Z<JcX~Gy-dvDkivaGo$spl%u~q@J4xmi{JBnIwm9r8lwhy2~00RRU6yV)osT~98
z7cg(@?G(Vs^J?b+x&+Xb`#pf(0rUx=djLHG=ovt-0H&Qc*9X4+^-fwk-}w5)d6j(Y
zd9|-pm9EPYKo>LYAHV>~nfz@ABzXsC(ZK->VR26_;{sTEEeAIo8o;{&3}cBOC?f+H
zC1kkZhyZy10QJ!Uj0xbq05<=q^lfeF1Zyu?$;YyiunvEckDN!*;{)bjl?eg7FN8<?
zG$#izg<TZDwE#W{U}^v>0$9lw1@K`23j*db_VfT|1Q6iP3SedcM>{%Z1>ocW>uVmQ
zF-^=@z$Gnp2jB@nqw9j|4ZtTv7i1U-lb=g;OY_1OV~hYo0mL{gn^-s!zV|9&j^u&L
zo>v`_0Eki6?N||#cmT5l*tRxLwF~N;0Okg;Y@jkPfcczjk1R~g{}sW7%s+sSnC-BP
zPX#{~Tr9Xm@DoA4YmPBXg_A4`;IkxOE~NbhwMQlU=j_-3wgj+>gEN5D-0zj_8v@`{
zmTQF5{8GqQ0jy0bUk9)*$-fEUTjAd&mG1-iA<5SZ;Y+ajk?oBfnKs)d!3Qhy{20Jb
z0bB^+VgNq}ur&bVwL+)a4*_fs;LiZ|atsIX3m1U^b_MV&cThjuZ`^Af61@4LpN&`W
z6ZZ!23jS{H;*$0~0sJ8(aoYgz8DJ!1_64v%fFs<$0UQY6U;u{#ILrYlUdC|S#N7pn
zTLO*+aGdK~0H>rZ-Z{XsPRN>*2;(M+bcR!APA1b?A?F0ov$#I#6#0g<O95PFf65S=
zd_i5(-SPR_tXr<xmtIh>2XG^Rj37z`&2{o7f7XLgg18mH?Evls@K*p&0(dIx%-sMU
z2)QT7_`ikR=Q7*Uyaf4B%tuM@;{f*cF!g5v{KM5-ig?cHF99iHz6`(`M3x}_4Zsq_
z-V5fk7M}3mHO;INlT9%6s^hG98Gs;cLA+kV{3J~RQ-jDZVN~eiXm<pWGl*Qm(**yy
zpib+p*v~4tgUAy^qa}{KK@<!kU3fmh{6Q2DQthJ3fI>kO4&v1yiUd(Tf5BIR{PlMb
z$vGp622m`CtxK~~EG{CEUb+~N8H5@{&mejQQ8I{9K~xQ*S`ej!C=)c_d|oAp*MdB?
zlF3vdh_b@V36>Y^eNjz#D~eeuh{{4nk1;ptI=UeLPw{gk)q`kCJ%}1X)C{6l5VeDN
zBZxPHs1q~~`CbpAE=4)+E&S9{Pk4QCeRxq_eo-CT(e`4ztw9itgLo^5hU@`p1x2P#
z(`+<<ub<K+$gkUg3LDrwh!#QY9I0d<;b<8|s~|cB(K(3LL9_{CSVen>Ale4ePI!Ak
zJ}yC>+iq=X5~hwp^I0~MF04!t-Gk`y|Khs^&G-A!%S>7i&qBfs3+e@Xvu;5Q45E*i
zeS_#Hq<;_tgfJ%Wp_I3U*ZnT@*V5)zgTx#nI5>!e$YZdfLGwuLUBO|3!-M$i^`aC<
z1u;5^z9IArVN4M3v6BrnH!wDcaf}J#ZV=;xm=MImAQlDjeh?Fba0THGVp8zGyZ1i~
zVsesC5%NJ0Q-w@R>NS6|O&2~Rsmv5IOVBC!$3@i>gcd|J8KVmcun&d!1pR`wTPyqt
z2nsg@LxSNTB0}z7RP)|9?`>d;1^KiTW{W;2i1|XO&lNH+h@!R3yCawua2UuP7as-j
zaS%TS@lz0sgIE&8=RqDr;*%gg4Pr$QD}&%+aN$ep(jcbnRF<)0xv(@#<KAD+0XD^U
zf3D@k980sxj_)fv-e{s!yre46GRn3~`yz<dL97YlOV(tj<A)%=3Sw;#-%)&-@9QAe
z1@W!$Z#aw#nPLL@rg|zgnZ8d3tPf&C5F0seFR7blNRw<z67ntLVy%AWL=NI`5Jxz1
zN@Q=c&9N<r?Lq7a;up?(Hk@NdHY75&cAAGqJA>F2#DO3V22pQJ`tBh9<RTWto*@1Z
zWzr6%S22aIeL?f!v&+kr{i5I7u1vq4No1nl^1T9wBy)Z*=4cSdg18aH%^;2kaUzHd
zL0lB?$sjg;Ui54br-C@m^Zz2U8YKNLna4=yL^&_WNGhX6zZAsfAg(0iuLW^c_#E+G
z7rsXLE!Gp};?{6x=ItQ3GBDlYsGDLv5zcy#Uaq|c?1uSN+I{Y$b@`uh-VLxn2;!lT
zM}m(9p9nq`WXz6B>OVm|=Nb~kOEzkto!$5^Gwf{7YM5vdB(WOEB7CN$1kG$oJw*rv
zPhC<|4P-aWH(u5@ki&ptAj3cj0}cae28tNSmIXNt<T7w_h*H2nZUcFQ=QEI3$ibT_
zhjgXUg%k!b<u^cuq#(03P{=@G1Fsl()!=8f?Q}J`kV3*l!mtDuHBiieG232T@?@cO
zWg1WoR5MWBKuH6o3{*AD`@>5cC}W@^xtOmBmJ=*1xO=IiynzY^{@$3M@kVV2k*TtH
zs~GsEyfvXD;-6kpYZzEr!CKScXFe1rx5a9EW~pWH%NGisS?U;g-9TLf^$avM%sXR0
z9-CU<z?%jd7<j_~%`J8-v7zwBf;1Zm$&zAyOGpzz$7PkSEVCTDPC8l`XvrQkaL7O_
z1Fa224a5wzG0@h)hX$q_XlJ0kfzAfHNEh`TVe4RE(AJ{7gQ6q5<pW12!D(6ZcQw$>
zz`F*98R%}H@@2KJfqn*h80cxBmx0~}zAkO;Be<@#^-5WLi}DU8^8Or<2Hr6+(7@Y<
z`S!)cYZy6_$%%su3=y4tFe5ji$z}81j6;R@xU8<&;23UTw1F`O$VUi{G%(7*&+V-v
zCEz_S{syKP_`tw81LF-$G%(3Pi*8n?2?pLbz^9oCW>1@4GP6M;g{ieIg^xr{Hjof&
z|B^A)z%&CSZ&Wt#nPeiLVPK|#Sq7XOFm3ESMX<}B#=mAR&b4Fk8Soo$8*p7#J>*aF
z@iL8OKsVqu@WqpSRI2@uhZr!-yCC?CxnUqEP2-<d77;Sgr%YPdK=DFZBEo4dxva)z
zDlIbbkrXuBz=q4}90PL=e7hO*49qvMz`#NSBRiY_78AH;WH$1T4J<bBgMsx1matq7
zEdy%}d}?4Rdyiw%z%m2(8rqpY6VjrUWjV*jItvx@&qe&gz-kWBZaG#ZW7Zh>l4Et9
z<$sBrFyLzg>o|S#6%B99@r{Ac4Tb4Dj<*3R-?GAOtTew*>J<6+Y6EA1flVBum(>Ex
z9GeYnF|fx#m9Lc_4g6%_R|CIs7aQ1WV7q}G26*xM-eq;0^d33CIrWQ(RLIRwP?fU%
zZeXW@T?Qy7BDu-EPS)LwX=Nd2*dGS|G_cpeJ_9LN)B^_g3t`vMWJ(Z<hYcLzsue<7
z2uC@D47@b(uYuzRP8fJ(;PDmpq`{Ap;I@G~22L9|W0<F%2ky6@HE_<rB?FfYoR>N?
z+Y5}TVq1`A{&Bk~VxcSQ!f#Wr7`SHOx`C_Qr{AVBRllO%FmThrEm68&Q72zfzmQ;h
zcU@8cGH}<x>~YG)A@+Nc)qMjGxE|(C{hRY$t^)HX>>+o3@hpksgmd|_KIRfv$^OK^
zQ^R~t_L+g_LjDn?GPR+F_(IH=-&!moSVORdU=JZn$h=1dA#-YE6;3mokQBj9&n?{z
zvuUXzOg@mwEA`n!7}Z<p(KkIu$b5)^Z|PA&=DT{xbB2&Bgk~W$4<UC5c|xcgGB57u
z4Iy6$nIWhl^B_5Y2!%o@96|vx3x<#`q~uk#@l}-puY~ZbD8&VfgiuTfT}4?{iCLHD
zzq70v;wm9Hahk16k%A>dC>KKc5Xeh~P?{u!*QAYQMWjCNs>;N6RS2PC2-QNU9zvz0
zw@L_=h5N3m3?^0$f$=0YLZ}%+oe*9Rp;idYkYa7|CL$R&1Ex+dNxcy2hwuj5yHep=
z(Kv)RLuepo!w?z?p{rZgtnaK%A$cogzP5s?iIAotd~#K#*&<|~!QhFG9wD?0p;ZX2
zLukWRhw%KW+BRffXjt`SW(R3zJHhsX8?UMzL+BJjXYPwHGnu*wIeS$lXAg9f9J&iK
zD|&l|%o8lV1W9^_&?m`x;j(`S1DJCd1H*WmB!qn-><?jJ2!ldc8p5&=28S>tgjpdt
zLl_#uyCIAZVL}MQLKx26nmcx6cZ>*OWC-o9nYVk53Zcp(Wn2gi7b&Cp7eL5+A&eE0
zaZROOQ}B4h4DxN|9PfuPF@#AW^NlXmzD%7Qg7!vMF5n-sO1&IYLiiwrslpfaa!eCK
zeXu*nbn;DDWMs_Xekq<ZQ_Nk9i@HK^hY$~8HtT;)?RQl1(3R7sg`kJv<&F*^7=po_
zUS9DF1_Vd_Yhj`o3LzXqB!p;Er}(T45&<z0`MP+Db3!QiMe4^P9Q)NVm%G^Im>0tQ
z5Edlr7Q#nD7KVTi&7)spf)f|EbSw^GiI7hOseCHLbxr*&gi@vK^;)Q_LRiku3E}NK
znJYu)qx7G17F1H|j8gc`R_6Id2&+R_6T+7v{20PdA$%3W+7NySVLiL<RN=2fSQo-K
z!tK2+%@$a`75;q)-?1Ogr84HNQZ{0OZwO&C2T#Q;8@UdY&Av&H1(6fCNQ>zGIfSht
z><VEw*NO#}Z6RzAVTX9fhAqE@@M{P=rJ&yge-{@sVL^$kNa)%lUh+Rf_(S+&k3CV7
zy|M{i2SPZ=4hf@l7`OLi9tz<sSFI2Zhj1ihDn~;&e@$K2Q#lsG`{y!_hj4-mT?@y_
z5KaprKP6<@HI@7f`%1|95H4^P4Z|MB#Skuq@Faw%AzTjON(lEte4z@ia-NP;Zia9x
zglpUdA>80{v?7H_oqe*WY3A(^?udC;@Gl9VivjdDjASEWx*x(L2_SzU<RMq@>nhF1
zNu3JKXCb@@;bjQ_B=zSU!243@`Zoki*o?^<26JZq)-bY!&1$e#iI{9*q=W(X*oqWZ
zhQag_Q^Uv}Mu9L2hLIx-C5&8Q<PO6j88RTJ<e4UBqT0kfNpIe;Iq8^fzA*BK&HDT=
zCOwQoVH6Fcm;@IN<JII=ugF%3iWLci^&u}FMur5af+fPplrYwT9m@a~R8m}Q0>v_6
zycR~YFq(%EZ0IN(MvX9PhEXnz@?mo>R|vz?CVQ!J_C=pMDuz)h43f%%BvrzwD!iIt
zb-|-Wvd~p4jM|bz!!YWwR@c?~Ve=+|X7|!xXNmXH>xNNJNZwiLG+EXg691-P0|v{d
z=o*F5IE>k^+TRMJNf>;1oP6sLOH<)A-^-Q1MHnr^=oUuzu=%OSR$+7vo0k|`htVdC
zwqdjj<5|}nodw&6(NPGM4no)`orIiOW~0c|MNEo?`Z@Ub|E{w@k1+a#(U+Y$(b_YN
zUP5?ozqb(Pz!$lfc$(UeV_x3B)L+N|!MDTce4X#F$Dl9<hw*zDJHr?f#?Ub4g)u*j
zcf;my%9JoZ2xC|n!^61zp)w+Do?09o#z@(NqXgf}i`gG2W5ReZjP)%YW5XC9#)L4A
z)wYfcBil#^$>P0uKa7cCOyU5Z;V4$$R3?XUytXyrW!Tg(riBp;BOb<wVN4IhA2z?c
z!M9(|2*VYIJ8bfqVayWZ6r?igy6Oo-3&SV%VZ(JH-Y}lGGmnM%cr1}=>YFJ64yrKz
z{6jIqh=kFljx`iUSd=G!DAcJ$#U!E0&&TkHXm%KL!dQA;og2o+Q5kbf*?+xm9*ryr
zV__I;!uXQIER2uBSjmQ~_K(B(uA;)URLJ5mmI(PIsedZu#C3I<kk15{C%r4epo^O`
ztIxw&C3$`!xLR;)M+;q#uB%^#@gsL%d1Y-FU$bcsu`Z17!}vk?H(`7$gjM}cNY^TM
z#;oTad}`S!$_7DS9_ywsHjB;xdbfz)HzWT~9CA0*pTpQ1#x~(Je+grIlJ5|*yJN<$
zN#!>oLvCj53S&1{p$G~_Q0s=eCyWDO91Nr9_KZK+$s8~P?R!Z^q%!RjvR{zrtPX{7
zm@8WZwg`@daWss-!?@4pbJ&D&C5)@=r7%v0aW0JWVVnx%H22X_#~H!Dx?9OB*1*{?
zZgscrIqKjIs28~ShjEF6nbW_9sej!2zc2<fm9K$oVO;0H<MI{8jWBLXZnwE>e#yKQ
z1~X(Bc_N;fFx$If+><bJ=1Gy>2Vp!6;~x$}aXk`z8ph)=o=EA8Nd!MjR))%pFkXi7
zZy1({nF#|DXpJCC1lb};iI^oOipUzlEQgIIW7v>HTkH`OdB>g>LCy#stx!@U$R0tC
z2u@VDD-j;7nxx8*EW~$srm?!cQ%0KaJM-5qR|L5u$P+PVO5O<aMUX#&8`uAvJ8yKe
zl5bmTJ{_DML9qymN6e{FNU(5(w-A^n)2l*?L{K!Tbh@EtL{K7v3K8?B)=WW?(n8b-
zN+y+35%f;pon9t_*CHqzLAj*2yb#{Cp7<_v#iU+INM*q)5hT3TBdEcV6UWgwYI68R
z@JkfGMo~M0I@BXL8o}!k)Qw<H1aqa;^&;pSK|kU3BX}c%HzQ~e;g2ugil9jZjl{+N
zX&m7_UFJW1CX%KRG>f2f1YII%9zlx;+C<PcVm{^CQm}Odt%OkFL6NVSm4vBX1nnc}
z!2OcbR60snCy5-CQ=!uGn2B8@=q6(C2)akmLwK(UdPcCgr#%tR$dk?NFUFYp^pODO
z$wK=_Fd%|)5sYV9XO*`j7#hL5EVPE>9l?PS3}Q=1DoleT7$V%-DU;@~2!=;6I)X6~
zjNn!`)RF9m4)z-zO8nTz_GwG|C^mdl7LxapJu^0fhjY#6S(r#BMDTtDS_FCo6C-%_
zwDLj3Ji{<4Vt!$SX|j+hY)JhSno}c~7BTM~`Y-~Qkm(W3h+rm%I!#gBH_W?<77CKM
z-m$qw_Xtwictagu%i)cf3!|S6ujTLw?k#T(L=cR?h#(X}lmjM$k=-p{4Ym`*5kw*&
zXU%tScMR=riAOLyV!n-&oPTENBF>9oegtbG=CA642o^^0S;YLe$h+AWu@&s<j@dtw
z-uRfEHpStc;viC7BCbyaKNVamxJ>ZK4V5`8k6=Z_d|qZHr`~?$bIzcM`MJO^B3LaX
z@x{Q$H&lvWvbNkQtMaUk;6TK@QvY=X>mv9jf^Q?(8o{;*zKh`d2sTHsC4wI!SRcX0
z2sTBqL2AegwZA^I@Rdy~``E^%TA9cb_+tb=vD^EZr^pz?^m7FC@}p7PBiIqat_XH>
z#ps^;O9a2Mt2tBb)?XvwS$%HO`eh1F;FIi(U|7qvb~}_k5&RLseku3Q2=+#>F9OCe
z2YQ*l(##Y7+?@IFY=6Thj)M{SMkt2_4+|<c)ngGH=S+;EaTF&aILTEdii%O3ir{nv
zY7~5n<CzG~a>0xuYZT`qI3K}Xmc?Be!9}ho#qGBuxD>%<cCwgP1g{A$dL37Vl$)2@
zE35Uo@SN+Fn?l|%f>Bwm%;C0}cLe{6p!Q9b;@=V6=hTbfSp*NnMe#9bgz!g6<=2e-
z)Srm?Re9?_LS70!PsY69?z@-Cuzw@4ME@()8Z|3lbU-RGTNEi`7K#E<*rLcQrag+(
zDAI&y7i6#!MUEurgNIZcQM9?KzB4>W&M0z4kz2fZk}*yCnayeJx8)Nhe-s6T6pSKW
zNW6|2FyW>;^QKxjidUj|HHsqQDj`@jiVPveq9`t;W6yNUY}@=98J@KYx6Krhgq>V6
zic(P=dCyUrVie`0C?h77*P<x<KVBL9>hz>LwgorUuKm?YQS<avji`Bno}{vvRRpUF
zR*Rx~6pL-<<jtR&QZtHLT>qoyad`bG-Vjnp@O8nug7pN0mC|NhR2n=e_-6FKGdvBV
zXefNcq%1tc^Hvm1qIf5Yfl+gvX&OblDB4HSOw8tj)LTT+Qh2K<S_^3tMcbtJ%*-52
z4C@d@$0&M6(JP8hQFN9%^oW9Q`|Kjvon>u8*C@Ir#4M(Z0Tg*39r5+b*4|O{<qmq_
zpsSC#x)n+37d2O^{@gp8Yy+ZrJBmh|Y~+nHEyO`l42~ieMLdcjQ4Ebji$ag$-6)1d
zF(Jx_N6gE$!=o4@gnUF4BRL@1{5mN#M<?~K`zY^4F;>iRg5%ki8|E!HFRq$bT_;8{
zDT*0U%oOkBD5gd+Es7~(ejv!OtLx0*55=so+1z}36w?Q$&HW^ke3s}gK_}aL)ADks
zSq--+9>Fy?Rc{o&D8gd;1sM~FA|%hY2a}3HMR>(Q4hAqq#EeEUu7X*O*-^}iVs#X2
zqL>@SyeO6@x1ArwM^Stn#R5?lMseY9%c7)r$4&Fn@M1BSMzKW5CsBMFMgBj{hU9CO
zp1qE;O!UtLw?8&ZWLhESO73VOt2h{<I3pRRKQRNo6#eTc)<w<F3VapCT2c7cHG02^
z;@c>;MDb&kFHynw;@TL+4?-Bg$M)Apu_4NjqnTH_?`$#iWZD$PW{IgkGe<)CDT-~$
zt$r4=HHv3alkHLL5M^%>g^BUMaa423jU!teJEPbY#j+Sai(z*Zd${Xkm>k0&QT)l8
zl(CPEVQ&=sq9_?dsTlT0aez5T@lO;7qc{}BX$d<l$oOMIjtCwV{PO3_<4NxcAtwb-
zvFHL;ZgM7yvt0kViyK<+MDbS?=edufxERHyC~hUUy&T1rB%j~VdR4gNmU=CU>q&ki
ziknH!oSANm$@sfMs5}&MFN(jTxE}>w6d#C~sL!Kh<l`uw2!Hzjyw9U}!F4-^oH4wN
z;$N=nG1y{eUs+<vCd4Y(`E7d^Az1}kP>K*nCJM5PnLUQom|2ZPO>&5+BqJR{*vwop
z<c^_m46nqHCkAGo$S1D^<P*%F+^Rqf+@xR(>B-Ft#s2G=S7Rs=L(v$DNukV#i9KIj
zB1xEShVT-}+%kozf~;ie7|O)ZE{66oycR>*7@EY;G=_39l#ii)3~$6xA%==EREwdy
zY*i_S%E`@{e-+^*Rg+>3A$4NBb=*-?crC%&f{B*CF5bG*_Ijcxx{=;D#e6G<1~D}J
zf38L`G*0HgnlI>UwvMS;3@wv-b0IAR8~u^Lm5|m+vrP<bg(vFJA%>1IydA?kB6bq&
z!YT<#^j_B(y2a2vh8{8WNp9OShTg(^C6#4;t%<SPH->&9_K#se(wk^n0td!0M)W~3
z431$)3`1jJTi93ciatDs5kiK={+m-H#T+G=7+0f(9~)DE4S7#E2{Rcde0)-wAmn|)
zi84YMHYH~MXXMw|T`_zR!_*k2#mqA&yu)*P3?B-oIjx74?~$0nk#I|$DL6~eDY&O}
zPInBR7_=Dl7-q*XCuW`!TsFYrWu9#vz8L&51Y!ur5Q!lgL!(=&5kn}(_nDhNpyLel
z4@<XO<|&<F%`#&m(i<0&b9_3FOBplnmO3|vg)zA67bTw;193ikOi1{aN^?;RAI0!-
z42xs<B!*98$Q)FFpC}?O5nlh0EkRnnpKU2~6W8(>R>W{MhHEjbjNx-OJcjStIWc?@
z!}$Hmw}Pt$*T%3$$d`ijeig&<@>UY2uSHxZ_>CZ4pH;TsovQp0!+Ng3Ea;ZHA%>08
zy5C~B`&*$+F>H%rdkmXn*b>8!G5i$6&oOM3m}}pq<bG*ce@i7Yv6raqiYPl`_=OqX
zQpx!+!mkocLjCs`MxJyut*-3k$l*@_CvtUV4|&8ya*{v!6A;5bF8(o`jp1Aj2VyuF
z!-*J9#&9Tx!!aC<;h1c7MDTQ}98BDni3<5~K^A(7BnFCS{$G4zE9S%a^D$hO;0rNa
zlt_9niPB|{!mO?cCt*BaT5>&xhcWZmX<>2Y23NTlZpCn$yR5jvbWg|~!M_CWa{aum
z()G8P_XQsaQe6L*`iL{Pj^l9*Phxl)!!y?ExsoMr;y=PIaXgRV1=oKu{}o(TMPUF_
z&D*L~g2@x&C+}yb#DO@<#PM1jwzzp9nifaSIPAhx1u15aBZqKB&>@&s!u$|$t~heX
zQ7mr0f{D-gx4h`!Mf^N*<c%X=9Qm1lDO-9Rg@hD{qo5GW3k!9o!f_N4<rP6Huf}<{
zQ%QJ>ikSMs!fq@cM@Aea;^sMg-X2NJj6;p1WZZmXNvSyax{}g@G#|9E&TVfg8%Mb~
zrp57L9OdJv5J%5Adc{#Oj!JPfkE2B#mE))qN253f-&U)}Q7w*cZS8NyQ9X_tal9T!
zU7r7mqgEWX<ERripHSulAbbFsPlE8dkN=r`gt?x0--w&fkJOK&-EEZ*EHjd31If0b
z;E3+lDi0LiwbeL|x8i6LM}dk;Q^96&b3LKSRHGWE-d0=2(JGGC?8!EnU-nFE6URlH
zy=xrdVoF;U5l8ztI>gagHVoWWJH~NnU9L_^lbjiLiJOUDa&Fj7Ht#OjBaSa_s}y_3
z(I<`}Y(gA;<KPX1d>KXXqNAT=)jy5_Lf(#JU>t+U<Cs*={NwQZZFMkvPZE`c_--70
z#pt*=#>esanKCSn;c<+Jo9C=X#xYjND8bQ!)W^i}UXnN6ltE=mgEWV(Oo-$CIIb2^
z)!_vn<;^;g<;HO<)jBzj58{{_#}p2X-3k+5tVEqv%D&tDhd4cs8F4I+V?`V@<Cqo4
z+&JdN;f%u-haQKQ^JRj=9fwB<H|(rH6HY>xFAjekkvO94_S<S8j{aXNp*Vul6^0;n
zvsbwb6j*-G!mVN)b;ZrIK(i$v&i+))-8x6iz5kjE;CyB{Nm&rbLXQ6`j`<@Tyz;V$
zV}M_NkK>~_K8~BWH7@2{h~pF4@R=0UMIJ4gu;u@l`VJ^3s_*|~Sw2ZN*<@LounS8`
zkRnn<1*D4<K~S0n6$_vsf>KnFqJp4;Qrwi8OeQmv&_P86DT=5F2#RzN1f+vX@BROo
zyZ`;3-#PDm&gb5D-<$XDyYEfOn~5_e#<WihnaMeL+WueoIfeM8UFGi!v8oVr3o(!5
z%eh&IMTPjf5DN?OMIpW_wEsG@>2vn?rY6nseaR?V<Rf{zfvsFzh;IscALm;sxTFx@
z7Gjz3rR?S)4__c!E+TDK2vO3$y;rg+ekbDjhEDQtzODX4A=a=xTy}c7Rtx@Eh@XV~
zEJ%H&Qf1c`Vjbt^gzRlxSa|VYh)sp~g9e4zScu;W@q3|t%Antvib&Bph0F40noaj@
zDa2N>Dbg2N@?6vEba1<PZ$}}>so!0QKUrr4zeljA5PJ)8CXBOT{8fm3h3FPW_b~Ps
z;y@vC!zdlb--S3>h!SCBQlIZT#MmpuDOr~e7ve}EjuzsWEK0}OfFhFcon)w#bq6bF
z{9A~BgmX_$k%olJ=IKIQC`4*^_SaR)p5f3`DSNgM=VV<aKQ9`ZT`a_<LR{t~D#Wcq
z+~!)xIl>Sv3JK1O-u5R2Zg3HsVQ(%aj?}7;-B6P0P9a8aDCr2p83sjWU8hE~H-Th?
zZBLSy3}fy}ACoT(6myplcNiWaSz&m?c;$5PgVRA`k$tvg`2_=lIfA9aSS1yf38QQn
zHNv<%jB;U=52JDz1z{vV;!C)w6h_7IRe8RsKoYh;Ad@FZk{?FmbdcoYv)P;@4VG4|
z5=PZ9YWqER-za}`a@A_Ws|yCh_~vvlB;DB~<6AR~S`-7W_B05iP8j!x@jw{&gzY`I
z^~3nBo3m~h=9p}zd&8&~M(zR^zth5pJPo8^!!Yg><Mm^*`R`Ya!XTl|gJCodqjeZ<
z!e|mk(=b{T)l<^{kdWrYlKy64`-ulD9M{ab;L+ecYIe&oT1kaePJh`urkRtqJsd_`
zIdou{^AX8y$408zYz7b4A&ib;JQ@Z+w#+kKmoPf9JMwMw&O#m&+|o4LDDZa;<MA*^
zo)FwS%1hoOjGke99!6mpy~21hj5os=8pcy$JRL^gF#3hj^`+_qb>A~#^bX_MFrEwJ
z=;Q7e!svX>@q8G4*qx8E$@#P@bBdEU=?#0hUJQfylHki>l**`1v47a!WBdwx5k~cK
zuIw|xp~rmuaNK|}rg!%b4CA#h{@7i8P#A;5cs|3)f0BJYjOJ(T`8XtuH`vrOL0->~
zhp%xYFf5GWVSEtA_%Pl&oIN6p!%w)!g)uS9|5g}phw)ArBf}UK#ux^681IHLTJUBh
zn~8NYkx<V>!dzZXyvKUp&wihcnUFnWX!e9KJ`CG`r!s>zhcSs2j`Dpb0q{{6ABXV?
zdso-VKq_A{I5~_@8N(%mX9Aca<i4bbA~{P<6`aP-3ZZ7mnPB;@?&)WO;V>d${2a!b
zFrs0^!uWyV!B7uF<<Y~KFQFR`+kaV`4nt$`hoOgYaAvj{hQ;~9F%4sHcc0nN{{I3Z
zdpG|~FvS6F=H_=Y&o|HhWRh=Y7_-8d&1O&X&EZTGLcUI%OtK)1g<-4=+wTT`5yqEc
zEauz^<Et<hh3yCRUx&d*_eIb1iR4r+31ev(%feV51|RYV#@G+}zvap>($_NRo*?#Y
z&x)}9KXFukC-r|X$OEksa{5g0(R}}poNL2;Kk;yJd&zqA#q5`sR{bT6wP9=tV{6#{
zXWn&TYz*7i%<DOe`}>%F4P%4w>319yS@5?oeh*_4BT8JiS&;g><nuVhZDD)2_8vNo
zadOkMT?}@Fu``TaVeBrp|1%8#SvvxWTp9ifV_z7@!Z^-#K8ypLfM<h8I3>>p|CS<$
z1P_Xar4Dn9L_-6LM=ADoFr5(Pzk(;j_=nYw%%njP{wMlVVVn-*g|k6dUoVll=fXH2
zM#~6VMeN0ppLV|x#>Fr$g>jkj7QtN+TnXc97`MZ?!x`#wP4D5k7RL23QmeBax%T^^
zH#oUE`fdu|;&|1w-w$;}?4RngBk)Jyj36U|5)ouZkQIS9f|3y+0(XQz>r@{lEpZj|
zaJQ<S2-dx34_2QkE?)!<#@ZKG#L^G>>yLE?BFKr@bFEB-f76*=N-$S&)l3gHrFoP=
z*(9_n8$mfSCa>_Cqe27~BM3!MBZ9mLo@|g^5JBVJ)hi$M<wsCSEGr9|XM;-(NAKse
zt3*&$G+9lvt3^;ff?xz&L-w9wBEQCVcLX&fXc9rw2x>)8JAzrJt6zS0oe1t><0EJo
zLGD}Gbp`81aIcVd$6Zv`7f!+}xBDV!6v2bVn)@SQdO*aDXM?BD25H9BIAUMskvtT!
z-%7aojN4Rv&3IgXMpBS}-r7R4CUx+)j-X8hqat`Wf`=n$8{w;kcrIe!a6J-1=LjAX
z-i|)`JG*@Z9U|x`{K?)<Y91BdNw8q7uS*17#TC6Hc%0)KL7Bn6;~PBPBIq7LFZwfr
z;UD;VM9@<RdFvaFhi^DYh)=N%!k>=dnFxI6><E1DT#&hZ^8f70s?SHzCxW3742$4}
z2wse!wBdU*f*XnKmm(Mt!9X58g1!;-6D9Sp2<b04HCg@DVtvbVLFT?D;$Xo+g0Bnm
zedi%U-YCivV}6I~Nxy$MJ5}B7ZI?Yl2>;5B{H+KM%=W!4_)Y{Pg;2x&9-|`|6T$2V
z=0q@7oHH$g=@E>J;5`QX{OtE5_$Y#pBlsYK@pQ|%-~_>mf*%Uf50i=s4L*rras;2U
zZ7(?gm!^og?p*d~5lk)4+I}vZ1~Ve~JOVQUD}urZ!Vzc@^k|wLi6F{(&8QgUib>mw
zu=Qa3=TTMk%!&)?z6ptl{a9WXOh#Y`dH-CH%I5p3ry`ip&BYJs<&1WvrM8)z#XY@D
zvm(%CH0MSzFM{tQSjEN!vgb#z<=5=57-l_O3j`Mmei6Z!LcSj0W7Z;0iWA<iBUl{4
zHxVp}U^!O<&ZBd|r4f7^!LkSzjVSZuxnQ2pMI{s4zmn7K^9(A#i^zs6pWP{D{SX0n
zhOFC!pCkOXA^tiS{4s)G`uTnmTs^xa`5JN_)bOpPtDE_L6~0bzz2NzC!3~nd+>H$T
ztJO(1Mes)iE2H=>ip}gAXF(KCM6or3ZJe!9JP^h92zGGIjNobnJ0sW?!O;kgMX)=9
zKO^?`=_3*QzZmv#E_~<voAZ<{j9|u-RriTY4+!5c$nGe8OEQa=2O~HnMaU0FaPwF;
z2@U+`gZ!-A@d(aEa6W<)5uA+Rp9ubq;4E8s%>7>kr-Yng+*U4e_NM#n!jh*WSUSkf
zT&CA6mmo4LE6>f(39`-$5nPPmQUqW0a!l&uX1dJr5`Ha$>s&db$dBR%o58g`ii{|3
zaeDg8@&7D1vu+E&BS@tqihIuoNlHYK8AWy!{wPXDfhe+~_A<`oio#vYd;VL38jpxa
zZ&mb0;S*li!M=fg;CwI;MNSlDq9_}+KVMKvuyho;LM{!pzcNw8%SpkzqNor>`6vpX
zvm>MkD;A5??C`q6&AgSOs1`-_C@M=m1%g!ss|vDOR?fG0f>G3rqE-~oo)3nis8QVV
zyM<86I%`L9PZV{ds3Xd!PuqvSS9tv>8bnb~_=xkt)cIgT;rB(+NXVA+!8_-JbuR>a
zUyv1&9;@eT5k*TOjRl)T(NqYt9um?lisr?d(p7w|qG%n(%DvfLqG%JfKf%{2iq26y
z97S6Z9}(;z*e;6pLTI+KjlW|te^kiF7lLCB`5t3<U$4%ys&OI6fZ+zzu8j6KeDhEF
zx<%1FiWyORBVUgwdPdPNivCgiEYm9rv#tBtD4vYs;BFtc&_5Lg@oB+l1batOuqBtu
z=c0H%iau;`hiXhOMe#y0e^JOEJxab@tmzvCMW$DxIJ7^DKaNj`;?*byL@_Xm*P?hk
zig(1HgQ6G`#T&w37aT0O<U;VxD27HcJc<!fP}y!=iD6O1tCwIF$LlT85LX<?pyu7G
z?vYW9isHQ}-jCwlC`LyyHi~gkuoUfyW7ywUJT(5FhSh!`x#Np%ijGd?M{hoiV$=Gn
z6Qh_E#Ya(m9K|P5d=|yjC?-cSg`OGf`&0^&C~bYjA~G!siqi#o=%Or=&l%WJgrkT=
z@kJD0MiGr77DXzGG#&D!S78UE(1fd;hF&L?i70foT$D*cLvTk^J9m$uC7Nx*X9}Mc
z#q1~oQp21m=0>p~iiMIjFN*n5>}={RDqDoCiWL?eaoDTwucBDQ_SbWBxwf~*N3l4H
zZ=zTd#WL2@-n}%6OTYTQjoPn`^CEwZ?D^pqpyi^caz)hEXWZ-lK8jTw^cV)k@Iw@<
zx#q-BFNPnZ_=%GuhCmEIN3kXfXABuJ{1U}luHjK^iQ1bn)<yA~koAJUGVFzHjQ;<(
z>}j+5CD-qw+$8vi;HOSMv$jUDjY~unCpaUb*b&A4C=Ntnbj#Wq#V#S_O<OsMyG8sn
ziao{py+ZyH+{bxc$2R+0#7Bf5EVeu(<gnlo!J|<eE6#0H$9Xb}f1<d~#W{+9qxes<
zE(x9zR6Z!d%1=jeCW^CBoGUJSA&T?DTaELvo{Po$qQ+bn@k$g|g<ShTxi^Kgov+=O
zeXCf1JBmBS+!6c#J>qImA_l92GdqUN7)r+M^#L)sWAF%f#qd)NCzV+udIc#?8JF!V
z=5^a;Z@UomUJT~MP%4JIVyF;9ZVaVk_Pi?}!^<P=%l<MkEG?+~*n`<+V<;B`$z%68
ziTrVmH^>!ZsC+S4HHK<2<O$D@q0Z3kO5{Qc*eX8xkD<lIV84sO*Du<8&iR)p)nm9j
zhMF;(2L(eh)DXfQK2+8cUPrLDAeG<LcitnsuHcpS*;Lk#p+OAoVrU;j!x-+1;h`9s
z#n32*`(ySc=mRk{*>9hY`4#S|7lRMRFtWO*F_rXZ3~$UU{bv{V%?@sEHD5K~(VR_<
zfuDMNIA)&{2MzYMjM<BSD?yUhLfQy!H!8QKqvXu{NDT8Y+G|~h7&^xAOboqan0v<e
zXbiud@;x3y&z;$wV(3gC#?Ym>R97Lx7iF*@vBjXuPsGqIhVC)+U=g+?hNoia#R({t
z|Bp~4f4W#t@yP=JvoZANLAm)ShUa7G!`{8>>nr#|3@^s8|E7bQmv~T7?z$LcqNbmS
zB-Gz|Bm0#YUX_Lo5WIOYI4}kx8~J(+gJYP(qr@<TrDB*E!z4yy7x$Yn42xlS4A;(<
z9~#5iMoxZEWkd{b#qa^6Xtq5BZ^!ViaEkA6AYvF5vmXpr%5W0Zj~t_87!$+T7{<l$
zz8w8Mj&CQ&(#Jg&yVy1rF9qLQQj+O`OTqCmOo-vb7|Jir-P6IrI(ZHJQ4Al)kc!!#
zviw9aCOA2UDKUH+!)Gx}i($Gbr^fJJm;e7CBHim@Mhu_F5RM@txrH(C&n{UH)1)3Q
zW|2e%NwPAt72#?O@fbAW$ruch7<3W4UkZLY(k{+q#;`HdX~i(`Qt-1&cD1{mm5J#X
zW{UAF!P$b;cjLdH_V>+;;rkd?F}h+{5W~V4zKG!)y1j>+FUx!x!=jk|)(_KHLii~~
z@~>l9{C~tH^mz>5#_Z29E{|b_WG#!?-(95f%HkTnE7nlStRG@n&6tVd0K<$+N(`H0
z*b+mn`uI79wK1%VVNJ~5w#W1fThhcyvOb1i8S^px9>WI7-6%!uy?pg;W14L$F7<~H
zYW|hntubt>;oHW^+s*y;r6BqC7<SMmhFvl2iD9o~?Pl+~x&IWt;!=>t+XVlLVV@{n
z2eYYUx-OOc%{6V5?;wkh%3eLxb<bz+LopnVA!}ha(-9#@W4L|G7Ei=*lFLgH<&yX(
zhJRzY6vyQ_{)^!hLp_d<;+VP}r(@WrV7r1d4D}e!#c-bUT0vI@7h<@`6;(k61(#yD
z9D`FqhJq_GT;)+X#n_{ffoog}-f&#!;(0l^>mY6v&9xXlnHylb#g0FRS^FI?oj~*q
ze)-DlP@q2;__U^{gn~>3*$Vs$N-F5+_GSq}ky`)-tuF`Nf+QXx!}hzoT@HE`_!P`c
z2WDIj5(5fy6qHj?UcunA-so18k{WUaODia&psesFUuSaie(|^cVqm>8`G4&8H@$&Q
zj|3_z$W!ouf(I4kE2yO4ZUr?JR8~-+poW4v|G4jcqM+N<K!@8|RTNZ}+Nvq2t{|x3
z@5@1^kPz0)M6pY&fb&XlZE4rmeSxthytNe6W<3h-QBYR_k9(hjd!?TG3K}S=C!A&9
z?qr{^C^nQ-B+|Z-g8QW)dGo_LjTJOe&|E<aDiu7Wpc!lK87Oll*x7WSxW_%ET27rS
z!R+hamI_)a=s@4nhYFHqUE#_3&8vIbD0o=Gj*L=mS=FQ}?G-$tpdF2`1e*`ZfALDN
zd)J&&rAx6fbruId+ZoVC_#ai!NdZY`L6XOWbnRN|aRpB(_*lUw3c4xiuHY>NZ!74b
zpr?Wt6}+UNmx3o1^j7e!f~OQbdOLsemEg?h^PX1lbWQIwf;=4gOZ)Jgg69={nCqQ+
z#a^*DTnYA3@Pc@WoSK&v^i|MLL4SJwO3-!HR<ggZD0r2TpkRo?-;^;x!D|WzDHtf?
z52rB3Q>wGa!K~LsLqhQl1#fcn8|DmGP*JKHD#xOJm=G$NJ3?%lTn)aXU?iKTU?L~T
zP5&qb?<yG0{$364d@gTH{Ys;+2FED)-jg#{!8ir)DR`gGzlrfu+pCM6ABb4xtgU3r
zCny+oK8t+vO!p)OAF=XF-WL~@f3ZSN))D{PJH3+?Oi{2{!8Zy%Rq&aDl!CN^sS2hk
zP!y<i@(D~=(5Obv=&kuP6nw6rP(fHhR1O+ZFym^l2zf;EnCMA*@AjVE;EgL-bv0;m
zOgUKJdlH<g^xHB|Qh}lHZ?YX!QoOj!L$bAUWs9!v<|3J?U>2RJV1a_!9FD8OO80nu
z*Mb+W2InZ4%f;lX&F3lHG3Y0GVt?S9Zh>R&{Dle*J?QyD!IuiYlEy3&{93`f1@?ee
zz7`}|qF||lUlgoW@U4Pn3YIHaq2Rk;^SXcS-@iNX;OW3hg<rt%+}xYBih8N!dqGyx
z@mlZ)1*;hnNARP9FBJdJ3OCO<e-cjR8p$Ggf178Wg7pfvDA=mtR|OjsY#N()@q&A!
z0#76F?-UjMCVbrQPHLF`poh0&vx3g^9Yq>ueR~ouk9zA|_r7s0xI@8C1)EiDQL#(G
zZq8X152^T5!5*%DDxhMog1;1;r>_+3Q?OsbF$KpJ9H2iLX8+-kf=Snc_rD%sj}CH-
zuG#*nv%dUc1xMJsBVMMXLi+saIHBOAf`1hJ%jNwJraw|;@wH&;e(#!V!NG_9|M9rj
zf~ORm=E|?&tb%h27B#QJv}||g(%qT=;}^O3E4Z!T4n3dDysY4+f?GTbu<W(qRnCID
zyiC^=Tvu>IMA!A;sJi)7;wt(b!|dBxA5Y75sF>Fx;8Zbnpg(ZTJG5pXLq+&k|NU3;
zN~j=a3VvSN<x=5Rk*}hX3Xh5`6=hVERpC|PQ<1I0ucGGl;N%x`*UhrGH|+SaVtLIU
zP|@jnFh`K2l!{yxrA6HJVUUT+aw^KR0ar8gRFqg2yi3KUYL&E;?g}DOQ&Gs<!%+8^
z@?2&st0+*>hz(OwMMYH=qh0QLDypgYtw*4YH&E($R&^CY6(JQhRMb)V%PH<=^HkJQ
zQCmfy>p@<S|1&8-61-{SP}AM-qd;A;xmU%1CA?I!7w=vV(yYFU&9%xlP|;Au+jnI!
z^{JD4pKy`~R6MAnv5F?Dy<$9G)pP2{{HGe^{#VKK<pTH9d9HUpcQ;efTty*$tD=R9
zmMWf9@sx^IDq5@PprWISHYy%g(N5)y@Mx=oC#e&2+}AdHA5oFsj7`^r#8dZr7}6EC
zqjgEwqxAePcUKjU)1NAiXSzD8_SyU~!7hS#oi3o}pEvXB?zY?Zgo<v`$nGk7sOTxY
zmtct-c7K^jo>uXUiqAMGDtfDUR>iw?vWn+adsTc<#Y-xlS1}>O(?`V%LL4hftm;yN
znwM4dRWU@x8!Gy#=&xd+iq}-UqT*E*1LRme%X%9A9T>ZyB1ysD_QcuytACJ+*HsMW
zjQiDpw=|}~EH};mSnhvQ#ZVP*(cvnFsTi(e1jl`rgITPh$gI<iAjNmsFjvM%6{A!v
zZk*F|NwBNa>&x(xP#mLTEQ2KG{#eC074NC|P{r4Oc;8p?fr{}eo~Y!hINuqs<Y6LN
zHpnqSl(d<sVv>sg<$k1sHq?K@&K|MTWFb=oKV@)k@lZKU#dH-jRD4cn-U#kp;a^Pm
z=D9w9G_ca)`pj2l&;@sdBc)=YiZ4{eR48<^3PXj;L#UWDAyZfFTLVqS`WwN&!u~;b
zDkfAA%jM@C5J#CREENk>`$BHXO!v4I?i6E2#Y`2G`{&M6!R2?BirFI0Q88Bt{m|w{
z77a+|i%s=2nY8?HkN@V4;Fl`CQn6aak17_?OZ2CTZy36*T#UeqO+7#FckgPRyF^9Z
zo5AHOmU0Pgp8KsJ$uh1FH-jWARIF67zjWSrDpm<0|DF+kGf47-XnG6(NyX19HmUeS
z#Txd7JQOf<Tx(UVQ?ZfFF7U2bvBBf|m8c^19L5%SDUuLN?05X8;&(A1r}E?+$G!{h
ze!jq)H-n81VXKO5oZxZPietNq9V)J<xT<0&+pOY<ilZuabMa@BR2)#ThoPwAFBSV#
zEUDq0dNar?^UnjWj~ja4@1E28jyGB*@VAPCDh{bQtfKk__rha1?eM){+QrMc?svRP
ztGNF8-hYg9lS_(<Qz}lVIH}?v75{Pq9t=zkc*ai*e0ekY-Ob?W3V~-M?umanPOCV>
zHBiN66=zj^TRCv+AgrAQ=Tw|mae<ZGw5RGt)lTF^;`I9Y74P-lF6C|1!F5f=buP1U
zl!@a8M^;72I1tAz6}P#T#*rDvxwZa`TfsYAZEgiWYgEM%x97eyj*K`ck`pf-_wvfE
zRU22I>t0tJ?l`jI@W$bZ<JnumF8|p@PBr$7y%qGuksU{F92aZn`r`=D!^iO94R1~y
zGj0V-N##Vo?MRWOO4jv!;dPabqg)(S;;0%&`8e*1W8yXx#8Dv*?z^tUcAm_tC}rQQ
z=+28HKaTrvX24tCx)o$r<v40@^pfnl6`XXdVzoG)*y61b$K7#Mk7GddoK{=B!8nK^
z!H&Beyq%d|C3oL`cZ+MN9Y>uw`o!@<9QVXgH;%{R=n}`hany^WSscyds2@jzI39@O
zK^{8b;k6T=5;TnC)UDusaWoP_e!mdM?O@|Ls@)DYWu3Q!P2zAZaJRf|_xIeMyociG
zcG`b5?rsrB%Q!m5@hDprN3xykkvK}a0>f_yTgTBRj)$eo6x$XP*3gbV--h;rBprls
z6JYBV?oPaIe9gb$lz06)f9E)e({Bg6#_@O@z2bP1ZsDQh=pIK8mRjj|SIs?ssDNfY
z+40)mi8Wm}+t?q0nRz?-R2)yo@k|`O<LJB2^Fjm9*4y@F;j?i()x5&7+rj7J_@Jx(
z)6etLwtqL;Kl;BI$4ha%6URs@Sul>laSVy0UmX48cqNWk#W?4V?TSb51hq%X4xs1n
z1hejT4UFS8$<+osw_eX16vyi#lJhfeZ^ZFt9B;+(cAOVWuAy<<-Wgcy@R1J_&2YgH
zf-~*}8`Ljbt68Ae5pS)Ao>6hU8^?q=K8#~@9Ant>IL5~@Hjba~1phjmwep0wLuL24
zIEe2Fz8}YnjXe}|xB1Iv<PT^c`0q~e^{w91LD$4M)^5g$=kwTwkK_0xj<4fb9LMB1
zro=J)22yc+Dui6;BoaO~j%jQgXF(h>(R?09Xs(ks5fKXo!-B(p&!j$DY@o!Uias8P
z7Dplu8kE`RE-GGxv`@xih?yCOB{ozt(KsE)Ov#!R$9y5P1?R*uH;#G2X<1Yi?H9zc
zFpe)ozew=QVw<mo(6Y!lxC`IJ@e6$t$C5af#_=tqYlVmD2O-M@m&dU}$jai}?}U6W
zxGIiCm8!DHY7u`F{7LX<!8L+3SUSP6E{^xNU~?Q>7~#Ty6{K>5kd1=B3H~0(ra1l(
z{?lw{5)PWp-+`?x?(&|GV;dK!ICjLbGmgD+{1wM8&Xf+Wn8URvj@@zm$+hL@05#`s
z+c;r|lbU^T?2qH`I1a{ffCd#koA_cvY1g1C_V0$nHwF&HaV(DGaU7=QO@D67oFj1@
z<-*u9hlw^P;y4+{zkJ{mN6iwhf8rQ*#Qq;fra{M@r`W1PfzxrEVW0*a@4_|nbNgEQ
zESGCG@<>*P`kw9o<~@DWe<6-ivmNZqMb7R_pCjP8A`gy~1k?ns#&Io<>s<UfIvSR0
zxXHzz6H`M!4Y%XC6GsybO*J?)I5pg*p@N1C4J9<VG`KZnYAC7U*9~5fI708`d-~-E
zX6Jd{s!)|5h45&|(h$&)qv3%9k5@zMjyZ*=-9F9kNVXt}pEWx|B+1IIQX0x?=zGSW
zE4ifwA8>@q6q9)$`pao3uYu(HG$*m5hCB@+4K+06YpA55vW5Z;Yv#MTjF&6#I<~N4
z70tfItEz!F>|NzpB-KQ$t|2Idn)KAb-5P3YxK~3x4THpTLd0E5Lv0P$YkTTwxJSq*
zV|^6sYA7Pt>y<s--gRJKR(*{hB|}3E_i5<vs(3#;u3?fR)JTw;2SrcPSmSQkY!W7t
zhcq<P&{IP%4b3&Q(C~<cb{bl0Xr<xGaer%#J6iqQLOJZz#G(E+8vd^8eOSYHPZZo9
zSgLIi>6_DDLkA5{X!cciv!@F>YN)@;-ATiv9NbE-N|jy2&Ke%m&_%MC+f~T;6M5v1
zYbYY!G^{=C?k-5ugCyb{pKv~@;VBKzYv`llX${Y4=&j*d4XPv5>w<Uhh;qxDxt`O&
ztBW5TA^+4s7c<jS#`S`R7d32oGVsZL9`$hG!-oPdag4rozpP<;b?**Gh}fSF(J)2B
zry5?>FhIj74ex3gsNppYZ)zCI5z+9vhQU1IHW>f8dE@h2<-i3;=zzD<5Djl=$aaPr
zIzz-^8cGlJ57#h)Wy|GonBHOy@d7>yd+=(-2X+SD=Fsd6ydyYLkP$dq!x#-8Y4}*f
zSPkPe9Pgg{p2Xhv!*;<c6aBrMq4za>Ku6KZ8af@%nke|8AjN6U&?Mn0XNck_8YYYL
z&9)xid=0ss^`+l6e4hU^4O2B(8d4gj(GMCFx>3Un4WDa>aY7CD|6Rf}eng;<Asumd
z8R!dZh_L%t^T?wd!GS*VcM9CRg^X*^H0T<V^wJq`iMImUsjP&CYSq1+Ta_4d#A|5S
zRM~rCK)xy6`N3(=xU`0u8oto*rG{A=W@}iWVWEb<*81mYNI&SAui;;=<(zI(ikzid
zZT0qD?)GJbc*EHBn47y>ztXTs!`B)XYdG|9pm9cM);TXv+y~FNztM2umnyv7=>Bq`
zTBH1LH7w&KO`viD%QdXfa9+a&4J#SI8n$WJuHkzPtJqo%e`xqY!)nf^Z13+He$?<2
z<50so4M)#-pWEx`l@a=xQzj#{M#C>c$l1c_q1-Ed1M9goY1p7)BUhFCyuZ=0Yn-l7
zfIPg$S%foR^*{QTe=}#_Veb|VTNy1Gq3IbR{yg{X-|l~F<u%Rr@6fPQ!+#o1Y1pM<
zw}vBZfQCOcd{f)IPs4utCnK~+a4(ye5&BDz$^)FIG>*GZ9>778jL;$RBnjI|&0!6m
z5;i}kVf|Wv&MY^(c3i^=4RuR|P8PXc!#^Ad(a@5KS*JCe(QsD7ISq6E_CH)AG+uZ2
z91`eWJ!j1$Zk~)5H}zc9a7lwV0bc@_xr}fbPauOUzlLiX?r>pG;JStzJamarr;&jw
zHM|q<a*Zw#x~buo9C}8H&~3(~v=DRh_{Rj}t9cHU2+g^cRU(1R1WG0_eSctGxk?){
z{GnSw0<MI8pX*NG$ID)ia6YUf&q~-WUsfR_I{|+JISG_XAdo<8p2J<sd$DPt^v8Za
z#>`EibOQMa%=^t>CV{e2s$v4+Fa6~bxQk`~$|5f>n$o{ID+r;6JWq_vWZM4hdo!!!
zg{*=EswD7g0s|7Lnn1M#+9%K<f$9ka6KI}5iv&Um)JWjI1R5o<-{s9Z6u3KqPs-%f
zOrXj7yjp^_1?vdjBUo3E2KNf7Cs<#wK>`hnbN9Id_b0ILxSLn?jun+2NZ`Q)8Z$S6
zhZ1~4#D1*t<9sJcQ)xU&Gtn1iF%DZM&?<q}JY^3L4F1&LCV_i0L(~2$_Xu6lCime4
z+6p0mD>KwiD)~Y@&@q8W6L>y>J_&S6pmPE}6X=z|V+s4oUXKLyH*&iq&^3X_6WEX$
z>Lz7Lo+u{WiwPUar_)AL&xYSU|7M1s6#Y{PJk8K58G0sxXA}IaiobUPOw`nwnnm$B
zQMUDYhOYF#kid%xyhO(?aPyw7!DjsD_q;6i^ksVzs9!Ra=xBSRe*)CJk^n_22PW`Z
z0`Dd;I)On6yq>_&1coIrn4y)x8wtFbuva#oab9SjV?SA1iE522^e-7wONNFgFd~8H
zay_FG_D@uA(UXT!d8MBxskgcQG;_TpI8u;1$3{2InOHS2CV{aDOiAF=1jZ%sUIKqy
z@aOtnpH%e>?3Mq10v{wWK7k1de9Z17@L>WI6Zj~Bb2q#bUc%ZNUZzPbb-onIGbJ*J
z-;@k}zsEZ{fn^^ADtr(iewM)01fq<8R@K%uErA(yQCZh?RyfSQeW<|C5+v-G-3kT6
z2}BrIJIYYgJ?tTFSm5S)t>4T_2iv&f31|s;bY$rWHFqTvNGC9p{&#ux1d@#HLv}Jm
zV+vXcq!RXJA#HfLSqaQe;8#XM0v88i4kus&^EpXpJLZZ#l?yoE8wI{jU~vKqg;V?@
zfiH!BCAdg%>s%+ZzDZyS`?wXqh;pg$?-Tfzeh|&_1Xc>6@rvSt-w9zUR<bIA9}@U(
zfPb}={fVoJ5Nc@fv+y;7dZ{YZtQEdaYFIDW4x!_z;Kl@g<64*C_GA3cfJxv8ow*5r
zB(RyYUicQl9fDg0X|OGU?ZtfIxq_Vu>`Gv_X!aKC{}i%^bFFuPMVS8LlrPTxyJpUT
z|M3J47V|?w4l}9|Vv(Z>982K1DE~>|Um+(1PjXHzaMI>K5zjKx5;!INv>>z22>G%>
z0r`23U;>v!b0L8-t23!&x-6Qj30x5}QI1RfH4)eCEV!9Ktumexx{bGlliU_^N6;Zz
zPQeTv7vB!hAX7w=k~&b#T|(SCXvQqB4xesEqdSRg9ey1j>X@h_pd&{|ZynF-D5WD;
z$AdZ=>nN?GjE*Wgs_H1KqnwV)Itp}Tc69NPRCyg69w~d5jtV-yLa3sSJRSKu4j@Fa
zNK;7%_2g8h+IS}(c6X1v`Qt@39o2Q*uj2t7K~5H?jsAiOc{Oz0t)rff`Z{W|%{uPU
zQCCN89c@c`>IhCQ=^<w-zu8Z`_x~twH7vzzp$0mL_X##+H>>1jH_fM}k&YsgaVdZ3
zZt#L__ziCp9Zhv~)bXf}hjcX4G4gJA2OZ6IT=uvYP0nkrBNEJMp`#_Ma)nyyXyLL?
zZS6~V+vs>$$Dlv_ZFM}Nqn*w>Qzu1Ysf{*i&pvMUllX7uUCa-3($Sf%(($+st$LNm
zbWCpIaXIn_xI$fY5KUKT@R5Q)U7@;vxu4L{O-FYfXI!BkI(q4NQg~0ns_k7*33*z_
zGaR7yF8*T(FW_lR{CTARIUUdI7^3419es4XprfCT{yJXN@sf_0b@bKoWp(f7efe4L
zP*r!xvnc;bcj*34{d_L{ijG&=9vuVOJ9miBlz5R}{+IHv>8NqmTjQ&;OWdKwF4rJ7
zX+X~Ff`bJw<>kMrW2lbNI>zW2rrYP-;W|c;oOPdcha7*FZL`~b=U&fS^z;1kZ|iu6
zM8_x*-xZ|(%jzyBlCe6*=@_qLf{yoe>^Or{N3$4yB=6HdZ#X_+pzd{0tk}-QABNsN
z>17~I((#dwO*;P2@v)9ibfk66q_=fU;b`iJ>ilwo|5F{G>6l9K3|8+(h9^|Z6Pl)j
z8xN-In4$BUs({P*=Q;{?ghix=q=hF$64RmRFgRHXyecc%ikCg1@8;yhIk-9!qM<UW
zLl-_|Q-ER-U+oK+IxL3$Ejy(+L!B8UvvkbX@w1LKI_Bt@tK%CTOLWZB(JA8pO2;eZ
z3g+urz<BuHvrxwu97G-bahc*1A38{ieqvrEmNfoa$712!R7r6uT@lLpPUqjFl=@c3
zG9AlxoZjeMp<|_vbGriMjBOHXNWRyxO2-evDgLNqH3#d6lTX)qDyQZr$%@qT{-R^8
zj^A|r&iOvV4j2Z~I@@W1^*Vm#TEU6-yIuK4POjgbBR!#a_6NTIy7KQc+#gNKQ|fy+
zb7|6XQpZ0!w(8i%l|;wiI<_-nPhf|RojRs@LM66)cj?$o4_xrJRNa4a5sSO`vPU}h
z2&WiZ;@nrv_j7^_bWq7ea!|)19fx%s(J?=eoA!h@ctZT;qTj~KM;W?TT<1KYW1KJT
zbB+s=oM5MFl_L39$A3Dm>A0@r6#d5KF5tMzX>vCIi@pA+>OZ67EZwN%yp9VxE^!Uv
z`mE#NE=P+!HeQ()VEc<iy5fp>k6D$nLe&}sZs@qFqeK#!Ni=s<eW+y>-E!a3aa+e7
zuIk6!jwJYij3hF)6fr|MN&HCG_Is){$_ll;U9lvUNj#MmdNV8JO4@@+;z=U04OxOD
z-XwfH1&HVuER{r{I5$Vg<Uw|k+$2hiSVl0dIjJn4#9c`|YT4VLDkM=ci4rC<P2?q!
zpTzJaMkG-wiONYllSJ<%3X-V89wpHtX`caCj|o&wqFNHwlXz!4Y9~=gNKh~&SVQpc
zBx(wwS*;`vG|D5nCyDqY?#6<3lejm@n{-D#5${i;ei99m_-m1~VG{Qx(MWP>Kn+Wg
z5Sbnj{ex19SxtmA6?{mLHqE3SlKX4Bc{kTGiB?IpPNGc`-Poz$ybmXF^JHfGBswI~
zRy2<Ywi9F)Z939XG74RI#D@0v&Q3{mPU5j7sCitnsO&1_qhNqaicC)=L6L-&be9Ty
zB+)a8UP(MD;?si6eM-oiOEQ@#KAXgIN%T+RldMoyUHAAo?zM{o&nMA`QL)Lx^g<FZ
z3V%uPWx>A1x&4IH8y$QlX+On%m19~qFd&J6NxYWiwifpry#hm$7?ea+M=r(JlNc;|
zHg$Z&`9>1FKQ$SCNeoS5SQ6ySA}4t(iMQE21J4_HCy9}CU=p{I7?s4kNvud>WfG&4
z7?VU{65%AqCNVCF&ytv$#CvQ{5|ikbBz_+jICdzoC@b_q660CJAN~nRe8^VG$#-Is
zkA<C74k_vJS8*+An)5Nek;LY#(4S?iOitoLR)}dz5}yiZ^C(VBVtNvhmI1Cdt8ZuR
z>*|@2v`>*w_0Rd7KIxyMw{k_2h$b;7iMdI{l2AA)lF-?Uy;<q?el>~iyZt*}_s8iF
zHs&)Y`D>p!r)_m7lSn1evPI6r59S(45KTc#(Cg)UkAZX&#F<IVN@8{rAyKv!oR`G>
zB$g$yJc*0PD=bLjt0We2M7*JeNqiyX%Otk;t-?g**Ahib1PyO!aT4DYb9VMeZ)j=K
z#%~3w={GBHzt<k7JKoTD9Kj@Z(T7Q_O5z7ro5Z#xR?|3%-{|}#eoEr!BsOqd9`~$C
z;+G`WbGqH-Vp=O?onY40iqtIeIesn9CEqA5sp7K_ci*zW=ytA6jEY%-Kawc(xQA(T
z5?hKn^}Ji$p2UtMb}|xn2DrDa#&SO&hu-H4@dw;Llh~8Q*(A;-v6mAziGxWTl0&?G
zD{CL4H{jaOrGqQaa_8Sk+`rt}VYQ!$<S<?5bsbCMc+!59eMIo6;I(N^o(oQJ{b^aX
zPgY6tliUT$kiO#jSMWc<Q-V~UPU4L4VSAm!_d3rru9CQ(#0^ol^Mx)ZaVd#seWA-q
zyx!2aWXN4tlDNvn%@?|s#Dw_{ePt=`qoc?zSWn0N2O5{1;S1eP;ttzjpq2rL0jB|<
zfouaA21*!k8}Jy&G*Hq247d#bLrwnN6@khJ{D}s+U-&}2DDwR0{mB<9$Z`z%Fpy=y
zYhZPSoDrKacYYpk*!>0q2JSLY!9b3IQU=NyC~qLwz?Qo_>=%E(JKzhIHb5*RSXPi@
z$I89gA^yyIFxOMjK%Rko1C<PLn*_I$J$1_8bf3G|U+&5VW>+X*%>a3Ufht0(3eIco
zp|ZMxpn;HK?}NHqu!i9ByIj;1ZHTIEppJoN2AUhV$3R^JjSSpx;7+0<`*N>=wP(Eb
z4AeL5mGhOO?gj?F^?Lf>U#TIRR4?;B1OB6aiVqlg&_GiI4;i@EEO_XAR{OdB#!{+@
zV16?5wO0Z)TUO%3(xX*eEey0Y(B41?1Fa0SHt>jnb{vlEP-04;4QtEG&8g#lnBJ@7
zZfoGsPYx1ZpayCO_~XmocXK-$_Lka54RkWF4uMB*`s>uat4(&Ovw_D9bYZ%Pu7({~
zJ+ecuWQQIX{)B;ULb@AxN{DS>pr`O&#hNFDFy5H^w1H<t>|LDutPlod9|JEKm|);T
z1AON5qJf3yy_{$-vCD>i_1o9L+gy+h^fS<3G_ME_Ht?zt+6*u-Q21*cVgn2IIH_cM
zU6ggd4Gb~xhVVBH3^OpCM;GzE>`;;A2oc{hp#E5anxyDQ8W>e%Cit#_u|jAt+Q67%
zK4(FInsLR)ec!+b2F4fX7PTR7jdP-b<=gn38Fz+>Nd`VL@UekU4D2@Wr-8`^rWlyd
zN(_8z;4=dW1G<5!2BsMZ8;BT~ZeWIi&kYnBxN^$LJs!^)&K1iu&#ZM0Gn~Y-D>9=7
zVg?j;L}G@@mD!<D^X!Y;xM(!NRg(gHvO~XK^(PG&24-<07+`VJK*~VcfMwus!+AbC
zq(9(cC7liD)0;8Vz}m$Dl37>%a}3Ors^$v*bEklZpxJ%%oC^(nVc;hNKO6Ycz*h`-
z1Ir97GVry5ZwxGvB8z$4tA1AQ^M?lC46rO~Sjss*&)HD1w^c7Uu)@F(Tow$hH1M5)
z?+vVyvTt6ozff_hg1y6}<z<_18Bpa%18f_6(RQBm(yW3OSNv-X{9<5}fj`)C2DyO^
z1~!V>dIP^2IBGcg)QdGVnp?oKzljrmH*j)!=4v@aJ->Y}*vvJ@z%~Qh4Q!PLuoN3i
zeCn#71F^%vP6NB7=9-uMW#-x5V0w2>!5#y94V*G?+Q451_8B;09~b*M#M51e1P|EW
zwnazZ62yZ%%Dw;z(_zsYUgt3b#|``=BA)}C5OR`EKI@=J%Q2HPi2oW`lkfOXa<AQX
zoH20Lz;y#RM03u-1p^lioEMSyUuENx@XHJ;u5~^ql}uMf$>Wk=Gr+2f^fyI++rX{=
zV{k_}%Q{S~eb(bN?Y@jWTC)Es`$wXZCioxZjV&~>;4<Mh(ZEDQ6CM*;CSKi&plQGE
z<TdRlkhvy&Cip^kwxC}yAV_77kW!{Sk0_Ql?HBsW2$nTb&O~_=cZpa@u!4z-ru|0Y
zY5Bl%o+w!)-^9`j_S<}wO%#Z-iixU1;^pm6F;_EDUBq`rxMrLx-`*eEvB4c;vp1oJ
ziMvhIG*L@LYU&E9ZK95ldy4h9=R5BeUQe)ovHt8onfI}?CcZJT#Kiq39x(BoiRVo`
zNJp7?+{6<mnwV&6qOFNXOgtpcX=S3diDo9a@2EM^#Po{xbvskbVxFIu^XAY1e{^eO
zV)?1S!zSmcf9nafGtu5e2NNAxLw2c+R>dD`c-FOYJ?jrmxt#T=iB6_nPiGU439+Ns
zADZqDburPEl?$(bBdeQ<?k1ix@wACiO<Y5!1$vnFhO4>$P)~Zy#7o-(PYSXI@-6AS
zXH4`q@vMmz{?MKM?!Ep{xhAgD{?NX>+&(5=;Cg7{BNH#Ol!;*`hO+@C(&KY`<_3nE
z=xd^%iT);DF)>)$_Ns}EZ<iWq;x!WkOl-Qxb@bcd*e;$yCW^@G42D3ch}RE<hM0K6
zL`%`UDK^Y%UFZ&K6@7aHBTT%-zL<E|#QZurZ}V=kmiMvW{O`!IMw+;EBa?kmws}5p
z?-^}koQbkK?G1HfOpG;c!gS-1^F0&qoA`i383;`<@u86MQVBIo6NOVl&I&&^@rj8!
zCgz%$Y+{Ouh>56a@0tIU#qaSRj<`QFG1bI0`k#~Nn7h!#3=^LV|L{8}HP6qn6G>Q<
zLl4<ztUPAI;Is;a6ceh6KOK2-6S|2ZC)^sRr)bETXq+_dL{2l)gk>T{|C^X?A{+=Y
z%{2L)6FWSZiZmqDP(P1OGqK3T*Q~Z;?gA6r0-;VjJPYZK1Ng$kuI>2J#8;eg((Be=
zxv!S@B&+1{+GDYatK)L{qyObVXem8u;=G9qCYCXDP3&eP88aqUnpkh*R}<ec=I`_T
zU}Ck2Ry91|bB?^2yUN7QQm(90u630>sk;I{n)u1Y&nCEwl4&j1lhJ`SCVmkOIa|I?
z`m%MIea6|qSYlJR*uSCw#sI$H-E3luiQnmvnx5I`{F~^9bN)XBsoBa7@`xt*w1kgG
zwsX98Id-sN@)V`$`N=NHrJgo>Ozbsr!o*1vf0@`vdlQFEEFNp`)@X1fZ$I01IO~Am
z-zE+Up=QJhuv164&Xn=+hyJ4`j!Cl{=Y)=%U?O4rdC&WgiGNM}$544GaCk%D6eny>
z==^qn-sias{>VRV;*5#2Cdil9$Uj$1Ue5_#WNe$ru~5pwWfNCSWLPL+;i`#iCaS%c
z>$I?czkgy*=(>p;CT?=Ex`f>=Jhz41;(8KrFx}x`weT=GEdE&RCfQXd@BG%hObaC~
z%&e3fu<%OC4GWXzyHDnXTo&9GJQlJn_$*{w@LD+Zg`cT}>YSew`Y9(=#IHo0ehWKt
zLW|Ub(>($_P2^fAZK0Nh+7`-KC~KjTg~}FgmvWV}(EU)LO{q|M3wJTMRH%Z5Jj)K+
ziXxIw$&_C#7Feia;hj>UV`T$XEmX7YowqeDRJRbc?6dIQ7D7@(4H2nfB}^nt%qnpD
zBKsYaN`<PH2-LA~kA=Dx?zM2;AGn{j9n7g`p`nHQEI2B=>sxrdzPEveb)`Z%xuHfD
zo=H3SQby6M8D~#qJs<@i6l{?jVkJ#2JjBNALJJFLFL;{?Hn%Xu?WXw9S#(<FX(<M+
z1X~NX5oD={Ewr`ph=}b3J6LEhWa05l8ZdRV@RjgR7CKva%t99n=PaDJ(3K6guwkdY
zC;SNu-7F{;RQlNhUqgGwLT?K_gj4Kkp;s|~(!x{4{AnTUU&XT)p0n_-h0zwCx6sGJ
zPz%E>ykOx)I@z*s+_=l@C5Fe0ynkc<KDnXRr_k3zKMVaCLKa@LFv!ANxuI7r46raz
zIB&z5sAQt@bqg#t#KIdw1`AF*nf0axCW=Igv|$=<VFW9&_|<oJ;>o<XE&INE*W&Uh
z<<)aT?^qaVfn=0m+buR9V___7urS@iI1BGtc;CVY4E1(7*==$-WQYFE8gF5Og~{~f
z_x@E5?}rvXvOvN#k+VSflH5>{=3@~*vGD8HL29O0_|(E@e1<83cQiLtM7HMI^L>Ve
z&n*;M_J}m8VxO3fIs<$@AGV+!3`8t^d$)%vDkLU&_epo0xfXt7H!URC7YmCld~G3V
z!LTsP!fXqs1&j8z12Z}3b@R`*@r-&QH)SFGi$5(bA&H#lcDRajEX-xhaB7$L%wv$u
z&THm$eQ9C7g#{KayqhsF=vhclN~t!z%Te64-+q5&>fIi`>$JCi?qUnySoqPxPZpL~
zSZd)13#%<GtP%LuvJF;QSY~0lg%uW7TKG4R_q~PhEX?y|GErp5iPR83`_s{47jE3a
zk>B&V^OlRx&lV2+>HNjQS_^9|)U4y>^O?FAv5tW^)8DV0XKaCIJsr;2w(PClOdGj&
zRj>&Ym76U5!AdOrZDF&8Ef)T?u!oBP=ZG(JmxbLHwsC4N&$*Tx+HQfkLvW{s@})x*
zJCzP`+YCRGvbMZuuZ6!X?BjCECjIB`Q#$l^>Cn+8l|DLMq2p3N-vt=cyWBypffkNf
zIBLP!#KYHf4qIRrf6m~`U&j~~H9h~ZzwFUA|8ZVU@9>-uJjwC8kjYf*g!?~6UFncj
zI&_MQkA*Xw{`;I~Ei|v5!_;P<vnbJB7c5-iQg7j+1&WshNiGW+<#M#&j%yZP+V0M{
z>Az0rSh#877MI@?%A|1H!X2*RDP*PKNMYV~JCzjT6wDATA()x6_i)kxB9gd-xKlU{
z2SsnOK9GV>cy_VIUu=^jno@$fDf_yDX%8G_Qz(~0)fB3wP@V@$p-RfuJH4(7DdeY6
zDTRtsikiF>4$BdF(8?)LL&8)bMOY#EZaAu^5KN(F3bo`w)P#!LQ$xtz#q}_&s8nsK
zp-##!&LiHNLcJ8m&cV1jsGmZE6yN>Cl$mIl!hI>k(ooW9l*0WftWV+B6dp+7!4&$Y
z&@Y9?DKtr8{3`THVc}Ls_3zL$g@;mTmO}Fs9+RvVDNx@wg-23oDV$=f6j~SaHbNd2
zy!C@!NxKv}h}d2*yw+ASbrkVY!A>c377{DY?UF**6do7l6Df2Pa(#<kw!82if)snE
z5WVhxb%5i^6rPesJ}p^&Qh27=rniu1Q>eYx@mvbebGV~kCW<c<+q@{`CBc_dxY*b}
zR{s<)A#9&aOySiO2Bh%57z`8~CHPtjgHpKQb-ym+P~n3GhotaE3cbB<=DtZkPst!3
zmcnqc9Ff91LU^FJguE@drLkkAkR@I>oAGY3&FB=y6!Wn{#tFVB*m||y;1AeZX)yT&
z(SMkNcdKL3n;GoIq!d09<;N*}!q`Y*N(%E+SdhY}DSVc~%oOVUjHxM1OF>N`p2GAL
zKWmv$m_k?z&Pd^NAuCFUc!&sxN%h9)fdP)FSW?L>Me1P|YtvFlNRf03dJ4%D%oMB?
z3{lel><^AxHC-gBl%4*kFH$mhRtmFIm?OuUo8rFx3^s|CGtDbL=)x4fNa2SRR;Tc#
z)Vw%_Z&LV5_@WfP7DC_lA7DFbNeW9-Sdqd?(SMu5vJ{r5?8Y#csoxZv{QO47cPV@?
zHmd~J6=wAQo*$sjU{;akkD~uY@F&5a1=k3+`N^(rt?+e48Y^Q%3LCk4q){!6-%|LU
zD_aV8QrN^P`L*|t6gG1>{`TB>#<3-Ztto6zVMhu(D`%Zbczca^Z%f%%gCsk-P^54<
z1@}7aPT|iKj;3&oYl3M07ThcNm*76Z{elMsS#VeB(7|GUh%1cnBgGo`@Zj-cekO$z
zDV$8<AJLo={I@vwzZ9;P4za@1qG^@sAU~VJIT6ouP6@eCY;Uac?s=^2r4;)3+_bzR
z`m2K1ifyh7xsk%nV$Cff<(GLKX*km;lSbJzGSYbTD^E@uE8cULNFy_il4&3fZyLTd
zTxqz|@T8HI#<q32+ZTIt%7hmDfSR4Xn+|*4S)Z$ncW0+@@5HkHGy-YP2yc~j-pk+N
zg?HRPw{`c*ubw^GT`G;-G(M{0E}cfWo43I)-i0f?JY2anXh~8&jl0sQkVeHcDyLD9
zMqV2EY*;CGr8JJb@811enNw@LB`#HCB}3nHpWEixoaL?}1_#%AX;wXrVA@`7B58!u
zsFB7)X*5gYZnl3N?iD1dnMSQ*UOSCC!tW8RE4aOcqvv|mOQU`o4T>!v6w)w_`-(M<
zgxoLqfZ&sz(O5_mK_07V8mnX+o2Sttjpx(oBUvre=qjXD8m)!25qwneVZpX(JR*ek
zv`eGC@D9bAjzStQ@-VlP@Xl#GR-D@<4F(3Y9#7*5QFar2Qm}g(J&G-R3h719|KO$l
zQzAYs_>5q0L1sOh#&g2kUdyG(^g<c~(|9e77mICP67q5yeTDQ(qrZ?>(s;GlX0zW8
z*8w74^t%V8@p>9lL>!#PkTgCN{ze*arZFasv1tqy&4@JKN@E!HB^;a`!`a8VcAMW$
z;~g;=orbm9o;4#y93}X!AeD7mR420FIMKYH#s@;)OWR6jF^w0^|0C-=prk0;Xoo>A
zvn(jGyF?RVC5WPeN)9R@h=QP!Q4l4FO2&YQAS#j(5JB=z=$W3>lNKZg$w^QY6#+3J
zDx#tY%Da8X_Wkd?bL!l4>waH-Rb5?O)1kWOHAl(nuNUDB4qYeCTSb^E&SqpwO;eM|
zXB1(kOtXqG*YTe%GDmnJU6O8Zi_a6zF9JKku6jM*DZ;hA?P+sS5f&FA&ub6<_lmHj
z2wRG<wFpa#u&l_Q4|#&Iya+2a+TWM5vIvPH)Z1hiUsZ&nB7Tnrz9RUG5HEsNgg_CD
zB1GgI6w=ca3DIYSJsXFW&2na=MTq^6lGU@AbRwig(nZLKOz-O|F2ZWgB<!@l|Na(G
zWVE$%SjQtmWP@;{kk(Bin}vVua2*)$*~YoO2z!h0f#b7XWJeKpitG~Z7V^A^CqMg&
zu)hdD72)S194NxUB77?=<9}F$Pm1uVvWJRr*wH^K!p9Cj!cnSUH~Jqf!k5xN6MioI
zq6j>RIwqbyn>t>E6Gb>F<!d3!e#QCfe|)}i!e)znC)4-B(?$5fDRrg@KZ^etvAgSR
z5q{zH>$P_`(>c!4;=gjhaOBJLuOeLJ{8@xQl>L(tRF?i1r2MeO4t1#rmzDin_|N~C
zXmxo}LXqjrRMLwpyeQ?=o8tu>UfK(f<H>?dWt7cz#Bz@3l_FOO%X@LPqgU|$dxntj
zMS&L;y{P2H7%#?pQQ3<sUNrLJ4ljN`TeYeew|LROi)vn6<HfaJT<67&UexyDdO6Ui
zrWZGeR~Ob0vQ;!O)l#-l$l>(Un%wC-D}7_-*70J+Q?=@PQO}E;yr}O5Pe_<<_VQ7<
zeR9IIVXgaCuYHnmyO77`Z6deK@-!5wnQvd$-|59&UgU4Ya4#Br(Zq|Vz4m!UQ!kpy
z?I|ysd(ncTvMs%6<wbih?(?Fx7j3*~EB$UE1K#6BmzMTBwoLa*?D$!Yc8+y(#MOaw
zf)@{Y(N*I8UOXt$$%_X>LQ4v|=NHb&FYN5apnC3Teqk5sd(~h*P-f(AQXcl=5fLiw
z=alL0MGr4}deMub7gJB7w-<f9c+88(<<?i&&&$u4<bJxo0!xj5*}f6o--`iGoWE7e
zjlbnnALzxC958+O4f4EFWjurAGuZJQA~MvA+?3s<VP5pF?RmxvZ*|YJ!smqT7nh<k
zLY+L)i&0+OdLn1E@R@0@`=+~?9p}aKUhG(s`<53ka1=dWFwu)wy?D`!my{jvMd73F
zm%Ugt!_73oYfrYX$n@+e5B(=m;ec%Fo+|M*FWwLt9CuIg;&pKrr01Jn@QjpY8G(c%
zPn;&M!wfHGda=oe%|3h5o<)ZZc+-d3Ud-`gt`~3f5b&Xv5A(d3@5OO1zvPbvUcBQ)
zu@|eoSm?#OUVOC~MQo=C`7$pSJN!M7C0;Cbl(S3S%N@Q#WTkMG7ZaPfSlsJ{Pl{g{
z_afkh;YCncIz+q(IouQp3tRnCmDZ?u%!^mn<T7h1n-DUa^djZ(v`B{0_SyBWQT78b
zwtMlu_*yU4iLCeXe~0bO+#n>`D6+|m&5lxMWvQ*=+l22maWU=iVy72J9G_iY91`E{
z#U3yAda=)o1CDjS7oG31Yhl{EqSQg@AA0fK@B%7XJS_1eFFqC-9&yw3iTI~p9QEQe
z@ngczg<lBi)@QdJ`AZ(}+wAQ<Nu6`15AflXe17ucXD`0?;u|l%bxNHU`Hn}BqfAlp
zACx`g#gAEis@;;a;(rN$@#37wuU`C-_1TQyM1B{Z=Xfi&_tBrqUT{Pz7rnUT#otog
zKD*ifh+p=?rECcw8W$8&XCf&nk^Bmg)fz~peJJO{l|FbJYmP`6A95X~EH}Rc2Dhzw
zl@H~8s4V?z$C~d$1&8PPa7`P#I;H|2DoQWY0hN5{q`g+fhpIkQqnk`O_;9Vrbxwrp
z#U-y7C*g@J<5c&dhGWg_a~1k<qYp!Uc-n{BKGgByULV@}P}hfga%<_sO(KnaxWk9~
zPT8A%xW$JfnUajzz=vBM{Wc$N7jNh&z13-V`q0!-?h<J%Y~sT+VS7I|Q?|LVg|LtG
zR^qLNZG?9V?-5RyPdgvl`_RpYhkdwDdKV$Xb`a_4!~KrZN#p_HgTl_j{Nj=iiLg{x
zAMf^;B6&ngZy)+laje}%dI)>^(96;5??PW6`YHRA505$e6C#fb`wIsM`|Ps!>_8u$
zRF>Qby9YUZu*eV}Ol{*Zc9fJ?h0h9K^5HojhKrBzVXO$_jPzlY!$*sZ5gy&iC4Y9M
z&kJ7=GW#Nf&$kbGrtuPA_F;m^E5eDwP2FvWN#Z1veRxfLitu$uf5V3n+UcC(r~2@g
z57T^@?!ycp7W$AgqYQ68%;Z=q$|ZTxmpe<p1+#sa<HKAZ-uBr)>kE8%M`WIGz7Gpr
z_AlVfg2FIgmpqAr8lHE3SmeWE#f%6U{5>C*_^{N6Wj-wTA?WBUd?@n4tL#eQDj!-E
z)MODRpOk>mFEk1Y4G~&TcPtxnxG54A9{jOJ)Q6Z4ab;6Jq<yd)&x8+2hgVwR&NzIH
z55?lEc_3FU!&H7)srP+YD{-B0qYvwS*dTtOppc2pU=ZRKAGUI|`|+?J9XDZ{55N0x
z-iHr-*zUs)A9niig%8Jk*yY1+9}fHQkq?b7diMBm$cI^zT;zMD>=W)69`NCy$cMsn
z1%-5D+ARN%efV5Dl_Mgb`0%L@&ssT0g`cshOWhOY+|bIoYpMH7ACCL*jSt_-|AY@G
zIYNB=XARe(c+M#f*F?@zE9a{>+ygFpzV?Ag<vSm~_u)q$ep0E)LtLj>Q6h)dAEcaN
zkT=}fw!N$BewKdLhhI3kRkWLZ&WB%p_)U5issG`_pPbhGxXF(TKK$jwKR#Ucfu|*P
zCVMXW>|0@%gntW}oj$@{@ugBOKd$%l+#|PyA8tQN`f-IHSNd_4AEo@*v$aN!A8$QS
zKmtEXOYsP)q=%O(BWtdZZe>Nv36CAE&?e?C??+W-ulA#YA9;S{`%%en9|Z+YsfvEk
zlf@~LRF<`hFe_G*=QWQ1wSHXZ@Tt#x*!Ua#sP0D%KWb`QsN5)0%a1}ow&vMBt=@3g
z7O&$db^V}7Ykfa%_M<hM;m0k0Oqy@sxoYA^13zx{<2FBT_v22#eY2~fpRd8@HS*&Q
zKak_uJ*<GYu;|R2UFFl2?((CtANP(ebNdue^NF6kJWo?Un)&UUV9ot#>F08BPYXYI
zL#%Z>PeFmFm7nJi1<c;sH8;{Nm#2{@%6RVf;~oa_qpct9cobai>EuUyKkoCR16wl1
z^H{~g-)DFxEY9bBut6_)I{I<HA0$kbW3C7Mc+k&}1{BPi;pyxL@6>hi<GBi+ht!{4
zg%c~<S1ynE@u(l)`SHCU-Tmm{$1p#h@uR07z1U_y`upvha=q0dynV;E_3<OJB)6}y
zpC5N$%z2Ex)YrxM1LQW?k0GqWZ{Ot`=*N?OJf#{3`RzM?>=U+XRM%YI4`eh3AF2&}
zTF53nKiKswTkA*0k77TD`!T|gcm4KlnUQ{s@?*LmGyE9s#~6uk2*>*Ik{{#!7^m#>
z!WV=r_#)dmt$>8-Wj|i=W1>tGgs#=@S4CbEP7+RbOe``*oaA*s5<UNo^QOe99E2j%
z93S4vnJNCZaF%ekaE_31=JF8R?Amy*-JW?8=lik1vA*NSLWhsM(zD2q#oU{IEb$}E
zZueuUAItnO<g;Ap6Rz-Mr5~%ry+Xz>5?NHyzNNgcVxeEzfMb0`x4eSNhJ>acuS<+N
zJ_(VSFfOz>_>a38kSQr8B}@y)_rPin8$Ukv<ES6+`?1!KeKM^RZsF1A$9nM%!i~aB
zLdM+8p|aY(r^mF-kDby#aID)!cKC6A)4zA#c1hVS+~dbyk&CVD8+}asl|A6cK|eke
zKP3EEcv$$6@PTGEkBEHY$2r~B`*H_9lfpPBL_YW93r9I7@}=;&pWn@P->aMOC#8Jl
z$0^72Yd^jb|JG5a4Xt(Bj~_Va1kfgcGk*NYi7|kJ0Dki0XFvbH%zhQ_tRKJlanX-U
zeqJ-$D+bT`@v9%dadIfiXFBi4@0|0u*x4-pA=9723&OvIyrD6Ai0f~^eP`pUfPLNi
zj~|!)a0O5zfPQOHPDtVwDH*^OBBg{7mKJ)1Il?l++yKgo99{<|2Dwt%XI!oo^GmVD
z@&UWvs{^PYk|(6ne7dV*0F?r`Ie=RNs2o6*0B&R_tjVn!z@e_F89=Q7?w{$Y7Qi(D
zTpO@|INHu|T^GRh0o)Kk^#E#Ub0~77n6l)<nXYSMIqZ|d0G`_n-t%F>+5yxFpss4K
zr&^wAWZ&(%N&LYz?)m{_Zxc1(!`}c}De`Rr+#bLk0o)nje;(yF4B+0u1tg6E=sVc;
z?F{?O?XG}bMZK-|K5DE+HVL3<0L=nu9ze?gHs0d7SkK);rbYEjb~uLCYf)6cBvZo;
z?&Y&xcL#7!07C<Kn(+f@8?f&w4GN$gM@0?K!vQ=JKzs4~gdKz(g><+-fKK8M2p@Fx
z&LUj`c*s$@igXh`Fu?t20Nn!^5CCt3u%mi#qa5B-UDr$4Ti8dq@+GcawEZ6wk~|(j
ze{q_aeZtWPiaaTN%JJb(!{7j>PVfv7e!ii?tEt>!0T9Or@C=>BKRlK5TmZuZ7!d&Z
zDB(!q(TassMh7rP*|EYGgyV$I3wJNfc~RsgVWvZAmU>xy&TJPse_JQAAA+bD#H#^J
z3Se>ouLV%gz)c3G1n_zQ9|iDn0B;2FW&p_mQfza;eq3b)cwSNFtpKJ4Fg<`70W1n&
zaR4&|m=(bM02Tx=n;o0)8N0(ZFMv7XbA=S&<{sJMBFQ=|%J&#i_dBvK)F5H0cST0;
zaE;vIdM|*L0hEg6(tnBEmIkmafaM&|Z@aT`R)}*1t_q+?WxW9eL@4@1{6Yq&LgXd{
zwILztrZ6mw2%`bS0*D7Nac!<8B_Yn@EK5uWkO^RyhHEhokN`%W$k`ddngHIHNS~Ky
z7OV|ma{yZcHeVOOdJ*ysJT#oyV3R~1k6A+NR++X*|3J81xI;P}SQm%WZdJ4=fV~0i
z6X&sWIDq})2OQ-fcfG?8iSYl_c=M2V5sw7$NdPATI2k~%n?0Wfu>D033GXN#<yH?U
z_$+|W1Nb6<V*z~0$huxTt`7NmrmOGQITPyH$NpCVoMQj1Lk$C8b5020?*RS@;M)Mc
z3*e6cT3@p7i+&%#xd47u_H+P0@FyUEA2|yt;92SY=i32)=273$p7ef^sbNb{|IKmu
zouk*vWz6#qS^7=^vwsF~A%MRExafFNWV+;JF9#6mU%*S$D-7_TRb2*37;qaXX`p8H
zGVKpn7`U!N&zbfhDP;f#TK<|-+CZLxd;=Z>IR?rY$Te`4f$|2*8YpLAO=I_!LOR#&
z=O(gvmRzj}6@*miNmGG=ic+pOP{}}L1Jw*%Bc+Ogsv`eIV5w`RFzj{4zhN1NS*9Bd
zRClcOtZCT0fT@;&ft_;;g*O_gEmB8VS4e9x=BjVtW&`UCtT%9rfd&R<8<=C@Rs**g
zXl0<af!huHx`3zXcNl2M&7A1rS$!je&s*&$-FF(e%RplTO$;<M(A>b0ik>wM+)WMp
z+?&qC7Hpw`e&s!UI9@iLyJJYfxr&8*zpBy3z}*J;Fny|ldkoymiVXX-zpa6G1_l^-
z!a#ci_ZfJ^z@r8_&}!g81Dy@rZ=jO_-$B;{+)X+5t@y6b<~6z^|NXIf6)F{WG4POq
zZU!DU?5Fm{59W0>xDqU{V4MAGIIv3|j~za~pUXd0G|+=>Gw_&!o(6gu=wqNSH)ltF
zhi$pN4XkQf`9f!VuN{5Cv-MEk=@U7qlK;4Y{@igpT-SGUcfB&N<+EjYiG;HG0}VWB
zV5EUj2A(o7$iOfI&lnhNV2FXC2A)>`Jo!Lgd}QA8Xdc79v^Dpt$MY{%%72zUW?;C1
z5eE3UKXWASff4q0G0nQ1mwCQyi@N!v4U94HqJftTj5RRM!1D%PVCVc@VREP3yvr3X
zl<_PdkjD!RUaYa;cmppRm|)-)!(N$CE!T5PrNVRN@}C@#SJ|C^qG$d@1Fy25`A%_j
z+kdiw*9`k|Z;FA}4ZQJXNnYi3u2i`H$$~f7uu6q*YPa&j=Pkp&Aev@ix&ijd3<EO_
z%+jdfq6l8^Fk0EJxd&hK%r)?~0l$HO2GTqOD|ysR^UOD}z`#2O78+P)fWL;kP<q$E
zQUf*K@+?xTQsX^~4G`ZmutbEMBZ^x`pXCNt$c<%JZO!EZ37Z%wGT`NLG0o#M>?=@i
z0vBm;Z}Q5^Fu?T^#Rh`x5RN?qVFO7<=H?iP8b}zRb4+2URw^vp!xI<h=2!-<J7$jr
zjyJY}m%TiQ(grf@lNANLGNs53=T@xdK#k?BG4Q^DwFdSzsCngh5097ml?pc)*l6Hq
z17{6vGO*deXWVuJTMTS9aG1^LmdiNXSc;9mnDc>w?Tj-vj~l`Z=N$%i@<<t5W|sk@
zQsHjl9s_%M;2$rb!bGy)zyZU)Ha}?aqeD2vY^6f(R<?m-gK^kS9-AK-_*gYYH{l33
ze-l0tern*TwwlV-ZWj;#FF30k_Lb~0178|Au8#dm2k!|3Ck-$rM=~$`xyMf_%M0+i
z(+j>a@U4OG4190kM*}~x|I2tz8~DM%8IGB89?zFGI0O7tsnAoIue}s-_Tc{NIn6VW
zGrxgzJi3D@9kjdRR|A*TC%+k7{9xZw;0Qc#;17*$w(U;?7dT%{@wE6L_toDj{Kc{T
zTZM}TF7enm@Q<=ovSiKsTvcgbt(OSG9Yjg-D}pE$1n*J2T%{(ropE>=vU#4M-RufM
z<OPuvM42FRgD4wB`5>+iqFfMH($pST1#!4jF4yO<pXU}8G`zj$r%Nhx$8kil^Vvn@
zY-fJZp5@qhVx=G|2k}=B7lWu0MAaZJ$XYFkYl3(wi19&O8^m=%JRHO$L0lii4ME%$
zMB^Z;2T>!4_nK;@LC}6AT|0<6BDI1j6uD7I(@%|Ebsc_75cM2>QxNqXesd7nb%PCp
zxK-k9K{Rr#w+GQsJiES;G4D|J&LFrnj;ToyO@n9~L_6utf@tNGZ5~96puNzsrSN29
z7de+5ww6PiAnq2qM|iKWofajsmi9qB5X6H)+$X(*u%qyPA$>ZrQu%idqKibfhx$X}
z-Gp6*tolQl9#yti5WR!wE>8a*B0Ytj6|hebPta$b-MxK9`UUZr2*t-m`U?jHF=M!W
zRW(rACxdt@h(Y3`f*2jdVDTYBx(yY1I*4J8@=OrVia+Nl!$n32M+z%%ca3qZ&x?!|
zjuWy0FF4j09p&X9CInF&#Ofek31VUp%Y#_KGk<O7Ye7s2Vv^GXlY`j434PtJ*MoQ?
zi1|S*;Gq%3R5{G#eq3I_u6Rq?X~OBk8A6(BtKViRJ3ELuLCg)}ZDr>PZ<IsU?HwLj
zZ@QV5$h1)SZV-z^77O3wAQ!2$)UJA|_%h*#-3wL*u_}m25K$>bL6{=+^akM*_XiOO
z!U&@1R8COJig|AGkmJb}n_=;8TDlnvA|6C1mpz2IR?`Y1A?wh;JdX`=CB;+1v@j#g
zHg8SPem>6hvBdX-SSzwFi1k5i2x4Op2c&EYVsj8Xg4h|vmLR;_a<>KXfyh?j#)B@3
z+vU7joVZJ-JwfaZV)y^J(Q{uA`{hhd&uo!{Qa%jgkem+-KVsERKyKraAU+A=Qyzw!
z?NwO625~fq&w}_oh%bUTqb)k-Y}fZed?|ihc*4<72Jw~nDdE?S{*B1DL44;ZT?6*d
z=xH8Vd?$jF+YA@G>qljO68;>-*&u!i;+(8>V|wAKT1+Ht@Ne8fBiz4h)6NV32;xr>
zTDfSMziymenJxwKcM$(*QssjcrprMz51~Z}t`JIu;0~c=2$eUZPKf`AZQp>Z7(%5G
zN`-(BN{8SHAwPtI5OP8&6SDVgxe#(gC>ye;g)XyPylL~zK^GHy@5&Ia3fXt1%7;)P
zq}wt@`B#U~I_9RBC*}7oZf3b5v;Xw)jtWav4%v4Vt_|V35UPaucN?e{vN!pfknO`e
zEt|i|X`Ww`p4W%$`z?hb+!(?QidJ1^YlKiUWZ%QtI@47vWZxO%T^(j?RkrVV*A8Lo
z=mNHuwbTuvo{HQQ!tEh6455AqH-~Ub$i81hhg(G&gzTGCRBn?qbrxr~k+OG%aEGJc
zDZ;ij7HQ(>O+}i8aALii#ao8#&hHaK-w;}{Lqcf7_Dg&ygnQV}+wIg*<X-lnqqGxg
zFT5{=4kE{s|K5?lKg9nz`nT)@A`c2XhtNf2%Z}V~`}0|KSJl-mgoi~Q3E@$Z?jc??
z*60;Nj}UsYwPQ<V$I0tMZPHs-@_r#a7UKJWcr%2@L+G#Iqe2)U!j=!^E)yT<C{Kz!
zB^(sOU`HP!vUt9|2~Ud;3*i}&XNAv&FkEDWaHMefv3$FhZT7~F4q;3PV?!7x6O~CJ
zJRjnR;B4!Q!dF6gDTMJMysYe{SKSjt&Uek-zutD67{aTLHEW_cIm9oh*w!h+*M&nW
z+c(muhWL@j+_yuRC-RnXS_socW`r=4`*CURtPtjk%no5r2w$vovlR6#Dc<Coub2$D
zG=v4>?+6z<`nw@45?|~n?}e~LyzVOd4*W9l<-!$?&q@v|-NW~W;0s|-5_^;IhY$#1
zc^oU^_DPpP9>IzTf+2)LFhdCQ7>~dcK_rAIkM1yD3nLanoX1xf)x)qtNYKr+pOPm-
zNb$foQO-m<gbcSXgkvEThp;+?Lm~7sbJqyBg!sXBydT0^W!HtUQDl7x8#pr8W6pM0
z!IUy*_PaJo-z<F2%w>daA$$<R-VpXl+#bR%ksU%h><nSuCfk!~x5Pc%_GNZ<zvFWt
zWDgZ82OZ@@kw3TKu*gRtd>q1&5I*6gC*{)+j*5IPWK0(SOvvEb?3W=N=k5;Srw~Rh
z$UPzaI)sxVUkOhMY29VHzX{=6Wxo@i4&i&py2Nt-5W*Q{4<B&R|M&sd&mo)*;bI7v
zLii<wbF%&^{8jk7@HaMFMOf;52!F6wciHXnTkZ>TApeUq_CY)B-%?7O@R;}~gv-jh
zO#IptFzr$$Ot?kJOPaXC;iXKlkrbI&U5=yYnkXY)QSoVQ&>2^nxXQ#t6R(;mZ{lhb
z514q+L<JLhCK{S(WFp^0fr%SU)HYGkL?si~n7CF$>#csS$|kCqsA{5`31+`&QS+^B
z*wL&e6UlWZt~YUmiRvb%^mEaH;*?#eLFa9#X`+@&k#nGyZ*CVUbd)+K>YAu;;$|uJ
zROBXMHVzLQ#=ONu0~5D8?YWI)Y{Bg&MhvZGhaFqMM1F^fJ5AhU;$9PXnP_aHrHNK@
zYht3AiRR)>oq}8UxteUqZK1Fv48_#iL>o1Ltu43MP33NrpDijRX=|dLiTmZ>KHJD`
z=wRYL6WKl?vb7y$x_NyrQz!KaLv=RM#l%n(Pn&qiL{}4iO!PI;&BVhddYI^`Qp@hH
z`G|=}O_1DGY_E6fuIg47)nMu+-rM9_?iw^Pv6uRpc+A8=6Hl6W+(ds9157L&SBovl
zI&AD=dp@DE)R~?#F+|xxCI-uST$`FqS$`HBX5twWqfLxqUzKz{Yht*X_ne6z2G<&N
zw~ZrAj8t|MP1@-c8DXr6aqKY@FFM=)yvk;Szhq*(i3uiNk@)iejG1}mJXxQ@d+d4s
zLd%+yOw2Yh$HZh4uhG-Q>n3KH*xem(sQqu6m};W+69pG$y6rZYNZya>CZ@3s+M%N#
zE6DZ(BhOSjXPMaAye5~l%{B2hcgom;fQfk~=9^eyVx@@%Cf+fz*u;A#y0@sg(8MA&
zwfcmDcR9!>6mTSPz%$?y6H7&wnFx$6cyMJYnpoX(6Q64b5t&x0xX(n9iCJxGQt>(t
zeiJ!Q+nvV78zzGC44E($meIJhDciRZ6HyZ}6LHQDCVn$vnMj!U$i&CoY7;5$%C<H4
zaQ-)uF|mc4X`+}z#l$)j>rJdNaq_W(_npYT#|qY}LnyKV?Zy>s;3gZnn@nsJp~41i
zHc@lC4rD(3HSq!WT|8%}$^V_iGn@gqm-o2NF0v03F6kuhQcMQi&0WyOKG^q~*k@wD
zi327+)CMNT)tbG^c0Q=a92#2dkaUv6CWtg0G4Y9s(;Q$XJ~eUF#4!_Jn)pmbKId+V
z*p+5??iU(Gljav3H*vzm_r<y2$n7N2#3^SSX8pf5xwO6pIq_Q)-_c*SV~>jknP@s=
z;zx;Rg{Sx6Cyu>f?#~L#EbIM6CQfwc7=M@DMcnG&Ib(-WGK}*k{xI>U{4aBc=Xf^p
zmx+s<D_Yj9KCs|#kxQJDPgSAvk36X}2$L&}5@EX(_dc^7i*v6CqkI@whfyjFgi)H-
zF#psTxnbUD&0V$IcFPId{@k<VWy!bUN|riRrJRu2tHOACpuJm(6~f31+XJ;~82Qqx
zgzc&e#48Fb2`dX(He0Yt)LueaEsSfzxK>42>5uDkuam>|LiSG$nHq(0M;JB3s1-(`
zlv{*13Tq1)t&T|DFzSiiB&;vIIgDwo?5T;^K+3Jc+l16_52K;OpDHeSXBc;d@mLs-
zhtW8UCNlL3qiGn;!sz07HW#@sj20p-!)PVaI*fZo+6eC!mRnWoo-l~4j;U=J?WB{p
z7x_*rayx|4F^v1e=p^w0$LH`q*Mko497ekGzbktmlGrtjZecte#v_i;qhVy%qcVQ?
zFnTz8PwpxGDD-xeJ|ca?=qJ)nE4^8&e;DJ!cs`5)VLTDWz%ZT+<5~GUB^)XoB&7df
zks)Dlod&Z^PfHmV=89Q6%hXBR_*@vn9c4rqBON{}jL{As6UJEaM@QL{8`BHQP6*>g
z$LA%H@xqtG$S%5m#j#Elc~v-xrL@{}N*J$)u`!HIVZ0H>n_(0={!_!49mX7G-x5v>
zW4g!;;Y{JIFnI8?J#AN(nk!{N81IDfw)i~Zd?A0z>9$aOaTxE3yc@<M5iUBVb%{91
za*?INWx|)5xK=pUl_INn%=WZPdBgC9;g=W=BO($Ab2+YU4GKv@B4!xTZLat>S5(;)
z2M@0T#N&>qC6WjuDY9HEco`uR#`}&>vB+xSnlQ4%l|E~wtP`#mZV+-VrFC-{Cz%an
zi^Q#AY!mq)jQwF85Z^A`5ys9ic7^TPdv_Rn!`K(bo-m)#6;L5^x<2(p!Ev36F!I4L
zJ__SwmHm*rHJE!SjKd=2%l5gBgz-rjUxaZij8EnEnUL0_a(n4SNyhnHVrTI$#ZL&2
zXL;p9{x;F=l(HAYxD>|MVSE$Dx9kMY($eYheHdpPep=)Q;p`@^AH(=5jGvV~Cp;_U
z>B=u*WKUXt4dXY7zw-#yx@E@vdZa!0{|MtxnaD4Q{N;F3`CGhX1phcbm&0&H?2%AH
z=oVJfp?8INDdC2@Ya#+7J#!-V)6c3AR1+x^L2d+PBPbWamBeYDF0<_0`&UI!A%eUJ
z%17)cCY`rcx;ldUezzZg=SOgMBl>pCo&91dk^*HbMo=k&y06<x<p`=s?BOrX>@^Ww
z8^JKO<hls1kDxt6MQ}p|)g!nif(8+MIL}=pg2D)HjM%q~YDQ2if-_&`FqxZCJ7O<P
zs>ApZ`)1TzkDy)zH_4L@^&QWfMfS~e(}8$v1h+-dJc1Sx+#W&0h<&H)jtK6mW8b!F
zq~dfVzmsAFjU)E0p*hW5O=QZtHI1N|bXLThW-VoE!)8R#DuRzjd0MMdHjfVX$df_Z
zs;+w@s4=z_P3<Cfd)|D+_URBo#|U~x&?|!b)hFC34@J;P`~gRKP^7c4O9YQjs!TVg
zt`T%|d>)SA5%EWb-Gx1bljqupWbX+2C_6ZUz9LTuY3e8PSOkwdO8*E3h?f{)mmTQn
zPl`Mx927zJ@S(#HDMN)%3;BccOa#xe6CxNM!HfuIMld3Rk+Qxj92LRyB8)IvWQ=gE
zaGbE?HrERgycoet%F^?d2*!)QES%uzzwg3Chx0stlEWv9ye6C?d|mj4@XZLOiZJq9
zBGV$6F49l0qEMd|;Yp+2;Y_n5nB(xd5xnj2c_Q;8a4)mx4W@S@SQx>(5iE*ev8+pl
z??rG-FAC9TiInX0zRck(BUlx|pHW<hq9_6{w>^sSQTQV8N3c7BJrM*V_A6;jn<6m8
zgTj!|j36u$i6AXP&u9d(2;vb~5hNl=Mv#i2^_)`k?<jGkS2^O%{R_IxbTf6E>CQw@
z9KmW%3lXf3fTs5&SSzwF0{T$-&!5>15p3jWoatsoS$(tW-6GuTv|*db2g2>b9m1Uv
z>=G$!<}$)w9wVFqqPQ`N{SkY$#(@Y9YDOaGGsh1(9YyU&sE0Tk@X(9k;|Ts>r$uli
zf=?ni6~WgLl<HaVX#}4~@I?eiBbc`?_cLzt6ZVj<*%QYi_%edy5uAwFHzla^1bE^T
z1t%l+HQ-kf`>d4{!b81XK9O%C_?BW5*VzcZi-0GtKk#^u;Ct@qakY2`ewvfmK>HTx
zkG%iJFF!=^GuyEE-xanml=Ebox_Y&$`AY=nw6A}S;CB&<zlnS>sMdLhu=WcP{1rh?
z)E-V3Be)bni74Dr{4F0kxT5$+?Y!)iq9+qC3V0%2GKx}BAd1QTTvtTxZK)o2l~y!Q
z)ZRL_htAwUo`;u-A~$MZrIwB2swm1wQ7(!rrJQVDlPRwau8!JQofQ;;1<Bc9R-GS3
zK@=6Es1&sq$<&PEw!W^)QB+m7O4MF~K!pvc7R5DDTr2(hC~k=2I&oTAu(}#qLkgX_
zDuaonmZQ+EwtQ}hqCpgOqNp21y{LVYKeWMK2{Uw>=ccHQ^`qdTl$)a%w6tKv2+yr-
zQWW<@ac|WA3A;Ut#!>r$d&4NWB7#bzC?2R@=8h;l?ep%8;x480de*?_+D)Qp8bz}x
znn#hh74?3!UzlwXMaw99ZgRDXqD>TcN6}i=dv3|0&zZ%!B(#$A(R^FBCyJ+{XctBM
zDDI1*Llloh@n{qsqqskc&QWxUq7$1D#e?k68Xl&<7P)2)&im(^9P;aj<v%3-VQz9C
zSECALx<)aevAdf(q<oda)7$ds);)?IQS^zTuk@Z#^opW4Cy-{YnZxX#>}`QO{vDNf
zSbo1K9%BT$MR8|E&*M?_SCQvju32l*ue*D4B!8exd^>;+S9h`Z#h|FYtb%ED6oaD}
zq9Q{jJ{QH)Q4EvvjPO|wDz_`U=z=&riV@OBMlni7{<AVN`IsoiMlmjm=c9N*o-aCX
zT(-ePA9}tV#e^u<N3kJ_SE860wV$9Rg|9|2BZ`?(Oj4HmWRcf|Q=)i1iZ{gH<RRer
zOpSt{HMnk;XBr6|`ns}-3M0&lVnGz|L@`_bbA)q+Zwu#fyME4LnlCcwkZU2wd=#dv
zi=tQ@g<qV}-iu;+6f2ZnB3vq5CgfKIR*Dn}R|)_7j)9lI0{^cPP}YbdD8l$5?ic5~
z2jM6p?7%2uvc?^s?1z0UWfR;qeKRWMSkqBtq9~4HwWGWr#TxPK_afFtu}<0S$COwp
z)5a){MDa-!o1)k(>y{`!)=u0S#kMFuh}uu_cF9DtUD+MNokBkA-yOvs@x44eqc|AF
zK4td{`C%ni^r85nC=PQnEa_sXkED<=LRR6EZjKW=e;UP!C{C)<qr%UGp9{Yb9*g2j
z5&9n&DLvS(=qvHFQJjk6Yw>S{KM22#;yV#~elK!b$S-}Jar7TWeiHs11wVyBXQp4G
z_LmdRMe(alzX^Yj;(Qd@s{fEubEob9R}>ec7#YK;7%p-0=WG+h-7)+V#pNif#85Q`
zR}3X$C>uk$7~C=R=;g|d*$;M0#&AW<p7~3~;E}>V++w!0kYv~zdzoC0vSniSlWS%}
z_3RI1?V9PjGKQ;Ts37ZAF_c#XI?#<%?yAGCyqG=r<_imi6@`_AG*uQk*~?WehHGM|
zAH&TtT&p-WVyG!{T@2T&iW{6(Rd-s#X4KLjhTW)*%2rKesvSce$G@&fy%=s1`D>JC
zk2d5MWgEuO!126Q<Tl~$LiSao819JS&KT~Bp=k`wVrVQAUqE0*O~m;cLbl%K%C;1?
zh=DpI(9}vwYat8X6T`jS_84xg<8B*6yBHpe;qe&S$L#Z&PBD8y-F-21unD-5DlsGf
z{+Rtk$z^{0J+jxf#qeMZonz<{vwySt#qdxJU1R7OL$8=U19ublh~eQF9ua>uhVHTd
zJLPh=<ed56^xHdzK61;7)cbP(%7MReT%X3p@cm=<!my`f7{CpQ*-Ih^#_(hePl@v#
zH>N@C`A)gFKWxA9HaKSE5aCdcy@k2V4r7oHa`|KZ40~R`;LpV{Jcbbp&eOK+Ssa6p
zj$sTtKaM-&7#qX57;@rxZ6ltK;e{CX#jrny7h`xShUGD=P~VP^VO@34{1{%2VL}YA
zNSqwQYa$b4cvWPQu+#$knr=!Aug5SWhM6(EA$@8LZ^f{zw);(G->dB=pBBS(WmzP5
zfqOx1yX>qOX2(DW@;Ncgjp6MW=EbnFkBdH8WG&gmA`8?!w(y-87IKHiuqcMbF)Wq-
z9{0`y_Y!fEwd*U`MQXe0zbuAqc4Z8!V%QwRmKcg+@W$Ya!LK6O&0(d17z`<^V+h6&
ziXo}28AF)6IEI*7NdHI-|CNfzV8xJ-!XVtDEV6czR1E1DGAdXsA8s|9l(nvj;eED{
zwZyQ2J~6C!`ifomU#LwIvkHrERjYOiw+R{TgBZ3ue1|%OBGWF3yJOhnSoezLv~lq*
z*8?#eiQ$tN4st&p&tdv7hC||qg&zq&=0SIp=h$8s@zWTN#_&fBf5z}x44=pFeGI30
z_?Wq0a45!bQv8_kOW|?usqHR0e5LF++zWec|5M6-Eu_P@BHyvA<;-W_Kg4h*hF_)s
zC}gR#B0t6Ov!i66S^uK2=VJCl^K69QV))(hIWNLmF2t~FtfzF`zPIofXU-C3E(%F5
z#qhVo|B2zUxGQe^ln}awC505Ph@+G^9EJBHJaPNSh&LjLW#Y(<qih^qFXeE_P^OHh
zTpU-%aaG)2K~y1*ytqB<mKR<vtW(#WA4fqPH5ez3ig8qmqgou-#8Ekp=EDoBIOI%;
zJZ7s(tTVjSwIcMnK91|+=r+6*t(V_%-w@{&3h2P>&B9u76vojYj$7lnF^<}C+!ROs
zY#d=-CuThne3fID6~9HuEGx>!B)=_=hK_!_2u+O~LWjHJXdK7ual8>nlQ^2jQM$6{
zMPaiz9*m<io#SZ1CY{J>8OObGw2h;cvQ%2f(MJ4kN4ZCY@9DR5l#U|p<G9aJI>f<O
zS6H0seu<rg4+w`$b9YgPv;X_Y@sM~|VYfIQj^mLy9*v_<9DU>H9!HNjdd1N@4qwNT
zg>RN->dBp6r7+9ie#AanY3dipV{tsLIRA<C$?^fz<7ijc&C{xZaXcBvQ*jK6V`Lno
z;usvq5VkpvXSsvkEIl-ir{fr=8d?0mAlU{y7sv28M#MoAmH&`#qvIH(2;+oV>sZJ0
z`8Zy1^lYe?;us&t%W?aaI$l*xP`{DC5{Ge<XJQ<$#xW_5yQ>tw7RQu0CTr_fpULm_
zxO-&xGPQQw7j9h7|7ILh<Cqu6{5al<V;Vb6KjK%t>X{z5&wu8!?0U?IW2VR~A(h#2
z%yBqBC`9FLcETvnjrZBTx`10+rSQEt-id=p&_dz6LS`4mu~_`ir%N%rgq?XJXQ^<R
z@RKnmsjQ4+6^}a$<t-Fxkq_7T#N+Ua`{MAc0Rdr{8!i%Lv*R$;7`BHE<LMbmMAoQ~
zVoZd;^^9r7k%%K1M=FkV9Ph{NuU=$0BrfJKtr01XV|CoVOU#R9UZHa}J5LYR#<4Dr
z^>J*7!(-WJ^&8{Z6vsbtT#jRN99!c2mpyzD$JRKu#c?o>593&SBIg6)o;bG0u_KP1
zaqNm?cN`0***`|aZByJ?WOi>H`{chrjsx0{v{KI^qaBLlV;-Sp%O7^EA33DYf&3$J
zd=kf}aU50pOt`R$y?T&|<X9YE#_>ZOXH@EV9ACw8DvlG%o)jKfT8hqJ$HABMzlr19
zIIMA=7QOPmi{tw^PR9|yxhB)##ifXY7TeC`KgRJ>9Dl_z!<YMW9B1SBEso#g_(jUO
zIDTdD(>a6vZl)}u=lMAPki!KYUw${0Kb0j}(7jAnA-@>MB}f08<G(@~iaST-yDXHl
z>=Uz5ODdPJ>}_;gC@DgIg~$yt*O}2CSoU3-(iZrtLZ(V#j`m;~VXm;Okh`^<g)7BV
zGwpfcY6}%CJdnhLN#t3`xA0*ChZ1~q4HYdso<RQuDp{yZ6U79oSg2~DorU%ms<F~B
zweGO^O;=pwwCY+5*IBsU!VMOxvmy)iE!413lN)03pFmx;EEHO}(L!wt+t=h$A-3G>
zV)~ENwNTGOR>_JtTe!u-Z5D2~&_D&*1GmbDgee=Rp@l|HSc=)OcUfp`p{)ge>!XQ<
zru4b!X>Qry{b(kfHpIp6fiT;G0WGwW1AXomX>Fm6Wq)sk3coZ$yhr-ILVm7fRopIn
zpM?$<MpzhWp`(T9h*G^R^s#Wig-+~Y3lCZ_CwU%GM|HN))xtx~T;Jz=x{z2P>8>nE
zH~Bm)q{t)mQ48HI^sq4RK$(A*yL!shOW1pcy@a^0Wxu@k+N#_E7C3VHarb>z;W6$(
z3m4pFnEHz}8DHuN3j-}YY1yw9a`El67M>Dkc94a^;zNW(g-<)yVIt31_-=QFY}w~5
z45zpr&p%s09A#m&g&k~wg)tV!T3Bgem4$H@p0_aF!VC*9Sa^{|EWBpnB@5#%OtA0@
zhtoQ|Y+<v@wP2Z>iP?$DzG`8T1u9t+brPm27GAe7)xukHd&9z;A~bQoXMISfsf)5A
zgUqxr%fh=B7Fn2WVGbi(c*nwA3vaV;EzEcPvu$8?SwduDz=di|HoMrudlr^jSf=(b
zk?DVnkT18eLe~G{6j|_ESZiUO1)l}Kg_wo7g@6TvBg8`3LeN6UDaFQTt0rN<i1etl
zvDvVeg@lD-3#%<8Eu<`@Eo9`wHZ%PfAsdZx)@V!Lmk+JkIO{EJ;Nc?^m5sDo*rMzv
zZ5=~xRRgwJ_`vBaM*H7JvfwTYyDj``;WrC=EbO&#)WT;L_F33(;UfzltLy>A{LsQd
zWf`1t4p}(t)Ro<2#y?`=Q`P&4Fso<V{JDiMI3{@nSvY3lOAB9FIA!6uVxF*Y@_+UV
zi!ibH*V^!JEPU(q67_6HvAWY1ez5S9g`X{)vGAiR%~r><S#s9GFVfHbfAJaNcMIn&
z<Rnlgfj=z#X`w^{?gTDa_{+lI7XGntQN`(e$?3^#16T#gWecvvzr&9TQ^^FbNT77W
zK3Gc0goM3wv;O}Pk4((wCQw!mS0+$SgkpB{Nv=wud;(WXuaH2V$bX%XjaHG9e*!lp
z>}Ma96ZTaD$+i3yNZ3~yRfW}r%wChgHhov0KG!91eF8VAV0Gb*!WzPw!dk*YAs2hs
z7Gc>sB6WrJ5;)e({#r==1a3~?mIN9kaIZ|a3Y#X-EP>m^Z%?41NTUSqOyDl@JB0PM
zB)f3}O_b$QQZ8l8ex|s&6jsq%q(uTP9i>&`-__b}9OZ72dlH!3#qN`~3AE$xNZ`H%
zx+U;%0v+VgDS-zP=;)NXUvaVvzaLDXa{^tQ$PdY<t1#=pu-Ok6KaxN%>5nGRU8IMw
zr{kP;>zzQK1o|e>FM-Eo`t?=!`Gxi)Dh4Dc8Ni*Ju%9BWNnl_CPbM%kfmsPWmB63`
zMkg>v*1^JO6Br^gRLD|KiwsNP8Ii_O`+4Ydj&-=mhy+H8jB<3B&t4)mHi3zbGA@DV
z6L=wk7p1%`d`UQ7I7{nQCWy1_D+#QeYS;B@0+ZP1(%%xk=J-rW;B|+;k-(ecQ-xzr
zR$*DDX$ef1GQ;tlw9`F1fjJ3;5-=ss6)sHRZIOA7=X@Sb4u6OKT2=LK0*ew@oWOfB
ztx8~t$a2SXsmQVfxZH~kSfT7n;bLuLk+?SjpNL;*2m{0__NuU;vXiuQBrHxbnLtE5
z>L{@U;tsbGNI1OjxLPTPrxVDC7dy)81b*secMjA039L<ET>|SJ>z)KQB(PE0O$lrl
z+3Z-iB(T-t+eAJP*5BgZ;pjUP*d@N(QQF*VFHqT=z&=OWpTGg}gO0+XbvS{K5~!23
zuTVZt;0PzNB+4c6NrGQv!>^9#QIV4geC8;hi+sTuL*z^0ap4IeYhU_q?pFz%O5kfp
z`9b8H1ilsdPWZj>wD57i{c!n=ILVLfH}Rhx<*djr!gK62eIfI=1b$E8yu?yTyOaM&
z;7`u~3H+5nNhued2(Bb9iFaF{`*#BWh+pQEvOYJvim!zH8N{8m*W7Xq*cDQGYji=p
zwBzFu$q|+j<_i1HFSwFDIn8rb5}PmD>#KP`jih`M^)7j?PND)Y0g}j1q9BRtNz_Q9
zqCBf5aZM7HlBk?S6)7xLHHj&gJiZ|=^2ZL_c&(J{lVJ8b$4Y)f5_F?;O^Jnyz-%qY
zhx|tI+Ky6}O-kaXB<d$|chWvxzgftS^4*cdElK;kd<~LVtgrChngl=Vcbgn;Pokkn
zqby$Z<o!~C);p89D~ZNQo~`9HNuq_UO_OLQCHq;w<_>QuYpWz$i%gs3YU7yflm8^{
zO`>g*7h*a0C+&-fc5-W<<TZW{(|t*FaCpZgPCQi5`eaEK?3A=WRLJXy&PhDJ*VUbP
zF{ew?K7VF<NTjQ<oA6=bBS}0eLZ9uY3VI~bGl^bF^iCq4gq1{}B>E;XHHo*9=*P}a
zVp7unb$&dF{z;4%XLdjm&nEF)5>F&CFo`FVcq)mfWgR3O;&={DBKui#mKvJ;zh5jL
zmc%pi$y$deF(QfQrHpjSju9D^#Arv!I*(O$oG|+d^cTcm6u#ut^0KlMgs%uE3fYoZ
z9Ut<^NxUX~itu&E=M9lJlgR!x&opIMB(XAy=}F8;VrCMvBrZ&1w#WkEoFwKZ@wWIp
zVYZR;#aSb_;+_A|-%VnXveXwR@m>;39M5GOD&qX?41+K&SAUYMl5QjsOrl8KEA$Ed
z!hkUQFgGL~6Pm)XknM?xM4c_oww8J#iPfArWlaiG!n80WEKZ`-M%Up5x$i5>_l0*S
zu{McyNvxOhfpCLxV-lN^_S59eNo*C_BFsKt=2Piy%93oCKijZFWT$Xf^4}-dtc4ew
z`;yqtIiwg>i*X={gGqdt#-TJm<RQ#yCxwbB`&kuVX*`_7M@f8~#E~S*rcf@0Pk7WP
zagtLR4}r<<qnbvRYX12wiSrjdpC|E!$T8uULh8qP42r*b*v0Jd!>&_FT#>TpK&G#g
z_$G;OllU%)?~}Nkge!&9++~`JE+%n?122i+lK4G|pOW}FiE}b>);gQSFAnEKM}-sJ
zubKd}+4Hhq5dM+GpCa_hTK`g(ZD95iccrrbs5nDqqm@Y6(`=R#-6@p(AElJG0x3Lo
z$x~YB5#|WX2x-a{8LV0Q$`s0{aJ33vCA=x_t{{>x%oDOz<G1J1L{ce*$|*daLjRQg
z_HLCF>ZDMYF^9OSrcf<q&o<YjaIMI7!W)Fwr;z<Wtm?|rtwxrlP%DMP6u21U#uRFc
zaJ2?kXk^!H)Jx%}6z)r*gZ%5KaAyj4iQg=|C4~kl+$w%s%6`wfq4@1Wu3=zZjZ*eY
z)_2ItY-5>Pq|h>jCgK#ErqImc%|)`yAzF#IO`)|&8^`Bvk$Z&qrtqAzDx+Nr?HwOZ
zJ{`roI?DYborDjh@SsR%$J#~YA>n&LbQ5_vg-23&)bZ(^LU-{V!k)rj!vFr!sZR=h
zrSubW>mG9)2Bh#r3I%CYOk-dQPjU#Q@H+Qk3WHL3K4qVu3>FR-4iOF&J}n$3q}wwo
zJS$%GM8R_@5Gjt3GEz87I9f>4m=wl3d|V0>=KQ;s@`V&$bo7@}7@xw+%1#izDttva
zQTWt0*Cdh2DZD1KVxOy&R=d5C!ka0iQ^=$+Ri@b~%t_%bakgPv3ez1vLu6(OvmE7;
z-#s^lw^J}u2uhqMT+Y#(!h#guQT9E@f1${`!bK@8cJwiwuta>Rqbw5{@uGdMwIYR;
zDXfxGB=n`=75T(jrSDH6Af>0i=N}S}2~A;G7!gK=+3S(GIBT&|NH{zxk`nTxoy94v
zPGN5f`%+lr_-s$%eety^tP@!;+$`LX!bXuzLdKuzt+B=7TSc~|aBgI+4}^5sA#ta0
zm*crxWRH;R68Cc&5igm>!4y8^e4D}#DIAh`EQK#qIGn;qDSVv5krY0Y&fuS<aMa<S
zid?%imx(5(&r|rqu~r^a>o|W(QuxMEPNs0m;a`b-v(){yL$VRRP2oE!-wWT@pAno%
z;l~vINa0V3KM8+L;b)PvLKgppJ>c+`#ks#Z{CAP_DcqoQ^$U*vcM5-rUld*v{;uo3
ze;l97DY(-1rZJTeaSPw^=3bFTDRHEcn?~6*N~hsT<9J(Ksfu!BEhEehs&Z*uoksb6
zt}7*8C1m9CB1XpU#tPzjY2-WBr(4#nlt$$=dZp1jjVjU`q;YE+Rnw@Z>@~u=!fVsG
zPK42}7r7yg>S@$Sqo%S4bwyuGyij<fkp8vPs3ZQ|1bbFts;BHtY19|FS$Int4{x`v
z{1c7a(zrd12c%PJm`2kynx)Z5${oTx)3{5daT*O5|2zLQk<wtXyLlQd(zs7qMrfJF
zJ>sn#rF9x@9Da8iv-HvsJ?~AUt@L(|wS5}vWbNQ69n-j9ypzyV)xNHOFpbV>bdmCi
z@F8JWVK*V&9!?|s#>%6P(p{uS8a+jJkE`YBi9TucO=E5vZ>P~OjmOe>C2ijod_0Z*
zX*`$4@H7TE5uT<=d|(<+iaeFZ5XU-5WU#R8$tpudZtIRRO<ltrpJzm#6@I$UH9};J
zaHMdQknJBW!hJN>QO1cpFMJ`57ajd2k@3Qpg%dc6+G!Un`)V4K(wHnhL-?9-itu$I
zYkWiG%`~Pu%3Enn6QAxVJGWt`_$)`6oyMI1@tK#lzh|;Ajd#<S&!5X1JPU**?}$tv
z?D~FNg+*zsN#p%A7N_xE8cWhxnue7|B8_Efe6hAdC=D}><>D)Z6jzF@5*7))LSGtw
z5&8tuFvNq7!gU?tG$Lulq(mJ(OSlpvE`@}}lWC-s%?N2q|BrvM_-Y}Gv&dQw+BEj0
zF{)ERosC#8vNeqjA{*1#l*VT9EkbjWo1R(Rmc|EZZ0BLSk<Yf=yF_-Ru~UR%e$~R=
z4yVIjMcBulndGK*e;NlI>p>o6RSPK|PUE9A9?YO~1|O$!B#l4P_%r?Q3P#=(`Xr4{
z(>R*OXK8$%#*Z8u{P<fM$I|#AZGXe_OCibEoDb7Dq3lT^zt73^RT`(bzuqaxi`Xm7
z>G@3>-#Vqf)8X^I@O1W2n(wC1896*Y-~ChC{ufK8pGD3Je-WNb<JUBP6aQU!UO0SC
zDf$yHr12ML!nLTFv9J0sieFCSQX2fkZndeNzd6?x<^IDlaFgf$Sp}{PN@Q$*x3EkG
zB}J|fQZFTf3`%F<$)I4PD<^|$`g&Csb2BI_pK=*ga7ta7!Byhr9p!43Wsy87`Ho)T
zM5`pFat2jIs%B6<gBs%1gx3hK&EPtb>xDOD>>CLGUY}-AOX7VQ6pGv_yfK5?8Pv(3
zZU($+zCD9_8QhdXgA8t!L;VbH&fpetUU4&JFRqD9x2aTCBsNsGQ3iLY>i<0N%Aj!u
zO)_YjLF)|K$gNohEiz~+-aKPp=Ci3R(n@97z1i&D8Qi1V+d2BZ8MJlk%~nn4_KLvb
z<Q?SSQFy<wQw9%+(8?mb$nBEBk_?t+@K6R_Gw7DV!x_As!34QIlEL5%hKN6!L3fcJ
z8T1tCl|erdM(ZuoN7z@$HRq3I@OTFOGxo*%6B!K5V1PKYv_6@^Q_2p?*ngRqy`29K
z8FQ%OjL6_=kzvATgwG0}6Al+<SErB6V3e|>Gk9KvamI*@&0w6Pu(}t-Uv!k0G8iwO
zjq^$d6Ek>M%BvYn%3!YJIXQ!=8N8+JYZ**&^w&k+$ly&!$zB6a%V371OwZWYgKQGh
zOo_8HnC)2Sh-9z+-p*j2vhy=oAo5NI8@J`sx=@61m}Q(r87y`pyeCqAgnL;A%f<iB
zU_}NiGe~BT%3xK-zPVA9fj48X!X@W=Ctt>1^%Tm$FG3#3z{uF2s6Fq_3vvKdEu2%e
z(B$AL$_;ZrzHh(g6JaN8Lo|b!2zgw@5+;QFW_~(@Oa{MkX4sD63|5Qm6Ryc%QwE#G
z-_KyJ$T}gN*NbcrZWI<*wLh=4C4-%g&sLFb!ViSoGuR=*_Y>*7OPpkP274U7SA>59
zx<7*h863>u!wkO3;M)uiWpFryFEThLpN}&5MC4<q>=6+@)%rApqvD?lKj#sxuPSAq
zh_S{mrGJ&dagh_klS1Clr^6|6lCMQr@H>&89sT<ZPV;ci;0zD>41RKSdS+|+udcHh
z{37eQ41N{)&*yii)OnFVGWgR`E{OakyqLiy5&i=*zXSG92A4B%6{AG4y)492Y@d+u
z<<?f0bKJ!!S#1An%oW9UmZ?-Re$B55WlIa0WvQHElqp88B9s+YEJnFvTv?2(lr3M3
ztBcX1znjh#itRJTykdS*0DsObvoP&0C<Zahv!qfnDytw@q);JNE5<d&n7kUVt;V&*
z{K}l?axq-1aa}R4FUAeU_JP)@7<Uw-Iz3}KHHz)8tJN&V&Z>pAgoVNzg|&rsgms1W
zgf|K63vU+QB5WYMRd}25_F^;?;rS91YvJOzJB!hoZ7a6l4!)}xjnzd>iqW(f&73}L
zU5w_%_HTL%Av>@oP2#&cfT>L}?k>hX@^4>^`$X<7Mq80~Lhg&NH&!5aC<aL<i5<o7
z7t-`VF&_LMg%v$ijIPC4U5quw=vMrHC_4{0$Fi%;55sbqK=gPB_JE(UXK349H5H@^
zq_s+=uF_OcO-a=~Gsc)#lB!BwD!m$o>aHT2ycmp4_8JpRFf74ff}~!v#5I_-<ZR-S
z7Mp0o5_bRJx$ixxdb->2b6ca5p5D9f-gD3S&UeCdmA-5C-BI6tQ170dzWb!Udqv+}
zX8bR?=Str_VV^(Az4YBD+J{fsD+hA`?|Jibd*#pfd+x)Z+;{y~-?MLv8}{8UZ~Bge
z$y(pN=A-X>^Y1*T-gkTU?ZeM~n19Fs{|@@D(RWw-?yo-dzEAjuk9gjP-gC&r{^GOW
z^idDA`tF+_zyEXk?sNMt>bv8<d%Ex1eRtY-XLg=W-<|Z`n_6nE+~wQPes&LW-MRav
z-|@gTJK(y#{@PdRaYCQccc0pKpNUXizlX;zd|KaqM&JG6JD+{y;tM{#@BaFAO1*pg
zJMZONKK!h{du3mL{_?Z#`|Q5s7~Xtd-+g}HeOcdqdEfoW+n@dDhdl5FefNcZ_h0%v
zl=l8F>AP3=-52#8eU)F;cVFChQzs9;cI$!9d&k{$MgGK3x#vrnhrW9)V)@*MKk+Lb
zID78H<-dCN6YqN;opryW@4m9{zOnD#*jFaiSM}Z3_T3xU6n*zK?2*sA?{)V2U+wkd
zUw_yBrMq8m@4q_pz}NNNJErdW`o11m`O<eh=T#qk?>F?N&ncF_{<dd*Q{R2lv+nzj
zzWYulv+use{`}Uy`?kLOcBan$<bcxWJopu_xtllt%|2Ow<Ndt<uD<*3zWV|D<jwZ_
zmcIMGzWbiO``$he)_j0t_!pJp-+q5`wl_XsU;Uu{*|*mpeENkq`tHB?-Ou*j&mr4u
z_rLb|K6)d+weNnY@BT;Mz4K)c{&3&@1T)Fpa?Bsz%O^i-pZ}P>{<tkAAHMsa?|mC9
z^3Z*6@4KI51KQ`+?z4aP8y{HzhkJjz?|udi_Tl%v`r3ov_S}cR`K1s1Jmi1h{a)Yw
zeqX69ztDHT*>}IycfZ(ozhs~Mvc3MAz5Yty{i?n3SuVeB?|;KyeI5>H`0c*?o#Yt)
z<lj5`?sx4I-t)shK(6}k|McBo^xYpNpZ_U4(cb^Dz5a>4rsw=K`}5D)nD4rmlf1L<
z-qm;i)OY{4@BWgl(RY7u2mH0Ya=_pA-QOf<KyLZu@9fWa+p9mxKiK<!wE5x842;A6
zx$piZ`Qg9XSA6(y_6Y~P*TCI9a1RXJvj^_I2kt)&+y@Wbvjz$~zR$pY(7^GOG&gYX
zYo8F@<lj95cke)fPX66zZ|=9(_ZztPw>R&K9{7NP`@rNqhfTfV?r(eLU9YxqDxp=L
zhW6mVeaOHabLqc+)_cF@-VYtPNxK9=&ktiH-+S+e58QJGip)OOULV2)p!o;xc?0)i
z`y?2+=MUUR+xw3ixEBoE!vpuoz+HaB-7g%t&wAxuulU@%IWt%Pe!K45UwK#mm3Lhj
zxEFDrH{4BZ_s~A)5-%CJivu??P{5breXV`|sEudJUZ)3cX5ePI*1&BKTzTNK12;Et
zs{>aYxcPxw7`XhvEf3t{z<tcXz0^kau><#U1NZR*_X+1mm5%2>4-~y+0J(u%IzOs{
zoq?}b?9C;6C64T$G547LxnZwFpVtO%-QF|F{A6?BO7`d0z&$>2+z$876XpEfRR(Tn
z;Hm>xV^jloW#C>maGyAEPuNeMv{z>4wf}t2Q}&*iIKsebUp{c3JaD0X_(}Hq3VUU-
z{2lGGaBsO6f#H?o>jSqxa0dgoXNUQR=rsoJ>cF+^lf!{)4&2ee`Jc01Kc1|JKXWv2
zzw*kvkQNeXpSGX0O<+0$*B!Xtz@6Bih|s4G+_izbK5(b@$yxIG+n@XJr`Y>XwbxIx
zS3cw?pJDGm(_TNzUSDai{+Q1lxX&B7cMjaU2JZ8bE{bFa?mGtV3kFI`|H6T4@c<kD
zW#GPO;9fOwUp#PM0#JG5{ogupuO7HB9k_2AxNjb~*9_dJ{fK+_b07YifqU)1ec8Z$
z`G7}UxzBz1dw(^naKp9!RP_a4Y45*k;J)YCFW}F&-gV#K{``HfLm&t4^#lF<>jv)Y
zSxS4)pKq`?9Lf7{u=j7Y*Kf4*@FD;F`)@%8UZxx&4*uZl_gsJK!8b9~ryl$^8|}9v
z#=mkG!~V{J`>uienSuM+fqUqW?)~n8d;7rs^uWEDjr>{ne9yprFZ=GD&w9(ieIM&(
zSK-ee7`PuCI8fzJ4qShrn#8xU5hm{)4BT+wZZKB^_hSS1<EWH}9{%p1dDdG8?uQ2M
ze+=9Y58RKSTbS^-y0?7ggS>v`Tc3r&P5)f{9JTtt_Nx1SV&MKKi~Fkkc+3s2AM`Kx
z(qo@1{*+z!7k@<$%f9mT-J4I}-T%S+e{SG@o=H2o=QjrKe+}F(AV2mepIm&|UB5VR
zzhr;@`qOvw$uAGwqc6LQH@`Y?zcz5cK6WGraN6G-xZko5f7_0H$H4tgatsIjuD$;~
zd;NWT{e$G&KeRW0WUv3*UjKOD{>0w=sl9U1KeIP~K5+lX-uy-KdG&2~{pG;@6%#mg
zH-_%72kvi>fuZ}_q5Io``#bj3&>akgKi`cO8cH(%e&GIL;Qn#o{%PQzJ9G~X-Txi9
ze;&B^8@l%&x@z^oe_>+|-G8$8|2lC0HgNxs6|6pZ*U*@M`<(VZcMs+CAu7D*-}?;R
zJ@yIj-O#=7F#epw@N4e1*ZYR<e*2tHIE<fvz|cJ~bk82T4;;D=8d3+R6Y}qa?OM+o
z#vLRc9J>Gf(8C{U=l>9UPoGIX`LLn;aQpK)Lq~57PRMC_^9A`Ae8kXw^w3=xx{n;X
z=M5d71orb64AoZR`S$uz_R3FQICKx&x1aq(_w(<OA#B+FeEy=Ld-2ds4c))&zi{%}
zgD)An#>s<^4&6m2;f9;ASKdt88;<{t*GUp)zyHB$`((ymXYDmJbh{6!SLfW&%@5te
z&@B$#E4cR`b{{izAIrVlVIMbiA3t>KL$@(>pTMmRU18`h4c$wJ?kk^nPk!i@hc0LD
zm+Y0x@j35#^TMa^=Kadhtq$E|L&t}F!sq-eChynmbARyW(3OU6XXq~5skZF3Jamr_
z-S*fe{Anw82F`!QuJwey@~8jy$>jVmv(GvICl1}q?LEWzBzwb=RG)n^^ZEPthW5J4
z=k}&%ul1qZV{-oT{e7L<7eDlHW9Y69-50VnL-z|e?mry5r-!aRq^Mjsb!4wCdyVY%
z*j~fWe!m}m^Rqfb*X3q^)P0`4_U!eQ_IfgO*X+%8dp)(+Gkg6Md;L^<{WN?1bbI{_
zd;Ls%{VaQZ)A!xY$@%x$L-#pD_qp8Wf%=*AkD@kSKi>}f0+!Ee+`ee&UNv-I!Nd;T
z$9&j5Uu>^mYOh~nudg1u_j&nU`yY1CYliN%L-%F&AxD0>z4_XYy^Ht$^{ecYud&y!
zwpV`0x39DJ|1~+!8-`>U-VI0n9YgnZL-+MV_YFh$jYIcML-)-?_eN6-Z@O?d%7OM%
zG?Mz3q5D?*@V^b+n}%vm#d83E>CJcHtA5*19_zOcsfSgEb9t{9?naq>=g>X>>HEHG
zC?e>)hwjZo_dP@RUSE9A_p)<`?n{UFzh&rnaNhR~-Ix6ChyU0^4}bp<BlS@~Fm&&D
z=waS)p8imVV8CJ5?tAw`5C8X}d#kCbkG<i32wgFBFS_AgOdavi{RkWRh6~6r=Oich
z+(%0J4fkV1_v1tN6GQhuhwe{??oWsAU4MD++lKDfhVIvg?k9)tr-ttBL-*4|_lpdE
z=zeDCes<{o7veN@KZmqXSIe`I-gei|51oI*YvYHd@OkC^FWWJ{GIYOcZ}`xE&QEyr
z8}_T;8@k^gy5AhS-x|8#9=hM*?uPDn$4=-E=4|OD{=mNdBeWbU#V*9_{~o$Owp;U~
z;*&ocx<5x1)AOI-4&7g%h=%T8hwh!+CVJa`%fXEHFNf~0(EoN?f5N}9_x$j0hwkr&
z?%hN8_x8y@CZGR9a_~PTZ~O@V+3u8c{@c*~zoEO^uI`6)*A4exH#GVD`BN7(Meps$
zW|Q_l_TJg+``&Q(BtN|OhVIdi>iz8J9|XF%;okp-`&&~`A7DD_18=zLm+7>eAN%_(
z`|tsKeYU+mXs>Mi54qt!)ZTxXy?%J|`E%(1le~ZEhWiM6|B?3kZ;wk8a^}B!`tIl3
zn~$>B7u;}M@rCyK@D29}Z6EBtAIXK}J->a49Y2A#w-a8x;XE+loR8X9Q^_aOH{1+X
zAQ{QW(Esg*%hLJH|L|q1r{Lc_&wr%(L-H%m!)*9_r?lbYC?ca|jJ6MigzWeo9(jDj
zE!}Vx`;$7mJZ*n&xJx(W&M)6^eDbx=yYF9W53byBulvJ$UwZoNRWv`9m^a+o4Yx(7
zsT*$nhTFK|{^(EdE!}XN_U0w8xr;y9%e?;R>+gE~Ywp^nH1Z$reevhq&1>1-|4vN|
z$z9)~_!N8g@(n#^@e0qd<0+6g+><xlQ+$rjzu{g%sP~3@IjvEich4uWb3fu?-h9W`
z+?}0#@9%x|?w^12y)XO7`@XAwZ^+~7=I-9T;a>l)=Wxy!=gQLy)0s?AXw}>MjWEbZ
zM@PL@qZ)P_QLA&Y*s4z6l`CiGW~OF?m2SORuSQ1`xt(%lJGWlU@zwO~>})p3H=|x{
zuNk)M0YBm6ne6mpklU^lwu`x7v);WHwGTU-y?q?D?c6$Mc5!YosFW(fR&Tf2sOsX!
zVe2$lZyYtc^%{pP&d<)@`H0N)Y$n)@CTFKFKGtYWw4>I3Q0}(t^{yY>VrC&&E^V${
z;{QQ$GasxMH;R?QvaX+*&Q1sUgGMW4)ZKc!RqrNa<%7NG$VM9E>-tisTbRns1<PFG
zk}gxJR}WfIGul68<deaAx2Cz8otw?h@If=mx1&y{(c1R|na@lIs|;dI19>vHR4Oj#
zgGwR4x>;H;tvoq4uFU*QHYi7X-KDT~7;Hqljb`1ZPN!$S7qi*mO4M%FCe|Aq;D>HQ
z4VxS>H@lEo44z~yTETjF#3zf{h1sCo*c+eO%tB^9zV~!_>`W7d>(zs>wO{9lnfZl<
zpt7M!xj34la=m@hsMdq6c68FH+04u?%x1E|+Ge3*vl6vzRxT{n8!XEHi!?tM<N2A-
zEOKF1y2qrRo9^~A=6il&b}`657Od8r&B#uY%<}ZY?DXudznWc`L#%H3tJ#IAMOOS)
zC(L9Q7g^g}X=iLvGzAMtV1Bi@nG1F{i}})qpR{Q%u@qJhccYdjYH@yQDp-r!^)X2*
z*Q>pDqk9_U_Uo<cDM!uB&i(riV=Vukvt=3ad%S3NZhB_wJ?x=uc7}Cs97eVi_8Qs<
zi8yEGW`gCgdy{GimU@VGz0(O++EMRVH<z7eBUaeVc`fg_7D04Ojm%}HvQxp*%9iA0
zr5Wvp%^+9a<i|+${Ook_M5A@u3tL{)s!^*|uXckAt7|VBQwf>*xhbxZzjE%g`K+C=
zj`*35>TuH8g_*gz;Br(8_gJN%(CLJ2yRD1KQKLZy6T#)M*{cV+TCH9SViDI_GHm)_
zqfu=~$IbfnV5`Dbt$6h@JI|~|UEM{ss<}9K-@(>;UOP6Eonrg36|S-ske+(IefpFJ
zRIZ}sss|?5%r=M4XXZ0()Yd+C5tNR*y-u)&0QoPc7cwZ}%7NDfu^J8bqIPfz4c4ma
z?2l+u9z|WfAE_rB#Oy-6-3zszSMNdCss-EiPCaZhidYMbwB2F`yRa%nx8}8-P3&mO
zI$D{^_|h!SO=V34mP>4u5-MZUW&jmEKgZ>@i?sCRM)g3;d@KdhLX$8lt^Har*vM@L
z$exS^W9Da>>4l)Yn#*lIQB054H}jbp_Ftj+SP^BqQdr%|1^Ha%a=_WIl(yG`d}-1z
z604Wo_YP()I!YJ9w3jX(-?*K2aW0b{u-ph+6G-GlMYo?!PdclOy4HL0VzN;d(aZX+
z6kf2>i>^0X0h*iFSR}_5WNgWqnPd~k$7vulGt>H6r`rz4Bw%)a5eazmXk-z_jp_VM
zCcvg#jF&k++xU8&H@{g<W_N2NzS8K7WFWmsEL#c9U0IeOFD{_tZ>c<|r>3}zTYoj5
zokxM*O66kxZ}Sc3lh(cEkLG7)gGQ%bKRmzN&h3=h>6t~g%AJtK^z8gpb~adR_t<R*
zVFPWBElurGq5!m?uA+ssD6^Sq?lMIRUMU(jNc06qWwP^_hUJONQKJ(qwWF}Mt8KP*
zVj5Mana^anZrJX1F%PM5j1I_TXXdAaVhvl8$L{q&Rb#47pan=2Hm<RO%3Z!o#A|GI
zljA2ZT#DL9nAyvX-6%a!+W19U&zS{8uekXH?`0XWIpJX_JKL5*pGMJU((mUvc6|i{
zX(sR-j+4P%kdip;9R}>OlX|-&ySEy3jvHu4ooi}(Za!GeZC)-`f~DN%8lPpdv-5L&
zw!WTQEv+xJlgm1CVHPE_RVwF8K`~$9lWcZwb~ZTfwQ8V};A*`SqAUVzYQ2r-Js4eN
zac%*HmD{|siZ)<`laC6-C8#1nEw#pp3G+OY%ocCnBu1&ynq8Qloe3VxF|5MQ=E_!S
zBA;7YFHA^*O`_Ns*&<LY*o=`EX1?91_L{7!oisXTd|f6Z*sBAQ>?nUXGxLTaYs}V_
z=&0W6j7=Ix%!9Ur)%>O%bTyPFT%462TpN?8d=y)SY&OfvR8|X8fXrhtFPw6@uw5=<
zsY;iEwbFJW7nDJr<>H1Pz;qT!yz^9Pv#?a;RTr284VLRsuNiFAyO_GD$;!2Ym59Y`
zF-C2GMbLP##Ch%B1u{!}djf*dUeLuX9k=Tp@Ss0-0cZ`L*uUBf(7Gcn6ol<=C&0ys
zrG)cJdt}h!TV)vnFbIMj?zf^t&KI?HWkg_VCOF)!hHaTiu-d{@VDLI9wWOL8gfTt8
zz!;aq`n4$Hehh%!tf*&Zv-69$y4m<{N_#<SBDolHFf$V$zS0ZZA<lrjoDS=3w#z#$
zb{`0D49M~(2s-YW5}4w_MNF(V)hbdDbPl59W7&=vEKRc{^Fc1ZSuCuV3tA+NWHtyp
z%+FE1hL6?^s)=jDlmJH7iskVuK5`C^$eGjR&CO+lCvooTjq`FRNNxKkhor?b&C-C_
zggH_%UvKQT!}h5b-LR((3{NiD3R&wYm56i>gOyVjb$`F%9R}ts{>c>Lb*eo*5~K7-
z@gXz8+LK7`N)eBVJ@{ln&Qs~qrDDDy*)A;aAoWEPVO)?!q$s{tP0P<!Tj9|iP7i2A
zjqX3zTMakwaG>neD(2zTfIza}y`}@h3ED5t%(H28o8{7_%9sktAhyYnlG~TgDfg~L
zt=kSPgO`x}YJxl2(uKPrCNG|;^V5`>nobWNzetWX)`)L6y_xB03Bo=QWwdPd1RcgJ
zu$Z1&BYCnOvB<YQ;S}~HUVw?^C|JD~zNZne0<wb4z9eCE?q_Vm3^;DZ)*oTm+Adv2
z1s8McL2gr$aa)-XWM1jDj-wqJ%-hYyqCi*~c*+Xmh+iszT+2J#xlP1u3;^L+PtA|!
zgF9r3*^RfI5B5{CjzOn!PzP(=W~vvnZ0(KcP+~DMp{#+dACeWeI#DxNZR{W5HXKBe
zj4EG26yy&$E9&m1-=Qp~**)fxu10d!<Q?p^K_g5^qQ=HBgFhj5=DhjXSuf|Le58V>
zG>*_)p=#JMFC!lr0_F%d;KE{XDYsGDDF;H~g>62Sww(($m$vNv;_OsV+?vQoE!6*h
zJ$5WjiHTq^FL7~x9_4;3>^Ggwa8KLyCdeGK<2^`W`VnC?JA-j6p_z@pn4Zza3x%-*
zW~LT1Q$g-9JOcBbqfUaQ$;*=(<y2<D7_APD;A2sv)dgooRSynDPgOX5N2m++%JG0g
zmLWc4ikz`J=^ahaV3crJQ&-e{X8DKwT&OaW{QQ;!nwtj@R0`__L9b#(#9L6_%5AT$
z7lQKS@nlY;#z<kN?lg)S0Bm~1EiaVKq7l-`%fMv8;oV`TK-pQa2P1=BE9P^CF!8l9
zO~I9es0mbqxf=ObKovx&u?wVtYK%X}jpW@yz1;*ScU}}MUDl+qaKQ>>!Z{1pNkn93
zG3FX_fLpGX&h$L2W1-pTghA=_s?7?hmZkE{rjd)eB|cx6N1bfv%WR45Wx>wb8IVJA
zv$tHtnR&c(kD-y*Hufc%c#!Rt1{gmE;$WL<cm{pi2+GGsk!BY#AnD@ku)|1*=rHV{
z*@N6<St|&!2lBnseB)j-#@bP%)sSac<r-*C{Rfj$OSumlfIh8vbgQf?e(72L>GR^Q
zD^5={4R^ZY><rFKd|yEkEZ+!q%0<*=;iv(q#R-nT9zi_$#p66LdlGbTxp8z{Z~84W
zJCB>BA2JUUUKBlFJ0sJ#1w;hg-@NuQA+<2SfRLisYCyclnL48wW~b&6|8$Q1P)EBX
zlUd|~xBWVcX8#Y|5HJi)w;gr5o@`=DG8h`bQ)6}|;et%ga6=($*Q)q&!DD6H?lX9Q
z-WQ2F!LrC4KXcWHxhw=50LO;lU6=^i+&nT|s=&~rh`h|rWTz1Ha@ebl97xV%^6f8!
zrD8h9rW|JmtyT$}hx)%3e`XP_!VRE=TSuWWF6emNfWy;ZXYHKIoQL*~mw6-w@c#Y;
z@s8(S3LS<Z30a)ZLXC0q7W7o^QSGqB>BR-jL9iB{g@*^@Q#S()E}~S;-;F1yZtT>#
z?XRiQEpoD%Y3@Hc|7IjplG8<IGIL1umEz`dWxEh`P>veS+&qdbUHnoDla+2>%+u(r
z@^RQ`@q=j=Y3i9D&(6Z6F4ueAP8CF~%Ok%*ZpD7FfNmQ{`>7I9bigmo1zaaN-r0p2
zaW%SQouqosKS~bXdQ3NzS(whIJ8-ncbfq>HxZSJbZ<-LrGlL3`r{?@=`OCxu*xsoh
z$;V3BH?Abfgr=OHvT%cUsTj!E1(RW2*lIUU!ft)sGU}dYG0s?vw&eDJ@6E5aD|+@a
zJ2!_Gr~o_&F6fZm@DK|0AZ$1GVnQ`D0}Cud5;thfJUoK-LQTS<#N(XKpp>@i-9~sA
zluy}&vch7y7ssHJ{F5?jl8cFdS%TbU(e$?ln^^?tY(aVLg9BQK<VmAV$mFcXTBVM=
z&N{US`dSWAu4ttil8d@N2~X>yi)xTB@wDjBnQ5G$?GPNx>q#9ttz73mV)Axwh7-lB
zJ+_B5=u|RSj&@f$)AWpZg~G&E6aLr2KYKm6sr1_gNa9N@{<Zq9uDgKM(23)1xKfAl
zuuU>Mi(|kyHyb}T?p&~5KVgk#bz7J-Fr0yrnfW=aMPU=0F1pqLhQW&rs|QM{JW}x^
z62BAwWO_l$Fg$KRo7-yKtpBHPcd<F7oAushAaF&3liUyROK1s<dyHN8*O;Gz?v;&2
z;_EnS=R~uU3}kVJ`zoIzg6Y1}`KDPI+@fblZL)Sjjp)XH9K~RZW2^q12cyvxwczkh
zH3E0Q6B2(E`YBJY8z^H>a4*g1c2IJ=M}&~!R#VN!Ij85Q3I81uK|JXkhC%P3-fS@y
z$L;V0OwnTHd&kxK#UPyQ7;eaD=N%DN*bCdc4ajH22w<a_<eGHT9Bi_bTqLstHy4ZK
z%#^tnsQylXbJ4SiZz5$ga55n2jRu=^Eo{~rTAJCZ1-ul-x*HyJ!5(mV2~TPZmsPNp
zm?UDm8a2DDXx+o`MO*`*O_PmXC+b-?RHVtvVltb6mt1pVJKSs3P`?(@(6+Mpp!RM8
z5Ymh3*39d$Io5gL_#4MyNEEmn1HX^vrbU%%7x^1cK8HaigtW7=u{M!x$V8M0z1mgk
zZTU>~gkyueTnLKbRz)and2Lh7PS0W8SHh#CFx}eRcnv{LCK(D95_O$GPsb)-6Ql1F
zX9Hpn1lD9tPuq5mTOmVaB7^oQ9#?@q<}-QTrz1Jjx=a(LG}~I(PH!o`5MLut5MDC9
zxBMFM0Q%ncYXZeYuFFxiQD@IzYjh8SrjO6_-%t?_KHdoT*Ue1?!xBoo?a5}QK%6L@
z(l&wO*rV|Za%KvEy#V`IQ{-C~L5n+s6p9RQH)@UEQ6d1zhM$_B;wO2aV55s`iyRq=
ze+!?DQ!P%hOKv+bQTx+({CWX0_;yp6oyy``-S%sp{0@_nMNFse@avhm_jK($EIy}3
zquq9BSrRPnFtnMByyew;_e_Ai)FPafZZ9A&+#q%sm9pDwi@3Zghob2-BBW@rM9YoZ
zzQO?@s7_;_+yo1G&MZ!$?jP@k9ax|wPb6LaDKLpXmf8YI#v2=1nL-h*ughw1S<#xH
z7tC*^-RndrL9uyCAby|Sa&lTd;9HQ*lrB<hhn&saMUyUOXWHWPo$g5#<aW`6r@bUn
zL(Yq0dIUBEv<|xrAOUzCysK8@An4Y821uh3aI>6p7VCvlLv5X=x06^g)F=9}as{oK
zc<mW1ARD_96s{94;KF8wvvUv~5ceB}N-qA01RN9vq2aI{5%RDNqRT<@VDq9Hs{pGw
z8BR9MB#_htg@U+lgxz-Iy0_WlT><@s3xN0}XpnJ}4n(F5mZ4NCq4W2vwx#U+Gi-~M
z+;%xta1+V95jX^;0Q>jriW9`+<$Mc7ZQ!3mXhRK!v*|+uo4QC2*RLHze7?z=k-meW
z%x{<SL8FBNv;-nc4$3ZOLFqbM@eCWTa4CyeSSxRoI3<>swY|eBZ>DjGQ)d1H$3v$;
zq;FKp2`-%__+YpU3s?^byq$+BaD_5uqj12OgW$J<GKZvT_qyvKOqqi?zeo{`m>knO
zvEr43UVR^!f${FfCOFv~*?Ew7KxD86Ky1r=OMb)FS#rP}I&~^2u%&>*BL<GY;w?El
zlL67?K#}2r4I;TXr$&$6;g{eHpt*9N;tYeBpW&l%LO`?;++--=w{*n>1MQrZ(wAsX
zutmMJEJCd;6*1Dm3ih+v#P13*4tqVD9do}Vg@;DT2eH*BfQZ4xSYwysB$JYl#W4|y
z-6dNE3~)JW?~<c6=IdtX350qG&})Nqg7UU3ENKMXmt~42kYTfaz00r^g%olM@?pE(
zU|g{hGYJ&BKmV&jkKmf&3hmPjz$hDBQfL#t#^cUf7%<u(44Pr^MA*KL2hnWc<6R6&
zx~DLZp6o&YG%p7Gy~bW+vSrhi#j*k=W_G~|+@%FMF`w|CkD~|7Nu9|mM6$7_F`m^L
zL>}?uZbpk3BXn!-tPYelbw4h%V{mVFnsb%I?g~3kl5V~p(k*(_5DpGl0^<NGv1cGW
z$EV}EBX@iZkbuzb1XtE=vNKu4Y#A1$B|RI9s4@)M93H185(%_n0xP}tp;0WwCSGBu
zaRjP7JF0h^kb|&m9wkpNP6e|Q<q4GSvfX;Kj(Z4qPMTb7SEQgb2*cAoe3^Ki$4Bb7
zX=aAZ0Wm4~RU_hAfSG+)i7boI%SAJti)Y++0%edrQ~3Z-F!~l8sMqA}CgK6EgU#@S
zERGs{Dn1e`CSQeFoHVFB(h^l{YY}3-(=|mr4ucYpCSE6r9v4LP8ckTV)U0NJ8n$PY
zEHI{gVzz{|ifL|<Afp23(SAJkS*#TqiS^yHMiZfpX>`2dIb}<RU4WZ%C4^Z`$)wqx
zC@R2lzO)V)OfGjini+qeqbbfz&tp=yfC9&OTKIF)SK3CXVp2J7i*YirMR$Ne+!Ho<
zC$|*j_mSleC(KTPQ-cy3un|1Y&_{V1<KmDAeK}W>b<51oBLF%4xvsLhbjw=*R%egx
zjQURa{^=>OA{%KJ`LP5MQ3(^}_HoC2tzC2b>cLSP&Niq`M*Po)l$j%?rQIM4Eg-|r
zwu9eaawp=MKnXxE=3r286vpQ?_3yk4vpDmdZmoVgk?hP=2&NZdGK;PK$>1?O)3u2F
z6Rr>U420T@S`$^aZ@pbr81vXOwVi{;F<+fToyKmX-8mGsv`0Q1o0o$Qh@I3=gKD$4
z3-2byY$P&79Zvmbfm8)jDlS6Swf&u9e4rW<i7g0J9^+xdF6wPtgkEN01`8!x=3vCj
zl*8RKaK&!aKGWv7ur>J@?6Bvi=J4wXI^mwfOEub6=Fm@siH5BL8!s>pF=ITuw!g?r
zG#rKp|IL3ny*QtRyUXV{%LFG57*`iPS7_}wkLuF?^~p7@)+`C39Q7EHJ5OvRyMh#z
zm>A`9OP81A3D1!U6I60wJpw!%$}+W>b~(6^+aP~BpL>xK>2y|7XHgREh}6h5{s3c+
zm04<ZSKtTm#nM>FG#YvqRo_M*mhH}_p@6acushozzjlljA-@5Bu$19(EApF)Yb`3*
zpn?u&UnkN<5(WUJQrsw9DJ&&gV{U2|!8mHvl&4fb*yFbgbF*{g@;#v`O~fk^P}EKa
zV!Ebe(}}f<2{dHUQN4!;Xw|C$JO)&Fmx&KW2O@>ZR?~{w1%O())?r9`+)k28f>*)O
zg6YlPevhNzpdrE2IECDkeT6J;soRq)h-3^d6kuv6mUkpPOd5{kYSa}h0fNRpj@)^2
zUko#u4#N79DS^~5*k<o&7ZSvbF0Q-xJ9EWy#m+ZNOgbO+$k=R(rCh}Zp<%eo)PZ7&
zEwkEm(ZaM6=nSk^lSPBghj?0oOBIRi1Bn?q*Z2~o(RkTLFB6ztI)xyG-XF778Doq#
z3M;u_L*inXwA#2T1yo5qnyVm=RQuq+VHq?53EGTZG(a=PaJ{h?)w>he!1?&v)7dP#
zy4-86K%0s(h31L5f&@bZ7j~4`Yi<*|6S3g7$v!YNRgET69yTaQ-j5p9i6)@82{2-h
zhpe+A0rDyEp3zrz<#*zVfO#!4onQr0lw)3%H266v>hStRkyzAqQ#noBu1tuJ?RA8x
zZ5c)FFGrCsLH?OmYy@$n0xinsIkQw2$f%mUT-+kNssxaYj<3q)VuYaEAUm}Rd^__d
z;izHSF&P;gB{80v<=m5YX-<!6Rm6On6d?f4mBvwcU8zoTEfl<1*QiOj#yQW2#Fln6
zyzwE$+l?$NR^jmUGN=e76~kfH(br@6$>;vS!exB&uz3J}VTe7DVNL7pk4q+yxwiNm
z3LQsJ$XQz3rVvgIzob}!H%_@slq-jy|13+n3Fa@vwxYcCU*qA4r^>Kv7u<9wf==TQ
zbXml8bZihOzLY#L<^yLMt8gi76Jgi~!E)-G&XpXG@Nzs+G#P9X4fVO`#&{u<Wzkq6
zpN=P#tsO&Z90WpJwp00;WvH8TW{ZVc(k{8yX)!;x`w5F6*kC*#*y~g+{=k}=lVW8q
zENZeflJOPW=)S6D7c9)-%0E`|E2l+gOk|2EK)4GlM&JttsKts`9G8M1)mB4sAvlnu
zkn|p9qWathLM$ksOESV>xHj4nccP3d*iZybk#Pp>Z44BE=EcO^2a`vFm*qAq6G>&t
znc&WL{n!`r#H@4%>Sz`jX+xJ*E(^FPVmmW6591@d7{uOC0zDQMV2Opgl3g$^(aGFg
z5Ev~@u2>*VyeHh_X`BYDJ$u}=ERyLtVi`f{@@j1RNI}Q)mbS27Iint-SI}>UADL5#
z;_ad#)CAPR`Oa!?B@+hVV#S}r+l6_|HpMcE?T#mO5ZzOei3)%~y!>=GcE%QAIfCxV
zVer(|@S3m@A%nABXjMTP(_<pZ5JWkHEd})R@WPxvYH8s?6n@%-rebLn9Y7d&xm+o2
z=T;Q)jHjRSD>3e5W3u?=oH?;L{;EN$Uk^EHJT34~+@=!zc3QaOjrvKriwWBZt2nzO
zzb;;(S;AopL3ps+P9hcw7c9v^&p}_@At*gF4aqCO1}7v>fQT`!TcdLn>8%eQGcL}B
zB~h|Dc0)sb1O<3VB*HV~?2C~o5ki`0$6Y^(nrLo5H)Vw1J4=efwx!}$u*vot`Iekm
z$)?)~H!%&PBbjF|qC>`HU9%4>Po}wEDO90If)ST>4xDI3bp#YZ#}UEQiSkJ!M71k*
zh2&BMZ>iZhJCo@%(Ao_fmPDHnk8Elbt^&6!P#L7@ovX}3>6@)Z;-N=UWi*9E2bZWR
zYqX?~uCRUa2pLmCCL(yaiz|iY!lj~g6B(Y(ps-_WFYy8lZ8T~yqsffOTaRyjY^P0l
z?MPr8`F<v7;>?q=)t(_~4R523`Wi<s3O$`OMybW;r%i9~XR@iR5U9ZIC6htqJrfA<
z<icrCbc+<=p3MHl=(LtAvBk|tp~TxKMF4g%W4gB^q&LPc$YVRaT0fB;&n(P|rMHYO
zU^^LIthvz^mm;}1vn0`GZl@w}#pl@;urs-J-EkbVW=o@1q|B1Q%OocqIWy4PN}$DW
zsaM%qh%>U+Z3KkA1t8DRzLVSDoGYi{KSWrvq*xKMA8NX!#31xYRH?wZ%Vd4unh){W
zM#LHMiS7`Z3~P-@(s6u%xM^KT*C*N%?Xy)d*6hY<eagic#Zu@Qn3%wp4QWRaa8bKi
z$H2biS~a4#9W3-gGl0M{mWaPMKy_Zrb|z~^Qcq=PFk;(D6mu-jnBc{Xh^@;T(s}VE
z=h+`Nsr7aqR};xqSb)?!T)*2=1Ndp^5A4%SU>*|A4Ay<4YVP%93wqMqO+^e9KxkAC
zjT1B5PGJ`yycX??;!bSXqAFoPD2-6OoCgZL8E4xV7W0EwaQ>%QAyoE;Pwuk(>c@a#
zaen<uog^3Yo7v?^@n%%T=Ofb%=PqVQKyU_qIX!S4Z))}mmnTgmxe1b%fM`oKbic82
z(r0$p*hcIhuDP7|hC~wyP4EP<LwLShe@D#-m8!S?ZayOi;FjM>8L?|NPg|@$yvqea
z2k&cXAjM;a(QW!l^5bw<z(BcXQ+r$g1tDNOfh{e?$Mq?>58)x<=3Ur|eWOD&)8u%Z
zqrt=Dy*f6otw=UmGNO55U^c^61VrUCjS8PP2ED1~lPMOVW0k&Q;yp6Q*_y-hs*sPs
zm^=~4GZLb(n%ALn#}F$fJpDC=58nF(sYvC<%r(NJC>4sI98ItivDR9Mg;E$nKsWNm
zCEVNy5^(dZlvjNu|Ko*SCX-^kRA?6CNcJ-@JyZ=)<$&E+OCt$NLV`4-zH;9xF~<w}
zm<sqFbVv@CLjj3vSig}{%R(!&wg!wEJqz}a$F$jV<l=3UuDZE7Ng1OUaxp0<r=&$D
z!7vdicrR>?Dr9E7d${ftI!4JYC&y3#B0K|=0Xe)2Dgsz8JQ44B%GVaqJE$o1(PL;q
zgVt~qAlzb0RECGG2uM}+$OP^?Oexae6HqW0N>OKcutJLnnhBEEq#i_&WQvcCo`OdP
zgRJ3d<G*RB<JlDw8^RQM??MPy2_q=(kFVLh3P%Oju*e)A!<3>cqu%L$4@r{b+64{r
zOlL9B<xAUMXOf6A$_$#oN~ws|3ZdoaCO;iB+cpBFCwr9(R}0mzN<k(lD1<d#eQJ><
zw*sGz53v|S0PB<+EiN1pN`k^=6$Hj39KVbw8;B#a#*%W8q$FY`+s3X=<^`EtYhrWu
z#u%DYBdjTVr5^emJt-d#qQ?qR87GN_B+QCHHDwzscxuRIwDcC~hhaRD%|Jc!15<1p
zWL9vmqZyqu`aHKks(b?;a<o<qD7|?ZCM*{Rc*LEM{LHn{k`{74+occ+jgrVF_#1^*
zxvV7YST}-H2r)vr`#N6i7()m<5eUECl__Smi3aB?QpB<Qu(oI4u+;?|Hg`5C{x{ej
z`_Z^fkkuvFVeXzujSU__8RE7p4J>6!DW<HvQ1vDdOirieT5^Y345%h+yB;<t_{Q#g
zewO>LfLTEyN>sxGUyt?=<Z-1XB_J&=hc95_4=@|Qg;<t*&lV8WOBQ<*%iYFgo$d0W
zc7WvX0uWEi93fyPbGszX;gORvhi48&7pMLm1Q!yAzd|_!iQil(sWc^HU;#pe(~}RB
zj5LSd?;uogKTv`i6Y5&-Uq=)dwoLm@YYX67#VEJQRIxS**C<L$j3kE;<57}$KD4>j
z%@Mgp<ipm})PFDcIF#GrW0nGDRHzhpJ0O=`hc1d_6P{BdLGmGkU5sPwex<R>$#k@$
z$(i^#V{@Q|f#&$dSc&CS>5RJ`cs;E%A<YEX&Z;%RQWPD+^c%di9C>t?G7g{dIj984
z<3mX*)QT5tM1x7WlS^=Vv@6@@C5Eg!tI#~9UJ>c$PBV+7@_1Whpp_9qcYwETj<(OC
zLuyh)RpJ(rrc?%!b>VEFRGJ)Ip&Z-4pQwmnK=H#ups=NvQi73W0pzu`ncGS(KTAP%
zx@|Dj<>Se-AP$DG@qqekh0D1WQ&IB!Qxigaj7+dI$-+@6gUKI<n!E95am>_oH#&Z`
z{7g+3TzblK7A&lP(@w&{SN^s1Pr~n~vz%C#g?Vj#bPsz*UcB^@1c;ra6nAtBlq_IH
z*_r`-`bDe|=&M<Sp5Zf1CxOQKpg!?9wt}7A>smt+w4MS!3890YXX4n(qt+#U{UAV?
z=39M}foq-O{G|Vp+)--p3!ucxG@gBAD~p?4tf;(g%r@Xx69J(3vD@fc!XRk^j0aY0
z#KRkO74^|Zd*q<>bStn{%FeOqRZavHur!&eDbfnyeM+TZDvNg2B!RarOC_FFjmkDE
zGD)3z1W^oxO%fpS_7$Gj8m;67`P$NUvtGd#DyFb4$V#vnOO3h-b|+X7O#!aFn%^|`
z$5Qy>i*edHGzD}nD(i?q>51YYV22f847?i1tOiYQ`9&zKMQ*TI-U^nB*4`pM30nd+
zzY+>NOc2(=ZS<6rRrzkQLnhWL8oF*z<AWC<x~bqAK_$SXUu|jRIBjYP+90F`&n$#I
z8-9rOQi^`5NmcE*B*Zh!mYX8CWgB&>h+GR@TtOf^<^@=L30+-OK1DaQ&LJIv*ku}!
zQ*sVjt_Ap%X8j~shP7-rP60PCNw{>$9FR(;#8sw$YzV+*zjX9DP~HjwB_OK*h|Vf-
z{*j76qzl;K!DxpQpj1>WvF8nfB`ATEZbn}T%M>TOg!f_1g3BR72wKb$2%uLC8V9~c
z-B_siZq#}ZIGQK?N-Aj3uUwGWlf2)U5I9%jrL|zjfS1^xGJ<>nnrt<63OomS*Z-bV
zpzf(kp{T)Fz%(5KD4bxOc=;&wWwRx29QPSVO3)Z)Q8$R5Om52+!sOxQZnlpTtuE2w
zb7D+nqCWF;GCP^Yb-eC6+2V+h)h>u`N%bZBoOE&~3tS17M|&r!!=Yd)8&M1!0uMwZ
z9|-#!ouQA|@i7v_J45N?%aLb>r=IFz;xZ~+q*{q%sa~=EQsya9EsSGA)OV{?+{D2s
zY+t6Jx17iY^F}wApfFMPok{39z(8iQ)OPq%WFMB07Tl_<D+?85kVFSp7}mHK!?*-@
zNHdLVG{6RU*p_e}sdhksK^_3g14R=Rw>)=axffK}0KhTTRjSDll`(ekBA6oyG9~E>
z4T^cv-L{~>t3>z2hh0cn!*3I>T1N5+c;LugOb%C;VG>c;GrbrK{TL)j4@Py9V6}0X
zmQ1uEh*74(x<r7Pd&30;9I&N18WD7iWREQcIs$iw97s#p#V1O7SD6_jl4+iq6oJ@N
z+|b-*8Q0Wx?F9L!#-jAoYTuywQA!GFe<XgJB(iu)FN2KTg_?_n0aJuA++5ulZD1O>
zpbvl%N@>1~mcuV$QX$07<?a|)1^A_0W1Hevwyl<8<d1kGj5oojwpV;8NB~$lY|V+s
z!ZUOztX*>=C!!MiGdWcB=lPRqU!+Jqra`$h8IZ(Bm~keDIu3$}TRYnf#l$7PMKBjN
zWH@|vhM4+&x<opMA_=nA{t6_Fn}9T6`z?im&P1?C=?0inZPuDWgU$h)ZYPOxn{8F_
zN4Y+UBc)NV0`tMU@mg{r)`6x<MA}1IkzCiA`H+NlWsz>J7nLDN+6>E_60JTCotgu{
zFR?@KNHa|aMpLGeKmc`a2=jry@KsjSx&asyJd{WkXQ<k6$PA?I1P}(5N>x69y^TF0
zvlb6xyRb63y@LS8$Wu|qmCgJ_u8I2?Cyye(izJWw$lH3<g%t4;ht)*jQ1>``F^WkA
z54((R4Ynq?CRZoHgqMruo!t5akYFn~+Hb?woK0#s(>w`EjbP`g1!J@)0UE^$D#(0H
z0NXXzm4ujj_3Th&vhuyS-Ib-y$*uL9ZPz^hZvZ*DoLeu@IP58PJtEeg+s;2lWgWMi
zP@n6Rpq8I3R|*?Meo<7#%}b^2ja=o){8O6+u0jR_8mrLRv#P0BF^oxnBFf{*E{mux
z^cnsG)DPAeG20EzoAy{#=}5`%k}R9CTrsXngBsRqrwXd}Q%sGr(lY^AmC^>|wELeI
z?OR+cza$Y`q7P{321`r`-6treQV<(A198*y@>gM8Qk%#52tq?B5F6?wY36<>6S9xp
zfR6a12_tiLJh_bMa$2xabIAUWF$HFu?P>;3i7Tk}q_Q|c%qUy1`;y#WJV4Y!i4HrK
zuFJs+cPE?3k}sx3->+s8srCwXLG|3D-aZyaA%f<^O=gOc{g$1@Tql!lwG&~DVg-X?
z$baV;R}hNSRC03IQlTtGgXtzC@G1P4B!$L%YIF1G!p-pHyz0XGnAu|6vvCRhwd+Uh
z6(s}43<p6KDk((f9a1gf(^^4xWG0|pfRv!zxB*EFSd7V8RC3YA4A~KWZxXzvswT*7
z0JMEj5m{k8*Sp$!M9|}L5IvInqclCNo+>*0_}Hv08^|*{CJ@kQ85A*4KrkLAjuL}Y
z1xiezk6FOPTC#T3C@yb4;T3_9W-MBg2@E`gfxeb=5fdt)002yy1(YK<2a27X#ALn`
z+@;JPP6A>_inou?;cs|yfy`~OT@gY<=*gh3uo3_?4!Y8AKqSp-sa(;(V#}bABW`gH
znx)n_#r|ycI!y?I$I$*rAiaTTrq`;~J8d6AKOBc?c2_W^wBdN>Y4LDCrz)}%Lzx<`
zL}$g<$Kez_AjE&r-Nh6n;^Y?;$AOt3d4?@JZdfJ#EEQT1Xa^S<#6e^-98jp8UcDMT
z`Y5GyWaK9|N&*s$?Byo6Nh)ABI)t6)c3F-jShhfFId=!QMfOds%{Xy+$1X-$C!L>`
zx9y(su(LG5(n9$d#gsbx#En94r3l9p%%@2SBJ-(<c36U{ITu|erIw`fdbyGq7TVq*
zsYfKpBq~BNJ@VYB0yJ+bjnE;WP}bzxVQ}N^0Fy|f=+#a&h(dh*P)TdCr!Rv=KmZsK
z<oI;^bhm+n&&_2(NXmgjO;$%LmIegkt?;bDwTa%efU%S&2+zC70=bs*6DvGrrsMhH
zJY%gGno&2I8Sphoe)%LiZDHDSioBh2NoB{S{u+d**kCeA;>%gVX$<3_ua%8pA@WkS
z9<~zV9&w&V^T%HW@po}~f-XF*>hWd6D9TIGxuqA*ZBs$SCFB;#Fq2QZn5ODHUkTTS
z-m!xCPHcu_6+QAQiRqH^Q(U4Y##Tao0+P8}>ktiyZ7^wCKsJN?Mj08WaT68x%<-6i
zt1h$U9)Sw`-Ax;TKa+qrpb{T;R70;~YZ9DltYV7t2oY(G;Y$gPv#+XGNn(u7uBmZO
z>VXTZ<hHk|RWV$}4=|pn;zFF85l6J=)nDU@OA7Z-q4ndrf^1|9F8BB}y()f)_zYxj
zmd!3z&;+vLyoB@%)DkDx$tnp$vTfvF>>EH{Adyw&6qBLUtWOd@_Z0&uRBmt+j1ofu
z42*y-r;e12mh62<M=)ESfMvwRS`>MX)_ZPIbR*v3GWnNvi+iNb$1`%gxn-+&=iK3l
z9wcE3QZL`wLwaE^mK&sicd6%&<CVb3`jNqFKr6ZVP>vSmh{vopwj?{_T%pI}tR<-s
zhzCqe+=V0FPuLJ8+3vJ*%E1~5i2}(?Y-MsKgbqz}E=W1!f_a5Y1j+Lugo2S25<8Ob
z*kE}jV~n{hs8TP@af6tk_UP`Tq4_{(@Ucl_Rh@vbKn##O)unrf?`V=mw;@=hRY7Wx
zQXGA<8JdN}EDFA`@HZ8jqRG*{CHem>aH4dfxY_1Mr|X21F>TP1I6xJ@_QY?&KAYr5
z0Iv$-Fp@NuL{E~osGM|W(vsa%d&lp@vd|wS9fiJ2i3Jl>nrh*tzK4TQHr%Wo<UxdC
z4iYtFN8<dQn<h72M<N|;5{*qdHWo9}HSkn09{T3MYJ3a1Wd_7Vz~QGhG$~kOKAx#_
zhykFznjYdNDm(cF*pAc9X6BINwZfB6mY8ckAorB3O2ZYaqP{f;SW;!K?(sJpuCRPL
zPR37n70xD;RBpwtX6nh4F^(y0*SG4>81W5r0oB%BKW#Ds1eC%Tt^xH2WJ`qp+*C;_
z&1Hs}vR)KPKO*&DDRdhLIHdfCxJO9EWEfn1X5x%)6bOlwko?b0*<5=qMG68id%P$h
zUW;3JFYz7VtWC*TqxWFvfDW;T0ZptU60lB$xXyEpM59>UBn6RjICi#ybMg+gKQ;?b
zU=ot$^w}3l!B6TPs=fvpq<1g)iEVANpKQ)Vvq4<qjBkSYdg%|fG2xB5yO7*4^3a3a
zvI0d{=`wNXEe=(9pb9mz0s0<8a)u%|$v-E0%Qg>#sCFD(BhG&Y*V~FZXljWBSW#76
z|Iy!Nt@~_Y4{y&;zsOuP$1%a@JgwCaE%G{+lz{xFI#_V#ykz)uaF^mCR)7}T{dOnH
zH8Zh-?nbFc&1)f*1LxJ-Nb{orfi3EZcdT9(D3NQ*pgC7`h2g_fSgj-pTN~!Iat(U_
zqKLQQK6Q;)dJ>KRj%uDrgaQe5bxOv%c;G@YH5#p$2ZKny2~v!~sWGEOK|T9ol+knB
zdzi^Gmo(Nb#7YDNVQr~LcRAx5*)j=nSxl@kQax`IHg5=SSBTQQOv|<<fJfH~tG0``
zkKH(7V}-A*yEwOT^98l3aiO=OGpJRiz(~LlB>F^P=r=$hXNSmHbd5G#Bnu*RR3l%D
zk8kw2gc>rNV@l3vlSsIIGy{*jvo=C*F#$$lhUIB!36tyuX*1Xyf`P3#mot^EDom)-
z*sDHahCjt#T1Ew$S3)VEMQvetN<O<se<I2;+m|QERxC}Fb2J$VNlp${&Z29?#56jx
zJ&3qLJ9qGz^j~FWUSmxlqZ^hsNOw}0IoOG{+|mSWD8JG^Wjm#*lIc{&;Us)l0vi-x
zF!^z!N}T{tIqYbXGSIjZz*^%f!h6|DOJK0X{s5S8=~e(K@wTx0!@E&2x8EqS`>CuT
zC4x}8(2gdLK@{U*4iyordziVweliHKN$lALUY}|paNqEs;~x=KV#dyW1oaV@xfMHy
z?NI#?5~>EL83!KQ(_uq^csQqgHTdA|UI+bW<=$4tIvHHDZndzBG2|Az5sn|CACpPK
zCfl0Wpe!NIH<?1;DbJ3LB-UxdV_hRrkRW`yYW18c<us51IJTUl!9bH8o`4G~WBIO<
zmRA$A=9*(4pqs=^jE-PYxTDP|JPA>=qeKJvuQTu<=}-H7EUln4h0*>ce-Y$e^->VK
zxoj~ARJdq72$MKddka!}Xt9tbX8eLbI1U9Xhe|_JkgT}D>vbC92zAH(`4}zEOg<vn
z8T>c~LaXPMXB_iqc@z{y&{?nGI6B0u#%Ner6_>bE<CzdGdK(0tX78*{VO@s{F(jmi
z*hBFWNh-JvG%NxPC~T$DEqb<LFk3i+C@8?V)ltYb1572ea%)0RVJ9Wz)au7c7bIe$
zRKH<w;$PZwPJ`AiDLIc7Am(EgTx?fLpb-hIh=q+coQ$>w<?BMW<ER07AYMg>#~ccs
zQA$&$Ru@_lx4c;CT&*jt?@QW*Z%BfOpGLr72vZ>DQFAhYVfGb;(z0xgJ0FCGk&hT1
zofu^$>GxUcqp;2byNJ-U`hf?zWP|wOjbmG4)DZ8u--^*Bpcvc^s=5y02i1bfpRg<m
zEt$**Vk>8AWM|WQ%@o)JvT%9SZ3DESwm#SsremoRtW!K4QiF*lOu@@Yy4e-vRFcZ~
zgpEgC^Ugv``%c^+D!(WyYKPSx-6c@BV#VvNs}^~_s3y)pKr^EVB57B0+Ce!dp?H1#
zGD!w`f+h78lO9cTI&@{aY$?s%Tt)fOcoWG+9|6G*vzOjFTF_<%#}l)g0FRi;jK7ot
z#4)NQveUa>KiZAdgCvpPQPyFcAxX0mRA_ienU4zXG<J=TYyx?`6R^3|7j%%Wgz_JW
z9T6?)8Y(e)2!Sa(oIbGp6}352X^8kgPM0B!`yc5WN+BeAg3I5oIaCELHr8j9;m*$n
z%m5ba#EOLRgdx}D_mV2YwR1K0OOq7O6x><9>M;jk9IR87_$Adlq-{&m8HL-Jq8%`q
z1-|Ux!znU@F+HL`FEyiUwvL<)&`)r*fZn(%Xm2gJ*75OiL6X&p9Z}<K^joBM&SX~H
zmtSl)sCWjc5<O!>|Fv?gF=J_O4>iwOSRu5oMFT9XY^~5uW~P*~1j``(7H>R>3U{zf
zajdj9=T0t4(ky8Wt52n*8-vkIQ9?~y`kOz7S;>Obp7FU#=7|%FvaWJNvCb0c9Bn~-
zAvni%^fA-2Le-X`ae@@|LFGUzx8uq@k%zECc+etkX(aiE6G=ZOAh@;pxahyQeVo}A
zlRUI0sgbr<_E3aeBpyb}laZOB<;TCLP<X5}E&XFa(Inzw<?;V<^jD*HLo~$A#0<*@
zr78noZZr>>Nd^oTq^v-+128D;K8ZIpqTP{J(gK8##H`}fd7yeO#{<gC*8}Zy#dNRV
zeCau5g01#wuR+8SDuS6N0i_xPe(*V{YnkkYQMP@m2Q^3nLdYsT9a`8F<s&f<Rr+Rl
z6=2V)IzHY;>9=FON<lP(F<XVHW-T^CqDV*JqbfN^-dQsFOe3%yb3R179(Jh+il>Mf
zUZ!HLG|A8z<c1RWuhyG94n{}t5FdP`Jjnu-JL}}+ymE87-QF@y63N5&VRf<;M1MDl
zJCL$nhC|TNq&t|<0<hrmrGxa}(dwtI7O4F~1dEtqBQ(0Sk>}bpyMrnP7w&OymYxQ0
z$z<R35dphkr|Y9sSg)iWU)xkjiU(rth7=-QK_9m5p5b<6DSgX5@Dh;?x(o_hFOlgF
z08wwI;7Mw~NRhAvDz1w$OMWtTkri6B^hoB0&M-oQ*c<68r7afauye|W3wvb9TSyjA
zily5qY?QIPeqPA#uqbxN_nHYw+Y|=Gy9ilt8!IIY@S#|eI9UUT238?<fKl}+B6L8*
z+oFUP=G=ByT4lz@!zmG8ajtJ`Q{Drx#8R-8{))RZk=;-IAi$l<Nh&Ak1lVEbaV*l6
z9z_KknMVH6Q{ZFk{+x6KD3dN*+TNn*FYbP?2cCe9mQ~f5E`O{7DOpw0NU>a=6e3CO
zGpWwZdD1E;wHc@Kh=_v9&u3X6xUZB&3dWsqrWd3JPwAwUYIq;o!y|%3_KEm>1vZU?
zj1&zrOUH`RZj&xxaZ07>D;lY;a)=G_X=8QS*Somvb>Nk$_683rNcKByw+v#Vi6Unc
ztL_PPV?u!vCRW;snkS4iz5O^qIj01F+U_U;$^v*JGCZTIP!Tu527Fn~itv?{96^P`
zEu5inEbkJPNJbp<LA{VP?e@-wpC4=pejwRVD)&#Ip}#}Eq7z=ZtNJN)w*OFdL~M3>
z^rS)yvwH<@%{9?DN5?kPNtc`W4tP)v0I^4q3MgIQgD$XVDHsloR|Qg7Aihn`ZQM(Y
zghhdKoE62FX+J;uL*FQ!)NZRmAtXuGifqOd6zQQTK=c(PVp{w$qMH2`;a34v`6dov
zV(8<Q#Ve!o0OzN3jE^s^s<dAoHb74Q8tfz<V~TE9+7y4pQ$t=b>>mbZJ1S$OOlA8r
zZ+}G<R>oG&&tSC+UNa=8j*g@f!kA#;ljqls8DLNh)IePQPC{pL2;-tqgA5C^J<mL=
zqT}Lst7NE;osRygNI`+;_Ko~Id_m@8nWj+S=I&V5^#}&gJOfjZC-#j3O8ccHq%J*b
zba$va42=cNla`z;k45Q%3&rvV4btOMZv0b%k&R>ZjZ(W6?7otMY<npX07km)T;fbC
zX)o^yFmlBuq1)>d#)QM1Gnu}cyAmC1T9TNVUkODvalJKZv^dgEA1})H$Iv-f8$2H@
zUAhzxzo0gaTVy>D0r9y5<XGA<8^xz`G2$5i9(<v&U<IF}Q|$#sZA+ecsA$$5cPYw+
z4YNcfDn6;d9F-kx5^T(<93ZIxMG&}{GQH@wq-^pO$KZ6LJnKhW<;@gTjEO=9H(iB+
zSS<NDsjo<kj<jsrpwUr*xy{Mi;;<3KD^zJ_A*gr>ZH7vWRhTYMwj%keglDQ%rD9r!
z37(y&FqL$J6=&Xa$9sBqlpJaUUMh3a%CoEDiYJQ&;!3j-bGUBZ9(N2uN77k0=@^YG
z+Ki|%v2Gi_43HQgP!=m*Js{4eR(>gbfNp{b7RLuV@iA;YSS{Ak;3jKMMh9~S)UIRF
zO(|$16B|TY3O0ywLr~I&QS^n^tw&f@45(5zlDao+LAkz<$_8#}y(}A^bhbI_Id(O5
z=}8GY2I~b9uq*(TY-=BPm0tv(u3lnyI)pM6JlH!O0f?a3512#ZNTi2SC0kGxE|`zx
zNr>Bc0H6v&v2lEFYyx2-Nr^#4)liIbfm8N9@A*W9%rtqSCOCNrUh0D)I!reeXq^_1
z%u$Oa5V+CEsRw1fPzjjuMGSsGmQZN+6eOexlripcC%+?|k<9QoJvF7-$M6Wr>jV%Q
zmayuL?E=jxiGL}x*BVdx&7-HOtw2NLUh6R>U8x0&$dLSrW_!H13##?deyeHJ0U<It
z<X*H)Y4rKf%lgQnr*aM&$LLkuBR1%AME9n)lDpzkD!O-(0g)3C-RuclTT$#Yvq;hO
ztkw>}G|g~qw1l?ouCU9b4M1MS?BNpG87x$e{Bi2wEMapuxBw*{mo{Ol^3wC;nosaO
z(cm~VaY7M6JhuH3nePXPzIHL4*GPb~t;fDiimLLYUtulL07TJ|A{NZxwa<eiOB+Q~
zqR*0jVa<_KITN#Tf#Wnb`4b>%Y79x2_ife*=68ezIEWjtmROh~sowfAw5YP#{RYC2
z=sA{J*W~KSEz5YZ;VZ@bTEMeMK!no%mSoT!iL>|yG>c#wMk6`NMV|gpQ8zB#ycB9c
zCOOTUeE&*u0U)^)6O7U=uu^#F<*;!~7DHGg)~WA&m=bseo`@$4K21hYfCwbc8pgdy
z)0?nfU@wv{r`fhyQs8@=$MbP~gIghzf--)@V@wjZW6el)47dpN$NliL46HEfp62c}
z2dZ-q>OfW?Q(zZ-C~`qfi)6la2~szeZEgWnn=VXWcVdqeh@gon(=4mFEbd-|M*w{G
z$yxC}NrunLir&yen6bLt0Lx2nPpk2gMSbRtU)acPZPGW)%MOoA!=>E}_YV-|+%+bP
z#&3J{sY^r@8zvFeU~;g1oY`A{pAiSt6R#c~d0u@C4kRTi-YxbM-}a`?D#}Ah1#O8A
z)=JZx+>o{FkxsK6XIst+1HCMsF{dnaJoYJtU+tzTJ)qje%YgNEvpErwykY6FIePee
zw+|sBwF$A_motZ)g>B_aCTTqA0TMIpcDL)K*3ycUW%hz0Y^N&x8dblP&0@QgHOg!K
z!CdODlRP+}0(p0n1o%yRyT>G`vB4dhZIfX}Zk1S;Tej-vYaHv_eoah{`?~GdYI%x-
zcH5H^F}~B+sLwleiq4R%b%(D(KCm#izc#dkXP0hs-{ke&;n!2@taICwlez;2xb4@(
znaM4>{ntDaf#<K3N_4n9pL)l964$!@4=vC6wqK(jz;c$v0*WqD?JK|39vFmc1z7Tl
z#76je7g&!L(B^{d!)~fa7wwL3!R3Qt(N+n?PnQW28|xMYzKAi$pwSN{4Cd!#i^#d)
z?yLi?8VvwClZRl*(Z%|;>1Ksm%(V&UCRvY|FGS%y<8_6-&J9SFZ-i$(>=$lJso6Q}
zo{~BU{l_=juaw)6%c`OvHW}MXO^|#%l2+V=RPCGicN{N@Q6vTG1Kbyb7C<m|;rwUt
zn{4@FnF>2aQaVXCG#LmioML;zBgxG{Yw%16+*2+=HIk?`{|DF8V{POepFl%ghPA>K
zO`~|Kpr<ZC9rLh$#`wxVlq!#*{|u>gDm*y~i6gO~N&F9|N<~3DwvK#?7<?r6qx>|2
zb1_AE0RkgQS|53PG#i-@N|L5EE=U+gdBg|=woyJ<+@>WVKQwdbbW)|meWUi0OU(cx
zp1=c93Ip_goVKajD)MC$AS=^O(tr|Td>qB@FYe&GF<C&5dQuXsLF-5qC*8x!ge26E
zBTC9LK^V-{6LirucRq1j>7Jw>vvs8udItu;nj#s`6<`^BwkuO%C>O)6n#75!F@wsW
z6A2ubaPnj!e5J6_vh3zG@7wBt<rnxL$)?KYf=}b2SdWYIQk?R(gz|X~3Mqp2L=RE~
z>D(cVL~~I@x7)%SjTvHZ?tmjf2J@!&V@y8aYL>$roo6P;7+(t)LbGAGfPH2;CP>Jr
z!I=R-ZAQHlN<0+@;Tm$-U{1Mb5puKCP7~-UZ>eaGYzbXU+*iB^Da~#PN4dl5=~W|{
zN#P)0io#;-nL3lD9u(Cv^t;j1&CPGHzIc?6i5$R*smBl07&(I4kDzU9ew8HP@k{TD
zM3`F!gp~m*K7rQ>@gJ`s!=GHA+~He0!wjQf2U)?O-IrSU!i@mkn!!ub{So`6AYYJ?
z1$=JaIh0+&DqYTPRwl%eivGNPL`{=L*AwmybtI&1<q>+;Rr0h6Y#4Kiu1|LLWdf^8
z*4-iD^gs#|!Vp$=qg>fc^2e2eOw8JvfyM-OlRB+yEw;~y$ktCOj~BG?5m3bwh_!ma
zB0m*ixw&2ji|FxKC`PhlY?q;;^^AsccXDFvVGHJbl+cQFHbKbnX)K@tw2>cX9bM3n
zqTga^$Gw3*yVW<WhzfVg>=bGb*f7bWB?G`jK&RwUxbY`Epup(HBd-Tj<$^Kc>ddC}
z4n95J>?`6G<NmoxHNw0UU9T$U8mu>cWRi+nn{Od~QIoNj*PP%d`8*O*ko;_585MSf
zDOD^b{)`YDzIB1VwiD$_Zd=b{5MYLKz;;|wOtkDD92C!mqSkY_?6*l;A#?!|k+tZE
zR;ZS5!I?<(h9qD=!ltI12V9~2AUV4Xs8)YTu%7oIQIFUiOH84K0I8X3scy{z$7I+(
z+zlI7dDJ|u@YLDQmttXfL@3#%DPS?6ZVfb&y)p9T8J1yA9ZO086Co>s$ErB6*{E9{
zD^3HkBF+@}KvPl|A`_lwbAcl?2No-#3==_*TP~P6_S=ST49M;ppJ>hrLGgfg{iIcY
zBGEGxJb+m?NMZ>C<CZ`Q$<vFb00eX&>7Z}8uKiBIMLigVnlrIyrLZ$9Kv7o&<^%Ns
zq)2op*=)oB<%7x0Ye$=!rH2F<i<5VOSVl%b(-Ljd1SQ%lR#04#X7UWu8i8YfK`>qg
zN~NjcG*WkE$EK8@Bsaz{SXxU29UHp@FHKLtO4H`4(-7qGOQj-IKR`G-Fn42ic@ib6
zoyxVKvJp<Jgd>HAKEXU+mL@Id)?|!7(sFUy(Hf_2w>F~Ahmj^L{AN)Y9fom*xB=X<
zzmHWOB3I3OUo0)Vjc^&zF0XLiMES58)s&St-q(k#AWk$eVpj2pcR7*f$lopTB;TGD
zJ`x**pT(EBTe?LOl$bpB{MrF&Of~}Cw8zR@oRP(Y)F&Q&6rCw5@<^(dt`NM_@D0TX
z>dLiC_zz4S(pV6Lq5lv<As5{{h<-l6Mdl6DpUwxJ6Bgs9S&WSWsUCjzS`0I(k@Z%d
zc$f4}TjHeczO%NSD_Y$qn3AA0b1qCzhj6G)t4;yL0al(UZk9F^2_h+y5E6Bj_GJ0a
zWOb4;x8Z-!&_S>X7a>b(%7VV;|7K>?R07u_LZ~hZh9AS(MBM9o&7w)@b1IKwNT79y
zwIo@k8M1k$Aq(ZziNZu-yHZ%9?|6k|q>bDXm8vR?<%!Bn<})9GCUOatCn|vcaNL*h
z2)w2qBYhd^I>CkaTpADKl)D!0_gG~PHgw=^Ik_0H+%fenne-vm7~N27Erk!j@(O3#
z9?zo(o-+5jw85LMi=rdHerq#P88zt-v%#^BM-kzqn1gO445SH}d{$;HaWO{7<`Vx-
zl6ut9^IS$qhlgcA{Nw!B=pRIBb-Lv&r^eI^Dhg1JQEn^w{d_JAKm#8R_}tnHtH4H{
zMdG_q<6e-kCXG=cChqH_Y~0EB*hpV%OP>+8<B>UXRa36awnDj$3X5v#Z+MDABXNCi
zijL!STc};0aiZ>u^wqf-i@_{xq%YIf6E;-Bo)(!Yvj!UIgd#yRnyhDYvL{Olv%t#m
zthQ!H(US}5WSk}$2$nuHZu6L%bLpBmXo%m~5#S~qzOfJJs>9A5`+)H<RbwAeY6`L(
z`#^zTiZwA3UcE^&^ypw=!5RHQ7XY5%blNyUx1e#@sk$531|lQv9`lwuXv%NFwOiv+
z1ZjjkLz*?QfoDAKj7c+Ub`4y9ICg2`RjBU9rt&w+Tu26mN{tQL(u`&-Cig~?hOfY)
z%6fTId%iA~Ee9{CZM@_YH<Q91zpKeQ!)WQjP)V^iT9%0}s0+6A-cheRUU8l~rDY`f
z4KYn#sUIp&`zrAmS}=_NNb_W=HRWs6k3k&z2>$sp7p}z(KUMFFzQ7uL4NE1r8n|BP
z8ZhK(`6P-LmN9>-E`|2wqA}9f4&svNE(Kk=N~||5g(>-h#DgABnQGf)#lR%lS6FsZ
zy>AcxJ+mv7!)CV=61peOEu*vBYu2jll(8-p0->nx21f!!=~iJ7wcMm|*GDy`<VcL3
za=qLmY$lCwq(H2L)TIWeu1pvZNlO`SI{^lhQd+d=WpyC86nr9plz^V1^jl;N1TjRQ
zkc4eQN=BD>IzS=;^yDtUMUp+;LN?+Hv&p??vYrU#5ZPo6SQq<Lz8;n1X>j@+q=;qj
z!Y0q3FjcSGU)oC4o<@tKk4fX-Df0{iZ6HA~D5z*T)$X?hj6CHz5GhO2rvjZZfe<e&
zuDDh~VTjvYWg52q_TQ;m_O_z~IK0QvQ4)BY698lY9=AR@CjU;~(F^$2zf+$7dmNJ7
zg!gz5qhlZ3`YLqUy8U!2`h1(;QKrLF?1K`yN{5{lo{#L6%PjFtcrrcMgyf<lg++vh
zp>TMVJB1u1D+qpV@fZqvF4J5{MUWlDs%l1qAG5<s+oUN4o2Bi_Dt!a&fhHzGDuON$
zFKjD9u69i6&$2X^q?MQTTcL3bi<u9PgOxfsKspLi1TaXdDy-WYp(e-~^M(c2v81tH
zNbkY44m}Ec^ePdTZ+k@JgDl6NSzifwm`l>fEExo3BF5=SwS!3Z^m)w(MkkI%5HBAo
z7O5}&JzGceTGZP=7~K(>T-1|aAzh@nLa)stttZQs4cbqZN26r^HMMhkM3-_zr3A-O
zy`4=H2RmcWBe|x8@AJp-HBG`nw@*dY1NNCtNFF8*88?B^Qti!g(@0O^5Uk+Z`iOdC
z`t5l72jO4&6iI9!-t9H;_ULBF(1$NCV^7;-51YZ}fa?IkX<rOZHqR^q-5)6gCAcK|
zdzvprtHEsWc(ZX#B22vIlo!Nc3vN=Q0Hw^TF2?_fSgUARaQb>W5T0sFRQ`!-h&Zf=
zyC!!0lqVv>BrWCWQ<7h0dZC@Hxf->&;B0AEa}NA7h5UFHuwfgg-rJj`&vJSRNGWx7
z8ztqKj|ZR|OQ9vPocTikVgGP#ZkCd1Yuictc#xiNd}`Ok3&oXwA}8$PyAmhVOf1FN
zJ<qYyvx@aBuCJG_Fs@Cz7d3=rjka@n;<1I`(oVTp+DyMirLsWwkcW;QihHw^q_;Pt
z+BQ#M7_5sEZ_R6@vnj0jQxQVL(|YO(yWL6}0qiL7GJCPc6LVX&^xQOa0L&RONI#=A
z1%D}*-_#0Aj)R5k3!`u0fnd(try;&&V*N+o&Qk%#AodlFB{yXZPmK(#y1kJxa*|{~
zWGHf??t^EX9r1*!Sl0BgFq%<ee?}*VYCsbx1@{?`#Ks4K<=Kyl3~BTOo|>QyY91)g
zv2IAu70B%&1_C_^8DPIKfhG+-xLjH<=1crZ8%6m5G%aIKbYqUoyj9q@lyFg#YCL8*
zF_K37b|zLuMR0-6mfC>lQ-maXs$)eZa|ya7p>(W5czTMz!DK8p`d@vbmK)(dMW^U%
zZ5=wQ%0o%-4)2vDctu4)iq>~BQcOG1RrCVFn3a#!hcfL(t9x9e{R59Epb%rrYK1L5
zh|_vWM%wU+SGIEn<pa_#fZc0Tkm%mDWZ*oPG2YmNst-IAIZs5{$+$dkcy!k^IRh<I
zyCcTp+*2n>zC*{XMA1HxT|cDxMW{y{Xd)f)#P}_Mq{Kh92aPgy7{{18MGL*yGDyy!
zT_a;7bQ^mzWq1Hk%w*lrAI4^e=U>B`OEO?v6w}+ITC)~hSiyKblBT$NbxUReWmfhO
zKLIhiYT-#i2$HAS2r3lN*3AmDKk<E@3~9*se7gp@Xh<Lp>d(@ZWT{LQ!27R8Vq59U
zjBCz&ddYT3yi$-`p%mrQdw}MLt0avw4#c_&t1pKfcN+IMN)PwR4v5=%<A6&_l+mY>
z^0YIaG1#nAxP$|rZdrNIqrei1Mb1<rCKxb41B3$EU`$tq#!B?045?ZmT|ti`kR~$k
ztAI^O@08?Y+*%r-C>CXTX4Z|Nhqx;SBiqbwLctU_%RAe-P1I&Wc9bp!mDNIU#rIu8
z_><%u^BFhTrTZk5B;%v;RA$~LNu{OQ=Lvt5-XA_sg7uUAkNo6M3E7t9B$;9dsfnK;
z6HWxaC6}qbVU%aZlX~zSVyPpIM7^SP^W*zrme4j8?0Sfbjn8fqvxsS@+gOF{@sbP#
zcRKc5x#Ui;vFcIMgOknG;9<nEKqQgtrFP26rkz)~C!`<;l*J7|r&;xifA(EE{d0^K
zs=dCudpd4jle1v%7Im*@c#1M5<M)7*Bs@{b?`#*A`7d#;?Q-%%A`R-khx_C!G}wJ|
zu*Nk+qSoozlX#aKYW*oO@o7@t@vyO;+t%1-^5Y;_$*Sh@V(8!VBNKLFA4mk3DM5cE
zc&ecq?;|Q4y%V3_{xq#(Vfgb)R(YJFI-YWZnV^9Zdj$A%ZU-c*!1K+y#ml5{BDhJd
zRC;2zJ_vksb$xtRkv<AhQMHE7EEUMCeQGs>VsduN<z`nLAGF5I7gP+$muK4D8bjiS
z0`E<S`{n_uWV3UVGoxDYR`n1msv+?-iET43HV0~bdjmuupD$h;dbJtJrl+8EktSuz
zCOafqX;^Pn51bNh7~Q>9pLqo>#3{K%RFz9)Wh_Q4ChHHch5}$W;;pEKsaF!oW+T8D
z5MA?$Q)5Yc$?foC_NYa_61=AjHve-y`ouS+w`8EvDv2eKE?_75V#PRYp7^?wC%&il
zR+NmM6@?7kEWtW~8Y>66@*|IpZNbqrEK+-hRj8`&3O*%FV%(T%^vY71c#C;l^x}XF
zDwgCg*|UwHaha>mXwk?LMX`6KMz`(hVeEL$=~K7tnQHMJ>-n%?0|gK*@D*o(C(}g%
zAjry}p0mZcqG~H^+l`w-jMQNPZqzyuX&%@mGLq!6>KUE!{scy)XO9<?ou@}cb0p+;
zIuGz<)QbUx=quMl80-t37HCiIJ-rkYw?*J687j}1#ZF$@wvGTZR8^}pShNpgMU^}u
z>h$z#FiS!j4M_>T#}g>t1#>%cBXk0}1TZ4i_?Q&2pF=ar<q0+bGV)+ntgT`d>6w!>
z#pFm;lM|3z#$DbJw@x_(I<-u_0#h}v@q7j(U71l|#U<*=lEjUhGmtq6kC9-?)zra@
zzF%n?h6?=|1w$8km>$}I`pV1k3&rBgIpDGj`R$@6o3Jcaqrp>lzznPxpMl(wZ}a>h
zkJJ01TpmDQc?3ID^7bc>pF*SG<>E@QLT}7+!23dA#Q<V*5$4=_acR4dl0}I;%!w^v
z8dQrPe}?u3Qd_@j(ohfN?9vHWy%xIGlVse+5RKtj_1{kQ4u_-WFmC3&s3qM^)11l$
zm=dlCDOE<#=u`SLaxoHxXx*oBDc_oiXuT{QW>We}?1&{`(;q7K8ST2NJT)02Hh^u=
z)LHp)tgWC8RY<R%*WFXEO8FU~OKBn69;thwh0qhxOQ)PX6nvXPWhPfyCn+K~$;`(}
zOpJx<DEAN0qS8XXqA|T8oFzs@TRN2a#bk~t5ySlZYel`TJ*9@Q7i(dkSuv~M$X=N6
zg$Z!6MVGzFO9qyu70f)nK|7Wel6(pSIy1+e5t6`Jv}P=%=d6<)o03RKCl1dRASTwS
z94>*SAdhT;u@BXk7fzB?;Amg=D!ng?98o1J+l9hruu<A!Qi_`h<fTgmB(Fr}I&g!7
zy=P4hjyPDXnvd)I1;I3c)nZ2s?a{Ly1~5GYG^)A1`bb47B>)!)LF4H+<(>5k`CeK&
z9;T*e0+Mmk?w|_N!DZo~_0TVBfsd&&9ov@l#=xei{;G-(p7@iulTqmcD5mH%!hzg~
zaOXg4Y<jHiIk1Jula#d*9{Ul*_FHp0M{XOQSV-~jxu6ix29rTLd=+P_d+safGY}3e
z8T7y37`oMYWfby!Ftlbq+GBFC#+ABUWD*Wg6ZCnmDnD?P7Hm!z-@`(x=szDej}=Vt
z?&E03CQ^fOz`13Abh^f6Ar9#6C+p4Q=O?-Wcm$dth;>*C$NgH!TVPtFz1yN?Mk3>?
z8%0A>cSB$y(u`@o6ADw7-+P6^?zga2z)p;F+>Fdn>gd$a1SBtS;`DC#=Ppb5MEoW4
zMqxJlrBp6<Sm@*iSxdz2sXCDRe1f~4j*Bf%2F`rZ92hRZ9F=qBLg!a~hWZ_x?LwtY
zbQj4SuN;L1#Yxk>#h8uFD_oWGX*^lLV_=#9w0N*Fvqaht&l$|~AozWsX`~O}GT{0f
zaRx^~>nRZgEUVI&a8kCmwu?afSQ|kg<K5&BA~Ck!uS@ot>Yzw!SJvRz&EiYq39Ofv
za_dlvk{0PhITgSJzyKCZr+UONTr!hvFLU{x*eYF2K$4y$<tzT0G*BCJAwj9Sa(EiM
zp6BO~kh%)}<&&27;EL*<T^df9)Z+Y55W`<6RtByT0L%N6m#PDZoze%8^vD#Tr-Q+=
z!Z3nxF%(IgB7Q=;43k3&j{w6t<Dc9aP>;LM(Z^b<+@8@VVv#K=HHZyVj&Ex0OlIP-
zN=x#9NIXiz=pGvi#ezRj?0R4jlOTsTmNN{4n56BJ)TG}R8B8x5sY#++jA!FzWeUl3
z4YqLL66RR9L$ji}+wf~Rx!|KpX?;Cd+AiUU<NW!@os)aQua-%qt$j36FOgtsn+Kj_
zzXHtY|2SfURf@%Y)TpA7Y7r`7J+aWS?@He$(l^LqHqt7-4V+eT;_v|VER1w!XX&J;
z><K+3{=5uucK}mWxJb1|WLSB<Y=)j`6St$XJkuTI51^Jx6!o;&8TgILvK|v?m@It5
zt<oCJ>Ihip@^<TaoM4h&cnW-JlY1c1164;+<Pkv_m=M3+60@(Vwe|s2V_{h^-W@iL
zP?^%Gl2IkIF(*Sx4T@;!u8;8R(MUQ85Asv?<uP?LBAIqn`Wrg}%n&-8`u>oXeE15e
zb^12rf?;XX-~s1gt&rIYO~=|bp3ye$GM*n#Dny`m5TChRK)+=A5eIC*QsXMENK(;e
z9e5si>Kn0J(z9T=78Z4VemE24uEYDK*CzD{o23>M$=RU?Im#ee9Yx2;P+bB-2Go28
z2`59wY_jlO$iA&j<_X%w7J-NSEs~N`J*-ADh8#SLMnO(1Oa5Mx#Yrwn)s6sjP5ylX
z{%;-@W|`};d{}QeRb9ne?H0!g3+fG&fQJSqUzevhN!wj&5O>xf$nwHcRYI8&s?NKh
zdlivBBB57(r4(KK=t8xEN&0*+#U5XHd&iTV5z0CS+V}KCnb>rw&&M*gUmp!*r|p1X
z4XH$><z%l4-?7&K!4*=QE)@&w%V>+OxVDbYatnbXBmld5qK64<1FKmCii1!j^ePPX
zfU9KM$i~B`3s3PbEgWFhe6)Q~bZTLT7VCzpF2XOi*cK)wr1D@)^Tl#(J&|{TZuq{+
zw$p8q>^UWq-UWuk6s9r-A}}}gobyQ!S<AD&g<7CsdMc=Fti*1xokwc|w!<*wA%fu~
zSq}o1el)XlN@Q6^b6-y&tOShT;8z16F$hA6F<*?XJ0;n%HvTbL+_aRl1W^zxzo?Y9
zit-w%Ai^s4=)V<9tRSsGRa>>YbOaQUI%aBkel(iAhEINSv$kW9v28s+9-eUSL!&rj
zOTE24AU79=5}+=$I8oqP%$T~dO_=NmO$h)DS+EB?jHwa84|>D+BAv;~x7O9dxmJ_`
z9Czh_e#9m!(P5WH?&*pt4-IE9(#A~Y7~4;-T8KIJL^qp`{AQ&k^K^8L1@M&uH{5<w
zgvFF38=ZI#(~2gfmuMyZ7?`Y(88C4rq%1vMYM}6(Tp2tC0=VnuPRd2{_pFA^IUYX7
zhBSQ_`!eZSA%j_k#K9Pwy2M>irf}>RBHD}FW+mXh!Q4D6fFc&mfR`k4rx?lF@^UdY
z8|<t!7>WT`OA|;C3JDGC$zq6IN_e?sAJPp6lb1$ygJqud16j(Q$9RnlQIfNXdl;_=
zpLD+1PZIz_$D(2g&q>A2S0czFrCZvt5E<z_1PEz6Ll2ITu;Yp&KC6xJ8r~9VOl>MS
zNjJSY1vXh0We;fZqPqA6b2DPN)2YP!WM{8q0%#D;fulhtKD*KCdSIz>!I#eUSW4yr
z5GWt9^n`HsmC`n?y$hQwq=S<2fU<mq2TK=xyOuIjg4MzmTItf{5`1SobwV~OGA}0d
z09Fl~;WdYZwl09DtVF={3C=ItL1zNwFeCq;v^z_V^H{O~y_Ga;vs)^&OG+FhQE#09
zk^n?Z7YUG}-jX0l;1UE-7$i~~>=pDHdIkN`PyL;U_=f~1RaKeQm4wXvhX@ZJjvsf|
zxtj^w6Zv6c^me(No%{-xM58U<YnKXx9HgmJjsb}d;`tiq2)hU&_)U4Tl9_2o0`y~p
zSPcHsu=Fmks)#NIMfrCpJUNLjTc$q<6<>hb!+Ez>m_2C;bD{z6x%#9#G{hW+AJdsZ
zm!qq}4dpG^%M6QVluybquB<tOczGEnWpTW+AW(h0C?48tl)AA%*K>glji|i$k9ij%
z58$WgGbtu7@z8*2>s6zmu?;4p)WX`P@wNxgyZ7PySicJYc`J%cv#+<fWkqZMdi-bj
zb1lPIkAChUz?T4$T%b?y6{?ALlf253iKwk{O8CHkNVn^VfaW-m@1{LQ+t@Y;ncTW=
zYlcVC`;**jG_?~yP7aJA$w6p8`8hPN_3d5%T{S?UA5RC!r%->N1LS7=j!K0`tZk)6
z7505P(S0nS@hAE$lnTX2AOFZ=^iLPSk}+eS*A><=`@uU3QtghomSmK&zg~zVb1GPB
zC5inx)kh$4B(QI+NBWObnfugSlBCab>8?1rSlvZSa@Rv7a85>d%svoIhF{Pu?tH;z
z65qiN>aKR?Gy9fddo636!%%~-Ua>6sriwftdHvcpqdODJ_KfZ(!@q@SvHU@zdxE^9
zrOY~bsPi5B_hr`EjG4-Fr?FdN&10R=)t>FkH9)qB&8e({`zwZcH6O%O5_!TBI|s&e
zjZalKYm19jVmV!6c@FKjm>k4o^ZdOSl@~C`+98jyV#2~7ER?O?{mr#0&v3;UwoZzW
zC#cFpA>Vw@IZ8XFyD7@{RYq0pd>DD|tzxH@i<Fj5@Gp0QX}CNrZ>O}x0unUUR@%lk
z|AkZ>q+@MkBGw1h1DthU+kLKnXzP>baFwF{gB2&g3G^<}LT~@jNvM+u4n2pylJ0qn
z&NhP7{`F^;jW{m@>&rQBlam|_BdXbsvccs%aF8e4-%r2a|9-WF#C$nE4Pktxma!#3
zs&NXf9`>M2EgC#Y3vAJ&K1D(f<Plf5rtH#lWFoUcX4*Iu652!pJpIKE_BU5I4_>-8
z>O56DIL4iL!NEP!m6lyH!5#573XyI3_?{Ck_WVSM0|+m421Sph(?_e2vjkU7fB|Gg
zPAN&u^2KH{`b8EfI<M&~G6}nY<CUkBAg7A2N?GF_U^2BzF!}ZA_O5Kg#%#KUeb@}M
z1#UDdT3b&G<!CHAmsKzkhGTy~)chnvFKDTilXu~R%umzd;o|7sN3K)<1bHvDD{R=)
z&H09#PD*my(zaa;6aI;BQP*@%N6Cq?as&gLMCa|SmUY4P1hbfwmJr9YgrXGP*q|jP
zbuwbNsfek!4c~ohH*?bWb`OI7cW=XMW*cbvTcB`L7Z4VLw{d%R+kMMZJ8wG*P&sS0
zK(f?@51(gL<z}7Rl;>D(L{d-GBN-yW;OSKjmD-oGx=9M><!US)hFMXsIU?N8QGAot
zA^!9mc(YTSTZXuYvy{!pD4^H=u`w9N==ot~9;eXU_ppwb=D;2(K^L7b5+gdepWWk>
zvEZu?(KWS}qV(7apkJKZ%4q7$RZ+O*>KQmC*Rr|u%r4hCmfc$A*ASrc-aOR1GHu`)
zoM~-uKL?F*hwZW*E-LkD^<HB4$=xjJG#>)q?C@q@yL21sZiYk<5c2qsoUuGQy~z?p
zc!O|!93y4X6*wb{QLZjz6W;COobJdfj*e+}2QnRd6o*BF0kdg~`A$3Om4!epqdvR!
z4-mF~j7gccLA|V{9pdxZ3>2P;054P_-G!nB<g!<x#dSaLR?U@zt5Us7Y$GX>pgC86
zD3o!d(mAIy57CRZ&;F@zesfV?BY(3evgs?wAN6C6|B*Ck|BfN$7o#rx&itG)QK7vE
zUl*Q(LU1y$9aAozVxcp|Lg#$_Ef*i;Tu8{tO5mMI8r@|iJWE~2i-gOnzPmc9u8yhN
zFTH~F^q^EJ+*w?-o5ksQ@wr^5yrBlz!9JkvocG>HjyOo2&3^EN2{>5ap6s1!(Ver|
z-?KXlle1F3&eNifnUfDPcDV`IldG_Je;v;C9O^TLXR?I-+c>No4;j4Bs|&vgN7XVz
zb&$*0Lr3?nZ4i_IL3ZPfu3UV`&LoQGNI`s;gRpMRG;`onVC$eB7uUKAWb%bvK%Q3|
zvp?HWfxNl8&#Nt-fsFdWEVYolJaO+ct<wcd|7ib`zpKgOto#;TOVh?~*0(@eq{poj
z*XYe*!{j1GLLR1YPv{wa8l#uLCJyHeoSb$`o7F4cW|~hsGjD^uR1BaxWFskopGwjk
zfADB+dAs-KBSI}(@?&p94*kx_u`rTQ*yuEfV>z6JlB$uJk+eKLZ(u|`nW!9ikO;}i
zt&l{MyYg=7tltTTdD&;Bug98QX$rRAcWz+l0R5f2@Y-{fZcAgA^8KmSQhfTWDpF5`
ztuNru`-QSMMDk61fHSn<g^u;PY01cWG`<##SkxMIb3kcU%&^=42iydi*VWnnx-46_
zi<19b_W2^fs@~<t(g}B?F&RS`MTTx1;W6vK)tmFOuOikTClAWzeO^13-efWf>)`Ji
zo-bat`ltRt@8tzBe^Z|NTHD5D_G*)1^XY75ccs>d2_l=6?w-(Q(a`FqMnXI0eJSEZ
zvVY2}+nPqRx>JZ{K~OR7%6662i;;*1*MNf-5$IdO>Ym1<`0PIBQXu&d7T&0JxE@p(
zqPffc+nNP?I7^s2xxC*Jr)iZMPn3GK=0s4DZ%p*BSNH$fR{v<>EG+wriSb}DB&q{Z
zsv|_sxKt&+>s8!X(fd5}(|E>lz$d$?0sr7Aj!u`NRH(P~f6$oO4gq;Nve?ZdWEuF4
zv$dxYu`;B!TBBaw^}<OX&Jy~?Ei+XM#k|*i+`7_?z46rQ=_>Xes@{icTwaEJ^|!qt
zu&Wp67YG{noy)C@SMiH%06&>x`!pK&$L^SpS!+!;sBLy<C9~StE21-Y9l?VZbZ>+}
z4~H7Y1o=gXJl<YF9ip2<MK8pb^XnsEi>q~q3-C`0D3m{f0@JXt^F4?BB)dIN^_Wfm
z9O<b-Ey}g!{}O=SEbwTS#ewmotd?XL&x4WJH`r)w>;eIPE|)XBlZtFgEwaC&8}k8y
z9cb2~U^vAfERSFjn$)n!v~`AkwuFIfzH0raMk##iJwlt=yIPfGF#wcIus{i1m2#yD
zu4T=l1q9V{FvXr9mB4@OaNS)4@V&MKJDX2mjxukJ-BB{fE-3#Z)iA9-WK~^Nnu6J(
zChifF-|61m8?EeN<h!VpE^E?<6i9INPo)oSLQ`r!^6BPI;Y_!%<d-LD7)LbzSZI#Y
zRW75N$yKIxoEW=|Q>>Bbu&|Gd?=@d!YSU-War_9^h)4ZAN(^HV+%`YCjhFD|Y|Q1b
zNgWYS1_xmz0^YX(ZAU;-4DpjVmTl}J|6Ev79$^_L@7*bDuPs4Xqw6wJ+T@ipC$7z{
zWj!U+MR}Z34B&-{No^B3m*M9X2{$ID1>413q+XiX%3Mb?K0AJY$?SdR6f`e`GhvIj
zZ@Yd@<IRm3-APam?3Cfo9Et-8iQ)j{USJ?`9p>Ndm27-x6|f~nbB}^jMa~M3r9TqZ
zT7Esg%{#tzGe23d<S|UP<af>;3y#94B!qUK6r05`ggbb5>7`nQXmu#^0FyP3jg0rt
zk-);y31s>{ZD%V{u~2wNVMuwV!s7jWnNAr!5fmu__Y3$edLb4<YoU|JEJGTIUDtGA
zD18}Q5&^KiSl6n=dv`j{BZ8loG)xKW63%Af#t5;q?I`ZoVZKM>R9jfkQOGl!I9;Dj
zrkneB{Wystj`k{+PIFN7B|Fb9Q%HreE%S9*d6z}dWQ2RpULGWWj4gzuZY?Ach_gS7
zac%_a#Tg8maHZm)Xw0ac(m}}2?4^g>zPZl>KQbmtVAqAa<;(4Xs@s~~C_Se0d~mN0
z2o^JhZ(LOW;804<3&N*JeALKfV|Qzf5e5`C7)C0WFO99GB4%D1^#Jb+oL}FuOx{fF
z^I5heD<{wOuS0al&8@qB18wp{1(;IPoAQuk=Gu7}NmmmTJCw?oP^y;=5y(a$$-9CP
zuI>`uMi<n?Paf^!!)|OOH<OJ-bK1t?Ncz5h$%zu8?Vo(SIeEW(-iH=QG0hnZ^d91P
zoaS)W=*#A37-&Gr@zF{ZH=(>P&G^a;Yb4N-6{<gg+IxJjccw4kSix4Y_ytY6;Qa5M
z*EqA~&+?$0X6iGjd6(X+pJ?<Ks?$VDL0%#Of2|)Ik{Ehg$Bj8TJ$p@)bRx*=z;<dP
z;(GFchuMu48>=?=z;cw_*qiMbF}tOWm!XXZhx<Ewo6i#BY-eaeBf{v?=aTF9ruQ;W
zwJ^r{UcEad$a(@icq#$PR5*TbYbbR0f%zwn_knSeeGJf_<nqoEhG~VG{y(#>GHL`q
z<U6)mrO8F9W~g^bwu!scXJmZqp{7qL9cckxDw%q92ht8vgCnw^p2+sxp-Jo7{u>m%
zDD~{4oK{SEc`ThSBr-2Pv_D|GNciq<?E26e0(8ERE>{tdGW`D2DR)2Je45QBn^1`9
z`2t!zaBAXhg8`>dupz~sA`TAYZ1Y}{H##!)&&y|aepk0UZXdG}Smu?Cb{i&lXV(c_
zDW60#Ayk93KTh^yetZ32x0<cND3$?16{9~r$opzk>frzo*LGp-IrUEzeVs>mhqK)O
zQ2``>ITai+LfIk+9G>;@d8Se_?lrjKp+)V$qBsb@@9xf@bq87IP>i^}IQn?qc@jl4
z_6O~w-?{bA^ytp<S+Sc7^G?bW_(;JF|8e!{bWq88il0;vhrVjSQh0Y-05R3wdFKCo
znL`#@a!cd)aX<%&^sfzN4OH3)s)POQk5G9sn>*Q|LqAh3R((E^H<#l1c6b{7wNX3a
zUfYY)0GK+0FX^2ATf`~+zb-@w9>Tp|T^L0y0>u<hPZ>G>!6neK_zQGFbZ~fsU`G#d
zs*<4@<j}EXc_ldc_TbSdqp@KI?E%2nrq8qJED}Te&O8dt*WNwxiH9v8oxWur0uxti
z${?g<SMo}ZQcI@u_0zX4Hpokg9e0i|<UO?)Ogu7}tmcQLThip$>FTpNmei1`+I$+z
zIMgLpE6!)3eMQ$|i5!O202BHMrOAAO06i^(gMG0%UH!h?ZCc6+V!C{$c@pN{|7QGj
z5XxVJ4>T(FccH@=J=4%G8_6lPQEwdye=SGR6LvaxZ~#Pc5)E-ZlE{Fn-aWUSy)%p>
zPJLfR{b@$hP5JJVwGFLEqWvCesO+R4?E81oLV9CJIsR^a*R-|*HE$heM$UZLK*UQ;
zd5je}Zj9%ZTh=Qs3q^c~VhyvFgUiJDPPe;_qrm1dcW)Bukh0wR=XAK+e0{voQYQlC
z5D&LRy5|ZnB$d0%M0J&2l0)J&%+?ghtj&|KDer_%WL^2yS6dM8{3)5(<w!Ut5861N
zJzYJ_Q_-G^a4_6T3Zwkn98ZE%C4@LQc4X9gRg<sf5U%ErlmD{?dYqL`;go5CCKmm9
zlAZ-!o_@#;PXmh=MaS{_!Xfo!z}?A<>B{Q8gXiDR>OVbW+5l4BY;(IG=Yhj=hfV>S
zpw?<;I{sksE7Gg8;NF$4arLS5LxrWUlX~Ma8lLwXo=W|C`DLZ?*B8a_gfGrMq`zx3
z^j&}DB-T~R<1P-HReuEPkWJrUd2T4`t}eP0_pa^@15dPZhgIyN!ReN%#=>C^mZowP
zMP|cwPT1hRB;zRr1;IuJm=DJKz4+9bOj{Nd3CZ`wex<-D-*G&+2G!usyJTV&QBkJl
z0d%ARKuR&YU1tUrc(pQbhv4RzLLaGb2oDd@MvVSeY+1v_@Ga5(k52Aw!E$dc%{^-p
z_Wzg_Q63Icl4f7oPI6PN5Rq>F=<9+qF`iKrAwL!C89GJ{2Ujkr)b@T{6CA8Wtkx~j
zhY_}9+oz5ha7cJ{FnucV>v2mO)n(Hmv;d#RMo~d`Lg9o7IFg;UDCH2#zKe^CV)%Ur
z_hA8ls#%c#IPTxCfJfEcR~BTWQ!JIVCQnq~6I^vq+rluH%3N%K^bNOb;1IIr4E6C!
zt60hF#9MW{S7#+ZqJGByr%oNsp;E--B&TCvdAxw!c#PKqjW6UF+=3K7w>QzkQ8iI3
zqNiKFw1A>ul{Lb%|4r!Cw%UDLoYY0h(dTy>?|RL>1WIM_^&lJRYxQvQyquC$nzd0U
zg6vMokR34tW@f_Efm`ab)+HP>mZGfSmmEl*8-GRC72`OjGvb7Q%BxtW>r4!g7=!>|
zlUklczWIOEQu&!Pje2l(Y)H;Io(bC4!K8q6*`r6v)8}9K^1mv8DM4yj^CP`7J`}00
zQlWeSi0<UGC1osU1w4_Ud})<22&<*%6m-HTpvWyBv1OB&n|tET{IWH%;bf?6s`X+5
zwzi&mzO>YledF6-_Hx`V<xDYGypjlPUL2djMt;FH2eVrx)MQ?Vuhp{q{EA!#rbTb-
zh=-{RuzN`%iEBNz5^kndFYfc#A9-PYy~2n{;9JSY{4k^%%E^w2>Vl}*2L#iWCMw?8
z&-{<05XtU(4bAkbvd@VFLJc0ImO(J3)za-!@!#%YU{~c>Jeol38>38Yl=_#C6=JS;
zIyeE47C>lzigums!i&Y(`|I?@Xa=R!HgB#am^%9ymO_z>tO}5TbKUWh_I6*WaS4fj
zGCkD5hi_7rPMuX%<;V9PKJE@5sFob0oTt=tAgQ#HsYLHVrn@hu`2F(@Y$7u$wc6iZ
zotLvvy-Q}oIa576Bnv$TQS!c%b?GE0d#O;&bsSE6z>6zxX0>~R^jk-Hi;LH^Yw8j>
z9^HWt8ADfqQ~3VK9FNe8hFqy5b~IkBREm!$D|i-Hf<=4!+uE83WU7dI;p0>~$>0a{
zH52(-nxi=EwVp)@b?r<jRJNQ|!8Nk)s1&1~&y-;!-9QlMpq!oce$7xq1;A6fJY=D}
zlt<nNnTw6N(yXkD!s??qP^&BZ6D{u#OsDKG2q|>IXFHqg8wax1)14v}{YXbReM!_7
zDngk%)vs8$H1;Gk52IvX*U7K_ZUo#-oYVxTq=i}VLZBFLLKR+!gKvY~QNR#cI-j}M
ztePFRhCeD*-&p?h;>EWOA~flpxu?Ivh|}M^|Ne;_Bk!{|eVGc8`5`v+=I;I{G6rX@
z*=fns<da-Gbwzg?stI~vXMcgkk`g%WaL>SBt%fyLQ`aIBTiY8FY|e7}Mn~7Q{?YL$
zm<^JmTNvO8QE^G;!%K5?3^o{Ggxs3?Vw6V^h{p_DZ+X4r#szIDY_)i&toPhtp7}$!
zg@}TI)_2#TiR}@IgPY-jopB|psmlu$AZZ<YSJt4x$!grblAb#~>Q`71FbRB$Y|OBX
zbZ#dt88}_~0&i<sdpa<J^6)8mIpqsy5@!-A{Y8D4!35j*4;;X2JX*;_&)7fpqcB9L
z*C$bhPt~1(nv3o0$T)ddJ&uucsjS(@!B5~%aYlXv>PlSPF@MR{r65B4{marzs!#6O
zQDWD5YSkrFsgWABkM^m8SnjDjLdy+iWM_AEcp3iBFY%nvK_>e%O(E7BDZld+6T>rp
z!~4tp$EJaVpC7m^URCt;$M<Ib*`yLu+|Lu`mYUW4;Ga&l=qClASK>Vk7$6r%w&{d?
z0YjcB9GA`+Qc%l2kRGUt#kX|^vydItXZ*s>k%9$7jTYCX+`9*72QoEjbcf&?K$Zd6
zOLB*!k401p55{#hwlVY|P4gztrwZ4tS;M$(g@;{^TvCRRbUP)gUT~<-pq{<@#zJSv
z;@k}E?o8s%;E#(}aMBW?iVv&>2b90e0e$_8{}Pow5tC{e(P_|r??ksKpe8v5TUl}%
z1^tg7XIazjt^Bz9u}j!se?ed52trM|XlwOiVJEv_B9Fw|Ge=1}4y&pI)~Y!#wiA3=
z+(P3VVAs`<9|U#4@WjCw%A<Hq`Hx@8!Et;|s1wg;eY(FQ!Bd!htJA%7!pKdv8Y<`}
zd7~Gk%}bmzSm$y?d@*GZO2#=^DJZO%5Xb0JB%9PuxlJ-TGBW~>OH<SKf+2-`l-r~+
zd9b#tAkS59MI#`s`TQTFHpNRRF%|CSE3N53tU$(+EEA|7(MBP^$@&bCd5zivoad$#
zPx5b!(Is(TC`EMVtR<+;qe?Mc8Vg_)`Y2fFzw^klmAZldLOkyO3c(0Xa&cDLFKjqr
z9!v%oD*UH1->9eR^8N7WksC=fNNyeR{{Os}KGwOns@FF4j74antiSWP?CZwyc{Hyg
zW3N@$3GnX+*-^Cx@N%B?=bdO@<8W_mZcSy3{L^sL#11J6D)&uqodl!P06e_PqSAZ<
zQL(kghQ2!qzoD^bmQ|wzEQAJ&EN*VE!~3<HV+=euKn7q3w|^@-I?Iej=-jU@ti8&e
z#iizXN=*AAL*L+M3fc}1bdG9UW7&nf?=M8!R}+c^kFP^WtQ>kT0%|7-!;ca(8T560
z1Rl$y;F=0bNlnU?2B*JQ=Y;T+ldhZ|1>s+F)p-m}caL1HG`mhZ-6IW<RHR>G@Ax|J
zk=eANdUb6uM0P<zk^xDGqP|iQNzKtswx>Jtu%#cv(5|C%depH~^azj9Hv`7fT%5s-
zQF#SlKN8KC{&dwZF65@(Vat;#9j9U4Z~Fa4<iM%Rz|}58o{Ut_g7YzJ0?gDQS9?Zm
zG2Oa^9T7UfxrX?@0aKE>n<vt`iYc*iV>7`5FlOuciQ)9J>P0zNAP#hhceP={vh?&D
zDVjzBou!_pU9(1$F3LEWAE;7EfR_deJQak^KdGd*cHyrQ@AlV;hbs5GdgTXE{ONR3
z-knt;qkkZw<v(!}Wdx@CJDbmyZmjMfZq8?k?`LJ9052|aa{Hb;&|cq7L)Q0ODwT5C
zF{;UHR`<JfA}-RP9}aji!f`hF^}bOc$0l=?l`7gt>R1r;M=+!&_1>BfIok_BUyCAk
zHN>8Gor}F!wTkWvqGh%M^g?>u&mFx-4?R?x6o}hyjIbSxL+=yw`0@ZULhj}uY6l5y
zP4Yao>g{6MQ?juqNb@K0Sxf)eo06{gjge#TLQb!s<=H*LP=PR}$!~M!5?NQ~rGn4n
ze@AfmnGS)XeiwmMjF?mdNE5%0*592z!zkRD{JOjPZ1!@px^=kHuR$udFrg2nGx$_n
zo7-`#`cDOYoIa*T&k*G0KF1P$Rmg^S#MN<#j-Kuxiq@tp;p{T0MF6DAflbr5i$89=
z_KBQMuh8l;YEn9a>gA*)@X0DanL+xXI8fHS-PGsqlYSl1zbsPNrDHdU?f>cLd<)eC
zpB~Yj?r6pGMWT}4)A&8wPqD_iH4UkC83=6gNJ=vm0WK6|>LQtRW!En*g%_fF8L-j#
z1s#&2wi)J|k<P>Hf&mIkW|I{m;@Z5A7E1TRQ{-_5xyXK$^pJJXZP!A)h|#UA0@iWv
zB=~B4(F_pnp_iL1Mkg#V<+ny|U&UhqInyEYnf45}%O9{r$Q3Xq?OFV{cYF}HB~uiu
z@6|a{y<X2{`14fN*0X=zS?>6YzvQy!SUk!XlRGZqKT2L}QsmE|VkT#MRp~%M*`1LV
zGx<SiyLK3E-P=29g=AXu7V`3W^s!>ZaZ1(9;nr;S)XI)~W46mWm!W}BRw=?&ZN-tF
z>Hoz7#v!N3J~3Kp$U>J)r@fJ@@6GZ$!!}<BFh(fFdb1qfOMmk3hvAghcM%WKfhXGh
zu~{+e%W|34d8->wKRNnTh^3zsjhFD)Qf$n<eCF;VOaYetSStC^l%2NxE2KDh;DMsj
z?4#qJ5u9^I1}3YE&PAUc&{{>dXnvd4;deZ=`rvqS<Tg(G=l0%Wlfw?u9{_@7G8$yY
z5#M{tO*(#+XO~1z07FIbbIEEIKWH31Ct03Ub60vfoNWQ6k2j`Vt%D6$NmoZ`(JbfB
zRyHe6{JVmO^5*Pvppw_7A^V@CCl794-Q5619DH|W9}as<hc54s_R4bc9+(~P)z6Dl
z2D|rabE4A3Bf9teRv+<%%0w$x9U(K$V8}jvv(YQT#CVIlqJ)X=`KudvP7Y)(H7W}g
zY;8W<^afpytSBn5cKk#fWu;u}7e-v%6)8uSrZnD8<<+RPLElEUYvok43L}PGVu>3I
z{)nlrJ}2`sCCtfAw*%1|FJKr)aFp^L*}>(7BlpF<SHO}NA4`2eHJPby1PQpKG&`aE
zc~aZc-)38!g#oci^finaP}8J?fKk5prkNE6De15NMff`>h8|1RYI?qu!~$!HL33~=
zWL`Nv`dEwF#!sm!fi#|SN)555tE+g2#c*}5f&w1tjuo95a`eSvwKG=MFm^B^h)(N4
z-zD?bb?@PlbUG&A(6=qD#1cJ+%#-BWSc=m@@6lvS<xBYON?>MwWe2bZAr(lRC0?m}
zP_Flw-mK=cFWwmBbhz}epZcFT<(*v}V2ygsgqz|R&c-T*=CGEq10_0WURNgA8sPWa
z&=M47&8vUAbNbE%(KtJfYZ((2L)%}_TRLPbX<2cSBnBA&M4rNd?ok#j6Sq;k)v49Q
zF-i(jkbj_gFQe~=Mfq3<{Bqf!86&`1t3uM>Oxnvw9S1D$r`<`?ka@nb#SAa+?Zuz}
zOg+(!ij=aYl6iFRUP5~wMgD#Lz`tv(9z=0}2IhS}>*$I^WoP$!L4F5#7=_7KLrMyV
zUpRQ1CN<U;F4U1IIsp=z#!1l4keVnQ#a>5vpB~7e3`2Q7#njO<>bB5rJCbJ}l%FkP
zxH|qQgtn8Pu=ZPGEaOW@F3{e|M@^-&{Y_$*p0QR&xp1;5rL)BAxZv}}(TN)3tBc#g
z%xm^o`ks}R0F9i{Va?6n|H#%Ub+OACVT(FM1>Myd%4+3l-3tR7DCy*CCa7l@=yy1C
zHicOdaFtARE$^h2C9ezQR&OWR=7Mjpm|Q~ha&K1;=8+op(WSH|-I}Vnn$)LReiZrh
zi}&}BDr?WF_3NY6D*y~7JlMXDRg`N<H?ZDMLyOh2bFJSk0fs;}d1Setq&ls5&G|%(
zV8z1YgM??}=)V`<6!NA%t+v1V5>SDv%oEZ;qd3STKCD|LatpO{eEqRrXd5D52s@T`
zPE*qHcgH?=Nykh!N#6MdH@K9P6{c%h%<y?o0;(`{x<fxVIzFfQ7SYnt>$Ov2lx%s4
z;3O;YqSNcVWmmF(dHNsH&r;L6?3o<fMA2N<4W?mP>UjH3S_glu*9(tCNVX+oMvp(h
zlt^2_jP$$YSVECbQtkT5`Ji)Jk~bJ(wMFyY!~NCSN~uW86PV}Wy_&PV&)C<ZU+Oj1
z(lNS;cR&t<I`kdMG>oxI2gx1Qbf)(lbvwv~!JwaW1jHIVtL}#40f19!h~zg+8?SPo
zHaQ_(PmQCke0hd5bcnHJRV=2{n}p*D`NHI$?9cWNSIo5-GMopS2c_A=Cxo_)HQ!q;
z&5cuWiI%#zHJpmPgY4sv{wWJ2rHhbq3hJ$c27ihvBMz@`BMg1Z<8FxtZLi(4h?+0;
zXQqC$x&4HTiV(>Q5`opV7oFP;?FEURAZ(%~Ex&YsoF0|BwCI#)+b`~DE!k|Ij<z{k
z=%4rAKVSb%9P13m3@w4CN|8kG`j3xNGnZge7~Eb4_SGn-I}7|B!n}XDmYLZ*Pq#|K
za8-^r-hSOiFI^fe^*%v+JL{<4@V~Q9xZCVy&m-xNU91{r7Nxl{joVd`>$p7!s_B@m
zPGzQJ2eJU4eOWO-WHo>tl7wj-S3THH+sWJsOIBqKQhV7k2xF@IE#L@pJW={IO59nN
z{@%pVdXI|c-@6K(!<fpmC0kU12j;u^F<yy#4ah0c%j_KMc-&gP6Rz^+Le<H9Yj=Bd
zM-#keQjrg%WoG+NV;M5KpnsH{5XKa-eX3#Tn{Y37xizJ=UYz}N1057|x0-*&nvRpk
zy}=R&%zt=!VK+axp^<lCQN&it1_B=Eag=wH1}HJW0wZ39)BDbaNVVPj3-zhtsC?>8
zBzGMC9f+BMOZqJo*-vOZj5S|*@0Rytkah1U)d<~^3A3ZYLrn`eK0PGet~iFVEtb=C
zU-1Jv1&zM7zH%_2lo-M+Y=3f>Y<%3W(f;8#r}F#`5GR&)?Dk9JuZs(viZUj_L($7D
z9`<NXy6zRlkFILAU+g5$B-NE3<OjlQSspRY^~W<Moq%PNj<C->g%mAtiJX<RI#8mk
z`r+ST5sk!0c&*FWM2neXoM3AS+8*CgH@*5Ll({9AA#wOZl0no#kKJ+M%X|V)w)>ui
z^7OQi8-43bEI7w7T)L}~hDsEPKb5=zIVd9AO1R+%wWZhc0oUkOP*IuecSO9~c;u3j
z<)W5EwFNHtY*CNoj#b~@+zOOoblOb5c4NA>1%ljOUESJ!>DglM#A=)S!HFq`{mrLO
zC&d=cHxdNZNlQAM#KL_%LaGnLsGvc9Ew%5^aNpj52c0?+S|!37^h&fBiR_=SJtuv4
zU)lgoK3c4r;{ID27yj}?uB}R)Z+ZLr^+^&f2Y=nNFQ;@WMtOJQA#1)fd!0V)N<gYd
zvX6FklULIW-?|^}te9p#-A@yn0azv4v|I;lnsq_~-{z@1XskPAkFxj0M@$t$o=X}I
z|7mrFem*Y^PE7Hr5k`4{TC;m+Q*|7H3uQ`5ImDfZ>~hKb$x!UE{nc|Bl|YKRP<g;E
zav~MdV8@4rN}FIBW{LmE8F7-Qf4sQ`*57#ub67RYSjSDdRFragcKfzKXC4BzT-E86
z2ctl~-@&#7KU40LnV7YZmM0G%XAvq(B$EiCWzr0_wslkB)WIsAvvD~erPsZR5A9Z6
zJpB8A3e+)xq&jjf$u7Wj)Tw<vswag^wHmnoeZ83Q9YOCLcx1oxhKE=Gb(@yzlif3X
zqU0_&j&&cT32WjKY6gBUmcx+GEVmRfNURm6FDYaPX~b9{eMk=Hr@V-}>qw00WT0QH
z<0u1IkK%a|&P7R%0`>4&u3jT4@Ply&X(A38mPh|qLJ+HiZ$f{5=FGse@x_YX$Qh4s
zbf?Eje<g`M=6`KYXWkLwbQMKSfr;M)AS=Jfu1iU0Gr`4=e#t-4t4XQ&D;{5S%ttOs
z67~Aaw%4qa5z+pLTLm<9gjiF}e0&e0AJNMt0cbJ|4kRv-`k=emrmp}k1KD1zoc@&`
zXkYSE{;J1FZ7`0jaJIa%{Ts_K1R7x*{}LJU%6Z_C-gIH$C$z^Jz79Z_9C?QOi=@;`
ztj`<wRW-jq?`H)YHdteIBqJXFY;Zd}!fAhLN<jm<uYKc3H36|S_^KXJZBlGlNCWa9
zGIC64A+j{~$x_1W<Mnas*EC&5&5$)L_NfP)M%_ZPeqgpVet1F6?(SteNR)r~idGtZ
z<n-(nGW7@$Vn~v%QQO6dpM5w!x)hLqKD*ok)<;0a{6Y!7)5N1MN>{X1mtT<3FO8f<
zYT^IjMh=L-t5+X}wc~XiZ12vyeiDHq^R^mH7NJzyRa$OA9u_LB(-4ukbpn?BFLgY}
z!F0^8OW(*PCCPb<PYkZ=9ibY+r1Bh2b9?~?G>g4bq7n|%pg{cnl&@CF@-92+3Y_j2
z(AaR%x+7K|11#P=P^*%pV8t(cA<9qDYAixhnek~l<h)=VorjY(@zp2E)AA@w(yWb!
z8o!a~nYs*^rEVsoRMInNQ1g@1z^d)=yHYGw@X11DtBFrJ(%j>L*;G{v9?KN;N8IZ@
z@~QGy?JU(NUO9QaOM0)o>-{1Z_b1zL-`^B;k~8vH3*F7NO$`X=!l|t-5YIoWobW)!
zRP7wf@2U5)*n<a~lBRD0T99q1>{7L956RTqz}kP{1}-jZK7D|Q+DNu4jNVM*jYn+x
z#i+NJS-lSX(>weTBT`5T>1pMR9W@oE?2aQ@d{psALu#8A&RT*~vzB<2fgQf!XiA}^
zMyGgCLwM025-~e;v(oB2N)^lAA{h}l5$#>!{#UW}oVNp#S|-U<0TLHvs+bb~Uk$5h
z%FVzfaa6frVcvH_SFV+nk^2t8wqRivWqg7YXwZys1Lng&WM}+usiT|0c8nXdrTflM
zW7;iiBpGl8g&An6By~~GVJ`t3NT+v2;}^-Yx8+}KR=2BR5rpHf`C3ATUkiz`1R=RV
z7jupI^t7J{FL+-Qn9MD0l?w9rGT%Li1EHHNJUhSm^DHid^k?c3()5uo?w43eS`KbK
zWc-dr246;QO3yxC%5trnY`t`KpCWTgkKddYXSAHS8A@M#=WJ+m6Z$(b-+bw0jDi<-
zlaR?C+=*vh+PRJsCS1d0W;WNR^Sv#AK=Zc58Z^+#+HOrpRX<1te6;N67=cptIXe9!
z&%98TyWp@0BDL_QiuKq5iRkkT9q(NCYhk~yG1GtRYwan&bv1D7-?(W~E#LZDDGC1{
zzJ6E^|Kp`AbEwMW-SvsC>&m7G=37rMDZ|>&=Mvgwus8!8Kbm`g(;qR6djTcYJLzge
z3jWv^&A1ysio(!h`S|QA+3BvihmT|dxTi9(=l9l5Kghn{$z%qh;WX~gw)ggDl`EIW
zPv7I`r&lG{QgTI3N-C5G(xPB6O$0)e=G1m!LDBLqka7i*RVQiY2{A^<=^8*PAs0WU
zt<L8bk2mw=LB91<<Ze5;8n;+06~*jXFy}`8O2VFATsn{?tP3zvZR=5DzQjks49FTE
z_n<ZqwGa^hf7C~}Y;|E=t2j34$fVw46L&F;*4b~CXFktE(K~fxmsD_dJb>COF!G|n
zQWD)=Ep0`REf$4C5#<n<!(Q}MsCHNH3#c@8Yw_;(`|bH^exJwBB%CkHnrJ5UiYUO=
zf&@-AI4PYzrf{VB;_Ruwm_D2AOy(QYw3z6vD14n4T!E5p%!oAhy7u{4ZAodnTW!Pl
z)FiRB(39%0l=c$ISMw_8(6zyfBmnwA2RlG26J@s6X7GvaJ+;X@L2xnpDa$GL^=wPB
zA~fus-L2jAmvn3mMMW2c6&XbylCO$H`!3qNr9r4EbhB@rIhYG)BgXl^g$HJgDcUlF
zpzFify}!FW0gKYhV@L&Pz}q0|pP@tY(uW4$YeMX;ma_w~rrOxI*BjiR-rwwvO(3lh
zDBy~J^+Fcf=cHgoC;<2$)6HOa_+&tvk&3L1=-@3&+*ck9H|anE$#24%M4nD{r>N}s
z>Lg%aZ2(ft`=0NxQ$cG@r{IK{Xj&bsqj(5+<5wP_%<NnRf06@TuDsda?(sF9i7h&q
z;JxJ;un<s6iDAZApC{elzkSg?;map2+@%rQS+O$dhffKXmXu4`n>I5t!H>J_%ma|E
z>`wRB!kKuHRKg_5$C6se%6Y%NjyAs36b50N-*$c-{@AchP5wnb^0S@x@gxIiJiLK^
z7gXEv>ml3PA5#>h%xjOYlQz8dUxy<04teQt?B0>`#K{<iC$opii<Cd#Ox7=NxtteN
zyAOxmx#bl}$3%er7Db7M_T|iJ1G(wVG}P5<tQMlVrg4Y{!&?a6sNbyx5^P_t-C3#L
zQIj>I#$P^rRy>*(tHU;_G(EU!p;{4k2S!wiffT<h+`d8nTw28u_FW#n#4+lTfK;ci
zK{T}w8hPl*OoXH$D#;E}ycc6DhN0s@($B9@7@KfrP>rf3R-vlsk=yx0DnX2?lFU4q
zpwlXP*hXyMo&hL>pKa{UOF6@2iUPB`*;TTUOE+5eM{8X0(~^;GFQ2_jefCd9Khpq+
zagIu9IaGTNHDIA%d!474G?=c`xNi<hJmlRnP3`&<<V%i^1t^@i%bOtM@C)duZd$-P
z3c>zf*M_JuxZSINH_A}_XMcY_M>5t}D5-hsg}h&}KzIcrN%-G5JDcwpsle#;Lw90R
z^Bn=Cb#%Zwx!|Ec<@Kj+LEQQNmYf`~{Hqg5homs!ADxG>G$apW+!>g0X9)0k%3ruF
zNsCHC#xo9u@p|&zQgh4U{dh1xJ}OI;K9JKsfGBmJS4TCMV#OkSw$5_YFRf#~ah8N&
zCGiQq07HVK=3b*Rsm$wmJUKDOqN~~CQX~reoOchoa!w9-UVoNxgu^=L(V)0a-|3>r
zO8-#}{hGnl7VNPDs@CD-^*se@<~gW@s$0YP_i(%aF+W)th{~{Cf6Rh%TRzoFQEI_q
zL~U6LT~NdC=(mPOE}_Kn)kP@`ZQ=D`|I=Dl=c<EMnR}Hf^ydCTHI<XtiAfqOec8uh
z+uIs_J+{y|7BmpD#Aq&_e3y+kf_!nbboNowf|tHI#-HicsF&<e1;2_3z+8bZjjP=U
zc@LHpU!-&8Yzxy#RsIhnGEIRD{F!@*TQPvEc?A6-_A(l?UfVAG&#vvcmcsG>PNaww
zMZiUqnr%d{bf)e>7&ymOX$~vcEk^e>dq)X?WH9{CQtH4*VmG#@t2|NjCK_5hS=FxC
zNvV-<=km#B!{Emgo{JRfMiWiaJZRU%FyuQY6nGoltM{3DI*U}9f<)GsS1Sx?HRN5>
zzW)35QZ#W;=Ayx%s!7u-H7b|yL;ta)=wVVj>$b@fpO^!eO%x#SzyXhl6#$~iT7Qld
zENHT@y1SYiiw1xZE%FK@w;3lC_TjZ<pOVWp3hCq0v28n)4qjfRFsK&1rFsb$ms5EB
zLwTq$r?)@C5yNJ;wyB}pqrQ>>k-iq7CfA$Q?vWZHiZXVP5hWT^afiXCMT@R)HZ#S<
zh3L>7b43Tq6_r*c<XA?|QR>3geiia;Ml$Secgd0*gwzIds~TqrJN)`QWgMy6wqoti
zG~Eg1oA)9&$;)juwTm2>rV%UufT+v+_4i7*6un_{yak%{(i*TPQxg6$+5cGbTbNn)
ze{}<cX(Nu}e09^SmB3{3bZg4FYBY}B{dLXzelHf^^_vD}_n+i>^v#vc)MLb*N+CoZ
zo?pz0?!A!!DeUf8lLwE$fB6NLR@jsK%TiaCvV0F42v(iK7%izL+va*VvFOfS45q9`
zspDxDZ1UYx+AQ_dUBd3-{QIs<{6F0l+$YW<m(+Y2Z<&9+)s(e>N`peD5n^VM`a@S4
zdBMQG*6W(PUtZ_Q<Dc_Sq%k-v);gaPAns32Bp+{na(oH#P_3xP6nq(jKyp#kk!;{X
zO=sbT$@E((MYZvZmU0{8WZC3<9FO-o3oKB%X=(fLWv|Q2iWcgrsP4w_ii&qSiHpeO
za(q9uAg%YsfZI={*Q@W$i417h)CFHzHRt*HMfzfmpu%BW9-&GXzXOgK=-I(+n!rtf
z?lfL$+_k2QrZ7c!jN;1pFsIhh01)Xf<e{#=uPFu}i7gqP+VBaRae*g!=U}qZX_dN9
zzIl7Yq0O5)Tq=vXu<07MvUSM&H|*A7$-m+f7-kva-}yCPmbfl$hetIPX?($e8?KY)
zvw2bhvvlU^b(*LSEn_+v?GK>P!a*%LD1)?u-9NoQc?P4g#5IQK`}gx)NteDTR1xdg
zUxK0(P3`RJ?x8+tce*ABMipo<wD996@BEjR=u1(gXqyqTQfH|<L#yZ4@CdV#5=fBD
z1VGh)v;tj1u@EZAK0HT>Jl?>oB*n)FiB*p3d2tM|ZURtqt>$B7i6I)u0$m)GW;r_t
z`wUau(XwuVY3A=wVc_vBc2c~6SKXOhEf$hjQ#BbSq1KN2TamSSG0WWG5o*#uJ^3lu
zP5bn%#T%@&bO#-reQ&?iPcO}RgommbKVMo4XMp^L^02#~CxI`dD#sk=t&Ejdycmkg
z-p0$hSxUm}AtXvqSi{tsq0i&1Bl}T9>5muD$_9tLzR4h0Jy2N6=bQTnhrV4%o>L4~
zT=D86<aJOol6m-(#&}DXGplDidP=o7UcpV~4sg!$%~DRa`a-ka;$IZP!@Ls@F_B_$
zgA!(1>9t+KD=vvt(P9}B+%5gjg;_USO#qrOgevOy1x$-SG~?2~%@C|5@0d;%T5qMp
z;i?f^x`-b%d*bIMDEK)H<j+O`im>GEQx08m*7&CNy_C=KPWwFa3w=$}^P(NFyttp1
z<U?5EEts-c!y~H-7s6?CcYY7mF%+CTk_@Hb8-S`Zzll3^Fk7$1h&X@tZDVo$Dg|e4
zeW<OP^5=jRvwpM`At<_kIC&(jTec|en6l&cAvBdJ_|>yhWRg3KJN^bYXYlO$8!L_E
zHGyi99t}<BPf3pg0r#GAgh~N^d0m;oAmTX!v7@Q0lT<w1u{ml7CV<}Eu$75O-JBd~
zTsTDo<<W>*8Cbbw6+2y%9-paP%VIWntzr*uB-{u~C#0J+w{DE#HkWG|ElBsjfRy(G
za+cIlN!PWN6Rr&1CfFn#;;_3-m)8j_#TFE_2Uh9&cF~rX;^&i<(rSR3rU?UV)qB4E
zdM279%qc(l^<wc~7(4El2gs#O=D;KIR7xFIF;cQy!(5_1BIg$7mBBJ#^wad}>tpEN
z<*t^y6CdFTnd-w>?|6l(RtP%P1Na4*W-`0HK0PZg0DYanO!0qRd{KBHkuLGwHF0+N
z7>$|}8?N5JEGr){Ob7V)tm<(8raXR5jLb9O>Q)+07^{@W&Fjbxf)|5|AM;jHRV`_A
z6O`A(uFg%@4rj*M=^V2==S$;9-UoLu7)td35>Pr%&7zdTaOw!y``>-96sfBU4NbXD
zM$z#_Q$U#D%RG2yXgS(Ji0w76X7__-8YXo4yC}_8Z;J>PYTI@-OehDs1?<2o^;$;-
z{Hu>X0E4OGmB$U6gTvQtFpvZUw)^gEp^@0aS?_YscQ%^74l8jXj5`}96?!0}jcB||
zv*R%>iwFEcsG|DleDOZEw7;te=waSQbA0GgM#?(L)>{}QnC<0&gZcPzR)fF5Z($1#
z*j4%<PC(NW4=}xod+BKXS>qRON)vT8(J{<e%<Q*5DD(3XcJ)Z9c6o|Y(NbD3l<K--
z6vlagu9Kn5@aAf+Ds--3O0ZC3vbe_cEh?bpJwVB}^5_`=ryRzXduI1AllNHLCHKVM
zFxMG~azfzWHG)X#YSAqjd-XHaNuav7NIF?E={Bc1gk*mYZ#yT?&Bi3`VI@rh54$L>
z8NiKG!<PsDFAtMdQb-!)@zb)F{xXh6Leqm&!?h8@O2(&$W@PkasuV6U@>e-JBW*mw
zhx?0RZ_tQIWrB6nq&bO8LQ;h}mNF(lSDGZnRuQh6lmjZdY**{0+tBJ3-g(Fz5-B?x
zB<tths4*HPr4MA)o{h+t4M7<Q{fO8}Lf3H1SeB+h9{k9|`t?=~n78``QI|dCYu`Oy
zN$-V&qL{37E&PnG!@#7j_^oyxkzwHC78kp}k5w8Ljw$#>e60ep!)^P|6y5p^wO}TT
zkRl$b*~WCY4B%E79sMjei*;&tt^(eXfYPUUWya4IXzUq`;JPhlmhg=ATa0{s-5rHk
zbL|y2>g-NTrCB!yEQ=1^d03p*GDWyagkxe!qfI;64%lo7*7nP>$hnq;Pp&@getqdP
z@frsKa`dl@t3NITuI26XdcXW4pwBqYf@(2_pHxD%N<mdiz4q?uSWRW-Leh4u#anFD
zJijR_4tg;H`A|PkzuuYx9rh>UnrNfWO)XJKE>y6jaxOW&j%8<W`kjg$rqtF}(tu}c
z?S;Jd<X*8%Ev|7ZmGXg`ju)2~V)5qFv2WbZ`T9N059*N+0y`_KiGGWS53t|pl|)uj
zv9B|+EcMtRfu%>vi*ax`LtRmFtLv<nXr@;-I#ZP1Qh3)@>)b%^%A#P-C(_w%4tM{!
zWX^kbXpjj8uigAlUizpiRlpgVtc@<AgIkVtM}H+~qPvR@LFfG+b;;uwJ>?<Jb~d53
zeLRy6tldZt-)?+V&~2U;c}G0ode86i()}@BhxXYi(Juv$bvAHh`uS!8{_ZF+nXLHs
zs;r#ht%mv?L;zfXuOro`H^=$A{}>(+XP#zQnW+vql*p`wY!WpB%Eg(4JPzM^>&%%Q
z&V$IiI^V5r*VgPe89>bma|gv~<e}EJbr{$7VF}5G%pe8EdzLm(#V?M;5CgBqnJH?X
z<IHDMsK(wl-3Gy+rd0V9x>nrqp4j=(T~QbVQ-7fYMCd9O^Tn>hwQdk<w5OmbKei~m
zwVh*8LZ{4%KFoWTw^`oo$?WFne!sa?dAg2uq|qi?RiWnExF*<+EeILh=Z;I9XMd80
zGoSCmlZckiKHR3kCV*wj>=)>1_N(j2bEg2p9W$kUW&dRY#w7Oh7>p{dS{rs?rW6iF
zfgB4w^Mc@*yHfeCapT1;4q$L5#!om~HA~TZ9Jth%oE}Lt>k(S^Y~aG82K%%NFIl&K
zp*ROWhM&Wq1F0UExm2j(uKu=q*+3t?6^{bIg_8hwo$k&3hxJL+D3XAWg-LyrFxr5(
z#L;{ASMyY;Bb05K2THcX7fzCWUK(%YdJt3YOQi_5C}gBl<0E;7(R@_yj=*Q*qYwCF
zk(JM$c34%SfZ1=e-J$hoeH><I_xvsH;@g%#reU49cDR0teg+=tC28kNMNmKoMkUHi
ztZ){`rP>wuS7=@m7xmYUm<{UAmJ%M0N3($nG{m%+BT~krl{a{GvVXYq`^F432pRsQ
z{`E)F(GfTu$ad&r<5a6J%zeB*>DZrnJsZMlK0Uu0rS-vS_7zVDOjRj9FMX8*3zTnN
z>YZ7y(S>yVVg!tzJiE{aGd@|iQ*6O$-kPmXS6?<HA$){U!DQFgxo}@fhZKu+iPYV(
zY~r+)71i0kt8|)Eg=spNYegZZQBsAu(r7rzhp&v-wbkIlUuWx)Nf5b>4{NK0erL4G
z2Y(hp1K-8VuM-pw8phWj{E(*+Z3NcGCc<@+Fa4XHOn40`@;C<1)=vJQr04P|@u??M
zo~}?imlqi(3ekXf^<d?tM#TLZ|Crcve<6Y?UsNs2;4QT1OF$H4qLAb0sn#0Id0~sa
zf%=*>gs5sC#^<m4HsJy{89@|!l4G5!diJ85rdu+R%V5esU9R8}9)7+!x)N|<0s1LV
z$!e_PH|Zr&5NyTg=><}?9nH>GeAVgKyoNba>%(Pevq76T00u*b*R#>UR_Qy6Ne766
za8nRj3bI`CCNez_OQ@ytE18ViB*8SVK95zEH}8DZ$r~^Zg4<rxAUaDF*~JV=2zDwX
zcG~?7iNj;)rch{)2hS~cl30U)JQ8OzZ>%llwal>6cAn|l+p8v}WjX7uI2JVHa(AT?
zTV)%U2Zkps3h`1l`vw3~j)ruZQ@=mEH%pGMwkt0M1JYXJ=y!wgq}SUn1QS*LQoTVD
zp`V^4!-|x$xt)n@P<|NgCXR|pRF)wP&1HHnE=2&nX6fi1o+cgo0@R0Fz8sP#H_5ly
z-FvCWtoF{UTeGS5T^X-akl1XRMPYNx&+l!O@?4=Phj9#4LhiyJD`S*D?XVCECt5;D
z2=|)uu`v&&yPHV$g!^%GBVki}hkVg%rM;xf8t41X#nEk<LeyVUJkF6<l92l7PW9!u
zo%DaK`HI0E16c4@im@tl5U_apoDiO-9GwRO=IB0C&=c^scq^T(r71H{dkRqJ{Ld%5
z*pt*;QF$>xMZcmwu`?{V7PnZ$g<#Wdw?z=yNDD;sZgVP25BToWkYa_`KHcAa31;sa
z#1|9G=M=Z60bsgzh80&E0d^)~ImyY!(?Srci}wK7ihK6!79Lm5M+s7zRAvRnITPVI
z`!o%;L~g2<@kKf$=luELH@dm>bsO34KBDkFArvopKiy#YHz@_sVE3#u(E`|@85i$6
zcw}&LkWv`g0Ph8%V8C<N3=f&>O?ICDVo+GaJylDkETNRa6?eCY!SZWJmowT~(oMao
z%7p5I=d>q@R_9G<m2>+}CDHP4)nZXs5r*jFDBNUVN-(?4IyGcxcytbB1;d1mIReE8
z?r)@TPLi%EXyPutoE@ar8?!2%6|3(NzJ!fQ;fakaM$exjOve|Q$k9K>^lb5J@ji4h
z-s-~uJ8tbY@~HEpBwpegMFhJ`YdXd22QyrpCeze~ek~kMmvGuDdmWkG(4g*m0z#n!
zTwt#}HKa+41&nV^cv83?psHtm$HYTNwx!~`Lag4bsi72jo|+g`wx`ePb&r-4XLAKB
zIf$KD<(@pGLO0cYvId)dYl7}PCU8t&=c}87l#Y4^u~}+S2CX@9a_Tw>mE-%#Ycs#s
zMOh0{%GT&hP|TFdLlJg>jU>FM+uKOl`+gl<KyiS_ENQqN&S4Mxv!$jG0`n^atb*r0
z$qG{}zD$F+Ryh`qWI+?6E;Q&PpmL2T7dmwmceL~winvvhNC_0WY7)PYe~Kftq9y()
zd**|HgbZEb)8r1Fr)gXxL`yn_<4WZ(9dp5H1Z=GkJMuWvs5m*(^?L`ivFj@)o#-?)
z-rp*;o`wy5%1cVatKHk1*B2ZGI$10Mh)r^<elZKfFG5fkBZaiFyMw0bmI}xuXLoMj
zzAZer5DfFzF!+$;o!s>q9>;9*;{IgiaK15$uktnJl2l2uP+O_*>+Y6g%{N9{-#pNm
zsZSQ)(=6klaEPAd#fwF6#;T{*7cCCY_(4qc)(o-wG&-!i-V~2F6I?eMr?lU9u9}oU
z6h!T-UEICmCzMyjm5EcIvPe6?TwRWkG*Or%&>~0;RDw3l_hwSHTbuKPxeKKEdOD1K
zrjj8aWt{fsKJwYas!X@jS0j|1y;~b|5kg1Y!}J|y4hf$8*x(#3G`$NhF<DoanC^q6
zkoZx?LRE4@0<OGaDP`){fHs8{Owv8*-tO6PaSWDiN`NXB^%_Hklza}KtBs0MKg-}%
z<6~0$aa`!PcVw4|dhpmwgc23HDyM{!TYbLmfhyhupp@QtF9)3y*qlhK4F!F%`E*mH
z{knJo)dMF>+_)&w4TtpX^}W5MJ6@mOrdBw;qG+R|%5xo(Z#ddiXY5rUQFhw3tnVXE
zPcr4Z;=<K&@80r|5jE#06qe-DOBNzBzdzlZDZ*%@QG6*tf6f2(?dJmX<~i^BctK5Y
zAwC(RVz0ek@wEmocz6nAXNf`XYRA-p%kluW7VnO8vRfyHVy?P{{H4@dAD40PgSPnv
z;Ddw_h-3Jp;LY*jA^#zNG*+B<_f*aqG{?6Zf5}r;uUuNpS{-ih8LT^L_={!{KTy{h
znpnExmbSa&s)sBegbNjM=ibh}-9yODA%(J^gB2pc!^z<pUpY`_f1}`vKlmIy`-l7!
zzeILU@b7s)i&t<J9z+OJoE`5<{besCCWC4^@xK{)7?86tDgst!G4e<}v@k%$<*oBx
z^;H>;X*K1(lp{$8)LP$C6*>e)Qk^0772>ur6&KN7C-KsTxw@m#4PjKJNT{ab)3~h2
zPF)*zhjx3bT|tP;cAjtFhR;?HJYQ3;Lo!l4wkVF@C*MdRcAQIx2?9B?shXt#Wsd*r
z_CnEW(;BV_+mn_o>rxQ^FYXOQ!HHj%NzHVqm^**O`~LYCS5A>0&DnWG9p=`_Gq+6O
z5j|e!whf9Cuc~Xo>?%9~$cIMN1P%j7pisfvt`SU^S(F$SR#e)1-KhhPR!&_X4`an2
z985z8q%IPou!}M@&!+2%K3+h&XY=V+mFaW~O|GW+j2<#U=}q-Wy-+BGy_hGmVDG~#
z2x1~L%xNf{B)jI^YBo4-*SWEP7~c=fV5dVe_?(zvIncp&Z;@}zZ*hB*#i>QJ5MQhs
z?pk2)-czh0mK#W-Nd##`zjKI!+#~tL$?0W{&^zo<Q^D=d@gIxV!OoV9j1eo;X(2ec
z#{!}Kw4n#muW9en(hN^CNYz^}YH!8PbI75ve%tqpw|ghYna+fz*-KvPE}JCrf`zx1
zYj_@M+EyT$7c|S&u#;ZY4PuvUO93jzPmh*l{j$3yG|%R4?5b9<*)KB@U>-LiqxFXA
zYw5_}DlQxQ0!a2QN3c3xRKSze)2lPcb71-^HA%pnb@Mbd7ZKPw{&2$q*G%^6V)6Qw
z_s*7wp2)ka7>~sY09^l`u_q-ox}xgp=_~4|EMqZiq6%1fhbwNFcGVJ&NNE}$HcX=|
z2UgSPGAdN5@Sh}e70QsPF*^Ws<-<%PE#i1_RwooUL&2?eO4zwnmLzY<9VZi??<~f5
z<7!qk13hP<D3tiN2}xojmiM^^<sJN4Y|FCH(OgN&+2~ACpK1;5yzyE_79}0iu~3&A
zz6zs^v>!r1wVbiJx369Wz;6w@3DjV)trxwm0OpV$h5uAr;0@A{xZp9Lya5yipn5R-
z4Q>$Zpv?4YGt7IbXYM312%4s!v-QK2;C+?^@!$vOy50@%ljUDidil07HX;_;6QQAI
z5Zb<RGP_#$Y6J4D?Wk534Z7#U$#0U)zme)OWGvGG75m&LP`Uq=C4Ky3LhNt$Ykcwp
zSE=S<lzH6IF!XO4I44Q->4!na*s6tiT}*m(eE(=fxeK6>@vhG4!2<R>WN;ASXqJs<
zt8=i=9`~n}<7T_<H`aN{D`5R?n}US5sPowBZqC^Q$AAxy|8j$8Gub$p-~Z?2*Lh-`
z90Eb`T9*asyeRP_2XXkjuj=vu>v(y9o3h+_e!jLdS=m@CUwJ@Jq}BM@Y3?h5E#O(a
zU0g3T+N-E*OnPZ$mM6=DtCacDga0TjHTUbo$G0WT-Y06zx{~}qgTB2_*7CF7Rxp%O
zm9tj742L{VWC>G!MTs?Viq-u6Km7%Dw|v7uv6TD;VL46P`~L60aPI{?8KJm_)<bnx
zHkr9x2#RUsx)}@uY|wv#{xDhnC}n0<%elW9V3qIo{<v}9dJX9an2$F)eZ?$B9s(h}
zmDHz>X7}=jrRTlk-aqK6(PQP87!6V>JE{FlMz~+iKBC=wZuYA=f>jovn}(cju5G;3
zC;VV3ai#%4SD0@o<z!DV=n1p2KRMFV>xEu$6>h_d)D~$COKAC65;aYvCNOp=j<U0h
z%&7?4-cznLwPv0T2YI(REt^n3v5o({-<AV(?F4Gi)H6~i-xbRd=f)eC#wa@FO`U*b
zug~9_LHu@dnRW-UT4Lx_-gRGgx4-peiCaKHe?33fuqV3UZ~Z#Y#asN^msP2}ed}>2
z{Fl)~VhdmzCxy+XzLSb$$lP2w?_`?dboTG#*WU3y{JAq-x+q}{eN;sH_U&o+;=H!W
zTaACy*SWOq<mMlDokd(wY8brI{p#Kt%isj@vxcwt<z>G982L&G@D!geIczW}rDZAR
z@`A8ZGq*et<Is^RP0mJdI!!Cm&Iv{{V4Ro#mVo<VxsZVXV|rHZkubNszk|}vhHk9a
z>WmCfYWggR7uQ#kvKk0V@V5{KEsR>tC7W0{4|})oK1No0cYWzAS|@Weo@rV*El<`~
zfe0+#97k%|rW_*U+PF(QThdOy9{>B+Uy$pwTN|@q4@;NXX=e2e%uSY4Mc3NG6q`83
zs<keuNIq8UlNTs&Y3)@L!Ppi@>E1&RHD#40N+*Y1iGy*&%koHC=J%UBIXwM$gu@zq
zesd!WIC7l?z4YZO3mST*Z1T?Y<m()@i*J3$1eETQu;qFh*B6)NZ(n#4;ID+=$;Gus
zjhdttcO`2q)%oM(<He~7Qg4(PO&AelmnRZKvMzbyR6%dvr;e=7P_5q?Fs6f%Js=z0
z8j(*|3PKGcQI)@kbitJQ&(*bU8@^dtJg#k06itu>sNYVucULw`TWEET(Kub|Uz(H}
zmC)~XwVx7i{s$LIrG7L&3tzSWYxG&!_k9Tosy*N23laC()^8HV?I3hdIo8+`qCZS#
zcKq@<?Md=WRnEk3{;Zt9PHC!NVM_Oki8;PPWFEy&^ViPgNi_M7T910QKq2{tp7FBD
zh#UvGE?nl3j7;ji)3Uu`pD_M0rekHn7wV;cyf>ZvezLgu_bH?0Ozn#b%F}6PJXtwg
z{Dn%LqD}wXt7B!EfZXE`N!cHDVm(d}wJ-PKr*mVU(=VbZ$CZ`-5GF#>m6`uOS^bB~
zp$9*Fuhi*S8JfJO^s>LeiBz%QYHFGIY9B-Hg|OyiQJfQ~up>}XNG*UEI}%=mr4ne(
zLZ!zO`4z>_d7Wi3$_Sjvv-{7g50h?pyRVdwe?*Zg&53)7OpS8<9oD`xr9Z~HZQko3
zz;1c^-5ObUDpk(rtKTi=nWH7pNeRPBX`pfcpG_$271l(Woo+4Oze>EV-*C`s-O3U-
zp|~Fxk#0Ge?%qk>l&It6H1Xd9^)`wB68;@ezT+44u1l;0+&U_=&ksjE{xo@`0sZ+v
zuHkygYqI-vQd4K+edptZ57zIyQRAH5sOo3=pFZU5m#e)Y&FcOe&%XQ(>@%(8&K5}k
zz3+aGo83D%E@3TZZ;I<y9lomM!}i+_GWJOtv%+W|Az~84_i}M^aUrJ@5m}D==rQZ#
zeC(9Q`&^-e=VeJVsA+ABk?>zy<TEcj&vx?T<L)8r2U&R^%+@$~!%;#f07OT<E&IPw
zIGjbrl+WioTNCwoV$8(9(p!7wzVUz$(ir*959`|~WX)s+Rh>6Hb|*s4$x6*Wqy$?D
z%I=#c(e>-ldY5~?vv-gukE~b?ZtuateCwV&E@{<t3hMaLpIOwgJCVVi@*Ou<XY-<k
zj;a#sybaD)hPprrw(#bf%UiM{rJ2W8nI%(l<C8YsEw7$dn{YAy$h)<|Cm$Wtk*EJ8
z)3TrMQl)nS9a_1K;|7<|W52(g72^^kGJIx^p8EgE&W9T*+R?)YUMn2~`@5!Wgks>E
zHy;XF0en_eu@I5><!t8Sqa@zwMgp?f@Y{bcU=c-13pz8Xnv^s`U8kGBm%j5)0kQ{4
zAeh%OTV9uVu7$Mcz}}UMJmFc3bsiD*CN_kkNn>Gxlpv=ta1ykMd-Qv(<;PBOrO%Cx
zP-?%{Q4e3ySD${ag9FulaJmSmeKC2JN_K@3liMhJt_k5eeJ4oT+X)|&XR4@Bw4f9;
zszU3dW{8w;<FTp`zY!Z;y!oe)ytK@Q74f!@k{HR3xCS{!dDCkC^kYE78fh+Vj&04v
zwg(ScnS;vwx(?J#F!PjRP4ITrSaW|VhWcj>XeS4I#u`->(y3QBjH?L<Idvu6zFKY;
z2o;f%4Cr$Vnw<<8qwo8_^qR1ISq6sIxpw{TsU6S6ny7xIHTe4CCdnCJCjP(hZl7<?
z4t8`4(rE}(7?Mc*qdSt`(Mo{!8^?Mz-rUG^nZ>Kt$o4nlF77$&^p(%KXc8iyt&oHh
zLnOZZTMWJM`}5n@ho%#@k=>NrDn!kd`_H4W(Q?1~IH(s&dB6BNq0)Wz_kl>i{ByaB
zuPxRiWt;5O7w=xWDswLKdXvLvBS}%b#}d{bvdeWBX16IVn#}J{@6Yq@h>ecs-EXbG
zf3@L53Hz_zI)eDWNj=dqUwJPD?g0JS3&{=2C;14t;h@l>V*^&_9rUvD)vqj(X_`g;
zzQ#%_+?g+5M6wQ|_~p+tJ(K_b-xEBlBPHp9jvEQFq*u$Ia$dSpk79?v)4J#UEhqFp
zy-TnAmBaF5v`n!ODBjSP@deczF0MzcIQ1Jh#?^y@iZ*QFPdVjEYSMDyGt<T)$F$V+
z{o=2S^CirYSq#{xbz%RoJ>_d9&PuAWK^xth^dByJI=;g?xXRk%T&>c($@KeqwiT(G
z<M)jp^Yd+fem%tvkh4Aw2BNRUw|6{vGhbn@Z%N~kfPlr6-?(GuOciVPRgxR_gIv+)
z*9J)3D2(-?nS*xX@-`Im2Ts4r{i~w?8LT+G?}}!=hA!H}GyMi`%tpDs$F?DUOV*eF
z?61Sbf9dX>zs41^yyJx%`L?0^mlZr(U=H=X*OBMl!~2>^SjCI?-~Oi70UYCF@LX?<
zN+<z1xSqV&N-;BA6HeE=g`n5l5Ak{L;4^f9!i`(~<4Y^7)xFM2E<IccOgX#ub3WPH
zRq66{x2tbys$=BJNUQ^#3r(+H<>(^BtEfp2CH7V7vHAKqX8Y{S{1;tMdW82O^TAx<
z4aYTB0##-&1bZ2te((rJuYMQY4Xv*9UFDZ5>u_UIoGdTDlYe#ZsjcwO$#lNsGxKF1
zeA-OG*x*Nk@=kDy++2sy4C$0n$=PtO7^H7~$3%70m0KOK_ZnvsWm8$auWgd)6^zfi
zp^Q6gyYWk5uSqnl?dm$-JPmKs+2-!WebL#HP&$2oEaWa(#VULKTGf+k&E+&c^8`Y8
zK;5J+5&lI&*y439x`caksjN(MGutLVQM?dTAS;|dO#s=e)j=?b*0EeKOJCoGr)7E;
zb(4v?grP>$avxz$P(d{ZI?gW?Uwv)*Y*m(Jd!>|O<C_Sjd%V6q*hq@ob$>}q#U6O<
zS7L=pe`Qxa5k$zt|D7{v>O@h<-#o0sG05F262$Ji69aNdQ1olC;u+-UhU*$e8s6v0
z={;mgn$v^GDQJj#f)93inUKHaBvT<&RwQp&C&ov|)+#RcD_s1q9C)?Va$^4riVH^~
zl=p(d{Wh(eJLCQ&tWDGX{fojR_DtioUzNVc0BDvubAI@{$^h?tt$off<zr|$38pPj
zj%#Nq&Ldjom0-G81|KUYq1T=`UU1B?&~Q0lE!7DqEeFj`p{kWjSVP%f5oSg>R@M4u
zi-X)T-tPm|t+;^0A!|XRn2tuD{(cBF9J=jtqk_fPN#?l%RN~>J%(|A`?ijZ|5Rn8<
z9N&${lpJ8nvd^PfFrhfg>)X5celMx0!!rM-l}Dxt=?jF_EK!;8+0|vV1Fd0*utxS&
zSHWwFbUF7E9$u~MI?ABpX0C~ji~xFXxgf0MS|Z&I7{hVd7EIharY<=}S6%uuE(TIG
zk7;c?{~megF72*;671ze-A)9a68C6(1^pULtrxe;+HTC!_*WrC4U9^)a=C2!`;!vy
z)t+0Wv}5(Zk!ZfANBy542~X?^a0(W$-!Lj3Q~L+Plt#4rxrmrM&D?g!vHo%Ln-&hA
zsjKUbNHX+zgyN7(^WVF30n=p(hSRs=@))&cmtM=tM9q#>^8fSy@&)K$&xF3rLH;{h
zE&8uGZr@aE>N*vSDfD_nb53@C?;sTEP~x|`YSdvFIozKzbs4nus`g%=Kll*1@KQUa
z|0{NDdXOAZCL<pq1Gi<tR(9@fZmxeneNp~7VLvpYy{UOPf}edb-Scr-omZU$GBQMY
z&%fuDB}wr2z6ru94UE6JbeZfyfo%Uq!N{xU(Dx1!-B+sWs?yBfVMC~9MbV;)M(OQ;
zmd$=&a`|0E?(1q1tpDHHYLujOqDxk9NnH<gwnR3fq(u1NVLT`ItBn>!Lb@-YSc5I(
z*;c3j*Z-}bxztX?4I*9qScd6@D|bgO;}GU=a%+oQOqTuPtv*4o%c$~hoSBD;T^sHE
zBZDl1%h>6g<FlSsBX%ya%{NzFGC^)-Pa;02L@dy`bo1llh<fk>rv%7%XchTUeVs${
z7<p*2elsdb?VO#AsWviCo10HT>h2}J%a?cWub1rkFOP$(0_Wbps$OJkURk&`tD%+e
zsB<pu-q&Ja3N%#KIDfUuvSkXJXEC~DGZhqnBV@n~MGB~{Ry&#H_n9dFcYe>svOoKW
z^3EMsBxrFniR{%62z75IRCN)ngs!Hyv?oH_GHUy-oVCx<laZp73T{cg4|IdhIV<Ai
zsG^5mZQQ=15`wL9AUizV7mQ+vPjPQrtWW&*`E>KQd$3j?=KL~ly{77e+fj^W%qp1h
z`NfBOZ4><tE0jY6sT+x)o#TA>8KzH?5^cZzTK|ba5{5hqMEtjbVOD78|3fCci15>F
z_a`}exTzfEix_M~jg@`7>o^raNglIA7cXQd<xdq@^7;wD=5+EMYW&V5;`As6Z2l)y
z^#~mMoqxO06f;M*B#3;2!UQc}U3@rwf6E*dG(kj773(^vY`aEgk)*%p&!Q?nPBF)y
zWd7;t2h_c0;)+IcE<?xctX|VheL$8M`#FV^T$-qgM5$;uUvXNMwsJbRQ{)j(CQ?))
zjw7eDDU#z4NOm>G9I1E!xBSHC+(BU*kxS<7YPnXCg#}w|9+XU5GNz>h$YTZz&Hj<Q
zGT&p&%*iCAC$f@%-Nsb=GDO(M%@kzD)Q!VE&KECfSK-F_^X>L+4g^dH;eGe%i*%i8
zh3uG-GI)E}ACFG{>Q?hQ3#P}O<wxu*(^Wg~7qHB7bhy^!u;w{F-@_|Qct^M5SvxhW
zAFpn&cN1)s4j35>&kYe)ogJ$!Z+{iR3j~kf%@=?C@o{i$dowSkZbzSPYV_^^s*bqJ
zPm+ej8c{Q|zqxWqz1_|6bTlc1*(l;KwNr#5dbm0}y(opFTC!X=KuFI=zB-Q9=%38E
zKji^10L-dx-5#YWP)#A|k0vADe_Ol@PTuidgn5^$eHl=(sWX2SiSbVky6fmi!Ec&h
zn!@{LxvzUYUO~1w2MhF#*O8*S!YC%G?D3G0p(QJvx8MZ+GC^_wC83qpchfa=v7K7K
zN`ei!zW5L>+(ilhhX>atHKWu@4&t(tog(iA9$FSj1z!%s-~BdO?RyoTDIinH2t^ys
z?sPek%iq16LRDh-cfZXoPK7C8(`qFp+LTNRC~HNMj5QbRYu`u>rby>2*Dw|)bce5e
zLx80gE+ebB;4)6lv;Tq4_edYY=jwyhan)hsqQ_yKt(86_vK;`L&DYIp)>R-H%`UP@
z<nOpneNNa)B!~i|v>{`?Wk$lmOAQ;+Et*fz+S`adSkrz4(O9Gg0cbZ!MLff*SMVtw
zaFXW54NR)JwBvL?iRzzZw=OdOCy!8bz@5w^p2x+0DHiNUAgSm??N3Vvj@pq5`l=Gs
z8J3?CCl(g_iKzQkI>V-orIIdvLnz3c080u6I?*}3t4PUT0m53HoS=&$(cHOMdA1lC
z&HseKo9Crsrl+l@Zh(Z8AES^vJ>zmo*D4A0lr?fS*HT#)3-Csyb#rxlbR$6SmvLAH
z)#}MwE!4~LN;1|t5?NJfD1`23&S?+SW?dDE(H5zU=FCt@qoPP1xdc`^xxBgLGxd0d
ztG2ZiaE6z0eREg>Z{!BvPlsrJvb1uJnZfvcw!(8bm|S;2#N-km=B%P^rmiCnVt<u6
zodh&@$|72>=$^G>0N-u)t<*})en|_Z3#rJm8*zZAm%3A99jjfwOjnBv&2%S2pM{5-
zHf>G$H?7TZ6q#SE?BajsW&S)pe|?=F)cZm}qTRDV*8a{W_j}OY;O8G9UrNkRD$S@h
z1e%-ctKuNH(Lt0CaU{FUGdliUKL&efo>zj;G9PEOfeD=pk^G2*)mzm6x@AM!GKr)@
zQ!-*}I3%3_Xe9*4+uw~h+G%f(6Z-kd1-Isos_4ZgOz&)J@p+n}YXT5nf*B_3tHs3O
zuou5T0SUw~``<F`2H$EoN@8QdHhs-Pz;UB-5qj9O5}9rH&Qn~ceQjk%E>w;Sr4}&b
z&qYpdZ7Z~FL1I-M`Ap-xU&d)i7nNNsB`wbuXHpP<;pWg&arq<}G0ta~CzPkT+DB`s
zV%UXu+8<CZ=|O&7asW4zo0h&mt*ru?VK#2-^qtnncZH+d6k|(Mzk}Zp?#*g3`t36n
zLMa^9YVZZd*igZt7NWKd$x=Op<a8!x@~GczuM0DeL;Ly|8>enqPFY4ZT;F`WTIRg^
z`j1|BErVj#^ffAqjU^DY?!0)u`<pxYN`z$f=>{vmQh1Iz8&CoXWoY$D{}lfqEhXq^
zl0a`JO35FeUzm20$No{BjPh%9vc^MloF}y!i_4o&>U|CQU}v~`x@$cP+E|_lN~Z^9
zt00-%dxb1Ft*S^7YMNH05rN3%CVk2(Iiv-Hwl0;_2e(Hla4H?Sm(`NZkPj)~V%pI5
z`Je1L56!vNiP40v&c1hF@lSM>QX%bvabfG~{U}+ms`dHuVd?-W>!_Y12X|27H5HOT
zr8B#^l0K_YvhYz>Q(;M1%JmWL^*7m^&j%U67f;W~bkEL|hl(o?AKN&NrlQ=$Vf|~=
zhfU>eR*y+-n^|uC3xl(L`u<h){PJoIstByY$4?o3_tc|XhSsTI{3N~L?`{6(BIC$|
zq&!Hm<e4pD>kGN8Vn^*r2-71;=r^gQ=BWm=FHfw0)B^-Yi^KC(A+0mzZd2bj4CTIn
zNa;rr*5`Tmx^4MX)5JWTda?71Xrp#NKTRRtM$X^ZP08EeyZD@Nh_hI!R8M(@{>7OV
z$E(c!Dh+(N<>!%8VHFln!d_+3r<a4WMj~P?*7r6II;ut}@=Ah=fo^lktHQ7LuzR7Z
zWfi%K3XX4%3XyCCyzvUtzyUFpKs2?$k~hQ(Hko)N%DU`l(U1HuSqTxeLZm#h+-cYs
zi?n@yae6P-_|7((?ItMXSRLOyUA%GtJK;#TA*4dlKk{vnj#g&aEjJQK*glwvVz*9f
z!APG>ZvMJGv!17&$&azrI&)VKWDOM3IA^}QrOrL$6uJdV$Cj{N4HNN%#Vat6;!4k1
zVqFRBUPuVVisK;0_TAa#&d~9;c_)sWR);gXO=9e*x6joL<U1xWjt>d=?@VF0^4$X1
z#Dw9y?^;~n?SOdAerZ(S{j&GX2oC3VYWDBc-LbPfHFoz&i<4B;{?9_L(@T(MubC`w
zb`Ez<v7hzPkRuY_&R(f!;`=(b(LdY^;=X%cIJ}K;)(f%>HNCn*VFctzc+(y7_9_q>
zC9}*%$BnD^_FxI9t@7jAqNzAm8f7}pv)6CsRMTwLxdGJpMRTuymblhNATeSb5$AIG
zt-EE_r;;I1fL)&%W>R9v?$+V>(-n}+^oD;Lq>H)*5VQ&2%NG@A>kHR*ySszu&pvE%
zR{A62GCFc9vK0L&L{==>+Xym6ki{1$;nt`Rv_?=ww_XamcmUfMNAzqSObg94^Lza|
z?na-HTXI!PAR@xrJ(%z99_(oyJ91cS@j>_8>XNWNR^s+&wnkDvWH1l6^wM8$0KxF8
zw4atbbFD*%PEo77t!35o8R@72e|FiWcV>G=1EmL~+i9)AXzZMx|9kN{g|D#pq2ib~
zZ-O<Kr&ISOvUN^Ncc5`VVi*O7XdipObo1?;|43YwQ#<g6bIf;cGNe7Ln}>70K?0UE
zc)1r`nI+c&LXtEr5lD}HDVQ|}3L<G!o{7Ist4NYp9?=?gvo{EM)e#Jjg;LERNv}M5
z*z%BfH#fWe&|`+vu{V9bwX5{a#Eb%#<XIkZw+Lwg56l0Kq?d?&JU_ZDBeqAfG*n6F
z0uswlCcmfs&g?)VV4hX45Zfc_I?jAAehWpmp3e_u6*RqoZe~m(z`8`$L+sKPlF%d-
z1z?MZWqB(*VAQS1-lwH(Ofp#mu%|!fQmuOYNtm1Sd={7J=X8@;m5T?)miP8IV*>5)
z_TufOVy0fREN|RD{iu~!c_`ZSdHMqtk}h{E6uQ_z3=Yu_eO6CkFGhW;B>DSin>zqN
z-wtNOd)k#QvU>jDh|$TDAMmr1xmmftdcX73fN@!_s}D<iTz`{Fk*BFbGCRrm1Uho8
z2cy-LBjc~h?-&eF^9Y$<Af+&-?5IS*EKid<?^;?Mw#6ukZfiT@f<S9@q)_om0X39d
zvgz-o`1nd3oXK>4Z)X|;x#!aY1!IISecsxoh0HvyWExuP4{qJw@zrg)Rf&St-TX57
z*MYD9vy&AlV|Mo23^8N7#AN$Z6{gM0lvtR({dgHY74AO1gF#{KvoWBaH=PtxM_E*j
z!Ajl;x(XNYVOCl%45sjadc<CyqA(j{(=8D+0?O48{VHhv+Ex;f3?<s1TT9}JsBxR6
z+7v~f{$&DzUTe~v_pftv9YyE~y*d_Wr#!22YdK3zy6`}rouM|R!t{~<lf#NXmJv;y
z*DX<OA}E0}jCfVO<bDbPn_Xa76mMc*zfd?<0@m*~o?(J6(>I`^w8l3}k4W<)VPa_<
z{d}+QKdtRc`l%Y^v$oo4jVv554M#Y<?{seOKIxteilC%q^W0HOldk+jR|k#Us+P&1
zX9BLMCle)1k*t5Vo8W+zL|Y%3@o2bO(A&EfXs7Uof8AU1Kt0X_!@9ZDlv4(Cwe!@j
zs@_ogYw<n+c>9wU<`x>NaPj!xix1uHLnskTA1~f?mb6wX_&f3CTU<iK`$sX{fJ=P$
zukpacl6$_|JkI+`FW1*&#+*VqkGc8QTl1`<##5!4R?^|^_@+v~eqV_R|6U&K%}tuK
z%rEax{+e9eFKu;Ue{_>}#fSAs(yMGnqqpnXq$+h(E>#+-uU}k9f3!%T9Yfow1a$pk
zjW6-B@_4&vO<$oEU{}sc54Clt7fiyDeYr8;FG)Cw9MOR&al+%M6&n3I!Mg3WW{A^g
zR>IS6mke<6!YzRUkHEaIk1zPded?JWJx(A&B9yI7)_&6|;NbcgyLIv`**eL->cII9
zr_>^*Pl0Y}xx=`%Lu`^o53%Tso8OO%7)O)=Se;`0fzlJ_Ugu5j86|T4@$3)tmZ}!M
z%Tp65Me*4MapZ_U)fI^LK97JepmE&1LQAS9yka2TMXR}D`$;PX-R%d$x)@r6^y|rw
z9lp^es^>Ra42-6&qgr|}m@lKTY#F=qkSgNCRrN#(=KuL2I05(rL2KGBkojbb(}?CP
zA3K`N?0mKg-(U03u?ow8DZ%Z@MLJM|h%SrpM`hwe@dS8$YG2v7rr*bGyzjL4f3<jh
zaV<aGd(~2<$-)c6POqWP+c5}bB3Mrbac%J_zanR@izX62RAZ)_Ev$-PQt{f>%Bt&9
z)1A#yGzQm|@Ve^LH>1ahmx~{~e*sn63YzQ%I%a)$4GAX2VSTGSBz<g>)1kS6h8GAb
z-=e(=2Et?c*4LoZCE$8<W}WAXiWX&zUKf1Y+~O*S(x+_q`1LF7CQGK!xDHFc0oHU6
zj$<h1`k<<wA3b!xXqO0rNH?{_ZLvsQi~LTn_PZrQ_gDpMcAxGcIH}C#zW%dQY^>&3
zh<1DJLu(;2McXd}W&Kwq@7S`<gXi}i*=}6FLT$qVBuOL1=mR*}Q=45VzWo{mk`2xI
z16Vs1x6M51;DGG(;gqfKcQdYgQ`edBIaymh@L`2EoA2E&3#_4L>g>gvyQi|ERGs@6
zP$EpNCi~qJ-|eOt2jw&0LP+Qrf}wSa_V!mTUX^h_xVp^wB7RRM|LTEZ5lD-v3rzNz
z4**nfu7BO09=)r;O(zd7WWT<g;8x2asCa&PtzcM=C_YV2xI|j9tF?kfKa^4y+U*Yw
zU%ECdMaCndPR2AzRqU-ai&kjq*LgAURVw8^+*#v%#Ob6Q6o6BTonUqEohdH~dC}qp
z!9^dm8u>JadOZ2vP^p2bpXWDPTlgTeasKM|?DbKCj8hV$rRZNsK%55$tpEu)IT^$7
zD%r)h%E&w%z-TZyJ&&1Xt}_cOidZurZjv0KCJoy=0GYc4gS^qh9|Tk{Z;y_uiQ-P>
zubRw9)J!P6l<MrnigyV+|K!gZ=OF2H_uB%o(CWUWSiFc(=i6Tsg%Rm5<xL-C*Z#&;
ze)yTc^39vEkpi=A<K^IN2XRqyect~!Uq(WZpZ&$B{6&3`{375b&{ujcjtPhEBlgb)
zjv<;EvezOrMzcs}#>Y<h6Bm~l&-Y)Q{?%y~*=|80FQ`ii40f&^+(oOw?8WB^l>Ff8
zg1CIfPZn+v<>7<g>UUu=FZCyn3y|Q)?Mwd%=~?#HasOCf38BiM5=za)j79DH;1e3Y
zI^gs*KLc03H2mv?JJgA=%N(OOr-9_6MoaWfXBWhW<|SO)&(x0UcC;g=>68hsIlN^f
z$Z)2Ny&EN=KD|sxgJe_%F6(+{H@b(>yXl9=-c@BUr)YI?b-W#%x4W2r6-^!C`}|P8
zr<2@L<H4l{`swUh!go?4>^|#mV_pM0ymwL@nX>e*Wy1-~-zg?YSJu$%&Si<)mdEpM
zFr`c3R(aF4dB>wHS5K47tujbuNe)uUH|o6G3eCa9@*lbv{KcZV%d|%9Bf}a#2;a%n
z$0+LZ65X~4h3R<1D6Mr=a<y>HFct^;D@=ZIZ4ys)2taKx*Z`=0+cn^DvY&1lKr9aL
zvxl)0eE3uf<(?rcU7fxno`iM!UUAlGL)}ut0uUr#3bB_?W%mX&0JA>Lz_=Uj6MD2K
z3z>1_zneNxgd)kJkmQt7^?!1aO3cw$nw8hd7mN_Efgmm4E)NV2dK_M0!W{*vMyB=;
z@gOvTF`~trK1(fUIc)i{Aegs&{66`Jv37}|`J5{*C07h^t61)QQy*s7O7OKHge!{^
z>FVg6Oql_pFB1MOU$Zwy9+_OX*#@5^qI+*Am>d=+$Kf+eqw!zxk~$y3HOf=my<d|U
zjUkGy&Ft{(<?`2(?W%t8xLJ(A`Wt*ENAMfp;BdO};p)n8Y=5?#U1#P4jd8r9lU#`~
zXHwSD7?b^37;;Vdf<*WO>6&Q@{LG}tm8~g)bKUHh*#_y&0JYb!xv~le&xaq&29N+1
zEdlN*BJsn)^O)$|SaVEacbTWO6^y#it#mG^Z%k$zX8$-Neip2!(F`S*7-CElZ2;SC
zTN+!q!}xuT2qqHAZ@)qni?{f7x|ysGOy~GK=QJLDzgjkh)Af~WXWPF1e8Q4&B)@VE
zaUUP^Yu{k&09jxA2HXFQceGB_!q=`r(FrZT_6?d|Wcbx@h*!S8VssEt`)k+8H@<NV
zGVZu)&{`yMN!5HYb8XsX>9xVOC*>AdM^v<Vhtcl4<Z+C?U_7S}H(^*m`&h=!^v6J@
z>chll<}9%}JG;-L^yj91AG{nLByo_`PdeEH2P&Wy3QP}3^_Sy7#cSX{6}P`Y{KMgC
z=N4$jN|X~>wM*>eHj7piP;$SWn$DceU&;wLI3<mg&BfVS&C!-1)$?iwUiddmF0$SM
zI6aMn?f5$FGV=a)X;zrWZzxZC_VGL!7@<o`{d9kLP%?Dun=Pnr@5nwyLr9>|AEj*}
zzvuD9e3?^o>Z6QuF}X+H<F~wF0iQaib=0-=jjOaKS<Fr=<w8PGGE_!q&PvX^%#qDH
z{mh;6$@}==VJ#IsIPzz7MT36)9oLA#5oaa5EW=P>E}(*;x18ef)N0hnb7#H=Z-GJi
zW*v={QNm_OJ=m~UwAIRTkMRQ5%Fqr&#d*0E2^i98@l4>i(hsu6mk5|Lv7r#7O^><P
z7&nh5HJ^=>RR$QuGw1}(cBL8xXE0C_v%tj}CSIri1PrXT{XD<;qeKD01vzciB9Igo
zV|8&Rp%$O^y?Vr~#?VUL4KPw0mV=T|bTb2+bMG(>N9Zxaur`hkLtRTQ{nJx99_pbk
z3VIbNwF6N*R3c0MLj;9QGyg}&w<FIpE|kp-QR(Z`*Y`GVUzZs?5r#X^zG)|43%%GM
zn)lZXH{la>qnz}vXwB&DcSoZV<brRIzz&s#bVLu_n$X&a3emWW{xS=&2MOlmE3A(?
zvb2ytyDjsMslIvACan}<?sh<Vt@SM<T9$lDtJ#zdqQt=3;e{tj+6H=r`rKUM?s{rN
zx#=ENNR~0vjmZ|Qs=PrP4U}Hw9?Rue?y!bloetBxvnObj4p_h~k=VZ_T#L3Et$JQc
z2`;M15l)|7>mVW@$YLi^VX=>HjtbsY9R6Ha0W;JxxL7{0?nA5^kLD`i5=@f*1Y>8p
z%gMj<y^dg~^)h%$_@_!NdViE0=m-P&vw`Pt)v#zyb@=i1t>_SM00Rk8%WFMzgM|5@
z7#TQ!Ykh1U1)7i|ZH1k_CN@|T+g=~3UPotZ4L0~(V&K)CtOsOK_?{=8wtVKYwD7)D
z%b{b`d4F(BQ&B&vz`p><DtXzwufGycSsDw8F^xO!$Rk9D|DP5uK%p3>&n#b_ROKZk
z#0F(m+F9)5#dcr?MSOq|W{NHxP;xmjljw|{f6YoHNnLh#w2{Nh$uUw;k|Tx$94qe{
zX%<w0=ue^I%GGW7Q+d=pn_Z0tK2O?edHuNX)Kx$Aw?8l?LsQBxI<=Nz?ce^M)e1?!
zn<D(h>rp{Y&$qv)xpgd~*BvqkcSN^?>G%$E1U0MU-zy{Nsl-D9>We>fIK@;@8o&Rh
zDN5>*x%~EfNJajgb%8?((!PB?$1g$gx9@AFNEcWJ0ng9@HIf7Tkuflk$eZI2s#=e3
zy*%0?U-8O8vq;NYqB9+X%ERfLtZqK*B(Z62Y>-errr_(Ro3f^|+@%;n?F(;c@Am5T
zt@<@+U5HhC?wOM6U$XE|p2UADH6<@6u&6b3qy2-7G?<u8iND?5nkV)*0L7GorSIkW
z>nmCLe*`@E^E~&H>3HCua-5H!<i2JCl}Tm`0B-4TA)S0x=A$+LEJ#|0tDL?;=+7~Y
zAK`KRtUJV;c@r-#gVFtIdHsBx`Wc=FcOwb!p384vMlROlAJWaPDKdD;^E7$w%q0EJ
z-cF&BH(fTpOJqo>R=DNWaYY;qo0_a>El^tCQA`?n4EV`EyAvw~?a4gX!!D|*K2ry9
z3`?H1Jlx)$ckh=I(<L8lY^bM=hGyc5Ch&<S50tIcHr(kgR7_P;u0_ANEuOM>{dM;A
zX)z`Vj0F@p=q|le(hal{nQ)os={<5sB(tPuC58YNSm(A3VPYMLPL#nOi9ZH%4*vf1
z`uf6blYke)!zbyNEZd)N1op3sjWL&D@#;#JGCh{xN=lx@*HF#j00qmc#dt6Q*7n~Q
z%-Y-HffO#Ld{VRrhkIwbXZ0EaMb^|=DkmcR`xhTkZYNJeP;x^3eeF1aLRIM9s@iKo
z)>Io#2c>=H2bx>>L0P3Xbi6B}eV9o%e?u#nL4vT6+Of1L9B8kl4#=Zi-bB3B2yszn
zTWfhpjs>@<`nmj~I68&<qE~**-jx=)*Tg<wO}eRUbcy?$gm8H6|Fii)FFd&enPBN8
zc4l;P-KV3m&Vg|^=bOt|+nsgd7$!0cw;OKn{WLvR?^Rkblp<_CL~;p<J}Q7#ff}JR
z>h%n8tx4#T-_pw)H%@<(zZ2j*q$)$-6H&i6uc|u=7R0V8*x{Pe6_s_Dm&L~_gw2ds
z?0oh5>s}Nw(y#>Zcx(A=SHhJMx}`l4#nI`~p8___UaP2(d%h_wkUWALfy&7LbZd3j
zz#ngEmfmcCdnQarg={q${=8rGl}27FRh2EJgTS)Bsu8LSYUe70`fO)c2R|)n_jXm_
zD+8V^jU`ooA`kbwW{p=Dx0h7_&RhDUyk9N^%SThZFmn8Qq>0)qag}orPDA+V-KQ2E
z0OVm!G&wNz<CiF{O5SOTlmIa7s;F?PNo?V0Y2YIydwMG<`p0DVKQd~5l-n;wl2spy
z7Q7khJ}Se3vYbls66;~Q9LpN_pz7#H0&^&TN&^zawV1RM2#^UrGK`~mrYG*dxA-`U
zELaR+$zp<jtkbTD<Fx5ikVOe7%9Ng*x4c$ujpMN%Y7(lfUhWcUt(={Xs8H-nnqRj!
z62&F&esTT2Z#my5cE*RTV9vg5uZtr1Gr`B;n$@eB3R{M&JtN^*aDhQR)!Ol!RN-c|
zOe$t658u`LgnI0p)!>wi({+~a0MzM+lcVAxN3D_Hisf`hj;et9t#4`dUHd6Ndlu<&
z3^-AHnQyKu*redC{+_E-!-t&r3<AhQsK?WK#q^0nq^TU8^t;w$VUcWD6|c0l?UJk%
zMluBRDdZo)R;i*6x%0Hz^_4m|L&=Q`M5UDCqZ-tA1DQu868yf*`PummKd}tc9(ppF
zjUj9)PMBu!^)UhmYh=;gCBKG3&rjcZ_JS^4rj<D;<JHIZ*M3j3D9~d%|MGm1l?-^4
z!pi=&ICFGIy;%RVp@p3b7^0BGh2qQ3Yx%D4x!p5#a5wYE+J{?quQe-ESmr$M6`jt5
zVNDq5z#eKT!}xxnA8YZ3D!dSfpjPm5)8D^pJ=mos9!=h_FXUYjWzjZl%V;%!aw3g$
zNMGOU+ol%}P>YMf7<*9t!A$VdFMyweT$g`71G>0Z+GN*F{PItK{-6I;-SYqRp+i$5
z1KCZRGCG50X-dk$SJJ+{cm?UBHR@%a?C`@7B5NPAX?hgzEsg?kO)hVa@2BcE_FZ4e
z_#J<&E-v-3EOdkH*`v&I7Z{(%8kCtcRorWWu8xN5-Bq>OoCtDSCQ<cXs*NWY8;cu-
zbm~a<Cc9bkdg_X6a9&wknmQV}*8<wRdHE^`<!w`2Q)kVfW85`U&F~^mJi;B?UEMfr
zO8Q<8IQz*MJfbl8jN6;W?d_*jF@3&PHxvl(uD>MCvzB?KfQu!^^0*2j^SWHuQg>^m
zzLc(GTa<Y+_r8z;2$TQgho8QG@Y6qmS@n-4cWY^7L-=Q<yHfV;dMIY;#oo>^mh-*I
z$-?N2x04vN-KVSFs2H{(w(0Fc`>ujb`C+zFkEXDFm2)n8HS=;;Y^|i9SK009|4-Sy
z^|f_n>B9didT+W?za6N=<WRZW;$WL_ECkrjoeZ*(!9XKq2QKz!fB(;%b1exwuCDH`
zssw3it-0o59G>xvG1gsj2)!cH^1DQz)Y2TOpk9Nwq){~y+-M<`@ElM?-<%*@Z-4Ow
z`m7;g?uWL?p4+kpVhSadbYX8S-EEDJ^m4-^U!Ls0SXb)!i)Uxp(%hi!JM)jSl*`8P
znNeWNmR2Hf=eA4LAcZJG_j7bh!yx5<7?Ig^c3Fz3)X#r3w7#=X*D$B3ENLuk(<eV(
zT)4PR231Dz<jO>^A6XjhS?wbB+VWV+?H(^~=1Z5!w+h?kAM({o%cw7muc|qJOP3j0
z<0Uk3%$unvepzid?NQIPdhdvUTf-N-Oud~q*2+p7Q&eQ>grULuZfU$xWv!=V|0tM6
zi)>78$M*z|4`>Cpsy#n}ad*#brd`9M>OLJ8lV7rib9@16n#Hf_oY@)>ZspMAcXAAl
zG+zC9!?5tWvF(;5{cowR9gUYVOTDrxgZb5lDfRkG50p+*q44#T#E|N}p~6%->Ukw`
z7M=+P@yF@q!+iEYd1SxX;9jva&Xjz^Ur0@^&8=5mr<gr$1a@Lan6+5==CM`5@|mNC
zRQuD<M<<=k<$W~bS@+`odt<4<_ce@-g`HHlzW7sS9nuTMDR8U5SRg6j{d%PoaA+bd
zC1Dty?LEs<;Q)ochQ`9>^eWlmxml^%_r>S*w%o#0;b%XrB$Ff?J_X%i(xFQ|spvM)
zvxZWvt>xMpx}1!YA&Gu*4>u~-eZ2=nONrL`>>}=I!891Z&6;U4nV9W%-O3AtDB7S+
zmYX=?{INaxk@7REL~_E!W?s54veq}0beD~S@DqsnW;!^yNNXLJf2$_8R2Jd2BtTJy
zPfuF!d<hECMq7WR68_+7X=f>Dw+5p)el>hESkA{wiWdX18@Y%=vOQW>&(nu^SuIfr
z(ce|ufAUqP!6p>TP-gY3om3_%n9=Fh*5J7C2U>B1G<>lD2YNd^z2TS0G!u|vn?27l
zX%A?AS+}ojlW%TeBfv`3>21T({+{MmWeU<IUS@6?{SQ3RR*#ESbtj0~)hcP*b9po8
ze)3<kR<|V`Tg5%pq$=*RF+*^(vhd-J4+&J10^9sC)^AamIS)&AQ0cQ+dwG;#j$UJr
z^P6J#_eLOK8<bIMN07m?<@W@-x`wW8tES90M#;7$<K7%BkNT?N-ZMS0l~iHOdethB
zTU@&FT)hAx!5c1BB1ea{N+hM8=tVx;-+o;_^Uw0KYYee}oosJVgoIa4In#`k+3(gV
z!V-ImL6BQamrU2iF|~`xaDL0t>2SYv<H<Nu^0L;83u+T_-~Rl^H&>jy&>9bBAQS-y
z;)bN|7qgaLTgYC$vXaL0paNVyvN`6KsGtADo4Gv&)VQ`0pB#WEt7)A;YNw)Kl{zqk
zxDi_-s0QC3NdO11@?&n5@;RLywb)0Zj!6+r7XMcdTi$HWHIHw^3K@(xp)P6j=cOS)
zAiP({K}dcnHrx0CJW`D9W!1X?K-04W3VD?h(ud66ZnARV3MPYUtxV&Ne7L<~XE1dT
z=WhXS`$_K}lhqR>Hp2RTf$0+6jGJzI;X{qWau^I>Z`U3`F|e9CPg$GJ)F>hyWSQm!
zvv#ZL?foY}!%W`BCkf@>Ypqr^gLz|UZ(>&Nua>>IXtq}h@l>Ox&BJm>MpZzPJ{4TI
z)MPY9Q7q*ZM$+3m*U^WJ9%sKAZf!qdG+rv(Sblj`$M3kZt4G)44o9-ki`9PyC}KFN
zT<GxWURcVeQ9X$FS17TbLVU!alNPQ{+E}f(*WYa_4?#IBqNRh$Yu34bMk!*5{p0W-
z4|jJ4!$HZV8!Vi5H)FUw!&bQLQneU`ZS;N&;Bm${MlkuQNp2j61_R}#SrMQbM#grw
zY)kh_R%phGK`PFF_ddayAm&dFhYKjlm?+!(TZ7?fL{YXpC0}KKV3N}BSA*-D>lOZY
zgFx$|Ut}^&IoRZAd?|kxAogVc4q5{<tlp|3VjE_f97>pCx1ZDofi<=+Xp4=yaD+IG
z5dnuU!kZUU3X^6mx2fC9d2F%vYRlPF7Nfh0A}IwBmQ_k|JR0P}E{)(mUInx0k&}(L
zR5vv<*p<T1A_*kO-yC0;nbDhFKG3RT5;y$C{HFM3-*4zv=PbYPas2PsC({ohRFu8#
zr}ly~a2)JNHf(YUV!pji1hq)u_A1)vj=ho}0INugcALaiFXzi04+<R7)hSgXLfw`W
z)9-v9l{GsQALOLSg*(dA!(xpoRe6HtBXQ&6DJxQNPm9%h9%Y@H@&r74+4-&b-d{lJ
zF$)$F!h$^mW~B<y-f;8f@Dx&YG}4aKqkc-=qW$CJFZaq*A6oh}rp*PajgGKK<MD?N
z6Fqu)SXURYq{FMT!FRsB8;{@5bHd^|2`(=?MSZbIQ{0SLGcR&e_eENzo{uM@+YKsg
zm(4o!kB)Tp@cbjYDe)f#N9u#bi-zlY6IYPR$8STm9i$uPhxwrVk-%==G)>nAr$bWz
zbelBZJYm#8{p>zgVOM6howpRxD$O4ARc-2!99^W)H!{u1i~SuMq>8^)H@73Lb!ke~
z>(0n-boGG6$6W3vNXx~5D%mf)k(P~EOqi>)y1lYbX4EN6O(Y4Kim<-e+<vi5UaiM<
zXFV%DyW%#SW~boAXtVvTc!s;y_t$r?bOSA(RVE<jgz@HQW-?T*KVOs==nPtwHy}*a
z6)R&D5n>0PO2K`~9;v&uzBKv<;3o|GC!(e`o3`PYx`@=*(?{acUDNv3Q|cH;^UuWK
z7b9FoZj96mwjE--p3?u{5+3gCKxlN8`C7~oaEw87Y*vfq-+-Y~Ddic8XGyn{T2Zm>
zW>VBwOYZw<{&9MKF@B6=2R$6id%iyJx@V@>Vj?v%!JPm}YYU5nN^{m;Qgmm|%QE=b
z^hB?`)ioEXc-<+O-ucT4K%nh-HC1rl7roRJ9-t7Tc9x%*!JxC(=wXCbX+gBmN~s?*
z*tO#Ofm>Yd9u&~zY^C;8<57oUqs-&>Nv?=(fYiyAzL=Mt`*eXLUl#biC_*|tjb3dZ
z3-(4`*2)#`L%y1cZ7^FYEZx+hFUT+XiJL^ATP-hoAZq5ooH-{OJ<h!xG=q<wUW~2f
zY1TxkjP9Bv`&|J!q}D&(ugj(>6)Kf62eAyK{_j}M<l(XBP-JZC?b{3}kj2wcrIM$>
zbXU%zGuAst_o=+aa7YG9sp)O+Mc_pmKuR6zX$K&%plRtRb>xHX$rT&EJUICOm?+z?
zijYPHB7b|9)N?v)$wU%SVgU9QexzgWTKM@r920i=3sH`^wY9DiiN&*tyI{t?cwOHy
zVqPBXEn<iXj#RHbmGfmcuy9Ikn8n^*R?#*To=&0X(txjP_|T6!Ff!jeeyJhGslOd;
zZ9I9SQu(5ADvO`jHQHR(Y0^irl&(vM@=WlupSZ>xWd=>A@2|HvvbKr%6aZWuz;j9l
zI>1HlbLM-mql4R1;bdnlMQ}8Je56m<142o>f`1IbOsU{>T?&`Ala@eZTW5l{?4=ah
zTZmK7FBO(m_AM2=JpRnA-->=PgZ<#QUu7ILlqMS#1(W?sE9AR>`p)Tkemp3>Ft!Hk
zU~FormLLa=kYfkQ$w_owHM{t!eSq*Vt-0!rU{1Ed@55K1j4(U84w~(}4oV@L=(ctu
zqSQhXD;W^?q0cUS=_PT;;stJ=>~=fdFBS_0R?F!5&sxDQcIm>Lw7JoiPMW8>B<b>W
z$^y0H2!WJ}xe|no_1nl9LXlq~ZG-RdV%2mlU9F=>-JMqKA|jdDTmEJ#_>tx}KM{&b
z_mmUaj<g@;$$VVJ|K1B<E(WcmXG5W%c)aine$JaWZz^E6gfUt6!N%UYTXL;Q$^Xz`
z%kv52geSLO>}zf!v-IF->GZh3Lhg-K_)5S>%q9i#7Kqq)doQ;0_PGuWD@*$X(otnF
zT2*7)a4ZAD&Ql4<dHM1G{qXF2|MHLL-#e1RkOO}z_{0>?U%8zwy}*lN{rD5XiPFg$
z#9Z!Q``OPT^XuCw>b7M}g*{dHq0(bnJn)J)C;3NeQFTUdbgr_zGN42XI#E_$Ac;)F
z(eK@up#d!aZ`r-sdHr6;FLPGUFrLjp7mjo`mK6wUu2#-dwyVHHvgYanX9GJj8I{JJ
zfrW_*Ol;grHr{<)io-hw!N<-Ri0+UiKiS6`Z)2!tL<q*47h@1rFD#b?9YcXs+I!eJ
z+8(LgWGNSl9?)XkdvEG@slz|o6bFCFTJ6s3*T(AM*8Z>nb>SbSFw)T<J*4nNAxMFh
zV|B2e>UTup(z*Vw>%tLLx;V$deK5>!Xcyrs4Q0OgHt7<t5C99j`*qXV1b!I;dmDcC
z#GX9-ha#{Y>d_4mzI1*)c_>q;wAZu2Wq9ke)unY|KoBd#ofB;UyA9LtHpz}e_Sdj-
zHHiAhE!__LiVs=h*+ZGOi`^{j7dA2B`^M0hZ2~mekoGH#p4k7(14r!p!RL!8HRf3&
zIE2(xRUWFN^B`3}`*;1Lxf!%;=V0zg@{FQrqIFrWFAW}Q;OHz_CsuU%>y&j@3<6@X
zf>pD)Ng&T$*L(o4>acO!?r!dGiYKys6J3&llrQ7RAjhfQU#25VWEcBg0@%cLr+7*v
zqaGnrFckow&l41Lefe8oqA48ey8HVVB%bkgyF%42f~lvP<{AaXoMPNOs<SWM*BzzR
zMF^??&W|W20OPlQ<bp_U3NgODw^`bk-A;mqP=K7ot`p&0Z9=&d4dG}wRVIOLhf6ek
zn4e#0DJ;xhx|1ZOqekaZVZZs)HQAr+4S7PXph6~Z=^XMD%Olq89VT0H7LPnYh`Pgo
z<o`%2A;0Xm?)+u~q9!&*ZS?hp!52wAN`MNiP0FL))jGuC2lO?ygFP=vh4#j7;iOQG
z%Qt1@gN!z}RvORD-#q1W6^?GS<e7!ro<|pxe?4`<Q>O~SWu4|&oZU_abXHk@g1ZiE
zA#RbS*lb3Nb_#~Co3_J0!$pf|jOQO;w|reK9$QVAIu@qQ&lq0%ibMjHEx(7o5U%CY
zbRk~+5EnEY@(cYV-<suXTAmGQ>WrOZUD~oHzsQN`j;S0U#F#9G__PnbOJL>_wEi?k
zRruJvfQ8NB+za(N1LlqO9!n*Ow~D|&aSDI_)#Mjd!Wt?z?`nNhd!2`}^)f|NH#f=y
zm5v^i*uWC}B;4gY6{&Hw4sWgiZ0tJWsHM7998VkvuI;0<Y<Jw2jjJ(tt&>*baO>!C
z=Wnw|_9vzl4yT)GEx49@r(Gy8HrY^%1zsw-cFIC!%4vAVf@kS|WNazPQ7UmjNW}@;
z$@0(f(<01eW;%o97w8HO!WbcqEHP1SOZ+qVAV(C9IApWdm{xq<<Q-qk!&yo_1S?|#
zx*QY9Zb_eSM?106vt^Mm>i~5z{Qa%fQ@7tdI2epBZ*D&nW`TkhQYwC5-J{P)$b!IT
z*9Cf!%6~lnlTPSW6{fM2$ug2GRw<cXz=YGo(PAopwEro^oDKB6Zi2nV76QKluR0~5
z^v-H&sp>VSm;)y2jF=i>VBIO2?Qel+uXdMS!1>AVlUWc8o6UEYcx;^couN<`_NgKQ
z<4D?ejI?GD&)h0m1#OehXkVABzU>%2pMRKQ;8~pB@956)te@ZbeE-pv8pNcO<p$Oa
z>(lcFv%6AM)fD?YXCw2<WNVAHb2mmTRJyJZU8Fxzv1vDdJ^8!{+pIwV#TmsrMyrGG
zc5UEPr79j40Y>TW!Z-8IPfr8tZP;0V@l{B$iWe&*!YV`?w~duMz80hSAT&@a3zlZx
zZ0lHZN(u|f7xs_5f)M^%w-$kOF@<k^&5!0EZKYP$;NamyPA|B-)Jv~jXWO<=&Y7cg
zblg)?7eN$4Bldx@dAm2`$15Xs1PvPUCE9iO#kf}n`}2#z@B-PCtYPSu9U2|AkqUdU
zAg*vl9zTpZ$r8Ihj|a0`!epG{ckgYS>6v{t9^9OxGfK>S#FS;eA<ViFi`Z;b;=1C{
zS;A86(@pKqB>&Yl;YAp9@0pjr$_=?ttN)oOO2TxbG5J+$nbHY^@4CyEm}>EZs4VXI
z-Z3LvP3qK&+o-{bG-3!{wgxP6=9%|4*BPSqM5avJ&C$myRTbN|$(S?@V8d+fD|$H%
zDQFs@@_o2Q)5lLY=j!Cf>bn=~LGI!woT~~L@8kn<`awuKb1FE_{~$$*xExghNWJoy
zUorSIsjGw8>Rl};h<`~y9U3{Eh>1}m!?RBh<Hxc-scrK6>})XpG%Y2FjgaS}zE&s>
z!$j|a{bCJSyeE>a#TMI(2}cCy{@_kW<VSaT9-*v1w=~Z;RP&zO<hIT$ak~_#UJ?T*
z*PSePC33PD#Mw&GUA4xh1`TP425RDnXTq1>S1lCr;gsp_56ds%QEh)T%de=9_FDh^
zRVkew9{X2<^@D#o<;`kRe~EE`cPz2vtCuGQ3-ew|XVN6TdDZPzLc0oDImxOh3P#N?
zYsf1qWVpG~D*|b(jLKK?1{(<l&iL`|%S>SK@^$u)@M3(u)!QloRJsE^X5&R`WIHaU
z`7KSK*rOu>OBvtK-cE#hMXE+)b2d}9l#S9a!6l<N{l*IcNCZ{xq>7HC17nb^uPc$I
zB|o7Ch!!OXF840nv$M(Do15B5Cl;r!mayh5xG|mG1Owm&rjL5{r05OF#|}-lwSdEe
zSWLSHJ0`}jN2Ef1wILjcYA{79r%?Ffggp%0>(U`x$v@pg(M!wL6;J$X**YJN7IHkU
zig~QuCv92H>?HxvAMexY$J@!(%G2r1qcpW4VQ*z~8rN5kDrQA_D>X%8=kBRPd(f?^
zq_SXSS2r`PtG{~c&iwH$i=Ad63TB_C<+S3^5$fepL6r7(BJ}bSApyko(Qf<j;PBuS
zrLWmEZ244uei&a4W+mCC#rGFhkK$<I+}%_4Rl2SHlni0|b8_bdbvKgtTS5h-oSoZ!
z$^!Xkr1|73fRD5NX-aIzZm1GDgNtd#)Mm7vNwKTXNJTaSP6plCxHyef38TLIe4C!0
zxR#?*?4a%~`6Wz&gF_+2w?UY8=WlO53A5PKpNeQy%ZRh%zSjm)BCq;05sP2E3<>I;
z;UO>7{@z@AnfR((#}s#+J(&t>6r<@MNRBT_f1?7Pau4`JeURQn6$79LhDW7esJdh<
zyBtue=8Fr8VZt|+%@bpvA2z$MXE_%(-K<<tkTwFTepTcjzeZZ{Xf<tcOfGuh5B+|x
zFjR}*xMo=QMtYKNHya`$r<#6KPOwBQd4z#3teT{n5-LqxD`Ik7x5Wfl-aL*p>RHGO
zmFZMF!{m}=G(U3*_Q;g|rA!T38Yx0@F#ydz$xBKbcX@G!Q(_Ov@v!TT5c8s3>vx#Q
zc3(Ak+fxSzF=Liq+TqDcP5!($@-GEnyA66s0A%;?k9wM<fL`1zf`n<nU2YHm`=GAb
z&jp-JXkoY1_Ut11_1l!na^{DcVLZ%il=dUa$dH2-dY7Az1=7sEPm+f{JSqN8r5VR0
zZ@=P}`&F7o)>3};m19U&22O7QBTH~F_viX@TD;O6lMPucT9pK<)0Z<@UmSuLMmm;9
zW~^>RKBP_ZK2oX~nqB#7IymMn+g@(b{(SNXgRuH~ZJbJAWZ1Y7k0BTAjt4Ac<(;4X
zs=EB{{#Mo(DF(b(wq#C!8OGS8OJD1^C~L_)yzW^ownGVRb*Ic2aEnR7x1JV=fpo6p
zW+G58U9Hage(W6P#P;P4$2vQUCK?$@;A1-(wa}DgWWaEV@RPUiSY_U$-cjOF4gE#?
zcKhy$WY4Mb^IzmLCQc;VcM%@x7pC4!kdm(9^8i-1OEv6*h{SPQY&o$zB?RVIm_Jo#
zx-;|tWVlY5UfxYU%;P<o#^{pq?4byPZY4!X2GOE@%&D80bWrL~Jx}k$^4Utzwrr-Q
z9f0_kYOGpZnXoS0Q(r?_8L(Ma@8g&qRSnLJDW%i$G27wQ_F<dWA9b~|6$t#57k85Q
z`o+{(E7C?G9-3&lajXHLir79;5P?BS$QAKLvgWfNRljr+EjBpmp(oDNwT$CY9N71<
z>{i~)-)F02NPw9&bhN80sw}jdPM!V)XVyqdq9dO1mv)jo6GCVkXKR%Iy%}|bc1IdD
zTTBfdHtXc#T|QDF$dZluUBpCc%H1Hp{yrWski&?$x4$p1r%ArLoXn7$%e8Q{GC&CV
z;CSVu_^5EP$&s@fm}540`>E(c`JHR+gsXAqSlNB^D8bTldTZIC>r!?#PSAv7st#$=
zN2Ee5xoE%q(-t|Nz6W#<)=$^7btM`GeR`?Y+}*{5GZ8`6Oi5v4;m<5;F+Z<hF%i5k
z%br(opHyWae^v)JliReQY{ybyQ_95Bqgiwql!MW!Lv|O847kHdDo+yE+_-^E4#pV}
zLtSY8OdyXfBdI@5Z>Qo)KsRKN84Wu*zncm=ijp!AP2RM+t?D-0yVG%wMh@5F^^GBY
z+QhE&)t@=LndBIo_U;Rw;d`~St<T-Lx*oH%VDE61mv7_(7TBu<KIGgvmH5^7@4`54
zyLust7ta*falArbEzXgXONDFlxJ$*iZOY)T5dY}-)Nm9ygVCLemwC(mipFH*KHR%|
z4hP7+VgTEyX0$kUWs6<1kd3`eTeXn!8WoZ2ngDg9tcL@5W!X=4u?iAc?$XBdo1ph#
z|NoY7cduo7tDj3UD+$WI!y!>9TCR_gFGGpqF(gkp2q;Udc|R>+L!p|SUEiGX`t4;l
z0JESpk){<>y}U^Wkw1;Fc6O@l;>TBWO4o_>!j<(aF{Crh(N`k{v~>y*pt?d-MLLe|
zP3?s|*+MfUb|w$oQUQRf58Z_dOU0_S+&8;eRLvzGG?!R)-((PMAFYg7%x=n3c)YoK
z@5~$SfL*X7opQ!slaf0f?7S<<?#y`eD{`|tzW=01SULE!``IA7>Sll+K=Bm=INv3U
zvGgKY6Xj!dC`rEV{v{01$AiSt$^@n`<gXXCJ!dPr@JsR@jwhH0X@y2Yq}F-f5H&$M
z5R?i%Dk3U32yKF7Sdr7$GoTqe?jVSZN7gAx-Vw3;c6K91eGxUO7+LAX3RUd3On(EU
zD+5>hO2_g4Ub->2htPR71VB`XG`f~A?r$gY(?o}IrJ{IDW?)jBKirS1cF(*3Sw(Nu
zeb^azi&68svqxe~U5sO^)`iy-fejIhFJbHMeD-35FP3eo-DInJSB{H)9K`2b@r54V
z>XqNNPG`ZNn~(!vI3&k6H?x)DOup85a0tsVLwXve4oytr*v_44?u~u}3vn_8(n%lK
z!RU5;o<F|}))M>(6^s4;;%a<<FA{FE2TdUjf@cQysn0Lqqn(^8jK>ra5gM-#W1(|@
zGR#0H5q>A#)RE5uFHu|7a{{0jg5Kx5o5v#IV~e$y;{>K?Q|aOh4K#|#AB%W*b8Gmf
zxJc|(BHMRzT&T;eU6g<XuZ6^E_sg#x`K_}@IiuWEHA5PbIT~NDg22G^t9`L1r!6n6
ziUb*P5umdqEN%T+ti@_Jm=&%+W7E^{^}ajN?WDd}ylge+U#xUwux<>t_isig9@U!G
zb@51O3v>DAZg!cJ`nb^djGpIh?u8sNDAQ5NySH|cT1I1wl<xHH?rC#Z*<;boS216t
zr_NfeZ0Bb7=rHE!u@wNQ&!^Th{oSvs<H&AR_4ccenOfBEmlyMe<MD(`Dk>crVq%t|
zoN{7%@}DdL(xSjCI}dm7A0FE;%KODS3q(R6H?F&Y^1H>vcWci!#tYzLSBs1KV`KDK
z*wYwJ7sB~563N!ysGCEm-Jvj44`#3V&P3ljBde^)3i88&Ab(94OcRngpFa{=j^pjv
z&!peQ8rh#5N6bWmCjq%!21>QGTiJy*cvr<@cAg0S>2PZw@YijH=wK$2f~_pPwsHH&
z6DK~>F`is;EjsV23-7QMs&Hx<Is)Q=cy-5`&SFmm<r<!UC@_Chy4-@@^5Q9mXkUX*
z&q)3LH~0s91N%jQNvcP&12At<TyChD9IPUufbxvvi5ewz)RSl$9M&uzA9u5_@I}n}
zcP*;Z<YMLnlisR8VaiSjQHi}eo4=iDlR3UC!QIY(kE_;dL_Cf!FNm$8KEO)<{KeY@
za7fdbyO2BD<i<jdQF3vYl0u!VJJbM@>?;H6QskFnQ#Rk~_s&9Q2w$7Z-kGGQl$okd
zqMQ3p)`A&1+)52Nt6gjsAA{Z5R3=(zAU}w$+O(pK-wF;C;X&o(E{4x0I35*{yMEvp
zL?4~}&eXWWAb6YYwkBhYjMaOMQx0!AxlC5=<n6rp7HY5HC$>bQrH!{Y1~2`&GQ5J7
zewvj$O7Mj^=znr4h$mCJCmezUys~VSrM_7J+?@L_WLspOV0m&e&2c;5%Mzhmo7g{t
z&EpXhKTY2<cOVMx+{VpEVTt>}>(^5M9IUy0(0&vf%C9tfjQov`nKVg@+4X~MR8o!G
z#YNH+nFS0%x7S97g<ez^fsMR#ymg3P&cjgpWw^2N#>p-ro!`fw3nJ$#rnv8S5YVGU
z?M?da@@BAkgYYsH>@6#nrbmX9=yZ4c5W52Q1>Y;bI2?a+EcfP@`Y=A+e43wK_^A=5
zc;)XF`C4zOOxC-b>-?)t3}J5mW^z4pGxqdUoF!vW$a2bHyqmvATycDJHx3f4(vCbC
z2C}R7|AhkT_F>}!IjnuhrXVgq3=R+N*w3(P^WJJkRI@r3p0<CXL5-0R+Qj~phI!?#
z#d@?9*d!0M5MVRU%G$I`ZQERG+rnhVE5)Z!j!MsV4TXEBLw+cu{W<uRjurEp-Mk&I
zV0)0B{Iat|%+2;-+sm2+R8;0f_tsR3yB(_{_G+|efkYv$<{}kbL#rte2j1l;?s0%0
zFBzT*-F<FXP3PV(T?yd8Ehxucqyl#C9v^0p_q5MwiYs3^J2ouUlcTxiT&I9+o#LS3
zhr6qe%d`LEp-Ym``lh?eXmu`}b&pJ7iEkhqnN{_Plfm-|yzL>%WL8RjH^sPKu<xzo
zBawG)<-34bx`;4W_g6||wYot(<tHYRg+H`CKC$M8#y6XM7^EWPRpP|mZYz!G?@d8@
zKM}kd>`Gvht55=)ekOnx-$Hcqo%q1#LAVt>8V5e+hfEqnDj!7#?2YfvVt}jJfN45=
zd>H)S@zpzPo3}(=B(!Gs#3!4Y;F{mfmJV~s2{Ox^9MirmE47ZbCa2WijWgBk5-Fz$
z#;$Yk0d}DKqx5<6ts{}1_KExn1_pO%<^EGIc+;zI``tX$lELWy0lLvpDjV6_Ii?cn
z1gJSEG_VbPKd0xW5Mg@vW9$w#Iy)<eP_fuY5oOi$#$_+wO&flXyh!jJTtCb%NZUw>
zy@yPH`-emSP?mw0fI#r??-i()|G0|xJiU4t6WwkzzWbZ_ucxv?&v`ms;DEd(rlYS{
zI!Auhka-ZHXBC*WO`(s17#*yLLfi>ceHv_idT$pzIGvY}#_mi(E#&Y}G2;LOWk!~*
zx<Pe=+D+GfNG}+Zm`-ZqgIlljZ~^|cn!2~Y(8o@G>M-1B8t*-_lton3Xr!>T^qaf!
zEX#XU*W7Ic7DsAR&CjocuN3L6ahI9i$~rlOD-GIgUpfs*C@50@*K%;KG8;~3T3=-Y
z?}W<dqkv89v3ztmKacn>*D+}QJa#q|YT5?r8;Sc3n>0YDvf7DjDrE9h->R&banCMR
z$K`QC{?)Xpu&_DI&C>yjPPo3D&IgLM5@XSC{xu5nl0zbct2p0dxI>#?FBFVosCPN%
z<7V+nD2^gIoy|BnnrcnnCPDfesBW)}s6;K`*bEsWV*AsW=(OGm$O?smwI-c_2$;a~
zfBArr6)pUQ)-F@V^@>H6iTAqOU31B0aK11=WEk_>q;B3i#Dn!)CTYP-pq&VMXuR^!
zilOcG694;)OC5oDuUEpOMHgmXU7fo9y86v-sLF1RiV0srkt;-o_AH%FI-o(W?~8Qt
zQI^0PQfDuxj*9(M3wPQGw(!0e8d@lls-JqP%d#p~$o=jkU6<JK1yf$&%?Y-d7X_r?
zoGW%_Q4eX3I$da0f1R(^kf#FMKg2KVDh?)-8~*}O@fb(Bfi?oyp?w^`K0fWZ6vy+&
ztC)i&y2t+*e+;r&-D1$)e+XsCIC9p8VP7vOgrl){FT4`3T4o9!Y~THxs|MdGpPhc%
zp;rbq(Eg{o%Z|<W3$2A<74ANu<{bu8jiTz$6um8RI~%ED9^$7QPYpQ923okT4n2vE
zw6ndpqTOn@3=(IF`TaMqBXIw$Q9;iau)r5N=ceGTH#dW|67kRHI^OC&v(rVe2#E^U
zjwaLlFiPw=U{E!aUJtgBQ<t^5HlTFxmxj{)GA>YOPGTO#Mk2=LnZ;+DMKYHde{9@J
zC|Qo2qg6hw7@qNR0jdPf$W+BlFf!&}eF(&x-*_^Vz}C+SVM)GjU3s9IY0<%hKZcb8
zfsFaX;Ex*&BCEV4cAbZmNMyUQ)(<3@_ts_6S5Z@$SHWv5L;WFz-Z2VzQ}mIbAsu%y
zez@vm*pypHB~a~85A5v+@bKMbF;+{+s@=4d#r;XP<8MXM+AWiFMFV@JYk{e`ouK&U
z^+Xgl@6(Q<_$1MNpe1Yfi2$h!UnVPr=&IR(PIQgdU3DfzyoXq$Hsdu!Z1EgDlZgO*
z$-DarE{8-jW%k3VnzyFPBIciI7>z&Ph>}Fh7ppWg*J;nJ4CT#UZ$kDD;oAFZN=FA-
zk`~6UIVXAhDx8$_6|!fFif9(uX6ji2zg7ZZ@d--aWt)V!w+I8vW^V4)Ym<i$w5$w;
z<H0MqZ>e9%Gml=vbUL1^i#A!AefltdOsv8;WJ0XlJ!Km2z6ecsE8{}3Ul?17{f3Cu
zozhY_aUW(yDtE!gB@qB<cM31YE9p8p?Et#ou61I#rFr^`F~=abqqpPI1x!_Ft#CPf
zNEDD7Qk8XdXBQ7eT{2Vi^N05liw-c6)vH7rTnH@on`2k1j!!<3RII?1i;UGey^zZ;
z*L8Li%c^)F<HF*(3qoCPnf@zXs#Xn%w*v?|W)SREQ)57>mB262l62Mh6QZ}i%zP9b
zEbd7<(!rxkF70JJn(7Z$i*EiAkkA}M$?L)O|0i52Qu2B{XX}$OK~o!Qp;Vmwvg;}2
zcJ^@Z)Eu(+0a)-r_W9><PnbK?!r@ILhKyDrr`h!3`o^xkyLpS&p?ri1;SUZ@w{|3B
zmFW%5ePr|WLN5Sg7xFDd{TNP1i77-bR(DRsHFY*b86PsCY9<<;Y4{`Ds08_5Qt)_F
zgVQTNWY=~F$%Mt?KVG_HtfbxwTqBcSM9Ma}w;c=KCH!ieJ0t_oi{+3Gi$_El<)7e;
z{u#m#bWX~wlsFQRP)q`=NIJ1fZqj?<RZ93JawNO5U*=$Wqlc@{&=`p24rxMEbRjyD
ze_Xw!)ZzCMGN$=ucUN=X;IK}m7~1CeDpT1OE<`mS<_s4QtJ=k&ilDhZBh-o!T=A!0
zeq(Xuc%YwtT<F@LMU|G0z}BB^3wCMmK%x@^31*i!pKO8N(lJU*vi+?BhwQ2iF>|ni
z3!hQ`>S#IW9FNPJcPr6qcfE(7+=v=LSr0uG#4?IlSh)Jp-TN=LM_Y%7D=nF`EmZ8y
zM3k`v*fIPqEJwP(o+BfIE+*ti?KQ$Z2;#+f##GMEbpe52CZ@P)&TYYH>LEzKK3u3^
zKP!8|eVRj2I-M0f)ufG9&sN1vKIUyXM6*ZaX%t8OF9rS{g_A+$ep;tvaY1=_2rxl+
zxXmIb(}JxjrbD<+95#;3gaF9!h-b=R@1$@}q#p(k@Yolhk^&I_GC@4E(8mt{nP^HJ
zkje=tou54tQztz-YGf+FcwL7QhVq=H=){iFXP2zWgS3OBRC_qJ+y$nW5W}aNSx|?p
zm%yPupHHF$Lj@lNeL2E}WnwrR$}nHSw3jLTDHzL<O=1L<^|F+n>gJiASqrz3s2+?C
zS06(K_IPTR2NXHKb904PZMs9sst1@SSMni9e!3X{yEH`Y?g)ITzdSk)Sg2%XJemNU
zSk^`7TZT^5dJKUqXpP+}rn6h-p_^epO_ETP(1!ww^3v^{c~A1foU8GIitF+<?gs=%
zj#3`2t~WEnk<8&Y{Doa26c=0+Y7_O;4V|$GK@*h4o3Ah`!xEpROh_8p7hKo<p5SR^
zT0Vw8U!Ez-L<Gh0O8uI}ftF<h&<%n|auQEfj^)<!fY_ROP3T;dXd7s~om~)1W^?ip
zy}>R>@wkVWfO;iFK30el;FRq`Z`w<p15PkA0S^9Hd9}6P>;K@&xglCV#DbVUeZa|?
z%&x|tz81Sbv1gUN9XoXSKHKsBx&SR+Cv9IJR*D$ur|=gk;o<UZqM|x08>_KDr*o%t
z{jo@?@5#dYfof@1G>B+Oib<J|N5K~CHpee&sSftXpQKCBN+ea@A>Jj?2zJT5U#`&W
zMgFoI_{3RBxstbnQ{}#B-Sy0s2wMpgN!pIy>lUCNc|i@g_xCK>;6pENq!oO;6m;v}
zVi&P5!bcuD-5Ks0?rbmvx{NkE4(PQMQK-@^&_J8@gSYbwe*G5~e4U20D=Wb8`h*Ek
zlwj7F*2<#y?*C6erW5B@!WrgD5E6OAoH<ohEPjcO3tY)>Ey|$BU^17Tq)i@kxME%f
z<~c3~Fq@j!ddDcKS}(J%L<OH{XEf^E^vDOF^FHM>cY!?~RK~-4ECDI@BmvxgSys0P
zBbL&xhF|7daqt+B!-Rg%iQdsz_XDxk>0>fKYV;TVlS8^XDhsWg4f8<mlvBsi_8S7V
zitUY?$N9&a^^$9U3BQ95g6HlK%2zT@60sVKFb`Mr@-C1Iu)V(5v2QywxpPC@xJwB`
zyl_6s?~|8wm%AjoL44Fk&IL@tfDp#mPcN*~WZ(2N(8DohcnNGL`$c5C<4y`|n}(O;
zPvbFH!!KKtA~TQ=&kX;Pv_GE{i~O8I5L4h3J8N+4TWyZ+fS~s<$d87kBvfdY63l!K
z04v1?;Gwx%hoo{#ZPKpNr?opaU5H()r&t!P9a2td{}%sl9c^hfT^R7N$XVX3uG*K&
zEgT1MlqQKId~MmY=w=}r?WpU$;F<9fv*S{+VCQhZV@g;t^DCx!bH2c#v(B;!)Y{K2
zZAjch)R?7YIVT{?%`l1|0D!%`FJ@~MGErPkBm5Oo%!Ry81Yr27G_^06)$`*q4($*D
z<KeF88ZKgYwjAhY`uK2x(nW{U0PO&RgE+gxKeqQyVEL^YP5Ta-PYs_u#*u#*7dB!Y
zG(Raece5ONw$>B#qTM6H)hN(r&UDo1o~q%A<ncu&oCFIpw)fIuC|*8l;!yji29uBf
zw2R(A>bgMIZ@O#!1-@G+2FT$^R+F3+M0H=YQ@l9ay-i)pf3>PwS)Udh=fw;Kh}2U$
z9Ui^uE{2`+uh)4>7ukH>1R-Jdq|6d{4r#%vLgtOFsOAuY`s?MR|2X()GA|>GvY$G|
zXhOs}rx*9K&gj|Ak06By&CwU{s}K=lEqY8<vF#;PG!{jVE&aY00kloJ7u0N5r3U~q
z8?JauaDJ|^7+m=1o&RJ9xU4$VD=)eq1NX`8J(GTW6=<W~QwFo>;UC`N&%qyewL{8p
zAR6{@61pDvLLUbwM<;)DKQKIDel;2o62k4a=+bWNERU*3NptVGIex!1%a|MVEqWwc
zO@CXFTq=9_`LN%#3tQ($FaeouQIWJyRYK)`=G&{Hy-VI={A*EG)oLz#_j()&)<<2v
zKG|36WGtfE<qmM!pQJ10s70|oIbHqs0w?mkDpsKb%CQ~h!kqZDu1TJ1O)*|?odgye
zqOPn`RP6m~Dq%6a6QGMYi6^jGqCJwL+DRY;7+Mu6d<tx%Hf1-Ku6$c~pT&x42PD?3
zkk(^t-)?x_^u}w7NK?|{;}EsC89DOt(GZ3&O4ms{qTE{~CCdB$VP3$Bm{BneP5g4O
zD9xq#H1}3znezg>{4~C_LE$QUOT9E&7e^;|3ElLT(PQ^zwC%XoQE;;ow$Xm)|LpJg
zF9A4&0&NX;Pz;5!9E`a-d17r+Qw51hk}jo2j(KjpxM$Xx#|rC;7Z|j?6IT7*lM`Y7
zpeIXvHHd)9YCke)S|=1%K>rho*1wfpl-d2Kn}KKtjSaDkLn_20+Vkk}zny%zo~o1a
z7>ALmT_p-R8fiW}+<LvTaij+Fu)nKp5^ywd2cz@Kjyx;o(hn)|kUcS|TY_VH4!22B
zHz}y7cf}Ws;Sba)EnAv>`eJxA+&|9Js^d`|m?sX0vJq!$moKFCZ*lFnUTwuN>!5RN
z8^OkhTQRh5Z!OOJEZAAC%iuABC%+5=$d9be*GYc0?Fh(P)s`ilo3c>)b+oDnOX|(d
zL-Awuro;@dtJtaXuwo|vGuYbJxe|@-JZ2Jo9&#8v@mL|aQnzk__!3Bbybada-Oc2-
zQ~9dX{XhhyV{f-FJh$3+0cX~+H?ETkT0i6pa@K8=ma375!(Z)phMy~o+0`emEEzOx
zvhf3ow8ZpA)yzC>0?Nt@bQo^A$I{R0NQ98NAM?AnskAW_I#@t|LMZGyz%&27cSSa2
zVD_n(;grRfD*mpY^6i(62qK|p(W=2_^@f<l+9c;KOLm!AP0)@lyCt0=6E$q9I!R<0
zamM%QAkM!Ff0n=Hx<Ai^mIUG!XYMmhhe1}T<5FeV1dLoA$PmspF<AW+qaWk!_^Xr%
z@Cc=}g`tqrGYj1ydxO4IvCHdJ_&-ekrTx>U!>tp}P$+_TWR>z>RbMypi6mbscZ35o
zx1tkFymGh}ld~p@PwquQ7fDdOMYJd;B;%u6B^?1ye`c;sOVs?3o+4kwDUUG4ceg~)
zjSejnBw5oCpKj(g`dCQ6aOLcfT+4K@@s%q-+}iDgIrM~o8>pZZ)pi+{k&uKp$#O64
z1pL8ggDE+2jqlSRuapejVJBZN?4e({Xho2gnL^iV47~Qpgk`N^A{$#J>$4gi&A~B%
zoD)`-hOqFlWK6V4?@MSUt44;u?2VNZ32aSM@~9lq99+;VBzpKhFQZ=lKL>YqKXB{h
z#o)V(@w<DuxDtfr1gnd1eOZE$imi*+rJA1A=)@Plkzx0FdUb&wzk0urYfLIw<Z@8%
ztRW{md#A2zIvzQI@vv1wKkV_c=uASEwtpXd&Xg_m8e<V&{uf{1W&6SWPeoG{qIuuh
z+kFlQcm;;bB)9}emgp{;0r+ce1d=aqF!%Xsa8g9q3LlzyX^xE<`y0N6!EV0prhBk;
zQjaR%z(!(kN*QQj_`+ulo_uxN{~q9ospa63Fy$PG5}u8dWzuV#ql+wqD80;s#+*&L
zr<ambL&_-v%N8ZDN*aISMu^YZx=J4LgF^pYe8_P3=3jj%cj_-bj1BO`&+#Dt;-1n8
zzPgfk`qj@#s{kcW?@0;DTY1^*mBjGbpm*aBqOsZ9y!w_DM|n!I@|heB!b{JtqXQxe
z0<5M%m%tI(>By$S&dd3I`Y10+TwjLH_Hud^;&TnuHrhU(Gtg-#JB(NZg3G%ilO~G{
z6}Fw=>+bmD`8e$HDw;DI)Gh31LBG5C%9$Y+5Q~Sy)BEyMUUf(pi#+yy3>#zYOo`>}
zjm0Ktr`aA^FbK14%7aR2nxpYlBWsn6M47J(9NV*iv4~j!!@YPBI|2bLm|#%ZB1|Kb
ze|$H7muY&k;e97|6VUH6-)*bXOm74u(?mSLa@HZbj-C?I3Zu&n;_&R5H!L^k{&Zee
z3lYfw4UW78WhXB1N>buykVG9q6f=;xK-I7S6Hi~zaqkf6CI}ucq$YlDpSBZhaH*`i
zbG+S!7k2I*TvCE5zSKp|@}6A)FXp#k&`X6P4`vl{g>2vuFHsN=$Dgk_j!V&{KgO3r
zWrLI1RYEimQ1Dz)-<R4PjJ9`A(-ScrJf2KiXd_AQ0%x76)^Rj(pO0Zg9vq&G2C-~c
zL6qzMgXK0=72(KMe`Lmvb9Wn%=Uv1>65RWc!=hfK!4OOmD8G0th7WsFW%4k^`&a-~
ziOcKm3+XDywFbaqRJEv2Z<>j0C1Gw!rOyhIBYM|^IhYi+KvmXG4hvgSIpg3x3D#hA
z1^=-X+@`?d->jda;%g0u=NJk~mf4kz8Fs^181MJ_oth>JZmafk2TjcUBmnwv3To7{
z8*#Mxbi|$l6&nFM1uQ`jQ4{;mN8PdaIZvG-@E4zh+J&Um<L*R+YjPi;-mgh|VSbkL
z(tE~gf`)*jA&%PRs+2KnmbTOW+wEv-cgX%oZ37LKhHtj@*6o4BK1=2ev-P^-gX~gx
zc7xucvKf`rxF}SWR}@wUM#P3#GAOZ$86Ya@j=I6g{lVrN?kojN9LVsl^5%-i9|so6
zbo`o}uHo^X-<DiSRrW2%K6@frGDXwmmyYr&*~2O;p@nc@A>)Kd7o6Q=Yq_7@M4*-e
z<RZnTsz;MaDnocubYUwhaxKdB;C9#DUX&dl8(IVlNbs$?VIhM2Q1zx(xdvM8%pUeV
zS>0J(nw&L&Uzfb3HN;n!e^HB(Uz1X#Z|Uab=zj4naP)ui=zue|+{4{}GE#Z;jFD6?
zyq7o<ebi?KW}TuDnWXz~4)#^aK04Nqc9g~R9a0U?yVU$!WU8Kw)DZ2y|B+F!^`~ih
z%L9~5H5&fi6rTBQassPiE|zts>s0-iIAs^xshB6(Y!$p9TPTiH0kQD4Yebw!v2i{M
z+gXNZTkMGA&`G0nK*Pn_;_S!F6F^LaXmQM{SsLlif5rs6M^5iIGH!}23>4MDhGf2t
z*aoqS86=ic4VHpaE;%er1fJ>iG8ja#h;DBw1H#rmPCt%fbCtL1kC0+TC@xQ=rcanx
z9>ScfiEmv>TYr25fDOtC!Sk`pUL2hqsv?^FjqTy;;qIVQ7K0+49nT%Z7p*1Hwy@By
zk;1z*S}RShPj=o}`o)YVutKRx`&h|`{j3-*<E;}^U4FY85=Tyt3zY=&tniQU2%PMV
zRSD-spvHVAQM;Vs|Kb##)%td2VnE9Y?rtGjC%(eSacb?Y0-0b^y7yVTyPXr4SvQ!>
zQ|DhW`IG&C7ARAIcflII&X3<uryT;9nk+w8u#Tm1gNY5f;i1}_rvwV{sm9otSicPZ
z;B|*(qY>@L<nT?OkZ=|X^XyST_A||Trr;o9t=HiYNiM1>@$gQ=cGlEG<6xw9Sfb*b
zmgXQ4L#Y&^%Foq9BwX3(^#tIJ<rFS!%dfgC*}gTW@uBagGc1Ivqw#EfJ-G;j1|Cp%
zJ%2Z`6nV~E{`w4YU?*?erZaiB0ZHr_X0_FZ0_@^m%|EFFR=oUj6jUU;xspr-HgyIW
zv01iK`c#f_DVzCp#LHkrcyOt48_=$7uq$a5ey_038iB9sU)g1YF0U7M>f>`!spf^a
zfpZlf)I=4aXo)jX$EY`LNIw#k?G<S3`!M(<W{mF(<)uZ*qW#`?Q9YIocJT2<azwkl
z-0v9n@D~E<@5`OmN{93!HJMKx4faR;)M5>69rf|g)+58qh4jG&*a?_hw%#zs77w?5
z6@sF*m%VF07vbvtSXrlsF#*J+2D_zz*H4&re7)J_PfNN6PnJdCD3l<^!D{|Lk3;!&
z?WZw{XTFWM4;KhZ6SyN1Rf<wP&_NL<aD}Mk6iGD8edJGIz$P%sIo?H8E2RunPzyfl
zg1r{myPUVnlxJm6=KVAG;A8ItR#a+RpG>XxQgVl`Z@|1cU>T6D1ZX*5mBkV8_bj%U
zDl?YSHYI0-mx_6ofK>u=%+Th>7<9qm{2+x7knG9HlsoAKZ}<En{4zxdvuV$@x3f<7
zUc`94Yo{TFZHTK^A<jT%%}BwJ%WE#%tZstS9LQI4lEV;O2p?~jHzl;z@8a7<d$8xM
zecrIZv|f|RibN-)#<{$_F?z*obKx_Y41=M#0mPuU)EdM{LUuM<Su-5zI5g6yozl=e
zO9#3Fgs<+do|JdgFbVbsEaLB<Ljbb@WK~4Hz1odw**kCao5?7Z9MdGe%LiC8`PQ<f
zrvLJzUXXW_+TDieC%CD&>+3w|$M`TWlVyHBZ-q_peGvy*)vCf-&&Ya+b}%bU&r;$E
zcSUe$TvxK>Ij0c<Yv{%LXl3)LSRuSzmKHwRHM!aEx%!&KjKSQG&r9O_Bz*Mi+1sEr
zOE1mFRHJ_DHC(l7RgP-(yd3|c=sO81M}rC2^_EI79AmlPT+6`jmyv6`$vDz0w2g0Z
z6sqtIm5iBSw+M8Vnk}701WF@>H%Hs`n6YDd-EGc2ym!&N+8O4&NawXuLG-QJtMVk=
zAK+~;s?=Bd1S_S(Y7%^<a|jpzkns8p#=-dT?xh<iaj+z7(BYkZZ!sW~4n&Iwqb2m0
z5f3p9t3DeY3@Hva6Q(WpM%6sbp)d&mChtU(I3Hy4c`CTx11|4Nj`+<-M7FyU0Vz8u
zEfBl}JfT#jMso(!<{PX{i30}*sVq|~1B)jk_=45g(bY6?om_M-R_<_rH=dqPVqZ7_
zMD?plddT)l5y^$s!u{uf<dm4mf66cUImu852b=YgAo-n=IQ`SS$qJVRheWcu%swBK
zO~iQ-{B#h^K{&P*{u#CCrsa0h#^l8lrOxu_OL~sX8b`5Ka}j0^6jC7=#dY#EmrSu2
z>LSDMZ@!%1U{F7>_gFVEZy+`)bf~7zwa&MX%MN2TyjCKy#LWX?c>qpAsVu6%2=mk;
z3H*%;gNd~aHo(ccJS#DnY(>9oQ^AoUS0=(Ggr*e1?wARaIywo$RG7<aH!mX_ar;nV
zmg2?zfRIilTrl5nV27PmFU^ST#KOG#Kco9OzG^uJ#o`eeZdVEN8yYz3l4a071Av88
z4=Kt-)sRzd9CN(i1-=&IjZ<o?rECH3FtwrkSVHDpqmLg&=_a=v#rFx<Q3?wwl5Swn
znUYj&)+1^RJd%pCwfd=jPhsr?Ny1O=EA*9p28TA}tnyjG*_P4d9!6H>=vU@3YD%`0
zYA}hGTonn=R?eDyvxcLT)M8JzjpAjPBELu|{2TdJ2p?Ac<KNmECYv=b*cC-3{U$oe
zEb5Oa1{}Mkf4`OhMJkf`L*d53u`||3BzTUZZ^JY4qZ7ulFQ#{Fjs&@SFDNm1mgj50
z51YG<!d)GoPS}3;e0rTV`FnNgm@4-FtK0Ot>zxy`=r+e@;cpirP}itW{G=^3v$x~7
zq}3riSh<>W%<YhUQg9bK?Cn$mWL|)joRFh&X+70#Jg;Ee4!8EIoG%2<**vjG=Q~`G
zr$CezLWN{y<LCDO09V~j9Jm5j)QFLvhRbOpZtv&av2omzZ#w)auzWu^!M!P8)dN~-
z3D}s;vk=7k(^HVum`4Fm@5h;srdI_*p^-h@9Qx2fHI>Vxb(UCHC!(Zr2U=B(X8HNO
zcIThBBU{Shdwq-hzxaWYX(Fz}Yf&AgIc92g^#_-;>8rizz2-lt`J%X;e#<hbXOyVs
zYAFemDksnElNKHCjQX~*7qM$UD3D-Q_eZ5XbCwI?zn$q`Fj24gqpzQDsd%!-|D&}!
zGdI%Tkv$rpBPBq(&o1o$Wyv`bA<J`0{bx_YLm<4gNIa+zGm*J00dhZKv7rV|OK}={
zVCfT4Yzj256M398kg5;X>@}g3%I1`pdb@gAPQFlJf&}N%N!5T$^}qiLMp`0+-4ZVj
znr+7||Bo-1cWUNd+)W;4q}k#&LS)wdHDy{xN_KQpMt~xWMY)&g;2#l@NhciqLon_R
zQ=%T6lsKy`CjP>VtUI2cW3DLc@!d~vJIsJp0ut$?w<UjAMPso_fqbamQe{+3Fb?i$
zZ?L7f{Dc}zs?x~ev3X{b@%+!MTt>s;<leC5q9A&cciEV$<WXespUUf!>}>jy-<!zU
zZPITpnL&5A>U0gpmr-!VqSr!#Fu))|IfKt9^S}euCoria$tRxIj;D2j^(N`NSXRAN
zcP1Rv+n3Qu#=Nx0dohvv-uYTB3EqW}3(4Jc!2stJ2NJ|tp4eAaOl;_<!H++@Slz(_
zt1jn{;gLT1i0K3z+rF-Cb{3+R1E`}LKXWJ5=sO!W6p@Tqv?{qeyv9$LH;?u*^k%87
znT*&>MC!#1kN=DRc%?+dRj+P4k<&p`vIdF9T-eV=cZu8h)|vX&w<Uk(o8NNxoxX4V
z){QwD|Mu&D^J|$x|7O%)9v}2SczGAL*ZUu434+|s=U+`zz7`7n*1LL4`}Ti&jHJgO
z2K(I^Omj5|ie5oQ5^}D}H&&|U!1kN~7KaHzn9iZYc<lZ??!@q%fIR~cyb45dUv8l$
zr7V^7zi<mQ>!&JDi7|$GKG%(y%@kr<sq^aYP`);|-8Sh50Sd-5F0)X)tU~&%;T8#}
zF;Fp{k}nw-Mt)2&10#)ZOJF?0KIs=ZYlSD-Acn>Ld3k$K2aNk>J5rkw)N6{I{rp8*
z4$|U9nmpudNH+hErLBudWd-C@j4|a1$5+tvkfDafj$ov;ag-mbKf(6n)=*IuXDNPE
zH&iD(&)1ZaIDK(*^B#Arp7v)d!p5j3qq-Z$`)aS`H)6+<w&<J&%{~z~^&V;)IwJer
zH`S9n3U+3v)nT?R+C=1j#em+wStSC$e=c~P=DSCl-ei1hzW|lkFuTc6OA{&H4@U7H
z{>!AhO_|G6+CX^bi3p69RizK+d6JZLu-|@t2n-jq*jqnH&{SVf0soiEZ=`vTSnBEa
zhS~}H`Rr&bvm>>J)?G{IxR*O65JZmBrp=o3a_e(tPh<8UUW_HKZBw(`!R;h9<o&Ck
z(2O%PRy$i{BECF}na}cVd1(~bVww~p&j0r3QtpL64v$%qG?4J64ja6m`<S_vxKQf#
zZ2VsM1DUx+J2Xfn`1h~A(Ts~6`OB}uCO}IWC5c>^CdIBw7y1PIMmDn$Qu;^e7r}1X
zuyTQXlHx=0<PGyP^&uS2(SB+AeY`!~|J_2AIjK;9xy&vsT`ysC;&Mxmkgx6$&DdK^
z?UH-!5imumq?I6;Q&4DAUVb^MmC-v|{jK+D=&Wu!J1qulsBD95*x%N^e>J{-JH7#@
zPSm0Hn3S1N{v9r=m%{r7+I+n`ZO*#G!hP6~CX7H^Yx15gZ)9aUpA7J4!jeVsA777`
z{!_dBcse=Gh}twQ?1eAg1_-vbsL${t{_J1;=!=P469LPr>(V!RIUFcl^g{ABKIXyR
zULxS7B_~4P#>@SK-Gdize9`x3gH<NwQQO4fK<n!AJ2%;X@p4#>QXrWDk!Xrav17ww
z%BFAn`z(q%w;sezy~ELPd$)9h?ZRY>wGh+4E-7P92!nh-e8ndnFD1S6aOGyDgOMoA
z_-!8;(V`;dL!jVFY^FxtlG*Dk9^Y_=mWJ?rP96;I|Dne~>5mvN!VvAOQkLiDPiD|x
zt-*3bUqE?+eJ?0HNN;E5_TWI-%p7$I4c>=um>A-_l8oJXNVD=@ZIfl}j`ivBYmt?%
zF?a7}Qzjhh=Yni)hxaH%1f39%kwupF=PGZ*{1aK2r#VRJJXxe|Q7Fh=hW@XE*KdfR
zt(L}Z1feUAhTEmsb8GN8%8S60ei)dY!JE7c4cR1r)(9>lF<fZ*xXd8t6Bw@e;p*U2
z9{T-wdL6}9E`U#n?C93073`_nGu!*mO9g>6`E4UnEA`hO>&0P97JkrGGNUkp_5l5O
zo@f(R@74C+Nb!-B;3}6Za+Sc8Jtw%(ABfII?L|%LD&Tc~qgK`Y4Lo;sr4qdOK|kZD
z-40mbq|bV9_B6?Gl;^j-&43Q~%$yY};O*2je<2t&*<Ed2c8yK^vZ@rMg0Asj-|X{e
zSg~Fy%BO17u>brhtXgMuPv_Erm)UNl%4qyyTpED#6Q{yUX$s!g?=3abx1t#%)n6Yf
z?K2v5^I8|)Ak?);P^|3l5IRWkDd%_@)G;@|aMg$ZJy!;{-_i!3=)ZkZSb*CKkjdlO
z*h=i$bB?x8Q`lu`$Y~x7>7hMRoq931EV&d`{`w1?Bcd?Hk);aVRgWvi?NRu%Jg!rZ
zhc_j!$weE-{@c0m#jg7cvAM{?4d@dJ{B5dLB|#w=%XjljHDU`>fn%%?+)#rgB4WW_
zUuurEeJ!J>+Q<d*EO!*P9?PeL1}|YV%}jHFHn^SA*oFWsb`D@8L}Xyv2-+&d)_*07
zgMK>-xbF2Dh+t}PC-=@S#}D>cXE))z7eGINLjiL8{cCeOvxH<&$@rD)gUnuX0Wp&j
zBW<dzhE3Q)7JLTJ6%zJ}GuLLrJyW2MB@_~42|5%cd|543&Z<<pBr%?wIzJQzgWO6}
zN{}GvcTGmk;;ogYmeA#uJ}IZcb!g32r$pS(#0bEo6?L!1s+r93Suaee_C^1$$WlQ)
z16EA#RwnP?gMn%?f+kMj&CR*;R|{GPuaoU%wPy3%Qs^{b>`l&xHxAvmY9+lUY}6l?
zneA((^rwN9=-&KlZcnzF#e#d^03eD9@oTERY^|vK^S%cTe${})KuN|1bl%fXaS+l>
zZ1s1}`QMF6A`~Z~!GBw`TlI2mnPK@xi-WJe5#}wSL&X$JcaLO6{`tC`cIZciKT28L
z9{w&ZtP+Vigu4or<K7&d6uB?H>e0Rll>1Itv6ac{e6tJ!{>qHDN`t-sl5_4B?^D7*
z!d`wC==r&xlV*y-o;3zFsEsoF@?*IGw%ci~C|Zg%nEs@JA5#`PMJMI7$A=R*i|il1
zmi5`At$%5;FN6+&j|H<|_;`J>=T_fK<-8;dtewV!ZJ()a2iG4xmXk&6wj;;Yp{Co%
zhZ3<?FXn@t=f_!PT{+koTYm@=bT?s;tJ<$$V<)Hv>m{R4{(#$rdkF7I^_8-x%RQ|2
z;l{?RrnP#hkN_r;d^OP23g>@(fzWU@@Gp3>piL)S?p{iuNNmC*^>_M-jWH&&N^8mT
z-xeJEb@1Kjvm#ryqePK?b?3`DAMB}Xc=d3Z<n>ydWw4J%`rwe%a#4rz9+U!f5_k1F
zpWHQpo4LtdGB@(a)>o&i*Q?^fmo2A;{orl0kxp*!)L;ED*0Dr!M#?PolLXTPvW=C&
z-~+i)s9<7s*;PmLlrr^M8p=`yttTj7LXxc@+C#N5R4C=!4d0rO$3Dg=jHjCE`?J9b
zkgcZo#FVKw&e*fwqpJ_|a}3go@JWl0D0_(8-Z|Sovvo#?!=4x7RmvzipE7Zba&wQx
zDY(;pT7#aDv0x)B@;eJ}#kY!_;@zDFKA05-Q4-LK)axb@uL0elR$r@{$vI%lmE9se
zv1B`!f>n8%_c6BTq3Bw2QALXUFD9n@U3Xz=1jOLUlbO+?yl~&))zwOOVUGyJy!Q~!
z)bp|4+thHs=#@yQhJ#aH+E@4UQ_DkI#RBIbSC=JeN2sLAV5oUwk3|)8o$m<28PtO0
z{Yuv<O@-5?q9;p&rW`F&p@SUV-gK2!d4D;eu~l(!#L8_-&SmFLrk>s(`@@~K%(${}
zy`8>-LRCDXJ1LJ>qZWu!_p|mY<>iIlQP(&DO8<28;z6R6?3mMQ>8~K<X7jbYB{8%p
zo$s4oM=~#n`oX>mvkX4r*EqB7KuO4IrK(FA{ZvSKf2I3Q-4~I)e5#IA&%d~%=2AU{
zS-~r+;24r1^l1FJKY6DD6$P|<H*YsE&iGQ3o7;p=v=az{^<sLv40av7a|E;LGJ)yB
zHdrfmUpGChL8x4UFQ^vfiTG}gP)bwgqXP7&>X-OlHO811XZ==)DyW!wkc85LsJ>hT
zt!?!|vV>Zs^Vv!e|L`g3%(BZd<KL%6n2IWs@zp)H`?w^>RN6UpQxLH`0s+TN(m-27
zdp(t3&YYGWt9Na*$MAYw1P#FNr}hwKz1u@%G88_0yYVP8*e%t95<@r}eD_A~z&%dT
z-xnX+bs;I%(>>+=bqcs_5!~G`q-cvM*b-5xaqOT?NtcKTr|ur-Z(a&qU0kNb$nde$
z$GAd(Ls~K(=uPosv!~qPKwq_*N43JlREx7ypS1gEhwFEAuz6Czn)I!yMN*IL53+t5
z>&+Bkk=!SS?0)I*w49XH-K?f^AoK_QJS!v3O1`%P>zNDxaWFg@ZS4<ty;Q@N`@!@g
zPBso7;T;urH{s~j&mBr1M{|sdgDDP)#CnwSyL`Zfc6Ss4FZ?c&c4xDvA#;hAl(CCJ
z$h!H9uktHj<@%M%XT&Xf*+sm6sBBq_Mn@#0X!-%KsTK~+FX3t7D#u53_IXrGJ<Mm{
zx8Up=UkbDtDSO{pw8h;hcd*UmW>I`R07tWzVN5<=a@q)MjKMQ2zkrc~)ON?}&wAQD
zkUi9r&K4V-9;7>kr3_W!<}zXOBN=$(aDCpSu%M7&QVLAX&>RPIuZ+NwXmH_4mx!ia
z8xjUa%EUEu)BuVx>J*1^$MH&TmV078dA(C2<6}j}mSR+qn<a&7z1VcQTFF*tn!iN7
zsb{?~4C@=R(S%f=du^=n(i2TD2fdQJq4M8~M{;$J51aj*drCL$+9(#rm)cQ{d8&HF
zS|toDDDKtWNnMI?c&`6klG^5ni`7>^=@`->E*BGtO+wW5-&Y5+pZ;b}i}fPM(!fkc
zqf0{KGsV+%$2u0f*k0K=7^OC`7;wgpN)*a0u9j#9OJd2TVeL3JwYgT0n=X4^o<VN8
zvGUYA8K9OhsBcG#9gL1nbH0|ZUfep>Qxoa~aW&0UqMqu;+}!wV2lav<cQ$oL{!qvc
ziVR#Yf{!+Cb_}NW5}un4k{6=*ifdJZFO`QSMvwBR%^R|(Nm;#RrqmgQLI?Km5`~Ic
z-^*lmT#8JV0LQ+~tCA}EmExqa6MDm8SSrbs{uHH3W1_^(j$kU5A<5V*vXB+t5~LIC
zheh6e<nNDM<A~CcweclibxWx@>a)HQGP_yDkw4=f&GDtblVW)>#<jc70W1l-C_R(n
zs}XgCLMr`<c0ASl1-!_ENqq)m7F=Da5<f}8Cx020`Alhoc;Ut*g@L`_cY!N;Z_ca~
zMisq=muIOdn#%|xA+t$=;ZsSfz7UGd+L!s0_B`18i=;}$afs(QA|oK>{j!afyAvmh
zodJDo`)|D3LMlLR?G41NQXgLGNt{_@H()TZkDS(X1xlN2sjMD4JjGr@P`~arzJKxo
zn8lQ4b@kjLa1*a8Rq^=nmE_65gUBl=Q?e{d1g6nHWgaA5B+{%iM`BMu{fIk+I5K>U
z_-4%xey{!1cm~iKCC|o<a&OQErwXC}ZPBXc=A`&`66Mdw#<Z18>j!@`^UHNlbJ?o)
z&Hk_xnX%G|r}wsX(H^%p%BIv}44t$zvch+<LDJGi{#^`LvbAFZS!?5dJ{)08>PJ?t
z)Nw#i_qo8OriBH$DA}m2hD}Tk+m>{xY5dQmSZo~Z9xt!fLVOiCY)MKGWQ;gFv>@>9
z#1=b1sFhnbevDJxnpmnO4hnxt1z6e>?VY4y6_q*uaKkb=oXh+M!ylA(D0aJJdVDc1
zB%Y4`QWy1~;n%mcd{128{(V?z=Gh$hUy<?mA8(3`7%k{Eg~7(b<9t05JrAyy3(A^c
zg;v>J`)Zp&M(w&rb5W-?dqO}tokXf_XYo6as<}Q3!D{Vk_Ue36b4|tPQKTdTVsET$
z7xw)U#N<sggstq}J{ul>MQx7|6fyBEcNuJ&V6t^ny`pS;XF4z!EaqC~$9J<fOPu&#
zZ>Z4%S;ajyk}kF>80whim{u(-U4al9?)*!#R||1Ria1db16!Xs5%yAhRmQ)uF#I8U
zMM~t%O=_Env&zCD^q@p4*0@`vH0$2i>>oQuCkWf+tQ5y3pelpJ69rHQFAqk?;!rfi
ztPzg;nPUITb4A^{2M-`!73O3Jr~N|+=?;fYfyG@J?Wv6EbUj$H2*XO-V>5kbRRALk
zV>xF210Tf2ZTsg98C*3PRE)Ha#i!(TA;eo`0L{{)CDSxIFjIot$nu~H(oIbT?i6mZ
z@rqcgQx39bV8>DfKjTUqywjs<8F3Gr<=Nm5k&q)4`gh25cK~4p+%kyNS&6h8UkB;g
zy19wg$WdgDAWk9cw2HWGeStl{&>Rim{p&tltXDVf`v>Ix7`pSG9M$ndxxXyrSB!bi
zT$L}u!uk!DeNO)D(N$ksb2;u5tVA@7y}&8GuxYl5Wh!@!Twjv+KLV+1YqGWn7srj0
zy7dR;&(}Gxcn#3F^b<oPyIsMRtuiw|bjR-*!hLzw%%mWuS(XiT+mXb73wLviJ$$o_
z-_QOsD8lwlVRNGe`H!t%KOfzjl`WIrE{)HI7u$U`Aj?jCuOfjl=pg8fb@uAkaML%e
zbI@N7nZgxi!<F-eL?lb(tB<+$@r2UBxRifSdD0rx$U{WoG%jX6!^nhQI*%i{s3gjH
z(ghXl<Vw(7sAn3(Tp@SLq#wMKl~oRZ=d4!a3z;)RY!i4r`7`%zD7!tNm<JN*<O7FS
ztnu!V(LSBLok|UI3`Ba)!$X%MkA1Pjce_&5`%I@Bx&7q}rN6yL%5K88tBLc+-~gxs
zjDD=@OE1nG#dN1<qIsieV&fq?_Q!wPoV~s&Cws{kYp)ND`a#I0mLg9PBw<lrR}vRD
z|K<>Nz_pNRQda(ZZhg<jbB^XLoPod*K(LXF*PD+&Ha#IgLQ!P5J)JF7j`Q(+@ZI{~
zJC?cV1&i!C0B3w3_jY(D@5f&WRm>t{nOY87J6Qhtg&{O}Gro&CApNYJio8DeLE`jr
z0<L}A=nBF(7huNW{s#Z@G=h)U*D<xy{IlDZ<;~<+Ff~~-peM;&Q-bWto=_=ouvF8<
z26<U4z4$fz7{tA<!dRUJA6Y2O)}4bRJy&hC$U$VtUa$i=e@2+n<!EyCjsZ8DgeY{V
zU7iq@z*O_3l3t5J@@-~(v5qnsPI{iIEb;&5dVOKYnSCp-7QuKC(=~cf)#mhc+GIFa
zpjOCw##rY0Y_GqHxFRdhTH%jo?5-)|!;Ns3Y>|wpbb-(^`eZZKOU-h@Bu+?k^Ngyj
z4tyyD^CM_0p}hG$&%9F}-6D0$RC;lM=;ud-iTk4~IOX5oGFQ-)SZ^-1d*SEy+BMP|
z0p9k|lXu8<NC-~Z)=ZG`E^k%MU6G`8^t(C--lW_$lP5Rn#fl0h8M9*@z29Xv$fp#%
zu|8&FA;LRJ4>TxRwM5|BaaL=eO|S$nDC9@vwmg`dTggVG^aS2wmI|edJ)koLRzl1>
z!9`m!@}uuImdE#ct+ZiaaJW=Xs)$4qcD#<-)GOP1&d%bobEoVIgl8|5d#>^S7EZtJ
zT8zYn`jhbP1eW_8OY>?A=68@1_)yK<i|Lg+4k|8TgTWbO48HS-#cVops~=b2uD;Bi
zlc(&s;gv9{D2jg$?+66l%{Ep;%gGf)U)=a=afNG{c6IX1TXWQDbAKY7<Mtu$!z3C6
zYu1{}g9#-SSKUXbvQ53TP6k&jm@nu7-TE1Vd?5y^*!;!d<Vo})v1t0iC7{SOXV~Xx
zT@himPHo<ajR|iRYy__L#daC5!c;Fy4U}s7lNEX>*i^qK-Ijg)PDitAH`aG1lNf6%
z{6a$)MXHg(et*uYft-Ds8Ph$_T1{WfANBUp4hZKX5$f7YbOw?c=PL3{SoSDw|FU_4
zJ&+Hr_*o{f;6a1$T*21k0hPbw-BI7{mUZH|Jus*O7<TEClGyb#;a}8FH^Y6_jpRzJ
zkqMUsaLpsRt0Z*(%YAU!sWK<i!93Mw3`Ez&;r;<aWby{K4|gIG%y;s4Uro<e+<jT-
z{!;;-!Em(cKk*y~D!@>^={Q|;T<w#fG1JlfqhfXya3rW@V@+69UaE;@S>n97p(fOC
zZ~k<{ym-9Q(d2XSl9#p+-A00xE>x`5UrD_fvE<64djp|_K@_*+R`e1JwwN*1tE611
ziT{NHAh_|}A)eGKnXnR&aBPn)xtcJ}hYOx!dqaK=vpaaqdi1RdOUK^lr!|u?c!6us
zuTUSsUL1YgC#0zVYSlWf9pzD2NKQ9fXbX)#wlqDW=5Pv8r&XMx>`iWCP2}_vRoVwn
zIBQ>=yvU1w6SuvjRI1I}NLkusa^3a|J2(i7=iO_dLcoZhNh4}Pw>uSiCDbmy_y2H}
z*A8Fe80G)g+@TvwAfZC4x<NuuSmI6!oi{QyN@+N~wT_uQb|~z`5qu&=vIUN0Gv}2{
z#gEg&7qNuPkkal^FnTttNoAbkl5$!y{q)0RCcoHTU!n=LFYNJD>?!=H8sakQ?5%I+
z(193KJE(xHP-YE9m+Y@DRP4>sF$OOf5QHF&zi@Dv*>-NG^qNlG0}cVoj9)!e+rIn!
zaC~Xg6+-wk%rR(49J9&wVIiM)0s%qy-_#foSqITXC;ep!0y~C*^X;z{Df%}zr>K&p
zT-EW)o~UQTH`QiBO<DAl7;LV-JW+wF$hEASMkVAzlzuR(P7b6TzLJGse$0yHihuPn
z%0Lp7$G2n1MRR+mVUr2y$p!?Sly=5T(@t&u$a~x!$<r#yss+J8v7lCmGkOZ+Dop<>
zF}jygsoswy+9g&0o~KQ4^;T2|(JSla!?SR&ss+|IUfaq!1sNmF%EtLGt*Yx6U`Ri#
zfU^StUX#yyK9#0;CgWAfkQ{6h9yfpRZZf%A`*$@FS$n*_LL5|Mb$&*$cV^X6{?f_&
zIS_-hS=NDoRu%egrj%>lcxPdPl>lqhVND}^dj6ss8k~><X+Uc=KZ5A<&H(tS;uyO*
z1q=Tw2j65{wgPyQXC-8jf)(^Rm}=p0aqulbS<RGGFD`PhRfNdin2#}77XJRE+j<H^
z*s-I-O|qoy%+6B#ve+t;l`<bsYv>%0#}^lKLYF&P>$mpB6{^YssnK|8-LgoeM;=T9
z7ZgSRbh4{Y@iRHEq|WO#dd98w@nsQN3PB|+ng3%eeeILI+M+rR_EvViI^|FM1m}7;
zRXerBKA5j0rg9L|@l}zP1+m4<O4=F}P3p_dLdSH5vn`awt;}MyO0(4T_7qOzG2Vyr
z6xFisuC5VzZQH~1Pst#W-ZuG*_cOpE+<&ulrNn5LJ8G{x-5Wcv>RwzNmLhC1(^&v}
zldDw6jPX<0P-SS1rQpWEEe7ULxO&D=8jasR4t7%Nt;P-y6|yUB2p|$H>Fw-tH3rES
zrtBZ<+b{OFw_b4;Uk!J+UX6CP0c&q|U!`8&9~*zf!r9)@QRHB6+rKP*mgk~Gse2y3
z@p{^F-*xN(6%Th;H`S!RLK|2p(k2GF9T|_vUO3`MU<V2;xsnAkRl6ff>#D4ONg}mf
z2>$H$!Fh@dYE&Vfk@QIKELNRvNuu3>-@Ax?l>{t=XRP(T&FywdJu^)f{$Oc5O`=u`
zTycsZtC5b&u4Qn>;)M~EYJ(@7`G2!3sz^$t-wSVE{n>4!?j#B=#&4<h7MCN7U<k_c
z6j_(egAEUXU#D@Z_B5+71&6XkcjoYTs9mK}8hh~Q9fo$;-Kn@(#2<x#FROUg_h6n6
z3Obsm-9m&~qdC-D7@Z_?r}k@RQ5>!GirIXejxTRMLwCx~6aiy))c#L<<3~d8WG#@`
zGv^gsYckI(SM{HUgMnG^$ECbgl{>OpVFfN)<sp{qaNjf7vxXZxED<56R=KN;vLt4|
zazubll-qXjCr0g|)s?^GxJGuWZ>}l>2Q&ePj8PFX7TCU+^*OKzqisA(Hcul6{g~XS
zoxADH)k-<J3G+bY8ZCyUX$z+y;yu9rs+rx&)ed$=gUUiLOwV@5pHrJ+V{_DGZY(b`
zSN7#2L8a%FEy^9d!!SySmb?05d@f+O<TCHG-PR#ODn?|R!$6rtc3<ISg&a9J>`}wD
zpEW;a*&(?wkB7IYLcK(E5L&p7CW`;%W~xOn0RDwZ6d(f#&%vnv;Mjd_8aaAzVZvay
zbK>IY?!&UH6%|7*FhWmn9zAmrhbTyY_``y^v4M`Zk3&FE(U$y*1;2N;EB}At$h!^K
z;yJf>>2Ne*3a4RBzZ~1dv54rMsteG73lW&CjF~u6qNw9ZJC+OQ7?_qCBk-UQJ_F{X
zPSG4Dwgn@LRcx@r=hu?ZuhQ0&BVSchZg0&t^bAdD-g?0D+G-M9h>c~$L8QD^)+deK
z;uarwW9h6Ntw^m+5vjIHPhqKNf=wJxa56cBsg+heq8Z5FFUOO2-nqy@=E26zpk(KZ
zfn!U&e!ZJb*P#Q3v^E$WNDflxyZ396W(1d8*1%sC(H8%-M1Lo?kG89+Z;RoXt(i_!
zw15Ix%53W}0GuqbGH0Nxva*)aIqL%M1#lfyh}>z3Oo`PNs*&ot6yQP=p~Htc-vYQT
z+$>D{IKCDe5=FcCEDUWW3s%rjJ@d};FJ`sq%L_fZbxM0NL4>NDw?dalez!f|?Uw9>
z%OU_eb)wB3?>Rcg8#Dwg>79a;4uZ6(x=Q6Y2|QJ=$$|joq6vveb_0;4S?E4(ev|kM
zi|dO!{~B*P_<n3U(TqjxrQJE1<8nU~q?^R_$S%SsU_mT@gfj(hSpGzW`WFWy;ht-v
z{>x3GYGXG16uPh1Lq)eZt2H{Q&mX&*<_0GPB=<~Chts(Zkh@6Or1pwe0K`WB*YmMY
zy0>i`PBfQ!ukR_fj&sOg-oQ95fPR&yEUK7{tom-(pF4T+_PaeRbtNf;)5l^lF3`VX
zQ+_4rl`oNX6F_R^G?eJRwv>P;b83j$*M`U_D6g5bn~?L@--w_(?njgIuGy6RDM}(%
zabjWszwX4R`Ej!t-$&HvY<{oi$*nNi!Nt2w-EZOEpy}K*`Tx>6VEL}{)z4~P7i~N(
zcVuJyP_~9;fVM1^rOwc;?$H<}(kc8Sr41^v;hTg7nc5I6(!w6<!Q$?WrVcg`gEf8p
zsQ`?4awU}EloD8JBAB2WU0C#*%JLT1`9CZETv5~f3*qWBholGw=0RwL4F#(F1_@R?
zhlHE_v`E+P&^H+jHS~LJ?rsuOtz3iOFir<AE^>-5H2v6$)mftSau7~T6J`@{|J&ae
zz5H*!Pl?Na_j{7a1;h8Z?OnuP5CEmb+ZJ_%`eB%(c(5@qXb(d#LIDa#yl$z7X3pEi
z$q4cpYh-4{>J9XVLMB0ay{X~q_VX0qh&%U5K#tt0$rwwwwyE)`6gnc6X49)rF>w|?
zVjTjr-#xY<_Y9L+AlkANEFDLeKYCpjt9y^MXJ$s1{<;lu?S+?;Uhy9io6J6GKY>vO
zLVQbz-+S#Yvd{A>zn^x2eH;|`ehm-18(aML7D<J2!kZyFIJsik#Lcg>hmj~8#Xc>j
z8)~J4+eXhE|H)R(-sgB124pew?MtHjq@+UE|5X+(PTWany7YUm987VZK{6m?&DySu
zHARMG&N&QuSCA*!ULFl6FAlp|*b-%cd`Bxfj^GSiHxT}yiw%^*_e{w!0EisdskM<n
zFCo_@iMVyTT&2rHBkWEFieR6|{^DJ7G5AsuT$!{E^^gk1Kg=1)`Dtg8K%ixJPqtoc
zzxHFso4vRF_*j%(6?lqGQ4+!?OO>r$nqprGXrA%0_>^9%StX9S@$N-hOmC^W8o`J)
zkNo7Q(i-<AiK&zQ4GvVW1_Px8AD_~d3o(s}mWK+$J{#P87_XY(4v-eXfFN<F(Xgl;
z(y1{vO$Gh7)Y8W5nYK6Mv#6dYC1(H~ur-Dy<)awZ=fck`J>_ck2zw@?r%sXA+tnm}
z5xe1=WI_3(%%z@F@!iSJ-=E6*U&70<iuo-UJpnf{Jfklw@)R+#Wd!$<B(birAltkl
zR-N#xGF9Cyqd{3oYk*?a@HY>4hk>za_e^L?_f(wAky$ojbAl2xX`Tuk2sbT)@?*{`
z>$7?z$prm21aefky(_cZx1N{~w)0wICJuagL3VUj$8pJ9w~hacT#G?MVpF_)poS&^
zOJGdylqRNY8$Yg>`Lg)M;3_&inRZK1nW#|opijS4g^U#x+9KyFwJU2Bf0<tO%)VoK
z`q*K3zDedgy92LZVih{S#>|sXegZ~H2#R6TN>&LvZfR@=^5g2k+{twylYcEt|5<(_
zNW#8nqH5a6kvr>|R%>xB)tMTeAmV}W4~`BGlIxrE!GK_~4>x5+SGFi=8$(;cIO|`a
z%Kf?zdHKbG<eO2B$9Fo&nU&-Ev!D!&8n(vl=1z1gg8be<Kz5jh&eolFr<Dc~3Q9+V
z2#5sWg!ko1!T+l#of$Ka`%_L^rYFSLx-|l!ur<EDIbJBd_^K9Pw4D>$b@04OzkWR@
zpvXdE>zh!U%_6p;x=XD+b;YT@7jY^crveJj)y>tX`N}~5x+Cek;a}W-xKUSwlQ5c}
zJ8ZPbtQ9fM)1v>MZyQPtpoZ_U!U#W?JrldLp)SG@j;E=lzM(^ubhWqJKr>}%B}r{z
zrQJ(a7e#)`V|K3|C|zRWgnRI6ayhR%GtMM(ywyM4UU_kJaFRqjhCd@_<dzqyIabu0
zj2&8~IKZRQ@Td&G3?t>6tCcxMuOT*0*P}iBf>}PtHDo4qGLt=FNtXic-jga?`hemM
zz3kA*B0hj0!RYS?K!YV5;a@StQ%UN1aZ^k6g{6By`~ubki!@@I^;oMxS%5U6Svpg7
zdw2A?ywGnl8O;30hz)+AoB-;x)keq$%p-XtE&>4x^A$-^*aX!QP|W}|hEZV)07F{x
zx{_mGeJD$q5dCShNy(hr9??!MVX1Fd^Jzi++H<irN;LDE5vL+`BI><BT?BW*Ot`zZ
z<)vR0D2Hd6=;7IoQ(d3EWU<XkE|UDhkXmZ-)F(8b(XgP-C~2@8aH3+5gMWb+3Sz(r
z1Yc~;$<=UD``s*o8E-mW5utP)Uf%p*c@*p#FxL2t5^V{rc6V}-hHvL7m4SgUtm$iH
zUDF<6re!7cWD~CwE>xtHcC7+Te%adK4fWLdLJ=7xql_-}_2f-)GK*+GtI0JDf6<ki
z-|<(*0IKgqt#<)EY=<I8Fps96uGL`9bf-K|?MlzuaUOOzC$9~)R{XCr6V1*}e~SfB
zpnzqKxH#1Tz3?y88p>VUgm_KI764UoUxuZ4s*DM+t@3f_`dH}={I2Bp7N7$7TVREh
z?f2Uxom8@z<M35e6<PmeX*bj&>=#ab^CTm;JpTOV{`IIo3Z3grjn!oB(GB_lK3n)8
zGY0l2|CF%a@j~(zGKs>;EnTvk$=-H0ap5a&$r(ng;!(jQbJ9FIxZW!jy#Hh)QNSP-
z2fOC`(5H)v-^m$3pduCyR^twz)f8l72QwaDjc;?JmnDB1VGhsFN#Bl@$-DX?Z7ry+
zC2c>-jz>u#6*I4zpOHn1QdZNDD{o!LcQ&T;<Vqqe9lM=1g6-AnQT)Ep#mUbw{}xV9
zGfHIlkmD^DxHq2W9h1J>yb{$APmT^WYiO#WG&$HSAawQ!8>Q~#sE=OIhNbI}%XZRT
z!fTslqe#1Gh9Y9gIENFzWSWoD5)DH0ZhZCVSbPtJ`p<cp$)3Y^;ND(~)B$j7byS-Q
zrWkCgoXX;J>njYuxVwKRXETLOx)^G2Pb01uqk`bnZ$&Rkig#J;3w<PqwwtSr+~PX^
z_Qc<KX>CWf`=#hG)N!{o8Ysu<TT@j!ftA`PuLozf@dV=|WlvsO=V^j-umqV8At!$y
zA#$C(Hrxh*zU__O1c;iNWPVYdC8a_R-4qih0k2vZfsxKUIvRB?XB(`pr%l|t<S}+<
zzFEd<8zGKrN-^Esycy-Tt(-yqKFmFy(32GGE~zP|gmk10b=hmFk1>aLSaOyKKfu`R
zLMIGX{y00`m3^+QxB5}I?09tWoaa@>nDX7w?*qw@tHr1G^2rwGtB=%~DMfH=f%MUR
zp2K}D`LPT1<IC%M>&GzJN5QH)YJ4$X6UV}_b#8Nt-qh-0<f^KjTf2?Z*y&=vY{CeA
z(y3=HC!KCpG{G7+7pvSlkawDMkuv3P9@`VKk9clFrO!bEF^)EBZXxl<t1PdtQ9|n$
z_(hhhT|Z-uDKkJL5P>C`Lxl1!20H$q*xYg^GbXLEbf|W*0Yvpm#;pzgUbT2In9*O<
zr=~}9=A_WydTrl{BEqs9gNc=Wb#tdMZYN_xa68@pW4J;$H5-Ob7P|^Rko3ygZ9>9$
zKu8X0vAD|)K*8Y@?h$nD$Nm)DGmfMAc(dB3WqfOD-IUJ@z!aytd<;2ZF70e|KZlaV
z4ojCgMC|@k1qV}zy-S!#D2j(8Bd<M`7LQa5)TtvW;c(TK4;QJ<idJ0n>InUsdKnqv
z@ZIHr#+cuhk&rP2R*50RMH9AjP5p-3E>*Huyo=A7%rE4>#QEz=O0{1Bc9=;!UA1QV
zX*|=e{cjICI%Axpd)4XF*GY`Nt3cdRw?&QO%-zgqU{>!bH!H`s6#jXqL}vbiW8^@1
zRcG{&i@d0DPsIP`u5ae=7v&EcwMHVh<q0;mP_o`pfIsyViUDtjVfHn5PW4Ot-srZ`
zJpu{)rk146)2q2vS5ZGrzL~;HqvO+qm8~pGxvfT2P|uUY4#bF)=eK#`_+73^NfxtP
z_=iO!9G!HF3R<_Oo0Chy?S8(x;`=W+Dth!q+qEGeNfzs7$z*L~9Ozkgy0g81;7Sp)
zRLJ<st)r@t8?<_t-L|!VRFt`_j%b|vCaFysNq2B1gwf=2{U&0%Jb8a>Lsb}Y?1+WH
zO(nR(Dyu3yPZ#mPsn0R}G#x*#l+=S2`I!v1>`rKfgSs>SJYJNwSlp?bbG@%hGLbsE
zna^y8n#>oL`<55E*i9L&oQ*Gr@?X89+crQR%A00qY>ek;i2uF5ZYPV0=x`I?g<xHO
zg<(`Z8f_pj7P39kr?W0a96}fY2WY~{@4`$hjhgU=*2asA1Bxh;DpODWFtIPvGli+D
z=h)dc<ic-gS?RYkdAx`rc|?*%j>3fwZjyH$SipYC<TjJzcKndSKlRu%rexZTTNZ5i
zcbV^`pbvKSz8<zci{oVgLk&E@E8T3>kj|ARm8F|(=d`XVWRJO^9pt-^FEl1AIrW`u
zf$swr)@pIo{XkJdQsGz|?1g9N1W!tQMW+_@z2(cFk*+_ohwg()vk%*nkg&{!EXi3;
zMifu@oOkyUZ>ClP1gu$1J%ThP!*w`&n_%z4n-IWd`Rk8&S1W24NVNV!)RoNKsZG{S
zkqF<pZG8xabiF2N2LecZys1_wajwek%b~aaf!v-s1KmW>CoF<t3KrB%p5SpwXX)9v
z7(2pvqdC#-bxTa8x5uLy73fQZb^P&m=_PQd*pm4oh0dDS!8)TqI5VYOc(;Jn`&%oJ
z4>kPJeA?;AGn>q~6saFl1ldCh=O(P-a7NsB>lOe@=>84X#g&pk;ckeWB=~xno+lro
z61C?Eqhlu4dk3uRTOk4iLkFvH;5Y>`vW%9m_Cs`I5v$3&Qhi``Kap3M7`+P|Q+o2_
z<ZlUy$KgqC{;z666)?0Lne#%N4LJrBR!^*Z0&S#00Gmc1_3h(*#$uKH3&K6c$ubp-
zl4R4_nGLW|I5(ZgS)g}KA;e>p+>65yg;c^QZNZ8zHcac^e4O3!^-2Vh4^!^xS9xwr
z?UU+GqN_sCE9(@}ZBMT#;<L8*sHU>JguSMIrEO<BpU>VsTqQPlY(0UVqdX>YK8Zu%
z7s23~P#`J=8QGuURNbj36Asu@;atfMAXT&&Y!aP%=A}}4$e?03!o}N%3VR)-Ng%i4
zSHav27oR%&RQ)p!SvxwkC2MARRu<D;2Z$CaHsuPQc^h(yuI+D(%0@P}1u%=x>SFP<
zyClzgdRjA>+YKh8+94HRcv4F`BSyLvDf@UE(o8J^>{BNtvwVy}-W40NfbEtEPYJjT
zkJLgv-SYhX*gdMZ1EJrX>}{3He!=%9xh&`U^nGMfd3l(8v11}mlr5RQKtq~LYH<Ho
zL1`tZW}l^pdW+I+$Hwj>fbEwhg0~f-!<)gz@NgSfZqXWY@5SD69uFh?!Nevhau+^a
zMx>yx;2B5vzg473H1_GjF3qE}E0cCzqb6E5H6OZR6HCO7^p5S4%`H-~s5_he#IInR
z?44xkf8x_QCyLUZY?tSY`so++@fzphjF#!Nyv>oFW3Bj^T!*(3PZmdWX;d<&AfA@?
zvYXC@Bi9X3O01jg5*vEhH7Lfy&H9Hxxqd^clT#WQ*d<Rh+t72=#*(U7_v6xYxo0u3
zixt^Oil8NygSDC7E1s{|m`+(`lYiMC;U|Ow7%XWQ5gOdQnx}Egd{<nF4Yhce9;Y`^
zXvOj_n?`Rk#xDq4QZ-WRjIvk)rM>Aajl;yI+bdZqKFN#SgY{u?^Ij(Wm#rMh=u|?`
z(qRfqL<7C5{`)aJON)te7CH|07c-fA==Q>9R%KX*Y{9yyi9qjVs&fGW!OnXnV;cV<
z5PBE;T+>cPkVN`q`ogr&yK!SkvVdb9ea?aG7D&;_-v+ZF^wrhq-(B;CIx%tAqE+nc
z-tXz(NEjx25!iIklIA9rMDrd7a0ksFMR-T!k5><UgreJ2VmL9uoaOgFcb^Hc7i!qu
z+euQ08bjNS>|=>~^h2`5xf;8ffEqrF5Y8L9O7#hnZ#0e$*}a(q<^QNQnVJJ^nth2Y
zTgR^sj&^dY))38O@|Wf_PGdhSB2gTw`Fn8<0F=0Cr>d%`NG(hxjt8plraLmdq(;if
zBFh?1ZJ5kzc2E7GiXy-K;=#5#FNf@UZ=g&2t)JI071;8_qoc57mt=t}_KOlW9X#2=
z$=hPTbYjrGfBZSsECj`g0yQJD8^K;+w_3)cNJ&w5H5Fct?^IXnB_bjQn$=x>k!&=5
zaQSGeoZin$udhWb%5Jfc71*8e;(Fj`abgxPW5dE9A@LVHNg_xG(i_bc-W7?Uxo8e;
z%8{bPmih_T*Pf~{Lxg0VII-M>e1mCz4EmZrBLVMnF#6T$AE*F0%&%k+lwHydSAAS2
zS*v`|*0h|l#V^G>xu2;pyeo}naC|h};IF+H96Z;9_26(fI*4W?r23``<vA(Y`={?b
zLAlmS%JG7uj}IglyfX17^`IQK=Nf%Ewh*Yw{d_3D5_VE{`lQ(ZU47}M|8QDampPaO
zqq7qB=)!<@Uh=Y9m%V!jvK#}`ieFojp350_Bnm6*?z4DVzg@G}TW$79Tx9i(kZumg
z_lSTGU&8<O#RP+bJZlHjONoc2m9Hxms#of>O#T%0mB4kKT)V2s4fX%0>|A;qNxJm>
zR}wJLQw<c=C8=)hU6M>mlz3}iq*84LDT*brixOo~tSZ&NGrSmhZTJTmUJShO!Z5t?
z%FlaFL}XG@x4*&6*WDtMnUN9a`kou95!p$<b9gi%Z-UXjWVBPP*Bi$ZdP|X>we2Ir
z7t5DeG-^pn{WI1ZB)q|K3C8<oA`xxC9z5dqOslgb0!$VVnWV<ouOkkrlYp9b`8VaJ
zl=PCGO5W97Y37n<qf<wT%dG2|$cve?#CTu@IC_eqU}d48V){^Y;A?I>KSYS5f?_MC
zhD)ODBUil+3$s21NS-<mMd7SbE!n4LK31%y;=W4V?Ck;kjA%=R{Ij>$X4%`a2Bj(?
zWm@#y_>ndR6@+NZDOx}aZrPt&HKUZ31$z&VDNY)titfnQJPn_OU}tIGQ?(#_n2CbX
z9_JlRF#^fnCyrye0VUx!sOnpT382wB4U?%&K0<43QknJ*kcsED#f#<F*%H+4U8x^K
z!1<P1eLq-*!URyw{A*-0o0jLTQ7)8)lt&!I?FWzVNL@w{ZDbw_u%kcGf`p6PubO$A
zG=8K>GKtw`)gn5l`^_Bf*;VhqwjjXUE0oPOswwIU-xR@}`#@+~JJ*uW@`!6mMMqcD
zB|=2Sx0m!%^tygt{$S_h<M&7n1aich{Z0iVxxhxIfkf1?jJNxuFmmw&llP|9Ec*@W
z#=LXJ%Not7m7ZJMG><10>UeccA_RSgHV?!|Ym#5({J73D(0ra47#qbZz4lWY5qt_?
z9?(bJM;HQh-~>kmD7bwOB=QU4{(B%|emb-Z6mO;k5;I~JsVcsGd{5%WM1IB?(Hg35
z+A4k}qQ%P>dyBlb={Aw}dvqo?wC6wvOj1)ip_1E6ESUHns?O6~Hu6HOL1Cow_%uW~
z<+bSDQNcg@<H?9tkR3B6qv|F8Pc*7Hq;Cm+?4Uc<_hYGQRpk_-VxrIJfiY7dhK)(*
zQ@lBah!8>N_UjtUCM_LS)sSqu{&%}H6g$Y;1>J5=MJ4Cl3&05Dr9T)=j?R>94zkys
z`b>&^JRY<<_TPFa!JWOVIm%B-e@lH8cp=c;3_k!uR$e4&_hLprJj?~Q-H|YxoBH@<
z^Xaxnddj#R4Fz6hXXxj?j~D!cnG|1kA4i37nNnoww*FAwtS~N|nh-UDgD%Oukj&Cc
z?rQWNb`zEYr4w_U37J>U8;}_O5koy@v`X>u#b_SHT8PlIf$I3(ML7{RGW%Adrs5)e
zQ7J*SFPT}m1Y!m9lZuu%2Gg^I_xs9JKb$C$%>ER_K$6DhM<QfYc$WW3FFF#1qQb*B
zqg7#NJjt6y-qWj4{6OL8!&+T@Y?sNRz)n8i$qonIwr0lwr3|=(ZzS#q{DBJ4gJms7
z8Dh`yt=2dR%89-q@5oS%+5r6<Ow+g=b_y%`XmcsXZmRzO1&3Em303H+E`#t?xVwc~
zDTRRgn{)bHC+oH5sz-!@=2Zl57n8IUO>6TVp|i2j5r&wz@IxYdffbMQU*m>=W+?e4
zzgjGzfSS~e^E&*kciCBrH0~)$aYBH}m7e7N)VkQd3y{A@#di%fPrD#2XS^bDoyS*f
z_6AsnkG+W$A|lMT2ulpFMxiWGS;fdS4<YSeZ4YesC>Q|@4CB{F>a+XEexZfZv0~+;
ztWF1XS2XN`tY%=8v2r`&6O-L+Yqa}f2k)Zc$WTYbenVUnUGn3Shh0FynkJd%OUE}x
z6QK4K5L?~E#6@V1O6=@Ff)k+`FJ<f1YZPL_+5^)9<Hwr*1-`S|I}_P}uZTcG#@UJB
z7^IO6vtX3P*u)#U0NbLCMM;xkiWs2Uc>H_?X%ya=SFOi;J!W58XXHiT26`n0IN2TH
zr`n0I5#x4oD>pwZIBb5fN0}-&*vyO0@NF~Fl;j*L3Sk2i;r(D^R0FP}6Kx3&#$@bB
zJ;{?6>O_d7qxfA8gw0)Mk-cnzLFSPLe8}m5XCy1I+F5h(Eio%7_e6Yq<PZrPu!I}h
zS(4|9_hJe;l0!IuY_M_Ta1{ig`?fC4?1Fuj7D&=zkZNFP$VO+eRmP%Q0bEX3SgZ%C
zN|{t(VdfVu(|heQ5<2#ZrEn7~a-JslL=LWA#ge7E<f7+lAPu1&&?JSH?s%J&b8$Nk
z0tO`8w%@_RkFgUuly9@^#UBoAY;zPQGf{^ityZ3@Vdows9B;=&7|ZQMA7a_GTaaia
zgQ1vD%10EY>f0K@DelW-$7(7FkJ`T>PlAhby(lFC(IaBm%=_&Ob?$eBSK$#vG6$9t
z9HTHNc!CkC660{6Y8f=r$_^jz)>x7idAP^INR1_JjKfXvlZY^jcb1O_a4lu$xZ>N>
zvUD>ugHcn%a!n{WG&WU-o@SfH1=;>g{0XAxNq{m!W-fidmEWp3m%kx%GBGO59Bq60
z5bl}U-)d-$68^V=2l;R!6a`2yRm>D72y0u&RBaNY_WG4xLK#$VN)0rXoD3(WrPVzL
zkb;m{q1<Xr4f!=)(oy+AoJMw{F**@EB|0d*)xJdWr5g+D!NgLR9eoczy|}ob6`(Ip
zYsKUyb5;Y7hLrcm?c(-kzc6?NTmmUW*Rk&y8}Vo`O>o{cJeO_YHdx@&IUD4qv|YSR
z(iPqkjZ*h|Z+k-;J21su3p!okp(OIO?meY)G}7uQqmoJ|Ef6XYE}}c7m(wm|JoN`t
zL@tRvqv@dx%#o{Z01jw}1+7Di_w+l$h?voT(9JY>-E@&5j!4y>aurBa*rqYw4I&$i
zI~Q}BX~yU_7!rCz)i-i@t+<zDTa)o}#Bim@%FC5qPGX(SjEsPdwt>#|9BWsDh@N><
ztPf%_BJ1WVtRNsG)5r$8Bg|qbxn@nsh%8jyZ}w3|SV%TvIZ`Z)xjNyV2ZK@X$*4Ar
z@kqI}Ys5IF?coNalLv$3V(qm$qb4YEIw+OZyqg@cf74z+d@Q+z$X#*J0?<Q_Q`&NI
z5+Y<W$@bqf6eln^el}7k`247pD8}kl(%>;c3$Y&XJhIO$YHmo)Q_F5|UlxZ(lOn~C
z2!INg{DGRF9uu@gd#UIktQfs!NkisO6QLoMTiA_-C)i>@B5(|TLA5V{7r;~Z91tcf
z9n*%D3})gbUO<h;wazO3kE-{)1ugrHibM;V(9=`tZnfOW)>#-DggK4pY$C>Eh0k;%
z(@B5N&W?(Ff~sg|a#<!L+BUTY0}(o|JdRdCva83>g676_CliM=VMqsRh(B!)kj}qn
z<L1Fx2#@@ZvX~sH(HvhRb0D{TI29tt{UPAI)zUaH=Jk<o6|>tvU@O|;Y%amDs;vPc
z0aIBaEzsuCl+=Bx%;t1};edUKlVE=1%gk>@TF$e$|LC{Bynt$Wt))<i=e@>aE3S@3
zxwxRjUk?Byp%}Nk+VJuAY3N&Ca-S5H`5p3QuB<8|5DzsSR3mZP-N=<t^QE9b;+KS$
zILos|L-X`18`JKu@Gv4)l4=Q|q>1oQqE#S7=SoDx4=^%;K0cLdI1}xgXdxoo6lJH(
zm3)H4di$i_(l7!~Wc%&n;>ck@$8*T2u<a|tEy(OfZVzsVLEu@|z-%ptQ6G3aY$ru0
zc)0FBR987p0WFiaf{?zNL%IBn{m`!#SIF(~n@X+6h3(<ok>$wfAmCH{OXQ<m3uHM^
z8fcHJe{gOa7=Z_a9e=p`CLQa01y%q}f>T_EW+K1Hq4}y)M-$<LPBkngzmI#R5EKwU
zZpCv8l)ezs{7i+vRx?(2i?|Vtj=?Uc%%|>#llQIBY=PnEd@#b~A0Np-4MdB>La&JK
zSnd$>ClqX#bsRPqDzcG(2v3;?gx%n*8|4x5XzZCg%o^k#?S!aQp1T*buhFss@N#ts
z`JSEafM_l0FNO_S8`&rIhhP$>#b{B%0cLT;Ek|XjyeDRs9$`IHf|;dY)xC$Alv=7n
zo|@>YF0*@??W?rctXcG1y!uFrBv?SH+yqdcr{$KMioat+RkU*?4eUm`M|FkoWvyL5
zf*30?6FvkU#F+?AoL(QLk4vVMndCi3myMb?AR1yNfM5?)YG%_1@A_V|n#fZN@F-6r
ztApGo()t{+X5aKO-E#e)WM`9GtdwN0j}~|W_XEt41oLJk@pxp%;gjQT*ArjOee$$W
z((;VRkqaXk0=1K1j0qrEFVT#eaQtyP;lyr3UukzKNmzboXM=~0Ncf&TlD6Omt_&an
zANAg}+lC7MCbnRHqQaP@tO@A?50Ezz1sM*XdN~p|I)IpTN57V|0}!xY^8f+N_4-1$
z*Xa{-K+=zZbO<m|9aXbHlGMja+LJhd?9>ABsAzV^ZSB}cjVCz#{z$~i<7+{K?u&1;
z=CspoYXam!XEY{Vc{*wp+|vzdW;3&){fUgE8htvMP$&RWpe!WXm7r|Zfm12NAzB_c
zAIyxr0O>xTDbC>;!tP@$l&+HRs55BGGf=dAEGB|XV-hk0e(x@cUT#m-w44i>Bs>^R
zbw?KzhprjX2`E9oujmVgeI;r~LBp7&k?OFY*)6|AdxRYBOR{64$MRfqX)g(D^P<=r
zD6r>O8qrdg8Q-32aB!y9(SUFrvKF)y5QA{iSw6xRaS6ukHni$tr_I)A6P1SN@=Fl5
z69<YHpT38D{>jhSN|bgBXj~B^@gd<mhTN<P0LT{~QWXgJH{5Y|h}LtE<x)GIopN){
zm*OsFy@2P#86a3e49DjYK-_n?<ctUgne7M^b=od5ai3fZN`@`nB*_3Dfc6{1V#JW)
zaTaEYrUaFvj-E)El%SGEQr;kXLV;_w)o}ya3qvJwfDmhdWb0Kr*hKT7cw~9e&ia(n
ztoaY_j%I<g4>ri!_J*>`AG(j8N<36pAQ4*uNiSntVl`w4NlXRE5YB}6u-GDf)>j{A
z&B=igM+dm6_WG3mOV*1?7=uR=cz-k@qJNg5yG{~oVFqB?6D$RGRyK~BC<C~<)yUZn
z^K^bn`yy`zR6UpS+s^voDY%I2e?dpIkqxV_)F#Ob1SS4LV0oeA`o6SuDOq+9szS8N
zWmiCgAfjOnIyEdi++gWMtFfR3jiMFX>W~gJB!#Fe>t_9u+9&FY<C5PjK=!fH%$McX
zAJrt7Y8t>yaN^30C8tW&?9fz?JkPwI6d|a(3SA;`$fUw=AdPK1bCZH|-hZe$C8RB$
zAvr-AakL|?9}WY#?_*^L;R(tlukv95JTfW-fO|RuiGgrYv*_Y;XP6&kaQDC)v;KL!
zf*2eZ;3S-6qd~9WW9=Lii8VeMH7k?EKF13}EX8nvQ~_Rs0fIFt5LX&k0UUyGB%uOP
zo2nxBah~yni~Iy+BuNl)xI_1(kf?d|Qmy3}DMHpZh}gZ^Zvl`Fyr!N2Z)HZ=AUBi{
z{hutyyK;C%ZbY77;G)yU3p(KgSQK}8Y-u&USxXbHj1I^4oJ8Xx?GIrAOGNK4)J(wt
zn=jO>A(;?)@o~tj#OffnfB*nmOAKV3#p*?0AT`<nD6<i2J&@h@T`$2x_f_PQ;eYEb
zcnvmX{>?JnqDtIn1QK*|!T-os)KBnMv4*IV$52u+8D<jmmDEm<DZ|*X?xjY?<rfGL
zg1b{%D2ol0*+LK}d`|pWYts73f4<lBJ2S*c!KD81?%Et=*#S5>YO-+OU@h=j+>knA
zh0>6jM%WtbN>*4H02oqN^ol@7c$MN=C_iZyk($0GosWpxhIU>EMC)(EcHA?Bu7Wk_
zjRwxku*)xBut$(jkPp2%N>gtlZnU+g1!CZNLk6nNR>AhPtae>O1riM~7I)TrjQ8QQ
zcc5Mrxc<OrQIc!i#BJC@*QqX*C;+Kyh;8gJ#}bVwbZhI<P3qoSQC+eknD&>LyJ8u7
zwczEDXrxxt?ZquP8ae754aStlElMp0!D}~FV%2eP$ZkZhAl{3tM%eG9^Qky5qK$;l
zX^A}F<`(~v4#BcQwiiE1b9U_`qecc?(HoFSVzOgLu2mE*w4x=xX;w0c9Jm9g&^fO(
zQ8JOrj*VSZ=tJO;SdyMWdx%}GLt^mK_27fPr0@gyx7DH6EFqcXYjK)QY8}5~8$^mn
zLrH4kbB%8qY@XJuDlxi`ElX)t^axTBrB1s8WyB1NexE*%3@AV@ld2Y8WEcNl7W_WC
zf&^DWE|59ICF2h&WucOA)w2<R;Q3s3v7}Zsom>!{0IPg$Zj)@9liStzrP9>^Loq_G
z+*t!Tgxl!B&>!$%vMR9$wp@KMSqxO7NU~2MxtR@=Ol#PsA(=`qXG%;B5Omrx92H(f
z_a%^oH3Z1<qq3p-TxpK9%Y~9iw#B>iU!pam{f}vfEe@!qE@D?gkFgNQ<1rI&+mfJq
zfqs?;#c!joukLk5`y;YUf0i@)ov)XxpVldqMbU~G3{JO87P2CnoLxOzijV@xme{`-
z55uwp!GY53k*ZrDz~x5^)|zxC-6Go#)kDV67%<E=BQH_}t<EayKa(GfTfM?|Uv166
z=_up$Sej3lhkJYi16>L}3anFjIEF_}xdIj-i>7xjg|vN6hh!okkCjG4UK2hMz_v%&
zwD&{^F`$&@45FumC}gJTHW5iGbl>6`*cYswu#~4+UvIdhZbj+vTde8}EZv60=q1#e
zNCfSM1BD0%2MWH6*Oc)~A$8<wP}R6WmPdR!ii>@7pGaT_NFaD1E^!kRH--&(yj_B4
za~HN*F$Rv|sM8gYF>Q94noUlh9zlyUMF7hCJ^e$HszMo)iwkRuL#g?oVPpsp5~;U5
za&AI!09$H-{)sM?vk#1ob9O|3&--W-bITwb=!XNOENytOVh~v*Z*GU`P=;2ab27IN
zr5%2>58Kj%<Y*Ki3d6ds*#Xfc{3q!N6S=q(mL`-QhtyPLRH1T|A`L-E<JRV2!kI7r
z;Ayo^!qQ$UcOy-c9jRO7)c&(w$TAw8lcjLIDw+CM#JFN_uAw<*)NKDuB!HQAR1ieA
z^!j`{IidmL<XmR}6o@H0Y_0C_I@5}kAA;PbdVn-wC{C_LwS6c)JP88U3j4%_euat5
z?^hsS#K4wd*9`M+-ahXaPjd}9H;hi}h+TzUFaq&qx_imb)tlJ8)POJR=i`=yA)*mW
z3l)OIp}M*SXyh&xkx2+)v!qYuQ?Q#Xk9Tjhs`qM-Kc>N$EP@K7AzKCj)R1tBz@jfw
zvxYsr=sa=&jIB&JDOoxWZtpl+g8m{0<wgK&8_#T3Qw;!+?`Uf3de7g%MOd}@R#r7)
zs3Y2;(L`20y+0lnEOE`4@Cz<7*^+(@RcQzyX?%MP%t9rNVrk7NAvLd)x@<lhkP?VJ
z<Ay6bRf(3gW;3^tO_E6p$<TAG)91zxnJ{l!aEF>^1pk*S(f_o5K!zw^H0YY>f^KgL
z5GV#Hp`!ET?*!$lq(MM4!%T@MiXnIHb-2I$Az~CdX<p!oh|u@cz_Xn`whZQSAVgNF
z914mV1h@(bG$lKi8I^1?E+T`F5XjI6=e#I<-U7-=)8ydNmb_GD!t%HrF{{ScjxU;h
z?A<HO64tKp5ZO$-#5o9W#OM{D?o-C3z^sf1jbXV=#wo|IkZq^mMp9B_ul`T{foc*g
z`Gey^tRmVhTj_0cp;pDj4oItWvc{|=f2hWqm3<QBH1$ga-zb=(^-k(x6ZlpV6)qZE
zhYIZx(Nj!;m6L3uGa(e<4gwLwfg_b7cOa8dZ-YDh1XC;$jNf!Bln)`U1<-?P#2+SE
z4}OACkuOU|eWV<l$lQtpf=T~@c^MyrwaxJ`bAg6Q+uB20LXU}EtIP>C2C=m`$jTdf
zUEiqzmf3(r`ahbjqdYl&xyM~yRtTEc=?}=1`bOZw5%(Z%5MWxZ#hYO=VE1&sX_u4}
z_`7b2>qFAwUOE;0U!jE&1%r>6jRyG&d{a;y$x+GHtpn69B11@>#`eVOeBrvtScGIq
zqoCEQ8oj6M94igl23n%ADJ~i1<-#hXAL3t&KZw1O_HOP>)QAqSF<wzk5!Um&YrGIR
zD<?o@DXsC|>NWXy6%4rL=wWiC(OhyVlQM}f9H2asQ{M902nuEDZRIiRuaIVucArau
zJuvVvn?PP1SQZ3js)WARSiDFRy6U4YL2H}|w=8&42qF4bX|m(_x*`Dr`=ABXS}M$X
zufZAtqCi>E0pM2Bjcyt*A*<ERXcL?b7q_?N3=7!pvijO=+hMKuB2KbDNlN_WR=+tS
zGpeVO!lYu1!I%^<gUOBx%cP)m9kp>pCvHHlOMG5nccHBTOa)C=rNgx{zaYOI7>dX2
zF^Y!LXiPUct5dIBS^06<T!DSBvMU8gFZm5ZnbeNXjIhWL_*g#96V8EhfF6DUZVK`*
zM46MHt{0@ytdL>KOe)|c2}#o25O^Wea)fZXmqAbqI-rDcJ%LZv<{B%zOeuo)R_YUx
zpNtL?r}8*iyx-VSKqPO)qfE8<nuuMCfKv94?nZf5{^$FBrKmLLi$7(U$>YpAJIL*t
zMJnQZ9StKDI00}huGacrKq#Uv#*`!w`;DRNP<nzkw#dLe3!?XAiWc20@5m$-ifXW3
z-X<G%K-|N*kd4ClR1~qTU0QoW!BgULMx%a{IE_-=-(SL2^SJ><6x4%$>fp1^DVqm$
zf{k2!CapS1LNeBsER~WY3fK<mery*j$zZ_LV~237cS=$p4iVD4ENSkUZn^tGUB5;v
zBm?d1cED#S5-=QjM^CN0g9tee)3QG;btC$7)x8K;V$D+EDFA<zgJLpiFt#`ZhZRNO
zFW_#2o6uwvR0)ua6GgfG5`rhtLFk@A1G=}_<haK=yeP)wvJql3f{~<=kIBY8D(&7o
zJ7F;dSd_1&vQZy13m3&ywk;3exVb7DP>qnX45as|p-8X;msu`lq*SpDl410OA+UcD
z36}4L&Yyk7pwi2Q<`M2?vn)!HP<q|P!|XbSg1&JqA)rH13)FdgYt}%$peYa=SpwAV
z0s1jb;RSileTMex^0Hd=^pQjBmQ`Z?bZn&L;Djpyx#6=PpY1UCED1L@a|u76{FNbD
z`eSb37OQ|zj7Pj*x0QA<RMOqip_nK^ncPKFB(37f-qUZ6NY>w~QUr(|$1<?gPFO{F
zRm`bOoh&>xzIuniJIEF0gJF@I(BHP1(cidkV}ki0XEwe)1hOgAg;<5W2<@|+Bt?L>
zaWuJ?ki8(bS!NwE*m@E@fy_r}+RO2*T&5T`P&(^Wl{qpDoIyc2!?uWHE*XH~eVCAK
zQj_FIM~Z;P!4Sq6x1g_<y^Es7F2S}TF<dZ22`kBiA#w-2g$$~W00RwUuuIMPsfMj=
zd0YK4ok$fdWzl%4m?8bv=*g)N=Y@sZ1U-yEqA>-SNs8tfy{pKEP`_&R^{$@!k<ODi
zE062)i%e3nDF}klfGvp~&W8=t0m|rbE7ty-s!kAIJe5{iir|8CMJG92-h)Z&DevL@
zQ1O#DYe-5UQkAm;UIG(p$6^qZb@7EMuo(~Ly|=NExHzKcYK0){qL6b_e*^A;@F&2A
z8Iad8$d<lAX<<$GdQmk8gOA3`N`Bh0@}z%S3)C{L@c=TetbudyHY~pk!w2JUjSva(
z5SJ04N^gXfQc-2tFO}pk8c?D70x8JJ9;IvIR%-kKl%#$Crew~VWo7zrSIyN_Xj>Cu
zb`aV+lKF7!gwVQa@O%MW1wa9rbY|r>LZ}jh(S*WxW+%QgI3~6COezb64qS^64<sfL
zCJ0ThjIQ0yK0VxP>g;`RuL+yrCTOJ|qx(g{W{RwW*+tF?2y9zz%UT&ICE$6D55lPs
z?K8^|)EZ+-#!_tf@SLlVdKd<r6)(bAQU!)d$q>KVxiin3^kt)%wNSTOE}^I;8#51f
z<Zo2dF-e-K5gMt?x0;O$y;WK$K0tQYn{59u9%y0??hd#ED89Lf--&PPnq2W<_~$2?
z)_nD{@k6^j!y1W6qV?$lf@tb(5Ri{<9i-<0eyFX0)_OO`{)hw=d<t4DF{xs{K$0D<
z9@Z+>rU*k4RboV1N@Y(P^|8QMj!LSxc_5Ed+w&|uhHnDFbjwQ(c#i}Z@QASaLUyT1
zLDpe~v@y+#774~mDG>3zr#{9Wt63HR2z1xhnu2!c8v%yU%E`%yKX^Iv0Y>W8h+%Y~
zu0*qI$?2fechW|X+lUJ?B**s*zx#;@#UUq+nm}@B<&XpjV$+x}ohzLSL9Qsw22RIt
zFZ$3dxzWjg5b(r`^22@$!EjG?{mb-$S&#B6Xx9<qQ?bc|_TUYrFKTZZ{S8>mJK5Wp
z!i#DA0ne-C!FGn8XlR#;h{3+tVxi5G0o`3kgS@TU0)9@15mCNn!B@dcMRZ6X>;j0k
z5t8&MkmAV$500e9jc;&4(Q_k)f#S3OqTE7!jX)?kR(OF1SkOD`A=(nobFu^>Rnq?|
zUa^&v@#H&TzR_=<Nzc#Y6A2OUBcTsU%OUr`5LPeW=hmnX-I@NH2qKKBP}+i>!N;m^
z;8@8fyD#sob$xgX02a0KiFiLKL-LxF5(DlbMJ)xp6$2m`r!2rI8fiQQsYjWqC?l4w
z%H49<5q3gj+{#X{rI3Jtbr0NZW&9|6!U5#duu5>4J%J;tngh?pU9w&f0iSR~Q6q^*
z3k-^Tb{$`mDRGu3<}8Zt#xPJ#<qScBn>oMT2xbpT1Q7r}M8iB443Re(M_nY=z;!^4
zSr}GFT5re@#Rcor(JQIhqo$9fGbGWjE@5Wek*ZHm88>k_gLsHI)gY;()sG8>QGym{
zffWH#28fj=M+cwsFN9ur9bj371QAC;3{lkgYYJc4u`?e7*n(&sCLcMQ#Fx=DTgfbn
zMR0c1E}?>u9XI8S;od--OA(dZF|ZJ1(wuY-byG|iIE3CaWU}GE$fiqI;w_-$Z4l!a
z&sb?m!PR$yBXtuQ+Aju#;z$z<_s134lc*Dv30AF6_0-y>uX#MaAI7$YH?3G!7t<4u
zYZoe})70qdW>#0bx-sW30tw+sAc`pJj{KDn1C0=DdKy3`CP+@VLn5$~cvmY!1b8I^
ztWh2QHn^n3R2lg+XoXKGk--9`{REUNmH%ST1QrjZ3cOb=Y2ttX5Zw?y2P%2{M&Fac
z4vc>JO}Q9e#?IYp5@Q=cAsZ8)9Kd7t0Ju;3niW)WeI+eXHEdTspEM*62N+WirH+NH
z7?+5Sz40kZ$_Nr}saX&4<Tx)<SecX|zf4yflq@M#kd=-{f=#@Q&~2|A7YXtM6ugz(
z25Krj;!U-el%R|yMG$GCLpsd0kGZZ?cjemqfshP?HzT%sSZ%7}AhIWftq+I+6Uzys
z4BXF$9Bji0D?%6t<>UM(`3Y)7d}F#+;+nYR`%H~Qy4<0QmR1p_-N)Q|^5=mxMwAYz
z5enDS1B9di@3t_jfpEO5h+{!1D?O6N!y3tbz@9?}Y;G=82ar-}7~95Ub27#h`Q0it
zwr$kIsMsNGurr!8JD<Z=ON@sE7p{;2NWgvk)LWu|1ej=3b40#j*|+C+(4ry87)kfI
zWxl60jY7?i3eT90!F28mri#=j+4<p$)_Eq*%=3Ins*!C~c@EMJbkHYD<=$cdB>j08
z?fZnHiS2CZT4GM18au@)vc?2y|FC^9{*UL(Xub|<=w?gsoUO2V1-1|<K*jXhQYvKV
z;L8)akQE*lA8HoU6L99~$ge3jysqX`01PeE?Z&(3G*^yv;)Y{A^h(e+E@5A_E%9P)
z8EIDpniV6ejS%4G$}qMzYSezGhw@Umg4Xr2C#Sx|!l>oH*b&G*gTG+>5bH8ze=AOG
z1M@=fOJ46zV==LiJS!_@8IV4&@*r>%`~y*K;Bcr16+(L@h%ixA^`&x1p&axIH1p`F
zn;55_*j<CH5JHqq_lBKOkqrQ&Ltlg!dn&y_=F$Xs_~OYsZ4x|HeYQ1SR<>7-I8sg^
zvCQ8UY+qa<TEyFzO0os%rYe~&+*LDM48(~n5P}~Z#7PiEe;IU%P`*Y4w8-S^wV|63
znFeFBOcDku-UBl9#LF_mZT>3}bqp0r4JwyF-&nay`XY9mPM(ShG6Bd(xx^}F(MDzZ
zm4<nHRa(uejIx*~6S8*r%(Bg_M=*8>iLS^e&nwYgXnggKe^aJ}CtAxTNinvx5R6V@
z5baK@_=JV2N{o=^5bRC#l_G9Li=?Hf29n`W$>%M}pKglBsif996sUnZh&#G4y76x=
zMzWU3_9Vq(z+nMGr>xQ_m{f7N%WDv--&HsW%ZV^UP8R~8OqC~kA$+==>HvBiQ2*aK
zO`p;G6E({bF8>ywq+(-VJEpu!H&l4>cNu=Pk1Gi$fIYS=16IAIq{Z>&aXH(i;&OGV
z&ddkOO8z33M&WPzGVuyB+Ul){;;M0&$Zw;MrW*#9$2c96M(siq)E=j)NgXYUX08AX
z$q6JvU@EO}Q#G`Y1m=B%@NX^jV^tewN5@Bi`9f$dtP>TKJ7|)uS#Cf#SEv`KYfXOP
z2pZ?vu?WrXVKn|;_Jk!otDRvbd$6Fm2mPGh0jAHFROd~~M`jHt3PI{4`OZKklpI(y
zdw9bwfPkpnN4+4SSLLS&g1g6xAn@e)i(=}jk2dzvUnLoW>2V~-D1Ggl91Bh1@dzQN
z6(|G_syqqUC|2QWA2FVxsmO8|C<=QS4@3c5^NRG&7-4(aw6&*-U8aX11H4}@hVmA(
z1djr9ir9aF8>pgca(sYr&}y;D)SXQ0xVM%5MX1Xl0}_jFlF?RO98X#ETCF)m7&=%L
z>_l%TUP;J@{pnNV{3io!D1(H{V=+|y$wF-KZ@~LkauKisZM?eP9P|$hs&^tfcp<ey
zLHGAhj0Ei0M<HDNoR%@r(lZsm)^2PCNfHf#*Ri{FJ!lo3Kls#R05lJWvILIPv3FZv
zI37mu2{Z!54WU&zww317S;Sp|&)<p9)uiMt;!pLxaDz&NQpICXREib?-Iq5TOd0Bc
zM&%7__-Qs~h}JmwVhkVvXp{)^L&$8Tctt5?_(1YmUySg_6}=<341$yo&<7WR7b^cI
z=5xSydv;4QpKze8#uYmowIvQ^2A4|zqw(SiIDWbOq67Nyh5Qb!3zJrn2gXB`Ql{Jn
zTk%BpK+@VC_7MDl(@!;VWnYM<P3}WXtsyQ{Dq}_|qgI#|poFZ}2It_*7q&_nv|n(`
zqoBiPC-OD|-04hv{72qacfe@23iNN2ONkd>PfUxs1aZr-f^pgjJ}pp_>T_46Y13r@
zL7<B5CtM5?_#yj4=^;CaX<nR$FKi_h5<?7SiX}`-j>A$oQgsn+<C=Y2sRxTB_i%}S
ztOU-8TxejH8sn1Y_kyKsy9h}uj&Wfj*&w5W>Ji#T5ZUG&hH@Uf(B-9CDI}Hv2gd<9
z(D>LFpW(<Bq>A(?khBV)@6>HUx}ox#4@b;k2-GUnRdm3dYR#uzK9*~Ok!%+}NF}$q
z0*@93IBt&)wgnwu@jSd3;for<6&Qx#I~LHe`9xgA=VH`hsmbCH3{@8>;Re)CDyaBb
zxb#n2U1n6ZUSSwqF=Hqe+r^<lT&WQ05efgugqovLODx6Oz{jv~Df&t&WVLWFFQJYp
zWSA(g;QEWa1g%tB5Y}aPLejgJhFb0?T%>KGm=R}@yy<dDg<;Bv|652O%}E@vM~vv2
z0>SP5{JWE-&}dh$7Y9Jtvgs&>pdkU?7sO%EjT$bUU0cuVcplIMSO<0c5nPb4@KNfj
z%U0<hIo5~d;h*=0M*~=4pjJg>o2UqdAG6~29Jid>ZP=JYtLL(kF(BGDZ!Kdm<XBrn
zDmq)54-SfsXIXDspdkYj2)ajiP(ivdnvy*Fo6EaW$tq;pS?ro<n3+OPC?!e&{fxSz
z5n%rVf-_LIH>?~SHpa!^v@md$dR?H)aw(=yOr>Ar2jf4Y!z;ED@&Zm2!xNk{KJZa_
z`+Y9;P=%L*w4#d*J+kKOk_HMe?pLD2cm77|Oo=Ce$dKfWah^(NIE`V^0bJf~z#6f|
z?U#&Iw}d>>ch)o`O})7jUE;gp*q0YJcPM;H^cH#ytzYivKHS}IN5up612hQ3!mmUM
zz66{@B^4oFJmRz~AThjeuXPy7B`Kncpw#wONRjxLxh|;NCqx0PMaP-dcW|w*l0#Yt
z0If{AOZKvM2J|;TF#Vvt!6zeK>z$`k0pDJfB6gZ^b0E-F75m|a*yx}&T1MpOxf!QQ
zSC(>QOhcs*BC3*JQ;}sN(L2S?8G4FZHB7;1E9kx8kZKhW8O1=DR*1=;yuqoW;+Uke
zVS)|Gf~Xq9Sbuq~bXMKt5+FIOv573z*5l3nMkH$nH}uKps*&QBgaEK%uyKq5(GTdX
z3zCs!_*~TBRZLhQxE@OfNBC<D7-@=)ZJ7e<;VF0qR|OM(pvsdQ5on~b@HK4|fu@EG
ziy*S7&dLrf1i?{L_xscg?Ta~FQs+zTOTxsmcH%JVTE3J90AknJM6*KiU;!hBTWymM
z8bC8EjyB~Zjadvhi9TWN*<3|!Lq^#4idm^w*;g8{F}LH21ZnI6jif+FV@au8EJJ6@
z)77g3yZ{<e&XcuXXS?rzBXf+dq~>{Y0P}lY1A1rJrVAfK?AV&R*;AQ3)G<M#oqneU
z#p!K>2fze8$l>I1b%AQ66z>j$7~NXYWY|ughZJKQ$D3PA#jn&DUojq3Q5Tg2edm2r
zRpQn~*n@~mKr+Iuq3t6~SF_bK=!qgN+Y`MX*XySLmg~tW`G>FHMQb4Zj^+z>jXFl>
zUd46s($%^GqtUe?9S=AOyE)eTGA8%MUtytEIe2;%4AlD4(j!2&;L&Z`BAuC2p=rx4
zIestR{^doXD6}YMbpFGyLW3AcV|#5*O2>;X5C8ujk=5S*gGWliEAG(|mg>u!_7`uZ
zL%M~<1J$Ih6Z52f7KI8`D3%P2p>EtO__;Qi5kPM!?{sFCH|cd!^&qsLneGK_ODUB@
zPr!|qR^)OCmAnrnGqz)?Zb>qi1xw+(TRFkA!(<8xm4UHY1yHGKESUr?$6Cw-_NzR|
z8%h$n4f#)uFgan25m9o^k#M6>hlHdO1LJo6^VSpRP7+$-Xl`Zwjww?RW{Y#dv{m8o
z(3!m#lhFlQP|9JLsw9^f&y)@qd;qk{CM1Dbl2bHduwZe9j=j~WH^iWe;8Tw}f^M3?
zG9%%c+p$@SS2StvO~+((yGU(GJD6L70yP7e>ol!}>3zy9VliPJ2zCoa>m<4TEtre>
zh&``a=9XyK+t4D##;#i@8E@@IEC!cN{WUB>R3+}VzI}>gvm<mYPzH%s;95!l0s!-l
zUQ?rJFZvW;a!X3dyHGV&>ytuTCet}DZjAQAcV+C-4OM!h`Q81B#BoZKXMTIGz-z;s
zF4~85u>ku_g(~soF?>;Qz14$IDpD`lmEgTFnPfj}^@dtM2{6<hm|aHy3O>PRB49K|
z-E#W0#bnuE7LY)UjM>JrZ0R}GEz%gEG8n5@=e-~V&1j)r!jQHm{k%{2VehLY8X>B7
zNu0vWgu1+pRuLHHd$=T4M^a!?knqq}t-rD!C^coSY_PJm8+7vDr->AbetU;Mpk1C5
zBzg6S$kssa@aSAsz-f0hEdfQtEQLY;tYCD<5p^6>r3A!o`?kYk7&YRelyaP3K$y~h
zd<KJoi7h~AWD%+~l>peFopZwmA5e=38l(AJT+lcb(nh#Pa};ynl!nNvVMBJXkFm#E
zw0UmGyjP(y!>*fS-INBTboywio1Whi63RQ_uMZ%183R78QH6cY%-HOBqOGS@D=0Kw
z^;r$03;Yv=(dRrgFyyJwMsqqokFAaT0q_>%h~$6_!5KsPH~F)O#52l%`iCsKuS;1b
z!J<j4t7d!pfQ$;ra8lm>#M&$ybJ~?+IGIV*$d#7(=uaSw`+a^<QsHj>^od#mkbPd<
zU~GMd<-E)1t1w#fS1my&z<ROMp&}-)+{_!LD0rW|BfU~@RA@<Hg9u2pFEF|~T}3;v
zqE*^@63g*c(!ma_^tbT-@GO$pVad~0d9liGuU1RdOYIX=OWCbG9ObJLA4CS0P8y_w
zxLqkjthZR}Q~LZu5L8HMWu!>Ke25*x2?TBZ6Jv3J-t0?dZi{jb6pK1MQh1m?iQ8@_
z4s4(K;aty7U{B@;DkkpqKk*6O;P;i=$Tt|*<7wOXLz87lHPg^^YdL~zi(#g|h?lDe
zry<gZiQKisd;|FVc^oVX8{M6t8Q?1e-#~M7J3ei8utdp5A%=|$Px9Va547ftsMXpA
z!?31hv*Dj>8SZQ;EX#aqWY#hssf6zpk@j@PU^_Su{z_~$#L{D*zcUBcE&2Kbs`YSh
z@U+o5KP%J>Sk~^7c(mH&g9MKAK+$x0<k7&$alECMQe?M;!%?h=Y;QLYz)y0DZ#RAi
z8_BWpCp(}<692{>P&;TSn4J%I!~-cNpQ(xU4bq-&NYlXxXe4VO2@YNXZngGxui#hX
z7W<uMuq^0Q&(z02Gf3j~;s*z#u<APOHk(a}<%wpSWMkuEHkbs&PHrNMuh|i`>+`y4
zvTCSND{nvJ8By8d_tLAQf|T(-9u_UC-W&yCk`uF|C!MfZZcILTbKuL91xjy*Ze!9q
z$_+F@e83~U4k<Z}R^GI!Dlj;@v31(8>7q9(0paI_h~;+Tlc}Lc)iGHrA;uRY^UDLZ
z9JWBQ_H+di1_VT}8>8?1sBA<@;omAL4k4nXIo}fs-&tAsXdCB;v_#1y@e$t5`?PY`
zUXrZZ)4k~80NdaF2a(>ZyW08ig@&FO_C^yzU3Jir#Md8KW-zuB6@LRXoDL2S2!7i4
znq4tIIS=WBVhEx_EqM1iH*Avx*iQyCjHVEU6PHGJ;1ZKOhy~DKB5RPU${0nC`{y+t
zN4|iBlnZ)4EgKI%{c_3+*f2PZd~i<-sPnunS-Ff@$P86%B>cs`piV8R%r2=NRDk<C
zq5%(aP!yFl0fH(DXB1%#tcN6f6i39)8AL8ZP+{NSu*#^wC=DWK_Iy%|8!$yfSTV{N
z`TPXdL4aC!_D>DiI*o*)fE)EU<OKAwaR$jO`1I#g?sSZ8SOIa7ktuMXOawI6D2-=F
z9SLZOY))0<sRNs{Ky~wAw1a(3YZ?2u<}TE2h!3*-O!3mtR=t0q2h5pHYvK$_nBOGO
zS*PvPv8S&1t%+ulg%7|An=OAT^%=$n*BJSJFNDt_b$I;)8uK3MBd87UM;T^~vCKv?
z#1H|^Nvm-PVcWhzq3<*703OqzyY5t!E*hYwlhAw@Ya@(8i)IujLm!io1ta{iknm?n
zyn*0r`u<^IfZd*SccXd16dq4qx`7SJZnYm;yFYS_if%7&hkX|WU9@TR=9yHOB|r@0
z8$z$JM1t7m7J=-&8cxm;lGZUC)<O6k_MGiVJjwc9=>mI_k_$)7F@&&V!uL~zJJ?3Z
zEwby?XqblKog&^qpV_U5<k8X@g|^aiB0-1D9($I?+uf{wim99dkq+cxVTihtCYKLY
zMw^5hMbdd7`xEbFUD`>~;8{@ty)-VB1-UD=Xb;i&yKk2y=9&EWkD&jfiK_<%x<Kl#
zRt=#KbNgNst%kIL{^S%74vyv}{{{)|>&Chmw5Ms$6nPjiVYCtOEx!nIwNj|4VCa=g
z8JNr&w`utslI`V($*ffsarnS*LGsmt0g3B}AjHXymv9JQ?$aZ{M@HEPKrYHL&~Dn_
z%0@x>V2T1sKQ>lh8f{SC8~-(o$%MsGZ#p#{gbP9D;oyvVyr7SzY7Q|se&CA(|6Y)`
zPcYZm-16D-gJ|v}IxqrTW{{zw@S6;YQyku0e~1|SkLe|v9lP|U2^{M55amb}Z1p5e
zly29{O$dp_8qq{22tZ8|dFbKIz)L%=(Lg3$xZ%6dETZ$rv}goP<hSMmU{Z|l0m(B(
z_qT&`y+WqqT|YB<{9c&Wt%*NLbDxQtGP%aPp!x-nPcaEwK~T!ORBS!iufv5Y4$p@Z
zDnk7OOp(^v(O^0bA_@YiOq*C5qD!q6^bsH|ot@N+Ac}LO1;wK$madINv@{}VN+Mqb
zEmr12*rN!|>J%Cw4?PJNB}hj(i$XYbwF7*QtQsInd_N@&5q_4hK3mxhHJtE_eF(Hm
zGJG~=RO0Q%zE!b2B45Wj=);K4N5Wd#(`KQ_u+;+kok#;(3>Qk&LFx*>C!`Aaa(`oA
zYo6z%FWJhA0WKJ!MNbZAKEqk?``|o`9~Jf4R`<Bo6qMTeA)<&Pcq8pWqgP<{`cH|O
zOhvzE=>t$Vv{b{Q@$%@9r4xw^AMpz2vmcmiJb#=q&Yrv+zZH00U(ROu3v#%7*o5zJ
zotunz4V#Q))oiU<Nt|)pKk(lo_w#8h9hJK03tebW$1bXX)2ZrH>pBeC@RRqhPt4M5
z$m6-SFDOjOCKyvr#mZ34oB7CEfYZVe!6B(V3N{DGtNf0VyGBFE+6*vRsUMWSig7jN
zTks9S#GavyTsm=%=ua5_rvEGx0-=GUsd@b$7@xy<;dyYJQ5RTn10eQBoz|HI0<ErY
zW+fPd-wA)S)oGbt=3BBJ)G{`ap4x%S6G77Hat;fUv9iU6cQ3b_DB#&_j(rELcUNoZ
z`$+E@_?Pw{u1NPFh7qHl=RckpX}c^#NsDxIYkZAf8Hd1Y=LhVj2&f8ve%!}Re^H{K
zqgbEj&e&{GRtIRt&X{@A@ad`c;Ro&LS^hb3nF7~<Abcr11JWN24i5$cdkt)7GG!)b
zC-8XP*VM&yk44;h7Zw#l46%Fo7shx{gO!eC-u6Zi*un`%Glr(rc}A-WTIqJ0h)pMA
zy1O7LbWnh+@es3D6;DJ*Y}aZA2E$2s7oa?T*~XOsh$8}G26N(Dde#r_gvLFvdUATS
zUn|lR`JiU)Y7d^}G2@Q$W@9u}DW0Hs6!r(w!ixyB`v!SK1wJ^FZca~0Vt_}C5!{ce
zPJthi%5|J>1R-S!t2t;v4%BL9KcuXk#DP0%SkFoz(lHWCB~{6=-xfpfNs1&B=k}3G
z;g?3+fKYJQCFwLYFK}*FHd=4cBnIUxeS>9<Obs$xb;6Yrg6LUwZv{Hwn+6o4R@uao
zG5%kfBp~Coj`_sUwRA~VlK3f0^jE#wd*wNsv=hLwl=~wqfrL)PdT&AtK64x>pT|CF
zk0nE?eaCFnP;TooVMr4nQ;x2r;nJF%Z`R?S_Kc5M7@!%0R^2&Q7Zyo`bQJJ5nZm2a
z{dX5dN=)EDIUCL|J7mxsZ4Idh3zG@tn1My2q4{u<(YCx}%7NX-)@m@zCAv?RQyi1A
zv><Yqh|H+>8OUb@A&@m=Jn^ETD>xy5ezzNimm?q{HI#9Wd|4_5aO<*HlXg#gNY#+a
zGz@RSG_6rB<SgaLZGfZbt(7b|bUb$Dq!H3BNY>={U}+Af<;w=9;nAq$l2rMg<DQM(
z2EB%r4ogh3S|SM<ueiBAjAvFu+AFe)ldGaCiA?oo5DTGych?*Jyw?fNh;<}6=r^k)
zqCAAvcZU5>w^#N{CGm3O(OJ+_(1<b<nU>`|4LN>S{zMjqJ_&!><WQ#q7>Iw}%T;3;
ztxSl5LM1RB0R@vJJ$`43IJ)BBh^Z+q9j!{|WN;khEcJ5mSQbG}yyQ1o`_F~uekL$2
zQWRklh@c>kfH@)r39W=j5v#h46%kOOWD$gtUygR1V|OulTAiXh{nQw>-PCx4pfBi1
z6V2QpVn_vos&fOoA!3;3eC5#MzP6czc*`fmM84Us%dda&ys%aCC5{ha*4r{_Z>4S6
z7#R8dL42q(A10Y3^Fpn(f0m2e@FPe9=Ef|L7_=q41N(7*BI|4BgRe_n*<>ar+Zw-<
z&j$2n*Cy*C_7|`1>hbO&1m)KDQ$oBL11{CWF5o)gvuNDO<hl7wbOh`PPwxS+3pDG1
z3>7MTaD~2LMfp9IKo3`5Rj)3PXwo$-*%!>#hP{a5ooOcM7s3v_s$IijpdoVh#=zai
zXK}atNpHwu!--OQy$9{7Ds;WtXAy{7Ci#I_nHa?Zhr9`qp-pX^s$6nxI1sLAyC{E;
zb8HQKi|Oa&_M4Ug{s599|INin%+0j#6e8@L<>&wG@Hd|+Q;5U=GUzrwe`h}%d-{+7
zFXa!k`F#)=9S#JS44p_V8|0q+4Y7ki7De<K4mZmlEsf*X>b3YY!9X^PH9rvI8<qyQ
z##|h~2Zl<E;0f?Py>fu}RpqI8g#(xSIQAO6)~6Z0b3OtZj1*tkjYp^tB+&k}o#Ahc
z<yJ2UKXwiM4Q$kE28WOF2^sF=$?zy#LLzlY7kvy>FbXtbw7T+s!w!5#J4}um`k59@
z9O!MP%$SSCEOHM0!9bCG0vK<Nqapx({ax)>^c&PJdAcs;(}!SHtj`y3&Ma3F6=NSe
zy&=aF<3_Y7OiWw@{oa3s3UsVZMM2PR(K1CraKPq!cIhD$U><-j!qY_UI1Sy}R5S5T
zVqAxt<rgWR7p+iSEiB?r*S!GtpRSga0nvF!&GgCsowT!Hx6?I)9JD82>h<Al&^**i
zkn(lohYDrVM_0GOqQFrjv!1Fsi}nSjjHU?PQ@TtUReKBrW$M;wi!>V}O#DD8G(F4#
zf^8XG%LP(eAX3Q&7o8OS^BibzFdf<(QBtN<(eco8h=LLmMxg*DiAM84Zy0yZ{V@<{
zwi_=Ep_2b&04Uk@LMy4eN2qi+KZqD>U|B-jlxjwS(~@fl0SMj6n}^xWg*h@DGkCRm
zWXg=kBv@U6jM)afwm-DP1on^+pry`^_<)=?HBK0#W*cL*SldSIs1vQ6gU5<E9Ma<C
z*{O5a`-KV@u|_T)CC{)@P`Kyxd@eoQXrIaBW}j^%AaHh_DVRSO`Y6c=oDcF{?-xHr
zazaBXp+_g3!P0aK>DX_vNXciMo2e9CISOM<B+AGQ$aW3B#+~>*E5FQsM*JO9&*zvv
zCymTQ7B$NXH;2uc(iU@)@UiY@ZKiFM-~dX>+kY0@>Q}L?5ida~x9GkOkI>su+blOP
z;y#Z5zCp@$hQkI?sjnnmMWLZ~g{SR_jMQ2o9ez{HizRapadkiggmKB(-}x;mkU9P)
zAsEY6yqYs-BMO+`!L1MSF%f|=&XZMqGnWgHfuilf;dz5Bcjgkw%98{WTsAU&tPe2c
zWw5u$oRVFj#&01KZ+|lbFl+az_*cBfJ|Xp6g*!8%7}#Kb6S(PglH}G0Ext=-?)|<W
zGetC6@6j5M)*=xWDq`-hU!y?)&5mv-`@oVeK}BlzDv%tOQGNi9XX{WN2?1Q417KgD
zandrWFh8+y6lm8WhvW`xsKRwIP^2u1vks1hzcuxe!~!tbDx1AhMufUA%boC=Kttnk
zAaU{y&=8B;)en7%u;l#ZliqA@;;I{!YqU?w1(wUecFFICaJ>O7Vq5HQ^~#DyKMups
z;4t{LD08>0Y_q7LgoR538n%U;j2!4!o*tuIqP+qH!RDe^Fe4_P<55!#la;h>yiRoa
z4qgZBRDFB&Yq8Y&9nT2oSZP(H<O{8d)C(kgDJ${{ms%@#fAQ5#bmpRQPC5{`0kcyy
zrN)j>pHPQ2O^T_M4$c3z;tm9Zc+rAjRGz&G{<Sq8@x-pf4G2K#rj&-L6t^sg^81GA
z+d!Qk-T<O%%4J}ApoB1X_!P?vhg^FG2|#pcY8I#fh?+fYN$HvlBD(?Erox!K|JnM?
zrzi=>k~)^)jdgP$qGv-TTl3`umYP|{6s?3CW)C~=SKFQ{pUyB;l(K!GjxEykLAVpC
zSI?)8L-4Bqg=*CU_SNALyIp54wxdUZ?aF*2Jve|@nj77pCVtmwm9q|`aiaQAd5~vv
zY;y!nqCyXO(pa=MUWy)(ZBx`As85AvH~nA(gJkr``2Ze_kPmH;AJ&AB!v&y?0u!dp
zfahMjl&QeX5VYq)Sh<Xb3nZISD&Clorm%0RQR7P4Ey=0Z7*1k{ki3>gU>GEws)a=o
zAWrl&8xc^mf5F34C)qr;H=*Fe?1svWN6)B-H~lLd%_dBNn~;Od_8PsxXaAKV{<8mB
zwbJuglYdT7#)1tsY*Bqb@_gzl6FZSiWIU1wA|;rdxGGdZg;)tuYD_8Q7dWurj%`M>
zhW}=ph)PHr>jU;3n?Z?2_7|1^(X4Fw8Od?YmtV<<2n_v^yPvE8{soi)>r_CT-2sD*
z>8HGq{q;t{TyqMd{f3vGvXRi<Y=GHoije3Rn0pGxH9d-<Pncv3G<)7uoXG4Cxj0zf
zL|vmnYL8OOq{^J9D-7-{;#h5|6-{c&_zQ2ThAi|3iY%chES;_~cQGxv7l9j=r7SAU
zMY{!!ljhmwKh=c-;+mby@5_sZU1LdRwh&E<2dE{nNNFro^D0+j;#Sv=S%@ur)eoAt
z#X%qd;`Wo@DxSIfviQ-KGPL`tp<J`ow{We0!150#)dys{fk>S#4pik6qOjP7>G$l!
zXaGiDbWalANN?OdRzD{>3>zLH2&!lY{y`mAbDUA2p11%`X#whoH1g+jsO^<Tx+F9x
zT?&Q(A%6`?xrlhqe>ytATqyq8Jmi12o6`4EboFC_iH5E)_{Q!{r&0OIthLdO5q^3r
zsl%y0^XGF79kj%&jaKxq*#tP&PDt!TChdJANJ?KE-qG(o>wA*UYK+2W-<X(Y+dcnY
zGJ;fcOn`~nd*X^kr&z3ZwJZU*ucI(gA5cM}^!vIUKq3Y)C)g_+U*6KT^xEVOoP{JV
zen5?n0>;Bz+cohLB@zu=tuvgsu{ZT5Nu9&?OlwF8c_?TAFgqReV_3O`*%{ghdjldN
zNstd0IK|2Nwyguj)7LzlKPhP75QbQ?jOrt!L>m&_XG{QeSxDbYdD5{133=Q2e&?I{
zBU{3qFip^C&B<v1>P78w!q~v3hHG2dEo8@VN$;utD&sc|%}f}RD`3k}0zUwiCFDm=
zOWR~?^U92rb*&#@b^YT%pgIL)kipOoOsx%vixfkWi2%3CKW3<K6473r_CWw-ACQe>
z6TWEk0jB!uNa_41{NvY3XOiLyXM7&hF{T&+Psj3O;b21so$#p8*2WD$j3smg-LTGO
zcq5j((+M7T&5B2@X=E2=__rLH`IPF)MU`gBl87RKqqMsDD951|iy0<vTJGaM#uXVz
z1y1#0hlG}F-0nk+M{Rvg5xBB`Hk_UnN^*0GoGnD?y+T4dUY#j+kym?}!lP!O7%~I<
zu#JK{pcmY(*Z}#{V#KX26i-?auncX1l%!p;7-A+CDHw$+0Zia0B*bETziHQoEbv+A
zR9A8$DAc903#tsISFKjtpfGACl*=o0-3<3J-VN`U3C|?)T`BIAg%Wt8wPHMRTlWWi
zN-9`QSa%mCg`O;f>NfpKx&PXD^sA-zY4lKbHko8cCpBA%rW80!@DW5xUtSz?vvc^9
zq7Rw}=&Y<qQn#d%-W7qwe1$>aB3N*rfC^R!Om#z57N)L{grqyF%h%kH!$;ncx>|E9
z)64&<!kP7^dU+zPmQP`CtfArVe{D1oQdM}oq*y>-lV1;)4hEy5Js4!Y^SqC{XJ1g4
zB+JfbT}l36EyE+U=vpg=O3FLb*uITmd}85<+GWFUG!+eI*gK#J@`u$@8W>MKXW_Q+
z9p&)5tmwx>#6<#&iE`CJ0?hpcumI`A?4BDMs%sF+1-kmTTrG0xDiKqg{e7Se0D-Ry
z4pooPT4@Za2*N$}4-lTQbQw26>kQYi8Q{f<bX1{N4=4sN;F&D8XQ-431kh?)7+t=B
zEH-!BCTaDcx1<jTkdF<-^u7FZLrp*L7QkIdi8hO}=d>nd!Vo{@dVNh1ZzbX@V>e`U
z*NBu@9zNZR0op*4HTq&JzBj0PrI~~eHb?rYxO3Q@+OYX8*dZI9PRy>+`2fu0V0`N2
zgI<RMjuXB}K81{QKq#R1v(^2NtuOY~=$8K7HGLId#$K5|(0kdgaz{;n(b14I9s>UQ
zdD1}*)#1g<(!-?Z#*>E75QGSVUjP(T!7Yu>ZK}QJ-DGzmA0t$%H<F<yN}+z5n8fX)
z1XL8?F+0h=SHa=p?Uq2GGp<Y&82DakKlTP{w_r7=V*&~;3{y1Q?xP9E$Pj8p*Ck<I
z2HJWHG^raQC1QH<7{LLW5p5$s#F9N%skU-nOQX`s1#&)3C6k)<%NEs%T%)PG^YV^f
zx1i3E5eVYfF0xkKQNVZp=$wNY&lYAR|MJ`%ac7I#?6=jHSB6oYCg@0^8HAUlg1?B)
zree}snL;8dn&KjP%da}oa8tAnVX{lX=qonV(=m};AfavQEDs$Um6!v`W4sxJRAXRF
zHd$<TWR&{QYIQ(z>4~(R#U{||n%6lTbxy&JYO0!s{_><Ec?F^8iUjk}Zb(V8#kaIt
z&uGB%GT|e`uG(zu6iW~(FI8Ro_1RtP`M9bTlpjHE$k7>UUfqKdF+5u(EU4i>zwf<R
zWf!;5C`}a@eY3cXT0;{t$k}WqEnGHPD3{eQ2o9mIOZ34^?Kj3Ns6%{M9hUNHAV-Iq
zwUb~5I9>i@{Qta9pXyEpfFzS>Y%&IpbmK)Wa5)fq=Th?_EDu`$$N}TSA({B<jKB-t
z3Zvg@h$yv&h;rq`T$Pd>X<cI1580?=DRR0MN`6FbdpUa{mR*xA=%PKagcC)asxx{)
z^s?zdd(HL<l6K1q;xL4koa3-Cb6_Ya$xFiQoiP3pr3-9<u<LwE>HY3rcw-_a_Buzj
zQ+7Fsd4g8e(02My)$~FGu>XN$OwNF}k~i+<W|X!<n8<vCP4u1h52)lTTY{ykbf|5+
zg}1gUbkj-TCFM_ClP$|;%_Z8NYPTU+T>5OVxmRZBf@0D7ceL%MX0S`kE-XP3h-(L^
z;T&(X{!xEhp4s}9z<dHLV{KZd5I;TvE4o69*3C=bI65q8oXJ54OhK>ooSAtaRl@kd
zlS4YT$x4c4(6R=fzLZ65L)xppulG7c(x@0rk+x|3RXZ!%Q<3Cc33eJp7~G25rXX1m
z&xggpI_L&Lw9OhpS(yzCg79y(f$5uqBQ>VXGAk;Q562>nWTSL_&Mc$FxR&mPRKmZ_
zS|Dah;kAt=)PobK_NI#%#Yg3m^@C*FwgcYENMQWfO?DY<D5S<Wapf{`C3jOa?(-Zx
z91t?F0Mz2D1(s4#QIto>qI)#7MxK(asO1p;-OIihMpiVmx%7APK0FFhE$8GGK1LhE
zJSz&T>D597+QQI!9ze-d)*K_{%@oj}FzmU`Q6p&PB<zo@;}8#}mKvj6xurB+!=UZc
zU^9l+Wx9l(0_I&rr9kN~z?D$&r<_yQMXZI)b{ZNIP@h45!HRj&ww6>;ZNuWa#Ef`m
z-G$@uZ3Hg{OskUQ;(pT4vF@PM$PtPK9I0U;T<A`t#!$=_0{&Qm8ca;ABP+KI{Ni*F
z&(HcIcOFVk#os3?n@S#l7+`g3R3YpGu~Dh?#PDei{BUGjA{|<fCb}Mwv*D1!3$ZBN
z9?q|Iu6|A9Wa_;#ZUOpEp)(0<Jft4J#R|;dWnyJfQZ7%t^n@9VHKAXfL!jg89WaR5
zuPLDGIpxT*8H}2ANFS`}-xVlwEIqFo0W#Q84TEXzTTaEqTM$2SCy^n5oo54P>#;p@
zvTHAceFg4CN%3oVb3^Wd=#*?Ny!G-&xupLGLOe(}>vI9|@Zhn{#d^{nI)uaCk#Pr>
zWeNI`U|z`!s7DaQKSF=4k`*bN!Wu8iTdFPuHwB08xV(XHs6=0va3zDWH(z0w?BO?4
zg;77Hcru6o4rJ@BTsEvM<CS4Tzw%<So&;*Hum?~V)ZIUNwQO!olMVAmjZ%>_BCk3v
z<BQ`2IHBZpRDtn{33J#oS7e#st_d9oZ~!V&<48o3$U*z=m=G9lpIH)<`B(2{V>C;q
zhlQH}H8ICF_Zz<@wkEgFnslG5S+9Dmo-f1!bO|HU<_i@0Hsz6Ojkwq30ev$$%2fy`
zZ^wx8EspAa`DYZZ_A%fN#>TQ-uNQ`6RRmk{7u^Viu&(G+564fH@WQA`m6%TG!l2LG
zNFky?wKVDs7m*~1K&wDk!wHL#r^8DL_lTtRRBU3}!v_w7X@`*!96)y1X~JZ$Gpdys
zX)+jLT^c07=btq|(ce$~<3_4%)_w+Kw&LF8?_kXeb)L}z5(gny6afg&1}RsfKst!q
z6+hH-Cs89p3lp1I)_QY;BD_N%TB{nsfU%M{EZW%<VUK7y!K!fni7BZCZ3PP_VhLV9
zZY)T1zfduc$*#)CuX*2`9~WX2w~Go*(0i+G0P}8!n%a|WHYFx2?*inl=3{8*P0FmZ
zJL&DEOBo9IN#zMODUF0xHjZ@8;HsEQhl9?rkuy4>mZC1!P@dM6Qs=`S(cdqe9*Y?(
zcCFoJcdoGk7?Q*azmV94Bgz5-(V%rO8BA8UN&nZ;dM;^LQ|wWT_=^;!`@*~UMkJ&x
zR}oCwI&5A}+p~{EL;PF<xonomc5sy&lQty%`*cgc%F4@9rM-D>7ETaS+-5AsZ@rbH
z#aPr(q?%&FkK3xWZttR!a3BU4u9vG78i)3^NUV@S26bsrd9OdJX@L6bdDEl;-l*3P
z6@Kzo`=q4y4;jzl{W+-E!((;5V5$e7S%KF==TZY91u(G9M6nN%aGEFYByB~>>#b!I
zxu=YX9=>0*=9_oF=@<8!4`~CAQ?$VA0K;APvIWg!8CQI4$=omrVPrMkyaeB<WSH`q
z5Ut_V@q<B4teq_N|J*;A8eH>C&q}>R&KOcxNA&;6fydx)-ML2clmuYbGwEa%!^+`F
za1O?spJ>!C6{B-+=sU<iTkMwnM*u02z7H_m8@INQb~)T+OTGQ=0B?ekXgAaeHCrld
z`N><`Kt-jjNbm}ERmNdfe6k^Cd`!a|B}`C#Mc07Def&qu<envvsHljIiBppIHG79j
z+ghHSI68*jtG$K1R8hs2Dv6;IUlMA>nl0j*wYr08o4I);7`JO0yb?ao5Qev8#v%QR
z!y^(s^6EEw8w$+jW<1Q%?8JbG#eGH+vplB}1Z1r-G#VEd9AmuhalcW@N%6ykNp(DX
zZ`B+Pz*-m*_rl<U?Wsc}q_APj1)&8#RpW`S?H&t7cJHw_2TM}PUn{UC4^D2f2L31v
zAn;W?bcbc@f<osc1E2pX<J=7~Hnq-+N~dZL$4@L(p%H(xZ=wKT@6P>Vu@>FV>a1B~
z39chFN9<-byDnFb7Sy~ZoJA-V3{>|BMrg1?h(eu`v!{3vB*Ql8k$^ny1u;#Jf~FpN
z^*0h4MGVRc{W9a$bv0=KKE@ps9}5;@L)y@P4MPKMdY`RVU+^GPpv@jlS3hWB#aP*U
z$D%5WSqH-mEyXb0Tm?tR1QT*paukZl!h;%p>%dDDWdX%~#4cFIhCX`p-?ai=PSuDU
z?Cloe60#sL)K_muGpHjoqt8i@4DgvY3D--^g#F;1)sqGBDyP@W{J|25J}Ta4Z7p>M
zHAgAD;cG=^(HKhg0%77->Q@C+th`BH*vM6TM7<3e26fXzuK{83r2@lb3rgCl+nIt}
zkJN1jgQjK@%J6l&i$S~C<GZ`R@y`fn5VA&)n!k(#rCQN()*XCOQof{S@G@)s6Mb0Q
zSP~r$_%*6RoS=(eaN$TnmaUo{Ju(Ahp?sp?QNcjvT9zvFXaHKdgn$h1XNUFGa_P8W
zAs&ORJ&Z=+hSL-!crvA}Z0iCnY6BT9|IVm&M5ILCwZy&~#!8Xbda*D9SwB}NjCq0T
z$CQPS4$m_xXi1+YuFJE*q=E-WStA`pNLtPr4)TJ36CFKef{%Jx^L4g|9>5zoIm;PW
zeN<2?L28Ee<e-cRQy}8&7MivA<)_81fGqO?fbewmAAeUOV2dU;@xX~KRXj(Lp3>=?
zWS13(c#nF3(l<%Ops#6P>7C5IWaTeh<Jq4u1qqKpOpG2UnBC1<)Ppt#v<exq0nbD}
z9uBtY1gmMG#Ghot=i}EzJm`6Ry{Y-0y18n<Ml^699%b$GK5Ju76Yyg#Yt@}I2xRqO
z2U5!~nIA%HV=W&@O@#=zf8JuH)L>{+%_hY3v82PRVay?vFG7G4d>r`Y2cQzFV45qH
zUjQ3LSa%>1l2VE6U$nK@eO|VW=$Vx^0RdTv){ukfvVt4_PNE}9ntLTilwDKzLD>bs
z;|Nlu%O1BbLY1S}jyQgc(&vBQBvW2Fme~A8FHwbND?`9`j&cxyr1>r4`bRB-rZ5@y
z$L-wYO_U?GLqY9;Hy;syr_nc?=zv?SZrf5&j1dLx-ec0`H3LLZsP%vxsRtM+W8~FO
z{>KIpn|Bkro_V0n^7cj565xFdywl#dl7xb~Q9wfywzBxSXrP#RNsfpp*?7UAD%p(O
zUdfo<1+0X;x<wo)uHQo@Txm>$?DIH)E^NOuuH__F5q5)p_htfMb`ZkZE2A(YFX<Vc
zs{HMvq7T^O&5J7-hWu4f7=rHe%a#I(-XlM2?ws0B@t-VuG06zCHgMuzXZuJBs>eqI
zQXuH2R@mX~ssG^t!_2T*%5QWw46?M^Bv?Z^K*c9o{ZQzFGki+ooVp1xj&aZ%lFH4U
z@Fnp8iqn{JA{3n0*#;HGC*NSWducVrLEj?$b`-_-2r9i=*~&RbSi>s_vf#1=7}eHH
z{k(bHKmdkajWGr^1_)KGIAne4RArk5Zyq3JSm41`%&=~fU~rR;f`7HRy};Ck;4LV%
zOfm%74LPGHikVCd>rtk+fJgARR5*5u(JT~3rnuFZ^EG445i8BMEb5>b>dT|RM%|0?
z;Q@Cfb>t&yS-}nafH5Q!WxYXO7icncIyIce_<A^?EF6>&{>Wr?`4vQtZyXKQp~w4q
zn@ETPX(U@dSQMDiByTh6fA~;*LSDb_&)$>huruDV#hH~_-!wEDFazanm&&+`z9XcE
zOQgISLN}F3Ejq#rh+9QCtXyohsr&d5Jm3@w+mQoraYZu1Ftl$=A|+yM(z%s@`vN0l
zP{N-;D?e*bWY7wd$vgvQU1-Lp`EA@B#1%YNMz<L&TO@<&kJ0C27!m=$O2Rl~ZYiAF
zY?A*F_S|-n27Xw?%xzOPCYu9t&-*}2T5>%ZqP~eFkU>}me_3eO5PsYI_e4LbdmyI9
z_D4>t<f9^v0c_aECDi_aNmMGv4_J31H$~7neTY}~(yw^_Hn2)k7=|HDoo$yTi#j%^
z4@HI#dx5@KmbN;?A35(zqfS?b<9O}4LFVNgj(h3rVA=~}t1MSmMSBi_lpKz#I6?*`
zK(TNBlRXRX`hk{4E-~=2?y^@cut9b>9LrlACEKejh1k5qZJh*d3|&mguZe=VkxYzv
zpY6W+jg#}D*=($23m5^SI9a)VNo|Rq-+xy#*m$M<M|sb5z!%`xk0cx06|{=RSmmZ7
z3^PkZd|~<kR_z1;L+0fTiIlP|lPgsTCE6~rP!%bP$WmUz7I~pV*f3@5M=!zVVFbL4
z1~Lbz52Ybh2yCDsDH26Ngx%}+70Sl1Xh$ujM`3G4obqIXLlNmPiG1CRzAaD_n6n0d
z?l96-x$=}9hX*N9`%`x)M{*B%ktCZ10F(q)43sLXt*uodR&lZ9=vPm#1bgil_6pSB
z13#=tx&Ep;5{Zc9T@$WS?DzpJaf{#*9K#(TOI!dXnuRvLtVI2RXieGDc3=Htukf{&
zS!Zp_N)#na7K-rpPQg(D@DFE9h26dqW!CfWNTV&+?CxQnuu{~MW*CkNDhX?uqHz`W
zmSh-Hi$q^`JR2&E?KmyRC_FS_VBAc0&nO$J;SOUI;+a7=Nu*GGk9jdeoju!@cn#K!
zwFZ93cJ~`^F~|+RJJ@A4m;)@gce#U5xdZ^sziYy=qAiwRK&Yfv%kt=lg#1?yJ@vsM
z6~6|%f~Tr`ORpr;$t1e46yIW0B(fg^0dJvZ;QKx4K$s0~z7ju?P81jMIUQ*6ML3gQ
z`2*dB`?$c+HfgY4yv~lnYjF$+#tmidsVA0R?Q3>0&31qLoeL<=qhCCCf_S9fm*heQ
z=K3olM2xEbS9U_!f+*5$p~RMLMSpn#n1cE&K&4QsMfQ;z_zSup<aoyrjfktWR|-jJ
zK!(g=RlUD(!tf$4g*L&!TylLU7^W)n(1Hjs;ZW_g_&<J|1YX_Wz?Hz_OJ+A|H~p6`
zwf!dViOK2Th{9CDnBNQG_mniDCDqowikR!K1~NO(YeEKeqiixqIhzZ0a50%fV$B1;
z_w*pFYD?VU$?Q6{^``vA;I)U76vD&Fbq$8z7E?I}&H_;b(SJ76u91V?KiLnc(1ZZM
zJ8B$FSz5YiB~9Za>fD9$!?06m(X?uMb=C}_fZKM}1NXZkMM2`xC6;Wz#T8|iA!e%T
zJ+hYOn{QY>JVfV)jRlT=rjN~l1=dbx0AC7f9FrkSE|p@6QDmhRz5sz^7iaHwf6KEG
zkOUPd6na4?hl7)8cUVjm0>gk2JYY%lice_ba1FWP3X*-mz78s*pl%Co3u`njp4UHk
zsV4f$f$&a^(r{kGgQr|2g5ej_hq<2VAVFZ^)+j+pGb1ubrV;sqHDiP-W>Ap>6`91)
z&>>S?MtuSyn921*StXAto6lZWot&l}Z4C|SNcf->-vKavORq3+lG-OKjifl}f*=s*
zuq|!ZU?2;?8h(f~h!X4Vw091%#wWFN1-N7Rr*wF;%VfUpe$0Q{{rz=&&~B5ueljJ)
zP^-bI1&~W|3eUx}F9@oFFw()Z7y->&08LOqrj{RUD=amk2R9agLVYsjj**XAmSHcv
zBFWwCQQU?xzMlp5LJ;j&j;RQg3?^+xIrLKNuMog=yT9F*v2woyY|W@=21Q|8=pd*m
zfhF@WTPt;2p>@$bBkA9#_hCf?gTY9POOFawZ0f7_#VYz^VQ#`iSY33cGY}6|po*0R
z7lB(KtvapN_EGSS`T~*TZ9*4qhA@62h-;*r9sObVvUJt{f%QwQGOT<pni+FuHRXw0
zy*QXnRiCB~o~BgREs5*=LZBEB)mcmViL}PS^`g$oa2%SnGeW?e&m#m!T|`AYgq~7Z
zrmCc`8G1E??Qd8TLO^`aS9paxEz}qJAVDZmZHG*@Db)bl5wEJbE3xG~YKleU0HWrO
zHdk|5n5d=r-WEdP0+bTKrgCcUR~u#(^jH6$k$$hUvn<cr5W)?<;A2T&&tCbxe7Keh
z#?3;Mwo3ZdK@L%py%3zz&_1~P+nfgeAP04#P&;2bRBG1Ux9T-&EQS@VF?VJy(QG3v
zoaghEDrAS$dIPQW?UVO!L5rB5qQf(r&ORkJf|Q}Xgq-~N<|4murChm$G{B}RWkEG_
z(Tth18ac2oFZH&N3^tcK_4T%v2V=kGU^H9W3VuS}{dVAx3Vb;ASdbfzVqKS$FQ5oh
z${9-fsP+)1U|}dj^s3K}pYLQp)SfEhI<KqUW3dEe0lYtx*Tj5JbHfvPOGM_)K4pPa
zP^3A(<HyTeh9Fcb3tdPQdO(iIExV93nR53Do*oaZM9EU^3_0VO6vbg@v3Gx9yFC!8
zn=s8G?zU|pNn%yEch4pa{;(@@Oa}Intp~8V&`9Qpgwx-Rn-WlYB=dg+ykX!|;5x#O
z;=#BPJV|(wybg2xyIV=uHQxaQCsr+m(zpuF;kRbjZIQ-D*tqx>P=HF72V0nP1dz!;
zG09M-T+M<;dRSu64&ep*9!siAOGbmwW-7Z52PDU$43?R18L=`;;D}j`aktg}Kq1zf
zwIEmcuR0@G8AZf<KQI`>f+{9xUvoCLIm8RHL-epjC@CHq@z%A(ZOm6yUJqtkM0G#3
z99+5}bL(rfxkY9IT4)f#ytj-#GiJW-lRdHzn$L8VCvM%k%7&)r2(zj;7?ca-L9|3$
zhyj}d6YV-wxU7uq4*)?M=jw;@)W#t>in0#&?jg$?l+En|x4w=>IOCK|!C4+Da15am
z?r7d#!a9Th!R9D9X&8Y!ZZu;-?4=kUMhS+%=lN~dn$t!%BHA*fo!D>5pCB;^eOiUO
zury?QK)?Zt41PX|7!gO(w9|wqyqaE?i@VJ|+WVQ1;&sVyktWR*rPwz42+~}9wNq9v
za*74}u_3p;oeGom%jud{4MbsRgM52+#Z+{@m0Lm%BfLwca}675<B26$lLX)svd^<7
z&1dfU5gp5*m_k<PoodI-UU{mWdCO8yK#K#K<eC8^thpxiLJT^2{yVxgHHvuEwB>Q?
z#3}-%sQpcjh*Vnnonc2V3&O5?U|W1K*BUAGL;6qY5?nMQP^0@(kBLooj<jkV3trMo
z?#RU9AAzYqGK)FG*J6O*7xEFZktYryUNmozLUa}Ei^cq52<LcQcB~jQm{Naigz<#9
z1aEFQb9L|<*Qhd9G0cQy7E0%&)>$DSGje|)IT*4UJgrOy8IC_I#gJQJn9Ybs<+v6b
zkEh|SQ9Ef)K@ccp;NQAeqPqggV2N#(oEAD|z7CBXDkn)4=C&F+X7a|J8@32~A5je`
zKNu=W;7++OM7}Qwd5yaS<k(4DzsCBdxb_J<eZ5h~yxH}RZS&H033F4S0>x9DJ9bb3
zJ1i$+@fsSao_ZxM^<<AiJa-Stia=`+LXFPi1lqzbT99&p2QGZx>^L9wFjHntOt27*
zL6Dd*Fd7Dy<~Pj+CKEXjwm<K4r=gj5D{RhKE-kAA)62aBV?O9vt^6X!XPE%JfkiPy
zOhKGsTB-)5$yDs?C&9#;n)%4Y9Ef}@qOvXYwy+@{36a*l^|&U$c3_qEYIR6%SRh|x
zA(}_BH>46XV4`S89|0We1Q5EGSB!-LYth9^wt{I>*+qedu|BeYx8E!%S{x%TzLMP9
zoRdT&m5WY(ot==mkbUS0o1sDF5V#ceF~7aGC42-wf%}4%A)ReP>!~WHwY3VSPa8K`
zgVZEmD@}xAM}X;6L9@1T{d9HMd7UF@lldk18b6{Tf-I_=dv8><&B+HTis^wEGple}
zyNsrG43*YpmCQ<<UR}rd0-~Xen5e9|lXKVJHUET_NgXJ~udlWpO#ZYvXo@_C@Ho|)
zVVbdRIcUNBN(@D>85E+Dxrf&bIcpo-sL$2yvbSQkcX)e|F%fd`&w{F0in!7jiET*K
zK!_ccH?*(fYKieK(O_=yure;7MIOIzT_e^XR%%-dazRrc8u04oW)mPj6s%&#lMqs6
z5C#Z#`*3u7vg*J+7aF?u<ml3hC=yXI?0B|%c%U)PjDT~gXA$3ogod=OmV$|In105*
zO}2e9Ke=6fr^xl{F?~Z{eZHZDuw*ESpD<_@en^DK?RCYcJcXbxaekN8k(l_HR8^^&
z4%P(;fBn_B%}sQfm@9`xcwGMYVZOy$IS1IM?fDn>NOH=|74AWV47g<fk{~)qhom7}
z0dJmf5XGqJKj_)<Kp*m?8H28X5p4zdB$_=tqiNU`4`{8ve3{SVDky#?j!e1j`a!#%
zUY_x>9N+5hftJ28)gJ>!lLiD7ZJEXXp8SB6D`v1=DdB>Hx`iE*p@Iq`uw$MOP0>QE
z2me@aB1UJ3Iu?wG09Wy^ju^CFa1<d+>cu!oey8D6^uMWpq<}U}%<3P#r-KEk_JV<E
zC8B9OpQ%N#;A<jm_6@cq1vREzJX|wFXruoETiFVk^Ulid=awFlc8c;A-C-q7cS>(N
z{2=MY*zY)=A_Mf~o^;7?sr9$Dth*cxb!shF-kP(2T+UWB6<V@X86W`2D3l@vk>l<>
zD3QdatY-MB(a)%r%{`A`?+x3$pWPAC$S!tByIT^w(KyCb^oqBd%~S#za<)<d=URbF
zOo(_XSuXpG7QDGj%oCnUYh<<GAt(2`#QHdn3h)g<o_E>kdbNI(^}Kw%)j`oV*n>F)
z!%NhV8EwiSp_?s+&?N>XdAdd+4F4vge6V5F<wdr-U2aThFd_-xWB1MJupc!IHwLOh
z3X_thA#>U;Kts%r`IY;CQ6&XBqc0-KhUV>6oxmgL5Uydrg^(lZ$!CMzpNS*RQsb~?
ziG-H;A?Yp1hxjbUGm+pmS5_QqQKN?kUr9WpgHmZ$HWL)GPwTf3O~o<RMG6Z-^JaPk
zu5j6-%+kx!=L693Y(W%Hk`Ul?CN?1YiC@0K0je3sd`{k=FqXyrt!0u{x{zor%4Tun
zc?n!eFbzAGN6qd@#=RGB(98lPas03$904h=%bPFczQWZQVWcx$UjI2){vo{{;L1?T
z-o%i*5ISYOeQ48-3D;!a4yC-OO}Ti)I9O5>03GE(4kv*jvpY5G=cvdfH0mmrLAz*{
z4W`?L!bEmg29==y=zuvV!IK&AfDy3D=03<KxK=1pzO&xB*jY-rFi0GUz;40K*jhi4
z06TX?F!_oYsX8X*G@T&WMV2tBq4qIB7Nqk=&IW3`+&B$0_E+U#_w%oG>su|quD-9o
zE;9Tmi=N{!_kN-1I6(N^hr)6>_T%{_^&f-FKY7UI&WiuD@2J(1r){&`_;-1+FpwgM
zes{i=v&2#N=(Ndi$j8=^G_d26Qw3KiBUQ&w{^;DYO2z6X@OQEkrTQTgRAHJkL_yh4
z>ovpb%caQ}{7dCYJ(QOZ*y7-H2lM6SSEfZ+*bQU`Km;=l*%o*ui9ZZleE5a>RVzPx
z#UN23pH`WOG5A1tH4F7{Z~jXX)!v=_Qxm2ZAQp=ef;4<KDg<~#ofRkQF3Aumk<K2p
zuYBjC^Es#Hqw}etnINDENlpDRc@HE(Hi(LaD-i;whQ48t!K#K=WI=cTD`E#Elpn{d
zkvB{?_|K!xAUh~VBfIlxFwV7qluYR2cwdUJ=4%>Be=C_<9vx`N)&#{y!M%U|@77(!
z2#GZljLPY?iL_?WLx~N;UXp?=r;$09V0!c~iR(brV%QnR<L&k-!;LYFCo5*=<WANG
zoo8r|7EP{MyBKr*xYIq|+6wf}XrQiX19q!V(?tdy_6EG(puS;5_`8f{Em<XpiQ5Km
zl{mvJUd5bxtHzCZRp%g=>jb`*&?OI)=t_Gq(rRK|P`D1l88B8<Q>^%kp*n<o7@+98
zUpp<?nyipJSlvHBmmL8&%)6@1&Objr2aNNgeVTXMgN*;Dq0uR&Yt%b!zdBTAD^ea;
z*hjSnAZ3=VvJI^*0-3HBOsWuz7uQc70|iAj!;J48#%_T|lOW#;ngqR0J}WaLDQFw#
zERC*9d3!Jp+W|a0`QE6s@q^Q)Q_cT@LX035^<zPN*xiAMwbxcR@Gk=*z6FMacYOVq
z|1_|5nn0r<2Qxos<U}WLsfQF7da(ht&40%O;tllY$dWh!uHUN-PSLh#P-ulH9>l5}
zLDE#{qu`OA$d`M~p0F3<>wV~tj;?L86NiJ(p9i#`Xm>t;R@jQ4lLwd4@w&yABP!8)
znVC7-H0+fSV-UB5Ar)|HK_=nV{~&EYJ^}F4-m)_UXJjw6=%LN1&}~$rv~$Lr<bmw{
zRk!!2#X<C@-3czM>Yp0%Fifc3N#&R|BB_8eg7|%ji-kVl!1ka3^Gf*61aHLq;e8AT
z98t`rgpm4bo69qK^|bL%$qpN8w4c5XHv>qdilulv4Tr}YB}uSN!S(~DPLo$tV=#8<
zXwYvn$9G((RYdBDj2MyRGxEpg31Qf0oB}g~qt(e0?2Aq<p8gu8E5>M9zXswsDDf;v
zZd)ulTg@$4-pug>stvEPAKn|9c1?02s@m-uqZER&qcJ^AWH^sGMry#rh9-Gpdq4yo
z!uP4ga3ka%Dc{MVzCGJ#@J<tJm?MW6qtQ8y$Pb}o$sHu-2vOPR{>ltTI8(O<@-5qI
zg$ahr;=N3Tm*(9V%V3~okb1IkAIY*t7s@`C>0COW!W`W1jAQDy$;l-{KCvAgE0LQg
z#knw-KoGcTpU{V))KTk?Utms+N%5zNtSGPbUn|L03>6X9CgQrB(l>D`efcQ~4l%~|
zPH?4CJ@NW5Rl>Pe(kT-Df1_N5*XC91_J{#I>_K~Q-0A9&5P&UpkFLEDdxyN1H6<^J
zjUa=r2Xc&?o(=w&-^M_J!wy3RN7-?Wqo-&CCgrw_XlnwjMml)-?wB4@QtNtOY+YCP
zwZ&q24A4p%jfl38JVAk3i+lYMg(VE9tZ0*=+9W?UM9zoom>!f+#-Kgw98THp<3Xp-
zP@g*O168ZMs+)mzBn8Q(JOC0Mqk45urh<h7!h|k%GBkRRbPe9rRx+4k=^*EW1yY#_
z;KDdI<t@8eXTC@gL<{o{O;Od@1QRLgiAWmpnIyk?BQ4y+f0g>d@S{~^nf({RknvRT
zQkccX^qUb<wk{g}CEl-E7;eZ|=jA4h`13!Sz7N}q;tCYQi5;j)NNHS$b9x7vNy=<9
z>St3smhiA&eZBHnPcg_waS=|tk;q|UbPD}K;RB6}=RdXFB!Z<8nOG?W(xvtGgiQ|n
zfaaqS$i?OspC1`@jL2I2E8+^h1Yp3w_z-TsTHLv)w`Q572AmQ*&c=keTUm!=a-9bi
z<MN;pF|y)9O<?~^GC9JbW8l&<h-x573jC{VJQAWOwF#)tFksX7L77Ag0@N*;Thb_p
zOt%|Q*+T@ai<CCH**b5D?(m*M4a*w>5fPsWpA!bxpy!+jBf|^L_({7~37TEt)#9`u
zS<GcnyeYZP9k!x7_?$^&g##vv=+rkkMd^#0Tc`eVijj5ECVau#^v3wp$_P5UM(T9S
zi}_OSfG++(;{xnQQBYS$dF1L8Hj=1pMUGUsK{13i`?&pX&;&sqWdUJ=@SC`1TGpuL
zPnw9atx@6QNK{B-Zh#m*OMODBYbA@43VJR`Nr%ETWvyAW_>5DLBO_T#B_@bGlBzlX
zUyz-hh`|S7;4Bm$BWvyWj<E(!RRNzuq&+=4oXbu!ZMC87Y<NpDgSu3C!M2!R!Ju~E
zAW0o^bw>nK=sC(0v7+;FtD_{T$QdY9<azN)1{95$<Iz`Ju&q7V?zij-saBd7!ka>!
z$M78OyeQR|Yz;?%#@K^FWtAu2PCY)4vx6=fNqs4AUCyw|x+lZDXBUxJ+ldW$Opq?T
zhkh04(+(tV1qV+4Rj)D>E6IyT&q(X5RVK6VryL$k5VZQuPB840t#?e0B9<u;9hC_o
zbxV1?t9TbUmiPHQ?ZzO9D3k<gdps{2JOmBt73KP>2q3aq!Oa_EAs+D7vQ!E0%U~Q&
zQ7OIrnWcvK0kK%KBHB>=Z^DYi&ZZHnESa9>h8C+lWrFw&bL)~%mX1!^f3?a@l<uk@
zXstR!BpgWn{00mo>2)TMLBmoZl0;9omDnviSM=0FN9z<#$VTTl#OxX*Q|xqLQbch<
zCCV_qHAsHWT39E!A;<q0wC3K&qs&&>T>kJPi*6>VKiNplx&MyQG;;5FXQYF3Gc(wj
z@oXqdev?hrT|@(JDmP%8bh(OH4rZHL@t-0NIYBkg3$B(ky6du<NW>yUj0rW+CLv>L
z-vMYHsC{)GmG#Fo$3t=v!UR#-uhr4leghSO9(gnqB@*Za#7}5X2npW&kNX)AJO?HN
z)1ZuK+gJtmF~L-AnLti}@_SK3lo|#H-J<8ouj#nN>J{-|2-E>>>E6ZS&jl4c>&?7o
z(g?QC88j~tf$~prC~t)CM}}cC0EC*Q2MfDWy`5gke1j-=c8PqPf%ab#%{1+LJYNHJ
zR$t?YcMxohodDaYSh|usF6gS&A$iE2kQvuT_-rv5?O^Ca0*X}ETg2pWV4`CS%!d_1
zWVl??bR%+SfDW{m!D#z0ytVsH@fxN|+PFtheI}vsWh9<fUNF+ZxcLapm|l(2pd4<f
zZC!(fC3TCe3_1ndJUj%`kR}RX8#>e%pcYn#AT@8E-%=n^8LPX3!jF@Fup5$TMbCS5
zIBL5+ZQ<gWsB$WxX_?~<%zUCr0kX=tIRq65cas4_hajA+u$y)yW(ew|R$q3zzd<Cg
z@D_>?KGjC1c*6H6YA`9zRhSzn(e_58;t#s#FTQ^KJv6hNV^5Np)>S>3Is}vpvm;nH
zu?LLnOI&=S(8MSqb+XQ>{ft7MFp{$HYzp!7m(!kB)JDt*y?dt|fhPb?Tnq{uw+`MH
z<%JJb>UI1V#<-*6a20DfDlq=g<LXToO+u1D$vJI{w=NkcBum}cf5v|jhX^sNmD4T-
zCGzpn>5z=~Dy^SZ9s5dl4z(p2xia`AFkA#vp8e`6+d&U(1ao&2Jya49H3h(eqs2!w
zVlq0C1K$%;G^96>;f1m#DFAO7v~yl_zR)?JpaGb_7`O0cMqqn1{*QYJJhGF~{Fd*V
zJD3u9?%~J$D6OUv7|B_r;*fCB6e|aIik7mRJl(+Vr^2Rfs^5cpxLkk&(*{JM{Lmo=
zo*x)C;hJ%Y_M7amf_9uE(n^>ZKnX7`jHC@P4Y1>$kePA}d9Fz>e@dl+Dv^RUAp75p
zDLJh2Gn^R%_+)oY5=deB9$L<=_+T>DX&X<yJM93tV!0+#IA$wBc+*_~R+(s*BW}ay
z^B<UN_^ZrCKeatVEJeq)dS}(wA2Z#a<E4zre%&hs-NW*LRX8D0#PJr@&lHLuoyA30
z$I3&k#chxl^<Usz9nEj=ZBS~lz64pSvw!W@mO3XtRQ9!e2ve$PO=4Nh`k1RuCn190
zydc%jSW}*Dpt@-38MA2H!*#%vhD^&riWmA<D$^u|8RG@qk-n7AHG2|K*1e>g{4X}a
z9dKphz+mBiL>utZM)W_c>*qR+rdLPkVEi3*m>O`}Iqag*NA&E<4j30R$X=26gKZjo
zZ>5NI2Pd#d+#fd~@KS1<Q@yd~9HaKfIDh^F?PL8?ABy!q)tI67E3`|>HG0NZ$)Hnh
z_=w@fh;PxSS?j}+dB~e`5q1G-hB5l|SQ20n_ny~RNj=^rm&Og00z3c;#DyPcqe2EQ
z7gZsHU@wtTh>NE8a_glD7zkWYBf)pr)*MB<ll2%yz}~@~t}4w<OYdVjd^Td-ywYs~
zA%8aO?s%vN8-s|)5sn)4mX47uL2`M?(^+n)q7GIcU=Axwc3%ZMg6V^(Ga0aEb(nw%
zs(_?L%;hed5+JcH@119%NG%c(`BY4t+?eVtN$w?E3$bl>cbz%5PXT%SHomd*wael*
zQUo{h0N<Z;a42zGD$`y{qa$@#@dnSO8HOIt8V;Uv|CEfRq{rs`=bWL2^(|EC79F<~
z$KZXA3p%908sHjZCkqwy_f140`~M$j@3Pg{wyf*D%5Y__T+LI=Oduht9U%!22uV{H
z$jpk{KnPGG5K9*_;hlEb58%RSr{I#GU>CPrbIC5b<nNE@y^kTmTzhT%vR6(djnOZ0
zk3S;%v}2%i5;yus<ZuiW=pF11VrJ7QD0x&^=+X$~<1l$00`GParHfV4p+)P5rk!~C
zSL=sJ$cW^F3dAJC!uxIE){ETCNBz1i227X7V1arZF{a$2XW=y)%81T{U?M0d0|`hY
zPt5Zoo<`=rc4Fr07d3fg?j+J@UAOvT)WTAc^DSHBjd2h57zt#9z}i6>doc$YyB*X%
z02T5FEyhA<5}cmGTp&Io9D;Z*8TuON*K0{2m{plH)n{VU^tJ2}^}|S4NJbhf=$v3q
z&_x0LLjtc4zsirrCblFh-%aYQbS*?VJVjAS{Pu?13hqXqp7xHoo?8;Cj|3L6Q<wAq
zN10+j<DgVAn6Pr?ZudjbOXg22L!Xm9E#d~0+F9*)yyt?vKsf<RxgZh&b0Zmt^!21w
z5hv2>oF5v*o+>@~e`rI2GbCgc2dj9rTm!nbB#RPaM$RXwL0E9$2;K$BA5Lz=7dEm2
zhzjB+)&6mn2fDEle@H(>sn-5#st%zVIK+RIBv+Cm6j>AV<vf6MQKY@#5K+%EdN+kz
zc(ejq^m|9>9Bn9C6?Cy&0?m2o_2S#|RZo)(O@F_b20QH>_D$3pTSn6d$QT(P<v>%0
zB)*(z9?|KNZ&&8Gf_|v`TR*b=^_6(Y8ZmHspUIXHk)gLkmp(U?+c4a9{A*T{TBK3Y
z4LXY>w(-C*=0P2{IIgnuPE<NtO4x?UdW|w1Tk8miA((_4QV2U0yZ{t+_C_W9#x-E=
zyh^@%Q{TENYRaxyHG%}STS}ja66{)q2J8O6S0sP^g1a;gAv#(z5Hu&!!ffTGhDG4e
z(-@=-_lVc>CA-NPsf`8z8lzbd6QU_Lt^k6Lu_l$-fnlf;cEKJ{$n-r|J6z&tW<1iW
z8)QRhi})1u098zx)#fCoq9Pk<p?=lk!e0D4d<ZO~JG&+Hu%uM%x6;3nEg-g6BaA_%
z3=?}IruMRat=`20#{ek*oeNOhlvVR4R2ah(kQ^V7==vtDRb|I9H5dNwztDS)EE&w8
zh!SX0ukHfUO9Zw#pgRyeVg{*qk|aD&X%CHzpOFReS3C|>C6ToY%EPbAcs!g>0;aK>
zQ*59J&U^erMURiSbf-)82C9j{NRm<gDpwuA?6#<BGMdk<P9_13Xv)dkfUE(wH~48>
zHBBNy_%rRvAB1^p>8x>|YtIX8E6)K2MJwk|)&fXflCioY_>Uglz*84K{w%$n{v&XK
z)m`HaM9I5Wd+CQ39z!809#VTuwng|n8l@BL&l)t2jz<-bUBFNnf&i}d5EI)vH&`Hw
zdQv2ybqRb#v)74_8sLwjax84RYNb63f+$e1dXi%v&uD%Sv5$UI^m9dbX5GWDrba1e
zMpG{Vh^qIXbsdy}UfNQzLX1AnWcKJoVdCFG(<}C>#<=QLsJBTKX$>F;A+&FVKL&OF
zTcpM5<@YN7QB<%bJ4-JtNd-k^=p4a4LB9%NAbR9MsYnuIFtk0TIV9!=t$LtJ)Lu9M
zweL9spa?*A6D@At<8ZT3y~WkiC>cNeU;hCBMv|BR`uCZR&S`MLWZt?&oo+bq9zB$V
z^VgB9R?rSfQ_<}djUOy4q#I>c3RYwJ16w<vV3Hx4A2e%2eaMO}fr}wd7rT>?L`fgP
zn~HR|fv+J3iXmh{n20wF26{84>cJUDxbaAmkxk%Jo8U*Vt@FTW&9@vOQjjSJ&Ry-0
zptJ2=+oh1If$X-R>9jItFe3`;G{3x>{YrnuT0u@y1vI}Gu#hLv3;`?h8xi9t_4EqU
z9E!@<z=6c*fWA&Zu8}22z#am$vsJDkvm>@$eHp71B6CGS!lf<qN=-$<i<m;W+ylMJ
z((<4{EdS~++*qWxP%DlG8H){I5J*u+M`u&8A|h(oS%q>G=yWH)a9|sPcP{hEqw-4W
zvD8E$aoI`!v|xT^plsL;NpVOyBZQ5O=ADJ8SO}tUn?iHx!0pb}4^~1Zr&Y6M;6sA$
zL<SOMuK{TW$mxF<Y<zG>gDHUFluIalh!Q|@VWMg%_sw+0bS~#<pvPj9{84Yt(s}Da
z2b6sAV)!3qBUz+*k&m*5jg<2|E?!8g`3Nx@8|lz6t~5T2YfKL-4gkMJnS?Q9N-dG?
zL$y=NV57jp9kD}O+YVVQwbInF=H^KVIImbXbC~JMp>af{UM*?i5=l~5&0w**tW&i{
zrgDR>@F;=f1p3{!Jp}ZOiayVC+n9Qfg}3u5m}wj@)kM~rr$DFD>~eBNi8}>yoE~4G
zKpWpefQSq$780@9g~m;8@v5sHyQcThL(Y&l3ZU|Pg%KX@=~5c^S1_41Gk1ofzzi1p
zW*tLM6<}+CjIwzch``v}TbxIs8CKs>hnAf(0)T#2j~mtkqujZ4TV98{xiA1Lbw}dY
zLfdD5w(8_XAYUU-0##Jlg59A@#J~&+RE-#?MGVs{Ws}sjjIbnxt${{6c$Q!L<jIMx
zv(vVv?a3pkI<eU%L_kjtj7xI+>N3ikfeMiwCS$1z^%TKSMPHIBbQR)Os`Fd;Rd-&x
z5+L%L1ZLtgWJQsr1@fIY?~u5RPzS|iOsU{95JziBT^*=n2N6m2=YlzKGc}!{kksrM
z6^l%cQ_l!K-J^1IV|t?R%tE*BUx+s|v0~AnT?)N9v+uuBS3xIWdRJg2l4Gyu;~$bj
zRs}YK<|KV<v)@(CsGl=96|@E|a0^`$-2IXw<%=qIqpoovqAM%)?89OG@9H?jcfjqN
zk+OvUM4JJ0hln~reE|5Lqp#<B{8VM|MTsX(W3iUie+>Cs5_tTQqrsTC&2|3YF<<R9
zRH9nb9BS`q0RgGe|7T-azCEgTx!3x9bq|l})cHBR1aRHNW0yJM+<XO1T+e<z@sX4n
z(W=mkD4c`WS|*vnUeMM}m>_zgSoWJE+pvu&6XOaskaoi^CNuI8-vY?jrNTkbY)IL^
zeGJ(U%&+)_tp37qS#^CZQy=p)fM=~0Vn))|j%aU<(G!GC*pUaHh0j`ZMAb2<YT;6`
zcl3y&n<_K*vPx5!_VIvdjD<IdxtAgu;dQ`q8g+rY$X*LdPN>0RA3T(dNAg;UqW}<Z
z5ih7$sR%CR4C(2h;F*FHN3Ef|nIUZ+7o~N_*AYb;V{)P~>DER0f!x>rY(*3N^sYUf
zVvR9u1M&pq)~mh44w(hk?kR?{TWv>D{8DP8O27Gtz47#P>2vVJN2|NJpl+1c=uDIA
z&*6vEyACu-9<NR!1a&Kkt{cJ)3vpw8@y!Z24dDXIx3cja%InD4H1Vjz38joicmp;M
z0eMSWr`&Mq5D_8PH4A8mWhe|kEg<!PV2YLN;5PozFFa>lM_D2i_sHA9rG`bPne}p0
z9LnBmy+qY*xsH$rj#is8O-{g(#%QHl2SvM!HE3)qiJXR@_jUe1q6&szBqT;V6^_OJ
zVRZpvPbdO`Pd9hGd49^z9XF2wkg)yoO>cymvx3q|-8S2Qu08n;+784KE=iE~86LF!
z=XjrVeW~`2J0ke<@+`<&#CQq(oQ|oUR2v#tlt_Xs8VS=BMj*JMf-5yRi$?A&CUL0*
zf;PVbmoeX6@1{wC^&SKILL+AI#B@3>+<I)349+B`L`Xq`r>;Wirovm1pJ-bN`}(9?
z*@Rx^LU|PzO%P=*a;Ig6GvjB#e8J!e?dNCgnMI2Y88OD90w)cXFjso3D{59c%-^6O
ziEbM+Zx+Qsu4<-`uuKB1EirF>wxaXsBBP{=#<w$0i&1co3F1Ld{T=S?Vm(GjwE&T!
zYLA8SM1&UqTP$b;#lOx`JWx><gJ4ADc8mCoa)>FAlcWGkL?JbgOB@=Pj*Rm(A#SBb
zCXX=yl6zA~;(#0ANwoFpG-cdD^;B|3k++#DXLB0gPODpv<q)2m-pwR}aI*@yA@{<S
zlet$i*FmJ@$&Z~*`49m3YJO$*Z@O&BuXL>v=47Uo{W}6oq1J$O2aCTaVZtRWDLBM3
zDN>yx;IMxT<}OAmfp=-K_>N-RZ%&=GtY_lBt1&6uph)dvI)+lhBZ&eZZXIsvfI_*-
zI&7FohKfO+Oy2r$Fmkf`g>FX->nXD}QBctTo+`IUM8mlfPu1_=vGNt-45{a^2waz5
z&d`-dbH`$WH-?<0f|9r|o~>5gVDbQE0A|xlES?F^I1H6e`Wv!~8$vKMCV&J&L|i7N
zRiZv}NepDy{t|6UxUFMJZRHfrV*7Nct2u=C$xk4s*cp@#i-f)D^s0b-$`4p)o6TDz
zVutb3=UJtEv~zvBoAPpZGT>Nm2s>g&;61!cp}s9x9<TXraRH5t_@YJd{2J7Hq{uax
zCN7KszU`)@Mf;*?Q*>-CkD|WXk$O={g0pS`_RRh*E!cMdZ-wZS@?4X8;iQ!ehljt?
z#;j!B*!T~`S1y(btB41W(<|CQm*7^Z_^xDKv4F&t*!HJDsQ{{osmfGmo?s|EN)+ft
zU}06V!~^35l!|5FVoJx<MPJ|DCnSUEt&F;CYnyS2V`2k4ldfYo*e;mi>w6(fiuj~D
z3NEdlH+xNc`OY4^dr6|RhrJi64O_gIKTWO)C8Pzrg)~hT5?4n#!&lNvb#5UUFp<U!
z5KA~nGD$&-bcxyF@T0)4sBaK4$b&$sD93Q=Q>-K#Hz^u5T5HLka`-?3g>WHdg>DQS
ze%tWc7}l!(ynOL^CoG4=zNO)Ub`0h|->{MbLER0mMCqkaVd0jcZQ*d3upzk(<h#}U
zZr_LxrElo!iBwnFs2|OOQ6ImA>0hfrg{Df_=vp1q8WxpMXsDwM2PA(qVqsWolq^n_
zq2>gMrL7vF+PTEvk|Q-2JUgWPF?mXHRojrv^gnLV<Dg_z9!h$`aGTAC|N9wnuRlX-
z`QyKb=V5FjPAq{>#f2bTAXJ7JE;t!Toof5!f3tKk#sX=sa}6DAwk196_ueU>+C_b}
zj)uU3IwkT0=7}Jm-sM>E@n6Y=-`{h@R9raGvUyJ15KJrd8c7COy)g5L)-wfqn_ofw
z$=!&xvci^_CuIHyFo+})72l?-u*RX7(kCb#O)}C*LZUVrl-aQ#N8hn)Wp$|r62-(l
z#`{89h_>p0MDTd1oofCcZT$tchW-vGiZkEnDeto;V*>j2gF@rH%?vPWR4PokvFFHa
z(bzCH*_QM~A!`B<nRipB#6hp|iBv8xCd~!zC*pKZXN&*P;n782hhLK$QCJS(LcGGv
zGEQYmEbFBWzE#pq(ukH28S`JC{?D*mtj#J_*oQiSxUk~v5C%}BT9}U&dbV{XCo&3M
zfokfc)xb-+RlIJ*#ADsbi1{H7$qTceWiX%(hpzl-$PV&GVGeSIpx=L9K^z<{;3FyX
z!%pW+!aFkYUrC~3$;eilAQZkC7Kz(1px%6p#Yl*?h;b$q=%xZmRK~h#HVVfjw+l_a
zUdqXG2_qZ>a>9Qvuh7k|HKY=cLqO5*gJU8Jo8-U9ppeu=Cwl~ZtvMeZu<kg_84?|{
z6Q)gj#kQ&oZq4_Eh|vG_JLDhXOM3@k=m*2^@&-0egr>K_qcCMb@4tdP5FfzHJH1vN
zZfekozJ)=JIUUMr;CA%(gdP=Zgn{#n6bl8YwxPuC`x@wgf1?8R^>vVrhKbBmjq<iw
z2QR`A3NYMYokcIJq!qFL-&_gtM{?Afds0~GoK7Imf|93p@D1qX6R}=$6l3aZe@R-;
z9>{nXz9d^9>eN!1qaZRa*Km}Ee-0Zx{(qJi)Lh#2t{VBuMpaE675G*xnRbbMN<Z0T
zYJ!Tjb<8=hr@e<wc`4a@5KVAUtp?mlEm@VqS-e}8M`xPZ<lh&8IS7LFk1tftkjS@u
z1^A)}$)wT#(#YMzBdl8I#ULwrJm3@MqLm^2$I6_+(&9xTig3#|Aw^4>H(0lHBzC3f
zy>2iv)c2HFI>%QZ%8a+;EA0KZ6aXwV;P0XzyiR%8dYz~7qwXh=F(SF_?!WU$BCE{?
zrOg($Ij5_d+{AR>q}9l?(fws{rJ{|7Wq?Rk0;vxX4PHnVi!`Rro|HDtt>^+t3}iIE
zK5Pz@m$ei$U|mco$tjw)jMdlAdyU0J6(hT_*GTGQz14!%+tZ+5##N{@llDOlNj9n{
ze$+OW;a60qoi?#gHTqkJ5za^EDai!|@p;g$dh=va-`RNIm+Zq(9qUr7H899{(w9s?
zTn|EP9rQ5<DMR0(sfDgT?U7izlx!q})9hTjAnH<DkH+Twa5JrM?+1LcR8!pW+z7c;
zow#e)U<;%lVPw4*KPJ;lu}|x_qkc>@cBhI-&$hBpyQ~kF6uox-#{%l0cKOZv$!^fe
z0hKM>Ty{8Hps!-fC%RB$nK1f}8O%587zPRJk-(7@ktX>N8e^%k)Q17X1WDRn|6MOp
zihAt;g`B{T0dqu4h{hweaAS@1yLD<QXB_x>sfi)Yxh$pMZ4JMt%J+9pg7gJ0dzXhc
ze#LmYs7~!>@c4(4j0B7N^&=X;n72Yp5~8=AuGPbaEtAV6rF{N^)g87*DL!3s^dKxx
z=&jo5b<Vk)O0}=H5JVG%#~xGvq@=f+O1^k=P&mIB<Wky_CK92Ze-h;*r9*=`_N#*x
zF9aeExpVXTl<u=LDklJJIbX;*4oLNZ2{@+x$^)v1e~;idO8|LSQ3)LK5&O8XZ1kM4
zVEa^+c5b|@)x=-W72L(SA8U1%<`EX5fBm?X9o~7Cp7xStUK$ld2nL?eN0e@P>z=g~
zHQSPhSxQ;#N}om<bfn6$g3~m)9vQJz$eA~L|0Np~Ryxh6=VeGpX|%H{+u8A%{twND
zM%ElXoqm}L$;v~8v?$DJ0<6B{9L|AyeIkWR$<89HtCWc1+npOA7|=MaC?go<Qu9<8
z%DBJ0%WgCT)(={p-g}@n%e~i2TL&u$Fy>MXyy}d&N<KBz21-$`opaciePVwMXkQXc
zk0-@r;>UDcC4voK+HkT&?tauPMAMb<r)hMQ`qFqL%|#DSLb?s=P8>VC_}<4k4};0e
zS3%EJGP=h@qN~Pv)^q}?1$U;*C-E!TF4F%YLl#$B&WJ2u%ymi~l&+)PFqDp&+GpUN
z|LU)SrGO%MJMED!XlnDN;YX!^f*1yZIZ@<ClYnrpi4|Ayfi1sT>`2)=7}S`NOs?qA
zJfbzpSx#-D01(^MqQ641YnjvTavW|9>4X>~23NSsOinoeJ6?Z}<_(p^`@ee!O{ub!
zJCEYvH!2iRf$={T6>>1Zc|P@Rfr!b@^5+SS&uD^&h;?I7g!NvZQNlIYz4VVP-%mki
zBqxQ$=__D{{p+nHi?1T|IZI9bw&uieiNCVM%mN6ad>9UdP4v2&Gau+A$1?I3u7f{N
zj?}KnB%zaAy|1f*ptj*<@ONepMCvbc)g1DgXhULWIKs!|E*XC<qg0VfS-6Y@!b?XN
z(Nb)_rgPNPGLCJ;#t670W?Ew;F<RPVV#O%$c#A9!uWm5@p`o=QSG&eATrw#mM$rS8
zx+dp=)={4Z?;MGyWwZx|996$Qibr7|yuE@oQSld+9@I$?VcRw8E<jb<42so8NEXK|
za>o75HMs~aQG6gQ2`7NKqnJr-8Kkh=HBvZ`H?I=HL8TE6H52VA880>B;)u_2<br`G
zYFLm#0wVc<PaiJBp0fRkI5C~`c^kN=1~C*`d!}I#rG@dpJ>0pPft65!rT%x24Bo(r
z!g;H?!6+;jZm2+=AOXe;+PNKj<V>?^b@!a2##8F}EahnDw@+wC!t=d(z=7e+I7L{0
z7*N9Z_vHQTsEbvb0ThzIX=VTq-J$s@96?IdwXJn73=HYk2IIsTl{E#-qjOvsO!+U^
zk2xm5P5?E@HnoAdZw)-mH(9dg2z_QghA<=9r_a^w19U2@kr*!WmpT=e!gb_J+StOb
zp+A-l<3QaCQUsvKre9U>7c9sj5ID60(F(x91)s0zG^sGq+T5IALeP0#DMyk)^LSy1
zhS()ENDcq4H9jJ`f28zQ@^A{$=5_Q4<!-Pwkz#_Ltsx!&1aAXnf4a-H6wc9>xXbtr
z3|TT7`Q5}}a0s=9S=~^L5$MYk?Zr#a!aPHTM+H+%Mt;O;AtE8Uz~ik>epHs-<u2aS
z&~K4mM4{gzUlkj&DrV9kLYv(|SNc?cV1g<H0?XNK?c`r!Jq0Q^mMKKeC+Mk_zalO;
z%@xK(17phYI&5PMF$duUpcX&lgb1R$IGWf?7&`YUrfZ8=oIRLafq{uIV!Iyyf!*~d
zx&p_KY%DLl%kMB)HBK|PfdzIkLLvK+6xZu=fFM0r(Cqd>84^ofVp|1s<qLAJ`6td{
zC`$s-6%GV|4i*n!936%5Zn%l}n0JZrJ`z_XxI%wYR$^A!25%PfOsW}gXMoZUOAI`R
zBEx1Rq*I#SSz4du8xYny8iGtkyUjhJWk_h(&H>Mr<PwN+4%zJJGG`}4+<vIW&FAzj
zUbmGn8iZ@JSY{E_4^AAvJJ`ka6q3n)*dpbmOl$b>zqI`MA&X~z1q_Yf6imTF8A9u8
zC^x{R3U|*5cw4*ulF__&j4DTO{K~KBy;<5mz7jGi5mlptzVWmW|Jd;8_%6JawW0JA
zFy(17Z^0W_1^{YzZ8}Dk6r{~^V_XJFx)dsqIQw0*+adh!Y$8BwGUjdX;I#pgcWL?`
zkr?FK>h0|CMBD~q7mKGf=j@*!BzMH^60OHlNMgwY&+>wj>Xp0%lyNdJ>mh$gbWZdc
zGGhFrX@Iwfg58Y<tRX}Jzf2(bMI7H!SXE360s!i&Hc&dG^r6q}jbtw3MWE694Eick
z0&5nkaQTgjg)G-Ci1Oj!*((f5YRJ>#j#?~EPcxW2@-afqZ8~B*`|3+|4vbHnt4T)h
zw4jF};ReO7^%B`KB@;~c94xCI`cw<#z^Lab&SEAOpVNx|3|ELUNSwUhcrhl`a+g(U
zx;v75h4>HPQ|?~QHZ-THv1l?NxL7o&j41k%+r($D&bgO0gL}<SG~z-|amn*=N5lXx
z1qWrPeL<c@&iK<Y420gdiC+X%<xnHNgC@^@h)OeB6pqx9Ssa6r*^=*hfmbOuNLsP<
zXnZ6sD4NJD-unN>hteM~4nDPq!a3aUFGfOfF@-pK?*cHSwl#T4th^|8tBB0HXaGQi
z>_+;Swkt$?L76Ztws*Z>9j?hvstHKW>4sSwz77iYf?^R3n@sE$wG_T2P+0+_sW9;H
zqU2ri4no8#^uUO?%^`OQ7z<8&ukqqBR4_pLU$JHbrp-HfeZzcKI<;%4WSc9o?vF}E
z5Rjo-0Rv2RhU*~}JCvZc*olD5^VO4bkres)fJz)^$9W;&Ku(KQ?=^QgUF+t-GWv@8
zzC-~w-XwjwL<3m!WCXxW274li4-S>r;21Oy&rxeX8Tf;W#tbV2Hc<oQH5}F(s+hmj
z)vS<Nx;$LzC5@)T4}&dsfW^$jcU-~}Ar+y7J+uqztT%pIsg5q%8{06N6&>W4xiHfS
zP_GF!<UHuSuF{x)wrv8%C;8)S64-<wT;$2d0&1t)K)YOz6`dM)^~GH-d(Fx+E>qc#
zvvmA<o$}@B>`8SHr1Zp=Z+{59*m@zE+Kto}Bhs>=&@PBKAx5-L;$)l#96z;GgA<Q!
zfZkQ$$Df|26U>x=NN(j<5JMcnlcL2&gD^?{g5#<9O{}|!uKW8xQpH%Nc{0qi35Jk+
zSH*)FXG;=nCc%aeZBDX+RklDb231Jz?Ea4R(JB1_PvQG&dZSdt+$Qo4s3Oi4%H;=)
zvA|;P-@hQ3V;EjEq&(T{nBBL7Qx?g|PeJn|6mg;82t0=c!=iUACxWy%k9^2~m5436
zM;r18ZyO(Lyxdk0l*pn2i@XEK8U$NqUYEO|wl<M6Od>=FnVEpzj?cA);T#YKP}3vw
z+5^fK*43i0WYHj{aXliFSPUtZPK^?N(_b1!{Equ&EmvwpBW#XGBp_D_ksjZtJzNij
zxaK0E)w1dclr4sY=4%GslH^{}d+da&KdwL;PLmemB|xL4;a;-R@Ps;tO$lZAq^vv$
zVPI(1fn7#jw$5QmDP-86s#3rb4?zIVWiQ+QM3*Nib3LEDNnv&{$O*~H(vDENv79Kh
zcW32T6A)*cCK`o^`o^&<SmWM1Q*3SY)X#tXROL^}+@Z7sdxtjE%u&-s40CgTXJ^Vv
z&NAgOB#qIu^iWbjd`*-kCy81IbU2}%+YH~N)+HObdf_DSiTTq%R<jX)9cMY3J@CW>
zm5Nh6@pDEf-Uob0YsQF%(VW17RoW*#(1m?6ihM#g2w`xcWc0@AQ;CAjJFN2qm{_Gh
zF_IFbeb7D3YuJUFkEvHld{&Ng>?-qupG!t8r990H37*|MGRM|bJ*!dEQ+6EX0Rx$!
zcl<4(SqdUxZ8yIytS8}Th0VzLlAzKdxNnCA#+)HtdvAQt#p5<w0Ku+gcZV(zjNQOM
zl7`fNBUip77r7qd$z}%?=12PeAlO9dppw{=&9LJwh@5pKvdcM#@Dp2-EK*J1Cc&hm
z4a<ZRdzf4xkW1V20H&NnJZW*IyWNG}MWRu*%@q?uB$_HqIPwbqBLOjkS4g1##D6ZP
zbElQdpJvO0B(uV0Z)8$-sTavk&%|}o?%8p#GbEspg6t?1B9AU@9Yy80W?(RG&6{}{
z9D*ig`HD>wX~eH4xN^%FfrVxe`6%rVpWr+j@221p0Xv@Sb$Dx11YLqr(*S$?IQjLr
zMG;5044Wc@Sf>hdc=UxMMCOR}JXRjJS+Hrk=8*7ZQkcZlf9WTf+D<-h*H1~A*hrQb
zpHE`Y@@nS{`#@5>B_}Rit?L_;`?th^=YV<I^!cyRW39K2$aW6C87)yGM;8l<Ce%1K
z4Vvef+xSwA=`Vj}*{FTrK)@qVPI6KN){A%w1xVZ3uYpS`%z}4jSFYL3x^L__h?qd)
znPETA0FR;9!f<T<6%ZL9@2ROHJhK&qGPP%<zt1kK<aiWGg$S)CFPWJp!`EnW7ds_I
zb&IMpE30#h00Solhr~qi%4xTkG*Z$*ESz*G!5c{=ZsRYckxL?3$-rY^rWk7bB5Q>Z
zieiM(DsXoWO9nRuEKmJgCI=rJP7#t~P8l#E8?_e+wcvT=C89SD_$lPnZ-9*ob2Eub
zX^i5>#MyZ5Wxg=8&s@kzfJQuM2Tv#}SB^jhC!ryvcndbrp6@W0hX8jlbi0^9ZY965
z83=V<w7ZVqW5$UB$$VKw{D`r&)fK*%#0WMQR|M|fe51dSkC{#7ik5f5jcF7c^=n{w
zYyw~^c`W=5C|;Od8Wc;)SO_=qc<J&1i%}g;uvFeyY1oS$2SX&3vPX(c8QjFzXh;%N
zXL8)uEg#T@UOj8(5vI#bQ$?5j&>o1G+{q@D{{2J=)>uqe7?-5scw;zTuPS`!WZ$>v
zG!>byyyj5mPf=|reW&+RKKn8I>WPs+SsUjn(2xofi{-2Iku!*6pJileW-7KUz)lK(
zcrLMR%#AweikF9(Spfl+DMtgFNP2^j2S(^kTE&+lSxo*zfgLu#>pOw9JuE{BHvS!I
z5|kbFlazYP^odEalE=<P3zkyt(a_HX3{jqxXK^2slntw}AYM35zYS$k27<FOq|oy<
zhID>wW|OD_g93I7DuI3zA+33`y9d<38Nxz5RY+K!5DcvvNSx9-rJ}e#5jjL84R#Kz
zLOWqjx(eT>pc`}YUznaq$b)3XcbuM6txrzvE%B<`pi#^ABE_80XG?;DBn`1n4i41e
z9hod8@!TAtgkDKiV*NmtVnpZ=sPr1!M(c}q2BaJ>HTJZSGg3Dyp?JDe$BL+j-ZQxl
zRQ-EQ7p{#|B(fAom&7bNfcfNx#H>}6XUfS^XV?c9{|yY&xrjwv!$r<l>={<eF4}aw
zvKyx12B8luBOm`7k2yGKYq!VLNsU~<eCL()QB933HnxQ&R6VTWnz<1a6MKaMLb9v8
zSA4VNnBlV#S%q~ch%_M*zE1YOOF~RrATtZ6(EUMiegDG&uYx5w%l+^NLRalE9ak!@
zU@+d)Kb-xo@MjU~EIkabb$A-7!Q~4`ilsjh|Ar*X5N!G(=pcJ055R%AozE&VvMLBO
zMg=fBY!N<%Z_de!Pb#{5|B;Xzm$TXR3p?|5?L*tuBZ@y6#8j#Gbo90~Y#4GymFkVU
zlT?zeRf+5q7eP>C8=%49L_%ORia)0}L;a+3$VlP%MOKS?V8-`sswodviC%n0L@rh+
zR*qHz`;=DA0dvA~zK@%S!|&h2OK|uAP+sC^rspVOcGw!?st+2K##dVAwT~O|Q=UNq
z$@ps5H>IcStK9&rA!ax#R{D`Y_J?(*540eW_;Z@ckqBQs<ByP}4u1toBiTU9o=01-
zS<4D8>ky%V?s)k`50UtF%3@H#=Z)_jRW|qvK5yICnJz$x7}RNv*M9OR5JV)#SFctt
z!haJsD|oFkyQ!Qj0#JeMHr|e^S91z7X~<n`1d^0qE!^=(T(|Fp&Y_;GN}I92NXTNZ
zC<?Uq^aTg@y3)6h+7&Yci;aANI|E*+Qd(0g5g-f_y!<za`-Hki=RGk_kzV)oHefpB
z3j$~PY$dGjA(L6e3Y(BC&(()HU(%SHxeP%4OSLW_UUB`IFBJ+^-bDqM$`|d&VGYzy
zfKOsr%r|wJ?UQ7)IXfITmDOq#P@B@b4D0cfX3j-Jvse+7c7pbR%N}P7Yp-Hb6GHbf
zCJ;TMa7(6)cT2YVKIU`VTevCwvoUg9ZNI&`fg#(#e@E(=PBv9^qSX*lz;hFyVLyA(
zpH-oI4NY+(nhk_9TRkw!FQE>=1!J86`0cdRpt1*E^*b<hCbfZYv67EcYrz62jDQz5
zl0eXqnKFLt38Tv+L8odOGmAQ}a(wa;V41(hHRBtpS>jKec{{Hu)8}Pg+5WI@DPZ#r
z7SDONZ5yv<&}svLSgCtgyz;Bdg;nW_a7IsS>xCujk1lqNp;v5Xjn*_yT#<H;jpFfC
zz(Q>R@`)=Z^GaQurVVVM==lbzXtwuFQe3W+{#VsU*i?WPxnI)H`+I>VNQGPV-`622
zN$>o>fzl3#2ADw=cog)+!`BDQbXVegDkTQ_t(0ks{oAVH6+j89%t1)_dle0K+Ej6+
z6H{R(U9LMub7@2InAj14LQX$rJ86ipxm2$(5N!g}iiAv*zuCnl6Eq`STi6ZI-*zoE
zXe`Jmyga_z`f{9Asc0dqk;=3<Gq{{sY!|bTo}Z+JJ=p?y_aoAZ*11O%A=B5nm=B>t
zRXJE2=yW(25Cv!i86J?RxmorB?iY%VIT)(E^`@}px=ikmC`;)uN&+W7n20U+{xuy~
z_`7;UfTCOYs9p>XyDm*YvM*qyVPqB@kJIU+2>PNYKuW;SQ}<IERJ5V0uwv#@YT%0g
zNC{p;?PQNAxI^2khK;$5v>1$wz}D&<dq(Vyz%Fq-hL+toT+UgPD*O@^m>??sf?&i6
zS*HSPS}?x1^9)%uuQOEzfZ{$XWY{M#N7dAMQ6m!QD^x5f?0_^(^omD7og+aAD%`B9
zAklXDcY)&K&){evVR1Me<$;v70WgW90S~ZRXtrUHj50Z}I<D=^a_EtW*CYjB0JFi6
zm&=l*i!VjB02}WXWz6e`MnM2*@>FcD>Xky^SGfSI)!68XpjaT{w>jiqoB;6L1!$v*
z%2&0GmUvE&X~abvlSvQ;njzKEp&>0t*y;N~OZ6cRAH(ys4S?sc;#nXK*6mkphk)K`
zeB_3j;8ScQrB94#-U#Zz+=X}mv=l}sAi^d%1>RIU(bS%@k&WlsugIWpUWk!phor<y
znVNmqKJ#S#$Z4bZMNJ;ezEuUAyRQ`Vy%l@{9jPrjh@VUoL`inwv~*hh?*}#JX&geu
z&i@FOld45SF%;nh0@06)tTU1|5v*W8K@F`#IvmmdoR-EV$%5X;w}BuH?Z?6}36e<9
z>183?>0uHa&pnV8r0g9jb;2YiJDO-rq0PB&E*JBbYEf!hzg7=*Eo<}Vhz%TCU+?q(
zQD<A>hN&K7jvnL8O6*%&N>MXa)bOx$itjY*m7>z4%-gcWrs3(jG2YGxvbAM7Xkqb%
zWEQ;p2AzE9v#1`z#bDXu=Njv<QQsv@6TP7c!(l=#IO^itc+dkJ<mpQB?eHcXPy`_r
zEG=evGC)R3Av9%<eUmv=LLGRilv8M&hwL&iq~$I_v@+j3NtchB($XCsQV`BR=mlh*
zS2ZV16zEIX$2bU;L((m3*D$nNJvH_rz9>V(I+e*zg3%iQ3Jf<;x(qzU@^VzWKm-En
zca>#x7}h08Bl1RUju6g+jD=ZqB4ioUnqu<~8yw(b^x7=0M48FU&}zct2ohOEyOdw8
zsGzk^3G)HqIVDpSLc?%dBmfeEqKb<S4W8Zz4ddQ)tr%tM(8INL;UCq*>kgAeOBVq(
z)Cpuj!~tWCaaH402)U77O6z4s7$J=Til9GC6_zd~gW3=CpZ7l!Ch<{oQbS3{U@X5e
zfzwJAS)rYfeh~H)&jAYXjxk-v3){wh2xQVk2=gkV8F1%}{D^BRypfvyFo(-4eGz(_
zkEd=-g=3IDON#}-X~7)Ty7o@16@<%*^!SPf2%oEy6y2;eUMh-yv~CKmQ;OYxA&2^?
z6OGip|B<wZXvyF<u>>uN)#7E=_XzrrY)%suhF@XgNFlp<`rqSQG11Ko=b++2+8ZOQ
zQ+Gn7ef1>IHQlluH6zwZ%~A-*A%!~la1&I#*Q#$@H3=kkfr~w!1Dz>+Kt%*;L=|5M
zUlPX}Qf95gx2_oL8ip^>v8jsqg=pvtqxmhdFHBixVpnM3j&n;ivE29%22VO!FeZ5U
zUU6u0gCay2i~%*xQyIUS9TS)k8?w{7ApB;9|L;+OUr6}6cz`<$77u2=F-Rc|F$2P|
zHLc9$9MX-p0Vd_KvXT1cFUI#H&5i$0IUPDQ^5sNxB~#h&u%ziRj{DVf5gqTr^44HT
znAwJ`mpT;*zR~s(nC1-GThX}Sg3R!s%~da}4v*EghJKM1+Eut#hHLPH2z?0OX4ZbP
zzHQ5eJqiywe+?REe>rG;jRyGzpc1pY3U_wRYQvHNCqtu2onSbiCh`_DG@Kj#-+_v*
z8E%{-rR3KBCw_@G-&69i>Rta^oMcK2;oTkCZ_sC?JNw3wQCdk0z-NCola2%rXeR=U
zzY;&$KPVFeB;__c``KacK`$zn^{ya%y6ZxKDBk+)vI9!nkg;Z8L`xugIb6IL)U39!
zVO+6e_X~WyLL{Yl9$4O-CapBvC%6JU*oFmhm$qRTG(Lx<3&Q2iF>G=!xxwnuY1mca
z)0Wv5P9%=3abfuM!&71`VIL)K#n7M+LzBX}=$Jx&giwZMec-A_>Uwh(@=PUL3{CWQ
z$h|m3v*g!0vI(%LG4dj=&=D;80H?$%>?MID2*-hn$w}F%1AO}D)KxigDzd=Gy<xYL
zDFjPz!!KwYJG&?+Qb5GeTFvhNisBDPt^UVS3)V6${Ed9ZQ3oZ<t}HK{<On+{o9%B7
zg1`g797GLL&YGg6m|qedXdQ4F9Sudspo`yAFe@k=z5qX8<C;cGd`*v;IaPcW7hJQ$
z0-%fNPa^Gt2sjU!fXoGB_^f6Zb&yoqhwo(DI!0%5S6%GDf4Gm7P_p}zM!VN*{y9XB
zYA@k3@Td-30zJfbOK&NHhiqr+kpI_Tf#ryb(7S~oP6yqsX<?cOK{qyRQN^f;RTaA=
zZNs3zN^LM%GxHNnNLIcsBZMwL3K0eK(@`UZfd5_X>oJc{XMDFySOWlmMZDd0k;Wkb
zM<p!JOn}}5-;}xzA~3Rgx%D<30nlXq>>Kk8I7xmdVTiM77BHe)zx+n{!u~rRCYETM
z`Q)-o{(Fd0rcDv{B<)0=vJc@#3JZr!fTYHQ^yb1?jHih>EKw7s+tsaN5V$=6NWR%D
z$QjgOwJkNJI!w1<Aut@iHy!elxeU;83}VVWI-y~n0AA9dFf5JQMl*24@p0A0;icu3
zL<{bt1+b5JKYnO!*wCO7|Dnz^X^@V2A<4>C{(=EpeAQBNu{$JxM%q->jAPIw53fZ8
z!yFI`c;PLICa73G&+(8iFhySr3mUr^|5%f|#qX!VT{>b!iMtA+Kg_0b(!Rlhr>aK5
z8GDRmw-(;|&<gEC$)i53<x|iZb9KsLC5PkrJqld8mu>p}zgNOsz&-Kcp+YxEWKX~h
zCSwB8uz3myPbg{cS+}P{LgXJ@GnP15ooWyWHge6x)!H*)PQc8@Y<+?-#(DhM-Dy6g
z3EOP3`VV%&)S0_ngfdFTq&4*~`tB#Fup*hbio|qam#FmowIxy|WHq48BIR7VH*G8$
zZhJ~tR~ep8#3E2gXgkVt8K_NUFil5>CsNZ!XWf08vD3DN#%58OSTHnrmT5Us*HOm=
zV#ddBw)@?0#4+O6;wLoR5_P)wU%mwFbkrq7P1aE&B{P*%R3Qt~7A4jYpVn=UR~SQU
z(yyjf5fBy0+oR(-@Jq%Hb<Mja)J1qptQD8`=0J&kEHt8v?)S0ljU}nV9<bOE^u*a}
zy@qBEo*=l)0rmdCrJF$*n<K=P6tV@tnA*|Y+&tjhU5!DfcNWk2RPYnBx#~xvYbPSu
z9{*Y<T~&?&t?Md+U!?SePs0|unE<4B1^(Fphc>serlu2mDp|T-=hy-?9Do@xKD{!D
zPm-RU9)pO9wnG}~j8<<9UB*T&K=KPqf;)`&XeLZ@q{6GP{n)!GGAV0b`A#c1)EUZM
zN0b(U;lv4(qh<}xQr=0~h@p`c*D9pOmNGH8i;Ou>l;tZ@J4vUXbow;vAdhT7T9CS_
z<dpVIad)_NvT=$~qS=38QzU5Xl5)!gl#IKTddJ<+ev^Jye=}O95&Kz}H~YeJ95<lg
zQq0#4pu*S;4<?3(^7bG%>Ec>rsAt;ErQ^ccKLydFyd~%#a|_VO3KsZ7l$owto@I?s
zL742qPXIzRP)&M~UorPRo&-^rcy-dq9{kT5e-6QAt7ZlpLrrwG<uxuP+){5C`frUu
zQqY-E4hLo!^GjRcwkq!|lypOs#{R_Guyy`pq)ZmDEM%tI{s}ps6KZX3E*G#i-|trY
zmxQjIud&z!P_%E_BPmNqX>zsnvM6geA`6Uu=TK8dEQ+TRCliFTpcZ`-Haevy(h_?C
zL91f_aWuiYGs5;;P{H64Bg*Z-{+Wtjd!m{M{32&=3icfj555VH$ECu;KeO4JCLG;V
zE^h*vLa#nDk%%t~9GGW0(BLVF!w_1qK~$zjQUdNH^&LNHm=3y6R7T{{$JF0if8rnb
z(6f1128KVOgvE67pbYriA>c*cCukWJIorr3m}-54Sd=E}N?X7Kxj<F|gD8`F^?`02
z!r@EC5d=8zr}U^vf*9~DP8J&E-dmtDh;RpO^lnxSUiCblLYYxx#I4e`>$v$(TMqt3
z-h~7u*?I3A%rroox15^x7Tf&<0u=l4b^@@YU;+w44WG?OwxwElj`bZMOczAIj)DDQ
zoigS&_`@55aF727bG1<;CKV#EN^u=h7Dm5Fa1l)z-{b}$`w%+W<7&TSB9Ya`zv{Fa
zbZn(U;}mz6{F{uX?8B+en6`mmT7=*>TWX8z?XcZH8zN1*jV^LLN_^I$lu--SeL@W<
zq4{KB`%$Yg2O(TUFSQ>38dZ^wGmZuCz}8Jahl?(hgNQubB|-28tw62ie;l74yC@^4
z%D%xTEWy*EzRFV-cu)|oG<UBQr&3!ybvcmEn8pw}(f@7pJ(uPzL}$8KjON($P7Ic?
z;z(~`SFrWU##6ze7!|bvp`)Og%rGX)gaLRCy-cR?4P95T$<<MgI=tfaAx4#tsN5E3
zi)ocgA+DzmQWDaFMuv5W=SEzqiQ`r^HYn+fvPOs0Jo3`B4zJ-(F_>#J^_9eML1ehA
z8A)PaC`^rdQ2t#eXEHM1>3sc>u$j7%He~{Z@tXGjL}8F3Y9IHvV-{JN5*!s0^_y#I
zTOmYAj+LyLg&@ruNu%w^Y!GAOl7dV6Nu9D8l&Gmz=wMgEb<%e_ZvH3eYSKA`vKoyu
z{Zug!+SZ|Y!|Mp9ZRF-;yVJ&p1ne=Zz)8lwjjC8)T*@;El}Xr3PBmGrVMBBHbOJ$_
ze<DLh;*!uvjf|!7Uz~RTHYSb8L$H~3qyRw5@c{2b@Y^T~Bj(hf^b-MpuIGea{NN74
z<U-$*N+6iQDJR*}2u((X<9GleglWFHA&ubhq%*5SywGnP$Artmut+i){cLkyX|IBu
zuumY2@Di+h6V1Qb|1DHLJE6d$F<1l4xJGy<ydub@3J(BgLXJ@tK~e#!X)nVmB5LwB
zfeEK!WDUB)w*`(4-zSQ84k#cgnb=c4B{5wdX+b0jLo?L)E*duiKar$yJG}=Msfm+X
z5;xHdRC}aLSu&y!x0l!Tl@OU0zSHrQgYcWGfjtU&d`qY-2`7Y?B!*jO;7WJY7ABwL
zwa91$J4#Tf4Op4oE9b2|3^`L*@h}qp^)Zyh=S!=xjRQoo>Ld8dWT@icbpagk$Q0lX
z3}h-!p#<KB(P6X7`5Ni)a8%HMrE05T=mYC@9Kn%XIYw<!X$(9bZEHV3|6Awn%x0-{
zFleDUljs{NJ0t;R9)FNVAuSzwUKwD-WvfLjD(Z?DdW@^0V~k1va`?k)tv2M7#xQa(
z|8pdi@OvB%v}b%M*5wdRPf`tWLLs<XL9Yq4wB+y*!sjHSS~i!VL1*Kj4nyENJq?jt
zm^$J<PQ=1-GG-(6N6U_DBTB9aX>3^y#+xcnVq@{zHIBskWa``slUs$Az3~JqQmhgy
z&KB!F;3tIPA%Q~q&-U{5p+4(6yzmIsRO85`t7X;bh16d=n^IrlxC^lu;>YJ!pbRwP
z9BG3y-%o**ead8Y5t#2vSoW)kr-7-PlK4!zn0C0?_bpno>O)2llO$w5t-TM8jO$0Y
zy~i=*(#O|uO;X4oX!fXPHo0Tv^6NYj8lD(=G(mf!Z)yAR+-eABh3(+db@A%rb+M5(
z(y-u->F<Jy*c|o-Hv5Lj-dB%n63(!hbinOA9|1r?847)p$!JuL09&Y2JA(sit>Gat
z(|}vxp(JEwUP~beQV<r1Cxy*yuv?^mO~@lZZ6Ya&aIm?BATnuH%4;Hb5T@_DmQFtZ
z7N0>vSaYH9xGtLTk4>Zv2&cFZVuk~W!Z)mG@=*SueG@ZQgx*k&=b}W#)PY`J$UO00
zD9JvNFJ*&y!+S`WcV|Dx^O8=9pAd`P1p_1NJw!=km`94&p+5hYbZ%if62bWa>^LJC
z%|PZwHYa47X9Qnw^GfU&ZuRTvf+HZ=4u5P7C;+WPKP6_z{129!%@=7}0LSdUQuZ>b
z$#59^pYYadln<bTH1roy5;p@}l5CfDFJ-RA`$5DNd_ge76+Ql0m&~|walw8rEsWeX
zo(rZZ78XyzFDO~x1O`46ChQaBBeTwP_(n~5dEAXp1h2q;bk?0evC8jaoc{qo8nKl_
zEq2FWyz`9Z+rP3j;5f-F+uufk1502qh28}@l_fB(Er|T|W!ApKXayf~uBE_1SS|_X
zhAHffCPaj<dblYh;<%;_<)A*MU5@(H5{HSo*?EL_6vxNNNvZ~KHFTio!*Lok9hooV
zHPPB2e;KJ>Rr7yvEPFHNDo*TU8bxD*D&}VL500$-ThT^(8x#O8bBbstlE6$JUjt*s
z7?8EAkxN&z`4y7G;{=LG6~u|H9*Y!?up8XY)O<MxJo5o4VGVVr#X*_u)j$@TOvn@a
zKXHI|!5JzHt=5u@9(9(~hMi_uE%bvU@NL*;kQ@ksL5ChNJ!tGJ1SMNsTNjR^L{|_N
z5zmpDE+F^XhOEXkVu7^@y@kLM_}Oaap=vO20$@o8$^1K|{?5O_5?8k+n-7oVF$X}>
zBII}?Rv^VU)ykzxN>g*_`VGuzD1!m>#pl2Yj#`bcCdJ&qEUepL)fL=_>jA&<vSgzh
zK~v?|cV_|VkiM-BAa}GbK>^s1ydR9bU1SUMW}H?u)GZ96GcPTP!Ps7BO>hI@G<RIu
zsNJ~SjLV97$u|El+DTa+mSwXb(whOHPlVX@T$MPc9DH#Gg|)Jc+(Hw5<+95P(e!AU
zKCoFxE}{%AHY|c93t-J&6=#Vx9*}D3e#7+(&F-Tx-taFD{SjkBpzh>X81BR^!C+gv
zx?uqd{d*gLH`|vgR+j~*E5G9KdL>025)(G)t0>(l`4z-X^dDgi$+K<;p;*lSpwWIH
zhREKGJm!ndi*MGk9iV;9U6G=mp(K3B4N!kgI-`WAx1IXsVLX;pkbrs2hcM^<orKUf
zb|N5kc2nl+$SmfzZ^}uGi-4+Amfe!<-Ku((Yo~pH^ck@ZwZYuhgpSg>QLD@m#Ku3`
z%5aS+c;93n_4p%mc-CoIM2$tAbXwo-8SYUq;!pm&!7h^3s#Fy3PKy?(ZXIzGn8|+I
zp`e6so5j?3Z$9e?!-c2pQh&|q*H;@o&<6yrWQYf9$4XLvq@0B9@3crT!NVY6d~~oz
zq$f_)iv?YW5~nCA4t(LINP><65@tN=P2c#Mrwsmg4B4lk>gngi5}WjzB>)k;eLG;6
zBt@7sE(q03B^*w@1I$^(kk*N$4~A{-9;*RFK>0EVT?!0f_}uC+p03hv9hTdJ;Rk1t
zSp?MyI)`}Z6bBKxe7d4f1(JB}p~8%|zFBx2<ezXMYj%Y-@@ZFrff7XtF})H@AVg71
zBtylz88c<q&wm$4CovEjZ;>ypreNuyGmoFRPE<D<Xsh1JjtAWq?jn5*tz+bS%^oQA
z0a0p(Ia_sE;2nhUq{2w<cWQSjs#e#|R=&cJm&eSIVZ?>~5>=+>JosZm`+#!WJi4GD
zyvNrPUSt|wKC2J(+Xd3`KukNyXKgk17_6r14iLL{|0Z`YE;6)*5q0tc>&8*0SXR6*
z;3j>|V*rY8@>f-LdP5^@Wv`vFI(DK{41K&FFI1yTA?_XmA2DhLhsBwCr2O5ra}Vlx
z*_zzm(KK~3_dv!2jb5ns+-Nw(jTzh;2Ste!^-dayCoU*NMZKq4&f3>GX>gCzQH%dg
zJi!8Y=r+0IZ=f`GdQH2S1&teWHQrN`U>XQx+URg>Sp=ue{&~}XN#C+BZ66@QFqtp?
zCra%BVx@F4sF32M(4nQKGBgFoKf(BkE(`CY)3)wAJD$TsTr-iJ_!_!J@!3rC(Vj4V
z%z-aP6RbDmP%-E2?3%`v)+J02#zymo*xuipwNeU)v^rVkKZyt=@+db?vJDZ(Mt;@$
z*;qHodeRn{K}u4nOAhi^&Z_S@LZ(I23IkoekXdU72nLCsI$j!kl{jn>0K)_}mGQT>
z`Th&^LngFPnZ!7WwFar56{l}JV5+JY`RX6uiG2A7XP!?VsKnOKy<xaV5P39xAB03<
zu7LGhFYkknqH4CaWJ)Ld3q$8Wf5Z+G5CEq)v|CjELyfC=8dGXmXB}}cVRoyx!#SYl
z*!x1z)6GwN3D;#G>J^Ce@4h{C-WxDq+gU$0Z932CTu3Kwy5FtWz^m^HMt=Y0fySE*
z<5)WuBC=^(N4I7OWV>qAC7n8CKE{>nIM!!*=x*Qx)rcaO;uqhOEP5mWk;|N+O;*fK
zdmT=aC=KvR5RZclq;qoovJbV;o<S2tind{T$WC^4_&q!3g=$2a))e@NFVJL!)`>n6
zH#ExH?EF}eAM0ZFp+b!l=nMOwLpO25Dr4shu`%7g;VQ_qheb^qrh1iM2kKNG5kgjc
zzW^jaX$8-zs}AuW0Bwp_xYy849cJ-pux0T2`gbq+10B16&km7Z!=?HwV9{IxlewGy
zyry%+3#^;FyrBE3EhqF>7>w_|^AkKswg^|w31wf2o5x?sKzUy0_j4ABXBn0k<db^6
z)liz`3S(X)h&fK@Grp@n)WHO~ZBsSYj!>r4IqgoPsDDSb2yIEc1Z28Q%XJEj(upcz
zZ1DV*0&`{;kP@a5;EHl`+P1-!lxqe`^u1ZP^STOqYu|`RY3cUCHXYSCOnPi&orinq
zSL$&@V~Fyl&_NFEM9&iuk?wB&Lp0_&&Ml%yKVF1Z4;@N|*F=cA4jl~{)kyN4cT>&<
zErc?AqDFYf5>0PJIOOg9diVhXp!!{rK+Ys}t@3?nO18jy^nUd<md|{5AK=g-y;{<t
zhf~3=tB&S)@eA)^7CXR&kMRbMAmj6I)wbZSShm(JzfgK~K*KGS{;<x*rTIMCAy7Rv
zN+m_`k}bC8TQkwn_D7o85GhAs)8AmhPEzw27le4tg5%SAZvObPxSKuG(tUi7H+nrU
z{)Jc^N%`}%&p<tn83Mh9u*^CgL*ab{cEVuu)k}6p;0&PQGv8%Q1K7XLqSFx+QC^EZ
zfFfLEO&n7JD_f&m-34?|R;7k=<q^uSVcMB_VNR-^y?+2e_>69%vt@-o2c4OiYL7IN
zg<BDL>I)q8JbzbkQ{7O<kN1RymG^(4J?@k)GY?F$)9$b}{So+xrbw@#zACnEP#8P}
zb{o8`7{Eq1kNz;Lg(g-24tBC{tHGF|fay=1hX!iS9#I5=HEi*^6FSx4Tel`x2ufZ|
z{V;!IU?%a4{_OR6{CYikfkD&?!vY-PH_$I3#}<A8VTKkSLNH^tvGH*Cn5l`74m*z*
zLn~%%Is+CTF?~qwo4tAaIlT+~ORNUl>^pgDx+=uqJ8kGAEC`Z9@xjFfy|*ilZZLa7
zfW)O?K%hz5^t-y6FYX`5jHkNIUl-3WxuIPBEU3!F#ftq<;!k(B2@TnV2K1ajDWL;2
zgKQ+M0zFqk0#U!>Y1<#^-%dhoHhrGVnQKmgs8J|WF_pv`W5mwm3+UH`*6Tc|vy-+R
zC5dnSGffab$?Ukwp^wFVcBfMa<QmD4lmAR!O+5<<94EDMKqwbgxWd)QdKxVvuCwSH
zYRnh9%Savg$a@)wLod!YQ3@~6@R#1?^_gc4^4Gf+0G*lGi>)d`(?|7066M=;U&<QX
zWHy*Q%oaxO_FWnGQ1cQqB(~&9)U&6)P@EI{czveV9i;c9LfBWDgdpKVjyCJtt%bGn
zP(tC>@gsZMnr@jZOd}I@4t>tyJ-)C<#RMXkkmEF~K4XB(*e|d)`cGRMa0Ifat6yr$
zjZnE!Cq(0$9-fmh$tl`}V8!ZpKMF#|T$$%Iq6#BmIPQDGE%s)*LE(i`bc?4;%*rO#
z;vrNBH`6Z7UPC-!j?&2I`Qm>3j6{V>{b(^hv3qN?6%oj(@X_>!kzY7hG!i%hc`$OY
zcMya9_W^R7V^IKeHmCi6)xLIcAlx@WOEp=E<XSj*feheW`g?gFQnd>v>)>N}(T%;v
z@m6n0i!38;I+lj^m&d5jNA;fO?F_OI41nYooxDo~s8I{b1khPB&<hcK)y97Mc&#Sx
zcay~veM{%G_3wLW8`%fM0I(3357j<T-~J>(4%uDWGf8k@)6=KbK9WNRERgG(EU)Nn
zbiarb*x(!->DrhvLaNO!46i~(euh%HN4XmqJgNokqpzltbK<*Q9jEwdYCER`G2cGV
zdyrM7f&5O&?K91h_l%3M5X%PtC&A7KkaY7*9hV5w>#X+aA(aj34J|r3)?a9j2Oc)3
zDLZl)xwXN9d<C2sV*kRrCi+Ei;`myO^HsRlg%Ts@xW+2yASaWrX(uRFRrT=Hd}JDB
zlq)<yDEl+{p@(Y*_4y)pcX0f8kivV++?bho)aq#1My(<FJ;Y<(kjQtlB~U?HZ)s&z
zqM{NSzkXS7!l${O&WVsbbGd>PL=Bo%Y3^5cXvv(9Fj1Ke5f)L1hMV0J=ARK(hxsof
zagLwNknw*dG$M?fq(LY|)n#ZGiB~92RD<6EmvV(mHhw7={1T@s*kJ_F_>e<+TB&u-
z#+jRvw*hO(359OyJB%eIfJ3GE_&R?4;Ufv_CfeCCO27Y|)>}$N)@ZhHR_$dVT9K5@
zEnEndL_2yG#&l=du&aCKB;d4G?=9~zx<|rH07#w%m(o6cTr6LfD~ch=75^N)3iG8Q
z7sUBj^ZV5^`U|Q5GBeHbJb8UVw4LN2#nB@i#Kk!KmcL9SKPJ%H*1}0!^&SiX(u@#+
zPRqVF^SPii%S(=A539q`Xc-j^;~CK7Rl%Lg0|w26O=s4zMWP>ZX`rV5*&$nc1PK?P
z<^uQgfhHT$jVYf4Es>R)VgoOM<Cq*NYkzh<KBq@`!M9%+xseT$&b98Mh`nR>Y{M6s
zAtCR+s@7?dLUwJE#<0qc@THUX-DXA?;SOm|XduYAT?_OcQcDN**klI_aGT-)eilZO
zme(sn@)<w49NaEO6*{4)eIZc>JY_b0MYMB;EN~zDK#l{9WHw?l&ic-sNaQcsSH>4(
zJRDveDlq$r?(}4f;_Gz-A)>(<(Q#TsgyI$$afHiO2U#J<WEzDcGYs(ZF=zNwFfcx<
z<8x!Rur8R+IdsfJV@msCrI)wqk_TsyPz?(vIwZ9SK8Dq?aU?OTLqEaGtyb6nsF24*
z6wat6e>_<5ePW1*3V}+i29djikayMc$nOD(#<$UVjX4t&a{K_wlF)@ARgK%vF-5E+
zEFudmxgBciH*6fPfW(IZ78FsOzXwsth;O84&ZI`fFd{yV?S#t}HciJ#b253g=wKYI
zpo-ZS<{jbgvmuFu)aW9}TZ0{u(My{JTmZr!j|LMwN+wNy!+j-ti%ki0qY1iGGhR4G
zEUm!>R+$sC{(zFAZbb1PWrj#k{=iniuxD1>Gjj{;_*mv;X(R_7LFmF<DfC^S9)cKV
zl3wLgwySxTk*;<RJ|e6I?dxYzsiMzVYjEeAjA6xUH~RlDdYL>Z#)P`Sx#(jRFLi(e
zbA5JcSGk}4Tw%n<^-FMK^wlv#X<uxSQ1D|)t>O-#cR#dH{Ix9$TkQ$q)`cS!gwnBZ
zYC_2`O7v(3gG>sLm2jw#Hk@3;m_VAS2Q~EYG{Y=wK4MPU;ul$a1+Yvb4xq)xIS)fh
zse|s5O#3Blz;CcH{N#y*a><H0xgtX#@(cFElv!THiRh^LYxZGmKm5C9CaZ)&Y*UCU
zej)wdnk?@otLTi|w{nl^ZJ~j)#~j@co5-imm*cDsl-C-Cf2cS981{8ObigG+f58s=
zlUt@fxY;iM4hi~_q=CN4=&c>z_;`P)&X6!!b*rz#L&wX#%a=$t&Nqb<%)HYVXh{l)
zP@C?%ROaV$jb%(CEHR3}k5f7mx?aluQcH>Y<z?0s`WOegwDTP$7S!z{NV#dSNo=s`
z+3E*&ip`E77_;@Xb*}|*S_=0zABmUS%7b{o=ZB2?`7aH7m*w<_lsp4}ko0E*MLsv_
zC0rv-la$EeX&7f_Kt(%4r@}KB9?oHX&+kbtWW&XDrSY&H)}8%);Z_=7<&$F)V$Gs3
zUG4Xua=oAM0`=bFg2EH+Z{-qde7s9L0CKCy5DcIWByAuuM$-}R>x@Ri5|<<o@qG$U
zHOI!WWO!Ym0}0$=8pP(i_Q@9o|H;ifAcLnk;fgGM+EW^L^N(2D+B|g~L~BZcnjir_
z)Lxz#&0+IhZ8zMf*<45Ya`jNz(H3?Tm}fk7yu%>pi1Z`x2Qy9f2p@sLaYJ;6#}J6g
znYR)@)04LM(fGZ|4~&|el}9P$^+-}pD0_|B%N9>t*=rVr8vYw@?0~+Vx?}pB=L=@1
z-aQ}@nag)?Ay)Au?mNcf@QG&Y(-)?xEbbV|m@z~S%`E@1oio)2A4mHHPEPZ{w^Ly7
zZNb%;KgA;zC;Men&&<+=cYyUDPU$TAXep!=%PfSg>nu!9jDT*=qX6sDzfKX4XK8+9
zib@=9EB&=y;?Mz!Q|~AJ>TLe{vUpwM^qs9p!;JXp-p4OUM|)?Eor|T1*)m%oCG6X;
zV+FQ|Fep$p&+kF$@Em%YOvXR5qj^5^FYF$OAi8kd-PS6r{zP=}GiG(j>ykjWaV%z`
zGl5;*NqI^ro+Dw0@TlJ7kLNTkM+7TakCfKNhyt)N=y8gULI|{KCQcZMfH*;1N&C6E
zqR;q+1Su{6sa^!cx@N-(#)lyZbR9JtSru@fr;8EH&k-e2%p^+o_)Bb%ECWuT&`i5Q
zdi$B*o6(E^gtiiaoYV5ze~$ZyjdYUF$taQO%DSsNA$u}2U^#7dV#Gg{CQ7b917`@T
zlXucy&|U@ivOwxEu23$L^Xicvj42FEUhTOU&MKsfqUGiUBjJXX(0`O$Ra@a2gJXse
zup#k_bwNBuj69hW!?8AtE>X=ejg26~H+j@Y$%|Z9iBW8{Qctn7wVy~xeU@_>`P4pr
zg}OlRdcW@pBV1tE=~L+xbezg@smt+uY-E&llmF5+V`?D_$htS$M)t^7`L{ZB^yDq`
zZl+U$wK-vzV7}9Qj`A66<Y0B2N-(b;SEEvQr<2L+RyLT7s5?TXKz9?PwlBLx@eXIN
z1VAK8Dnvo(1j8x_kP)Eh9S!dBjx;3=MMY=(72hkaP&mMc#cfIyX8A2Y#nOXiRYEDu
zhp5aV1ZW;urrqsIn=(H-9-u8q`<6_?P=P@ouQhM=eo}m7GaD2EV<-i2nJ^1Egh03t
zA^dg(iwQKe3%-IN&UDJVoK4*vgQ<e--3S?&CY9zRd{2|8l53TG2DbqVWz8@)467E*
zLAWvuXATK!nc8SMT8SuzxMq}v)1yN;<at8VZ{n1utXLP)^!a}FiZ41rqta|?Im7k@
zlt{(`b$q+x3$(Id*fC@0;#+DYUNGa4MRAkAn*pP{*k=5Sj6BFE?i_<rF)_Q#up2Eh
z_+x}W2*%oT;d=6BQ^tTiWY7=FbBZd@H0=Zk-yAs?j3lC$sKHK+c{`pkCDF0YuQ<Xm
zK$v(!I-iqyy#6}?nzG(Ppnv*Lz5|i4Jln~6PVCC1f&PmAl#6d4p~FN_+Zu*fB}0x(
znr>yp=(f<2PHMu0E@Z{Jt;ZjCJ}H~ls9#j-O5?LvNR9hJ(9u}^DYrgax;+6>XIt5s
zB2jdCK~{Abg1q%OCIz&DH<5C`Im6&LT=n=CA|3xgBKwiJMnOSbA?F6mJ~0yP$2fbD
zx+P`_K^3G8NuD8PC--Iw-_E8mz%@^H-q+SK85KCF5^F}Thy4*^GNBSlA_a@eMve9n
zNdSn758$<JsTsoY3m#&43YYC?%}@l`xCkb!za*>*=|SY_{Jh?;4DXdZC1m2P!BJ3U
zf@lAdSq_d=96WhTRqXsxX?9*tS_VLTw{J9P7X6u_CG=Ces`rNtEcyJI=&+jbe8x52
zMWJglpTB||!NlyTt&ODN`hf!}$ew4DC-p~<OhQJM3|wtC1CFTt1Og4AWt5^2CT)#S
zgA9k4{mdjSjP1jTnwslBIekQLziTF=<!N$PphWH=R0|K{>u@hoiDIoQnrVTzpv6tF
z7yZkL<QL~iXr6|-$YygY;%(VVG$BMD81_TR72yOa#x0MRo9mlNjUY!BiF(zzDw^`)
z1wchKKtv1RxYC4Bj7Cx?aH&OD6(ty^t|WT3;DXutNXNU?Tk#iyU|8sf67GrdQz(#e
z)SUXECbP@K`rX*EIAX39KeTgxg`F5TPJ|a-a5A1>k?_R_k?RXiilAJH?(v-aOFn}{
z(b+`(#+i<yKF1+J>*LRww%#Kpj2rR`!;AwcBnIi#s$CqVQ&RQ`hZT5lcV9`Odh2WE
zt`lYwym(2Q8%2<%MvyawW-eAnZ5Ot+{GR1YMFD=Jex2Kn8pE7cFSkao1&v`f0^kCB
zH^`=bX8dp9MI~3GV0KeV6cq;@aAl4i3glr|!{9Zf51<BFGfl>DoBTdgQ2BmIFAP*a
z--DS51{G{v2qjJKK&1WT$jNud01WA0`D0ts34R=kN}>OO8jedrDV#pJV5A+YiX4o{
z5fr4OoJ@0`|D)1hO>;`z3}e5;*d8o!I;3_f$)I;{q72qZrpyG4pm>;g4!BgFhbGJ=
zt~k8NCSpefD%@FpfZZw<j>k(iHpQZ(;)}T(b=f+w8X*%n!tcaXwRTZ`5{rZ9Qs8=l
z;0kOT-89T^3~&Zxjx@`&54h6a$vRotOxh8Nqf-3a=mAJP!(lx%ZWyQ4OuAX)&q%&c
zZy-#(mY?}V>)}{6!dQHb)OUTRLyvSzOFca=pVntn1ZLKj>w){ov)I)u1_wc4KeQzJ
zwOyW3HhBs*HSitLcs&3GI>G6~YUbU<d;(Thm#PjHl^Tcc8r~pLC0-=t_TLCrp_2RI
zR1|Ck)o?8b77SWN|6Y&<y5K*pr3Fug1&=28*c5forSl$KWR8l|XwVlx10b@={0g@@
zPBK=|gm3~}>*R?mEWpvv$&%m$&XJ#$JSkL7z8DiVglcuSq&?uxGugBY@}%%hg~ZM_
z-BMNrVP$6FLuTy!jIJTX46n!22W+vMrOXCk99S6>eq`LwiIxozLL$V<Z}G=xYR!!F
z4TkS7^i72Wmw7!?=&y2$zn4GqK%%1Np(3>c)|6*U&J$fSmyh8<7UAVQYAy(34rzZI
z+fziMVOZhIgh^l|8m5J>n&*u`w!_rxK-%GDH<(*`rHc@b;^pCG&XwT(k}fB9qiq6!
z^tduRl<;Bg{eWIVsUi7~Xasl8Bvj2zTHS-8;0Bvm9{@7A0Um+V&cX>}Pvc4bo&~-5
z8B7OOKHkJH)ys}d_k??dThs@pK{OQ33#vrckk@@NaE8f4{g#~^{wBh2ijB;}7BnIj
zMxyIecHi-^v?ztJNxU)iA=L4Sz{A;N#EUUocFzP}_EG3Ji3*j<1P3c`_~meBUK%z7
zxdk`5h~vn$d(X4uy^J;3$@)h<HpzeC_RIFH<yTBn(kA_#3IxMqVPcehYDX8O#&oHy
z@#ile6=1zL+_V!pO<u6{E=bgYKV33klyE2QlR9<24wNbyfskzA_{3NsOo*A&A0b=}
zJ4D@KYVwWWvtfRv7gEbbj0~ua+MAKSj-<u}Z8vVJQ_3OV$`@^v*<{4VX19iR&3?Cu
z?UBwI@PvTzz@WI<tw>ghSp}363Ca`5`Y^|kON{_RB|soXrh1HZ9P;tGgzpet(n?BV
z;=^G$kjN%}o$Mw*K!QEk0+=ldMf@d-gFE5z<fsKp;>!?M!Sm+u%f2cI2Ba2SZG!0w
zQj3HT37f%B2#i30ay}*$$x&h2ij0;c9hzBfW97K%OcmmBo1c8a3duSYNmTn61HOqw
zAb=|l>;r*<<+6*vy$}i?<2Uo~oUYh-Ewks9^D=Ehkc`FrRh?iQE(uiW79ETnWH&q-
zaRj1dFunp%Q5jd-Guf2{*kG<{r8>tPKnaW6+}Pq5WQ7q29oZxZozcv<!nI+u!H>#n
zDRRXvLYOu_`VOsyj=+Ukpq^ZsF^^G|v0&#cB#loPNs?+WY`lC~u>c);n-2f4y;oYW
ziw5U5NHj%7gju?4h@Y(|ah64^iDL*cTnZ4*UC!}=1m<}z-{DN^mIO2L(Q*!Yke`j)
zybz-Zk#J5yAC-J@KDCh)k^u&cPE-`V{YhJwh2@JMWfwjlq3RI)`YX6L;uYg5WQ*|{
zD1->3<b#x!0)XQY3DD_`B`KO_u|X83r8B5&4a^+%gg6Du(gaj7crVC~VDj^9vb@ON
zp2$DCBl1#E{GAI;F~7wmi_EOAGxm}uaSNoYMraY1aNE8_<uYfveC(S?SWUmd;2|q%
z0{aFaPVg+=N{Hl%IQpL*XzrNF0V**uRin{`&5TXg?NBEb$b#S>3bm^jD<pK}cqD8f
z;<Q9g;vJL(1!s!Uw6<@QIWm5Zoz0$;_>pV>zMX`t9E33NGXeffhlsL+Nx_wJp+HYj
zmL9OBqC}v?sh~tp(~z!YOfOdH^Xxj9Ap~Z09e@!gKLkahofkkbtX)o%p*qNWx+5!+
zpJKaE0bEy`+#oB#@XDAWwMM`QlNQe}&l)cOaY0#WE5CV3fBB?YmNYA?)duMn0d}Y(
z4$i-aJfn+v>bqbR2U&=d6`Fmb0l!Q$ocMrJ-V_;+oF#>3fVRE^$`SlAUIO0e`jN)h
zqFV5eZBQSqfR}d+z{31D;C{5U#D-=j9)FJ_l^6=lO5H3;@QS-Vt^&o!V6r7s%<Fw3
zx0DkNusaa<BQNV?`>R>4eGuUUc<yJ+3%{D?NHe@+NWd)to3{M&z@6NODh?pzTm|ce
zFTYl5k~d*Zq&JXH7mZFEO5)iv)1XSe{Y4YEtDlUS@DkH`8FJ_o?KvTr*>!HCRSUSB
z%PW(H&F)zzvSQh850v$pfqxcuI0AQu91RO1<3h?!mJ8<}PJl_+sDRqZc}q~FXa*pI
z4TXSls$_Exg$g$k6xE*M>zPeYrMWf5KOv!k1H>U5j^?BXC%5PYneM=5014*&-|-_i
zUsz)vFg2@(L?}!wIcA$8lt|PQiNT+GZUBMRfPec#it?*)mz+b?W>}-rcR1*vhND^d
zI`Kbfd=`>&;ZDa#3CMw_Hu^6GWi%+))kKM6`x59b?E#XLQjb<q{Qe%_|1MOJCqCow
z>9CMpz}kK*m~Sh>e6|ILa}Ws>LIulWJ!fj4a^)n@CPEDO<VAlVu^DzIY<JnM0^2y!
zu`0I90i}E{V<|uKMp|H!Y8EsrxLU+_fcHE*IzIdj#EGQo4S_@GHHhDEDpF><JP2on
zAd!>~(pM0bDxGIu0FaL7Ryre1OK4XqELEWUX8oYq5B3exW;s@Rpd3@Q2a@H*ZR2!i
z9vF{d<o<*nwJ@9ueKN3`8WtHL$e=PNAUJ_c9wa1<p+eqRw{~d$7}kfPjQQ;gUaz(&
zP788&5BQ%ztn(3S3moT^I6DO85`zE&_L_3`Ehf*GbfHvl^SGVqPY#bsunb0x@0x-o
zh)tYThlViS5tH|)gfAZ@z4a^>fl+dgAU4p+BBbVizuq!<AtD(Uw-WZ6pjaNwRos+d
zrX>0e0nx=6Brv*^^p^f%v>H$#61*OWwm39Hn#jmcZf`Bxu>)c<J0J8nrIK0m925ru
zs$3y>a(6#$D`aOd2PqiDi6X=-Y#l*!{-=6Bdin7vWwc8@9VGy>>7z){InJcVr{Cmt
zkeFcm(CunTcFG<ev;*FgygJ$+ft*KJ_1PbgVNx0BULK6*=B~~sOg!Jv6;TzbU}<XR
z7Wc|M^ub8;Tb|Nf+<=GG?>w`m$L$}eLTr{l=WK|G44G}j$u+v^7Ju2k`T^@f2oa*k
zVg&%&<T3jw2|Wv-n7)23p@u)A$z)PTP!_)+VN6tk4ocS;i<6Du76mSMjKr|79gvgj
z=l2NDLH^@TR(5&;FW0;2j{OlJ2k*Sfdb##<hw##xgZBIYo7gJh6SOOLLjaBYTMy>g
zVom1AQCUDZ#fv<Ou=|<tjLfA*&+IsvDIrkBI`Akk^G?TP&=p6=<<~p7{jA$P9~zQ_
zS`&GaH^6al4K2AZeW;ZEeAxvyfN*6WIz#@4@}Rzh*}g#Q&Gto%9#CrrWOmTy;uaQ3
zT+9Cuh#|h_rlUq-LV+<mWdA%fdGtj?cN9#CI&T+14NZmVr}GvhfHkUsKjCcb=+g7p
zwQ%@E5fP+NZDk~E2;#x*HYM6A1eoUwy$B;a#-e~Cqg|J|1ZU9nyh7I~Zj(i-dnJTN
z@dRz;35Umcpa|+be_YYd6@SVigdVuVa>8`O$y(ek?q6Jih_GE!@hn^vmKEh2@fcw<
zyheqW>0MAe-dUgvK|ys;7=IjQXMro2SCW0}8$|7p@W4#)%q@;=in$W{P}vcoc+yM|
zT-Z9hR6xG}#9`qr6*pr`z(w6gYLVq9{1ziB=+L%%-$B}g1VG4CyY%W%-<=>|fUVp@
zwv!QY@;sYeKh1suy?M>2j1t9`<@qS59pqU%NAO-th!-{kwI-$j6bDM43$fJKtDKst
zuy*2EeCr~|IGh9sjUO%negf}ur3r{xg;6RkqS;y~rivw0)U_xyNzg{Pv*B@Jj$<GL
zB;u#G+D|BYfTZlc`b3D!-y{h~u!U^H)Ncnq;9EkBiWl8b3IxTKV>=!TCQ@9B5i&mj
z8x!x@RVYv9`Wf>D_My_^5W=SUflNe-j_72}NGLpr9%(DmZFk6Y5FFP4WnVenT>#7k
zSX*>1Ego&6R%Iy|ZLQS^x@_DCL?N)ETP~ylS>+*tI-HQKPDo}>X%-slc8n`yu?J$x
zq#`tTPu@$SFnkxBn#TPqT@Z{fv$D}T(-+N1tfQ@2A3VtaHPjNQ&G5GYCJN@eXE8KQ
z_&Z%$Uiixk;z+Z>FTkY{BvK^F7edcba7aX=Kxbq3D`8ZGT%(Tho6<oOKw=@4vrc>P
z-_F8<&Q)^qbBbTl-J-QL^lA&BN|S(+8qE`Sc3?YM5g2GJQx*EJC^u-Hn{$d%nCB3p
z6zn}Q8UmUWQh<=>y7dj=s};${@{@Trjs$}bhP!l;uVj|M{xS%F)Gy~`h0Uper-=<3
zqhGHms#x6%_I0=-_WnByM)4W&34|Fdvp?Oh@CF2$51d$g`8mOn6ipCDabJr~L=xtf
zXjlOPm&gi_vMb=ie;};*2~-P{rA#8bDVKRm>Bi?UNA6$zqRy(XKv~Gl;S=+2GeC7s
zNL{scsSxolTw}z#%S($ugn)%@Ney#rTZ1hwB?u&-5eV0~)P?C$I+aeIsHx1Si9C@X
z7`tVXkuc|Hg<n=$Bi3dRvJ?io#i-i$Yrr5Z1KR<2%WlabyMbMC+`yT)@`Zaiu^xlW
z{^3-$?>X@0wKoDedEt3q7{&fyHbM6^8LT;~Ji`w(-Lrtbm0$vfe9o8e#<9&B!hBji
z=`atr#Uqnf)lva<#$F_6ea4-?kc6ck71zY9d{d_wynu1em8l33hLO?wHr6{D3gM5Q
zIVW$XXhsOyVKQ=EGFfm_Ai|J5$1UAQX}4xeV9TV3SJ*lf7*O*%23XOz1hOG6kX@gV
zi%0Fw2~hYJaH#S1-B><Tj937S+0OvZljCF)O1cC-Vs1EP%=tCO*fBvK-cw!7F(;p~
zZn|5iz=F96Gexk~(V}WjsJtI>1dPP^c&q{vG$pHmBzJ;PIwk^xuac6aN^sA?qmV^t
z{4^kTMmp;*o8sP26&8sZKz4QjsaOgI;0O|5Ko|lRO~hLiy}KAiXzS2sc`ynjNian4
zZ4wB!uhQSK0da_kAcwOKKOlNZ+>9!MfnPzPU8o!;2*xK?UKIb1S|g1(B$vu^EwQNh
zA|9?rmRCBD73`^GQ&3AuG~6QD{Po%P0n#WYqg-|qg6E7WzNcepS_L%>qQV^^U-}N>
z34Ejl03MmmLs_Srj6z|P_8Kf~B+EStivk;tfDAX*{@S?-$fRiK;mU}c*AU)Cq_nZ@
zp_3rQcnz-KF`<2eVwf#D9{j$NKnU6yRfk782tSjIBuo~qvE7&13M2s57sj^Zlbo<f
zYwYoKIAdAC!oDxrZ>E`v%c7Y7$rm6I3R0>$ZMw=HN`JWm#JAL+EM|&DM%JOJeOawB
zx};A@D0wW*DV!fe{k>owqWVw-;XgSObb)+9%C}|Xsi6#i<Y`cN^J(Pa8~?u+QMV5@
zzoYqhiykHTBmFeikC>^30bCNUQiQHLf~VUdlY`0=hBSt|(RD-@=#YO0Z?y9tcz6DO
zOjKtKGMkStDC^z|wa1SYZ;I9cLWINf<d4S@7f)LWJ-v%lPjI<=GR*#FgExcm)c;$A
zQq#697jzgyk3>C!0fWMWu>3=m5aRBEBxP)SrciAwTOP?*3P9DR66&^Fnlu@7H#?i$
ztKlinC-ed{o#DljA+Y@?GNKK)28WS_9lt!H+qE?qN123BAFsS_+%ee|HEzK+Dz~nd
z`++|L-;=9B=sQ(fE=X#&>L-eXe)xg8a}T}^r$6GNcF@1LcEmBNy|c6|@<$)D=K|dA
zWJCQaHk{i_DhU9fF(3u&*%^q22N7~WC#<^_<TWv*zM)ScF$X^l2_{+cFT9a#ekghD
znLW#r@#!GK?(CW_6;J4ciLKksmKx}YM`=y$8>rV;cM8~&MEGXn$NEIqJLh~G{f{eu
zMrT^RRuTpNBZYfVxu<MlRr(`p)pXIX@<9<|fK=B`Z||c@r-wC6!~W=wHb1YfdvNxY
zGquqVDL+Df%0S$}X|z9bx+LkEwLvBDM|JDi*2M5rYE4#)E5hf}M66Yd-vtJdHP362
z^kg{^5dTh0i4%7*MLq$Q61Bgq%JI{jDs4&-k=*xC72XW#I-&O3WXYy^R5WNKR5IOa
zP=XJkS}9$ZuYkkCQ!qwDQcnE@B?$>Q9;5Yfr3KFiI#6nVK_E`4rFRMr&Id!h0-=DX
zGN^bEB7{jZXJE3<Wl+<wfc(UDZb5qrfTTVM8=_w5kPTS<DW8hFaQ!$K_MdgGet;}^
zRPdS*9)=6e`uK;;83_M}eVIfU$)#W(H40sAK&uh<yG~rZEVx8_aHbbfi$W`En6xh6
z(pc2u+VVuee?;yC5J7aNYfTCeb#oCYb?mYoCrdCz1Xq)3AlL+@+$O|Jk|w=aIFbrK
zG}TM02l-J0#*!422PScY5x7J*@E-1!-Bn_Zw_-KOb@68MfigsHq@Y$KMZp41q5TLg
z=>5P|Bl%<B0AL7ihx6M>4$W>PRH;3H75sR>kt(urtGf7#|5Y-NST+in$G__6p)g=z
zF6>Z+>gj-t<484jO@3ZHN7eFy?!d$#VG+YzJb)CM+7|^A&mpcHZ3GceiLcDn_3*39
zJT47hU@qN+fe-=W1#pIgv6f7Vu*LHQ^0=)hbNt!iWitIRYssj9FTKdd!U$t6V=RcS
zIB75TrQ-r-`%`W$ETVUVqzfSc(2txYnkCQ1cQ-mL%m`HL5+k?i+4mXlA&jbmsH(Jl
zmEwc3f0J0u14+1-#a3bNDn>y|T18OuWbelCtQt0DJG=d^#pH^kLCX^eQ=0~yA~++>
zhDt`d0*B)Z!yJSlMu-g_5U{CX@81YcMlp@RIjZvV+7d(%LjOAh5C;`=(P*O@H4B`N
zY-P4*uVTHf7x7m*18NoW#kdWpr9wRRjAhN9g`H7pIugbXoyL2l(X9v7Qq87+X8~4-
z0CSPtLL%bit8)|s6$x9$a=I@nwWU=L@~kks0uJueo?y+~xH&>u)hg=1Ln|!)UF=^N
zfPxlT!dLPZ&-i<VpMiJivo><|(iHy+b_hd9UF<{`C~zvZFlMUQLp%jIlR-lW2^kh{
z8KK|1nD~dN6fr2f2&O!lG05^i>1)9mt3GH#vm;VWIbC0fsTfv&T{mOX5Cm7uxi(c4
z!F9QmJFgBcUPA8_?_PkcWy=OgyPDCyV#C^q=|yf5=p%v&ug;RfYk@}mh23mh;9HL-
zNbS+625yZRq!R6ttstYJa~s~|k0x?(DUqt{e}mC5;x_(9D1{N!lbZ>Z_O>}I1x0Ja
zLk$2@$2bGrr8h)W#OXI|L!!D1Oqd9Nh8m;{blujHj==aF^ev`0P<QH(U$Ty3`4M!?
z_o!8c4+nF=@WM&X5pMK3x>>!#<JZ_wOF)J9<Q?_#8fJiL15E{=RQ|G@$U*0os81~c
z{IAgkC#$rDM6G)<W-|~urwuO=hR2brwb$skI7^H@!A1}_8Ifl>*&d%D`bs6hfY>x)
z81yd<Th3@-U+^+f4KCpna0u_b1n~Pyr^)*0C#K9DDuo#HG`~WmCV`B#fEh2v+@0NH
z!z!+4XTe6sB+RuvtOvY_2B}Is0~pKA!_qS-%`u^0Ib6}PIf`a<J^|k|&R~W|No7DB
zaz~_-tuU0n9?Q@H0TaY8{{=k(Rh;DDAjWebM^+Io5n4*a5p>7zJ{kWK#i38c?btck
z*d-4qSax6nmUk-K6O9n#7D5>j%OoOhA~pN!x3pg>Zv8rCUf{lmJJi#W>tr98*pLoT
z)+s#EbironXOtR}+6EMQa0<C1xD7b%`2%p(knRlnU5`YSPj2MSl(iF5S7aj;0PPMQ
z$6x#J^D#P`bOFSO1QEp(haiGnm@%r-#Qb=KZRa7Cv35Y|tq>(tXNIp<jAM2UWC|;;
z5C8-T1%~<S(mKMZj|<5{=$pmwV5k63dk>n*C)@#T`k4qE?@m2Tz%Wu>Kzu3Xqjd0}
zMB9Tyj>yGq{M1W~_CN&Ey*qyZ9vKKUDbUhgQAoi#eQQ^{eaa);D-w*@TVcMJ?ej2Y
z3?U?W!-^noAlEH|TmiihzvRI!^`6nqA;JdC5_^zie9hu5Ae!jd%bJiMYIsTr{9N|~
zT1M4k1lzRP5a{@edPL_2e+;os;h*rm1D%K|%7=(+48L^$I8ydV<~&GlA<Z2ID<e*a
z7swJX1#1MGb)4P0_dZ&eSiznV{lmJ{bCUaqz`WcWZyjH;inPx8S+rU)8c_+FbTbIR
z3^#?P2c;{fvxk}GKcH7jlp_S7hyhW+!_Eog(Gn<4ZVmyCuJn8%0VSzWe1mqsq5uZE
zxXUhyKzzi=p`nFs(OHt*r-X4%dY-gV;$}fJWPB39r}k6C@3o)mJCDmUe#}Ya6F^m%
z1PhXI7`-@P8hrS%7mAb8Lq}FAuVDeH#K)0HpOvcg49Fxm&}8{~pcVlMNW=wsCSioe
zgtD=l=q)0g_Cq;+NLmQ@`&)iDoBdB}Ns`oIu_4G*VWM_}*kM3uf=j2?w2Y_&lP0bP
z(VEgT=F=bv_lfa<e;f%F?C1q~TAZ<JN`;80A;pK`+27+86K3SBWvc`}EE$_b3pkqo
zWwo8~=^$5dZq}AZ84%_gKqy3WpfROsh#+vK+98Y){?7in?z0!rGM3znyuS!$DYr@9
znai3kgV^xPhfWBGOJaI=kl?|6#2zyIlKGWYWyLMSXV;*PQ3GO`3O#2R*Ye<0W{e5J
zqvi1~uxWD%>@VtUS{9KNP${T!7{MRxrYPT3Yz)oW!+RmD;|MxXHtV&^fB9=J0<ph-
zk$X5;9G(a9S^$FXQ0C4cdY=mD%JCp10&C@_s1cgqSn!50f;NG^B4&1>6k+fqXsbgq
zMUi=Vk40A(4w=$Vw>GWL&l+g4I9+2)_%hF7Ql-FY5t3H(R9LCpbIW5FTqhQ7`_f*?
z8lWYl0^&(yFAA3hX(|8XF^^e*SV%yaX9wIn8VshTn^8#&MmsS{-cV7B6d_!Q3aHrc
zw6QgjNiqd9<g{Bejj4})sYDcEWeu;_2|0JuVL*kA`O`IMV(Zx*99nn~Kz2KSR+nM2
z7omI^zne{}4;)Savzi#07Ly{Fa+nl7O*J%gPs)l;x={bEb=qN6Kr6onvnOzX0f$cW
zpO#FdNs&5aAI}h_hB566(WVOpcS0dVU48m>mhPO<2u*IvoL*EoxR|>zS8&{*By3nm
zo8wzjLpJB)){Is(CLZG5J;-q7ZroU8!r(Ssa)a<B45TWOf?ef^er1Sy*#d<V1!2aj
z)-D72u?<R(H~)$+smPi9%W$_LfLd9;NF0YB%jNWr0T{3<Wb14r9Ys(iT5)P8!Q#sr
zvzd9X6ciA@KbMOdpFtxEY`A)l`jzruX=|tjKr9G@@Q?6T`p^-(0kArYj}IRpE;)JH
z&mb_t4M?u_B`dTbdSK!=QT|Cr4{rl#G1)w_DU-MkB8tfWGt>`ODr8N&K=2c)*8q5h
z==5eYYBEKGR5~|S?VmYZ&vlvA%vbRT38<Z|p2sh&TXoxK9Nbjxi7EWg0alsqEEFH&
zVMNPS>-3Y~sxKQ|+D^b6!5GA72#%{!o1RHB16XZS@S-9kjAW%&Dw?>mt4N6u;IvK=
zRS6aZgD!{p3(di|toEI;jalqZUqZ%!f1y~b&9g)9ARsOG1(=~yRZSqJWj2fwH^O3A
zy-<S+@$F=P4sDnXN2Lvrwm}CV_Ym~jL{cgwEBU*^FfeO!TIkU#qyaz`!TE@>$f&hs
zv+jxqBFztQng5fos7cy?@)h9;|JheCmypfv@k$CTVMhT+C=^lcnW(bTpL-pkow=G}
zRo@nB(#(s$PoF@k=%}U2g1M$&+00TuegMctLNIKXHYR}i@Wj`}0{^weH=sp*#=+{W
z@wK6>3vqZt572-B7enEy`<vCADyX^)9ylMY&cy`$B3;T$zDY7}2=#=3l+`7vgoFFa
z`^R>JWs6w$Ajd6)_9L(s*e=Mu9SVlfMM5*@bX=e=)bO7MHD?WEEQpMpOioh&qc18>
zT2r;i65KK&!$_wS=^af7b*nEH`=?4v*#n#?B!4CtQGfOf)(;EP*?auV{}z~cfomwt
zg`Eep+sBA8;V%SBCQr-R*F>8{JBhkd8<blL=MeZ`ZVsB87MGyATjDbE5G)vzg0(>k
zz;ztyw+J;Q+_rh~`l|JsK7XMt44Dry`*`Yp!*+bA2Ve^*Yi`mVe;k>D#E1x#?r1_1
zf#~~_;`0`pBoYd@|GDCnmoHIYo4Qn)`j@QA&0)|HO%2~ya|>$FrZTuO7Gm5Oz%(I@
zMz{HAG*ON2Sw6)GXyUiO*r6T|XD2-AgO@%Wzf8xNs_C(Um*SA*#OG-hQ_E=$F)tS+
zHHN)TrC%NBm~dBvQUO5(TEQ{IG=b!jm{WP2LUDx|zG-d97^hc4+4RPA0_cP7Zn+IF
zxpNB)p^fco$Yof8IGtpSTt$k6im;YBtud@+m>P>Dgo!7_Twbmz349$1d`8y}g$Y1A
zsc|eF+Q51+Cr!P8JXOt94azz!0AObP|IhbO%BLI)1P^O@NF8>=AB2VLswA-J0O@5<
zoE*^m64*#R%U4S(5g={|0s^|)dNzeYgFy<5NdsTQ$rX|v3}-9RJZO!A97pc3Z`dhG
zbU0mO^BiP<PBQwjM)6J#fWyA%M-oleCbx^E(4fF$#zV@Qfe+&4!yrO(1MtfZ6DH;G
znWI)-l>Ks=OLrr$$A8#=VY&b=YCbF^7Lj!agvbta3MNt$OnOEsnq$3c*zq%EzkDwK
zDG2LBXl9q(E+UJh*%kZ&0vBxu6cV5flL9&r&8$UbnZ@u8HKBj72qJCaOX?QXgf?s%
zF4RX*lPW8egWxdkodEQKt1h6E*?syO#)at0x}^H|#1)`2>(VL~4=D%aQjkgLa>dEO
z&CVFs7hhpKNorMibsyaW$s(JMs0U=d+!PGo`C-kr)M*cQigE+jz+4w`J;vW85yllE
zxpShsg2NPxMq4WMK|5)5z#QwwLU;6r00|W$B5tm!o}(0&D})DeyFCbrh?gp8DTG`B
zC%OQ_2$i`E=J>PoN05+*boL1QgJ!<4YqP6+xP|y$;EG7tM5U&xDzg(Qn4*8gR(Fe9
zGis=etUgL%H<?4z3ma6!G_>$|DHudS&iE7<;W>H;W7FaW87)TXf6b$dT41OmM$M%u
z74$U6445qLzL%El2=iv}K3N8#w)G_y#;X#7w~r7fbOO`}j~{NkO3-jyAn@=a#PS5P
zoPZbEz(C&m6cNV}X)G8$iK78V>f{RptB6)(r(zSYg}~fJqP-`I@Dh(nk7i{>E+{^R
zpbth*D3Ab&hSa{v5iQvzz9EerQP$yw*i-5b*L<RxT4LkSH<r*U3e4tn)W5Y2o=?1$
zP$WTk6vOYqoB{Mnz2^T%+P$qenI-Fjz7-u+<$P8`C7aBIK5E$(#$a16%RrK6!Zt>U
zu{^y2%u(M%-(g=#zuy@DPKGL&v*ub)Wu_(ln=xX<=8G>PcmevIf<%(cxu_0(k_$%?
z=ogDO*QH2h@oseKzmKI-tpLoP0=Sm?kpDPt&r558<+9i(MsH8DVTcv|>i;+ub)a7_
zl8PLt9p?7p>UKsdfg!5ho+e=j$Dg_Wl|Ij)c=dzS(<`S~Xp{d&D3ON#)YLeM$cAU{
zu*z@WpJ69-ZDCT48?AoBc<wC!y7DVp#mi^sC9Q%^ZC#{|Obko#%+6A2>!JU{c_|TW
z?(isf;6N<ec7PBWas_8vk%x>_Yvf`6Hh%SQS`t}}O?tV6F?iJSy(O!SEu)ikv3;U5
zZ~t=f!F)_|UxY8<$M!r5z136IK)8aSYiAzM1aQ-Sc-iiNADg{INaJ9s(8RxMo5UO^
zHWIRdEuYQbFW)4EL8ZoL>NC3aF(v!OA2rQu!#k%0t%p%~9gbuooO)<h+kG=vA;B*;
zg0k^j#O-d<QlUCTyHiAQv@xr;NNl^f)Tlp}pJo9p$>0ceFklI66qF~0+khRj$=>)W
z5Mi*Hm7!@eN6@7-a%c`^n_<`a-6t>SCAerli_5HPi*IRfXBDAHCw;*c^y(-tUbEZM
zgAYaz$J?6Qy*rP=B8fcj5}=`VB$#f!dZQKL=tK94fZB;NT5$XV?om3QMmazF9e?}z
zJ3S%T%**$&PtkAHB?-3<>NCGsW_deb0AnK&cd2f(+@nbuqmYBe1x)hWDevFC-|l7`
zVvbeb@3Cs_`ZT4(62S#{Y)XpNyr<069U5dSj(8||Qdj{Pl92jButM-{R9J{z(%zaR
z_xsYc7x%IPEeC1BvxCKyOj?8KY2;$X#*5EPM{^}z;XKRL`-?BteW?yhrzzE&BOo!F
z_!`xZr{N)C%d;=bVRo>5miOWa?oSWOe7bS!Ng%4%M>i)yKe!Se`rzZ6vL3yXbe#r+
zdi+Zoa=pSj@BO0~P;cXoq1N}|B!?gIxx#<Yie}NRxO3`6q!}%WN$UQKS4oQ#*1BB`
z3~>a6q!g8>S$a72=B)NFDc$&H^D`amgNd|F`I>WU|4Xf9d94uLQ_rwJHLCefLlAc3
zJ!T}0Go+;ozQyj=vq@__vO_$<Uq?sGD8rG=K&NZU!x|cD`;*$?!?4V)BFcx7I6&|x
zbC!D$!54RpNv9^B@GcJLmjdkSVa3JKlz1+P%ufnO25k-sId=DXjzM>%uyO5RVZ|Q^
z(tv{<Eu~jjlo9Eizt>wd7hEby6#1inos3ResZt-qKRtCo?i?7&=R)Yu;PhsjZ0cjB
z7~|)LU;eB>{8HXsBA%PSsKq12bQ)^$5vI-I`-`3JfCT&q2*4qLY<ZzKX#Q<P>xSeu
z|GV}=mJ}C`Z_|AK;sZ};E=8^dk)*ga6sbevaD>>J!`dJ+DV=Slg56T2C%c*koz4*G
z$|q$WshjhNtHRvcgUc3``8&4NvjrEm4?TMQPK(H0d5bI6I|cf4)_W)Ba8W#{NQF(|
zml&l$MWGTPD_jny0_DBIHwW7?8~|^4aIdQz%HKwRJlV=zv0`or3D9T;WuA?nOh$Fa
zssiaM6AmI<JuVgUsWL2ZMro8+-N0xdQCQ$L^<x^slp{-2dZVF60?=T+=BTxYqje5?
zq_cGV4ISgZ%TMA3_O*PWsbCA!KCMP<xhcrzO5#H(8HNsxUCPqHMuNz^xk}krx3=Xu
zQ(Jqfy@6Ao@epySYl4|W$cIUpXysm&LxPnXaO_m<T>=horyn(ceZ?e7V|An@J~y?b
zE8&~#FYSaTDmHM#yYrlYmV(u`EW0N*E2HOfw)$G&yoUUOb1`14XRMCB@b~C*lMvV@
zOI_=HE&);}b^b~n3F<T^_T4{zd#wyCVyvkU12rN48e0~gVH5;1Lcq5-jp}bU+=vH}
zk`au<Bi$em%xD^^%-_5uqe*vmr@lp9qE+Q8$NR5G<K5lS_SS@;@rIi*a>SN*zOas5
zqbH}!8=cF;f-jVquyA#M6lKLLJ}mg)Zz&9(?QOD-Ny%OC3F>oV@MB~tAPA0+*o(5k
z$81PX{d0|8$Pth4_F$;9de6Hf@On*$wzMvO!tsakm8`G<t&Gof!&K?X>(Txs)08)m
z(`K3@?k8<5c;oqRu1gENHkrLX&TqU()(*K9O4nRSMJOkIda&O@)%B~Qiu=En>tOVh
z#VC}tBY~QNiT-*h$j?#)aA~Z7jvw7C(9+iAU~V@Bzm-aMih0=nUSR0z;-Dl9OUmzR
zG?A~qs*DZJLGskbG65~<;!w^DMUJ$mn&6)^#wN$Ok8S%~BNTegOracKzRQ};GOSXR
z++G8f2~4;6e0*9)cV(q<b_)vN{D4*4!&mW`Rtt7_5Q>D<l1WJlg+LPt?rnN={ZLwD
ze=PI61i>4=5&8D$p#(lXz-($VdhN!<!wIl1%aXP!rL#<8+xBxmP5sj=RX(IEUo7o+
z8is&69fTx(N<J>UbGz1XLBgL9WpI^8PDUCo&gQ2dOP)cL^q~;XxE~_L_~K1TLhD6`
zKbgJKEKBUNP8TLRTvabVRtZHB{mYNNf#W@zKpOj(Z};OdY60T;?xv_T$MU&po$X@E
zKPk!N{+%3ulJLrntqkw5tf+uWu)#I@TlwGhz44`g?M|4Zllk-XK>fN2m-h;utE1}R
z2Js$>hQm{;QA?v{e#s{$er4H%Yp@<lyTaaH;gouMxzmh`@*S&FYO^{e@JM*KMk`z0
zvw5x7V6N_ydZ{Wg=TCU^XY>E+g&C8n3|(z<+3cvsW$%vvqTn^UnM0eFT~wEER->&t
zgRl5{`h5E5i`|mgZFSHid7a(0Fk#yWL2^WzYb(ew_3HeOPYvR{oSt>p1+O*ppc|h+
z1X||H0qDwHqw>?F3?=pEnNux~I_%%+bFH>B$>r5GZ{{-9u)*Tyg+16lbTX2Pz|KDL
zW->8Z&EU_j|Ji@E4$c5u9v5c0fa}II?MUqd_58Hc_|=**%WeK6eE86EsqavUpYf@h
z0LjdyAX(BoGrKs~0;$lTe+^c+e)IMkzded3N#B)0qiVtc1x7!Xk}Kea)4w_0pJ)7s
zr=XG2&IQW4UuekCpr^aj?dj%g)lgYu9yRcNYiELzRvF;O7q#_+OF>YYfXO!j`i%3t
zqq_|8-Lr)L`9>xMG*r+9y@J`1gqHlgAts3_`NXCC=lYC|Np{svrKRF#g{#@^p`$Z9
zI=gGKYpqVflVV*DH7RxMha%V-&GHDp2W6o)o-S{$Qis$@|6th>JgtHpS-72&qY}?y
zOpn$BKTGTF#xhOA7TJh8xsQuy)sf<Amc7vh^0M$L6N&edxNa4yTv7nR6Ainfp*ksT
z&q;YmOIL2j8a|osYeD+bi2A)9w;xTP6v%65e6Y1X^JSeQu@-TcyMm$NOO>l-^vVo@
z)7o9umQ3?nv~NQsc@TOJMRiR8U=X0zE^}n-?$H`8*PXbq_}AxHoM{I;W*T6+V3E?M
zqmyS!UgB$9re9atQUDDT8>2~_3ap1Jy|JJ)IuzFgfP?+<2oyQn(qXEflrBvvM&2SP
zV#KdjuiM9F0p01vOeg+0n0M#b!`&5%65_oBKF;Y}+m9x(y?dQp7fCEvNV{rZ84RWA
zyK&}V1urR`4>aYKu~1AFm8L)`C-g#;cfsS$Ashm19pbLEiuxW0rECO4epC#R@x2H5
z1JB{GGlA+?bL6pV3sXEwym8epX(P4Bz0akX%D1-paMM?l{fKeo!~o}@dc3y$?y@D~
z?98b$d9)xVRr_iq&VGLV&C>3>h@4o0jUTTcl&~h!O~*99e*8cU$87xE>{qXrh>suM
zyrWU5oXc;2MqMOhuz7d0k!mOKX=;9q32TU*Sv?Ed2N_hZ7d@C8y{sO%(rnsuRP4M|
zAvdKNh1RQK@|a{uR)ud#-p5<JjTGdNw0E$g>lK*K#khB{$X!^XrQZ)98cd7ky02>L
z%{xFxr`V#-DN?rb>Eg~6zfSeo)z#&->0;e{^v2lLr^J`4AzfLl!lo$rLwf?t^|-O4
zXRqRmp+l&t*n6jz^onud#YT0TzL-eDy9In|Ua@n`qwr&0bHm?@_-opWsw3stHv1Z`
zT!EvW$3Fn?oCtgWemQu*+K;D&kn6qEPjP&L+T5;L3{;82>*A$Rdh$gUP+jXKb$@nu
z-#kwq!%;{wCV$DBxE4bwY5DYKc`5U@b?`?nPiX^^cka9#Z_Gv;>uqkpM`)%XQ3v%I
z|0BS5IDl6mB%i7HW7L-)Vv!qyNN-v*KMi<Urp6ykpTC}t*2inxlcW=>=Bf9!F_WW3
zIwqHsI^;V<cG#vgrIr#aXT1@ZR)AcBKP4oAe>4iKIkO%sot?5Y_rrh~oD?H%y?|*G
z&*-M~Xe_}35*QmJe9!bgumteGP;T9^H;6-{*X*|&FvEH#8_VsWdWqfja##732n()6
zt4I3ltk}i8cXNzech^PvTIjhFeEi(W{!4#hi1_vEJH|NL+mpYptG5%tt6K6zzp?|B
z!#o7kzg6()f|gD%1Y?cjq&Mrf`iu@}Bho3X2rJ+#_4d<1zm+7d3meD+LOD3tF}K5f
zY|Dv?_2yl1pa`El+U}OG;i!eWQ5)I^Eoi7ljSR)PYyUJ@7&c!gb0&Lxx^-|cz;}8>
z#{9VOtb~)TJX8l46<RJ};*-xLWN6alkNM?sTqb8nP21<XFD3S|i;c(G$O}3f<ZFF<
zBES4<Yd=Y{7Glcu4I8yKc|A3!wefP+`4iLKSsPz5Y20cV)w9bchAIr|Ox7vlh>nbv
zH@!;l&$2hAtw;Oo`(>P2fk_J;xHEFWdf_7H{05an6eB6kN}E`RN0s2j#Xc+d3ypnm
zn&@A<cuxIx<|T2YkKeclW=&~0#g+Q@C-)v0xPD7t73cv5b$DHrWfEFD%e4PSZt_yO
zlje_Vg~+S-mTg)&T3unA=r8@8%0SYyVn;sbw_^FEW)8J`PhXGKXugSFO3YjuX(p7;
zCYHW+Ms0}vo=!GLFZxiCe~=O-g)&rQ!JB61$3ltrEV`#z%&gz;WbFl|)g5eRK=Aqp
zqPV9k8<G{iCtV=%bMVKlxAKv56Gu&_`NQ}8(bczZca$cjzxT#3LFN)rX=GIqCJ8#J
zA~_c+I=<5CuRCdZ0GTeqa>DIcaq`+&C{I9KsK8RkpCm_?x>YzW$lX4N#FhZ(36{o@
znC`L%D)7s_U{+sTy?Tdk>+W;>QXciGL{xRl4NIe$)iyPc(_c|VE~B%tJCmtAjc&lh
z=D$8Uy}7$sb`lNtNtdo|0uz%~;O&C=<h@jh|Drlv_oc!+&spy#R?_Vy>_fVV!+re$
z!-~T*KfQW~265~WPvCUcslZ15+53(nQRjE_>DM1Ag`s<Ff+t2f7=U<nw>%N{4?>V`
zd5KabvM|D|w_e93!pu**2TKED$L4J*loK(Phb!+Dj7j?F2WFs)iD|Tb%Tvh}4X-Cx
z(H;kD{u`fw@uDR<_@Rfe`p1KN-n;KA&{;?QNhw+6l=c3!!458eyfZF|jC#V;I%RbA
zsr0KngaC_R!WgmVi>lV-?g;9*jC*yl3elvu&(}x~0w6c#hrUWi!moKUk<hQDBOV;h
z>6f6Agi<7M@DAaMBcDe8dOQ|frZNeu?zl&#;b$yy5(#%uHSw3$3^wm+_Y#e6Cb$fK
zsQ}D{+UV`U{k3Pno3mph&<lm<(%qxYym6^eC8RK;_8jC9#kGRvG#M&rLMff<PNGIX
zu=hAW?Hz7eEV9PRv1Ct<`Kd3UA<YA3;I=e)^6|yFue%Bd>%IZD4!XNI`ji&QtvcvF
zR-@?5OdOebDgy_oIxfYem~A9qHrIVAkn7OhXd&O<m1A<J6JC7%1QzCZo?H2ywqw|!
z{Ic@Rp;e|kMUu_oZD9tlQ8&%F(2&`7V|f*OX1TGVP~dAep;c3kn0#V0;?<XQ4JH1A
zgV%0J*3akJ-t-N{%kn@C5)}o}on7f%7Nr(U`hi>w<y{O97&?tX?KE0&GdALtP^ij+
z;{ieO+410AnoZ+Hl0cN&<*)7gc{wdEUhItfi5A@!*+E;hHrMLU4p!CCNPnV-@hNw`
z(A%W!!9?Sf0eV!YHt=a}(mMHY9?!k`v3_x9zJZ5B?p_MmR-e&F#zdfu8B??D4n_Gv
z8khIMS#H0*yk2l@lDFS`2Z6%J%UpxzRV}a_9KDT<)`rQA3Fo+l?r|BdX<OV)L+G<n
zP4X5JPHK%aV`sFjzJ3t<TeJ#uK<L<&^{4xSkL?%5>uPMNlgP&lZS+zzVvkN->~xd9
z2^t(H27FS$^f*UhA%_<{NT=LW73NRGUVDUFhogBvgp<NQO?s^`W-_b3=#>>zCO5Dh
z>}>{BzF#k0KJ6<b7(etC^XvQ)U5Ug_^qiZ=WN*AN-kHfrZH&gV*>rsiRK~a2joaoM
zp;Nz{pT<eL^@y!#VQq3s3KbWcYsJ+sbo&EG7x|Z)V)~WbL>I(13buUL%`lm$feqb)
zunU_;Ew9oKjf<y8bkVb`xH=vj{%I&3uxq%A9&2ZUUv^6%G7mil4ggS_$Z|2#upaG?
z23d~wxR^$p4B+YF95B|N;O-TGW7f4!s(Ic_iS4_lHp|&928K3Yei^!bX{XvGLmI>d
z4bzIR&76n`UaQ{1t3;AXV%@8N4GLkQ%5(P|R8#_<iLAGcOnz(Z3f;%HAEx`nRRa~&
zVEjHGtXN*DMFx;ANe+KAS#hCAZ@D^wm%jtd&X8r)(v}v|)F!G**YMg|8v4uLbf{wm
zRN~45MNz5$uQf;Qu?#>HZEp$S_Xit2`Kx;cdduQD{%<qdczb?RSk(+rK+Fr(rI{IK
zLha&7xN`BSC8y>$S;_7iL_!VS*7|s_R|qv)8OxX@A=;`3e6Z28@p{-3xXP3L&DUVa
zgQru4wy&!=^3Q})MfBUZ=zgtdhNxdEyOEbxA$eNJPKgd0$2dz=-dk~wf9lb|6rZvI
zV91h}No}5yFZR^T+S@s<qJis^ckf6NXkr&o_3C_Vopnl~eYe2A&o{RM$fzHFoUE>m
z6u4!&?^Vuncli9IL>=jc+B%uv@_xew#QvguIX{JO*1mcx`|gmm$h+gzJzeq1NJ8U9
z4<4P)2?k!=g&?EbvWrQTlvp(n3C)kmsILNuX36HK>fcOUkbNlE?JdO5vbA{51<&SX
zQ3LUfq1G2(S<e-yQVF&PIbwlD6P}koJW6Ci$<a_;lwzhCopPzL$NjtP`ut>heOk!U
ztg~0tC0w0e>+1|nN3IjEynP`#Te{_c@Ph|IfXI~pUxX!LBl*^XOOpDuy=-w;D#qaP
z5s<ELVG0_0l%m#DDXkn>3tfcb*Kqm9`#S*qDeG6#NV^4C0BN`JV#r~;)BS^|quBv)
zg5BR6?`}<IxdKgLr<ygIAm+qVvCj<E*>Vvl1=kyPv#Ua3Q99!_d(6dt$agtdemdhm
zpEnWnD!sv!sE4jVRV2qODyt4a69W-^M&0i8w(M5{JJ;mNuHkjfeW*Ssd@Zzlh;tJ9
zalB}?qE!$8{Ge9;chQpY5VJrUNa|>Jv^L&-?ja~F;1=ieQtZiyfrl-2CQX%CfA9E$
zY<}oMGH)BjTJBSx#U+f(qklE$BAdgfDWX~4Go@1Hq9vIgSJt2Puz;r+q7-JAHoVV|
zHF*4Ry<o$}mzPVP&{Z7qy~@sm6$zP3XPm>VYZj-*Lw#i4EDf{hd1jNDd6$zec5AJX
zaSFC}d!ZsJt+BSn=@gBc^#tr&AnlWaWA(>g=;3J{Hkgc=e<^ycHYSel&^|oCOT{b=
z6LWCec9k4ga`DPbiQ!l=KHI9_Sb_!c@<S#*V~IFe4V|DMULiijdG90uAxGE{pdr*G
zqlzF!LrimZlb}~D$0X{+m=GFaUc3l9zrtw9LqMc#OwPa5{5P=0c4-)+#Hg2t2o|AZ
zH_J~?BF;4(%idzf;kI-idW@u-b|nVJ`!9BZlLf?CcPwj8)BVX41S=I6kOMrIl|>eQ
zlKXY(Z|gXeljiQiaBkC{y1L67bc|lB^5L<Lu%Z}S$E9RRY7<V6TU%b}xhD<bLS+&3
zc~z~x_jFvmM?_78&6$o9>%htv>j$!-6iJtU^%K!#1p4~&zpsxeY6whs^k{0ah29XT
zqKSlS@a@&I-c$xp-1|T4rMhEV3@usKMnJ`y#s<)t?UGwnFo-18#Z7#qpam`TBL<ge
z-&<atBVd{qQx0YGj%=cL+))L@Ml5O_(9fgYdf<|p42z)T$my1p5%-=iPcM(WygsXD
zgy3DvyjJalB}Ix`%y2Rncdak;zr9!FRp1Q(yUNH50cV5N$>Rg5+B1VhN)ooWuoM6J
zV#;&(LCqQ@TLw9QI>8y(-k9u;_)z=Mz=M%Q`E<9eDkc6)b01<_+iwhxTs6T0M^Aw!
zGuamfk-`@T2Wd!lFrE63ViMvn@iRC+k{yS}Z+H(c`hgTV%_WE)6$mIu58=*%5Oq~5
zp`+A1=OpX}uG_Y7Ykg}Xn=gYtPV1BP7Q-Yal8w7M#`i1Lt_8e|Vc$5GiRpJ2`ppNJ
zeex&@5Z5yXCFXt*BXDdY#~;*d7m_yV8;XEUNCrX-V*5|$CeIAcYI*^JM;K^o!W~$e
zfnv+52*pvX6bvTa@zf4kv+-<ecS?!R_Qv^&^Zp>apve2T5sEY(;^$r+Nbj+M2c|#h
zEx2-?Ep_=>QUr~2i?qos99M}OOM7!<O7qYYq5Y+AI~`CBFoKp-Vq>U8cPB8mm^|U)
zUX*=VgYHA6QE=a<da;+Y6QTauD_`7jp5hpx9P&u_7S6PmHWiEM4`#9eIma<*aGc5R
z?i5*LGTM1jx;2cqHp-*@l2{FQuz}WYt#oSS8~A3*AxeWeZctj`M{53fIvH;tJoUgO
za&<0JHqcOiG7PuhHOQfa$kQZeZCDvHUxO+k6{Fd>f#vc^@{DF;iDrGH7V;uVf;{ja
zZw01>x7~x8&J<-?W1nKC_Ejwz(i*MS`Lra;oes;npNCqK`(B5yS@^@P{Q&nTRh!<U
z$EB&>tzC%%`h7J1Y}tQK*`c`boLqS|6Kkd8-Egm2CXBNB#sd**VGcx6O75^|M-P&R
zX^>@F)3%eZ?H4;?Mfb<u3aH~-+bDhtzPrpR`y1&{WOA+xtGgYMmS7_uGZv?HfBc0`
zAugL*^q+;`*`CH$?KjWtSYp2~@L{s<`5AkzHO(aL^$HNzZ>m)XRPIl=hCV}G@6`B%
z?M1zr&piM10hly+M=>u&o&NQgnw{|z0<He7CORYka-wB$_g<A@TE_l1T4`6`+VN(z
z;m&w>yg4bfpGHO!ue<NYQo&5Z9KFh#3ga#^t?vm!FK)^8<rC1yX;KZ2sk1owtW6TX
zwQR|XABDML{c=_}mc@OL<RXe?jbL={dVNL<Y9<U%7_)T6SyjXsWa<D-;F`cz;m`@d
z>jNO)g(=-cv#pKie{)QgWNfc{JA|K>V%8ip?-(Z6tG(?_Lk^m41H0+E+FL?j${6m4
zlj*E{18}bi!18^Up#(DlSw_3#0$T;n<t6T?clO0mfqduHn{Bck`p6h^t{d5layixV
z*nabO_7sAnjxg)@Q2N9R&LQ<U6P+6KC`pG@ayXNHO9ck~2bsNuuq-b^JL%<%<$@7y
z{%vz`EnSyTL_c24p#ah3@GA+F>0vC;{_*i!4|FXF+Q|dVP-1Vqwe5elw=t-bom+A2
zynEXB%;tv|^PqgnDuhXzgX*aX+!6y+ktXeV={n}U+mt+l`r5dbmH~=}7?!h~D4;Br
z4i31QJFICF;|e*7yM5p!CYY-P*Wd0ZTiM2TugqFSAiT;+=38>$4qoq?h8_0zi`itf
z_hM~(Yxb0PQ0^hHyw4Rnfn2xlT?DZzNZ&{aorC~_L+5GGLp4oIo%yU%8siC!P(IK;
z_Sc;->)1Fpc)J{RFZNyi85XbD?T5cwC@4R0RSyu<|3@C+*Hm-;*jFhqKH3jm)mVZg
z_0Eo@+Kca4fYF$kswfHaBSFCUS;~`Smn$G$_a_cxU_vNV;<-V;=5N#(xDHUZiFA@>
z>x!A%*cFw@5_3{P;qfQp2!D8kof{VH-$v8VH;}|u;|&hOZ;mn3c347<V)i=Alw66J
zy19;{$eNUdW-mxF!jvSH-}~Rwi#Q|IFDR3pqaRHKC@rd2-5G+B;Tp<N7nj`LcSEmj
z_>7GCXvR|sO-mD~4W&S)G|XP??QLV(HfNEL@zB=yLPQDPP5#@&O&Ahqm(99!PCGZP
zjmz??&f>0OW){9WY)Qkkzi|%t$KWtY{3nyy0gmDJsD<gP7jG5R&<vM<tE7}^kGiT%
zW!UH?s_F^=TAfrH^hj?s;a2zOv`jH?Ny{ND$vuAS)JxzS3r#!aSxK=3cHp^mYXZ$@
zbFZX~AKv?Ubb4Ccrm#wL#@d)jk`yH0EF0Y@J_$pyuB)!tqW5I6s@LOdJn^L4*ac8I
z3z4>VB7QSvgKQ6ylG$HI;t!A+|F@<Z^DWC=?xxME6fHcsBrR`+yI`aE3)g35)=4@(
zWH;3RIZ?Z7>z%;)BY+(`zCL+UY!RP`AZ(pczQ)jTk6YlN75{-b;dJ=w?)0UNJx-A+
z^R*gvJHz1xjSa7<4)qL*(P1?5l>~V5grPYU)Lg`Ch*98GZ9OT};}R4K#-DEK5$n@b
zma7zAdph$UaZY?U1PfsFNgj9Y;+Pfadc@~?NQzt??%W*il|MW#UHIn)H*leP|Gorr
zz<;Vj!z)cw3!j|@kZx$$PR*uz2p(-ocqgLm*$lVOCu$*#a2kTG0B~LL^uegDzpKxm
zk)mr`;~hZ%Yk-{`R*N;X;VsWjaHcvl{`JLqJySfVd(_EkGt+Ev+NF~oloQ&dJ{V)g
zg2J`k77JSWG6`C55cmSR1y&z^Ar8aZ_6zF5bmUj#{YkGdI3dCc^%_NC_YL#ER=^A{
z`;jQV181KYolF_6h15RXFQIptutqM6f_Cg9CX2QK%B?lFc<E4y&ap^?qh3azIF?6M
zWi;La7v5+OX{-i3ZGB;<sF!4`6cU}gm#htX2SqmM8yt7eO6=s&`#`u=`bD%EIv=MN
zbo?PDMk0Z`$)P56=^rQC{otN*yqz2Jq+Ww3j~rHf)CTz~O|4uioiX;8H-xTPjU9&W
zWPVb--Sr|jAQc`h_^I@VsqfpqSV<$uBpw3%>zC7F^$$4{H$F>_Q#?&<E6J-s*1i_9
zF-6rt;qhBPXx=O!Tj*N{UaMDnB*t0+-6pa+Bu!z;U=zmWFZCA>LR#6Yr32ng7y|}K
zIr~-!4xapDIg^@fmhNtE--=mSko=ezC@vISaU1Qb#6hEUH<uriSBQVW<KC0m2nBZ#
z9Q))qO8$=ns{h4KFK1ByfpF^=9oVDoDF_8^;?{wWCUMLxrJY?o0W)c{K$0n?RI#%Y
zxb*y#Ud0s6Egn%2U8<iLvn>9pm#!uRU-0qhK_K_`Paat%bb&)tfZWM@c~4H&1DKE=
zxu^10#WA+tDLd~)IIRqw)y(tE;enwii80iK5n^u~Tem#>RDBWC=w$*1v;kH>DVnI7
zxF>$&ptXX?3hN}usaXYUeJNEs>n~;p@YDU-s7X3t>^c-j;Mv1CU5$C}d@jYNG}E8c
z>CXSDcS0qEzI;@gN-sAo@!@`jw)kY~HmgdMo77aA^{&ZAYH}LCWTxZD+10x{N7lyE
z`1js72|ZNd4~a`bY?Fo`04cSlOBK@CGWA49|9JC{P&mm8^H}1OQVKvas!)c3-5#WE
zo|9du@24Cg*doGVm(8+UUnMqj9}8!nd`<Xes$G6BWM}SsRoBMhtrs@%9CQv=!J1M>
zI*2}=%T+XivhJFY#CHIM>yAxQcpkNYr134(<jKP9?RVa6J&|f^EkNp0)EUp;jmB4M
zM4h}6BYH*@IRwNo35V=`9{`}kTbe7`Yd5wPd;|~vVZ7Yw=?wx-f3f?z|Bfabtj-3u
zYJjnJ-;0sV{lMf8M-MhelRutrt!<_9u>sBsZ0wqCDYD=#nFMRv(ha33TOMDN7r*Vh
za33XJ(SW%W>_PkBokZ$$lL&K697)(koHAK9UYD2I+S|M~83Yp18cZu=mTwi9g!2xa
z;{IlW^UnI#wC%&8lNEVxTE%w5JaEIs#5<+{JTL8;bVV08bQ2l2bTmk2tFKjga1WRr
zwEaU`yOypTDt;)`5A$^MFGRDB5YYYnDx&r)QH%I2{)z(GyiN^(|Ixtp4CVBsRZ?XG
zQdp$i<m}|L#P%y#Z57yh{ehUvfi%>4;+;962WtbLzB<cRF9laY-7ldRIlc|wDX-RF
z%#B?nCUEP6!ZuG-l*|<q*}C1lZXJFo0Uu5fQk;3CCfmKBE7_r^*8yf~6U^RtCT3ex
z@WK&7eOjJ0hZ-UBU*0Y1o{y;$M{9;!;t|D&`glqEHJH>_niDSW!dhJzII#klD{tTh
z%+HqEF*SOr?-V%nO;B*tFm<jVgx+jRKigN8KMu1|b4DPVIC4=UIV4QS@miwFbLCVF
zqMu&AX@0T%&aCW6$|{@HO^#9D8(p!&H(A@CjyGuhjmU%lORcpn44-`n_W|e>c1K+n
z>0kX&+Q91;ilGgQj;vykdoCKAsq~8G%8Z#r+~V}^6=9j|<E!z@$=y6h`*(yW+A8#o
zLIrOB94`d!q>Se9-A)oBUA%Z7OKo*67{1fmVxs*Pbj)f;T@^E&MzNhiyB|DrfBq59
z#ZH%!AaWWG`14Ff;3^$9abj8<G=!d0N>NqUzqC0VQ^A>%Nv=nt?A*GEz}q-V#R5fS
zCpjE$aqAtr{q*8`vJq2$1TW%4By09=d0vlG($>2r+0~n*ymWKeBpb#T@G$QuL6~#F
zQ)t=DO{^=Cgu%MJl$3}fC}NWx?BJH#Wa%CbD@4LDhP~H@hTat|y9pw+VB}A>C6f@_
zJ>d-#wGe(f$!@(a&9W%KV|x9w&1`sis}b0}$5;T(bAVs1Q1H+$ki8|L>M`VQo{9FG
z9P27Wp?xH1TmkMr{HfJ;t8Wmt1hNcJ>bXD-pq3`h;9XkC4@nk5Sv);{wtSO1(e6Dd
zbI#ia9ko1(p6foq%_a3ZPo0AGyW%WOQN_IrqTRkzi6hEZ$@VB&2ids38?^9FX?Ono
z%y{<uoyXC9_$w<)fh^{lDb9=aE&y1sZJKpUJl3{l6}O`VZR~Wr;@+luNOmN2h|in`
zEMH?5VfAABMjzL#3b+9sd~srg1O%yWP{034YXnYA1E=0kYQ-%r@`|nz&Gb*(y>Z-o
zFbn7Ibi~U`9v7!g61Ej;6T?P}hJDekxLaCVR`P-ay&S$DM!XWFGj88`qk+2B<wnXn
z!V|*Ag-a&G$n<27%ckJmKLqmN0>T4ccK6DOl$uBhP;cHqKm+mDW2{{kf9<#;-D-4S
zO%lD^#MTP<lrha2Y&ZyI>gGhZ3q-wO^YOGBzr32-{@HX}qqyiMSAf|!;?L^{1X$<P
z>0ZmIm%|$x#YAg?l{hRl2P7W2!+uvbOj!<j2weaQgHt}b46150o0bSo>yPNU-T9Zf
zj6qeJnV_De?|TgBcL52yeUvh%amCx^;?@B-uZ{Lw2ce@HMTc%3&C&IqAl(wRhIy1m
zY2R&Js(tj2e97RO<;Gy!66lrSvZrpviu}Nr0GQvsk{t05eCbE7lq3D!+tHEV{}NUH
z{V$<R{J@uzi2L4R^1goHONiOuy^?(J_rJt>`hhR~$P#4Kz;~Ys0Qdu6f)IT7O5E%3
zf2kPp@2xmj>HAkgFZh8k{fIoJ<H7ge?ne$nasuDK(hqIRk9>)B`~K}HwjcP?k1PR*
z;QLo93H|SFFks{duJj{&C(i!<l?1on{}LPX{V(wsf8a|$awUP&_pc<X`Tmz=x4!?S
zRDXU~GErc@|D|LFzkj74**h-4cdsOtR8D+6m&YwA3!BQ#+N$L{ze7E~e+l{ahb_oh
z;7g^6=^V^EsoB0@kzB=Ks-cD@H513C7}dGdQYvf&dhvO$I|fo=8=Zx^jj9<)SzA&j
z4vHK0T;tI2ebF7zYk>zH9TTP#9AI2Ku3(|#beSO{eY3WY__m$aG$BhUl;EFjZco>w
zcsTv})9)dz-@agnwETbn&;L7`uIss!%FAF~(7n!6_$h(I>;KBTs{Kv>h5zJjCFjCX
zm--!ZTXo&RAY5GG{uQLCX>+Yn>tk`$e{>^x$Y4$PfBSiqsd4t=FN1Ol+dT^cpnw*5
ziu{L4s`^C1JX)`)@%sbTtQV?B`8RNiTJ-8*DuI`BE3fk19}>RKUDd%y`Sy!vu)!B2
zEh(hIgHwdPU(l+!#+{GcZjvwH6NwEL9&8ZwDEf$~gjh{7zuiu$faZ^gY7iL+R)J)8
z#((@{OKvZ1<{HP_J#Zr76QPRZ7Btd3`blS-yQOhNuB2C^kg-Gggmv2W7QeZmW9<VE
zpRqWW;ndv0X%SlQZNHf1jSVLoZQdNCO~GOP&)W6-I~&VE<;g_ERvx*08(a3$(9F`D
z{_f9jDi)YWN>44|^wX`{DDCOB&qn9Tkt9Q6JriQr@9`1-e0Tjte|-O~ua=*sU0eIE
zKb2rT((W}m)()L=V?ChD*-KWJw~ykPrKx4?UGohYt-wWB7ub;+O3to@u0%)9Ld09!
zoWSZMF{v{bLlpilkhV;OO{_75_wGGXcP4cLb@I{p=KAOz8f|+*D`ea*ahAX^KSF%G
ze1D^3Od|(*$R_0=)VkX~h4uk}f!za&;|0QOnqu@-n5(H?io*lvtG>87*6#}~3BR<0
zCIO?#R6cb$=E}uNRP-o4P)J0{OSO?)vjR{d!n1d97q|(%P0zDt@e_;`cuG?mknmlV
zH^^>t^r`XDhp<7fI+}rN@V)-sH>81i`~UJA%>jl`@hHCcEv+}~#Owx*u_)i7q^)qc
zj!qrXNb4yCIkkmR==nZUX7@LE@w{Zc>QWTZ0xFX`a<4;-glZ!M`LW{%dq@{9E$qVh
z-Jh4<#jDt)B)*X6`T9XpuY?NJ_-wAAuESpZ*;8}${MqW=vQ4QGDv_yVg+?f&>1?Cd
zIMH?~wCaHsc@jw5n}zOa%hR^KVP~rB=gJWp4bBk2pA&^<qxN<EY4Y`V^8W4$S|v0~
zuNY&~-zy!Q0Ee@8$7gyZS_DgceQ|SV>K%sP0z%mo-v~6@o?b6en*CiYl&=iGuMi&U
zy@T#&{+e>^R4lEO+LfnLCj&7t>m&6njs713OrATG$SB|r>!`02s?b!YYHf5T5s52u
z8z`f016PEGmN`JUO}(*4YmSA_Rq@hmXJ3-fNu6rnVNU*bS0mYKeTZ43Sp%E2U960B
zwa3qwX4v&$Q;t2Sque`n4&%M`+31zVBs6bY`1!zKak|Zfn+eftk7&_V`4Dy+bl2SJ
zn7*O&vM1AAjUO5RogFuAAU&!ZG&L~Mw^fwO;)l`;TkG3efIY?4go+nEYyOQ@pT0&(
z8SUUh?T>gfV|`ZEx1L}s4o8F}<s#d7ozfmNw`&gbQJ|Lny;*x2El<&OBN@kk@H)5W
zN9P7pEk|MLqz~qM(_-2tWc9i1-qzX<Hb{M}!9sB(LR>`;Xpd0Etp+OHv}gw?^G?kr
zElkg0kF$Td9BG}A+<5wOo<=xsEp=UH8Tg`q@9Y3?S8^BRM(FYMdVcxtdQ>p-zcnH|
zJST=$a-^QO2c*32FTk>A^2<`iEB=BHX;y5p*^^l3G`$u_Sd!NYDikZu2+wvr6~n<W
zBi5gV?E{XCJhryw!J}W8goE{1`Em_ikQl|2>ks8t%@fu;siK+bGj>qFnu`M9UhK}$
zg5F#xNUq<qxlgrNX9tE(Rx7iAYu~Jw((ZZuUOPecy6n=hm~2qi+vcgQzi)?f9cW(b
z!Vv8JTVX~xEatjS)%5N75-Fks#yd=5BclFD=OZVsYo`Cl*6x#Ou;#xqrYsKo)>suN
zrXWjKQY{obbsYiZ36zdEIf&=N6kj_Ex9g_7LKOh{AIIa{SKgVQpx#s0?$=ED%(Iw1
z5U^1d1{1Y?a~AAdx*d+*i)ejjy-Bt*4Iu(cC#4a>dTB9S^GD@)rZctkd3@=ZZ!a?o
z`_AaTbEw8@Y2M$1jF!p~Ly49eteZw^>kIB@W^vP2r#lI~wCHoed)-Mgw|>8n`E5$`
zlc8kAE$Et%_b<}xn@%Z)-G}Br>p!|}(DIE(VuODa({*Ihb9r{eU&;Qn1^jh>_3rwE
z#B!%FB#0jTlI?$>JpPxF0t)(~v7%lBlVC3#S&Q7{8S0U)4>kHn_vuiHw}*xw5@S}D
zzoz8E%ZcyjhCFiTyseqsH5_7PBS(Adb;h0)P?4&$Ic^16YJbr!`|U+YlQzegFk>sd
zzXYf6%&*zgpP8u-*YD+F-z#(Q1ll-qHhK{}Ajui;#5WeZy^EVBwI*=<sS7W<@MZGZ
z(+FcDN{A|s*Yo-1qO^~+&2;I2JTkCrxJX>o2&F+p5)q3OrHBO}?6CnybzYDEx(v&~
zVqG=_T(@yRld(tD<T4B;$WaPAuq<;ZQ;n$q%LUR}4Jx(1rJLVC-iB99r=+O2Gspav
zc2+Bzj2!WAD`VS6zaG)BN;&w_Yw=DUze8>QKKkeW)*qDNvuFMoKS^72j@R??fvKd8
z?QRoyWRNl4I}oZ_UlFMlLc>b?R%Ez~OHrx|(8jh`aU-{*F*Qeuak5A{ACjtn)7>{g
zg?v9%0{plTQZ>e+R(3RA!0$NfH2{#C(h6B#i`H9R3V~G09GC4nbOB<b%7Lvy$aJ%3
z`+R}t<CG!xv3RTPnaH@N_08OQ{MMAGY<1%qmS<LU$^um%sOhg^d;aEvL1*H-RawbF
z4T<hzWZ^!sWG<WVB+Gi2#V6$NZp`K=4X}Fi;#(>uk@UtGz@Agl=S%#u+S}rB`uNNQ
zls08_DB<SY=`Wqmrv2;mfnMXY_!g;UmftTlMbBii)|HU0D=H*+)%3?RFFsJg&Fl3~
zmB2$%pHuDTZv^!DK{~3=j{iz{-TQ?8s+u%qCzTJg;&#}&c7<g{9}cf(X<Yu`^*-x1
zew})(*{A_8XpD3AXP%iuEnx|{DcP`E<5kToV2a^;Q2?<<euyFCvNwP4msaen*J_`q
z-C%E}Ewy<zMsei9n<;|b);gT6QYCir=Bt_ga;@IJv^w;&&QP%TR;YTL5DDJM`U_1;
zFfwcHjeFE8-1bGY$O@{ksrJh(kOADs2GVQIesYKAG}35duxhOz`?)+xKrYt+SAZ7Y
zU0t33U;p^Wr%#{mUVS{`{U2WW7aymmDsb<)UfOLwvO6=))BDzAB~`q$uRs-{AuZQw
z;z_#NP(x+8Y9Ef=LJM@X-x^le(SE7T2bM&=DoyYm4q1H1b!9>aPsW;@zAisZH<Ra_
zpYf=2E3<6-FSpi%Gsc0c%`^JuA*Jm=@Rv)nh%Cx8Nj0Uu+1c^U2<kmeuSFbBU+iwK
zN#7bxBx2MrX<PH=ZCAz=o9wQa+duk+E(sQa(~w_^Bx$%3e<mz@hE05OdF>DW8IWhR
zrBkj$-vB_4cXHdYDGW=>Xi!#bc-%W^k5e#zFh4%Ic2M2KO6$*3UKyEm{W)e|X!Dx|
zSvB=uYPSZ!BKbq7w~*8H##S@5H@J75-6!aOb1k}Tfw-0E-<=r9>jI5@;~S%&p6|Y>
z*i?!GXY+R-ZkB?Xm1}U@({irSL5&kZyQE4#mLh-2A@E`W8&t0XjGlX>;(HAp)dT<-
z{WodEIx{{s8FK`RxU>!Z$txl6Ekdc%gc)xsZo7+*POl>8ksvK4ZjS!~@vT0kv015>
zUe2;iE6*>aO^#z;e<Z@-inaBfiAUS+0vv?$MhRn9FHi<~?vB@AJeele&4MIGP7u&0
z?{ED=TrcU_;fF<vKKB6Pstg5NviLV2-k3zt1T;~<N;rsS{c}Inare(w)jha}!WfF7
z??U(BYU_IJ=D$P_SR5_4vGDULk3OJpZbCh_{J(5qGbiG4h848G?Rb%YC<@5Zw!=ej
z|MZ|V?dOMJxEDmZHHr<SMPZa7HhI<uj<p~xmoxeXN}FAN6GhQJSQD!zP}s<jdSes9
zHHwVECDZEv?2~>ugTPCTerMy#%k*mdQEJFvYtX^CKE>UhJ)Q3DIq`MbINE<M%3Pzy
z=8ra>uZ=pGwmh#|(=ri>XlnrHiGOO==f76WaMrNBEgm0H-k+__q)f`=w>2@}Xh3fw
zg>E)aw#Ntm*xw1PFdp4|(%hLpxPPoZJMxZB=dc|7LmQ9li-ZQ<F4S_+0I@{okG1uK
zm!qFMBi3$3>z}x?JKE*+;ctBJ28a=ht?9J2mKd%$k{OmkIPdP<9sN0ezO`=!XYyXV
zqbvOI43NG$K7Di4GI{M=_NWZlh~+O`ZFq5q$LDxbD{xx|OJ}Y{Ons$}`XN}2TH%Fm
zYr;TldBHMu)nJEyP=N2TXpey}O^cW(;UXcKABnEs6?=%U%ci3=8&6uPQmJ0ZIQF#e
zk|eTK-7zvE3#ka`90%aKPpsW)EMInZ^wVpGfbzjI6$eLmqFCFb4qpVItS$SExoPVT
zR)z9`$tPm!gWd6yO{!o0Ua9<Ie!_E&zc^OnbIOsdl&;R(D~PtfY|a^L8!j8;v;0!z
z@XB${BI23;KAIms_?egl<<6j!;z%%10T8-sg}Oz_L*?+TzP<}RjuJZ<gV9VW@ZYM|
z>`obJ4}T_>wV^_Em0((Aagf#-UtPvag*m*tzA^b@ltHYerei1#3cWZFCGbd&BVJq0
zh3x8J)J+a3xB1n1-CZzxovvu5Tl4o(N59q#(E`a#X(iGtbNC2yw?GZMjng{_phV25
zUE|Pw4>AfOLnvGEYJDa5&oCU=ARozs51h5Tu9XtPRNY>D)a6Wi_~kSM^TbZfO}7uO
zQM#|FmEN{eDovCx++O;XuZvt^j@2JHRun`<t}309GRWGPpOm&vi~p`TW?UIE))}E0
z&SD7efR&oYS`XNLbUo4#Vc=EVD;-=F&Wb^d(p%r2zEH$g>IQ#%pz9k+CoEBdHLYvA
zMRFLe>1Ins*Gx_Z9$Mzp(>)Evx<wi6xyg(7YxZMLJ|Y9Kr)PIa71XGSrW&6h<0wGO
zlGNP#`pw>6)JZ^MRXFib`_jF_CWKl~H{2=zUJy8onqHSBQP*0u3}!g;^-iaflisx_
z;Ne`%v$!LUpiGO5U_8&$V<nli;A&pJ3~ap0xRT&DrwzaQ@VtwL(%KG=dbpx<iioB2
z5*7H&@&6P~@Vem+{_QjYxEwU_fBb$fkyQimG{R_{<MC`aUn!?;%FAsOVsm<x9)dn!
zN3qU1ST#5*j+RBbm7tNP6FRG+URl*d?==$6oWnKsYO<mVaO$WcPIvhB2)3HVsVh%}
z(Az^W*DnzXBYMLg&I!7WlUyDB>|<|W98#$-ae;wCb}ICeX=?Xcxc%o`(NFjkNnG?%
z!WF3JjR@*+blj$V%UX94i$=?`aHXu4Mh}F)a-usglt}+freoGrM+%r5A?&Q{Pu=1E
zui-o#*<Lx(<Ew`?h17ztT-Y=j<o%Qh4vpf~@T~ant?);sG6W3o^Vhw!`;UsRui_yP
zaSqONa+3ZuEPs2i%y4c@WNYSERy4@#KnI#|!;o#5YoL<6wi!%`cYSy3t6C=M2paXP
zu=;Xzep(|NB9<+#vp-hy3r5xRD=}TqD4{x9OldU5uZd|o8h>3Tsv~m*VM|Lat;-@f
zT~m|Qta7s8_aX&y+%;TWdC%`i4tuFyQ&qv@^1}#`1_}L^lx6RKmtozUt@&55A5jzb
z6sZxdFe$6*NAyY7%f>}n#?NX!TQW)CZ@k(l(7)1du~pFTw?V(#g}qFx%P&GJ4f*q0
zz{{jI_Fv|;GlI!1r|m6jyPN9RXkD#-n!sdO?byU@dU0^4*IFHzfkqDuG-{5c`*6!S
zWi_zr91e=2G~%tE5oK0hHOB$`YWHd!tIS~^8%l(|HdV^z(~J&ru_+@`F8v$kcD?j0
z&>m^Mh^q!YQlYl7RRgQv?+I5;Oe~y(-foxgi3RGtHaX|3`~M)LN9x7*q1p22RdEE9
zU6sL7tDd45xL9Zx$&^@-VXSUL*5=3WFHs)`u7gKNAn8cYKlljjz*Fqg>_U7`@Orv7
zW#jY@>MrR421-zTYaS*~Q?;;y`Et?Bq%b7s-~CQeq<E=@Fzcxltf7z{q#|A~frIDK
zWatDZDN`<&h53x0Um3>Xzk(Qw4$~3i+ac4+Q%WSN2^0iv#Pw@R_H#{KdHdbOy$$b2
zzu{YvII+mBvxS_*SFn5{qt#p{cDf40M14-Z3f~luYSAvgZw-s7#M$nrznq8evCfr~
zo$F;_dfKEM9@7tbSyZoR-cKcmd0PN{Tdw_1+`CoLfcuC%zEbY3p=rn5INEel8y+Xu
z^?c>=2HwN)2zu%UXl5pda9R@{$1U&bdmOomBk~S~PxaCuU!6^mfYg*{<Dk<ht;g9q
zSKh15<|8RQl!|-h;k%-i(gR>~J#OSrr98~>-lxlIb}|7?DWEQ;lPhc869?N`Fy%mq
zXHtd65%WS<)**`<C6VWKpzgfd`g7n}l@AKN$$T-~hPWu*3$5&S=iLJ8ShM+u<2To(
z?Lc2YBEENmPLHf%k05k>ioCi)iri7=Jr!iv$v<@DxjbOtp$+P`!yy`@rysLZt%2fK
z-d%gD>l@;(H<{Mt*#;ueZ7F?Fo0Bz5l4hqGI*FJT=W(LCJ2!$-g3adQ5Bcz~*5cZc
z9h-0KE?36Z*ztj%RKl@GD){(fXD8oKrPK!3WH4tbJ*d#S(!Hk<rrZnWq1>~d#`Mi^
zInC%r2m7gt*A;A5lJv17ZZO?nH~A~LdNg2lBlxdSHY!V4*R4sZ`0Jo3_f~3pZ*-#%
z#mOaKVMWm<t&!yU^!W}DqN%~>R1rjFHD@Q%9k=w6rvVyPRv;XqfFNf{E)ZxVYJ9!-
z8i({i$CNeQy#8P;VyC@g16myzq}QC-3USw7Vk;&~uRfGvdhm#VqYi&euj!JHuV_sa
zCI0z1Q^dS<45q>LMZGox=dXcORfJBa&$Kq$r1-TXt3dIi%-!BuzCT~CnklA8T7~-y
z@;teYpYpz-QrXi-nam^5xgtV9?cy-Do=GdxIkgEoweLGmc77d(K#5<p=hMgOYVPuS
z2G!CpKqd16t%$$9sbVst+tPj`*K9B$;c3v{G>}l{SQ|6+kX<gCnaLz+(z%|4U#r&U
zJ;Eb?kxPH4u<7hZhmU{|LhgAwg@SsJ4bT#7s#&sw@!PpGgZAWF#P){~oS%nun&Dg1
z?S!-DbKlLE64n@!Z2@TeE|uD#KS<1$F;|Tr7{zJT1a&ON2hHqOW*4$?I+eq-d4s+v
z0Uk5NB9!(Gt&M5JMBm_Ja@MjMy(d0c4#5i}vPRbT=bw(^RiocE@oK`M43Z<J2W#wH
zG8N_FTb+`e1)b6kIu!-ALRxYc>;Xt=;KI0`cn~YYKq@aB887dUtOo3AoG7+BbD1*u
zXmlMPw>(5x408XOIXDwbw!yd4S~Gzm;WXk`zpr;d{+3gJScKE_Cu}R>>1oLU&|aXO
z${%tpUTojLcXxeSe*T*W(t@)pYk#3D9EIl_8(Y<L^rz@6b4yNhhi4w^&R95KwC|z%
z#KiXf^EgOtnr44en%l|a367@Hv#(1d<^73KBimblmTv5~d{W)79km-k0i{zhmp&Aw
zd=>+rh6Sw?H^@|PCak%qFKMFx#r@-*`}w#;TGFE6ma1C@9^k46^f;ZH>vw8{=@1TW
zTJL)exD}nJX+?no&$a%YSznoK34liD4S(7j#cYhnA)bJf6DDd^50!oUMWRqMtQQmA
zcMGebfCkO*+9o1zzQ{v7k?w6S62;jwltJLN6^&`W+6|d;t4*h~FtnEbv+-0k!3P=@
zXaYS?=DBAH^jgf7@ILjEL5wgtqo_~~HN$BrNKbReGJI`zElu2fr&S+ijRL*T#$Ij3
z-(_)$%sj1RaHGzT?=DIWFCth9YfjIpySjGF+3x;UB-PRAG7c6s;n?En@=n1xSFf$8
zQ*d7>!Ue+WEexEnG>AQ3P*83l>o0YsCqtt2o|oF5UaEk*HB%^px;@$5`Xj+eXWwyz
z<K5pFT@0FDS?QJKY;}>4R0?anbEkt-TKMm$1HHS`KDG&;qF`gc!a$}Dnoy_U+1t>Q
z(;DQL$bBex%^v2*mREBT4$TK?>LAF&?{N##ZXp_=ami&JE0CfA+pnXA{DsvX<_DUs
zwjN%gb6;8o()p(rj8$pCrSs<Li!QG&Q5KX!Tc<{E$%9-#*U|B`%_EdU*~+ZcAs^-G
z<d3aHcKt!U>K~_DKuZ8nAz>BvJXjp3z3kV%ZLIb%4AUhCWTm%;9MrAUYG!l?XFa<^
zX;*KeVe|B7l*z8H#A0Xu`Iba9u0hD>RMpenBpDPh^_r?9*cAH8O&{O7sylD(ISIGR
z>A@T%(BTY`^x`}_Z@$!uhaR6OPG?bez7W?7V|RD`DJQEhVhHnce<#DF8t7?nT*%H;
zo@~K0uH)%k?)_-lkLv1!xZ!qmo^I}C(8vf|W_hv*7w3KIxgDCgsN4feXU>2XN_YEa
z?OB0W-h1HNX<{i0j_{z_6A&M_ymY>yhmj@5r`URLL{!84L^&q?kw*iAcrDC|I9-fV
z-`+)skHeqr9ye>GO-y>CON$X4N&7-4-E(s|;5bulJ`Cv|ytCz(0DPr!hyx=9m@^d=
ztiF#I(By<=ofr_5ZtpbmII!A7&kuf#=KZ)FLBFiSF{h6E|6W-Bm&_5UYP2zpvA2k@
zl+pf^$v^hDYb^Kks6OYH`JqYX2622TxiSS}sYv*NZ%U`j!-s(QydL!TMWq`AAWM#l
zv-#o8)AIDcQON5zYIx);nzh#^iSFGaJa=Elfxd4YmD81$Xf)0EA2E)46q4;HD#AF9
z|EJL|94m{lX~48DEYctSUi=DX44OKf#Z`2|nx05$4ZOZLOQx#RnkA}9H-`FvDI7XL
zI(k;>6E%*ptMU_8bXAFs=J|nk2k8X-^2PqB<b3bp5@h1iPSU`|ozx7}nL0k>54U*d
z9l`jihL_9w_q-n9rOa_N{k?w+h^z_+EjdzplQIVI=bNP90#^U6Ydt~3z~epv5?o0a
z1ozwFk){0cdRU%j;~%F{u;!I~^X>6a^L9uGyHh;Is=sxSvKRG3bqyObDn+Ue=Z8yq
zqsbt(EYUsA_T3Yi-5-5;cNwB+CHa*jCTj~b4W?d6XA^079r&9~mq_M8Z9Q3c2+O3<
zpVn<aF<by#XLENR-()aP^YJ|);#Yr_yoM;u3|5&Nvkf6D8;>ROc=Ue$=J@nHIkiR_
z!KaV8NTzp4sHE<W!;Bvu$o4MiBJUztOF)?Vu&t(p)=y8bjapAr{r?&U9YhhxJxK}Z
zU;}^Ao<#lU?LP<4?FC*xIQzVA%OF`z%+#(6f-}pzwT2ic2&j!>B=u6~Gv0b7RD%%4
zF>9CcUL4V<b2+37b$r*yM^K*&N<ht)fL-AE;ry+CTfBYycK*&}wL6>qXKgM7ep-%|
zm)7Cb25wWbI>`^4kY(A1tE1EjP_lfRwkaK;Ywa!Gso0(aJbj0<X}pf5d=yjIow=@%
zw#S-^kYvGS@J{C?i9EZzuV;4l!DI&eU}nwPl45L5a|W%Cjpt|+GzE8SG=KR~Vzuoj
zr7@L1e<`zkOEVLLAF4t^29WjGRQ-E}F7egdx{7Eq22i2hdNi1xbF$cbYk%A+w6>f$
zhsxHEy{YYUJcfQwJw=2YgL-<w2_W!IC)y&In(<H{39kbxbce7p?grY`*!x=_-ec0N
zsEdZ8(4l41VsO4xkD6E0(zR?{?`U~yc9{EdK1Va`e!F74_SIhH%3m9*%PdP0WdHl0
z(<{V!d~vb-^iE;;s4DqvvxjPGnnRX2oG-MDmT2Ff>natiR>=*GuDOqilcm4<qe-*h
zXF3SV&D&B#;wFd{rczL<^Q(`Gzc6ODQe`Z6#u+}~XM<3g((*??6>~qoS$xEQRY+J3
zfCAw(#nW2)>Y6&?np`-jNlqteKlyB$5EQmn+g8>OLTUMNq3Ap*4??VM^Mv6KEk{d4
z6}_eFTeTUUv*bHnm)fcxNeF6>!Yz1ssmbGuXrtfKl<xBAst9yFF38X1cd{+n@O-?+
z#2?*V`hVG9D93}*hsE(9t*lFA(69#lBtzHhD9;9Qe175l-@zg-Y=!imS9$EbUA<Q3
z8#eYmfG+f~yno{T#st%Ea$%?%v<zRRIaWq%mG9cHP+l{fboF2edYZI;-@?~7VtL#v
zrULtX{(kw!RvcZP9skAEsZ47-tNhWI9*GmnR1jKw<>DZa^2Cbyy>QG-!M^kJj<Q#C
zetNZ~KjeOhlD9Uti_tj%P>;64`i>`@=MhqE1;;Wr-gX|Y9{T1*8ZAZdiL=$|HtFPE
z<5km?@pH*&mnY3gn#NU<$)_|_X@?EnkVt-sZ25Od44{EU_{~&OdG)5ovcUv9C_0rx
zAMTtZnDiG2x~v>&sZ7Gq4UPh15DG}W124p?CLkx<ZSub$E)`q}AtOqq^ah5^^zHC_
zs=(i$I6ay6#P~Ot>dnL7BTCXtLWUNvDHr6aC@?O^DE=;bYv>^Xe-c`HKJN7Jx|Ktg
zzv{OTX(;gHSI^zw#5eQMuvq?H|JdD20wXWqy+=lVzp#GgLj6;hm3|DUold9n4knhA
zO|Kh3(z7KM>lFc3JkQPuR-!~orwW&^6-0*7@`A3<FH<g)>u}Ru=l-J<T*T+$pE;k6
zSmhHXG=kvVS-3G<i&H6Qt283)2t^Y)T@%Z7Y;M`v@wH@_l}sbB(aac3uqns$G%fm%
zu$RulgyE#}5p%^f(P#+55Hn^he?;@Hd1$xcy*#@-e53T|%wBwWlj!fK<zJVFam{=l
zCeBU#Jdj1D+vOeVXTs}_I4#$CF^_*!OcD(r)Zy?j{jx7dKUu$AuT+nIEqv`JM)<zF
zjW143@>qV<_4^x}h)F|PJ(;Z~<nJXq7xfqQy`zH{`}pmXm#npMgqQEh0v6w7wX#I<
zMbL!<=av?4GX%P)^8B-bCGnO=ZJZJMiL2}V^9DP!=Xc7?Qk^H9<|0un-KD_E68tI<
zr7o5!<Gqk0Z%}WObLHRi-PuCh{mVOqI7N+qp-G*Gi3EC}UTnyWy(_;6Q3<MUlghsE
zMykLbR1Fg8q7Pm9O>sajXCH6oUwoB^!Ru<MM%_WNaktm*-=8b~&QifxvmXN`{NgMx
zTv`I>IoB6P7k^x0eG-o4$(<_boXqkTCIGy<%!6H)gj*ahvw(T$C7PsxV~}F_w0=+<
zQ%+>03$$OO!@Q6fgGCtVwOelz=F`8|5~V5Uo%Oj^7+}odJEe|2_mIb6J9GbvpPeNW
z6316R=)=WL&fl*&(xWH)vqYisTK&z4FJy)ao7^co&=j91g5c=of(IX$U3tBqn8N%m
zU484F{{8!ml`wwmq*z5BQc+*er_ZBdRfemm8ckuZ2Rosh$Xs!1HOu3VFF9!0O{g1@
z$sss^C@eqTEK-r^20DTkI)&v?wCRXM^&!GVpR}$3KdrQ@ziHDJxgfwsgLu|KN9nXB
z-Cafzy;bs9JzdG7oT}DaElsblLW;ce4YxMRr;+F8XvUYNs=1wel$xC2rAE8aa`o>{
z*7)L08O_y=AMU;M4*L1kex`MI>3->-d5_{|wXVS5w+`;SG&wTn&+X)pccvQyyRHO?
z*r)91PILKAoV77dI#G=GOzDu%uhJ2ry>Q`(HnzoZSnq*a8k$u3au$B@<q{}GMfi0d
zL`zq?#?gCyZSBjW#bbVQ0t3t7xOphi`b|(I|Dje+cI;bX=8<JH{=<t;*}WR?e#>m*
zjMNyYN(JFb;Y?&k(Q6D*`S+~K2b5HvapmjYQ*jzFYf+TWqD-G|KVyBx`fsjH#JXJa
zvFG9MWe8I$tzm70Qm$sC4_gr3vVVMD+dBF0+5EjS44inGmBqZ6zYL9jNmrg7e^F-h
z^~-1m3J-24sr-klcI!st6LZ6_%X^qU8Kdt^oz3rbXCbMLyj{Atm$pR_!QmX>Zgn#1
zjg6gBZVueQtFyrGmPct0T$+9yRy&zP$w@iAF~i3FrFT_BD``LeoQ~>0N1H?p4OJ;a
zu2%19A^)9QXzXSq;(OI8LF_J%btfKXAd0%(lx)18DA~STNL4+^Aeep|m{4yXEhlE@
zkAbaKA&4xLA6qivNRMvR)~RJxl_XXFj$4`Tq|G3lxQpyaC2kMzg^9(EwXCYnk?NgN
zcySe`fx>sE7$9ab^&#i;ekO=#1ij`NpO2M|K3SLz)8{0!z-bIMJQ9}nvJ43>6!UoH
zosZ84XaVD#o=dA4S>RlI{UpsVM;s$dw?Ek)@9(<0QP(bC3<DV|PCzFE;%N73u_0gP
zBJ+ivgPYH=AWFY6?cze-z<6)`Jdw@yd8={r)^fHbI<1Y_1^i7p4MxY~dhN?J2=3#n
z^qw899kkc57$-M#l|h$Zw2Zet%l9!+=LO*@U`ctvJ5dzgwvii{fm-p+Or)?tmuGYA
zkP68QKGEXf4riB_S2wUjJ?2LXo!SNYMzFTO82Me6Cv67;`~wII{GV#tOy1bL{!17%
zi)X<L@G1%)a7RkWn`pUpJ{8T02zoA5tsS^Kzk3>=$Yf*CMrpEBaQC6{leS1mbjRPi
zJ?Q1J#|iEiC>ZSx@);rTiMjgSRODU@FDh^^l-`%i0IFx;o7M@=W8BBa&6;mnFQClq
z?s>(Gd9XI)`Q}qV?DAA+bUO6-=u3^D!7}1_D|T!K)=BZXLIf$?Gs8%v<k;Ho(X&vv
zYLWGYG=ose@n~9D{4^zi(X>(yfg?3H|MbkOIMB@>t<vWF3mfraG}&veSqub;@6KrR
zw)|#dTGe4RU6G2;2Zbw)v(@Z5H@@-Z95M4^CQSX+4N>`+Yo6%4{~Cc>?!A;CNxGyr
z&!2N;xdbxL!gKuc?uaCbiQAq(8USh<JsRVhs*^ds6zYwB8c*xnC9S%)xYR%61n$@V
zTZiAa;I>uQa*jGGEgL*#3*YETFYWW?`0|V7L$7giOnd)5OGfYgK6<uur_f!SUmJhM
z2Yep1oj}eRk?Z!t<~|CF$4tOm8+~39jM^*0S62XTqe>;HCPoiAl^0EKMnJ6;*R?qX
zhHbU!q?8_&S{fK!B&s=`*QrGNLNjqXIvM+gh7ge|R_kz*pEga9bc+6~y`qR#EoeFE
z?{3apBra)~ib~G^F5M(>WTLA)d_h1wAKV1U_F%L>+00ZqR>Dv(83Fwu6BA-rTeE@|
zJ8+lFqXj&XjC$63!VP74WEzE$S=fz@o@s;)<_{-2NSs|x@a*nIJ=(%QYp_L3qTFT`
zt26iSAw5FtBrV2%tzgof+X@F@l%8L(QslcWtDrfvwFbd7of6I@pX=)vdbC%3Xo(ur
z?%Btuh~VR+1#lZ8T*V?GP?)WS>ed{jhEG*8mZFKY!ITk8YP)+Ie@-d!bp2qr)f<@E
zNpZ?~{4#ng5fj}bW;#9toYVwoF+uGP5=p54^!=MVQQtX}Q;xk0n51?;Y1oVRi!Z{=
z#)7nIJ}8`}u;@`sSIf8Fs^lH@h^Nt(?=-Buyd$rYR*ZYs@3OF?X_n)G#LxW%EVef_
z`;BNCmUVCR&)qdjS4!9T#bi4H41NLr;##g92hOH+?}WcwVB37AK3alQ<!g~aiXKtk
zzZWWw31t8BGuuVA_I7pk&^}+XY984gs23T%HLOepeoj9Hw5Tgg!E=@WygrmDy1H_5
z&d246w9pfqr{$318?zJ|j|qlH3{G@p99<H|TEve3O#FdLb?yBgu?(btT#E5u9;^3I
z?S`A$t`kH?D7-n{Q<%^rqpcpI$ff8omnkypdT)O_Z;)<XB}5F6-e(#AMvFCEhm#L)
z61q@h6e-=R>r%q(#^D^F<h>Gx0qf3BB<AUf-OMM95pRu|Od`wZnN<7*k!ud(Zz&@C
z^EecrG=$sBj#@dwIWv*aQEM=4qa`plmEc$jk}8Cyy$M&r?R5;uW}P1ANZ-Pb+m!*K
zCoir##7OF<<IEkY${kHk6mDTw%-XL~4)kS_7y{J+{wl?TC>%`olkb+<Y!GPQiH}wm
z;U1@YbN*32c`^_M@Swhb@z!!t<~5R|g3-||5al4srpdk)Px<o+t8^Lh?Mz1H?#2k*
zQxQE4G+>J2(elV~EKkpWs<8#V5Y)<D$$X;agDxZgK!RJBE7*=60(<k*kH_4)dKNi>
zFh|VkEh1Tt3~j(+-<ceY6UiruB8K9tuNz}uz{l!hP=kE!=hqis1cB1rK`J9GJlL8W
zO78j>*uzHyoxjjP;KgR+;%H`Z%B=512D^I+eE7nmo!n1CiZ0&UV1`fAYNNulqiqxz
z8N<ftt5@SWIkZhw&_xirQU=cn82aO(4`FN79zvxRLxcDicT$pGrH%c=`$)R${O;(>
zs7VRgRVuI|^C6gZ?O9Y@VdhQaMjZr-EKX$v+Xpbsf=0Et#GSfPlyH4<4-n3DL3<W|
z6|{%nW8!Q+uh&p-K2meF{!C9n_1csD@rbev<09RD+CTN3OPD3G7*K<4Ichw+Qjijh
zF1%LvKuw2cyR$Vgy$USDzcClmd(Y3#=K{?}%XhBZj94^2r@R+c`{Uo&#8mvLBMoe;
zo>@$i^;ju3C5mI<24_Me!5Ph_2QOyU(Ho(aJiV5G==|Z1)7L0Fo|NPI@4usiAWvkG
z{&e6_vRf{$ir%?o4UaFrR73OLjBB~(KC_=^NIT(-Yb@!wW<W=`nQJe7g{WeRj~Aa~
z%Zl`xYK6SgQx%vQW|Ewi7``{rt(Ou4J*RZgB-Z)wYXpLU^ffQM$&z$&&{>R<#IEp&
zM=|)7;r&KlOoPeav}XQvS(~6l1s0Ub&@fFA&<+koSk*U^IpT!06KU?DFYArIJNv&@
z*guVEw5l}9i93b8w&pl>*;GE3%~@Yc{u=!fC>^n4wB8Vwv<R0XK2nMKts7?|N`Rr8
zn!3(LIiI3C((C~X+~i>L2@;)i2F7nvz}N^`)<WPH%J0o5#jiz)asIvS6Tzywbk<aa
zp=g-tD!i)Eaec1Tk=LB_^yaTffWbBR1b@ww<We;{I)3*ye^wyyX!K9YzUGvTSxUDD
zl$S=n9w>{>1o#^YP`Dzl$wNs`3g`<YdAWiz7B*58iFA3~UU3Cj^>F#guOt*gbwTsz
z_a>aEV%zpQYFjS)pulAf1)(BdSudC1z#t`dKH2m6#a{`&M@X4U_Vm11EZ)DLYY_Y%
za8O({=21BF;L*?4bWXH+J|Owat7s=L?^q94i9-E#^iN4OM&IGica$0O4K+uM=0P(n
zTLygxEPhfHeVVF8>PnzeQn6*_{LXAI$@ww0T0FxF1)}>?TnFD06j?ce-_!BS_(C->
zrhwU<6n=<@J${qGPH)%l=+<2#5^)d5M_(3itUSye-H`7&n!R71|0PM)CW&hgtQ@U&
zI<0u~!S8ubDSkfx9%ms(1Y1zB^YMhQ`&Ybr8A?2Xkfkd4vR9Vjel$dJ0;rzmtrn<a
zeSqLUn$}rq?J%p19*QJx<qu=k;s2ROu(i1*|N8O$@=Hcuk1WIN%kuPOehMtbrh8lV
zR2wtZ(z1A|_5FF^opOEoqEz+A#e07I(BpX^8J7c|!jvmLmRb+A`0;v(%k_UAypv@u
zz9?Bid_S0OSgIP62BTu{7g@p9PIUfpncKO))2E<X?|}nHQr^n467ptiTVJSGVGnQ%
zWdV(69C97C2vO|NI&0~wcV~Th`C*w;YD*<@M$h-h{{Lva5vk<mtADw+YGvMU9+HRg
zc0dqj(jE99q#?M(jRTRCGJZH|3Q)#7&#_JUc9(^nns3V1cP3xrkUNzNkM4iNvF6zR
zUi`nUv*h>`Ir3hUfvoFQ4mn;1e`{+UfwOA7m{1KCbyNIQeEC+jtav!ow3CkVF;CBn
zcKI7eB)|%9hAt{mkJk3q%>ChNbo<68{a2?})c{r9Qy??ZTkQ~2fb7a-9g^TQrkA*n
zH#=5yiW+ifbGDPKDv3yHL$Ah!!mSk&OravmE1cg1FFivxILP!#2vOrM)f$3qClz{j
z`I2c|zHeT|b&+s>W2E!!Id<wZTPgw{l^%yKJ?D@B>H1F+Y-25_rOMq5pMG(7^!KM*
zcS33VJDZ972dR;CofpOKeL_}?OGD5KJs_G=eY+Pe8Np!7mDqIO0LvBc+;I?IJ_m1{
zg_`&t#8IFRQDUnRZVq|SL~@!I<Sxv-#kbxmN@sjND=(=}rQ_%_rL3UcNiFIFp*%Ei
zLtV$QQ-6DtrISOo3sUyU-ETR-zh~Cs<^}d65UFmnv-3-F#&3UBWU6%n^}%PqJGvZQ
z+~r5-=D%A`=x3QyIfxpI10}JmCjZ+X=7*1>3P0$R*|3_C2{XlW5HBl{#&%u#lOhx0
z;!92M+qWJ1H59)$F6K7=K|`zUB~FKA9+_Zq)$#Bqk|P4KeRN>E+%VCydQa1<xSE$n
z2UV81pD^DKAN!{PgQDASUG!cmHop0Z(Q?0J9wYcg?0h@irr9*7Z$4e&)hl~-$>xRp
za~}6!K<<4KYb%+;t*DloC<y?IQU331&Ood(B1pk83V>8shoRcgI71gb_M<_d88<2`
zC$3NpTeq+VId;{y{t??(w2>MH&d>Nl29KK!ur3?Z6;IXYYJU1#viCEGQT<;h$7Qt<
zIF*8enfJ%L)>NC2#4lXTLwLb$h#U_M*GA)*9BU;n*@XM4e%VYfnT!AP44t>wprV{Q
zCa>76a}>Dke%WT48ke28fsyB>s=pxS*oK|GqM2Eb_4!}(4>(=<rwkVdiWv_{^Qbf!
zY^W{xMsfHq4A!feew`C&+mcl&FCG*`tCO4|ht%oX+I#x6f4aT&Eo_;~tua-(3iN$t
zG)n0<b4?q>8jba8z`q>5z2-%}D$ehTTIZt((EIuI+twH>+@j02{@Dd8S>|8x7)A%X
zB&NEDl!-qCA3B*68GjEtG6=U@&8$UKrpXH{56ih|At94f=)m}f_C|aiJOBwko9m(_
z&TF-MJjpcITKO)dCmNSWo`YD$1~rjeo~f_zsj|zrDG95jMaI=RvX`8G%>!(~E?!B=
z$XfqGZpnX+aJNe%R~c@-YF_M4it$&^P0Z8gz29Y#CxfizLMwEY@d*&+_ixOv511>x
zalDlPB2@h2D|tc}Z-W;GJ)rrKY?=SzHOMsaa+{SLDl67<Fs^1CZn}6ayK*lc(4TX#
z>KaKd|Ge9PIEq`8ER8lMpn^>Mp7{Q+n7(P2y<EOMPYlv&sCxh&c3bv1OO_0BX&>L~
z!|<hOn&oHZ7hfq$Fph0Y9A;|lnKI^O-t#zY30OIxcWck|i&K$Mo98T6#2DG%MlU*Q
zE%VkL-v*|4VOFCug7V{bn*|Xn#9r2rw9l4DmaTe^Z?_UHq9~Z5P2CpoTz}LmygWiY
zGsbOw&aF>0RNaDRhafOv-_PO%?*B~>l$9zqzIduvsj|8Cl)iqs7LCca0}TG}#a^=D
zz|N*P$Ka`UAn7gSvddnNUUBlbbI|2%ykBSoO`sRvpB$oNBI0-2N~uK#Yut@Sd#D`+
z*2VRwxeQ1-JWT-UYx($Inr7^537?uXsf14;JPhApv2@<WJMjNupNMbt2}z3c+c5F>
zD>tUP{OPsc26mi_?kmzm*1EM44<C8^xL*6qWwXRtDO0|<un9TZefmwiRpI!T<Nv;6
zl*Po_?`u}j_V4O3+*0`rh->N@e^cK@XMPlJ6pzrwDF-Upu$S7<Y!y9dlz6=5m9ixO
z6c}TGnkGyOnk`MF_-ucEIX`=M{4TpvY-nSv*hqqK_u1W7;X-y<86^-rS$ooFbAKif
z83=ok*9W{sE4)cfe~Gx2M9>pcxz|@EuUs!LDCoJ$-$D-Fa_^4M6-0(><-(#-yVVA+
zKlBR(&;JRiCn0Sh;_>xWsgB8x#!9sqOQB}BMDOBCG>nVYWwZV1R2~;BnC4#eQLv2?
zJcQ|*XqZQOotl^uBo&!?5VJE|e9+V(`L#w-ecc;<@Cz+2M>{q~!q?=pMhCU31b;UP
z;j=?MxaQUK>9rp9P)2CE{}|KfO>0T}iuR$JPLRRD!R(bDV(U24ldC!AX%h3og)`v(
z{H=N{KRSqAu>{E^{7;ua4{~C1bc5j?f3BQFqxaf3=FGz*O8k%rCBEGH&ABSa=9NXa
zS;KKafuiqf%lpp7X-p~Sjq>||)<H2x4-MeAuX!Xn;UPH|Ug`PiJc8&rHTjT%8Y|CJ
zkgX3gwjbwLZz^pN+2VH!1bVXmPfv!Km@Dw>`Ncehi|tfCuIgug7O_>xh%*tVw5<`^
zeQ8=nabKMTp85ETWLB^k^h{t6IPT~;tI>s*aoCvAW1X7Mj$&pCt}9@%KlDoGFZZCP
zKbKCbK|F-;Wn4g`C>>wM<WKIEWZ*??0|Mr}B}OtQ9#=Ln)pYu>v_DeIgt3%p=Fllh
z=6zn&HV+=ZGJkLEqJ5~@MJ;lFx#xXg@efV>IK;Q^jbqAzq$T)8+?m!PZ_zFy%5buD
z<C8cG&9p)r6&k&|F>PQgnO3UopD!kDQ3&tPQPuXG=&mhJPgLX}SroAB_`@l8B>2!A
zZS|#Ki*Isa!NwesY#~@g`>4B{cc+bCws<dNGM0t(!}fQQym=qQcz)LP#rteT72W1C
z-1ww;m+;9m&1c(sza}{hfnzWIu1E-Fl#7WBM#rB%)rwP#kGxO#WJkidU%G?ny5l*h
z7vu)eS`xN<5(SR1rjqBn*NwaQsvZCB;?c=F>sz<aMSF&-Uo|@V#~VG1+wiQ-PL-eY
z@&ETf7xIXXfT-u6sQeT*<$dqR!`+)3ix3<mkH$#BJUb^(BQBBa`q%fZ7MxZIfW-x&
zc!RRo#6sN8P27MjBn0~4y=0PC+u><=BTMifypagh1;&ak(p0YHYBp&-UVE(v3y3{(
zaug6;uoE^(RP$mumr_je(4(3@pu@7EVh9gfA!Wny%!^Juj_uXd-K)&FQefudPYu*t
zn_}wLO&3#MsK(@Ke;l2!+U-?mU<wPYo_TJdvOK-rKb+G5+#cmv5p{f<ax90vf=nb$
ze~-&cHAU!uSM>PKb;&k;`$qNkJka+1&5iQ0^p+1t&l<&I9_H@%rENw}*S5kW5?iPg
zJeU1Sn3avCchv^9j+>>2A^azMS5oe;C)?{&;H_4xdzrUNLU#7XyRSWtdd%cW0S;%~
znmTS!MSHia*K>L3&<?csvB+H=&%os5tzd?~3fnG^=KtMY$22>*US$2cHq5zwB;&M4
z4?(QZ8frUkdM6fXV9@v-&E|Di#s(roI#+W)61DY-2v>WkgD397;#5LLo?m+P?a5si
z&C#hTbZ}!-G#5AAEx7xYz{*|AO-rabOXR<=_>g%`n3yA=)id|{7|<5wSj}vgzfe`v
zZglsQB6UI3|MW-DI|*uW;nS_{Z5)9YYuj5hvqzKaPqX}VsQ>I~hg~_4Y=ns8AUFD6
zZ!)4JyHtIXq{`^H$1q9@eepuli2#@Ak>ufHibT_u!rQbx_N&Hy=Lhqe5X}kbE}MEf
zXPsjJstOAik#~mK;JgMU;4_IuUxmOZojCpb?(yQZJV`l-zChlf$5r@y^+)7bxwiRo
z0YiM3wZtLl8kDo6!7)mfy*@!NCbt*F7K8mtW3iOqqz)m6usc`}k~n!aKSk+C9p?J7
ztZttDsYdZvOk_i)mk_8b*svrlF;P^;X5LzU)4Sjbi<5BntjMMEp{rZpiHz$otT{cl
zIZd^Gah*b7u9E^CP13woaRPH5cq;a4pI`dHP>hxoJ;NT9lJGe|8q=pllPiR0sx$Vy
z-{Z~)Z>)$yB5C~M1NQ-c-kjUYhxpq1{HW2qCmII^c*0ZCr3$k-YI>8<pf>K(=>UFk
zqMA=2$CS*LdIe_~X43lpRVG$MDn<FP0I&@gsy|=6h_Vdfon@DP1`)Xz<y$t*4zyDD
z+x<rv1sSF^-Y*-IW!9Ag47<DbwBLYR`wH9Pn2aZ_+3E6@IXpx>4OY$B4HDgGvd3wy
z)Sf0-*I{|Lu3GM6$kz~Eq3mpN@<HnT^r(=zR&V@(Kt*$&mF7(cYO~*;){@?;z<!sj
zb|J(eNQYPc3@s|426LjF#_o7xEgG>Ee`^R$B0nv{=x7d6)nDCGstD#awQ<Rdt9fnf
zT=M(fmpCD5ceOaYSgyld%bO&RZ2W5BZZ-Xf2i8Re7?fshyuZFZemxsK$pqyxc_%JP
z*#Z;9e$6?&gBFWxfTc8WinLBZ1^QQ?Dtr``{3k*yt$M$60ap-u1>~^GS94sCj)7hz
zrqn!4UNVfebHxM9UNNr&U5fh)sjxK6yX_z8ItYdX#>f4xzDSXpXwK?FJy3HY^xJ>I
zt%aUtmg>yf*ZWAPvcRcxmgB6hUwfHuf5LVQl=c}12@S9)ql9!pHpWG-z)aYd_mb}X
z&{%lyghWCb7bq>o^tN(rF5^S~+&_5UP0PpbKDtnfVzh%%xFEF-yV}{@!4xc%b4C7;
z-#uNr$Ls4E{+yiL?sR*)`P#dLxmToRoIXAE)$YNH1yl2|Mh6!9ci~w0wwM)`%Y$lE
z!HG^OWx~x{2S!h)2eO?`W$c-zkdm8+P>}eRdDHgFNsh$}b%2uAiP@8HsSPMK=_qbm
zORm3l3(gF`Vtsp(foz5$xC*bpBWaH|FW%=K*gC@t_VsqGUDsOugK72Pm;696p|E&=
z`f5k_sD4FZ6R63T7juei%o8-Vm2a52a_b=y))a%FA10$gsB#1D+@1+BX-SpnO!i6!
ze6sJ;8BBRMycuh83F|wn;E#6v(YMx8fW_Bqw8MkoQ4|diD6^N;w=hq_+P)<&gi#g5
z$e6+o{i)I4Zb?D`aFXMp^shqK=B%|^k133!Q2(={0B!f;7_s|hNYhJOtnT-U*!E12
zd@7WGF#5w}f)YT<Jwy3l@zhd+Z@dp~I2m^8lFlx**VQ3w*XnT|YXXJQZxwb`(N;Q+
zE_AjQ#j6c=%GVlypkO(XC7$}~Q0d9T^ILQ0kbG3rciVAK9?Wvx@DN%9ZdrwB>qWC+
zC8!KR+sQ8O9O{?!Wl^;M?|3cf$LF5Ev>R#nf-&>Vl(~een{+HmR;>4PvT`}G56Xg>
zl0vB$23O5Hv=0}{V8I$iqq##dk?r0#%K<@4pN!K?QRQkZj;`9DgQ5O2)k@Ae6#JCW
zQK)^rqsJ%a!EWwvJ$bTq@N~32UYqV~YPD}Fo;PELpyeC$WQYPA<xg7P&{>NNjs<YE
zDBr4M;(I(u%Q{|L?+Agb>(-q$Ob{05mTIAU<%`Dqf+VR+;}!=-Ogv$^_l${(|I%GY
z<SEB=u(R2ykMcnt_%WiN^D^Bw;HL4r1Ohl>68I=O|9!nU@7nhD+8<>pL5oA{8g@pI
zINsl+xSmeN+g57Wc|H9*){F=U<?Mv`?B)ICydK!Ubl)!NiAYdzg6_FOv2%yB!&72h
z&DtSnt$G4^a1flWSuRgFxXpu0o-;{Or2?M$#T->`Lj$-fgh`P-m0~%CbdK$pwi_yQ
zXP6Z6`1h`l=xLV)BvU*Gv|b9_${$j<w=>=&hC|72A2bmJ=--u>&QHmT59GgF|I|cj
z0t{o+p1)`s<Z1o0+vCKE{`L1PjQo;-{Kd{RDc4%d*IfiHHwwIUH&?V!)}WkZ93}ht
zzjuy}P=o23KXiPvc_AvQJ5$WQrJ}L&l<1hh`R9FgZ4Zl2!as}}SZU7lx0Fp+har1l
zM7OZ7HT6@GM6V9pcdEVx{8p$dfWJCc^KoXuT1BY`B=$~5AOZSUH^d$2k<4=6-081e
z{u%~@4NcSXP8G-1@S)he=tYIy<2y~VtGOBd<|zu^&Nkil_V{y;Vk2!AJvcoFNxU=t
z;rQZ-++nXl6xlc$X;>2K-T3a>-4dlY$vlM=wC?`at{$|j{zlvlSC?Jmpmd6H2TT<h
zU2CzHM$oBnnHRYfoYY$HrZY)$A+<W7905$B$AP9n&3)^-_T2TR0I5OR`Nb9qnx*9u
zd*qxp6?_{mo4(I^Gz~QQZ&HgqNC&ff$bYq~j#e_m^Bc%iVp7c^lus51FqhNBi{65G
zBN7TGOSMbwnvthxf2AVUUTkd2oEKQAJc1{<9dKX9;I^yNY~}rs4jlXBwW>R?BAN85
z<iLwr(M-xlGu`c|R9!XK=}w@02(R~#I5kZMH0?8_9xntu9~Z};zCN^kZZbKoeJIO?
z@;YqRZw9=Nch)D{Fwhm%k~dSdfX20T5Em(~>+Z%#i+TekG(+kAY_$i}Xy!$f!DO9k
zs5_)61vpH@fpXt<57wO}Sw%knbn^}u!*ez6tq2DZI*>qZ)StLLE^Il$_%29UQkPsM
zYPS$LZ}PZGT^{70Jj2KS$@vxOZ7i=YIcv#ll)p(I=UKJT2d}r$TZ2%pw(ZV>fShw_
zo`J)=etnVVI-k3ZNH`Um=jq2eQEAmfX<KhTNr!H%E^He{wssB^p*+x26dHoqHaA<1
ze^J(Asssa@Z2x3~;nnTST-L-3fUa)o^pmaej0Y;#qkC9AEa~mF^|eig<d4z#&waHC
zo7>YhGiTZ{IISVLSNf1VR{__*tR8s6^xf(H!P8BTFs3kO)9$`3zQAxts^}U;T=j3U
z*M0L~j$;_*cH$%3*F+Cr<9}j|Sn40t&yB-XxaJl)dv7v2vuSQxv77gKbjpP0hwtZ~
z=AZe9S>MAIIq!~Xw@_X_#YT%G0ruC)!v1UQ1FtAuH%kMhp*P-t>2aApa4=rm+Ro#t
zjEKn+7KJNQy^RDOAFicx`wU*7w)^>>2EjCU=CZrd`(C4KM^_3nlTa=&9jn+Zb|;4h
zE@8~wn1V>{H^TYgzQ#1S;Q87@q70z6brIHX#@9WqQhD<KTCY$=NIBc-@Y}Umce8qo
zgUMw=*wwm7DNcR2L{#pou~jqv00EPwJ_Lqy$4nV{d%6J2Rp7J(qJ57qdhl*xR7uUT
zw{BND7$xt}o#i&lY4x!6yl=i!Ft;UojE0LstsV^QWdBi6ww?QkFnqUf2+UUUWHsi8
z@jDa#>y7MVE3|FC%>^4ASqEr+T{EL{yzeO-W;(I(?Bwj)pS3&mAne86sUna%#Tio8
zAU^;NQGabjYLeKI+Mf2;?p2Er;rQx3=J7}StbQjNoz8(A^W1|Sb)unZ5Bz5BRQ<wE
zW`H#9bgNW(YO)*8sURDXlG^H_pEKSIXWoyt<THOraD2E#QoHHBq3*=B0ktXsGMOxM
zN&EMPzIA^EMx3DM^Q$khiMFo$Kr4v!xlN^8v`$TQHrKUWgg0y#Ir(;>Zhr~7Lx5|{
zNzO0t#*}B2i`S{EmApyte7<PBLG1^IE8E^P8xR500@=Gv)O}}CwxOh>XOmZw5vwst
zgg`3}i==?_g#z(efL4cS`Xv7n1z$Rj^+pzy6_SIx*<NCL+3i*`vwa<%1Ub%I6w5qr
z(tU1CqV^K;>OLkUOak$5`1|v;W;uidrCy}uCgQ*+QsAqoMUa#zjY_%=|H>N?dRU+9
zKu#q!*e;y@3XWt`Zc54_J@K`gRYf9<r?|VmR(v7%6a@yY2@4^qhk&KP<a;CD_T$-P
z>xEodU_Z~j#tNtTQ}J?rO@dIOef$AFaHh60r!&|4C6tfiYZrE4Cjx^V&YtNrBB3{V
zsZzg@!A?Tkrwvn8{J2;`uUl1$gol$g4maXNbxV7U`%US895BcT9DorSD%yNi?^HDb
z8ABH{|4|bN4oZ8$#wv7zD~+F5hVUb>UL1dT1NQ>7G~i`>GEgegvpHR!OOMhf(%_#9
zSf2uEAp`9?lr>0~H{vA&TV~Mc&}^aGZ*;Fhkv$xZ|G7VE2C#7@cFls{nWW=!DFu2E
z8sUEs`H=y8t}WL1HYC|;DzdB$Bu*R<DX3rj_U&VWN4+I}$NbhczS>y9TIR%*uq+1#
zJ%#FnTHP*9%Nj{k#JMQ*_*9D|TlNpyzmT1q4Hfh6wTBUKMzfeplCS71+<W^Gp<Gbh
z$36mg|IpXD41XG~=Xit3nC`Q#J4GXCo{zG-FR>Y^CGo%C%RjZ$!OMH+KF)f=4qgRc
z`NU_;UFw<i-g98evFO1Q$)|!C82FQ_%ix6V@^PF+K?$lR&SJV>^@vA6Mz(7@-SNn?
z@$2o$%suM_i*lHF?$D}rs`%QWXi$PCSSw?Xl3=^A9IKx>gIxag`RQEEQYUxKQtEj?
zICsW=vx<H+_Drw6hplC5@CxU?ArV*y)38t)6`I$|DtP$GnVp7~wXd8iJ?W!P!)zSC
zxnjB$+`VnT!sSw?(W<i&8l(cRRcG43$aaU1{iXmg!(4N8w>=5~d#-Znwg#xC!_f>t
zFq!Uea?DE(TOX>)TIWt_PL-zaQnGfqZ};9E3-6F_21%@p!_-;`VcRxcgF-*iJfEdQ
z1>1rgTXZX6@I??DUwZzz@bUnRos(%%A$-<ji`LiaXHRBMke>L=I`H6E0h`L=T@eP&
zNyN?RG0Ik|@nQiT`3g8ltuh3wn?015K<14x%kKVW<!4__NumUx9<$x`JKOV*i5^{{
z5HJg9?{`j+BRrGrILWqk>v;b@%f%q7Bpu!~zYwkdi?SAr0Yq7T9&LlK>84wtnNvdo
zGURh>Hf!GUo=z_k>Q5*8lLNlO%ZV{eJ6S+HxX1aYmhh=>8hG!DMLh6F4vNn~Lr(tj
zouqe`FwLq|@Y>7vYVEG_J>ZE#OyBlW_b9KH^)o)xYptGu#_{xs;_BB+F?D>$l0Uhx
z|HT8RGNT5fXIsh`!~{F7VKvNI?A)OUd6~PIP`z7Dm<mT{N4ZtqgCH(tZ)=nxtLC>M
z!vw{?npZrsyFUc>>p#<ZLF%vd`-2WAW1)E-*=$^sye)D>^4#yW*ordJS?QwPmGUuK
zNJ&4wN4LL9uX#3fZCShal5Ce(N_<fwj8*}tny?{ZB7RIZsCh(H#qv-u_X>Hxfy>le
zrl}3LvyeV+L$P@Pxzf}hoGyt<9~ZUswycN}<m!RRw=LRdAQ^$|%`yt*vmC4Tt$n3U
zq=0BsDzVfV?$|KiNdC9<rVN|tIE-q$RrQ#FuXvE3)KK@2b(^V^$3r=jUCOBHv;Uv6
zJK2uwOtJ<2DyUU!MP}9t>Pn=<W_BG735e(d4JpRV34kQ7K!AltB=o|yYEXk3)V#j^
zH|HD&zzF3aGeo%iIe%--wryq~qcf`)`T9{9kN2JIb|LaZ(FwVB={V$jcScq|r?kch
zGV0Z^)P5;#a_jc$%lrstJ)Bzx+|q$ieYtz7@cjUWa`z@1#FH`XA?|x@Fzty6N5qPs
zADPtg>CG6x!0h2Z_wos9G*5p<+}P6qGf5F6**2Cl_Ua1@HgW+kj*}c3%!&vvyftZ<
zuZzJgaF25A@|THOh@XJ~?8{>+xX9+-t00vG1Z|SZo8G(27YJs5qnEh8%?An1J0^{S
zm}fViAMpaBGD>7Yn;y1qap;eLv{`R4T2g*z^Kh9O-`h=Wi6@c)V3-M4oVd7=j(g@x
zV0?;+Aq&90+AJ;)D<;C4oT}z#Y>&y&8TRQ(?xbbeeiyI+sbSqah`PW%T0P_pRlut1
z01+WPKK)5XB=<W!O8JWhu(1_1%)-~7XIh=j6asIQ?oj8G`WPU<a&E^#iqO!)rIbpd
zPW?z=4>2)LOYyurXSSTIY+<4%^v1E?CWFJ>Pn6BoBUP{m_*IhUx-crDxir>#wR`wO
zh=xq*wY}(xwKf$FXmCujasLw>#Z?U`|M=N+V8Gzg6;aUDj*p!kN^JS`nq?TidB5NS
zOVlpbo1y@nv5l4v7^Da1pJN7EasFe$W1Dd!3oZ8c4F^UWt)#QnAVoFs%G^~%GIw22
zKTZz!5HfLZ2&9%b(Nm;4Yg82ZhozsQ(|3NKODc%7UU2!WY2r22tcoi1=B|Q#2z`ky
zD&7&R{UNOjlOzZKwtHvG#_dJ|bY-#7j$Hp==b!1aFzaPyfKmG2mwEm3V`gbhC2-6A
zZ2a`i#ss<J*1ve1u?ZBXR>b9Xfsv+GRu|aA_VUh`Fsdfd#yCI)Hn4qm4<v#Me$T%Y
zeg?DE!OA#;RIY8m@t+n7*KQv&Jnm1v!R97;TK(sp^C~y<eMPmD*E>KoVQJ_J+60vg
zDXJPQVry-cA?h3yT1|PD5=o5QwPu`lT8fGciY#m_>*ZKFtahTTEChZU({5sl!%}$C
z1q*8$vmYPv!o!0@U^EP5ZToNw|LJYUDa}C4m@{&?%i{>!X|g)$w?i;t2XaxW&$_9w
zY_aY8-A&C{X4B1i&0)Lacc6`7h<H3C=l9V8xbv+S=@G+VI8mtT^F$=I8&_^uCc-^p
zlg(VOqhKjLVimZoMiTJvWV;O4Hh~e|&@@<Q)!da0MN>CR#D$0LKW9zavZi2nYk!pN
z(?7<gu>B04ov-|Q2$hnFA?B(Pbk;HwSr%mn%OTO(<j;Cd<@1~uq`rvWW(3fFqRkH;
zfu~7BuR(yfDr+pgOb-fswzB8298?f1%YZ*m`mC)S<{u~|?4ez;{W}n~7XgShjZ>Oy
zeQQ=Aa+VQclTx5L$ir4M8>FAThKj1#b&Y*18|5mbt&ov64)#e0O;}3Q!7EdDO&sr~
ze!m5;1SB83u+VZzPmMdKhDEk2y%9>Sk9vCA2)nq9C&F6Uc)7N;L;Rf}wcA$m6s%IP
zs4S{VRWXubF(KynNe)A2WySJFSPd*kR@m+NZ5Ad;iW|$Z`2{6i^DO};&f{9=Kn~ce
z@UYz#ajg9!(VSQJ*0%ox(_v?S7s{B}LXKW>8=xb$h!#3qKK*kTg*P}>ZUIt)MkkFb
z*93gop_=14{2+vJ8BE)2JE`+dE5<q9)-ZatUo5N4@>)6kKW67wsgXSVG{g!Z%ITMj
zu%@?8zLBcY?kLW_Q;g)N3AEOXsgsSq+N^pO2lR!0YB8edZm)NPP3rCG`4GbKM<?Pr
z59-&Qb&;rT*304c!8^tBwp+=fQla}z2^G&<WTVj4vvcEM#S?-a;ByJ~D65;))GHYo
z3P)vCy?E&r_#~=tklfSSRy7VSETIPKqqiO9smy?O>EVm)$;L5%d66~<)m6z0SSr{H
zHgTm`5+gz*RzpJ1B<cmc`}@+%m6X5~$>jm;ug|uaJFk~ss>!l%>Rsk?UMX{8Y4zf$
zrW&?|a@1xtRpZ38U5KSftZgC_twL8AWhemqyK5nwlIi;>vV4m21W`@yx&`7$@tNGF
z4x+TIx&k->F@ztby1v?5b69Yc_S)dEmCD}Nr>P>SwyX)f!}_spGrh=%B8ByYfS?(=
z>(%}121lEW6<ayGO{PJ|VJ6RJY5gNPK6jLU`|f~1TPZQ8O2{Z?50bxvPt`eX8;8D|
zY|1~vNse7WI5`fL@y|+WnCk<OFC~gKegO5~TuXtBTCvgT{Eon6u7&zG+k*x8RlC(i
z{)f!8&YM`Pb5|3stB?O6{wny0lUa`86GgE?Ewo8jC9`^vd3J27gfs$QI^CT+<KaPE
zb{GpLNcaj$(B$k;f_-^!XC`UPrN>X*-ha3GM)5xNlm=@-HF}o9-inQ+0#>36iUn)5
z;Q@xAm0l&~?J0IM0&^ZxQ3kY92+qnoWK2EjlSv9_shN!u@V~Q-zQsWyf5iN*PmapN
zvO+o)lmwdHtJ_*hnW0?L6pQvB-wE&|J6`Xwab8c2oS;_<w4_7f&X<X%?|0uj1U>0s
zjsv1(Wa$HHUJ?=!xVQ4kr(;6@82|K?LLZOe;rJ+)@%7@U?@-nyui+ZOMD{nA)_&U+
zUER-*oLXHm-z$jh+f$5D(QRu@qQ(+R#I5S}u5qWF8I<NHblQGpA3sgOSDEae9}0GQ
zCCM+j{^3`mUjoV^Pw(u~u+Fd_FvcFc>8f;R=*E8#i80K~PR||%*i@CJC57CXpY#+k
z-=~|)YgX{+U>3-vsxk8N`A<eHp@y<pTQ)&UdCUR;|BM1ZKE-!t1YTi~WK&}51y3IY
zOrFaM1Z^i0c3vsAh$ie8=B-wXSA$EJ`1QIhlvJR?x5_{Fsu)F7`|+3Zq-WR?eS#;Z
z{=Tb($v9J_;^CDC{E4!x(-m?loFDK@RVc$Vt2{uBOX-&0c&JuqK{wP6EopgDe&wBC
zWq=dTQ(3|E^WA=z-au#@WWsA1FsXf3VL@%8=xM|Pw2Ir9Hl>6h{>{(d8L!&zlvc%P
zIVt;Hgbn9}JHjpoh_MtxrO8QvjH$h$xz)*~afta)u`5X=z!##O3TCWCfoD{V1#T0B
z{2v#WO35BZ-Bc$DR3&FcxTugd82V(RMHx(TQeMxdd5XTS%s+o&I2BwfI-tX1FuoKc
z6`{7|F#$VyJF0N+<Wnt2RBS>+l~M#iT$yd{PW0`B$Db9}=Bmb6Vi@M6?R)T5gFyO1
zGmtHG=>_2AU-ule!TKDRFD;<UoQjMs{_|yQOokIJx_j~Q;-6e(f3Qf*v!#O{R(}`{
z%?PpdBiWBnFouv+FX);NPV;G5Q63csc(%F*vCl8^o~J1vQ;K>VaLA`1z+{lmJnkRA
z{lGlQNPbFsG%hN`OZ7^|VU<9=LS{C$o;QR7GD^z;R+^Lx&Q*<XLC9GGyHdQ$Fh<h}
zu>LqgeHWoPZ<1*nI-LOVP`u)szat|`JgV__(KRf%rLh359~tc~H)xF!!`D5GqcgBv
z60YzF78K)t;?I4b8|jFfMX^kd*ikVkzsj<60b^*&tl}l@Z;KJUBlCYS`aGTrfWf&I
zr=OSp^Kk#ahBcw8V`O^}!c~ye!OQN}^b<q#jR1qZk~i~OuZVnUQ11(0aG#id8)ym#
zIALw_-cfAyFnxn|&Se&l@6}7CLL=W#++)+i5CTuqc>Q%^^iMORl+e*(ZL7!@G5VA`
zx%?e`8?-3be)O#PRS9A{AISg*rpWa5AL}}HGbAef2!Cf0mDpNY+M3HV#en-gf9!<*
zm=SO#iJG^~Y3;L3uvA|i7{uP%(%bmo3#mBl*B}$yYmnFd*P{glgc4(QqQ8bvxOwyb
zy^Pm!wMtwFgB&3zk&U((fsxsV=aDpN;d~~FmNTG3Idi-)S=Wiy(_}ri$UUQj2ojLT
zP36*ref#AkSsd|yyEw`-3d44Gf?ZC2PS7&;hP1-fmBzihbJJ09Fl<)ejEeQPQLjop
zj`F@1Ug@_om?$mqk5|KNr7nV?iVc#H*zw2ySJOJ*8?)2v0OHsUKcshKDasfxL2U9U
zcnmh!s14y8_F1qDUor0ZLSj^QX2uF-f0pemn34_@<-qCqU{tA)ka%7RKaItRhdyu_
z=+ozoO`WP+oIU|#bvTCA4Mcg(Hc$avc$*~QC<?pN2QNMLxJ!SD&o5$z@WdG7_sX`?
zm!)k@lWjp0NoWa}kS&II;k4N2#HtxC9=cFGxn$hLN}_#FDIax-hE>G!E){}}c(geO
zK%>i2BxJi**TIAmuQb@$;4FWs86C469veg^xie?wK=m%;!^d1CxPH>tikq-?xOuQq
zpu<7X$kT`kI6ou4L+vR)_0CxNxY#T$a}RZ4S1JD*4pgKw0{l0u61iiWZMP>BVSG|0
z&@^}7f0fZA55(cRo_{v;V*+!iYnxN}VoBk=Xr0NRg`XicG=c_084H{>O`#?Ns3NH~
zCehD4r4afdp{;goHHh;1g5)d%z?R=F<$vOjA5!>nrS>g|_8&1v8oQbD)K#yRlO^w)
zOt6jy8d`5p`Eu#T0gJ}-b#%n|PvTNU@IiCE%b_%YNk9p}OR^NMeuS)?Vmm(#1?GD?
z3R9x<Z}<Z3j41V-a*-*YT0=!Frv7NL{?_KVlrMzv(tm;s=l}G7!Ix5vVJb!Bk^Q~X
z)Im@M6c5H9|Ec7`<TWGpRsO%lSy_48@Z4bq;+t}j<Jiv<)TWr^!3{Qyp_`19M%DSo
zUoZXV`s@D+ZXb!jTMQ5v*Y1ebGR!E8poWl*#i~pidiM7yc}q=Gs&`&5blOX4RpPV$
zodPJO{y`j!d$|>%pmAD?EAFn%O4-W-Bw%l;ZnE>%8QI+-%O*#rxX*F+K)uEkw4sok
zx+@pST~QS7A@Fo1-({r(DhoSXzNlivJDV=l+CL6Ab_+SHAw=ULbT&GyHI%`mT~egF
z^g$kaw%rvVd=D|uo%54zYIs`2x-28cp85?Qp?c9mk+*R%Q_rV}@W=@X&PYxBxg8A*
zzyhRD(?EWAe&Z3){WOa!fN4cqS9Sg>Xl;MyQw>v>ew{53>TZ}O+9dM9{#Qok*SWi0
zwykE5<R-+#&q8Cm`~>D9aHW@L5tM-(wUbmdtF;x8ITvMa#@;>bg$x3wZE`K<l3T|}
z)im^2*2o0Os+YTU-=G-emFv8Ga~lPqyfL0&fuW}UJzF;f`+#Nep&jM>225#XXLEDy
zRq!DaRj6ZYWpxKDZ$01*EN-v7Cxy!Y5-bMdA~w#$`Jnp_hNUFrNT8Q*0%Fvy4&yr2
zl4FAMm{ZJk3X(Q#`8jMSIfk1h%WVRqKw4amp!|!R4~dk{7e9+XuxO<qEJQ?x96Ch%
z+8q@x7D%qev#nj}eAY*F2P8`b1=bErhV$C+PzPMzh9Q6%AS|ngwY$oayqVaH=$5Qr
zjA|^-5+Ib$kbNsz&}pV&)2%_hE50A9Hc^vA?mKg!j|idFxxB`L1oz~q@d8knJgNET
zf|^ZfoyG`8s0nsJo6z6^4X5vg6<|IsRgmcol-ct&Myzx3&S}XtJKWo@HBoXJc)Sk$
zuQLGhro1nKgyprhm#E5nuis_1wk9ys7w(C!9>;wACJDh80NIQ5ut-<6(Q%x{k63er
z+fZwX#Ka<w!CDQ-VWvsSm7qVQBR3;@_&n4`J#WLJ+4+yyDR!wz3G5hF%xYY+HIqY!
z2pUk!(0Qyu4zesTMe&o$?H@Cy`;Ld#SF+k!)>nxp6{9HmgvDP@Y9;fLI4Uj17EOz|
zl@&W)z~Zn+z$dFXl7g#T$bbHmSvs6A2Sdh{fW-jLW^pFcNFo@=OsK0F+-26~5T?)I
z0qJn{sGhX=<52~$5f0bZ^5)KOgO!0kQmpT1XoJ!~F3wZqqYpzg1*(^Kw!Q@a%4B3~
zg(%bxyR-w=bS+dk><1&lfeO2<h_3FlJd-%Jq>@rRWdbbLUU6=`ctVQmO9Q_n7gMt2
zq-494o0Hk)-Y@OXHo|+b8=?C+`8?aCaCK5&K*&X7jjL&`5&W);m0M$lixP#`4SC!m
z(k`w(A-MG5T~;w;7S#c(xZh+E@;^Q7uaXgrX9lkb8GMQasZT{gl*UL$#j38%)U%75
z6x|zED@QJ_Nfy>!k1MmexgolCu#|G>sc!2(HpSDKkA79hf|ZC{1^ozB<{<}{5ku_I
zORZpfVWY~lFG9-eh%iw2M)HmqqUapCpO&uAu6~$~Q37uODxsY1S1|pZ?d`RdjHgQi
zp<5`@#cd?$mbT89Q?s?Wj&RAF4@xAcR_J^`Tq+<eA6xtTZK-S8z14A{B%Qe}fP_cX
zV)Ri(#>E|NtaAFF$Z@q*?jJ}sVk4-&qPG$AOrdtahDReJAj=*SOxY+pA#A&Yza4l*
zd;q?4zkWW(4F*KaHu;!|lhr`uy?BQ@?jib@f+i-<gqZYeDlhh^pOyHUIB%0K5Rr4E
zM_IIKLDrjC^jqiUIl(fZO#@vywsc|<6K6G(lF~yb28OwGwl5cR@u6>tNuC`iB3+R;
zFr-0;4=^qhOg(v3aUR+ZUwJeUPZMtiv(q|KPRgC~A;a$_HIPgLM1JSui@p_8sTt_0
zE(RuMhQZzoEIoX`lo*p!9TPivb?>@U$iFYoZjYGczC1C<jZ&g07Q!5x-_x2=Kb1R+
zvH*RH|NOn7O8%T5%`cV;*@i$;7~mikB3AY*NFL;Q{ckvQi=wURD*_Y~sgM-k&_|`v
z>4FHX2Rl9+IUY2j<aaGx^9XvGP;AGomED+iCFb2tKf!Q9rEDm%#QLsoOaW7K7UX49
zWACs@7$uJIl<CLiieFapx=*4ea?gs30bGma`=^Z#WIi=WVbifSAN-6Y3JdxBABM;I
z-Cq{s)I+b#V;zu(f5~QXQf)`y>4`ST%7NT?0;SUK<s$)?_rn<l4EpG|4J7RC*Ih&M
zL!V=ZaB3a=hh&0Zv22$S-in+Zw<<3yX*T<_S35zWu~lUCI64C>yjxSL<itAFt89`-
zR_T3D0?6&pZ_eHA%loW?KFq+6HQ|?Q&*k!t$-Gjg=x~4Kk@#@8Zl=%(EW<k>V~V*L
zHNBQgJtq#T&Zz(GVBD!Ui5@p3c6niO0<H$zLUbUsuZYp339Dl5Tk`uD5AAFvsV^pV
zleVqxO3mq9JZb7MkYfkAo6|cp%=0IJiWj;u!AtLFSJb?ul5a<lQT0gUw<ljgcYQ3B
zffKO%NyYjL$rGoa`7vz??hFNy5ln{ktjP7zNni{#m(pU_;NnhxN71pkDWnH|RMlGS
z0*U9YvbPssh_=u1_~+>tOKFQ3mVBlM9~0m=CLOH&Oh<syEbud&axiJyp+iP7gUcIz
z^s?tKVuCXXuA>Pn<kb~lSzzCxN9e4zkEdfYc$A0zI87ubfPHoMXQm&cHXy>VJJwd9
z;@w;&KF{K%CCecH`rpbw<r*#Rs9s}J+V(QR31R(+qL|h9vbPCy#J6PM9mPj(M@WIj
ze$vk8U;6zT6!)E_Os$9)?ZEx}Z<D9Ysil>d+vD@vYvH@ko@ZUW{>fi{VA?)8rLSJ~
zG!Jbc80N~?9DW%VE4e2L44;2Ey=2}De=m7z7_?$JX^F{z=zY5~h@MOS?`MSz!H#)<
z3GEx>)x%rtDWo?@?I^0+oWm^1T%D*Z6--8kfprKESK+fKSRz|NApn_nyx!~whLn{n
zdDzub>abSq(lWORRUr-{3Ped{;E<huz~1Qt0suR@;Pp)*;vAl-a!NMYFH29>f|8_c
zYe=#i@{EForH<Mf%tR15bd_*h*0x_Eyoeuc2TkUpv*W%y{=2UdrF#08zm07gBZH>V
z)=GSMA&g;i4I;LnjmPsB4mKVW_3h4FwBlHOiAp`KhVI?F9m7hB3jq@U>U343a_8do
z7R7Y%Cg^Gwjrq~V`2(ANXVFlenT4>AME5aP67}FEc#c~~-Yg}6wLk#Xoeuc=Mzz-J
zhu=G)&|S=*L7!wfSiNeyR=MZ7&pGmMPmWPF)EKUnF{iu`3dz>UyWZN>iee|UOnd@N
z8S?Gw_Uh3Fc6<2K?Ri{~N(Cz^qa(G)OgpaVovB2=Zx89ddYiLUoEk~`-%<<HfICTe
z62P^AzLx+SYmio-pUW&8UQxNc03fO;w*q~&JT*!3>o<(}V8+SSnBXPo6{2Uw6D-+I
zMTX{Ake-Bt&cA)T88kTH#UFRBzRr0EbvpH(e0cASpZXmh8$x<)u)n<>P8XtzsQ3Pj
zvNzI*&?^cQ)J|LF(Do%wf=Jjg7?~`Cw=-F<fiqIDujHh3GR1IB_(NQAH4CIg=n9`w
zT2o-cquAYox?zof*7>n5tMD{4r<bHz6dYV(Gl%m97q)+_hH}_HoSwu}DyD?6I_rN!
ziblUwv7QhuSiA@Oc}r|(*GkxPYtKQ=K-7Rhl>BmYCOR@4(ynRqE}o1_+%Sz2rF<LM
z#AR@=wxFcvH&?&c?oq|4pTf$+Y73Hhit;PF>Ce<hqGn%u7OBImfK7I^gy8@t?SL$8
zhiRXL8&$t9IP38Ub3&?Zmd`liz=u@BUfU}hf-2f65Y!<9rqcXM?#S@wTq)M+jmDn~
z;kUpps+6wp?PP|c94;moL;d5*5^H3fpm8ly*>Xq5g1!(e7D!;L_w!GxRoq;w2w=S9
znP+lQOS@{t%HushiTCSm2pdM5Yg4L)wWNVs=I_!8ZJ1leRSGf<-}EYcu2OF$aQEH1
zVkPpl^I6cgABujgLxwOvDICqf8HgBdf1W4PukzU)7R?@By6r=PZqtt$5NC|{^YFpt
z>sDIEQL&_^%23TKxFMHkmqmV3Iw=feGc**Kq$+-IbZGLl`93NA5Epa$9<?+Wr(0fv
zlG0bfW2fI?|2?U;Q#R)Sr&RC<ggX!}>J{VsJT6~L+1`Tom8!qN9w*|}v(i%+YIhXe
z(Zs_&iWsXE72I>8r$^rg#6L?3s)=O(8qz`dLkYO!$&|IbVb!LjpoA{|Q#S35NYr3R
z`vm?Mh&CL*Xs>av2E?{29fIuLdUk%g2u`lb6bF~5+3xkdyPuX~Q?2|;g#NHuQWhed
zilsjNz#8eH@!%&yEb9H00)@k40Ey6jg_u$ae(;vtVWdS99Vum24lt(9CYC&d*tpm1
zLJ=Xqx#yKAq+B1_KIA2*8^PA0?2A#$cF?Nmorp&@{o_F}0FYT2w2KQQj7yB|?5WnO
zxX{ubdrb-1cS~dWvGxdgY1kNc@j?o4H7Htb(}4r)o31?4(XLduFIQewr0b9yf6u*z
z1F`Fa7hR>|=n!hU>Vaf@LTl8@K5n3J1-ctU*c_f8|5B_imDA8(z68g16v80#j-ii>
zCGwz6#nn+wB>eb)*PqmN5$~aicFim4I7KXPzw3oF=}vpJc_K%-oRiWQEXbr#+u=5f
zf05!Xcvyp6`(3Y@R?7SSF$O|NKlRk3z>>lz>5W?0k}&Ll#xIsn6AC%FO_~2+fpCRx
z-hDW^D<P1igBbaFl5&oNhIk?p6&(4Y&mb^7+V6Z84E;Nwv1x=bYc1uB?ODjIvoH9S
zksf99n;xmuO6RY(th;Jm%Kb>Kbv9aL%O1P*V_?#UAopw$r+ep>1DecVzXXoNCaImE
zH|KPPYX&7fSvtPqw*~Jk&zFxweKmHnrAj~neu2;nAw0R^<<=he4q)M3mP_Lt4@P!1
zo`(CoXg(GTgegs4P=KX|{GiNJdPru^Y(;(XvD9>iUQ#YrFW!e`H#IjQSS9RK{IeYP
z2Bro)D*05S>FBCei|It~nO?Ya0!pQno|H@VA<r&qQC9#p;G;#}0B#LIDLYj-tSZWs
zTA-g(Kx42<ipa=H#$#AosTr~@&^H<ZqSm6+p_Hq?KKj$z_%QXqprx03u95Lh?Nl*)
za<Gbms9^dS-f(7_9;})o0vG@Og75_Ry-gr>U*vVcxoiId2d@3LvOe2>wbrg31P?4B
zasJ0-VK(DYRRQ*TC*@az&nSa1O}>=6p8uTRrs(VW@mJM|6PXW-@Mj8*G4+-2uwchg
zT&a1nMh+Z|dtWOFyWt|oqFh>B#O|6d$plNS=dc3xiTF<>R|VQUMmyVd2uncXb>h>p
zmWZt;wYZRBc!bw|@7F$KEDhP&CB3iIWk^_dO4f7936&N0_MMSNlVlaJ(JAlS2+K-z
zDZv!$>qE>}e#-93VcI>*^A`7w>aR*$uqT=4sxYxAatwHSe29bD-sUJh3xZxQnF@nH
zR^pA^|JOVCTg6Pi(=>)o;hl*GuXHu6PzN~yh)+$QgJgc+`(6L4Qss%&)C|Sg3>7Tx
zAG>kJ+q~4(6N-IE_lCq00WjZaSVE>yCx!!*l47G6&kAplLFX6r4UDH)h4V)%!Y5zm
z3Q1*ASuTli^|}WsWjdyh8qdH_&^wIk3Y#kC!YC)Qo@)3xgQ1CjG?}s;DNj}mx$@WQ
zY&is1k2X&dxypBxa#Xp>Op<cY&Gd09Pl){8`3b3Y=Rgc!VTXImuP4`~#+~{c9u#X}
z!7@|u*%g+u{Gr+;*<uo1^5g9D@kL>SR_~6}g2sFSOx8pEKX#6-(o#=u86;X}%fD8x
zR7^I~rg%YvrInsReDcfWpkho7g}QGO0IOlPU`x`mQn|N_2Ccu+B=yd%=hQOOi!1yg
z{X3`HN@dYY$77N%%*Ez_Z83Q-(y#HmP8K}SEZLw@O83K7<|nA{GOwJO#(V#lP;Vb7
zDvglSbwaeCROwH;+JNiQ?T`^$yoly_Ad)<=`TXMO)1zIZh7BQzI!Zvxq74!T|7kb~
zi`z%?#L+$dd^6a!6S>~B?=U`Q>XW6@L{COm$nc>R`g!Tkph(%oUs8@(*7eyRCmXx{
z-enG*u6;)cH7`a6V}hRxl63mEaZ>?J_!ISpx9X{*64Nc-y#66MenSf3#`YVj*M-%m
z<OP5HAl!5WnDwol?bSXw_nry;I$So%0fnm>TPsIIg~wVxauD5_q5vk2M=fx;IOP6F
z<&U4f@KukY<EsqXWDDM%VfG~VCW+tBW(={btAF*qz+{ZMtyFSvESrA6J%yXV(5sBh
zaWe-A5UItJIxkI-i)jK7_*ga#|Fu;PSg>hhVieL2>kF*qfX;3{N)jtGA?v&|8eWUy
zl_%o{fnh@1x=zMZ=7zD(rmbAPet+8WZp5Baa5(j*WoqdPeVU`ygiY=Hq)S2px6wQC
zzF`Yh8uCrUML0e=Qp5K!MX`#`;`@1{udD@@AtwuvRE3d7v)Q|33^1)q5_4O@rN{4o
za0gwXV#GfUp7l}$fru}6HuqIH>&TKd_2-N@v?G0r(NS`W7SC-x-~#4>4@x5}HC&>1
z+T{=PwZ{NXuD9pha<A<ou46HN9XFbbH9Y+R+0JNrR?Z#IhTWArfbUOpVmW3j+<Jd*
z2Bh+57%8P>M@iWYC_yHeGDBb*`~=(E;_Ba6p;}~I@UX?NGA!mUu~`$m8O_DxAERq`
zFUdG_ark@Hqo8X{_j>Mj@7$Q2IQ9zX%P~=pbAk|dO<&Id&ypn)E4*H)b~=h30zYI<
z=m=Au24z`VUVDA#MgBSH0$;OmMLd0(|G)o_PT{3K-VqNa1PeFr|5mH$f)rZ$VaY3X
zz~lySbJo}?S@xe3x;vPQ|G|#tDG`=iI*@A@R!?>+k1X7;;{V-Ux_X*Y+v2I_Qu~=f
zsm!7Wo<0uEtP)92)q=cQ!JHa{XtDRnw8|hB>}5YF)q5E1e_SZew)k@Y9BTQBqP&q)
zqsNqMR=x4IsYz8+G!M@F9-pX&Nh>H+HzsVUKwsBKe4h5>K|~FgLNS4*<(2bl^WZGA
zf*{i<H(!z(H26}(9ZH}0P_5l**mjHg4NnW>gVK1(Y+$>-xqx#P-c^LuFsopHKQj&^
zGh|KySwq?Gvw~tN#`5nfB*+7!=XOzb;JDooxF?ZguP_g}YJ>GYlH($zyOxdkR4a>p
z*a7BYr7D2K;OlExo=F-n&E9VGzm*q(2VKXNgC?{b9j@2L$J9!*7|XSywqF<gu%wow
zuvxkmUjr{eOXs&b)X#rc;}HGYu_*ETdKQx_;5tc2lKyDXP{~Sy+M)!9t_g=oO%s=G
zIgdj{mA=N>xlt5!&i+h^*~U=pgeOK@GVI<5Rte-bsM^GS$}wBuMk{nBj5GUkaw=Gw
zWyEBLqrbtTmpq?8fQVguo*>VUwcmF-@nb&gtJ9D3_ovs}cyai6M~M;C=|16&WIc7m
z4f6Sza}~VoLJRV5OWSh+YTqliaOw-jfs`e;>VI`l-Rt-fQdGqG>>%jU=<fQ`it2{@
z{asQ;BX*j+KKOKjomI0xtNq-<TLS+A-lyMM@qkhFlSplke#WU<Sxul$fMX28<_I7Q
zIH7K%FW2l36z;H+qm0TKi5OUTXxlL9&RGgtv?W#!r*v#tH0*7{>3{93s`{uF&w<Q)
z?_dpOVN-!L$caqw^l+8Y2&~W4IQhRU{r32Le~ci?7_)@`K)1c-4R%%ECdyMvsD1@e
zv7k)^$fII@^-((sVGMBdKgTvldFfLxFk#y5WZVDqRVg2R`(M3K7|@$JrzW&pb~{|&
zB9C%r^qUf$$n&nc_cYO;Y(c6k2+r4}@YKfI6xkroxbx^#j%^!urv5x&z(FHB3#|D5
zr;a2KKNL1JpHfb}#EYiO>mfo{?#$u7T0o;lAAYRYq8l{6qHcCMA>o_UqI)6aFZ#)a
zBsJ3g6`NFTa&1$GGU@3%+rs;W2qDSG8I~`VB;PK-+UW&x^K%}mtMG)jd5*aHsieI=
zlnur!RQKzl--@dNFCP3TC81@2Ui`s1DmLUjQT5_Etn7fV_-Z7p4QB(US`FZwn_>OL
zOA(|C%2G|0;aq(0pgTm+M}Ga445ApNpjL(i5h_#dF7A~5lOmjurmdHe8B?QBU%C*0
zS(5z8IC_P4@SV#A?FrU0m)bw)hPLAlxq1AfH(<R%tkTAV;wkl8M_pxHBPVu%H&~<~
zm*OlXu<bnG<L_w$Wl}mn(JU>AV|-LOma$<R7-wZ^b8VI`9{w!3%4yw%N3+aV&TigM
zPi=lC@dPPgZ6m=Igap3TuoqnM2*Lf`AvD}SEPcOM$<mWYea(}Jm$rPV;x!g|X*O0Y
zFe!kbLOs}`L|6}>qn{#}YQU@}FBBh#5n*-Xye4bzzWsA&3i4kFukq`B9+vv@wuVw_
zm|Z><)8*zIPj8ozRP=s4%94}#aGx7qEKi7<O9O-wi#8M9J4cJDp9p5NTZTnrlf|SK
zy$;}WM|QYNOt#&<gCqlxGERvSUA3WewJ{YHfH0Qc>J#ze+p>U3OHX7v_Y$HR%TI|b
zP>|KM4dj=&!7!W@-2}|MdRqp%V8;&MLF*<uiYp=O2-}avzBu&Za){W$+EV?mEbQX9
znjj)=!WlR{IZmjjm8Z-y^|uc$Lm9!;g-x3-$k;(->vZY*`$2so*2_9uZth?nuP*JC
zA_`NWGXMs5$D1_|uf~}ic=CF|WgnBBg&8M(LoFz+!D(0&+r9SH16KsSgL5k>mdo3d
zQSQ`G5=>1v^KJ3HtEGXDLRRZ~6UT?Q35{{7V>8M%E~J{Ivv;|IKEp1L8U79go=s0e
zEj@7gp_*i|#hZ#LOX@4>uJa@hPwvm+<hRfwPJQ$YBk|5hofr8M*9idPOQ|q}LSJIu
z9gbjpw=ev?h_maHlSlh9b&~y-S94tu5#?7o-JgwZ@#lFc2u80=V8`ub0Qu<)d2vXM
zq?K){Jm`gY=f}S|ujm~KQQSEuJ~gSwOWP`yT^15k#2-u=T`GomzpTOsS<T@B0F0iK
zzuPwexp`3`3{OUOqKM7M8CX@t;Lb3#2OI&3$K@|EWxI7({sQ^`afvgK({a9ZRBb>>
zRvqV#2y*7*bp@~|E&EC5fbb~xZ-8AD<;^$I#~3DSh2)~%3$_+N?DUV}H|ioN3cT>Q
z7&9<BbOyY*QZZ?I6FadinLO<C<O$f83b{`2C38OocWM*wk_=hrYp)oXt<6<V;b=W(
zYPh7)#OpiVR4IS_@i_(i^5(4M|1aKizhPamDy(89+jUFwMX0gJnYd}gwxuC_(mTXF
z2S2DtdTC4SnZ1-~P^R$}!*#UO%D|IjzLDAwkrDn9@9$^8uyCo0F3#;;RTvwXKe(;P
zjot)&lI2bDl{bTok?;VI=o?+Ha0v(8dlK{r9H#QFe(3&hn2h`<0P*TS*6y6?zI2l@
zRT(070$^25C4xJ1$i2&tk8`x!yi^%Z86S**fi0L+6VSqrGKV|+2U!lacAt*`-C(Qm
zo7h3EBE@1R9I4=1z0o)C!krq??hFHY>q+rpiXR|KQR{ilkQ0xps~!t^%dV8f^pxr=
z*mINCcHd6F+1Xf87It%gtxItdgWe^sKb)}2SsfE3t2&Z#ebE{|Sq|5Bp*V1N0mE+K
zD8}mRFl3H~VJ8t)obZNOtrabFq)fO=VB1^374TiSXVYziayx`SKYNriFtvroee1sG
z24}TplhPR9uuDqBmrvdNES*YTJj)6y8>0E5;*lrUU(V(e>bqrkOlAFqnAXR}MfXBr
zZE_c<N;8iVX8;O0%`TLG0}Y*#WefnoOEG)iyCP*&ij|bo0EK<pdo{IdP`>b-l2V0n
zc95>e8)Ff|&iSY(jwlV(J-hr2nhW)hrl3ovl_w;>Kc0L+Y9=zoz+4#3Pobi~vlPp9
zzXZk9&S*l&uyZH;P)yANP!X;Sr+la`k|50GX>8L83f2$@tX`J%KW-e8KVferf;Oxr
zhR8GLI;Dt&*b-<6pgmsVdi7FBQyu7=^WRS~ZT^;s(y^-QQ!-`FS1Se}`<Z-~`usTg
zh#BB7v2TA<U$zL$#a-(|Nw-1oNX~DvB+FeXRlN5-!5yZ%i^Vo33mq-&zU3M0tg>Pe
zi57%j>~@;6buX-sB#WZ7q*f*me$kcdrcIMMLJ5i!#cdA!_vWD(UVr*il!GN++3l*c
zG8Gb|$omm=v-I1_u)7pl#a4vOosq4hRiz9Q!x_SSd^-lTX#`Cj_qJ<5ByhIDDq^Z8
z@59b!`ag$h_TAs1IIuelnh-YgDQIr;PRY=TAUa-yhuht=>;)2K0sfsD!eb&0+e(OO
zg!Z?bHgAO}+qYQJJ)>RoxB0OPLG@e{mREij%stHh7p~8V!iKp%{}fmymr8l3!fd@b
z&$R1T)4=HMX+dS$BnPjQ1&~@uK}xb`t<Le(3ix5zk@V~^g><i<{cUT}HdFbp3ZG_}
zUG?qn7SH6GG_4&9ebSv_FvQs~?NXEq+{fI>JXPII+<FePi@u(YtlXh-bW#NtGV5E?
zI(sw_@w!+W$EjSglvzkB{rmrQ@iCpt?u{{LB3X3_UJ-|pr(M^TJrxvZwqg|pj6G&M
zS?hz<C>mxTAQ2+Wo=W}Y(Hk!Xar#jtBLH;E&Qkw|PujjRe%Eh~LyBrQ=sT4qTyvr6
z&H2?E9Nnv&=XRu$pHF3Xd!x1y=nC|gm;tMC_(sLt*FJ5&;?hepYcVrMgShT2rO>(&
zW%tUyl&&a2H^=H2<?pG(j@SKh>tw^Sbnt_x91@eeBf-%3k_OTt`G23l0mQMY;d~BE
zUzEUF5>M(P2;;&D+O09w0@$>ru+Ge&+2H|)PzlG<FJsck^ihp&YkRdoQB-1H&3J+}
z1C{Oa)4-Oqv1XvV1@g&mH7wM<3woy7*CJE|1#-N%Zxj}pUuusdEk8NU&Qgh{j+zVu
z!D+0;fYQBiSTy8u{_IazNC`vL3ikK!ZRSdXj41S%QG7MEY_+FBF;E@fr=IkGzu@5y
zF@mAeLL4?25TR?ql;zLaX7Xk_e<5cG7l0MA_6;*+1dv-k4(ef5A5Zi+6D}4!R`nh$
zVO)o2O!f-lS2Uge%{pXvNI~v9Lx^nX=@|Xcv1gt!Hbqp9T}MdVj*xhY`_!YHpYyIb
z4)5njoP;4F)-P%9GJELa^T%{mTU^alnuQaEYYE9=sxMq9k2YjR@a}ALM<)LPA7|`r
zkb;&!F1>ak+U<ytvz2;}d)R&npAWaKq7=+Wc9SoliB0v$G=5!Ikwfm-tuMbG1a4bi
zSJ_+taf7;?F%S1Y`n}$0W>e$z#9l1R6WYP*&2`M?D80gFT}~TdpIV)ul7$9PO~U+9
z(liGy5hzAfS@j1P&w)H<YCD5C1geV7BGpuQMXmX@Z629Q6sXv%GxZPl*Ipg&DQuEl
zd@sOoN|y~r-9oG?*bhCsqv4g69=`nSh1)4ms(Ky##7T(vRtwUKI;-gwNFtq7px9cv
zC^5PpKW^<e?;YRg>^g5Tiosv1@qr&)_xAa-(zI4Fb2)xn%X(P&p@$|$1h)}kpqVfE
z?`3h&6hIr<=g^zJugpLlX(p0v?d#T`F(L0oV=zyYDd}q^9zNQkUFarRyW!+b8`MES
z2clc}eRCx)M^k_C`8}04lM%abuvY<Qe>k6TY;iJn*&fu-!0}kWxVb8}EK8U-3G|&3
zAA3}Cv&Q)FEXGPLbJDI&q%^-8vW7B>XShJ(gWA5_B3GORv>wH%OZ1H6K4VUlwC<~M
zUVdwfnGxFAT|?N*lNrSQqJxYWcqchH!;J(&QIvAXnN}$PTC};IoS$wcsr*bd)Y7*b
z2P^BIb+GD1nwD7f;@A!XX(Gvf<_^AD^QKfmT?r1Kd;^Ua2W%&xGQ*?9*-I*!ho(7`
zNcVQ3=cqZDE~@MU{E^nAo^|rYQaK^+Hf!ZSHx!snT|TvepPGTtSQ&)B$f+Z`-uND}
zIHSS92OgzBPttz>6|Yg?&E+k$u2TA?kO0a*nGMNWV{gsQ=I`g9bF~!v6Y@vCK1vX;
z8K1*);LkB}%c=P~r)BORZ(M$7n9qH6U32xD#;HM9FTfTETT+Q>?B0n?8>1h?+c0-n
zCb~MXqwVv(O5GM&{BLVV^K7^Rx=)9HbQy4y(cylZN^uZh=yr;63%FI&bitx3nsFFs
z5W5#k|4jXodius_cw*d$^B1>s+{kwR(4we^-JN}nO7>p&zcPb3?0fUzpLgR2-8o8i
z4PaC8)^d?}y~EC{Y5p^LnrOOKkCAkNx2$l)-)uiMqnCE})?S%<Kyx-x&Wpwy2;Shy
zgOex)HKK79YA1uhxX}xrr}6;HfUa8gC*#g4#LphF0%lP{vqfOs``oh@j22b6$&Z;f
zq%#d_HuiC%SNE4>RoB2%G)G7XwEU}$sxtdp0U9U-Hvar{V&G3R0Sr4%cwe3H(G_Q!
zlMC<b!2d-IN>yQAlYxbOFjA?zK+$$bRDb{Lslrt_4#N=?jG|%-rr|CW`R{cP1?brb
zmTB#*1m`P5cX&8FI>=`6*&;7ZB#$WJXgrKk$pEcSXlmzj&iuT)sK|1qhaeEO>>I-&
znw57P`cF+pg%`rSBTc?n@L4K~b5T@Jb&aFv9bgU18yt|#7$N%ON3Ar}RNXD059l$_
zwGhHu_dBCuxih|Yi8%r7MNuvfDPYA{{iKuLV<qG7_vPW-p}-6lM7mo~BS0Qa4&*|2
z8{>g*@N_AJm;t#9?M~tcl+I}9bFQ+-P&lbXP>Z$Ylr{TkNc9>L2-vG#rwu@7>}NMz
zMB!w9^T0{STiabI{LLf*7E)WqVy}fL`#OUs!eyv7#hAbu0Ku3h6*}5MnI@hTA4bEN
z@09rveu#HP-6SU+*^@l!3td<~R*6r2lzJX@2g(DJ(>B2eq7%@cYJ$TreADeWcI{jD
zSCd%nu<vEBuL<Z{rF>lW#5LZs%6^?~sk)qvtH9Uc)>6;V3kas}&4DtW2!rlhHJjNB
zY5%x-T?xIzBT>a&Ul2bNbGtQ5Pm!YWhe)w-=znhPCSKagqmvKuCloZxwI~J590OcR
zs8`cV|JDsl;ex;JhKWx(VSmYoe3n3Om=RZn%2V!q_9ERmk+$Y+_|lGbRFYutiC{`y
z^S?X^X`Uvr8|IBy@a=40X#rW-Ybk%$&L%K`7!t$}0Nwbbb<M)cP(1nXys!7V!a%N+
z?#)M5{_)Zi#a^h63Obe_=yVr!>g10}VD34+#Ze5D47Y42f0&bqha1M&{`8p@*Szx#
zmuqXS#249*LHm0R>WNL+JW_?Kkc=4oIx@M!;kY^d)$@0OosgZc07x$D?=i-l-l^Tu
z^Mccja6{C(s@w33IaP?i;(ig{B>{NpNdfnfno2-6^>h$e-Kvu-LykK@8t$)Xsnjd=
z)j$6X@MKk31)=$>Xfj2Br2=6Ww9h0O!KAeyTeov{RoKWh$KUP?9>3-(lAtuf>AY8u
zVOo=zpKi`Se)?L0Y<jC@5R^+(Mk5nU+sZF-&fK^`PH5<;`bMg4Fa3%h&IK3xH}R%^
zJCb7O6QVgEF|l@tSRAa#ovSb06+8=JNN;222#ktdU+Ow-EpI)rS1LySDyc^IK4Re!
z;dg(ODf3ebwfz21*b#*waPJdQKhXWb&C$iztH5RL0Nbl1z#k+u(4e<g-b@I}`aJl7
z2<rnM2qM$e_uimt52;pc?!D9GJF#+d6~_hVEG$O#qb*Bkw4^GaX7PnyUr^U2DpVQw
z-9#Jik5DVQ)>E{aDbTfTeGG)d<(UU}<4;a9b{1`s6cUVYzmgJVt)1iMhSmmq?>r~s
z-&R&5Vn1z`g`F&BF=e7U#40k*fDgV-B^iC4o{cXRRC)F#r=T<LQ-ZOESx43!WTN!t
zI9fkBFQ=t|8T~cGebi9iOMXfNI*n(U*}w5Oo!oIf>yTq0q$1(z@6PMOhb$MERAmol
z)ly1o5-<3r&^2h4&{^{=vBe6Q0O;XU%7sPF5DtFT!$iWutl89%n4gs%%f%%kB%1L9
zooyX^@gh@H=}Hu)iu0O^!HBPkvc;y$kVb2a<T^Ky6nosCtNIbR=c_HqH=OH<dFor}
zjjpL}imooz`>L#jb^*nEKMZV&aZQG;ID$Nhnsp~t<Zg|#KEKML%=S>qMT-<xMWQ7m
zD`>$hc$`{zvz6^GdDQeE2G_QC-h?#Mq()-4fZI4ig>qhFzCr+#Xk((X)ZTuQxJKMH
zNuj)s<(&XTCqqr2ROm>mX?S~uPu$nHIUfI+ry!LLdlLU!>5&rSXx$UcsX2+at#4<U
zI?iE=P@jAx7xRt!$0U1OWm$HA7Ra2ePnItHIXsM-9FSLFTdO`*N4B_XgOxp8YA~>+
z+Su&|X|&5P$#~xR{cIj`bRT_byEj;{fNKZxQ^~$;F=1S_cFGIIcIS&=NCTVNq0HFi
zgfo$A?~u|La~ZWGJ$PVg=t^B_XB1-lv{NBK9=|PVPmw?czC#w6n1vJ1dYo4v#f=Nf
zsWO7b)0a_{2BB&kyHJa#nM5YT0fd(qUtoK{p)u{ZT-%{K2PPehWo?!qO@ew*x6{;X
zNRQ>A*kD&dSf@dc3M{vyR%(7Dvdnl~=Q0)>c56#3pfNf=>DL4_-kxm*Lri_nnogdE
z!T-5yZ9dO6<!K0`e5S@I3cBL^Kw?X{I=|6*Xt=(44x$GSp+J~3(ZS<fIFkTS2B;OT
z{GG`77)WXB=2~0Ag{znEvP083r^JWjQlyzz?oqRoAniXdZ7!b{(s=t@X}583xS6x|
z4z{qhU#@HQ4^nXK=RF`q*}%L(#h)jGzHF#Lq-Sxp*w`!=t~Q8vU5i5mzGk%p2Na)Q
z3rA#lynu?EGvtK~`12Si{_$zt_jd&<zIP@_lOPnS-FYjy;hL3Prxg51>7iuSI^q4V
zsn3V9adt*)-KCs4aKjZeNyrEn`#U8jz~<bXoxROfzK$&Im|nw_EDsZC{WP&gQYrOO
z_d-YV&@{YZRY;^y!<p&%X3v*|y&$6$@cOOrOTXSd=#tWC+|bLIWU_-=upjB()3y8Q
zU+<GeI{=0^FqxA6bn-c2A<CO<FJ~~7GW5HP^Xg<>UL4;PhR^6~u%{@Bw+Ux|3D35i
zfO0CNolAu%xxKX>t+YV+bO5Zn0RUj|Ni9FOFwxvQc1X}RE8+#j#$--o_-urpvmHPd
z%*m50YPCcZx-=Swgl0k6l{Dw~MO<|#fUO#_(JGZv)3w>;kV;MU80oh7McJW*k~a-b
z!7l%1!LZIXe|z7i*_y?l6jNWetH|)m76W`#NiixNfUVPn4o>quv2%BNKSez0$zjCy
zI)yn8@Z(~D4(cX!E&6KwViLGX%$2R#k}jYcP!*b0oZyU584FB~vY>Xiv84h$Msmni
zBL3dwz@WI_b9|bgW5|i;5$KB1MX-jD(svTgo(eCB5vh_g8wo)nu>*V8;o<8$o2$9+
z6CoMWT0JJEN;-Nzvn+&^5c!As#|+^<Mp`W1g~cNR8$m;2y*cK0NG-;Jm;jMI)h#Fg
zV1rAfTibj)BXt(X<l`i;depMqL4&A6bdzDQsVvDbj>67Xbo)Awqzu4-r)PrvszWN$
z22|O)xcdD9c}o-Jwd0es_^gPir-?n}Cof`*uQ(GmRnVW5*`Z_(B+8ZOe9h+WZ%O;M
z*?(Dt>J#a~$@L($*1mPA;4(4aXFK~xDHvZiCd=zmFc5bCQGPn!sg$L_%iK^r0?e|u
zYpPLMBPG>#L(O#hTmND02g@|A_>5ok{6!`qbC?B#V0>0tcFhEz-sQ5BzDuk<DVDfW
zXK|P30=Jy}W|R7Yh|W(>^UxRI2XW(cuxfGI{FPM%|Fr)63aL$9kmVMXXs3)ohqGi%
z{EhR%c43#CW3R0Q6Zg>MjcmNyZwD-Y1NW7X(B;_$ie0Mu+N!y&+rAKaDItJQmlv#B
z1~qv&zm9O*ZDB$*1xeGW@n3ah*4Bu@AsD`Z!C;k;f0ZBpdM?N_oN6|=`0(qvK*QhU
zk&r5DN3v$G!4Heay-tDS%_>g*e%YvsKj530+0LhsGf9)Hu@c#W3<XlCvdR-U`W?_5
z|JE~+(c{71T%O158SLLK6(v7sBOGU}<Mu~JEPXJ9=Ghvg$j8q`8ihMhBP7*??$RNQ
z2p4#31)ALdCPHVr#XUGHZIebo2hK@x2<%+le2LC(Zzf|rMcPcRM;UA5u=UU3LoT)g
z1&zwxE^5;?_Wv<Bf`5&nuzZ6=Pzi)8Q<+d1$dyiF7p3IA|5wyp);*DI{~Ji*sp1~n
z{u>|9?J1DwI=&-jp+7p;0)0sEO7AWJ+@KA@ad)<|@e*aFh@CMUBP>ZJwcU=JJ&&IK
zbgSzkVO9=Y6_ZaGO%U?1H=4dCifYWX-0d>d9P*crT0eGd#NSJegRs2v4Fx-i!q*#n
zdW|h!>QopmT9(1hAzF~O<(E(VxGJDxB5Wxy1U4Olu8Ca7g_gmW6m#y6!c1SHQb&_O
zj14SFg*YeNqAp)uZgPb2@dxD3<l}~a;Z}BQ#9$KHsf;RzfG;mrDI^_XJeD#}Hp#Bi
zS4`m7^H50m4q|x`)_U*IRvGX(m}IS*&>l(8=v>+tijs|*jr=ig3S4V`=@1@|zmN`N
zBWv}GPoeQO$EfIU0*Ve;(gQ+&z^mx-;m#Ox$>s@m5F})JF%#~}bS#vjIqAeb-7l^y
z%XWKtrTIVe<kw=~_(|=BvUl?3=KUFLAv>M1>qM68DUGrqYgueoS#k85A<yQE@J?S8
zdvO|c;OtC?3_W`5_J&haIn=S@)hKDbnMy&a%?nfL$Lel6jgmAkmcAr*GF=(bpu}kz
zxu4T7yhBS}+>i)8U>&WLnALBjw5_XUDh3|UC<wTg>~?O>m$Mt1IFYkBt)tRYzxhY_
z^vkHG+prt5G|<us0Jeenb$ZRttLxp}__8wL8STqNwpWif)y|7h8x+2`6gxr<A6EG8
z$wldcT;VCd4*4|l;z?1_?W#J}@kv!?OHs4-;*5#^4t+Vz208GHCxiZdeBT<Int;Oz
z^DYS_!$-tOq8eYW1DsWZc>F4hlH`@$d+|l9E4czJu6o8ZYFIk<hE9Qlk)1g~(GY3}
z;ePw&%0$|=%&&MPbSdYPmW%h$>bm9hja^*I5X!e}Y2w+g7TZW<NHOCbW5_w&SvKi*
zm6l&1!$^R7C@m}tZBLT;_#P_2gPCCt#;;lnSN+hn(Kz?V>A{`srR$523;cp09m)^-
z`w$N!5W}AQOs}U$Nz*b3<i<>qA%hB&TB{8y9glPSX6b($V98y`4_IvU$I11dic@#v
z*B>E8Y91;BRVyxbgKrq~^W+&l{EZ&D0JL<_<Lq9U)!{);>?|Kfr>o(d)CI-egqo?D
zeR{$ANRQ17H|3PYCLg_@Cq<@*th=sNE~M5YDOrCb9GXH>30}_CpbvXw`l`N!gdy;g
z;^dxAF~PyL9)?VEBwi*=k{Cpcmf@rD?4=v;e#<dj1c7W&G*Ru3xM<)Pofos1Fd+PQ
zc9BTY`ATLUN0ybpf2g(A&cPkWV2~`ycVILgF0b`^ORWe;=W7K01`4nZTBFAaiKM64
zbLswFLO_J`b1r^d$|+WsW1a->^f6(1-I;tJL{I<$TO_-JF!!4}m9(lTB-TyU4;Q`b
z5Gg`5Y>=c?rY*_WyzI93Ea~FzYCOV{DuQ}o%I~-=qy&xIgu}RBTrkpXb0=+fn@g#;
zYH|{;VV|g%pE@c4{{+@2XX?0MFw-+sHX>_)uu)S}zeYuOeRFrHv3Hg#kzuCnO#p5`
zuFVij<CLmATS3p93oJkGi5_)lc$tj>uzMIL7^BY&sDs}>L5zqt=6>wH#LZcdDTh|n
z1fw<fPxnUqh>MIguf)=#a^7MVo*Z4C*n$%CC?DiCDqPabiclnnv8t6Ag=KJ$ZEMj>
z3$Ap2#d_mw+p}M-W;V@K<L<$LGDbGdkJUe5H1}iTt_C+NxdMgq)JllmlR@-tV4|}x
zpXSi2I?YZ?ZsxTph#IjH$jpd)_pxNvl$9TjfMXM4(%#B~b!=7BC%!DTl_(%<Mfisw
z%6%gxH?A%Y*p_UaZd?psAW@$Dm<0meVFm6iWCW)XAX~CVl<rpoR|ub%cEKAcSV#dm
z{^vVRrnmTek%#tmeAm<3%i{65&)Z14WJ{}g5bmzuO=VKY8=n%>>*;<tp4XAyVf{$q
zdzJa1@~+MIT8lYUq4+@yAvb4}tGsARBtIClLt7_>ni#=!bd>76H-XLxp?H7F5)y;%
zBrjC#pq>AR8(tGbVA(VX`+V^}Ox#j%z;lZ|#ur?C0mwp_zFMt=RkSDld1>vc+=)S(
zmyOh4{yWI3`zGer$L4(~=2z$0yuj8zXeGYZXYcgF%gt2<KPBhR=ETXLqZdxQ;0+C9
z>0W*_!G-I~Jzo2!*+WS4R~eTAwGLPul*%=j>aQ06?kchXN$YFKZqX)F`~;JYwd886
zX!U3Y?y`7!(4AwC^X1aAwK0`<FBJbTnHDL;VI4Vnabz2QGEsmQ=Ds4eW`Uz$p+fFI
zTG^W^0C7h#b~Fxz%2z$p2;wSsscy0lyu(UBtC;G{rc(}BB4`UIez+|HGOli-BzIou
z8x>p&e`W_W<UX(MDQarjy;Qj0<j~ACfJ$H4c8SNTj<ls{0}d#cIf?mbGyQ6I@yqqJ
zbL&}5c~yIOwr6Exy-Y#H)yVj0B+0ygDjWGPHdm9<pcfZ6UtFl)f4`V|2PG?+VK2I<
zhUqm(b#Za(oOtv8Ot%#hrhHdt5&iJacm1=mAQEQIfF4zKHoYxOA?(rwNH$Ml7&TPX
zC-y^G>FgMAfWP7xUHyJq0s9BmVK_TorjgHVnx${IUfu*5F-u}^-n@Tb*7AhZ7jHU#
zs4BDf!d;kqyM-YNK#fqH3deF(^0gmRwS5#d6UQ}B-0}_NCWa|FB}}HfyN;I&{9Qk1
zkc;qM>4>%{|B^xF+Rl$plrKB2Q4~N3m~r!mJ?Q5B0mViXab`V889Ui`7{uU3$wo(o
z?E=W`Z5)S2Bh2f&{eXUqxm0s4A|2;Cs?Wb>CJ2Y|{;mnnE2BFS<vXDQ36QJ@R>+G8
zt@Q2KEyW2cy{B(%=Mr$4nTleb#5uHQ(OPQ4h!4T53Sjm1r1IUpL9z`N(EVDCqtY8^
zi%gw(h0L^Tz|Cn%1`u?UMNFN1ziO^rNQ-ok42#rMSzPEW0h<6D=ZF13%$qy?vIbaY
z!LRJouVtYK>K77Fpy#_KHKBhIg%8znWq<X}-hTg^4#rHw*_Vrt?Ft{2O5!DS7VLv8
z+3(UJGCfVcxjzqo-!2OVKKPlaNlHRgnG+<K&=~{lxvE|~3g(fyV%>=%T=2Eo_8=(T
zu|!K|e=wgxd_(n_r@3lx7?d2l9R(4NiW+h<$;6#+x5xaVzb_q@I{j=scIaEo`%9?l
zv>X~C?1)IseY7Kwz?|J+M|+J5k*GhIF?qDr1HP_Na3_xBh+%m|(C2%9hwbvi<df;p
z!)UEIatl)`He_>%<l}iN&BcdnT#>wqVEIW-%$l6nm?Xs+bO)l<D&ka77dK`npO#3K
zpCsa{oWutzxPV$seV6BP7Nzdi0%XI&N|^ZZ{$H(B(Dr-Z4IVBY-J?7n3+E3E@LLjk
zr@&qMM1!N##dB#Hqp8G%2H?ZJYu`QzyA7-YnZ5hE6oR@x2p%T8>hL^VKXOk5qPRiB
zgn(?U=r3P<z(H8NQvD8a^{tco6)%4%dH!G^bj;xqOfkxdwSU>D@e#}2>Ni};aJ2Rs
zro-u-S#$df6T&%&do(%UWlQlCA7{Ei^I*llqd@&W3K3>HA)<w!YaLnTn~ZZX1Br8u
zEHeRg8dhnITc+U72YDx#N_b^>Li#V3PM$nkbWEj6KzG0~q>brJ_afq4qKs=dh`WJ+
z(jHRZ7%B*ETd!JPH12}HwT3My2ni~5)eeqi-oe3OjJt3(kfaLX!-mLR<ou;o@kl7j
zR1)?Q2z)G}lQFu(nA1d;Td=si?IMk8S>!-}+60hg5UC_|dt5vif+XyX;rb7C9`bmm
zvszZO%2UxwASrVD88|e+d*=dc59$xe6s}e(;cJ)DDgq9t$+p_1&6zZm&878?SL?~@
zSRm<_E_#`*C5sjFV2wCw`E<dnIrq5KI=D0arpX*FE4=Sr`zw1Jy9a~Vr^|dW2`D*a
z$s-uHfM-LNzg@?|XnPF<f}?}0D^|6@F_M)?i>xTcS2A`)U(3#C5mmIX#{sBY0ICSK
zy~+h3n3G+2rQXZuTKF>aMm%<^Lgyac4=hO#%xdKjNH4`*n7HDzD?Zhkd#ip&DUw^0
z|Fr~XP4F3tl{aEb!)CZnB+c@AIk`uL#aazWs*g@BIWB7}>(uSkBT4-UaF8H;#M$D?
z56h(!$_r-`QLXYE8d^~3D<4Nq!7~W0<_5!zUDzTUUAPS6^eq6~`uxnAXk(PV5ptzF
zsCJhrl1}OtkOvefwuK7mrykqL8p}HQPSyiQDwl6SUT%|`@{!>#git#W%>K5Ko#kkx
z8X(qY9@uIVW$2?n5i#ea5|7KLlOj{Yyx^vwa!%g}m*1PaTv8`h4r#8u9)DsLvoleK
zle0&gH%UgQr>n!)LJ{ST>ZIj}luVIW`-`Vrc+&J&aiTzaiO=NGU>iYxCNV19ZJf2F
z{oeg0ubCli#W65SJuEUP1+kn0gdU*#(#HGGoa{oaXxY7(;ZM9k8mZJqw_u<CU?B5o
zsieDLaVjr7^>HDjC4@g(No{GGRp5!wUWl2ibt_;0j>DMwz(_2WdiAWp(+`lKCKM7(
zb~H~uglRir(T=-<>O~=an#a;!Jl_2onEGB_&-Cf}H?NB{2b-+i_{HcJ-JKnK$w7t&
z%9x#f%L0E#g7Q(Hrbf4gv|7zRyh-1f|LgxVD&TN<h2Uk5dRA#KXLQ`GF8_FnPS2ZD
z3H<s$UIn+yp31(NG%9I7%k#n?o_)q3d`~U1;MuF@vtY?!#Ke0h&;X5>VMq7ZHc83u
zQn7w%Wwxiy>GI*mrbuZQqHGCSmh=Cm#<#MZAJZOy^m{)qrGUXD&vQ@|c?46{0|;EW
zy9eVwDWMjVG0D-5Xjys^md=J(8g8^z5V;Kuf2pprZ(qs2ZbcMw{a!4+gZoIWn9vk6
z2Btqp45>KX2P=7kYx=YV>zJa<;SlB)v_PU!3?+ImcmY%OE|D7@m=*BPeNlw9J<}Kn
zL)2+u^#3XpGTgago@v)ZB+V{=$DR;ctU2=v{iRmOXZz$bRi4Wz<Ju(|p7G0%aZQv{
zJu1MZpaNw!+aT6)dG1`EVPxVLps+V#xqs}!wg$)X@@il+UvcU$9*t*S$g(9S7om_q
z+~2z&4IO}2Z|=RSQ1#KgK-Ec%<U9Yn;V^%a`oKGMeAELmD&&kRy&SsK1!6P3OshLP
zh_>pgz08qkALVeP7$Q7~c7uH$zII-~Tu8rGo5(7>6UbsSTDDDKSE;&^OtxtA2;q~<
z92#V5hV;qVM=V>XZ_G08_M)y9jF!tn<aFpCDg#iT!_=?NYq3iDNw!Wl-Lf7z#_i-U
z3aCN<G9h78r;?}387NPcv|_!WbVoPG1J}EL9-G(cq|u&iot*zqS*pL6ORfU%gEG=R
zc0V@O``z#F)%S*eU`~G+OFct$_(^)_ouBrvF<k>fE&Pp-L}16wOhjUGeX2bkQ|8qi
z=+P>8R~6x+4aRHc$T4=+Z%sQ=u`T;kmZT5q9}?OTDG6!ClFv`<nrJjZmRPGlFdu;Y
z>*!X*ZocrG*P8!jgCtLjG2&LBR^_{vOl=bm&KKrOd1Us=CviJiuUPe&&E82kqRQ3;
zyr`qXhRah*<5{gmds=_j|9OO>j?6cZIptN%#`;UuiC|>E(WGD9AMd;W>kJ~xCelNq
z(>JMK(VPA>Vs7pPNQ903it$*;76Ko=TuP(uvji5es!UV_-g5QESm2bAl7YJ>Kl@+E
z4C9vw|5yle@?8_djUPJP7;b$O!bk33A9Fa(;7%@dt*JB64!VBPo=NnofLwza(ZAbv
z91z2U-bWc&yy)#?p!hG*a|wX=gEojtj$v~RIPBpKW$A}c5v%yLTdJ245(QMS)C=A_
zmNdNcBCWmxFy|`S`v1tal_qgjcoBD$D#w<Fa+j*;lBFSuzOeKb6$}6@w$c0;zIya&
zbXLL;U)qO66h>8#*olM%pwI)3-<CAikvo$XGc-yfMYZ*xecrucTwkyxs)_(9l4aYw
zgL=22u7YvCdb75Y#|?TSdbDOSWsZdnompQcZWOI$(xa4tCP0=u0ixTPqXXXJ-U%(K
zG(Zk(lfvMfgR@F`q^dNvRSPB+)|gEk#Y%{(2lH>qpA_i{S8&+5)C6srst<2$sxS7O
z^U|9*d11wn?S{lpaeRi{f|3VRZwJ?_v&&+xObsS>C>y`Pkyo|ucLx)4L(;Ze=zjj?
zODw6eUj_%o-OusnPdH8SK>BF1$dlRyPadc0t)k{vARg!STId=^QhKfuJ@u|7^oC|u
zQ$?PJi}VT~5a+dc&&|FZ@y9&j;>(BurLaVFM+lL_-VG}oY#O>dp4DvpE*LV(H}Zhs
zeZ2IJJ+1Cys<EYZT3fg-@9wM`G?04v=o$^Ln_^Dv65HQ2ED${P9EagB&8zQo82~zK
z5t@of-Cz+Wn1{xBcJcL#s$}t?inQb~;7Z)9CLwmo#yKeAE$8|SU%LN*Z%2GhGl=?9
znzoSC5(xFYGJ2l>Yz0~3*9yarQt5V>Rh~JOBm5x7>3{PFsZjaX-%zCFf9D7C%>R3D
zFo!f9`RhZ{N)ame-}^!O%KY^=m~`sX{`DW2!+-Aw-tgaBB|rG@?KHc9<J-F+$EF6j
zy-X;ek*gxKCqj{}wJsdOW2x$QK|lrm#b7K{<VWT6tz>w8ZqDBnwH*$=01=GpP=lA-
zs0D<NG>#{Vg>NKrYhKtj!6^8DP9;j0@wd~9ZU4I<BSZRR$2`#PBUTLXlHGl<H`_+I
zs+IW+8f}YE>wE%6&2_!ycb}d7H4i^$Y?f$=kxc~MFs0H$Fik-UBOx@<e#?CVB>T=M
ziVQsTNqiNk59fqbEEaT<fu3td)C;6f5hdbs;<^nY@e!F{!~7AbU9#K^-D9)#3TZ!S
z5GbQ6j%TqO2K^dPJxhojCkCWxJWH@;rSt>hd^1=|k+g+f!7<^k?raVisC?EK_b0`(
z?c3ZU&WUe+tytL)M;FN#zy{7WC<LGd@tkzRGCnkvGOLc64?g6uDbbIDLF${Fd|(E2
zol*R<%pM;eBVdJID>U;$3~R~ITnv|FCiZh0au!qUm=%|ESB?}Qi$mN#Wpm_dp;|1h
z6{TUoUyBLTCB3x3@%wk5hUvj^>`%M*DGEx+ELWd&txzZ>PQe#mfzfcrVmjQwHHSF|
zOlBbMy#Xh8&-~zBfyjr#lpul7gCs3%-KK|+(f^z_PVB$*zx2%gn=8lwUlh?tIQh7k
zoxUbZgZENQ7iVha<QM{o*PAmU>BA%zutk3reze4+JLF*Vq7H7(uI5d%`cizOQbM8H
zD?1ovJhgm~l3@~M<Spa)?9?ph>1klSP;=dMIL1;0Kql^uu$Y|2%Xv$f5T{MS)89`%
zg-qXnP~;C-fIY7QXw~N5x!{VS@J1?`BXQ4+E>tis=ll8P|9MAjfPp>p;g1lvgd!jM
z6|=$x>4KTLY^nAbK^NF?UQkk=UJdQybE``gF4b$9a1TCFG9f>*d1HdQu%&9sWR}&u
zlC@<CojU7UFV=a$i^jPd&J~J@cuu)^+FJ{g!jjsBYLr2C+~cIg1AsYcL&8YE0(M?r
zV7(Z?(}~3u+|c$fAIus|jXxw>(TIJ!F-<3!f9i{d+P9&iU4vN4UTCjv7D4k;$+#5)
z>a7BOBe8c@=6*g)S@1=333mYKUn(BOC+<;YE8G66-eUxD_xJquA$jvNiRy-;MlPd0
z6-&D@$x-;-kDmg(;8_qxHD#zv(Wn`YA&}!kTDbS+&rpn=%P!I)4FPjJ#EWs>P!Ebi
zag{_*r<%#H5S6&GNnuK5)V}td@3LOc_+lBUop;&B!49)mh%AweKsXAxCfEsZ?Iiv@
zf`2a3uik#ayaM~*hrE>Z^i^?j`ZjMXzDR|VEy3p^dVCm0W%|%K{+l(h7Dx5WBO`Ks
zm}d2rAoHy$2;c+Ds>gl;HYb~SprRJsux+F#J2ESBN#mnJrit^Gs8aVxzEADsgN_W`
zmq8m#=DcO6)P%_4Ch!EG1!xvdb;siYVG=|_Y1#ahnC=^q^=P*!6G(@fpO<*xh6w(w
z?<+YOulJ;f9&|ugP&IAQb7!S-u=m>;P)DCzAAjtUJhUkVV9%VZk2Z`C3jxNE9>BPS
zWwxb$bXnol<9mA|Q`9Bdy!qBDP4E5?qK5oeN-Zk4u&TGEH>Koh>D^Rh4d?3}t>&wc
zJ_5UCCkZ}gQMZd^F`R~}idhFFc&owQkP+2R*_d<d*t-?n_euASxb6;~&Vi*pWUm;I
zHB8K`fE1}&Q;tS>$0nJ{u>zl{PyM=K&HZMH2V~u3DP2)$e<&#VCBV!7z#zH)=mf&y
zOOj2#7EABLMJeIGZ~}(4B_$%)<)D61;pk|r14@SzAYzQR=7Cb<Su>~RMb^RsZ^0Pa
z*@PcDo3o>Dr!9aw&d3D=Y;Q@H2=S+4c;n3vhnK7o;<=K5R-)+=@638PE2XW9RPfV}
zF@7fF877i`>!>Dyo+Iv6wB5cr`9tk3nBcLxCF(@vk1IdCiM>O1Gd*YL*V5!_tf8*w
zq<ClfRvh4&C3O`mbP$X36$5H|oyr*UbxbiA*iEDr{F}bx<L=Er&%aRJ^J~;W=0{^*
zHqnx=!B?L{L~t+Mu*umP^I|>pNU*{#Pb#nkaTXO4TyS-Y>0eIHxFSWyYSg(XN4wa}
zn<dEA_F=hn3)0r*tvSsx`x5UMEJXp%QY7Jjxy}>8GrTr*h|n`r9`9p{AU542h`3M(
zZ)ei;zPoAuR^(pf_e^WI6A(=TdvrC?y_@v;^W%6`vAGw=J4)(CjZKQ|ERYL7=#zjL
zJu}AH(a4@c7(dSwtJLZ>Huaelbg0k|b@TkOdO6cSh67SVUJ&O(m#FPCJJ>aDsw<C^
zP;<m*D>}5W1xn-$`=b083bEQI@6u2CU`>sS{r$ByYuI97g&)_C#BkO|`AcZbKM&!9
zaG~VYYzm@PF<fBy!4c~_KGJ%I6Z-`HBn)H5$IkYfjm`AxQSEehy%uRs?Souc*TngE
z9zTfDl1^j6Ryx4Db(s#LZgY^H($f`0S#OQyWwO!C*aBB2CE4xFnQBVUX<-Q5iBJ%W
z1b(#Z04^@lmjA~lw|C#OQNv1T=rWy+I_N#ohP~{Zz7#(amRI3Rw1kx*HS-=?AHq8y
zq{c6Xb4^7M2GIr49pm&$!p|Ug8c#sUz9X${Tu6gNUxW7ryZzSHPl4Xb_#5&j<~taO
zHO~AS*9B*Lct7s?&%gLdRMpQ*J3qArgmsJS$-{E4mR9tN0Gf7GfCBi1J6xcPYi-cq
zcRt+G;^oO0nG^~-u_#6vDiIh}Abn0xm-gM}Q{~kPSu)JB3<b{OM@l_`5>DC$?1!y{
z80B*%EanP|sK6X`e(PWB+CoOWN1R07SL@qzS+*|k#!C@%)h%@(*jtMjyTiJ16;pEH
z`jZnitkUBr313Bs))Foy12yr{s`mQ@aXllduYbU&5H-RASoENNO!1&tLc6o+(^2y%
z#ebC8#DYHz2*l)k=mT*ta!5q1Am^#m9zoP&5+RFVnI!96tf3Mim>~mgvFJX*L5S7L
zTn)lfS+&@YztE&4kcAIrB>)w!wX537u$X><reka~wYf|yiUSoXKI&tTfRysT!kBaD
zyl>@jU-O8i{hgNwvO_u#;OC&AwW;D8m5JBh4Z0)e>c>PGf~J&duP)M9DQ&CsW<z!7
zw~G}t*ik6cYX`IC+4gJCLB}C--)z05&WFuLpMXR+zpB(Cx}(K10B0~9Ap*Gli^clu
znvyDS*S5=FVAeky;q@oVYU@JM*94<;(o<;$Yx^Ssh(AQtjwj`NB820pTH)~N{oHSo
z$g7-#+!D$SRMApOAREyPhbfGeqIjBnMJf1Nf?DQrEN*-hZfg%;E>JMp)FFSL9)ERq
zyPBNHtFm-?7?FhWgm53dKAwn@Hhs9i@;|ivC|^qhgI8(}q%7&%lQYi1-_+i~8Npa7
z7C$DQ3%tLvwnzTJBv*A)O|kBSVVAh6j=*Y4(y1aR#2fx$`?U~!xM@G^s3R&A%!Ji*
zEVW4Ua)wb&%Ujo1h7r0WfN_5MXR&hn1u|h15jEDVU^ATo_YY=!J+-0V_7FqCL#5W?
zTVB8@F2F7Hhbp=U&?Tj`H<z|3!DtrdFV!fs-}^|d#n!9lw!gaczmrnF2|DwPx1~AP
zTYNFg-V@?GXke8m!6P(B;Y<Qm2eG5B2-AG17hs}2zo6GmN*RG)_#R_-%{xqtCj$LE
z&8%G2T4D4I8z6R=lcRk!DHNZ-D#*)e8=GPj)Arnvjn%hlP1^{r?ey_v392+HcL26>
znNcQQc^Y4Qil;gHPh1(sq||hj$g806L&cLW{Oi#He1J(_I)o!PB>S#sm^A1Oe_eny
zz$DO^0!JS)gPQ`uxfh>intUYkMnF?M3=MCU%k89Axf&~W;=h84xJQHSwe)hfr=s%y
z($?X@p>wbSTwk!%jEsj)YrF(>c&Hwb_-MC9co$`dLK($Seaa>)#*`c;6m!(!KF4xt
zq^L|5H^AlRx{(GYxv;aB@=S(ZTs_$xE|$wv#p`1BnU&~9W6sFI-fw+r!X0E=#j9Yk
zEZ=<4d8elODQMn>!-)NN)jTY%y;OW=Y58DH1C=K84GNFQy<AO2w95D^EAy1O9JcS;
zLAim8${KYYF;7!A-*~s=`fm^i+CI2$x;?y7v@Xx}x~EU`A8sq<{F!dIvEd1qcI;e0
zcI3*%hYwaT2dr>NhCA*UU>2)}|4LPoxQzHB3FI6pP;_<d99Wh`CRSoK!3g;4UmWbu
zB>Zr7r)Ud|*o*gHM>1Fj`!S{e0tG+^0fZfjmi+9&EFWOf!TQGDs`f5x+lOnGr<dpJ
zXbF~<?cI%d2d6w^t5r`3!Zq+bGn3R9i#a@ILP5a-H6_zMOGZBf$!pV`_N8VqS31zG
z{kkeemh+=xLGC9*^U9<(1BzDt6mrL~_W`PVWm))1&9aVr#15&Ak39&mL3QrzA1=LI
z!)mmhcMQ<1++)V3#XoB7mC%N3(TuaR7$*Upl+LNS<RgV<wBd&#F}^_FS%!m0Rl=00
zf0HGum?24aSAE#W(PbK*<8Tp{_)-q=T6QhaZ=tSq4ixk`2(mT`2k740uHUN-Dl5$V
zq2%;%>x6Wr-W_p}6z7kOslGtbQj;c8Tq!Ab{W5L<p^B0N@+6>B3hKF}yOEfQ%=_<1
zj5XR`-eyGtORjlvh}xo;tRKA)Q4;cQFTI|ZWGJW^r(BYJrS;W~v?y9zTBedq6EA)Q
zqg|E;FiffJOgs+qz&Pm_is2N)t{UZuSY+qP@-f(yE*|L|aJWf(zFLazFH05OUmL(s
zybgGaWCodaX{&YBtd5@GV+psmF5J>VLVLvZan467DlE;mtbg8huy?p}kP7!r=m8_}
zavof!SBi@PPKc3G%XBQu$ZDi_PWHZaU&U+i)su=9RYt+}Rz<^^;pS3}iYnboC_pcs
ztNu53&q`&p++lY<?y@cqM_r&hXN}p7l{Q}LLI6Ygy#!Uq*5UBD1v%Th7iYIe)a&Vy
za_|c-x7$B8)yO1T{a|Amt7}lOO(`ZL;rUWcCD}OO)W15MQDz5gYZkF5lnC#cGS{S*
z&$)xOTUV+Fn;asr?q|ADt?o68xdaADDt4ow)K-c?j7G89JP*-|xfP}<Aa!;uWgz0G
zS#GC_e3gxt3j!?tmdn~LrIC~J%;BpU?_~X`r8?3~rLgI+8n*=z!xS10@E}|x{x_Dl
z3@G`_QaG1UzF^h;goiX!%BD9Hy4u+?(_)BiIBFZqhvlqI1b6+8yCEykS>;EUGvXco
zrdIOOtI|Mksvt=AU&vAzX+Zk^a$nE#H<u6UX%^k04lcg0!;V}_mCs)1a<y&Cu`lmZ
z3oHRoG|6*FHA!BIIMF|24W4KeY36P%Ay^x!O@bXh#p5hcyRIhAR$1ePB7BDU!WG|6
z(m>8$782F6{wOuM7hDf!fy4iLM}AB$X+~W~nnZjMJ?>fQyx>e!oVlG<14$O-zxYOA
zh61-KCs@T%@xA-P%dQm%TX7bZ$e!|-vH&cVQK=+5h1vapPVm)|uPl@n_Wc-dt6LJH
zb7%$has!$A%aKh|4CY^qzRWMMu<MZOm&D;vPi;7=LF!{V7Jbx8cZoqH^tXw6lI;n{
zEjv*2OK!hWTod9Hd&PsJP?=FdMrPNyx?tV2=~DTJyG9HD9tPy1NMT{|#<;?~-4<!-
zaiu{L=9p8C!A26o9)cvTSn@+QRu-3$o1b`ia+X-lsr;DfM5{+--f6Bl3GEKAP70*3
zFzZ3jvu?@PL+D8)IM7HJ*l(gtg>$o@h~p7;>4*tYg>6WGZcyO$Pj|f`7OTU*>v^EX
z?zprkaC$?%Uy-S&4Pl{0hujOI4oN|M)PoU5b#=2VgbJDH7IYZ0j&2f}F5eO&5wVia
zxu=?NO2xv(vPtpJ5br37LLT^5%=hmTMJ&~m#3@tQnj56TzMh{PgNh`)NC%4@uwb%T
zrm{6dfLGBSiZ2(rqp1vwzH3`c>~UZa-k-F|f|f)_rLb|;>v<=o4-$U&k_2n(C4+@^
z){URq4xqKy%^wwfEo%hlDu&(Xi}SAumVTNtn)Y-W4axYjI9n(JiKuJ0bMR(qYxQsh
z&9YD^rY|@UFdY}D*Csj151EO9mP?R{)SOsQXyl~KC@i)sPCcGJm|)VN<d@G?&Ud$*
z^|1;bNGGL}tqg@IlgodIixuVW%A($EpS&06RF9xWJkJ((aJb!22Mj@_;2041zcCC(
zFf5=ON#Sd|Ma{CE7B{mWTC-+lvUtWS%Q<^3m0|H74KH}Yn{`L1r4JE9oqyn2FVgB|
zf3~#)?x~H@CWVR9UUprXs)KjFi3UNeZJnepb{1<P4JNXTkCD=NYX^^K2aFZXg{ZkM
z6Zx)clv!@|+X`JZQlbR+x(d~2nWo;@Um0Y8d6G@D&8?j~l8rTkw6=8uB#qx%wMbOs
z#Gu8*7L85N<;bNNR)W0b{Vi+Geq8XH(V}}O(_r|Sn@20bjZQy&_<M3RldFWtF|YKb
zBuCNy0O-xRLmgJqWifXxFHZaJ+S1O=wb0Y0FhT*t3fp2+`L9YL8{VU}u1t_p{N!$3
zD*;+|M`C3w?ELw8R$TEM)pIV2vpXuAB8jC))+N69;zuJ}AUjFx>lMQx8nR1#wQ)+G
zhN!XzARA7}cp3Y*xbBWC03fC52k6q-<JvdD>ow7BUbDTCHe|cJm$XE!AZR`nK$Kyc
z8#dn3etd`ZAZSB@lZ38P2rzCmOyg6ntIebd=}neG;3OilOl^;kRb*{NG#r3I!IUTG
z`?4eiT4WWB<L_zm!`t=oPO`F%{<UP>YK2r?(%~Cn`&h1Kk$G-_#>WBt;^h^s`&<61
z9xqwHxwfU`+wfybCN*GP`of~fb!dL(V2jnZ@Z_yiu|L1z;wtj?(WNSoh!DGa#~)I^
zDy~>L969YbQxatWbB@86Z=8cfCPp?)pKrD`OCl@WaMsj;6?iILV&S|)j9uRtpF&O4
z>fYj&E^|b(qqEI7&@A}2a?q3S;|qyE#ff~iH&g9bw1Ur?*yM^f2SJEzL50||KkTCB
zM&K}jevmiRORyw&#o(fi;~9X=5a*z9^Ba{cR~nQwD2htI@KiD9!fhhH3ha32$>dNk
zzDg7Yn*wSD1)1$_{Bx(Y?iCKH*p_<P&c*!v{q01mcg<8^sCX3fM*V|&28)!7+BXhD
z?d9gq+j1^KoDy<7I$=$pTo%-(Qn!j<lU)w`Q0vlv`5h)A%b1}g_c#zkz4>7Neq#wk
zc5PABvGdByG8lllvO7V7^5+t{S|-5s?OTxpL}`b@a9`AeiagFYxwfUzSPS82xDqx}
zV68y4s~2zvyW0&1&e*f1(i!#cDTUvXpa-#z!B>nz0|;5JYl)^uq&bF%mO|XPzNGLS
zU)6mj^+^c|y$5#}io01&PK2$4-4Z<4f6DooW3-j3AXyPi0u-woEzdX()t}3a>yH2A
z^2W+1bko7r18Z;gHc^R!B8yu(m%(?My~or}vU`C9X}~{D5=@pG^<$wRV2eTgoPkuu
zxN8(Io_SM9N^PP>b0$$F=<><!#d%RUv51W3)Nb}MRRgU_uD%s&E2e-VBWy@tWh)Ab
zW12!(wW?y<*2V8KN!C$7#<ECHp8w*1J%ngUKK$=1mp7qB(_a+c?x{NR&6q9*5|gH@
zdDu%>r0Ur8T$}!UCjGFw&q`I63N8-z09pG>LNtPjg&z#z{3EQtYO9u*hmYV41Cev`
z2~*s{oMyYi6-;(&vm3e_J-pl@LO$Bl%cmv5B~vbkU@<o0B#L#<k6=gh^Wn!S`wBta
zrs@cL4ILp|J9~9$lA!qx`~Zg}4X3C=a^HmJSS9JIYT<i!ZPeV31$L(^5}YTwVo#Kt
zx=nrjZWoRNcp4aY^G1c~NW%eSN*BrS$<oVj`&W<Q_E^TX&!=ohf}`=`unfTUMEuka
zT!rz!+SZurABRGT1w~mLf0B#D@4fG{SMYK=`07x_xl+>W_mlHKRZ!@w-4CLI1vF^n
z$A=(L{ho7saSejQ=b60axWuEX9*K*5c~<BCmQK|>Tl-7fl@VqWglxqicYj!-ad2W*
zgE$Ug8PFW1H$lot=?hC;Z=S`WFT5X_#OW0C>axA~<r76+_LbMWv};F)RIFhyEHSvV
z;$8rw)-I&BgTzLrP*trt;!2cecLNyFKycxNXqii%wsCxJ=XH3v&>S}mP=?b7N1MMN
z*0$d@4p`!`Meh!Q6o2ITY<np2>du)0=74y^%3*cEvf{(3$x?tOBcniwt`LlF_RlQL
zP^CQ|p+t&7+1?SiYoZV_oslwQs9!~h)>Qs3nyd*Bt)TUl7bt?P5}m?12k(@NWM%A%
z0c{S4!X=?QFV2#vx1Nh)UmWM@V`>XaAd|N;BH&bMOECz;yX92mJL3WU^hm(v(Mu_F
z?#BY2h48^fD;{Q5D}8Mt0Lh9-6|ho!xE|50#j_Lx-JT^d9;7=}e(hQD)k)`?y!Qcq
zoSzlWd<&P1rFTPJ&Yifr!o#{_ydznNPtShX&e2VTVv<}z?a)aR0WJXX@rH~yEM>>o
zkj1cX@ZtSU80H32XVnVuH|H14s@=H$m7k2_xjXD=7J93HQ_Snk#zG4l4k-|oS_e75
zT@%Mhf3Wo#e%xk%PCTbz5YXiLQK6Vl&DY^EpbFP<>*(!#Li-bHdiL1VlKYSnl!OF%
z*i4a$5!{ZC*fJmP)m|9CV^aC#?A)Crjr}~V{c5W)h4yL161=ICjBGxT0>4x`=hd+m
z6AwZreDfB1d)hsQE?ybgxqUaHcUL9$QhsI<!Wc$30C4-)HxgJ~#Wanw%f&MEHF&l_
z<nXmjmfT4_Ml!sk=}CrowxlEJTNa$F(sOch3`{8up3fI9<FLFcS1=o1p9Yoe2oMu0
zO8a27PKn)Q4lJ`2(%-(QwpsBRlZy0|`CTi6RI}}l1kqwnAHLmSly{G_y6@1dQi>0*
zpLzqkn}_?u$V9!3Y;$`r!;&9j7xHW~0g9C>!NTl+W@4)9hR}C;BoUtzTAKz{bQTH7
zHyo4r@M*gJ;L$HG72O%j2FC)%xxfFnm4yKh!%|)!sDE-@wr6Sg`h@4-d^I*vdMQdK
zuC=uKyNX6!dZiO{4-BN-#TJX|BN<4B#oHNP0A>A=dGTug@gkY_{)5SKIka?_w*<F&
zeeo$pqdr#a)q}eO!}E3{_|@m)qHL2Pdh_?#`1AJ{U;pljmkLztl)HN4Yu?<PO4v&H
z0JUs&(y#7Y7@?rxLtTEnDa9-T<P?;9JW#kG#O9*?*vo<s;ZaV<=zA<D2R@eckldX;
zcGy#f>PrtOBiZC89XSHSQbm_@xuJA+Hr6mA9s0#(elMU-`QQQ{U7n@~L^b)2=+seD
z4G$7Y=Jqwf0`#@BwX>{DFxlP6Bc2$IN;GcH-jwjGg=TEQC%$~PNqPCoP3Tm<N%s?d
z8@rFlkGAEZGot5{a}y(}zMggFDYgGnc}=i1eoP2H_axdNjir7Z?EhCLDl*TwoPUV_
zFiwc2$mwN9Tba$1<J-Wz2tTK1?0Z>k6-8j__|lH<gFe#%E3}!ec(-0{9sJ;VtuDbY
zg<diL5GQ4nmQB+eLtLwrJqgTBdWBxkE(swm^@RE_y6L9^p4IpUtobGs)1DHFp^!!+
z%gy#)?G(H^YXUA2wNLbFsw47=+zK|PmX*b0EK*4{5=8&z<ea^q1?=eh)UuIUX2hqz
zCcCAek<Aqu7Enwvz)Sa!RR&262fsuRx)y-2ku<{i0|aOwsUpwp<+XzYbv}yGiExlz
z!fL40kJ5M#0O@(%QciWwpCmDW-Yz2$?pZ1c1r<>4xGaE+Sp^BsX(7#RC3HNH3|Fx`
z_q=x4JYWk+8zWU^v`EpSHR9GR7`GJ$WY3E=I*=L2`R!L%Yj_<&n|O<==<XA_CwHsK
zxGvgwVYcekdY~`$60OJxPL`DpT1~%<%l0(%yn_v;s(Spv<VyT2Md36t5<D@20S)L!
z$qR((e|(V_mBYESJNpOYwpWB3j%K?4t>WBr{%X>0`-GQ)k5G4!%N%aZ;AQ;ESUs0A
zQ+JN7z1{Q_pp3Kg@s`AL>xa|jdlK?et#_mF2i@~WN^I?KWba9A7R>DMm3>KA>D6p2
zk>E)%Iv!QgwTff#kO`Bp-Mac1?Gz6aIRlISJ106s!RI9>>N?fIKuF=GjmaO0J>t<{
z9J!rnL-&tCmX?+Yi-jS2e<Tjk^g0pxz77=LGslQ&>A>5yNgNl+tsd676Pwu}!kQDJ
z5_8b4T~oZ~;+84i9g-@xO`Kn6ftyvm?ZmLLhv5EBDjzpd6$XuS1H`#4VtHY59nc!C
zUV$5yrA-{{Y%aao*n73Hy)j!t7ue+NwyT?1-qsH*F}tbMc6@{rn7tc`P(HLi^@2W&
zG8V=lp#oTSL6@3@9##TPBPul92?jd?;IAjwXg&R6Juxkzu&<}m%Zg7DK&D(JTk%7G
zGDGJ@2^T67R#IV3<&_O^etA|oXE<S^iHH9<T+=Rg6!~{~ZQ8=+dm=4`^#8y-`|!jg
zibtB&sMQNvS(_eQ;GnRoX1o0)^brReV-`DM*f^y+BF)hc$({VcgfxY}w%NN*CE$0A
z1GN@tIRnm$SScdX{^y%fDd0&nZj@>QjqaUZIiGDaBuy3@;&bt5K2GJ;qP7`+p<EvI
zz5_a}NxYE0wNg4DCt*y!&CSQnZ~zbjt~9+G9uWBD32Bt-g-*p3d;J&DcWA!J4<afI
z{Nagahavjw>c7|_V@Z<7;Xa$FhDdr#vpXI=e~y7!YGtJGg=+ed98K)T@tI`G4g;Wb
zZK69zT6CP})9II`)n$P$ic+%sa13*q@z$R!Vo612nVzP=;Ec@cxg$-#C6iVm**EAj
zCzr)>i+#~z_<pFuLxFr_DiMhxG4CSvIzfH7BX5_(n#5Ju??~DW16GuFM?OS5Ie<oJ
z?140vNeylR**l<z3TEuiwO0ys4n^++{MBNM?O94#aQP{gsVjdwfh>mAvwiV7#MxhN
z&a~&Or<itUY|mb8x)>Ebx$1{j#Xo`Zl?$Fjz!2Q+)}HR(K+~^r14PvnV_%rzN&M&^
zpIFKizvXnGm#unzr%ZPWF3&Zci<B)o23!n51b4@=8xC?2Wz2?N!!Wlk+pD=FI7>gQ
zBd4H2uPNhR+)URnJ1J`^I#ST+&CYL3rv->qS72=gL(Ko$dHLN87-gE0Yn;(pLTcQ_
zMWnZw{S)Rai;H<&D}Id9W<jNKG6n8*3R~VD_X)t`XGf}9U;gQw^GeIoC9d&XSck3U
z+wcP>tt^$5o8#kK)??YEZhJpVM%T{k&DlDxC*%7tOlqkQc%ReQJ3oj+uM*ZTvELkE
zFO0t%Xa!BTp3A!iV+<nWyv~Ld`<fR(?m4ox`fV&g>LX=@JK$({--ZrRgF0idwahQk
zx>qX@oXTGMANlW^i0NZenbP4@em*I9+u-J-$EP>Quo&1A1dB}M(+{$Y2VviHE<K6^
z&Cu=N_#Q@<(i`Po6*99x4b!F;PyGARn*wSofv&y)KU|zRRIQJrno3{ujoHe054t5C
zFmP>!#g-Cq#)8pEzsC@k$)Z2`yaWygi_cmt7(nSFm3+16j4X=UK|yFWBJp#7AE{zz
z6)m6wf{z_;EhpWx*)AXv$iRw*dZXD~uBu0J=pe28uiw=U^DS3EVu7o{RQ=>UI{J0Z
zJ)+zA!_<N8k0VJa*E0AR0>EFVaGQ{B7|WC{?~qAD*x&C0_wJPCypz6sfvZswf2wq!
za^FrXjSYqMN3Rm^@+t|b2RqAHg=+^3z2MbrWMn&&h5nd`q(BHY6=vM%!DYynjlNcv
zpS}(>epgA?{R~*v8nPFAdMIm=k?6k6bN6t(skbNZ`yt6k2uHa%^NP|=OvfDkQUS1)
zECE=Im`Ac#@%~PKpEx$QGRS(Ot1=y8M4<v5SD>I?Bk!}s4#D!-i57DezwFNHP{ZTS
zs>?;EDrPDa|3S?yOuk&StPny3Kl<&)OT3<Vp_6z{-pL<%y7a`iLUBl~(vn-j5Xl@X
zIT0G?p6u<s4GX=yvBN1f+i3fD%WHd^8{4m2D8W=jf8}=$0$_TWBE|&8w_on)Df(!m
zB5rV5fT*rVJoPCu+l2cdInd5R^gG;~?fLngDGkFSr3wm>`j=efzGGLJGd!0?xOwpC
z?T}jy$|7vY?9<~?zhn@F3VM@4U+1T%cSA(zamD2JL@LP{D#=QVyHH-|8mBEn$&k3)
zg4Ttsk%}OBkZqy+R_&n)yyEJ9j>BLU0fOqDQuywI4p5U6c%Kk7F{P4Dn5yVUAg6my
zFbth_et13qG-32K$uA+4lWwS=MD$0q_*rTaZ>%1e+*HmX<zRDdUl244XK%a<PCXH}
zcXIrw77D37QYV;vW`nRTdMsrq{-Qq!N3sw!QvQ5fV=zrf=6fL>OL!JmZWg=40NQKG
z2p&H@Z~Z$qJheMF9)*t3cGh+q`#^W^FjWMMRWpi^_c^cWIS{yP|Mq;I^0)o9_B2%O
zFXCYSR#obq<w<|H$ZzV^v9f;=wNuDyIMQ@x(!JN-K47xfN*SpQlOuL{RkDQ}&0qlx
zQ27}jzyw&Bo!L4uLTciLybGWLGxYS&BnV99=^$iGKDHbO6E1cATlOI9k>uBs5mS6z
zz`s9w96eGCB9z-dq}IF}Zz5F%451kkLG8z}{5blp(h~amFD{TT5kAEvP4*6#ZM!gr
zAckbxeg82vvg9+$Q7|z-w#VULoKg>#|3SxW*aN{58~%>ha`E+d^^HbPIlC57*p+8M
z?HBqI=|j3W-0=$`7yk29`Gn#AMYfbeH-oY5R6Y?pJV4C*$c(<?S6?kLA_v!|8pG*S
z6ngNj;Fxk$?ZOWx%P@ZD(bKkWKg>&qXRjVU;>1~KkYXap<xU05t<Jc3i6sjoGkq*h
zWON5@>WGM#Ejhl6|B%Y9i?hx8@?B%;CWCCh7}^t;cj0h#T@nWyaD!XKjB00Lm`lzC
zC+`2}?B2Gcx{_{Dze?_#TJ^VPC@{u{yPc8}kkP4>0&L$Uk_=i1iKT;qdguKP`|IN{
z=S+cJ-g~vxe#*+sc^D%`9D4MK&^<7Ga-ZJ0BVD;!tp2x=MHQyg!yZ|A1oD{ez0lyX
zpJK<{3;en|(eC66w=MV6En8+D1ScoCGk>lqVi4g}hn1MeVpRvr#Y9kD6|~&ax=ysK
z;m7`VYsLOEEV7JNVp=Ks=BBg>B#y>+W$_oEj!R>Rp0JA1%ZfwKOIQ(Y1%c*3#78-+
zdza!cAmiOt8l$1?@$BSZum5F8X^Xo%WRTs{q?l97^*LUtZ5ruWfaJ_mScTi4HF{*4
zp0&PO-FyAnF}lm<((ECa4I}}>{h!s9`k&#|Q66~$`eiLp_~rOr5am+_4znx)cvlGC
zVrp9+XKv`T(~s%deeVEmBubb7HlIX}&}IMpb0$Q`;XnWRcj=ui4-J5=8N!X1dDA4b
zzx=BaMrwzo!t^!s*kRpHh>G3@+?lSE1mk#kpDb{i^yaccnF+ewn03IDB~;{th$P?P
zf4R3>-~oZdl|9;%h3RS~eat<yQZgt}4te|mQj$teSCCaA>T(mwCnP-~@A5Grw*j5Q
z8J1_L@4GG}zLg-DY`;7Euv1Kb4~3E%sX96e;;yW<Y-br?zHxSPa#{!tYX&hdr#1n?
zd}gTkpausGq@@ojJlq!s9NzKf{4}LFAz>bvUePtEKZD&Ymp1p+|49=lBY>P1{NO@C
z&3EJ;O?Hr<^!L7qJaK?<q2l!9=DJ$zUlgFSlm~Bdi_tGWj779`51eQ#`D0F9I=Y{n
z>Umz$^mjT6<oN-LqUp1XleA;JvwS`eA48CV5qq@%LX}lRd$5k!%<w{16jv#-nJT-x
zho#ip5WiAHGik>WF_>_q9xA7)Lzga2ZypXiz=bb17OL#78<!tX6kNFlQ}8C|^@krH
z6)~1ZG}Y?z&Dp1{t{Toqw1RG4v-v-EC$iYQj}GoEkIznfCa^*zDO@Oh!qPZ}KtmLt
z`#)K&-XaKN<>LDDIX_k?Qqa7~4YF(?PEKt6|7ZKPoks0!HEXG_r7y7t{QM&g+A0QU
z#|9aiCdu`Q55YpoPs!YtI?Z*GA7Vt@ujk7NU{}^47Q9XH?M`>%U*-#Z@?lu~Za^N(
zf3)_L%>MH2<;Sis@=n+nsd_!Vszk7|KmH!zIHmLRCyNTn9USf-ETk6Mr!jBT<(9>^
zOCVAf@7gAwmEy!2V*SKm=va4FBCMYMXi7C;?z|?z@@6SB;7NtqOU$WX@brM3I06AP
zd#z~9ZHx7rHZM<YZg{l(`_sv(&uem1MLKwwshg?|UIrsjeV)fy<1Ee<PUnYA79aG<
zM3}>03#>0#srkBo4GU32DuH;8)?a)hU$C%$@ePNU?W^}+edwDt?(4eI%Gd<GP+w#L
z6U7jPH!DcY+y2AB`9t*N)*<Mo(Gkp~QGF@hI5>$=-F9dPg)c^s|8!8csE;v}(8Sbc
znCciotvy(Sv}7m)I1ZI*EGKDTF04m=@kE1_+VLfGQ(nDAG*Evk&bg};o4XjNHNa|y
zHvK8i%)AR8ZYA`_!RLQ^J>?&Go9{k9I~&8%x&(o!c2@6S$DC!TDg(lQI@6%8soBCH
zso#}vhY6=PnZVw)Qp3^E+ZBo%jA3=9ZN@prb&9Qx3ej+A9&`A<x%qFGm+rzBW=C5u
z2<uZgdv_H6>~L{EDK|$pK~Jb|hzdgjakimV{#N-scFhg0Z@znadTNS9-31Y@T~py9
zvyq}^l2=MH^x<%|52w0K#-cwoJcR4l8Un3NcNTlsOWCQg>=$y~!Pd)7)&8d&&8OoM
z95kOc9RX1GHeTF6J-Mx4<JObSN@XwBq&|lF6S%|An|bUn&*X4pZUkg8#RDh*>ujXh
zUC*v#32uxj`#%o$?BrHi)~RmMvwsrJe}}#j>0*J<>f$Lj^s=y10EYUbrI91ffb-I8
z`LjSdF#<g*GO*E&3yO;Yt*_H$P$xDzuQx0HArsBwRI84rwZ@m|eSilM@H_r?|D6a5
zfUtY8&2G9Va(CK*+$&>63VU|=9XhXrz1-e;$(w0|rz(5Z`ZTB~MdISIj}kfFlHMAA
z?ZVue=H0!N-cX2t`3F92nIzxdHMl|?J#LANe8ABPKMYrqJ@<GEiQxOTk@dqc%u;+G
z7n5aW7|gt`QC8PXefK2UxLXHDdZ?*t6t&ySLc1yrRTDC3!2NlkVm1HIn4e7g`N{_m
z(zBp+=!VT32*--VY!8cp?P$FSSt9h~hBdg2xN^ftoug8LG0hg1>=V0^n(y7u@aukd
zIGG$ann|E?eJmZ*Ux|C}y|w$OSU%In8{e7#wm6*hJIjeh%GwlF_TV>vf=M2QBlUP(
zT%|hBVw?E#RZPLdO+y({oz@9IpXzZ_S|=Q?TBC{5Vj|+3R+u6E+|<BzxY@%We*jA4
zG+q5s^ZT*2BP`sEh1Hh`PY#U%Si?@c%j}T`e5YJJ@_=(|G90||tmzE+bAZLg97n-3
zhSk^ew`DQQqyD6ARsGJIN7_u6ey>m{px5!;vK;U?iqxB^Qv7YvET2yplUz}8Et+(*
zxan`?j9%%z{{Ake@7LIT#QVP!7R3H`RNp;TA^#K|2*zUZ1#myF6k*E7^gLxZF4+x8
zJi>&;#GlS><+fXMK`*DCxD98}<%SSd#)LesjUTG2In{#kv%U6MUODW!mrGsGpM2`J
zlYG~X#s($;V-5EIHI#CC520JBphJGAWM=#C&R3yp<qb6}3kmFe;+hQ)ARijfeu00R
z*O{QTUbARh)is=lr{4b4=Vo8>QT7JD_}C%zSd!aX1Rc{fSJfV1W)Aldy-P9%cIxY&
za9H8&;pKHg4%(cP_ynZz_9k>je5~e#RVmL`94qoW#^qOMuV1I5=~zRUhQL}~B$L#F
zi0SdEcBAyoX}yqkR$-5)oySv6YW2Bw8~B@}Sr}m+v63ijg3*WRoIxM9{)~;UF>z9L
zq>Lu!R(}>Mr35)Ya;QUM-^y`4!MIvi7oZKI^^ysjCXhfAiNP4~K=CmgQUb$rro2Xy
z_rRMLHu}n)^6;5TN9BXt^w}<RQWr56m8IKvQ}RdpV#v4E*&1^|Rd&DSxmpnEFM}G%
zn;<1<^K|*<@;6X%{^0Zjx_B>>StO%l-jBFq0PPy*8-rf=BHbH7Olc{I;JA5Z6zJj<
zy_YjXZV=&X!%ETJNhn*Ihc0+>`tlM`lV_hu?sTPcgWB10YyNy+Z!vZuoe|tC!_);H
z#ImuAvqnvsm*zGs0@vtoK>C?>z=Qk@&|ThM>5ANp^bk4>PlWR1yuXyqZ(Wokmx*2C
zw}}5e%GGOZ?P+#$__4)F#n=c0W&8Kk!(|T04#iZ4IOc+^W1_LE55f^K^^gnid!ixJ
zUww`mVtE~p-{TQaHUID|Y#5JyOMjcMzpSSyo$q#57mA%v#w=0tNVV@im$t^>gBG<T
z{K+TEB#z%YDoo*x(t7JM`T65`!!-&YrDNb7x@}@H+qSv4v0a`v>!B+O8tp1WAl5~t
zd_VNV&C49@atgjKNu}jumZEt9r9sKK9H1ZSNuz|}Pl!&u*yter7Z}6p3AG)d*;$3j
zhw=Q96IehmR-lj*Xlbdg26nZM=PZ@1NIEt=+22cX_3plY&%v!<%#Y0J-kEnW3{=l^
z%hjod$?MF1QRm4MKC7CYKBHgeh8#yJMf!_0q62YHGKgrEG}gGvBmGJ$2)Fj>DS}h+
z6|%-Mc9b|@J{8H?kgP4^M`u8t->>d%+@8YgM6Se~43n%o0hJ#J^!eU9_}_CVeO_*J
z|Ha<XuZ&)8XRa`;gFai^<MbG`N`Y#p^e)qtvyvrwVQ?|%f+(ie;HjewjlclO#5EH*
zuaxFYy4K{SU}#oy+oD}Z#VR|*hiPRd2i=|K5ft(vr_`DF1&=kHn>&)$mpANDAgc*$
zXR_6wd~3~pRNPK@$ElT$ZVk;k0OKj7#~h*Lhiy-Gx%-IS8-Xq1@p<occ1LqazK7DY
z=hwyF7JF8_1dZ}j-cn{OOnjXA>lGo&TA*vIeLY+pP@;`&?av&<AkO2c#nDSXC=)G7
z(lDnFyVcojjG94lIFb$NSNTICwF`k2UJZ8{j+BCNFGhkQJf0!-H+iz}A0&ZESgHin
z$5o-^MD8B`$vy<p4346UpT4-Nex1Hi&43*7U*}t8TJqNH`QHAkoyFGEMK>SIyty%|
z!ELGS;Lz_rfBC?PD&$M{93>?xRc_W5&<IkFZz=kHG&|jBMICuTJmjRJR13Y&Y`!{<
zY$`WE0?8%a0Eqbz9JE77EYntL`*3+wsw`)J((2K}mJYEQP=un*yI4CO>-}@{{$>s)
zRTNOTD8|t+<(VCZ2Ug@G7Y#znryE4Md*3l%x-)#XL%~<R0dic2?wBHZ6_rd~@fk%D
z?^f3<=xL{5FqZ<*9DvVVhvZUk8IG{?Yl=ko7HTXW`5<Ury7TabGO}I>JneD^zMp<u
z#^zC`m!Cx^ju)(~y0UZSnN^NP5Kwf8@A^g$+e=!#+5QDUc-ja%aYA`tlzrh}aY~{>
z!)-y&+*$0s+TYi$ic&1S{b#$2T{N8KGwmkUNt3B0MKVukrJDkfO%1rGs_Dp-@mpY3
znoo0G?SS;WFydhLY=2n`aQC0gb{3j<@1sE;7;v!sRo4$3`8<?F$9I+?ubBUod@+Q8
z@RhvsO(Og8ec`Uv&C0hO+$TCT`jPXeU}RI<aG>Qci_O}ouPgTisj)^J|A5mMN0)Ej
zoY%Zey&+(7^Xw{>{Yzl}SXLqrAknFYXxP8uNwViu!s>I?d`CQsBIn(NrOyOkee-F{
zX5>b6rD8O-Ue}kHoK=!q@I77^=pcL4_H8(RLz!Qs<O3y99o4A17J`QiP3H!Z4rj4w
zv;xq^?%+0@uZq=LGvUojXI;dt^LMv&PlxZSf@iY63oeN*1Buvs(T7z`$Y375_7Ou}
z9HGxndW&{-o({w4t7VkzJ!RUXH(`aP^EQi53Fj+T(eYX3C(0F+<Iz?rb=uZ0sCyRL
zLYD{Q=D{LX7Z+!rf;tIOicr{x%8=9o$_bHYyGcKg;rF?;;<0Z<B>}>Uw?fzhy<ej4
zL>p+r18i(F2D5)+BCPH!07qiU79KW7p<jdV_W1iO7?o8s^qZwVz4Rz-TLoT)B_t78
zD?BGqNdx*cW8~3Y9>Y89ND<4)M1d!fvnJ*49ANeAXQ~=KRkV!xFCLEX*Ir31K|wgD
zkf021AKqVT8E+4S@_yA#O%S%ex|$F<Pi~hP9&c`ar=vvcK1O&l!2<;BpQ(xC<c=&&
zSI-s#y+qh_DEUnrb0acyzO>JO0v<bqrzZT9w5Q)S<fI~^fO=HN5o9_yKU4ZMt=d1e
z1;n`LxW5X+N|y@yZD^0&52|OWkbk-OT9i6ah8N3%sFU!x?B!s@vXtb~x`CSglmam>
zE=#fT?Z&s8S*N^P=_8g5{<X+>Omj)eJ94`z6u*P83cBLRZ)|2y*u`#z{GH0)hSC@I
z^8v!}`_-|z=$w7T{C2xE<8#JK`OcUGYuKj&qJe-T48H%BBwb}A=0#NK;!mkQR>F&)
zGYEycI|rb0>uV~}x3!yg-9v<f)Gj{vnmLSJ&xKE1QX`jFSr8yjB=YurES_loo!|Ka
z?FPWhfZ3#+I-XfdUZ%^DEFv$A18L)zLi6DfIrV8E>Q4u)x#!rsZh~317KuP)o>w1|
z(08MF7^)a0q)!XBC*vXJt{#uXx2I<|FY@ko7@MThI6GR?Z23^{Mi=DO%@7p|&_MS}
z)_q{$K<494#Rn?Gs#*f54t}Z+fPoj9VT2{szKOC(;?x^2=8NcjPu0D>3>2zHs{(Pa
z&k?;Rsrx}%(i}`;?&P(jIlb24AZI@49Ry%Z4&12$VMFW)4~u@u<%XFC>tG6ChjQQE
z+uD9w8gInKsO34LW{S9W)QIfGD)0%z&h|Fi3V>X<RxdSYZURU+zwGvsYz+>@fBzmU
z`f&E`cmJ|R$;FB01`%>h82mfKLpUAm?wvpKVnckm^H-d3cKpsCjgaCP^LLK)FiW$W
z<>Z7!2+f|l?wa;4atBVYUX3m^m__TVL3ST^j6NHZ!FRua6)i-w=o~l=>8Ct2OA7@<
z7F?Zugm4ZgpmmD!vE%J+q-}y=o{Ue}EdfpDd@p`E;=sMc1n-l;EN4aDGGw<}*xzX^
zw<xxhVMy?O*_zlTCz);5SOO**eePsW>o#>}$|1SAd~O6Axv*(eQw^g05QWK2o-BW{
z#5)-(GF@Idu?=VTvLG@gyLt%eIbRd{0eu|AfR9X*EML7E$~dg+@U@~BgvKFYGpORa
zqFM6}2LBpJ4Ip{<Ik8^f=d_;5oK^Mc5^<>!E95GjP?(p$UDGBWr){5V#K4GVa+YJF
zuZ#vi!IRc>q;4cgi=yX=VFYa}3jLY0bnTR!L61`xSXMr+f7HbB)$M=AMWFcjb*CSx
zohBX4&<|e$MnNqkNS8NP8oO45tpyOwsS-HjCXlT!R7@WIpm_KWBlWf?D_=ZPbhG##
ze+GRxb(tCW7oRJ1PsU9dG^sp_70*M;eWaO}7Mn4Eg$-N$w9aX6lIilyocPeFr_V1+
z{~~|Vc&sApm*JKa^FORWT8^d3DVS_fd|ftMT#*soN2jc*Z4bmO0USfwu`6cPw%9Aq
z(OEnPXM>N=?+qxr7V84~BvIr%Wjy5`u2vG6cW&FT7soz>(Qj7wcKN>R!ogFaZIj}7
zcadft{ZvAIv)h2W0NuU1r+ZCBPSP}LclG8vI=bH}T5xOi4k1c~&;8eDrC|yuRsrjk
zG3O+{nXP)<9ozOxLo%%^M-442g<^!{n55ND<yf3)3R6Sk{tLbaKj`4>$)(7q?cDJA
z&{)quu~AVZJD>43atw@-8^0;0l&d{GN(p`#1#4>@?wn*(_Y2Z;#%}ehnhD5hK}tW)
zS21Eyc>aI@<AgrHQoX;nFFs;fDDtH)1Qh^Yw~eGsN+_M3Of1NB3^g^2!_CY+>5*zK
z&*KnAm7c#HkQkwbf7K7XZoaDSiru(WM|iUMW$j`9<SZxqNE_9B>P5MTEWr0-+*dE}
zY+)Cfa8SwP{7{+q(b3}Gd~2>v+6WzN?uS$6on9`iel-d4@?gfYAt}&&?>vNDbXP<X
zs6k#7z0BF{rh60)R>zdTOT4w*f4XqDw)l(<KY8eM;*!*U(O7hB{HMrKam^_xPVTe$
zuglq!ofq3%mRn<i{W8tT8bjCzV^}7v9rN5G1YgJ;?oX*i;Ra6l77Bq_RVV&b#Qkn&
z@PSTj*Js}J=42J6pa<Z$ToolO`C&&FZ7!@KL@9asL0W-yQ^a}jW9hJ=R6Cda!Psp_
z_bPU_gjmO?$MKS!ZXatBOHI8TOAK?;`b$P!L{n;fD3)vLx(A&->pA=Z{V?}ZKB2GD
zRRY~VD+`vj`8HqGhJ^*r_~b9frp5+zD=`j=Vd5$;It0tZ09@lz{FosFfs%$M4VsSc
zJ0+!SARK8|?cd?-<>J})rrtX9Esjs7GtB+9AgPkOKg^!LnBTARt%@~TrbHyGv-9Cb
zGM@!Y3Pz~#1&@b`{ahW6vVVG_rkL=LRn%MBSoITO6{*O@1y$%zYo1E|AzoBcXm7bx
zDp#$La}W7HKpgm8sG}-^N-s^@N~!ELkSLGm7owbaWrPQp_eAw=$5SRvx1!=G*Ov#)
zVJ>|M`a`B)Js#4&2HcCeraXrVg44X+N$z8Z+^gqK<*IpKgPU<7(^06m*}WiQH*fD*
zoM=q{TV$Pg(r{F*b?HRf)o;`5sA!ORB!EVg&ihF36J4y#u<%SbrnAPN4&NfKSV1V@
zBI#%`*$Am&XlByuh|{%+SCmA{)_*CtQV;QSD2YO+jYf#xra1`R@|6`DeS^WC7Z|M?
zbEY#*OWr4KFqx<v{n%0q@-A3@zsO%Kmm6vRQ`Zr^>X)?4qI7JrKh(Vg$k4NWgXA%$
zB=YF=-S7T>QyKUvlC9H*LI3Nv)T2iQ31pn?W9v^|#dQ#uRQ?QCb#vx;z6*3M)w59y
zewy0c4DDz(N5Kk&B_^jA2^7G$ytpC(k@db(Vj;-<aOYS5E=@T)+)lFMAL)Zh#kZzU
z#;c<tO0;{LcZ4+HUU2^6H$N(HPIDxwz#9i|vUS5VvxsT#xIm$H%6c7oi?4@$D=#LO
z4d%Jd`$G<LmtaF)_-XSV4$8}FA4|dybTV3e!UddUVNC1^Ii*y&X}UE$gPhZM(P98Q
z=4i3^(*O2cnCr8}y-r35f1tS-u@TLi3Ya6seEWtX_$N>De_XW1M8;F<5`TMk9tu%$
z<atTMJz)iKWpwWkZyjxZx{?fDS>7sHEf5bv%YpLKtI|j}R<1MZ)6EF#%x#n=3iYjj
zn1?E_5s>-prK+9ZKi@Bn@T%9ME`Zi*ZV<IQz;BUI<;8us+PkH^SJVj+hJ<{b><TUg
zK^#iNO0^UW_Y2!8Z$g>hN_dtd*=%$>kTGYD%ij@A#NY>QUqsnQx|N6B@HwzzeC+Eo
zriH-t7JABOykKIL!G3-vIR=`f;^&I17`cBKXLxne<vUY~8E=2(r&W|}z*Wc#pnKjE
z#Eo<rxMJ8~hY|cx_XlDRt+IwAD3`2-eVayeqC^<GR8EDpnhF55+`(axxI~|a1On39
z_r5I6caPJpVf8zNrcfcO)<Y!v@v+ajrt+FGgF0y3x-NGGm7+;a`ZqdDkJct9^#hoO
zIYR7Gj$yon$V9ow;NrV5KWkaeKBIVYy844E$aRZS;R#yejQZ;bX!tCn@)8uClr!0W
zz(IN-P%S9e|22DI)L_pdPuN+4gvaeG?bQW;?I-Oz(jk0|xq(Ro05n|6Z`9}{EZ3=G
z^%}h(hdTRle>RT~0cB#qo}b-h?}KO4P{&2@P7s2!*}0T9NFwC<iD6)~joLm~p-N#8
z%6<w5X@$}Z0@6(JZ*pii_oKD)<L^@@wJ$lr(~5S2?wi@0K5<Ro<Vz$2_V#S2{O=#}
zdkW|3l*iiN$<q(e#q6K+<=(x$#jD-DaHIMBcE0uO$XVw<)@1)U)L|6d;4DQ=cBaYS
zA(Qa9;^}JVI3BmS;}dYC;JzBDonDk|@On5_g0-WovwOuCL|o}5^7K@!ZfTj&J)jD=
za_+edW$t-*dH=?*MEN4wP1Em|QPo);Jpml%+R<cO)-H{7)T4Y0Z~I$sxH@mUGP);H
zj}ZN3!qu($*5+(+8yBT}Cw|MhVR-af&_ivFvCTtkDq>#+P2&ZB!{zwkh?OJ{_iN&;
zH0_$lA#vY^KJf71{5Dnt52~y7z_Wh0cWL!0-BLG+U<H7g7G`Gr&>To#q3Q}b53zfD
zd8A$^`_=L&>y#3DtuR)fR&Q6wZxPG?I-gISnHClwupS)=&v15+r|XvP25^paf=%;H
zR~*`#P(8(-V?oNeTz!rSS{E6mrGdYz3RQBA-ZhHK7k228);E-9xC49@FwGYezO_VG
zvp3DU*zPu~uS?#<_eP|Ln+aaCXbx+orvyO73_HE5+s>y`bep>S9)*3)pY&nPKK>NG
z=<51I%myJJ&Ll6x@gIA~4{4Lu8Yco#azEPM!6Vzvnmr$kVls7N^2^)fw@1mPe&J-&
z6T&z*mukC9VF7sycL_|IRYyx53oRSE(d^6vK!GLZq{l3+rI`Z|f-l>9iZvkZL#v5U
z)Oho{iVie?`fImpu9S`Zw)*hl@{6Y01itR)7k6tXv|BH(Xd>?S(Wk?b63=v+Q?XQf
ziWRRgv2xi6XFk~G>Wt7Kw0XFm`Kb^?Hdi{llos6{^Vh#rJh3P3Iea^1i}b$!?X~`;
z+~sjFOuP*#K3~pS5}qL(5#Z#9awgF&DU;U*D;7VC-zi#y#vk4*?G0m$(_eHpKfSt~
zo`gJi*o*upUGIXSq&a7GW5z4!hW40*c^C-+{^{h%a=7hBdB&tAhd8bqp~15AZ^QpO
zLM6PHN-|TF4Fx?APwWWQ)3&k!Uf(o-S*39n2pn+vrlm8}Y@0y+qC3Q9k1N@1&t?W<
zDoyVAA>e#^n5TUE{xy?(=RkH?#~LKxoAG)#d66z9(l?TH^EYfz15gIPqie%QSVXgn
z(_i=tao(m9K0pKbfWU`RR~0<T*QP$6AddH1wllqng2O)J$^rqL+8VXB=k%BilOva+
zS-8|Oynv=3b_v`ak1REgpS?*D6^>YYeP(#=`5fx|v_G_&MCa*mAaht1P9@zXl5TD@
z8^^U69E73dHH*d}vZJOMr0aicIA2qk31E?Yd0UytsvFDpi`{f(DMRDbGA&H7C_a9^
zr-~Z81(P@(fY%-}@~&8mP4q$^gbZt>DVb?rVUlR++Q=kau1?BER7NS!yQ(3C2=B0O
zAlsdXbhyW;za7olKlcxaS5(b+DQf&}^%;z3f%J#FdF!v#9&GfBKg$-2->u<xV7$CW
zaDn~^^sF<OkK@s_Z0~q%yD^z+c!)sp{rU8<**9V?4cYqz(^7mKu^6i)d3I;<+UwJ6
z%A7bKvS+JOcm;TYf^vdk+~8P|alfn@2Wl=TjT>gsy>OD)mRSeQJ0heZ`dSw@3=9d4
zN~M_L(R7EctAZBkWl#C85<iB94@R&btwEe0N(9tl9o8x9{)i-~nEcE#l-9HBlHy7U
zb;Tt~<c21el95*OK0kWdqi`XBD1Ls7LOW{Kh~4y1Vs$V_c3n`@&LGK>HakO}H$sZ?
ze_wMtQ&Nl8Ob_^-{B}BYs<peKDQ_E3yX<olPVi7hDCi838F-PK+6=6aF{}2R<>qoz
zUy=1J3~(So5Jj1O1>-Ro&T8LXEQz#kIawJmU~jcOd^f5OK_q|h=xDDe+4f;w<xvM%
z&CO_Fd9s!)aMQ{iu4dY`+B-oNTq^XVok{x#X6SJuc03MnhE_EU#<1OXx6%{0M2f33
zWiGE**VjdlphiBLJyk+8#6N>kf!{&NpKs3g_Z-@SL=^`<17f`58$_lqVQ#Eo;L*U9
zNZ$}<?`!PRLGRXP1H_(^EDoHgDY+|@+_djd@YJ-%xQq@^);OS4I1Dl=bR-KTvFH-B
zp-+8Nm(vO>frzy=-I=$wF5E7Zl8f)+@2+#QTb0nfv=5q!u<x@5WoTUvIXSJFj21cP
zifmVwe3guHGjQv-9X5v<flWQ%f2JH`3qSktXg4h-bvA}}x)hX<rCi=v63@P-&8kF5
z(NGPNTSx<%Am2G{(l<G6$M5tsysN~9XK)3<Mls<Qy$k931Lv*uF9jQeC=E(F^y?18
zhJ%8zR!9I}?3yB2A~{wqbvJ*wJBo>ommR&48yI#y_mei_(yRDM;<?=obGbCbxjJ*F
z;Tk%pfX{YUpKg-?8_kor?U5suLZbro3_qaof<;}wE!fRkWwtw85LpqqUcK%^Zf+~B
zmkG70reU$u`c0xA0-hGvm)9`%J8Lha;O29r{AqvU;e4g!?7{5l<K?|q1zA&S+O_%k
zlq%33WhL|?hi~0d8!0d@-gzGLap=fj{#j*k7DFBbmNJ^cC_skO4~3c%yGO~@CRpk@
zm2PyrZUK{cc)DiHx3zUeLy3&t<)P+ldSwucaNAR)IrY=>pVd@1r%p{A^Y~w{$Yo41
z_**VrSQv$3GWG->jGudR%se8Q4@3r5Of)w79aC>SPYS{o1W++o`Zl)fwkH<Fw~CfK
z2k3irpvLmM^Kw-v0Jm~EPp@u2T;5yC)WW5^yrgx2*FB=)DB~_epl-^Y2U<xhWsRy?
z>d0F)x9J&gOv~Bp0*HA(W0zkvK1T{q_d!laUh0vesq|7i*RA=i`W^jd$$UJR{d;p6
z891Ksy3;XJQG!H4x_4z|^hS!It2x7-NGe@*MwC_I9-heZHl)|G_DMS&(k(Dj|Lwyc
zf6BGY_sGAh+l7L4a)Q2TYgW5126lPavitWBGJ7^VBx+_Ummf7yt4f{s&Vg<Y2&MYt
z?6=vEKi(%qySZg4t{4PjP#!^K<~7pFgGk(c2jACoBALKV!|u{DH&?A<u4qbD#JDdm
z``E-J*H@X*YD!^78Cw~3kxPEh(Av60=&>k8M4R2Iauoj>L!9<~dWIfewhBl}BP{;U
z?b#ot^s%mja(~5{VYMC?Wz)|}>Q7SrWKhqj=zw3sw6(&<uN`pNgc61iA#22JLbMp)
zJz<QN-it$yYFFq&K@8Ntfi2Ks9zFhLRzaH%k=g)0WC8e@wkrJu=c!X24rDtFrHs7{
zUoGo?k?b!A&K|A#jHEL?9;ZxTCyN(y`{oUMwTK6S5PUrWj5K$)<spZKdY4DRc?Lxe
zKH&Oc!=ofx-JhAkm>&#E*t9AlnanO={ki!N^W_>JqYtSA{6CnTg(oc7N;Z7B0&I>y
zH2*DT?E3!d{?+~SqK-5{d@!Ve>&+XCw2r=|W=5=CfChRaH96i$a3=_aJI|gR;#zEH
z4oqhY&L#{OJIp@6JgAXJg3?OcDBc|1!ScVo)NJC@o<@yrV>BDYbUEDqc{^%<+SWVm
z7ZW>VRAy5vQ@NVr;$sFOO>EN9LT0}c#k;!gwFi%XNaAAW;MsiI1_ywFqq*1`WRp`0
zkN<CVdMI6dCLP-@s(RzNI7@N!8?5segheYWnee#$6U?Y~nyjlnD3~Hp!KfopSDGqm
z@IlBssL+IK5P--NBu9+e>(gJYPOdSiYS?QU-=i9bhT%|^63RVfLnq0PK`X|{qiv7|
zutmob45r?ZDIRbS)5jYZ;9`{ehW&jJ5lRDj85j?*eiC;<C_Q%>1f?se7I>9XUC#2T
zb&=aHjz3$HxOx&N|E(+t+ps9r+S+tDbnT(Cv?vIv#t*I*;L9eKdJcB2K_^NBGMFg<
zAFueppl;4W&nk^Hf6cnZA$Nz==1H{{k=8rSAhu{~*=YFo?h52rJ3l5!A65~m&IV=9
z{Q{K3*SLWywJxE4j84u{18ZP>8T=WhVbYI-Ix9D1_wz4)DxS~gv+cbi)44YutIR|#
zfq*fkW<E}5w*#3UYw~Mg;@(Nde+9evLQk^yKg|BUoV~)@U6}MdiP{nhn|)w3&&4%n
zbdf{*crkb;g`k72h@GRCWBhrV*y0P-OF6L7m>O&u_uh(mE5pH-)QNMM;K*H}<&m!#
z$~@b|;uMWuEWGxxkD>PG7q@YkCtt}vi0Pmgy6{~9@-^L<s*|Q|rZJFT2ui$jjuv!;
zZYvC4yEM_D@dl7N&NznYQg`o9Kl%m=eL+K=zPT*=SvEvY^Xdd35!7Ksf{Rz%HwZ6O
zSg<2rJ3885campa4VS&nHDz1r{0cFb@`R3cPx1|21>of>ao86WRm#GK#YIrUVj-jz
zu@0jniPca``8!g1)ltleudY5XjKlfwTiD4LO`SWYAou<ddGk6#_|aU_qo|x3m}gUR
zto6HFDdN+yRpzLf@q9#0v9pb7l^Bj#a(9zQoQBMjhsb%d!`nuSv!#a1>)$!wVN(zE
zZdvA1Dq8|dOYtbJ>dUhIzBIJ+xg;D^-!9BC``-ls;LbyTYf<{BAV+1<50Ga}Z=RDn
z=-~2GB>a*$J&rmX4%;Ih8b4sEf%;w1gawJ$+Mk6Bn;OJtlvWRMhGBl;lCjI1+n|$z
z^Q0X>vk0DAxFojR+&=ns<YFkpdOpLoJDUGWj<OgjJ#rXV|2e6MMcYl%F44VQ?sij?
zNFs}4TvOBwfJEl4idV&7;-l8?kW|luVly)2Ao`@bYPlO12THKm*}?WRLNCwOd_iG>
z7(DdT5`*{PN}*gA|D<YDg7RcvZ_wpZwqX!<pcp;Qssu*1b-jpXTyDY}MCbaF(u=;K
zf`^j3DuBax4I*G%?0<I>hfkC;P~J;{|1HpdyiYqK+NJuG8}ZC>+<cCZH^UgKE=5^t
z!9GL&bh{HT{ZZpY0M7H3kzU6{=S@|GT`235`5JG8y6WQ30{ouYwFSEMsT?k-;t4Ac
z-fh~e{)lrW+mkg>NDTKFX8Qp*z`R=P<RU?x2NbX`OONfGyvz$&y}#vD?G`G0^y#?S
z8S+`?1eCPFuvjGP(RYCg`R1@qRTl3b|2Tfi^GP55?ATiSh>5w&RJ`;-NprS!FxFLt
zZz2M3@DX5@tw%#nSQVH7Om-vE&9@@nrMbk-=}02ys9MbhhB^T@lzMn7{ut|(G)6tR
zU0`Uez9qw1uA3fqo?0ujW0#n6zDF12opE-4qztQ>pLpo(Cj4kT+})9DNHH4Z??T5a
z1^q1h`c%c4^hG{lMwjQ(NEavB)atFI7m()bHvAo{-2+pyPBPvE&~7>;3u9(8G$BN`
zuYMfAMUp!NC*UHDUzS|81CZ<V_}xpVV?Bt}It<WbLdxBzEh9+SHrv>BNq@0n-3c&F
zwl&wQW8JPTeWikb%3Z<15pEff<KdSG9N)!-4l5|le$IgytSd9cdVK?Nz6_D^ZCH+%
z*G|4F_309?udHkF!z+whkdw9D$z3!fjMfuDztWg_cnV^cQKJXexe%kfanDbF_>Q1Y
zyn?U*_}b}DJhV@Fb$X88B{5dSzzPlnc(y}ZG_C}N@jzxE=B_{h^OE3>agyN-C9UXv
z$X-F09nO(?tty8s7Q2<?+^8LU4E9q_lE>l(U%dF>l3wR0mW+>u`P5M5?yToW@h|Xg
zC@%WoSdON(yBgG$Cko|&&fzA>A!wvKQMi81-|+?d>{G&kbLq+yk%G89X^1xQe5E$(
zM5keyp?ZFWjk93k6(^7tzY<s`QPAB;F-j@c3G<8070Jzn5b3WClWgu3(Rq-P*!9KZ
zWClSvjQ=i?DYeXHv!-s`pHSvGE>zXQ>7{lpwK(XT@rk+?ajNsU7=)5rr+=I~xZR(M
zR7$m3tw?0n7l}?bduxAh@f4|d_r=i*|7`csTX|AM-A9V029sZw$p;}9_`qD27wF+j
zBkmVDMCFs@`FGfZx0$KZx2?H8{r6lwVbSd6Vl%(tM9>6J4}tNnS=#J;5&QdPqsL~3
zT(y83CX+3Sb<d6YqTkJa!CUxr@0U`k;aI?fo~b^na}K*HlQ0Dsqba=BN$w7DXH3w@
zV4-_ya&fr5w=XBXzXfvuAOEWL%)YerQBflY^Sxj522_JXdwZe1rfR>hk3!?^JdDr6
zrwUE?m<OzD!T(B7a{ZR~HJqBN_W1~qyi_x6ZfK5ixc}myEJAK)W3=YId_xKBFs+%t
zCK+4l)v^JCh~|*0y)o!$w%pua>}@XcQ~F1M$H9MUTwFuJxk#Ibi!Jzw0mNmtFjA0^
zJsrerjRl)S%pDn*5Fw&@<iU35u(oXt#3KoHB~nbs^K~jxML7t0vqoV&MS0c^NRBtH
z5PiF$#w$=HCCxi8ZI^cDyZg&^ud=+k7a)$6OR(!U?ow4~KGlRlh;Ksj&H{0ui;PAG
zoTlv^S*gtzySog);y_u$c4iJ+*JV6*Npv{jlrUQ&EjC(u^3oTy{Sz}TUs<N*Gxv};
za#}X!w-(jO#dyQRkEhV0Oqv|v@Z|E?IdBdW$5p;>o>XP`L$#J~OUr|%a7Rvr^AXhN
zPT$|BX+L@qc3-YQfriGmGAFPr(8WkK?I9Cq+IAnIA;(3lH}Y#JfIlCaD)6bOgZ$}-
zw0lqymh3}hb5{G7MN?SxOhP##-TNifU2_)Hf?F9iZKusIVfJ60{YPcl5Wto}fiC1!
zVZ!VH-FZY!UIlfH_wpgF*;}N8@B;M|Ac6+e4t7jI_&b><AtT7usazJGkZOV+F?A<N
zPG!Qj8l9rJgyp~$P^S5s%{Z19PD*QRyu``g-FR`hT$F@nCR1m{G<5|Z+VbKOPI5JO
zF|$;Ga$W3HIY-)A5M1t4h3<xJyQ9Sk6k_4()N|UTDY{VfXxSKyIFH%7j%=KM&V(<p
zWJU<J`Vi0ft%qgz#4nrwPDE2-IXrcqsB%qs>G7KODPPG8${eQI2v+eb`Q(97G+e{-
zf6ofP*n3*XHojaeTh6x)qO1^K<j1>gFR`~K-nSrFPN#HqkaQ#v4H5hHfh=%yKWzNn
zR{jtwk=Sx;-Op-){J(}8AXoDa(ky(J-MwGNJ2$5U&&-M4GILx-_D(Db3q+Zv<|)D%
z(}bAlUh#Z1Tv939JQIf#rD*5&_3Jcv`)fL@sFUxo*nQI1U8_@!osdM<`1(~hUb|_g
zV#G%jm`X!7iJsWt_Gq{Z9NJraymfkO2vxJ47n^(S9UjrM4))=T@wGDYpm%9aJ;1P^
zDG|tslhq#q1;R0DZW9%%MmpM!mH5KBX2B(c3^4=eyiJrSQmW!7^yDd|U^<quAv*uK
zBhKEL#uF}(wLgZ0T^F6la?c*={fFA|rh$tcd(V0q6-~icv=N?E)Gc>-@>)<Wy7FrE
znwR(&ai~?{T$qc&94?PWOApSV?YA-0^qsO;End*5jE>qkyHSHvgEFrXJA#+G;&5JS
z9@!3?6QF4ypDce@DOwTI$xE=RP~7zXJ-vQMR%@Bt<mbsc{I-3dDc08FFry3mV=z4S
z?1-T%T$*zErhxj1lDxA*JBzvZph$SsDKu{jQ6vt_gEM}1vd%1!dvNLPqo+2ew3U(=
zK=Y~Yd0G)^w6cA;&G!hZ(!7bv*c-#DOv~iR{FjLsD8!P};bMp1_-a+k8-pgS2{$%Q
z>UwW1<L|5M*g<m$cysf;UrxJS@QT&H1%Ppbzxt6g0;i_-dj;^^qR?{Xw-d}gLk{?<
zrzfoEY6RJMXv2}wOB`e5^wZ79)7RyXk!Is2Z1(C_>`@z_b%g>vl;Jj_;r48m!RK8(
zO3Sb6Wc4Ux^KDWAaYKsh07kg}Keq|to@$F%M~!)RxJQD#G<i5F6KRfbPvhnr)2Hb2
z{5TJ;s)syYMz@f|pJ?ndTzRP5+R5ZGm_~Y>Di6-VuYfD=NM66S+-c7W*M69I*wMzt
zN~7e&eB;jtKiiGOl-Z}vo&6VEej<r)`ws9sx9>fPd(nORM=Vjy<G9&*?~3{X;YF4o
z+k{nDVRxk<#Wg4L$v(Ulh$k67s->zrc#{IJR!CZ=$PK%o!aGGvCQ2AjYiFwq*|!f@
z2lBY7Wkrq&;K!kTQ#)Z~z0*|4VH;eHu8-rCfBiF1h|ltZxa*iKS8Av(`A3tb1^_b?
zj9%z@g?@>#T&IAvqMI$AWGU^Knovd{6*`^V8fUsvye9);hVuYV<*%%ik6)dXPDAHm
zb5~ttUD5t{-%H8YL)@#c6J#8En~t2cw~rWl$0=!wA%2l_rzyV4o`YTt2wA#0T-n$D
zl%uE-OkJ4QO*&klV6!#!nCx#qHN}hFxH9$QW1PQrsD%q1OyZP7+ntEKBn<f5*}rpS
zYa*^6K~1Zj%%vGu=BKEQj4B!qIZmR7`^v9EiWkG|E+FLVx2Kr6y35=5;U%rFl*gc1
z#XiqpJfG8yrmx~0*YI3?H0k}?Ot`cR<1yw1UOGEf>e9#q0uItvxB8VmE5}77JUc?}
zXv)3)QuBuIX5Veq=C$o|;sR2b2{InJE5~6KAP~Tlt<!f-MX&SF)BgP`nsbsN=W~l*
zjz021OA<KCPHq5ujB<%EhD%ylsWyG_b<VRB+3BwT+9pG$5UDrQo9@_smkPZ7GYyve
zu|-J%Bj>r%r>;(0F+en)!s?@rRgSj~H9DertXa-vt3$9kGDUVx076=pztZt<Yi!TN
z)N`Zu(r@U?LBL*`X=pQr3k3az5OB;wUHfXt1^fa;El%n{1hy%4VH(p{e+-JuTlo4f
zF>oYBG`{%d3xQ~w3S&-%vAu{2`V0DiwHyMyeoSyUL$^xPP^j&fM|oIY!2_6J_p>r4
z7NMf%i4R4-9P*8$&51m>trmnQ=;C1xz}#124id_&1cE-6i+H8lIn_To<GP!L0`4Nb
z(H(Mh{rUP{BO&(#BW}i?$sC9Xt@tuM>L)g&hbOZa_w~IV-$qApB&pDXD2@m;Bs^~E
z>Sk${j@u6s2~!&CO9n-iKJgoupL)N&M|$=F#V_tb9M;xwAUO?p#=J{|Aw4e35TX(c
zT~Bw$!*Dy30Ku=84^-crgVd}>wQSSK7XL^Hjt|<zwt=HOnx?-4@DvU)xIv$QJRi|*
z8iL}II^5WK5f+JuAJphsjVk#!5E_NTlNI4EedU1#=B7QwEs)KVD%!iRli0Y5;{wp6
zEaMxBdAM7BXVl6<H3>ULcB}kR5d!f%`|uv^&RH2=N(fGOEuZ}=B{Qc%KBqEfya$p7
z&qRwk%c3M;c#J%{O>}A2(P_32*PNqZJjsf*x9`HmF@f$g;uKJdU8+I@G}j{0JYfEx
zF+A@s{B>O+3=bpd^eiqNhvrm5vtM2(V;O*39fywVr4v)NM;NSQSp_Us<(C_2(pg_1
zU_l@(c{HU%zxD{NIX-}}4!+;rDb#stXk-7Ea$Omi!~;9O?mhS4AzXczC%IKJ)<oUc
zg$y00UVp>kJ6aZgtDCKU@9+Eb53aC)-5Qo0!^zI-^T_X#FOo6Xe)4J&ztQcD)BJJv
z{qZG;=y=rM`aJP8e!hG?TV9;~Z=PCld$s<fY3YpXk5UD9R=%B%i8vr@^BkYND&lp_
z%REhXDzG<&9_Y8;l(DYI#)rHY;N#+ab^Gzm(^OTfZ^#diX4{7wFvkni?C>^=P`1Uw
z3J0B$I`Wcp7O?9Y6uj_%(GOzoS|sNN!H;Daf~?1`)`NXqayo<3s-h~Ek}-U_y&EEA
zeURkskQP*m6Y<3MiV~V!;}I(sWAe{s(ocFpxf{x#(A349M`8$3;ii_@Jj@`|O+nGs
zuzPiNAm$}sUxNK!mh8PocW=;dS+T&JF=F0&VhkomCvU9>5AuLCPuNP%*1JmjnO?Mq
zD|{i__G};0u?}wUgLm{HSr$;rMcIcC@9QQeZ|odRvEO{9FfD$*uXj()HY7W-RHfFs
z#({MnhbinGOm-()DfJO5Wqj7wGEjXhG%}EfIO_nn%vJeU?Dp;J)7{HAw<ACidbKmZ
zeNi0+I7>#@l*_9z5;AGge**^W`<rs#-+U`m6|)k@Yo2(%R$<#h_Ih$F2j9Nc#DSk@
z(-%pg+@nA^>*u;@9#<8LD8~wy@}CMA2e2Q2aEuW3OVNL&)GZcmrkm2{AZQ_b>~qyt
zW9x%jzVg}ogoB|!AM-%rjE9yd#A96R{Yp1f_{q($k}{-#<#VLVuJpgD-1HVdN)s}#
z9O%p6Kcutkph=}{aWcO0fz%h!ImJU)|EFAk67zFgEX~(G5)RvouYMHLAq4DJg#JDl
znEJifWi@f6XazCwdsgF)jFBBhp97B)Vatz75gQd2TeC*VHZ2sc*5Cj=$B(0RZO~P5
zM*{K87Mr_UJ*egj%OA}tySN2q)J5!hh2?NUtXNOeG$k`7uSE2`5+FY|W*j5d6MB=p
z=VN&hP?DQ~aGT_TIH{XjzNxp?>`r<qWfqp-+_TA4kEZE{Yj^<``{(<IyaFSnbUsfq
zv!C^ZS9I~|P3imKrH{JGRp{Zd%W=~jO<9Vr101w_;H@{;ucP~>P<jN5ONx>aH+=sh
zo2CJlm|>TpxLE7b$@o30MF6{cMfP_^T^69cxG>=H1W4ZD59wz<o(KGDbkOxOn`|Sh
zE~oPy)N0$H^|;J@nAqb&&iaQVoMe1PLjLGqOYAF-LwHOl6XYZ>U{q>+Jn@1m@$1w3
z7sY2~zv7bLUVV6L8A?^>QIh`<Vkc{%&@OJk;5Ow#(lrU?Ie>h<^_A=IuhSlL@FFFT
z%!szU!8f}_at-=Xtg=?fmVV!sC1W-BE+5uR+eZnD|F}iC2j!VE8n1yj;*FKm&|R-A
zI!-iiq|WK<WM4`v%RxZ2KA@){2(LBg8ROM4ite`6Ug()xC<hqf4ozA_C)6vl->QV0
zbg6t5i7(X$dCTE>YFSlPxiV$CsBY|OOE{XnzE;VrI@mG64syDXpQ*CEVFL5YKS?@4
zH&e48TUW^OcFv*<VOZAlai))yM!24Xh-4L%)OIUL*Lbo_!(iZGO*d(t`A?KLmrA`d
zVl9L9JWba#e)y8BTqYY;M?rY^c=k)7Nhed=)&;=d8WOgF+}wxy{gjshAgZ-cK-&#p
zc+XNK#OB7pyWI&DuA#FEzR2&91KoxO_l;Mvfv$G?IjExJ6Sj1B&^*2Q^TG>|9Ejp;
zK7d$BYUU~PBe_5B_18sLj7`Wa6aVh2&@i={b`s9h?c=f$?%|yffnXw?k~Hk5wijT%
z#m;seg)zXHW|o$cs7lB1$bliRFD!W-9iAO?C*`Vk7c=L)zv!U+oJfZ%QCc*R8~!N<
z#tBAosME)$V&dqQQp5r74|n`p=Y};0^m`jyWCF}Gcmcw<i__m(m!iuesoMng;_@u6
zbf%RR|GZg~9zxXon=cp@%5E$^X~}n!LV^QUr?9W1yi*-ExccBbuEhM8ZOM%Ji=%z*
z8MOjk<Ih--mTV~lH5V5<=>{sF)U>K&n(E^c=pDE@Wy5-x<@$XEGihTDhJLV3YJDxW
zc2}pLC@h8h1BBf5*02#ssut#HazUF~_N4(up6DAhjVA3&vxET52$Qp2jUxo&qBI37
ziA1@GDdV=NmPQod6M;RNa6u9}v^G3L6hrD_Cw-dG{XaO}baD?)__RO%Q1&PE7VY(b
z%-ww(CktjISD~zP&k)!B-w|@pOSqBABisI`*{U>u?{nJ@Vw$aVwK<%EL<xWIi$S>m
z&K0$J0gr5k=r^_1!>#Me%ufFG`d=n_iK)~J4x3n?o$K>=?nDFptuOLght6Wn#{s>9
zgnCbXIacay{-y>KPgI|DZ?EmLb(d}~rKKM<3}v?^a-5+;=*St{lk=(*J3>y-?~0HY
zm#47thTzcaX&#8tqNVy_AzP1)8B^YrU8EE2o%I`Vv_Y0a)#L17H65X_KOg>{o*}Yy
z!7-~hGJHa?xJTV)#hIkiD`&m*rpaJyxvtVqaJpN=1-QAT*!l=72~a%`%jn7WLO8Yg
zY=3`ehEbzDYxBsHr)HAT=G?x0efep)f`FDQ_)D>5)$9mOxt*_;PnHQqk}tt%r})Q8
zm9>6!Eof7o!tYEy%<or_k*|P@q0TYEzaj!CL`$!)J8V8!m2F(_>rungIQgTOP}<Xl
zDq6Sn=w)-bY6KTJ+%Aariaz`c4Az@vG%OO!X55@%Nn8Q*BUL_51*Sj}cT<04bi|qG
zXQj{cH!g5>{r2?=GL;m3{FUTtl9s+sqw52Z=*8u6yv2UFNg7f5YB!R02fO>21quhe
zlf_!MfvI_(S|%sqhwt1wmZa8-9Tz3W_wrXUo4v*?<FR<#s{MTxm+HCcFK>Co4vW}G
zv!2@+qyYS&SnXtI4Xqd!iQ5uIa+zAAt|~!8LPT1laK3W^V+<0MCtJ1N#w)D4n(oiH
zDkW<lg)B`CreZNV^ZK{6DKP1;LjzoX%u4!sCT?Pb?PzR(ZnxauDRZWl&D|$c9`uV5
zh=_J_;(zXq3O$k}*gV=^9`IVuOY4=UF5&>*bsG{2Q!8vt7mqT(uUm5KIyj$FHLb|V
z!>g0*>M#F=%8--x&TI@-+H20Ks6^DWb!FDMZ<G=6hEN3Zya3NDZxf4^DwuJP(szo{
z`AVx4wX$;SOPMR_R=+GQkjD~#kHTIFpkIlQ5(6b*uJs|{b)18P)%p8C(X!}6Tv4Wd
zg~(FgbSmmPrIp(A`bqc5#!#j_ab7>FvQBjCrf_%}FeC7B{`>i=?0M;Ky>ltYT(!U$
zN7v`6=3rt6@=Dw`5h1E{*bgl$=<f(z)Nsim1A`nkyIB0Q{#;~_W?DMhM|ToGO)K$a
z0H&L%yz372EMtR8SH-PySXCAeHeU*Y`ho@yLr>X$`s}DTP}te8Opk!aW|zb>s=7H2
zbEbI(R10pDmm>T^%$?P}-|lT(7Pd?io70fAM5_-p3|}47OzZNL9z=PTm1n-ACCi%p
z2tnk>(4s0_u0}vj_~99TJ-wEkJdd>dcAADN;+M@Y(()IjFjhJWDx^?wcbzmtN&ac+
z3_P0)w7L6ifYIy21t?1j`z24SP13n{yynsjl0(sQG{;ky$eu}MkP$q&%sL?p1Zw`j
zQuzPr%M9l-F<p9)r3U2|`}Fog&qK>NwZ-`g?COWvua)sR{j98bzJL{m8B%<3k5v^f
zE-|(BwBYS=LphIg$<BLGN~68$d>B{ZHFBx;pFCNrb?%B${|AM8=u_Hz-NnFg-9i}W
zLA=IcnJ!>Txd48LCc{T4Vy+4T17uC$oba@%v7m>>@_hMsELR(IZW5wo-{8ZxUunN0
z7{B@bz0QfXYU{L^1L7azMVT*DoQ39O_qP$bIcP(Ro~*Pk#-1npM2CvrJ#bOO{tI|=
zn&>`E&CFXoolc^|xCjg@gv<t@wo{awTMe#B=g`4nZU9P2j*kHpC#XWA_jXQA?#odF
z@(?7Ii1^K0$`a8V4_<6&o~KOrDaDXw^d#xrfkAW1>%3XJwvXk?s2Xu;RBCyTJA5@d
z`BN@KW9k^=3N+QwqR4Ohg5*1rbkvy*tJh)|rhdVY518!bx2P76{?ir#uu8)pT%k+q
z97^GdD5n?5>%<6<q4Kf5GPJ4&G(%5DK!Zj86;K*&G<ay~hF$wS|J&r35i<^#KYj=h
z5Qb))e2J3QkJG3=Thddn>PIuxpkpjC_+rk6s{vfO*L07WrY!oCvpn{LKmgl?zB~kd
zU8Ixt4bs%Wpwh~)2Zs5rLTWfuy7TR<KGu%=YmwZ;N2CX~Tv0wy6y6aL#n(D}7o&Z@
z7j((0{iM0u0z-D)r)e61qlx*j$rFw@k*xCc<Y|sd@dO-+)40A$Wf8-utmXAVF`|Zn
zzYZ%JQd+5w2+hv@gX|@+5T6E{=IQPGNkR@0&q?0;d~vGS^-l(*=Jt)aCM0!qaGRy~
zVc&;Z{*}is_3o26+6@6QsjE7q9zLQGT?GIJf{AH0rhcb7>5G?2^rd(EFB5Uny9L@+
z$J`_(m)C^tld$cSO^^QGpje$T+p~M@Vct<p<I^>tB2T7)F!S@&T+)OIVT?EOzw{o&
z03^W`op{NNCEdGamp8O({kU>|<CJ$=`GmBnne_MdmdU4d&3Gri&LeQmQY)j<jfJH!
zl4|vLCoWpPf-i805>LGUP?Jc*<r+c=`p^^RZ+%zzM=|Y=6-Vwxw?~G8i6#Q-S05Ax
zv-A_5pIJT%0KL@l)U)s*mvpwVzjIXaR1cCaklk~0{j_tXW<vnI;WK|hhP?WaFUcxM
z!=353Q?E1Lp4)}dDR*;ossEn6)QhMSZ>?VN)K{M`ko^@hq*!evN`;dE))9#maJ~Cl
zA>DF_FG1$RT?EGAc~P~gtNB7Cy(W}#D2;EVk9yt`dC(N|#4LA7x-BmDn6Y`AP+BIK
z_x`3B!czXVTZt6e;)R5W7oZ19&ld}a3&?R~_rQF~pWI!3wMIWq5T;m1iR5cOjjV*}
zo4Jj0C<kHk*Xv17$Q<d?QK}hl-)9k`Khm29?W43PEEw_V3>Q7Z2^Ezp{IlSKzt{{Z
zIMoh0L&Lf%#)|0xDsC8?bnETwP%v#JaU}>mY2xXewS=m0GV?vo5x%u5`{18Z=Wv@T
z>?f(3b_9!>%ms2{Xw1AQcgA*uc_8l}E_0630)|KBO6iU~o{_=T@Ei3`dR?^lU-P+g
zO`Hhywxq}1jIAzl7j1Dt2nW`QKuUO7%MFfD4NC-EKfUh-avce1*{br?^12+DFK55|
zn*Mf-bNcicMgGf6HC2luRTclnKWt@Sv7!1D0GMVw`xya(OO;*8+zs#ha`&6kq+4Hb
zlz|c{wBF}W-@kt5d*XdTQ11mZ!O4ciQePp-CnC0Y8YoTw4<cXgV@wBE>VvaBCMBIK
z@|q%+<5s~rejkg{8TqXLZ|{5DgC=}2n9)(}D2SvJ^M_vwb|B~5yPIDU&C)tDMS-Vi
zX#H`u#SG=)b4r@Z<df72L@^h-8Cbc$0JevGa#H&RL?7wZP2h5riq1MNP@Jbw<MC=9
z3TTQ0T&OzmaLHhWvn}WMNz@bpywi=d-BQ_!5G`bHoxw&qBk8@Gz!%qatHE@S{=fWy
zW5-?Xckm*UZc7mk;g-|2dsJPGR&FRP;UyWE_{SOMQac7kZ=@7peqLg^czkNa?xv6-
z3!IyTV5%2rr}pcTq5R^zrrj5&(~G^W#IqqbcqnF^BqBhq{~1BttCWUtcDV1Fx$9|F
zwy%O{ncmgiIJ=IjABdmo%Azr9le}7yKkm75TsmIQkhm<F#KTuMS-cor?kHN7gIy@q
zk#S6tZy%K_dy-u-#KX0X$5@q)kb^i*wz02Ue^L&9?)7_}BQ$$?X?%NBq?aC^2NX+m
z%DA8ish?K8GJL@qW398FD}o`}(pn6VlROt^gx{?}%KiPrl$}+9ghI$=e0#>mk6$lm
zRsmwMhHoh8g#0?(NV3+8AyQF<d#6EEXRBefc1}Ua0R<?p)~oroi5rACrx#zlnzEgw
zVZZ*NdJ;SJ#fS6Id{^-%53J{C#8GJgthaC8A~Cg9?r%0O)Q@4mADzJ|O53iB>LHXx
z3N*fXh?%6Ev?Rgmw6e-oauQ1Dtz<bhtYIgTTarBF>D%E2{(w+klJgLxEgFE^^VXr8
zj{ay`+>~fo%;C#zT4wMKKN-(^{U%b|-}<IfOzXWmzqd~k?nY=Ce99lce49WaIx*LV
z=|4zgw!I*teWsKT1PG$3!`1nRw^8Az=dV{X*kAEtxh?4s@bvOTB~1#U`G-ua3Cxq;
z1Sz)`dF{Tc&d0^-t>WQT#SYv|00ZFAQRlZn#6805>N>s4lQ1Bu;*}iTb(O^ha`-mg
z`T~?cTYR4Q*Z>!MR!wSQ(SjjMex+@hG`vv9w9nOrhjNkP{}sJ{ReP=1QbrG{rALxB
za+OfBQ?c{_DK&{J--$Nf{A}vLm(fI=wi<hd9y?Ee!E$cR!x{n3e5W2nBZy{;f4{IZ
zztCno=6dPIoAayGb5j{CQSE=u5^Cd2x=-I7r%)Ow;Mb?k1>G;@N40<&vRMS<by~ai
zI2=QVT5OS})6tL6G=3h=5tv+DCU+|50}xE+XY!eds;}aJ!#p{?z#|yGl!O0MT(Gcn
z+vJwIGW3N5bo68+O51D5p%JY%zWbnI&qb{HT6M&T_aUbu*pC`*T@F(ls%;8v`C@PW
zvh<JOHbHh$YAfTaS;~;U9+~1T{QVw%_TlW|{U<WwPd$bTXAYMaO_!pbl`b`Sq2Y<n
zPHw$N{Pp@R@!Ws=mQK&O4Hiz6e0|Mve<R>Y!yWc!SRq9e4-@fyI6K)|?$8|lNVpB)
z+v@F}-CW<kMshowy?F9-wNSp7&4|9<Y%W6cd6l_1`SVY>zE>Z<LieiL^d=~9>NrWr
zt+BA)uL~ppJiXcui1qN0DV9nvPJI*f%D&PARS4n=vU@y;VB}k@XV8vb6TtU-Scnd2
zDZB}=NiQI1=dRp8TdwgPI{ElZj+nnLMfKMwv4ZuISw6}VgDLC6HUYd>D4QUSQBn1G
z5G@n(b|RAW>jolU$YUcm@`@enE9!B0OL!n>v0L4}75c`L%d5^+X#R-~NW}iXd<oB(
zlKU@T;&Wpky_8rBP~@>9-xSn*?`S^LCPAf=__2HX!{pX(p$z>L#_3Xe!cLVMoxxYn
zE9(0h{Qsi3-`}*&P0xXE9eG8cZz@$ktNGKn;yXO&vp2UXLuvuwpb!#sLB0CmiE#1?
zO7=0A2}QV1nw$ilF8gDOsuMNVegT0J{`C~k<=U3z8EQ3HUb`TU3n}_9dsPBh;K>pd
zZ_{D@*j6<!+o91GiCVq-<4c7q7V<{OJVomW_F^E%30hg6#P>yTzd9Gf2|BpFQtr6^
zN-U@dqd1|3mNk+oN50h{P0;-`FstoR2U*Cy)5&_a4ZS)26wr0}1zMyJAl8_th+?3m
zd|M@)<lnN$!SMb%t$?Z$ZPz00!Ii8K5V~>_dFu4y_yAdwne)$Lifbj;1tg;0hG>Z?
zu`Dup40;j=c)wH6qN9B<X6*j$9r$Y#tVf|h%%ocHCXL8WZX(X*Ep!!=j&npeeRZb$
zlFz*{KwX5F*y8jGT6R2|9Q_ll1<|SLy<y=HdLq`J#eIYN?BQhG@(A@Y8$^Mp>HfM`
zF}NNuNG{*y@6#>e=0P<WK+Ow3m9?PFCoai==MX0VVKZA}!}<{-j-SyqQtPk~1sWiT
zr$H5+eTvZzeidMd)d}wO3U)!q7r6hT;69a3tWp3vHa~xp(UQBjN~_L3`1+6%h}@Vk
z{Adun?!UHWExKDrzfqA5v0NlRUi0LD0`xegg51q?`D-T-A6RnlV3kOq2Np3oZXNDo
zs+f&c$F_s;+UOBl{vk7(&ptd0Pd0DNkLA(DB~8`;v-whqX8or+2G|&J`BtsHcvq^n
zt#wEXp`!ftxPm_(eqs{-x&6!hf4byZHyH8rdHP1KY1e|I45up$<Fp)JrPoA{!RpDv
zzW4!9_0`WrCKA=4j<krMo|`y%K+mXad8^tD_nTl+>efnzk!(zR&ku)Uj16Z0+&(Iq
zM;>s*^mKJyP@^?zoE(VIQ-3zwXQjT@)T_Kj?Q%UV1v!J*2uOuk+3*I@5Vzqn5@Nin
zg%Kzd9b4By(lI21%+olzeSdFzciGQTz|=5YlDwU<r(>_*1{W0RE~&G`6X5QBnI>+l
zf}9k77ni1Jn&COPeMl+^QLi;;S=ER+vXd$fo1tk<No9}vc=YqS&cRmlO&p`;(k~fk
zLUptP;CagN1oe{7N)_@&c?n{^U%~KnFN^kQbrSbx`>!_h7-=?>BTH#QN5(hyN}f3-
zQ3iFF)WEp2ekZHxhr8SRj!_@f*&Y|^mMJ(ep(!0IoViSeUL0kfMIIlH=lG8e#dT4^
z@xo7&1pYNojdz8c!%ssm3x?m8emsTgMW*M8hrS)c=+O)qp)eFAHtuw1q|USlSQ4d+
zH^uVgW*RK&1oj#6m4k*v)=r8!+Pursh9Yi&9txzaeul)%Tx^(ddVTu2o)vmE*8*{P
zGoe41aD#(^23xcQ&X5!kk>@7h8CMFLUMF<P;**&##JW$S7{mt7EolO183K=-<pQ~`
z&fN@cRw}&ortRu(P-XQwgCW6}pb+*o{ePRCElX?;D`CL5cK3!14!36flT0LB0qUa%
zI|^7Y%sUIn_K`AhRQk_p>C!hZmqijOPnug9P%PQ?^vPr!+d2Zxa~mn8r^U*5F)C=U
zydQTZ(@Qtz%lQipY5LwU4te<1m7wkpjE~gE_*!4{wJJMn&=@GZ&J1UNC~4fVyQ%9v
zcl)%1^ss;<Z&u6Oy41z?<u^Ykaq&5Cq$z+_xv^ejIFQpEY{vOYE7q_E-Fj$*J*=$(
zB%JHu<vF{6nF6o6Do2vOLGnMbUorFCAH5fn4WPfYHM+^YY4A*#{PkA5@;|4T{P-YD
z^Sj-@Jx?_UJ(|w=oYob)aQf0fBq_jA=`}lAZtPHpX~awUvaCm&egM1#%j?fTr}FUn
zivu~vGppiJM8CPee7PM9$F&>XPCuxOjm$gXGsjv(Mei*S!*qzENvF+Y>DkLS|4*8v
zlvp$$JwS9~C$8k<;*O0q6ocP3tUUZk)T?JD(8_ytX;K1^81L{XdpB{8hTrk%9HWhW
zJ+5~%4~psCe6|PYc)Gn<&i=Wz_#a;_xEo?Yx>lUT`E|9Pp)*k;g!|E(^5Cg373i7<
zdtM)=sZLS=25J~vJFkgZl_V9n=ZDANBiI!7WTOf7P0eax7Cp+v^;NfEWc{o00T~Jf
z@=#~&7_AH3aF}dMI{~Vtb_O<duHLfv*@3rZ3sS&xQ0|i&yUz91`t{9w#SwWBkv|v2
zI@}P$-*3utSO3`IA-_)$y~5vldV3yrX1v?A<w+?X`r4t+nuoKW_ZR<b8JXzmB9wKh
zGh8&@|5e%bi(1!G@U>U-r;B20h8@(VIVt#BxT!P5f0RyjE&K>6kdJ)!PJGT&n2OM7
z#+yPb>@)6_V^gYaoY7yrZN}Hy%j+9B{otw&mODM{L%3|4neS@^^<efKT9(Fu1uDy8
zngEzMK*QR9_9FZLnIOmU-MB^b>vw^BQV~$z&o70v<KjhIjgEJ&`zX$R_h>*me=$KX
zomh%N66p??kIDf(3hP!Pnhp|=-pZO-ls;(u9Zr<;;p_Ji?&MpCy)f_r7K7Q6ts7?P
zbs_FH!gGf%Bns50%RLb@BlDv+$)E~qH2oL}#?bk(A8OU#BFsN~)xH|vKFIo%7MGov
zkF82nzRp&C{DVY$8~*J`u1-o+*3HE5hVl1!C(|niP5B!CHAU(_u6;8E!mobQiT*bA
znHSoZ4^W9O7Yr5%!r_Wqh|ly5&H7m)^X2MdU)KEU{PGgwR$!32JyK*OtvI9~xmPa=
zZMmVj_@rSs>uQ_<zI;1%=zQvGlEbU9C&yQ3A8y3o-B+TtzR!+53TG{9XXLXj(h=#p
z28TLEnv;OIvv+?8th#(m-l<1MZWfAd1v5J^zK&!n3i}ahW}~>5?%Fze6{FDSM<pi;
zd1JKRtJ5mJ?7D;U14?>{VL5m`-gB*~Ehv{BU7GMGoGF^VIL=`&uYccSr29<*iO)19
z+Chok`+)_OF_*8l$KEjIj0IQvBviNT{W-ckr?LKz<<JL+w<Wx}@yxqjLh1*8*5_ob
zhi5;>C2jTE8bwh8TTeXOg<f2N6c%N4f~TwSl)%Q?|Mhq96S=x_(y-Lmr8(8&lW{N{
z!gxS!0E4R#rj5(n^U#mm5^;d1UQZgVJPw#Mwi(YA)>EFX`at_gX`!dP9=(!ds@f=~
zix)R$t%kFh?qlEc7p@3_hJ&nd(?>O0DESK<?<Pb~Qpuzz$HUnlzc6+3itUo+1T@vg
zLv-wlRqQ%_xSgnys{jM5r8NEXoDJf@Y9v-Xp*pi3{Yi3&eS^`)`2UM9z|veo;zSbY
z53%(Z#b@aK!8DXFbJ(M;6O9f?1*0EBH)1jzZ}w_UiU@YPrvLSqNFsCh*Wa-Y|NT3L
zQ(%YitY1Owtil%|5S&neAiNY<OF<0_R>KF_3m59;B|rTA*{}sUN&L*c)7O{2-(YWP
z9Hk?NudGH1QR?oOZAql_?;wF032#d17hmxz@ymT`?WIym%Z-YK9j^*^&v}V*X74h8
zF=V>8m*@W}p7aRij1LHgeax<rNf%thbyJ{WM9xLR#>&zON*&oi$}%s@n<ju9FNN&J
zBS_`i+NHW)E}f&xE{_lj?H#<L6i38OZEnfv_!gDs*<QTEqNQg*<TwVWnIoI;4}n5<
z!=pvy(<aV=-9b)l!YqLeg?_%e{T+)+3f>Q&UPjf73zBcH`BiF%)R#P)zu0MrK}l`T
zcf4-ZOKJ=?E(*DWk5UH?4SqunlCxBgbbJz4KiT;;xw$xkvo=c0r?hg~W2`P5krr2X
zsq(3^1yUQ@-nEXJ!!l!VIux;M#p-+THqT-BM!4so^|Sw^jBE@^%j0lWldHM7mr{c8
z`kR6reryGWJUA2A=wz$cqmP3fLh|+i4*^1A!J9|g<v%2>QX=Se+$#h@c|#H!N<`Pk
zeTnk+55jF$W^{dBdigbtd|VW0!V7S-7`BwAJrB5&dB<&iiY1D^bimRW@Zjtnl5ld%
zUqpk_t~OwA>qR=`E@rwR_b&0A_+g@20Mq$yI)cw#RnEhYsA!SMMVgHG8=FQIAJE;E
zj6B)}fiZJdo)~uwl2`k2Du7vio)kUg3)=LBd2@Lg>;Hz|ei4ofYoRoeqAV|D3?ZDv
z3kS6>YVn#QnqiOQ2-J*Pk?B-OJ2Y0ob&juO-i@p14?O+{fW$hAq~aWMI(qgE?^h?5
zyTiZjzr4i+g6ms0JcR4JB(<@t0l?Y4E$6Yy;_I9&@e{QGCm2L3b$Cn#iRJfuuOY!b
zYWu_q6KLpfkA@=Z(yp1s8ZT<icZ9Tay4&d*!ySL79T#Rv6}WOhEezr*wL}_{s`awe
z*$Y`kj5pBQ3QvcRbCb^0X{$B;7GJmmNAJ%rU@c#WvCx4fWFSE&L*c~`47d#>-O>5(
z%mll$8n7x`b>FzIJw9Y*+0QXfEQ4sDzR<aP8~pxsXTDrcVp7bH2Q`}T1~aJelvIKg
z7B=wB&GqZstE3b&&i1%?IWf_7=d;HwyuLP<pDN^iL;n_O9yLlkfT>n8NyJ#HuIhnh
z4=1)fyE~R~W0N6w4KaPOItBNd_z(@*lR^t|>SlF<Jm1g$sFLu?_~e^PNUd8Dw>-AG
zCu*4}f&&Y4uDh>36sXy&3iX_{bCC2pn694UJw=aPeqW^sHTB(;7Z;3&CNUhzFZv%-
z44!lO{8uVo5Y<;9>`U&;_HV@;4$d<mkrEz;o2*k9kekGr#lD9j!QTBzGNWl-Yy#!A
zyQ6$lh=rMxmb$}Fk0X}C5kTO{>Dxb6SN}P)LitMKu!EnM1$vj~@Y7(0|2HJ4I?tme
z9*#4(!vYTt+T=RYLh{_*;y9LS|K-7MNeKytvyyOV8-5Pjt=DZ&J6utpHY@GEA8yY}
zp+|kW;OgJb6w@ZAu9#MW0cd>A*u%0%8Blz9Du-@PQT+D4%Avq~uT9(Mo44^5rmoF+
zTTmJefp-RNKfN;Owy>N=C&)JolJ+BvU8DL{rXdvRZ#&HQgn?B3xcboLvx`z)^R+mQ
z+SV_W(hg3vcApyW@?O}O-Nn&-bAGTLR-GwX0Hjpydb3t#qAe3tIMYW(FYWG8xc1;h
zeEE;mR|V+8JhVRFJ{_N_$&DE%FsRkJJYO75>ZvyEE{po3WtVb<gQZ1FHy2t2L(Z{)
z#*6i7AtTAz?{P7F@!#8?d(Ym~ac_a;hK0{mFD!}54sI5`FX;~<BT#)PfEnf8qLBiN
z9c-4C0R4FY8=}x%y32BwDw)W59zZyl*}SED$muige86<58{13tO0%%?@on(-tlUU3
z)4&B%aa~@zJg;9;C@hIO^3^$uKD<S`Ye=L8v=8yLEiCWb79MTQuf`St&ZrbYe3Yt6
z>G|o5Tr4300TSijRwfZ>etNWxo37lg2w({dF=Y~$a(umPXXCU?mq(NVp@DW*nc{>`
zIOaZj^ou7U4ZHtV^SxH#{sk*LYlKfocb+khIZWh~gf)pj$Vw!qG}~W*8e3^Ve{W1U
ztJ`srDwWs8+5g&o06r9V)RT(dq!jLe@8h8%D%R#_xu0vH$n`n(y!fve3gefN6|l>-
z$S6o>VyE--ICfBmzQI9IL^NSf2@tAozAP+@^6pt*Zl<%lq3(nEIl#hnz&!Uq_&^@b
zpLAT!_p~=kzo?8urj)otarP=OW8>l<SyvGDdtXL^_GM)06J=rS!3cl%Ri%&_(!<+}
z*M^D(QTy;#=TB#%S>EK_wsZh~Gjib4hUur--a%PiV`L-VJrkE5#CjHwD&))g7!QDt
z@I{kCO(BN%ld*$GTlq8c6XG0TzS3hv#;5vAm4Rh<N-J}HCb{~0!4=N6K`PC&3iTql
z>|l&E9C>d3u_cMUiTBao&BTqA&$6fBlK8A5M1WY|4(65*a}-SQ!b%TzZtYd2?C6I!
zOvsQ7juQXB&=olQyJr7vKb`M+=A=FYGf1FL^l}&c_C$i-q=GEkrAbK`dZoL4k4x48
zuCG5&CWc@efZ+aMM@HAbX|2qowAT@auhg%Ymdd5E7-phonT@mneWt*&q<02uGODNG
z01>ZCZ80dG27<O$W{n6~HVj-aTigqX6(dTPoAs5U%(zY-d*K{e+u<&~X1a)BX*QW*
z>U71R0FDfn2#Rw3mA?Fdvw}FB-L%{@FFpw5)&@o<nqKYd{Y|yKu*R6Me?0fLZPf3e
zft5%ki>d(1#!YLp$8VtM#u0XYGbnz+b!+;p8Wwg)z=jXJV`%JR_LAMrJl&<A$fJaY
zR5@pB5x58`!)>lkf7je0Y!4*V<ZbziXA^cu7WY8_ojCIQ?^+D;)#D)0S3WRw!ryRg
zhM|N-=KH2VhdCS!TiPcz%Q@_raHTMr<a&qQwC@#$7QQ-h``2&ZU8>>AUq>Yyj^B4#
zB^a1Q+3H-db0ya<j$P?6Rh4M@Jl#@KnaU-%;;UMW(=4B2>2x<!wgjANCaSWTvJx4`
zQAbJh(^m0-Ms1*a$5Jm}ZNv>tZ?WL_s7l;&aNE0Df&CR-!}$wJUE8e58}N|ye9LbY
zAfc~k6tA6G6ODWdbLKT4m<y|PI4Y;DM#-r09tc&9w-S?{xATC!;tk|cty>la=PC*-
zD!ra%aMCn(ByTBU`JBXh(&r^tMHzd5KoY@9&fZ;iu%Mfw_yT<1?Oj!Mzb6J23NnEB
zxo5wdcQu5oyHVXCs?|sp6oo19jOw<qlWx6}MHX3b`2zbKUuuDH{b4vHfi5loe0Le_
z!=Vx&TWx4xVHTy7UuEuTdW~-h-${D1dL7*FPoBXR)Z4B4c}4k`=b(=(qS@4E!fwW8
z{%ftfTkJiRy9T$Evi^0(7@YOt<2(qL<@?!(t2ghj;_?lbQk%ep>9cfV6H3R&eiP0c
z<U}UclF#3TYyQSNAjZJwe!p=^Y9MS&<&vjUwgj|<gWuBJDG9puj{6^i2Uz9={CS)o
z0fGl1&<Cp^F^Tox^5kyL);3;BS-NreIP)S9Z)!KgXU@`aPWfVxv}lEzaov>6=PdWP
zAoiT2k`JlGjedmX204LykN}-fVY_W<jY<y9QFpv-ek|0QS@+He%(FE3XfbZ_c8ltU
zPV?uaqCHCN{>lSCJ$-*&q#AWq2;FWXAMBg`tTAHXD~4)Kjf8YUG42|N03kVFy<WZN
zmvq0_8J8J0wPbZu$j5^d^CQP`p136r)o-^~ySJxrA(S;q$g|3UPMbL)nDDW5K626G
zj*9W5VE+I2S_21!_dw0HtW$qlSf(=|<DW?E(AJbVknGsF7_I$_biyd=CJPykv~<b#
z;qs_2SRPG%S<-#pr6NbkHFd<lp9?pF7|L4lsQuO!c2?D}!C0GY*AoLAd;6N*T@<yu
zvx;Pw#9cdusU4*==!!{#%X|e-g&~@@Ws6cQ;>kmsxP1S|Wm=d{q^B*0^9bwP(<G<3
zS~bOMFqkk+Fmkn;{8@=CIF8M{C=)D(H?Yq76o@NAAFmAi;WH;P?8mybgS;U^_(hku
z!e45TWX}BXW901bihWNf1ll_5D3xqFX<FP`%=ak}sfneV*|)(A_>OTcZ?Dv#%3gPH
zs0%9HENO<~wW-{3%B^wFA_TD>-W{CbcFqlyrq*Q-$7{HhZqq@`d(ZkBG<k#|YpE!^
zNeRf#CHS;%{73`RbOs1JKZ!M!jr!8{;Vc50ew!Nz+2XU7OjlBnF(()JgIS95SD>?)
zG*v89r=dw;vi{aTvwf=i=$#NI$&q#$ag~ZSx-$y?OqjqrCyp94oA{B<o?~vgcmHsF
zh(x(^`I?<Icd_|4U6J9D#to6Kq36WgE>a@?i5Ynix_d%#%D;Hw$$IrOm-anw5wCba
z>((TCybzVBw}HR|hh&Af+4l^lP&w{3=UY79Gxba3FPR_y!I!YPDZ66G65S=1v1^BX
z-*X1w&uCy?6*T5{FP1+?DomS0Y0G$D=aA=op5CB!dk2B%6(!9woj@{vCL^UxWcB`o
z;OyS=^GTYvj>Ip5i%-G^|NF(h!K!oKF1PpBSsE*(haoq3D2(wq5dJjw{98qt)Cw6|
zzS_>r@H#!Q9GB=uI4WqOa#vpvXRQm@<A^F;KjcuodiAfh1j}g2TnGrq`Hk6p60iH&
zEx7Ki&LEXUA-h8|aDcEQ_zrU$xe8Ft*UGVVe0$S)c#S}3^Th_Pe5mtdrO@IR<oP|8
zd1QO}GK8p;%sA<9uv}_~1naA7*YkB9I?9bQ842d)*|~7`O;l0~eu#i=-`hVll@`ko
zd1Qusyt}VYpFy{R5h&oZeWUZhfy1Km33<uF{IENlmW-2<{%#QSmTBBuY#f#vfP4Kr
z{(TKudzZqyI0l@?t)9@*phh}pGFSxAOP=bO>oPrNedFrB@lWYXN-h+nN_spl^kW9l
zIhk|8G%or|c3<5YlbLhUM09u&&&Hn(AhWtovbPwAR6W!?Dmy4}@z*{R<yaQEZ~8Bi
z*7fRCgSO|E2>3B~(ni^Vn!m~>Pt0oh2y=C|xwkV3)~mAZ3ag9`k8vu~Ut1f9nm&m4
zitqm?^tNW4XTQ8G_faWn2~A1hh^#BD_Rc8w9E`>8K?ct?&q?FQWbRi<&}V+w#BwvE
z#a1CVdbzoI0LORVp)9hQAYR>=<-?=J^Vv&f|NFD$i-UumUwzC|NP7C}@_$ETf2A+x
zKx!TG=rs2De1M~HQ?R``d|!l|uv6!#5Prrw&DlS7$9^rmx}I_kH7F7YkP=-pF^#&o
z_l4lVfWgqqjxTSWEnmc*z$u6t^=~0Xh%g1GYKcm}tX!)#Tht;!ZnBXaaw4O0zhZ8A
z$~w>;9woVoqYDx1C8#A=)1PU0`;0b|cD_i<x`jTf1?6lzM=O!5SF{rQZ+XCjoCy5W
zZZTCjxQ&;3F%&ATg<PBt6qKrU9zxq=4@^*7lYl&@dMoFbFTfKzemguHMdaCnc5?T_
zll3mJTFP<w3SE}IL@#!Zw$q(K52z;^bZ~^%W_fe#z#H>E)@0DXiHS$aFHMUW!nQ^p
z?2(M9gSEf6xA^77QgVKA_%ss7b6J1mUMS(Sw8OaD@N@F9cZ#-=QpkJc<>j1JlFVt(
zMI6C`x%+$OtfaeUcuAeOQC>UuH%cH`^^%9hnm10Vf0Sm5rl*BtnJ=<LmiCDkU0u8Z
zsn;^(s#zp3hzD-Lq6P$|&+$LdhmCgeTl${FbqivEo{Fxrl`fiL3=>=_u4UwL4ud;}
z?A7a=Ss(>Q<7N`lJzqB%!V88QGxhW#Tj}HbYTK^0=1D<x=l6COS%!R!|G2ZiG2aQy
znpR)i`0(1TZ13rIXxl{?cYa}Ye!idoe{`x?_KdcgGiPzyJph#}pml9&HAl+CR*C8C
z?ZklP&bm=&o|v>#{G2Za^{IFh4?Mdq4WtXPxl2ypi@;Q(wmvtq61K}0tog#2a{?QN
z{_@Vz80?6&OjAMozZb`XYoO=ah4PQCWZ78+MRIj-KZOrtlI-!f1vCERw9@&kNNGSa
zdMq)=F|ocj=#yZ$fqpZBaJRUv^-JFgZY|$0AL3QlKYj0rRvK6_z2mz}!Ne`QULnhN
zk$A-O6^?y<7@v$OS{BWip$QkJ9G7)p!~ec3Q|6IuiO}d(j}zYo|9tl<&P9$(In|T>
zooxcs$hce*X!DCFPv$%O+?mDBEJ*IrZ*8@CCSavay`sboaAEqUlb-rpI8*>6o%>I@
zRn<Qd&VrK)E@u`t)Q5)l?jisjQVW$P8Z_zk%?B2)IaE@=V9*-<vT55BRn!2GVizj5
zrQXb8{5vJBnPd64zA43mku?8pbNjwM?JpO`&bQEbjV|FvYpS}d|L#>FJt`<@H3<z!
zElz95EJY9s=Ad=OLupzonXJKCs!`~OgZrELR4gGsP!e$9sumJ8>Gp9{NZ~RDIWLEd
zcJ7b*DB>uyA+fdk*e){aWxr0(0B%J|=Fg7`Xse_lm>s7N1XpY^9oyJXBW~Xmq{Kds
zgPwP#q%M_!wQbiLnxqRZ|K?k!WGO)%hG{)~!vgS$fDP(SLggV+ov@k5Ncj_KOG+ZI
ze|#x#mktO%OIb<^jXqe+Qd4gQMq{;(Xc@H-EYH+gg)z&UTdS;DONpta2e>yPbZA*!
z=h3N9P7{vNA7w!EAEQ;}6Q)3Uk>(g;H5l-IK@r#A8(sgw?3c^er(>|*)lsT4*rD4G
zV%|!V9zcioSehlEI+kjb8lrdRSXq_FsbjA9XNF|Qkb|F^%N!(?xBN<<7{{{Woz^gk
zzy0^Cx77UC*ikYwKpjvZtBYZha?J@E(&LIT0+Nf7kb1JCo8QLl;lG}Eq@=C2tZ&Vf
zBHyKNQXGi+g+YfZe24u83ka~9Ao3@+49B5De6^*1vUje@xj<vtezwW_A0C<r%zJ4a
z%U!FHH;Zt+Tng>h7C$W<Q#M!A+lGMTs5bg{B?t|V!wid9du+*}C?wXkb0S!0VQL>1
z!p1}#r~J3^1<R#z(}yd{0ukEb(AM91q14wBr{yxe+r#<N)gtZ^^F}2-`<ygAPjYA)
zYhy_`&l_RZ0q6(Ef)V37GAF;LWq6Jq_AR%?9H^<yNqDS|Lbx^X{CnPGa<O&zo8QRO
zUj0#QnWw0pL0-d<=z=J;^GaS?dV0+N=4%-EL?R%L3`Bk%b60*d(S^P!XyQg&a8|2D
zC(e5RZuSi|<1}Vi4v=LjkFtgb1`dn>vMY!C^Q{#5&30cbw>Jkl;f&D5U5^CH+rPqP
zZ@uB89KL<%M>tAHFAi1RqbjMy`*rxe(yG`OBr-AZzmi@NF7pWH?^c?7ugBB<kmJuh
z{J}Q?qkPPb+bbSPX<LxqmR|^s0EV}Phkul*u;pjzMesFxc>-tJjJD)h_V}eJ{a6ex
z{||xPRwff9TKf|K>LK(?4-J%E2anN6ITf8)D0AQ???%iuKXFB+p~+?4jq%#h<?@A}
zT#MxO7WmT;c03kbdzb0q-^NPbZH;d_b!EIorako?`}y*1MTlye?4b_5vQVcdB`~Bz
znnVq0N^ZR`7(jD@xKRG@9sOXAU-rhnazTSd{VZ3z4rAhgc&qtUN^K~_Bunow(7ep_
znPqjHuwS_FD$CZfvE~wlDUwMT*AlCjHyX*61Wl5>nzGu#N(|#|@>Ypac`yahA(=3D
zGTcm<Q_`6;{%oBx5A?|y5G^#&rgqlU7XW|&rmtHXoKc+try31DinLr^aPIu`=L7hj
zUHBVr0y)}PrKfk1l7Z^*jRxW646s8K9mnq5lJfN^&S$M?o|W;;?QyzCmuOTjc(J#)
z{B`H$d{3ET$=QSEP&o#aK1xwWUp{Gvbi#-9(}wTXMsia_B0$N5veE>8e(-gUN^(wx
z_I0o3KC|47A(8znJ{VW&fpWi>^Pe-p`~|&?sIj}f%++Zf?(DlV3oI^b{s#9~$A5ZG
zCUTPRL<=%`>6ewQ>PEtka2&e!`kj>#4_4h)T$_?!9F7VOIL~VHGymZF`rZ?L$6s@p
zMKjAVd63YOox8YslgxggVJW|{{;8k<y(^T`y3(}(P6<u>W98rRu<sNXlO_-pu-QP^
z0_c}vZ1phYvEhR7DNKc`=Z~BCMNP#6o}K{NdO|voM>gxMfcBcM71TA{0*5jYQbmx5
zHR^sVd5tO$5Sc-_en-U9VqV4~#xb^}@S$qQ0)#ld-kR68mSK(|#t%>xe}49%R?m-1
zjFIJ08^S6>s6_S%K)bUgmn|47&LL1#BI0QEnG>JwKK+oCn3o<Pv*CJaL$7ny-|t*1
zIZWm{G&*bwP0^OLMoU2D^uIi-vpWa8OYdtQWcOAgWr;_6<e>$K1i}5M_vuI(mZ<n~
z6B5jF_;z#%Y0hU~crYVmKtliMc6hIpA>aL*E2zOENWD+(H$@Jr^-1f>oZD(p+7od?
zaoLMLBe>}WBZ4GA!)+*=2NZUh5!AxE;WOGRsXSbkI`A?=33UEpc7~C6w!U7tfxv>~
z*3-nJn}xfPOS*wmZE34~^*e5CUpUz~uIa|XayTUJl@?SE!0u5UsGGNZoTwgnSM5`g
zR0q_cwf4Fa%#PiFY*gQ7j4OCz62aSEwlo=tZ;-yem4#aX&wot2&}?2_mz!D#q}Fsv
zMJhnw@F4Q0mUaDa)ZtIDZDHe3`v&v8-0y1M;*433Qao`|(+z1=rC2CqW4kC0Zxg-(
zhaEGLI7vtL(P23d$0KFd7P{Z|#%{ScCREunhjmyV9|#n9g=)@(xp{tWl!e;ZO!Y!-
zWt~?|+Thz>S}<dyA50!5Y!bIFomFU{E@417Beyr@uC~*I)>Sy|T!=zdC^nbM_18QA
z$3l|e-~~fC62%_beU*PQ>Wg&99czmGDC1;6Rb?jQWTtTSH$;D7)|DYM0dTZg(_C5q
z;@au0mKktqcLbd!k5ZgjK8!Sf^~b%>$Rf`hl{E;gHUAavHd;o#A*@7;eIA;i;mf+L
zZtccWJ>r)W)a|2toBRDp69UmqdfI&cv|d)DB}95wf3&BcFrOXS_pf2shi26bi~R@{
zO{r}uMar2;3|%O*^71i!Q{A5u9!{eo?(@@Jc)dU$l{<<3&&cl4RAVeHft&pdwT?{7
z6^}tYzmC?L*w(cGh3E5A&ZTrW5?y)yv<X`-GzU%kuTG>B7>*kmCu12OXuh}c;xN&>
zfevXKar>!g_lYormuZ678nz==s4u9XjJ13gun8dfWo}(8&BMuOhoyOJ?U(6RL@4D&
z(2qYZKcgD7ZRRsk@Mep=QJ6G%SUr@^BP!DTPFMZrdHnbz_E+d^xH;>q<Gb8h`?a|#
zygWAu;O_eQ29B64rOZC0=}xgXZNcpR2`lg+F)E`%IU3vVJ$}>%GMI;1p06~>{XE*o
zQGCpMhb6AgE?%P{4{Bie+`Bt*1@s~~z80sbNlun0sz4$%TpcW;XVeCAwGjY?I6nFx
zMPpzaX3&v*KpWAPCP#Pp^L-E9mnQ8+50j}zM|fbRSRrM*rAVq2dU=e}t@vqx+4~+a
z3&{q8CyqXAm<ha+<gX9wg`St%VeNkul4)|#UL<W_zs+}uE!`Hi{N;WR-;Q=jn^W%Z
zhfpVr*Rxuyv>3k&s4NwlZ`-qleE41AoW=3(tB?Srwukfn9=&!hDHpyj0Ausg#pAqy
zr>I*WLwT=_tp;JU|HDT1z4BJ1+u=)=P$SF5C$3tmmWNkQ6UW}Lt8`zIt{e+unnFuq
zcIrJKR~NTJsFuy^F7)v9KV-<FMvm#PR9*gKKIC!AU)l}5V5mK1+*^*?mz-1dp!iQu
zN7Xt8`(gn*baW=}Sy#-}DGd6h-g0rckII!!Lh^I0{lx2yhgx8?J0*E##==+^%lHYf
z)=a9{M1{R9Yh1Pw&1`4Fz49ByG8;KBr7v6^A2bF<X_vt@6Hp5Ng&;|T$Wru%gUzos
zUMg1V1i@r*zw;(qWMfymw}X~{+KqGAk);vLUv3{_e2Uu&(jq0c)m-HybEuw%)G`gU
z&(lB#^|z_Q-b}bOxP`eSCW{a|@$kmg>BoLN^XHW8F<QAwk9KL*O!t^L-!5UVtf7V^
zE6$YnO^1=t>#uJT0ridVr<jw@WNxf(F-a+s9p$^ZM&asi13NB4g7X-mA4jXi{*faC
z6K6Y%B-Bc*jP)CzD{1~aDtM51ufVyd&JFj47}dcOfmNo!=ZMX?RVd~Wx|d4dx)h@x
z&}nTZ2){XO?aymQP;e>`4dr0=^X>bQ3M?%c2dW$ZEStf>^;9-^xjHV)8=@8<VrUlT
z5C^zS9jSE);+{gI;dxkUVa2P{)7R%C*vXNGpF54Ig}SpGJ&Gzg=I*he00*Q`#GSf4
z!_GfYgPY`<N4Jl025SEgwc8&fNS;5L-F@TOLf05p%Jdwp^iOAUxck~SmJE2^ED|k&
zQn*oLvdbTmB@Ju2?kSxoWG}t+gbiPNG*ol7`12!))z&6pSeHPL)NN@8;?TaS*@@)l
zJ#|K+@$!#*#qo%&55HHfNuj+uJG%TZZGx@Q^<#G5GJG1&VSizMKVtj_Hz0O*^c{z5
zrXPA>p({|6z09d=NmasSA>|j?%egjz*V7u7u4{+um~jgVTxd^`6nT8UaxQqvyn*6l
zg!$9;3-4iIQN}wgmRSWS_QK!#ZtiAG(}m)`FQ_niXvbILVdb6jp#8;S*h;ugIv7F}
zti<)j#UJUly(=yE>`@&e^g890eL>N3h`zuz>#^=v4Qr7gz|*aifYg9Gt|@ys26lW9
zgpz05caX%q7PZ=1*_7UsHB&NN+7gMf4SI{Vu2JjpY9vHTL^-w@v`eoA1X;_c5AToR
zFALKIu?AGb9W?U&;V&A{fDy6#{<J}j(g8?HG_v;Z8QnH@%k2!~5U)5bEj?iP#h3_p
zqi!!Lg4kN!s(ve3ltho3wXJlpyrgto$4Zq-{gYzL2QO?r(l9lIa+R<;ehXsLcA|LI
zAIo~Nb0rY(Kz0fuMAtDfaV{%(<oPBK*R-u$3q-b_>`i=c<sIxKQ+x3rzE?Rm8G#iS
zg=Ia*UTkNp0=etU@+bFjZd^~x6SSSQaH>nWCPuJpa$X{b6%if%fcB_9r!Y!0p5N>E
zr%90HDV>9qxO7{rqQJ;79TZDv4WH{xnx+q8i1(93G|ZXR9a^J(;eAyKvP{b4nNexF
zTZX1lBA+u_g7;9fmZPiK9vzoOvTA$l$<F@a_SSrG!lzYVp0IFUc8tuNDC5*fmyiGx
z6(XC424$q<7hHUe8gSAyiN&<<C$TCB_@sa&Jyh%e`N!<J)=2U5Y9T^;1=MuF{Pk-g
z&6+wZHIGfx<Plt`gd2H??Bg^ThPoC6^Z1>~4>a^J`mirUGUv<BuUBlQV^L0N-IzzN
z6m$_GV9LUajiB1#T5oO(C%<kp80l#9|K;r7+TyyBtwH~l?3*g@rwwIWa#`MY2q6h`
zED}j&-=z?eFo<MxkPN@R-w|`Jl?j&jp`WjNmz9~U!<;eWFk(c+?s&*;AsJpb;)L$F
zFO7qatTsz|uWMdGM~?56efxovEP-ntNShAjLQ-(I?uZa2R~{;8Ms{UC?qih}9_s_&
zKs!%OXHuD_2M1zNBgQSB6U?Tnp9gz&QO`O$&lL=Y0ddb-S#Ihv!+y6Xhp#8`Ivd-0
zPx-{uWg8;m<w@`oeI`rFuZq)hdwltEcC5d4`E31tNGv;+^L<5?a~zk#tnp#hd!~QV
z{;TQABNyc8Rtl%p%q3Z#Ba_}Q6b(_zI!Qm<2RbH1&_Bti6$VS)qXZ7zyOrlDOq$}#
ze9W`UC}~HYD!%I@Dl(lQ>I6U+MTc4G^q`}TR4}5JMZ+~ge`F^dk<LA-);o<}6?i8i
z+2erph+liQ`TW;qn8cltBFJZI$4;*AEZK4?+VaMZi==0D8SYMf9HdPSjjtT`*i?nX
zBEfUtI1j%DGrCH)LltT&;@W=jd&eMUSOFHb(DU<KyH;Y%Gkz%XeYGG@AePsY5f4~I
zOY|(W))nO%kw30vTUutpYUJ6^w?`G94M~ZMlz<>?1Or=jb^P!s&s+0c$3=m#@#{Vk
zgJ7$LQOOC1iu?K5Jnc*SHYo6=um*D9vyImq+k5*p;k^^qCu`4NV6cNGtI(OdDL_>r
z^zkn<jRAi#`A=`(9AExn(FRh@u+%lKKI!i8D#C2cre_XdY7fa#q9_}IXyA(k%Z}BB
z8qCGJ(Qr}1H~MYV$~Sg}cSDt4YS7D`N2Lwqi*el6*Z?-yCnUjiFK3dSY2Gnf)j?fi
zouPuo<X#S64r>>eXH)L)O?4vg4s66E7e-D7+t!rVMRK>kNN1a*Rd~iC<;7|AC0B@Y
zmxrHKLz)(8#P?a6=wxek?R-@{Nl7LevrXT6dGq#dV2Qs?4q9vP{kouVOvH%zeEcj^
z;Cu$EO+|5vaI7=bYKh?E0U+rDt%T>*W7D?v+;B1r{yZQy$sH0=B$YaS3-jYQzv^=i
zzYFwR2#`o_cm8=+1geut>4Rf|w0ZXsGZy<Z_-vz9*RX<If0`?DBHH(CQrr-;^5O{z
zxQ{aZu#_KWu1A|)Ud#w+P1BA<jgq4>hqV8DA4R=m{vT&2OMEz)e}8^9Q+!j+0s>xh
z;S&DgOj2tv!jZ-fzUX3>FMbZ$WIY~zSfV|viyYL_7S*mW@oYH3AQo<H>alW3s0P=X
z@SMI|>Ip&~g>QIN#~(A3VeqM2Y?%XGLS9c49BEs6@d%i3UykUgq|?%O%r9)r5GMIM
zR>W;bNNnTzbHzK;JP&O0yIe4ApxPL5e|l}P**EgWmSTA^gGMX$KENuP=z^dONC&CC
z^-W~&=@8pKvD~}!Q(LhdD&}77RD>wyeEdxIWS+v2LC2z`S3@i*#P^B07U*<QMWux$
zQd%+KOA*^2$-U;)#H~WhFY)dl@*ui(5{r~l_|(H0kFeyy_QPu-II)0=lj|zqzVBfv
zN`PP;f3h5Zs<jxjhI|MH&GGx7v$Th1f`j_g5{g=a5dWD{hPK1g`m0GDTGe21JblBZ
zYj2xYD;^|8Dx6(3OnBpX7g#$7O>QH+fgCiP8QxG5;PDAvVbEq-H`Spo&HB-RIkqw9
zi4=+?TievUFhD)^Fui$)@Nr8&jA&O+cT#4FRhTINLaD_gK!H`wBap?>EQW;GKJDrB
zK?%iWTfiLMS3vgQ@_IVQt7u*0iKYesRl6Inq|rHO+_Q~p^px=5Q!ue{)&t?BS^+07
zM#T{mO=}l?o^edVv!#k9)qB+Qf%xh`5wcolW=6g*iBcX`9b3)M(#IqEGYACCU~qlV
z0g}cr#OGWKofe0*m7$ZOdcUvofEOnpZWrcEdkQ9X@B~sGo;cEv4NOoQ0fVe`z{rIi
zxPR7i*##C^dD~+fT#J*x7efZzas0;h%A{^b^7xNNAWc~=aacj1`YNE9#nM|{o)mrV
zG6G#~BbteGb&_0Q7-M|??s5Um@kta}K3#ty6U`4#6(O1<bUBZu$siAB(Y4b?v{{$;
zk6HRX3`kGAOElT|azDk4wpzHJC>R8K)FOO$M2r9FH*h`aeEgK<pvRxaU245&dB$Fw
zlz94xHlQU4;Lbb^^_EYEOl_#kWk3krJ=HR9ftmsa`8EjRh%ziidrjo?=s(vLGN6V>
zM9HJch^^i^AejWwOo%FT+4HSmH|o(ck94W1aV+0XWrKsbAgxoN-l8SUxe#3ajRP7<
z1D1Z-@FII7hB1(K3xDSgx92%e1C4C#bngbJjbyjd>oqHE{a3B5r!UoqO;-V9?IHP7
z@8;M1%gIOBh|dHYaJr^%qsbRb#VL<L7JuwrjN6K&V{MQk47?gvE44HaG7lqo|DaK}
z8w%pRAHhFKm_O)jN(RY+x{Ov|4ym0Z_TV{iO{s0YLx!vVy7z2*WAbL>>AktLjv+Mf
z<mKM0>4xvdiyJV`vAdkdVZC?lpEDQ$$4RP$&pT+6qMJ^4*Y=-pPG9y9mBxb*I^;L3
zW?`vmQbN6EDe;9Tn|p88Cey=L&p6paS4A}2o5oo_OKv(j>B3RLZUk}jJW|@;36lK6
zQ5@|<TiZ|>n6g&c*^<Fa`y)D@tpCt4uEF>y>f*T#z}F(zFq~b)5op}>ztG0-W$HN0
z(Gn4@*5lwl3bMRxvJbYPEDXhnUNAnBNRDSwF70u-KLs8!+2JbAuDPlH-%=v6@4hZ!
zT!)1-9+zzhjWc8?q&MKcQlQ8WKQpD@xl(7I*SnY1Ney?LI$A?R!I3)MSF;+7tX(d;
z!xd2dQ`+smw2Rklc(=MklK25W#eWc9{U!jvu2RqCRbj`Wjy*kb9i6r4_nLOx_G*gL
zUc_7*JwWcGkQ$>c;hp(lQEWDFnB`)1#9>M2yqkY|y|<|gR)6mjoiN^~`<V(65wtc^
z?;C5|nUqw?EZU6Mg~0LA5PHkFut(e!PaOA8U3a3z0vW)e47Bo&w4i96(HB)b@N#}9
z9|4K=gi%^x;Kj@MZ+e~cSc^xJKDkMZuuMxPOMR!@+AMj?z|70*D(67$bsy&$z{R-J
zaq;f|G>KJN3(OmO<Wi29(VNwB-v6EC6~{%sN#P2o3mZCE)t@bf1r>Ai^AtJ)GuGDE
z`P+njSXgr%CvW!N^irBE|C1+_Dc|bGdXDOm;!uu*FOHH7%D+Jo!a<vh9EU{Z;L5oK
zkRc@%4O;?*peev^n)id{#(KY0=20w=&_8oi-M0`qO(cjTS{h{FD;9t^o=%QIoLB%L
zV-5vOn%3W^A*jmDa7~+M;N&c)tjE8XJd)4YJ!mCE9A???gN>pD3tYp@TRT{n>BE0W
zA~qmktTt;-e#fA5=()CZ-u<ZZFy;ZZjcB04Lduz_Na`2dMJ@bnRWV=h;g>+b$B%P2
zUNRIsT}lYra^y3<hwLs3^h=^|RPpkq7lfYWUop-9^RGCHp>ti&j?$l_KXVR~hfxCH
zEIm_{A*xHbKVCh>0dh89`9}0eh`;tt`W%W;zV?;)M4qyJ({P1eliUw=8V-18QN|rM
z8ZW8!4!;2&Ry(N0Qf9|g%aXI!`l$CvA{z_+oS$HA=#RCrcCed&Y3nig0PWAX*|Yt<
zQb`VF-~N8drSG(zL<BId4age{`I^;yC8{k`nF}Kqa`!nQ4$IK6Y^byLeVW_wiS*21
z%;?sDQiYuK(}${LF@vtw%*wB1OvBl9hl5}D70j05RupNQ+8Iwzw(r$;{&6kzVN%BZ
zOF*ba88ed*`M&PRbL*ps;^f5+o^GTkXdm+Q>v&}XKnLj{^>S}|xOCYVkqt?VUtJ|D
zN1LbTY1-XGF}z5%-@eZq7a0=Owo~&U>((HVWJOGfA+YY6J@+q-u>yLIk(YZwNv)6^
z<Jk{i3Q8N^9NR_8N9jxYCkHDUDoSeEs}w~i3>d}u@MMsxlbxoY{hwv<IDLu-`|@+>
zib`4GMhbtfj!}LBRB7Yl{3P)0LqXk#QsK;~USn1lJIeg4rAa48Ox%{FSUiKkg(q_e
z2mx@K=rgGX2@PYBy`kuIXT8@aWZV)P65}RmGwU4n&{c<=gvXJuPqRfpOA$?}nrL2!
z>Lh&%(irbAN+tsc(2lzYll>Dz<xBgH*_EU!l3a5p`5%^IKn*tE%|6ECQLo7Y#<O_&
z>go8V%F2k??mCsr)f(KtWatr`u5KAY&t8!S<;JV1KsFY=7eS2Mk?Au}&u&ayh<<8T
zi*$-kcQ>DFOt9A4@MSyb;r}(;4nT(J>a5O;X0_jA@!Fsx>rGr$H%4Cj|B}Op7syTe
zjd{Iq(u2)sgzNiOG`9%+$Mv#XIO+otB`9|hshXnBlwc`iv$=nnU!nU~6W->54X#H+
zf;}$}`=@4Uc&(0I;gmskx^{V3P=wRxOk*GE(PWPo4<rV_85KPo6?<ucvkgXM2m(^U
zx6r;3k;U*32Lrf*2z9Q7doW&+igh0|Yq|dQkPhv8&g~PaU>VLD>esf`abE+v363@A
z<D>NN%g;}N@A%;S0C4O<g3YswkDg^wATeYNHF5!tZ@iusQBDnhnxelA7`F5xSxa3a
znGwZ;zFBf65y66nq8sbB4G$U@HxO0dvhS0VUdsAS7R^=CI)l$U`1GyoOY1pj8YRBf
zS4-`6Q~+#iarIt1RhsgyU<tWufyb9N>*-@$O3%%kEv<@~*0IdR&68ZD1}{B5%EqsJ
zl@CiV-Rnu~8b1Mz4rZTb7Xh!w;~#SNVmu@*tf_>?>Xd(Wvb{XJz)P%;d&YhBb%L4H
z=%#1F2(WfC&Lc_&B02w*?g0nK8HjY%F!FxhF=&!{_~U)+XR_QGl!5$VAy2CN^*>G{
zW8u{>ND{IoE^?$C^1Jyw4_Tp=%2x@VzrHP;hyDNWTB<WoaJ2o^@|2GyJQd|dp9u;D
zfUR@eptNWJoAToMLmrN&`|e2=oS$2H#&^e!mo)rg63C1OrILgOCOZW!S!ikU761==
zBXBOy`*X59RmoXGm9M4TAOrOO;(+{=7W->S^(7GRIyK$(LJqtl>nj@U-dvH;2iVY$
zNnB0OXBR8>>1kS&hL|+6R)&Su%9Km}OlPSE;^<JWHg`w&@G4a-h`C-kZHHPoo}3*n
zSAe#13-C6K=ezjGO&@`DuEA2=85gy2dtVltZTSoiE0@q-!>0L%`ET+SZpqRmI$wN1
z56J7>lbVNpfFH5TIjzVw$XOxISvby!%C}e3wFioxF)U@$fc2q^&jVvn4MAf@>83HI
z^(0Qxbe_^s9MPnf8l}DNH13@)U$y}5hFBE$q9Tp>cMS{7D++_Y3!L;jr#Kr>iJ2}e
zLAT{-XYYkFxHpNe<pvChdAQR89(dtj20Y1)Li9ec7~`Yy0vM?!-uhrC0+*c4(yz1R
z5m1=Tm;aHc`FMQx_BQV`dndpPw2ef>8R-K(CTl^0<dfZ{yS(b}!8>7Nnye^5fPV7R
zdcWEn^7F-v&)(Z6w^O?qFUHiS<^I?7Xk#P~p;3PThM1SdIp~K&ik-%<fgd%^yV$4=
zVYs;rxRxQFtmuut)Ug!fws<gNyD%LT28k?^R3PiR-4h$HWIKILoBBj~>I3lZ3ywsi
za}~jH#bpq}l&v(wqBcLyF9z|PG&*TAZcX2X@Jce~^Rq9|;&I<75Dp%hzB=~omf1sL
zav%jy*$=p*rys^2T1Hsq!WHN#{NMl|00%)$7EIvr4z|=^ZLYr_W2Ejn{2bQ`qx&kR
z)NP%`Af7XNG?~eIqw@w{YMg0!88Y<s><piFNWYHvh#SMUY#zK>d%Y3YdhJ>9z|)~<
z8!p1ZZvsS{CJ~%%A(+dow``;AbmHC%$+;z~=$k-SGA=sF&OR5iw458vUsi+S-52{4
z6~yCHfg)uiU!TmTv+HmBHUL1;tipat?rmVhNV7PP3qf(v#pb(fQ*9=)G9nE&Y<TQv
z)%lq#bUZ7A@9RvEPN1Le!Y+1{y7@+q<B51-UC1}_;!<L^#6NA@twIO$2|4}s=5C~A
z@{dt742O7B@*V~x<BHO10^=-euVvbJmUT+;ja7ZeEyBrZb}FCi_mSRt%yTeAV%751
zdFN$OhA(-~wWBnA|8}xA^j_E$-sQOG=Yto=%v7a<^izmVf6`$LE6ez@`7gCyIf|9K
z&E8g9EZjRs>V;l355Exri|zZ=uHDJ{f%&zEDrD9-_T>`SE2~0U1$+9`Dj@q1yQL(Q
zq*oiWVK%^0-^;4>+Iw~QauSY9vXXB$jdWGxyX$Y!<T%_dQ-RJ4>TcSp?SLQ1jydME
z-VwJ9I@GpT213?k2{VbAeDIgy1v1EOl=Q+|m3dn*E1Ik*osX?6yPs75!Yt<rA#_wT
zUxJR?f79OAuJWCI^0#<Cd@gcq*SoMM2o)VptC#PRQ}kfhg>GD&oxPW^g<Mt+UjsC7
zLVuOyNOQ?Ng#2+(CY9g0-ZJ}O3_Hf#gHMR#8-pMf_o@PXTM_K85L!`Tf_XXoJ~7^<
z!zZR+hu-6IX}A2XG}T%Vcot&Vd{;t9SsNpfs5yPzDTlWFp-R_-<e`5iDh3T;wIP_a
z9;O8%?P&t73uk^}W@T8o$DoG<Vk><>T=h>FI^^85^wmQrh3jdv^mL9(=)WuT>vF`m
zMVw<Fl+iRUc70qY`h))mc{w_jKTHGOR@5>awe$h`fxBbdG~|iTlI3E_*|LZ-Y^smK
zfR63GI)FsCX8@|N-(1HBsTzbjz2)A!b<@XUTS(LP`bO-Iytd<*idO7Gm{PZ-f0`>H
zn<0paw#>wuuK}*9?e<2A{*LZJ=Yx5q9>?xqMij6KQ&A*~KYDlVe2J&ILMfnFJ~*AX
z)qjG5PX-SDJad!5{`wbsnNN08;5z2B24$VX(}afDFF_HO%?!7;mCB*MvE<Kp*Son^
zTqTK8s^d#I9cRPwOK}glzMZ~!n@c7YpG-7X8Pp+%R}M&m3KpC4d-MAB+A8}yUJaFB
z81~WZM_g)z-bEFT=4w@Nb9ub^Y+0%rF}sNAM+Fv<nV$h9@;{yU;cjWcB8!1Kb#p$p
zJM0Q1RgofrS?0eL^>MKag6+Z4#~C8+&m!x^5Da!w-_^?`NQ-bKTB}HD9F!;Jkretk
zGw@!&!}SWMC*Sb$|08RX&Ybn<JFn52WJoTCgJ2X&l?WasJY5b%{28nPpxFJDY-nW<
z>W&Qr_nSBuKj^jeP9vXiM!M7v>+a<wGmg7f?-j{;A;$JmTga4eL~WOgEd)u0mPX~w
zY_9be2^XEP`I(1<c3Ws|(Kg&#V-iPa+|3_3E<z=Z-N%otXp$L!)$Kg=0begSTUy{m
zo}Y0b4zfA=*8TaV0b*A5>t8wm^wD6P4{01;?!yi;+4~#}3gz83=V5&8xS3SW{05s{
zm`-;lnBoocV#8|t$KtC8?L{rNi4DS33;WGBo_7QT2VPCQL5?$9ckcxWr6o&jzW6xz
zSzN!RkF}o2vp&*+Vd)g}4x3lF_~ZNv^<}Kr>t1XynMLa;t-d8c7Ju}oJC5;RE|)Q>
zi|6^;4Q0qAF{ZCZw<7!;C0Yy4NZP$gByDWJSbK&B*<8$G6zBo|qPa?vgG=`z`d@FV
zO&5^$zkVRCHAIb<@Y-Y>+Ik4j^LT3?Mi4X(4|h0$%l+7r9p*IvExM;&Ym;Gj97w76
z_;3=^cu>!#HTYrKH6{KjCyq`Yr!+km^yuNT1Rodo#gDpsASFs=UPE7dNJB?>@>y#;
z8Be<Dlzqujmn{W>P}kLC0V1<SjIB^!I_MC;j2}WFR?x7lNu4MMW26ft%~ETWrcs+l
zfF9r7sb6fK6bKxsdU%dR7P@}f`h2zgfMHC;(0+Q)@K4r44GUgO59sZ>i5xB$ygIp?
z%vY-f&om`^*qk^vD0VkLmoXHa9&A3He3Qmr8JH+lbo2Jie>e-9PG;Mr<f`cH94S3t
zs^_~jsg2oucjJ_<i4w&C3ca2kC!_)lwUIIgU-2;4g&Vi?SntX7Ah@pSW*mzL&ys;m
z(TJbKO_O&Xx*oeUo2clSi5%);F9xb|s_*vse~nk?npN=@DT}=1It4Zk<=(#p0$q`h
z;+*&O^f!+@h@8i3^C^zce4IyPkjU%_$YXh-w48hRAqAQ!<m!615<}c;b`1*g%D?P9
z+e`-d_>@TF2;7|(yNa)d=-OTJ@WU)}Doo1cEGAvcwG{0xetY_$XJ5MOGs!e#kEuS8
z@ZMiRqa%Rp_cmCv%_D*fq|B73Yn<Y5wQrL0-JRWinXO)kNH13JhSe62w#>q(ndM-p
z(t~dD;?vugxhG}Hzu(!|c)Is*+Q0nBVma&_PKRNlItj6GOCKc2(0ON_1dTdC*NLRH
zvJsl<P1gRAOF3|vv0~NB9r1U<4z6b4hK+b6x-(-|ujRK`lQivLeGA8d#KEcF8Ot^J
zWobsDydgq3ItVdCW~N&<$5MLR11)I9ga0>NA=7@-Zd@;^M%HPsGuhbNdzMF15d7oh
z>f?Xj1#!0LUrs)(a3P(yuo{k%r}#~E3{d~dZk)|bcxdbDFZoz)G5#pgJz9Pa-f;Q!
z3?n%GFl=<{W%Y9PERX-lNwRFK{-10^x|R5l)0yn=xy8I}kH!Psyk42TS2^h%s}h*~
zBMQ~6c{kg$t4x%lE^T(XDyKSNLz(x&5+PQhoNe&oKF$0f{6tv-$>8=_@U_CIUhNMn
zB_#$_PHzWJpCTjnNI%bOO7v=C@=7#r<ws9`pL1+pl~6Kv`a{PwQojKp{Hi(|ee-JT
zKN=Dpi@G#J{pT3)?X_xbZ5Z-!bC1iZdnKJ`r=tffrsbNg-ekG*?ROI&P3ck$?3VoC
z<YgU#rga>-Zw(zwn!mum71dLQ7k^wVb}jO1*K(gh&pXq!&(qg+C%H1N$K~nCt%7bT
zGrsH=tD%T8!QiPypRBExG^=h)Jahyq)q+}<<^1HG|L7_OK?7fA<8XIx;hK+Z>xqHB
z%ZJ<15>{*mYWxGyeRuV9y|(bcrx3DnN!Hu&UlAT8=APDgWMrNnKhyNRJZYi)jP6*(
zWQ<HN1Bf~7pZl=|k~ADexE3L5YK^@<Y0?lH+2o2EpVedG%c_*y+pFY87SehyPGBUI
zw;%zP67E*uINYvX9CJ4Bp<lf%_4ht?9GKaBD5^F?VmPH|$EVT+=O?GLi36NyqE{&X
zBrBj9{<~OsCAL7!K|zc`s6ICgr7-aR^V#-RCgo4uKVe~eEFhv6A;C+EYdFTqZo?f3
ziZvZV%+dc1y7Eu`p+c)$kPzEJ6EUWrQiJH~nEF>$KQ(zn5}#~5f3ZTBrD$NQnc(zj
z`^v}o>nhA2{#w5HyR>lRX`n1C<G--?c_+>9=xd|kE@#lKe(-;C09dm)38eapT$AS}
zZu&4s0<Tk)60O}2nv{-*+<X%=B>oOxZ55oM)xf8>$&RKAr)2Uxd#7}L$x}%ujGe=+
z72U1;?uj(k<TqXR&c~xShDwvq^Y`siq<Cv4W0q7-VQ4OI316%UNe0cZGW^$)*jd&g
zLpUILdImaH8rZ#WvHudK#ff`@2O25%)JLaP16#^fH?f~4|4up2f&;TqAE_7&L1$t|
zOL8fJM(jV9ZPROMYgyJGrx4lOoL#AsH4lCxgV;{Ir-VHBeG0I6yRZtJevh>Io<h6q
zt|3)MCog}J?g;I%t#e%Vl>tj@6!g3UZwLV6#<J;`SEo+<?CoT2FY60jd-Sz0el*lG
z1+UjhW#os>xEL&52$q&%bnrYE%e-%_K&JDSB*fWBH`njlTPl%^_N;2vy39AJ`cq{Z
z*7|?6*MoZV<Tfq|&15SkF3Fy)*;^@jQ2y2NM<#ESv1&qkd&OYwmDkLGiDr*f<T$mB
zL74yGR;P}tD@v5@@Pm%;49i(Py8CuATdgj8k7I$8^qRk?&lP}@_sNG+oc#d)%%NOH
z*PFZJdfbWk5?L8#TW_4kUgC!1PZ#gcT&q1>80bnyxg3|bbrhLBf$K@;SbU-uz2|*N
z5kmho`PI@K|FOE`9SmoEii|Uy0P1J5C)2)uadf$I+*(YyJ3Em69+~wRLqu>s5KXIQ
zC77clb{rV<EfI?Y|41<{Z~e92P0b(E$CHP_7e0S0Jp%#;MD1PAwG_4yOw{ar)gyD>
zr|nHKho*X}M}Q00KH!)GeBvv$7w2;j>z$P_lB+w%;K%8Nn1gt|P3`p09ytM&nMZ&6
zV)zW9oL|J9Kvd}-T6*c~Z5kbxb{}1fVe-4ri!=@72{jP!Nm7bs(^CVMC0N!D3q$w_
zF_t=eI+b2L`yl?&>aTl)((%5D+uDVG@ssuozO)nVMP!lxSQ-DmKLM^1pn%hizen_y
zo$MZF-G9!Iy6qbh9<|~VIc2R|ET&W}kD>R<A6^8EBx$gHd-ImbJH{XQ91)UAOM8&D
zgU#v2LT!!#Oyctjr10xD2D5o|ca9l0d3ANB7q#B6*H-o}pYTU7KjYZ9h>x}TSw%vg
zBmPpqCW(w%KinBVP_;pRaDdg5O!bFkl|`yTwp^BNoXp={%)c1@d?$aTWe2R^gY(l|
zsd<AS*sIl})o*1@9fP~%UG8qruTD>lLO7XUQ+sdih-)0(`AaQ8Sd2}?(v2N)<nfU*
z!1TKx9|-S<yo4$TYnZ$-nEEU;5SAlo67n6FbN}V5$<F4%9;zj#ldvH_d~=-N*V-x;
zV`KJSK<cBQCRf8XeESns@ft+q1&JoVEnNR4twVd1$DScV;VM#^ACpfi7nw*fnEwLW
zxoQUU^k`a#kq}Y)Ilab%r$pLRmcWkvS4zfl05<d>9ZcW!@+>O@IIaWb#4nztea8_D
z=6_fRu!rvWsm|`l*;~1dj|%Oac_n75#X<%d+uZu^I06dkc~{ILdQbEU-g@2C_)#Z}
zQe;(tlr?dchT6}cus5R9eO?H^q1{waN!@HP0XHk3RGFyzI-f}V(MU87WJ2?0XYH~E
z_;A&eka{QY^G?RK3A{rhHnzNODXgB-0pX^$r*Vv<!jFcPDSel9Tz~KB*78su;7RXE
z)X%H}?5a)gk0?0)(NRm9SBsh9H{`1T4@n&2xBcqh*)^~IK8e<f6%I)6`M62)&w%VI
zkv;iWU$Az8A5#&&U15R0xBvCAlbk^)a)qGJS`U@0tly;QbK)>(k)Bw&{ycCe`zxzJ
zla?5g(#6ypzlp=md?Vw#;yumRmP?hmU#wk=t2&8ge9P1*Z{H*_7h2|rdr}VTn4Y{n
zxha_owAm`m!K}kBqzwFiBm&ld_|cD*JWCzJKOg5(9)?)I-d*U|uCp-KfocL?#)vDs
zRzW)Q9b-(bURzASLRYtTFDn0VetPqcWcy-N$nEc{E5Y;qSMtMmv)`G;t;@UHtGjD2
zl@B6hJQjY>^ycly6RGi!GFE=Jb~gD}E_fn^KP%d(xbBVbe5PUFRaCgzGiv4e{5ai(
z>4exoMLQna*4@QDKAs%6KvllWw(*Nk8TL~v*Hq_klf5O?x%V~I=?zt^POk25-=3ay
zz{(N(oqxE!YGb~foKAjQ^=QZR?<L%-U;3BXmx=%a{S<a3o^J5RNIz(hoM=}dnNfJ2
zx>WNBfc-v04_;$QgbMGZ@wRS~Ef!HEo;e($BXuBro$7&Gs)B|L7BF2s&|a^$I<-EV
zhlk0GUFDk&=jBVygs9zn(!&z5u=hTqb=<S{Dd9jCEW>gb@3Jz9R(;-_#Rt=)0mXb^
zq3!1xZ=l`vh=Z8ucj}{HEJz+aZs!F&BmLbV001+u=q~uO___Delp`?Zxx>c`^Xuz+
z$FzofKD#nrm58>eg@3~p=C>q#Z2--ZWup6-snaY%QRqyWO8oZi<gDM2%u7WF!?>D#
zx}LnhiOyBNgpvf03TjX8Xv~6ZismPB{peP;tmzyz-QW9VBc-7B^|IlzabLpPQda|~
zIsfp~D6*>|xS@EGA7aef(?a3uO_Ys^aH<!X@p$AU3_5@Ox0dQ04kKbh`A&>V1c6I1
zEMDr);!NKiBPJOGqfW>*v@_V-S^M`rk)8a;AJ-ta@{Y%+D|@GCci%?7%U;(%YsDhg
zFH%a81s`A^*gr$fJj+rXo^Xm03Oh`d1TP@(I-MV9BYfrXLwmOVwxyYCsm#;b;H#^$
z5!iekLgl*?;aK_H?tyw8T=X9kgSRrIK>~h4QP{e?;Z^rff-{HRadc_Ixz~*Jwy#36
z7TEd6<n5<wI2O5r1gGtUVBz#~R^r$r;`k2flPft(RTAqV;1S<t7aP8Ewvum#G$!^s
zgPDkT`uTQt=WK_Hk=q!C>rAh0O*ePE-LP#6teor()0mDWOonZ)*$%mBTcjlrd?={Z
z^vPS=2kDpV6&#-dYuZ-V(i;9)!kok0TR^4M%h8#=HAL<j_(T5|(m=lo(AV~|U^Ba!
zUxR%gF`OYHE6<LjYhrgs`P9a>8NR-_;e><!La6muMl#s_nw%6HR~-tX$Qv576d3TK
z8^htt$=&ZX9ydPS+qdRdcQe{xbP8o>TozrnBLCC#tWa&lX}NQ!v#azg5<bmtPb>ss
z40q)k&{DxCt*+hi<n_DwF8=y#{yXolu+}l|TK=;vJq31>o6=3R)2_gEvZ<X%;Wq=0
z^YY|Q`-Hm0UtKp3lpJ<{AXj$d)MzHA6Q{6KTf8q({~%XSXE?*&{V9;B_|clmN>}ZH
z3?p36cGkl)v5hIHICk(?qLcDfml)y@>%Ea>q;oJpZ<GuwICy<Vg@59Ue{N`%+^)U7
zrsK*P;xPSD(vr&?H;nMSWObgTJMhv60T2P&P?>nPJy$S7fjl%YfV0neiVHWsU316`
zbb*Sj?H_VBd%;ZH%@!h!-r#q2K-)E=1j>@+Wv_CavVOu5c4~J0Vn#aKxsHYTe!N|i
zxWNYh(vQB@*Sx`df2K|jx{=;bH*quxZ3#HYvg}@K7~&9quGevI{1*^`REdlMSq0a&
zI6*w^k;o^}T;%7TWM*A-&F<{xbhc9Zz(qKw={a!7ooUQSm?9^j(r_+vKMkiYpYyeg
zC++e2Fx^Csg(afkGM920>B%xJv;jFm=B+XDS73{QKT+uuGQIX5_+xKB`zVMFpKkU$
zqdDZ!vH)Xxtz58SP_G5Ct1(E+8M<~E#-P{+E8f0TB!TSTa8Ga4G?$bf#>M2KvF|%N
zRK|U|kIi^U85a+5mzfC1PVuvxL=S3<Qn`Cd83x;9A6mAn-6$EmFkIDOluq?GQkOZs
z8~cL|?#qBWgm<$4urF4-j%5}>?h^jICvZ0fy9F~j6cL>F$BBRkL-I4D=B`?F@7?~M
z=LAB=dcALYyn74*h9<XzU{>sukHP@z;eRN04a3hejamOeo7a`o#o@)Pjp^YkH6JhI
ztX9V0JDn#zuvRAgcri{(TTn0wkWqIRE(xGf66cqzql9w1wyKskO>x6~`}+_wDQg#s
zasFkax?=J6vOm&vvwq%N;tPK;F~Ri=1mVDsW?Q&~1KJ^N5Q{}w3-)6IJ2cNS3hBhg
z`|VNT3TjCg#}26Tkq9J-7PkxJVGGL&sA*-v_R~w@P%=J8l{AkE;+w$(ZOQC9MJ*$*
zbAv>PfcGq5auGf4NeD5)Yb^sj0owcm5PhaAhue0TD)FOZss#WW9wSa523!**3od)3
z4B!L+b8{mjh~aJO=U&#8<?-#=jYl2ML~|%YSDgID)~-o29x0j7x&GBb{^WZMZfEP-
z2+xOq#Bl|_^llZyF)ZJ&fJmO@aN^Ri@vGN(l2NAjoc+8UTyQPpZFh#P4kCe%H(4*X
z$`KX7kbJgz<tf0$_%F|IvfqgihZ&@p5)NQs(;&h!UGFl^w8@tTifgfv3n_uy_zYs0
zamssc$B#s)2|J=C&7?wTYM&L^{deN}X?B``$j@*mC+lx*RBO!E6~7cUjp7h=iQ)sN
zcBXP%7XQ!glZyeJX^dz4t>Xv{>&p8p&6?#{3i`g$ovem#MTn@a#46|O@S*`k+<Jc<
zxfFib(mil%{KjT-CjC1pDXC_OA)pLo=Jce2?$MK<Pr_&Ezsn)uIW1|nKc&9-n?+Ov
z<8T_f5DXhHJq)zOWIfOp1$VtWcJvW+{Py(YXQp~jq~Fk<B1d$&Tp+h21k#ojkPvKY
zde}JO%SFd+nFiQcW9<8JD&M=q!%+)VT~{qX0=pmpA0hg)yBTj}@{9mo#yQo<n3l+n
zZO!hoI?1;XlB=7ys#Z?YrX7?pn&w!`eBj5kQ!SEb=eY*EtiIon^cAh=(c;>fkc^Fb
znSY+g%~+(`eh3AB?e&Yb6&1~9!gO5+FCwutl>FnnkL5^xSe5JR5ejt%Ciu&*1s74g
zfB8LxHeJ7VPL3|;O)giqj*qSosH_xO@ETxLV}&IPPOet?K7)h^pGE6CbES`;#P(~+
zfROFDnYA4eM1R;aR^vkbX_G4o`Qb@?4?;VtklRVmx}<$y*@(-Vl_O`kf_LEw#f#N_
zbR4#3TUU4<?Gbab{8QT~6f5A2TL(r?ueP@x10Rh7aX0NFF}tmvG^fR|iYFxj8wW{A
zmLIXCBRHnME}GIk|A?s=gE)TD_c<BwWY(ZR-9rl9A_8#vPPs*&4;yTmBQv#XU>S+f
zH6LU(f)y-CVVE+(L&yzj7(_syPEdGnye9uutCUE(2T2^8BvlH#aw?-6M1pyxT88X^
zvkX(!*=@SJv9S>A!PRXoP)*DU*E0o1`#B9=#aCms7dK}K-?r!12+a%RZ2NBqdH*BU
zE%N#|hI6Z>$;7;qUvECF#IP?!UEwC3rZ)_&)?g||A+1mj=Ev`_*ADwArnoTu0C@Bm
zKBN7n0QNx@j<|<FpF_b$&tkt39-4t{R2duLF{Uqe7ydD?J!QiYgJ-jI)cGnb!<mt@
zot=nk_r;%=S5-<dy`IHmTqFi)fbL`!6=sy?qF3+OO&-0ih#y=2X$ikFO7YC`hgsHQ
z0XwN0`+0J8twnaZ25uVV71-c-Q7$^fDZ^S|AwN#7*}Kg7y8mEnAG8wYljHrN9d+KR
zt*0N7#>@xTH5s?d4|irA<aDmU^KAZEzQ@ZQlz?jQ<3vfPi0?aO72a<BBZMa8$W$>$
ztORy3Qs>q9jjmfNk|~coHUx;A%an^%5PJ)iBq7pS$yEf0mI8S!6sM<Q8$MM*3QijF
zD?$<gDE9u<5eeln<?jUBK8+bqz`CMx<)U7g4OF6}hSrfZo;<E#UqIO^k?5P9>B39J
z!{qEAni$qvYs_&yjuycO%NBw51T`kZ)|$gLgn0{xgd(7ZTUURcMO!xEMcRIJ<+7p}
z|L&uvP0if#E>elGnIV(o@Za^#>Ee3?%my1_a?DnMh|NzC4ud>|*&>qz9!^|ak$!4e
zAw1u3L*hTc1BqR^$T^*Z>su92zs^3+=l@Sap=cVpLRNj@T8WtdDPR5H{RE@Dz1Hf%
ztKnr+s%IA$UJ=t1k_dh>0G^WQ>@|qF*_tO?vu85fd+}Y9?ulv07^?WZG|%E`z(OF2
zv-x}b2+VEn%*x^G?r=!Hr+MNf+q9wui77Ht48=4`*5x5s03sE>{I7p5zNZ${h~HhA
z`8C;ir3=aCi`}(k+!g704+aX0?7kk5k&l<gNwZJ)xvc0_6nQ5#Mc}Q<nwANw@~-2R
z;Ep&?#WuPQNv6(_46~5_IrXOz%KC4hs`=UK<Z3bkzZjmAmn-3@2)^!r>F`Sp0ea3q
zmhS3Wra`B!>zss`)vVt@{mUOE&blB^1t(ATZfctnNlYE4BR07IjnA1J54{uZ)sYFU
z3z~C&czTs2ZT)dN%@snqrWnAqW-GB#7+=hn+$^F<>&}~XAmaeaQU3ydZkK&k@1oCy
zyafu(<WlHXDs;rl2NT(7Gb{BoSIq>Nl*6I5wAo<y)p?wsCFgW`Q%j>SYyO_FE+?@)
zMcu0&9YFs$oo<dXFC5azdLU08Q1~$5!?<{`fu~7hT4`r(Lt0ExWn&OAjQtxvnZZTK
z7M+cPKrxx(Rf-K`Na|iWazO|z{_4?u^`=a%Z}=EYIf&fepCxr6wjL17qtHC-=2Fnf
zy_~3dX&~n(P!#($ki!TtUG@MLn{t3XBsj!D^=v^d>T3G+3`mVYgQa_MLs3r{g(IvD
zVy}lOBKt{)vCe}_ib3%wc8`C@;900-&n~C^649jVr$MlAkkIKhr1C~hx8*;kcXMP9
zFtSRk=F;-1`K~H}uV-L}>zj8#*nz4pbR>Gy`DghN81?}DKX}c0qZC?tL*m(-RcTh2
z-C$=0^&`?a$js>J6M2nrgh5wVFwwtFc7ON!4cz-%O+P4sFt%Pr5rAc4D1tZL=jT?$
zu8R|^c7j%r&WE!P^(bjty!HnGD~?kq-G@CV_?9<QanS$RXN-4O`vuhc^JHlrr}vex
zkQXpqGgFmS)#CB*RP<4Og}R|k2{lJ_?O;1qv>F;8C*i;wvL5Y$IM2H$b5)`PMm+-4
z1ylbzyDMfbsC+e`^lG%(h;@tD0xHW1kX>#YW>>SbJPLmLJ*^2^vg;*wD>&62qb^lX
zk@#a@pi2)}7`alfUTWaz_IGQ4&$ni?WDQ5KQJM5L_P1Bsdyk95x}2qf)ljDI^85?l
zmYjlRJJ1$Blw<HuueL(~p!T*;w3r_$9D^vNOs*+!WP9sq(F(}ydJA5q`H3G)zR{+d
z4LLiD$u>((GOF@B%|#j@p#G{q+Cn;ZFxlBD(#7STl+XRc_v!yd=p}?l<#oHfx8LBv
zFL-*TX8<7?$hC*jlscTMwi!+xcs!6DODCg0z0q3SZ<bVK=cD6dP;Hxe$wiia!{kAK
zi<btc5p<u<=_mB1{;{SzKgj*Xr|AoovZ#QYSd=4nIm$H1yh1!K!t$$)-pj*E93Cv_
z`TsD=Icb~bYe`FfK5MxpNQ$Bube|zA&l|Kd3!Ys%dBq4Cq_V0CH(35;`f`6OoAr}U
zSd*$DU+Qa(PD)zwOXRsR2n@{A$0G|+PB)ek>HMlbKmjh+$dY&6LHQ*==}}_N`{%|4
zF)7g7lh53u%Mq(WM>KSHy1#L-1l0;zL#8}2!<1_^IH(erKgb%-&Te4?_I@DQlDg)+
z#K!_H=9S$)Ri%|CpMIpGVie*6TEm>lF~ioNRb|AJr&Qm4dD?8#p9Y&#*Hw2?enWIx
z4u7~3gUxxQ5!j#B`B7jWk8P3wBGk!6RT1gwOd|`z#73Ro)Z?Jtsw!XG9vyG{1d%K>
zFHxIO$MqZ{hYXnCe6e<DKH2CD&^y2BL)#veF^|m^JyWxRzGTR_LJ<#7zPk45;wog3
zKn;b<$4)X$7yYNCeDg5AQ;~7==b>OsUhHjXJ9uwVpc#{?p)7e2u&$zI(ue#|nZ`w>
z0)LWuo$jUhtZl0BmqWO(490_pbnlQa0}zj@%xAXxc9q(OwX}B-F|SSC(5nH$`e%>0
z*9lhzYsXam2Zc1z;$^R(o0y%N$a4U8HV%LDCy%H%c`w15<dH)#kehua6bdowFoP)G
zW5Bp(9gg8_7;6P0AS;avTw(Mxq@H6v8!abf3PX#>k-Nw&+o$QHMb0ABO>SRUi674a
z!v5@dDGswm{vrlI^w~)^{|oA)t@$4J@c;a0k5azOt~MOlYwHBs+&YJ}6}!}mXicPn
z1-ev)^94jay-`^ozo!|lIK9IUBFmsA_C<Cad*<`(3KrnhD>%+bqkI#OStmFml7H7t
zbU32>gMy+6Ja2yIkDh0jySSEuoSgb5sz>vs1X41eskPB$PMD%?BK5})+dtU;NB3-n
z{ofm}5`)!TtRcxc^30)Hspm|`nT^B$ceDa2bxDoxVLK)Zi(30%^(`Hfu#(J<fT$-(
z2pES3^v$p1bat$*c+r<PqjM&;$3c2t4(hnu16%7nOxHitwFa?3B}x2$jX7ZXoFs=U
z8PyWVxHmr4QIKKSH|*u*>Z{2b0t(=c%4buqWM8gUf6uQNdMYL^^zp#~tM`FJ?+k}1
zSUkeCKbOh8eVYYb9MJmDViq~qTx3F>4d`o?z!vHFE+4-=&M^&SD!DG+f%a@+3KwYO
zFeyJ%vYzbGh*Sh@0CZ}W6(U`6^yKM3&5tk`PMEE`FZ17T`eq(q-%R$dX79q=&O6J7
z7GJZ`hMeQ@NUt93d?zdB?g0Vc&%I#<qToFzFp3i+g)8fd3`YjAJ=-b>s$Q_=!z&VN
zzVzF4!aACTdGMjieH!h=p9;2y5Rfy-b+ky@rM9~Hew}CYbDuMI7s;75XDz8iEZ7bH
zDw_|~$|PvUvly)-U(URO);W+{DtIgHx^e(}xaXTH%|?|`AX3DL?(q$c3%>(G>G5`C
zsCJ8SmkO5_sGfD;71_YG-%qYiE73f;{zoPrwAo95j?Ow5TGP~C$WFx<n_Zozn$#PZ
z`xKHuk^moP<<VK9)Z|%laVin>cO<g@EH!r;E)Rg2K8kS{np1rr^lUuooXBrB57*0q
zRou@5?fi)>JwvxR!Kw}i-*s<yWA(M^Ezbbe)6@CI?-5KsMA9|K|8<j^`Fr;62XXF$
z2(3#!J6nStWfqfY|LY<->cMs;v$_B&n+yD7vdx>pf`b??z8%6~sLj1}pZHNgBJ43z
z^~7V0-9i&C<vmOpr2?k4Q3J2+qEuI7-6_V>TRh{6ml4yZu|OXoc~uih={n&PR*h~%
zu8U^j?=o7Usohvw^}$@-r+QH>N-ZQ8IY1jXHj*CiWL^m`&TK&?bm8oZ#b!L4<MG5v
z++i{1i_8vx@MqbN40{QLzzk7+Ihkk<k;vaFZtTILAOcWu|Fd|zFha58X>sb?2@`@*
zGlZ_vZGZp!76y`Y{CWQOzYiqRucTbu7S0^->3a5_SiRH2leHUr$5r#|ERay~yU91R
z|N4(aN^ugeCT9yMQE><$e%)6~p09Et_F#A8O_`#ty`4W}Xiq|bIy{Ulk6DY1Fr|$L
z5M<D!h<LIQT#@Ujl{^x)`lybCNR#hLnY>FEzffcXFD4)je8n&Q>LE)>MAy-((X9OI
z#z(%pxs(AahH|=+z7IY5GROW-w~gOkAN=R!iG#~PJ^3Lg(__#^zoqKG!ui2I0!ln@
z<D#A#k}7mZNzJp>RIT;}=0kBKGOMo0ssMja5k85mSKN@zypEALBKMCvL^MTfy}A`9
z3o<wdjj7XE2|h7=ZgbZh=%oX+h-V}Y!a@3Pej&PnQl|C9fW{Bfs5O-n^uiZx^P<YW
zdibnOo~n^LaIT6(B`?YEtg63l#KW7<Ak<Dgz+PnaqSf=<-VZwtOuZ|1t8DnNEedLd
zS*ao5%X6xGmf8!Xe)@Hlr`H7Ug<|iCm&=noodhQ@<36=~2J}Pi_y-&Er+%S5a)vFX
zwa)8L#wsO~`7C>d#1x$F{N|7Gq15~(r81UHj#u1~Us*~+$-VHR#`Nt@yQ~$-OE0VL
z^^w;J*Pdtq!So+a%E@{ndp4Oqx2W+T36$7GN=adAzfNlNcs{;F{s9u|<5qq{C3VJs
zaj01?Hp#ZB8wz^UC_~=Qg!nT|9*5yDTG|u_@^_kI0-%IXzXAaQz3ypkT2aP-Ck*>g
zBPM5OEx1YK0W?XSbf1{pBBc~EJc?4Nr(J-PycJHuuWstJH68Qnyla^(zqfpZKn4-F
zmRyU4c<24~BpGIDM=LB=I9J2psb?xy*jBkZ&$8506+cON^aqn8kg%e{xdexeu*M>V
z-rCFfPY94g=#R&`KeoU59u=$cwmM}+jgmNXDO(fMjXy4CV3iP<{m)T1%Dn1e8IxGY
zXRCXwiT9IULXE1>VGNS#-wF#pRZ;G^JOgC%q<Yv&aryg9H+On9gTXM&tcd5lg$1b4
z*U?E9{zjc<p@$HbYy4d?nucnZh*={yG?n`!B*j4ccUPZhS}-(RU9#ak`9N*g0~>`c
z-d=<D$2pnXLe?0D?$gJ}S((8Q*HX3SYAI{>jJJOq2K?Y02_2*ImfMx2Jf4)zXBxG0
zqUetqN&To85_aYOuPF#44Bj%m7I|i*E#KeX<4E>gUhdERPXZ?ORv|mzR$&(g%ZZn{
zK8C-eBn?fq^1x*H`)~@rxGmldQ$4Je1}9b5h3=v7v<U;$1d$>fsqN$QDd6+AnI0F?
za9n7xO_5Z0y@l{rX<pNrq?@&05*;QFY`KA2a5%ZcgT81L35s}&;lBD-L%UvM`TcjS
zVYaKaz;4^@;N!<<lqQ8{^48no=a|2O;HQ!kbmFGso*}&v`W9WG%wRG-j5vDi#L?za
z-;XvQtP-h1%<!1|+pne*T4>Oh+zV%FEi>a%E=)LvZ(zpXIjK6qzBK}`>03Q0I;fT0
z%MfaGGcEiBhaUG{<HKc=J!W_K@%N&=;cskHT9RIn^x@^bV|u&iwNrAz7QN%h57$d7
zf{1L@Vuk>GwT$BMFRA2z%i!-Jsm%b`$(0@9E?KK&rHOYfR1!X?D?77mgO&A3IaMlF
zKS^t;`_@lOGi3g~$ps?lQOR7;(R%-;;lja4l~QA~G#-6iZXn6l{^;D?mR?_Cyp)|(
zNx!e;_uf0i5l$)~arA1+ZP9e12$$F=dl$15s#ag0da<8sEZ@fA{@!*kI^DliYFpo_
zlY}8{ztVMUc*uYt)I89A?e?9X`$?cLtK>nuBGqMg-W`jxkXd_u6@sH9ca2jIRC;zV
zxGdb9XGs;Tt2D@vOEq|`;!W<z36?uyh9s7{g>2>}U!qNOQcp}&J)8WZC>CO`SB;;4
zJ~^F#_6s0?U<bMI(*a9dvLdW@i!@qXuPqUexKawwZ(679en(eIPuQH$B2|`;niyr-
z4GlWI1p77yX`VsfY0|eccwP?<U8}8$i^nf0A2|s6>g7#WKs+fLBgx?X&8>DhlMW|4
z(`o+!FDKzYbtQthQC_NJ3pFa;n=CmeTPk$NxW!v8P}3naV9HcuP%h8?`m-=rP2Tx@
zrT82lc?;_Iz}ULp(1RU93V}McLk{s^OBUguyEomMwuFs$kmK3zmjnQ(>rm9yR9ha|
znS1Jpw4l7-gBUZdsxNPjYwmjPGui)aK1I7wO63Fe@f}rAGBJ&d6*_r&rgh6j48y1V
zadI5wljXS1(6)9NkH~dAFm=|F+>_z~+z7HuURk;8L1{#8dR<hi*Q>PgPu!c3*`(r4
zN)Z~r*EvIF2z_zh3~spySoC1TyLZ*!Vdb!-6nC^GRQy3nWXTBq`rzs8XV`v#bA_^>
z8n{t0^SzD8ugvw}!oYh9a2ve=mhTZW`TjVASKo03he8FRaa`MD)P768`K-C8@K#zi
z4J@vUeb?iFY%vG@tz);MoOkv~Fg&f7GwU4^ry%QMTxy<Sl|@iR;GyO#_b-t(e0gyA
zDo-3sNpnp#e_QCB$dtQr&m-PR&-W|%Jl0o^C|@{s8IW9D*j($Uc+LpplXAITIJr!D
z0kr8x>bMuv7TK{nlI)zk<7lL9-`f#Wul8OpLGj_5%x(SsO&LSrvA9rwSWRoxlAhmx
z5f}L>t23-Zo|G|1R}p%cS3NLAS#qG?gAWsW3l$n^liInoxA@pmQ^Bi?AZD9dbUfzz
z26@`=f#gr}8HSS{U*$Cxv_R#t&d>bQDc&>vxu(#S1GFei%7=@h^ohn8PKMb!#q5<u
zAIbtxXP^45v%}fE&@mggBB~LNA}kJN=hIEgG@)8f9$l~s1F~2<4$!2YW|tpQ5D*8W
zg%0C2$%>){mSlQ-ar_arGh)FRzj9(Y_9TtdvR=1GVk!|ik}W%`(3B$zIa|Y-!x~*E
z_#}6+Zk|;s<r<+DHC&#WfPxmjb`Bym9MJT4xLh~sSbj{?Z?jYNTZtj&UvP7-)yWAi
zPxLt!PY8&fZibn0v0$wRa%CY+C?JcAvYq?pyrxz5XTuY*Sxs~K<C>nsz4^=&CIcs-
ztq*GONjf|%d)V6fGOHd46(Y)LDw;3UjkRSJ=AbG<Iv}FMbwufe{m8IlH(rEfbV8yL
zBhrJIB`^j6_VTK<VVGW=Xz(+%n9P^Mh5eNz+~Y_77xRt88)*2J(Xk=@qWIo{`S!CR
z9@G!n0x8wv9PiBUZZ9WuM*i|Rt<f%H*rZiB!ilNEH@^y~fSX4!HG;^}1|;Aw@g*lI
zDzSkAvcC&c5L|+`gT~^}VeoAFTw5YZ>Fc|h>K{SR@CR#>98t92Tpgdhn_m`gi?Z}X
zV3d{kb6M2!9BHY@h(CR?9`{ai_p%}^z9-)0$sZB@j--?f3|WP0H&VSWx_nDRFb68i
zW)YCKx01^smM#%XE(}2IPxBG7%0h?44kOx%STmd=Dfs*XW#v0J5z*8>E_=k1H6moL
zzp)2PZ^soQOIl{Go(nQsO+T)TLy%pt5@otd6J04vNhzSZcI#j2DvE(l)~f6>9j+|F
zqxh1?`+K_!dcS-tB276SN%aOINe)(AbMoQ+eBO+4q^2)bYR~vqF)b^b{~jO82@^jo
zH3J3Y7$aJ&19EVWru<^hWKk_<*Ee2Irq?G$iUsepo<zoAy(TL?VjhE8%Gfx9<EzyM
z@@=$EGp!C^=4;7Wh~?xtOq!pUWZ;j+NkpACw(S`u)_J8JlT&7HYd#$xU*F>J9?gya
zks_}SQvDa8gCuTym1i|V9$eE}T9LN>`-`s`L;I);j(uNw(+Fu)nH762^HWt+!{$Of
z4c^oZ6xjjEU7b-W0Ew1_?KO&e?b12VnVS3ZY11u^?n7Rt_l9Bq;+4tau!=&qkO!6(
zRsd$U`ksx%$)@hl-Z~A1iegO6BElSi@Q645n1Qw?&p84<Ot}#b#5IGOJB?>kSR#&p
zA-m|{Q~cD0;>p;{1#ucyqUFL3ojS;un9LnsrGsLw)^4FCIdi$WVu~S#;aHMh1(c$F
zJF_*<SWyAqsxk);m2$^$;jHeMeH(8f`3rTxYMr0245Ji=!XxnIe^Yi*$jb;vu08Cw
znt)`~bDWV;EgHcdq~HVA8HV8kYW1YDdJN{88E_z;LJ;!&_-9b0BrKKm0ZkUrGh#lU
zX2Z0JoqC~^j!C9TQe-c9Xin!WdN##n-T9ZDkV1kK<}dt=>-hvgvGGS-M5|2Gg$3(l
zvkL?R)bhReXpvP{jCy&aQsxk^1gmIQ6f?pcE_7MydV(9`S1)Hb*DD7M*Puvq7x)!#
z7LvNTtD<7yb=eGG{u2bkU)Dza8ccY6_8~faHwc%`RD1~g$%&3uhAJ%1yzWi){IVIz
zo@?{qx|%Tzn7jAoAvSseBN4jvp2m3elRv|AhvPlxL2vSw;F4-RtK;;$+fS^ZI<Y_8
zRT}7~604j=gp<Jx`eF3>-N!uq_ka!D^iMPO2Zr#pMps0*b`;bl1e(3OQEJi6N*8Y{
zD&smVM7j}mBJ|+eIXYbox{p;Y>Gmu>oO_Us!5(-JHo`tOx_^AXkY<ODV@)Jd&7WZx
zAJlyAK^FTtQ~Kl8#Qt&XJ~wm#o$BEOg?HgLY)$$-A=aE-iM=L;no}o~N0nUA5j`(p
zW)mG8Czm@Xx`7Q`&W8Rr_3vRt2GyK>QF7P&NrYvBeCETHAhoeH;XUS^7q(d}IfkOF
zEsI)(Wr0owUYoIPxZvS+JUy97KjNa?72u;s)SV=Btkn)E(TDLT1I(lmMvL?}n1vKF
z=fj^6m&(V@GdMs#1HYnhf#}7(BX7Zh$`qpQqlTnFIgxX7S+pyD%g*J8f=M@xD7`Aq
z_wpM+>77yQ@j+xT{V4w{<G;V*uSNH?Mj;etwpxOIfBvN*T!5HQR@ni|$M}<aECs1(
zx_qU=f8Rt01gH3KpF#BR88-JTAKIyOYFiPKu1;6VNiKnegVR>e&;CS>tod~N2OB#Z
z|K?mQ;cDUu2LI(PB8G!Mf>uAtu?J_j5x;of^j?u_`F2@a-aOMPWN&Bx6~wIxgr;@0
z`4_AZcAv#eA+aVJ3!&|$T!dRC!h>6CU*I&?Z(Duxy~mVic4$+#yc#JQs^5R+0^KvB
z!uFtEmRJYlrFP^#_tR%<k|YClM&7U)n0<Ir@87_|XWz3+f0t1wWPi6oaEB!H^m1&J
zdjUjE$vZw<IlWdZIxmHfuk`~@^N+If<t%XWoSU8fU-`sm8mZkl;jJD&QySvCW7A%w
zqX6t511>oTZ80o)nu}@EJ~-nXp`k%rWLCHaYFJMN@<Fok6*B19&M{d@d$}<zA4)&G
z73||*n{V_spH^(h0S!`FjW80O_U>cP%!z~|Mz@a|TNUDy$;nGhyiqrWdv*AkUo=2i
zO&OAzc0%>>3r&gJ;A!LS!XPNs<HtT(h96*BZQP(1Aj6Z<T9!ruKuz;*e0qsAAshY~
z&#TBVN9n$2cls0#2R~7AyII;R>?d;*v#VEv@FMids`2KYa@1px2Q?c4aKWBK#J{?~
zcW}6}R;vWlckXBPbO;5Z*u_k7fXUeIiRd?VM%ajjHvTgd&V!AoYY%l{CGnGrU|TdS
z{xJEM;-%~(!fwlQc!9xO(<d}^LqIB+pWi6m(&t=S=RD0my75Q2iQ=lVTS2&(8W$;f
zpx>$U08;b?ts>SJy{nB~o~O`WUU-N>lB04ir`Gs(j_*6}ZqtqAp7GkAeK7_Jhg+^F
zC$G5~WLvUzhm?AB+uBizh1Qoxe2`ZCsieSE#ps#cM4MqVAbx5JMv!ncRY)VJ;%?KV
z7ZOn%|B`ppUU=y9GtR=YQ@0f3m5Pn0BZSIP9_)2{SYO1OI=@J83cE{OGbs8oULBpB
zPWCZZd68ewDmiG&7H+VQu61O&c`mdue@Tf#dJuHHAhi?wTPfahq|;Hk$a`Ni<Rv9M
zAjWG5-|RaN_4+|k(}9fP46fVqzDr{=I#C%Uw!BJy-UdL|?<3b%lcSqSIcHx;M&}cu
zp$T{%C}k%vwbX0B#=-2xE#ZsYSGsI@25m)co?K+98aXeNReS@VcC^K|E>@7_^$?w*
z_f&>?0bDl^uWo}!!mCGFicV*uPB?4c`o-+}I78oEH{M*xoE%=<6Y6N#lf0y}D|C7t
z3c<3@(M|bh#gwUw4b>OhvP-mhhd;A^`(E$S+hRULO@<s!1tTee%0y$i4k!Ogk?ew5
zci~FFlhszzC&)-$ft-)G9NIf&VR!_ErB`<-%rMPF=qcmP7JZvEi(-0GKCc>vVJOWY
z3LRQB#Y7Rb*?Xwz%-Qv$+_-`*U5qID*Klb&z(@||1|PfOl}`D2a$*_52yZ`E!Ylbu
z#J$zSRgK~#?K9P}yk62;2ega+aL7fs^kA`hhSeTSg?&Oinu7c_ApTfLhg_OxE&p5B
z;2icLe<Gj%&@YIM)+b?h#;aH`(Ire2_S~Nba=*|%AegZCv^vAasbyHXl`%QorFvEZ
zp_dtmaO2ZOQNs2CFD+=c?M(~D50(oWEW{QgC}($irHZYo5m&H$&z|uhT0{}?^UT$*
zxDP=b`7?Pry&bC&;(!I(ru7tMMQ_@5)kt?US$!nq(`&+UQF#R1G>Y@}PH>VA)M=u&
zbXJDDS5V7w=y9IdrHaWgyUs;(?XY@0DD%cO>0CNc_9@VCJ7DI-@d$791;)d{vX1@B
z`N6=eb>YQMKJ+f{{xCiC<i26{r(+*&KTH4vrBaPwj&w&+U@O!a(phxk<XwUs`!XOo
zs2%unjMh_MzZd^R?I*R^8jVf9DY9r1V_=P^4v#bLbpc-aKRU(vw<qOYc*o5v{qeGj
zk?pbBP?{O+9<G<DEiyr|d-5Icq`*{K%K4PQd&1!X7P<!@$;_rNcHUs?d6p*OfZ$dP
z@<)BxyRD?8VDe_WQwy$!ptC0fgiDWuC4DMvW|@a1BwC^=4YDTDA4A|Z)$K+5c3gyo
z073tjPr5=G>PqyMfxrCn+u=fRPG|bMjE`rVrtk44&c$1|<L3x;R&RG>ZBQZ<40m_)
z+TE*Qwh4d5Yv2*+W?p*u@TcUiafh#G`dX;F&+??3Ld8Vk=a<jWb%-xr94VwcE_--#
zO{ZVlG2g)EGHq6G>taKz5_sD0;@HLE#9>fS(=lN)H7%z_kR8q+C+6F}VFf%}kqs7G
zC`hD)UT-gA{eoUVSpu?$Z9*_!sBTRGv`$*cML++lPihDlG5fZwkM#Zt{x4s0ay9?F
z^6N^^F~k#@U9V{5zG%<i2Mb*)zg@JU-N`=_>--XP2En6__jrCI2VX!p{#%b0vF-S+
zSQkO#+2I3KhiOPrZG=e*NFVk!+!r#qzxSf3Ex*j~j*U$_xj3yjIMoi>rmz!*C3p(s
z5DAbh_d7TXaFT*#!W`Jk583QA&4w-N?h~DO%stITdUm0j87FCL)v9|X*<nXAPqBVx
z<Cpw_uE%679olthrH-@jj!*pmv=c2}cjJ%{68S&us@mthS3XalHM=IOmDAsiAw-jV
z?V#*yQ9)7$wZl)tyIC>#I1mD9mHpkT;MaQ91^Sc3W#?K%Is7|5Yj66}Q81Vbcz=Hd
z(t!Ilc)%_2gQj}Q>3$0s?OE~{VrVz$X(NF;X#ZHI^g`oZPxo|w71U!ad*KWbp&j-s
zO|E)xwN?{n;1W8<?>ATMlYTCpua@O`k{&)z+@0rHNN=}R!F?NeHG*+ZFc;UJE+33?
zsU8KJZf*K13(z`Ss3dvNl^5X4R!tR%FePWLZv(p_Gra&-D?{7zlA}F?f{lQzP6t+J
zEi6?YOP+g7o!Q9VPOiuigUEP6)-cS1#nb_`j&Rjp;Zb@^cK1_Mifj9DuyccQuMPc_
ztW$ns&NpK7%QZt|^;^o}O?Vv~xb<Vp#=khZHVQT&o1>7Wk&}==tlyetDjgwi=Gc4q
zo(KrdB=q;?iyUk|-`lOfsn)GGzhms&RFjsJ!v!Pai&6R*Kaz>3<F2%j-BUUGPfxVm
zIZ;DZTcTl$gIPd8D-BA#Er7(52x&%Of34`Dw@Y$J*Xs5ho(KD=Jr#s_^KfnbrG#J&
zY-{s$>uF<M*N=~ok9C6VXA6Uq?cUv6i=WnKSIJ)~vR-mq#+e|XySSwa=`j_@qq5M@
zc{js2Z!WXNX^Y%)kblSW6TO({VVVM5Bt`o5N0N`8%)x~*A5=q$vDY+xgq})I4T*YS
z;ec*rq5K_o{E)QIjuBN`+)KRHPOBii-a9&UY7XaF(2&MpVl}xa^r{$vo4(f8hXA>d
z#w*yCozf&h%XvzssOZ<t)f6(vrF!rw1>^vfX8<4Whls+ZyIx(4{gvAjC2g55N}6v8
zK&+KC9M}kClV-xjxsUp7I=WMKdiKr2$frz~8s~Kub4ec5ixKm(3cCnn5kGh=$==Sc
zac{e}2NtGB5iPz5pgCh>q$YilbjHrfA0Bgv(9Bs0a(l~3Z+$;f!mM|*nOzn51sMhT
z{66E$ZdF(0b{H&H@^T+$ZS7mGYPpd8vF3<KCC48FJ}j1A-B^N%<8%2-#HZ?3(5w6;
zHGqI${q9l9^q9RAyD3K<2J89QqQB;<$PW%0s6xhQO1W0xX)NQK8Ap3NJ}S5i&!0mO
z>3Y7pW5ino#p}4i{)rafOKn&q`WQ3&2s+if(%P_Ozlzv}aW$P|(ZwOTqlA+j^%S*c
zL_|#BQKkH4A~R`ve)g&95|74l$fE`QX}|7<Akj9Kvb75+x5Q5$EHL6=V;@AA?hU$i
zG$Vd_b(^Mj1{I^8z&%$#)PisaBqFxylI^r0X$M)VTfSlF=K<Cn-bu?a#$prL$=zUk
zlaZGr$@7WU+T$04QO{39=!Vp~dvge#jWm=0N^9Dd70<)d`E@Zq#bo_(N;~-^F-Cg>
z22GGH?&&#@v29qX*NkD{UY*T^CQT$Mf7bzrU+v)!HU~tg({AAuKSw4nV5^KTGn8*+
zbyXzE8jMcQy%Q60RT@3}wCXlf^QYB{Z68~Q!0*^)$3{CFhopFUXNKnq%gnP=8d5U9
zJ_WsR9B7oeF`D~yxV+K=8j~O+3x{)|n;9J(4ID;Z_pG77R{8M#a@)r7FjGu)e7Mfd
zsf*l}?POCjtaq4Xk?8y{88czwaFd1r>uLCOgIoVo?Ci_g2_!=fcq#ho#Sy9K=L{gG
z@rLJZ3({ob$H`jbgV1wh<F4kT=t!m|3S1|bOUu+DSRS=hq%=hdk7dCiYYD!Z7upGq
z6=|pO@C!eL7}&d=pyQWA`BgD4Y*oao9R)|8%P={7mH1>~AU%oq<`!HX7eJ_>Rp*6E
zQ$d}E?p}?Lmp!d`Sb^wOIVbV?MspHU*q**Plbuxu-Jpq2DY!evc&<N8i8);6yfsD|
zm%E?$dSj_oU@!!$U3{^5g1_~e&NZG&NEi?KU)gW1hW#~Cl+gCY>{77I=nM|k_E(y@
zr`4l)h4-=OB)7sP>x6^u_gOq?M^~1BCjGOkWAn7S;$kisUUpwrrnRLWg!TLMw|W_h
zVm#$e!atgPbAIw4!!u<yfLuQ%L_lVsm=?w<7v}DM<%=5k(2~`CSBG1|hPXK!)fgc)
zsOD~w)D?4QBd}vdDj`qlQM7FWzF8%q)7b0rh<7#E4A6dDfzoBMoEtX4ih(4b?yx?K
z^h*NmLfM8!Goz>sQlTV^ld(*-C)cVnsu2wt=-`nm*{sU<DezcJf2Vw-*1y;;-7dm7
z1f2xvFZAh1w0MehIlGBZKVHAH1;STQ{QX(g`vA1?YdFhmhM4WhPh2EF<1yq2IgOeL
zDW(GTA~<v@Pax*-O4pygUyxUl(G;0tdJ+8DJ^qsG+0$?~-V>h;XEll}-~sQMA?dAw
z{X`J3@p!GSdDae$<VZRqQI#Oc1s{oy1<xL3sH(30%<uW#lC{c}^yU(nrmIu4S3I_R
zQ{2>B$PHDR>Qf~Z2W1B)=(XJUKBvgNz}Eh5Y;mELnlJDjxDF$R7DPZ_O>Gwk<o|C(
zMM80YQO?c6q`?j)kDlHdT7YQKXgFyZoRtUUM-jiDqp<zs<NL|mHeocl4uq?;S_w6=
zNtOy_%wL7Rt{&wtz7=8TPbosfMCyO<d!E7~bxrR^(i2uAs}&Sqt@%7PE`!HWME_th
zTQqA!a9a*5xXxeMPW%s%Oll?->RFsV-nOUP<b2eGUEW;GH4u7_$@oWL^4fo9kCNI&
zo4z@pXMh~vcf_cP(1BwRD8Fe}gfe!>3=G2Bnx|P9;azI;52r)FoLFQ(!!NHR-+}`-
zf-#ZXch_wk(AF7O=luN*<<Sh5W@wMw@_sVLODd@h$aaZ#0<VJ`DAKS@PEX);V18hY
zY!5HaO)sp#+W`KfolU!^YRRX!xKwFBVd2;Kd4L*S*;5zVzsQ9jP|s9^$Y(`f3W{Ow
z*Nc;we$!>p88!)*Wh#NISk|@l9%~VV(S&@1gaUg#d3e?|p6Ez)yx#_vj}J{4va*lU
zsI{tS`qm7|i$tkAJI`{#mToMM8STue942C=ZvP5LuJ+jjQOo}dypn#114|vB1NMT4
z`=JsX&vn_Fag@r%%Qik1R$0w)*});aRQzXP{%VRT`%54hLF&VV8++f^^W!SyFw8!u
z5G-*$9mWY-5*9~J#Di2d8=WeCQOmci&o1$^FBj^*g_#!RG4cAmV|rbWkJ7aI83}CB
zC4V0nBbxocWFn#&xJ*!^{~v#7c_V$}$yo~(Qid9^#;uBnoWQ!PACs66@2LHSK{jau
zlk9Ns_2lVu6u5LZ92`@?CO5As{Eaw|s)K?Z42#5&Ww`oAOBJHlCMQL4byYY?%cB?2
zi3-W`oQ#tRZl^PzbO4r--hkRcdS3FcdAT`i&dn9uUamvQqrc`j{|1PQNZdPC?bW?&
zFVhb^OxRL_+j~8Qf|bU%-T-DfFAuugW%=zf|Jg4f=Hb+9+<y!2P};l#6-bV}Z!q=w
zkTNP0Av%4tAyZw3`SaW&yjJgjtrx_*`O!@bghkU{(X73b!6z8I+@w1x%OB73o9KcH
zueFH_+gmbG=({uXB(1gkz|d^x)H(U?@#MFSL#|#ll9GY*`Ikt$+BCc~mi?pgI}?ck
zX7<5kE(Pq&WUY(S{HAqjSOSB`uqCTs8ZH?<Ax-UY0GRS5<G#0AXl+z@Y8q!*=)!A?
zoUdE6Q}dEso>q;o3I@7Zx5WTui6Uv!^+AFe|8zgkE_d%(QKIf+(~6+Sy&k+39g8i`
zqgRzQi;FXS@x+dQNXlzfwz`E8OiXY{4YNh*99?3%0KQXJ(R;K;QB(`JglNCK9yUHh
zAObR87rC!XL#Su8Z3?nFvK#(?`%-PaL}gF6^%y;NU~%@4JJlxrk(PozW!I`kGSMhm
z@K$#_Bx_6ID8CJwDqUE|4#Xyo`7lG&6jdBg;Mlr6+)hr=Dy=S{D2{`X09nw{&Sd^n
zQhxfln&T;o9JT*&benW>O9D=d&CG)wq0p{*l|?1s`L|jvZ{KXexQ0;wkn1n68_m0~
zh$&zAY}ldmN?)fD<jJiBdHM*ahfHJ7G3w$%;cX!jQ3ahCHQ+}X_atvM6PI_w3<t5h
z!Zkd_8~5V+-_t(j9Q|$Ed>spd-vHS;KmHO!-PglZ?U3oinbxYMqC_!wN^zdAzgmd{
zx6%>{e#a4l<h)&Zo&W>Z+`oC0-kx8;K%q4ab8c2<g`xN>?%=;mv95F|EL-CqfgCpu
zH`iC5?~k_#V1yy}LbNk}_B}%t?iZiz-4Bm*YJ}KM&ED>>0@RI(j0G2?C_RFL`naEz
zDg(PvWLWT2{!+R?*17VZuVYLv-_8{;oi`Xo@p6nN(n2BOKZd)Sg*~U2-)zSr%Ha@X
z?d?qt%oEoXOFPfoc!{D@PSl*eQ4)5J7dGnEg&G0+N)W;_lY(06UNN9sWe9%=`}e=W
z7J~FY9M_=4J3S|3^msYNP3#bW=e4)##2b|E15cD&lA6a1)h*+e`o%myNA`#IaKC$7
zmDXp5;WnBqe*{R<X>a$`#t=$d_HG6bGR<UTn&>PjLd$Qc0w&T5-iPefO8u+KTdMtH
z3l5%$Lf)SLr>H}g>JFJ~2@)D&;x4q(S#oVXRSz%)-=w!_Kbzl+-h-oF;jUz|-~ir!
z(>dh-(b8wgK8|-P>%%#S`aCOZi*J+~QJcIDR6V;uzUY0hn*_*@END1u<r;AS>9T3)
zdH2;p^8qozt**1ItTB(B0Ix8*JY1J6240TP85$eFrvm_zz}k8V<q^X@?rI8X;nY{>
za~uva%>Lo4X&z2{?Re)Eq%Qd^cB6VwFZ~74$5kP{b)7XbSud9|C;E)cW7b#nHoRbP
zNU#ql<#MvWJ{{Bt;Rvd8lBRLq2Fhy8{X8NCsE61r1s*Tc;UesR!`4OyhR*MpTqn4Z
zN2vyGc-cr+Sr`kFEELg&qE*PAR~t(^<w!lBX^wnw(<GqEK*$?QY$ovJV1KLz^GHF-
z1l`*@`BcH<sIbMDuy@mnpRT~|68Uy*Owq_cus2^~LVB@Dt+bS(qKQ{7wfK~N_4B7%
z_Alw}ekCGXJ2Qr1H`>H!T<f5RE7*C+1@PJc;!Tv5li7SY+P$Z;Ajsj4A~7gEVzq3~
zn+cQ6<9zJiuoW%jMRf0Nn!E&X*|#vhq0Q(b<sjsy`_2Ny-V<2z+MH>&!2A4$;5>gP
zdv(zo8&^4tF!Rbp&%l#|7R&_j$rr6}j_|V8XC8k$Sv#G*gF_yr);;?95>VEy*!Asc
zW!l9-@)A$iyLa%-t1Tc~9Z~!fc-0}_i$qSQTj|<UO?#{f2jRuW%DQ^AzOp80g{4{+
zv+I$FC&Ww1W1+%>OP@8=h+A)ueqs`Z7uK$C-1<S|0-=_Og6fDZ@J0I1iE0tT-^DTE
zTy1h%Ti0e+8(uBt7qG}QTBxCwi*N$>H1+=TBCYXJP*ji!%q9#EW;(mNDX}xUlhgXI
z*Hn6g^F(Z_D3+l#?QK(#f3P!M!Gvd##*Bvibl~*QT;id#f3E=1>IVkU;N+|F=ejNx
zs8WWz)7`OwLjNNDY(d~Jwii+2(gsNl$bnWTnH3?;%=|BuxIaxi0VyBir&NM+J(PX8
z$3+XthYhU?k{;mQ6j!%DW+~B{SZ??o&s<rdMArn{3(xk|`YVIm4mY!AKZmwYmsQ_r
z$XR|IkBMo3tj*3ZW~mMe-@Pgnd#Eq1#!a*$pYnKv>eWbFPIQ>EG7HY|^d^&hY<2FX
z^@t-WmGZfvFK94UeCKbOXxg&2PEd8;1C;VZlkHI_)t!A({ZHves>T%Hdf@4id0_4M
zM}&3bp@G$aI<oG1l^0pQzuQp>+Z19P@n-jii*u^u3}1#pE)P09MJOZ!kga3g7%o?=
z!U>P3KRmR9^7+KA{*;FthAESk7z2+Ur8v?J$MB@TP3BfX?C;*)B(_QlaJ&Mm!9s67
z+uR;&A>c8=%#oDYrCQkGXedx9{V-WGv9o%@&Rp+Go0;Pew#Rq*H%)4Z2cfVRk1=-3
z{>X<3w(%guZslqB6tF7JGIqMf7f#icfmfQ2q!0d+Yy7Ift}hs>2)Vc~0r1--Hz_s)
zFL5c;2T92@m+UBjz*7;w^c7utHJ87Lm@w0I+#E#KwqIJ;2%?)B$*a3K=)G}vtMTT!
za#q$9PZxh__!|MF$N9xvzH5i$+3eF>=tmz?i?U`Qi0Fruj;_>DGOl7geRZ0K@~6XM
zhabD{j1b|=<CSN}ce<0*`u06|F8k*o?bso-{xblu7aUH&<Y3L)L4k;ISdCTQelZi=
z3@%s~4b?Yc*<R0zs=4AU4pNG9zz%ob3umgU<{2-44ATbho*peS(McXc0oizlQ)089
zCy_JatRWRo4rYL%qlJL@wCKtq_Vu1&(f(b20vc8Hp4_{ZC#GXep4~Vh<53m)R)cgk
z0`X@0)j$9qfBhqv<$7=g`<o@GP5MiXS(hH(y0eu_wp#(tzv8=Pw5Nr3ax2%jctSdy
z=pSE3o{U$0c+^VCppH_p|GEj=?ZNA{@5KRa)^PHeg9?1`%c2fA%rZSM*PgDu;>Me=
zTjQS&PmbTem5dpD7zuOO|C_^(EJJjy(mRbZPFLYtrqf7trw{i__y}U)G9oi@M7T*$
z;$JJggs|kt>+^Ow6_wZr&s7kO#?(HIPR0l^hrOIy<LUv><_$P+3W;GnDJ{ZNQAcJ{
zoN`Y1fo9QGQB%q)=wvOpj$?;FU^T$2B(K}07c|zAp_30pK7BLU+Tis))l)&Z{H^M@
zfM7p;OG)1Rml$Ft?PlC>>*h-``AIwZu6zi-LH~4rvWJ5A$3*w7N4~|bzn%yy>@OMB
zwc$6@Xw!N#$7=9cx>S^P32pfe?`*q;Q*!?4kMV!_8(29f*k~~}XGjHwnAAb?C6+_U
zoPkk;RCW_pNA8~qQPrS9L_OW4zyksrj^=O2e_&@$S7$hNeygDYi}YrD1;jFlP=1Ne
zvexQsEtyFfZ-q-KsZExI4NDO#cacbUu@m-$$+*Tg&Z}q9khYT91t+|Cux3j^g$DLA
z3CYd8tr_$KQv4k+5*_UXP&4UFB)0}wNDZE;d_l$jFnpmDg-4d2Uk&6ReNj+snY6U^
z^3sFXjwV_S;vv4D8q(m@2z|f*0ph0R(+C(O4S-y>_7Y&-!Wvni?;tf7s=x#4v|I&b
zE+y~xKFpxOe@+fepAnK-DbDqcrrNQd3;k1O)^_mn6OUTpBxlrB6XY4X!O??tOE}ne
zq59bHK(&SVs8>LP6k?$m@F`n(nX#0PCQ3^oQ28?<GL$0e>5V@$I;CI>v}YN&3li}Y
zp-xS6N)1_^jWxg1h};qB_SLWbWBh}RNaLVvzqUf1<DPzm1$bmi6GyD>{3LyM0)lM5
z-mH9FUe?`A#T+5Z0~YTDr@CPtQ1B-|_z{0u3aY}=0f_9Nh`!kEqQeoaHT%6?SrJ(E
zU`VIVenAoy&kXt#fCZM7K?ruIcy5A`cvMv`%*~61<rg$mvHd+lJaeAO+7EKQDTny=
z=1!9f1-A<vBRW8PBk=J2-PLM=dz`iQ+F6dB*&o;8QM9tj@5>u_arlrDvV_+1_q`KV
zqd)7U6J8wW)|}DZ&2{wUv~amA#nf)YVvzBZb3CB)l_A6&EQPGWPZI)PzGwqPE0QU&
z+P$dj*T)+E7!rs<)T|A>?K7R&V2N;J{Env~mvWssr<cpNfDNlUj!_{76sjtj|6)ud
zP8oM}&(b*x%c(>zDysUk%T@jj#q!0^cV-Z+1<g;y{&-j+|Jw+ni&o?6@wc)I`sahc
z4$|MS2Q{=++A^;FQNy8^O2brPGnkt@YtJ|S{go2hl)=^s`sx(WgyetyH7XUAmcPyv
zS@GgfwTr$GmRr`MRxJP9M1?H`uT*eejkm_9S4PUqNtOyTYL-}cQSsC<zDRZe;Is*&
z+?xLvWzjTezTy!PAG@ie=rG-q@mKT{F*`lc$(w1+l*p^5DqM0}mjr?TsFd(_^{DWo
zS>4Hb{uzbjnKv`CW_w;FGx{_tJb&iW$>b+T&!)YE)hgeipw8=(Y%Ty!P2Yh5U?Uh`
zW2cY5d}(8-1hvVe?LOZ-*f4N%5M_lQa&FxCUv55K44;C_1nPS@+4TfnNx0RcgoIyZ
z3|7@>e#ji=nYb*S`roFl4}mvE*gsuBV~UF`W+AVdWL1_|E<clbo<7?Yvb^dKxlCAf
z)d($3gJ3rLz$r_6eKK1?qokF}7I;pJ{O2~@I(7i!ysmKh<~<%>TA=l%_~%dI{zJ<a
z?Y<N$Nrjk^B2M!^=>`ud9RA=DgC+~j%M*)#>h$4~B^6|C4Ft(mFqcis;&4>s19z(2
z!io&OfTyD;(^|_ci*sXe4%P-dKdIiW&t5%1Z#hZeJs1XLI%aEj(y|(t*(Ffk<GQ$@
zxcS*RJM~D(^&iYXlFq-yQOy*JdY=c&?5y6`mWUHT-WJudj#|QBngIR2+VbG})U^{M
z6w~GX?Bud=nEqbW7tOFg|M)x7ily92mq=PwWPTn^c}f}<75;gHAAhoc>72W}sVlQj
z^kNR?->TZXi}V8%$_7dVLu9d`=|=AQ9fw6y$%kXLs7ZYK1B8;CYdg7*iP`jU@?anw
zPQG-{Z?{KwX_-ztsL8x!4f+_S!8AiJBBH-<mr=BqKHw&lCy<@*Ii93eE1DxtOH(zv
z`pOOTMo8Vt-$G^?Ypi!5>mLd&Sbi2RS_MucPby-O+9hVCgKE)ph$=ou_V)R6^bX>m
z8(C1k?yb?Z29H#=DKjk|IP|RLpXF+p9@N}AmEH(5M2;fPDUtoEY7Y=P6?|V<1g?)-
zWB3|oRx}gIE1NZh!5S2JA%U|IyJVo}tQZh(*(IRl1NrCdnD|z7s_wPsu}QtxJJuf)
z?(s)k#<yA4u3`9{;EAsW8jJ8V7bwzu^G)fyqzCJdULOZ==obT*uymgiW2LL#@bpRi
zrlIsm1E7LL2(RaCVj2vTZ;QE`n7LQ5Ff;w0zF$y;YfOXc#q%N9kjqMe7W{(BSmrYh
z3Og}z6RQCLDZuxuQDxBbEKLM3LOlWmSCen1o12G!JM>DSQ_x8Nk==GO5W?;aLmKW9
z73RFZ<TW!&(2Mu!m{$a#4dm2vo%D^E!x;kUh8bvj#KnLYBzs=y@Q<l}Z!a+Zor8PQ
z(VW~STb}zQCBC@J@pzZNSJ$%OGsB~HP{K{pZ-lW-(k^N8Ki}x<@AG=z-oTTLPo@9S
zWg549UXg!Vc~ktE`Dfi7YT{l1FX3DgZL_pqXmq>ezwPse_}$#-tu6{d{LP^Jb-MZH
z*B6C7(!1tjA79aD3v-g{=)#m_^$&MDE}m^sUGn2(>#3|HTFW4tF3P*lQLH_*zkZ6A
zApZ1>YAu}6i`Bca5JR(jCpkV;*Ogr==<=)?W9D^sO{tWC=!w`aa|SGcE;KRpX61s2
z$=ZG|!k{MdT=7RBda=lSA@0q%b9>bM283E1)I=w;ic)#KamzXIc8E0@95Mamsk2W#
zb{D}_lw+?=tDnO3ayze_peg&XyT4x?>)>(S=UT{xAEsq2&9GJ*0L%(~O~}+B2a1jl
zwWU3LVZCE`*N?KH2Eu{!-<H}JDi-9ftbrH>$YauPk%cNiRMIwZdVgg}8x)2ZQDAFG
zJI)GlwVlp9N<;O;-f%5YDs*zu;()4}w4?x44s6?;Zf-4qKPo4rkYBYwP{V)5O<HtD
zummKDcG>61Tn<!+;n^hrcxKLwk``Sn2jN)gDvFi4kp>+h=U||u=bl~}JQ=TGdd1VU
z{|hc)ctqQjJG~iKkL>X*=0$WN&PoncVP4x}O#%Yye>n-4?F1XN^E@R7{`{$Y2~TDH
z=55szjyZ#fg;%8m<iMz-&gAi5{GR@1r3*tj3A1ZlyPnXFhhS=AKPU?+zxm@BNNv=c
zmzV`-cO$Nf*fQgqcK|Gt?JyK%)ET?=XUZ9>S(iW}UD3gPB)qZh&Rn8hAOTgR`a*5l
zpbR1cu<?JdbQt1t4p8(W4#JMEvHn}@*00puq1q*d69mIqZ61W0hm+OQ)$-94Cg~g{
zl1T@Uub3Ap^v6WBGP!<LxQZI-pX-2m{8BRXs~2MP1smJ2!L!M0jW3?phCWG+!1}NI
z2d}2Czu;I`+`AAa5Jfe?3qPU0!kB`JMHnrglj;Q2=X)mYwXZsmN8T#ZTU-lCEd|g2
z>uRQ8J>Lnu&qHRr#_Ssm%L6ks8Umj$B}-#aku8N9mA%m>qmb+v$4)az;*Od7=Om3W
zrz(5@oZxQbM5uL+(w0^2S>ndU6Lyg5Eq&Z19~LSscUS<%?qMHlwDA0Q2^;ChH~zvX
zs*(*Fdgw|w{ncd1N^V398KQyf+d9?D%W!RWB*O(Ju9~S<Jgi5DlLPbVl6`vhzM91a
z;qqKeDkM%nGtp|XEOBj??)D7dZ#Yi1m8mEFpWj6^9f;_QX1nv#OvWSMuP*O&W_mOK
z9p_7byW}XP$kSV4y3aKjZ!^H;x?FKg0<(yLn~&vxJ*3jt1+uXv{;h~YgYq0n<OILE
zH<L(yk1C8>p2>AbX{@PwkutjawvmZ(Vj7bQooQQ0m>0#7eK?~;!`6_d&a38S+VLte
zs7UIb!;GU8e&c2ZCDq*hlOs$o4Nf0mB|D=8EzL;MuUg2d!fos0%;tfWUi!cM;W+jb
zhZCq&H-YTC`Jm_X_xNlIfbe_(6Yc%ld6p*saq{tcjQ{QQPyE@P>1O>Z>6Hb#RR4LJ
z!%kU*SGo80ca?{YDE~C&#t@9L5U^)}7=a*Ele>AG4dd0o$Q!SW6$!=VWPUBX@C75N
z1Q2^5Id45GXJ-r*-0)1#>Mxn<*friSvoGgSP2qs(Y?D%=ZRG_gM|UWi$-s-evc(=y
zX?BjKx*aqWKSe3Hr<cZO;%gA@)H`6`-^~e3YtN13=wB&U-a1ZiMY8GYl~%$h#%pgs
zo4mR*_OX`h%gLRH$~MB?j(?wQr*VP9!f$NDA_c=Z9r2*iBgXq9Ou_q~_p0{AIbZTE
z7JHC)S3ml=;akh(6J!<1*LNtB=1KaQ9E?20v<S$ftFaUabaZOO?TIn3Y)v+pqU|NM
zkh|0-ErX|^Yu;kx^t_oXtqB~t+72SeEu*uRG1aK9khn6&wT=I#LBkRU0o8Ol@j_5F
z63Pd@m0iom5B+XF^zJ!2yMZO(E$?q|0FqtH8I5$p#cs~*O~I}G(8Paq5|Ug<8D|}<
zFw4swRa?f(*idrLRSpKowQY#?aO56mM#Pf0Y?@FNy*}1wagv^|;})G5*Qx)Wa*oe3
z=l*e&jDImm384S4e*Ub`jvLL|Qf8wm(AB-)ahD)l$Fr;B_@ACely%0`AhNY?*>S%@
zxwsKny!lf~)c#f9pl(0qUgDZ!2#;tHa3-lqTIE{C=qU0x)D&(cE7#~h^-{B&(=HZ+
zJ^n69lYDnl;bQ+7gUvPRAiY~YkJ;{`K@{)gxPs3_a`846hRjB1^z)-hC6N1qBLk#H
z)36r4@zdjv$vFNk7-V%{i=Ye(QI2YXC~s%C)+p7uHSm*pi(~xT?1I^V3CI@BPOD8G
zlZbGfw3`-qE7ZWENnhIK!#b;f$skVX4xOI-^f=8h$|n(SAy)p+zvH_ArRJxtbf6R1
zfv*TT4>}j5$%R!AJXAQ?cCa(0e@vI6{eL_!5yxmm&OJTJbKq{1+$OF>p{!K&bM##t
zGl}kUkv_=L*pr}w3O|^zgee&T!TD!7dl7}=Mt|DU>2$IH@mZ0@(|{(+*NADbB8u+w
zzgro@=%exA4v;o@qYG0!uw+|qMmAf}>9)3MP$p^DJKmoYR*4KfAxamNEA?&UtI#L;
zA(?OWMeiOf>0jJs^vDO{5i<bwPcDyc1e4(VGu;rBk|m}(t1D?PsmO`b76@^0>;tEZ
zW!aS;?`3_lG9POg3WT~Q@IFZ=FS_FBblyVxCG-YbH+g}L)^jo!HC7IcC<uQsKeji6
z1y`>jfvB?d+Gk6yE1{QI6T>@>t*&vUIqmLC!@F-4#qMtJBpZVqN9EssnAyTsyJa{|
zR&#8XHmb4Ssox1zsntNgH);A;xmZ~Z(bV9j{m|Z;b{Q%j4ipyH(_u(_+YGig{D@+9
z?T<}YQ}khTW7QRT84^EFJEqMuU9Yd4BC+URIyY9oJ}JVq<@4FlnQu+Iymt5CHOK#T
zK2I(4aMF>g;G1QUx3)G{o@NB4B-d|dUbRL(%Htr0g+^}aRmwt{v6kyq^O(cep+$F5
z`cVQ!$`dkw{Q+y9&eA5}^$ftHParGuIgJ4_;jrw)%^k3n^8uLHdU@!IoHp6W2R4v>
zS!lg}5WijYPJ0yBBcWKgqY{2haZJjBku8mcvGLn%4v+Xy8spYXiRWs5@*c2NS(Mj@
z{~iUjopb%y_+9E@;*$=$<{%HyiCmhkxc9VALIujPs|?0)z9cf~b$xB7&yBe6pMupL
zCKQxpdC6tGJ7(y0EkiozeiHlsv5HR6lpCTzT=$!rp*@`Y%0MiCl$K7C5_6MO7V&oL
zwZPFGbUTQF6P-2M8K)iMC2}_4&&Vr%mA%PP1jnPwp~KN;m;4H#Q`2)S)j3+^2a8i5
zTty|00e_pXzTUu=v{Q5OEsjBd{o*q`!-Z+)w}BkQ24LqGT^1nO@A>_ZrlLP3G!ilZ
zaw(HS_L-l8r2Sso8mW4`wD5J7ij_QjVDdkGPS&g^<S52A_vjBM%yqsVG&%>{#BJ3|
zIwQ2>*O!08HD$3&`YweA4Qt4XrT6alldCV2A)WcR=(;6`@P7G6!$ZI!0_^O{=JT4F
z5`s-#>^t)5bKcObc=xfozDO&-a4|AgHo0!;IGKI~fRerqfmP@A4)2yBps4g9%bSa;
zqV8ooT3TBo-Ga{PMP7=O9o^)L+^QsCO;Aj~_Bhic96d0>7KBYBFdI_3%e9%crU>mC
zA!!$eJO8xZ;y7+2nsV!)O==b^qXd67K?jf8A2mH#tXA@OqF)Vi)`{(b1RaOsYA}7F
zc?8VOckv5mXSaAMadVS~lo@OVo8zekD9RV!JGFl3qnFd|4sG2>jOE0`-nrV85N}sa
zZ-8DK5!#&`NfG=i3tnl0dv8>5O9_Sc1^mUcm4uT#&yRG=*$VG59Np{58xhf&IC3Dw
z2lQ*Fk1ICWs^JNP6Y;Zs;btONzPj)%!=F&BG1bdq0^1qu4v!5U#on0znX85@^4;X>
zhY<`C@{4*u++JL>ea=vV9vzhjm%aW(8^u94bXz`17PFPR?5zE3d-MMz?cTcLx|VEF
z|CKy1_S)?%C|j~+dq15NAQ^KlK$7j#&O-{2gh8Z=i!Au{=j$=XoSDd4uC@1Wt!f$N
zW#*h?#E46e9ufaJ8JfMclbnPX!S1@Dnz;T&(`uecyn54-u6|0Dq$##pt#$sxiCyYV
z@~=Mjxa$20+WDUY_}jiu{AnQ-X3pwIp39}C@p8SnwGUy&bqydh2u0jHmg^o>k7wX-
z`k>whV&$%mKz3gIw;{0@6lDgR3u;Ew<E$P7v3c-xp?VhwVicdpDFSZFX2p$^k-i^{
zbcP5bHQlxD_+`HLn)znigi>loTgm7$eMNF5exp&(SIyB0QYJG6DCXgG&!tijq`Yfo
z>j1Q!9iKm}<R4tS$@873Ka&;q)}<qI?lVqv`h2U$dM9eQ;?KfWPRr{Hn`_TjR3FKB
zz(JFNMJab|!0@qWUHEb`cYLw&8)`Y)@Vac3RasuQZteK^z__8=@Y0n;!4b<!-Cj?!
z)kUszh(^bm;~q^S_X+{Y?NowqI1>vgj;3x&`Izem(43SH4LTKo@b<>>-RVgoYTm;M
zT%w6+jt>GTclq?H8ZFh@5k5$H6sQb!hL#00YXp#D!=X-S7k+uN3ifV17Nv$y0F^hd
z1t)p1t|V(PR%!T8f#iphkpAwsVI3~sWg7c5mFNqP!H0&7<FMC^xPNT!?L25`BPk`H
zVk@uJxOH(M@ziqW#_;rp*HBgYh<XgygNWf(r}R5a&u`u@@Is(6*%LuW!QugH^NENP
z|JNnOZ2uZ~OkHf*uE*a&Sw2(rjtSk(jQ2Qx3^J<H2d!0B3wi?he_iQ^LarZ#)ZBAY
zvwr*fn#yixf>!4p9UTtxGejdkijs@o=Kd*ERD+{z;6O20XzHyZs)c*hDv2V?O*1GY
zLLn@lz&^&TTLFH86Mb~{7CF$XUP;U#L9?^h&#dpSvyY4ZS__a<m?f#O8LLr3BzCK)
zjLWqCS=I*YdE6IKIa)(B!y7H;9uf>iP&}-dYI()k>zT(*#>P#-q}OYXa$BhH_*N#%
zExlqhlf8dBRh~6yUk#`%#EYlfi(}}FHsb4o6=Vd?H%TIX_hP9oU4{aYz`VWpZpWax
zmZ4k3N%;vV-C3Dc9x3jgHj-P5Rcrkzozu&=|MY4~ow1EGYfZ&QP^=Sh{0Ynbvnkd>
zx0D0Le&m8WY(F-pEJVlC+E6q4$i>nN?wJ#Odeaj|UHJo?pxm$T#4sAxX4>oSEHkm?
z>TAerCL0a@zDj8wD^i<0Qivt@tb~kWuZ;9whuCyaiB;>t`(yKcIfrT&xsb<_KqCup
zp%N7fa`dOb?or81Hi<3|zaP->P=ezWEn`h)Ql*hO6~E4|K9Lq-z_L*eD6|lvZ_~*5
zDCp1v2pn&Y_ny#Hrncvl>9mvRH0~@@(cJA+W?L#r1|=)O0n5My(O6`LyA)9*^y@?R
zPoW+|$;?0O+riOxR|G6aJb<t>uvEBPfByOBYVglX{UK79u=De9t4g%3(ene<zz&%P
zztRHc0p%_Rm;@fqjOJ;SNS`mdG>T9x9xpnCb+gK6H>=XbK?pUUppS>|%Zu=aHg_NJ
zcG9oH;j!dRW0s<JdtC{Ijo~Pv&sDR4G4asf##K}1!u4q#6S|NLYP3H#@6;zU5v-k8
zj#OHC#Bb#Cd<bW9w%S;6GBcIcc}RG{fh;z5tB4-9LIlw=n*mhUQsLX*;cUe3IZ{wd
zyX#h)+-?u8gl%s4XHRoYe@^}}I=Od4fv02+HTZX*;QL0WrWoM$xKNn%Y@>v6NrDv!
zP_pDfTMNJj=VeESl%^y5@x$8TVvX4Da=*BZ1-84WbwlvFA7!JR;2*J;A;zt_;doNp
zY7^N|w;Z=)(^1@pyq2xFIQ}rXOtw4khm`$RcoUbX^Aq)*r$H65_ZM^jhH5GjOjXwB
zKG8B)g?ZviJ;$sqMYDf(kM2q`&*V1gkj5G{;!uuo?M&_8r8LXK<cQjd%*N8hmS37y
z<PYAaD;(GK9G_neOIeSFbY3U-l0JozH_9$*h;z3)xSMgoJkhd0*L}=9QghdP^3g!k
zLr7D3YT{d>4ps>cTLZNZ+vvmQvJ*wtTLXA`gg2R@ko&=G$y3~%oW4n;HST>Owcm@b
zHL%`%wz0pq%)j=s^S`l^QjW1Y9F@{uIm^{+-!lABP7|tf^xE#^=RKs7-RG0(heJQ<
z(t_XU>^C)gj@yA}H9Y$3`TYF-ETv5rU^y@m-P_k~E(9&UY%t>z^HRpDYKX*LucvN_
zx;AP@&qFEEA~*A@969G&!weH0{14BkjaY5`{JOg=Qq5qcoT7^f**h)ggZYR(E3@J*
zWu3N6n0{C7Y6MT9wqLXt+Bnz;ujnj!`udAiT&+GkC$BEH@Un72K}oe6pw@z<>>M50
zcBxm|whMmhwVsrceIO?3=+o?9J5}~YsBCQQ;hpKpV7%4M?2OEmh*LLnFvuXA{g|U@
zDd7EW=JX_yrC;vwlL7v{H6*_WIqb}YL{ZCJj4_C?c%y=0j#b>GlE_T}5ZUwA1PaY_
z$OC9I0AYBxw-0P$5G_v|G3ac}E;1ErN>m_>XCEs)OG^vAci43fPjv&V{4TI8WF9Jv
zo>^+-zkW5p55AU#G05!tgYOvcjPTY5jez(GNdmN)obmNLZ6ZfUXK@01IR@R?oS&eR
zlJL{=?J7wtH%oelCe#N)C;4Oj0r@raKjo0?7VLud+-h?gfd`k9ire47>6c)YlVaju
zo}H)Oclcx89$GByD2xun^-7yg-5vq2!@Yp}Q44PtK80TdJM~35&8ob(wv4CxSG{%&
z&*v4PH0el*X<B}D3$Rc_<C)aA=l*@E=^vh;BW{O<v$C^j7Wkd?vwmgk`-AjYB332a
zn!O5h>>Uh$%1N-+C;DOWSc8yPHU!H-)VO){RNL}ZQT`;MkMs-7W~(6DehP>X9lI}L
zCS~16dy;ItTr?qR&@oY{9xpe-_I=3Hu+{h#;E=sFRVPEN{OwQfabv4Z{Tp6|0@9nf
z0(T$u^Pco_Jq%z~^vkb>(7;4)ynlUl_FwH|rgk(i{@}=QdB1w_qIMy<>)N5UGlPt3
z2wF^7g$)MjFp|I9w;G0aq>|LRt-)vL-HX1Rel3}s7jJd;|N7nhzCYEs68}k3eN+g!
z<jyZ8Mx$Sf_mGnOEUP5oH}T8kdyc%Z00RMfdl5WS48CwEu#|?^G^8UXe0HML1*Jnn
zDpUpX7%)3SW#qt6woiUCmF%o`4TJ1{doxg2LCEpX=kv;y+tGv7(Cjqf5JyihL_sZ}
zFAGJ9IjgT`H^=XG?jq04CmifZH)BZGoPmtO8Sk;%x9{D4V6rMDFBIDk_E`p)bx}fB
zXR-c4o9a6nw%8j#g<#qjsNC;%!5`zm93JO=GdB99;{IH)X+oK1Iq$E7B}aKiIq(_k
z%b}yx2Qbs;ip}|ajkG#QwFc*`+}iy0)oiF?>kpWLA^FXqn+?Jl?pF2Q<KW?!)@H3p
zM*VKIlnId7AhBYVo+Uc(4;jERi*-z+M`{a*jE6qlEG`^ok{o9+|2$2<EZ%2hZdE&h
z(Gyey(lej^7ec7vgFZW$R6^Ohg%fjn8XoD}cPlDJ=JTP9*R6ZDm^5;rLQ-zB|J!UI
z)YV&YZuqUCxD03@%#TW{=qHcf4s4)*lX_;BsU$EpI!nzSIlUHZ`(Uzp{}z+0=Fi<;
zPVNx}^l-SI^u7v86MfqQSb(vjb?`-nz&}oYJ)CYI?fH<ADugzhrTb*OrKLYtVyANu
zyYXCmr<N-bKxFj2P*|q~zDei$xfq@%2TMt!re}j3ONr!3zJWc{V+R_7Ra^1{w|sE|
zi#WT0?#_dTi~1{=7rcpEUR)?(I!*15xg_b$*h{0BpMoF%C;o@_2A}mz@i?~Wciztp
z1UUzXQ5v2cA)E@i)pm=~d}}6s&lBeU*plzb{cAL_#rbkIaG6?$;HYh}0L*)z?%wO^
z*#1osj6vR0t}^i+{fN{YR0;}m%!a;FRSBCI4^;y)hk%lifKxx){n^O!6g4)yNn@k}
z6?YB(+hP@Ti8>3|sp}W5k~MxbIefLbZ=<}b(HV_(C``NY&T%vXi+43&X*`g&6+T1&
zrs74x!opM2f)N4=-+pmO;Nt+p;dzPb@M@ug4^tgNwIgISPqsKN^=Xqr#EIKV>ZVdO
z`LtK!Zg2idr2NzSRKWh}?b}mL6_n1a*uPw6$aJ3C_wqr5@NCAJYO?%<raRED>Z{4Y
zdhQM?#W@^4xHdy1%2<W%^t52L^QF}FR4CsN*77*(n~%fm`uHVkJ{(@$a5ZB=cH4m_
z4YQ$P3g|^hFrFQOqPPK)+%Vc)8eLU_W=!f0i_}k$PuS#iHIL(SaC`0c>suLaxK|p!
zEj<hZly|tXzBh=6_{aIV4l?v^ev23Y;Zjc{Ho5e;0bsdFm?P1D9iqU_V&I<6e3A;1
zjcks_V{XQe$m<`kU*Gw#_=@f<dna~9W0|gR?(wHz>~3yN%>o#CFB<7g&Q@M6M24;k
zgtCL44sxDR1P!olMGi!TlwG`cO2xQ(IyZS~5a#H1E0Eq;9H8x!+G~WmB=czgXTJ{o
zlzxUSgTOAk&gg}k9Z!&fRTW!Spmhb}=*`}u^Q=s`<Cetg?7vAjm)Zx}>wXec9YYs+
z>^eI4*MtwjUK1pqp-znxwl}8hZGXw|RO;;cUQ&CPp=hN>tc8qeQS@Cg#=%Bs*DE&{
zD?fdguO-T+*YD2%@agji{~dI)5ZILWLG-WH>;dGfSvIw$ebs3t*ni9rjDPj6Tp4+M
zd3QYz2zfKKiv&gXsQWLJUpFI3z=pt0QD<`>15@V*Yo3LbXcy~ou?m^2hfWf{=E?^P
zxJ-dxgUA7YgUz%*?Ll4pDGyM{_%A<%%)>DIh!)r|k`@mDqCNgwqpL{R;<DpPxNW+3
zsdq&w(!x$>_a9J(7}wdNLyepHPIWQuIE#<{v9Sdr2!i8ExI`WFPJ#5iPog!Rz7BL(
zII=sTM+>wFF|%U)e@^y4R>L~-8Dee)nYg&Ub6kHEPAE3aPHS;=CqW{;FuUN<CpwP@
zm#}<f)VCcW9%K?kRM8@AT@truMKoiuKi7wz8`G0O4tBZ&|2|k3Pdb@C5}-vrH0i3O
zd+kUjOs`WA^PC6|vg|1hyCx2LIEFPfKqNM$j*}(okdnh6zOSVXqvtPghuiSo<o~sU
z_y2V}JF)Qp-=K_~fC%#M&o-KINClFK16t8vbB!O~RbTDN7Rp^a;L-rtW&hrXor%wf
zhPASZtcGAp_0pUpS!fPXYmEv(+wzZQ3GD5z4xVdUoa99Li)mxYGvIB0pioL_^wnpE
zJlGNllcqSbKmhN4II_ihR0^hEZ0&7sJ7t{<uwdH_%cNcz_5~?>Jv*Phiw*K+(v~9h
zpB<|iG^m&2B%K-U=gO48;l>nWWMDl>nv!SrSm_W}nv1-ORhv+9=tKU59YFe(c_C^T
zuA_$m;fEy0v226<5E$?`Aw)Cn#fLf@r-TQ{zq&}5h<W@}MlAyuYfbg)9NGw+wx7m;
zLDSs3K0Zx-*oLslS4`PU(kx^mob9*8*lqAY(ehj|eIobL%+_gXTj9lTSniG4^&S5u
zlj@f;bxl9(SjA=0O?GX}z0|ad=b7D`pVec9zjU;g{I`+e-Ph<kZ|{+$nKwv3M9?Tv
zB21U2AYy*~&&e;-mti-v+h>2UV+4XGxxE)h%(2|Vuk~*^gA>uRlE$rdmqPyHGKD1l
z^o%7m1%(5x8Q`tnte2Vkou8BLYeeeSuf>8Kg<>W?&HRz}WgFj1GrYr1fhgpSLj??J
zH0MPf>h$$}^?PaYP{CWdnBp(uQIaz%ohYCM8qUN2`&!m?s=aRbOTSWyaEAnQKbiw`
zJiDrGKbG#rpMi$;O!yd-otg|S<=na1kI~-JNQs?-7udm8n^{8P=BNh<YrJV12M|@C
z0|5Ro`CVCjJe&E)LdW|lOiC*$x>j!&_Mj>j0Aq=EVVQL4)2Kv9#c}VbEMHrftK@jw
z7W*QW@Dp3Y-H$iTrFJ#uJf!~FT=UD<lRs|TaHg=y2-lizx_Niol8!~qF1-(=Y*Cc&
z|M-Nm*_!U`=X~D-gwH$qZ_ok;Y{(aED4?Fnr2Ubfq!uK_H=uBm3**4wp*Or(*XedO
zu1NE}f#_;XH=jzO>{qvqtgJ`mC}-G$H1aREr)Ua%T>%_jt-gHB@1tkdVQw)*Gtj~E
z1i+CsA;?01?lU=dF>(y;<;QMKpKfdiE{q<1x%vCX!+{AuNg;5nPG%p%+}FcgE3vVL
z+&Lc{Itx%Eu&T0bWt%!=0k2hI4bKc2O&6uOg2PKxAw8*S6<>5zvXPrnF&Y|T5yrgb
z8KgI5&61tZrAGd+qfb4EBI6&zvQ%AVIgf?_GUN%!=fw;%%)J?X!;5y;x+(B$%D_8(
z<GXvM?<^mn*YI+OyVYOZe4OmPorr@o_nsZf3MwXqqw{SETWfAiazi+LC(U^${{C>i
z>eEDQa1aAeb8_U)z^^Sb|IC{9HKjc9xyw*x#7WbrEKB+h?q)h%d_P|u5V|yg2*{;r
z%NQgA#6o4P)+tS&Dpcr9{@n3Kl?S9bxp65u+cUFoRGHrrGQUtNIyp|J*6q#<W7=q)
zOGU`}IVPSIPqs>k)q*km36+eh>#fk)s*iWG`_%J%&*roTy5jsP#iNKxRG^+gj!;o?
z!gZ#Pr+&Qf$taak7rK(@zvSjdvMb2zxVmV0#Kj$b{)R9i{>*k17oT`++%D}GH?8*w
z6CnQ721S%<>v0)RmPX!qwUM00aO71ZhGcPEH5!C2#{elQHgcw^-5X&PYlu2YCsZEV
zDveaAio58$3dDcJA(%|VS=z-Xe6jo79OOZ3@F`8C(3X-ViaMQXrufb{`1!qv{tWs0
z>P8;$Hc8&wbCqUdmg{?&&^xa1_3V1~)?Eqfg}ozJE88`4+!qzr@*m;|`!Wuj7ypyw
zgG~gf0yuhLDP(pqawq3~bOoeP`tR_NYVR~iqZZM5ut3(1CLb~8-ZUi<H+#V_4v#Hf
zmoK?X&D5SC_L^W`LB_E38EdPHg^>6bm!|xkt2q>jQXHuPMrVKx{<{yMYG_0-Q}P>}
zwcn}Jii7rmw<-!pyg9OoqqnnpDZ4VubkO<rF@X*faNcO7xXOO}7am1b%Du8xLYALj
z<fWOD@5w0g4AYo?i1TI7y+mtdFx7N>daxsWM-C}vunvb6QT@p_)`!v$#Nxl5RYMvH
zj`KgYF!SHjm|juzqlln}LkHZH`2{0+eD~)Wx6r%!RnF4p%Z**2#8ZMYzrL3OItDoo
zUw-U_1Jkz-rmxmEUTvC_Bfn9ki~P*=`SkbSv~rj}J@{?ycRl}U5TQl8c4ko@?Cs+F
zZ+Zm%DR<Ym_g?L-yg1x`@qF(U9>9sXMZ=gvQggdcGKwYblcc`->bpm!?vr2Nh66a1
z<h3%7vVM@$(*i?!(LpZ($)j=i))bg+yw?bLP>t2W;q1eM1bFI{LNd=x4q9os5lZ_Z
z{az%bzjO;WDPOIqu0c30rw&E|$(FbNF;eJ2_1x&FhC=z2<(^%x{7J`eu9kw!8sPJO
z=fB@;`&@&+`a)n03+SZwxSAq)#h1wwq7b-p>M#%O%l#dH2q1|t(6%7sG@kAKx&mTf
zOcdAG*SmCf{O%w*e!utw^W?gikECH?xM8k>=AwM7fUBt{EwX#ys{2O&#<xHE#?uS2
z=sFm%2Y9LbXIfsF`VpC4rp9L3?9Tqy{(|e!ot)r4Vy_r3g{CvD6rD#8%em90ZH48|
zy&Ih;Qh&Y?TgD-^1OlFoIG&+R_|E+DPlT910uvQmy>Zp)V=$0eagLAQa~@LidJ#N%
zhf8sf@pR^=vI=%VbXsi4-E;&mm$bg(n~O2PvNhcNzk1>fWc3$MT*)xKYi(sX#S0$)
zXsjk*Z$aL9qhir==@%LKuX8KX$prw57RK*z_W##@Vk)aHH2w1Rg{MQSng8}t{ywT0
z!iDSlp@g9Gl?@NUQwj6pa0bn=^7U@!5wz}UiwD-Y=lS$S=wNBr``!QX%I>!jeP4KN
zW*F3*La;{6=&pQrYYhB5BLjL=AN+jv+$G8+7ykdW6OU#ndPDbzT@J%Kp*A?#0`_FT
zHI3n{E-hP}p9Mla`pFe1;mtZx6^5qo0J^<mu*;Zz!Lr=c;p{E;*8=a<KSBm5#F+T7
z12+!XlLNuLWkf76o=f)pd7O~jzy-(<V4}1M(Wi{Z6tvaL+&!w{bX9Nc_@O!04V>;x
z;>OE6ZuDsCr~N9}vpy&Pr_j4~H)}zJv+$jY_0yBve5^$=i0MMNmU13mQ#=lioNoXA
z^u+=4&vV1CubP6$d;^~9xta6JHP%7UTHiW%Ez8)33%^V>d7is*_jyXQgTNkpfMUaq
zUSHkmN|2ls<;x$<2PBt-6E95wJ-t|~?}V7cHN<F78gr<dF$F5zk;|16%)XIb%M=A0
zezm`|P`k}^B|If*Vd$r!W1Qa}MuzNc>0az{4V$-^X3U_asiSnTP90Y(m$+A~V)6v*
zn+F>2wa<Df(`J6zE=X{E?fWprWeV0$KX41ECoCoKa$pV}MYyRJMDIt}6d8br19X-Z
z%vhJEK;^L~8!r!jdq}3N4!c$Kd2qz~z0M`#VTpHAy}MwRc8ks17AiR(R~fmMRPlgL
z5AK=V;h-KZc+s{Nr{QyO^yv2LJP$MOsG~)$L;eft)lQCZEQ&+5nFus@3-=$t!n@7n
zVfD9=_WWck?rj+}2!`myhrwc_9$^G}lejeJ+&|;?5t^2;cv7`Jhb!f{E@*99GbYg;
zgs5TZ(q6JqF>xfI$3jf(5AkwlA0TR?(;*{0EKy%WCBNX8zyFX;4BP8)m{(~80-$91
z1+DV%LNS8mw8SfuXTSGb<1q-Rj@-iK!qFMA*sto)J3h-8b>GA&30>ls{B+f4yuDxc
zIT=id^#1Fd{zaL(1DIGJsRBZFv&8TPCI_s1Gv8N3SGTc%U>5b4no)C?m2@=>Rw>qZ
zle1Uc{f4VawbGQ!FFe9q;$?}X#35rmz5FPH%>83u_I+bJrt2|uluRY7K5SUR$2t}~
zAIeHvLw%KVW%_9L{Gvj`Z^AP@Y@#S|`q|@^*8BE*{2mV%sY-k1kY1K5&lVy}g-Y=O
zN`r)=>A@M{Lhf++hFe(>A-0ekpO%^#FG6I5P*CY1Sby;Sx)q>Rd8N}6>3vf8u3|P+
zRQl)PYdX>=XG&WC2;SBH(C~&o1;SjdLyry2z$+IpmG>sr>l|hATmZ)!)u*a<8ir3G
z_O4EDLn;HZf>-7Iwr<llJ8P{C7Q1sgTN)6V#RL+_`W{YqH=gk+YR-Jx1W4XzibYyG
zVa?x8c4fb!&#2&wuQz~K`GbZna3g!kAN?MFv%zmE4p4y!)7FV~QK|5QX65E&Ls6D;
z27|x+{PbFFV6LU58fIFXK-03A*HTG}ZKQs0P=zp>N=Pt7D&0|p{elJp&Yh%Lc(TIF
zWXI(;Bz3#OhMxulcWuC;=`Jkw9s%x+^d~Q&pMzDG^YT*$@xJ4kYD+l380RgcN+E(j
z)Aog}C(7C{N$sb=LU~WJ<h?ci^h_&g^r#_sVee_w3{yz!%Liq<HVa(!;`hU~%?34L
z@51}^4XDC8Fs<e9x=pbXhw+PV0ctphUw#kF>WZ71W9Ubd{5Vwlb*+8M*{g$9XS0@C
z73;X8{v<)FCVS{>{Y?8>QamD!Fo;h(aG{n9<Vpu(S`CO;N!HW3o<677D<`)r2T4fg
zSHqss0{rSsRIA6P+KJ)$q}@0f&o`htOW+i;l}xo{*7Z$Gyf@^RQWP$kQVCpI9Mi{-
zLk1W$?e6UmGpC8DjL9iM8{Zx6rn`z80E9cz+xfcTGqkSYa_#Ba{TO(Q#jXF**|p|&
ztvH_Vr7gHe4A%Iux?N&pFlfI31<$T^h+TM~*GncS$I-qgw|Y7|e?~uNv{{>pYWaV1
z4jTeG3MIk@cx9Yww3IYm)SC<%Ns@veKY#E49vqCG>mDVYP6L1+)%ZsCc(IC9KJB`D
zdcsD1u=FG1RBD7ceLE3it~#LoCzYM)yxpeT@aQy+Nym|)nXR(XF~$e*!!r(Yf=_}=
z4Hp0c{`J*Z4G=5IDz^2g;`!@0$*ws(Q8H@J-bMUkk90pFf|XLyTCJ(Q%r0(aAW5P$
z3(B`&U9Yz(2g=ONWY$CH_@v7EXsTP)u4<^Xd7@sib6vcm_650(#I}_7&e4G?b5$1E
zSvfu6$?T&Txw-c3UX%L2JD#ywGSyLBuZzhdul`_x(pTU=Z;cw0)@0}h7pC-#?h#b)
z?CK*_tOKLh<_$SVi?!r%i#sk&g8Eb_`jP@J!a^g>Lyn@jvV^><mxnpw3!9jC(mbpt
zWr#@ADkFT%?Y3lSstL`8;c&3Es!{Bl37w+uuG7#_UEoRUMxNm|KTS?=`56uOX~&qZ
z6&%Qnot3y0rqFK7QJWsDO@TGLu)Y>0u)b<uJgQb6Y)BB|n6L}^1vjayZ2~OJpKt+i
z<%jMjy=_$kWQUv7Us~2zH1OcTt!8WK5_?_veP&Yk?-;=dwhXAh{NhjH!>-$ay$>H`
zQcc=8bQgNQVVZ61KHuzA0Ol8X`OaZV$|d*07W50NgapG()5ylDYki;w)dh$amMbsJ
zIb0QMEDn=in5^gYh6Avq)rxC{w_lV#CwNiE@7$D%hbM_H;>k`;HILttOr)ERTLttk
zqTRxi#I(%`I{QR<4l9xR$%^{yUGFLtgT)IdmX<#&?3fbsR1jVcg$;g$OP3xer<b?M
zbkaX9HR56T<S9w;oj{HQV<!o@SJT5S5oV7>+&(-E#E?dC&ijy@OZVZf88R)Ca;+0P
zttSgUog_=+6|97u)SX`E)ede{rWg*rrK=eTaI$Ygr(>oJDK!GNBaI1(A4Y7)n!$2n
z-~HL2BybB#hP}cvJa2HXMNU}<Y0Z9L1N#<g!>CLF8jAh<0cafPvVo^%<-Yiy6UoQ;
zdGBB~S6spzhc72`wSOB&M?X7A4ZBt!Ki)4dMWsTfau~lF9ByRvG<7QG{D#HQfs08C
zrPqJcU@eWv&jy5}8+}18JvBYp!YuE4Q|zUCfP2S9K5DUH-wsSDyRi%bu%)6&eQ16@
zd!FOs$tp3%p?%}Pb@sD^ENWPnZ0@;7Mw$|Ny7y~owg-#q(Rc*S;I@|BP5UR752h=@
zx6-Dj4D)GdF;#{e><+8{?o@L9E<V9qc+lQZ3LzM)A_#gO%F>)%>o$zkGrU<SbsOGD
zuMxswd2D%SA5xys?MXT|Otuq+P)d!7Bi5j!q@EsRyI_Smy%Ke#x3R>(;$`->!O~`7
zS1+A^+<wP(cAgd|t+)REtzqcyse)@6{Bmjx(Q|fs2i|YN=GfPT(I~fq`RER+7%3LS
zVIHzX!wDXIPdU+qeL<rZu@-P$PJAi)7DI8G3i^<MxoBVpg9O15N?gsTBNj9V5)oM+
z;D6b8e0*oDaZHk~fqVnZt7I)OdJ&9Mh;(t6ls%;5hV&k^P)OBfDY|qR%CE|Hgl+#>
zd0{EB^Ga2%RK?Kz&-qFboYDsJ>vbaxzgB2}Is1dlsdr^vN&bvm@kVhlKpyxgScrC9
z?s#JA8cUc`b?w!_ldX*V32Jh)7-^Wbw4M5%{3O=WqHIZ>H@C6l0{u7Y_Y*4~$`;j}
z_8wM~fAl8l{Z>n#>TI7)`&(ID%5T_JmEn6icGg1-U^M3?8(xECM^7ywMfe|IdM}D7
z#jIcW8tsl!m)}}qEe$_gN$vKtq^aG|#qImoB&aKl_GYqtlq$HeJipVERadCD!aUtb
z+HQ2jC_nG~h)SF_x}FD)Yv=A!W@~KCZUy`|BRUXD6JQg{ZJavgeBCaql;nVYZCWcY
zMYorYDW}Mcu?uaZ1&pn0ViC@T=@p{Sue;+1is6r@gbNh=&p~Mcd_#TRpYVGw;!?Z4
z`q8v8e?EJQT6-F>Y9!9WWl!691|uPLE(yZPxgFJsq&#p*Jf4cd#4~TMVl!`RxCvgg
zRN+X~2F?Plihy<+Pd>01Pd4R&PIEgWsZwQ4CBhj6HaW!WOf~pwGJUqUIoVs?=#Da_
zB&mD-I)m|CLgvll%v2LpWhLfAd6WWJFxl*?=A>0`jf#9ty}zHV-QV5M&i^@D(#g&h
z=Q?&XE5iQB=j}aZP?pVQfL_jqv0t|F;aiGOdde=F@9iQD9Nu0n75y}yURVYebXXGs
zzOQbTSq9N{TdN^b`p}Tw+M@Jod+bq+fpe%zrNaE#sh>}`&x$z{sqN@J$37-?p#o};
zbsC5q*#3opr-?)GSv59>8}R@f1RrL-&1;?PozLzDZ)p&rbWTDp+*~n(qX<V!WK}oG
z5FhUI<=)OtKl%?4t?bz8-B7|u<Fk&%El`^>s2u;DJ#3ZiE;5T6BT+>9;kHQ1y@8+x
zbJfNL{A$2dt##T*4-R3aHVvBT6}=%{TADP*U8F0MU6d-UUcQs<)lFI6I80}gS2@rk
z%H(EfB;xqKYRI~?$&5MmRNd#U`q=MFrbPhy5-6z_tZ8~*NvmM_lO9?0&IpcW^MSvM
zKr96@ujWkuf~dlD$^pRe_g*W$sxla$v4$|3v4l@Hzx_})wH@WE;QjJD3}O_WJl~Rb
zse!V}un+0&x3q<jLQecRL*a`Us_hez|C<kxLllp-+4U*FJ>_KGqZ=G0o;-HRTV+Rg
z&hgHSNz9oq*RC=p<JxK$JSg7|QAFzOgoH2Sm3x0ry%<nLKSn@g2fz#HGj<zM7@vSy
zYZ@ZG=#vXOH5-1A43UCxOwi<b4uxcORA|(mumB%?ZxpSmTEmwJ0UG@7-l1DRIgNk9
z08rb<Jc!oKuhQ4ZaY@wLcF8omzwk^#hg(=yLJbme&`V(+{mDVH^H*XT1KO$3B~w-G
zE$vu5$x{O1L=R}va2O%Jj>5(#$(gkGF?^#MO>8Wn9{0KkrA2f-;!T2TDHtE(cWWwM
z_Iq)`VjlYP>kq^oAMl3{@`tPIx3cqfX!cis2??P8eK5ONwU`=nh9)?&4HRR`V5l5T
zRW;vsRI2soR`x6`EyqA8!i{_2*z%(mfQu%VmDO?eW=njPwc~+E-F)(dPQ*Q;rP)$p
zoR(Epy9Fiq-?=hPSbdrPcfJelByPPc3{Qc5jXw~<r6)5A>w%R=o%`%1w4><!OH=gJ
zv+_SoM|OC!R&dmSCHw2VO=}9d+-nG^)0*@kgV+j5S&K4!zpM^n;Xfxwt2E!`45dPI
zgkE({vkAza;(&D_0dNfEP0feVI7;jgcJ3fw3p<j5cNz`ut#ACgB<oRpVwL?2I^%RK
z4naCFJBVD9%z11=#x?iZ|CP3J5vlG@u$}#8+R0@8(8VJ)9b&33Jd3O!=0i^=46I2c
zguJpw@T+-`MGm(k9w~o^t0fK6iIeaQ77(hlvOn-(Gq>Qe60czGkh;Z_Cf+cMq}b@}
z)q+q?uoTqAlspfAzl!4q6W9}QOO=+n8>Z*SiB80{vywd1c#dmyLL(9v(gG8fRk=_(
zZe@o$GW1)qC3fP1gxlN@(41aTV#@bKYoS`kAMa|J0&*;^ZmyX{=44>6-@n&+i>>%8
z?a)$iRi+Pt!9mCClVtvxLM&WGgrr1z*+Pf8xj8@NA^TPisoM~Qg^DquM`H>!+(w?u
ziw(Qt*r*)qH}1oj*eDg!R?ghztSOAjiSabsr{Y{T^o4Tv>gU2!ioNWqeMOX;-!TzC
zCo~TYm<BR|uJ+^`rY}vfG{f%9yR?)}3wHjWooam`An}wcw=99-4P0Ub;1@9t?-(8T
zr+z03fGN#}*37H}%Aek+!e^=L3TG_H{WG!~NG?CP5WUO=3z-!w-~@QY#AG4G1<C8B
zKe@$t_g|URt4ViOE%Dd%+i{O;{H<`PTxo^=tayMfu2buszsw=`b;%Lv_3ztEu|V)X
zQv}f!-&FM$kpM$yBIxGj+ttZCMMjfntHI0)-f7NyCg7FwVIMBa?9<wasbgIiGXMxW
zO%Ltqn~eEOz+`MVcrhj+m1){yIpp1~LKqe7s1;c0>)qd=tSrou`I}v=pdlhnX8|P=
zd96%#!+8iEcoCZvgETJU-ZhkwyWGE?KwWK2$7qQ0!R(JAgn%NpW3@`90*S}+J}1&Z
z<jZ5@jT1)XY^a<ZS{-PsT?%6txh533l(h|;Lc0~`=5}&47PF+$$v6K?-(VvII7w+<
zr;a97POwh@4%zPZK~OrMpjWielzpcEk7jTFNLsdnbb9O19`LxISZaj4;<>ivM-dbA
z!me{ZQbKgIESua6xtDU$PjfAH&4rTB<!nVQtX<r`9u7fhhfZ|5Q(4I>BNXsE3Z>?o
z{-|%`v_lO)`?kC;4P4_~c1%%8czcgd*r<e34su*W@0!j8L}2P66c1-)3eM!FFXzf@
zuP2z+A2LE?Xb#jF;$IIjN1y5{aeNu~RVW^FkAOZnT7z?mm=(5)5g%q@ns@^NmksF@
z$f$w`VT(&ShP3w3X|9I226-A&GfedhA5%y}YM%<sPrws{w&_Y(2$o4a+h?!Nc2B3n
zt*BoC#<6w)Z^gNT!qz8L+mT;w;!<XivrB^4<WnEGwkqBvem4|oADyi=y}|dlp=)=c
zTMUp>rur_wBBT~J9-P*k_)tGtFbg4E>qoze=hUI7<prSJez=-_Om;;hD%&lyozuvK
z#6T^S(x_SSS^3<Y!M6_fhu&9Yp(aDqNe=1k)6LyvYdH446eF)9E%wnbv@omJyrl^E
zf%lfm7<OxRai0HoZ>%+BWQSEdYC%!6ZyeR{zt623xJ%AilPfx-NVJYP%&<)AA*=Pp
zUiAWE-h>7z9AvbF->`;8)XozGHVb-@euYA|yRiDk_w%bx7ryz<QJs;|rG6Nokb<Bl
zd_0toK-Hsvmj1tq!9H(ftusvvEI)q(q2QZ;uS<4fc6Mofe%V_VRp=SqPe@n=VQi|#
z^jX<&02!qB-)X+h$uhLBZkiG@O4E6ejObS(hX2-8B0$2df9tdE*U>uMcy_S&+s4*p
zAIER{d*$ACH#QE!RNxW(Lu6g_75&p&Np5Q{ov>$cBf1UK(MdM?L7)IkpziO@^SPlQ
z5~Wp*_DZYl>Xy(W;wq|x96lGX?F+TsJ{R_{#~VNSudnEnKS@P4+F`K{ndEg5on{1K
zm5z$01K)pRxkqfgo%-Ya+a0u>3Ag0mxE<U8FyQ#XfBl5g$0T%bXXE*_`h~ZEBkksr
zAF1>csV7st7*4{p6@hNzYem6udCJ&iwSrSmcA@fdIu^0DYSo?-#FB%iasn0pC^ivP
zWL-`f@fQQwD@9WQ$#S%j+9PYr!)<AVk#?$t8eMB`4S#JZcUOO&CvHynUdVpWUp%Kf
zuP$qI)`Z(gn-@K?b6<}Tw1EdZ&D2m`i(`Aw635@gxtmFM<{7pApeK5B?7k|Jzn18^
z4CALt8Pn4}h;OiWu;p~AmKnMIlyI-jYYwk=FxqQ#o`ZG<g--U!?H>o5@?N`ZYdH{p
zBQ9&2B)HA;??QECpfPiQUVQ;s*!d;D`-=?ds=T5D^ULbKlAGq8xrD@`uJ<i2#7P~R
zkO~zV<kzbM>gEe}pcA>!OWt75?7M}b19T|<yLHzVGoN%smUe!S`v^pNq20Jl9<*SL
z)t$V2b<l0qaJjZh2scj?Zun5fzisT8cJKwVS~GL~t68rn8Mzub@}b($Ck=dixbu`1
zmJn#`%~*&(mYgs@rWnyz(|lGO)K6`1iLn;P^LXjwlxg^2nTe8-sTm-URHN+l=|#9z
zIRM-C$bA_mn-b`1F}0nF`0-&B>zNc^gE0@cebPmZjV<@~IM^YKC~5n4t$LptYp7u2
z4ri&+F*D7SZE@}Eo|PIDCQHJf3nSwm%5lt92US(Qm7<z3JktK;&AjWX-0Zj20bq8E
z$uUG<!%hwWt_*QFo^Kgzb;W&bYZip(@ajPmvBpbrR8*d<dlrWcWi63c>e4vFX=!;W
z+bUgodXMwwfSx9h(TG6wzDOwAjoihp<62>Wdt0KFdiT&w-g3X8TM^)er|L~*TZN)k
zW7brH)_K3n9&cWq!(Ne(7WvG67IV>|uJwVEcYFN6tU&vbVVuLib9d@FALa2Llhi>;
zH68Rf^)i27$MV<e_-NMrh&~;-I`ypMRv!M6l!kD``P;le?bbEwOcO=OhiL7b<VscS
zZ}<#UP9k*;N96eQs@4itUBaZ<F8s&(pkX*r^*pJn*OOg1D(;!iuHM~d8>4?j?9cZH
zOOx{uwgUh=?dGVC{1SdI+Dq`z_f?zu^!cRM<pvsbc8`&Eqc~fj<v;bY79+~q$U+EO
zc%}mMonT&PAI@$sZgr&-0L#I}4UDHmWkcp6HHZ_VeM`@fHS-ns&oHxi&OVFsg4(z<
zmxNh)TN#Cm3c<NxMk`^G#QHS+s}RP_NGz%WR{0>H$O~uj%Y|!k69SjeA?N*T5+nSU
zWtX6|nYOxF*Y5q7AFxDXFsnogXzg(4aJYF1WPaPL(=257Oe>fjq<V~mtX<s;P2uA_
zULfRHl^}dU-awU{HTDKRS><jSVWhT09Q4h#v7ZG5EiZ;!U<1pXx$+ZP5vc@hl*zp`
z=`%SSbg7_oUMf_nkyi{97}+Z%Md&$_RV@gj?#9rceptu24kSaOwe&)Uf=#wH%DF1J
ztF~bWVGj<RvPCR|mIG&cIXj_Wn!t>TH`#;31_6PENa%m}sc<t)$e0m#8Tn6r*od`|
z=Flhdyw+hbeam5>P@P6^Q)=1g2R5tk7>CU2p*ckhKWv*XR0Db+-o7y{Dr7`Mm~p4#
zqb>i2?lC;NS7$5GaRBld>!tl|Qh$;VyNVrqG@NSAwB%tuj^F)xdIp@5q{-3dSoc&h
z9EqcS#xm&xFr-NenF*km>5_Gj4dRQgHJnSMbPXR_Ebt*koik_y6&DW`16c-MlxpRx
zHl?PugA8;ZPcUv6@_o<U%upxOnWZ5Id>`+jt%5S3vp03JO($~Sj!Pg@jre@X&#j-{
z>pIi^R#3iqnG+Z^8XM2cx~F)Wjx9aW8=PvHXt-r=wc;rxqG1QAlT>@;g}P7B;y0vZ
zIE&fGk>bA8wez2O6l>uKFFpz~$`L5(#YO+Ibx}LoNMTdQ6`ll?+1gp3w31wvnv~wr
z%A<cSas4zhFR0W2g-)aG>C#|CM^OMdhT189!yms&o3DmzHh8<n!{*Qmk;WbM1re2>
zTI2pEgl-*n<<X@5f-mj7I!ZA+a5+bQ>4hr9`kapFLp+MT4QZIc87?)#GYHS>DJWzm
z`SH)+O!e?{Ah^VBa^$7N#rz?+F*A!#6Q-@^glY;OVY>Q2^cIwbwRfn?$F0~r3;}}z
z=kjZWdPr6LkU`{!d(Yg({!|Hg3w<Pe#PWZA*&%S(GtKV!?_F8i8sWAg1io2gitZ?u
zBkk{oz4XiC$7Rhv;$X|g5WJqD?dvO;O{610q>KOVjzQ@177mnreUev&*J~e4?yg%O
z3rP19!TkTu@5qQ@?@a^k4rbQXV!$^(N(RRPe&}9J1KU|8l|qjNWNi=ZYWm2$+A=6b
zAA!j(ZBZ4<y^vGm+nk0n=queVtur9+oW}D@)rx-Y;`Bo`Mx#3(1PxzeLQr3l9r5ui
z-fx>2JT_^lwBp7<#!;fvQuz4>DWZNrL>#@;Dkmqc%*A%v<HNg?H+m7SP|ji~BGr%K
zw<+CFwmm;lgUwZPmqCGA9p!cUfOH8G1UsCmwH*Acqu;Y+x_U}^dU<Wl;FZI6aPtO~
ztxY@I$Hs$a%b>uW+tBYEm-^CQ-^;|&He^!dsP;&>(c|%e<Jq*K@w#2Qh>G?NS6h1&
z6fU=;af9|$FZ?T$10LbC&oYubTCtOa5YJh6bd8{81D#@M`1}21iV8Km%xQQ}O^X9=
zXwqJ}l=qzCtYq3APfotx&|W`=UQY4r(FC`7r@0Xz!gq1(svk?2F6uUeG5<mcY_pw*
zi&O)9M~^AE0Yo1jyIkV91ZMAr){ck6G_$^3k$UfO#u=;wY8zzEemsnXedw_e2$$`}
zp;Q0*<Lh!WQtL7SDOIkgTq&GZPE%4qlC-z-ZOUjbjPpf0To_=NLZ;2)LQb0L_xB=|
z9J<4wjO^u*jgmILeJ>l=vw$s%OZV2tUwU1ETg<OgwbNFbmq!$ud^g#Aie!I^w*jkd
zy&*ZFy%~CI{_xNdSweMUym}bkP8J9cqO!Mtgqpbf@FbBsGh#Hd3Yuc1=bRJF%-+Q6
zy15~g<(uwb*q{BfSOp-0A^$DN683^a^?r77xU%zcr*<c8m&Ud1M8xJ0bsznw1Xn?x
z?U-txx9<wHZIMTs#74T;Pv7dHkxbIq3$MxgV)M#zPwJLwMY(D+AMN1BR|nA#L?KGr
zc>h*|23XMI>uhMaonLMH{7`Tcby26X%yg2J!%`290I)0rC$FN2PWqWFdIK-8((W9x
zMdd9rOwa&lEpXonue}T|ttRXr(jpJh8OwgEg1;tL)#!BCJb>{Pu4A5UasMu2|JD$#
z23Mw5KMm{8{^zqaKI`o2!G@sxiKGZS%iZ-N#{ufPwtM)SOm%lxGCNzU^Cp@ycioW+
zQ=ej!<lyM+hr(I8@T4!%dhe;cwowC?rE)$u1{^OUk$T^%r8}I31fW9`Uw2!SJG+d+
z+0G2K`ARVh)qw>-nKq09vX;ZNzoI7PE>F>lVJb^3aAYM~ImZ}Lb#W<~OMZi-RK3R+
zKOhpJ<KFNDsp%zSh)h7&2#JnQ+t8h+OuAnp{_;#;eiJ?-L_K;3(qx&s*%|!qga<<w
z@5^v_YEJpHSEvG3MEkKbJ=5bjKac=P%fU(c0$MJDPwRjxFJV~Y@cZG~3{{uu(iOzG
zysQ#>m=2-Q{Lw&@u?4C)rj{_`hSWAg*ynZ!qA3p75Y=_kjhriB`tLuaOe+~1NW|=o
zP6uyk|BH|4umgFQpita`B%biHxM!?YbEi<^0M$C2Pi8XfSRGZ78V~`L$0`|XdddrL
zbxw(KI)fi42rRTj%g9*GbX|iZjI4^K^!t9+O0h#Be(ER#J%}_?Mcf(`I39gaxU70m
zGr$SmwmY9x2b;s=>I2je@`QJ}LnJt&s0rlhCw8S<Xshd06WtDr^}{^pu!oroy>)LL
z{}Wh$bik(3jm`OP8SO^~v9`y!p?_MNwPIVS9;mj)Ek-ZKMJEb~>i`^w#<op<j&GAO
z9n}I8*h8;u9`#c&i3aWDO2sH#TK&xt_aHS771s;d$T6~2vMnjGGdtGj)$o`>{<EGE
z0ESqFAX*i)e=d@sJDY18zpfk{WtrGi(wJkTztWN_s}6GV(8*ccrAUq~es~|X4{_iq
z&C{$KS#9*{FdTTiSWhmzgiaQ;>%JrewAO$le^TcC=Na(hDvZzn(JP#+5`)xdV@Br-
zT6cxgIF=9fq58>s(6sNEt{;SV%qDah^gDd9o!JNV4=f$#AOEMtfT~ZE1$X32$#&~r
z`NOrEb|@b_ggMA2p-F+ox@sAYsZt2shJ%g$k$tc<M;RYnN02mnvZ#X+)ACU8oyjhr
zt>n^nnokvv;8;=OsCxf#+?hky!!$1zCgju8PdDi-KoSQVFug7>O_wU7-*P#XFX(+M
zSU7T}tHjskx8|F}xzMviTJTaIh1Y|#$Ebo$Tjr=}adu@Be^dQ2aJuJV)H}iSJQS<R
zhg_6gj!c0^m<c~0$~g>*m<fs(uDn=i8pp9%Acvr7e#5h<#C{4(g<{;>UCmWSSEsM1
z9+&QJ=V?|G;;dX^D9Vyw=DK6hRPswLbi+s0YRTBNI@@70dl{Doqv%{td>rcf`TiZa
zQxdoA0X@ML@f%eDg&;!6kMc?lP5>wj8oKYBl`Y}?0iz|q786fjRsh=-;b&qnB$ki?
zLRW#6B>Zf-+;*Sp0K?0dQk~hmyx-YDz~#~twGLH}#SyQN1e=hbK?#Vwnz9@(IfbWb
z-*OEawxf<<i*A3AJxw;pT#+Skr*3`neDh!kdqo0HhL?F`pXe5pgX)S=J8QtMFIRW0
z1zofjPEbd8N77n>iwCKR=r0)&MYCczy6t*CD^ybe5;h-VF@kkE1x9qnRjdWpdnYOi
zFvj=qWwayf9wP2IMLufT2S{2O8IKd;C)*)m*|8Kdz$cFBPk<BWt*<(Jt%vI;@ygIu
ztsW)BWD!PBeps&I`kd+o7B}fFv$TX|UzDwQ&(me<J$BdT>Lu3OY?WL^T<Gk08fTxJ
zOgyYVhdZ#?8A~%?8nTRA>e)6lPoozH!D=!G?i4GmjS?B;7@E;aPe$?V5o>aN+o*tX
zlnm18kBkzZ;kr)5@cB4LM5lj%3Z=ybbEB8H2<G}FG=s2rnOrO8QIMR4K4?Csx+3yg
z2RejEmZO>O>uS+EUa}+Jv8KZ{b54J=)b4dSi8@W|Qt%9hIM-z)V-erY;-bWz=d7aM
zyLAxi=G>cWw+KU{@CBjK6Prg`9osXj?QXd2kFm~c&R7x4`l&Z6kk>Ov3=JlW&<cpI
z&)zan!DnkP@CM~HS0>ZL%>zJ8+JwY<4INkqIH76;)GN@+%yHJYkev3kkBbUCy<d$?
z+J+t>zypTrs)VPcyT9RRr6JI$CwuHHjLnQxqu>#MtCdQps}0GOtd+u8-ohpw;p59#
z+NM^YUedlxvnAxKpa+;y3Acx&UzlcN>7x_8XctUcl1)^xS-&Abl!p6wb`?1q!yPP!
zLmjJ92>n1IIz^_0%|A5KLJCjHKmPF%)Au=>IYYtasVreHqs$Ail*J3-IAK@5QuZ<Y
za#*B?v$M;am8B`h3)!gnf2sB*2LO<2@y?F(JZvz06M<+Y_KPFAIREAKhy%?29rRp8
zO*w)D%f`XpwpJ?raco*9A|LF=s|~Y>TOFHd&ndM3J{S6O-og#PHGX)qX{Q&h3HOzV
zUiCYv`-X-6_t*b#+8@@4F+8<?p~Z84?I#Qp)x%P&5~0-p@h|DQ{87&E;Sc!{T8?L7
zR0WWYICYYa3{n89e{b<<kuUXj?EZ4Q%0kW^1E<?B^Y}F?=Ed)HzseZg@X(n{lhjTi
ziScBwPSaxkR1$F4T(CHwX)l|BNLQ!HO6#u<5<9zphbb&|%|VU&tvg?=W<D1me3uqo
zRW6n9ehq@bn30!pp1<@3A#Hzs$gJ!0%}``u$Vg&!lT0phh2A7}#5`W|+O_X&@yCT=
zjo+EPcteY~UU6ZG5dU(qhD~1l%&=++^M}tY^bt;DSn0KiF*NNV7O}#^lQYCG!!?U$
zaEP07QRV{gajun7*PY9efBj(nNJ;~T+Zb1@*26}PC9@0W!>G;{zX_;6msfE)t@;RF
z>5McL!Rt<(Qv+MNZsC6?mJKEv|GZM!>(F3F6)ak@5^uGGnvz9~Ay+b4wib{SLPUkx
z$Mh(c0LeOz>vK2s2S7-ZQeBjFk!QU2#LDts(pas`An53V2^P;k>pMQ;;ucK_n%(;~
z&j|A~99A*J>|>PmMXBEE2c*&a$(`f4SeclI4=`VkR%Lv}`a^sh$R;fiDdNPEIjA#}
zrWUDT>&no<dO}5(TRqpQX;>j(0~qhk*>ws(_x9@kba?|9)kN6gaXo&^RSwDkwFU;f
zhS?hBEsFEa6cov3X_Z@%Q~pSi`;kR~9}l6mh;g9JBDis6w&A3?$XK_G3kNp}$83Sz
z;PF;=P`$ws24Q{;s__V%cYP<DG`JQ(FbdexYDL)+DnD20VXnV$ewySoqsIe<Qehf3
z4|w`{Pj5^Toh<}BR+BeAMiSrfXrIpB0e^>#yGI<z&~6W<kC(H9ppg2A5mkV^c;q3V
z(S5-V4OKIPw_Ht>%h#ZOm-0_>mTlJ4%{~QZl-lr#hoCT&8jez5kRLT2_Tc8~UK<f^
zek;N|e^u6{C8sh&fu9wK;p*^m_BwLiB_=$;lq}F>H)<vpkB~$KhWQP`jQ2QSZ6Qqs
zb}|Q_HpR{7@ACfO6oAY)1vfMKKg7VVo$b?JMP3ya3O!2v+`m9<OXPH&*{h*yJ0&<^
zDqCvTpQPn!5wh<W;KOQl#{<g|lfSO{ckT`1?UK=rX})uP^B*~!S&5H0lJ@`2m3OO-
zo>_rvp;KJU!x^ZV#e%>TI+&g_o$T$FlaadR)yegw6Iqhr6*TLPIlGAE6iKEo>|FS|
z1g8He0^CVtOX>V$1Vn)kqkw?X(p%-%Y19C}H#u{-)X)%zj|QcebAj>Pkj5cv#?$>_
z@}CK8jXZsDH8H-}j?29Mb+UQIrHT}$8zTGe@RkmA)ZDcNI!-KDI3a+@-HeMpWpl%Q
z3PV4zA3!3HF$!Mg%av6)DUx4fM7OvZZLvYNmoky^X}hg@5=cgBepY(2H`Z$EFJ35D
zhNX7}<nG25N|7T4H4SR@EbO_--o~V*Q<K*O^=-&E7FDDg<2Nh|fs3VriMh8fq!s;)
zL3AN(kixXo-JMZM9~)7*#lk$IxFwS|Sy=P|$i7To>MWcHL-RzDyBi17rQ&=E?_iBP
zJC9PNQ?X7vDReQ-H`#f5nB$c-9JFdRDtNiMy*+(ibE*34KwqsecbTz2^v89v;m9#1
zk0u8*w5qeKrPsrLWBWHJ4Z%sB)^H`N9S`V;J~L%|rT#bVwEW|&T&HlfCFw;!pLLMb
zxCGiEw;H4CJ#6fzM#G|uXR5G93{n}Sx7Ssc)cJKbC7@Z;R&qnby@bml>GxiGy4j`S
z4H=cVSzEuQ)zQ-z+iko<e*!|8%+vJgF!gig<?uZ=!g}kMe?I?^z1=EQ)vcv43Wo{|
z!~1U#Hm}mG&Ws%}u?j#2m+3XkuP#jb^(EW)Ezz7lKiFIOMQp<ap4^@vE0XEy+_9yT
z<xb_5eaW!jgV`HC0Hz;pf)QG^Dc>lbe5||0&ORV@d+}R)$M@$$Ln+Hdvrdk7p21M6
zO#kRA9n%6qpXq4-j5+-<jI6GklO{jx%INc3O208ZkMCry|Js2nZ8I8Cci%xr;yKtF
zjzl6u?oI5gqwr&(R!8aFJ)q1a47=BQo@?;_PGf+2sot-TQ(P8dZ)bCN&k`-QymGUT
z3Bb<bRtF>QqHk-Wd$Q|jF1Rh$?9i}=aZp3@LK}Kj|3^Fv8MY+(qOsHSjVzU2yrtH{
zN?`u}w)7YR<4f%D-_;(|Dik=sXmZVeFyGwo$^ay{N3GhkbbaVT$oGKF?ywlBX8mS-
z95pJTG5i)=O)SyhSyo>0TE3fTk${nNQB%ZftE;~VA!Tu&?QX0LEv@}ryR41axHwl;
zYFg3@FG+BJBUo>I*52?b6RIYAm}{2?vH%$``%Dbx`iY*NdY?*1Mr-YxjEO;xvy{-8
z+*Pr@NNC7N*6WlP^yX<M0V&SxFgQ{}zJt0aNp^Gv`{yrJanq8fuA6p;Pmp<BGcd~F
zM_%;zzJbOWYy_G32o&6j*PZ;G%ruqo^m$rHv}X^m-N>)g*XrlfY8|I?KR$DHTIv&I
z!BoDay-TGT4SX-6i_f!AEvLnop;5w;DRlm@Rc-O6xPE_m6_3q2e*Rf;PUG1;xPn(3
zDd)kfZu(2VCbRd~>$-<8T=zR2+yC-eoD<G%gMFGhYPe%VVMR(;XKw(Z7Orxk6s62P
ze=CK3T@*b(+ZYFI{Fsj4c;;5s44w79>Kx4k3kJ_CldnE{Hiwbpeh#UIjpZ<0?=mh%
z=E(2doo57I`_J9{<6Y~Z#+U5u>wxt`p>u93{~n#u@0l2OJ+-l03XdNceN9@?f73W{
z;mAKsn=M>~)F^9ruo5|HZe{Qvo2{eBC6&6MF+kdRI5gSG<!r@4H@UQxAON8Gl55z*
z@|V>`uPOd7j>w=GGq!7A5qhbORD(j!vEOhGhn42plG9-$imlSODn7fm?nx*fzSswR
zY42Was_<z2QxlrS;q2)%-*Hs5*jQov8RHzX!p>nI5tDEn)`6zZZo@oTsYet9%yeo7
zKzl9zlJ)@44>>l9ZQsuuVmzx}?%fJKP~~{8>3aCiTw}q|@GP3l2z{+j3y#NVOcz~u
zlJry?(>P?2Tl&OEmmemNp0Y13y%C{Jn_Z0{Hx8GsRi92wE81(5>WANL4~!TW_g>EE
zW0ewIiWf%5m~<zvtc#d6{Kxwqq4yK>Kl+l<RS7xQrw6}}vWPKl3-@+XPuf9a67fy;
z0h81{yT<KEL9Ue-en5H;Uo-~Ou^kEW+`g>TgjU(z{PorJxBiln6<$f2UYY<Y&X1vE
za45|VQq^zO#?}&m_QfDc*#sGiF8qorZ=>nlO;Om(rEND8=Y8ldkbCLceX@D|p+7bh
zJfX%lQk@Wh_{P58%5HK1BmxjwxOxurV5}FJxQxYQiS&5iT#sg8K|GwKDLVn+YL6^#
zrn-&j<Z}-RA8BtAO|mc}F2r5sT&Lj$XN(lv!5##A#lw2MHyWFxM?6a#%5vx1#h-{l
zLz4Z35F-|8lApe$o2iq!PtV#Gi!C-!z&?)j>REz8UIzuFrI1eJdWY=p9(k@<SqC#O
zY$zP5(aqXqhHrrpbKY3iBiCj)=aL@o!*Xx_8X*~^q@x*;@-PqS_vr}&p(D(TkVzfX
zw%o7>n<*Fqx!B@Eaq{pUyHf7R`Tw1lTuFQeoJjp%6?3(F{$8-KH4g|Q&KexOtC|F~
zGkbd?StgEqb>}-`^p%KEh6G(_NRrxohP_Jv1TMeCmof4)&1>e}Cp1TRvZk<>RB(PS
zD|U?Uw(Rh69pG;3v-j~CpX-`>PC@N~=lP<!X)G@O%<i*2gRoHkmWnL%09ZPdVe8g5
z#g8cVNTnyq4JT$05gU<eFt=DOLLS@!knQ`x{To|me6Kz;?Q41L$B!Wnqh2QZ8d*X)
zI)iRCzx+Fha$M6=Y~^!>Ug7-R1y+l)+o(rL%C+TAt*YR%0(LxrV$QZr!qD`^n)1;;
zIh2ZV#sK-Xk32{0gv9T?KZT16b+odj4R<zQ&?CuWGGjF*QyE6;f0InE+)m3*mreO>
z9l&(o^Xd_9oJ^pBzpG3JzycHNf?pA-+2=;9S*h00E5Q3?L+f4q04i{Ke+BJvEqV_H
zq3z_w>(l!WHX6Ld6_?!<SBTG#HM@9aP}OwYv(gk$$d9L@voatYfE<y=nbvN0iB~-k
zs8hQC{KXJ(0!2rS#QAJ-rTk)0u!G1KpN!)<dw;4Nf60XiwIfmq7|iLMw9rECDq|+5
z==Vdn?a_?&2=^~-nL~gzmV;#*dG|D|M4J?6DBJSJm-lBkZpFf8uwSBz!>w$f7cv~7
zeQ)r8THiM&$l2;$qX*6O`z^joHHW7<p{uVp9=&KjtxPnI2Y0RsKz_V43DXFn{I=5z
zt$2)pH3>E90A!O<q;yhl)y)t~Zr-!oKhAEhZx<G~EsQrQ!$k+N2jr-HQ*t|xrSGzS
zDXx~<0*9d)`814MT6<Nqj-0uo1Ux3<^eR7}p4vLNNkMsekj3h=UCIT!J_8tr4s(tl
z*W>5u`o;oWlIFjBr?rg**D*qT|5i-q(i(sS2;SRXY2p62Kd{VeG~Fy+-Fi8xhhTu~
zA=+~1A-D_TD&;;JG(MkY%b<r|(OymX%_j|yx%_L1dYl(+_EJ5)e=FT{jF@zF8uD|L
zNnhv57I1P+Idz^m>5E}m{CDU-HGK5B=QvpoC`|yQ3#F3MQ$PCFIt>Z^rd*;fWdt{$
zZcwJb4weFOJRu|aWQwd{NFvWRRFq?iyk{ZOW^l5x{c`hgeQT-15z8c2ceX8o6FM`X
zJU7lAw)l3=*Uhxb)%shSzKX5(H+G%!&E1z9hetd9KAdcC?&x~Fu2%iNU7=bF*&a>>
zh0^XGJIFR|?$U2w$mj68tkCo*u*KoVf!kZW1!tjmwr7?cz&#>&y`%_h3^tkyBCW2_
zOzeT95uc`+t~y?M|LJ`GK4qZU+s7G}yPTCD^Uz6B4|)9jy*(77s>7f#be262C!#$^
zf@sR6S&PvrQw)_SO1l7N`^&eTIN5^l*8#2cOn4h{76xy5GeQX4f*a)SpJzhGa4$JQ
zM$P`m)JwPL*RwN?QcsUDkTuzw-P|r7Ux$*im2WRW-nq>rs@nZ&zCaRkX<YU+U#A?4
zne1nsBCc8e+#jy_mmle#YH;!_C&kNXq#w|AJ5iH5exev2QQWB3k(VwiQ8w+ToS*V7
z;yq_8&fCm0_v3;<C_Viq2WwBs)}bR+Uhd#iSCgyfLYzNl%5AHy3$CzS!B-W~>c5V-
z`FfEXfr^s0nPJX!Q#Cx%W0yqjsq&*0wk&MR584#)hUhe(?41IlD>dd(Z~ybEbF;B^
zlo1i#T6#j*_UK+NB2lfc?Aw1@kyNZo#FWES&8tUJ!9T~KJ|>wih&`lJmRK6u3d60r
zP3=<Sx<`$REx3g{r>8>D_5ir6!XXf3W_ZeA+(?3*U!F0tupzC@Zaa=6eVNsjn!I|Q
zd6i9=`QCh|!*|JUwUX#TKlL*jejyzp2`j)A3Y~SrN>(wi?#%d%!$BHG`Zz*Kf|t{4
z*VEr4yw=uN?6VJrwd_ctY{DNESAh8+paEzWq<MOAJ*!l#5};3Y)HvQE&dA^7_dChD
zAt076Ak-K6K@tU}9vE8KHreJdixPl1JM?RhpQPcIf}>Ku>{r%XZvq`Vm9dFf8WP#R
zgw)G<=NIs^LxYuT2<vlnD0(cIA#+xp&#pVtqS;BmEpA^rlEtq<zUF8y6kV@{vNWEu
zRcA#)dmM~6o{-30Z4R&TkptSe%WH}JI*e6?S9j#Z?7!nZ`-ysFOOpxS(<^P#ctnXu
z9m+Tp=FNGfh3&{8;vYvVD3XKk;0(^n@OS~3#i<)Nvq#*Dww&MVoDrD6l6qan8^2~a
z&80i0EXz#-_}~}gb1|ChNPhaa4S}TgqY_(w#7f^{Lks&*T>Edymk2VYr((gDmamHg
zfKPnE2Kb$z`VYSRy;U^3qh<d6DoGt?wG2|DV+f~7_20Ys5K23orVLJg_33EP@tH~K
zqpgLIG_k8p%29f5lepV>q^7PW{8pYe6Pi6UkW#*`Msro9osIZDB{UG{>j?2EbqyH6
z6#tG>v$i@}|3l@Ci2dj*p4q?&#HxT5Z%Fa#ouE?b^A%BcNz{LyUA=v0Ke;91p5a;5
z^F<T9KGED`_*F-#vRMr%LxbfX(ag>c8H+HCpX^sL1h5WZzSTUVzkn4KQFhZgw2i|L
z4EvvywwpdvWZ&N+%Y~Of+#}xkMT}E;LT$13A~4NuqUpA3e9%Hf+XpDfpN4F}XlR>w
zuo2Lt+p~)r#HR*4ZBRa!ab6;X&q2?cT*r8{t;Jhy8YOKWhA%C4B9viWO71Ra=>+rz
z;Q|p`OqRtc@ZrF*Ecl>*3Yq@0bLdDaQmx5{`nh@lkN}8I2==cCrjJ#IQ7^FF6O{QC
zXR<wMJwYncxHpC6sMK&m7GY7lycVspRC(-lx^0jBBNqn=>+S04>SBi)ut6dgN$Pa)
zKWcNO8?m8%UnVg5&7_Ts;+g2W?NjyWH1%xQqx|lWmu<IWToqfj)=(?-t%}z>ywh%u
zvXsWlkiO$kgcOP<Qk*iipA&W3kCG`GZreEw^zA$jVwmPvb+W3}!p)dR9yW><PS?BY
zk3OtSK#CEG%1F-`_QA8O;<zXrEL(brwz|&gLD;?@nDu<3#8hqcQ3%~sXPdL*PZ7s?
zD|heGm$59{XXi!=jG{8EBz~<e3j29D#sLq8XH$-Vqk81Xzy#{`CJkhP`oH+_Zk9A{
z*F&T$!1@@F$T6JH?+JvPUesp}tw^8fC}O4GCQm1>K;G@s)}Lf5&r~cC)AUs#hjLBF
zyrD*A#ye#u_tru9mlt%Bb`t!INoEwjp528N8uY?9Tek=|m$izgO+=Db*a#P{=gX>X
zH$IXIp?bB2g}`BH#YD&_UkZ_1S~}}x)$8FOQ?!NCw}&rh&O!6`GR)_nJ;G+oL#0eM
zY2EDYyA;x02O`Mb{-hjXawaI|#Egsi)o_3Y?XhrQp;AJl*(HlVXvpTUWnP`!#>G6z
ziS*g56!jM~6@E7(UV)DQ-r1j6%WARC-+`g}Ei64!0UDtofA)A0k}o1KBh5e_lR|*-
z2my~)4qQ_wrv+6+_AnOX!J7TeMe|9>TD;4DtZg1u<1#L45;t3X@D)WpG%DO_dcyW@
zDauyB`eC((z6)HJ>l^<$dibb9|ElisaWV=N#q8vU&HQtwshe=#WXjXa*ZP4+5RjRK
zML4?S6r~CrutaE9UT)vcPaN%@I3DRMYL+=!GQ2RN6D2w4#XwB)`WAhYz)x*%+)SK6
znr(_P5d5t|;qIVIlaX5_jTwSLZuBZ|BzlHu^b+jj`TJF1eiINOXy&5P>Y)8LU2xkW
zTgz8?Qi7d*!<#vRI|=WP<{$G0M3NizVrPB2rs;@&y+dAt3d>J{?XA-0c7}8HV9of$
zM<@Wa14N;D<VYa}Q>k?fHL8CUx{qeEzqzqBJ@~CgS{>@Q<G8ZfKhM$?<)0R=GcqLM
z-hZfsm;(+G`TN9ks?Y%&u%35sXSnsYDfn<uRu~4y{qR0B^eC$-4$no9?S(W;kq<;O
zp#*|Ou&OduzHai^XRjC(V=o_kh?=e9ou%)k@AqfzOC{;JbAW;qEV<~kj3t;Bp`sNr
z$Dy>72N`fHNNx~wDJ@MX<PHwCBd08Jx7#wS8S!Ld_-!pv@~B~~HEa0Bxe<GN(P5Bs
z(~$4%kK2hNX1r3)?QHUOf60MmTN=8f5KXg)+xOSu_V6zSO}YB)X0aa53FwJ@?mqV!
zdy_Ieor*GU;{SGsL3)Z+1yX7Q#8Fx1@9D4HAmX89S^3Mf*-+u_Tr<8-d?E}!QkQEH
zPl5^uoQDm_`m8QI#pr6<H-BB#)@%HV`pKkx_}NBn?XA~622Wu7EolObb~+?AiS41R
zCmPC?;-rhptpF`}f=e%d{;SRuMS2M9YUTF>NuqU60W5>y_|Ao+^_xOAwF3t;?xDlh
ze3b#^PBmGWYe6WY;D-mXu<15|$UY0I8V9;xEoCfECc7boKJ1~LZnvK3{0eG0+!gd@
zJP4Naht&SzxnC>v9agg~hkiXCYoj+Jff-C7FZ~xaZw_Vt^hVI7C-nfA#OswzvAIQ&
z$@Z%K*7NA<?!(PWqeBk&j4Rb)Wk&scxNsU6Cg!cPHu7vVceOKHsQ>X-`xUq(2}(Mr
zA=s$j^F*1uoPMvpdzDQY_>;t`Y?<M=T?j<!YiC!-RdM<7>8a;9shr|5Gjy%mXbFpH
zF-}-glYazF7)nP0L@sMF;}{Q5%OJ#Crm52k$E#Tzw`z`%y<|h$E8pps=VK~*8!*>H
z{{FUdxaQ{n%Z#EBffM=cHgWo5n+1&-*J4rWfP|ELa?4w}0}&q<^4@l`+f3zRJRu?*
zwX?o5NE%<6xN1K3Azn&+tqQ2@2tT%GkG@s1;b*9uR)yZB!eB)^`j=M&1^(q#YBbFb
zkG1e1|0T@B64D6a*d*JMdcTUswlv_<P;j0{0Z@Wm_78{LV$nQr<IXJFXMK$Cf1L&H
z&1>lV!|lid6ag77;OoP7zJSQ9EF94Z_$y#jGPJs-RwQ7@wJEp0jp6NxKT!W(0>V6d
z?c<f}Yy0a}KhxY;Dsy><(j<{u>_z77JL5S`bM}^Ksys|0^ZMBs=5>RE+Kx2g4rlYj
zDf`(*X#1SIW1J)#-<P7{Mf44GS(3VY8;<PfeprUBrhTK&#LRqvfx;;!|9G)A$az3E
zicL$F_p{mLw|D%Pfl3Cue=@mfx9`70dLw!v`6<({6OB_T^#f0cY?}ievp+(biOy)4
zf*2NFiaeU~%^7y_4d%&ML;iyYiD>K`7JH|zn@(qIYx@SW=bu=|n2<FKz^2xaoQD0z
zc&9Y^jAMtPV3uQ&NS%K`2Wl1)3CL-F=<T;X{qegD*5JVTh`4i>bOS6j;R(A{_BO_h
zupdX6k7tGbPQ64X!u3<tYWv*{Q1JHM)kY<l$8N-_2TiqoK-L16V$PnPrW_^8gbfgN
z{>|G-)TNBB9>z}8cMyabuIKH+hC<Q!4VX*9fBj-V#B>n258%WG1*%F8xzX>!aYshk
za@?~d*HuBLc11ud@_{NX&$=4&Z$2cp9czPD5(M{JTJ*A^cxVAYFjx13IqSBEw-+?;
zGz|*IB@TzC+A~NSG`?E4ww~@0^R+2-&yIQ${&m5eEPeEk-|UMq2%z)7{Dl1{5YU;R
zjhEBi-}fe`D^@j*)3{}vFOgcc)i`YrUuSdq+zZ%{Wmj)juca@~^50dyf({GkalIjS
z0=ic<GcXLY!~F`!Ifa>Xnu<}IQp{Mz@}zz9<~RyIp>wNy#k}dP!WlQ}ruQxYHF(HV
zA07%@odIiANiun%*7=GTSagE<pU8XqFzkJ1A{08X;D;{^aBZ&pSl=L`<&Wgh2*2ep
zOwK?(Y==h<qT<peTf=#w*+oL~#~I@NV5K1jDrcneq_uBv-bv@(RIY<wqF?`)z60O%
z;J;(W4mJf70Ey@EQGRr=v6?J>XD<(*Zm(LRhlB?ne0;fwQzIyo`L&0f|2aOQQs~|F
z5-1%qR29WHe88MAjAyArzY4dePE)nCVUp!lpck^#G@$(FxUh1(<n|@~nV$SZo`zMi
z%lii_gulki9@Oj?n8PDdve6)HN@G68<=h08<9D5vvPol`m?JAq>f&hfR?5^K;(oo3
zK4ko2LMqB|<zV02ssc4FInocAt$~7nmYYG)pBTN7Joa!VF^s|gdovk7E@D58d^;mq
z+u|9ZUcK%rj5cAEU>s~5VF52}A^qs2w+vu}rA}Pa#kunq5zi+VbEy19xm8h}cxhHL
z-57_>N5^r4zuZcETv%v|&dddWsG^8<<q!zXgjJ!gwSim-d+44l5r7G;h>5xl!{k=}
zpFt9c|8w%PG)X`!e8ZVgPDQ-*<I3SVTqY#{&*JCDHQnWTcx}qFq}$I6*M9>sIK5td
zzxsOh=iH5An8&HVKf7KzoT`#_(63LG8Jv7Q3w^9-(&m@7f96MjGx<%JF#o?&G&G{#
zi&dnWxJ!Tg5fJbrT)Dsf4BA;TfPk~FPv2?Kb0d1cN!Wt3)&f~OHQE2;+HFZ(r<^0{
ziRr~nY~fn|9@7&XrljP~t3#mui~@wqQGi^6Do`4D>HSSvOQ&Ia^<U|H@R{0Z@__ze
zoBC7x@8F2|a5*BI_wFJ`;Mn<paW%WhPf`ig<9!W-9vzVK$<w_cUP-&SMK)d$qPM%5
zMVFYb1|hfLO%2Txrd_quWH?LGe5#~0u@V+^lch3HA@u@9yqSG+9hqnZ^WSDyOMwoB
zAn@Z(2TB8w&97EE58oGPe!`8-nS9>`M*H;{6>d%#{MdEwkt8IdI9BQ}C(}u^64D{;
zb{Wzjgv|ZRGt+<4Ver*<oMJ_TKXk`zSfphe*cZ_UHFyASPCuQwyHS}eWQ}(6duw_}
zaJS`Xe!1vfg`RNQcGw3!v>`&-<<w6vnfx!Ji`jwB$U@ja;;OL)LqFdl<N|u6ymMzP
zG#?-zQ$l>!`36DRdl~DfR>H7(1Q8%<pZW%;)f!&xi5`<MM|b#F0WzxLT`<Qm?))5Q
zu_GK$_YYSF-I+HO5m8$I8euj>dbTp?Lu1_J_*xLv&+eeKc>H!7mUwb$yL<Ia5Yg_a
zC<-2q4wVshrS8AZ*iav6=J;ok3bCcB#!HC~H>%Yq^RjvQHj!~L4#U8Jyl^lt{)kyD
zEoac82sRBXg+s?QU^3228&5PjC1xr#?@CgfvN*jsU$~9!;>5=hc`zK_?<FqSou_hg
zk*N$kJUnWvK>@Q-5xaX^V5y}fx<#i@xZTDN4bnSlfqy~)$0_8*WaazihFBscRm|qk
zbBOn~wE+EUZ22_T(-x3sNNdV5a)9Dg0UE;+*K<%ci?flA&=9`UgR}p<#YSpZ@*Dij
z=@Ec5^IsQWm7E==0-sGT#1i~8?50Wvq5t6?-Wz^bLY)eFYvkkx^L6v7-y;GkB|4Ql
zT(}J>L*PbAcqCi0=)^ZJ<YLRf6e7)NweB}Kor_2kLQGcj?!sHIlvVfE2fezpzth%B
zV&nXd3*m^g=tc=(=850XN)7b!Ih~#erQg%>R?7Qkc6xKYVn8=NB+m_b&km$?zo7U+
z771lxjhHa}@80RG6^?h&WNidIZs@pJb0x#vH|(5*i5r}yuJ#w2)Z5_A-}zlcuD>1a
zH0!lx!vqYmrXSsVx|hwF9Q_9-+0)D3^d1hR$m(MDfti1Pr<{_{H9MbO%Ng+5t_XnC
z*vHeG^HZkBv&Z-Gqc7+8AE=No|LS%uAzNqVs*-PR`3ezj-%p!aB`$L+kM<l8z##|{
zDhP}MGFfq>LSD>X*Vj<A+IUPHJNiV6^LiP%lwh8GoTFddPR==+`ZU>_OjUk4yExO_
zP?6o$<b!8PC4BV(;z_aGSuro4i_X!XZwHr8QkUL%zVa-%!!oP4x+Qbq8Oovn<@@4=
z7BCd`tyO5Brh)QudJkaCSj8M30f%R`lkZ(4kzKmjGb+-Oc4Rm_l&0jv;XCf#>xHJH
zG}(b9LIS1Md13__vV*gG0K-X*<wnXlO=px@yx;=ubVUG6zazkRS&^){DyMg|J7wMp
zl-fWG3(}gB9rG*-L+2Vc@7di@BU^jhMQvOL-FyjBeRQzZsh)8Gnj;M9WGmSRto`CZ
z5$q+=Ou$!C5*{NIV7*S)ywasZUBV>#*&*tJ0WaW*KWAi|&h(%R2gYbbrWm~f=sCUS
z&%%W*YQSEKbao~9N(+E;s=u=i&}i6EihzgUZqTC662m(!LS4+-SwmqQFvjBN888Xk
z>MQ<CM$0T@HGOlmLAbIhb5ePB(pr@^;&VlngNFU9Eq<Q1xR=9?L>AnkD1R{e&%jq9
zzuetG?MCceCWJ6elTt4ug)vNk4z+3GAc;GJlO%gfz^f6ao&T`t;lGS#v}MUi#&3V}
zCGK-N4IMr=jO=Ru2j#Yeu==y+pp$oddY6E*zCuuwm;wNo%c6ua!wGK$Un>)ue_iMJ
zBOip@vW;;KB3?b%XD$H5V&X8les<Z5%*v`*J|XwZO%<g_llO10_(AsoOmH2l<UEbk
z>$i&lzbR7fW?{6tZZ^R1q`|C7G4F40O{PA0`<`y^UrwU;ir!0Ua(X(bS2@mDgxH(}
z{YZj^x)+^J1<0ZAF-($V`)V@ISDn^Qx(q=$--F9sEZoU{5E#xMjPCet__UaTMY^~X
zP7WHqJ3z5ydCz=@H&w#)bhYxC-_y}J=(9US1iTlrrqkl_yA><8a<XWMwQ|v8$K?9?
zrpI%(bI`8di&B<HBhI9}(M{WsLZxwOZ{WGpv$mYc`m9s01;gIK=GwGnhS)t%`mkwE
z>+iE@G{x)OTw+xcgukEAbA&qrycC0J7jfwp)1wXUxwSi<GHgoVjE*fib`SKb)^Dj1
zamMM!DYz-4nG#y94w{tJ;2R|oz&qkkxH*56@=eAR5`BHHD(xa2A(tp1oX8_|kK^m;
zmOh$R@kD0ifOAk8sI%@<g(w4G{LAZN430^B7^&Lvv(i0y@t<D<poF5kyZM5{wEf~}
zb1#Xj(bE_BCT!$+Ef{%)u#`Y1cbP~e4KW7rdC<WU9C9n#Edd7uNHu{4#qsc_v5*^B
zEg!%#^##HmOn+m2^Z(iYEz%x=bZmEK7a5WsFw{V#s{5Z!*s)??v94P)S?*+`Z%!3_
z*7tB{M9!%=suH>e?gb};g}2(D>HS<H=J(mT<_34nQ%20Cq`pe*9LDyQ&^QwhJGDOT
zJu*MMXW@muX=1s0dixNq3egn^F2SojW&oKU;8`Ih+s%!Y9YqiNxy)303aHu4MW+Ia
zRqunNUxSLIm~6`m6a|QH3)^66@fTjr|G*y9E}`z=mmC}p4C9@2%dtgK!Zg~xIl0>C
z#qX8c7#@>tYtGFV<_Ich;bK!sRA)edl~)f)Ok-%+jnX5n<;#eim81^`fhX*FU!I<w
ztFiAaY6(;JW}rB!QKt6Xzw&Y_^RF)(kg2wtFUM6JyW1=(l2Mx-gI>a}ZccybfsV;`
zD+kF}k9qTF8jp3F8Q!rso(TsQ8Hqsy4`v$=$xT*AkVQ1#f(Kb$fzc~-CCgRp;;l#y
zKkG_v=S`~)=4#OoJ@rCtGV<ndb5HZr-pfVmG%@NOG3O)^Mn!xbHIq#F!W-#A`gb_Z
zOWpqG&u8~t!)H->&5Y~%)?z~nU8<BJAEkQ?X`q&bSTg`i1zay(gZ@zpeq;d?xjOAj
zN`l&?+3WXcm$%jQp{-;+eSrZ3okY175lNMNRd3YYJ;6qNxp!E#0ZXa}`_BHv>G?ES
z`=bmZ5>JZz+{Hi$9RMQlIFL#s50dZ2>Zfv!W>U!a>?<qV$Ybe#^{<_x+w-d#bdbu7
zrWRGEi$m_P`uV5QclLTd+9<Gn;A*8ZY~v?~?&kF4oy0E}SfMx0S~soKZV<+;D;icZ
z>LgzDxq_#OU;870gb#%EV4_<*gh-A<+mPBRmD6*wcX^{TJ$=cqYlox12{J-R8Kp%n
zg7Cq>UMZxzYBIKF&YGHAkVZ`)kVSXT%EzT_PNOpm%o}|G4BwDZ1Tf~e_g7t$P0V&G
z<_d5-sQSgqYkgcFNS2G=*zA5G{LS7C<3L{RPfQ#*+Ss8+lP)zSjd5YoW@yNZAJjot
zO$+KIov^}Ddpx=?ilc!X(&&zq+sh?XG)wDVNr8WyPt<bcnZ`uQ*&mwlmRsFlhF6by
zKx8Qz-A4eTKRn5i%l&Z7F3#T1KXMHGe9NcSFBxd-W~+CSiJ86fT)lWuzt`8Rugghx
z5p^C^<|bWKrLv<KXnNO>BdWATBQ)|N`J{c%cYh<AZ7z>&crvyH)(Ios>r2ME-JVJ=
zfwtCY9R#yI?G1|R2|Z=^243A~pNL;TKm6TClxO=y8eTlRvN7bX`E-6W%YXW2W)z%r
zf5V=Sz60n;95#J@yYl><`0xVg-NZ;bJ54EB53P1?lA-c2bQ)Izd~uD?dNcW*o2X9;
zt=I<DgFRS)>A}+%zsJXF&juPw4Eo{Z<4QZNbo=c1UGmc1B8j%$0~|HY1kIqxf?vc?
zhFuW$NT|^#rUnozodlt0jK9SF<(XT<QJ-D>kL)R?4Nz9I%ii9qdkBwPnFy9ceRW#f
z5Bsa@_PF$y+xON!7j8i(pQ-fdEfv#r<{%FYMU#lS!OR~JJXChKxCsBu6>4xPh7aIj
zEm#c!)e+|~L5aSAgwY7B=p)J6B8+LdV}H_a-W_PFU7ypc*;=2Ld^$<H^IOj@#1zQ7
z(I}r1(6U@FH+NM<bO2MwauLWo(+U1eg-(wF1CZ}ISJkw5rJuA~wMqaUO;f_YR4s`D
zY3ZqwQ=2Bf>P|5*^}245l}s1^8uD2sEsMa;Fe^y~Jwi&IYw+cMhD7Y(UEhhHf8RI)
zyR}{7Y1pQJt@SZz!~vaOY)Tl1e?yAslm}UIo+ptn|Ld!Pqxdz}iUYioF^%HT2HmBB
zvCPE!=JU;?>Gov07QcE)4a-9$j^>l_YdeD?zavYGu+ips*oV9XmSr30T>+l+Gb|Q2
z>WYR$&dxUFgT~A=ZpGe=SU*%VZt_ELf|=@OvRcpdMCdg%EXy~p%WZ7My7hrHAeTEl
zo)Zi)irxx=Ittx&cm)2(tlg(9Q)l}t10mZk<+!nC5&B4+6gm~eb}95P6|iW5;2|ry
zG?an_`8OhjFjX4Sua-zqQTT?F>7%irrX;jsjf*p_#6GzINuQOcv`BaK()*4#y?c7|
zUN7#{w=4_za0gAJsE`7#L!Xs0`$GSDF;YM@3Zy#3BpPY=C8nj7V5E^#`mHq+DBc0T
zGyKn+yL7ajJY_Pz5+v5s@NwA!O*YfY;=$d3YTGBI)$m5bypiaaq6(Y2E~`w3C{C|l
zCxQGj(>(iEsNyX0>FlC0m)w0>uYL;BR*$#Ra%xEk>sm6_?P1nJB!1i5T~Gd_-#&0>
z@+*OEjLYH9;rbLwBCcE{qhY~A51qaCQLzB0W^?~zvw9WxlJ>3!Gp0*xq7T<hz~x6x
zDX%V8V$YrZu;2s1ir*-wb}{*7Trlo?O0k~Z0^2h27EqK&sQXQC6T0b2EZ3InK@zfk
zCK>N?0Ab+paw=?~MA<9#OW>R#U~8ondA9add1ql)ZVUgB3=PjHmW!N(0OMx+xf`EG
ziVGCByLi3dYM~7LeXw_%6jPg?8X9Xd(}}-V=CvJ{W+>^ko!rd6J82*O61o;4UD}Cu
zU-J6d?2d)}i%|fX3EHP}*7VY}vFTNG+p;}quyanCN()pt=TL_VQTOb|-x>(yRHNJ2
zDHi-5Fv6!?JZ3%4ceEJ}BJ5z=?>Z3|A07BU2jVY=HzGR3`KijOQEclu?Rx^dxk+7D
zRm&h8K9{x~_a$!Aqb`3|V(-G>kL1AG%3*Q}(N14ykrrvO_9mH!EI+8pEHN%LxGy8-
zJQc~HMzIf7R@0%keh%CCcjZignbZO6@s{pu1y4<jw1<&SBxO>vY3(!6B-&5$By8wW
z2J?Nsj^aaEs@<<%$BjAUdv)1Mt2vC=8{ST?H@m)#(uOk&^^Ww&X7Xf>>d|XI5YOdX
z*Js?_gRgk$^&<B=c|R-cD9t8Kdmqo=k2+OAP9f58&ux7hq0@qf;ap_Uae2i+hy)eG
zgHdJm)Q*4yeK60U+p(6b-4F;shshvg<H2eB_N@WA?x|6#5?_z*97a1Y@JcBl52xn0
z^`B8%=%^u}s>&I(b9yK`?^TzVf{$V8;_x~j)1{hSFPUS|UTSImg&#{1+BXaNCjDbE
zco(%^c}t!bj|?tRqi<tGhbK1*l>dvRiZ}yuZ7VJ_1$Jl;EJFd~JKWA`g3S^~qj2ew
z=d%lDorC2K1A1-$+MP{#pEX(dX2S||2cv0kzB*>2RPHbC95YE!e0ckDe!r-vt6to`
z+x_4S`JU{rrIhvL&l$bi&kkUjixRpFpx4c}Xn0g@gzwvky1qVl^kOgk9I9uXeL!%*
zI3<8J(D?Grtu5$|IY*1TA``r_+4SSXY}W8GG&CO3j#Qm>6&x=cBR3$;yLWLcQT0%O
zNOf9~FT5pniCXZ=TU;3VRnB<xvD0wcdVLg*w<3Ws4}0#XZ<jiPh|rCRwU<#NCA#?1
z{OTGG)SE7~*QI3G$7T+F_`!B9maq$X)l7d%2vloSuf~iq?_+zhjZ5<>I#G#zSN^lN
zy|*=awXwY(+WxB`m|AcC8GLeHIX%dZGTxezj81UWw=*hMu6*O@+2;26QcBvS?mZR_
zo{u&MP?*@tE7TXm=!_+gSd<q?HdfXNr3H>^e7g7h#_n|TYVVh$wcn>(%fM_U`j7Sw
zQl}KXq+ZkUN}*KqP5UAZ08v}MIEu9SQTia{X2ydg_=|BjSNiSjy~OMoO#LXW#togy
zMa*;!Ur1tY6O5J#8cK&Lxnfest7waDN;{|0&O4pUMzp{Ch?BmzeYE!TCd49VQ53*&
zd*Ns{9Z;_!cEeoa6Ly8Ps10zRCL`zZk?L}~8P(h4h((tpR2QL;1ZtmG)rBkL9KwnE
zT!6aZWO8|yv9jQO<&wIHOT-$SeKPuQct(XEA+U0^+)O97r0cNK$Ko3P<*`l2q!9i)
z-+@jTeTSo4-l#T+rX-#64LqHeh*>Suy~3TnoWCw-yj#4%$K^UZqwy~aH0r^c(qsUs
z9Tk=fc<N--syrcZv?&(vP!!h|i_^ra9d5r51!$1mRQ?OUdd;|t#1$^Dp_NH=9T(El
zWb;35%;jttYh7#1yP};oO`|><P7qLvg<gBtW*!YoNy1=z?zaSBNlAKsUKqW6pp_T0
zOUX~>Zpw78?yPc&7V<4j7Lh*&_P3gYq{9|X;@YO`NS0tM(Gve=J$$1f6qJkwLLXOD
z(u7U1DpP3g5LLHZiFXA6mn)~Yg6_%wn_1f&5ghi?u1vvr&M>kD5^O?Kwp`A>`4`g{
zz7?9IBeU~j`)Kn>Mo7$ieNXqi6IL#w^qtwwoz6G+$M<(q6Rl!0-MD>oUkqh4q*!0w
z-KYKMp=QqR^7q-FA$-mze@=F#G=gw3UU0?fhj-d_5$7dAtq_#K=Xu!L_p>@t3%l6Q
z7HBZMp|k4$)U{5>HHNTKKATpmyumWds>?`|F94Hy$Fs|&Syw4qBBW~HGKnzv&?2ot
zZO}<mvlLDQgcaOVXm;z0pjWT_tA^i&gFnnP@QJ18YtqTHNabNOeCj*})uHhq>7^(8
z+9=(FLT%sT<MDZ){&Ha3RgI59aN@=!BM~d>Ox3+204H6<HM$HJa-kvQjVa<d4uQnP
zw#_rB6#+AZMD|kKyRJr4{{-iAXuCVyy4kf6RNakHe~GT(v@_)kMbK9)wJ{qvUp5R)
z{J+bL6P?M{r!QCH;5JJ&+<<e8iPAa&WYEZ8cDr3fI3U&1OKKlpLAMXb`0i5ApYZn|
zd}iVLceTM&WTVlvgz%cgw6kqrc(dkqCmwPFYVbv0Fazsbho|mZJRJ60a3tH#-9nxo
zLBY}0NDgX?69DI1tXy4Le3@#cvt#6e!*wV`J!k5(ip>>L+@sNxf1F_GXZ-N9U;77v
zIK1g>KZRoJfHPlhjBENhij9o-{{PJ@E)h(aLlvV}kDmMD^o{Br)AlDr3a%Nw+tdaM
zp}O-V9Z2eqLth>?y}iR-O>2_v(+`wCY5XuCc+muHw5l6Id5J17EuhUD5AN`23b^<T
zg=nfU-5pf&+{ym+XB>VC)aD#n(au;4q)E?IxN+T_<5(!RaNt#3$G|o&Y?lNnpy2<K
zEx+6<-IAwGli#<cDI3sBs86aNPGVjdIMPs_tRuN;NDNQme}vHXAfQq4$=6U<wi*Sq
za*X$JgOf3=q4th(-ma;?`xpbO*&!6JcNF7%{%-J=ODd>Cy1h0#ab#0&7?iTuw30?a
zqkpP>YC9Y@tbNr|IpEb+G){Pb_=+5yI-2eH-A%uwf?Q(5H=XY99c&DE%Fc^jOpZ=2
zs3u|>=6O6qKr&8FjXrJL*DHyJJ*rM^8wbCw<ETBzp)*A35y829aVXAUEnz8;;oDf9
z*|}!$`gPfcC{cRW=T;8)r)wMRG;w6Jl3x(jSG#vajli**Ipb{2!fx7~eH4PVkU!Sa
zqXO6L{&?hvNQaXnocsCg1Uqg()w07SeGXW)L}lMneY8-#qP=(?M-EY)qQ5M-!kQ9z
z<c9Ow=5k(Y(_EC#h@CsRx?O1srR42N3ZBzPq0b9@>d4V$STL<rlbZ$9Jnn#N@4bk0
z&}zKC=Q02|Pp<O{qG2xtOdZ1H7kTKW5y#o}RY#T3G>RtZ%v&4~?#V(AEGer+Kq?(W
z-u0enKE>Ls<jZvurlxm9E9p2CFREG_ayVQLl6&^rbfxoInt=$dI$Wzu5=1F5WKGYg
zW7OW#Ey1n7j3Oxx=(TF-u^if1@^Eu6<+6q}8A!H51*ypM&s53s{Rc@t#d41Via7?i
zfPCz1TmTYaVEB#B14)^Sc%V;7(3DPTB9S2zlbxf(VKQL48&%Q98-}r`mGlJtVWNZc
zDzIlIAg^kd$^C7b;RW!$N@tCaRFz-7&w`!ba;p4bgxxdmt{$y!U?D9MaT4hqQ8k;8
z`Q~Hx{(KG*5Nv8Tvcj=9D5v6injmK~Pe>lJy;2YGP5*BG=N;07yu$^M-xp>qdOnvR
z#<v$~N7<3d#_L;6XHr(PbT{@a88T(Xgz<r`?wUAd4ZUA*TM=6R|L5%9y5hLDZ9)H)
zeA>&q9iweawq@5-B^Sw<>jos*da0HIBq0!RNRSP`zP>)@jL1ax+O6uGcJ{IjNk+ts
zIme}sKKcmk6E>5Q$rI20Ehc$W;)p5+A*1jwhiiMg>M}3fIHKn0Mf}tqg^z7T=Y3X%
zoZ1(wNf*I%tdsk!xB3%!Vo|gqge%h!(219g>3XLx>-E{gaW>@C_77wEtm=!?ICKra
zY|3t^+aDB#QZx|&!zyzF^$v!C3g5BU+=stU0nQQ&QsF{Mc=^wn>=a_LvQ7FR=Q-Bs
zDflW<UGv)&C4%Z~%O&NyinRJtvaE~rpjM@B>HARp4rkOASh%)h^KIfe5J#pb?VO#2
zYRX?S=hMJaAoH{|uTlO?Rubjsp0bMz>JwrRA6O;wVyR~xR3dK{G&36fF`9#U`<DKx
z1<k#R=Y-JO5MCg7L~|}bOy2voVFR&w!PWT_JV^{KTsiped!Ki9aN$=^jnuA1@FSHT
zcat^VrR`a!Th7%+NF1tAE7e_G=9MKa{W9bC>W>1kb-cFaaNR1TsN#H_r&if)I>0~W
z(-azJ(R^R}F<1Hr?_WC_n$?X6Tcy9~GbKgKm#^i*$6;>3RYtq0gLc+jkTP`OyI!%Z
zlXePP^??XC&)@`1dYkIy)ubPG4;3N^X}|AI7-R}Eq^y)djfoLd{u{k1<_T%zLRCei
zqUC0;h17?QVV=(t$I!5i27Gd?V4uakIvVY$pn@G$m%&a;^TVT}OS8ji-$)U}YTI+6
za^(GUV$y+~`|FR8=aB;#Q)<_!Ow2B0hwFo-BwUGc-?M6wW=MUW^B27uX%!oRd}MxT
zq20eaxv->GW|=mg5fu&rcXsul7?=)2G*SqlZ4pl9>@z6WK7G`G^p(tk8Sx*pZ%->^
zE)+V)qv8#&O2LZ)IIXX=6Nx-b&hXOZx@SYmetzc}?8HY*l`J+y|LNo{bL(a<>|c5D
zhZ}L}$aKRZkz7)snUxKBYtqujYFI7#YY<Q>Zn@x9<NNq@A`nbVyDx$KFx-COTYt86
z!<lAo$Xi<YWe^$piH#Ik+<ZRebjqRq315`Vg`>>l*q{dkkoV$fJnfTjHZ}V54WkHx
z7BNs+X>iUVvCB?@BhuM1qaTr7)SC>8u;v<&6h(*)8P3M<`x^&G3hM_OCIPe0i^y_`
zG44;Cj*#lN_rzF4OKxUJQqXlqjD}Ro6k~|HygSforQ8Ac(DaXlgU-El@@9sD&P+9D
z;@cw<0=F~M?!TL_r!t0)b@VzOBWFCHsnkTTS2QyRo|T`6vP)8gpDk&J^V_-=E8dy2
zTB?MG_+P1WCE($?zX)wbD)kAV0PAmP@6P_p;p;!9Z-)zFE+`=+0vrM8Q3jx$#e_X-
z3IBJYok(kqIp9VC%SQ+66`<A$Z?`Xh+fP%`HP?>Y!*XA<@a=b1gywV^vr_@%K(Vt2
z(-U*^_upV4xi$sh4rBb1lJo1co$+Q{1Iq<jiAaYnC_H3>72g*<RLhD7Yvq-y0F&VT
z@<Xx6>JH<qvlf@b&J5Y8_-P{IKL-g4j%O)keM8Lu_mwVBR<9~`RD81v?n@MNfW~XW
zZt&Jca+vV#ptF3qjc{z(6`=;Z>6)rUL3z<5eY4oqp*mRTXpH`vBzr^OMP|(5+p|(0
zXu<{FpHq_KQKY5#`5}?Z_KVxwI|{Q-B8@zBNGEG102vR|xHC0PP7aLep?mk$U5*y~
z-q-LV&tm<rfGQPV_Xw3u&wQ+Z2j<mxgi?JaeBIC&l^N9!OxoG!CzErc4Z7+uSClOh
z)Bt8{_XPX<ZDvLNJn*qxfp_n5qkqoeyIIP$p26(A-tl16f6{53yHy2CsZuf^5nuJ#
z(|0GD^dEHhE>xuRIhuf=D0Qd9Kk@H<F4381O@GDKY<?O)b(L@Ae1*rmD_Dz*I4~f^
z*KMIC23y@DXT3Ks(h}j6hfok=>*iLj5f1HP;EROoX;b%t2@50?<PqkvNuUb9OG^~~
z{I9QK<M#L7fH#KB6%<r#R)LXs(7tUj0eVK2Bl+hxaZDS$y!~WJ`-S#7^@zRw$?BD%
zQ;KJ&9}*<Ajx7DTd1x65uHXKb2$y_~i$BkF@QuF!7Kmxxh@P>FcTMoMp;B5gQB$St
zYgg&!*GcqObtw(Nfs?N^^^X_uZrV#1|19b#xhqSI_rAa0=*7t>I=wM`_`)@7o14mu
zKt%K9^0NLa2!EOw4|t-#>L*cSaB%h92a3^segtiA8!i(jr=P{XgL9ZSn53E(wh;RF
zyYbQ%@zdnkUY(<0JhCD4$%oJHY8jQP^=CQrs@GrPiNmd@4D-f(76<zNagt=_0l<NY
zPI)lu$j4vaRj67qzII%jd=L%tRN<Skcjj=z@t!y#Em(b~{;lcZO37phvV<5G9}+c}
zrq2GRYPTKHhN#w`Je*!U978v=W<Ml97t+LfcN>z#fCX#ww~h*!rW?^Ur($;x`oNZ{
zu))l}D=p9R;+w14$#HU;rEK!;>y5YT(_DwJN)Potg7OB(S(nccxSih@W~>k-#S{;>
zxnDcaData0<>W}{9}~z_hmlH76t!4J*t5$b2lenG-~2S(*h}!5C}pL^qJ#Byc03--
z_1;(Y4bePc{!p9dPj;QL0Il;p<sUz1vEV50?~GDnRthA^M*&cS7wQ-PwpPwx$i7ks
z-nqIc&NvgEuYaald;$>pQVJi<H^fr-o&GvZ&mvqRciVu+E0z4aG=Lw3eJg_ME!PfB
zF^AHP)q@B5k>1GD_`hKx#$Vw;v=_R6H~$C(x*Ga^>prn4pZ+71R5gy*bh$52AF}g#
zhm42T{Bsh&H|2q^E;N3|%petMO@Xijr>?%V4<{~2ZuWUaZWr7kKQ?%x?=BX3Zc^*b
z9cQvwMg%=pTEANPbbpcT8kWh)3fd&o7sE~!tFh~cGQZ(LYq;aVn{_fUdx!f8B$=9V
zGN}%QD#7;}ychX$^Y@KhftCsd(F}2G)K|G6ECUQ;L_i8H#fRlbqPYUtYa_z45%6no
zK5zzu@|7=(Yqf<AXD03}|6D~FYV_!@n_|Ddf>Vvc_`RA4d;zvtQd1tR;Kqjh!^s()
zO;K-jP;3?Gh}X;^=FesqQR&IwDhvQmqZT<l3+tL5@Z}4?m~Nu9B0>9$6#hb)vAVv?
zqxS0w%v<JlGy8CPRUf2d3rt;l{MQw}&chPwr7t3wPASqz`YBV-+(C+Zu!?7`1SkOa
ztJ%rJoo@u1Kzcv>r6%isI-hxkf@E9H$q97A+czz@?iTbddg*(2U)(Kw-k8sk-mt?<
zwWGw!16LI+C%y3TgRl-ORIkgX+u#LTm2YUL#~H%|-&@~2tW#PNlON9mKRm%qm^=(~
zUoyHRI7abE1OE9wwu!ZOrjO4p{9sYUt39aqNKq_lL#dqM9@h-JSR*uZn_%JK^!;re
z%#~&re78_ZMe4=o?sRu;^EX42xT%f&>$IhU^^qSqH!Z}>r8#NYGe?I@7gySDv9uHG
z5Otyim~F^ej|=7N=4&ZtZugId2XV`cy%Z7xqW_<_W$x&V+D0NkGQIlZ{gTN1b8=Wq
z7#+kn65i%O3En_Y67?pwo_!h(S~u5iWgLh`9F<AmcabArPz-0@`T_n*TOE1z?^yxH
zX=u$-uzr?HMX=*@<y8DZK1~Nyl5_qp!L2~Z^ngOq5jACYi8iz)w#k_7yPcdvbA7hi
znX3y3*f9S*45nWuZx0Wcpd)HjUP$kiEyVU^Fxd?ol5s3_MZlaPgZdwQZv?D44sS8C
zZMo3XXHM`uB)iksprZ6xEMQl}B!SP;$920vy-K+1Xm-m<cTwDDGT=mrn1c5wUcl=~
z7(d*YXp<@_=I<DFM_p!QmFN(Qr(GFH5JaaZn;M$3)f$Y;U}+#H#U^EhAMB(WA2pk^
z2MwOIAJbuU`Jm|{Pp2;qN2Q51-N%oNqhBU}NJc-_cI<;)eO}V6MhLr@eY`rUW*|ZW
zAK+NJ0fa^Q$BPRb#0m-modGRGfvSn&m0GEBqsOK!;@%ZbVsmF~Le_tl8s9~L<hCpt
zK@;m-UEcrYFb}Vfsj1!gbaMD+bDssNB@72jpIgSmHTCDLYN}JBlOzSh-$#+1FUwBC
zvTz)~*ty}B`xbl5B*f;3owU?+((z}JHQQ%|cYWq*<_Na|W{>MWageN~pd6fw+?V6(
zzi(Ie^{?H`-`(A`FF=rt&?LLsu0f*l_T$PRi!xlxy%m2yPZxz&VafdCP*TC>($us0
z#i{ZNWN)XFcX9cml5|u26?(!|OTO$aAn&L$v$noF96~-UG3=UIMGivuu^<8Q_nsKy
zLrg3Bf$F_9%V^C!eG1*<FXN;IST7HbC|eIZF$t^{ew_s#Ol@uE!G$|Y_UG+g^~G>z
z)XIVy4YVjtHZ?yjK+;iS1C}W7X&#hFh-v!zL2k^0HUe>pj9RQglbtxO5G<Y1+4)1=
zWu?Ee^7Y#6%O*FU$)S;h_CC0d<%x8YK{zQ#q{ZAWEUabEdfKsMK^6o85n_zU&(Bem
zV6!o@OU8nrB^u*AAwtV%!*EU2<HH%`O1Ao$dH6u;Ni>Zp<R=r8HoBr#32F_1_tYS_
ztb}ibT--_a^++DtcRJu_7lKSo=>(9FTG55eNL@yFJRlz1xyvt`erUURe;2L9AlXm0
z!M1-rfiOje9F$PQ#pugEoq-mMKl)M0@czRLs<_ljfGKm=Nj`3-KT7mq(wv(LqSR$9
zs{eLtlkIv`q*C5A2~3Z}eN_k#TbnPcg>EnsSSwGn!Uo9XA1NT}>M7hoxRv-{G*p@v
zstWBU{yclAxzu`e306#6Rq1&!3PW8pS*NvRiAr5Bu*1t0)ZT%nb#{7Q1~KnL{T){P
zaOFM9B>Uw%nnc4sdDurYNL!b#N9+`!N2jG{8G85gycIJj&MxDrSU-$H+qQbVp@Oh|
zp&}c*HjMl1u;)){uiS#E&vivM@fS!-#y7q?B>QC1+_rW3PW^P_0D!S1L0!vE`yI*V
z<qox>GR;2wW2D=#Nk<nNohYB`pRfo*@WhSbew2g1w3B;`3F5M4*MTX&&eE4_gTLfR
z<V}Cf?gJiNI1+t(^H!1=GtP{Dzo9lMW&A_NN7O>`zHy`bCzBkJ!P+;QO|Vhiv;rd{
z*~HkcX5P@Edr`dE<uSH+fNpGS5L#?W{AcBry-?eN$Gly@61PGcYH|6NjOtIwWUEA%
zy-E$S<ti%FX#A6uGF++!iVY!-HY@X-?wbs1R0JHh>mt5Tr3+iFO&kg_B`JPOfeoz&
z-58L?6_Y-5j^hhB00kKB_>1p|WY#ZB6^7zh`8^IqLt+Hr1e~;>nq_!)G?^iuEP&#W
zY{hG>?Cqal1BSatu(Y;`qNdRq5Tj6PTUNQsqgbF;Gc%I^|9sqe$g#>0fzc*TTXOI-
zy;pKFH?z|_FM#2*g;a+Y+Qfl!AT);?|CdXC$OGy{PQ_By+W#PYdqD72Q-knnj!Ncz
zKc`Bi$tvwJPuQwq9oqee5}1*uEk^>6E=4#a*ww>ck#Xo2x^a-LA7&YGZj)hyZmyN5
z!&H;tjhT2o1K+cC_vh@a!W`%xPE)4uC}T(bYBq6b6trhIlrGdF6+;RVzM9-y^z641
zQPQ@4aeDP_rViI#3(^X~ZwcE!Y&mx-_*$PuK}!X*1)d2>6BGbClM3gM9c!$&VHRe9
z)k}@>)*1LCr>YLpW8t#E!Tw(E3X=AE^lIAAJ=uXgA>$UTNMzI{3Z|-V&^__%@|M=>
zRY*<}qTCDc*Lz5?$*0|&vxtdyJ&C}$H?}=G+Vdgx6vq4jNqDcp?J`kW3#oZDalzJ1
z9I-&CBUb=J$m5|H?HOGRhovH-nQZ_zn>o#2%hg{Wz+<lNu9x-<vUTE(0H=5Jkc?oR
z!w4Rv`aa0_Z@(%?x>5=cK?KO7rT+&6`wx*zN?=xERGiOF@&}3df&t6B5}3F!vW9m2
zo_Y>eus&(JRC4M_e7AuKu6do^<MrwF`^R5N>ybreTf4hYMgXbJAU+epmpe+(DE`ef
z$Sc*TbJ;@`1h9PwUae}=%IzFqeOm#E>qU!@?YXP*ro~69gbK>hwVT_6MOv-4<Qr#j
z{9SICFo<YCT^pO^VsbEhj|1X0TgL0Czym|`?+cR;yalg~KBR|p87_iTpZB&pJGt>a
zc*qw2^6Khc-GRsYt}}|xKG>5|^?`I%1?9o{<#w9*M)i<<wQWR=5U$r-5%F$-#YMSi
zQ66&?)5nQ91%uCypu_O`ek}*m50Vi(Qr2qF>hQzx3w}P{<o@nqICM1DE%A;RU&~1g
zJp!IGZ3b>n3L6cTB`sHSP663)d2D42io2VKyZ0+kzhC)snq9^Z!%?$<N#Ok;rSjse
zL`o~;UKKuhryG~w&-;P=w1@b|U;Ar#WuEaLe=Ru@0sh-xgB+bUkKRLeQAph)q93+g
zwENsk@Vla}h(e^e<r5T+d{F+=qyp-Avlu-K1u5zI(HY}4_0@=IA2kSR&G0_@g8vd9
z-Jp~u5G>J>5b0T13>8`e2bAg0Ott{krnPcGPHcOmzpWp1hc>d6j>Y8lMn&WU3C#V<
zm;8o@<P6N-VN0KWyzwUHwoNd4UNd{U+p6IRd?Q2t;=7hj$$#eCjMfXrY3^!dl5VCf
z;c_lNoS<)NStj|D!bOwaqHtk6V7-KDHPtv>wBs`}rX2KgH<RvGVM|FK)Aw^d_)4+Y
z7O_iA225#L<Zjdc0s9648Sf}v71sqhA^!dI6pa>!aTI#I-L1~hY|QZ6K40-y>KK=2
z?>Xc+EURPLxHD<|mH&$)a(0C`YnayoY7g@hH0JNJkQ^O0f&W!+{2d%Mw6TaY#T*+?
zl(ghu!%scZQ{S|;1<A>F!LDgv?>Kv@r&W1r`^WJRdlkZ4T1!&lWp4r!XVTZ=sdY6i
z9N}WGnnuK2|HqNL9NWr&#RG_rPv<m+GW^42YkjrFO~Y^dZhscO#bo2!*&Pt57wz6e
z`Bu6|*<#xoBUX&(VQ&mEBVm`!9y-k~4WFOq9tSOG$_!LbZ%{+b@%;3Yy{Nlo6mFZ%
zuS`FGU+0nfngS@g>TMZAEco^y{Z`Wkg!T3Ko8I2!Pq~-KgCr;G3jud<SEB*$(XEjZ
z_X3j}Ei_W{7iU)#?!Ax%KHfeKk(pB@IV#@cQC`*q5waH*pf_8A@N!zRnNp+JV_69?
zTxy8Y^yXZ&8MgG+)$!+wQ|O>5u-&)Te7^1NWUn!e<Z3l0VuXwB`LV9SO<n}bcR)~b
zP&`h;1#1a!9!=6$8>|A&K#J42L?-$dP6!R>@-$5=`Mlp%k}d942Ybwp$ZWL|8)$91
zkERbT&Z#Ux-6YIIehSs?v;pmz?iJooVUJ1It5nGlPg+V14M25P4oUV?Mhc}WL2dsb
z6Y?*cugX0BDD)_DF<0F0ab615J0V%n*F;CP6!Or~eUruaO>y!AoRPo5IF+kzZ)7%n
zr17SMcV?C&#7T<>@vfL%DWCnX59+p(*Q!2$4-=altsW)>a;EzZc!mvT3fk?}HJjA@
zBb^yL4njV=bjEv$KH(_G`g(JJn3J$l!}Jj72j}7rpwH~2(&B)6J{L2E=(m&~RtTW`
z6w_e~%_DO;21h|3UY2+)4Qf(o!b&IZh?=L@+}n+p>io2=8d^;}4TN*43}TVA@w2*=
zv{T?O-!W}IhM?f&<;D?~M_|PYeq(kG@o|%HXV){L;44d{^17{gIoOn8*jPDN536{X
zeBB;3X)o~LXu7`l@|7~1uRqiq`s?P~osFaIje|{{afj2_n+MzE5;qV1erIECGyie)
z>cEGBAslIhFr^{Lf!hIN3F}jwycpgGdRN1aFRprae<&3rz13O7Ff8#a^yH-N(RVq?
z{at=fGmSg_fbscZC4lkpi_BmEIfCrMdLNv$`nR5Wo3d9BM9ras9nwN-<i=q))=m}K
z)B?9$;kvQ^zL(Hi`%Efb(DGS(-efi}37v(tA71^kYshibf*0NEawkLi{b}US6UY9e
z`ZRz80Q^7vI(z!x{u=#9u=6W&gKbe@#$*q=I6D{ZbuJLW8sTrYYv0^_p?3Z<5nw$m
zhT2hWmojgIRYLILt8d7WC1W1><du$y56`asxMl<mdU!#!R73yaH%ta<=FlOyKyC-P
zC>BC}S7Q`a4zuWagkY-gPA_i13@%d=oJy5J?_#6(HR(k2R;=WO&5`(lU7c(g_m`s~
z<qg3-<?MxNTEH|tnx})N5F9cVxH7<CYHBTG4<x()<joUN`oYoOE|j4)+Z^4@-f0Hy
z?KZMbNARV@|6+cQ-FW0JzZ6e$&CNDOf;!zcXw#g~|1eS@OF(W|C;r8fS`%K1haP-;
zk#%Q_FVUveiDVg(yo_h&+sIu!4<inOmo9`cVONOiDQK4f8w0wwhULqA0cwVPf8W#S
zoHe_40;?IekougJ6QX{aS>XM<G`5;N)&Sqg%jky#_zK#Fq;c?q48qzUFAnzJpv&(?
z+3N8JgnQYn|14!Je@ErXYnGkP`11CHyl))7Fxip&{+xNzg7(%-f=O9C=Wz07KY;`A
zkLf)$c(m8f$7rN0fC&;Ih^K@N7w5(7Hg>s~gVbS?5|)QQew@R0wcM;cz(L)y9-`KE
zuu(;iDKts!PmR?%4T5qF(wLM7M%});zBUrZ{_&I&XoVHlsG4oF#Yv$Qf^mw;>8->!
z`~Rz__Ytg%v*g-w_tAz<PrSKwu?&uuok1yly<snVzMBv6nga<J+hlXU*0l~s%3o~n
z!kDsbuu48PodO>hoNRe!hOMn@@gNvg+Ubcp-_7tKKWZGl0V@xi_Zx<}GL{s3Rh<0|
z$>Q1M^9_YdX7~E;onvUn+`Nm{;mTyXbFdM=g10JJJ`GO*&F|5ELGus}=e}fdh)Rst
z&}W&rqDmCgoB2xH;l4}WEnoYa^YGSrt}yOzCcizIY*EQ(_m1zsoviy;KbRdmzh?FN
z3SOGgDFsa_i62Cf3rPBAy7G3z^o2EToePum=yn-iW%9|diX1~+sFtMT#0k5)Tl%9R
zL~gw{I3rJ`IuQ$O5CuNrljAZ|Pqq7n6dn?A&SpI#P;;`uWjdLUE*}b&>c%XkDW>~x
zKv~Es0=sme1@x|-zPtd3UE9gm%`6ef{d<cGI!sbnnyBIuH0FnoLXS51F!x43$3|MT
z*Z&q{elfdN27FjfQticgTZFp)58M@bBimMEMvo7Wcw~l7N~g5Vqp&#Hdv`IvxchMR
zC3G3{wueR0x$%szQyh$yUwGzl@h{K$8Kj((If0V%`PJu-O$7SOOhZ~tPdvSJ8_z&L
zHtwIn{PVT#1?W4s0k7{^gGQg{5)i3=-z%krnv48%@U)HJu_ic&E=R)5VUR!i8EO}>
znoC4U747W4cFnkI!7pn{UfSzl2F*GXC?5&F^gnzg9K5e7E&t#c773!WHjE;Txk)Uc
zVQpUTA~VOXKlG}IpAgxAAmfBgQwQqO00D#ZyXPrxGc$>D=gz60MZ}m7=wP4#68(R7
zquU}yHo=|ViDdQNJdxgt4oz1q%3-(GOB#%ti|whYna;3x9-;pouolX-j#S|G8^)Fv
zW%+@I8&lhoj14Hb#vlOsA*YatJyHK3dZ1INI6D`Q3>6B8_m|15xLjd<zdMrv^(M{!
z8eGD#GnmFq+B!T8*}N7mG9I?TuPZJ8*})xj2vv^n9xj{Xd@8eeoe9gA?-N<I3P&Ej
zNv*U0qq`b+a7227b!~DIv&(*|s?ml{N3O4(n-I(E&?mzF^<Inb@Pm;D(B79rwX?DP
zdUGk@1DlNn_-Sht8?(K?-4Kz|@4^CE>K>8cK4+#hE$_Tf-7VYc`moj{il&PcCGWO^
zjDbg%W{LCrPPpjrP@~xMPMb-av+4^JR;qSMDW;@`&#da+lAt75&otI-xSB}qb+qgo
z)Lvuno`K!4GW_u@N`1o%OnFX5ajLn8V~~!v8QL+Dw&P)@^Bs#07ozSWLsPut(w1Vy
z`pH>6t1^5d6x;Ocy%GbP4BB;uG)=-B^w$HfBS;UM?Rf@j9TBp){}=<kgaiPeS;L@W
zszGP6sndCD2qgL+Ky_b_<>e9w7QvL~?4WdUkmF_p3$*6$wnRl4H(Y{28z}pI+inv=
zc82V^)?G`WeL4yx=?H0423K|9#dKOU>3@W;^>^8%^K&aLO{BgT-s3b7Y5m|$hy(2p
zk{Q0;IDEVJ<|{7-8u?iWLqUI$uGgsg<%6;u3{T*XRz12;Bf}@On+V6IJiKI8hlP%`
z_vG-sGG#t87O27s*9QyVm@kK|Av8iLuq(<~x}2y^9T7%25@-GAF{AdNTimi2WViI;
z+&T&WJbK=P9>duO6t6J&9=+tGS9~jvzmJ|%3l)ZM9Y<_AI}gbB2_UWf9-<x2MLwjh
z&G~!G!Fcs>e`^Rq8({gjp&g&<yML10RP{8gFuJ@SZPxXdYYy4zJG-R^DUz``FI>ml
zU@yz-gAC8^PH%3brsS=4<0X3w8-D)<{0f`h4#lb9T<@4&?EmI0qE?*j_W+z)3)XH7
zNlN88XnZDFJXs3-Os_+wKWY`oI*S=PV2I7FN6jAtiJ(2R3+U=m+7bG5!HJ$Dqpfdc
z)=C-bUHW7%|6rkIP%=K`o}2qDsUu!Dk+Rz1{_lKW3j<^1I!~#4sfD{9QJ~Rnh$Ysq
zE{WmH+rE9Y54%}i+?$3TG?tm}$cF}iar;r4)OL0G4t?fG4q;<8g{~5{$v(+#<b(#_
zuiD#d?F5jy&cA~Tb7<>nh^_>BU|Jq-dp<KGNa566k>FFO9}z(MQo*MQQM}kY2!FK(
zJ1W~pHgJ`^u1)oA{w(>~{_IcOo~BFzIFl85O1paUP4jL4nQwG0zf&Ne{*@l&z02(s
z+&V4WEe7I@D1)&}_u&v|s`}EI_f*{LRixWuqSp=2=Z3$F+3bb>iyo)J7+v5N#R8an
zw9;^&-qj!_h=grwMZ**3vI6U!mtmO?VSYMC_V$5ZeA~)o_0=|N93ZnV3U4poIJ`Zd
zz$^|K`DZ`<;L*&r=b^XGPQQp6Mzl(;Z*T^Wis^eKp}7I!l6W*^$g7k4&yu?|8nitp
zf6y%npL?~_@QF3OZ&A%#`$$4NBY5g_;jeCA85&wAxB1gwytm2Ay;qah`+EW$7?|6Q
zT@(vK$<o}{|CTe_ML}FVS`<A;pFbZ^&mjg@pI$1hF8!4S*|8<YjYD=IxsSTUwQyzW
z@TJCPaogakN49(L`cWe_XXx=u3Z+Og>%|RCsVyiEEc6=iG2BY3WPT);;03?3O=2a;
z!P<69?3*!DV)FJcvGGxqbBNGiWFB2C#&0FVOqHUwhBlT-YvAwoFXJa9pE-d4Vi8|t
zibFep|H}F*WvYbk{C5RDk{S-7T~#0}U`3FdJ2+o@cgbPUfcv{xE>yOhlKFL{f;Sd`
z&H_(c@)fX5DQ!M_6A|Hjx*PGjhiF7?N|6M+9{lnQQ)q*_^Qmskw$lJHowiGTARH@d
z=#>*VfSIXTFoa>d=PJ2pA9ehFsFCD~dG&#hcyHcSifs0J4i18-EXgz|oR~qpuNZK9
z2@Brqu<82>EYj?B3CC!TBLwPeB3zA&)3yyPz18@;p?n0x+DtzrrnvWHnoC>PhalEF
z`TD1_jTAcVew4IyWG=0s_ax4krRO<r_`23DQjxnFu$d8KdtswDTFeH_V)_JJplG0p
zux7KvG{K&>92>IR!_H>#w9F=6<DwO8E7OZf{blm`e*5Y;4I;CM&_q<H%3bLW$h64b
z&O2l{KS%Oy_X<qf3`Xeb)y!g#iQ^lM$-93<OPOpnhP|dF$ircKDlce>K0(*lmN!FS
z@YJY}LAHgbISic1aIjoR<dcasQFZI1v-}VP=;iv8{q3*MTBbnu;~ja|z9`;aHzh=p
zez3lY5=6a^NPNwKx%n<<&~991XB#Z})xtEPB)xF9$DfYV5RFW#+dyP(sb3kzbdpeA
z-4U=9FQsdD`%1S?|7sDSKb{{(8lm39Gs%{7O(Qa<ym7e}8?cOQSbbrE+_o}UYwGee
z%Nvv#mi*fm$Fupz05^I|FYUej0~OQNX?0|wxNfz#4&!--hc1O+*Or*+yRMfk6szX3
zudXA1k#dp*{CqmgyF092gBF0KjHT+PH)2bzRToXpbhXf$NMppp=y70gEOz)(WkZHS
zOxamA>{hu5-6;XDI&V3WJnvyz=#me`snEzEb@#$J7FF{&_w2h6vyh{PHqCrVyg75h
zHwFzno_q?|N>kvn+*4yx+Jq=}e<@*Y6MNs=%0<49g_y!cHP$}4zIYs@TQuo)_V1&J
zC_m8o&LUSN;#1u9lo10#qeh(_yZi{p)nUvWF|POH6BXBLW^rkgvcz+{`!BqDj&$75
zlwp$C4V-(gDHJBp<hbRTyq1c~mbU!x*$PqGS3?+nGp#c?-^`c^YK04qrBQM?U}<Jh
z4OP+o>+ieC%>}=6a*l#-y!W2W?omD)DwA1xS3>7>%1z>uL&V~V!O!^_W2fsrlRd`}
z=j)zNl=(i7>bfD-VifTuyQgs!Wh44W#Vef8oN1a}Ue81{$uUnB7;^shSuC1ecBZXi
zh)p@L5|e8A#PD{)*W38)&{~I6hj&m=?={w;HY`so_q*PLj2zcaUT!YfMYCCTut~;W
zyTb;jswsard8e-_Ca#390);#B2U~)Nv-c}L+XHyvF(<R}5}dxjv3t0=IXT>0+uS&s
z9&H4YpRVtiL58=kKuUq-g?R+ZrrUc5RZeezpd06PKHgAdUs!__lycPCK-p!<f8?Kp
zCq6VYWE7lUkpYiIRRYLazB+QUZPe=zs{{fbrKTSAxzx*5>Wo%g88?xPMeXXjHGX%>
zSa+R<XY2xOzUH!;L<Hq3Y{2+j>GBk%Cc#NJ)=1@oOwrBe(I1Od@rC<1=r@CZ?%Ym|
zK3o+)_(-|X_c}I#uL8!gIiKW2pC=ppInKp^Oa2*^?=ya~*AK%}xPm$)Fn^Lv#kYj9
ze)^|bPq!B6SZja{hBLA_CM*?PYJ+-sP_({VMrpoK%ms%hGQIzY-RRXNS@d1o@HFmf
zKh;<m?Z3UjEQD2vI!4)A)?okU;q-Hpuzm|#>Zsncq|2`~?9Fu(b%!@Bp*x2$0Zxzp
zV{Lfj7_We$!@V~vi};&t4Q{K_=XemuXIKtcD#F<|DjJ?zZ&)v=-HRnLKhqNTxC|J>
z$4=f|FNuVNZJTN`n(90z5S)5>A~cJ2kZ|TMw!)u_5=001vi`*(9{bz&##xn%Hn(qf
z_I}++^+#<C6!ANa!A9`-)z7>>8F|iYxtP3IFG;Qz-J`350l-H;myL*0uN(Ik^JU;e
z(j?81pUDku?5k@m*Se`FQgk;`Cbuac1tlz#dvuzywkiq&jn=eOwCMipmG5(7X{xUq
z%ka$$mGWWPa{=_Br11KRFDbKx^b#_^h)~DG!N$uc2d};zoyv28dl~;>>x}`=b1ut&
zcnU*Lr(gW}m2%Y=_Pic2=yL8ZTXP5oLrqB)vQEIGtsH@?aGDZ%_n3h3=9sgXLHq@k
z?R2)!eA}zkgwdpiWg#|Rye#1PU0nJG7*+oYXI=;g<W<(7^<Z~5o#uylgwCND+pSgq
z4%W+$h)f?oq<vb^U+SJ|N-WikQ)nwHHc!}5IHIg$$9LS^XM_1X$68$#Udzhil8aDy
zX-a6}gRsr{COtNe$@Xxh++z=Ye@<lGg=z>#o<PsVc^brR4dhJ;;CkK?&+cp3z)13F
zCWe>7m*N$MQ80tgN$qo}+A{5`vW9M>u~hBVe;wWxm8xv(Nf=THWI;d;CeADBh$%)^
zlaclTaf)~NO7t|?*NB~LygDe@yf3!NnhY4fKAwuj(206f_*uFSYsb##E3ft2%swnk
zdB*8ZGs+AHb?D~)#S2`=v9LXQ`AD4ta4~r`B_OcV&3F`jGIjcn1sFE$R!c-`w8zJw
zJETdDKYm1L^E{cX0gGxi++z<e3cO4e+u2%5R5dA+@o`K$C!_Wl-Y-45DtT8muaMI*
z9;!Wg^}b(2sv-7n1UuVcSUvc;szvI9ah~m%<Q-t#9hzKvxY3r}E6L8&cT&yRv-3Gf
zYte-=B)%mGd^kB$f=QjH6tr@EDU~9cFE}z(FM|=`G=HG7o~hXo!(}}*-1Ou*z4ZcV
zHLJk{I2i+vvL!3wv5aqaAqP0%gAuOrrc`Ol;Cb35FtJ`aM#f-8o~B<F*d`I&(#0Ws
zuXJV!omWavI=1xNZ&4cOQ7K5`BWC!NkUk=sK&;S)Z(M{8Te^loWVK0dx0~b<DDoGy
zdIjtY#2Ud`n~uEh=gCvw$GxYfDf*!K%q|}7W+hF?V@LM4UmcEd0}6XShG=*j$CE$(
z{ztiX$MnMwzNEj2s~apLwJQvv;ecXG)*?*~X0Xn7Ags>O>x2I_Y!S)4ly4l0X`d|3
zYFS#@zM^ab+qL?VzwY0FPw-QcaBQG>z};DnbBR5{J^)jH9zU2693==i=x?(>d*}Ca
z_V_g|fnKceT)s%$z-UO>dKLAF)P8uCQvE^(#klu_ZR@LqJ#7!k3Zb>a))r-tD;TwD
zbx5`2&!ulQ#HpFAb71h@;sQ#YCAqdZ?Od{tm)$?BYGb`6>^-5-Ux7e*vW6k55vgTw
zhv)EBTU~~mhzqhfL%QAObV`>%cPa%Z1*VSoQDY4n0>0GGl()BdA7iiy%>u~<ynF+^
zta*AlKwsmR@pXM+7GKiaOL`UcxP^4;wmhUEyzqksE=v!yMS9z>lc7p=KyqN1R(hE1
zrSq#Vh4uqcca|-uSOZPGl0Q&GIO3f3z^9HZ8wEH6+J+kPGmdNWcKyZV?VlL0f`)Z+
zCJDBPiZGh<Q-;MCr4@i%+PBj>a5OMW&9+aQoGP?Qc7gRAH5ad#MieXFE><ze7TvTX
z{bHE_D!YHzHsOE;N4I2Vm(5C`mbhsntYuiWXl!~Zc^_YTz|%Y_3i}-q;(klDkOtB}
zOMy+y4MxEFIRA*vS(|h@@Dvo@qh+i-%&=AauXj^cxUQ*?=yHG0ioc!gom~WWGZ~Ys
z+;xp1w_MyA%fC6-f=EiDhF?>I>L)h2g=mD#NZS#Y5dx`ql%c~1r!g%y+i)<LKIdD{
zLrBQiY}tHr(RiUS9aWO6<Gb=`o#p0-KTf7^R#&p&ryq1RNA)E}@ZqFIKR+hNtVDY)
z)%-=E{w%bJ$?o)3ot6E%B{PHsP7SCHIaQ!G3KJ|Krb@;PGyssq)QJs-_yMv$nR}bJ
zl%LQbDzI<Bq8!7Ko!;C&!5)6c6n$}O$b?>vT*nOl;66_R%nhqSLk3AWU=GHy1strd
zZQ3jWNIjOSQXz`UBdFtYswr*@{J67uFr*6gkik5&>b`ccl%$G0E^s|s8I!A%YjeX-
zBbajm8C50Ka=#VFBqy>5_s%2a^m@2S@xQdd@w+i3JItVNqmt?!enfyL{bWgEFjuz5
zKO%MG=pStzY#yNjDw86JfLj3sX$Nknz&DGY2EwW_p~3r>4O70YJyRkj2w@z>aCwe0
zXiK4HOZHR?fRq3Dd(^wC=tA|C*$)yvy?8%cNo3^f6X7Wq;49WPBV2)7d<*g&3q3F|
zG4t7ZT6nIPBIcC+A7wvZ0Zs>R4*9a(<k@+X@LH<&8`+TMmM=y;Ru$oZX7@*}-|qb5
zrE+UWB%2-07*#Dh)QA<5rY9(+R~(n1K9Rj;ZGqjRpgQjp&W4C72fM`IhxD?LZujC}
zcb^vUZ|%AwtvoJJJxh}FX7g}kYvT_AUcODg5+=N(&J(A-KVa(E_3e>LQw9d{Lr^I3
zXIj)N(x*-8%nI{*jo-QnSSl`K)K7;Wi-_5hZ9SCch|I0XywMf?`>O}Syy7U?9|Lu9
zhb9XoiCz8_G}9~m-q~LBWdgIF!eM+HcpO2?_p_zyTXjto3rn43JacU|UGj8BN5fZA
zyYbRhn*S8!02iYX7x9f|Rzp3%qfCGe_vdLPVx%^qEdMN0=nTi)AB7=-KKJXD&RSZo
zh*6{Ddb)??aoN$W52z=SS+;tUSl^S?y^ZNhQC<v2N6Q23Su<{9I7eMJp*D`nf4%=P
z2Y=_7vOgU7puMETHiL%VM@(SLMgmG_mBY`^Dj=~N-6GZv(A*<|f4gPMflx_n-o`f!
z2l(gbvV;w%xA4}<^uOA+&NP5&m3NHyAwa}K+gR|`fKgF7A)av2emEJhv*^#SbIUga
z)~Hrj3lt7_i&U19p?|fX)a$-Y6Wq%1it|oyDTFytX`>mc*-OBc1<CFmXu&R$NeZbc
zV40Uh^E!QurUc0z>#D}G+g4v?3!%=B;<G@0C>BM{`TXRjQY|e9vJX8!m)%u7`ioF&
zqi&rn@L}?1CX0}EwZb!v6Hb&21)Ccb5DHg`zi3I2ej`IvaURb>s8<}})**pSd{s|<
zp1zVqB%c(~rn^sGZ=}maP}8JWw9R4liZF-qivo@GkT-q*u@G9T9yy|H+U(O7zcp`M
zzl=<L2AgN&1c+a>1}yfyyR&~|ENYU3FQTxz@<vw7)@8o^hx)2as96G-yqS@PR+eS+
z;iLHMU5v~(d(*u_!I0#*SN5ugp>wYH6Z)7i!ucd0%=iBATmZQD<a1bNzOu+`^N?MZ
z-B88HKCQ+oMp@#+4O=KXz2iUZjVjX$vmAYz1$A!k{O0aM5K5*f|ML&quqWW@pUu0q
z47W1-N1FmI)M@WVsX=lo^G2(Ak?G|iyX?!~pQX4aCnV|%Bi}gGb+kY%G7k7R^Z!i4
zO>EyVrwrEI+FzJtYdM@<Xk})-n~*YKUL;Uo$_rE&)EQm?Ct4_$!usLa7l-2?!pwS!
zBwNJF4O#dgHO#tAFBE^dfL{J-p9=vm0Y%KLV8{?R<s+aPqx<2GRp?lmvEO;a@dN3_
znKP<MYwF>-FMRRM9biu_Cu(oU-;-okAH&1x39mxwLEq({yvC>F34Us}!rnu=8Bb;y
zuv=tEWEX?buy8rQW4(c1?PeLsod$E<240^-ESL`EG**|E)s@zRlTW9&pNt_Kb=H5B
zod1n1cDk}}y3mP(-oH35!zyH$hRhrk*2?{3${@x4z6FOVJ6@&ry@eEt6{V304A?$<
z2vEO_xGf#NjF&TN=f5Z0n}@qJgCFg-Aiq^0)iH5>F%x~I-q&`FMDf|=Er1!A>LJgn
zq_F)-LD8;?OQ!D!Y+HW~UE?+Nv$|1oVc{4BcwkB~LJmN#k(5nC@;jAeay}>bix}^@
z%?|qw3=8c2`sRejlO5`4O9!_<KJp^Ckp*)gY^_HuxpYSx7fHQJtx8|%ef@rHOO>7g
z^T#%}7x9;Dr8X=#EzC$~OGnT~_^iQ|#)q__&IO16@4EySBlz80I#t9sS9iwE&edP~
zesOqgtql_-fYC!U`!GO<m~?8$8><^{05>>2j@MX6idRitN631zL_75i_}xeJ^2;=C
z)JA2fWfI>9xEZn6!joZm83Bw2bw2-7EP46puF4ZTfeo0{K1Na*SU(-e0JT$}3$$WA
z-E+o&MGRj6JrFuY-CXvbrqn;4h!O?blhRIYe`*)(+--sP?2gb{GOT7UcgYBw*<D7=
zxTU!){_MlK|DC*kJ?r<vZ&bWAn$pC>OR>jta2nu0vDf9p%!s;NSxW)(Mw$E++{V~6
z069h;p&{h;uh5^UWNq5XwXENql460||EF}k8^BQS@b2o@<I~%VOUR4n)vLeQ3ly|y
z41VihKb2q4zx5vi3Jc)+)B!GAz^-dOlas?w(r|~d8J{1}wBJYo>yk<sna6S2BBt!u
zQjvIbc8;8&G{sh{G!^gTThGy}v55Tv1^2$Fd@?fODowTS&s{=TbUCBNyWlHDtvJ;m
z3^@C{%Z<f&zIu21aIK<^dYgiV(-r#;w(q4$;AwOqbVOZti?tN{mY8ZQZHee<`(yyJ
zKR=Ek@$_>1>H0Lau<ouRj!}7>w=vk^NMF2BT|~A$&K-4ReLVc%)<NHT(!Vkd+h-58
zQAb|OkdH-2zsF=@)|suju-tA3J{Sj09#U*`+p99q(rdC6Yr&y;a3CwrAiHJYuG}%%
z3c%RK@!*{{^DwSfq{U6$dU2#9%fEj1=^dcs)Trk{46HT#=h{C<L}T`s%6xC8b77#X
zXaS{UKBh&jM}h6ImzAY<PF1nN5@yR_x@Q_m#FnQ^)ah@^s<A}-7-SxyMNm;Du6k^t
z^xeD)f;nim>$Ejl41H3?9ZNg*dmbwZs>m|CFhcpXfdsz^tH>+G;MI;j|ELf1>WdHQ
zopDaM2x6r7ImH>3Q!TRtFQn2%+mS2u=hyX#bdzgi<D5`>!jKCR0i&?VZf54qep<XY
zIC|<h(Edu6f191((IUA^s$V;TKk}}OyrL~&57+IjhiXO#D~iK0F29~CKBt1-w6uUF
ziXA?F^Tn#^O|{)^w<TXvl7lJ~XwZQ+=AS7c>R-2xxh4u7?psN{Gs-nBqLXDyvGe8K
zH3-uGpI^PB*I68MS*BP%qQ~7cJ$7zpL@;VAz}E8tD8U&Cz%N7^*X~i@#=q7$l@#)p
zH^YWDjZ0dV|H_*IT(N6$r5F0&tLiya0adGk0in@evQMD9VKMa;<cQE0OqClJz=_tR
zUkK{QoQ@%sbFvcreehv2eyl}%8C>4>m5QJ1UPrQkaSRIu5CCE-eI3<Q4~AiWe08DD
zMx_Gc`CrpEi;C%|KAF??u3JjWpoLOYyLp+S#QpL8C+WcNI%>tB^U+Au)uYf_N=|vJ
zdGC)F8Iltb@4uy*tjLhKI_`2nZnixPM|CLgipi`)hANs8Mj1<yC+ND$0khmw0~7Ru
zsEq7ScL%RN1a|sKKw;gSl*+C6yT%Gl-@l&`5J?`=#zRf@P&b8MosC*M^Eym9aB`fi
z24Ke96AO8lF_A&a1F$l8?scAkEnDn7GuZPOD2S4Y%%-OiHP{}nAVJ>d;j4A;u6Koo
zG%rqwu^8NO)AA`{3%`BNfG+PgJ3y*m*}#Uk*;h%qFPK-jwfwVqDtCd!q%Cw=4Q~iX
z6=sr$!ly6pJ$SmWug|VeSE3*nJJM~EFG)pB4O|y|RgNFMTo*vr|2v_f!kg%7r61ys
z6HlVKvsLwYQimPPTFROdUrat+zndJ)C*MFE%bbeW1pTL~tKP#HKDNWjG<TXqFH@SD
zH@fS30htfC)Ya-%Z7dBzso}RiNw|QWo1LerruCRcU^d~$d9C6Cm1rbQCWzUa9=-x0
zwD_}IrYMaDRLVKkY?8It{3PTb?|RzyPOy`qc#@;yQiJ;Ra!P0R$S;|7TLW48FGdTM
z*29C9t&2151dAVvG)kO+u0{*Q<inn7@Ii<PFwwo;RMbmq<ZuNxbJ1P6Ix^k@-lt0G
zi19_Rx5LL#k#LL_)9cXwY?I`gXE)U}UXjc8lgT$bW+P7P^?9cV5;UNq<ozks{=66c
zilPPV(9anTS^5UeJksn@yf`9JG```-OCmw75)%v5Bh5uQZM;)jJCOdrv2Q~{(P*Br
z9HcPjCglV@?_1}t*_l}ZV?Nl7abm#ZuUtWQTaOLk&xt64kRziVhcye*Km?Sl2YF^l
z?EgW5MK5X5WG-g!Jj5W4gS0VhNh7?H+$iDS%KV#%@j%5-r!+=8P?E8>dpHU_1ur=n
zPN6W9Vnle<pX}_Zv1FIzg?ctpGXKip$+O1-Q~E*05k~DX0z<IFdBw@}T;`i!cM2ae
z{46@Sw?B{vU%a9rxr)r`<cHUL0Q<$B3%Pa8Hi=p*N!Kwv>sp=qY6a?hJEr$^A^nOr
z!zA`<W*0aOS(#2S#sp235<XQmjLR!jgC=n^&LM;;UcJ}$x_>2CWyC5CQ#_2a$l=}=
zhuOQL2zKGt1z*05$kd}K<f(y(1O7b(UcC<KhO-Ij&fdyfhO-gMRqvs!GuK+}RD|ZO
zq_v^Ke`)JSc@)C;t58p22{OJYV2$eu9*=u{7#`ZIl$}rXk^d<wqC~KFJ-*LptmEn_
zQL3WCE}w;7d>qeyWc;TmE3bnRe`UYRNS)rkyGpCk4M$aH^jS6qc0?l2rI6%rf7{@_
z%9dJnZ&;I1_Ll9%B6DBx=UoZEl--)5Ek$+z>l%B%6_oH)!}kPKCDZmGDw(5Iem;Gq
z5o~`)G9uKXac0Foo>zNb7I@a7%~q_`9RS%B2i+D~xl;bg5M8DQJH;wOfbB_gs2>%6
zwGC^2kM&I&!yFbJ+5ki_j~IrAhIlOhB9OrJOzJ!y_P{OyBYbU(XZK#!Gl%gzJyF=U
zlf9PfyRY9`2r=4eQ=s}aS!LxWTp}D*kWvwQ3;T>?WX@UuB!f<(cX0La=M^=smLSKe
zH)h=PP|8@y@DGRS#N-~`n?MLArCW@}oV~jeBc4xQ4IElUsA3}`LB7?5F#Aw@J=dkf
z3q@%2I+tC2XuHwzF!k$bLymfX@u!uGsE_Vln0<2-`d2|x)%WN?6a>NvSL}J-R-GW4
zJa=o!LQo&q^tE9_J<Q}uBadp4p^q&De7}fsgE5wBmIko0Rn{~82E(Vs^3X~NWQDb5
zO+d;4>bl!r*%^!-05L6|t7|Oe*LrlSSrDJ;yLraTw^-<#{RX;M#c}$=ENX}Qv)Ggw
zKeU4#-P#GL*09tMHsvD!*YEM8zTF$n>F6I!f8?vU<TTQaJxwOoTg}~<gF}&NW(~#W
zYRZ#fV(O<xYIMKqS5)h~dvSM4)nQ51)2mp0_YCT0Zx>ck_h|6Sz~fwG=r59DLZSHD
z#LMkrY>C+KiWha6u+Xi({TzgG-@I=IzOw{XS@^oJ;1~D;BOD9072LPz{i}k>H@EKj
z&%28jht$L$DtrlHLbjAKr(Ecs_!K0L4HsOomW!`e=zx|Uoht3mSw)o|AI2y270uE=
zYLINIIxoPwe@$K=<&!E)OOX5!uGE7iDjwc$Mqp`b+&EYgCeX*gJiUFpx!Bh^OE8Pe
zGsUa<{jCkAbaA5jH$2bV)AtTNC}-XTp!#V>Eysgjh(8C$OldBb%R5OeI!TuxgB^>}
zrzDb;{%-!hKvn`iIp(7a$*`UfC|*lXm(mj(f=k=eHI)Bbd|cu^Ia*&^>149WU`l_o
zb=O#v&%i3zoos>xUECOS7xx-)t0!yIzCdQN@eVKVZr$qu`JkyVA3hm>cYA-JboeBi
z8SqdLsIS8G5a&CyR6iDRR|cadW>U=E3oSzmHG2Sx3?;Bd56ntR5sNOE|D5d7i}B8O
zufC)OsU6GbJObmPD11M|U8&9oarX!W4hF<ibv{<eyo4cELO0EAikB1%rfNCR5|z`~
z@NcF!Yw*zsU*{8$s+21(l|=kCHO!faFsCsGC&8hnNBxVFSS>l>+u1BNx*u`0aBMXj
zD-Hlq2xx|U(`6CeP_$vi-^oN2<bbjP8<LA0Sis@G|9f?VGdYK;T~;rlIXs^#qjX?6
z!;F@^2@#X&$gO&RfX;gX14%un?61@j0$xpagL3qARPCL~PWGOW48tj>>{!vxWVsyT
zK0#?%%JI3yS7PdOC0a?~f!XKExDVG4hhkMWs<b!_QvE&uLx$dIZ37(a8p1%(!avW+
zTKjkv&?DV<^^BPVp>YkPcL<ZJA6q>7Y9pK#Ns@?6ff1tmB&?P3@I(MK^S^sI(m`Im
zB&oOp)phMEQ-nK_0}YD1SNZ3dGU2jB4>%X0*7kILo!;U>V79@8km4DP`hsWBfBEdW
zY-6vqL|Y$e=K@7iAbnAS*nzhSVj@_Vhj{iJ5p7>>;(WeBw5V-XB>N!h7bR45{I@`@
z%)8HE_iT6`mPQIB-haen4h;rq9*S~ZC;X2kqQO!}=n^4eN87*<Xsa{;GxjmaUMQT3
zi_~@!U3?T%C1%jmVmU*GHfx8e`$#ZW7W3is%o#ohO^vv`_zFvMs)RSbB(lSfjf7&k
zal73oPw@J`)G%pKrGx=3b#^}UZ<*uRN{p2{h8P8^88E9>EI|+v(ucaI9%w_u?a~;Z
zsgw^Q4P^}%QG3p~+W(`!6ep$M_RDN&2^_Wt1j=%?mc>Q|cx2cn8LzI7G0|LqA2|#(
z+FJ4B@Vb?q>fL@18E-ktagS7cq|h52q$wF|^>X&ELitF2m=g=&T{2g{vN5*!)k@8A
z4JMlvI{hmbH*AJgDz@c<4?T_Lkissr_5UI9SI<%aWW%z2ob^QuomkJ<n%fA5uk2Jk
zXE+wRD<+#O+xQ(lT~S@-X8_Mvt=WGJoE%Zh7#awn#m_?#um72D^wfg7j?40<6|j|-
zwH5>szJ2yp{9e7bM?BVNdBLOm;ItDE?2ZNWG6b{4Dnh~d;GGJI*URqeqa(znWTFV<
z%oQZq|I20@OhnBh+&KDvjoE7LDC{s`O_}-Ta;57V_;9^xfF5Ot&Qq%~c4@P%kR`u2
zi^iX>&Tj8dzj(dv62izt0sBw(pS*fvNK1t@McLbVvU79waC-hNqxB}q4}2*}<Zta-
z-$N-jb1ufKhp(~yA`l7sL?!DWT#5~^k0RvNy%XYhzgxY;qWIIxDA<%>d-g}>jF!$U
zLj^x43qXM!clA^D*W<ojPlWO(T9a<IT2K-l(FRx;YxdII3joG#u_2N0zKf4L{+JYV
zxPxDk4%kK_CozZbgEYyb1_&#|wEHUgh3eAb{yN)>q*OVFn4$DE#I!feIMLFv$=SQ*
z>9!nfDY)9AkG9lA%VoQaBcp^Vm<rraNNWKo0GvxDiK;HhXggNCt7~R$Qd+5nsjqn|
zGV19}iB$=!x-9N+#M?_w)~x)(EzMv>#X?N;Q~)GLcYgp)n{r~;OI)-%Ccx`@CTT_f
z8c0xVa2y`fF8@EUE+b3yBYT_|4TV=jZ=lt1uHj1_?kHPb<pSce6A4G-P?#s!5}||C
z(x5ux0Cb+U&9x99i8$rQ0%FP6QlH|mo$QU8P4cgUSBKN>UXk(&#?*WDbqYaJ;PeG=
z9c~VrCFcZ^{$hLIO&Dz0WL2g@yU!xQh)?!jotV=ERM#_R&E?(=Gq?tLMGv6xFJ7gU
z=Xynilv8F;hTPP6zHqm4IAPh?Kk`_0gLZFj<o6X6%Ml7>tAuvjU(UWrVHZbCx53X`
z|45h^j9;44VRvsUajL)qz2+wdu?N<J&8=TWe8EviWjOo@UU1D~jq6Jg1lWx%{i4cw
zAi31MR&i;M{n~Tuw@^qG0W2b&zLSN?O>{@6%6F69t?h9K{E*#gkqQZ~CpWHkvcL5r
zV-i10$A^PV!VRn*xJ7Q?`X*omPf-c4k65kYV>+z4cm-Ry>iDxC0Z$v-)8GGCFkuGT
zU-J0@NgZL@Ck>}%dhE}w>D%cON|PF_o76iP%dL0`kyGVL7T5WSwFlrA9eRl!<!DJH
zV}$ge9DbSIKL{dgo{F#Xp4p(Z`i4lhi1&uA6p5?=00fBofv;7HYJq`H@zG&7s49r)
zE9l~}244~GJlm0C$;X)m8T|j(59$UXWYzAd*7_9&>5Zj!aeww@GFD5DW(l+o*~k_!
z4tQ)g#d>>#O*kD^X?)d@hSD&dy2MapY23s@^K7Rv@qQZdR!L>mkQYxQU`WI7aL#wK
zAZ;<=*x6xq^ZoOwYr;;Bl*EkzdQ>nj>oy>`G8vYyED#g)5uN|m@dPz!jNp`tQ^eMb
z?_;OkeC;)tB{2zEs}S9m%o>9t6ciTAp8*Q1o_5^C8WNZsulxO3V-EMG@t5lG0484=
za)G@PjjaD*b6Cudt+lqOiYHo$-71V%s^+lYny*<{hA;%W>sVCj11W`RWJevH&1Wkq
z@VGA8DjWZGTEWF-+$VoJTY;R8*MljFhBc_z{Q*@Lzzk$%h(z<;rE7Z^aaA_2h2?71
zvZh6(y$T@!FV}l~?wr0rC1G4f{(X2b0i~wk5q(0!&4C%7<6ymo1NFz|-%X}+Z3g1o
zCin7hh?_{{R-g((dWD7>n`YW)vUYzRYDfFVgi?|s1R-z2zG^=WUuGXP(h1ke?GJ1N
zCK5Ac&}Bx1Ug$Enzhk`}huWjNEN$PXIJnZ*76JVO(KLvUFz<5M_3f*8`oxh78~04g
zBs8_e*YZTj;&F@M(qcQknH_(eW7rHq&%)vj&m?Ov`;;Zk#@Z<{1sJ0wzx#_Eu$$u1
ze;~LKC^pRcW~DSDg?)CDB2v20le2u=5sio@!rGkMRR3#=M)jGjpPhbwjmt~jVyIC)
z^Zy7V&?5NVzF%<0n)7XgH~<@NF~~!NQ1$v-oRf<R04X@NHt{XLBtubfal6spV(Sw&
zm;|(%ie=a$w$2P2|80bZRJS>CBLigK=!>e#S$o_<w#Ka0z11L+&C(JWVMC^xEymL4
zR|nTP2^6DTxdO)ZiX<b3DCZj*fHPdH-a=ku<(h@)Xsz>O1BASs!IqK+&|)L-Pv9u>
zZ0rpPB&OjY$yN;?d7-oza{IY^=?GEeMik)UYmYoPMJ`FsN;(^l%Y3wt3Y>Rs{+Kvh
z2YM+PRtPu*vgsvibpQ!i1~|kxBw0smiEyGO_LlI66`WgWb34_)C73f)zCNj!ozJk5
z5j5^0oLgr%_ZN54ki*|xJLqf*FRNE$jeY*e4AMXNZnFOAj4LI#OWJgJ5fXK+Ge&bA
zu4E^($-|1_Y&AxOSI>|j6;=!Zq849=RKMuy3S3+Ov_ie2N6aHVloV`NWu#5pM7X2`
zv~{?#T}@VB-yR$2mD~`bkQ{_n5iu@&zV!TeJ|ma`$qh*YBO&Cq(+2qmk^HWX%fEyu
z(%Qe`2uF2+qxA}1YdXok?x1t_VR%FvHhAQTu=RsUE*RoFv$M-<A=7xmd<5nII?UMl
z^Z0Wf%^KEzR6uG(Fhz%Fy3`fQhjsP*ZhviNWI?O(ixFC>*1|a5q&;$ytF)ZuGROpk
z<;<g;<>^T+em4nNU`d|XPOVtsI&K&<D`XZG^~(?TILOQAE(Uuyko1A6k<{u@ku7Wa
z`Dfel@y-B3O=@gQIp*|ybN~IA<|%%0<41@2iThG4Vff4<U0PykrBl3rc6A%%C&7V?
zx79Qzi`fZ73=)lx3IaO1kv~zCOWOP%Qsq(mwZ)RkOm;=efe(rS94Ab;cGojF1lT<@
zK)P4Y*J%F#VX|Eocj>2E{s=qGI2Y$^q=fb7v3KN?=A-Q&z0xGuuwOc^#Z1q{*o(zZ
zFeM_9$QfE;=7k5wR>OUFZ~t7nH{s;b6)BtH{)5Fzug@V5XN3=z8pZl+WyStZq{C11
z?<TM(3|cvFFywhM9$Ty<g4xowu4$fly>+-E=a*Tw7^xonC(9I@Aq>bH9|HBdllGT|
zO1!@!0+Eb(afj)(hqT@1=;!ARPKAA_LfsW|^u&dp;Cv0I*r?IT)LqwZ&`5#u*<6c#
zejqS$J+uDQ0oJEG)7_&*Y$Y&yHU=WRdd<J+-$O6lkwBJ5UO+T?_vf(a_>s)^`o`A5
zw4H$9OkIlu4ANrBm4n3tDfv!bh)G;v`G>>68FswFek{!4*Qspr7OSgoxTA!!OKI<-
zvaea?>rONziB!}a*`R)(qT7`Xx&s8$)NLIEcIlq5wsR$fk@aDlDlcxnX>{i0vq-1S
z7V~Y)8=qY#0xTQ&CWQEzwp9IUN+qpDs@Qqe#-6SA%j9j{d`S~HcZ+c`<s~aOxQ%pA
z;VAwhMsxbAL0bhIw_zXHpr6iXTubeoaB^P+y~7r7KhWc|w()W^bibOp<(r=8<+UC3
z+EVsh>gVWp{;CLT(EakG^taXxP0BP20izxRR=Ga}<$e$Bi9+2*5wz+@nd`W%0V!>$
z!v$#yI8GaX(ba2vMHm%9DR+hfaa-kpu@VJ>`$akLb^ZEAV0bl}&p&1tx8;kCM*4p8
zFX!b^F2B9EwzaoXrNnP~5Lz%?FS0pCLFoRoIh{zlr!+O?UmAc42uYGt+}H#^3Mi@F
z^%7nQ_WIF(ddeg=KDjev=Y8T$>S^gqd$J_TFWzKhhGaMBcbQ;IUruZN^L-q;;NtEb
zAMtSj=dOTrV-O`#!{J?+9*Q4Iu<7q_FA^G-kT?)iw+|8@t=$jz3V<QkwKpFCDbW$b
zoMm6VQUr3IKe*$^ESP3vRNca-K@m8Mi7BTv@}>=T@!MK?j$GeY`x`6)D*VSY71hE1
z2#irLfGdgVeiOnr6AmVn;J%Q--(uEW507GGAh)r%zehR0I+@xQ7L39asz{J%JhFiu
zbsOSrZcw(L`t1Ddx{Qc`__KgIvq0aURrp?eD=T1dmiLCa>a=BbBogqjaXq;lIA>)R
z@$SR5kf7rDd0dGzn@s!W?7E7aE#{2!;qkqfFx=BqJ;hbBy*WLNPJR7xDABvK`KO}D
zAD*3Siu=f<eoi6tgMafOps#a+H9Y@9;P0d`w<6foZ_)6DeTTbBPJ2S!^{=SW?v5ll
zJSL!PqgMG*RZ3^q+}PJ|yYs{;zcu<50gNDaOGFMCY||W*9Ebp;Uz59(bt}<8XGy1}
zkxIYs2OWSzR30I%x5l^CR7q!U@rE^YHZXIKxqy4F{MZ(Tr)xEn$H+z}d3BrRW*i(Z
zf2JdCRkARAFYr=Mk%N{QP>;5>n;VLbr&Vv%B|otGn~>zob_cdzl`{5W04qmJuQqCn
zd3up+Ln;<~qOD(4M(j{3C-PbnKm&N%w`m9ulD{W9=ATrgp@{ITOzuiciiW3Pd?HwI
zIJ?H{y0}Yyps47Jx>y)}*m=oH;472WdkvRloMI0ndWI~r{o5cm;U%sicsD(yJ5f$=
zW16Z}#Dv6Q2>KmR1ym8L<4#k^p;+91=tJ>tL(O~G+g>6t*LtCv0USE?(_d1F1nkKJ
z1q`RLYE9SWK=h~q6g&Gt)L|o?#%W5dO|29sUM>E>eF+sobW80XhsPiB-yc$cc-%r|
z=LTBa-x(Is<e8*|t)ZvQSw>o~@#GGDVHoAVpxn`e8_<Z>Zl9;E-4G|Rzqk2v_*Q6=
zbN`au_z*h(Z5)05UGP;SGC0JY^$`<nzY!^cN@!OG&ltS0$lB?Q3es;^@0Nd>>>Kap
zYuluB#E1I$@VoH{Fv`dPFE&><3@hB-`Z|rU>xa|2b}vgGk7{T;ke_H|%Y_-y<LXXM
zF$lU@^O_U-2SRTzSX{+;r<;N<4MNM{cJMq5fum>KKHkb&Q?K{mAIE%UTO8Sylv&}t
zl1l_H>-g`966ucCb>9YYYHkElr*Kw6*SK&j=_B6CzzOQBnJdyvCzko&hm*>8M&di{
zP&PAmB3lHIsMzcnXHpfb_qz0jKsmDF%~N~@?TV%Y;PUPceyQ#K`oFUs#_%pUWOvP?
z$)NydrK)}yBewMFYl(hNzAgnPZpE}~?e^11Z>kXv&o}nT^_0F?An&doUpTxxLU@(l
z-B>i$Y=m*p-p%rhOMJWTI%>QsSOaanZsd9Rosu5xN!=Wuqmuo#&YCARyQi$u^YBF^
z=v{TEMp58<Evk@bEk{R(kkusH+Pog@YkO{CYUZLEnbXeC0K=(e$aVkeSH6jTa*sNa
zKG0zrcG=H9Uz+Ja0$MGF><zzE(eOqDM5tnmvU}g2={NjuT)5k@EbS63{%`wRQrFI~
z=$2M4%y8GON4+k}k16PKg6(l21lS^6@kXlBlXc<a>0NOWo`+0o1-{MBkZi7C9eLmN
zXOSn_PZjUv#t4WlEPqgOe)G$BkRyF>CI8UE!~)r@!1KxZ&C2ohNkXZP%ddS5{!<g&
zGPCXnRXdQ)o5-BUH>$_+b!$K#)<7A^yi#)b?IaHcg)$v=PrqRGJpIA1^@v?H#};(f
zkWHlz<1a1-ubpn5hzGxwhF3n|&mErBfgp59HT@(E7Djl;n<p^e+S{ET<i;c`p<&6^
zgZ>POaQge)SJf~cS(!4h{!S_fAVt+X)BSBbcXK-Q=5-A57pDD4FdT<8htzb=b=BpE
zy`!Zv=g4bZTpj2hp8n)D6`@9I(K?#kTnvS0v3aS5aTaoOG;s$h0~${xogSNKDt`dB
zw==_UG%<3C%d{1*yYQ7;9!m?sgCS^@{5e>1i*3UfRxFdk@X@fBbtB939Hp1npKD-2
zURRA!BgTwd$}>qXtlWvSUCLAHjrmn*OjlL8Fy2?PMv61MvXZbDOwd-y`@#)|QMHZ%
zJPX`{n|hwHhrqR%w_%RTdSiSi8R>@8@4ep*K#CW0`A##vzQqr6>fr-G*qDumV77|v
z5b`&mBO|W0cBUE5U(H#mQ#I?858{!VDCH<RQ;y-xJBk%u5y$uJ;T{q7{E9VagE+de
zhNF(%{oc>t33y-3ZdNvC31I-5ijYRP_pj>~x@S}AEn)`j0U+Fgwvx5OaWjuNPxfK;
zvUvRAw<{Qp$SLi`q@Ue+uIO`c0WbI9P|c2eoghGxQvAdaezZRX{wb2x*z)~~9_q(%
z@`lW78yPui$t@Xmtd23W{JEy-{G%|wH^d|RgK9UY?|CmE?UjYa-=}Zo_s!k)%`ws$
z<Yx`CY4w+(wDsC;nrqYo@bsEB3iGhn?Zc6zRihVQ?ET)JC1K#JTH39l@{2#8!c_Xl
zn`G+fuhHjI-`RQD@z|d;DGUWJ<UnzW15%mlkBSYv;6e0u27L;kKwU6Yt?30TBLv^-
zRX5&W!K}<+yQvNvtcni@(-i@O{sq2zWwnGx3(6hpvLv-U%n!v$XsjrLEE=5n59Nnb
z=&xA$PXYhh{rhnE>f4?=hC4H))H-#;pUJ!={Pjdbjxpq&60;~xI<-ISY%EFg@rET!
zx_QkarOjQ^l5*<i5!7_i8(qQ=Eu*z(n|UiRrLlKY3rqAoFaGY~OsDmS<~V)^5pTi2
zjM_Vkc<Du3ji$OMS-HCLbAC4$OUysOQ^b<-;j62(!eGu&{B`oLF^Fu9rGolMrLn-O
zLDuTO4zoO3?^L>vO$$bEx*WqRS<+9qB1cV4{hoJH0Gw%_eZ(@6aUQNVY&WEr58Pep
zHq2ebmt*7DBxjdTrTM*^4yQ<1TGf>8>E>Xp!b=em72$7iFqLB!04VFis;ze!c1|j0
z-1^l$tz0@ZW09`KLn4O-@Ppwjmxz5!6t+B{C=8t;r^)K;@e5ig7=eGEv^JZ;UUqJG
z1TDeP*a}&umVz|Y#%`h96feg4oWV72u~?_ntg{BCZ32t%TKD}gsHf38ha{+5t2`dC
zTm_@2z{8GeIE`du8AlDM4=S(VVk94gk&2Mdq93Etk8fXEYWo3VQm1R%--R^Mir}bW
zIHWfapUbEL)sA?cfqwgE80Z5nlSo%Z0Ou^g$I|su1J-%<_X71u_Y(lLIDB<``f~4(
ziP-yNy1ThikNFb}*nEfJqpWcYalqb=_J+f8CKD-oD;XQlgYJ~|9v=sTaRD?Vsr)?o
z^Yq<$9he1j<OoBvUhPjzM&MY^YQ#t0h9L0!jI0v1Wk$sCiiZ&8Ctnw@fAAmcgWHQZ
z`9=kox-K0Ry{>5#o1I(E`Av)2C}~a(5?%+T3e&%RADS;09NlNH;0(jT%WrmKW%A}y
z99BWUX)*I_3g2hAE_3q9xlI~8qHpn5`ZoK~L6y-cWjMP}(xj@6kF#v;5n>n(!cT70
zlvpW4+n`AN3ZO6c1s}Y9!z0?uR(yceAFfOJ#Gn}grjg=f3bK#)oAQMU!$Lcv$PJ-z
zB5i*j45xS)E;_xXzII09HegnR9|LuHAu;rYM2pPrxHcE{K^1#C_+<ao(<<FduS;#9
zwqddw<{o4tT(te7SrHo0j78Pd`sPgzg7BF)k*l{q_s)q&0etcWD4$~v`ICbiV-$4_
z!FpRQ!;pSK!n=$@Z7)iio<7-lxv{;uv=4{hh33$t*%n{Gk|$%)p;>hHNc|1*G&7>Q
zEM2D46O~xIJ0YBsM=$omAb<cIt~fTt_LQAPVM7Dr^9YK*IN01G71QxllUriK7vdZG
z2bvy7BFiXy^pZ%C?SDVM%~+7mAs&h)Ap^@}S*SSD0@b|Ox9XC!6O4j<$Jwi+TFxNX
zujUoj41AYjJXY{^{qdg0QFCq^$$_G5;J?}1ktsF>a2s%upLLPS`hCy6+cm@oYlmy)
zH^t@cXOQ0*|DD-ffg0qdFTC|EK-oV+(T1=J4~|Ft_4kD$oF#uYiA?Ea?}f4P`&giZ
z9Ucr-x5wX3b{(&fs8@hWdb(vZvxx?L)~j}t+E#d+W(P(L<)il$Sr$e%FX(YUj2Ipv
zFQ)(4i?nqT4BLVIQvIQf#LXCW8aCK3r^&QXs2bT&<ql-w4mqXI64r5`*BG*ln<i}|
zzncLkEEw&<VAZfi=y)o6m!u}3(2#T6y<v{KuiJfq+BfGX$CZpMZ5gvHrAW9CuT~Gv
zl1GOBg`9MIEQJ=ie6&Khn&|6|`n9>;v64^Do}3cPI2O6RuQ_d_DNs9sOC78|!Le<P
z7;`PsXVwO8pg&`&d)%d9xzjJ=v;xr{!+sIEwKU5t)G~?zbJdnNtCYdm5zn>|Eg;L>
ziPxe<@$ZnyLQ;E<K)`acsXc#j#vQv6`WC)-DIpBN;oSO`*@uK_M2iHJt%0)_4I>FA
zp9w{$O3y=!m@dDc@*;2VrQ)-chT5v8C{nhWP2YU7`Gmy_?*YKS#H7rbiFo+D@*eAx
z*fyfUJZbGTufGFu<J)J9bj(UI&)u##NHW$2nDXLE9kxTS1r7EunwIW%Fu`2gyh7<;
zB5J-Xb+Eqp8ZBBd8?1S?U~1H{&W0Q#)I-^1qxN;`*7Q6AF#X=G*zVb1^S^D^6eZsp
zQ#A-f4JUM!UwBw)fq*4@npV44DrJCpM)X4y-3xHV^$*y!<?`nXe6Sg&F_?Jtf_*0$
zQRVdt7D4u#v3KD8&S4lq{a$h?fvbM1`-}5=F<3aQSZy*Uj(T_v8K6_<Y=1VN8HYm0
zO~_c!VM5hljf(Bp2F#4hUw^fCOZq@-?vmqQ!dP-$RZcce=%l>#@3f<m)^ph0wq5m4
zEqu=+P*8>n{U&1E<t_jIitO#_{^r^yDt$t>g8b7<h3vcm7@Ri{+RKPE##;ZDzA=|e
z2tz<hN^$5JY=z^tR-^xFaYW)GovTKt4ySjFXn&Sz?EOC7-dt}nW||ulk{_L3Uxc>*
z?&_u%>F5430gQ3F$30A)$`_}se*27_*}F8(`g+^j176cUBH}xq`RWfVN?KjG7pxlw
z((Q^?k-(F~dBO^wtWuxd+}-mv<wamG-g$2DHyISq_i{GRyK65}zxHphR#$#qIDK7e
zlcU|km4jEqh5~7*Vs(7H)ejr-Rav5ai&MOr@ygDChLsPfb#24_h@JNgnyipBfibMU
zUhRJX&#$u<jU=0(O?#AvYMj0u_8soWWc^=$n>bY9k`MNfbhxg)ktlh5cRlCONRjxn
z&#n7vkMB&QqAuMYw8WnZ8QVsT$9#>yb~zL1j}d!c^QW?78}{&Ey0Hz3I5;}QrFp%v
zy|+(`kvJxQI6XYv@MG=T#HRk}*4_x-#5*TKLdaC+U8fV|k@Fn+CHP($fm(L;zOq!9
zu2qix(<C7gV=z$uTTy9<wJ5LPMqML8J~BZ4?ZD=w;yhIXypx-|hj+7yc<`*sL~(<0
zie@FZ5hahEqWRJYDzCf$?)73SCBcF%Z(xQ&pK`ZpU0H=5D46*mr&{WNqoiyAEyREk
zzr8ZPaVDdd3yv*Ly|@tY^XZVBt{lO|X2(3@8C5fx<>1|8gn*7oH(Lyu;As@2m?y<R
z(37mur^qJtrIAbolF4HGlX#(Go*a!L7;vBMlMcljAOuN|;CQX#7pE3J)qV|FNHdGL
zvCLO8F$ZwJ{jH=RU)X8O@A^U0$ns3N7y6E+;+rNQ-_u!><a?BD|D0}z&ZPC~8&I+P
z)gacQvWP|su3pXA?IJiq(1kH;uZ~2W7d_p5%5!V&+pxR89aj&Ugm$7NC>*K;Y{3`l
zS|<@%u-@w6Lu5bdMTj;5;KdDH#@fJn2)B9qorA-zLPHYU?pND&C<j>~Iv9-)_^V=7
z_gL^txYp{6-Y!t45h&@{SlWtd&}DjH<r>KUF=dCK=sSJ0CUSh3^@TRJ7f<TwC=x%5
zWii>x(b=8;zIQkrim<{h^C+1B^f$AbS}??4hMHU^x^@QQnXoF@IJr1RW3N|S(9D(5
zTLF4(Gb5C2J@vQg7bpo(VK=Gm&G3))v*SCwmE*e>#fJJ*B_$DZ`?_=t84;YiT?!iz
zvnqKnM-JP#Diu~5M*RzSI6XM3m$m=^J)yoOH>70!QCb`REdho2mM;}i31KMW-(6s1
zM*%p21;5cIIY3^kUJ@E1H`W;#_aU6k%utZF#(`0lxEO9)Yu#jb@AWj3D2H?rg+@7Q
zZHMZRF36mhuk40WbaO<9C<Oh5NuZ?6AftCzm*4;J<b;^|e{G}EC?~knUG>U#N$kjH
zprMzZ5C!XwFoJFSrzkBs45KqRMs!pA`ryr8(8uwo^a^DH7pGRIpQRy3wl$K{vbZq&
zB)>gO0KmX8wvRSoI-Q#bG<{ZpOu9)=CwgX1wX7a53sGZJNa&Z^)&ud~H6i1TEV%O~
zw_1L+<8pVVaP5hwb}<@68ju{oh77>L%q%dynlj4&ASt2g*c~{z2F)wNHUrYb0}xE1
zvR$wAaZl@4D9lq~K#nq_SQ;EkWs;T({O>;N<7UX-co{;E+mpKIV9N37;coVrrbfby
z5#7R$96Z@>yZI@?oqG%Zl*;?Zo}%dFiw94WP|Iitg<M3}qAiYE>C16kTVjr_SarXK
z_$-Dk_zG64G>sGItr@kGV7+Qk*)jP+QN1e==>-Kf3At4m`a|lR8^w?oTyCzhIagnf
zyDG@gJ71A?Sl4_Og6WB_JaV}MtBA3Or<aqdn>V_>41-9AnJD#0X~nR^k~B6!t%bdd
z2--UFA4qFbuh&;0FnZ`!hhSNRxV}E~9O{vec8?Z<xH-Lj-?tT{qO-29mUgC`KDHo5
zqxL4T<^8NwQKhJy^j8}rthnvqsZ8HPDCU`vP?L`rEsE8j%BQvwEB^u9k6><F0OsGR
z_(Dm5o)L8qBQyPz$pD0iDaxgCRTiah5-p|x;MtA#`(dS^pe)unQNi}9v6vpSCrmvC
z(Q6HCs3TUdx;xf@epc}1N%~j5?T~`C9k*|{jz`nOEjJA-XFIoZQ&sNz+^Pq?TOQTp
z=dWA69zg}Jlu?Yl`Eok)YU|)|@93}xp<0+A)tmXRr^6J^+IiZ-6vdv#K#kVy=X9jM
z&=zFAhZWm0uHy2)OsiXf($=4wIQVb&d9dbXUJ7;8QOQsvf%j!YE7_xY;|ALcf*F*7
zLONaAh0anX5xwPhIdxh>(|(SYTqZj^C8K3XYa3It+7hiSd{C%fPo-9EhsooV2Udek
zYbLd|HVM<TIDjyxIN<7beB1B7yz9RKp~LL&K3}Iph}pU9x$zLXkEZjP1p}qO<KTJf
z*+rA*7(Ev-xwTB72N#6X7J|KP*?pHrYZ4zS)|2&zn)pN++hnm>D+#vn26vo1yE)27
zOW_BWn^5&muv>O>#9l<NjU1pP@hB~4z?VdZ>Mrc<SS@LoVv5LT*>uG$pHY$HFOSbF
zh^?BuXTF_%DOOWadf(}{$f%bA9+Jp%6;m?}AydP!fiw;`2uoh;Q3w(Y^`S?BssYZt
z;mg&=-u@ft5_Y7MzCPXEnZDedOs@;V@s-~x(SJa)TCOGxE`*ZRWG!F@6B^N@L993l
zQ^iDMlnr#<+7FRFZyj4>C|wQb9^E@FK>y4T`q?z1@-7>@>wsI=nwdqa+3f5?BI<hi
z(XFeoDYh1@6MQ(h;hMz2p`^}imd5pID@8|0Z;yTg;H!8m;JVfvz-?M(;ZW<nY_3?D
zBE#|yk9H?0IZ+=-NTFD97qyy>P4?IDlgwEIiOoX;s%ba==Xkb~g}gE`l`(z{KD9Mf
zh7FZ40GSn!*#@D&$cNHr3S;>Rx=mu%jM!M(w+zkq6Lh2FTV3TXF!El1kk2Ba7R#`g
zb~OaHPP@;ujA|GX#SC}0#~tVHeY~&~rLj`HWXHbHfS)tMeUq+ku|C{e@{D>3B}>Og
zj?k7MmNOK-&SMV`pY%Wip*W0QpfeO~biE67x>aXz!PRjRQB-B9tbO!9)=IA;Kkul<
zaI@VX`f~hEA?wL$K?-D1YGU7zkW`ocJ{rT}_TKA_-Ob;o-;P5{l4%oSG|E~?G0rTh
zhl~DBx$3WgxJSNYfJSB)qpgTs-BBNBYldM9kAM6wO!rF4x5YSp5Imh%96I`<q9d+e
zQY?C2ibI*=HnLg*TRkl;QstU3Eq*;}Zzrw(nIv*{%XTJepQ+X8z<9SX6sf1K%8h%J
zHYCYZi&Dz-u4~NSV$TYuw!DNY*ht2CF%J2wFeBBqEu4=>KTdT|T1cJS6EP8wt^Qy}
zeqwl1m<!B5?(}x<*u@`tjm^mjU^TlGrmisLb5Xe4`R(I8l*oRn7<CLxMwx`_Br~#D
zSbhgPZ;Q<2TI7V?fo>K7hj*U-3YRgI<5sk)$NZLvNw>DKmr}bmm0BW`O@l7>UZ|up
zREa)q{6d48t!sOTU)wYCr9A7mHN?Ts6)Yw9{t~bn9!*r<7Z8&U6my(&{5rpGj6O3#
zxrRoch@<7R4y4jNYh<PUCk#uxwlP-PNHF}-J*`pqpoP9)oR+JDC5?qg*A~n!zM+nC
zJ)$y0g4EudVvu9nJ<%&B(`e_{<9V=9MQpV_3g9i`>T*3f8}!M)=xDvX&s!03fW$&G
zUfK946FU9~%x8Dd%xc{-3MUcF2~$#!FhFTgBBh?n45Tvut6XJERm}5l>Xe~_E=wFf
z&jgCWWQ^gKXgcR`DENGbXt+N6aP?Uqe9vhH%oedr)ns>*a!2)_CK_K#tJ3KkWPH7L
zRAp41Sd_u#i~W^=7Cjyc0VKVU63M}fbShZnX<ncm?&Jh=AyIaeG^Z~L4;|LFHKW#~
ztG;<thIOdYbQ6cRYSmTdz=+z<<an}j$W9BBv!YLbjyziLQ~g_IeJLZZAZ95m9x7eg
zW7Dm*p@fz1lv4q&uQI0gu@#8^LnGnkSL2dDN}wIeP0%5%l}?EA;CXwCPZK#S>>gdI
zT~wR?g4Cn9gDNmoc16%UIttEa;(iO4FVOhy1P>b+tzc53kHV+H893tsay(8VoU#SO
z&dVc?zv>x=mo_ujOkW~IxI?nVgp?9B*)pFX2qm^_f0~6s0-^zNo*DMt<WUOz8IR!e
z%uI=RM(`xqeY_{|{pOl1I|3HR=8Im8Qm#uM!kQLBSb=+&vOPw0PNfCd6De`k!anbz
zsXYSGYU|sshs%0!!aU%~?F9=l-UPC;2l*1r_;w{-;q6J}`O=WvnQ@3b5Mwj0wZ{~~
zu}2@zzE&ag8xsd!ZS9Tc%RbJ(L+aiY;(<V1-;b-yzRb>*A#1Vn5|ws<r1;s%a;mB4
zw8eZsGK>d*OCj14qhGrwVs^~YauzrQ#dW!K6|aUtyYv(x3x9=z2LpQBl%#xDv<Le?
z&^;x}zKWBwv{3_d0PgQjEZj)xoNU^3gBFynz@$DNQi2YwkFQ4U48~@;EIHUJ>(vg$
zk13Pyy;-qBy*^DiA<u&#{#_Zpl8gEm8=B~ic|g6sT6sG&7r8xl7-E^hlgQ3p#}UX6
zoWbq&?X^z-3D+bF_@da+0uDPA;Wn>7Is<*<wLAOC4sg2$fi5=EPb>{#=tn={@3q7P
z+@CkrVBHpJiLz-I^N7?fz9DU%5Y+0^?GMaGw!VE*0?IclH3MOxRj&_I6i`8Yq5bpW
zt=DZnjY!%HHH|{4^Xw6{8q7puZ!!R|3pbZECSh9h=o`hVNioyT+fbOIc|AGZsY*lK
z;ozYQ0Q^ZyF3eiH(#G5da~XImtZyf&D7D{~h01wc&8~U4EO8F6<I%m^8}gK<W9Z;%
zPXIZ$2^Wb28sq|!g`%Go<d!Z5`R_j_fzno6M=tPyz%v#h;-w{WT_Yu30JCPKBUq~D
z^DcrsX)TE)u~1AOM1h7^e@<cvlM&Zf&<d+*KEuw)iga@#FA=c$CS9Wl7?5dxd@wbP
zG?!_L!I}7}onA_B5`?YGPqqP(=M;_C+ZIVbRnWfaJZ1DKiCpm8b3>4tgpKv$NtOhd
z72SE{GBTxYG2}YWh4V*ug`YPP#^c!Zm73^)!e$cbp=sz+oe>;u<S0!tWw5S3QFO|#
z9~U+10A7D-CvL&@XMdhuqVt0g>F|TK^OirgLz94&Q}i@mZK(lw06G2q4Y%>T)ig=n
zlsjI#nmN@k?~-6nRamhDSG4Ld$0fh1Hy;-Kt3J+3Qt``f8<ZEp)z!_t7t;eW?Jf8V
zBVzSJ3fQn=!Dr79t)t_wMCqOq-3~E^H*tqSC-ZD+bY#+ho0)_NnZq1wRliK78c~T~
z5<(ulBuU0z_#8BJh*!oUKy>2*AMb1Zy?FRo=tm;y7G`qsvc3wlYyvojg!b3Ts{hM^
zjY^?k{_EF_0W<nYMacd1dX0hsJW9BlIM55Y4QLdS^|1d;`C?x#&K^!%tvo@>XmblJ
z$JB*kXOdX!;V|ndPtykI*1k+5OdZS-Eg3dX+M<HXzY@dUW|@+bwZ9P$;^u9Hd!;*2
z_%Q_d9f$}~0i6%(k*uJdjHlQEe0Z2+D{Hg6V>L;eW4xI}mBGON34Ll8RXstqIWsX}
zj!$_?iBf%e2y?=Xs)WBjkT8AbuX4Jfo%X17eTX^wLH!wmn5QUxtR?=WZY!ney`5LY
zUKXbU+|8Bm08Nh1uFn9OtKrcFVdyuf+iG_6@$7SAm%+J(m$6D-MtD{;<%fz-dUbVq
z=bnRYR3I>)*BXkdtMAx23{!((YHF8WDL*)w-p>M7_1ot$pE;bLGpnwXW-5L1tgXHd
z3+efmRft%|-<3rV6Q;33i-^y(Nrmb+UJ@I{NTm*9)Cg0t>RCTrRr@^yFxGIfr|iLX
z=@28+z=B#3%x9J{{c6`?2ltVd0q;uV`uHJ-FgFG@Hz~5IX4Xz0q1Ew>5xASYdb_#%
z!c17_zd~K<$ZdLhHgY(s*5&(v^^9*pZD~LsmWuM&_mg+@>e=bBCq$Eg*d<?+owto-
zSborpvZvV!{ej=S+CH2ncY(NhW5i}Zw*A|NmC+UFuEY#$X6+a<;De066wB@l5Y^*5
zBj}uB%XxNMd&PHwOR)%bG%^&n%<!IEMo<3g>>dTBwX)R2aJwEyO0KogGHLfD%&9#+
zA9LlEt4Lcd9mrv`5YC|3D;p{LU43EzGKY_(n@FHCJ^b(b_Vl2<e)TpFQ-@yUz}AEq
zUEfhe_tSZOG>z~vF$@$yqO4u3KCW~7EV-F}XBT?veK-e_S^0HiedERC<pDDLA5<NX
zWP;yr9wMY}Zvt`c_M=w^n{Rg}(_P(DUi#+2mXFotia>vQE{dD%SHA~D<C*=ftV$9c
zn)|pd=NFk&c0#lh$gspL2={roHR5JR)BQbaH#2lh$1p?@!6lpazG0(WDgI_;T~eec
z1Lv%axl?q#Mz2{sF{GWXX=u1(1tB@oqt0Q+mQ^i*=@EH<gu@+aKRR5)Lpz#o7rFNv
zHn=vScq-86@yFfmwho9M)yuEl9;BH1mhBJ=W#{Rb{=#JEg^b{(MiZyfvc@Ry>>X|H
z?GBZmr$0u?)oF+e*^$e37`*#Cv(VP=ul0x)99+&H|4RW-rVa`yOMWoEWJgOpy!~|T
zsO}RvoPuX6noaek-8}QA{dfQ7?vp?)4KIHIp>Fao<J6NMjQkBc6D^U(f~}cE3)uq)
z21xUg98R^w^5d#)O<Q(ya1<V*uV90T<=YxL77ZzXCTn#*G1zUF$5IlUR8yQdPTlvb
zkQQ<I*@WO&nsE}+%$vLWC0{2kxS2JuxQzW6glR?<k31<L;FF4uIxQ**5(tC*CvX6!
zb|x7-Ii@w23S|bN>X|52!0YzeCP8OeRj{fwCMqDS(S#zGPAEhv4tu}jQ=cX;O;Wq0
z(=3HD5GN`5-Iv*gVFI5L3!AoAg5JIuT-~e8OQ$D*ZW-npqMWyiCu12C2G!ul0q#Ey
zCRcq4(uCqpd_KLdJw8ym$(X^QcVF(ko#rgI9Ta;0nw^`0U#;qHo#yR#;SUu0mOv?%
zxeaJ}d6#x+J!+ZueBwZk2aF@oQFV@W@?pL*iO?L<IU3yQJO4Sj61M?h7|6bjD_-cU
z1eBHN6~`8zHoK@sEi)9+eNvm?7F4!Cmc%kKvIhnSQAzJ#Vie>1bu5JB$l0%P0Zm%w
zpNa+zX4A`tZm_wZxTD8lzPZVlB#%{n%8bO?)hwQ9>E=pk&;te^<)SuTY-bDjOnj^L
z-Mu@%IE{dKl0@3A^{-o+ZcXbQxLnd0v2fyb+YZmRMc76LdvLu*o73d4^J2VLwS<;D
zfMSDT9<Ch;X7kl9uhcFEQl;ZIdJ22}UEOy~Seu58Qp0bxdsx&2`;E)z^{(>*i&R|-
z)5(cHS<qD#|35X3!)<?s@GK>4-lT{xcI(MYsAxsOe&%mV`!6jP55#Xjw&4%-q$H_1
zG(%diBU?Bl;cD@Ps3RrTS37n4&qCVJXkh$2V=}VTen~AFe3Cdvj(VK-;9VM5SAX7<
zzVzmDI<l`(v3b8Wr~0mrZQfPe?<Lr`RxRl|boxfze4#2)>5c(3PUyw#zHpBoUz$=Y
z4u|Q;bxgdfY;u{Y)M@;N_T;v|Km~<p3FPZ750P_wFKN=dRvh&9+pT8*h-Ef16IxTm
z33U>hGNRBbW0+H*wy}GpIegqkU@KIK0e~7H+A-?J@#9?D)dYQ8sbiG}ZvOWUq*A?n
zi(#aYn(rQ`2eAZK6B(q05x(8OD%9?l(1^;1psSoA-eMZRqgX-w58&fpkx7xoUGjmO
zWQ)aRx2S4o^3cuQwRP=e2U+kuy^u*a;N3}0!|GNd;_-)f2qp7d5n4&l5annzjTX4G
zf67KF3k8E2b2VQWvi!-_^>qs4L>|`rzm_=IXraV1t{^`?)%YGiJ@}ZwLe`RhF9i->
z<g7(sKeR9)IDBS>uisrHPwo4S&U;$ih*C+o-<?>YgBik{$Ugs8Kc)+wjX|NTEhx}S
zxcdI;3VPOUZ_iuoHxY**Po0k|Z|D)R?a%K5B-&<dJOiCZ+2P<}JO{#f5OLzou!DR1
zE5q;ygHD2)bw+lX?DTzOft}AH-p1G5MZ*D3P+uRB@7RMY(yMvDIpc;tFDesRl6vuK
zE&M<?l|Qmg>vvZDFZM`o)-6KXQeSyR&dxG%rCy>K09&s>WJtEJ)fRQ;F>X#jwGci;
z>y$uS176mtWv&Oa3lto`xIASEi$n&`lakB|GrKQ3Tm(`Ebi1Y*gBUlrCT%A7e@tFX
z4}VQ$mRw0Zy3}3b96NMJD}$E)_%KpaAx1LKYOb3PAb@2<KyXqEM~&{KV{m1bSobeK
zQBVWFUGbbZ1+)+{q-e7FX0tmH?-Y{r>e`VzrGFAH<O~lnX0{E?ZsCK6JwNO|bw+Q0
zc7H>I|KjqaJS+H_m}~UMsk>_nZ1m$wOPVjFS;e$PsA>v=&O!JOCc15E^Km2`$xGPW
z<A<`c|FBr82ye~q-hZA|a;ioZ;pWS84c15)DJpGk{n|E`LNDq?F&jn&+7=vi!qE`3
zAUXUjK0MTXA-nb`4&1bkA?+jKFdzuW{KKqJ>>fMUC8D~r&-BCuUU%D|zSYzJ-cB?=
zo)9V?De>~azwgTu62^;Pc@RM6JPCG=hK@R5*gkH@|4Z84b;WUQS%dy7c~$4sc#X=k
zWZ9?hQh*TVvq*$&_2`QfAPEV9iVw-~>-(8&?}$ufpSQb5j~X?O1xZH4j=k5%TyxD8
zC~i|><9Re-(tQjq-<(FZR_5HE)lL~0IN8*hl$hKGG2;w{fJQ2V-YQUHXP^ddCk`eF
z4Hx|jOXi=iw*FI~+X6Z!E~WHlq|};ZB>$Mce}7(zf>mmAXj6juqWz-H8)EH(-M4XB
z*3xSfe~cdG@lU$#3x6uJBRYn$-71{9hz^eT*|XK2d)UQhGgk7|+tYiZX2<$?ox91K
zJN)SeM%MQ~JX3lq9nZgs$;NvS7urbVHBnJ3!AiEa)Jc-suW&?MmG#vsAm%!~#2|Fl
zahpd>Yum7~l!jUzKqEzPdy~y>ZsDDuC>-BrBZ1>c<?QS&vF>(mv4ZTi|JuV`dwX?z
zYA9U)<}47zK#uxpR2xRO=V;btFLzSf=qe9<8vFrFCHd(gU-x2f2<e*LProe~SWT&d
z*wz<H0Vg&$TNZVK=ljwE#J*E;;A6qxH5H0w^xr{oM$rNG(VmvE7$PLJHERIQ-{-&L
z2M+fxuU5X15OiN=f5Gbq6)7m<X^8pTtG_KKRb=a-4aN$LBh+M4;N_jot>~|8RTO28
zMzIwJqI8}tRmiP_KXxkW?wQHcAR7Cg*QhSB+g%7zxgQM$obcY7jx0HTzEa;TSFj}*
z_Jca33R%J?%KD+mU5-<&MCTeYbj)7W7`vLvsxQ=6=+Lwz#2I71hv4gH(u+C!`1Psn
zxBJ31@MbgrAzFmPPoILv=)KgEVpiE4u`zipOL@6+q{fg@C-0r}R`AdvDI7eS+6H6x
zG!kkfUbZOD9@=^O3tBcJ`2_)$_>)^x58;`I!bvMMrS3c;20dJdwe%teBE58MB{=p?
zp4(CR)!vm)9ecY8;SY~$v*q49V*2=hJ@!%Z8p0UzwX>c)9E%Ksb14?}>Ip$MZZ<i)
zur5zinF=s7Y=}pTh$MlXlgHw*1`4BTj~bA$ir`};+LYHG5M@%11(@s=LznXr(Inzb
zBgQ*GPw#Ay8p!h^SIFi}_uTcb;WK6GgNB1sVB!|=WI>LJOe_O%`33sXKJP^aV!OGV
zCGJ}kY{W#1du*=)2O_C+6DlZ$oXP8Jn?JdJ)=Si-1xXMT^=tzI7BKVDH&q~{cq-B{
zz41DX__8ZauC_I6dtCe0@&)x8^W9%Kh6O2ovibJ%&+^CZ(og~qH2KHj^PPY6n|acO
z-gUc3L2KvsU#UH3aW_7HI#!wKA6M+b^U3KfihnbiKjSoodZ$N=|LAU}u&%@*ZC$d2
z%+AHx|0o3h8=o*n5kc68BuH#vrRdr&W`iGWy&TMJxQ#yiNAEFz5HJq$q!wL4b#lD~
z^z8uF+;xhrd0>zBvzl9afj~$4U(U;<{P;AYTrnTxx7z$;v98;B(U6o|B$ap6twFR3
zO}!D(H3=%UfJ%c$|5BV{k((S8z&(G9<xzcfX>pJAjc{x>SC@e5s;A6r?e#+0q-5I8
zb$%583ZgMEu$z_xdnJdRX-K3t`#g>IkAD^?PM%L^#s?4G2;-p|JXI<&aM;b6K9>RQ
z8U3ToBGjWjdCANdlB*YXl8L@JkHDWQ%?Djpxl#sKVWfP4o8_F2T}c87!`0E+_t@op
z1tyZaoSvLiU){C>+2ZU``b~6C0=&Xy>pI|_{*b*A4lXOR)v)R=Lv<-^Op*e9K&)W4
zbn$-^bTx1#st}o!+1_OdhNN8~68Jv<F;d^Ypq_&j0R*Hz%mSiD+9c&rVxK(W0ICiV
zb>C%VhOr0UOn+P7*_}@A6)(S*q<#7<$pUM=EZK(O(qAdDxe`7>$_;1lb#RPkV8NV?
z<K+00=$(#!V<Y9+cEz8dDY~4*wHY$j&TI-{;&^Hop7RsS&23ph0@O!fdnfWLpwy#T
zE>A5c%<m06hebZ@=d|xVi45`>jCFp}l8^Mh&*mSlVUz|%o!{p7VJ~jTAVTE*Bz*;R
zoSD1+2Z-CxKp(d6g>_d%IZNAQ@-q}w<(k6?<Oq_h)bjk%iNX$Q)1z<jOP%6Tsqs<R
zG&B5i_I$M^6pHbF3hGp2uk_>9mvkdjgQ*~9u~Yo^pm7-T#vDY><NVIS*Njjn5Kjn3
z_uKw|`Gp>LmIZ6o?X)U&{wM)g6bx=wMmk*kQ*d%d3>?x+Sbuc*XyS-AWkQexBUQ^%
z1EowMuYsTNtzR1S%k*)9<UIm1h5qtD<2Y9pCY9I}vIO02>02M@7x*2VHq2-#S|eag
zz;1%bH)FmLXGJJA)bMn|4yA>!){3N2uV^&Nc>S;#RT`#yF@IU#2zI0(p!l*nT5UpA
zlhtr7Z$D8HxL+wI%VpjVN#Sar3~P-W%0-uTRVw-LIe9DUp;zuNS;*=>F_s%%!J2(i
zWF0T1S(x#%&$Li}_@thrb_q71WoIl1`exldo!NZo=<Z&WGccksSf+mwyAu-HwCih*
zW4Fs$WP55FEx{r&wU??uMAt1fkF`6}ltGUn1itgZY}&SVtWz=V1#&$R&-1Cr?QN|e
z3{N8V7u!sygD3tDaLeLRJhsV#ZUP|wyu4pPB>~U!Yi4%iOg$r+MIQ%6I9@1Kkf;Qd
zS8Ruq)%Q%OBK@I87=<sm0w!JlY2{bkaXmuDb9i0OL&iKb2_o<Xt7{9XnVxm~5^NH4
z|CSB#@!^NRvO0b0Pd=|yF(#QoBv7CbE2nRRU-1~xKK=IBSL5-1W@FaYS5`NFU$XIo
zQ`cP~DWBT&iF~4EdHo>pQ}k9~zi<OXpSf$NH)-9&g3zL2(jn#VUtu(tMf<PJH9Q)&
zMgF)HYju7seirG6L9TN4ZwlL^GuUrjMjI@mUDhk-Q76Y_W9u(LYy7yH=joqcE?2P4
z^HLNdeysKX?0bfnq6JU>t1=9?xPE@i?su*pkcET#dlg9Ir5qxZ!7Zm|*vgnLBg1tx
zBPbu)fD+E75cE5%M8C}4$_5om$AK}$or+M*x4PxbRl*~md*a~o@v+mCzgj(_aXcCs
zs(VUl81pL2Z3MI)X<!@XXg=TMu<vn5#Oj8~NT?J2Sl7%;OE{`~i9l+7p<ieR_Bs(g
z?UUivaU6is0Uqj~T>xVbtBOyavPHIFW#jv+lefIH@BLY8j{Ny>dk7fwmL3xbQmQu@
zY!R>|3MYdix2QSxFw5qSV79~kge(?64yDgh53g4upaE}_aY`Q0)+Wy>t>2>6rV(Y}
zL62W#21DB>&T^%ZM?_FpYCGkopZyfM%A>RMLkDB=g>b~Nt*QT5Fm7*^=)uvPAJ6=t
zVM+5l?|eV^HB@P0I8hq*YEJm`^ZC7({1T5Us{)Xfk>joN8!HDgK>(?XSA_GkfkWK^
zJ<NZ7cMaqTC$q%`8GH+IPSyazK^c3V*YG2IGudXR=5HzOency}7L^1QOR}EJQ_Qvi
zbAvF&dU^_#fQt9DysM|hXY*-6>W?h_`k(l1Focf8V}_*kXbWZVgTAwt`pU}3SPSNy
z84_0~*=L1s4)<qu-H;9mA^c`Sg2mntEKpwOOpb+J!Xcg(+$9SoBILgoq@S>Z&<$JO
z*5`z~QEfXApU;vz)^DWs)H4W!S&Bj>zVxSnyx3*8S2xvF{9qc8<}(rab}Bhsb@Bo~
z@jl~8cHlCCQ-}Q2*P$1E%3Jk&mmdm7qOzfDy(*>c1CDFvS*)y052G=#pukMt-8u(q
zyo>od=hhOEoyv^*M0zoNLJyamtclsga;D~Bu=U3J!SX1PA0uZYM2*KCy9TSekN%ll
zyV{bR)5~Jio<%S+4hEeMSY@onjm<sATK1S{@fMRM@G7GMGRhe_)HTYuYY+_gnOhzl
z67plQSl%|6u@gCx+@`Ij{H;XvCmwwkd4c~Jm;^%HFWr8ng}1Tc>ke?-BX=|ca5*lK
zl>Tw@JRYE(A8!H8w7PNPfU3O@ih|ZBV{nfkmWrZ5D)sk(3&h?v@-83V8ff17>AStD
z1+JLO%6IG3-Xqsf&?bpSlJ(|eY_i83eLrfb8}Gu=k@0cr@7`(3>6=7wxOq&{MW@48
zgs+9VV572TuPR$q{CGja%_ghBRQ(WMaIlI=v<xZ#>>P5nQp>w6?3k#w70zm?g;T+>
zTU)KO^4)la;jMbrUBjlVia^XsLE%=Do4*ePHm2`v?D_mg>5-E^SF%=jcz+w>w77kq
z@{r33_WBVxw*=o*`9q;vNZ5#PsD6+FT!c7co_y;Vuo{_U=Y-#MKL2ycu0@=DowaKx
zf1Sv#kvl&yN!xjoxi$t|#1NBGT;I>J^-8_-HMYaI%ai*w9q-KVLrlr+QkCEp8~2Np
zWiHT$7M-I0$1y8=r?8_7?p;lZ&<p{un2HXfz#1c)m*liSn0GmKg={HYLMUlii$yCT
zj%`M*xs|`HFRy{%;QZ|vhx7g4$Ki3&7!jMR2YUe+X7_W0wC0Rgsm;xmjbEI86nWm?
zOt#+Lw0-P`1b74Sd#S25P_`31Pq&UXw-?SvIZXa=xOaFc5Z~E!kiT4>d_28D8`ghm
zi`JOAi;u+=yW)1#GQZO8@Sk5Vv41WmHwx++_~_ub62lJw-EjN*3t1{gv~yRWa%2IR
zO6T0tqk#4dGrY!Ek_fM2HTlccA}a+<3oZM!BVdUdfi|rl^2(Z;r6ulL|A#TaoF0P#
z9%xv)tDo@FQ9^mFv$=Y9pn}4gT8F>a3cdDP@g7cF6@zQt`=eet?C>WVK`-;HCuHJ>
z!c(l3!X(@N6hSz)vRkTd<v^*<^PI}~2o=E-{1N=yQ*B(WuU_`k$PZTo)Bq_B_1ho4
zyTP-3N4Kk>27=ou-Ex%r3Fc#NOJfbBjpD+(l+LkWY2P3bwJ;#VUS6LaUVb^l{WDuF
z8wrC%#5QHjaY!$(-k~vTpyP8Ab1q}4<i){cYr$-EU?+4J!15BgN~GMDjFfoK{qH_P
z3%`|txk}DY2coy7ERpO=|A4Sv%oB5`-}JHQ)zQW6ac(OdF%C)7#`XOtH9kMg^HpCN
zCj4dU0gb=oXRfBO+&9GN86H2D1CUvqzf1LeS1P>t6^LT;`tBrbHR1%9sL=@{Jb9Xu
z?1tbhWlT2R)45gYCEC@yZ?r{GFEV)2@tdE7G*f|pCK-%>*zZ*u#q!<+gvm1GRtJLZ
zzA~;TM^z5u`pDK_1S!Hi{aFb&z1`uSHLH5Hc$Eh$-t{a_z*c2vmI%c9T$tl^x50Kq
ziMuj9sZCj&(*Yq++_Ex>Y!;HmE!!`<I7H6!WmNa7n!0zT6&q!9|7(!k0dee@dR~j?
z8qm`|h+_RqG4J9hxv~xC{L)ysR!$o$3I5b+`FsB@07P9=?ux=)lzFQ`sMIWp*hb#P
z7J7Mhl7<EL)+=lON}QhG^MNh!D<A7DV<NvBz_$uf=hysF!}{_W=c6`)*hlOig!VEp
zPVSMTpTEDuRoaWI$y6{*tdFPfMNe@bfUpW;#5X@p4p^9&GbcFg`Lcm(awssHe>yB8
zo{lE|b7zj%vs_rI#nQg=|LSv~$<0lH3cj{Dci|Zyhcmp}wb1tL=Lf?chI*>EqQH}4
z_62U`-_j$RLCZa*q8NtQ;$*%#g>hB~75{p372vp*Dt+g>T_dU|m_JOaqGSm~3vJ(?
zdaHx+JL?3f)Zc=2eE^zUJ?`jT`cTS1j-U6)W<eqKO=gFv0h8%EpSeF3zr5PrY&Rg+
zl74vmNhOYJNS5S#NCBd7CWM}@9`51Z?yS!y^TyhYbzTs_rV8bDkmiE00(q#hWbZNH
z2V?GJNjl}gFC?*pLH1hSH8wV1)l<hshP{jec88b^$W^@&&ve20_Bbp?QAx2@&G=+`
zZqL62HWChr=2^%ZN|5~ppHpHKoGe1PR~zk1uq%%?_YR}eU)wS7RNOZe)K;pt+o~gZ
zMPl#@yz8Wnby_8gA0OxFr-RH^P?N0=G=QWYxJ0C8=tV5b2OL)<(^jzM3)88!|MJ!3
z<uv#o9N{z^qBUayaM@z~Rq<4&RZx5<pud%-A@2afBJRYnr^L`>T)%0c{^muzKzl&G
zNtScX5Xc-`s5|VhUfD){0iLYxjs>A4d9@D7A4uJp!*=^Qu=39BHFkA`!D1b*hmWP;
z8LubGm8V(*Zb<=kCbKI&`Hi&~li92FH{DRxM;iB;?+lBd7GE?u%CJlZB|;gn_*<N9
z>*wJ+&AbPB30`KOsnIMpaKQa#&gZblk0)<ZspW;nT<&gV6RTA}TJoqvBX*P(wMh2|
zau^wj2;%lR^cEv^XxRJJ>ATe1`jLN-TYDCtVKhFioI_nV-X5gD_4(|CjQjlbgU-@I
zp?w!zf0EkER-0mtfQbN^xAo%_b<_Rqm?Zu}zo=TY{LHt@sonwy6Qx}?eTThs#gNIC
z&eV$9@)^YXeIw}!Md=aF8_Ex(7)I(&)SM+=5bgagIUfQt;Ik_j<Y%H)!7Gy{o)`pP
z80YbT*nku!;Jws9=>=twn@0`Khl<XjEz<dxp!-fS`To9jyP1Cx@DItt5kIrYcWmq!
z=w=)P$-KPd!te{IJ+%o8DS+^3t=(F=kGXli({S6+jE33`AQPc8Tk5zmss?VNr4Lpu
zru*DBqxBtV0%JuJ)zij5+%(p&mh~st9jCW8dA)b=`{e8Wx3*0Z=Y}wFM-xIbeVJ1+
z&p{-pO4sQO2&sDS`1|pjyKhDrO4(8{^omn`L?a%*z!2g2x1oJXb85Ir&OPYo^eb2n
z^HH>N#FO`WhG@oZz*qq{IT|YmHnW|<x~2(w(C#D)Cb4-vq9+3fb88OB5DL`>iFj2c
zcCT2V#TjAb+2<iGsMI9gFzPX5!rV7$bQ1<~sv#=#%ELIFzq^`?nRm_*jW60j4u(-U
z@#2j4&^+{TLq2iPU}6GOIYNtwM*oxwaT`z=8lJ3_IlI)&7X8<h6WhzmQDt}SwYAT;
zLZ2|go7kb{t7RO5Jxjx_t-sn{|2=V`M$cM|NLq~#I7V)x<>(p_u|mE8ULOxu>?wfI
z;$-DE?4p*1D|A48w1h~hyQS<EW#97jNmNrlU%ww_(~$iRgy0+Ek(UBMUfb(vt=9e<
zaDBo=5T<v6dGnxzlWH@1v8O?^oP`8a(S0)AJZN11E4=~zyDLeae+_%|724xh<x|wQ
zqYH}`V&w;4dM*pj$ha$YamkH%Zm)IWw1-cho!C;UFEN<EWy}m+pY<Y8U!WAJACOFk
z{b4Jmi+TUi%avCE%E-jnEyq$CG@nYqVklW6MHsbcmOd%g{q?873jX*<&eJeJC2wtA
z%CB+fwdes%zIZEq-iPFFX#yT#1?zYD;r8=T#;DH=Ea<oAEq+BF|ELc8sh;J`2;!O@
zJ~?7YzZQulB6~Jrc3b!2z5)R}sfEg8%DAPiV85%q8M`oCDZmK~cz0_>=!*wenzQ1#
zFxHZ9xOr+N;{Bf>%!4rp|FA15@DCoI<4BqF^y|C|2Ho%HG3W;vkj08$EFIvHsp#_J
zh!>}S9=AOXB2uZ<0KKF!7nmN&QT$|j-N%UCeP)g{Q3niDITt*p8Svv0A*}+We*~I2
zI@n87+dq8NwNlBO6XRUrMHyvDT#prBUx^tLkBf@Vtj{;p!<z<9wZF9C4-H1GTESAK
zCd=3Qv5msPp6yX%{>D%<WsTA|$rO_%V7x268$Tqc`#vd5G*Cn<Hg18X7n{{@79Qw8
z_gkoJ?e>zW>`ZHen#7h~F9FU)e*$RPRMnl^TKZxCJ6wd-$tsm^ao+zY1#M5x_w?so
zR(}-o<%sc3I1%eoUgtHbBr{&ujEW#%0AJ;tD(wr4g%fY+H$s*0`S1`w2?ZySf!~hl
z*L33{z@d6&1y9eTnY%D^^`A{L;7NL%*35Rit|)CxV%>#Jyk(!YggOM<6wfQ2PK-MF
zXCk)$tXqES?eDA~tWFR24pvq-CTl{Z{mT<XajwWGvd>k1k2Zb6wyMq>A;S~kcwGJa
zN}#K?8A_(IH+b1OK;vF+3O+2Qls9uAXt0!TR)#@)f7>n(U1%;Rd!x{!82eCmGR}NT
zM(90F=&pUp6o}Q7ObnX(Fs9CnlsVwBc#)G5!b+P5yBDYNSpDmaFo0O;@Z~F}`JkRo
z5ktZd=*X#=<I`<@Q^`wE3X4jM#s$QdhxWTpnhI(biQ$9rR+rt6sx;rW?ZWU5h~V%S
z&(g-HX>tGB_g|+uM$IYUHt(cYWN)&Enlkw(<qaowj!mC`=j~YgYV`}5<Lvl+<rA5f
z)t&$pVc{-upjLo)i`cmO98kHy$8mRo-Y-wS1a(H{1t%pOYS`7&<c)_os2Q?#-s=~S
z6XM4ctIDO|Rydyfh(hi3nxqexFqq0rE#KIl*!*eoUNukZzjE3Rurk&?*6zl^`s}~9
z^(6b6dfDmTC}#@O!QY8CBEE2gki8<VI|;&ZGPiOq`56pkeqqRbpxSmf`Kh$vU{llc
zP>NC<{nrFW{n717`I4;<ykvnr(of2dZM>w@Xcre~55z(v*g2a!>PwM~$NJxi2D`r0
zZJ=z%GCQWrx}Uajc<olZWwROa*#%>BnjG5XA!Dvlq4gI)i~^$-TiJW5Yq>2L`FjUk
zP2D9b+<Bf|I%EXIi*wh5p<2OD;D1~C5hdmWd#OYr<_r}&S?768zNeM(Q#jA?H{LYS
zY<U>Rap27@#&$n292_Sb_d568?P8wJf^MWe4A^Y9@<sLL72OpAj;7wLUZ0{H=XYTs
zxnkQK3ZB*K(U8-zuqBD{ozGVfvj2u*0$HA1jXCZ5ku8<&NY-el;Jm)|3)Nz_WUbu_
zcy<GLAzM$;bHKXuC(HJijWe#8<_^t&=(*$E`TD&A<48P#@7)9wTmVC3UekMZpCG>}
zQZ~EBBtofT16`~=v%msZ_VfIkO|Y=8R?(I7M)o$gR-X1}RcV|$YRI^898EJo%2+A<
zy+*ZRNv!nBZ12T`D8n~C4Ff-rS!VD+ydei)!lq*r{A}5dS=b+Onci5QMr5|@BtWK)
z_wy!Uu)Q>zfLBuPx{D36mg{RrE6<bAINH^MCO?gIy~UoKK6=%I;B;s1p5j<iZvQ-|
z10-<=wM54>Q<-*;GUc^LStx5v`i2fs**Sy>j)}zb+7WMQ9g6m_m^HzR@jnThZ-6x2
zkpq;L59C)VzkcT7Avk$epqF>Ln^O*ybf?W@fMfcT`VatMX)45IP!Py(6tB7~sv|Sd
zH2p>m!xm$*MrESDC1sBI-Wk-4VrjhhP<}%D6%$|Mbu8Ej-orEDe)UZ%@||7*ZAK?A
z0>MC9y_3*g_gz2UbGD}7_;Ah#cs<4YJeo`T|8d#}feUb+On%>{O4W;L3?`2OjRD!P
zB95-8+N@?{faXodXF!O6N9dG_w!B8$`wbHf>f~J<^m-^<#@QtJUmB*2WYzFh?3#{{
zsJQh!{KIF?{`?21H7}xvkMh_gd0T&z6VgvV)g;sd0`YTtJpX3U<N$msUC7?^ChS5z
zEbLnJjAEk~qyR_fUywsp^?iMeUrs;N=}az}%mFWV;T;|$Fzi3tx0_!+vW+iS4$~F%
z5>k+3^qE^%sF~MU{PjnWc4$)@+j|rn-mJb6XYIX?932rYMH|PexFa4HPA`u1CfiX=
zH@WXX)$yLzPGv8ZjkNqOeOw!g!SSNQMqgN9nE+hKo{#WGy`sSr4omWK?_jpl``G$9
z!^;r6xlqxN+GR?|aX-ld#_+|2@|2YC=<Jh&I%ZhJt)Aq0J}PHrjM`ngW|PgR?pTk4
zOX$f8i_*ogOL!?7i*0p*LYt|#4c_CKjm21hx>K0_w7NEOl0X;mDerNaUF9oGGtDHq
zu9(-!y2(bC!EtP{YAyu<|6S$s@baSvl7?E#dS}0chVn3SU8b-1!Qx3eGzcWBD170Y
zH9$_6%h#9aZ*Wwn)aX`1k2%<#Mjm9ky(mh`j^L(KMRcCBSD+u$Vc^X^fE4DRR@Ry3
zVP&iUd%St^UfhT;MQQ6I%KWvAQA`bkbIbalmo#Q{27y+N`vP={mU{pzTuVDI*<t;0
zT3yY<nqmb#bOAcy#J=CXGds%}8RM1%LPG|U4vqUHlyZ^SBF?f*5|uhjd)C>Ctub@Q
zGbphD33O5SGUjgzpE)ujt12q`got|#GvoeWOuu{kiNa(qhqHlopahaW(pKIAMcOiT
z6K?n_<28rH1Y?9V-7TsA)vsZ#vu#@KI*|nVskC_1J*h%Sb;$NJVdICGks<U7Sho<w
z65pz`tY|kIW3iuu+{T+9;?8Lpzs{SJEZCYg7D6I8xpwjw#yz^w8IX=x<gONm>W5nH
zLX+aY!aKabq@p2SZrt<EWf|v>S40M93}G?v!Zrtp3`>zobX3IRi5DEp_RO{-<K9!$
zYw_@5Yfo`mJ-fNHoSN`umn;v0!pHgX^*r<J7jb<!LRqV=%&@wq(f1*R0r^((&+Bqw
zbVfQXTc`RAd}-F`F?9?l-<Cq8sNk@;&TaGl%PZ#Ga0*hy`PdMRIGCbTgmySRpq{(m
zt{`A}5f1|l){S^20n3AH|H}{dj``|TXr=Sd^-*9K^$nRmd6ujEyD1`3U@DG{g-xZ&
zJ~{D*9v&XBPm-u}eH6o*_eIKY)FaEy$qtrmR`%1GuFzyF>leyBmlsLbeW+}Cro;M3
zuV8wjx;_r1ifd&ChH%||3Muqc4-F|952TVbI{tFf<@=kYKkXvtd#D<ws)^kx-Rs8|
zq&dczXQP@jqs89tc@wu{dzcpoMm|$W!i-C6p$&;Icj<{<zr9QBQ9>p8Gx?Inf3L~I
zIYuqpfeYeX3@AJDf^S;57W7i3Mr*I^a|Z*-dTrIaRR6UqEsyZ-Zx=CqrRc8bfp=c5
zzMKjfzu8hdj3thV&2r3<)xY$FXBC~nd>3!YK-lnut6aKE#kj<UZAT(Tg=$+Bz-g@i
zu+1X}^>`9NpOwhpHLiDm1<&A%21T3||9|)*J?`nTyjT%=y^C&|UX2Un;6lTGqiuhw
zwf<2}HP_SXI2z}~91MKQ!=wI1@|47}c{btvkVDvLQj0@}4hp^$I)o3<h6*m_t+l!T
zvHkVzYl9M_=QVRb3Ek|j7R+#rl<MWJ?zxUbGR4m1+*`i)j1h@ui_PtmYx|||*3KX|
z{$gAG@PzhTYuy3AI+!^nY4Xki?Ax^Y#O!i@60zkT!3eVjG?VaZc+C7B(!RIK3;c!2
zQT_8DqVhw{<@(cAg&rDW#y1f0H0BzIQijMGHP_*2C<CDv`q47(%5;87Gp+v}virBe
z(q3#%S9*5;EWnsk)yq?Itf7V$R^L)x>a~d`;9f)4{<k%$L<zh*N8(j@jp0HaI|s6y
zYTvJwXqn_QoX}k}AHZVI`~Uu?`sklzHMI768|nIKyBM;?h)?e=s_F&%weT>tSK8YG
zvgCqFhxT1E-5szj490Km=VWnHlZ{6slDFOLhxKejcF2n>&K5)1@WwwD9|egnETVJc
zEu2&-Z}Dzq=|&KsSY9JffW1`M)aTozgAonPx!5PQ!~(>1K)R0$-(JpU9R-QflvE4|
zY{{-gXKQg2zX-FB`ly@PdM!YR>`8Fahf{9OPqX15iMmmMrfYvO`#`dnm+zUmKUZEv
zx8!OpkvtKsyqfJ;!;!4iMBtXZzT%zKkYr2jO79bGFD#c;uX;g8rr!O7bln4@LcL6$
zQwMe^tuDfe{JD~|5ajvLf;LFS*iCi(_sbmS>GVcOp!eIbvFjc?HSWBoVK(5it3YB{
zZjYEo$btOVONSjIHUwIPdo}-3NpfAqpV>3tHyA#S^6ic^_S9hTl-K}X<p&QkeveaX
z_s~{9Lc3UaczNny%aM6CmO57%*(3)m7VX8HoNEuzcOK1d9tAmoNdrTdEl5($gUy{i
z(uG7v5uR_%3OO|Zgltv#rlWj?^GKX-^>An0rqQa7wzJ#~?s47$_W{xZ{KDOo^syTg
zDUA-9;gO$jo1Y>4Pnzz?bQ$~Bbk2J7Gl{=vYINr-RU2)*&b|x7?fIZiFYT<(h;F>n
z1XFswLDAI**|FREiBy13PG9Hz;!y-4QLwo0<3|JCES9F!MwmE8UqN#g2_3l$EOLGN
z!}4;a$j{IDh6Gf}u7EdA|A?$8SN}SBy(y&_SWcN%@M8Y<>Mn8eID69XI}hIFIVM9`
zf)#UPEc`;MM@NQ~HZ>ukfXR=em092&HtpfobIUxIIrc$BUJ0#5yS^$Nr4g`u__7(b
z2QM}J4~It>eZangwAA4sZTeMyV48|zoXM->teuBj0zkDh-A8b3cbCcoIDENmgi^U|
zzS_79&uk@UNL|U9s|#-QYk3{gP`r*C+4kwh$`6z0XCGDZGHQ*n{B#4-<)6*hl1VvY
z=CXWR`ghr{^u+#l31x}tzgl^9@eYi+LLXe1>0$QDPh*h`1epv(E3nA+u=O<#EVl>j
z7)B0+I{Uh`jZ*|{NyV}Q=}v%k-L5o~^~vz1Rt#Kz{bhJUu{%*hAl^{*sRY1&R*efO
zu-oCs6PQst7!=Amxc1Zd-u9U3z$k(pM>h0Y^yOUrVAo%W5Ena9WKP)vG~w*1(v4tx
zTC?5a)$l~$+jbS_$!u-9@L?n0H&SHV#MJHCjdn+leH!9xGL8Kj?s>meAZ)Bze%Sbn
z-MA$LSt2qhLQBlZ45c!+2{`bdHJf<0xqYOX`JK+ak4F|$+;zOXuOnz}8m@u0wg0?R
zF4`hh7}F>YN)GI?@H(;vsWfY{fYnjUUjg|#iDxUH=I3)t6UfhE{UVRZHQBCrefhmw
zfWK=r^Y*ilMapz;IZi*Mv&YRTeDh=Dr8i4WG(UIdza$j+Ve)DoO+!BegTCfK#k#R5
z4}Dl@L@H#*yw1peUp#O~+uZoh{7<lQ-<Q42pKG}(P-dL-_|ml~{zBu_5e)8mof@%I
z&-$%PVB7654Lg4X9$6S~fQz!(ehZ*0Vd_i>S7C^%jK^k=3HS2ZSUk_KRrmkXk)Fwh
zK;-ON;*OjaHhlNChdmEsvvLC$Wo_fQ+gxs!P3LjsS}JEuqNtZtI>DcvCVHn&FL<9>
zmUl*kya&9DuSQsq9Z}LC3!Y|+I(%`OjPq)%;jz=*YM|)cmPt&x^oD$#LHo;5M1(Er
z-SG$#nTmMW^~EIu^EE}yYbnrY|IhIjPLh>Jq2b_e#?!dCBe_muy<T9+JqnBhfC)7k
z?WBp{?%WzOz>YWjro_bu4GFJ<up$sUrvRCFnwe1zInTmTk1!l&c`5Ug9!k#@2^geH
zp?J$C+8#jzdDwQmE{z;sQnG;zFv{8U{gD9ks>e?-Ml{^NvBlj$4l(`$8|a(D2|t{l
zf0+wg$ABa=6Zm_vty^lQgw~5i8)VCCz*FxvBhhW=ZZAOfM;vGa5&tCw+MmBa4LjR*
zc(7v&iLuOLOiS^6ef_vwkb(X4RE!^Ump|-f&uppWO8-Cta_9=v>A9t}VKwEn#wheg
zoOK13^8`1c$bV-B#gM+E;H}uPmo=2SY5Kb-O&o`!kH7Acu!H7zw+oWu5EL(Vp-gQb
zE9vU&J7AF@mg6+)^e;hN1gltffyldeib*_iIj}b(jp#r4cZR~?`-)rdg%4u8u{8}G
zDdQ6JZJ5AzdhyW*744^!PWlZXnSdXkvA83{Dxl?Ni$S{8j42`hErz}GC<4lwM#j{l
zwk5IVlvvLp+;*UG2vE+1fZ^VDrIDA^KYT)cqy>Wx*(2NVtmA87mZ>A8TZOX}6m@hZ
zIbCsXys#E9croLajQx_)1u5`Wk-6^XD^qO0zKa3QTbs<2`4?IblVwARBFX-i4|(5i
zJX8bxj9LEm>{oWc{a&Oz1?J2Tja0E7zfE7E-XBg@Um{{0hJr6`8lb<eK-z0bRjFa5
zhPJaBG;sZJw$d35gc)dbr_JU&74~I_l~Pdct$eY`k=fL#Q3jiLoJW@sI_T!%VH2HX
zoJ1%Q{w}mhVIU%$XL%S6`~m>%;fQUu$m1#Ig05lIWnG%;{F;KGYD8OnUj2z_+1oj4
zE0o4I{SgWH-reNuwA3jxKvp-x*u77|2ym>QTnL*+s3Fr7i78m+w_K!oDz7)UR$g#n
z|J-=K-0b1@fX<!Q(7DbmRvCjcw;YUIgMYy0E29qFj^~o^-rvd6B}$S(Yhy}GdRcQd
z#W~&+*n2F-`=<~|j_-oqprlu`5y$5uj+HiC{Vl)6CNvpSmbq#+D~(=})7HLL);|-C
z>UiwCz9PpSe|Sc{dcfCWAx_=Zqv=3Jyc~;C*`|VpS(_yxk!do3%M5_52eMJJ>S{7e
zNFn&ZZls3Vi#BRx!cS&%pEMb6M&~pD%v(R36_?ZJ9d!UkB9Pb28whbcO&u4R7v|zM
z{%vM|_XWaSNP|`FKVO?4=N;CK|1_EYK3x`POwRUdQ()ML1)wi|KRc@_E5OcIu18&~
zkualvG8qQC_xX@R<A@#rzYC@1bEu7b1kR^#zqmGh%W2F87ZA$-+}6E>OzbqIVn`Dt
z6zNKc=qH`7Ltq@Wy*FV*EouMKBs%f@sjmcHBny)KBK}vEp|yVC&_*BnP?__7^5$yj
zGL4=?x)aVWoZ2$KK{N9`t|AY^hFHm~2sl}Z*yOic<((*26_?tXiOlofOoTeWk`MFr
zXO#B}-$2?Hb%&UW@%14sz?Fq8vPy^6Rz1C+U_rHe7ar=dh+{w4p};`w;+<Dty%RSB
zn4647Cx90@(l+wuQA7Cd_5TC=p~sJ)PUrp5NEB<aBu8P5Bp)JqMrXzN>0vA6=TDX@
zkwc6jj>9a=@VN*Lxs*NgB#%wH!v4#6`tNLBdl);p?y+K`|4^G6gBU5N;${HfMfUD*
zxGe#6^{5q6nAX+4P2F1@tYArq2W~0ar>h3C$q<M8!WpzfhQV?D(CM@J7CNYV<&brA
zH4t1R*0RV$@(g$Lh{o_SoJ<~4&dj*II3Hx){3y?@V)=ri-uA#TQ5We3=ob-HoGMgs
z*~|>FOV?^Thz8VT_TlWymjTu>re(4-MN-)<Eu2<VAf5|n?RFmBW-{BNZ8_QBdo5o}
zk+ivT+6b;17=3<nm;IL!XUhl|0y+lO)0rO*y(mNM(jarsspkHitZ+-T7l#j^@MF$o
zOHIZX@rzB8Fzfik2+x)vX;z1c>4h1k+`a0TUn+ep8DguF;I6{M3hfR!_meX7oSHS(
z&JqBu-p`7jB&)jgO#_uIHZ;5+-ZRJIAbyo?Sdy*m7S!9LSej;!-HplX4{-mP3)YeM
zD;biC%9fvAUk*06pYSJKVC6Il3eI)Q$W5M%1Zi)8DaSB0!)%IA$0VV3!ZfHnul#Ma
zl)l^dKMXmgF3iBac(rpzHhXp8P)6kTe`cSw!Zl3nfmbP!rYw_?J<E|;q5oxUyS;_v
z9E>!+?TV#?C9&dHcW-ZxwIFv3|Jbw+bh7EysRdgc6GJ`(SKsi!z48$ZLv9*pb>$i%
zE(zHC)fdrzLil>Qdy$Q)GZj%0SCE|*Ii|wA_6r=RXyL@##nQrMZkiDo&X<`7lNZ<Q
z{S_UFDIh<8$6eZ^WLZAmo%<_fEw;sg7?F)?MlgWfps?#N*zSHWmBfEs2}S6?hTs|}
zqT529<ml8US59+aPakDf2fAp+C-q%k2SNGKslSzleZ9t02@RvAjKhD7`=Jz<g2GP!
z=XP#Gt!&J8`Yqy{ZpU3$hn$F?XfaDRK6{Y-&8^wyuq$ca@bYIyY797V!VB589k8O8
zch~~_7^Gsiu(@$}w8YzQJjcGiBCp9^7&9ZppAta%y*<`N$f1L==pNa-79=jKg81Wh
zl5+t23BL;<_?>>G;tdDPLI)cuSIhoH49DIyQCi)sF;IBwoHsp@H;YWF-SLmlLPX;e
zaJJl>drkz3U3)RM0k#0;I@e!D0hbPh7;IZ2B~K`dXRlw|B(k)%OSGHQNZF3T9}~C*
z@BH}Py{JU}EOL>+N1!ZQ`aZe>4(<@UWZ!vfotAg>W$~4u>9w`|$={rqG4JtYN<0A~
zUeb+H-)w}8=a=tK76zuSk;2xO(1nf@Ep&?9GJbP?1MeIH@%czJD)+twCnOsD2|?nC
z^}U1>f6^3D23ZsVlY6y4*|l?btvpFC5vxqL=P$830FUcY%PFQ-P2fFkMUux=;(HQF
z)b3)2Z5=i237+>KMeykF2t3b5O#iI5G87}uJ)vJ-_G44FYe{xgZ!rlcYrU`6sP9D9
zW&D=Rk3(DL#}*YrjUjKq2liV}HPwuZ>W<;8hM3-k1a9E+wNx`Ehjxl9X<3O<v%|fR
z;ecEeoLq)TD2v^9u-DSU0$2^HJK%Stgu3@=FUyOUVkxJquMS_$28z7>9x1%-qaFM5
zZ#0sQ1oowt6tbz<0sl#eR9ns5#z!0ZUS}U@+*}XBM5u#^T^DC`or-soI<l}B3i)F1
zU}v_7AD$W>>PVH`L(vE&_UpwkYu{?C$}fi|o^0WMIaT)G_UlXp(3mZa{gq-v##UeM
z>-D|@pbbW_-`-drC@po{n^#}x=@9QvMx<F1A6Y<icZK(I-i4FVFx2j+v;WAXx$cQG
zes22d`p&EFy9&E6EWY^#ePtD^4_A2-I}J`WmD%qoK3xN%$#YJIAj<N<tMqV3W@G)}
zweznTDa^K=%li`;ZoY!Bl0vOo%vBm0M*9$J$gR3o{zpq0D^Lv)Ih$@y)543;mwGeV
zw;(p}aErK_c4G-LG3{y<mm&MeN$H^qi{n~?BElJBqGOK9nQ++8zDo^;W~lWX$oz?&
zuMb_il8izROo*!k{odu>W0YuKe?IOfGrg=W+vsBtMAD<~SU^-b80pRV^&M{D-Svk|
zZq>f1r*JqvMuQJ_+<9l@P_(4;-J{fl2<yfGmbxIkVzxQ^@BWFhiVqT-)a&fgV&0Sj
ziKuw;e4`Idu-VuU2fZL?HP+@hvqs|Vq)%GZQu8s{)w$3hQa^h~v?;Gu_}r}Q?B<Sg
z4F1qvHelNRTEpq!yDildp~j0xA0FKjGnuIAzP-eptQNs<p->**H^~6(94&tfB`l|>
z8nXfn*Ig9>;5PJ>dPl=nQd1ZrO0{s%P2(<!zuZt7_lx~%H8?6xFqCPFb=@3v+e`dS
z4qi>oEW&4%(DOS%zK&Q@s;-HGEVC`e-ZiXpGmx%^x-Db$YZCcS1n>JxK+k%RPD$B$
zwQ0_vImJdWixKefNbUhJ^{6a$0!FMk<2a=EqJit`(E91IZ5{Grizl^G*7UC2qg)1p
zV$9J6+4WZ-XeqV-Q{>;Bf6_Uv>txZI^)u9e{r!7sK@+x3+}DREjY4q24Ak%Cc0Fto
zB1Nc&B<wWvsS#$vGS?rwwJ~!CISzc!zvlyl{Zu``M#ID@X+BdX$Z1a4Sf`0M2EBX^
z(4oU4@N$%o@ASQ1TI%|{p;Y%^S*;70k|8mzlJ%~Dht(4BOf!%JT&iQ~gozm{B>giK
zEkx9cdb~5uj~w`MYiUBRn5^Rm>_H=~XR+0`5CZ1!;m5%@CQ_oxOvV7D7US7yHG(+6
zoH!sXhRTnh1uma`o8LrP*-jk)QegQrmQ^Qn4OO6lFy9_cv{fIuv>y$FZk;$91KgT1
zrvlkseJ!!74>lh|4O5v^zAHRT+~3z7`Ar`Rj1E+G=&d*1^|k<G4Ex}_tUy@RptPCT
z#TbeE&uPEDuL=gh3tMS^q0#O1s_{^o0+m0?#A)@(n>1Zh%DMGY8eHk$j;c9Crc@3P
zg*a^K6L%j5`x@D|3;$%WZm%+~&M2~K&-Ofe<E#zD;=|=_bY#D?otj`iXG0A2l5~_{
zYeSO2%56e2c;vj+GA~ihjSvios<WtqftxgWs_c+QRHiAoGu(^5QVC(R4Eby8pjC6<
zK{2$oenxy2CU>UZR#zMPIOrp`H?uk0sxe(86Gde&X*ZAp=C3k|)j?PcWDQ+dp;0q~
zXh__&xw~HEuD|2A`z|1@{KwPJ@zOvj#ZYmJKe`<^ZiLy{1m0`p?$@&q=}fx3nY=x_
zyQW=$Rrculqak_9--KFjy|_f>BLoI#GH2z%4q+{x0F|R|8Oc|N^Y+Thz6Cb+#R0#k
z#Y5h@HbftmOnso}VShH=ewkWFrrEmB6(qlH(6bu}S828#<y1cLxPmMBPx{0pNw=mI
zMKp9BPb<H&1}Loi6js*_|9)_<0$_)xyQ8n(tKQJNz}v1NWy@}IbYs+qZID%PrzYqP
zYz9C1nTs1L`2(%EhL;wya$?I+!D2@m(9)E!>LL`=f6~Q@AMIT<pb7n{Ne|_F{Wbu>
z=-AywEUrk~+iL;~Yxml+c*Q$_@8?UZWuG5iFDO<qIlf4~Cm&1umB_FteA&Dmm=S}=
z8Y<r$OrNjszG-u6d8m#=`}=237GWjqni?8#Hk`+s7Vi*q4*|;D0Ooz!KHCd{XEwi$
z^Se~B%Siju484VjUClYgCS1Du$bq>h%6Nqy8eJA@qawZ^`X(Z|+MvBW5wvUd>h4Rx
zSSdik%CVqo9h>cy^{u7mmxR6Zo)L_$W6*uGd_d{BDnidf>#Hh=p6gs><$*)6hP-T=
zE^g*02tS`C6Atm~_02c=)w3vrzaUt1c5=-ysj@U2JL(o?DFgep&gQ|uwzu-cIo{P%
zKa6`^*x#B#k^X+|(%_916ESXBoVb#J&u_GF4oG_VLUrpIbHwxq$x4%I?u>SnobYHG
zwMS1>!Cp)CCxmJqeSY*-`&7G^G>soJsJWNP(aClHDWISC?m6P()uk~%(FkgDX7_}l
z(*GjB()R2iX<F{U%BJ2=>@E%XFV=^zRpDAsjstNj9I(1&2-Xk1GT!jd(f|WEW=_p8
zu9(B!ya+iYRE_RAmy9+E@ux^rr9vCq<VnifQ!}j2CETTe;0^a^uEc(IEYjD|FeBHM
z2!){dS@U%Z5@W<qzx2k7XA$M+D;Lnn&x|5TxGMg)^vY*|#{dV|KNeuM3_my)k`(7+
zGC$XFX`u1IyU9a~Mb|f$Ids<xI|Dz}a;9}vO}`!ff3H^hEYmEl@#=@$2iO|g3L^io
z%#ntybR%!r4k`4s-dkoT=MBGP-|xna=~rUis&{}#ZXO=?XW|!jUy*a>9P1$vv5&Lo
z27y+n;*-hI4Q{?RQv4kCq2u~i6pGTP3+QUAXz7@rpOjd@JxA30R<*8!GvBBJ#FY&o
z+vwAjr0sLX`>TtTB#1nc%7N?;)v0G`t1okU_9a<Bv!;wxXqT_n?B$REhbo$D1prO^
zO=TSA>4tJZ*kt1w%&dolU4hkCGgjYbn=M36uxSQ}22%o3xUH?W^B?MkJE1kl{a!}S
z`^-N<jn~kF)WikuIaVYnK=A9=NRh$mxm=a0->7Ip;}X5(Fev^{?-6ZMy!W-w9K(7V
zNUUb`M>nvTP6M?F0uiHb8@b9q(Kj-%B$X+DZJM``WVX3haN`eul{wAV^QgNr{du~W
zTc1${^ltofG8#w|{gh!MiMJ;CS;GjXdvJ4yR_Y~bjPo##MVC{Axj&r{foqC6tszt2
z?c>SL_U7*1;ri@wa!*J%__PGRm8JplL$%Z;z@%c1m84h=nh8?rfm~h@EcAx2O0XnU
zR%gFevGN&dmrm%g(+9`>pbW)X0?iureE{XTrS`Syx|FIL>JtHo@ijlI#$WsQM8#_<
zqm|6PuY#rff$7<67a7(818BJS(VTle(=;X=4qn&aq|^#NJZcET>&a_BN=izW$Y;d8
z_%LbbPmc-HG-ec9^TbJih49m0^XXVpbs4Q|!F&9+K?w{?Q|}5Ox3?=HxH}Ig%Cl+5
znr94M$vIj#uux5C|2(OIzHMtg;Ut4qvkb9o9c+4*8LFBVAjhS%Tw!z2gz}0k0Ln$t
zO8qP>ubO*4Ur@W`8z$~Zx|XH^Wy40Vc6|H6W9kb{{eYbo@zhZs6<^W{wz0muvbk6t
zwvU-^t+1S?+Dh7vR`wm@^ZO6{#KOcs^H}SLnXph&e{5wv#M0FXGR-mnSB_;k8Rb=E
zn(wJ1*yOzI>gD@%7*QG+6}Co8)=f_qQd{muUVL~zL&TJx7@ZBEFltp02nCD$#e>3@
z*0xS-$GI!Sx$s&_VKz={?dssBwst9i{0VN*J$!;s5p~~rtlGwEI@^{3Hs2pQeITQY
z;?#~-FnDa4OX;WA8kIctuH>ecIvP0-UVp#h_i48fJUrP4>3H85N1&YxYL|<xAw<Y~
zHOmvXMKt@ojsxNBOj0q}fXy2v-nmwor|J-R7jD-^yBizf!-;vk{-qb5+HP{(spj{7
zqrMuv&B#!NzUEuFk5RNDX47<_>N<LdJ_b~+fHam;5iPuy5Hw_1VTiQ|Y*F!0zQ=bs
zTFVwk>p|JI)8)pO^iwhw*wm=L(~?@LOAlb9SWufp)1WBgR$N+9O(sutUW8Raa<(l?
zUV%xO;Y05nzJV&xosd`EL_wf8%1f&11$G?`+jz*Keebq0fZ-mn1+DgzFBIOAtx+=?
z#;*S>z4p_`grs+mSnSQ!&EFK@C$IJorbpYqO?Q7=AJ42|S(P>E3QJyRQcusjGFWtX
z)&F;`+97a#xGQY2<{Bg5=armYtnfU_V(hqGIR6HZ6as!bQ{nY?U}WM_Z?sbPR!eU7
zJUWYWzBDAdh?r^EC`aEY#r`xeF(A{!3Q*sZ-|>CZIJwxKPk&8;B~g?(&8y%T^$jI1
zrjX?9<$faEH53GLv7ZtjJr}@~s0Wy=NM>x{uTIeOvvgUBhd<a+G1}o(O=kC}QBNF}
z?-#yKHJusyp*7I`9bM6-j1o%W^Iq70yHqxZM;MXI#D#K{kNJW0M#-Vo>IGK0=$e=r
z#@>Z2d`7g{a;(3X{Exc=#*WTzD7185urCN_9P={6T`LYD$AE&Ujq`~|Ark11_x9?B
zqF0}_TVoD5LCI%K@8v^5n|u-;#f*aH8*{qOB<MU{cPGS+*Ju@ADp$<k&in8V#a5qh
zRN+GZ<B)>kEgiWQKsMnQEa2V+_pHWkyZ}bLkAO`G{{vN1r#pkBBJhaL$;DhN#I<bw
znpG_UG5ae5;C2b!iYwvI>B4;tU=7M^wILnO|8y)o8et*v{aT`ec;{Bo^G%Nhiqrpo
zMS6y;%y;p5q12A280*r}9*YV7tRzZ%ioBjO$xxf0eY*V;uAPe1A;=Q$m5W19;Q`jp
z6moF9Fm4bk_gzFRYPmjFFg?V+;C<~q>yGU^Ry-BKO2K))_oD>4_Z6ml`k4cu<{jrP
zvJ-#XxU54BLaxKlmN`0X?^|d~wcu0bH;WqDgRA5gg++T?9X=Y%SrHm~G5u{f0pz$i
zxhHVd&B|F3IpQN+slFqOSOI}~VCBEvZ)cv+Jx3s$-(Xv;BN);_>rbLx)BgHw>ur4i
z{vvaUKZNla5;EwnOicHEkwyOXM|YWR{`oT8If3!z9g{5rsYiV(7kmTY7Y*h%k_L34
z09kT=f+&#`N%v`6Yl`HTm8E+mhb@*{DBUY|0R2H{4r-tP=x-lXCxcZ8P;XCJFpBCO
z_Fil}9obf1&bFxdcLX3JtZB{@8eAu1i`jMy(OW#Zdrv+$H`~+*V(LR!XEN(UX}@Zu
z39wBR`88>zZSds$>|2zFd?;@sbnw#?yIKrBD)S^&v`Lq&wz|fGPn(0?It=_(H|DF0
zHszsbgX%;ojjZ3AA?T69YlH&Tz!aK9>iuQ>IPn5bl7$u5Nmvo%YI~gCt;`m?Ca3oB
z>=W&UbUz8BI4k<23q~xrYP}N8tN$$=tEUk<KIrgv)9@&tD`+J?YuQNU-w(nlcQclz
z_TI@RtClBI6Z3~x+}2W$O5OHBw$t!BIz9LBXayo8@_T<hzix%&LSCg_VJ9s~N!{eZ
zTMS3}HJJTF=EG8C9d^6*c_}U#(A{4t$^fj9DQc4*FRxztdU4IQy4K3?zi$raH_HYa
znVS0cmv9yTDc(zNO%PYKQdrXili;tx9r+Y8n^rfqSiY)0w^X6+u1fZ!OIb^gD6b}c
zm0R(GAUcOf2oUp3z=Zt#*DQMj`vUPVN*3yax1_Tk<m?d;a?u9O)mHjB%}dT0Jq;IB
z7(CNJ-m2b!MqfYRTalW+xv!B>aKUsH*1A;H6CiNPCrtjiw(;udKil^vuJ9W4RgU|l
z4NX1RrV@4rQGtwJB<gFQ7oce098-hETcA408SMvrHzG&F&YL-{AT`w_ht4A{)vO~!
z<!H4k&=?@%$?(1}Prqq}Z5-j;&>qN65JDE>y^YBPSgUPc_7pd_u_mtsJ@lVe2S=wt
zE#2hleP~V5&*FAoTpEoRhqz{_#Pic?R>;FVru~rO@8(g^0YA~#XO-iivQ@3)XuF$8
z#QLH&NG8MT{*59<J5QcGffwvc$!D9MrhAWTAIJD+1Qye%@eaQXr*Y-*tIt~|Y`Mvy
z`V-Hx#2r+z>A0PQ!7=+<V?0%p6U#SjAWvj?USo>@tWR#=vYEA^n@qNP5%bcvE2@g?
z>|D-u26$LPV><ayKTJN)KN{tu4o=aHCDM`-&;F$N!WbwuK&g?2BjX8AzJ+Msg>yEf
zPV_&V#`U8lKOW~N+g!f#H5aLRy?@XoOrdA@(QjSq=vl^<6k~=nIWB$AY#4vKzo%7X
z_CwLynGPE=mP3QNK*c^v3;4ns>KU**b!<bBx-B8(!%s&N3}f_4;`!A!Ukc<(TP8u<
z-9%S)E#VVhI(7e@lA`wqg&MSl8~{>xr<JmQ%yzk$cW3V#LZXwxw0+<V4<|&4mbT&i
z>?2z<Br)!?UsH^+Qg$Ph#bRl--_@18Q~7}X5EBrUl$l0LL(5216xnEpS5P^vuX@T*
z#AIz72VFC#CTkg<z)AM4((RSW2(8|Bq~Rnk>9}}{t{27q?lArDT$JJB@fziXUmUEj
zKi_O|RfKkTUTq(4zI;_WzEfrg__if#xUaX!{3V++Ka&$x>xh6p3t+FET=AI!orfij
z@0W?+F&tKBB+dE)EE&-bz4qol+Ecp6GR)N45;m4ljY(UX4K*|s^7KZ-udSwPv$np~
zqpg7K;+$OtlO&jx^R<z858NnCw+sVbJ;#8l&)B>ooZqekOJ{PnT?Ggbe$7|BnD)bP
zPL_KKhVp^-2g5QZ@kQ&ns@b^g$3wclr3$fjeWG9Y_U&ZzN>0$1=xoTRc>7p-``5`9
zagE!Yr(!=}Ot%TU?uG%?cq2WGb8|UPYJ*95PER&NWf~j(hu@0*{{FXy3V6-IM>Jsf
zJ~KgRna+il9eXu41}z=*f5_+@+<&-=(e9}m&26W7KU4z&v$34qWN81jqb7=<np3x?
zu!8l)5f`G{bK{2My4&`yl+-<W0b-vT15>Qn9>OhiI_2}Cw2@YZS0)C%7bt3TJ7e1t
zP!6uJ)iHHH8FyAxu1EG}LWzYPcSBFXD+%cD289VPw*fBK3&e+34&!#EZnNwL^2khf
z$OLAGuf}M4L|gt$+j=(+8Bd$;kfZ%sVN$kZ`xpnZb~Ia=skpRE!nfH*;y;SuDBEHR
zWEBt7>WrR%na>;*rT6yM&1q77n^8GFyaLUpBvs4T{qtW?k>xl#b4shiNHx`dUinC+
z>pC}PG?GYQt?~5I0AeiG^?e9kli6=R@C@@9$zmLYwO~BGj+gF{&2kB28y)QvN1z<s
zp4_FUNcg<Yds}jmW&ZlaEZoEWBY&(OXjC0r$xZiBb;OoKpE{j<y}YMaF-9MjElmLj
z^E7<N6po&TF&n1>y4aV{_xxX1!C>4Ovb&7)ZOa+1=JYevA#~eijfq~B{qb2~I%*0l
zVCwra$&3|fsgvQK30Eesr@POS_O;3)&zRgDkI5TdJgQ9sx7!SbV|hFMtN;!iIir$!
zwUn$Hg>DOd;xgVAtbTQU%W)o~fr+dtP{NOv$!Sc#{xqAtYEP3Cr}N6{EG?>2zo=km
zo#c`icc4U((%Il~-5I|<3o4H{-%@oys+vAHW+|xBu$EpyLfmO!&-Zab{ZF2ht=K@-
zh}Y|1!#Lm!@@-6HC_2s)=z5vnS2u37vGUOT&erE_{xtmZK~%3WQkNxK%gi3O=g$_9
zU`_d@yyvArEi?#r{gi_rT7Cxf*rO_V@8}s;Q^etZM?@vbGbf!!)E<K5Qw<YXS&e1y
zKX%2umCfDR=7wUw8(FRijm5^uBOT=^jZ3K>D!vBx&9PaXsj^Pzr&<@f*o$|XvCBT?
z$bC?dMJ05)0iUpU+bxUqjF48)UfGHUA7v_tvcZLZ<#y%ZTe^4U1>Q@(1t6hi(+)iG
zze7OaWhEeJdnLPPcW-U)=O3{$kP@6QlQOQT2m1>L0z)Drwweew`#dSBt|Xb22-bCf
z1=_c?zVk}Is|59%(;oBf@=#GqC@=S}WTlC@tJ_6jXZNpqW3|{%3UgimG-nQ>%bHmg
z4W00hIq@vKt*Ia04;+6_)&?S54oI@aZ^QvRDJQny3IMdd@{5~CSGUV=R^;*Dw|3{B
z_Vq~98O}M(E6jComC)-d&6~>Tgh=jzq3bKEZ18uYsAZE|p=k)oo+}TBRIt2(#>vA}
zxBzcd-_K6&J~d|vuV`t(B2;Q^XzwD_^;f7SYN&2@6%%bWW4Q*$ghyiczn{m!oR1E#
zp<NO&CUtv$EP)ek^v?O--fiO}3;x~j#K@qAVB^$b_#%s^MFLiq6{n+85*DcxCuD2x
z#sjjtq(dCsTg@}E#p%iSSvT#S#u6Ss8diCB1{I%w`au>O^+6;r_0ju9I-RZJypI6L
zm@j14b|N&OWcl|CM(6>akA#&)XGtEs`rN-a;ZCnkNuVV3T-li4b58Z&-QjlBSiBfT
zhl(zJOF5+PlUL-de*qQVo@b5vE6KehuI*n*-AL-4oFV@z9K{xYRhx>0Lr%Hi`lA*X
zvcToH2mmwm`+En2k)iL*$o%)_RB3diJ^Vu0zq8#Fx`HOoahmQV?elZ}xU#BV5s&Uv
zp4NL21~e$L=wUvyV8e^}7>uJ=7;ekfHh+cqxFN$)kzc^A-f<v!FB5*;gDO5NL%nl0
z*DWaxzJ6KjVmhg9gNf`%Rz;~8qeourT5ra2YR}9?nrxTy;E(|=_O?(`d&l7`<hF6Y
zqat831gL%Wki3f>#Oq#}b}k=X1WCB-mX_i%&A9=M_k;nJ(gCz_dC!2mL-P@MHbZRm
z7On&~@rWHX*7k&?1Ub4{`D{@JCT{Zv^}geZuRdQkBW6@aCg4gD7_fTXol%-a=#<i#
zfV{;~nJo4EGK8pq&TjPpp8lsuq!tm%To_t=(=|rx#bq{jep^wN;G9bJN|RN1@DB0q
zqKv4^KiT>SW65TU^JzxvNY~S#-*n1S6*v|)r+%DXy&onY+P=CT*gRwOsy|vHw%m`l
zG7$j>xjmRWOrhg<CB}Lb!*2e!ZY419Lb?@a2b1gH%6U{vaM2h-<!RrKJHL8<_CGCN
zv(8~VbXNM5>{l}4gUkDGmmhB*BpOYv+E*w&`HRzPpc}-WF+c%X3q_mIs^HYiQl7l)
zp=TC^rd-f_)~aWvN>nXh8IqwGi9VGeuh3mmS8a!^L2;((;`Td~J7-X>Yqi7nl5AJ+
z((~1J@>u$3E<~;+H}V9(0_S+ij3ptc@7JuWrIPgL>S?GsX%dR=jjhJyk(}{3Z)>nr
zx<$uxo?XiR3$^r+i=yT$8`Zcxp#6Xyz|?d^?~mun)mVkjT~Jdqv*F;)AG0@ydoLK6
z*PE*pO{k3^0Ud0<n!TC4UZ3r4@4cS+vG+KTq(W^WsW+Xt;k;Ggh+f_Q|6h~`LRLD^
zp|N$iqz#m1RY17>ljmH}QKH2)&E&%|eJsz_M@4lG>?z+hfGAAd>g|`S-X!EZVN$(4
zuQji?+Ne75znD5kOBEIR@ELN{gN_Y&x>D2IJhV6!U52l`e&isYG+JpYX_si=i|9X9
zzUZE8C~J&y>MzPe*{>iuueRo?>ew(u?KF}~(T%(if}ROn`<3Vv0zod{_YnXqs6@2j
z&KJg3*i|+1trQpRzxumh1$e8EKDt95{pjKhvgPN9F@W0?qE{FnHod1E(mLx=nhN6U
zj-9=ne=KIhlYgc6Cq{RH$8}+lyfxa9GaDqF_I5&g4#z){glS#qollhb`V^C+hW>fj
z0K?Yn;L&!c%={YC<@DgtSffd#{X^{jEkLJvMzH1v*6_-tiSo0=BNlugKH3&bK3$o%
zcRPqURcyZgHS)w+Sc)>2I8IlIEBs9!K=w90*pRFa1ixP)C(yg!ri*0XB%&&&RI#Y8
z6;1Egvf69<-^P`h{c%ZL9cA;@+w0XJgxd1D8k-vQW#=&Dk%R8GV1i!R;x<8be+KMA
zHyV;(e};(GrA-D)r*S>H@A(BVSuolFNt6>x0dP#6s_Eh-T3=;G4JYA)Yxl=}EIl+b
z*GoFb|6wsu*&Xn~q14r~P@0loAUvD7SEd9Gbc{!PO)(<QOXp-KxB>IQCBLH`E~27m
z8CDOQOqM!Yv7dj8OawJ7g=n2ias&u*t-`P1iS*mF8ub<ec7Iv&{=`&aIW-DtJ=0_S
zD6zu9x>4R6nZ)v_sW52@wV@WM`l2vjFe_9nkZ5kbnm&`&rbsZDiC^K6e}Tz57bUkz
zVa868XRBFhVg0^|Z$wzLcyWFoPC*)|r}}#ZzZjlaMz3S>`3$Lsn5%E(Y@EhWZu$U#
zZbMQsB^|lHEs$hob?rr#^C3Lb%ccuBJ?Zl^X}Ov-Mfms%=k)eVWBH&k4y^~H<<hC+
zX7^vc1RF%&;b5*fhDh?!OLA?j9A#xNSaRef#q$$~>APwvJg>!N&%~a|!|!)D%>i0+
z%l&;KjO^|H@w<`-BGhT}&G&!plzkRG#iNyNXXR@6VxfNq8t$E+WNR-#vejEDN{H&Y
z)f(FUQq@}H_6J*Azog*pA_I2YDyBVoaQ)yxNuA_<JVrDV+Q%F;?E$CvGAZ9aIllxE
zjerh&)Sfl3+0q;=3qE(2_IQ|l)K`L-qd`0iiMW?0;<Pl%!guB;HOqNujCRlEgEH21
zXx6bH5c@}Iy*_5lL+I@UR}$SC%1-4IXWAoOst&GQ+77P7^v!x>Zalwac|=?lSl6vT
zg_;8W8qUE>=x#d3vj|gQ$xgt{)<5%KUjoHo>WCq2oiX6<<-~|NZqvHM7EUa4a7jB5
z-jW>c*xt-!;y8y^HJzWwe!B-^LX)OA6A`6_od7MUH{LoXDYZ|=!R7wjD;bpu6Xq=f
zyCI88KDrDp^hHtIP^5Tk=Ou0K{=jU|Ag=RX7GQ{Bu?}cV+j$$Y>)rXx#%J!td+~&3
z#MUT4t&m#rr?01w3W7PC)5G9{N{t+C@mLI7eOTKj+*yO+=DiuNEF1IvrN&wnuK`-I
zYH(hCQS<}WtzRIRh#r8bFO@e2wnt<Njx6@22sS9&3`!H4Mb>@z=Dt(GpXuphV0UJ_
zVawF}Z<0PGj&^wTzx>qr4v2;kcLK-1;_>OOnNcT*zSaW}w^KNNMY`Hi`)T+=5doHJ
z@xVnSg{2phtY+jJr|7>YX6^DtVlk}b^*(JW_lp78MD1Wut=d^V20QwA0qJmsgWC_N
zQE!o<hS-bXkyvG4?8K<;Ad_8Qz6T?v-n|sy65nbAaF{{xhK<uq>99k+`{!rpE9oxq
zzwbr)I03qhMh(L0g_?;SewGg0vO;RjKL(0DySY|a9?w8C1zCAKz1jYA?1#ngdSI4c
z*^as%HFX(aI}RKfYz|)w)q#V1K`KVz^i9#gqGKaMP17$-+)c%~WrrB&{`LR*G03%^
zg3O_QnaP&t(fFSNylJD|HP!J0<7i>X|4%aic@St-ZK|JkMt!wo!ijLs&NV8uMnk0l
zV|P_|&0fY&HV5_qYe|7V+0>j0$zU^<tSngl#kmPIaepQ+)&?dch-I2af@zPB^erV}
z)hQA5Xz|dtezmE8_r;hMc3mC$X<&hYM+Jox0yA`1_ogsJu4}5TQw7px{Vv0PrewRl
zrWT#`16eOttbg#|;>e|}vfqbaKT(}oR*m|BF_zQVaM{s_fh<>J)8<aQ;8a0`S8>FM
zW~q`~sF5)E`G~VHKIO0IG&}PzU2SSO0~*hqyXi?Bhs0%Jwg;R<vtLNejfe1%%1FAv
z46Vkes1>*11V3XwwcI>FHauKJ;A-aEDrQXwq8zBFjo$lzrs?JXvgKO)_m~}pj~<7o
z`$&U$9`aelpcwX*)em!;ATyKA=PMn!Sc$PeO=4pbTq4GQCoW2UYj2kR%&nK%?+;s2
z{J9~bjC9=T>3J#ZAi((Xv!5a|waI?28=rQrzK@plm*f4U_*TiYRI)OnX+U^qWBmgr
z2;+snwH&-Oh6Xm7>qyIZ)!8HAbc%HrGk@t9IR;+iTk9KQ!*J-Osk&%`Xq;-!Z!K-&
zITps4aDNu-=qzY-THH$q54#qt(gi=ax8p4=O=D6*vkaJ}_){KZ@ag>%`C?~WEVQ3S
z0(SLQN|-hI-&sG8Ab~#$FN#W5cmK`wJyBu8!FW0OZEw1}yAI+ECu`6KoivfhEP-^T
zaFrlXQ;;2zuJFx+US;d|17{uxx-!ny*){quoecSG7PM$x7H|6YcCz+Cj**3pZ04rD
z6X0#MhF((iSf*>6K=+FpLA^6SPdjZu^XGGQq_zlwdUm%KDbhc2lehsU`hNcYKZj{L
z%s%KyAH}_!ijM#A{<0=2TEDM|kve=ylebs?tZW=R@=wT~!w0PVzjWtqzk0qwp76n8
zLwI!7Qv%%eQig+EvZ^u0>COO`hBf87j8$I}?zWJ$c7}4DdN#L)O@!4m&-l~iSbiLw
zUE;d==<w0DV&DR}m3A?W)AKJMKvzZi&t(v@pH2SAtjYjK22=Io*S{p5fhxB2@PE2~
zBq*ux{xR@!?j@V*u#wc=hCb1&Pnd0=^wW#Wox<bBEootSRs{IEccE@FH4E_&GyJn6
z+20=0TE3s%=y_H8_v{Qr4QO%XPAguiPe4IL-$4m1WexV~>!Kt9raQX)GpBH9dt~DT
z1E-*ytCb_nBG_R+;60_#$8m9-z`?=;Lo{@3PY?PxVnM>YEWrxxk!qI8=kU)Nf_c<&
zg%^Y5ZrvNjA2r&~-?8I-F(~T#3+XChZhMJIt9$wko9KjLOq@0|iNQYa`Wmk2t5wJo
z39Ea1-QwB26K`9-x~GMz(bc?C?+)okhM)+SqzOGmklBQwwBrt91B^}~lDB!c{!IO@
zs`QTkaufR!&scAUIL|vil}<eHbPxRCcuL*bB4-<F&B;L5^mXOkb*+abyjm<QU3Ehk
zBf_OsuR%T8i){Dk)rO)sKhM<{hbR$Xi-`~7D_O;SyjqW=rYA0{Hr03Mmn{O3zUW(y
zNZi8%n%4(p+Bvf}L5J}ElmFcIi_6%x6=~FHC%*p_C0O0y_aXp}iBNj^*kAiFXlTc)
z6epfaIx~_|E{S_Y60Y5-aAx)itJ*=XJx<{{<&)(f<=%Mwm-D&7famj-Pf9a4rudCV
zR+!z)eKm$IussuFf?A4*ZnIl$1<^;U!Tzgquq3S=b-PYqPy5wi@9Zbo7~|KB==I93
zTdtdVqWAgzJoE>LV>uAw--3`ow0-7}{TPd8EPV3N#n*R2^7HwJsKjjFg2KU6#Q_-9
z$uMoxz-S{U&|Q3U_mNyIX!CQzm!*Jc82h&6fo@hdH?z`OVl=`+c5WNoxi0}Jvnihi
zTu>aXl($9-X_^eGwElYX$KJu#M0Ln0j9KPNO`pG-ti7B*-xO*u{#!Mv^m`jKVdd4Z
zXBBJY-(JlkO|Ip8N(Px8cy(JOsqIWWCozbybse4XFx=S;tft+4W9s38@0G}73>1ff
zW@ETog$i$DF{52N{P!c;t)uoFIqh|W+WR|lw<+*F7sh{55v(k{doO<TN15^ThB^A^
z?Y&f){kMkwR~eAwd-7?1^`$h0{w`@pPKmLWPTnZ_ez%3fB;M7ws->d`s?5D4;mD)}
zk&Z2r;ySbhCG2xMNvK&l(RaabQi>Y-K=!rn-b0F%9-!zj>H{Rk9;|clF&lZoURxN^
zealM&cHm!466-K0*fT>2|0dY1SDdmf_(9<HnuMDg{m@uDd>;#e1$t{@(^5Bc{?sja
z82UvV6yMZ&h@lX$>PDS_U_r6RDDwH|$QMh5!J));HxdnFxI8L8@35Eo>MC3qsjEIb
zH0BuMkAC*0n_DjKh<5yq+~yOG^6lhWP<9G>eH+uEUGv)QeY*ZEV5A675kURq#1_ei
zt12Sae^TM}Ykl`fGbt#vXa6aX`1;}H#cb=3Xrkzu+?;Mr_BZzq3-R-p<#b8;h_b6T
zr;r)nJXcQY=!&S4muGzzw4Hy!^$<he)3hE^tURe~#gl}KKbjsWL!!Q8(=g7!m1m4&
zn!`0BU%#DOB_a9q=XJA^A@*h9<cXw$wfsSv<nIk#<~i&+CnYW~;7QhJh;D23agw-a
z#lob3@nS0j`W3l=Mt;t(8`+pw<^;d1kxa#VckLLK-Ed6ZCc6Qt{CR)R{JSAgk|TOT
zqE`znqx14aN#!m~Nd9_uukgxgC;q9mf(^W<2LwOOrJ2eh!yT?<Ac6`cOltbvwH7s9
z6yz`QB<89t0m#nG{f86%0?tz5UGq<3H_azxUC*xW$vFbY;FP+Q&MV}1b8dl^o@)F@
zME_cgp$?YDH8(nWry&k#nKi5@f2_iq2zo<ipS6%WOEP<P%+Wh5OvXq=*%I^B|Awve
zY?%b3N57<GauS3WT{}v3Nl>BnB3WGvYA7tB`JAieMv<}B3lSsrC3UKXNc?kaRs+C(
zjpXJqr>$YHt?Jf9Jf1y{^z!OVY@@gszR7uijV62kJq0CU(sxwfiWTE+FIRq>n{g4h
z`*50c0U8XD6tq-vF29Y;<cRC<e<}QDWn4)CK3mihV~6|Lni2MLE&#3Ry=_~xtst;0
zmgaD0t5!nDVz*(r&?V!&y7yqA)03h*!e(m1Jj1W3RixO`q7k~JJs5XFv9?nFsA?qh
z*38jknecQiBG6q21v6M~cqp^T5nFf!VUl{gpa-o-U9x@JeMnT+GtO$47_(jvjmP-5
z9nr|fPh-vMM!<n_JlGgUr48fs!}Kc<xorg{3jxh?8DB6dbUK-z{NVB-)m8kM0fEV=
zb%?ybrSvjyhc%j&IsR>>hvR1jnZ3l=V!Vf^4}!}AwNfbIM7h1e0W(#mlZ=NbQT&Rm
z+NRWMKiPOaHBIl(8%z;tYhE%mn7xa5G-7$y*o}lWDfVmLq&MTDV~unteo(jk$I#GA
zLjUjSPh0DM)PlDr7_ZlE+S=nU7a4V}Gb>I{E%V(eL;T0;<$S5W3Acc2g|^2J)o8v}
zPxFkACI@%42&+wuEczoHk*f1>;g4PuPt4+=P|1ObVehPae4S8-mT?s48DF+?W751=
zYnyu$^GSw!P2HVzHoYHPGC;t~eq?$DdR_RnHG)Np47p^a{V1YH`8%QXuN@|Z77m%J
zn<OAEW?NJ*2C&IxbofifAGW$P<57MG8i{ePm&s+)j0`J$v3Y=S`)aoRYGd#9-pWht
z5QLB^H;_(_hT2S7YbB-K*;Y<d@{=@{Z5wpnWjZbIzHU>UI!b3hq>sDE>$XdK4dc{w
zX$=18zkS%-Pgip>4@fJXtziw#>GPwZa_5$sLA?AF*Z=(N5|swE9iE6NK=7w=>)odE
z2d7rwbNY!4$^x;?Xz0dqYFA<~^1ZwB1S11d(zPi(D*T4uNK~1JCpSk(W=q<p0<@?|
zqA92-q~6<)nZ}yN85^~6g$H>SF#x=A?Nt2E58!I%TQ!EINL1ZyLx!IhB!5b~R@LKY
z_jjKKg321=<kOGdbN=0S?$1%OLan>Hy#v{m*==^j6YU=53SJtUJ-sJ@bMwK@UhIYX
z&rjWh8=C&_+0C(jX6;>6b=pvIGw~i3HL=_4Tm(U{G25OCSzBd4@>m49GIzVqe(VVT
zhXc}Y47#y#m{;JYK8|7b#{6UPt~^hdyVHGu?ba8VP)zqVUh>T;_I4GA`eP4%;^!I@
zn|F^%BIF@}z-gZ(WT<!X1n_KT^Vft_Lx_@jrhi=CzP|jn^S#W#Gbux=DRsRzda{xL
zbjy1_eEI#W<BhR&5YZI$-ri*o;Xq;K^h59$3i(9UWV*TLbM`OOuqyUMtBAq3U;Y|W
zWzpqPHq<doJj&qw3h;4WRD1rB9dmK}&e*b0R9i5azXDB7PvXvYyNbwz3dV!{>8Hn$
zV|sB(ICRlpgZjv`8A=mH<Au(uFI{ddrN=^cec-;XH+H$W@IGUudx$~gIU@72uQQ4r
zAESLMrP9({)_vJ(VVK~G0~$E4Fp|881tL%n#d)2lAu#)CcGzDkiE^z#mDhOvOVRyL
zxCw{IR+n#6nlI#`7lPBqNv=2SquiC?Xz{`K4c19*XP|O58gL3qjf0e)wh>$(txCsV
z712!eN@d)x@VSA7Gh#rtErVbuEbU_fOEUD74)VG4I<Y^+$W_V>Y*lElXfwa@4Nrga
zzbaS0>8F=xUj}EUDnti!Y!Xg1|55?@o`YCzjy{lphRLgpovtFHg^f1MM(Dn+w-W-_
z;+y=+8LE7ITi=D|2zg0UMt%Nhr<oO1WT8p0_J+4U*ju^N?B6d&e~aH*)$*5UDI_iz
z;_>IlF*(G~94gYK=Nq@_h#uxExB;DXdk3%36&L<GlNLJeuG@@apq>6j-8W`7x^W4)
z-bFsSXsH3O-AHJlr93_D8z+w^63Ly|J*QWdnB_=TS*i&)nN6dH+*I9V^rL~|W`L=%
zV+;$vfi0m2)2<^KSzX(0Qb*$x^Tz9Rwe<45A4@vV&1D%(#YRTFAdPeJx4Lf#EJ>x$
zZ$I)}U$i6oX6hxyr!LVC338QC7EWq<G9NrfJy#QLcoT32J;_QqoCvKay5s;~Lw9t&
zd<k`jMix2e+2qYSUFZ%`%CRzrJa&pPl^y9#hPS=J>AU}=F&dablu+)*EXn_iWW$LK
z_+}<P=Kj>weTE^Jqr3<mKeC*H2oERnaRh2W=Yc}s<{#4k3H@Mnu<gk|`!KlHBocmv
zky0(W|Ib?T@R@W(=-V0BcHACMMd;N@l}g5W>XPYD&l>bzQ~8$UE#t(YyV?3Z--@Q;
zf`427N1~;4<<1d(R2goPc`evvSxc$HGLqFOU>L`z-;nF*l6;#SFh%s{8p2Bq5_o)6
z<<Q}HWZclN9*d|1NMK|uo5pj07pwnC1iVCdI6Rd-jfFXXm)l_YA~gf>22*`b!P|>J
zO%k2oLYsHjf6v?PT`K>IL<vNqqC!>7ey|PqNx}sDxe=MzKuLiIbM|)_M_sxG^<3fK
z_E3d|UyK6qzycNfFlD|IO<OmPo&tY<&}-I(Oy#v|t7+^@2r9$4lHyS%=~0K%JvisD
zhygw*f{nK~+s;?i3`jbtA8vq)pgi3}TK~6Xcnd}iZOr=U&kp+U+ra~uEOn;46l^vl
ztPwj{AN@)E7jrEHp4<7|ecSJ90^{11QYl~6W7?L`rEpLvvZYFaKSkjh>#Mt4l<|80
zvBF3#>yIbDpIvFu8!GGS{-Upl7&OP4R(?nf3k15Fp>S5Q9Tb8PhpPp-95-@mAYT~T
z;rvbx(OZ^Chk#W=2D|8eK#k>K$?%H$o6poZF$J4jd8(c-VLmY$rsMg;F^~S;#{Q0V
zRx=!(O9F(f5C_33xBjicEJlAa<;|zh&+eC^*7iQ&C)|)~2WQ3HUBw83Uc^hV==rBt
z(1+2{N$(~HvuP<5CK?li7zN;BQ3mjLmRp#kY6fZQWntP0sV5Aq<a|2`jdTRgznC2`
z<X#3(-$4gI^2}Gwz-MG(5hK8w9L-Q<AJ9n2Glq7@EC$4;@5_EC9-(#5H!fX!QBUd=
zI<`CHaWZ9Ii$9&(CE3EJXOKtXVzx47Fcp)Y9c|5z?>~=0szgL8^LqXH;rcXUPRA&}
zz^<^clb~M6<G{5!b$8b_P{ilkVS5E0DURf<k)K2wUh9i_SUih}0Y8D9*Wsfr5xsY7
zk>0ke9QeNY?~N<c_@4ek`mF|Y*F2}&Qonw~&kdPOdv;0^nclVu)ZRVin@TLa=a<t`
z>dfoOlgoIMm3#zAU##?ImPITO6`KP4e9!#rnaa&MoW*{b`g4-7vg`fR&jua7K6_Vv
zynY-WJ>XUnu{w|Pf>Aw$QpLWMnPv{sfGQEmg`xYH3&4k77MRsAB%zDdJ`jS?rF|a%
z9p!?)A(9g+Tx_l$>=AO^LQF^+YgJlbLVqq)JWFBMSx#Zm%Hc-;g}@=H#_sghV0&}V
zcweg7TN4!f)tUgP|D-KtEfSD(@68)|*g(x%Xu;(79Ken{yv+Iti=St%TkrLBv!r|x
z*%oBlI=F@X<WWM$HseWj?*GBW)sFLNzA~uJySuz)R$edIL$-L`nh4*i{4=%AG(@+j
zqy{)y_wnoW!VSg&a$N@Czc&pTWbL8!`818=A87zz9&4c(kC}m(trP0`ZmfB(6joQ%
zbZeK(JR-$o<ap-__<aq94XJNo3*EVBa__L&dUo~dZL3)13n6onW9VWWhHFJjX?h`<
zq4;+M%v)0A@IChV{3{3iwf7??G}UC_Vts(BZ}igFN&9Xu?cl=y6dNiO>G5*JL(@ig
zw7O+H5`u(kjj0hIhMBhspz97BJ45mj$_&>dBO9!t%^ieMI4)dYhc|K?pwRp3S(0+J
zxsdLg!@GcE58;R<2~AW_*Zr5dF(bqKalH(?P+0$lxKf9*#9Vg6#}rBF>hJ!7{7-}D
z&1x82EeCR;cV^)Xf07dHyk6PZdF`|gP3ig1SZ^VkeOKo0cpfs$@ZEW6nQlt&^Xo?+
zZU^E{e$EOj;#{1T9#UHfPGQX$E5reNjGJU3W`(<QAE_0T%~!iBn>GfzXCSE2TUrj3
zr=zNu)pj%kN)9%=G-^Ae+*CMh?OME+sil*mVG6B=Uaa%j)|T0o6&gPIQ-ZJ@H%Gb0
z5kGO>uMTFjX-K{<ZkaUCEUH!ckqZ=Mv~BWKG8$YWO1!xKtlKe%?LR~;ISp^y40x!)
zd?YRR>x=LoXh0Oos?TMVMP9s_b~EC`ETrnl96_o5%>71B6Y@^4a=F^Geg36?!pr}k
z+p{kvA*^+(N-O<|d0?=JlHUf5dTALV@*gwUd#Kos7KbK<>_xtxu^CaK&pv65_5wO2
zXnnZ!kiuS81TuJ}In=7(j%fJw&x)uoZ@vyig=p$+?!MS7jl}hU<Chd>gIVd+qgb;b
zLYLI|3)6cqCVx<rIu~25+gOKZ$B)jvMvkDr%9;bUzGSDL0HlZf@2^nN^zAjnl0BAY
z1Mzu6_;0+1m{(n{XDJc&9U|xT#K&Jsb!rdL2vE%v8f%t@;!NQjSUQ7+jr>XjR5BjB
z*on0!ILVglT+H}kXc+AmtUBP2B0P9!lnx&3h``t31AIrhm-Ki_Mj!gqzn*gEMy+g>
za7YHRmWP*jm-h9}B_yjS^gb>65N&R$xlhM}4M~R_`C}a{H%&Nl5tsz?>*?asatwKG
z4nj;5t8HmPP{VAkB9)EcK|XR28=6F`iN)kr41pRbs<xs$FJkN@1`dx)r63=n6UB~g
zEx<NV*5WXS)OmO{ziT_bfrS2wwMxmktdGJbi3Wyo^^uh<%u%YOfBy&V!|Af>U_|?~
zaOj@{{?f(jUDSbH#7j9$_Kn_l#r!36=B6VTbJm*FOJpoR2trrA2BWbn8=s*BFbJu0
zLC?d+`!%U<j^wLphJdJm^5F_y3jS^h-A{SP&z}(44aYe~+gT;IJ^zOLU;`5qY1vdF
z`pxqcQxi%`?1vRou=$1XFi#N~XW~})8}6ff^}cY5ZL2T$eoNlAz|J*_=HNWhRz^3L
zGnEd_E^i0HHB${ahs~XM-srRSH$;ks1*z<%F6IDX(u#TqsOg#I9uDkZt2vur&uC+`
z+j8T@71=c)WZR<fw)Kl&{spSc<N_)C^9*4f)4N~1sus{^6_SNLI9quYY1~;H@l1VQ
zY^|{3wD!&v|9X#+c6xshl)ibIeAqqM6vENHbD;>b%=jY##-$B^QAWAr9P;G131AR7
z)ucLlkmHzEstc{VBU0(+pm#5ZYR1O88E4Q3BM80jfb))8u8j)pUC-9m^hH~NG111-
zcC>bXk16gjVqX|Rl5KU&TP-lj2&Fk2?ya&PDQnE~GAOdKzPdHcccAj#I%T#Eq&f)p
zo+WS)=U4w@FWtcQP%H&+khvbRD3r*CHh<qfC6+b3@p^y%!W1iaLG$HIER^JRvc9*s
z78_5&NZJl^V>R?8ik8l;lJm&ySlUaXnYU;SrED%-&c{v=ed4Vaoc4Cgrn%3&bK&3)
zJX3Xf*<3u4uv8p+>AdOlAlAA5l?P&s7Ap5GU3>!hd_2i4gYGfgJFoBNI<zKfq1sRT
z@}DIWSL;Kha<Zl+V)&c>G9bNN{>~q>&4{DquqJPa5xxB3ytYzVjHXmEA9@t}D_z2G
z`?HBFA0T_*agwHzCBhW1dL=1?bU3B6c`i6^llC;gdU40^7F2B9UE1WIn+antPX2S)
z=Jd-F6EZV{L_of3Xj#(iZEx;w?F|YUKa813a93ojVFU%Mu;@cIOb))3RA5;71=KpA
ztelwRkv^SXy0~|+Zd9!e361)|V7eEj)QoFba_fuBVWT6}*)g;Ems{vY&x^4b22NS{
zCVC3Pm`n<uO_r?<!DAl|`>Ei|L{!5S2AkG{sr>x&srX^ks_HK+;>{Pg0iKYJ7s;En
z_+l=X5G7rIQEIultqk%kJ0x;Ltsq23^EVxf@7R(-G|_HJ;{0+OOL+|XvjO1&!pMVH
zFO~!Ely<=*F^_qswAqBNiVm`Mxbl-f%e*OAQ%cpT>1=?aHCHtEVU7F516DEBj)fqN
zZth%DA30Y7k6W2}y})W)s|CiG1C!UnDsI^@cA&tQFEYL+Z~IeRMsTxitM0ujYkP{T
zSGls02A5x}C#8R(>W|$pwUd+M4NcJfQtad3X(3H7-lzUPBy{I@5l7aJ9M)f}PSO8r
zZ>eVSXn^SMdZ=|<obVTDe;y7`CRVWtrthV&->v^I#8}$G)hhe$MTGS<5q^8r<$`6$
zH|x;kSwxBnm$tkF`fF#wd$XO!lXqW&TBsz&-P5C*v!SG5Z|fK^;zp!|`4u9EH#|SN
zP;aO(A^}1+Y6iDD>zN?M*Ia(o*X1R^=1*>I!H_F$wCjF8B9NI>Wep4Q*wZ#DxTd3Y
z*PW>9S<cyAx4nU0P=Z4aumvV-$XNB8+9lOFvetjnElc(>)3Rx+U&!7%_1e$iFn9xS
zJm%Yw_A35#B!ydw61tgYz?NpkWODYeC^S6{b^KbO{?u@Qr&6CUdGx-CTr%CH3Ba~X
zc1+o?!PB`Jcmal~ulnSy#K2VT%p;EAbIqhVJ(;S5+>Dbr+<*$K&fQJ%=bMFl&W$~r
ztP^$EKqJg7=<$w2wUV?}bJL<26-<&>?y}7aEDXnf%U~dyB38>in9IRPx(Gw^LK$ut
zah;#=bD>YG6V!q%R9B2;0EHO8<Nm`B2*Ka!#QafU8;TUex@LAnUcd5*hiLE7=6qw=
z_1oJ~f+#B&7{a-Xmrlgmc%%zO2*v|u<D1&lwAx*8MU=sPZz7~3&cPpwpu%=5!z-Ea
z;+z#HRh*FyvjX`kZ;08}WsSD3_Q34QikO!EYgnARHF?+eY(i6li~z&lCYLN(NM8F1
zpbU8AV7v?m_(G*j{Wp^YRb8&bIWyI540B3DYkDO<UXlT5YgQM8GM|0=gt01CH0mIb
zQD53xLh4A9_2cuiFX5y!$yGaRb_}&<lDg_Hmejrvn`9viol%1?;f~3njX29kCH8X0
z9tIe}^j>RSbhW(BuD1oa${3bKllYcwOH_IZdrHfMRbBq%LDy9pXV~T<AVYxU?%KgR
zt#w^IFSn&dAd%He;(>MCsqu)4bDY?gEOG2=rLqCUmzV&B`{s$v)GIg`9Gc^0ynW-S
zwDYZOjo0x~n%K&m&R+c@>*_6493NZJdaJde-@nghGJ7xP)il`o%?<*AGTP9A<PKrq
z)5DcD_M!uWY0@9Ut1rWa78XJY&47xx2AnRK4Bfo^bM3{>e-2&7byF4yh#bw90+hGZ
zK`PtIn2JuWbA#NZTHz}EYuF0>&@u+&sJkN>+g)&>DjC**!3PWQ)8uNOR>bgZAYB1x
zR8`*W^of#4uo5;pT$A5t<9;=T^ViAm-_ODBxROkPd7l$cI9ah9LA{HG;EY8-2A~qy
zHeEE&fe+ZsXT9I`ie)w4FFdNbJi$+DZQvDqRT|tl*n`7fF9$0bilqHWxz$4lL}64&
z2s`GPzjGnIFx0VqQ6y{E!w?oI4UlVnzY}no7Q7Ho|0a!(s?G>?hyO2AyBpSj=`lm_
zD#oWv^gW`wk$DRJ*mA&E(LLxzNzQtRaUylp-=l7g*2y<of@i*ANiRWYbpjUQms@?i
z557jCX+LiS8p8ir9FPE*OWUu+)f3fzr$C%oVgx5@(6xeSs<6w8Ov^e|$AkZMByc)!
z6G&?W*tKOQbHV8U?Zh$LHI6wpS#yX(z5K-P@AsJj$4%~l^hcsHpR9b$|0Z+}^cx+)
z6R8_2x7k!z%hNa)sEM^)mKr3yz`7Sc(priZCvZuTdh+T;M7TVigZzAhlFE8+u<sV+
zo!z6O&35}S7VYeED*Xd?{0qpY-rCReKLtsVd6B6%l<i;PpSO00@g)o3(<c`qb%Jty
zf~(8pr09ji*@~$eo^9`KFT6^ANMvOx{b9Qn`N;0+#hpyPl-FDGIj6=xRw`2xerXl2
zuH)dg$_@5YMHzJRn?PzPj5nDmb0vKA$^-sfbTD&9N*9f96sI%?VUUIUSvUkcqW42`
z2~AZmw2aDAtVrv4iEQlfN2im2zSwyFDi_g|Ya6WYt>s<yWtA_Rd;ICNAd(07tkWvi
zt;LCZ`GPEuTIilv@Ws&Rz=7jQb&{`cnt5!|xvRnXj!wUp!u_%d$nXT-M)`2_W`4VP
z9f%w+RJulfN9;rn-h*_BCIioqId<73>|2Y!m5C!8L+uH_cV~Zdx8_t94`*PN3<D~I
zw8>)xsb}1X(r8PH1F5SbUtSqRx^HAl!kPB$19!d@O^~mS=cIv$vsGILZZXvZaI~;=
zdHS?>CoUP!p=3zR8~#>o)(F~TM<yJ)d#9!bY93%RP2VE9E%Iq*zjQp~!BRX`Ym&tu
zV}LyXOj3?pGc9HD!#taCllD{Q&(wgYX%P0i`uDJf-7{Qn?GA@VGX?!;&60`Pt<o?N
zV_`ytuRD7t259<RQ|t?EbkzVrqDMUv&ca}sY#vrj(_Fu&TxbyH1NI|~-wCQ>Xgk#T
z!QxYHJp%+FXdgsmf62wh6V>mmu3D+{D+TEFl;HeGAIfC9$(<eYTtS<c#L49`NY&vW
zv)xRDciYYi`$4n_%;y$sH!N}TjxSU1@HxqQS|EC=73h8Ot{P|%K@N}EUxxqHKBf*k
zwrovS*JY~Fk89IPBm$B#NXzFB!P`3Y@a)H5ozy8_b!ZU9aad#^bSSCa{@_qGoUr}7
zJq4!0aOuJ2Rg-@b|I54n8Ktex;{E&2WL1;Ke^u7|Osz)TzcM%eQk&cWi)Qou-<;iP
za}-&&F6h4!ZEaSSWjDo1=FD$5G$523OCdxiU#<m`Kms9gG(d`9-_N@T_YmYceY&lz
z5{U3{-@b=6yz5<S$=1KA?^Yax8lCBP)V~df1RH^Di^!wm?8*HTB(qNiTFil~y3^xQ
zQoTbH)&7&20^zlVqZoP*3@9My%ADA<RSp{m3C{9e1IY#ItnNor;%Ez{X;eOdEf5}I
zaQ0LDh=~LciTyIBVU)N2wLseyte!@~joxt*6o;;!+@XFr@Y4%w;C9`3Rc$=Uce?C_
z^+@hZ&hxt5m%I++D^@iX9A-0@<uLPO&iP+!tIOePaQM2PS87&0;VrVrk4R|D9=92g
zJ#FwJP1MNY{2V0R&^^zz>T1=(yK9v25UbPlUr8Fp!BO45J~rLG{P0r*>>A$?sX5Xg
zr!*Y7l0k!x(289AetXOU_GYYyS8PH-gu><YgQpsjmjVvew%{D}>5#<@5U{yhKs3(D
zke|{L9hIJBX~G*3O>WN6Fsq`-`eu0Pb}$D<@h86)U~CWNmzCYT{#^D{v2I;aZwTv|
z_GXufftuA6%$-dL&Q`ZL6ER{nCT-Y+0Zje}S9%sXJe$X!<?3xcSnP(1HJ(-w@@F=Z
z7G#fPW`L|5+}j8A>#%K%*re<w8WaC&97ck=@h_d*tABRDw!TZqY%k|mU)JVCMXygY
zj6coFoz-J)9}hX`<Lt98+3;^fHm*~q$-cf7hCB`#dEp#^<0~D|0vDb-%QYb6UBj6Y
z%POa#zxibMSm`lV$k(E}Yfbu`Wr3#U=@P7=hvDlGO&opb?~_;WdoQ5Ldzo5gihhIp
zOI}KkjQ!-;o8g*hn{Rorcs*)V3AbFI!hGhW%I6v`Mxj*xM!2*xrMpLk++{v~=Za@X
z3<iloARE3AiA5W)&RtujCy!E@qGWmmpliWVk=@B?rsiMet3tFJ5<J!~W0yvb;qMGK
zQY_@1-llwau|6>{Be}pQmlT}MSb8v!U4c)EIZ)j9UiTUpq&}hGm;XKhXR4`u41`G&
z0CRNyE!6JJk$Qs2>Li*#0tZ)R;zfXbA5HiC7PC3A={n(DyN&nIhC7|3POfE<Cp~pk
ztm*GTryjgqZJzwA;2VCbj~x3u^yT<6qi#*UjGkpR@+qgiVzLQD-m_!MG>NDcviBiG
zZg=0XZ%SRk-D6B(1Fhjx6*398qf@lz`*qm6&6FMGDBkkLu}7IxH?<K2&oC_)u+o#p
z+wHo-$P&hamzZ-j?ZGUTF+Z7Z&kmNV!G04c7s%Q|Lnw5t&E<_h9&ls2)VGZu`Heif
zy15Yqpc}Q=OtmA2bD0wAHOqM&^}Q)5vc5#QWQw2<)E-Y{e!T4RN2)cI{)5kdV<=NM
zw)v=jh69B>aj^U6bU_ZXeR9NL1Qe=iec!ac!%!ZGSnSoBJy^<%-hN`D_I8IQe|idp
zih*C`{_TgQO4Oh1Ps_$hcgk%Ny4E}FhbYYB)E^79<Hu~CvROoSji@`*<QA!!hEd6*
z5jJ^EJ%1BjsXLO^T=XFSxs&>lqa69CtLz?AuQT~>i8~bcH=3*I%f4nLMrwHA*cMq|
z>(|O#row?J*QI}I<Mz6;BB&c5ub0S*c<gmJp0oGh?7`Ourt4j#eP@p+moDMO+Kjiy
z7PGM#hau9<P6c1TOg8Y#IZfW;eBKw-RgWV{OR`V*d6pXWfsj^JTj40)mN7&JKgNTu
zNkObqrt2ulER}4W+Rja4U9j-4ZXhG*HWP&iz-pKJX3q5hhPCxi$*Au>HF7x23w*L`
zRibM$R;Ez$0OX3qqwXs!G--i!2<3Ab)dsqNt}GfE;Ni1i5*JQhK`{3fVU10bIt$m6
zpQf|z>0ZfgaDNfkgE3bK3YaR9L4cd$bjg!|n%fNdLg;_Wv`XY*++#V*-)EQ&d$J_q
z6vn}D8Z}6ryxDt|YC*NW+dbi=SPJH1g7WO{?vM_Vg@oH9)$6Y7FE~F-8!pBE1faA}
znFfTHJI1%-FOd($24EP(!(KU+RTI1Au8=xow2gk7xRR1Flj-4F;=-B#9;qsn#!)m!
zS0a(E0(iQNf~`K}euMT4HL}JgF+=9c51dUjG(g&#r*=mJr)|SfFMHfH&csdnCD+iZ
z$BXa?)P~Ew7%go~g%o2`o`!V|Nv_qU6BpQ2cY&cB-5MiR5KsTAZa#S0`tH`M6y>#r
zO$;5aHo?lgBzrKCO0HF%0J@KKC!GjGx>OvEiVEnF1Q$k)t8(fX^J5)`R?m!?@HthF
zF~{%Oe(eGE{vaIH*eKQY1nC$>Skl7RK5&<kx&cQ2DHGpzEU#>VOk$snal)36^)qE!
zh{H#jk?C86cScehC`&9&PijC*HtA}-l=rtE7+mFadKavo|AslRde}l?b_Y9?Qn(R(
z>DHqU1$o{euw0-om!eB;)1aC?eP$5hqXC7kg<OHi#ns9LCNFw#Z);<172{|Pp?fMC
z6Mb$0m)aI9Ev9MPUe$_D8WRM@bOnVU)%!}!ktNSM<odpvb@6;1F%$?VWU{IOiv_)T
zbtl=3`l!o-+_S8JhTy8Cigwy;-F~dkE9e(nI|NZa=~=4X?>bU9lbv=Cf^)6K=$DEi
z-jE~p_3It4Q>J$OO3;nQ=*4TGak!yX3Y#FQehLY`KUFNfl_2JS2aWpaKBWDxzq5&P
z9K(`NMnmZLthSb$qzJ9CVC{~j3@DkE3^XgLe&wvBjg?qU9<)&D*9m+mp<Bg}ozKYb
zpQ0{6T|gqq<&siW6M&`dh;vA#E$UTcJ!uFRAy$-V&V47SIVvf~t!(;HX!?f+v(LY&
z!(q?u)ir8eON;FQM`)+B97a)@wygUn-&hEYN*cV`HQRU5gG!iJ%LdzueA}M>F*-__
zX}{+Nik015!UQ^t9=j^bFM5?dHAb&$(keu(Z{_q68btILE|1X{5rN)FmA%^9jP+YS
zc?=^DY2-)qlpp&8mTyO>Ks!(Uw1Z?HtUs8&+1}mST$4!M|4R3_a{uyR6~W%`%4sr7
z&Q_kvV5{-ffN?w+qOu)P8A%`yVOgR5{<~4S&=X~eAW$VmU#g-chjAwXGefRW`0W2`
zlc6&%Grfd)n@IGcg+?i7O;|Z7dFb4`$Dfn4S6n$wBFt|eDvO{))Xh1O-7>mH&G4=n
zEkEs(pl+&vfs=F9#HF`g7t#zq#4_<MVr`#(q$a-z8)f<*F^V%gbiwi+r5KBDUsH<{
ziFC?zRJJ`zuk$j)bSr*GfW4Y$63jImW|?rwYOhrW6byrP)OQJ<HPMnUJ8ge{tY)yd
zfSw!kg8fPUml%;vvl>{;el|PDl|NTY|H(Q41*uVV5$a{Yqvz#o5wJMgbk7ncH5LKF
zvk%Nr=sE29mai)|Rk<yhjuJ=TSl*wmF{^jnHF>C5K#WWX>lqTxC|nEb=90%2ztrRF
z70+g>@=&>T@}2_+3fQcM*67-#yK8wjOosCyPmVUP{%-Qm5*%!wUdOaf|4|r#I<-e?
zV15s^LZ>|a(dwtgT6RxZH7eq)ZpTBZtRZbA*f8nk6qKQX?aE+0V)xH&1Gqz+vSJ$c
zphYH&vW$c^F^9!#D;EqGmo7O>_oGw5)@`w+%_~E5siZe&3d{~i<C8w^Y=si{di;=!
z>!}y#C!ESFJ*I!E7{R}qN(+OYn|koFpFxm8=;%kRsEn!B%V{OYlF?ih4}cf0U-Q;c
zADLLZod~;vqrbhi?WAi!_~z)&?KkqM8oB5r7pQ$mgZ;|McsUoEg-0{aR`Vhc8H&@7
zgcmJ3Tqzu(kg5~rXvE8R*8S`4qLMQ2JyprrOMnLIb;apIOS2l0g_bdOa@?ox@csaw
z^CnUQZc`d@TKwiX*YlAIP)>)^vko4>3hTB9{PlV*`NfnkA>4v-$RDZ`6sLhG|D?o@
zxxAM!v8())AsCM-$no30wd-gL%m3!&j7{_YS|Ip*E-0ha?joH*!c4Gf_JxEhbhtPs
zKuhrIETbhwP|igG6*O{&O4-*T#^Pa*{CHzGfJ)aHk0Vb@?Z8ZJ^)gI`+U91^zy}wz
zGibfuZ<DBURVupuO(>@Z+5!6W=LL%%CQ2}GO0;5%vn&l1c3MSLU5pTxfqnby2ea6m
zw*?;fRoMy?1SI8=4KJ~<70eiX7f-}4yS_aib{XeIOxOyQBmPEFVC_3X)M8DQbeudC
z75q1c=aZ4t`N@Ni=iiJI^`ZZGd|DxA6dagj`f`~OigKjUfWCohzju9O)ZA+|lFO8l
zp~-d_Fcuud(F%NnHB8jiqLVrTf`hiCe+d|zh^4B-vtO(Z4Xy}U6)Ll}+R%l0*D#AO
zlBid*zq3XmT-}lCUxxlD>O~dWDDk{4#kXwcUT@4me<NkiKkAQj%9see6wdxd_S_hC
zpFgMtWZjDGbBgkm-N2R{=*r@_+3B76cULTaIZ4#qm~L-JipM3}y=2OBZ#Y@PPK?WD
zoTRax!YwNGH(pf(km@^|9#YxCT>E3A_?C_;95rB$HXKR&j*T^C>s~w5Kh!`-XJgrV
z^4J9UH}<|fQ_kl7<ukKsU||LYEt+jCzlz)H*0xr2k+A!PiL;7#7yxB3c^Am#fzBI2
zXm4mA3iVnzO6QXLdk%;)$wiHb(Z2{kZ?Q|Ya$gM@OjGzsGPxP_cMoPch}!8D)_WVG
z$?xH+AERl#TV@~gwYO`4K!3x8wZGcz9ZDa!Ys|coSjJH(bnii3C5^NkOQ&+YU1Vnp
z&^ulu;FR+czGnNa_lvY7$-<i*wzzsHWumFc@qSqV<|?{#fi4HnYH@=VU0`;df!W$(
z5A9OxU~7JKdE>a1Vww0kHFj1ieQoTo6lBFTP>k8aX?YSk8A>m)(Py<TTiA$p6nP@J
zdwMB_SD=dXbvVDiJ8$JA+$V_|uWmkPy8C1)GzpDZtvOG%))RcOq+pjNP)U_p8}n*J
z@&+j*>5X!FtEDs6o4l(Qq%36~0t%<-&ENzO-XMmnc?ne+pUfA{j=KiT-hEOgIVI~P
z8_A4mrcnz1WH}3&nfpLD)zqiHZQ5P|%BqTZj+u77$k1`j19`$X@jswn`t{8n;0u2#
z*^UdM(g>T^2`5kx6Dr3h{d{?>RIFS}NANhZNUEaTq|3%4KRY4~qx;^=$4q~@O3p^w
zrs&Q;vjXh7#N@}R5G<S=6%~6m9?j4V^}4b)WlbO1h?3t5+p`cIzDApjo9mfc6CAMr
z<_a%P%CB9$qbjoEDzL_bw=A}Ifp~gIufeYaVXo8fQr+*-cU-A#dpPON-9?ch^J6{(
z#hb#T9_SsuV~O8$`g$Ghw&%MuSbu9$N>9#xjZu}@TzVy%7%0`r*xhWm|7`+rzy7S#
z%F>azd_j>HFx5vH+1@T!VE#Ux4y#!w`885q9h{;?i*izT*7AHr7o3-y+`|#eJA%);
zrCVM}5Pq>T?GPJc`u22x0WLaUhdrpt$E&hW*GtGCc2a2W#dYZZ9Ne|*nm?&<lws(C
z@?I&CvC#LRLw{Y2j_qH{Fm*Oex4Wf1b;o;Fy~*-jIzK1^UEHnj4g|AxMg3S(shL<P
z3~89&p^dcf-hteH?_6uRkj!dE;Rz7EEP4h(#Q^|y-o}#cO#s50DAlSbKQ*lO`d<s%
z7tI@1_L3!WCx;MCicSh@y8v1|qH1PWpTjB=y7J%YgObgJ8xQB09$_ofiI~mRiYi8A
z<+zsIteq5mZB&i%ltG9~U?I*+abJtJt`i0*DuQOV$vjnGOdC31keeywxw86tyi5A`
zyx5w~UZy0l32_8O(odBTQgTiq3qO<H1OwU<uV8m{l$GVooMZF!2MSpp%q1OSYgDgu
zu(*=O2&+JX+1=Qh@O}5DJAY1e)SSLq6QJEte|WOLw)bjT_L$zWyBzC(C3$kO><?N~
zYM_O45CxP`>E1}ik2X)K7m^n%rvkGr_+s|u!~%=J<YN>}gzL+rg{Ac=M~8She9t*J
z_H7ZaDP9&A99rET#+YZJl%r5Vw0sT;a85y4G<cy3wdbp(DPSTN?1U#;Qmt9LVl}e5
zS17H)7udT`n>tQB3vysLLG}t|(2FKWcSg6`Q}fdEBxgc+`}teNys&bjoEFbT{0peu
z0W<!l-?%M#?iRKti4v|xu@vRnz+D#R(wpTl2-~b(^P2v%h*)XeAsN~O&6*&0c;d1N
zuBhnLHLAXC#@NfN<tG0vj=YjIs5k(Z(ug{+k+)-t?p__g1;C-z|HrJ3=r@5HiV<}@
z%2SoPBL{zsj<k!sc`EmHn=1N@2i6h1G(3t9#$Vv-mY}4aWPbw{nU@{EOCu2{VlRcU
zftbp=B*U^q!=5T;1%HO0FF4Rf9OB1iSV3U3%siNbw^fT=Hv+6DRn(VP5`yr>N1@Ht
zlUCMz3NI%+?}^25Co|k4aE~vGBaDhtA=j7l#YiFKCY88kfoxvhT+dOWV~zhMl3NlN
zd*Cm+4O36+Eu!lBny_-zY9E<QeE6&1^M{MtFEwH=mx9Kp8YQL1KMxUM8(}_4u{SjU
z)<cN9jM)-7#*BLC!!Hw6$l<P$7%~!AGC#B;swwm(KeoGn|NQ5hWD4*HS*PMI3&z_&
z3s~gt5>3D94pA6w&dgr%APTi%dM<%|o<79A%>uGQfw6m`$6r&QJQM64KQ-%N2yG~P
z$i#|I@olbOobq566+9roC1d8|?0rbl6wdM0sek6ZEDaC=G<9UCi&UR!0cY-x7P411
z16dQfiI4o;gDvg7-Agwaigxz;_2ji`Zw{!4+PF^7ZMVI>{e=xnvQ3riqP*yyrVNV!
zdBRw(L?KXM@i1&NX<YNWGSkJ|ZWX$8JXSU_FL)VR$BV)YOJ)^3@}wfBPG;$<q(R3b
zzrdU4a3VKd@C1hEcS#_K7w2{CnboT(@Y4fbHfVl5K9~|8opj))L?6xLn6Mew=U1Rl
zJ9`pA`uXx(YBh82DT`S#i(F>$1Q?qr2u=$M`8bbqEA+)yXK?G}D`zz+b96S_^TW5>
z@I_Rtao+Y0MA{QNicA)T_gYk6I#1RmR^3Ip#2MtKIitS;!-Y#z@p-htf8)x$W&?eV
zIxkHl|6w9ab;5BOm5Q58acDkWzU{)tOwvZ(M*7j!Y&Lj6fPP3QpyXAg{OypyXoa^z
z_$9v?W9;tYgt$3)wz%4<QFYQM3MjI%GuwS}PzcOzlD6qv<q^uv04SmO%SZtqKdTu$
z*a5ANOy(Q%Bu*S=Uy7r3edBHLEw4+WiFKZ~l>tI-hU{}wA+MuAQs$}7XpRy3$n8<I
zN)z4gZp+73f=}kfi?ch#`;^=P(d^H5`KFF|I)1<B%`CZ8%_!(WW?}lCC_(zjO5*}X
z6ffvOejZY&E01bJx#1zROqJsh`*>`X<zHL#8`e&LBRYifk-fk1@5!sYD2U4uUR$0u
zolnzm?1Taz?292LK`I$v*Edj+Zi0eh9c*79<_@~;zH+Bi`H^|65qzxPP&f0Ff;If+
z?_z;5<74xjUEj{nMN<T)nNqc>J8y_R(u9|$=*<qvPaJWHz*87mbMes~e=FN*=z>xV
zq;kgsw~i)ldF?1D+~Tt)A(m90CNOT_TBgYm-!6lz=GN@%i5;+Y_O52})~QY{+A3iZ
zalX~?>8<VcUZwjN-8P}gQkP<RE!?p3D}zV$FJ!MSm+z2&#3r?HKV0*}8t`;LNbtwy
z9F#c}+RUGuu^-DERQq8cwJ2`Ay^7?!Lf@;oA@8P5T$g}#L(60fgJkW3)n$5z>L02C
z8`b9BIca)5ELeR|GI^w1zD-S>%)uyY7+rdrIREz&n~md%Y1DB-Kdba$`TV&D>oROu
zadEzj!r?I#kZ|y!#hd46!D3o2v)zF#7O<pf%a!vJi&o^A{sMJ;&w!U}O9(YA+Mz+m
zZ%>HaM0A2GrU!5pKvYN>zVsx=6kG61n#XtLAX>{~K9B*)-o7howb~e`CT2NNc^q;u
zKSgEd!xYw+C%Z9Sne0#hl*aT@G$sFBN=fm5sbt!e%<r=V|4P~g^Mkd6kB~c7Y)Wb&
zVxCOxf)~}%Ih8UIR(4h%Oy5klx7$Ibx26{DG@Ua}vx6=#Q(K@fbd?w1;|^^JGl{)o
zN2IH?g(h3~u#hyjF3sZw@_4B$FE?j>bW&!h06}vN0uEc0!yZa$KBY{f%xdIAAnrHY
z70LbPb}1zV7CuK2Iiv*Af?(lOn<`g-xqr1py=OsI1PuSr@t6N|T`7ubxyXP;nZCHL
z&_enA84xk|K0dK&ggeTI841XL_Kz((_2TRu%`-mrIW|CaX{32I8v5`#z?zjaFW6Yv
zuKiv0FK{kua-*Zc2RPUuhPF&ApBXfwunXBYK|p5O$0(MzVnMeV58+q4wibBKk}_BJ
zc81{X!^e=F7<^7>i6Qo-5}))b{1<GIJLb@US!=Y=L5aT<r7QobDKi@2&-o`xvRy5H
zvx&Yk?Q6VA*@V0CvuH%zYPW(aFSU>JE5(CIsmK2=CZo4(hC%cO`hhx?RAh*m!VF&~
zmA^Og_*w^c*W&QbzaT3o(9yOsKv#P~IgHYs3Q*QngPC7SbkFN0PBPFr0$J?7)raEN
z@Jo4z@FL?1d=k;Poourlm7UDFF74IJ^gP2RXPY;NkkAcGym5XPgFSJhip_!N^+qp&
zPnKE$-CG0zChq_dJWu^Q8Fu!Xp4LCqw{zoPus78wQljv0m7*CF0W2b~_5~r|nlC4{
zPBppodTKbytIak^<rNYmo`ap<5@R*!hJb_QZ4>m<2rGgm{4vc5u5=somkker2@}V`
z883yrEGW2$&tq0=+B3zT5b^d~qfH?c>!RW!ICb>`@KsJoj!hl+6BR5H9imr07S7Hr
zJfSWSpW@`{wzQvYqv12{Ajuo548U&gn@p<DGkvd12eCd>yt-m(OlF%i!RxCp4zuLC
za&^iV#bL{tRe~#?O|}bAdFAx;<ja>Y>?+cRA=Y|dssaV?*k;KHKmf9A!l+9|Ba5N5
zC>!6depT+rw&$Q;iUTNR+*+CXiO8r!d~hOHy6zCRpRKxoSz5DXP}B;bgt>d?JqIQs
zoXUc1Y{w37nN`XtAr!XpJ5z;*l5=Y}T9C2ofVX2^s;N~XW+lh*mWpaH;`3mv(S~`r
zHCp7uJbLK%lJ83d?r**=9XU&VijFO$D^I6REC5(-(y%X0XMA(iU67&RhwXXxt;8kJ
z%S#_86JReb5anZ^;{<N3|L<srdgN`(uakqXm(&9NeoGapWa|)oQ_Ha+8MXjtE@BTG
zkbnqkTdQ{@$RKh=;}7(YI*BRkq{J`hXjMJSQqj^<KFblS?aKJe%|Os*i4Z7J16!rs
zs~W|~y2VCNStZFi#WE0M&@>Wq5t8xMWPkqkT>Yx|K{G~6wr(kMo|z*=nzWxBzTi&d
zINJ>~A+#l2pmWW<ovnFYUE{osYJv2datR5B7cioCPnV0nTi^E~n0Q0qIUe&6WY6Ap
zHdE5@>}tNt&FC1^eG?AL3RObW@-Z=auoFg?`Z2c&M!l3;W7Re>ay?V$_BWKvhAXVz
zp0}w!R2tbz7j1iS;95A0mApykiHTpr0w_2@7jh8);#`2hUP?WN*VuH?rFjvS$M#g#
z{?hi^>PE>5uUW$K{Ep6w>qq(~`*kg%icDuy;4Yo%SeueOhIrr9E%zjb*y7uB>>HM7
z6KEpgPdeXxb%(7pNCJ>lE-HmRi#AnqvBrO;oo72t6Ph*2^T;Q8ABpAkvsx=tgjCFJ
z(F#|d2ANv{w`e4ZX_7FD(Nt6qa`EQ;1A5NST~F_&bTTE@9Drw}{p@u9Pj@_9+Qvor
zoXY63?BR5E($bXfGQ9i!H!q`0CGV4%8v_3xoFxv!yqeN!VG9ARHYp~ELZ8;8Ft0wB
zGLnJlO2C}FRgRkddwBMdBJcFX%qL|rm8Z})deu_ur;#GC^UYm6lCB2~=E>t^d6hm&
z2UB~h&N6T?4TlK_ePfmubjCBMG;@Cl;J|cEH3j0PVm&BSwdpV!x^TdHxs2b!Vc(yB
zDw?U4zwD3W;EED`!9eIHiM2?95;Y=bvn4H^q}(uY>?bc9;SeQv`SnLPh()nI|G={0
zYOqM!2};Y(reesRh_Fs{DvcH<yEh*dD9naO8?U)z>{jvDf)7O(R|+Sb9~pf2aJn>A
zcw%E`wJ==^Ou;xKhj&D;=~LE0iO7($F>#g=_<EeDeXb8WCw`?mWkq9myND=?A)Sol
zQ7yOoSuN(<!TkJV{%`pnfy$De{PBt?Y_d$jRx|fQi;k7CM~5rG`Y)Wyw+S!}R*Irb
z?B8N(^qoMzDE<{B<MLvpyyj)a!ERKE`V7Hwu>19HZF3)PZ|1-oQ>!;7iq+N{Fl0*D
z9Sl@p8--j^XQcOV(Fz-eL6~<dJEp6?7b&Wgl~~lK{hmpkGDZ+`kO@)LO7HB_zFnpq
zE$+mcMg4e+!}`V9xtZ&^{M{LHGp${*Vx4@gK+APGV;N~>tMt?Ml=97do!qE1IlkZ%
zgQ?_|{ex-$xX>A_om%oKx9P40XaD};4sd*sb%Zq{3YX=&?~5l-p7DOR4`$sGmMGJr
z6YWR^N6C@K+GE{vpuiQhdfkd{92$gaR2S~#t-F3M_197(HYhGmX8CP6AFEU2Ub$>C
zNexvF8JM?6^H@YC+0%}T#r~Q+w2q^Fl=4^vTyljqa!vsShLQ*FRqB-6`MN`vRy20*
zVB*Aq(NEi0xc}5Cz&u6Z(Gb=Wn>nk{*JEX|iMjK4^JMBd&~@yrT)Dp&x;bas+h-8W
zbXXsepXPuV2b)$8Kb~eWDDM&WI7$*ROHIkyy#V;ZUFsS8ANi6|;$8+C)Iklt)V1vJ
z2m>vo+u0GAGYi`cSG0X>%z@Uv{NPLElS+8tq1jg@qW|+&usQOFu8ASU`l3hPhh+TV
zNN)ykNU^8XIU}h93_?Xuo5Nh=6<N4?oD1^-K+BD4)hHwn!o~htijUgHWLYSm^}|&P
zR9$iHXTt>{Z1Z$jHwf}n(%sEBE=!SOS|HjiJG+Okwu@(&Q1wD@fZvkcyu7hR+pJH(
zX0HyYo_-usnbZ8ziktH#245j(co50LVb640^cc@Mhwc1&AA)UG`pQmuNrjaNYNs`X
z@L63)ahDj^1oy%@@hkgidi7<Fd^b5w({gu;qW?=M{d&>@hAHaI4$#MZv(32P-q4(n
zs&Q$C0sNg?U}oXk`*bu~q$=<!a#Ph0-1Oshx|nj{r{4$YJeAmG8I?Sz>&d1c5g~+9
zS!Ty-;6%kV;F{)0N~%Z+dW`Z?RDARFG8KK>vGIL0B@2*KmflTe%Ie-1d1TY3u1XIh
zZEx%|YW;?bWI5lU=e?PKoPVl*L-y`xMMX+C+2(ulTa|)xfXwn>JlET^!5<2yt;vM^
z7%{W??j~Ef08e7Z?D0ZkRLVfPfN!85Bq&_tM5eSQ0&dT~U7o+6>yaxZVEl0sU3YAl
z;S=mNtB{!HJ0NO<z_LlA#yz;$^X4wuX00WSduJw0hXG~zi3(NVLsA;N5V}D5qW2SV
z3cV@FvV@Mq=Apo%$<?#w0~Z&%+~lD&&*c>B>=x`oQltG9`(<};w(uc=t9waC$orXJ
zY&cdeGA#i}Lz43O$;BtWQ~Snog}XMhw8r=a$N~ff6*#U&s*8w-wZBeshxS5r>2(=o
z*!0`;j|!{nrk5fd-|5SK(w``67VGZnq{2XLvU4i%Tn-ux?w=TiE6N)%IT=*wNx5H+
zW0@z7WMJ6>3-67xt;Ar-Qnn~M^W#ExZol|V(J1FPwa1M;`^^C_9EQT}bJNEXl!2;r
z0>@$ZRbEQH;ol~&rppe=`HkN}__{+MHd=XcWj72oE_ZP@t^<Dft@2v{=0_`&C>0c)
zx&T_%IQ-k|n=Vd)rpjL_bzl9)uz!iEFEm!cyfKL5TUpii#>UP6xvse-dAcIv4?SdS
z_tk27<|C(~#Ckq}aXxdQ8;{4Av8$yXtbTcWP9@!2oQ79Ij}+m+l{x!M+3rKXv45$$
zt}cI!@DZ;OBrc0rabW*M)n$>2#Y?6;zfAV2la^KpuBG#xvM?uK?&8$!Ob(M5zp+7N
zIgBi#!N8#;v=+Be*0s2s<Th(SMU=CNg`=T5pvxd6o0Hz6atJHG_%%M*uen$$%9i4U
z;Y{AJ)960cMU<Q?o_+y^C9H?Qdd)e5Kz!{)rDjPBB-^roaPU(RE<xT}hs3^PfyS3o
zlcc8H$mW7L<A^vtLn%$NkjVQ37ElUTv`pr4*VgHhZH7AZhx`BiRYPc-mCkS4nyVq&
z?$N4@+N}=@_>+oNwrg2+e0r-+K$T>cb{dpBatAB3jr23LeyG+^vFNg@x&=rp<XpbH
zx*a1NPG)Su(gn)nM|34emKQQD4(z@CHKY?LN9z^$)t$-I+uiR%=jksY$T-AjVt_q@
z)X0kd1U+9czp~lV^<AVprp1EPQxWjd<Gi!h;9x;JrwF14uA1~f!Q+(0AfEnrJ{;mY
z4CHj$4hxG^sG}&8M`%z0M^d~*LBxrc!z5EJLWWW*b2U4bF=GFt1dvDhQewZ?YW`o0
z=%bNo^tgCU@pG;uuHPGlgq4bMm0`D*OFF-iN=e-)>nCU_YTV)IXObRUNwb;>V;@J%
z$*kfQy)QNTU0cjM!9S~$`T#p#-TL%nib=sC++1Nu71WEbY<|4~T3PHc>14N*B`VV-
z#m&tN6hYK`y0NLd`>U;kKT+j&R@U|gG&R#nai&FeUU2w%lMAweq&@7U*cM(dLB)Om
z0~3c8eq!d7v>rtR9H!ZEFx(hgtyv*Sp{3M`AY2+d)f8Ch(31>|2N82CaAV$b`j!`U
zRVoko7Qz8W)A&bJ?7T=R9|~!OJ%+*@+vCB{?SQa_8`QHej#vzC7DNfB<W7P<MCIM}
zWrBw(zFG>*p}N*X>d)`0Smj5God7<|qOcjP07FOL(aeu_M%);mt`XTJTbn6LxwHUU
zv_{=2h<-zz7$sdgq6QNF&h*v^%+c{!%C0GwE2v+ghhpp<l=x-xP|AE?$0Ib7QnrQ#
zlFrS4$G**xUd$$ab3VVJ4dce=?Nk=wy<xf3maU6108}G$Jlj2t!_+)GK-8nj<>lp)
zZCwLQaX%EGDkpGF8=>6PoFUXYRYPLseU->#Wi>?kuBmi&A``ONk$%hwigx__FTJPi
z$q5XO!*{-P_9+C8Zx2G<8PcapF<45++^MrE*Gl3A?mhDxd*vN(Wbj_(W;6Sxsay4s
za2nrxWE7X-Jd@*Ufj=7PDgNnl>bT|dEPnnnn_oO=g$Evtu>uyh^Dl&Em0|)G@5}w<
z6Uos8BN(`yKJ$@tXZ4EY`+D|GjclxY3^;$<p6Pr0{^#ne_^OfO(yMv@<l{LhTPn8q
zZcBN9h8Z+96rhiE<?`F@r?j>LB^+gsGE>fqaAEJ$uu=>DeTzs$9pzj1phFy##Bohv
zF^z`Z8iHZMBxw#3&dM%CH0LXt;UA;$>}DeoD*z_2cNCFvHjF8g#xXLWVb0({MCQ()
z`dX^dS03R=?Y>+$pj3<?RQ~=;qB(g&%q9nz^V{A*9%p4z9Kuy^itH$-IPWL>8Ve?S
zOlsF00jz$=_zsBjgb-R#P@FLCz_wP75FNtL(p^ao`66xKDNwaEK0v}<TsiY{`zbM(
zQA?3JjuGboou*nu!RyFb)=()e6aF_DvRKD0VWe_Xjl<)~1SvtOpyleP0NaJYPNl>c
zRN2BT5mL#X4|E=5DnFs=9;?%V;f8zew6O%D8HCqvh}w43(uJ!UV^M$SRRKNsFqS;9
zaPT#2Gd^c5I&RJvZ`rA}`z{GtxKm~^o)$Z>8J5gVUMI>Ilr@y68-|3xdy^`N{rxx%
z|1M5clDMyb0aO?StQw_G@2(@fv>!PV_^zKY0JCo&(Zza|3tl)~_2uh31W4Z8+g^9Q
z4$aq`v{g@uPi_;=wzs#(gNv9eVzHshzGJI|`n`>iD!RMxKb`R?!V|li$C|hFCU-}C
zt7yYrHRr<9?}-BSl2n;mpX*?MH_V6M+0zF^P|d!sn}hKU!s<7R3!BcV0bLeWyp|}h
z&o<m4MYOg&Z=c5nfPj|C8qg&XIp|WtE0vpNBj|n%n{UTP6<bM@m$>Se?<X(7;>rXg
zYTl`(D(g2;Y7ho;I9Pj%7|XZ4pi6sG05@u9UyTNy@>J!)lj?^mRrP#wvMhO`O9$;0
z5{Q)1?&U_;?&#88_G&Hcurr!i@z<^6C>;|A4%|Np_rCqE-|`^~G}dp*u-f8WUSZA%
z|B8q~%kToJF4pNzHT@|oQv&sxolw8g?+gBAmnB>nh#4N3$+Ew~d1&iWt7k3ZfO1At
zIIo&dw#bDdB;T5C<huY;r7YW$RuF@}WUsESZN1po`7RHG-N~12u160|n3}YvzOuuo
z+23KtU|a`uDvR9$)`1w9gm?BpwoZQ+5FBu51O5g_APEj`g<^HUvH-<PP8-`6_AYas
z6fEU){?K^4t~~$Rq8)uS14v5D$HB$%L<_S%zd1>Y%=+zlx0h5CQJ}6^v~ZXZX*Tw!
z+q;4>m*)=_kx4u<OYntr6HBm)kJ<eCwv6PF@VhNpszjX>R8Fi?P<}E!larJ1>xc?M
zAH_rp&G?;gL3?@CgADMs>a8jyyk^DWS;b5o*Au^OiJw}dpLN4C)(Y6r_ZYubBzeuJ
z@kJx^mg1#1;ZBRCFUx=VHJdI;&5A`?E472}?YF!pqu2>7(06Q$BB?JTCCdRR6A@wv
z5bw#P&H^WhU8x~ol@o2Nv$2Y9e^<gF3!Ilg1ToSB{9Khfl2!5$Za$l-jZ^Bh+>rRO
zT8bI~O3NZ$4+YNH!~x2_QxY_+SS@6?`*QVN2I7{qB=6`gA0$FQiP!5~tO8;LD_mgG
zjhK0<r-2QDe|izmNs8v@1{jdC<jMAOpNXZYm4O3>!S~DL->EHYH3x+g=w+y7N=-_Z
z&wf9<CJ+iBt+2XjT)X&iDW1UFZqHJrKB#&x0kn4_#kC*~iNuNs$ufw7X^2j{mtYAy
z!Qp&YUAX!ShA4|Q&ZNhr(roR|WiYJP!Ih0*((r>sJG(&GNja+GPWDg?9#_Iu7!(q>
z<7><vL7>>>5}lH0TCv7~#hmQf?GIvX1XZwpP$@KTEya2lJ}(6!gu$=Ec&l@RFu})?
z8<5@|_aKL{s%g2>_Gb$ucd7I#Vuj&mR!g$v)~&@83-QvNm1!iI(g{H`3ziuxZv}5X
zZNO=YR?Cq1e0wQCL9$M3(~GmS?0toEm|1KX<w&}Ks1(GuJ|!>fT)XGA#45E)>f0oh
zU)XBp>Q0ogEZss79pl+><SZn-IxlNm$4MSVy|!_3Pn%*cWA(l*y;d(G0!wvTJ`ai7
zg?{zS#Z7)0?~#|R8|UmSf3I<E@qw|!1GPm!=(AC^R)Njo8HC#fxBJhQi{P(*PJYCW
zWM4zBSZ%TP!fuFu{EXijyWvaU)z2Riy)eqF%pGG@HT-@I5&^NJBGj0T?d22gVk5`A
zkX0U|wr&jDEG5-m9lYAAL*yb8fW(P9MbW+=CqK3D^}p=#A}pT%l9&UOohNcqki5Es
zW9gO05uD75$!g)`-xG@q2d!P{w40E{U0{%GS(9K6+C`}%TcD`&woN9m#u*3}nWgC=
z#ZnzCGQMZZbsg?v1#RqhonZ^Gi85o4-BAF_6ua_QcuO_OT3dn&e>_E;iyKi<xvyt8
zr<3_HP^KD(Bf>Be+Pm#kn0rbC(In->y^a-G%Zc!ZVgY)G$Zqj+et7`Z(BlSa=f#40
z&5toE<50BnYSZIS>5X)g90m7CV-`&@8D(>sLD#u3|40HVn*!mfeXv;FO%hEj+2Q<=
zAJIjg-^L?Bl^I7krGd|ID7y@fHB`L$aw_buAo%4ZCpRU(iYIb0)a%(N%7RRQ92a7~
z2y>sU?O7`_UQgs55BZZrE;?3DR4nZjAxm{l>FuSXX99g<$?bO@T~yD(tAi4VKG0b`
zt4Hh}<=47<*z#-V=6js%=<7NG8D~uctqY&_1P<NrRez$U<3&{r2DeV%p8hy-Il+N4
z0T9`ok335iv)XqoM-ILcl}gV-+4{=0c0XCRg%JQ^Q`NeRx5(XXWsDf%_r_!u8*tq=
zPVR1R(q8RWrR-mqXZ6SA$oZ&c%6<&(+U7X>GAE|5yTYr>Ch;!@SLGQUCYHQlfTcbX
zHcaxTRLwAROCY)OOrNocBb<u0x)3op#NgCViF~^4-CW&$`~34<EC&1O`19na&mXR1
zBA6ztV(DWeOb#q!b1|t=jU~@hIf)7#&8&KI9wT9j0v5}HvMqhY>Ng@}Anu)%$#<d}
zV2blioyI;cJDxR|0rC$eez5wWUO59LqrtF)_xN`+3WgE!dX&DoK1xCJ{vrH<E7W-^
z_I6HQG6$<mlIk{*EhHr|)tcnd%D7A)!Gj&6GZ<)$L$U{xy*#`AxU{99k)4)NGK(cN
zlysDt^wQg7zr80eI2Ot02+ItwKbwi3QRihcRVE5D(m#N&f5hB$qB;ij3;tkU6X&4V
zHF=y2=O>Bi-xTRx=QQQOS+e&(RIQaZd@1<Z^a5x{tre!?`JDDGFj=-LE0{u&&h6AI
z{KKKkb_A8Fe$k6p_uW>LM1NnCh7Zu$Sa~TjwKJW}HeRo7E^TkDZN3s^o$+-(OI7-I
zcB0~;=s#P>r@020#@%0C%ZtbeWM3R^E=Bq}zr&LKn!3mGR9IjUFT>~0^-cYo&rN3f
zvmJys#KAwkiuJ;>XGI5gQkCcZoJbb38YLnuHmTD-E*4bV)0||m$(g<UH7v1dx40zZ
zMwb&a1=jkxEzh%Gv}l#7mWsfQ+Sz1_Z@k-!9XTQ$aj_#0Rtr}I>=Dna1hI(mo-8ye
zj1d4mlws`5aB%gFS#F%YE#;;on8(#4k~p^aT={c(t(359S^t}JWhzQL<V*$J8P#_g
zipl^u<x<pbo6zl0=&EIz*6qY)iQ`(QtMe0@=OV#{15C(NrIZciZ6UzR^S3Gz4~^=+
z<8AS^SpO|<Q_GUKNq;229s)X#)^8srr#P-=VfPnlDz#Uz>t!jH?TMl|=J$XOMK}aG
z)M0Z&iK@*z25=}L>ET_{VvF-v!Zp=kYW!QKbo_JBuNF;X1DpYGh!rsJ<%-HIuohGJ
zF0cFuGE%C`MHMs$V&z=+TYCi|9QNO*uq~T+G0t#(qhB3Nd^gb+4a1~_SYc@!NEFw`
zOA8b?Lj^}m_wOQm+nqxo18LIT--RWo5*X_+`yigF_({ci$Q)rYDs}PYy8YmF9_jcJ
z`*Su{G-^`*VXE;h-+oJ71obM<%B=SL6Y;!0_g|CtT53j7JdFBb6ZB9uU(ONQ*jd{0
zWfkLsxx~)0JkJ*KsT1qi5?W4uA}Pdl4BW%D{g*pyhr3(9&o(!dn`ld5Un}y38h1R(
z2nA^T96)XJ_EYM*GRQXqIIQ8sa%`O&|4@r4MW^oy<*&@Q%vTcN;K3RUMe1<fSI(rx
zUOw3D9d~%g$XEthEF9S`ETC~tU|cErqvyeq=PaOg?QUWag~3w1gSMz1A(UVycdt{3
z`iosjUdfPd9L#J9lX+9PmtsE9%tHA{9!xzqIThyaQErl4*!g)ozuBz{%d|o-*EY$w
zG&rt<VHY__DupeaK9CFHIJ67QZ7MIk|3=0N(}qN~^B2q#w<zBDQq#-XS8CW9>aa+S
z6dyg!qEI>Elc-w$dVD+9HRMw<%zocg$0TLWO9jL>P5DX@g~nEIFZdmZSR_)x8q9=g
zB$M<kvK<OTR57?pV9gqq1GvxqyLn*n#{1;)Qz(nVH#bf8wI$Q7-D&<9C;|W_lGDZm
z>?f^b))L2^d(<0pKJly2QKEW^Q&LQTJjJw_fHiSQyQDxv*_wqj-iN1iQz`E8?h;?U
z@*Rd}>M9`(`(r&EyUdC*(@#j@Ld99V#fZMRoy<QY09<~MkiLMRBLE<*cy=MEAD!xj
zU5K`Ngb8sD=k<|DN^-0(ml_$o$xJ&5ny`0RxK{ljKLVI^17R@AENVqg6PbQ1?l{cZ
zFUr+t1Wcw8RUQ|ypDQn=+g04JRAfl4h7_d>^vV`W#z>zkF>ng?&Hf;}3cGEXEm;<_
z;Xa7gi_{247Zu(ILynVg`?3A9n*#rjZ0J-6ah|R~IFhRCRxl)n>U2+oiNfJ(dp$+s
zcDGmiZA-uCzY)=!=seR`2fMYQdmAD$7Lj$%sJ97+muO#x0W2bxgpN}AeE@(NIB)=Z
z%P9hGw#z{;-1XIs?UFQ*XlVQ5scawXezw;?An2U@S2lY81SCnx#$;MHmX89k7-;-8
zRu~tjAVYeWgBPniB>q214ME$dBq80IWiN4~K~fWYOEr$}gx4SnHDs(gXU-nm$z|s!
zyXKp3*#}{NT96bmGH_S=x3hxeOMzAT_=2U#1BJ$J-JV_lul5M0SyNmJJxXs{WvY;o
zilcR}KH|aobM{wG)n6`SSh%H_u4yf+T78asJ9~_YQ#Se7u;XE}V5E4Ywsn7Qqysk&
ztcyVvk@J_;3B0tpW4#nRd=^F2hMT4bUFP1~90;a#PZp&lLsb2pc|jl%b;_$NcxSDK
z_fE-Qr%TP2yEr1H*PslaAL;Q)b6Zcf-%(4IsC1nnj#J`$snJm-gk?nFS*+<{41zh}
ziDb!){={Q&IF_)j_lo^n+miL+W!R6~iuG;@ZRCPO4AOF{QYgH?4{Jwp*+dR>pvs0>
zm~7IBPlg}2689p;bv~hQYLl-UB&v@^N~CIkOJHa;y1Ont{6Y)?RvDGqq6>BBp$a&c
z_^}MFuK6EDQL}$*;pZj*$@zd*Ux7(+k?)TYahtYWbMwoK|JC2h#$}kbVidvr`u!0|
zZNI}4T@VPn%HiQa)om1sS_}Z{AJUU}dJ06hnTi|4#GcIsTAW{t77kvjEdrp&w`C0x
zqAZ@#P<FyE8rWKO${_4xAFru<2$L}P>0q<4V?$uJ`^UX+SS(X}FP6>iM?)Z2KmCm{
zi2YQ_km6$1L~lsgcL17C(dfKRQngcC#|pEEb3o7DUca*?`pY{eEYTOQ_H5a!+Mf_9
zo4B#V!}vA<&Axj?{T-Hyy4I>sUDaxez*@U&)6F9o=e*+mTxYBZMAZK*1db~G2VIhZ
zK^nj*LD){pl3wGq`8@ITn9w$32<^?3YP+O-p91sK^P~CA$@!9oN<jvPO*F{+l-((H
z>_1+9KD)dX3POavJ^wgY;EqQ8L$d-_Ywm}+n9>JREPMYHDzPZj3q&3SgkS{eLD#F_
z*|NPJP@-WbHY8E(gF>+$ViuqeRxS0!7I}9jleBoogd$uqLQzgQM)u%LR!m#(_h)`X
z05Wn~92x|XQ1v4<rWyhhN(nfp4r|dp88qv{5CH&+<0eaHh=8;fT?-fS;veY(bpBR(
z2bsY`v8klNf^dfyW(c{^0T;9U;i?B)HHMmLe+)7?JGPr9$u}Q<FTRWo&r2jZm^UX2
zRmg#mLy>`@;CM(P0~e!UqNOTAJSWnj>&WbRCG(}vZDhOSx`+%-VRYPy)54vg!YhJF
z*Tl5}YMsnwI78CwWGGOXwJO|uHFH#PtjD{m5ba#|HyqNPm6hOo0{j$-e+NIbw@Q~G
zH1+VUrhZ59cHv=SlK@$K)|(@tuR*Cq4iGk7K0zhYxihCreUJ71S9=~r=2_@%AvBII
zFL0~GsENC@-<hU90aL~aaVaz3I*T0KjS|0KuF=^eElX3J&|=n4leK0d=BH?n139fX
zJ99lClA*GzcVlt=23(wvE?c!Os6RV&z0w@J%^0wM^&ynGVj_9hd70<A+=Q*fuPZCb
z@qcD5*y>U%S~sCl8wkq+zR%>JRx$Pv()7$N8A70wld}(@H~sEEf0@??N-v&<!I5N4
zAz@~2{aTh8k-xLMsm0y>qR37rX{0Intw<R<T2o4UUy8mc?-HLTX&MK>2D`ZJm}=Yw
zqTOGC2{y0%VfaV?+_}6#V0llN32A91*o}PzxW@1h@`*3d7#r?d<NLMwSrR!)c{PaN
z^$m7^De%nDV2r)k_#@V8#z~`yvo&f&U!Ad%UQVP{L*q1J4~jj>jSUU|-e+)Gig#!2
zg(J=ctA~kyXN?vMBrZg=7LK;IOd!Zd1D!B})mE)6EQys4EcAfiaDgfKrW&Sw+!7xU
zbicy9(;ZPmJX)9m`vDObDR3_gh-2m3%NiJ@9Q<z@>lN01;{8QwXsW~P+o<sQ;9CuF
zx)V;~bZ!ryq~y^n7xWF==s+3AlOrrVQprOETI`W<_M|BNr=3$%1(e}<KDh`T>TGU3
z2*=6qV*EB~rP_UekTf<h))=D2W+WH_(PKuN`1P}!o3nN2`p&E3LgF3kuNkJ<hqJ<l
zM6P%c0%E7j$W3vGZy<N8SLw4@$eHP`2oP?K;#fZq;u_O9XW^<Xhd^x3ulp2*_l@j_
z0RLUmT~M#^-=o;bnQFj0oKc@b4$WL`lNWY#-A(%^>_7J^>w+Qa6|k1CW1LkxFOWS=
zmAa~4v!AGTf2;zdnWfO^Uo961i6Y}uyX?v*<EdbiW8^6+8CI3DgKcZ3@WQIjOJ63J
zXaK_77q-z{;pWRS&rg$&pa2?-ugDt-aXh^mjG%z4S=_Tg0AooL-K)Lf`xKCoX`;Z7
zUg%#XzbUj&)jgOAC670ll7zNM<$NPbgprlAl{C|?C^M5~rqcVNfY~BWS*kAj1REJx
zBkKaH#JWGzqWYW}+y@GlTDJ!opmFWp9V_B&-tNq}I4}({_%~)zAxU3jtY<7Q`0{^c
z0PI0Q0d&Az)=z{FA3|qKOU)XiX34s))Q*{-2bmj#*ySxblEv>!&8-2*>B6Te1dn?r
z;m+g2BQ><3N^Np^jYih|l)`WEqYg|b{Q+uXHO>;ni&W_&r8Rhh@i36Yc#JcKN1a!b
zK2rj6Zc#2w!Wk2xn46gg%*D_}_>>Pg0E5(^cLRmku4BeP5gutRfwYw&5v?puOO;6u
zosGABD?N`9^i!*F`ma8^pj*{TzYjpC;$1grdyuTg<~ZG6G-^B*plGV{E~@gzKzwqf
z6!{Q#3jA)%Z<r8d4~%<^lv%kve8<A4G|RJ|ubHoS?W|B;GgsbBzG;>9xn|i)?X(BQ
zp#MT12g!<ZR3b!tSWavKNSGHTrsyLJh#eJ6e;Gds1#)RdRwS$44;-p2FIVnkQ?jV8
zT<W#M{XYjy&-*%Lg`Nc>s6R{XjW5^fWHQch|2<L8@R_={Piz8BL<wOlMTtUf@kyHi
z+5YQE(lOZ)AaG!M^t>B5x_T9B_tPbhkAamWKUYLVuM3?NI$bN`U@0hXIcV%7Sk_?a
z{1~JUEn!9Uv(CRl1DTm5<t?ak8mFr9zIEB+B2`if1g9!epXykIKkJT#9(0&7JEd7r
zcxnW=!1=T3<fj+;{-oNUPn>|*6?n##i28qd?4nPa2QJb+p+{I_qNi&jkDv$q__i|o
z8#2keFS{^!lePfF|4s5nndB#2lYqHEE_aOZ<5WAlHNk?ANqjWx)dWIYV5@_w{~gEO
zFOyuc(+go*gHq`A7USWnON}rXBWEYS2j!#+<+oTnfYp)XPPAlLGKIuuZtl(%&8mA?
z?8)=I<`O^7b$yZ3Zcfx<KT%pl0`Zgk6WQ<zPqi8R97B2uplS-cS-_<T4}P2KM62$s
zuhB3H8HXIz;ZQzrD1c^T>H3rSZAPjjAhVHqwS0p1UhvWJrzV6I$$dE3-!0`y_qG;S
zW!P#d<%s{VSbxW;lEa&3qUWV<jrh8#9n<?>K_O3oE%RCgWG*>d@5<L&lT|ShXwK=b
z4tO|-niq()p2*Q@ZTYy)7F&F&yI@BV^wF+0_1X!JQ&nCyRqfQ%H%G;`62YqwMK>0d
zyM-PBqS!+;F7%AI)WE=<`R&kdUduXX7|Y}GqQFN@pJbvT?W>>byqsL$UKN2YoWiPI
z`S<$9P~g8VKSCFe!qu+K*%}xzhp%S4MjSmU?0h=M?auZsc>^V4dD5s55}Vjf%NI9}
zVYA{6?Vz4~Gv?|Hf@Czx!;T=dlXFOi6-LfbfT`6x;Hze1y}z}y;EFc50Bv6UGi`C1
z?Oqw@%5ODlPrFe+Y_ra=CsiuJB@2N?CWR@q)}{MQpiTTwcKY$nNSP0>L9VOaUz;OD
zQWXO3b!FT19q%+W6d8+0fAqS~7fgosHG3ooSyp*pOU}3$w3^;LlQpdGY*9g>`x{vc
zy<f01`Sa48lHf1tD7(*brehgqxqh>{8yK_f;Vs$KLmWC3zTB{<$_MWU<F4&4zk0o~
z_P~+a+EoDxJ7f0!lOI3D$=t0?zL&M5xHm9d?I1Y`nX|*#HJ6`D=)CSNd4XZ)e3w2E
z6kUMp#cX*)=-2}z?H?ff0})k^5qI-JGz(5vK={Ixt0kWLH=U<cn*ui1SjdoKd3dy>
z82#;a=MeQ>F3MFcK-(fQ;@Cw+txQF$t}pLylUvT?N!rgm(B)qZ8cwDhH%ZR|J#_!*
z!WD~&$Wn08W~0XdH}_dt!X!9`nj6}yJK%%Vwx3^rnQQd>wz_apMd>@#>mbFzDMW5U
zn$R*Gd;F?Xa2+{9f|R;jIm?gno5*XaGR?2660^I~(&m{W4T|9B=0K0Og(9<^Ato00
z;1Kwu(3u$J<>wDAZA6KWVk*x<mc3YN*JpN+mmM*#oOdpj_{41V$oR~nHN>;KlO;Gu
zE__~6KUGbKkR>lF;6pF8_xN$iAW-j?z+YgN4Py=p+)q^A7r^LbZ@iq9ndshfNr0%D
z4hz9z;9dzv#sFwmYY8#m%+D&D`$xPFDpe_57bd9|k#P2ogZh?^57b?fzz%Gt1=?iO
zngW2x`*M{|K0P@9(zlAde32arS=*BYQONL;fG9A=Mkf{j)B>4r*`T9Q4ub30y8CS3
znLJN(S^a#)RwT&j9Mi4lar-%x>o0d_2X;oc4w(w(wk**8v`m(zFBA9+J407=d1Om5
zZpsp+|7Q_mVWy`A0VuJg;2nG+ea`DOpdK)f+k9^F1KX$)j+mk`CW76?$%w1HH$S%1
z^F!x5nDhKw`kf>OBfSqYGZd=vx;CjFe@N}i!QK+7yYBSi7?ay4-@eV&6=_@hY0~{|
z`r@;;gc}=uadS71`#HOHVt<zk2#meK_y091C$9;*HPMFRHt>hpe!FyEtiklbXl~9V
zXJ?rAda;eofeOchU|QP6Sv#ux_`{Eiq)Z^c(?VDy5r<w^IdEp8KGmQQHrO7&`;G1{
z2TU>dv$~tX26Vg?f}92IuJ;8YccumBIoN+vsCLiM$#0KFXDMKZ)BImTmBi}tO9%Ai
z%55b*E?E0N;+pp^&KXx|De&aQnb=10+p>S^_(ZmL_cyea**4LNrrz(h?Z@1W-HTX3
z5l@NJm)E>j$p5H1e_57H#hze=;`aAm|JP)}l<?saAZJ9hQmx0VX_aukbZ=W>wN1_>
z%UCwSdiCMoD<@#m&J?I-QJj@6l0cwsT>`3__$@4c;b8ez_$|eL;)u^qKgXa$SLM_(
z3%o|x{xJu+S7-0#=3Nk<mZJ)G!+rt{p~VwPx%w;43EClRm_hMcnzRtf`rG{sLv26n
zHqWp54>v@bPiam?#DDmhX^_ydyh+*;z*sZI%7BW6ALE=GxP~mr;p#`^H_R$#on{dy
z<|CO3vF%{vLrpDDd>mJJa`o{xctLmIu>72S?%06R7+6U0>$JcPE8v4o?Jr!>^ZD)j
zGVotC+Cukwmol$O)XzJr*7I137odi`Kl=;o1S38kLLmD7Fadu@`SZ<Ps1)sW0KZNl
zLSsvJ4a2))PR~OTk`JSX;UFqGP!!h5=S)a84gY50_F*j6mIAtx-piF9GIMQo5EOKc
z=q$6^i)_*mKF4D&HqRisaxj)v0Z1|R>WY=7v(=Y<R9!0@zrz2vIm2$YJ^5*Ud9kMy
zU=X#=3qm<+XN#1p>;T2DN~KOdarGH0VjA(kQz7@)?>-a5V~1{?kRMm+nnVs}le7MQ
zA%r0Rao6gsKE<wqMTiZ@-k@bWi_Jjn`Sosq+>d2p^;p;4y|w-6!S4R#^=x+E14Bmw
z-<6|!%us0aq1Y#+aT>k)C61`PYE?K?lUlB$gHsWkFQVE;*hhpOL<Pdz9`<+HM6_N^
zFIzw8<H~o|-A`yv1uiI^2&Y%`w~V_4?{0-ok3|`%uKxft*!v|xCtnq9=<9h?W?AOl
z<CCMGYapy4j^{_Wc*C%rqB2@?&w?sjTrE60JK`<@wis(C7pD@S0|<N%QK)=O1fR(F
zC$zcyb;JKg^A&GFb9!A*PjN52MB!hZeHf!@c48y?@c{{hv(NT<sfy7L4&VnQFx{MO
z{@L!GYI3TV;GY-WUoS+RV1cs31Pe&hAtc#OPY*dpLB>ueIa)k^$W<Az6wXZW1QvaD
zor-#R_z>pl;6r~LI`v-KV+DChH%q+Eu%=mWgJUF@20|Lb$&F^E1{93P)>zA52K#Qr
zWxM1s>EL{Lv&+T<|6GXX@6FDb+4DuSN#QMrM<u3^qP99ckHjao_6~ssC+D`CA#%C{
zRmQu6y%wuELR^(v<`^p{73s3tQ<(kHB3FjxT7R{DH&^mRx<x{+8cpd6l{)Jma&z!R
zd=d=%@!elAr-82wgZ6j_CdzU}`;vkI-R~Ejm?(C@bW<I?mm52NlPn=4zD;l`g)Yi4
zd|tXl;Ka~RpH7&gMxU#d7E8&fi<@hW;$_wc-zavM$Ye=V<NyuZWW28DPgEY48&MR&
ziJ-H2Cg1P)vW6+5F_&W|Mfya@!hi>F`57?+EwTDaf%d&Doeg?>koph~@z3U_7!GPH
z*<1%FcZ<0k>Cd4*WQ>6A=^w_CrHOs%mzJ>aKh|NYHk_Y4*nib0B<^1zRA#$cckfsY
zC9N4}#oDdBT0T1nCFRH6M?zzo$2H6<Er9WZ3Tm(C0X0&8e8OwZjhZY0J+`6?%!Qtc
z@i>&?wG_5fnix_lBQ`qsKEf(j@=41`PdKq^n$q=c2NES_2f5>8V44MzWC6*>F)1(!
zw$JJdZh6BsYM%0Axdk3{Q9Fc8dd0hEA&Ai1MxEQ1IuflU1vDeULoqK>?yb8wW1BT$
zap3%#3tlzZWd33AQQ>{*+X_RhB(W5W?JT|8O4Yf4gd+1bHs4TsRD_FoO^|r9TY!iF
z{52Z-ONh<Kmp9w;u{^M8W9s}7aA#q&b@}s40Qc_{y7l1&ZBLb%*cKFz@fd@lWa1gL
ze_7?Xb1hVpY=vC(NmsZSRF2L&c|)<?>veYI>_mj_%=Z?$KoH#ghdE##!lb>_6-ByT
za`6vi1t&1$4NRDJVmC1S>V`Z9$}yj}*Vd<%^v8<CvHvt`OI8gNsoVW^iUmcImvmj%
zHg{Kp%OYK-JR|`y5LAG2jK0majo?D7vT<bO2td!TmB`i&;_hwER$!ptGe%t(*rbU~
zqdnZxo%W;5L>r76o2(WBT~Sww+jAC3vBDUxyedQl9u)z*d>>fiA%gd71@z9O=tq*q
z&kExHoF`XEU-7hRJh}e%(LPGGo!555*E@|<E=%Kz3=-rdWy6Lq?9A1UgNe;zRPuen
z(l+rR2vFi;RQzW|ZU;sy9;rBh;?FCqg{sw#Fo^OwEa4?&nQbzvid5wM&9-L3S%O7B
zby_vsb31%njduKq)#aYkMmAaVHO27!u3GEP6FzUT&Is~;A-g_Xb7rm!k=J|5@-l5L
z$?VP#(r&$IoP3EhQhU6Qd?HO?N<ZJosI@56nku-4wp4DHnA-BjbZe`&oC$`=|F7{m
zXi#FfDwLislu9l|e1C_9-vbIkp3KYdH)PDs+CY>+%4Ct>U1Tz0?SvF4K$0SK84cky
zLtK?q$@RMYOdbz(vfsp7^3&w84ML=Q*X=Ha4t=n8aFD)Og@xv9MF((H*wBD$C5cPB
z6J|*Plx1Sl-ZlYY*%SKJA!ay|MKye<+Xf{<A2tNEi2IDIj2uqK5ulV?o^^-oicm#>
z$iuZxv7Y^c@(pfs!Bnk9j%62$b<ombxV{W`PX8Ly%8$#BvOzd9{~of#ngC(CruN-b
zks){i$yC}xrIh~W{QBF`x4Vx^n@-Gm{${-e1EfePAi2F36Y<&!1K<oRPJ2fjz22ZA
z);I}0rZP_lz1L^%Qu2abmSXtpsf&eLBCzI<06{M{q??t;XtxO<+TUGIDfkpEy}w&f
z7P(xzpKOolmcA8aCDp{?>y!WNiSBfhc`OXDQEl~|WAmyRcq(4Ae4-AyplJ$R)&&iy
z52Y1gAB}c<t2>D17}`=ytg)Ze{VEuMT4F*c0ZpNHAbiLjm%PMr&lKc(h#=;HMAtL8
zVPS11b#{2Py*<>jm<ckwRuO6#0Pmk#$R9n3sD{^=NZ++#GkQai7mC{W%$97kMmQy7
zKCNF0uc(zWDy1}<V#vdw{4t17ST8QaT^qxmsp8=ZPGdL+%f&(+aIyZKw-N(d-N-u<
zsbJG;$BjZSl7gaF8$GorCp8tHgPH`g!;R@14y5dZ7rXo0KNmsYuXjgR@!{8F=5QlS
znzPYB-lozuC~w)i!3Ucdx0TsJKMtgc29GK3mAi8k#BW8o7T=qN(GhtJo`;h)T@h4E
z;lkNNr7Re=zRD26b2M!~J7s4NPNEWN723QQzYD`b%_6La*!|$gFsmf05IzOIxshrz
zRDy9Y>?tQ+rWNI)&F=$=H>0NZAeL<&bmRn1UnKM_mMX-UncUt;sR;xcDsF2!?tmtq
z(gl`=Ww+}{)%ZC}H+9+SOPH2vYLFG&puAWK25lVA|8q3?nhp%~M%TSMJb1Og$%FZp
zf<+F6Jf+(?&zIvSsutA#e2!T7Cwgru?WJW#sq)n+UW!|#_dy(ba`y)CcgP}&2E8hS
zN*=)GKMp(}T4g`%=2&@nd~|_~E-u$MPdCdKPceEhntOeHS0eA0X0ZIH7-Ti6^!lo#
z)pHR_!OWP$+{eP#0B@5(T`rX8rHHDSP%O1HCKQ3Q=SKU<l&jpM<ai&=I7bYweLlgb
z$zDn-&ZYlMr5fwHbos?2NzTwr!evY2^d3GygA+Gs6%3<%CI#_9X*K1gFyI>|+_f%v
zfP>E`i!f549)*WYe3S{iFQ6P-u9V1IWHn2xj^Gd)!%Xa_Iz`0pe-?>}gui$h1CXt`
zCN*Fl{4o1kZc#!e?e#|)P(#QO0)_SP6M%kYY4ug*bA-EFoV26SBU3f&*?(C&-$tp0
zg}0I9kASJwb{Hl*VbGJ9bqnkvX&XMBY0~l2I#b<HDr;$xCt`JJxudE}=aYF5OzsTG
zJv;25EGBdL&wTh>&UrqpBBk$=d}Z&*BRU}TJ}s40@}*Y+ma53XDFno9>pi%(ANO%l
z><mE?itSmFI}2Ux_XGrjH6$8_0~ryR6-^<9s84>h@XgWuBaHCu;`oC-d31uc{PfY%
z(<kL;k8vzClPg&%U4e`!Yee?qF-hImdmniJM-E*DK%3lDgnjZNL}7)5|I)<ez7jV(
z^zYbw)nO|>54e7Q&L6uZFb4sf>biRLyq+p9Id)j%7C}c}?TlSca6P%>5{p@F{Esh1
zDv5h>l5XF6=N8hhRD!N?4(`5)y-HvWf?L~Z$SNln(tXOje&#qGr6<zlHES4mlr<D_
zF4BWy&`2KiXzFJ3GjC3p9H=b7-xN=sT<|?7+YdG$Oxg7s$y<;Dq}5n8DUB(w!%kWr
zFH-zfk+DqTcOoa7cW2sug%cU`U5uik$T6Ctx2scMx1|y#Ven7i^Fh=8WPko{?u6I$
zl_6V+*#@rAimMoac5uzH?C1O!>1!>HdpEzkt!<*15OK_t3UmAUv-tJp`Q7L9=!>I4
zbEZ(7EzPr3BJjBOB~!z-_zsxl{N_c`o9@6Yo_P^P;HvCPT?!rJw|7j_3(6r;WV-mH
zFh>4XO6ar$o!oih$TXV|<zW~@a^f}~Y(H4PeVdjg`>lpao%O+fFSeM%k0pU(y--CZ
zHxuyW!*z-8#9d?*Hy8K1@d0?JdwXpq@>-xv7V>A7>9rMn|LJY`f0m7OkgVm+7znTC
zZ+)mn2#`K9FahTKgfqklQkfP@rm{kOl3lF{ZIBQ0TgDdS4<~Bx<TItTyzWEX1enss
z&dzSg8Y|O?>9YS-&1#Mqg*X<4E&)e^hzKqBFX4#%;Hlz_!L-tJuP#GE$NaC=#H-7C
zcONs*W{FqAP-Fom%jcEO54Tj8;IR<*^nI`!u6LBmW$adC4?Fb5gVP7MNDOh*_Ravz
zli$<t)Ztg$!|u)tL7e#Uny8%4;3-*(l6+EyBzn5g&lIWchhk}=a4nk7gZwO64$9W`
z&aY~oFx-SW-hx#bc&G&@6V;1O&nF+8!ppJLT@+G=^lMTW?(N!S={57HYqYNH7i`pQ
zCIbKVdW%oCp!YM~s6E-Z=O-}A*yYXUsHZOw1hC<w@_RR86D5l1N6(U!R|Hg{k}tR;
zzKn+jlLL3fHEjSNVnt$E`v*%Yo%o&ijY9YI@4v&4GtELU9|E0hs831kMP+}SAAR6u
zLinR;a07!zhYUwEkgq_vZ+F)!H#1mImI#Lwuqp8VuW6MC1h$n%%hB@_3O_$-f&0F9
z$zk{pDKY;D_oT7nbO!mnPQ;VCrWo>*$Dxu8E?Ks|uR}C|8{dALCtP0oVHcidySciU
zNrrgGSun3XZ?qF-5E2pFG}BE66Fal+Iy52r^@oq0z2_ok-(PJ2f@2#Y<EKups)HpI
zI9Q847NJUm8r(KvV3yUxrTa|&F*;ESvThueT{0?1S&Hf!?2TK#G)z&?C<IUE>*Oj7
z&q~c}uO1YEoipZ*A$}YSg)rw+4gN}c<>h&Agpyp=r;~lW-xj24uoIA*v3wxJQ-x_B
z660+xjE>8zyNk;b0*5x2use-NKMbJ+@m;6;wVFSZ6#$Z+KdPJ*%K;iE|91E2Oze9!
zK~kFQ01YE?%4x(@Nb{9%v<gr?jet?2QV~Apa0$(kG$A`4++MxCEbv{c3I(Gh%ie6z
zD}4S-bU80RKef9qvO%Gz#yi_Ra1xKev8?zA6c;;~#pAb8NB_5rLWeFneY2Yr8tiVV
zFl*h7=nVOL+2&=BRVl*B0B@|ZNf`F1kSUvgKh;g)6xMDr43tMfkFmI81Vy;45#Dy;
zsHJ9eXM2cf6}E)BbA*Z97L3$0ReN+Yx+*-y0Gi3Qn`05uEK?C=uGmyuiT>^>c}j&Q
zSj^{T=OlU@DOBR9rEx@4h~eRhV4Q?teI!pYWVYelCXKh`k*^;154FrOLE+7hyFj80
zj|PlccAfYRm^j<J0-M$kud!Rt1FX>>B2k|CKmT&a>z$&(dXcIrTRt;93izW)BJDX2
z4YMIyg`YWUl%^?Dql8vXPOx*(_07g!1%HQ&Bysg(A(a!=t{k61TjB(S*4>SV#T_#o
zLd7*o-I>8E*%yfzD#IlNcX;y6;`bLui%A5c6^pBpu*Ie-?K+?U4QrKO0JEahuCuMF
zaIk#~A~HGJ#VYES4te{GIrFHmps5K#L4Gtlu$G1?2^~B0L^aqUZPPGW$K*^ALt{%P
zUv!jyZ{in(O)hW<OFX00i`)EjfBnxlvjgnLR&<A%N1YwaBgD~tZuEm*D08^(=v-Br
zUZZ}hj9JZj|2~+1I8)l6ag}{4K8{epBbShLH`K4-P_bxCNJLbjDAzr8T~2miJ-_F_
zI-2V2;L|fS>x#29?AuKxeq7l<B)&x5Nr=D6+6tqF={QP>vq`DJFR`=UQNJO_X;{bw
zVKQ8x7Gcqcl_K7^qW7I%pT?Nytyf`!&KtYesiGRMZU#M;OV2;eNv{e-Y$esnm?PUt
zq3r%BQLsFU-F)Horj=6=3xZv!)XiMo6MW{okD9|`G?c)TJT`FPmH=?$P0s9-lO$o@
zaD2vS<K*nYdJ)xW4b$dhQ*^66I=3l;5Qn`~l{jocpx8iTB^I;<0{h`Q!g3iL5L%``
zvwMrYT1*#~6aqZa$*49y7a5n-iH2+URUrR<H5!SROgFP=_Ac2oORJMme#<ssq!7s(
zvLyygX5l3DQ3EtYWC6#fyD%+M^QM{VU4SN8@RvA)$DJ2ITiN0!^o^`oa1K#tZHU51
zuHIs@1iey<HHy2Gf9kIIAX<cfDBanY`Pn)fsE>&m&%>DAYGE~I<@P;pwsSN<4q@tR
zS4-)XMwGG#s)x~st?P+b8_?Tv1CNqjRSE)|wP4Vbz0E!V{2*4yPQh(n*>+dOJmWYj
zJ5ee|lqgf#3xbnzU1XQ5EME@b-v^nLm8bvP;D3ugaoV6;JvFQzC2^r-mQcCNAhThb
zL_E}BoNQibDmB|5RghS45d?clBr2<yt)_IZ4NmUS(p`6?9Asd1%t>i(46|{RB_FFv
zv`CZ~Jw+I{TlVcOsZTXG=<PTC??7w$x=)zR8T*Gk_Ve7nu+7_<4yS`N|8oA8m@a!h
zj0C#wGfM0NT*c-{|Ew45ucQie$96R8hDq+mLt)x<)fJ;=@AM8fM%Qhha99Q2#bBc>
z)ZSwNOoL)9$UK7xsrQ^!e{vL9>03&_m&<99#$Q?596V2a2}GfdgVOV45PosgA6MJp
z&HS@m=k(ycS8c`>+>wogB_<t5zAkhj4VTh)(k%N7qa=itmNVMz_k+V>Q>N<AZ)h#c
zw*4)P=d^ZLvXGz3Y<KM=+ns$o2UXove7oPD^TDj2UZwh6gkyUw#zT;bV6g2Iup49B
z=}y__rBFx`{drW?_fk~HmxW7-hGH9hXFQPD=|(S<N!AWN<PSt!Hzxs&xQ9!BxMFg+
zHC+wF@6t4asZrg{joB<8K*K;PP)Q9@nqKm8kXuCvE<?wP5>61K8oN#C25j@qHBMoq
zSN)VW0l4!O&MKypGbe`e&OGYg6hQf$@a5>;+%g^bioqzs#wtZmO7*G9^8W60bp_Pf
zEqxBQTdr&?J+RJCo#qD+19lmCSC^;UL!UCxRtGwpOVuTHQ)04*m=&8u?7K4J>{ZG+
zhS2M|%+;1)_E@}ea=5xsrf_Q|mp+bBGf~NwTCGfzZ-Y|j`)+^A+vwhHAoTA?n^5B)
z=vwR6r5sZ*)of0!I&#MC7QaxFi9L}z6rc@_E7-r~b8~6>3frIpl%*RN$u4LY!Tl)-
zXoga|xGR%FE8d$F!Em}E25;d!I6Pt}2{>0o!K2wF;Hfpjh#&R+<PG%}gbAPU_;7l>
zIx(NDd(~;>a`fnE32>_>0Ge2_CWRr=$S2ZINa`VuwVX<d26UVkD{ZkL%@ja<{i9-y
zWrQ?k8ctMS<FO(FAzEHvC%yN&!6A(goAOe^{Wp)2CfK1*c@RpB{YbKpPxvW}Rj;0X
zpF}oYW|0alXe-02a~XYlRH|-@Z&68AZ~h~|N~IFjc(EitkV|a(Pg&FA69iWul4G87
z0Kp9#XmNrapYV8+JhN7!Y_LA8-xr(exqM0Ky&kRY2!IN@;s+`$ot=M}ADyWI@`dF;
zHZQdk0o(sC%&vrwm2G{k3CZegi)fw)B*>0K!{rbls3oBSU&!I)TxLs#rD+|yf!=02
zI)Gv6b$Vc!D;Z$7;VNL+0yS6Wp5=?BQ(ITUI>}r_z^jhs$O7maanXgV<8l&OBHRO>
zWSfr1dM?1DzMXx#y;<7tl2ct!OSOEaBVSnQ<#D=N_~=sl$Z#@CMejyq*HB)J+{=nV
z3~||zvIcliQi*@!PtM<05tf#1gj>}8UvWh<OjTw*<sh+`c9s|#LqJc|Giv5$XBWe=
z6fM7oDd@9vH92|kDuTrPQ`1}GfIVlK*>@eX*PIKLD#k6d+_6(f>kL#cp>e5(y7PN9
zD1ud@gcP%#mAwTM00Nt&v^6sl<h^)<cT$X~)Uxs-25On@!;%jt0FD|5p}5jnEjF67
zo+<**pEvetEqEr}$AOt09%LH6q!y|isNn4hho*VbC_A#f4T4SXp4Bb$7?OhDd9S|s
zKZhdf#b+v<(|?x9iA;Ju=fMRC+2aF%I)qFc6`@Ir1&u^M6`QN?#@N2gQy?KJTzJ#t
z+GJ!-*3sLe=<mM0kaY7z1+b4kQnxnK4|!<n#?k1<7k^Fsu)xj`l*}k3*J`hBmTfB{
zz(ks~CbPf7dO}n6(X##7ir4%W4#QO7K6K0xs4CO;Tu+4pH~?vD;75%Yf-$MuQ025s
zq(g7ty^~2cS=-xaF%jDE&F=m>=`VTpX7c*-+eL|Ut2TkEKpfx4cWF<8Iv@)J()Fxm
z_bX7O6q8XH)h&=E!SgjiCgwB+9>(d+7wpZKYjB*})!gQ%O{INHOAG8*e~nbMx*?f(
zwzYdWRYquG!#+zA+~%rQX3ckOtEjjot#IqC#)BDM;v9~xa)?M4L>1MVf2zB$2(bD2
zVmzDRfcTc83bU^Y7+kb83W-zU$FW`Pf~u%OV-%fI<^R7(G~8X+Kx}`hC1B>g3b_wO
z?4_RC3l#``rPv>%iW5Drh?t})U30WIC>k#{+>%5Vd7IrF82><!zh)IKmtvbS3~I7a
z*RkIv%{@<R&$a!1Ws$eG)Y%Fts#LxqFK9&IEsVORa-1bxohh@=E!Xzh@v)7RpyYUN
zhch&YF^v;2+NR5HZg*g!FDzPkWj67-VD7wow262!8K>y2A({n97a=Q3WmrF?(m~|+
zC%(3vWkJ(l?CIoxZ)8mte$h502W=p_lAdhO;;C1&!Tj|tl8w)-$pvU+{!?sMu*X90
zfW>#D2ulV~;Js*;*eY2;w7RF0KbQvR`C^c7b$2S(!6rGB+9wEeQ;;FQVdGOsKYSX4
z&9r=)zc1{)Ie`3teksup$OTFM=4@VR6iL<A$)x(09}`g7vOB(ta*VV(x{%GYGu;%n
zsXHcb98PKc-Yc?vMol&W5ZIxQy`1&?#~_ItuM|5dP|x=<pae_sW|Hr$I?=svV_6WR
ztH|N@E-4b?-|zFU;EPp!om+9y&GWNQN8fG(pU{^9UavmU8dfuHm5H-@>?Dt*FhTnC
zqzE%LwMZKEoH$a`*<Q@M<@IK8sH)5!XrZAj&$#-n|1Q%xHGjNVSyzR92CLz>v?1xo
zuIJD4qK_3pGFX5B)9e7_9Em8FLVG5~_=phXpkE8eXQ)w5a+#TRgPRVOXdwtBtD6xs
z&V8}}O6uQDK&s|Ml~URy;xITt1KLFIg!4;7EW<o%4S^KhLgU0d%8Yuy1z^S$)JSM`
zjSV$)5>5lHnPV1+^SaKA<Ub}M=+<qAz8HL<#4)FD1$5c>g{*u&+)D?+Oyb#Bli3yx
z7Z&xuy<@3hRYD6*bhAx)A`O3FFqE|2`o^J*LfPcFqdqDqn-=Sp+Ma{Dm}n2oi#Ee(
zfTsM^@ZG;joDCa@R(~FimUORCm*vd^#mFj+*9goP-<vW0gara5=(yU}R%;sQPUOkv
z^k9E&$E4-1s#S3_U+ryfZY*%+RgQSnJs(N5Z-L9+yNK7+6qu}Rq)$D@!JDg_@~M(k
zrW|iiB*q3`X3ql(ZjbNKRihr_@Sp+Uw;rV6wI^GTl&8r1tX-uhYVnQA7b-FE5A&jD
zAFnRg=cV|XR+_fM%eNX37E0IRENq=8dlI)?pr?8=kuF&hDQ9(2QX#;$9qFoN(`4!z
zBdMS<?!pX|sr^5>5X(Yt3`y5{EbF(zaot+}ZwoV^^hvb;|Mk-tX+-V6Urm3WE8J8@
zEWsyJyYy!5V5-nr|I{p+!Bg=SlO^-E5bBsSK>Y2gOrwLBtL5iGS6?_Rpzgxu`!yBP
z?t9tl+&r25TgtKrv<VeWrQoxnX8OvI#wQ>U9FVL;ad$U8Q5L<5w+W#5RR$}7$^?<P
zeGyeuKNGY}4VdtFMDn_(afU4TE+}L8X@Zn*QYd?OYvx|)U<rNf+&WZ(e)Zf^i=Z|Q
zJ1=gpD$?4w?vqE)*s8NV6~MRo6r&I>2SNJ1du=c^-oXSD@d-wK@}d3N;bN}_2%CDT
z;kHBp;(=0VH8@p!Z5dg76g<UVwg_;UB;9a6#V-RtvehtpZu&t(Tez-jnd-HHJ>y7r
z&G~u3k+V{05hcbo{c=NLeJBMwguIzytm3!mZcPp@yqljTxa*+Z{?$j=MOgAl5-5q2
z)>ieYpww?_f1N4;!m*QY*!MG}<S=6(&TEZ`lr_CxRAd4zf!!|N$4+bFLS8Z>Y76W!
zmLKUtSG7trIh(v(+d{4{_s$s&Ovh2;4kdk`<nRsA6-&8Rz+Txn__N<XHGhN{?BzQ9
z%~kDRBf(+{Cswg_^45HZQOcR|VF?hKFY;j+kA#8pbma*yuUsk5l0c#3t;}%{gDPq-
zm6T>{k+1eVopVTSm$1K}jh7{P9Hp~Ax-%4;k;k+3$_Yg(2}9%t?74M&gH)H7vtunQ
zIEGmXRP5A#pB8SNbe=@#6b>2L*D4`%KuE}!y9X+!w42awS~&}fEmZ`ruJcm`g*eii
z!yM&}{enWlV9cJ0buofG_cxExyKXXjwYjo3GlG=|{<Ap;>)XK(SZ>}uFX3(vnbIro
z2k4ECjY{(PNONJ-t1jgGl*`!0hoeMKSxt=f?gZ{(*2IcJ+~r*G#)ecz6=b9jZCnJ7
zEp_;Ycuzq;pJ1sfA|%|S=j}&-xnNO47Tjy#$rutcj(szka$Hi=reR*?A-;X$xKsee
zAOaQj$CdYF%+`d+cgZskkb*mWa&=oAlfuzJrxkCh4Qt9SYnDq?kp`)mlE-NkvLhIT
zT5#@!HGiS$E*G}UO*cxxyMxySno$+`rbx8W671RyCn%QJ|NZb`xRs@m2{-6xu@1aS
z<GVPOsjaZVB@oX5pnAa@549Wn_tz9EnjLEgzkFIXy!e7MRSH=0;raZZSXiNi^cTtH
zxjL^BzP+Qsqs*1ph{bK}5?%~FTkD0I;TOl_TRox!3bBG~Se81IUUHhIhZ~Z*cUN`o
zJy_eGxz|qh=^P*i-7Fih&G9o-Z}asjv0~xgd+7a72hn-(*MI4aS=_Gls%H`ZkFQU|
zV=%8wd~MjfCI{H+i&(?`XQ|SL<V|H9%=U*B9A7efOfu+{@&kZmQt|`)oq!N`MwUTP
zIV#(HA@H#9d!%w9fn)|S(EFr%>2&mx^JSTlIifOK?zx{52$@O%3+D3C7C(t+kU@u+
zi#T^GhdgKXks64_HO}W7SE~LwOctXycqnx>i1`pPQi!5MU;>SSwEJcqhbnSs55xmQ
zau3fof#be|$-WdTHIay{1bVIOna9OY;N`(6=1G<IO7~VVUq6I0mbhu!C`xl{H<b!S
zV7{@bwD%r1950g_rJ2sR1+30ZkTsdOrYlV6<80E;#cj#UROV256jCT{xcg?R2N^xH
z_mZ9J-`jiBoj=`01L&w(^nA9{&UAfkdks14A3m9_P4_hzu9I(pk^vPGN?oCUQ{Xu}
zD^_C|s?G7pSk-3=Ri#Yb*f-#%L<b3U--|2(LTM1keCo*>8JwabDe6%$e9GhW^0FXx
zYPgYX;+k2|F;lZcxWf<_1*Fv1ledp9b#!4UcW{d+3E^gC<GbY;?0|ZU$?<=@{SQGN
zu<JKZ>hbf;H^Y#Lw^+TlSE|Wd;kuOiw)M)Ve7Lej3u!akxo=|#Eh}jMk_&fmxqd0p
zhpz4$fLebx+1W>n_eqiM;f+Ng#kCEuJ3+EyOs2cig7EQu;B%O@<D=lh@io(7MBaw`
zwcBaP9XYUYM7tFHZh<t5;mugI+v~^AelZYPhGdpy7tn`pzYl#=zs~U;Q0LLoh<^3!
z?(8I`%PqWLQj3h8*~a?z^r8lx5G^%Qw(|sGj`|TRS30MY-(StLDfc&(%G*&LS!ss-
zo$0~G?#^_pOHd>#X6wQ3D>jJa0e!$`v7+<>o0e93sSJ^Lu<kv@%iVzF#AlnfZk`VR
z9^Ib_W<@hX&pzg(lQ|aJLc>pX&HmbSOW~7Qo}3|)M!#7`?m2Kf!lZ*^eWB&=b4c7p
zEPnqlxB%;ly6Q`f$5hghZTr8HZI;9OSTt42!+DharmX!_0&>sEt`$TqR}8h`{%VDg
z{cBa0EiQJMLB*dLhwtZ*x0<tB_yEK6k*JK$slVTOt3YSXiVW*0d+mL-gq{ir2Tb@X
zJYjn7IqNFO6dC<g=M8Rm2pL1PDQ{fnH~uF&7c{-f_wnrdaajTlQ7MOrQstZahRnn~
zLv^%YBXEog`xn-cG`ua}=}GbUc^(iQ!tlO2vf8o^5zX$tQV|2$e4IEOHPD)BKDK9H
z=99XG%Z;QcCv;O`pkZba+M@#cZE$d0Ri|NSwY#_t+DgOJpIK>PHOHt_$Xh@&%d9<y
zG6**6)sa3x?V^z>mmyg#&fospK}{Tfo<^|LIFL-SpK2Y~+A9N3M0sS@5fS$NoKc~m
z<(1IwFsXeX(nQYpfe=>+%LykA>WDQ(pYH4iMONHvUmn7Y=GZT`o-C6XDru<M!-{>O
z8OB7qmyCyZPsWT=f<-IgX>(^|{iV3nuCqNEjH9OR6&o$BwLa6JZ3}VYcuVtlN-vnG
zAwpCpkzH22%T!{hr5MUCyB?2aTaSk(55OETvHN1OGTq<b-Ey*bU`j%AC2TE|&{p5r
znQg2_SMKbrtsJ;A6EUbm0b(!5-Iux;tS+#Tsb+%k+e~B4ziH1jTlPv!o42>ZRDS3k
zSfBMo`x&Pi3*?2os23Y+TdR{0Dp08>E3|P*q^3|3i{GBb4?9>}c{!Y9Qz;@L#_ple
zR1i-R1pmRW8!ln@Qt~iGhhcOc?wvnlP_0gcVSTzUIrqPkwt?!r-50^nMqBQ8X=}t<
zNfC7#oMYD~tJI*fTq!MDu?rYp#4tn|rWZd(!-~E>CGYSo&UWUf;Ge^nOguY(F#ZOk
zr<-^Y4`3VNntF`#TFzf37DdGj!;N%<uh2WLVUC6Lw6(dm&t;E@x6OA|x>{S!9i9pr
zbM@3EOWdgt>-&>^txGCLbga`u1~j%o+qS@h5H(8=tTJ>zq6|}&ZC-7*jlBXL$|Ewp
z^ty9hlp-0|?orCYA#Wsx2!+p-4a9>w%}$*~-q50RoUMl<O_P(IW@0pFvDg#bJxjT9
zp(%^9i}#H(lKvO%8_zBq0e!e%&KO|<-&3TCC2=)a+q<c#Fi4j!B9(wib@<Dq4K}C4
zt0R@rP1ZJ**z@NY4jyHXO--+RQZi(_;B7nPi4{$j4VvpH&ss`|S?L=IaofSru<7VB
zk$>?W|C|b!N^U##+&+H`ucsEDz(~qnN4P#<ru0{l(#;uIQ9`$WqE<H?vOv}g;=lE9
zZ6mcNjJ8pfXM571?^4t0JcfGyzcnYRE&0#A_O6TgHlYcfyz?^5`xc9<wRr>K2xo{j
z1WI6Al|K{HZ(z|lpRQD{%4EG@R`$w0bw?SRu)$Uwi$y!~(PN_M$B)C>`kRj(Mljuv
zmovL)mEiRb`KUn4)KyI{nI@UUDk^j*vb4{dt!)&soozy!hn;GhS%)^xzP1mUy9%AM
zb8SNQ7YA@$Mt0XjH+bd++n-NjxiXQTlfni4+gtu4pFlkv`>T%yEckIJW)#0_nBXjc
zf6UWjB(hGUfD}qVL-1IjE7KJQDjBjoO)0UT1#gRI&o8o}XGfPeH`h7_W9{BYg_bX2
z>}8N7k&UK?#r!inD~jbuE!qVuDe{=Dea4gC60nsy&yp^{YXNoG##XJ@PsK(|IV0+E
zn5sBzarN!CZQKQ&Enp@RKv$5LE&?CN@1xAUJ9{WaQ#!fg{(~H}1RRUIO~`hDp$l6#
zQg@wco6S7CyEq!ea2`?X!F<L{@uCJ<t`@(kAw0Jm?ps1L|DgCq$UUUumQKss#aZS~
z-m<;Bt7B{&v$l2mn1&M>CZ7)DJF~6sORTT$sGuNlFgU$b{{gP+!P?}f1K%c21?_W=
z{s3(crSN?O@7nx&Ca{>{jOQ*!7Y~8N(9p8x90~8<;lLUAU@tWdIxu?uNDu))5guMi
zR@&eR*0l!DTc`p!T>TT~T&r}m1%jTH$CZZHzsGeDqm2AmzWl2n7n}wgK|+nwG9|RI
ziul~boTL_dc-RjKCSrMS?5}U^s0{adZ8`B5H6IT))~J;_6r0Y${Nu=ijc1#oS?*Go
zfeo~~y;F~J|Cu}6BdZ(xjH$!nLsd>uNI*gCBJ)GX{^b^YPL4oKc*NX(U+Mf%mGwE(
z|7;vFKubB&?>-dO5n_QvSr!&XntS3P`o{p576jB3a8<m<AY~RRn~#rBkqP#Y3Yteb
z6MP(jrRnEOX$@WE_K60P*b?1!*qa}n#pKz$DWQ&12eV+|?t&c_e^WDt#>BMI2gkto
zGR-_?_#{{)zvyP7KNoMSBHipYR^#TWRAg^jC`L`nx61~ygz9KdCLd5rKHT1~iz5<{
zbeehLRCTmt^kQ1_mP~v}A{5fijS4?xdaFm?*hCYjxLh&aD{rP+McxV__U8$6JKGlI
zO<V6@&T~+oCxnC#T4MC`U<1D;2X^)B?(8o(e=w1lTM1A2jvr0dPp>(3eL}}+84lC^
z^OyDT)0D0@$CH&i;b_W&uS7o1OT{Y-AP|uSz}g9><Zu)=sNV_UGErWnWF_OMSzJwm
zpjL>UtgrHgUQTxqizba$H0$`k0dvfwSh>MP<KJA=f~E1_b39)Xq|#Wi=olir+A`Gm
z<8;Q#!d`M<im<DZgSzTT+7R)*WjQ*<KdAida>lf4qiC^u?Z@RAg_J8z(!#{*VCL+s
zqIE5v48O_?6pVXe*goc9fwj{1(7RXZ`{3vEwiQE?HzON6m{y!QsH{3RNheIz@E9{E
z7w?a612T3NUhXJ4VIsUtd}jBm1`OUSvLS<4nvIb&)A;2>igAs0!~#&y!nHFGA$`Ta
zUX;PvyJZf@4J)?&=l<H>tL3eYmC2Uw$JMkaqye#-5vZ-0cUlnPWlqZPOH})CcXj$A
z*y$83wLje=9{0GA?N+@e#X`x47O)q^wfDRYetn#b#ZG=&VZ5K112(6!Rw6~{#Dz%_
z*Kl0K?6{}y0O5me9-dsi9RYG4U6U^55hUcVlb3&z*gLzcvQiKJBrNJQV0GFG`=2H%
zlGp@bqjRrJ^7hg3a=1j{MAT&TS}I{dW|kqSr8d07zt2wZElb-J3tLRHDS(i@j$K3|
zc)iIRk&X9XPn@e(_BE35Ntc37XOJI>&MF5<d7W!tdJ`AT@Szd26g#PEr{iL!9RtTV
zMnUGl6Pww13Yr{5Mwh`i(A{#@)g%5=YdD$L|8Ktto0{-0xA`AFBtH>-Dj=pX|KVDO
zssK5MTk62Y`}b$r3~z6>&kj@c<_rIQ+yRO6K!!KxH>aPNp||5~MRe$i0IneBX0NuD
zU7Kv$rkk@34_n=hWxCDK*(@<j`Ty)ih|BFY+I)?s%Kr*tPy%TByTp+DeQjsw&!q~u
z7E+7HhfHy>w!5`4TbfN@d1^l6LcTt;y$A4fsg^4$ooKsKT^hgbKf^^oIQXOFUfuTO
zl<W3eH)URMy;qi66tw@!M%vkWG(5th?UJ$YPnP-xyzIM6z{3AS+M71Du`TPmf2AUJ
z#9GV<gH3DuembQFA){`p0W-f9AcKrRYzf)Mzy3ULj;2NldF_4gjX2GkMk<XOBS$uG
zzL}}QvVi-<r;-(h-~ak;w)=Kr{sC+;pTGsNkGR%Gstpi9D?EpnCN{3M8~f$IaDzv{
z1>-@};5ib6A`B=k>>o^w6n}KWU>h2J$g;8B$`p^<-9hKd<4n6&E%>Uvao9&#8?6x+
z%bRIPHplIPZA9Y>IzbprmG73yO(%o`ZT?vB4q@BC7!<C+K<xHw?T+M-tA&xysq@G4
zuj;@7aIG^t#9LODC;%6;4#kVW^E2N@uW6*4k21t+qWt4sHeSL1g_w;x*9e3$_Mg5%
z0wmvYbJ2ScFz?*gLEgatvupg-u~2CUgP=!*JxkmLV7afff`o}pAr*6sMW@z1r%nV(
zJ^1wgl+>`|>7OLyM6mcRZNY_5^QQ@lu+wMw&JGbAF@YR;)~m*2j2(V~8XLo6{(_VA
zIXgbZ!d;*>7dN=Zfbq9l<spm<h99<N>iJL7CpcdDjWWnVV~=jHl{|ijdrdiz`V@P~
z;q%hm<o5?YPRw#o&DX?9f<`Q+WEcuAIPe*a4hCW9-ERu9=kNYCzDS>?d0-vT#*M>D
zV=Bs+5En+qda(;ZkoOkKJLeA<PXL!ah-mtxV^jvC`P5R7du6XK7L|WBLpqi3<qz-!
zWLcod-CG~vRN-PduiAVDAp*th6pJ#Zi$Cg2QMLo`qiu7C4=AnzwWRE<(19Og+I*`$
zT;+&)%TRh}N2P|OjS9g^@v(8pRBBQ2&j_5aAQz7N9(c|g&5LHIKd}5~y)WJC>?V*G
z?kvs0o8}R4NtESfLHfDR8J%d?MBZL)<6}7|=FMl7ox3VXXSxO2hS97VlLpcRnce&|
zF>>p0znxEowO7;0RY8*^@80|3v-;v)bZ(exf?`8V3KcQiV=%L+BU8H4vLkq0|I1J7
z&7q-<4Tw!2SoH~*kxZ$At8~e79C%W{bkLRSM6MH0Up}^T^@Emh87c3FTP6&Ff{Ki}
zetEU<M&BlA#XcIC&WLF+j?&Y?<Z0^+Q-vL?b|-~6M&&1T%|UJ$Sa$gSD4Q1)hX8b5
zuV*fqR@~Ch900-Tm>;wkdt6ZAI5$`0SPg!X!`e7Zx?K?v5~Q=wrJ#ARL-@S4+|mm`
z+ab6bW08@x(Znn=;85F)F@H3=2vIIsV%(k%3&IufUv#m_XfnLY2NOI_IKb_}khEq`
z-$wW_$me;hf5mLToNPWTxzVm6RHVUV)!7r!P?vl*fEf=DfJDbJo_v{{A@Uvj=BU}l
z6z~WXk^glZ)q<`O+*4@cn&`v-a%mO!0o9<5v&NTvIO*~)WbV-0WBXZiCfG8DR*-)8
zV_?||j9{a<TkCeZT+|3#0kI2%;>Fs(0f|jWJOU?#*n6GDlUx+duYDvJ4qV0L79eB=
z7ZpMuAE4HkXr#1+^1eW#!5&5<^s{Q%c&<;6TWqd(Ad`|!CJJAi4k_=AR!>0G{5ozB
zJ;caV|IE*rDLgpT?{d4y^^FI5NY6#X&=?tKj}MHif?lVAAsfWounOUIs~aR+Uj>W=
zqiNKD4#hxrI)EZTsQLt<z1cHl5rk`|&f3bHIPZ{eVwi=Y^t+>apZ`3f{8!!}aqR?I
zk>*k>WGm6tr$N?;2>m>9UCTAV6ux;0-=|w+>eUAjpO7qResEn*4rXe3B0LqhX#3wN
zjz@tucK3H%@7UQn=by0hKEBVt*s@4|$7HM)L*R@MPXTdMZtSTbHg-ZNnkYW;+EYYi
zqd#EQLv`HG1r^9HM?1$#gC9dvQ2kJ&7X(W?ZQ4e8oNOO$gk_&wHk2d6mtl1%6Ubvk
zABZ&Gi&^FH&&Sz5zCgFQ`EO{_q?Fm6snHwkOLCBl`FfQ?Dp7v)2|RcBY6cKQi8Q%a
zYCtdHiS@?Z_5%z}KuA|2!Kk2XmwDu2N;Z%*r3%LK_WTbPNjVJ&y_eB<unle`iG+>b
zRYHh0!b?h?^ft7SdxfH-*)M}7^i<rlW~*1H>F92f%800}sdk&xiX@^q1@an@0)u&_
z7BaY%h@;yt7@h?DkJ=-HdEyx+!ld5>e;5tBC>?6A_$J05Z_f{BR+~`9pSWvaSsaiS
zZn4|fY^VMnD)m?6W}sAGZVkTWE#0kPo+lQZ`9tV4z&Y)ZT8o^{XU~c?S-ynJA#MH^
zN`2s|T?jvwO3mRYG3nqOlXI=MO4R*4@th+%J+b>adHPHqUN#^Za0=dl-{*le@IeeB
z-AKredTpnN(><awrai1x(33f6kafnbarX`{;A3`h0!Qz3E*1ee=zEw<coO?ZQY%s_
z&Z@Bn6Degzrccb;yi4nWzgwPwY&8(Eml;`D-b*ca0MU87Ekjnq^`N#|QH<~PktjiH
zfptlxQ{1^Uq-0annnh799^?awY0qbIa4e=sTMFoaj*1W1w55aul((oA{B-4Bl3G}Y
z>QSXYAmaBD6j3!{kE&P>jq;Iiyy}zP!`*#a<Gnw4&q!j8RC&6ls0&4Sw}yo5G%%-3
zDTZ^p#csl@AlTqygo%bEO$qx6wf^yvfkR6*Q@8lFz)bN9d$6XV>;xY`SYK{s!zMzX
zP;gpWAjGn4QB{l*9~Bf50$Sxvn)+9<hz(6kHaQ^7XRpkdrsgb~Mw2EYJT>@PR+XUL
z1=~FY?vMcIB|8iXS#1IELorZ??~e)IaLp(fDj+c8WFg(ehW1UDHO5V%nqGJ=rA4mO
zNW@=Y`JmD|i(m8sa&d#K9cDy3=9PdZoGPTS^k;(LMo%8#51Dr!2rS<_evX`nIwi>`
zVQOdb<ZhhG5tL(j5?gN<W9M}_O%K!{07b1vAhIP%Z!P%4>p9HApBP}dToNh#DKZ~Y
z?Xt%>ll&Xfggp4bmg_+tn`+8Rbi`p%q<_C4C8K~c>@G;C58q3KO@;^J9~n>baAp9_
zC$J{XKVlt{e)A;LxPq1lJWQ*A4NJ*{i?A>kYF7ko%r?MZGP9w(9N7G}0P^>wdvzg!
zgaQtNz7LKLks7|Su_&;!6vRwRQySkcktx=MyquAnA+Y6#&HVVCCIf-zCk(rz+nq!P
z7C>od3ER?;BPLzQH<o>aVuRceTH2d1m6He%MW0jI#lK(%06RLCD;fh5Y!PsY7z@Uf
zn>%XcT{O4c9QpR#k9~+2t-;rD`FuV_E)Ys+msrL=rh?G&6#M*Eq;+h!Sv;5Uw4RNB
z(j7A1N8)GpF26&4@o$x>ljVoBD491Lg=wd_u2MJsqOs9Ec;w_8##wE^5INAjb`BGK
z*uDTPt2(>lF+j(LMW>lTUfp<=rEm?zna&reUC!Tet(^xQg(bcszs}WwDIkaPOFrr`
zXw%Z&_?yBP`8!AqMkF6L&azggUo&!MLpgBOid)<vF9)cw(UXd&z@TDW8G(y~a=QLb
z!?86x9%vcm`S^tsOtO`27@VBDE@|n~sp2OeT8s_=TFWz9Q7Tl*g!ZyBQt~c>S4OkJ
z%36{pmZf$D)|FQNq#3DdC?a5ldGVu5$~m}=U@Fqyu8oO17)1bOJPpPqoCH;yIC*re
zBa9_l5|q6Kb=C2+j-k4YY`Co|mXc*ipN7sORP^MLGh8-)&aR~Ii!Ie-wUg<Wm=<H5
zyHVO{QG~=(&Bm~Yv^lZUdBLkJ)y7VasQhp(Z_uLgla5AaUZ0k)6P&FSuEG4B;f%Qi
zwc8@fhqBS%I(u0=NdTmGrgIVm`OD|*0vT?+K37s2`*k`DSP!Cq6F|o+84BQ|KxRP=
z@i%23i3pnw<(J1ePu;F@F+>&~vGrvZ1pi0{%_B;)=f!<CMz>(}oH}-Rc(==>u}bQJ
z7gR1b-U)Q(`tCXeO_j5uxH%i0lO6KHftNB~Q2xid)lxxB#&4KHdG34sZwuIYJdQ_(
z8nq^_#IqI~`dlds7FKm`Js!x4pnvl_%yYJLF0Ovwl6On8m^d+kJ7bax1)(g}xWT7T
zi^_OTMhy}Iz3lwlvb9u2e$Ms}gM0aoy0U5Zb+)d0l`N6iuT>k2{KM#bieE?A1DB=q
zN^cEcJfpO^cc3@DI1i1wRD->jU5hWpwROoVeUQ|D)b4-@pMK?Pxa>XG!5E*U{%EX5
z57I{l20CX@nni|5_u-CWd`#_LhGPkZ%8h@eowpLf6zy_<3?G@j>}8F6JPO+&oW+dr
zj}LSgIMH+ja#cqs2mDz}p$_Zd!~0WCRkd90_PcCYXT(4VrkIF=0}524!5J~0L-E(#
z<3*qJq=2|hWo!x%PujT*CCfMVAV?X}%4gy7@^QI>)H{^osS~%=0x5_xViPlsIGx|&
z&(igXytZwC(`gCk!F^4$uu)fk$F#Vcz~Y~YK5R^`)bSIG>98w>$OI|4H%xV~Rt2tD
z#tT3S-GH2<E6)4S=`#?gMyCJUYW7D1WYSEB=ECs5Id9Lw<PO_Uv-!v7q2bz#)<Geq
zY-(yot(<begfz^9>f=IWZ7h6IJ)*BYPnF{VxW)xIE(0ACvR>E>hnT6C*OHJ?B!aGu
zDajG!z$N&s<Rp6r_q3P`t_=>lk2b>#e9k@v*&&?<NoPnj#!Mx+9|0JWX$vV?HEPgP
zi$`7w)g3QJHokuFO7lSElmLK2Ex@OefXBTbzXv*e^LINj1(sG1_kXMyuA<4*uid!@
z&eVqI>5H7<q5gl>L!&x;TuN@esxz=TbWI3CQs#BPaNAr`SJ5iYA?;;$c^=U-?=m5u
z=)|YG9_h#Pk(`hEnf1lL%0{3#H7oYkRe<G4=tc+dq<@qHZ@9HM#4s!V5S42gq%Owe
zQD;}}CK~OF_Q;7H&JAKsghr~zd$<X%<oz4{I`)D7%d}ZmZ>>}&`Ehb^a7tG;eG^ec
zNp%TeeA^yp6@w*Y8>D6guM&3c(ns42oEl7uCh*M0$r7lS1?biT0%;+U%nB?~{>wLR
z((I%%ugd}r<JoiGholzmM1L!g5J9^Er?Ep&+Z{rxDHg#oD|wVwZv`Z_KKv$l2+k>Z
z;W2<vTQ3%q4Y2%_@BoGah?>XBJk_x`A@-sNTxl>Ke(Z9woRh_a$BIVecNn|_m^$ii
z_(Z8xAYmeAgE6hNrMI*h*A-NE4+EU&8o|N$nG#3}@*gU2r1pK}f>(lD)@qM?*-rPb
zidV#;V+R~pvUD}{-HLlA9ZaH41Ec<Xjhg*cAt~8TQA2o`9R=HJ%gArlOhSTcmA)I;
z4c=IdF`Y~VlC^wd@WQv0v!5sj_VzHtbgQ?jRm^#Z0Za#PVs>y72CPfA!88pKR;V~G
zuGP}$iPf<2I1-8!U|IhqrNXKu%>jUD+R2pSOam6cCGt#adM0`=a~ESfb^65H*R|=2
zrqI((=k*Nes0haNwBg8NN^%}WwgMd&Vh^`(%KT`IHvDupiu|@Aj}pO(D`ZiKYmSKv
zsQ%Q55BNh=c<y~v70s-YN6)%di8J_)Fww=cJyVv}Up3Q7Y5+B#-pjdW8|BY%TGmPY
zCgBj`5c?q97LC0XMmc@y@k{Xw-(t1)D#Dg26vyR}yKYY~zS_8%*Uu<q%es^C1d|9J
zcwPzbka}!Vv)5`(!1o(%O5g|MGZM+8zSS!r0n%oJj<B_d2mBPLMChMJoYrOXj@e(g
zW{u;;#2C%q^DQ=1hp4zhM@y5EUcrMSh3I6r`kiEvpg@G6npIWaA1_5F*C;<LS+!h7
zdi0QN>8YgYjjdrD7_`%$$aU4B5NJhb#`9k}fF4F$k(t=bYxohaniqXbqgHD)&bMh_
zK=uYeM7<3J1`$O7Oiu;=5(J)L9oPbkp_G5AXila?K#;y{H|l(tesN%+quzgTa_y1O
z^NAX1l!Lyg$UHakP`?GC8viotaK1#>5scpjXP8>JvQQU53{(ev!8pY1WdzhP$K-U!
zupDf+SbhvEh?jfyVK{=+A$8to5bE+k^)QvLKC-FWQ-{z*BrT-cC1M0ziv=0Jica*R
z1}=)d?$&)f9VdU<Y5=v=BRHpwRMb0Cfhg_E;s(3OX6W&hHlkHAFI#_r%rsl<+<b{S
zE%wrck71o)Bp7p3+m!^NA|?|koaZ>u+~u3fT8qSa-_2ZgH%(tEAE(K^ZD4pD4hluD
zYPb~~cT`6BBX+LnEig}pzlSUgf3?YCcFv;_{|TT>xC41~_T)O($Av(h*$kLfE(#>E
z(k~`%Nk!!FsZO$Pe?(jZ{bb{gQqTN+kK17T<(B#prZ63c&n7jmTv0V$Sm1DCzT}tk
zzaYJy*=Kq5CuR|zwqZlUr&Qccsu~7bWW-Wo=dJ!0nCg%Y|I)%B2D_)jX0t(-T+A~3
zf<rXi$<@D6Y!ON0#Dv`CBlwr9g9^XpdnpJV`k*|QuDFBlVSNkW3R<mv6j2^jlEEAV
zytmi`(<h1()rkK%I${C*oyf9T+`+^<EtV8$|J`u`v^?7U5hj!M0lsI94!N9HDmCzy
zibuW*cF)b9{^EBPAH-;H@Lsj5q)9<`M-pqo$UPpW7yxIBfJG@n#v{4NlF#zK^oEkk
z!}F(bUUE$Fx&EhjkIggWV=4xPWKG!{oGBNu+V_F^2{&6a{)4bfx_=F?a$2JDC5^g_
zms8mxz-F%A<Dh@ZnOZQAMgbJh@OW}YB0M-K+S$4(6PGZWnM*Y#22-mdF;Ds#KY0m`
z5yDaQchm}I37OML5<^7{@>rziap11h6i|ap+1%<4<G{2Qb20O?j4qX9aE{J^Y||iz
z0~S3S%20rhA1S|aj!E<r5<vqdF_wh6#nMb`R4Sb;bDUIzkV(qZNvk<V1V_6Vsf6_F
zfGyj7E7)X7U#2fN>emKjHNz$6Z>*L*c<Yam=~&IyWHtmKIB&ywWTf<QmEsP`*<B-U
zj|CGF0I@_kGup@@bV3+I?HWxElyEaA#)Eg3$oJV1e&3>1^d>11;eA#0VL+I@1pINz
zbQSut=Y}=<^+VVV<@Vq!!?s;qdc+@-;a@4ZSUwl<RFfcMM}I(_OZ$?j#<l-@@{bGW
z&=In({40=>=6GH4KH`Nl_|IA`N?YSdhj2bIUi1GU!^t<<lniv0>QhZ;r*XwA4P`z7
z^z)M>WpHSZgM&^y=aoWs_?iDeHBz1i$m4wS+`b{+p}m*218?BoJt~MA;Y&Zk`g4dk
zJS$0!%OnR4BygJ&EBb}Vfe2Pwd<>6gmKK*Z06(U5F?~|=F^xFJb_;85E5`;j0pO-8
zdDO4Bn*r}(f}4(IoH3IG@3Av(k7!xYMl;tY?G8#E0>-G>9Q?zhnIMMkSlo!3;P7mP
zGswQ$5`b&`P<u6nl_npAr@^u#JVHdw|JOK;;`!dAx}i)lS}Ye1Xhht&PGST>vm_&B
zUY@-o2!k+>#7RwUEvRas;m$IU=@H5eAX^0ia##0I%f*UdZ(^bBh(?~$au^P^NTw|7
z*ttn44l-7n*sJXS2uGvETMgE)gcL4`ubrUv7dMWmjP6f}Ia)C=FDnbRr?aoGp*OO2
zL~kI40ka<9!O{|zI|Pv?Rd?AQ51E9G5~5?jAhVK^gs`hDnPg0&aTzkIi!KC&L1<{j
z(q`$`d52!RvwL__mlHkzp&rYDAtAOT2`d%47y?)2*n-|3F(DLtYn8j9^f?<m{Ny%d
z)Mjb>=tIDJ?0wnG`v0z}L5~@ojSdO^jnQC^RC0**bZDqcoUzQ$nd0Za*M#G^xo0%8
zFiJ2^FZz7RbSn5E{N5q0V1W!ZzKPhmg!Cgcr{i|i6a(BGKCfuOU^v@(3QbKOM$@0O
zpQ5{_poglX8uTN(-}R27SrhN<0(28FxV$yNh(ZHw0uSY89BEY)IZe}y9j?k;fM;wN
zWebpvww#BzRi!IUqfLO6MM@VU&qGVSn<?$FZyd$<T4p^4KsxW}*PGJ&lo|2I+fu3N
zw9%$;?Ng%h+1-<zU}9e+URqM}%<?2OWR_$+N&hm56h*g%)}Vcc)LtmLJ^)@?(n*v7
z2vZcWaDts0!(oPPDQ?7?yT$G2-owXEcw8xlgtFEomopgI^g)<XL>aF>9iGi?;m(jW
z{7;|I+EJoi>SxL5BnksxhM0Bcs{>NCQtmxp)+ENSp!WcGe-JH)i8Rodc|9LP?#6Qf
zmmarIBU_H=9DrAIi@%^&BlJi$<OYs~ATuse#0ev*IDhiLJ{<0TIC=j;?MZl&gqb!0
z%a)lBoB|Ud>RRxJo)nI1q$i>+!bB7aeU%pd)P`x82t)|kYO4(J)B@X^$Ob0BbcEZQ
zJWA)Y*@dwspmKN+Kjol5K#&awC|*7C`Zzh0k-{0c9$<2%wo@}Y`uSF)2|_m5^ImP8
z7S!KLSl6+-BYa)iVy-NR<4fiSahR2H;H3nxOaqkysL#(>_CqEi<SodfsO$D6%n!ga
zdpB~BBo-`9W?8bq6jSoO;E9vRwYv;p2uC>7q~cYK%K?PTB!AUkF)n0$p1G9y(^S@-
zD`tva=LqV3zWZ@^AI(R|fbZ>Cjhq>pjQR%uKY&l4{taF=!!uxsD0gurxm4sK%=Nli
z&X~-K$q5!%`b$B>o3yXOa;61qgfUm!Ls6m3nmb=!Fx!ixkBC~#0rtvZ36y3MlcEuZ
zW$V=MW_8b8UA4OXCTxNbXAD3nB8=V{BW|}<q_V{S!bXMQo_%4~hoVu3#FR1|@BE3F
zAP=v2Pj93nN*;m)cjx++05q|T{44Rkbsyw5TN)^&@os!u>L0F<5>~YUY}%_|0p&0`
z$I?j<0OIYv3U^ng43fLzZCIu=D{nWMCFo?0R_&`FM%)$h(dkXIiNFNk9UQznKye!(
zFKiG7R<m8unQv&mN};e*N+P0ZH8QfJ9_Q9hn}5@9-~#bY#`S4)yp9BUqu8#A?xFt`
zFuK(sq`7U&o;g~GPL*@kD}7{4yAv>Zh;`p%WaB!TXAw8uPMFHULAb#py9jNFr>m*)
zY^S^!o@u>s!1OQs!}GA4VIRPb!5KoSi%UJLr#HMi1CAZ34L1+Dh07#XpDP4HYOUP!
z`G$cu1aR@!*&n1I1{b;JB=AebgY}DHLY3*`!uzek8;y7C?X4n2Q#MoSw;iid{ENpM
z35|E5NC-bb#h%T)yGIF*3sSUGzz}rD<Mr*8xjk}H_DK8V>YdU*hp5IQ=_<Q!A}9y;
z|EBhdf_|RTs_#0cU#w@Teg?0tNsT@(EDq~8HKDhkJo$**(<LXR3ZYFM9$*3Wsq}dv
zQ!*}hKs{ANQFQ<sF@`>p8?vcHtU0AW<59Cd8LDSea*K?k>Pl&M&d#No*&OH<YM0^s
zn%GZM#X;nZsQKpqY7UWCbn%FB8C1tYZva?4=R67kkz5E4v~fRIu-$#cM2{SFQT>p{
zX|7?m9|da%1A+=QR|G1Tl`3}=8NwlOcTBv14JGF5))JB83%HM6d~EKs52r5@`M?SR
z_1N@_5%)8v01!t%GJS11V#V-dI8$?fDhLl8mkHYFLOC(JKV?v$Xq9W$nL_HO!}$61
zdiI@Usk|~gv0E849BA~!dyBH2uSWJuJu@i6W9z51<f6>hYUtg80J>70*jB?U`v>-!
zFoGuX=}Rr2r8sna0JKgb2h+tf5JDvaA@N821KN-gpDHn91${wXvBOAZ@#_f%?HUB|
zOtw*FTjYl0nb=mqDkFI{YW5mAXhqI;B$Q{q1W5<tkup;ffdmC4Sr0jKUHssfy<=BG
zd~XaVuf$X+f-^b*njh@5fLa-Bb(h<(%jXq_k~p;X0UE`*SHQLCSO~ksJQnjnn>|+<
z_~_7o=9qa59MN?__`KZZCeYq_51oX513{sv?^bC)SH39m5d6nSWf8*`Qbs`m0|{fG
za3T;ohS}BisXda7ilqlMLk!S@-x+^;s=^WT009WwUAkbUDyPwxeE5!PN)$)}DW-vw
zRq|2zHT~%#F5jS#Qy>Q(w9988hW5`w&7%Z0Z9$pn!c59qtHGk}40^57_g9PcI$cFd
z)%A`Bv`Ev_^mW&R?NDk<xSbu=j)@K-;*DjK6%}~)KUs)UM09Zh50`6ZbCyHiY?M^R
zq$oleCa{F?_3(Q5G6>mX!KgF(>fjufOzbxz2Ei433mzB>rde0)GvXJHXAs@CFgiT>
z6m&VAfNx^V1Nm_(BoHNGB^5Wid`~qJrS2ymUR-f^dL!^2Z1YH7T@VM{tuYzIXaY-h
zsNEF7wb=p1%*O5RWSH$xx{#ld3UBm0t-?Nal5vg@8x2-amqKCexAtNbq2cq_`M5^^
zS>ZyN-skuc<PcSQ688WQaEW7li#sH5zf^TD*mPG(MNgy-RD6r#uaU)J7tluP4I_nO
z?E?NAo|^0%*g~SVS@OO(!ueHm2!}}d!z@*>P(i4;c8HgO<>YG1ZDA@iUW7oD(3Z2h
z{}K>wt`-3h71G*Wf^rgyGxTN1>?9A>F0v#@($<&Tb070cdLSw|h7r4lOuGB-1%oH!
z4LDYNus7T@hs92TryqGRX8(kcWcuqDx-k$74AwhVC8zzOOmKL8C+&pd=)w90Qoy{=
z$=HqDAmTs;N6gvyV-|nt?Wx8AD9XPy37H{o;qK{1#;gxA0E!W+#?;e2r(Y3_0Qirb
zM)W%Izwqm@3k<4;L4uPD+KxA-^oXXoWCStz@Ilx4WwQWah>wDUmoLPT!DY491KMj4
z-GOW-NkM@lcu3S^Sf3<+zjb=lP(#(Bnx3e;yi@jdk}eDJ%hrT)j%vskz;fb3n)13*
zNJ3c+G%qcr!e_KgG-!tYNfN_RK*!UHsNvtR!Qy{mE>G9!$PyAh#FsrfI%j64dP}~O
zi+VrX9WL$}S!B=xkGG`~aIMu2(E7rcuL01f0>}{w)Zf_z_CVZng}^8Bve_6mzEr>%
zgpwypS0?&^X?|$nv3a=%Oh=F&af*H;`>yJl6AS7e%WuPM%!@Y8saA>ohZm@ffSWAf
z7JtMomaj)G9!zrJQQ9pkhB@mSQjH#qU0SsL7+0_a8se2MoIQush#52Iw0N+Mtt@ds
zIaQ9G#|vZW6=4U*p<X;J!Bnj5*Op4D8}8aN<~r;jX}=xnhCkVl@<1$+>O_sn=1;wh
z%W=t+wnMa?zu>+k!IW9L%RsFW429C<gtFQK>KUo3vEm6hdFTq?UrCew3dU!L8;hBX
z9y57kyF13dx_~OAL{)mwI4{T-&}MkqXxubLFXF@Y?CDbHhW$$f<v^7kqqAW<8|Cd9
zrh)&T_>ZPX;9<l?;2ca(Yqag<NDAO(<+(z{3EkD|&E)*pL}hl;xMM)2jmv53Pz1$9
zsK}lNDVgV~z4D0MSwzE<1!DeC9$VTt=)CcwI3CB-6uk-G84W2#g1a^SUfk<{xl>Wj
zs$1MY6py6R@;e>RQ13+H8izcDH0GFT>JQ6Z#%c?@)+>Q={{wFd-kRE4Y(Z_b5-yuo
zLK?!QDiZYCp21t<t|=UmTvqm9Jg!pOxkJ~F;&!qId0b`^6P`aX?WkVwxG;<gACe0N
zqfrDZE=g`%Kvqf*RToG{8XlI>Us<!n3NhlQDdG0R64-zXgEL6EHE#()z;~q*9;SS$
z+hPqy;3@#aZ-f(cB+?RqR#MKU`C*A1a+<gi6i09}258D}aM`x-0`MMpYK>7F-(~vn
zoxDY3Fm$J=HvnLTn85<Jz^faK3Vw@`GCuqw=%UvWKg;jwH*?jp8Z_Q3e14X06_nm<
z&uOvCOXgI^;83O22RpuZ@?Q}^faS$@QHwrqx0+j`KypC5al3;`I2{o|K7kmD&Ft(y
z{t&^sNiQL&ba}H;?{EHU>BH%yA-b3(l;Q;w0Rv%;p4{<<7%E(fLpxCEQG^aa2K0pK
z$&z6w{U`8IN8`(?dsL++5W<6Th&v>!Zh9(N0LxO&f%LxlCFNgqYXFO)>p{A^y_%yj
zeOst*u_jg{`G7=1bEQg-2rJu}P|{%kG}Cbaw(@xXo8B?1nTS-Te`VWC&G^j#AG<0G
z=eSN*mggX-e$ej|eDiQw_Qat#q4dt#by|vxn*?S_=d<6M7O(D2Dn6LP(MFV$`<7nA
zid!M!rH=6#=Ae@Fa-hm$RNE&oBx^9n%^(@r;7w6?i0lJ^5jxiXB|cs_cDp;$8!!p&
zBop$MQOH6?Yd6(2!7o%(7}CunwR?-Tnf9|rm>WIwHo#AEWXreV=>$Y5;PwEpaQIeb
zIRE(*D&v1q^u_%ZmVH{NoV0XsScLAId0Q9{e%|DZV1dD1tN>d1CtL;{inKFX$hbgL
z)oi4<h96bisPbYt#z{!VLrBIVhpoYIBnQ$a;o*)-WCLPJT@XVU1H;{XWD_}WT9lk@
zb^F;6YNm~T@vFl{#lge9`Dc<<q0|He(VMe0P)`-SC9nSJ5MNU^#XOmuVP0H2moC<I
z6;S4R2eAy<`zf|D2P!9$2dk1d*MijjyS3OiqFe=WQKu1758zScp2m9@&YaxH1rCk{
z?P&I*bMcV~%I1UwXRtIs!Hg$fjPx^>KJFm|xdJ+~zwzPzvOxJoN6crSRvWi<GboN;
z5j06Wb$nL<`ydtBPBdGTL&c*P{^PV9M~dBNh9W2tUkatrsS_zJDwmITolYZY^JNdL
zn;bXJO2|dmpnPZv9RX#T{1&gN-rgf1{G1N!RTQ-h-P6EH=a1qh$YEkda*JY#VfiL}
zRIQi(cOO0cfQe(j6+VZdKVhdfoUnc56fR(^?HFJZ&X_Zzn=++JXhbk9JXFO)i4RwC
zWJnpq6)nE;lLR@Y%7+DI5OXWf)F04^7WonQanvWuGG~7el>zcmNv0~6CRr2;Sx{FF
zcs~#u?+oK8zC5zNde(GOR9d++q}=d5+UE3M6APtBsttx3S)=F{rW#A2+Tlf)ZRH*i
zT@cP5+rXfV)jg(+-wGE@Vu_PRcrb2-%b;*uK^9?B9Ubhi$SOPEJNKx}CyZik`bsD0
zG7jl<2KGI$O*+RhNS2g73g4%0!rfw&1oVOM*AT^rTdtjBurMPVhP9v&%)at<|I_Sj
z*3L1Mm-6O_KPYgc2t)?M{X9L3=?!#|4ezJ3C#<YU+H9zLwFT(Ika_|G6*T@9E1XP`
zyiB$hJ5YL<Y_DKG6jcqO$NBM@I4}lfAxHADVP2!$Lo=G6vlZS(Xb+m{shfPE?0Er?
z0W133f-SdbVH^C6PKBO*_=1Y;DgB2eN`4iaS0=!X*og`Bif`MZl{_2a=0K+if+RV0
z=L#7>UNb6auBlJasH6xK){jK!2*78vfX#+LJg{*usZXAEhp`s|H<sI^5QXj&A*3yZ
z+BAchvvUw))iPY>9kENb<6tdOm*P0(^os<;Ebci=_X&0JyXaa<-<_Dw&t>?d5(NMj
zY50Hs81pTU_!wz;AyqdUuqWyRDtVrrwKoW%Wx)dt+aTJK$I+g6fkydn5hbjOL<zZd
zY@->bj&CTj>RwDa?BiW@((HBpFx#cSgZp<{m}j5f;|oADCT_5LPW~bXk<0W9f|S+K
zDo~P^;kJe^(#4wY5CCJPBpUTL{GGhUXe?2>Rqr3pOF}|iN{VMN!S06yk5s5|*v;IT
zAtVAf08s_^+J$SkTk<h{`6>@o@s`~q&=IiXut@zD0RS-kmjbZ|Mo3*xD#)m0#d)mH
zUt!=tb|aPP)_sK5WQT#J%GWBrZ`E-^%(2RseO%UJwO+D1by$q)Zhht;+j;uS%58#G
zUlAc!tHoQrQ`%((#FTKruBk|nHcMS49jGgVTdnxZ*2llGYC*8}ZwN0}*n8I%H&mrp
z|Jx4=5uB^H-g?R116Izu@3P|$`|l~UO4y$wN?DbkPq=WSXoXyoLXZEI9nmx8jPAiO
zGUbnph<AHmJg=8pJo$R39;|^-Va@if_*gF?KQ%BxbBK;QZJi;TY1e&O+~LJpTwmH@
zAQ`uRIHLevjj??3)X>I5lwVu*UwJZj;=iDQtL@V>_G^{BD1D+|WdIlrEsg&fAED?%
zCO+B=kwJMW;Qu+(V?~g^#%fzX5+_cQP5DsSA%s-K$)2o)AOB<^Kq$_WyJRnm*QGyt
zB}G&ls$gPhNzjM~C%`b#lHQK$<)0JK!|fj$`;u}e{)4!HDSC+a6B!2Nrh~J-VU*Ng
zr3rUu_rs^a>utKnz@4rS2fO~6Wc;jY);_zZ2IO@-UfS|c)ir4JVjp7SYSzWxhGqoO
z&EyReFcm$M?+fN(9w@iS%ND1Dn&1Cia*rL0vTnKf25SqLqc}$UN1(tR<`r3PLXu~1
z3r2^v!oDd@D86E8B`ClF<Zk}c^ebmm%syH|v4om!#?xZ&aDO)sS<SHsOYcD7`Tv9=
zqut$};FZa=Qs0Wrvfrm91Mf#cJQ=KUp*iFF_fO35ab%qVL2t4sT_~(I?y7=dYMM3b
zPaBf`*N2b0ACzsikBChN-V*-m{~5VB%$RlfO?|M~4-Nxx@R0;2Lc3Snqx}+g+Zrfh
z=A65JR?z0B^yw2{01#Jm<{7$0yHI(Q)E^Tw%ExzpLmD^76fvKJ2}9}-0MlWnWFf7~
zN~DLnOKxjM#i>RD`aIq_CJtI=)`y@{y{LL+ICZ2piy2>2pLH}_SGh?Co3Iib8@yiz
zCu3^;C9q$>j*$eMzOL+?IAmAU#y^u?9<~RaCe1kWt29Hmr4)yce?X3ZYG%2(H>d!&
zeiCA~BNlAJtl%<%X#>CTXQq}No4S<orZtRPk0v*8r>PF+qmKY5>Qz)y@QAl{|658J
z)!I38`|@+z)7y6~BchB0B`Rv+3i-U4SrH$Jc_<M)G4W9dOW7p_tl!|>l~X9Sn?SQQ
zs6f}s$Z_P>U{#Ta<|4*-J4D9nUwK9#REFFgiy<k7ev~Yjw@14+(~`WX3$^(O8xO_%
zs)JfRngB4}xsr_-?%GF~N0}X+?t&KeAqtYbFLpZyF(dQ(84~{ZiqjhgTdL(?RK?Qf
z<^m>;kzyQcEvh1zYfRab?j_3rZ2AB72(&mcVUB-<%6wCxo~RTko@Bad>q+3NlrX8+
zRdTzT*n_P=wd>wSt(f{28c~(cm0H6J6Slp}qW)vlIAd=;l!Uonx?1ETeChu;-yl3u
zW#D-6Or?i4T}pocSp9yKdcebHF2NnEknSR*nq*TM8)c@Q?Rbd7Lhmk;H&{6AJ#ZuV
zYXT<w`U&nrm|21N;Ip-mHzRC<8|tv3Sv$f>ZB3{5xIs8$_`jfNe1=#Ct1zmGKbP6?
zHyS)?d_$QHL%ubhL7r^!Xp5|P1X9f45a<(=AD0)KyZcNRL!|Be%9??u@rloKLOhVm
zSU``8&Uj+fB6LE4z%;G!2Ik>(s1$v2xEL?*#K3h2Aq?@zZ4ztJCxx8cf9^shB+H6q
z*f?`3_S|ueUV-7Q?uj^IDUHcy)3apKKFi+Io1F_Cn3b>&IdP^g(;RBtEFEwWxIHuR
zP@Wao!VL`-6H(_K4&Be8#jXt?LXR~Hf-*StZE>l1Ps|)TV$cE?6ycGIN!aA)w3*0y
z6S8ICpE)1o#6AFWQS3@k3Md;4c6xX8FbXd*xsLr9_TSzPGCK`Q*xyt|ymCg5Ko^*5
zS92uE|3v)rn`GcJ8y1=sU=WM4Pu_C~ezty&W}(sd<<Or%zd&=Wu}$y8UUsOa0RlZR
z#AII9!T@6Ur0?U7;$!{zQ=t&kMG{~SDHze&e9r&hMO!-uiY9Bp6C??QYG#(Vv}2e3
zexL$bpMvg}0)%{uyv!}*6~&87uMS$w>OHQnVTo3uaw^}w#U_4orQCozKo2FuNJ=1P
z2B-%$b)H?Q_)Ecu=(}{hU?ZL512(7EpM6_DtZU@`^K&18tBRY%+YHWmsUe~#Q8_;+
z8S3#et~GEdtTT0Kp9tnT0HRiS@3i`m;e9Bc$!JKo+JKA^TLeW&dP60G<UGqyH|O+D
zAg;Fl9&bJ_pps~8eS6CQYm8bc_&kXGvkYGj7>Wv^I~Hop-7}Fw@ZO+xEx6l05Eyam
z3&=rJh-(ll4p<Fl4a~TIda4nM+8Dfk5hQBNkI-1l(mh7w@VK8pf9@5J#c%5gyH~7j
zXK<Z}1Nx^HYY9G5i-9UaN=BXAUA$;d5|=7b#9Y0PY-2R>d`gLV=L0|}bCsU_+4hQp
z2p^%@3IO0ymp4=nx;+Z?H}HF8rvqgs`BA+k_K(C}t=Z&?dsHR4>(ypwC+?^7+hWZ@
zAYehAx}O%ZV(cZ-gqi5IRSQ6AE;sx;p(oSMf}8lvFQDo7v=qSY>fNg3(8!0fW#<^k
z?;@I3+MUUGh+Rx)FW3iSmu$hHC~gvi9UHEjR*H`Vi;gFs-pkO?>zk(4jJUyqlfQv5
zKq^L*3B0?Z=TR}W*RtrwE-MWvAR3-$08TFH+--R%wH&n0f|5|TQJUq;1{6TU8|z?7
z5~3YK?sAPd<<u^N&V1Eyw=6y!sVr$rpJfTZtbYmEHkKhOA?a7?|IyIq<Xm}u+{ShT
zuiLnI&d|Q?(Wq_?n3tHCr%}PX>~u^Q5AGVeSo!@e_%6=PM_O6rggoj2rw%LO?4$ZP
z=c>{v6%^F_@LWbb3V0+?SLsy@OvQgOk!$8`!+WA8axT}F$S50~u(?8KafNVq$Si_R
znDTM~i3egNXrDjeZn=p;$UGprIo*-ZzUjmYq;MF6Nhu>QfR)xaX(^JO>(Rch(tk#3
zVe;V;Gdjs8{-UfldrQ*35e|!W9A$8s3!H4AY}_2$H;O7k$VZ+RD_MhvNaG8}1xTx+
z?krr{BOv*%Kc7=Lq(7im=zoV;-%^5CGHlArUP`ik6fHFqfpO`%)h|JnNIwy&slyU2
zN)trc(v)wwrhNRw0WM=8Kf25b-cI-|jLbSZ0ztQyC@3u#q1wk*!ApHsjbTs|+;un@
z1Hy;o@@P?9?+Z^VibojYqipA*{q--l0r&w$*nN#s=sFWf+g3put(z!C8$Dv9)yWq^
z0V%R%Lm6OLaR$7RYtfdRxMVIkm+M8e+iB)Q`lQt97q_R(^`AOS@M+Kq>-m+}>q=wG
zN7FY-n*L{%!j~4z-zI;;csL_g+?kv=X+=?;$(-%@W~U<7|AnjCt9yk+^!ewnB_9N0
z=U#RQ^D%D290J^=KAsE(M&VzJGn4%Ina0nbWh1J+;Z`Xes15Vs6+PMcUpflzAp#jv
zDNIJa6Uyqj{P6^1d|5($;a$}V?iMO0>b$H%3^IeCrR2^VdDIreaRjD-!MXMg$)Zyx
z_o37%STT%&Qc2jd7%53I*k?%w9jUn&@+r{~DaKhoaHrF#TOq1_O?a|en#m=1kd46<
z?u}G0mZn0!;9DwI;G0wzFgl7sVjG03kE+j`fs)4kDld(H^?6*lUR_<#mSx%4jU}ZL
z-D2SZPxJ8|OVu_8#1n+1TdW9XFo_;eM08q12t$~qDvd}d%nzzuIye^hi|6V-YH%#%
zc?H)Yw)F2yl7(5$WG>^k{egPZ<vu3v6E2OPcOH`!Z;D;julH|qw#?^9W0~4?d2gVG
zb{MrV8h69bCvkw@*^zS41lO)|Ma8-lp9M+-hRa_i2jUS&)6%i*oQulE_Tkuu$I}R?
zpVzErEaI+O1n~##7-I6OJmF%;Qv@((wi9k;J38PzmEZt9^L19J)n2YLd#_6o^)xA|
zqc(2~z4R$#w%$Hiu_jWTDT)CPwOj+{?(pL-uB7|dg#n)L7#s`dfG*aCSANzi%C1(9
z^ySL3LL_K8@M^%a^<z7<E0#uJ2b2IB6gTGLldHd1{FQheplRH?xZBK%l&p#_6&pS&
zEK1(lh{*2Ql*jQuumHsIhSsx1VPjqOq55evc$FS;WRtufM*VA?he(!@-jUMo;(7;>
zP3#a7PZ)8*WHqH*YUGUZ{YJzD8%3;9TGSf?01GXK8lhlnoi)BM9&Wz}Ng<530mf!r
zEzk`hfX!&v=wOx+FEFA}VeH~R-7jvkAGkw{Y;FPZu7bd9tbRzWmKcZYs}9|&hp3~|
z)yJ)jcI;-z-m(nhCEqgF?I$9a)d5A*IaDQ!Pv689A#{c=F0T^@ln{&wW{|W?G+%9V
znuMdZ_CK~~Wi^HvQ^<6EmsU>Pak*fQpbtZph;_E)HL6<IA4u|aQL1pbZf7(yu6#E2
zyjkgI#EwFdrx!}at^;+2#5@)xg^)Bw$@Aa096r9T00jObI45|+NqGF39Hd-6JR$Kv
zk|(2nNadXMVJYL~U(!!5w_dX)hQ?Vb%0*-0mbqBS$b>;tb0lC&h^J3HQb)jVrN+!v
z7A#+5Sg^yakN(hIyd&DmWKBT#P|n|`_<?S*6tuB%(fwtsKCn`{=S_xNiSK+s6K!zO
z>VmjQ9}&-l47S<`alPTylfK4;2p3?JtxKUXnDGU{3F{DJR?pUu$$K|xcCp+x;1l8m
zNsSu2YvZgs5%Eo`IoK3{#Xh70S?OrlA_B#7=|%OCtg0`GA00K`GcM2-6H?M8Tvz{z
zLnkTzf>TXc=toRstk-ftdNt+y_h?`BKSFE!WN1@rxt-H&v9v3BgiX`T>2n(4&=iWv
zmW?LUTd7+4lB>*=Gzma$n>TUUZPH$*7wYdKg(jS#hosec4$ex<&_@BV&@DnpL7zcP
zzGZlUSIA1&TL|!MzY^mGQvr|`<(Jr~vl|>B-{~W5rUeiwSX|6R9%PYO8ANVe$sHO~
zKTTis%R1W=BPw_s^DgVv28gGd8-r82M-k>dIsWAgtlA8eeug-iQ>b^cZWmaUw&Adw
z0j14Hm2^>n04-SEcS={wB_??nH`quSFBbN!u#3qoPG#Ax0UDsYlB!}HWKChJ)VCq>
z^>(+0D<*6rlu~QXZ|cuEJYz&VYXskT`}U$LD>1<l^fYRZ_(wE}8b<JC1<Wo)DLnvW
z4VEW+NqZ;)8J&wB#J`fA1+&6!QaU5H3({W*@xPka%Q4vx@V4ZEXP}oWeA%dqXjMX&
zlT$i?-H$Jle`n@49mE(O1ZzW4kdwKc*eKRX3;o}~7)gh5S)w?V-FPa=Fnae;^UqqR
zFSG&HUVGeLYS)&i?mhsl{E4U0Tv#m2a;3bLNj3j&FP6CTqP|A}Q`z(>?dn#j8+$CB
z^gd<HSJ-ooj*2eg2P&#w&$gqb_>VGzQf+9TKY^v`*t>%k-j*am1MJXi<E+_eE4Fih
zkN<2H)0*6(KYYi?L!4YGICxt#jj{nA_jz&NGjVi~Tkb;i@B=&~K*#mw^1o!#_L80O
zpHO=6&NTZ0Ym{sn1g9f_q_=<2Tj8o3ZtTTai=l^!__>IuJ=DgUujOwErg9%v^rKJk
z0a*tUte6OFb@7Wz+t6j696FJJy#fw^oGt`=FL@_l-Wc<RyHwr7SbMrtj<NTTxvUI2
zqbtGfofY38ffBN~W3~sXe>vfF=`2W!9iYK156VJtI1NG<{@x;`r!%o@6g%#Jwxv@@
zVT7%Qyh(ZkK@5P2EgH6G*YYVfwZ>5p2&P+KVp-AS#W!_N)8W>N1#132Te)nhd^oP3
zfCfGTPlw!xsn*Bh7fW=BBf#vBnNs1M;`Vu7+)z+NLnQ*P`(k>%_HLo_r|JzLLISe{
zqWYr;F_%ip<WEx=g}R$$e<6sk_zvWtg8^|DBfhvlT~al)u5O`J1xRe-$R`3W#=9gR
zqHjkj5kG|!AZOV%xhT_ym;*u8+8O##F-awnQvJ<K%aaAD9CR8ul-<2eQEvh_bR_U`
zHuo_v^IDn5KV%i$VdAN9YZ<Rno-)g~Xl*s)BU%X7Si=@rfNE?zKE-MdJbmzp*P8uF
zCsXs^I`zy{lBo*Dw?4shZ2*ysa9@W5`wF{^hci5F8Tm(;@u%$XHX{Xw3E_03^^3b&
zycNDIM{9(d7os|@hL|lRoj_J?wVzccU(CVhFPRj#aYpi|$zGMv(H}x4p2SB#vM~Kx
zt>7jA^|xT%N|CN`r0f$E^HqZ6F|py<8j>_IM<4e$1kLtg8m9`ana<UaoC8NI8PI2|
z)^Xv^FY#D|G1CI@a?TgeXh-ofhVAZopERXgoHVdCCDZu_ufw$+qy7}%S|&Ms6syj_
zp^;cpvhir@k;nkSOm!!Xm3mv0_SN3rrM+`?(6lnRoV+;IBX2i>Ao;xB@AUV?4=Me1
zGA^V`+@B1)M6l$Io8nylP^D^6cD69K(=pdYy9_kUd}N>@Zo&4cNg7^A&tV$5>+O(M
zev*LKjh`p>p^D1?7j7^tGlZQC9N>VjzKB=c?Ue>dr49?t(kP)2dB!dASofuX&5Tpu
zDr{`FqHQ+2<bGlUG=KSwh?cxD#2oGu;uH0>Ys<y+m>tc}eVMJ*DI^F4=NaoVtfT5#
zzxU;e@Xy-!xETkPSkMH8kbz#m7tLYA*2$D(IN_L&^$N0w?sLWQfH<T95TXolr-9<#
z%TpP{<~-4}3{qNsflGp)>=`m?2@@>b!>k3w)U2N?XTk)Z<^?S)iJ|`l>*CHGlN;FI
z9rt%3KJx-yYVhFO#d=}#df-n(q*i-|90im{lTF|=GO>+%A{2fBpTpDfXv;*lF@S3c
z<RQ1;#*U)knd)t{mEE?cfU^+EzkC9e94_PnIkdA7&jZUhe=e8@9yK_Qjr_?s|E%id
zym6tT+0a8-4WHh?9Q4tn3Ze%b0uX%F=n-JH_r~%S;q?pastz^El_IK^&h1c<)$aYp
z0L0t1JE)^ia#ZM~3B7>UV!nR+Ezqk?$D~PN>wTptxF{a*baye>mh|e2Qs)P<#*9#q
z_2hFl*oEF7HVLKjw77kgHV_6&hvrzJQ%VYYN&x8PDK7rVj4u2{?X?{YMeb0~-9H6j
z{?M8+U3l=wkNrj!2r`VK1M>b^Jyu95!S&>3mM*eb@tENMta$hc*0M~)`y@tMfW<lv
z<;qEUxlCV_5W)TxopD~!EmOIFjK)2#E~TjUemsNO344P*np9&&B4VX%H?FiV9}n&m
z|9Y5>(Y!1^8HpH1ZMhau{^EY%=CmlmSCb;@yS1l1P^_L6=c7z3TSX!@>t4cyzE>aj
zn|m7YLymC;ctr4w7Nu5)4z!ev4|57ysqwEX>PFAds4yG3_6r_}vVUYs85zcqj5pYY
zfp3Be?E0bQ-%do^-={pMPO320m~5K->Iol+CUZXMwrnMI>E!y2GRC;eB|!t{&^f1z
z42FCIcFUqX5Et4WLUYS<+F=>G6hIP5k?(lGcH`DE39hgdj4j-&Al{J{wIuf2^>a}h
zE*WfCHtKV-=&Ax>5*%gI)mrq#YBw3qp2zzE&hWZnyI9p;qO$_VBqvE;tQ<HtaPdRd
z|BLeP2$I}#SHi}pARqBdkaZ!*42l~~#*G9&zjkae&UC)3s!qN^TA6L^P^a`l;gw~g
zBQ(AlW9zk9wC#j~$smON3b@QT0nkmSK{a7U_7%HGN{SE!(%_>-m^>u1<+zf%`|xe7
zS}1d$P$)rUP%5ZZ_Wa|;x8NeBD@GWMSc5a7CFPBz&%u%+;SJEykF%;MffHasTaPxp
zY;?stl6{3u(4i?5!bq0#k0y*!<B-&KujtU%zGw<BJ{MH%C!0}zLyS65bzO*0jksmg
zar{N#jpF@Q(@%hLG&731677OuOKmftHh3vkFd9Ql`m*uW0?Gfe_+@**ZTify{@AG3
zW~=x0dd*H}*Odd>>q|KK8pIz=a*p$eO%P2ET@$m#i2w&vtf%2^%|uy;R{@um$sJMG
z6W<b>8Y$@4owYLCTPaI|nNx1HHOeZ3oGL1b^F_e$4P7xsQ~wiBlOkD5b=WJyYaqP3
zC0r#NqI=3!_^~LrQv*R5XLvsa)+ntME*6zB2&Gj$b}<eznI$<&e@C%np?XZF=f!;B
zhZT0eN?$4pil$3E$A}QI5zIBDU={3Pb&W+x|3oh!_6Q}2d+SZJ)6$0@F{?IoXz?pq
zAzLbVHaeYFkW2@QTkgACf+E3MKD<Oh`iwH6y#AbtpVyz@SzL;6gkOcyrilk#n1&XG
z`H%06P+4b&DSp<FlZGpWaple4m<Bbd7Bn)}wR@k>gQZDE{gn`CK9@^rB38j>NXJ7&
zURweae`YBLX?Y=&&B1S^uIrTPQ2sgTZBGQwzcxN!YYx(w44H}`0}DvRQYDg>QIMO1
z51`m$m3X}Tog0(l%`)X;zH+Dh|1$T8JhJGTGz2B9El3ex9_WdK6a&;Zfhwg-Xb&+O
zGc4P@lGmidIFbU)n6;F@CsAXIo)#!^r;p-<0!bn!g4hxjMzwKB3$O_Oq=F{CX^~6*
zw5E0pQuBK5c`Zk(iM=ZB7mMBCOvz>$1q>zc#ZV`aqz>WXaWlNx(8jreyJfP&8KPq<
zZ1`y!(dS+Dnlg42oLSaImmvN)?&ETF0hufPMSW4cZJ~PqQm(&N(<G8%%Nd*j(;&+i
zfP&F8;8|C#<N;RY-P?E2fz0>2Yz_MpSXTLE(1dZD$!3ud3)=KVdC=}v-UD{1xD;pY
z))~W-sxFX<_x_>G6qX#}Su`hAi8;goYlPfaiEDDU;U^C%0?c|>Fw(MB!K1|a%=%}}
zL7|;JktgMAfT}fUTySSnv7v}g=nfA347+zNKKtBYGc+MzR7lfQ<B1JF0#J;wqkVoF
zE|3=v({KY4GS`flkgX2fg?77LjtX-hM&)yy-2xpF^q{?`*LSJ}siCQb2PH54)`gQ$
z5`4Xi)O`+XzerWs&g5yOzc@@B_xgxSLi^RBD)5XU4^0f7wQwCh$UrF17#Pk_YiU@n
z57@<NK`21$@i~-&OEE|lW0prObqW)PY=wEEI6|8iS9S<hj*6G8S7RY}q$G(To^6X(
zfc|k<rt?*?JKKHY>xRPUtmqZdB)`q`T!K({2A4z`HJsZPPYW(41#&3AWZY|wxzOz)
zR2aEQ_iEvM$8%j@8s1p$-ySy})`Y+Vja<^KUtccme&zs+LV2HfhoM1T70QpwhkfF<
ziqc67ZguC}CiHyh1al|l{EI@7AY{q4Fv~{)))g=8+c+{e*m;gIAfg2oh#^*(Wn(m^
zyZ@*HkrnF*m?)k6CFzE(77~<sLWQBY%e|g(`t;LQZwm`@E`zFCU=!u@^@>d*Mh7Up
zFDyIhx<c4P&?6_=SI}d-R6sf9UZqBirJ)UlnXyOTkmmc;yuf$tjR*DW6;?x_^Xc@t
z{W2<;_oqUvIIS?<cg-T}s?V(4#%hpLae~wXV|-7)rf@Xb;JxFggZ1G-t*@_Vj2&=-
z5aR)#=m8?6((HjsGxydXH8j}KEN2wT2niw?osbvw!VrcDPapYru7v-dFLr75(ep8%
z%-;}pTxb~rQ7S=Dan?4oPT>)UjLz-hSdu!ZW55-;AfUHk1&K4j<1{eJ4{Wq1;qlD{
zS%KSB1yAWWFex_Z#;CT02ayuV+pv52d^cYf-#9zVGeYFid8T@o21w%D!HVVSytEM5
z$_I$$dCsV3pdOCC-ke6?M_@huT5}gva@UA|`ggi)!5`8D5$8`!f2cf$+@F}4ph4wN
zv)g#V(6qkv>6=F$G7LoZL@n%c=l}{(Mo(p&C^bPeussN>+g}MPO2-;^dTwOex+->%
zPjnA^eay`pHd;|Xl27<oRSTAahwGI3x@vA|Z5#Pc7yB%9FdB!ABmE@y+>n9tU#mZV
zf~};=rrtbtFCm;^d`}gM;yx?x^8IL>)1i(mr=5KKen^@nJAj^rI>jmV6LB&QM3lFD
z(t>~{+KyQj5)ba_CnpFNULemdk3dygA2TKZyvs;IsxyvjH=uw24C`F1d1_qJ9g1&h
z+@o+CHU5Q*P@DahDQKxjaT1hEMTQI%SL=luY?TO_-~7&7Eq)TVK2CmUQx|`zk^rq7
zf|6a(hiMGqMqnC(6!i@0QNX1kH!T#tI7d*wgh7`mMY4IhB_b~%7x`q|@AfUGjg1`5
z@v3@FsuN@s51~ouKwd_FytQg0TAZhGn>@}RB-fcm2=qrdX@~(Uio8R7AzU}!jMfnN
zJ=~q7FG=dJYDDRD*D{G|%``v#$znJhYb&i{x65uomdT2|LtJoN4IGaaia56Z-SV!2
zW<#xH5}8OXB#Pcin^I0h3{?5xYoU}<rYu$;GeK1&DsXIVBqLmHnb+z((~ua|D=A3>
z!Jp#Y^57gK4q~CUb?ZA&#NtV{8lHnF)SJpDx>-*dD<^y7H3qt|%usMM9z7_g?&`9;
zn+}n`MWB5sJnQ!vaW4^z0%k@@^#KL<1QE2~gsK0+2msUDW3Yi0`h}Q`ajmG6B$cms
z1KXmRmH22@^S8@*PS;9@KN(qIbwk=~Q$3Zw6r5VYls$F19I;q-M9vMI#2Xc;(vxOG
zKtxI-vysp!bKN8%9-AShdv_&0U9v7%V;{uB*j8q_2`YLXvZ>|5C|%?hd_fkTxZY}L
zv*bqm%zo8Jq?0(@!7vcfiC{jdpKp-f*e-QLvRU6HYbY){^dRCAkpi+l1D0))H{j~d
zcLu3E;+uXzx9ZJx>Y-0fe96tD(xh1v)bh7EOpm%iszOfTN&qJgwdWBDQ#Xjq{DNI-
zHbW|JRGB%!OfZfFe{At%MN?W_y8@lTJyPLHs-bX6ahp4AwriJG8}!4DnqUP#4F?6;
zG5LF<G8FgZwM4UG%%;KM_@x6;>tw|ooKbmw|8lnRARp>a#bt^bTBg8zCtF}`;yz3d
zE{}y_FNGRrh4X(KLqRm+Xqh)wbqixz0+<&x4P3i7H+1uyG=~A3bei{C6zHSdM(6y$
zu9=bOI8LfnKdAaI2nVu^)Gu$vX?S(@kv1qy$`5ydv$gmXdjdJi8Ua*7D2^gVI`(yC
z64?cJ$IK=fb(U;;0G6;!IJ{I%Z+dBD`R!%SaQ0*sdcipbXu=J+I%nifkcNt*qOvqT
z4F0?|<)FzSX_^O{v;GDTZY}@UYBO2MEhKO@OR?RtyLG*O-4H;sIw&=Zb!<18U4o-a
z6ib@rtTZMe1DHxXtya-^zv!tyH?-TI2EO))PMuFELNxiKnE9#X(=8DuGwo|h!D<dc
zMpS>7eP6k3nHlzTase~?*iejkO|5`s^D3gD^P*+w8e4KlkQBMCLE_7evf~vyK%5lu
zQLT`)lCF>U&DM{TB@+e7!e_2Z#h_n>y3p*m&gl4&_uACOck)Xpm33b!!%Xt*Ebk7+
zNPeS#*&D&Z2I<*wI8f?eneNBWp=gZOs9HDznz2S}xFMR4ZZl7avY5cFd418YS9+V5
z{<V_Hp|y^g04e6EA+%o;BKI0G<2<r06->Eq<Qo!)n?OoQ0d;do;!HG!<Rajf2|Rqk
zo<U*?L3(rn{-j5!3&M=h?`>BeWSnzTA^nti1G|j}^@TuWHifNwdB0$0rgG&ytT5m{
zx4c|53L9Vzv6E3EIQOEc_6f{(XcE~s|7q_IK+Mwj;5><<UEbVcrjiA(lQH-PFF-^=
zNfrsK4VU;cnX0kEHi$Xl^}|meqEB6y8?;goOn=jGo#?S;O+b>DkbDu}uICHFt?6$@
z!@9~;G|wj#d>CIqFXJZ)*Pc==RmusJ$DKRr0BlY)rh$z@B5Lp5++PUHFZ=cI3ei^0
zDGd|TTnbw~X%|QXH2;d=2kcu+A5fHZ$%Y3b@9-}tXwom-0E?y;>QHSVt?W@bl*4`j
z*5H2j{q`}tj&-M;sROv5vBYti8Y@k?S-XqTZJ%=qMEojC3HU)4RvRFzj%LS3DDP0_
z^+bmN3|9|KvO6|IJe-igFVeg8@zX@D7$J!|NU;cQ>G@x7waP?WW^+$hA}qAjYO3Nj
zohC!iucV+MzIDXSc^WBwn$py@hmMHs9~TV11kX_MF(U<hQ6l%1BlpWDPVPS{9p@UR
z-V|Uz=zKg?qwmDky|v2{60X$Qf@wPPze#<fdCRw;^ACnw_*{d+4)vBKLp!<C4{KEh
zm<RkmO*Ya_l!02<=njoBl}Yq{Lf+OI+vyx+kM&|H!m;FzUr{pHT0#9`$xy;Bd9D$t
zS%_ktF(DgUz!x}I+TJMt<&TP!=(ce;B`X@4Wl%&?PAy*%-^*n?MeV9+1T}Iutd!ZH
zOO>xlcpniHy1{a<$Z+_dk;6>*bN@pI<;`eX`;n8Z^ZG>DHqKJu%q372d!c%9!=7}~
zE=7m#OjF7<oG=KGrk!O`qX)-A=@}Y`sXoL^YL4mqoHL#V){*F^RS(zQE7c<N+|hVT
z4$4cJ`Wf9TUo>06!q+MJchvo_k?PRVp;;amc5>oxO#N+P)DS)f-RLR6ep#5O<+Ow3
z4~Sz%luZ0^35OYtUbVig`yg8}gosT85TFhjyr|55RaAqjp4mN$UOmOqayb5Y2mw1>
zk~!h7(^ozRrbu^m89s#L^cK~D(FkEyotgk{f!e}{;jN(3hFaDdKF0JJBc>}C{(b^K
z8XFugwjxDrq_H7`l85nixOcq2ck*fP!~25+zR6cuDB&cX2?%s~91QD@qpd*kVeFXo
zf{smO$Xm(TwSp@+aN1oD&VL{r{%T$VbzcU_rh*MjPhf)Pnl8VIt?3s{dTHGMnrY;H
zLh>pB+|OEqiI6FNV{yjZxP%-KO@<G>N^>>;x^mTGxIw)K*#w~HU)F5Y$Ht^1Iruk`
zhHO52KYjU4Vom%+pa=J%&1ese124CUd&NL_$O;K-3T)y?2NyYH_@CoOwu20N{3fW}
zXc>J%M{@`|H;+&L)OL&2?o2zSQX?+2a;PEK9$Ful>;;WHLmc@LLul2-IhMn}%U)~>
zpLUFDnJ(2WvuF2$sX=KyUaNY~G=p(YOuya0qp+pJ68Bbs%n{`nYPy7T0;CY-th9n^
zY0q*j(}Hpck%eiQm#OE_s^NHw1I2LgHQ;e(Q<~2UV@<;=5m0d2hFCqyvvcvMWP#~x
z@PG;R8yv`YW$xd7jJSf|;?kR68H{KtD>{6d?NQV9MAB3)9M7h>zzouo1|Gx;wjull
zGk~Jt{qi|UGbty81^+B!WPFCrX4a$AtBS26nI_yue{q!Vn(&j>Fw4IKAVO&u?L3S!
z<WzIm?(n;&0bO;T{j61Gb@NUm7f29R0zv!!C&9Tqx6V(p!cO6PFWp0lp9wzl{A$8I
zK7~Yxak>~sGS?Af+<>_VKNSl`xJuI--EgT94Q-mqUC`Jo<(j0a<Q<UMSxrTIR_q~d
z47708pfRek^(hNP*QT$1Ocqkg<_WOC455kQXyE5Rf&=*{vC&C|`)g_L269v#;e*eB
z)#D4BlWNBvabD9TN7=Ff!2a=P!W6kaobpnxgj<qNwx0Pmyp#1eX!A$#>0Zz^O4pgH
z3Kt1AYmR{Wf^Bv{%~!@*zemz?8>E9!VzP)F@2+Qb*U<O13F$8J3E}eEjUX8-esVL@
zL);5lqdm%Z{pMq$#;>&cf|%ibL9>M^HmnXVOjW1x6_8SCF_UZhR)>OKDIweFpNm@4
z!CrqOA|j*(?MVDYU3(S+TLMSss+SK&P1cc&RzTVSuxIF}@@2If(3Vd^qtNUMH-Mm(
zK4E4WNJ0!L^^4U(x`OztBkaQ?{Of1L%i}G=%(=d`#fnaoVcXo5u<b!l9{6E5XWU(O
zC}q{`bQ!O5`;@>gtQJ(^tm)<fH3?Xu3+cZZ3^w5%PC+wdD0VZvo_0$dQUYA){hcO*
zPiRA_IJYUsfObWkr<9I*X9=m{23S|k5X9L6IZpU_{j+|~_r~E&aV(iNkGSF4And+N
z&qhFOTcEB;$(<4BNl9_3>IvSg+)S1Csd?n=yZm%B0hlJjE1YMgu|1JNfU^sm-Olaf
z7uBh{aMY!W|6w1%#{zI-JS|ZG2^73o<x0y#R?b-3?%RUOJ4Hn_@6tZV)CDy~h{7^%
zEogQ@p8UeN#4-p;JOOZZnmR0Izkdf~REFDlq$ITeYyY^Z3SA5v&IC1D>cL){|Bwxq
z#@DJGUsKMw9PhvgsdSB!X2aOfS?I^I_?~#caebxHk%U4w=*-B_%)c>D*_4T&@fx;E
zN#}yYk$p+oBgxBgF{rwn{<?dSV~jmcLjLsE$POO@Y5+vh*XN!>I#>P#6W_eE4TcxZ
zA5iX5;UOd*(!+KH9Y^a^&QQ$3m{H*eW3h$ZSc-3{&nF(=WakEv=3@G`|7?d?tT^cB
z@NaWf%E!|zWkd=a0Ks(XCE1Xyz5Rvd9bl)yPK=|1p!uEw=m957aOrU$XkEgAzRitn
z@eoxdfadU<!oI~*_3QMv06>@8iU(OcymjR)7<bB5Su?>%v<+Ex5<NWXTnSPVOSGXX
zC2B_{Q3Ns0HN;WE^s4%}Uu#!vtUbm;<HnkYm{G@lk%J|X{hVnSkn3^QT0f~5N8`IB
zN&d70WsgpX)hG(j{le9Uyf$n)FC{gR``o&%f1zOqz9$x*d&&e}PVO3a37w^bTnN)a
zapNz2`t+Wrr%V*gpu?y^vWoasbi!rhi@P<jZA6{Uu1a^J|37?iYf`-fy*gznw~g1-
zB~o*$<>H&`f5oYoXwdt|wPq=iI=h?%4YeVc$r)3LYm66=2ZHmtYQMz=T+L^X;jA4T
zqgR2`(xIcp2H&6(<kP|l-(?Abh{fnWmT12n8M?P8tv{k2KIqY?lXry}#0p<YIMx^S
z=Su*T_Ip|}2Ek&NG{c#z^@T@@)GBUE+shG8@At?#I-r>CqSGS7ylv=mWKC4jNkXqf
zV#EJ0^Ot3I<+XrfDJ7|}#~q08Awig62g_E{S+01tOc2nj<7I5Qbe}QTWCv9^aoX=U
zw!qq)n>u9t#NA{-q@AtD{Cx1w=r5|m{8To7^r=k`Ml6^ZB0PrusU`Cnu<aJ~drR+V
zZgf>$Ryqw5E6`<9o;PY?RV@8|gBlFJ-fA;msuZZ|Q9%7-{7u1l7PTx1NN<QE{QaU|
zlABF{rhsOK%)Pa})bWv7gpwc6T<}zM<uxwWCj?J5=D?%e9E^u;SqQs4f;XzJm#!c6
zmc6XPmujKL-0fzwaTMYaHmX{_J`mJHA+?9MxFQ$}YWQgt{!{PC1x;0v`lXD{ec4`@
z@>qc|4RqF<Lm_91JEi^W|9eO)41rf8tKQ}qNFX@)gf=PMn|yeVhN&~<Uiihx&IiRJ
z7QH7t$XNy>0p8w)yfb}yvX%~3OlnbBsO++@VtkG>CP29s?VnF}+51KTxW2})J>BDI
z+^@6VJyA7XlIU?BeowRl-z5Dy;y>zhj4KY$caaFdo2x=#{+Sr%@3pAw{wSH7g&vf0
zW**R%Zy1fc0UY)K=164s#oE!Mwvz6$W4?SBAWp($^=~R3i#-J+L4O8=3g80%2`P#8
zpToC7B*Ktzbhd~oVIyY3)ZGIc?i!;ELLe))x9@bQnm_uYfR_jP#PL#_BD5qPs$9Zv
zpg7r-;jhn+)5n+K|8p|v@NR)k{$)NDamuyqlq`vI?_(HwYVmP_%?5`>W?VxFZK2CI
zRely6>O*$k>h$bkHmS$*Ly3b1asiIaxHK42sV?M4u_z!$IB&Ppo8nga^XOT-t@Tv|
z1aL&t3{WA4@O<n9G<z%hX6kq_=H5EtD2SnB5!<DmX&?~7y?+oX#QK!#CBrer&9ULq
zOa>rB7;>TUek%gD=z`b4S>zSl<6T0#X(3V{tQjA=1f=VoGEcvCi&%y(0MYU@v-f=B
zhfdncHD5DW``5+>BN40h(-NO>#%08;CxuM1mE?1JH>v=y^W)ZCC~l)a3b~|SL{)ee
zleS(0-RXZ21ZN#4Hr+Z4j!QxNgf+p3B1@rwGx}}*IH?A)+J09wzIA(Xni4Dl*BY|^
z&Dy0}s$FP#J&i%iFY-?RZ%%wNtg9%tQuwn&L$FppfDro^E@cyS8HtZds^pKPnmRKG
zwL~yzS@~B9S&RnXCsqa+R7P~U-|7pbm26aw9{Q<MsQCKK<J0u)ucCHv<g3u=L()NR
z+T7I0vAs}XbBLg{`+(DG`g08zwam$`$kP(8+!mV%EI^&ELH$dBP2@gRl5@6i(5ed~
zfv1m5RmRbQN^W1VcJzBu#z5_@1fEpXW^$A9G^i7%u5H30xXL-3Xowf*7Vy>vLCYc2
z0*j9g3k9jg!gzjvf`oAsI(a`EG=|z50iWCqaxm;{64(3cLFL&c+Jw$HN}c+MnJH)I
z)Vru`LTzb5bBou3^F%FZPAytI>>XO;l2R&Wf5njAU6=zVEHe*dVJTSt_K4DdV@T-m
zgHlc7NgL(xDv^7cz0mc@R;YR7|HFrLaK!4a&=!y+86vCqVbm6oK7^$jC12bO<uObJ
zpnd3&cUAqyNEl|k4^Y}XjZ}wB_YKc!3Uv>3fTOPYZv*A5dmy(d)Ea162so5+v{U|D
z{Y6rJNpUGo3yehz!K)(1RUgsa<TT%ejcC@A!Ms5<qOJ_-7pm~_Nfs(tq3aTCe8R(C
zk_BrpC*h7XMpSF`AEG4%BVmb!ec^)hoTA?Q0I+f~^_{Atf^*^?57fJQ<Q$ayb1j$f
z@xa);ru6q?!|WTw1rq3mYCXfew`N0UgIWMqwkiR^esVID%fO0MJ0ga2<Ytrmmv$%<
zo1CC~4M;!KL7?OxLAiKS2jolLxPc&$Wp8bWp?jJV_@e>}D4__YSj6K~*LP$C(&KHy
zFX)`1ocD-N(~Ybg_L2IISg@@(!d8_&GRaK<@nQw)U7GShZGd=ypI$IgaPh+X>GqfA
z+1`<5OT|)_?Sj`>O%Uyw5A{@Wezks@eN)fj1Qv1~(i3kP7nWd5o?86eE3JRfFzgdO
zP52AUO7~Q1NnGX!B4$1u;Q_Tr?F`E^8AHlqZB(5p=Z3Cq$v3M!1pvUNGs`a8?xT&s
zaNA=hr*{ZBtmAOXs!wkwyRHd{;^i?*B^aXgg3(@6<y|W#ngZkNU9ic~`BRfZ!*pF<
zLs5wWK)#S>w4pr$Vrb9O#FsyO+xla2l8!IggBP$Q0j=M33T$QFEl5A_>PN)OiMqHN
zJ|3%vs9P`~%D`pY43<x&^I0FqJh0i&O;NiDs=|6+;WIZtI{48WDPPL8bb4pa-aq_b
z$XJu!-|b0uHR*k6k0yD~J^BMgpl*If9ia-tb<`10J0$dhe8i8IJ-`xa)$n$UKQ%hr
zuM<<#Bs7w>iV_o?sPdA~Nnt<xN3AB__LAl>2}FQEndL`X<vah!ClOd%8FkBti`6E4
zN3j+${L1wY)a`gF{M4hMdvx90GBp#SJva;3@*Q_o#W4OIFh%wDuue>kBWf@Qr5!Lt
zNFBNyC+d}8x8J1)j(CQreTBqZ0!Wr+Wj|ozD}p0WDY~#MG`~eN4y;iF6n+FLuL<vi
zrl&NQp&vDIh_5I9f3lymm;0CL+|ayF%$;Tatt}L=ADlrG-iS?Q0+j1Agy-2C*m=Ck
z`Y8rDijjT4fZpiawP>&LXB%hvgx5PGGT4rh9WtcJC<Kt0fn=s8%Uw}`feoICn)uhS
zc~B6G#|0VHuLJi_w0%Qu;ippz77a&q95yUST(Oph*O$-9(ma;q8pDzCXzU-GQAa59
z<&EBdrMf+$EVO-QEOen|0{4La<ZjcC{*_~>-fFr7#^KY7TU|%VU<2QHDq0rsPPYxU
zv6Fp4?VeEr(`h${<d%Iml`Jw3cLq63%Cr7pl=e2~#c281YW3x9Y&6~B`Q(GR|4(AD
zVA_*Tg*&!ae-VB`x>yjE0)cuWZ^fWed5b3}v_N^oB)dyeln|Ghe#*O~cgbhZ?7Y}A
zgO+QM`KxZfJ5EjXQTc@W>>JW!M#%n#dlf+-ois(!>J?e}E$Q9F;A!%n&S(8l%pvJN
z2o-S8BCi6xt(Qc=*@)P8OEAo2MRt}ygNJAO?=HPYjDTt_TVe62y6S97U%nMaesgqn
zbO^+*B^S`*dc9fYmZP`fk>qC3ZbUFBI0Jzbos^m!mOzmreRI(uG=iz;V_p2vMu$gf
zDm6xi^Px<Z(0(;zUQ{JBc>EEMvX>2gsNndlmApCyd+^a2j3!{u->%>kl$MFtWW)gb
zOx7`y7UMO*|3OZCdj)cPhgtrwJZntOb2QQxq27iT@H*VpW-IHr8km~WH0daai|M4i
z+qvpdW*6Lz*Tnv6eV`zc15M{)8ysadQX+UWPm>6;VT2WDuJbvdzfwI)PT1ecJ*t`F
zt?R>YLd-Stu`ALjmnBgoS|g50zc;&L>Cr3TpVeK^O0}?o?xxxExdLD#zz~T-i#~9o
z!4NLz?_hyS8|q%+0E<nE;~{#+rH%C}u~MSLxj;YD;M(Ayd!JSfrDy<6n-tT<?-(At
zT3@f2?4(4PIAeghYz4o1q-hBCo~pe-v?xj9-wvo~FxRJz(SEenFd*raNo??iVWFEV
z0Vk13h|RAPB_0M_Y#v&f+{2JULaqmws`S|d-eYcnY~UZ_*LSkx4vV*~LLr%KY@3A2
z8GXcDJ4J`<;!QpOluG~pfl^=%mb>jzvxC;F&81MrM#V!j4?#o>%yo-UE9GweE5Jd&
zex5bI*3a+>nh9ftPIp`#Mk^QJMYwc~VEZnEhxz%sf|Ar}_v#}NL@2Hwd4*puXAC7M
z1rfiK+uK?H(j6Cc+%xFdi?K)e=%vSJNP4?Mn;e*~1pBwWwuTi#x4Rl;Z-Z4<tcIoc
z#UnkciDp(L1(@FLk*O2_DDN|`3de;!-#JJU3@d^F8Mx465(N>+blwq?Y&eX7za3_?
z=Yz+oQF}!?uk4?CyEK$^PSjWUMCG9I<BfK>RObOX-(JL0VX&spzGqg&lBP@qdj1nh
zLgoyIG<w05$wv5aM`eWgZfE4-7|cD)^DkeTSI9$af<u57c?0A~$-r3}wbeMDEUR(o
zHt_G`1N=cm_!|_6w+ZD0N8%mu_X%Za>SRHr^TVp<hkH#nRjqx4=lLTl4<8{AUUOA?
zQ|iSu36pjuSZfjAo!qMIC;yt8(q=Q$V2GX8*bZy4k+hZCdcjodH&90a*PlmE0wYV$
z<UsRJrj({Hf5oFu?ggEMKpz5|#HA)cmvI#ku$Y2ke|=mHeYISZzk)=?V;qdMlOW9;
zNd<Asal`f!)6Bn93Nt*vqEVaTlhU7id#u7HUFbLyav2R5%xkQX=W3CHrxe(Zwlo8k
z4WM*goS~lzUzJbTqN(V(%(}3VFeX4Xc|$b}&u?v{5-$k_9yIcDrgDLX9Htg6X<(R-
z_h4<z_fW}X4_dS&fpka{62>8e6EH(TMH?FO;JI$Bgn9skfd`emL$`@=@>oBaS=4Do
z*1+%NUASJhG^(3;kA*IQqqh6*M@+IV)150C<R+DV6R(>Jw<ZRV^P@vjlRENF`;>&#
z702)=j8sN|q#j1VSPXa2>SEZfiOM119;Ge%u<c6DA&G*|LUyBs+XL{0eF4>2QfMJA
z29DAT9!x2uEIjolHT#A;V2*(Upe&=~B1;}c@TR!-i9S{LQ&E_F*hXMhD!uA%hzxL9
z02ER9=$vUQz5u+7o(5zMB|ZN)qmHp9=6K?e$cosoApC?rFV{7nAn3T{@#;H=aghR0
z7+W^$#gk87ejf?MYanRxnX#D6dVAriQ~p2=pYpbk4tPLjmo9!yEFS@!0t6LIG^XEd
zO2@e}L?%*@pFUIJ3<?I(?THt9_GWG#H%2SB9^c;<*SFx%-gn~b6et5G)A3lfB$2j`
zqaflSIbNHbowjbV7v+oSB80t8PsiN)C#daor$1>piQfq5IBkcDW4K71-1~K->=@vf
z^=Uy$O1>;pOLH%H#K+lHew8x-HLK;+>}3PSF0>o8eClQAjI$lf(Qfwg+GLpRT-65W
zLI^km$eHya#Mp@0l!g|96nYd#1k9p>jgNHU)CrWwmYR@{<9WH<Luu%J(2xJ=UWbl-
z9`!1Ni;e4TGpmT;G_;C8$%a<si_1u*u=2f@_^pIE`(hHJg}drzd)jI8p}1w+TWjzQ
z-jZJGa<5A_3Skm0MH)Q}9ZS;#<x@*WJ~1eo8&h)%qJ^DI8p_z)gY^oS3vNcJOY**n
z)P@6=slyl97iCS%;DrG08<yuXPq=R}^k9gCloMq4%KDLb2CzC#DN4XH%HB~*KBp2H
z1Z=$Pond`!qvV4JF{~FB<>FO-Qg{7AzbJtY5Oxh#NOz47lap-K^>%waGprvkzxmZ8
zWDr4O8G}^JQFhU7WzLmWgB8xq{APbYc!WN6oDFHtjW6JabNHee>%J943!{-=b^1dL
zeb3EyQ^y`xnp%l6l^b&9_Wre9PM!(&gkU1hvALyuR_u*hq4bI$uj|<IS+3(ZIy7(b
zn^`vjGQGvn#V`l?9N=E8?f-)sC&2;YuD%Voix-J`a4Sn4j;d19hLWJRbHT{9(V09r
zYM3~Yc1MGbEp3(h$5cdtx`H>CWh}{UP3FZppgGl!a268Ta4GqcuTnncUCP?Apz^tJ
zOhh`jVR}ph0`+(3rX2Y}SBX&YdI|vkp5y}p$T5MFk6U1!IT921UmbGUoKlqdmh^vl
zZk4m;Z%15*;^!2o9@a&Pc9H1MatA+>m4k9J$uFDitCl%(qGfZUNm0QOxrJ3&{zTMk
z%xy7*hFk?*MC09LP02`Ru1$)(#vK#p{g&#@O*+WLAK_Tb$k-Ny3M5Fp{h`F73a66L
zMBNL?B8Y+$-6SN62&D$Ci}bAKl~C>%QCNy#3H0GY7@I4K5CvPLzvycQYBs~}?zH=m
z(c}B7fTP#Epa~ks<29te-Wembz>dxuKBp_9qxJr>f~+LaO6B?B1BQVEqmMI=eO2Fo
zglJ@)sPO7tFuUOmCVmCP4o<ND?_O(^|2rlOHY}~}A)ov}%XP*htD5tIP^%}afg2w!
z#!fUDB0C_VUJRjiAWJqLvI$lPhc$k1<8$a40>e2Yxq>hv9Hk#by)#IS8dh<SNJhNg
z$j!rbGY-|_n>*}}2>l4fCpGf|PV!dM;HD8@BA_1O-DWmPlu&X;o9Qd#_UP`sjZpB8
zsh}eibnS>sL8lVO^+?==WLf{EFi!87iA`LD0Sh1l^twVrJ=;8;$b`Yv(cu$QQreIh
zp;v{1wg6vMcp#e)dN+rp){eROoXocH*~Y{})EiA-7-Luxg-7d$1qEr}7h!ABlQg#_
zg<_mnbZwI14AOq^0m$LBKk323kVWxTNWm9NRS?`Mkc&x&j;}4UWKI4bV<c`}CGE`Q
zL6Rga{jX|_z$Y{pdP#nsj0jv96<O1+2bCp=1x3bq3k$$Mh=8s_5am#tTmf7@iU9|3
z61cX}-oo3Hd!9B^?G`Z4QWZi*2}ME17bon2(Z-fc!lrQ4k>kY(J|clc?_{+Fg%V*`
zx$$_T6eVMd6IO*&r#y+4>sTeiB>MbwGj0gZ-@G{OcK2$@&Ttw*qu^uICWE{TIen3M
zMe_o35t>sly;5?}<<t1BL@z29WY?O^)p2nh@9es8Sdf{j6?L5m?e<)3rAMWy5N7)v
zk`bbwnunwT7tM$cQD|z~O{{<dGhuu5g}S211p|-rWdljj@}%?Pp?Fv;!(kaf|K_-*
zP|EjC*GndAi5POmoJXNQp#_G(IDEyv;0TCA4Vq<jt;wavy0m-rKC&LeG+(U>g&K)5
zy{}E4HEK;~V@>4w@>?CM3L=MwT5a-Wvu2}e_?c7nA8ad)FL@&b`e!kRrLavcG4q=d
zAS^X?1vY<KWk0D1llT%o^z!vaA=A`$$p08LjH`S|rL=|wv*-yk3)ELmWKUN~sW!`S
z4MzF-*uf3(0hnWSzuZGwn2#pjbQqU<`=pLH{?UAYR6PCWMNaK_pj|K=BL4=H>B(vY
zgLm$N9{Uzq88JLoiO*2lWs^VrT8ImZu<Q%WkXP#h?6)Ey5);cQ7<(*zjW&qh#S(=!
z*^=?d1R%+nAE~#?_P-s|Z5SivFfS*H<_x*jYA~hcte#cMf{1%+_ZHul2g&BFC^@BO
ze@47dpQmQmGX?NZ8KU_4=)DqGx6Dys6Cf3<dH2%QNg@|`u#ikEDp%K`REBR#Sy?3w
zx5XUU!<AXV6lK7!OcU5<wPy+J9h+zd^^?PaMdF|&`F-}P2MSkv1(VZJp&NZBc{RW@
zg2*9)n4bYpOWP=fuJy0_9RgpsTk6}~xV@>KZK5?kYSMMHO=A`=W9oz-;J;@Rk}B1g
zuh_l=;v!5NeG?n?MEU_PC5KcDxHn=YijJri@-{neXH`9GW4V8&=j7w4x6~Z6JjdD-
zKN5#Qe^eBaEhi;5PfApnvY1btX+U`#*p8g&)F}#h5$qKs-SRxEI-a|Mf1v&rK>?;$
zgV_gIQdEi)!cr>S@j>>t$chUY&ekz6t<6)n=ExTy?*JUm1W6rKr|?v>Hh9UjigB<X
zzSwPrm>Ds`mHT;Xk~@RELU}^Mi>f9nfe;8+z%hYYmjFjeFa`8-gxoM7TNRY)Urs(y
zKYTfxYXTyj5@2%ESU7@9j1-g>D}7PTEnsixHCUltz4Z~%#7D4iFN^!x?Rp8qd;bWU
z3Ffp^M<x{6xVT@)l%z6}E{w0EsekaL{GQ|=ig68g=^POl!89Uq)OkLK`BKZ=OQwK!
zG(NaoFo+n$w1Cd59FcOIKHe7%2qn3DQI+|9hLT|@vWZl6Ilxn9QSc<o8K7zG#aMVY
zxmaEozXgFq_}Cq+$uXM6^u-iE%zOH@kEgDYW7aLN41zS_DUY*B@K<Shn%n_fBbr9E
zggtF-0oESnep4Yi?EkFzHv4VG2F{@`d@}vu2xOsO7qiEDHpXB>r8LCyHVSTAobeGe
zOb>6e@_-PP9`TIif<b*ct{$p9cn~#@$nlwjY)0&m1ZL^qk4fgby?espi2;E-odYdR
zLm4<f5(!WZIgs+v%qp{}gwAP+2&Ye1!?J8dLCjbf{`pqI8iFfEk=1lAW@)aIzsM;a
z;6~D%IPAMS6mh(9KT8u<!QS!G@mv;+r+-ockzA>JAwi4eGj8t1VLm(OBXT{`d#gz>
zI5>tsUi4|rLH@|d*`<u*q+z58(+b=Z5NC2Mj(kv2Z_0@cE#W5q7GaZHfsh;Oh6GQ<
zwa2p(_>`kdAnK&oG<+4saRFC6!Q3kheUeY)?*ika`h;kovYk=4zU$QokwfzCm_<;8
z!Iu$S8tw%4{9(HMUKCHPoJbbe;hFv@1iP=Rup;%>!bR}!A5?kO4B$u5bklG@KjkEJ
zSFU106q19^y*#;VBMVb~&Vj}mkfTE3-uUniXNvnz`*Od4m|KWO`bh0qd7{Xk(zJ2U
zYZvZ3h|rBV&BX@VMcc0g4ibl@wEcgX?y6*O@Xm5$kd}95OW<xEph$262h)82Tm3C7
z4->3ttc?x(!d8e>%P|TeXR-PK0?-_*=~iS?*jr#}571+{U-A8N4BT6(JXXR71MUWT
zhJ^SV?~f1#%=u9h%y-E@zJaG0aTe1N)J{zB3iB4Bh~HAOEI|}X-@s+1Q{}*77_AN`
z7NFVg=+A<P=k3lgvxPuUshRM0?xjg|WnUhXa(%sX@WZNMpn4RHxvsBU1Hn?GeMZF2
zUSUx}fU#~N<$B5UaM|e^tK`^x&Vx#MaqBq&{50kAlxot-ilSU9{~&Jo=(5tUExe#_
zX=wybTS9V8L53C1i00&LK+4u*Qu4keb|3e9H2PPX``LUFG+Bc1`Ri{1fYGmf%g_aQ
z1vBzH(xVNFRU-S)A)=7NmN3~yER)AQrg|H*ftN#zz?n^iCs1-FWT8yLIs<oKRhRH)
z0r6C9ayh=#?1?Ku8J^#yGAcxn^d9OA5)D{-{vSnL*My6q=0fGYb2Zh7rq&LRa0_3*
zHEy0K&dffZG8jYo%%;4-pA=HakE&il*rnt^2vn>lDnMeXdWG{rcUzj)g%{WaA=o}5
zpKayuc<Zlg_D-5uDuuR{22x1SkU~|~`Atb)8)_<!16&m<l4$utMG1bp81EJjrCB(?
z%02x-N|JBzL+BgA|3ERSEx?NS+omoc{>M=#1arOBEHj?kL8@7B;~HcqN&n-j%ie~P
zvcn^Ax6x&L3}JeF5jNhORsXLg%wUa@VAa&1D4CiE7)(SDa<y7QFHsWZZOG2|&K<DA
z);h}L*Y=PpISpzM2mq-|XgHm9td3_4l6s2!7!{Xxf{Q{>&9|~K(Oyoj4ob)u_f^>V
z;LPx7RZR$vN5qLX3z@iR+CLL24jvN&R9XE;vgM9dBxgbU++T8aX1~pvlXi8NnmP#0
zG!RcAD#JhD8>ZSpwq%;m;?a(!dczZ#8f7HXl>lbBa_Bh<wwL8g?D*KT>Mj@&jcs~b
zP-|N1Ngf9C3z4|vQ4QKs68;2ak2-y-&kR^|>eZ$Ir#k^vw>qvdGztMO0~cM|1vuei
zGCf|K;Iox)DNpoQ<iueS01h~%Z%hgDFdqE*tJ=fxGqzRTq}9Qs&zj$wD>MY|E@iXu
z*ix<^UMi#4V9}F#!2rcwuEvVM6?%1`NK4hDs)A@>2oSEpDC<tflM0HLx|~R``i1Nf
zS^N;E$B(dIuh<0~M%x$Y>&GG3s<?lSt7o5~?ne02iYm@fT%+E2<Q~9L6#QX8ylR_z
zU`*YB`v72^XAI=uxD2SJ6R_5^*W2Y{w`tub81u8KB`LWB5?C-p2F7%kTklxYe9kPR
zTcO;Xd|uo@oiSnYh0^{`ZE+9~hmTN5JTO67aB=~oOBnZCl}A}ab;ThQ<bIYsyKQj3
z{Eo2-phHSKE;(<MP{0PBEkxc^ZI1tyZMz~JXVGJO)T9ndscZEaz>jwv(~;q*j4|O{
z*bb?5zbgrrliCrwhf$>g>0iBm*tuBh5MQ<2OTbrZ{~CL8ahG(ix@BXD;FMdCV@WNg
zLv2+j?JbCx5+vz#4SDq|y<>j;A-bcnQ|K%Lw=8i{_ybYSY>v6q2Bm&?swm*>FoF7J
zF6mpWe3?c19O5jPddt~!?CDX7^3+%=8`Q;ZuvH&?guP4GP3@t3oc%Lx+;QH_VZvD6
z@cu**d`1q8eSmr)B;0`%)qAruhN)rHPZz^Uh=hr$<<4iwdDH<W*u=kZ0DP+~znRdN
zhs~b*5!GpjVe^TSh=wN7p`a)#o}jSe4w<`iu`$yoDmDEsb`7c(ati(j*<VH@&5X01
zL#B9_J-e-;um$JTl3%bNRL$m{|7fX7EljM3?tHlB?QG@7d!gO?luUG++;j2YCB7s{
zBHb7J<*fdl@T$-WYTwxWMP39tuTELJU;dJmhLm4_u*=w;y?~MPgG7vrd*-#1F2)-P
zu7Q?Ae@eoO@f*;CvA6^gbC@vP2tKGiJo4)YWKxl+`jRCIT8?gTm$5ql4X9T}T;Va%
zodI$rWDfSsPb;xU3XV`!YBw{47Eo+Ep@js7LNavBsNNqm`L3AoG=%s;p0`DxU)iLF
zaR@cK(6J}>l?YC&T$oS?>gO%saQdt+@@i*X>LGeQV&e_^x_(6)Xp8+ZL*xVnN-rgy
zYce%dL-~V0{Ac{1*|mgB$|I-@fJ^)k6e1wmEwQw=gU?VdHRw?gi!@<77%EVRWNh0G
zP4_tadQ{6AjRg?lQoVMy|2d74;oumz$l(YG0Y2nR4mH$;Q~JbhEL?4y_8#`Qv#SO9
z@x<>#z@P+*MQN{X_JS+C`59_rM3}U@{~sjZ1eU0bKFL$YyH<1o-uf2x4tGkwUyvY4
z;sk&DZ51)(QyJ2MZ<33pq)G_^6CDYj?>o#of{sSHQzJ#Dz^$FDLq9n@Lu;YwSr~s{
z)SP@E-je{6!n(W1L4+Wp`WfHondcz6;nn{S7mEv7k&YAPG8pLOir&gUDGWdf-_O|M
z+U!a7INzwOB?JlvnQhu2@!_m1W5H^ouxc}Pe%3_I-zB=F;;;L@HeJH=8PqI7=%3T&
zyUh4J3%$qLf(!!X2k-cQ*YtC{Uy~6WLykV9m)}{@TR34<9VP-BW?{wt5FzL^i4{N5
z)&;+af(P=1fz?7da1OuHM3<AoTTc>1eVqPt5L#bRMkVJFNZabR`0sxAs{*RKVh$HI
zd^w4N^WHz@Ch&I*Jqf@|j{bV)lh&&IG8a{`QK`>SHG!J=e<?fHrna(VP5+f0F%fm#
zF*eN|GoNPb0tk>qNdg;x6Ci^MkZ3@5;a@+`o9iy*I%iJD>8?W3zO0oiFK@n?X^g5^
zW|Av@LKFBLwwt~LAg;K3m|ZsSYz#C6mNa~&Sn!7Dq>CLGhs73bNQM@3oH%N!5Q%H(
z4qCH>_UC?!ofxpETk_R{Xi*kP|Kv!5e;Va{NKwNYAs$x;652+6pmP}rQl~CiII#8L
zqj^U+b0kZ#RX4>NnnWyRE40Hd@x}p!#^*^SD-y23hr$*YKZ&PQFT{#+ivF5R<PZC^
zjFt{D-O?Qt>u?@?)<g!8GC%&KV<892y*V8<D27(aIji)Ybh&u_OWq9OKW%NoK!ww}
z3d6GoSytXVp3N36C`^P5c8G$3sX4y!jOUM=y&c>GcQOyYK&N+|TrzvYgdDD=6Y`tS
zscfPeXmH7QfN$wXtrtcwsK5-jUxZP!zC2SlHW@?eT9|QEVs!y?vKd*n_=~fksNGWy
z3vPw&2Cc8A<WlYRmQ`{z1rk$$-q86@;^hXK*1cBMZk<zdDQb^D?O{(ah&Gj}`8@t5
zjFtQC5Q?8NmKF!Yj$P8X_BrW0T-&2|gM?bZv90%6#$QmoOAL+}$FT>r-UOx5t!+9_
zV^BlZNSvp5Db{rb-H9R;(iv}8^IwaPcq|^%5Oh5dll*Re13JdJi+u=Fu%pR~-P1h7
zY->ssHvUCFUB=@@U(_Gh{I_PNV7yGo<32MgOqP!P1Zh;tgPhmGYo!5%4T`M*bCdN@
zi8QXP4UjZ1BD!eH(y#G9!~3VyPbrIRP9I#YKEg--W=a!nP1Ugj{8L>!-&<x_$Bt%U
zEDK4E?<o<_N2u=bq99Mk;r|@EB`I4*7bI(__{=^;0>MZOiNix$`fy!+kM?v~f5z@P
zV|BW9t8)qMfShW7&_C?^C&2#JPeeK|s_e@*#b3!C+q1zrMYSW?`AF$OyQ+tt^W(o|
z71Xi;aJQ=7lq3#E%lZ25J{ox1qC#4^JO{$$nj&sKa!yBov6?J?%amnqE_T7Nar$s*
zwFyeOs`<7dvrb3>gB)$GLGcfxc!$grYL1|A3;8ba4Vx%EWuTt+oeG<qv7AM8p1i`O
ze4UATzu{m2>)5G;$t#C582<&W?oR%JeZB*7$NnVcz#*jN-}y)$x_txFaHkg7p!`ws
ze-cktKKpg$ItftQNw14fVM2RsndQ2A^oLDHPC!~Y@DJD1;C2;;Lm=7d;+nETJYQ{x
z|J1D;FM|=1&&p%Chg01uZ$AO0R2MZ9Qcp6gZ^u*eDEx_b$rRGqP$s>PthrQ`Pu<hG
zc#{ajK!!rb)B1im1LX@&$nFOF+a9yKG~N_CT%2rN8R{WeU@g`4{Lu_rCP2U}!MXC3
zTa;V>g0B06A;L>P7uVKD&k05hS7P$~lhlf^LygO#YVG$*2X>DwPj#euu6IHCCCr4U
zS>dmPbFwF*3S2Xb_BHw!`FUIUL!NP)d`hm+`4fOwzjsKVd)L1!Fh=#q6aHU#_tKlf
zo#?1XyRW)gsqPt<4lZt^?MTd+k!H7+d~CLNU$Mb||Fw1C55)d**y*OM$I@ewrWX<4
zX}aKGn%wQ|5eN>aj{quWq;0iJ&jsoo^QYS8%t2YrJ%h91pYEb|EhrGw8J{wM_B4pb
zFsuZT#|3nMPr>Gr+?D^-Oga++(DW%^jj(NwU!iGmCw)Mk_I8aY)+0s1h1Eb>w~J%^
zAT%9W$g~#M#(Q_ZSh4SzEp!e~isEK#Ta%y2Ah~ekec%a_fl&iQcO2INfP`f7WE>D?
zrVxngOwDIMnH)>`1^wc1v@^%mT^O~BGksjcJv$^7bzae4jr6HeD`BHq5>@xthOE)M
z?95gjDKJn+oD+Y4_ywtwN7~L8YKD*D0#VPs0>>7pMhhz#+Q~Kq?Gt`X{Y+w26%^mF
zy?m22v6#9fmhecS01EwLGK<p`J>q>%8lDLmz{1hB$;?NsQKulj?Q3jm`9e8aD{ho?
z)7V2m;u{?FYgvhm)s?=;!lAT%!#H_8#1rjj>B$<oxdem|%;TqZtx^^cQ`oHOBO!TS
zFJ!-QGrr0fQ*4J!jGaD@gMl*J>DR%p^7b}OQ=VVmC<k+Ai@dxcL)kl&f=l+^MXyFs
zQ9B}b*v^w(QYf;9=P4HTQwQ*?*@0wU?0eAW;E2O4M!g_7c`e%rLq2{Yhy!;d$p7gx
z3s4>LUB71DTXCSs4<FE)OORuJ=1Na+cZ1MDU!zkqLJ`kq%+i5j(6d%#?%2PG$JJpF
zBecR`!25O0dTFt9Mn?wMOH7tdY|4=kM97$m0_;5j_273k2{MPY3NPFZ3Z!x4@t#co
z47x5n_(MfWr(zbj>7?9iiy?Z52@S&oGYtizio-U$xdX(JY4i(A(Me6OkugmNbjZle
zW>pZSGT^ZxmAgd?zI*oN+=<>=Cpm$3vC6gINyi4}ATkMAU#EutP#G>G-~=&*{z1_}
z;8cL1kg<HbT0Fax1y7Cl`dgFkC)RjTVL|>Z)F7{8H)o3JT+jynR(*HK^WPHKLXvak
zS0kDRq3A!fX#ECd{Iouz`bOwEFD{06?#wv94aW;8OmGU#_vjH7zKdpkyDC{Cg+`&y
zRn7jvk5D&uy5qkTPp*l`(L?0<Pw_dV1z7dld$3FIX>AZYn76~(_#)pH?<X#7SPS^E
z?D|hWcCSPihIKhYKnJfh4(FdDLBhgs|1MCpx>TrGFO8G&<MRR@8X%pcSq@Lc*p6f|
zE~(>uJy)_1Z5lUzIa1?1?;&kCuJ_zn{ESjD(d#9KH(ZL!9QBAzbC|&RI1Pec#aY%%
zs2p4HgDl!2R816DRT%>{VxaCy>c^Zuoe8iV4h$lx^A4^hf$cDzzqS9Ui{cI#Y8TOa
zFPN%6zD5@lS`?^Co{ew@jb(C)B}{%;SyY<9Y8^7{J-Wv}Vi1H{u=6rS9;$BeGXQKH
zVhHhnO~=2~K>N1(x<Is<25zYm!_av^=X&`&srQ1qc3j^}trm}8ED$2Tk6(+*oDxB6
zRk7jJ@D`FwE|SA^&~uN@BeAS9I-_dvD(1AOwcCr?du}U*KAJKp@4d^*!-S{{Vw~MA
zz6T=X*9n<A1`r%yiLRgF6T9jmI=aJ;=V=eAQH#dW{ZJMC{n^BY{^7ym@~?|h&;N~1
zuoH@cN7Sa<4~fKK1UFmB<I5E>3!pB6r1r@%Kg8&PMJ5-5K;KQR`b?VUTDbm7pB^cZ
z(7F;_Khw|25l^759D=ks?f7#t`9Bw|T}taPs|{!GePVwXrE5ppCYCE_F3E^*EP_?H
zh0}w=1C8*6Yr$dNe-EpJ-a)>&YMx7vc7U#tfb=HwN+o2=J;QPoEXrM;!`XvlRzJ`$
zMzWVV7Auy8QZ>vbn@qmbt=?~zZx8GP@EE^H=}Bw*l-c=QTt7oGt<GO*piM;x4xcN!
zg1WP8*r-z4ta@)_SYY8GNoUFL(o4%tTpAIBCECM1_%i*(Ih7VO^|@ldsT3zjw*fF#
z4Jl=p`6An@Tx~E7gXv92ozo$hdhD}?mtY{u*(uW5JEvKLpShTi%OGuKWo7Dt^9to5
zU0ehZg;Ky1cATZ(gEeqRL^Ua0*9Q_e1QbytmF0I}0V3&1n8_u<vVTQWd6|V+C!v%>
zMx()buYXKk3g@atd6&DB1{UU)OmTsAkAtD^zM%;VhPeV;#BUn2HEzipRI2k)u*i|L
zgIF2WYt>o9_(O=J0@Rs%?s_-opBrQ7>2}}kefa-q_W2XNB@>8ZpK%DNFn|F8^+MC8
zdJw9Xduv&J8;D3WMbV08Cy$&4Z~<DGvvxT;qK6rpPoD?y1g$PV`ItI7Gh#VMg2%#5
z^^0W1QfsvEsvDPd@C-T%nJHvKvmcrlBHuhNel5aprHE(ur-JfJHv@h1^;D~XeT!AG
z{}^g8s|&+8`2kgr*UC?Je*S131e>1*?qsk0&;p0ThbIC?F+4k-U;AK-p0;2q5X#h)
zeCTT7S!jv}(62D}bT0WvP4f$2VNm|z%D63)8=xMq2Hl_4tGRjFp$FPo-RvB&4>5k<
zz$3dP<L(@(VtGWhgj2Dk!Ll<<pg?Th1tcjODg=YR&&Nlo@?UrJg;NFJGFeM1=S^af
zW`|RiMRYd5ae63j$B5~&{w&&CK^W)x-T>`xm%wqip{tGszri>%LpN9n@5Y1+Y8WUS
z8wgFPOx?{dD>x6OK#)e!2idVqI!B=mYEi;`(EqBzJFbz2;Y}u_=RRk-3j$F!4y8K|
zI+O;7GU}o9PudrC6+0kb{zS)R=e=l@gOqbtR#0#QagvB>)TiIEn|WeC@ixlJswLT_
z@qkM+ri`&~#7bQlJApzYLt-i6eD78FSa;~9yZQxoAo)~n1|GQ_4bxgW{nI{!(F;Iv
z4}?ec85Z^AiZ&_{fIvN-^Kz3RUG2{KZ6qxCHkpC&r~o*o!LzLfx7(nxF7u~mmAdNw
zuZ^8g8(So+G0&5~-JWmas-IMis+YS55UKF=$x-B{#bx3@#C;(>8ogS<8N_Zwn7w#T
z7h`BLS9e#m+{fa}YV{0AkZr{MWJp7OO<3_5uoE@rgExpaco(xFrUD^+voh4Zh2Gi=
za^)0!tK^;3MaG>ah~?Rz-jqxNE+Y{P0QQVZOzN02B^NNJ>Ceg$_>A8@G$oN=1-sw-
zNRloC(w?$1k0cg;NR3dF;+GI8){o~f7_j?B+7Wj2Ej<BI3o&+t1B#h^$GNiTDHAyk
zFRWUWcvK1hbkG5C|Ht12G(ie)IBia&Tl<H2SbRLe`tgv1x^Z+~896;kvWh|1Nvq29
z{hfN)1iE$PHU)J!hHxyh$lbcQOASWJ=Y9wd0_gf#v!t{LQl?_3q}}j6g6h6Yn)0ok
z&zj3Xu!LDJj!6vKY<HNVzExcwP`DgY@@~^UySn5&pt0BT1BKx#v#E+3!(fXjKI+N~
zFnWmB5J~$>P8B5r$RJwb5+uIpI#VL>>eQ%4E)$JOT=rTa22lUh8@lIJ_b&#6G*2kN
z#vSnOXc82(B2CLXU^y7VMOl7pm_2OTQPbz^g@dP=YCu^u-3D^9d(+$kY}XJLI6M?!
zTOGwmN-z|Q!|8E&OLl-b&S6v@C*W<NKxfLegq`gs_fL?`OU@}nHfOZT*RZ{_F(?0u
z--XvlA}kg_eTJw!d<0c`9HUt;Slc@^^?{Z{E$mFc$PU=9I0r+Euir4(1*DLP^|dqB
zK7>`@0IFB-{u)1^#!3%%HQsAaN2(m2^%Q4^3Ofkd{*iG?N8<l6`97T_DT1V>G^;`G
z!GlN<IX|W_pM;uc_?<Z({BIOKWG<!zsKfS{ieFVT#5_G*SiG5s`8(HY>D;K*cI%F~
z+wy5i8I^zmZW}3-#q&a5gbq+<e()8D`{gS@AXASSYW6(|%-`Hw1-B?-q+1}R{fehG
zyYY&k5^ux|LUTHs|LtN$p2H#`lxFT)Z=pS`_}iNLq|57d9-Qjqz~MitK!J!DeUEo!
zaa}TV`<tKxxcC<|yTIlYMxIE6>OVC-5<$1TLE2W<i?<|y`?vnvF`n}!1MU<Q4u7ve
z;sR%tmkSa^zTwJORufV;@S8bK3il5*!VzuizNo3~+JbI<(mfyOxdE+vcxfTIW2ReO
z-5)q?f`=SsbqN^4yhFZVQQVleSLHapSt=p|HpJZzS3vPlbNYl7CQacV3YHWI$Pqz4
zA(IR7(c{lvNr>;;>J1MVgd*x)5?uy}U{V1|lhc<TIDU;aro7GqeQFark7MS<@n)fK
zei0mjxRLb`&M2u%7yB@Oy0(&@ERJJVor~j|eZcruU%I_!t_2!1guz4^Q8g@Uw=OCG
zzKY*J=oO*COLUHeMNr>cXe6cV3TsL1qy$M5zD|Lbk#XqtyO024$4Kbt9FEg-9yVB4
zyzeY$fSX4?f}TO-9cZp-ty&6`mi%<cwN(xG-dqNM#84RTkK~@FpR>2LB?PYsxLk0}
z{mbLDbZ-b>=Xa229=s8d?4FE&G7qSHFLF5~i$U&}yb)}d(voS<FhGE?r9O=^n)w^M
z2oV9ILPh$GbK&IL`)R!_46m!~kuNnW_oR>@^eL9%{>_*_?_-hZ#O0@)>x0Y$+`UGg
zd*inWPSwBFWXPD|a$cRt`ZdEzmWB12Q^M*{EB7%)1!Q;`ApwXgF?y$pm6A}>V62kB
zxN%Owl|eL)(SSy}WQttzn03U9&LL*-&mnpwlt(1D2$Z4QcYGp-h4jCmACLM&i0M63
zOX|7PPqSKCwjD<>T3*}iij;G#XlDXOyHi2X55iTPmvV2^LK^huCoQd_WjBBOz2Hik
z1in90X8foSMw&bTgC$^qigOF6&k2$WqemxugLiATLgZ5q>`Ge}_6WOqaDIyL(cBbJ
zt(zUu0-$5u@wP>Ve<O_dGU_w>Y@u|^@;AN)kC&2&bT~`J%n&uvLR2i^n1m?~-`WT4
z<Z;?iVK@$MmwY2jH@1r!PmXmLJ`@!u{tijcFb9r>o6LUk{~X>42`7V-<Gjb9!aN>E
zAXK%#Gj<W|nV?@2>`jVyHsGgygC|*It|;LaY!Gvux!bdj3o{&bJ14X!nBL=cEDb6L
zD*sJKos)LsoW6Vh(CD4Uci$I(nXy&fs+15JYlvfo7E)gq(+8dfNS>crP8u*{SHi2!
z@Xt3hrf;S`RB_~9ZkOS~?kzR$Mw}lu(z$1UygSr1Xk?3x`owP_ff8bVQPWNGMi23T
zCudO|<Nh(EwK#SdqFPyGSzdCOvifc{)HL3Jo#*+lD;gXbEy?**OR}r>#Hjdgn*{i<
z_KpU_LLJ%Nw;f9-#Gv(*uryaZOCnHmL$;7EKI%GS9T&~(if8X1ez_^<2BUg2wOXVV
zYL9dq-lvw@X)If5&3-Zcn)Tb_DYmNy#gxQ7nz!hB_sDTxn)<edl#)_3GOnak?6Kb%
zP3>AunE`2Jzr)_)P3c>=^h!y&zJ2P&qQ60W#}5?ngtr!aIduUV&Y$PhJ>}FSS$PsA
zIN0Ts^2YoxG|nwQaCg~c+YZJ=@0`#iaZ)8X!2W1%ax{m6ZJx(8R<v*F+i^1rE4Gcl
zd^~|8$Jjuc%;@Z32t&fe-Bjo$vI4D<(@NAzROx+DeNHJn@O+d1IOG0G4}2m<;r$=w
z249U8HY!TBK1AkmX?C@s@xq7Y#M^!FZd)B%^$qJYY9vy<HYGh)nDYikD|9(_I4S}|
z=;r(~7GVtCz12HOtqviqX-@TWgWsKf=CtC=K0IN2W-7X1HUWnLS}X-DBp=;h@M(t_
z=TqKJX2HwqX_NM~r}Ha8W3CTpxF^;T4Wh;O2!!7Q`<%8dpDWU%>K#)xTHz~RAyDrE
zPUgr<qQFB+lW*;G0E<d4wS}*MKIiX&Kn7`nAtH@WFu@KOG0^DH43S=#bT-ABw>SnD
zw7OTzQXI^TEJ=X7&4pj-RC|3NU2rHF-SL}sU=<CYS?{EM{-DkThd%fY?nTu$y2n_F
z2O6`t7F3zbh*@}1h?+tIDJQk{pq-w)Zv#Pcx)JDt?2rS5Tswr2bw`50je(7)-xt4r
zjll#E0enS?Y=c4dJb{8nzxJS}G2mung0GW{%9h~dA*(T<y&q4OAnmOkfbTz>p6X^-
zq|izS_xtP3<iD;KSUe#MApwWvIzYXK^sfUa*vrI74~?hH_68rfv`HMDX6LY1vmY?8
zJF(lM20LLzrO1k{;%Zdt#tN2<NfF)~a~KAz5bH4twCemvqA9<0*denL(Kk8Y(oo}P
zMlM)YVBnX$_pCl|;2P34(8kGTUIYETMtpnzD?XIphSH(pvFU=ccu_=5cP+PR^$mSi
z%U$CTQoROCjN|<S6498}2LkY-?uv~X-ajHM4cnkIn_o?)S-=Tng5enB+m|tsY=IL!
z$+^nZCId}8OU&76TT%FWj6#{i37l~NkZ+q46Q3s=6V12E{vEqp;&ijJ(_eSvj5J?9
z#>xnc0h-te_K%{$fO}O~d(M@(L)T+p7{)vtNU7tSPcLtpipblCv7{^3XKw>5Lx-wE
z#OkXMO&fZNgMZo*CCxZDQ7i0=)jSf?OmJT~<j_g*eHs*Kfpr<O1yS4&zanHI*Z9Vt
zAK_4oMk9EXttU^If*OtH#2)3%h!|S0IrCsHsy?xmC$+1g5FXLz<)ZihCWqlZn{ywd
z?-;nNl22Y~g?_v<5ZJB>z@wn>ZcgQzsAze27cYrLAix%Ko&@YBv0kyV<lh;xE>b(H
z93gX<kWwgq=%e6ph?yM56V^p6H|23-=p7<6O;M|b4F`IElCyAE`zjR>tWC4-N`Iby
zOsN@flX8BQpAqnpiRMr&uu!wRkNB*QS0w3t%6gj<(gf*w_}~1`1Lb_PsZ5}m>@D*W
zZTJi-?NvlCQQgg_wC@1K!XunQzTky8szsQkA$#aBf^z{IVm}V0XaQuR>eLV*18+Xz
zhT71t<PxhG_{g%)e)$!X#8rzjW)Hf~syS{hl8JR#1xvH8SPdw8PbeAp^g9%CYb4e!
zCN}PI@eW()@8cg-%ooZdSvE4^n9m^>or6F*zkqlK(`2xE^t;)C;AVpZe8K)PaG(uR
zFYZE$k=`W%<Xh7cmHa~N&cq7Y)2ls_p)m9;c_pw!0T>o9UEffDQ#_A!YTTBpj8>AU
zb}aF;<^0vIYJ?k<e`7Z|kz8igs*{(Y0+C2d>0U_M@3l`9Z0F0MZ{a`w=1c>cIii8%
zh$^wD{1DG^gy?wY7YC99e1iqiRZutOaa9*qWnhWugW9yWMrUmhpSaOxRGaa<6f5&{
zTyE>n;wD76&ZcB6yce;KNl-=^sb@?dSyAJkLhQs>5+gOzJJ+qUeXZ)WXiUh=C|~)D
zK`%HT){Tj14VYa7e~+5J2PjCf5d3m%4l<dvwS?s=A8+&(adf3t>9klom$lZ~kcw>s
zHNuaVaA5psl!vW#@L>ak10P*3IB5Um8T?vq!{lKBC235G+Q*pcYpt&|PA(+5G9#If
zu1UcztdD|^wuao}f30RbHX_?Xj8XtS*x}?<y;B0Zidwg?mq(C)Gh<VpR`@_I3SNI7
z@DL&&z^B*ZxI1ZDH3{LzCq-0H+fAy1zAcpuiFmyW6&z2KTeyG1;b^9SAh=7d18$$e
zV0wkt!vs^bRgct~Dm*ZO&to1}2Ect8S{d3t5W7LRtST*k8TzyWlHmy=MufAmE)P>3
zP+c<i+;M#W=}#fkP(myks77Es-|@BbtL?2rl>Pci(dm*)DFf}8-SlaiEYtV%YwYge
z#}NTMjZ-6@3}Q>(wWz%N)hRUNYs|)dUca}g3Tnd1+L8;a!8Q79_!IR{-;x81ViDda
z{X5o#l9;q{8={sIz8L;!`sqd0Z%OOnM-+jxdJy&(N`WP>%Uxz0bj-Ev9MErd$WS-4
zV}2KS3L=R%9LDV0AILO99~e*n#ZgU^A&8;)ljC0qsJpb<BIcpLKpn#8Sklb&6}-sS
zK?YYko}+AS)USw=&Jx;+CYy>EUp=cienlns!9tRZ{Ej~Wymiga(3KaJXS3(^NS{S&
zYSPl<1)k?ip+?~m2WCKYxs*}(6wfgr33d?V?GG6S{lh!2SUW3XxivRSLHviK`s`GE
zl<c+W?NpsVygCb19Da|-;q#*;Zk4<A5w`cNB2|}hD$t)feUJPHnkj2<*;Imeva3Rn
z)`)oBR?xD|k-{DBl>{Gu3%MW80XtvGhqyyFsXiD<Vj06F?Qj`gyz-%=BDVX{TMMcA
z;j?u?S(87`bPf$%T#+s=RKGgLb7zbJxT<?#HF6%^W{%4$D@}6<&YSUoP(w{kOK~J7
zHxUh60nJ8OjgS2Ig&)=Tcj%K4XDh^RHIi`SF1QES;L_3O#!3!h`mkG0*P{dQE7fd>
zJstIqjttvAL$<xPRC|qMqIOc>C}Ypce5ZIfq48q#1&&>#Kb>zJLAZBwchdkj+Fv;|
zw5EcU;Ljk*vcod6p)CIW8xwlcQ-lNS@iZaYVrtS)0zEvWZ3knu&!PJQU=$TY8v8Ef
z%Z37uRm1jjhw$1`Z7H>^gjr3FS7w0FmPT1XSvU02dNUN`a7<5b%722N=hk>%q%2F-
zR8+&^xiJVOC8KF4$xYimOfi-i98Nx_+#Q16hU~LfJ^{8@OBdoE*~e)7T`=OUZ~P*n
zMW?ERiKa&@YUjO@uYrT&c0xN>ouWzK?VGeS@yuX6on1lni!qIE`x1Pfl|S2%s#4C0
zyf10-`Rp&%d}K}p#Xf8&<r3R^k9g%2EhWte?1)oLOF_QKqZ+LsLNUpS=V3KRx^DOv
z&5qzMReseO0kRB$EN_gF`H^M>>i)pdtkHD-;>re5n@h_H>B_+WV2%8<@WoXNw?jlR
zKzb%w-*p{A5;HF_6PC1!R~UZhAkE;Kz7UQ%RTowz9&j~Kz#Rs+nK^?srzpiDfbyAl
z41#!B-0&#GHM&1%T^SZ0-pS?;=&{9vdL$S1o+82iL(#}kTdj86Y9TZz35isRp#vL2
z49F=Y+0VEd#2*ea{_8bRO1Q{&_3aI!Yxq|lyap<x*gyP*?7-4r<T>8kmWQqO`U<M2
zgZ&R^xHufGbp`B7P|;&#zZ4NY&~Oz|FGT|^L=6}i%XsSVs`U4pMpU<a3v))RV@dt1
zZ$bYv=cj556@a_>-Yzlmna(xznFo4*dcyHS#!KTz>eOmW|L~Qi8sGIYM_DZ03;G#9
zhdiP@sTZ>(UzsVy5@5!lNxx8wr~E@M=7M$3=JcwTQ3POl#g#-nvq#!Ma{TLau(^YE
z9iPw?EdLg27ngLTj(B0W9oG|m>3<Egu2y~qJzDoJ!-=A65AG7-5&dK_BG-5SvaeHj
zO+OsQJwxFAACl(OBZJ5D2EP6|zKNsjes|!AcM;)PrWXBpwX~@WudzBDVfB^-uY9`(
z_f~4)F`E31at@){%A>7;frpBfg#cxKlPXUXwJx1O$VywW^pADU&~Rp#qOD$D;9$^I
zU5~!<h77O8J4S~hHy9;5$KPm*?;^nF7;4(PX5_o{K}_U^zPdb~!w1H_&L%j>JTS-$
zF+rBX&eF-}{A<z2#(lDZnaXQWIPvx2`EYbTtTv2wg&>@NiF`#KV56cEnO!uM9o<+w
zF^fKHqH@$6&N45JXNPyE8&OWALJm)ud*^#<;#Kair08Qg`%J^Ys)H1=s%fG8Mgti&
zWfY|+3RPTc4QeECC+}JEY@5UWhD*sqQUfRO&_LUAAAu_I_J1ccU7RtJ`DVujo$>SH
zAk#dy>fQc+#tdc|q5yh{6TX_Im#GZ8(P90jvsd^R4&h<3MOI%aYZ@5WxuFeNa2LY6
z;KFdU&kXpDt09}?_2MccNFQjU`x#ae1R>YU*bUSfoiRw?xLmJSIN`3Cj=Ra*QpphZ
zobjP^)Dw}ZDqwvYFPnoQj`V-`9eE6bCwuV<#U@ZUuSOHJP%sjkv#|DD(D0D`=c#zr
zrT7FR1x$b1?zH;vlG3^7K_>xV8Ij`*EDjEF`4A-L&Mlz~h2BaHnLP0}5sJF>Jy_W1
zU8WbwV`La3m|Kg7)m#>cR?lFMnEB_YJN#5->iNAOvFz`D#UW$RQ;s?{vT9JW4n|)z
z>ag&bG(~;TZZ)7mSDOD7iCgXx8#o<8mnfOHnOn3^@2MK2vy7$DR!g~}S4F+3H_grX
zjZ7lI!|BZpo=cqR6nvs(b*sL`T@^B8WW8XN@fc;#N&iTLI}ERkD&Sg6<${u+8DmB!
z9xA!TR*zc)ScEGeivrhEGmZ^hKrMvLeBzXl@fRB<ijyzA0I^fYhspE86mfLJRwX=n
zcq4t-;RJIa*toSO`mHhQ><-L|5$>etfUo}033k;H;M*L;FVh>c%_eJtx8e&&RGXM%
zx1z%S`uYE$_13D5?T?k_bv4FpP>VZ}b+}t78f@vmX|qTtM$oVcO&BdbWc$AXi-~_A
zA1?!8bJD#2jSwXeXjQ*W-p0?^by&I)t)<3GO9AYbPPNuU38`G%sokZ_j@Nu%sO>e3
zmFcxkqNez|PAmkbuxX*r{Tx4FTK&1)g?@*<wF*?PGghcAv_6(D&HVsr0VV*RzfB0L
zdJGepS*fUFLKskd9_p?rbkci;aa!5cfY0+OBJ!2qNd#|K(}@rNE}pHxZlOD6&8=~{
zMmpb+#;6DJl~}F{KBoV7s0{Qm^AQG?@phQnD8p#K4MG~Zd8DA|zi7vk$xT#MSj7ST
zb_u6$rw?zWCXpN8VUF>COi$z_O4w=P1{3N4oSF2hZDfku)L@ybH^wyUvG$!)<1H%-
zOKp!E_OSI?jo<>P#X<z0-jK$&4-0%g+J}iM;Z(~W8T=k)x?ej({|DeD^C$uBPb>-3
zJZG}ra__y}Jq$U~!IVbGLlUBjfKct`NU6qKdd@Dmp>XI39up%0!yOchy^c?ywmT;|
z_qg}$>3^uYeA)VMAb@$_-XV@Tfx_yJz4R(qRz!sJXJR#*(v|7yOU)MfDOZYPz3j~F
zZEd?&dO_bsl^EWD;v{-N<JH>QD@e(FP$pGY9VWgfM4G-2#70Yh;{k!???9z}Ggx=*
zAW|sUSanEIp{fiTQ@t>=u;w4koQ4!Jivk7skVxf)yQI0EB5#<ncwO8~=l<=0#M>61
zosKEvD4n@<u(Ug>P^uD+3#vwHvkjSoym=^5-QGdEJrftPRKu2-=%jtK)JHtju8Ph-
z2KJ)n69c$hHv~P*5}kmlUA!jC@s+g0t<%M`VE0RU<{qvQ7g#*anRWMra!`-BZK!-q
z)|J#Fbda{#?-h-IL>u>y0$$<^;g<X+m?s=bG!BOsg9=Lne3#Zfg*c#1n)8>(`IA~y
zpx=uXT{5K_1qxjM6EFxyteVM&Ho!}IMooChX^E)=gkTAbsM+kPH}=taT|6oZUA*(3
z@ZAJjX{-hfVik9GiA7L@jX}T06@g@vlp?ClQLm_C&ROhg)Ge=Bqet9YeFilEbW_TY
zYnGz{QIF1%X=t`?qcdoErA4g<J+AzstLGxM>yX^K6d?phiT{PWWj%vJh}_k`)`LrX
zcG{xphk2iHQSW#tx~`Co$6F9LP71>vcVD~*aO8qaS&_e)%keNl@!GraOmy&~fIcEM
zS^v;?kK<l{m$;nPOMg@c!>nU{U6>@xL|VQgMR1_L(uqF^2zb;$SjkO`UgA{#+6~2@
z^Pf->Zh_rJ)vZ39o*XV^3HE@8TO`M7h9LNm9GbyuJ}2f5a7Zw0p)F6)9*!Y30fItP
zx;NY-bZ&t1Vt}uNf5uFK3f;@bVzugAbQ;Nnw+V>>Me<R{GSq=CeeGN~suQ7~L7cv(
zAYfG5R`t3#(ReXEivi>QffTxo8G;c1?ySnI$DP!Y+ghA}*DYnj_C!%r(%*W0a4=o^
zxKxwmyX$;*XZ{Luw4!}xYz%heXaKZF=e_z^?)gFg3x$%an$3cFa6ap1eICwU**kZr
zKj%;oZ!1xz`h5Nj{tQg^O5d<I9Q-+~A<*Cu4%VbrNn<G-o&QB%!<LEomJG%f`A;}G
zchqEL#;_*$k(STCPPr?XLESwX*h~1vT_5;Mqfg$|=kLs6l5QZz>CK6|{4NLGPgiWx
z1OWxD5!fsj_uF`b{rrM=NDh^%4y$$!8(s(mymJ<?rAvbFVPQ0LID4zFu0NYQ?SCWz
z-XI>Qa0}_1<K;b$A>5@<f<hg<S>#@=;j4n$a5`T2Bk-9(IID=6@#YR7%y2>S9>Uwe
zDqL#JzHl*Dk$9n2cVW0U{xh*%VG^9*Wd1gNzR?UcSE~|zMfye)t~_H&5Ii4^Wy~fR
z_nOZTG6~*^upMP4F~Gpe5<dGJ7?@B&km)NfgHtRi>SdF6@e5ce;;qu{2pxW_&i9w=
zEU4JpQ}k1>jn=Gz-pBY3m;r@cYt@JXg*(z}FJK;Bw6I8!hFrM^)*wQ_eeVQkP9h!H
zIB2LRrIM?s#a};4o65q(5{+wLW#$tBq&~Sd+Y9%QXq41vPNj19-6c5g{*b^V4|K@`
z#K|s@yQ1OnkhV<XgZsB2p&3gUrl@vTqi{C4A2Z$V*2X?E%!&L1TB9Y>ZJSvpP4b!c
z&t0q-FgyR;BTxa>@nE~=2uK^U8Npht2)x)dwV{HG$iYa<;u9NDb3tv|t&VXO0OnB2
z98}eT5I0KH9_J>z#B93N``(G}HB~R0e{SWdUj8znP|t2kPM)Us#+Lgue)%-@dRlWc
zdQIq#=u{H$(JSQonkD20XQ2^L3-jkOy5#-Uky16ZT6KB2>{-K~4nB%zDaJ+303Kb0
zbdd~V7uH`)_<qpnskeXSD&`o^lNN-+fI}623?~fNvu79bZVgcoa6F~Esmfj60hEw1
zkJaPKV9#)XR{@HfpLa<xg(5rZe5gsk!h(?&R644=##@D?p1Y10L_{A_E39yGwYYjD
z4?6e=WE8Pdrr;Ubc5*(VPT+(|vUQIZ6rm3iTxDJK)ARVRBt@7W=b%6@^K1c4CB}Rs
zM!s)2E`oZ;;s-p@WsGy4yRlTU(IG=)z7#T&3bO~LX(mTu!72$;TV<1>FOXIMhBybY
z&l!j>%;AA(YnC4ZC+-{Bsa{QKLmM9D0dthAFEzDkAqV3@xFAV>oiO-}N@zDTvE5+G
z9}lHXmP4MU4Pm*^XX*&Ddh|DtK#;3@9J7^ni(kMHRPNyigdt17J8kRnn5e0M5>}PJ
zjNn!|NCxvt1c}?IIipeMak!tN<4CnVThcglA&JwWAA_0p2k2vpT-*w1rjBF6Sa|Jc
zEuD_9ICq>qkFxFKv!+wZ{SE)gjL~3nyLhl4*e>}d+8-LDLDOZiplVvlzNq+aA@nlN
zAGarAnv%4Nyhu8sT^D{GMZi1unS3+x;o|}<<pTG4oBBc7=u%i@YB1b{qnT;hReM|+
z2(@4l!ED$b(M8_!+-`C932@Fx$YC9FeV5-ouvb!)wU5Ve1X}rKjkk;NP+d_Xm?Z=m
z=!Z>3&k|S`y&}~7ND=ZYm<}CWpsx^3dbS-z5WY?)ILcra;)+u?$@<jvMI-3;O!OF_
z+M57Ma6aHUp**anZ+y+<ZY^?#Wr!oHPxCRX)_?sAgs_=ihuPDVL7WLC_d%p{WF4SH
z+JG$LgId+#dw9<zv#YC>I1WO-CTE9(4!_NKG<Y*8!Q<0h0*ifQw60BLJFZV?1AgQS
zc5OhrIS1xhDB0oPfjb_|E&f}Ul6aOd3>pxjlBs6@yw@bogN&+wJ)u_MzlIeZ>HB?e
zpVjxsmvWxeC|tXZ{CCq0R#Y8DCg&Nr?<x783=koqQJAIPI|qOiME&gnLB-Gm6wD5)
z&TmvEjqA3g5m!pN`rRC=snO${Mg*sUd_?^=F7cBIwgfy^)*urw0o5Rf2$|_*?!)}(
z?DK0vQ><Z3+v!WO(*O<0HqoM8dcx0pOtX9mu#kUed@6Oaphgp`5e8xT&*bpYc&0Zx
z`lQY?bxZ$DZ9fX0={84<+dgYSI?IzmG__zy*p&rkuTmX6NPJvb2Q^c8`2J96j`R)f
z)n<hQ&#a9}HH~2HX8=+ZL~ZjRu%O4CFEw#o@7z}_<>clKWg<pnAam8K{g~QtE|7ob
z13k>2jFBir%WM37&e74BkC*`B9PRWpl08sK^sO<env*x2N4GW{1-Y{7&F{V5ckbOj
zYLx8St^M3pKFiDDesaTGM2`}jh!uzZ0PBt@eL9c-{n&2o62k8*CSwzdm4djdGC2wZ
zP|gs!&=Mp@0(cG4%3yF|HpRQS#R;NiPrD<+^0zTe<p6eF1nbN70?@8X7dOCIYDZIp
z5Pq9YyF;DS4h0C`R;20oslej<tZ_2(`}oypsB6gfj_c!cOMXWLVxW)*VroUlFh*s?
zsZt-uFO2+~hf#^Si=+ZO6pl{Zg!(#J$7@5YjO^xb1{sneIBGt|SQF4vdFvjTcFK*D
zOAoe38tiLHiX$m0P%axOC<VIHJEGEVBz8$I(8x@wnL}M2ZA#zuHrmCJ8q#s$PO2oW
zLzDyWFkvCc3^qp>azrV-rfEQPbdIYQXPH=yrb;wrV3r^eL5C;@jZso9!;B@jNe;>C
zX{(phT|64WY_s|4pxv|74B|tIisgBPeDsfzlJX<Cr=%r43T15_aRp#DzCJImH3h3w
zocmCFfG6lC%T(<GTiPe8x#*L1Kl-!OU1~a~P4OkP<^oy3l#+~Y_xB0hXg98&ZVAD8
zspNIPu2u&)gc?_JBrKEkqr%_6l*dXN<OS7>7Z1;PVHnh9uvu6|!^h{3R{$1_)4Kmj
zd#CC{@7od!Sk-f9ePOnAEC)2dy`OkOo7_Bf>X0h=39QrU{FNa$+@CrsM7O4?6PuVk
zOO@D#S~}BXmO4~%Pf`<03$?RFP;oN-IW?Apy&4x+0)+XKw8Trlj82O1v-b|-mgsUv
zi*aL~|D;4jlG@&eC#lHkZaI;{#WS#oUbqCss~X<I|1$I89A<Ll%I$%{h&<;iyNtIU
zI(4;g7ES?}PzH_aMFmyTzMcN9(->tpJ*pj~ol1}ms0btfM%-jbCaOopAcOR%VAo&H
z?iMjWtbDah1SXw=LUY1Dv@d$YGlF;@zq#ioDmSm%jTVU2F=jRy;}kHBePx5-S4-mo
z0Ou>TyH8PrvGWjfA8LUw5rI69L4>6u(Zxwb^qpW<u?!l|ZP}{qE9Dk&1L&poS*K-m
z4;nFQklAqQSZ*W197~!bG*FBvtkAE{8aD<q-<}36pbW;ZlmA!^c_polT6lpEc@_AO
zd&Ws6=Sx5-`PRM^rU8|NwNgGHAdI<fK=46#suut8Zyz<g-*4QP?wi#c<SU7~<gl@e
zy*oOwyFLdnJ66=6+GS`WN@>D*03vgFp|KeU$jV2Mr}BudJUfU19!HwzWn+q{dZ(@J
z*?G<FIFjfHE=F3zs5zMK@G@X157tj0o^c<C?&8K=jQ=ux%To|C<;3e^-+0|W7jt48
zUHU=uID8?zAq-|8{C!9==r9v4YCm`s$By=ZO!yK!aEk&yF?E)vf}ION{>wE)p8-uG
z^0)X+N5MSASD8x@<uJ{bG|th%sRxlI3n7>*RNy|jm*d3~p&@wz%L%1bl8y_#&oZ4u
zN*WMl@r>u8?`GdB)27V)MsrF@-pA!A#B@(QVX}-rcv&VW=vu23C(<Hph{nr?T}S*p
zJY6aK8lH37289tFYAJ1%JNYzp1`nJl>~S^mD`#ndn(xy4q1zxDNDZFcW{SuI56>21
zMlpMEE2TYXyo~w7G98nPgy~LV+xRI<Jvub}Q`I}-Z?ylWYh8``^~o2z-a}GG<e+<t
zE85eb-hw8hMGK|UB#z~Hm<W403l0?c2QmzPphM=I8Sgy7!+=;|2nphPLJL$RAniS^
z0R*0yPdI*XS(_{hLWii}4p&`(RptVOE4t^<tO;`w#og=7eyF`2@I;Ik_*>BfO1<IF
zJeuH7&`WqDl2BwNsr1$V8e|ZAMr`lw5H2;krh$o4KJpb_m^V;mygPwf)*l39&v0+Y
z<Jr|1ml!7=pq7~^zIL14rs8$jhfJL}q#*xKX%QteK*z=V@qJS|R}+e%_~`rG(rQ`c
zsxb-s)@Wey{GEFjt7_H2P{i#Gxfc7;V<=|J{vDOK&*`xy!0<aXRL(akO1<3q4dV*~
zI|^$$hFBy-h7of7(q{<v)Han|mwJoCQV;vD*(C@lolx71=`qO4PyR|3Irb#*0myri
z3P9F<VWl=@huUZO$*VeG(OLu#i3Sgb&H2~CCOOB{ri-~74s<#!-$BsKfy{9+d7_2$
zmPu!pdWR9GhjZH-67ak-bpIKXih`0@ve|p`WS<wLtYFv1Kuf1DY;cepvz!r$*q}aN
zj4+sAcBC%@c^w*iB&WcSQFAOCKeBu|TMVwT?%5CTlSmp<qlKaa8jYMIW7Dl7Y)6V<
zf82wTb3R^F$rD`7u&=0H5Sj<|)~0GjEBcC(i(kwAUzUlhDeNOqK4O+6;`@RZ_j)%+
zC(-FwhZdjF-5Y6RQNE9#=RuvbHsS8YWnpC0GZvRN=1#S9`Ct%p3&1*{tZDk1?^EF@
z;6zyA)Ct|^G*VOo;fu_h^G^`caFrClID8^L#14FK90tfOqXDEMFV`6fBQjpf_K%+l
zinR8|k)ukTF4v9;kIMwe1T&TiA*otE1?DT30qeF-25q^aqhm_nhoC*k15BTUm^`W}
zM5SKQB4HKw`ZJsaJ>eNV0lGTb_^SrlmXX_|&%}jMAz)OBD7)-#_L(9L&c96W3=3e?
zTmLi&*|5&(I=l-<y;XfXZ`f?a;VGRK1S*C<j9@C`(731I+xyiw@=V!u5k^^jv%*&A
z*Hb=iL9_WtHXI-vRCkc2r-P>AyPIG<<C`fyf*5nDrj?I?su5SnIN>DOJCHf!164Ub
zDSPC^xO5aSVD6>O@hCNoOnEZB^o-CkQ3`AMIKS5pXziF{qcZ-NHPU;8d!ywtefR~O
zt~8~4WEc-N^QxN64+UqjD3yT~E_>j1npX$6p|m=wuk45w3JXOKl>jguct?_j>zW@j
zf)4ySoz>C&Db%j#&Ww~ESWmrHujv4q8<BQ_NR?CE;uJo=OhmmY_6O@n(Uz5@>bdtc
z6PW?QlTU=BXTbobJ)eKiaC!ftSg)@)L4Ua26#<eXA1J-J<awIGzO${7S*J`6X~CLr
z4au$!(F7rHr_FGc>?Eh``_NW4{3vqWD;f^_a8GUaYq|>nC^#><_DOopK<~d?=>(;X
z$aNg*7(0ss41K2jE@>CaMc(}k8p4U}lBP4sR1X+IKR|T2;WRq*zL2_)AAVBmPK7T2
zl=0<~GV)+_q-CASb$+Nt(l!FB!08C1@Yp2e&}Ycylc@q?@`IJ~jpenmGEd@F8uQ7J
z!}Qw3+$tp>&q%zaGZXn9pQ>)R^VL=s-ZK{>29Ujprz;(OKoA8?KzqZH`rY`v$?y_i
z?~?SarZv-iHRVs3q{h4|%I1G^_*rA^<%h`=8{{+(crPLu(;&!2L<=cNB|*byK#10s
zKhFwaiD1Ey#C!~*SV%f6P0R*T`eOa%PVN>jAbrFlpK!*+-?UVi>u!NEds<vQ5Ehm0
zFSh_mAPLJkovP?6uE!7t;uuKVH}Hb{1~cE*k0{mE%tl{5V-GHqUePo79a9LR7D*L4
z@4Y6Yw5~gO(3mB{hx8~*?zBC{?q?1gqU!_gDC!z-?Y>}LeQ^G1Z)34Y0$i4FOkgGv
z%#YJb>&kI$s`1jA<Wt6i!xDNj**$q%?3n1|K}vOAl8_R^&^1s)SbMNVeP(~SigLHE
zi42x~!mYju%5zQbw86LG5Jo-5N8WFuvn%?m4QWg~nskIVHNHD8Dn*s5B7ey{dq6_q
z@rnKwQ#hrAc69nzd76}*(17><o}Up%pbsgAst3n?TO?X~5LhwBS=C$dd4e(4UBug3
z?dB1DSPQj+va#x`6rj*TdGZ8D44vXUwz=BfT6+`?F;AHD8w_iXY~DiX+Swd?UM>Y_
zqi+N<Pl{Q83q>KGLO*>&s}y~Pb}~*}sGO|6Enq5WY5kvASxA#K%n677C3FwSEhvZI
z^U@}vzeWvML8l{HseqyIKOczC>0^ar6};!2An|*oopDnk)WEEPHE^z8p5cM`7$@or
z+4YrMu!Ci;`iga}hk_cf8bvV2IW*BZzB;Et-fJj-8j?LDl<+Nd2y<~X7?(O5-}BBS
zq5c{(vF0^7lnyuJdzuz8ry9k3T}lZ1oc_i(aQRuY`6Z9mJ~SpwaGc!+7$Jlz;v?z(
z(X(Vi;Z>2L1|9`2k#(h-hWKP-d*jmvP(^nPB?N*4K+uAYQDFO|$zavErBbJ*!H;JZ
zaDrMO9r-b*j$pmIT);B*w%6HFN}=(Io>54IjU537%Iuk4UZrr<B(BenLbQkhV>~eV
z?e;ct=Yr!cfWcb2GelJMP&poo9t{CL)jcy!=-y?M=<$rS?3Bev82vLZISY6dsH9Kc
zruWxKM}`Ifd)p9;ToN^7Hut_Ihgt)Hjv1+--syI{GsFUsvgM`}`MuM!QVRDraE^G&
z{rSwa$Pv$;;~@4{96{uQz1Dmpxg#PzX{(1BLxvGq)kXJcjOEOa7w`JHI$4aTZ}bGp
zA%g7at8OG>WuLL5x)*Y}05x${g&e?Qa?%E#j)jfb(u}7)u@qRH^S1Ly({B+z9UNmI
z8G36L9IWv9cGW!VRyO^@l|5Md>iCG@4;KH(iA&-Xe7Ue<(hfm^*n3Y!Jx0U&pmcBD
zhSI51EbAX#)+j3BVRlfyGtLjNG+ZjAFk3kMAM}%KkAW)W8h)?xnc9VDKF|MVgG$LQ
zn<zll#NC|{e?pfI_;uVk%9hmii}mvprL6UKlc3<rGZO%gH>%0~^mPr@pBc@4>fq3Z
z3J$YSh;Osn6db;ijgU(4JCcm8Qhh4%P6>pQXbr)iE<swn%B4n^lgU`f4wI!}7vgcc
zwgmix{v|RV$?$|-QgkMR|9$QR&1-yi#IHXcPl9>=Eqk(VtW}M+n3euVB#e$=O0i1M
zuc4~Xf5aj%2}Bz~(hlG;Ae@qL-=zTy<_n&zZ>Sake+g-V`}H`#0UnwW()wm<U6|~%
zX?Pu{lHIEuL#!6lSTf;CX5Axf;NGKQ{DF7UL}lVD)d8#QKb{!HR-n|vYE(jA2+zu&
z@VqAd-W*i4jmA23m+&wI5-oTs=gsd^SUn=r{)o+s8H_SF!MJoFy7S>D;+x{s@u)<4
zSjl&%vM?$9K5OZq$~ufCc#Ykjr0kZ+tTQkjMsBMGT=0nBJq4^TMu<F+=EaAN_!UZc
zlgOEF;A^wV>l$Te`Dd(6iSqQucQ+4k(iy`9nHL+0UB4nVAGTD^i4S*C6C#7Kp$6|e
z3Gj<Xtk_#T|Kb24yH+O?dlOUb$wD_9j!y>HPnt9Qj5LVa#i9KF-YOmxOM)WC@R4A5
z0wsiXY4c0lLqEH!Ng>%V=_on7>GcVC&@Q}>%`U=DVj`ECsN&VTvZQ=|w_gj9&3i+d
zub%^bA2O$gCaD6m;4E|EE2ezWnTB2(=7DG%a8XpCVyXT}gG48V6pUJ;fq#rNB?;z^
z&fx3(37>g+tC{YR$yAg}JO=}7{9<CcMBn>1zW1dm<EdwBeOAel4ls#G;~*}b$xRIG
z1;atk)fk92LH>d))=7szC8C1PiKBTYXf9_e1U}*G<dZn^mRi0xig8dRsx5uUB~<e>
zhGW`JKMEosJK((=AL*I|aaH<bCJ)pc{>=IyMzJ>^HPW2PR#Tm!*6?WE6VbZ8I^v!B
z^o+^?+!ma^)Bc&~_K*q6d|pcI9lM!aY>L*sSz8h}x2W243NJuCkpceEy1Iw^ljb@i
z<&^7wYXJWzPo=WQHe=!F#cNP(=sfFxtDK#t-W}9XK0o+uq};!Mv6Z22TppJoIuN)S
zr|!Xy-}M-Uuv(Wwd^5kIJ-#)Jz*TX$J8qy4@pPx<A$y4)fnzqnjnNU3(c<`k)Js~i
z{4p|e7h@EZ`xYd{q<F(R1WUC=G!TW0c*h24%vFy>chzl9qH38qq&gWdN$gj+*gGm|
zLiNn9^GxKsXD24pvkyCmoZe<fV-1?@p6_YPYyt$vbvWf(+;R0XZU|J)GnYq-vVtur
zl>N>+ncjgK=~|1!D88ncd@Qr4Nn9ty9t_AnAX)>>iXfJzRPZQIRLPY4;+A=vC`YZP
z93dix6zNey;u6Iv>@{pow(QGDKj{*DL}dU0Tj5BCpLh*|^=J4&>^kvYe-a71#;Zru
zo98*lh^3Lw)`w_0^Z&l8#EnEOKv1m|r0F`7V(5>86P?EN0;u^OhB}bDDeQp|2T!`(
z+ZI3IZKmd^S(N171%j-kjw^f1l1E^0r(i)dw&<DzBDuTHFR*%(DSJmjCrr6H*9kma
z$it_e$yfI7sY&Fya?pcMD2&eF((fSw!3B*kFagY)W1t497ot_yJk)<hS+N)L;It|H
zX>AJa@1R`-r=20ioHjwlRY0O!c^u$PxCfS+^^WJT^HIX@*8u30F#uWv|B}mRWs7eF
z*E3e`L?4!_9aZsQ1w@Eu8cC$p3_A6Bc(HB8X(#fqJVd7U_6$wKYNd#i1JY1iNZ<K3
zkxgP3GBlnrPuon(AS9D+3h;APf12T)6nl*@g!uF!95fYlsVnshRRJm7U!hL+)ErjB
zY9NmR{ySb)cq<qs)5k|4c;TFdPe6Ga2g6STM<fb=6<GvXAl39huWQ#;z<s8^n~)Pp
z)SeI^oDgI5^beQJJVqyhyZcLkTQyFY>grr8_eaH`p<g;L{<JW=8(f00%~)zWgWbMp
zd7^qKzXU9X^omSpj5?JX2~rF%r&V3C=%kSR0?YlR3Pi+m@C|Xri|yG&S!$qwYwa<t
z48aH^#giqY?tKf*foK@vm_vu-%aMA<HRgp?jJE@G2+D<f%omR(Kl$C`?!Mg1EswhF
zzKbJU7LNFOLbbra*Ike?ow`8>WNPt8RZESy+GT)aNHI7Hn4&bbP$}L{z2@+&eB5T?
zH4EnQ8pKmRjN4NEEQeqUgr_bV^t}*pg!&o7tkTNa-L|lL)zMn@g$#bDd8FKvGSGwm
zIW4j>Ck0J{lhPSNw$OpBPEN@_^xS)E2GC$mD@1eEy?|z=W3)P<6;%)N*kA}L7GJr;
zL|gaU4PK_N>CEbB@ec)_c&+=@CD8(5Iz&t=Z!UQ0k2b@@u0-C^&`Hv|L&{54+DAE)
zZ%TtC(7n|)ry*xV0<m#)2AigF(Dcdk&5xWg-`2uC*_LoEmYFc=_MVpcdPM21Rqg%5
zyHMqY7I#W~DyDQ{n3*TxJQQ5k$**v<QqX5t;b`zBPb#YM<27atXiF!Fo(-y4o%|L#
z2HR3C!{pgq`&1?2o=+1d@)(25+|ArgiQfpYf8Z0x6B`uGl9DEUieTN%fo4hQSy;w7
z&&?U@i^{`MbET^ZF!WEMV4P`*H(FXnoi$By1CpZg!a9(U-<zm=iZm<!-;d`+j$r6n
zgKLsyoU4;L9RdJuuw!TwEIv8P$um2oD!M=?Qa63{(GATrv*%r@fHBgI=`U&zUd4}#
zJ`qfEJYyzORrT4iy~L*c2K58En=?(s>qv83lN+TjK5c8^sVMRiz=u5cgCm0TCMcd%
z;zpv4H-e)Y8y4{m#QEJf&~<4VGfZZ6^J8@Eqq@APFvjsh{nq*QhCDlBY1DDUxPzv-
z(OfTlPIdLp2LHSDnHIQcxxc5Wd>vj8stH!in;p4yJhN>7p6bk7()8^l$4k;cpm(Z5
zAT&zCH`3~2PSqXfLa)H>rcY0tLqj!3zTI4~2Bi&Qg-VSSF|sop1h-B5BoG-CeRT)B
zD(Gsxw(iMCzPypFQ1}~u7}ydI(q<*q8!VWj@CDEoaGK~-d+&Ce0435WT1cX%qB5Fi
z;$2y_aVOj1JrZ{<Q@qM0IY&AM+x97)1Mo1^CED+4Iz?E6;9IC?Ig2YwV~|1nH4QpQ
zdE8Gyg(El;*S^>ta`P~>Ca=F%AV^E{yo1kp0#?q7+^9u<8JVhSv5<hH@zwNd@k};G
zov7TKsxeZZsw~dB@0&3o^NctqvqlvsGJx~XA@y&JLY6PG$pk<fIW9YhLpnw`>KvnA
zkh=PshS-cvPGeQ|lP&c-2{hpq3z%aaJ9yuCOG1QfA>%#-XQW&PTA$$)Ou)bZrD#E6
za-6{o+Zsb?$IRjA;T`21LCld6oe){QT1^~CoBGP5-67e)RC8c{RyAkq$0dnAAQaF5
zNqrG*a&_`z@L?D_9k?K>31VC!fduO5&Ug+^TwpBnt>)qyxDcC%_8dX9#iUJVpGX?|
ze<Pn%k$4(CFW%H-MBi`^E^VZOALE0iniSgDqsVG#;hEDqM1?1`U|a5i-~J9wGQx`Z
zcf*>v&;u@`UrsOH%uU@+p*k^RF>4-<0p8SLI$rn-fyVr~nBGgt2PZt9lx>EzRhx%%
zX%vvKe7^)ij1B_lE_jRvew3&O;|559YZwP}aOKLt+BPyg_s3Oak6MI2I412DKpjzs
zK%q6d-Z0$?e^p8?a(d%#hG*Zd4k5q$mcoQq^rTZP;H3sV49n(D=|pB&kjxMjR2S@`
zG^0M)+b3x-n7<)Tl6lw$djGYmzt&jm{~!Aso*x{^;TgB(ZBP;yQ;lj2N3L8MHE={V
zY@bWs;VRI^^sNk}h@UY(r*!k|(RrZVtGaz!S78ZaRf+ct^d6E^Y)rd*cG|zRSx|%i
zMW>}|w}W$PO!|XEB2?x;QI6ujE^^xV`F0+)TcNwS9MB0%JN}z2r&oY0(35R?nJWqJ
z!rfU#A<cuDTU<Lt7$k%?1!i#aH%-U?)DM;3mjBdJ)vuOJQ3qMfT$Hxe6aw0GOoF~t
zFKf?h4|;ogDihoeX`eQ!X7g%eo!`nRR`d<BaLHbo7H$0d_(5r5tp5~7Q%rXy+Zpu#
zHZA9%Y(ln{&<E$)S!a_R*c_IXU@qQ|F<Jf5Ut?v^xh8J39*W8h=s3+DEg(*tZqcc7
zcXp}|hUSLEEs={r05)JfjDLEwi4+j9OpLdiArhQsiJx7S0Dve17l%%mf&Cgkqxge&
ze!e*zzfP1t$UHA(hS|BqvSZ7V;|Sz-Fm*yl4#DD@7Zm@}X){Y1;0jLeUtF?idlQpi
zKM-houIQ2tg9V;kf+@lJ3R&WTlr14HIK(wY(`0ET8c%(epZDzAGA9p*qXs9k+aklu
zblNVb1PtS#w&eO@cW88oK9Ldi^)#jvUV)l1yuxjXLPYM^qLv!j3d+PX6z&U~xVXaw
zlZYC0n)C;uG+XrVTdxct7Y^~FO7ZUkjIJU#0A#!J0q)XIW%0QE@dW9S<To*3itN+7
zZ(BPQn$W&El45x*RI}q7*@~yaYCr=qT30o5v~njZ{$+6_B0h`Khll{=O9$T>pQFc7
zTJPOrijaR!Ro&^YfiFQV=i}I#RfkHLJPER`*@;7yE6f&n$BemBmR4+suLL$|(C7w)
zD}qI8q75}TPh`oIP!26)Wm&0{>NjcH+`s63(l3Bujbvb1rgAytZXAuDp6JBS<r2c2
zdDV1YrmcT{tTv6<lT&c}wxmRunD05^EKxxRNB-zbKri51hWDVpVujFeku3CwdXSOI
zHYP-Pm}EiI3Eti$-PV}iQr)K>cR15{a5M8_N>6ZG1k#hEnlZjC1f8%kj1ZuHUJ0cc
zh};|m)K-?ziq<%ybmMC~2f*@6PH%8zspUB99tJ>!Ga%+}Y-YGB<p79JmucC-=2*1E
zg9khzyV-{NPxmH236TkiC<{!9PWz@Xh5kn|Gx)krE$cb{rEnmsNA=wYU$s8N*rt1)
zn<L@PoL+c$14fa$<I^R6a`j9Fp597WdgGHKEwu^7of}$n5yzarBU<Gm*kuZu@oB?Y
zup`HLgWs~RC4B8+(XSx@k)8xxh#jha$30`q)|n$qML|2RdG&;tJ=psJlJOu-va2-F
zdtGB!lDh;`qoScAJf~&B%WZox%aQ4O90IGM5JL`J&bf6aB2q4%&P}^tb}u%A*jA{*
zT*|4q-T{zhnWShDB<URpomfOsN$8-40TagZ9kyEdmees2p6jd>Vk}Z#@UqT*Q)NT~
zN)DQp!?b*m63VsB<POZ?T2oU<a22nn<4;~#tKr&U?bHjU8p<9#Fhv1*NhnE#3wU%Z
z=a`D_?tjm-LPi1HIGA5Alr-@33s=Apyf^jB_v4$C_m-k~&tnBCLNHDzlh?z^gf=<l
z18n;S5I+3*CpeqOl`{N+I!vx!!P(?c!wTi#-74!B%x5(3cw!LTVNpRuaA!^%9#v>~
zcmo`8J9)G-ELy;C(}T+=1^;0p8EiQ@Sf%FN#Xi?GI*Be3{<MXEL2*S_m>pmdqZv`2
zTdjo9>#^nxt}w0;`$FzQEriFy%F#issjg{>UtZvzx7BbcPq^VoDO>><aDAvM==cs#
z;D&^D5OKcY2FJuN-K4=mogXi;AVz7ox}8eww%l{vRTPB~ADkaEXZc*pol{HVmFL6e
z8M0Xo`eZ;DsM_Xf?2|1zYa;yp)5`;$aqq726FWSXJhLWCk~V1hIDkq-h;V_`fkbsP
z=etl+<it-kA|!;YiW-chfMycG3T=;q4%-;R7<VVlY2|Fw82dR?cqb=q$;H~(heCQh
z2HPh=d8_X0Z{e!4sG<c1w-Cj!j<54P{e?sK2a*4aB4y_1hWB$oVNJaZ#YcF-c3}7r
zbIc1}3`ZBT#QfXVcBM&y{^ed{Ec08^E`*Hz>Uiy->Yt6Ux5Q=b!9|DBe|GE5b^M{u
zXg<rT1*JEJB&7hyn`|D%@|5!qGwV#g15T(?W0ZFc8F94s5iK0_iQ*iVyvG(%?<rr$
z^`kv&w<&t3e}ymG<Ni!V-L=fE0Epxd&!1U8vtfl?5fZX}+PfIS>0Bqr8A(wiV{I|u
zGM(^S3>sjlTn)b)tCz_rwo_y_wv7Fd{#K7P@C92FF5>Co!cIw&%9j_ZGL87-l;?(B
zg*8yJ%r)>^!<F`S6(o(Pa^e|B#6vCJ3JpQwLZfx<@*N5nv?#c!FpHstd;inb?waXQ
z$S>;}6zIE0SEZb$;oXBGV||aQT-AIR%rI72@2i7zw4mWwb^f?`bni?496nAX+X3-S
zkYME3eS_I4WF44dv*foeMbMftt!%na;JiC*&KE~k+*LoLD1ua4FYE*<ZtXL`0*gsp
zi$yrBuzg(3F~he%EA)YNa8V8FV?V&i<dolg@kU%-Kt9Oi)-(xGk<`U^T8J<hup*Q0
z9|pZSAd=+t{Q%BC!C*Qc+BC)!*kdvQNmSiJ#p-T<20nAzLj_JCN9GDaJ*tVm3+&A6
zHS5|L<@-&IDf2k-BhUDkpn4BSZd-GPL#3fyd|P_eYII>31n2&2)DB@7f(O^hwNJLU
zl61SsA}of=3m^{6ZV4*<KH3S9EWI1>x)1HSIy_?-n$ft?oxy-BarPU9OU5cxxNuXj
zTYPfrFxdeISHs<AI8U||uF5cV0C#2L_P~gXjVa?<<1U3au^}zI1?8}ELe!{G$=RD3
zq|dvcwf2en_y4_L{a^Lu5&=K7LaA^ofr$?u$j$)bsxcC0+I`1U;DKb|NevLymnY@R
zaFIh;%f4j)77;U=3f_|M@zW(4<<9xTDerfK!-x3hpriU346muDr0C20U~;=ySf`=P
zEQj~Sa@%`4rD8TK*&*rM_-YI{(QFg4);F#fm3Qvx5HnT1s6oGWSq22raQ;lCTVF>g
zfwDvVwlWj$m{_}m<O4|~gZ)zjJm~awgvqwbYvo4449PvvD35p3!tJ+P3^K$=ip}lg
zuh2Z=K)9FQhdDf;<zw?4yw2SNGb7~`zw%k558vRVagd|KTA=>Cg_JR7O4(cu>?YlU
zm%VaUTSmdqVcMx+nbCL4E2E^x=n>4ET>2Uy2<V(w>$8#jw)<*C`so`kkAD@yUJ8#$
zx)2{VdS{BZXxXl=dw4Hl!bon*c<#OGE3VMQG78d}z9VF!LGc}S!J9ET(bizbiv<}5
zVE*CHDN`jNY?V*9ju4D4O*Av|#P(+xvYjsJX|?Y+qaJp~UV~hYa!Ym4N-`$q4*5@U
zI)>~x@t9w#Qs5b7zp1%N^k(s&M{(f-T5w`L5hOW}u!AH{*@|FRL;+S%OxFY|U?-fJ
zaBgyilI14s0i(GS)jezRV&|5!KvfeG*Qo)Iph01eMDQAp9bOuHkIEdgy5I_btB4$g
zFnhEu76#|)pTEO6?avj_U3g?E)5LfMp29A!V$*l)L%K=y+_UWC!yJu!bFdS*{*%<u
z$g+5HB+2=9y42~P!>;$?W<H03EmzYvyV|x&SxvDDywr0c%^@$5l#9A2sB!+L^BQH1
z-ydu3o^x*~B74FH=sL_;mNpA0jK3*58Czo&>eF{tq&&N-y>A@R)R87-?|qb{DOAEg
zm;*?IMKj{`u7V>DUgOGD73W=rf{d34W(9`KL*_tI9VGx9NoetdcV$|9OyW$Fr=R?w
zIG4)~HrV+I1Q5HN$|oO0oUEO=zw>J{p08BhD@~aDw|oNjI-aTeD?)Z;&ez3nBkP9;
zncMLltA?Va84|_oFQ=mQ6*ka{|4Xn7swHM-gnkdE0|+~dVfNi{fiqLsev3dukL{d>
zKhkmqQ}K?9HlR2HsLDbga-8POdMDOhNmYvCM)c~6HZzi(Ou^Huf_y5I8KMd;cb^$s
za+rw^3TG)r(9Bn|2-003bSVw%5T1a%6%lC!g@R?u9)torww)>M&@}G;g2w4ct~BgH
zipj98LO_fH!`Rp4nPdo?_Kr(3e7W~&ppH>$17**{--T3@@p_h%X*Rv&2=fhuett6z
zm@rB<qF#JR6b{*x?Os}xS`^XW!l+UWBD1$gJ<xr+IUSz2Rr!4iNx#=p)TnPThkOoG
z<(lBnIluYgpl1~Jn3jUN`Lh3qHp{_bm5bHa*sjnEBMWI_yd4$<A+Uhg89HsI{@s1;
z!J-OdUl59QnTSxDGS!F=&yr@!VU47wf=BV0ECuu0!57e-D_&v6M(?PthQ12r?v)6_
zJ*x7I88DvPg6+>xeffNooY&-rg-l2TEzu*iDG>okQa~uTDYhJlc3S&Eaua_6GB#K7
zJzDbKaDt!wBH}Czf6{R(z10$a!`)y%bh0x2+!tk76lF6^F_cRX*YFahTh;+!rnV4Y
zR2y9?)rjn_L~8U_n2Y+FIrPj+^8LMX=Y!{f4jN76*?dlR_=7)UWs^#r%$@4nS)U-V
zI_Z1XC(FyLwlC`7L*Qd%N15C6akFk!2egHz?tx4#od;CvaKe9agN!f;C5C4q2%M-`
zI}ub$S>9#gc;)8!{+WR!0@^WKxNf)&&n|1n>Y?TU>xeDOccoGoVk=c;3ZAlvKf|3r
z#Kl;8`(3jB+_yWuA-<oz_>ER!Xb9N^2`FPMX@;kvlLLlkv8Ie(5>@-{rnDU8`Xi;~
z-Q`$eAS(V9w#8%6n|73w%E3!uMS($#&CjblpzS3{Y%bDV56_a3XqxHi%@LQ={<w3j
z$rQZ_1nV(jmy7&`9fIVCmRl^WXPOBH4Y8Ewov;=o(U!vci)`-~1x!I{`hG>Ue0Bt^
z9u|wTKEPm*&?RM=4lJymEsXl`wEtBhhFd9R-ts5Pb9Z3m#6^QS_^S?X@F(nt91m4e
zRL3kSsYmfeeFjpbzc2%sGs5+CH=VXzAa`h>%l=G8bfsh6qAt*}!X^*Se2&T8OrwUi
zF{>-#_yyfs##e&OmC=q*8uf2*OB6(ig_Y!`y!95rvO42-sn7&^;0292<M6*`zdypT
z``72}zt4Q8?rPhbZNmB>BJdlICq{>iYZR^lh5{8`38(M#s&ztJZ&2`1QqLtYtP}$4
z2>m6ZW%yZHz!$2;T{Gn8`FGMU1Gryx*H^XB-;PL7jxVtonLV;_jk!t_JYgks3poPl
z35drh7UlYld+!8ma2m2CC_?F3B?s(S;zig)ass&yeg+ue3=MiqcjIV<O0SJsq1%!K
z0okynd|By|6z3*)N9E7mv2~OU7<usu(Emo#BhEFCdo8T>Lw$yq6SXK{`wlernwpHV
zox$!V{<uYG+M(;YWjT*dq94vP&=lg}wDWZdh~WdJ@t!9r$wIb>qfv6JD5SoI4FG9x
z-R-b?rCP_3h{LRM%(xXJ6K6(A&qO{RB_@iZN~rgq;K=_3#12@y7Gl)}5jf|uwWw+C
zfR`FeTh_-OYlrSQwo$o<!>+$7y{Zm8{By{bh9Ah;WHIDNB}D`<qOO2=%bn9+-8!cp
zhBn}pn;Sh+))#n2btUS#6df9H2A+fkk6?;hEFk!*{xO*?h*;%=;60>ZlO`8L>aO39
zQT1B=ZaW-n|By;-66sKYQs1CL_;pf8kkc_k?Hlx;;+2<)8-cR3A%#Q(86xQA#2BAJ
z5bK<tl3ch5pa_2&REOT*$Ou_c6166Xbso{5&Tj=EW?P&2oy=E}@|ejw$1-^t8gCeh
z?NxK7*jXtV5|Sze69#ZNCucyKS?MN@G02=JYoBsXXZ$8Q>2?KwMSke+hIWU-3uF)h
zT(PlPw(sb<T*Un95*8_&@&$4^3WwTawC}%Z;-Fa~9CB-iPgvzmDAt7E5n^+OmF(xr
z)9=PN;kO#NCQ^uPhIJ!D;fEMWkhGr^HtX{!xsWE&BfqBP9?FyuNT%D*TaK%9GJaSt
ze&cB@Ay{3Kjq&k5qr80^1rCiF>|-V|(1*nG^j370cWd3j+$l_0>59h#YchabiTz4)
zhqJg8CDP$yL=q5wel?)0m-Dpbr35!Aq*c7Sl-VPpiZ*GCB@Jn3vt6~nhwc`*=l9GK
z2eKpi;@8GHEL;)>WVQ){F=_GH^w#Gu<%zKqnHr{H`8xjF%gy*d{q9${sjzS`iQOqi
zBUyv)_&yXFLhRq>Hxx``%Y;(<(!Ufl6bnL?8x;s@jq;NmT{^U!c}Au<^$puZ%T$8u
zkc{ETjm}Q1lV*eejv6I14O~P8N0Qx|!Iv0MF!5NY3`yyg1dPvk*>?%P)rAT2qo-Bp
ztHI%>VTf9?yjm;xWiKt+H_QOgqpAc!QQ4cCu2&DRR*SNHaFLCQp|&@7mYkRS@Tx%a
z$pu~B-4Sd3NcyhP|4IaWK+=?nB_P7}8Pl)Cr)>xQN*6wiCUf3Mhetc@m;HnPyV+FX
zt|n~)M1`FF%g#CPw^L0Cu){$%*E$CCe5?R(_7?|p`SRsAceW66g%7jW1-#m9=xC+~
zR|T(d$ao=ABGSi=#XV*8vyW-e>jtM(g>B202$BiS31>HSE<#0)84p8x!~jPt4@50x
zQoRYJ!8tyiFWBV^*rUoV;k;9|uW_E9-U7juS5Vs7Qp{@tgCfOPwugu#6hHD^#&(Sr
zm-PROszE4BWtP@2Aw@hG-`I*N9pvFc5&pCDy6E~vOEOh~6Sysv3;U=_tjnP`@#TtF
zE6&V@Lb$O;6c=ovc=(b$Gd2*{bTHK{*w9hiive-$fCoC{mE?qpQ=1!wm43&Lc(ygD
z12Jd%c7{6GwRbj2dFxu}YU7!B%1S~M(gW&10%rV4%b!cFt+y`u#XrOx*1tH60{5fx
z0*~PJz=yDm6h;0%&8g6{bX0j#T3Yh!28nAD=dK@6ppY&33M%(dzwuuGqF;Szv^&R~
zO?w)L1<4*j<C>a2nf^k;3jCzdg`6-}hh~Sv{<)i<B4)hn4sR}$^a`VVscFI)7sre8
z;wz%g-<SoNi{x1FTC&Mhi9X<F(M}azvqCOdc4nus@2V@NqRb^Xa`2x`#5o#Y|A%r|
z#&$RlJ*~W5fI02z=#DIS9CvE{9m{Xwe`!-m`$m0|bSPUuf~Gxe4eiXkVpbo%E*VuG
z7<LIMx`G=K6&D{<`LnpbCqS3`@}egG_I@se@{)-Qc`>-)QNBY`z@A5Q!=FN$LDvk5
z8GnL$g-d0Zq#Z))N#-Y44x3o9`V87jzlv&GTD$xX2O5L|>Bzk(lj(Rz&MQuC(^exB
zbS*bw+@A}O14e!EhCVgEWXd;`Nwj-Nea4MX3$7w;EYhIegR~Drrq>t3W)vNHPej7W
z<ARt#u{Yh-2^vDzroCO@DS2!z<VtFZ1|BYs<|Mu%t(i<#!3UEQ3vNT9p;g^+-sw+p
z0&9$>I#P{D@^B7h>|FQlT~a|q<}(7G2q5p1MM^{0F|7NdbGmK(DK4%mnqDFV<W0{*
zR2J$fNFBvuHfPuh8c!W6F<z5rCmJgG4@`<A6$FQBD`1<HWNm95p<Yu}&ILAzjz^Eb
zqO^KJBe7P`?peY2xU}=|f#1ScAsZ?C>g%%8nzHLEJD>i!74&})OMJS~d~tm@$M6<<
zO^=a1CrSxZ^u+39l3tw8El8P%><4qI!pKm0{hRy6W%Z<=H?gSHFJA(;I9{*dVEX2?
zzgRof^MQ_u7by?ZnnKfSfEz*}?h=_P^Cn_*<~3#!fGx?c5*7dRuVZn62D+}XLh%I4
z!=RKhBFa3eo;X9kaTmYF;X693D8Yd+P9)n=GjUBFUGe}VK44oqSxG?3-6DGI{E((|
zO(^pKRlOd}@xiv-;s_(`Ml+c@KA{$g)Y_N%6RAq4DMPGK?icwft5kk-{=;v#AApGX
z2|t$7YY=gVzc`88QXXjXr23clUG0ch(Lf`<@PPD^SLSH~VAuf_$4Q?&&z&=g4+zk}
z`%q#LwGH=>DzR9rHJM%EC(Rbr>8b)KBT(vvN&hf0oZ5K)rvahDAO#G3bh^aUJy;Nl
z2IvfwV*c#oOv&kiI^C6P;NEc)c&zh@xWq4Jp$^}<rFvl3Z-(w;$_w&ed01!x9~T6#
z&ts4kOcF$$3?ZNv9@o1gq=NvQBFGCmjn!<XV)Ihn!+KRmDvX${=luB|NX*ZqA%G(!
z$bwN~RwT1K^xY4ZK7v5mk{*S@c76)j2q-<U$i9h((0pJvaP<4$+}?o%yvM(a!7~)K
zihfSlQtVKvbHutwd}^E05xSZrTCTPoJ<<bl8Kj=fXS7Aokl|{n<wP=|`!tveLwOXz
z{*gU(p377}@b(*3Rk%*1ATX@{og~z2)OpayK~)~!<ZzXHE79{=lP#*0nzU;B)I=vL
z(fvAg)(B$sW;Lab@SbQplDkaScIC|XrhgM+;0I}d5Rp=`JyJShu1vH?8`SPHWz%)6
z@SDs9P}Lz~v#Zm|n%t}FtO^BSrm0M~q`hzLe?2^~%;j@e@YX^s-bhlR(CXKMGm+9V
zY4>&G5NEPYcy2_`boZaDJd4B23)*|7S3vNz-ruYZN6L7v#Lf0J8?blOBa}bWd-}1K
zTmfK<yb4Kf9*gL1fUmd;^#mTFJ_&pCHMcW(V(FO~Au7*T<5N9tP1-v8LEgvXB~2_O
zi);bXDl@OW28=V%184;?@$1j?9r)6fCB+>5#0_DdL-5e<**W2)a@SmZV{c22i_oU_
zsNEl!uO(u1t9?ex7_}eci_|HzhBegv`uhvOgZr&I@nHgM%aZsuFY^0RaP40vybClD
z{5m>~2o8pyV?EQ-M!4sApC6!Sq|7Js!9Z>9Zc8DLCoWp@DBxmA(O|Jc^T1;CLv&)<
zDAe}&<+VcDWmq<EhRc9{Y&GRfd*3SMqJPUQ2MUBt$k`h!*X|r8f1;w_C1Gc73ZZA7
zCG&Z^GofmpI|W07z=p!2)IKNVgx}i*=GACg_y4$cwcc-=eoJ_&U6wG`l3@zenaAzz
zHcEziIea&N`b!J1+O0dAa}gt^v>BmG7`tL(?9aHGIyacG$kAymVAGl|dd%|t+*wWJ
zP1<YPSI@0Y!q{V@J9sC!feYSq*(0FE1&C8GI3vlmA&KB-)>=6mL0~aX5T>eT+>MpR
zzI~~pgN|sW4PPQ3z^x_MaL~@;9JgQ^bJpz-=uguii@rp_rVG<5vBq`4NvFZ0rDjUw
zs-El28fZ@?hW!7R{@}!)SygXCk)&+2ER5nNWynXFTlJ+aMv^_F*q3Jag0BM;0UTTb
z{4-*UEx8)sc#Xn=cTRwJ;f#^?WD`u{Mz5kD5Mu#Y379o1+Ysjt4l~tV6JbU|%$*M-
z?Jn4xm&V-=Qs$PDOfhUdC0~l8SsE-AE$Vdm=hOAjqkb>I1qMGd4>&$@QWX0dhXw2S
zesP~pV-$YUZgT=RYsj4%h9vEwgk}9Vg!xQ$NI_A;muaPUXO+nwM3*B%I@X1q_xZ`>
zz1AX95}RriHsAOFA^%f-?mgLUIrsJHN&B<~Pq`j}(0nm3Dg3kl5FJk|32OX$hkij(
z5Nrt@Y{fxs60Z`e2EFUQ0>X9HKBdu02xYBEsp?$tIqHaL@(OhPt`t(W1Iju_sa-m=
z1R;$Kxl~|ZGHL~u=a<f?d1U0cf<Ob*gf@6_ZJ(L<WR<;W2EWv#9f3%@^;b@a1?>En
zGmO$=AY+{t;ce1ks|zM!WMjX*fAS4h_N_dV>woCsopZ++tIX<A!Br2T6k!ml-BmZW
z<N8uXTo_SWW!N|BVe8Cb09(6*_JDBngSu8xsp<DnxY;0jT1&P%cUs`VTfTrEH@~Qo
zey#@AcExg5oLefV<#qe}qm*J3u1<B*)+n=K4JOfLIMbyoDU&B5P9QZvQ_89e$t{#S
z%@8CloqLM)p5=$7YViF{i<#E&w*;x_&|wEa-(G@}7TfrA3=dc{vd%R6#4;JADvIKe
z{7uz48HAJ5`^u@4lS87yz|i0~fGoj~knoVnFhZ*<l`b+Ypaek9Bq-k5?A+Cr*gztQ
z!7mm<ZxQ%EaaEWS)#-Oe;pC}y5om3pCQdBj6W+B|(V;#4ToHs|%ZUkjR8pg8)v-~}
z%~|w}8+FOBTznDqv5$d(n!T|+QI<rR7(JnHr@drTchur!PR9_E#~&i<xD<LZP{`?W
zN3p05M&jRlC^6k}N3>arDz5Q+d6UrQg%#teRiunv1mwL3z*_bhigvv8jKIt5HyFZI
zHTn$1Ax~sDGAJcMm+v{7!Y2AmQKm{F1n%)#cfyJJ@d~HQ+}|BoPVB1DwJKU@IC)pv
z6~hHg3ESAH0=R{~YFJ&b@SWWFK}9>6EjIw&_U+NElRhLkM>4}X&eA?M{AhILn1W<s
zs0_4B5|tngO^-wnZR}(Csbf0`^Ncuha!Aq<!gv#kom|*ha&`VuA!)25C1JH)HHN2l
zQM%r;kcYIsxX0;!6T39|C52Nd)Y8C=1}K>a;+tcBgN5>4SM?S5h`^_sMbMDZf94x7
zg2=$%dPoxliFD?i-oFR*7o;Oil&Zr1@}N{Uc3P&<y?c_NX9XG1<vFr+yll7p+n~`X
zqpdBGz@PL)xXgG=JxovU@T5Lgn!*1oc7#h{u1*~OYuDi6b}O|C1TE^$g-*n$3!hUg
z;Ez*V8KosU=Z2c&4u^-xMPBBJ9YZg3!s}yFr3C^+S16qxC6Ccd#Fn_UQG3DYK=rx?
zwF0Bah4Ce&JL(xqQ2ASjq|m4Y6j|Z0XF7lZ&`aU8(>zhNO9t4$lW{68^@CXHI*LEz
z3dD#dkPP9os8A^qmSUIwF#Dc!)cKJ;F(o)#WX^3U6~4+9Ql-+7lLwmNyReRKkh|3c
zuS{j5MT4G*7pOcPF@2!O%MzOvh3{ByRO4XsNb*=o&+p&ejwsc5I=`d(<0|gVs>qqg
zLV_PSGP4{|%0UVqostU99wddd@c{Ccf^-D32@B4{xO-EHCz|GL9J=pjzF85QaAg=+
zXjy8D0A%9+(nW`$MaEE3KLw+Udosyn@?Iz(<zgP8@ox%bX*8Qs>EzZ2k;glB{0Vrl
zr1cgz%#d*+!>CjeS>)3=nY4nG-yA$dcY}2lM++6Ir0h?8)ATk`n`iMBK@p@<*Ha=l
zaSeKXjTe|V$I{PVR*o9Of5_W|6S$N-cP0fXw2c_4nGZBa2vE%zUFQ*<dSMHmc32WF
z*!~h~pYT&V6uRR~>0@lVSz@67EUgN?LN2G|6v)9Gr18@$acFu_`waF<zty7Ud3$hJ
zDjNM#d)B4S86O%f0LTDnP)ggbys<6z`^dWz;hd=)qXpte2VxxO(zU>8FlTHuexa!r
z8uRXPK4*|385%u0@k`^pIZ{zN#%v3bIi(4ID6uTGHYP_wcJ?-yINWn<wbfu6R;x_!
zXDXD4N1X#-c>={!whE+W8Vq*{4s=+3akpG~Fl%AZ5NS(zXZ~lP3l}JT<}{$`v7#0o
z^O^ePZN?<LD&*`!+AYl>mwy8tJhpE}_p9Y=Y{fx13ypKrTISmhbM^t9`aCeX1Rg15
z9B{f`u3gVs;YIRs4B%AwMZwI5TsT!{Hy<W!o%00bC18W0aH)bE*hz=py${HDRg2#j
z6D!zMo;4CukO;zz=KST66o3IKDDnWj>dms*#q4DO@{I#qQaQK88@R-~z)8KnqqloP
zXxe`}H59@VawVK(n>K}!>wGCXkm+>k#oW?vkuX8_XpHKc0#L4<jOlyzuQVZ>v6wLy
zOR8y=`)Z_Iw?4{jxo*&XwUjtIKLPj|bZl3*aHZ-8%?dNFeNwkt7IS*z<dw{E%3}iY
zpEfI;u47`2Ud8_(p9euB-srZOm3`RWK4(LMODWM6j?%8X-ekpyC~P(hO`)ht)9z5X
znOp8v-MiE&zypu57pjx3LZl5uPF^%*P$ACYqpQsb0w|*CnRZZ3NhjeziGHXld?VWd
z-|MavC3S)HOkqDg@j5%ryqdbf)dzHUvem~i18AK8eN7oz{vM&W2}Fe0=3;Ip+^PhE
z*SI2%QAc_JZwB$<iu8#!Ls@}8_)L;^qs47+Rn~4UKPt--0ukUh-<n6IFPeG|^hqW0
z!pH6As6QY!Fg*CZ*zp536lpbwouqPNn$gMHCLmoCm|0S(ASY;~(p_bO2<=ihKsOk<
zh;fG4#$5@DNWdO(Z46glJn4v~YkHHQ6e3)#XTl&?ErzC`o)cviFCEnGLp1H^6P0oM
z#ca;Y3C{izAbu!yIL|gNd_tJZ)W8`_>i!~lolyUvJ)$&^qm1C6k}h0M7AX$^0dLSh
z`jg-3kXb59eGG^UIfm&x`+$a*0ge7`cLXgAZ<hrI2sb==K<K-Lw*lhg;nkw)DGtD;
z*Kb}z1x9)|QMsRDZk}gjlPn<x?he)0vOs!hNYW$?*kBHCHFu-d(&YdNe~i(t`BLNC
zf&HR3;XKL<ETsYd_9o5P8EN~IFU489QjY|+)la(jP~r*e9EbJM`Y7uFpMW}ea-^Ll
z7pkjcYSjYap=A+omNO&b*7IfrRzzNO<XN&AF;RmlQ}-LaG*fh-G4R5EHR)Vdeg5~s
zN7^8$r5C(FSn)Xe0y|iqU7FewL8Tvl;DsqU6(xqGXk+cd*+!leJ@JFZ@|Eh*BH_DB
zy%Q87K3q`;6%WjMq)xR$a1yg+iti=egX>fK=2T9jyk`t?F_=IK;bRZ0mom0ftCrpb
z3QA4*luQB{Xe=<`)AW`9GVC_Bi``JvAMD*F4FeZy+*_I^aXiEOK<#TYG51J{hjTM>
zCOcUO^d`nb1BgqIOtS84`m_>U4(Z{9NKk9CKFFBIp5xv9L1GmR*y=L3XiTKx%b<`=
zbwB<g8X7z0^4O>%?{@%bv8He;&}O39jFcIt#`!5^Idqul?*`FFAju5!=4=vnSamD(
zouL;ydD<(DjfA!RE`kY;0Q*OW2-Ii454#E%CXx&`*8y7pT#O%h03y90iR+k_<-e{A
zL8zavbvAn=yx?Kew}rLKn@RU6oxqIic@PV?LXc|g8)^S^tsGg>;=Tyl?;<I$3qT#^
zB0?)w_Kl9k!oYlQ`y>LvNEOZx7KK0+k($h*r`1in^2Q#>fOeGr-QIMSLAikE?);Wk
z+~K0yhM_kQp`{<H6Th7o5NkX0A<E#N^rA8<DhcyR3$GdrvreM4>|R;6EPmrue5cm$
z2F!)=XCjYf<yWMY!6kxWFC5`7=*nl)$o1<Zg(GMRT9t)7l^4RDoqb-IK@5)--6=l0
zz#odutU8^jBcHO~5941hyusaLMdyH3LWzSM<0O-MWVu#T@`oIp*QsHd{2YX!9`=+{
zHXRDqTdJIpROXtP2naYt|FS~Mp$+IgcJdMejq4tqyMWuD!5a_zXk6;4&E>GI-~NnR
zeE(-O8!_8j4^Fm92;*9se>1U;i^T4%+{-oC1(aSchJ7c$22ZA;VOnmkMA588AuLyY
zvP^3rKZJLqW?aiin0+Bq_8b2!Tr`3pcAU(3AEQbffv{?hpF}owH;35<HZz|cz)nRv
zy>clUJia(CAlFV<BD5NmJ)WH}osR7TvXd0D!O>>$Gy+loe}ASGV6P>+^{=V+(3B1b
zn9<y!&(AknDIgjuT0jZfF0maXV@Y?O9G#sHl%LGvl_CiVK!!;I^sOMz=v&QmTAf^q
zU+R*Y$pT;6GI){K@{$7GX*7~X;?~=YXW&dTK{Qm)xIXb3Mr5nb)Rk%y0^-J5U)s_~
zSs4A6aN?BElftm>5ryPd9~iLNw2TcE^kfOa8Dc4P7LZ#=ifzEBIaD%xq$k+g+c#=?
z9DqrvT78>vyk@d}Ob8_+#)jNZ{NqxaL=5dQ%LH<;GmztcsCN?U{vez|Rystj+Hd6`
zJGS_i9In2|3~_F`FduJH248PcQLnl$+&*O_-X$b;7lLXvav}+SuXrhWlI}X<+O_|4
zr{~C<Z-`D#)J7Cc1sKIFNx#aCETgpaR`%FxlwX~yCWmuXCSPd}M1mL){c3g<u?L9)
z=M;b5SuC%nBV`wqj<!KUtFP47k-U=*Y3>%$BrVWxGrv?XzgOW|QQ?6_KO4Wy?@+Qf
z$yv2}fGr(*IA>g{Vg;}+z}FXGW!90_R*S!Z7N3bK@6n)b$g4`8(2;;mc1vpH`SH9G
z!XnmrFo=ArXZlQr@DCOE1zdy`)kmN+yF!*A-K|x7d!IHwRvYP*(!dXwOwxA1QKiw(
z>qkrwV#iV_#qMscnRF_!yW@rBAeloE0xz8td_2CfxSGB!&}KB*l_L>TG9U3g#a$wQ
z{Sl|>Rg)lY79Y9olW9G5|57UFnhw1-voYTW5_Ev6o*DyO!VvZx)}z7{bl=?Dnvn@I
zq3PEkr_$v(>_=}P6=RqR?uB*<a%+<1q^9*gF%IEV($;LQ&ETM+c{pSG8EJS(!L%z;
zuL-xo(KV&OnSQ8>mQ*3JlwXjOdk$QN&E|*lJ>*&>qrmo|y#443;k2$iyoh)3(NUi5
zK64n2RiOp;fC3NU!<Zc$hEX3?+3cfxPMNB7IsA<h;&8wzXrGFs8neKcZgn<U0JJ;k
z{52`qLZZSMjh-&<0mp<>=90T3ihV60&FP2a6(9<nst+W~Ctn#!b+CfnaC?h|{W1n}
z=kmhodAGEQv_e6GUDhH?+GpagZ-_jM|H$fQX~xtr3o+rHEFJSJy$}UHt~^#%BktYT
zF(1d&TL%|0mo-!h)LzAaHhI*|P1t8>SbFRjKA_qISR=KH&r2T-iqk@CHFq~CqvH6;
z*`NY|kIT{uZpTxPP8r{+Bv<YT@x<%k`e!boqE0b91mr+BNQCShZ3rY}K4W3GqffsE
zBm_#t%}<gw?8x7*MYes+uqf1_-zobc$7Qc_UvCr7*c=>^zDjNpnuMK@B7iTjjwP!H
zefmfVwD+ZEj+cAXR{@|Q%98nA8hqJViaP5pI~7`OGU)UNql{h1xbXP6x#{HLpPr7L
z5`T$xJMjeO7u?&keC+T{Wdpol<}|P{G)ZUC(1QBpRT=a%-x=GU1n3FC=<dMrn^UM~
zA7a!xXJ>6`ZzK&D(DL=nS;OmGX+M#N!*2i6H_ZeoHeK!~@R~=zt^bu;K?$x&;ICjP
zG-juF24yt9s&3AzT6ZgU-*&e!&Do(6<I3_KwNODH!NhC_Gj<eTiIK~H>%Sbe#k)j!
zH*M8&s=<xAfHXM~us?^PcV8e04apbvT6wnvX$#CBYI<rs{MV_jKA;OcYK94pjniSP
zOV0Drccd_h!r26P;XZUVruaVM^_PAuoj(>PV)ZYA>F0U)9l&k3{?^_yc3FT47`=g$
z?JMoI*&gxXNBioveL{&is2~J8Gi8wXZDrMV?oS-57B(1Vb^DdronK-LSsqBg+3K<l
zY!4GgXngCtQ2`_Kd-_B&m1`017=FS95{r`N+2|Mn280;AjUovM?eE2i;7mCwP!(mY
zxU{lLNpJG8hHz5a#{%C9%3HV^>EsW}FJ7w1dk{Umh5ArJkx+SR=oI2&O5P1kc?-%x
z)&M*Y-U=(E>~Y!21<t?~3uQ&bAt_m1$PBXSOXb|CND(#3BQa;g>mI#N_Sn(pXn8lm
zZN!HoH_p-shXq4HSsPYFZU(2pkO(qD^j+ui_SA!Yhzsx*mBfc8ya$?pjf45bl9k^G
zyC<hzKew`6jZVb)erFJ$wE~i(HXA>359tB`sKyx45VVkQE1$si#HB6{to>pe2*Bp{
zMDLRcb5Pj8F$h~Orc4)rH}wY&@Xhpkthz=y)>@qq2?ksVh93=KKNh#Z#$fy0AftYC
zk5N<H0qNn+q%z*jg{}VA`u?Z&jeoE2x|h+M#?zXvs;h~pyXz>$A;FpZHq}k|K=2m?
zEaVZdX2GX@H1`F(SE?~?DeJ%}57y_#Vsl=XrYEv9#4&_HBxqu43am;A{j0bL;pJ_~
z70oDXf|atOO{cQfNkf{C`2R?I)1@}HZCm$M^2Uvr+bhB_4aQ*huago2WK>P10ONmY
zA%l#N*eYzpJKg8FPjKJoeyxupM*?1Ru5;oPYZ_%SaumI2z4hLKfSsL?o|D}j3=9|~
zl*`D5EoetWYI|qJ5h*dJM}8*w1VKx!<>ngFLv7<T_V?HTh4>{kl%}_VLV!XU+&%&_
z1X~)Mm(xAISJ$ETvnh}%tJKz8NqpOUnn^^9#}_E@zN6EDQ;({D>%CNVr%I4uB%lcu
z+cV$Q_N+QO+3rlhj|JkFZOC5aATkDQaZNR+$GeOs&s6D3E16CdyoM?@7JHR$i^)pk
z#3DU|%rwT$4K_bdb9wsABq_k)H!Mc+c&$xW$hV>262x%6NTj#1wsk1(9ynGUK6a3b
zQpn%r70YXs;itlHyj{F^feF$Km|3nidk9F?a0NCQMOQ;|C5}9x@B(}18qBKlQ*jM<
z2!bJ#t-^%}x=8F0ZjP3r+Zj81d)dcdALGGd+7B4*i&7=Z8=c~7NLslvC?Rp42Lhv&
zbIlK78&N&jE)5~=4j-i}HG+JHJ!X5jP|p=j98!)0Y!eslW^W=rlFbesM6q#TQFQJ}
z-T+PUTLT}5A>!eU7c*GHkrW3;2r4&O(y;GQ?pcaKVA-kP!bk;S+2!y-FfZlh&e5Q$
zaRQXf!|@1m66*A$2aY8HR#OIq@P>CLsE}>!!x)bBsL|qm5h^J};|jL2nGx1>{zYCI
zp9U`>Z}#c%>b1rySxG&ORQTi1aZ7_C_|8^z=LI$|>43m4Z{x{FktH^u)VJzhNWFK^
z_`<kMx1iYxGUs>W$)o+|WVW+?c^OU>F=C?=(HKV`sFe6d{}SW=7>-PbT+$&7KBMF|
z5Hm`scfg$gdW;>hRa?WR3IkjIJXmM5b=85aFbHkA2rwY4j!1ul*v+Q*09neNqc8Ao
zM&EaOUe!)9oLB8`OX#{FnWI+5o25~r7(1TI|CGRg241T8UNKcrur%{09*S!A=wrE$
zwGej|p_QbMDYFiLXK;GnNG6<H4ykB+R#IXBW>zvCgwp`fLElC=>!skR^Z5_l6Hz#A
zzINWTxr<4zli?>2gzFS1244cQ;*^xSnoyRl3(&yC&<uVVLv*6PK>?kVD|x)KzNSDS
z;on4YEQl<*Sp_&ejBMGizS$Hq5F|v1lU%YW6wu}vgducNm|u`0L;~z2_&D?{OeWbY
zhs0HgRuD(V%?bvi|71eYL9Dm7*oBI1X~C#<v3Rh;ux@C6LXc1#KB8T5hYQzN)J9Rk
z0>8PI4eRbwmrc>~k*h8*B^1H0wiqWJWP_9Lup)pXak8-OR4ve~GajXjlGZEi2A{fA
zD<?zI1^~k+%Uek`4)`=CEQ07ts6pIQh&PW|?y4;_1eiavV}dq#Dh^BMztxLLDvfDX
zo%rMkP@I8XHM|(IGdx3Y3_}mm;0|+;@Kw0(Ho!*?6ZJDhh_3;4@#_>olBgSh1*IV<
zL{gSyq(d^?6d;67Hq$5a+TBB4oJ&kFSD-_2LT@@rNd#uO7im1qhmmO{7IbG$%$uD&
z=M$;@+I5s<78;He>zvj$W{SWHqVX62sMK*pPU7P0prB+OA<;Ik`%*<jP>0HOlDw++
z5kVgTe^+#CG;>%V`{6*f5XdGskXJ*Oa8!6&#67EP5OJUs1w&S=oSa-MXl5$*<qg34
zrw|*`5q8jW;?n@$ntaw{u)*`yt#nVim*ChT_XIF5eo#Ee+eL|DPs_dXxeqR{jc-Kz
z(qi*^lFLSs>G{$b(@Y4&q9_w9VzvK;Ek@JI4UVfgF~_QN?|kl8AH<IK4YhmuKvN3D
zBm~iO*EvFfsE7q+`q4G#d-;I8LKC~i!dQ|jw3^?w&))%<0qvPE!1&QveNjlUO9(wH
zk=0D}b?N)Lxtb&PaHh}!)A&1Ex$+g5rx00Br!R_Qs(a9Bi})6;X5r17G`1f0>j{cA
zIy}+<NXSvUfwK__ILzOx0SH~K)MINUp<$#(j7^woI31%N`^Rk8({=}RhLYG-^CjFg
zc4>~(4Ap})X9i7*-?iGV_N{Ptnf?xo30E<+==m}nRX8(Fwr~oM>3Er7zoHXrWE?fK
zaSj0`PWN~>+<Ff~RG}1qfv{yI?a@N0BK)1wGg6GxL>hlMAog>5QjiNz`3zW?ApZM1
zd$w@okigM2X!(@Hc&*w72Dq8{B;a@dRWq7EAaGK!W8f|m2lsZ2iY#&;>bdeSwJW7B
z1A7{NE_$vcs30_LMb?XCQAzn6=`^;nz>Or3v(=eCcz&&nLe=mZ5I<OC{c(B!0P)gn
zT@*1si-@I&c-rp~!g$B5J!j(aY&fd)O08U{C=~dO$uU>be28l6DMGTx<geB<ns+6i
z7QsvHC@#VTXG*~UrKU*}c<X)UYzL?L(0$$kaW53&t2HLtekFhhFT`A6c52EhsGU0G
zj2^~a`U^wR2zHHQd3kAugn(eU#bt;F#51Ka1B;jBmaK0%N8ZTrqmV~6y~DCHhmAiT
z8~_M($N9GjU*@H@_AU^$dgl$>XT@n&)u~g;!DV~Mb}x!7Abzjn1Um<OK`OmQ<u$C9
zJBQM->?j_}ybeY5Zst|(gzBM$`<;GeJnFj8R8FBIE1+akB|@ZubB)qxISr;lNI2XJ
zCjulg0uGn}oa@}+=y3GYiC3j$$7ID@V>gqsW_d3;aF)xrrfQ5Od<Mn@c-gJRm*8Ch
z^$0h;QP!X|W~$Ti|E@P<OcS39<Xi`O7bDQDnqkZLQwV6576F5r?kwlSo|!t)$E|A1
zSLNN_{B=&%f&xnI5z7TV_*C!~vkZihFAdm64Xb7=BG@7X$sqyS9WiFVD{2B7jvO4;
z<=DymM0y0hyC>kAuM-ycctY(w3<V4$ua%juLt^YM*6L0C^heDYh=iw7dC8yTTZmw?
zZ_2j~FA6y5mu+O+?{``6#@drN@Y8~g?e%x^1z5bC2EoG$c)IuS2&!kk&%nY@l?!ip
z1m?qgM8!{P>aDj1q^qb<v45U!pw^DKUw7seE=3+CYk~!;{R!7xbW)_&pTql%@>K_1
z2l7nNLkdgJRf`$V%As9Quv2x}A!0Iki!#7JSymI&K2Jnx$=0OV6AO~#)vL!lCl;UF
z$738ZVOB|k4`L)J4tiG3$+6VkG*hR|^?mv4S5Q2BqhAoR3$Vm!PAtzdH+MAYG+U*x
z;Va@TN;$@?7KA^@mcZi`|G|sEb+IZ!(s|Xs7I8)nlPDhC&viSXN7O+ZbQff^Sl9u8
zFsJgEeiJ=fPWKwhNdbU-L&uK_uTe$S_u28EpDSe^4ID70%1EqjC$Z*eIw+JRD^v{*
zv8PqGJ`<WD7K^mo{wI)#c)G%1*mG=F*$$~SZ0#y(IzPUXkr>Bdz_dB;%sSF;NX5k4
zpIi}*2wGJ;F~CMKsiRbAN)l(ywi1V_ya9YO(x7+%>G^CO<|urbpF#cRP)ZIVjXB9t
z{Be(|EL5^GR@8ylIBDyQ9?;hGgU@z(Z76u152<P{0}ZD#0fEQS^Bo{Ma=Y#F#4*}U
z<3BgIvE})aDHLleH^6e08xGcn8;v5rcJrtfu}$TYY_aO;7M6<wx}HjQ@M_F(g>b>Y
z&2g<%IQv8HDwIhv7m~xRLWqai7yeRTjhALOrin-h6$i1lda`?>#7ks~UJPTVv7Fqa
zBeZ?0%bpD$!{F0QRfyG)8S)4o;2OM>R7w#u-kW&f6A=&hq8?sTxGcDku@92l0ND4J
za5Pm5JUQWq5V=f(>e!6S>&d<4xXK>{?I>L4j4Vo2q-tukznE)Z$iXm}jHT!`6|;>f
z0jd<97s`8lOCU&xS@XG*k(@^v<t34n2u11#3RaGq5$y{rs1TrGcY#J^`hdd)COH(q
z1rumW>A#=IrtuSAJ|)zq<0rk$E*en@--Zas2L-06vq%(dBDMnhC9V^gfN<<ma7pzI
z8kkzNDjsggh;(0Yubmpg{B0M~kpPn%4LrxiT?Tj0Q1Yn0<W^C$lD2i&)^0$myX<h@
zs!nBEvD(V+yo7t9Ao*&kl++SfM1#hqL8(FfepIgv^HfE&diGgy&DngSm(ufMK2ckZ
zilJ63u^X3D@j1+Tc%~?}ffYW);y~GRCMVgw*m0D077UdJQScT$pB#*aaDw+zLh+4s
z5Ays&ZRzY1q7W(BL(J{01*EW^V0y)IFz%16eh<Kd_<(aN;^D#>DRgmSIH)Fk%0P`B
zIgj8$5o($&e^L!aC*PNg_8B%}L{xH*1FoQKlRZNHY8hn$^Ayojb#mBliG#M4sgSaQ
zBgr2vL&C*U{6lOP@Kh;-H8gMjO_Mk_sjt?_zp<GxyO2K@7Q~Ia=_3nAv0s8z!Xj-~
z2WKpuDDsFg)3HA1RDj>OE3`?ZEP%d|c}T(=KHZbVFfTA&2F=bEX(3QbV<G5x3)XxG
z)UR~+F+(p-Ln2f@!YlJ<=i1x{PF`)S)wR^w5fDGWUINw?-xvQwf#S6T5-iqNmxgNF
z^V+_RdiL3Vp?PApm_fkT1~0`mkzu3V#Uv;Rz#!XnIw2Z;AZto-TbFZN{is+uXaC`0
z&Jh>~3_5Wbc&_Spx-?uBuPuM#-xA`U&NlwF7;PtP>7&UvjEabHxgQTe9O>@qowN%^
z3*gB8(IMgasy&{^O1(?Z(XQs$wy=11!t*it0)+L_^h@ud2DgDn;}?aH<Ga~P*rmnd
z0aUFLs4`m^pG6=27qWYfv5%%PG#M@U9TjRaOp8z=9(XkZ9*!m4CYYjxTx~ecieY0C
z)YTZ^B4E8Zv$z^WYQMSDqrvWRez%dF4l*U)t=_y)p}^c3DH;w*bt$<T3DgctF_g2I
z-gBOG`o%>QP{CA^<%FRE@Nc=f`6_#)bZ~pLa>)Vq`IIb$_;QVgzlKr40#`>eifDT~
zd5WOwllhal_NN<Cis|`N#Shb9nKUnBJ(IA3yk`6YM3YBz-K?uCgN5C^x{_HSmbc<o
zKDO#F#0nmgzpT=c+JNz$wvx7v&dS6!QDKTM(6vNu{N+7eQjuo<7moozY9%()UI8&+
ztoZP51y^eX5iKAX1FMKn*}(qYOnoc@`=+|$9a&1A(m=6NMY26}LfI<Sj7AGEPHk;V
zeZ&SyA%$A@?Q?3$JMBL~iNyKRbm9@ds>xrHdnWXxfcC7Q5*rNvUE!I5qmF<TkZsBC
zqLc}wn8Zj-#pfHJ$E5Pv@mR3B6@w!ODK*62Ig?tIHx2kv)mb4fqn@dw4X$t^JiU}x
zX?R;{VA%J3iVHAEkkZ&o*=>-@#VJpLSobOyE2GEZJ{x4h)~IIHM4$yPgq(8(n;w)(
z19U>5S=jSJO};2}*y^g_lVt-lWTq#WeW5^rtb{FQ2Vc87;;@J?_zi_b>&;~PLEO_p
zOlLrP8pi|ounTwfyl7S47miLKaRC7GR&|;Mg;LvClJMoLI#MQ*at{WOD5sc&lresG
z7J@ArZ7G`Gi)3ovPj*byb_hMg)%Jd_AWf3&sAW)2hTgn{s{ud7)`fZ?2ibYEm$|C1
z7}(<2#{z5a8UP2%T~cNLjBYLpyv2QNn~#~UZ*6eivvY-k-R)3}phL>^y;B2|mvsR3
z>DeG3oU=mxb|+(2hVUXBfVQWmVA>O6HbgD=yCOi;oxrzy1nfs8y1Qf^M!Dj)6<e0b
zDQTAiXP29&Cmeq`h5Cm@xsMiPOCZ$nGBK*`D`<vJM5??WgYdrUo<s41`YJ~I5W~YK
zG6*<{8p8H%TtDqynTcg^3qS{r1LUjp5ED`eZ03R_AC(zEKTV`=z1GVv;VhyMP7Ba3
znyTbrla6LW#x;e?&*`Z<0<@?EFK0t#&_>}1H1wH^S`1W*o9#7(8tsp*NpI}4YVCtI
zcdNXEsnNydujblhcw$4p-@(cm46rDyZ?Qk;$w|_<s4$k4Jy-46sy`TGViFeWH8*p)
zM=JT$p3fIQ7#&>g)-R3@rH%;QB-~SAIMmye1D?D~(~sQx)Gmgq_$})_E)8T-2ou8P
z1bHN+lH?k@Ux`SZhcQaqr2$md8K(`8Xm{rV89rHWSCdahkz_TM&rP^jXO;P=TyZdE
zx9yPR+11htss~e?l>z)K=d}5i`66??S`_ZmG-A4qvf*hX>r;i)b1js58Zj(;I#0s7
zWE_}LoRaJ5gkbM2&xJ^<KVTTa{=DCeGpLH2?0+`&{=9K+HSfTbhs@26tQSwSnUS!^
zEM;iblrS#5t+U>V>P8;-DL_!KKBA&)yL*2Ed78(=X%DuXIS;(i7@eOd4?0xP_Cxp(
zBr|FU3=HotNlLS`<!0j1V!@gD;kC4zTrf^yn+}&{KVSqsdQ(LXGbkN0)1*Iq0Xb*V
zU*RBd<}5=t=zV)6ETug*UpUD`^J_(&aTN_@FQ-=dYnw|$&{hfnI%2zN5y00KA|fAy
ziAo0kU6PEx&Mk5$2=5SuD3YiP(upWTBfsjjuDB<*a!)RiIgg;1sQkJBPng!eHeCw4
zlB2v?0zG<d<zgGcCczh@iLAW<_2aj3Mt)6NuFATDm@tb6(Qb#S{xETnkR#JSO5O3A
zH$`#$FJ<b4RC;EGvkt_ugRCBN&y2FCVxDFH_s-tdyZ3I^tR)Bauk!QkPh_e8BWIE%
zGpcx;YD!i6#ns+RCz0VmGe@33Li;tC*|Tw<iJKi4hk-P%x+#!4*f~1qQ=EHV2Tw-9
zRU~`x3!SMCqX<Nc*p$FccQn?59i>@Vm)G<7v4mZTb_E-fpcS$KqZSrt$%;bCrtsO^
zd3^wY@K1Wr<#d2Av{QURA_NyOhT)nzLO%rAXgoBiq#bPg<a7k<t>tUE^nCjY&sGCM
z$A4^T50zs}k&0?lk0AGx@bi$q;gK9K@s#XLuEMThyL(~*D5JMUy=9K<qPVGat-)Td
zJ0m8gZ*t7Bz0<rBG^696I#;-=GZySl*H`Z}0RvND&tMeQGYkBtIBM$HI3^o)BcVkL
zrQXs-D;C%IA|!5cd;m^<ZkFOfN(W<JSw$X`?5INLi~Ld9kuh#bik@(E*vk;_hJ^Y4
zI;TLB+WEy7v%re_&L+(b`B>r404ON)llBSNdkC?g7nEyoBcS~fO4GEHN^vtLicE{H
zNX|jcFtQso5Bt=+=FI)}cXAhzQ@{V6Fp^mH_#L$^W?#zVk@83)#08i!D`!HvfhfJM
zXdQdd0I3Mr`RpwjR{8_qc>3tbuMwwkckoQM6Q&gOKjL_J(W?CsNfN9MS72K+C{nzp
z-vIZ670(YUfPsnyrN@_MZpUIzx`p0XgO!Se<VwKRv@`?Y+U$+4vY+vz1j|xb0>v@l
zqoxo8I!)UOSf+<m;V#;j?XWoe0^`v@Yi!%N<NS8o7dt2Be;+Rv>#y=aI+OBdqh+KJ
zCt}7H*5%=Cb6l$ji}sjP8~41ZJ~#Xdrhqp_LkO5ZtBfmrQG<gW&h-h-hb-+2M~k<#
zAnlwetNipR*9rO%wP=Wu;17Ae_ud|6tN2gsb`GOU0fwEc2sHC4M@fy5f&8oBJ~_PX
zef>M@VL-YSgZRv7f+?RDgK*AvcgeiSK0{mKJ&DPr!%l!3=wZ+zsZ`8rX9(kZsusBi
zvZUX_M9?}xHpPV2N}9X;x}1{ld5p@CNO^08nZoBP9L=srj5||L2VD%mH%*ZGYx=-5
zY~*%`6;Tm@k*Hj`&%QJek0FvaK<t*0k4xF9P)DBQ$zgO#6a}GbZjnONEwROZ@eWxa
zh~?HVDh;Z!#jx1g;i-Ehi}(!x)LsqfkY61lM#%pB4tFQe{em?U>a}1Jfw<F2v;%Y3
z#Ip%Z(}zu@5kk7iDRxKvkJqXu2@;x|s$YP0oE@n+!NgYc`c0T4pC}r1h(#_$@@BJ5
zZ^-xd`$gwZmZ&B~l4uuNt`059xofjJ*|?l@Z4}_hcu)}!2WZsF2BxdCa%X1{pb*n*
z{bEiP8$qG-%juKi<5tLqr;89A)SM~eci5@EGQb6{9#hV7z{(I%2VaM6pdE6(@QKbm
zRX{RnENTOX^|OJaTT<#-TORQum~lvZNUV{lO#B|FPXMsim&w;<`E3e8gj|TIPQYOV
z7Z6t?m5NknMF8sINWNP**U2c)?M-ChK!#f^n|%4%WX|q1C!aJR^v20zal_z>pVKu>
z(M)5W+<!ggMw%`Y=sSm3Qa?_9jJSdHy<mbwLm>T#J3v-&s025S`74vt9)vx+qf()^
zO^J2UKPUeEqg>9b65I#UEj&eDmR2T3X^5i^pNYN6Jp9CTz+@V`2v{C61E2t-@;zhX
z_|YP;{zSyNwO4wD&auZ)SWtEa-3wY4=KUj-9OL3~npinPWY_W<t1ZM=l9C07aaafj
zNX1ML2>ZfobRhXs#^>X;=8na&XkBQ3qsDkJUfFST+s?Mh!_-jK2T5Vb({=f<*8J`t
zASZ?QyEqTPL=_9<Pf{1Uj9NsH_hk^I0}L2RG%X}BcQXg@H2Yh9i=UFh0!1`0n)#7c
z&iAqs`GA%>%{i*Sq!2w@9#=j-4$0;MMCFaFS#q1OhfbQUX6<r*LENLlF8UqnBM<xe
z5s1(ce@1O^B3KRO<>Ix+2k%gcWEV9<G{!Z-OZ7Axgz1LSIEJXeQ|#1HmlM_on=t84
z&QSRoUIUY=WL<QPZB>KHM7{EM(JoER#D1k3R~bs5czNa2x;^E9Ezm(m0;&wco%`B7
z!0C=yo49`xM2O+j5?EGQ0hH~xHhNB>p|F*xfK$N6Ry%?q%-IOrW`R;S0L!Z<aj?28
z<#I9x&`MC8lf`kHO4Ixs^NlZqBR7XgE5y8#ndVBy>4awvbE6B<9!;^{(&NIG!|p(~
zy!w;w5~Z0cGZyi%>aE({VQw^}!;hFZP}<f=6ffJo(nc1dvzoJVdQXj9q;DLK%uXmT
zCDAqu!xO=+_7s903t$9>e21Qn_fScJMZaw64E9x3JNBD+#w=pcpw^fK*uBrBB-P+G
z?TaO$6SooK=?v5H9$QNmt?bby=GaOM1R18`0yZCE?-R<U@YT}xdWqS}q`n@Ab2=fd
z*>5b2KNr1vB$qBc0TGOIfqWUKf5nDkZI9a$GQE(k5b|dRCe`;52J-AdsXFl;Qe>+C
zh6KjSTw~Ap@$67;nQaeD`1q3wOBGi*jALg{iKs7v7XEN(ZE^0Yc|1HmB{A)ENCg1;
z-j29^yR+T2PsY4ggm-4O3m!@`!;sdmZ$qBPv1RJcA5<EyI_fkB5`M%PvebPJrFpu1
z7bGt@IG6x0p2))>#GzeIn2lC3p!q{f113vWiRGkPfBwuw^lX$=bHVXCLkZubYamUr
znyAHqm&Mqt%_QNA$**#y>EwZIR7@Z*g8Gak*)L(5A*bmK;*k=(=#o)E?`O;nCx+2A
zm?*J85(Q*1&AP+zbBLOUXMyaJ+JPXd2QtHoaaP#@$K|7n<Od7mD|r-@VxnH5a)>p}
zP*&kO<}?L_M2WR_+{Q1bD1D#$8?>%q|1^afsVuwc&oSmxD&E5mVoSoiJ}F(r7Sw>+
z#tK4D<eZeXYIzb-M4ZiR_h}_)rURbl+;pDj74sj@KAbD5%tzD)`^4;!mKA7#Qv;<z
zR)KaIR)^|Rb=Au2Pr<!$i&I9J;#arjTK<k*30|>hYU6l@P;p_zXF`$dcCj2}cl+GQ
zn#z<Qa{Gq;AnQ-9)C}?)!ca`YK4DQ<GSH1nWg?dtW;kWM0Xmk_*NDfK)o^*BSU><q
z<{)wziB)`AM+CFA*|LAO?yW6kTn-XLoChlO%=sMEbSCS-`)~nuP*!xih;t`NyO*`C
z|HWd?4vuq&f)Zay1!<#pia%o7;?NBn^mWxEwL$zArPBeMtH>K*hbDnf@=>exxe2Cn
z((+^FI}fmBA&uAyINo}EHp{6plR5E;wHXcYv{YGrBVQ2Z;x|oly`kh6G|20-eTNim
z;Qh#VLK!WfPRck?OOe)2zHt}jrr6i6goT>rXdC%-V7Eo~0fCfY<yjQ<-$|y1k$$!*
zr&lqPKiCP91`rt5<kHO7-aedc+vHf3MLHjm`}+%c0D+WTbuR$ltrG&iRSos>tBps5
zLr*RTjFkC*83biQgfXw+snFTcn>H#DG{UBhIyr1h7D3$fbD+gIl{-*#&AeQUH?SPi
zO%`!h)E{s`pR%)%l*8uRW8;D~gB0dXvdh^ORY%cUejTrJhlj^tkOIzrovbuPntGBa
znVnmsox)tW$7P_X!?;A+xzDD+1}D06j8p=wozkUMEP;^M%?{)#$UscaOC+wFkjfyA
zUye<J7$@PQQEncDBpBf%{7iF$kJ-hbFqP??miQB4I8-Sfzu9Wu74_o5xefFO@W2^j
zue{binyjG$jH{DHWP?yj4~>8nr{a})8cvW=H3s^l9d>F$*}XpA?UBmp-LRJwKEM!B
zeD)RG267b@l}IPGiUsbBp+beFxPYUrIuiy6jwSg!{D;$mDRv5g>+#$35d})!auDm~
zphn-Qe@nWbpA1jtN(2yPf|TM-*}GmwvJP;8=(l|aK$#CbZPNh|w&O<S7h+E6>(j{?
z_DI)N0O9!|bBz|{CPW}JVsOSy%*JL9*!sGBmSYqz?U2i{$*KSv#6yqpjwM@_JBj2`
zaRpcCVT1OhTFU$;J|4{_B8o~9q3ov=I<1sfv_mv@h(XdJv&9b)5Z#P%OmGs&yT#&n
zg|fI3U)&=VM9xLfuC|-hkeB!|VGyo|n4nIVgRf&UT^u#R;9MaMGxVZr+}~%Dz@(xy
z{7M>-nZdTST7g@Rk7H%|m(WWqQ&yutRH-P9{#+>l_|gdMbfee2+-gzwL69*jp^eFj
zt_n!UnbAZ10&<#>HY^<zzA1fSeO{&o1k3pXNm1=e+_7fAe*|L1H>8{t8E>LWIM|%Z
z%R;RmO-K46db=qunj|j@i*^z#Ac(p|N9cYKKbej@gicz`9{)|(P;5(Ur$WV;_!wqS
zK|Y;Nrkmb8cxG-EYiI!GDn3F^fJ#_`cZPz3)H5jbi{@VlclMSE4j(VfMd+v^J=HP8
z%n*`gMfJj7LW1%Z4`eH~*rtxW2Mp57z7h)*f+7tX;d6(iMOep;4%GBcr;#wX%$Kl*
ztBt1<*&J-4MfIG0F(pP5NYP+M6leB2Kh6uT7b7%r$W97yI(I6G17?D6H{XIFaZ^VM
zOow4MKgfXr-B6r8$5Ix#5lu#=(E<OpxsjDrn3KciFdLU7dGJz>krmCNpo7~d3P>;k
zoLIqY3mFWqLPH!Z3m~WmR|w}4&FKWFBEZ%DE^1YCv2zh97mG)b6~4W~IrN1VB0Fvp
z26H-|d8L=-pj(?HF2rGHxoB0cthDqYabUQI?5?3!D+ln1mK`mjtve>Fu8;`?2>SYQ
z+C`stHe>NVDyF}IMaT=1vc$;@ODtTDTn#1Nev^ERdmunUe)Ex<LO#%YOe&vI6}>N=
zmYc;FXk**J8^Qd0_m06r@GJRBzw@gPB!bJ<S7`##0KCoL1;8NHwVcjv3%p0e>V$DK
z5BPxt9fr&~XU|G+$|b|rjt@rWAgzv?Tij$*y)VGZs?$K}%ELe+UW())J?Ml$|J~iA
zE#e-2Rr3P&OOG;LNyvwzj7D%fNMbaa!r_CFJs$<Cv(cdh5GT2Xj`gbTAt(*QRzB76
zGSR|Li~)@ilKphlOeRx~4IX&2U-Ye>wA*3$!v<i8_Z25GSGo#PjyM1g8AJy5%DN;{
zByo$Ggi{v8rBQ*~b2yeXkDrdo{qt*w+@-fMxv6VF&N#QkTksHEY{nh&M?Uj`M0!g&
zAZ`;80viId4;xqo60k#6(1L6pr8GDiU(jN9DPdnI>)2^*Pbez?=30Vwu)%YZ#Uuvx
zHLp0@U^gIYJu;zzfSi_rx{eUpUhsc-;|^k7JR1-cb?7-CUQyGnsaW(CpX=<>9Ri-n
z56bMchFAS_f2ze?#0z!XPFgYSNi7?wp9HJ%ZX7Kk{>tg$%$H;3{$<KpkJHL#W?JJ$
zq5e8D4}F1UKp=+dXox)*@T3DI&C^{)5JezyF>+1V%(E_xGT;y<_M%c0L}Q8bV>1oH
zK>-SuptiZGri%sDTu>v?ipsG8WP#JGLVH#J!W-##du@WnXo4b3S`^o#?^uGEFr)me
zwFN1VNmEW&bJV_QWumBD=EGK;VNMhRyqJI*5~<Ol2dLq-t+~awD3Zn3X>$+QV`vPC
zERAOegO|aL3P4uMt|5y(>S@D9d9uO#y&mpgi(a69Ib~x2kE>heIk70GBS4jL0EUz6
zuTx?>b(6tgLN^2vr%*AUHuq%XCGf0v62>)#DHX6%WW?zp{mfg5AfNulJG)KLy5p)h
z2&F;2ZV9$A>d{-9Z@NPZcO59--gN9_wsl;t<OS1iNx2s)+bzyXUtARZ4Ka4kj#niU
z{z7<$>`s)Pi~Nnv@U05-a|Jv305H2r!&9q%QcOvIV$(fX-6ohaDxrRJz0q1H&C_5U
zku!%N{b{Fw3QA1Ww}s};lo_+Q%{sZju8a%hw45_`X=e&X&GkqMWpD}o*u%aff&=<9
zp|xT>6M*{fg!P1gFwT=Hg&ne-h$^w?p@suy9b5jtms%JNhwpeMqV>ZE_rFjp;0z!p
zIIj#~C=D-jG@ATerq;>WG&q3+Qt=rG8{u~HEq(*PqpsP4rFtu29COU5Hl%dE$B1uL
zBL@jnWh-=~gzhs$g96Cd@$J!8vq$hNNLwNvgp5e!V2Wb+CK&D?sF4gdeoI6`hlHD0
zQYF+>!F4_Yfriz{hJwk65fvy;URB3e@i1Q18nkJi@uQAb)1n1?v45|o5<$a@Z$Y{g
zBHR?F=2YpcO83R6Qps}%SlaV7l~#$dJDm}$Aa~$({4{(vW-i{-c6Lg#Ao~`4MhUm!
zxI*1vRZgG~%-knO2Aw8`#n7H|uOyIkwq?#v{9La|`J#%IUO(M-D;YE{&tvO?nFWs%
zW*H}I_h6TU*6aW#JtKEH^^2vBO#h6%I8lt<1TXg>UyqlMATcRI8GdG!JmQ4FKpjgy
zJDwWLTSYc_G-ypu1!nqY0G46`hPk$Z%VI<3U9XunEI~3YA&tF3uEA{cuaYkb<7iCG
zXU1T{UPD{~p-rDI@B->HqDy!<*}%wp;-4#8$a_oA{lavha7KTKYvIL8kX+nHv{1#w
zO7;uJ<mwJ(7vqoNvgpRxiQ5p*QjE+k76c*=4z3>jGiJrT(yAb60@(Qql~w?4P{%Z1
zrsB{HiLyY8AR2V)EKF$V%lku6I;u6afT1WP?>mKuO$H>*(KfqyE2>F^rY)sxE@^bq
zG)bisP?~zWnkfaRM?YaMXieUI#3Y5}r`#~0D+-ELPS!4gCd?^>3uh}R5D7gXtqRe4
zCx3j*_J)Oir<N6Ci`UZgO(gD;T%u@?29tdMgG&9Lo}Zi&WD>ms69zhUPBVynyD<Iq
zj@S*iuUyUUZI^>?0h5B1Cv{(8cbN6RQrE;}n<){D3re6I_K@?z^4UE(n0$q5qfPl7
zM6qQO@g0rndd!+z4}_g}xNn5W%Q@1rK67!0qE|7cq*)EnuU!=dD^rU*&YrcV3k)R4
zR85ez`unIdZ{245*=ynx-21ZYKfnG-$d);OVlhJx1Rl@*L^c2S?<Z8KeZVFqa|rD~
zjj9mZanj!g&3@K$fU08PQ0_>5JwkKH<4%9rK2i|U97l8_LK<*~O<yMUSEH*aM+KXa
z{njF{$3D~<M+Sqy2gcCJ!7CxI>6JJG#3@T!xqDIKXWBF&vc)x90Lz8cB(QsQA*{R#
zuY_@7b_o`d-aG0Q=tqaTpzzSL!Z*<C6mnZGv~78*l58*&j!O6oA&fzCGaFWCfI$QR
zUx(c$hem{loN|n0+lVsn<8Jvt#b-{k&zp0noj?=WqI^3q1nXrV(D3IPKc=>q6d&5M
z!)Hp<Nfuf6#JSnBw*+vR!xEhZeCqSQL{mZqp;Jxsf&kBHp#YHJ{G>`)ylEbFN#ylk
z0HOm9DqCVm@zhja1*i)(%d`wjGQh)4yA<n0CS#hAu*d$c*4fr0PV^y0I_9!fC4^V-
z>>K?Ea6@qXC{iCPHm5=>JPMZs=aab<%eW(X%jbgZ0hc2{$9FC|%=&6om<C+xVe3Rq
zB$?vY(YbFh?#r{-J~oyCCjryT*=OWHULa5^{|JxEVX@X~GPpSGnGUk!0<*(b@c=hU
zNt9SP@sP4#d`)K!huQ(}rTj>GY)dMqw%p!3D#!lrN9-tX=&^{{wx(q~F~*hX^hx&~
z2uf-Ra3{_d8cl1%x=H;7tF}G@MZ!OT+9(I~^%Y`_SmwvLc0@F6MKsIMuvI)C2t+mk
zl~J+c4CSKa$Bv*mG=&i-u5l6AJMQqwPQW-M1U*Al#|?#fATDmX{HaE)!L_W#HrN0n
zge1VMk&R4N1ps)W6%py0b(3yzAX<1_qTkIcqkb6X(8b~!#zcLF98g616zJ@cGRP@F
zv;DAL>bv)?=L;onnX~)yX)9-LAL+|=)X=05^rRZWasd@|K^<fZSNLM}6l}s?wR9^p
zQUwJ>x&gByyMP;JB8PZy<fE#4<EvoB3nZalBS?Y>_M~TdWzGMV9<62dJUmS(PPzHL
z=?|2kL6@MteUrk#Se{}GDUrT`+so~li86>%L}5XpL^Q&CS)f_n@U6-K&ZuRt^%eM9
zZxr-m%=qAgJpB_<Kq3d|UYwFwk~^}|D06igxnGZjrbzA)p&@;;{zkD+BS&#wh%xzj
z0Kq`<w($vhyKMW)QehF9@h|19Ts;}8gjBp|r-R|0eOsG2*jJt|j`s>sdwxgtc$*1D
z(uhCMCkb8^vxDhMyE!VDF18{f&NPr%tAu^vT-0T@qF4at+9do_#XFw(af$%L;gh%f
zQM4(h@rPxzJ1akUH=c?}Xh>X+HOZl3Lb{W|H)6a2e$pPoMT?_Yb@37wl}0C-y0Q`p
z;85A(89GFPIf32|<4MJ_n^efcjEQ4E1*UNb>=<QM*uqlj0@%}74l;eB<f_dvUKHD5
zseXJIi^q?%J8ICHc`4ON7aBwepCMyxeQy#$e?EK%TJqx0YAJ_H$+o^x3I6J2;a)KV
zZSkgTyDL5fq&_1~m`K)8zQlx$ilB)M`eOyRH6IG`*EFGZ`rp+mL~I<|yF5;Q2r5j4
zAOcD_6*ur2<XFGo*BaiC{sBnH>{ys%OTNxp%H}<c5|~Xtt%Tj}{AW44HoTT(7J;We
zOyK+vGjOIRi{2>-f$}YHvvPZ7yOApC@FZzuf<JSPC${_vKqgt>Quiy*!<`50ufuF-
z7spmvlcC=v-OPY0OX}S(=%I<-6${Rrg+Vzc9N`<#YUnnQNT3Qpf|bKc#`l>-2_KDV
z)PK0djr0?zKZ!Mb59%2mDT8vD4J~_OVTF4zNdz^xip<C#_hi%^tESx~@nSnvfhvrl
z+Xarv)OCcfcA7sHtQ=Hdot>?f1q&+ageYb!xo|uX>EP?z449FsJ*&*Wfa83~8%E%3
zLWi4JqK?1DkT{X*A5azqvpKEQboA6<&ju&KMj*}aFF?{MlFY_tp-e@+Xn4XUrsda@
ztuSXbA%(@AgA<Q_XtxRoW?Z&aDHMLnRBcZ=5O1?5w@V0+AxG@&h>@-6n%Rs1)L<)p
zsI20r+kS_5O~i2^g{0CN$VYuK>BJeyGMY@$_g9&nbqZDzUC1v!XU!)mwdLeNQR1;%
zC+?%^93h~l&W_Ca8wOl{r{M<JkRHpcgx}jq@`w($x7Y0Cd&&7EZ5%P}vk<&W%C<Dv
zEuH{NQCQsK9(zw()rlbTl*!s_38@tV?oe;?rdmB}e6@Sr$AkzlocQJr{<A8494|%9
z6iypV%*n8SKF}Hb%DHHZx(4O|yL}cO+?XJGtRkSC8$Rf0Q_f`Kr_UqT2K<{iDc?@_
zJOqdZrdCvSrQ`2884yGhu|C8P40UZVfq3b6=T2Bf?s7U`sc1VcD_9q`EQ}aoijA*A
zd9i7VzrBblyM*dSOQ^v)@HEu&@dSr^^+a8!+1=tNZS3{59hFq4e$e%X)tzK)b)eDd
z(~rgV{5xH}_y@8un}Qcm&HFo!B~s^1fo}5EvHr9ou5o*IwB6tC^GJ5+0d|RY^v~%N
zUw#JAEhe!r^?ZcHMA|<=KwRN$Ou{%QVj*(8*Tl?!)MQ9@reMzU`GV;m-tD4&sK7ic
z`6F+{rU#V?;?8d^!Z^k?UB{zk!jYSi^zD(7Ly-sD*;7Wi#O4*-BJ1l+&>TG%;Ecos
zTkXp>h{DZjNBx3Xg_>FNRiIP;Ig-{?Pyk!HzIBnC?Fam>^k*Gl(6h#o1#U)Ho#L!*
zf(h&6J6@y!W2mp#Rn)IxAI)k?)e`Jf+)1&&?13WuvUl7qn8Uv{@Uj9V^oa>}WQs?<
zg_9{XYta6j59xM}q*M*sB3O6G4ZIZU6<tqm*sm&6$5s{afiFj3vOhdJpL?F6`e?&G
zA>-O;L`q&k<>SVR5}?tcE~USfj?O|Eax;WBtDg?wRloidE!yPfu}kJS1O9|p2NCNB
zA45M&D{o1v*i`IcDuEgx{={4`I7xnmc5aX@Vb0!R*!GBeRr_wWGB^;G?NUHEZmgCH
zGw`i%vmV&eV7pLq2)YlHqcH*GXO`HZnBqG38ihU#ovkVcG7@5N!0*K>nOzDWY9#e0
zF*?e-tc5SbpCC$Of4T-e)y8(uh2#J_jgdkA4$~sx7vBi*$;q%b-M6kXFx!{(Rsz%>
zN`?=ELFnunc91h5TK)bJZxvdg{LP!PSU*zo!`l`7f~Mk^PhdYVhAGdPoxw8Y@4zCQ
zCYfu+^daLldI|(ak$zN#g?}Q2$;HVAM60ERr;9b^(Uwoh2AUa|2(pYo_4{Lny<#BA
z5pIBu68EI~K5~KtA^?-JlF2Okm1nWQi;V6w#<2<aq1dq2eCLYVjnZ{sY=VRdoJs%5
zW9H0-U>rGoZquv~;A+lv{eAJn8AaT~-bI157Y|-nGP%eQiICPXs&wxXaXH`<KWh(C
zw2h66&EXEz9^5Gc8)9q)wgoi6aN6F1b^wXsJpOT{Xg38Xv%>Vauv<XG<IGyvRq-18
zkw_6WT3|^0l9s~8`zE@w#i)jeU?cNv`$NdJ0=ViN@a*&FHo4*|ZbhsQ4UIDR2DQ>^
zdR99MV24RRpFMs>f-ymxo2k549RZ4ztE^tJHBg@@r8>r)=LXWkJ+l&BIEdySs^J{O
zC7sp$D}{xD8x<#)DdWL64_KIW8K=wKRLg|zU%=e+hKp)jbdTCuw?)xHWKNSRQ`-%+
z4hojBwztV*Ts=MNA6iT_gYsekd)Yi;?|eWdlS^Z4Gso}Z%)JokN^%>q!8uUdmy7RX
zYPo#cKHIFo)0R(IN{0NQG`Nn1khM9-WpJ@0dBgU4^$Bew#r$wnr6GNTp^B(uf~RWP
z$*~~DXCY+$*@slS$h@ap>Oh%dutGrS5>3Mf4ms7iXBq2h&LY@LQ#%!G>I>-L<Y~UR
zSu6=@oGr`M9P*F;duh=v2Yi~KwG>1SjSNILXe218HCyr&dmlZIE4-R*Zlv(NXLBIB
z8S{t)VVNmS$S=}HjGqCx-;j1~6A)gMaXEe+ue_rNQdHBXFUWva{U%cX{5a&DhGT>O
zA6=6J#B+D?M2{Q3M5oRoQSqkgP0SDN(gCW%iWEN{QI@g=Y;>wpJ!s(>8cFpUWA%r+
zP{_bVt7O9x{vRtaR^1>90D%1t5OCMnH(yDxTQOO-bU44P!d*Fj{0=>0J(=A|0N|3a
z7imGmU!7JyRLktqblff16GGrT6iuzPx4{6=g14eWwZQhnAqJfD;_;B&gfD&ug{Egd
zVlwxwd&6V)1=#qfrHkVFh*{CiPwJ~zq7j}ZY=kGFbl8fITIOBR+(~^!!&24(ABjoS
zw{li7MLAono%;)PC^U8p5>j;I^eP0z@sL8+Xn?7?)X2ZcQvqGVVEVo3Vl7$b!O{S&
zzUX^^iq$q@@7!7E-BVkboXj3YdxUKOGqx}SuwrDmd_dnbwJriq)N!z3=d*$y+}WqY
zY&QB|V>4)##1?HKNdW?|w<Q^BM)C;)340Z}4WfhX9CzWP2`3|dkzwZEOK9w`g7B4$
z<ZX?o{0_jNxqU|v6TO2}RpdL|<-F%mCX#dO_pM3Bio2S<Il<$}#iPI~Ad(v&WTO$A
zJdvMVg^PkaHxm4}!k)88VkKa?Kpr&)8LV%7PL8OXL=2pV6>j+C2Yv%oJx8tNe_sNL
zOftAT=dIGuZ|ncG5U{uONo)z$3%oxg{>g~q82f#?uS(Jd&L2=SV*w%sqy-}5--WXv
zL09o%*jpXSEN6uWbcBqV$ig=CRt5GXyHjO{$Y(v%do>{hD~Q2kGfl=EuK0JBoKS7v
z;2WuRC{R>c22X<I3DnAP5g7`TLG@K3F!EIPfJbbk_;4K%iDmX_^K^&VYd45m335r?
zdGX^05#v8ybIzHkk#vzC^{b=9*l;t7JNmD%hfxS$BDV`C3(ISW#mT792Y%()-u+*X
zGqfwSljTkcbE)&kYRW^C1Hu_x@po{mvomK;^Sl>2PPN8}Btg-U=qm|;M**r@k7x3k
z^+?_8_o|;^q!<4;>u&4#7o+o|R_{#m0T>3~i-Dt}NRH?OHO?g#?GfSO%%luVrg%jh
zhl?Tf;ONLmg`+a920>&jYrxJ#Lt;Fr7V~_fvj-P}kj%wu@<Ws8AIs9RJuvcC0d)Wj
z(Zit>@+~^&^we8GZoD_2Uv@PD5H-WTuGR<JRtR4kY9L3NU<pnTNq=ky;=Sd=V#6bW
z3&3T(Z$QmIx(==ZJk~;y=U6)OhnzMS9>WdbFtFeuujw3cLJhEUcJr6%1jE5fD%aOX
zxdCF|3-6PwwqzDpIv_L6FV>ydt5_Zn1aGMYmWDn3HCR8yV~@a?O^m8c2Rl`?7-rc-
zp*@O)RFNPSm=m}RPLh0Dwz~p29D5U+=G)-{DZ|5u6NSP)O$B@d)Wc{)c`6;2?<-|d
zBNanDU)!E}y=YTwf!xmvkh=g1GER(Ix^|Xp2q|yQ&#YP$AIT4(GOZ0JlH_O<#y)X?
zUkU3HVR=wC0uqnCCjWwPr|9@t{Q8Mr2UYVU@<^Ff?P-T&3^ruu)J#82UqoF4pFwu9
z)4p7iYd92Y#rz-y>Kq*-cEfyHV~1h+T(b3^NUNb%x}rDr$C7n}T<Npa>j{8#-4IkA
z`(C;FZic+W)3GV^@74XI@V8s1iD{5PT-U6gQbs(QFqth51>)lp=8<+uxh?IeSyv<m
zUl)ty1=OmUmzoAzJb#cV5a+qVE4lknE<`&&qr>QFf7IuiJB+Vc)}}qk4=f~GCGv&w
z$;+qf>AmDZTv+WPwj4W)c!9#*&we5|kCo6FUYRb}_4vUQulFE0!8Vh3sCewPf+9h5
zJcwTWd*th9!#7%P7*LeXE|9jw_yf$2DMeUTuNY0N@`d?Pvb~W`xbY1cFm9q$^Z2B3
zj!hJ7E&12gt_zCO-gUqxp=OrZw|+qA4qCMQZxT-g53zXUcRYs4z=l9s%@A0y59>RT
zSS=^U`SP;~l%2v%A%cB`TpuAHmiO2%>qQ1XMnP&&8_<kv5S;L-h@;u$PO6uwCe@a@
z=_SX^zD>JqvAd#nhC#E=^8~L&k?5jTMej9>CX)6L#O{9lL$v43L~Y6;!}=_+7}D_b
zMVyE8J70_+8AL#4ROQDo0;=!F#FGGsF~jeW<y0=C)zS;-p9Wu~@;+`5l7l;<^I<ed
z9RvXkpG9U)B-#8b>W+NS?nAmIyG6|J_Je$8ofh~UzAPuDWbpIkTSa-}F0zeklWJWx
zKY^Gdh|~i3WLY8vydu!NuoVxoy<J`yUR+sIVFIumRe4k3mG<n>ID~7}6QZ}6Z+W18
zT(Ji*_;HWu&0}-_9`FDz3D%JHm_l$#2eRK;)8ATn*|4|e@G|!$!r=aci~o}+<G=mm
zC%<PV{^`X8FaPP7u>!Fx{@H`!0;x91?@Z&`#BqcXNdNR&g%$qUwKO`y*ZODIepLRA
z<QfeRfD@(^gl?@VBxZX6&c(lZ%-Iii4cEbh;Ta;Su>s+Bc}Yqc6e+*S?GG%NE~GvJ
z^IQ$Vo~O2tNISusw#`OZTd|!f!bL}(zj~RgGH3nn$u`D*JntfJsn|NMiA9ag7t)pm
z|3_gCn$63A^7TRt%XFS=v?`g4iGY=2O3cLxFyWBz_DAdjW<!sYjR9p6QF=4IM~BT&
zV(8rEW(^Gx=YJp_qUy5v9nh#}^T%x;yowJXO-~*)YM0YemH2joMlY2=xgqey&&*xC
zj~av2Xqr>dYUIa4=M1=12E?o!F0pWaBX%YE3dUvjW-ZXJXbZrx!*i#qXoB$$bv-kJ
zh|8Q;GZ?;R#;V*!kTQ%5#Uk959TCu9?;q@e7wjiH#UK)B5q^;5GGiZ;X%hcHQh*cA
z`aCbr&4WYE`{5$M4me#np);}FDYzEzK2TX6lCrA-+TfWA20x;Z?NY7_tL#O$S(-q@
zyA5P183*x6AE=ALbwAlOLB3}Fb6dW5qP+7Mj3|FON`}alqL>tPlu_7H10Cq*^T`I(
znyi;4&hPPpMzr<>%FP_wH$i9vM_aLj`8pRtSjCaSmQn=aC+7*=$9*E_Lyp5WG=(@B
z_!x?jxXpr6fcB#&TI-y!S<MeYLw)0Wq>idpG7Tn`z(N34^`Sf}xqSXun&Cxp0~HKs
zo=NAfh6Wi?SKFsyO`OpWh4sQaweM3{=V&n}btNTwYaT0YWZx+-gWZV#e*DKdrHB-p
z;8VPhZ{cNHXJAG#p;A^BU*;Y{%NU&9Mn?OnlL8L9RYRiol0s4Z4iO(iOMx&62QSt%
zH1?@-%4Kx1OmKnJ_$h)hbe00l6aS!c1B8S;ACa2AooHwH@~W?}k8BVJxTk82B}%KF
zp_N=?E2%Xu7cfmgx4vS0cD0#v+_X3KmDLC^2}v69tId|sNxRTSt4wWppam%twU#6J
zkE$ZqEblPvlJ_!zrCtsL9uuYDl9AgI>C)8C9aoDJz30Np3DMe*Ro|*IuDexd%GeYT
zabo4q6*tX$WFyC}g*Zv%we=cX?S;$=vLnzys^$BOwy$`J7ItIuota+SJ2oSJGpb6<
z$H4M#6(n4ZisvZ_{-w+kP2;Mf7md82qDw5KWr)ll8FdjE4z@Scnf}>X-UeAASgVGf
zX^qqPVan+7{8CJ2^;b1eC`@bkjZ_{aHxyPt+iTRIDqPnZ5d=7}w*4$XLE`~i%Ym3?
z&Ll+88YXNLM<SH0PY?vF>HD)pdpIUWnIy$A--;qV%4koH1kI|^fqo^W8Aoc|NtB02
z!`p#Gk&&$ig5lrHLRbvJ*k*>TNkvn;1)G`DxOS!AQ9(q3#NnWg*o;U_U6j5a004^`
znm|dJ!`e<K^oyNQ-pwXBr(uLE4U4!O(B~sfY;On}xwA^ziz9S{q$AMj<bX?1%H5p<
z7pOEE#6N^>Z$n5()M>(jH+Kt*MsO0y^)fgv)VfU*wbTR-PtKYf>k&H2+j=WV*)<Hw
zZId7|zmq+ibm3;aY9$ZEVCV_a6nqXBF0{~c%v;ox)!}2N4e+K#K^UR494zH1V0;Md
z$fw^nKn{*b6IP-UZ+wQ(oRB-?@MU`l)dksoqXrt)62U<?vNz#v|FU}&7^)sc{|hBv
zhO*&6M2c^%|2yk0x4Ca#lDdoyQ)2zyZ43p#UBvdHhzhQWa=+qx(y4^@WylT?UatgI
zk};@~)Qo$CIA=|$s5ZDQi5ERCXjnSWFsA0rw7(7!VH@burK8v0;`U|r2_hS_Pl}TL
ziqa1uTI#;ag`@&BI=JZc@$Qdhy)n}|^JgdRbnwX}{dU^<0KO{g<X`fmyuOD)n6Zbo
zqWXX4E|Ci&n$>TgM&2Qkmenw(z6(ByM!k)YVVJaK#G^gf`zkq1@_;n6LvBn&UxKhj
zilDR3XlX~}>jdM6lMpj(DxBucz_2iq%^dY4SX~CU<D~LZ$qw`>35B8q6N<AgVMs8q
zlevVF$(-^_m7!$^R>~xT3U8=k&WoIzqxnAgh^)+MlraE0km9ZC+9TB25j+d(QSE8C
z-E1!ZU92zeLYt}{QX8K+=4==wq^o&8PDioI5^vT%NJz{v+Rq!{4nvhr0vj+5pynck
zb?BFXp)gj>uKG~KD)ROV2GXV4Dq|}|hd=pJ;>ql_mU`_;7aE$>@0_a=b%Bm<ZHI#6
zM4-4(l9D7ei~-Jq*DREnW7R1Rb=DtdmaJb>N1D#}tTMjC<PNEbI436jd9ba>sVJr}
zT9{xNiB{`&5^CMPIck6Y7gg83Qms=9%?LorKP_(HUzw(1f%!AO1e6r(@rh8KmjuE&
zQC-kfXrKH=Qkkw}yL|Ngj$5{3G2OiAx%<uCcR#j|K4<>#_?>3lNo1HtvE_|>1iz0U
z&iSA<?DYGC>`mGlOr=dMQVrY+qSB$0$1K}De9Myk#F}ov^HTB^Z^yz!_p<Ydz^E7o
zv*XlbY;oW(GLQZFMY6z&YTYVyLm(a<TBu6bY2MB*#7hf?0L>Rht*&ejtTh`L2M<HI
zH5#<pr2GKm+j+mZFSxlnMa)%}e*^S4?%$kgA<&5fNIBiD))w1(IsL|aDGJQ_>z-46
zn%D6MWSg3l*n$f2e}0Cn=ZgLML%D6-ff7TY?;?e$>9$y2lqmUfb-N^%oJ<vcT3t-_
z`7Aig#T`72CUAl1!Rn_oiVa@Iihv!u<9M`TZB^bkyAcOlzXCK_<wh3`#ULKQkJ0~S
zZ)vC>8HJP!H9T&e_&JpLxdv&F+TH5o4|x-ndut6{RT8IYv;`kt)0)-gq}0s{wfMxy
zsh{S$V1X-zEsEj+;wO<=?Ma_sUcEmGB(=YjJi?@Q_M&}@l3K~Q&nar|Cd4tTo`Msi
zN*&IQfd09(zj}XH`d@Q_ZSsF`KPi0w2lwM9uof4i=4Gd`#dzp+DyN02)mz1gBl+Cg
zh~ASI(%g?)pjcww#x9Tb&eWN}ACmWb;w`wT0oFup!_j2v>DmbGXOO5EX$+X?tGU@*
zrxPl{&u_jHwYf>nU$&!6DXYy$`4**x84ZWY6?4j!8jq_NMSxQ*QSz|Ev1TOkOxn_}
z6ROG)>g66IoOwV~5TQEJDZ-u&oP69=VnK*UEBbM&FCglPP0hxJh?E(2MfEHo^af{}
zXdeIb6H&UAwJBlW#zCoyhS*!=N}p~7l6#)2`zumNjsMs?*iqh_W%2^O;1sIGLIP{&
zqlye1<*k!*m9SKQENVj84-|NXNJA1n^?G?YUX1rKDUO2TQ|mUtNuM5MKgj_P^q;fs
zGwD5MKuMA0JYe#z;ai=lwNOEI$FBrYbpg2`goYbPsg>(WZFd>>gSrZh^WG71G-GFU
zRLj_Yq*P=`e4JyC=wz(?&CYq^Dg`D0HV3EFw;BwD2_Cgnk_HZ{iD2Be4lLOdiQ=Jr
zISxD#rcWo{mDJ{N$mK+Oi`9Un(rhC%5<j2+Hu4qRF2qHF2zPD<b%<p<`(GJ~{Ork~
z!=aC=ngR{kU&HoiMD<y*l@~fU)JY)z>Hk_Bb^V`l<}n_Q$nj_8Lt=*mZy2O2+{w0A
z+49#b!t-cq9I8^53Lf?7LmB&6e;{MiWW5@TW4dJrAKnuAFR!x?e}cIlAz$f%NLY2~
z|A}|06cEiANj|JCyPudgs-D#yP4B_7z_`F+aN)R!GMo-#K&!C@GCL!>ncOivN>a*Y
zn(>3mOcB*ynxlwGPJWLw-&uylPz-vcG7*s-Iw><+=MY_I%?Kx%`FyjHMX!d5-%C>&
z$Pmxl;3<rOm#EYhXO)u&fA^8z8B;5yZ#mw2FkN!+RI=l@+3x<I{Qq4#9LRFe7vPYv
zb&*LEd@=`*gyqFT0@XQh$<ogootD@aO8)d}Unj%b#u%!cWKshRV1?&EfNzm+_mpwR
zaxV!au{z~uLX(6)0B~n=O|Vxu-&YGN>OCzs+2^Y-71U$jrbs`K5<<1dab}%bL70+f
zhS!EQB}2@1kgwUv=^jz<rGN<lC|sHvrof92gsnvNRCZjHi`61f?&y#ZX8V(!u+vuW
z3k~^5d}!qqtm$<4@B|le!^4J_FQE<0v^krTU$7!U-}r;`aT6yQV$t0;-(j~y1j<HR
zo_1R`0Y)HWz~D=<O{vH>OAKt345BDVtn?Ju4s9imtFNQv2Rr?Yn6!l8Qu6}V1(emt
z!4+`eo$1z`I(Bp|5JG~mbcPUCIbMY3EC4R@lQ|AfACdaQ<5Uy`EPcjmyG!Gg1YZW}
zUnvOw5&SU2blgK26DOhQeooZtZl)xvBNdQx#~N?gqRBh<5wPvuW0gHaj5!>yxWw3+
zLO#u(#s%Xh9ShhxrFi?`63U!WC6zddj-cirQ1#vN=9N7_mUgpuu0RK3m#J-@p7)4&
zp8<l(;h|9LGd)CBM)s-o>HN1BAdIrJe*dgXNzB^4kjufDL4dbf=k5AWL{eeSoe`$K
z!Hla@**J(;m#XZed)U4#h)ZuUsMotl4N|?oBJ1=a2a1;#<<!X*d0N=sHg7RYfS&<`
zNn5b&Qb_@@W=xN8aGH&yU=?y=-flbNhmDKH2>TmcqctN2uP$LnG^TW-5^t2^3j^S7
z68P{X_IWJP8}Oi0st>_bl6Ry1MXoQcGUbhg;}(~@wuw}Z=~bQ2F%VO;oXQx9&p6?m
zNRhOc97wR-GN04~WJg#O!Jh<uEt*iP9nC4E{v)^zaeoM2{0^mD0R}WmV{@-Ad&{ro
z*NvKS+#4wl0u{x}HN(ldrcN-)IPyb<!uP*^XM?API_D3OK!vL5w{NPBtA%`qE{a2;
zw-Rf_+j7}}hOeiZOtv0S1X=vp4Ac|ucS(H0?Hm9mXFid?pioNtf`Z8@gw4hXGvD3K
zoKMS9#byiZA;OvSq%+#0`n?s7VptnBx@L~B^$=qr9`J33dxrJ<bEQ`8c(h}D7WSCJ
zH<i}pHhebHLeFP%$)hp&&!A;64lF4FsVi3Y`7uEX(q<Y)S@PV<$mGp}ND!Wvm~oeV
zbYSgtVz%&rGdAhZ-#_4^>J>O77t=bM2U~Vi*|L~xE6<b_hPK85beUreK(V6_+1Cvf
z3wTF$6F*Uw9lv9;055g*p-P!3@v&S%h=>X+q>o!kJ#RYe?+SEMHh`3RFq7&Qc@<_!
za}B#yb{iW;I*Zzd=&V9hAaR$SUdgbn%?9-;$i9Tl!{zW#II++(O?nW^y?*AuXoKn{
zR@X3OqHcvIgw744X9b0!F)^(eW3!)uI>gut8-mxt&!69Xxy6JyY3DtI-)mg<RImpJ
zfY-{t#y4P-u0m;v<V^Cd$RBNGe3D9!k`jv$8ZYKgTi6jUtw2Y00=VV#kMJZZv&w#$
z;hM9x1%v7<iJ23>2<NkI6DBWEan;_G*6Mf}^^3eh;#o);RD#a?i1%RoK@CFh5~;QC
zqJ*+ZgI9h;1R#lp^?boL)siGyFRILHIC_)(LuXoALY<4u_)blJFnkz;DF{WZh35sD
zfn6%GsmI{_PFa^_$V#O4K4#gdAbiONv=b5Rved4ShiYztkX$&~`P~Y`JZToi<Eaw{
zn0(Q9N>0)z9564zD?x(y=}J2SG~!Pjm6IE)+oc5;s{lw0b?^$fE7-&N6H*=WQ;=+a
zfq+Iv7hHs4A)~q9Kps%7OGL{Ax=%3nunlc)%-zpFlPKviHaK^Fkbw07_%d0URw|T-
zTBJ#%Os0p-kyF}G{4CSLF>>Fkb<|Y^`dtYrX&=GV+kqU4D+BrwByuS3;i3D~&eZl*
z)S7Q4!b||lNuJvLov13FLk5^05A0(snw7|V<kOBaaw<=AGZjd|l@`(TkxQg){pye8
zcvSY0ZxM}nLLgn26GSgj78@6O2_y;V5<84%@=r8AaB?e$^)bXQBf{C^l}+ZDIQod}
zUoNwXJh#|UG;$leTJijq(Q0ma78hU8Oa@ds=t<qACX+oZtmD2&W5T)3Gq*bx-ng7T
zzzU2f%yVsFOG9RF4Ydpv%#Q{qIMlzQff{`aPQ>lannPMSwzk;}zVB*F@PTl4=$@2L
zQ%$nOZnY(c@!9*583IEs5FD%qwKvJ9?TTs|_N|vyutk6oQHio3&twxNYT!+Ac6Kgo
zPK}))>*wvoocr|$JayU6xWm7~BTWc;s~v?SR^SaB*jcclsuReSbSjuWJg}o9!a$TB
z+c0&NEP8}0qWw#HgT9{vhA5@(04T}cQZW=>c`{dX&SBiPdUV61YSBgTVR;n(G%BE5
zBIASAVlS{jC_XG_%4d;<nTzNLd1JV%54RX%N=hM<g+~y6P>ZdIG3`>Y3XO@bq^k;i
z+o0qU<4PzQde}lbURp5({WT!VwZGzH^&po8V^bM(lDxDu1~vXP0b7>q)<v>UmqNz)
zLTpQ_c1#|;ubhx9parSc)=YqG*otQ5f@tk!c)}qX>@@>lXlM}+#Z6<ch@9z%mk1lI
zeU1(FFXf@vl~^j1uxiBoFGxnB^fF_`#K)WIwa?C4?TTX&0uEjzqF#Nv##p`hDiOy?
z=W#Zg=RepEV4Cu7<1`;~zGz!u;SDb$cCg?OJA^+_x?-&udn9gchIXLd1_YVLBvVgu
ze4oLqTjnO=UHX(j?f@lca)-)>QRYkVy(+1kVNWti&i!)R?_0^0aD~}Q#b6~&$t-=I
z1{?!C(Zzo!D?njDl4Q0zf~SDih*J1-%Xu3T7R0ZWlV9~QQG*ad%J{nElLC_YXeHlz
zuWqaIk9(6}=$KzNa`m+^Z=zfgv81&@x#l~FD21u9tBB&cp%5NN*~w#abzoHy;5psf
zaeLf-nDO=rx(_cLIpDZJ^k~Cl3}zG^4y8TE_&fgafgy#B7+i|V6SGIFLRY8NI%~JK
zT0Q=P<7uJsDG4U?uv05h6j6L<Y1^c67XlUuozn&<Ms=%g#*cU}?RKtY6tQwBRnz_A
zVH}5-;Hh8+?0@|8m~%am$6@HW%N4Ux2@P$k<$WS`<WNzG9_@!VymYz|gNEzbO3)#-
zAQl>PQ2ik9w7TfQ6C1`yNs9#=O&H}b%$hqa&uGutF2bmS!7j(WLjP65;F37(Dd}GE
zuNcP4La^M|_CTM>02HY*Qi%P5NkIHrTV1NZ-XWo5bO>jO5bmi{r3uUr4yeL*HOmM6
ziML>6p<`6<i|~-3P&+<028C>kt$rK5D9G4^EI;7iV8yrTLOE(`wwQff@Ufs!q1YJk
z_Qyk{tPIqVRHl!e*X(PUA}E4#lLqg_8rrM8&1csqXDpdMFj-{2ls+Y9<{Msyp{;h>
z8U~?KRf|=Wy5THF91T$U(bblNSqmI1<U;ajZX;5$_ksVFBTATKdLlN^GY^?FeN9cv
zTOq3w`m)Vb%9z8Itu|jN>^Ti}mlvwx6oeR;BZygt3kq>*eOM$f<_QXL4nA$>Q=StK
zp=}m-NOij4E|J!hpegPQNc`bA&@P4FV#XEKDD9}x+|N)@K1jCE^cV6a-9x0PfWvSW
zEG9%c;5>tHoPhFjvUUmns9fW~0^zbXVUuW<Fi%u01*L|#7PKehB+w}c*Fa+B(Vt4x
z-c*i667RxMLF_QOnzq_<Co8P;XikxLNl>h7Knn%-Z8nAR6d-{i{{9Av?2jp8mo_L}
z7*5G4P}N9}mOK}2Z+(8aE+8eI)AQCZx~;JC(Uj(G+%)9A|H6o>M&gSU`Uk9FIZ@l0
zyF55(?YZ?Bx!1Tcl-}<FYMPl4$L__k7y($-=$(<g8u<j_`-0<3@i#~vs$k-8X8t72
zhh!Zp;6hX;MBv4R4?Ms>?5KDF>`I`R^1#)2D&J;$9WS)VhD|Oz127c9*mt?oqXn>t
z(Bw&Z{Xc}Uou2`n7PIHI>rxZZ+H13wa2Q^@G@^X2Y_Eo8L->f7^4j$gc;_mTI@!QW
zqDkcVyf~{i-6UdF>Wge^FP`JnS9=yO<S?5WpK@KQuwRtbvZ09JbS(`YHaimXZ)qed
zg5sQ9TWTwYkiLr}P4_<;t#xRJ7;ARkJ_6&e{e9;n`2Zf=0))P)#AW47@V!9QyjK_8
z3$6|p3l^d#<2_N<<gu!Zi@kT+>Pw3wB@q1_Zaw|QLy5iOx!io;y!K+LtkjKXUtluh
zwcZ)6(q5?p!bgCaI91d$>xCm#z3Ta6V7cx9yA$(<m|0zBUqZ()aw7!FMAY0xQ-XYw
z_%Pv?cg|^yEw7&&$%4hM=(SHY@qx)pynK*)oY--Oz#WgQ*Jrm+^P`q23p?dlCLF>3
zHY12fts0#^BKo45^?h1CR6uNpqKp)`^}RiGA=1Lf%efez)4{z_VtE-ZN&i7-UePuG
zw+~<g`Wv+nUfulSLQ1jz_5$`bvq6ht4!X!j6xl<Ryv^Rn`fCv*dW(k^iCr3ucZr7W
z%l4=IO0GKvzL?~6A{DieTg1kZ6?)W_DJEpYS*}5XjTcK}Icav)pZd^q#=LXuzZPsr
z>Cz)F+zI8QJc`NPhBAccg;a0p$~~h=RS4m>7I{PfSJVjr132#!h@%9q?+}31b&NsI
zEGX0%Wbq!ylZdmDkFA`P^q*_(675VuGz63ZZ-s<tlplzvdM}iQ91J;-%kc5pG?lj1
zs)gQYF9@exi!Kmb!!+~1yB5@pEe5Y<%Vtnn)9!=x!DH4n!T2pzg7Cq~WhHNgKPc?E
z<2!)ME(-d^zG>gWEzE>6{Y{%26v}@x^<05M$7R-T#ty^DzUExk#3zvzDz+=HGWk0|
z9{yfk7ba&Xs61>5WSTkPt+QPI+)1b30Js6uLPnnD3;-L6Bis6gICxxRiG;0%wYH75
zrkw@1LUpZA=+mpV)9f9W=7p7wV=4lSf(Fr02v0~iY+Q3znO*wgp1F6irpYEB8z`5(
zx#(d%Yof9Dn9UdW{@eGlal|Gz8=ia`p*qwisw!~UV*&l}m?vbr`DdjD8I%#^2eF8T
z*>QytecvL?AIN#-c9~?*%C|0D6TUDF{DRO%NRXnrUIMd)VZw>${A3;h6Lh5oI=Y>h
zOCYL<3cytS4*Csx@9Ov0Fb4dcya6xqxbNvVgNu>K2I4dY0pl2})?(BR50qp8x17dO
z2F)LefX@dkOJ}p9bz|HB@Pl}o+dmRk5`63-UuK&ZX{Vqh*l<?(yqu8$;ThvpNXCii
z$&H|Zk+oGz=$VB62>|82Gc<SZJATxa7K@0W01HPRGCtXa#_Sp`89b6KaNHSznwIjx
z?WSUgm3EN!A~N{o2vEsMV&)*mji~W+gcUpC0C?Z4I)v&ogn>7wV8JtaQ1^n^+Q^-&
z@^-Pnc*of1@)YEdWiK&I6f}o362N6Uhy|=C-0EJ7ay)#6E~VTO9squas?C6y#67_y
zxI~B~!P27V*aPIU(1R#?5#%~39Ppc8Ik>n0xv&*{{OU`gJtKmHWu7(UtKn@cA(`B6
z3&#ldw7=5CEXYa=BT;#4f`-5oiuMdE<MQ9QfdTRHR1O&H3CTM-o=PH<rn4BCIy4}4
zD~5b!68Hs8j7!yH@o@M;X<JljR$OZ3sas>AI&NnY)HN4X-ZzHS6?BCja2vah!NH^@
z#D8AU5jG&%faMxB<|~aY0KrxdIBOQ%E*`Jv6Eg~VmWy(^(;_{?(5r>gJW)l^C!Yah
z#3j@(h}3^Ts>Wd0%S=|V5Gs^?TuztY)Ob`SF0oV41j*mB;>ZCaDoP%Eosyy{NyQSd
z*ICI0svk7g_GqLL($Ac_v?Q4KXqh@{o%PgetWA31kg7H~M4lET8VJWgzASO#`^kT!
zDK`@xezf_=K+zBAdMZy5C2r~Xp64ei;AK2U#0p#n1Dx#(D7(S5Iu1+@3Ns{&NKzcY
zh8`r$DMG;5!NGuKrf{({vp&@#k3DWPh?j{K56V993?ku*cH9*cRIst5|2U%l3U!yA
zAosSm2{$Alld4$uTc=SNEn9~}-vy^M{se>9VS$ZG?K|eIiX`aT_pCtW1sJ^M2haEG
z3pqWxB}2M-0Hr=&$Oz1ao9QP!O+Gq_!JE}kIlx$67}GqWGyNuvBoH<w2CJ)BqsD>?
z(Vhk^2S3Wwc$Gr$(J-eTox-9KCvuaCOvaxcE$Hrn#nNdK6Z|bwa6W?`__gF{!mp$K
z#tk8Tx%A8yOtcW!JAwOkx)D1o$n&_-DiH;1mw<Z<wyR4T4Xl)Dh;86H#{4Z_p-fGT
zl;4g`Aa+Q=;&KIZv47*2_{ck?z~}IX7e)bSq5~H&8M#x*=${2t{p=#RvE5G4HBMqd
z&~X~ES|$J*R1P4`=I(ZL{{ypo@9<AjDyn}E@iorGy9O}__GYVHmej1DdxM;Wx=beX
zJ3a|p5nZBwANo!fpMBo7n#9lSAi^S`ayx|N&ggqgNU~>6T=dlT0+AJKc7~iY4l6`s
za?glw-k9M`kl+5-4S;lZ8-PfmVU-EzQK|$QY%16LCa1Mr6n8)j9Z~kN@8esAz$xMm
zSPWc%k|ho~81`k$$PNjSXtLgL5YFNOso^&28M9)=Qguv)F<?*vn#jD<cIMzso@jZp
z{;9YmsL@7AI=S|@1(z5ABVdcbk>|Klr|S}m%7mI)lc;zqFDYU)`Z!4YtgA|=&nC!F
z{)E%EkA>cCcCtTVOPi<V=%l*-qoRL-4L0}z3Z(3s#e*3?hzwPt)TA(LJf%UsO}ckO
zUi-!=n_9I{lDR20FWQzxgzQ=&&HwOP;7@cEJeschX*XrHc(alxF%i%%@7Z)W6Rm`|
zKInnrs`Yv;EH6h=(z(6)lH@f?C#+NkwWbdd+DKAqtr;o~G68ayj;c#f#RdC262qx)
z2hX1+j0dz9b$|-VT*h(Dm%+YJmRNO&y*0pund{1U2oFLElqvR`oNyk@?r_kPuPo(1
zgJf-a!WO(lyJG=NgS22j80$2wK6l7U!zRp6`~CkbI~&Tj<I!m0IJ#GEQZv8ZfBRS>
z=cr+4YC27Mgm85Z6R*$%{(WOb#ziKX@<3d)CO^8!dri`?1G}jp%d7W=SVJT;fxap&
zpf^F?N{(|J^fme`xX>$q1?qYER{=n;{FSikD}R0cx$s0@UW*&`+Fym?yc{n|_~l=r
z47~Q&SD#DqhiBIkRY6<Zs`@hd9U6TwL4?@xn?7wGi1aL9L7QrNL_OGuIC++>w@$GX
zagY>2l6U8c9JGAp4_W}&4;bR-*lqrLm1@Amh2$$(MeH@Q+^p&^CQ~_AqrSYJ{Vf^~
zUUKmhO9TFaETLhkMiUVsbiD{THbBt@g(S%mwK#L7m<bQEB}tbyEQc#aOzFgZ{_o5K
ztcW$?1A;DQl4{Z@#0;$t9f{>fvQSNMgW2Ft>hN;rMI#W?-t3b*awE7~r`wTShb0M=
z1^s`i`btG&zDW;<^suK2WBIU^Io1XGN4~PjQtB>K6Ss&hv8!<Ga}9#*QHy9{8x)=H
zF)4^8|9<)=Loo4meOr<c>(b{V1t7heJBlzN_Z}t_Qdi~BV%=Jz1|rpX%si82WQz}*
zC(LMt16DeeOIQIw&C4lrE^EM6PK-|j0=)iWJE<tgBT>JBifg){y;E=5pB5#uPhz+B
zL3<R~v2Rk7o0htlpul}1KLKz5P->3qP`#*`VX30<YX9um00~ED-F%3Bku_SNNZDCy
z(5JHnyvS_W8k{#eZOrw=5k`_p4wuy3<E0^^zSi<l9z4$MW~CxK<_T18uu_g>myMuP
zMOVaW3e%y9X-rEEAoKI?Y2QXFOFhcy7q*{Hh$OC`DDGg#vTYolopRprlL!5R1mbgu
zUFZA`L4!!-Jo}6P2FyVC(tUen7=eovJ3X!{p6D0U_ss^^zrOL&qS(IRxO~cbVIe2R
zSRqBwNU+EqdE8^L<M7#(8OXU!=6<z(A}R;N8#NUJ3;r3=1CY1NR1!9hm!Nep*GDfR
zC9=2qh6)2{(8s;RdO9l?x2vhHH`YzX!Xt)eL*^Z1?65N(dOX%KkZ<AF&4%y}tsRFj
zLebxB$z!Mu6bq5HtDti&Q-m}EB&68}ywuimN$+v3nNX1HG@BI(3%kI`qfQ`xW%=XI
zSL~Z&f-zMxr%=09PElwfaHLttWR+ETHtU>#h!qS2j|OQ4HVH$$WUkmal)xxF_k{}t
zFmm*Lr`j$2SK&HdW&+5Q9A$D---Hd%){=O)Tq2)UUx^VsE~dBx`k}@b-r6m2Z=R=w
z+IEE3|DNatstW_M{a0=8gmRhC>6tK&_z!|B(Jb4+|IRUnAazp$j1xz$QGJ<k(lv4a
z{vr?-DX(sxH~(<B2ECUwbw?$Nf$yb_G7OP^e~9T^`LX{i@xp8ZIXGFP+02JWx(AGq
zs6+3w{UiY~q^*IHNGFv*LzuEiM~xiS`3UmGwd@1MY>#`u=+?%Hc$H)lA2*Sv2mbTf
zdUiCY3f<>aQYu~e`n?FEH2h{m|5^n`cjcH%{79!2C9RyI#~o;L06l{Hz(b&Tr5me~
zb(rHg0j}Dx%d2-)r`SH0w@AtdE?vtPX~I@eCQS3xV4f=*{vPI?q91p3_;5Nc<G2n)
zhJ>=k+_-go4r>rhLp9*F0BMFD&y2jKaf~ZT0$C4MpcpWz@R5V|j3Z))%FQICSjXM<
z)u@I5F%0I9+9R9^3a6hKt0DaH6nifmODDi7FhPjYXcU9|stX2ALjj3;<bJr@kB2`h
zZ|QwjuHU%F<}?Z0I)*Dk;u#1r8G`CrI8tsqJ0Lohicx^v3avkFyQ58ePW-2K4|p3>
z`j{E$6|j6UwdK!7a1!<#gD5zUzPyOy!1%#`_fcF#T&7RCWTd1`oH{W+%k_nsj5U(C
z#Fwl^#yMM<j-n5Ho}sD*q?RP^ue@;^1<)-}Nvv-kxuiB*JM6q}i|+Aut^V|$O7diU
z(`ixVEm<{5Rj)^ht^}%=*-N0&YU4{i)Rh&6sO=(dbp$E(i;QE{{17_qSRWlNf#j8}
zMyyWaErKJ`P}1C4CN@LzzFd<hKtqo3F`qZR!94u-4Zl+dnXKEGgypqQz%|Y4wa1VK
zsSRwWJn{}bN=mvc7KzL21Mm1oNT;&>xm)@0BE+fO>+~AJM5Vx(8ac1@>=Uv0K_!OB
zKjm}22EUde>!;)v$)Wft7U^7=wqPI5km@m+DJl`3=2bXTRe^3IjP5cOXGB|jS%xss
zaitty?O0bfu1HKhT66qYK^=n56$r|3*d}AE*E$C%=s3sH`Ujhz0wGF-Of~!Ad%hBa
zj@U?m4s6&V<@vM?^ekLK_Mp%nepQl#s0o<<By|0PyP_ekkveuO`NHA=EzDK~BD6YO
zX;nBMy&%qk$}Lyd-?ncR%@E|Qnn~1Co~`akmIz`DQdW#MaI!J42~YcY3@P^*0xku*
zn3nE2@~Yt^2BRhJczX$@S#0dia%)Tp0ZXr7+CwW=dSU-_rYe`zX+S@9NNv7^)6W%$
z!k7oD37OhThzv<<pT^@=z1P411jytLR)7L#IzSwD`$jl)PD%zA$w_J1g$T05MER)t
zBTA>=k{5xN(^GWDuoQu8R|?k%O?*8iEEJ2N+D{Tc&t@L}=dTJM@HB8MS}fg_kLXD4
z{BNq}jV}cqHY91-(8<(d0Mzbe&}71fZ;fjMn+XjwSzJz^Qi069Oa$zoE1Vr%+VAC8
zYF(vAC)%l8%AR0vLAgW2a-?u`Z|-VVOZKJ!O(Ph0^It55q&>$6G%%xU!&X#nv_z15
zz>%tJ>IA#9Z&FG6Xv;o_^*!G#xhK(ND%B=Dmt{$v(^pHFy&*trddZ5PsoDkB1!c_E
zco*6$Sl<*$@jYvNxbCfm6br!YG1!S}@=GMp*97z8Z`fP1f#@a_^7~+y48+V<dzq!e
zP4?yQS*&RjFDIDgTotOvWG>bPmy1B;eDRYOHf#sqgb7ImIo>C3nE#bL0T25&Ms{4h
zhx|SxO_}ZqCRZYC2+%{wzGCy;K+;2MSVJBk$oIY>Bc>iMuCJzn)AXiyRkZ%Q)gAsz
zLb}XutX-FOy5G~-tnw?sLz_re*%SoVH|iWib{KjPb?C^pl=Y+BuY0h<HdRe9=ik~~
zslM)D&;*tF8k4I$uo{%aH?-E8Fz8nRXmd=9P6ZyK4x}4=T`A=w5#DfoSSL6W35Vx|
ziJHiixIGb7R=YhEtYT=g`T(TyuAt2Ra+4a*BTx{fOa2|F1UZ6LS{0F*vmFeeb;T1=
zyE=nbJw|)Vi07Z+htKhK$Rq)@P#uiQV$;}323IJsB)H^doOn)Q-L;U!pvmHqF{_kk
zdaU7(mh-pO0=*4p18XJBNG}lQied*_JzpF}MS2@2f8gP-Q~e<Lg_>QMh@|QUPY55A
zDm^}u;YVAY*{CM8*MglxFA-7&JC&<x`#?Q*{(?Hsk$^_8wT>PrFUF)9((?(qsjyO%
zkDTvhBA&tER(iyW=*ZW>UGrptt5)HGME=g4HcXrG9FzZ)P{THwQr%2*{7tzL;allV
zBLkb1+eTkTZ+3;jX;mtk*lj1+zZk)k`Q!hQyTcXd*%c)$KI_jXc%)g;)*6utlASe2
zNBReW4Utg&$mG*=e12PIh~OP4CJg3eU$EnGo_#b~wg)UO6~V{$OSF6{XM-N(_1Fc3
z9WGT<F4Rg%t40xYgNXu#J)#J~N%#C!d&DkCCX(7E8b%A)+Z9A%i;m<o9|{Ecx6+jo
z+-5>Fs3$v};E90HVht{F&ZynNa}a4<GJ-!!Aq^7=-hyR=_2fcBx&x0s>*EdE@b-xC
zG-PLq(4*f`Y3$<&!X<@S^JcSE6cCE2AbWY*8p^EWV&I<Co|Yo?G{u^NO6J?$hu_s6
zY*AseOBJfBjF22B?MN6y<-?6Dm+0IFl!UiF5ee9VzyBRgjy;EpjFji<9K@P<m1&3U
z5DPFkE9573*FadDq!9}Y5VfAzph#vXj)}<7K~p1ZX;81kf2#X@;(r?R#fda9)08JE
zGfEw)_`v0YC>`<L$L#A5{z?`V&g0R@ij-kX>vk1e&<26Nu9r{0%NdAf3nPh!2P!0Z
zD*>={03X}WnRYye=#$LAg$^)fo$v_Mc{6chbq$>b(2Eg5!=w5RzEyiua(Kei^<A78
zRBpN*tcC7a^9Q5~;3FP<bv&pb4fm_<vRCDmLxOFd4*_i16Y`LSTyrmu?w)r<lK?wK
zx)zX97faca>=|r^6Ji+T7drOzZ&IbHn+H+$GQUD=yNR(SITXBu-ZnfRy&1qWNb({p
zz&?~sQhuATKm0@^Ol)|vGHraaG}3+bQMZgf19?hP@-=+D7BFs<Kalm}P`?n)zvE1(
zY#D1qMPc93+7)pk*^pv<LD$KQ#a2$4_|y+l{8*t`Wx<&+hptN|Y)c*N$d{)`(+ZGI
zc$N2K30?8~)kqmlHB+-n<pIm)q*7WP`=GKqY+h%M8zDRv)VB3`)EZPuP1;MMQyTi&
zw`(nlQS5s8<?{J2^EUt2cCvSII1szUbVL_h%v?=Bq1*Oh3L9WuQ|TQoHTbhnmW^WI
z)vATqoVuxz3S)6Dyt!*$5Je2RRlgtPcIAn|rX!>5?_~Gk#~tb+`}2D|{kpV*5phI1
zME=8w7ZRX{mxs^WRmX(M6R`l+L=Bdh9Iy`y65?d@FXb&*#sC#IqP-Rk@JHg|<czc9
zsIXx;u5LL1a@JHS_o<c}?+;ABo|Hg-gW>M?E34yyEn8LTU{~SQ{w_Ev??~cchIwpj
z=OpHDm)^sVQe@y4n5wSwF~X*1wG#+Y<|4%jH+)7F&%nv}3Z*LuB%VU74^My8`_h)E
zi$x`vX?ulwcK+SMsRXmgr)xF!PKSZ>O3I!pn+)LIKtN(PUzm6pnz9nz`wo>&CcFuy
z($el{Pu5PB>Bwz~rI{b$2R>Cq8|PHQ+d+~bw}Ty_uRzzSl-uk<`x`Exx_P=TU{s=I
z&ry)>2qp8xSvb<2#;%fZaNTRwh4wJJA|587r@YrgLVsGCYtY{3#{v+QQQU)c^Jwee
z#9g9o`q+RI^6Ik_2Ifcb?hpZ}K01V+flI5qResPF^_ANbug17^?w1vdaKqp$KA^Ll
zZN)zRL2u4A(Cb_u4@ZW?XCfvi<=5%;qnLp_;SQaknLs!Ez_a5*+F0(hp9bXKD)Qlv
znwlDX$nGD1ig3ab1AqzoA*DEUEjfU|q1*QXQ*cIw4KyZ8ng|j_kH?KrzjB$q9#Ww;
z7FiwWGz=Cvc!vAgaI?O_TB|%{X)X-J<iO(gu*`}%SS<P3Pm$Bv#LZ#n`wH<AE_#vm
zNcCXC^Ki9-q5tF}%;mp%63~*E1ibz_86IB(Ko+N|BPnsuX8+ARDb`n5+{R9V$d9F~
zV4mj6Vc4D*dD~j+K~vx)2F71~${bU)SuUX#S|e82M4)O%3(8ISuyiUZV&qd;#NS_}
zHd%jrmEH)@{<m-3Lwf)1RdmT^Wbci!@8UQlyW-&D+_1OUg(3dtzYe3qc9KGsfBW#A
z9hD+zG<qg)T*fPLjfkV~vSdHl-@lzWP!L4E%u*VmK+R_@D7A2F<s@Z^Xeh`OQR1p)
z;*Tny@K2x2lw*O?i=>h%U`EIgo`VL&PX4=@-rbkr{@bencar4H+J++)F+sB|Tu_}m
z9HGj<#2mwh0@*<>DH6kt3B1>G6we`rI7(IGuoLRqoVc?ln=tN4zO5MF&aCzU(jqY^
z?Ud^W<Zx|b5rY4CVu9fg1X-$ME$Y+P1bLBtM_jaeh5PjvxQSX{g0ff(9Zk<WkSD~z
z7?A<{Flr`g^1Cdz?0=a)CZ0A5=#M$*Y_=ghRI_Pj<~QsD8xF*boCs~!1k&smD<v<^
zwv?mbnja~Fw2w1RDRsyJ=-X<9x<$-%Ov+iB8p+=kmTdvckoA+eNDgF+C<?%R^)P+z
zU^1Vt9%n#K##MHOO1<G@*i;n2nDz9R&FAVcE2LEEXBYxw#3M5tJtY?<-o>?|0<GME
z>Hj24ixv5703(`bP)S7}hJvpT4iAe-q|z_H;<ZFglux*)B+ssfLR))`Sk{_bP^Vq;
zaWq!?T|fVFTmVy<AQJVrR(l^~R7FTwWeNydBOAg+Lre%2qG!tv7BjNRq)Jup-fuBp
z2Wa^GGhaTmx!gQyXaE_>`x774rM#?ZD*T|3tQvp2gT-AKGgeae)s@ojJt|>k>G4Q8
zOu{R5`KeyR4+vUpM*Y^E{DR~wUB||*U8AnpM4bmy>VHtTIVW!q=7vlhon(%QQ0kTI
ztHJiiCvGlSF-m~)v-j$)L#FM1o+i27`ZZDd-^tgZeLc6K?Xn{ZTb$qoC@d1KD-Vd9
zrdB3KhhEA}9V9&p!|Xr34PqaL+GudWz*i5d2cacg;TYEYm(q$DCB)W-@?5<fr&eOh
z&L})JBBPxCYY-6-`Q}kCYiwU^XH%LVGe9+VM8KU0Ih*O2s5p@ky!8t{PRD%)t;KNf
z?#NBc8q*nR%x%OADR%0pXhj;nTL)}3!s8St2~1Lo2jNukl6`cNox3TS4$0E7{FhY!
z*F5d0n#m<`{FR~$#FWN#mKCG=;WpW`$QWG=R8=j%9eyq<Z*(>(-U}&2CB7ClU&QNY
zT>*&&H{(>oDb&2tGo&&c$07B>^g8m$h;?7}tbXAoWiTmA-RyTdtrJ0RM9X21HR$|4
zr*w~u?u7c1_>uImgP7FsA9dk<xT?X9h>$`o2>^l!2A)}b`-YuQ5=l9vDQ1N-@4#eu
zHV5o{HvB?|N@Q*J0Heco&)O@BNN8ACcF8?X)q$oXhNH4m!^7BUGeuWj)t}AS@-mYH
zt{sjc3uxjJb$Hqe|3S-6q8?TQW{W!G1{;5uqL5V&NMZwOo{mo@jisZb!eiUR4Yw<z
z0mV%v^pIWJ-kU^WB|8%XPTq*HUn0<BM4s8|s4V#CaDFB;fbr5Fh+S4InFJP|I`|Y7
za#{uVE}xNyhb#@>$criWIW=2Ygg&-O{}wXtYhs9_c24#HgD2TTsXf+=rh1)zz`gjy
z!9eOf&;nVLU-MTWu~+&d#37Fv!nLgwPY@I{QwGIzg}b9<ng3MxxDLq9+|T}@z5?xq
z0d3=9yZ^(R)Q|5!y+_p~|I>SLK|w(N!@&{%`cJHEL4Iso1@34zD-k8?L*h7@a54D`
z3F5f|JQJ~Fd}k=>y91<b_=9a@`CU+bYY<uX=Im-~*zcK%Pa%D`4b5nrkZNR<6r~>3
zb{cSq8A7uX&0Nh$eYe32au2I+l`tG(Z9#mQAaJ_W1tN2wjYk29=Ysc?l6TXowlxI|
zRhq{gB^_3(=>K#D?W;#~A*e6`k0zRcBUCYmZLSDb1CS`NYA8g0T`~=exfz9e|L!45
zVrY&mI*!Eb7^9s!QU#ATm&Ph42k?;^^9nnI73gUw2Qg5ck^?X{EeX90Z|+M;lqRZ5
zUP!7f0whoeP>o}{n#Yu;)R20w`u)_xKs?&g3x8nb8nkspZ7v=#r6q%}Cl3?;Kk6yr
zQ~;Gq!&6vjEH8zi6UZLZr9ycoU+@Bj>2MkPpR_9tN+nJKQxS`s`#3e?KXoRsR&VQ@
zfJ!<<tf|$p0x#poVgrd>vi5oL2jepT{dG{r#g(QC{PW$Wu2YRA10eJH3VHRc_R6j(
z++@?kuwwdOnsA`DiUU-8Mca_)VPvSwhx4-de7K`H9q<s??yo(D8o%sbxkmXP-Q;na
zId)I|`Khtn#_XAEg0aE(pIw(P={aCHhIAbXn=cOA4%EV$eV$quATuy)U$u{SA&KKC
z{lGWJ1qqd`H>T(o_+>)zxm^)F$k)J-7W<%#1yG<GtIih>Yz(y-wOSyPYhFd<ODfaQ
z{PYf-KI=Dm+RjO|Xbn$V5b<Gfv@%Mn!jC&?(RD<Mn?Ye&lE^jWuN02^1Upr^W_iDp
z!@4<FeDac-gAzwj1(lR%MGYV>UbsYhUX-=6QCk6-Jo|sTGL&>Bvu7Cw<jZ8PG-|)#
zLN0F&Rouod-^!}%0s1hx!3fm^rj?PMaM5ZT(yqrbNb(mbdJ4gxUyu23MjY>!oqyGU
z1J`L&i&g0_q4p}D{rpv;Pc*Ym3qZ1Zg20G;ILO7#c6Y>wBdUtLq0Uq8<MkgRl=|wf
zue<>lzDs;n>5><%BZ|XrRdc}TV_k^nBU6bQT#-d~oaM_U?ZvFf8Vl{m!eY^MXHYPn
z-lucI_W-pfPqj4fsMygSbd;R=FUDtcsji(W7C}(2{w}M-Q}ml{O{nF6FeCjYTYzOd
zXC4U-_wo}6N`wY`=PX+LuXCGvHpa<0269+v#A*A)CQU|eVYDXy*8Knd|9Ek-$hddi
z))mVn?h_Y<U8Vg>pepZYe8KY{Nv&z-TkJ4c(?*)srY0|v@-;2`vTHl|wP^AHeWu^o
z;!v<pG`3=U==>Yo@bAMmWTRXv2^Cg8wadkNq?B*=|FiZc&242_p66G2D=$wgC*8$C
zlCRnxCK42;z(7jcJyH+}7f3KMX!=g|A<}Y@){9zn=Pp+r9gDDNvsh)<rdIv?pF6z!
z0MO~#Sr#7d67X=}9nL-D|D4l*mk+@SkMj5Zj3T@CQ!YdE|HwPt{B5`jQjDhS8)>vy
zJkFO_WV9D?>H*gjUw3g3sR)~L$d*zaJ!jH{G^u<ot4^7^HY;sHALymKTdYddLyFG7
z_OwKIhuU1C!M~BMQ|AwS+8Q?BkxZpU2Rgtp)SB^aIVr!(comutMCJf5kk$U(rWX!J
z4MdJI+VGIaYki_*E<1^-+b6#>;g+~EwHkRWl*xm>Vc~aiu0I>+(y9Z!@=G+d{^g{r
zL&$|<=+lBW(mxlR`yS>;EU(|<aCz2$gp6!U6;XWkMobb^tz2iYyyB)<z%x-l4owap
z+Isw6qKK&(@~|&j>h#4rs1V=2{HGqc4^f&n)s<9n$H{dd$UhmLiAgm`P;2zFi~b1y
zAV!n@Si6K;MKxA=1^xx4L_%PR&2j5ppj-Dyzv=m_f{H^xOP=K8Sy96R%b(^AT7<bM
zI5NZKhs9$Ov1_D7Qy|#=8Z5iGY`jr~$bcHtxknG$C2$*{GR$87sfuBx;Ic`azy1$4
z)5Z#%MXkkDPM<fGx6F<w93}-XsBAJEyNA;IixX7MDS(J3rZ_^ZUZD6)Nfdmz!zfE`
z1KOL<yTcKOyVB7?`64VM9T{RGf8P`brK}zq!y^*?;YXZjU_L-#{?v5G99UgmXY2Jm
z^{q$L1T7hYLfdTdH9iZs(JF1p+@N9q5V{p<FP=Q#=7KMw=K1h1m-Mw|+^+Fs*}+L@
zyWqwy>4O44$vTtwfUIDfkQFR@Z2vjyHpRLm6vF1y+60#^{k-1iSw0%+nuzQqE=gPH
zAky@=?qI0gy*6AcSrll#+(RU(aCFPLk}dKb)vO#|dGo{U3Sc-~vr`Igqg3P3RZ<{E
z(SmP|nj}4j5=Q=r{GisS?3s{=YK-BrD%R8aL1%O0-SaQCFIC-4Df8sl%nnlJj~W-x
z#9TOgx+7yH2*@AJz>3jx`U;79vABDXujvs@b}Il#d~@4ma|$Qdh|FA<iMX8&2zCSg
z7Y2#`yQ3W*gY$v;NGenp8C;%>{7Oim+G6pY?Lip?qI*A^YouVusDw~lP&7VP(vuzN
zgh5E3Qn=z9j8MJJ%9rUo>IlLY_I`JCq-H+l;~I2S;Bcg76wPiPwDRDF1yi{q+!|-#
z?8T5<$CK)y1>|<0&sop*-c4+#fQ>wEn)Py6e04>gmKj8f1IMDSJV$PT3Pv_MmqRml
zB+x(x;j$z@KpX1$zL4ng0pL<koo{9hB(SdrcjUKVw^v95eQA3e+6rPX1TJ3d=6gTm
zG0cdP<=8VaPQv^x80xJE(2t-vp>*lyPDYwdh;`qSE<#V)$d0uRmfv1{k$Mj{93zJM
zX1w^8bqYhe$J8N;gB;!d!ge?~(g}&JzF;b8&%{lv0xpgx2Ho7_SLAcqT%$d7rEwS=
zx6=}z><=)<<b+?TJw%mS)JzX*Wkdi1f+B=?`0fnZNOH+n51JPE)f0&2cOF-4<7Vm9
z3a#UWnvEFov-|mUNe`QEGy>8YL|?831r9;5`FEdr0eH~1V_G=SXt^AXa6+0MNwUlN
zYPrGV_cXCnE^B8m`XnmcfzMzdvMP!4-xYH)<E<^LY$;8su&kja=fvGURt*JP(zV(U
z+>neC=D}Tjwr^Py|1k~^%&a*mm??aa$O}JG##78lU@*Fi5=$j^jY2y80(E;T*4l+l
zqih@nr-nHav)iBa#yLRY(&tU{b(9o2q_uayvpdJq6PX^oD1dY2SEV&vvKPD)zJ&m2
zET>;_R98*{gBxgy#jdu32V5(7fQ6>;=|2@TCeKr4{uK`08kpoDE~so6dRU><wJ?Gy
ziiaExO*`NxzWd87)fQ{l43Ycm3kcBtnKQGGx9AT}%VqPAzmmFIqkh5R1+{4k>YgTf
zd(rPsln64avWZwbMI9&LD#q$*@^?F<V;71O`zEx|%d8I<<PAh1<oX7MryV^4k(cG;
zAI712Gj@sf_=>(S>Zy9rq9Q{2&53*werdmuXHD#Yack&SaV}`3E9=or@vGoOs|2Me
zXb{GrFg~ggk5T8yf<`e`#GNH8Th#N3UI5?kr__?=lO%8y5ZR*{@SgRI*;z4;#&okb
zIw%9$cu+Bt#&u<kJ*@7n?jw5@z~B7Qt7=O4@{1!U#7>1_p-`NLw$3FvA+l$D-#bK*
z+P&gRLff;omO3HTib!z^3>_rIO?nT0hQG15GYX>luR=6IyG#vcV4hTa2mOws$XnOT
zjWVsK`j%QTZaVqsXE3fP>L`}Zm#8xO$Q?>p3c=@`e|BzIV$Z2XuavJm>AjN}qf{G_
z796b$mnMg<`1@KL8`mvXE65P70$<|q+<1I4iu+TK>0zVR5lxI2b-M$ng<x09curd2
zEC69dRgiov`jxsjTtd4vz(eV&UQ}SOcusm03uP4P=oS?;9YKE!b!RIA0RE2zb@I8w
zPEKA50#|+{F;`vM0bcVj_-gGeXlTYhX=1R*@>hIEaO(u|UR)Q#_my5%$iQDT4S=hb
zZ7*iHdoSpz_IUSSwuX^cG>%)q(nfTIS<|FT{$P3-;^q)MF*?@6C6-Gug`Iob#kqC)
z=@C`RUu^w0zK71^F`yK6rX%2x<y1@`x%wtAvye<waDiskYzQ-=APqncZ0`vm6L{ON
z8jCVoX)a(Fgx|`yGahU~fiy(OC$bC?Wy|XKa($5eoa5oB#t6`iKwwTE3gnJ<2v|z;
zOP%JGLJO3HQu}D2u3w7Hr>QQMfY00Wl=|(UYF9-7i%^ds_?NwOrP`b?^H*7ex&kMM
z=XOl<qLaL~j5Pd{>>WMbz<wul)K>sOaSsIU@dpEFbltK|D<@&gH4!X$JY}F}_F|Gw
zw!uQ}4=5zOnY!t;jbi7kgE)t|Uv5~elTG3mrEW*j5%PET{g}t{r4&}D1inD6b2%SR
zJlqsccV+XXde-(nx(Nkrp>CkTM)CdcMAO`(yuN`-WJR2hUXp;iZ<5;jV?~1|`2H4P
z_P_Ye3oj~{Tn<Lc9}$How(NjKJjCAIjDKX6Wu90wARVwNY>=JP@gDk#izz`}w6EGW
zjonl3X7Em`jz04QE{d)FaJ?{WAkEq;;R$F2|AB;)hc&(hectDT13*=jgVRSx#91iY
z(VL9M2mGCIH>SvB*pjhh$ula2nhYaS^^tYG?-iaNnqaPwt$SXms^zdf6kIl}+)I8)
zv;@bpJbg|GRP}zy1O27^fnHiCGzdD2yQXPUx`m5ZVu_?!>T^N5_J;4U+@Y7fUx5W@
zu)SXaXTi;}_bc^40b)U&&dH++*xIbvjsGY&0AB!7tbw4QLz93#&I)BX!(%|dw76W6
zlvZwsUIqN%SBEy7O70<1E8kNTKwYRJdsS*fS7FgoU>Fc2T$m_=OdKal4z{U6r=Jj=
zXi#V{V3(Q?t535zeqiZt*tEIYPzWV~6BzRd(;BoV-VQz`6^1=2r>2wCu{D)oZ|Dvj
zvlLj&&U^gA2gq2=mb8E%bP)C=w5EZr9#Sq3H8{pHLx(|2eb%GR!HEfIKAl}Z%)TEC
zA(iRFcLX1{v$m2#9&C<4<=lxVMyZ}bL@#Ty90NE;?+v-WroB*rLp5cl*Zk_1+tSGh
zmHDR`7H}rY;r6d#6%;iew(Ix+d-%?2hv-Zf!c1K%hMcKZpesTr2eZ1d^L!X3QQp(M
zp*UwDxluaf^RBMEs)CmG3E}-y;<pIXsM4`Q-lgt+&!~??Gz9+e_DARnNe3m8F+x*G
zm<(>7H+k(qck;jih#*!4E{4tK!BxA}J|MPskmH0T^3!vjrD#ckg<;@Ffnv4<?W<p4
z7nd{j5aoiTYu5o%6$KM`^V@8_+5`#|{Yj<9DS>sk_XZ2Cjbm0M)F<AJqJeyp;UHf&
zKShzk@NyAjY?8F&N7w_NLZ31MUxDqbaxuO!MQryQ8t|zlGY(pc%FElUw+V;tKH+bO
ze*N`frXTm-bHd}SkHut#icDcr(j+?q=Lt)Ni&6D=5O$!X3bL^%WjNqD_^mjoK~tRJ
ziM@&y{KS_pG1>PFXpI?K%VL9b{o{0b0O%0a4{NR<<%C-BFqx@}@e4b^e_$!M@;!ba
z4@8~{9@IBeXRG3<Q&X}3Rl|`Y4}M{IrF(^$!y8NHqg}SH0{^RC2GC(!OgUl5n@;d3
zJae5WC%XOfF;Ftm9xxn^D`3cFBs9>kAGpamu%d7D!sQ{kRI}bVa@~01%A6BUp09+G
z(WBJQb|wfE5MxGFdZj8E_GfVKgt$`m88`r-Z*L09>neWhZI&_tUq-u!<i|xY34nlH
z^7divuuiFyN7<|-Z4e6h)2Qw+?Z-qOfMhL5ssi_TzxX8hjkyU12uKRR^-a;Eve3<)
zc7U^nAqhQ1Ai}#+;OC^AX3ZNgCpe*eQw@A+VvU0)2qL@`1)vL<BK|AcEQGH%H`*o~
zv2g8)JjJv>G~RVY(CCD(C~+P|dxtzj-&HN~6yvWWrtqf?Zr*L{5Uiwv<0>A^KXl93
zr!67m00>Y4fw#fP+2;{j7=KZh<7e|N=ue0*eO`QBj7S^3d&3fBEl~oC?A@J@@tPu+
zftkxQo#0%fE68yNa9n~%>`5nrITCdWr(6M;BH~j~ZW1|U1;j0kbRmr(K5l{tpAL&3
z_D2N6DM&r3j|up-6)W%eSP=!O!T;pf*VG#*o&G)xz&eA+NWcu%j=0Cm!e#{T5lO`=
zo3g|aP?p1q3I}<7C<46Z1q|A2Gh}lX>pLr0!B~(RR;0N*RIm1r=G{;tgP@Hm<*fLs
z&4qqkADTM-0pmPPBcLPOwlQ2Hzce+PDIaSm)KH3cRO_u4@3dloSV`!cQ&B(YEowDG
zC0eSvSn^n+W<oc+XnpDxpn{J#A8`^@IVkE6wdU71^8#Pf9;KgI?KK!xJHd{RGG6@d
zkc^W;mHsT~Vym(GU^@m{a%*hu%!+4fM4lmClz~TA^9buo9{Tg6E{X4*4vzvmwiG0l
zaY5%?Jr+Rb&`h1XgFQZmID&>O_w=@+8uA6XCv(z6m2)QyF)^MWC*7LsoukHFYJ!SJ
zYvtxs$JpNMLCMbM8!dz#u3B2uS%X8Bn=RT1+&ETX(Jx_1IHQ1>#7h*9`4z6F>=-OV
z+!y34KK@<1H~)k)kJ0qjZ7F0tY~>a7BZ0kY%?`i-9)~jbvIDZENsqX}6hX&G7NPm7
z<Rd<b(5Ej=1$#*{nI>C;Op_cgagON3l^;)QAv!yH*Xf`svjy(6S8|Z6o%|Q!(>>b;
zTnj6Q72Xt&-1PhFb9<OlCgdm3-d4&cc_WYXfalK|ofHf7NOL}`>8;api7Pq>J-|{5
z?+Kj#HQXt74hPL;@rYKINf01MVy&K+R1KDfMu9j*1%nu6e!<&bK1*>2YE)3!Xmk)t
zG98rPvTD)+nb7?L9=1I6xh>!<fz&7<GW+-~qz}t(uIG^)z)+hCn&40Y8>>I6F|rNv
zPi|Y8)5%>xA9H?U0#hY9+H)$SMpzq1;2N=y5cXa@SJD{8lKt{IWvJKc{&c@%o6`LS
zQ~X8tK+x*$<7_%7E?KBf2Ui$Vco$S~q;4?)e-X;_*>7q)YyCe^jJ*o!_zm?RN$RNt
z5Ye)U#`G?ljoaxVCmJ^f>rRCfJ@?T~6Gv*!XWt7-=*g8pv>LL-wY8!(JP+EvckwIj
zUA%fcD#!Nr#T~CUpElQ~%0W2$9Dd&CtaU4qsp53u7!yx|-i57dafa&p1TcH*Y5{-U
zF}-p60z$TFfr$c#FwOx*8T^ReWdK<S5D}Lm{lq-2xM9%FCd=>C7J(VAz8CXPi!T`e
zWcd6>YR-r6YdWP57W6RULm!`3f?+~7CgGO&51idjpbI{WHn-BhaHx)qg4kdnUS<e!
z4T)u+d_~UA0XK`J=wRi(!|TDM6%oSgu>o8QPK|gV`S+aUeIdC`Jw$xcD2?1ZAm3sU
zIJt<(q5=rC#CVJ4cktt84KaqxX!AbTQ)1ZVAx8!-^BL|BnfTb8otmnAM90m+IjrXH
zM!j=_QzaVR1jmm#C^!zPH`}yNY%2c-S2>CFy}svRe1r#-sw=30YO?KCLpqE~I7qRV
zj#p~EYA8RXrxN?{iTJ~zWFYB}2&hY7=>WD<quL1<DZ1X#i&kWTq&s-%L!#;yNe;g5
zp^CPGXRAEHi>TUw2wVdS2a%!jn(TG+o+`>Kc9#1B67JB97A`p~{14>Go+>+hNY2!1
z@#&#B$QHNR9b|^Lh3z00O5$mi-F=jm|LPYE3-c?X%X3PBdB^)sQ8)!6M)`oJDG*2I
z1%J*)(zRiC`xKU()DABKUxMh_m7rGz^~)@g6t5|6oxMc}yzI?MAVmQo!Mu8b375<H
zhx&IHt2@fti<BoB7@c!W_K4`I@C?ewmoF~zAsGsMN%dBY>$$34D@bepy7R@Y+czG8
z7m+72aWFsJ=U@q{&EfTofIpbepq7%0Y~y3abkwrDA{H=^j*)y1pXgfjKv|4<smyv|
zQbYyr$>ZGm5xd@@7fCYF_<;W*!t0DOq)_0_s4vi3kQE;m;Qbs6Q83e7J_vq!Za%*S
z=mH$ci>8O$p!xB=e8Io>y=<x9`(AL$-~XOefZu)pug`pc`n%uDsC#mJ`K8aNU&!lR
z9}M6J$|EoJL4ajA^z-FCGDSt-@-;*bwD&2V1Oa!TCLJ#u=xPt)GvecXen4-{f*Xg<
zWC^;h_g4FvukneY2bgDol33gmkrn1KzGS=wy1?PkRzagVCeaQAC-wHS)#KrJ(pqIM
z2+2+*P*)8yUy@}A6UB*y4T5V4-?Q{SjDM$kxLy<VTGem*HOl6~O!LY3UwdjCZSdaq
z0AL8%YJl#8T+QBS+>6!$jM<>cDL~d>lO7WJ^2IBnfB@2cQ`r>nn;FoPV#}oCW2R1W
z>B?nx051zTOZPg|)lfD_@ap>f?@ALfsI^*0EZA8!P2^$j4)Sg=qWY~*1hEf^^4OM8
zi_Rxg{`D_{OUp@OGV!lMQ#<vTt{!B7bThE$J*$lrV9x*Y&)SjBm`*fQ8;&Ut|75u&
zk{xUesb?&umDfSqhBdInJOfY!d^bY#-ETa2+5eOzYdA#-P*xdArM0-Po%a$^Wi)bQ
z@e^zT)pevdP7Y8_jaY!E3O9k-CPXuSr}gsxb$g|=aU(%Am+ek|sXbSl9RmoHL9m^{
zabTy!q7W-e7@!cPlK)Uay#ETebyH~PY}{7@qfk--8=-u}&;1B*Gl04qHvLib-&P4-
z16`v#kSp--(yv#<ty^tA@IONOs1->I3n{!&_enQ{=EYnL5&0C!1=Qpk$Hi!K&GrCU
zG)&h*#VLL=AI3-$56~dUm!a<6is530g3)YTDTCf@oW=21#(~(vDTG(E<Er9+)+V22
zd?__c0QBZSa#DK*R=BOq8{z8fqy@Dbxh{_$i*Lc4pZ((oB)D;jNU91CvB#Zad8<WI
zALAv8U2Qp_J{G!2oJrdX{^=23C{!-#JE31>lgY$G<;6*>)vdXzrl#nHqH5Ux7>BN^
z7xz|3P--gsQ?6W@t`Jc7e>cmGqtM1`4!CuQ%tTOs38YT$izh(#?-kcxv})*j1J2tI
zj1K*N+EyVZ0XcZa(FM}g!GzZ|#g6LElmViS4^~qpy!3ZA>3=#^iV9gOJtvY4>vHYV
zAQ##!guU=bVm%hn53dT8R_l>`uK+E-G}_S;apEYgr`xaFZ~emYQPw$E60<7o%cpjf
zOQuRgmQxu4FC9fl{Z;dvBVJ4a#P9z`>`F8Mj0lDB18!CoDnTKnc*bGCV~IBX;5sjH
zJCq=k5;B(cwNdT|l$G6#l<-2uqI=5i=_mosvTFJhAor1j%k0GQ*0Nk9qiE$M>6l|q
zMCH6-MueR}OXBUBjKm4m#BQWd`rVp!l+|>xxaU*Mss|>?pU657mrLJr?ca^87@<G;
zlA0<nqvZh8pRUcr9f;MjB+KS-oI)ewLMJ(m0@VBW-2h^PKxfsr>6l&fIb7z~H=s>?
zOi8{ppNY>aP#`#R?Tefye1OlSUh`=vUI6;@qG$r1i^d`3fHqC{tbgfS>eBwj`g@?b
z()r}<oJ@}Nxjm^J?nb^s9cxVIc<sX_7UK+JS0MElejGOkpFWkGtI31v%(a!&F}fG~
zw8We}o2|yC-3g|7d(1}A2uPMfe_)~}H`#s3=kNgaQyJnFCE!pJGEoS${pqn;vL+tL
zA4_<(C0%sdPB4)bK*+vB^^28cK#=z-6AfeqC#CPN5=!wK<69yap|B+{w??^h?ajT^
zhZ8u{GchP?v_AKU@&%q9<qtdpQT;wTQH@fbc?7lL4@5#>Jiq^@KU7f+a0@Gc_I2bG
z;a;G1yQS9!?)(am5a+0{u_rHglW??I2Dp^+paOfJpxE5#XZUfv>hc+E=0pdKAYh3;
zeb}f!vNh_XVc{>=ph-)zaTi2H0G)$=uuQZu?eZQF)l_@2yfhcFlkS*~cuHbAK7;n~
zjE3KWB@E9<O9C=Tj#K@-`Q9=UCqqj`9rt+y>I+6C4$Fdhe3*s`$tK!<v}(za=0EtU
z;7ji3XvyOo%vDIBO;qGPN~QZHi8rlIUVpPKXSXt(#I25r7cqGRa;gN@awSZsOjlb&
zE}C+AUFLMkjpDerLf}4G?ZQ}KR9x7@culo|hoz`_g)gSrffb%xyE2!nmX7YURF{EQ
zo+Pd-i9P{s0@+l#lHTABRXNjr6sfO!6q;F3Xo8N0y(Ye8(~n%*Gb-p8d^l%IKAXC`
zqXl{$1A|7j4fD1VugM+7awvP#kL*-VP!ON~-jqu&V;%PEZ$Y4L`Qfpr43&LG1eR!=
ze`0IFUZr`3v%5PC&+u+3URdE~m0T*ZIX!AEO{ak#>m>+&aX=nl?JA{H(L;}qwiY!9
z)-^E=BN|p!;fr#1-mkrLuXU6dbO#$l-j&vb>;u|F%4FJ3B9E)_)&SKAV!mQ^;chq>
z_@m`~hy`$qjKQO6)BWMVSUj?T2u{{kOF@|`@DgVi5m+|?&Lj<U6C|y>06`EV--gWw
zN^_(Nu3}23=`Ao_HzYSOpAt(i;`bBAl&(dw&S#jg+yzVDADj1$ONSJt`unHs7<(Yz
zpm43&|G6Ysc`FD(E3*Tu(9cZ6s)z_)Cwv!j>&7FMVd8&@_J&k$6yI(Z;rpM^vvbY#
zh>A3F{~Op`8YyNbd9;Xc|A1ymOoXm*(e5n;J1#gmRHzE7SdjSgpJQ^g+XfW<tBfYF
zZ~$`o`8S!Z&G(ix%*b5btL{~KaYbV+|HH;93EqJ!U#huxooS@v04<-g*^#;C=L0ew
zi}u{gPWWvwO0tY<u_d=#6tK_6`0w!>s=IqR>6o2s`+^qA+`Z@4Y_ypxhQ(AY#EIo*
zvSW$sO+({ZMQr<$Zd@OITbTx%s|Ij1bmkl7>D%vp<Oa<N_|d2he{eMeY*h!r{sb@r
zmEG7+nyYnzJApv}o;}ER=r8|TSeAMwH$#ibND^^2l|*i09055%g+@5+)$D%rHDlT4
zAm=mCQ8Y?;4-<KxO-LxuGpoKp<0Uw_+dU;&k-XcvL}fjr$OW<2<ZgR{Lxm%>EfCpK
zdEe<S#Efi)g8+C8VEa0`)b8@jZBwZfqBZGwpVvYN;r+qKa5yiXDc?%XRVC*=_n5M#
zo`1-2EumsebT>{y<V68UwXuF8LJXJzy7%>F9J4TQAIeT;2!QH4s0qV{%S*V0A+Q)!
z2tn+DFp!G{&#4#l;yZCG*`CFUddH470}B^yj$#fdGN6ivW;3TWVIs(%_HkD4G~cNR
z1>AK6oymsO4<nCz2}KO@3B?R9u-GUmQpt$7VGPLAA9R{;!(A!e45f$BvG+Kx3LkV^
zl^=+sYs-n6b9!(+GI<1Ve6ZM!;tgYNHbE+QhiB?4M>bU>2L9<5w?LBr0-=^KL0!bw
zqP&BJ738lmu@RkcrDq`d5#iy+rx{@p-2xLOQh<3wkO-P2`~hu_tqLBfu#~|4^aRtx
zMZMW~;~e{gEntVsr$l9q@Jnnt?A+lG!~JS#$?dT@5Tb)V$&;O@pG{VVW9}-u%z#Fc
znk#+6B(<(R?k@`4;7e$RKj<~(Pt{+ey)MXmk>fGC$QVM5T+cb>550`#RLY6;vA++q
zf&H7ZkcjkJzXQmaT~sX!xkhLZlZtk!pxR?n+97r`YLRNeDRa1oe=!FqJOw<gFDRn5
z<SybKCHiVUJ@Qxa-!mvTNPszz-n}i`W%rca<9HDamtdNvXPwE$7&0-0D@88L8Nhg1
z*0@{jN&*@aX!3G8C-puIAi82jGP_F~-$};cHd5JMb7!lfMA#sAjr>)Asr*TBMmNT=
zpBjn$L)m<UPj3q)1OzRbt-yBZwX_qKx9JD)%SMNhZhb{GGCdr3fhtlaQY3x$XdhIX
zH|6zWOdK-ALQOqcIi!hz5AjktkuFrOhI6h5JP%6Uw%S~qm42H-IU{TEh!n>YUJ{$5
z(h8Fp2iSDEF3`;cTLY2?;p~Ccqn~rPYVJOzjNX;ifNVBKTPPs7BnEgdi8G^Y__X<8
zSIdR$e9@KdGIJ`*eU%7lCczC}O7UQ&{{UH8%SY2~z=ErVD2?ry4()xV{0i=(7NYoG
zX%6tz!NW)hm$DParXu$%k4ws+EIkT;xI^=fC_OsHQW!aEi~Q88h*Kd8dQb@{w`GW%
ztLgRQoCET^X)GaFgTScHj<UDh@u*6b;vty|SsHmq*fGsSpC@+=hb^S?U%@!wQSxsE
z2qd(u?vWDT6Ytg5h7{6Wyt>Jbz;7w-0+Jy(a1+LEk9jfzfo~BJ#TS`MenYiF=%o@l
z;07UKx&%&Ch8YDm31f`vT^r6>Lp%wDOJbNy1&;+0gq|!1hOO1D30O~!%J=8}R*Nu`
zE16R65FxMb@-Tb%z@-T{)~U;|I=Ql)NYR`qPBFB7+?M;i=U5$_09=Ci&05MKHl-z7
zP6deoO@g9)P5NfPJ(gz?6RE7}<BLd~(VgVclA2DGqB^`I;OSuxabjrk=2RE6PRcqE
z02R0?5fD<Y$I7?x8VKP#6kXno_0LhAE#{%~y0?!|fRG9;ba$`>cQIn+)Ku9k@h;=F
zJO@Tc&Y+OQrCs63v#EE$VzE&tA1H8{1Tf_8YxgYh>Ny|JqC?}73DKqyT0qZY>doCN
zzeT|a*xSVi9UZq^wz9n)r~te14aYnO8ilHx7y;JojJ%Xyc3}oP3jSDCh(-zfrbJbJ
zm=9<l<x+Dn=eDe5V?SGS5f`I&k?xt*_G!}8)#@8b$atrL9MvW1DQMn4>r%TfER-7&
zpVj&Uhg0mf{2ly$!1VMc8S|7BVqYDPVUfBMkPmg?t)pvTW9}OaWIR7@7!7W|F-3ul
zKGLv>;-$D*T5sW(X==8H#X#<N+jXGYTjiMa<x4BUMP07MP^xZ`0Fo(@jwyh|4s>CB
zaa-WPrvyeGZz=4&EyCySD&nS+BO$LDKi%eQ`W6N}1Vys>E1bRmfU*b&3EbaVX7N&!
zvIC51I{!?o_h%|G;zKaK_dGdJ4hj4*1;(!OVUq)sPOLw=-3E(Ddn|}svDA1*C0*|@
zWSA(C6{^gtXat4b1e(UjL!>qEAzL2yh0tJsag0;sAK7ji;oRc(uy&nYtJFMFn!+=q
zgBv&Bh=g6>%N?I-MfP6QMw$~hd*_Ox4d5|n)Rl6S>2xwlPn_687$^P$!FA>z7jSa*
zDqaQWq*DAxgC?18K}uHcS)h59|10CKwxL3jnSa?Tz#x!52k#fv0Z8uvw1=4p+u^jM
zvg+J>Sm=c8<Twa^g+->Ax7I~)G&rLGY9RSx8~(b;({XEQXkHue2g^<9=&@u6@r-KY
zXot3a1Hx-C&AQ|aW@q8LS0#2Lnc<YZ<^Z<_VP=b15_U!Na>&iNK~j6FH%x%N?(7zN
z4%gloxGBK?_Hb2+cgOW6V%nyOZX*wQgF88dCB{07<d@0>5g|L->gBnfHrNLaP87-z
z^_r!EA)!N*W@W<%ewbVAo(}Q|bv^atIDVk`fe{_P!_D_iSWmbIS_X%JHbCR40d2Fl
zH$A{Vs89yiY7E=pUc31i%Q8PZBQD^zFDO<ecuB>?+e1_zv*|t24@%UPMN7+Pt%a@M
zg{yFil{1j+lP^J#Aa{uzEJs{P<&yAwLpHJtSRbxD{8LnE%`g6`^vG%_!s1~d&01h_
ze8{qKqmKqhUV^%J+YO~t3OcxTtc)N*VIwP=0u_RAbH14ZA*gy&6!L|{QNUr8O0jTR
zz9heHXM=N_Lsunmkg!@+!QP7|ql53SS_lmZu&A~nY9-*E_N0JGzkbCl+g(scWJ~g3
zwqrk()77F<?TA;9gi5l_Q*CbW5rV3%w|S5(491dsNG0mF1`P!i%qNoSS0D(LGX7Q-
z`$jbjGu1`^e16J{aqyfqG4dhnb63)|IRZOpxOmDl^GXoxi>YEaz2ecn(XRm;$gIC=
zgRik?PcS@TMeflaY}$RS%w!-tA^lccN~Jrq;DCGl0DGN1*wVm|S5f8ETf;&X>|Rc>
zSP-q;N`5AaI<?C7rjmO$SF(*jjg;hPvPK(sPzhd(Ys3;DkMtL*aJ9>erUHhGW<BVE
zfjyX_7_J}Xqu>V=>P?N|s9rHY4I}a(=7W!H)SrxUNg@7v-uLFL?iTo7>S$E;)@b*0
zft`oh1|v>FRmSi_zT2ba*}d{_=fX|izmEk$`4pQQ6{|KYzCRVVb1^0$g2=jFvyYr?
z7?#N(ZZOtx!7<~;*a{NiXs_k2-y2ZL;(CeJgRMfC3y(Vg-sX3rD45Sn6>$>7;HXNg
zK75C!EwEI{n+9<r7|Vxr7@>GH--CtvA)};Lx((?4DhUiUhNQ}V@4zfBac=&P|H*dI
zpiORO=A>{tNNPpa#R8pBW;M)P8f_E<zUH!fS~%Yc=6W=&72BnbS)w9Z;gJvmmlWQm
z!N5b0#V@=0JB6Szz2!4&SX9EljF94m84%k;*!TD*n7U>9c&@$54BHe^1vyD|jnKw3
zZ7qncPs7}yO76(1>JlrqU*TF|cVUqP_*+tjyVMP0z{X7(G&6mN9XhXiZDQ=MycbM=
zc(X<w(CxGPQ2NIF4v04%L42hSiB7P+8zy!giJ>o1bK`v<w{^Hf<y_;kI3k>AV>42$
z^e#*5fttwAQ0ri$SVzq;P14)&`6|^4M1jLYF@>norejjdAg^K9^6nO3U+jHI>Ksk9
zXT~k+C(9Y)#$U)ZExlmkIexvUNLLucYL|V{rwm1hs@P@*g&O6kKeke90UbjMUhj;u
z8-KduoY+_^S1=GRgc92Abme4l)nRoL(kq0+<zg`f;E`RRiDFX|&0MSw%%_7cfN=(u
zDL5H<Wm<rm?Eh@|=MO^vv6^@oSajyBaeftlaAB=<lgitTZKC`=UW;-ldx`qL*-E|~
z=c9*&WL_JC!Zd*=`8P;YoqiGj@^20bnpiE$VGe^x7(%)m)V85S`+gdV92@@tvJWK)
z1l-f~280D4X@7v*z~)7&9MmV97z2CDyTrs)o{d}RO4oBEE$vw4d?6&tOjBW<KLdSj
z_D7)ZO8QgRrut|i`O^U9N5OJ=4Z=<w>-4;@E^bEPL(K0r86S(^C~iq&QLyTkvumuo
zg^L*2%p@<yv>WQ|Y>ZpkOK#tIbF(4TK<h!dElM3-`TP_fe#$NLnmiA0KPf@ciyP4!
z*R5XAG>!rairgYz^ht=>vR_!7U8y(v*`d3ehdi>!QAX_*o*q*aSsO#yJB<GPrVv7<
zqIYma1ObVtL5!d|x=q?EsfHsyiE*2R6`9bi2bJcViyVq6d7l@_-y{O8c!Gieta-fL
zOqm$9Xh^teOdr5e(=_jK!~+Cj2$TBag9a)8q&$e}!vW*o+|l-(zrmG9@ANQwm4OTx
zQHdti3BNdk^Zv24GL?{x-I!b-lAPwRH)Il1^Vv)rRAMsDfBzvl<=A6a7Gk0Gd$9Q;
z`=%4Zl-<A&U?i$zHv@ZU#;($}37A-_CuK%<>V6SJ`LJNQ)F{A1VO_H<z053VMG9PR
z6;6`%&Zp#+OC#Qnn~D?!iC8*LjU$&Kao^xQ3MG&a_%*#tF%L?6oQf8!)q~?+O3UdK
zpD4AaT<ciX)%9tL!}B~D_|BjDW2XlaRvU=zAvz;999tF<r?Mj-XkUAOZLM5lnmB93
z8R&hi<Ko7ZcYQ(KYSE1YR94Q}3WI}?M@tLY1r=i}Xs-B!(Z}EzmpSTEat$fLz%}fh
zDJ0kI(M_Qbv*|Se5z}e`O~kedLc@>Rf76!cWYWTY{40xU@GEd69(>Rnw=epo3Ca&&
zWOGog#+`i#l~oyQwzLpK3-JSsLRvvSZZE!JV<;_gw>*1i_AR^)24dxhtQEneY(+rS
z8h68)a%?eA<fF?&CkC4RTKbHniqp*;u!1u1T(zvH^o%CyHc`DxjBRF*F@!}@%w5ck
zMi2&XQk>Iv9&7z9Q|}7-e-!85f>e2L6etOc!L$HyR5<015(HdDi0y)#@<0IbXOvpF
zuw4{NGGH?luJeK4f81AiU0SUJh{6Cl(XGUN6P{gr+$s>v)WM`%n_+hRZ#nmp&=J<;
ztvc*GwkF{emt?C7iAT^D+uMk)So9fM8FU9&k;#gk55$@yHDHZ!NF~Yyy*$cD_U%^~
zW#<s@EF-dO;gPT=JpL}DD#)c6qw`Oo+yl1!(?q5N1ZgDEce<)m?kdhWfoULo|6B0;
z2tH!irOLKXfs}uzygTY{sQ0<>FN3lAFk3J{@=il`z51KV;Z_YpR*keIk!yId`&3+o
zvm1i0$z~Ev#Rw4Plh2TM`9ngfRf<dJt9#i>&=_tL+Lbk7pQ(jq*4RK-V7b(oBN8kg
z7Amix<`&woU44m?qUf$P(fSo5Y&6J5V)3{cC5j#F98#uXOo_+~8zy;60~}qIQm^qF
z@GnjSE!Pj<t92$#RI0FP<w}B;%!_!cJw9M(yx5_JK;ncxRSl<MJ&=?Cuj4@$8056e
zR|1SD7&VbL9C<3blXIk{IYwbYctJ8#grY6A<?0k$Qzc*tx)s$J%$Y>Gj30m)u2fQV
zBql8bIxs_X6!}zYD*kv#7-Lafk3J#X9_e<b0)@FiE;Z%v$tA3thLUgIYq7tCa6Bh8
zZLwTAx~rb+pi2U()fFhoflCRjkFV1^P&K7^I;AhXLyTlSD6klZO^fbDvn3%`qHnb!
zEe*p7hpAI@!azso&7SK3M2R*yJ6C~55(a5X2O$Ovl;|@1zoaxet0VeRXow+qkYFp(
z1?1j>F3!m|TNr8PNZ?|-MPYt(inwpYS47Y%G*XIQ^Hs)Py)Ve?$H!7vZBSY>;JtcK
z(w(d$_e<EvhSq3X^}Yc2Wn-%KEU2yh8xJ0<)I#+gWt~}v$G4~SBHsr-DqNQTA9c=e
zdX6fp+}+QXm*wgh;EPl_7}Sq6Ya7~hx=Hob;{sdJb*u#Egg<yt+)$e2hCrJw%F2uN
z=#(`aDen$nv<DUou`AaR@kNPam#qbN#6!d1YZJ_06b6{`h;hsXjgw1EHLsyt)9y-S
zmV0_f{Gg%{A4GYZ^E^Nr47GY6?`9OG(dfYlMtdluDW-N}3$DrYG5{H63S=gNsRh$&
zg#etzm@k0_DdbX`-X|nO&~m8^cN$$pfgLH`iU;D&{h)Hr?v6j$$y>sMm6?1=c}VOn
z=VRA3jE+~QtTe5}o-953r{{08yaC`J?B39;70Jc5TN%loqC(*8E$JXyh>0j+w-fp7
zZgl)D?rs6=`-H|CE)r~~0o=wUWY+pKg|maB!)y_k-pYn)lLBjC3dC>0cG1lX*g`7t
z9rGZ;UL`eV4{H!2et+P0exv1_#2JqL)e(<RBEx21^3}Tds6tF$d#|kjwJev>h)W;*
zG3peB1QLfwcA@)(*HGZfmIV<7S?2hEK+t;+h0;wg7S}2ZgFGY(2w+Pi_LTE1JYceJ
zu@uS228!B(VK1|SzUbF7Ry28p(vW7|nv$0|{tH+R&9IhK|M?csGR|14O08q145|Ri
zi1hFgW<0keLd0>vAb(ruk!eQ72X=)Q12v<0Ven6gAbJcMP77jgglfc@$BBqb<wN2{
zfF+$tu<GF*YVz`d0rATbdj$USX?wLO2;`+DE*a<9gA@eE;Hn6>Qqi{<PS?1?uER;%
z&Ju<qwjtAif|6!=#EDSO;cOzD0g7b@3?dsBSo&TSJxITk6O_^#g>1Isr+ObD5!Gb{
zYFi^TL9lq1O2=1fC>404gbya&Xpjej;+VwTx&So1Wmc7%fha&Uo9kF@;V#J~mY0FV
zrgl^+^ijAUk>hE0*uCVwR1Pz83|f)#0{l`yZ3Pr7q-kvLe3$}|AhZg-rv;{kj0V!^
zp+5&Hk2_4V3K{z$CToEE0E+dT!I?+o_hGaaxHoit@pj+~#41VKxB2|^3M|J@2Bk=j
z*Wu-!H6I;Azd2nUzLor>=?qEpPU_6i_*^R61AN$+zPCP8N{kU8J1nA9&^qNLjEZ&X
zk>S+-oT;g)-SHSPRwfRiWaVei!h|_MxL?Cxk_zlm6H?w+V!;`kTK?aZklzXP7t23~
zG4UW%e;8{;fZHk;L2HsKrc79OxBPE}sYdM*4m%|Olq$0wB7q(Pp%?I`))P3|lF8wy
zY&Ke`n)No)u&#D!^_-|n9WMZ%1b%{yCb6iID^L=AV*OMjsL;NIXqYXb!ah{J^L={5
zbe!~Cw;bC@N);k@4s)0yzS2KY;-Wo{5in;T`o!PB3j##RYlyTYA-2`4524f)Ms%!1
zgBD()Sy@pit)UldIpQj_$L7VgnZZ=;c*zQ1oT^Y`^vds#Y3d=w*n;}nPXs>EHAb$D
zFA7{z(-V{*Uif@{S6mmAluA@b-c3>n`lRiv8G<NaK+G}9$4#jll<-un373+9i&U)o
zjM{oRr40(&AvKn+3K=WwqFDbtq^#NMOZ>amMT0VuFabP%l@Ke{PWa#w9I^@-`g%8*
zi7-~Sb-G4Bn&DTZ&YAbw5m5$)wp<`u0V2jW%Q^#=TpykBDvEp(DHiH!`AAhvSTJS1
zU18THy`aQe1OU*aaCwqZ+|AF3N*73$8yu+!m${pao&dc^s-c=Dt+I1slT$7+QDNU{
zf+}BOYM{zc&3CFjR!R?2wDpv*kuBbpfsOjJT5P-lJ;6rc%3<m<15k9VhO#Nl&}YAe
z@SRW!xJ3&jG-w_nsTXbN*`yUc_6PE06y`Jc)n1RN_JbZwNH)~f>5{(!%tTE!ULIZb
zw4cnIN)vV79oQ-cy%Y>D%YOfMmCB~_!=(A=1Y@x)^=o3BauHbvsA$}B({X@GT}Kj|
z=fNqPPNW=xzm&3BKeUW~7ld>AsBv(T)X}qNk4^|jw-IM#0ijfC;vFZ{-RTS76!~PL
z_6W0QZ*hF)&!(mrxp1BjAuCyD26uv;)(6&zHuV@pVckTOAyiW(=LH4)u+_n^e0S>V
z{dR>$3d!QM=q91JRBqdg!T7OR^c<)2m*l!%W}?_u)GFfpNO*--i-oq<@cu!L2mK0F
z0mopEF2Ed<!H?}#M5cW-=CdVHhXTwoqI3eS0aT!?uNf_MYWGak3>lmuMRKEQh?f)~
zI#Psx2KkV&Us|)3+HivBd5jlNcms8-jEb2m$2sSVflng~4}db8A1!dG!bm6(s=+vE
z&%yFmPi{-a7QG-ZuzU^ZUlE}shjdhhQoKp`+c(&CFH$KNG`L{)vOX;cnWH5!Cp?mF
zZ2+bGF9_l)bXa`{S^4WVc=>Yt?M#rUo!Bt&K~>Ou)Ir1a?2vVkUJD6H)q0kO0+iF1
zLL|P*!#-S2)FZtD1W!*kfe^w}Uu7gKAx|ps(&)X%ii4RkgSnHqB7S(FlGLStdZysV
zB7i*JEUy=qMjTYc@E*!ODZwJy6SNXRjBDuvb<gaVm<i}&-kQ@}L5@H#>FzaEYrdjN
zItLriGQ)zN5Yz7!O)yLe-z9F>azThTU}M%!s7?U<PQcYApjIEE;I<!^yR!reBO`F%
z&JZ&Oq57`Zrn9lq&P1_}+x+Vp#tSc%<1x4~PsDxIi8ZP&ey{N15!irLR<>6_z)`bC
z%`Xf&s)HF`#T>;hoF92FF)oxWMcK5o+VR=eHW}|E7DlXQRBSMK=^-cm7Svgh(byGg
zh?*YH^p~WEPSNGjS-wYqT9xbA)aluD>fq(hk5&e6-evg!0Hd*mxG8<NDZ$Ulen@?(
zpG(}tTmR2}Y~X(Pf42_3-q#`J&bG3gC47;#ip-lb`vrm^p0zg+NCFZC0#n6}M26(Q
znHSY?a-^JbeTwTFQ}T^z`*Dv{C%rda6IKN#7Kk@lI5gz;(we&}DG%$NpuA&WK@AVH
zJOyd=KDjpO-NZM;H|_V;Ge1FPV=Mz`Pdp&_1jfvx#2{ky;aQWBj3CM;Yze-2#`G18
z=AGyucWEzTsP6U$y5ye7mi_Mo0z$|)N@uX8a6|hZBMlfOg+00c;&LS<!@+LTs~a!h
zk@RrzF@~Pl70VEmLd+i*9|)qB^N~&n)6XRcHQ}a80PF8WHy~i?i3`fuxoN8`xk+X+
zp0xR?R94a1XNt3!ocsOyEm8-b8HI5AvyT9Dd~OtRhG*u&Sw8a!1yz)R5VSzm5=pEe
zYsAwF4$WBkvrTOuMY%s)ARYIQz$V2bnlu(gs6&feTYIi99=`e+H*HeJE4XG)!eA+@
zOz7e%kgUGNH#p=n!m`Q^!mPu$cHkS+Z@d{o(Zv@}C2@o3LfbndyiPum@Vs+%+GXZ+
zZb9buNzK6{kbI8(;d(;pKToJxCbQnv%9o@Ss)L`JX4cFPMg^tl%{n>4i_{{PY;Apn
z@dZyMp&j=&8k4SD0EEU}sL>M`M!VZCi;$KT&sO4_#|zX|ZeoeELhl3p12K0fqWNX9
zpg=O}C8m%WPWcUC;Cs}YT-W2rPS;^P1fZzZ1W6+Im=Kfu^ASBPAt7p;kt<A*&A6X}
z2<?1KMHVt^Hu%~NMv>amGM7kyyEMrf=M$<7Io1-$ESKen5~DUWF%w@Q7p3wp#m~Xb
zuyQ>`eIqv3lGs$pSE>p|;sP(7R`ODPLgN@y034qSg%Rk`#d5nhXY_(Dzqf-jkWTWG
z4;!`3xVBP>ii2=Hl)GX1=GLxh2@uJ+l6f<!HRyz=p0RhS?KS>P8a?0&jziJC3;h5K
z0E&ZKSu{|!7mzSyts>$qNhjFsgrhWTWr~+ql`VaZr*t^|zIX&CgTc~}_&KIst6)S)
zg9ZAux=&(Rr{s$B69R>ZYW+l<AK<`ReUntw&)T%jUEz3iN_v3VrPO6t^>~?u$EuiC
zdEHA~55(w;*%D=g_5%%il#)|}Q$6mhwi@3*Tk!NHN3#sigIwUIgz9{*EU@u<SKEWZ
z=sTe+#k;JAb){EktaS|z5|0-5bPYf-=zJ7?mR0+oLN2L8!+&~=U+8=CpPYxVy{JtM
zqHC&^<oPY2J8d`F9yo7NYuHx&nLeIuP|hpbqXqG9`x3MPf%lc?)jgCW>;ax-93SWu
z8SQ2~1lewHAR83P))0)+=Mks!)of)z0Z#3zJmP=N?XpB=pdl7<2<T+<N>_e>hbR<c
z`IV}J=Bt%B*wHkia$!YDeTGW3)6rX=j%wij8{*TgRm_IHFK}uft0y+;oZT>67s7yj
z3xDI0u+fT8H)$|3ieoz+FseIVs|D7{rV#I>oIzezdEHncSPNTWJ=nHkvj39RzOAQU
zh_LZ`_Xws_nqODyrm8urV7{yW)$WPe>SW-~R&C7EG=t)qDy4uU&%i(`REtWkgAKow
zN>xIi@(xuxaUWpdE2!=t!nv+0NnS9oN{;E{KhfYn0deFi2zY4E$b~-27o;>rVhWxI
zhq{xwXj*$@719RPrqv1%PgevVtb>&;mu;mKMyEevmH<y&m?IDzR*Bcs=`l%@qVdq^
zG1wu7?QvLlzdR&*t7C5W01pz*7ciFvghVt%BoSU55Hc+Mh$sb4C>bGfTS1e_J*^Os
zlnd_OsG4)iNeNm(T?Q*S8*T+d5@#lU>Db%Ba(eUa2F2x8_u1Y@`=}$zH!Ggt0}8>l
z;jg?j7xJKRrF09qg>_gkeeX!9Sl8k3(H_AvuV&^I&=cVT+K{>y6!?%u{l<kG9au}z
zIkqxlnp5gYcU9dQEI}mf&hBlsl^va+)nC-(CK}=VZn4j3bxY#rhuy=fd5xukhPI7s
z_MniEg^uEkF!5=IIG&Ye5Qnk*5sU6YaHouT))f^g)h<l68Vn4m0`^SsU4V(oZb`3!
z--w-`h4t`53V6SR@rO6q2Jv>_{#7@P%`n_L(vV5jBRM!?t<p0o?>fN>S1Q_E3g$<2
z+z~g3^d3hfC~~^h(WfHx^pKKcwtRbUSgAG!p_F$9=OPdS(xQ+jj?R{X5W_N<SS$lE
zhk@-@s9ZsJ7&zz5$Pn8oapB6;4!M;PhV-NjEDfqTs&7?GPZ^ILDd~w8oRc*=ivFyG
zM<;9-LIWvdyfesNj)e?=cya9==Nw2Q-i+kv-K~g1PcJ9b-RxB$m^(X*f1jKJCtr*$
z8QqleH)+_y*9BTB$qFB)O3qMPJvn<eepm>@eS@Oq<)GM&Y#{xY-s$R7LlPaq6;>X7
zTeSX#Wi|Vk?Ov%Fh}8;e#__4s9$ciLXGGBW)~1Zp{}HDcWqa`Jo)w=q*kP3i=;uX(
z(YMX&Zd3gNd?NnMi-O<~ncW1pZcuxIj%Q%0Cle?cQ#DZ_9(3W~h`cgEvOY;=h_+fe
z2bLYJ9KOF*hk){1`z3Zyc9oBsNW|@L(D%xZWZ)13%!c1KpIDKon##Q>{AwL~Kc!E>
z*5YXj_5$wvj?K9x#XcE|-wL1!Xq$fUY38UVgl^8Ucc-)8w!YDxks*sU^1YySPB}9-
z9Nq?(v0HwjDf@l2>Au8@*!uQv_I<Ok77OgFGj6W%l9SsvIqSb6J;g^QorOcacNpIl
zgkVQrj-`oHC<>hAj0)|^OZWn@My`@O>NU;eZ;<(}-<hQ`@C13Z2oiI9nvEIFAQzGs
zruwHaLTrXYgIZaemgD3SA~X_>x^aOTsbX&2(zUocNt*njCe1!>(IX2(GwyD;N~V6q
zadt5pj54aaxmFn9g4R<gR4794Z6`)>XF&+v39^ULTvoUaJm{pP@8I+}aBI=lU}7oc
znWl$0>>>^C+zUPm8BP?pbm`#Cu5OkRH=NqfD$uoqonEfIat%iQ%(r$1i<<<-=YITC
z^G-=e<<P8xepo;m!&}Q+jJF?v#LAM;XnV*V=V3LbS8n<C$<Q$w5%;ElmcIcxUVQ=E
zL?p<aD*Ow;;Nk#&<}_&|fXaO6hsLqh?>1Y9kF7-b@(s6f=lTFHIYL(4+-==CV&D*b
zi+)^OlIo-&8C)B#h2lO^<9<sL-l?5VWqL25!NB{jriE|?K|}VCRNjgmOj9V_<20fo
zCa5n6l*6@6XM0W8Ftn9^q`{wX{AhD^h{$qcz?NPGd;J!F1u<hQ9)#R)vCsR3?Oy*Q
zz|rZUb;C9QCXpywXUueThqOc-tG2>V;pM;5u_#Q=KKzN4h{fiE%OX(}EBsazu9O+#
zHJfX4)&WDdgN0Epi$&aMRk&9eSoWnPqQd?Djq<x-c?T0lnYX5=Vgxwt8aR~I%soIU
zp#08+CA)4e5F7Ep0W1^m28<__2I0?%QpBYW9xsVY2V4+P-VkQX4Xyn`kG;zL@OCnB
z%C&%vmFnmbr0<M-n(cW^$~(gOlcLi)D}6|#T|ke!*9NAY@<MESUX~EM1tm*{!w$pM
zQEeN|x8=g2F*IcE5`n2VbzpX-9Q5zzuG5>93aOjrG;%QbNTe6KUZMHj{>H_Ho6-7~
z?sf%^wb9+;AHk&H_~aiyQ@MU-lEeV1AkF{iuTFuQ01epO%%{X$F9*1L7aLl8#Eyta
zKEky1jf%fiZ<Byl#h0bH3(w<qv|gKWTcg`nyjj%`gxaK)3L6sq$aKU3zO;CztSJJ3
z>rV0)5bOJ&GPNFBXeVhhgsb-rQAVy4t+Hm>_u?}y-Qx3l@yT>9q}SqeR=*g@d5cpJ
zwIIvCPf6;qpo>2IMO_No9}0q*`)7XgO1&FKEDwy%%Bgv-s)n(Ayq5uS9--srOpXrs
zq>h*uL%dg%1ICB~L7>gN8{6-T>&_hcmX|Lm>2j5Vx5Go{Veu$3XvtSNCtW`{ZhL~+
zv0DU5bq2hT{RfGUAMj>bxZ=CMH=<)el6-Oc+7`O7ig)0%MdntI9XJsj+ilq%|2s}y
zBw=?}fDMa_FcNt2lG*0BA5mBV-*XCC&k|x_o1teiX~H;L^3Sk?=x*iC`WrNrwN78s
zr<*692)o@RJ%@BqEfZf8<FI4KY@@D18y<zpZ@|90hf0#fM~rruoT^(QkV)J~C>yY{
za#dIz1339Zp?Rs5>KkGoZQDP({Xv?FBa~8^O}2{$@N-mrbj^ry#A7#7A-^QQ{XjZK
zl}hwPz1<TkyZ|Jk`JIJo$|-6xTpv|H;xa6`-o@jcT7V~PNzYJ5eLHLt`VaCoB~p~9
zSq>|L!4<MXOm0@t2$BbY+r6-Q8jZ+0^kWIEbR(_N1u_3elBvKh!2<U57*~@q44pbn
zUha#TBJ#3J)GNawp%puD9b)w)y7=Xc?;i-VbBK2{`Xj7o8KGzEX9kANoSuK$6d$M#
zvpOseS0)NxtM=c5G!)h4I+H*kf_1ADK^H6%I<3p=zq14@)>8TA`-TIh3mRV@{Xzy3
ztOV|Uu4OYKpMo5Om3E7-67&x@pAODg>U>Tk^y1?>`@TUXTaZ1tq|+Y`fhGQ<6*UFj
z*8mHrE>WAUw&WyM<54h9;Fx>}@|t*u($J&@2PwvGOGr?ikU~zH<BL<uM#Qo)xy75e
z^dVqA%vgW`a&5M`J5{K*DI!+fImkYMeUMESKZ@rnsTp}m)H!~XOP3icE`rU74h8B$
zb-oOOEY(GlR(;kjHHcV~4hvqjVn;vVAl#asx@n{1h0ffzPH6BG?37sCxS<^&u~3u(
zVkN_0^urad^ZvJ>$q6#29A}s(kwGoLR6MMjVTXm>D+T?DD?>m5#-%eTR^K2w7gv>a
ziX28_P|u=s;Qn~0_))4^M5!Nu+Tj#yK3kviAZR|DyJeL+Yv{=?PO9Fu@fG~>Km3Z9
z>ZbXu>?J`@7BP}t?Lgyw_@?_$#fXnI*rkoEBe-8sKoX%gPzMBd;}xN-BsBL*MI~{O
zAhi($E}s=ltDp$Ph%=n;y$$+~eu**;EOpp^)9n2?xcjz>f!aE4-R&=t=pvIfIOY+F
zjoXur^^+D~j9tSO6=naUCldp_NATGou2hFg5P_t#CQPn?mAinPXn|Zql=NcB9uoRZ
zc90+lZtpcbk;gEcRPB;0uz2`Fbd+#n4ehYl7^4LuOiCSvmL*3qG*O3Cq}lqv+ZE7e
zS@HK;K_wH$2^yAxnG<PNn)Mpku*~Af0GhahjDiQ91c79h#^+tBu&h|a%6(6Do;_Bj
zl&wcYNv;EVOIC1V<?L(H5Wy3o3zHEYzB<kbH3e~Hy!P}p%5VoKYEEBJfP1*qNRL=c
zyq9bE0YU7@O_k>f;}n|}%36>$r7jxJ5#5t;;Iq2tYxSiWP31=t9yPcdJW`vkHI%O_
zAtJvJ%b}L^x4;c5m)-?ivmbjvgG8pMgolAlzO8d!F77bE+koYz{rUwhryLlt!E52>
zsgT8us5R?v6bG#L0h2a|EU9MzEkf1M+EO(V(X+q`EA}0_!hkV==_(O(^8q<m?l;4}
zIOPPM-3yQbPn{vM<`2NLsV)xV_mG5x?&6lPe^m{^oTCc+bhWky<NM$p3ZP>Q1O|{_
zi;pNO@8yX0PNhrAy*no1j1bg(LjvkY<ZO3?#d60VLU(z{WwI{rc7>L924I8AM04BT
zb1lsxG>hB6j?;W!AL%rYPf?)oM*JRhh1Q%h>^|eegEE}yO_OP`RiAN?mgI%3&kRB1
zA5vMWXCG4kC-m#xk>nCnOIhWpX75oGG+W#{q!>&WkMk+bu~A2K`(Ja8S?3JnKBno)
zD0QvjPpH*lQd`o_`?yO#5CGc3_neld;wMhua6)nt^?%?;Sxx2u*n2XDG35ILVAGl^
zvJhwQ!0Phr(g)4K$?KpO*^?j#*{9jV3WyUd^bGx>+*SNBVLyL8{Y55aV{k6xh~6p6
z6{G0La`u7V!#qV3c(mp62NVFLSG?M;TA2`EAC}4*{fRTLi1u-ppM2nm3r#>{x`16X
zEL$p#^w?t95c6_DdI>WiMb7zt+`5&}KEA>y*UZnz04DE?m@J7+T>kuwf>*t9I33w{
z+=~urhFEl*rWWD01VjP>v))-RJMj1%czW|I{UhdPx?|S&reDLhnxRzDWx!iut1e)t
zKSXDl`6^s}87u=cLRV{JkrF0LuA^gP<k~0|q)R_>FKim*Ccv5Gu;5@{!p%mq3@BI>
z&xTJ?+v+3!iK{qytyF@D=Xz9B1?|y~f`cOW&FX{fTS+z`aU@BjHfoQ{p^=@}`Vg#K
z8aY~rVshTzMEwk`ghkLSliy%2lJttbArM7byy$1cD5Yf2vlPQ&GV_}PAH#wFQB_fQ
zb_`k6f;v9`;0t{FR9nY#;1FcNC2A_d2{h5pSE=`gJq8DRwpiQ>2X!OFYPitg13<%5
zogO<b>^|ioxodKZHx^$?He0@v<4ka4rUwo-*z({DkT=?3tRNKg0!fYWhHvvmP8)x?
zpo<}Cr?r<7NJka)89bWovpd=sM+&`eLHwS4n7nO_qMQ=VXS6I{n*Gmv@u2dFoLWqd
zdO@$T2yWO%b)>H2-v`P)58_&9{p&INHCiujKHV);pa(O+{`G<SO%Jy`f!HSZ?=zMb
zMhDy?7w5!!)%_2ar0ol8*DVH_z6F$sKVZE0B0FY#MLeJuM9}vVL)q^XS+`0`Vet#H
z&2x+8a$Yc@$~!s>fE%B|>N$jhOyka3Rww!y=sNB^H9E5z&N8!ff_`{HRaG#kn<a&o
z*$}eSfCx*q(xd>sQ~47}J4%C;%FP4%Nx8Xt1S5#L{21PI?EG?S_LZ7G1YX_v_JBjE
z>UMy4NuCD3Z{oUsLCG+;cne5&XW00+#lufoqgy)w4iwyZR36)W{8#|YcY9juy~k>X
z*r6=jk|}pL)@3me0lEq_Op*Tw3_tMt<+Mdx@rLW*xTJp|pX|jcfy`&sC!YF4W8ppf
z17or6&pvf}Vm`k~4|lk;2(-Zdqb#kp5#|X}No8YAWH=L8BAq=ew-Q7s{Fqj5U0U?w
zWJlRF;-Deg4k@RXGYr9J<(|rh$mbu?Q5l0%2AY7*lwE9G2p6>vf^aFFiKL*D0-&%F
zVB!muSHy{7b|Y6IKSUTuDxdEC`V<R-U*F9@$D<FJ6!E(Fi&OO<LoG9wS0^GwO}~nV
zj}7xTNfSn&VOgfE&u%vButa_JE7)iAQrq1h5?&71l9V=?nm(g6@EUOq@+r8{(f^X{
zIUa;<3%0Cy0>BT$5Tg<R5~I9SC)17?mb~kDZ6(&Kdi9aSXF}(J92zS1AuH<zg+5W5
zix2SZ#G17`K#Q_%mfxGwYXo$;j<bJX+{vO=UM)Ih@)q_^?lBFi?_m|x(NXGn`HZHI
z@A4?SIBdDfkK~Jm7?b8D04{fx6JOntH2)RD2Cc=IDit}1XM$0i@SrZ2nh4#9coTYy
zA-t^JjsycLpZKA9Xa9o`h!@lg{r~q%mGFCw4GXur#e}8Sij=6J^blpB23DRQ)D~1D
zbKVbJTv#4_nEjj$xO}XVP&p8c7^vvqz_g)PvC$mw>*^6zlE3F4?v2`9j9z<8th;J9
zn@&QlLG7^`l{{sf1M(xN?wyCOGEC5qps^6CdqKV+M*+rTjt6K?_!RLNhzv4_KyH~R
z&+;uSJZ5xNtnPeV<A+Qc$yKTWG{IF`1bD0EGz4E_)QS;q1o@XUFT0p<VzI>CM=OEI
zu4Z#;7-~^_pCP;}2m9?Ux)RCD?6_>8M=%%CMMIwgyN|#{vh%Tu2p{%`0+F6tsf?>0
z=~|W1b)sas!yMY9H|=-*iNTEq=OE`W?z=Pxd8fk@J~`|5sUtv5KI{NN-6{{U66XPc
z#E9~g8)f`{y(a3eSCMdzYLkist}l#Yt>y5*F)=1J_93nR;r0U>+>TfUT}8<fv_l*;
zv&YB8!x9~Ej6;$*CI`f!3~!$lp!ffR;3aehYWU{v%ao#Omd<br1mz_FwE7!j&!O{1
zlrqQI^4n9Et~fxmm!BTa|5_20tyL-1zFr~UZxxRKWF@{mr*}`uV^L%)JP|Sl*srid
z^TQW4dUnUm&wrK1H(F3l-}@^QrsA!5^h)epoK}Q430@;g%R|sC)$cXCBwd{1ele0A
z36Ki!WC`67*<CMmg{2KYaxT?Dgo$JS@RXvmN_~yNBnR<u$^XGX`9?Y-Iuo#7nRGUX
zUkM0I>SO*)07G>^rjHaHC1$d9w~+WRpJE8OJkgK2E7B7yo<@Gf+G8|yTg&|^D?^P6
z9Mp-!$ObhQMDsHkARiHlz?FkizO{B0R)F!&mY?kE{Q#J5P8FguxQSWu#JBjpIOr$7
z#9N32ZY`(i6)qao>%WOwtBN)#t#=70lKFr`8r!k8`AxvHco5Fi<t2#h<{=n~8ps<w
z9xNn4I=riiQfX`wmZnuY{XzZ-D~jVD3l1sF9)%#;8&WYe1wVnTQ6rBK22bK(1RrZw
z6uThB0_wrz5ltU`0j`<OIiDBb^cTg7ORty(aZ4I?iklbeAt%ZyN%}2r;ZtP!J*wk2
zWviGW3OWH-JxF*CZl*%7itGSzkT~8EM>OeG_?u0<X3{euBdrvfN{wefo{u`_#s7tN
zblbk@t77?uoEdwS;QCk120<lT9-g(UN%kYC?6r%jtv10_Qef{27}P%yu)XBJ<Um%J
z-URtAe4LBDhx4<ypk1*b;+j6Xw4?L#6!kSQu3WSVS@0<too`9{k@xO#af=Z1j<X>6
zX$dKbs4m9rSPKU7>7$6>6U+(RP1!SR$y7E{{;(tP5Fj>U#3&G(S81zao|~3PdXn$9
zwaOgR&OnHgG0#e7qS}AJ(&4G&=f|S-(yyo59_8;hiJ_s1Qp_=2nJop@;?u_E&6_w~
zR0WJ_Oh|iRJ?~H-abPhrt_YHGNF{riJskLrUmdtj6uKI9ee*zO>@<5{5Jz2vUR4e)
z9J7&?E;wu<kgZz38vi*3)hAbj9_L-e<}r8QVI$uLmpjy}DkyVGFTl}Z=fGreZI>>2
z%>n-x{UNBGRX|@jAQyne0ffxvsL3!%VDkp84k&i)Ae;}&*(W)qFv>~5zg~pQ4P1a(
z`^q^xpjql!SZ89|XtqT+v|eX_a>a?ogFaI}dg+kq#^l!SO))*5S5XXUFd$onB1aUY
zjd*8*RljCXIWP+|tRIuXW&xTxFEQ=}TEGW^U%Hwdv}QIHRt_lL6%jyNFAGU<Drhk6
z190rwm5}2}N#+x!;9e0{B{fHFc}MgrwANJsh+RX#IC;GGr?5WgAlx{Z!A)TsVjCKt
zWSNjOczJ4@zLnPHGUy}bjaq8@f&74mEq{?+(qKs02Nx5yAD|ym7CM<YQqW@x3sONP
zu8gzv1ZeZ9R<Pi4P@K|!_<x$muv=77hA@gYg`5oTwv}*1yjx!m+LR<Nhbj*awVJi|
zsh3x$$bgD3xISkjov@`e6dAU2Tc=eu|054Fbs!I<PuTT%oA>!SbfY*FP9!v$!4i@$
zpfreDS6ju#MnBi(A2ywobUEPvELzu#9mw1S7#HsXJxYdF8aV7qvJ})tpwipP9NfXY
zL63^JEU20m<<Ad^sN|sc{jyY#{|0*k)eM-4&cUZzP~LX?Ji^livJPv9SuLlN5Huhj
zpo6E{OS}S$Y^4ZSAgN|KZoEo>nSRMO-*qL!Ewb#*IEJp#ffd*Qzy+nA9lcQ%TNL!j
zW~3qqv6ADFL|P!=LfnrzaqB@w)=B81CT>_-Lv}<=t;^3R6*5O)T^1Ms<oHQ4#^j~s
z7BR6hS4Dxz%#}kMQKNvO3xApb5~Yv?X?$dm^+*^|7xuVMGWpSDRr+%GVuTzjrj7%W
z&;xC(Q9NK;R6B)$9>p$&r?~%fnopw=J=EYM{oabA?2cQVvL04Nb>)&}ed{Bvg6fp|
z8}@0lsZUks6s+$ce;;=TmJM6K>IK5EFXBc3AGWJ(&CpWPsn)zEUHO>XM^e#9QI)ev
zn^xJzm;45iU8**lt-d<Z#k3b@<j9%}`}E-K8Ugb|v`b10Dy`1hv&M7E{RdqyNkcty
z?j}liprG;z#G{G4>boLO3Ku~@q{V0OSE<B_V3%sP6N)&M)>QnXc{ZWAYPtxYe51a+
zM7?AoI1aLRC~}?9AQf+O#c|mgtmX!oTT_vA5iyxtP@c7g3GzWN4?T$Dnei~EK{C)=
zI|8>ZIn1cKq*^rm-(`OKgsNliIg!7~fRcZ<L1k*2^|gh1V}WJB4X{E)78!6z8Tlxg
zYLk-bj_f#2bzMqsV#yi^G-QN8sb4d$5ZUo-X<-x0?}9=upo2MICXE*pKvGq&m7z6o
zkzbx5KN5gWjt%-&9S`dK0VqP|dZ4gSLrszH#zRClFfg&<9^}|}nBWjepp)Cq6F)#^
zpx7&jw1EW(@mOtpBuXpsC!$7%y|beF)LX{aRNA+BsK+3)dN?h%Dp>rOgI9NmGTi;!
zShaj!To)uq3A8dZkH%dgqz#=>Rgwd)cC#4V$&SU1A!mgzmIqXy6MO1wt8s*#|ADAN
zKt;iiE#;rVNfE`49RqmeI_YHqL=+z(co;62KK&Js$B8N)2#z3EnHE^W9=wm@r>(=J
zW(8c3-<zCK381%LYbX-~VHGZuO^LFhXAdBKr^STd;)+m@s;I_7lHrHy*I<k&Do8Yc
zK_RQr27_6`Fu)*-`FfqPayuR0hC`x;kX~24-;o1`i${J3nm-k*mE?<>e3LS&M11kk
zMRD_ql5jXG5FzH^R>Ts=@;zqIjZ-AJ#VB3vG-udt1w}P8YTAsO2ib7!yr{5;)2!Bn
z8Bm!`DYstFW`o3k;8LB5)VBZ=*N0>?Y<-9~mbx8O>!M1#=VV)ZhpcdQdDe2vAmo!t
zqY{#xtx|o4@|UitIJ8%c=t@sc5Q-%&Ncx?~VQfWlCw&?rIy2lZ+<aApP`>GPal0{h
zq*5`kwpGybZ?u;Y*SCl`N#RBi7LyGo==hSCs@%BPR0CpC8GXtm1pOCZ8+Yy_7EQX8
zsLgQ*GH0<&#1X7Un7*S-LQs$tU42I#BQ$7^-KESY=TwS*f*RlwKB}vEIElTwGbSx{
zjSQWY&`@Y!P`()dK>Lui*X$y1{Im2_T_bL*l^_IU0hbLq?pl1v9^X3A6QOD+Fn?Dh
zDf}V~hqVcb?o;{VZ7d7mhKpbmu`ccqH(srs%iwGH#w*DraDJ=h!2TVK1HYz7O?GB7
z$Msx<o+cM=@rcl0aRGi<lGKPb$$Oy+Yxw)4%!l{pgTe2Eds@eYsg-N5AO{tIM0~NE
zVjLc^O5=2d=vMl+&kMIA6~6lgy<=5%PL{zw6BJ_6B~+lpN)G?-V>rgCi%CQiKKhnz
z3wC6<M3}tC=-1AUfaI(`Sb9_K*l<SC%|_Mw(M!%IHSjhU)Y622+bmSfP}%A=F#2yW
zNofIeWyE3AB#TgeNaz&@X@$IfujnUj!c`T7i_vOh-#Mm|xihsvlrVt?pz6fAioGW)
zfI^D)*%Rgr-nJGVoI730a;tRZA`L+03U^zp=JdXai`e=Nx`dMpTczZ9%=jfJ<_i+@
zeY$h{+ifKfj;Z_N$~;7)LhCpP7as(a={-HHY(L`gg7@Rig3(DMO1>ElY-WH>5LH%J
z(^ZRTs6>PTRgYc~aLtCJJ`4BH64OijlIO!3+3e$R(_g<1izO7+?BHlj7ql(*)K3*3
zILuIOF(Gp<dL#D7H1@F9yaeXjM5m4piPYS3N@OW&Z4>?WP@3|DT>mr7fJ7J6vppKa
zkJVHS%aj!mion%4P!ZTDgA>As@kf21nja>~t+F2p$cm&`_MW;#v4qO{-Ay&7=lH+T
zJuk$fwE{>uv2aNl$`*3(P`zlKs!gb*fTR{UBXOnaD&9qbv^Mv%B<{2RMMb($E_?lk
z^9F>15+v~v<B>;;SO&&Qi$t%b&~g?<r=vUI85e`Qnf*H*3eXCuY~lm=%!h4J`ID94
zkz|d0DD*qIniTUUXU3eViOCE&9_{}P4F<|fC7J5A9;2jVd2XHQre;myPeCGRhl32U
z=ecGo=g`_ByyO-F#G&2>cH!iGp0%hYjuPkYy^|R~!~rv3^&ng>`e@1SwL6^h)m(V5
z1??BY%v0V1Ua&Ubd{BZsztNM0kU!Sep@GYW@Jisugl7WwPo-qW3;NP&Q!jB`+wRu>
z4v+w;kD5!+SwD7bc0nNy%KC)u2)4lKjuZg9lE&!uK9M;%do@@%4}_Y`9q_iu>nrM0
z<~+von_3v_tK6mr(JjU0FDzBPsM@`Q+OU6xQz`OldWrN#G7C`>_wj97j~ugmj=Q4S
z2)%f{nQ0ezUuByR<1a}j>;f88DdxO8;GU&?yL#nx{XKUC(vMa|g*?^YB4te)?#=A6
zFq1uM!r&bMR5hE{)?^=<`Ri_)7VTlU6Ky)B?`|J{U|0W|kb`19#RDBYoI_<<^{7zF
zN};7OZm?3gvTnOfoG|e$(4~?+6wU&=7w#*GMI?KwwsX7Dk*314s-FWw8pHyR2Ps%8
zj#&LhGB5yCmgVM={%n-^Cwv(Ta&Z=*!`n1r-XWw|(%Ow-*#2E6uR61y<hZ<SLVFF6
z212?f772(fOrJR%$?XjrcNTv5N=cO7WWmd2ERv3I6NspDQ13g9=~yi#x&@Fr$m3zg
zdA9KVqkd;U9<@?>aF5feh9XfY`V>j-P@qNrGQD>~m*zx<3)2o1?~aoqQ`O5n+JV5Q
z-r^Il?Vd7=AQVU4Y3ge<GFM~#oCq|Y-k-vHAlVmKcm2cGVbaMqy-}5&{>#F-BK0%$
zGeyk^+-Vmd0krI%%G~h}dz{V2WcA8VJa%fe&<3SBMB~Jxo*JYT>69Ft4Mx5Qu~2_D
z{z*su<)s(uze&vq4j^zpBMzpnu#=602Jzl(=pgM7K){_$Ox&QOHc2@lLZqA?s9s)z
z&AL!=X~%!vFh_{)CSDB1MuF&tn!v=0qf|0~<R#7qjYBm?LN>C*ene=25+mp%TEK1=
zLI~-4=9rp%<y1)X(HkQ6B0bDyS{2BA&q1G~j!pm-sO4(lrN1ar?g0FQ%`IG+vP9Ax
z1iwN<3WXv)$_~^6rlFIg0BA8e)lv#Eup7mWs2a+Rh#0>XLJv`jMcA3ujVDS%q2K@*
zK)70SaX7S0Fi%Yz04=9l6hidL|M6esfiXy`;?VlUBT~>@4H@BZ0i>7$+T7MFC?c7B
zWPxn%8z>5a;8dr?x}*||g97pPJWx1vUkq1eCqb<UF)`c3`Pi|jj}48dl$sV?aZd2Q
z1`wECy`icSmi%;esMCs34hY7X$b1|K-&OyyL9GYHB|c2r_29dlj1*A1n7q@La=nx+
ze;M5hrP(i~qSQQ7G9&>RV;2)bvs5LmQP8u?nto{yc5l%O(a_C?#;teMLaWRj2urgv
z4~zE@r1#Fx8ZGUjgU~bAOvN{EYeI>r#ad+UCm3*QO+ke)MSn~^b=qmVOwAzWh4_9a
z(E(rXjXf4rBAQ-!qsNV^7JOBGOpZybAC8zpqven7YPcu*S!}BCb&BbLfu?|Rg0Dj<
z)|GZVlRMp<|IM%rDl&*e2Ptlyw*Yyri`&JI7t}kl>@RHyDh}5T7Fr<r`D1Jb6ge;i
zRq?Y#_Xz2WXl()vfdeW9s+*}w@f**h>2LM-fgzK4qD-~lq^c)gleFoV0v%ZNoqi3M
z+Ljhp9tO|`Of)(!cF0Q^<Oo=HlL*ShWT(`Rcp#|D%=BtON^S5qNe%=$B(~e4?s-Rq
z5VadG6Lt!j3#ir^BTy0tQamnZ7vtr?>rnmPUQur&^Z|~ZnCKT3d$jXV!Cb55Nojj=
z{C?>04fBVQda)(%1gihM>duQYjnob-v`U!c61I+6Rduaml40JSVJ*_L66t5*408fF
zQ5H82%WCJ8*vT7mLc^3admIddg3w@iSc{^nt8(72AAEMQ7S;XRS5h^c4xqmW4-U=}
zd~Ry1X*9Ek9_?-6yl^?@_l3hEeI)v0zzwH{2YFl0j_f#O&wy!UKaQrG(yB_F%0V9@
zgsS4Al+g(e6*HwuuBUq*{R((D%R^&VN@lC;=TzwAXi(pNdr&tziKibj1<2+Qp{qX1
z!75fd<Nu|)D>e>j8L9871V`d{LEU41P7eSosMGaKLnNvP`zZXIl8MrjGx&jC=SM;$
z<?8XXo@(OUe<rVetf(>~6Bi3qn-ATNJ&aevl%kBuw^g?2Ux)#5H3HEw?4J>OG}pJd
z<Bm6ACkSw&tjk^_+*|cu4sD6Tu3%!348Fi7bf}O9$+r)mCHz>J&Z49Se1O39<c}Ng
z5ogKurH`QlG$@|$>gI;mftRK#A}V0XER0O{R@XJtL-N#(!o|0$Mb;6!*<eWAJxGHl
ze7pd8BVY_CB22Na3I0xdD@7mh7g!Iy^L9<GiALquuON#OUMJ6^(zXWS{AWgu4u28|
zfWSS?Z>jx?CtS$Ta}3ihucOy9AOS8LU`<`1l%lqPBve~A+pM+>Pcd<*8pZE2`>#eG
zVIMOpCc&dS`S2{TKbRU;YqFz$uT{-J1!|jYw<~X3GIh!jwB(|vY)5olhl9q5M`19R
zcF7SW%1iF7{53jt1d=X^w$>iD35!>5f|wju?U_SWAu|2^0Nd!aBIB#DPdsZ#fGH`i
zU&EOO-vr>R7U~xZPQ{41<&Ypif;w%z0ka#=45$$u6DA^Fn$e+iP$I&aPuU7JOo*yH
z1e`obC;CI1;%IJ({(_}tP$`<?$Ww+*8O2MaLeTxp8{}Vw`Gl_53ElOoB8~2<8j~LO
z;o!orR6UlPLRc)mEQ-&t2<TZBe7!jwsxgt@BmXS~*;Ge4*oY$yP!g1_qz|4j4Q}&N
zj>tsnq}F^Aqw@spM}oP56?t3E!|zS_8lM5^M@~CaS(WK;-bn?A7H_F&N8w@tA>&vw
zjw?WprgWpZx8^OgGHhsc;;uGkJsk9Asfg^Tz?ky`dmXk^yNm<8yKH+-0s~9bWBEer
zLF*1&dRv7l?+*GT$xph{jUjBz$3yT^nmCE#UmEf#ADAkJotK^iH-b1OsW`K_vHopc
z4t9()Ngmla%VS`*d^o=^R$FI*%LxCHRpek!hj$O*1c1A+D`6`eyPIBm1<*F2MmS49
z%O_`;rjP{}2~z}Dl-id}hU1hhKn*!Uq||FkV--UnT!!GHw^^a7pgXfI^i|;kiw%1w
zeL|v!Oj-j9c}jbVN?`fj*;nty2+vkGAMam)Z-fJ7LasjZmWkrGi$HO+xYeodWz+}0
z(GCrDF{UJWN$u&wTm_GkN8@c}e@>aZ549(%Qg{_t6a$y;rQ4@3LE|>+HLr1Cl^Q-K
z5=&x<U2=W17FbzMi&xuX7{(0^1RY<$oWTi^7+ogw=VsDQ0(zzT24#)De^1rXBa(5&
z08!f_d#^BNHh^LS{7-X_dm3+x^Pg9hK6iB_R?wSqgTQ!U-n=Dn#*+Odo2V>eHI+)O
z%ao`R4r>-<smGCn3*A$r9wTl4X@=dx^gg`6>8ny8Xy8ck(p=z@TJg3$@yCQ0;M>8g
z{{P^u!Q;7?a>|DZcc?b9wXaOs0hWi*Sktc-f$^Z)l*_%gBtPKsQeH>vDfKW=QKgZx
zU*u)NUlmOQe1K|7fptP&wrjrZblA0O_)kekA`^if_YrHtdtM=`J+NDm90D~rQ#oJx
zF*yUSA{wfb+6}d-;s$cm=r6EFSt~xIp<AlWCw&7u<UO|s_CbGMwT#3X4P4TsZJe%n
zJ!UPxFs5TUt(7OE3@rB=P{|bzGW=o2X5E34%L|&zGy=c>rRHK%-Z6+Ra#9}3VE7J~
zkK5J1;_28znEv&Da1|r3#-<ZlKz(2TLe#}OPXqsTvZ>Tl(2j`qN3nr>o6NU@EenTY
za|fJ5AbS4ontFCYGcOd*2>tS$nd`;kYed@MSvOQNVHJ3BQJXF97?ez06Sq;uEY|^Z
z?~FB}HjEk#@v3Mbq~2KI#w4~>BT|RtB7%nvNj1}^_1*;ZiD^lf6=<clToe>0^SODZ
zGL%9!*$6Q*BLy<mva8i&DcpEy@7;4-XQ1Q_X*t0w<JAL4iv&1um|Pxl6|}Lgv2!$w
z%VRJ$>h>3l0zC>Oq@j+Z2m_ImT~VEbfl^o6eSuW79-B-@O-Tv*_1~kVVvK2fH32$A
zNTpcrTau|u0qf74Z4P({yfSDq1b<4)s`b-s&+Ni(n^G*auI%v+@njF<fP1TVRb_sN
zfxVaxsr)HZ#g?(SBq0QO8*U8eX*&#~L?IyYv5w-fd$UX>uM7o3GOLsIM4h<k5m1&R
z*b7`w^kX)p{?170#UyhBL%@RGJm+>29wZbh{$py9;SJ_UWeft5nU@wK`vJMweqdr@
zBM5%V^<|G}YtD<?BnPC?eB7*NJnHR^6}^(4YO$^}@+!B3BkTqyB-txpVL`FiL~?*(
z&tOqUk>zcNF~fc_N0@pGG1Vg2qJ$12lnOgJj$zfaDf4RK4L=nd|MV5-1Z}h@-BQZ}
zS0ne&qwb~XegDDxdqJZ`IXbuZvO&g`Tr^fb6EjV8xSBC0Od#yVR2k$-$0T>gb9}j}
z@HI3T(Gu~)vsHJGqivaI*e~NPYKj6umZ-mpr&1fwu-BbOk)=~yn>?%8r%x1$57^gV
zj?~C&#H5k$b=-P29weGU=p-AT)2X1{?2Nb;NJ?ezW<O3w{}AIQ)acRhot!ShV3r7!
zBLmAMaI#xYUT8QlOGK3JA31X$sqoPez9fwgwdovu>dLw5sN_Q?rBy8w9<sub#6W>v
zylwZcn$BX8A$SPrH&K}3v3SaD%1($G6ogj^RtO)`@dgQ!edE=k5Q;`;heY9MaQG37
z<l#l0kG=X;=p9(m_;dV>)HPxR&EM|D+Y%?6m_DzRs>Jt?cLfEGAJt?)aDSCM_NgOW
zxM>-ai@#zGuLw33gw-k>DNIGfV%y-$#(-*p=q^D83d%<dJ>?5F7fi2l-pO51#i_3e
zCsV{l7<9Gl)R9Nqe$SwG%V64gH({&}&IF<tSz=+qFjEkFN_n7`oxxqh#@pV|9M5nJ
zDD3}MzRr$|4Q@I@2GfEgeWE7A80OnTI4}boovH~iLUkUVy>q^CH;^==Gve6>4kNbr
zk~ekw-5Og^VWZ)-@`rf17Ow_Z;JpCRr%24p3jlw>$fzNB<ZwlhDe1s=H~9?KM3t+{
z{J)p#5P{a0B6<%lA@V3S5q?PKX6Xti3l5+Ss?YW2p-|_$TW%SDz!nCZa$TrzE&A@O
z!oD)EF7+S`^u2gAX7W)L%L^Qtir2a#t|j+jk;mCpD?9L$cB<UIzAOq_n|3A>&(=;p
zBHcV5I_Q%Q`@5fa@hn0K`IF;|T+*D^QOo&)azf!I;T2YrJuq65RWO~=dJkk08TJf1
zG=!^k1o||d06SDD^!^&A<;qW~Ng47@NMGM)yi`6^7jd?r9$o#<D#xm~%UK@nR`6&3
zCZ!>j<QByPwWD)#nFSFraOpPYcFj==q)rInMv4u86yqh7UB|E5(BDTnz&E#VFHn=1
zCox#D8Z6jI>nOZ(0vob3PKO^mN!tW2f*TK4x2HYaCA41tH2o(2BZ(3Rq5z`L!riL?
zmS(RK(+o^$Q>mm=X*0d&E+7_4t%T@32meXp@}SL07LTa1Zh4eOku*~vP_7GPYLI`r
zI)3UnJkBWINJ*oLZkH;E>4ISDOwi)MVE}vya{9IKU1JWXmoC~pVVex)ErZVMuhMj)
zjMr=2#8vdJMW`$+TRxgCbJ{&9`KY1>q$Ewl;;I7M-4U!a?s&V`>l0JtsMCE2M}^Lg
zPnoO9PMTK6D<Ch#A{aat2D($k(l@Uqj<aUhugV1=>*Vs6Yhhj9q7*-ncqxS)oL&HW
z2?E*G+B+N!ATLT<r-XwG$7|)H=28Z94D>{+GjyMCoZ1y`#c+EyB;LQyH(*zO6=A8#
zu9Robo;b(cTENO30u2@+3Wd)g2pq?{#>jCbgconx{jCnOd>V5L_yt8H1eAYc=nSAs
zawUP6B1?*upX*!#X?fo6`5XI$Idgvv(_$AtD3b?{lhY*=6`xo*+~;RU&ak(Wa-&ZV
zxf{$QunIH_H&H=64Q8a|{0Pt@8w1Uv-2?RGRpxDfGre+%zyZWlLdY(qH^Zrg#28JA
zQBhO-_W-rh4X%c4SRrsgMb3;Iv=x!tl`eoF@Wl18Pvz%=<v+0fqs`;eb_2DB%Md_!
z{@^(9z%QuBL@3A11uU^rLkW6<Xp$rwpH|)4owE@xsxnTxb_bdr<~SbYmwi$tc#UU7
zmm$WEN>ZH18~+kECiWpuC58322Xk*#pQzf1H{-z}`#ml-F<o?-k<=hL@|6t0Z%&&P
za7fiF_b>@ZI<mBI$r`f++>oA>#lpf>DD~h-+^Q+(k>^S5E5s^-h*on0$Mk6D#rUD#
zquRLTfIsB#giX{@gW(w5w^EgUt<7n6IW7J@!0T-iE;&5=v?-hks<MN*z%d+=NZhN3
z3I>^VFSH!<p=oA{RwiB{V(ADg<Qn^b)uv>A&_qObG1G>c6ad`;h6(dmQmZ{<r)2Fb
zw0~4vxkfi~SIN#idXISqX_vow6O}*zQw2Mls-2EN+YZ6R4Ohy8g^=((gKFF>a7u-g
zcj3I~k1WKUYLW4#C7L&eNpV1alQ7-b36BNoiqV3Ad#IO<&Vkeq6|M`rosg?rh)Oh!
zrq_Z^;8s$d4^Vldk#iM;lXsW|E+cljt5sgvCp1eYP<qtikPg3>uC-!qhOH+{u(-xs
zwGa!zTjcKAU(}8>ZBCkS1oj8a3w~Rb;M?+x$DKKT%}gnD&-+uZ;V9$3g}^Hvt+8C%
zb>aced!D++pB|hB2N=W>BCz!bsy9cfG47onC0<kSIF=?CP7{TgzvXp<9%xQsHxPv^
zEX}x+gv70U{w)N(|K`%;@WwkNzum!f+t@_f>`7ot?Uf6tgi5xgIf8_R3hRB)x-Bn-
z5RXm@3CvK+BjhxHuX-Jr&WQ|&hZPBS#u-9#pr(pp)))=QN2ySGJo%uy$V&i6F+DIP
zB(W~P7x-xED8bG^k{daJcIri^845o@HPKDNT9VzwkzpHd_olR-SO9VeZ_->vNL6a)
z2Gpk6LRN0Xzn{`W<3`IABoc3yo)@y<Dikfu_Lq#>=m_bhT}2LMy~Rh&pBu&oYAC9M
zIy)&5hry6|BaB~=a`TFEjxd*_kZs$1-C;NU7@<IXIUsICp;1?5Mu`orln-S}px^9N
zN>IiD0-~VYX{l;pW=WRK)#rRkqHehAa0F4<a6Ey>1k>qQC013Ujfw}&k=7_Spa|vv
z8Qd$dC3$PhU%;fTdeUk!&kiBs!=b9%A2w;o`*_$?$4D8YY=5e!@pf`I-u3d~I|ds#
zV#Yh*f`t^u62vvW;}ui~8wQf5%!kNL%cY>i51TEdRm!#MX5jmiF^DZdC%C;Q+sb@s
zy93K5LkI;YEjzPC3N{$78dZK-JX$oqk7>EWt5izd!T%(aBrKQ+6q*2(THxezb5TN{
zSkwUQv+1E>irnN>JGPI>y5mGhF$Xno^{bb~<~Q`n#GMo<MPgm*m~@mdqzqQ6ITu@7
z6O6ma@m`}lBD)kACSNxio#7C$YVc}V){In}{DHnOv`5mBhF87D54?}G#av)!W|}yy
zhwgB2ApD_;Y@k9bvXe{}6)*865GbRLx5V4Dx)b3Z_|0|(o$k1s19{#)R*xS)pFqTs
zr_ehWpGUjZil^U{KYGRwSsGw)%7YhD&;xN0|Abh;-m3;VO8|6`b$SCQ6O<Q;7^o1N
z`ASljpqJZk<*9O2Lyc?Ji?7Nv3NMONWRuu|g}gRW%<OyTd2+m$D?|PDe(yb=t@mhH
za?}!e!Drc)k3oHf0Tt&HQn`b)N@SHBX$i2*FADcx|E(G^?B&DqkhASL`1W!m=z#0~
zH%fG*QFGc)WerRU(riVe{~J_m94w}~CqyHQces<|AD96=bJyk0Sf%3XwpZ1+dd0fb
zrR@zVFzFcozf1>7A}4js&jIlV92b!VXyD{f-+Jke!6EPv|5R<_N+^iRd|CTF#Z}mH
zDFwM{YWfi_AgCmsE=DxVncbMi5wm>lzS_<xewjQ>Jf}&A??;@-o>2UWfn>Xi7;i3Y
zJ#SC2jr7yXiV+e*MJT-#^e{w2B&ViUj8r;eC^_FS0|!UYaD}GRwQl)A#4G$PKt{Bq
z(<-4I_Qoq;0qf%R25}dF!4O5F&dNa=o;N!-8o}XMj%7!mU4=a;&AGsMUZ3I~>@Kc7
zM{vaEcPttLf#MLdD4=L{XYGOY!VdSuX?1%q2%bXFjZ%uLE_P>Zkupxm2jv_YszV>*
zyo6pZ!(mZzfvz30nN#2+YI?%Hw~Y_`E$NWn*CiVCjK;oEYfv`rZ~#ULVimSCybUBG
zbx~4HI6X~~NHlDeyW#5Wc`zFHiVksqmxp6WmFds3Kg;pqJDvC!;NugJIFe-8SFuOj
z!Vpr{6CP*CIm(C#H7Uxs62cg9E5g2)b4@4esUVoM%HP|obA|hY5sqUPQR?sw5KFvY
zB9mxOGD-4$nl+UPqhgGwJcA;Jp`?XLeYKiO!JF&6yyrxaYm<;O$BrO35ag^TIB!$4
zV~3K-@j1%!_OR1#RT;`<8x<_okdIEe<7oI5rwJg7Ci!_?;kHQ6c7_M^j4uao*IYmp
zWCevy(041)9rQ)`=!5q&lIKAPp8qMCl{JtckL+tU&YCCGfJ-v9U50^z!Q-JtVjPF@
zgh0X_>3&>^^UC#&{OhGq2_(e84KW1rY%&67i5ttz89e>EB>FnDdRtDL90g86!1MjN
zx;prmxyo{_e&;+d35NkH*ENtBK6-?x!G0(c#Ni}Vcz_>CS0?;W<G-S-CjuoDKei+}
z=~F16WMOkD617g1#--NrDT>f~b4yRx!WlhWN>V<xTqQtK)vev}@sd+^0%Ma*2V-Kh
zeR)M_-B#nGrpyghv$f1zOnJ&$AfkezBH|=2)ThLIR3D7TSrFEC3ooxlx+AD8x%9jQ
zy1LAUltW?(p?4&GOQdM)BcDbALK(q7EWVL~24NxNA6;c3MTzmI^el6}|79Ly`XN4y
zrUx8gG;Fl+DnD3vAmzz%O~%tgh!gKno%?M~>W9;>Q&gpJB0GTdHZ}kQRm_>@U9N2$
zm3kM92?ngaqV(4sP=hbO>Y-Vdw@`L~W$<G_IL~xxwK4(EK7_!3cBE4vDbGKphSJXt
zrDDZ|^`}%UvKZRVX+ae#=hplI)wU|5{QY6+7dr}GaMF_MXfe3vTg%i3{v3pj`GTYQ
zAMO{=Q`Cm23}{|2m4f>*@!%lrWv<BqIP7~Sz-=!jnR7HJ_SrE@aD;Zp;X{jD!hQMt
zC`<#K&LHl>>WC*3l34&ksPhH>Xn@iTF&F2zXBe7N>`+z3f>1;OoR~^M@f4u}2<jYe
z(Q=VwY4dSA1--P3RO*W~#RDg-K2uLRvM8vF)@jyqXChHZ+N%jhw!sxhFd^YXt8ikj
z&ij18<{or4uGiKZmhtF{KG7V7FiJ5mzJ7Ck8`s6mb%|leE^*I)-%N=r#Uys70C(s5
zuH+n&Fw72pK!|!2U`p{-D=-RI5acYHSLMx7(39tohso(3{-h<uLL44I&>a0lO)iw7
zM*fooyuq5YcTTLh_-KntaBeFDv&X=5B|P6%cGBu=Iw2>n$IjIMoy?r2XvC>?=C^d0
z!OoA$@YK8L2t%nO2_h01jmqcbxt#@SaBk2l(FT2=)K*|H2474YEbWjZ8QPT7UR6<~
zwfz_Q>9#NK9%p+&)~RFCG0D!h*efnH&OFIhkLqagg~nyUt>j*y0(7H7k<d!?GcNfx
z*fa|UJCFh>0#ta_@=NG##O78^Q1|R8Z}X{pjY5%@bAUl<A-p}B^#4cNxh*x4Woi0V
z+-%G;vuqMF2q1t<Ap|JUsgMK_apy<^6bOmdAqaT7DVvM7z8vd*fwI16>oKdVng^Kg
zU;E(O1!QDbTbWf7lFNPjKCHvP*7{d?CYuFSXlTLjDB8ry;9OC`Nrzgh$z2PaaCdt+
z_k(9j`?;jHy>}Jmj9qK>Jyu;I!z4^qVeacRhZKDP5&XT;@*`^#pbtrm7z7R5Sa&vZ
zYWf*k{;O7p4|UX(6Y6R`w6BZ9R>NzmbR3gt#6~c0d1S#2$}eDDBXygo0C2wvHj1f8
z(K50|d#)O$sDh@rcM`GD732sLKvbz2Wj%gmlI55?AKR2t<E)xX5h)dzNS8~%H9$2k
z)t&%Kx&_MB&RobY1F$ovmrl>&mBZ=9K1$!-$v7L_wkqu}NbA?nH^`l=IgAcU01~^%
z;hbbGPn*Sy2<8Sk(o&a3W4v`?f6?8INX&y2wdLen;9DnHizj}z!~|g?4#<Htyl>si
zbmKd~;b^{EcctYl2N%LG@Ww3BEA^;p5v9yN3_vB1&u8bWv6?by05UO<d+XE`VOuDi
z4ABoItSW!hwtdU*#Ay0}2!qGdDnb+G7eqDpqQ<LEG(%z)ubtHOx=8E%Vi1O6VsSp4
zIjV?F1V_~xD5PGn0{$1c#eHH1tVl?HvZ=0kod_#IcJ?fdSWE^85}_Bv>531vCGlLg
zo7yQ&diK4T-C#;^9Srg(RoiUqOAsc_ZU^Xtr^wLCo*p+K>xs^wis*z8k-2B~PIP*L
zA0M+Laqrk$-ZI&z2hWS$6<%&lWxT%Oh<(bWBmg6zv7Ct*(kK|>wk9Cl*iH66vAn~2
z1BD0Kl0Rb(QixDelrY|oh|Vp9GDnq*Ho1-6&PMpL<{Ih0iJWnfrUJd&&<*@!5i!j#
zR&DN29iOXlIq?s0Yo7zw6h8+Wri0f9<yNt8L@$87@#4gWo15R_GSE1n>@b`i0nGjB
z_}^!C5y5W=N~piAu*rPdNYFtY$YODX91;R^1$wA<L}a*vhol(3y<s2OnV5}8W#q$X
z=z!kI_~!o_uOwlcbj_U**O?-}K#dwkfXQ0Y((!X~O*Z(#Iv>Ok1N}?0OJEaECKo{+
z=kT`A@ftnVC_@XHT&CF>&b#PxK{wcQo*mi`p2Q2T;9R4j-H~&%5zS{mr+_ZK1~56T
z{1k`DegT2|1VG0yU2?Vy)*@I)Dwq(+y~qhn>6AtVK|-sSS94M>jJn}9AC-87wXk5}
z8!Ppm*A2qi7b~7r4ArTPM(rHi3}(OzfBIp9rye$4X^xA3cpo&Z712o)3)um+$~h1~
z48w>LR<!J7YCzylHj!n!`<qg-q6k}dWrp{}8{VqZAw!kY2fd|VK}>iKpu@h4H2~bV
z#tB4*6iUlNl)$ojPU;QT1ZMaypIfZl9RCu2u6#lAF^SO%*$ErgaQjkPK1B$s7uF7O
zMsBoK%07`^40%8ljW*Y;g@PJ|4PBc~ay*z<{WU^5m%#KTp%A8tGeG0$F-#j%W+WIm
z&MERHPTUNnj}j}d9a5xtF3}u4mL&24k<~%gmWm?!U=v%)u?~9z)TMwr3L&x22~XjX
zzzvd@B3>2BdmJ#r*zw1vxFK=J0cWABX;!!(R(tO%Tn3~o=mNd85e(Crg>cJS7aw9@
zKnKVhBUmQE25KEWAVz-qxq2^YmcEbgSBtDAc>}hMlTMF={{JEBbs-BQs6E<;aD<Df
zx^{w!MZl;&1Lbv`k1C^w?b`rScdH_N(OLuq0qvxFTt5UIN$HYl(tFNVjIsmNg^X>n
z#kP1_x<w^DI8)T-E!q9<QTuzl_6NumPLKD`v@+|iLJ)&+e_{>RwENeVzc{Xnt5!hK
z-M$aLY#5=q)TD87fZ`h!XPUUEnFKd0T6?m9Dhk479A)|N-b^+l09K0BBo0Z9#z@~j
z#F>x*%#_3<<R_HF{BgGUPtuPjWHldgnyp_*3A&W6fMwZ4_(#bg?H9Hz5gW^97~~}X
zR6_zvN&urf5cqWgH79nNXo=c*u!;j)Mg;7qkZZAh`YsC260gtPzPcP?T^FLOa9MOn
zL&_~(jIepAtW*nJ74oYTY^gAxUvw~MV$%xp=Gj7h;}<0#$TIl+^vX&j`f?Omh}@uJ
z#AF|ND)R-C^j2E&kTdsDs3P<{wqEx+0b(s7Uye=87VD;vo8NORo!f{&0NH7+ApoFz
zW@g(9`DsQ?+)m7RC+FuSYhzz5F7n@vZ!N~yYc3haghkk|HuXT25RpwFQ>WLbRrj&N
zHvZ1&KiF&}Ra%09X$mLi!`4#F7??ZEG+icFhN*@Dijm_8|4D<ej5`n#a^i9(1>K@|
zDU=Sv<+v^~OJ~r!V8Kt}BsqNma#osv1BmYI@>0^6Uugi`k7QVV^fxqXBMh7aZ>gze
z>zf#9Spqw#(@?TPWYa9o5)oX3Ls@D-yks4qmu68EQ$m6~PmDt@idiIn6!;-NH@;Ir
zF2c?h-gbTWA7IXO>Ypr6t5B%2dF)mY4RUyCN+T%{UXdIZ%S(E)J?hENZG7SJ#5V=K
z6*r8T-7#3ZeZZU`-z8IZ45ASi#aGCl*Sds916-50el=0%K}lK^a_ayeLaq6ns3_T!
zs_P7Q!`Il$&JN|>^YGIanc63HrxKdAPmBv2BwD|q4M_6JFn?I0;qIK46)#>ojDHWs
ztA7*rEzuz%Cq>4dNTL(vrK^GjUUQn`53ob=PiS=n7n2{oUe(ocj=X~B(cuA{v;&2u
zT^X9?>69;Wg8+1-IbuFQl02y_oZ~izmN56ZAKZiR8$C{PGw{NL%V&ZxQ)@H3*u<|%
ztbR!1q~SS?)<{vk*GMB7O&1f?ogm2y<ge(PC9_|d(?c1lwsawvJ^Af8>`ZE2lR5FC
z=NpvriZ|wCr~n(ISz<_NOTaNm_HpG5-Cgf}2Fhuj@iFB90Ev}FPEWV9oUSd}G|o0p
zLJM4|7VIQr*v{Ufq6QRweVzVpH8@aS;&;vCoGZ1DDX$ztqs9yHm1T07sOEwCFXk<a
zgb9z@r&x^Ho{k)FMQe+H?5BhQ|IwdH9J6{(JyxbMjY)CYS_{v?^26FKO{y++aB)#+
z5G^dZd>%B;I{iZ&g|@-NCC`zIT>hDAAbM>XwhgS4CVlndQ6^e;s&sJ_oK&xNbD}#A
zwjEFQwq%`R1Ei;@8wiw;^BGO>yru+bW1&@`=xUSJf?zrtnD&j?&Di)&f*~$3pyvf;
zLd#&EBpyzjn}-9D_pxuI=~A`~wAH|T0EH4B7U!fYVGs9%*aF4BF8K}@F&bp@|2RfX
zQCk3{l`JNuGC|xU7yB&8P`@mk1WTi~oQqzcNd`Lcc0P0zU|pS@T8I1pH?`>^^9foG
zN2W}0Z8_)j0gA+%UsQ0CC|H(8sUkrT@&0J=Zz)oB03eJtrJCk2x_C#;x5#y!UoP7*
zT;k`G<E|(eC(eneAB)hi5ZJy0!w@Xp)s`>Z6Sh2cSYJ2bV)i&=`hd}kx5~Odgwk+d
z&FN#oh!>aKF>(9wUJ1PRI=I<~O%2$qGygfRR`W)})Qc7yQ8YP3jxPJ{{5;!;7D@>M
z3Acx+9dU}=L78NiSX*$oOJ@OyM374IhW2wd3Z78q9EaH(=|0@#&#12kOs$@v{W#<J
zbKXXX`tNhxp*y1Ixg<M95Ecm&D8{IwiKK-|AXn|YUxhQjm>;|Z_rMf`DNY*EhL72K
zTTM>@VhD*eFi+5Q1%h+{0y$8n5^F|ei-c6INq8b@Glaqhz$%*GXnU}wi)WDH;tMP^
zuJvjMQ)$WLh_0O0PXy|^@;xPt8KnNI{o=<#NUlj;ARJ;^0N&!%+mA(b5pWB|H6A`K
zq`u3NBX~a?7DtMs#se6$1s;sOj&FrkppF<{sE5CU)cy|g<|d5`f&{kAh=73@XlK|H
zP$ohXvgLUWBNJ1LlnpE_NIgGsmaJCHEOwqREpXre)fI7-3~A00QmNJ>Y@y_cnDe_M
zdfa1dM3try^f*D#H<GtGP_U<V$&bmKDb5j+4%l0vLzidg;#Pzo`KN=icId2OI$0W3
z(tA_tbkk(kW}38{k*_OdI~yn(Gq>yr7|fN0AxUqm2KG$4a{IK!qS3yQu?Az1cnF@2
zQV}j^^T|+Z^3K_h{1C%{FQEi=Up|tmTBI;g-2(FUKeIrL5Wlhhkp&SSe9r8%%h}{w
zK+}lw%hg~q!lLj6`1H{$n<h|dvyIh^iHmA5Y1}-;dqc0cj;KJiyttyjlUmZ!bBv!}
zU`}C`oX7#g2t(shGob$)hQj$RsCw}epfCK~J?zsbk|0B)cA}XF&SBzDsGQ5cfyh*b
zv&q9Pe-sHFlyoU@((CbA+Npf)H2{rKT0gvufe1rqlM54EqH@;^JroNyfjwW1nLr@6
zvV?hjdPN8u+R7FZf%8B@+<Z(mu{yPLq&NpI1y$RlklRZ1p&r(;Ns$9TQ<=8ABxnRw
zcXQKK2AdV^_j8nB#N>TF_<&BuGllNO=Z5c&Q;tdK4&&c%EDb4cPTmje(~F?uh)4wy
zn2_<fbSl#;tRPYXA1J>^MFN_VNUZcd(P;&M9?w@CW!*SL%_dkrzQS@AEd4NZOelCR
zu_~ko-KgcHcmG-(B7TX@+;O2FCx?J*4S09TM+-vc3@2?o;Dx~u@uTD>`6$AHYH~1A
z?i?l_Ofp@9hA+2?uzRWC1#d!Z*llM<o6UmmEg=S!#tQ9b>I847;5bMc7pi*+5!>8i
zJgAk+Qa|#0i70@J_%nEg1npybDj)>JV~-^GSL!GbQw{oP@Y0r)?0#!4u0(!K#$ByK
zW<e;5pm#gFCN5Bn2V)cm-&TP!qfktX>B?Yrx`5#ObOTOz%I+@d?Q9`Jk0)fRV1x%p
zR;gk9GcxSLcFk}w9fNLX{i1qzuygt-32A{ba~c%iUr`8>k>m#BGyGkU&c4Lx57<3N
zKJH=QhRnR4RZe-omDy64%q>|@ICil>GeFxQ9z_o_*69O>Uzr8h`2dB+-WLHrsU!x?
zhcw(#*cU<9YE3|3w@o8KpJy7WJP`+=_~2rk8RmysYT~M(hzo%L=;|s;ID&UPc}g`p
zRy7WOLI;9nXM3fzA;DZL{a)L6MK#eDM|wHYe&Z;&E$B_y1VJC7EpPy^*sUDa`-u$}
zHjS{$&lpqeUc#~KrVSWbO^;UPW@?qWXC6>JDP0e;N}w%Fp8pQatV#gr6E1GpWN!dv
zR4X6nlTlMrHAp4L2a8&_yFv0mf;Ii)m#HZS@{7~{%CJD!NHC|UDGA!gGaQDFb*g-v
z&P>2SDnx=DlM+YBTXGl&L385<qmD|DFR+haL43pQ_lc^u;3lFcxBWN7475!mK(#*I
z2tBu#$Xx}>huo+OnLYv;FQCvx0Ka0*v$}-j&|$!OyE$atr#}L1Fn`e7wR*B2D&V?h
zSg-@^Jg-;jiv6bcF~$wTueKDiriBUb1Hpv|SpBVE88FCKcAlMVhmDY_T_J)nsf~b%
z4)4=v;2O`#LdOz;Zaw5BBxuZecEaPKC1*o7b2(htC-+z69|u#OZ79HqZR8B*kQBQ`
z0Xh2&W-Dw=Qjl9RL%G+1DoD>~I19_{a0a0unu4OH34i4z%Yknps`v-_rPDhe2#wSA
zlHTZ=g?Dh0lPU2J{djAe`fpkHBa}K}c?aLgs^{&{*WJ39w>%(516A-8OJq)8RM3Z6
z<xiCQ(nvXfK%V_6+>2Xni}DwHL^&fH?Yiq2PXkDBoTC-$(^-W~)|_7=F=taf{{zHS
z#9}oid3HL=C!i%JgjoxHZ=T)ZO1wTd#@ZjcR1lQoHI7N+fz{%XIFW8_cice;!f6NX
zT|b8LG(NmsjJw|V+4r>-%No{m6<c8kYe`g19CQtWntJ{4137!yDLo8Wkr!(%O9n>+
z!W<$8hoi}iMJ&IgY!K20jzr8NxdvrvPbE7DK=)k8*a^<oK7&nJP9T<ZtIC7v{KMol
zFNh}wgPl)VFsd<n;-$H{8eyrFc3((~7M;&KkvmN=UItjw;T4r8EL7&KrluKGas!x;
z<JyFzbXkwPJ3=B(=Hua|O|P_=I%t>QZtFn3)#<Ct<W%A^RmX%*yMx;q{;+HRG+1&=
zKp&8Z%HaDLC}QnCfS}f%Dha%j=)`t7rX2}!Zhj6?28kw|9KChAjcDFXj&KFk8AUwJ
zYTp%HQNU|@7e;Km9qMp$)pgfL8BsuS>?_-7T6|F0_T41ECHV8YRnIo);w!3<!?0tr
zph55Dh!s0c0pqrsR%pC?Al=9CySreLiY8Dxx0Kz}jBRX`N|=!V1b}KJ8IKl(mlk?a
zs%qiq*ALY;hwtgg3kvRfo)QK{`vn)7&9d3i%hAl2qgEb>O7pF!OVLt>D@m?`%yOpN
zThclsK1U7#Ti%*HOOE;}(ka&=ATACk66Mb~+8WBR2lrrQr}(bsh04*4C%5qZ_RLfI
z;dQ$tdBbb?!|S$C^dy_w>7WlO<DN<~Ye;YpVs#yzd0ZeI1PTf<sn(q|Yj{J{<+G91
z2f0ID&lIK|g(KO`>Y)YI%wV;!(_q-{>wdM8J3|kM-@u7Vdy}1|7G%Y)E0##}x~J28
zj%8}BEhL&R7buue$Dsa?F1(iYmk@e$s={&Nj+@z*<tI#M?AbB>EUPT)^2rv6j1soy
zd<-$5sD?^I0+&Y-S%uh`1ZRKxgV?pjvwHwDAkc|dY~Z0dLjsOTRhzg3>hqe3DyK+@
z0{yVE0Gbf+*t6ARj+89V1ItI!0<op1(GtO)xbD#NVtE7O^l%b^5507ReheL3#Bp|j
zgjmSoKdqQUBsYzq*(qJyD(^UlO&Tl2eF?iUKmPLyZgn2z7!k>c>x6fwhbG}Z^*387
z3!*y9!4@W7K`}QZIb)695;y0iZ$PcF^l>34cWj;VixG$C<Pd?!3`dye54RG>ztpJ&
z#&-CVTvg2<J_B&i`ekd&MoRF@YhK)ndK{kkc{LqhKS@wHwLQkR@%w6*0!9*8@_|gs
zLz+(_0v8sVHUq}no_i9hJ>NSc+(j`|+nZY;=k(#&?2|ESw%y(b?DNVJfra#x84D!`
zRB*ruI!l%LJlDS51ET-oF4@Ii`SDfiVD-aWk<CLM%?~d_FToHIWeL?trS4cbQ<k7h
zY!9mvac_tlVzWwuqiLqCgAdFWHpx)U(V6wh=;0QVot+a^YO(pqG1-+c1ykdKk|Hx`
z?{I|Fo|N|yh7v-gUD0H-H2iJCn@#D(74R}4s+-#lG_gU=Cd$nBL<ee%A+*sDr%#Y=
zuRYej0$6_KE8Yyb`r0>0Y-F}SsFFjMGfbx-jM;*iiGxW#jz$y0t2oyD8VKnEjjd)l
zgdfql!3KB6%E19CRmEFUq(iAZ)^K@VAhkk97MF3*R9;dNE&xQlc)X^&nr5H#<pu(w
zd>!io7#6Rq-s)+moR76<>N-OEVF7yi_z^*Xguh>ZvaXZ~kbUG?)toXqV1e>O>8VI;
z@pZw4Ok?t!%Wg$t4BQ%3R=k<bx!6di3^BV@r25foLkPFt1H+M?0sV$H>TIf(Inv}z
zSOLfSG}Z<NiMO5>8y#pnCT4{wYW&8?=&gdj{!!%`4PvM&XT(b?Qc9vo+g^j&eMbs(
z2Y+B`riWevlY(zZvBcJEAWi1UEAs{VRLFSXw=Q-R$@`7b7?zphpuMAmG$)qRIE1^9
z2~lUmAvaNXXJr}Q-_NFx&g%$gx*`I$9DU4Xh%16K)-Y_c(R>oeRu>!X>PkQL6^eql
z9afGSh=x=g!xnbgo0GVWdE~PNh#C`mDK9RphKOcBX3fWkJ#;o#0mMEC4VI?2H&`*f
z@nl8wKr;ntIkrU&NPvEgVYik{J!@%iMj+6Zat`>JbtnDd(r#Pd!}565nXo7GS^JFm
z1#>Tng_k>fxP4k+o72{FvKkMwqbD*H%rD8W<PFZ|X0_}A3HpI#l4r&6<Y&i`v)kMA
z5!tHQFEFuM2T{^ikcmn-ho^@lmWWmDf9FZ~Ev|Q@z*AP?rX5Oz(0U#y%O+O8@o+d9
zU9C7o#Xf^d?R`c9Ebf|_W{cY(Uw5bo)6Lm7AV@MI6{C`jPXU6sH54vFXOd3@bU&9F
zVa5S>0BpojF(-<_<M816>f?7i?0jnGp9Zu0cpIV-xUF`&Y=(<TixcKlL~$@^1c%>7
zH9k7Zp$j5#`#3|2X`<0%%sz?5n}l?v&tjg7?>DK7ux03ckE!O}JO&yr>pDYv;Uo|3
zmnIWN&%xCik?bU^d!vIq5}iKa<Wx@g1KB;gjCx=4b1J46a^77DjNBUs8_{k8jO=1n
z-l2zY)jAvLY-d*+rpKW0j~L!DIWW?Iokmsm)qCWOVwA8xBPt1OL49^ZxJjCJBkp2M
zekJ<eU9UiBIL)Ahns=z<F!zpUv*E(2C~qRcc20E$4@G1kr<C)q@VU35qOg%9Lts^4
zP3cxog<TQEQW^`?voG)_Ob^A${c@@mCk_u|*m_Tap#DqjiOtp9IKo+3EGHvUI#E-L
zXDPlFxz5Ic%!NeEdFW`h1W<BV^BqpN`K>gB0@e%P%~@njZqhY%Lw?B+*l5}Dm%5@2
z{5-vX#DwlNL1*~1i}?y4ll@MlZn;`!*DL;&2z%~GXK)l|WpRgDB!a**+-^cDQ+s=R
zsdp%)<NBB4hQNtP^Q-Cjd82&iH~>?7*947u?>p%D!p(MQRly9M;t8hcnhh)cF@}9U
zzZx-Sb^^E_<51l$Cz3Y-HzCHu4jx_8?t?TsCUMFp9NfBGF!r)^BUHaOy<eQ!F>)`D
zHA54(<o4Wpe+L7xF_}FP+YGpb%lTu6@;$y5p{n1x05c3bZ1hNG3=lG19ds~+NAhFT
zJ?bnbt|4DX5dIX402bqIt6u|BPa+T=8@pw7z2Ib#O2_Iu9MUZy=U@R+x6Hr^WT)MY
zZs&_fY6sm_JQZ^iR1tZ-1E=98;DK#aBnw_6^if!Ab{ZQFpP=O>o9<(m>`51>+UPGJ
zDiIwL#smOaFaJ7*DNE1AJM<R?{|J5noL0eDpoMh9-ssI%a{HlhLeJQ3NlzL*-Gc_&
z(B5Ifb4ucYwMphKAdYsI?r6xd<<ea&Ya*b%)9@%78|;Mnay`+#j|K*-F4a}NgGu-7
zuv)i=X=%>$A<i_fhH85vrTW`b{_J5l1_|kfdo@j|gI!oIN`;Uy)BHxjELmkXNZO%W
z`Tg_laCJkz)o}Wx8#YJ!fP8K~(7!c7)LYr#z#Eh;@u457&Kogx8dO6AcE@q_pX2xe
z*0pBS?sE39@i|9U@qllOJ4HHdHdV{zUT&ic-p47`Z~a$_`Re7Hqh(`!ZKwz{N_Me6
z1J9m4Vl0j5HY|`Z*hkEoQV3<~U(?rn7{-E>QPX3c$SdVQ`vroj%*A;uS;hiA5qJi%
zupJrZNxofcBiSi#ocpLl4XIN{1gP-IKHe5Sr2XUbMsVt6?Z`ieI0Pc%<MAB%cr%|N
zCqYfV+ppfeL)vnw8sX{P!-ww$9<ue5*}*@vwM<^$Qpu5ZqYc~E;5QhdemW7)qT8V-
zOT6#a2Zo}NOL{J*`PJyV-q#HuThZ+xWzgel#2JHtcQ0dCgB@`WRRt6Fx`OoR^5y83
zb<8)~Qw_xrU|acekQPFQ6@h4gYO<^j`(LsqabtX>R;6tZ2gE19rjhll>fM06A(Ypt
zovG}*SWvoGfh(ME_z<1nblUxF07;<HeB)t4WW4xhkHifvN`xV5$X;ftI2Ak&E1qyR
zx@a`Mp$)0qT3H`SF-GIHd8gCagnav(P#{br5?Q`D^i%+u8KC_t6-8=N@QWcBNjw5X
zneqz*bgWIq9`<udnL42jjk7&{`o7_x#>jRJW;dz~|4w{@lcr0NsT{7GjinQJ?rM&u
zzN-@N;5ZDNB=8=5dwzut<ga53F9y~jojpuK1|M_Q_Ss~Po8QjAG<tY0U7~Q8JJ}Z=
zH+>ps%_naxfl>pxt5}T5N)#YUVxjqTMQu!(YVhVWF|8mmycy0~MLPzIpTlrO{_0?P
zK~BY?tHuVn6W`B^&xy7mgOxI%V4oi*C=tXVE3#r4rr!*<U1^vCHgtj@L=tNKrPtBA
z+WioKFsH$~Oc96R{c;f*OSJfS!;eOLi0X1P)Ny5>@^53_GFpD-evoK_)xCNm1R(Ac
zXSEl;l}17nV{#G1h(y}m#$gT5s^6^yuvuX?VnLrB2O6<d)m4+~t>KZ8A!R9(Eu>Ld
z<S}UG6h@c92i7DGzd!y1s0fj#o%{(?<vR;K@W_%mymY=c%<uItKL`+Xq3GZyc5-ke
zhCw$il-n`Gm|;Aokx@cN2nEvDbfC#u9_X2ydR4+`B;?3!B05l>;vIEwy})$I7n_qM
z7;P@jB@AqA1Jufhng{%9u%L!+L~cGxzm41=JhAZhghI30P1$gB#{V=%PzGuH%5iq}
z&1hQqrNpZu?SN3KWF+{mdK*y%_c>=%#b>tPDfgqP#5LI5HuKGe?uNNeso15!ODx<|
z`9EzaTd+jkY313v3T#8BqC!1WZ18Xz$b$pWZ-RqT0j+~nIF87q1T{)vJ450n)?9$C
z^6-GYX%Ev8mVpBl;_<@nH|(@K^7kc&Y1_CHzDPV?z9I0cJ|EP<!5j;5MC$~9v1P6h
z&L3_VpLichby;B(hK-ECrydo*9UON#dtAfG0HW}ooA^UdKMPg<rrjZI#2J}-{2oU(
zUUAk`HWf%BX+_-?QLd5PFr(E0?Xe&$vk64km_3pBoNO8P|06Fbi_c93R%`mT97BWz
zD2}bk9!Eg)VTo7Ny=+djptMZnTz6NKXO^Q-EY25#$PLh;-)U}~J>6r4aX6p8YP1}6
z5Ye3JzQR--f8|LtbCcK<)6H+T(ZMSqc<7uk2aaYcWtWm0`$HIIZ;SYQ<rB1I=C86A
z(XZbUnaT0$>v*|XX_DE+T%@Q0CEOd+h}Qt#s-op^^u#R4EO||Ka}h6;UFJ}0dgF|U
zfGxM)L@9}gr*0Lg9@@d#$6z>EO*yum{d0GlR4hXpNpPC2)<8Wp8&?rGAY<Zk%w#cj
z^BdDt0SymUA>&b>NDvCS7}Cy*<&(kT29+#ra9*Bh?8tu*teJk`0+n8$5Dh0M>ZI|x
z)gn3M0(&a%^X(7fkDYoCae#*?H@FCg#EI5eFd3`LaII1^MQVaJ8=IVd+ek5aC9nPt
zHUJ%UJLU}~9H26gUYHd&5o{q?T(aiIyPb_~bj0CA*EHR{ZgHePV`>(Q6{IKA$8HUg
zTd#-1+0v51TVe+pu?L1#J?4hMoS2T45CF&8yvDjH&<J~1yH0)oz~BU~3812}!XnwU
zG(%K7gC5PE)LG_Cm2|SAotp{Ld9Zf+==}W*J|+-}(kG65euFRs(ZhQNxghOr$yQM0
zEq=4eua=-n^18Qn^gCmb?cpvHkIoC-Sin^vM=G!Wy-Q%tXCFwWVg!TRQMZN2P6o?^
z*yM`D779tYQoNL+Xv||XH^dLn5mc1o{<_!$TWe8rZjBr!9$s19EHoLZ%vY?{u&TAk
zj_v{bym;SY=#>TMyL-pp3I2f!WMDka5Y!X@83L3N7a&ulq_Gx-F9>Jylvlp6h8I{)
z8&JJe`M+PVa}S6*T6!6O6Cle@>FiZMBf+wDqSl1$ifOO{yba`)QAQlqC#G!?R#&l&
zbcaj*+amu5ENtx~Wa}Y`1(O_b+fcfP$$<IV*%35d{>I@TXb!3sZ2PkymiZy6RhHZ#
z25yT=9x0)>K7HeYWoR(oXoy~xH7y1+>T|^qzBD(Rg{&b?$tSjdN}!UhdCx<XoZ&JY
zK=sLL3Hd`gj-H_+hqEE6S>#l%=D*s$*1Mnt-qQjlzeS@NVI!M|R%9h8o(yI)Z&7zl
zS%m^)&~JWB^E#BVg`i1_*&JxV6jUOPATxu#jiydm&(@GA=w`4UkRoaa?ncW=epMV3
zhRpVcnHKUD)PvylvQa>FEIvYfD~k-to3LJjJF0MPQa7-+=7nh>0hJAZyZQ~jXdkx=
zZkwi=vI$a-npA#Dhx1CxJ(W`y?hwS{2Q^bgV~!qFmk#bx^HhqKH1vcx#i_&kMBd8+
z#Vf|rGM>v8|0ME`A`|)>Kw}FPbS;!m^mRBlX9*)mfhDv5MmoEMaVURRj)Yn&+RlK1
znUj8jrRF2KiL*n^JFt*_7uxR-%wt(}wePC(L0+bPP&i5KUu?<{Oj5}lOdW!x^o0%s
zdASlh$rs2r)c4CT1eoi*%l_ggvTJTeFzZZ&yr?H0^x!#KP1GH0q7G0Cj~iH)#3=%g
zk=RlNhGv_SE~1;T9~Afot1GX%z9W&Ba<8dk+<coxsafh>WWCm)kw0oHstd8k=<>jd
zus9lnvpL2-ljpVIP!zk5XOMl!_q7S_P!?v``18}X%&~=cbvZCcc(0cB`#(%&aNtP(
zDQ=}lH-Pf5cwb9UA~}Jg5*1G%vuDhYJCaf5Z|w+V?><cjbE*bju0A<`m{b-uLK@1g
zRAM5;0Jlga%dlaFnc$rA<6?iu_m;DT-@^VzX?<UhwzHu*-*0}4P-f0n)9KUId^Woa
z5060=Q*yQiKCpYCuYb9A+u~j2EHlOYiNk7t?z3Cv1FKT&;TFr?zZNCU)Ckd55s9f^
z;2r=qozuGXIQxYZq9Q)>#PPO17^J%>8R<`4PFs{U;re1LY1avg^1&0I?y27*j^3U`
zY*K<$-E&MJU@V-TC7!J!?a>Gf#*sIjuug>&C^U+({=~j1wg^vqziUYv!LkZjry;yx
zQX(391_)RlUJZF>HPXw%2+S6u*B*~JecX6U;897~$Za{CuciRzR^&uSNG0z=l`NT@
zMgzm%3)Uafja<<jx{y;`DyuqCTvn%*V~3Ij|IP>6gke7YSEBNN?JEcvu-bU&07I3h
zsX17A2tlz}+A`|qQ;+0+B?P-XeA)DRG>*UtI#Ri|f?{al<jh=216SdtD1Y>0B+&#x
z#4{(qU?0_YO4S>0%U#JZWuG37F_`o|#oWi=Amw<hd6@VuiSK5(ZoG`-Ka0GA&x3UV
z&d|q>@@<v%fzCw7SDj!m_(-o-tVFwNG=Ona&W3u<R{o@M$sIx~E9tu@90u<|8Q{`q
zSgjeJkaAjVLkwl=jt9#O`$(A`3IGmQ&I%oE)R=B$%jD;_8eom(Kq*m>qlMh$c5<2x
zW<sD_Ct4RjTib?aYgUHe1Y3fg<DyK_soV<-iqm69fk#ThgYjMKiG%V66Z~imQ5YWe
zQ4H#5jsOj9EWmZcFjP-*l2b*r7>|g%)j=*chNBG|u!`#|*coa?m#mO~NxzU7xw2xa
zfoP0rEP+o4(uqK;N__Y5dkmDuMPzkUtR+^|n(BK}l8f#~68~`S!crpM{Y3V_SjnwJ
zu*ta!eSI0aGyrfzj!jP#nPj+}XfTyoW`G6Lf$L!JMhA5s31JkGn8IY~XcpeVdd_Bn
zM@Fj9trsfCfEre%qNGikk;M+?S9`*?!|+_&X69LXUQeZ4Iq(9O2s+W<l8=#KIQ=2;
zU!9R`!rb5U4RjA^tlFH|Bp}>pWSj-=NuyFgr_gh2cJ6THY<KQ}FhlJy#5?U8!e=UX
zC=8b!oTC>;66^cwuH<%#B)u)WDahn&un6K0L&6mZhRKM|)zLSS%KrWNGp6}BpYZ<u
zF3VPb&htC`1B#rc*%_vh5Id)=qnac%s(LI*7@pZABA}qa%1D^81NM*@zW$(xsYZn0
ziD}@t-Hx1OCE1R>9e!TeZMdxn)^4l1(a68$_>OTW3%BHv$yXj^C(jT+_WY0l0M$wo
zPZZvqS%q@@oEjpE(2djr3jwj`R9G+!3*!P^%5i#aM4U5@kYnG)G`or^pHz1fJjke!
zhj#2Io=RN`-CVL*5=mjr@72MBpQ$oTKz?MgQ}50ai5(}77w5u56{uA**FurnAu&<&
zvrb<eXK?rxr9xmV%21*v2x@<|fJz7Cs|8~*mAuxJypaUK%-4=`|MPm65++K2`lJzv
zQnB*oOFKRZ&q%mOt}RGl`a&YX#CW8XWtADqj9%(cVv#p8BHBdWJ)S6(_$M&h5UQ=|
zAOaS#xX=uMk$B(i<=pv8jY*vsuxcnOTz%D2TA%fTZquHzy-UKxMdkcUt)hp7TBfzR
zD4qfzTfNt;P~@4;;M+^eb^yAvuB=9TWDn&-^O<lSkrPQZsamTy^CgAgksbm)6Jtq5
z@gw#=`l8zDx`|T7c4%zzFIBZE7U>;(%?*-PfjR(nHHx8>QFIboVrgLQC2T5Ohtf!h
zWzmg*lE>2CFfIXq#6;4G=&5z9eP}{m0i603(G|k}#m=v{p)ary3)f=3qE~wL9>tHM
z({vFVYaLM`x2*LS$`Pv;1=YoPb{ru_O9V)FV!HW{b{|300ECd3?&whO#e<4_gAk-A
zwYbFnC9pehAGj%!iOT|qYRb}ksR&pT!j;q*feIcrzGyR)m)I3DuN@ASk|Uer5Q&SX
zGp1dKuY;u<P%Q7mT-L(Q(Gkl?JCr5eA22cqMB*FB&HNAR5rM{tqztNiwbu{^k`$zB
zh5w?n>DcG}Hf2oAi(}|3ze2&CTr1>D^7ay6IGk3T>SxG579DVINQljgIT+*@$)yXd
z?KyU%fQb8X;JFGTMut*Lt0MI5ynS?DKcS2jrU-;%yL(m-r=3^Z$r_ws!kC$nZF|9%
z9<E|WW#An)`b>bjibcZu%2BgU`WHP`j@b0fPidjU2G+=6dGZ+;qP8Na5-Mw%K9aKP
zl+T(p2{ME|!tE~F?7#M*L@AvD+ah3QUu$cGiQ-I5{!`{^I8ZBbMZMPkRZ=!C8BrNu
z=U)k9_BUoDdVw5>09hmo#$538c(X|rcTfWKL18Miwlu|R^pe}}x~?oK<6+b)#eMNF
zAUB|V8{5`(|MK<B;uioeaw!p@mT^A<Jo=_P+8JT8oIFTRjJ+uBd=vlxekP8CEfx7C
zb4>fInbiS1sRRuhZk8u5IMMAKx!8IgDpP^0p%xnQUVAFw^$UR$ew)p+s|+`eq&uEa
zu%!WzP=(4Xc|sq~C#LC%-GdG7NY&itrW2qS4LTf1u?nn^UTAy09QHXrwo)*|x5c^x
zHAAdsGl2gjBS}prs}+SP?8pJc*7o+|W)1q@et|Jb5D<iIAaIsGq!il=8uLzm2pOQq
zDEa-tRrshlf+zHOnoli|XgMHd=bg3*R8ixt2#~3(iSCTFq0%+r48n!Lq>xrv`=u|p
zL~!#)egJRsW)40`7n$X+MPKok!S*rUfq;mkVB4OOP>7Vr@|qcX`NTwmBqw!^LXydx
zwQ>@~A;4yL#lm8|0$N~15;dD;mJCgW4I(_ef;BJnt+6ubOV5$&+z0$r|01@jCEHeX
z?l>nQ8Eg1$%l!k15<d(~0%;IYYEq6h#~c;}*=WcYA`R8TJjLhbh=IFmYfl0FtpiuS
z$&&I*9UWIb6JE+$<S^g>L636)so+}y;9nA#;zt<yoPBIxb=Z!$PydXss0;f80ag;)
z-p;>Q71vu^Lgj^Te21)f;~V^mH<M5}U~i5@&8yzN<=gufc;v0$DF^TmEHkV|Z{2|j
z{v#V@7p?x**i}RJ)^|H{fM3toVHzPPc;h?qhP?3|s4bD6*$<j7ZQ-50sG~u!gm@Es
zi!2T%mgM;CO#fHjux~~I2?EOK8r<H_$loJx8hJ=@?7i*&UCIJr#pS@pHpvO9PUJ~t
zCj3TKxKO%lgEI&~Z0ZA|KoL?^aZ%pF+uS1<=W;c`xy$~44-sKmycW>Yi@g(tJ$dj%
z1@bv`WfSsy1KBm-lNE@V4R)}YtuUo=+te<OztIgHoGdf%_et3*Uny;fSExRyvX}ws
z5l8gEto-x;c8n!Wr~up9{~~j+D+VzPa(qa~eBI@e@I#{gU=cwW;Is?1R!m?5gy~c~
zu`V2UA!*6lw6D=|-$@jL@o1CW9751StG)Da2{(*O1rs|0CU6Gxjjn~f((ndF#*EwL
ztdQ`#m9@H;Yx9aSmNu4zLQx9)^7sHyg1GNh3!oXmk4J}+l}uE%RFuM(+m!c{5KShx
z21%%#_+#-hT)<keWm*a#c*V|Ad6NyH@A=XaD}V^&W#YS$>f~IsziQITMggb(W19x`
z*uEmChz64Pm{JSL+qM*qqsc!L-(@an$TrC5IRxE|6ZS|YA2ciU*Ta4YW@6b_<vKGd
z$aZ1dUF8}l(8e%Vt!Qu}06mNxF}$yLMdYyfsaDPJY1=ydcndl;gE+L9?_mJxH#nls
z_Xb$RWb-6}&g;UR^oFb%HX0@sKE2sPLnJ!s6vnwGlt85QM5blx2C)BS@r%hYUb;;r
zF|%fpJhpUo`JvPdvD0d}!5pL1JJ8{IVG?gkiSziK&+UF;j|cV~H`#){bfeG$QES_v
zBI}&g#U4YA&0a`&NBzJ}Ly$!bNnKbF7A_Sbt_=A%88c@Njq_kqAn290tu-42^MnJD
zPssOkMV_1-mm(AVTD7e5l?x&}u<9jz)+x~&a81M6Kd#_P(Cr9i2ov~D-YQNgmbHaO
z*c{)nntwG{$$Y=iCWr<t9H7~iW&RkRVE~44o0s@4Uu*!T4(?!+c%CoO9DVSmq{9Rt
z1$-`~Xhe>k3qS^3Jn%1D+_;~}MLg2tyL08w0wymVJ^-q?YxI@n9=diCb`>HNH`V6M
zcd1MFBg*6><r(ArZyb?o9Vf)yniI*x;Q!JyD~-Q2X%z+ZV*B3vnuS-%sSXW6(<4=&
z1f)rVbN1?&Oud5hMg#68(x%P_f+i4@6#JgJCpRv%e-dwiL7U7O9UHUbO?F~fKeAYy
z98m`LM|!0-@yo**@RMa+tjqk7OigESB0uE6_^&b6K7LGoLKO<uR)NQ-*DAlH-Vk!g
z@#SIv0zk<Td*$r%4y4u4kV#j1d20@iXM%kpmgA}Cmo($D-sa$&NEo(~c#F@4V8(4B
z=4`_Eghfc(r`U`XR|mVj*pK9mpCB7(xB-*xCx{U6^h3KY=YhtXa+VELGay!btJqS+
z#wz`f1uBZ9LlYjuYKk5R=h-oTv2h|QV{=Swm8^~8!%ePFR+}9CjOJaMs06V<N^)zO
z!NVF+mdnAN#)CShZU*RnOj-q|4r|KR3pNsuhVzAVto|9d)<8(+!P~u<P3{(tIh9K;
zjT3T6M0^F-{gBovU!z{BY*f!{%8=XNS7>-ldB<XdC{R-GwAeW03~>qMYeacwMCRtn
z&fyD!GN32-SCsg17E@DU4@ON)w;9w?2vAm0h`T&gpFkCjG_enH9@@%GCBdGN&T$cS
zZ{$8`vN&f@H@tgc0wC9hsM%2A&&40!VY-sbtPFhlc*M3wbF3I0OQO*PrYxqnupAmp
z#o^Cms}-@)Sm<vpIw)y5`MHMek^OQ+GbzP-RR}<+R}E%1<Zm-BY9|oU<=P2d$^IcQ
zc1e;f=FM$9nEosL?NpB$EpLU^O=1kIN#cq1(L<btv|&q9o45&B6aWvC)F!>n{xRvz
zxUEHq4qQA>Ob<_lnm?<2p*Kmf55=9}aA=O9WD>6mD<c08H>YsvI;JiPB;a+wA`)F+
zN$~3G`M(^g(;k;|u=r1ds?rLmZ+hDCJNQWLM=9#$t%!`ALbGI30d~vABA^7-s}&8U
zGTb(NJiMd{aK?ZNIYyoe@1=D@%%n-XYlK0;$mSljuOfJuxQPUG3*pPaLzJP5G}4^&
z5$88zNb2x`^)Xt0&9UpCpm%bJ-5NwJEnmp)^Rz>M6JG!!>1R?l7tFJ^5uM}gzmc|)
zy#e(GEP;{<YXjvw5>)65Z&0S`C1bp7rV=L1FMR>gKO~%B#73PFslU@@=Ix^*vfM8`
z047EN88|oMQ`s`iE*O3thsHSGYe#PCl=KN^+dpUfltf`%Ws-vMO2-y!tg4tmH4aL1
zg)R=yD^3-84rrsztl#@mw~7gj0^Ni?9uQ5!I}~58mQ?McJe%kM;_%@Pxa620O~vVg
zJ}3<T_!I)dhARPtDL*+xYj7Hv_HGSpm&2FLdzeiWFq!yL+tgeu`Px@)iV}#d1R%H@
zUMA?F7_g8Hpd+N6b0UI#Or56eeVaY36#KPxS^>}@*nxnvlo;|b=h`1HwKfz2WPlU(
zA<h*|Ub`Jok<fmHY_LX!$y<G<o5Ofk6t6ya6qPPl;B%N}e+ipfop_Wt4-<y=PJA!F
z9(Ezt67~}30?*>Siye@8N*fjWOUkG*f}ap4fsnl;IraJ_TLMOLtSkB}Kr-z`i@ygk
zce$z5xX&$N_ca@p^{|JFCjX>g`D`v&NpL3N0qqUzD4zi4uR2<!6rYdo<*gw{%iAZY
zUQYaZj0X65hYqeq>=b3qsWn>Kbf(xlDwdU#=^*k%NM{cDb<r0m;7~h7Xi&<6x%dc7
z?W~BuSl2rf!M*c;qajx6HSN6PI3Bk@eRAUZ2%+ky#0~U=LP@csTBdedHhX*v;0i7g
zKn($|XA>C;D(dHJ^b3~2DSK2Dbe7AZA5mSeavrirAJ<T24IEU@Q7;k#;|;+M#ElGH
zIl+RB0<CAe)tXIjNmhBa5FZcco++TVf0L60>XFe54~0U*`>4U*A!N^#q~V+uL_-p~
zavqZn2Xth!3pJNcPWtNu%tPotvRdB@dDrzhw1F<dRBGtd{b-WeJ*&J${3I(8v50S0
z`X_zbzCjYIU>G!z?bc@&MM;2c3{mreePK#DE?p9a2s!?8p_)|oi>^Y;V9K4W^672P
zp(-RoqQv2dP%NVcXQx@1(Stzll>8?|4$Z46$-!z?xR1KgFmJ`XOrrWybzyU}%(85j
zuJ(7Bf9{FE*pz_#Qit_elD!VkuC7VC5OdjkMVIOg@T&&yHTpC}x}4}i4|4_NA35BV
zII)F%CVfE6jHk5@bY|v%v^dK296{C<Z|DS>7h^n*#@}=&?N!>^=7nMp6H>@_uEj&H
z)9^y-gNzc!W}!Ey@cS)`zadX?9)P|Q3!YyJtwR9{6*5pLJ*Q<cz{U7*jato8LQ29a
zgl$ucjzkT%rCC>rMq)>ZyPL{oO4P8tG#&hTL?oW-6C1V(g?NgBSpT4uR{6IkN$lm5
z6~uZp3OFX<XpDJMQ!kMjyWEoC6kU@JEkcm2ln$eRiF7IfZa9APe1N$B{_nGFq3&Jk
z%A^dD$=K~^JhM09(hdreW3CFkik%WTF4g-eaDtg9&G^XAvufbM`0r%5VrN^YG^C6`
zT9HPYarKM+kmNjssy=WBk0d1MQikO7;SgLXB1E~|I2BWs2?csOBdL)>YPk_0snT5s
zC-6y%YTiq4S}xe22{NGj8}0tl`&R!D&cA3_a}y#2W2kttvpJ=^D0&9#rK4Xha+MI(
zOuq}jzl0F%v<mu(rVZ-&T~;$UYLZ?2Z8+k)*#MgYB_1yVjeK8VypH@|)l_;{m#!0~
z9m!}w?`l8F@u9zTc1{LJEsM0~cFK!|r|y<T()&h3uxJQoZzaSNDJ3!Z&pP<PY4k&p
zX_OuXi5HtdWE#=v&QAE&9#xzVzDD)9uDhK!XS&cEVaF>0r<#+wmQQEUnon7303S;R
zk)6A4V`*o;R|Zl2TfPKZa7IjOg9Tjz+4U~2AN?hY6A+}zpP1gStmnG765dIDE#=#%
zu6<$WzkErsvV16F{8Sq9^58VMVNKR$4MyZa<W0XBG~2e^_E4xxza=6l5I7L}Et*fj
zJ^?=kxo)jmzghed8p-km1&vk7ySh>T2&;8KV>y~rOBlXj-m&!yTY;G+EaN?V58x=Z
z(BeW?*3X3dGQ}g_>r8#xwG&i(#p^V%9#n0F$1Z~eb_DW;tX(Spp(@u19gQ*qPiiMK
z0V==CDt9C)Q~gn}MeBAdihCmxCaOpVDPu;6Mb^JV9M&D_Bo2MxLBl%5>tQ^Yi4$y8
zE;e4Vw#o-B6FIU;X{0oQqA2YMx^p(ES>~7YFay~N+lkc#tHHrG%R<g|+a(k5L#)k1
z;BtdU?8V8t-~~kehkft^Ux6FrepY3b+CWJ1Vs{5L3iOJNS0oI#`#lUFV7=CfznWc8
z?K@M(^@1^Z43QMpxtfVpdWl%0s1(rk^`5P+Qy2;6{KicQfxWDY9Vb-?o>)0QC)o_U
z$$ab!y9TRyo7|yKB@2d=Cxo&9HY^v1niCujLO~LA&Qj;y*&m+-Ef^5_MvI_eV=~n^
zMq}l*L(?6ExiiI!by8MFz9Jc{`=2;`Gjd=hI1&Ch+8DJsY|VUfi+`^_J5)d$sT<Y{
zB|BN4O{p~ti-~esxA=p8r3qYeSp4gH$RK(qYdKnBl#rkib`aT&jsS^2awn<*xn}pX
z*A#0+o|AP1h6`i^E&}n3l1zWX(@z>5c~Q#jY-gX_)CQD=`+6wI%_dtEgPrsWkUJdh
zXvjGeqVVUTg+R&O0>Qy_Ucdo<{YXFtd1Z$N1>ih3=hl@P%`rO6)T%gcBl?Odlxmei
z6~(~Z9-6Sj>BX#`+F1&Fhf#q~>RwIwTm-W?a5um#&IOC77d>h7jkp;XYa2B#gCjKD
z347M<e&{Q+%Q_#r!=8%pvfYNx#6$4S%w3E`zA{JG0#TYOxzm`<v>OP=oJW$+tOS2;
zH^o6hCk?io(`p)CR(p5|!-4$0kHB4v9}uLamTg|ns6$8+I9H*tyLsU^q;6MmAt<qC
zCj(X_vdtFqpTRTZ9AdlRU8>8Ov!T7+91bUPOI3SQwDwobzSwew(g)NjImgazifOi`
zC{=hx${Ju2qP)`i+&&l)4`W;~`ZVLWQY;=;r$7p1UY}s<3%KxO2U;M0+V6Z~fr~16
zo=Lj7qA#SY;o4zF5`+iaDOm;K#BwGP^FEo91ZnEW$(B1}xxr2a6>*>t<oYdWI{HR0
z8p3hwB1ErCe|Is}E$$$!;;jk$mDUQQ+$~jXV(RBeoM1BefR|`xz_yc#p9De}kCu`%
z(Fc2qmZIgfVILO$Trd*-eTg%fdBhKoQD(_0jXQuQE?9c&a@`#U?m`JS*eCokJ_VV$
z%5K>6EDGUc0U?Ypm|@P4a<gZ=kloPN{1^TLLY%8~(wL+*NZ@mx50bYeabS}2vS16T
z0Y!xzyUCDc#LNlfl=Aaj8N2&r{b=~U;?h-&9gT0q&loSmlg9vdnJ9!{Jdr*NJJ3PK
zpas4meBoR!i-M#DLGa`dPzkjuRyq?cCgi;*B2}h6<zbcXvDq+6sRMYk+Y4;y2Z+b&
zIx6!!QeANOC^m_KlTb6sZ?<;<pDKd^2TVi|KA8<=kbc@fOKc-{y&_&XRIW}Ld+2aN
zg;$jjlE6RWHY$PXRyXR^9;tu%jn-kL0a8+g=DNyZz}QgEiu!4dRJkLboRxlzV8&7J
zh%I{jun>Khgd5xuy733qmge^hQ6$vNJ0yGC%Ej@-<ais88g?Cd7(RxoTPi02_zv6-
z{a0+CB973x=xH-?Eo|!uR`UArs(7Pv!C2SAM@3z^n6a>rMe6`14kb)XV7@Yom%tIR
zC&s2#hdl{p(A7FXP(uVmwv1RP9ud225@Qb2#JG3j8&@YEmp-N}>SjC2`<oegDF2Nn
zIc-od)~`_r)>e55l4rd`?CvZl;^NG01WU<rPxy&tCF-Wzz7ri50YEDQYtD?f#?>*t
zhvQ3aT(MLMTZXJeVun<@ibgpd9Uu+>8heBJD242B13DwR+dW}KIr;$z2LW2+X6Fp`
zu<w*D>QiNTq+$=J^opgjlJZ=i5tMXj(4JPVldl5|ECz9C7AV9#;Z~4>;F`jfwoqTV
zC13|zj_2Lo!R5n{I3i#19_weaqd&+5?I@w&Zviqgi@8>B7)~);R8B-(0r=e54kA9E
zLtoMntTGuvEmn?<BGp7m`J>B7#p2y7ch9))Q00>I!Co<e773NqRI$6HVwpX3ylEQ|
z0^nEjr9|rcmOq3Y@unZi@7~NPguw-Pr7UWetb`+|=;Q<8Hq4|fd}Tu`l+7eI*%qGE
zv0SMNcLB>oX)oGTSMefN>#kcsLxWY`8(&|GLk3x*Rq--G-AOpGl0PB|=`M+MCrsBw
zbX3_Yw&JXYz+sP}!Yz25jQuy#n3cXYyIFC;oyZ;Ix72<z25Jno99HjH+Se{kp$KPV
z#%!~-*6Et4C3%t*)UEdSC~c`V&WO-h!XU@%k0fUT{G;(vPRQ~<!g9@!jV_aINQnSP
z6@Fg?Z$ZCdf+`e!qxHs|CVw<3^IcB_je3NTc!O+gCR7C`ybvXMTUm7bE0Ub|rg{=B
z17kYT>(1)_AxdWM61{CAh+6!aRyLd`AVER`Y$*{UFG4Dmh4(S!crI2P5Q&K@5o^d|
z(zoC;3o4l>az!-V5URlOk|rM*7gWpuP4BGh=@GAbw{PRMgUiEMw^zO(ds|VE7eCmc
ztvSIaeNldVG14xu8_xs=BMlD+S)MbQ699uvrC-7WBU8`{zsNlRhL#YJwP8t-LGUW$
z;e2HvSc<i{tw{nsnX^!az-IbHVgw=&GGa+Y^7o~eAa9sWXZJ8h!^}8+n9r_ZnGG`0
zrdy|tpUioU0o`mwA^;nm>b^b5qnklWu)Q|E!xf|xa)#YAHB6);xu?bj6h1aICG=74
z7#+G1WFJD0E3il46KX+_>#iih+C#!^{=rEQhZaUWn0bp0i4|nL+1^}(o#CBOaMG4V
zJK(gFQ;N{R8Ve!uQz`Z16-UPmC{8-`ef|arP&P4+(I=u9!4GjJPb8?0BvOE2dRTsU
z%UPsZ6RP+|+EpxarrEsI)5exrv4g}UlO4jw1qK6LAwO}z=fg+GDh~Go=!nh_1&X(1
zTi+Fii`cAOW^NR7c3@*-H+Sdv#F5J1w?_VTkpX9_xVMf35V&BM5tMFK<BLN?f*H5=
z8H}=TsUcPtc84D&sPC#7Rd&{C1s#ax&H^IfL#9uLb&)|#!G`t()H!t8+MhHpM5S9a
ztUCc2o{qml?h&aH#kz~XaYktPI)`F+F#Za{vuP7;-y!|yx9onfpg^z4=c0S1h!HcC
z)TQa|>>JsZ{#VrZpqZ+W;K%rz5qv%vgyrl)g2v9L7(iI+&7MV&kcohV6Ze2nyx)R$
z5;;fH0JRp9l(G=iZGE%1S=(%Fwl_&ZDa)P!G<o~j^9kwj#K#BjY&z>99$H;eo@OKD
zwoe`vXETJIYag@VNi`4T;kFW$dnI5Eb1T$`t`P^!)s#!SKXR3r2fvI*tkEqkzE~%i
z#@Tk~qsezYcJ)BfwlQKrNC^q;WP$g^Pl^`?7b5cuR+t;neuuY;5;kr~h<QMe&S}3M
z@A7N>3l%WV3!BC0eoL2T_X;;dtFLNj_@}5%v))Ls?_ku(3N@2ALsng1(|loup#kg!
zU$<gW6vRt&)Eb|Vzvc(-f^3VhmeB;JC>T1mP2Yj*Yn*HEPr57Hw~I${YbJ8E29d$W
z4a5{ewWWpPE-;O&mGZ?T$5}!Eh?N8}kQ+t$!^8M%v6uvli98>Z6&07AkEl6IKic0z
z)`^_<0lrBPHT<?^=Adw%2Ad!?f+2QCoGClcuYfVYCi|WO4K6}rafdCE;Q>BKZ@&v8
zpa_iR>z^M_(G)fXDwSUU1mJf48ri<D%?6zP2yrwXo%bf=uXg~H=*;ICHQGT{m_XQ4
zEN$(km=kNCD9~RX9P+&M32F~a<*0j+RetN*3Nn6VKIEGtfy_FmBgFzyWEkrH6sebp
zQjt$elL7l1=_%+ua9xdE9;gqAYFgn*6d(FG=vL$=i3Ki)a#?m|m}$r#kow@lc(2yd
zV4tFVTe^*iBF&~7ZY}Z0ERCG43T$R7hM!G-POilG&`U8~pju0Z<cbSAO52;#n+p>y
zzqkG6I{&GF+pGfhT<FZ7al`ZZvs^wj)fAT9D6AKJgU1dqyO=%d843Y~-V2!FlaW}Q
zJ5btls<XxB+;Q51AnXA)RlZ~4x#~jXLD#aaAo~MC#Ntwz$SX-gGs-b6_-r_+^4Oou
z?jhPF(O34+AaewTv6ah356$WkiqQ)LbYkNGZ)sJN?>J$TD-yfR(d0A$f6yL&D4lQv
zHZPi_@Cet0BT?!)3^tjt*Kv&g>p$BgB@7imQ>Lt2EsnHEE#yGq&l}h1MzrBV{pkTa
z0~)hL@!&->5abWj+os7nHb~?=O(ibE1%sDO1M{l*aU>J{U7-kOG>|ir0^PlR(2MaA
z0<D2o^1@kh@VUw|@p~jzrlQ}W<^}&S=aGeICpb-^XY;3OFom2#C@$dEAci<KtT*X-
zUSYWK6O}4><Crf*MpDf2ne`sqZt}3+&K9w@<0sM0_?IAhib)Yj!bpw|e<}h|XW(2w
z+dTV|5h@5}_Bfu$#pniW%^4iK)F_qBCsC}hOUA&e!>c@#yBt4?SdR{K1VzG}Wxt39
z0ud>7LSzA%NlEQ;v~kMrQ6Sp13hmx`mC>;F-R)3`)D*Ign~*useU#bwR+v=k)_EBq
zHx+!&JDmXDNoE~AG<ey#p6QCHt!=yA4s)J;`8Il{Q3JmP*TX{)^cAwFr3I{X_MLIw
z5~;znC8AumSlGEm7h#35vySUGfD%QvLA1>V%G90)<RBb?Z9(>xq0Zk7aU`n2tZTat
zuSaaH4eW2?Bi4O7zDU<^O9T<+Bg~$GXP80idU%FiJ-bOeIOq#D;JAk{Ak4$`CL@ij
z0tFZ1q`e@dc&HlgifvHZIdI%xMwm5GSndeI2NpO0S|y3>3dv<G5mKST5fjtM9T&0>
zty_=>jtO6?TF5{!{_FffdjQN`C}~1Q^VRB(n3kh<rUnwLq44C{tx$xUgj5uNgwX@G
z1;}E^j6fay!H0ZeLjfEFX_1+<!Mq1!GTL9nBmt8uw2Q#c^m#Hg2$uipWNc~C86?Gs
z*bLzS`F?DARdZdr8yhtJwuQ-VuUk>BBBZKXF5QQ+i1K}u(<8B9&NR~5uL6#nkzWEO
z<7Cw73r8X(EVyi-K+WZ6K6oEo$!;%Q*})w2=mhZ`%w2{k_BT699GUzZ3(>w>a3@6e
zT;~GDF81SDo4CiBfz<8uGt;@G4hr3{@SaXU34>(siM0yga|~0o6Me;G@2f|gnOQ8H
z<c#VScov!op-*PW9WxYWZ>dpG`Kd%^7f8enM!{h~C}azl{Hd}9NbNz0e_7ox4Ucrf
z*pxm^D2O6<>z_ch5pj`h%vm4@@0d<~>3$J*hA&4UNdV|$HOwJd!@@>QLQKyVsol`;
zbYy-5Ih2HnCu8<;@rD#*U@fTFfbt9q6%I*`JGW`Woi}?lX<?Tnph&!W6F~g#QS3S<
z`-SaxURK-&B<I1rzsNoLKzp%TE$+ld!1oXil6&YCOCp|7rvfGwbzWj|Aws+zB9k1u
z76!NWouP5O(dcf$aOT)klhOQVJe$ESw<b1?#p30*0{s3CG+4mR4meLlg4~`oAEYuF
z(C}6TQ#2(KNOQBAgcl+$1P^--sjVFnD4wt(*#u6M?tp@jiA8J-@q3Yzzx$+E03h{K
z7}n0tHaObZ?d*9>7=u0<7kqgyAbZLC#H&<)thc-v6PW~@$Bd)xi89q};TJY{NJP-}
zZ=Awg^gTwXe?|Oz8Qf!(u}ljxmXNIG?}T~vswPugU}M@8ONfVp!OfJHuCpaNNzEXV
zX71v5*rgnalQC3#i2LwB3kvd9t7n#KG5f}O2YrE?$h~}gE5autc_dH(oJH>;H%G<S
zf(~2)-;=#Ema8@e%$$ocpj*~e)1z^CDg~{WXQIL^X=gtPa50*zht9g+IHNX3`HNwK
zK2SJ~(aZ!fZ*gnjgJ81sE@UYyMi?$vxD5y*H~tY9ywX=%10sk*MR8pfpeX6BI1b6B
z)@Kr(Rl5d;49@kO`PLG`2DbfH8GTbe9kCPs546*E@y>fSIyhUQ#oUa2hCeP&7?3H+
z+*CtYjLlArT$0oAy%!JR4R)vkJD_#T{p5*zLqIpX5pi#uM6~cEB}JkyaWU`+oQ(13
zGTsD3$9i5sEcvuKU&YUH%<<+#M0~$Kb>hL57LXhaw`&8cXzun&u*+I!XW>5ZS135p
zZEg4np(g;{L4zq6#y!j%Cbt1<K?4{iVTn@u4o6sGr0kp@b`wV>in?w3{^=%4w*@4^
zqmBcLFbAXhAo>TveHMWc7YxhlPlmM#h@|4xJhT)9oa9Z`zu;kJPFkYmnLJG&Zh(h|
z2ayc3W8pwNOX7De44>}igH?t=#-&Q5CVjOjRdv;)jhZiFuyDPDy$Bs`W4F^f6fwyH
z5U?%GB^+Y{Tb|kB?*xv}nqIa0?SkDx3NDr(llV6^3u08{U894r0#~4L*Yr~=^|*Up
z%?bU1MA6ob_u)U7NH^ll9m*+JRM5KlWg`c2smg+2AvPs`_*5<{BpB7c-d;Q}B)|6{
z#p>{C?FRXi`W%IUct?UN@P)S<w5u$as>w)94!wXkVRmS#hvOi}Wy8dS-!!n80~W<a
ze1*_Q4cKc#-0I;XkY1}PEJqZ%Z(`*O=B^Z-PMFruoq1Fi{?xgms1G@|vPTm&c+?sA
zOcBZU*t1t8Fft>Ck$NshPU9P%78{IXQn2&-?PF=*ZL*r*@xDsL?UU-~x01-*c{G)U
zc+waH6)pu6lCP-Kp^g1N{rfYKdx$2c?=GKkrV|-C7T=WLL7)-2utf#6tkI~5F2kIg
zMPscI0_0;1Z8eshR4{al7Q!c7yCR7sf2vdM%PD~~o*-}FRdV6-;KV!s39LmcNJr`k
zuOUh5Y~?7_1>S3j_A$nW?+dkysl`@NyN=Ni)o&?kLz%U^JK}|D(E&1^emWf^8cH7t
zGE>}3Y|dTq6V!_{$g%az)^`DK@Oxh13^0UYyy(ILIIZ9mJriLWwv}gA<N&+*MRSPc
zNNiGrJ38y3F|Bn6x#gI=r7t?nD0n#yH5FFn9EW6DQ#2o-r(&=#?*vEz_KlupZ(*`1
zn66m|dn6dzbB6b?0WT$tYh^U#(i04tjP#m$0u>OaA&MPoX;P=w-4rCg-G+wO*o@=k
z0!V|m6<;t>Ax#IlSbQFTKq(0O_?0h+G9rG8{ioQf>~5DW;aS}61<AWE92ZP_F2udQ
z%0X|CG^Z?TJk^{mVd1y*R#+I<xVFf)+G01zKCiHwsd>-_q)6f#mZ-vK<U-^NI1VDr
zY8f%*O`2H)SF(~^fn)Gzhz?DLk63A%ENTO((yS_5gDzE=|MBffion~%Sctu$wd0fp
zj_`ywdZ`!0n-M4oR4%*aoNXavtglFf+d^cnV;QVp5O+-s3X>p<q-EiJ7+J^UE<2h7
z$Z43k)qqgH^BDSE{q8tub&V1d^i*^!=Izodb|lg7-U4tD--fRA$TVkOF*0Fbq$Pua
zT+=v_mJkv+)8$6*f-lK!wgfHtgwD~H;!A~uw6<$^C4b#$)YSrRFB>Zdjs)tl6Ey^=
z768PUGyrE{lrbtLPlHs;izXT(R5k<&<V`!mX753*e(w_8AGn@=_Yz(dpp#sU6^0jO
zF0kriq?p1XMWK22Xa8nc)^4L|*<g0Vi#et1IKoRrE0Q-Lfo$|cBF}>13~@$0VY*gS
zO^7E?a@c*=(geb!tD*$${V?Y#HVi`z=DaJA|BC*|Nj96RE7%d~A+v|CCS_>?K)1ow
z^^&yUMO->YdrdHxrn#;qlD9-%)Kr6{)`XFV&dM`LtiCDc<iQM31E>_71;#WiN5pQO
zHLCEC6Ijk7gR9D3#5}UYIfiXkgU|ZGz#f8$N!uY=+1S5owzL`$zCT9PhBUM0YPmvk
zqTw9>0QbcFBFh)QXUXi8w=$R|HrMIwninjL6H}CE6P=`#WJyvfic<}iLyd(S(i#gn
z$9E)!v3Qq+9I|r}W`$*mVuOS=yc309Wu@Qi6o*iWECB0|*t;kqk(wP6A(6mG<m**?
z7r#c+h`f~7uZNrqztfRiIoProBXBD?8yginL-*cyLDyIEfOu;FcuS7h7OnsJ3EMP0
zov~69)Th_yZ(0Aid4l;zZaop4h#@F{jh<*cLUmAF>sfP+E$kS20hNa<;nzy^$jpa~
zz+b#pEBE%rTgs#PVW6C={y;b#_+179?vD-{jdudj9^WXKPdYYi#9b3>$LBRc(QbG1
zg*HBhEC<4iG<Ib%`&>Y}0Z@3?@%3(TNPawiSxBiCry*jO*%A%Mhkf)*aer;quxQ|+
zZz9^*?ZB`tYQEY3Ws&Pb%vd(0U!+NjcqW`<zn|?$kSxgtkMO)^1p@~(0~QdvH;@Ld
z8I!{z3zMh}_KM6RR18lYLF_KF1|#Re{Kxi4Z0?G{7qHL)JKU!j2av}RfSP=$3>~cr
z5(X>OfZhb%iVHWUGC(trW9r(9TI5!`TQu(u{zsCMXGAZ@G3U};tB`ty>kghbyH@N@
zufg4D8Eg3Z!wBbQLgHkSO#;HIR*{w-qt5fB+PTtAF}pcD%&C4%AI!>lW9)HERje0W
zlys+&Pln%&$duKn#WJIeq6EO9_B5v{kL%?W{1N(Gy$3n17PFZZI4s$}#Llxz%1w<%
z)n<__Csi3RLuAIHTRZSQn8y_C(e)S5l@PrVhBkDG2&kHLO2j&Q`P~NtPghfd3PZ+W
zDOKiXkeTKi(`rYMi)A1)fD$^own>#oOaKT9C&ZyX&_z)*c}E7HwJIKf)L-Z7vc>6h
zC*T=$8S7(()Sm%Z4_6G-x-ZpdL|3)m3~69{B?fG`WPcCzH2NvB+lx)@bc)LoOAnW5
z{n5xFoqS!&a@Y5Q_|MrX*facd8zZBT2=+94Qu*vwFq2&mOM(FwF_Uf7$X7HPz%o{1
z^#FIs+m5ts!95t6mP~{IPlGswkk29MK69*S&Z!{^X>z@;$f&fFA#4nVbN~X<taZ=Y
z&5hG`gFYH3-HmR$y5am>+&kfk)-NYu>1vu}8^yJ2;}XXFyO%(ks36DURzHh6k?17;
z0)!Hb97t~m=N;?6`yj_yTaq`w()mu(AthzYax0!0hyJQNszMDO=&KO>d4i3CJJKhN
z9tSUyQh_1{`HkcRc7~`5>sUkxtKy-e`;@CWAKgMa>g8dve)=V8aBO{bpuT<Kf)f&A
zmmg9TXh)?eRNy3$jU($FOY!6A8o);0LUCuT4;RYP@Wt#P<Aa>-JRuMUCQx<2lvXt=
z4@&kkSC*|GfG#DH=fi)p3ivs~E9w)%;LMH#Ts))ztvg+{@=^x7jRWcRWjJ5KP6IIU
zKnH{|VVn`^WSPq;!y^Bh<#$L^w5k3cf}4Efzci3Bvx34|4$%=N8u(So*RY<MwI-Z-
z36v1lvb64uWQRHtny`)MOJO#^mqAG4hl<11rJH1ZJOfZK$ydvQdBkVXdk{CpPMm-Q
z5#YIi&&n`@buYvfU63QHvY8b?0k^4<(aFG5u@d(*d0}{5fSgRUx`GkPmH**9>VpqF
zvNygb(~F$-7v?EyR0uXksJlkb@Zcq7LqrRRF)Z$%s4L)Pql|b9ftvVIfJ~+h6dns4
zM{!8>SI5NZX@UxA=i9q-3jrxakWn-igi%*!15glw-9pjnLTZ0#WjGzR)Fnn7RNi&w
zJK;>!TdIA#9XT|31T%@Mph??mT8~(wnIgg%v=J^46Un;sp4ccsQK7K=<bgVHI)qA;
zqe`_;{)y&bs#Hxv+(dDB{%>fy*WL)b^No#8{0O{?AkTA7`D=03^fPb}EXG4Bppq{n
z{o}MLNC-AZFz$z!K`(@lS0jNrAm<K%ggyZ2JunAXW)x(!9k0X5d;;Zek`b7H!y2I-
zVUZ%k8@k#YL=AJLgjYn7YD$Ng_G=C7$q%5+J^KZy^IcN<C40C7QX$-feMt<^<%kD;
zk0^CsloAYd16~yn+GmiPaO_RRfNxGY`=dJB2xJu`AK>9>?>fBHjvJ_sQh(6Z+;^f=
zK~<NILwItyH_-(0x@o`&vIRJtkF}!ixfFfUC!SKIi7X21uqU2l!%&l0f`+8s6-=$A
zvgqdztk=Fw<=zOy84J`GR&FS6f6rKb&aBVl``H8oj^Gb%b1EDNY8)NmEbv(P-K|fq
zai9wx+tqf0G+)?uY$As6wi@MN%9&|{93bYFN_~DxH+be<NS^O}SlXv>8IpuU(D!nD
zqZ4&Jeg-BU6KBFwr)lsrS?RLsaK;rV166#?S9c=}Z#g-I36f|yHa_wg2sg;uvRGD&
zK8{;xH@)^ERP}=pg)fgr*O)Rc!^?p?5+rUGgro&y5r-Iib+kN&EhShs^mFHIbdmqb
z^K}6I6YZs7uE5op4}NCipS~BUf%}rWlB}-ue2GE_J&+wJJcb=*=q-3BiQg6ARd0`z
zz=DldV{aMuCo=$JMO*n)1Ca=3$3=0<_iFW`9-TMBSoBgxi@>FYW1)H-EM>MjrX4oJ
z_<Nd1W&`08R9Mzpc@iLBRx7|<*}mXY7&|q*kFr)z20{V|Bzi3xIC!qxWZE<x*cXIp
z(2g1>>I0oYw@bywV*yh67fP|lHLbMHJG@os(HfRVZ*B}Vspd1GAIF4vMNZdx@=<v|
z*Vs_K7SE*))AiroMb>GOt1HL_08Cubk_}r)AED6g96MFuZmv|0p*BNv{J2sctIF$i
zVCe<KL9+xTYNp5DQDV!Ykxo&SER_-#FfD}~#g~zA%zE<Siv&MsVi^AfFALQr=X;=E
zGr&TxdNUkjMafGy=)({h;GWdGu<w+~aZ3WU6Joj-4i*X8kL-4>uMaRNPvE2Kfh?NM
zyI>Jx8W|va_N3#XNVZ;*=77o|DLqZ=0TSO>eaA~RBf#w(-dyP>;`bPaevA>Q(5m1L
zAN^bzqVWkVD!aw`r^&d$+i29qsyU_-n`PFX4!0;LoNqDLqj~%<$jLz0U5rSM;v=Dl
zaxkL-fFKglN^efTI^a8BzT>kz5pCv)lc~rx9fXi<?-YR6YbwJlUyPmr_zBl2Il&Lw
zMz*VX37C{A1*Zw(j^x+k*k-%Lj>6tF^Rt^=$$kYfLc27fyXHS3Mi3N_Q~z?`OBm!^
zr-}W8peU~y+~COMDzB-XSD%tA;2hI9416UZ8YH%y*E-dY-jD{P9YYfju4{Ej_APV$
zL?IJLW0*e<o;5x#J&{Awjfb2RY<c_LaAMA$g^-|Rm;syX2L9$zD?DTEkMC7wN*VJc
z=Zd5JivAujf0Jv#-I3bhLxs=P#yDDmSEJ);jwa&|w^h+)nsC!DZ)6Jf9n-2@Vn5i%
zY>5S^#OL@?GJecHIi#|6msX|-aD7Qq<a5p_lq)SX<PoVuIg%WGsoBtgrMz!U|DKK>
z;r3c?bg=Vf@)X+!A&wg52!K_ks*rdg`5y4kniwD!$JVYipd*A+xvf4;^!BO*z?*ot
z<Rx)_K34i8WP1JhCBZ$XNK_=qa)%&}>7^)$SZ{Fuld9!Qq0pTXq7r%&k1kQc>oPa|
zR2`8RL5>Dmbg^^+YvzQI4A4fGqF4^N{O9s<LSHNMQ3f-cgk)58FLuTWgR;2qJAvpi
zx=m!AXgmVkgWJK3s-)Ik{r+K&n`h9{PpscslXLY=P{(LQDM5kqkf3=Z9JtB61zaC7
zFTKfGUaT}9dn!~Q^`C&6)y<U*B5rMtG<uddew1`l<ve8{$#MgZ^GeD$`mE$2H@@^>
z)3;Ai-5&WT9z0kZB&m$qpC1(~D}O<VZuiwMAS*=2k)t%2O;A3{@)vFxMKQ$D;2-3}
z;{V&)jXC#Amv2k10FFHqJ-dED7!}oYvc;&?JDxnr#72{Q&1u`o;z;z(1-Q%yWYNnD
z!h9&t7XAZPfkZL0+);Y`_`41g{txHwdaQCJFW4=&y!;Vh2${L%&&*U|hqS69)5eIv
zKvfWzy+=7-SPS3$XM2y3w|b1o?ENYHrQcB$EIO{!7Tl5g#{YGAPL0Ts_#QVq=bPOM
z?3Fk}HsU>PDU9CrJx*N<cyu&BPw4!u2jE{J-!c3tO5!(C7rG7lfg}g~t(n|<*>ZeJ
z?1RI5mOqdb6X8jYpG(=KG?>h>Uai~ymCklm%{z$(1?_}S)rHLx{5JoZ&-I{fQr=Q-
za%Y~h2=VX*eM$o1d*wzdPW7vf1+b~YgqAzwvU51ZJ5dl*Y47AEf_27wyHp_!iiwc&
z!!<@v%w+w;?;+lgSpaA)E5tQP_yrQlrn2kV>I7pvg+>X?B^fl9QrqNh@5<ta>O>4i
z<`~)yo#zUBj)r0kP||enAJbwO?0jAgmG1!`yFlW>LAIhi)LVd?$lq#(R*W6G*mdhI
zW8JQ|F6dYREf75YEs~O8!m1yup}}W}ZJ_&Zv`_S}uu5o`q9nn;+TW>^G@Sag8sh%d
z9=T8XNY<@E5Z|MMlMLHh#tuxmnYcd`IbG{c+T}}HXAsk}QD}#vBif9HxR-v*KRq9e
zUGO=p>AlDc0hwv5*DIvq8nBU~rB4Cc(W4dirNISa^0ietV&jg<A0A>&=JSynh_Ue4
zQ|Z-AG<ps`2i<B9Gjr`rQLpA-R~#o@0AO4Gd4lHyluLCaJ4e3&=K;e_Z<_oh`!juS
zu-xWmMW{?Vy^x`GDOa^qvbV*Yq+ec;95VoKWOO_R=NF8Ij2S5`jGOez^m(1t2o4Z_
zuw{VD8<(YTa>zNw%1kH#M750?OlI7o7^Hqsj?KaJdkQeBJmPd5t<{KFO=IMY+<nA)
z>4t8-!dbLU*dq~!M&b+|XukY-=1G31sN&5Qh3>g5bJ8a#!Y2;(Jp;fp7@-_k3oI$_
zXo~6CP9nN#c13L|2-pyKvRLJh3U}F<m=nyE^CzVb`XtIXBoqjq9Hc+okcG)U;Fjd+
z3J~|G*-DWcNd?Stj)L~E9R>0Rc@O*^>pN>eB$OA0X8tDr3(FJLPn^hvKn&CUWWIWs
z1#LW{umQhvAO~4{cwfO&Ck$~khI-!1fxPv;{8;dv+Rgk!KgJyWhkuMA@elqOwt3Q{
z@z<CNUbif`pY##izz9Vuq&DMLFwJZZW{aw0fL-7^im>J`=6PYwE`BoAnz`^0g*@0*
z(zS!xJbF2#^WYnu=T9ie6z9Yqz}ms45!-;XcAeKnofC;CtDJ&qsgGNy#@H3VV5npE
zDYCTqQ%EoTpaLh(igs}se}y~&5dM<L#ANoExc)``7G@dlWMxQ&M>GXvxHhI}xg<<^
zD_BzvWw7Ri$%~N*u<Q|xl$GXC0MW1@l9l64Wg!zDU@_sD!Zr#EF(B*ymt>A2Vd|Ks
z@%{naDu#^_wuc3Bx+0J<Hsi`WxB*HfM;y4JyL{5Q7knSNLSot!_yr7Kf^rFT$YF8R
z92{f?RBGQjC)r>!TPfkkl9sUbjFx6jhTDMmQHN4<`tV9X*}xQ6-;r6$RCK=!fQaS&
zf@a|KJSB_(I)n5p1+hKh<bU_?&#+XWSjWa_GbS#=R;6qq+XBPk<PPvW?PKaT(JYk)
zedYL|>+U83M93$2VdEJgKFijq>MeG7pI@_l(+H~ck{Hf_;bcnzZG;TYn2SgMK<<Q|
z0*YFZz%D`-pUsNXO&(p?Xnq>FYC=IilU;+<#m2&}-^Z@wAjtOzWJlKW{bxd>BPy8q
zGcv8w*Mc{hsCIylUkagO1<<=}Xi5sNMr>GDY)<w#r}_lP^t9dY*04Q<$dR{+w|df(
z@w}@NU91+XYw+t9g6>#<gqvC-c{NfY)g4dF#-;9<K-ibflT8KXm&gpsXPVAHU@%eF
zQAMi7N^P%8z7=)it<TW_HJX!R4{Jzf0v(-Sdcos>qhI=G#4X~?bHs4}>g?xY)ACz7
zngVlu5g$i!FgQ%QEqjQgHi18o5d}fwoLj~4+03tg2j4LM$s1onc?D$f`VU1EjNS6a
zm!fm1I1ih_aP(20%82t!FPf}9<&VhWmy7Chne{Qny}SrjH_OrFSK9{HOu4oU!Z9jG
zX(Ycuq`1)=Ud2WO0)9A<gj|CDl+Z?E?Xy?iuemArO7A2!tIMcJLp~oK9<`&-tWO15
z`%gdHzm-E_R~^YQ7+W@pvh}buZ*l};FrLh(A{5TivrN;06TJffDoIFxWVj{MNc#5$
z8Gz`c;Ape23(-Q^42~+EFN8iKbSl6bvguhMzi(caN7<X;j$8gC?<Ws&3=Z`q=^<f(
zRAJ{wgfeD#U@9S`v}zXVL9aldHqM_HAaSJV^UK{GLAmNgY27mw%94E)d7M<v26TQ5
zpE{#(^+~=0T$S?t6c#|asZl`^U?L{NF#{I4%^wY>)e)o<h2qu_Q&##}``8+Cv}xm(
zRgRA<_46(_Xqi7slU;(%r?sqlN~ijImG&cCep){{C4aVd)CaG^VbUF`p_Hh(7GO|b
zFCzh|kfBOf3SVW3S>@v<P|M>XF)51G10f;WZGgb>f~t{|WLZTC4t!0N*@IawMu?H;
z6{M&Y9q`1UL7BVM+!EpTTw`O^HhW9#;g;<`QnxC0ZIRc*0-A7FQZKWK8A2)vty%qU
zmYTwwKZM2`L`Bg)K>#ES$G}w7X8<oGLa^dO9Y^kz&Xra~aECj>ldXMV$}!oJ1WE<E
zj2{Lvq=;`jJtqqoPx_EPT$BxK&!X}SAq(Hr^MX2TOw{>E+2bDOtK6_IXuW-OfXRd9
z=o)*%N3w!yBWWYnNX`J&g5J@o;rAfl>KaL9#AR4BIQwj=iGyqor27KkKtcw^BqZRX
zbmOP*DU2d4zxJt;qF;VWI)w!8+O>4tR$zbaQ%-^+TWg=<r^&`x`xH_%<rdv2f4;Qh
z{FB+FdOf@Xyio*01a*M8c!~Gf&xu@v<_tbm%t0?Hc@3(JToN@x2ttAr$Tvq2rlbkn
z(p8?_)K&x+!U+1t&!8G!DF>R~ec^I+rL<l`7PsM9UUBj}CXK_D)Ik@O3IgIj5~f4p
z>M3xv5^N>>QYA<YYB&jB@^&0GUt!}>N`4^Wf@AY%{C8ze#$ov*0r>}#E&!iSs5z(@
zFU2#_%i=l0h@H$_1~z`Ah1z9%GgDXtjNM?ikRG|GT9oe7boQ`7e)>g#zYzcS#iw|J
zN`iwYD7R>@zZyduQQrlTxE|4jhlGaF?X^AdgUY{<lem2<_9e;CmFPl;r}@t*Ze_^|
ziL(cbMrPf@Vj7I+v4DzGWDTwQC$(PlqLFQlC3iXET^7oBDdaS?t%ABQ>kyoDtIl2|
z4$DWm+!ExLLQwvCEn5jMP$WG0gc-$pi~I!$yK=kb_dD29&HklKF#jL#zl(>?t*@rz
z9U-jjvfiMhL=#SPUPJ(CNUZKj5yRcfYj!nbOb>zlk{nk<TCo#3x~2gEqo~^OTOepc
zb{OW(opxYTAR&5!3+`kTVG?DfutPXkEVP$?wWEtDa3b-Euo*Bcc>leO!r%p(uMfZ*
zEP#ux=<@q;9kC=-AX2B^+}ugF@jeiHQDRQYKY=Gw8#vO8Oif8XWcNr=vHfI-;AdhC
zlz$YDM+6-yJf$&OSdFt&<j~OPV9qj<G2}GWKHD{`kczBCHAxpo@Mpd-68ZBndXuH8
zoSbSE;D6Pv6?HC9Co^l_14An<@s+Q@>eaoy6$ayW4tx^QZMRs^JlN8vJ;lT?P;OU*
zz#<GeUL<rlX27cQ_w8T)bQh|Rol+<w*ed|O8zU$PWHHdSL0)t?vxs9X@=sz;5<3cR
z2&q6kLe2>>Ry%U?7L3q<b?1=OzM*d|+O8x!d8&?4X<OD)t#?X0!N{7mPcoXtu7?yn
z0h?n1os;Ety`o6_j2=5v9wT!f^QC*5)h@6(M%1w(dMQoV%uvTYO~<D5+sFxn<*o}}
z@5rUYfrjmlR~&6%VUYto&lYRW3xZZrmHdhCqMsI~DC`vkl5!I$>XaC#hjy?u5ps;u
zis(;1b(y5{R<gi7o~Mey-uf{BGp8+*I9bhy<AvH4`gfYIAm5>4Om4cI%~crGHX39*
zI|B!uZyZwPM;49!PQ+mZ>_n8-g)J0I%iBsM1)?ZqQ#zh=D+u)d@jl*ac6`*}m~2+R
z{94opK{jEg(DSR{2e~kq=sg%HVemNvDuaA(j<8j%_?0drcuP3kaeIeAgKb*RM_i(s
z2oX@}o3bBBs2n~a%g4glR!}4c7s(F-k&wi9#JA46)?SSI3tb_N%hK(UwvqLqfVf-P
z>JbRU&sGYJ_0lNL4NG2B^`YTdnK4oCTM-_2Z&#q(B^kO)54ar+Q)1Ai&x!E~n`zNg
zBH2S`2=hu5R^EYeam(UIdO1H2IuKADY-hxj5$Rq%!C6bf@yDFRBU#;e)U14IYTus5
zJxlolD(cs>vsU}EQ9Gg&DDg9zvz_BKws~hV32l5ItX2yW{G-fTkn8#FbK)7Om?MTJ
z$AEy@NwdB2MH!3I$Ye*5brvj9sY2b*gJEQ}@xpJMsV&@fa)adJ9+AL-%E8FyDe4`{
ziiyQ!&A^MgCZ1lWkw}r3r5M->qV*y1Mr0Hu<QCVrm~bAVED+uPfqnw;2gEwXZ3F?g
z`t+&YYPJvSjg3ArBMpjG-2-0Q-rRb>NqWoXyWd#LpX`(Etxd}E>=T<L61~uRY%d5e
zRtU=+uLory$QtLmEI~SgUg(CmUc4hzAHAY4Nx?cGMokh0d0UUu7pj_TKG0d%y^RE5
zagLHrq621}!5Sih-1!j}`gVGxY@4{07_KEGg(1;FZ;<}sfD>cA^`OOXl%qA->ZgC^
zS|!Sn^)okPI2Q3_o!;l*gX@M+5{SZQ3N2$;VC;=TDG@h<2P!TXK`cTNK1YZ@Q4I*6
zD)2EW+?pWLE0JFvW{Uu_nY#rT99<W!HzGRnw7YjMZ3$ul7&?{SPd&dzLYE3nDh+`E
zRhF_fUNfs;hNzQkfmy-OT=tHA%NhVk|DCvMp8Z0f-+E6<{5>yLthB;&{K}OrQ_ZXk
z_QbOshUG4pKraL;!?y&1Nd+o@%S_C3h$RhR<JYB$)9oF!Y<>j1T;&j+e}^`JkWwUh
ziw2bMu<y)J#nf?v?YluS>i^!G3rFKrSZ)cn7<-idTU6-+TgL(<9!1q0g`KYW4!p-v
zGDM*sMIKiYmmw+B(ctTZE3-lQ_0eu+SEwuo$}+YK^H7n!D)dhii3N=*lPh(D2qflD
zDv!C~gOYq8vkM!PC@`yBSXORdWy9aDexsJz@AzO`=mCx{PcMn>y(Y#STmtT9<&dSm
z6sN0+z&5}`CBTy)caO+_Wv`MfNlFEzFZl$&UB6&9=$J+h*IMeZNK`<RW-KQXwxUbP
z5ZcNrFa;4bC0e6|Ct;#tUpZt>q*zkF(^3Aw1eJW83TU<DiIe@@60%b;(pDY+7S0pt
z5~`lS<c_goITeMET8O4!6+Mu{r2;zLj6?zwZkgh63o;}LAOH7mVF`SFJZIN+uO1pj
ze$h||;YsXF^pxB`P?_b6oumd|WT=38$v1tNkj9CY(@Y+ap%0}P9G5O&bB;(WU_sne
z@7Pi=gz3yyW3f48iCw^5;5i3Jwt@viNR{lVBN7EDL`RySbROL<FW6=QKv5E1wYZ<m
z(l{BMc0g|{xJq2HwNF*$WT=K;bSGrJBl>3oYVnN$>g-tbM09}3hrBf}V|{aQvSJ=j
zI<R7aJt_#$A>!BRt>7%o*p<>}q<AffI!q8vBY86W>K0BKnqi;dvgTG+s%%uv^{xxT
zReNz#(YZJ;TD67JFX<|&YeRty@gZbo$Z9&JEWx5qio!Y7rT0}D2?}Ly2H{T`iHbwv
zx~>3I@|e3|HCq`JM#`NUBs(ZxHXEnI2kMHq<~O9{Bg9I-Ih-lgke`q)fSff+PuU3$
zdalDEl$G%L4b;x8b5YJEP8%)IVo3p?MgvzQr5=PS*+J0Z3KS$c!s0?txW?2oK;?xr
zi|}|dA>`$#P=9!XmNddN?=`TA1q{cTS`E42*Q|XzHrY=?F-Xezdc^LPhBJqUSz+oc
zhlp_!lF+>}v}GMaD3wnr#veg`5y09(S+Yo7bF2Y=uJiAVPw7=51mNaY(}N9waZRo%
z-hAV*5gtscEuK%eLMLz9Z@c0|Y*=TbI`mp-8NS%hu+PG0{=}we;`u4rUx|#{P-pF0
zo(3iedPX-cdA+iv*z5@`*U6P8Z!${oG|33~(2?hv%raDo&ziG|;+DQ_CT>;cSY03$
zJL7CKKOjFtCm!^!w9Mfno++Ffap=uajg7B`{;>yd=|TNmo=Wl~^lV=&>}_Fk-|@t&
z)yoiz1QZ5ctxN<ka4BoH=J;&X=lMUe5^#}Vx0hx_>?_s$Nm|HNo@j08c#0~=SO3mi
zC>ZI@eZXblWg<*MWBg}ggU1HHtZy_cp9BzuFSrGMWrONNhSWjP*26cXU1Fwi8$4AT
zEM~O6<H-m)OehZC@@^)(-N#Y!BhZFep~?M;>XL^BwSwBs9$JdXJ8NnX()Rs4WZj0l
zF)E)3=RGJtxWmG;qB2OLrZdis4@=R0L3ww!EQlnFR6BwWBjNxQ5+_9Mp6UaT<%iAe
zIq>3>WQkQP5_+cEDk&(Zl5i<*D8!{ng&Wg?lef$+iQ&l{02jsd9GzC0OiALo!x)Gh
zK0-nuh;C_lW<e{0wJ4kAH>#osW??z30YG2D0hk9LRF&tA5K#!R>z@6l$l7G+<zVc;
zGA>i(WJPnT>-CQ@C?BJ+5R{<(I-|MtJE9HIT0>N^js4<7ri4^Co3F65UePD?|H9fS
zRE#9$+OLp=<dq=YaLUa@;@naH8co9<`*3;#ZB*Gt+~ctS=)NcO5y2lyXeIAx;sqRa
ziM;g?L-KRJhUH7Uc}!3N!f+K_-~Wd7xp>0z^rEbgVQdC=PqXSm?IZ(<mf7gbU&_3~
zZbd@Ln4)_^`O(;fFwQ5RnF^Blg!s?V|KO_uJ;*hBgh{#ZsF0;td}i#kMjh&*&Cc;=
z>6-KP4z)>mc}U_pl*Ct8$rCjJa)WSLEOS21BBwr^19URUzt0SlI+GgW2e{yrSHAd|
z;1C&qAcZ5Beag7HD^XM`z@Q!;L=y8c@22o62z#=Kv@&)8rY68$r1U>}hnWqdQ+e2|
z>CuR0lm*$iA*mQ;Ko~NLWeD6=T7h$x1@0BhUcDs~#>pCm!jSGIACmt_W0BdBP!C~C
zY_-C$jW&g7+KMVw00Sj-Mq`RFw&DwEGzH-F#j+x(odKc8iZ~x?y?WJ4ER{8<AY`>u
zP26iq&;P>Z@ah3J{o%WV{FAI*&X~?B9nzv<VK`jfLGBLu+6^wlT#HX+kh-C+tHhs9
z@-d$=B|Ng-=>d@m{CH284xm{PV>5r#SuHY>O1<`!%t6XIo;R$5SZz!f3N_gy+*U0!
zl25c(A_k+U${KPN24&#mWl)AAzaFWp&g43hPdS%XB7+i=MUPNa$OAAEk_wjIz;?3&
z8!x{uQI>EQ_<0FblNE~y6$}Q40Cr4evq=pEpRwtKX{$;(#D3Q{Io1?qoo35Bk?GoT
z2?rs>!r68lzRxx&Jq8|UYEaMv${PWlXhIn(#x!Nd_2&e{gP%wggS-&CDar*?$y>fu
z@+hLM!$v&W(NUYZWEZ{6SpyEV^2Ya+$6<%ORXIb~PzqegcRv1CmDG@>P$xsdYaxR0
zSZx9N^aoH8jR4TFxXv<_weg28q%|T%oBs_L9|9k8EdLuf*w*3r1Mfrv15kL4a+(pu
zTtFFKS+BHyKCsQF)zy{N1~~tlX4Qy%lHHq!B&)xcM=s9PTGxzXWcqfHDk{yya3;gT
z&n@fB5!Id{4VQ)?R2DoftrCj_zvQqR?fMVp<9qsGvR(cDLraknNK{I%)#7#LIU5iI
z-z+Ska0T!Yb~5%{wjRU>ScmFv-6(GnKw!LdOBYty$dExYy#biDr~b|M)ZuxhTW@Gn
z@ls@1{oc0}&2Y%Za1=nH5U2pdoD{CTkRI&JKX9F;)fSpdX|gKlaCzY5b!{^y90kO&
zGOL3VP$(;E8bRS^vn7@5lZ~TMh1^?7h5t|6y)4IZZE1pjm1s+|Q#xh}9#OnVnswkp
z5F~B~0g$35Z9xDcA%Xx37m?sQ)kBo^AV)pyNzck^kk*47mDRkze{bI&9snsa&8n@k
zj)({k_wD<#F8})1TEUp-Iy^(^k7vjh#Wyt{!w_(!;TrVl@*N`hXXBmm6DHH=S$jpq
zMq6(n0h3d0ZU&1Vi8R21UCS-RQTm#SOrzEqy6Mdpv#CWRnX^_9`#SU<WDZlqz(V~J
zdyzdjKvonyL@n#Q#*7h`2IBd(W6ShHp;*3nQ>^EW8-yEJ0W&huUDGias4{zE{4ekN
zY{8~^kRFj86#qFOgm?1;eGf6Y37<J$g3VRj16`dgmsDIPd$ATeN#-X%#ShqH?;L4M
zc6o)!Bj{L-^wPKK<2cNUF1)GcD7!If1^|ql`1BS4+5D$?aam|?qZ!~z{2)JL`{L^I
z!wkE~>8;$eG>zoM?FnTe^DAXqE|wC;%G+37Uw+DwyGANWEx{Hycfz=pdfsJ;3b?(I
zy4pQ?1#~G#J`-|yRU_`}u$>c@TDt|yiyxgiDQvo@CLVuaQcFeax(Z$0ot^xiybb<e
zh6DjZheLV-M9Uvl>0od4e9bqSAd0joPxQZ}hB28flWKkGsr!$+ebNSP7ya<R>_Nbg
zQpi{J#EqkCK3zAtp&21XtnTk_<JzWF^7kdPv2P?bthrwdr(z6Z#5m)QtrTQ2hd;S#
zu`)7qO!6eto)*Se>|T%?+V|({`T#mnQeKcCv*ce5ETr73)UoB&#J1(|ww8!KPP+Ap
zCIo}yssanGu{C`e{BS^PSttaj$5%;4<)WspeF2~;3L}02l9ph=IhXDzfBVJJzn7%p
zIFGZ4e>rEwSG}xe#&rfx<<0hjF`+rW#7f|DRh)-s`1|hXLz{Ar)zye<p5!!Ct6gQ1
zcAJg?$~>n?g*->g8`~c8{ND2nE~hf-eMCu2qw4%Cz4Rz9DX4X{Qp-@rP!Ef5cBQU%
ztU)#D`8JZnHpc5KtHohQ_e@^Q(M*j0=u=L!iv+DL^;IFlNIxhv8varz?^`^gw|XR0
zlYpXCNxUe9V!9`Hd%O%;3h@KL|H0TLzHT7EW1Pdp?M}`<=IYzesL%^RXWOEb9Y)HH
z>xTeT`h2whn@qT!30`-nU<H&FAj)23x25{|l5FdaZq%<Ek>xDdK+Alc)}^$O^dH5h
zes%q3T-iDeQJ^0~I9}B~n?AS+Il4&K9!p~~aNJ(a-ePsufcc_G=N^GG_O@S)HiTyj
zxMI-)ubuyyv!7^09fRB;N?~#u33onPS=NW`bulXBj0UHf5#8csje<F66`58jk#~30
z(_ngwiwlP8O<4gMP~h>^`x$0shsT=;@7v3O!rnNsXD*_rPUP%{YWjq+Ckg&WyR<)Z
ze}=qpA5-e!tQ=^`6TN^}B`+K;Urv$mo7iX2Gm(0eL6Hf2cTTHkgro;1`M9#_{ycX+
z)Y|&S-e_%idtd*G3P|d?VZRi-XI?3zZV0aocS|t#>>QOz3#=18?@l`SE{VYIxI(9&
z%t{l!?d(@QhnOJ+7(amVfb{))<o^WLl&LAsP^rXZ2faCq>3DGVKJQ;llikf8vCky+
z6PnK5%bUA9ma}65^RJ)^z)U~y7MUhXWsIq6-q%;3yx-!fNi?dO(-Kac?a8GYmgaA0
zd3XAr6NoY5-WO-{wt-AO@7s8Gr7hyR@|2^cvwrC_$!w<WurkCiwtw|vj=xwn=4+Ah
ziJ2tQa5?UzMHpR2(^BEAZU6o&`)%*IR<F~R4G#r<VeE8nPV0RM|NYg??Ggu6NLwD(
z*@vDtkxSUuK)vJbE$qqFv96BwcS+oM&rck0Vb8$Y`Uhfot<Bya{RXXVpP^k~j$kD&
zuLfJqEhFD<PLKaH8q?WKo3GR2H<wbYDxe5&mv(RRmAFKaf{cJ#bVa>+(sFYQIJxd0
z5PAQb!V8m(uRc|gUtapgdSHbo+q>ORcus&}3ud0i^+f<=yB}5$^Ff<V!gXtRwtBz+
z(a)lRd%KF-*3qZJ=9cPgqOIu|S69EpgX=9F!ley7k&>$0-z3!qe%;w!olfB#?OD;x
zzY3XjZ<p~gFw;(nNA+&-Tho1gan$Yg@&4NUD>ll;#LRAtr~97Ip8Oe35TUHX!t3s&
zne#NUP#xCV*SCldxu3ws$#kzQYTQa{eLVf={$zJ`rCmip>;*2*EpjxrHzynG<ClsK
zZ+MqH5p(}X!JqB@JvLO`DBbl2vb_DWY_$v^y@)naN3!0eY&vz3ACA^uOvYhr>ks&`
zJy(?t+2;9+@`D68=I_H_o4>hrnjEB82rneiV6Vx;{5nXeB+8Yey8heh-unD^EYZo6
z-E{#76FJ!`6?e-787&fHgh8)=+F6Sga2bdr7c%7c!4{inP-DkpznoE@vw_!__eLwP
zwkDgLkMGo19cC$&p8_DaH<u^Vy|HcZvg=}%ls2MhGQMxulyL{C+|VMh{=r{a-}#m9
zyNZS?_fh(FZ)?1yQ0?rx`;2-jRV&7hQ#-@sXxi)Z?h4V(joInS&FSoYDd~_q@n{0U
z+g)SCoUW>8`GTRgzro1a+u7e6i>^MdbLuw~)>iFLkqddvFV<K041Fx^WPfXAy*;kk
zETcVwyd3fT*j}DIootM|6OxO6N^Jy~y~<>tqEy}XXR(mYaGLGd@$%D2w;@v`Wb)f&
zbG*5#7g)R0XS>VhrvqR)jP0B3oJ*vxad&oZpVq|THc5_dFqhr$D6Ngj%B$(-`rgxi
zv)i}MwXkBhqkpFNmxO4qyV-90AQ1ylWRz(Q`%ZpOVYhng)DkPzSjLGgwRP&AOW69U
z%)(2OrLeKP@qpEqcDE-h;jsG%y6!k{pN@BDibHkG;@*;yBE{~pWyWI1y_!e@O5W1`
z>uzepEGvf4os1$Im)7^5Y_tuX=s`+65>Vq7CaXUc=>b)NXO6~mb0LeyVV|m%aB@7}
zj>6ZyhGdPu+a}g&_h!`m8%A-rCjHC%v6H$yUQ%7BfWc|=LTuqFE=@K%<&liC=}tWw
zwv)3l*(-0PrNBJRzIsP%ir2UOlmJ6lYurBHelq@TeRFBD^s<<x0e{@qhFfjgF_k(i
zD{e_YoXZa~g6sL}ZM;QOGBnMvVjYHS`!g;;)Cr}wVghQ0YEgGuW>*h;P#si9i@wvy
z#RH)i0=+dPN<A62$IixRKKDuqepAJBn824j!EhtL_#I{OrSFKYU!ak%FK))W$A^au
zacac^CvCv{NO~zYW`%|tmz{*3g#Flo_O285Aeeh+kySX)Hkn6Lbj$+tToGUnk<7*8
zWZpH|EUk<PW+j$zRt+q6a8kAyWZbS*7{q~@M{0Vlp&n)rU;bTf>=L#t3liq>%eT;T
zFw6j+!lhAZ!U<dWSk3^Ek`$D#oKz%^-Dvv4N84dGxT!*UEV`MV^#T>o&kkopl8)!G
z)~Dhq(`-&<{vCfY;A4^+?m^)-7EFpJQ54htcKeR_%j?Ba0NRatG8bktB|Y6rqAXaY
zr(^e&qM&T=2HOdP9<PExey`d>eutIM<sAO)q!0cEvy*z=2jwNhM;R#6d987T58kzI
zgquqM{lcnUr4;9qRX9ULD2)KWo814qcTLaZ?<PO~{d=}-!V+Ph8kCmOOza78`U)TI
zPKTWu0FVo6IpWEcCRJ1;H|XN>ZE|4dYiW~m%+&G~G#=Oyfdv;gGalP~`g%|#Kuo`L
zGcs<ep?Q${T34aG#g8b~`%IQ@=cU`O#c}-0iv-8g3+F4hDi5SD|N4P^Wk>8Q7hwb1
zZC|-40nx9%A1IthAM4`cg9P`515bvsJhPGEBlf2CyE>|blWe#Ak}~*@|55@r4b%Uy
zd&<PBx99ZOeZLNv178wu2<u<|Ds<D&7R#2!{Kc<$0bl&p7uz!Y^n)R83VXaOw4=hQ
zZ%_~PnD=ugQ)td}xBXzsn@CsTe#IB-UltAvY+avrR(}6E-WZns8b2!-Lp2dgiRRBq
z%K5KSL+H+rmaRZ#(9bXYA?h*B*wawB7FR>COFi`XW7vNM40{kXHZ9ta-K`=ht$!)B
zNWNPYUFpKa@}eQDkV!Ideh;wt0eJKL;?vFLrz?k2!D-)}CPPUBzpE4dJJcB`L|X%%
zosz;eR?hEb*Jech<UzJfYN0A00mz<x09lu3IBdku(&lLY^5ptWxcrw%DK*-ZK^!e@
zudT>$+uUcg?oOW<V_002Zrhmbg89ALacU=yew)41`aQK1%WWlY|2&#Jk9Q7cKvGb9
zTqd5q>#9E}iBAfWxOo10-Dp7f=^=lpe7bV@>im6>nv$WNeK<?+>qEa2A(+Ib8ZE2d
zW|Wt}_zU^0sRRXhOYP7-3(r_1T|bbq%ivihR_f3mrE2c#yEDd~{j}=)Fr)>PPiEsb
zu9#WwloBF%ZN*hXEjhco@WzTwmQqXN)Is>t5pZk$`RFoysMaepqp<iPFGNT`$Iz7P
zrFMG>2e`3Z$W&R0^uJ13<LM^_Ezk49=A`Sq`Akki9ms=FIoG!1WwkE{j}pkqI9_s3
zxAer=YpbkVqWzLPdK=x7UA1?1@dpL}(wt?{c4vpB$v40^wVz(DuP*-vUnq~sj}5%l
z-z<l&1CR<a{ax;I@X4+&{77LH*kq9ZZj`rY14#0G`#Ic_0sZN;&@YiCz(cF=0n?V^
z%BwB@D1=ZPnw+V@&fz2~=h-$IF1rklou~VlY$t~qdAApGTxupIC>DHdg1wQb;Bk_{
z%lb+c(aq||e(%SEKklrln*$AEBXx4d{Kqz9G}j#ljbZn0I{~J=V#D2%P2L^c{Lw9%
z<Et{n)0I^c;w1dlJJ+PixB?8u9{0T-+tIE{JSgbX_jF3PTgZWUS@Np718_FJu18{)
z6{<UFa>$HaQgKnhAuIBjG<ziSd^yWG$g80m#(dMFHX*nvfhy}w1}X%<VyIYrguU41
z`S${YSF`aEwlMBe$rF)Op3QoE!uj>@VOJXEr*O|9pE__}%|v%QToIHEYeM%Kw9D8|
zI#}0HqwB(BIt3{Hs_6y*j5nmVtdsg7<ubxEB72y%3l@#kUvu6S=kOwEQ^A;v^;lLs
zrCFCwW%-d8>W(o>eT={Ecr9)1NH^A28l`7zdw1_?D|AZi*BTSjJW@uZTv&gfdnzr%
zalU;|!dues=ROzF`P}CgOCD#&(1y0gLS*UjJVui#$|CJB>!?S-UV?pY@FwfhSXdhI
z$Qm7I^<zjC3o#>>3Y+kG{wFlugLI!x_KKtXAN-YU9V7U1KG8#<>OjBUZe2Felh|kl
zMPLlawHU-2>MOzHct@Z8l9(0L{QQ@wavY@Of7orqeG>cDrX)tt5RZ#+e8A25B~QcW
z|B^+cChHf?C%^lP?-<Wtb)^xzB_{}SEbQk;(B_)TfWba92gay4P{=R#G(@KN{lY3(
zbs$1Dd17y$U0)OeJ<OTx=;&J|A7bN-HBvkzN3rs$qGSYwVr<;V#5+HeWl`7ew#y(+
z@bITxEt@jNaL6<<YPxu8nc7yaEH;cYkha&?>Tng;i?xC1DMWkWDD#-TEm5@a&U^%|
z$s<?;M?TNtb0bN?K07->{fs#4?8SHrPSf(+Fw4O~jf^GM3kdX{CFoTcC!X<p>6KF(
zrw)iD0H&}Io<ffg#sQ`qxC(bl*3p?pj_sZ3&H1<HYxO_`==9yVgm4YBfK`&b=$W^(
z%Q?_A|4~rs#9A9hH|>4}D*qi;ChVqlNxPF%d3G7Q_jp_jf!7Dk?-n}f3FQP>Iq%`O
zc1Pi})s*PO1sFJ_8DbKGlnt$*U5ym@6!<=oWPb1#5O;WdHh&7lAinz5+xN76X-nDz
zBDtGDxn}^v;`^XlG!$)q18WB=pyYiC-#hx)eMO3q66;G9dQVfqVVl#Ab6m3#?s}zh
zs@gtA%mYOfP*%8Ca4cE}_jz`O=1akqmLcGpuH(ntNY`g5axCfovs8zQwU+83t)Frp
z5VO3-=v%R+?<QNn{oOPRPJlS|_>M8v9ZAx~4h>3}-{pQKLy64+H1d(3sSE{h&?}DD
z*gF;WY=K%WcM@^#DmSk4{fGH=iV_?1{+?2*)8{n<b*~`G@<8eQt~6pF?~{uLIeZi7
zLnTzgqwp|ssb+6ZDGrg$eh@;s0x44}|CDmg57@EsRMwxb&Lg;zp6v!F_cE^v{L9?;
z<>73J1OPH~<L%$a&#^fmsBM=8S=qQbn2ozi2mKdhx$S3G4iV=3;~9AeRsDR0#Io&J
z`EQ5YF;6S!pfFhLjVWh>s^$MgBs@F2%!{es5PEb6W6VX^Wj0!cw=&lfgz#h2%65?l
z(g9$9Q-QE#G0szI(`MOQz{t<eLt!g)_=P-B5D2`xwgFuRo0D2QWvVfM3&J2JCs|*X
zCasSy!H@4o-_OU2ykr5W%943ieu=VFg5?Pw>*<xPTt+W&IM<K;%g$-6ogBr1fh)yT
znN<FXADuD}`ug4d1`z|7nO01znet!)Rln)rll1NJDEVFai^NKMVsByOGTmYp-g|%V
z^}VO}3f5PtPkI_zfR}bVvFGGDlO4D?py7E5GTzS6A4ZP3Hx|p*<RWWC?4d8_^(i^d
zCVouz;Xs?*QAZ-r0F}bDDW%Pm2UaYR!t`r!Zbv=h&ww3}$X4m0MU$}1`TfV9`X_t4
z)FC3oni;J&c2MGf+EfFitYs`EHP#tmw?B0J+ixJ=4yIGzNM{xxG?ovu6B@m<&mms0
z@{O~%Z1}E2Qa*aP_>uTq%EdaF!L8NZ>wX;%P{EC<?9hT|+;+DZtcEq&cqumi{9Zh%
zjq7)_%TM_4C(6thH;*_V@JCxEUKP$H2ZXmSgwMe#v%(!CfzpcM3?}fN`l=tR8CedQ
z`8xO`j#Y8kN58$lxvWTl%b3y*!1~(OKF}Z?0^+-?9l~`3DX)3Z8@^-A*L+a!tDBci
zq_yLRv%^pEu@qia*w{fQMOF44ubwjx-yhdRjC6e9^&0Re^|7jaQ>4#%U0s`uWU>p4
zD>}460`3A`f_cL=JScVxLoChfK1r$~cGojryri(x(BLekAW_7k2``_}DA(^e{8|#<
z+y)1vvT$1Oy}fsxj5NzU=9?AVBhwLGa>F_=ZXDMfG%TfHb!+re(d=$bo{_Fzp_>Jq
z(_d)x_2PQZ0i)+<Z?5AP*d&0A4&brzO7tQy%G9%<NZ<#ZlnSU}^Q6YfbbW186>;M}
zJ29)k1~uW3+!O+vjm{3wGkb@hhzAO!W}UMsN^%Ahz6J~D;T$_2UQ{-tW|-_$fXAC0
z+?u%)qu+T(5xZije;+}M-RYC!V&3cA&!fOqU5*<DF}Fw$<&GuVL2z@et|$$Eu{CLG
zGOafn31DvA+1V$0CiK*&BFHC+hqNo8ko3BEpKZz&FVI~t0+BgM)h~U^d{yje^y}7?
z&)qjUs^&v?dlfd2T$cBsV#)3-?(*onL^GeHbm3&Qx*2N4WEvAANRsMZV(h{TdU33+
zZrY~JB^Ag(gIN$W@$_kdd1$yA*_m!p=%j2tU*DRpz8X)Wbi(i!MA<xu$;zo-$TH4%
zpxV!W_YhO+Gv9qbH>SQ%`dp$!+uf5MiP3)HZUuk(?01iuJy4qAAX=-YBD#UCW!=Pv
z7&*GBmA5iF!h86m0?RIpZh9jROnPn^p0q##uxfVMdt430q7XP69z56Jy~4<pg4=Hm
zt~@6r%Dg9a#LT`qEQk~7#+jXaJK5yhlvbKzj-J+5$02)v-CJan;h&s+C0#3(M!tFx
z$OrQ9)yt%c%NY3D6QyT5Ia^!azuDS&e<e6tSfoFv8f)Ka<q^<OP&%Neh=%rV@Tl0~
zCYD&|H9y^Oqd8{Z(LGhcu4KZ$*E&zRTzAaJ6cs=S;7(%>_p$gNd$f3=vw2N!mW&Pj
znNMMRw?9>$%%|bW*0Uy2)dG7iFo!7l{1<_2@BTtaCpfH@4y`f~@QEe6ypuf>=3`i%
za=f9OVha}<%+==f^KFyoDh3>;XiNlD!sbpl#H%JVxsH|VCBL4)5i_4Fvk{!LI#mHH
zNqGFr(rAeqdQ8V`uI_EDKM~<v-F=})5JzDM*{Uebh?yYVbI~c~D+pUfQ1e>QUJl;o
zCd)UKetJ-J0rQoy7mXT~SbBK=c5mDN^K*RcpSkl#CHOnuJlH(jWz2U|=Cred(x!^V
zBj9lresTn13aFMsJY7sC_KODypK#e!axDJiPHj+^!a<`+;D}-Hm`P%Jl-ORGEKjWe
zR_n^KJ$*UZP%wCTcmFrzBS^XSZAG5j$n4RZ!C}v8q?un^$JD>s0x!4vI!o6_lxcX;
zMb+5@PVe$fh47|H>tF(3C+Rtp$?hrrvX5EeOxUhU`AL~6c3${LJd2Z37q+wi6#QoC
z97<a_=gQwp{pv=YMbvW?W^{blhP>dS$`sf<KmM@%eZy6LXz84n2k?fuMT<}MC~RV+
zw)n2a*Gn#lPXiphpN%(nrm^Ho46m;OS5E1@>JC_$WTkG3s9m008!?f|Qr=W(f<cnS
zq>SH{e=Gpmmv4v-Wit4<;wj~t_FBv$yyIdd$OBX)TGhRiBL-Yh-@?~L_R8lQ*9XzU
z`IJz=`R)KMCa4ouf;JMNV87GYiG7R361v0<&aCJAAW_$^ulpq~VLag`)6msuThq&%
z;nMa%x!^HkpMG-goC@Y+_ew`QTkaW4eOqbH+l9)0f>vz@C{_bPjAOJNTM8cpKz4Mx
zuE3u^`Bp{K3`#v%AKRY0PpXs>zb<3$B~I0|GoXbj(VM?NV>Q_gpZ$hE3!T6F8$$WB
z_p&vVS(rc7-=%wK<A^BX6J6Z?%%Nq!_J5Py$)%eA%}#+M`MbQ4M61EQ(@em&uU~>M
z!?O(bU(C63y<pDZW<P4~=iue$1HOM*VQiD1^9xQSC03Pt^{Hc<VuHY4(t`1Q_G#4*
zjA>htF(F2oN*(2aVt?}_YDguJvG4qw8X$JNqB{;i;S(R&f<cn1(>Aw4h0%W+9Xnp|
z!tiiXJYhLuHESqq_Oo9}Os8t@-aNyK&pH@~MivNlXHrHM&C8AoukZ!G>;1ja?u@iY
z2%25+e)5A81b6p?L@`l-g7OH2;7J`OF6%5VIv(j&usXXBgt`Hx<ZO2T^)Yg-&7Jn(
zmu@i3Sqs1M^WQ+vz_CI78rIWl0K1_XdEkhB&K&F%2>&kOn!mV0X^vv)LG^Ci$>qoR
zDxa}7yW5*BX3-|)`k5a~+WPA!V~NYN|HADDNk&0ng;Gmr1rr>9oKgy{YgZj~)pTEN
z?{BRQc!LO4>noF|+gS>zBHrm04V3J?4$c}SGrcSodJly9B~r^hfmV@+zhS^!DqPOw
zn!|_q{?6XyTxc;`cX8>|lq@mYNcR4xIVU+>@|D8_ObmDN`!1F!wF~=3XF-7*#sLOH
zElO3TJDIllG{RkOAxfe+18!7nT)`5Ahs_R-UJG&bM~SV;wAnbj;Q~j2+`KP^Cl-Ws
z5VBNU0j;H<n2x%%;(YTYZaNJf_C}E5L@~na*C(#3c36=P5`{>W*tc<4nsMxT)mWMP
zuJ#Hy2~l~vJV7a|;SV~{?soq;%kx9VX(^H@zIDD~_zny1Dewe!DQ+n1fkV>|8Bu!S
zi>v@W@C7mt%vOBl^YkE{x4uX?k`KeRDD@^sg&J4<-BjGH)r=C|s^P8YG*S^C*$b=*
zGr-f`(uMMgu4DdFat&7VWx-s)h8HK|RD!z;yNuK-Lg!LdH<k|Xt5Q*2Rv?8Y6#9vv
z9fDVpOZ(?mFeZSa0|;BGdPD}FjjA#8C{-*c7pNj{Dsl2Itjh>xz;u8w&u+K!MoXJz
z;)&93-J<)v_}x~KoJRhGozMJ}9dvN>9e&Hsq`3bn(e;GoSA+Iofy8u-Qgs||@pIK(
zxI86TFy9ssXsTKTFTqbcBNUo7j9bJ^L5ciUtJXQHUBQ+P&<=ol2hvV)WPV!q(Cj)g
znWzT_`RDwMlsw!s++z2q+yzy>{dzVYLt#nzn4ty{za`S|e5x6F;y$;oEiKA#e+oNE
z%FSo4jSFz+4g|*SPoX)FY4zJ5Gn!~3Nh9kMSPb>GyY|X^W9e9}t=+W_;_7!<z%jV<
z-7lCX_Dm@@Czc|7_I7A@WvO)Xbn=099GjQ3(mj0#2ki1j&BH`cn}$)xkKORq>m-hG
zQ^H`pWcbQM3lul9sx|)g{hhC_FPTd1`mC*pnVKqmznn%MLX_9p#T(98-G=imk>RWU
zCDxdXT&}?#x&{*=&_gn``CYvmTNrhI&Fo{Ym3m?hh{$A&k*Y2fFt|@Pu2~vf-vBnV
z^hfZc#Nxa7I497*H2OfHFszP|t_e@rM9lC7%O*b+9ea?sQ5W(Wo}`B|<v{^PDk(QW
zK|S4F4hT>NfjM^{=Ae<qWnjYji+|4$sg_P|3cu0?FCnB#L~)!i;*uZvrL$BGq?|j>
zexd)CaUv-L+EebjwjD~8J<fg$SnW%Hs>6uP!-DvhD_I&QwA9e<-YTXyJ8k%pC1sp9
zGm2EHKv-38(PjKXTaqWG$O?NQBxYOpEQ%RTC6zbqtgZ_kR(UM_*(r$Y<#hWMXXOvK
zVEHk0KmWN|zH>d4O;mk$eR?)ZfV#Fr`@_Sp8#|xlnXwVV2%!VaXaK@CtHx#at>DuX
zW9q5y1Ci*T+q_5zYW|(X9&j*kOIZb90^>rPl2_Z6ioQb?rOheN&70k$^J)`x6Hl(N
zhvu_;E8aUU9UWuNqvu4$?!|&`erc&VUTW4#J!g_I+-qwK*Yh_$@S87B2PmP#Z@oLN
zG`iHcU#~c*^-N<Pjd=EcD+WMLlRUd1nAd5F>ws&{4BAPoLa9t1+Lw4mnCRwW>Fl*I
zZt7Fc&zzqkRxQ9QHsS1wA)pS>4$-Rm4>FwVINXq$YnqnoT%?1H9zM(9*n@V*s#dCL
zG_Q<Aa=!CLN@5^zs9Aqx^L0>r-SoNf!$^cLeaj2sVmv>8uTu|%>EzrmP@Bn=IVWo-
z&j?*%;k81DVLVKCBu0*=uNVNE(|>HRqBiK4%1ldP`cMR&jXeH5Gi-MjNc8k_cD#7Q
z5*#6T-awkV5*SO@hi_nZec?yt^u&Wpp*~FP<X^@GZDB~T&@bsoq3p(KF>ckPf>^%4
z45PI_aJVv=G7YRqlkL4_BdaYr+K*BzXC8}Xu2|7hgcMm;XsOGGY~WL-fr}y-DW&?T
z08qVt6;Ng9(h<KOU#T^zP(uF|U{Ha`HleNP^o}+gc!ViMGqx23FV)^lLF0F&5Ple#
z3~B~s_6t`c5B9S0jyeS-S4D^@rE@yAz-U;DYV_U9r`yGT<KprSyyju;3G%MOTCpJJ
zp@0ml->Zb@i`mKf?7|oeP4+PeVRy2!zCC_2-Tz1Z*XDFT)Z^q_b{-nDRajBvP77V9
z8AfL4S}-s?wtroHF#%~zed3JxWMVnG-P^;^_BKiInQv5b4&POX5Y@Ex_~8%J>``C*
z|008yXP02t;-B187JRGPujxg_^r0M(@Ot8i>2A`vPGTX!7hLY4${3*SJ^fGju}#qf
z%02=ulWK7*yIeAL^I95N^#6{JiQ<#<w}tw^pZrB=j9YbFx?eX6oXKr2BL|^?5E|3S
z;Bn`@0-2Trltv*jNxrLQMFA{|*ur{bA*@fKa@|Jw;fLf3(SJ(%jGo@4ym)&;3$zbH
zq54Pjc*KbVkv9c?Ur=5CBX|xdJD2eSA2Dkr%nju`4Oi7pjH(0P?6EeKM<24-fYL#B
zTB|v|Xg4(R02Q-a@YiVO!jkQsQg;GLfOmGFGA||@`y>4tCTd<(SCme~i%3pI$(UTz
zDhwH6ro<#+TY9EIXu@gNTp}Wl>Lx8jH}|Jmj(J?NKTA&b184N<4YvZOzTvT*8qEy3
zMG!r~r(OT_?x~SGdmVO4f2<3Rn$o*mBBkR{1+LGX0{#zj&Ph7Dr1{LH0;uVNW@*W8
zFRd*wOAravzCKosp~TA5Lus`6@@ZGyp%)|o3Nkid^q@%iwg#Th7GjC~j#LPm>Py3;
z6O_>H^i1UYlCYUPS)K-P;VV!i(~ZnYiO07CVJ_1v^EC{m30wu@5)0^ynJ?giTa|3q
zj}wd{JiY6Hr-;RPPXqX7c-D$hK`-Y(A5I93TDE!Wq%Yh$d!;)GMog32`>k2sZYYBF
zcaf2hl^BgN!oPAGP#gi&1Tt~q@J=q?Avy=rkr6?jB<bS!G{@pNS?vhoT()s`Z4o`A
zQ&jn^lVZbdwdso5c+MT<!f~(?AV_@ZRvm3-sDh_vT6n-s?Z0MT_tI%`4&-AA{j&(R
zUy!qj-e-_%T!y<g3&~&n21qc##1hE)@r&Oo)^BTn@wd(zU`c4>==b0C4)V6m__dj$
zj)x%>t%t>q7s?e?8rPA1cc<{WflFV1FnYGrxo^uDt2J<1%m-<U55M%Kl1WGdYsznN
z>g?cqO_YJJ0ZS`K@6QfQWzFw;OEexIH2QD)owpw%MxJYpQbdv=Drz0xvgLoWVRT}g
z5gY_F)aH`G=PP<+j+B9*Mg6*b@p93*sMN(k_y7D0fSF~^r^}ky_HPO#V%C6Zudh9-
zK<07@Y4bd)JtdFK?n$oDWU3Ott0V^?Tc+lPFXEPyHMI@s;Mu<V5v_$Q9#v(?5^%=d
zO}~ec6vr_oW_~G!v0Cxe*{ROF8q0R!H~YGuBYR(09|vIQ)!aVxj4V63|IOmOb|mlb
zM`Bmsz1UffU6Qa*@YEYKde?=PxKa8z29r}_oN80KkaM?lFI;T0jnw<+$5?bjdESel
z(9fKMD)f3;-i?_d=^k`09%>=sE#9Q9Z!`N~n1UHiT*Oe)rhsN%V%SSc&U~kGaHWYZ
z>dvieyAGLj;2eQgfA}T8`5|tV_4~7S^y@>G@R-rs{pn<{Va8-Ueb86Vm>1J1l%6(9
z6elx^{dju3sqp)ntnKhpTI5w642tt>q2b1m?i*}Z9z$oriK20>=2vy)g?h#8XRVUd
z+@kOv%)_#T&y<>h$t@|7*NKHH@JlD`7hNLxqI?+csX!35$xBQhlZ50?(^p_H5vHc0
z1_w;7yck(CK1;WZ#r`WnpkN$VjPYny+(SoItaU0OhYD`-h0X#>1SQBkhvcoYd2$1i
za6NdAFxp%VY+v93W`II6rEi?5#Pz!)1|hQkB@9K-sy7WQ=8_?3Fsep%3{lV@ZQ55#
zTu^fAizgG~T-7$aES5BMxapG?2M4*Zo&NHgpvak;a9}S{MB7f0x<f#IjYnh8mqZjv
z_D6=%jJ5}bCAy2HQJcqfSc0lwjET~`dRbqYBqEnTl+{l#f;8!!tIV2s5|A90WS=am
zxBEY(4D{!}(iali@ws2|j~+a5<5D_orLcYjRUYMVJ_ya%k{+S~_nVCmw3h3YW@9r{
zd~T8kXyT+<nCm~4O8iJ4oW8pjI}}h<O!Q*WR4X_(GfTmM+0~!Ne=r_8hy`brjd!H8
znP)&5_*rp^_*A960j6=HFqat|oEmT8A5&XZ1lA|m;?U*(j%%||M}k#ltZAAPW24;7
zCz$q52R7wpHnT~uHDowzRL<=B&Fs(fV@Ahy1E><D*H6`X**sQ}>+1NOZ|iU3qq3}=
zjLUl`e-dyR3K11<SwEJojw_<T*0JCcIJ7WsMS$3EFY<={r5Wa*$Dd3}cOPWP{>zOs
zehSyuS1A$BJ4|hpxOU~S$cyG=7iqs6T&#1Uuj<o8le5;Y21iq;NV4tL*Q2?B!a50z
zf2?~?5|&z{`4UxRQQPOYe%q@NK@-5{m%c6Iy7S=v$11gb`Of!sV*2v8AUk%^m!1nk
z{qmsrDW92)>O`9G2l|wJdB`Lb48P4(f984R{Nc)C`ONgI6Gs*;em$6epb6{d_67Yk
z;Z``Ix4$0#9+&pcWDLHS>fvDAdj9vdJYlw&nt690KlpukKX+GZaDjDBHJdw6=v4>(
ztiST&1kB&BkZbOIJ4~j8%OzZO=bG*Tur(2&JKy#xLwQLSAG7x>*Kp$Qyhi!4*!rCX
zA}kN?l?tiP<Mx6blBV=$$`^57Ydu|I(omHG6MWY-;H>P5W_D=M`=DL0KmB{|nFreZ
zvIu4$QtG8yBIWata=QD?FBkju{y#o~fU9`mS?suwFy4*wQ3{r%pfSyTK&+N8+{>=h
zY~b$A)YN1q3AGoXXrNd-YpR>`1b!YU=K1=?F{`sJgk(?1_N`CZXKcAUpAxhpam!N_
z<iaFrH{smd&3JSb-_Zl2p_`dyWm*tSx?kWEr$>Bmt5CMC!JvUOf|E1VpNaD$G9_O4
zk^1XQr{D~kUfrUN^WvZsydOGp{Ts670NfPbIRquhepL64IyI>a#Lr2T4jNY6s<<+R
zIyfjT<SAi7inm-tJ${esYD5FpStyXXVK0r+D9&VjR2#LL7;|4=B{h1EuNkbB=Dk)(
zuFP0JR*_4>d2h1Z0+s`nU`ZhC_aFS@Ng+gv|DC@1o=I>~%1$NXVpaEMz}B<m1s?b-
zOtBE9ixD?dGE*_u3vaEn?e|uQ&77p=Oru;~*UraQPaU;XE27p_dJwbta~BO}vD*BA
z3*z<3WO;9!kGHwMw?El{bWQgw@1V=?_h39NE1QlTwM0^h+Z7BeqoS%Fm(e9Aw3Du?
zl?af}bb4k34P6*0q%y}|uqbHMJx<3FXan$b(Llqt@5-Y?zFxXc`{4dQ1@lV(%!D|T
z%<=S0wvZ#)^@2)0rye<J(7SHfxgV80T6(rDCZl5k@TvqAd?5!k4z;}-gW$4Zy^M3)
zVfpO!>$v+*!>C!cLu*JZFzH;|Lt7$_%L(UkD;HZ%O~NMl6UP^?vDM}va_reh#Q-TK
zy1TVQSz^`!yjT0=z|_BduJrF>iORv(=C_nXE43pV{}cc``3Nr}FheD^CDK!SeQ)pA
zRzNRS5S?Avht9KhU%JpI*Z~bn-x+PG6r}Zj?h(ltWF)tt^0wZerORL&Lm~Q=sY~i7
z%dW%>Cw;9vP=z9P2PelL$IEe|xjab&dnx2F7jZsJnYPK!F$nYQS{a5W`;3thwxm*T
z2Y7V@r#d(Hr&FoV;m{?A#Evx;%aecoztOW-OJ&Q^W{K5j+*(-8Zem*8$|O!WbaiF3
zy^W}C$<hvyI*whNC&JqdukI=csrKrY4h(CFH>@r^d3oEDTg1%3sm8tS9pf8s*3X0W
zWJH;H8%x~g&!a<{#j&VhH4P)v53x7sgA!pk?RMs#z01#&uy>d;a*0cIcVe^c?~J;f
zaRpj4Axo)<IZ~)&ZPKn%YC>Rdt8llSd3cW8zO{Wb)m3#a`vDaMn9Yx^^8epToV(3E
zoBm+-Z~xQq?ATJyJHO$}ti!90SRy6%Lf8F7M5>0plNnN+=Y=d%X|&czpDdwpm1Cx(
zQ0ecDcJ`NSvs9Me*<W4SKr6=u-s{Fpi?`A)OS}GA7r0DwS>W~Igj&dr{q^5Qm?^S}
zwnv-l^pIzx-N~k>J+n8qcSq`bOK5XaAOGkXW))RB=!NWThaalfJz20~QyN&euiA%F
z`c<15Y`D75hQmlU@AADJP6eJyo0R#y%{M?AN2TFKS+2~{>WcA|ndmR#LO2xZ=^O%n
zcWo;&f}a!O{piJLs?dSJY|d;Eo>{cbsNSp&hTjVj=z^h?rPHadI;8)N`y+xeSV=g+
z>*MphUz-kk2nCDLgy>Rln5_4mjfsnvRrP${rl=gf;Q_cWV!`{OjjztGLHgAO%ZyVL
z6VAOt^$_uT@KVH?)K-KB+VVNBIAfGp-(x?~FioQrO~6+Kt5-np7UczHj^>)4QU5Um
zO0Mf_*7<67d|J$mNtg9o>r1n~9zDog0=r4)iy0WrFBf2vux01ZuRwg_x0-5xpQi2~
z_1!6uuO<_T|1xIiu9&I~jVo46Zw95Lpm>(lo@J}_G!P}cA%rZfX$2ghsVdSSo}Pkm
zglfLfpj}BgzUJmjmJdLGaQEpU$nb3pIQ277hqg?+Vg-?F50z?6QgHu)rUNWBA=?jZ
ztiO(lsH$nBi_9-icE{@_312!7P<_VQVt;@Ya6@7#4#rYBex9rtwPMnjYG}QNbL<_x
zOKGouR%O+?COi>F{HEN$eNsM&w|Jo?S9NtauOq-4Ao@CK*8(S@Lwz?DC%HWOyO6Id
zlIUb>EM8KPL4BfPZVrE2zL2A2A1;0|R^>3yOT&tVZ}Op_V9?aX8xbagLGv?I)UwKF
zzc>)LuPrx8Q;}O=nA*|q)9tVed!Oz09lgZu8+O{WF2mB=j)v}ydypB?TlLOx8wGAu
zhRK0Rp1a!7BIlhF)}ki4#zOvy@YKl-atV9edN$f#kGSTy2>ek>vy|#Vy9EE$GuFZ1
z_4cgT^eJ8=?sg?pBN0-kPm4Z%Rhh4^GR_BuSn<`X>_Lqjzk07lt}stvtL*=@iTf%b
zDWwQDU7Fu9e{(AKR3RvV<NiSR=)0k-cFu!aIy!kXiz!*<XbY~PWhX9DrF6ogWuGcE
zfhX6)WsxaU8Q(|6>mqI)l~ZM7OSgb-GJ)MM@-S8bY08;vc3ta!lJlK!Sz4v-fJmQ8
zF{-?rTb`@_s^0AR5rc?3bbw4fMh7@N8ux_|`itu=ORfLoH%KBU;|Z}8wGgSEmDt!;
z;8zSGAK9EX&CzR_<0K%9q4M%GV&S#P@;{fi$Md}2?%oill{3{;54=yQ(d5qDh*V-<
zUFMi{<{VCX;G&eCr@rPd!Nq;Cty;V-rG}2G&!YGJx535scBLAxC&-o?gW$Fe?qGfi
zdAJvCMWhWr<X6s)Pp`(xg3muq8i;wHs^@>$$~@1%rF9vktgz?ft@Sl_V+0bK0;%&g
z2pl%}4OhwYPOZ~F^^K@;aGQjdsm^LsJKyPoSfgHP;`;?6yLQQselWV=U0juOsA$L-
zg@2IPL29q1URp26<B6{*MNk$tKYYOG5ihBi4fLgIpbXgJ2k{coXS++*mzVpffb2>U
z$SK-Cp4`@GnPrGBp}3sV`@4<xl~OOoN-P0d$vnuhk@tE^PiKk{_}_~eFS5gjEG@rN
zATnN4QTyYk*R3;vFT>Fm=6ri}^81)re$;IT@bC5Mac(>=6{lM{pZayGopp!Q&UfQ^
z<h?F?1U#qiiK_7%uZofQY@&Ti*dtvl<JA?n3bESzDht28m9ho7J2=87->DUmJ0d+t
zKQ#YAEUDP%_x0LSSX&nDv)I&A)-IAt?^e)?quuRXF!A51v*^l_O0Ygf;O#BTl(WJM
zxWx8)b6SJT_eRy`FD%yMvYF-<qEUK$nzK$dUGqEz<0j?lY-=_Ex=c-{iS1wTucT}o
zK|tW%afkob_G$08JmP6hM@u87|5K#C(UWzzDBeOWVctn|mBhn^KyX#VyTD|;7)?G2
zcF9p6ybkZN)Uq(6g&Wpc?zaqTZy=dg=1KO9pyIzF?~WM6_I9P#c1CW{`OkT0-82x%
zJ2>#qt!|9v813VJwBmjLM3d_Lp*sWMZ#b##`SGQS_m{IfpYGm#7oTT*|7mygO**|%
zU9!&&uNd=Xj8?&mZoJCyx)yu#`w|ht5^8f}`y`$DUoGLH-(i~A=v^ylCMO1I9L{4q
zWSL<Tm!WM4v7whw$}IFgjBVLFE7eUKt`os1dw7eRHdR`6zd2^z^g*P-NKW$!Z8Q=;
z+2h_sc4qgn*@*VVhh^aTnx&td34Ond@N<Jg#zv0o9HBJyo~-C6HFw`{zqG`4?&j*R
z6N0<nh&g5Lb-Hl?8uy;+pfUA@wj`VXRkeH0b~h3O6?R(N+^d@R{lBvXyB{*6Xt5Vr
zl=@2vLAQRX<i+;x#!4=^4QiB|C=b9jP2-B1ioR~~%J9;Od%3GWnYj|q)FJmCaq%La
zes?VT1ut(kAAEgBPmm??Q(|(dp<i0e6vwX1TY`Op@<WSwqdhg05{)})j}gnbA8boh
zmVl}eq8YA8Az`reGXB?GUdA{{3kmc=!XX_?(>&*N#>AN+x^LZkksF4|=%Dppztkx&
z@~ZCH<-B+69hnS}2?AuW$Khj|$f-ArcH6#qeUn7(I!}Qv)JKro4=q{jI|=lZ`IgDk
z_ot=eN#tX9Xz6||S`X7JUGUCNN^BwZmFDEK`{AWH=fM=3@ize_Lu+dhm@ePR$S6;S
zNn<H}DSsXnqsKH0Ev4997?E7Mloc&Qio4Z!CFq`0bNrDIl6CM67s{MtD11O0yc+L_
zw|C|5gP|L&3NYCKstSvfszcMq6VhNJ)a3@=27xb0lB~2$f3f<ut`V!RWKHadPmp?r
z%3|%?{KAVx+Ru_@WzstMq-$uq;%6@^FBo=466~NL-6Zr>(?n)uQ*Qxvu*T?p&c1#~
z;UuCW*k!Ye*M!Rg!PeNk^Hi+is?r`hpS^7oRVlJh-yeMxq9;zeWsNwl+lU3hHdsG(
zhfCbA)*P$vsE#Wskd#z_DP6s>`YK2K`7~><Oa*z^&*C61G%%y`4uJG9?d<VF9qOlf
zU}4ElasF!WhDNWV(F=!g?p?SUklA)h)3<-DUCi)?ONH=C(1Izcg|!riS8*|(PfLf{
zoSnQs^Jz>yhi3Z6+3zN-lxQoUncRyxt()1$iP@YT%&v1IvEk7gB(A{%Nk;7I3}!fd
zJ*L32;<htoY?7T6Y^ZT@3VsaYzv|ts0q8Dp7yW1`Du~wjj-QuT;o>s_l`J^GaxHFg
z>Ji5KX(lOw)uI03S`-()#J0L9B2PFQXL5ZZJajkU1;8cm8ohd6VHBzG>J1vEjXVU7
z5C_>sY7~T|QP!l`)5VeOq-aQ>IGLGcU>6uM#;gBnM6w<fSA(=9iYK@1^y>1EjrFcg
z7iNeU=Zy-tuT?^Ik0PKm&9M6ib0M;SH7hl6bs<zghRc2{$)>H<B7~Fs$Vf_{uV~sr
zVL2;DucYE8H^nuHLXn2J{cxbG^z$}>M;F)lM7e_$HY5a|u;G<-(pJ8up1fR=;O3nD
zc6Ds#-c<|Dwn_z)qEpq}p^E4Aqh82J{7rf4t;zRI7sj%NlAgX+vfiTX97}C0l*n$I
z2;&z7=iF{?k;l7vpztapqSSt2POq-4N<!(dZ3%%>kTuXbAFNDPD5i0)We<51APJe)
zmHHYK`OHg}PKi5P%e}e;z_BdnA1F{16R0pMRgScnMa6Z(I5<1!pEn|Rn=}eam}pJe
z{!${CGjkhZva+eS8YG#?@xl=C%>$6Lz>Rvhyv%YS1&hOa`NB<80gQpN_{4r&f`oK`
z$=5}ecE@q?7|7NnY?Botq<i+h|E<SzNOmBdod1qcKv~un133s)|HzPrjSf>DiYHg;
zuX*+E%pC<g!A>xox>ISJwV8}4+D2^kcEy=r2&joT0ivtlF+36u%x3J&NTTOzmJ+IR
z{zbB3&{zOHa84eY>h`fVj_v_@k&(bTW4;#7-|?9^@e7$(pRU#0&r^gV5*1emGWnh4
zCCVEara#cxiSLnD_=GQyz`$70BF7g+Ak=xF(y+UQ!VAngAi&+Czis!7!Pw7p<AAU|
z=5fUES|gAK6Z|kJ?tnQwiDdA7tT$qPE>C_8=yOZ0&O^W1xp9}1iOy0gN6t%$VMnKE
zk*n4s&vj!oS>F}8TAkVnt=Kr}Vbug<ir09icTL;W4<4jv?K}j&)!A14HX`%|qk_IF
zZdY6NbgI(BWx3`wMOR#Tk)d=Z>yzrVq;!!9j{{N?Ia<$8>7(;Q%#s*&?r4@#QXQ9$
zDO0<+n<_zMo~j)en?tSH2z1=TY=}+{JPVN#Lo%U)@53%hKaGq~PHLcyYmhdNdE@N;
z>+)MvlzfX)WE?N}Ms7SPtyuo~M{H(cRMMP_9V7kCyXz~of*zf$!HT{#--aFt7qi!r
zF8q)zVTnxMDnn6Hb|?4xIc3B<9!0@T-=3Y9%1RyPltFPc)lZnhIb!Y3)Y&P8T@&h+
zViC7orQEYa!DaWT-LEo`x=49xSg)zsfs2Y5^gBp#HvU=-&z#!nbV(SVu4hao_WNYb
z$vVI@Po9*@fva4$QqL-sBp~;hzQZ@CA3dnb!?=$cD4XaL$q*!_HCmfd3k=Ke&^ex_
zMcqit#MSBFhMpHs!}d&E=05rM=*uaZN<=BymrdV=p?dCgW=4srQj(}=G8Z0I&R<uw
zNnUVKc;EEnbQU?U)@RaQ%2E3d|4>4!$~X6R1!of^uoor77Z>7`tdiW2#Q{y(7`wZJ
zYkFk3-y*KkFiQuk+sycKhqN$QxIst$o}SP9hLCn_nn9Tpk}|@#Z5cOmfT#|ayaNvF
ze?AvlsC4OE%hNi#C>OFQ=d!LR49)HARzH~kC&skYC7)J-ksGiX=rJ=w>^C-3XNCD1
z5eip!3XzY)(=X_PrIbC{?L5Vk;4aT5+Q_tz!dnh|<p@I7Vgic->3%{Ws-Q{81jpmk
zdaiILZ!ex=;jeX+_<j*o(&d}2qZ)LQ@994~OP3-HCwuT!4N&d;*=%8DQoYjPg86SB
zk|~34`p2bi4ukTa%6iFGJi7GbOr1gS_&+-cg5tsOtJ{MpQJ>+ns*o7XhY7<Gex2XF
zAB>C`Zt3#65%7qu=^c#~nUkWY3QL!8aO}=pEnD&jg7&q7u-%Tz(#>5Am>CMv=E}Ye
zb}6kTQJY&775VUm<%D}oNmn5h-~&#BDI+nVt4{Hv@(9aQOUvf%t?ixVZ7)$ZpHuXc
zeYd%~3##4SvG+@7qyfL|p_5*-;oP;~u3@AZA`MjNY^q8EDKu@N1?Fc&7zvd~Y9RQo
z_e^PNOCnfh=*Wz>Am`D)h;AA!{|%j^)at-tT2dlH9?D#ry8>19r;y}3^%l`~EU~9}
zJH94DP+{t)4gXl&?pPS{(cjGu6&3iNS#<8L73oc3h0P;wp^5!lrtf{n@={djhlg%0
z0_wR4izzf_{2ykoU0CYVHNh`3Meg%1i`C}19nOy?pDg7QYbI$sH_f@utK&r`W*!@)
zrDiUU+@hruL$T4j*Izx%{M1Ym1qQL=!&f}4tJ5r52^@GcOrsdE%^Myr4R&$z<1pVK
zEyInTRB%N!l4Yduc(H)m$djyM)XC9en(6HwTz<d*F%2c0GgbGdOB+!mS|<4UqMQXt
z#RL==$ourW?7mc0ik@Y}a6B|pG)tyMtm2}#+l$3|R*fKKKL+~wZ|IgK3n(i7z1-v^
zCmSluit@_EgNQNaXR@o`%+vC@7A4!~XeOTB-u6~uIQX7Dw8$Y{_o!%I4=bt-w<)wv
z*m;cZZU~6rtbNJ(M@N5li7s?1KLhG>qH<vOnZw}tO<3utv$w^zG=3L`iMH2-?!l~Z
zUTrJjz{}aq@AlUGo{Y1!)tG%GMQrfOI>{}lui5db5c@~>WH#B<Y9=Lw5^JgjefxzJ
zu%m8ULiju%yfS2$S=+&M0>QM}0vYN<ZP8O(`s`j}30+HdFCQAm)79TZVK!D&mMOu2
z=zdS(U+$?mb%>=&5w>w;jDSF?a6I}eCSTNaS+HIk_CwV@hEYTUo@PABacu+{HSL&q
zJL*th-JJdYdob1D0Kp*&q6(%08(lC;io7jv@E{O<kMXACiw@qA<CsKf1xu(syfc>!
zjeA;yPFhQ8ej&mFyQC_5ewK-h7sfipckFuH_G9-g>HwGL`u%I;>SI}TfNpCM0B*X5
z;IC#}CDvGno43d$ayrQL^_8L=Q|CPjpPtyL&Cvx~Xs*fNrEE%)tdJ--gO1o2gN^dz
zNV)u<#_B`{!8>}b?!|F?5DxWdcX^%gpLb&?SlLFV{j`vog0~;U?Y8=5i4{nfvYAwA
zEaj3HHLLzskn4Vz=q72Jns|?Yfne4RE|dQt1eVB^^q4q*%jvj-=!927ORXsWqqA0<
z>aqm9?Yz}5<D})Zw`$Y(^Dm+EUaJOcjNR~?DDD>u8wndYg7g&*Y88wQK^&W`QYjV3
z`rZhHdwXku9oGMxom`iFSGRq-V(ra7KAnA-*UEFBK<%~{TOKmO8qnri-f*WDJW83&
zc&D{zVs9AMFTzYfUVEdas-4kIZrw+r5K-%ur?V$~)$i|Yh4PN|JqQ}e;lVqh?O`@_
zH&Y1kblLiQGxg~c-=^L?XILQO)~CRLWL4~``QKvGwJ;s22f6Dv`s&p|+sCYLYIIVQ
z9oq7>hbZy|?_-$<6hEJZ*WQhaSIwiHzP(lhOF=f5bieV|$V*Gt6kK=g7p*E_w&Tx^
zN$tpr-4$$vu2Mx#AmE~y#FS`?CtlX-gQcj-tqJt!xJ49H3G8hjmJg}0wQ2@ZQziwC
zS2s5H)7!4rdjND2!@F3x)Ibqh16+!tz2fvUCaet<U#w_Jns$^H5I^fh0YIvbjxK)j
zS1R8JzdxAit<dlOer<IEL-XF=S__|8)txTC9vHxsz598R&6#Z%>APv0m!`vm=vpT(
z=**vO<ZrkP_Awd+o@mH7NZ9cNL5lWlznWZYz}P0(LgL)Td3p7M7rolTdRR7bm7`kT
zKfR>_>TB>Ef%f~=2fDHC3#}a@uYdei`46v9KKCntF5GDEMih7GG*>?#`ow%atQBl?
zQWY38Z(AH9F@V<tJNZF+6F)ry_{NsA1BU7#;g|v<8PC<HelgnC@ZTAJdu*Rb^d4`M
zA6*1%<NEZ%sO@y&1RbNVAqoXh8!SksBj70g6uZ!U=NmF2?M|_7p_~*#2T-uCLJ!#K
zP{fp1Xo@>6Zl(hKO7M+JSNU+hGlxGWOTE`x6;Y7`e}q_GQ1c`Zl4Y1aPvnxH^{dNF
zk5st*@qN1!Co;T&CU!D4rR1tpP>vxNNW9|L@yZ16q`5O<TV0(a7PM&Ia#1Z{)3SCy
zq@3aO`u!ezh#P&U)2w2?M9Ph`mvtD-W<Or$Z1^bGhkwkfM)UIN*!)QR<H|hKUuBcP
zwj4@2H@)9GAz~W$Rx%DSX2MyLQmP6cJgDte7A<V>sZtcyDujf#;@q{Lj8O_oFEM+`
z*x7b~TG-k4w34O24=T8_FXX?rt3R1mvZKv)RGqqN_Odr+`kH3{D(8zK$^Cwg44m*~
zzW{vHyxODe^X$@V&+X?0(u-j!%lkAu+Q(wQ$#uoxinq~5+M57sVnP~L=V^rS1|>;~
zb?n~#GM5p}6Q$hNE}K-iuQ&U8Q_a^XVXFzb+?tYX&(!bqI(0)-MV0%p69I^-B~^Kl
z<?*powLg8a()K;*gw-h2%JjLNrQR)!YS*0amGw0Qzzx|Q#Hz^9-hN0$-R88U_Kxup
z$B?6J!9^*-2nWAUPHv7;+@y~zJH7oP-1LXCADcwInB@mR-w03pt+_q@>M-~DM->#E
z-)n#u#rJTRq-7L&7c9Fs83JaBoK%lScG_FeF-es?HUH>-03ACTodYXI@rsX51p)FS
z7L?=aUglNNTWILF-amUyBcQlR|NjjuqXPP7(r1^QIn<8YBUmL{TihUIx0i~++Q0WU
zprC$*+CUvDI&`J6Ypjp<D*@U7{z<?-T$Q-f#8;i{7-3}|2hH4Vi#WLy92KBKOFJ#|
zZ4(cA`DAwdUX1l)zo<5K>}Ua;iD+!9)>`_#3phwQo}Cg22~vRq-)S{lG9rouvfP~w
zuAPD3^{1)H`j9sQCcP!ZiVhOfirvAZ3w>Y~f^GIl!XDfd4Gsqbvya7hnOXIy_LCsJ
zusbf%2Yi&TT*Sc==7?+2Sz}%<v5vgpP-r$Cy<foiNEg@?FIxTTfse!k$9fo~(`SDb
zVb(?(*~K$p{VR{!rDL6Ad$2~TY_)|&OHJ}of?oaG(6pvAx&3FSf*_fjMI_CAy|IBs
z`@DB(x`ur2&~UhiBJ2g(JUu=?7LQz@PuL^q3M&cQ@mPn^es`8|K(!XRx1K#(CjrkO
zcFGlHb}VF<O)<1cboq@ZDX16-eu*zl%ybH*v}p{lp6V$BotrsHpMKE5kU2UDGqMi`
zHh7u{#Ag5{sV(6tN`kRdtK3!5(2f_WI>c>Jn4#_XHg-RbG&+`mTd;{j^;N4(0pJv=
zma?Qh$ja*6`Xg~mu7;pqR`BspDF82ccyJt?Y59x>Tzq?;1%bHrYJKn5OrTP3DosgG
zUM<Cc+BBq=Y@}eD!TCNOo|pNKj@O69m$yDROGQ8;glYM!Y8$Ec5`=-EHMa05YpJ}V
zO`7}G-3bnFdSIUxW><QWW!cFne^%IKE<UB|9bLaKSw59Jpp3-ZVi~3Hq}cLt@%PIM
z6t{W+F)GKC@WAn#%h`vnK{o_DjJ9%Mb0vXRdcjH=V;7cB4wr69ytwFnb5sP0S~Ft2
zen27|=M5dI1R9Rmd5rpUMDnR9tgzhjR%d&+rOv6SsF(V`7llk7Xm8OkgWAMHWOGO6
zbVqZ3hm<x6)#LoAw4%A~K-|ZmtA)>Bgg|l~z`Vj$_53QdG%X^XhodsVe->Og`$*g0
z6xG!pgQJ#^QuV+!v+35#$l~uT$?NTdGV=|=cWEbm`#=D-znRi6;_L~-KSjXlFw41g
zRI`c%CDoFS)gHxpqzv~@KcL=36370HOz=LKc$b}~RU+_cBc(y>eoG@|ecexV&Q0N3
zESB4{v%LtU@hA0=DkM-iN(Y%01}`(a*aAxH9nXT}4dvbs^fL_*VoiNwHq1lSwN7iF
zoHiL;>t9B%B+2S>e#%274ccr-#7~UjLAHt1!CywdJ^E?>2q3J@{4v>G^}#M<;gawh
znghVl${<ZnB<{_bY_&D)0@!b{E}<rKbT(HacFX_1enTX_Rkr4~Ipqi&Kv6mGQ-9$p
z(DtNzGxVVB_2}A}yT*X)hnam$-Y)IET<^tMoi+2-L^6>2=h3f3Ond|-8))X|AGkAV
zi#O=QxhVSWFx3^}ltqLW>QZ5-4A%h|#t3{G&ikUAd!SU-&rS?+ly$FIVG{&x!JteK
z!lgvd)lcR@?=4@y7X0pXRIe4B)Tl3YUquM>2E?ptI7e^H_sioaQJ!om{#OYhHcS<(
z3ZSsHx-DlaS4hBD6<dOjIQng|oC@ZTK`RIW8#83ietIJS$iCK;ssG%Jn$m(?hNBqq
z&~Z@nw$%hmjj3NoNx<;gz-lPluNp%sBlJ9CzC?Hj*BCG~i!ZaWdw2eP88aq(VxmN>
z`sj@P)yXa}1vzUM%i1_Q^{&(0k1*eh;#Bp+_gZ%T(g~7*1&ZFd?UtMKP-yIaVcWGD
zpoaf-B+yLum%j`bQNQ+CS}l{=HC4Vlk7=vux5wwZvqRxRuVUw$;^x5MC2Wq8-rc`K
zY774Y=Hz7*rB!)z`DI{+Wby1}2MJw1tdXhN$xWCL)WVf4SYI(>(h+BUy5r6grB;I+
zC~<Ef@pV)P)Fr^GG#i`wZFbh_{jF_`=+ZHiriYzvtgc1Tvm+8nRbkBQb=%aA51Jzq
zc^NGxE_o+TkbR$Zx3Zs6RB7w1FX|qBBdriF-XxfkB3gq2z>ZG+m}nRIrg;g)gE>4T
zco$;Hu617>t*vhFt`+|eL^V$t^bU<0pJ_&R-+Se)ws%EBFy-u{e5`W9YF;v1j6qss
zKvgo~&lFRfo=trhc9qgC9~z!vqxOd0=)3*t<nOtQS`lRI_N#5JEmKH9XElWAYUv;s
zh{!M)?5`+}oTH$sO{3*?3#R(3$dYgTO(lEJ0i~;m%nYoTsClZUh~X)rV(!jjVD`L-
z#<A#U7n{R;raE~E^>vc2pq&Zgbbsdr*EpV)%>%SzcK$-VnF=2IB%wf#nM`<U9&}CD
zFP!@FqgW%3TgAnSNbScn%zfg<NXeErHPLUl8HKb!og%#G>Rk-vMSrrhYA&3rJ@9P%
z>6V!v>ndA_khOlp&Qla02`Nbqv7L7(JAq&~C2zelL@N?kStKx?b}ZAji`)6dwM>gh
zeL=i;d90uD*+9Pac=FqPa$l<@f^##XsN41YE^)jgjp3_p;VQ&AiIYz?<%t3*@Jp=q
zwmZ@-d7HXJUlK~WiV2Wg|D0@!<(E5Ce-Om{f_ZGV*D-yS^VEnI5yRns9nj#;qQp#d
zo`Ts2eVFg3tv=T<<|UCA4Fg7f8}#hu%=IPA+Vs6^@+c?f1eKxWjJD}X(?R7F9F>)8
z6m43364N|o2kWb<{cE;zLB~1F8};%Fo4I70Xnn0@aAi7IeSEtC5nI62{Q6Weih5(H
zF(m?NIzP_@pK^?w^<(Y>s_yLWlNispwwFdzjAC%z?)LKYY1tiRuXu@0mvG$x7KgaW
zQYN5X{nGNA7@X7NkE2RbjO?msIm?BL2Dm#`%2{9zyEzmLhoI-?4UfD17hmJsE@m+?
z8cGMA*n&6CdGqKzmsTMun4ZUiq;2;S`rHpr#^OF0yh)76o!RMl(&%`%g8z#ig7Qcu
zjU%sH>ind&8;JEP3YDYO>%R<0se^+01-WQj!<KQqRX^MOwQU9gMzzS6y-aChukvC^
zl0B_uxuQ;sPvVvj)v_u|uK?cJmFjWV=0&&M_|jZJtI8LG6x_RRZ@Wc_naQnnK7vv%
z9FG<za2YXf`@hg#s03j;SF@kjn5fP_3W0RlawBGHHP+H}&GSAMvpje5b_=!jn%W2z
zRW+D4GxQnv>UG()M%5kuba`d_iD8btLuM=*RVc-$QRYcXx&0DxV&VNpXc*!%>k%Aq
z4O@0U`Y!UXR$EEx*R)H-HIBCLL$NDzu&VZsX-4Ba)qB!>khFCr1;$;c$_QYA@+&{j
zb9BEEXgDA+6P~dVeW+TF;P^DJP+m9hKyquWJKB5nzi*(dPsGPIsPKA>dGA20#&^Ee
zf1xb`geWE<=Fe4I-^=go@9i@3MU{iRsn^}z5e4k>+*n8Kuje*J9NoG6YjVPG`Rp&1
z2z!yV`dhQx4?k8M7Rc8w3*RGP)Wz?omTz&T2KP#ZUbwfA&FQ<g@;E}o4_-s5wLT9;
z!#$l3-F%ZAwP0~Z26d=slZR=~p$*(|+Aa*>Z76A3u(A+j5T3+5r)w^(>Sa}*k+lhg
z2H|82UD;QQZ<DnL%JSV+^T>ku0A9z~*tE?z&;H<L)YU;cj(lf5sfya2pKjff#TvHE
z>od9|xVB2Wjk?xHWc4<{-yyS`)NQ6v*=fA20EeABSzho#65rNC1nGTDGDfH&(3tXV
zZ|{|jS;tT;3W~eL@dhqpP6Yn`Ec|^2Gn9oT^!CdBKWRIXf&P;>+n<(71#`Quy*R9w
zi&o%>1T_t2aSHoIGYvm9(e)%=V2)sU70K@&{O)GAl(1X;dB2~6vpH_(X9~~@YAFit
ze=Arvu%QOwi*8+1wZSL3z5vA<-|3s{X#U>9sHEYPt}YE}UYv<sc6!E!B=k1a)r(=X
zG~JqRFOR-EAjZO%hluoa>HcnJyh!$j$s~$ZLm%!?glWv_G&+6IlT)n8yPjf{eAS;u
z|5Vv7X8rn>OxV3rbVP0r3vh2e4uK5lt+g`!nY{#R)u#YjJp0UixPT{=@bP44o%z1I
zOQ>}-b3d_h`Uz~4QUt~E79@Dr1kZfxRmPzGOGS=bt2@70cyS5_!fuZH86=d<{qm+g
zDX>%SXF$jo2`w`|Q-%l_q7L-gdC6rGCs^ze#&2Y*?zjB9c4tv{M5k@JH~k=KSQyIk
z3{G*mI$6)msGfX(B-QkQW^Sw_lYu<&?Ci#|$>bzO0o_O*Sdcwd%{99@UnudN(-4zD
zX!4f$=uQ<9?=LC{9q4lOoUKj)3s*7Gy5?Zrn!6j$9j?>n8vE>a-1z6XPs=Rh<R#CI
z90Hr5Ol=ZNR7(=%KBZ;U<PgiGV8mz~oacfF7nr*2&ACm7ZD6Lq_;nnGxX*!;Qw+V^
z_-^Xe!}}{?x>}(l4_7fz>2FC}wcK_;^+`st9OPjd%yw*-`~VgE;oXn3Ve$0tTuw-V
zyz_f-l~c-2XHLA8I_J2BSfr?Zkr%(HluG~~pO);$P6+g)f1J4N%eR7^9kHni0*YP{
zAA+niqKyy-$x+1FlaCn2pLGD><_jfTGjoV$zizez5vP%D$fAjs?I<6ePpbfOQnPiK
zlURIp0bFm(W?<Ehp36@6$;;C8J>Svg1q2hxF$da@UeY4f1nFEa91F2C(wfzs8z=|k
zfxndnq4S~3D32mMz1Pv1I7yI7DZR;-i?L%5=PXq`do89$FXKr*neZX@#)JVC%)UGv
zz1O1lcx*4H;@^3Ve>o^6G>_T*A&sRX?#f{Fuxig(Zh^M3R!sC0*;0wx<-)`r<2lK8
zNmYw^N3_xMt}x($T<mgF6cX3|bZvJ%fDd$Kp0t}516#9sU-k_)90qnUU9XH0e74e7
z&ZLy^K;hL6lQs*UNbOuohB_&QUs4>#(JL_N3PW;odUN1(x+yG`U$Ig!o01ySVMHY{
zCO}ypEW=S@+DPkPB`WT&zexHbsjVPP7#uDU!)X<*ZEVP#llufh%Pi{@N#}tTtsLw{
z;ggziHCS7)#@zjK*Pp|#Sz!^WKfBj%bU85o1uGc`E3=DbILukC@b$C)qo^+LQ(dGc
zH}tA(p2NVC0m1I=NfpJFS+qMD9B#0;m)CMtbE8Y#YzUXeG6)qz%>O8-h!@45e9nh@
zGy9NdcaCz<nuXWWE{$uIr!SfX{_Jt8GN&?BxCURnPWeP;=GQLcabwYUu#q8^<6iq2
zdsx6sHhOS|*rpd$UPzF|n@9Xic;d>Tq3`oLb?fJ)MblYIlM_G};iOs)hePDUzd&aP
zSF=N*)NR?hE@gQz=S!0Ff)D7>TjuBcn?XyNjHLVI*8~mcj<`+9!Y4bP4;J5^6JDG?
ze=?eawxE!;&Z?x3z7FPSof%l^R>?cmYfafO`zfRAI;Qc<a{hn6rYaAOeCzt^({%`h
z@MUea(r>w5KAq97iH7RSwF>3bcJnHhkCPSdtp07p_a9{FO{xgf|EWwJ_^*nNvO_qS
z4ie`<x*V+<hjctT3tN#il>>Kj^@nL={f@rdS=rpn?SZP4`7`3@__AEf$UHhkhdIAI
zER~u|n5*JXD$6A@Rrg(%PcTTWvjc*+oXED7Av}jNa62Uv^#kjU9&GE9?~Cqr131P(
zkpkEiY?19PRq6bKee2KXH<_!aM@RinuWs@sV2S15HMuG6sEhw^NF@l-EG$}67|ahG
zWJ8~#3U$@HLakp}-BO@syq-dr<(ePZksIr&tMp1`u_qaZ8U3+p*8|eMCpZo^j~cEy
zl4Y7cr%-I?=Rn}?@`ONcMOT06ZduT8zMqr=;;EJa1SW@K*$}Aa{got{&S#+egk9D^
z6_@y;VQsBO%WCX>*%_K;seS_15{7{vXVHDSbR4iMj6bbYQ#kRQr`^)%Yo6ejdN4VA
zj?mc~KE$mRWZZ>UUz<3WOxhD$E8CRfEWN&`M{gv4W~<bG<1-oeYjUl~kCJ#>>U0<t
ze(2ZL7W)QH`&H$ZV%Cr10w>NH?NT27pRbQp<BiXE{W1HNgI;P2KID3MJ!|%7y08sY
zNU6vy+5yh4d;ZgG^rwZjV|9@>=ttlj4#tP0Lz1oQnwTyz_eXnMd*jt#chsSaP(zk-
zq)Ri@fBWyHdt*W@nU!+l!1tH`UL{Z{9vv2auKq!lMclWlpnVC$43X>;X++W-rAS8Y
zvXzy^<bxT`j(IiioZ8qWGql_^78jHlyP%ZMNLVavX<};zktvc*qmVe1@2aq?$*$<o
zL~U79A#!4Z@NWVD#_n9`0(+rd2LTZC5kAHsE;&|juV24*mKU@Y8z|0r*RQwJZ0^&5
z<D8srXw!My`twZCYSelJv^kZ!TaLrt(ff0T|D;SxWDtlSYi~7`c)M1lEpt~$7}oIF
zugD?+Fp&>p)l0<~+XVI3cS=LV{R^eFW<_qPNL<Scze;OMG0RjBP=rYvd3CZtUj`vj
z3HY&i%Ir9+oHIAOm@^W~#j)B#9TGc>=`SRI70p(tA^iVGWD+c>K$3QM%<Yd?;+jD^
zTIoI(q|Kn<`OP6`#9i6ANsj%@rM|?Zu$4@^gc<gBJ)8rTP0WC@2bo?bMLyLW#_@Ok
zb<vz*=!Z>mb@4w=j?NO0k~^ZzF>d8QCXRf*IeYC>k4`~tHQT=FTIgO0kl461X<mwz
zif+O#eQzf&&pRZwxV7{mhrgsYFunTpmfmGc9x)+OTL9gC?FTujJf+2z%bV{huONpm
zGn-hDd#o=7o0UCaH?;lQo7=LwVs00atE2$?nf;S`#+@|oEmgO`4kXxiU<ekURWz(7
zINBZGcL}hTx7@cMzk71};{kb&XEVpr>!x0OAu$z&O6`|2Zui#;D%lz2QY{7BzsC?~
zT-dZp*HIT+lG^Fv<(*Og%l$|0%HT&dNW#MH3-U^-4K+A%*&YbI<3Z=d%sUNnlp+Lk
zH>L*1F5E(98+2g>f>FBywoUL0GPXT^X^ZqLGnZO^sFxlw3t~Dx&=tIARNq#-Tj5?v
ze<+zTtt40G-mLTv!$fHNAlpJHw%~bRz0jnDk`11~AB?Njbi0s{c=Mgl;c;<fXW#)<
znrEMmLOTEc-p;eaz=DSchxD$KH)KD+Yd2+6AE9Re+s@ucM)*%<vEc6b`_l&ns&P={
z;2j^mz8tr1EO;d7Y-QiF3|T}ey+D=NE?2Yn;S!ZUyTynDI+||mdzd$ZkyIp&b4+dy
z7zAZBxQRa(zOWceMiW;6qSEZkA(A<tS+6@>_<_MzHR7Y6!$lwkw8(R(-WO<IWk>j+
zF`7nrZmV3r6UIGxe>{5r`&Eo3E(b!y=hcF2HSv$7E!-6Pq@Z-I=pAx6J3W^3hlu7H
zF{?nc^U%DJI?x0T5c%MZ5T58s-AhRPvovjAnY}A5rHk&FA3+zX`jE)fRB@5Fv+*#}
z=o{|wXlMInsY>5nOEPY5FQpvdFv}!&2@Q6(GTuwF0F1k@ew$OU#*v%p5^?MPfe>G=
zPo9L4)9z0KtqQ=`Ka=qU8D3xATOEgi!RYtomHgj})s5|)9hE+qL4Enef9`ibOzSFC
zLKW+X^)?nAc)8KzC&(N~AbG-1SWzR10Y#tYC72F{Y5LZ&=|%))n@q<K*Aj~=Or7!W
z2ZtnPKz_kL&`4pglqfDWsc!0<YXb*P3E0;ls`BHgQW@7BIPdpNpQp3y^Q&=9eVR{O
z(l)jiOUqtn4E+`N?I;tg{V3PJb%E%={ee_`wz~Cdtij9tLuNTv1J1*=IXH&E(%~W{
z!8?_X`!$;X3SDVsZ5;Y$-{`|snae*rB1#HQ*ULF)Hp1%F+hcYxdEtw|sq?evWDd=>
zvU5TuPiW)=YDAgH`J*YVuBzHN(sjIq=W;CgTx{OQYA8QwMa@5sE^{Ed9u<~7&t+?N
zJt|IGnNk+D*O_qfwnl|Nf=04myGW!MYTwSID>PclH1F-MFYViVqcqLPCLGBSR6R?9
z>!&JxO-A=0Pwtg3C)@S~PIyB4Zk*DlyOaHAu1>>?zv@{b+={=l$HGf6Vj3!0cPnrO
zdHu(cz-61y`Fq()v+6k;DP&<qDPCC-ll?WFB2o%?OMO+O1%<to8Gcb3eB5rA;g{m7
z`@2gH9xy0JBd-wZSfO^Oze9V0HYQ$xwmI$7QFqJDRm!zhZ;eRY0FAB?Yfr?D!<|Tp
zVzJv8Z0)k7FP1ZsM$|9x&apqFQ2S4-Rck0|NBD)e?{5^I^!nD;wp#UrbzB{FrP}B~
zMOmxs`U_uh{ns5Nf_=%JyY;2gRAOf$4QpqT-Xo>5n>s+<8?yqYJFBZogPNsfWUc<T
zrncoemPgFrO=n?<5^dEBf$mA9#@g=w&bA+Jnv{O2`MQ}eOt3UBk$yVadRCTfI@u`Q
zS+++!WfQ9#{o?=@Nk3rYC<C2ED#eZkumBdTyZ=|YaoZbI=ac(odAH+EXo=FlK^b&=
zOYCPOn2eTM5xY&1@RU7W-!QN9RVx{cyZc+)$zIbK-2+FfDOECE-|Frq?6*7G%FbJ!
zl&&S8D+=6QD-4WHxb=MWa#b8>a3a4jvu1#Cl>qH~!Ie(R^rxb`X@rMYcI?_dt&K@0
zdHG&x*p+>?UIc^e0g1oe3lERY{N*($>DI577wl-CSqupRPrPl)l`E#S(WW1Ox_oc+
zbhN1i$8QslUtZUA$~?DIAj}hs8atzVnJ9^vs$K6EVvDmh`G2^7qwTF!N&9S3;)PeC
z11C!<PB=Kf{S1_+&tJ)oVg;OJukNs4u4V_bTDGiM8Eh>!TGM31hfp3*uan?bTHI^~
zn@xlF`D;aeD(4L?8%>uto1j?TiDLuq3rkQ%g16An{>>S0wQL$!rOEWnMq5@f#?j_z
z$Ny&z5N^8yw6Z8iPx`+XU(PY)DBFsWKHHt@_(|~N<!YH48zl6;#@>zW3&ePD>7Mmk
zR)GAoQ{9aw(c9f69jU5-FLN`0eIBlYFNxd!ErHs@nKy0kS+?szijKFXZjzVbwo55@
zcf6xIh8yQ6T}tv2OY3w-cV!z{$_MFo-5;lR!~A~Stq`i9!lmoB$(>`823Eb0@XvJ7
z8gw@@t0qY+rs4QXzpdQA8v|hL<lx|>?AIzdyDt*$w2XvuN@fmsjCDcITtnAZRKBUq
za^Ly3N)A(6N>$>f6S1`GpJnb9Fmt-7oBhpg1)^W9zgVXOyYc*_7~H%JCYfpTq<D1M
z0Vn{e*O|kNp1ZYPzAn&u^f_~fLbVtCpW2X<t*68Y*Z~_*mpn?uX!Ul8Z7@;CJT%@m
z2?qPJ7eQ@tfRSQ88|!Or{%%b$waEBwneqeA1IDAX8gQgWmBw)y-pt@#M{b?U3|_H;
zOzVfUxA6r4+@)CJ?awtSV4g3lf)~7~C-wG_n4e0_aKwc+^|rX+goqUjooXPEr~Sf$
z9zEOH-LD5Vv5^#9>WQj-^<2(nvO+ipaSm@8fgl)g@z+3C<q+f1Dh=~y7G!2+cF0Se
z{Qiky(A+%-DH4}<<ekqWp+}>jr@nAloUP}O?c)&I>(w#<tnRH3?ZR(vs39^!aews%
zLIV8;2paF9W<@oIm4HG-a)2#4qgh@=Qj;wB%UzBa%-XFCki0xj%Fm+NFF`z9j;pu%
zox&I*0Q(DVW#(m}@6=~O?^g+HC57ji+R^9KZK@Cr5&hNo=O<?+7fV-5q3Ux?uOld;
zFfp$^PnF6bFDmt%Du7XP;;Is9VAg=3;s*-Z5U10#KaSO6XcU9H4ujZymuoh6yTm^4
zx-NQTBFj#vV`|Oq6*#j11;cDfDVs;{VcmA+fUM=Pgb|$}q>k8hn|V`GL|A7LH!A~<
z2a-eqh9U8=M`ZSuLn0R|o4hHQ@75U2u?^6Pe|;f=V)gHK;k}(K8|D(L@cHq35Z=kn
zI27~L@)$ZxNvi-IZmm?^3H|L4x+C1xaCNJnQuq_T++j`e$T50{p>%uXr;v^VAI|tm
ze#8@l@{Fc0C%>(atB>D(N{2n0p<Z01+QlVm0f3<_Z%Q8q;T2=_QE|``bl^u8|12fA
zeksPv=IS_asKZz)mGoJ|eeK9t9;l)2-h-$Qz!yAYXdzTi@Ukym9m<7=z76}~;H?^b
zZ--zuq1c7H^T0r@?6DY26dZ!etI>Dp{cEL+%HLU>E!pK4TWT%dPkx0a`WU5&tg~&#
zmu+a{cM-5=PLVe@BJXb-7_qx*^|y0G$~WSkpFSLq)cr`@j98j`zPh?`{ynuuTCjK1
z1Lr2OxPWd;XBa-&4Q)RlFQEbdbANq@QevFQ3|ZY|OEqIt&x9WpMUBNaw0{Gcxn;ZR
zaVCo`&j+Iy=Y^kB$#kS4P_`a{0pp@Z&~A8|UG2~<()wa1BH@ZhB}0yBzl$Zewmnsk
zuLHhH{qKvLQ$ec_k;B+6Z!%9#o_G{G#Ay9;CTlvc*h%TkRkHG6+C@Gkl0=uuGp&LB
zyT{DsX$8^)tsBRXTndX4EV7FrbW;HZVbfrWrQ~mawQ$vm?hLL-@-t_tMVY$M<~I0H
zhsTMs7nJpJ2-w>@|Hqoc`h0bjnL*QQ5v*}+PEtjO{ij5sBAdO!X^9=A@wsLuw^lxb
z(_rk;XkyYA&$PtK5^M=aEs9m_QckF?<Ay@{^4I(ru_8w^wffF9wHpX>Up@l-N#2s1
zklm|>7}RchaB+MNu&iNOAE%i+pR?wv^<0wSijch6T6ZsS;>}m~Maj{3FVRZcb?_QZ
z`7hi~?Uk=xgZ+wtl1SdICC`fNs2q+2GIPEw|08el08gk+&BxC@6l6i-gmQNJ;q1(Y
z+j;3%*o$PzHb|;Y$8cD_wzqB7<?WRKV+6~!MB@V%Mj<=luu&m%lQHM<Nt&xXO*F2x
z6)Sg9yzN^q#7Uq^lg<45Y+f_s$A<}-zl1$tWgKKT|EvX<bQm#Z-F_BV9F-h~pLr{2
zvB}yydv|j-7Jj|Fe$7BS9_>GQ<{mjW%=--oOXP3)<oZsul%d2keTzLY2D&Uh27`sX
zPS)-9JDEWW!_D4~c1dq{mOGMo($V?lu{eR_dr$-kG;wggo&faK%^;F%VaSZ=VQ`dY
zh9W6l&Mtkd<tMOcd1J@>3mnkK29sXb1D=h=huZY4h!R&}k`zYHd<0Iz120@`!d`cd
zzJo)>l2;qftiHN_|Gy=GD5})|5Qj9ophPQ=Xa9H#6_|4x=2tOzWAX!<r+XdOS7dGQ
zVWX7jp%>5g;w%do{AV6qiYUwoxrN@ZXoJ*MhVm`mSOTjuVTe9Q#S=&OI0lN%jkvr|
z>h9iGrit8DAgX4Q4^Cz-!3e$`CLY@NKPqkW!|2tKEpR$}zj%89xe#t~-aC@uV=7z}
zFDK05Jaz&U%{a=AcxYokuBC-~oS@aa8LXoDw~D28@kLyLii%ensaQ*5QxXQ~w9ow3
zK{cn+$GXD3-Er>jVhknA?w|3iss&<6`A}`Q)!=oFg}4}rLbX3`T-P)k>*tk^)uGg|
z>DP$e<l@4n6%<jl4lU}iYKnoS<qD$kudcw$;Bm~&vjOS$KQ$5NQF@H=r2gtg;*G4j
z&1E#R&M9nLjiVSsL|PT@(fu~@(CTn=ZA>dMuhV?}c4iKn@Fxt!YbJ1`C}UzWP0CoF
zsf}>imZ|?4W-mB#I}9-q>k{rO%h(3QV+6&@3oE5XO103Zc-FV%ZZg3_`P9ee*aVeS
z306eoNcB%6RzoVhJ@(`cd22ZUOsvCWugPwIY&BknYbNYh5|VPlYS|Sh3_Ok<!8WR#
z7B%{mFD^e+bpv~l#YUF4quCF@eN#eri)ns5m)Pa#m6c27>kUfMV7l-iXQa*MedYR<
zdpuTdEe#fia$w=|&O`d{g}_846#{_qii#$P9+5a8?>5I3SqWsFFKU=ivkedKHAu`~
zTTFGV`N(eCo+|_Fyo+*vb2SB4E^o!AZ>^Xu$b3p#cPzK~;C(X2&MeI4e#%hR)0E~k
z8IN7w#_-LnapNsv+2M#Jmo{4L`asf=j}c`a{FF&(MkG~fEQJNi2`${u;r;rVjP<5V
z3R`h{V|-W2f(?p1iVr6)sD8AxkZi|t!yfg>xf$j#vr!ce6h*$vO8Ze~orIbtnI|VO
z_bJ0I(sA)~11QF-@8zgjufjvEE5^eZ@?TkZMfqKq^3Z)s_V7*nnNtGiXVPGKLw5hu
zR}iVK$y$kqb~ebciH4>(KpwBnWM<qSsVcST$&UWzk>L@|Q8;f#ynG$BPMl5s6+>7r
z`X>RI)H~=%nf^2|1;uzSC&z!<+hgv<bbZO4WQ$OVU5^<p-k*p|DRh?rF3&-LVj{n8
zH5aCF2!rm>CLLoZ&5nESN=-0u4bzpEIYmEArCE*w4r-{*{bpl{NKlqdnzZr1b|ln!
zyC1Gg8rA==aod$n2tQzZliS~%B1%%lsL4t{LfD&d>>~0Z<xFB+Y=K&N#WuP)H?%ax
zVUl%6q8TKa2Tp)=%GEW|vrbeq5cs!iGkMEb_%AwIF}HG`djV9X6Q@$b$+4;0jE5>^
z1$wl2hlkGn?T_NNf8nM@^Isw-GWu#6qLPfea8JcEcq@w^{eUpJ_>uZGQ2B+c9!Pb$
z^+T+t;K9R}<^$Xwa*FQL1;eXk@QLj&e1stpJ-KidNP^W@V2~h_AC!y(bPNRMK$Ihj
zS;d9lW6H+)8s0L+r*A!&xqka4q@oZ-3qK6&_RhUfM;EV3VUovpK2jfP;a=>?MD>T`
z@<W+DcRspx6(#vNdT02{^4YDy@+|mTi`S)ucL9@IH=#wmuyDtVYa>~LP4r}amks@y
z#0Mk5zx$|m@g-dyPZr2&#}Bm?Q;=}ZiFz|6O5HMjrF0Q!+GC1KGW7~%EsKQCJi9j%
zzWCvXoC^P-6}kfl5M+-Op9FIyX&*viYQW&(U!1M~n(GPwA4f0PVI2Xd9&>}4oA`5u
z)L)eoto$;K+>)4j=bSYa0KEBn8{tAY#*J!byF2C3;CNB<eCQmYpFi{Q!!!b0Jxra$
z(Mqat2M!7<e=q1#!5ZUtvv)3L=d-tGcfId_d2Fx>`21LPFw4os*au?sO7Tute9K!h
z<jqunDXELSsFSaDUxvevO32SOe{l}8jiP?Zj?>wg0Re6LGP26(N*%l|W&W?FI?Mxy
zDgH3?@%s0evlltUw<;6NXEZ->V!r(c5^$2r{_Q{TvJ&y)$DUox*EuP1@kdnMyJ1Jo
z({}pl6C>b;66Z0f@xX7AhG)JV=u}~u$r=M#_qNLdmy5v|_^W7a(_D<3g$rcKM_0{K
zf+ZWQGh28b6ia(p=PymtjO@>&90c89Bq`1Q3^|Vpa2u&j4?r94W0G@b#d?bb*?lGy
zaDx$rxw)sv*@4xbFF>|5CD&pYoDX%hk|#Ug^h5+ipuoIt%gUO0?at#{Jb8v_eUg}X
z@8vyggb*M?=>U^>T^sF#lBbN-<qOyuraQFI!qj#u&6K{c!v+)o4BC8>qMKNAG0qm{
zN%l5;&rESJDBSH2>cBx;&b_J{<bwj1sl};F%8f#b{3Fqk6KUgM&fE8UsAR}jFOz;n
zu5x=XiznN|DZ|-9-=qVY5SxbPdIeB63rZG-@U#%R`Rim11ZYs;6IO*hq|I4@R(~km
zOWo4QfZMW|i)-@#`C_@>#fXEB%jQfW9&}raI!D1R^x5@!^Ar<m;dPkztGC(di`Vu}
z6#K~*oICPLO4Jr<L=@jEm}srZzQ((oSD4ElNEd-sYC=`%#C5^A`GaW6m)L5;O|_rE
z5<Wabsmng*Ldb!BcS1hCpD~7pw>8Lner+o_;gJbxnNUF4I^mj6^szQOTRlj{?pj%t
zt%A5ahY}S7aWdS_1~6^NJT|%N_@?j8>{C*8`e_B`S>*clcyjUP24o!Qzm}|AxU7V1
z-Q_EnDceyV_La-pnEv`Qy7pV{X3D?mvgER5BEIs_2j6xX58+$xmSTP1@X&8tg+#Ev
z<!;}$3Q)RlxLa`4Z@CP5`%Ra9(_+c{|F*k*(_*Fk;x~=$n-(ht8oudn-?R$z^ZA$C
zQU|qfdMIu3Eo0+5ef2UBR@`7^4q4TUnZ)D<+~KQtP<!p0#ETLG!Z!7GWMPl8N7>}N
z_NZIm!F}1QuQXN#xo*mI+#L=Rs{~OXj2UH3i?&M{Fb|Pd*iiv`0mlLt%xc}1skSpg
zXIiNXGu(PEDevv4*QY#gVl^R?xkwdRb6~#krKA}+=B_b_3swo<Fn?7$KL3q6sl3za
z8T;XNGH@52{@m+oUQSl6KDZ+v|L_BvdKns|k1<i=iKPxopej+=C}C6`ie+neFA6vs
zh+Upgb<v(BA8$Zn2<{AP5~^C;*v3=N?^z|>j{`}^?m7ByqHi)CbdZ+Je@9Gb8kJxK
zi{Y_Bq^%d<s<KOH)%DXt>JWP3SgVR2w59uUaT7?}Vf=K<at3p%6VC-XAq^AsSiBxD
z0G9P1xc=vaOg9)-X38B)gmAbEDeuHOON)yk^x2oluX87@-#-{Tbna*KFVyj6oCp!D
z?uwvi2C*<DKEb_BBJQa&J6$BY&y9M(i4T}&n&NJEt*(O6CNN#?W6>_}%V>~AX%gdN
z<`*INRMRu;lwx$;nyC9JfVGq_m#zc!@aWoB@D{R2RQ?yZOl@8FO!O(e#msnr-Tfa@
zUg{|ib2u>r7S64;ksZLzOA6CvY8Nk#M}`r>KmYbSiBzYvzt@2^a#ez3Q`z|8&vXuR
znTl$_{g8lK2kp1c28|n3Os4uK751FJ#eI`pOs_Rz-Wz*>4aPnAn+`p%@n?*ncb?P3
zzUIZjmdk-GXGi}t(nyOc@wMXZqkuRZJ3_k)5>0g(COVUUSffAnuQt=7)+ySb;_&o%
zT<ZL-DM7)=tO?U285b=qaO1Qg^$dEJ<Fpko2eU3={pa&3sz*`$Dn$ui9AEzTG{FhL
z@ZXYN<4uR0kAM50?9WAhrZeb=Nm++~Y=<FQHl;nrM=T8XNj?l?d|G&ujS#A@9jLP7
z#fIr#H*>bv^2X|`Jq(6TRbLUE3P+u$S@GmhAuFR4hs%|94iAq1M@<2FZ%Zy$#z@E}
z%9+>>eSMM1!R+w=b;+zGf*l={Jeq%(1|S>l6HDK{9Y9e%Ls4;xo#{BL|MBv(yxciE
z`N#B~esUsDF<3+*zG*ksO<aUs?%bHjd@S>|w=o?JiTw+S1e2-Po))HOK1c8z6}gIB
z7bWsk%c#{?%8E|WzOZf;C~&iFq>g@aa;3CECBUw;M@RfCK6TRHnDNJf(=#&`GlOdr
z&y%{xd!g_yE+o8~7Y=;(EEyBoRY<;-guC_S8R?eCPt^6p$9=vx+385||216I`Lvam
zBU`KCsmlUToGsn#8zH_fGID~nUujtzeF{h=mWMMur~lp$1Ao6<qxN#g6Yd6X71z>6
zs3SR-N&i<&CoHAU<p~V#8n<heFN~oMDCyU;N*7G^xY-?nd@zkf?#8{fdwHda7aG$4
z+txKVu@p2y>&RAl?e4;V{Xe${LqNpC4?Mp<m{Fnq(~hvlIt<WWKB@cbeNo-HbxLlC
z?_|tDQOcn$RjKC3y6nlu_(#qiJ;9y4H^MPyGp#zfHFqOZD2qS!CMC)&+^y~IP^#wl
zl_K3uJI&lEatle+_Fx)@9%-Kh<~d77*z4=7{|4yjekjj-d1PjUnh>Q?oc_yvM*$et
zF0RkdMlY8)174M%2qrmDaw!V)Y>!=9{(*6=52>`NrOB(!2^84B+asWy$#gZRy=*uH
z8*zf)*VCY6Id@(gp3&9^01fD}rhrsCtM=3IWe8>O8BH3*)^nuYE&26AVd0QHvjS$v
zM#-L8$ZY6^XcG%6Q#?ZFmMk`1U6R-#yJ{qDjMSUp^X=+&fgCoF64l!3IOwatig+cO
zo0A%y5hC9DuWi$}FDNL2qVf9%$A<&?QYy;u;FRL@sZrS_x6SE(<!(qa;%O5iXTEj&
z)7^_92~}x9_#fRnFqloTcAMjNc3s<Tu{~yO(#uP$s(CM|FaGz=uZC}$#Kh$!`}6`O
z?}GwqYaOCQ*_xp5g5d;5yZ53%Fsk%0h`N^Db1rZ78VX{#sLeAZA+Q%#QA%5$-!?H*
z97ke*uk_~{wahch3QU<qQlqbW$>yx$`k<v3Qq2Q7qk`EaC00yR$q`Nsz-%#?qT(LU
zu1~{F=#noUA(Q%oVO8zN?#$kqMVo$UV}CU<m_9$T?$k0#DLY&w`h4={(pb6z?yK~z
zq4*MxI`;pr>N?JcZ+9_xEy5&5!gQbMK#6_dbT<MP-7Q^mvb(*t-uC6<Jf_^V`BgW2
z-RyQ-w+yGx4e9q`0!9xtpO`FBB$Lte-T#lWciC+$+1B-5WdaK*mw}R2>XORLo~I~E
zVkRlFNJ`2~7%-+Nro>80)FH*ZJ<<XE5F2i6*uZIQ9J}L|w|B!>jn&$4=d}F&BVxpi
zNhxb>pUbK$k(`%^5##!ge~A5@@@A{-w#pNF%Z7dW8EJeQspi1uQF@_fusGuYYsn=8
z+EUzoIY^B6U84@;Td~ry_w#wZ9DXY$)%m^E?VkhSwl>L@b>zeMNy7cO`+;<^Hs9Jw
z?I(Lw59Hu2Op_B%;zo4Ij0O#5)cCDxs;&h5?=Mpkyh$I)Bb4HaLQl>e$MpTyfX<=K
zUEqb_#~b!9XgwlGrbT7giB4Nw23)(h?c-yHgX4~!c1EMK^4vhGQLum|(E%{M64g)g
zDZ}xxD=@`7FqVQS<q&M^2?g%n#zav(=D*s;SOAHd%KhK%8r$Xl^jqizgJ2SD&yV=Z
z>LEG3u)V(Mj07y!IUU7k#jWlNHT(26HKP{u4>mdYQsw#k4KG$95e_nk75-r)nV#FT
z5mhJdfurHwxN@@w(ZE3!==a5Kr~OF>J@@Faq2X{?7hn$&2L*ma^G>!g^!oJB?Z|_D
zw?kKG^h=-+W2OXZ+-%tqeLw!1J0h|**FsHZV8S<jCP^=RlHK!By|*|!(s{$AjcQj!
zP&dkVxPC)xY2u~~v3S~s#Z{@3!280^m}6KVkD(hcyBJ1H-@#c4tbuIznwfya5iJy2
ze03c#f%9bOL)T}oWMQIAQQoB~M2&nrt*<c&oxuk`<#wI?aO0t{)=>xibQkJ9u&aVX
zVf|4*eYzI`*=m3k-e+mmTPPI;E0&P9DZbngC77gcBcpvPw5urXGybhh*8YNogGjgS
z%De%-^oK39s7Yvi30zrL`G{@94C7=)S@8EZ>W2P^V~G31h9w6kTV4?~(qM?FZTVu<
z8hFds#eE8{sOJ7|7%`9p(tYQA1u0Vo?X7G3LTbD6FA>O&+v;@XA8sG~-Ci*JZ$A4b
z&6DdzYdf5$AOjF6e%*T+k?a~9hmkThZCuA|x^q@*MO3O$$`PrnJ6U24SpvJj@uDwJ
zkCx70yVsQY_@qn*wxk90#e_Jy!ezN=i@v*JcLP@lh3oYnc&{pTTC=HKY)Y%x>XQzD
zsDjgZimO}z+@~|mvWn<i7!^PpK2{|l{&WYk5?T#^4E2jxtF`(*+qh++@44PP>|2k~
zI$F`B)JH;F>-ZQbfyv^tM}3~0v}%Fpq}uIFGtFyn0ThEMJ4n6JZG_hyeD+}fv)v(P
z_vQ9m`u)flQSclSo0pxTUKqb1n6c<*`xoVl<9tfGMFfD`>LDF64VeeR?_Z@iUP_7H
zMCrF$TSb8<1ZP7c^p7(}C5n(i>DsW=STCZCj|}xRkxZr&TplU0W6on-o9*C%2OAV`
zPKMIr*@npQgt;RT*cvw4Q4u$M0~0qB<0Nl7vYE~ghbK8;$_|n4;7dJx5O&-yo01{I
zn3{g#{^>Hwk@087(j5B}+F{Rr&(>|#8qU8}YlkO?nLco`HqCgzbrDA4mAos0)Z{1I
zrT#f7kN9SImZYJ2A(8WB@iK)kw-@uO9{<g+#n%HA$Tzmo4}8P*OKvkbSok4~e9kYB
z7RjHTMBE;R>E^c5*pzezh|K6PAgRq^30>cKAJ%R1$l*56sg7f_=O*(At@$0jJwfG1
z;t#F@4N)Z$JiE*nrCB*y;X?jKZ@hsp9bx+fqIvA(2lc8q&9W^jFF-z{9HSzGOxGT!
z-X=PunkRLnq+d-yl6t)T_O!7ogC!aFkX{m)=OkhvTB{ur{g6X5I+<dGtMZK;g8)s%
z;V+lyirV*dg;B3K@3CLdjjK~=NfRxd(Qwy~Y{>}|&2&<bycpc-Ieo9gD;cov0{?^A
zJE0OE19PoALy`ep8(ZRiC0^oOc7$oSL1m4Hw%rO2b6hi`=i}M8rrNfLB+iP7Jr^lj
z&)m7in-%A{JGA7>`&gG%bZGHzd2<-r%;S{?uINlyrRPIoQR+BrU!qWw28z#vpp3SU
zbYVKsL_=qJr(C%MjNH|hhR%9s6<w4=HHjOc5uPJ`V*mB5({sO-;JQ<uSf*BMTiZ($
zjOZgqsqm~NqYHp3<jK|}L1pB9`(wh{N<OkEX;>t_#-t?^!IPM6<7N`X%$p(MecWwG
zV?1{(2=8>!H>Wz6@E|Vf5McSqLI~Yyq&M~~%tazHRxc*LKt}M9sgycp(ZV^8_oQ9{
zzpJJgGZQmnK+aPmGnW?VAH!b>DiLJQU@!sVEVFL-eE=;OV5%(<7*&5P?5N65@2a`l
zqYO3`@zJTO0~0*HZ23rrOm&sbu|n$4Q_cFGVpqIELX|gqZNSu#9B)Fjp8Y1}3B0Fc
zrqaQv`KQ+eX+|~{oH~5p8rkt@_ZOj_SO5iaY9hc{CILj1?5MtH%k<2vQV>CF-hg}p
z8D0z{YUcr*JQo48$2y_Nm9f!o5gjkDQ-MU&<M$Y*TR}ZcU9c{Uq|#70h3bB0{6GNX
z&<Mu{52o}>(S6Jj1<nP85M+(fh0hJYJ6-DTs-^^_xb=5Y8T@nPAff?UheJ<Vi~l9f
z^XK0OEUhl5L92CHbb6$^AFs&*>c7&+g`{s8X+!Z%**}ns?7E7d)>M;T8*DM3Qp4Rz
zZC8r6Q>G~tL};U^Li%%WpCB_#_YNR@UY!r;(n9H5=mglD>TjJ<;I-8<RKKD2Wksws
zbHX@DShi&$t2vK?52bt>v>50iX3__$EBt7xNT#U7?96Fw4~!ORe~)S?ejvn6gjrU-
zX#o;c{?<0v>Nxxd<r~U9`sh)$W^EKah8wiL1f)h<&rj{h=&7|jOtpc09GBQ$!g9fE
zdlC*!o);R2iCd44TU4_@3->B7APS@=E`UfFY+22S0f1=3nC@va?IUo4@2bf6rx&4}
z4{*gL*@`jC(Rx=7kG4jq<iX(u!-#j4!v>c?HPdERtO!rjJk<al&=(lkMt<#rh#Aq>
zQz~@gBxIe)2%zwed|UAZt3+N#6y~+5X1Doe?R>N~!$J*E_5)yL-SWd>|NRpMUaNRo
zDu4|@lqF^S51cldo6LRn?`36(pZF}vV?gS~^h+sZ%^OKdKT*JX#QtV=5_@j^2NK11
z4=Um|LqGH?)q=7|6pU}KaHLLXCKq2}TI`NDZ$GTX9;amt3x-v$)1hjFUlfHtmgQh`
z85Cf|^(0S527?S0D`oyrZYK%8?kL?_0mhuXbeD;x94Nx7eBSYSaX5Q1z~Jf}HjKA;
z47s-5joDoqj&R3JFI=-H_Eky5<O;`Ew2YFr@dMi(oP_uZNOJ}&DS12YD2{EPKvN?o
zxQ({}BM);$8;?WOTb^|!(ZotZenh>~EioBOP{@h}^d8)-J?amLB}WZO+sJ5zNa!UA
zNo8)QkNB?yy9NX>mr0G#52k_m&uH?gdJAVIM5e=y&8I1TWuneQ`jczgSYWYn#3E0F
z=V8PHlESiB_@vMHPU=m)b|)+iL#HSOwzefIUX0>j&iHn}4%{^TOnh(uQ?DfOK_}v!
zK*$E4(#8TZdcJsj)>wn|9ym;7@ybqDd0JAU+r-_9&!Z4wjwyrsIN#^f#dVGb;W$og
zLGe|{d=Dx-RusaYQD$+tXk0&|^b~6W!;r9`5dc57*5Jula8{Enb6)vRvm6q?U^=9;
zf({B5sQ5h8Pamg~E6^#ASpa12;hZ<&#l0S?CcR#$K<93vVTaBiNL<Sn$DBC|Z;iVl
zYbhNE6B;S&0bV;YV~LZMShhesYhh!(Rr7gi-n)iba#8%T0Qg<rKd$i+edXkc!6W<l
zH$Q20ganlbX7F%hu_-=MX1UN=lHmxo>Swhlw-8Q&B)$b%zOjC1N?NKJ)`XBxVrBC4
zZ}<kmHb-rM@DCG}oci0J{X`(_=dnSWA!^j{X7s^vVgF6zSeKCU!ohKr&CL3pfWC0t
zL;uK;@n>NCb#~MMdYQ35H(kl%FSseZ>Z^ThU109VEvCJ*J)s-o&Kf1f`w+&ElWU5*
zTsw($>FLx!UV8T7uV-&5a2y%-1Kbqw8YUR1e^)M!c<Qm9i7kM;(tafuyBwdQnOed_
zcE_h2&JLAZn-;@&z#Q#KVBkDRj@R<h+}9UOlc&>{HzH|FUp<q}ZYmp+%rWOI_a9&>
z(R}hLAfwQ;{6GF~9sV2*vd#30a|39mFk3Y2+&$P-k4C&A38u0SxWxspHs!VA&;)PI
z7Qdd=HEvE}Ob|W|&mqza7N95n(#Rw{FKV@>!wQ|WsUfM9bWQ|{UWC|!@R0No_UcJO
zoHiy}QJ89!XKL;6aQsrjg1nCEzGT+HF!1DknnVq~^2Dy0zo4WdbqqM&tlA+v6iP`v
zjn112MJ?qoId*iEVv#BOkf#}(AF|K(NBf$hYghsGCFys~79<-i9ys>JmY!+%{d4Yg
zCUBD#tK4^JDs~EhI)ipfsWybwbvM8+X04Ajob<{Qcv88A>dL~lS~-ijAd>nPX<U`t
zE(;5=r;0qGjk5Yrt`IE4nF|9oG@vU;ut;555knQFY=C=Q>JcI{i1deSWgz-w9dvCd
zSb50iJA#WK_ITp|m_EYZv98<>dn%D|Qa@}4Y$^{y?W3B|#bIgp2>LrmVudANV!IQx
zB-`Meqnmdpl)SvWEI({(UEP6^$QeS7^(0RcZtW(MEyS0g5ZHOI-<T?nupzx<F8Jw*
z;r)tk%US&>To)lbI)@MvhkoPCq@UuWDT#x#6CTM{@+UW;sB<{|p`mu_@gw4K&8FpH
zzys&O3RfJ4-~d_n>Az8=6_+`GWx^!}PkvC!r0}x4xP-9i6YJp?ej~5xc`jCh@<G`<
z>N7C>*I?KqsZ|*X57je_u?e+VcEL8v{LaV~f{|B@9PMmY%+^6>&1JOX?h?3{5Hu|*
zh$kmK(_H>V#-8l}Qg+=I{oTg)(Y3f;^zED<4s|@AEt(~v=6W--gTo4jraG_5dX);W
z7yfuJi^I;DDC_7w^S@EdBuJM?CJ`hH*M4iq2npzkjSYQ~M>6^?z+WMZDQeWo40JIn
zA6V2Cq!<OWEURmVDXgMDAtrnj9mgS+U*G;W!+JztPYRBtSf448cDq9;A`v|atryLW
zR38D?fC$<w<!J|eCJ8;$X4?^(@P^3hUHi1lNdbX$J{ooGcqWyuMq(_OqKKLA?E_#0
zVC71as5z1Mqi`TsS<^7-&_6jZB_3+XD*CGlNz=A|YEyssJN-&{5j1-;qZ-B!kH;I9
z4fGsEhyGwpiMyrO1FhySq1)m;sBZu$E$xq7YJ!m^yQSXL`%i?pg!og-pygn09#)${
z<!=3L$~W`RKr`cHJ^K;VCODX<zYHNVA+N*j0fS<|)vpyA$?ARq`9|Rt>00YQ*r-~u
z3CPGJcq()1@!^BejE&D^V`hkV&GnHy7Xk8BBKVW9F#n63a*G5Q4ucp$gvExP3^!g3
z8ul21ET3_v2V{)onMHIlcc&0I2L4@!1RE0iObaPI9;ht#jwxY6(?Qk|OSOSwK0PfH
zVO}UzbXPI4hnQSEbWvV>dnZ;+VHpr~VmABps#qB}1B$<ZZi>bOQL*uB4hst8rV<sY
z5gR=6Has*r48MoZBh%wCr!e?juXfpAh({hpfksrZkrVN;zPgyT)+KdSH*p%p%ie3U
zO1!xRDdu-MY&`cuN0XU7oHme4YECDlgm4VPGzd3_FSh<p0vkt9gfhrwb{upMst8P?
zv`*uw&A}bU=D`DHGcIM-kv=&pmU<dfrxkJpb0R1M{v?&6cx^}#!QLcpD~||0E6Ug5
zZji6g>f^@}jK1S499|W>ji?^UJHV8u7Req&CJV-5IaeL-cX<uq1GprEHbQERtTp)P
zHe4Ej)O|W08B{8Q0q<T@r_j(r8VCi9IO5bWx3@~afB}P`AS7kUZH4TeEq{FcIzPLI
zPep0WXkO%bKgX(B{6$?EFU7dy%0<b}JTfI)Mv^2<1)_6)ujsZ&apZ{vj6;$G0TKgX
zLSKvCr#1ll$@>c;-^R<4;gB+RD=D&2ot#g^yYt%YWF|6RgX4TCs%Tx{97_3Em#)p1
zC>CG>9rll*_phBC`(C^Tm;%OG;I+mlNLLBPQ`|J}!VwWPqVZyGbyWlj&JbB!%iUyk
zm2!ZKj7tz<jf5W*6N8Ha!4MOIb?SmC$Gr$Zg}*ycA-CLwg9FeCi-H=6{WGp6fp{#!
z`I@Nv*BWG4!T7}gYS>VaWt!j{ot*e}N{c)nP}*)mxlBna408uG&KB!++#l+{^v5>e
zCvC>*3PVtkWTGfG`+NmCvD_*Cz1>8v@fXYsp_tWxTY4%KW5dM))k2s8%nArVUmW7^
zMZ(`X>&M3<;vO;0MOhZq=}fg{uKISmTD$Q_jkde@QzR&4J@iAcs~pJKF0X?wnUvZ?
zpit_gQWuF}LnILplCWrAV?_)VbjZIoM=7ksKP4=$uN*Rp+yx<44)B;k)F#A1=%W<w
zGfoOEL^Onla@1BjAzpwg(`dW5-QobN@8IdVvF|}WMpZkM64Mw7G+Su`8zPG!_<UW`
z3j0r+0Bf7^Xlx?l^*82vFEI6{6Jo7CNOF)1j%a)$TKh&H&W<`vRl!q=Z_~s}__Gsl
z$Th#{y!V%mr!O5oP(>i_PGA%FEBReerb_Qcx8C9ig^`Mt8W@LM{vpyE*08=1gyFr!
zu*%)9eI+k*cJh+R8VntGaU%ELYr-8^AAuHtipq#^rh}*xAZh^6C1B#jqvaB(HlB01
z%WeB};RwMV;uCNo{|8D%>dzkzLLKsA=qX>Z80sjhl6}#6eO{HueF_?f$^_o*fN>)n
z7|u!wSeNy{mj_7#XjN%#GRM*Pm8zx4rN^XspjLBnFF@sm68=3mPXfY=Y^D&kG+UnF
zBep4S7IflOYB_k;(baviW(KFB<g94FnXJ~!d-Tc)fkeL+IUa5Yb|gGP(lAEmYo*~Q
z6;X)bL_jrMd?!Y;4m^fW%99b@CU*B?HnFw?Z7kQsva!%H{9-;h?wsmxB(c`yDBqDI
zZf(myppOdJw^4Kc+~bCZ1(;}y_PRNQ6jRn_@_9bJzgjPEVujb`h2*g?O8JVS#zN^R
z-zJ>3<8C=R&Fx|H@a5me#byA&sM8xL<&wdiqEu-E05%Zr5gT1l*9v8zlne6AC}N+9
z3K7V7@t{qO&sz(HuIq<GG=pIxEhgT(fzhc9%(@dIL;16H!4S~l$OLVli3JM4j_8L~
z{N^BkuA@!9631!2K5DAV?*|#C3_+DY7y+S38g6|l?M7UX(e>wDPA3HvRL>En?2NjE
zbYW6Wz#1+`=iD;&6-d0}lT!8ydD^1SFikwUiTY*(zD|oua$7Jk1`k9PkRSN?5afd`
z?+tCJD*CL9m*1v^YP55|9nqlh<aD<c<U>e>95d))AY*H{B8aAtL_|993zOFcl+O3c
zL(6ypF*)bAmY1SyjMS^jCE?rqN@Sj7-c^z&hR*kgc*Rn>%J&KF&JuAM!}`+IKt@H`
zF_Xn3vOy>r+mJfVxTlp+&%j7`$h3GUU5y0pi*+&ksXY@js)*z6nF&3vAR~%@L!(}H
zaM5xfP>E<diN4htJeOE4X9`5p#<4L*Y-P}{&D>PJMfJn*6DVMSTp!`S#9~G+hE`Xs
z#YTZU{Zs9jmCKBk-jigculpY1y4EDvhTuR!TT5b>dB*H?Tu2v382gHG@7<GQ|D-g*
z^U}dcEJME7a8bQ#g5r}cw}sqO+0`an7?#+4k+kJ55{Oh|za(Bywh2yD(wQ(Drnd<0
zPt(R@ZHc&Hrkdal+5*lhDn3Lov+zJjcQ8F+RI3}l^h`)!zDB+-{;1%A&zX&71>oEn
zv4v?q3Zs~K_4)K06YnWJF%)Nk*B3Rgup8X-okbd!)`@ojn*X~^J@Qtzm>!gqR0|g4
zB#XD*#*-#X|8y^@1W^IyNUPbP9MI3B<NExI#&fP7d>9)e0?lRBfmlIp;Uu6`@>;uA
zg!C27k(_@+3y=QV%7lBLr2Zx9KdfAqehsdzW$v}&aV^MOorc-Nkny-S&M&9T$n>kF
zAkS%q{ciy%0RReD5D6reDrZxr&;X0s43>hiM*$Gq%g<Bl?Z2MM8E3*Swx47x2|*wF
zB^X<OTT_FS*H=P(c>a+`71kX8Yk~EK5s8M}9048u2~8gNP7tcgxI>%@YjdJ)Csd~2
zA`ktcy*fz}VxW*F=P`&v?XCS<7@i5qF$UQe;3uxs1U&OR2gVO;2Lc4+GJOz*Bmo``
zMADpNot=1DZBbH?cHrvBD%%2dF1>ohvqyq9itsJJkzQIOAk;@$Y=wL>%p*dKbG7VD
zTfQ=bU1z>Q3KXy|K%*!=u@%o8%Pc^)QA6`;t)P@P=zESA@_`C2VNg;s;$mjCrA$v^
z>rdC!S2(IuaOwgTLR~ZOn838gcs^ux%)Cp>Th(f&9H<OFCUbEY|MUs=z+^o4nVaiX
zbuGDp&vQkQYB}srtd3#Wq$mK(>XBsD^$?%|)P@mzmLO0IYAGtc#sVd+Y(Epf3EvGs
z)3CF{5`yyKc?->@-qIo=LiY(YVY&|qk6aCrWmkhsz=U#<Fa<5wjL}qR<}+Q?Lz<j4
z>g4(1SV1Kv<Dxv%_N8su&3Z;|nbeZ{DC1ehdy4bGkR_eW5WzNJq5`q_2d<-Cb&-4L
zC>id9g&-o7AU^pLV|;l*zeZHuX-|+vqIe+XXSLs%1jWuMUw9>SgTz7EbZhN<3?5@Z
zVn=KPCW%8dWS|IIMJ-HLzxQhhM4;vSpojFQ(Zi+?O(VTV?e4pN{W3OaD)a-^r#M~_
z`5RZtoht}Z^0SWAlDDZ^CW-le`>ZR^$VASLXlSI>NmR}f|A%o-@yOSgF*;daY$77U
zN9~O@9nj8`IU!Ahh@KV7;)-ZUE=}Mm!$z}cs4)aTRy?R2g2<P6^r)fJN*Qb>0njdq
zKPGdiMo{6&Cwquy=D5-mSjs|4R=uQ?KTMz<<{P$ByL)i<99Fl4AuN?H6^_1*EIlbD
z%EAL8KXGA69uNrGV9a_axV{oI)*#4Wv5r!@-UO)p{7oR?cez*z>SO?WHV4vzd2CG(
z3X<+dP4>pIrbgG-qIv~rAArIMXO^Nb>O<Y~=_rwdz-XOgBuvvJL#+moOvyH-f0yhq
zt{n&8CC*<F?|HqvvW{A95lSws6;#1$Kg4vWGdc}nSS(iNW+83MOWLSyP8w^TiFdpi
zMwdTI=>+jnZUXT!n3|n#PrQVbMg7jW>v}j05C8OV$=`r6GxX)_Zn?5*zW+;2x#L|Z
z&rxywNPLna4((;#gPI!<diwf3^K5FEn5R|j&tbX$i#LyE&&wHS9wA!Pr^t#C+TVTi
zF&n2Vrb%)uVlRqLK`E4H#R(%Fl_;e)-X^{@{UZD+VR)_N+3ha!6tzq3>S|T&a(jYb
ziGQ$Sx=1rao4&&>snl{D<olS(aQWN=p`!vW%lS4WzBiW}1=u2EyZNfVM7TS2Kr(C9
zGLlK^LHfRZ%b3w;gREYLK|s!u(T&R*WQLa$XqHsYP)gJfADX2Wob2e+fsB8u1BlNj
zJcv*)HMq;--n1Uv6lY~Ir@fDO--AEyxWfo#oaYwqd2|=-F<^UFONSIn?K2zHzz;2?
zBDNcdC)&({ZX#>adYaFQ^eA2%_T_Pc>P8z`Jqub+RA;La!99m_`9S_h`KFW{0HC2<
zZ--wOzgzMc=p#{mCffjbJmS`U+-AmyA=fKDGBOUz8&Dg3{8x%AB)zKw0v$5$3B`wq
zkbXK>Qm@O?avem{y}r<-?J~paK^;I(Z%r8!T-?TU?H98hBHW}k*|^-%mDiOJgz$`$
zbrZl302a;!fhZ=~Z3Ip*89gmGg%v7h=!f*m*_M(*l8~asTkkeJWm~$&5yI3&J&X_Z
zGA;($8HgQFoDRT@4=;1J`Ruln43i`+p?te(HGa9_ErApn^jS&(MREb;rUxewE9eTy
z^Sbrw?Q4FqX$5VDFFX8E`%IN%CfQl20+VFm?g+e|&$$jnsHW7xFdT-sJ|yz-qP23C
zaY(Bs9#Re%NF#j~SIFMM1c+3x^TD`#E?Ofh#Ab8d&7oITy-Rm1X5Lz*5vHdofSjh9
zq(<|#$juqMu;O~A!`%OvP3^15A2I+OKTL<ORUoF7%Jy(bs&7P%lx0KD>u3jYe>U=A
z`A*cE-2AX!U}kHY0n><X5>+Gj`n4{NZ=rbJeP9bOssH}z<;c1P@Oji>TroUkzNU8R
z#`Ot3Dd@cmW#uP+E`o{b&vqs*Dw(NMvU(Pv7~U$^bS_sZ-cQN`u?oPY&^q^9bOIuF
z$s(d2tlNY!{YiBP2T<k=kSPiv5}JziZ#0U~#S<DbQ;plL7B&H=r~eVojrhdmtS{-a
z+1!xi3X$QuJQ=yN&|y<YG3RMp{`oazc&p%-XZnh3;z}r(rqmGUZu5#j6a*b7Thjmd
zu|rSKxkwz^WEMj-5isUFB1s(V7CO^7fjSIhKv(m;q(%tdhDXQIc_ta9!n3DX`6Y)Q
zoyw5CsglpX9^wQ4n1a``s(@TUQVMVT!xJS^dZbk;L|(L|`w0sL6*!?CTe581Rx@P@
zq8}J3EOi=^FzKiwvjjEgY<ngU8zRG<c{c2n3R$XD1sG!+P7PrxeKUBw^0-8`98&O6
zzC_BrmP_7{@lUivkXc<(EhX(fgL+_I{5n2rNgTC=AY0V2fSgoPdkNP}S_$#=dOwg}
z>L#l4FR6)<5n9=BApPDL-89;b^etpjw3%7g5b#o>hWptMmK~GDui@X+^_Wc+!Ac4#
zUKw<dPmX6|Sf;ol@<`q5R<sz%HuFtrQd${uMazyOCnP$$Gw!PeMYbf^GnUqqb{+b#
zDmV%Z%jbgiat}Y~Xz?vo@8pHtT3eLR#$q=?rR3-EiLlq_Q1b)dwo;$@b50!)GgO`Y
z7}v^n7al`6?$zJWp7#q*swy!gQf71f7(Y!K7R2TTx4sVj{PX?SI8~@qR4Ac`C$=a7
zgFTCvfIk)q9#ID0;%-nLjN*+pNRJrcQ4BA(GJ%Y1A*V6Ga`A%HY+e_#`3AB>q-$oA
z?TE(2eu+B@szgf@BA67m<0VNW9V1Ay+A~m5gNWh=G@Jq7uPOqd6*vNSZ!C<5Sr2_Q
z-a4lE5_KM4M!mBH6hvoCs-}$GI!y~+Z%bMg-~}vr5TyJGBkKhID%Q6L8{c5IzGD`a
zltz87*gRI%QYVK+R~^Dxgd6X%E9^9-7~Gws^Q_{5$)lRs%Lo<_S_?#=Fe3@z;WsmE
z+?aXYJ=Ze1P_|`D4ObjC?Et+-KcM;0={ReJaSS2fIYK(94I@~zZ2^=9{1~>3xmX0f
z=L30E^wfl!V>$_T7gtlB8{)W_{Z-b<g~KmKbjz&PbAWm7f?E(Fz+<?Kt(1I1v9O`R
z1Jg;fI+1;o9uv+35(upJz5U(pL}d@!LjG?SP2fg_Lt~M>IRkN9(7mufTu9K9>zR4m
z(Id%o;K%|tQ`+X3GD47qcrjKKRA}Z5CLK=<696%0j8p2;f*(K^t7707<L?Nf#yB8f
zRGNyDHC!CiC91l<79+(#0eH@%=?cYk$!oO9g!tf|$DB)6T?#ecqx}UnJm;{%&T>Ux
zXmPlhJ+6rv>NTO`Xw9$)9g3Bm=ap?5z?f_Puqpk7Dm3meVVJa$RtAqTNFF95Ksa(`
zVaG3JN3)wAP${O4f6YMJm@C#ISTuth%+cA{II{7P_AMhtpki*1m)-?w=vbker>eD1
zwwi>w=0XhmDH^XAn=R!w)b5p$(!bEpB(r&C)$5o{<V*B@NrR!gwd8sNR)A3yls-$U
zT=!8uvD0-(VNVl?Cp_jy9P#F1B0gp2UQ<`Xe`D8ma0Nq`a5yl9b%>%ZB|Q!nt{tik
zwg}?%rj=*AI0Zlj?%}@fB$9<g)f3GPK#Yro36q|6*UKPNy_NIfb1P!+D{g~L;2{}|
z%$J8POcg1AtLX%(&W0jTj|49enuiI3t+Q}S>3{L{QTR>+M(%;j5Mdd@sP144z7cUR
zmU;%}u_DkQFc+V%E5*^csPyu{S*DUZ*jrr%?vmZ&-Mab=gp#tzHO?I|xE5%sOMunj
z2rl{iqr8r^B`j-(ShlC2O<%@<(esf0UEfb_nc!oj1V8*Pbrnble$$<G;6TSxf;0<8
zp@~FjFY}Z59F>OmI{1V$xs-j6^KbO*M^mr^lQ3B0<nHQJ-zF|%!-8)|Nh+Fv*XlQm
zsA4nB60&gI*&v7rx|Xd5vkrd)kq?R;kd|6*@tJZU8&|LWxDDLqTukLi8bXDf9<E_C
zS*e?gMf&yp?2J$?df6K0Wp;?NP?nps6Po-Xx{yGH^J{cW^Yk^$CyPU~(o%fvOJp3a
z7l1b59LFf~HI^PN9XO+$cQ4n}{JXGLhqTa;;mFQ6Yco7nZO&S>Q&oWXBN+h%*A(QI
z*9BhVF}^%;zoz^MBm}dVn^#@h)hyoB2|m;qzB02@Y@ZC661lxLMc77~tPHnH8kHwV
ztMYFP-+6Gl>IqgluOMNp#FVpRA%AgzoXn4%Bd<WaGa_n%7sY7rQk6N0f%1+$`5o>S
z0cs{#1l7U#C#oM<*&5oBCz^t`O?!#D0jDQ0NX%;2Z;Zgcq4XW8Gzsq#M8fmH{4Ltw
z5OUS(4p)ahA&PRmXXZ5NKWf7-V-c3;HLlDVt&wJpV$m<N^SQ+AQLAGcF7wNh1c*E7
zT)}DG=*KVzrRd-P5I(7<h4gK!@2T6^PQRwiW?0+@T5r>S$h~o%+xXbTjfb?koiS1&
ze;$dF=URv}DDPFDDxClEdQL8{w|F!w(}Dp#q+R$<Vnzi=f@9W)qizF<Y#|F-P&%!w
zVUVtouGIo*$)j*i)-u3$z1f<JzA9)iSk)D?`fTuTyo_oN!FD<e8{#0eInW$(knDIy
zmYnZL{eJY?k`qB2ujxdHF1FiAJuy<7TCck6A5csjucu40cJ2A!CQMbw?qDBO(#}}~
zX)%tD({IUbqHksSH?+JVfCpGJbh5UA`HsMC`m|!v!5G14)@^I&aDlr+Wcnq#H-5mu
zcFH%T%QCC<HMJb;hZJD_R>+R6MlL<c*R3_u8`6EJkqfXE^1KF}oEHqQMn_Dy*#KX)
zrV~^9Po!GNX=PE_&m1jm@lZ@1xC;XanuSyt$aEX%x<2r4K!u&1Us&<bm78`7nb%9v
zVZuLSBZu-R^`XW;CQ(!Ne(F_kE+E;~A>|kkTNIC+Q`1nUYX~YIQcd6;`Y)7xur^!m
zaI)UuyA0pzMw?-q30GR3Hvo*v*&M4M($R~$+12XYam8uT#oddh0wo*!ilpH%@$kba
z6PhV)OKIP)@qLZW>`usbdW5#SbVG-G6A%+-0bD1z$EaowZE!IZM)vXc|B10({z~Lr
zl|0m2d2)-7<V~`$5Wb*90xpH{#Qoy%+gFqXFDg3Pmqlm(Jtz&J-Wg$EigNtQ*~YyA
z%vH`O6-Ne{$oheEy~;``#K&*~XHf)UaruH2&T10#hS;_Ea{fld6Ci3z=WVOg<r|Xl
zh8p<c&^I98($r4vmt_7)`y8hD2&{jq1Vv+X(x;;X<>%&vAFK967I}6<+yi@sR6Ty4
ze99$wk|5DU<3YvK{mT<wDx%M|pyN{Fv(W51u-!_Fi=0Mcjx5w~zN@<5irzc2+44{o
zHKaxa>5mW=Cqtv*1!WIRUmy3<|IKe_-a-<Ud_&2wd-F_)7cV<-XX>EUNs#*BY6NO`
zjSo*5|D+;OhAGlaVgNVQ4;;WNJ>?N&OD5)3M_2F-g>VTI1}QHsaatQDz4`X=s&MA%
z`ZVo&;tPq3fj7{CA(WR?(O!tIfOpAVFh8v-xC!8jVvwU8egQM68bjRDTRTRk)d0}|
zo<<~m_5Q@^Ve}ut;g{u;B9RxkXgyY$Mcm!bW-Ahc#WngHurr9aH3=t&0RyB2DkGM~
zhfmti*%#3bo>}2eB*3qx+5)#P<imhhMX$1!qk2Q%kd3>pzSxGMdO~IJ4-CjcA(1AR
z0GIi2jt7{pZuWbsM2|{`S}ethUt74!L(VeIKaXbxC23YXfZ$xL<JN*d!_RcR<#>YZ
zwk`q$%!cGNuyU&E2N}q=k!+eViMHD3nZO_5q}sAhXyca4Yj&LBm(uEDBsNXPs-dSR
zcoR8ycAy$86M^>WdUlUp8<N+!pZq(IhvooltnMe7o8<7zH~^8eX$)9Z?MaxU%l3ep
z!gu2ztiHio;#;!p<G%IuCn<b>55(j~v<iq(O`Kdhf#{WmF#J3?JKbosj`l;r;3=g}
z%$KhWO%iIzM}>V_XfJujIX@tf4J!m*7%zs_c!4BYDN6xd7+lvVy>RKG3_RteBR>FJ
zhX07TJzRws#id3bnioZMSJMe)A0oZ}Cz!@8yn_gplol@3Wbp}ra4I*w0W}sg(?p}o
zHF{|<o#1E%b!~}!gfVwR5XQL1SiR9L@2Pdjzu~G~;<{s>o)GWPr)!s-Cpj9~c2i&J
z6q9KnX0d=fB}DUJ^og<qq#As~rrZFgz4*V?VoZ7_`35n0lL<SJ+QWC+1U;^c5b^MM
z)@%ea{<!vvdCWq8hKG)xtXf8uQL$QyD-g+Q^PG~(aGaiq9fHG!W`$uH=zqL530msA
z3$N;FJMd2vGwkE0smv7wFML8}JJ#&NvSx1z3Q_Pba?sf!Yuc(5vVrPU*>k?WyIQZb
zGV<0|q)e+vhLOx;$VAtz!LV3(?4B`-_~CtWcl@hk;ePQl@!pPv>`(-q3e%aoY6=8}
zh@#uR)IB_7PsxBz=fSC({c`orl8>l)g=8KJO2p0=^IkM*7SX5}p#V%JgvPZ>KEPKd
zum=j=Pq$*k1`vq>jk1jv4bLO^>!xM&Z6q^_8jqe0`l&f4fve{3V5Ux_@dUi99<#87
zok;MCWZCMoW^_UXUT|8&@nf$Rk3x7XL!$g9c?$<hEwTpQvbLoU+B&BGSOh@wf&v;v
z&c4X6+1y@d9A4>w4Q!v#rZNm|+*~?*LPs4?@9y9<bVIuTld{lZAIRc<EPJ-t@ziL{
zx#71ci`Xsp4lwv9ThwOUBW&sxf*_Yq%<D_Cxt1UJTG3jX1;&khh;N6+c62`Kebfiw
zj(vSO8y<ZzTRy_g$!c3ZEB==3r~;^ybABsaadXRY#j+y?Fr-J@xdw&5W&WN3+T<DP
z?7yZhju*_aO6dN06ICC3*2EKc&i{@UZI6!`2tq#TdAB#i&q3|>rZ^T!na1jxRMq~2
zYUrcH=@mr*N!Zk<z@IMqT@ps&EB|bAQPSJkE0x)a&sS`3$9;T7_?P!1Uufb0L4bg(
z7!{pK%Su}*#;9Y-d)C7HM$p7!6nG<5ze-`REdk>YsFWS{bR8n;Do}yKaV(Wf4V-$5
z%}8_2giBQwHP@&53kgT8<+#bLc>w=|UE<6>4bFvM1%Az5`JoIJfr0KQ!#<T>o*{ih
zPls*A2;;&mc<z`(F;4+3he{hDfA7QG9?+Nk-~cvXvf1z~Trcjz#YL)(quuz^fg)vP
z*((MZlCllF3j4c)z+p~VAeps5c3_#oTMhOe)2C$#etR-St0$<rsDa{Il6HuHuuO-R
z1ySU+V)EPk1O0cLFhmQkMycpGyoe1v;KMc!4pY?ez2xdbn@jeeGG32VxcrO!_jJ{w
zQ<?k4=s}d&gE6e7<Uan50_gEAq#3qQG3n2cB6V=wRm(@CN&C&IaFI1;!7lKGY~bg$
z=1YF6mUjqL;J`T81E1ZS&A(Rb&r@aDCz^H|KV&R7N{rKOeJfN5%=ZFk!FW>-5S4hb
z!UNOJg<9Pk5wmB1qXe3q#sJiSocWR4kW>TGMtP%A2w{D20NIQ30`Xa{f2<zAC>;$*
zQHwSn`pV}I3DTig8RBbh9DXFeXnr)-k$S>}YDe@=v8W+^7$_$y(kMi+lhCHZ@9OKm
zd`-lviUDM*jbE`dhEexbdU-%N<TWXcXSk8|356QC^az#E_UxhYc<>mn#i9bz#RPH%
zEQN#W)8O^~FxX0Pp{rAWQkZE=wNK}H$(#tQLcy9O22`*J|A~joNpAKyWvm}9L8zqD
zt+;z~ZTaLidh>n%Y%3IFM*NYe3lY(9l-Z5dgs9rxlYdPwr?9MjeKWO@v*hTg*lEx7
zJmIUpVt~-)!hTaSE`&7l@9PbKI9uy4{vg$ZT7586MkPdpAy$%SAq@eQQQK%k;&H{L
zf>O^MbLR3g%zzCu#^AUkh*b8K19A7hrK<`08Oofzh&`{1BZG%f6eFM$ete_s0^FhO
zqYt{()k;f+i^}dl^HpkhgnRbENC=AH5NRQGt~W)!x?d3?JShO~0xY7VXZac5&>s%m
z9AOb#Mw)?y9gYPR4*Zk;85alaMZQ>b+D;bNqR57igUknoKIniDPp>R8?}n?K8LWw2
zDxn9vuhtYgMAqX!dcy32!ls@l^MJqGDKjrz!o-qYcJSu5-hH%3*})ZyoGes_R}U50
z>ab?WE$RZv_|8iykrbaJ=`V<_bsPw}KBB+$=Gt|tMAURSHzfM3zQF%l)E9y>)n6N|
z=oC+}BJ1Upc5OZjRp6rh^r-@-l`+_a5AvTX_QZPj%I*pOGj1Pk9R|exn*#(7R-doJ
zieYPm2ne=5u5Ou;yUBk}CVabqom^W3V>B9@0xt%NC(q9!s1;tV?9r}v3t<s%jNX@a
zI|7@;Nneo0W#TOS)4xTb&pzY*RD%ByIHe?~kdGvF{e)a#cUQz>&EMB15F<@sG_|*r
zmJqb=D<s%ox14cM@69Jvf7+iHUl#MnElk-&3Rubm({x#mK`#lax-|?;LVTU=C@)4{
zcif_dU8o&hhzt`dgDc!^%|?U19ANu1uJL<tIWPhARX_H|GW!f!Fmc`*EN1t5fSNfg
z{u~c;&|<&{vf7dkqdVb+>XEcvf=NC~4}uSP(vQCp2~3E%I-@O}u&t60yQ;?Mt{irX
zq^JJVcu|>hML_NDR)_?T4JN-;+FcJ+C9}AIFU9K!AFgn*d7&Mp?gqSN_bC3BCq|8Q
zr>m{ubY9I?TT$p<?Q_uk<nTsYqd{6mT=$c<@TKuCz#I-2E0}mVvAI37W60Z}%zD*V
ztl4@Cp|nucZ@{OZj4r2l4=e4hs%ic!9NB^3(vNht#T&7z&{11T^abP=^v<kT^9$kv
z@Cg3K>PYfk;L>>BJ%33gi3sI<Jnn3TSs<I6O$o7cG}<az*OqUEAda)g+e)k$@gAI)
zvXg$hWl>i9$UnqSKc(Ro4D1$#nImXOTWs#pmTEQS5E~dJ%)f7yw|0F~d<$|PVtVVT
zU=j>&^dI;Qz;j+pBL+0RDnq2;9H<I7dE`q3XC%j9;{Zj0Hyt=SIJ{=#!;N2aOh%WH
zFbbK|7zS=wu><~vU1O`&jSf+6_^prZl#r)l_^`u4ZZDh%lsZ1k*5L7by|aQ|$8ck7
zUz^5H)ZEggx1)1pEcWqE>?`awOo=7Kji|Ox&nV5GbgZ-unKt?GOIEZNYem?dp0!1A
z?z-h=#~)cnQoCnlk$W)ia(w5D^)<qE2OF+`4U_r#J9fxi<NA$hXA8W(sDFb*xVWZQ
z4#ikd&|osA^R2_h<LWD6O}s84Nlejfy$*je4}vEh{vN-AQEmn1-KVPLwRV<UZk;Y5
z_YFc!s)To1P=bUYW!ycAOD}95wQIVllxd6C1~H(VDqpnc|E4YRk9Lb0Z3zCK<buyg
zlf-3`E~R+RE%Z)fg=9o1{!1*z+YgszLxu1Ir4Scid)2r2J>Xn|CaRmwCEVYDdUzMF
zNq(F!?5{|QqsL9*ak-Ka)EjqERd2fb{J3~<&9Rj{eZMbzcG%hiR1#0@YZ4QOosSp&
zju=05aiY8+1pWK1BYYg=OH`)DDw-;9PiD~J>FH9fTTu|XK*8`8?hk?A8LEq)y+T}#
zU6af*p|L<uo=ty6f3gf@ZY6}~T0azLu~!wa5(!<KT|>Ewe_D5w^A6<M2w<&LJ7mVC
z-1NM7Y4JdTaxAml*B&+pZK*6(6j}QP+>?MvisQOe1l=z=gLn~3FIl38)DlROwz4a+
zm3jXSS{@T+U1gp;%j-e@NC(B_J99X!y3a|n!1VtSB5ztJLFc3~>bj78u0YK{{3ph&
zDktHslX}pYNlY*l&n%-Bsjz`E#5EMIVsgv&OclavX*dto@8&hVltxW(pGKPc6`?e;
zXbAllRbgTqzmTRr9*Hq`IPita^ImW8Xd_2*ppH^Co90^;KmIvBedu@c2Y<tcC*L2j
zqU8#_HjStbU3sH2xSG9s(1zhgu<ik*9M-!DWA(=*Q$*ClSSARQl?Np~Xz8(dSGJ!0
z!*hYiL*B3OsSC-ak2Q&z8WQ-vlXP9`{=77%ilGC96a9hy`L2_TCDvRMQQ2z~|B&I<
zahYy#7|!lL#Y<yDRgsAXK1<mOr2cW(P1)I8z#5q?f;nLn`#l|p&0I5gp#VjqcRZrh
z**_k`UKtJtTVszvo&v8J))z|NbbmZ2&yA;gjqGx;HHGcL7ETguSK1TT-7%#a&vn(!
z2JvO_xn$v8c2a7&@jen++%=zKB9Alv9HVKn8*;(XR~Xrk9S;RbvC>mEG*x4pX8&o;
zc>tS0W{!R6J6Cypd04W^!4b^`|Ef;j88z*Q{y*}3tvW>=zZXt2_584cFVUjyw<$@i
zS?Y*f#NhKXNE<<vI6kDI6DGl*c~@NB?$=N3n+`Ok4<S5Rx}!Z}u~q9Ltc{F|no-r1
z7P^{vE+!fQ6*#J9cOb#3Gb&$Xu%O!%Q-{pK?u$L#MUP!#VAJ%CAd|dbiJRZTL@o~a
zcAtze;fwlkVtQosIHhp55mzxBj4U%p0-1peSAl{jd=yoh`X;8ujhU%u1BcAcWQs`j
zCZy^(PZQG5B&=%0uo;gOv68Og{|M-Ffjgw1k>Df$SmBkm72_J=aY~tyV9;EVccHQg
z5Q`9sYU_HXX=AG_Y1UpZv3x~@*^+J$=lCI6O#pwuPpfO<!A<8rJ(Ok(kc*|Icfpt5
zR(B}>^aANy1iPHjF!Xo?(gOcO{aKvpJhOneM_vu80iMttS++n!7SbOW0fswR0*J*1
zl=t^*jZo0Tb!VT*d)AYaXch6~u8xK&VEv2ul~_1+B!g<KAUj&~GxMXJMV3|G1D4p+
zhYx7AN-_XGN@?EB&|7-|(gEjZdMA|ooPXKGSMO>{jXCqehVv*$YIUDPO&N$V3xbP5
zijGd~GTx!+tQgqFU@r}c9I^-c)W&UD+tzZWY=a_bMo5H_@gc{kmwO>l__6#i7@KjT
zdTXnU@B@0>Zk6O&sh@z9O}%1NA4KE%ANl6N3v`zjll2HblkNl#gTWV?QLDIt4e@a$
zFT~nne@}jqB09Crz0%Vn!?;9%3BVljh|Eg6UwtP*9h^{FfHjOk&5HUF`WKHc{+AdV
zlz=8yqIkX%j$c}+-i)mKPV<Q<JNC|)!o!6~5JM%;F}=GZ%=#WPjC2{`NU_;d^vUUL
zi!<O%_?y`y*bC7;Os=E(&Lzlim&am~CIY(FQo-z!dIR+%+D+#=Plz429?8c{2L)e_
zywzAU11U@dN=DF^ie1Qcp+%)FwUA`e=hSF!LQYd3GrJa!5F3DoTNS`J$vG8aa$zIf
zT9~hpfwTV{-GXMaz5)R%8SGU-<qhIMS9~ENs8Axovh=3k02c6fb(irEaVL>VKy3;s
z*%bUb(<-t}1fvqMqsE<ten?!3&R9_)eNpV;?}u$y+4V13x&zeq5Oz@w`zFoD3M#>C
zo;@G3S+&|D{W!%tpo>6YAzU9@QtrTIhy+=;Z^W{E%EEgZS5hDd0o;zt(&uB(1{P}Z
zIeMg3k-=3dDCMD5{=~0Ze53YZ1ns&B-nJ*+#eS~i8*Z-#1)L7%Y`{81M=O1@6m5CF
zv(`35f&}XJJup@1HnPw7l&yDA(3WT6_d*Z#*d<F+hVRnZKxZC#a`fNk`A30ku6kQ$
z!F)i}Qmx$RY9aBh1VWrR*|n_gFR=V#L0BB_Njq?O<YSQXBz;lTnq*GfES0r0+HFM~
z6Q19nP=W2;!xd23AlUv`;muxx)&W*S6kA-cnV~qnnkw506&Z)}5*p{_+<#E#k9QzJ
z*pJPz6D8Z{)^NhZS%nSX))gv>{5Fiwd@^8%yTGAG9xEDhG@haqmW^E(HNNPB5aTlQ
z_i;2sa3o%uJaFKfbRbS2F$>63a;8m>a?wfXqH|}FZ<AC3u?vM=jQP|S%_UXHPKD<^
z_1|b5LgII-BePK6jh-Bp9c%+|x*mRE?XdD^!cKfndLrEIwD;QA808#4fyXA_H_*oM
zAC9N!2+%_HBMhdYH^b-B5CIytKqF|F{-rTu{H)ss3{V!zGScIuq4vRLrTaS%Ee*Hb
z=Cfu5lbmt_@M5`ahKc^%oCA^maXAtL5bca~<ZY)&jh3C?FBlOR@8uu7AuHJt$xPyS
z1{^J$!Ow7Y$(M*pgrPw3cN-2l@CEqGF8ovb9q*>}oThG27K&@`&(DYSwlOiqaN@tn
zJ+SeBPrcb1>#x;%1J?*GoK&0g2l4yCs|t_8W*r^xku65~su8VQ-K_8VC)`JqAK&kP
z?Uk)z|CDJr5FiHRDSc~%T%qB;KcvNe4E_}U4OUbF<@efkm8<I1qo)oWyk18(F)JXz
zHo%xwrFbJn8Q6v3V98)e91v!f>ZGq;iu?_0fj7(9yHvCsTzSkkP@*8~+454DB+R(%
zYyr$otDlYyOG!_8`xr(-O@Dev#lNQn!mv*!(Vm6#C%>GU)BG_b(i{CXd<=B}Y!h*g
zh)zI0H53xqb2(5%YOkd)t^HTRp9kkcLUlQi#?+#|@=l-JW?WxWvqp6>qFp)DBCloe
z49k<v{z)pwxlyF%0m^6+RY|u>3#y_t)RY{KeouP01UJgYlX*}gWyo{|__o3?X=6qc
zlVu<)NClX#2FnhG;HoEoLc1l`{a-bk27m3dL?Fsu-2GZw<W7q>uS-|-FU18%3kN=H
z{iqpzJ?>O7|DtV^j)EMVMO_f`Bbg*p%0b}*;OB__6g6lMZ0<3G5SrSzPG;26Ey@qW
z-NaQz<%hJek&dQHT2Pa=(rhl{S{ZbJOo!FP*+8=Nj6V@-{8DJ(rt_;MM>B^JmVeUR
z_Wy=$5FiS~JByXeiFW4|`%7l&r~?l(9uhPknkkj+0U9*$W1zP#)Pz<bE5uen+J%(z
z^Y!Ft;X4dw6KI)fD^&=P_}hiW3Ru{xUP_(=R1pF+`va$Zp;WOPzGq;WNvcRsAE_(F
z?cSN%>XhB})vNO&LKSwE!8he0_1;wN#0LrwV4|~raP*B^-oLZb{Ab*K?^t4b$n4*F
zt>xd<QukYOfVG^jv0Yk3yyG?$MF0gOmY%ik9-c!wHRS($(t;nLVIW={vEmW)_-yVd
z(@F9qls}XxKd=3mm`ql-?7q`#P(znaxd=igz7tQQC~IfU5A06>kfLa96(Rtup-(yL
zF<A=@E{eB4TuQtM-l}y9R}4$7foGd9!;FRCS2V88;iPaSox_MKL~Kak2$WnFVQAQL
z*uch5*#6?9N$jvZf7_S#7FU9A@{8i5;v2kE&lrOvc21qJp_%k)Fx;?>88#Cf7qyn3
z4YQ$MWF5cnx_-39{>FF}O8*l9h%tp2r+8mMDX=WcALRQ;kRsU#w(mchpRhp$8Jv6^
z60xDNx|u|&LHzi9#9HKgon!h$&u%AdWqSww>h6I&0=@jkB!o40Z;_q@QfwbJ>lDFg
zpVR52Zr8K+0B@AKQX21y15dWw$kSsH+3#L2iq3x1?eeuJbqJ8>6R^2?alT~oNVU02
z$Y25*Cn1hYNa^^D=&@>OI2Ww?U0At;VyvYi8ECaZAR@^w@(7VrSR$fBU=1zDos26I
zRurr*^FzzCQ{0vi%u4L^lO8i~x<pZYz<<!EO9NHp$s}MDDH?tSJVjY$Axeqo6dBSh
z06jtg;LxF8=#nP=J_vgAZ3t~>{0cEKpa#NDZTI0huYq511_g*A=h_5vgJ`$OQ^7|c
z$`Q35e!4C7v4If|=D#_<6)He9#fnH{{*OwoK@jmCQQbr`1WeZUKnhDRKmt4-z6XDi
z`WFUs9ye|nW=q^l=080-I!{inaXJW?&}6Pkem$c|S?CxP`7t>Vi-N@MsTgjaO;(QR
z_xunq+-*~R6`~jo=9#)Ch;M+GN0Z>0cc77nVas%C>ZN1T@%}TF>p$hW2q#yp3&0OE
zTFSqmK)Gu==BzvM7YTRHIE5G9kU$^DC+sAjf~$zC%ZSW-1qEH<-!lqq@=#<~M26>X
z6kRW98g|7%A95o}rI77}&Tqs5A~5!l{5c>rDMK1|He}`M8Bqriv*UUp%~?>O-990_
zCo4(Y2ML_DzcGjR1Abbz7QxYpuBNa0rbj@nT&G1ANfeULecSIqHw?Ty$J>bsJZPHW
z)Fn%}w=b7Q^AW<Mq!OQ=pl14q{h7453ic*E8pZ?cHPjZiyS@WtW35R~m%_mzC(#d-
z@D`tT$Kk)4kzIUTO#a96Bfc{l!{2}fXIDVjXg}y`$YXJGCv_l{N*Sq@#@u4A!yqS8
z3VFfU{U(Gn@54?`OH?G}T|$$Q4y!W<>Ozn3Ibn$;*y*(eoFTiIyh*eFA~s<A8%md>
zP-`~)-f{JZ>TM}Okr^2rlv5|z#2M=2)iMGHKUb?^Y`yh~Bsj1{WZhV2OSmT@Gb^_S
z9E~I=KsG{r>Bj}3Cr?a4vuTELs>Z|Gm*HLF=axZ9v@i8z5K)d=J*mYsLey{ZQsV}3
zeFK%Om?3EDr;R^YY4fd|BpNjZkPLE`J61jnH_$q!KsGiP*-?i)61#1l`%iK^m>F&?
zr~~2~86}c-|K%^5qNM&xTQ7th`mr`e544LSHB1(t88a=E{dgDMHayTr7fCCCc_CqS
z#t)JKHg~>m4`#!4+iq5y<wvMj&4v1qse6bl^8ABZYAzSc`E{roJz4pv>Gr8<$vwm{
zBNnkIHgKXE-pMC*u&6cbdro<txgX)!Y4!)%656BE`3fIs>d4{DW{u}^0{af9zHDVn
z5EfIQ9+BRfbMP;$r>jzQu*^%@I`1Uw67*bB-}u6(kQ{EfMlMW<D;^?&tyX=rCaDuA
z1ziWm8oB20MkS%$N=09PG3p-g+$j3rK-!>>)T$f?Gc-*kBL<<Nl8cDZQaMQxIf+WF
zU02-V_C9_oQm$eMLE7=K=~b<Jg45a26p~{g_SIEIlfj4~1XIdp@Ym0CO#_%t2|nf9
z(m{^Sg1_Ky(Jx!|vL;baLeAn*VI_ObHQ*grYB7%NWnZX&6oL}REa(%zL!)Xw38JeP
z1&u>zs7RLz`V=VZI0X$CIw($${Nha;_FD8VonzzD&NnaUljLM;uKR~FJ)n8ad9xFf
z?+DLG*|Hj_xcZIF?R<}=iq^^I;Ksm>cPH!<znyYk#7F1Km@Ba30P!bsGvsE~lEvTR
z_u|6RG=(Y{Wa+8a_#))O;y1vGrViRLsFKY~E^Afn|7YU6o0$VSUUO_H4(s4HA{M(E
zY$8~#P;w=EbH=V48+&+P5i3Ds^Besm(N{O50T!E6R-V77m0P`z=7I;@3I4B~p+gPR
zOQxTS4m=12M2k_=NQNcm@r5XFISDN%P1uK8T=9|4#w}ERL=rilKsag;*HA_G2s!Su
zM;%~5$ao285*i|MV;R4i*bBguP;a*b9m3FhE(qsiMJ;iqYOY_J%!CF*gU~%fDY70v
z_mZ+#QBs}|u7G$+!&GZKo2?Ww8%C^c>p7;ueQbkuwy4RqkUdAOZ2(or!0#d@k?YXU
zSNipi6sWN;#M4-B0&;*}5dXtj`#o<HaU8rQZQN9be*hWqn}@oFZ3KJR*k)=><~Bt8
zfHU!w#6S5Z3}-D`;waA5sGmzl(opyxpd#ot@Hb%9fmHT>fBwKzzeSik_tMs3peIt(
z&}xEww8si&S^lO*;+IZ$QjcWOq+Qg`B7a9xwPj0iH8ZI}ab^35g98eIhB@ZDFw`|(
zbdAzFTdO%M`zrk?nxm)*+P)u~`4@BBJu^vw(G|2)p@W)#vs24vYhH+zZ4fZ3OJUf3
z>s&=kNh@TAhftKk=+-vg6*|_`O9$$#u|h&^N^&{_F-4%83{j3}?3V#^N7#Eu$o1F3
zYQ`&B&L+<n!n?&==37P!m)k`oum>WP<+qKE@7<Kue2oYs-z(6u#=n>#X_-Rwq&*^m
z-*ws!(p#%%%H9Ykoct$JGx%?$0s0RUh+N~@=dbX@0IDockg>B9f%beKWX(b)!e8Wo
z+9Siz1d^DoCh7;pd<Kcp=8mVcZx&9b{oP~LjU!Zr78MI>zllcN#=&7b`RWQ#FR?qB
zN=&kO_#~i&HRV4|brIL=-^sf|=vUq>r#C?Oel3xi(M2Si+dUvQ9dW~_rz*q{yHdqU
zUfis){|KctaX53RKzd5Yr&Rl#R3+D#Ndx~IbX!VB+=ZdKK_U^b{bCRFPPc!a*~pMm
zM<v7;uFpQ$AK>q4!8388*P%0hJBt0PN;4vd$>l_)a2^=f@(c;ofd&uY`xDZ`qMuL2
z<?&w8KS@v-4NQEZB$wd2>b)(Yet_&w+fZpFZ{$@-TWg(!h~=~K)IOkbuxYTxqK5ST
zdi*3!!A)|Z(!m7I<k$J0iKd-d4WdE}fnnk(`8y|<tQFI`^?AWbuQTI%{tlUZjyZ?i
z(?Zi#Jjp~Wf<_{k??eoKva!U`B^HxZ+8cE89%f(B^^@wDvcXCe;6xxmv0Uu8BK{Oq
z>amVL6IYs13dZk|*62~O)Bc`+bmxGu1LuIltep*TF%+hrDbK0`Hli&9GRC_Ku-UTW
zR+fVED@$GCaLLU!sCAUbwEvt{pzD+BDyfIe%DGKqvq+sY7dE6*a%CL>%y!xTxmI@^
zDEwaHIW4CP`_Hu<?n*2U>0E|GzwiwM2sa|2`13HN^SBQBycP-o>gWXHhE1Vuez5Z_
zl4a52qOjZ8=VrZZ10P^nNNpH%JI??S1WO&W6&h%9x<$7OnomV2w7zk&<5aeV^y_?7
z<qFQUAZkSyBCxn!!nOCzKt#-vZMS_0g9_O<!etqeV53ecgBlXyLx2%}l!I+XP&)*q
zMj<vrRWc{cufbXdfcuCVp905odE=tYckDh#lf1-iRSCfYTD`id=C}Wb$`mz_srox}
z4U7#F^TOUK-KV}1A*{2=FsWA}<MBeZ@(o8-XPs1p6b7M!B8CtwB|+h-skIZRkcWNN
zdjai!3BezuoVH^kD=I4-WJ28I5})pg<Ybv8^|6QX$KCQHHvf#3^tv$|tLV-(A>y*)
z^*wL;?B(3q1qrtoBURuK(m$@_<U?o1Ph(NJHBbz>EH%nq?T@5J$QH75d3YWiF5AZ4
zm*n!$4NMCP2U6dQ<WebWO_}O^F>S%EvKA1^*tSMREu#vpEf%S2JLMUtQAnlO!>~#Q
z>AKMH%ePkXD@e|0JaiM>qka*@K*YP$Os)2$O8lyL!w?p_$YHMEk5@Dlt>h&{y+pzz
znIkXNYic8-x07v2>xYsvRh+4A?ka=Zqb)%!DU?l`QkEj#TyF>-IU<P~R8E5_Su04A
zTxB66la1OxrHPxRru?F>s6YJjk0AGZTBOVJ!?sLz(zBUMXF?RD4KyY0)7xWGcoAp5
zdHSS~NDGoyQu{mc91|aN&xdNe4nPlw3Y_ETq<GyklEaPG=`f9+DS^1%wUXci2ziI?
ze_=hF)2oKtF}=J`Vd)G&+XU^fscYj#lWXtpro>Qfa1Y4-;4i-qdGoXmc7URm2FN5P
zxH>?_Jxj@5J`9sK<Qx;3OT%pHmXJ0~V-FyTr(Xg6o7tI^fvxuu*qdP3pB9gQn;1=2
ze!ksa?yHmdQW9E=Lw@^bgpS4x3OCF)Zx27Hlt=o3E{%FcxbJ?D_@@Uw3caa}{5D<*
zWHI3g1yT_|42meNBbkOYf{%NSt;8tx12&WT#4%O`bA=NzR*H?HMCb4%gf%=ga0r4`
z8KnHq`3t%tp+Zcnjx>XR)t<wQ=Ib3b`krRnWCFrA0+uujjv2FmKE^X?IvmLjHkU8H
z0iA&B915tMo}l*d;*xgY5@-jzFsn%`($|{JcFxw-jaj5tj<>7r;{@!8KLYBiOT-<p
zyk1yKH#$HJ_Q-<2H-W2>$C6urp;yF_#8K8DfwSXRW^zNncT6?VoIsLD={E=yRexw(
z=y2kaT?ohJ$+^X0a{&>MH`C%}MuNQ|2V`AtL=mOteVme7&uFm|4UY;K_8h>o#kSIk
zYBXXb!En^)o{BrN)EQ{9)yBA2ZMwhCUP!;|nV1w7(7yS-lkU!KA^>AlMqWy4M+&}5
ze)PR8LbqD;kNdcqcm}64>V>Ag;>q<#V4<lCFheEA-BCXMmoe$}wff$0T4DrB0GewP
za+Bo|Mi0cPU!HhF-Mi1LmZqX29b7(wfyT9cs$E=Xu#XUhQweDt(iD2}F_orYh9t=X
zxl^W5<13L{KBnsa)-Z%7{^=O%8zeljKq3(`mK1`dQnBy^)el5mRQy)D=kJj;2hR&F
zsxq!drzaz$A3o)i%wFR)(_?}J$ttGP-h3ht6*#%#B{Qah+BI#iA1SI6#&N>OdvD7f
zl9%Y@pjyZ|Q&Axssa7D$w%b@BR|^FFdI6|X5uu<u!Unz~PYv-JZJnBA7t?;o|4wl=
zyD8x6X19KW!ZL8^VDxd;)EcyWl)S726sI=cZRtkL>p?S6#{ACDuIcc2$U4oRbW@3s
zgv1T48Zc;)qD`GTNIyw^dLjjP(1p&ISHS&`0OZUU56S`QUIZuDDfrE4t%`7W@2n#4
z|5AzO$6KzTinx<G;l0N1ynF*6N)2`mrBi?e2Al}}x$h+60KNnf0#!fZ5l-o6!u?v%
zp2711)Q?wF4<NJ_vArG!ZkkqjANiD1wx<)qju#BCQ}RY_gx)VUjlM>R%IQJkw8HlY
zLkZ~n+Zl8^YD5|6g?DJ)DpEHAGZIx1d0_l2A5x=MXxe5X*CH)P>i(f4Om-MVd|Z!4
z>rn|&iS-|?$PMP5N6gUWD0WGBfh(X8%>WJKLkg?ST}Agngec&0{}}ah)B$#Dk9t7l
zbV@Hvyx*CxYy{YA^c)(i{sMoWtZpkMyW*092v$r3D+#2!#8OY1Zertw;rO-i*5xwP
zO3|r6GQSwkCb!mrmKw3V(}eG^T>G@yRH4DhO4{W3r+Ro=SlDvfyzhAGiE;Q!<aN|}
zowVmLDsq$m!1qA+6<x`0u}3-y^<8(3?7krF@OIFHS`O)I-BzR&0c9_Am}od7B;-S8
zr~zSz@$;slLrjmj_gdFXA88l}VBRPQfPDAtRHfd=F~G8w<Po+mwOR4%|L7YpsGa@!
zMRu5R{13jeyYo`GC=U2f9|b<L1883IA)({`F+p5Gcgm^jM)DUp=K%;pd^>9Y3pw*M
z*;t}SOcL(HE$RYA($s9q`P3|mp1Q!L5DOypYWa4<bBgc*AC0E~imnp$xum~pQHKFa
zq(!Kt`y*=MB7jt<JD+`mZ1w3Fgj{>`4#0)!9n&-V<mgyr;l}V$melqwEX%w<>2?Fd
z){ZyPp%pRUxga>sJZqMNzJ^yYXbG@Hwy=Y@WB}~~s=uM2%y0w@u^b~3c%;}!nnc>t
zQwp?U4R+rc5e*<a)zMj>R%b}{T<p><v635ibR;)m{thbu_`B&*Z~<N;dkK3mT3W0>
zDj--r!K{xMe8L-@EZ3w>SfEwJ_2R3AH+n%uj0&pxlBq44C4(KvtkbG`+<pujU%M*A
zrZ9E&#D{OM5g#!)!vVGM0YUP7WqD2lD^xy}0TQ-e$dOQ@wa35*0Okaedp6(nUqWlM
z9Oo2DP~|Y##bM`}c&p*+5#dn=8d&n9&Orqiozij^`LOXg$2O?Gj*G15N-z=D7{(uq
zjYw@3t<#Q;Y7eVOgTbzO$A_ub6xPC_d*LPbdGO1Q;Ut4sZ%dSd`k43B3;5n}#*_mf
zDSrg`Q59s8v+`<%=*sdBWHk`mv4J=IsGybpkrPG3fK4oLpPAjUe9-2TAYRn^73?6=
zN=Ke>!XtD|t4QJ_kA<=~P&tp*4%Q0<DwmJ_SnUq+S=vty)o8mfGvi)qJeKJj9EHQ)
z+e|cAAWB9c2Pp5+?p23hwN_9~itwEOtJAXO>MKh;D^ccgBm2K!e5vLPP@tLiicah$
zz%gTu;I|<Q3Hv0?;72DM^SZdq*l)tW981eEz`f!<L(hy@54J@2oanm+4M5^efGKS;
z$A}%q{eip^3sv1$h&eH*ER?94@JJV^z<a}-YB$N0+Tk`5JpMbMi^Ok$E~-My%xU%8
zl@nQ2US3zTMCGA)c0%9Y0G7#R@stb>FO#EfE(u*q>rbB+bNGn*RAjk|xIGm*saF>3
zy~Y{x_EL)Yi_m$G9|pvb3BD^Z$Wxoc)yJbXCuJ2oI>|qg-WpXi+{;)PsxKv{wAtLs
zt?|JWCos+&{R)k7e>5-|B>x-=weY#|HBwCg$&LuO-p$}gq&d=`FkIuM+Wzgfa-^Zz
z^pBJ0K`%Pa%gJ&ECpbQ7Z1oOca@qOigZU3Ms^Y%+uM2#r^tLqgnyW+8F8*8Sb;o4|
zkXS%L4jqA*UbUJ#>IPEF&}5NruU<<eG5l4IBd(2oSM4=JmWDK!4W&xIAb-q9QRfTI
z8lRaoWqfLW50VFe=O27Yee5s+F1`bJkuPbEwh5&@!AqX&Cm-$+FtF_E;>HE1ZB&@)
zPcsbi22FeMmp8At7#);UqnPM$#}ppg0~)+}R9SIO<=HSKj!=kT175zji(8u)$B0eB
z1jQ0u2P~ULb`dko7hj{tsnCE!&H<?Vj@5BW60rJ=QXBw{!nL=!N{_Ph8th+)cjMCW
zR|J$r9WkXnt|lBL$SNBEO|hS6Y9-LM(bjW~+sT>@L?8xz``wclf<lDVnS&3&B_1!<
z6N}4k@qt(Cv`uM8>6^jSr0<7-N%OV{x=<Gyja(cm#RPl=&6vIzLK)`Z;a;Xc{=>U5
z7Mm)4`o2gh3YbGQ46ge0xO!Nwr=Qlez288qIiH8Wa_=1$2p1KQoM9Al;zQVxsEKI<
zPeT)alT~9!>8leppXo9XL*Tmo^+Zh??Dh?ndMnkFE6~TdFUSJV5P3%8?oNU_;Tzmc
z#AhHBEZY-mqs0kz#DU@_>=M;YxXoByy1)4W=Y{+K|M-DOhlL5#QKSt(rzk||t!f1U
zwh3C$3XoZH%KjtYq@appq9qy;&<^OB%zhSviCH$caOVwSJK=nKh91W<blsDAxD#WF
z7HeN<J3`89x)9Mv#(^to)mt+%!aQWGhI!i)p?f(+sk?!nSdfF^!G3XmpX+%5#wbSr
zN;(NlHZJ{7z9^yq#B})gg|-oqgnr_u-}Tsc1aeYoB5B71dewjai{F_>O57Emg2VN*
zr|7Q#_*W?kQQ_6Jn;WwR31-O|(3)d6rp=h8{@Ddv>+gCx!c!tE9HN8^s=GyTFY$OZ
z^4q?M=Kbl_WD~mU$aF@b<>&WRmmND6-dLG~pFH4P=j1;!H<7NUpIrk)#vf~oW$F0^
zmQ3$hFvw7h@Jg5{=4k3ZUr7QK12PMD)r9epWO3#-n*{871S_6~t|@AgzT;A$0+o}A
zsp_A62ew?ZZ$NTL5_}<Z=;w|US%X)FBcmmM#dvYb2R;5Bjuk~l_U}8;jK2&mCz|ae
zNRzYTgjgk05-)kI_$zoX(!VP1IaO`K3ecv5@GE^vx8M)a<kq?z*c^Goi`k0G5uvo%
zU?Gp>&c%p&ZA=D+_^T6~Kus=*ox!MsOtBOzUUmYfl*pJ~l>kQw7X#$0yOP{{c@EMl
zcfnD%18Qmxa7mB=DlH)jq%RxZ0-H)>Gwzg*qp5-i46oA|3!F}rZjCeb06n|F9gP=D
z@w`(|*#p(Z1e^uqD@So>pcNJHViTqnUg8VlDU^3M`SYZLI*>rH!pvS%;cfdjgjt}T
z&G;Y?vTA^|qA;OK;wH#a+$e$pqsV12>cW}D4cV6fP~mZqpIsI2M0RzI?uQ8&)oi<E
zHM?;CSIXub+Ti90ZXoiYVs%J0rG0V=mcm{>i!`Wdk|;>QPPSKs1DfdTeW=e029=Qp
zhEPm+DVhf+0lPQmErjg8K30qumAO1Xm%j4Z{5mJy1&j1#dG`Laf6iJpvk;)04tpsz
zVX<zb3ZUvWVuw$bcGNMiM5<)VAymLX>97b4Ad{3KI_dxzca+V>XG#Z7y=dX{gPoUD
zmE!>3c&R6cibF@6X~-=25ADzpE{~M6Z>$Jf4CjM<yh|Z>ib6{_8M_8&eY}`KRQRtX
z5Y?j2kMNF0%7A#mKa=kT>k{&2N`Y9N%>G6CCq%!;cmv`Cg#UsNnW7lwpZvk`b_esn
zt1Fyz`M+zl4n`A;9QYKuF%bno53pE`q>K^~&!s(ZAVGyO6OhNygzaDCPFM_D=UZND
zP6voT0@`v}eXoA4wZf2*dptv6!2l-!zxrhzi)T0FW%CR{4O@<~CNtwjLz|`*!&a0G
zI=cpFD|v!wYj~9A0_I|);;LP3?<MuU(+>=I`G;k*9m~YhIjC?U$rw&ic*SULWh#4#
z)R~qSK@UJY;K3br>z~Co$@oTUWnZlRMu=@(5QcYzijp~^2>|WiBtLhK-Wmf=@?DGB
zGjc2W%6U4e)_l}*m?VuqCPDlg+EE;e>0JH9#Q1$72Bi`xgCTPghTNe+$%#`Tc3lW<
zKfsRJ1gDpLz4WsE9M}aau07=cp?8b7{oxV+U~J6DKE~{-E%+D}s4QSZ)#iffw4?Ew
z6w;2$^8rdTEyT$=lSQJUhntMVB^1Q%|D~_JRl?E_hcIG*%sHV1<zm(FGt3jq?FVJ@
zN*UEGXU)=v$IC&LEI0(20!ENv;~VNY?lvtd-o;xc$kmhn?D9ev0nlY!CO5I^PHOnD
z8-%GasTysThw@^r=Y*XBDatNTT{lFd{qO${R6Hgr>n$fPO|783Kx}KuJOi+KusH`1
zh3B{96OtQw3j(>Z11?nYD?q}bX35n(>&6SOaa9M@bQd;X94DRZ$glEpdxH<#>_yN4
z99M%#oT9))z*Rps5p8R}zOpuuur<DFOokj<GjY=fqbeD}iEYz1c(&M%gL1F-W10d%
zg<00q7uVlHGc=Zr_kcJwKN*f;;$+kk!aiirxf|(nd8a70q1CqebZA;CE7kQ~^|_$|
zp15=YtDjxp5@-sx#Ibf!O(yoQn^&hWO2%Ael%y9CMt{pBJ7TZHAWW;3RcaxUyRMkP
z5m`79d9n9pB43wjKCs8Fv(7O-pmipdgv=mEQACs`kbm8p3Wp_ahr|8{I}GZ47@orb
zA4FGk2+2PvzE)>sE>;OYZX3dLP@F|3`g$v!i<s9=a8OPUlj+n0M9U~j@^pPeOh)rK
z*nvfI9I1;LZm83RCMv`DG_&olyT}lOIx;KY{`LT@A3v_KKTR-~s6<XkQKLETF@?4x
z$;DKEsEtXiPX^N@REe0}E*5jeFvbRNjEc?jG0Y11ODd)>A1&0=bAfj3w%-F}1mJf_
zdu2b_N2$bkTcYLzqJV*6XyHf({}feLEE?!xHoe%e;7XPziyKNZnm8??j<t)2s1^@I
zm)N=S>DqC>P~W-SAbWj*g`ZQHJRR5`&AR7XVM?6!NtzdKr9itTFQcy9i^hP`_z5{4
zy#{)VE?)mOYYQ6e9LEJ8XaH4!Tc~H{j7|4kz7?p22~@n5dtZFO>5E(#Y59{jMdBNv
zCn$}C_n!c<<&5GL3BgEUq?m;eDL$udCG*_0wDHLrvcvkS7vNm3U^EQ=z1neZ7Cd-P
zXU?I%7N1JFZ`RoD@&R8WU2t_J>ehxA8+;es>V}fT47ylR`X*;u+5j~Qc=BQcV2#9~
z%EiMj2h<{{(6yi4lDI}SVgvb?AKREnw=nVI&?JWF<9haKO;cZ0gSvQNx(Mz#1->Z?
zh;2TFxh&hYyAq5ej%m>IEFqK(r~*;5V&PZG?M}qU`MRJI-!AaS2jtlwX9NILB2bTu
zmFp3%N6`F5;z94?;uG_Q?<sH-94P>(tPx7fazqD^WfWL!BLAU+yxivirn@I@Xr*M4
zj09eSzF^!j_cXI~;ub5y(@0tKP(aLP%f%1OfTG&uzf$O+6lsPJzwkqe^hd1g9v-JK
zO597&o*dTP^W-+rq~e$UB;a@5Ez~WTJ{@wMTUi<XQ~pY7FfloWBLbxz*$5HfNKlxa
zd93rP3`DdFcIADv8sO!ln2Dv+H69mKW_SgAhp_v(h4z>*U5t{B9y5a1-DPvPD3eXX
z@HXx!?#ob&K0F}6cM9kP0-|V2-(-CiBpDB~nLbbBjm`FzM-U$ggc_fCpX@m7Ri`?J
zbVYD(>_z2MDg%llSFt}B(bPc0N@nWQy!fZCrd9+!t%s?B6#UXO?QgafM1wT@Yy&T_
zo5&jTg;Tu|+)(L32x*z#35><6mbfLPUXy>59dYqfQ!@pLsmtVg)WUc1>%5Kc7q?4Y
zd1FbN|952jk+wrK9hPDX^1WgN2}$ZYqXSCpbDt_<vhoP$8)60W2`MqdbA)8gk(}RL
ziJF_7whe@UTB$|F`CE29{0f>GPTQD?M6(fNnPwnEv_>{zY?YTav*H^nGp&`s2?v|1
zG%DxE{SzCatXHXC-lXq+ZKx8^80Cw#%d98cTCH^#uZad42+uwmWTM+S+@^@%-BzwR
z;IPv&a&s^n#Dnz2yA3z5fXKMh`!7_F?W<_B5ZI{bStM$Z04>P80(&}WltAruPDm2^
zP-9*Z!?gYh;zCYwIx^e=OSlbYGdch&`kNeu!;pWI+Fj@5u%J;R+!$1&Q6d3r%^cWp
z8bW-VJ!`!Nl#%h>7V9r?*jjWOl3}=PXbZKIpad0-x>4h8Flu5oln})oA#^oiKQx%b
z6M5He*EWH3{+8Z)<bO~y9j6b%0hi|^zGfgE%7a+DKBX%bPy`^E*w!{Z$r6gTNqkuo
z1xPXgAp|ImT@>wv)EHkH5m&4Fj`P95fIhw>lkY{#&&@{NL5R0-tRXSOMP?Qt*_r$4
z4<*dN9)uFJ3>4MucV_B0EH(NcOVQEvJ$dA4mfnZA_4)%pB8Qbb*_)<b*XBr)5!LIb
zBShs`C<d`-_%2|O3Jj8^0>YNNSgQe2iYPS{`J&mNJsCNrn9SZk$!;`Bf=n3vJdm-%
zm}6v<r?L6+khhT4vXe<TEeMvn7oD-SmS^^EuRw>9x<TfE%z9=hzOdB*tQ@Abrec-C
zwc%USX2WzsYWI{R-3fPNsKZZ}q|T7}S&xfJHk=mGfs)-UdX~X%>hos&#a_dm%d?W(
zD<3MRS_-O+hf`8T)4$dyUHFN&#bN)HuCMem!R(~yv;Ou=R;Pp<#^2h~jM-Dgm-l!^
z#TYK0!Dl!C$rL=<BT;;Q#1T5>RdG>D(o)ZP*n1G<7ndgE{;}DP{t(lkRuUH~RFUGi
zF2t?5%=yDh8qz!JH%YgM*tP|W6<>%2hI$Ez5{kEnaVxS^LH*9;BKTDg7RRE0W@<1#
zX4q1(Rv&lE(P=FX>Ljz4qW&PgK(<H19SHSlLl|O!<Naev%0!(VJsY*nG)`DjdTK{P
zP&1qD6#~J>8kzI#{uHl;-fJJ1XCEK}?sb$v#A{)CO+VY)v_`bjVH7e=!_2Vp#{x-%
z`DFXoOR^B=u4>+8&}(eee(`woWm$ZkUZKoBdw6PYGLK@2EIdsxnVedT@mZVnS%iEV
zn-oTsCn7-JM%mQ+s?An%DiaD3gj%;vY=_O2)5bZ>7U3nakcd7r2ca$vO=A<kkX`o3
zzx;&?f<a#-gm0)KCQ<&W`1vlu%1<9jwtVsiY0(c_8<tG?808t(mK`*k+^qkVcJdSW
zij{TYa5ZyDsWHbzK1d^oN$yoAqU*B*Dzvzn+MsSmL5TwZ8M$9v;cKRyR=%E&g6i+C
zc$3u*qz1MgDT&OtQJD1jSoR|+k^CImL$LrB0x)WjBm)^wj^P>E@)#D;-BD0}{!)if
zbmgiW5zra_SUVq-q<cpzq3N8~$RbT@nm9o*n{`3o2Obv=S9@F&*<3|fof&)eFkLqr
z@n@chPVpVEp%-vvFryaRSyOxDS38h5Umm4?^td&ozsXKf`+y(=#Eu4ss!wUDmZhj}
z06M%7zG=3g#$3_M!r__LX?wiDJ({iMAuNh3u0*3O{W&*$YgV5so-lOVB3M9o<%B-T
zJ~bZ~2WPpsV%Sb`Q_UIVl3z^2phl?%5Hw`N=0AmDvwyT1m4{e4+_^q%d6M4XCTEcx
zxExqVf{Jv_pUErt?JoY1_kcdl4hKoKd$L1x1>j#y>gME?$DZ|8sUPZX3t${5=}=OA
zrY4IYjX{S+BADceo^6<*xPhcGF8cjLKl=7phW4^Pu)YAgOZmxq$9P9}{e+qzQXkES
zt$lswRBe_&5drIZih31Z@V3us7->bj|K4lC6a_QJ;Y}zOEC(FSh=gKO9RKh+KM?H`
zsSv}y<0jxJD}Jlfd_<UNH^6@YHQbgw$wY<actK9ZH@PmR&_j(sh8OMz^abh}j{bau
z(`Q8BEQ&>;Dnj^|f)h?<Bi;ym2|^c6U)+cjbS3|i%P-;9ivluO5}bJZ&)!JQtrs{t
znQxOXGFc#oMY@dGT>*nJZSC9$p->DV(;@Yf9{vT%gOP-q!3oWh3!6?fPdjwuoFxCq
zZ9IArJwFV_O;*mj(tL4&Y)_yb{@i#foA6@Ik0B)n*Q?Whsukc8=S)scBtDNzQO7hc
z)OL#FjVJ_;G2_(!KE~pe%2r{4T}a{JC!GrovyPm^0?cII`zT0W-jb=q_UYfP^;yr!
znuQFkux@~)?arXF`4QBxL~GoR5igAY?GwXc?1pg*B#R$?N8_)EdPrkw(&CUrg!>FE
z%u6JhFd)=3ER95L{;QeCF1B_QOI+}j2!AYA7wiNL&$Vh%do`}yMPSY_o)vam<wIWx
zG9VmxNfE8G#?UU_K3gmwz=orMT&zRG>C|`c8NI^-P;j>pqNGrx=p`ghgMs6Xlz%uB
zWkPsiUPA91-)ZYZq&0#&8Ep&5T+_0i+;1BVxqY?N;xPu5sseFUMP!u%z95!-F1k2A
z_by=8Hj%;D(yMh0P{{lmpRTaMOv-{Lty`ympM6&{5QL*jyI_z)4*#-!3VV-UM+Q4s
z7EMYx>ibra&t`gwIt1vTF!2B%!~z5|fmn+g#bBB)2hI%F3VOVD0)8G^kyYXrV}pcc
zx!&Ca%Ba@5H##N1+R(`C8k{?4@2wr4+eHd7Cgv5(>QhCsW4<Q4LCpUNldzE+W~-?8
z89?NJ3(PB2>Dq(;^N_l8$XAjJBFoO?1oQS<macwAX`#ktVu4jbHb%>2hNK94rK%8W
z>lb{K5c4J;+#0F#R5<Oo#sx8Mpw)O9#60K`>RZV?y~KkrT8u`xWg6~`v^}q1&Zo>h
zxLyipDP9Rgih%{F>_CK11}lr2a}AYZ-eSw1gNvge2&<gA=mM=n3q|VPrNNE(NAm{~
zYk@tYT?kbY4MNl0?(U;@n4OE9kz-b!oqyr|g0LqYZPtrbR;Lu*gK*Xf<%=Ri3F0>o
zDb?O(r3p6*<Z)@e(unm)_Jt~TZA02o$~hKm$Y+wlAeC7G!X%j>P&sZ~zP3bw>6Dgq
zY^dulX8#x|tZZe{vaRWyr!!RIA&>Tju*JU${)Z&1q(sV_QyS)yk)Y;U`tR7uZAoYV
zTM;S*Qhv^9XS(s6tkjV*RPwk~PXVie@SRmc6KP>GP+EFkSxVbQ%4g4eFp$$wVSw4D
zxj)wZ3P*6ThlB9GP|+brkRItM=JMlG84^*?92BAHsSI0#!2gg3dwRHi<yF*Yb59=w
z{<!yw7R+0g3s=}!Y38vhpPRlGTaMqn0VV&txmF5CyFn3<#$=2O^#rVfkwu31PN8u+
zLJit5!Wia_E@yWXoq~&M%SL9<y2bx4jV^jyUV#cUs*jFhE^Zo<5!hfXI%C}|cM|gz
z^6)SdtQQ2Z9jK6C<lU~*H`(IZ6A<PI#Lx<K;S6jNP_d1}=#WVN7J!x!=z+|?PLwF|
zE7U8G{(b}Uyzwn7{!Me$Wo|R_=~oUIBn~UEF+m@A&FEF~aJ%Gk5QnXXdK1~{H<HZ%
zSAB9MiQ66n@;lKdKUhv8ue72ke-`Uz_aqe#?>J%7fS&AIW^K=kcNJ}CpJ()C{fMtZ
zo-S6GU+&-+jW|FnfAIu*tG~3%5KEZdkfEO*q}u)9ictR+b1`nwLI7M06EL5pe99{<
zJmC6Ae1V6V-IR7(MUphrsK?2hYIhX5`?+N@7FE<4t1eI`37KtF7GsP}>x&o8e3OlH
z%1T=Hm<U*171WC6*J0nps~z$Rk3l9<VE<Y(JIrPF{mflclUiegh*aI~Cxc+3uZae4
zg4{!z-j^(On?b&x$*prsf^A@xc@a*sLRTzi9eo=UEd1*!gV^jX+`*#y)G$CHBf~^2
z{1YZ2Y?nH2@3ABO@<{Yb!7YJm+xgsKzGxI$_FkZC<bZ2<8p{WuqJ5?qYpZcSpE;8|
z&>s*bg_e2oaH5yPT#F{NE&`wq=gZ;}?r3=?am{I5xvM4>^GH=3%bl_Z-)2<x(`*J<
zd+Ib(mUdYTr*~_`{=dFEQk^b3VH*A6rknRE)$ZJQflNC0uu3gh7D(IpfwcwlQ>#I-
zC%qI5#%BjT%D@^fjKp;>sQBW4*S~;smHGoiaL*xI#;UubQ?A<DzfA;Qa%G2S_&4|f
ze3eYvz2H6H1@7rCCb(rMqSm<=P{24e5>NC7jRp=e;LZ;F`JRkg-6#+g2dCPaAEmC~
z*5wrc>}w}eS}g9r`@~>co;ZG*GkpJfKKtV{2_CHf<CjX<ie5!m8NFK%53@fQ<8fiK
z${g37qQ4^P^V!<tn16cy_+`eg>FnAn7B~9)gGx>CG>Ew2UhfW%1BJyvOfe(jL>Xjq
zYwRNldf;?kyh|Ksyo1LEQSlvst4HZ$-CvEV6kj>b%L)bnB8msS4m@q^mA=DQXmJu9
z{NZ%|x!S_<tbh7SEM4DMKRz$Mu0DtO<m>Fm9~GJtIO10vm51%(N3qy8W(Vfs0ln=*
z4#SMv2?%uP&A(gr_~91aUf{zh6b}!j{>wR3vuZCyv}wj-x+v!+JRWprYIeeZ13FJr
zgg@m$F`fTleW4mL8fjuvN<+m*6b!%rVKfkoK*h~>0t*yA9xdl%ZuKIlLLRoF3`E1P
z4llCm$AHu{8kOXrT1u~H7(Ehd1rQZ>2}h5V<|DK)6h#%0k@+MnDsh%+xoq7+S@e1F
z1;B$pDOs!5thqi6GL_b1E9A{VD#>>R=0*5O8ZL>;M9~(!CSC$R?PNXw6#hI|lZ%J>
zQ(PjqVH&RAiI{piXJ5G)9m5sVsQNccrk72iwk8dE{jm5-JLnIpw)bpHVAEih0dRq>
z(5FUU-D0l&ZS1Bd$-Y4HrVp(}6cqglqX;AmL$CCD@SOB#5QJj3ZQV{0<<;l!e1U_Y
zEP@T`F=`uqkL2bOXNbOnKeX*zP`I+~E|tLrwT<F;OwpY(vzn6+4(u8dms?Z;Dm6H=
zEYOa^q;AZzO4x~#;mTsNINP<^q4b^48I=vQAWh6?-<Oa20VIveekd1AQe-p%jRX#f
zzvNAobU}&lL!FS}0ogsV<irz(D@th#uY%C2`od#ITq5I4-Z2<wx}<l8Q*C0Xp-Xf>
z$FJ}JgftX;)s1+L#B&+~rOc{m(<QhdK(wEY#Gq`Y_&b`r)jB8<Emv%Tg!_@74@e?>
z;_JWS=9LyzGph(kD@<DF9O{ehZ`u_4XnAG7(yxqj`0uqA@cXL5nLh@9eMti^tZ37U
z=b`Zdw}6OeIK?q})H<bA;K#W6NBuFykTeO)xP)90ndXddY7LG&6ni_qtpEz&R(CYt
z=)d)7;uq5H06t@Xnk%mqHzPEzZ3#N9QT!hHjdz_f*ssHW|E$-xa|j|DFjQ=(E(6&S
zUk7SOzU}GXcM(uR{88txG*!*8r~2+2h9rPaZMFL6kl|ydG{Xc7**dj3FduNYKsueB
z)LpI`a?8<GSFOm$yq`YVpuD@3O20Zcm|=*`wLV$9=K&c^QxrW;%C=PUXz}UsD`($(
zr+F?QKSc>fL-<H<_6om#ft3GFe{2|Gz4PWJUR|Hmk$P5+pvYFx#9~LLAt;vcBifVs
zVtq|LmrIC|$(9}U`k73{y|}?8f8iJ+B8z*w6DvtO(rmG1FDJ3e&ka#2rjJPKd~`I5
zNpEgNM);iCh_%kfPFckL{)Tf5AH)5P9sq0w9x4n;%kLTp&sxMzzsBOdA*}_U9qRC%
zlyKwbbT<nvR9#;)53naHfC@w5>%>8xNakN63edXT-=hijw|I%EnZ=j8h!2@l@b*ak
zPalEXoN^lQ_|y&fOSD-Su!&ugyU_QHf-E7iLTsBlP7f`qzbH)|?T9Nt-?*`H*X+C{
zuWhlJ?TkM)gRJeV6iani!J_rm=0s~mHUuZ_LxowvsKY>nw+X*IM86g>`Kxm+&GV%l
z^RB`|q-DdCu{ape9o6Cb84@3zreKFv6I+1>!hikDo39@I&pIpU<YOj00mGh?X`w|_
z3pbwz2cS+fH$){}mkWp>@Q|MOnRKmfk^V?I=~&Hq#R(Sqn>0Dy=?L}Va`Ba50_Fu*
z%;{PjEKb3DfJ93K=t|lzUGOD+)|@EV3>b;{HGE@IX-wixcD`PieOb;R6=>{P{uLCz
zafhT;lx}7_dzijQ@-E;6yhU8A!*K`)84KV_GCi@qJ-)!zOb!C~yvCODKXQ(mNOuzl
zYtPD8lys1o{}$JVhrbGAHTdKFzpIuQ&E<6Kfd+*rN+foEU!$S?0H&t^nnYR^qq?}x
zmCXyXs$;pM>$~jzcSz_1+Ej9ZR9PDyYH?c$B^S~dYU>SB1=RzHl5XdiVFWD^(DAmE
z--;t*;0ed3cXVFwRQPyD0LW^#loE{xAw4Bd^*$1Ry!a-A#A;WuB|m0=xB@92YFz#I
zDAwn{z!PYkUzZLJj?q<dK4KnBEhEb9^zoyxmMO+?T`t(Md4X^vvs(0HV}h6WJSNVJ
zAG9bnQr@vO+5IK7KI``IeXiT-WyzM}YN442kX@#SK!xF)*iZ&{)Nq;C5D=0ilow#@
z^b%?;YT7tPHI)g)DUu1g?R2S`NW4J>TLRzT-8HnT;ta{@S+7AvL*cLw`3mQW&*W9W
zp@N;~cc=`EL=x-hjwT<AZ$QRJOHlV0;n85vMPX-_BdtKLMblyfl*5d`&cglX^XZLj
zKb9ZMc-XB*x*)54Cy$e-mV;9KWk-MxJa;VZc<_zi8S}^_`1pK8Bcfmk_cY||CGPFz
zcYtCN=gb#4R)Ij#-RkD~Vner!*9IBE5|Z}V_?X3k>OmUAgn;%prGa#p;!G2rh_9YV
z3VBEl01uzJKDNSZIX;T)>}Zk~e^tB#{ueaAFA>9lR3}<J-pSri^i?=v*pVUb^Y_Kt
zzqfxN1G4$Y7fML>zk;;C5+h{~r2Q1R7Qq_;4SI999HvyW?yBoQ$fWY$T7MGs-yXE=
zNhHY#W64ewUa%E`XYk3|!yw3$jlPF>Riz>~-a#L*6C{34F-@OnU~lNxqMXT#cvJ{?
zi@R@I_mat4FN(9nR$M{D{gI->4$-Q#kc$+wz_pnq)8z3i@4k7Zj((;^V1lcw3LxH?
z*qq;8;TrJt3W(Di!hOLTIvr(q{pmAq!+83w(wbu%$=dpdCx*y*!~|*m0Ho6~1ZhAJ
z7G$K4d@LR+jNv561AYYGL<$LhssHdmX=yMBQAyZspjJV-t(RNp^;gXGi8lI`#L}Ls
zD1QNBr2}&BaZ@d1daeVclODp!tvP8D6g>k(BeWR}hoh~r(b*h`@e=ep8ArJUIxt+n
zHr%#I{16`*FNE^y`1BH7M8UuU@T+|ijVaTXbU$B*(g`hmD00ZJq7o`6)%EmFiU^9Z
zy&e7YKsee9tf8Wrc;^<`3gbX(=pc<EKxT{=YEqH(4_Zy}!3yrldb_zGyHHJ;v*z}#
zxkP%A-5tt3f%p`Gn@|8$R2R|@VU?jcqEv@1{DL?Ud4>?~6#UA)n>D;F>HqabW%L;F
z5q2nf>~Rl{JZkuCAvtSfJ8MER{5;Ni3BO}t97skIIQcQ-TVbC?ASOhz>;uA`-i~8H
z5A5l8YIKiNm>&o&xiHipG0I{lG?<N(%R!1u+yL{slyPTB3QSh0d1rrh4qO5etl>Md
zzgL(bJb%8(b^Dex|3%5$<^M<9n>4qvW@(y##m&m><_$9e!AYXjJI6p0BtRfAkdk&z
z5F#Oh00ILg^55mEtQNiMs!i|0Vv&|@R;%pZ<f@<de1p4#R77-?wN+N!dkMh(8_xKi
zNxSaJPNklP)bhc?3p$Vk@18hsHK;p(95n94Mjj&K$Qy1<vl}23d`E6DZc7=w&>viX
zhb9*y{jd&Kr}us0D3L}Y^Cbz|lY(j~cQ~Re6A|^aQ)#3pcFUSp3!bdJ2y2z+BB6@u
z3~VE+OzvT=f@zp{t3rJ5-m+ac<QTyyACL}p#$@V)a=(z445~hm18mC$wmYY`F}>ef
zinSMa!fseObW~z!+Z%mK823<-IQRPK3<8kZQ<Q)@M4?C7V{e6fsw+2p9nFj^Xv;i?
zR-|{tMkPP&SRIH4Cq!Vtn6b#C+71NIGWJmb=-ch{8hZ#|CSDCaXH@G80$_0hksNn}
zo1@E+Qza-iew&~%YJ=!)r``=KwA)i?wLjDt3$^SkcYpCidgvDQ#SVl>>_PH*5FZM+
zz(?;PUg$<<QvPIX9(fK2-~bNL7Bs%{eevu`B>3XdZ|6VP+fDXEO@~u3rQ&yRQjt*f
zW^GX<=(~H6jfFW&4xC!z6Z|78pyJ9t1};yf$qmcH7-ls<wq6UCgf6+UDv1~~D^2*I
zmI4+d;~%f^nxgi6YqSUC@>O^XTii>Ta4EqE!ob0ap&><!MwFy0xq(Kudt<{7^25^Q
z(yVA{ZRKOr9H7-0AQh43WX*dTMwlHF;CSmJie-R!-ui?eeG)SK*7Fd3(92t&Soh@X
zT1)GpGX;7^QVfMiKGCfXgN7dbmZ+??Z%a;a#9q^+evn4Y25U#E9>0<Uofo<XI?XC@
z0y0G2>sJrN%X!T{GM3YGK<*vId%3(pN??98g}T@mk8wM_?%@Gv6FHTZ1VJqlb(zQq
zK)a$oWW63hP$#aQLeM=VmwEiU8q6mWB->ap(m`Z;&~-&y#|(tr6jubVH7mSCIDl<{
zuBoyXsKgHH1m}zF7;SHkodX5W6+5$jh4`Ox3BDn}^4-yLko^ouO3;byGCe=V%|@}c
z03;Zkw+`R1oc6b518uF*9W^@2&D>RKXq`o1TuWzKOGDiGMsx|+u`4(4+Xv-DD$ka1
zuwA!|DYT^N&Ps~J55`-tf+C0Sy(ia#j^VW6Q`alnO6Dys`H~aRc$avCnq0TMm+*Ur
z!)a3_Y3nuX;d@;ECRoTcoGLY9+)$7BJgC0)mcazi`4R<<Yk>*&m~l$FU8iaN1JN_@
zWxfC)=_$37@Wvog<M%Y5rjv;bhBz@wHVup7xAqJM@WEuJO?%U^(iwz@adknuYRNh<
zrjF>HGzvw_G^nxc4^^72W_xGk3DYvDk$~ooNb&!|_ZSikk=LZOR_0xhw!%FsRRWu~
zk9Z)kjAnv)Lgzo{RKjYw=1{#Rtg-jpzm6x4<0~K5nRALf2oC;D<vO?Alde}rZpZaH
zZD%)ylifp^^Ep~UmTB$cDnE3>5->U9FT+vEHj_>xeg+8wQd&4jLbPZGdgnNPm4>Tm
zM6*$wHj?o&(I|C{Rhq7xHg#lt*R>=(q_aQKM@yU@%dw&Hyt!A1KBRbZH6bO3&IsUW
z2$lK7sNVejAe_qdXet@=hz0bU!jV1SdfPl-Baj`DXlz+($V?7+Ipyg_=Zn4|yZ6jB
zRCK0k5&qm~ECQyutVGbFo{khrPD<Q%i~^6LGlDzxo7JZvujbRLlWeLUs}jqFuqoSL
zY?pjfAOTj9I!JE#g79|zo(lsL0mdX0pf<E|Gel}}3a+^@WF5T+`BgnzDtu;N;kN)q
zpa<itCTX2PG5yBT1VI9M1e+TyL|M$>hjLc8cVcLBM^ZAQ)O@sL6#+PsA_alXp65Rc
z3;KkV9j>O!AGo*i&lsYlfm;APtyAOKw120626+bcCSP+jfzhTy?#b#!`qQTgeo~}J
z?NEulz!pAE!}TeSpfe*W48uo2o0_ox76nFpJMvl$eXgEg<OOn?ACYVbE7|YHW@qHX
z14qpzxZ<x4_RyipId{Q#)%{ZEH($Gkq=iupG<hW2qeQoNt_ASBq(7DOddq(kHI)1E
z8~7<uAk<+C_=GU%Q$p#;j0+GAy$6;<V_X0CSG2K9%<j(A4__TwpcZ(<!FU2k5NU3>
zZ@gVJGKH_{HC>53xQpUIG29WD@PZmWZ*JiyGSvh)-9l>_jB=lWi$YRH0R<b6CbAg(
zBGT3504xs_j%OEfd<{~*pqink>#l3(v@1eydZUD}H;wBR+Z*zjrC}f7_3~N)j@4RZ
zX<qx0GH~%wCO>chxr+ke6m|pQh(Y>2C3h(Oa}a3?uZ&~WHHtS$4-o_TJ!2DK+bEQM
zKgnrW=%14RSlxUs5ISg}D1&K^YGM27chTwKetW(>M^+Uug;M+t=h+eg#txkG4x@sb
zjD@g<)%+9zOC<UCTH_DFqhyXJ=B{>g((YcX#~qdU@}1D>aQ$WfI;cMMT130w^DA;S
zGcsDX;7r4imS?|{i!dM;jV665m-3q~g*pH>6Kx1eM<@aRG5t=SBA<es(;PMFKX31z
z7xTLcRAF%<{){j?Yn;@L4_OK066_s&M8}Ah&+imo{IX!qG<|GCEr6#!ibuHTtLbDz
zG$kQM@ZjRA1YgDsf|Xp&=J!5~QD6qQT-klYs(bGxB`suXf!U)k1!Vl*lTWf*{NY_P
zym^pCNO%=(Ol3j+!W4C*c?A~UGX>roegPXt*f$&6ERhGu2sKUkMD59k*-uCJU5RZA
zjglUM@FxY!YKT>{ahf*HnfA`K63Z(<8bHF#|LtI;GnyT_OKR1HWddJNZ1Il8^Dde=
z19vfN5a+DY>gXT*>heN1#RVz$_AG2CpaZYMb_{OYnWk;ow-eW!!gW=nSd31e)P>u7
zP#&bB&hKuOEemqM)qGcQKfujRKCoBtZ3YHXIz8<2uZ;ddWL&^^97J40Kby|Po+b3!
z8T~YcB<@wCB+=m~s7xO7o-jKRVm*di3cX7UcdEZ`$O6!JNh3G{k|G_kK(@yid=U7Y
z+`U5QUfJ|~0vHEc9=DLwvH3lqOn1r|GLk(GEw-%=EfV~zFG8GHSZ=_|!8<&2Tp#hd
zn1!G`utsl)#B$zEE@~y21ZWm`kubW}F2@-!82GcH=;8DMH`-_b=2EN$=L!f>Sei*U
zU+C}E8*gMa9fI#16g>b@@xS+?j3A#D)Y=~|R)9W^@D=9$e5`Y#1_84bE?X=f3Ma%T
zqC$e%GSYhO(EvGp1-NLek=tynipfOer0D?2@(1+5x=Sd5Z6@f$Sv6TFE0>9cQK!go
zYxY=CrleK8j82o^)mB>#wQnZt@jXL7=MNiY%I%{GvEoT+{`|$~S*pN;xkHxb+?-o7
zA^?(0QFp0^uu9@;83ytpQGw{06HcZSWA|BL_6FwvEpD(6s4pNaN0%g&u?aU`55m%9
z41<bs8DBC?|Ak|gRAyKY_5igZ_>g42f;lym8%oM2nWMl4YrzJ5+;nsS(t{_FZKa3n
zUz2q;9>}rA+B9eD?L9drT#v+mq!ne8lr-AffIN|sON_~}>GvOm2%x|e6(^{USiQg?
zd6;0!t=1&o5F&(1v+AjY9!3#z7;QLRy8;+@cPJE3_!v+@=_uA9FJe#)=SkjNw~O+q
zxB#5LDK$r!Y(#_cr^D>&Vex{yGEMNE1}}@*T{gp3SR@xGl5!mXC!m1z>KR<b>o}ii
zMYC&c!p7omOBxhm7>))n<3X0pl=>~aBYIFJX#5%{zNT>CZ2Iz;q*ZA^9;=3zL(Cj(
zl!0ZOll;x|N`KPjWB9d(5H{A=eZGVMl)8{Tt?I$Id)t}aPgJG)IkY%<c>aMk$B&7u
zwTUyh{IQRqhe_+kM+7Z>Y-H*NON$(Au0|RpCJjOtW&6M%ssO_3l$nTA)F5$U`!fuC
zBpb!I4e}?4g}-p0Q^`OeW0gHlXb$SP|49R=d^}<nAl!m5A|H|1Ggzv@lt^MmmdfGv
z*P)OevCw7(gteTHh9Uf3K``+=1chY;#LpXE$Ozxc0tXBu&O=-U33uTsS2>EK8G5v;
zi)~NVFBAICP9CzEW4upzI>~Z;L&`!jTF<t3f(PIRax0!mCtOs7mrI=CL*X&2Ea-YV
z)7x;y4-l%I`QmO-dnOp>>{r+W6Oap(AB0g+IBd&vtPCvSEhNEtBTP)Sj{`+24-xq=
z-%c4EDmm&_dO}EVk!_Y|$z&;b0GsN3a?AJQ-vNlR7{A=2;>7qfkpX4`w)sVqPM*K)
zosC=##vWhi^gA#%5`j0Qe>6)^6MS(okLZ?{yj0iKWp$xvgONbi0hjW7VRe89JrbM&
z7*<K+1<dXNs+v66seRA@W#rJaE@TjwNjI<eh_(flE0%4jwWEe<LNWQg7)~xE1p+n{
z(_P_eaCr#NEy6OG>?NpJ>bwz1aP)JP+en;mLzD{#tTnu#5dm;78&oyF1p|;+YrPZ#
zRBsv7j1kdn^0Oj};1g;CahN)Ix2WN-5<j`Qs|khFQpojXVwa*f`LRSs)~wx+SS+^{
zxX=~l8(Qx;2R2uPxO>Hm5v`<fB4$o`?;&=!&7773my~{2lIv=cep&?zD$-iY3`w$O
zRya))K}Te(I^*BWdw)~(_+Ufb)eW)SS@6F|)4-bPB8Vye6vjQjAqNv<6l<1v+B`X(
ztgBQdR?n)*RvM&w;Y2;iC9go;0+&4mZa5}iS~zE?H)YkkN}AdLbfPdZxEY5LalKem
zv^1S-$wcsv&}DF-#(SV#$OpYk99XgiyHFmbVZJUR6cT>Ng^c4#$afq(E@qY-%=Ie8
zNTO^flX<pXu1UWwCN#4I;RR@dO@$*Wp4|uNm<B}n&R}Sd*?pFLAz1gET!Hv=;W9eL
z_kI`Ho!NRheb!6K^^UxT8}uHFVKw<lcNnN?qpUNH4Fma^E>ZnCp`&wAy0>G%-v`XJ
ziK9o#Vd+XoTLdU^4%eeOMZ${s5=>(e>sj`sCh9`1_&`%}dCZFG6a~HO-Yd)lVNSWu
zU`qc2r86U?Cl8Rp?JEDburCOnn8A?Fb;GOQ3`&#%VTR|w&?)O*+}2q%ffGvn3Wf+B
znMewx2^>YLJBQ5^ksB##a!;6=cfcXH9Nn!7bi!dGTyZKlvr4mZWyb@kA^CM7PGRgI
zLr|4JfRz45_O&|?I18DSq(Au~gw8r4pK(UVX2p}7x$)sZl~v~*<-fl(8E4Nk5Mr=J
z0Q}7Nz^GPk2pvR3hINu5wtf-%wXnQ!5;KV>VYkpe3DJS>(aB@4!&Usp?R;U)F+C3w
zAH*2yWlyAQ%`+#ej1Kq!9Bd>hDY}6g+^P-#2v?@!c}|RA_ryktHlMJyp~84^@w&){
zQuO!bo+(s|*~>lUPtklTJeb{E!l6SZ{TksJ#t}Nwej?uw>)kIYkTNHHj3QMk9Q|04
zZZ(zxI}e-^qDuqLXy`u~XEu2Bh_Opdd{}>jiHeSuf(W_x6g|l=PI{GL<-+p{AOm^X
zoDRpDmo}hxCNKADgcS}F>&c{C#@yHK8U!wT!A9`AW0cu@4h*b4WW;jxP-04f%3zRC
zHh0l2+&wKAh)0kx0DDHNrscNeTw_qVa_8fpO==c0Of-EDEmI!=ZL7+5ipYo}!b~33
z5oQt&DeU$#`3^@@cHxW^lAHkQWbTk5b)xbxodydbxtXSc4z|q~qvy$9MB0+|Kbfgt
zdj~I=$C0>;LDXJ6h*;Nf_%*<{RR!4JC*W}N#Sf?3kI1O*E@)LkDaWH@24zh2dP!66
zg|#KrBCr77yt|MA<&)~oq3{!(ydt+<NVhdzKh$cyiec>!U_!+SI-_5uxPd6(yX2yJ
zHd%s|s`#}%`Ho+N`^vxlKtQQHg)j4;Qw;2P$$7O80g{Y2eaB0f)kN*u3Dw|Wlt^hz
zEONA_CLBpTAz`v0u$kjS;74B`Y$i)~N~35945qrAJ}fXNf-vHk30Dw99DG3(RD12R
zIHOz+i(m+4DkKdmg+(Ac#As5*t8~wB9b!fgE0mnce{X;g#ZBs8sJC~yl+M6|rxq9m
z(h+(!=Z?@<y-2k5EKDzzlszt{GpLPZVbHHx(t66~K@#Y<@LR8UmNeBag;;kl`+-=z
z<l?{ELF&jpB1z5ViMsrNa(g5`t<tY>k1!7-jf0jZAk&uZ4o_<nhXDS_o2y<WLY;oL
zo^`;z>|JmukCS4x5#EnrL59FjRy*S5=wN^Eh|41>KeFw6*Ol`7dJHte09#`50U_1;
zkC?M-qLELe%B~cR;1WAiok%zgCH&(}_D-+^Plm2bcH9=ewCXX(4;2iO2Lq7^6U#cj
zlNpxp|CsBN$+pRP5NE}upZ1cA?fRYo94Za6znd~UrA$Yx0bqG}HH<csI(Cm<xRSvW
zk_sfp%P~A7kP+Gebvs295b1y*AW;tdHPn2meKHm^;#>usx)I_{&|{r^1TwyORg+it
z4NC(1Ksf7F6~>=;JI>Bt(=d1A3>N7JB*vPx`xg+rz|%-qcZ<S7Kv`<mh6VV|Ne9Ye
zq;`kR&x6EZowz*oNiw+5I^yCuY+Hl3x*v>HjFd<eK1jZBf><%!WY^Wzu^%$nPH0IC
zNGgWjxYSTtg-y96&MFk<NyWzC>P!07odTg#1akd8{c_P&iVzP%+JDjY<#A5W69X~{
zZeJdz?rV@|e^4tNJwL_ywxQEHX*T1($RB~W$sb894|)*xNozIOYH*PbD=tyT?_ZH!
zw0%931vSm2TL#Ni5BsFrqT2RB%kv&4f0EV{He7%}+~N7J07a=y-A|m6W#S6qN%0^g
z)+6+iD^)|gxj|nCEIaDD-FACGgNO^2RZ(Ddl^{?N!9;B}8A1S&{t^Tb_b+YGQ-RK7
zAfkA|pS-DpT>zv)S{W&oW?8DMR^Ug1ytsks9hR%nV<=|e(S!$hpDP+^lS8Ip&~vmo
zYvcs85nH;P8o{FaLn4p0PY?-V{{!LjKv<bC@jT@}o-bY|WGbk*&jMaL<m=A0`+}^J
zno=AUW{2ydX0E?vq<EUGN4V!W0r2{{NQjEM-`OO2q${Wx1v?KILnSl!fU-dfrL;$?
zd)Gi-;#*gFLADasg0GKzt1R*s50D>jWdKlhCe(fLgdwpbFO3tq?B3akG=Twz46y5?
zu!Z&%Cr9MWR7T!qx4RfP+V#puWMag5f!2szsFDe@HB)DuQ`rId?yMSboPX53z;C#~
z6)QZ9#t~f-u-n+8fHkT)7jrUE&7x%;AX}KfG~&l6VI#>^_0psj&6$bn5rECthQtS2
z8eUa|{<ssv?$n5{9$6rx>KXkIWU9%j5LCj`^%EsAV|OFV0)tY)%kW6rpMrQxZrrP`
z;ZEO&KVd`DtB#rV0=SJJ3w@~5z{cb+k*7^GijrK0b@A|mP~h-Y=18aysOcOt59dI3
zzp#6vS^^WK34TmXqaegsKlfxQ2#)a!CAE4OEa$CP&rI~0VU^)9m05U?nRgpjN3NnA
zXJLzLFBP1W#hHaY)shfE92*d0{ayGGW)C3%HFTrPw$9i6MDK^hv6wdxnQqPe*I~oa
z%BMZ0w{DfBh4Z<Zaf12*1~TGs?PegBh+mBdFp9btCK2s|_R*-TwXV59FlwuI0b_7!
zMW<V0k{mXLT55{HI~l4ZauvFYfK;Ze$HJFF;eNnpyRq6R{xFH7NL7~*%g|jYV1UU-
z&P)h30I<-VOFa@Qbks;{PXA~vn15uoVw6!}fnVW;@BRVD?<w3I;uC7;sICp7a9=59
z{0F4K{=^chjP_^8_L|s(kwv&5m*r{sgLP{6!UD(zQqX-h=FM=bINTkm-0KjlBQ10#
zjVNDgyLxcNVtC*Pj)L|@9TNfu5_8pKx?JiWRA1X-a{+e?`@_2+L4e_&73;8+Uz?_K
z7<~&q#gjlUL(sW*8BPcq`9!z}hv&xZP3=NHG_R#@1$H~1s-Ai6&~g5X0T1O~fO$%>
zi&jFF^hZ^kr^M*v>3%%KRJ<4(fw_$wD@Z=YsX|Bir~|6Q&WfH7<c`em5CVDtf79C7
zH(>t^^5R2YXt@~f`)auM0_Z^mS7L}iQoxI%=*~453uP#!Euq1(+;m2A0zDX*sSS|-
z3Mn`kJnF_z#SJ<@{#c-yWFSU5LOvf+*nU5~6+8w^PG+uHTK`2c*UNp(f~BrZmLY=W
z1|T|64E0fnIXN=51%k?Kr}p+nZo&3Gd#2HlWfAf<RIVRwAcRr8>o5REc}PS+R_2=Z
zD<;Kt5SUEPM^g6*rmG}hu&rT1uhjjc58)655u>#l+Z%*Cn#ac#7%-&r20u;M7c;Nn
zcdBY8uCO=UbctQD7_`q7SmA1GnR29TFdKHU^avMGZ`9ZSFOL?(1N&HAuUTG!pNW!a
z<k2I^jS8(=+W`5fIw)#u2|IPnzx9qS5ep(p6WI?uQX_axPhTnFfK*IiDZGD$u!1-h
zW-OJV_}bI=Ol+d6B<$F_O72fdUU3)`>0JQV(z6xV(|rvFk*3h`uyia3&&8s1WKA7W
z&!#*wizR0P25ptB0D?NF8TcP0LlN0M3V*cPe!oEncsx#VV-P-8PIFmW3#c_uG|33(
z5!Zp|Jzt?LF!51)E`=K}_1nY&+<F}%cJS<ww1%p)a5zY|p~~D&QC*kqHQc+RD*ov0
zhx^F|sGR~rxCr>ei<^Z`4wsPxiBsSh{!Gk`fg-#P```q<N8}ZWslEm#Tu~QTA@xOu
z*eMc}UppTot~dfbOrbWS(Oi&7w*C#QLuC$58Piz6?qpAiE+BM2?^&Ezo4i6PK-?0m
zt6&REAJ>#r<Nz?J^#=?S<dnZf?>K$3(z8RX)YalUet97pWU0jU4y{W~z#x#hj2MjI
zjbPh#hUc`D?w%1OcSns}5)HK~>m??PKYpS=V#umYYImWia`MeIJgg!cI|iY6E=*4%
z47N7k_2;Xqv;ne|jN=XFo;_8~_{xV0wQ&noG7DbYz>3oYLC8z8*s~=S6l9fA838aX
z5=LL&6Y^wL1r{asW=x^SEoJ6F5AopP10*dj!rkPk@U+4)(GXY$YG?8?nFIa^)@7EI
zfc2Dg38Ec2AoOVu*TZZ63LOrk8AakBK4zbO&}85gR)t4t(aB&CN9H8?6a^wN!T+w9
zj5&8l2IQww&v|Yv5pF{%IX7)MdAJAJR&y(&l1cZ5h$i7TtOM+`lgnN|yc)(qNhKHk
zuU`gVhot&+Mi=eob&He%GHY;$Dwtm{G=ABLxVH}qmW(BM^h3N3?&opxxfAJ{UQ5qQ
zGDj>S#C=WmJgS{XuQ|8+mjCnxO=g>_&qk_26~L`Z?P@XXWEQMWyfdI)PX$d}&<Vn1
zJ|U*nQ}?dzgLI9LO?&}2eL}<WC;|XtuAUB=G8UQKrje1Cj2<U9is^<WgOq;YNHAQD
zn5yX4L@^Aio{rl*T9bol7^uD`0BXrb<HV4Oxe(e%l3vWREoLlQ+}rxjRtbiX@6ZDo
zsGofX{EK{37-G7_OhPn)_uedIyRz0#gd#vRNcoH><*iPBFUMRaNNvi16rnV^hBU_x
zOJ1@JoKwUjyt}YaNPRH9d&H)bbm0S?|Gt2?j#7L26Ep#Rh{Ah={2@9b;Y}1gGqMo4
znoKIRjoIGvuX@Ob4>)4xMUzAkUdeJ124XkX@^BZu4IamAW^po^nsfkKk8hG5P#zCb
z>x*cQ(AA1$#jqO1YWhCJMUnvgN?IRbiH$NM@(Xm0(g>cT4Nu|0Q(RvNp?n{1>wJm3
z_p+ROKv+Yj=D6@O*>d{EF&gxaoPi4CL%-3nO)VsWpXKxTuYgS;84bIMwm0J*$p2HG
zE>{7Bqcm+KhyM*q04vi35y^<W2*ecdL<+sxkK({rG3b1WbsrcWPhc#=FXqBX-X~&e
zJvksr;yxlD93Pi}V5$93uKB_I5!j1k5G5PeF(DkoqJyE_<E8qcEvfJaM5F4)Qc6oW
zVS#FltDyMY#f_dYbhv5yf(VfJw#orvA~FrFvKBKk8A#G|g!}YEN&D1_;^uC#ZmgA^
zfKQ-?Y>b+R7{edc5T%7Jy&iAz!<aiJ<lF=R*)JHrrd!Zf6tZc*K<V6b_i+xYYgKmU
zhJM&PLToo@i+eJ5Y$fr}LMW-nA)z)DEppYax85hQPN#K-ka?yZ!Id6Q3I>;Z4{AZf
zT(KkXSJt|S*IA*t=X<CrrzQvkP5B(-$fB};5mLIM0l9cQaf?$z#*{(~1V1bVfixhL
zy(<M&se>aBE*8mqMn3GOY$4O9w&-OA9ddwzS2^d8+2j@{xJMnb|DDTk!5+v(hieaX
zDj)<l2qMfe2_8D>CS}49kMgbgS~}g4G=;tZW|-y#9J~%p27lBfBZaJZs+-eDRM3OA
zItm&g;Qu3~=;(uCfLOH=*^XEFi#pJS?}1&Aok|^C>$4nH{=ZAdvpF_}4w&{M92R~@
zLr;lY)DTX+9;yI}W#4IqkAG3ON6p%3{?v$@jaY@IqiPP`SC_dd%J$#>TAo*xYEIoE
zQ5GpeO{?aVkmY)v{TADfB1<E>xF6(u>Fe&hG<8mvnd<owC9Gn+*m61~Sx^9M7CjlD
zxE81VQLlSO*Xz=jccx?56KQ!%c!I3r(813gP-)C8a^^5;ciW<0pa=5CU~2Pz#Z9^p
zaG>_W?!#ZB)KvD1j-P(lT%yf_{pF710RbdpnvFCfS_#SV7PUxSVz_ecorlgW?Uz#y
zB&E|13q_-=53W4lmA_1VY;M0c0$`8~ELqIIinfyFVd>Pwkc#LU?$=mO2hXWA5RTUT
z47)f}Q^N-Mh}-Ua^nGKfA_mV&P*IGg=cna~S3AMLpdmLs4>juOD{Zl<fK{`q0(~P3
zeeYRE%dV$({DSrEJ-aNub0*63<5&(Q;ZI2tCKZ5Wl5;?9d<fR7*Mou1RGdM!o#TcK
zCDxq%yJ$~B$oHH(Kmd}|!gvxpG{r8eDt;|ql%}CE(}6XTG!}<=k#K@G(RsvRXMQIV
zKFf&<Px-qOfO(mB?Jt~}zds&GRO)MLgI|A1RpF*(ERsK8T4-!ZU5UJjuYKA0?DT=K
zlu}=9EHyvOQBMWm6~qCWT^lrlSSwtpYEjt~{vxt{Zgq6fK<oqjdP9;8n5Nu(-R2Vb
zGj+l$bW0`hOIS^6PE{fT_fR@@I&+f@366=FFkurr+Jk-_CX5L=?J|XeiyEMPha(LX
z^Izc@VfVo56o&g=(~?Iy?M9wL^x^3ZdbBsgPQ+?^ggTH87&mT52*U!0@pWu!qR66Z
z|1XhXSsU6NWk7Aje~@c~9SXU)8>35sP@129Wx3!l3CdjdlLmQ;Gze#wcbhF=d6~Bn
zuT&r+-V9xSCCmJ#IU%&$)s)nN4YeH8pBX&mzg*?ecZG|SJ#@pNRmziq+hpyloM@zw
zAL%R?Q<T@7?g#PpHYu~yARsB>Q>vwUdgM>b*XlB-AJr%j%NaX_v{b5$Xb@QCFc-u=
zI6|2zG>D$uR<#TrxkiUzgGrN6c|#$&6AT*RIMyD_&+zOJFZ=%yKpyvTjBLQ$Cm1&B
z!~TBMitqE}$T$!ky--LVaHhaOm_=zX`L*K8^s5ch-hn77P{Ub$nJS-aht5UBAnJ=5
z0L<Ihp~{*@>l6V^l|H&H5(qpII?BQnIc=)58+l~6l*-*Gn+IzE_vh8l?daGIQMo=t
zSxgDj#<tL$-p-aPc?fL|uK=>s!uPF9c66hH^jaUi6wWVSlFV2cIG{1{Q#e`;_tjWg
zUvxCWaiH16({zF0K)e~Ems+7iPAn?w;6&2Tl}?vnG>x!wNl!|V|LGLN@QNev6Qe4z
zx6)mCstle?0HPUAHkcQ_kiYeB3n&Dk=O1KeA+Co^uG25^<RzKnmi&g<1d#qf(~m5+
zU1U$!f*itgl3QOTpbpB2Z>q5s#qYW)#C$hMJXtV+O`&UDN~>vek-dy|_XW7p{EfsH
zqWfEWo0ulFFbU^}gG3W`L1E#D9cP)^(3j$M05o=5^?sLbV{9}ZUQxJQ;sKqs$9x@b
z^mIf*0==#KX=@-8*{=zJh>=gDj_KZbUV(fI1fVU-$Af2t8{|m<CZpr&IlfnN2hSKb
zPkA-wxc$4I{YY1M#-D4LJ2%8o6ml{LqEiY}p+y`^-A>Xc$3jx2aP0BawRBKmQhl1k
zSL5}tzz7tjJxZ?CciwZ2Cqd~$jN3u|ob$zOfcL6iaPh8^!0;l7D3#Hp2=Nk`r7JLX
z@{#@(h|DX>zQRrUJG7S^CammpKE~(`qZnO97>U{2gKpkbpDoGkV~f-|g3g`{PS8N5
zVSZ6)tCSbHSnDQaniUSpnayFP^sAz<cyK|HQDAEhUfszFEi;*v|8>GqHXDW9yY{g=
zL0OT|O%-<$qSu%7cb3WdK>7N^$$zKcjao9<R3%Q_?n%whIA&mqdpR6H$<|6coBtd2
zL$VM5ZyEaXL<ZUH2}eobyNHblFo$N9hK-aJpD@K(BdZXFecHJ&O!tz%@?SQz)PBU}
zLh)+yo%Fknev3I`%uj~w{e<8mn|S*SqLx9g@dl-Pv^!=MxR+<$bEr7Xg65sY$K+?H
zsC1ZI_M3(ZsXj6?<Do^RF38%uPAEBR4XVTcR==!ztCndtRejZuwC5%uVomVCAmi`~
z(M+^%05s8cFH=`<!P6m?uErbW{#wZcqdOYerM+goVzpj&qP^~rBO;xcJuxn)o;nV#
zGcc3huoBxkRkDp>`{q!pZupu!!U5n@lh8$92x|9`Qf*EDFiWQ3u=<<DjOjp5>a+jr
z2g2W6W(yGft>ZSF!IdcsRN;(7S{+ad#3eSQ{tI@-TX1}=!7Ly=fm79G!pfVAhkl@t
zqqADAo;euUafeig%Q>LO_F1ms-_kQCD~T;(wsiX~&MfjTSM0YVm&V>690hf3KWm+y
zp~Q49`DdsiLgzGCUsW;tt4>NOD6*YnZ}C5aUIhW$p#K!nhbY=9?i1fpN(WF`@E3wy
zKujs4JXLEhbqXW4L6#yn7fmIC{mGSCYQeTJ29BqgKM7@tIXhr}p_3kN^}%C68xW6d
zw9y*WK?S(QZpafy!4imXKSTg%aR}aE)j5J>-30D1-d2QMFn=(k0eYf@M-vmY0wr2}
zGl4C(vNM)Bil@o%Xhx9JLf8c#W0Q+|-<GAGcww~ml5}3h*Nfh!KR_j=M4D5=!BzM3
z=eLhVy2xr*9Q?$26b<6iDf4bo0r=fw`;z@OAV+GNfy3%e!PB&!PBl<H6jerC)EQ6u
zD%Oiy2sn7hX!9WX_FZm7bqwPy3pc{P9KJLQd_#CC%&UfLFAYsVUKG{De+`l*32R~I
z88`l&%E;m&X|=MLCjKa?4eeoK7f8nKlPK_c&j>}PC76Ls<=Heh%&?Gf<6dbzbcm-E
ze*?Bxq|$OSxs}Z=dMN%%R*QQja4W|_l>tyM3=>#CKLscbET+w%t)NWY{HHhuHxRqb
zq>st>N6Ta7c%utDVcrG|t49K#BwoSDARTU*m4u}COLHs2`#hm~u370~xM8<3R;4Rh
zV^ej`S_2j52{AdPbk|$z{)glTwT2_`ILcl6m=lO{e&;PMFV&$YQ1+JI8rxJCj?Xb6
zUs7~{c4V6F5iZKT1(QOfn2<1TPParz(B{yar)41tx{J73DEJ|>D!dKe568pPxFzOh
zfZyW=OKzv6a;`W3mr#Dpg0<rcRR`IG;wG_mR?7D**?`}o*oMHDgg#zCn!2kyjFj6)
z?7BbJi!VQ*84OvK>?X(x_D7oAh=?6QmA^7$b+P{Ugxld2gfG1$Wp!fXQD4d0@E;C{
zT-4kF+1M7;m0}3&AFvKDjz}T*C2(Zw$j-53mt0n<a++*0+bgROkwyqa2N!KUv0-|p
zktew}ac4(%T5^67Zs(Pqshd9FfRt`(y+`wF)|<?AH^Pg$k{#3aTT!e_nOEMP3tAAR
zageMvtuT4C>AssMaOrV|2kN<n-;<)8)Jgjh$N97#PX*LADH$&gfhe-0M|-0bjFj_{
zU?J;ZSfl9BdH>M-ju?vAo6ZHDgX~o`;oBNV&*po=>M20mCp781#t>?vPc7w2PhNs9
zGf0bzai>k76TlN1BnbGGv<a2L=O9`5j@;ba4BVfdz2QY_`E<hY&XVN(A08kG8tN0P
z?q^%|5Z#rWwpxm^ap`h}5*;<p;?;oXpvoZuFqa6i7Dfc_z`gJT@xgS2U}<!j8yW7L
z`&6FDU51PdQp(9S^Tk<eF!F-nAXm%4=hXbl;wqz$ncEp^D<RQ*P4h`l56*xHHaao8
zWN4#A<7pnF3`aDfl}hRd!xdL**vF0qZt@PUn(+EGGf#@)4Q~Bn<(wfR!HENqNL|{@
z(z2;UaWQtlTk`Y4*b-+ey-4}@1u2nRUV%6e><dOsgoOkO5!(?LI3aD55T}*g2Q~B-
z#OqQFJ}UFf0=iu#0t#Q2%tbopcj5@p9<PKwu1cA~WV0Gp_Aaa=9teF{m0b1sKh@Mz
zx*GZcxdQFea~*qt`|%y?w9oOS*3=(UEFQZ8U~cBB5y0P|d0Q8<v)&L&K;hdURSOQ&
zb$BVcYQtWYkahEz*arU5tDsmk9+lyCzQ`5^XREsVB2(78y8<8rACM3|?;ex{CN1K*
zO`;Tz+^27$q8j5&EhZMX7ah@J2^WoMABe7toc!j+D47Pkc+K^}_^(7_kt~7Ad*p#O
zha_Jy*}e&%ntCV7ol_%1q;u%TQx{J@3dpEc2>O~%Y+=`UpTq8(b_o(QpUY}rS7m}2
zMN|@F_TWA<NV}Ka9?e!gaOh1U8P=LuK&m2T*2d|PP_?zBxm0O^o(|mJz~yUe4zgPa
zx@+)V*YwL%(c?*0#56N(EgI9Md-Vp03W$bXlv=JtHMFkal6lq4LzRV~LE@Z&b=3;z
zYwIM)-4(9JEY@lhQt!M9S;fQl`@kN4oZ=FTAh4QD@0KRjNAuraRE>wH%98%+Vb%Xo
z9dZ<xDIH<l-eK~mR#JMbsjngh25Mr9;CbA8xXSR)H%$nzuCzWXGPBzk@xRvKjN6Ge
zvk4}WlQ029d~c&dbm63B88h5Gh3N><I#TT(5{bu6;y5WaJ>#UJ^BCD*P~mRC$mofv
zvlGiC5Jhnt#hg24{1F!igY8-I>1obakcE#o6jT+8RGnk1*cRl7Ap3^dpSKx7dqkr;
zF)4ZzEeLE-o1vuDkf|U$)s+_D#({sQuF-5TG^wBf^ce`BNreu?+3d1fSxlWKMf}-t
z7;vx(VYgPp9<9n-2`u{hk@^z}NoIIoIcyj-8v_OHSSa1wW4VtC#FA66%C_GZIDwh^
zV^dYIkV}NHRkY#~3DX{a36v4;L<)hH7Lrv@BIf)|odSSG*e|eJhq8sVpkSS1F|#p{
zp?#N-0pk-jbKc~B;KyJc`DH^hD2EmrA}ojxv=-EdMkDQrTD>9s5&<y+vnhDGxp+Wn
zME=o42xX!n(gQ@#7r9ggStE%Xwq*TUFzMYZl!SyfU<gTj#Qov9byD(N5jBVh{gt-_
z?-)5p;Ro?2=tGHxocpgB6z7!z*q9nuEka=2x}KAZZ@e(|b1PbeQ3Zp7)K=Cc##5a?
z3wYw3$=G7NU1Y7m3?CH}2DIf&qomojD#ED|sru}2=%A8bfnxE=lAa)?;-O4gE+api
z!tz1%f=%|HRwAG;!uY>J@^$Sbm%$mA|4Myut2R<mF;?(7`L3=1YRKgWH#dTMhnNU-
zvz_X#yohE2UTDw`=+Qwb{)E6g2isXls?P~Ux+<8Y)cPtFmljk-!tf-AXoVco(XdOq
zy?*eZ-qbmz(Y^pw7y@3cCvyCCOGW8}Z$A*R+ZZs&3XvIrX;f7oh&*D>xHcr_I3usv
zx5_aqhY<OLNhmggO#xm?)A48!sSBaFoKuYNl6l2Bk`vJR_gmMe8X<8=wCcRxm-wbc
z7+BuPaAKl=+db3eD%X~22~(Mo!Z8bJsk|JBEpRWzYKHN9T~SWoDSN1q&e%Q1#5wUw
zEDs`y*-Uw=67sl(+hv~iWt%MBv8MvA;!5d7<}RsYk7@LH_BMW9Z^5ez#B8nj)Zqhq
zi{pE!#>?)u8RX_{X=d7L!U@xLg)#>aL{Fm9mnoC#L_CEyNyMPHsgg*!1x=E)2Rl?R
z(iw$s$%)#gic$5nH%--#@O*zj7({K}4EnFPu3FK*GZ9SJVL*?y>=SwHMjg4pB97mG
zBoIoLZ9xtemQe;Wch6JY$|X*IZeIsd!*LU6X|_SFz#G1@HY_UwgQx^^?qKXlV*GoP
zjFw*N0U&x@YEeFgHpfqzmVE?S350T<0jG>#hm6r|wV(~0@lcY$`M2?yX7t%{A@-fE
zM<i2SE4-o2GW!ic(l_j2Ni;A3gcTu#oP~4tR=khn*DUs6D1<eN21<t-WUou2#;3!j
zqns`NP*)Qz8;WFUcflxu*03m1I1L33SM<r6iGJJ>lv9#y(exg<%rOU3LD4)_)K-$t
zqcS?xw_^8NkJhXkAY?ieqWH?J#?5D%m-<75<IHVQ5rBE)G)z!9&{h#lH%-s!XD<k~
z0t_$NW!bVWaP00>`yuCnKFk)(>esoe)>pH)c&PV4yGm}cJTw`{bwP<zDB@A%vvS&$
zM1=JQL^;dlC{MPqw|QmIu^BXJyIL0Fiu2T)b)i`hxmr$=<blIG;IB-uFwyCpd$Q8i
zW=o0J74RgPmceuA5JV*p!-K9160FI}ag@HX^m>b2M!nc?p3*;33KG{RBp0dzg}<lD
zF9eoT)2RmGJ3|Em9p#o?xIi5s?F4=$y6cprEhrZP!3fX+kx2<i&8RkL7yOLapjCFL
z(-Fy|L?#UOHDkldHB=`1yIaa1lKSwf6FAuJ4`HLsm|XX9b!3EHHrz=j*h>)0VAN^h
z9*19&GJv_{;(MwV2<&7ROOJZZqor{5FV+KC`NX@q8K}D>q<u;s63LqY&fq}UROy21
zQMm*!`euD1WN%zL;Z4m25;h;7$A92K47j&NfETHFXmw6=lOa!5-OV!-!bbK8o!`8{
zn&Z+jF2&xk0?6TSUY<66lhfCkB6wJAD<YG*1;Vku;RES;h^fz}3rv5#rV=SyY;Lk(
zeks9>>Zk)H-*KuYYm^ST)-=Z1K4PbG!J&}<o|I1^@yM$lkpnzJ{W$p^iqI(BVPWhx
zwWD22NYEx;Z(1&jN|}F7?^T!uhQ`n_3bHJato$(-xzGtpZsW}ijgc#f*~2l5Ga#SH
zH?J;ftBUE3uc9>J0J7B<vo%EvHLCsox(E-&M#O%_#6!24qzge|_XU(@azf1)UYe#%
zAbALCGF6L)N-L<%9TABz(QDMkqu1CV{h-;A66IgG$!NmZt@<T^gniwToDujv{4>8%
zN8I{4`{ESpWIuW@HWvxRYN2?O&k;^=8wxI*$$q$<zDrlwQrdJdbUl7m@U>mB9_Oy2
zbr0Wm2`2tZHkqW)^UB@cm{$>2>e9z@lF@`%Bq{L;#%!%D9QjcVLI+z_&Xg>Asa??i
zSvjXhmM{4P-AhY9@~ZFeTD+K^?3p<IuasmOaa5N)gTA3Ia)K+0%3-(ybMuy&S%8i>
zy+XzR8d5?rCYGzK@k!}})P1aemeTQbi?y1sbD|eM<0iz?7D*o(b3)rB($<PuCFw~B
z%0-<HBgz(&t05+<8RMyhGVIr9w6II?a<ovC%thNle5JU8au{WP6#43JN)4+P=wx>)
zjuDG7`BkbhkG$KH*|nq7oR$aKl6K$9%yTe|rwH^qE?--t8N5{zX>-S)DM>>eFN8q<
zSI<nCxalLkFBNnOsemz>w?m`BYS6n8fulicmRV5{{7P=o_YH{#GV|I<DvHhzK&Mn%
zt4S^x4B`TFMLlU0A*F8XMgPviX_AN4Qa{X5D<Aj5;*5)jSx6*tO3Ye_=!B7Si~*WY
zf4-s$d#r|%bwJQ_L^~W4H`A$?=*kf;1f1Vh5H73_PprnQj5DZ<G}V3wDM!Ap2UXk_
zVBR{wkhHFA?yJy+azsf15?#r5iu#=Ma7&@5B45GbA?#YDY-fy6aZ}3XP^UATvWz0?
zM5RbYTqM#fLEK<i<c5cemL(lO%c@jnRUr|tc;mW0w;!eD!t!uMd@?FGI%XtVnADPl
zw2DM?*>@8rbD3oiReLVd{_40`!&9J>x&cZ7@J2S%`-Vwi+hyPny9|TDCdt}`mg1hE
znqx&piCtS&o9nw08H&QpWKz|SN(t((k}JH3LcMnB4WSejE-J<QSAeQ`CHc{iq+`Ao
z1I=DBfcD8oXuUz-3(7OyqJ2C}k}G#^+*k2`h#-!J&B4*`^NRKsM2MywFsh&pz`~W8
zHnne9SxP~7IjKPNKMVkR>7|Jwx|W4F8jx(KWDPX199aF+dmQ>#+!_`otp_}a_N4d+
z_>1WXA=j~^SO2n5$o*D>8cFf}+PuW(YxXhkL&gV{AQTLzeUjIdO5Z@VX(Qoattg2(
zP8vsN3saQo+{NPFB_}CQ1bLLqsplb+%D~=At4#pS%R!Sd5PCEaoRH8<;zaF`Y@vNo
z_FC_zoh}_1`rY_Fs>1SJ`4dog5C)xQw{-1d8Ub<qp!fLmxBp4YcLbRyT|HT40<AxJ
z5YoH=^3JKBC%IVVPhpdq_~?E4+MretL6*>AImbcn*m_}GiYYB;!|RN&KCpb+IH?>r
z{{Sk%zi*vMHtT3##ojQ&#Q6fp{EF-?$jM=y21uPQ7ao8#M;i@`E1CUDuBiRoRY0*0
zNp3QsJTNSaswh`>ZQfuo>Wv6gu8~I&lORX@pL2$-Vlf?-uneQ;hR}fG<*3DPfXGHW
zcyBLLVWU3wRx#~W$%xr<uvmMHJEn|lg}s8|<J@@cZ0(&&Y{b<W7#0P%>kU)yy>S@s
zkHS!eQ`(dOhl_}T7TWIS>Q0KGg!bnJmj1FSW-2cmn89ZuQFf87{^Gxf5z)c#Rc|a;
z+lF<pXC5P3p<qUV%sA0z2zXd97o%xU*r3#aKAI;|_zlXe8S<<03`48#nqre}CgX~e
z(cUpx#!yFw1olqK%pD$YQfrK0e~a5ohE4EesP2Qjh&hS20=^}}HK|Rd0>0{{^3nLX
z^Z=8AAfq^DFqzBmE4u@Bg=!psS}Tirzd|Ns;F8KvK?P!cIJ*E(nzS!<#zr(aBs8G(
zIz@jCsGbzNgdgUtDXK@wkVDi%z_o!~S{fK1<pK@Y64V5VOgMvC!Vs{VEMeTmy{Hm6
z9|$^<u&eAfrP7~ZUzB1)a#5*^Ctb~EH|xDNf8_7yhF}Tev9w9)tp+pHiHRcTf?y!f
zK}xA>N7k0kHe_M?V^HkV{H%hg0q2()0diD68mxCJbu7#8msC+)1|};>mCW8+;hC!k
zjB-o?qkc}tTj3oXNxBV%J$^mZ1)Z*Nuvozl{H|{v4JVtd&reZF#Uu-F2tnU~;=m{y
z5<rVA<ZQcA0j^z?IuEf!B?RX?L|8zo3XUkC2?B;&Y;i_}ZE(B&B7u@QfKCq_%$G3)
z;2%Aom(J>mgx+Xwm|=>#e?}?==hBhq;JF-8pzYRaxG#?wxfSyua$n#vWPcyOi3CNG
zOv_=7aD*f?HBl9P%azHKKY;Wu2dTv;U^b6?lynT_U2n=+eI4|R>wHf{hSoTX($OI)
z<buwpi8`a>JZNq_<<TVOCLW_<j6~8Kq$g$@guqk`1T(|O9lZjTUn9q%Jq$#o%F9U7
zW-ogtmbJwrZ>$evi7a69K!#ia6rRG-vLAd^zE~j2UU*L_@H7ct5d)&^j;v66JkdYF
z*wcbr=oY20MLD3V6IW;=EJYAXG*d9!2yc;w%Rl%()u1$*x)>@xHP{VJ1@vus9S&~*
z+6!s|9fP9Sl802$x5!se#*6mJ95F_{txS7+6C2An(2_7yt<4>^2{FRV%y+zQolsX$
zaAQp*^E@J^h`urNxuf`VvNP0G`Y$TDPmA19w4w7eV2V+4KBOuHNkjd(q)d!A`tT=7
zoZxc*6o$^lgK4{%tYnd5O(BCyVrd)}$dHI0xHxtkr{R)}IYyn4R9sQst4EcZQX?hY
z7j{$N6hBjrNTjc0Q0LZe?HFPn7bu-5zlOWJRB&E$tw@1>|0olNN|iE|7)yectWK8b
z%tjMZiJVxtLR~psG?j}9`KY4CO?Uo4M@|G`+5@o;iJT>>HY)I#pXfkIwE4Bjt+V6<
zAE<yg4p}!+ld<Il9tn=PUiDFr>L_&5_AHV^$#Zg-Axyyjh=}hFNi;9Mr|C@0Uq*NB
zw`_%%U&%J0u8AX|D9oXV9xY;ZD$)k_aUCuLA(si&twS@CyF?FIUA#Vi|1r64ke68$
z&iEz%jpdj+ot_eP>h0!`zd6;hY}FCmF}7DP(<Cy`GC%7Qk{PY=Z~=o^jf6gK&ZGQe
zQX$QVLvul$BA3AG1&i?TkkqY{?#0MD@%>t{2By-u(q^`P)?TkI2CI%>_(1MhKTtg@
z+o0;HxgaN^Y3%o6{hqCisAwS+Q_>8$A}R<hf$XV5Ye4|mCpbPGmm(5uM-5IbV1L0*
zqj9~boY}1%tF==31s_JHJ^Y|J$LcRK5jek)(}wj-xzgNcXmrS|G9n4m8Ji!|u1!l^
z15*&tzuFyFCFHW%{$fPq2%SzgOuAWWgxD`+qb?aMjPTOzFN_J7wHdGozXovz;SU|f
zlC*-j<JVaPxyY6{9Vw&Luh#L9%BwL*iaRJG4zz+m9iM7gTVRhs|ExhB8&2sDorCCl
z*4qi-xqb)dEAr&|=!zNdZOmY9zm&ZZO26$q)CzbY(?n)TX}Kh$k$3}Z^Do31*x@TF
zh1o?dGtd8T#q5yq{HV)GU?VMq2HO}GVY?+!WgLLiqw0jw2gEfn&rE0jZ6pm^Rv5t4
zLrmdUGZ^ZUy}XN8SPrp!0~D3;Dfyv~#?&~d7VSIhTDU}Fo(-a})?7~1-np8Ul0T5s
z-^YD)CIz%zOoUjd<W+b<@<nZrI)V~W6{Mi60w}`*&KXD}KK?XH^@$;(hDwz#Q9|0l
zse%;t$B1=xN!2&1RoaHMHNi9#tab(G=)D+%Ogz&8`wMq}2fs;4%%M4F>5^jcHyCqx
z14bVz*SVg6Zj{qFape?wQIzD?j$Q(f3zPk}7|*7EW<GB5fZlo!<q|+HZ%8I?9tJw=
zg=-dR;#<jLlXO7Y;t#abQ%<SK6!tZ@TZ9cVyOA<Z0u?|nCw9Obstq<7!oTR7`voY(
z?S2aKaMA|uMNW~wLVQn#OurnXPU`KJ{>&|L%2-(Lr`W8ul{A3clmV9h6C8!+pvJ6(
zJW~?TjZlCBE=>$ltK{Vi2m@IdXL_VbtfS<}Z2v)*6nlCLIYtc)U=V3^+s1&kXjnM%
zKy1(h_U#GzN?iOjx4<}!;^jzai#!W*4{3|J4E$D-8X+R+)}{u2Kwocv#a|Z-P{iM5
zyK`F{C3DtEpU8!>#!xela7Em<Al;GQf}qVNpDGkE^J+^H6n9jO6FhX=Os<<XO1;U(
zps-Frnk4EjWrQ{3`(@;iMc^nB!x)>!GwFLEjE~6%xnTx5<MD#+%E@7wsroJF`$;Ur
z<Q@D}iGT_YV>-E9Czm1;(0aZA*fg%EmzNc8zJ8&?#NMdZZq@Vj7-tMH<}Z)`#jG?$
z5N3``=;P836hOF}8vUAn!E<UWf)>&o+_t=Vfh#`*L{Ml)K^2M8uxtGoOX{RsAK~)&
zJ440TVY;*S8$^_IGB%Og(~&=2@=|(JBA)#35A}ZZ-v@uMD%{6vHLoS}f$;Dn=?}Ud
z;`k42VkvG`ECq<E;(2Js5dwwwES4flvT?drF&O~?g-Y;%@(u}+us;AMjIL?zKxuE8
z1>|GpjxTysbBHY+;ar{nd#S22TP@p=X1`Ljz#X@6v1ET)us$ZSAeQK#f^2{cFri6z
zllkV)0!0oc&TQV84gjs*X3!J{ReyRzAY}o3M&h!hNUZD=UBSxjqGh<Nv+24?vc=D+
z9!oqPoJeoTL*aDPGAo2`8#ECq>VLgV=GvbGdqf8^m#=c6hV*xyY#}|`+`<(~0<})l
z5E1aenC_;s5Wg$=frgOy{=V-RA7feIR}fsGVu&Jpg(lwMRu%#5cX~oDZ4fb@V08Q#
z*Cq8I=tMn9%QXc8-!W9(Z`GLDdD)mN<nQ=uukhfH$$=M>-VZGvq01_d`d_lbv#C5f
zsx)<BfvR{S_9&vDHO`P2zm~n+i+xvV7^erPMo!XQ-U(&#CeggS<WPjKw6Xq%BN!7c
z1rVTC1v<r;P+X9%_-oe;;$hRqujcZQj{=h6tft&C@Ozawa4SO7HW<FG+63}qO-#5A
ze;{X1*Vn1Fo4mM9D%zlpw+J_|CZckHFRon;50Y2`Eyh~SL9_xX5$cxX1k8hxG^lq9
z7FKZ=Sb_vuq;Qp|;LDW4@q?TgjkUKgaE(XIbw5E1F+`S<&n1o|`MI%qp)Lq4C0a^3
z&dn~)5#ax4P`4pt2Q${x?VRK2Oz!{owUUrMrG0v?w`7&HN2iFNx5*t7x%WduoYh<E
z73IYT;hTbBw6SfFJP}pd)#;J0NL@*1kJ;1oDJ`6>9{(8AlqcR~`Ag_&XZJ?)nZu-=
zoOUn2ru3S@6Ox@0<6s575WE4hUhwawQ^@Q<%8m2u@OHLkSop1on2F0nzrdTZ4BC^7
z^_$9xQ$Nvli<)piFEdxcI8X(TcUfazSNT`|M+meFTA`9`<M(RjS-2jS0u+jts#iIA
z8fpp?FQ=s_m!W@DFP*qE^x~<Rx6ctANqwpw(qIlZF18>@P23@t%DIQy8RY1C>==xd
z;}Yc@A8X_kwnYpuWC*=!A-s3yfzMoHfCY>DMehE|;zbnFBIW(xw)T9!j;#XAtSsJD
zr!(>64W>sy7HGyYk*3tHut*zFr!iE3bkuyv+we5_^(^qO4q^%dKIgz3Sb@0>gz=VW
z!EyvlO5DJyXD%(6J09Lq#(-h4f&ZXP*oL~MQ;cC{-Oi^ZF1j1cX(77Y>KA=Y+hjTe
z1n$Vc<pmGyL0T;0T?S#<FbpPj(0ceSLT$0EiZoN?-YB@Daqg~|Zn~1*w?M~*O$L4t
z4;_<Z$ol}8AYkMG>^`B5q4#%vgS?qL2NC+-KUb4Se^nfuPOWCQ@9y%${wJE584^XR
zFA+K=Eyle6Kn{K*WNc8vz&*ac?w}A*6&jL=b<oC$!@(j3taPCQ_voupu0x(Q^~Q3?
z2a?Qug9w6mqeXl?z(m4}!tDyte56>>$0-7B>gh@2x34ne&EbZh&DCagB!5HC!3S~7
zqL{wjC?UiI4FPOnwS9@4Pz-J__Vid17G2kH+8zZX!~n@s4pekAjC=Jv@(u1bOsyyq
zkyn%Y7|e1p#;kGS2!z;<R(R!xGyVW$>hip+tQHd3QQ%g_LG&PJG`@uYN}>m{F=U`4
z;7+jVNd~#>c4PxM)P?&~VxTXD6ze-zNEs%w4ZPEf;o>?~xr0-qjT#(uK3Q+qf8?x3
z)?r)^qY|hK3}x3P>`8=B&cdMD@sQQgVGNDPN^qc?mn5oQ`HXVmq%2XOeba+pmN#!t
zN9K<xSsr4M#>+I{hd98SYFekPfL#BI3>#TpJq7Jt<#g~LST!rcm3e?7Upb2<iIbn2
z0#SGr@?n*TlOsPy?=gJ9vjMI$&5#DsAft^rVT9qfYVF?;57ZR}w_~LjG?w-P)JF;0
zD|IFysG!h@>K6UUW0TNau<1IlxtI}gIq<;38wnYcjHL9blh(j;kZ24#{Mx~TEobxT
zNO3T!08#|%1lzO;MFml=Mx_LLu$-o2D&_+_U^5`$YWV+oY`aKKD(M3Zqg^j?ZZ6up
zc>#+kEfiDdtGmzL6Z9v7>wPu&96Y3W2rdnj#nY*!(ZfY9BtArm;LHyOZ3wmExUaL>
z<}sVkwE_p8X&RM9pOwlEPRU~b9<G=3%>fXdPx=<6mX-j1%jvu92QuX)9#2xXME`k$
z@c3T0(<dCi{9*g3n{Ll=*3yGQqCw%*_7RD~dc+0cbj7$kxfbyn_mLO~djHtcJDGp_
zgBBGS^JRRbAeW1Ec3vJrHTzI131=X?&7lnmGolZKqZTrsi-ofK)NbSBdzH$%#7LT9
zHUYa4(Yk9!5eNgBLHe(F@N_Z#OAd<Y^+=g^_KX(E)K@=qOceF#2|*=V9#)cxbvqys
zNG%b7NQ!LBef$^#@N}|Iz8XDa%q|LOiY_+j46LS<u%Uv{g?oe7`c#-tiXByoP*b!R
zqV?!bi57kY<}!6RL(}*z8;dzx<s-iI;1a^+W5H~f*^`>Wgj$LGc4?Gn0jxqVKqo2~
zN#khS+Ex~+D(>7p1-A;^3QW#jSqVSjQ9!t)$TFz{6iUhL5$%a<3v@w~OyH>Y7s0$b
zZgVi>SpilN3DyVl97_t(`wBv&iB)OK<2*GYKTW;I7uw1A2J|71{)u9Iu|obHjoXbG
zM5AI7T$m<{(VW)m5Xk6+f7)^JK*WT|S=kj)5J&|ULBSYlMzw`Ee*Az?#+EAd)G4po
zzW^d+z27rre>o^7Ew6*dpTJYHeyy*rD=O3?Mfw%UFD7s9%?_Sa@1<9+eW=b1t;HTy
zJ%DAqW2D&<)F`$42&t)+{3}k(w~WuE#3H^DO*mbT<0UpigqMw^ZAS8_-*H(zx&wiY
zbNXg>$vse-MbPb@qdr3|(jC|^it82{El9H5_Xx*8Ix-67%``-ej^tDpeYp~nBgeWH
zV*~1g>k^#F59M80x3$ENvX=jHCq;I&uq&{^ZzU)5^{E9@{sZ=4!=|6%xp|}S*EXL&
zC02f>0?J*>Bpf#tHiRe#G(vz2te1|nUJW!dTo&D@FXyh3+_@0ei{g!_^UgH|@t~N+
zby5p}!YkTzqAgr1wcLbbg1RZvZRv*uG6OXMKq~jFo0?^(OaqfpiV}pYHEus^HTo$%
zr)X$wwR+(t&TW;d^hCq85-xnTogztL`Ja3S^g@&V_FtG1o~Y2lIT^qG7lyGBPqCL5
z9!cC|aN&cq9=Y39{86%oyQ3?BVcX@N4XpG{HWu7{eNvJ>gqu`<X+^8{n>RU$=AsTI
z{ehauiBXQQ*B>GPBU^#aKH<)Znp(3)90OO$7v5qq3$D4(80vyIO(2$*E5Z~ugk(*5
zalEp98VZCE(ZmGK;}7o8yd`jOi0#pR&ai!J47wyR=>rO^M4qUm-IYbl!j0;_3r7y^
zUss#e3&8bV+ALfq0QK4Q&N{E&d&QEw{^2I%5z({EoY_|@4#CJM0kknK>V<~wGMhU&
zWL~ZR*2e|C{Q>v7cS^p@-}6`FQ4+w+We#|0QQx@tqR-B{Cnw&1kN>)JRx-*hky1)b
zG=#f{XKz{U%|E?yg27zlCd?_<&VZWKs8F)Wpo!gs@Pfq0o`sxUPG*{AQ9}{)+wsCJ
znX7HB9{-Bha7ug$!ihB}*8aa5gcp>g`W|5dOVS~gTehQ7{Qb%AfkQ6}#H~uEsC-2A
zcXYRq;RlsD^TMqKXE;J`_}5mHr*FNHNCai$zMR!?y8e@|dec;;;VDgfX%+z**{9G-
zLn@K7c<$K-AC00#I~eyqh4cw0QY3{lrB0^J(N}p@1f(KgkWr5tC(<YC)O3{-Sf^A~
z7pR}`JgBy2IQHet^+(P61ubg$Mhqw8y;IbiJ%g^^Sbk4z5n42`3L=4B)%_ijGj2La
zy-08X$|d&L6qxE}MhTUx_x{}Ay*@hMo2>s_ZCLY0`Xrmj>=nPp8rBlot#5(4nuSfn
zRQymyu&_XkgaaL_+ogDLjqP^@8G;lOk;-#S56Ku#8IX%dimduYimAe8+T)7ODI0AR
z)@D{13ld!yy_p`DImVzR5yr9%7==9fj<ZXGHN#G$Pfliojkw5BAFFi>`Oxp2tWeP#
z{Sb-;Bbc(C$!w{kb(iuR=E4#lfpGEyi%1e5RDrDd0zqQGGUyLMp=!YHuMB|zO2A5#
z)_1QlWzyl_mq0q4gG0hoYBvcP8z@?QdPJY>7<oFqHf^>|v>B*zqNhX9(n1Cf-H~hd
z=vB9zj$n>?bb~@a35^}mOVvy{x)xqrNjl(CT;C&FT=Bi5D<|C*#8mUd*yGAC6VItJ
zVRm8^<3;hT$QG@;&A~Gl`fn)~N{p}#In2-qtf;1V8{&d9>C<^DUpmAWuTa~Favq@N
z@;5?ixy<s$jqOsPNsUCH7IsmSqOO0%>*ylI+s%+#!l?Vi66>8Uyt5R0$VXrtL_XG{
z{%NT&BrQ3!0W9z>ki?%E$;?;mvr_s}$(kWoFSzbkUEw8{B;b0ZLFE+8J;=UIRNnc9
zAdb~HdL7|-5>3g(R&F?^hVSB|@U9XaFc$peDkrBt60K#l97)IiQ&CH$NC-OSU=Glw
zlg8t$3~f&~R}-Nn&NWijz1;CuP&aNV@4RU@d92cI2G4u!_bmZNqzH>;ve5%=UcfH1
z*kR(<V2!PwM1Un+g>C|*S-HAP26++9`zyj~77Q~D`o${e20jlxn(Lr|_r&K>=b%Gp
za#YA{pbwQrZm|WWVv_dgtG`D@8pG8$`*zxjH=Jd+((Zn}Zkb2ec|Zf<#!J>N)bs&1
zQZiqGkDOQQoK>|bz|BS%T3X8Pb@=5d`;96JU^P37H&e@l<{&t8GE$)_=B^p$(3ohK
zTFrv9P30E01%B5z@U!Cim-2E|D8S_R#W<U3-~4|izlTMU;Y9BNCX3qKtv4Uyzlw9{
z6TpIZ4e(~w2r_&H{kpT<6IvsP*UgS}W!-Dho*7bCxO=avr$A8wF3BgtZHv}oFv34_
z8uX$0PfQJ&&5$MCEI^Kn!4VW2(7o=cT&Ts8q`g(1pn?p9B^f-XxiM4H?TUISpfbNk
zw|*Y==C@6gPNYe-1|{k9BmkGZW7r`eu~kUeB-)Yy4;PEvIIBs_=0eg0V|3Q&V8Rvs
zWK`_ZStN=K3tHI0;`J-roH8=i?vXAcEQ|khdL28ZKivpVyX67>!bCcvXb9?4Yr&K!
zoL8daLeJpirt>v$C<l=Tb>b^E*vY!1$U;GYh^+jFC;^SczRu=nu|bT<o1N@b=h_6l
zCk>hJp=g-sm=`Q&!?>1c!N5qvL4`_?UkGt_h`FeGFKfY{>!7k3p|4@~X<~}tf}qHa
z3W&=n{y^0cufND%wi!KT&T!uRscWoB?>b;8C68<e{tl>hcr3;6hp3|v3Mje$pRnv*
zlG$&>(lOs>OkZXBZ`h9p58C!5lp?Kh|LN=g#Ew?X`a?BY)B32Fn>G+EnqHq!%|@R(
zk|OjQRvbd&+RsOMc#X+7jq!vOUaizqJrn2YJ4t+(^hvD$;<ZVw+Q}U5z2CP-$^`;^
z<#l;!0A1C62EHl%P_Sl@yY<N{8UWEHAcIuiVzb>V-YpOjCUD%D9;kAp-2OPm{e_~(
z8c2@Q{}$tEUr>+C;gn_Oq^si(V@6@y$C6d%O;Z~*d_@@uGIAy9J;CMk<L!JDjvCej
z5&dM2QBYTFt98;Nn+e##wG&hZ_~mrD_^Hb`0TN^N>Hz7QxmpCXPo@>t2??F3k2j|6
zXf}^s0M@US7P=MDh%$&D$&_EHG}2C7^1n*_O7|KAPj;s^rGSIPVUhpjrm#lw4x-+v
zwyGV?vulDn?pmR?Jf=nB^=8V;Gb!)yC45HbY*~9sZ0^4^6`~|A%mE&zOyJxuCt^Y>
zfQGtLaudxVi6_<&$$(2Ds-qx)_@GF!wzIba%}OTmOaDw=rGh8+`n(t^JSV&bumS(L
zuW+rwM<ik5+Sa;#pg5>F_<|asOiDp6#zIX@4(yb^jfCk(&@smYJw)PVF8qe9v3Uyh
z40m~W1))hl&S@4MB>mxm#mi3H-I{EVaKLt_8nk-Z>J^K$%kQ#p5gjv6u6TkDLJs2A
z4#Nuy)yFlz(G4x~oqd{fG+7)p0A7$zQj~Z>mhncs5T0T71xZ}i^;_1?`ZXWVa-k@I
zo+?R-G&Av2nY4&h*z?ya^Yb4iSPWJnRXF!OVp!zn;&Td;#U(!-wFt45JH{|V2>UgT
zCG++^gOS-Wldl<I|JOyZjvQ&Lps3b&7gg9NUIrCv4XmI?#i5E)s_3ao1WMvF;^g%a
z*b7khL<10!#YdFvM+6<97&(^~i(jr@o^PHpH|BQQ>VTnUvov^2&PZ)U3Z#D;LB6GZ
zi_jT8O!z~&a$eN(T)@iKb%DX$Z5!S5DFnt)^Ii284j~Y!o_(17xLt=FCak4R?pNY;
zPECJip-SRCvh@%F|MreuU;x~gOdbyn?>M}#sazt3Jn$wRI18Jx@0Hv}pmjG$z<Gwn
zp}ZcM_VS+!VitKV{5nvaSTd+n^w;TPMzlquu>2Kwr=PHEFwRMdP&X7JPxwmsfigwV
z0<MUGHZR~0coR|3@KRu!=4nczHrS#-TV<{AixT&S<ORJ7MMb3gimpmqnz@zMNWarD
zmlrnR7Y6yaRg51t3Y>@->edk@ZA^pE#Z;XJ8ef9SLX0crh95bU%$|k+8GLXhD#!)5
zx*~sR;RO`FeoX$f%hsfGkO%|#M80~6if;ZQhz-x%5*9&xsl~OnY=lNHTm4J71DuJ_
z^24-|1sSyQ7*V1HA<*6Q0pw1qn@m#5SBeTWBwV~#3Z81{-_kJA9%1kez(1t$h|~+j
z?@mC09nhV!7Ax2*P7(w}?2y)jcD<$Rlse;Sup%j<SBiCp8}n=aOGv8?<fmQ-W@Aop
zdB-%YEJ}_Y;e(7aId2m~gLbsENvI0&6S$WK+POqHCXHCrc4F3i={Kgqf>zu|DAg{u
z%Vaps{Uc`!xv!8_a6r<u0pO0kY@f<st67a{EaQzK2fE=DM35YRHqg$#Wm5_Nw^UC4
zY5@X4CgH>pAltQ5SP;AGLZB|T7os9%{)(1UU`!r{dqkwK4KsGq5oI@c-Q+Tj>NeS!
zkDbAaH5ur`-HF|xtuTfLa<Y0)^1ADd;JMrFJW2yJH~lu5zu51UWWgJHo3G;5%FZs3
zva`J~eq5TY-JO59c0{nG`Proz`#J{MnXdjJ$PvDWFYbCE4=~~b8mx;@8MWQ#CzME$
z0!??3?7LkGUDBi6*Oc}mweTYhKrTvFz9P@n66A%cdwbEDU|I$dRLatu?Rp_ndw2v1
zHgBiId<YJV@8xV;L?^zLAUtXDY9T6FfR*K!16>^{Bb!KaQMB6C?|{NumNYb-3y?=>
zt%5hGRl|+AMqsW~c&e44+D@77eI4Wq>VsXTjaO;O(cIKH2ttvdYgjU`%)6-2{P(R_
za6`c+YBEaoCGJd*Fs{@!(7V`q#FkhO>`$E&x~WJUY*=TL3aMF_Qcz>`gD=Q5P(x%?
zAaxT3T(g8Tge9=y8Dn6|r<Y#_&m;fHRzkB9)X?Yjs)Y<9{AyW+{xRTMzVl`QRzzi8
zhJsh2kEk+48+`*+?tu;sOF$ipd@(W~WB@w&5MwV?kCkNG5t54nTpF>tp*tli$!{R?
zDwT@Btay27k|@>4J9M}&{W7d|b=e!?g<)R;keKhty68f>wv#11#QEY6!9S5Q)Nfod
zcuIG7{0rFxwq0j3L>dml+R|HyI8*rJMl3~<YknyPiVN$z6)_MP%w^8yT1?Imuu_22
zWV%3+9Sl$tz1rP#q<E?tbM8;a>bHrBhTx#hv!Hf>M9V;x(1}4%aBwU9*C)Q+B+aDo
zPBU__$WEmyUagrh99B=@QkJNMk~oIMuPB))-BJ|e?(G^IZ8Q2*Qzp;7;`)Xe1P)<C
z!Z@!jbOYbVqy>ZcRi(o)!$m{1aR>(G_%mbc5!8@!4Hc%sx19HzE0klkBA<+B6A6^)
z1IK90I9t1i0x%;gt~tzCdYCU@GpL>mh)iAZUE22B89Xy5g<);}AF8Zv3ebx__aywf
zi^=TinL8(~JjMy%C|Qjnoe9AJ2j|Sh!R^=NV1L;{cp&Lf|D+`{jR_7`l@2~2F3IUa
zEhAknob`V|=0vQS&E#?M2`V@F{iH>n<{$j&sMD##M}r2+Z3Mj_s1KFK)TWgkdjMAz
zdq7fQ#z>zi6D(-^T99(qr0Gl_y`vECsu1CK%-{%K5B~&lukod=Em-i5Oz@bM<}ZbB
zV&q)6Dq`wLHQ^{RpS{s2TfrCk#%~pBRo#&sY2p^m4+ATpiU`2vhkeM?$i#Nkq{dkJ
zF+m)MMA=>Hj#v6`T3m&v5t86i;<tiEH|vxULuO7m_{txfryYA2nprK8CrdCpE@7Tq
zz6xN6aH=yQ+)cul2oaotg8Xy)K7@Qx9aJNrF|p1<CQy`rDt?%9&(^inuQU8q4SeWV
zvr}3U1xR39DMql3%ckjM@1AkmdFk*@)^m71)&reJJ2l#JsvZvZQvpaV?bp)wSt(gw
zeQ681MFlBh_Y}>yW2JwYetHG`y`i1Rbl{!{lteD^&>waq9?;#h`S_8o-=q9QVMQZZ
zI`#GL5J1RDM#s=11F5X(W^k!RnOcuaRM=1cCy)#Ac$%)NF{-RiicYbny~^@^g^F9(
zuVgO?<#icB5^{mSv{tVbnK8#%m?_V_(;`F}vV^TKjRhzp_}^6#;ib+O!E7>Pw4XYm
za$OO1oG$G^CgN-YdZ{m<m*N+W5VQY_ufRU&On%b7R6L=F`>i-}!04FCS})co{c5}X
zdi90<U-+?7KmOS_Bgg;QACu<}!dc761zM|Hp4FB_n~&7qBX{19Io}r!125FB;L6<)
z_NHCVKlEjyYybF{akBpLF9ZDiqhCHI0UhB`?WHtX5}obSUkx`>BnAx6jf)bD*ow4v
ztT9210-{SjCQ|1=o~CNazRw^|04Y@cx5>kXitzO^c}c2^s)gkCK4{!&x_SVe->zS%
zgaRW>E*4Z@&)0;_)c8*GggEH*0qoP4k3D-=CfhuZ$xyM^d^|$Soqxr>g>zpLUZADR
z2$N=bT#^!v)#JLHvZzCHReOu?*~{&7GI)8$xx-6m@IX>~zP($lU&de~?#ontLk*pE
zMNR-UJY;mzuwlE#vU_>9VE7&lyQGdWE7w$0xO6v4NQn?`o?Si=Y|m;akOK5-K3R&M
zI(;xab5VK8mYF_%PmdQy#9k3kl)bOlt*a}yk0W}MGq#Bdjxs^k%f+mktP}qsh$Fzn
z&|K(S9W4itadvn3y7O%^O}6XV_D;ui#J*KIyTz5jfOGhETZr_;R<JK)^Q?>BRRn@X
zn;@fjcApv%o;L?L98MlINaXu80b{I9sb^q_G{M&FnKtzx$}85LVu9<gQyU0nd;5eB
z<hp4#e~u?49L3u>*aN7dXoQIxJia-8AWw<TT=-}fu_7se90a#U{+ZqIN>^(GK=!Oe
z@CBs7JIJijFk&J2H_w1BgOv!7)(05b4RRE+>5IvDk*6J#|CFq@&DuuNx<h~{$+{A)
zQmrBKTZh;G@jKDBYz{r?T&N-B$tUmw55!hUmj;LJX~33hlIgvZy~r6Fvy(AL%qlpj
z85L<ZL9e--j(N<%o~F|@8J&hg4rk7pP~n=4>Ntai`#I1k>Rz^56K+62af`qAwl|dA
zQ3^YqZz_Y$V*DT*^ZkKlP}UhCt8b>u<%}qQD8BR-H~t#If#vL393~dgasEzt>nUTc
zI}c>y8e%V9YxbG`L57h=fIF3A2dQ>+ZE6-z7Asny#HLt$cKAsXl+s(lkZH}ftQL25
zO#vHI|2X)e{D1cm^D{uYQ$^3MOVu|9?U22(9rNDI6pbm@gFUQEp6S1rZa0givJKaC
zwPPP{UA$@k6Re2|!HZs8&&p0lan$OC><gSJOt;x)@niiUq~~B?s7#OHphJ3xqv6l#
zIMv9_8sZe(5cxx2lHbJ|I%leORX;O%oTyqLIh&~0=$sFzR|E`U;N<i~P_{37Rg&qP
zLCOp`vBi<CNN1M$v?6Lt|END6k#hsL(Wh2N(*OfrQ*Ae!K9HRK@;KS3QcF~VY?+D*
zSv6_vO<FTu4!VSn{Bz;s0pewDzz;=U>U)cPVyUWX2YL09wGa?QuHzfr+mxVZ89zqk
zM+)orGrR{&&UJtLKpd3DtIFT_foO(r$5g+C`O36$kt;-<(}t2R76g0@68-<-2Z%zb
zUt?fGl9(Q7Zu>?}wxC>d8qJSpBrtr4gY#oScaO<{rt>+=z(|@nclErUN^#{M@Cprw
zK}2$S%w}FYX<>D)XNx;48)X}a77&+g#=DtEVnUo`N=nbSy{TN_i*Fkp$@{%eSisi+
zge~G3S}SgL&6#O>6HaB1&B#TEBvsk>712LlY-hJ7<Y(a_<T8;EmG&Hc95cR{t<D*!
zGfz$*Z_e~8Q2nFiY=jk_CYl5!_Fem2I^&SGe;Cwkn#75Dug+Mh<Y5L3ilSBT@0X&Q
zz35(^fM20}>{o8R2bdZul5eJ|CrEd{I5ov=^(>G?SD-fEMcra4OdIK+f*?aEvx%hr
z4B0Kbh~xy+53^OdSxs;6P$JbQt$6<vH^LL=ig8)jHsS{h)bOerjt8ZEekM_sYepK<
z(&CcbDrD>g#9i)!#sdwi%b>qCRQGFT=)xOX7%w~6+XsC?Le7z=R4gO8?5}&r_z=8-
zJnl6>jm8fQL2oaB2<#h2G-=!8_-0@Yd`)a(ONW!OwB1YzOUk6)BUyY)HsnIW;OJM(
z4W&i7@4QRSt=9Vp+d?L?A|;p=c8CamnlM1Aq{QFd$Fw`HmN>5tiq>J4RrtmiF6;gz
zKOz8>q3ii1nMg1kd{l6uHoaR)TjT^K5WX`UBt5sN_j~V2*>#Ew<wlSg7)wnk>63wP
z!M|s4ypGr?jZ7X67)h{!NYh(v8br5<a!{2+z<X)lgAhL1&SqTg8qU=@6s}eI*4dqc
zT}|@pFx8Nd?kM*5W%s00rzafGdsdYSAcx3_ENwGETy(o#-gm^PPKt7~m+a4`C8z$h
z`N^@aNr?E%{bc^UeSrAB0D(9871cOowuzjf@<6|^3l+6=-VGX(FCH*?4*Vb;12j(<
z!?mHNAdttw9=6zUf)v%EF%Hx3gz!Cyo-9uw)pj+n^c`>VDxOGb82(C~%#ulr$UC4{
z39{H9Mzb;yf$D0X%~;V1M_N82S>kkIS*Dm|cN!Svtu)gYSI%ognBk~AWNZB9qB?nH
zuE8C9%1f<{fF22TLYp@k@FN6`;K(d%7m0{wRuee<Tl-7ON3+R#v3R&g&6!HwBUc1z
z;{hym4lL@dO3WT5$|z~xkZs3a1S}A4-0AvswLp-D4U%ebkjytvl_i#UWLDSC5~4+w
zzueC!5830IGx$cUi2JFvzCuKyVf78OmQJR$7AAN;mR3SFs9HdGGP+1oTI$SPk9WvK
zHlrx3ol-n!jQ`<apPfL7hQ;|!(436aqRG;1Fhq&vAL=YPuuCUG!_W5*5&9@8U1w0f
zb;oZU#Su^e?@11CWtcR)EZQfU(ORwrATJ&XiN}p2yhtnN`={yGN^9tuTr|9=!6u^N
z@ACy#h12FZEfd_S@5%N>9@rCZ4>p9`)}D2m7ZKYDov&q+?la>_M#xMK7+2<nBX#%4
z+KaRzG@NctMuPD(81+{Ny)W4K@|tcFP>|X(y;KC8sbU^;Xq9hl|Cs9<)c!ZWqd@rb
z*OIQDj)2I_`n|#WWu-^-!+Y=EyJbCUA*FbdlM1uN9p0V0@U^~7TKlKu&|)xdPfXTC
zl<L8Q#q;*%bb7m5Fs@;fz1**#o-yBlx6e*H2HYZX(1aR;gU7U*J||x|(B=4k>)b$^
zC*z~h%Pxnj9Q~45L>{s3i~Xt}ncdVLLKbDUfuKFH+fm}9ksTQFoX2K=AcLJCz{Dji
zy}AuNfF~<ma7tr6oRDx&xWW`dpuQ+G&-q1;ECJ7}iu9Jud+5YGzk+DPQX}pt`k`;j
zuY4|6|9)S&x?d+t995$m=4!3cao^1iS<4Nfi=?>}I`>a|h+VIMD+)oNeF~-+sZHd1
zAy1}v@Q|F}CG|_F8uw6JtGPB|rPyt_fqbEKI$9Ugl8O7O2qST#!uzmvrUixYz76Ed
z;Cqu<(#_fGx%k$>^4`)n4ZzvoJ37=32$Qh`7LM<|Lg42-k3_X6$N}){u9;*6KgZD%
z#n+gHOq*`GVuXigKeA^Yc}Sv;ydvU3V@|GqKY7H1VJQvl_Ss@-R;kzc0vIq>Rj1?S
zR}iDv3M8{QXAN^7)k5Q6@5}v|GEr*gZ;>)o?>V1lw00U;@tr@heKS#X41rmS=P_ck
zi1`t+2)+Hn5BFi6WN=TY{6*=_&w#YfF9tpmwgRapw^%<o4igm56ddAWv8KhPI1v$x
z%)<z%SJfw&rLA>4_=3S^Kq!)apA4UHK1kg(kCTthN>{ZbVxl^(+S4l(rqJLe7!+7&
zc;Gl8mHKQ;9gSHMAL#diM?rGD92x%@mVo0x?nS0HtUoK8ryMlk-R%k1&(A=&5<P}!
zF<TS31=G~TGE?T@6>poPQWOwIh$bRW{QcS_b3PCtviS5y$H4`K``btU93>3~ZX@2!
zT9@&WRo7-WaR%hMZ7SI}^{}CKa-L*=G)Z=R#CAF+3}EDF>|()?Lxk!%QC}2C`$tDg
z_`5U-f?jIPHSWcTU%Fk4ZgNLfIayqjipYluF5c``?lo_jTEc`J7mORLZJi1pt8+Eq
zr0Etvs3I`HZnRpzY-hOE;ZL#xm@LM1H7Lvy!coHK^in{t_V#9rf`TlkGz0|@z{Z&I
zh+DyO;Rj%Pq8x<VVbZ3rA2c=t=fPtI|A^azp)oJPDa2#ES^ZGJF)!_k49u-27cz!P
zgvK#Z$+xl1bG&CKv&Hc!yE$g5jHl=qM*?N(kReJErd#8WK#Uilm+O}e9FJV56RZHj
zcZsV7z-F62OxJ1_dPpn?+Na+Mf<{iaQABR<MJeYmP;bI3(WFMqN%Jvw5YVKyxDzmS
zv3Q~VlEG%5nDR&t0zq;n*5l^=)QjoYZ)hmk<-NxW4vuienof3M_=4_q*Z0%Scj%%8
zPy&>fZKx;)`5oWesc9x!ikZi{*V%X?)ki8GLI~eWT+f9$$LnAZEC(f#J<Kvt)*+e*
zSXDP#n@+F+@BxZYEex*;Q$+fb30qEa{eDV`FqR4InN8<^DCi9H>!l`tGG`04!WqcN
zin5W}HC^A^kQ8s50A8WCHx+EvZ=TvwU>H}Yg!6$FNYD+;!YbsQ_o~TRH5pZfsa7sP
zePqo;<7y}+yvU9iZlF!|;CW6AJNVyVvjKjFCX$D0B{NRmR}c3KN^>Y1+C0s%9mw2e
z<_X;AmQJ4;puN@0<aRxs+|aOnjR%fko!^QPSo!VtVf>6$XJD>QF>~V<Q)UmoOukbZ
zzJ39Xv8Czg!T+Gb@%OAE$e88RKkbwz<@xdzQLiD>?Jt;rD|qg4%A?#LtBciL(p%nd
z?b?qC3O8pz<dKWk-QV!PI*auKAWC#wWKWAE)U$x<7l?9~BiUzX*r_OHCLuzLbHuOE
z{~no-t9Qwe>IVL6$iQuj0@$l)02UY}D5-dphwK9g?qw13bxpXLWB{nf1PprLsYz!^
zcqPfh!Es4?9X+6$VRemLFkjp?stYeUR-+*@q%O&A8Vm!6YH1($QFm{C@<9r|{vBmN
zpmCm6Om$0o3#m3Y$221b#DnfBxn7U&L9lWP(&P7-b)D4I_Wg>s>BBz%1nIkIC9Yxt
zB-?}Za>6A_9+B<1?78d^@t<=K10|{(6HDq6h=}S2t*;4N*Ng9DXCoP~=x%Yu12KKX
z#<WLEH92Jg$75oiq-3>S8s!i&;kwaLjsVd^NG$9uOhI|b<|(+eA($LMPNNz8qX48Z
zgqO$?^j0`;3~h1<(bo5O*=CZ$rliVYN8M?5=cSouWCE&`_sa<J-tnr4YBhMuTxwz&
zINXClWH7W4?k09J#jCgo`2i^(^x}DS_xzHmuH1y9zA?c_bc&LVoAIO3f1uu?FYZQJ
zd<V!kN+4tyVnWDw!r@gQ3<ad)65#v5=P&5B>>;^+exR*-;GY9D42OW&yxGdrqQ?Us
z8`O{t|9F9@LEdK=C3+|hADvwL>1T`ogs>23IZ_Nnf!iCHzv5j=K2T%j>0O2`54z>8
z;60^+q)-U5z{wpDJD6AoKSysDL@xv+{2)U>XXXP*LaxkUVIlHP#J>fwNcd`NSfK-E
zPP%qFL_#pbvN@QByJ|*#LZnwXKtiH}gYRU?9`dnQJ*y&fJKYPAchJ<ydY1jjBt{TR
zAo!V-4aCb_l;qUJ+OR6x%{Cm_b+w;8V6d4Cgq{{N{&=4KFdza*3scYF7cwf@tb33W
zq))m%1oLt_TVVZ7h(Vd*K$mrP^(Maqj=cGaELPljQmLp%0y6~fjk<u>y=UyX0;EpQ
zt6Cc!+JsucZWTr`r0j@5AM30sr6XLL0jT0^!W8q0F)hN&-yad7eR6?n!y>+^6a9cO
z2dYQnM&Q2yN7KoURZf2j&^HB%_J+6^(uH{$EgcS@Ma}f6eTanHIU@^YP4aB=d&)p=
zFd>A#DkY7l{*d$t$~l_i`?5~|;qPOKVGn7Cbc_HK$2t7!dR6X0oWMZ>PMyQ@E-v{4
z@>qrD--sOvpTgb1^mxM=8>r%BGyR5<D3xHseav4_z3FCV`D#pD;cA@lj4lo-Toz09
zlmgX<zGtXaUWHoQ^&GJ-g!gtS$&28xk|vO+()2PuvYQ1aR(}h4f=I5d7TIlOY>SXb
zO+L@x+s^Jg{^s*9LyVVS)mBD?NB9RGg@6PDN(G((UT$AdkFUS+1sS6-fcWe71v^f`
z&kn@$0&z|men7eS0~X^7tDtht@y-`(Xq~?g+TClqYqc)zKtF1l-YH^H!8mn5B|2{+
z5LA;Wp8LbDIm9nXWFpZ&eL*-q+^;cWpR&p%N$;QVLUBLAYYf^hp#^`??=XFFb04r(
zCRjWS*Akmc5hA264w7smC}fOm_CfXcv;zZ{Udby@Cima`x3Lt+4V1LZzqzNdv*dW>
z&B#S2OMnn?@g`4;`Cwz?0ZMX#S|&`TI?awycSJ)%bY-7}HxW3-uOe+xT(S^AX>M^e
zdtL*QxDUL|&4_bFcL45OA70d|UpNW4J)E@{f3?A5Wt%htK<;7R<7K-cm}GeXh9UsE
z92P|4g_DkCFZZ;3*bmb3F=z$75e(Y15)BM@{em8uZD4H|qvsKlt7dZ>4jZH#y|FQ)
zYA`4fPUo5cdQiQfa|IfL<IGEPyTO{4|1`e^A=*Y&uB0&Bq=xl%a3NNlez_~fKap#o
zs>tG>SQYV!YoJ%Fw*jKq82Vzq2tn}+@WJ1)oI$umO9*<k*=&N2YCwS9`t9`FHxM2>
zEQ?Sh?$LGi47yGksbVJ#>gtmcaMRfVhT6TEMwjCH88%0Zn{GGB(*iA7n@k81BA8Dn
zv+eX&+b5Pvt>aJhhhkphRSl3YgabaQFt4wWEtZEndb2TiVSk^rq2K^gQF$8y@+%~6
zU`8D!k2eo7B$!hUC~?w09kdc3{nM7UtL&Ef^u#_eBFLd4cK@LDyXYki0w~O&a$G9x
z_t6DDo%ugU`-&;2_@!b)gRxqFb~*gf;|9QlAg-q;(<Al1jQR|GBN;L<Z(S8%#xQAM
zAPH)OFqX&-v+%&Hl&Q`ibC>|s6MRzcEQ|8LmuNtVrS+b2J97WdBJAJ_vKh1Q3nZ))
zCHm7oEIeI<q8Ydr{!aEKmxNY(cJdxH%}AEJ#H>?veM|R+tzbKKkK))YObjlxM<<i?
zUmC5G6QoTR@T~*#jlf|X_-f=xsU{kIg}sWIIkDuQ!nMoP0DYS?u>`MPbRu55GxO_q
zA**_!b}sg$<2~Fwq!c1jYpE<%DM6JABXe5(uu=Lt_e}-OHFmBp7;XehyU&0dFz#;p
zJnx9)R%Gam##(YKnm7Ye7u^w`5$z?4;g|>el4Wz0E>c~Sc~A3gIf|GBhT}GW3LG>j
z4{Z&ptj&sCgU@+{li$!lLK$>a^eIo<0iXPtQ)X9Z&Clr&N1=F<<h9{kF^W41Y%_ae
zb_U|4Pd`mvvL_3Su|pJ;{UdP8tE41tkG?Jk>I;11wkXPUQWoNilzV^_puPnEx3FBg
zDI@yLZ&dBhcCG9XVTRhuhmTl$76~y}RG%#Gm0?nkXggTZKCzffQi>SY(>;ND1E>mi
zqf9=Ac2e2NpG9c=4STTV(=~{<%fp$u!s7ESm@!2U>*Se)EL<Gqo&M|hR`rsu3<FZ=
zdy<HHE<S_Rgr73WM@}w(L#Vbo4B91!h6w~s-Z|=5$+Dv&4HG$q&|CE{C+@rC!nzSm
zSiX!^xT0N6Un}(auJ$EG?9(|BAblWfg{><5fqexmae7%}3Adoz1P{W8IH?dO#fJZp
z0}-@4(NIi$Jr16&4yJd^xjnEZ5=0`Pl`EI#XwS7L!S09bg6!v^%1zKp37#)i?LYz6
zIUp|8TvObvBY*-mQ$HUysJi2{m4{53e)p>m9hpGrCUHHS8`KO@HKgH9?n?L+1czv%
zb#aJ$WwT+gmq63*F(BzI<%AO@ark$&s}C)M^*1t>M^-fHUv27(r^~cq)K!c2dZ{oj
zp2dB!XiJq&Xaj)~%}<%K8ptMp_P}l>ZKs`4ovx}@gF-PAeU!*#R)VtoYQ6P;$lB9(
z;3OuzomEY?ks3`Nf)ZU+UX;+<GZ}VkKpY89WRuYcXZAPiIbpM<S)rPB*t0090}ATX
z+>3I7WblP%lw|ynfXsV+zJa}vcuBWL*T95dwj1)WoL)Xq>gVSZF$`L93~87r=0C<h
zK@~`))82!u1ghj^LFtL;9(P~z@HE0qMaOC(rGK^W5Ex+WkY2~KoEWDZoIEhJjoJeu
z0IMVdk(O^}{zPRX*c#+aWAgsLoZZQGoL815=vT2^xt6<prGTKsP8u2-k`P))Ly8=g
z5i}AIK^OuCkOW_^Mm4Tkt(wGZ)Tq9Fo8Jr)Ju)L#M!F=J+27oI?rHYf=bTe*hE_+P
zG~7F_@xZT-sR1qLal#e%yj%~gro8*%gWT)subh~5HE_C{y~ta(=jZ;FQ0mk4>ylTu
zB<&@vYlnxAmS7<Fjc&q&xP7}?HPI@}!dJ)F*R#7B>WNw0$5mTMnv<CQgBOYkMq>>p
zYLAenn+Z|maUq3vr4!IwD|cg@bYa{qgp?eE(vOW7(TaL%k$h?WUKie6Q70$u-{Cwd
z*e<;u|DW>4B~k7oV2$TH&(j0)#JcytlIN0NySe4VRzk@WgkTn~R9H7YGtH32!|A8c
z4$9*G0@8RzX%+X0=IyIn^bM6A6>}O$&8mf27mMD_SE1?TDnEz#bdWi!F-L>=3Gqiq
zAMZkjtWAtvC?e+k(b~(+ri9x2l88~h)pW!`KluN`_w+A5MK_QOR=+R-yO(^=q-sTG
z0_HbP3ot$Ag3PQdFvwZ2<m7082cs7+%bFWw6Ev=@L3xgcFeR1wNzZjbQNB`2evhIl
z($oy}Rw_LgMN;(@NS~Cm7|x1ZG5lGUejVguSmyE@#yfq_CxBOaotLZ6{l7Sb^)=9Y
zEY;0a0Fkb=HE$*nh9i8-3?-g*E;Vr&og9>QXC<+pD#kK<C?7v9%=IGSe_G8h?73NP
zp3?o}xL?<^@+KK=oK|_0{`7jO_|w`Xow43u+)Z@z4VakDb9K?pok)jS&0|LyRJQMM
znCVfM#WOCyxBGp6N1uW6^gkPx;Az_St?Tc<TV9p{z*crpq$KKvt<bCRyoN%N&GnO*
z&hmBV;$e9Sps)zvwMFCQcVXr1(%*;A|KH74np%EQ>GFC7uR9B4yD?skr2~<r^v731
zW2*WQIgNJ$2RRxK%rvfP-~%wWK&XfFe;a`kF`;;#?H(N4v7qo;YKa#<oSeLNc{;3&
z(f%`LlaFxlnh+0ysFqCxnpSvSAc_tjx{j2er;)sGR7LXFkq&LQ011_X48F)d(vhn_
zqBhTA5v9s=$_xbg{Ey)2<;j5$zl=VdUnDIm4FWU7t{T<;NhoeCj@FY)9SBkiM0K^_
z3J-Sg&w}fp@!#w5+K(*`4qNRBfSHG!5}>p+UDl67tyHd!0jU?zAq&#DB~Hbo)JJU`
zZtBIJRb0L-hJ+Kd+~!_SqIB@~k7(<3HRB_uMc-b1j-Q|M8lj2zp5Xr+>e<tdC8R9@
zR^i<TOi1M|DetEii%R`~MLsy_ua{qybYD4se8;fgv}~J?uKvx!S3S^|4%0w}trQ=w
zulK7~^IZ~sy>yZIfu^R@ck#E|&F@P{U30hQMWj_#)8&q5*edC+y;ocUeqlMKx*?Y{
zV@(4U4f8Rz8P=`FlC&aG<^3F?t%DQRy*3i@?77X;kv=<Ejl%myeu~1QH;S6ecUYvg
zqY7w$uQ6Sh6TQ8lIEU#bP<FKKM_JKf&RAR(aO%TXiE4V>kUt{q9EVn78wzBRCAuf$
z<vOF4BCwuHWIC?A$G<e3v@%O)qo}L8Q}NK1=A%>f78N9FsXDHIONYGN{<{}JZ-y%j
zws&d!+Ab>zS6Q0(s0AepIa~U!)onM!)_%Elk`qu|-uUlD&}%iHp<9FQEa!Dm8lRGt
zJmI~bJFG53Bzi<#x^x(fu3jp%RQBq28BMu&?=&kdrmJHOk4uy3`+LKus-B(!I@rej
zjPN($C4uJqUVirtIka5M>#&SQuSA^1wzLyCZ1qB`P&f8xYdu;tOR||ztL)QXN}N+s
zne)Vk|MgVgf0pGnNHE87E^oVNsPreH8MIvHsy;K8{g5TnEUdV@eG=Co`kADzX-vK3
zJ+T&KM*CFvpl)H;xsSPyy$92>3QT7V(4xuGnT~K@R@)j3CWmr;a9>?MQ+}KQ<dpj}
zgTRhU=Ztg$%p{a&M^)@fiNy7^PqgW6RD77WQ}mhS!H3Ds6d9}?1ICbA7<6V?-Q}h@
z&hQg9<c*%+%LjjuSFNN({kH1xKdv$dueJ#Y)|UBKOJ8%5=f^J(`&Fu)?9C>ZzF5X0
zCwfkta?$~_#LTH~uZ_!R7oXcX@TYyj%(T6JEY|@ua>xl9ZuO_lZHu8?s<+EbLHqT+
zM?euS?KLu6VNbs>K?E0TtFJP{^V|N>|CJl1$<3N+Ii;(we~%&C@83g*H_>=+D<MMJ
zuLRp$V21LzPFbL+_t1}}UTy77SgF0uS2eB^)JJ>d<Sc2mrZ@*#%@~AN)f$5<Eq`dK
zRoB%`zOQJgX6~W+sBK&8BPCAJy6SLTnke)gul+IFld&ybx(7Ry9xm<6g9Eg5^qH{V
zo<~Rqy-*#|+M}qo#vy4x0mkCUUzV@N4Qfw5=+(3aR($>jkaLt+eoZ^3f^z&OH183y
zQW;|xb$XqjhkHeGqAuIx(`?H}kL7cj)+nGi;d+QC=#-skiFg0Cy1ce)l{y)%M5~6a
z%3z_NqIu$PdYP=nvaNi=%$2QaIl($Bw_g=}wDr5?-03&>f%!@nUJoLF?|&{!z3h~w
zo1hfIOE#dvn)#*7Ygl_<zrsWRA`s=CCYw2(a%&5XRu{|#0rB}HZ?UY67q8ZqR%Kkm
z`tHwc-Jn-W!w(dl#k#c3aBU2aOpoxeVQtho<a8Hf(l<<Ts>X7&>x*~!QrEX`BWMyk
zwTR}v-{(&CwVyn!|73YyeXdi_3s~RZqb&{>(^Nsi^Or6kiM__(l3%$8)#l;4KM$W7
zuMci=-RQEW+@_yL<KL-{WpP`M5Q<RbyLuvl*g`SC=&!g~t!@%@d$LD*seDmCMeDtn
zTQ0Q`1O4Bn91m<tOO>JmVdLpX<qS({geWGAl++e0DtLSOb_k;IV{k}Ka;jB2i@dsq
zcXWb13Dsn{))I337^h8Yc7j~j4)~<hs4V5?F%+EJT%+bF)-K*9Dgyz_QSJo=)yjMt
z0w@c`d^s?oBaa?DTzT+Q`Qk5Ler<>ATRf`c*J_0`qHrT0K1upu-P9Y5L7dFSnpw~V
z8e$$e>E+&!VAe1}&Z7^0dWf&+x8vg%no;5TZ<tV2us<VPwm?4n&qlAJtl{cGJpY&O
z!2(QgAb(+6%4~Y&3DQD&ixk2A&o2T{m6RcL2eX5}&jX%@+W<V>n_T`;<5?_aPI);O
zgOVv+A=&63iKl__AoR<M5y*$Ml*eU1#3UyNu4!I-AMAgo48)?h1)SF>_S!qO1&!U^
z8SmFWBer{*FB7C&*ZD(Mg!$aq(<<dWA$HO|?eAGU8$>`(bX-5&DE*%5lx9#DY{-bD
zmzs$zZ75lh0#kaD9!kZ*TCh|B3KjV<`yyOF^nLN&*TCxYI5k>A6|$o<Tb^Imbo6|4
zx42=Ib|M4=(ABx$i<7a)+bDkIdKnq>F<I23Nz-8;F{IosPvV2~(LpdNL}|c-_Yj6P
zRsUoC#36g=Bpw|5z-cWReLlv~R6i%fH>X)fU=MlNo5~1y(Z=;nD(K*I?POJSj5NNk
z#bxTAm2F4shr-G~%Q&(Rqw&#Rgv4nQejkV<!#dfWd{A!_w$I`y=NmtbeqK?o4oKS0
zZ|iX@zYcn*N<OFjw~46KT7o9pay#U7#!vqy1cIDhc?tQWa)gZe1!-I$u%*NUX!#Dq
z<g6t2)G0rtgf7*!jt)w`$kp5{8i*NxbF#hFsWnJUX;fLhs|(P8ye;p%%X=(*pH^J(
z!`kus&Od%6h@r-PA<V9=V^47+kS(Nw${&96<Oj#F<sg%3;s>1A2(GR4PL`Av4V};k
zvyJoziiT;hfArHYBe=iSQV;uKq@^t6=)XUBwDKT$xX*2WhE^9}>;4|zbYc?mhhk7L
z>n2-_xhcH(ttb`RC$Q`|0BNSA$YdtmQR6iF0dM;Qal8C5q^dnj!Pw`8nvB8owq$gN
zd}CxW{UF{Yu@FF^>A}GRq);mL-mP^L;hVl5zu4dZZ=<b^=va>le?B=B<S%>&X$!IS
zv8W0?8$@{g(j5v9*B<5o9z3@lu6#J9@8Fp8qVbkxE?MGN3P`d#$t;36781$mklA>S
zutgiOJqF2VcZ^`QEHy?h8hN~vleM|ZXy##m38)+GAZ6T-<l^1yVJu?dc4aZ!S`N#l
z#Wz3--1M6aA*A}`^*AnNx3=cqJDVjHR}dMsLnxe?qyPvOZzwBXd^HrRYUG2zZkX{R
z94I3+_jz)A87H+VWg^(s-}brQ)Q5Wpz3lIK5i_fP0q;FmS;SK;lNxpr=Vw}Jh@BLt
z=3Z&@sxZRI_E8R9hE2vB6kAk~zx}OH{T6d0{HSR8dGe6{<3Gps*FsS&ah6lsK%!uL
zEsY~9qY?z3T2S)>jM;b_jtDB$LvYN$H|+jt+7UP9U0j)#@7k69i<ecNSABjo2S#~K
zdHu)mbBV~xjMKBD|557RVSRpk*L}*Gffjd=0#t&lvnZ@wn8@BwX@JkEvp+3Bf#PdY
zBkx;&_$!G9w7BWPy6~bJpXKLo?-!o2f-m(15+FnOnf~&>WRzv=`JZjp(m4O9amu|Y
z$zS=0TIosdZk8kvdV;9TphDs1fAP2AQ2Srf;pg7L0P6J0$ZKnYQ6!1=h$JBJVE$&O
z%Qna$K)0ti^Sc<O2qY$PIeFu)Ao@ws!ee+_r439=X|YQDW-HV(DI3;UIavyj`Z_!<
z?oLUA7z%XCrrmvK6KZCuIQ;pvG&f9Rb3!o#i`NIB($@)?Ta-Zr{zDpVD6-0XCthub
zAwr<|QL^Fu_N~_(SQL-++Q=(DRl{ABj&@f`s1~Wr@w}JRlsy)uao8CQ9m)78$zAlf
zGuS66RZ-Z<kktYw`5~vkYp_*KZY+2y^lRu{XrZ&EyznEwD_>seh#I;>4tqI7c}j$e
ztoz5iI$Nb@#c&=Z%4p0!#&Y0UKzIae`#0D)!>JMcIZ6n#@uv1bJ!-yg7Y$U>*i{{a
zY|BWERFH`U3?gb&M>Bpoe$(_YRb!;xSPzH=Qs_%4s_6r%JDvXl&yNR4p+W&YW_IP;
z%b)i8RlpOD_~jy~E6Y_=DjlP<iBHW(+Iqu7FF=b4dR1w<K>9EAM5Ib1PF5OBo?n=k
zGoVh9g3+P=eRhO>qEyXsQsq*X*ERHlA03VUnU6UYOFz`^HlA6qF>P#{BB(MtTpS5r
zCFP!U2TQecl04@+f*-U8%Cmm5_hQJxs4thJQ-{01m$_E=!uRjA&BH(hMK8@^O`zCe
z9zB1t-DDf19Vm~IhwCSfSwImS>se|@1C9fc*8eo1_z_Zs|J<?3p)SA>7k24~@zJxb
zc#u-83bRK?>jUah7fOMXXWu_4Y=>aC<zHg)^sF<@H2@0e>-A_~AkBuB4-QV&mcFKC
zdYNi32t#pL_1%Gel4NB>A{1d!fFPor<9ks45=6Y%T|dz<qNR{Z4?|P7WZqUhfr6F(
zLQvr({a8+JFQ)#*h0L~srVLX0G!15HODllr_0`r*;7>S^B_7xBbRk&nia^HatGgK-
zw;b93Yh=z<8N;6o=$nnpff$gp-om>-t*LdCb|8=@b^WFfMqlEDU4BTz3+EUyG!hRp
zAo25}hl-mJ-5<=U{EjG5VXMBkt{$eJkHy<ktE;2mS8>C-P?Fzu6_XyZNZlaqD#@OV
z(n*&p+}aTm?iLT4#4uPUaof0)-(jxblkq@Q{c(h2(!9%7Z~(As4ydRkfb+#_RMv3x
zas-Bl@mjpUqxIb)DmC%dU*IpGSh--DXP)e!`gprT;aZWiG_gDZ?QXV*6M+yDdKl^T
zTU*%>&*r>8|2Qv+*@8%xA3%q+Bwz3t`YX~3nkwFVp6@K^(?@a(iHI?%QaJuEb0Ul9
z6Kp&`96!tPXbaeGnKm90Oo#iWC~0NT*G`)%!jmLfL&u;Ea;gkTXulH)|4yQA?<Jr=
zjj;P!v3N!O-s)JuB!qW&&4PJ=L`a2?wY&Md!{46+t41B&2i=^C>-kQHEafKYd|lWh
z3q6&R(8fb6UU5m16<!#fwRW<(M~`qn2DwQOf$+ojQ37_i4o4bRb4d8@A)3&<@vYHT
zmqjE<@$pIN{Y)rnsn%DzzdKGt#zqvX;>rJfP%}d*JW6khCAnNOTFr-KP^GPfEL?@O
zEZs*$%nZDm7Z?>JJ)FGu6hc$X)o3Rx{<qQf?R#vAvh?)}qB6edcTd$IQ+@H}b5GAq
z)Vy(_H+A~b@}(ZBBH##M5rh`Yfp_Mor)fbdNO)KB;WbwLkCGBvHag59%%F54!-T4A
zyX8^GS^j1HH{=VHDM}=U&U+J|#Jt0!xVc<P0Fu6@`^D)Ebrcn$@c++h-Cl6oyw}sD
zW&ij5VU6Y;=nVB!m|Y^3vGS1`w-pzy^)ofdOO7;EIij1>(b@%Kv=uRZFF4KUk?wTI
zuZ7_y@B{;9jz<DaNh3I?<XJ6_jtdw@M=$$aAWCMx{=`zT)K=-}phF%Yyzu$ETfNMd
zRTwJqW%yM0Hswa>Jjz-Cyt)x>zKHT1uhQ!;=I#30Am#Mvu8YixQ3i0DcWxxbth{DS
zLmz+ND=5^Kf$IF7N`+QkKK*tpvFnE8c+-BBc#f@q_J0?T`JSWfQ(@w+{+Y>mES9^S
zb|3S?_N{z^XFWM@%Ucz?+{0fe!3?3C7xW;4pW8tvu<r^L#36c}!?SUe@W1T>lD*W~
zn#U9&xaa%X(V6|QECu~^iSXii*8lzICqE{NXV5>KAyG}}r-?42nsD=G_F!a6e-F+k
zxysg7y*1cANBtF^&AHY-I`x4!{K}_Bj(L@INhvP&<kPIAmdfwahQ%W@EZX{<tQ@^A
zIK^X~_1eOIy$1%<sPc82J5PQ*K28nKy8y-E1&<+`Kh`}BM{PcOLw3s@P(jMO)~wjP
zp*brRCAhvzr5D!wrTHzD30LP?hA-gfv=SgDVpaMSU}kOT>VBC@s6ssh;y=)a;du%1
z;erbk4^q_N<Jxg(^t|LjT~M@9N(|ilnS`VFgTaG0@9O>JgWjY8>UH!?>j_ltiq8eB
zqW=oid>@rgLk(`TR8Q3f7C$huz*UQg#V<jY`nD=z`q@>p?Y#1r=AYouCdYA6Fwnrl
z`S?Ma%862e7>V<H$CrBzT_S`L`f{zOWs-$$>5fRdlK4RMu&s-JY^g@zkj@H59|Md_
zyOsh!K}X(CL4nIlqjMm2%F*Hkrnep#(X}>!eP7Q0^jw9HR8C-0D5-|QYD?(*Ve+Y9
z$eDtNiqL$%kg-Jmr9V~&_bnp~e8@u#0I{`6QyEy}?(`z{ftS<ea!PnCs`!rP-Ol~`
zi@p7w{pYV2*&>@SY}{Vk69ECy#$E#phlK5lW6!3z?z_`Z$+D!MDb5;rC`*dYtUz0v
z*B2*;p?aSjK2P2ar#OD6qgaXq@I;-OXD7dHJ=@yZ1!Z5}z6X2*ok{jdWBz5?HM2=C
z>f7t9v%C3Ql1v`cIWetTiMotsNP!nbJ%>w@Vo$N2YnR_@79fQ(AqDTfyh8A{j14yI
zj9NEI-}@u*#ja*Gf1i7^u%&4mD?Oz@db=EX7O2(a;@@wzZ0K6KsOo+#>_52$fDy#1
z<nDGR3YKb_j%SM6({YLb`Lq@9JWuK1Wjn-j3W+&Sq^pb}$y=n<OsJBMhF|h3IUfN0
zb_?HlWS&%j%%nzC139W~iB8LVF8cdv9SUVh?cewUw0vh-O>wV+U!gWE#pOEmhZ%Z&
zimX0WN!-@JQVDfah8}J7>Ku~!sVugZ>X}cfDC_1=58ywquOi|W`XRzUJL`o8e7huV
zP#ZuoQEq;|ukNIqDnC=-%*=lb^W&HVwFd#-aIM5}!lCeC4kmY5!?-<V{ImD2WymlV
zNH{X)=ZRyLQ(j-Ts}*;^Vq@~x&vbaaa6J!P_RlB$7DV#hQapT=TNM#m`T~-L)!&)v
zv!iAxZ<?Y)-bjA@^RJwvHQg^Hv(tHaO0i!C8d}eCutAz>?9JjBZqTlzchMQRrm~!U
zZN&CpaLisDitEc9szYOz3^#TK$C1T&b?`e~$Nt?7i(@qfb6e^QImVFclXZZ>QC|_q
z!b@#TKF-`-D};fp*p?RV6;1%HEU{_5J56I)QZ%Qy>(`T{aCx@**Qyd1PmsMX>1GGd
zx)=1YXFnDX@-w0h_&K&k#C~)31=S}j=lPZ7`HvL1_O?|nzE@Vx<2x5+(9W{qDK{_6
z!guJM&IWlH?ayN2ADOfkYKF~-tnE$HA_3&zjm**+=y|9-kPb|2Q!PcEUav;;T;+T!
zw|RoJPBH>f-%MA0LUzB^O2wh*Pt_JrP;sRkql{xzB?LSi^JaFI(_qcrEUOejk>X4x
zdrDT98u>j2a+?41oA6dG^z6$>V(+fh;8pqdc5(LVGpZXa<1&v7AUR~KrzzXJxxW20
zf1A)v-o9g~WLCVt3GXkES!x_zf;GT-`zHvv2(se6>21!v?@B!%>t+3#h%dDgt_}Yl
z|EjQzZW>y^9DTc)z9)Cqymw&#&ZqLZLD@Qi(tUCvm66lCNr1jmNN4@R71}~hmUGgL
zBBgD<>hGD|Jx(#jq<)~;UiqLHleN3IK~~1s)I}+lFTWkW5=Xv>A_!Waj=3gGhqbxd
zC`~ZpN~JrVfP8$B4owX+I6ePkPSX#q5&uwo+3Wm;6#8+ER1GnL&jqBllAyaGWa}4x
z(93B${4IhCON+^*Q;{ObphZU$%42%w$ZEe%({xulwdNjC)})MseqY8W)jVpCRF;a@
z>*Hr!l{rtEP*LH}R0-CsZQhGnh9G~`LRf+N?u6#^&kQTjQLSl&gW6&UR&_P{VSlp#
zi>lh`6wf)msl5<V$9@s%Evxk~uw)u=6~<aSdtDuL(aSd(*r<w&i3;XkOfPAp8FmUw
zYft5Jc%9u%&X5GT#?7Nc6h8NQf<h(7J^64^n!YU6WR`Pk&w~DNjrVU*Y)fhBR0mR-
zza%)Nc~f*l7cGhBcwe1vtvh9+poe-$Xo_;KF+e-Ixv#xa*THqW*_k*?)$(Y+nj-i=
z|5ZN^gzwqSOlm%<uDbZDGo_+6De`|!JvBcCcK0$1iKxXlIGTNSUnYK3J0fM#Lg|YV
zYvcpyXYCkV{g*ChSpq@%X*vg$B`j@N`VKuFjZ<eo+P|%#TJgj_F3F>}5wp4RE%W?N
zzTBE6KzpZmbB+9t)ve$310qAWrRUm?_sb8O((??DI3fEwuzco%tOA<q13XD_P_m2|
zZ0og~B_ld#D|d>mgimO}wQ;nvJ$cLMP_aOl{Za?>=+_*SvKb|51oVxQ96MWnD<Vi(
z^<Pu?wi+(61;N_>dG+vwE^aY{PO>x+Nq(=*7HO`#m%TwGo_*CewTf!rHTA~a>?5I=
z{>HYb=zd+`TDeQ&c`uqzYJu!CC+=O@dCyET)9XC07IuO_r!sHi3=15soD8eeFWxy#
z?)tcCRhtwZh0k$IlKt6~4S+=M=PxSbG;qlZTHSH5d7BavKw0*$RKh|B(XgDX!x^px
zA*^3b8^-PN>+yE$s@zYnz6!i(Ej0SM=zETKKp(e@Dyv2tETa}q8{0!8z>C$xTUTe-
zIa8V6<yB!CtzcU73EsvY(K!2Y(H{fp0<_>Y-eSTA$++ix`IKvMbdHVVLY;M?b=vi6
zZTM%$0zv$3m(sd^JDnu;eXGJ;KY>wcdL!-m(RrR;I={8dXr(Uz4?hhek`S%W2(3mo
z-<|z23%X^kKDPr~`eM&k6jeJ3;+M2AfjJFslBP&0Y~+$o%3xu4P@)@`KgNbS@JMU>
zzn4EFgn`uZ=N$H`+aVv#!iR9WLzxju4t|W^sRKH|0TBlK91c$Rj1puoc~`C9e*IpM
zh<^$Wild`PK<OJ91rqgou9uvYMDaP#M`e>x2+L-eB%s@v1`+%F8}&-*hL{FPhec`m
z8~Qhg>6spjNmzD7YOp|0(BR5`>1sh1lT;m961YG|xExL1dSjX_0*UVEX<Cm);a5Bb
zZFl)&le!w`m$`f51}DpQr{~<XP?~CcgdRAI)?Tia&<i|4gkEFf1MsWUmL;HVkMu*0
zrs}}p;>2*2=(k`RO%2o+Ls`;tymWz+h1AS94sX4r^^our?g_+SGC=XCixgI)TbfGx
z4iKR1eQh0i^FO=`Pp32v-s4s%8Cr&5mfN~`=ESWpW>@c_VWl}>QKEsR=hL$f1V#rY
z7>jNU&wxAM(nwL`5blQ7kBKuPI4P!Zc658ANc%tt@lEwh_oiQOXyA*#*Kfy#^q)@n
zXzjN3Pwx9O==8M0;N_3GGc#8V%;G(@E_ik^Ep13fb#w(L24_DS{|GaxO!~++0GD2j
zj|$`PzMX#rYY{@O%&QSxT4tHDYFbJZT*;LS!HXhgs_w*iiTmfKHQX+H0&DoR=hq8M
zvha56le2hT$^E5ugM${wEymG1YHBc+UtC+=9L>+J`T@q1+5z5SX_AfWi>P-sB6RBh
zYz7!QMHEWh@JnF+qd#u@&GNO<e<7#^D`C#80dmJ@x5ZX)9tqXO<U?1}SvnABrhKyY
zL${$g_!92D4fe8LXgWqRmK!!S7G64dUAqPjjy<todi!w><~I?oh|9nA-4#~~w$f6V
z9B?8o<FeB>urGGt@&fG561EV&ZnjRM%bykj(6fMES=0I-9x0@*=Dj;ii{n@%m)4wp
zxIEYPF$D8P%hlmF`m`^8!X4MRXSDw*3Ig3RAgdpCJMU5Tg;Mzv_^CGGLL05^&8?6p
zO`N8Cr<Ps13ukvIJV+wH(wpP6rM*uH1Iuiqr8YSV2#$)gBcv4BQJUimuvh_D;$b?&
z)35rRNL<8@h(K3IZ$|sVjCL2c)A;UEIiV%J?iE4jx{g}JqG^;kN2PwpS1EmGGXE!x
zTvK}{w=o}AS4H~^C<jZ0okar3RoZAWb<?xj^JNjpy~1<7h@By|B;{~64{R%7EWwG$
z#ry&eugw@hPur6Y)Y}h(A*Pb|-ahDO`4CrO%za6(oGNBZa-6n!&=r%xfFH<2h-Mdo
z+ZKCS^u({DM>;t)OS2?gcC;-V?PxbWY9yp|fpi=!_xSzw%2KE1*0)ZR3I51$FGu5*
z)-SwWsR$eA_H@b$-xsy6-4x`?JbhT%YVCc<2AK6V1Zc2?C#Le${^?cZIF^F{|MV;D
zV_HNUOvG$)of=`*=BG=E9Vt)7a%(3Qq2{%eZ9)gp675WZh9tz)EU%Q3QdL5L(=%9{
zJj%8{p!+Oul`!Fh19WjN8g0IrqiO%9QMFg2_Lk|&esH1p>gc3u>xZgVMn~ItML+gG
z*?3lOgD>P%)IQVM1EM{TH=KM(9-7BPeYGwGc?h&fi$6BnETL1EtZge+0;%$x)X%-~
z2|20hLcW<8Ks_)CuZ&^~#AQyM#RC5s7_@E=b}97504pWFuypr?E42lhOUbe@PDMV$
z6w6mjU6X(BF^IebzhJCMyV>o3QdjHC*$J`sfVkm-Ea|I*f(hE|82uLE4Np}*%Zfqh
zDTvG3yB%1ZmicZ_c-0}9_a1@wf{UFp5yr=}LJ@SGWM-@zXj)YW=UQql#TQ{4+OLVq
zW5!Y@z?M*$Nk9<b-w#R~q~a`=ntc|LGJJ7oTT|748+GUdUaze$h-aMt7B2fBUWS&t
za>=~tWrw-^4v2!i3AF<3z%5qZvmYI05S`La|9rGr`c)J`NpGFQ+b`3%EBu%mkvnc8
z_^=zsI;ku);v))rO#F?T0(L?PaK$c0TL_k=!($D{;+VBwbmb3jlItZ!CjAJ#t@lV7
z4^rFT_ur+DUduT&R{w9)+pkI6%tC$nu^l3+o#~ZG0|bBklV~iYO{aN>VQ*qU-l0P?
zNvrL@-Sgl3E-#}#b#$92rM`a&?2zCxRNc|}M`6!o4m`<wWK%{wU9Ml9yth0dYzw`k
zjN>CS6E2v@AKX+1^&Jxlu5gKt+4B-8W$~q)LkfRirdGTVvYTHv=M(>Be#~&~g*TP!
zJM|;i&UMM~d0xOZDbF-jH7$>IV*&Hzg8QeVFO=1adWAT*g;mrBmi<b1n&x)HRd4!r
zFo!kUpP$Pj+^ux`Ghi(`;*5S;A4F4UV@P$*c{_5;fNi_>d`UU*u|&?iWk^ZdmrMG5
zz)kzsC5OD?25fzGsBXF-I!I4gyjQ8<Ep;EwiytWMIU&NVdUO&@3Njid2O;SH+EE~@
zlZhP<zN-ojkE3-~j?THXz9^K?Cq`e_7PWLZG>Q5M8J#cMX#tCY9}wa~Q|p<sWtG((
zj)m+-FEMim$gf$!#RsUXmUZKHwlO^wA}_4GrM&$*{gkYwRQ2ja*nSb+p1EI?@;FHx
zM}`&(-c~;Frf7QwE^S)`w5iD@U5<e>yQAla`zHsj;&yzUaG(1Ba$ZIZaHhVM8JF>@
zwp~#=orNOu_mS|Jg_2?pj_nLKB_aUk^O)o5k^a_wl`uwH^29k~42prY)_K(6J>feq
zGd+H@DeYzK#>*M!;~tJG`c7e!HZiR<>}co2_r;bDf&6mN#1ycYVG&lgj}kjM+O?yB
zoq1#fD4xEWtgv%>xK|T$;O=si^Y-LH1}Xj;cF$DiRm*dS{o>DpT=tfXH1%0Li>wj3
z!AMM7?RgiQaDpRsw>;~}?sr1N>heU_1<_04ZT3<L$bDzG<o=vGUBQPIkh!T4?(MAd
z3QM;??@sb^_DwpB_E{<?`SY-<qq157I4aa!HZg+>>aHnq6NT1I11#K<=Ihh^^O-EF
zULL3TI&Ho2M0B;YwF`a*#Ahkgl3!c!1p@B1a4Qb*_+n*u68$DE=U)v8{4%+oWJUrJ
zOLxyza33GWI0&0^8)0J&_gAOI^&#mf&!1vccROs=ULflu+%8F#&f#1<lf=E6fR|e7
zjhDU;72KVet)PATzZ#=4cU*?KxHit&$TDY;Tgzs4Bs3qo2TwkXyrt|2Jctij+7V`_
z+o8?Y*|{rSwtC`z@UoW9lEy$Xf!$*sz{PG1*O;?;21}K_$!xcn>sV{+lgSIxPnjQ)
zj|-KjxI$`b$xNxYTm++k24%9KPxyaZrD~!+wc{2jRlVYDMWI0BJQXb@$mK1*nqd3?
z8Q>>jImWplB>QOd)#l-Atc=%dlD1m%OA{<5%N*c5>@UCY^kmr@5aylW;y#c^z`Pv4
z72w_8ET_LxZJ-(__~FarHSaBD_Cp&XloSpDr@_kS?XSs-9L#Qzl5=buqU<71K`&+Y
zt5eLCuu`M974dv5qb=7ScY&Zboh=+p`7qxbRp&#Ijx0f6Fw@8$H~?W>B%c1u868}P
zq!%$7&rgFwU5X)%5*_IYP@X+AKDG^(>HEfj+$8dmd(-=T6x5aX|1PY<L1h;LnU2%f
zANQuFAA8;!Nt;o}b1d&h-wojLpquz1rAL=SNyQwcQ1g@L|BJw9KSP+|aG8Gb=C)15
zSlUiY7l}W~AmzZF)mSX1PyZTP=F5pt-MS3G#ZK+1&2Iz_HO@qjj$6;%a%<%~^f$5!
zSC-e-CQmeVrjkU@2JXFaX_!Jc-1>!Gc4-gp(swr*8_<0v^VYJyH|NJJmkRX~?Bjj>
zoXs3<K0hkJxy`lkFb^=-?u4_Bc*F1fSR764Er1rsS`fBfY(f6)aUV*cjbSEoKKH?#
zMq{Ft+822=y>4!P^LaKxs14LnKb7LuS2;-)grK{=)tQWu5M{IPW|I#0%@B&e{5=>D
zsr(%tFk#TUB3lX=M8cMfAN^Vp?u90@9M<po&P#4>S5gZ%IlJU&>>lHi)0s&T5hr1Y
zWhjr%r&|JNv6x7{ol2VQvP@A*u}`pUFaKCGy<oI*Un&jzIcUeM+zF@!Q-Zv6Wc{Wk
zlZv&=?+pVBGM*TjCyjmR%ongX>|t}w=74eEi)?7Vp%D>Q$|C1dG)Mawcy)BV^al`u
zi5bUP^lGKjlpB|oHz<Q9@%q88E8;9;vH#KSg=f~64dNJ7rWpmp4nnL$seQJ8sAEmP
zB3~{1ic`aY&ZqCoDK8J}8V`j{fWkyprstB1GV~e9RSmvWIL)DBwxON-rg<B_cYS{T
zxy_kWTHsT8Nnzx|6$400SMH9V9Rf63aztGIv@k@d3@gX&sbjrtF{}5l``S~MQa`b<
zqgN(9>1==g@zy$K$Hb}|F!!~|^eiaq2F|jYmNZs~PEE#6Q)27agniIdKkU6hXCA@^
zJ0=OZg<8ycSoTPrsnWi(tn^c&{0>tmC~kov{VaaUev!?XAcKV~j<C-h$r2YhJ9va6
zZAXA?!&+EXK<Mqq*p7`)cOXyR?8WTe-KRTU3GUj=r}T`7^;oO@9Q!dF_Bxs3%P$iS
zZ4la`&$FRKz;U@q6dPxK@IFv<01LE=HWMF(haZBRTPzJ|X*1{sgGLv%a6JJ{kpV#n
z;d!?z4<TXw;&7#F%EfUvT5Gh+*w`k69F`RLc<0#|Ni-!GN@Hr**lZ75|2QGNV}{4j
zq%_Y?SH3tmg!`;ySCB@{nJ?W6dmQo8Pfl?|ULs0px<8!WU77P|OUn|Nnjxyy1u5EH
zbYe?O!M2@9Tgo^rtr#~#Ymvf`CA=kovZ-Q^a>`4pGNM}j@v@u)B;FobrKq5Ly#8vu
z*H`O_1jOj*=QJ#X>SVZD_wNleDv6b<zhh|YESAQrPuENyiww#lLyG!hkIhDs6&oZo
z`?|;}T&&(kY4AIKwF}38<DZu1yqjIQI}6f-KoM+bBey13OQK(v9O*II6%91~h9Uwl
zh!4!On3RORI7}NAvK!3gupj0KS!{m8&8Xv>qDd@`Pj|NR;{EvtN3+2O<#tx*?j5BC
z%-Os?gP?t$n_A&yRkOG9a{5QXH$As~d~OBzQ?W6;b9vccGYvdB&ZRJ^%tI&@VoPsG
zZCiHaprl#eLg!XqASB11Ek`AQZRxO4Hn|sRCp9E3Ub+7qzsQpvpy)jaSE0YCbCGPZ
z9h;=4u4iENAfgrpK%Y5DjncsL4Ilp~S?A>Goa^|{i8Xh!e~=h4>h@Zw@O=`(GGL-j
zfO6ZC+fZYh9(>bOW*x<+EpPG&(yG;dp})pxEKO7z8szl5nk93jN##G-PX&ONm$x_H
zY*QDQTrNBA&EBV@Xcg18g?SIgy*PMtB#)(~cB)YZ3X?HfEA}xoT2fUs{&0+zU(3B7
zkxs4Aj}rO}QIEf8I6$dILEpHlm+hKoS$Bukzxj1C7kmFHwegU>DNNk^0Him_r0=au
z*&L7GZEj$IIxBo<st`v4dd*1XPZB0bPm3F7apIz#j5a^cOV^dMPy`^G=+cb&Cbe@3
z3vPQHU%x4rO!C+|Nc~!6Cx!b_9CK2!ZbxaWi~2x8LAaBA=rllB952~EA>^iW^{G!z
zB7dJJrc2f-V~!2awRqj{Z!gQZReG{X`9ha@sOIoi?^PfWNbl-;rn+fyxE071sV`@w
zdl_Yx{a^l^EpsTn^ve9^&Ss1`hdjTkl@U&It&M*cxrpCnRR@#BE8Q%(#HzI#uq-PL
zVT$3n@0&m1GjN&zFni+Gn+=ZtA{K3)SUCE}2%M80>)Xwyh3&e;)`b_Z89=oApkNDQ
zZkEEPYX2>%H4k!B`=1O7ya~@k6lyW$&Wi7Eq!`>ICyN)!AHG{B6bB^lv+i0Ae^=%I
z)~*(P9i>0LJl2l0zX_{%?@z2*=&?qDz89JdcNtEpYv@HS$9PL`L8z`ryQlxW^}3Td
z!{vDC%@<{KlODkne~hAg=)bQgce)Ip4S`_3EHvLv>k>--DvqJ7n@HBNNN&-^Gcj>`
zF~3Ka__X@gWU+cI(tC01;HVn{<mV868UIQYsZN_DYp7twZdPQAM>VL8d-|0l0|&mc
z%q6!_jB}$6^Q|(};DC-YCJCQ7X84bUiPZWZ-Md0`;eth3Q3FigV4;w)EDUx4--K&<
znu_CTfzlDG8jtRtQ_%HXhH`a5t&*LRZU)98bUIF(aM0ySXvl$YoJ%R`d%jco?{;px
zz|PAyG4-SE16_?5fN(#u5ep9ca45_rHJO-~h0CnD*&Ov~Igk(2;_7Os4!H+baSJJ+
z&6VS4{PPwKNP9ifNi}1mwmy=D{ye&x7eY*)sD-`wn&boO7kk&X23t-P`*xZR&i${X
z3pr|Z@Zv;Y!-JiZqosMSztMhWvSvgu-QPA|I<jJ5(~5|)(5}CCzQDYunaYH+9F&gH
z;~6q|{x*j>f-BMEy~^zILp4&gRb5iHA|jB2nd$Uuj-L*8<TWsVz>$QUh0l%Nz*Xi2
zoK+LpZe$)h>-^Wh^920;nM7b_Z0GRDq13CXc2}=G?8*sAf}t>b;yrWdm#L*}K_>VK
zh3d=Y8pE;ZYBUJD(ju)@ca#jiFhg(u)t}KZ<=(%SHLwV<Hq}L|+dKOkZ?^YW4|Y&6
zDC}={kV%upF3kNiyYxq1MG^rf-DXy3o1y5npbYCf`zIT#m%~UPe}%3dQ<4_j_LTPL
z-SnBA#qn#@v%En17sg~`{`|!_*@eN&dXT{r;o6=05k+^}V(P-X*Mf<={;xjuKw)==
zZ}Kr?A<ItxB04XVT-se%nlD{Gd_v+|=2dr&&QTk@?S&h_aPxc9waNI!j*LZ=DW*g7
zS3f6-UHs`{TC($b{$bb3P&`%QnUm^+;wT+lgzV$WihvZJ7#<w;RDDgDTe5p6FJfO?
z;Z;=kRiC_gV2WkcQfbMx@F9!PMPA#@K9raPre5!w0^f^8BupX6|3dX=t<<qHA=qw;
znW3WTLjd3$^@L#6bcBz`=!A{dAnxl*PV<il```P&cN_)Qq<FP>I|-PF3st+4B28)7
z6w4>#iR;sV#(2u578kkzvHbLFe%wu_-JnQ8d5Z0OrOINngtua{>~~Z{b7zql|Ly3Y
z#P<>0`nhWc*fI4K{fow2T;DCNe6jzlR~Jh<YHjw%$A+FKrMY!{)Rnx)ZAHiSl=jk!
zAfDgR8GJINHh*<utx<)Mnv``v#Va{tS?tNhUQPA-joEBo<u88*$fa%eU;geE$?)RK
z6uIfvqyd(0Av7u{H6Ir|KaUfyeevdiM+J~arF6#nEXnZS>e%ueWdZaM8+Y%~OlR)b
z|JF~PB&PO%=coKw_HQb&9~U$;8k*l%=C`qnW--L$%22rOX=Zz1v8y9)v@{{NB1$-5
ze5hQL%tHmSRc2{n4Yp&-PjF2AX3ICUo3BX&$5;-kLgfm@P;KH&anda9(&F{)?hAhK
zTg($5EW@c5g@&Q&ewy6{_x*??P+C@bUWVHy))O*1EInVA_03@a13_Do^q*Yg=X?y<
z+_oCKaTy)5<Ort%M^nS|^L)*qbg%vnvRO+klH35HEY-^t@r}H!XRK2q+X}zN?Nd+*
zy?8!D6cw4(RI?{njiU}zF^S*u18S?(#bJGtjI32J6W}YEkx~Wbo%7Vc4jxuTymA|>
zLHF$cAKRPCbK7<Nv(xC?`ubv~zHwz<uQ`a_Z}4LwS+Q=0-rD>$3cKfqjg6iPYtuI+
zjtqLIc0%VZm?iKZ!!VPL&&^n8IrraP1*|lqQ!}~D;H-}IFVyN5H^A!ikcI>D3$>#P
z9h_`A($$_1jjCTlt90G9M7kgpG$f-XI0*9h>lc=xtKFx<$FcI_j6Pk2Klc>p;wT$y
zG8%tzi{>@U_gJ0wZme@DKkAC0gFh%05MIl|Ke)Y;r${D2G)Li9i=bWz_E9`Mf41Y}
zi+NGB-F9#UU!`!RKq@`y<pLSC#j}c8U*7(w!kQP)OZC8DSzVZ_97D;qIvG^cQ!Ltp
zS9`BLIYRbjrNibKIGL6d#m-g*lTUC<fv0qSA)@!sW5x3$$p^ho&TkS9{TF_ddt+I#
z0i7Ru&kI<b%E6ys$ih>w?fB|*Gu=fVqN1)k2$h2;Z%Y4AIK%cQ)qt~6u3YE`F#%+O
zf!C@sZbw0;M{iS5d^)Kl(!*)D?xwj;MnAlsd=vpsYL@dUBlaxbR#Bc!OAQ*Jpn;{K
zLoVjLEDtio0O0<_Gl<scX|V^Ir-%>VOXB(CxXG13B>;V?2QGxG@kM!OkO6RuArH^7
z*!(JP{P?w7?0>~EBGJqD(~tA>P!yy;y%Zm`5wjNQP`s5%XJg$bW3_DfBGE+WDEz?g
z7UD|04d?TzP%t^6gY9Sh)J%7c1(lMl&m<;)?x8c-dbEKCx?k0iNxkKJ`Ex&$ZO1ao
zMrMphx`(2ctmvsU;_ck^5V!<`1@PL?c0-TruBa{3D$Uk_DqQ3S?-<+c1|3~icpklk
zRf-X6aCf4k`AR9`^M@}J)tLTpKR|z*?h9T%h&4y{zS^jybjmo?2W4;B)0Mo_usq?I
zXF)>d{5Xkk)3v<O){Nl?f%7MOkm8A}D>3-m%rNZ~PBwdD=y|Xzd^y_w!{7+BK^Hf*
zokx(1`P;CZy2!)V|Es?cwvS_GqPn-=-(;6$;<0UD9n)!a8xmFXvrA{h3JEWab@0>=
zx8TB=oaxZXV)TO^r}fa75n-2RMG~mg<zHSDkc;(zQ=aSU9arMno6WNDkHt&lce9K4
z{Qc=!AnJPw%?hBzlb+Q=lV3qYQTL3d7^{%@0@^6d;OD@b!|zMksf&lRE{>?(MYBm>
zzC<4t<6hv-zU6z{0PK6x#H7A34Zb?d0|#sRest0m(jy@xDC?(B=iiorR~jN!FTYJn
z9puzrLHZitp+&yZCexaVA6yH>^}rWMF(Omdv4hAr0STNz3A0zFtB1;$h5S+KDIMIO
zd=zIP$CY3qN3H{ERbm2ITY7yR<m+z|l9g=P5c3$ON<MbAT#jtpt$K)mb{N;m_aJt*
z>ecfNxrl-_^+m9+(xP`t^l_x~1UHlO(yXGbT$3vG*^;Pl@scu!CVjL4BiD}2dw0eP
zRa1m-GSODs{qg`jtxya1XLl10L34xTG8(xlHXxIc%SJy8NifQb2-GGIb=TTCwIL}G
z+5(N}qnnK2P!vH(Lj8NLL5bey*Qeji$_?*jNXO<culz04l#+H8=-IAUI-Y--y)%3~
z_VM%&E{hHi8U@kahZBkhl|y5l(Glj*6pP4X;_-_ixBqr*i=n^#%YqYS6FFdj$iNHh
z=eH7h%ii|^@a&|N%A8iDFD+8?rwk(ch&UVA-9tsIs&qyK=@8t#)Mp-BWG|dvzfjgU
zWOg2r)HkkjT2kUe_90?t|2OttBvHS$-A*fM+j9wd(qzG>lHj;xVH*P9<L7B(<2gEQ
zuQ^$xx1ZluC-CtTF%4I7p7Mo@vJ*pYR#*oi85yzM)oa+Uta~`=a+%p)WlQZ?P}u-!
zvzJvvah?!;vI^9(=8dtAH<OPy3zxgh+?u%M`R@y?!iu0E8;YThvw3g&kH9oI<q_1u
za^>(QGVwe=sVl@r&<Q^Dy2&W?DMfHr;p}}qHIZ4gOm6Pcxim9^Gs;pwhgt-I?K=Tu
z$r)Pm{t~Wcn-<5p{#taB%!(j@!Nny?41RRA$ZdNa!DbQO=VxlC<FEcu5`w48;Yzf1
z(Tw1XtVoz5K|n*@4^YDkbn`2Ny@^w)GReX+flo)j3veC9A5M<OTCT&P%B4z+S~ww4
zGUy#{#H_+hnhw=>h}<rRnrTPN^GNx}(h}6B!q5-O{I8E~Q)*P6dh7ISKic0b52m)8
z>8Q^-=+2HVv)d0WCI~g57T8gGDR@sc?C#|xlV`6jK~$EG*Eslw{(bzGdnl4AZz`^a
zE8*tf7u-|=nIxn$SxGtGCSGNnYP*xsyT8Zsr1el1x*fY{Wc|g){Ii>T8NZn1viXO%
zco7S58#}aRN%PR+fQvs=S)HH76nB0=U!ldeImEwGZU^`g7o#`llvP_Y{DCi1?1OW3
zjtZHDV0nDT7a%sG-6dc^YpUV_rsgs{ft9R#LgnyC1BBIj8T{;|=m%#k{nIdT#w%sR
zO1xZ44a!DT=(8+&Sy~}h_!r4&(5Pi6*eT-E6Tze3P)=%V7u|l4L_^h~`$RVdvncL7
zXkW?5Srxw|aCbDzk|ef{O>NM2X&ZVS22~*qEr~c@<mi<Ghvq6QJeaPJ^o}S?Z^*>_
zT~6rYWfPrGu0CY-!sfr=<lPsNOf2UR@(=w`%_|xYm)*&3TcVFrNxg=05oc_C70YI`
zQ&1(ftAs6PsYPZ|;lk;5pI3Lmtuo*IU~+|iqS1?G)OC}e^97Nn3!RH0OKodQcSNC;
ztLq-rPq}~o2`{Lc`f@76-Ik<oe2P;KCtp|Jei&`eW}#5JvOplE=;w3qmIwV8nnylJ
z5o^uHftTOOJyPGBVdK=A$8#R?5Xcf<IWr)#*RP(NnTt6I1qHPo0_gqJ_DhB0i7C0f
zpBiz{Q=F`20N`L_tovd)Qp=bR=TU5y?*CLDrB@u`_J!64Kr*@bU*QB3xZ;VZNrV(_
zy~VrEc=*k#iwM^!Emn5`znT%lIZNrTBodF^S<z^iZt#EAK|@}M$9j%a79xXIt4m$l
zCw!UPOxzU$Zmk}~xWpz)(Qlc2<sJo13hGI0ciWVJIY}^E^!@eSH$KUE*_u?t#Z~wa
z*n9O_RdB<h;`cPf?3C2TBPj?uy2%piU_6e|Wi>OB4l)KvJD6VJ!*ts7?R0k45iRsS
zU*P`q>e7X)Ovl|#kGSqxYT(8**?OMY@K{`nBWYeBdP)DFbX4%f)$A0i`|#P~M@BAj
zGS2r53Er<w82a(0bTds{UIFjs_*^)ab5;#|QQ>_;%c5|3>9UqFJ~G2w;kxP)@ORjs
zXFB8eI@zDX4cR*79M0JNy3~f}{wn^zy1J_d54^TmVQ*j9IV`Z}aVXTK7yq3|Y<k@!
z08){$QwJ10FplddL_EpnukHN?BO24z<w6J^zFxkzy8mpWKgxr&71>^(j>B&kb-X_-
zUZp4g)9=V3%J+qqRCi?vh|@bE+5G~4G_^6LeC8y18_BTBB}b{4I(Cb$$M_0P<xpF{
zn2QGW(A0z3j0?m8lh)hR3VQmSmYhLo@l#}~Gb!LQarXPF{{=PCTU5uANI61J-8X3(
zCFYZr5+>B!%AzT!C|cG(Cn@0e&s$@zqtaVqD#d)k!wRrbvKZ}UsN?SH%h%>yf8<$&
z&^^<Tcvxi^DSYjoW1g3?lnQD7y><dB-|id9D1{R@xe}QzIp;t9;_ZZx_BU;qi#T1>
zM=?@x$rb^LuiCSRP4r5Oz)=b<oy+Ew;>B9hNgZR6v=7+Tif9W1j;oXnJG5jC_j=s}
zH7vVRRxfqJrKLrq@Z85y8tIeI4*KrRMebkpq6U4&L$eRZ$u~sT4yuY`-4~p9;TG<p
zS;<n@YVL+Fq)_@$(dK<dG)SRox#HdyZR7x^i%VdI)zZI05cZH)3U+?)DA(KklmKBg
z9&c=P4WhcH(tEU{2yWHss9lL9$8d7}EuAm%`6CBkY#rnLO^(t!>3N{`r36|_u%-b!
z_Ql)LJD<LwFo~be3(>h{i<7|!M5Wgk|022R$(;9b$Z9BRZXZI7C0SO=4B{nr=t7qb
zpuqa-R`sM@lVyAPXgXJu_JxLNh9O;Pfd&04t&<~+3I!lkta?W|R*XoA{7E$VLTLwV
zApa&DzqtK$#ihKv7tSi@O=pMUxm+xEt(-pak1ux|DpSp0kC#ek9+wiNo!#;8_wNT5
z-dc&`95DD4!fHpWcRcJjuK&<<F;ZX737!0iEjXR)Jj|mQ(v;~GwH$sdoYs;Qbok@O
z%Wi`bhmhgq<F(hy7OSD53Jy79!yv`Q(V354p*rs5{y*y=!TfUKX}%$oJgj1t#OvFU
zI>cEhd0YB@fHIUye&+)nJ_vAnMLt?y9X)niOQ4P0w}{pJ(x#Q$!gJ=b*M~F-P5Hu5
zgr4(X?5Uf^4bUrDLq~PKiI?L*YHGv_`pcio!zaX>jNlPT>NJ%R^IsAXCKaED|M2#1
z1WL9*KFAC3BGMXR=yecZuc|dd^%$vR@A-Z@f-O9U6cb^LK6|rLrS}(;YSLJO_6Xir
zuWP5@+<m)ASNp~Z-AHTgyhl=By$Lv=EyIZPZQ8z=-q9QS++BWDQ?USi%Y2=!%MYtE
zcm=h5j@IIv(Io9&knaq{!1zAg-`p;bS_Li<Q4HQ`%}*>joUNS@#7hy1fvjmi-V*a!
z%P7r64e7)9byV>*Mw<D&o_^Bg9jv?)%U{%BeqhT_YVVOouxsSOu4JEvsuM9tj`6hp
z(8Rs87f+b26$)0$-#urG?tlVjNe;oQJIKU@_*T8)gtI*LHDlP5vCFb~s`<2H?-h<J
z-6X?y88A89EowU4de&VhY)^%87#45OO9g5<DDk@<jy6vY9jMRWzF6eEA^uW7G{v^2
z#h(=z&JSTqDgl@_lj9Zcy*vM;RSyX7LPC4c0i}N8oI6<I!uEF}8m4A7R28IyUefJ3
zj#)M`>pXZAXE9m1=d%?d<=4R;6i)`ZE*rNN;s4f<YRd$=r{bC4z1f#ZI1qUqciTEx
z>2O)aIvocR&uRbmZlb&H;4qf&^ETFvX)9)ym^(pP+C&zjTCHvqIfTPms!-|FC_(e(
zMEkQu1-S<Oz4IdMfF4d+vZo_)>WZ`(Lzse|oRG$p;HLiUe!=<r8aPhrOe^_V{M9tJ
zIJ&qk%kngh!S()~d@@12Ds&7KQ9_v#SlsA^AZT-na&w~xMBkb6e62BJu)iOUwhk0G
z4BJ~ALF7)Aiss6Jr4mxsmZQwSx{i+61W{b4vt%&q7MEmbeopqrVT+HcAwkx1BQ!;C
z8mN1ZFeKs4les$0{<zt4>$LfKb`x9Gd3|bJc!p`G&W+buuxg{9(uFAGx0`;*GViPu
zU~_O$vf7`$FM<(=?&w$qc~F9L!=)4vOyJ{VCDoshJST-t%i$%O0_RTJ1ykMkrKYs*
zRkG<_Cq%U_HR~vOrGL^WvE;dRiiVA&X9E0hLh|#lpvB~)&Dy2SLU0~)mvk@O{0j$h
z{((EyE@qR*3Vmt`#(jcC?nTA!>rX$ocm@78SPV3;gwKTs7p3Wlz#IbSuVDLxYKi5`
zCB#d}Y}y$QhNbTg5IF|mV7#?mRT*zPK+^pM%8NdipvNm}9>UhA(tR-k|F;AlcC5gH
zOEQ-`mpY2KXl7!9)0Xh`)X-*+Mlybtn8Z|a44cLciLrX8y0lk&zHRkVY@ZZWexite
z9ir}wgLu1D(p<+<1>Dshl&5#>B8e4p#1erAu)<$(AXCYvv^#-nx8`+kcqYEFH}$ix
z{7or<AxpG$V;${yQ@d&~Liu?&nx4IHt4`%caQCkuFhdZonK>dD2T~He^&sWWf=fyP
zdU7<#%nW356u+bz;pFXk@wn~>2+ieFSD}Ue^#ounv`b{Jlb<MLW1nnPBKl)g7e_jb
zu`=Jd_NR=-emYVQFkcA513;;O>h9(Y45Z1%tjKqr9oM&~Dg0~$MKRts`>enu9Pjrx
z#jzb+ds4N#)--M><mn^JZ7&bQEiT#N?epp9;ZQ#U-|<6zaBAM$#o&4RYkpMiY{#FS
z>f6y_8Id|@<iv7jMtRB2D*kD4l9IP+%Q2M4i%KGyTc)~+4qSQ2a#B#u-6XvH&4crh
zpog~~_TBjgnrv#q%#)!g=MHB*ZDsuF#>d;+5C2wh^g!>w_r`f^*E&K)v!<b35fdZv
zIH!O_$EV9p%G{XY=kXme?Yo@&X8=d}hr7BOr5$NGWpbx9J2-|GGEY<~iR`rUDtUHi
zt#JHm6jH_#zKTQGe6EZJaJAY^-nxWPu(iSh=N8M3c(n#Y!=wyWFSS$&4@YHHwHkdA
zP<(PWTk0+_a4UZ(A8h^p53d<JVf~L+H1KO`qX9q0Jaio;TIv<-Rot^}u(@X(?vTOy
zdI3;sQ<#{ioS=Yv7NAHBb@s#V<nMx-%YS5%+#CcYDAf)-U{TC-vD!;iy?!M0cHn31
zXgDKBTmCruAFisGNwzv?fM^|uTqDsx^SD0b0Wz-7R~|0Bgy8C&AfY!PBhi1hOhHMM
zLutcRUOj)L43AGXU&3oL^SNr9df!DpKeq*7o?PlpOS@%~<dRSMVD!(h1t0-R0g65<
zHbb(&ao?JMwp-l<XAc5&z9W0pvXo0d>`cN_fU4=#s|Uwr%|fZBxHZXT1HP*X(X;3_
zUbhlt<d#K~`KJAtc0O;z43(6QT0IlbJnZA>>LjzvYUEM)2N*hmyE{=w)vD*!sb#4I
zoc}htyT{dOwYKFF8V-prKLw}$R5W~*Bq%VJ{pjuO<-d0|T)u9E+JwW)*tPUFL}F+5
zG1bJ{4J`8DNpNH9`P;$l9S2z_k3X77q`z6(K|6^?dZlR4LW66yEVxuP^R)|?)qu<u
z*Vb-5pWWQ(8=tzEdYz~8TF%F@UJ;giiL2&0bqypUZ#G|<{X5Dq#W$P3EhoVDj2GK=
z8Bu5&27LPPX#pwUjjkH!qd!Pqob6mop^}+G{0uDo1S&Bnsclu9CMxjoD;w9h-_Aak
zn7D3}OrB>sR#ld-#F1OM9U^=BfOR_Fe>ut|vHd(z?!_z?&QT_h_kwP)wSvCnRN3SE
zmTrKeO!XNeAuav@t{X26xjaw1hlH()(uo&?9$urP!NT^-r|VrOI#USybI!WdSHJXK
zuNTqktyE0a^skb%<xX#F7Up`ET#cJ$X$9X(m^O~`zf{svq&ggr_P}{<w6MfAibNJw
zlQ|Izik`h%lKRAMCA%}R;xUYgg<T*l`$l<qE`fOgmyk2<jN_x5>u-0u%8<lWxA7C#
z_BM@I{&U>=7A5^G{))9Qc_+xM=4F^L?X~itrEv@k@#Cm)B?8K6x=AL^e_Q~nWg`j3
zWPX<*tWT9C(|Scz(u!gq!?=KSR!r`0uwt$By0w~b?2+cm#WuLK$v`~zJ26O$%7aQp
zrAG~h-7e5tQt*i~|4o9#un~tm?4jB1`-)Z8g{T;05Si**mZulGpG{|1bFwm2IyB}d
z@94ouQ@M9b{<1lWyz1MzUd<n);p&t2p5snUH(SN_7XK}`34ulDp6)?3pAWNyc55&F
zz5d-%ScOQkdsG@{l^l%#{wzL+mee;C70^I;+OyFQi+{amv#U;3mY0mcKL&GHPi_z@
z5$Bkw&0QzuH+RWXEy>h#?K|0q`l8D0shU@s+;m#E>M8y0mf^-ARd5dUld41p&Yqk7
z!p*5rp!Q#-1$#nekyxU$*P`AFP6vrMEI@+Z3<9{CmiUR<(pV_#u~eE`iWW)_cet+b
zy+;#na<ISidbjtgOYYQhI8*gmtmP?V(&?4Uu3olj=VW_->(Bn`aFQ3Vo#|`;OW(y*
zB*$BONguaGhnJy1PiTOasw@b52@l#aPs5SJ@y6z|&8rHLHdr!yU3MxVwTij!`nw1l
z@mP1?T~V+5!4@pO9_2EnS09|h0yS0KRdP>O?-PE4OZN_k-D#?1f|^Pzalk8OmkhL3
z8=|19o3K5_;-lB;tKRYbF6Q_*-uFu4{yD#3kOw&$RzS+<-Q*h*U2kan4IQE>JiY#4
zYx|dRak6Q3{T!&wf-;;JQNoO?YSD-18NBl(E;;WvVU4+U4d<d)#1TKenq6PK6Ao+h
zR6kG<CdD_sJ-xVl*H@;&ng-;BI6quC*FYez%qnK4Kdq&d;^!#ndT+SZaKwUfl(;#~
zn~Gswh+(S}c5mKXMq~~jEv|~B_iA#(!9M1IsHi*77_&r~6k^KVN^M+0CycYYnG_6$
z+UMH5IR=ICYz3u-XO^Y&=dxsHsd*}@PT`bWyfLpA_332$A5A}kN;8q_&1#u1_D!q$
ztJ=pY?{5Qo%BEyhbT-G{5YBRl+By7%B-YpU1RTyD8!r3Ul~IJioVoArFA^QJFI`in
zy7Zm>E<ePhAnk9T>)L4o`czqWi=kn6BvHX=G++4-tQJFZE`=r^vcW=s=l#{z+CJk%
zv7C--Q(e(C<0myyB(9(k<%MMd&)-AkDs=S-+g)ToMR-GEjDS{TJZI2JgQaYab`L5{
zQqLvn8h@JHQF4WSln{c9wBQz)BtDHnK6xLLUw#s<ll0LyjhHi@1{r~}&+pJgemjbl
zlvxukY#fv^vTS{Yt88PjW*y30v;HLl>{XQMVOU6{T<L<2DXE!U&Mt94{r9OXO#IEy
zVbl{f_mQ_wH@Jj)K3ImF4vwC|7<`4e@nUu-!p_eoHi4bJTlpzZ^?|2<w@|rFF@RS1
zYR^?xODqZn1e*2arNQjlx`|4K;9aBF<@0NpuT;eZfWi{qR8u%%0LE7nMO6#+0lIlQ
zN(Vt*S#O}#9c?rAOmnDkNG`dG5ckWonWp`oHZ~u4@ZHZM1$IQ9tDoXpy8>xfp}H9&
zFCCg%xEPg1FM_mnIW&=Tdo-(T$6N@Ed~~q2`FwLn+mg~ozGX(nw;#A!9xP8=-Ip3^
zS}oq=cyfKlCh~{?{^_9EL<OMqa;0{ms82-}(m#x3MpajqfNT($F?lO&j*KVklUu>?
z6L`X(TB*7thtcD~O~R}nZB{$Gwbk$~AE!C6sZN*gVyZheC4UFt9tmX%F<|}8(9J3D
zF3xxfY`!I6&O!o=^4G_sljr+OI-bC#7f;ju@Hz6|0BU%p)AaUsv~k8cX(pf>EoUPE
zet9^DN`P-W>!6WQ)i>pKAt!zE=%oa)7vjcDI#FQiP@eCp{N%8^y+!1O!32V#Bx(t+
z@$KW|c3TJGMTSm&Sm7KkPzy+A-X@1}IQVo03wIJu_U*gXX_fy>Z#bmj)9PYzE<9VN
zUlu4XLDpbkH1?4G+S|xF2#XJ=g4a(YXZw3DLuvCDwZjoRkGnxkD$ho_w#@J6mJQDG
zk)QRu%fh^ne(Pysa+m{n6VyVYrL;L|dCd$!Xi5SvejXQRa1>gyw>@>FS*I_J>!~%Q
zm41jxW~OkB)hkBRdA@v8p65kBTivjh2MpEX0w*cG^SBtXJZg!UxXsI`F3g$ZzG?MR
zV4?&5{slsZ{QK5AgmfrBZE7iLIk@0h58t$ys%GCm`<6F3bG<x5hAhu+=3n$!i$Db|
zBNqK(`_Fy(VcEU$;r4iAydo99i0Sxcgv4*Y-T`asbHWOaZr{$&;n6BbzMMO)!M3UG
z<Us?@m&O3+3#RAM=FY~}_I`dYONC^#_p_HD-boeUgVDy$ODVBRexT|kX_Nvajv3tG
zyi%ZJ-F)LA;o9EtIj#nuu2|;;{6ONia6q1UniN2{2Lve$w0+i!03<RjwVGL%cr7lh
z0Zs&J-c7sLKgola5lYAF(uH(X);aB7%D<$(ZecdqxfZsEf~P+0o0Pcs5LK7Hij6s=
z)nEgahGOu0h*W~o+H0ki;Vuzp^Q6$T($(sRgRp2TWEu02r&D->JSzTdTiu^7g-M*#
zycycs(f&Xo!>P93{hiveSRB#*2PwofG8dH(5On(7{ma=0*|4AmU-^z_tYWuvDXBvy
zP+F1J40Cy8$>}K*adG>u(rWTcSKbpS`^)I<^qcY^9@vflFs>xV+dv?~xuKGwcPd{B
zJ{rQ7+65W<|MWXx%^-)zoQ})s&FYys*579IxxzR!2bERs6+jljVIqn2S-S>(L%VeR
zwiCt5WMa5|J}o<cQ_45u;ZuEw$t0OJZacv}Llz)Sz+P^RSN7`|pM?XF-YLOpD*0s*
zRIt+ws;IR=M#K?Mg9}^faGC0gG#j<*_@#6$sp6vf_(yPC3Wyf?#uE;!7?){|I(~^w
zoGKSZy<uQx(b@jWJaw|gzC)8OAKNvzgv7J9y!#N)tMOX0iy^=quXNdL37)L5^(i!r
zXZkxQf4|hh&ol{{%+n!;ijD))Y$Drsw_G4rs=!9YBF7L)1knRosU)_Cj6y**Ob$dF
z1F_%8u#Dd8dLvH%5WlgvA63|wxVF8sEcok_or7^RhiN*%W7!JX^nQln=xlT~s^Hoq
z!#DWbl+cxl>Zf;q&;j`OuRM#A>+>4cN?eMrc9P71%zo>mA&YSHM|XAx52E|p6dz84
zgx=(O<=u?*M9?Pl)P%B`s;thx!3Qd!%v!P&5V&Rq7L}hCC`<!g!_ijZTeVMb`77}J
z{$DW!xCG<%gW@_5_NM!zs#~7$4S)Wb=t0;9gfs6TE;5P5sEMv^dvZE15PV91x{sF-
zzm<#PZRbRQKhPKVFIS3_Fy@P|%x#Mw4iRkm8rMVtrW^_?OG`drcc~7_{k(HQ3d<3b
zO*_AUcUdc8R-bU%HI2u7!jy0))DRSnxZ{u~ofUX27a;K4sXAauRFowBm9%uXDZcdh
z37P{}9#mMEr)v`fZMXqZm(lzS{#ULh*?B9>g=1Lm2aRdrK0kp~4$=z=k!k6a+SeL}
zE_{(D3V!|zL-t?%jU#F^cQOxXDA`(U&*14g%FNUup2Z}|+4p>H>9~YSWlhr&c1ev$
z8@2HQ)6oy+z^N4KNeXXlQ)U!1-ovnkE}xWhOI<~9tE0S}tsAyAUB<SxRAbLB+!R|?
zQ0z%)IC1B8n6MSxZP@O}ut6#|j2-^W$B7}V@l4Bu>+dHG-o;Qaae?iNNg&s4Bcmpt
z0Jgbus=fdgpC+pFo<n}`ql!nfFJz=#QVhu1x_B#r;vl}`xxStdq_>^SIe0L1eMI)u
zc}yU{(#7Ialvq0It2U<ZC8pRojNkHyVLgXbalPNK#AJWYf45`<<~vA438K+K%ZR7p
z3#HplN4hx7sie`jqmePZY#jabvm0Y=GrM+E?(00}4k&OoJHI7jn5jg$DmDce6x-tK
z2eY$3CM)$vX*x?aO;k6We<)B&B%7DHHq)0xxn(*CFT@}s9B%jYJwJF5nV)`PBnlsn
zkOkH4QC1q99v$ncDxsC;wt0mg9K}HDtN*BhW}K!_j*4EkysT@V?o;x5bNm|#m!zMy
z3ABuZAP*<49(-jooa1y4;3MHv-=aVad@Pe11X_pFJ3I}QQ*pP3|5$!Kr!8d<Am~8F
zg(8*(QTJ4$o0zm>p}PMx?@e;@ttgd^qb=RDp=Sf>2-h@<n^f}_ij(oz;X;KzDNhax
z3bpR;6*Ew|1Zk5fw#`@qaH>4(DbXJUMRGSsJQ5*z$|}Xe+qUo=v4J3-OMd<4Vrh$u
z|E#(7M@VM@O7)Rs($$?ln|wOgD6}`2%-@PIJJ=7KEn~_Cc61S$hk4_xEYM)%oB6sY
zKabOy?L><Odo%=$2_C=W^0A6~-Ox4Xr`p6X1(E4r;S?jeC8S$O1o7%R{D%%MFExRQ
zOPyz>(uYGz7ie(Md5`rA>9RCV1>wdzXCR0H9x&^-Lu~5a#@Xq%KUd^Mt?igDJCHAH
zPx?L8?)y8krT5(<qL_ZX%U)Ss3gSP0|9+yeuzT9nBsQFTQ$m21a$;q(r8v1>$80Qk
zuoYRwA6r_6BvxYEecphfJS3~>WSpkEepl5*mQf!}X(epU%H1(qg+03h+T)EpO_|~r
z?{LDAIvBJex3Of&>J>e+P%>vZk>iI6lxz!xpW`-M20R@nXaYN(k>;x#uT|Pxso+Xt
z7v!W?d3EzIUV9DC@et8lUc6TYSvdMZitD!h#Dh$+!#dtCl7k3VMA8=^ZR{VFK?}!k
zYXhYEQkHTzotx9mcz0safFQ%%SHPM0@xr`Kk(Z8p3cb$awJv9@mj29b{UfobFHcub
z>QiyXoDA4ob(R-SK~<8LRXB5STx;HX2+~M&fB~BS=zxrZfKp;J)M(_BloCAtZ#@zO
z&PI)H9qp!~O1PNEh**_*_Ug_1#j_dB%ipiKZ0d=5hgp!q@!!As2-z3Ftv778NoRB-
z5xu7`HMYxs&jk-vU3#G`{LneTA-$UYLHW<rp;ve1N2t;?_1MyKLchFNVfr*NgR<<7
zN1cB$G)hTZ%<d>xr9f+O{Ir*<(<8{Zj;o_*TYDSn#ah}nMDCsDO4epc>bY1pY1x6m
zv!`bdqmu@UL6TFPw0SWTcfmjgom=X+y89a-{ZP}flH;g!rKrV8HlO|lY3-K23FlnW
zJJHLw#sMtTEu;g9#sM8>ZI!22=y9G#pLf+AhI`;BBzVY^l}N}oCrZ>C{NwCxFiI|U
zJI;@_7m)D0h2LurCXSlxAYCz%Kqy8hm8oG82=H9a@%#>+d#hvgDs4BBC_oHBDpB0R
zAA2Q;{05IGagS-P7IEupUJ75j@&FVtxYkDa$M2s_E(-2%SGdG3w_Zw*9KqAx9Z1_j
z4|pP%w!68ZL(*~xRo-8+2(BBBbTs+pdmMYxQSJMq#}4qugtt|bcz{@T8kRl}Z>$=K
zvg*{aZTp0EG`I@sk=q{vYDh|OHl(lKL5wOzA)_ViF@JEdO8pdulV>>#c>^S!mg9eL
z4#r(g(lV0^p$(Ds*SGI9VEK0bZ2_96GUyRL4&Ig_Ray-Iy6&H-y_(<FGg(;w9B3ia
z;Pr=6*Un$IMvpvXNlz|3Z}0NgrY|{5>2QJx@bO}H@#O|XxvnD@C$*?jj4ce4pLmEp
zcErye9cnJN-Z-L`#Mur~oal<PUE0d9!>;Xggt*eo%yYwqc(5O4Ujidselrug)HEvy
z*k=Go&&O}9|2T)j>RX5m$E6XV%I*5a#zX{Sj{=h_P4J#Q=*uS{h3ETaL~=2M>JVfh
zj#hs&ftLxJvYVHe^~pk8Ijmjs0&VS1&;LNh^O+Q*q=vKF)j%c=SKrIoVUl$aQIh?Q
z_F@QXI}Goc=M|+EfI*t51=8MxV2r6H2QWjmO23x!BI2C*+<UXjtSVD9fG*VMG8bVt
z=^`s$oZiNP79wBXhKaB{!BYtE6ZYG1g{+~OFTae=uU06O(<&y5hl-gOF)0f9xRisk
z>5nLG(P|SPfz~N8y+=>ZDtp;~=B8e3<rNK5IGKrx+tRWzoQP0ZS_~7_k|qhB)ibxN
z=fm;?6GNfnUt{KrL)}D+98&}~>>RTz`BW6s(Mu#aL1PffGFT!q##z{0S%49(M+py(
z5T%`JT;A@B4_Ib*+m#E_Y_4eis>Pd+8r<YXIn2y%)!FrN)4dH{C*v-@Aui^`%ZC(H
zm=jmtM=&lvIN1yU)BzQb2}<16YtMZK)HoF2@jGiZtjS=3dlQY|{>M{;E$jZf!K0L{
zD}p~B*BN(fYKJKE;Z9m%;8bOr&2%0LMTWWko(&1d>!Tb{n%WG_hCxq3G502l)-k+i
z@In>j&0$kv^RmJp>ywL##B#}IfSHz>Z7c!Q@#%mIHqm2d&*7_Vrgl8=x|-+8UuD2b
z<Dp(ZI=pj}79;MQ<F)DZ<-uO_t!+ihv!5Ivoqx@4%1s!yXurfu9t~9tWSo$3wd_F7
zmH_1v#UTCwuci#Tv9s47kg-~>)`_iHPP=cBC1#$Crb`#CP%2Q$%9e1n1*4uMcCxi>
z-yk17i~BeP-tT@Qga5O;tNdsV-~yiM+*^W-!2p~E4h?|Za7NPDN-=ueWWN8v=64)9
zv<3zQ-)(YQRJMhNajo-utX5eRUsb^(BDm9`sh%-!oIZ+iTZ(fMW4q`>V~A);50<=F
zU8xSh@tADw$LY$ks_0^;dNF;&ZU^d+TRdSRe#4+D+c2E^bi9hmG&UyIZuo%*r{C9Z
zzsV=g=Orih>`h@4#I1>%m0<dcC^D>i-ohG~%Y;}V`kke50|$pg%zvyto`w$Tq<A{J
zrhuG<mJ=^0-5tH?_dm<Ed9Qj^vJP_w?!!|0Ge3NQ6Mu6vSv6^3@cwvaM^z4?9;CES
z)steVJcgm?RO*V4a7!<Q{@{Rn?JC?_qwpaLjr(+dif_gnzPOh&D)b8(<`%kQD3uQ6
zFUG%ZjCc26ZLPmy%9R47Dd>yIAKW<2t;!fY5GO#;G01_R7HTlKEIoGUj`JHH^iZk(
zNMSF;Za>peSXA+o(?|KGR{r)KmiceWIMVlOo3C~KZ5qa>HPBd%S2)Z~<5yaIscc0u
zib3}E_pUWME46N?oXm5lwk{u@#^`YKSSZ=NG^k&mP7X=%vHW;W{8P|Q!ZhdS05>mF
zFP6^HfKqBaCfRbdQN)&)<ZVi1ndO#6-Z<LLiD~<n?)1kK9F8KM{h^$=Ydt3{M0Jmh
zOn5wc3ChG*J-;wR<$gTUVxfC}Jd_uu_mq+RjzOde7^O=|#E^rqD@(XYkx^qryu;wW
zCUn3C<pUwS;>xv_X@6FzX{x4|mz+`cA&#zU!o(Z1_;BMbu~dsSh0a_yCo*qb(BQV_
z;_)o`kBX%-JJnhce|TAjl+K|^=l?4H5wVBwOCmT57scjdRp*y;TeO+zGgXxF+Rv(e
zDf4%CFVEi(L)~}?!X$0rM=uZdRqQe{d})d&l_fCO+v}ib@1~#Pf^fRL?)rh|E&F@x
zN){4D%uZJcdLNWp9JVCOt_wa8RkEbvT>u9Enpc&XA0@3dkMF)a)i^F^FLhAN!(ZaF
zU!JDbvndN-2Rc2milWmjQR0kCxhz{)J*~R{rtCLaB~!mXj7qolYx{Y9`;ipi^?kT0
zvjRiskEqhAn)z$fBUzqSE<!aegHoN9Pk8`Qt%c*<%tED-DK7vRt!;1PG0TlPz+KeS
z(G6O5;rI-P-lfz5*&}IetqOu-A3%F=rAY@I3sy%<?F#EoBZCXsTbwx1r~*il)by*X
zw~z_L<FRhgwDo+jb`?m=3-DbZ%BHMgx>x%}`7;Xzz8utdH;z;^?oBGRTeR{x4J!Rd
z_-@rG##1YlVSAe-?Bv2(nk*uDIdX<@XZA9XWeGycQwS&0Y)5$qCm3y04!o~docD^4
zmzmGy&)_gP!HGOYDT|ChRD9?trGaGX!s!G8SGjzlLA8oz7add(-Q@kwRgT0>?%9r#
z3as&<WOdOpt6|-)R@}3Ipz&g8#?GJ#Ft{&H@GxGfHuuo>*#>oDpj!K3#c+(cT%{p&
zk9%^xCQdYe8GY-dL1ckVO9+Ull{)2L-F`fqeMY#v8*NbV-OfMCw&fuj-}}!fr@=2&
z)9exy8>n)CBA=uc=*!9NSGu7T4HXEec0kG2gc7HAV<k@Z@H9ENi5W798;SmN=%WW`
zDNRc(GK8`LfcQZQ$!$vQXqZdNNO3N1crwk|?!2C|W0|+8PYLl4ey$ICAx+9J2`?;@
zTjv0M(nHNn2j2v)k9ZkE@yD~96i{d&N0d(8X*Jg=e2)V$lsVw<kSK+!l}0I)MK(P!
zAlS0RfqSG=$^%(XebG`FF*qB6nijWvEXsJXw%-$(qmyqi^Hl5c>W?|Zr*pkVM(cBa
zz886OT^h*p4AZ+-Ptm)#v#*Ow-;H*8Qe6yylw3uj`#coiN;PJ862s-?c~>c>xrh7_
z^qTZ}73l9z$6)~xYOBR(sS2F4IUMUWDL*=2oo1R6(e6eo(|Sz%8-2PO9nE{jjxsr*
zuo<`{gSyS^hxHfXXUf_(9K*%sMHKw)Orq^`)Z?8OuFJfuDL4WD1&GARinPu%XZM|B
zpik_u>U!poI;GM<TT?zX4p(e(AMx-s-G);$+30>KWa-%jLCBG+HnfNM8)<>YC7xZ^
zid}hv2cwM)EottBie9*V@Xe`A`vv55nSqZ4Q;w~gRfRxm@vjA@j$J9uS#Hu9e0VJD
znx3bXp%-4rp#Xa}vYHvfK|cSOUYE-~OnY{nFdVqelcT{`EuMhXf(i?kQgpdeBZ;vj
zz`NoQCgWPNhNJ}gUbBfYB^*eOO{{RafvhWMS-<{NNY%yjixB&!ke2et!K65mX@Z(T
zJMy+*#Ob$?(%#_OcHfqYU<L+Cc<<s9Hu&8qxKe2Wo0FZ&hnvZ}kjl80X0o1LoK4w%
zabjBB^li@5w_>eX8mv@xLUidb-R27!o@zbyQ4k}Fti9D!GeF?&3tw~*e5GIxqQT`>
zGr}ObZ;n$+z)M!=!)%XqEUP!VmLa{8<x_o4$u6%*$V%il<}}pE!KVBoN%L|y80eDl
z2P7!CY#D!2!jg=VZMoi(!L~p1GTx{>Qu<WA6iyAsdQjGAH&o~I-~$$bRO1ynhZIhO
z5ysl(q(vatDb7v%xGqmpef!Mi@|Bks2v8L}9<FarP+L+Pu|?FhRVNtbk!mMs2Q?!G
zN@u~o{0zb&zc@X}f19M%V+pYMj<XVp_~~K2PmcbP#$?6)R<)3Rn)mc>wX39GLnF?^
z&CSf)H2;QOe0cwFBq+A-78MGg?YaJQs)^bg6_Se<JMa9F89eMvyC-3TZ2DqJmU;Fi
zg2wRlOIt0O%gEFoi~+ReR20a$;w6OLy*vYlZfowO^3@jRRyz|O(~*TnW07Dl%>n>8
zjPU;MdUVvFtlDjt&V`r%{5x0Ni5bo<^~Q8jg9&PfCe70LQgg=!nz3cwAeT{#d9xce
z1@(_qfsEMfbAh%l?;=!9RW8;a5w`S0gJ5M+LptE_nZ+13Ij%2)Wm{YuvCaXB*}7+g
z^0dvx`6XMe_+3U@CDJEh4(@3E4Co6({@!Ou_9C$Fe&h(NR2iN+xutk2@0hLi$?4=H
z_t|Fu!7QJGEJlxiUU~eeJ#82Y(xTG5RgWuC6Ql1RZBZgG0m)7ou1n?*tTile$pLuG
zw;6+{@6)=H&Ksm<Fk7TnBU2Ze3dAHW=Myc!F4)hMD@N(Zg3v?Zad7^-Ju|*31f8vY
zMj*2dqH5}+KZSK4>T~kG6fjiZ#)P204SptayDE(lYKe8!cutNJj?VSYk@j-)cCi@9
z<FdMORrul4tBzZR4T7}*T9laoS1mAzx*Vg41X7%2z2--vS_vSsb0wRIe_At=WYJnZ
zbMXe2WNxAJ8vX^=A)XO7O(N1Ec3+lFI4JvZu{2N`(g3~@^F<K~b!(4R@|sC*@b}n?
zWA9$Gb{6BQ-76(GF#q$*Z)aDfcZ>D#*vX2GcSm*1T3?80E7w}vl|M<K(l&_~2w85l
z_u<6c32~{j!q#cfyV7{=_cjmpJsoYbqbGT%es1J^Mr(frR%kTL9{ZFW{C7UdQ!2CF
zd3LzDnVyDeXn3?tu(9|xE^`b6ONV~yN0eWtfut37mZY7^)J>;WZt`hSoSyepXQ4-s
zw1$fPIaS~C-L!BzpdTZA*34!F%;&AL(Bie@^fagm?6OEjI(x@6EqOG)eDcjr#ZsTW
zQzw*Ez_!01^&vsh{1tUMrh9<A^$Z6G45u(MW&+2``hJU?N5idw7#XdYYuwwg(EE+E
zo?OkrfQzQ<pQ?27tqASbuAJ!0u?n=*l2{3;i0C!BAIi>1lz681JOY^A<I#<v{8=LN
zXX#^Fq~xOQzJ6rnEyzXz3+yvku185vao}W6(l(+bt`<f)U6aTWGow+#+llN<K$N<b
zTo5ibR|Z&Ah(_TJ{V_T7seZ0P?CtGiVR^}S7X>ky2PV{aI2SF1lv4J2G-+z!35hub
zp17c-g&boHcx-{QSC|G(ohjYqD`d*nVYs5De<+qx`}AQcNYVEs#Fl84PITB%ifPRY
z`=ot0{1lABG9sn%`OdNP&Od~P@CWp5LwVkGhB6Uf&6mrx8yZux>|XOJ;oTBCm-Pvp
zQXl_QDG?oxW`a1fl^ojA4pMXJsKlzV8uzh;-peZhbkrveBebD`WV<{^d$1%*XYbP6
zWe#+064&t!39`pt=H+;AeRHF&{n<p2F&GGZ?BMO_$K3jPU9uh%r>Tk%e51t7LlU|c
zO=L~th<r}x1s!sG;Pxnl^pXWQpQJO!HH1^~enqCD2Ov{ycv>il0*WhLv@@8Ji#eQ&
z1O!(9J-HvmB$M{`kR2GK##pXHwc0{hrHDA-Gg34-)b5Edu({#&n+bau3dG)<<)YJv
zrqKU1diYcNNe*(;4M7SW*1r~(=W;U)ndm65ap^FeV03hNG8`=!g<V~9D&dG{5dDZo
z>0=gnD;|H|9`w^Sq4j+1G;S%Y7o5sy1~pwEpWBdk^_84Sh8O;>jy)V|9b|?a=~JOz
z$)dmKb#U|VKdV<`1@=Yn`xO>+hb`M6(bfqOO2$R8uMNVuTvF&%v;#kQIm>0Vi^wEc
z%}>S2x8r5DYCYQaRPVv<QMz3&L=Ns_S3@)jG?sEF>iE9&Gh@Ro7am;hQ3f>tOb_lI
zqF;dvXnCi}G(nsfgrZ?Lt7}6VxF|=JNi(D@mO#RYO9&trKl}fElK^~SBXha#6_7kT
zE}{p86CNfaD-a;uQM?VicHYkktfu&`(;I`iL~uH-hG_ORKHyw7O^9BF7y`<urfpkC
zH=0U*q{Ht|9F5QSm&w)2!853q9yrb*CF;TJ51sgXV&Vrf*T>`iqq`QWv#8$6f&2ox
zE$>^Mw=wuVGA7DgtX!bdDPH`!NSwF1oJe#Uv<wTbIpUtzs$_>4#&JRS;-S}SjluFp
zf;$fy!>nglF^o93??@3=e$Mf|=6S^pj~*SOC)>q`RQL2A>Ne{jPV~YMH9ul_ALPMm
zJ`jKb6z-ekN;@q)c<6xa-If8-#m#EJXs;iAM~LBr=>>u8FOIKGj;4z|D|~hSvF+UI
z^md_y{5oSE4<yar&H46t>81Po3GIk2ldjX5NS#(cnrlEV<`56{i9?w8?NYy=VoJ{O
zKljsWKDAY)HIU?F3o)Ni*V{Y4kH%Vf)mpcOTdS=@?~u?=V%AO(ivR=7XlY~Wed?^&
z(kL}gPc!U@nQZ&=H$&iF!oTnTa`ngRgycSdZfN+1nJq<!;lRSv4Pm(|Z0zCG4+pni
zq&x#(^*gyYAlbkg4zKRhZ4TI@%(&W_%;}@S>K32K<AkO@xtMU#BsY61K(oUXb(Pq7
zFxu2(cO&XC$a4^sqlsdmk6o&U$U`Sm!Sq+<u+I!MUf*msM=2>c@`5>gn~Y@-Qwraz
z7Pog>xa69Flw`6$VUbre>Hd+_Sdq-Xsx6PQDbT;0WjaSGdP!f<{#o{WDfLx^v5<ov
zg`#akTiiX^%wT<`Nydli$yN1FX{JyR&oBQOkf|#W55sHTnWX=2#UZq9JzXu`^Yo@H
zd5V080Uk<i9o9gntzH`I<4J(9uT$D}iHEvyMW3LU9Arobs5-4!s#`ULLiP08ytDz(
zJM=PW`rwW{fkq||uyQe|u>?~EGSwWh`6Z8Z@055-BLta1K|vsUYmHuIuUT6RH8Y|(
zjCx^amXeUL+TABSEToOTf}lCsEKS&ouO@!^)8=Ji<$c?^)`$gdotCqDOV$yN&B3WJ
zI3z>T-H!UhMx$Zv;3H1j;NqvWZ|g;J!)8yVF~2Wl#1u)REC-o-LO2gD=#8wUR#`32
z_?SE$?XQmyYbX<By)-m$__+O}lV6^DM=A2|$o(SBIi%K?F}>j^;hr_*(Nxj8n(*5c
z^vh=^vP$!U_=yBhV4d7boDW{X_R(-!Q3pn1*5i0>c?P>CIX4xFADzwWJcuH&?PGpr
zilJW!@Ju#UUvhB#T2GNiDD*_wzt<D-(@ol%SaD=aKP`tr&Sm<R?|(abx&N&FF%8_;
zK+pS4DtRcWsaRxpo(Ih>v(x;7lSE9(&o0_htzlknLRaYr-XcXu+Z)T-SByN}3}xLG
zDJ9=4$gRvTu=-x>xF;z=Nn+&a9ai5&L=ewXRU_d3WEWhs*ld1I%X|#B?`X5VoIq^j
z@@)}wu}2FfBsLe4?58wU*L}ljR5FJE+{OL7U-I-~fCnQr-a|e#fBX4Qe?!s+dJVVW
z`QD0xz{@2EofY|9gYbvxr?YM_n^rVc7cMfc4J)ay6=3Xt<$F&8JH@$qE7PAT^@S1V
zzbP1bI~7ym6ZWNIoW>^``&&nwqv!a3huVAoScSB7-hTIYu2N;M^GjNYkwJ-_`c^lv
z;qb#k^1Nuh?>Ewgut+FYpGJ-oJ(4S0PrHSrm|txjj@L_T^&yS_$e<~2Us$?}{oZQN
z^CZ0tE(KKb9p~l;blhlI{q|f&4$A`{U1&^s8Bea)RB+=H^p7d=i~C*;^dVIB*o5I?
zL&O%+XK6_2#<X&kn-<htUN6H&udf}-Ko0JjCIW%M&Xry%Y#DSMtBoIO#M!I}f!32|
z#_^<}gCK)u*n{xCFn8J06qIQY)W4F69s@o@noWo7(`6rKIX3oyCGs98jy+#FfOC9m
zhvjkUaDS+CNQv-zOkK=uYtreF<IEZjiV!is<A>B1AyLjk(3JBZ6;^PpO$mV*{L){c
z75_xx92>ug`dNH&OD0B^9(sOwqNaIk?|AcYYrKjC(`odr8i^jwcf~r?!q(*%sOmju
zJqu5Lr<q16ee4BZ-9c>9Ac08`Urs&LWi6$RSHWQ%COL+pa%fC9YHkKIG=_tc$y8EY
zs$2IDsjQjQPs88h)0YScKM130b7dhI1WwdfBITz)!7aj`82u5_QR{|ip9*@i7rS%m
z4bw){o%*2#m_r8T2!}7uKIdp_l<{$N8n8+<w)n#&Py&H&J(Rqt5TYhRx%#|y0Bxa~
zE%`;B3kcy!6N&`09v}#7N`ID~nMbL&`169(2>V|p>Z8UM(w<+1P8urP7j2%~Z~+bp
z6e+DY>Q}`F^>lHPHWJ=8k8Qs+Fdr~Xv|$=GITl8;Cw|;Q>aILfLX(cId54{gD~tFu
z`i6)%=e^t`ljciM>4(lQ#Bid<UWrP3<HeEW0u-OA0M0Am-GH^ZA}<G)Q@lAD?i9(2
ztfrq6KNDoM^70nk^6Xp!YjoJsi{69^1lGVfFYV;gI%yZ{EXJf>-xa>-!q>=L$dj7l
zUnss9x<|hl1w2}ReqqA^A_f0zlATur>a6p4GPfPBM=S>|q5$B<6nV&u>7;#`u?3#s
zp(}znq?H~;jK5yVCf5t-k&gOP&{|YfgISV%;6980c3$!k{=`yy%qiPV*J&hEz(JY%
zM?(ZF-g>s{&hO>cEgA>AG@9|*1G?v5e1_`@&XbvS;}*|53=4ZXPoZ+G=y`|0rRKSa
zw_m59-a-LCOlLgYB)98Bdz0u+yWb$U!M}K%vX9N9FiPr_+Clvf;bjJ!ADtXNTigHr
zcZlrD(f-cK@z(y{(Zbs`KnR<TS@qe%dOG}~;n}AZr=@?_mT}4U(TJ8<8L(E7<=VrC
z4+_U`u!fO9p8Jc}8;AQ`u6uYu)NfL_7kt5Na8bbm3|YD&yGG6Eq@sfQ1EUqpO(D|R
zf@!`<V@yCC^5lz{<~N1}68*zck!km1!`QX^!jrLdpZM87j?X6PASDPYiLxcEi-dcQ
znoTM)37%-F0L|W`d9(_ljRy@N_<gN@<AV4tHAx|fH7=6gefa&;;hBVPy*FC}!KYC)
zI^iZkSjVMuRr{qfFb~ssY@?c@H}4QdF_;q(CZycb#RT2lAkgyZWJTFbR_i^7_Vlcd
z^_GMp?2z`Bnk#iO)EezL#K(yuDmVqxs%})$A2||#5^94r2bPxmQa&$_UhMUYt2HQT
z$<w0okCcct=>|M(U#*BKE^Kvkon?H&bl7}-425e06*yNS*o-H64g)E0UY))N$u9v$
zHW(QG0rwwlOF&bJA4zSrN~E#3;Vs21#3jr3MLXsqq=C+oo&$#jL8s5?L@?etNWcDv
z(>#o|4x~5^Ra}Bb5xaDA<($7{Z1avqj``O=GkEE^Rve73xi}e#atpK<$?H&I`H^(e
zLwQsEHqI|%5!Sc5^vUZ`z8^o%R%Y|t+xf@abidiozv+olMk?f`fB_*0F|{o-`Mr={
zvl(6^Qsn(N=WM9xFc5*FtFU8};V_%KH$8qk4?AU%C}@_Eok=+<;_BoAJgI>=CtZal
z#fi?$poFf%iyKvtll)ZMV@73paRmv&?i9cSHvfOp{<Jx&E880Vze?UWRjzo9jtv;>
z`!3Z0vf5G#u(|P%e<V@@0(D0XSbX~X8>`v5h3z^g;yz8;R(5;uwbpFL9COT?_7pqH
z?yfIpaQg2Oj=Y_#MQ=;}@p&c}myQUOw2U-0O_bDbpiZ)2rzan6?JFE&sQvrO**AqJ
z@V+o)tne0Nlmgx@0?JAvgPzmVHSHnP+WhKju0Ko=l@`!?xleFLI4Qs2NL&}Ck4Y~<
z>X4kg+<&n#U7s!gCQ_TOIubi#*0LX3v!N@93JUSoG^A>rUi7C9@7dpfa56MFS>Isi
zETsxV**<$O>&5&G06)~J_tpWaNG?b`SpDsl2)5>IoXim8=dL-~&le|Of7|X@QZ7U~
z@axNiX$MF=OVNi@Q>+9D1e>$&t9)sq8E2x74{&iJGh|Yukk`LJoh{su{AZNvflgD`
zGK|f1J?&XPj+%A}+}JVJoeBOLdCkF_5DEn&;r@I8FOBN3L%6ZLGnc`iZ#fcvU+7f2
z#D&6=1W|m8uwvj*|8M4{ER_4^qkfxT{o(IRr(O4FDJe`(6Yoi!a_~#^>_b5U-0!i=
z6~_)SYOWyBHz84$l)CZ-8@i}0!^hx*tj7thNakQ17C>9dT570Mu~~VJi<wg(80?9;
zbJeR2Kg7Zo7bLnaA4891wZ6VZOY#6y*ZK=r=$)qYu@SE?E^sLZ$crjCxM=-#TM?li
zu%P7SV#t)f)%CN}5*>;tUK~h%D#y~zBCNis{cCfcYE-o)RK$_D*M_w$&?fhAGXJBb
zER{iLE~{@&^}o0oz*H*MSsC<>3|FDPFgaLUmKm=}%M5^|6Qoqfrvn{Jn(&Q|W!cZ1
zLVAmboiY}>W$IH|+ui*4(CzUU_P0ND$umIdgt?Yzgxz~?>Sr?Y*tx%Ho3~S~gL??=
z(k5%6XG)`{|HW}NEV(cMoIy$O3~kxkx}D-4^Oox#?3ELum&U_EP%DCZrE9#1=1i^|
z|1Mpqv!f4)EU7!L&Tos123g0fFe{bHQjvP8&2`GGOkva0ip0Bfl4@{2nsw@CZxg1F
zJozc4<AF}}*s`wf9jxM7O$%f+Y$XF%Sg1iBrHq;4$|9X{nhjqf_nw4@br3Rd9m3c+
zH_MY;mJgyLZ4Bk?_|GHUi$c=BZ#B!8?6*e7>i^uXcqD5!$84#PVWicBdkS=OP;zmX
zyd9Slk%HR!CL>X7FQNVwZt3j+<q<V4vQ3dayBn6Ua$T^1<V9WMq*%lb0H=fVIY?9z
zJ%jhA*ilY>c?byth8XhODo!<wT8|>9dick|AKw~_ZaIH^Y-8+Ph!bAekdi;;k~Z<z
zOFoNpX4l*_h!?q?2J0!Gd6qv8Cd--pNxJiz)wazEQB|psK@nOulxB*9evG>1h$;dZ
z(?9*)_hqKTpI?Zw9#d=BB+pSefc+~I8MII|D7oTIe}%zqB|-tX3J4;GM`=JnGY~9l
z3p*zJt2k%%WEo=p;{+$wYJUL!Ts;s94i%79!NaiKt2*U44;_Vh9(?(kN8$YfF9x0N
z@>lSOF5u5d<MD$dbKY1W4R120)d98IVR?9KOX2hdwvs}#PU8g;4#8Zf+uH{*zJ5)A
zS^A#7*t{l~=YP)%Fn#a9JW_uw5wF*Ux*dT4L`Cpx?@YOS*uU*6m{`U>w^qOJ8wkoN
z%rLY6@VZ7aWIskLFvZ0H{p>I&K@iqz{EB<@1JdaGc^Jn13HT%IU~9UwaX4-7w8UbC
zf5QamELv!Q<Dyc4$|$P@l1yvrQOQKYkdi2&zJgXk843@|8ON9S=?jXCiXWNl-gZi#
zeevDibWa67m>)f2$0KuE%6&e{U*+T2dfP8or)$a8*8;<@9CaY}v2!&kf`%mpBQ+{^
zvwlX&k}51ocE{|ydo{Y0f@^*#omo9TBMHIbsepBtP%$6pCgq3}z>^ZqPTor(&>q|G
z3+j|n6t8jU#4iOvZ-Sh;1BQ7cZT521$?jXdE|)7Gee&pEEu@seN>vUl(<mewHbV5b
z2b-jl77ZO1tJ`ak$RkHdiJ&6M9(if&xaX^K6;AkT3)ir*hN$HQA#+N6uMSO;$m1`q
z-(`7Z81{!gltW~dp}-w-bwR=ur`$K)Lffo7uzNjQqO7J)l>i2ykk|qElw@eGoj4m?
zr*m>&&*hD?ktqr5SLBKEw|k+W(gc!4tqD8QuJc-MPjaGCR8I3C^|3h;IOg%&0fw4}
zcf3?E1L)d|)Cuj=y=%$H&Angn7~Be_xpEc5^BzokMER#zN5p63V9g}z3ub6Es&eG<
zbp?UDzDNJSB1U3=P<uohIQJO5kClSPg~!E?wolgRV$tL~xu?Ton9`}$_iXl(G6%^e
zvzzNx_%bQOCY{RlyYs|jzHokhThC6)UkY!PEb{5*+VKsJT=pbw1<f4nQmc;4615az
z`9Ie=3`+uNY#bcO{nrIq(nkS*>V#q?SjX_VDsFPuhY#1#PxGsA-J8L%xp9+a&4ZgX
zv5H&_JG?$W144^aH4)neweRcaMBV#Z9i&!?Rkm&IM3_?lQhF%WDAA3=RSr8%MjLSo
z>mE?Yhd=)e3g^}fgfh5R85MVCOU~1pQ7p3SL&XGr0P;m6ON6B^gVg#0yC-)6w34zO
z7GB1<nps)534{M6U5425eFWQeKXkLF4!xm)Rb%Kk_EZgIM_5NGz1F(xSu2l8&|O-7
z^_qt>BLM$2W;i@s*<X1<S*xZ8WpFUyq(CbB8yoATVQ@M$CxK!WGf5h`C*PidQ+xV@
zE{l-vHUZXi=~}%8+k0By1yU@j?(ynI*RzspsNRa~#54@^n`L?I5xzGYxwewkc_zR~
zrLu>!&U`;yC0;32d_5qN{a&2T;LNhM{s`<-$D}mBo5!J>BO}Kdol7Toq~1_oOuVmJ
z=7T$Pk^501NbQtk-$m*U<?*AlBpwMTdK%E<k!_khE5j#UcY32H9YT26Dqpk1RFd*L
zN;<ZJiSaerSr#%gcInp(P}Y*uI2@BM-W6z4MoGsn^pI2NBz&xVvB-}t3$?if(REKk
zk1C8H)EC8W0b^Un1)jmGfQUr)d^solyEX)T^tXT2>y9YRfh86I#}?~W^LNU(0WKF8
z&H0TJ;p&dm8<1A6Z_m?N3KSSEX7`|;39*FCn@;Xye+3?jBJs!$GvSc<^BO^*p~=Hu
z&59u$_JpMYYB=ofD6U~igcsVgYS&RzDkTznj)IIo>V4$^uR%0YR)f_QT)&;s%K|l|
zXu*0$H>g1TePf59y&tE3+NM(GmlN0A+cAVifbIL!eKsQ}0{_rLr2f0yo_UbSNDn6_
zu<9_eF3;Z{_#?-cgF=xy2p^Yu<F5EpOE0dvuIQw<;Le%`?CwhToTS?RDoI)>e*SxF
z{#9<8IHP_mD0>Rvw1u->BQP-#{x!Fj>W~(L^gaxJ1P1D7b_sX9%DhL2QQdY@T6ERv
z-eh{1=r$57K*mG|dx!faIw*f7{id7i^x~6o10$R&aM1KsEza~Oyu6kuvD-xjKezWh
zn)Y3s)UT%ViDAOe^G9fi-JkbvO;?Q*E`Lh9#{L|HWnV$mu5@_I&dWXbYkH`N@ZiP#
z7^Sn08NTjLIg1$+m1SoUs^LK$4VG8hUOCwc^$3VVcwF2V+LYnJ%P=mQOgmZ7%Tn*o
zvV2?HVGuHv91_Y$Cgv#e9Sx)^l>OPtd@?k8d$Sl_y}K}Pu0Oz7Z6&cMr54e6!{MI%
z<RtvvtY8qld&u%jw}`eTwX$1^Evb*qe)^IB8-V;=qcz>s&kEQ@a{iRysr;2kOzm&|
z)q~z%Rbz}tN_WbSw`vxytC_gC(Ac0WW4kA8Fk|6+L{X6)d%nAb3CmYIm3Nn)@<{p~
zo#tfU%g)-WC=+t}8ZeKo<Px<QJcsC_#=e#+Iyz}C+dLFALSH}LYDw`uxg{lOC*yBl
zMj1%q47Rnqxq0y5AZe0o^FdgJEN^Rj_d#H`vj8@u1|zT!%l;g=sB7I;EDC(zvns7;
z?uY2?reFR%8C5HTJh3a*FOF^{4oKv~dri5De#F<e7OhG5U6*$FvLdvc(Pcb@4|yEs
zaxqZ1cXK&&0Qr-OU7F_z1K8FfGufVkf2N0f2b=1T-#A3oVDYOHQ0KS3y)EZJzLtvC
z|2|)P#5u|$0Nue{T0q`b^m{h31mYGvlOEQMK%l^N{a}5jMJtfk&WSSJ=`|lO@NtVQ
zzXH;l&#P~|58W?zE>k9oXEBFJ!KisWlkFaNQ|zD0ghkw}8pb=D|7`a8ZeDXn+XBK#
zMqa({L_I>x2zQd~5zdx+o>LmRcEaXxgAoAwBZcDslmTQl{w_hF+QomAs{gCa*sE-M
z^)hHJ4KNp85kr7GcKgZm()u>w0Oh@pC;KYz<MS{!*N@dnwFYp!Xd>&gE<w<~R`MJ6
z#h09|WrPKEswl3Dv(shl5pQg4vf%-rt+tux83KB6amW9y2hN3#)k$V<Mx!#DcyJ()
z?`!_em9{O=k6!Kwh}Xjijc8nT+H(^04d4MNOwL8@?CaP2cb*8dY|!f_n&bOq_=#^S
z3;(rx)Q2+SNIYC1hbB|7{BnV>{`Sf1_gDQghQfi1ctu$Qo`A#;{oOZaHKo0453DX7
zWJb7O^XZ~eFc|t)ghifbl=HZg$}#Fg(>tt(`&c<#nY~!CEA290`I9`RP`%$_N_qPw
z6t~td#SI}(9eHD##zi`sS5%v)r|Mx-1d|#T{21}<tvN?sCi8LG76{oH7;(Hbhd+b;
z)^8$v_=-%?yBI;GXc0^0zqR~Ck+VFq$}dG>Q@qLyveFdT16`@D<BDX&4W4}cs%Fwr
zE4LnWb8nshTNV&AHYC4irTm{1QiXezfQsQ9h_iLSW_KVP?-gO8je$9OZTq$CT>e!x
zwDNTxbX#5TE!CnLi?V$D*s}x@)vH%YnjU1U$_$$B?ZN`#P#T`@OgH*po+wAYn>!7Y
z7@Z99JZgA2C)3~bcybtXLzE}5cWNiCx|5<-&Gi7KLNB<8oEkNz&{eduq{Y<50Z|j6
zO`h9iA8ddgmUQdY92y%fd_@TG)?ySnK}R<6gPoQbrjw0^{rK%S&~1E@&+ftv$7c;t
z!v)Q57J`>^54!At015pby?A?j8R>f`UuWQLt!h_@+A?H(!m4L5x}dt6`qcp^Hl`a)
zyJdJy#b-t4r7t*JSS~9*FiSYTG@_<YvvH@}5q6vmJJ2UqIgB(P-ZrFMfT=}cL1k(L
z8|NqA(*<1qp6ZkgZuizndInFpUBKQFS7tW>yDoHTf0}&w$HmgRME)1{_Wq(b84rop
zBj0qehEfRMZvCM@{LDNQmf>uFs+mFHNX%{a>Eg1@W$-IMO%R6`y6c9Jo46R@OZz|l
z15`8-?E6~Z(xU{w2<iK?ZvO*21g}x6L^tjk4KriC8I#1WrTy-wUm`kUT(BEyR<`)g
zG*QZK?weB&yLYw<+%3^HW|GJ`Xh?C`df95so2)67;`-A+DIKRX*Q}6430!wC0Uyji
z`~2WLQwa;l@3QRLr6fbt3}?FiYC58;N*fnpVH>m27W|tKuie04pUpT}?)p;JB~Zo8
zz6cY(*1sfJ_W2<d_26i}qo0G}ns78-d=A#+;G4eu>F0T?(23Q2iEu<NmD=EgS$kAz
zANJIXn$rGU0Fm8s`;Lr)S^*#2ey;5)1*)1NHBv}en(IXqBB!`LO#TRMM{qU+r6LcE
zoBALA5-kvd%i5Hi4~pcB>d`0pPMZj!N;r>yGA^+M7NyfAjXDRl5MyftNjF)GdCWy$
z^NfPUDshXVNY#l{+XweL_Lr*2CUEK_Y3MG#m&9^^nzp+kXHE-2o>;VZ-oxOZubi#C
zT}cQ*5yGzDnr?4ScSpKZDPpNaJOegy|5txXu3M7x1HFv^w(RJ!5M-+aLf!YJoMUFH
zSL5_<FEyIgbX8cL>GhgFwdK|Ps+-pJItHy9ASflCq261<DdQW^TvOXD3aHTe1n&go
zKp%6)+*tU+A;y_55z)AT*&1sS#ytC6#^j8X1i+WV$Z{8p-}RTbd;KZRK`+^wg3d6U
zHdI|LRTh!luaZan_7tV!G{7jRm|qA>T#qr7vI+$}ZzM#uj4;{HJY`{GT@f~P%HY3u
z29g-=%;{W}Fq>)aC>y|r6ASy@SF%pq^A8uNXVuO~^3o@NsBv&GA>ihX<BQv1O|S2S
zQJl3O%hRyYyiHhjcJW{sic!Qf-}qt7#mOv=_vgnbDXE+HQoPtszVMKL?Y69Q-Sn4B
zfo{*xHl!)NgwuBIa7`*XQgi$bdt7Hw7A@lPA?cRcNzcjscO&#D0(38@vfrKI^XWRB
zoIK2_Ir@69+!y`&brO-mZ{h^G=b4MSnI7k2JjrU>kmF?G>udk_&UABkWb$M1o~^-6
zJakV#YVC~svV0(_Utd{Wk*(QUq}p!o5wE|q^L}1ddx`gjLUT#KZw~IWsHAFgujC7%
zd87R>z~ggw)PFU1fcP$TO-#mOV&9zppKeg&F@K!AQ9QZ*a5}mJd{M;(s;NlWOK$NK
z8(3o|op(-5boUh&*s3h`zeH*g;+cyy(L6TK(K<b>&GYxU-aJUxv3b03(o>tyz07XU
zZ;z<$_h@IS@aNdTNV~Y7j|xQggM0pWolZ=X*h+)$-UXfLhm2|eA?_&FYjAXa`ANdz
zfP<IpVBb(}yXC^{gjvXb%lcTf#P;`|@2&4n(_4aAS4wM@a&XeX#3E4X3o+m7p$*{^
zF4@CaTi#Z<P@ka`=p25!zB|j({erwRc`<#pZDm!Wx$ZbW3h$kfZR{uOc^d58-PB&)
zJP{w}b~&2u&DH5H!42EFW>x_U%IvrgCxypO^-<(;yh4SOhc2b7#~cn}Hu-Vc#VhC4
zA3jR0WNo(Ie`)!E`cw5}NE0&BMi0kA))3i<&z~kgJ~C81_Ip?Y-E4BUi%XYtpK1&>
zwXFoB33LyNVorgG-4n;oTX@XRXK=(m^ah*vuR2_tftHc@x^6m3p&gg7*el5m8hX){
zSt_S?X6F*m`~mOXV~a>T_ke<#z5~5-W&HN`zUvAS>WKeL=W5vM%~LDM#Xmim{<re)
zaP*2-QB+}oaijz(5kajkqJ0h(Q19M~Dv(tGRAah}%6jNiQX1#OC(pxlx=CYRRy`ez
zk1-xkT4f@Z9ug+Q2iiGGp%OIzeAnZYo+4(0i)X7g0|gV18P7Qx@tW%SeDVZMV}E0J
zZ-0B^H{)5}4yMxQA<AI!7=(uZY+u&h_y`^t#C{&#6i`V^rt{nglAnWHD3UjxxFBQB
zaTrfHB(>~8wobhQ`gKYB_%7k%Ny#X(uYq7CKXJ0y`ZC>U_{hVjVTo-AEJwN_KXJr5
zH%7JvmN?Xb7JZ{Mmn(<Ug7N|;lPCRN&Gn4cEO=ERXO+b_vgPrFrWehn)Wj+#<><;N
zr>pmcI4#9PQArtdMZ2Uzm3i=ToUM%)lZDt(!+4myb&Coj5EIjG7eIpcgUbw-Hmy&B
zS4GDzQ$ufn|5H|igc@e+$09U6>_+A7LfI;}(dTFTFadI{mmehYco5yXj^n=KyY?Rl
zqyD*UOcalSl~<>~DVvukpkiQ`E0)^n#r8I8e74xKPBiQj_6}l{+`R0P1o=bIDEyC(
za`tVV_*d37Lp?e(NZyyusFiMZv@zTAVNk0lje2xlIt!DLT=%YGX@aygXgoKL9yT5w
zG`@Qohj}q`asT>7lV$PXnsZwGR_iAbJN(*OW*P^;`}BI9Eb<1=x0RMSn49GdPxeAM
zq*)YCaz(79g0GuvFF@C=Rs-LRFzyYUAv?VG!UM4i`z>W6erzZ%S`0<^!@<(W_=VSc
zzX)p6Bf;F_5E%qyFmF%yY{ulr&oq^Wm?%I9Ex4^R9?kUZ6F)R87`&bNxi5VDBXqMN
zA25mt>~P=e?&lv*Obn&B9!^#xhN5aVEH?2xRNhs+=gSlxNmvb7xCiNorX7aVQ$J$K
z9&}6W&)@=W_Hmhc?C&V9LuIh;6L65D98EcB4JmTbdX)%ucW&Qf<ws%`PSH`g>9PTh
z4^+_G*xi?z4~7{?Km_R`aCJ`Nc0Gv-L%$fZdVW!7)C?N{|3*3B2rUKd#fD5O2{+f6
zVvvX!Y&6yv?vJ{pd`F*zNRqNmrN{K$6pN)c0d3wVnUd&e)Y)cMNaFd3QJ<6^=lqJ$
zB1|y5D(7Ixqj@l??m2bsxd%Of^QcijQX)|c8$IPj5|#f~kt6A@%c^MG0N6_LevzL{
zg<8rVOIV?FENj4jFu!^5!SsPqlWBKjgO&DPrM;>r;%bYf?$;q`XJ&ug+W5V43o@DU
zQFnFKCVO;hu*uD%Y~Ce$XoR6t@V)O&;H%BB%SRp+&|-D-4YlW<Xhw8d!Q<v3uPR&|
zZcf$TRww{p^AK&B1Q0uESW`7Hx2dG3@9qp>rS}}mSCiDj>z`UklJWBl>`Z*rj>faq
zlO)K(At}kLIfabRzNxgAYca6BL$}RRaWAc`(GAb?@&q8!BcC~BOZ@QqDuJ8&pvRVk
zin+QXLR}v~K9N$q!q!zS$ltUWovYYHHuX|wZi%cQONmAwlh804Xzr+}ITi2vimNXL
z#e@*vf-Dxk4_E2rw*KzF;k1*mNUXl?=5As^mP-(UkD-A{Z8F7Dyd~5vWAEyZaI8(A
zOz6jpEUxoFy=K2BgPTUuhso<P@1H6{{jCs@Yiho<Cz?l%EVZZgM?+P2@2*nw(?k(h
zqI|YFTLN3bWprW(+-Y02@=it6q$R|)fJkr}uQ+<N(h$h@O0vme%pC{z%fxuF>+83q
zFbEDgn(+yq5kCH8YSh@7nOIX>=5GGUqO5~7)gHqztalPTsERX&vHXpS)uXiT|3$x_
zyj0Qs)mm(McQij}GeQ&(wd5!XQzg3mrT--V3BhBkZv%S|>Bl`cBX`#CnldWP=BBCe
z6JAJz^n3g0h9eo9VJ3LokT*=H!=!<#{wj9FYWl2LdP|S!bBZTfac1C8B0&<+C<AE(
zt7<`sCC@^qdX5@}pZQhS-OcThso%cDWwH>ve5)%O?DNm5zlYv$+TsApzg$KL=CS=W
znQm^ip1<kJ`ig3CJqPJ{o}Pl!C$s+shJ+%O7ZU!-A$i=nDt@<Y;vA=@M_*xy1`j!z
z6s=h|_*n66Hvj6>ZL~7P&b)A5_8aWtO4z*Qt6EQ1qv*w@4LlKhd%y5ef*1%FSLyUY
z4JoEa;ZIxm_2t#=f<V*zYkGLxef?{m3zQU2wI9bZI-pt_pWmLo>o{%OB$}ZlG1a<2
z2X!&d_R2mV?rg}YTZoJf;H=MH^i-i$g8JrnS8{`uH>H=;wTDUWSW#NDN@dbYR{iYG
z)B2KN=j+|axiP#zD(}LYv0q4#wLMa5F>U+!9fkR_@>vd%Yx*PQSvB%H?Y+4@%=#g%
z9IJ45b2pm4oiqN!aR1#NkAkAHY4%>LbNF(dE{l8H*j@X5@~Lx^0fB4?7jKUYR!^?u
zKBzJ_-cQ6#Cu^{xh9Z__$56Kr&fPr_gC3sU@=Wq3SFNXad@aJOl<3t(liJm<`{r~H
zwLC>y%X4{QR9f~XcpI;>@7bKYAAo<if(zY}*J)Q7kmIs-(wMl45c?^$(*B65qlHB)
zDa;}|I5zyC#_}Y@s%<Z4>x8l#q2_@YgWZNyFX|O+1z!r<CEO^8Wrk<K+Kh$MT`UMG
zT^jO1T|h0C^w7du=H7p+!ID>+aOe+D*+XSkVU_xCi>D><khOyAmAgo*;}Rh+al_-M
zLh(3X2%Rv)*}lV^^~l^HF`BKbyV$-oc$LkF3=oEmX?%dwa@Bf)Kn#Uz7cN542OVV#
z%V@il$jj=}Z~))#Z(w`y!Kidh>HLcC-h)jT7kbyGz?qhiIVH=6{eH+&5KA$rXKFIT
zN`x-Vn-pm4FxE29y&WQ9z3?u${$j=WfdszbjVHXFhkf_u!-4@&q5`P$C~by<PJcw3
z|L}(FBr)p#TH1OAmHoj-<SIbJpZ~6MDoQ&keJ{PmwMAv4WOJ}K<E;}0+wArlxlf=B
z4XL)N$D!?b^<eO4ezSP?(r;Y8COcc@76`Std1u<DrD@G!L#W91{W3AX2uor#L(pka
za6&y^JZKj-1Y%xN%-nmiu_J1YSkCj`Gsrt$_1dm4g9PNligRWM1HV?rprxw;x9&bK
zYuPV`_n5#>#OMqggtH@=>pP{h!)NTBXWA@2=v2h%g_q=nMGBo!>#vmF?TyJ=&u;`)
z!FC$bLjL+Hq@ycSsceb<&%f?q^otOiDXH-@UW`-qJ#Xj#Jh_jEfry0DyY@jIZ@Hto
zKK>)O<W`17?FEXbxM#06XQ{vr@9htGsIJ;DIN&9r)w=9p5@&Jm?q7zx?W-5p?-p37
zUnq;g?FEySedu#fMNYd9AFsT8KKU-bGG6lS!Y8lhT*%G8>d7b*wZCG6Y3iy5sXE>E
z=+NFKJIW+ABG38fg_8n=n=mqV4IenlVuS^f^Cbd|(C@JkcW|?6Kk=-D9<zk=5Bi$-
z2jZHMGsJF-tHSv0Wj*J+3@C|T7@p#QBQf;}cFr#2TT7@CyZ6Ko8*%@D3g7kT#aE|$
zBnnc5z#d1oYW3pkyo|W$Uu-wjX(7Xu!s1Hy-j%4tFN_k%(IvoX19zHluH|WX0(M1u
zTvCON^pxp(tlX<WgjIo{JV+>DZ?_S`28{Z;c|JUv7A7$#58cu0lY}!f{)54rYecP1
zU7F-1fv*)>J_#Ip>SLuM9^n^%ml2_dHXwaGeOT12RxIi|o1B<Ia+97HAy{lH5r*62
z+bfclNnVs&0UWvK1M&k=rB1lsi?mW`$7I;Y<9MRjBwg?F5ROIzeJK@jD$=pzD~Hi>
zzdpHJO4~voxn~_Ip9PvjlwIr<M+64&7}5B%qgH%nn~tPOSplyKTldxi-vq?k`1i}r
zne?Y0D!D%0%-b(>`AD)f+(lfe<WdWqNZKx^8G4)D7EiOKTDs={dIU((g}vTJ#x&!U
z$-TDh7+c+{IS^@wA3gf7$KMzW(p@F|DV*jd(PsoaL>xSqriHT>2!@iuD9M=qd6qQ$
zF5o7xvU0!RXG#lhlLu!}pIzM<>!cDo%I$K*{`)plm2Lv?b6`ptwsdLiP}q}c@7izg
z>th)XVXu=sjlLEA^|?to1te*s)WtO6v|~!7FD7OqS)a!ks{*#21)FM6wq_am)*p6O
z+x+F7KZ>jl)YBf^doRQ>`LDjp=@*uWasDvAn@3(@4a$wAEj+F;{Ezt%%q{O=)w{@p
zb5Y$N-wP^>v}O4sppBYoCakGm{LOoy9%;TU{*xcb`lbe0O`lcA9o%`5l2+e}QBH!B
zl<5qL{Ws#B%w?0tE@;0yACvNkv7B0YVzObGE(?BDvpp|~=cj`LY-d8c$c(zt&{U)w
zgu2$ojp(WZCcgN`tj*D#Pjb+QByq4^VjH53VihheSKB(eL$&2+6ywXp*|O11uFJF-
z`WGh`|4&MZ|G&YNEblXvo9*rWWYdD$@PHCn8`ih=raWG=L$d@Qr7(fww?546xkPzK
zV;r9PiD#1AD%7#=QwqXWGZDf3anLsrG(<Y@Zs;f0N1-Z;O$O_fptKLDV|y_*+(Y3{
zW)I$@6f0ps$&^9s)kZMit*}P(QwSl*nF{>@5OuV)Phl)|Ao+Nx2CA`6=_Dmg`H-<k
z9{SZSuGHxOm^S$*3ZmpHT#mU0E!-*SSkP`JR|^dF<#}O3e%}H!KcQsx`{MNS|6-C0
zZy?L*C#IK|XW+Q*j7u@O$gkicTqa5>Nh00?-*}J-+pjYL2eahArbdM)w5i<**+}Jq
z*4k(ZdP-HPBm9OEa%Bd0Z|rD{TYIsL2VF_H7tf$`$XA2M;H3W2#tqr#lb~Zk7eZ_`
zL7JznjSn`71h+6lbpNDxo~md&;G@-e!V>MBhvOZ0hgz5B-Pv|oP6VSCFCX2^A6S?H
zYlbM=Y!W#wH@3jq-08nPw|l|Pc?e3&_*&=%Cpd0vw`U*lsO}Obd^-+7P6-4^V0v>K
z0<No0(?;kYwVvnzQ2HyapdXx!C0OS{gBzb8y)T^8B_}ssO(Gxk5Z@t-K~T&#x#uFs
z-lDR8v^>fUtR#>H5vT1Kvw2{++cev1^GVqTktQ;F4tzsKQpxfxq+EmU7pKC>MY2h@
z_rDS7dj5qEJ)Ipg0QHQd6|rQ+yy|{x>&{BFddxOkH>)c~Otw4XnYxe5D~QPJ#TVxL
z>g#z=1+g_yTyJISUjP70YxP~DNh6aCNeo*a9^?P|-9H3lRNx5XLA|5Ya_9gvMpw6A
zO9^Q2*>CNJ6kACwR5}tOW2>OsbI2rnyOXvd6FIclU?@D=D9lf01{o2%2=v@EoSKCc
z9dY@YbrrLqhuYC29Yo<4{}Mi=oiVybX=wX8dGjSx7&-+*EkTi=sAf{G!h3YYz}d>-
z0Lm}yn6e5CNObzgGDGEf5c^-R4^!6rQK1OKK}=tmFE^rpBa0N>b)o#+`kb7rS-xM^
z=|UcBPebTX`>qq+GN@HVB@d7S0m&ZGWx7R1hN&n%3%gU>2A~Ys)la~ZVjrTTofFpx
zf$CvQ=qp-Tqb98%qM$h2+<##mn(Gx$wR{-5uhuM$$pOg&?v(^$1o3farTkF;sB1R`
z_x{dazQXqS1X`KJ?w~D58>No@`#o;jYIo;F{ADSwSEA*zb#xku4F1y_67&B38#MJW
zUz@+JrhT@Z@^5V%g1&nJM2zJo?sq0cibaj!bF>3)dL8$U1u6)yUK(SuF`2I?1f@nt
zN`3(dS)G@*xa~S+31hJ5i_7vY!j^87`Foa)BO4$9oln5nQVlAl{3KaRYGV?K)bWOO
zC$e2p+D2@sKB9!4qM8ndVciDqpMSQqZ<e2a5;xw^!+8I?sBRo|wm)5;n&6WdCbriZ
zO?0-r{GSq45=aZCuzBtSHS5(%z&LJZR8QTH`9TJa!?K<IM~WxnFbKd@AH#)<T$&^C
zmTaR8%d{=q<$#C&{6}OLK+C#@(7yNjE_J8is~gTQRo+U|61lV|mifPqa*+a-H;?$w
zX_DqT;%o+ned%rw)+h_VwN|;PQnK+iiW{ZW*P1@(fdG&HnK@387iwIG(nfu6NobuE
zi~mdb!K^=Ad}>M*V?OF#hJuHw@8v}DJ>^F!$(>z3AXcG+r!jP~OesB04*HU}>kCwI
zs#nkKP-VrMVm*xLWKjU>$*?jiM|+YG@p`VP*hA3h!0$|d%k^E4FU&)V8qKe(&mS-#
zRpDbaQj-dWKM(x3H63bNSi?`(TzB~Lz|u!8`RU(If?%E<{eSE$_nC*54L5=imiq)`
zoxZ)e{+!Hy*^g{J@`TSdL1owVoB8EQ*=)60c#d%k$wsrO*-5cDh`N#uk#?cP_Zp7B
zLXa0<&*x{!5P>)$G#n*#o{xsWWS&_J#r2KBjt}0Kprm|jksnHIW%qYrd|yOe4Ix}V
z451#KJLOFszgyjIjwua?>4Pqmw1O0Fxv{Zmlv=m~a*Yits+=${euKJ%)F5Fvew>tS
zC_OB>rfaR$Wx7```cZTZrq8C6*~i;YzUF%VDF@#_x}tR6CU=9)i{vW41(sP_cdz6S
zttHDJWk{Zexe9XW#WhBQP`p(Ax&OiKtC}h6a!5@;rsldB<@nV%;1<l1?1%<ig`2dx
zvbnM+RAU52#3Gkc06BszXqEOz;tNl&?*|Sa(zFx7osn|G%BQd0E%TU<CL|<}ubrP!
zDMWg#+-2Oz&B$D1lR83eG<_hLK{I)J?~y497SvN`MUawALR?PKqOs!Xu$tzZ^&}q|
zD2}^Scn)6;RzSqTW&?E_ZKB&f9GN7InzTbjD{EQw<esm;vezTmAuGBriRkD-DBD8A
zi{#X@YXV=&@ju)d2Q~D#r~&{rXpdXgd5P#B8ZhIsMf~5O-Fjby+ZljWdrV1#X6d>m
zvt8)||J|zs1o%tg!eK%}TL?@(S21w#v;v!5TZFj_B>PK*N7h8j(dS(*F!{fXO)+_}
z3VzYdWAs1Fzkq{#ajhILbPOgjYqs<^v2iN<>3VC^rgGvJ1f0*!SU`I(toN4!-iy!e
zF^i_KMrhFh`8o(cwpMsNl8^NVTgx2QZio_1l5UAY?f=tpl^iGa)i`DM329nzM-a6_
zKZ10*u`IIevyaJh4d6sO);z#t@^VOpZ=m;9b#Y@RMe5>ZoG0Nqvy8J0(Ry6wKFBIU
z-b)#+m)0+6gW3@YN$uX?8fkOd-u^vR@2yRU+3))=x3~6Q=Ra1rr?WR}Z-lgQU?0o5
zOS1=#+g}uPLSE6|ClqbF_U90R4zEs1k97lRlYPU}{_^t<^cqGpSZN3su>#WsgnA|A
zvq8qUR*=t%3I0vWJR`di%vYVUG^#Bz(w|ei+*Esnb!K3>rz3N=1Kt*`+sgiA`*T*{
zsuZ>IXxBHNZ%%e=qO1)s-w-b)|J%OI1N}LkmE`X!{nN-epn=rN>M~^cx3u}Hyf<O)
z#yi0T8wpD;3-aW#U}$$X+itwu<yj`x*#eu_@@bTwg4~-8@>3!|Wnkk!g3^wdngyS6
zRE0O7{|_n3l@D3L^eO$mi}-szzmdnJD*->Y?upQqcJqx>5oRd(-G}fOe_3cO=GoQ`
zcGfIH!c9jzsbt6eJWLE6^3tVAq{(cH$(V}g2U`y|8Y$wr=Q(#UggmKthVbD(2LBU5
z+<$|lv&oPPqeU~s)@VO+)w8psrd0q`33P3J2KO;}fA;o6Zqpu4^#&=aK(8&oD;vDX
z8?65S5q!*#k2hH242TAz|CiGT>uYU~({}(2lpwp=1|wO==(Vb#ieO4xZ?<S`zT7_C
zEF%lHWiR)lLJinzKC-Vqt9uI(^{o<TBivXtV>cr@tas`pY^P~vPu$W6Ds9{`G!+If
zXWNtp_07Y>Z?=R6EMUjHpHS~&ATRDN9Jy5up0J4Cc-}>F-Ek}DwLQ7Cfy!HT*FJGd
zHeqkRWo#Ig3qgachkL`FPWnLg$J|^j-Jz4>Q#-<=638&mm`<X#l#nd{y$#KICOZ={
z@eAu_m%J?v+zr)Jz0oU-6v40;dGo<m7iW-2+KJ0Zq{2OEc%x?8$0@vop2sI(DA(53
zFwybAn+hTJj+~#N?jB$W&*@3o)bs0GIz;ZK4ZCB&Dl&<f0&_1ehUM4YwcLxPG4k}E
z0b2_G1uB8qp8j(K1))AxmmF4Kz*lD=K5Tpx^Y0N-s8!V-Y4-3a%v2z*G50m%Oiz08
zG5}Gh#FvSP^N&(_@$c%)1xwG-9oJ|F6NFSJ{9frFxxX^q_p7cXn>yZJI9tyC@M%u+
zQ9-<UuC%#T7Xix`Q0{MTN#?&vMksrfK?>);Ez4C{RPsBau<6j1>EDX|tv0AAo6p=p
z>Ur5}G|00l1U;Xhe6*eV#kZG4>5qLK3W>MR6bP!gg!ENV{`ut7`Qm29w4sKJ<4%gf
zPTmSgQt#{48oL~vrA_Mg9NDX$2of=B&T-C3pX&nG{-JeYihllEO%4}d2HYybIRw-8
z`nhzYu54lM3h{!L%fJP;UuOGDvFhRJy8-%ea$HIpylW|sY{>5p4hiheCI@?%)&2`D
zVT4Yu?X7R@#OJ`cm|zKmL_f~;XbcHGw6|yG5^)csSl>@b<G5pm_wyG~iRylZeH8ZI
z#FfSfj(|uF(C86=`I53v#PZLtfqUaK6iW1Y;XJo#NWMdV#pdeFT-R|gw(AKbqx5e=
zsIAfR;nH)xE+br%T)>2v7}&#*0{<ccc@$syT7$*~j&5$bfrwGS1J|7u=5UK`xPJ*=
zG5j{wux>2j<6_uec`iW|JYsUP>0VNBkOKyrD0RWXZCSHWn_+~a!=A#;Y1{9>JVAjc
z#TYmz9(plpCkp8OeJQ6Nr3!F!b?X-Zn^(DXhUBG*7U`e?_mnS?j|TrJPgEq(8-t4T
z4v^b3S4IbH%nCXV(oEq=o#PRX5dXBX_VQq3Z`W5!YMh6yt6L+IS)t9-A`A;26F*c}
zG2TlEHGW>2i#y%CIb9<M2QT)o;QB^c4xfK0h71MpQkO5m-Jc`7>;?<Nc{}e;ThO5{
zlsVdv$fBh`?JB49rpV8iqf6%VX<0yI>zGa^z`ZIkB$TaPz*e<2>5ab6uY!!;e!aMQ
zn`d|55gPxjq`=*6Fxb>_3N@yDN0!FYGHMdmz<+r-)rR=c!^xDHi9~BBKNPa^v*ZVD
z_NHNvk0!r?$_GwEzS2Wrhqr0@0)$9aEv*$h9PXgos(soV(h#-@`C7F;B918lCL1e)
zWaL8vx>ZJvW3ELoJi=l36mYfqSu`iAO9#@J;*>gc)m?;*fCrf}bU=?bJ7>7V)CLeA
z7n8ha9Lx^pTob#5oDk4pulDwWZs>22R~*3H{$jc1)j@lXRI?-^mkA>X-gp#$_W}1P
zg%e<{ze%0Nl)Ucx72Q7H)O4afY6;@O;*Pjc-)iGQ)94_~)6Txfp<w3MbMRYjBJt#8
z?U2|{L0Tgl(p7Pq<5b2IsH$J0LATttuY5sMXU~_Z#n|4)v6A_kl^(TWut>pRFxW`@
zofy`@Yniigp1UA1<ym~VV7Zm#Ji|ssfZ6;{(Vw4E+<h~tx;<yjcHYMoy$9<3Y=3Zu
ziOXwG;uwK>$mvaWa1ATlI$B`nP#DuFc`${#dmCf9Ed7z`GE$+*<_qgoa@MH|%gD9w
z)Q5K4@apjF_b$plr=)=_cQQY_;8e=lY!UG2L2Ht-8#kXn+xyKKD^D`&<D09N`x?89
zZww6|;iE{QT}F+uhoc$JyUZ=&)d)xKtz?g7XCa<wc{zI<>9=;3PBLD2>a98BDc7aN
zi^$-I$(GPEbHoTqLS{APMQ`i;t(TZf0)<yTgw@C{5K>z_`279S)R1Q^lkJZ@-Q}P4
zVGG|CQBa2UE#!Z3CkzyeeM9durl?+K$fLjStaa;=wyo(~{DAJS62rusw?LPh`@OI5
zP+eY(`<F->1@M@wp0uQQ`N&Z$3K0-eYE3F45JyvuKyZFp=InL$@UWoOtQCQqF^*b#
zxfn;8des4$UID;L`sCrN(9QJxeYlb&zx_Hv!_Z}SmiB_o3}zV5yJcH6W-iN6dqJO&
zy>bzoyL#G0VM1G57T4o$@}1QWwk3~EOYt$_Ok4s}M_?Kynps?Cj&uK1iWwcWHb!&u
z0)xw5iwP@ltEKeIR8mC@Oq>o@RH^3E=kS<9N3L%dixfu`D(_9S_RF7BZ|}ihYiE6I
zFoc@*$vf3Z_5Agd>&wMWsFq?@n=qc?tn#BklRqS|{`y7d=8#~EzEo-s7RIbw3j0QW
ze+r6f)cbUM4jUr3-fVVzPOeIS957`HhU+MLIler@(nJ2pS7Uu7v9j+SH`C_|4@VuC
zPo0tz0eC5smAecR*mb@y2w(T8Vf6mWIEzh*iBcl^rh#IZ&uu{j2J@rfJ#q{|O92-w
zTA_GaiXT0P&E2f_U_H4Vg)mkN`z2za!I}bY4ITjC0}?sCj+$VtlsgAQXow;j)+7ky
z#GD+);%ZJP1GA?4=_p|6>05k3{IW(^9c8saxdLa*ki<c4Lu<R&E62J(vpy|uhQ1Xv
zVx@zF`Ef$_dzN(>Fw^ysOK!ZFzVyqJ|Kn|KH$h{j@6f7PZK|9|mrH41NfZ(r>!drN
z?|ufL9i6}`Lw??5N^}HdyfZDLcTMO#%%<zF7pL#%7;CCJ6v)aC(|yx1x_GOt2X?zG
zK9g<*0SK?6p1ADsp*^KV`o-F;*<MvD?qpg>AN1>W&T5n+L3Nhi?*^jS;#VG1f^U(p
zTiHAUx)~JYe``10lB*hQp2nRc_3Z;}gqCE^b<*KIL73tQ1fm8&kbM7gar{+asdKWZ
zF%|kn==1Tvi5!^I3V%Q)QxT;0f_uyuO)uxvjnhp%4Cr&!Kf*4_pbRqFRaW*IW8RC8
zehCK^Y!TJ%A@-745=oIEq{FI1pj^h|$$@QqMcn1!g0G>rWv6(;TJWo}RMUS<YXI|3
z8BKhZC{poJf;2rSV&EbAJ;1`yufiEb0xM@$meQ<FbpvSKlHB1uCFe4cHtqP^NCxv$
zRalNByVO8e|KwD_G{b|*5w!k=dj2<9m4~8@XU)pnen)a81-l9%O#kcJMKk*NKg&J3
z?ra&2*)LNDUfzVg_z-E(LBfAP1WQ_;Uys3xwvh!Zuu3Q2dIgQ(`P%5_BGWZ>76Al3
zZo$PB^a7HOhTmJdJ!x5b%X$CPMU|TWHui2=L-x8L0#AgNU7~D10*Fb}xLO}A1_g(G
zpi^O2t$<W}R%gj@Nt2f2?ncfg2Y1(Bs|LaJU?@DX>>#hJ3)RX<9~W{9nb~XwV@5(U
z#YesJ43=g}Gev*`;Rt9~Xi`ceWcC`(e!1Bq%i4)D&C0SF9CUl6%$Ay9TLdBNbo+33
zPg!j!Z#gfb7TZe2;Ig|4vzwiT43ECPaH#)Jt`rX<FxVfr*To@pHzBK)Mr@vccmA)&
zKpg^9z<7DK6?Q9?Vsx&xl`;j*UVgPGBWGHCj#$89Y@T_FTj`jFNw$5}!-o53^WXEY
zEfxn#@s2}H%r3`M&Nw8-T$!rfysO`Pr!CRcm^Q)3Q~J06&XI1uDbIT2k5uQ{ALMkx
zgE+1PA$EH}Lgep~KMt!9BJJeW=E331DVtM&FG3237w-ghr7*mQH<C!7wYAZZnMc(9
z1evatS^z-JPc0^5@XE3Chiaz+TsnhGN9ag_q3+J2=Ujr#I^fukLtns3rW*3R*~x=<
z#6o5v{`_|*F@-}r^qjY^waLEIYVfUvK&G*EFx_b$As^u$|I;Wm4=c=Z6K_t)#(#rM
zvrq#TK*-f*Q}+7ka4i3<Xi5ww4?4;vV#*%H$LQ{CJRgOt!yWofN?Mb{+Lza+Pu#B>
zC<}mdW%>+bRW4gz2%KD8XJ7)Uhl}InG`J)nuI*caK3jhJPKj#CSZojYaY*KQ@6$-q
zDu~wIlob__$DRK<aGNkD2}q@@f~-SkUVNlV)fh?!i?UrB;xBaE@Kin4>_HedoTD7s
zlTkjiE>^+NT_kVG`mig9^F&vf2(a7*PNfuVy8qi?O@;&bB*iot%VN(Sd`2LkpeRK2
ziZq675|CTC3WX7WjtQ0nGeBd@0A+Zj<vJdk5;xq!Op+-*tI({MLrz<j*@Bg$gnX>(
zn+_%Mfq*f=<pVkzsEj4v9peO2<W%a6T0F8|C4gDn^;<W$f!{4M5uN&630ZbXvLW@7
z4<8hO?wgdLll%pzQ6;SNZNDU;$B`))H7sP2VFohztM;f#7yQfZ3VnW!Owgeo>6tG1
z!Af}Phsp1RPWl-#2`^b2d|#9s@_VtV)mW2(=9cib`R!|E#VYB$JRSL^q{E&PnfOb6
zcio0{xWgOZ3@0b2cS`0x`%#w>^IF4_CDp^Nk+aamQ}io(OPw9&Hz+(!rr7k$q<nk{
zC}O7Z(a9~ry;NdzV|Q{}OO?t9fVSE}O7x~!qGf_v0C3|fFoh0%7@Bwf2}--Jx^<P~
zH?%bgMYSBTWP}yOt;5D*9k`tWFc04<6E7Q<q%`pS^|JsVCm-oY6~bw^Xrt%Dz6^Qn
z8Rdjx&bZTewGNxj{q115tWK~^Acl#R*T~E{G5RA$*CrEvf=0}O=T1&FtMz(nNb4=B
zcXWrpFGZ=AH^@w}iu-f@0kXv6Ds!;)n*@aW_RrbYB7x~|aHUA44bP;P8ki>M?Bea!
zvURRJD>xB5UgadR4+CIk*vz{X4wbg{vGJ}ghj<FnT^GULd^k-48b6o8Z!)S49F4hD
z>-a`);SR6BB4F;DTLGiTkYi*w0{YihliWV&aTWys&VQ9|_qy!~idSg2Gz_elqX9p;
zy7+pWQd4G5r7@yZ-jMljK2Pf0UH6ZCQ)5&b%Pr$Ypp-7&#~u!QmAw@i8|z?mJCLY2
z!cnl{-<~MLHw;-~k0*G<%9y#MrTXN&6;N^9MLz$1p?>Cpgr5&0tY<3MBRKUHZ1Bx=
zb9TNcshG1C8~aj}f3J2FsR!r%>Q2c+lbhtUWvr-uk5Z()OBQ*uSlZF{dd6xLZg@o#
zOT4YFuj+@Ie0jP!jFje(yBZZvs;n5s(fn0Eo}W<4otfC&5E<N>zNP&W%#;2u3s+O7
zEe3ACtZQUvDKsRsx&NT2CyDjjd&DYmhs9Dps=*rQsV)emR_$R!3F1TP+qsujS05vH
zODwb8*JP*U&ea|)FR=eyfRNIhnW(z$h747KPj0SLIDelkZZIZVI0Q@^2NBSz>n9mQ
z<?2Ag_mi(H9BBLUFh1G!`vJYz%q9S@?48}w4bAzO`J0-oGRXYw6S~&&ypJ2&(<xQN
zFk55pfip*yqAEB%BL7g<OFpY43*bwYt$^X|1Ke(!&btMF+Is>9AKX(ZUm>_WxfY0c
z6m8el^f9647)6wo{xpH!&jA8kg5FbUev*|EtmbZVic{*kpz&eBB1~1>vVe7Et396Z
z8t0iaa50i~!`z3s6n8!r+ZeE-w1B!#*I4*{wH`DKnx}R3tY?Ces`;S|2w5jp6hVVz
zI^AOlrx?vFEUNwaq)eV}tEOi9YHjBK*{0?Evf;ssZs3V6`Q5mvIJUD(S>*3tv7Y9<
zr$hi*(olbA_{44m>)(BqTjxL2fzBu2dDmP{)DTYB%^Po>E}{)P>hwac!voz|UEg@M
zxw-3FMOz}+^^M8PPsLKXjgIF@O@td!y7~^KX7jg}lBCLhqE0!I;F3Ng^b2l+<_{n5
z=Rhpa6u(Jp6>Ge<{Sw>e;QPsOYg)-gJVYLLhh--4s<@Kqehn*aClKNtlvA*l=bx#D
zzs|o1QUjf(#pI>pdMVZCFUZcTZ1>4+S7y-3VRN0%KPsL0myvR@;VHm~sP!((eeF1!
zktstE74{0Z16E;(@3?~bzuMap+M3dMu2xej&3+-VV{Nu;?4}-%{hVQu|GT$_2~+$3
z%E4~P>pwWdq90m9{93HTY)FA>5mxBVv_1|GA#pn5_^<Vd7?p~(_;L$XaI*FC4OAi2
z!BJjuFkRnV(pFt3t7Y3HNFGQO&MNhY9VvIB+)89@FY31Ti9cxr^~j^rDxU2f92$x8
z>&k1V`_uQ6t(9FeI^b|bjU{!_uNWwHag|=8(j6i|M)qzeh?CRk864RFOQuDxeUu(3
zd7IGm1*;AS|8;K5W?AQ1q&xvzNCZBWX2c>@gLMMs+8FKhuFUpRFtLPxJ{RHTUj(Q~
zn@glscaCDApJ(EzL<!zLNK*Q4r3w=PrE|Ox*37O*FB3G^x4C#iKW+<|$at?wG1osQ
zZYzG{%e)NG1^@-Y(slT#`AwPBhs#)J*|d~+afU+><Gz(C_vL#{Fv7M%0uiLa?_0A0
zjHpH3OCQ!FjPmt~6{e@}DA1)@ul#_L<O@WTRGi1<K_e!gObRjLq{dq0W=0@*mPM_e
zO3E|KrQy($>bMd@yt<o9ts*A1?3gd&&&Hd~MQVLKHCN4d7ue%_1hBi~yzGk5KnS)N
z@*|&5jXaNrz5jVabkc@9IV)m&wF9z({mq+d9U#vWvC6_WazE=YVz&$EN9FgZSH>ba
z9wwQ_!7|pv)+y?!H%Po{KI#c~Os-g>8-~zbNl;#EH!rgP*;37%Pv5&d+ziX~e4E)9
z6?X)^<zz(1CEu($*=U~bYkEEyy=+_6D}0o&+%T20gGZTSGwGf)R;=U;`rGbhxi39d
zSim1OeLH|hi;wzpd(B8i%)y<D$=SuxWb;$Dw>n(}t+EZkfw8WK^N%N=3YRU<Id$!4
z7mE*L-U1OY(L+&oywCMOHF%*gAeZ9!D^{P%m6-vC5E)sJs`YXo_F&A*)M8cP)(pZL
z5W=6IXd@|$S8KWz=!SY`Lc-za!q&5}=9T${<US=YB{rkwXo>BP5uZFcpyRqyvA!hh
z`l-9g==BFmgHYC|Wt4CNW}DfhjdRQy0~tvhoY>3?cE@*Tcd54(=aM$6&@4<Ag)!HU
z6Qz4B5>8!o=u_`sOkm(|ULt?XGW_+YQmy{Wmwv8lYDD`IWZi3}o&H&E;n7pyW7l{9
zg1Wd6NPZ0&Y5A2-n5%jCD2=eUj8!u>XY*YBZtwO6&!2xwxD<4?xoG}HT}@7&tYrH{
zhT8Fr!L-QwY&B^2J5zgyTB3w+32D5`e8L*uovJfHVi>tz<KSX`3Z8$Nx)v@Tf3pQn
zJ9#j>h1`-2nHz*hA+JnK5u%lW0&vOfj8Aunuer1VH)@$!hoOE^uvQSq2xy5xU9fB#
z7kzg2AoEEn)0C$1CYRwzDZU2OcqbE0oKQC-uqPs(@>3NIo;VdMX~Z)0S1<}3R(iX)
z4UBW@Ekq2PToYuxei)0gzPQorG{B7L6~bT;;=!AZUnj3OXS<tg_g(n(c{Tfwkkw%B
z`x`XyhYhIMKASbifTo^=SA@mxnPB)K%?~M@D^vj$cA-mPa3EkmAs$1jV{04RzXxot
zVfmw<UF!C&nC#^G!Pe~u42%ga2|n!V)2E9E7uUCV(1U~0Pb|qTI(?onpgkrbO6a3V
zM$GfX(RnkEOt8jnDEL=uj5~ARed{kP<A7y)#$MaZo*LaNcIx%!^J$RBU+2ePG|8Y=
z7)gq~83$>^Af^!Bw*Doxub1<;{^+hO`{c#%DXlaJ-TQJ=(hp<;zn&=$N5(u#lO--e
zT-l&Z4=X<0&j%*cl#;h!l*H4_ciBqqZ0p9qM<Llx(j8jt3sU^q+|vG7j_XNRR`7--
z2ysXek7urhI33UM$O9u@DG<umUps(axpomd!-;M_D!*ilHLp}FWQh+luXo9A;Y%J`
z6o>d6juCJr(y};7J?0;9l?+^Qrn@g2?`1zE^WA=czB>Ii|1#a4?rhp9wE+DyNWybE
zN+!>1MB<dO8cR`9oGEGFkTZ<wgd;_O;w4YoENcf&2_iPGu4E{k?QVzfxwpeg9rwvo
zseb@GG`Xc~BnVsO^*+zf5^UCQe5xKc6T0|=qiwNlg#@BK7fyi}0{r1h1~>B5?Zf&(
zH=W|b9~>PSKX0mM!s5tDv`c4PW4=pSHl68%-DM~c42{GX2vFHHmZB#VS!RcQjUL<$
zO_>njT7h6_^inI8#;nt{X~WXNs>X%-c?YTtRw;Xh?@`5F+Q(t32PoO2L%da}fDJd?
zsj6Z!W{*WI+ToUs>h#WkvNz|S@lXcH@qTl+pG|my5|mh>mJkd8kus~4Q?gE|kioKQ
z$g>>0pVIEUQ{ckdVfjJ{<mSWosyNtB#f$_z?Rff76KM+~jNjbKsMS`xHe%b^H(nw^
zB<LW5f~WVMyd~V9{%+9y*649RP5gmjBf^2frVyb*t=4hUr}bE~LT}gB4ix<601Xe*
zG-!FJFL+l1)Ph(3gw6x>o|_AoF>oDh3)q=Dg><3YcNXR#G(a1yUmAf=1QDF;YMp^`
zcJJ2jhX?cp?m=4>mn)8}(QuGyA5P#<+pz58VlACn4nk^;CScoV?9_vlnk8zZlyU#X
zOC;~<&c;@G#1Ef>QPYbgEqCDS&iB)WQuSA)l9;N=e+`e{_Q_kzcWJOBi4iNlE7SZe
zQqC8g6hfDKz8>sQIn{QOVj{ow1vCz!1AnWt;6Bvpvx7az_Q=ueog6jN2vuR_`<gUl
zPfGsCc9MYZB69wgZb$~1l*HYq%M-?a^cc4Gwuh=aKwR5u=|3)qu?12c)Q#eSPQK~d
z(vr3vp^>5p^cV$lJL#48(QXlhAbu*M?BAYNc9rJ@cn|~~pa$&jX4rTtA|6xW-ICv^
zA<QGyq=XuC^|;o7pSuK2ZLZCT-L%qT_kXr8-`0ESQbZ|v{<Q~J2u`Rq-<1dYuicWX
zVLB|IsdJE?M?lo*E7IT))QI$^J~$UOxt(9OMhL}Pf#qx;l!zv@+%_?XF(+lFbg{YH
z6~_?5GI!Ih$#-v7_wudoCCy!28*bRq@(!Pt(KhG%r*Osl257k$Fyseo)BUl~v?tT3
z<y5fc@KT~&h#wMgDy41wu|UEX>9uTiQ3|$c=wPojTPzKzoxe;<Ek@%{`Toa~!-L4L
zV0A1Lo~(&4+1CqnRcRet7kD`7J{fN|q00VC$k`<7{F`eV?FlH)?CPq&y6_Z<-;`+J
zeuvO<e}_%`Dy2@*M>8l-;RI6E9&;R8#OsDm<oSkGkVe?JmPwEPN}tC|a88*PxZJ8?
zcj=9u1G@{P+8xP&;5^B^E?={^Q|c{_BiCBwkn#+;x<H5=N^gD`Lf96ohZ0VQGhD_*
z-7lPK7OGZkp~LqZt(R2@DWZ}=Cf)dG0^V%tL_Yp2hT(r4>Bzi^jOZDw%X}aZK3<kO
zx2qN&t5vBBlg>|xb(9Y;n#MHhYjyXw)c}dROtg`Un?JJGOO$C=tR&*%G<3vCk*Xn#
zuY+&;_Nt%<|6~*C>ri&8HpX@<hIYUSNK3&@oVFcavNfy0U@f%gC0CV*mFX<``XE1Q
ze4(SiBD7Z7tc{r49ZWVtQgx{B+@;5Omro%_rp0#X)ZQ3(YQLDDP?DT4KBuKIF;|W1
zfz%xg!txVMug%Zy&WGwy_5r)F11sJMOCe#Hxocl1-)RP2oc?Rrx1q%D?ESjA46x|V
zcp&z_QAfbPa@PHgD}R>35|<2{nhvjaobnchK|%+hiIU4xPGwxCp>`+Om(G`4j8KZw
z{t5+(mAKN<&)4*hmnVFL!Wa}DZ_#wIRddm^?kUrU&LvZ!`&D<z6V=dOOL>;$dKAtN
zOglg%1XqK>Kg3#Q`wYz`IiQawZ}9qxGFmOgb_dzcjBZR}Vo#(tG^ft5RoKT~Y&zRK
zh}_BRJz6MrWiwuEH|0>z;$?O6@}nRD&W&>`{cx75qi@}1kMwT>%+BT?Vk<nrX0}5u
zc_HnAnn`N<-chI$rIc$87|TxAd4~AA6D_zkC(g!mjEXU7TsdYwha|6Xo2ydu%5N)w
zee6s1|JqLXg>$Ztiv$DjG*sj5=z123j^HxXOCjt&&^F`?6^ee)j!S(@LelwF2})ra
z9@68<zva)2<7&GsXMB_L+dqmiTM(}tN@JvAVyN|!plViQng~5$0PJifU%lPFgeO`S
zWWL4oqFwZ#UPUV%iaCG!EY>&Ffw&j<e||lRi2A-6brK3qGA`qP`|hY??Ph?QDD2-h
z!d1d6mh5V2Zrip%)UzvsGlZ&TC*^c4PgJqW8{BVYWVe0d`2b>Bx&EM4vZ9f<>EUGw
zd*rZuh-&v$r1IIFrC$nF{#U*Nfn7?LZ{Tz!sI6hkkWg##yiboWW`vy+Nj(!s*+R@&
zvo1EFf`N+G-ph6C{bFN!ct7B1u2IbZ5~X3SusxS=xnsOaACDmsg2%%<EemMj<2quU
z?0b3}H<J2iU!?ZUp>sW+Aad=@zn-23gAy28g;_}!eWo5a2o9Hm)EiB@^v3ttIZUhP
zVz6p0-A~Z#t;1J2_5&cBvj)0oiC+cDJc1t8;4zm+|M?<~Z2Ntl{YX#=xTC<A`}U+=
z)acj?6<SiAw&%)VC^qK7by~<CFvq1hkwWVaEZun{1$QY-_CfKZ7WBio32SkAcd1L^
zVe7~DRE0Q%0n3*B&L&C(NsoY?i!zs~!&OeOCkFkA0FR(YNBh7p5K<we^_Lz6$y?9d
z;Z~w6PpoauAP5zl+|cm}`v^8RK$Fz&A^C5W09+IJKQW0k(u~IWC*J+LefN=TKD_Wa
z|CMY0-t%q-HFFFL8BaH^sYm>W08I*BPK}TQJ>7mlg;}z}#lq)flW#uk=4?8Uiz9JT
zuiFObr;Vy{s-CxLL@VfQioPse`U?MC;w)Ju3E~=7a_m2rW9>R}E%(c^NO&^VJkPSc
zZTI0b7RE11=*>VpulF=c+=hU@Kw00HMRW=$`**4)c5Q)vb1>8NBFT0W1YZ6$EQm9M
zNnXuE!`ibn<n&`*Y9Q4e8hsi?kvkg8?g4?gM*sz%7#E!KdrhFHIKN?cs`)7#{Gs00
z={h5r!Dr%7HNlD7%k<ZJ<OJx^ZLBetH-!cjMPMy3#<uPGzZ)wyT_1L>*yUcH<B|*s
zE_|o11BoE<MS{97>|6^lbDkZ?=^9XXbWhc^)PbJ4p|H0xlk)tUab_ilxOq5a;l=H-
zz&G?nm!>Uv&%r;|V-8A$J+3GE^1u#jkCOzvCOmvSY8<h*Et|pJ=Rtqp-_5UZA-~Sw
z4{wp(Vd$;yEiKJt&_JVYDBO#Ltw0HaFnEL(GCXvxtG7fZfvhE^zPI9t=@xv4W`*l2
zp-oSu^Ei6&lTF4oWr#cMcCdo!pWj?L?2qcGWXN70uXiTYzSgMKHv`L;{j1)^JN$ph
zPjYzz26{1v4_T4wQ!=AOEEE8{qpYvcTpJ8q8^lVV_FuGUlN5RAA>2WMm>004Wa}Ac
zog!?BTa>v_;JNvYZ8Jhg$Fp~BRBMun(h)!LEgIC0(ub~)R$xr~!xkDWT65(>El!_@
zXrv>RXN*toIZwURokr;gvXf2%ERD83J#!~@R7}4A^rNFN4eTND^OVYLOzMVWxJ>d4
z;9f@fv`b2xxhmiedJ-VOJ!WKSxhrkoYQRN0Tl!E1!YWj-bfe*g)FBND#rTv*&9aDv
z>XV6pp1@Vra^lX`bk4|i2p9rl--CJ>n<_M-An}JW_Vl&h*AIp;SPM^Fc_|T{_A8c3
zNF~MW?UXi<X2`y?O%i5^m6rCkJ?SDv8!V+1W-hDL$ofC$W2P?#su+T$y!~S`O<1__
zhv~=QMA;Xvj}eR>lU}5EZ~3~xR<j282?LP{NxCzK^19jrFNruTWth-09?vMwoJYXX
z4A{-JXC3hQk-yHGlp^kYrEj3e_UrnchPwY2`Yr<iA}b+g^JDs7O5U1hWvGi<%7&R}
z#PE)p8};cd#!wYTP!wUmb{U@*267Ine{BWyrd9Iz6|(C2gIAeGIVh=sx@?cN8BAq}
z6GA&~ksDh&qC#7d*zW(lnG98ZG{Nz^c7U9~%K`VbW=}<bfBh2W*;4SmHf{pE){TO4
zGEE3IOGs_G<({@gZ)wA36|BU)^)lA?JuZ4a56La*i-v;~t%94hXp~>+O<@_DA?TJ}
zo><45a+C*^j))JhZ5(XAi4}QSR-&*aERb(Zo^Zf6<Y!`+13wO-RX5aSP)^_Q;n-2T
zcE#gZ6<ES5*qtuYj78a<%{LTiwewXFC6&*F+v23EZDm}F7*XHH`zSS)U6b^s<{JjU
zSXLFe6n0Yyu93nZCM-&Xpiox}zH%rY1r*QZ{<OQl#qkdIRzZ2W`!X6%R9>>|v8NCU
zJ4XIYU_W*tvs!c0g#<y$>5phVI9>vW;Wc|HK|c18t}v>ZF*JTb7_{+-fTr_zb>UCZ
zcT0kBKEKTJ4QHiD2F~g{=yiP1rfT(*NdV<LDKv|cZb({|FA*mKq)yey&SWty{;k15
zGduT<Z}@?KUnm5kawlsC>9XZ}!+$OGSG|7H|3f|AIl{FeFvejhQVtddpi_{~QVS}}
zR<T~nFk&O+3*jcT5!jZ5VtLmxuST!vu|hqyC{0*%86~hoC=gthRo|JXBk}9xIj%rE
zHy%0C6chgHbUr`RU@k`}#<M*ACt%$IUi5%s<f=kRsIk@11Gq#|i~g)&+lhDM1#Ymu
z`K?far&mYwTAC~wp9S^s9<H}_0JcP*W9c}WZ7#EKe@8L8V4C}w-<g{I2Ui832?0xJ
z@8OjdhO~;&=Zv&<cdhMPNAZk3&!fJgQ@jJOX?vh2rutH<{AVfnZ*~q`RA$!H9`{#f
z$y;I{1{DCdB@L)K|J|}ozFYf!|KR29Up3CMD$G}zC612so{b59AvUOcGGb}ld(Su5
z_75OP1AQV-P8|L_^2(Ue-9ls^^7Jl>+->g*2bS`MXfDn<w^1@(<w-bN#v)&p%%-D2
z`hp%pqOWiukeqfv*HYU0FvgzOJQmxQT`UPgxwiJ0OU8A2bo&WHp!;rJ`{?y;@zSYt
zTai}$p8f@^CyjtR^Gn0*Ez-TcEtr+tzjAI?qwjy3;pPgplb0*%MYEgRV~)4vIg0*3
zeo6-(LN~e{WmwuIHAN41EAx>?E7pb7JzqSp`StZ&H*33lCuRw$1Sr;-7ou_#Z~6u&
z=)!YKR&XKdI4%FP+wdMSne_|2-hS=hBl_@ovcB7R;0!_F$jdSSZpciQ8*12#kvy8x
zmPv&e98jECNL{wInD}6k8As!pm_s{|0T^oV=jMz7+dCTxn+eeQV&&4KxS!WNEEKgc
z91^c)k%!=nHE9+`Kv6<~!6q!9vfIN;srw|~FeodHs1U7kFFplR1@<jvg702p#N#E8
zj;EGdDe&Uvw~~l8iz*a(nl5PmKjTp<j^IBL3py;HXAJWQWA`P2jOVJnlX;(Q;iX5B
zcTP;qRhIn4VD+byo1@Fh5gotR$vU8dogJKWb3*K487atYCmUy<3SbY{bCT_>)<Zd>
zZ`7lmKAlx$`o{D4n`b9Dw6+A($K}9GkZr}a{rMNyjlby~_v+aj^Xt-Vl0ByV2E8mw
zgSa@=U37Q9%vg+F$a*^QLzEYm@d2U6EBwsiE<qhUxv(HXo})T2!iszPiL8%+T=sCu
z_}ZB@s}9}Gs2u{&pvD(slsh&O5`jM>U=DqQRY(|Lh%lAO5f(PJ88SqgThh|j;eS)Q
zrG~FI*N0}4vdbRl!tEDP@UjGlDm@``gW5bKiud?BWi1|t&V_(f27;EF<@WsT;`m-+
ze1GM|%FC6t-&d6@pC9ZUCOIfS8=>A1y4H7RgA*=_WDu{|&+Fz!M#dYbT1!$Z6|!Pm
zMS(}2;DGEMYvEYbFOR%rVT{&VNVnxGIPUfK?S(yq6(6u*QUf92cE0!)_+x*B|66Tf
zbYO;Bnm54=i02G@^RJpCz01g!%Nsx8vVt8X-<e#k40bI;OLnYGCJT>lPTuYmC$d?T
zYwxO_3<0)Dkv_CxZ=9bpfYnG35$5|qd6}#Begd_6kkU<izM`mV;&QWfXG$1BQ!4iM
zk{Ids9g881@!7Gl@N+?eF}LQ?_w}2D4`^7iT*GhxT~P5fgW><tRUQx!T^h#-RWbFl
zH)z8v*F{N(?^A6k7hJ=Le{OFc{BwD9G>}a;zQAcOwCz;p-WaXiIoMl!GaYW!7xGv*
z4~EZX1bad|Id(s!@!6Pr0Ub()6P>iob4eaY51~CNAkxfoe2H#YkFOrWa5A1IebM|%
z{snj&*4oJavSkzn%K2MKXuz8uZk8{V{R&nG-!u-udU}MLg9FIqovP;@`QKNd!NXTE
zi`xmi;3@!*<|t5*!2@-sLA%J{E{`VDH?JN*xfaJCpu;$rikcUT10PrGa|@ad3J%^>
z(R--MwI<LJ=t+qvEsVSqBzyAG#%lM?7L^CK^xqFHY9}_1Vs5eG$Rq;Sh{*~R>+FDg
zzR}crS;uPjUFXur9v~kGvli!PWn=2#Tx#{dYy^c+U-w_VlNqd7kY#Heg<6hGNNz21
zup%=w@*vreN!0cROj@}5kO<nz>1`Ihd_6ggn7nOUGhGTwJI9*tvks4c=I36a!#gLr
z;o%{YwqYCb4^)im?#>Z-Zf6B&yP-Y+%>7e$aVOhFxWgg)ruA%far#~pY}rJQw4{23
zS0`TuC$l5V)gz|9D_(DJ=bhBNc^2h;$E-q{qhKh492cK2u20^YKk%u}J3IfYKUE%g
z1UzaiU6#J8;MU7A+Saak$JIC*UHq;yRx^ETvUh!U@s&f!I~qeowihFyqe1f+Q&j83
zqpcz|-8eZzaJj^hC<yVQb0o}t0huc$<p?hERr3-5^ygH+$relxH<Z-{+ik)yAx$x)
zJtc3^EZ@u^nOW9ec<#A|D2Q$`*kRyD7KX`N9Iu);6It-30R@^BCw+7wa-gv_GMtoF
zA$?oK&&?fhJ9iUP&o7RzKV96F2O57Zh4c4*KQ%4&jSlL%!hITKmgc5e-R2r$DPklj
zBs4<mZKT`X0x$d!T6m(2Hbr%~IQ6IV#wI1Im3ME?KVJb%buZ+W-k*@2N)H2%G4w9z
z9Yqp+IgJXy$P5dvrGikPzPEpn#QhELrF3WrY8=Y4Q#^H`ni-r1vuNhA{H;Gp?NbFq
zGSweJaVU;&7#tQNX0UY(q-36AOzN?F@4{4ovbSU5oGJ_yeB}j@#opiqyAP~39xo_1
z!Uu56g5c3@1IG-;eDG=AIDmIb!AgBJpq=_Gw=wCv+l4=@e5~hR(hxrW!OhoO>+Qmd
zpT6$dSKoxvXAyseq2iGW->24$lJ$3-yd9ayP%F2b9bf3@`0n=8{Yc)0Xk@s|9J4Xa
zcetGzHKOlj0E>~_f&xI6oz)**Q51b|T=Hn^GQZN58jgMQ#r^xdfl1HaO9j)8st0GN
zv6*}#K%Rqo+4NE7;ZO*<il&<EB&GRv>N_z9=eOCw{tHTfeDO9w|Fpsl%sj_;a5(uL
zB`m*_vTbpcTNnk_IpBVu@A^~$X~c1Wl0*O?Gr7(ui(v-P5Sa^I3U72p?Db94372=c
zjCE>;XFjsb2?M|*4BRt9mRgv@UL@&Pglc8I!II>uis;HT3cofm*+vP?GVV2xz`-yb
zEs%Mc6WI2i)}nBz-B4|VoNT;odY`4idv_}0x`)}^#d)uj*Gq|Jjp<~J*>pIWguS&%
zrd3M7yEFd?^UhQ=DmUZH+W*)(swfe|Dr7`X=4r`t>mo%Gk(E5>Y+1*V`OHnj8GlV@
zTQ5w%ntuh}e@)j;Il?N!(S1_BS^Gef<o#UFnHXN}C8HafYLWozN0v8Z^@L@$(qw4+
z<H_?KA!gy$qO$u?i%DInQn=-pa*a2jH3;w){&J+-j_(crbM4nPxOF_@=K<dupLSpF
z1UyQeu|#4NQ9^EGXl&c16KlAih_x`iQd?LnC&U^WOnEyt63^x*SLYY18VkvgA4Bp8
zdr_(lQ2fJYEf)}+X6xeXDY(y}@m&Clj9=+yUEh7wx!6yG#5>HkCeRv)I&$(hIkri3
zJLsE#h?fu3ysGvry;;DggbD+4x?dvawE&0!a~Z-(T*1=CCmlcPfKbB(OK;pdRe%yB
zvuXp0kq?`ds3Z)Mu)yx{Vc*=A$*85L$IoP!fUC+bNg`rx_UET@kk@dkvRlf#%mtQT
zo}3!I_U=Gs&Y*{$%+m6gP8-McQEzD`N)^wiQVobqAJZopTtPN#{vI4Sf}ShkdIS!E
zJ?7Ed_?MXiaqrXu7ER)b1zF}Y6c(i6r}Rmv-rjP-pNPx*jtc(g5#2NG;HYJHbhYv(
zp29Ro8&<nvHuwK&1?bUlsR$mvdiY-<E%c}LV~&s1rV(7a;`1^piki{-;e(PocIHD6
z`!__tGD~rJC?5a(*s1<4lSJa@n(AEJ%?>9DdYB&Nj%w+pU0P%&?Ao3almg(DAZYjY
zC_|yfE_-KV|3gwCzvWRQ$L9>E&Xc9L^;a**Z(}wHuNwZ0`m#%aL??}_8e`Dq374<J
zjTTfPH($lKYkv)QizK&;5-ohmB}n!2$NWmbRQm!U+`UuxxhVA$F?8Wq43%o8seFK$
z#q~P*dX~^mtT==ULtQ`QNg{D#@wxwnl{d}VrE`&moIEepu~ym}JRyQ0+89=kRCwpe
z9qK+f3Z@CtkW6o@hsP3?gu1h-3@ovEuk_#B^q;G51bgZM$bn_nzUdN@FQlE2U{jiN
z?rq0pl?8uvz(HE<UeK`)+u>4sgws?&W0gn2RQ~48^@*l_vP~iR8Kae+(VC~`Q74?%
zihgr1Ch3;>;ZqEgACdoNuacc1b8u*jfnui;J^9Un%>_47?RPJ?x~@Ws(H;YcI0HmV
zu)aJ&k-MzzKV!#SfA=v>%g}mK#&XD8(UXn$<F89UL(u}<Gv{L&JC;>@Yai7c4x#Ru
z>uqT)#9TpnSkm0MaCY|6h{fIMK8SE$hT8UI+HVO>4(C(>PVIDP)tpw1uJSfMM}3HW
zk70^kD!-^AXB}AI^m1$vQz}GhA3Q#(m-J)CFmGHHs~dNGeIIm|kp}1ea+aj#OC0C&
zV$6?`7Cpy|Uv09VE)cjIi8iO{>*Pyal4#;d&&4Az_O{o3Vlvy`Tu-mT@LRritHlAV
z&SQ?=#*KFwfU%CaNo|C_nn8%7>m^wATRp_`C6fYl2v#G|bRc~#hid@Jf3&;}<Q-^z
z;!kP#H{mV<mv)9E#pmpB`^fN~mWYx$dNhQ%?fYVwOMEdPT*KMRyo4w$2sI<4U1)`j
z_jvV#=RUv16TkQvc*)Twf0@Z$VAtqG+<UJaZ&ycr28dTo1kPOz2ds!`5E`gseY$=d
z@<D_CEJZ5G8|!e>m*K77BT|-W@(rAN{L<BmQa=%EJv}>_#0lRQ<IM&u-2@%G>ES~=
zE`->Xf<IhbKEPwhS!=nnzeB>_{Jy$X#IgG|bTG4&9>B2Z6F#wDcJbrT@Aq9VF_wOk
z_;Cg&CvgXKU*Qs}Ub2yFiJg-|&byZOq*0)di|Ue0c3;c_%;JZXkpA$B?`@}3VcZO|
zg2@!Zc<*Q>!WJ3-KKps+;=Mkw<N39ZMY#_R&!akZi<kg;EO?`W{NGGLXu;r6u2Our
zy=SC5jh!n|(w;t{!QMxQa(1MlL{44k$)b1r;LbI5ME=`Coo{3_Ru?B%w;Y&+Y2-A&
zdpo}^;fcZzW;XQTeDU=|+1E$mI(58&$YxeMhh>x`i}Alnq00>u5iFcsU3<Qx;+qDl
zsRPWO?XA6>jSG`M3P0=of&_piBx;YE(@B)|iIW~MKS;)4xKxs&Uh;WyaG_}^mzoEQ
zcLqkF;!$+ymhT2w3DQh=3emM6y&B`AHGpz>F*O&Cr=mr<lH$FX+(f`}&9cxulmUV7
zX+VU1dDnzCqfC4GGxtv=l;q9gEbed|07e3MWBwjjrbE^JuzZKe$Tc-9L8CBZ^s*2I
zuKuP=YxDfQJmogakc2C4EOT#;ZXU3=m=t(CDV(g6D0;g{ERfp+`Ry3_+)f{bUYBAD
z)4NC&)^KM2PxsaXq|&I#Pmv3#InLfc^><vf21=A7NfC~e#$_<`V31HO!0c-!RipsQ
zCbwEkN9|PC**4-bE_CnrdTB<&mM8C|+vS&YA{dP~bjoM}ONOk`yp~`^Wk6;7;-KTc
zhUl8OWiNPr>~34(QLfR+N$LdR8zsT&Glsn%Z8Xj9ArcmQ06*BdxXWC=#51cmwTFp6
z&_gR_y$j(Z9^)VV7R4>aA)w`HJJ_DTkKTdpVx{rjCap)J*8#LK_`QhJa4hvAh+xDf
zDB+Dm{NVzBaDf_%ba8109z@V-=|Me|R^<%YQ$o_dVbh_w`qBV`jhX+c4FuiFHvWaV
zF%N|TK~MU}Xz)IgKZz&9N9kzTbBffEig8Hu>&08^yFS}q3Z;nwospB<jG@CUQiKpv
zUw1n*go<{fc>(FbnYD)(uTnE{7^xUOt}2;N4V8OZFjEq)#25J0YVG<g-^Iu8e4_!$
zZb&!i1<JKBegH%t>T!7#`NTszS5brh+)!_i8ho7vp;bKi#^tb{b!bv6*3@F{=yTRF
z%=a@Yl9P+Owxh+%K%i`-6LgD?s?Sbu%j@_D+3}T;SU{8^X>hqqJLs`6zC&6xJ+i*2
zQ2y4j%<0z!_Vmfe3V&oQdiwvvoEPw8y!knjFroiB=O<Cl&79-0N&3M@Hgg(Vbkp}6
zSPt3vrjqAv^1+(6LYC;cMn;Tf@otu|^_fK8)Dn6gOl7T-!RdB44xX=0cegxNSM^xy
zqV-WPe!clD`CJw<RhX+gyf#;4X4B2xkzo-{kL}HbN<V9Gq-HT!lfAt7V(1BxuG4eU
z0BQKREV^y(UGQ~xqsmvl)roz?K$)qo4$$~C<+l?17iA2gnwmNNe<L06^0H!CxbkV*
zSr2{cR7*lkzx@~?lP=-#gYCYNWmZ6^Cif}il-!&7cMm6zE{T&|JZa5d8q^#$Y`{VX
z)cNbnju%W@5r*<#vpJ-4SrJa)x_3<=);PIxB}Np6zua=Lod7N8X(ViH{qi0VF1o|P
z)UoQZX$toH^fJtOFY0*r5w#z<DFk>AbZve~PQU@Mm5(d<n!-ms{1rYLj0eP1xPoH*
zv$s$+*>44hk|LG4*-pGeD-xZ*eS3wr435|RF>P<FccHe3zeJ9{^brolKeC0?67qDM
zSra=xs+@#nxHUieT57fTx|C=08;jj+M>$<zPQHF*71^7MFN=?L4LtAJKMwV~rWwu=
zL1XOMP{JTC!Uc~MrS7p1!rA#NW=spiygEc;m9_#xNHfFk^S$k<uJ6_DjhV~v1m(6l
z!GGX%wkCKwoUHEYgM;};QD%%?97&#gWq>z+;h<MmpIjshwr;g+7a(TVBbSI567K|y
zf?|&ePetQsv2q)yC?f|VSFhMSV(3gu{HPgSaV@tRi~t%tNZku9GM{GmxfN`u-|q3?
z>4st*G#3IE>{R7J=lUD`+Xdb4<>^M(_x}toVweW^<4+>U)3@cZ*lNe$^V7>t6}dML
zLru)Q;)5ZUECGPL{D*|CENBJH!>CO5b0EpRDDI&$>FeVRVPR+UFn89GKkPfZGXR*+
z-708?hCVrp6U%=S>K4sO7~aog#*w3V<k{Ex$F@ORZ~cDce)jEx-CDd+z<3l-FZQn`
z)c!DY&vljTeyCwMD?4gwYONi^P~?!6Z@bL;@~{xSRLn~MSm>H6H-(KrP2gNh?a_pp
zjJ-OR)p)+AWqYxVBWlLY-Q|Lo&g#qO#UQhE8Dfe&<O$A7Qj;A3yILcWp9;oMnk`vY
zc`@1b<;n3ewr9Hc|00Es=#mum%a;VzjSgwt3=(mK!qBRF;DPc(Cl9mgfz5(WuHkU-
zMG^Vg+SwRyznUkep-)9H$!cfl9TE0RP_@kM>SBfM95Rv~q6C!~%-I*^xg5SK^^8Sw
z%3zr4&F72#<c4C&eqa4Me@dlC-}r|(&C|YwG>{#YZ-{VO&@!uU8y0FJ$WWzTu44U8
z0A3o%Z_Nro${e;wi!sO>6QJ;5Y#|0U&|Hh~RI?BjbyJjTRGelN2z&U{p`XeuT~B}H
z1+*GhV*U|lR)(YH#Ec`~>+azri#j{HqA@8D>?zazkgNh~%kckk=;8ZYyOIX}=~K;=
zJ{5nec)2|H{Lb`w1S)2wo=!JFKu9?i)UynKJ_7BBJd^-Y4d680adKK&N;gf(0wSSr
z>9kfAk-5sM8J=TTp~z5@8jOEDd4DZGs?YH!UH+&;FrIqSmDS?hiimK5kscSO!4CIW
zQNkJl`fxwI3Ip=p!@U_^8)`8me`d0C*>$0n78v?0GsI+4MUi@b{xP9Z5mXo!^B3{d
zPKNxPzQ09%3>mr}sAYEL$Yo~M8+FoaX+mlge#KuYs89BG_nsN`TGz+IkLX0nhz{qt
zVw$v8)Z{`f(km4gRxv^xkCWkUxS6I*X1bziDr&g@XxV5u$cl;ldc!uS@*^%cJf?an
z8F(_iDJCfGDZ|!?xe$x2&jrdhTr+W~o@u6gae!FfXX#QyR?DYwR`fRn7YH83CBE%g
zHA@eIC)X?lVZRHueOePVVX3*3?~FfT{rvuNm7pUwF$X76%3=rj7+swyD32$Py;5Ga
zb8pREQ#cZVj@uug9tvH5%-^F(A`o;3nlA4b^V@fe2iuE3%5`V6ha1$(|MV}CSxt|n
zjoRfzoL?8B9r0x67aSf;cW1M$?P>EH5eFzv;j75>+1C^k5|UxDm8NwzegFguY@p8?
zq83WTX+N%&TKfIckp6=BGFI~%4oOEIJle_)I|LH>i9D)rj&b`;KhCa53bcI(MrcN&
zJrzVTo^OBg@w5Bw*!1p&I42m)VA~@Gzskcjf>P}b)mX$EY&_V>EZ?3pOOH8Rl$*fH
z!xxy>`^)4ya;c3QY-PdyC8VnTY)ariso>^@VkDEu6^rCKEltwTV1cPoaZCGKqBU*x
zsWqapep$SA?&^+9y)DZj)5(&4<YdQR<uYL-NjTb0vzLwvODBnLuWq<3?}O}L7ZK!H
zJwK7m+s8(@5t4NaFsxE_ygwSg)Dnlub4EgSsy$xaMXP}z<KEil_Rsm-x>=jaX}=S$
z)5fpK2-n_>GeQ%?oXA`7MS04@5dmfju!?2@BG%o1xHXSOJc9^1rakm#;h(M6tNEvs
zFmJw*WAFTLMh*tBy8HV6WjPK5r!Be10Nt7Pluptz?|V0Vx!B1xmT+&1bO|q0bVRTB
z1j<sBiA42{PdsM=iw_hnkH%{#m_HORpo}%c_|)BJgBLXjYEa*DHe+f=b~J6iz1_b?
z&((*AKsdyAg<rRKd@M#=I3&a0A3lxbLjuCt!K=QK<$7h7KiiJ`vC%h#b1#a7ftQ{r
zX)ld`p=a3NV+&^>z$5E-dnp>%_XeIB71!;{)Ar=_V1yMS<z)<eA}KnPenPT*$j_8K
z?}mYtblGtKLwVo{l!`Rh1#%flyAk@}l60DVqxju&jp2YlBzXHjzbO;HD#tmohoz1a
zzf#K0LA4<?{?{}g9u)bpL=XQ63Bo_0kr;J=R}act1qAB<)AiZjv%})1OOs%a#`GL1
zTioO;Vq#vLU_iD9CwZ7%1d)hG@`lA#nt_U}!8WT$7b9bUsGky`R{Y5l2r<)7>t7{q
zz6NzS&FPDq2kQ?C3uS4bN(0tt#h8-KbLa<CI5H{f^4g_0?`eOD4n$WQH`kZ9OxUEv
zy+wJfbr#3+3J5@l<%BpQGM(0pjRsh&*fzk=lZYu61A0_6%hWu=?wV(m)U8o|O_kIo
z1zykXm`+=U%6cMSoiLaB868f>cRC3H>qbjd4`JZKloF2?hDBs;?%V0YAz)Ty5(T9D
zI@*IQQJ+OKSm$z*@4H{ZSdV}UdK+B)-yz<{V1nq&ELPc{I*Nj47OUEOECqqbl6^gE
zx>18|Q+?PCS)iGH3sb5Kc9iohr}!f}jy2A~>8$vfP7>#+1*7Osg`0gf&qa0~P?{6=
zj>_X3a<Jveexlg=1NbY*RA<-{K?zzrJeZS&rcTBF>DTkc_mj(-z2owUTlTirH*=56
zm@YoIpTYq$qau_}cpT}nPmM3=!8toKyd5?<h52!JqK;a%lf*v7f8c)S7SHg%O5=%(
z7fS_sqg0d%#9UK|Yup1K!L^DuAC%|2{n_3|s#me<!K=*VynxNqDTPXn1E?Je+l_lu
z-cC=4DKpn~nYj+xlYyIJ=7hH;FE3K?Qq?p>IDO{aTK6H8E?}BC$Je1K1Y_5vDFK;O
z7UyF^qksL1T&0F&HuT2lXuOgpm}@2;G{I~GaCD7F8J4z_esOAc4xd#O_?G&&m&^;0
ztz29xTY8WRw{Iptto+b@6pZNk>HPZL{Ms+BBK}H7{xTAkvZPhD+~;yD#ZH2JHeT(m
z26GtfynuZ;WP;wt6O;%`+CJRUwZ9Q?yq?FF2F5BGLFBPMSRqkzg5cWX><6OyHOnUo
zB3%OgM69I*mBPXO5>(bidFVMXN1%LyujUg{0^xrtRF;K)n!*XxvtqG3)~+G6GGVOD
zh@RKv8Cz2F(TPd#&)$Bh`|7Ehz|_341@Z8aHGL}Cg614<{I+yjr9FD+!v2+ALnF>d
zOHy`kKZ>n_1^NF)Q?Uhjp(vI)u<qg8z@P(!$Rzq0LUnwGw)Ayz`#yt-D>B!un%p{}
z^v!#Qst;`gmSJ$ikm_RzuclY!>&ZL(+-(vJJdC#1O->TjN-gU?uXwP_+mnyu<7J5C
zgFVoagWR5)unYABLC$d$V`Bcr=T;zQdFFbC3#(x~caB7b9x{&rGVdntNwTkvTPFlc
zVzZDhzW!kM7AHc&Pu9}%<(E;5VcALsSEIS0^@VM74xPLjx}!?9xLv8BbMIxT3=T1M
zx1{wQRGJz{8K9=17p@Sm201Vj`y^{pH7^|$JqAiDHxCYOulm<F*C_EIpX!eUbr`q9
zSAi(W>eVbXYAM3HR~v_+f^Ooj?Y){D?yc_~_~$4Q-1FMZhwGP{9x!?SurLT5uWw@Y
z=&VjnEtbpIC$bFKo(ipYgd-TyIqRNGNqWkc{*<W#fBj<GUqSSL^FexMa&y`@Z;6Gt
zoa_^HyF8()km(P^rLL~WyRu2_D_|gl9bC{_ENwIi)1*GgIRiBG6TFk={rxCsT58Nw
z%D=Z^c+bxuVeCauqwuJo(sUQ<zeRkTPiznWyTtm_Ftu}Wah|TPktbLhF^Q&MTyCWx
zz!{Kwado$}VQrzEn5pb~{+1{=LF@_zEqDEB%VoCm!7Vt*Zf(ti?OxMbo-Oi_G=r$@
zL#nS`JbOCiKq3(XHTN@@_g>8gI)WeVn8|7~`Q`NX4{P4Gis)~4qca0=wtGS%@`Ha_
z;-KaVn^$EQ55X~!r}jx-8mFXjO21b@BnIn9Ge4j~At1Y%^%J4Onhc^Swzpr7ptJg(
zE}8B7B0ljbp`*&0Ryn442rHM{hZJ(=3-k3p1ZkP<1f8uNtJx_L-8m|4ocG;R7(nWP
zLdkI+VdC)Q^=r`Rf~Zqu(3bJ{eC2ufjy6i@w_N8a(@Tr<7D7TZVM7k~B(dJ+zN2%q
z9EQ?OwuLSrtVQH{;)_W>h?zTf3beJ4TbtwR9XPRn;0aOuRM0X#?5?1<-wr82lukuO
zrXc^?qSf8<izg{X*5;rj*4=*ftdY!+knHv5gToBLiU?m}Yc6BJf;~)E4$9-#_QM))
zEsE$-$uw*1p-zdq*Zy8Y4v>)x7PkFS>asoa>!AvEd>W!pKqEKbp4^sFvU-mu2#VLs
z3|sqy=N6*kWY1y#ha{*FOA93Wov%yw$sL{a&dVAA+DgtkQ*0Lp-kbkddp3#M*U+u)
zFO?n)?dKWQVza%N8=jC><$oX(5@q!>DV2P%1K!qj&s<9!q%EQg&XZaRtaM1ao`l=D
z-p9A@!&+ip>a82kA?lmHkKEwJq}5xM0a*AKn?$p<&AzQEwE~Dgf<%`^k{UQhU>ibq
z^2ddFrps+k7>fxm3KTQ@r2M3~x>}QVUKN-zMKW(;u>9>3GTwLcVuy#(j;o$6O)OHB
zCG-jcesY;8duWOY_WtL;0xR(=zkTnMr+zn)gj#p1VuRCZH);>ch!Y`{&~(sD%Wo^;
zoCvL#X?@YLT`0Kw<9?{}l^&sAT@=e?PTorhP8Sz}x~pN3=^)106TNOx*xJKtX(>Vd
z*C1iJhd)Ywe-0NTpVBsVm$tF%PWqCUX@tyVKN9p4dNvowf|=q$>T~9@(c?v{x$@yV
z)#BOUt<4$lUKo@c`XEYxVmBm{cG@p)^<b3o^fU90mXBMJ;^E}r*R5IwmtKatfF0=_
zlkLe0?Tq%z$lGfVnZ#;m4EEE7NL;f>*)=0Y8&ZVYB!-yg{kgH!G0v^D(AZ>B3@ok%
zQE3BMCh2QaA!7sQ)sCK)Ul3^L%MNu*obxEfR|(IaxBXT)@9#3V>%%v?x845uf&ewU
zWCl(rA8y~j1tT2asznz9gYGw5eJL5c%2&TliPD2@otuq?XiR~QuP8?@pEr)Xl4RIF
zSN)O-e}t}ckig5z88(cE<)rR~KQ@b<%cG2{Dvc7cTp1Da&Cf-=2vB(Y&cF;HbqEfe
zzT(n#hD+M41N@mS><-rOQKQtT!jKlSWUuG>6_2>~e*uL?G9Er7uH>u%K^u3A+DR~6
zujKGik}NK{P#!0M+qWy$uRnB0@VCA7^_k<4z?OX~pwsxOG;5_#9U$c#)hGGg{>@#d
zx$7%s-e$iWhq$v$+)|MxqW%G%SGP-nxK?@Mr98p^OWK_*$8~LKf_@brMd+Gc@QR(9
z9F+rbf*{ddH~>nVIRTJ_2m%Z=l*qR$t3g=Ks~#XL2VqfWIZCTZj_Uh&bNqm$A|kUa
z^M)jc`)T%Gdo}<1*IM-%(s?n=8m%l8>3y_gEzc9=0EN4nj*1fUOe|*63AYQh)ydku
zS52DJLtiS7Y~9rvGNehw+a64<iktM*%XK=ZG=IpIIVjWf^SP*zB=ihrs%>7JUHqOA
zDSB6@g-|;$CJH}F0DrZB+gJMSom!j++Qb(O-PxSc46>#8Qq22@B<f}o(8zzKG26h1
z4D&Oulk7EYUiN%hNM6$?{z3{2lj9{p77ACpoWaK)CnSxl-&WQfJ)xp&G0#vM{ZU4)
z|Jtst>ZM#xl)*yWh%2p|IRugFxK2K$wnB1vFD4#Z6L&9=0hsJef1Uo)=%i^u{7@oy
zabbi&nrb(8vZr<R)sLx={B!|ciV}aMx<&DMdI6?^Ih5t<)Hv2<SOGXG8-N@3j~bjb
zDG{KR4#|s^qRD%5NBAwN34xhi9A^%2Qq8>xTMbuH^H=YdI$(g2hNG|9Umfb;{Jzs6
zrw(JpS0U8N1X;>=OOuj5rl#B(-iWGB-ijl5^C|D8=>d#JG-Oud*mdMmF!9<e$hH*6
zm+l@8y`BZBUs+A}3qM*6-Z?}McKpY3dZlwFaaNmVNt?D{Z0BQLpS;AO%RK++kr&j{
zfyd?!x7CxY&})BT2aqDcRn<ciElFo{0G#dO?$v2Ef6d?9vC>ejxYlT|`1!0%#6za>
z{*R@Q`Nr^|4}tsx6?|FL12n-=o=rEZ+RNO5rtA&eL9oFi`yw+Wro~FWbwKl^eUE7f
zEVw`s?qAGC2uI!~VZzaB4G?|^zst-rpDi8NazDO)G%%zH6mJF^AAVSV@Ull)fAV6u
znP=vd*D$*?J^_u*bbx^%5`pqd1GZ{ypmpufpfjdd;|kF{jodxi#pLBxDaXvhm8=__
z?#*>z6kg-HYGTh-5P{-L>%lNcCow3U3&MJ{ON&Wq@H1rl928BT3KKGWc4%`F+BiV9
z%^cs%@;4OOBgqaR|D67=3NsP)IEMDqbnH>7pFzZ*Yus$v0=NAMOh*$|F%jX&3f%kc
z-q}6FwpVBly#vte)X`HdH=pUgwDVl9$4ttfm$2~N0hSy7?k%+nmUu)0RCx-|tj|U^
z_ACOc8HcUIEX65J-=H5QLjIVXM#OA5<-5somicWc2Ud*+BVrb3r=j_ud?gK0V~8Ef
zVUGio>KV*oWEfe#<aJfFw@uLmgctbY^z)}^XJdOsSsiD)!+wt6`+Y9^SGqVs@j)SK
zXOGbIfi@*n)J<xLGd*?Gd&HBh=i`FzGqAxy&&5)X#+VWWoGFx%>!D(1alN9)g0{h`
z*`3!T&4(}bLDa<Yl6hN%!yw*DEF-2UK8#Pw=nSi?SXGoog%0vZdDWr?&H7~42K8A7
zXXSUC1Bieqy9-x|aKKn-<fSFbovS&dFANrB<gLB%DgW|~avz+H%==wcm?xx*vdfG2
z9r94pvAgM(F)Uqq1ss)h7Bpl7cj`4K{?rS77W=n%<fYCv6Twd|_C1;*T6WAI;I&RQ
zvEs(=$9*X|%oZ~mMLaJ>xVaZDO$L>orKP=4!VR?B6aFWIdCb(CGBhp)^aB`kovYL`
z2nAEzsV-G}wM?K+#77=ombhr;5QSFYaP8^nj^172?D|Ud-kq?r5v2ArcX)HeLbg3x
za4lY)hB8!63gsY@-Dc)aNVWHy7S1;Vupc&JsflgRH1y_n_4|@%`(8G+9POEt9b`6!
zxHKuEo5jfu@a<hZnVXxOpe9LK>J+mlKA>QXsx>(`jT4t(e5rfMQfITcb3eI0cW#*_
z@wv-5AW!fOC=_Z91I*~0w!2)l(h2Ns=^Qz%tQlRq<(hVlR#0$2VWM!3SgOm1WDuKG
zcU~J{Q*90faa`GNKk_NT(i+sK*qu!QYkf{P`G^BeA^kOoB|plSxB0crk8PO^*9i7A
zc>xUL7m9SNTj>RP?0YI_!}8h(`NXmJe90rw0un^Bd^gtvHiJi*w5}~OW?p9NcU#(D
z9Uiefu`N@Wy>$FnPd{INSX`_40&_IQoTf76gO^F9)x$>Fx$Kk^lu};MM7`JjG>&_|
zPsLxKz8k%6t`1+V{T@&l@>b16q#5zX-fBMtq^<ahl4F&Nn%?BRl%!rtkx}R50N%Jg
zaH_Wp0IRv0Rc|l^o-$?Z-2{cxg?CB8uPrh{fg0l@TRsgOvUnPgiZsGy**c5h78Q^l
zwS1uY<}a=^f@ot7YI0E+$hQrB;{D3m!RTF`$MC1-YgrcOpnFD)19*vyMYXj!0$=j+
z#ARsQ==8xw8EsE-Y&<6kh%?Q?MU`B;@E|gjCn%oPEMX)K@oV=32Zta(=-7iNclZ@Z
zl(fW{n%UpY{04(EKK)@$hTBM#Amm!x69^|-Pk@|KYgoeXA0{soe}0mDZBBk_V0rmp
zf9&>IiOct!#cFls?VkF-UcQx3F;53Eor`jn0S2`kI_&_P>}dy2W;E_$<9IpAmmW0n
z1JV)lV>Y2WVuKb+Qe-Qbl|6pfL?!$1Wgcwr=peyMl^ysTk7=QsC_XsBx&A;s-cb;p
z=4^TEdnl!{&j%@RSKeR(M(t=gqC_6>)@o<N=qJ01-m-o68T3Pkf7JV7u7iNEr^bU?
zth`NJ*y=NU-7#uk54q9+5Pchfipg}24i)cp`WZ@R+k4Ea+dR^)AW$N5QenUxO9&x!
zC$AL-czj6^exZzEV8rF0_Jf*ZSQK@me$m&;`0{A(-dh@whA_kJ!U~vla8>f2vD<9_
zRUJI!4coMn_JsKgX8i5j%Xi6eFDLAJM!v+`^nU!KYX!?7J}O84s&~Lk3EiorFT|1r
zjM6G;vH!(K4&fO5$-3HVr*l#}Z18WdFvZ$?O};y)uNo3uE4xp$a~vGTbZu@yuta{?
zT7L)ycr!Kgb?1vkQcZGzDv0$<3Z^<8eB}q;i0!yKU5Ta`P!qEkc@-a{+lN?*wq{p-
zbX`h$-G1)MxJc~d3vJ$@n~KVhRq8j&(J0m*ee4|mrhGHTq_uI0#SmLG23cQ#YK1hJ
zb9tQxxgYNb>lvm&IaU$KWso%}lQc_M@|HF~NG_AN)vMb#9GZG?zi0Kn-I7%pZlz8x
z<7GBKY5!E1($5<;^B@`P#R<VJ@6jLGpr4BFb`4`0ot=bILvDKcwAB?5bj!)agyRTE
z8*n5*5(?0HB{fDBihe)2dUsPZMDx8Q)JV_$)FZ%gxG~dDoD=`t<fg@uQWf7R2;w1V
zROQR4&Qrm0dcrZ_7U_zdY9aqL+v>Nltk2#~<TqKpb^|8m@_pX1VVPYUX1{1_ooF?i
zE$16lSTYce#N*GrVsWJo!OIBOGfO{N8i(>)%OLOs>^jkF*%1&;mi=S)d8t7FdOO<z
z_%$&q@kMY*Q^3<c+=;Iz>KlWcax)pCWQIayEf2<naOC2`r^7+<ebY3k{xLs*oo;_^
zeK$ifThBA1-?FlMbj<O+$wFOFiHR6rNd1~d;51O_gVPK;hl`niyZErsNvAQH3(<Hj
zqD7Au*tNaIaPXHq2k_v29ruwKL#XJ<JFR29x>(&+!(ED)yK;~bPN&HhvRC7i20>>%
z1kQZ8sUcaP7bpI$!7-+37(#RJKRTw*O+>UOuELkki!3!^lJ&!bFReu~iR+-I=HEm1
z=5Me$7J$@^cvG#_oeKkRfk*-JqNhstKmTQ2PWZT=5`;T07Y-QRUymK=Iz<j#N(znK
zct5B9xH{gtsiHX7q2$6U0M!@u=1-HjvDs;`>7^>ai;phCY7Jp(3|5RZe?b7S_)9x(
zXk((d-HXq+L$F~EBE$%PK2hWD<w+6sv_}Ln0|^u0)=+E^=H?3|gkw?vWKow|q&We4
zn!te9x8eH<fb~!0sS3QOh>De@@gqT4JKBXL4Gcm-x#34oJQFQ0Ac-8@Ec&3<wwyWb
zaZ1kg^BmF-<-?FnCH-HsOT`pHev2g%Q=KOaY3}qR#7MEszommTh6r8r_>Kz7Jy17x
zE|DqEziJGVzlMuH-3jlgQ~H0%NWfyF&(EOe(}kQ{S#n=iJic-Vs)^%}9N+n;*OjVQ
z-CLY+OR45=BLvWf6ghHH<8`LusBBP*OOF>dIniak=EuZMk%x&(Apuh4^<N#^l1ORw
zM@wF|uP5_%`2pW!dB-p%;>f4nFO+&=$Rzw+Vl;^bo*r-dWZ7a|g0XOZGbz)cl{~8n
z%l@TGb5={(U#QZytC-EsdaM#8{NUp5?7ooCT{=-^4}x6vqY4XZfdncFA8B>Igugz-
zABb-b<6XO4qzZI;{ef&0KjD55$s?1t6Q)MVKWpvr?6OjhZ~p;G^6pde`>jt^o+o<!
zl15vh-9w?Q2iqK$G+RiVf0f2tO|3uDiIN}A=(vzOdqNST49(N^{ZZfmvxOo9Y<gw*
zfXkX$2CjQ@d3OF5AXC@MJKB|Gn&Q}I+lM4#(f>;YT^2-HwzN-aT(CI5msj5nJnAYx
zN_5WlwyO<o#*<8n>32QL5K4T{GHod4;U_a49~b9uFRPGW2q=IAA84ja5vY;l@tooR
zB4rT)zemMTi|5P6AmRMe?HSWQk~9A?6QU+I$?{NqZdWXY=tEt{@Xn9ztGVx+QR(#{
z1k|mzV=<~BD+#RajD!{Sf7eqDOMplw`XQa1>VO(P5|g?fda6v;U_1X*6CO%*z1kA<
zhCs(8LOQKM)j52l(tm*8lXt2(UcFd|rBhv=u0`riyHa3{5+Z|PiDW@M#PEVCj_b(S
z`p(F8v3BX1vGwVL+~pt|<<r7-=IP2Cb$!QWb&@(P(BNw!!iQ$@MPuff7Q)Ah-mr2s
z1$i#H8}n0eCjS?IoW{CIkP`m!)k$2jS^wTuv-uhrAt&lZFSlO(tty47+f*#IIMD#P
z!Dg|zOZQC-hKh0eJE#T4A?!3h&Ru|{d36|$yyBp330RC_!eT0=0&Uy42BMjR{nLZE
zBVC{$vOrWY2q6-8y%3jlTAOkZ`*wS-D7;jQ6(8#WM#D>TpIjkZ#rYhef|xO%#yVSV
z44huwvR{MS)P$H_3!K?dHf*@#j%ho3izsy7-{pE9?C!}LZEbB%wx@^tyY8S|%>vZ+
zf=h;5>r;()L*g&Q^D9Dx;ki@Ir4eP=IJ%o@RB1ZjxR!DHW#gl~29Ky#Uvpp5`DUsM
zaT$pOq%CB&sYChdL)<W>VW(GpRpA#$y9c}bBXJk9uWqld)H<gDD0Gt;Y)#-5_kI2p
zIw&VgfGG46JJb>hj4?Uoy{Cthsp%o+w5o8*w*%KL_&U|<s-uFiEEEHj`Q%)8xphcg
zi8jiEWs>S7=|ZFDE2xrG;P;cq57txBB+8Ay9-X;7cNsUPaC2)mt2!X70@P~s-p(ci
zg<sTnFO5=pl?-1!>b%>ckzuA3!)QNJa~B465q)bH(#R+W?=}=@yxbD)3{TeC92leZ
z(3F@XN$czhiA^9Uy~+g{Lbi_!-Y(4~>_*AC!~ZH<*U)Db<xq!N?#JI1$98o(7%$<6
zz-jl*?PrI=jcJo+p}CpSfQ79#Kp(Xhx@0?=nesk`k>MFrUf~%J3PRlVu2hf^^@|U)
z=Du1-0E9&3tWJBbmQxhwtY$4zXXht{Cr=#TtAOFJGdF)Y@0hNW_3gDpv$+_&0kj2z
z@_&#~O2<|M@wB(C+Dng&LM09I%u`L%ujO~f$ukMA&i|c!H{H_>WPk53{l`Ct3CLM=
zuY?n2KvVpYs-&A0in)G5=mWP@*_&@QgZ(pSV()KHqG(F9vi9(40%JH^fbu);b@NSl
zM2}=Q!s#76Xe~m4-$hri357@EZ8Zd=lTG__c6;nelNcN}6*H15)Jq0aMSkm#{scUP
z^GnY=n4z*mKTh7f`?w7D-r+%&aNwt4=_BX1XS0VohH}}5KeMgMh(tc^kOUgX%_7ts
zpBhc(of`khEfeAk@Mpj7?yPeo7x&^)`1~gt<?pvj9`p~==^wwz&r0~5=R_wcfm(7b
z)#@}cUk<<VCFz!L&d~YcCmz$$?$$izOg;advT4YE%_D7&`wvB+v`zE)9Sv+`<)$1k
zIDejexWdN_h}WEYU>zg#E5PL{?);d?l3XSye`u-Fc7&Tc-(K6JqT>GY7ro?>gyZEa
zeyEpk=z&(E$nzk5%61%Agfa5;N-HWO@1x%(;Rs`Tzod_MdcTC*H^AYH=GJNO7OHX?
zeal0eBMTEuGr-f9X5vK3^bUP|vpK92b$^v`xj`zzo<cq>iXv`gip(v_M{mGm>bVp@
z{k|*S)wAn&w;#R;r|aOF0^q$(b9_tTCt>RY^gudB@mv`RS*zIn5%*6R^7r+xiY9)P
zjQVABNBP$9jDsEhiKjO-#agPZl*;l^_NHh?EjK9o|2cjsR|4amPv#((mg?E+NM9-J
z@f=wdj@WE*{Yea03b~3_70wsTRJWqCs7*WNQX7j@>XjxW((v-$W&~C@%-SyJskDm&
z7q++N(QeD_a>^=nuDqSCKw;ALdC4Q}PVD&HR^ZJ$-<-4yEAIHEG<d3=VeTrHp8(}+
zvV^Bs7N+~FL=Y<_45OsG0;vrtsh=TRA>65`gDEZ58MWXjq_2qF+4)(&wZ!t`eDTMp
zn%n9}F{BwRhIEy<^SaB24hwc$+0$idCyRWC*LvrSZDEB)6x}EdSM^UaXelRnh(4dr
z*Ox;C_1l!v#Om47cXjGVDh$NONgq)PuTB=?HjCZQpqW8be$Lm?rA+86G_m?dBDcgF
zug`AEq3sb`GQV4AD+OYhoqW`Mx<?)=`EDFe1wFy`^0ef+G&p6|&@6O_9iie||F9ov
z?m^@~@Kx))Zx)D$oHynVo-WRbK~uJ2+1{qKw&bG+#DNM73(8chE+q3{2eQmapGh>I
zy#CGqv4Z8Hel(|LK%{}&=cL~cX^LESNQ62BKloxNW_J?OQpxH|Ed~A&!ubhwAv+V@
za&IY(SjuueGiP&me<RyneQ}Q^9r$wCyFqx<^nezg%u^PWebcD<Cr{wn9$+?>VN<;s
z69z7C4YxPg;Oon~dT&_>l0DF;qxLn}wL9rRg_LHq{iNJN`~U@-ZLQC>W*ED{>2h_T
z)&^z9SdB6-r%%$1et?P{XvUg^N+<gHP!w^Ha)<d|fs?=_jQ_#&zIX<}?j~Ny1!%fo
z0gPH*8SkVQ=U6s&?j0EF$k92;=`x?eg-d#urfHo|i+L^aky`+1F0aB82~_|pA12r3
zhk`I~gY@5&f6MfqjxTewd53fLSyQVqKwEd1qaG2J4ITFrwUFbMd7W)gj~7TcuBR`S
zza9t2X#&S!pPpFmT8==(&fXbc-s?eqLrk5k2ZV2OE7~7+;E^d{xJifGn;x+n=bs&Z
zjw?dXoqSh|RU0BN#8d>n5y4O0T@0|t{ZZ(o{`;nG{YZ+7W#>yRH9~fW^SpMxu=(W$
zY2!Mrr~NMNNl4A^d>z^N=;e!Y3weF4wYBG~4%+BF^vF}=n1Wx#>mqr#OQqjjubiA3
zrhoSVeeJsC{>Wy?1UFm^dmC#;O-C&ZFC{1O+*oO}>cM>ET?2E+Ns~z;5;$KHt84X0
z!8e6>I*XMg7UvzIxSNlZU&nA*;tqvKcxXrnC~m7*$;Op1r927FSUR!+Cx@NO^7-2O
z+3AB5ini_T<h!%PF<G0A!?t%$o|A|>>Cc%O>R)f5t}aAPo@v#no=O^&_x8k?D(`P<
zzk&J9sXlOt^`un8Q9KrB08gta#bLmOO0tm0Sr$#7I?>{TM(1uyNnF4yiS8LCry8lU
zy?0RI{`{}Vai-pXS=w0!-p_w&U+fUja&-m#^G__mSjzQWdXOo1n}5HvfEgE?YN|$L
z9*$^emqY%i8Gy&OJAJb})750h&Q>#`&!=!_8imK-u_XO?JfxEHuC+U%x>mJtLe+~F
z0HxB>p6M=Dz{8?q%%S+1M4`0?XRE<ejA%%#h4(F&&PAIZOVI%9m-cG(@|c-va^9H|
zElfp0WSXPMJv&}Nu|b1#VghI-MbAHeT715%w!=;t*rm03i74B#oB}z|&u*`m5x~+?
zO40-~)sXF-(zyXwX6Pt;?W+%XrW9s^9B)EE3!^1yJwT{G@(<j%GI*n$v8kS!SB2U`
z@XLsTcy1!umCK8jIhG97e0j@ZQA#MND<Kh>FA>-Yoay8in%U3Ds`sZcht~d{OBza8
z#}Cn&A)P1GHqv2&Rz*qNM=n^E(11*dBpTv4gqj}eesY6LO59c+Pgf2cIdj9*jHx8-
zkxrC{V0<g@PTVCCo_O)@D&?;QCHXTf?lJaj{0%g|9PUzVG5uQ;EK|RkOcTZvJ$Aa-
z4{;I_<zC$UQK1sXF6iv-AFG!wzEx`$==(weZu0nY?^SJ$vDjp=%BD4ceHoQLCKB`Q
z>Hfh=xb0ssV;_*BO&lp%ocFYu^Z!=D7A>$mKNx0Zq#ea@2YTvVr#Dj7z`)-0V#b~8
zbUhZbX$+A9ax4CEA&EPF)hAPFXBk9|cg}n0)zQ4wtK3IVD{Ky#FQ>f*8%x5+vVdEl
zruyiFF4Dzdy6w&yhotOY(2f~!Tx4cQkEP4$)P%pQH{PHfrmiV%Z7I8S5}B&djAI#?
zoN=evj1fCnn1*7EQx3*iV&C$@A|nX#HtNEa&27e#vTlW0ybVINxjpTY?oZ?0lM7J|
ze{gU9w1F$l1y8AgBIT?Fq1lwr_f$>Zd37bCZZyl@Nz&^>LjX^&qM=hw^m|x9V+l`+
zZ+8A!bj{E_)2GXU-_fZ_fURfn$VD$}L^9PCl$+|xt#|U~JV{5xJA-Z=-0B-we%K!C
zhfGM<X!fIedU7?iReGr0yuY-6${d%zYTfSdAIzm*ZDk-^zK<O7lgndDOp%QdllU?R
zir?eEXQw!C2S>%NuDDqFj8fV?IG9elbC4Q*s7pYLBUCgQ#L%m-^NUIs%5rhkG8|J&
zR;qXh$g#1u0KKDw)d@u9yPBGv{FVaMmajOju1d^yxvvPvN~}1pO~}~-rLyzWbJSj@
zwmEP5#(qDM@pyOd>b8BBpL32jZEiDk%^>?j_(p4ISH|KjRS8I^ku{P2+U=Ro&1|83
z<9>k{?~Ee}y8Vv%OQmd6vP~N)RGJ)~+wA^v-<)>cxbiCTLx8kLOOLG`jP46GG5&f-
zUB*Zl5v0D*#<a;;b!Hoc8>bk2uf>G(9jB=K3ezB)W&Jy`-TIW8nKaTXWVS6k*kDt5
z8}IPqmK3w%zgM7WB)(6|+~E4R>k7YE*p$`pgfTpC$k%}6b^Df@pM%-%{&cCL@P{3m
zz0F@z_C7PqWO}f<yEAfRvXyMr=HG?T4O&p6<W_N6Q#h<GK^T?8sZW=k@13HP(<h@0
z{$ru|dMr<a{X2?~zK;hlW;+MJPB#7P*G^FG&sk<CD@YXxtLsqCO>I3Gjn+4=htwT0
zN~u|F?FxeLYb}-wcvE$Ep1#|#@X<E+H@CKSC)?8lt2EXZn+MY^;H;%yp(03t0uZ*h
z+_Q?=FSc=L^Vr-H&kYPF`P}l!sw?D&j}m)7+1+z=1rDDy3ORXa{^6(F&-{bZVaKRS
zT)TXi+YVzXb0YV`q`1~F5*e?j_`hp<Qx0}m{UQg6rJ9i*z|zL$5@&V^Z5`PA0-!ff
z&p$8HUA<L_sfCnxobPlFUzewyIOe6eXz;%juHtHL6jms`%IE779vuplJf~Z7?QX|x
z29puEITvraUggNS;9H5fkWin$u>{$D=eaakbJdzG!DW^G;504m(Eu8zLyJ*}A7c8q
zE@j_}$*UyZR;lBOg!uTmNq7SQn1NKP#EN69Vg7EM3NXXCE3jd)m$e^IQ+R-B>?>>w
zO1wu{k6}|gVR>f>I&tn=bE8oO`45lj#I=J^0J_Tn-+6lWPHJioPxSrb7zzY<ICtT4
zK*(;=-Rz{MY^4R@)<3pcO06qS%iBE`mkp1dD*x`j3ugs5|8#q&Iv*`UrN{i11lAh(
zB~CCTpsc&7M!|J3@Oo%lsz(1K`asQ9O-psFl*+{#!`03ey3E`xo6fAJ9J7{NC}rp8
z*5q(&tP-hZS*E(K{!VdxA<qK*P34f<LEV13#p!*UfAvf!%4n|7a!_=n;Qps|N8Jz~
za25h_UT_u;?>)cw<t2Zn2R@r{|Bj~O<=xn{k%BEL(7oN~WuKCm1Z`^)_*qokHzv>=
zZ%l|@nTEQECptfvJt6trh^19XKfEWh!F;aP+mZZmRK5zDVqTMSx)KDa(c3jDL1xg{
zwbPW1pQY#RtYxVDnf`U_d-HlqlEBe+=pQE2$@A&X?qOQ!Z|sfVDV=$RdCcj?UPRq&
zTdl&4L*Yy*p>t$M3lJ%0T`zG3qlvOV!nqo)mXpt)KJ}Ak5z61iq$SFMGdH~3@F2ED
z{W5p=M7x(e;IG}9@!Z!opWoYS$KjED$Fl{fnojNchw|Uj4`rLp95K2VgDWlZId<cS
zyF3G*0kAPrLqpj?DluuBS3nB1uD(53g#z-<4ynyr%8_Q_;#JQ-z5kGrF(Xy;<mF12
zfy9d}F2%j{=A*hg7-!LxSs$)W&Ie7T_g`Gy0d#-NLhPfCFriIi&^>I7qsb5L<2ZiM
zCjst~S;d=p5|<y_p5U{;42;GVJTD(fNQrwcJo7TezT6|gL5(1`mu<^2q2MNTf$Q=X
z`-OBcW)R<+7oPK2_2*qHqa3TGEDSP9qgBA<$zOUg<PT=z{u_VIkcU72Z8~c1gs^=6
zDazY>p#$-;DcnMMrQeI&_O3Wr#JLmn<X7+8-cA5<i;)YKMr0<ae4sUA_KP^B!%+bs
z+Np;Al_H9h6V9n5k!pw{5-muN@wL6pm3;^T=9x3?2kE8UwPf9yz!m5&k)1{qAfAv>
zo0!=J7P`R5y6bWE0-MoK7sr?9jMmtc%k@vR<=%fj*&p|C{vpk;I6*fCcc(5a%h3rO
z6yY@dXZP6D)4sC?GV{Ka?;+dtT~4nmEjmsvUNx$UcX$^H*l(JaRDCnjKJCF|j>FW>
zdCYXSimo;1q8W;|1YtOoj)5Fs?ys83v4$xPT7>{v;B1DrT=ysYySuD50~qA2q^$NU
zxT#EBkyaaSgpIrku}%->C;BF+9BJO9qhq!aR=@CM1Shmu6%q;SDp%hMO{wR-3~~`A
z{)SdOrKf}jORH`MkHtC@Aq5utAZ<5P<R>>+5&QDGkAI@OX15F}tr&@vJ}O>JA&JN`
zgZ&ogH?<4KP8%m^3ZkPoU|r>B#eWzao4S-42De5W2M%wc^hKgL^mJubDim$eP#8|I
z{Gn!oyBXj4Mk>Jb+zEFE-zBvQdxG6RKJbIG-b#t?>jwT{)lUXcvgZ{aJ`%gnpX=ZI
z>Fi_t`Rn+jIi_k$Loio&eZ4}@l}u_?mFdVvBRsP+Dm!#0E75RXfK{1kHIHdjNJ%7m
za-iv#j)7r6wby5U^A3JJ#vuCsl||HY6+d}`qtwoVP@BTvF7pT9#v6=F4EGt7vkI$3
zs40eb{>0KFEOwk{q0C!YmYx+(T@c72X);<w^CHi-r@#C%Tc6B+k)}LYQjpTQK~Ydu
zdPRwe(wfSCkc9UBrAiUMPs`n#-%hidx(GR4fdZvwE`O)Cnki;f9_D;3v`*6+QV*K8
zPP+U<74YnF^qyY+@m3Ak$fWNa1ccdW?~+<Y<xD!%^D274*fg7cdC1Tv_%Cf=IzaUZ
zfXLxcSdu|M_nv2XQJN8rZX&M+35a&h=B7;Mmx9hkGuRv0l8*G6i~$}CgD)9e<)0!+
z{qE0f;CVvCbL{pq=#YM^(Pa-8Q`r^EL7uZ;jjviXz1d3Vx)(GZRN&p(ZelXu>iz{8
zL>vmStvo>!FJAdUhV6D<NyBshwi~e-K8@8rJ<%w5oY<Otx4XSR+xbg-;ndXOrk^AR
zXikC#(Y!*JFRA!uNmpxE2}ukDW%?WJih%M(v|!X>e;akTsjhN5i`gg#=X;LcDv!4w
zKL;c^n`@Beo#8f2g*>Ix-&FLl^0|f#+4ce>a-C2EMo&NTLPi?jUI$U~&2*aOzOGM4
zC{*anTCx;QX+uq261cOvQ58;)LHzzFxK_n)pTw$)DQ4EzY-=?i3w)=~U4pqe+xMO?
zu0Nxhjpgb|IEkA(Pj(|so{8y#4;`tXN1>5`)b*!r0e@;L8F+PU3`;T)@r&q!VBb<B
zsCjeZs&c=fxe_4U#a1<b4IWn6^D2<xTlH5_4qa`0M-OD1AKf?9e6p{-<yc8{HK%h8
zDn^`wJI+V0GDe!(Me8F!<dsdOzC72+`jd2!-SqIF{BIcGfW~Ckp34TKEv5C&{Ox<|
z*wzn`YobY^_6}6T5)yO=hwNZB??R~wSybxcqf#+x!hX7<aP;Cr9As36Hy>1-0h8pV
z$ZDNxFi2wt6~i-6u3wi?$9H@f%A{QCwmOkX>Bhj12@kC#POCEU@x~XUdPbAmmY!ak
zZDc<QWkV&(T0#`snJIy-+`<hGgO#Y>vCf61yuG<~RRa?aGLsC;5umtP?;<o|>%iXt
zy4G47QVRS?p2ELe``5d^(!trWw0`fd^Mgqt`e~T5(aZfb9g6cIBiAoA=iwTMO8xpR
z2<=8bohs*@4GvZYHS6rhGn5@-iQ(0V2{D4IPa07AIK#X(jTBWRH*<TQKX)%)Lo~Wg
zX=Y*uP)7{ypaH0JE|+l@(p(gsjSmU?Gs$1ZFzmDK!v|t)-lD<0rerQ69Zhr#ptv=A
zzPp`~%U@}*Bv(yq7OxGNgXJC?Lq6Fh_6WJB3}0>UQLu|54_b8mMAUaqCCCb*w3{w=
zB}!^)>G6-inxmbg>a;{n@v=n7s9zScba`=O^zSciLMdOnxLh%IxqDKX-m`<6!A2&6
zT&e!!F=_XvdaPOG4dHl6a}O)%mZ9b=gEi_Hfu8Y0dmjZP`XDyuqwTv$eXQ-?YJ*-%
zx6A2`jT@{*E+`K-J$#OjKDrGmJpJ`>ZKNN3HK$q&i!}Of944cm9!&JV?T2CsP?-z%
z$W+tCMFDN<k%mBX<!mNKeMt$|O*OiKRz|YN*aDx~Z`sQ?|CIjIW0edLS(G@kXUm_j
zHlc8AW<yO@tN*P!M%@ma@Ng&H{a3bU>oC=?WQGmhISVAm?XK$`NG#{W0i@WBUsxUx
z=@dbF);}$)8jKb9x4Uf4&%AgPNW9)Op0Y(5Vl3L+YOTsE7a+MKob~sQ4UYvV6q0*;
zel73q=;qwY_Y@eR%e*1$Dn0~AcWGPd`{J>b{z^HU6`Z$JDm%k#Q016{7#>@FhUK%1
z?qf8Q(&N1sFHGUINAi`)?A>*07xPjdy;P(WlFw_C7%3;Ty=u+kBWM0lV$}g8EUEc^
zT54{&Z9gP)&IY2GBufczkHflr^5mLIDS!HiGf{b%kMIQ5_Aa2FzOerE@HL@yv=Mad
z?!~9H#LiT$$@Zs^hT1<qU4HyjoLjv;cmUJw+5YC54$}nXXtqD!lpIL3HQU@jjPaL7
zPSpo_{C45UL;f+t@bvWTB2!Z*hl#<W9>m}K&$qdBZ@dp1R0^~~!NLSD3yv?-ETS!H
z9Kl&FZ{Bnk&We)0EtGJ_#ZTJXvDEbFv(&d1rdIMoBC*?k)6AEk;$FkR+wQAd|HskF
z3MV><`Tz>bEoabUwQ4N(z=;q%U^h2Cwp>+nW+q#ot`~qvO<_Kd%#Z1G$?OsS5lJ<=
z$Xw|+%j)ca>wBk{uKjw9RIod=;r!`60?-cOU;oOl;&uFQk+|||D%e%bFU~KIk1r{!
z4`|`O-p2Jw_MCI*fqvz?YOH?@=T*a`cSNbnxIS$)8M3C$|KeSeSG(%C$&D~ZCs57u
z`zktcvG<WjjOeS#T2x@F8&MpiSGzfXOw^y)PcvP9yELU9eh$p&K@9Y|0}0`@99|n>
z9!&IB1oCR3VOhH&%VthPIn0D%`NUBGssd8-(%*vJDWgBHPwB*WcG*}neS?DUE}J+v
z9|y$5MbkL`?TtveluPVlekS`Fc&YnZ-|NUFC^S9#)8w$}GF6hrk-F!!4$-4wI_$;S
z75J#|d-M2=1xeq!eFdq-`jozn;Iy!_CqeY}oUAMCv3lKLMZTT=_t2j+4^Q299jDq7
zA-pu`Yce>FuOw2_;!gy(Xc5;M-^SK^Oi9hQpd>B#s)!n~46UgxAs$Oqm;Uxe+;kIt
z-{7oFr)ubIdKEFUebHg)%$!EZ?9$~8*XYt?{ML$3mF$!OzNyXVLwj~lG?z+lN!imN
z3{2GpbR9hVM@4N~?kO4r)iIv=tCN^Qd5|jyU`1Pzw5WaMLh}%%dU(L+_Y(<Li1)Wn
zUdi8yS(EE`Xj-2mk|Py$dj1?-+w;F@%kYl<O?k-DTDK+R_=3>NeHbS99#o}O7R*sI
z?aQ%Ip59yKaka^!^WCk(WOK`tsjy`VQ+0h@Uq7rmuU9AGQa9B-@1V*9=p70%?b$e(
zX<^(Qmo%K5-@dxGolD2=PT#{EO~!5Y+|em%?|F(wswfzm0=B;NmqEEyv4@X_)F;r!
zS`VdinU)$iJM-Y~Kl{LYtIr%4B3#B^6Zim#`zJLeX>L6|miTh4E=X)pv%8_$(l;pT
zMLlro2BRlZvP2mR<C70pPz*?421m@NlkeuU5*wCZh;}Nw;rXO%b*EWkXlr$*<FXov
zahxyuAjf^gMOX0hh+WRDW1wU*`dhp)Beq)nArujU_~<+_`@KXFvRug6bpBagY51%l
z8M2=S3{m>SRS_fk1B*A5AOBOWVF-M8UOj#HlEgo{6gTu-x)%)deB1noEpN2;bjJjU
zjbCdE>2mXW*u(8SV!)s7Zmn<Xv0L|7q5(kPM~V#*K@~Z(Y3y2@7gALU15S_cm^6;T
z^R<nRaC87E5#RR{Z9Q#N&x_Zki>588Mbvox$S6}<Z_j-3bxtpd_NN^5hd+g#&}Ki)
z?5h^a{TFHKa7Y+=c949~RE0Hr-WQd9^7K}UD{0c>x8EI3XMY(oM3yTZ;Wi+K5{0b3
z8dN~#ofEs>KWk8HvM_^hK!4Q*eE?Unt!-r2%iB+#P?^&yl}ZCI*-S)+jX{LZQg+&0
zIefe`i1r~Yr9*ztU$@4g$O?}|pr0;lkK105*tX7l#BL$3R=08)#U(dd6ka0{b%mJY
zp-NkY1*<LwhjM{m_4b$;H-;?K1trbjI8K@k4!SfHk6{UT3xguCD}(2rvz9z`{FBi2
zIRLe$&X1RpaOdlk{SzqnA7@E=|H%z1Ui9cE7M%o4)b=hu-YCf%ShUHS&S_EU*E?N!
zMPqU@ce;MycAVMGDoLtwezsIO;Z(^<aqpUG%v`i7P(jL1dA1_!r2Ff}bC9%m=Pl%v
zc2z}rEwdYI_crgX<wA&6$^B*IU%#U!+3b1IUvhZak%haj!!Q;XF^yAvEl!W1q!SYE
z^NyZ9Y06?i{7dPiC4k)K`B_~4bG+8NiKLuTqY;<nheRgbm+=%BtP90%HlG$PC6*M~
zXmI%mbc_b0)Y_Guu5~I#uO5Zj2QOs8=G|L~F7m<;w-4vfdmftWR}E@T1!eu}HVz53
zl6UOYo+@^uQ2#7x^5_B5xNR`{uGXT8SP;4d2VjvVwFwKmV|;Kla3<&%l$O=fTHQYi
zj8@M}uQ5uQ+0gxE-r;R{DPXyT8vHogcIh^KADO{t1c+;S%Qr4h0A>vP2;X^9Y>XSD
zBe7^i!>f%1AodP65qXazU*Z|BQXM-#lP+96Cko=FK4>t*FDJjKGg%Js9Ub>@Whpu?
zzu}Y$M@|+7oG+gjI!ZVfukvIS4^aIhdsUzWk-FIiw`~zQ(l3=baK~x_w8ZQ%odQaI
z1o3C83Nb35r$7(yc5OcVx5(Wt3EL7J4-%gSU`IyIyxbjf(f398({n8+#-$V{e;M;U
z;~i_eA!R0qfAopFbBezAadO1n%aEQDlv<^r2qgk5p<MjP<qbJA)oeSWpAix|9Um?r
z-5W}V|3k~$hHEeyTRWN2L*nDKA-+1h9iY5Y0KZm{OCEhREgouu?KV*%e6q=pZ%?Ic
zmLU|*Vc_FG>uVM@$pp<lv<}=6veML}*n@OIZ8~%ijcysn{Y%kGZgF#JG~6}(z;Z|y
zSOIXXO*f)jF;#dU1XeInL&(n>k|Z84)2QmKrSZ6uxaOC=#G$lj-Tow%sN2rph0k}Y
zsOE3~Nw<>=HM6j~B2BzodG8Cw+KiDX96gNpa;^a)|1;ggZ5btA*@D+mvLHgwd+@$%
znrznDLjRpmBj!mM!9HbYW=A^>C9#5)2G$n<CgDQ0&+TN&v3qy<;kRb6@z#o1oQz^e
zytCv8ui6Yv3b8yFe2PTH<*f(fdpcz4lveboB)a4-%UO8HjB~)F*PXtUVJ*&Yt<#4E
z#6?tKdWRKLdUl!qc;~{f=2wn`wg%!9EjqyZCB|y9t@?x?z51alK|5&=D&5F|fO<Z;
z=k4DH_Z%&3CI>LU%g2wn)z>P_XGrhsTajvN34Tw6*(xHGnS>?vKXb{5NP^Pq*fiES
z^;4qVfi9jVW6IBI;lY1Mmx3PBsvdZZ+84w<%sTO-N<FNbICzZnhuF4<_o<^2zq~=R
z4h$Uw3J=|AMX8TVd+Jhe6KT5Z*&}}fjURCV1`nm<JX`_2O}2jB$@AA@_N8Z|^@HeD
zU9CKGS2O%|%OjGf-J1ti{P|xEXd0Sm&{3V5k!?){1SzK<m&WQ>-wAA%(EKvc;>JaM
zfQ#EuyjzkaloXB8gw?N?O1zA@E!7-=)Lk1l#5Oq3+E|^wj;`*p$=%$@CR~h<H`(On
zNuTls7H{9)`e(y++pFJs{LF%)Y-=skb@%N1`Z-BIXD2ZRAu;{AX~+FS3SV5kR#1Q`
zd!sxS65-&dIZ1Yuu97Y>B1xkCDxF0KU$NOZNEP9p?ms^`++Qxg45-EAMYOuzCEsgY
zM&Sm+kwl;RD=P%qHexIts7t*e@}1+!%NOA;ZD%>g4D!z8hx>jmoG3e8>RCxt+wN*%
z56c&{RB`w}U1(-=S#2zDfTWE`Z@WlG{dLq3r-Kh=z|j*u?(F5T@cI-<!6Gt*twU4a
z3w1VM%cu5~(9S})wXW^DJE!X|Oy=~})xCnSdQr`;=d+@|v348Qs?&cHHEt$q+4TZb
zsUmcUqD=gB>tOTXkkVY%AUPFjCQj9SBC!p47H?lSrUVWUQ`bm9@#~5LR>tbw$2~sM
zAZ>8e@v{p@Dn74OTxL^fFZl2?1eUn)0o{st5#H0w;P+*b^=Sx?*yt+yEmAT>tAi`_
zI32|BC!tsemvJp(Gveh7kZV`6rTF~Z$>K1^I1ep)#C?#V2Eq}LxYI4U?-D9-nFQ+U
zuG=Qx?j}ld<ar5h-mA%Pmz2Km<w0_S>>&Nui4x73s<UHw7F?5x?~JmngJs~k$^GrF
zzucU?*j#&QG$;Ri_XQB+uM;_tmjMAry8qxQ*nS<}q)2*q>-lu@Z2Dp+YV?sJ!_XW~
z9L^<;4OYg_tPRx8Z8ki#l~8BW5?|qz7?fe(-_|PMz&r4(<pp#yPWIc5H8iqDWfrrU
z^^m1^Hg=+|-joFFCTQo&Vdz~s4I~KC2`ks<gzGztP8Y6Sl=|x@FNd90*RGoy4SU==
zJamXN`yn(b8HY4pT3Tc|hSC^4uw>EA9ebd|A4mqSy-l(|&;i6x-ofE*^9JP0iFnEP
zr1^!phrt$)su=zx^b-&SgQi{-Z*&oMpszmEKn8*D5d@H?s{Ir^q;8Ls9d5ntQeWC5
z2_#XxhHZTzN6E1AN)IK^p!!#7VK}UUsMT}t?jJ$BIu~RKD2!rqMp(QlVvP{i5Np}y
zXLdCErM(N|w_aYQ@I~aphT~Z4g=7^S8K*9p%JvxCHxc=+uyLlCwIu|N(vnaQq*Vgy
z&37%#P75eiM)KU}V(?z~@7wo9LWr3qdAoEj9zW#Xty}pttepc8Ex>$MA2yv%p3p28
z4rg{*_JH5@Zc(N|K`FX4e-ZO`)J{?s3nB#~pdt)<KCS`~PToRU+L=rlj$ykIJ6&cK
zHQpbJe}BtNnNHPV@wHM%9$r~j4Jahy=C#tOw58UUKg2ZL-$Y>_ol{Ec(d6af0aE*r
zl2((QI;sr*%6kq)sR5V>3NL@*3~s1e{Y|q@_ulKP!v)@4DMKx)x{Eq?F6iMEx&*4w
zRg~I?5_JIQ`<vyaqAlY=&lW2O`_rBId`8ITO`+z`8Jv<95QZn=sR^c+i}JJI?p~|_
z`r|qcNdQb|jVgJ!*A8uuS(ErJDV1-xqV}6~+Av~EOtf4oCn7_|r3v0MtqZ2~uKI50
zu~t^*`0!Yo0&D<dwG7f1RO7Sly{PWmo%B;z^ioxo@0_=V4J`gilf(wURDi;7^>^7k
zz}J!j8wqXv`AFnz5R({5g7+eGjHTTIZMJAVU3WmBuY{>AKM|}+ow$b${V=*}^7vT-
z8P~d|Rqr*+SNc3|{gU6+AC_RVUs>H#9P%3!Y^XaTtPwqd?b%#6`7C{^;^D*P?}8e|
zF6WBd<qt`^*RiG>YSfinkJdx5cs|%s_9X*a`+*w{8IsMtMzIM!XWsM)<30l=%ryB^
ztFfnYWWP<An=f}WH`alQWW=2f^4?>M$7u-sLg&y|JaQVSEDRbdf$g1rQ&!MHmUQJh
zqP7L6cjaN}OW+|m7R%_l5*@y(CT))oPZKnPQw5~&c(|3zM)p9H$cJe^SE|b6-1O4j
z?m~BWZm&$6X%~cP9^3-Fj`7Hukd|Q>%;GGd-96W~nBOwHY38z_PhcsdSq3t!23<Iv
zZityuB2i(0gfDrp_8{#E1Z%C+-;2xNhyr7GtV>~9A&y*(J@??spT5F7y%q@Z7B5aT
z%}O5k{PxY|@9e|wR^tfr*|EWbZaJjs1G0>@3MnGx^Y=+4Oh5IwM6*Oz%Us9fG<cgq
z5)%k@wUmYlY;dD7>?}&e*j@tI)+<jZ*KcLSYeerlsc{3@v&7wB+b9TchK7_3AaM33
z7`eQ8t@}qPClc36L(h|c_HT=eS2B@hFT!uS1E5L<O||<G4UP$%HY^mgWQtm-H618s
z9yv8G;!s_ACLhj^`$l}f%vVU`s(0?s1I8=l^q_Uwz#)=O<Bi}yXV-<S+k-T2)+2H{
zOzc6^A*-SwO|^!Sjh}?N(Mfsz;_THJLG&8v8Z8@y%WGV_eEnL_#xA^d^wG$XP#d0#
zt}}4E<bt+b$Bpg%<T4qaI5sTyFCrjoInd*<NDXinBEL^(pK)4F92P%*c4KCtANZfZ
zO~Xqemli8k-#t<}GkN+EBA^aR=W_AY$)tqEm^e<v{Z^(w|J~N()^!CNRx0At)XcKQ
zWdE$SvPKY$$@!CmKUtq0ZSL$Qi<o)Z^_BE{D$Y~dHC`5&!skq&lKdB&>$9=49Pp7&
zwbUxmiNp$o>E$pM%nUBvhSKm1B|uIMgB5?p5jj5lKzN6SZhX_9Ak#CoM;4~{t?z*v
zw^C@dIJ0N0D!e3-ryTd?M?>3czsLJYY-}HLOB29L4~2Fs4SC&;OnQAm2Nyi)x1Acr
zH>ka))CzLpUvNihH4d(FP1EMwrgxJu8pMd6x=K2@7E0fShRR_DFCBt()>zl5)BgQ~
zLt>0M{~B@$YR{TXLqhMW73{q|+nDwps+Z32LTWAD7x_SgPdcayuNda{h9Z?R;B)2>
z3xm59FEu4*t$3M}UbD0fTM-^UfWE!azG8hLcv^^~!%xmYk#95@Z9;*X_9xUR?FEF5
zYKRH@DC&+q*FQQ>R(fxa@*SmOqFy(Xp<;9fFcBOjG;T`0?~H?%UPC)G<%hh8GK=<a
z&FZE+ve6(a38d|&CX9lPvf5`LT|j1cnUBwYON+$I_ewAQ1xD|1v!lG|)?41hi<AQ5
zuNUAomy#t&P0@zbHaDZESc=>$5EGsOXDSGpw9vcsQk-ZafXX=ZXAwHUV2h?+zHXPj
z?<2YKSLu=4lOAIYK3zH_6g8QQEXjhT2^EQMu{lvh&ISgfobbu%$9vIx=OaZH(N4~m
z*TJ>;MqJue#2D-IqZp;Li&Sw^MH<^h7Y$n0q<Rj2g)ePcZ#)7%DVSEiyZp3tH7TB3
z6DVHA&f;U5ww6W2fs-xYMesv*N*9zI5!wqR;UZcBpy^D+^TJ5yNnOogcHK{dnna4%
zKvp~qLan&P$9GE6y$%0HxA$NI*@WP_{Y)7J%ToW&A1pQ6%ftMmvsf8QoY|W6E={ro
zmbSr8pHkhOjr16JW1^HOC1as3-gpC}7D8=s{4;}hkn3iy+foE}Q7%_Z((1?dp+IQ+
zY`*w|12JB5kWUOiaC1;wg~h<QH3b|!v<HzZb%St0O2pM3sYXTa-&I8f3|TMNXQBP%
zN|CZ9tE-?KQg|RTvD>7wKE?y?LY`onjZX{WzU(7^CL}A$96UimcK5x>b@)0cSUkOJ
z@&Kv)6$)^QfCq7VcNurbQOvE%tjOcz^dzmZ`so+lNr`lWsJoSiqNgRnYan`rqvef(
z=Q%1~>)EXYPyQteZi9bF)<$06(e1SZ+J{<1#lUb?REsdZaqczRS%`c-&G4_vr|lD}
zc%%ID^YhX<0Hjw}4kKB>YM0-h!93m?zraPPE1GdbuB4=4m==|LLo5<-zxM>S#4V}Q
zhNLb}oE8~X4g7=eB|)+D$d^I%&!M+bqo-$Y^nQrCs0|LxP)-T?(*5s;zFCg?e8}EZ
z(Ajxq84Qt;B*&1DRu?ZKo;q$Bc{O}x;89GD_Mmk&G{_^?78_52n#^@M79c1=P>P(>
z)?ggiHDRRhdD#TBysq^ca&n@iOb=DbYub%1`oh2R=TXt$#^QHQtsdx-+>M;#EtNn)
zV5T3;V5FU^^k)w!d1rlP4WzjIG?iqvJ1Qx9qB_*c1JLkKlH6IEbNqO2-@zrL9aQ9t
zmnv#HU&)j)!9AN-rnc8L=k-huwQ{LyshkIRjT;{*rXi1aFUHL)KhwBSR{D|yq8061
zS^Sc-DoCA5USjDPgTzGV*EbmX8Ol>(Tg`9|r*=sI5q~bVKw2|AJ)5Z>Sc;+^%c8q;
zAm8AjbY_Pue_!_QIZy7TXZ1K?7HD%6a%|~^#<SO&?6@6@^pc`^8b9>TsB9i~W~a;X
zP;N6mPg^o6v}e;bAl!?s>H4qpt?7%&^TP%tkB>Q#uf<(<Sc^(d^4i{XP!_t-BynPa
z1z&v9h1$e{Yw!FwbV92}r+lr6&{tl)KcjOgh1%+fl(8CeCy#ENrD1u7dg8E2rX1h%
zWJ^9YKPF8Gp5ZZEzlD!34>O9El}o``3OztF=UGp{qRRb@iA(~X!AT<ZP8|jIR{gNd
z5E+K2vDrC2*S~``q<?a;tV@DI6pHif(-pAx1s8aE0Q48ZtCVs6GHoy%94%KY;;Z6R
z_dI{ogLqukTdg_nfft6Mt^bMwxeuj%+Tvp6bVUr>YHa++v$&;BT#AN<_R|kd%l=>Z
zS>BLD!pX?cN`Jzk_)Ve<lX9vR$h$=*RxI(fI1x+rX02qY7>Qjb(*J+6(nyCxR!Pi)
z4pQm|+CkA9A?4wV->%Q@R7rWH6zI}`3pD<d7Qf^{<B5c^{spsAk(qFt6?v^>A%Rb?
zAC}TA8R?6&U+(zdX|JTGCbP`#0H{jJAp_mwksoE!Efpn%@~<DIql!qeWRquS>Vl(f
z2La3@F*?t<mI>#il>E>46{h3AY)@-R{r)dqGvLls+|M^wMr6~+Y2w0zVBZRV;yvLk
zlq0+1FY#+jlA(1kphp?QC@#RnLHIf;K?8=DQr_t~0JPb9c(DuXhkMN#>S@3SsrK~c
z+pA^D1Ne>Qd}-5e@G8qc%sbMsW8@D+{0?9}Sq-DB%k=e7o$*myGxBVjlakCrrgZsU
zR>%2Vdj)VkP7q;vvNw$|{`irzgCSSCOD@hXUg=`K4A1=7K^DtVKGz|b2x%|R!P?ml
zBAKY_^25s6#YzCddfJ!}wqpGiuX70>ffZsD_cU#|`Xp-MKC>im&OVhz54vCLVDkI|
z;0>_}N8`Nvc<DQofU<XRVzECg-iY8?&KjEM9Q>X7oujNte7EQ|U9#7X<XQ(4oPT}S
zl0a}n-EAkoCP)0c{81ZtPZpq7X_9Va$ORSDoo6iGcyl1$!f4%-*!~znbKp=ao@{Py
z_O8f%DemKHaHamZvBHc;;U8`FyF>mEcZwIcjFBjh4u&e0IFVyDsjO~e<`so-K;TMS
zqA}Dwz!y$u4il|=!iIMh_ZS1zn&H~D%wXv=2!KxM0#5;n<Wz~Ae{D2SR5($&W}jqq
z^8oE~K!EeAzZyYZ>L;o|7olV43EiNI;(&BKtfam7AzhxqM62tvWNC>xTix4ibrGD7
z)*AwhLxIYIW62bKz$NdFGX_19`Hcy_-HGqNN---clAgfIE=N5>9_dOAuJM8fd6N6y
zFN@qqCz&!@Hnf5LdFY|3oz1iO?}?cCIqfJth8`tdhFmo~ZU|32Srn^UI#OwSW;4b)
z(jKNTP6zhM`oO>~49%te_C%9sn=hu_e`nvi_}{mw^UvUqk*OZkp9mD(xOZ;`wvr#Z
zNC;3g+45|O_nHXNxB(k4W7rm@oYz4Ns+ShiCf9tX%93hL|1hBKZ}~6jAR$6&7jw3>
zxlyhoLDb#Amxh)R;!GMj`OW9(h3Ztg46_8{btOc%ultgM%3qvaoP2tt@1?#Do#0+n
zfo$sH`t65;Zw4s2VH}KnIUt#JhQrd^(|4HXG@a1?z{_ZBP(^+1m}JDO761Du7c`ud
zri;`sZf`zisAo?fJ}$uv0_3F>(%ruFcWE9Hy_|T8<I|v4**@IK#YGm==9`43LB%J?
z@0k=&U#gl`BHCTf*hV>-EiF$y(Q*RJAn>fm{^ISYjEBJ@HkH|XdG6|UlvGCUr-zJ}
zuXAi?WiZefSxNhyfr`KWk1AiVyLq`I%OY=E;JLb9Ih#<-a~!hkDAula_uE{<@|i4T
z`SuSnLx&ry<hH`&yNCTMJkAxPJ>WSdSwQzr>z~r3_Q{qorlyyh9F3&AZ!11J%~k!-
z{uxsu%PR?uK9V|=+4f8&%HGYV<w!Q$b01P>rEafH&8b1^U)Z_pAu`vvPf)C@MNpE-
z5Gz0A@}xuNi?eHSLlv^oNqh_pOk@{D*Tn{J$}Gn1zQuQ1NTL-uy6?=9rh9lT(e^>m
z>d{s)Dsf_3RR6}-K{pPfKda*Dzfw=#emo*Kh$EA&ZglF>YA;TE;?{xWM~tD9Q$x_?
z?f+BXn=EVE0;jERK-RY~WQ8&EI}Z6EJv!Ss=d(YE%CZe+yaHgr`gH4#AErwTMf8*^
zeebN@d>nlD2uQx!<BT@&>-mD4Qy#}4DyL}y>68enJ(ibUah@@G!Nvu@$uj~az%;gO
zV{u+{QTZFrlgw{O*<~A&?6AaHOvj6~I9YxY5Dsmm1h@C<XV<T=I3QA5ZYAT)k6ZfI
z<=L1VbwAcckXzL1@5tN0{X6W>w3urJGAW|({`+akgK?B-gKTpeA<@rj-bO(0WwD3G
z(E-3t%jnM2E-Bf3bYE((8)n2@Pb0%Us4S_*Xfl!#+bh|!1YGecZSC*umsgfPFT}}1
zh43}kl8g7TT(H^H5nWtpUYK`_hXFjudgR!Rm7jqn^vSdrhpe2UTeQak<5}zN1!+lk
zd9sY99;ISG9j2BMlnn%l1uw05lGOL|z$K=tX9R?n^3UhRn=EOzK@WK7hm-mA1qQOA
zcI)L@qd=!DNaGI=rc|A^)rG9S4g}fY_(9xJe|gWXQgdP>7oCCkh+a54{e1+ilNo}j
zEbC6IOBneh>9#8kFj)E;Ch>e=0~BsP5j3{V1RJo1YtCNkOHdX9hIP>yy(BlJ7H(gs
zWqb$C{ZlAdIxZjI*+?&-g)aU>FG;Rq{D>Pww9`gF?l$b?b}vAWx(%WxK<93L2PVBf
z{!31d<z<?lzer9g$ERY$<;M%i-T^bD?T*+cQ?`x!EADs)d?k1--^EE~3ix@eRcbFr
zfq-&%QWe;2LWX=6FRAb^#?I|%7bv$a&#qy2T;s8~IY58WP7cZZ<~9I$N+gOKb^ifZ
z&?;xbx78`7K<@^<PpE<YW(2UTcdt5l|But4B9`ikQFL~ePv{jILh=AYvc_2f_!b3Z
z6%ibSUv1^Pp?k?6#b3DfG~2iDAQyJ{`ZHJY6O(nlxL!2JC89sQS%9L?SIY6paS=<D
zgnGgEva0M!IWIlYk~t=`k8oFAEN{75gLqpS6l>wAb0562S>?{YOn<W~8`)l$e_c}d
znMoad+B|U4-|g?OP9adgy<ScUN$;7N2;$Y^h8@B6IOnL8Rb&g!>5jpUHkC89BI7$G
z?0&Bv^RwOoWqCby^^)v!@ssrTZX(S19&H}&V%Tx=*HYozt0E0AZ#7EdRj?xd&m}9g
zkXAkI^WyZpomA}O(;Y7}?O5#3adSrGa-)&S3z1lV`gF;Q$?`E}YOf8QXUk8)p(UMo
z-K_RQNwxwVitFf3yLzj=)XUhzYUnr}C~l<+%RuR2D1u$N?`vUysNq1WGd6DV7V~j>
zkMoyiToxs|x~Vv)Df`!!b%|dOVdO*hRBIf&oQ|Krp8?AXBD0)e_xNGj_6e0XcK7yo
zpUs{h_^+UYi+d;cCabgEjs0ozFe2z+D?ItN&6dYEpizt}_pqIjqjhV-cS#2uMUEvt
zO=xL1b+W^M_Z|cLqIFO#lKA7~I0?&?OfA)2D0;X7Z*O?vvDT${_l^W>?B}F@QDXRz
zfg!QSr-qQHsvYK7F=%d*ih~7M#i?=jwWJ>dV0SE=rV6#DNlyr4LYXn=U>uO75tQDC
z@^XdEk(6{OUENJwzQvEU@cbVRYWgcc4cwjTs2EbQDVm6+bK-&FFp1X1wBLBw2Tp7H
zp31Ws5`1=HDLqs#=5fSyP`;=;fcrK%*xa5aDbuwPJ+OT|4S!@KbvERuJz;j0>AZK7
z&ECQQJ}q?+ZH6C(6%I(Ujr$sM^eT#``0wZw-8C8Z-uogIILkRrv5unt!n6oZQ>?`2
zY9$g>Fdt2LL~c(V*7Gm%$5I+|hVWFReL$)2Dzxwp0pll58nLJexRPN|2Tk+-^ao;R
zuQkadb@E5CfJODGE09;=aaZFzYBAB->$(5#dwzeOa0w=r$Jfh-=e9VZ^Ajr<->Pj1
zz~<{eDCqNfPSpOB&2lV#8*ezwk;}`Qt#CP#X;_L?^JGKKp)P;*rMKRKDM0TE0yY>d
zsQ=)wr0OVNx@HF_4<{#=0{z=pY9|VlKIe~mOQ%CN2%!G)V`uFl3R?-JD;QnIy?@Ya
zjj1m}H|0f^N?-bDQu@)A3*nyEtaamk7E^Cb%m5mxCz?D{A+@rfy!R?5Z&Yl4D?ED1
ze}LU<y<r1;dH3?S>EsnOF7??^R?d63qCGcYCLQlE!v%e7aRSl0=?YU0xPvGWhJmFh
zA%Pq>7;f!O#jsOZ!THj&P7i_Jq9mF~*5%Ij>V88HzDeoSWcS$HEr0p|hFMebX~ivT
zV<8u+j`&=y*a#e2h!)EB7VqHI{;=P1My*ZC5Uksh`L1CM7@0~rT3gSi1`!)hLt7~^
zu`|oSj{K4;?y(mA?DmcHy<$&-cDZjP5R*J7<%BeCfg75p;Pfz$wP8X(U&FG2OE5x`
z!yhGaN73>FK}B&IOZeO1;hz%==&%7er~69JK)2`p@pU$@C$ClYi$Ey52zZr}w659w
z5Sgo$?xTeUz6neRiD;<M5FO!I$1EU9>DXC2QGRII-g;?mr3$kAVm3eUR5ytV-c+Nr
zdFLoYqAuS@4=k_Efu(swmKjD?7BNSZ3E7p=Zfxt?`CLPW^3ql+K6^Ze_Q-kl?+sIB
zu9HUXCcR3nza;r5#jNkfSxqaJIdr0^6q6(3PH<M$a@?&u3-6J&=|N^8;E!1Ml@2Tk
z!bRU#5^$M~O|aHio6~v3luX-3Lu83Y!`atQ4eD)Q3@Zdy(pSH2@K11nKO6T8KaKwx
z7;jU$<Zh$ZC!728gL?zZkHhY(7ce>+$Zzy-F2C&M$<)UKN>k(6`AF3SdE+$ci)jjs
ze*<f4;3u(St@JchG}vW-$k_>1u-?N0xV?LTx+ptYz!teBD#}>1YN&gl6aOge#5Bg-
z-Q_`zs$unxSI2Kg-(o2?VOV*DAT7&-RM=Y!nnZ4njvY`c@5n@)EPhv_InwymgXxc_
znYE?boF0`QIwOEm79BZnG;bhv%%#g$$*sL@ej6{hY~LukMUfD?AWKgSZOTz7yR9QP
zzV0pf3QqJ~<I)U1R>pmyr<gA&&1FwY=BtYX6W8Q~DVoV$F7!tp0*uLS;_n*f%b(76
zcGuu{0}$(MttHMlwslxjx3L%LSr1YK?_O3?seR$~JiDcOd*&YafbTT@EC<wXPOY&2
zAA%G<Is1dVX7QIg5<D2tI`J;IN8L+}K`Evwze`NZf9~;->7(+b&Pwg1G<?jtn`(@i
zvi8OMg~;Q!-a2`(1Qvq55iQ`pPq#h=B%=yU+4{0tBem{HOcVs|?T1DS&BU|Svjlqa
zGRiW6jzzR7D9#}qmhL{|5iZ5+QgLU*fxOGon%);_B$HM#j^s5<9+S(lya2oRbdhlE
z*Tu)%JL98v-#fT8&ewfFy>WH}5UMX)pn`9>CnYB|7`Zet*_%K68bFb7+|mR$YWtLo
z3@!~L9fcs^<p$JFL*wT!UN0_j89w;o+zS-Rj*nD9thy;_+k$A8)||Z#C*3o#enL*s
zT=s3m>)9tT4cJy`MoT4XC*V;e7)$m%sw9F`jA#$L9ud$<^2|9jOZM51-=oRs0RAps
z0Fz#pD%_NBIS&?5b>;N@{Vm5VW*$LI$!dFc3b$kMWImvRROiU{E>BlUPM-#-XDd3C
z*8`RM1j*3+n@8t9$98(9cS##1=k<#+?fnll9RWs8f8i9TLCH8$67i@YLHsHFkC?~v
zd+i-CHlY~@NYaH!yTl2WE=@x->MtHC2w)d2LTSmlEhg({g7MFISf@yi3R%8Uhzj9c
zsFu`0{Oo$f3iC3}9O^F|B-mB)i#!<LCmE}Bo95`kK`FVp+Q_(%{lU4ao7W%ECV@nW
zzWXZ~$;mVOH^n{+P;h$~d05$NqKN7-kFo_1aYqDfst*w-7wKRyBn^k-bPPNGls`#j
z#P=UA%uuM=54M%|Xlun;&}TE|hw)(IzszT~-2nNl1CU<hf=>Q8yLfwh_MOoUZ}cjB
z^Owm@An}CLpE~MTB<Dw&%~Gf5X2L_DGqKJJgm>0E7fP;ksrR-vcR;sQRZ7a#nSd+9
z`xq!$H_ehusynhAov>5XGx)Fbe;j>tu$JakOBe4R?$0L%)l7e#O*SQ?>RuZSm2erk
zf?FENnEiof#3EJ=?-5k(|1bR1T5{}Ed*^|Ud7>FosP=Kc#oFn|$Up|msEX7Ns9Np*
zxE~8xr3OsS0`7E!J4^F^$9Ead48N1@74ItzIYS2>2)X@5hKNQqDCA#%S}IcqlGc5o
z|EBcl=(;@-65`IcG)v^<XXv(umT(B;LQ^ByFpZ@e!-tY)=0Gi0e!cY`cU*05uMjV`
z=q$wb{LvOP2xVCUk`5m=T2(13O6wZ*&tT02Fg;{xClPd!GLN%A3TtdQp5X1rcM@J}
zi|l($zmBAa19`Uh$uKl`Mgw4yPqyRa^GXIf?Zv(0(zRwa90!?=q<$`g5_L78XmSmG
zQb#YZqVkBAHV^gF_0Y2u9Qq&^)aUWjc=^Pidn)-vs+35}mEH*`^|2Zrq_gLj>4jn_
z-?gU*WBZ4a7WXt|RLcfeB|SgBxFRauE%!4BlJz(r!$+g8^0bHHbrYPs>uZUD!T+RE
zlKg6H0Qgb&?Uv30<iu`&K_XVd>Zl*?v9evNQ`R(HUt78v(qi)7;Mv)k;dC30End+I
zdgt#KMK>W_J_5FtJpIk@rE#c)@gG%h37NhbG37;|0l-d~z^M+y{0KXQ^>jTkONV#Y
zwYG?ii^+}96Y&N|)^+t)6qLWe=L}yr@wf4C;a=u*xbdA)dZmret5XcIs|6<0P17vj
zi+UP=i_GYfx(eCPERXS;*Pa8_hbV6%)t*AM`Ioqo5e3P1YAD6)xJjuVPxK4Vb&ROh
zizTPR6yE;v8rpzm(Ka%p$zww+W#ZYfP^fN8g8uKjFh+L`gdP(OdYjh0Qx+v^h)P1w
zBSd#(?0cZM*hzKk6|c*oru9CQ8dnqGMm4UN->Pv<z%0c1|M7ce<3COeENicK#y}1#
zvoKpC5;XDJ+tP{4NdP)me@dg6%zsIqlVA^~&U{O}@ulT|kl|!cZhupge#?a$jj;+#
zn<)(S%|6wbJ+}*`?m>~En20-$k$k$0M+ii46L+B{I-F}RqNaN(jIo(U3wvmf@-cd5
zzAMF9oPO!-P;-;#R;KXz{kZC}Z40AwR>Z-*=;YPS4uyNNFomuzSI9^yUidKf*-EOv
zRApa&{w#OVLDS*Jfb=~D@?Cc|Z>z}|w3VB?iW}$AYO!9k`yQDx$gkd`8`vG#{MGqN
zV@ZFX2vk5qE!IxJ-6ph{C4^d>3pI4F&SQ7$)9CFb6l9L~Z%-~hy?cv=lVsMXR=m*(
zPsX`uiQLPcW~E8Jtc%sjl<q;o)80{rB%j;9p9CP(Z;EinaCS+cG~8O7{KiWkwY+U>
z&I@>bg;jwtV4Pu()cIG|oP)##7}TrdM=&8Z$$T~WOOSN;d~wm@#ge>XoNk0H^<IZM
ztL|=%d`Rc1KEC2YG3-{lLuy8lyH@e!=tdVz|9-f+CH-?y9$GC((c+k;^X+-q5XFe!
z&20NpgohW?&-Z_zhP`0cDN#@VP&K{_g%&D{<?&DI8Kjw@$0*kC=$FAbNY!HKhJGL=
z#vu-X@{Qq_vbk`SWO3`o9$*^M{cjy9E2^sdw1NPJ!?87&N^nO7PGf&6R#o#EKHR~<
z3Wp<5Top7g@S}hn>-A<S`Q!bO!PHPT%-E-4=AT!-x>D4%nXR+mjej+<sQp3j`<R`)
z?J}}89bmGz=V*ilEoWM@g;JSF8Ob)T)PO^N#)E=Nt=R#`vP8B8tZb~sgd#Eos{9-T
zU(Jxeq_lqBTifZbMV3m1IJ)FBiQSiI&ar)bK+WtbxIYA@oS1QuQK&SWOPtN4(g@SD
z-QhlXUJmB5VfDCK%vDLM`cn0H{S`hv-QP62oWwE_cjooLH9hD;Xnz-;=~~s_f0(>@
zw$l}W-U9M^{4<y>-!;s@oScUCI|cXi&2;;am9*B)_{BCbN{OAyTc?(2TU)NI4#B?_
z?XH=T2AV9LRhu&MRcRZUruEJa`Lm}?70H@xW7ys`7n4Z~q%W-fFQ6W#4^Kf3F)g19
zrMJDDVoi2sQ{U0E+hpGgue6(Hze3bpj$_+>%}t2OD7G}SIn%Gy5Nt2v)Jb}G51J3u
zKMJ_QFDwCx6hN6PlE!H~uCvccy91PK=!exgoCL^jx%_8g#AV(PS<C>Ie#$b7)ON_!
zXxMU-Y&(zQse%!OKgZwL@pRn4AIB{bx}TJ?RWP9m^BPlDIyjQMU7zCMy4&uPz3hWd
zL!_*?o50~8dbp;a$^PQ{1M>XUr<LF6o8F>=R%Dz6V-%0(3Ua$d{{^bW=SA_*z+LZH
z{SQE+vXCa)i=}l+YEiQX6mSdq%4}B$&$y%}P)(V8QZdxp<{SV##H?vG+u}VJq+&%B
z6=^LgV85}IPtJ=I46ze-H5-KXm|TuNhW}6uXZOo^1#(jV?lg&5fwa~=wgMkKZRMC7
zUA8!XziiZ*Z$Z8a`LB@yBaQ#&5U6rx((Gg{G0d`L<_EhY<k=9VgmXv?YUeK;y$`j?
zYi(6lKK7v!VD;vOUAlUC9Zx8+-qTZkF5Uq6+xUY*|5WT2Jj4+p(@T(OAm(^ij)}NI
zR%I!w=uW_p+9#+wgyqn?_4>VC|F1l>pF$)mb%j%`gBDmXb5cXPI7z`xh_)5w8{x#X
zdy+f}@xG0Qy3)`w<Y4{YWPY%j8%meyOwKO6yXDp+0ErSt4&e6MMtLf;Fj(kVdtEF9
zjCx$YeYIHGGb@{hD{dfphJ4Exe{xPed5tUjqgE|QW3eBr)BS_VQFMat%ER3%da=FL
zdNa_1U}3OK8)7lkmyR{6Cr90e%3#QNPACjp6G`ZMa>t2j>zg95fXqr-oQtY^Lzx)T
zm)n<u?A_lle7Gv1FhhW!Q%jJW_~8up@KWW)DJgRH=oQHAaAWf4;g~J@=|A>0DAn~M
z1I09+JWIk+$&XmLYvg{;+qy#|@oV=!KFT>R>a(Q*fWJQ_m7P#qyeWH5z=!pwdVf8f
zXbTqHxwLM|3Oas2rFp5W=jFwvcf}TefB6}k&Ra{06n=LNFS!}XKvmpfN-(J4!i1Hz
z8V(DOcIy?%k?xHH(`{j<?eH$D`GIO{l~NzR?2-6M7Gd_wml0@=I?w0tAYwh@nrjfe
z@%-LxKRw*7muI>$m(!W<Q@3&1T8+uPLB2{0)YIS|rzI>i8*S8<x!@#4J3U`~Uc7tD
zRQD`8q>c@IURn<K7x@wDVV4+FZ0ar-Q8x8}2b8T^x$2tfx)hE!wIgX8)+7!2r#lC`
zJG)2yN@X>m64)FfLb|DC_)_RJxI{J4-%~>VB>u}F7$<W`vN#!%HAoI@+vk#Vn`8Qc
z3*RnowSalG-|j@0Z%_BvgjDm{>XeQEV!qtml}a4T&Gz)5r$k+t6;p9VR2s|P(2V5R
z&)xx*T0%o3Pwu=eHr<-KTM~kBd>;twLW?}VzA^sr`t00(O<>L1P9>|7Clhe-iO}oW
z&nE`XyVpwT1lgAMuam8lMczQ1%NX4=Df?bo!b~YiTR0mt&aVwi{$mX?zJQ8|S!sJf
z4+?+d`$ljhU<ls?x;PZ!u$cln3XD9ZrBCYz!B!b6)63qw3Dp^SGT#8S_ktdj3(x!S
z*ZF%O0eo42ch2o#Qqrv+ax<+x_dD&v<QNAt5F8AksLOUZ(sLl%@zr~b+cr4}qn3jv
zf*Q1o=^)p`c}k&vdZu(S_Uxf#HF}{RBSPm+FY?A+-ZIW49qFt-Es}_-sVZD?(IvOI
zC9J>j*2Tu|wmF;Z9j)#4JGP+A*flMer@y8j!-)R|!xN``<8uw&QfayM>&w}2YSIrR
zf&CX{wb&o(v6h8jh6;6>P_Q8FqD&8r4r?9XG0K0Ug#IY2+Xh;Bjt7&inR2g#{n>Q8
zx7`$vVlD3I*tx4c&+hu(?u*TtCZ6gP^cDDe<eJNHKwrt}#gDB;T_4--DM^s+@%dfV
zhDE}!t=mFGb?}pdjazqfPjauL6J+{_z@7gldBK2U@crWa2FSlOhl5vhKUF2mDhM$-
z?KyH5NRaGwj)?+KKJtTU+xPp5B>@<95HD`$@;C{Pxhpr}mQ@ka76$KW{(N<uLL9b(
z*~r`_f@L1sa0+y;EXkj-7rJ$Jd-6WX(kaWs_is?R{2&9dV~E7%Z6;6DYY1%^ob9s@
zY)Xk;hfDvI^LcWj^6YdmYC4B{|L<ff_4g5ZB%X<TxhT=Hc4A{DhKp2ELs*T0zoNn5
zW47<*>DA@lon99j+WGR)T<lsjo$v8Cc5YvteaMczyK4o5kxxZ@OhB`4J>lhdfQOJK
zB((6S-(M|EA<L9hcTaR*D&OAZk4p*YnH>Gmv}$>!D8O`1fB#KhWwif$84R0Ji?a%e
z%Q6T1K(hQO^Kl6hJGf@KuVG8W0*B@}*EkPf?Ywl~GVnkeM04GX($HW4rUDrAuMU<!
zO+ZvZu@&<GU}JxcX!IDe?W_(+NQWYPuJL5P);%MufW<EJ9X}$P?+!7k(+NfdrIGjC
zO@C&UOB?IH`@9&NkXfG;%g_FQ&4Y~hKD0op`FSog>)F~zsoRrh;2H#|Xw643{47^!
zk9TJD{nmp~h0QX`5}Ggh^ZVMAWVt4<Z>@0Y_;d!|`+Rzvj$D78tVlj-!{c8}-%{aj
z7=ZXuc=YW_dsP}kz<*wxDCLxipPiiF?l6#(STT+C=B&G)#SKvO+g$PA@Ad$7Sw!EY
zqe}fb9h#K4{BmiKUx5XE*pAQs`-QafsC|Annx=Acw^4>p$_Uj4?7D2GuR^&?EopVS
zg1kTD|B>Zpan<*;0fDu-|9Y8jU{$m4pYyVM?2E9|?vkj8DH80O$R*nG<H-ynu~&S6
z2Vw9X{OkF@axTYSg`Yf?DgJMh@2V*+UNSZ^?|g~hEO<L@;-T*kk69m|H<F*e{_n+R
zLSfM@q4j0<AYvJ4W;6Nkax%L|TmGmG)O{y+<M7vMbIc4^f<|xFn&|pG2_)_VBpm<5
zt>r+pUmGx`1Kj4;)~26B#8$UvDjMb{OlSDxa`iNb&9dCSf3?&s*8+9awxX4E!ONLQ
zs{j!c*Qu0-V9j4gxjlx*<18w}f=J{ahX>QOR7?b$C%(*N?zLZe3AU4xon!Yb)#&m`
z9)>hCUe?jVS=i+6L~j86Ac@v4Dbihyd>y>0kZ!Vd_;T{=<jLV||K+saUy5}W=QsbD
zKHIH7V~h4@x}&eF*&lBHV|qOsyQL$_Y_Gmo+?w6}z1{u#LYnqYch)v%`;xrnlQPrC
zV}LmG(Dx!=yUO`Porn-9{rexU5ElrnzbLc62#x;2#SJ{E!v+gCq!eiTMvpG2{pIKh
ze!%-h714)QXZXu_nf5L<EU_&GFJ8#mxESwPz0Xy;%H#}%Q?P%uX=l&}XBjP4CX1y_
zBJRZ6)B?6(Bbcpkx8jprXM7%(kaRXaRY)Dg#Labj*a@DY`%gbBvgTozXU|x$Shmxf
zd!?S@!O}DBUojmEys}n?v-|@fzxBQy#1N+=)5fAkPc92le~NfW)rY;*6+!7vSA?c|
zsAU}ldz1Y<)xnyTEg-Q<$-uE%lzjDm#Sqw3E@EWMZXawO73r!1Z3)*E0$Rhp*?PPl
zEpDwb^(S!N7L2>y6_>0%TmHnuf_g*;)Tf%g&tTa_@qtTW!!*oN{!HoGd`~rwU;S`D
zAoz5Bdvj-#8JMmU!`$`B?#_DM!@b$g+(9#RocAT<Umj_lF{Bd0QCFICQngFFtT*Eo
zjd$(t8JmXxRD}ka_|6wC=B#kM;B9)~{`HQm`;3?m@;<-S&N5l?XV0h(oO=jX-)X{s
zUoa^^JWeaBx_6|BfS6(w8hZ$vg53h7#Rn=2QhxR*G6aL0>@;WINZwSCeDN74V#^{;
zw|Dm~&+-;@&wd6kcWt&xr%8`mZiA(M%z3YDt#Tp@Z4SP%*6z=gNFhlC-LMgUlBE>B
zP;HR6dUgvWu_zgs9~0bFao$A|$SvR#S`S*^)l=uAOUUT)6tza??%C$u)qB5=j_lsy
zYFA}c_~hB)bbpq1QYeMe+B1ZOv`9xqRBX*{Y^!5YF$K49D|w=e<SmwKnM#EH4Jq5L
zBV&I#^>k=nimX}&2g@P@%PY!aM_Bf2C++kCcEka{{R4omG09bVGh@)bngc@NuTNQ+
zb~StUV`zrS=G&y8rys#HS5XjM+ZDMeuks*+WmSC1{#WMuFjWC1yMo>SCE|g}K|5sE
zJS|Uf4;b*g`^49i%Ez=v1tj{H|JQ3r^y)2s5Jk&@{x0=aj-;<G1ye6KVG2`Nev}71
zKg&5j%~8$0q%HP;+4=iH|LO7$qlIPBHzxbl4fvO;`)yDC>VM_*mH6Smi682XC)=|;
zn%?2xPhQMcL1YJ{z=USHItP9xg}P^AGZ1M$tgG5+Qvq)wFD0j2k~-xM$LaZy#cl3t
z!u0m?NE@7o6-A8<GbdoS?rgY0bGFQaUYo8N-B_&YY%fO8{*~x`H(mbkesR~2%Qsir
z3mCO3Kv~-^l_S+xUf$f|0mAmzxd?qJ`o2WjMNTYkNYyAbym!uMV4${qz!w*+d!Kt2
zbLfiFFx9!rF1j#-D+iFnnD47Nt8eb+2}sQG>#qPQFV?Us(kuYA$`;;z^^_&IOr;ov
zRQ3y&$1S;lj~AqRq}T$TY`i!aguB0+!4~l>MrJp+Dt~<#LeI<Ht??h}^021%x66ja
zZQJhK<2QP1lCib){tPmlJOZ!tZ|(Tfhg*kQ_CJ|zZJNIp!>~mg9`4U}{&{z$2-|&+
zSsLp`zQ2~`@%zvp2dg={cO+`i6?k^q)F4eI3m8MY9j&j<cz*Nx_|7?HOuT}T^pp9s
zHAvss1knZu7)T3~;wIbwDxXsgkgBb82Ny?BIOX6EFUhGs+TGmS*xFs4-PubkHQ7Go
z+-;kbqR`6!`ncY#oZ;!H<I>_35^Eh>Z6-x|ocG0RLB=S$X(Vui5J~kM75eRrqm9sa
z>^0d2zn=deyEgc6Yq#w;Ss#w@==s{7+duBdfB3BH2J4~s5hh4s5yO~lBEQr=gD|Pk
zU_-VxHx9oz*URJD)D32f!@n9Vc)q!@Lq@ug{j--DEnztm^+%#KNU4KnoR^`u(s2Ke
z)NwDyD<2I{Vh~jJ=#cr<I&3ZX&qjE()c-CunUhcHrhE+m++OUC?)>^?ZAjGs;q;Vq
zGFg9;qiybAJ2nT2I{I?kbl;2T_%X0=zsXWN09?1%cB4wV#VMzZM~ZQ=_!pAde>7Th
zPf;}=^^(LOtYUFKpANR6ib7~7`->AV=M1$wcOgN#IOe&t%1lmG-0Imk`*SOYViN3%
zXWQQ!wx=v*f3=6^apqhd&GzT<OPLD+-uj{Kj6CujtCHb>!@^>opKQ&3>1wd*lr9<`
zOJ8x?13jD7IQt0E{f3dwXe75|D7wImpNMJ<xseF2J&(;;-JfzX?rh69B{OTnK*33a
z8vr`k-8AB^=Bp`u=}KLv)hUcuQnDdZP)2h9GVM1ko_qJ1#}@9N|1ZMl*t+54Sgf)c
zh6Es`oGKy4S7U|VY9B_i;c?xFd8HcKbJQ<q_PM3|r7mdfXnlH#xr2}K`3mZR!gMW*
zN$lVnVM?6i2haaT@*}^3%o=5eoN#9YpSa$>{j-<zEVAm6-FdmOxvBcz%zl|3?2e6v
zm|(WQUpxd&!Tqc&ye>%D6I_OaTY9-~s0)(YWdCW%L1z4T!_A`s>{8~x0K%f&B3LQn
z&zI}7q>qf)#2v@0TSVdOQ&<m5o+HeT=~Ppj+pAZXu`7|}w!NOw;^F7s4v#suxX?Wf
zhb(DnV6r@`<vVRXwOtWLtTTLDJKmr_Dxo&yrr@Skx3rj?Dyv@8;&Ql?iW1MU>G%Aw
z(cg0zMov|GY&VR!Z%?C~15*OM=mpJpPTWstBm-Q^N93v(3p86DFG61S5a)y&M+=NR
zo_ee1?QTLVHk$-AGzoF2JPWy!O_Q0Z0u3<2or5u0*x_=!Qk~&pHhmXZNovH}x0c1j
z=(54k32XB9RhRznV_lkOrb*TgqHo)D@=XV7-89&G(gy<|Uj@-CrZ$hlPrb8#!_BOA
z`NNG+Ypm;=CtF@4+a*e|42*5FMP!K&bF_K)D0H0^5nevZk0^zQ^X9}h<YTS;-SxVw
zi?>~lVs(uFr=*%_{<I?Hapx5UV?EsIPhxn{L!x-h`3PGfg$veYh&Y5fUE==bzgCIN
z(MUgdLD>&`eSP{?I>AyI=h&|4(~&}jd#|q2&2oVj(*;KOg=UD{$f>Tr+HE4D!G*)p
zd=ZdPerumMwNJUcoNiQ4#soeZV#aZ;9!FfAk(7?NYlyS@6Qj))WyA6fKOc!;V(IB7
zgA_ATgPoD5G}GpcSN;ua9ti|OPq)EV#v6uPTJVn<Wgj)A5%PS#s}SRxS`gnw68T;+
zVCkg!G@7(b{8-w;yXtGDZomT$^PZuVY)6jz$oHz%b!QdLd1yS>WED(EWzwOs#YK4v
zH#XvpR|hs53f$RJA%-|`IV{ik)K@FfWj(EP0VWWbKlJ~%eZ%ny#v5wlH}|5;0Capa
z!vrmsk0Le?Cx5@Bx(A1ca12#o<<|AJ<@_w<dKUSsb?QPLl>pa3EI1-Za4~39-;FOf
zflF`mHl{~pYIEnv0tpH3M7F|6J|;y^#pNGm-a#>_vrG+%6z`p0<9=Q*>f5CULYO=S
z0ll*`HPY5Cu{sg`jg(J>&3rWYA#yF|p9cc1;Ze3nHeh=5-_9j4uxz4!@(=!q+jnQc
zy0^u2MwC_r6^;Z7t7kh$Zcty1E%Am%zLAOCvZ<f;H1zq}`pXzX{|iIqI@0ywmU3t|
zsq4Fk7~{2?seN;)UhLh-gS?|=s|oa5M(Vr{G%&SsVI7Noy7=v~VH@($36}6woc1q|
z#AvHgJ2noE>d~fj`fDIE?96Ks9(TVuS&qxsr;zMP`AK1b{)RWMbt>%yr6Qy&&aAH!
zCB?nE-OLd<mTN!kUEKj`)LHuCS%|+uHncb(H!1G3acien|94`w`koKqRI9WLA>H0R
zXqf8JY-c_5RF;usg^7Q7@KXrWb3Ka+v{iB$%e4qi^<aN<^)S(sjemAXoITv~<m1%r
zPB!*;qmg_%Kin$MtH%b8RgmjA4W;{RqMyS2|IToCe3`%Gzo>@o{~_CK3?8*pmRhR|
zc&Ci%pY2h=fzUL#2L<Hn4&UV2ldd(QLK9I=%@SSR|4LEj3h^SYLMs*Op8t1kjywR1
zw1#SIN&hz4+pb0Txe^W%>tL$PS8{m=<zsOA@$w^%eoV^E)}kQzy-K!PEszM5?kL`1
zIr;Lm+;B;M@j7UB^d3Kh!L~QJ8K%B-w@TTqIMlx{m6(hZ8@MGvDA43^0!h(bp~}w2
zdJ#F7&Cn+xwwzO7&y+N|s^W-Hz0BDd-@)^i)@z&`{^=rW+LK}$hkqK)K|TE!w)1ed
zT{khkqBJ6y9NgQiTQvf=x`z|2LVvYmkT}nX>s|$;5U!9&-f$LN9ILiSwmtoseh@9}
zPxp8KI(a%Z&1(KKv5QlkH|y8U?mI8*5TWE1R|*pL&ycVs%yh?j639DU7@OgCc8<?C
zpJiU$*mgcpdrG^rtckRtZjd>h6-w9DoD?6zyw*jo&PDqePhA7cuRb=yY#6or<)xyl
zOZOzey=B5Iy$7n6Mh<JTB%&%LI5X)-YU=K`rR9$kNDK%2xs)x}Wy<%bU+BZ4+N!VH
z7PdG%Vprbii|g*`^6O~F9AeJcR_GFAiB#Y)0dXsX)OWqQR(Fwwh>6*0E_t(Hm+uNm
zwf%UYPSM7byJ&ILLd7zd+u1?gh_<tBjL<6k*EL9Y1+Apg14rp&X}LYNA}h=9kTTy{
z+o08^drysc{AQ5A4RV0b7GS~o**T=BD|DV`acS}#Fq7^nJUKKBT>h&1<n@e%gvlbU
ze(Omeq(*4%Mck4>d=LKf8vWcuWo6V}aHff0_1FGY(N}zj=DvOb^0iaRjmgfgK}*%a
zeR*bV#@Ycq>zhs~4;?LcK?YL^Q4oWQKSw&`@;F>C)`wWRT>M_M?CBuDO1=LU6x*~u
zuZf?are%LKuwh@f1YX|=_az6|m&^C5$tT%K=J2Iz(xgW_x<82D&)#KfPWkg!zGqnz
zH^#Q#pB_Hj4YW15>T$F|E(!n3I(0uaGxlDnmWyf0w~JR@j!gO55Na7g1s6mu8kVyl
z2gySx*_ny6b@}Tr$T~D}8%Cd}n1i)uBJT3;1tqV5MgAU>UOdYB_*$-&_fN*KCFipB
z-GiJ^qLov#ARB<6nto`%rNC<T)!1$L?%`^f6eH`-q9Y^jRl{th<TR(5u+mRfy$pJ3
zY;WJQZ|)dJgVFv^D}R~rto*Op`b-(#-*NbxHW^~C^MrUqBurC%ubfyVKzzEevHas~
z309QnpiU^edz1Zp;*<UL&2L%;qWJyf__)E$3!oL<ow;!B0dn7ZHC+b^XnPU~i>)mm
zr$KmW&=7mIuQ5#WzQg0^YkBGxn*OAM@%g={$)1)hq>bN<5o&6+-Umc7dB!}<<!%!E
zkF59IB*|Sd<Y1L>X)7vd`2b|9JwE?u@9d&Bd=~}D90@8sNFQgHXC2&?G@6oaQDTxV
zwDk&bpUIoaZxdlk-qMG08y-!bYg$uWp|2w{5>|45H6n?8cU>4FOQ}moAgPwJE6l2>
z+Vbb2inR%#$Jjf$1e-jM;<zc6+Gk=t!WV|0DIt77`BVMhvN`R_skYdA>Rk3sr!;Sk
z&1&v+JD2szy)h8`_FVnS;yU*3Paiw$Bkh4ywzCl!nySvxFR1N-7T-ui$qR%S9#@9>
zcvBhx)}bm1i@vgxL&MdQ8al5GzEt9JZFkrAH#cBXyZakYH(kC+*mNZG?LH39(dPa^
z@bY^9$x{re&7F<0pjG6l{=yi($+Nq7c2*>>_aM`z!3$H^waG!v3iQJPY^ECzblJJR
zAW2KYnDD>nz8nw1DJt0_LY7}BE;5EVLrN0NWUHrdZlkMa*KaQC2dfK%h3nU0D$tMB
zm8D?R48BOx7Se5yb(g5lTcYCOJfw_t@5LR{Hi}iJqi_C9#>IKc;i?v{e&deNhU&d@
zbkn72M=G4XlCLj}{V)EGPQ1F7u;FWgyd%>Q;JhILf_7kj#HZ%pRXaO!tZY7)C>4H!
z!R|1(;2;BZ@4A161x}u<k6dfg8<n?Q?BZRIuAeMD^kChHSiGCV!G~IcN5hgnEYs3>
zzdX?ro)>`3!Tjdg^LBPST*Yslpz>FcQEhL(EevAM+jW-mmBwjDn}y850?&fa&gRdD
zbW&E23)4%lL`$hhYshiA`Og}0{eBmO4Gal3JgwxmZ~6!dpdPA|{8Sj0?V;-HWELaj
z`JLPt3({RLffKQ7x>fTYw6NL1d~YT*yj;Bd!t_A_m4c~w=si2v-&w{etg>J^31f>Z
za0jjScXbd#@+X_|UY_ooj^?Y=!voPj-V55*UDVnS<m+rO@je=v@~=18H+7@l-h(9x
zB-e}M0d+iJTm85OG@j2AtQpL49)IlK(*G=sKr>+xy&cH0uia!l-Z*7FH&VjM|2jNz
z<sT+bA&T`~oV{<N@V*B48S&WmXB#+U6|eXbs5+Qg7c_|Mo?V3tUtXQ38R;l_KvB@)
z?X@eaIaLJVoxf?BIcD{0F+43tSAqFrZCov}W%3{Ww0`q=48D#Zz)j<ND!E>gBEHO5
zw|nN*3n3LYY<aS&#dECQW%-i!48BAP#?RkSS`G@yuB}KqwlN50-zP*I4e!5<S$SIw
z#q9j@Ue#`QBsYwK>M;A3(uajXDXq`^mwEke@PGQjdy~h~|Lo78pWL(r$_}j<*qZXf
z;5dtm{}L%{_-Q+2k5ZYxwgoKc(u(|q=)0@0dbj)?t#-;VPv6tIMUy2}UtmfJtz}Tv
zW9uxdpj=vK;{eTb1SS6S|7jD3wPi>4Dex!U(fJ$;!B+j}!g(4Zx?#VHVpuL3GAT2C
zP|(J~g=nt@U=AzQg(bzt&Rpaze-t-DeU{Ggpi2PHfQ}a)BahO+!2bM8)#O_YU?~h7
z+^;V$*YBm{&Xh}A6IXr5;bof#LnL@NK&m3CmNl+$Te{)a@Bm!5o>C%P&ZYcmwT%>b
ziacLVr!R*eE*G+9Q@qwUZkLYc8;6@urrTd&QG@L1?vVTbRwjx}<;edfpi^R}234~X
z?a6<HA1s8xnF?{2LQ~Is=Go2HUUcJCe}&}`6(7#uAbNREsotx6BhiueD)*z0yNQtJ
zt>f}OF5Y}|JAHv_!5PPt0h^oQ5)OtNU8o<t2)N!iM6a5Shkeo9kD-)-cs5RYl-rJv
z?f=Kxn>4qPZF!zw#aEGfZ9#@8k{WvF7)V0I6aYv{+BrdxL=Xg+7$i~OsXs(nEz){X
zi(1sCcG<OfR*Sc2>+Vgi`u9KQ-s=vMii}QcOS60-0&u^>8UJTeYHVYa5YKoC6wlhK
zl(F=pAPc8}?1qHY)x8q-4VJ%ln7nlL+T)M`ha6Vq@G&lx1KCy?q_9a~#WwQGj*>#F
zAV*E4{@D`Xp*}^gBB6@XCisoZ3Dh@J_125O_dAnXN%UXQ%$Tr&8)Q1j3;gIm07$0{
zgY{w|BaC`vJDYcCw*X@*s_bC6=X+^HGT%GiFcxCTc=9MXpmTJIP`mHkVGzq?9!I_~
zb?W|-y;w64>9Fu*o2sLzFIF^sfLNmf_HcW7mtaf^Gv-yg)9cB9nHJYrVK2VbI5H5I
zzO52(N_0Y^ltt~`6x<HDg;N5l9xv8gfNv?;aJJfX#9h<n;wgKT(s2)dW{}E`OysCk
zBiFDV;x~#|Ql2A0pLmo`DKW779Fo-9m?47_pcsOP2HL*f0)QbqefL*|MKQX_Q5DXJ
z%#N9rQPK<R*$U)U$R*H<*wMWbI|fZr&A)RB%5wWD6+$$84~0I`1wA$YjMKDVy&QV@
zim8>TMRy#8v<x&}(oLw1@p?Q?y#o|T35Dm)b`P&7?v694LOM^v&TNB`#1Kj`+e{8b
zeXv3R%@c}aq?&FZN^;rhulYT%MjhK((QCy2LlY<D{Z${~;$d8f-y-cIF)=K9H6W9e
z2<4ANN945}=fE;Nwl#zzla^)v0;VetB^0J4w+z)D@&KgsQ3FY8m+ybex5du@9)Zjt
zxH2D@z#204i1rYL?w%Z&GImnB#u$Z^CDEVO{99H)==hB;Tdr3+{Yc#J4cex=9R4tJ
zW^^vNCZos$aDu-P#rX|<+0~`CgC)Q>9|Tb)Lr10CX8!kk{WFZCm(V)>7B;1hSCxjm
zsd^hvMW*N(DkQGKOk@JxQO{s>wRR(C6X~HK8Fe?C(zvX`9^2BivUW1fKoSVZRWcF$
zf~f>+U~tskJgS;s+i7~1K7EA85?n@kExj}9rV@p_eiRE4V4sX_%pKGR)gFN`DXzhP
zf|*iqM>q_i5E2Iq3Z#oKN;m9c4(V6VN2r`9sJo1g3SHE`pB<AOECy3J>ZxVNF&@$o
zmbAL-iSC#zE5%GS&Wm->5ga<P5HdOpN7<}Hj^_#RkM~&`OqgO42~^rX7cxfH*OeS{
z#rSMZeU(e3)%kI`Fre+mAZ-W`3kn<Vm~biuE!<nVU@ay}DzGS9O<9?+9TSS*<FOJb
zR$!c{nG))py&8+bX;5WI`w{`ZN2G95%aT!}d1a>&B%#9W;H+v=7g)Abh*2JjmO<i&
z15f=E0Y?y1AT)YW7ygt9*mD#SEJq#j)ZkpbmMWKla`V!JXQJFGikL?JT~B{W)r%3_
z8!4HDu;5Yg73*Q~Yt{f0Vq23cx(vw?V(K<6jHCpP0Ac<5vjtEzJ7<7z*j>D6j^rKX
z1u9M~u59~8?-Gqkz`N{2{**Bx5+T6aDR?SKvwh*fg7CE5L8B6`Amof%obDLUt&b=l
zo(;Bx3rQ2195ct9{C`LK^iq;*`k1@V!4z>i6uZzIS!|nUYf2}pcoh`*m6&E??VkZ#
zPFr$@yZ<(xO&r23vmy&liTi}l@J}g=3tuM@54LHxe-5y*6VTR>IHJy&DydtW66DlZ
z(UvLqjTxu|;gZFWFUrL#k&{;K=!fj!NW2wteMkNl(aB*8O`2pu<!$ijEupttG31K`
zJD_}4W+4P!GJ(qBhotGUl|&Twab;;V8O%O1m+Xa2q!h_SC<GQNMxF_536+05s9G<~
z?UXNv0^}9gbS5s|67&NaAiIu`nnCA=DhAYoqsO>7uSE(G??q_KY<s;iZc6t=MSp`J
zB5L~y{Gun}`<-=31HiTl$0vpolCD{RI-bPZ6}zWAGPPnH(aDAYa*ZHej3`6*Pp`$E
zOT!ufeg#o286<%I6|1$pL$bVyq^njTRWKxss~!TMIxa1jMi^ey8I;n4Yo%b`n&q?l
zO&B(^7{enexiUy!$+^(6;OT1sdpzSOnxH}sYN0Yv25{7yw)1CDsGg}Bd9Qp4eHE)R
z1{GSer7J(xP{j?>lWRJrxJuzZ7_7Y+|4$OGO8)0>k<8KWrKpf^&+PM;?n2=ZO#H7Z
z9`gTKVZy>R1%^%e1YoMfe|m*b0TwgEoR$=-d=m}P?j6J0&)Hkluze=UL!;(FQGhC&
z=;hG`=XQkx&WH<ub^Sup=KMyZYl9U*hc==Z7BzVJuEGJrQO85!N{NJU^2<vL`K}3}
z`OgND@>|`T)hN(8&GKo)5rUU>3-wS0`<|ZZvY}u8OwIl$-<86J@ui<tCA%tJCpIr$
zpQuWI`@xjJ{fB>SoinX-LyEoI1<DnksjgR8KusjZED@}VYVj?*F^_-(Ey#=z7;ew3
z+Bt&NMzZ*o=hTf--=`Y#d#bvg?^DSjI=6G3EaL^N#|5D}f<+C?O64~lEhwXv9Z8;|
zl60>Ym&-zPHjCW{O2)jqd51XBU8QTzX>m>0l;Z*%msK9qo`Yxdj00;9aDr_DieS&A
z(Im2SvZTyGcd^ueuXyMLpXG+m9VYW`@p-bIlmN&FADUVF8iNwEiP>tTqR}p5LILq3
zeX)2fxipM8qadA3ycJ#vAxNdlsk=0Udq+k9>2cn^jh+x1RDV9b3#TJW)-z~518}fp
z=o^Q`zv<Ry)<8KAa=hIMz;rA}l@SWtJ!d!;Q;Et>ICPLCTy>FmY1g2p4LWgk_C;sY
zaf7}a)XA&GuZfKt%50`8E?+C3R9^$^X88oSL$@tNN}6~_u?{O6urKgkh{kLxZGi#I
zM8&ae=qM_~B$JS~Zhj0w)VLb{5kA)9`Dtt{!;cki0k35bUsO}z*aLrm`yNcK{GnH$
zR7PP-Rx6d8yQ0@;7fWwJe0PF`F8|v<{e!0g&|^H=q$au#aTX6D_3cnzR#F!vgZegX
zCI)GZ8t=Z=gczozDQZcVJ5_J!_o6eV_Snz`TCs_ylnv}4y|YMIRJ>|r7R*-MTXs<B
z#lxZFLUfABtz}Y%0M;Sp<#ZC5OnP%AZSWdZweJt%%9UjAeD~|_Z!3C>@gdx_hltW1
zj5N5iwsYlckRwX`K!>Qfq+cOTpJ_Kq^CjF}21avW)_?Mn)_mD5Ny>`{6wT&N<G8wq
zJbB;xfoY;KQAEGcH?Q~UYb4Xa%zm^j40V?Yxb$q5Wo*b|f1f4dq3wq98Fjz+91C1)
z9f`Pi-vT_(D<Eb<`1lTjX{V|*XA24?4$la!js{)-vN|-VWj5oN7k8WK<>Tsh!tTf=
zAumId|FHfn@`oR+%R6M~4lSlU8oFLEsfYZ)J0OY&QV@U5>VK@p;lUt3dhlrRxIp3R
zTlN8C-tns!L1M%P-;^I>V_i()vlDt~m6Fe^6r2(~lT5AI>8sUjp8`jyqvkd4uR6Cq
z8NQ7~p)XWMNd?zzjT0lCfU?k&l%`iWa2N!0YYQd9KvR6|b$9Du%1&-H(IACUJmu$o
zCqZ^do(z^C=;6GebE=6+5<h`<DCW)EM?K8Jfz=dY(PJP(G*=syZGPjOFfh4wi``Ro
zFlFi)#({c|GY9~%Gj)(-+8E~yb~O1mo%2Peh9EIwYkfjv8em~_oM=ErJKf1YPw9yp
zclhCr;KyivA|CAt;&SWN*QN!3VovL#9t0@U*L69xn>Ed(?#~DWjVc*~xoN$$qzkFp
zqCIBP=nR+$Z)B2F@kmeG7HQg}2H&RmQxd@oAbf!NmVCh9T-`HAgXhTfqVd_iwYjBu
z5d@#VOAm~TD^0?ro&0c2e<+D-{yUfbaC*y2xMvMNr7_+8^h!uwd>!BF-!g1uoSxal
zgTB?T|D6~7N^3oY5QLAISVyq|960ULdwA}H3PmsqB=Z+oWENVz(i$BVcR&4u4(giI
zxjV<o3z`E1s(rRoSJfp%L-sS#2fLVkvS3*^I3D#^*0xZlMcWjDG40i29b%VZ5EmW3
z-)9Z_<DitIOk|=qK^b5!rX8R;!N}Eyf;1ag7c&<TXU#~}dK?Uj_jk~+h*~F)y$|5T
z%Hx@@G?P@j3~VDkqz1%*3iGknq@9D{XfUPn!6-z}G=Q1=;?;%q{j+VUD^t5QA5F-U
znys(0SI`|{C4wV%om-?(?ddPO0<lO1i4=hi5nKJu-b-SaWLq6^g4~-iyN9J=C7t^F
zC|vqdFg?$B6<uG^xa=CzF0Q^#{~55)hXykL1XYk@5>czNF7Q<f>&F}hW#tbK3RAi4
z;b}nvN{pgq`vB8Mkn8C++yVL0X~fR0DGP{fGZLdC=gIK3Wc)SBPs-uu;8?qwc;!kS
zMEcSyv2Zq3Kg9ZiUUtBerOCkZ$>=v_h;Ct~Wx95nt@Df1UYFu%dbxCVk8?UXlF_i*
zwd;aGG|EX$@Nl_@J<_ei@RcvcABBr+{6AcoUhk+y`5aav=Lr;zu+RF(avqOH7qn}k
zrIJl6$?wLGf0)>V6qGMZD{tW1Z1`EZ36&WOm{6EYC)0IjVx}i@S_<P248}XDBwD5s
zm<=kTr-5TsK5!5yQ{wJnf@1DnJtgMoX`7!81sq&4#2mA!HqqRaAl`@zLBH42JIro|
zXNx8d7}kTBrzOt}S<>I!D!G{sV6KZu$)!ER$*{6w<SfVyHFCjxLZvNsfAxE$d88cQ
z=?!z8WIFIyV~02U5c&y~`D=}^(GTg`#|qsjWiBc4D(Gt+J_ujHAEsyOBaB8nKVlZ5
z<LTHfLFCTVISsC4_6Ds5=DaY5SN*+ME6T^KFCGdUBNH33K`7k<d=iG<tBA{;bQBhc
zRK*ZaM23mUHe4fwJCZJWD~}mn)9|vG-Xq%{jDJx4*f3(8cF6V++C(Yu`ZQ8EMFuKs
z=G(?{X07rnyiNdsOX@tNKK=D_@-Rp4!cX}YJV+XLk2VYC3fQS8PeW@~l89Z$&jd~)
z9mAPxD{!HVNSovoU;05Pv8L8(DxDcVrM0D=`;a(y@fGoA3!;B5sDSvsTZ&O;TN2{e
ze9mYimm8qP8fy#YAzCtNQQR2Y<l(z_EY@0_>Bdza70f$Wz1|$qy9S^m_L5V?z<NLB
z=zeeUnJfTx`$c4lT2|(1JO-`G-Vbp5&d^Ugs?euj_T-LtQKEB6U%9Xlf>T_R-?55{
z==MRA6|3r@p&MP>Q9cZ+wZ60YlFsOg%47I>=qken3mQsas*38|rSrW4T8xIlDv?0$
z&2_K*>5%Cd)F4=K_f^G=cNWqQ2*CoE4(G)s{gxwVsptQBamCEp(?>>wxP#blI@ze}
zPbWXKa6L4M0-stm!enzfdJjv+zE6)w^m3b%-Wh&<EPlkR0UL&JeWsy~6>_bbm)w*@
zydK|NT{9YGp1taf>dn6)RNK4iLwbm#gu+-B_$}mBVsBad6+S`2l2$n^t|vRxM&Ip9
zJZPHWm6Dg%kAeNn>-$nHvM!Na-@=bVopaaj0eSPL3kW2r+^DJ4B^Tv(O2>hMDe;;;
z!1M>a^;Pjm&r|cJTh@$$vNQ#l)X`1}vu0G{46wuxDl%e@G))kZI2bIid@9l3ybUoU
zQgNOExdc81F5@6^55C+^sZ2Gm09*^r6%B*n$Gm^1u$QMgSNI`~@G$FhAD$vitsLxv
zgN86PgxsH?o}5y7$q_=qMP(}30$ya%m>6zV@^u^lp$IFQW#Y%#rPFVjmKOQ(;H)1X
z3#JJr5(~Pu_Ck@=4xj??yi))RHO&u{pzEc-yGyd!Y8=l1w1F=7*%8{a`DKUDEb0nm
z<_DGrlOJuqCJRC}!xyB$74w}Iy=Cxgt);8|ns9}rqqZH|___dp%V46{Sx=3Jbgny7
zhfa6{vhGK)!hDtqBl|G;Y;?gGBJ&688${atO-!ZPSI}@_Mo6;NXuyI|*e@P8^b6LU
zBWP$d+pIPi9@Z@TVE+)@<#P_uKtH!zd8n8oKDm_^Cg>dr7ERNYLSkSarbM){X+!s*
z44Msxm`0%FJYj`6vIAArP97RQo!XEgF@3eDWdP^oyA6R(V1ow~4`&d1^r_Pz*owcP
zG5PUTvyE`{Uajbl|F?3^2f>5^S7H#DO?0`H=@sn8@IGl86<Nbqx<W-RD24`tvRlF>
z1(9feB?eRC4&mTm)5MU?lLJtp?Zlr-J+w#Ai%1Q+?&0>zGk&oxrZv1}6a|<so(-bb
zdIal`XaWI3iIa}a$O3F)1m}ZKGg@f;Ayz!*yT65*;O|L|`8xRl?S=0`o(SP`;Yw-}
z_uGS*mTgZ$3bt5Tlq>!r))(HVB%)dS#)6n7Zu9D2CJ$eQM!;3CU*<TIFo`EKa)cnc
zk%+GmvqY`3HMnW&cBH_Q^52L2iv6~B`uXQ*-(nNqtZs$dZEzu01^uyy)61!;7_JVT
zo`!rP+dwv~e~NE{?Xw9i0fJF#EFBFR3Vrb+oiNH%RocS|?a;%4?!VV0D~$}p7gF|K
zJZE7Ht?Nrw%YIWRF#w7hV$hbGL)4zJ>?U5r0JNbsptlQs2l&T2r?_8~x00%a5you+
zk$@Ukt_{X(JYsFhe}Ei?4x{N+Utx}fzY`FW{gYfM3s6Eb-4HP^yJK`J?mpefEPq`=
z^{uaIDKQZd(TVf-`vy@nB_T~l4l9O8)Hd)V2rg$&<iwXD=TQaD+U)v~hgM-q?CL%k
z9VOt{h=q!ev~@<Rz9oZGFxlmFx1mvP{FxbL7}W-%j7*PO??3%JOpWW!Yc{Tu2AYUD
zeUP)=5kCd?Byl)v%$b%uz1v09MBPN&Oq&6U6kZp&L#NkkNhm;H6hTcLMWUht#xos6
z%Q<-Y9JA6k{oys1+A}+VA(l?|W~YXagXUpom~1M98{&+sm6i`I6?D!4d7i}m9v<f8
z?R19yKsRrhvBDIfnVKs(Y#i^7?u0D2Etl7$WqzfY#bCA-IUAAK3{$;da3vb_gdo@P
z0wM)Naf}|JLsO!}w+vAh*zjP1xWo)5OK7RiX3)r3gCdy7BLJNMPx%>Eh<y(~Q0<W~
zT018cxbDjNdNLk?JyVdoBg3JO7Y*Q1xPOJ2N>gXjZjsH^Si@2KGml~AxTc3-ph{3|
zX)a}TNE#jS*%fQ9r~|FjWRfp!e_voEm6~Q$`>rg0lJr5TVT@C7C2-YX_u=H;$}sIW
zjK|<4YGN<x)|`=SQQ#iF)x1BcZ^ObE$hQN1$fAdhp9oVbzOVuqWs7L0eh%}{zo9s_
z=tzJWDHUv+4(-x@4DNz6b)aVS>pTD?RKM&YPAE`J#q1kWJ^R3e*9fUV%L?tNA3aec
zi+bV#4kx_PHpGYYN0dy_VoD)sA0jW&AvuGirrDU>HUpeRfAT>h#p%6xUF;o@=$3Yf
zWl&h6pz04))S{lk4OJ!7lfkQWcS4%8Fycg!Ju9lK&$EM>Mj?Ps6O>)wwkxnux|`e*
zMmm}UrHb0OhQ*2!6-3e_w-Y{A3Ly@%W&-H0{?0|nbSm=|E!&{E6KZ-n=L1GNwQ1?n
z+={<?^{@Sz&~)mQD5;R^*4~@LQ9H`cNnNMc3{5mtM`n?6?+a9Z6Jd5j_`cn%(*~r6
z*BR1UxO%i0fhLPy=9G0RknAO$^<Mxy7V_QfL+E#hW;Ok0XkhUcA3C`2NQWr0Li__t
z6B9yzp>?x`Ou~mstD@<xI%rf*g&Qz`1YyQqsVyIHh!;WFZr>1n2o~+~!L-ZshPWxK
zif1Sz<n(h^4e!%mh_oxR6OZ}-;S>>t9L`_)CXb|NhIN&;x@I0VRH}!q&QuL`g2}Qs
zeQEj1(B|`8x_F0b!jnTgm_M+8(AuI#4-KKho>wwjZK4;L)t!~>p1$iXUS-SA$Y-}c
zD0qhe4Z~c7t5c!h4DAId=rggvV4?VWxH^1Ey5WL&m@tkq`!?JUmxtVKD_Z~@dMiC4
zC09_uNS62%`Y9!$by?-dAa4zTgJ4$pDg6&>3ar4lZ0_ra3Ntz;ZaMLw%k}>QTbKVu
z%mFlq9>W9?|4{dEw43xiFToSPz<xqw{%In#2ob^8>RZWkAmQ@j${mBDpA7|W)_d(<
zr-u1$X+QbD{C9c_z;XWxx4+j8YsTLt_EfTjC@od(DW9u%3Y#i5My!Yf)NKeNRfQ65
z38=mG$~vQcY@bLe`-rewPid!`MBv$zWP8S2BSGyjtJUf0vUMlnJk;8jyz{5I9N|-S
zW$c+EjTz}Cd)TDD0HlVHs6AG<6q7g<5@$4-erxM}xljhYn~<?}V0Go>*=(TuB)>kX
zbN3}ty`iZu@<T`{39W2DE|}Ld`-dnOicZu@X0~ma1<+;S*)qH%>wi&G+jy2>ql8uH
zNuY+#TfeYW-*kXT-I%o=e@Ye-`p^2lhBB({>=;}A9`c`rs*iNbQlp$utDPR9UV}7S
zvSP_+$w%8=1JS5&WjGV@6e|gJid_fc+@KJZ2%czFlP>~d`;?&No|9l!=6~3MBt5hT
z3=!xs7Iy|Q1dxwiNW$lfS$kB^f&MgF$JUgtlBS~#yVy~;J*{S#M@3;=W}OPTNIx{p
zJ(KT$fD@Oh6Hb4+k5W8Bnn2Emfe@gx<{_1n0J|ElL7j2Ws*kX@mgj|U#TC-zO(s!|
zZqGn|=v$1tXU+A>8$=gT5%xm!Sbo`N(7*s;;k&{Vj#Zz0RyiHiM_@;lf57*&3moJ-
zO-e#srQn1Z{Xt3IYe)_3c?SPht3L16@uIp{8>&<A<?rTOMk9oiwDScMv2@QW9VC6D
z=^8q$r;1G7(ZiYTkq3Y&M?2!DEl_{DyB(7FTRIQYdMJpDOci*QO{vDz%xT4m(lNgw
z>RX$VNHn2r5`zrJ2dxQ3K$bU1CTQxf5M`3(Ob}iN4$21Dt{RjFIAJp9eDV*hPb{)@
z|4NxTZeb9N&h5o0v1FJb++g)iUaJieV1}qW`&?UvgwE+9K8buY^kH}M{kwpD%+tuH
z(IDrg=32`%LV-3Zi$O_N1!gJxOU_}Y2;`Yc6Riw!s~&+s*kQ7Uq*Vi{$Hdau3f`_>
zpQoLxCxE)v=@u(Dw{3(zeb)yXWDOcURS7`pQ8%e1mNwgxh&W_vLW<q#cI9LiiU%36
zkR3ya-v}2+Ic9RbTprMNnq~s_GMNL#ef8TmH^;&gDE%M>*W|=_Hx*h+0Ta-iLW!+O
z{9dS<6e}B2>jT!tr5`}cKEe>cS^@B!G%Fh3!!0pO5Osln6tHHcHRGKK>(Wvy<f3c!
zc}q`ZmZu8x7IF!(@+@iaNgg8O=y1m|9LQVa)ib=Yn|~-wJ8%KYykm!J2|P0k%GX(0
zBQ33jFDrcp-W42W?=rvd4H=Ml7(Ml|)NH_Qh3A7%5X_Q!N*SQhAJV$s?9lGoDiuBD
zaBIQ%uBdd3m!1_KqslNK?CiptT=v1fVE`4Fjc70U_F#hwS0R{mii@iocqFKE!pcBn
z(3TqtF_;a{s6QyOfrcllGnN@9E6RVi2hIu?7~XJ>)fpc4_5gG`V}O&olxRLk5TBS(
za)Q{gL{VvD5k(^>TFD54*r?Tolex=dGdO3U+$x2L562V6Rji+mS~VbqU@2)16Vuw3
zWaN3ihQ_mC@q(By@EA1{gAx-?hZ!i43$4fL8a=RQwn8c<{R?niqDxHFrV#yLe6bQn
zbusG(tklhZp0h^)g8Glo1kgiDc3dA+OAe7c0p5L&ijGQT5Zg+<=_dbY#g+nghCv6I
zQBg2yB2{y!>jXa~Y~4X-+j7ehU;r`1Gpl0>fc~xlOD&(zf@36ZfOLmMZ}u@zy2uJT
zO>$CIAFSM;YOni%Av65k&HHi$%L}*cBO37m?Qv5E5ym0nM4|9V`m#sUExmioEuE(c
zUv^FJ-YfN(SXAzgmvffvhe1KZ`QHr6*3ev#QKl6Ln)b8<7(>v6>O5{47#o^+f@foS
z*JyV)Y#uYz$dq&(D`ZzKlGb1zo1a!0?aPE#6;YOhpd`D4!yGzBjwXMYn=4u4qCf$)
zG|cK{Nkc>SDCzYZCPZ;C)|EWoo}KVJvLrC-AY$1Q>Bs=bK<F&yMt@2=XlhlGJJ<vw
zE>QzyjdGMu0il|ST8Y)`stK@w0S(dO%Ds#8bnqcGdBfV=cAIB(kfpaLAv4FCZEhA4
zzE~o?q?{voZGK*V!yHXvE0vs65u<Xv;3tS0K^b+(znTuoSBwEe8MuUg)spGY`6+xL
zenccx&b%DHm188#0YEtVOa3EjO6?Vc-RC3XdC(RIX7&S$%tq!L*udnbi1BEC^EMm&
za$;wM+ahSa;y?xI2F;s=%qyTQE~nmu@%(bQgkwSy-vxnJ!L6_fg@^8O2a@T(_nsC`
zh)p<)(R=dmiJ!4;QGj-BiS7toYqVKmJp3!#smvLX48hxXG3c?jKzj><1LT{RbDUDD
zt)KH_G&bCtXNy>g@kjsxh<i&T5k0nvoVHcLw#@GA(ueL-`Yy5xPRLt>ey*e{rt)Ex
z8^HqEoW`#)j*UPHbVYTLr83=+1!pwEm6TEp0SXC1wD$x={j16N35#PEClQ$|@iz7$
zQiSn}CYFdQajtNxjK}b0UW*fU#uPgo1bQTqer=&5AW%PBb;JC$qa%+B4jKzZc}+tF
z=tf}u>eKNTo*QB6g+bKCvLKXb6F=!ws}77BA%Gxr4Tn_hxJr}SAn0Pc%(9<sBB30M
zUL&;u!ayhK<o_E(5iGN!X$MSb`p>~AhcVtJpA$tiU)s#P^Z}6v3TKP2L?&kGk4!$q
zchO(MRYiqNmjo<G?-XX@48eef+l6XZmXtmvsFP$JACe%}T#YvqVsoIZs^FJ6PD&AC
zA<{?^Z(Ggdwi!jwvCmmLSRnU?3YUe$h04a5tVvgPi$s6nE9#~6*%^?(z|n2$q46E!
zzF;HSY0v&h#K7$whz^E?lDx$OzZI|-e=aGA*djY-$;+*0HLFpG7^w8<_##Aely*S|
zF_Q_g7Cgg>uW48`f?q{d(eQ0rm`vj_U3vO}(mo4Ogjuc9fKCC6I23P3!IROOB)Zz{
zBlnAgXcw1fuMo47@4+vVyyReHs;LQ@!aPFgp+Qi@x;0xUuZq-A2Yl^o+m<6gB5{gj
z3^K(A6iQeI<z%_j>r0oQGQba1Vq<LTzmG_0;=z5Q5g#}A4^nK3ItQbgv#v1rz|&W0
zlgtW3-DIL*_AaIj1EJjR{mdVzU+ti@)0?O?AX7slw<FJ~4>Em$`EB+}LrobGyd{#|
z9C!7?y9o=E&>(UH=@<X+5mrOqw2$)c8Rk{XP)djauj!;WIOE;1zOMx6v?BX40u$X(
zXJ~I)k^Y2sSQaE-r|rQ=<R1|OXtw3gS#N$FJiQ(;T9|XVGvJ@HoS@eJ5gRWjbnaw~
z;%*MqieBGA9HTC3gI41>d4uJPNC~G`TpJP&D^$o#cH?ng`%DbuX(^$^W^}joWM~Ib
z>SI+$;zt6(AcSTLl6Fq|R+JWeIj9i1iK-;CtM}YkahVdKvH>i{4Y+Bi)@j{|I~(!(
z_Lb=%eEC{Kq{&LLEVQJ8MZ>mh0-AJw#naSULS_m2Aersu!YC%ef^3{KuYd|oNJv1U
zT#9h+w%^zVlZH_=Ry^Jn`A{laDW?OlisT3cq%%qoI>|{;E3K%pmH5&Y6s016iG07~
z=a2xug|f`?t+d)pcko_~o{n31QXJrmLw!w9A#5zvs6b*Fr{Nz`bP|gd`-tds;zFC!
zVdqIEAqX6);*3vKk4kxBj5&DO0d+>94G^xXJg_TJKpB(>VqCi>gaN$;ON75+)ys$@
z13+m8)*}Xj(2DsJ!^}-4n(2gXg22@-_yVMX@jkb+Fmd@_Vac?1#V&EeRoJ_e9g|Ez
zA+5=CeDlF{@rQeEjNHR(B}<07JH#bwk0N<B+DQb5LQ2n6c?m?Mx(jAys$8$xZIhH4
z@6Y~@`A5>Tcg%_8Z$0!KE7S1V1Y{&$LS^$K5)qUOPEz+-*$f2pRCC_ZJ)PnTd+?F}
zB_P7?UiHuFosNliI@923nyEoeuTzsY!HTF<=k9C|GiA=E+);I)|G6a@eO2x0odz9k
z8`_@LVMdQAk4(o}{<jKUDuD+=!G$`LtU}RXTY!2t8A%sU7ukm=aSSmiP+cB#JT)#9
z&p@&=1z6%oSXKy9bB)pz)DPBBU!?}3kUuqO$-~C1LR7<#{fLxnS*GxJ&tElf7CZ6U
z!vVijyC+VTjI98z%a<MW<E8JzADleJ@WYq+0*bf8d{2f-bG#|M?~)x3Swz`zNR@+C
zdSIJ~Cy1*n9FPRqBMDy&7Q|DMFNS^}H9z^<NC)7cXe!%fGP6N|m2obv9pm2IXae-9
z*vt_evA!g(0Bu#EO^8_JL$NY^N5ge|2f`_gWwDZ?mn$J&FpTqG=NZYn_y2Zf!^h<g
z5&6T<f{iKF@o>?$xvqfn*mKV82?cZ-+L*lNnyd!_KeoH6s)?vul#sw>b`);=!l1Q4
z|5_?-^3WL4(^>5}iD=cCSEl>LPJ}eoLSzxj16=!A4SkgA5Hw5sDNo?;kz!Yxza(O7
zs2o|SBq*dCRppcleuMZz-&Ic4XQdOion$J%6-DbBcC&}dK<#tV+KTLm+5~b(CDO3K
zz^-!=Kq!=`r1XWedZ+oM^c{9%-fmg(<?3Ik@jJAmBbODG-He$w^v?c}9Z{I(lfWAS
zkIn|_d<E3gMvD!ZyU=U56}OAyrFz*b`vqS#N+r?PX&;iqsIrJ|U}@y(>pfc#-Bq%D
z*aOS98S0uOMA!Emrb1I9Q*6fHkanhV6uGI;1S|1VequX-FBG1`p~_{QnFnUC*hlAc
z#et8*pUjU~J#r<E;@KlqIZ!pP;?(nJTHD!dC#%y%%Z8`Z6cYupCCH(1K`h)T)9@xg
z<O=B}n7Cx)S0sL4vn@1n1c&~+dKSyd;fGE@0yD$Uw#Bz`Abpe<mkawG3>2Y?^S8!D
z^;a&S6l1~G+~&jF7$PY$q%zKwk2BsOJjK38p~Zu{BVgyGX<_u}g0TdX7_1sXNu|+9
zljgA9FFo?BXjOHbx3RH&T~MfDF6IEZRFw0GrzGu1@<g%(?6Az7w6<TS_#yZhEtRwX
zst3x?5D_p}qcOAwm);oRVAanCt<h)xLsQ=!`a~e$yMX+g%8~dALX8g~cS?r9i=>e}
zAmHPT;B`Fp)|rN$dxd62h2hp3V(9Q}W#v&<(ZL>2(dJ<d&&Y<M*%ZMGlo~^k^hByx
z7z%5;fm2X{&{m_V9H>#kQS_gHH9tp8!^*2Ib(yP-NF3C6B#HCpmUx#I%#UPl$>GD|
zNnjZgAGwlDtzSXKsQOiJtB)H>7>+QU5HCTRtKQ}0cVO};P)M)jd8}`Y5dfs}SO7uI
z(&s?yv=AXTl{LtPM;}-=(U|e6K!n-{?Ex_Z{D3-ey3p5Xelg&VOi=Uz8Xc=mtRwhf
zhQ_FT33bFAG;kJiB`HA?5@dLUgE&yX>d6&m3b;b~WI#QawmdVZwjAdgBXh~<U5_tP
zM7GwxJvg+>S#k_xCa2MEYz7~%iaD#NevLpw=pv)k7LdpPTgc=2)LJ{znNqV2S-))+
z$C;?YHF@F_LFkp3C##soniTjx&|er~$Iqy4X%SwCwq0s-6FQXf4V-F%oAF{m5OGv%
z<W<u*emDVNWA#E;%_LV)MA0cqW@hAvdk{5n`5}qpG_l$-1iiG%pl`vjX^czMgt(Z8
z1nDXvfxuN8!8;bA=XW`&_uM3{`(W=KdP=$x%}+lVaP5_U$uf?I^*-AhF(c?j0mBB7
zZ=ItkhrFB3w(G@rNUEQ%#nQ%_+-G<;{-}i&kz%8GtlJJ)+3Zw@iQ}1%PMWy*og86y
zl4Ix5TYuCeR2o8|d`*FsIc+I~VR_OG7RYPCZRprm-^ZEb3id!DI;1EZTVWdo$Py#d
zAFNU9v~-%_<=p&VX3tjO8AT8+szvn#E>p~%gT?H~EvP<=o-hge3c`)dXARV|y-m)8
zHChO(ZmAPHkhnJzgFvi7w~#Xp)ZpJKL@OfoqufJg^*75019Fwxj*S!Is!cijQ~#QH
zxj~n3T9JpOl;?gBs|7sAs%CheCFN9YIX*mKXzIFHA<wu`f2>m6XeJyIWmtL@b>t`5
zJJ#zcH88S?SCvGbbb0hb6Mft0pDGQ9ECoqP3&E=qR2W9ey(xW^Zn~l{i3Sn9{h+Er
z;1PO2iK|e2E5H_^UN)tEyS3+5K8t<>(OH06*&o%D-=V%vfouLQsS(Crh6BN6Jzsp6
zm5HfYDmWge?tMqS;YqKrwLVW}EQtp7j{qcEgA={=47BvAS`*~VhcI4?0!TI$(OAYv
z^iQy?c82v%@(0-pdDd1NEa>Fv;f8gi&a4}z#HbH#@JI_(M-0Qsk1`jxQ1nPyBTT9o
z(Xu_Oj0`4(T~{Mk!X1nqw9J;$CXMg1WI@j>U`gI}n`#@W=K#vM(AiGn;;krigqf5g
z0o<pjgP874*4NXr`x=WMSII(*nN1!Z;yRF=p8)zg&FrET|3*F1q_{FiA*P=2qj3M0
zA{J5}w44vw{)Ms17B|Jr7rsGgFuJl?y?+s2f;@}ewVu%lGV>xIp5Rf^3qKRW!Pq$I
zR=Q&jL$gDXG{|DV4!<UZ(*AgmeOrn>gFf^4(({J8HlsBxMpN66FbKbzrE3u0r-%d)
zTXqZoPZXg4*ZgX7DEvyv)>skP0~7~{-NN4$^HR#*s7GOTFu62F8az|5%*T*!CF%_-
zk1}$6d+T<cJimCH@w_M&mYEZ;!J?BDDT_?jEP+nH**$r=2V2~$It<~*vn|uYtLi}j
zcnpAo5$V+p;TR4kmxTf5Kj9rpd@cqu%9H&Kp#pVN5~XS{vAc_OPE>NtV;j|n1=$l<
zi4DC4byS}#%gHCkLF`)xQn>}p?9cKI8-l-?R>1!-bZLO_>{U#MeW5CkSg9tioWz}C
z^r(0}q<E5I-T~95xoEl}2r^z$b=w3MJ5~&}K=b2<gO!n#Y>9Z#EVz-UYbrvd1B(__
zWrM^gs0pd+pJy6Vl>YW@I4n7=geVocr04zuQ>%J==7k|Jz9RjT;IAAMA;%j3_p*(1
zfXdq*<xQ^=wqV13&M-lcS^2=GeO1o@SW_ukx}I(EO}^@9T(Y?7<f`MtdyD=AhVUNu
z_6*45++UW56i{sEPg0hE>b4P}ATm85Ha{gntrFK*(oH&6aCuQqKNZv25gE?J6}rQ4
zX>Xup%xE<gNR5%XVoj9vXCI)2OHViUUI94Om&iC&tcx2{If5e?NCU34O!_2Wub0X*
zAl4j!n=vLK^;2_5Wd5NWIJkItJd-*_e2-jB#<1G()UkXBHCnKeD4#6pQ=Wmlr=5_W
zM(yixcf2cS_J*!-p=64pIvmW8^kG&m8fvZV+M!h|lc^dYaHs*=Ri+l_*k}5P`Hu?c
z0W&FjO11NBMv@TLcIgqQZBan1%^LCtRR|AG^+45I_Jy8P9g0vAJ3bQIz(Vk?a$q0B
z|HG+by7C<x%MtQV`aKwvrM3AU!(p2+d_yp>?M9l{lD6W5Ro!`nusLpH9)CPz47X;@
zcHJXZi78WS7}J^HJ5OY)?n@=bF*mz<R2Ik)#+!EyJvu%EqV44E9K8_HL(Z2bZLCFq
z^E?1s<_8qANz@WBS9luXVzaxD9O)4>J^G+4vLPyxb|fYa9T?^#6oWORK4$|V*R51N
zl)~T;nnV_A-M~MaR#KJ7K>KxQ1`ngP2%cC2N(--7t-(^5=!&|Ga%twLx)T!#lD2f4
z^W#^AQr~i<?elP0@p~a%mS_UO@gA6b5FQnAre^+eT$tX#>25`|l-XR0(nGU)%@f8-
zb~n>yF^({L`V{LS;DA4w3}<XhY-9qgkiJ{lFl73XY?F)`gmnCF!N~L_r7tjT2-tYJ
zA;2A^p=v6g6e`7o;b!>)siA7NxFs}cy_S7+1B9*vG-wN-mbQL+jb%)=gmgi~AYKUQ
zp!=c%qG}Sad;$swcB@<n#~EY})VDJxFiPlO|NZ-;QlmDiskJ&_-X0Q?aobVrMm?1a
zI$)>gtz)%!O?M-?3)P1ak%X?#XvALWw#p%^wVP!U=oFk*6w6Nr@zd^{|BbCBl~L}W
zJEa#9yNb>dRvU}-qr$F#QXG_pL5RE_kVd9tCF8it$tiicVmp}7lvP)8g01|g^3G~O
z#anWD_5(9w)us@yDR(cE>5-66j%kI058yhb4pz+^Kb}3%P(r;7t9(WeC4JKVE$iD5
zbcCUT#H#oae^mDY{5wQ^)lZ^h{DdtN?EvXf;-qw|B<@OHJD`$*1`XDeqIf8%`X}E$
z8{;Py^IKSO!7C%4q{e}rRvk96%<30UItIPzGDzFE6B50!h+Z_gXzCEpfXkL;2!g0#
zEq+i+jWi|07VQz?b@3QON1Tm=Qi;4_35`{_Uc|xBr9r5sgXc_lHuEh}OnDS)!9+mF
zKd;2X(D9Y4RqG%Fd^Hy%ilOrAXx5U|M-ao-at|>z0wk)0UV7fVz`1HuL|;D|p%Njb
z&cHjfEqpF%wt6l^#2N9lP)7#kN+g8;5SzQ<Zj2tM=7Kk2edS(!RV6~V<&%?m2;}O`
z>Z_yet0#d5R@uMo#VR)?zwrshVray)AcR@LtacOe@Ll<f<c|UQW=H+ulVilnp-BK&
zF2An2_5el((jjvK5ri9YOm=nKBEcpKEbR1@3Fy5E)K)KMjiI0^LSZ-#O)_4KHKrqn
zNJltJrL=BORC42d{0=@yx|%vbmOW4Cn1Dr5&%0e)hH}Z{zxL>(1Hs16=v6_jQ~cLk
zHSLc70)GW709-r<qg&2BQw8A1a$YL$!osrvDJgM}hzN~t1bU{9d3r6908^}_AjGaD
zu-OU>7rl_4#K1Ak5OQKx<6>5BhM9?qb(1L}7t8Skov}BCC6`y3{UFh|6Dre=4Adse
zj=&ii6tuUIj`0X3DLmL&jV|r~tsjsq!~vD=*sMD2*UB6kG92L2y4}V@wV$hLA6SkK
z6ZoGTrsJbu;|gd3LK1*huzH}TTW>4BPB0UYw`OCZ=b@FOT1nDA0XSR7qd}=um*C~y
z17s@@$|L9@43_VSUG`tt!Z&u9A1Em0{dBWhKaz6Qx-aNZqv=^=9X0I+4uqY-j7-l=
zC%gal&|<T+4)9)+PUW^Il~jbRb?^|SZOu)8avMY#PKdOyG(saewM$rYw=~&MD1c>y
z%Qh&4Vx0sUa8s5~_P+lChlNO)$byzqCv1wP>RGi(F}BW?<Yp>g@_O<aQF9fKRFiSV
z26QC6B*&TFk~B$9T}>2AvJ0c{Cz($-@GiNDRoc)=5Q#d-PU>xtdPUDw;AW|A2bvz&
zZ}*7)_5RmvUxqaKQuIirwYvWM%ddPugqCM;F$DUCkL>Py>ZVhAHf(QSsil)CEj-65
zw;`P-Gd5%#ekbzn^IwgDIEZBVauW36!QDmx>V4#?07#9794o;FOZ{J($6az9U)$r3
zA>+wcy4yb3Gp(nRy;n~`tz#-;L#n2Ls8j6p<ImGK=wV9QGu?GrK#M*OG-fPd!_bQg
z-9t$oeIi%fsE1kgmdJ559U<^Q+9nRI<q-Sr{=N|dh<vrg_rN*ZpCi<!v>l+50WIFU
zCQeFPfcGI)3pesBtQ9C(sX$rhgpBDjNIcG)YRPE^1$lI<%unmk+_@7ymg_m873bPW
z>dglsgT?aBSjqp6R3cLh@01v{3m_c>-KP-F-&D|ArJi^Y%Ds?Lw^+#uMP=HIXjQ2T
zl_3~pW#Tpm+U*<VBW0%r=fQy134Nior@%7O6>1|R%T$DeBTrQ%!O4O)W{+X{ko?k^
z9E60N%4WAoC=s8l-8^pcI}jWAvt4|{`sVaVQn|zRctnYdJ``RrVs}x#eFzkHJj!8a
zX+>rD!hG5`?S~)=J5a?VXUqy8wHp~tp~whqjdto?dAed=C9Wc)Z-Y=0zG=MA$-Na~
zB(1=GmKV+MXqmzDhXsgO*cBP&)GaL+paqe_loWq59DUOF5omy?K}N{2V66)g5o4+M
zY1TErQIRM&bVnSLR?jDk8~RVPBrOsRh=v*-i^`pk68quw;1Hp`$S>t!#9-uJV^#rt
z-kKIQ#1_Bg>jEWy!Nci2!FU;XqKso|9jJvmBw*u+y|X;xx}bwD%xR9VaW8h&KBc8J
z8b~HY^;0>d^go(h$)1g(eQY=9ePwwQ<6t?u@h$VRIKCU6UrHNH0|Xi$7L)7i$?~6+
z2q|dL1VH3*?NPFx;{bjiF%yZua7g$;r7{UD5r{%ehyXX6cf1jK(%ll=j23SAk@OQe
z8rt6o>{EEqZ4u{mScM2uj<BMGRjUK4)X<x#F9T(k2MU+OCN8cs_?Xs_z)21A=LWw}
zAP|X_BqA=YTbCaT^J9wlMs*>ebTC~7!U^h)odE07qusQ+HNw$rX|F{PtKV;vj}Th0
z0-U?RKSW>t^g|#}DJbl!2}vfTt7+urSPLO<6**K=wvOq7Mli0x_`<<^sqOrpp>U#u
z^@RM)`vR7nu4o!gR;NPmD`YHxhlceFd{in)ketKua{BO45zP_$6Z6y01+6n!(Bpu3
zfkLs8C#K!$0twrB&%1bi&Qf%Fk*cCuIrfpN1o;oWQ!`v&`a8fLKFtVlQH)n^tg>T%
zZ3-OHK>^c+P`0t14d;zddD?28v<X~hF*_y6O->w6m@Y4hHIbQMr@dC8o8&q*W%i_C
zCQZcZyyyUHVpvR7Wxz;H@~bNp%QZZcquKuJeSS$;TZul!?503HU^3h))$|3Si!ujx
zj#4;&p|)VmxbC(~BNEJ3UyIs8H5;8+lPA%E>#YuBI;}o*f((f=O+Uu-_>6!JdnI=p
zLMQr!vt|}Pz^s@^cq*-IDXQ;vONvL#I#txr=u7E>=?oi5?^MI)KKTvzg-k0eyyE@j
zfyfw4d*Pd0zafaElo3qqkPdg!k^`Z0h2|)UStu`T%j)w~O?(I?Gm!ziBrQv~24TgU
zq^+auFx6&q0YOR-;ZhDJC0=U4J%QTkQoYKUpzJR^MEoRij#8#impqeB@wkxGDph}y
zvRENW|32!`wECoVe(^YF=$Df|83U>~@h*Gzbj!b@P(FTxU@DU1YC(VnXKQPxaXZ+A
zJh#@;U69p@_1}IR7x$!A!!n8sCN@(>q4jErMrWXWOnrhK{o4hA7WG`Rdub6D#k?)W
zr5MZQW3%EVUvClAX0tLk2$$`6x<1)lrmrJ3RsDFu_~b3$0mq3d?g7~&vUu@ROv|UA
z?Z178yCm=RR!bRA9@ef&w1fllBuNIqD#uWne77Ue-^ooh>khxaJam`9CSyoRfgIbY
z4;5}lAA%o3O2QNJ<9akFL{BD`#Jnn2z$luP55-uEzGC1D<8qRzEMe!X;C+&#r8oAN
zNJ0Fv-?9VHGWn`v9ozD^VnR|87tJ62o_46pJ_kEmh=7RHpyzMpQcxmbmLZ}cS|R!Z
zok>XBiFT9C%FWK`)<`{#NuF2+3xHu+Q^EkNZXG!rY`NCE=zzj`>JJ(xiaP3xvK}VY
zpxHmG5lX@u7m$zpPpqHJInYccdy#ivx6v;;7(9u5NtgeeD4Q-in*S*lwB$C{IuVl%
zx(*r;c0OBL%$ch@yLg%=(?y{Ek!KTsGBH545yE#wB@otL8paZD4|I%);j}?Q0?K`j
zuI3@l>rjDqaAYk|Pf05w9UjF(NCk<)bb{no-ARlF-LG$1Qe5z1F#LINL@(kL1HPqU
zBaQBGr<V`pox!1$Z}gCZH?kM?7xoGKLg514K_~Ka#R}N8F_oO}pgJ%+5SwG}D5^}o
z&IfiN9KoT74+SEdY*a})JK!X9Vit4hwd+EFoZu}SdVA%XalP9lK&my7--XKPwYN&k
zH`|DMjvmb(QNx`0k~*Gv?vYF|=a9S|HPXXS;4OdZGH7xyGL*zboH{Gy+kR&hgQPNn
z^`v_N-k^1sS{4UOB3WJH6LQxGx1}$a&`g!o@v~IN6nW+4FHtf=-jgkDrJ7%xi7;bR
z{7X28-M(K31Eq-J;#DDl08L!VM136fGmE3qYZaa$a%IN*k{JU$lh)6okR%KZW;w>5
zp$29aUq4{{#PbD^QD+{?*MgBXx7k2mtTHmq|J2O`*`1T}s8j1q3hhV6h+{}t;kds;
zrIl)97<&Rfaf}{R5z3#R5oq>mc+_cGp#yS?L=h_o$WEsiM-#ed1ffAAe(Z|{Ha&*_
zRaK0->l8GQ2D!ra)Aed|Ne^=yxMclFQDEsXv<aYL#+cA>X0;MMGA@H#%xRsC9pJBo
z{4gh3eBrKBS_#ek5PM796d7JD#<*L+)QI+|M(u&MuxL@sG`pNEe<jGk*#o%!DtHH5
znEyaxU(pV8hW{;bz4$g=|M-=Z8(R_Mt}wImV+5iAYD>BbvNYQ6<iEe+P+(aDx+dx?
ziX1NyE5=<Ri#nr*P+xV-b`2=<p}3F2iD4Vh-6xrZ@e>sZdVuNJ{6Y}Db@Z7fp5xM}
z_$VBNpa_aLCXbUPPS-|gNGVj{GgWr{<iq#xNgipRUr-DcYEH;7<z@Y;#23auc~yIA
zs5|_no*K<^X!x3iaB|6W;9BgOAr4c0f#X+!MY&{Dq)1WOBE(*yo)uI`wHkN!@5mE=
z47SUU>7QOM<^wSLF(O0!1?=pERoV1`vVYay{T4@7uf>n%wN-I}Yftu-+N-YsBNm$*
z87EInS0_jr)a~6<%4B2uF?M8H3x&AcEa7-GC0A0TyNUWV(4WrzI&Plb*QWHa2DV!x
z<(8c4DZl_0sp!o=@y_q$7E38|CYOt=%6<>uV<c@G87IZJ!iGfw6e_DrQ<2xG&7dvS
z=02iQoVVO&c-3+gOAQc~$k0pzV=Yi1;~RF3Qou5J*kA_F4d`LonIix6vBZ2?TEj$s
zrIg=?#rl&MOQj<bTcZV9jbvDfK2TH|pzsYV|69e7Myc`X2lX--e#3OYNW{M2)*Qjm
zVqVLB{PJx&xtz?dmlUcB{qSjoV0@xF3M$w;?T&0JOcZU?`87r-P0#O;#99Kt7q%K6
zZ9%vQ#}^5Mw4iRo0jKxmo;1$~pKT#L%jPKYb_kHOzt*(6Py<KlA>G3M6!M`@qA(oM
z;9_=PxjYuKkB^6{VwQYQvml>X3K?D9k*+jq^cCpanB9N<+t#AwuRR;239csDk9iUz
zkInik(Fw``ZXit)Rd<{Y(%9501Ux#!`n7{0;R2cZSC>Uz52(;-53o>k`>;l$d9E9V
zIQBU#*m)%xeG8y+|45s%8~$rD=NpG_p^ra5a8VspTiYxd=mYbIZVbA2D%<xmwbQPv
zZVs8zL3H_4rzAtovJdE9en*X}ehBQ(@mM!B&IH@YZ1hCvN=o8$8mCM!GG#oTY|tm5
zT0v8l@8M}gWbknr=v_ZaPtc;F6Z8+R@&*LHvmvjUhHW#z4(OulJfp<ehHx1*h@e7s
zj+=@-V9^<j1v26pTZa(iCPVzmMTp+b6c&<N#8w+MrHSespb9fAhpU$hZJ7C16gWbW
z1QMcGlorc7UV{cRwyDT^kD4&ZlCU!JF)1TFl|N954CGSdu<pX(AN~k(K*lj93Ru0I
zspzaGpq~g18XlYc+jRhXV(Gd|Gtg5p6I98sEjy!>zf$ekUyJo(M{N=~vgqbYo(KJZ
zK;jqpYqQ;_1)o;*PRRyK64>eb1G2(F`qdf+9Bn8KYJg938M1=;c(u*xa<hc?E9~lg
z(dx@*j>@A%N*yS~lu{NU1izHxtD4_Yfd-3-=p;f#?@^2`+Q9?}sHxz$774_El`8dq
zHRUa5Ng0Tq3<gd?jC@=?oyw+*v+>)Em!)Q$GZpJU+zRjtXU3gd7>d&sUdKqO-udvf
zMaXF|I!U3b5>cgp#v!QLn2BMfK#LcV2ncBdzYv1NE!HL#Sdh)81%X=;lsN9&TE<%k
zm3|KmLvY#PmPrO#%Yry?CwziZ0!@>qV!@;&gwZjP(BQ`hwrX&mZl8&L)Il}dUsUDT
z9Q5fEVMS|TGwM+=Uol|JP3h9rlD)u5ut6k8eaXzF3Y&3kTeihpx{)Vv3Fa2)$BUsD
z^x`?>^zQ|YxJOmE3;|_fHcFgOn;|fRgXR$;J&<W508mhQl%||Ma_GM5nrp}VOuZmM
zs;>lozu7&NW@pE>K8zlt^1;LhFvgV~(22Euj_KvoDNw=qfOz&1&<$j(m0|!H4y>z1
zuy2w1lcN#141(akAu9Ge)F+D_Nx8WOq@t*0ev>Yo10(3tJ0hbQFGe8AVs^zBBBaB^
zbYTqLa_=^_yDHImnWij}nKQg%wIZC0fxHH<htU90sBZ}j!uJ57!9$+|20CbFS)#yd
zSW;XGt63BlAd#XpZHQ=xG0z4^^7${n`dihwKtG`qnB-oV#c84G@;c`XYxuCw4}geq
zG&*A`1BQX7aD;do-sl0kP8p%VHLP*wUY!m9#$`Lu%^iR&=<2bG8Lc5>-VTw+sx5(;
z4<rbmfr8uQx1p%O&W0duEL(`KGtxl22oEPB50T~lPw7^u^?CD}C+jLzpRRB@!0RI>
z8!d^_*EFFr2I<K@2Za~{@~Kbl9f(XESs1lUd>zcGK2QZBkSwkxgx{2bq`<v}kV>Hf
zwQ2|SF%+~;PXN>yYYv=fcs<?>kjh18H>>s9qZ5iMn%NOq+(Q-__OGMEeg`SPo;r*h
zNJgT-x?(VARnh=EeKT{uI@%Ctn30G+uQ*8JShbMlrk9)qR;qoO^KiD(Y2i69fkABw
zrymp>07}A!RZ5^z4m!{$u|A>oAiHvK0u04BiFkA1AxjD(#3jBl`<%%^U=_8NYG#4$
zoGK_m2OcJ{xW$i8<r=Ol)G-?Ic;a4IrQu?#;{eRGL5TV!9&@mhg@I#rvbeh|NP*J|
zxjfvp+G$*+_D5r~1G8Id3xEy{D2jU7RH!VPXP>CLo`z(U?$%rB0M&tv^2bLM2#N#$
z?^^MeXA~rf<c87-<~Kg-W64Y;U}EJf8)XvmZp&01)(Wp_TAkVCBwO(pycTQ^jdu+e
zSvVkhE#Nai5F~Dlny2y9ZO)=8u_JZPiQkS?fc^qOZBWMc_)jIPNQffnaz=U=J{~YB
zclVF<9)|lMu0S}|%c=}fXdUP?V#twyQ<P3rl=Q*aR=kg*%`Rx6DU0t96gEGnRr%|u
ze>)^jg1a`Lhlp7l)%CEK&>|1B4Hw|&U*h3B2xWW9XyHZ031S<}^F>Pe=+OFXbIEt9
z7)Js^50^kz0<!o5e<sX=^nL+KN_&HEBHeClVn961ffFVpoHRd!H1{YA2jiwePzmK&
z-2~?X(hlUc4xv-m11^Mha=IeK46Hw1!k_6ppsh%N@s3H3Gjb=~JODc1G7YfuR5c&<
z9}*G262%sHBDy0?Qo=4jnS9fja$;+cG4Vfx^3V)q)DI=4u!}j{@U5Nrt&+VMnFK_L
z%u{}57^O;66h<CVD+-V<AJ6Se9X^3dLO!0zLdx_^EE0aSr;b8d@1FoFXGH#FSCvUy
z;MT+u1O!aJ`$4H2-%;^h;%vC4_uJiM%fQyl@M-0&;pN`0gR=zcfe0jMzRF&;R?A{C
zqt8tMmuTQgM2wy!JW};G{Y9UrsA&`PR3Gu?{ERHc>=$U>pCsYQWW8B(g9Oe}zcmF$
zVBlYyMsL#QC9tAr?(dN%NHp`FlUI%K^d934g#=pcLyAd=OG2H&tEgs)i<!JK*1?K-
z3OzQcbvS99?2If3iBWDK0)G7}IGF;(8dGwc_&UTT|16(@M?%Tcc{el3*`zw;rjJPN
zRCxQBOk*NL;KgWjpO0B70JaVYpKx{0iG-2LTTr^lm>3q<e&-ZkI-J{tYF`AhRK6TZ
zM5P=H+J(;*7Z~0y9>~BTb!@r0kx?aqLKp{fX`gpavQ7`uJ89DFYd9nYqjyGQ+Viv4
zh<Zo9NYhGn>@ox-N-xiiM{*Ir2GaD?ImFF8>X0cG@)45=!e)~V63&!D%fbxpx9_lE
zhYVr)xWQGZ_{&L)Rjg>X@)jtgH5`Tv(vb0}zmpo*&yQ$!-^e;vQr*sC9zk50B(oyz
zG#|KuroOQsZv|pm68H_|qim(14Q--ggQ<ibr(!VgKK2NnNWIxdU3-%`MdJJw%!bNZ
z=Y+8DbR8bwN>&#1ijUeaR=9bP-=D*&G`)aTe{ZP~Jy!=!(>X4r234M@u6Rf79mZd~
zuRt6PQ{t$9md~*ZkuN2LXyiwN+Tovwp*@YE`MH!5rSSz28?fP;g)^c{A`(GTAjL+*
zozJ)HN65No5g~vV#hGwl<#2}cmc9$tk~tL>Ax&ux{Q`L&t+=dPKlxx$=9&So>LfL$
z`Gz^OoHDfU$v*jKh^!Dbr7p8gi>*Ps*E>z7BoP;cizia%zjP{>&TA?BR}@b1T7BRt
zy04YT`d8dRv<7N>$}ng!$R~V?4nT4!_pW83+LLCEsr!^l-@i9ng7uT`**dl;ES?z9
zx*J%)B1g0feIbXyn1}9&0gVq+^5meEerS0QiOBF7ImMIWR!ZoE;17PIW8lP%NGpPk
zKnAXu%gXT4ZHi0JK>o0{Sglh7*n&5tN>c(LX<Aq@WX2Y_h+_qXIY|(9q&bR=JFc$M
z3>^uQAmM0z$$cI(o=(o&_8ROG%uxWE*9bvsK&;twLl1T%w~7etgBB4)!f*rh51~oh
z2TNjXB_izT=*T@Caz|DnzToSHUe5&K_yw9GN&f_&GHaEj7^NPTwrqU3u7_G2dYnm#
zrI<Nfg{ymx>9Me$2J!3a5rYvxgU$MBP(H?<*rueyS`t<@Je2|4@7pRNP)?OoUd-jc
z>ThIUO6L)51h%V23ZtE*wE>~!1UT1#pBOl#i_;WF5I{w{;lzQaP?5f51h+1Nbd}O{
zCRK?X7BSKFG*JfqVR1K6ZOTm?Y1ish-c!^sP?_Eh{^97+QNbkoaKYSv<(OV$Kyt2k
z1Ww7MNzW&T2O<Jenv(Rn!1DgVz6GR_rpo`PyC&iCTZ^1vg5jDo8x?JDoo?NvO#VM7
zg#afC%CV_cuX2N>)Uf`rkEZJ8qgG83y8?p+CCq0J`jfD;m4u#!9?6U1w<OfyD{L#A
zH6E6Mif9M-CjgfKZT`J);of82NG4j=*d(T?aG-@{@Dh^dl{^dw0(*w|WlV%L&qJB0
zg#ymyb?Mwu`TZ8T?5gkl?20cXo=EwLuRz}4uq{XdgB(k#I^edPJqI3&s=||@3d(Yg
z%c~>J6~F#y^N0KfuJB3dYnAy-<zTPLEC(P4*1KfH``FwLSe7;9^wWVl$TOE!VDZXe
zrLxL5x;Q<Xpw=8a(b8CLlD&2RB_h7cir-8}lK5sXp!fpIZk?qVK}bE}z_6YkW%VU8
zgN4u<7q|2#<OYu?6K*?j7wO1AsYi_=t5BZfK{iQ#hzH_>>1>29fMa9uNwDvqi3**$
zdI}RC>-2v=qjL;R#Q7V!+(ceF&DPHGaFF1)#KDARXhY1J7qf@k9bmBqOZ-V7n_*kx
z8bA}F8ZAsUrgnqmV&)G>7!jnV%}8JYx)Y2yr#tN`ie<tmzzLyRqD!U{K2`(WPWdzF
z=3vO_IkZDu99dS|tOdw)CZzW%Pq<?DAp|{nh7KUx;yvyU*OhNXlY*eW+JjnB&bG~3
zQOOKFE~ewZ{WixUW65b8<@O7b)y0m%f8fRBz1L@W9B3;@Div4Qxe&ktITczH8ezv1
zA#s{WENzdJ<mE#G+;8A472Y99WW&zwdFHxR-wx#?Yw{~RCiHMYae`tXMuOosSR4i}
zZm5#+Eq_1a>SX{&(v*@YLnz9pr1vC>W<>%5b5ykin8?shfU(@n?2Gev<&;i;5CyZN
z4xwIpn1ZmbLzdiA8<c*?c)P^ac`otGKknqMktg@CiZNRmk{G|;f&>hPo;V@m$=6Vw
zb3pW~<>DK2K3R^CIyfc{FTmppg3lFqJa#Z)+4c=J4RqbF3u_QVC9-ecTSBXY8?6LN
z5H?TYg_A=Pa6<NjYOrKq9lo`4MVm72ntu|}_bNNm9oQy~<`r=ag;nW<u@8_Lxw`mt
zl~7^}Ar)2(j@pu6hDD>)H2neFfUqEV0=4RG%kv}UuT4`ojl^?!l}dNK6LZlF6n2V+
z5Yj7!0>P0{LPmp3^p?KEhzoEvW}YK0pD|l7xb_(Hgu7MRQaaDX|A{9xWi>nR5sbpM
z467u|0ysfZ@*`M@)I4m&8Ii=}?FS&dcZ81mzyZn|jwT*rU)G!A(O7==cO5*<oB<H&
zpX{Ecf_&*W0tgA|A)sIfN%AC1-9lpouj(+=-jM5xyqX?Ohyky9az!UQqTIio4C^Z4
zQp+eMSWqlYMgV=!bOUWtPV5edexhLWF`1$Q5cGYDhrp|<e*(uRp2PlCOmz$dfa(E3
z$SKm`BsK!l;B|n48Wt)^5i9f5`3oB6sPn~v3PsrD)dM3;nuWrx&)h=^Xf|doG9}^0
zW(G@Y1N@E`N*b}fq0VBEovWjDBnu#x01JL0NWOY3Z32zCMKLgUSM?Gw0b=AK8c!VN
z#dK$6_E)q>;ZM+@%{a#SScL743e0SHe0*#<D%aQ@#2Oy4x$i}B3I$8s+d9A*t>wIA
z#k^t%@tD1Ln&%cRD*Z<&Y20Jpf%*f13oCWRyheiV&_eR0){c}v-d|lmuBNgENS?$B
zKH@f1DH9cF`0;DZ)V=Hz_5)-T63%-9cbU1%&DHdK@H*l%r%kfHNB$>Bg`N@1$t8v6
zrzQvWJt`^@TBAo9&lAbP6=h%X8Ia2Mx)FwoXSF`z;*UTMEyx@mZvq6m<w6jQiMoZ$
zDMKeF#!v(VN7tx<(V<Z&Mxce*2Cp{^3an1cLXtx6!}{)!DRqRAn@`{kVDH!1xeK!W
zMvHHAegb`2_|fV`HO#E42uq?7Lv!6UfN0R*FAF_L>6d0N(2~etNBzsSG~+&`0#J3d
z|K4Bo4#$Y9NV1A}dGwvO@Z3n<5Zqhe4W3&5pcyHPb9f(!G>RpQyT@>svR&v|FdQ~8
zM}jU!NqbQB44B7SC?XSF#v*TsF_2{n8I(3TFGTd>f({lIqz{WBoB|%?y&uMlH8=)W
z>yeo<>csl0?xzyZZTJB%=oI7TH!gPTMc8J_F(O!0fnH!Ic2RyWs=*-Be0>O=K0wm_
z!&Ev-ZvBVs^XGc&lg<mQnL^zwCZHQlSdV!zIJLRlIUXO`m@%x~B@X(|p9$E+W|c^;
z+}3n8qCjVLEL9GZ)C6+h$O-2nXjUI(5tRef7UK{K#4)2M%CK-1SnY}$OGQ@w|MZ^6
z681)_@f{v7nR<VDqD_(ahUA^W&p2jJ(tAafz{j=4jf@IO9g0qtNr=WJk`qtiDXn%;
zVS41dw_rGDms9d+7?iQ4GfcXQjS|S2-*cYO&Q)=1*f9bq8IL)Y1#<@F$U2bp_iXZV
zYL5&mUMNr!kMp*8xPM9sih+X+V0BQjxn=k8JJgOk$#Z98mD)eXAY93oqH@wI5hxfZ
zydQfF6Kg@`is5t*M4VUx&Nwpjg_LW`734_jx#|up7yB<}iVE1lXj5QiRWKVqaEtOv
zP{+S~<R~WN9rDayz_6G!gz2bklu!#}-rE$L2bY!~7_1lz$~gmNH{#<jZh1@0jl(nB
zVmW<HO;8q(rbI)x&MNd{Hw&1EKi`Lc%~1Pu_!jjE*o1avri&e8MLAhyqd!?*D+%YB
zV#Gd!Bb3%<%vy}GQgLOxLLP7mKr<WuGZ>5jVN;o0X$(H79I%_$6mg+g73CA*cBZL7
zW1fg()B*7`o~2+$A*4ZfV&!Vcyt0gE{TzNJ{CEq`iy&$<jI}W%-lASK{?@rrU~YlH
ztlOs(wAJK>3nhHZYOx9l;A}BUSOAIGB=yjt=*fK`N=aj&7PXjdiZGN1;|B-`+`U!*
zTyHl^c?=f|98z#fMgKgSm>yo|XRs$Qe$5lS0nG!nME=gQ-qa5g6^uqIAVBg<V}_hE
z&+4QxlE>pUI{Jle$!tQW0t)nr--F_b>vE2D4bw=0*Ejc=Z#Q-ux&YuVoZ2(4|9+B#
zF@eCO$FN0(uH=NZ)$mw}G`XTd)A<T)&N3f^AruY^;aOIHDf8WI%Xe6S`FKn)ibP5m
zxReCSRVJn<Wx8GBLn#)X*->%HkXVdAYlR&pEqyvDBp{E7Gp3~tb2A#UY}JCNOOLK&
z^mU{&N<EdqNb&>q4i&AV!zTq7dz?ze-)*y6J<%tE*2M-hdqs5y`%+M13%!E{KLC%)
z4<tAOK!L7wM<&LaC?ixa9G-`3B>!ZxX5#{p0~5sUD-%!ytCYFs2O4A}Kjqkoca9XC
zzbJ65I3N+2BBJWV<p&6UuhOv)r{bpJU=ziZfCUIN-6MVwkUKh)oTwN$D)7BXR%EKL
z7K??7d9hhvE{kdDhjIHlCPJG11;Q&HEbGI`sdb0cm&dHwXq3Qa-0NBGQ<|A|Kol5V
zqjYl1;*2~NenBjre4%6Vz|*tRx~2R;mEm_J5K%`F6Mi3>u2DQ*a&~tJp*cw{jKPVn
z4J@N#_m7JolWPo})sOKHYUioyAkwoe{<!85%-$hpyI4{r2SA#bo=-Fe41apDR3$!a
z3A@5X;7H^T7?vdX28DuKG1++z0qO~SL+L+nWUfF_I78&nPHp8F$W#k5?<^Sx7$B9+
zs#-1UT(sB}TtVy?edyt4s8MW<QkP3+5p|u`ShS!I2wdRk68vV0D{W-rmR|662})sr
zw5?4eEkJ_3_*P)0QL^SqgdPbFmPAuWd*eEgwsf9ArVukGWtffv<pvnc#xw+VShtf4
zzrY$NI|Q*&HP%clzykuH0xW`j5Al|YeCL(wLG`h2J^`s8K$OL0vC^12o8|*cnkkb?
zPCN92N6PeCvV->C;Vb<-PzVnZB!Bw3jqN3Ki=KjndNs{V{~PBJ@96|QjpBs_32eDP
zi%iOFeq;Bgs0iIm>GLMSR#qrzVxWeg_ATK|g=+YNwT^b9w7cSKdA(I*GoZe&y4>L3
zbo3-^5p<;q<cQHS8tbSAUPIluKMG%FP~2Z`bQNS=P`8sHP%<^SGJdGOO<@E>g~RaH
zUsvR*tQikdM(d9Bbt`>?HxXV)xDhtX(%$nlbnQQM;m8*dEzoDa8pC0T{$P$^!AU_n
zukbCXLclVZNO5bVkQhq1t4CEoP=f;7UoDU~FH>|t>P6Mq{t0br)z9?gQVS{rop2hN
zsMekd?x*XGO2d_$oT#5b7f%`9frYqKJ{E2g7Ax`FXq#<gxK~gY`c$HsBG9?RXUGo3
zi_3Y7>LYWbWP`S_y5vODkd_e2Pf&5SCsIIK?RSJDkX*z)s1;9%BgQNo`1RQr(~c+_
zXEDrfSf{Pf8=`a#x|^}q!g&N+blWSSCJ9u7MVO94$9bC@4dHBnopYI;1y=vJU$eo6
z-b{+6k`+YKnib|zFh^iB>56!(<k@po0#GO+RA3bXQ$VXgj^kHK@rpPwrz<HM5urzB
zJp-BnXNVyTdTQxlL%7spvy_WC;Q*1EF*hQ`fxf8xZ#z>jyjFc^FQbd@VYZJ664z>4
z(u^?Kt~nkU$bF<_exmk06sThh;ac!_tCcSsjqwdqn&q%wflTu`oK&rEXM1Wq>a6CK
zB<aTZM0w&LegpgNG&?<J@2D99-~mzzF9`Hg0a5z@KeKL<+iaUUJj5+9O8dsimhNWd
zO&IRf5dK+}AvG45ed(?ej|Q*1D&;6Ct^_RpqR)vZ2G(4fn=){yF%)Qu1qnj+$y$uZ
zdx^RdC5pk(SW*{MdI_axLdAqK2~DhQJ7B~HbuCC#l90|I1g1wIO+#``v%!09v{Zg1
zCHe}lN&}G1t@37ogyCr%zFB72a$U?z<-@u8h={T@_fUPmm`j3_9SHP6t^x5{WT<`f
zHl*q+%dA1Xw#?Y2uLEY!=p=6=<hQFTT;yZo;bfLw-!!#{&X#?qE@h}8jky?o=D%Xo
zB@hwS*&{m$3TVvbtuTOBEpOG9GU@Qov9jx<MvEnr*v(VTsuk62t}Zv&FwYI8co(3<
zd*q=+D^?S1gUI|qq*VBwl#4|HZwrdbbSml)WoO~##DS7MidI@vc<*R5i3B;ID(S!k
zx6S`dZth`_1L)V<XH8r<2DW(M>y?Ice<1}1T#!wtmOqqtDc`~03!@V1RR~JS$Q#O|
z6&K_mz^3X(v-bwA_UW`8Eod+i&I#Mq?0QdAA(De6q7nTlSjHSC;6<|#emh6JeB&~{
ztNlB>5^9g>uk%0?Vj?$r6+@mUk8@J`zp_<|sWBAz$E=`Qz`{^~j*{Oo`d*vK$W0+P
zR4)WV^I6*7X64*ICmxwurYxwDNkRaqmAi;_H!VgvarNqU6|7RiOE9R{hneKHd>IYC
z?DvMPPdoXM`qQxoiEMo77*dt?4FWE>O*%p>A=;a<?*$oa1Rq0!%uCILN-`jY3V#s-
z`ZiyA%|tLm%bpi8I7W0A^~yEk0G5U`Z>IKU@3l@ElA@jPVu$r<Mmi}3oN_3t&0ckn
z`r=xS5&w$@LuBm`421NQ=OQ8iPg3upVP3-!Gn9@8tEF)8FBDb<%3|>@ji@k3SDp<U
zJ%EJnIpwps{1PWvx7J3EXA**ZgKJHaYnd4y>>8!Q14_D|x=k~xf&r~tg3Ca;%y_!j
zDU!lUb_<+x6_mjxkd6XhDZ3s^h=7HHV%-TbWv{=+Oxp$@2%SO5goywsl1=|C>PCzY
zZhPNAI+RI9k#aaEnb8U!gYKF&Nx|9_@6@t+4aKt-nz|OMAf8&4(73vdA!lh#OUU7I
zF31H?Tq9!<cK!Un{+B!}=g?J0PlfK{%*ZZ{Tsq=fitL<@L~;hY49lY0N6#cUcOZ5P
z!z&vDect(>#;8M|N_igMjie*0Fleehy$$7{JyK5FYf>i>#LS@R=XEAfkV<bW`;xnb
z0dUlmA)xS}&C!YuO76it$OL=GXJ6N*_m}3n<h!*kw}q{Xf0fgqb}R#u`>ZbuugC1E
zF%^jy=h=R4ALTukOovL;T}Xvgvj_H6*bKTEd`QT6HW6Hm>xre^Q1`7T3838Az2vVQ
zlj06haOpT(z}<@?q^%=U!e*G|28q?x|4(QRGh&#n8QKFQPk56AmeOGApjj$sL9pw@
zO*E#*P)Us6S$$ud$gePHz9I+cor0TCLaSr5#@?!{6WW|4eoZ*CjClUpP#b-}t576k
z9jBR4qdxa^*w_A*aXdmqi{0Zglu=*x8p$352ndxhFSu=yVEjh4ns?c8>li@4!x)Y%
zOkIlSK-sRaGfEnGAtS*74K;3WCgcJ`STC25wj@@K=+;W~_0YPJaZkSndI<m`SD`QH
z*LI@{NThKK&?5sKT3s8%(j5LyRhp<Zv%bXkbx8#dhJ0r0P~Rhaw0UfixmX^NV~^VW
zsIUcgh<D0w%0UjpreS(LbWex<@?cC0Yq`0cUNY@{hKLI3BJ}H$oGxZ0GVSdbyY@*T
zVnnKl%g$;$Uo->7R5(WwqGG5S6BRc%3*h7=cU|1_HjG{*hrBP?ts3s)sbYp>6y`TM
zco-#7?a8ULUXhOWqnp$tZR05ctO(6X`Ug^91M)_w*5~Q8;QFWxP9NN29%#fz6`QGg
z?)Yy~yU;c+M|1v_#^6@M#?hpVqF{7R+>D|UjYe9^gjC8~Zq)z@jgMNI@&r`mlyYa-
z@);N*PX<dHxru#^NugFe*mizq*l*Tih`jh%lu_1_64oM_MJX34o)~T73hZT!dZM_9
zwLka#$;h~F;T%X5e_D^bS_<)NA{Gh+$awy<)<L+^%C%f>P$UXs+X4D+Aa4p~F0BV1
zNpd_3rAs6~>K_H2G84a;IF)Fas~~IYn=5IrpqVjGlo<;sX@yq(nvg#T=AFVs0N7Xl
z7otWK8moKW*5*itla^L>5-%?^oXcE?@H8%<#}(o!-`J%mav)bmmc5|`MuRMh=cqqv
zJZ^~qNVaq`MID5FS)n5A80k;&aV{LQi8ZjM*lUw)u23r*50cOUICb8o0+c@)u5^IS
zfe|&Cez&&b4M-1x#54zT2<Aj}S(Ko4gC*4JTqs*E65|Lz$laJiz!cGBHA)%esS??M
zdU1}-Of#rSnI>Q{{AlmsHC%~iyuoS#jho#Q#j%k|_DGueG4o?WQq+|)&7(bG(I_1N
zi8IKG+sW*b0nKI8m(&7{@6bzD#d<6CFQr{1$ph#cgW&ZBKv&VCjyE!(#6hxX9E~bV
zzGdg4&CmM^`_lUE;0^zaO#)7!R={g@=qN)v737tyP)tuGwDlUxU2AFqua$G$o~X+e
zUP2|)TgwBILhE!kx1@tuvPc=-6XPQ7$fFR+>q+m`HV@_|pINNshn0wof(=wo{dP(E
za0r1{iqsTGqGU@XgAW8>7>C#(I9ZT<N=7ei#C#zHVI5a$1Q&?osozb)!4$iN#_%Xn
zsd9X-H!2SslD;$3Cp2b*bxQ_v?@*|Bh`JE_#2XzkHx<mK$+hch<o$_CLfQ>J0m)e2
zauYkoDj&;7@)k*Za^w?Mq(pL;n&~_!?obr2c$lEngE0Ic&t_aK{clxfP6Q$7BVcc$
zEMyF{%#r`OAX7A7SpzXLoO*O99sq7K`L@~-{U{|})dg$YZY+rfl*h|xOw?d2czc#q
zw8o5Ac$eaSxve>&CEGhO3o;<Evw@4ut+kkIa01E$_&~Qkb(g4?z&9Vg_P%K~G;~fS
zgIPYRs11QyD`tq?l06LXj*0|5iM_4hfknt;3?Pyxu>#CjYvgD8xpaoolJJB9zfK8!
zua+A&7fn}dx1FxQ*R%hg$DI~5)q*f$PKAf5!)@Y?^RxkZQ`Z~Vj#wtqD-x1naJXqh
z>eZm8d@4$f@Y3t#)_Z!Q?}ygO`~jGghPP`xq>{c&gxyl#C3+@?2Pt~u$f$HWJ<}qT
zQDv*$<*tQ)NK}@+_q=5S%!@+%4>jEp-~R`HDrrVx>YF!+yp(j4-w+cDmU&hG7!_E!
z1xCDl+!+?%sKu*rCDITPH!QA*SYN6i@iwr-?@>x}pGTj9aDvsa`-_+p7@V+*X`uz;
zW449#0qWgS<|%JB%7G8G@sUlQ7uL5prqpunN*S3FF+W~h^1oSQ6|!<jnV;&~1k9n2
z|NKk9cS;=q^dpg<0QArV7zy|ak>5j1lMulo4H*<grlsXCrI4OxrnWcVDd9%GMXG#_
z^vYWO=t~IPigXfw2ucAENcJuECXP(Zl56KRz`Jgvm4jl91Xhy%ONJ#wAs&fhOjFvW
z5_s!~B{dagrAUEFr&nDgASbSqK!Me&GbE1{k`L+zBgo8Z3B|E+8Y>4^+B_G>gYHuI
z%EYzce@a5ePPnbB7k}CXA?8+h7{w(;Di~tP2rzYxYFV-HOp+`@h!Ne=Lb-l4t8^Oo
zzrmWYHb@nt$iMUfCF%7qfM5LS4S};aWmQ|m^Ux$!jRrMh-iGQ2j>+tPLvPqYcsp@#
z&zo&ezG2(beqw=R<`M#&h?|U=W;y23ICOk+*h4|@klQ4if`8tVo9D_@9%p0Gh(y4d
zm4;)&^FVLGP<!(Uk&tn511jJz=Gyr=!&RTdHbhs6+}@}{+=0CC3-lp4)rLH1c3|;}
zz?^GYIFX;oaVGK|FQSbCKA+qau2jgC#?*rStUy^tS=l)9N%jX3YAN68mE|vm4@)*L
zDTGu5zBnX3?W@6J=@YdAl@UPj7CaQA)l=8fKa6(grU=NiAQ?7jRxC%U37xezx_sao
zsTD=_TJbo58IdMjL)a8FYAsxY?p7eGvg%`ghx67OVV`Kx%f*e5^T2Ubg2M>mX$kq?
zCP+jonsV}E^3SYG$ZsW9D1^VWxQ4lsZetB}tid+>%-X2stdc^~c``d@wq8Zk@rkfv
z!9v)hbGOq>6bq!i0fqRMLq5w&=ogdL9dagxfZ{y7MFbXt$upp73`}+dkUdgkD?%Fg
zPETiQautk(6~d1whrurFOi6B>X;0e;eC4;^@zW8*fSx3q@sm{HUt&$~m7Suhrm>JB
zk|d~i!fFR8;`?Gv24z4WodS2{>kb7&Q)EbJ%pyzZmZT%L<ua0i4}N24o2wl^M7qDB
zGs&UFzuR2KRepF)YN~D=w&lY8R4^0imf39(clQI`x|4JYYE3PAjSaS6JPNz&17MRn
z{Yqprn%&O1Tl&AHB0UuYX&0*P8X!mL<>rYa@zuIEqlY!{QQ&HiX(*dhNP8r8+BqQ4
zPB^v6`Ul32rgzBne830>4+#6koRCEd>OJLEeuh{`$}h*>pUYS_LPQ8*?~zv5)wI?o
zqMnj?#<YV<n)MSRQq1zyU&<r|dm<$%IG%dT{1GqL8j^9(6;bp-enNh)OQ*F49;KwO
zn~!m+RA-}itxEoac3p8@#9X*s5<az7LoZT%yV^uTmjQbJf&V3m5(v0cprvE0B>wsq
ztxgD%#D{yFY#6y>-UY3ZG<U9EB@`UVcRnwcH;`IUX5v$hs-|(4UHnrc(Q^BFC(>#N
z&UZxX`PKR%Budf;#$JHGOyNJuBKy5Yv|)zpi|x+|O6?KuBS=isjp?<OHE0hM8}K)5
z;MG_7X_eiT)d95FQ*Ao!L?(9`9k~g0>nZqo&|{xu{ftq`_J!3NdQ~q?J_c66YlwY0
z>*PJU6oT(ifRa<L3HhpeC6d&{PH5pM{Dv7QI2(Ej^&QIYXfCIB3Zw%W=&xpvqNf%=
ze$dT=1|e`rHOP#{rWs6LSD;egg+hP~5cMDojE3YzGQfCI)Rg)XoL={~y$IR8?04$k
zlyV1yTB8xYV^=HUiYROaIlTSG!7E8Z*ffteoI*f@ge?(~I!B}bZ)!9ln!WLO6ROkD
zKIn}5>^GrBxA!EP*m@DJs;WSRdXE)92r@!o-&>^-4o5xt;p|cf%t<q&uW++V%Z1@t
zcgP12DR@usBQC!MuH+)$UV5`UynB+2M*ac*wwsiCFC`CZ2C=b9XAGDg7@4D~8Z*Ob
zPj5!khopM(YDE?@$TS)nl=L!v#&K%KNi-08H2+=+JyRwu?@)%JpJ23W$}k@28qR^u
zm`Q;o);s*IYgrfv&^=|d+B3t?nK(zkT%CoLe{J<p)6~7wepjO$bZwA479w2>(ck3c
zm$@y1TJ!+={=Q}E-)vXX0D<#O!!9D<@&!siEIXfx4b%iFno9)Rtu)2LRm!ly)WP;l
zpb=&g)Ijp|l&R#VlC%=8P2K_^KF-1mAW%t@q&DoK(u(yZ)6N3<VPK>3GzU&;N>Eo7
zyjIyNwU7X@1|XFvUX<C?++rx+5?rF!>7>}mMJ2dS-&B}L#uCX`W`(d$EI~SH5sPF{
zr2P|+4Gd7l3y^h*7FHdzC(FUU!=yUC$h*592gUV&hihx?pM_IL<^dT(a+5uaRT=|H
zcsF>=f9b1))4^!Sgjeh12wvKLP#f_)Nt<{p6b^Ho&Ql+VJMLJv3{$->>3lzR_ND{7
zyFA<&R2oZK*l)!`s}Q=nM4`0u8kt@6uYTHpMecg<Qq8ia*O){VDo_VpJrtXo)`bX=
zkl(thoM&9RlJ}u{irX+;t9Xc8?TBtp3aKX4{?7p>IP(K3eXaS<@5*YeZbSlb8@!N*
zby9dThRMe+g=2*VRE5wwJ#*mvhzK}st95*5Xz;aqfR{OK)G3kbjJ()>3G9L7qqYdE
zRv>V&P$74ocgUiMOg8$ZLza~#{Mrm)({OVyrE89&j6iRd0vT`Rw-ZgshO<ZP_t10J
zBHn?kB>zE>Ys_PjHuargcz6RdGNZ<~Zw}&Zh=@rxWx6FwFGRFoz<*ViOg7_0@<Q5^
z|Fz@h;cqmYPHYO82h({3NwNVMC2~6I*U$LZ9){B%gel5nU;JP)cfCvpE-gPnjNqIE
zT}>%@aSw+Ooi*A^A`0t6Y%3~Q74fP{HN+mC+{+*0J)&TK@*&s&(%}E61SkLy(gA<R
zY$JXN)@t<zQi9&U*2Z8`K7@(Ve*~9fqyfU}NhcvpeQ2+>qtf29AsNrk9NZS?m<>^p
z`hOSDzUgsUHLtVoS(s5`Sy66-rVs}|B@qm~bd2eco+kZdQVBLdTyhOUX{+%Q3=_-?
z-7`StYyOw^_R8bqMs$y&aJ;E&;y@me$`F49t}Js0B%cfMRLu(%w;DB<3?rgYmT<-V
zn0yCxOnXAe;WvIQs4gpMlV2gsU*o?b91yz<m~-Tz>O#h0BhaYDceHt6sgn(Zs)z+{
zai^9+;}Hz=7KslPRX}PjK>X5?0Fv);5QY@0X??Z`dUY%G;AnkaG41EA6^N4H1J*Xz
z*O+XWK-hlLb7n;axf6nO{zy?b8*vCa?(7+ezmEU~*}a>Y(lp+X@}p(uR7)egg=G)_
zuc>qLY@gD5P-bY8P9&)?M?>DKe~=&oOA9S`?S3W6wrgEvuI+0&3lfHi1#ynWqw;kH
zLR|AF2+518^fX+ni-m>{3emFkH`*BqR@}pjgYPJbsVD;dT@|gEkyY^;&Igba-5|LZ
zkMS6nM>cCrm(>?Z2{ZYRMhe$Ox-7czY)-O+VMO*V<(G0yFa-e}FoR?#m$*$;A!skk
z-zH76-wq>u>^amNW7=TM!ak*};_JXL6+}*~!a@-YG(VB-ij<DSfGKlfeNCPbr%Wv7
zY}3?Rlh-Y0Sq?|gmXP&6b_Qqu0NcuBG11FPl|V)r4raTGaGd5?E%2_XnQQ98@3y&-
zrm8q>qaI%WsN(hs$BR-n;+m*GZsK@x^~H@rNp(!k_%)r1$Oz^aJix_!N4^1e=Hwfn
z?twG`amyL;K6feOs>;U6XfEX+joEP(Y0N@C5=B&`n58TU8pvac{%rU%<rYf#RHJKZ
z4U`S-DWh~%PNN9(!3bqf=Ydq0^;v7>dN^YOvH{Z$;(7~3#B3(`XO|}`KOytAqy#!Z
zz1i2<lRgRbr&x^H%gG><+3MI`8Fkf{sqPQKQ)LN5rD`aJT};T?Y&fe-iYV?^_wdZr
zz%s>Hy=TzswiSyYROj@ZTnKyzD8_(IQ{|Cvz^jM%o26RHdZcO173Lnhl`O=;MUfs)
z7E85#h`W^hvA!@s`?<=!e%Y4UEE<+<Q@K%Ll4m~>sXY<($U0Dp;UJ?s`MD;G)bm=K
z3c7QaqNX&&3y%L6XpeuQ;_;M$<GH85zB06lW`mg)1b+DGhMuhr?Ir}};-lY%uR(vr
z>S3xZR$Q=@gy9!||9`}^aYi|JOITntnWK#H&$MX}UuvTYp-)OX(nY`JYsgOe*ij18
zWPT?-BPoLNBqQe2(1n2nOWEn++mcR$-U$sNl?iKe%k6P={fiF-CdxG)Qf_WopR?`X
zSqcWr(>2E@lUdapjL5<x7#@<!;u7hI+T~Vyw)FUY3^69D(GFPs9A(B-_r-~0#icH^
zIh*_6>!hqP_W84Nv>Z5VA&L6`T?5(pkFz>ihPgdOl*-wtG5iHKP*@GmQ!+STBh9U&
z<}IBTVIzNU<p6L)h1y;8226abrpNuue<KB5s|;H}Kv7C`Oza<bh>y6Ie%|`T)2WDK
zwjTfQ?YsD0P?Y9~sqB1j`*g4oE{I?8N8i=IuorgtXD`MkJKoL6CG0jx2IIBER-44a
z>QC%yE1QDkS^z2WJI^)^8hl#or?q8Gx<$2HWVj@{fO8aF(M@qQr?6Y^yxCyRHj7Pn
z`21(+lEx8RGw9_x1u0qP*<wIYbI=x25tS$S{Fy*8lKkUhvGrW{TE#3_eV0>v>~6UQ
zaD4fK*K|{kMC_MCg%h<fO=Jh_-1Xb#%arG3wR}+PVf8t^`OR#RQA=cGkKq?$E~R$n
z<P@GTFR*z8TLLaUBQmTSr0<AK!^RM@v{pi@YRQ@%wq5s%Us7o?HyuBQWbGwX8KFez
ze@cxV9j8N1FP=Rz@TAA9)eR@F5g)Z|P)$=t$Ex!Zf<AZ}Y)5{_xnig~-tHi-AMdiy
z?DWA|N4H#Ai0=0oZTgg1*fUBx^)QdCCAl?xv(wx<|M%IL|NDWwBj47-7??ZA#hrUu
zdm6QYygXuo6>;ZHX<S7956WdF{SsL+yZkk|Dc`3=<rZ@bJ_8Q_L3iI(cE3wb7Cr^G
z^kn{bXk~_Q-ObXgux09`CQ_KL<X_TgZ3y@PcvpZA4$D1mr*cbOGV&_CBaDNF4hJHD
z1C1_r#R1LV&su$9h=Tk7Q#ydKEAp6|*k6BV`5O50RD?d;6bwGdkGoLMN4lr#`4nhG
zHh;<w7PVqcgC4<ghB+syprDxiX*%6w%+RGyw}&p=Cgx`{qdf|1mKC7UKiGD~zd<m=
z-vVdQdtA&<c%!`dr?&z}4M_|gg)b$FhQ5=msLFd%DlvrHGP=4@py<A;6)N|QGs4$$
zI@opcfBDbK-K}mRiRdbckOAE}Ka%8<;ELPhk1=2Uh-geYUjAA~^ufY*=IQoHNb8cb
zEY|AE1pX!dN7{SkoeK5xz9Wj3PT~Sts>B(W$>}v*Y<h6W?tdq|2^ME*QdF(J&9Aes
zb|}<2K5PD07X#3u!i)2QLc{xqWL`KOl`BTG5Px$t#!QRK3K@6J3K8L-v??S@OJ`Y?
zbJcT|I<bReb*ghztn(vPP1p!D-C6$QW;6LgLhg_If1SUo4L;LfuQ^iHh*%mwpbjV2
znB|L^SjfY{KsJV!1W$L15F?eIT4|sLx?_>l%lBf^Vi6vOzvMbM@&rdYXmK(_lr8`?
zz3rGD8sAJ=dbb@fKHh`b0EtlIbD167QojY$Iq{EBF@qKOWBkDF2M!~$Y_spC6*mHA
zDaR90vLf*nnZy6GQ4-lfpy3~BK-o}|Z7O#X-NY9WyB-0sOuwrm050;^$rXSJT$glO
zm0LI|a#<?Yk(PbblWpVXQO}b7KZolyGs))GLbm*oEm<|)FmDfA{j(+&8lrWwxYL5j
z+aB!7(-|}`%pA!F`Ps)_d0Fq&Om=kE=yfg3ndru7+^K16#qV)Z(S~)^AXsxC5r&F{
z3c7?jNF>kKX*CM_a5}&P9i-rv-hE=eMVhDUD}%mws<J6Ogwmb!mWDy1<E`|Yvq0F8
zn@@}H5hq}(*KR*uvj0@Mh=aNmbFfFAtGPtOD)Y$dZ`5XMaNY{0TvaJN7gzQY90f?A
zZ`vUdinMfKl)p>!ReXaF8M<z@E8Ur`1A|MwMMX+mKFpV0*4+ApzQB|y1y{LPO;|WT
z>oce>id$cd5_cOIfb|i>VzvyuyiR-i9?ep)KR7d(Fq{f!X1}#EM*pzaml||^RF5V(
z)`+I1OUPG#TF;FipK3OC@eU2h4I%K4sae6;Z8C_N>I&^?*gN}@Xa8GN(4^^*v(g;V
z@vvXjcVSP!9gRjCLRWj0aFvM#c@t0_9Q6BHlS+m*rAs=oL6cOokAzl{_)-_xSHtpk
zScs^JbM<Pg*h<@kYD`c)ampjH53wMQfhc$~^%K#;4Ma>FP26pI5YXM1nrQM#*-Xii
z{EXKB6yf2Im^%=>lFG}0fX`7!f<>bA!MRmStui~C2=JQJPKy@=v<51S9o=n=L_6QX
z48p7AWT_J0%i5Fg$o0D*tPHG&nFDwQum+|<`kc}kM9>u^J7yOpd|^+y`=_m=v+Pxw
z)o;%txG%>a-NVf5#e-pq9#fZ|VeA1Kk>0|L2oIedJq0;@1~U*Jru~qFtNPX`A%?Yp
ziCMlB4RB<=3m^ffAb?3gS}F%Pguop6Fd)`~ILQg{3Fij&0SW-wsTBCQuw-Mc(B1Tj
zkPvk?*lPAyB0dxfkvRq~3Q|cqp@~5&E#QoraCZOyCGFm};<~bRLBC2|WqP$`ls;R&
z3<)G*K(GKwY2EA=f{=tc1e=3oc+Gl(x~$83gZlnH#+(tz&Xud}s<vyTOq}K%bBuoY
z```aQ|KE=`hzMO=JNZJdwT(0nB@$I;w4PwB|5n|US_?rR;q7_QgW*xAoFyQLgu<U-
z#K0WD)+TP%s@A)ga<eK&z!=&4C)0lhXfPh@<>7A*NAI<hc<gZ=x_}#)p7sIQ;#qi+
zPZV=q!I$;rZ&AkdaBA!ww!nCeS{c>sk&$({wBnSWs^}MPOHQ2m4qH?t*|{}Cw$Zmb
zBkW-+wWYdyR;gm_XJ70RH;yfB2bnUybMrzD0DpE716S)|@24Y~3*I)WgzNn6AGilE
zdD4sr;+9N{lX&HUe-qkKTfFV`R1!R&AvOI8r}hYi3$<I$XT<&5Du-1iE!^1CHMsd`
zYV-`MlCJ0BOeRT6r6N8iJF<Rg-oFPp)O&WlD+)c5+JpV4yzaVDKHHU$COypcPG9~u
z{AQ>EZEAV;@s~|hwas0Va0Yqf2>dmC&NMOb(x~tu=yCw}=H~*N|7KP=NJ?{Xo}#7u
z=TLOODWvMhoy;#)!Rlx`g)tQwrvCLx`F`VQp;uK|X?ig`qa0dzV>(V!s;?P2J~q?>
zbMeZW8yCmh8IUqudHxJ)%tYf8m8*8@yVl}Lb=TX%J^;o?jtE+J9(Bn)0Y?`WGMG74
zEp6C%s~X*6T|#oH=LBI-4GQWyi`~1rtiNWVfVMY+XL0VTc91k(i^&OAvKprM{+LOt
zL-Ar5JMj>$McoN8>hs(ge_~^^QLA?!MO4h5V<_*kk`VN96oo-{JPEAm$#=SSgn*m3
zCNbzyy_~)->3|igf*qJi8aj{CHA4cI4eLAD?(~_B^^9mp6ZvEiQ)%~6UZqoT8(ogP
zsv=&4WJ3o>8fBfc1*`z!D8~22O#61@CUqWVv-|xg=>eyVprNKFK#_Y@WEtS-TK9@Q
zQsDdYU8`5Z{Hb4#k?6`g{`ffH8C8qm_T84%zI*Jnj@#gWDDF|a%JCf&8`Y1o_kVZ>
zwNcCpQ1Zb7GvTA8;_9z-Hgg<l)_UX*H-k<RkLAtD(W#tWS)k1XDc9OQ`it$n@3p6k
z*>bFUJREEJaszL=jkMb5Uk9q>s)w{IRcnw)eYK956&4eY80bD~zsA?+sI-QyVbevA
zJNCGSo`wi8n3-|Y=(f}okbVZoO;L4lvUpXt_s!&W>O&Fxp>#6~aNbM02Y1I<Ai2B8
zjQHWlnTgO5Cpr5^^{r)8;gQDZfk+vIet*z_?N8E&DGRY=*9(O|?^v;?)yOlR96fHS
zdZz8AZ=6=Cr`<|y3(C}$7*^_x_9obXDEuE8jo_R5gAnY$_-$Q(`m6n<-}}UQiV*5$
zBnarwvLg1tMAWv+kidV-lE+r`wr$m-B%y;vti&;0Wa%H<C!A#KO<tLiHaH*z6ys@6
zRBqB|xiicA{v0Wk2JW<UV`n`QVUim^W@TrOQ5`ZmDE^t*<Cv2lPuSefL$mq9t9^s9
zCm>7Vr;9)3so<F^);#%JPb`$l_il0cJ>iHxH~Zp!l*yDVLL56%03BNy1dU&mq>1dp
zJi>>&Ng$c%uQX?ykRcLy#caxSHtUXBboCaGWyeH%R?81UR7G`rGxIk7m`o3n|GSTG
zWr=%+PR))KQwQpM4v7q)-oe1gV~4i(Hj|`^^1Xv6Z(_>GTsr}__^VYl6z#Np&KnrD
z5q*?f4hB)Pgj{9c7^!ezTkyVMcQ5DB1SBlwrhi?--+5ZbZGPpi=>xX7TXXG)2)z8x
z{M<%aMn(F(LZ=ta7ENh+ExF?D#qs@e`LZxq1>Z{Ot#6u+Q0yjM<pGW^&i(F9g<*}x
zGghXvWUW&#BSS{3&@hkgUuzR}-rxM#wbMWnX*``7m1Do8X<_tTxnDJP$mO9Zy$e|x
z3id5%$|$?&?5>;zgufiLHWG#ZY}82NFTZ@_i!=jON9KyoPT0S;)sPi+9dZj|*`wFX
z|95xYE+kWtHh%5K!r^~-7io6cnf>t@Q6|s&{RzuFc$ekLQI5swCprMR*cSv#yI#R8
zmce(M=<zhDEmj2Fc&UUWW~D`78?}i`iKlM!Jlj*~c8zi7XP&2^ZE;rlm8s*x$lFVx
z<%2CL_vNF>{bbSl_U!1)<=T7>4xe2JGnUUd3s7eDDHQu~Sh7%e9HNWWN1M%?<Kr%W
zon^QYKM*rr;W(Owb1fJ1CPW!E!GlXmJRCv9U1GdMU#G3M%fSOqhZ6G}WDDbHS7PIs
z-~MAY^Qh%`u?IJ+;kkr5y8q#2w<}8zgY-B9lH#EX)5|(OsP4y$x`Tr|G9`)z?UVYT
zCpG3Pxv~0upV%}$T(y3P=b*V&(mA1P%60HnjtqRMuR)Iy2jIi#!BBE<PDDo%uw#E+
zareP9BMYQ%T2i=K?7CslMsS{Zbr)@m_4|SbJUe_XxbE_lL-a9vWumZ(y8rE4=oo7U
z`s40{#*L-9SbkFld3=$yvpxFQ@7|A!mViBVLtbRLA~eBMqsu1w_wSS@{tw<MSe3f|
z*PE^4I&;n%lS74n)MrMhk+B1zp*%Z7$_Ts7PvbX>_TnQl4WX~3+0jBb_D-q<s$Bm3
zl6&0WiN2D8#(5?pCr<9exO<vcyvL`{pL@=dgX`t-crdHl0fI>p4hZRP2r8CQ7aLv}
z?0+kLvo?7gtj@%{DjZOjBf9f8Fry%5arS;(dD6FvMd82>6E%ayqAW$KX!)dS>llv0
zaL<yf%&Ms+!oeoUOrB{l!)?`Oghj<JcJTloq5vz#+F2N<njmgi*X6==FRCA3YD-+=
zGlQ5PGeToB`|d>7<*M=W3ezJ}$)K?F$uWDh@V6+7B@7fF%pI1ixQn<tkAfLYDNA(s
zWOjRX>y$48m6ARZcsAjc3U~5t`K0RNwqXp&39p{)Z$5)(7FImshCu}mpC7EfBnb1A
z^<P}pEYSoX)!H1(=J@Vld|zMM43gQtLm1D9=)RZ(dB!u5d-#c8vdPfSuV#(fx%`9>
zw07zMR52>tPFct71_}5T+xm5q(b@6s{rySSI+T%AK7IL*kH3`#Rj<VQEKB#U_en^J
zQ>F>1a8z`#!4vsV?t#Z0#z=d1D{f@GA6m?g+3VRKe<V%vrY`8;5BqQ~L^z7~tMp)}
zF94(fITwTNl4g?%(||{e{f9_pMN@vvk8@3!6_BhMDQ%VQ>E(gHslVGj2YXNBM#~jN
zBZ$HF&|exKn=;H2HiN3M0QFUtJPjQoL&4DNZ~3Mnn7Tb%W_iBKqrp|1UCr0l=l7o$
zrk<(!=(IaoDH*Q;xi?u>WIRN~Y~)1VO4}G1Pi~J-7n60wf8s=YvrlINkRrqWP(bOX
znIw^UnEVzzW<R9Z;SF)fp7G0*`Mv1po?U9}_)u#_5BHY(YW`l|GcP&0Ut|yKC;N$Z
zK&wLiK08xe%PKpzkEp^tnFp<?Q}WG^-&WXrGdrB?@~g~7CmGi37IUf5>R3VU{^Wio
zES-F{HGTCTPSU#ZCj$7(9Qm<u&So`yE9inNG3i#g*SLIt{iXp8(#BZH98pOv0P)W6
zx{I<FmhZ|KW1v_jw}=cPGw~XPajcahv0N=>T5WYgK0}d+qH?>P$LY^FsS=CF+!n`{
zeg5QC*>q3wUtNFblwO-+y@{_P*5uRLQ>|E@Xhg$quM_s#R8WtTyZX~`F}#M*;BfbK
zPq4$;u3wM(MbMM;n4Dx=S0}gE%BU>S;`8-sZJVD;v6PpH3>Lb=`MgeZHmU6p!H-wh
zXSW|t@{H@mWnvdpXF<^Lvp?P+Qys{gp%_r(<Fz1cpqaiVxwgmQd<$Btn8Z@l0r(|y
zlyL#}$4Si}k00FG+|N^LS8p|c7dbZ2pvz}M0fvqi`^oww-Io!}E{CU^9VtHd&9U5j
zXR_%Si+p?kZTI!KVCp1kGd&>Jt3hX8b=QIOH3oqK+1iJr8p?&=Or~4=n_HCdT`UV0
z$2VBbB-ePRlHx3kq$_etU+M~%VXN0MnRCHk=ngLpA1<+=<*(n+ejp8M|MK;iSLEKz
zU{*C2c9?hn=bRhSCOq-1rG%{;)eZ6AD0!TjOS{q3yqYJYysmd<{`L9d-HG0p9i`<f
zPjiy&Ijy74^-=nKzuKMd96tSzM4fCy9xgptTo<L^aM@P^b{1Gcg8ZO_(R_!oA;U8%
z6{uG)^DI}qLm!kRgcWO&@k{_)J)3$26x?^HPJSp+jBJxr2b#i$-`6sl;p<U2pyhel
zzJ>V+_keC_Vz1gg4=*l45J5}+!#9}3fyS<^k}Tlj+UV4-SX<4UQ0Ndd9}J74ukSof
z4!!w+&Q!ZhPSvB0I~gUC4ycx#<%q~@HH_^fqbmIc!(@U@XR^bbhIY?!ChR|ldUE}7
zfVHnPXgw3WIF7sJTVr56Hrn$-=>|6V5x|KHWxwo**qybQFMkKN1Dz`M{=z-&&#o_T
z-Nac)Oh?iN4=^6EGs9>8>uI>1f?Q|ES7pK#4&v@&F=53BR(po^AncF!OR|UE-CdrQ
zn{j9&2)H)AyspZb{wkUcx98%HkAjV7T3JCL#tUpcSHd$0sG_|`c_!)w4%!~#9{N{+
znxyU<pQH|VgOV%b!0hng%_6=%Kly!;c04W3q!^6@{9*@MsuGlQ59!{E7)s2+)#7w<
zd2)L?dG_L!vhA;-S@>!gWA0-gta1J6Zgzhi$osmCfJZMrWti8tlt(68kq`|<nACSu
zLd$THVQ7^T8&dr`b|OO6BL$US_|hx`=Xx^#;AmuzUalq)qrpIRiZODR+ryNJ!Po@7
zVBEHq?Hbc~puYr^{NnrElTGg3I}XjsnwUX+t2{CYc1$oy&hwJp22b5%Rpid*zqaS9
z@g%|I)yZXVV;RaLN`2|Q{qqZMJBDtz2JkGHi;LTNa%3NX(zpEbV-kQN)}tKYEM=%M
zH=KsYoTOF>YzAyx5?@VKn|XumW+32|f8xoZi1!*`jAV4?7T5E4G>ZHxJ$;q7+jlyF
zSHC8Hzc3yi?bEzmsMalCeRiw0r0bkz=}IBPT?TaQgBbl;v04VP_3FjTJk~}RPN)7s
z{?qUD7U7zvb-1y!7eX0^!yrb}Uymx-V}TQOlrKU0pp`(Hg&R@F{$h%ms-Rt%RP?o3
z&~-k(C_{ep-7nnu*6#t0l13$<Z8Mioo0Tjx24_4G*cHyBs@VV%5|TpZX~x@*1xH|4
zL77MUR1Ll`-Tf(AkwjyqRjF2yf>nXFd3(I}ux+w+g9VtilDhAZnOjqG>97g}hNULv
zP?JPSd@_BpS?5z(6Ra07v9hOfBM&f^#1lVGeqFD<ksZLPk7qI?$RFz3iarB&39(@e
zq?_z5W^jA)dyHQ6IfO&kN4Il^Qmdd$Jmot&dpG@a3AnZc*|egc5Q1qMLWsm_MmU!J
zG$AYn)K%q|<^&&HJ@sTeE2IQp7}L_HA!OBCjxQd+x=p!r+R(h3Fs^Gz&MX2S0Dy6`
zOSpb)-<NNjR*j?B3q9-Z@KscZ4i5LmLR?E3@{RogW;IN5M23w{x@MQ{-(Eg_p)!$z
zw&*B5KW~V&f7H8Qx1UZSLg0Dz8`^L!Uw_Y0U#-7P9u|2@!fYpz)A$=~|3(pEylMn3
zRAobsHd2WGlQ?^9j7ur*fZHB1;qmj@M3VS9BCisy*k=v#E&#fEhF0aj<5b^d2Aj^s
z<u$~Z*pYh+l`@Jz^YbOBlHZpIzf9keHIinnJ(-;sa@>;8++PHGmeHi#KGW!8p@oQE
zmpjUFf3>&A_MKKQ8cr0A2lZ<3WjsCjF44qyqR2!%QT+mF4<dx)Ihr6+4QDDzhD0ZQ
zQ?ciT=)3Umg)hBx&}}P-N=$uol+cC>zTuHexUcoc4(Au1;{2_XFVcTMF1LHt7Aw-e
z{lKd)Ydu4OLr5~dmp6(>F{vs!*LblFq0NRHatrbskxRHrrDUsCVA<4^XM^ME&c-gm
zKNm>-WOZ%wJj{J!$4{QrjVG|A-?)H6KTQ)CUH`_N%wa#qZu`1uv84>c{4rUvZKXx#
zFCJa;p%3qeu2J;`0n-DFmGGb~I=xp2Wn7L@V_eCK+t&(owy)0D9I<hEelAs~o0*+5
z$gS?aS8Ge%pkj<4tu<j;^t!RAye$)C$A{V!C#i&s1JQ^P&X}#uz%Pw(4V)+kB2u%J
zasXZuwyk~nGl5+NwkwlU+|p1JbTfjhgV~wbl~t0yeT*Yccl~IsR@%^`!Um%=e(^&z
z@v~+TR?HucER+8>CYvE&{&yk`J9Fg|#4H1(`b)qFbEk<)gG>aNd-F7bf@jAm17F*G
zD8cz1HoIgt{`IG1geq_VuxkDFnQyCxxboBVs>_P6Ts^7t2UiCQ1sJYguT2R>&Lybl
z2G(_vM~qKt!X3>DQMRJ-hpQ!H81Q$$<RX5gw&bDSo@SK$=45&*o0qwQVKmVmt)%XW
z*~!YF-+2Vbv(HEOcRsH>P>DteC6~GSLeW;_n?3P-WB1wS+uu}ZwhRD4NBOc)6NT}p
z{{(Ni_nk5uhj1nBVtYPZ$X)dO9ZL@qVwub2Q`?K9v$do^4pjcAJG2c)D8Pb=c2;X_
z;c(&tOos)vul;57@D-vaGyiDvbh?l6_$v29Tlu>RewW5W`?TA58dhja?pCtM@d&Z2
z04Y#zigMOF@8M(<EBe}yeH6S7bu}|pqb-0dtY8v9A{0D%I!(lZ3@4;qf3=^nxc}p3
zPrF%+KaM7E$EeVu483<<(=<1xgtfea`msnh7PgsZ*pJ_zJ}2TGY*?OrjISq8rY3P@
zo!Ec(5tJaO90q^7IGsIWDtwIx>1*Bu(p=5vTawkSGTwn|&v=1L<&*AT^SfVMTOzKP
zCzpv{Sa*+wDeBWZ^3s>8`K?Bn%c-hSg?ddGV0ugqqqsp?x1FTM+O@0pkVW8=bLv9Z
zN||^F?^&y<<T2_>c1Sq{?}J55wyNg1pBX`5_ApeDl{cXHnW|XR6b}w7Qi=L1GR4V^
z=__go>=_=_g3y!uc;Zfr%63b*+pZ_Yc=*b@xr*gHb*0gZvK@(t;OOolyONLc7l<cD
z#myiD)Gf%kv9Y*9VLN<o_k>KgT<C#n(zb8~v(USst-hO3wezsQco&*RKM!A)cg_E`
z<1;8E|2Gzd;5Eux&AAvWF}_R%)`cQMUYJ_ottuHnquJ3mbk{$Qro;rU1a!Z`Q|A7X
z0@_|%j*N9OiBRgtU4A)c1SisgDeF}dQjI3E2hh)tR_{90;O2>Adp%}o<H~#oh~!=7
z$B0mCl1U7ok^2+YLOC|-U|Hf2Hk3?O_aSQ~LV$-B%dNn|5QOHeMm%Gc8v4ViTR|2`
z{qe89>1V>ZtB3ITc8`PgDaf{nRt)%lwhWvo<wyZ{PtRrr<}bMdEyOD@h}uKWW09rC
zjh00rdyo`PDt}Ebd|(OIUDQ=#G~n=EVHzKMAbak@li9*?tV&5J9c}cE0-|gFAG|Sh
z7QfV=9{o*Uj{0Q?fNHo?x=8#awDjbIT$bMSbyD+5=6mL;NY}&#)1yrLjM6I@zHJxM
z0L>CP(9UlxTcGRMkTLGfk7>*NVe-T4MIzmX;3H%zF$JL_4#X}!+zR8KiNO#_9f-<7
zZ~uzV1wcrpy~b?b#AA#<J{)F3`%S_8Jbav9Ikr1mRXr+slUF-W%KdzeCz)#|b(bes
zmbI=YtMpA#57n}aoU&T8EFDXgJP0;Ik=Ehu$RChqNc8e`$oY15V^YgAW-I5ziX?AP
z)3BPq&J>J>Y-70&-$J#3%8^!MB$N~<FEY@eBu4)HgE<kdBbuspfpMnO>D1#13MEYL
zsuYDQj6Y)Qq>-|X4st7N12Y5odSO-Vo;jhd;E=0zyj*)^`v8v@1`nMznsy-;b>nJz
zLg?H30F|zw^iaBmdyrOFdJ4H_&Tb3~8ZRp$TS%&YcL?P>Y@V;DpIcK~t|dfckee62
z!J!OF^<h>MLxh4LELwAhkJgbL-N9EIw@l>xKZb5g`dvvS<fXqZKGp!CYf$7F%7|F3
z%9p;LzMlYp@oxlf9sfl6I|3-3ux&(2>*3ij4~w)#WN4<e;FO$2RE3_1x$xHNB%#bW
zA)t=u|96!>1#}VSlO&0(6GwYs%**rt{IV}@@@4x?$<+_nF?J-T1*dl<r@tqw2GF!j
ztU{5QazK=zr-#$Mu~M<#Nl4zE!MNrcg>?9k?>#d5#M)w|tYw)N(NFV&K8&50WCPEj
zdEI^(kzsyH@RHL$6h|H=ZIP6ZDD=O6haFRucR11E;%*5E2#k^+*}vfW1kA%Ptn4+Y
zMur)ke<a8`Mryg-?}0QS2`lA~NJY-sUyoH_MTWA$(u;YhtE{Xj5h`8iGd9BK)l>0x
zCPR<FV@gSfHXiuz+B_`>x50peO_R_o#EP*>t|!!vjz4_!%`ceS&-6>IC>*Ugt7Q;v
ztJ`X%eHv!gG2Imgcoa~jPvv6Ys5#4Ks&&SKsF}is?iF;EF{{WdYR^0`v{0GguDGH<
z(onyZhzQq6f|mucF(X#w?xC5l<ty+SRG8++Tw&zZy3*2i<xEnw!K#km539E!L@o1t
z&)C+0Xo&|if)~rp^e3)T-Z@0noZG*7r$<(?_rHH<A6P7?{CD5^KjT#8I>QW2<o|EJ
z^LrHd|Is^{eBNt&?|D1^=_-Qf!0Ib<9f6(%?%p=Lx?M)J6|J{NFGiAI=F05WvrsU`
zXWBOh1!&uaU~f2pi^T_LuK<+4@&raI0YsnO{(f?EeY^5SLqQwO{U-#<ZHg5Sp#Aai
z5C95-7WPs6*$D;YF>&OHBT}8zL+$Ec`J(_byike5<5gOs;TY_vGDTjyF$WAL5^A?w
z8L*&)qX%!Ymvb4E<Bu?^ZchGiyc*5`DoJfN2~Ez|$HmbN-_i_5Ov(^zdQW&83~0vQ
ziQvaU0wd*({HG_zU<cS-!>GWrJa=fCCgI4CA1#)z#AHvXw;L6KQDC4T!_AjuCl2-F
z>zmx)(G-emY<4~BMK*^xCknC!2E<rR(@>%ti4Z{sF;~=N{)4z~o0$E=K)YJxc}3Px
zT9TqKgmEgPo=J?i`;mF2&Rq{KEAqV*uiQn(k)GxOjaNPz+D1ytjfB4KH$ul1=C7m+
zUytsluA5dMQ~Fn89FZNE?opkIAch;-c>aIso=-v<H=Nl!d%K5eo88$>TkF@9THNcd
z7UM}8?O#Mdsx!#!5!)7oa?%B`c)gPO39TV=;}>nx2ySb5p$na@$qff<o_0w}PqKvi
zBh#7nP)rNFO*PeHT^c-wKa&RjsLrRAC9-!8r_VOpClkf&FB~?#7#(r&!cTamH2r2K
zFd<1b+@M#c+EE5WVJ0aq6&~X;94{THZeobUu0O&f`_bu6W5q$WpU0vd(w%PJeWI~L
zT&4>GhaM+94WY0J=T6UNQ9)SVrx>oD<o4ng*|7hhGK9m>zsu)Uo8<88yN8crOZ)+O
z8cJDwtL0aL4;iT40bLN5;PPdHbLwx+q;`j$%l}3bspRPB=D?X9Pf>Ra%P)muDITBL
z&5Ed8HK295(jFefx^jvf>Q^_jkGVL62;1riw-`_8XnStJ=@9zZLGq;i<YZ@;AJ=5;
z1qKZ8u6QBwIiAgf_}Fs}5~esPH%`gFAZ4914&jyXcbv=-|11l7L7wI<#qt-sPoDhN
ztuthyL5Sr+heii`@>_>ojJiIbUjia$D}~>$)(>75KZ7+DR0YxuC=f_&D9(-xB?54+
zcaHF(KCiuiXD^#O@&HYT^qh(JtKeOzX!iAZoW{qcn&8GC6!8jL8p4I)?2yD%({I^|
zv};KR%_beNo;uLd2wiFCX(cVyw)6j|BpvdFG+-qD_(?u;dm*{%J^GJ>5DhV0#zKn6
zrydYu$>zJ+|2q!^%L;o0zeRbuKmR;&Dw`MAcW0kK$qCj0B%~H5n5EZkUg(2-MS_o1
zx6(c{?z+LPFm#<{?aM@3pqQPL!?ZDvBL>E$164_h!MUDGs`V=<)R-IBB}wd&Yj&QF
zDQCXTF53H)fqBj05`18kuM8v{mf@x$nql-Nwg)jSP9^=<KHM<I#;fzX>RG8~kDnAY
z)I+I$oemr>oiiAM)q0DVqMxE$C%d7C&DAtQQ$_oKg7-v}5BhVK=P2yj-O|bVs$rG?
z;YY{Vd-AHqtE!v)f^zSy7AU$A{VRS_yTqJ`?qD3p3k%zubM%47tcu8cw`BhW(u&04
zV0LshOM02s*?~^<O6zir=}JhUI3+Mxh7<+2Hl0k}-YN_=EA)K09A$T&*BS;bAD?BG
z@`2@AvBCLdJzx^dD)xWz$(8l+Ms<>EFd2S;suQ+ndsr>42or)eGkcoxNZ#00eHvWr
zgr^zx0_W-T68l>TyWEx_eMx-@kLhM@<B~A^`JiFVVluodyDX<@Ec%Xtf1AD_I3QW>
z(m5rLdVPL<1gW(oL-<}^&FdiQAwoOAs!b4<QWZ;MQ?sSD9UC4TD#;I%U!zt%Krq82
z$Vi%av|w9<%j^4gAWrU;y1fWmv&i1B*-NY;6W(b&F|}16Cj6>Pp?A6dO^SMYw}{f|
z`~l{XNE{Go&c|R*b1w>uY;p~2=MlqQ;3CGum1Ak^a!Mp%=uQl=cSLWSBfVvM+;D*~
zYYY%h;jH?imKhi<$3xIk0C1s(pvd{)`?U;2v@OCwPKE${wdIjl<yZH24|O0-OGzLx
z<RSShu~UmLGMP$(H&1bLcvN{7!-9`C%y;pIJ4Y`~Qp{%g)0Lo2@afkd7oR<lm82C3
z^9wwpcU~^*5YZK|4MgRh{{s}-3OX`+0hTwNU8vbMzNygA?^871SzOOfjzr(XeSK>j
zn_{Uw_%SYbH4exWO5vJ~&<1?>_1`?6eM|r(d9v%uQ!y*O1SW`)8x(S)|0#2#2Q*f#
z%SQCJBbH!XEjt4NczCp~_@!Yq$MHLU9M|TNfdbXqx<voRt^FA44S2H{%KiBS1_IZ+
zkuGkweRkXv7X5m{qJI(quKY8R#%+i>h4l^J_9K2B@s>p$j=?}BTOEiHe&DBHgbYhn
z5N2VNBOiSG@O9rS8;~Haq3!)at@wA}Mb6pfKi~aLlmb<Ir8tBbNSVfKB9kSPXh1R2
zhMk-A|FzKW_K%D!YbanCro-{}I~lf7x7R93^T}8Ho1`mVK7E?dM}g`aU`2WA|Kl%l
zo}H)vpWmTL>HqIn*!0;x1X)DkxV`^K7Gx|#SY;cN{gY3j=kv-Lnlsk{H*n%*j?{BB
zQ=eeqMVr6)yghV~OpvadyrI+*5<5Z=(;>zh8xQLZqP+RLr&qI)-(P=q#`e^ZXYU~G
zmjsMw%THC7+53x^mZ4a<8!@`A4pY%ZYfz|%<x-l4+S=9-+UTNzHf~C2Y_Sss%Vmn)
zBS#bIp6~RhjegS$zs~vfr5e@XaXE$I{e5l+{-}bDmD^feFV1F{58E7`hum;HaAkA5
z&RfkrvGxg}g>FDOTekUe*C`6!A$Kdl_rC03sse<#oW)$nR%&+hlZ!kv?=>tV-*%u<
z;Ow3n5*a#hdyyMf8@QQ0+P_^cLvZRaY7b|B995y2Og<{{XapJG8JqKNe!cc&adtNg
z9TRKMG2T;V<b(E9k4+Hi&pn$Oo#(0TkUx2IMrsHU^v=K36b+P*;~Eb;dvzm_e0rbi
z&Hntd#5BI1T$j-oPW4CXdwer@o~IhV)S7ur`xzk9<ug&N*)5pzDfxgS)s8q^rB#Hi
zT}tcXMw1Rj>C=By<nW`=VW<%+E&v>4@5=3Bd{c(}<@oCM-jW|{vGGOBpL?)Z-*tk!
zCpDX#q-Jvy@6b8&yoX+tE9Ct5G~#+=-0+iX`U&q)Sl`}?4$=egmM_G?@BHVIg5D*7
zVttAct-`^1o6eWqc=DBh-KeGH_l!xbwbhYiV{V*ZulYU|F2(e$_%Fh5hlux3Mi6x;
zGOb!4;wk(<E#vcCWnBHu$2^ui67x?x1p{H^+sXZG?If#z!GQPn1RNn{su22HF;<j*
zLm+yDI(kh1)y{r9Heij%6=-xu{maG0B}y1N?XEFW)Cb#EXgk!FNN!YW4{KuvG-MTx
zV$hv=x6<_-0lkSjw&~CmRHXxoO?rK>WushorID702-@4=&dvaESi}&|w)cdpv$GJ*
zr-@;yot&IHw!;ZUxV4}8?Hhqcv32XwFpt9cw==b2^IN9(`ZDzFDEcE^Ek2*vp2_u&
zU|#LIIE)BtL(;K^R3{E}^hlVT-#0T8Njx;;&~355xK@dd=dj4_=3Anv92QA&qf0lg
zG1P65+!=RHy=OGSKXbT~^|cpkhXS_)Z0CcOk*&XEt)@lExKE{3f}Ci;d;yy?y&-GQ
z1z=`t!97{%x^cx2AdwivsG-^UEM`Yk$QnF(iTM@8)rRxGZ4L%((u2_H)gJX%?MD>c
z48pDZajb++ZS24_<5^9^v(xKZye;UX#}o<hgOtp^mPAw2#$D*wggA*r8WzV@^~AXR
zOj5p@d~%2~Dxn%J1XNT%a*(7p%X3-eSlp}F#lCv_PZEyy;{}woy&Oqj)+8X5O@djS
zU7q~!wjMtypZ~;3x^UA4@{P(!60c``qD8&A%@wvSlP-{C27vO(+pC+{6}D06xN-K0
zZ#}3Yp!6N0k?!^Mz7FP1&#%;CYk!?(ADpO<v$ewe^=In`jLboP`xnoL8BLoB7$`n@
zh_na$T)msGkZb<&a(93ImGkX$DQa>Z#&Nf0)F+zj-pc)8s|zou#nPDx?^1*G-Rq2Y
zB1g>0S$Z^GY96U~o5TkT^~hHze@~|0dG&iYoWj@hwu4@pbcHl%#Q_hk)?9A_cjbwA
zUNaV1Mjgcs|0{I_wv|-TP8y<!C7sm45VtZ-TL=4ZH?s_WMoM0rboa<yaL3{R!Og+U
zD4^O^8f`6Ih31wilAq0@`l$7v9=pf1(;evS%m@@u3_lfBx7sfsItL$t)R%(7!?^h1
z(f*_Dx|}>^-RQpQkAbc*Y{T-L{Y^?y>n4w#eBc1;d15xHqV5R6%95Of-MKVu?U_h?
z+oh*@7@7V8r!)FC-F5j2Yti<%Rrc5#8u3m-Sl`wwH?5BaZK#&Vrx@?Ilq28z!NvXj
z{9<wIU!MSdxE!~Z!*Gj}`_q#XeObLfO<TwD$)^i{vRI4w{vS+Iq+AlYi@xmY1P=TY
z>0|tcN<pO=M=^#8rOM+E4hQyun!ZlrCVpy(F-_icpmySwB;><n-p8e><blx^S7*nK
zbROGbB!f<kl~&bjcnf+{_q*HrH?B^#x(foeIprysldg=BUag(2wf4d5mLYr9=C;i?
zb&}O6hgvB=0GmxMx8yg*UBtO)$Y6{2@2=^`Im*bnxS*np3Zd{y)!XZ<?ctbAsIcmd
ze|tt~NrK-N+jtiC*G66l_%$5pe#PGr%l#f571+pC_frmnkGd?gK+3#bIJ&@QlnRYY
z<MH$CXJ<$o{wpeaimrL|?FYlQ%dX?1Zv>a07NUX4g;{a4i{Iz|Eqo1UDzjb1p{lQ_
z*L>>|%#$bcWs4T^zfEI*MPoP-P`5{ibn%=y)v6(9c!*^+OUv|fUE4gtf9ixEZcH4O
z3C}~w($2UT^400pOshejpx@3!PhFVrowl*n&)<bL>EK=24(!;}I^5aQ{@Hh*fh7r;
zzoVU&Ac`fpo?KrgU$;9X4GoZ36)76RlpH7*^Frr=4Jwjf^54g|2R}Fpxwj(ReWOZ0
z8%{HX+jRp0)Y6ljBbhGg9+<qoV+7`Uf<Fxz7|RnDNCZyzwpFa8SBtt%Y-Ke!y$m08
z_JUBFj*oYn(MtpEXl=k;)|Oe*_1d_1x$}O$KMKUptXLU|z(t#^sW|B1MoUXS20bf5
zks{`BsFP~&P<iM;A5plV%298Rc@+_8o-yn~d<N@vB+~KilsJpy(GK2tHd8^VfYP>v
za7;E%uOSl7#L@4LML#TtM&XF;>CxZVPEVI#J*wS@1462SU#e{a(*yxqb~1$Va!D1!
z8TimWlT|-Y+;wc5(g0BSW%-sqN>Gv{>_jZe7W~n^BbyUOcPN3g@h%_TKbjax>HqaC
zR(rSD{Z6Qu{pA;3>CRJ;>->sms!v3gC%w|A?UK{@GmOe))^9H}v}Z6?(4+7SnA{V6
zm?|sLaLNgv-(ERdi7uUNNe{18zZc%0|4usZ30hpXuxBp5i@j1tBA|ARBPP0w{dA4W
z=~EH$P4crI1N~wu$z<=*i$|}V<LOQ&OuSkAE__e4Yt0(dzXU}2_ibY@x2F5Q<>d7;
zGyUIZlY@<&s0gp)zwGY2%ij(*87#*q(ARjtryT$M{6SAt-jnm*t`9Dig!juBGS1%{
zzC#^VdD-X14wvWqLW6#{_bM|DoTk!eqL0?cRl@LKPQj?@Of7?0*CMc;$4$@7{E~n-
zps*#c`F9T+a*4)BqcjLbXK7Mfi7mB~k+U{3OEq`M>}6PT5<_C|*4{7F2hS?YGY6TA
zfhat^({8hte*4_JFKC)KsQ`-fDA?8(xjd^1G83FR#Ghrwj>^!@JcKz4rHorZyfi*v
zEasEb**$E+KkW9a`Ta*Au!Qo11kX`>x%jlWJ`s{8fO@gGhXZg7{r#8p{?bz1%<p$f
zpDzx0cs)5(DnufGi{OJg_SJDuA~apwx_gGK94tObTr{2)`p813>^n>3I9za<pRu--
z#r@dKYjVk92-))OlfO@?d7N|rA-guw+nMAb%=RoB6rmv=e(0=)zf?Qq=G#z%>U-P`
zn$E8(el0n_K`CBa=#Ps}j+LV_8}?!IJ1jB#lC5~?kk?NM$oeCAa(iZQa?-uQ(BI@Y
z^jOFuja>Y6x004A7b3Y>UjfdFQx$y3yteb@*Qb>+C1Gc-JgBudBBC2qYI)EH$MM;M
z<!T6!pOH4^p=9&1SIo<RsmVmF&b?4zvN*m>-g<m5wwGbiU(8zR0#Y6B0hsV48Dc>U
zJYkfxd578&?RtDoE(sswT$gu`KlyPXpsvD6WVXL>4v(dF9{8Q5u^II_R|qt#(`no2
zjja>}OBW=yPW=k~o;z!Pp{h*@4JD`7mshv%SLF<%n+6;{QSYE<d7K_lAAEE<gjDI~
zN%(QheI#%?sDxBnk1+D&M1yQB-fZ%#{0#u+&i4Et(1lwL8!w)KR%Y#!5TNSh*|lv}
z-rD{moqIR6hSYjA;J_1rYAs3`&)_e-w_PXE>AtbjWV>}J(OK<EQn3vr5Q_RsaL7LP
zx1j=DWYNQ0#Qg#gGZLA@8l7Toovqu?xdR)BDNFm@8Xblk0o;X(LQ=XF(jeud$rgI&
z(?_^e*HwP?gJG=y;VZuI@R7+fh#Q=Q+S3R~%j$&3AkP~2e}iF$(Tzs-<QRCqDau^@
zZ{V0lnd6hHb6qD+w(HY@UcKhoyj_vd&3k7QzLTe>K&~aacbpHA0Hi_{=}C>(Tq7$T
z`j((Y^W-%@Oub<J_1Z%*j2Z*(E_vN`6IT!mPHjp;K`z9fLmU|_<|^&Ks<|ssWjUJa
z+awae$WyDg@rRw464UhRCSy^1VNA{*#6XQ#5N#A_>05~UrOHwMeZ!2FmdwL-_bG3f
z?z}x1j+$bzEwMY*fig&CR6Z2pxfMf_w^1|~A~k>U7d4pNFAmE$w!4tS&#&c-4Dn%%
zckLC~&8w~aInfG8SmwV%2hQlfK}aS514lf4{+wWbzwM|qvVObUuXjgB7nN{vpxizf
z2uYmH>kO$^<IUo{mb?Zy^!Vs%X9LXcPV(17HvTHR<5BaB5eFPV#5H?ljk8F9TLN_c
zrhu~e`hH7@r|2<V1*iRPD_QFEXTkSpC-2|WOPODk#VxWqgEc1DMJ5p595Sb_v+5ug
z1kKswh>^LZs5P7n&mIx(Q?lJ2gQ%lOG!72Q{u?+s{MEz?iZd<dfXUHZ@c6N4pwOQ^
zj4RSnC6go!;Lm=&Jr}u+QXS1~$^w;=?S)UX#FWd@3lK|dg$WL|uTd{znc^!MH)N0Y
zoT-aS7p9rQBzAguPzq}kcFYRC?)RZYm`;_$za{2Q7#OqKO?8&zXE!Riy9<1`b)|DT
zN0IYX`W)Ui+`Pl)3BI^HrrW);J^K$?Sh2VL>tiP$C%a+~_BqY_TyxzLT9Cme8?Pt(
zAC*Q5p+8x>)~4CN0SE!LleQ%uiydeNM(o2lYM-JTaQ$Hw`)tu-ssM<Gz_S_+a?otb
z*<|asMHb&kx^bnzyA3vymXxer&p)E9ni<Seusc}N6<pv0{Z@vW+OuJi1fW_K*44Rw
zF%y{vyJ|iIWhY+nJcWF%ORKN|S_g$_4Yoz6|6~lEn~JhUs&S$zD77%Eg=v{LDi}G6
z)ttXOIhN#h<R`dz99cHpO2O{Cj8IGzdLZso27^KOI0wq&#(x#vJiR|(R2%2FX#hVs
z+!275S_q7)F>gv??$x{b{iSq4z<Cm>vuBpQRI@(M9HFDT-&>EKyZu4HGqg_^G6Hy%
zC4!YVoV2htrg`9|1_iXcE;j+k$aRmXLtZ;LJ^4I;chume0e$`vvxV;vBK)W7y=IFq
z&QB^=tLi`>(x-h<JtPT3o37$l&tJXWO-<Muq+Ii`wz7YV!Rb@~J*E!61X<iT5Q*rD
zzsSDSt-%(-JG;lw&kckX5&1zW{y=)|#JAKg7iD5twY7tD=y`ItZm7{M!r4qmaJdw4
zji@K!7EKK1F)K$iP_c4;3TV|NSWTb@gy%{gHrrMJXbqSL>bN%wWaYE^e)e>dFt0;^
z2;RSZ^eKOT9Bl}kmJ2klxBG>1LqFLeIe?hC%d~unV&y<GHpk~J#}WqxrD}DlifvYE
zO|;SKp(BBOKQV}<nOMQma*u_Nkx*Rk#EOJnNKL;yuDebpi=R1am4{mPwrIrEr0~XK
zT`VS-i(^yhKwb(-$7Io|ri2q(X&!3raL7qBjSv^<qwgj^Y}-{27!v(~=zAedb2a<D
zddO2>++W<EiNNa|c;f9GtLkMZRUl*{0Cq;Y`CEUqXiBlZE_)#quZoEemYH=x)>`aQ
zQ2F@Blw(fLK0?s1zc&0QPgUd@ApS_I+GKoMSWlhTV>tLPQzN@E_(sjOOij%2<e>HA
zq6TEsq{UY~W!$g5rlSfi<~dl8KNNU8Fd~8$3nY&^xwz>@7w**5wE=XzQmj=-G=qGV
zK&!wI(%7m3ayCii77fyi+MJo8_GWfx_jjK&M9?6wSKh(tq#S{`aS~&StEhN0KfPw+
zuabN(j_=OzqQFtUROjDgq=i>|c-|c5l6D~U6%%gY*PcaZ!h`ApVk|PueR^;}M@oQR
zo@R*jpq+uxch%tE(NFnw-7F)&s^BhWiG17jxx+bnIH!B`rOJ-KOfDtOx&qG`TaWfZ
zHLfu5jnn}la!{=7xTsoAI<WB#ks@msDZ`nap1ox~tUuTC)@gqj)YMDgAgK=LbAu{o
zac)`eF^bb|3Hdo>&h*^*!HT20VUJWj)1>?cCYuZ02voex{9ZzEF>eRAXDZIa{XGsC
zx2vi%IEchUE9+3UDZJUrdW<o@n6Etrs$QIkod)|x*e20pD>YT+bnQWvSKuAN?Zek=
z;p@NLNG*mGw;esbn!OwCOS8J|xDB6=B_na-jI2L95Pr521k%OrhtZS|_wqe-NP$fM
zJN`hKl94rFBqA{onsx`fuj3=U70L)qy}fz#=n+Np8wq<>>_8!{VyPs(-sph-2(GR;
z>S%r`?>rpt8f>UBK(pjp9q_9D<Z|=fY8{6_v<F9y_Badva?OymP3+APKcq;ZR5%0q
zt!<}oYjDs%bC-mk65)(@SOU0LG@%~7JM(|@YkF1<36VgqHU3n*|EkgJHi^j{ywPLm
zZS=1N8qLnp@qjd|BF@fFpav;{9N#ILuAV#&N}v*-^;7|VL+Ej%R=R&%H|)GFpW+f(
zf!gpu;Il6`6jb~tNe`gwN*FEN73L`g>9L7PT0YoT$K}Z+1y|-b`_a;*Yp3zcFyW`v
z<kyk*BhnRlok7g&#mW8o9DxrSdvf$ha&pj~Q$%{6Z2avFn@jpYkoXLJ02ZT^dM}cF
zaQ~^~$YSY%oY}I2X`#L#-a$4FtX`LXQAMS1X#Q6S!s5?TBzqHRupVQ<DU$l<vt|d<
zgE@FupgM$P1?&=BF)Fhx@(&qE^2B0=iTLHM(;s0knb$*wH7V^UM@4?Nw6TL_MTyen
z5}DTDM82tEh$ZeOyS9^{G>cYt?2dcw(yRb_4=X2p2!NNassMYg%0^YNUx|mesRG;<
z+Rf?&BbcVGKC#poAp>LC{nP8uGmGDj>%%BoR|6xLoz2_~gZY+p$I<Q;bfE@jc}Dy2
z1nw4ytUw#6Thf%oAr1Hm{@40$IyI<mVwuhmnwQ`1Gp<sO+in{Mip?;~L4o^YPSp>r
zGB&rll6D7vZn98?L>HRcLV;2eIxywnq#&l12&F)wRRn{_xCzB11ua)8B`C?SgZ<6n
zX3Nzz0HOP=(9h6GPq6mM`6iIZ9BW|&SEy$pX}y<v)o;0^Ohl*U%OI0_P<(dG)h9P%
zJZcS!tMbNN^jH6Uq@oq(KvqwFE-089F4$^ZKQP4s@Gg!{%MyEETVz;9{h^-q$^3Vx
z4A1%As5$s2xU*j<f^V_mD`dYZsGr+u3bms(LHG%V1{XRzqn41&3_Zi8?{fBsFSpj7
z>^ZSR%U=EdHv&J$WGe)M91}S!+Si5X{fuyC%jBIAJAUu?>!Wt5uK^U5O(}W82QFtv
zbJ<kiTv+?eVlvh1cLf9UBMEM@^Kb?Nako**1y1$#C3o7?j%h=wB)f|%#d;Fh5g;3m
zs*dp>HG&DC3Y4rtnhEBJ9Xg*<j@1%L4+9GDtKa@cAn^3=J+%@N%JNg~HiNx~RZzn>
z<mIEy^|8ZGU)`RfvyCx^ttKzCjWWN+o{5H4t7xRWCN9R<9T1p@4rkbgzu@GEl`dSZ
z_~(O;@85h&+{S2-krp0ZX9FQ?df-p*xMA-b%n&}~*L_byCV7D!jFlG%Aa|HoaQunH
z^H8#Mu8tlcs#|u?Dg5V8G(7aEE7lT4Wk3c!GsDbloBPVJCs*SZ{(ps?HrY_v7{Fo|
znPMZfJ%H9l?SRXKM*<lP-8b=b?HDe%+?T#rV}QFHup~7;Vfp&}eYgPmqVEJc$^MRy
zdKk?Y)iYj(fK`Xm2@Lr=*xWyq9t==A58!O&Io(YD^J|*qwXPBGkYC)qhwwP^4PDP4
z?W`c^eJLnJxUoU@8k)yooN5pBzk8(2<UMW4yl)6ryqo)$c8ss!QTTU&lsxiEI_j<{
zjkGLqL__;t{UTLBO)bU<!`T7){_*b;oN60O+Sec5w`9*M#o}ANf7N7;<{@cjH(Rb-
zDq2yTmco-yYagmY*KL&-fh19}T_c2URZfTB$>%ihfViO6(o~_g1!nt)n`Umv)9XgP
zIJPZ^ybRwTLjP#}5yn5`B42g7Wkh&RxbMqn7IL>{D`GRpUlgP&<ShpAYXcyvT!F8`
z;GN#&L0aNbs*5xSl&xy7E%k_3DI0qLeZH@MTF9iDlI@o-S4`r#KM{RpQpFCD?g)zz
zY9&FtXDQY#7cqe?jOg?k_N){_04Ey~_Q3WGqQ4r-U10;g_ebyX;O>KSDMIrH2`Wla
z-PR8&5U;BeS+Ay!5d7jnthi#1Li7~e57uxc$c&#A5dL1xojB8hY1scx@9@SPp=MDK
zE?m%Oq@koaeHXeqntH+~vV9)y@<<q%Rw32=3*mNt(?+P93Ttw?-;T2I1C)yHaQlv5
z!QOLq@iogg&SN(aO_77A=kGLKrX)QqvkX_T)r&-{weD6RYO5JPuHAABj}C}fU9Q|z
z_Cu}^y&B{GbtqIF32s>cE}AUfoy1%WzMZ)5ca!NIFkzM5HXPRBgXw(Unq6O7$>Ec9
zJ|)wMq95W#P@kJC9QTD@X1`xc#!T6E@WwDwA6}DYU6tMgD^d1Yvg34YUaqCO>FKn}
zAe3DD)wkpz3z<MW+lm7rzALS%s4kxF`caWh(h+1(!psu;wSkEI@Q#>dRI?D0vR4W!
z5q0G&1Efz54yL)y{CBAyB+`ANjM?U8<_G9^Jb67aT6pVl-_+x+$@85jU8=jPrXj84
zB_7uO#-zLTzT{pKs!0bE0&uVgAJ6V8tD{hl4iV&;>)JId(+Y5QWk2%oC$W_uD%XGu
z3jOzBl6?KA8eWi)?vzi=>jnl#v}>rG3?nOyjT;A6xC++s;G|6$=*;@bizl@P<_E|K
z?^5&}u3BIsGTDh8y2*X@L#(Mz0Icej#kU)x-*_LM=Pcm(+OBH(;vII|I?o-Hx&NVl
zB{}H<UV|N>ofa@!D;_X1^JH%#1R*mXgA*{2(4uU(<3BvlkpCzJ43`OZ<<y?8r#ztQ
zbbYTevJZlYeLkGNPHl^A{vsf$>`-kZY5*@cA4UIeFJPU7L|nLe_!`Np4i_DVAL_@(
zd9c$%O?lobv=Du5m7!T+_k~53aJx?r>qe;DQ+u~vDqtzltO*`cb!jCTrWGTADV<+r
zXl4+*5B+r8SM)8c?}ea+VI64jdsld(cSczNHqL!E6h_q0>bWLHFob~#XZY;Dm^)F6
zFa5&)m6?;<8Iv8DLDJUzvbB98ld_q6Rs$B;-Ax@CCLtTB(;a|neEA`i=PLvT>RIn1
zy(U5xL_f^Af21hOEzFb|ADrGtZ8ib-u|m@itmCpGYdVcSME2#tPx#`8@pYu~&PW?J
z@Q_<lak|kz#0dL0I$qBdComKeLUnTDl1=Yj;Yjj~#fUya&%KSh;@V!smiC@yy^vC*
zpzzg3q&x`Ub+LxqR|8|nhk6ylEYH9>NT+hDAx#(hJ9<cf@CadT(?GvAk)xY7`l$iX
zu36(NkJyYG^vRR_?{NZ-mB82)=>6phisW1RypykbvYciAj{#s35L@wX*?r1?V|m7%
z*3+Eq``5<CL0&O~N(>tOV7_K&!&<al%-7C-*E#h2>|(ZdyeK1D{Je@}_Kf}Yob6>C
ztU$|yFo4IFo}3mOZOZ1XUZSME1{MH5L?n%tvIq6b@YoMnGy^W0()VZ?Vvv7ed>9Or
z0R@9q!{1T)o^^YeE7Hr|<YZ18upq+*)KVJD0a8qn>QIz-bqy?GmOZJ|y|cg6#U&y=
z^AM$^lwSPs7y2Ip)vT5;3oH(uv_79AXWye8Ek^zqU%yyDSbN6OT7#Z=E5_;kV^y|i
z6im0yf}6be%=0iJxRE20Y4fs0&CEq68HS(_b&5K>(S!zCX)_Y&>bvJ;?4WeWV_1eZ
zWbgFbfjJ={C$!vqdHA;dP@D}oVDUleTu}2`<Bi1!;`e`y>8o0kKp~In+3aJ|^rncD
z?cKlWC)@g6(+KKUX8M7Q^LmCDE;ku4aGePjtfp#8n0l<AyF_ydS?SzY+b=n2ZjR&J
zIG^hzOGfxyl9G&bC-|EYUOn9;E?}2Dy}G-+Sp<}Cl@I(ECQk|#$SI`SvyA;sidL|5
z8K|Dz`W-3MoB7Ex<0LsR+^h(0W0WUY|KN&*b73D~t&QQ%7$XiL)ej8emIkh~z6nFb
z6*6qt#MhA{{Q{{G2Q=8l`vz*md*rdxn=+<023I}V89(nT@IG>0^F{yWojHt*+3Vu$
z4uFA9MBIc66h%=$^SjF<_Y-+RNch>Ec`aJXzp!6c%IOuYp$Cf=D&#9m>J++ur=_I;
zq6dhNOy}-I>2x;va3aSc_O}MQodw=GxnmR*J{3Do?t~FN!W9pqFnTs_`m8fxzLf>k
zwl(O*4zHN*!7tZNNqZ2@XgCN@f_eXLe#SNpFl`QJv9B7EQ|&qmnFr4Xe#+=ws=cIQ
zP(-J1CL@?z{j80b(|*t9PKT!qYG^vi-(}vt-)vbmNd;+4<5uWk?N%ze`>GMbnhWfo
zJZdI2u8_2HM26UUZ54H9Zss2&DZ%(SD<>askQub6<gFpFnR}ila~MjjJE6UDIww-y
z5i?!ua1T&XT%YP-K?rAShI3Rc=ux8R`gEdhCPE=}X~o4vY<vuiz({NDz}q4DileZJ
zaWjto80)xE`>qBe45uuE+CaW?+94yyW)ru;Jk`iRJ;3XKWQb+%H}gN19nlrF;kdzI
z8bIy(fH|#>oNJvk-1xTu(`spI(=7-t0p1k}QTc=-!_WI3k?~WtgpEhp-d??z*4D0I
zXxykG95{0!7S79$CbLN|Rx$}mH=RYYV+x!Bf6`-PJ8nJc0eVVTu&=?JdPg3KY4`Ip
zFwMch56VLLI(f>|y(eQg!Q`v{s7A+5T}bl3zPWDn!DxQQ9o&uDFN~UU=p~+}N{j}k
zG2R^OthvnU2|I3NgW8G(cJk5ER?ztDMzYoE7aa#xA6mZDto6+Z$3bZtPOlDDRG7vd
z@i;2dL^~uUrBWyIv7q^L?ND91VGi{S@^6EUT!{;Mj^&bh^jzrRYg@&@ofz^ZR=Nx_
zT3;&GvNtx=Dl!p9>mX*$^{S8Q3#B*7-jWDzU)?!J{qg-c;f8dE5hz+v;=yyt2%(JO
ziWBS~)wl?Bd>+We5g1#Ot589pj~aa3j)ZIS)vK)scr2j#=gP5Jh9Hw|ec)Qm%CHXq
zdsv1gsNYKpeVxWf-WNA{)OkI``ooVkx2yj9E!=bww#Az#TjQR$l;p7xZq^rP_&2Sv
zj7i{@(o8rqP^u_^aqo(&?t(60jubO-eR@|Lye*kJw^-91pSo@h9(|2)e<4~;Y8g;u
zMNuZ4rI9{-nVq4iW5U&B^T|$;AIAtVT~iEd2;hm9pqz^ua^NHUECXF+l$FfE@oW|J
z>8Im)E)mXlM6)eq#iKCWJ-uK?dCr*Rw%uyj_`FD+i#xQ(8}*QdAvpEEL_cr#Uk+iV
z&jEY357J|Cs1xP>_Eb`@b^T3f;8GFE|K+3K>pY9OSAgk_)pnBYliTC-J0H~0u@gE>
zzpI}l2NTR70ub*{&PuCxJ8dDP4f*USTNh=ioha}z-dHpPs${J8-@*wv2nad);774s
z1F{TJdq5o?9o%8nbbk0A!65~Pr26i~|2&`F(@3Y?XhcK*lXM^S;cvxq-~B6=`%gG2
zszXcC_w+KA7rY#|8z(I*aJw$Y>imWG8y@4o1cQ@cdeic3<cZ2cDYYyAFv#=3neCTa
z7-QcSY^9xDr1Hg{dElfslv@EfH8d}Y=|L%0C`U;hRCRsLAInAhg3%(6$`rYjC5MAN
z?#Th~{<&9-cDV4Pj|dJrxw0(R!rVE!<=5E=ZSF%Gi028DpTRz_B@62I&)KIyvQOp+
zP2~J8@`BN?=C!8dymxXd2}gBk9o%D`j)$(!sF@OYGXjqHNvQQ4#-JzVJ~su>niXml
zZ6xvgCHvVlNE%Ke&u5|zJ5K@yy8aA&fYgRiyfS4`)ZiG!@D9cxJt|2_H8{|xdzkq>
z@c5!u*=y)fLCDi!IuZ%cj9`d04iWW$iGQZvSb=-1(|JrHkn5`%yWa=X51Xkwkwj@|
ze)@3#{!AqBaenjnEVvGlq-$qKQjC#)l|$wgr$Xn=2PJlsfJ($d_vUT&=*W+;*~Ta*
zUn3qkPjKybS6>h**q8354EtnXvbA`)hX(^Ab$Z;2ma)&}@7i_9hj?Qn+pOzA_3FH2
zyq@n|zO?b;L*(9i8uUFd6=rsS`!VrMu~t({d6mBZ-o@vVMLz*e)z9ulMZFm+^Px#^
zn2j)V%~LJZj1*(yn#O+*@mq3=r`(|9y^Npg0Dxxd@$nib1tNT}Ge}M1dhPu?nSU{;
z<PJYUEnC{Oo2pF^Lh-)R(`sz7%u@`x##2c_5-Q;Eth3ptp?w(Cg#TM~Kp6*{996DV
z$6{UmPV|p5*zd@*d9dZc-eL&wOO<4MHHq389|I_vK7SfaL%uM()*~}`5K3S?2+jz}
zmKi8_aC%Yw<VJV)rvLTuSI9Z>x?}L&%Va%j3NJ-iy}!3s$cl>w80ITi+IHM{L<Qs&
z0qZ*F2Ul0QaBfnBJzr`sxX18_#&z(K5UdT<mWb~nxBNv8Or>2v^d75BhQWH;8rCc9
z1Ii!HHDpT5gs*JOMz8rzCv*cK$|d!a<=P@}bfwH#jqn~`Q@*n;f`biKwqLjF!pD0F
zK5J2<|4vCiA72{Jo*sLR(|u_^Xf>{<N9#6BbL{4k;O9MQb*KgS(!k3!@7%aPw(&UW
zmEbLIS?mA2zWtaGu9AF)CyOcmi>7OZQob1Awpzcbt*!1+3&B22w$@uN{dI?Htl<}m
z1}gBjc)2Wmg)Yxg>Z4ucLdfn8A;%<+CbNIUp)u8b)tfS`)#sLtwv1#@jz8XV#Ja;;
ze~Sgk`a@C5#?&USlswUJGWSw#^lW$(M%3d@*_v`ID`pd7EP;HkHNNJ@!<Un249ZY8
zfuP87c9P9!O|*U~hM!OVUY?a%xXzUHOg1R&%A4W&W1YC~oS0ga1?i*ELp*5UO1shT
zg^3$iKKi%c;H4iXUp?JC_>Tb`$p%-zOJFh<9S21Y_ki)MDf>DL@mWX+O@wZmXfxTB
zPNK1NqLRg|mMFv2t7)`f(qJl49Q0_X%oRv;j66<{Yq+nGY<i=t|C3qtTf`sk#IeE4
z4W^cIO)JX}n{tr$@1O{m7INUmnRP6i@KzUdRcSpLEe36dbzDZNzjnuJ7>5$w(~ajF
z`}IUrEx<Dgh+Cj<y47z7TbsXSRcX8Vtd?Ob-z}rWVz~GCJo5oWM7CS2&J#aqQcTvq
z_P4Tl^jvG7JX)JF28`*>$sggS=*(q~J6_bt#Xcp+3?kE%`0A{Dmz-!{_lW(G6^dJW
z@SiGJ%U8c~1XunOV72m}il?dVY&<>O*yX%xwx8L`z1*MmAd?eOg|tm%`mPC9Z0A+%
zRUk!MyL}2C&^X%i40@5Ul=F;aapK=F=Q_nlsK}SX0+KpsJk51#=e*?xJs+`5Zb#@3
z+v*o1<^16IDN@>%FK5~&MY#5E3oZv_Wdk<7Lc;gXPx+=yd&*NxgWeE^*F@rC`uc1A
zoQi>TdvW={^!i@RuKyR~IJ@{?>A1&<DT1}sOvJM_-P@a%TE;q9YFQ7|YarT`nI-G7
zw*8EDHnE?`3~CIsv)Sz2S#B*!lzw=ZX*4~Kuix1b$69IX&ct$0*z5V_HDx=my4!pQ
zir6ocA23O;YQoe?UzFu~upJ;UZpa2y6l0IWmzh^u+w_nJ2Wp6|?V4OJrN?SrJetMW
z9RFRyCJxEKt4l!6q*Wi{S<)(6@ut7_ZSThe4p+&7ie_Z7k`ZosPNk)iB9lC2T~tP@
z@3N*(PuBlF%gC}LPgU%R_;=OT?e-6%=C9cXf0+IbAC+VDEsup0%G}=MAjL(!I}%G=
zHcDOqTrV8tSt1pB;EUTk<){$UTU_10fqfnht?oOw><;oFv!Q?fZZfszv|(<tr6r6{
z5eX;98MT-r<|g9zhNEw7+j`Y^BnbsdLf)RLVaVqif4mBUI!g3GG)vOcM%lj;iIV+C
zMq+l#c`=&4L(_4IZK{1A`{HEOw3ijii9w5@(Et#JPuCA}k>b#U=ejuBB&`0R&Cs<Q
zx?I*6>&f4;j<%H?_I01wxKBDW@}$Z60aNvC988CFuyMjzBY)zVj#jEjqFV^E=`ee*
zhWL!elS4eP#U3Q(2On?Jn?G$e{MRR^5~86DBJv72avU|V4o{2J?flojZXARx&^hWE
zcEp=?DD%my1I?<K5ZctXCjZ=g7!abXKy0T(j0n^WiT6rQX#;3lEoBHtD-M0k*691u
zxait9$(R%co}73f)Vm1E+*e?*4H^~&)5$)b-~Wy-H^08X)J$3V_*#iU40D}6NTFZ;
z_j9aHzAHe~%gFOTyxdSSVINn{CCK=>Hv?!u5EaoTo8di0FMmn}|6DnHt6vk<^Zm{H
z*+&~&Q|p8tBAJBQ{NmIxW~7U~pM9W^$>#2@Pu9In@Ue69QKxu47G=vzi9+5*ishHd
z!QY;6-GFj51O7_PmJDIJM=1NGx`v=`3t@Q;IpMcjL%TIzd%E|6Pj78GluuCMTqg4y
zx>xV)d4{oZ^O5-Cq|SC`-pl%QX^w8{uO6lwafz>7P_k;boB4RH&LN#qtyPWNy;f@0
zxnH-~Zg|*#bTwS0;mjZ3=>@YygB$9Hi7D4VAR`~EZQTW3TONgJ;7Do~8zMjRsCMb~
zmZ*ieRA*%Hwfx`r8QVI<^S>l3z;>H2#VA=D{p0_p^NhH@1oq247L%vwBZNd~(U2&}
zN;ApY&c?cqvj^Fj^iFKClggp(7W0X`r?CE%xcb`}Q3W-X(Y|>pWZs#yai$|Fm2t`v
zSCi?+>z&w<>}Pq}x<Sq(nbK#%E_nA2p?2BF-0xe1V9?I(YIA>ZU21Q^XhWndk%n|x
zmQ;=bLFgHYKc64pRpUT<bU*=%)0nu2U&5)ooJY^tf+4DDKEhQ&qcigF*&L%c&%yOS
zHrsjf&%Mq4jhc_q7Q<EKNk5s3Np-&Z|2-2G%-;jTw71w$i4?bH_g0;UyeV39UNbC(
zf=jdIA+|%zo;p$&L#??TZEQro`uTYh!tG>LfteEDja}$t<2M=2kHVBD;Br!uX6fm?
zPS2VT*$zH54H;nR`TAmu$;>INhPdmt8k7FO!;Jk6_hV3QVDfYE1UJ8D^PfH{f3KJ>
zIxSXNq~YT45RfY06=8HQy8;sqYZ{2<2_z-4k<;#DidWeZ7ZI{PCGdKhGLocsevLKj
zNcpSHHKqS45c7V?`eV^}j?}hxqOw8Yg>3xRJ{3>YbEI5{K>4I-r%6TWMsC&3{2T{J
zLb6FoK5UVLs`vr;{H5O<ZBLn9XFZ8Q{X`ainXgDuMn@W`=h@<&%O6klW51W|HAzrk
z?%_db{`_uod<jGudb1KsU(eU3VFQYKx}Cunk&Qj`u-_w)uJnU<**IZ2F6H{wBTU5)
zk1X&dbBwVBxF&(ozl19lw2Z&>X9v;X({l95$KF!=v5C!niPGHUtLK|<$BG!s&#vks
zwU1Z9jan%l%V~QdSe>8A^%M2O@QzM}_e29QfV&@4vksq|X}%zU@T9~_hKrRv31fE%
zn-&@4zNLf$;OjJ)4PPO`18=UI;xpdX^!*iMx3;YX*Sm7-Z56r%3xsVlyTTP)Q0=F0
z3)C6W42{Kth^%sU=wGdm$9~=dp&><WeTr1pENxSksnI{7mJGLoS?(z-zs>)E7Cl(x
zyyasZgs|ZEZOZ*@StR3hVI{E{cFgidI{H{q>a$ry>x7uICWTkn0`iS`3e)B!>{#DU
zh*C7VOa1K_Kd_H;UXXXW|Gdz|8+$xZ-u7qj<G<r7mePG}394S5|5l?yGGQ6~r5}H9
z0Hmz%nr5{-dcx-jOKmKH4!KGiF&I@b-k$&s4{@$gU{;g`yh&VF{m!BZ@{wQA9qK;9
zR@i{B!*U{5aC?pmWsBe6o~J);pb-Ug)L`*?SChra%#J~H6V+l$MAO1{L4hR|s`2|d
z!lcNvk9S(t_L2B6=9)YpnzI;rml>LEth~^R?f~uT89N<YWF+)=#VAaibsef%`v7+D
zuVlfVC<;rcsCO1u)-424sL%ZzN1HI+`2a^W1R)h2A<piz-TlL1FLA8DxQ(mZckomN
zkMRXe*g?OiTKm`8A>WvR5`IM{$F5MU^lLwUld(Rpk#N;jIuPcrWPe){(nv{+soYO-
z;s<lddO8`ZMpb=8xmh3KL-L=?LN_cw`DsJ-yg`;c!XoOyDjtMZOCG2E4RfAQd>^tS
z%6>Y#1azGZqO#d^LX3{CtlvuUO$Vz0ld?{R%CxPW%Dl9dI>{*cA^5-<g09DOP(^Gv
zZBMudJ|#r+OG~3uCi3{)_$V*#niD!a-7Lxxo#Rv^Ef@sD`E6>z4Gn3A?wcw)A4Hus
z3O*}blO5Q>hnC&0VCa~7h^^0`3}u6rVnsbyy8kS=(L5~-L8%g67Wnk~u#I=E>-k2=
z@-hdP=oGeq<bM&MA95*#Ti?jYijAFQ63)?N@3;MpmuQD;(?dj$!_EJC)hUQFbphMX
zr1IeyDFuC=RU@K`#FNe47n?hW8!vpXRS|y{Kx^UCWLrT}h|FM{usSe^_?sgOP<cQo
zYVp-Jz7D7x=;qL%p?p<Hmd{4UuOoP`d5XmVnT)*NZ=$v@K6gMNFJa3CLrAClWHW+p
zz1=-`t-MiVdLA|)r6mHDQiu&~sP#z{_!ehH!nDykTm`k%7nNHFk$-T7FmP+Z$Jq9z
z$vACm8%==}>+GMED#@_xav8r&PFjf9)@o_RzhooGR<TlVFBV)V4}>N$E~(6U<5igO
z`eIf+>pZES!V#AV?(KL?;Wc6#NLWQfF2Wb5Tc5(v?ETsNk9O(Kh{~SKHHprj87%F`
zAOGxeCc?GOA7*Ro7i1Vm;L`ViBgD6ht9MT6DH(}D6-nbmK*Za3d_8%h(_yDDpTjZ#
zNexKL=KPpO-sc?GKZl1P6EXLm%<@_knKm_BYiLd*p)?qG{bJ0Hh%vo)g9vbOiwlsq
z0*vO%o0|%6vkVG@gJ3?(F2J3hpD5KxA8s0`F@|~LGhleYa;mx?l|0r0z=y!Jc2?Uy
zR_n2FxGa-IE#Ocuvm}li%Xag%NZzy(UjFLW2FvOq!7M?r-Rj`s3($@gY3I=yk1Q=!
zGX=t{Q;pE?Q;`iM8iS-r)<UcN&CiC%TwwWI{Mte({Yc71m(upg*mWTp3}3PQ>ld4S
zY|N3cq<>|I+HxyAEP3K9?qB)sSOax`IT-Az%ll0Lq~75vU(glv)8f1Gz6ajOKP4hV
zR*vl(ll>Tj0L!~iFr<(Xokujpq)%wD*)Shw&Scdk+?-JAud#WVFc15eXT3KpCAvzJ
z2<KWAy*!%~qS`&gITKUOWTBy;j-t}b1!)A6WoH&xY7O<tn)1~jkTW`N`CO!&bVDO?
z53UWR{Jy*rO#DIW8HrZ-9%&>X1OwvQa)84%u3Z~$>o7cEu3aTRT_a4GQ^(xm;?qb5
zgsF-<(Qka;zl(pNGBkN#%Wi#95lBrn<_HghRKB>{BFn&`uWAvvcKBv%CQGT-T!R!S
z3yQd48YQi9c0xQzaeX&T@CS}uJj&~&8KYG~T9o4J1SCVkSj6<9=vZ%?CZGPEHy2+-
zBT(@75>&R(*;Kpxx>_u}N5`%JkY+orX%;r)0}~usKbw6@!IlTu_~f2#oG<Cp-XuRN
z&m4C&{jysA81<@=UIwV*;nVyM^J3ZZApBlB@9yeC2u(<_5fRysmx==I+NA6IMG_KG
zR*RL!7pZV2?;L;N8_L@e$i(4z5+;I&Rt21dNrUxnjE<ZUmocQW8_QId{3)7aNT2xx
zqizGqa}i0_%F)yU8wtfGweoBRoK=9LQ4P`*o34jgk9Q`l&XUqwF!|g1{ObN=EbXt?
zNAKESCDXOIgi^I_%aQU!JtdroA`252{kC@t3#g?K?>!R0mEfo^cF=9}Pr=U<oS*X(
z0q&DB^HR3|rI~&oXV>$#yQK6mfc@z||H;*t!+=Ebay+U0VX%f#6YYWkYo63lUYTCT
z>iAJ1dpgr+Lh)$S*dv8p`roMqbBQbQ!uKB9w%W!gNH*v`e(uDXSKUql3WHUhR_k=D
z@B*zkugXh?aWrewgTwk&`C>havrf)|EfzV)^#qMuDT^=3$+1S0C)1Z(lc&%nx3d0n
zV{hNr<@v`0w$!3zaDu0<#FRZ<2)v#Kp`qrRg&oUGL6m}!B?*YV5#PvCveH&nmT~BD
zF8Boex1oclUuUbV-Pf~TzHL;nttXk!v^O*yq`o%wvX?q7MAAbye7Rz*FX`Ih^esMv
zc`pWWlrWwDfE3T)sVlbRIU0eP$PyT>@{i_+jWB?>?CtHhEns<~p^}(<mYI<~6$g{{
zugUs}`#Z+AtLcE#KB^pgFn?_o2+urS-yj9AC9u=FKb)*Git3vLEVWs?iCpm1PlukE
zWf4*i#ws7)(d}fnO7-L6e=VOud50A8FJ{eleD9#_Y#lT+sFpUSUDS0TM(gA@9~xSG
zGm#JVriBiLZkN7Cp<3N&u6nfx{~_A&=e>j*)5-qvL(?uU`O)2u?q+aK&4tBh_06is
zqRJi~T|@vWLZm|wRp<Bl=f&}T=!<VK#ZF@fyZ}(}LFF6H<cnzify1avj)8p_LVeei
z2G;wzgV}o}zOylhh<*(1<p4QX=M@mPWeKe}G?yEdOMp>7l}@sH4Pv&)9!ZV?=JgcW
z^RIZ_4$H>HUP|^#4!cHcDPA%kbux470)_8exr()TPRvqcQFfLQDnCDT^lK6ek;sZE
z9~Lv{WKVwb(+%}`FhrtTxO}nh6ItW@t~RuNax_Sk{lw>cU%Gj#;R=_E$xW~C{P+Gr
z#e~Hz8Xa7CI5MXIu_5Rjk03=U)-y~-)U*2=#aPSWsA5_RVXaVHnh`aHNV_6o*c&{g
z8U*nL54T9He7zeRRN`}@c)(ZT?@71+LVOOp?{{)_v&24H_ku9^6`ub^z&dSmlbKkB
zCF4KFU{<%i6Td7^@94=;Hcw3-@jNqLj+^C!tB;&l$c-k{A*k~^u`HqoB$z8B5(Zll
zSlbm?;Vpp<OyGry*$0ruzGNY%rn8WT)MA}8_r>XoeiL}aurZCfFdqxr{+;O~+1vf6
zt>kXhQZ|o764w_wBx3Y$)jg4aZNo==>v@-!)zZrut%i9oXSdFsO6HrF%}yG8#`pY}
zyQ~PHZVohjODS0yFY=;^v~PG;;k~V)<!J1dbia}(Ba7d^w?}qrEtfR=+<0NB4S`fA
z{W(Bc29Jm>7T53Y6xT!&ZQ&fvohck87`*KhB)VvZg=z+sexr0y#e;N%Wo$IEa%gbf
zu(PZWK=s}oTla&qwjq$a1x<$%KW(Ms{cO1<DiFy$6Wkt50#FkXMu??n=hd55A3@J)
zT~uyAiCvlf(eITDhDNq%ow5J#=VB=RBxtGcsOvAd=~bs>TAI*vtlGx<?mzoRmZ@B&
z=AB8*E+HtTohy(5wDfQyBwmqJ?`wKFzjKPpH#B>Pjso|2ITeD{xwm`Ns$^ftUNd;^
zpbKv1vQvKZ5rz#)AyL(~jL}i>;b$BB`y2YdcWj;UQAcVkmxXP@YrfbM!=vv?-l~7|
zgDn+$2H}F0g-`QcLQa)2kx9n{>)sF;IZ@DMwnfV|S~M{fdAnE3FyhJn4IXaiLv+{3
z3yiT?9l23~`@n79NIMfkglN=$PAT<Z<0T;DW?92uPY-Op{Ie)(da%!e%FQa}>y!-Z
z0kDsHW}g9+WXc6w(3Os&>_o-k5HDWo76(y``Al2ZdV{Ks87O<RPiJPc73+KxlgNCb
zTtk%U5!8zOeldS9b!DeTXw))6rM2_My83c6tz;**V*>1DST=4LUR@G*4euYVWv<8a
z?JuNP;s|~(fM{zxSm8h5zp*_Mm)32)XJ*3L?==;{^0SjWb|H*G7fq!U;|VX=;&Fhj
zJvgJbe?kPKdodQSH`q^BWOHNTaB>C_Xy2cRZ+6!`<CAnq;MfD+_R=udON%}BaXX=n
zg)5u#b`^)|+$p9FI_-I5nQ@2>!i0i6A<ZFmSWN)4GH9G3sDI&@AGl;oUD5keU#C7O
zV{!t_(}ej?DJw=`wj7v_5cQ<}w{Lko*8hS)DnXC)o|+-JDrNFiNDc!VZ8ANY4TD1Z
z-7X*Q_2lBw>`?(>9-N7sS)FeTY?zR3SmQ2g^ja>-GjMWH4p_DZUjF1lawfNDu5<0R
zE%2dWA0&*%Ul<;yxP-r{Z~p10$Nra_V|++GKvb$Wx!g2eS+wAV(=0Ufr$pZ7SDBBv
z40~4BI+5Hrkfu`V9u4o$ykO`iv}itFFrl)w+2prJJMCMI{|i^0J?SkmUGhvX<jm^r
zUf&a+J+6Tdi_eR-E#;w=$Rmn82eP`_=?%1SPo8%VEjXR~Prutnv)?V)%fyp;>oo9+
zT2)(Rq~Q7X?sI#(Rw|Uw4CT-xJtQ$dSMt6%zm62r7@z+v+em1g27v?C>7qYkHn0XD
zf&(1l4K3G`yZOEG-e&{RDUUWFVO6%3Sz9cbEi{hD37KL>la*DL4Z{B%X#xf!%f?g8
zd|#pJ#&dwzp|!iZN2WnNT0Mep`R&~bwZqTKJ`U|u?q;HhM}LQ!cop+5+FGz#TN&O6
zsvHME3Oxg{XZNLt|KsfQyC7-ZOO3!;URNr7GQT@r5LdF>j%l>ij08U{zu7O%BzpM?
zi?u1G_8+9g1fHJpq~5=Ul+sV(*NCS5hf^G+BXcmGd*2A;5ER4(J`C)B=3$a)@2?-4
zy1747LX6HCzIrL29kzDg4<!PFg(h(@1@Y#_{1Xq+zppA*erLB1wdlHa9d%o~2a~6p
z&z9E<`67lGkNL$V$o3B)(fjk?fpDrhpF8KH8(ULR-FWN#{_Y3ZLa&^ZEFN*7Mm2FE
z7mhRYH-up)!H9*B;Z_Wp!C(oMN=g~<C^L8_U(M&>@e9e@>@;o9QPdYW7>`^JU4=En
zA6GP8g#&S|b*ntvPJ6t2lmbT&{n)|kIXI)iD>j$pBk4B`d+}&S5v|*$#{!RdHa4d(
zm<#_#lWZtksnK*{V5ABS@C(^<zZ06Bz!zBti>#qt@9*p3r9e;tt3O$yQfpLn8Yo|>
z&*nI;oV}$xwUx^JI-41JsRE$4AlfBzIIN{4h5|W(X=$GD&)}m(sb@8v;A>x6c_1)K
zk5s(AX#4j1W4Mi>u?L9KOZ5PWVwV3NL!T&lWUB0J9Zp_vJfHr3<+=r?W8J26P*|$G
z!Sj&bSaoKr(77j68;oZ*(s+I}?^#BO_7My<_h*n)Y#$ByVjHG5lQ5~0Z#ng#4$=q8
ze3Qyg3u@;pBaQsxh-0&2e>Ku*d^-blE(>a3vWKDYK>(_h)+&Rw`9jYw_-mC;n6{9?
zXXjScd&$p?ZRskO_1O%G-~6wYX&4D=#dk;TiHcT=H;Zr(9l0|>`XZkb8MI)Pce!56
z$Ne?iJKfFa;xXwp&%<us-?&5g;;m?<{UX~kfVHghz&mOQOiwTS8<q67wXdRP?N9Ts
z&He2VRQuD*mHtR}r_{Quhc)_De55U8Ku^WiO=|Pcv-9+gV^tlzDfD{z)J8+od~>@D
zd>X%c_;h>s)w&0L6yGY;3;Oy_7!NAJ$TspPB&-43&zQoPN&7xEl^&D$VAhBqPXJfW
zIGrFnP7KMaOhXVV?`}~N+V4Ld1%H^rc*@l=BS_h00hjwcl1h8Bj4B^FG2yQrwF1>o
z_G$WZ@<ehSVb}?LPb-7y*y2j|c>Rzu1gXI)dzW%{91RZ#fUU>YpMo0-Q7eh%;yx{+
z#7(=x`VMDxCiv*|e<fHIoo3?-KkT<P#45s7q$aC)czd4cL21HDJ>S@w<{HFhSWuZn
zTyi#))7^s7SMZkU?R$Ux*rpa2Sh~YDTF`nG8lwgE?EOqnRbevM6#r<D)=&IwALs6`
zy=iUV?8o7@=;S?aXG}*Y&VyY%&FmKOOQ}#i4J%ksvt)6^^A>ygIvX9SMLiBqT`hRS
z&d`R#J5^4yxV|jGoo-`Mv2C=2ZCkPzDF&=%c*@99!nwERZ90`J7QXp6s4?@IzVzJy
z!T>0B-u6}Xq@|lIA$V|RQHo6VU{TK>y))9UEeYRpu(i8BolIXH?hcxsnRII4oKnuN
zfyLek$l;i@dLP3mKWnjGIqw_Cf+hgo`p#xeYskC`>3KM9dK#FFk3+15l<pwLwY2=|
zS8$mJ2Mf?0AeRS7HQlo!;k{5qiVAI>R?mPtGjQLeOVqLb*$0u~GPabr?A8Eh35g=?
z%!?(ja_}_4PxSlYV6BHD1-fS2iNY`}Pn{ExUZJUtwL+FNk--;#HYY>?_2AEu!~vHs
z_iU|eIR7sKvnd8NIRMt-QyPYEvSA=s79u2f{ukf#ygsBX+>i5pej{GHs^tf?DfB?0
ztEI`c|3?J}xIqA%&7Jj8tl1iFc8}8!59e^7SsOV#>x<K%@Q|0d=yYGNScAHT2w^=>
zUH=H2_&2fMr?g7L2AW;KZ*b+3co|TED+i^NK<L6oTHoI|P^sCUY;A9BzI?NblJzD7
z6ZX+cH($1O@wWOLvY4S8iuT}xyU#r>iCA-TF>GE?Yf0<u)8=vZ+QSOV*Sduzl?HP4
zbz|8rsxN7ua~)ENRO1}NJ^@Z?v=~~wQHyD;rlTZkC^Z*A)xug4iID^cZ7>(1GLwSn
z+muY_my@?@@*d!Q>ie@<f*27Ls?6c$o9Xkl!xN~optp5y0YccWPJiM)N1eqNDgfDJ
zI1htRlzcF15^px2ZSG9}*^~`I-BC{eoJr=h8+4G|;Wj-7nuc#@?EbrMGlO7kjJ6{s
zaMxf_`l#=yOLAh1su*>@w2~_ems`wdUGZ`TM;&t0<mKVo+fRR&rIjwVj1|-30GI(f
zn15{L^v90@7O(Ze5uA7c39D|V(0_9rF{J{-9X=h2htOuwdrvPNM;>qcWNSKvF2SLH
zFi2Wif}{7K?$ZJ{II{6JYhC?>8gfn6NbYlXOESM^$=CL2asWGJJ!a|t?Atd=oG`lG
zN6$ANZ32VG;U3i@e0aMRMod<*<*mC-opuZP`ZC{}&c4<GUzQ^Aw^5m1(J>63Wr1n#
z;i!!3>I2I4Di0-#FbFPw)gYz+c$n-^k%`#jE9<efi#GA~M9DQ7D>CFsg6N=;V#y<j
zTPim5^RHp}V8$fkt*f`LF+;wlhH|=-4sEz==6rkcL0?YamEY1|O1>@WO!(kTa;dV&
zc9#O>%}bP@fLClmzxAJN!9NOeJ*$X1ee3czfCL9n1?BcUuCY71rCu&OxGei}{>jC5
zz4CUZe^AGcNsYYGktuM4@zPWF48OveoFYH#=~}&*`0Ei5Dtp3ZTUBn^#X@Q!HdBj(
z8Z>~bJ;&1E2yKY3)GITn*ab%HmpsOGTE^I*?O$I#+5UC<^1xGhvb+Cw3MxF7XRl(M
zoN-Fr?=jjVWjXHe9~}H}519CP3~|`dy!X%>SHPtt!4J6=Hyq%K1gjEFn(mxxHY&{G
z(V(T8JjiK%-6lR|Z?ZF7Hr5VQvvFqi;7#`4zN#oLs9H6t9cj24FA_Vm4%ml=3eJR0
z*e4ApvjjqXB@nsN5+Y5DD6`YM36476H)TF6%93P24cu(F7~R;$C$UT;M`93{!^bs$
z;nUd(K=b0%E^pYpU<0f1pKGYn<5Nos_Nhg&S$hUHep@$Un%f*U*t<4=q6fnr>Zl-X
zpz5sJRe92q?siZc+w9g{XTppG3?--JN8oX7mjguEMj9l_awnd$J1!fL536#fZ!7mE
z;(m2@{*RaQ+cp0?sG6k7QGFj^89mzl`?;A6?vu#`H~py<X{4RMkpNqCNkV=_bDP7O
zUQ$Tt8um|Vq7+m&CNb?+WFlacUi+>Hk9-JO8G)Skk&sY<7VJg~BSk(n7(1#A8#Oq!
z4nnifLO!9ulztebd9qQ8R+@~$8h1qR06l<Guyl=7Sjz*fPQAP3%l&RDKz12?Da*=a
zM)Kf+?`}iM`U6wxf<FX@-MNd)a&&49eu`Vz)Wi_8_QiSXJHQwbNsE>twO!|!=}bK@
zRkiV1W(u!J49++vg5zUW3+tdvhs_GMAAu3y4%Cx)fhgT|E=p3$5b?lMWRld?Ca(j>
zd#4(JU$71Rn1rJJMn;H4WJIH8D(q+I*^R823m5vCT`ijnBf4VYhk*ECN`LrC=znl~
z?jDBAZ0M0M;e-CA^i-Ct*T%|VBA8tzih#d|6?G~Y3ynj>_a`Yz->kAFDnztPrt!Cw
zO+xe@+-f>dTcdDINIXX~r$->m?F!Opmcf^w9E4eB_`r-C<F&gPZ~&7HZT)sA@9+1b
zUst}taYiHcWH?|e4{eE-LXu#BXN$C%i59kJ@A7QW$yg~_c?o+StsT6(UNG`ac0yx#
z$m%FI#MD&y2uj|}{*KSe3*0y-i^S%61|ZQPM9|IS;WZM%&h7mjKW1pGXZrxLOy!cf
zIm8(6Va^XfGZ7%uI!9e(VVut?Qeqy2)6oyJEm{;C39v#K<yHO`yI;F1u;HJ2Sc6zq
z2OS&TBTg;dDM1Akifm<(H&*lsT%%k&4?BEYem0i+?C&k~^>cgO00_3BNbk-}Eg#Ov
z&uppM6NN2_S1BGW`JO3k$XW60{O-1xqF1B+oXydN+j>uXa*);b>>o1D7DeXtmR=&^
z^A7}C>XxHIFN5Yf<v)nS#G4{xm48dfMMuYhsQ3$e;LZFUmIvc(YWi^ENVb>apFr|j
z|6)*)VMs@8*V+s4g9z&8E(Ny9<~i^dxz}U@y~+w|XLfN&Ig>Ye@`Bmh_8^d3xDim@
zpe1&C-GlGxKgz2plK(WhJY72}zrr<+6fBOOKdB?w!oXgiF(s2@7<WzB7Mhb5xuH-N
z8!zmI9U<5nv)&Mu9Tcn0GuT4ax%9=5@V1TtFvX4^>)?5G*%Wrn=(~n0al5}f$12ZP
zMv*vlsRrRQOZq`CO1Do5tb!nVRj9FQM-DdHMK~HS_4pnwP0`=GCAl_Tpgc!N1Xb?A
zZdwj~pB){+m{YxJ+U4}cQvNOa(LVWv8eqjw$}SZ*Chs##?`Zx>m2n7-D{gZY)OGCr
zl&!FWmEKnfDXaJO)pT?7KZZ>th)?~p_<4zwE+bBJRx@-{;TWtSQftyJ8#F2m5wr4N
z4MBv7=zI9|$sfkGi+)&Z8?0#-nRnqgMny3XXEgaah=(S~HhgwGjhQ+a$`N|~>V9fQ
zL{cdRe!FSf@c2dk7OQ%G$*tEP>pzOX9V|elV2Ku5EAj}oYWiJz?kK8@=s&Zp4D@n-
zpU~js+`rp4Xr5jpO#G9PUu`T=vmHN@MPvO>K77PEJUclaULDWl;3PR4JNn6CE^Ret
z-ZWt$sN2%u=z31mk?(&r+1+}vdl14Y#!d9W>Y~G+kZH3<J#(tpi3vIjTL*UG;BDah
zwq`I~vh1L~+}`$`J(dqJ(R{PUjkJ&iH<2uigUS*$*6D7*m0l#UXNS>~RXLH_Wn6ix
zj~YA+c*%XNSVF&o&7pd_^Uu1}qfrFSr3wrVt2w9Y7VW$am$9-IzQE~Qe^xO|oNHTl
z1@v^*J|zOOtl=zko#hvN|DDtO{So{3zD;ta^rv~1w=R>p+$bwFlm_NLCWx(Hq+_+?
z20tx$=>ZGWp{n`00CVO@gb>7Jb<d9u?7Nh@{}1NtCJq@iTgOG3y~A4TqB!^UR|_uf
zl#(Vo1KGFds-wpCtbIqW(1Uh$?cu$@{V<<b#P?%N0eP4iXZ<{3;3#XD@04!YT6bm$
zF6}+`C=^C`+%?Re0%Qw#&gz+dtqj)>N_)(VlNWS-<Bk81Ry91nEtb&+OU$VntOw9n
z{P=A&KA*na9^!6E&S(h?2u3`GPo7UuZA@_>WuEKFqak>um3T3~ulQ$nc0Z7X6uqMr
zW+NvFn`S|Xp@_?CX3z`-$~+&Oq@OuNL@#SbiQ2%y-sJ7>+c<BI{63N*AIw3dm%yuP
zRSr2X-$fkV$p?|SqVV}Wic$uvGt)DW$Hu%?Y{Set-*a#M(`1^#iK04xxfxziE~E({
zh3Va40O$%EXa8tXBPz#WVzh6eCE@`_thKRPHo*pscWM3v7-8>|2+5=EU5q`veEeAE
zKdo`<H+dv|y6V)aA5n(o$wSK*PV6t|r<B!bMm!eINf_F2$HN8w?B8VFZ2CxdYSQjb
zJt-3BGN6Dz3xVo8pF}~V1$RnIL0CI`v47XNJIuFMM|!cbv912rZD$K$Dx2zrHy6(4
zJb!i2LqT&{l535xrcHERZDK7yE-2Ype?9yH{!|sw^*CkrM0a#jPN$b`bt;v6zz_v4
zqa<;x-)enbzVUl;;m*r9er_;y>P;pJ$}GYkN$|VeAWpgE=+Ha(NAc<K)sxM`>6VmT
z1Ai6Khf$tDfUPS6qfQc>WU79ll`Gwz8}_~E<T@dsQZkRc`$W4k!!9mFv5!$-@n#Qx
z6htIzJB&I6v-fURsgaI5RP7AinPT&zpC)V?2G~8wpOhU!7%>$JL2mrwMhS@kQU(yw
zk^Tr^8-ND~TsO!IByLj;5?V`VtX2~6a0IR$uz}H66f%)y0H}3MN3#zf-`%m8^vFB~
zlY|<<(&@M6i<6;-aPsKtHm}8wL2M#iQFWI#3S!t&@y`7XqTYY~244<v)3AQ=!TO*d
z_Gl!ZRia6ThjL+x;TTB!O<~a}bz)hDApf=k`O3*tKJ6tdOnZjM*j1Wrbwx>}6W9Q$
zA58ded^kOna-EPRHQGtZN0w%7!iFj|-e)f3&ssb$+)3c7icjkI=)t5GEOVa0a(!`-
zwl2=3=~i-=oGjW2NA0}+g|YCMbZ`W6*l7$?R3`m988SJrdh=DW8Sk=lna3xYW)cYb
z$+n)HM|;~YhWuIp|GnA~@s5MID$GayM+-VAbF>wNO8^TAkIIZ}mCClV$!(cTKc^PC
zKM9?&$9lNR@$Yzs4JKHMAgIJc2NA-T%{~Jv@h-vA^aJj-!sSsZQD)hw!k{A$>cwjP
z7e^nzZdYSAj7aCYT@?U0<dc>SXz-~9z<3T{@;y#(Q=OSA4VOL2U&TE3&+l@y+trgh
zTI{cf72p=R>1?%>hSSx`W-NV(zy0;kR_04W;-fs0I6vp16nY=ShC!us&@SJ+jGx5V
zz`op1A4C;<1AEJMH?*`>DQouVHm68vtFV#)zDk4jGL$Kb7U9vTKrML*Xq6ho)=fCq
z<Nos1;r`~~Cd^UKy4L-TmrqeET4NX=oo-T-(DMX)PTJi>F_L(Xjf2Bd9U7G)j2m)#
zY{O?47+={&g9^R8SOK1bX=psTHG?04a$)b^e7Y|Fw$DlgHx3azwua+TSK;2~S(H*p
zRtmeUo6hxN+|N*cFFu4M^k-6jMi&Qh%Y%tBpOYs<G4V9J)<xj7{%qgv=O$Kghd>s9
zhv@7-|ADI;XA0+-u{nq5SWd8bmqZuy->HjR6TzW1QS|;4E-QkBBa9!{{zrR$(?(>Q
z@gSK_z|;FH&G+_&2qO<z*%`*e`&4#P0JLl874z;U!8xStdAp@iM0>LMAdFdjS_`AS
zJ`?3HS}DZen(_9=#8yo!mMaXw@j#==XP}Apo13em7e|+Pl!R0zsD(2?5;~|96zrs~
zbEy~N(sbQCd-T!vbiwGG`$#}x18{`*K^H9~t+Eu377_MZsm3(FkUQXY44S(E%nV)T
zWByYwyKZQl=RV#`RNQ+|<X|0e?iuXe8tU?eZ3;@sU8fueeTl?=-A=-d99D;@*mP}&
z$=uTmCFIl-XROrV^z!@S*UiHxoBh|_vS$|#!_%Qx1q^gmU2Tj4>7lX_#$Dr=aI|+7
ziyV205pFSOyAG&e$Pt~F*x{DMEqU+g<C9YRNinYnOOz*gOpvi$1|v`IEhDdXLXVle
zjwGSi>Y_sjPf5G7+G?fz{vSWI7r%3w8tjocV9+D!`+RyD4Yc8Fobmi_fy!fS(<*|l
zKuHE<aCsL1p)^9eECz>zw&H_X+`LbIxCi@<f&c$#ySJveu4H@kU!|Vf?$|=xwrtt`
ze>w$12y<-;Nw!~3lmJN>1Z*yn(WgJZk#nw9h1~A5&xz>hh_<L&wboqol9!PqGZ%L6
z58tNvuePQqA0V?29otd!b%;1D@x1QEJCNLU0->p+(bCv0RvF9bUV(2}a{qi8;%P{h
zeE{cV%P;J8qw}L!JzD}zb#U@Ge#7Q3n}@&l755Rv&EvCr6WtH+8D4F!tuM@gZt&(h
z5xgPD%iAiRLA!5Z6~y57FA?9%xW-`neoIM>QMD!5P5YTPPHXY{{<GtywL`d8CZJ(S
z_jG%bFvjwVne~4p#d?}jsQplp5=l#W&z!k@j6v8gA~k88vVAY^e@BddSFmOu^bg<D
z)<dLkJ;+vr0=Ef{VhLnw%L?EJ+EpzBcz(Oh*mQq2)Z!5D+<9oMW05O1=a3mCD^n~<
zv<kL681~|Rn9u9KNHS<cP#+Lfu-&xfY1;V3(hZxmUI0mo7o)PM#(1%H4o*+rM~-q-
zzwtXQm(Cl*Rf<UeNqUClosLdE&Am{iajsovZ-AZ)N*v-68I1B07>3)YxR6Kh8Q()s
z`$=cr>pA;P;Mdx|R(6z8xFb)-6^ig0j}M@$8PrB1rg`$2_yY}{zTqY&-Y{(<$(@tv
zE{jQ|1yA+(>iYiV!_DnSVD!31Jg+tz+@&m1B{(ila)Y2rfs`_PK7BTY0JerSq?t1t
zY)pSqJbEIpHfij*%!{gSbDQeMTosHBBuTnv5*R_AWRum~uWyu6l-Os+_s-Kl%<n_o
z5Fcsjy|eq{?pWu}l9ZpIyNFflEfLIT#UV7`%)Rouoi7u;q<ZE;GLC>)p++~3eaH@F
z<;(!TC$xhYg&X@F*gy8|hnv&S=?RjIgVQ|W*EIR^PmJ=Z21>d3+i2(Ab;$|Ea_uot
z<%6ukUnmn!iMI29_3cwF)ab_MoYO<KC8eejAWI*noRr|FE0ff8xl*OiPNm-?nm$i8
zu)ZCrZ1bN2&*{f@APScq`E`OKg42H=Mh#ScD5<5#AeWk{Pi4DR5Z=9L`|zZgL5uq{
z6#@<PNX3}*lqU!82ijQqhv|Obi9>uh+5JVyqgdYdXM4+Ug|*5a=xIpxZIwd)*8936
z7&Py9P^8=arPQhKLyGN)n^6P3M8Dvbiw2mv0sBi`7EZjQV`fkPxD<j|Zj@9P#TDX}
zY~Nq}k*z#t%6w-h&M&kUASl{llNOJoq2d#YRhPJ)fh<;<#{O!S4WX005@*zRNg1+0
zFVz{EmhoKXukYD!c65y1lQ{0c;=VljEg<&C3C6?WGW6pQ&d{;q^8M*C&mFfnD?XdY
z^~q1!;Sc#V&B2sv_X9mG;6MgpE*>Psc*ne{zc4}@MOqEJkrOdgG<cNca_)5ctsE%t
z456a})TP-_VNK;8|E#wys>_I4FNH*+vh%(v>&VHIDat>HD1Q+2WNX^<)r|DDntsf<
z4l*fm7(cMAlNgT$VfSqH)IVfh;15gWG?z<CaWEZ3O+pQdBxngk{inQ=A7RdK(3u{`
z#k`kBIbv{MZzy{<7jC^4zZs*%xIBQpH@ZbU-mhPb7RJ{@CR~MkvicqiIvLFDwnOav
zzBhaejiUJE|8CGrN<}p7*8WIjGfNR)bdR|f?6jMQ?bcqJpo)*1y?=4@P9hYw%M@cA
zHRGKKvH4ta`9_M^_#r2J^N9P|i~SZ(Ox%Py0H3M{F9j6>CZwH>*%|Kus90Nny*^pn
z+jcVHby><Fc6%>2YII>D9<IIWzfdoSbF?~0Gg~QN)D)>H3F%&M_10ozwx3JJibWV!
z_{yw*9MU-N`*jhZr(&0q$R{eZjl)XF#3{{r`ly+n3VU&l-4Lk6>N`Bp@A_P)n2*EL
zxouHD%^iBMa~1>qNue0{Y>r*lZrlhNjZyAz?T^|yq5LjW$H06Xa=5mha0%HDA#t+H
z&Pep|VHa`$TN&<IgS+#)I8Nm`6EC+XZ%LxC9!2ppbx)t7pyYB*tP(*#!Orn<b&?)X
zgqT$-3*a$D{*jV@$^{wFOh$rzJqzI*0K8;L&>;b1mrqp|x^0CFE-bh+6o#AI4;f6R
z`<v>Ky)q!a{bB;GgD2%th}4qSFRJ<lj`?x@@*he5N=dcWVrY@itYK6_h}Sl9$`-J~
zb}oOP-;aBp-N?V3hLK~iS54_Hua+D%2d2nr1x>_6QitXk!$gm%PlS;Vnv1@0T|h>`
z_QH9-V*$K6nQLvUD)!!Gfh`KkvOITRZ_d^SD}Y2vSm7PWGy3*XuO&cj@Nc_I0b%28
z<$P!TovQ?gO4LgK;*dm8F+I%u`X6yM5;P|X+SXvPF3R`ka7z)ojop<(!%XK55MzGt
zALqzlS1S@lI65w1gR|q}f~lhhscZ_E<%=K?hGR_If^gLcO6GF9TcIO)ILlsYSYv*Z
zHAuZfQ`e`d{c$J*>f~^8IAad>FHjb#Nk2(7&&amCt}$@q!|ix|c`5CocpnQdY7mfh
z_FQX8VOe9Sbowzh%}vTeRpp{@pYRN1B7&Tjj8MN77buAj3*S#kk<a(Z4gmj#;VbZ@
z9Ww7@=knOALp5t~&J_Fcl&u&oa}+bYBq?SS*R55K7`*S=XQ?l=M}CvNLpes`geZ2q
z?_^KOMr0&5kF}gjC;(ZwwtjH9x$^QL4;7!|*3L=@Mt_&f422?>?4jEXV$dwj`sM-x
z8Hl6@r*f27o)By1Z51I6<D+;Uf8+0T%E!>u9w(d^)n46v@juqyW3ik$UPl?e{wKv(
z43PHvKK6am2=;|f5EB4C1{cnrWXb?8-QDmuLP)2OArq3~8@12NV{gnqO;3PO0PS!&
zhYMgY4+w~I(;EfkBF5Md8W&Nnaivrxd!#C|CKmL}zi)1ba>X~xITUGDJxRw^@tszb
z_-Sf!nQl}q<_vK+%(?gFc28SreJT6b$1APU=9zr=q*nxy@%1Mr&rPY$oUui^#$?Qf
zf#Z`4J18B0FqNE%k7WyH6Uno=JkzRVL24)$4)4f0dZuJ=!WFe4M?~Lua40*Lj7Y)Q
zt~r^OJiEzi>x4ZLNmbQ&IyuSchb57Ng960%Jp6U>QEF3Il$3{!)p_@aQ~>b363Ej`
zF+O7adAMVfnDZuJjKrc53p%EA2L>BAI#hnf7OCBKLAp9{zbO)XPgFc1qXN}z-ESOM
z0b`ig2mk$D0Lv!yOrkc)brcpaEn%?ml20yb!Gl{)P0dD}qxeA-_qR|ET%!|bbvXC^
z8N#4^7EAm8(mvWKzoWrlc#LxQOK~DWOK-Guf1}Yx8%4YGlYnKDf37MVyEVLzpoQ&x
z$JNE^ox@<aPES)SrT%Ca{h%Q;-|tMPRs1mQ6Bct`7(a#oa##eF!8FpAu|4tc!vnq#
zSr1VC?!7*y0`#ScGb^UjeyZYkv|uv?UfzC03$}lh1<pM2-2agmO!dk^SHuyj-vd86
z4na&A1}zm_+F42u%<pq*`&{FbFrHq_-#9^whkJaYf;Z{(ZeYV2h|E=UW+x@jm!FoD
z$(>(UU$;D7-v7eF?gzVFs(GUD&x^a`RIm{`9UmoMlXE;*pw6Bf0$cw1ug@Nt#q_jE
zujk)IcodUS_X_(tZHCV8Z>0eK-ybV3eE)w-<xYOg$1&ukU#DmUI%h@PcJ9y&POna5
zia`(Fw0NIDl5?lF{wjLvlrN;w*W#smA!;{jaRg~cDO+0Ja6u2*nF-$9T?E=PUeQoH
zm|hL0)%6W)<-2;>MnW7FK&$uzPa<Vs*|gU~&G!MrJ3VUzzdYrvS#3RO^NSSCFQsJ0
zB8uVEK0bxR=kR_=0o#R;?zWovsmTd3Xtaf8Mo|?#vBDWXp&?@bIE4@DHi*G_Erkf)
za2+>qDB(AXnhu2tz%40EpEPzQ2@p!!4Xr&)SOSBZBrt8wYbVWe`7UkNev`O`T2w`0
zjFlxN?pY*EN@?$Qp2F(?>%a?=ljzP=KZ0h66Z*p*9lUJ?7X(E&cNYz;%bHAY>?LeM
zizJw&!V4nJkFU-jeo1(xr%VtO{>nIsd~=&L{)<#aviRtv6`UOG3=2fD*m?mHDG8l!
zn52hfPT-6Hx#B{1NAK%8uv+>vzTBRz9KISPb+(Pt($fvai)7OMdcbObFDK&;_}|uv
zCl@U@D9g0StjZ0-TJuV3baSQxf<*THkuq)Fi|=w@J1UtIcc13m&Czh{5k+=bEc0Ha
z9y-p&Ygg{UKKfUaueYFVYmfi#K|0i@>?^Go9+akk*Jkv(Vu5gk^n3ym+A|`zw8#y>
zqRaz0Q-vj3Ac!dr?48rPL#=c4YmksoR}v`>O<2nEoR$YG#{ZryoFxzQdP0O$H7)bI
ze*OlFiz#Ag85vMKs_OU_V9fUDyrw6RAZX6~{Nr4)$x?=e7y>037DeM(ur}M-NM)$|
z0m=ysDTYw3NNj$3wxQ&ITfVkz+GR%+zYdNt-QL(6S7WI`nK6N>qpG{zymH$lL#<>b
zioV*c3PN3rF3YmM>C^DZ8<5RG6nkpJut^7Nojt-}w4)rrqr_p<P=8?52}^JlyYX(8
zmjsLFWZN1mL~rfQ<mULpO3bpdxbwvi-&JN*@n*O-@t2a%TN!x*6Ms>Jlbj}7h1aWY
z!vFqfh?-IVd!H^G+^V#q&=Paw<7MjBq=P6?bVqb41X63aOyc0#%ahT8V6uK-N#cpO
zSA*A7d{`8H5g+!-(3k@`PAlf0`qj7O<nhaFvb;25bTHjfGo^t@<^PzvEa#)i#%#}J
zvZ(5^XOrKMHkZiK*}Xgu-9!*^oYvx(<_D=PHO>m_X})M@5h8rEzvc^YoLvmX+C4m&
zrk?W`L+KWuoT<>E@$<R@OSj>@t<}lS`le^XS9zY}pNXkBzI2q18ppK#%~i@9P2#2c
z4t<MVlho=Ce+MucO-ojf;)aP)30KYy*jXkFIde*I)D2j#028*dI5M$ZRURsk!wRdU
zj9u8~XXJvMdwcZfOgE{V94wZW$n(jk#q)%hG<9BoxkhM?=Iu{*$ZY4Zo>KnRVymMB
z$A%`Nl8?BGN_9<fohvHTg{2|&Voo*MYLvKbFBf_}fO205R%xZ*i+vu(g)Q)Ni~?nD
z%E)15K0yFuMPQMYJS{$UmltclK9?!RNuF-J@K{37VO?Ea@!8`@wuK(zKe8*U#a)iz
z4CN%#)LvZ;wV%3zET66gOhvNca#%nS0!z1|Dne-rj@q}4C$-<T+vNf-g?5Ya1_?Zz
zG8DT(>ss~JrVOIwB<yD3-}p(i0-s*?J`_P-N~&Ry-1o>Z6>;`<u(8sUO2S<5`lmq>
zxf=eJ`h`Owf#?x0RDrAwlCM)8g**w(^<S#5-PgN1@#Ms{X=5Kwf8NpeO0$EH*L3&_
zb3R2h7m1Cc?94N6!Y|ofpNC@bKPFjd?Qi_{`4t%~KZxAe2hKb+WvfyJ;~+3i)5`H-
zd$cmz`Bks!YdpXMho5zLO0o2#$6u)aWqPL<CHEO8YY_oiFDOUW2G`H@)=ovG`eCy1
zY)z@<Ofl^y6q(TYT&ax7OWcpqND&UQ6t5{rc2zgSk}s-qz+`1Gzv5x6JSvw2TeB>R
zdLKB@B2S^~7B`F+d#B{tci=<t*HVf9Vb{3`9*{=WJI`7fB*XL}Of9jKu!w=Hk|jdA
z_HP2(nPY=uNDsMME;lcM7Q^j?_=i)(1x#|S0GHw?0g8s${)jm|c=amvcKwd5f!q$h
z*j!fe8B?r=q_Ib+LR%x&hXNOSs<D27c=X@fL{`eSz3&)&{q!j(ak{;|H|#a^yDH<b
z@-v$^O@?|;meZRLj~XYV5L7MS?1@F>mxc~L``?hQ_vt8gEV_!d^1%^cN&gQNVa&So
zSa@7^WpVP5KU&|xl=<A)+iIiYA@6d%dfkz>=2(BYblZw%wp!dvK@E~1i}C?(8TsBY
zw8A)2NE@8TH@<~2^}Um1jt9^|x>l?ALf6bDuT01KuMX1Q^w}E9;bgYA{W9^hS>NjV
zx0$qqyW`KOnH)4R+c=Je{-#drLMZ25zW)|9(&T0mNTPR|cu}~WFkJ8w_ioRwb+Re<
zjNyTrd}2d64B-HMOsxm>F!E}kem9lJElhcc78agfz=;4hCBB%2gp8_g5D7(c-$Uk1
z(OslQ#syYL)U;RrdLa^c!-z`v)t0zW>yXUdBxPq#OS2#KJ;l7QJhd%VLF;Zw%~A2x
zT(KLv+=3uku>5}5iY0A{joP-l24moyUbkKhe`D_E;6JcA9`Q`}+ek>96mN9e0jHx`
zk<x{Tr*EX1Z<6<Et+c7SaJ;w2Bs$kkJ;j>{Q9)u`&U+%^s^pvPD`tH6?p=~?A3W4w
z(dgeBpYmgb{_f`b!OOK5I$x!2(4XLXW8ih`8o)$Cx@Px{QG54bRY>-`Oo9A*sG1La
z#6~nACL&4H9FJ$aIQ@nG`Yon+ahF;N;)i9wm%0VHQXLg*lw8o}eUGX7t?o(QrE<Uo
z2g;7!yg;}s!>*%>^}=Zav8k(2bzP-E@*y)UO#6Z)jCaXFNC-FUQO<85^2}*g8WY6p
zG!vjrWKO4Sz?<R=E2V}fEI3$&NrysURfW+wVF7E2KHPHrO{E((C3K@a!8{~5*N}+g
z1V#tN`!;};Il=1)g@SezMRwgUhwv%1a;2Wn<p)>CqpDz*TTz+am7bEW=>;T*O2Z10
zJzB~YjxVkpJL&!DM<+N;nju2Eb#M?It$Kvj#TwkChKe)zUp|K(_D>mx;U6DtZcM+}
zYu&PHkD}$*-{Jy>sqnyFOO*-gj_%$)Aq!e-HU{0I-T9MhXd9a9tCXF%Ol16rmfQ5K
zK{~yBNlPJCY(RzO_xGt#p;Z<@-t_4nO^4mwd<YdOlYdU#wn9iOnFk#f<SCUU?f5%u
z<*g*s%(^I!Smt=n906cL;MtX0$B5zqJU)D!Da)oem7=?&mRGR`P_U+rxDz^DQwO7u
zS!%udYFh`>M-%cWtgqA+>HjP`a)pz`jDF`x41I&SqKv0m@HIO=4xW)2EZzQ0^*lTK
zf;`ww6w{|6cjyvI>`HI%0-ttC6z^c~<^IG<hA~4-j)^f{z=-t8+`GKubQcI|Iz*!h
zzh|$K*V`Woo)f0CHOG6WcRH#@NRHEC&~Us|js#d=-Z9zIPR38@FuUA(5z%sdp`8hP
zvnG@E^BlOxa7(Gw%Qtp$7+0sFasbsWm8W5?cPxmD$*Z{{a47ID_G3I4x-e<hH$;Dn
zjdeK`A2XN4bE831t#wPuu0E|m=}?Qj38`&>qt-oqmX-fb09y&s_c|HKhPgS5n6N2(
zywWYB;D^_V_a3$oD}@wEg?I0`P;{*g(}D-!)`Bb8Fk<V|S4p}rdHF<tGmMPf;^5@}
zu*+as&5o?EeM=p_g6Jj)6yX$2IqY0<!%j==B*pz3@ujMu9cPWJC&Rib?q}?L=S99#
zcGMzlLK2JFjkUA-v@A0wBPGKSx5M>K$x&{TEZkB~irif2jx3J^OY5s|3qRZ3e!RLd
znN{)iWQ^NM+-BUmAUDfl?XY{Rj&H=&P-MYB!|7;08CjkS1i3wk9r@zr7S_<}%YzMq
z_wDV~TLj1Vw<|9*UmA0&YLpxoGzZT8q$)+F*L0&su8QzxT9@zui35)}9_O5{UB2-U
zrG_m1_UYRg8X{;UUFISBrKzI~#F2$mUS2>%uRmCY0>s)XtDDGfq1S1$4|B{XH7b@}
z1<QjJTDx_qa+646X12?Oht+QwqLW`9^F&_s$CQcaE+9{;|M28icSxSz{mp%o8*#6n
zZLYuAUZ}pYLU4+IU`I@!EKDFFqcG3`I$xaOr8TG`cevYc14_TM@R_FyKtM(p=b(qb
zgI9%fAff;K&VPATxHxxkZ+vRXjpkxgY31ZDpglH(z?^n=UC{dPkQQj-J22{L;upLF
zKOW+qBa?0@Az{<;tEU@lz&NYF;Ebh*q1`yYP&<KgceI=^nJ{-(Z3ibE0m$+2f~@m5
zQhlCIp1=HA^|0-ofg?DOrvD*%7%(T6cd9zlDTg}+Z5Q*g*u0BDw>)OT-K3)lDdrZB
zuaL6NbGElQnh)ja^EqdIpC5lr#aF;sLuz*A{`SiaVO)hhYDMI#K`5SYmh74BFX1Ul
zHt{mHLc`^gVKjt3*NINu<^1*s7``JF2B}VOk7=19*)4%fX5t#k!cCOg((!2`K7F-g
z7Y!FQQXme3THLnw{mJ#$%@2)}2_!$A|9ziiXeTDc%S6)j!m~J07_hGJ8#ksqldoSs
z-g>-DG?O1pAN-77w0e?GuE(LyHVr$!h-)H5p0MIvT(mJThYNitV<!<z)yBA(4UJL?
z8ZiZ8N&v94E~U?&<sZPG{6O($AoB5v`UtF>#WD^ok+d_CR&>JVCoc-F)8#Jj@Q+0J
zim?5&iHv$_(ec2Zlv)tj-Gf>C!`|C@i6~-G*l($-&^{+Zshnz7Ix6#S8LDPxK^gA1
z^HN(4h;ie96oMriYrnXM*7Kr=)1yC5skThzaLDqV)ZxUOwf6uLz0Ffo!Dg~l0mW4i
zHrUlKvx4-(IE&5grz{C6o;=R(#OCB}*gK9?%Sr!S(y|5kl9AO+B&tcEJLmeY^IVG9
z#bQ{`edT?A$0JvLr>U1_1*?N6A{4W$8of8w@!%;lEM&jOD#Hq&Ztrgj<#am$7G#Y!
z=ImnoOB^jF6^P9<B~aoFohCtah@c&MV8tfvW)taXGf^6c-Jq|p@(?$S=oKOT+&a&+
z81n;jSTc}JxH?t3aI)`?Ccac>fmqYl%Q~3VV)k1$zvI=*jW$+M)UX`2>$6g3(!eRC
z7NIl{g<sfUX2S(76()+RrPh}Z6@8kizCMvGbrS$__l|^`U(1NPxlNiLi04FH@WGO0
z9)+=q!yzefAZXc(u&SQti%l*2n~<1-Q5@>F5vr~Gx2zZ(iefpnZu5!a#!&7mQf`}o
z8-y~ycWmM(bU0A?mQX&{w~^}mR&U(coB10wzuiU}VN%9f-ZjE*%vKYD1QOPBbaQ?L
zCq!pz+SwM{TGiiSH`O<(yfq{yj_RaQ@_$M$=Hf+Tp<wjf%s*vXiW+dpPs&7(7D2O0
z+xN69)9REXsRY;O&;|!9{~u2QdUnkRnfY*EDTUoLO_*W896iCAG)r2R?QE7-X!i{e
zlMcT${m*xwC@>=YA&jFPCy}zTPbM7A?}G4`5K;Uok^7}uFA1<_@_}_lLK-Jv;pk)-
z!jRSMK&9K$aJ63FzfnN&b40AKZM+6*Pj?qWai}+ia7O|^K6*?K6RU%{&IAC``QrNV
zd7V}+8dK#^L75Kwbz$P^q`=uHp^MuUvN(SEuotRuDSs}VY1U)%wOC*`iUQirL?osJ
z8G9|VmOvB$*hu#N@1vnLd8W$XqrBn8@9i35eji6TMO<6*XiFaMyYi>(n3Tt(V{G+q
z&Zlw8{+u@_A~&RI2v0HcpX;=OAJ`Hhdj9uM)S8BGw<mA(B)9=C$Y49UerzL@(&Mir
zS;$YgIswUK%2m93;b6*PW&dt*XfEHqi@P))I$RKjkKEhTy5hAaUt#39E!LHMrC05S
zmP6hSM=8Q5nmh;4Q;TY3(k9Zz-%tAFn+ka>2WXr?CO&3#tf@<=suv<L$gkx#=pJaq
zhp;K9dHLu1{8ITRpMv)*rzjsCA?oXn?ESrLBI{zttQ}kVlGU*U<($n=CkItVMIC4I
zcyVC)8+EqehNpH1fWr?{KLB2F+Nh!_5ArH`=l<a!uHMC4h9!8O^G&a@E2WQ{-BMF7
zwEIeX(YaRqK<}<~rb*44%@y9_+<r?&F=UC_<H5OEm^-ar5i_N!&vqMlXd@UMQOY5b
z^;-qk-Z-4mO${IJD)R^M*80oc46pdwNRqGCpLK74TrAlR4%4g0GYBI)SN_X=cdaUK
zYlsRLC|(`sVyE^1Fd2uOLb?X_7>nq1SuGO<kfN35>3rqYqwM{5b~)WdZ*3t=fZ6UI
zY&vhP+#ULNz@&vC>_ub8hi&)IX}d@uDc8gmY%U*8FW+EA!dmdJL2P&L&~KQM&S;CW
zR}^OS92Y}kFEwJGN+?S*Bhj`>3wkSi!pT|`0aO88$q9<7+rV^&(|f4icW~xut-8-B
zx)xal&k_4-G$~!N-VmNtTxpJXGM!Rsb)Z=jeWigHDFU`CPnkp$It*7Ksnlc9mhC+z
zd5`}&>EHKx8I~!q!Sq@j@Tg$Ssd!HNYmE30S4Kqh4=45i6~%mz`@?u6XksHCBouBG
z<u@u+3h^-a?~l$;-|~K&S+fux6f>uHJ7n!LRvgy5_uXI@t$#8(d$YpJPSN?TYw1L-
zV#g}yJPBicg4NQH4)zDO1#4{iNN49Iu2+Z#pr^sY4x~kYq0#{c-!&<8OmU)se_<!l
zF_+2FD(i#@uj2LM`{BW4>wF_~+{iD~>BazzixJ8d$Bvu$ULqaoFpcl;QxV&(bM>g-
z#_T(n^fr2D#gmQIgTu;bElfT<szsjHlP9!ho3_ml)N3;ghG>Uxe=y~l+aw1y_!$yL
zk@X=ZJ|Emit!pndmbD33hb-y5@%Oi`6V4qQ%f32IhvfxNFQsFb`vGP*=H&S=5mkDj
zj#l^=B*d?GpWpj7A7!3YmbYzy)hk@#2<)Hj$e(?UZ~a+z=Ih6se8^Ay+@k_afvjvj
z3lm%R&nCsNiY^n5QW`ySu+Eg2lh<j3;~We?TNPzsEA}QL)1diPBDqdmxb{}6zK@8^
zpKjQW46Q4rguJ&sAQufMc9LP?!=chHn;d{7^5uHj^QQYWSVUWh!0Jf7+dfC;#;nhX
zBe7D@gT1--g7^JubGCOdbM+DX{hX^(MH5ygvzKcx)17fTS<S!HblCJum@6$hoK3tw
z3cotLq{?)3vGAOu><#m(P!X?Kk2JR+@P-3Owd+tI_m-mWEg9m-7rKAt>jsPT%bt`c
zbg;KG`*qgm9Ff~<waZX9mn_f}a#)wlr^s#%I3bSd^@-xu!`vnJG!(42Dz!jr2X&~e
zxDF*BTX75*XQrTwLg7oD=@%5wk~grDyMg8T!&8XOST(_zrg3Gi4QJR9eL%5{{*Y0t
zOZehobp1&0akMYfd$qX}ZHGOHg`o)D90g&xTQ?09o-_05K-ukrMQUtl7Flkor=FQS
zuAS9&&+O>}%lTgeLR*icyRo<mC$8L-$ulw6nh!LY;H`Ia1o_&JUBuCuj}IOPx6v3J
zY;#x&vox}a*e3?AQ#A!m!)`=I2az55qV7os!M0Zqo~@J<ok;;zGIx4Jw(lUu31PLI
z9JDg*r!r!r$bTZ$EBxPIhb^!$AzM_KwTVsRTK5y=)LGz8V}TnIS&R<EDlNGFA#8Yk
z^7*|uFtrw=P3?9W4`-LZPq3EetPRIb!$$#vuaXRZ+K*ch=KQUcr-v{sQ-ozl4ux!r
z+WsXY*Y5P;NIYh#k|u5dkr_MU6&M33FOR&`$~bV6&rFsU2&qBvL=C_tN!4u!IuZ7c
zMH~a;g0o$3`+ZEiRq)Bti32v2I&m8j(>PHdE@etkbBTvR|6A6%`iM=thRDY>?h_}v
z89L3usXn-Fu4apy=ab!i(I_+A8$yPS(F~%oYY|)iwA*S?nO3MbIU29XXF`C?T-PqW
z`;s54;j?(mJe>u^-Mv8!fXz<@a((y2;SPnIrJNqqYKUI(7)3ZAloyQ7h%vcH$y)id
z?NPu(FO9*uPl<-i00>9;9h%W>Tc5C&LjU}aKJ|O`5x)BmKSQ*|tL=!q@iEzi)Y9eb
z<L~p&kCx9sjv9-Z+q^T|LdCDzUd@z-ufdqNQ@PXHHPe6CmioE;qfV#ea25bWxUAhN
zY)ad8{wA|}qx)EWtVinP`Nrx?dZl&WkVhF{9ddSEO}}do#0K77o&1`5g4I5Pg=+_d
zpR+0WIjTXMZQM-Z(;?8*QzBW1%`h!yUA6S-;S$`>lgq0iayz@@A;wtn_9W!t<<*hf
z!nG>(ynNdRL-#wUt)F1|&D~^ebH?3h@M2XoDyL%Fie$N()Z~C>#y%85EyFW!^-a3S
zlvsG2QU-%=^i}ALPFS~U{r8JdgO?xZD}(9e4c^_U5z$(sw%hYw#;srBvX*a{<2n2+
zb|6qW)rZc~q;cNgg+73G7prC_|D<G_<J;!b-I49hQwBeNy|x(>P}6dr?tl2e5PARU
z10$VG4W|F_dk7ba!Tx83i?TugX#u7_2n^vr`yR==aQc5!6lAki6fUEp9~L`(CrIb%
z6+yDdS<N{qTcvBHR%(e^Fgc35yZFh-eTlyu+2~%u-4teWwTEC}B`<Sz{h+ESRS~#l
zd(4sg%hQ^lYm@hce!PvP-_U_UY6z$|rE~PKA!>poC<VQI)1}|ixM`j~9Noh0_zAf^
zBpeSjP8v$;N1{nP7};o7M>j`*&-XuyUisloC8Tx};K#6R2GG1IbDEfu&v;otmV*Rc
zP!v3W303Z+@er-DJR~CFV7HVgK5xVkC4GE%RtiD5f>fi@&jg~P<dbY3vcU)3hZJ@G
zQqGOh-N6dWLS_=nJdMCs$&1(gpWS=uf$^U{r|gWxS~GoM&jd<hU|raKnK{McVb#S`
zSYPTY`Nj7B_x;u@lSi@cOTox~uZ8918QMp40n06)+|*7hssGiQ7!n1M-St&1nMMuG
zOq_lct!lPF{{nyRm0c!ZXS5MYHKKZk-1isX(UB4iSegAtD~&{?gHb+wez4BzR5B%z
z@Qf3{=qOUB3ri%<b8}OKcEW2L_O<c=yw%#%OY^q0zbUnUKW*K_Z<GHVKyL`_wN_m2
z%dy3Jx1oop|K+KQxqnSmEsWHKrXCixmkkj0jB^!`A&m!XqLU!@=iTuC<E{1)ZLj;C
zD;cXv%zB7ERE*(nO)s#yGM&|>B_IdmqAq_bwmvQ*2f4v@KO{{ytGKhdG186e?eix3
zNMc<7i#4{2PuLgv>espYv+c;6vg7;=b0eZr!ZrKxW?}se-i=?Yky*d)z{Kt3o9}Cs
zPf~E8QP@O2nwUGeIJr}gjAJP15ifk6s>8dd$;vxvISH&^A=?`1Tokbd6K(!+Q{rH#
zTU}QS-ebb14u=8Sy@Q9r75vG*?i+ncj;8N%m~#EN$RKUy>mkh+2ELPC*{5x$Q;sWR
zQJR;l67`hF3o0F6{?WYm9&WT730zc?8-5^*)$`gc#6}C9V@GsD`G=eQb1v|83rf^9
zteAJ+nPO5a2RwYec$xYRX$^TMtuG;r;H9LNjm)2zfz-7UwJMTdpL_Q4K)0`NbSsqq
znhd`MWKoBE7_|x(fq+CjsH2-n3waVDPx%eg&1XyC%Bxz9f*$<{N%~p^0LeNJZU@;y
zDw&^?7?Uvc@_)zdg4X9OJqv~7?jVOMOV6+Q1lqtrvHNR~HVFE9^sqcOLL?6)weF>Q
zsueP>s?ZTGxdH+bHdY02Q%g-w9n`VD3TUMKYyaMr^X%M)vn(ZSf&Y}?Pu^+8CWC5<
z;d8!&D?AdU5zkK{2SrcLR>W|8YE~&<+Wg?<u3xP^t~{B~`Y5W+b~-<MBrz%ga{tri
z0Akxkx>V}3E>^Cw3KV0BwGdTws73hh$;Y^DlCVQQQn0<6qo*$wl+y<PboyDGVQa2M
z%qNfh3TO$Ky`6j;Z6Ous+rqo53{BMxJ&$`PQ-GKGYizdA8OtF8C3<czgWtKWBNQ&#
z$TICer$f#!kMBR+V}9Px&%&%!6q1R1Le!@oOsioMd{2~PZ|B*;`YY9r0~3#BeFSMZ
zH`8PFVadBi8H@Nx%h*{PmdFZyrzdj<%@ZLU3By=q))+W~+1qoJ4hax>&cPFW>j<s4
z&~Shc8N~{|(Cvk#3;KqFrq%(<0|2lyV13M=e!aRf3a>?Y!(eRY_`Yj%UFQDM37$RP
zu4zWZwP<_WNfQMIAIf|l5c@HhRBftCol<Xb-64h1fkJ3utqo-cUeQ{KLgvkWNUfip
zb@ha&L`NjlZ}T^btQJ7zTalKTvPK~>7GW4-sgB*|jc~_#Wn|S&DqO(#eeswwDdqN)
z78r>jMEnX6>I(<AQrnumm?!nV=(d@-aIy4haD?7F4L3Ixkkio&z&#BNsd#mjJV}h;
zXU%?n{wLsj0(wS)4IrF~pT)yiPGNFd2?QrS2!5_I{Z6NH_R8o8Ns-spY2L?dju+Ec
zn+1}QElOaZ9rY;&Tu`M`p^eL{IW(#QEB!kOB&O=$nE7X>4>oyl`R*(C<e98E^Kk;+
zG;6?I+eEt#>(=J}VctZ^#|X;p{k?6f?(@lq`{Y+nwok4^3R2s~Pn=4(Sa6?ti798%
z1!v>j-H+QVDfuRFIW+Fb*@)AFU#cQ>$9p4GX7KIX+Xg+hkAM2n<ixe`xQ20~1i%v8
zG%+Qj(}lGBIH#WQO<k>oH^+{hzNHchjyRAyD2-=`21&dJ(CvxFjFGGtFNXMUentvJ
zlF5$Sdo`VO7HmB*g=dGYZ8DaW@xVE3+L$6toKnoYsg;lt2X^P;WFqZRYbt2WQ9_zl
z7T!pexa`xOD$DYq9O9%(nsHSi>%kFB9R_)ev)N|KvbD2cIB~A7&8J;M<6c~yAc>ro
zYDpfv{8I?oJGFd<NC=0IHFBVyB1-0!!~tL6v*fj<d&)3W?D_QM&BJOt&vj||EYjSP
z{;;*LZ%O&v^drExgaSpA-=-)}yN|5kjPkro@W>myITOCKgZCI4-pny$N)A*>WOfrn
zehJtfWRS2GGqHTf`R7#k?J7LCM8kSQl0V;kwmGXugngIwT8<Qcb+9*E*K~NJ5&*uM
zd@WZno^K9=eTC`r4tr2M)2U_S3=PinwN+bN-+C0!)epiKayXucRdycw&d&TC9T;Ly
z+Da{MtjGM0VJqL@d6h4}Sw0$Z<q}I12}1ixg&b@Tv5^^@Ap;lcw7;h@>u7SBE5Zop
zHg&XY-B>~ylNZE&*p)5waq{xb$!EozaGNeBuRqU!KlyOc>WJqjCY>r)UJa48%!Zeb
z-<;~tw({mwVX#M&1AqF*@Bq+%cez=*C@}#;tYXDr)lXm=g=V1`3~+t1TK(5z&$jWu
zDxAA?FqX=zt9t>SDOfb&7TzQvm<zhJgfkPgZ@YN{afp)$#kjeWnj+O?ILi!hyZ`xg
zbM#4~c4UOBgy|f`5Ke#rv*b#S|2wy`4lI`a_=zz7M1&~j;dV7^j$4n=W(I%=y;NcX
z757(+qkfk~%6dC^pRlj)u5Qlm^1V8Z&?l=nldgQ4`}>qS@$4~wVTcALoHl(t7+jB#
zweTE`_7RD4s|Z$6-Tu~Jh=2fhxLMk2faDSI?lF4W17wCsz7Fn@P;=-83sEE~m&H>3
ztYsb0e+5^4rG9!u=X|s)%AJ=6La5~EB&VtYVX1|<90sKQh7F$K5a{1f$dW5=*&u5&
zRUMX!?zB_cGW2>zT0j~KN3?b8UJZ6O@UzRKYCpbY#}6E|X1uX~=*z>$&mQlf0+&aG
z`(9Y-E>H63t!(zOR(?tYeml()my@+L4@xA7S!{7=n&589Ny3Bp17CcKRvu2p!%G>K
zV$n1g?*{yFM3yEcgejx?@XI%y5yj_E1>i5xK*xzfVY0+s&_eLM%|qH)Osh*)OwTsk
zh<VH1n>JM7eRG#gkgPph6(NJ@I1abu)0|wu4#|4gXC(P`Z4nuGFo`zSYMkK7{tDLw
z6R$L^cQmU?3-hVA5=PGt)yyOR?gwdCc4^XLc)O)jv)<K}Z2U7@oA*7(@cn(R4w5|`
z?F7h+i>*wJaQmVW3h`D2AG^jpa~cV-F83LGVk1e6%@$rku8KpSM@kiY!u8ke=T$oK
zkVK{M>A9g}x=Tb=`ztaIL#dO<v`c-yicJ@e`pxA>H;Xb9^?vbkqPRn<D7?P>T_Bou
zu{I}U+T#LXSCA+gs-NNS!dzazG1u8|XO(;=M+{dmvg^+F*Ta@sy*PRCI=Fn&gOBU*
z=1>eMNlRNDvC9$;^SrFmjs)b4(b)Pjj%Gh{t`fi3CEX$n#H+(=iu>wkjDZvpH2}?k
zhkO^l3V-z>gf!>CC$qD6Co=ZRv2NfKd*2wxX{-?0_WYKZ$h=@vO{ULPKAwC{cc-yN
z1+Eu$p0DJGO>8w;=EWr%#~$iX)l;uuL=`Ji%NODBJzms5rft9R4r{+X_KZi9&vJ~f
zT4sU+uWINZ3GtU`q@$z5?PrSbs~o<`m08<8a9a(|m`%&0^FB0DUX!A=J^ihnCts2L
z&z3hw_-)VmV(o3hfmz?p9(I(&e||VdBLQagk(^vh9&6hp%}<=CCW)4e$HU7rJqkqz
zm)e%)DyXPO&^x$_|DS&*9+$%l^x0YgC)JIVN>blxx_dZ1AfG3nFO&2jP{HIpoNX{3
zipk83U`<r_w&B<j1m5z1JBoHhLX2%Q@I&}jOqNp?cCrU!{xM=YLUws^4-lJdvWGm0
zvF}Bw*JDhjCSdm><kApK4JWw`T?2%pyeoBMWSL9ZComs2Hg2eyQ=pLyznr>mc4nR;
zy?wUzI4Ac8UArEwf>h1MP8!}s_WKm+I^4jI&80ukx$gSoU|d6G`9#%f`!T>uCb?kq
z#pl!+&|hBS!eG)bgu@nz|M`yp#O4d|CYOm#{qx@rm?}X{`6|V@XapbrN$B9off&^L
zP;)*Zik@U+xH(roVLiUsJ5YOexAW>;B=EeqYTY!8(Go3QFHA#fa0&#zn_r;<mALp0
zEv<05h_Fy==QSrR{{EDiim51bP(N(~W|tLp_eddxa)qGj*YAjy>pql`#MxzZ352uj
zdHh=%N-yzHzW6OC{qauEx+X#r%DL6@4wzsYJLMI?fbGfbcHF@mvbzBWgU!NiM_`W_
zyIeWCwk6tJ2s_M9F-6~ffP=}7s85Y|vLzT2A<LaV&pq0Eej7&}x#!9YLhJyLRe7n$
z{eM)<D7*4=)E+G<g}gc953<+Hp~+ela@Ct4K=tg|>&f)<{f9fjwpcu5QLzaS&r`UD
z&f`Cv4Iq=ZrGiwl$r(wSmv*NQJOPKDpD@{YbA%5Ro?7L}`iL)kgfiYtmiD@wn*ELS
zp6)g}avouJ4(3PirH9IW{1U)<_)^ljs+Q=aHO~5!2}<0iJpsR%kzL6H-D89*d?;sR
z^DV+mqbM3PFgY2%fvc8yqYAbFxIbKQUjgl7x;eE^Rfi7o$FP$lUU#Rjs-#(x85-O9
z83x7m{hPb$EVD2u+nOdbe5MFcay}H`oexbLTFnX6A8C~~t>>QH-hIqAnIFHY*OJB&
z_0`^ZaD^WT-_7Sx(TMjfGTmJ*WQQCbpP|r&;QjpaQd+x>wyaCWO~);XtgQ6-SYAS6
zw>M4)a0>EZ_8KBk)fF0cEPx9l%US4^2BiI_s8=-@VpODK>}cKo12Mi+48>n*tlpy1
zzs3+ubbo2A_9~%C-YJE3Cx`di%2pYOfkmnc&`*=;FAeomuwUt09>1mNQk7=+{Vh|1
zUC`ENNC8sgHzmW?e%&COmX+Ah$y+&W#?oIm@_;b#N2j!{3{53fsf<32is&-Pm2Yuw
zTVCtGz)|c!bKN@{_t*L>M|c<Pcuz1bHZN`QwB*jsm9T_{Jqn457`JLdaHsOl!b}YI
z1Jy5kW`lx*>{C$4j7-p`-vA}4hK!y)z*UKx_DV0ovy%#&?fW#vZ+EBr2b+tgSbz`=
z9vSGTscaT++$(=p&+z)QP!rUAp;Qven*Sk?(ihK`j7{|2+R`bbe3+ea_e>u8E%(fk
zV}hP>fThf>4>W%XJ;ye4xd6PCmC1B#eZMx$_bk%@FtoK<4c6VC_rs6T9P7#6JH4(r
zuPr_1-FE-$=@UVx(1v$Ne)Z(m4<0sALlvZ7h=v<5i$b5rX$7X%)b(vQ`5Sv25UO(7
zsj}AhgALSqx=()!6ZZ9VS52f|YR1J?f;;T6rqsIx4bk_TFxix>znE-ES6Z4Xu|Md`
zVSzKt3&M>tgRIPWaC6qk`p9zV^AnW+qvWTLr#)*UAlnZ3=JWe901PLT&tnAFwvR*^
zjbo|O0E?XfQzRvoxrg~BQ4`ZCc<ZHYwk7#x2c^F~mE+O8iSiV8?oz9w5YgmLr?!R!
zE0M_?_7dEfW60iFoMKud)yIS06G9`Z+HOtRPL+UBmaAo24aoltCcv(kGxD3LqTEDF
zS~b>t3NUSXPbODzxIl^w4?=uVSKrkH+slhjafe&?z#mi<{i%GRPFWugyySDxX)v%d
zi;hYar8t&Yl(Oy+Hr8QAi+d0O$j{pcSy<RH^YFG(i&e3?N(exrYn<6+m9{vDJdn{5
z$K6W-pHOgfQ)QPt+)p&;s0@=?E3v|5aKN_F=h=X~dR9yv@Sjia{_raane^8hY!1OW
zy$b3oA|@&X)}CUy^52fwHstQc{6jq8eq+@<2Bvs%k1rpkIQ1je0ZL>rmD7v2+)|k8
zSt2QJ2paJs);0+!wD~iIV;w}OP>&I@@`H<CU!DBn5O^f>f7k#iUqN}5Pl>=M*^vd@
zwkEDH>wIglF>K@Xn&`Hw0D;Clx!EoCl!MyW%j<dCZ0?TIWo<hm=j|JKM5sk8RHUW?
zjSZNgb4h;8N%^2qLc2$On!*5bsDRj8K+PBcJc`mkz0>I<)m)W~X}7TK1m})ig)LE^
zy);!z(U}-telLRbDE)TMAIDiwxH)RfFP#pXaC(lys=F<-q28}sRLg41wGLoB?CHLc
z%<9YSjp+e+puaJ1o*q@Lyk4;<hXqoa#^g2NgA;|dKBSV-+UMy37i2)f%5eGiDS7tn
zj_f?TylN>b!$wI?{%^*7efs%5W1I^VU1L+#dKIN(;dUFPxhDZ53zmUxZ=G%5Fc2Ln
z+Un{~z$F!X8NmwC1Fx9g5SnNV@<B%}1|j*CvS+vD4$zn#7_=^G5AwBIwlN8yG1RNW
z6{K;6|K!Vz<^EO<<@(^&HQOQ21~Ke!bRwIDxjy+DZ%B?me7lZ?*HJYIj{YG3J<dcA
z>)-b(S1VcJ=7vi|YcOC|7clg+kfE=Hpq+>z4>*veT3VLgt6!0N6nE5FcG<&~!F-5l
z)+vJ38H=j+`)OjYZ{I@l3K#g-wiWEjAqe4Oq^$Jal0I}#-0Af8$JBbqmuPTIMKo(e
ze2>pZ>QaG8@Zmz?f3!InbeAg{eIrhtv)5jiZrVB3z!UD?R~)>p{D`0_6P@GnAPahk
zpt3OnC?<_?L=ze9O(MvM5Ju?+pP0UPI#uH)QOo8^$r$8^FG{1aZaTs6!4^c_uEX(l
zG+2-vwk1UvMz=-)Z+qZ`qn^s6Ym<YG*-90rX<OCBQ2{7CH!BBy`xcrjQ7p+z@hgc~
z&Sl57{J_a6&t$TCe^yDNNq^=%k`>QI4%SKBwDZW!RR@v%c%m5GOI84g!AiC2)eDFG
zS^XsawWfzVgMOB(1n%6uYb@s>3?$}9&^NOxCIdlklRcUcLcgEf{(dsig0YDsF3suh
zs2_Fh>5=)3Ir;ANcPQ~-RI6ekN|^vx90F+PY3evtz{MD8$6ke6u927D42NTk)VJ5P
z&M%*3AXrDumiks1*ofb|cLKSmhSnzB;oyU>Z|xNtdblndZ2ePO#0aG%suk&J0e++c
zQ>sBfoX)51JB26mlp4B{tH^?9>l9tf#w-Q+M5i8@`ugs#)0OGw!RzU-Gxw8tX7M-P
zU$RV>Ttk&6lLeL%N6%X0vE$2Y4OiNe_>(NP)w{~PtXI-ejiGc9AMe9m>+LZqkqlL)
z*?W|?ANN1mCCQvqUu+#m=wR(&s@n1T?#8Avu$e%PNBB|J_<rox?k(XgmsfSP2;N$b
z#qj-xaVC(sSTkzQMe-Qz%&^f;CCV3VK93M-{9dZ=mHMz`8PQTkc3Twe8BnTyS{10Z
zWRcb220exF>&~6}dt2G>D!3?f_0v810=$%<<A*tfnQMqCVD$1fjo?&XEf2pN3*UZ2
zEie`$6<1^1v_+#>EYF`mrx??wjz6o7*&w9^(3XOJgRBUzl4P4r_b0RUysdOZ@-;OV
zg?7u0vPBp=z0K|zPi+1J-UM6W#mk-T2IE~fTqPNnz=QprjZqh2w&j$5_m3pG9@>I{
z<R<)v73yvaNR&6ffX%0wrBn9WZ>J|`+S;k?(N@KjEUx+ux|WC=2b22{$xy3Qf7Rr|
zMis7y@_3a51iB|4B{$$cO42z4JpR+<At@$K9(Btjk7SeS>sLlaii;d%n<NN+g_w34
zm*_)1vT&{<jQ%wF=XtVe>l3-%aPNJ+b4$Oqy7;mOeF!}iBNUBLM@{FHW(^Kjg+$LN
zASXLTZeVj^H!WP8n|AkvlNjnJ+w+f>>){;+#+!U30dsbXsSo@0z1`%_GDPjWXVdMA
zmffQWI9G1Y&0nVXsXl0{9V(n1+oYd#gUWB)<9s}7#zwRth{?O3AHRGH<p24xW-FiY
zT$+PSN5u=0!`}?Fjl3ggxG|GfPgk}W96pl^nQU~CeX$n}2gH1{zFYAy&S2b?{EMC8
ztWVwz!+IJN@apd3>^2212C-D7#Gg&K_GZ6^#*z-+747M*I9h?Ee&FzsQaypK$T4AH
zC(NH%^arpc5R%BvXNU&^rM??lxtA*;7nro0nn0D=xLNryCEFwg9e%Mi4ZafA#b#+D
zsFFkhbgcj+-y)sCuJ4%I;j@X0SK{vR$>)!k>4K=RL??jIbxf<2*WMTS_bYvZ_Ig>$
z@gMYZ5v_7@%m&CTebm!S+lls-ML0~K5T*53Zh<@%sZ~J}(yqE!DyCGD=8c^;Rx-kd
z`OFuxjT6bMDn?*?^RWGumaUVj33GQXul>e|=R*+|NSggW{U5b)Y@Y$-N=w-mIy7C)
z!|<p<OzeGNU#+A_>Qy5DA6baqB9Z9*oeb$vFw$G>!{n<*_BBc}`ztZks@avDruAU!
z0(Ny$f++Ejv1-w>`e0x#b?Ot(wC_lnuh-U}t()waP3F>bH;turPN`-oqYEGtF56g-
zknfz{qm--E74VC%Q@r5`pYt3Yg^x&=eQ`mKL84N3X|;E@@HvPMCVULSF*fLFOf47h
z%>OW}Ae14~FGLFsgLe?fBCVhCDZG4|ZXC5%YhFa;Cw=7$PK#xxtZD+Q@+jY5UJbY6
ze+V?iGA&P~`n-f!pxf8LG-%8+=f8%Njz`mX4uAZb+D`6`ue8OY<bk%2Vm$&F=^A+@
zOfP#s#JYDt4b^4yN1*siv7hcnhFXGm66%}Z21r}G92^fuV}l~UUVA-bR*$$ggGNAR
ziJ-rq=QX@=Ay&D>QhIx*^dB*%ohq%4>Qqq>?<%P<17?io%ppr8$!?cUFz%mK3hPDh
zwbBI0zMDsC`i}#>LCTXVopHp~XO>}G9;_Uuy!I>+?<M)3>Ei-YOS;r5xF;&z<0apw
zO8*}67W$nb1$L$k{ySEYU}wVBhtD%Ja0r~rL`8>^K%Flky|b4H-QVK?8^bpL`KDqS
zaRuzxU;-GIUlv$hZcXMeA2d>GXujg{JF|iZ|LomF5C<HCOUA`N{M+H+X_}mHJQlAp
z#={5IEWt>;BzB)rN|UlbaOOg}09?Qq_z3pN$xWi_Re{5UgiTn|A?p|nc2)XlrM=z)
zPb=L}v6kM5uCO_VXjtqmZ!-0_KF|AV@y6LETk39F;7N;Z5>0K<9x_ET^=XEj0f?ko
zn${#@z^dWMu<DlWUcAqxP;+0-!SZ)j;5w@(zn#Vb#N*w{sX~Qj>Q~gEFpY=+9>?4H
zA1gyu({_w=VUi;r)Lr^(W~y7GYQ=A@B>0u}w+2tcij9icbvH_7#c$R53`UvNa1!jZ
z$^04sE2dun{N!fXlwARfgyJw9zj?nj|Ab5P5KI(Up#r%#7>xXR{Q%VcdJxi`ogrXH
z-UpcZ>_~nJk?!bo)gEQ^rXPpJTVZMN)+*9BRCfD8CDR{R*S~|))<38gwKjde9*(Qg
z$Kn(ud>KRRn&lq{G}l|{MK7d7R=S-wXrbt;S_Y357>QR$8>f8z=%k0E&=0G-W#5oy
zA2pnNqdmGu2r_DPz<ekqIJRRmDYuR<5Bk^1QTU6msZNIavtQS?)(>9nJ%2u!If68a
zyZ*Wcr|T0hOOZlNST|Gm_7*cRmB`1+>JQDu{v(j91t|g#=>fV{=lyVVcp-1CtyE<N
zl9VT>?|?k4mejg>5NB(XL3DpOsR~Qpi{(cf@M2O~5-2R}krS9;PdA@Ju9XgeY@7m<
zZCeY=HI!|5Ck_Uocy>>LIM7WdvVbU%piN~|GEPDb9a_X|Z^Py}(n2-ndkgj}j@xUZ
zQhgD4^K<<wEQJLvbiMq8Weldg=3tzrAauM<8mR$Yi&8uy**qA@kMFgWFxSetq;^P2
zR<049u{X<3%DCN$LTX{s>#I&&Or9!)sNrUdf@A>$NuAzf>EW{VDNvyWn_+ssq6Uzd
z#a-G>Xv(wsMksTB=N~MgEYfIS+#3L{qcG+4Sl*xBjf2nga3|~YS-SkEfN0P6UnDaG
zJT-EzR&_9kkHnLeUxbO5;SC((HeE?A-`52pHQfrGmh9BOiC?w87OUjpsdcBGySUPF
z7tPuO5Ni!o1%}RgyA`q=ba48HzE3>a`1a$-#CuCW6$*n9a%AG0ZO}~--w<YViXp5Q
z=~#RW02ZDaPo7t%4}80U&Be^J*?9zk!gP*g+pg+yQn8Hl(a5kjeq!FdN^+9sQSCWN
z<|W6g>Cfw5z3%~QdSh}he@lg|o&&spzwF^dtP@mY=@P3NlYX2uGxmP??~pFxm7FAJ
zK<2{y9ei*QPOt5}!Q}DZP6hT3nC2o0y;MRPXAG84w~zQ)DId9VxEnLVR)tPEsfa2u
z-PCGIAWX}bcB?8@cAohsQ|Gml)AcNneH<$=S$lEF6-_nTC~EOKUpZr`#b3it`=mNV
z?Z#$F5wDAzbXHw9#(S89;gbE5ij-0Qi&URwe4~nq4W$@eQ(iO>mtXf=GMSok8cv`l
z_nj?J(fC27J0+Yf$Wk=xl>(AT$vtzj>s<ap%B(#+i_7vNF$vqri`f)uv%B+Bb?nu>
zb?r)_6rX9FqqB<?4WD0B3!6b|hs_o&@A&E+c4P}yWqN*OXN8>;ENBN5ee}h{$9Z0|
zd7+e0vfxtb<z&kLWO04{a*LH*SuZvTb!h3Bgr~I+pc#-y2hhe>KBMKXuc{S!eB^lX
zhw^p;1F)zNpCR)}q!|a&{kn7kCHb712UTV>k%DHEs!qG)=Vz0wE9!spz6z>&QTd96
z01O(+X4crsMp}6!1fiyERfhW{%!W}rRu*1Kg?6g=AunyX2jd8t!wM1;4DSr>G{Ja;
zk^7Y)zU6!x<FEtj>hv{QDIyM+@LbqCOQY}yTYhKTamhWp@2{lnlgZ2dwd`1Bm|9gg
zm#g*8h+18LDc#D>4eH0icsrL<(n_W;lYqEpl#O0)4%e_lfN$_Bv<qfO7Kh)^YJSe9
z|6Mk|B>{<hEI99TqL8?=cOy#|o~7(3Lugk%-EdFwetuMT+h^j$COfZcah>x>iG69*
z@oz-h8kWhr0Bl}7nzZK678+N}_Ov=7szyRP1Z*L<Hs2^asT{@g9@%a-J@WA6+1~6h
z4K??61RS@fYnwj{9=cn|x_5vdJR(Rv5seVX<nr=XjmtNxV5MkyM;lBqt#@1eRSijt
zIC(N_h#5P{6(Iv+bq3;@o&5gcE+bTl{JY7AdCU`C6HnznzQgdi`J5tjSvCbLSmS;O
z{R83Je@>$IAzo<M>GEjJdqwyHw3CpI=^B&fWbO`llB5lL3?;!&5AKYSI`9pP{+lJW
zdt~GNtGWQi?X?ZXlN<lsm|=TnY{tOMi45YS;PKrXl~HXhw+<zjz+RnhV|sj{W(8gC
z#I+ZG|K37Djw~}D7wyWCPjW%!q9S0l2H*?OB$}(K-q>EkFK5&!SV74#J{QC+DQ1@|
zy8o1I_*t+*#@eMue}=?MrBO>PMJG372!qlFB)!!EEZR7oEn;gd9g|?q+ET&7w9+fg
zW<;=t{4PRyjLJ>}_9F24Y%CGv-;2_o5NY*#%218bWv?!9%wb4BTF${^66<NL)Y~m0
z5g$tbJ|QAiScKy^76zB5PA4BPSF{4VXY?n+*~Zx7wS4Hx3-E5efWg1o0g>Tfi2xr}
z9^?BA;$J<<i@uuQ+((_Ayj6*@S9++<z|WCU2Ro>ymJ>%B#_HI?QoTQ$Y)YGHzdybF
z*prgfdk{nKZuj0_xZP>CgYTCRZ8+g_o3jD6Y=Ch!N|t_9Us4`jBEQNWT7MJOHXwf|
zibr3dD){Bi<FT7N?}U-?on4AMSflp|W94A1aQP-?%Mb{kthcrWdQLl+_ZQ)ZS?e(r
zH{K)IkgQ)FU$Q|3L(l-G>l?UHe??WZqaRS!*wVbvSEXcI+6xUsOjnRliN5M|M@SCm
zCLw_Ir9a9Oy!Wu>!uhPD5emlO^pvb!J5kjx{1at%=faiOcSjdm<xU`BGD_2kChsn8
zIOH9x=|titLCZEj?@y4#NX!WmTO#@5I5A9SMFN9nn|~<Em_$Xc)#us`7u`W6O=5k;
zk8^B003hLxaz|vJ3BFxluAoTFk1y_{QcG+Pa=YdgUpV-rDvuoj36ZJ2Ii!;bzZoJ~
zAp>M3^lKe_<;8a937Ie9UF|pC1@;{{#*XtUl|I!X%?I%*VSa?h%h`@D1W||lZ!`Tj
z>o3Z8(jkAfC&bw1*Vp%-SOOS8jmg;9vnhg;!_4ALI%X2DlA-w<nE6xZSx~kujH~`Z
z`)!RNnx$3p#RK_v^5MTem4O^UFqoG<AuTXw_a=Oe30OHD$W>K`n@PU}3{9uWWz2@6
zCX!zx>g8x!9W3NjV>Rw@n_R>-NE9NJDa1T^BsW;Ncp5st^_~N9j9uu#P~Nro>HD*)
zL@~*7```14@<pkUI(DMUEk!osfX<fLGDXigi)#pg6^q?cH~`tU@7O1ZV&6|-oay$|
z+E#cT^Rh%J-~DVbMLpbcSskW3<=R@wHL2@@Ry#Vx*&_<je#D<YIE_kka|UIC?>cV-
zR(H1Q!|)Q)mU0w`5y+6vm$QI9_S27y#$>{9iF;O|7j04E25%W62^L!L`R^?A`J_dP
z{Q4)Q1PRk?0TwR%tKGrNss}$6_I{?cT|IAzX15oTMZj$qv*8dn&e}LZPYH*exjsUS
zzK2^bnSjH<N`2fUZL^x!2tf>6KLxD9nwVVPUJXJeGXwI2G&8dzOKpta#dZ7{i=iE-
zgvnXV#arHTR&Cg2E|ke&B3rKyq^po;p^^na>Y!+rSV(RkwDb@5Ps>IIAd&`a?AdKK
z0tMR=B|A^n8a>_<|5R|t&bYi5OrxU=@C_3RTyuB|?&l5-VN>ZiW!kWi=Sl`*9Y2Gg
zbE-$%q=Cu`nPz1!e<yGvGred57C*)l-;L!M;DFI|W&<TlXhJW26j2lP-v*xh&+fOA
zcaIynq!(0*xyEGuf!ZMbPRo)V=4$By=n3>1YF$BP2@p+}(yA7Ym~{~bs(nq;oZp~r
zyjwCwo=9nH7S;;NXOl}Z1>i;OI*~zb18SpT2Tfk-_E;NjfRN)*x7=RW;3WVYmuXVn
zd>O7@DW_*N%^ms?x8&u^6Y8C}j938U1+|)t&{pJgfUrXi0)XAVr|Kn!ua>CA9u#gk
zz{2Sbej2F-#KqdayS_J1c5(b8?V0L>mJ{#_m&AP}{yq#PR;GZ2--JLyW0L8wiDfo)
zZglcX>L_smT98{TTSgZr5f+lca@X@mtcOl=(@RJ=WGiVh(VAaqN-1IH-x;uvJ_Y63
z!j`eyF#4JHHLnUu^0{6>x2ui~4`WocX^Umo+hHNC#U)`!jpaYmznFC;f$N$@ia7A*
z1}!$|0xNAlNYQxyN#=(%v|9Cq+ShiJ<=BJ7$}xf+eQ{6|L=3OxfC8hMYrKl<2nF%y
zyaVmulNQ)Mc^y^PeXAlpVOVjLo~TO~I-CALpRzT|Ac%+iBmhdAef#&g?@$SSJ<ESA
z8tIi9P~t~qA8j8xTC^*FZ*r1oKZij^c%*lV?;jB&*FFW2a7od!PUbmn-eMGViV!&Z
zz|5qTS4gr07I-xUJzU-$52R}}%-|fuP8IEj{q~YyQ=-2>kcAiV^{6XGbai2`|2>2K
zCY9ROP1F?(=)8#*CR#A)^6HbUft#TJ8zYV$uISOQ>#(2+kkxgu^Yq+W&?LTarZFH1
zyB$fw<WwYK+PDojLH5bXYHgCTotNPObpVZTdVY2KKi!<E0NykV!WLkW^xCn!S16sj
zbTgA`8GcCVtZ9RVy8oIEzN&8=&O?(PWkjzO&kFb{K>ENK5-UoIK%6kjYLvU~k&w`!
zzXB)CRICUPma2&oE7lKp_ns||@{mi9OY<Ok5q3z`{%@~_oPrnDA=&RJ9Io#W7(6?T
z@SnU!w5Mj0*&fs?p|P+_^vNuvx0uX5IgC$i)nd{fLWSlrR{Vln$G-TDpM4yv;OFDm
z;i*P_>CcZ0M306|3~gKzDd2U8yr(?m$sZ9oleI>2#CHMk)#o<$g0j|S75J6Vv!?H9
zPbV4!WWn9N8MX!Y0i*W4g=*Hr{&^vt_NFrtsHz2T_7K6Wjw6u)DFRC;9v<d1$EhTl
zx{?o=uT5^Ne&WDi!I$TsiKUjemB9C63a(((zf;+~l0Y(;D)aMG#R&gmLO2e;?Qi~;
zVb~*MsTRH{i6T&PX)!jp3U@@Lap*$IXP)u)c}D|6N!d$->e0j8NM|+3M_{G%>X{^F
zyTD@-pClE}HQ=k1xYASs={bA*_PM&1I`Z;I24MrTO9!p#mr>g!Z-o6!KjQy3lOn!L
zx8{A+?~vphhvMuW_7lw}?rZ>%xJnd-yRrJb*}Q66ca2aAvn`Vf9Z=^#x^j!}Xub?M
z9I&+jd0oAlk{0sM%UE#LfnH20%KP)2$K`4r^7v~!Mmm~CZpRjOGP|&wr;-d7xNwL<
z0&_|b*2aeb>LB2KHm^6zHw`IHVidu_B#~TDEHJx-1*m`4;=#*j!4w&*>1?ML`1mVc
zlAz}66ILNAYM-n?11e8k!n=wN(j0mfT)12b*Ig*`@_{*NPL^79|Cp%w&e0YajE)+`
zlz%V$`ZT|+yCwUhRb`e`-^f%siW%|u1&(LCEbQU_D~_cA{x-tVxk>NXg+~pw#g>23
zxt@c{kvs;*(#C+W9nR_#R1QH?MPHjOleI2#>JU_z1x<`%jb+!y#!Rp5-Z2MgWMJ;>
zZJT6Q>B8))+2${$;5E9S-DN&FM`aaJ8=g8_U7amWOnpPj$7fOKj{%UZE>h9`Qq0hK
zk=c!HP!~#^KoVVNIxG8!783)CTbgS_8Ba_URMhXOS;hZaT*ocaT=e83nD>ihJDuBU
zc_$s`<9{xBzusz)RN2J6A{@=f87{ZzOXA~*Rktm`Z3aL!2WtLD2>cx`Z(qy!AW44#
zS(O{zKFo@7&!nMVRy1m1%ClZ@tYSLBBQ`nD?`zRS9Lv7}ZJLIMz+m}7T}nU5)Wg<c
z^{mU;JZ9cBOC4J$z4MYWWb^6r`1mCA0<;f{V%t8c$cu@1HV0rARf!mU3dsGpH5g?s
zWAjgG3(VDFi-1o6U+dxs5vfVkrlakQ^%;U@Usk0u$=u`PYE9k^ZUx&oC;N|cJK?K@
zY~p9#1)?t#tKaJfo8)ylJ6%xbRV2nx)wBO|E6ii{+m?FpLs(GEQ{`f2$rHLhSNbSF
z{Dx#m^+xVO<|ck+WB0J5@5`NSgHD747?*%#p!6Q^WD&g!qU=sO&RE^U1YtwwZEs36
zlWV+&>-!C{6^qz7h+;^~#|op5k6raW+YkK={86tTeC$su8z%2eCLv(*_13d0V-->*
zvTZ9Cv|q)b4`VtuN?*4F*xa^Kdx@|bJ4(=aTI_LQp|TN_^kf?s)<hd5g?%<pJ2bX|
zUBc6jn>6#*9AW}q!uM6()h5WoJ)HmkZ0;WrB7LgNvG61r80mDU;7=&oUz(xnq=-n5
zbMR%*ZP!_0O2sA1<nwkze&z&y|MCl0MlK=)C2(8dE5eX2zkVa=<9FgV1(9E0-p8Ri
zy8N*6>)n8dc<oA^Nz*szOgoF5K5r34S6S%9@6H@)^0H@N#bj$e3_`P{iNIbwwB0$p
zWqO&BCV}CBH{BzHE!~O8a5<Ofmbo>E@>VN2hrkVRm|<RV%{m+3#my7X;U1TqGnuC`
z)hE0A+_;ysi{fMxC6xD?=2m1)tK?k1@Tfm_H?ppH#6hPxzA9**UaahWOi0mLL?KxC
zIv%}xiX@L$nV?kM<eQ{Y4FjM4Ibf1E&^^4>^wn8>yH{+hf*=n|u@85dFYa;^gec_1
zE!-;2SN=SncKTW&WE+bu7BFKy)`*>qdR~<yk*@{JT4XEXt%1xOUXS)E9LeA2?-a;r
zy-c8=;)s`3l{4l>ljpXFJ{XhdvzNFPr|$-raE)_NYR5uhMaDiaC{`%h<ivM2lyZEe
zu?z%&C4|SE7Nn7Bmj8L3WegXk)lFZld6$0HZIK_RCCAF<FPY*WO)^Q}={@;XCnd*B
zDD$^RuqL7^5B6H8U=4UrZuV5WK7K!6uPo4Z5=g_Kg_p9LR^APDx24e7H9%dYf)B|M
z5KGT=J#J$Xs?5gS+TUWd=){M1%?NP#F0Uy4I8i3ez@HyY&UpeljG{(1SKD`-e@~3*
z_BUrv=KlWkGFhZ0N@>lB+}e_%8%RhQw5Dm_lD%!pv$V}>i#dB%tlMA~jD2~fE!1#P
z2RS_O&+`mMBYR$3RNL<*P&oy{tE5C(S|=+@Z3NmPT*l^+o`oV&3y&UW${McTmM-5v
zB~kg6FhdAbYbRU6B~6+Q(T2IcTRF03WkO+V+h+TaB=D3?J8YT-st|cGQ0D5?Gc_ig
zm+5`C-`khqNd-oT>UwZ|mzVxupH`LS>^=G}#%D>`a7~t);BwlTy_3Czjjb1(I}r$+
zW4thr8ZKNihO_@f57ko4jIKP8J?4hgL}eg&<{~Q}`Ekb*>#?wo`8VRp-X8<Q5w2<G
zrnFetFeO5E;ZM{Y;K6ZP1vWPK`>;#d`62ueX7HQ(FDxV#@0g+_0Ein+d$OSja*E%N
zSi9}`Ok4Lb3pxt9S=B-GB53=XSV_n{8?f9?PKreCG!gBPOuZK56%*;@))a9RI-QW=
zi^Ky$7ub}gs#rr~#ffAyt0<R*SgJ;YROqCyd|$chC>lp`PK{^$y<gTd0_y|;gL@7p
zC)d%NzM=DmAi@JYo^BKxjD&wngVk-QQm-5r;g9kG?Dnqv(vbY=xTbv}Z7185Njv%4
z3>3bFp^B;8_sGA!jLG(Ce)T|U4G}J*U|4+A2djgeeYOJ|elt0I<ygXZ)gA4hLtjkW
z_LQ3>4tYB+AZ{rQXldz-Md^(vq?gDJ;U%N?dVUqyp93rIYn3(5GW;@$M{n!<r?3lA
zddga$u}MI**%(G2Z&zxLny2|K(|<DkBQeJ@V%&$Q=BJ_98`^O37@B#-&Q2F1%6a8x
zkw8sCJRRae{yQf}n#bBCkA0S^EUi}(|KAf)c}#UdXPq5tU&h#*-QyVYcKeQ&|ET)v
z-s)zY>OL@WEH94!U8Lh~6Se~YSB3TM-5z=C*_0Ftd*eG@JbnUyX|XxL!Ts+1C-3-T
zp5}$H@3cwzlVRuhvBb;Ao_xJTNnUVM<<1eH@k;;)H**YuXVeMhd3?Kq4%G8t6YZ{6
zXK#{Waq~W3PrjyZvk4Q|l%scf^jW-U-1=WssW8|?o$^B_=}<WF;N(NFzSCp3ffL(?
zJL`uB%&j@U47(WcJVc(jTDJPm#%8~yP2HwKZq=I|DPp}5mTvCtDHtp<Qb$!q2c|aH
zA!Ur|m!xIoPl*-X6-gcV7W6H~C`ugbe(&As`Nw;M*qIaD*P+?k>z>8TsV02UvrrQo
z>Lr486F@D^YbWZ2E)27%AS->_0H-}$qTI<rUiJNx^37or{83ce@&!`hy}`4ef;;rj
zoP*Rcy}s@d&StY`pNQNU^*XMSC~gHLtNfeLih19p+{I|b(x;DXhXyr<SY%NzrJSWi
zYZc=EvKqe#PF5|^XufP^iN($2bblk~KNVk&^0ZHOXY<e}yBj;*A^R2}0ZOyAB6r*3
z6uN(Va@OkXkM3Ro)xGNz70a^~nK6T(oM%aDNT~JxGtXrS!x^NVgXJoytCyMWq$Wg(
z$$Z_XP1#X?Ko#J#c!eI!-?-VsKtD4athsh_JU<EtP(h_>TVhk&hp)!{8R=V#n$%4`
zQ=l)C$CX&}5yqGO+}!Dy#S5cAw9m)ZBd%=OC&s#93p|Q&S^OzZHQtUQ>taO3Ksh@P
zNUwjzH)62-`<5z$Mt3-G7b$Kv^8u;XUz#XXX;asx`Ul=+VpAuOKz2n9S1Aw$F~{QB
z9OO`v8soJ2EH`Z`s`jlR#TZJ`PnF;>g$}1V;cX}fa_HIaAPf<k;?*HWq12tgnh|sf
z^4+8wL{|OBG_M;Fg|*bMyGcsvAZ*q0Oqk%!waQ#4*DJ5p>=_YwtR)JY_mYsx7xlOR
z46P`{bo-D_xVVdc9vu8U*9C=MS&+-$`5MInxVs8BBb$aOb3V4k?(GkS_hLneAB=c#
z`adbMpuflZyU6b)hkP&59WajF4CA&Y*F;=y8Gdj1)ZcxdMu1;8qpq3B!9+_Gvl?6^
zND>@4#`(qN{mC8v$g(NI@?~af`6qYg6^B&<^Zh({ZN=E%Ew}2t7jy>;5q)~^wM1j|
z=1g1T8cjDQdjO)P-pVG*8U^p@1q>KD&Iu)&EbzHwXC=JH^#@Y*vs#ygTS9T65?tgx
z|M3lDQnQxSS;~5zwb0oT0ohgft^(zotG{$v*8nRHO@WW)GCWfV@bb+aEMUpw3r#SM
zbV+ENb^rad@vrh-o8u{cyf*9L<ClG1E<nbo?@4c$?6+SO=*T)uW_!QBtT>70&FXTj
zKZ9t{*?!ARNNo!$^eFbj@|qx*@~jfI(%aiHoXOjaRE`Uhr>dVJ7PY><CHNMLJpB>y
zt(ZtuT3(0d4G&FB;^GE0Pz-(Ulx^UZ)g2R6uhEAW@OrxcWH=)*iio{=t84R2HxvE@
ztS#Hn5wuZbZHtH;oeR{~hk?jdOrUDG+y9;6DZ|1riZ4$g>4aeKZS732RfTLnVC5!-
z{>18cFqp9D%8^YL_qh&Amvm^tH|W19=1{G@1?EPIFtisRi|KiIaB^r~x9hx-#Vv*&
z(5Vzad6ixud>_e!mz3-D)ogrgU$DFZXa#SUPHqvI%m+q_6uAdtxbAt~$T)3ggyObe
zZtZPu4*{W}yh)b<Dif10?TuiqU3W|$_hn#pb%2aVat5);JC^e<E&vV2Wh^;X4@*^i
z?Igb3GU0KoL7uT^h{bHOHW>l`esL<59!h-FJ|66iHuMTeAA9DU+U_XpULi|eN_U-#
z(`%}Sv(Q*7G0Kjeoi5DmTl~8gB(1q`GEPajNUPJ^4`N9Oo!N(}l--3wDj7F4{N#pA
zxKa!$7Ud8^f26AL{}sG}xkC=d&N%Lc*TTELI9B7Lg1SiWl<*5Ce#ML*ep$T)Hr~P;
za$q=YL^4ZUhk*60ZHHz66rY%i+P5oJ5NXun?yy6Fd9=PZvSHkW6G!T3&K~N$MxLZ;
zmRkznwdn_|2oi4HUCnP-cxI;`R@TmK?#S>ozzFkzJ$7-^N}x43*iKQbXLX1BJ7yJ*
zbESsxWNo(3qdIyVzNqS3?v;Yup-o7)Ax19=@vF(^A5Quq28*cndYGXC$7IPEkZe%(
zTKo#uwgoCnN#NxElW1q;q8mBEH8sSE>jY9b+=KZ%^HQMCZZ79=Klwgs5_?DT0YeFE
zTtT0~lQ&M^&DW&*j2ic+)K)`d@Th@7(KcG#C!%utdUJP}R-6jv+~01OXjZODFi;|P
zVq_>Kw)HUOsWlw93&eo;ej~SPl@cm_!f{Y5_B}(RGa-casfo?srg6(22;rFF-%oy3
zQ@A^3i;_~Eby3V>xa76!q+h<p6O9%4v`mdkFhTRqp>E}T;!8nX7ga5)qE^*wv4&$F
zRqNAX7^#nTj+PKUa+{;by~dhkXrJCe^CoYJqe~8w^hcfwE^;zau47f2JTpbnvL7lk
z`8b5`q0Y}!kjy?cVG%^m$Lu#xFjMiyGtG<7LmRL?RXgg@n&-deK)F1&M&#|Q!_|o^
zzP@S(UjcYM@sFa5Hf~@=LVgdVsy^6E<A!wQi>|l6UfU^ngQ>yvPM*s&%Ed!*hCmNn
zt3^I~<JmsbC~=UpC8};x-GV`O8o@Ep6U#slf=h-c7TNsxILk9QWo1|Aolr+oo`yj~
zmyW)y(!)bSa!L=AckfSFweL^w68-B5MmJKCa|<M2(p%l5vBEBPO5dn{Ep)#rN9E>r
zVNsSYEJ2Vh&Rr`gtvgJ*b0EBJDM<72@;x`>=Bt#lEO;y{P0l(ef9mAkeU}he{_0B>
zg({fE?u<FcZ@ig2|F5iUDlMg?QHVFsPUr6~0?@Dth7H6k;E?^<Q6E8=&W%<OgpApj
zCt2(&VXT6kaZ|pZ%r=>hWec=SqXx5;?1dO|hGPm<BC*wvDgb@jJ#6tas9UXFH}Y+D
zHq}}{_t8;G5|G5P%e#+NV#ZOGL%Ww*cc)}B8`k63kI~9W?!zyIKpLd{JeBD8dT;yr
zY>QChA8;WOLx0y2-ehiyClEuKlOPpUeRdurk3<BWOMqHq`iaY?LoMa7z4vN;ck}1z
zpyeHM5^l>RKiWM}?<ui7+0#d7H0ENaBm4i=UYhL5#UTI>lHqjusUDj;V=a`>ie0kI
z8H1UKI+qNp7fJMIS+&cp@rU>qYB5xO$M$J;O}bO*4)!a>>7@LVT9=Gi)Dy;!Q(8>S
zB~_3e-f#P~(oHK)b`#e9KW7gom`aI6CJ#xsvV3qtS)9io_<=$cb%-a;8dF6b4Y*RI
zjMRqg^>NM|3y*`2QG$^lA<T&ff|>nGGQ`^a{OIoda-wEX`g@^2&zj!!7EIL*^}3`J
zj5zbKwdFd(EKb!02Hq6^-rZ5REAa^<1Nu@DZz_T6^t_U1#rWKCmi)gJ#w12T>BVnT
zQy#Yd8AGFl1f2RJLGC5V3O;gCQ^J^hr11a}eIX_L@G6ug&FKEjd@W0!^?A8Z12dwf
ztUr+)`-BBpy`@f)i?h3T@a*A^%^a#P4qM%)JUAtNrIUJsLr~nEuB=@O_znKqDq?^h
zFOCy&87Gl0ZCwwNGD^cnG=56u9LI!L;mReYqOxgdhORkkF?at+>5g&l(?)1?wg!1D
z@*FoXLon9(J#Nj(1d}9YKc0Km5Lb1qlxgeVC630dTX~6pyqHFOCq8CQaQ8BsnKxpe
znHObQrBp(L=f`2fFF)j_<gYX~v_xtahHWkaymb|;WJVHY%qaeMO(_}0UppjGd-R9`
zND+{$IUj9lUP6f@J`PVmu%?(|-muolVgg4)XleLi!D^`)?BS)`Skz4F^;ZYK_P=$`
za_-oIw{5yOWreo59W|4}nX}FHo%P*W8z2+x2VV&ZQtG`BX~HW#tQkE$B242pU3RU%
zUOiafjh;tYW8`XV$Sh?i_hb}S>3otZ(?gHV8i$w(cJQm3+{Fx^%}*z1Ekq-R9%pFX
zTogo|^5wfi(dRDV++56+CQh8n-4NSo_aWqVX;(1^gXUxBn08W0B30aD9B<_>4Mk;Q
z^2R?mA78cMBod-Q>vgdN3r1LMS@-Ajy-qr)@3+qH;&1<{cys7=h*W*Do3sc7R{^N9
z&9EANQY17iy@accz|8cW<JWw;cmmz{xcLGkV4jTk-t;m_huKSAlxAmn3p<4YqLzTx
zWTJRu-muRJ8_69=uS=%uX#Q23w1B)s$@#Ftob={lJNXv%b0$9C-X{xN=RcKrKP3d6
zYC8onSg&ALP@o+67Ps>m`>=9(9&SeFW}cR97Tpwcck~VVlt9AZ6MH+e{ps3z%~R>y
zR{6(``Dxm~y9EKeaC9ftW}ult6++o%Kb7(-RZxzy@Sok+@L;Lf4UZtUSsxoGiYuR8
z?x@=HD&AI}BMX<onGgqIQ3;>~6U~!QFW~Q4t`qU0kkYtn3FinSzuklXvw8S}WJo?-
zDTBSY>VXq+h3^w?+@J`Wjl0kZ2W>D;Nn<+U`BC-zo?KR{)StM2yx7mglIlA>&F$Wu
z;)&d+#e+Q1(Fhe3((zY-=H`=O*dP@y_*d30s*m6pr|Rmx<l?5_nQxPm|G6trv}+5!
zscUL0en_qJT#|(`{s2TfJ)CYF?7h^9a45sOV0-q3E~%8tIRFt<@2E=W)_yZxG=I&Y
z%BD!~iPz(6Fsgj03Lk&waJnnArUeUq0^f`~nDi$S$mNdetBVsxf0YY`m<U3&9}6}H
z%U;F9eD&Mw$$w9#v(<KA<>VW+V3+oyo-zXUW{jYSTV)80F@(0&JlgkZ#&&;;BfL1P
z<X-0lEVu;j2P|Ns6K~NoSE(<Yc0O(p&u+}#eTrMeWBYhMf8)yrJW$&|(oZkuw+Yfs
zUVZ>=su@F_r5r(%>3CgiX5dS#IidYvdYNU2&7uAvkQ{T^2QJIk!cL(^5szP-QU(=a
zi|bxD&`E=i(7X07{b^f>OI^qSBULFOMo@eQM=}=k&0FmrKk-h53?+Ncqa&33gR+qz
zp%=A^vy+U@7)ao8zr#06KE^k(7na8G6W_1^$1(-VgY<K_I@f+jJZ=csUzC<D07Ejm
zdcCB~==3g0&1!vxq}@Zm$um+Srt87(f`5w*W;z8xFOS#oE;?BN&c{T35Q`a<P~_S8
zO=aAr{C|nNShHrCXSGO(FRMZdsqz3xO6y^ggS*Un6<CKnFlS^%lCDRrwE;eHOdCO&
zr!!#ErM(U`14Jx#16^+g*|xt@Mm1Gj`?{IN{=<j#kjb{?4#t0(pFXkC+O}1M80lyB
zQ8D<_YvMKy8EyrCQV}|ptpe65WdKwgM88j^nLO9PN?|6FdqbtiApw9r8!)}1eGTlV
zdf&v<sQfPo=<%b<T8~I%4CNs*ddYxR457_eKlH3{MqRlI5guXBp_~07fRX>W)p(x7
zme^uom(Wlff)+j3!hPSS*vt9{qPNd3uB;b$X4;*-230hH*(P5ID(t;ajLEAMjm<7b
zk;S?*g~8u2kEr;|d$gdoXp1mVvUPSg52mv{)sY_}QDSU_kHpjDymJgltfA=7!tht>
z=<4+7v9WrnD5r@D20u$ECwqH-;qy@YRRp`t%QoC#alYI&{D_$51F3qn2mFr7Nyr_g
zU}xs1ZibDGPu1I2_xTv1P?qbs-G^u*zwJRK9xi9%8{=tMVSr)MJ~$11=dX#9p0meV
z;#YeY0A1NSz?=2PdRPfPB^0QEG}IPGq8ev~XnlEca_g|<=e8UBZYv?;h|4lKZU$q%
zDKlLr(SxP5ob;Eg*12pa@d7oCMZy`*3z->ex>lVJ7SA39i%$?P11^B;6tDYD9ZF=E
z03fl$l<hb<h66`24Tkxmzm+R^+Izd}zaV*yn=Lj3B4iRF2S;9N@^P2R3G+Yj{)ZH&
z^tni{z~ATRPW{apKCT<7?PQBaGlCm_lgle(lBykV{H(<yU?uFn8s;w%W&_oz>eNJ{
z@ZsjX-nTd$?<cJq(QQSEl&}1bpqoqbF#lnO*`_UZerO60%VWl53-WcwZyQnvLrH#A
zd^=O5vb#RbL|^t&SLav|Ox*Lv%n@&3o3Ea$$r791pjtd@$<o^1-p>U75SWA;AaAP_
z-JcEc7&CV`^%e5|8_|WzQAOoShgU#~vAF&0Fl&jS-0by#f!wQp8A}+%#+8$waQVqh
zYhQ6Jky-q6e#ATNy}a9oayO#JOrTOm5uqn~hMpM0X9qt2bW=@UhNId!aneMp@5kJa
zcmtz*uv}yE<(9<L=X(b`S$Z8qzg6^cj)*rXpytW)sISOMZ^y|j?_n@go9TddPyfj#
zI?5nz`iKN1YXQ8-3HJ5=X0r!a%OL>l1zc-b|KQ=|@>=yloYiSoqfB|*%~{Cb{k5K^
ziMwi50d(r|7LH??Ju#)8o%o9(0V;EaB=byTl-k=&9M-}5F?I7i*5lH4XiXfJoH~xp
zKU97_QhShQ^oxDgC(TDA)a#`l3`^y&+!QdW?SDHtm;=g&cT@-&Au8Fhac+90!cfVR
zUMLLFH9<0vMRm*}V=i?Y4(4i{nAf8Fr)5IJw&p7{(X;D|gp-O4+70IKDru_$v9n)i
zhwEy%j(%h!8Jo{{1|b<=bNG(^#zuv!Z+bM6n${&Z-(&f<vz8GwnTHFD8m4W1*Ray*
z*{TiWUuGW=u4QbzB(Sm(VpuEmVwuUm*=9uxKt~L|=`#_Rz8{8lRxgc*Kd236Mk$P@
zC6-iOY`;V@4|x1soa>YSsq#V*2G`{qNQUVFt-L|MJCX;-bAZ5`!l<Hu2}>mo?>})e
zzM87JL{J&IxERT(1@km?<Q6{<vNc2iRKZ0(Fi!iu#f?klXLrUl7gRpI`L8sVYWIq#
zhQLBdp0D&89|&_0@ESQ%<)Di0gX`0cjG7V(Wm1ul3?%l_mS9jc_+Uiz_XFbqzt^w$
zT#HDNDzCD8v;-RzmDCHv7>#MhK}TP?8;6sIw0dpHOj$ix<|*H6(Fmg|A7o7#*IgMX
zR~t3FL{nPAu!MOW-AD++UAe{JymJ=(u>Vw%AsaXeP8}LVmwl8T7(e#Q^gQ559+*s`
zTv<l@(q`DXlq2C>Pa~~VoEZ(gjs*FgRo8Nk#@jzVzLLI<(+B{#OQEO_T%j}W8UOjZ
zXz2QkiK)3@-ouS41+br5(1GCW?XG0pR^sd05R>c%V$xV)BPp8CRN*J;WUQXfP+!^P
zvnZ;HF$MNT&0sGX5;l$gVtdLTinSg>(2IFWpe82J69{|kl7c`zYI|pXzUxri2yLdI
zrOR}XY?R*VuoS^U<QcBy48}rrPmgK&`Q&)Hdau^(+Nz{ja$Y|W>xF7+D|Fc9jS|?Q
z35|xpaKRU?Hq8ldBU^jrpB3!ND%Xzb-IQYF4;#|99+UvX&yM`tu+5kESGRy$$Z(dE
znukCS<&#0|0Y`l!`4pEjQ0dADHUx`}?Ur&1<BTzvi+2)(6v~i{ro~NCQ++iA;>8w?
z?*Ui{mHA4Vw6G0^3cHR|ekbZ|o0Kg^`u`)NLgRh8Wtco}Vn~L@oqX6VD~H@pNL9Zu
zce3Kc(NO(|^#OQKJ(@Q`o8r1rrcrzrl#Bg(bDw<6+tcG1Lpd-z#~((yi^iz!iSl}X
z>QsU{8ZU94Z5`aFYPBzdLu2ZD^5e_*(?-X0k|tn#^AR+lyOw`t)5R#mc?`9v+<#6U
z^Ee}1XMA<Cs`w&Pd5vlL$DcR;a1oNLe1^A=ubA(k&fg|`y%h;j6HCA4dc*^2LR_3%
zgJAjK-GIM2W%YE+Kj^AvAe<@^#6GifEov<6YQqO6Jvd=nF&<*TwVZTH)<)gc=<G{2
z0Kbmx=7dHiccs-LD~w2<?%F(M2UsK5&@jgySHu87HT3-Y>y`DF2Yb&BHedY-vwSLo
zVKfJ;`k$3y^SwHssgk~au%=>Jmy$MHN*-zLvpc2Yr`ri8DOEiTWfZ3@2iG|@A?A!)
zWnrso;deg2rLH~~23RH=2ZgyjWl`UHw{~vA$+vY1222H(=-HK_R=O>7aQXS2RJH(n
zx)Hu+w(CcDdbiRPa{qhfPi=ts_@Q#F-mJVyxNzlqEXr=7%;Ic%ICiFe;6)`}G^wlG
zhnqXB%Drtg>pjtmn`K1YS^w4s`seqxNLNKVw}<S_yl}z~d&gI5eQC_<=>pjd`P$Ry
zcHcX}q4poydH<^)4%d-+PVT*~jQw5#Nmox5JTQA;hR<m%bEs$zO>V1B)reuftqcHb
zn{KIzB8|8As7Hw-Q%h;3u6)qBxTM2YqeS^!N-aBL>p0f`d^w#>4+ecZq)53Qs3x+o
z{)=MGv)Rh4y<ewT2;ERX7os;7UiV~WN%~fmD1h+iK{h@~OAg&p3?#`CS9wo|2>KOq
zlbyYm(9xk1o0oT2zLb^YbxIg1Eg)T@sHEK%l%&PDT|d`tN_ck2=umg8m!B!4<2TXq
zcvSYi1dwKkjIPY{V!8yT7!*aPzdk^_0xSmJH1@J1#<DiTRL=0i7p%7l#aCT2X4B$}
zh1O<~JAVZy?cANgRG9+Q#5I0op!3V)`w#c*lFHvk>#~uz=jba7)1ah_Z@?ua%YJwU
zkNEOK&)Mtw&Bgr+uMqfRt}=yqhXx*Uc=vj<r<<~h087bDVCagIzMRkO5tQI7_7(7W
zo(3FulN)Cj)_wX0OD!eSey{d7E@&^V(!=z8^3OYsf>^lAUQ~S_7_Gc+F}7kK#Y4%P
z=p(tdDo`BXb&wiH##*+5tYLXE&s5WrrARDl<V3@9NNE$Ho4laFpcp2o=Td4iW^Ua!
z=o!_n!@aHj;B32fs*zPuA<IqyDBjz5k6n_e`#&|PH67(Ir3EQiB^xw+q>cc1hNw!&
zmg}>_(om()AIcCB1e&3f(Fe^^Mr-Z2%HeFN!y{twWAOEnyN+Z+la{ex?mk!oHRN4t
zG9<)fbqm?7<{DQ}2{iN+#XC8bc25bb*r5}ZwwmC=B;B=e9Sf*2N(?_%2ff{#{`j&z
z<BwMyC0;ZLnH&Q4oBKN$CtrY3_(=9gW@T%xXX{`m_?Rs}JyVBW)vF>O2~pz)hwWQY
z(v{t2X8Z$cmKAyjSh>mW>k<X;5A;zb?A|GlvJ!J8tE?o!cXgN3+c8=7DXok_wp1)<
zRs04cq1$47Lvb%OnbEze<MV@9IIK6@uuXp;@ul@C_E;oBOHXL<7lg=F$R8CV^3Nf^
zp}CknwHu5kIV;mLd_C2Oto@2T+9emwY)W#~^yZ3&&-+z9-sPn3FOYNNN%SD>oDyu%
zZL>4pP;KYpHo1(^P+pE2Fn`YVJGi{T#D^Tu&uscK^4VCHqDJ%V`E)JPGNTF1cA;(V
zO<A`P9r>HFa~}YQpe3al%WJ1~I&HnY_Svgnr@!s){W=Lz$u0HFg<fPEv;$`w6l~X@
zRzBL+<fSt18Zon9MS2LZ->YEgTR!yt?-S*ub088^31Rc4tk7yo!p7#=`9?ktAtTtl
z9gk>S^vcX-ZQ7aPus%L>>ierF=K1eZ=^YPMb!&{@#{m4>)_)Bfl_8P(aCxH*VsgOY
z>)PN%VVY^h*}@&SY*-SazI;lpH|yrWDM=9<2tlj3HH=EyA9MbuCu`R#C10tL<~P*M
zs=lRpW7$w>yji@poI?kBU%;;$#v$?Ep5C>`#!Am%_Y!87E-JV?4oVekhfdu2svJY^
zUppvVo__ZZ@h^Uo<~Ol4=G4j@p&833eewvV3OxnYbx4wr(|rLYDc?diQk*>ErWqZv
zPnJ*K!oEDI=#t{v?D%Mtf3?SkGj^~@8jjoBoEp=;@bg9m|CP*qWe0{ubUAWI?frw_
zR-T&C&{7#BfHzjfuuWQt<k`#h$-(p8H9qUB-ObIz=Niv{U^+`Dp=732<KXdR{qZJ;
zWB$hfqTp-EgXYG+d%Y5WF|`WwF%YTcir=JsSn0+AwEurtySMH(t|eR0e+B(g_8D!c
zY|FOnN05Xln%5#g$ySdZH6V(TAn~HZi*54P_cvo@CO~QLIxjuWscjLLMCMwt;xc1K
zM0;DTTfR@2>O#rxup_$h>%ZW&DcFGIRCc>t_Vvnk-L4mjtN!W?OuIbENjAHF*lLx-
zrJPbakC<#O&9Ht0#b0fCZn!O$)JS?ZzBh~d`|n*043{=EEy?4*i!ZBPWx_8<GK9^n
z;2d{ktN0@8d!C<my-J&w0q^rjxj%&8(caE;&S!l{qq$(83(Q8oKnY@9YE@U0>Z1H&
zfGW8vvKRoZ`|RH0?=_$|EAm?k&>(O(!GImbI4Bx!(hwye4~ms<!w3pgCo7`N>HYo1
zC07gFb_Ck}tXd+V{ClxxcVGFm%%94mvp2HnB`0NG2g#BTBP~~>ZvZ3ez0hFd`+ieD
zW9rajVDzzy-Jj0}nZRy!P@-~nH+(n47197Tr*q&}d30)g{dj&@zE>`lVQK@Ow)*($
zu(s>8RBgAU=_!C`nhCM5rujv!(8P;Ig>(j@1C<5DtJI$swn?Lp_mB2w`3f~2T1!)m
zDQxLji~T8(V!gkRip=R{)@~)wzTG)24tE$aap$jvi}yFR3_8}qNN>*m*QhZ>_)Rjz
z2%A(<5B8PmY|*hzlnB^3>aqaeV<*$O;OcriP#=~t>VZ^&C0eTxUGwW#&*t-bnc=?m
zrDFrxpf1NP0FHBj1orFxO3MPVRa<(v#hZPavGqf=94&cGx^f1W9W+sZZVUEcGHhDs
zr0=jas_E}wME*5+<t#~=2YsP1Eu>sggD<b>Z0XNaTDtyCB-`NdS=<r2%$q$T&^C%U
zK7m;*+i>!7-SxY)19D>u1`7VFSE2bbxv!2p3_|^En)-d7DjF(2P<O7VS#yy})6B<w
z8NZ^tlQoL&>2&=?k_Xc$OcA4+hdJbt*VBEJByF7Zm7C=sOtqOxkQ?Z$eMl@eAwPIj
z5z+jB1j@903R|&EgOUcra+BWx>T(-Te~q@DoNIC0slHwp@RRhv<!xM3^#K7u9QlGr
z4)ym9C!AHa!<+HV5O?D^1pf&4E?)T>5U7uG#tfj|uLnvokpT=V?c5sW<i2%dNdHYK
z)~ddQp#qv79Y=mAYaHg@+Uo$Y7Mk0h0HcGVEu9GA0Lz#c8Rp0SVTwPyy-Ak{!{|Ed
z$pn^xaF9kXS`akA%1vo#1M4aCGz7%%zL{k2BMEVs){p@|waU${N>g^OKi%C%!R9**
zOlv_nLsROPKP%7(9YkaQ3_wp!dJ(C|2~Hb&(A)bq<f~oBMsd!nx4r{^TG2&w0u#nJ
zgZFPO58qd6MBu5zwPGMSKr3B&1DA#Gl!T(GJbb`CS~HGlUDgvTW)WI|z^fS$is6}s
zh*%5Iu5;rd$~AM;uW{q$^=M#cz<clJQGh{)>8Ug{U$5_ZIWxv{JbAgJQoSt~jPwf+
z!ByuH0ck%|F=>4cD$<=xZ@cZB2C{X0G7GPcoAmEYdVM>k2K$?GQ;Rn@PeyyyS%O?3
zFT`L9HPGn`vDt+%f}uJG2DE5*IwBolmjise2!3kEWl<ysT%C&m`pL4X%;O~tn0rUZ
z@R5+38I*kH=;*n7t<jWSoKo)x_35x|y~A*J(0%3KX}kQw51ATK#Zu$XtyA2nkv4Kk
z9}tKp3wCbcQc`T)tE3<WlFw%wQ)2SSoWAf%n$yisj<?~iI-CHut88pGpUhE44&b)O
zvz_^$?e5Y<C@ZB7ou}14xo9+aAK;JhZ|a0i8zm*f#u)MJd~~fl37Y+<J)?KJjE;gD
zspe1QuSq;AbZgnPJwKS|sz0&Ye;TC+A>s}_Kl!dXMZG9KRx48DpubbC<D)7%C&3sX
ze^1i3V&Q(yMz*Ji{qmMyVV<ETvpe-1h{QK{cT!(E3@RuMG;#CE-*+}W523XqQVP|w
zxF}ULd6Vx~H~C)rnqc}!dwwUYKBDS5Pq|*S6|<5glohaHFR$Kbqg{-cY>_YKToe4i
zwff?o@WxUZ5=tQh^!9cUqv5lSo|FcZpRX3@trJg{+ccuoDVWpdBwsQ~6q-h9k#ZBc
zHnvZECK-2uv;DZ0qHkN^H8!xQT)czk=3BA8e6qfkmh$z^S!On=3Yf1|&-}){E}-VY
z*S-L=4M>6sW3TswlRlYWMN#oeSmQB1Kesokf!_wTf*IdA4=JN@A`oS|uHI*rBeu|;
zf59o@5r0Y*SM*ukY9%&yXPq<CUWMiOoti<xQz_Hh?-`ig*BD;%aI{>HXa&$}k_Xpp
z-OwMauAP83eG~DO?~!fh#;Fk*y}GH}klT<3+Cfj)?A94ZOCQunJ)dHmaw@bm*V1DC
z+5%w|y1RhkFM;8oZm*;tTb5e0H5Rs?<a)F??>rj6l&i9auXt4HkOB=Y`rP}<=`%AK
z%CKh5RuihrYE;a7Wn#@u?m9ERejF`lhK+{gSwi(=s;bM+tCPJ-OqHwJNFJm*Rdtcl
z|GBVP=EG^9?jgN|CpI-Qi@>DJu%+CphxFdY#w)<nW9*vr^=)iL=uUBmFSg1P*G<*T
zUyHbEy=BXb^k@25$%+4!;agSGxAuN2)wMZ4KAx<<m<)-K`TkDRL5-nx>{xV;Xa(%c
z&q=AAr9lMFM*gKRFUfY@BxI0!U6@`S0l0;MPVE1mR|JS9@VdS~UCmQkt~QqS=snVA
zG}mB;PU$-G0XG}LU>&(w!DyRZKzsE1q(}EXjGsn^d5O%mEMHxBkFSj5u#~uiPe%ZV
z<zkG&9pCJIHD;Dl%fc>oXd}nzr7Azr^=T$bKZ6BNUTl7eil<-cw)JNI8~<eHejHm~
zUL;<Y<nJpm#mWwMWX<&mPe?`k1}C4GaT<TOq&NXcdpJLBN+GC!A<|vFta?>#L&|Cv
z=HaRY99OW=XJ;ElTj=hE@^5PN={^BL-*ar%Bit!?37h%mLt!DomvpJs2PRyRH5<16
ztsK$>KCo46jT`VzF_`=aFwrzErD)prEOJ~`F2G9Hnue79NY9^?{%~{d9=_|&Y0o)^
zstF8$6a{00o*krqwyJ;-VQ|F_Tbp$K(y#pz>g{?llpB?3wm^Y_b4dmvxKFKv5Drb6
zVY+(9*Wv^e-^@&#$^r(7TaP?lO7NL2Hqj+TD60CQHf-UOy?#)8yzxvHS<N<EGg?1a
z>#gbD?v#$%*^}r#n9eY$3M6j16CV*ub@*m)4F$M7gDY50PdFR^g0!jsjT~Rxs@_}0
z)*&_()Y#fhx?tC3;h?8}cD{B#h#<S$dANN5(I1#}6r(9b{F$r7ltcitt7(EmFqsGF
zO_|}LBL_AFjk=x!ScfZPXYl_MT<ufwxwDlr7?}2(AMXB2=dm6Ltwq-|4v42nOL#By
z+qI3TUI}$a;RIE!|LSo&&o_^gkC;LwC|~PBGq@JSD)m2ui_z>$W09nF(M0sY5(WqF
z-G&Ymc?!b`iu7FfhO6uRis@~M@)xI{@Jl2?(nEdNFeU(q7~{O>(erW5+i5;0m17*1
zl%UaOrbcBwF#Y!E=p<>?pg2F_jOvF7ISz;FF?YJBcHwNIo*kuMOm5u1*OxN|zWn37
zh?T@c=+)}MJO@beBJ^Qr8v;??p&R)cIVJ?W)R43xp%t1!-_&`Id!mE@U9(Zv?e;y)
zy0$p>w<$D-r!t^%U^5X3NkvPk-7*)K;NUCBZ<Zt7<t&HNj(C~1KP7w}V{>UN8&1?Y
zx~BdcR}n>5E7*xfxwsK*J1OVVQ0}bj=>{5wQ;rTc=cBH(jBFBo;pmvHuZn9|QHa1a
z)Y3#5cX5}wD8L|jzR#{_s=7&B9Ow?`l-`z1f5%PiIVsHtbSWC|)ftk;rz-=>dODQP
zBRqTRi8{;p+eK{l+mJ{;>7lgBLpW=_&<}HQ+#1N8)3kJWQZ8AU5sJO+jT#`VUp`&#
zIY>D^K5VRWkn(8SLH-<B(soN9-wJZlmVzVs;?J30<{IZ5%!OEE|2du_EgT>gjOO<e
zA=qxMX3iJXiVr*h;Q19?Gfgk-Y}0n;6*uQA7yqHfNI2;f<kwm!^T8%hZl5ffiRF`1
z;O`fk77&Qroq5UosM@e%1dcr6ogOC;M#^v&O0sefcCi70M0Z7-**1Jt@s=vQgNPTV
zj5^hY68-Mg`igV{*>U&@i)HP1(w<crpbi354(Ptd@jh|KkvGY3%0DCF{IAaI;++{Q
zc$Qw_NG4CREBU54fJfPFQ(h1k%4~iRNr8|%WZdi@)byr2_5aNTzV!|dN{Rhe?0dv}
zaf!z7pR);6=R#9~Q5whJeZD)t(_^C)0V|hP3Xrueg;0%`$q&6(b%vh`R(O+7G?ca4
z?E54tX2-jWyMWL~gtcCp0~FQJp)V-$z5BRWl*$s$1FnhT-^&NoD=G_w^El3u`Ouwg
zcX21q9#Awqwlx$Er|%}e^+V#LT+MuSoQ17dlgEyh5)L<mwU^e&6jpcKY*KEuMmn-E
z6$bKlI#Q4L#CPNm$X<V9p%X&QN2BckpUHlcVdV+|Tt3(UQtiS|p-?}u(~~kPPL<-r
zz~)Fbr{2z(4@%^C(-?5*+J)9wonr7sq222<Vgm)AKVBCQ9Ef#jl=s;Bbr%SXp@0gP
zRx<P)kkgJJZr}P5T(_#L6?UKHJwMKc=W%}1Zvo=8$gF@HbLL8U!k(zT6Ta}Y>YxiI
zth&T7qIjdZ|KVuHxD+Fz)%?nQk=^MZ;?C{_)*vZ^Nvj_0rXfY;Zhvu+tREK&y+u9w
z;$e{*u?h2fgG0O}Z-E!s*OF_qEM*lkg&0%57JZqsjp#X=FF&0x#XPJ;X9xd6uYnME
zy~;|uVAGPoM^&2JQU`GaS0dE-C!+*=q$4o)TW(IeWyj|fy>^X8n?BHW3O*h&y{+D`
zwXSKCx4Q`Es24s1kewd$swP!$3sEnfAj6b8f=eUOa7MafDnMDpiAj=s8P0HN?>3!x
zkd@pFAEl0Y`(c=%M84;t!GP$8sh6iAx}$BzgZ5W@eHNkVeU{Lz5&8k=4)&F&M>@f0
zZmm*6EQ9)oh!CmH+w4V4H5h6uuT;KJeJvE`vYYXjg%Y=Ct#SC{zC*V6eB9%+(|<lJ
z-&BNAX6h_%li#N>4yj_kLvLc4wqHkoJc*Mih49!N&k{LcUHmArj)~+;;yf*J|3%8#
zRAec(vj`NyY?93c_qEcA-Ym6`At3N-bW^V`Wxglfuy?lnoYsh`Hx&N&o{oMVENYy%
za!}M{U&d8bk!O0Igi$ll^-w>gCNY8cv>^9c3J|*`)gv)rz|E<0q?RwNWBf%jw#%41
zVjEX?e=`B2Z`&fT1=V!yX<MQQ_o~fj?to0=L`LCv3)Tn(mhQ4Q7&GO;=T+yuYG@59
z&UmLDPy9MT-R((!utzfe)2o$qez~)Ec;M&h7hp|R>VNE0|MbUn`UwKATTd#8I^6y0
zjWZw5)c~F33QM~Bz!O=1;0$F1-Ze_zMU|4(<NiBhV!AcAlnGY3+*c!bDw6qm^uy-(
zcmm1)_mAyX;0>AXLz&>JjApR>1{-HMPP@VN;QC9vyQPm;$gnjVKHfj|zY&J)CKl8$
zqd)I1{x4o4F$lp(4BO6CBVpk(w;O`wi@mA3+q1uFjBv7;@i3f@cE{4sO1G<Z?Bg_f
z<)9olNwZcEx_nd~4O}`+b}_HYwGza#<J4Qr``bdNJ&eP;<q&)$0e=!P{Y|xExe6?q
zo$|i2T^1<sAKc=z-{t@%NZ=SLgU?(5_=Nc>q%3e-dxvDQ97mzhEUrPhRRewAP#|II
zFxi4}lMj&kd9}Q_81vcA$6Kg<xh><?e=I!{re~#Enk&%jD4S3X+v>AFyOn6#-V|oV
z|3@K74OHuVpweo*t`Jgv#TV~?v<_widx#Z(<NriJ_@7${BUSK5>l*(;nRpfe$*MI=
z4PDt^P~3?kPg_(j1d$#o?on|+S{sPMhPX+?^0ZuQ$Ki>;g#7-qO={_#x-uGpkoGPl
zr{)A)bk`o@{Q7}3$Kn;ccq~Z&1C1P1;YBBoxqBH{M^6@;KUzTO_QuJ}qh-viFfSc2
z4>q1RT<kmp42q8wuRW=&-xOabjB@5W7^$g5Z#yhWLqrS(4p*7Jr;z4O*;&Jk>Iz}O
zTib@Id{bPzPkN~u8V)ZK=w7|~$d|F%-&8SEp4s>|mr~#9q%1yEY0Ae)H*$lJbOyta
zn)R~bxq&n+e5UEv@yz)JA!jOIvnSo_o`muFw+yec*(b-7z1dDO_!23c(d`rc)5La@
z{eJGMr|X=w_G^k*M5k4128_7;(gXj|-A;kaZ~6IMJM*;ieyK}^yK81}uqS<4vC19w
zc}H@M0)#|q&Dm<6ry@5FPigAc(!xnLj$UoBzFi_k7YwUCdl8eejt~tq%+`_!p3~*x
z4GjS2%}~}Ju1=puU$dEm(-;WE>({a1Ka0k=momC4R5T(jTBx0ZF*Hx>;m!T+>N(o)
zQeVZ}uO@lO675yMfp(B@|F`}zY;8&WL2qya^}g+^9{X@V2Vj6mj6w+CHswj5)(IUI
z@&_}9Rb&=KHGo@N9#Cr2?d+vYfA}N&qv~WG7(2A~E0YllaO}Fz*Xy97Y|&6{(vzwM
zerwexuds`59&WWkbWGvxSN-4prnxaRubJ9eD*n-Kdq=3SeIoUG=>M*-ZcsA03$^ft
zw$7W7uRTktqxEfi6y<Od2E&=1gM<DO=btiR8#@a5w6efXAx^@-Fm(AIGeGMm%ej14
zjH&YspcP1J<CFZd(z_?y(IB-@4F=3mBN6j=tBj+cx8a5@-fb)&;2j81=Y@T>(9PQn
z(d1L`wmvxODwt9;zVGwV6k;6zQ$vRU;AgR_`Bk3D)Wo@IgXwR|Q!B<yA@nJrg=xkW
zK>ce=0W=5-oytjo1FU3wd7aKfSL4@j7VjN5@anmj>6~g3T|Wdy<0%Th+$3?x?LXSX
zS^!FGp{o#!tLL052(!^f4Ts8&I<ZG8$A>nCzVZ}0H3)tyS%CkpgRotIVFiJ+*S8gW
zLBMYi$2%MbCQh@LuN~%;b(*v`O?)v>Yv0^B-%JbPxanaX;^esG{6sIdj7)1!)M0fU
zPAV7&=A7Ip30#%3wN?PHL}?1EoWh5@3Q){`5|!^Aam2HP)dBJ4;^v;;u{bBlQrKP4
z>alfQ2<$b8XdgQ8;E*&n7Q}aAfqQ@1VT@Oxja63m{o8_uUFKKu&&rSwVQc@jwsfh2
zqYntejrI+_lCg#V0!Xf9Nn6=+Ku*DHwba6^uD^n2JMl?|P}WoHDkjuoqKgw|oEWpT
zu~0$Ybd5vb4VhZw`So{L@hL6V`EDArK<PR9TT7FgG=WkLlyqFT(fSpqXWQ9r##7gW
zyOCq*6}K%E1gXsrWy)@CrNG<=dX6~El{*)3^<?s6N3R5JA;eBa+P63N_C`*^G^zA4
z`Jzf$lU0}upZtH{v1Ywr=O;4|E}flp=pE{8Tjwu>NhGxn5BpmfUv>a{tS#8R&txVq
zm?cm9jyxCIOeL8-)@dHf8;P=1t8Zp@Ni)gydd>~Cw0t}6;pMj3=va*jghIqq=^<F9
z#SX}j4`@O&w8)tBC0&xzxE^{x1?4)cV$XnRKj}0}KZV0sbJ(1)cEEV&5y123sn9<Z
zTNmc$<Ke3CmC(JSZv#yZn`o*Xn4`tDUCha}<p#gf@sDq_xxv03IPl^#Z(m=AYRh2y
z3EiSpg@6M(oHt;&zYSjYsb#w>^jg+?L#_7NjqP}lgh+R?)=`5cFt1{%ZPMZlBXfJ9
zb9!z^MkgkxjoSoZ^R}wmdzxmYZx$agpR7-QU&1v9WAE$^RysU!=dJLb@Sd)jh5wih
z*~`Y1sc&^1<@pixLKhq%F)QVHLt7Sa+MF3!^v>21bnY^cI2eO(AU02XgOp_{=Q1Me
z64<~+v$t+c#uZ4Z#`=cAt>Pg#Gc{hv?un==MED^Of+7SMh9M=<G)PMlE$zD$IDG4c
ztfn&N0=Rc>00YLBJY1ZC2pYWI<o4%Ze)P$k+n*LFr?~QAph->%Pgl9mA-&dXgU;6k
zc7d8wmdO=wLf;FV&XM1b?#6G<^~^7X8ZJa7^c?A-5m@WU!mRT8I>p()r=U9<HQCC>
zDHNBV69Mi{_I5Uo+e_*6_H{3Va%r5=Jjl~ftTwp~1gW)?Ch{Rd&QK%AYsJ9^gn&RV
z@k82k)Vf|fUe|Y@B7C!OxUPqu-yTmWxv@RkkW_`dsSI@1K7TQzNlzfqP<1LWkhSaP
zGo%nP3|K?YsC=)jaIf;Ws^y^g&8jxR^jS*{t6))bQcml8)NMaihu@#ofG*u#(~gAY
zfPl9cS#|`&VX}M><=n}^1pQ9m#m?TVV37Y}0AoT@kF%~hJ%O*jsn5SeIq0R_4FMe(
zA4fRT*7i3LUDh5=K3WL34YsJE>Oo3N<p>Ap_twa12E9Iy6k-}B9*lG;d^>gAnKA9G
zt7z})#kP;s800i=Zrd{uwY0>JX1iX71W1v^Q|3Ik)SlyxuNXXPGJl?DcA=*#eu%`s
zpCP)b78fLP+HsrCf|~v+4Z_!1GWYM22k}zadpx4Ee=OJH-u-^1g>KZ03Zprs)#tj)
zxXLBB1Z?j~Xp76Ak7%!mNG%XKROg&uf>wV&THJh!4A)um6}$4B(6x=3&?S|<s$68<
zT&5OhK>B2bkq@Z<lhI+VsmqAX^2>d&e%#85TmfnWV1DHauT~mn=p~$1zLM#!lbR6L
zBUPfdb0qM{MIvoJN$#+h;<Rx~i*BB&=(y$bSu9ij{$3(8H)vB>&!gP}t}CS6y*kg(
zmb66W2i>&!qt&?o<oq2MtDDr#kV!&Jj%HtbL2GSGeJU!IJyA=`fiL;DwVbHPNNjxB
zM=9m3fQ$u*<@U4B!rm@Ni~o#Q?qw%G>68i{3Ir}qie38a=-6Ge$ij{LVcF6bB@Em-
zOQgbJtz^u$W&B=W-PizM$b&EVCAP>SUqo)(*#Ru2kIrnK+UIfZ1==CWo|_jWaO1ru
zfEIE_7{i%mzZ<n>bu@9tBs!k&?e-p9^TA0tY#`nK4lsf(&*Aw8mD%BA6%tp4**@|;
zk*N+zM~BB2VI2yf;z5LivFQ6tbSVAd+B_8Z>G!x^FQ~H~xa&KEb)M_Lg{<3`?b@8d
zd$(k)9oKan{LR&srtfm-eJOvh56GImd&RG76&XVyN}aTLqIQ^1$gHU+mtkwUCMoeD
z7BT`W`Tygc?Y+s%??$i9`TI+!n@n_jSZI3#1v(e4AvpBTLVA+6)Jk$+f9V|&5}@5i
zM7}-i#%|F8+LUCoS(5xJqv}be;PE&#d!4nT?*Vvt(UhFu{#+U4Cu8wNVBAa9jL)IY
zzr<(__*-%7N8cvxQ=}A((^kXlumQ+4dk}?%0^|aTBl*^SSz7vdG~72`J@yti1t7IE
z<$mZ(oUn_Vi@WfmQ$^G@9yK044qdvZ??$m_il=TU`nYTz%)axv@~3H6cd{pfPdMFn
ztCux>qkIpDmza_DY{VrVrAC+=XUeLpi@dpzJdn7^Z*qW+%vSWRr|Aa``O-7&Pv=Z2
zypJFwoMVVd59Lm~X+!9Ib`8P<D{D^F4RntqP{+P}C{h06ehEAq&F#18h`w7#@VBRq
z<z#24RLc6I9UjJ+fp7$LlM}i8G*-nW6}0&w?UJg9b-}$g;b->YV)^zqyF%H9gU}BR
zD=2mEqtw?&zyF=&c#5p+RnD;*rb;{+!^SyGO;F`UTq5q}!=1LnkA019Dkf8q1}w{e
z7JWZ;>uTJY!dUpwHVt0|$TYjIjrQ*pUm&TA<{sTYEKWZPynO>=a%u2s{ye_QK@iHf
zhY(z57XpX96E;U6>y0$k??S=TYPCEZ#;BJEFk@|abPqe2Lr?sB=`OME&DT21uikh)
zIqVh?(h8gTt|3(%aTgf|8l-K@X_bWWQdaJCLW>^7By7&S*tx2Kk|IvHWoLwmFAn#%
zb`H2YHIZVrJ4HjD?#^YPB>M)n;j^h-b@u!55R4nk=`vzon036AR1<r@OMkW4Ei`OJ
zqm2!aBDU2K=b0XBS~*@WM7#C8som-;<8yOq5ukLOYRcQ(MMW9NsWtwq1uK=}-sCXG
zEu1gRk3|k_piK^aBLbyBQJmO)xink1DXd{Uk^RlJ2j#9LZX^b1W_Zm1itPydj<X8;
zRZ>y=DR^rs@j5};AIbI}?xt5>6=eS!!u+82I`AidS7~fvrRjf?LPoXUvi@C++QlOn
z7g9}KQX}M(LM-{$!*+Wu8g6o_S1|wDTV2cxDNjCQod~%?gD6y$lZ)#zy^8p_H?ynv
z3g<(Y>V@Zf4dlagzh#tVb?W9bUt{=fB)~|MQV653G4zDsdrof{0I(JRA+DOoIPU#5
z^+!ogVe$DL1>IZRL0s8ZafefpUkuj~G4y{nr!i@p7j-t#*<{vRMH5dU{YcNx6CuL1
zdIk$0f>}CV!1hvAmH(#o#W^7Ra(wt6ouf^;miMQl_kSjS*Sa}9xMLX7RmaGNV^eGz
zj)`$_6-Qf#THs8#U+f(0j3x)$)4jtGk}ooxCORH5T+`!4RoQq#x!e7ngBORI!N38i
zqD568T2#3l9=E8?%89l+Nhkq3l?)h7t1!bQJX|6L%gfrWwK1S-0&@=#+^|uEWX)&j
z1Y`r{`cpMOr`R(-je--Ii~ByFE<5UTQCgRV=e)ItZ|W?5i5lo)B@BaynXb?=8|dQp
z^dv%l`Czhh+_Dm)sI`XNZBStse>ZQuPI1hn!V3mZ`_)C^FfTxp=i`w@cz*WLk$*tm
zZhXAa!F}a%?TMA0P!r(Y9$if(XQ6W2%g<M$$Qb?%E%m{FD8uOE)%k7kV%}~|Rz@4~
zmRlU_Rplo3av|t#cTATSMn%s(#W5&vwv?G1=*@@wW&Ko|RcM4QP142k4d?(1z;jND
z*VpufS18L_rr%-F{Jqe$Bx($x_5eE$>rMP8!?3PS*UZU|s$dRUG(>g@=U36%M&HN-
zj;J8#?wwILmqfC^f6mfZAiI>kBlvv#&m-^<`0sWRAu5Jq-NVlc+-i*CaC%pgm0;P^
z)b{<B5gf-)_EsOuPaS+g|2CYPS7?EdIp6SzKe5eS>ZB7=ipty`xo~uVL4COsRbOf4
zp&uMul(fbWmU+2#`#(`y*?Z8EnbiAe)*qHWO=VVaIb+&2#?;_mNol?G)EDsjWhev5
ziNsrKE)qx==&*e}dmKS{89PZ3c9z)1Vd%?ErvJ3TrfXihp;Bx}M=&06ybkURi)dzo
z#K9B#7O>a>0<I5Bo>sV>hky1XzxicKZ48X+Kcg(^X$@d>=DLNZ)O#-S_Q5PjvU;kU
zH}*Z=RW4K53!hqS`xihcwGFG-scWM7Eb-h1&YAdEXfc~MfTP^tgr<;3zC`U4K&iOT
zJ)HKeI=8(%pj$4v&y~dwI#St{80vP0KoUQzvI>5YfQT#6gU+28bO#zQ)E&RL+a8X%
zS917{(pUQNan1u)j|F=4wA_=9F&|z>3K`xR-S;NwVe@V^ng;P4eb8|~R<w!L_)RyZ
zB9Y|=%=1=^KeYW4YvK$p@B6$9C!P1tySZ7)Dc~lbc7~o5#}<?0+p{qWFq7231+6^O
zhr+D)!s*8U?n7xVS>d%DMHq?9ZJqR)8goAF0*Jd7MWik}){81QTw~%sg*PzO#-~^-
zm{k(P9nzj$L+ds2|2z?<|G%X}+eUY6OU6Zx(NfP|5`PKnMbwhJ(e#8^u|)s$r;r^t
z_VFx;K6Tl{Wp0WWzWHH!_NaN&IQ!N$N-BLcq|Q-Wht&Ba#Zbv|h#ViTo)O$~3xN)u
zqk>PsA;m*^hF3y4M2a{Z;*1Q9hH5zD!R<TTN9PD)wZe`0l^51G8S(DkS~)=%42Eq&
zp`_t1J$o>DKA%AD*V-XlowdeFK8?=&t5wRqj=2#nBzAPD<>NC6JV!!KyL@woPslS_
zKpphP2sXYeU`?hq+nsBnw+BCF05x6GRL$DgiCXes;!0prr%F~p<<qem62p_(*5toN
zhx>m(dZ1E;AbE?${9Vm+%j8#b6b4y-tLKw5YNYKp9HthUZ`LiEZ;K)3h_ESKV=P)f
z^L-K?tM4HXKMM)XXH~N*ch?zGv~(^xj?3BQ%9{^LUNGv)8b7uwX~{XCat6y`&W+RB
zNjMj6Cpgmc?ak52bXHFczOL%eB3z~uKxc$X798yr-ka6Q=*n=a#TwUVa__NX0T${~
zNt+$cf;3KNhhxQdN&H2`+_GpvTheoZxV&e^26c)!rkpfg8$oAxKPK3$u(E_%k<Q=n
zfzt<JL-pZ&b#FMe*Q6nn_svrALL>L}QEK-Me=HyEe%1X}hsjR96R<)ostcv+*nXK2
z8le*s?c|sr@xfG?o8ApZ#Re3~FRSdPmd{7uzS^yUUG7{u!_i)xJ3CYZZz{x@$~m$@
z!q{r_CZoyQc<2N&Hc{P8`s@m@zhLfoPf|(x^?JC9pP25=Y;Yw{dx3Km&S74BucF}d
zs6-Seid}ti_P5dJx6IS&r(_8FiZ!lT8?sJT!$<MsUtmcUWeJ}eIibU2_Gi16GT40t
zSY0$fNEe!c_~cHKJ4p6UK+`+Ziv%+{b(RC-66fAk^4YYkd2@Ylop!HoBlyRY=ab#T
zek;)CDVNBoc<1WQ{th=(7a)RQs7pN<do1q@aqaVJX%08#u`N1qFTQnOJ3j5QO)2r&
zI@1)aWwrlv^wJ{z&N5uzEkC9-=i8ff2KcOGouCKtRc#os#z}w_#4Ki4l@;l*X|3H<
zbAU@j?qQh?r-_m7YYThH7jH{L9xt>|TQ~T_b3I1Fl8H%m6J1L;3wW5s*n#R!@b;Sl
zdCOZ#RaLC{+xKkH&R>hmt8v8O(-K8S#q#rnQ@uL(8M#5!InUcwEO!2b8<hM2Nu3tw
zQd{WKs^eNc29SXNK6&+OvS&qnmS@p#Ka3$^+3drahT}!OaFy`gL+xQFcJG&e)t3?r
zsB^-*LgG0aYH!zEp5b27Hz<?=fV3hH`*L$%85&hzdJD`;se{PkCN(6nsb(&f?9kDR
z!vpo3^FG$$xC=@fi7)Q(UaOPjSP6E{B?DHgBPOZ1R!A##UBeAbS+;W<J9~y=Lxj2>
zyQ_Uo-|0<NLzl}BOBHS_f@h`p<1ek2qn084QZ&_ZUO(c;%Km*ff>w%c{iGPvNanPW
z^v9`Vb`~@#rKA#^%>n%TW|XF|1v`2}u!OOrA77TKe1s;Iup)1Dnk09d>!?=a>OVJ>
zYItXmz^r{aHO;3HyHZ_?H^?uiqzR5W7KO*GG)3~#%}Md+s;(*LbhfeK7JY_NZwc0N
zDl-CE!VZ=BvFUF`4plbcSJ%9m=_*7>|L1v7xdf7_!@D5SYb#vd=$ET268yKoi1?#n
zsC^WW`si+r@+2Tr;>G<tFAer<GTwVa9)$q?X=foyE5-f!EalHRflqx*R1`I+cKQR?
zWO**NpF20h-3D!Ja@_MAnCJjJS*Z)d0qSVUx>8<16vMJ7?~*Wk9C>$^ld{j&?U{@x
zjS;~Ig!DLSDwhOKU+2wdAN-O+DkiA-HK7G^%ZbTA#MZw@l4y&>y-m{^v{4a|qITX)
z;Uc1%A;KtjehyZztqR4B9Rt8ejXMWu<XxM{8-z^H93G9-;nz2pVQp7^#LzLr-Ct%o
z$C=AG#Ax;4-!%rZV<UC(VkgqL=+xH5^3(NIVG`@fD-lr&)HkY?{P1kU<G>l1TL_FA
z>Q;E1VVsd@m>=J#Zz9tKu8q5iff{<w@%ZGABiD=KCSglgd73-VRFXOK*_@>;K_2C_
z#ff<H&D*{W`fPzapT@7>6vM?Pa8b|RNRzad6{rB*_Q~7Dh4AR{;^Sb*L~+A9cRZ%A
z?9}9aEZNmX)90Q_T2!tvEm^emc9jKl5>pNo`gS^-R9?bPqFWu#_U>LZ@%k>E?w5VM
za7uCCg^`z%&0Bq{<e~1eV6ueYk6zq=z8dcVH%X_q%~zaC)^3o}pS6DZnSiAjd(0x0
zGp!`M+|1;B9G_M!(xc@Q$4PX#<hOsT;_f2P^}qUqm~YDFAZKYGAEM~`)~6O5{+>xk
z;OcZ5>*CDK1y&{d?9UboB+m0kS0`JWA2M#F`9K@0t;)H287MAT=>6o4cmjug__(^I
z9Pb&f>W6o-#+6*NUk$)OYe*9J;LPzE!nl8<_?k2C`HEwBe)btUg_O`J5Ljl<e#{MX
zMoDAy6-T$H-;K^&{@wU@{<jWmDD|>D7pYpc@AieI>#w1k!AcoG6Q#pHg|;Mf!D9>u
zj#7Gmsi1$Lb^k|if^OHqlT`?7gc^kA!<Diu$@t#A@Pn=jMtw$3QJ%D2%Hn#BOCh~p
z;9zok&szu&tV9;R`poeo{{wHdEn-|TQAai>j(s^~u0*cFT$yY>Ka9>z1_Pjlxra30
z6x|RWh1o7?ws105uaO={P+)p~Wd?d5Nu|G@LxnZcyPw@#Y0KKml)h0&4ksC`$v63R
zNlXg8#hK**bqVKQ1belyO4nvFN>y!@+cKOOFLIfjZOvNam}}100kC@5smEmThZ5_+
zKL|H}<c`!Eg6I&*x-$kM<D;Y>#Fnt&NO!Y#_IT*l$@wvhWq{k-3R=-R126BH3mWcB
zBpv2w?BXv!MjN3KwqAA7^S!2%9LNBqO<DHO??(qB6P;px<u_f9t4SKP`TDATFUrYV
za2E&{1GKoH7>akA`hmQI)k_WIFYMoOh0ku~#XxaP*n3Hx_lpba=eCVC{wdJx?>evZ
zyOWMjh}I;JOGp!xl&w$<yWJ<f8;a)F@<AZsTW2b1HPRpuO-3{W3NylYdGTcQ`;#MO
zuDZe_<SQNNA^`5mPdF6oI7e4vSxy36j8Y7Gw+5t?2FVPD*hpmQbmNL#mzAq@7eftc
ztGCVfMQ`U1uOl~|?*3-=SQ%my5%ee)?&ZPum?e3GbxGqrgjgw~6P>)?6e;U0<=F~s
zj?PR;+Pvyxr))M3TIsEdNOOSom!F75f(mq*eej?#?toT3%7CB!1@-n($Arb_^Sgp&
zOlYtL6Dm4<yENTs?x>!J)MdW&<;3VPi|avjtnEB^dvUb<J0pB+e>yLh1Dw=`=0qy*
zrx$1Hj?Y<Cvrt~h?I(R-ac~@EA;9(GW7>qNn=*hRQFD6D3rk;BE=vc|;4$3-vXwWd
zpF1_?H8z}*L8row4g<9ytKkR^w-ctkD&$BYF~Vhmn%4_-i3~%FSvvjx>?a}o<kRA<
ziUq3qEF7xcs|T)RlP|w&AONYHV*sWwDyEYKH7W6W;o-DjNP|HJu76G#k_^u7)oDj+
zXf%g>Wd}~6VEQp*^h=T%Xe%vFqgz2Iuzk=!hvDX~zdo1DRu&yIR&+e?wh}3in|qN^
zw7HEvzqxZ@o|^Xq`1y=j6HX1^;q2i`L;t2GZD|Hip%6HHAY0E35Y>kwH15MUeP$vr
zdmTQbQaI=|DlKmYM3E-k8$e*wgDi7DY=CEB?VPFU^X;N{$%)5*>OIJE(8JuI>-6#t
zK@jKOAxxTvO#yY}G}^{)(jy$kW3GrDGsTbL`taeIKG?<z*>F`ZU#EtX;fg5<<^t4d
zsco%4pbEeZY(lp^ARnvyYo{dOJNMd3?Bdtsf!EE!*nrK)y(Xt9e;u7Xp`jE9b9sCE
zb^ENWih^4Au*2o++!6E<RX<9g-j176$xgNhPr?(ba5uDp@83$QDDPcgVTo2@X51hg
zo!O_W&mYTkMq>=CVsU}EvHIFC&j@-VMs9uwcA+w8W4P>m=i#RX;4kHaua&~i{v(4u
z@8Dfqc?>2*o=2m@Gy!<BSGP*<N^-9-a;cO%WhesEAOmZWWSn7fX)Ex~S83d|n@lGM
zZWI{h<WnCuwjUE?n<w{x>(H+YXjO7SJp4v;9(05be3H(iS@w5(DP4U&5}XIXxpG*F
z(cjbrW0AH|D=#o{yH)LL;nqhwP4*A!hJ=o$KeUR20Z(-ymVN8$X1<qdv`%0^#$sUg
zk~2-)pUhv@_xT5--MhaRj&ylN=eWd{Zs_*cexwR9Kli9Xe-?nBQ01-Jd<|Y3PEms;
zddGMLAUl0jQ6VF$EUR@WjZ8Mq&oTlb|89^>)m1hDh?|IS7(2Kf)7Y=6o6|K!jJw5d
z%U6W0Q?z!LH;R4x>{2+Rr=iSnl1r5_r_O!s;p+VTLIws^A4~Pzf7LEMcN6HsH)rql
zs-S%qQ0lfy4#n1WHRCB0C9)RV@}*OqdhwayF-#?T;%4ch|6POI1_D8GqU**|W$eCy
z0-c%erASTNuYIR_E_vg$>ooP#=wyE<wJL-Bco7K8=!;nZlUcZKSe<yKx+vU&D2v1i
zq7nt`OdYOuWjaz;#+>A#&}@`J@}f4*9;z<IT(&q=h(Qrgv(&Htg1xqnhKYFiYG>59
zW71M59ShT7F}&!5g$_S*pP3UE6d1HHgs6s{j5a2sUWTehaIVP$y99HuIN7)Q6z~vE
zt-Cc{3clTrr%JQR<iYB)tNs%SvPZxFhZggT>+9uv`(Sg<+t!5anQA0wvd(sQE;Jbv
z6E4mlAR=iTv6?p5KZA9Yg@Z2+yOlv1v&m75Ms{xSP|nxhl(<^cKIPJJi&MD5aZB^R
zI+N|DBquA&d>i!B54HtQNE{=RP^LVpfvnISu=0<Nsy8=4gwBi{q+b8h3WaSWo;muH
zzCM?rzDo)4M{n@j+&Gu)hD|n8{`CGceg404>+RhTGz~l!9eV<ZK<M5~^F|6#7nx#T
zzw5IaAom%BK91?U-u%Y*qbY`VXb3}kyHs`;t~mw#*3-YrIb6eeJJpGhPTX?ZpZ5vp
z&GWlAqi>9H`}E=V{_6Uh(YISkP~UtCJRz#5QthDe9BaTr1~$MzuC7K0vLk{b58FZu
z^Dsz)u31|_t%kS?f){FJ_9&!;J~8w|IxFoi&toPYYqjn)@I8Klj%*!IUYf&G_=n9N
z83g(9?DpfpC>{+|&bsGx?@rMVXGb20GpJvm)xKfm7^#7ORa$#8n<W_Y3~NxXvLQ}S
zq>J0CHw#F;95i0t?&6#a$i>XN0{q@j<0hp`R9H+IdOA5RAM?~+qwZF_*Emv%ZwCWV
zl6<GovAHS{6QOMD)$4|2^Ex`x<E7~<%6;|`T9<R-YK;Im@M=2w1F(fMw8}yc8Wj0H
z#dC?^iihtu!1th+3i_)E{wBw_q*vtq#qq1VHuJab-=f7SMskO->}Htw^|spicICku
zR2!=M{O{%E-wWcuGdprI4rEOM42!ePggHR)XR6bca-II(|B)@tJ+%Q3Ez~zy<cD8f
zOy#&(#T56yRSp$yk{83CTGdCjohsO%{DW3E%$NKz7IBUs{&@KptqPAd;t9pnJWk9>
z{6XUj-GHMCGNNnJlguv%`Q?R_QhuH>s*_>5Q(U=VEh_F?uR&U;>rryQLYWd5E<RB*
zy+#C#z$<n(_D4-qj=M)F8fJl=2@7gpODDp&@C1<0fF(Tmb}MO%Ol?=s$6g0c2b+=m
z*8Rq>q!sV%1+(@@(uBC%?K7!^N#65gx~P27@n~E0U``$HWci@=gD(Vj;^IuUCNaS~
zw+l^Dyv$9^B7OCGW#x}V8gB`s&FmXCbm*D{>Te@~>CQo?ajiAX?zs*yO^GgvZvUlk
zThg`xo3px?`0#FJ9Ie&%+f79%|3wgosQ#os_PQKNGKSb$;ks)*)oF^+yT8ont0B#u
zm;%#hb~u{99PPfV=FJL~nX>~Uo6kc}oj!j)`Lmi<!vi^)lRZ;vB|RUdTap#m%Pm3Z
zP#fQCG`9ltIhKD21%G&oJ}uj#pl~T%JkiajpKa+bM^3P~e`xq;7T~-ssz5lEz+bl^
z?hmmB7z=LxT|q~c7+Z<f@bfyw@e~^9(*;lVIOz4@jKsj6c8cK<GVFstS<K`!FVe#~
zQ;Lc=NlQEh%pLFS%dmZK)pejN4DcVHbLhG!;DSFDrscr!D9e>85erX9e7cvMEB7@}
zKzrmsQbn|7?Y#=V&_*(Z0X!@j$Iu`btpkEuLMQL|c+-NP)-+<x7sIMjjEgln6t3tM
z=Io^4H%#?((g?l|?&^t1DN0OPL9t{w((iH>FZK1j4iF_(l&Y-fDnQ$c_HMsawK_xn
zyS{t`*W*5HzoCP4!s53d1rE%w44Y{ZN8^1(SDjhb%QJ4JD{_gzeG|#5e=)z>ld$c_
z8$#|5_-{odZZVrwhYLa_W7`!&`AH*(uL0ddkxgzc>G1RMD}Jr;;qmPFylrlysCxNi
zv=i&vdp@N8hid7aX&f0*vsM#W4)Izd6@{F1ZOwKYVARnO#D>&E)LLXAzUw3^QG>!(
z8UH7EF}%Ya|7kh0R<qT3hpy?YuBY4r86~Y$#UkUl8|UZDWMxQ&S$!)BUrcN$w35%=
zob`g1m&Nr{vA3oPno>#grdZ4!A$$}qprnp(;6!Bnmeh4N()rC<O+U*JRJ)#3@m<yo
z27%9XygZ|?2vxxTBK6BKOFz8JOBz%F0(Bj*W9xpJT7J;*bPoxjH$>0FLQ-sGA);5p
zm=ylq*rYd4UgTOjfGOK&gSM8MVFe`X+PSXB_rIpK{Or$NO`ZX6NFkLMbHti1bdjV`
z%7szfmr+}976H_ysAjjqwl`Af6*0O)FjX+4(c!KioxDrSNq}(~73KD6^^)-f9{*8-
zioe8&ZQ*8FQMAeTYA{^J6UY&NUrmV!N2!9mrVRo$nF&&NgeCC9&P5=rI6?!DwIvG~
zZWov-+xdq_{AIrrQ0z0|k)*=b&L4la*5rPGZu>D!C~pz7rrU-H&!;bDnR@8GU*u7-
z;S!WDk=NDt1@!Wb^y;npA0|hD7^fluxxJjcd8>Xv&zuiu7>&PEy2Zqkd1%P5z(D7e
zMDjfxCVG^kIDE2g<lMnZ9|3N;>a!EfTKtQXKl*T!E;V^&G@Bm3#GtR#Xm%3E2y|L^
z=Y%=$i%SR&+Wsx>stU2}!S6X}^6Ag`FEj8869a=LCk0y{8eZZOpvf?LK{xexP6AF2
z0P3Fw<2oEy<?_LJG7zpXhv2ib&!g8@IUIf?yyN3n>4(-bH62XMkZ{+I&4$hd(UoNQ
zQcjdi*?f0i)?XO~BHA(??+M89>aV3<1XWk})I!kMKMIgnKHAi{?axIiZlRVBk<(y8
zTbIeej9;qaVjJ%BVBVCWf4;aLPs;>%(01D@Z;FYJr)sF{hE_oo<D|Q0gOnPpvnM^Z
zYYNqHt5UPMwNOEuBhaJ4+OS4xEZ+#9{<3cg70TyyCq(K<Dh0wD>I;QPm<tE4V$)Vi
z%iS0rwp85e5cC!p{^}4k#JB0iA`v7`s#DX0z`ggdD^ZZsN8r*b8^9iiwU<{g5H1^M
zbMOAshpW2>cRl@!w+%@7#9u;l?husF_SFfVkg4_K9s*VR^Pq+V=&$yBUQ0bTcmw5~
zzRquzXnI{qt0cqCn7vXQmSrnVXZz#b`lj_;_ii+OK0{!aBwmlIk`MX<f1>G`!5I<m
z+?-yNjbG!i_FA^7zAk!8S(7X%AHbSa+cx*$Gzi6aHh8pGiZXBy^+RY9*DIu<cu9*O
zqh?Tcp*WqP!wsy4P4Tw#-0_NHBr1OL9L0MQ@7w&ZqZ)AS=He|`720H;QSpl<0VwL7
zYW$C39>ES?z|@?*O~AF57vR#Tk@*c!63wc$jPfy)&~kpe8ed-~LFrGh#k;@0e{+`t
zNdU>YKd-)2=RPd{l1##^xmW=JYZsF;e&NI!xSotv1t|(astWY>B}3(x+llkT(Hdu#
znw12zt)(nF5eXlP_Ijnuw&@A_BPCnI39l;6#puPKTgM9R_8-fj>k8-9Y_R>A0$6yA
z2)X$s-M-{Qv=4WJx|uI-0w;zXxpUbs>@r-x4#x)XKu2R4cC_|$2$zAETtlX;^FhKN
zxYm5hHM)m3TP&cR`&i~Qy0qQC>^;c?ZMg=wv=NzeNmj)#@yf%@UlCGZ8#$)cJ#&aF
zu@m{INhUq4j>FfdD1C{-#5+GH$d3;z#3is1N_by$)2lWF=y2S{L|nt!;q&=Oulf;x
z^U(#&nzqzh#H0sb<M`|%c+nTN2I7VAf@gP^kZiKN4wZDvM2$t0Z0^kTDId->xS7fF
z`&td5Z_pYLaTxZWrpKIrk=uJ>mwb{pATme-ajDhlOBus=5{3g_G+)G08R{3(hhCF5
z<rFib!G!t%{?sKvh3A0|(w?SQDY>|Gk0q4Yq`@-$p=YMjX2r|QwW~wK^mwwu-}1G`
z<*!`*a8)&5Nnc~70}~Aq+7Iw1qW<Um35|7jsH_}!BQfO)KpKRsGch2Spm_&Iso{TR
zDqnjh6C>PkB-Xs*a3oxmI#m(U&<8$Ak52C|p!aLPF(xYNvI%N1p3+f0rK3YG-pbqt
z3N2ag-;0`VKf>duD{pYsTtUphE`saZg*t>$5$F%$S>O(p@;;hRd$vZ*1;@(BdY6~q
zrMv=ZEz}qEEeaGoT;JiI_gaTe54f~=xThc*+;CqzpPu`VB^IkO>A)K;0&rq6<5i4)
zZFX=Fzo5l|0}!l?KUu9?Tbj0T_26l&bjZP_Ag-^fjd^B$O1|yv?N5*ft$=8FmV`e}
zP*5f2)r7P6g0kfk7NV{a`s2ZZf=vcLc-5WaQ>_}z8EEUPAy#RKbWwP8q`F7%86k2J
z&i#zFK*+mT@8Q*~@6Te6uGw|(wtfDh3y{vq1h^OWvvE4rNKAejOT!^rG(Vh!oH0b3
z)7OLhM@hWy%B-UU1h8UyRUjPBWL#Tcwblwa1rPRU^!o5HkI$8a0mp&cV`T1Qtw^uH
zA-2c|xQ#!<nRkUxJxq^q;o#Jl^=E5euI3#3N}uEE*v(`&Hb+ml>TpX1VBu6%P?scr
zrbl!FD16ZKZ>YY2a@9XJC0j>VZ*iFA-O`*AB#H}I&0G+AD23gtn~ST|7$>4zIcu~>
zM?QL%2I3xiVYXSFgnr%PasD{^<8$iPJFlQmT7w^q%Q$z!`pjS#KIA*t&N01<G={yr
z@q8pkNV9SE4-4uhI@{@^$wg^fuNKnn<q#%P=`!npBVx2^W=C7$v(_fkw}KBI%*qM=
zQrrB5+Gtc1<9<DcE%rYZ#z^uk?{4#j0(>H31kfq(l1b}O%huUDbj)&ug@?370H1ev
z=~C({m93EqX-=Uka#J(9h!2?X!)R}Nw5gJ@F+799`6*)Ifn<E~DlBusyyDGl-`6y>
z(YHs>k1NlDwaf>m^H=?g?Ay?A2A?e9akOY$o>MuSJQkw_<75fW%C396p4Q8fE!X$P
zY&&oL+W2%#j^gD{V1SkX-qbV{Clv?JPhO0EKhbvqY@S@>t~nQ7fQO<hAH4Zr+e3p9
zgbfw)>)@voh_T_uFF!@8@KPW6Zsv}hyg7S7{W&#lb?{}hKV;F(<dGuDd>8Rm9*Ut?
z^t+Oj=v_v1u^QAsXA4myMy1JWLVeXeCz>MqjXBjx-_PRX@JMBD>Adm=o)%i1wo_+i
z20Q1<%R;u}!}*Kp@eAF7+rk7Ol5|7LiRYY)136L==Q&1|nFhjBZ<T9m=wnm--4SwC
zk+%}Rh{Kw3YcOAiop`;!Es*u>aO-eoxaH?V6?=()b9)~m?Wjf*F7HN?PYa3Sl<NI;
zmY#ib?~Bhj3+ZJorpqkKcNsEbP2GcdbAEMy<>Zy9^m?{;E5nQGpOK|+?&B)*MAXA3
ztg^bEO3e~JTw<M-rZM<M+^z$N{l)3>@;9%ia}!`6**qQpsE3Z-8pylhMOD$|7SlS(
zkSOxKroIgyY^_Up3}oF9kZVN#RqXN~x{!rJ+DCHfs5bdyXX0G$WXKT%8+^ArxA^oz
zYt8_(n}(x9>F@L)bWc_$O;W>;>j+<2thFqk50KgaLgHzyS-YQ2=TyPSKfx(%318!S
z?GZ9Su|0z<17BZ&Q=T2Q)n_D{u2G{?BdBOoTpt??{Hab2Peab?yuOZYfbaV{?6pc|
zr0y~S+A=VaV~hw9H-Q#DDC=UWC792z8bHBvph1QS>V8t+xwY}+*dW*LVRZQ7`ENI#
zZ3cArC@nWMWX8T?+m{K|OA~S86E%mdf38)|B2L-<lN~Hhzgiew7OSIKtmQ%{xb5TF
z)%{%_fwJRDcJf+HIJ?8>4K}ypmz*3Lz8H>=R3!zh2>bKsDbh<XC^-baOTr8h^>RDf
znI$Fc5M}3Rx7YAbyrxrBi1FEd-}IWuVCSL*WYJ)!SNz*frZUV(g|8GtW}$wjS{oll
zOP)$SU{>dhbT6xB2@m}DS?Ii(c2WJ9c}6JbG|b4IBr5l-EJ=_9DAC2jmR)=;QFXc^
zw{DQ%1GbgaS=?NGUfx_@Ij-kd2(`(Va~vvPzS1iJL)8y#Rl#A=JJ-W0lt!e=wb^hs
zQFCLcxqqxskO6-Fk5#_AJDDS0*ALuT5;df8k`Oq$Cj}e{X!?VLvLxi!o_SyCsUo(U
zPxqr2=gT)KqzF07CBm|9<pHnmc*$mhRTYSL<QLLXXP^F_k7{!=has`8?Hsh&`^NkT
zr3y4mGcHE2VnP>x*UJ4sBkWOG*o|wM!d?aT_P)3RrdqEwcsDc(;0W<Z4aQlT+!2CR
zem{|Q`;8=%cT5vI-10YUhPK${O)fu);GW-|>yGulOaM%SEUAHJ@`}3k&uxY(a;_Vb
z@w`)W)Uhb7&_%v{s#uy6Qook|^tPcgb7Oo36Ej!q4ahK$&!NsyjSZ_T2)8Z%$K>Gk
znq$yC`;R}R`eE`uyt-f$(KXNvCL(k%e+)~0AL3G)dQ5f_O2&4DdbPOFXSjFWDZQ18
z<H2e@!XMCDDy@ZQ&^>fD<gqS5(-#6v&9rD3-nF#;m(J}|(aIkk{b)nf6KQ=sG3~3?
zqA7YWnuh>fYapG>{A}Qw>TT6-a~XuqtHA(#o_T2IgKk}+sCwc-2ZRdQ{eDe<riZx&
zi@$h{%lovJTwFd$?zpcM*0fED(WeiP7^{ke(jAHrWVw(puK!w~;V|+%tRcd559;#D
zd;Z9T4!J@=kmir)cYFX5nnT7r`gk|e$mHr{w4Z%P+~d!ktKT-Ax=XzExRRtw{N|)E
zVYeC+WR&YjGZdy1hDO1!oPkO+&pEV@aikTy(jF%vHMB_acNcO}A8Rg<*B@<Vz7&h-
zc6mKq*sC_v`wNe*9^}>X@(Cfg*j@kAL<CyWoNVk%F~zO>st*N(Cmw8gjvU}}gSs)w
zu#2S5Vd|G>AK-u8cC)(4nU=L2PsCxo>72ueLfljxQPadFXjs2@DP3iK;;66m<juf4
z{cac|^W7-wBJI7Tid&n>JpOHuty%JOgeP%TAQ%3GA_AK8?7IDU`oO{ebmx)bo!rXI
z6+}@3K>Iuemp<$*m52=#>jl%jGu%Bo@hS0r_)QE&YmV?`>>ZAtsM;i(7OjRB(QDZ?
z7phm4kV7%xnu>{K=?f<{DdvqI&S*j{6lU|2t(~h^qgS)d7l&KM9laRs?5k&(9AkU!
zPL7Xua_kV|9MhcToy)(0_xGpwABE~VB-AF}LA@d69HPmmyc29fgy0b+n66t*a6WNP
zB37RuEH1j8!WawP!3oN?dXJ2QT;jNH7BQl2Zmnlj{TIG1hKJ_Rh~*qy=c`IaM=xeu
zLbi=;nkl4=74bg1c$|Z3QIGVR=Bp<Ra+=$?$VZ9IYMiTriXV_ez?Z$cPj$@VVNmHF
zgy?n^$wP_vD!l7YxY{p%$D4a<Umx#c12-Ig!E{E+rQ_y@Nad|Q5zu=woRvf`mvlPX
z-|o=lr(p%ZQ0X=>8Oq(s;o^gE10OYwGQ74VR-;n1$y>$E!(kqRTd09po;?~*HRx)E
znip>KAwdk<g<Zk|<qt=~YO(y(k7d9diZp0Yer0VEJ4jLwei?<pxy^vOQ>oeVIqHGJ
zffBW{elm{ylBhWF-@4^4buZ5@j@}YcVc!P5Z`8FsKt~Jig=P2U<X|4(s72`LhMo7(
zevdEPbpZI|AFxy428jr{&5f%!0@nJmP*o%>`X6!V*EQuzPbz1aO(!qO$=2avCTb3a
z07yezV`CbWAFh#xa$9D7=2VbSlyoYm%N9=_%;%_5iTvC;b!<?}rRywra>pro_rKTp
zWXw(xjyo=*us>aaSN_wgwxU4kD5@4xu0a~&xu4n_ruTZlFD7!4dH@p@uNe`yZ&0vM
z=0FRdm5pKAqF|Ws+OtLD6zy>SlEtr@kAh8F;cXa+>xq<S94)VX9`nP_#_lfJSq@S4
z`bddf5-RT(fKqC?OI<BS$6BbQ_<Y?QMw`~g3mI~!$IVxW#H$8Nad#)A2h&%xK{}sh
zRPEMMO`YoxMv(^U^r%~ivLSfGiK!d`?~$i7x!`;goptr}E81rA@~7o3^kMUFKY}l6
z>fYLQa*C)`zyt)ZYAXiwj!eM$-`5G~?El{H8qemI{_oAJJ{ej~|90Muj{YNkMEZs%
zwQ$sX*aL^NF*)NU>g5%aAD_G;(bfUgTw_#>Bjtqg(n>w@PlO7TYsZ5kweONpYUpRP
zr8zhduPBTDV~5V1mWCqfCSl)=l2*<J_@JcT(ca`wh->HNa!7gm&#4I>m2$562N6ZW
z^-EunP{bW60JTH(x}5;p@&m$lp1i#h-*ru*#eK=eq3^~IY3(6=RJLQ1{!>L6X)&c&
zL7XqnZUy$O7KATo`i8ACk7n5g>CBK$x%XWtRR>R(6&aPYTm2vuf=3dD%-eK-I#~k<
z^TS4Aq}S{<>2H2$l|f6o0r*3L)nerfqm`zqLioysjt3d^so{rGU(vaxxsY}uFq?OQ
z*;XeRtSCj4Ts;UHxl^0&su=BBlkq^Eu8{9tAs~MIFAK48eszVlR4$IjW`4ENdmG_k
z^zF{Z{4m&Pz6Jbf^-po^3Q}mnbF)#=okUr?r`r!nmOfW}*&HQtdqxIdi}vnO<?`j$
zja4>})$F-*m*WW+i_66gU#qifR~Lt;4a18=9rt%e8&gfTj`gag0g61}_QD<IFfVj)
z^8@Kh)NVWWFwq1szr)~3IbF&6oPPQ{1n);Dqf=wHQdA3KY<<~ycKp#M-R%ilr1<?W
zwhl<E_@ok~q6SAjl(OTyhY!osZ$2$`U@~pf?`xRNh-#KSjFR>I9R9eev*r7X#dx=h
zmb_|<O@55<R$)L>qZu{#^XLz*3~Ci~3$XmpnP-I5@<UVCg7-GW6rE9UF^BE<C(oa7
zi?Dw)+OE<9!}}@NiPXjE?G(0MDI|?Fm?xc=2RA_gA36ANc3MT5t2gpPfMk4-v>P8%
z)q3Ii%f6mjjzYKGaaIW|BMH<~b|c>X8%pL<!J33(Ep=^U2r?Bc=a>&?;TOtzvq~a!
zB}{^{H*TMaeThEz(&;qycC<g;lK5CO(s&vPaKa>4?Nn}8bykuF`5M)|IXhT;-n@w5
zUzfiWw0yRygLUvGck|WcAY`ilW0_SVO54rcE#xX&V2i)-StgMqn_lAU1<IqA<H+v=
zzQ@(fs9&QfB>g?lt~)^ckpYr@Q<L2hhL5OrySS%t=Jp0m=%*-#(h2LtN=qUN-k$8G
zuY|!~H!Rvmd<5$Gfm`tR4aXh87<K6Iq{nj=RxP2v(qk!1uLevZQ2I#b4Yc8@M`u^C
zQz^98y1hI6HDCDy<sXI5&ard}0d6RV&N{A2C@8)~R~SJHjys#M61(&)iMx^bjBN{3
z;L!8(Cj4gk#9~Cq$xCd?9ezdq;#0<J!r82v6eGM_j;cLeCY0`kboMXmT)@%mBi7R2
zM02eL++B;$>M$}oh$Lk^gLM1hboS@05+>&{^_d#p>Pk3A#FlCqJhCA^fK0CJD)Vb%
z-}!AVs*sj*=lC+lEAO|SCmp359(TDiW1LvW4o{|=zy7UmDbeHt(o`t!8mIh6Z<7%o
z?EePB@8y$HpKX|py`ga?1=c!dZwsFrZZ)a%S36tNm7TgzVpCu6xD$=(W0d+p!uTB=
zWWbv;476x@?n@*SQL~n+s)EwN{uG(ROE1q5J1|75z<USSeZ$R-PtA0T(LF*HID<uM
zo8t(qG(yS~kB$fgb#Qxj{sdT%B{E8qC%O1!c#&ZAQSGj_C$haKpNXHKun$mdEzRCL
zYt4V|)G%;?NfCVjFqUQHv%3sb(2J_QK=A{-G=b<HNnJ^Qv^oDak?%|kFQtagm0`AR
z;ulnY&6=(Of?fB46rHem7pPE=6AP=eLGvdK2oalHB%3OztJV0KQw!>&0Hudv2Q?|D
z=dIu{5rs&Tc^kK5N*K7fe$6nF^4;cVS1{~$9UHgv8o#!DiDtkf<9QUptA2MH=D%Qo
zV9MDNWT~FwvXBDo3pZeH4xlVnxAeWuZEKGr7UkB2Y_qA(@+Uec0gF-jOAPAVLwn?E
z+@aR!$C&=|1I|8uunM%&r{Y)O8_};XHAAX=eV4Q>GZLx-Gnn-QKjnSiJ_2+b-4g!*
zyYFx|+dUlb_5!F@QHnS>(5PNx6PfumiTk8!yOsN<(W`pt`ljB@T(_*6{7ZkautGhK
zwVnyGZnGl$i+{3q!d9#OyO1q%Zbj2NtrcE=d&=`EkBt$ulD?fBt;nwZ3`8%xbfTI5
z=q6*pbD)G9c4+&^tnuyihpa{nK+I&Ry`4%tZqB1>FhBZLF<7sIRv_fqlC^=&LX_$t
z)kes7Jwq7t<XHlZDiC(yvT}_`6aTV%n~bX3=;%dyHI8@w$UWPh9MS3C%bmj^Z>C>S
zNG{f^&xR#cuj4$ext0(6cD6k^sa4W4q^)sOhKwA%&pLO?z|Z^)Q)yjqCU1|^-_L8I
zn(KdTnBgFvWtusI@htKXYe@U!s)P>nbrtiNowSJ8H^=iP1fe?ptNvR>HIj+xqBmD>
ziy41CMxxE|9-!Wq>w_U76xE>le$IWKr>0v+EavOyE=1|(iXNEu(YjUnw1@YFy2);R
zXwklJbG@(ru@iU|my4U5wfF5?kJNfp>aUbz_0jvHFzuj!u(s}brq3O%HZFMN0|9{l
zUx&THGDF319NM+aYVJy#2=IJ!TK#una!_C3nJEhcK)3Au2J0CAw-GAqxk}6TKv3Jl
zsDXD&EQ#|z0hC(8dMb&Ce^qeTwH)9+RUHw8Tiuty;~}A4R<$i*iee%(X#2tb^N`+P
zQ8K?YA@6e$Q)|v=OtXOI-^s|M(#-xty|5I6X-zIYO^}l2)G_qwJPby-u|7+r0&a2V
zXN#ugr6Q;oi~CQwJ|bw|YO$Wzw)lJDNmG||biq_=aXM|Z8i@8Z@ojRI<9Ri?ajrxR
zd7=5j<Nd70PtQ2vB_pH8uJ89?;G|wk=75AE``P;SJv@b=3Im8wQGL!nw-(I)*60LO
zQy!-Z`h;k*Qy;3<sE40hqwjEjJ58nVppu*dty5MID&RsLKxd-LvHbM6+ebT1jbys9
zQ6WhcO+XnTO>e&y`%pui>DN8^AZGhn^2;|xQ5d~%c~NPq(0X`1Nl2J7`JXLa^ejDC
z3)VUwS2t!$luUP;S<_Q28EeQbgMciwz{&!Guv6uJIHnmp5d$A{*(a$e`#bK~<(s?n
z>`4lc=-e~>pyVDL*4QMzJ{M~LB-ulsNL5*-jZ+yS1=Z{97Vz?(Bz*d#rh2qHYNs7e
zi%oj|<oM2|cnF-y>K44b{qcvocoeu0<svHAH+qg-<|mBy_2KOVQ0Xh^CMRUiot!1v
zjz<NknlC`li;FJHQ%p1OJ=L&=uXXtHkpDfO7Kf-D@M_~?_U@l%DJu}Nuay(9BP+}o
z6c_l~FXx`Yoaw#-oea6=m?Nr5d^UA1BaE_;((|lS3YDmC=*u?#f$|HQS6tM3POkp7
z!eCP2SeCug3EK5Z{DeL7xaCE=a%fgtS8@`SK`O!L&E$#vEKzt)yR4jWVUl;k(U9&A
zws%<v)m(s%#JH==Kom8eb{&sg=O^y*(R_QS#A-kZ6QoFgBoERf$F(f1LK>S*3mcU6
zZrOrVy2z|9GCoQ~WnAZ1jh9+iDrGQa=EVXT<_6f~AKK=vu0h(q9!8a?RsUSGJW1dn
z8BbYJXwp=jVXscPx2S&{0C0!W%%CWLxhaF7yN_suoshBjM;vNBwc#=lvC}{s7a=o?
zWzq!t!@oHD8Or(q6@_+CppkSF4pNj#8@1Dsn+?SD`^mx1;2S~!`G(un#%#PlJ>ESz
zE|ht_!UeYH>?X<P9JUkDY(&tNq?c0nPy%qYcX$MK$WH$RD;8E!**e}c_;LejlGpbD
z%=SuUCwH~D$kIh~thTs?#IAvQwxIhvMnY@eh|<c~6bo=a6o{_-tvJ4sD!}7Gmr`n;
zqTBU>PD8deR^>|<(2`F+n^hHt>Y52&2R!p+t}e?EyIhIbHUG^8UP_L~ul6a@G&w(y
zMM~ViAy?!l&kb4puuw60ba;H+#iOctzi&a-=nz~@6;^q`r0XUiFa`{8b8!$BMzM(3
zve@7m!yl@nz+~XM6DWtDQ8EcBc{_hY0T`>h-0bbL{ARfTL=x_HM>Enc`~7$|z2qM^
z2=^Wx0QG;XM@im#@(EooHF&-Ds{t&p7njP9`@{&1&e3{60tdt`sPMO!a-IJ5$`HSY
zK)cZv(T&o|)=jFmpqWGtveA=s25o5Ik<MhFF%*PE>c4d1@4ydj2lGrewyLRD*_Nlm
z56U;8VR{CA1<L%IQp=ZDZx?jsdhp240XBw%yr-|JMAjhX^H6fQM=2+Iz3{Vt-Hf}^
zO4x)bs1bE|y4P@llzeq;O$i3L`ah@yFAtx)##1lA%l4&STPa3Q01Y-jI{PC-T+iBf
zGvpC<+!^Pq=mI)Ac(VVbjeE*6m5#^*sHH8IP6sus3l#rXlpEi4E#Ee1$*$NrQ=vxR
z)Y$v0xB4gAo*24DG3yQFH~Sf66!#zHEde5TZ#n2Ds(t+j!YnBD{#295?}_In*!I(h
zuk7Db&Rn;)y*%=k`kw@wgmS-ba@EIK<c{mNb|m{$d`tVfNnqWx(VJ3DvjR-2WpY4{
zbv*`!!LK`D+n|44TL~H78#8`$WZ4hXNVJ#G>Y&fGxo%ocyj=K_SrDJ-V1e@|gowM?
zGi2(dYKv0Tz=gHYt4yJ!SI8<D-{)F=jDEj+3$ss#Bih_~9v>|5a?7eq(*7!q)cCnw
zTuGxC5y>;sWF_e&zX@C9pz_9fJq~sQ)4G4QEJG<za)i?}d8-AzP7Lf!&yX_D(4#14
zC}mm?$S{4~5gP1|thE(vGS|}3Kzjl=eOE^;mSyb<>eZ1V%pkiP;BF2rf3TX?-XP*s
zcj}~rk^{qAj0A7rshUZL$o0Y5mpmDSsAWHE*B#oK&LfYF@WoX|*xfzV%HC<?4yDGd
zbseK=gbUIep=}LJ9<5?2+Hn(+#Dwonoa7xpEZ&bEDi)%K2wc)<EtpE`ktt6&Fob9A
zms)j28sU{{I9Pt}eEx^jmD<^Cl{#t^#?M;H2W}xo8WA@~h|x_kI!>q~Fo-tLOb)8N
zLM0}ayz}&jC}S<6Y*A;z`u0mO&G@48#b0o~a$VAXK&4&YPt=Cgd35yRgn%EwSVeXE
zlQ~>A^&z~kb`>9*o!y5{^B0lt+sp9i&@4YkdzyjuR-g8v!ZAaAwt5N=QXluC3~x)z
zYHWa^Au?O9N%~?8LefpL{Z%nKjTayW!S?$GCGs^Rc^EB(r_bh^`<RS_HuQV6_3Q{2
zXm1KF{@il7?y@jY)g7d;d_t<-GKP@W`<027Hme;rG=0bwd$BPTl1G*t=I`Xt3eEUX
z4!G0CX|-f)aE(s}a<NNiH+1pJZEAJFfbpce7rgY?g^q0A*!+4zr>Hbw!8k)X62Sm8
zj}~bI^7e`_C-pB#YY)aE;EC)*u+Q$Vg)Z?+tGC3BZbo*ddseZGnO}{z#0luSiA=QB
z(r=o5ImSfo|J_{~{_6qO7&47jvyuM4kDHrhT>u#I_u}pq+jB>YlNW+R3O|d16vLA&
za(GBnr|SkFGHpeK;)Fi+ziSPtWUkUFrhg2H9AKFmcYa0bC~Oc1oWe}=^K~z=L$UKd
znnev)4Ie1OX8nKMNT)wTMx(<rCPQ64y%iX|HD)s`Aw-Mglh+#)_~Yp0NHej$-zNvZ
zOCL;+f1k{!FGp1b*;(1-dj&9?lfA9!@$sM~LRU!xkuKfiM6WoF3HjH>EPt1;ySxf$
zhwKxIh=>NWmGU(0^1a&4+^`XLNSTJDoLvu$fh?mp)YkZlp2r>N9N7z!szjU2y*j&o
zcN^uuotN}XG{F6A`R(o9jRbh3%y-dDT+9FkF3Et}6!6N_&MRo_UX?qDR@r}hQTnD{
zeVQYsqu=D^b~;j6d`Pwhp-lApjF%_|Q83?mG<m;sn6KVtY~)BbZ#0>0G`s~hrS+|N
zlMH!AW0|qneq9{C!v%sStYuT&tNg)!nsZM)O<HdUno5;W6$yD?M1MS;?9Hc0gD;0E
zg+qeWC!mMN0_tif-L|9Wpmfrr)}6B`N}uf{SeK;hwM^`qUKU7i%>i3wA)F8TXR0V#
z1SvVv4zC^`0atR5CB1$5#Nd}TbB#gayLGO4$WBAOoY`SC@}?xI=7B3C-b}A|m9!O~
za&}sMFVcdev&(6?YuVGMdR`HkCUgoX7*It3l+wFa09KKlo>EqX6W}*WIAdfxOjzz|
zm1hr|xgJFj4?ldX8qxgW<jnPQ)+NWj1?SNI+dXGmu7I`;HOh{n(gtjs9@x27c$oYY
z)i!xKKb#*P_dn^gzdnV2O#Y7k?QJnBvqaaYTU%Puwmh_#WDer#m+)k`T-`wgE`1!T
zWzzDz+JcF4G8CxOm6DU(_jh?tV&4~FNGYfXJG-?!WVjKiM(v?erury4=L#)g^VD3p
zW+i%0l}Z7*430a0+j+7>3gD^cm1qGqo96xUFEX+gNlQplox^jaMRLzS=^E~4u%|ww
z8NbwpP<}M^dh}t>l2X9*6ZU|V5HWbgi9ObR-XhEl6-^rzO9L9tShG^MY~E?%VIlIo
zoD%cn`ULvG=m4;kLW2&Q;K*?7j}|;wYL*LDj%f9E!b~8RUv#}eMDsISPY(S*xB>g8
zcg9WHN(<`T|MGzsaryD?JO2j9O6H%mK^9}%_EwiA1~K>I7nlNJEXgp)zT5S@9Q-R>
zbj_+bR+`P|`xGSUYcel{p2ptn5QJt?T!Gfz-Z_?{8JtruI!)1!t*4+&RFi<_yMh$S
zJ|%y>AR%3#XL2|o5)O5CEhzH)O}t3DyxM4Qa`4A=HtRntP3Zh75)5D$u?u0`L8?9!
z1s+9sIkS#wwU@WIcF2o*jizJF#*A*ixqW+fcU$CFxFhnaQSVIfb<neTFZgrLxk-bD
zs=Xh_*BTCx4xC0R^#gJ=q~v`1#xLnZ!d1TmakYB)zm4q6&jQb#r0u;IITSbjE_;We
ziP_pY-WYH0Y?Pf*+o}@E=+2w7oG5LeR$#|F{%@A9A9Q##uF)#H%?nVV2+z0?MDn;a
z;5J-XbkU#i%*NQBz8W2yFMC-WQ+18ajS34l_>+@V@du=<Q>MwZ>^8?U$cf)pq0Sv9
z>6=%hZ+9m<o3VR2u(2_5D(vYnT%(T=IyL)!!fqqY{-Qscn;8DWpuku9F@0N9M|GhH
z32h)ujL^^}?xwqWtt^{Wpw?UafNI*Ub^s*MYnp!Ka$C4lE~}jIxN|7P6yA?jP~m}_
zaAvZxIzcxUhcEGAY6m-7C0D1UDrtZ^iLe!rqF=`B=7=sM2|uS`sn5_fkGvbTGi32R
z_>?E6p!4QK2jPC5>FeW`HEitgU7-_^DqLeHQVe}Ra-VNU50*(BtBmJ<v{1Zyn=mt!
z^L$v?603E7_V@BZs3FV@V$st*6oyumw5mXFaof)d<Qg4lm)eh_4wO=ypmbaQ=&@Um
zAlK)*b--sgL?>?MI=<8z0U4PtEs&pIp8fZ6j_`js#}aJ(gYyBq7iOEMu#%9b41(xj
zmdZVSxH`=|s=I0+9sDpgUYT#02c=(rrEzdhSFXd)Im$|J?ydR|Ebrc3-(B3v74Meo
zhDY#2T>G{!d^a@JVs9n4=ni5LWkV=IE{KD&!D7WW-la`*=Nv;T<8!CV3LPa(nV!9^
z6hcGw7Xu)|jdmV)6=AeChWIX5h;-1A`k80$*L?Dj?LMuLxtgbOG(CPEk4$w-Uvk(G
zzRnmFs(1I-;$yJBlE@E$sgC*mF~8Q)mfb8jYf~BaQS*XZdKM_u94_y>i_i%&F!WPo
zheC3DtZXtkJwKTJ8>Bk#$~q+(9O6~%&G|ZuJurzB{{D1ZOdx^Pp#$QwH2%5%bi!XN
zUYBY)iFq-D0XUQ6o$YCxTZdOdtM5c<@Mu!TT-xJdnIno0bj8w4bQC+!ZYjXz=txVG
zTSyy*eva{bnCa2=0}_C~YUv5MJ$XIuQc3-j`=Ye>TKo+X8E-x$tqW=4dJ6)tB23Nu
z0tMRL!&8B6R*9{Nz0WN`a?{~r^Tm_Rb1-?7V;7?hzMw{m{Bu4YdI;3vT#7jMxdCp~
z8OuckmsxL63$ROYu>+IA%WuQhFb{bNyR$7|M2j|!NixNO_HVaf$tEe~rL%`>?89*A
z`o`~mfv=x?7bSqWKZ#3KwuOmGM^uFnI-DorjrJzM(-Vi*x~M%<)AB01_&CSUr~i4p
zN6lWIKKX9c(k~B-({!d%GF$yp_`t{ov2h*I(KrXRajw=QfWO(VTva{FIej6EPP<)x
z%wXFpz<ooV3oL8Le{lFWb~wQY5o0gWVBF|gfxzTZG*2fg<}96qJ(!T|4xjrHgYxJa
z&t|lFcbkL{f4!g&rCC;Ya^tqtfps<8E1T6m^P^Pm$j)>uvyLB^n4{{{4(A%xx4geD
zjBYV*{cLA`e5fF6Rtq1Y8T`L`l>F=;)4jdPFae;up&x%?U7%qnpNqidUh{dcinLTx
zFlOCOn3o)09PwB8tP<wx(?zsW?OR-?;d+8y9wZ4P+!9nbPF4{n0(-Uf|K%B7@lrqb
zz>`i}UlN$m31j%2Gz=li7uQehB><N;wLT9zdd`uM>a=5*S_n6vk3a{Hj$ByVU#~b&
zcBXRUyUY8(TGqW%^l7C$EdMv&tob3|_|DIj2!DQfJU8rZ-YXZO66m<2B-NQ7&nlS}
z=`FrU;^o6z4UA}%HLJ5$tkiB%R;JnX%F#7%r%NH#Jkz1y`&ufmz8Sk!au68+{ykh@
zJ$#VmSjIWbGzQ++=KN%`H`;kJe-c^F5@?npm?0>sk$KCSciWmTq!;+RtBiEakPlc^
zGBHh=N}b2=>3l>-rHkegHQK7w=)}bj<N@i8>yewFZ#kX)dwpiiPv1&}w*o&~+^xGW
zAmqcK#3W*h`SlrJ;PP#AM%RFX@g&gSdHsM>sLM@1LzSKacXAK(Bzk+67=;Td80qoz
zrh6an6FFz`9n&3U?1A%Pp`4xOJ;it=lc4_)RN+VveVyhbogb^WhDxN^^R#R`O*KoE
zRqx%G<DN2N?k0=!MqyxuKczYpDACM|>kl}nyH{_(uWxT;@~dBjmR-Oy{W=!6;}?k1
z*~+k|Iim-M^I-!rCioFWgau5M;Ot)V<KJi#ZO?()Co<NY($1jd(Zr<^8_$n-D2?&H
zW@35q7bSS3-Km$_UwB^SpKL73?Ry#!Fu3goFaEB(UdvH+@-MP(wkR^kixVJqs2dRi
z|E-!@F!YrNIc2Ew<;siaS51bbXr52@clQ1q2j|O+2qBR47e_nO?Zfsr>2sU?`${RS
z`D}Az>RrI3zcx2CNSl8rX8(AX37_=(1}BY5%e|S;h9J;OQ0anzfQjTRcb_`beo_*n
zTcp>M@$Uy4<5o6hrsh*7b2dk}&;L#~HwBfsu$6@wZU1>x?MYu99@hh?7Z4pk-_Gql
z3++DU@QMXtOYEOu=bwPh`z_fS*CBsyb`1%B3Gp5K1?w<}bLGqqx~s>9atEphlGi+G
zN&n>6+>qji{I<09FQYSLkF=a!1ma!=N`Pd6<<3FD4v_#pkA>Wt$vL(15mBsjdVQvG
z%GrDEit=mbVe)VKwwQ;a;3B^E$GgsvJymA$dh&c{<2XBn`^aw10@mEs2cDU8J$k-z
zkY9C+V)CsQ2jh+HBg-8$z55Pns&b!+b<l<VY}((1@fJ$KHjJw8KKX2PvieJE?qGkr
z?VK$IGHt8I>i%|b&fa9><oC%qxs3U7lYUKAf(!uEl7)#_dd$ge{Nj)mJ>KeGbEh*`
z+Bw#Hw>CQBn^v)>XI-UvYHiNiD*UQ&b|4DWL8pdHZW%gI)I|-648(kSzZffHydAfm
zV&kqZV%(X2DNJ42Sy7*W0~9y5e<H04e+J)e9Cp&0&#Fk?m>wRu&9(v9uXG<51&n=n
z`(dJZx!|2_jeP8EJL2LG!TiQ%)+!2u4omuEgP#$d#soNqzwaFUQGcZW*XHUEd)WUG
zv^z&Nw7pzY%2~U^&32SCW$HNHGdPsG{lWg2k+bXk98X^8yL0S-9ZcqWF4u5vTgZD%
zi}vS~cRcqS8`V=XbD0~{qSpjFGHO#^O*b~i&oyrDTPM0Ls=S?53)4MCFqGr1jURe>
z2|lyE_<VXbf88y^Q+L2<&bR(Npr$rU=3I-{JCoHNcT~=nFn~-8;!=yYKOxU;p$MdY
zD<QV!N_6Ur!;|e7^XVT)$FxZQ!>P=i{@2OQ{Lfy^QAgq!rTW!GssCIxY4QulJH1Sc
z_&5n@de%l)P2gEO7}g;zytc85Hk)>^8|Y<wH?ac!XR2C&KHGD}dG0YsTyo>^@Te5>
zn1%SW_CF8J7CzrxNu`>AB*NdEhT^kQu-#>nc|9uf#WNAOvv9#mF4jI5aJVmQo`8;4
z`&x^Y=;n{pG=8<qk7R|<7Zw{F`+x!ucGP)O?U&Pd#^K#L*en@zO2M+Pb)4#+<2NLO
z-ccF1N}BQDgO1Y`u3hI>+)e3D2fn+m<lENvY_`+=$<G8ZZlxo_7^CZ@2^{t>Z|W4N
zTqrX+HV;*SZO+H-D~Zk%f*<Y7H(!j!fWzuO`^9oiG3;-}Z+{x4@xF7iQzgltO^=nu
zEjO#Xkh3_~5oU5g4&t;LNYM*UHlA3&n9QbMZJ|A6QQn>v@41}Hqw~}5k_f~i`pNu7
z`#TL#jt~EQd|}ZlE4Q~bez`MqM7vL>MuDCrmYenEr_UniJAaU}{v$NdF-GP*Ayh|u
zjz-aVn2&l>!}YpDO@R*5Nr^V6gyQO+JXnvdG>RDHs`AG)6ZvwMm3MkGX6!mc^{Xe{
z8OOQYUl&*|t`v569wO2prOCl~GPjemVqfed(V@jB)1BS~;6qm7+1Wqi(%M-7els?g
zDqyHm+zI|^^L+|@?0ll~L-ZC>PPhCh%abpv<6ulTlfv`wXAt1|*y=XbgkjIOkE2oA
zv@4C}wTY2`zxse5nbB?C?(sOP+vlUou6SK*nw|kUSZaQj^4{hj_g#Gbel@RuJ=u(;
z|De1JyaQpB$-aH0TQR)c<@Ss5<W$+S&+;+&R?@^}LAaC#w;8btK?p)$Ff2?SG7lhI
z8;3B!K7qAk&RQrM!)r-o(3c!zwCStU)2pnGygDQzGf;Z#^b{OqXZDU>OvW1$kzBKb
z*@<Gl_VL(^jpj|JEHT7|*-7V)gzSJJ+~{!J(G?Xc<X53WK%e^%{t&@~;e9*bJe~yV
zqd@J_bH#0Y4tgi0&kWZd{jr0BH^@38a5SABbF~j9+ls*tP+roS-)`nAaT`1i8~2qz
zz;{wX5?;~;pP>-2oAJtP%U2nS?Vo1jt*K*=h*1}0@)ejHF0%}usgV;iC9ac))d6sz
zkkmZRc>a2GdfYTVh7ElYzkFO^Q@<HrPm#3vdofH#h<ia(&0ic(r@uU>^Sa+pP0=;t
z4KN}$8B3{}C-(0?C34k4^nKk+f53l5-(nEnFIErR87A*=pU!TfP2){x+pb)%zQs}5
zzB_+6Zt{Kk#WgMA!2+_Y<osV<mjoNOarSrlY~3{#?AkPet)ZY-H-tAgPU--=hnu_4
zfhm=n%S)8;WN!}wvp0Ud@9PKS@5{Jz_4&P%on8cKyv@nZAGJXUpCa}7cyQ+H@=21u
zK0IkZ#Z4&ZM0dnNlgsrIRiyl@zuOn=@&r@3{UL3;HSeU3k>GWiTi@Qo)|gFRP4a*3
z1-kszlvC1&SWjVM8;A2*Oh@~~)9<_gHu375>!-nMXPXrwKFi>vEmaoWNc}qHXy3hS
z-?1k1qwbd+RL*#N-3dK_z?QGFa|~bEZ2l<JW;B}}G>1dW3?I{FsJ??-XKP8^<?VeL
zP2f5YvU_G&m7>MdioN5ha6&gk?3d%m&WF&(0&H%!N6U<t<Fd|Uc5>csAroWD_>PaK
zTVvxKT0p1xkXAW9>TWc(Mf+C|iwca}{SnL5f)~e{1xx-*QN?WXQorsNkc7^CGAZv5
zfrO(t@!Sb+asg%AP_JtQWHo?{djBY3{?V(+)^xldB{ufJTb-Mc-ssOa_M0tt3F;=)
z66e2p6~(pYe(V)?2)WDVAMI>yjT6jn)>cSAC?iQnEH|G2>qAuzE0H3@d7{a|_TgUJ
zy0E>r=35kQTP{<3MlUCOCm{8$wk>Avq?6aFa?sQ9;wI0AaSiC5bXOp&2M0%OSAVo`
z8%nJi-tqID1K|8l^X~Oa<0x&M@cLarK_)U^4Ivqpi_C5AysXl`>^Nb#S^o1mKNsum
zco<Dbn{hT)+P1x$a{kGos=%X*_ZJPUqP*k_;2_g7vaV3a=3wWb6%Xc`V2^#@8Lz%1
za^Q2U|G@YqccHrnny=l1!+td0KiEDfv8#ffZRfvxl4miLCq9y|c@B<vs{zdo3L_Zi
zhPr!5c;WVB<FLOea_$uBCjgbmhd)31a2S<S2YGiq+2{1ugUK0L)<2FoHYIiBP?Y#u
z*fZYW-mm*pb?$5roXQX!lk}@ZaFs0VfwQn?Iikr}R*^sD4`BkFywS_g-S<~F3I@bJ
zr4uXY?*y#*G1-N!->qIOqBGKOY`XgeUTU>1e3jX)7B&V2MwEC|EclDSjY%EHLsh^O
zav^$_eo<%_S_2s?SUtEZ36X>V$D`04U^W7Mc@B2m4Qwx@25}WGm;WSyuAO6He(OT-
zWB%IZoyX}-e*a)T^W&(>J5h`mZ^`@H?kyUfA=uwsJ2M#%P>qHe!Le4e&0%$kG_E;6
zU(7WdT3r}sxna$#%iQ?KvC-FS?_ohqw<dB+-D^BWSj=YlS{2{3RSvUx3-to0NyIi0
zR7?eDRQz~vXWt*?w6Y;TtixKH)J889-xIX?^&PjfVTSDuO4ivOa`K_Z2`$${Y(1yq
zLZz0ruZ~}BMztE7a$$5&7t&Q$Yvp3~P!Z<KfP{>`^>Lpp7t7Z<BL@`1=-UoX>^&NJ
z%e(85s*7U)0A@zew7#As9Ui!xtt!MHbuHc!ua|Q=p6F^Ym{rFQe~pFVvp2`4J-Dfa
zjs#!ruojxL%SaCA7aNduZx&X76F-n5o2%LRLy*{Qgj2SpkDB?gYro`mI$u@P-a!CC
zf6(5{RT=<S02Z)x@Y8<~O=RM8)4FNwyz#v0(=>Ux)iO3`!DvDuu8zHL{-%1ruUCGc
z;kO+yvrgK+r!P(qXHE|O+=N`V50b~>b@d+sm5xRAprD`Y1F2Bj=-m>r=W7`8{6!P2
z`aou!&0Zyh<yY4$T6>J<CwqH`uR5E}if->6ZU`P{)9n-1wSA1P+}s#<VMtzz4mb5j
za!x=eZ7mKD?KxrH&G^+|0vQQ%dUJbv)$LdB8@J2yyQZJ6#+U}_S<tQ<6m@^oWT$j5
z>V7IN<^IMX2XsSn>xI63;Vkz@gr~0Y{Kn?sN46`e>Z@N)#zZu<J<m?IS15tzv2`oq
zh)wvnvRHK&oT!}DW){EabXuaxhx6rdQw8!Lp7e*bDm`PMHx9}lc$Ts2N5^;L7vWb{
zv`rY`bi02J9s-;xrB53tuUEKMC}k&C(I=hV@~zSHlNLYlexD|p$+x>5t#H<#d?dKW
znAR3t?d~>TqEM`j&fi1j9Bpq*PUeO0#RukmgAop2bq@1Wsv<f`H-u>)E&Rwjz4)Uq
z1L)V9ZQ+_9gzs5y%AloS9lLuw|200pUFpa)XwzJH6&v*E`08p7&+gNnmomKkBT($s
z<Q0#tvy2%m^Xlvzwo-fh>kld|xT+fgGlp+zktj`HLCAnotpOFP`hLJq5?)u-b?2Bi
zOFC|u(il$ZkqJRsLx6{?hdsTIQV)h`2g=838$}k&^Th|z&COtHYwqXa^XFnomAnPF
z$j-$hoT*lN@PGI$H*XV$RqyrTZtvO09#YEX(L{8C-qu2BtM?L~rRiTejpCh7e0g-6
zSLqJbg+!SqnQZs%;thYHiM%NBcVp*Xd<B9Rd$9YN`e>Ry?s=N<8R~_UTFnB{&fEK<
zpv^(402gPUfmOq&e{$Re@`eB$4oDA7#Tnk^EETNZE|Yeh5FO%ixL=cU_@=HVK-KOT
zwX}CwrSXl2+MhI6r3N6iShKl{{85{>)lLkk9vt{cHu-c)lXkj_OXvV306UW?oxabF
zus;z(9ka#6y=sEFL;5QDa5#H0*=#69lGgi&FInxTQBwf1z0;xQPZ5l$)8HR_%`(({
zEpBTEuZn|ahx`3^5v6!Msh+OYz+vJ-@9q2%hk?x1<G_Y_EA#H({L5o)c>cRV2>(5N
zh8lsx57(s&cjo)!t>dP?GGZm&E^fvfSGPB)!i)BMB7<_uyS;G!4_=U>HK64YVIc@7
zF6j2v=Af=pImMTpjW-G$)4(5oJQZVZ*W+_<<L+H32)p4ogg4WEi;d)k#!+su9}6r#
z1A_4gdQISy$QxOcU^{U<WqruE*F)Y1Tu%R(AMKsYa8M44iz8P?ZYM8Wb$z7KTji9R
z8ZMN5arRetKJY7ILo;q1E9UAmn!xDj148S?;^q^sSJ$NHhxD8EM{nx#EX643S%<lq
zAGNR|#)YBL%GKM`%bMxA_R7~qz`uQ;Dzy9h;b#C9^~cfy=}fM@PoB`glS`~6clrM@
zb}!3uT}is2UnR_rSyq;Hk|mM44g)}tfQVZn08+|X5CBP(K!AmdB<hj+E!xiDJivK`
zGbrmp58AqW-rv72d+z|LN|}{aiin7PS<9DSe*fLQw4Bj*hw~Z;Pm3ib*%bnBuViwJ
zwMnPNG{QT-!;N}BJh=3nZgVwqv3P6Pd$0El`*}*+4WYY1Qe{5M)k^wTofTi&7gylH
z^^!ZUff1Pa1+uSHwQweI4r&9biTcbM$rU@4RkS=1E=n5HTj^HyEqSDugz`<D7cZ1+
zw1v((%D4yxxsAK>qG8>~vyx19lvck0IdXX;Yg~Ric29nan~~X_5>R0Y$lq41S4q!R
zE*PQ$=}E`E8#fx<+wxgqIezxDuf9pi$Y($L=F7CsfSfwYVI@7zGx6sk2qlXiMh;IY
z1vhs26>b84Lz7I9aGJi_-WSy?E?kU~oD^L-Ph96~0~_z|{W^!J=JwYaC}|ZnI}U0b
ze_6h(5KcF*A^2rqJP-DT!}u(H?p}M!zd$c_p05v)4D@$MT4x`x2N5EC&g9<pS=oCR
zFlm(w_)OhOiS@?Wji^^?!<f2g`O0E1P?g-v0p}0wHzk_Z*9WL#?Xcoeut(1d((2%H
z6JYYgJjmj4ukQ_Q$<H}l<tCVMt&?}+-ga7L(fMo(YNkYxrwKnko-!jM<FWKUTLY!0
zwZZ1EZ&0QRE7vkVd<#z%EFK|6v5pPvqWV>uSaFp!n>S@<|KMmVB?0;G4b1^|c4y0f
zD-M`0ddP|T)M1|&zU#O(c?f|3;$R)Y<(Q2hMvzLneoYbaGlt{2hN6MZ5<Inf{BV(N
zL=Ns>Cf6LcmFc5XmayUv32RPUU^srRjgy27cG265--f@MWkF@5@9~Z~DDO(~Qt}h6
zv4r>GI#FrQ7v&I|00XzPG#LZ5FC07KOCJ@Qhzlh~wug9rR&{_{9~?y@^tA}HaTqk%
zOs$wso!Vfm{_}qsE}+*O>QM-q^}J!nIr!?el;k;Vg%JMyI;~9GiTv6aKFub0UK<8$
zR%Lp+x`__wHnL>L?|1-btNY*Vz}wO|py-ZMcNx;(F5(pIpKL0^**MwRl}>+dBy&oi
zmOLb04=F#=v!JBLUD^+b%VKURX3yqFi!T39^|N(mgRBgA$iZ)d%(MJRBYuejxJv67
zCU>RzttKGv^}8ofg`+ZTPwo+Zg9tI?xef^opF7J?Zavj@ug6Vm@=VEyR2F5lnj<c%
z-Oxtz#WEP6P1|*VP3QtAx>_}}F-w>)>;mml-Y|7$hrTy_g+k^RZLTgaaC0AQtnh&v
z-6;p(1bZ&gp6W8`u1kB83Ro$#(lxPx7G-+^DeYaqTm7oqi0q2VyXfWg`^r<Gw{Bca
zVRKo(QF(zlcnus=p#^ce#R)58K&A?xQVHobYzsA?cg*<e^-675Y{vS&LtDIb+VJA_
z;X@S8O8|lzwdy1bcEE{#e_t#Tjz;?Gyh*diF=1MkBGy4Aui$(DtBPW0z}w3h=Eklr
zw*m3<eOl$<g_QMd0v0`usPC;lT3q_6@J#wozY$e72`H-HvTk7Zm+U+}hL<rBi?}Gj
z#?k|;$-~pa^eNfih8Z>W3eNUMj?>Fzf<qO(R8jb9C0{hv{nQZ@w)<?aENiQs@lNc?
z`PtvG=_N$%;`>!WEA4@Re=9>mf&qBoLPBx`necXVJ&{~>jw{w}7Fngpa(;#d{wSgQ
z;kr6~b&-=o{Ko>^Ip2x9{v{9t9+Y~w?esE^vYhsn^A$I;k-`8B;d?~~RV|O=);$(u
zx{+`MAzEPSXhGo)%L>G&tbwST%O#dFuRO)r0(5YKo}yhH#h!{vREN+;<;dQ3NztFa
z+cX>rj#<^xX^ooRlpd3?i)05i<=ZLy(h_b00>hShC3~lU!Mk@9UQ1K<OMh(&uF^9p
zRJ>@dowa=~z_$JvB5QUwgC-x!xu)YG8?lx0e4FnsK9nW<T6CDYZCiJ;oOeU1|E1_)
zd1MOQ@~2(h{gtA3PyOozX(9Fr8a>cx_`5g{E5HtToCS6pW3lcLSV38l<@FV}y`0#1
zhuv2nd`tA;FXRWyR6@>xYXpAw++p2Q&8Y)7#9?9(riv$s*)C4CJuaNcAfz1FO+c}J
zzqyJ;1iHyeEzXBH$%ntd#~V{ub|#ca42VllmUjhx_H6!a{}3a!;Ce1YzPUh(btRz;
z@YvrvSt7lWmhsd>V;F^H0!G4ifp_nB@P{&9<qg(YJv?L1el1GT(l&NorMFoh<R!m_
zNZ8D~YyM!sbA<TaLx1N@CUUt%(L|Eq!uFSbp!0;g@_OfZ%jj^LmRD0sqet<o9Ul+o
zu$#_0+wnspmIq<U@Rf9z{&JQcX(!7(Xx@_N&1u+N-QKR!Y${7xdLI-De_4i%6*2V#
zvC7v<UDWl5;LgoK8Ll4xC!H7G73X90r{k#eZE~-`TSc$DOE{=G&zm>2Ch4n#NvfY1
zG`Mr3A{u$u@*v+)z!Gk+KRWm0<6~{&JLdWCrwcktk;6(GP!cr8!84c->}2cU$Jq}H
z^{JxrgZ<}6sj2b#GGCah#HvX{rd=#_kZP3@9px!>AP*Tyv+JK(vwL+E(>I+OK+VVH
zE%Ul_T5*t=()_{C71QK$^r(o*a^UV1?@3y%YeM1=*Ays(1xsDtzrg`xX}I0vqJF7*
z8Q|(RN2_1slHc|Z`(<ES?m=O0&AWzl^kL&KX;%@=LrtVwJgv_QdiI7g3a2MR%@?BM
zbJ|4Yw2Avn-}lK=5EFl95lvO3B3sU-p=5z_acWlYx^b(q1S<W|!St6Lc{TzTNeSNH
z82vHDO9p#|SH`<fcmDTY_RPBd!58T;(37DS1tql4dxt0JXx*jsgw^R%-^<B5`iK%%
z%W?>7Upf`|!Q;w-WgpWh-XSQZZOwkgA@=PYZk{f1pcv>NYz=Dk7_w}|GCr3_%Gn(1
zKr1vV47bfJ(BE6Z)ntR4#z#ovB5X4^lyV(2Hk><aMtLbCLJ%z@DdO+-0?G%@REGQ@
zoF&JIBd&eU=gjoC00Z8HHpalExLm242oFRv)w{tf>PtlL2>G-^D~i1EhyK99e~RK&
zCO;}}qbvs&I_XNsGX8=}gqUC&JBsSX$y`1)8&@s716o{LA8Vu$4E9YbwdCOT0ykg8
z7GRN!Q?%U3ev}p`^CaQMh3RT5GM)2GYWd0CsoGWIS-si%dyCa*ZR@fQA`-R5G(8#O
z%)TJ8H}rJQN$HwPjPrP_v@3DOYkg6|qVFNJe>o;yH^8DtaK&YwM>7tv<oTJcQ36=p
zb$_-6;mW8oag`9WKz{|f8Z1F&UB{b~Hcpf3s|n9ES1=AlQ!nQwt$BtEYtR5tILhg~
z{O~TQSCQ^Py3~TxLcSm8d}4Rj@Jns&fwzBTnV!U0D=^kZ<fD%Ft-Q|?3cPkh{TBlX
zh~U)r`S_>Vkk|1Qy8U?dVRhE^iO_>m-REb%vv4Kby{;yP2L};wK|)`5#S`<7Cbn((
zl1-qqwlfL%^FD~uIhHu^z;7Ixdf#~|6kc^_Ol7HHn$OOn6=6G~Aeb!~15!Tw>y`jD
zxmapd{J*__yy0D^actZuF>(rO`a69JnWQG4(C?qC!^8nE^8Hmfw)?AJKK{{hw}3o(
z)Ny@XuFi_1Rmyw1@ROFtLD*frSD#U85y!>(UfnapabG7H{eepH^uf{^dS`fz&XB6P
z&c<Mf+xtC#6;E6|vw;^W5}oaCZ)|MVRlyIS&t(lRQ#)V@x>pqIFK`7$Fj6J^89CNj
z_=%|c@Mvebm^C_=uz-_ta(H~O1*;$4fZR#mNHoVgjGaEMfnaebv}eXoYkH{rWco2B
zjhBUChlD&o)=q@OB|%pXm}s>$77w^sbxW+*S5klQ>c#eco>RCNrvK?VNl-FY`s<(H
zk4SRv!ACT(<kAM-tlsM`*p!k&CwYfwb?i)g?y5v8Ii-5MJqZ2lv*VqA9e!&bB}Eaf
zbUL2V;Zrvyt>uy=w!G=Lq3OMo%+eQfc1(}gzuK|=i}&fe%8k9T1H&~`e8Cwu=0BCy
zFFw=DoulVUs{+pDT*tA$I#b{Fv)wH2eEG3Y*(y(GCd=VUyXf}1Or)HevLJALv|Br0
zKJ|-Ye1w)(To4+hdGb5SY1#v#GO@;kXBtPoTmbhzP)Li9J7Ss2^Y#D`BN}SQ@SL4O
z5PWbzEt-ek-%xiN;x;`{k%7Dq+2+6TzTorW@D`!T2ecmVV|9DB`j6p09F4dn5B><x
zC?4$eo7~Kt-1TpY%cZQ0)wuaMIm_!Fls=x&8V;qV%o~WS;<xovO-RL*R)fXlR_3vb
zJggPAW!VBEFW=qVzgAWJvA=Tkj>E<x?47R|TZp?Z48sdLn>5A`nuH`;?QyZ+AQfVj
z9qjER_Q~1C_sTttf-eZku?|5sa8lbZFGN#Jt{N9Nk1RkBb$fxkipUhti^U%d;54*P
zbCuz27vC##2o`lyCqNi-a2s_;N+&1>wK}{>x&%I*?QY?oJBAE*-0C4Rg>!QYo9@^-
zTfNhX+<D67fjk)X>N;`yxy}vD8I{_26@)ZPTp?dxC9X9#WciPC?IPlfPTgyLAyq29
zn7x|*eRy1`1%*{?4kxOVa}rv-^p97D6$G=kzU_L2F%~Ua`je~&Uz1eBlWzhiN3@H&
z8D~&U>l!=jL$z4aZUyawI~2b%E7ryn{4#2fr==G0NF*;OW$I-q)*mCph)JQFHP4=j
zCw<i(THQFX40dg+qVuj!Hp3dgTkXoys^6a8Tzqg&N0UD&h2h%_>i0HkL`a+GGt)LJ
z%<5L6QSyDnRpiiXvh*1<H0R(jtoE4-CI~c%-t@0Rua7N?)wv0xRyEdi%e;g#L)J=h
zd2Q@>eTT~Bt0l|xx^_&?G`pspDAYuOGM9H+OvTd%^3{ZeH|(<yAXYWCQ2_NCvlTPv
z?0`d)e6J{NbpSp|IMQ*vll|w1MH#S{1^OITi#p>eU=;!YhCddkl!H*S$6m7dV?5bj
zK~0%=dK~=F`{vB%2&%8}I|~0ch~e;}>9c}bd3ZeB;>)ja3gUu@olK6Y;~nD{<Uk3G
z2UjR%e49JZXy)O!ngy^bwVTQI>ep56JWSQI-;ZbJezAI2Z+WDmd0mG}JJc~tmsx21
z)75MI`{9yeISRZJ`2iR@%xCY~8;F~og1R>jumaq3sD#Ai0?Rq=)3ZyZ<@0bw$C|!2
z7Pv=xAVT5;{q9lHL=DV>jSO|f)eGR+Ob%p@$XD39@+i`1gIA6C9C*WBi{3?HW%R2z
zJ05_V8h~jQ@Xa7YIO6Iy*ku}ora05pHPGdTE@YgR6V)3tQnJ&&0S96dcMF6rvRVt`
za{*mI-TdryWB1_4$uek-42W29Rc&<46KdrYV)9d~YnRh1y4L@ok7tp5f_PdY%hxMK
z{oT>4(RIOM>BP&k=c~KCS=5B2ijD!}0F=g2k~c&>+?wsERFRt*0m5|9_=2(f8I+zU
zdlrAX_+P^t<S_X4h6&BTsNHF~B7jYN#6iN-zrUW~p)GD6U;k0uMbZ+)JHkEH{9c>I
zMtn)aXsOODMeKeh-v=ytasClJ8mpMmr~Vun1R6^W;v<8)mi2G;WOI9G@r(#`1hj}l
zlmzVADVtx$5gj0e_RM%93=1nz631lu`1<FM*N-%3zP(3)dZ%yNvmabTa04nCt+A7L
zp3YCSS}}`0cXD)$1l3&+?nK9PMd4pXR%%a_QE9~AD}S#DqAc3?0rmsO1@vt$aJhYH
zth;@%m(0Mxuy@Xf7fR}Z{z*sgq?&FXmpAcSow~mJqFe*FBYF69@n%7_{}#-pxFS5E
zoJiK{hZV-Z@Y)X&KKg-+m1@G_;IApbsSuaNW&p#tyS@8&XIEB{UlM?L;1AnCORf*-
z4w$;c#x+0AhjK=wtPJj(A2od;{0h^i`yymW&(zq(zs;(PrM@BOSZkc7pU2S$d1X^g
z!+bI|Rt7rch4H_;Qqyo$Hx>D}q8B)La=lbwiJ2>oz-eJ|S}LU_^9ilTqP4Am@{cRi
z+J?iz2Xm49ss%ag5>H3)Ub>J(X_l=0C|${4<tN#L^uG(4;Md}kUjLdC1ZFYmSrb#=
zdfb5-X4kuZ0L{JDK0B<QvW5D0u>e7@`U<s%CntB9a(7Z+jebF4KK{~A^vOxT$T~D6
zPf_gbS7q#mb3%1fmmNqcaIb?9cP{2}SOO+c+}jg1Td}N#tVX1Q8fWh9l{eSPlYQx)
zbQDQ@XIePP_Tk~Gi<G0L^%P(5eOiRi<O0uTdcaBkm3Df7Jdw_(+O(jA=}{k^6BTcf
zTA!}qxU;R7%Q1R%&17?RIeWG<@u@~ffJ!AIfVXmLP79BPUz@Qg5yUDHp_Z3DMW`57
zA$yW~-1sydVCahG85R+&DsQB5Wn3V+jVoOi*Ut1H1g^8WdLNXk9EMLJ6wnc*GODZ$
z8>P|Gy3xKAw>}%ysUGtLc~QipI`b6HC6{@~3=W`U3j-9e)D1*#af;I7s=vwR%JSz$
zIKQ^0>XeFTIC02UHX!JKVNhpDU=KlN(*v>kb1s&@kgQxqN}Pq&SrgDZQEyYD5r+*a
zwO}3vbMrfBh`-GfUY8_sH%k<V_%`0qRU%k<r-H(;Dx<gtbx)yiDH1-CdfnXKKiEBZ
zo<v#$(qpG`8EA{x69;P8Wr1tUQRvxy3n!~P)T4zX{iJ^-%g(B&l+SVY3p6@-INcK{
zA4iN{M8(<ao#j>*#EK=~Hs2hC=o8@EVWWi3{zGM5j?~{0q3)EDI}1*OF6Ym<OG@Fe
z_e!$Jb-fWV*5NBw`7g5<R|NuZxje0JWO-LPTwJg>>0CFsyMw_`mu<0~?q^e8Rd<(a
znpav36#8O*e7xA7?VT{w`_%k$v9F%X;Yn^GZ^$-LI-b2KhW~;_BdT01y~<+WFZraF
z^Y~>Z*mT_?Ogg%&bpgX3g?sW92BS(RVLjoyDJNh^)NEW+CApqvxiF0Dn_pH~OzmiE
zy7I)27)UO}wn*5?X?(i!o$RYucmgF(X)m`S$F62UcXezC!qD`&-H5BwKm8<r9*}GB
zJ}Soxs)NL7K&m@5HU_5=&De4I%ixm^4;h8~;(`;vb*W88GpkX!7_Esl#+xcWap9}f
zfyAHTt33TC9d?zD#s{M;*%YDN$M;e16TdwlYDR9T;Ppq=x-P!i=uTjRk49vn`8&g2
zIJ`Un&l03`P&m!j)-SufO98JJj&tDA&Txonv@2P0OPP#Z4a=xEM>Dj5H|Y)RV+FH5
z27;W{9Q+t_l#4@MN)@Fp;|hR-q=%6uhG={Kg}!oxdWyw#zpY0(-kNc_W5aU098%@8
z5Q#)W3-xH@3ky=^;1rl?S;Ud8NJc{NqVv`xf%0lNpn!s%y%#4u;#T<1Wq*EjaB}Ff
z)%W4fIWv6fkZNGgakTOzYLRON(#ONnsBn-e$rCcQg>|mKbDFf*Z8Jy5F3(?c*Bae%
zf)qty<A0!pGGesK@K(X>ovH4dp@LkAFOScEE5)LU59zE)gw^&}bKLU`knC&*51d=z
zn}F5)`0jO>mHpGc9hew`gageu=H(=f^i=9nH?+@w<ngRxz3=IY3kPL@^d?I0nrwI(
z{ySZGNLbc|9F9~&Vx$()*YJG_G9V%1cNmSgon}iQB<wP&H_m>e1(?AGx2dC$p5Mpj
z_0u9b6-!bW1(U~IM>JWNZ=V*CO{lW7^<#hb2MZz8R@GNR89POZrXgX82umN_VsYaI
z9KBOtnX$U@0K#Dj7-!?pq2URzr0&vM8tdc9qhu*x>~P6vdvo=QJ`JkR#Gn7F-`d?H
z>-BS7u<>o3Z0VBDv4n(|)m}Tk-KUgfBzDYHYj##8K_Gf~0|Vv<6)b01aWJ}Q<oNzg
zmV1q5m-Wo4k#!{AOd~$A_piD=URpsgeBrAgXq`}9UFtH9$m1vfz!{#vmnK}Xxz5$r
zg|_QHDezD2-&8=4j!k7%oGV9RV`qyU+Mm6Ayz_YDF=Fq*Z29x`hthReiW%ans#aiO
z@>4;eP<)$C$u+*oWR!%JdMmtVdDGT!q{;GO;5~V0mbUEOr)p^8lH_W|{a!>DI{0K~
z{^53o@X(hl8jHu5y*u8S9P4j_(8N>dP3YEkuc^nUIMvuyYyE6K(*d(sMyWwmqd;NA
z&q27;g4#pL`UBlgjHfAezFCug+#PBGhd1R6C~7J$0)@<tSt;=`EV*yTTC|rJ0*ntZ
zZ4Fh##b`JRoXZ?c^P3Y3YU=zkP?P^|5xgbh-W|l(!4hvQh(Y*#NDH3aye1C^_jeRn
z^|G4e<<4A$&E$7+Y_!T*Y$eeKP=gw<pUPAGVmNM17mk~c(Kjhr8Cj=UCcG23{=g3~
zrNUAfQn(sNqYt|&wJsvP22W!b;z^bgh6zNS$I&ufXeYf6-637PkeYED&o8hbE<FG9
z);+H8-wugrESDP%ApnZ?47eV%CYY+8R+rUK0<ZEJs%i1)GJA43@_rH2o}D&vyTl`>
z)dVgAcvNcExajHHS;`A=9-1D{TR^tIn+a1*gUF6y5-4=2IyLSfvprkJ5e{{=FOMgs
zg&Qc{&T{ejB9rakQ3Hl*gvd}}H-`o-WwB!S=9jC_(|c10#7$e7r*q?5_gFg)Z<{!i
z65vV2%H!R~#c`3lm)WkJ!xJF&5@#9Bx-!EGL`6!8rLNeGc*sM@uz#**FYRu#w4*hI
zrt{tw|40hnkFbG-+k7CIvcX{-u8!5fG3N|(-)qIo#ziusB{bwWg^lCcsKu<&5abyF
z>5%>WQ95RL;@0js)5OBnZK*7yAfZ2Rr*?PqIy(qTEQI=@XsJ--qSXR?e5#C5=R+-h
zKKGpWH?F|Bi?X~BocPHaTJ~T?Xk7vg9u@%jAzvd6pAsaVI?Me9gFI^w7^tAU{@#i>
z!VqpTS0rHf$}cm~;Fv1;t-3)~6S8*#hSAo@YZri~Kstjy6Fb&q)8VSvCS{KTh4Qk^
zO<=oxg@9_T`?w$^2_%QE%pO2Qz=c1aKPU46)w*cg@)X>RzRh3aU+M|%UDl-o#f{)~
z<J=ay9>D3nnhTt7r-;o;{M{7Ndec#O*bbFfN`dA^8HV0hQ0O3jEw_ZxLE97;K^ug%
zXNf?yJ*X=yhWp1wx*4ruL9reQL7eFSxW|)-aI$)3Y2)cqR=91uI;v~iy#A`f7`|Vp
zSU2U-&X-?eMOn*H)H<G3ENIfOs}Gq1TE3YImP3WQY7)Gx0g5I9=fT1R@V~GlO7N8t
z5t1PzUh(iK^HNi=esQLQ#5)bDd$B@pfp8#ue0zG19POdvX!tXccbIA#qbQ*%-T71e
zM>OO?TaDOp3adV+Q?ZhAK=1PEkEa$F{t<^3PvX=^Wt;P8vZRo>`4Mg!RkeSxVI0^d
z*3sfQcFMuQi)HDYv@DMcL5cgRyY9UPwwZu3N=rhL=e&>K#$5aCuV>orM%_jnjMG@T
zbNxjj6ot4C|I1jg5<eHU(4;kwmSMk}&cRjTYCil_70_Cq$t_A~(q!P%n#5pN{N4DA
z!eTQpFPX@RSKj1x^s(p_e9kV%*kd0*@cT8ZOk%t^lD$I~f~u5hAwfU7EpwY5z0LA?
zi=f`{$d18!%DvSGVork=mN)_%_44ZZ#`c&D<*$z!8rR@uxPD#wUz0$}6rL{8LriC#
z`>sL?Fb+2MHtD|ybW3#(Lio>q#3@s&_4&_|Vqpfc@77uQpNeT>P(>SJ^5O_@O+-My
z98=T^O<{;u`WLg|X<#wa(LgqOVADNY7>gy@^#Ixu3=!v@=vti}ieAqZ;-*<C{!yAu
z*rbYX7yR`{r-8O(3G@|<P=0!XzXPN>;q$B2<wvZ8K%P!NM|;y?kQ-+YOBCEPNPW6K
zOB!u2bje!mLcH?ex)J^~`|HW_UpvxZRtHX_<+v#Hk5YyRK^Td&!}Smb({w2u?^j9(
zXMgbW=p<a(qBwqK(<VwOFYKWKf3n2S02fq25`H~^g6Qzn6%)@U$(|O{`W+kfUDRf}
zNbWob=4n!&p;Cw3-a7Aqj6j<7R6l=xImAqBPP(x@oT|>FpLkvm1F)y`Ux-7cm}H2i
zA#nkH`0dVp*}ygDhar4^eJ`#$Tzy(V7EXjP=#|>22m`{R&CwGhqt68=bsU79A2;wT
zH6$u>e*2JB8nyvP16FWw^ZMfM_rbywE%9OpLw0a3%RlOBdy&5%le@8?%ijU^NlOyM
zQe0ACdVf{|=QM)_u7753LWQm3I0-fI2r@<E{l)L+mlea#@4U}b-QyPfn?F4!XXR4g
zSgfYFFwYvg6XA}-b4OXXbbE=?DW6uE;J13fP&^$U7+ht-5sh8*2Q7?gkWQ?n2qRpk
zi&LE)p}*rRhZtUhbX9yQp~dyMY*BFGmBr^|lRgxF$gtA<Z%g#zU~6aoBK-l<)hxC~
zwuT(m+jp=z&uqIw4m@RlTAF;qD;%yWh0hI2IhhKk_E^qwfw_Jaco%rTHiP2zs2{Hr
z+`iY>K{uGnsya$(+@NH0Z$-rH-|>&-HF`cb>8K2S@j#%n$<26HV)<Khu)@9i3)}d6
zi4d~}^~aP)km&#VOR29wEMPiQuQ4UeH0WS3EqTPmOG&6hhjQ|7PNCVA7SV$?DMZ3`
zTsq*Y4{<;kGA7Yx9V*EzZs+)j@eqOPTAsXrKa)mv50u43p+m^sgl|~;l#Nh5!gx&&
zWv4!=HfXEu<N=}L_N35jZxw%cVvL(^c0<hAsH|&7Q)nvW?|qkiMojEjfyAsb;P2*v
zTSCY1hBkLTBQ04ki6~Hb7-qC+Td9IB%v$npd@VF-CcYNF%<5^$5zR^ISZ1!s)pNyG
z4!xV=QR0*}Zbe~%*K(bE&96ws)~_Wa(^h=E+f%hFiO5d9QMh=8c~rHcbgFawaM`2r
zu|ig-DT6LspVC8qM$5`+m?16E-l}Hj+FRseYZH^Ru4VN4(fMyzVY5sPRXZwjglUw(
zgO<das=a;!zS3Yxv@_K2c6OT5^EGI%+$=F{*~Hb=8-Xa@&%ufU3*|w)o#0|%iscuY
ze2<)gU8`;WYjvmi{mN&1T3Uv_6t?!Kk})8hbw;^CJvCz-ZD9nF1b<T1)iH^{KeSgV
zU9U9GIygL8nyCws?T46ye4RW1cz@9c-(lkcsEad^ZQ&)|n*(+V+mCBh!VU%J#cW;O
z){uNSm=YuXiJvg<j>5B|30sCuqxO<`iljwEqW#kWgums{q^~`FMITcr7q*S{oni|X
z0(@F1mr{WZ*Wk$wV<5UMv=YF2df6FQSo)G@-?#>>O@NY~u{F$iws*W7mS1y@Kt{Kk
zZ)8uq3d>e+@vSmdyF4pDP7g<IIWdLOy+dd7pR{y3ksSyTED)T+C?#-5%f(N5xib0W
zS=uo^-W;{CT6qozc<Lvd(zdgd^{V7^!d#Q|d%P_e&p5%tA?OH>RF89foK`d?SL|fg
zYAb6bUW&)3E!yH}Yrf4jg~cS2O(j+p<RRzvFv*?=$@A(V>IFL|a{J@iO#rT_!r}{%
ztij#-nki%0h5N51d*Tv(PBgy>TO~Qtp~|%{x>l;jxSdP9dhZ<O2N{fr%7Fba2~j+y
z`9*WxOj~(d()Jp$2myv8P5i=M1FECyJmWJaOnWkWEA%})I4lyE>VK-Q=1B+Cb~woo
zbT!m0F=XPV7Rh8$Ew}@{eGZw`t~Qv+bd{pKXnn5wpgYOVcib@{a0X*eoL^F#Xzr9s
zTSeX6@F003r=vHR12A%0ydVQM(5DA5wLX<`qeW+x`vgn4qv!VwgMkj_scynH%mumA
zjbZUj*5l3UH-BfhkO0c7+)5EfOV=cF)fE#3-*=Hy#dBYt7y-A#AunuQQBm6AIuH}_
zOmhQcI~0MAEHbh>^sW{fI+VvH`<tbrGY;YHC8IqkgFL`8=p*D1QL4t3d2i^NL$m#{
z^e?C)3ZjufJMY$W@+;qW2SaqJD&m)jxFoo5e#xAjIp%3i7<3-RW_B39U0NK)_3$P)
zfn|aYcdqKc?fvjWUlhwLW3=;L4*d7u2Z%TcLr?VSpFu|HikXq&CH~_Rl@auLNEwmm
z2M1eWEKJ-`p}A_=ms}2G!gAN_9Y!XM{fD`~pPgT?nSd;jtI^=N#y1?cQk*ab1ydo#
zL*UoR8h!|rGqs^z&GNN@=_OC3W~KjCx_~2Vg5llo@8epS9~?ic0*O|NIJXoI1YPZ_
z;Ra}wdy7Fv<WLf3563r~J;ahUkas9ObPuk6xsE~NB|+~1pe2TQsihrORFv1Mr&`A(
zR-!khjoaIhrklIBzTwFRv2rni6~{i3zg8dsh26@rznhhQ*GfwH&u&?F>b7AkdFaX@
zk~koTFSibkT{9&ig8rL(lF~LQTBC(2Et>%eX~_`32&QX#{9^aVp;|r+9CcZyYUwO~
z6HDuRxr~tO?3bGIjbjp{-`+Q2P(k{9liwkzOEZEzLF7QQsV8xm*_rZm7iN#;sMm<A
z2w=nEuk^GlS&6j(u3bhEHPkN^Y2$rIt(QBeqw)Z!kb|_TyEwgfWbRWW<AFDlvM$5T
zX+ZeG59zR`^}JsvamZ`XH$77HN>w-L`L0FHMO=N!h*!I+$A(b6yUBi1SP^6cpL)bJ
z9#|K@#s-n!QXwbpR`O2mX-5exw|GKNK>Mho2O^{AiJjR^<^?jpE>6z624d}T|0u|J
zA~R2;c$l$lmmeqSSwR|ZJOSUWumBwuUd3^coL<m*pc}XO9OX;$mMUkF0I*KNmm?xf
z`I9dm$$Uk)%e$mU|KVY2ewxoMc~R38_A8Bnc6U&<Dzp>joy!_E6x5crGArp#IUnxu
zNrmhnTXG)pG%#T-$PimV-e9?<^@tf-vMr}0pCK;N_)zL?kRj?50y~@)El<&sKj&O1
zq_M;sCtIbLA=W^=fX%}ISVhpEO7=V{F9FN+zlvVL)Q9P*s8^xJy}4?Od94Q0$g{aI
zeaD~Gd5knbW-k!A?9bK8+{?9iA<F7uY^KT``$ou#LRCu^1}DekC})COKik;_W(77G
z^k8nKkg5p&|K=GV7jZ8toc-Xq^2eQsp@N_TuEW<-_)beb-h1q8Hz`Q}8(;k@;KW~Y
zy<vgWAQPI%-w%&xzP)^Zj|!UbCU>Le#SDjKySwTx<#X64yp+mGm44~>mmz87xn^^7
z6kBYVZIC==%_Jg<`T6v`#059$2IXT@|9l;g%a7pH=_B<as9N7x+-&FOr3Nd%IeT$v
z5=JJz#g&Q8S<~!>@}SrXIN0!qH2_}~r$aOrQ{EiQ;e9$dp6iDd2jJ0&6}q_MeSB(P
z@pZi3_0`Sw`Ru>xw|3Bma-?oEYkahN4Y=d?ml~j9w=%ABcJ$nPbOULwDbm*TFN)?s
zGRWb?)nj(4<sE?8E^3I9r~Lk@{S0*^X~gSsLmu9f4dCZ3S8V67eSQxCBsj(92K=bX
zdrcim<5~ILl#{mA8UVTpqFQn*HI<DrtzmQ6^Ov~t|F&}wc3<K&hS8cdCwV;|`g|20
z4V7E+qU?kg=GW3OABxp4Qki$0Cr;&Ez4ER%Z9B3EIvesG8{$wL!r|CW)-EhRbXZ|w
zA$3e8hBFy_^m89cz4<6dza(3_Lz8sO;rWFr@sAEs-am}4`<LQ=Kj;xvajk9jfXzgv
zJ+$OUGM-MxAQ!0&<3wg4YqrLGkP-u5f4CjNL+%&8`VXs!#rDZY$siZMY_J|ERpB~)
zyjuGm&E(oIc!E}LmuC^&{SBtPV*J0<5)B%>Qe+_}+{V!d_Lz-)7@bEGB&JAoEX<_0
zf{NaXsjNkpXSBdnb6iT7(k{abmhQr?_SR#-e30)-jO9ug6L{%jt6HMoHEoBHLlQjf
zjD`&E=((Dfv#bZC!3(@~r?NPOs@`ixX7E`06D9-`ntkN@2e({FMkY3@+e;kSnI0@{
z+<Z*jF|rMH!Rbu<vh+iqxFGEOGS1&vgc6b)I#y-o|B3HM7Ab@Cvok=p=%iOHlvT`9
z8EXi%U+h1V=-C?Bq>ZV`9Mh`pWZJC*dah*mT$bRJnRpY2;z2G8_tE0M;$13QynFX(
z3oGYx1vTy(vfMve@=REG$-?;R^h326j^b|E75|b$JZ?Syrg>NA@xlwcO~4@}@r3?e
zr70DuvQwYo13gN3(!TA;$<Nncc^WAo$@i9uE=A>mbDpPdg6~wLmXe3T?RmB<xSCDE
zP%W#dK;a$OuENz#MU6*Vw<yt_QRwhJmZs4KU4N=WI5O~<5=UiGnxgnh+2w5WFU#30
zv|lrI<g_tsjY|SWRUC)52$~^%S?5j{4|}|~1Y6ck(+tV(LK8p(qVu=UuXOyX$r1h2
zuEzp{wAx8~Jzm$@7*2I>xrYqaPKX51NZ9u5`X;8KRq{lJ7$|u8S<c1>jo0e)WcR`L
zT%3h+V`o=E-b?$H;7SE@V(GQ&)WpA{R-VY!N~G2U^TIsJ-XTtWG5dR(RjAfpTTDvS
zk`&ObHZdvHTk;wNsxBLsC-A>C0mwzlV3n%xYe?dhv6cs>RjbE+y!oo?n?WeCMx67o
zXsE@M4SkxV&ac@`#IH(A9}UYKzyEYxbwC=-Xe4Fiq?aPf$%1R6<U5M3e_h@G>?jPu
zO5sqfuK;v}bAjk`R&;!=u$kO_1j-?mT{l2L=mwx~%vI=gHR)Uk3Q*Kitd~4gfUAi~
zvP|@0rX?M7R!}O2>!m4m^9mf*d8MZ1Q=V1NUH2HY=hw5dB`wTtC87^@Rw|OOQ=7Zi
z_ph|s^|$AjNT=+W%6wTKm&GU<j`CpTRI|&eSultG!|3&l*fmE<SUyK|aR_!Z^}fQY
zCBMd(gsC3<0Rc1KcuaF`E)}5|S##@8Nwah4<JAn7YmF^|PXuD<)mYnUe^|PkCKD3X
zw^7*BS+6Hz^Q<#TwBd29lZ~=;dDmob(|pn_F=0Roa7#H;7p!4TJWNQ0ap>dq4#60Y
z!MGs#^TifWL;Zc(?=*kmyWX8Eev&}v^eJZ$+JD+(m`e9>{AE$u&3)R5{TKXXNp~^C
zBKX8zVJ(2Z)q2TDHlyAxaMUg*A#lPjET#Y1>JvHj@vAo%!<z{SM5Xgf*)fNG3?;#9
zR9!dJ2RBi9*XaN?mCs6a^v(>7(=o&a57m)`374Q>?B(ioRmwm8kioM8^CZePuZu*+
zgG<ZCDEvTcbxFX_aH3kDrsG|Pk=RBbRwN`Dx)#tl-QbTO-N7!8{&s|7_Zn>{w6NS5
z^I4Yp{Fjepg4-I#fAPGY+L9dfp(*W3QRwtS-Gdt3!rbw@4j|F%VdWMBQG=5al$tDh
znnoc;d#9MQh$3TE!e(>?jl5Ub4~zG&xhkpiZ5FQ#kT7O%6>1PDEKQV$1j}gGgu>jk
zLOQ7Zw~mSi9>0)MVkH%;kW~ifeq5@$EwHn;jXgJ?B@BgbrIh%?y8__CP9+|W&woDl
z$YtXkH>VAQ$m%cefK%7Soh<`VT+ckZEX@$zezKSpNFw=CZ0QxHY!CTMZ<s(N#ofmx
z2lJ)9Q&>~1Xc4O6aua7tbOq0X&?@dh+1MHTH2@3Jd1ZBTokQB+vWXA7Ex*%6^;pX(
zS%<O8Q_q{i&(o-+dJ}DL^ia3vo3@_W#5{|BE<DtAwZ;Lpu0O1T!|kntmW5wah9lcb
z3n-Fe6FXR5Gv=SJQBbVemhQ~+C680%u%FD)+deqhUAja{NJU8(*P(^E`kE&N>ICiI
z2l5X?Mxu-|{2M+2SL1z=T1}v=n4n;u$4R0U1a)PDPitv({)*4Rk2dw|T@N}R;(44I
z6$rD<&C);%eV5JA4>5?(c(fk&aZ~##sZ;WJ(~SiD*b%O*fGY8l!U~T)73b7koV@>l
zF7ACl&73I$5jQ#o6inKKr29$>V+!0|j~8M^C{03TcL7~zPE6_z>N)S{#Or6a1J~;&
zV2;lNot%~oSv$!(hmeIqQ6eI)ZvvC_U9dFOO37g<K4O~&-9RIf+mo%suF!bVY|rsI
zpoGZX^c5d|U~!|V-(BZn(o;)BImvfX<UFHIeSYJGJx3gIGHaMWf*)ZYS97}s<oZ~h
zIgefZ0TE~79x+@$Bc;#ZKew7vF<6L~hBrty3U$hV8cM0OFS?|&-y=~7E1^pX2itk{
z$8>aePE7~jNvDt;;Fh0d_)>k$KmN7g6{GXEX1Q}=xlYhAG92|@u33i3`1iRYdv8_j
z?I$OU_@>(~&G&O=kWS+;dipy-Mb{9)S3<3EZNahAvb6`j0J&TyNjS36+-g9YzQJIF
z5&XVV(89eBIiLWLZX>toO1V8PWSXgQk6ryIbogfWqr&IkCJD=Gf(K!+W=y}L`%JfJ
z`ny1fji8VvF_kP7heF+H%n@;1!Z1&x_Eed-FmrSTSnnc$N&*GFAw9>(jOm$|yj{(&
zl?IB*L!~g-^q&*sG-u<mNBdY4=!zSho-LDzHjiJ9?^Zha{-Tqen7S`p$<`OQGKJl>
zh1mlqs@SC7Dm2*-+Y|S-&;&x`BxS8b`uZW{v6Mq-siWigV96ry51IMZ>stjO_ps?y
z6ab#JM{vlqe#T!01yR$B8Zq$<d`5#wE@!sHt)HY>-BgjO^ejQ4L9y#U<BafvjuIyq
zar;CbB^^SFBreHK#lwhAvwF$FJKxNq+vz+oOLIK3HdXrELAc?IP!QD=&uc3E!FN)h
zBz8D3P{*vZ)=28*Vm4nUO)}ZWdPivxfxZ5=L+#rjffB_sIl4AbGux*7l9nFEta<PX
zE*LQ<6XQ)9pi!8!zTc);v!yC5IbvElq+<jkK*iFWm*y71*peqzPleY}+ymzjz`J?y
z;(V`Y@_}z*y^gnvO4G~|32?DrSjT$@=&wp6G8ulsqHY;&c4XRVVWCvpK;g5?&-a8q
zq~wq=U|=zy4uKkjo19sW0neasQ7I}VK|Z6}H|{@t1oIXH?_^K5vVHIPo%RAm@Nc{t
zEjIH-$g7;wgX_f#cY`F1x>!AS);)vMo@e09XX%{HAZ|U*n$!UUk!((ZknPXg<ka+P
zehUFC*52?e^DFoGF)7k$+FqoU<m0u`ABP6K6yv#w+i<tKC=Kq0t(P@-N_CDf8sJez
z5TEgL#!tT}bsj66O*S@3+zCh5u?^)|*X&)Ri1#A~r3GG_zS~>WHFfnRmZn_gdy!C>
zHmG9R@N0<_*1bPB9$3naTFu9!m&LTuuUBQEqN=+N*W5x|iB;4G(~Li`MSEwLe_p*6
zx0OzzK8v&KjNFICF|ktmE^>K4`Kx}BpZ*p1N-3Q2luX&ATU(y!8%E`i8%h{mAmvU(
zLWXDF>pOfYal?(h;uuW{Xc2M8ki>3Yzx_0yDp$+cFE7qA!J#piD+uxzG4OSA;y6w*
zy_Lb(rVouqb~I(0=s(F({Jn_F*vJ2YmM%|Qm}_E(_*B_PAzhu76prj#8?ScYhiu3|
zCMwq{Q<3g(e(~_S;eX(7X9kcx>9neDRGbEidY6?Ixwa-8>SJu-_NJIWRJ8t8=uy&h
zHy1%(R2mOpQ~5&H(`e;j|L3R9i?dY&lqQbhL1wMNMZpq`C>lECb(^nYi0uevF@P5i
zk%0SsQo)JmKXa56aKbl=uC5a^oYbq^B)^M=8gy!1Sth@Hekz_3c@?~^on9B>hg*aj
zG+~KJJ`?G!7=Cenr<?ip_arKy%fx`h!X`1%4+|Xt1+nN^6ju)!nJe+O^n3q=Ps#R3
zc;t06ra^;|UT@vspe<M(9K{y%FhWJEUQs$Q+}C2EZpYmfwn%;l&e`+p^p+UE*v!rJ
z!mv`Fc4^?R*<mP2fBbbA$J!T{TW+bW2wxLL{_K$<WKdTr%Yx>VgQyZz$Qm;izsZwL
z%a~e#$Ty^-K3hFRPtir?BN_us1b?Iz7MZaS-#wV)!<wTq1m=%E%KH4luW$nX;G-{7
z`tbQ*eMu>P{v+NH1fUB?`twjLH(4@O8eHfSYhIM*2yI=Qo)JN_FTk>w>6W%YJ&^zy
zyoKiMORqY`pVgVkg|$PHRCP{cXsJE5RcS=R9}j=<fr5139%>J8b&Du$@MOXk9$MPJ
zbT`a9i5_cH#BO~jCnN_!^NpH><-|p;epUhUOZQZ+v;w1Ur!*$#Gj2nDA-cuZc+RQ+
zrvCT)r*0yw$4b#SCJmR?WGo-bIA~n6d$O2q>dUj7>9SG(xztflHtRrFy@Nu$;smtn
zn>ds68)Fr3x%R2G=nZy1ZHdae3Bb{l0!MlYF}8^~SFMb__{Q4VCw0&(8LB4tcuWp9
z^V|@sox={9$mI*M?r-0f8nWrKloizxc{cw!rSNT9P$6=v=FO+V0TOv1e#%7i`$S?S
zlaaU1^Hh4p2XZR7#_l~kF<^GSmf0?N!>f;DUx)!m8q|XY>iT3JI3O?SU2ND!iO|<?
z&f@S8I+Av_f)!K7S!Iw}5GUm2@{C_+wj4@zoRtaQA2j^*yu9Ey-_V=;Sd3`P59A>&
z7c@s&{IIhua!`3?SrtrAGLQ+x>WD1&nPxf&ycu{<rFU?~a6IU&=kwi{O3;w4t9b<8
zyYk*CPC~kx2l>op881hi9d#;t0mpEq=+-_%%U*?vz0E8OXaypDDN5i3{G!dCg**O>
zJI{ao38l)}o@6(Ieb7%?sMqI?^n{mQj(46$5q9m6(!$#wgvL;n_LS@!j+xHUaR~eZ
zG6z74S=&3mQeN_kOuTE6HsFEr6wh9sKWcfso)zw5isz+QmDcl0$$<_cuLrNC#R!4B
z-s&c5ZBGY@)0`|0#5^Tk$&Mv{y4OS}NbagJ(@U(IB#FjK4LttjphKTTYA-V-wrdcs
zva0hV3w!^e|1d%X`f+A=%dkE5`vauia5vw8EO9fA?^VGuT-{~Jqt4Q?{K(9v*1eub
zXsh;*kDZ6+1C{c}9whLOhHNAt;nA)OmNyNm_Hw?=xWoYC{nw-X;MzM2|HU^FDYl@c
zlEzkRrFM>TMr%`F5aM;s3CYhe@g&@P+*{1VX>AjxHZgWB{v6qf)Pi#U#v0uyb+3?)
zW~<{j`Ue~VVBFdlWsWJN-NiyUDrP>|+>s4hcH1v!mz07$>KXTNzyxwvy8=ruNB&z$
z?$!!;EVk^9{n{xhaY$(zY>ADj<yzL4?CPesup7Y8QJmt;0+(XzX$SOpJdz>IoS+rt
zEDtTYWclD3g_CQ5_LpC}KtM3b+hef@hkoepTiL_egFF{P+@#JmlOWe;N=Rh}h%%w<
z>gv$~zyIgJ;zJg0kdT0bf%_iUj=JsG*MO%yi;iVtkR!m;h`0HGSjfwW``&6J()C$i
zPoFcHG|6`2=Nl_Op$-FP{ZQj?<C1Cp>MUfp<`3!+(jZfk;T4;krhFc`HuZWME?G5A
zlEE!DBb=5Ij6E5!fE3Cr__N>q>d$@C-T&k@eN%yTF`@tDIejzChuFJ+{>?D(|J*mf
z|FhqOnf%FX(iMN|n>+vqj-L9tkGOBYD-qUY^n=!i0Fc8{O~D(b&uRmodY6aa=J(<X
z7(*ZX<v6Ejq}UDIQj6ld!USRa+UOH^H={Q*A#J^?DMHR4DA}xwG7Ghp-o{@MZgMvp
z#MZuPu%Hm_&wMle(*M*qV{`u8HyN)#`OR2{KY2|S;!l3_Pd_K9>d#)YRC@fG^>mj1
z+%*$!95MR<ok8=Y8n5z5qMWppkYt*S1Rrc4P`S8ftQfvvgW$WjBG<)RNf34`#}(vs
zCHiW==$gp&W%gK&<?75gUzbuaJ|g8brqyr=q}ea74vz*+97Suo_Wf1qi7|CGU`i4e
zLmic(SN()bSCBR9JNxV5d>jKqvGZFtuV3S-y&bOR6c)-kvo9yH*QzEqtA~n^%8R1Y
z%e)=2hg?N3>}HhwHfyT%3s9QF5dF+0-aIbKH>gWNiz=r*^VR>U-zJEaYyD^5U3{{C
z`XwL}Z}*>F3LJ*MHJiVYa1fT&B9(+S_N#S$ZYFRI#aW9Ozn4P%r#DIr#ND5cUJYR@
zOoj`hP(4U_87Zv=pXD-6D)Ff6odBcMlzfy4Z>yaS^x6t{=K5M_(=tZg6#ms@q$Noh
zJMm4wo$G1c63*FQ4|d9As${iwDLdGe#=IMIQ=AO@+p`Dd(I@o~WKw3Nm!~JaH2{0$
zVY*`JMIfp`Bs9o7Gg}Y0%LL?uX3=##^J;&;zkcb^LR))EV<e;Umr(l--d|lD??kO@
zf{;LDL>#(zjpV0@+fhqw`5=9liO8vDy?gG|l3$Rsn12ov7oyc;fqx)&7!p;_Wtq}h
zC(cPJM^yC0?K;rWQrTMfY5I>bpSe6+Ar{`835Ax5ai@?=KY2;K9%LBHNTkCHPAzD_
zn*wTfL6BhuDedqIe&@^v(d^(AXh@btE2%p~vh_Ho{}|j(Z7gXrGl*cwJv#VgVE~QJ
z#Id^HVd=Ah)tP+?Dd4?dT&C7~gsI;)5KUFIN{{8WK5Jt<I`QVB4aM}zM%$6&kfIv>
z%`-QW-_wxM{^(Ph)JgcGPm@Rf4)dHl88T%(JfYP~cAWnl?_<=s;k5u3F4911e9}St
zDnH`~&))zH&RT+|J6T;EAGG%po72~Zh~Jhj9(A@@-pVUy_EQTR&I@$e$x)tb1cKUD
zk4{U*KzCv)nS*obYMio|Xxq}!Ac6M5TVpR8jbM0wq<bpt^~KxQAMX%iD>2p2WG79W
z9q=D(5)PPVib6_}x%TI!B~gH!@i>(?NNclWWc)P7TNkjt&<aAz>X*5Y<w^XojHg!$
zFb9hj#7rg6!Q(EI(!rqGLoy&7L7$x)m64Q75r?r)4ej|2sraYg%N~fe;8?Ip0{RfU
z8*VEaMN-+>`@1Jp39K~aFy&e|vy{TvfczO*I*Be>4>SNd*2h#uSIAI8QOxnqqx`LH
z7*-NI<#1IyMht3lq#O*JL%*U^?<}8>%Cwy0{&;D<h-5Psly-1*063r!j(aV0m$P_%
zUY<C0y0ahV8^iv(W5rxEkP)Zy#fuYZ+7dPqNfvqNUvaPG7q1hBSQJ}wP1%^;AK_lj
z2z?tEaQYXBhvJWjV91DxR4S&{@!sw%JPlB{^I|byM+XM&(qH?j%`5#N#x5&E;F*%T
z3i|FJZnYS3JSaK#vP3{9^qykIqpbKSX`Z>wZNL7o>cr}<)B0U$J9~L@dw!!>;4)PI
z8diR<WK1VX<(?l_lL7$fPeb4WouSHcfI2m{qW0OiTHmkC^GWhKa*0@VH}5@@^e)V;
zp&*LuUe_M~u(^ais~ff9%?y0*9B}*sotqNsQlyB#kntRM!FnR@-l-<t<L&8*@xhUr
z+WNspmDMrro5DJlgb!F$;0*9(TUGT>Xn(vAZ<usbq2V^mS1{f>$*Md@Y9F5|uz2^O
zF}fPeTH6RW+h3-PaVSBpxQZDhcrtBE5FE^_K{S&Y9Gwn&PJ(4eX-jBx1(?hMhY*%v
z(EXuhLV^8r+2iADE%^~XTxM{dP#j|B`2e!{!;VdA8~-Tf+Vnu`c|-9FjSmH7EfCGy
zGnP^ffAleXSiIHutBb49<A=x6d-hLwvCb_rU%BU&IE0fk-Oj;vD;?m*<7PQ(&Q#4}
z>1Wn*r_{VPKHyoT7^0}7DhLEM`CU+OX}SQAOJcPML#$p4yX$u|znRsNyp6b3BD!AV
z#w}?~{aB4^wj_OFXraVQ3iT3>$HSr@?f)1?Ro6Nnlz!$rd7n~4KnB;O2ALs;Kh1UT
zGF89>e5MBgq0h6?N9Ycgif(poUY`9w|M?>SaM<}Td+;O5Xz^-U`@{Pn)k;cFHxJ`a
z7Fi!%1y_(O-91>!^E~ISE~$tR3XpXcKWe7pkFKE918T5;9oEJb@59|GlrniQ^Z)@{
znJ%(?r^<40>%6F+l3xS{iQ51dAB#_L`Y`7dhop3sPd}2rb%jr!N<oK|L)RVLcKN&(
zmndC~lG%O75!NTBeJvmQ6qx?_=&^)YL1XLVu=Esz%A7V^V(7WjF7OvXj*V~yNQoB<
zGlxG}x}=V)Mmv%4y-g)AisRdo^{Q>7j1D#Ba|vNCXriMpR0FvZ(0<^7l$1HYXN)7d
z?#`_RY4rAjh?y5Ly3TEWYSUuMD^jElU;inhS(JNBgL4Hs!M{Ts#_+o_Xn-aj*xwxY
zuup#e81r5|)WN3qjU{9yvPDCqx)(PR>1Co@vE=<j%7^j@k_p+2+RDunUOk=th+=Y&
z<d==>p+ni%d?i(r@Z9seIdLi{t!_;KuXJkK-0hE16n55w_nA%mqc-yr#2$0&{*7GX
z#nqz>r}1VniflwBQlx!xEt@E8kUWO+lP|w2FiYA9Oi!JLj4w1~9EMbBK89Gb{D_2h
zcV691Uf%rB2$spNIil$;yphCAw81w|{YN;D<z;hTX2*i8)jQRC=My7<tl-?HOVG|f
zx9iy8cI}Ifs#HA>n`}SR7xe?^^B0G$<^?z=hBe$~mFw9nJ@dw8&%+pw$@f@Y^hUwW
zgb8wb7~Mtc`w(K;_%#0+cCH`ka;dMaS@*1V0~@mcs9br~GRVB>^Xm^B?qaKop73D;
zP}~NrfSZc~&;Mn%@e%5uqS1Mg3VVq526<`vrz>F2T#`@Amjj;QleAuP)y#28TyphJ
zOB~)s&)83xYV1O)cqN#Jz@WWs8eY?vr!OE}mZBboyobau8j*~&plTGwY7PW&{GJ7B
zTFU)P$<kB?Qf^enjDSC!R!#L}HHu}6F4VW0oSNagz1Vub7<LiejVrgmzZadMj0J$O
ze^IM-%ejg>FbS?l4M@sz)MFJ=li4J^+z0?5j>lBbA?!=(`(ZTZ`zTp&E9d!>D9!K5
zRY-%%8qDDgN2ez&*td8Wo7ayH68nj`JnYfCkH4pIYGM_vI{5G(AEiVF)u390Utj;$
zw?N2S+P~iaHX#5Mi{HM%FPB)PU2wgQmxB&@>dfe?bAEFzmsZE)4xcgjfD7Y}Jb!wG
zh3pgzN)FSa>@4>ON$^LZGV@D~iv<Q1FqRDJ&Le2ryHH-EWKWEGRqazGR>cZ8^2t|^
zN|xgK9;4DjPi=dI#Zw|$z!EKCYqQY>W_V(S<`0G^^eXQ(|6Ht%RcIrU44L};2VZh`
zKF_d0^pS%6JTFJ((I0&jR$XY#l*ZX3UcIySz5q0VAvzzxoA>&2BV~7!3fwn_%__0O
zj&HF-43aelD0h^h9;t7`VR&(!#$U0!X~7}$vV>H{sEodFTEKeBcjs^44l75@`P?rg
zOZUp9JMUzK8(fh=#4>)$0(2*05Wk$(L9hF39vItGZ2XbGk_UF$LPo3Pu>nP8Lq$rL
z7pW9k<b;=D1xd&T7#<&wUy}-t0>_8sGC^8H2Aa|m+Od8pL!qcL*EB#{ar?AEHSHBb
zVNPju3S_a@Cf9G*8=eK8M`jLXoICZx%PIx5yW5M6gq`|F4yasZgbS3Z`#s9_CTReU
zcWcRA_9<*}ESyAGFIOP(A(&3DZjFtf&lh0>b7e|)JTromrYoKWV<8W?;5?*4t-{g8
z70*faA$iPov-*Qxnf?}A@Z&Ef67^-q`S37o6~{H`D^t3+*fZgL>H`N{+cV7rr#>)~
zjSU<8Z*6kqH|b7Kxn+n#Fj0Q^C%^<fP20*0oPUV_nEi}6+m@+>oYd}yd2to82pBEG
zm>no8PLzdddpeHZrE0&BY1~Lgzw2q4c+u}h>IF9LZApO<1K>yP_(7<}%k#^hFG^Ws
z@#uX3AQ4R#{w9~X@|nMLow*kEr`P$Vw%mXfvGm9CAP<Rh%lXo`m_N_cTQVB~di|~^
z?Qwx=>-q6~7EF8j)AD$+7oFUzX}%yVzr=eO<FBXaUM6cf&xfuJiKFWFK89Tv`7F?O
zbD>5-g(Jx3V6vO8@-Ic1#1X7=pNrV<?=cO~HG#yV;^9q?8r=729?SpZvV}yCSi%xY
zlyEtrqwnN=Vwyib!1#Z7)VDU~GfnumYkxwsQg|UNab)x3J8a;((z2z214x}AKUqEt
z5vt0$@x-n5UusZoj{cZ#bW@O19&|bnBP?{2FoI_7_sU9Y&noTXr1;7UmTLM5_0bu9
zQWiJmVlnP=dC3Ph+^t{9vtgF3epzwfejQdD8b>)oZ7$w+m>VyQa+5VWjaxKU#uo7`
zBKU<p&@CknE>>jFHxad0CTXQ&py{4$0z5n<BtccObMI2=(Jq-sM%eyp_S4F!;rIzT
zkol{to1tKb&M$}Ow6?U$?#bqk{tTKl2vX^o%@^~dt<3t}-8x$A|I1RZjoN+-MG%HL
z-{(k&cWb2q*e^xw$t(;PwQ%3mfbZ8t-pzq28ob&jG9(#TB!)Q<H3c{r9LbIln4Cyk
zVAQ+7AgO&zhf{5(h4AyOrB533sWoF2UB?G`$U71Blnl?UXfgSa_IMF3uM|B1v~=8H
z9_g$Z0PBDotk*d30mwZZjq+_Q77EbKKR3lims!qtIs$RrOI_XI4ks8z;OW@!7BNi1
zX+jjpY`m~)(&27(ekmO^q5p8-h0%N0@b{l1Au4g#_zQtk8qH%<UFWBDKzdq#|3!TR
zP{J@0>*Y1mQ&$4M5pSqYH*7|z1e4V2Vw2Tk%8Lv*9@-R(!8#MP7brH>%9v8{nsCP~
z6<QsqNWo!#EIUQ_@4r-{-!~#!Y0cl$oGaFp+dO=w+&APH_@{n(?TI00d@=LTZdY$g
z=u~DYR6o8n`ZdG+r2{d#F(pKTkW&0Ve=KTj2<-b_WQ{P~l#Q(}_4T=q-+=_G8EkSY
zsV(>xxm>kEE_;)ppq4q6SXKSMkPjmK9usRgAL%wGa$G#0Q}b2Y6LY}eK*Kspx~}}K
zcb;1@YANbs08;^ys<xAS%_5`=j5%A=GUa|r*b<mAZ~r3ol$z=cxd5l0+6}?sx&|^$
znGp##um`Ge6{s|JYWZF}CeB^^GJlf6*jxR(G^9QgZ`F}*tZvWsh`mfqna+1@3cDwY
znQ~WQi3s-QoPi&&<HUiepHn#*-jFuKZ3JUq8b3>lMql07roW|Mq|1>-ZfdR7uqfUA
zYVK(H0zXvep9t#G-sGTE{6&mG<n5;<634;Xexzx7OM#JpnLTt!Q>Jr~-XKjgA@rrg
z!CTxjLFnSl*}D!>pU{^ul;Zf!EJHXOwd18vDN9Fo{viz%({nWO-v9>mYs<Ot#upp&
zOv!9%7k~NE<Q{Fg3Fn<Es+^Fa$8i7Um$`lsZcpQlZlbt+JEhs7f){c5E*-%$rfFDx
zaY0}bZZHj$u}f{yDbEy0y=Orhonc6<z>RWXPWJZZr8!OQQzOq)+Sn;N;m$}azmZ)j
zyMX4G***HzeUb+3atE?zW7+#SRDneiM%%vv^2<y7mMD=c-f(GH!XG*gN!};ht~@ID
z=Uz!Uab903YVBT?odqQYz<6D9qfDk`(fkJBYB$ddhW7!qO-$Q)7L=zBgaV0oih|*6
zbbZ9wmGOG@b>nBfy0|^Net+yr>wDGDj*<agFb*C%6T1B+EIhw_Gh49JTGpj+=-D88
zd@mWs?fX>jF$kI7J#h+<6{Q%Lf7u*8wrS8Gke00{dSz@?d$>4&&6gg8!VZUk+FeP!
z>@y*M6Ah#Q?M8FrO8)1<2;cTrHqIwUsZMaZF8E5%JUyaO6QNVTu|(7~;JiWow~v-V
zL5t2)aY}-Frb|@hhzN`QB(^ApyJez9oK_fa3p?{E*OuOQqE64lF<A6gsHGxL5K#HV
zX`CZFzIh@t<LPWSS9>-;(VRE!&2uTymrJ>E>)z&XaR~&A>35<4ph)2QhJ$r1mQdYe
zm8Ilmy`G-!zU$Z`X>eA$AM+=xb}x5D&_YfDVlw$Czp;(_4|uCGh(`V!9$f@jE@A1P
zr7tRTrgv$g3y87{^tn{zb1h=e{^UJ$W&tZ{rIL2E4Zj{lxVs)*$w6nMBON*Gy*h>T
z)~o0*l=KvlxJhfo2gM)#*SG}67B8Mva+;e<V)8!AF*IMq6yU1l`*{RWJC0ez)OL;m
zN4LTqBFG5Y7#(}<+okY$<R}egA-SIsi@`fK{kOqMRMOtZp;r-V{QO_@KC%D$!#LRU
zI}$F0)4gr?qBq3@e6~@u&Al5$-6}XsK=6OknFu8S*Na_r2*$T+&r~p0D_pV`qe}N;
zYXA+`fPE}wL%TcsFJ`+3Rxef1^ZiY5Ct=9ABiD?%^3wB51(iciq5S=8rn1+P!YVLQ
zOVVWYa`P>0EIXd0uy9Q3auAKp>w}VoNHIQ(+o|3Z&=@Xh`eP(5hkN^4>(BEdz+5Al
z$VV^JqG3P5QL`;Nd}0Lc_}78I9k)or*)NlOe@#}tb0LNWPv?7)VzNjX`#hemJUJv@
z$1r$`C}KsSjZ3|z|HMpOYD3ldxFO61FQ|`{o-<F{(dd0ICQ7TXgnQwO*wBC&D~5i=
zfCXe?9&EcPt;xD1eFz)gIo@6D&3{ap*Ym}}(epA3wg&hDMHqhHb8mM4A=qk~Q{G>q
zJY5#?sLzR#Ps27nNCme#oaUQ(Jf4lPVIE&RiFGETAM~tKyh?Xk-DWi1u(a%T^g?<=
zzq-)%0v)0rb%on07hCm~@Rs%R{9PfpPF4ggmHC-<M8$_L%)P@q-M_lOd!!qUT=>QL
zeICQvsY%y~TbsDlSLo0fZTrFK3lM*;k?m0M*6qJ3S=5tSb`@A>BeAt6qg+7Nn#v9k
zR+13aea_z%E9l(8ewSK)i_9OL&d{SOtcB-j2x;zdmI}CGxj072+R8<4XF%Aeg%jc_
zy6mf0i;bdQXkA`!4eZLfi{miZ)`#FJS&rkscYGisTB}0$099akM?9KM^)R{22$J=i
z#6>TJ6h-NcZI7q~xM=+;x~NskiL7DV(u<oS)Ip!C>gbHp?1sfARR7gikkzW!_s3Vs
zoUea!6}Yoq?Gt`t=Lg>;VV9J2u-No&^5z<zIcuslW-@=G?_zm9EiIK6dWa0*nsG>3
z3HtJ}w)NbX=4HUcuE1qlER`xtpQlTLyuqeSVF!h~X&go1n}DM~oWFU4UE4^%RrI3w
z6dM6WFP?-*vmVHjS#{2YDY(c4@u<fQK1l_hXVy;I8%VDdF==D2Slz_7w<Yn?ee$*a
z&%XBnCk;hm`tQ%JRWP6;CcunQVe@KIVyXS-+qdb`vAmNHi}$oH9(oDc`+V!&o!h6m
z!d1CXUR3AAud}4&qw_~Pu_=Cfk3bry#5bL5T73E9r!rbkN}oYn)JP|1Md-kdS^Rh?
zCA<6qS>ls#1T6lpQ0^YSdQ*@{NOsq3=;OsE4^PLG;v=;a;Ypoc>VN&$Zmn3^>i0%^
zHRS2%h|+M;G@M64+S*?>^;iI$IpF(FQht5aKvFhf`(t%wy0XkFcZ}+j$S)1iM6-q*
z+OW2d^fhhNQ@6A9ZiUZjxwNl4Ph7wDS~h~Eb#5dk+4NHxjla&TcX|7-ld7x6R=4qX
z{+T%ZHd&={&h;QbK|Bzo7AHqq@$0toV_AxVmau=k-IDL}m<@Q+w>n2M!(}t=AnWNQ
ze-)h}{ls~zMF0xzD*LY;;*I-@ON^00p1uqk#A4O?0K2PS$J}d~%<RzLNsj;K`aF?T
zG_1r2V)$1VShV%8_V?g6ZtKWFS>Np0m`X5e6Ed~<<@yq|Fuc6vKS;|-Nl%pyd$c|G
z8CPTI0JkF!xw=k((}!zyUEyJTS46&3@~hp{r<Z_odRv?>20WD>jtzGwpw2)_vDY8l
z1$6)bb-rZ2uZjk&a5rYWX#D>5>gGNNF1(mFy}tg0Uf#O?^{QyRwh!oO=+t`gGBk$S
zplwe||8!WGXXaTGpa+tzC%B~gPejqmWW`fiKl!&TpUm&VGX~ieIbJ2({h%gS6Tv@G
zlFRG;69pjP+CNcDp(Y!hnvcCo5c=Sq%s#V(2WL<{iTyWv2WePg81jdBUfwb3eV*~5
zLkB@X3MwNKyXPu<CF=e;uHT2zE$v5Go|d@@3im@8uQc%G{p+lo1eHjWF>w46831!@
zEABxO=sIz7qag;JVVl<~j)qc>#JMG=|4jC?%{3{vM4G9PDSSxtt7>*c4e9-|d<8ZL
zRjsQ`&rzi|M=gx&8*PjpzezYw-#7&Y$|~f$>M=CoN^dqE%pZ{T9SUgH`fSSZ09}>W
z#5@)|v~zs>!RbKjiZ-mc<+!%pYY(Aa$JO8H)RJ24I(YQeP`PNF4Ym{``))QYSU;}r
z3UF(Ah7}zmD(xWwOZ9E*x7Ki$(bXDFEnRBy2KyLN^RR&-^M*>tQvrOJn4x@@yVC54
zJDWn(;;N+)Ubq6QUmx*Ailf~_`0Edk2Vrv9BxNDq1hv#6Gu^pv+_nMTg$a|$KWOZC
z@Sx9XAm70o!k4@WQ0@Uqg)RuZsMY%mx1V}qlzIXbUlNWG?sP-HaHM+k4k2mH!~rvT
ze1H7099$uB-Rk|(Bq9-pgEYZc;F=C+I|ZGLTc#xf>iB#TOd|qN@Xl#lb%p8k;~yWM
z_owL@;ALYvFs6vcLjz7snXjy2iN&Id!#eWL*i8=6@VG-I)MrRi>7@tF`(eZVCw_W-
z#1L&z$b;r4&(x@pc5(FJoc*H<l>{HHV1``Pu3xV7fk!yVSg;M|;`Uu}cGm*>d=xwO
zzK=FCSK@M&=vs%8fTUOF_iwU`aKY%tH`nzXik-kz$Dq4EoPG#<&*=9*$ET9+;MMP9
zk_I9J+@QU*E;Jqy5q$R?*R-VK8W8zlzoHlTE7Z@0v2lH&6GpLjrT!p@I^yhPRnRgd
zTho8)Vm#1%&x^kUGEa&N7k5TgMIk}~?p_xbMg9glD)xW+H~p-8F?4^(Ub_&bJ7PP-
zGsK@0__fY?WqpUv;hizl{h}aH(5d@hE^1g_p6nYh{nN?bqCRF2&Wo!;mnZR8kG7yR
z)0~ooG1$F2eKEXMDNGj2WiWjLHLNa;uv_{!!^TZLySsgSewN5wz|WX&?zM7>{H63U
zS{nZdGAWUNfZu%ZMP@{AUB3k<|C=mkVzR_6DWmbREfcQj5FB<^P0f##BZrG>eI{m@
zdRH|7NRO#LT|FZiT}!ylEsP1>6aK7D-{}&U6B`juA7x5QG?$wq;z6J?GvMkiHTLM)
z>Z5ORK2kIhNs$RRBEg9(o$=~VfZavko=(qbCpGo+NKnbdTw`Sk<4`jl)ns=v`y=nm
zJ^fbW;M40=yrye){0BE1nL~qI@CYDCg9~Zau?`cb{f6DPB}K<5CtRQ$lH|OK92Xay
z29hoLshN)C!Km58`R+k_LmmtcN_jo=+~IN;Z!aJ;w`r|aMJ~NH9K4G+ccrGZX&uH)
zGU$1+#@gVrHHENMu_Q||u>$=$IVmz^vJ}arq(dh0>WP!;^b;!j+o;f2Mjqwirp~5k
z#9cvVc>qhhe8{Nnh<^EXmKYO9>bX$jTMca4bR{VOHbZJ|OV{%7GkMpOB%YY^J7Lb%
zX>m#w@TGg=S|FV6wtK5nC5p6Y4d`!a=I$Y>2c+^1(m3J%HILbLwxS<ne<`Oj+>@X?
z0&N*;2YcA<Q{b|G&Z~-?<&D3=@s7(_-FQ-YL!tML39aiN%S{6_0-iU>M=PzAjC^X0
zJ4{o=%e4_JZJV;W<ngO(5z>A>`4+uC?;T2DFoBv<ZfHvuxC~sKUqqMX`{t&2F^Q4<
zL!AWwWOeqw#JW>!HV8Ir$Cntou=Fh$9TOWt0beDG)10{<EqKk><azrfgCCD}o^Ky7
ziOTWjw%e9g&O2AHuYa>Y!F|Lf-OH=+RSY#lGzLAqy*5jF6agzBj{bo&&@)H{`4`D@
zIL~)KUP*hlvAzX3Y2c7L_S5To+QO5-<p7G?7awkQb)V|{(Jg(D%tOo#!9$q!w~~jw
zy+@FX9(rvF&n{X9u_bA%XIhPJJdR>x9w;~Ofb=DpN&x_QJ~I*^9ogW;mpKV?E*v%!
zXxF`sDJ%#cnw|aI>wjAng8uJxO797fSCsXOvpgNeU81ES^Q+2GG+C9B2`jyUej}|6
zg1~_gY<=GGpte^|$hCo2ZmGCS&SAZP`l(`v&(L<Ds*L33^PPUy{5-%6q;Gc_bWqlj
z!krd7wFfNsNxKHl<pt3jp3}{r@UnWz6S*vN8#%JWR~T`!`Rbk8hoTLNkxJ`4^V`%E
zj7&(o%|STSopsXVyB_KIVU~mTNoqg?ou6N40#ru|`Z;hoLh1u3m&Re!6p$5RY@uS>
zEP#DxxbDY?dO0tPD$Uk03EWl86xZ#gA-QlCNr3WI=(w+~`XpP+J7@W@ZBKtrp;*}t
zDprR8*8KJZg&r-MXU+na#tu9OX!(`2T5>inV5dTn$Nfy2dRR3)b$-Pjz*g(*JObQ8
zU;AK)8tD#S;~;@wL}y`zhW<3YU)K2OaBr5ZeMx!_Fj!sHbjXnMT%Fyj0ZE~r2st1Q
zEP|=~Ko6I^iSt$cmOMtO*qYDhNswgZM~Pd9$MKH*-umq#_XqcP#lmOXnk+TDl#3}T
zkg-fRUEU`kS}F1x4($}gfL;d!K6{ies_Ibq+WRlG!kJ!3<B}{1V_j(86It{DqK*8W
z7Sg9qY=@=G3x$iBDZ8lj6*eq?{g%x+>K;XYPkc%{mG|cqD4*p14F#-KYDrafWSo>a
zVL`Qf)+GK?qB)-T>MX7pOUPf}Kt#V0I31Th=EM34BQPII@6?*}8@vjo$Fsk0u$>K)
z9DagW>?i*u)R2f~;JJTkelF>_7UZxV$vm`WX4l3~6CLy!@17lu!J*zzKl2hdCrHeY
z6-w4${vH2#qe%9bFdHt~t7pTOLhA)Chv>x7UZ>T+4o(l!MSDi^&K)XX)7-=7g3E!n
z(v|`Nfg$?#5r)Dq=M_hfMxltpZ}==l4kzBOEO(YCgHu18@a{C=rT_-dkD>HfSnCE-
zrcAKAwK+LRAr99B(YH}K+fTNuP?3o;_%vF>CE2^uN$vIZ+2Ee2x5i@KzSfh=nWM|v
zNS>-{k|!#&Um($Oz&%QFxhJ`iGSO#ms~?p~Nm0-eM_zqH*NAxr@$-kMwE}pqyB$rt
zDwYw5oL}CZ>sdUkbHIx)AL%fhxkG%10$1>QvpVP4VAD1v2v!uNbh?}Yjk>=)+0`ar
zseK#S-Mz5*0I;jlR(<te_Vtc6?`}@nM(vilOqKK!-d^-fh;Vr>UvP|BlQI_M=)}m(
z+2P5??#||9I*5WUI+Y+$yz!+6lk{L$8BQA2yPWAk`2a4$vJ5OTEJnU7@pcN-wZ9YS
z0Hf*K*+ryIZ^Gg0C>FfkB&!vw?i~UJH@Ei>b`PHaG~3<T%Pgh5s?H$ER+xcvBRp}t
zfL3FLZN8$`DWdXTlS?t!8X+NPk*2jcL9Uu^jisQ^h}~YTX#KFd8-|)Z5#)%|Xo2I^
z<?HKdBP0l36!DOyt`vY~Uae8rZxU$1Lz;7UWMAGvRX`8OnQuct$}vnZv*rOs#Xme#
zVRsvy5y+wR(X2LOqHvi;=REyENo5yGf8=f+C;bk1Vyxm(OhPJ80E%&ddNA?n+^j8{
zYn64frRYJN?W>QM^(r~M+4OoU(pduTzq%!a|9FSeF}elAMrYlGA;*iwu5ja!o7zqf
zPP340r_^DF2|~#g@G_t0-iRU`6@zWIX5$p=(Ej92uio4jW?Z@ov}fV}!~v<HZ1cbe
z71qAPlj90xd)vMV^{cZ#?4I_d?#eSh?`e*0De$rZ9tx0SOLjJ&3u@E6yek5T1{@;2
zv%-<h#io=HM}w^QH2x>k6h>-|*hu`}XUVjhhw&~b5O9?;xtB0^K^Q)l4C4xf$Xy8W
z(}Oa6$D<IL#mDnU&&KgzY2WO^&zF%6CnLQs0+h8>{_tbs5VQ!A$rVe@dp&o4WoFOU
ziXjv(NR)Tip)d02=eoP&#W3D;lCw~s#k%!g`EqupAJ8S|sS1N11_%_@E2Vvr;m%!K
z`UD~+R=J459C!{@J|+6SjA1M<)!+)Nm(3yxU+JU`GY>#Z!}EF%W-umsN2>1zMttkh
zn;-bicc8wPJ2*A_>4$oBFjrziG`o4o7)ee67j05@+QcLCoN7tbFC5b%MiN?HW&ion
z+@OW|{(LLL016NxT9l7k{^cl}p_T8~vt#OUm`KdY;)u-u<DMhhA1+Hk_ikP{+Nu%^
z>W$hi*%}Ygm|msRh4dcQWzIkj$$4p+p}aVc<vN+Keemp=k@1Vv3N3%~P;IsI+*-55
z_tInbeU3-NCVhhEFKkM!Q>rETiYVoDZqLtWs~fV7e*l))+}YqO#IU!JJL*R5ZiqmC
z;v#CH{@@yj!QAVC8QzqByiwWO`07QP-HbQJiY}rWuM3VjL|&G-FwBtdPOsm;9^_+?
zXTMHdU=i(hj#<BEnBeRR!eqW8@==}y(=6F^Gc9D&iz!w@th%l3ccPfDdEJn$#A{vN
z)wE$fUY}oG{I+kfdXqvAP5T*y?Eut2p$Vn1vXc~rDs)wGi#!5PLf;)VV9>%_v54>W
z^hq928yck-g~lqH`>mYj#(<evzUrky)d#Ac>-#yN;9&*J&h@Xca7>V;eanMEcE5XT
z;U8Pb`~<!e;&G{M?wIwUUiiZyB`u!k*=T>B$NAgy56L4Go-dts9S0abpjQoI!SB>;
zv-neLwCFM*QWK+xvv3@m!UcpmdzNAgI9O#aWExh)7jJA#LYpK=f&X*0V!Y9NZHxe?
z^j1{$a+l@Kww0hgEji+8>;tS%as&&d5my_0H1Du^xsL*$_50+_r2Ub;==M3ZrPr;F
z3j~3cA)apl2)7S*w|I{=Ha|Ej9Nn^R#rvG^KA&&9eXr81nSgfI`$=d#4Q<pTRB6f6
z)Mt6_5lBb8lVIAr|9!>cH9`C~O>v%8Qe{TDTkp$MKvWruH#};6=YWVpK1EdokP}xr
zoU^jwhV-Qqw0I1U{JA`m20Lbtoj*Fef3&<m^Pc!sU<K#)w&M`v84P7(n_;&v@|O4d
zR9w2rxY~ZMtd$7Og;eO{x##^*CEQ;z+}rv*J_GsGK}Tcy(@C@_1ul#LbZO4jA~kM8
zS4!<3?r|1sWlGq}|Fj{a&L#i+OX5+g;4}CY>J!D3;NG-R%C+OK17#6wtSahS^jG2q
zQ=ckf#wH56%!8@9*L7r&W03Wzc<zR+D-4`8c&2YJ-%4{%qvA2_4fqBr$WWOZT|QDX
zK@Kc@K|H+(e!}$!5U8yfk8uJ@3-K>MfkuP<^gBn!)k(prBu5&^^EWQ2o~g6V2nO$(
zZ4jj1h3+tE(bCR9JE@Yh*cM4kB>ozOF#Wep@yHad#B+l0)jd*{CaO%k>t_ZOkZHLY
zXX#0q0(T^EO!^c$Jcgi>9Mt2+W%#bov4BTJrgysMxIdnK`CWNtupWDsdYv-*>l3n{
z$^;&SSLWpaceK`Ox8fM|A`w^1#oU<RTr66UgKd<|2N=-ozkT~nzNmi#GO>o_Ev54C
zYk9t}zw}LAFS*SjWVdWK_oEaw9ocl@_eyds-CC9b#Ns&*=+oNMJuQ!?O_|u^I(jps
z(T1B&UZZ|da}-3y8_BpNogumzk>@7E$d%M&J`r)QRIYv;FC<}aLY1iko;)LaGbLd=
zX01TC{)l!a`O&d~BzUz)DCf4eU!ke!bYM$YDV+YNoPM)29t2X(Ag^$)J(4)R$mq=n
zH{f3Kr-$0{p<rNo&pZciq<qWpz3CHiu8tfq8ZwR%S0Z#c^Lre>wDucJLeNB~vX1{m
z`!)`A@qBwxi2CWQjxf3NOcBZtCtEw((eJjoW?JF;a+&U_IVx|*9MZIgkW>`cg9J((
z?ar()4|;j8F_(OTpohX19lbX<@$G~WajY^k4~jX$R6Iv!c79Ajd7Du2@nJ!qo<@ka
zSJF}SK!=3U*(Y6PB9+hvf7mOCQphZv812tCmxMq_S$^^<o0TUp(Hv{<`OfakpJwyr
z&ivnGO?IB`L~Eo$a0*%RWpQmsXR)rsu-b8u-64fLCeQg@1mOGf`($Aj`!9C7`QQTq
zj9$%mmuOrzpgDd4e8zasS*3(Z5jk>Issj^tH4Vkt7JC~LYptu~_29dGK`6`!m;5ww
zk<NZwku=YP_CYIe7!DkhThOs0yYF*@q^g;;*?)VIgk37>O2;XcHoZUoDKKJqY0p8#
zj#h8(if&rBmfeSVk`DH@;bS``oEXoU8+@IXe@7&@C&sD|LHxx64yLNMaC2ffYfpiu
zsRMeJB89%DkWV`}r2eK!m}#&(n=|WLHU3rZWd5&t0@xjAfpSd?hb18D6tDaK)amMr
z&74m9AL471$cwkZP8;{qW!P4mtUx#ASNJ6==SmRU%)L`jiK`zr$v&Bavh02aBtd<z
z^v|8c{w`cS&aN2X;JL}+2Y`-e$FC5I$FLyT;N{7SlVq~@4I?}$WL!^FGs0hd6~cdz
z5&cUK4qo{0gQK7;HH;*x>7CTu9v6n&!(0$7G@i13=j{Eaan__>DTMvv$;x~D>`>hI
z?ZhbaftQzQAaUxTO9o`R0sS4ldCp^+oCVYi#Uy_b(K@2r(QYz>DVwVpdK>bUC3ALy
zp}vkz8e+K?sU!z70z2KD11kOGAFAF;A+d`HA-D+!A2oq2$xg0dcglHZ0st!Q^!jqZ
zkVmCdec|C0SSe1dPP8|tSA~)qRh2B312yKFG`FY~&(ps>kv$#&!Bm?-XdWbwnr*9`
z;ab-u7!sW+l_`Eq$5gym5Ny=2qlGRByYm-7jndWQ(~cf#4>>QpR6+8Z58usL(k2Pz
z?aEU1?i2F#mlQ$DKKBIdAGv1qkF1$*u{E3!c%<Xi#M}RjMKf(SXNw~8qzJ8FN_d!Z
zckz45v@cHKV`_L%Um24^-0(KMmE`IRB2TO=Z`q?s0HOdu67F39-tElnfu|~+Nu95*
z0|T+U6l4@k!KVHOj(gbNW!Ow3j$jZ5mwc@IGB_dCckt+rk0RJWRi4$q<;Jjs=BAV3
zSTevl6~sTQVnh|*nGu@j(X4~9A8y76NyS^5{8WrS@7RU0E`oKXKJlmfrDIDiH^od^
zc}A<YTHzsN1f4A0^uTp3teGx&rp4SeRRYYCtsaA);-CPezDX2Nb~fPI#81xgm@Iv1
zQ3MG5-7$Z#Er^xX+IHcjVlR;IQrJAaz1%D5&oJC#Ju0%=aH^P7tl0Tm4x1K4;UHl<
zae|$XCZT2N)4x4w-F52E#7q~3Q=AN1&u*wmIju9B*WZT8NtSxhC>`Z1tDR2RTVD+e
z9kTZR`EPgLeVVPE8l5THn7eD!!0N_8hFnqpV~i^wXrV!GNmX%Tlig+t3*y*5N(T|3
zLCNj>PEXZl6JLK3)}VQ5@w|=d?2(?^Th7qWYuJ+ixj;*sxD%=Ge0GVpmM1flBqn#d
z*CnVNH5JtVJf8RGRW#=k*qmOO@gyfbNIeMK_I=_8&P~gy>bEeuluF_&@G|`?^qw#L
zobI!ANqABdUO-GZfD#3R83fDmfJJWZnBKb|6Pdo99R(4WS%_VSjAQX=#|awy=&|B_
z_KjCRuAQLavK&|ooSewqRJh<)!$-QI&;dI?2HZm`2vhTTB7_fCvmmm0<N%_BSU1&?
z-6~_&cDD})6<b%RdnC#=W#c1E6@PeHdI1a%<D`>hA1A?-lUba+&$XAZP$I5Pe)o-0
z3WLm!0{CsRWUHI>h-=sRTcqb>Hoxp*_!9?5o9hxhJPBWu@_GhmaefCI4WQ1OWT`*|
zPm0IMnk1%ixQmD9God_vwvU^b{MT?vrWtUVV$E4^6;%S-Snm!Tq{xeZ)AMXX;u=;w
zVrDRGZm;hu6j=sX&A_eG*loO%;>85R&>pM3ySli$Nf^{wfi}S^|2y@!Qu)$af^cg{
zUK#=1S*HsgWp!AGi;{mFDpVZl|7R<FzmL9s{nnME*Cl7Uz02d79%uX7kt|!IfRvM!
zB}x78(e=kEd|pI9AAbL3X}<wOOOvPxi{#-mXg;XtyTvM;&YtUQ6;<5-PQU*SG^6K$
zs>_-)D>q3YCJ#?R>fH?I@v>MzkJY)!WAcf>d^*kw)lQCL=h(4aQ!oHtsnI_u84$u$
z`u*1G=el>H*@{f>)4^==s-7^0gL;lmY&M~;#JB?pzMLP7mEKq+Ax%G8P8O*ftX5mP
z&%FvZBbR3$gLLwEIosRmc4>eu!%iBfJu<f5quQ5v$Agg$9vEasbGGoFELxfJX_bS4
z4$m#~|JCfrXUU{;#)m(%Te{cekecXG8sN=CKOL3Bh_=zW-aPlM^QqQ%Kxz#M|M@C=
zo9wq#daddhNh*>@<`-S3I_c=%K^iO8gg+7{!HJ)*q}%&yGPo?*?&@7BI|@Z<cy7qC
z0HC;irHtbI?Z^xGlE$}1&v&C7E5o^8F%u}6s_3J&Y4MJ7a`1#2_Ltle?VR9iydS5{
z$=Xc{YiDyIsA`3ozEQ&>i<5I<roy>wVuT$I$N|+V)oNsuo)#Z!ag_eq`e=W835+Y*
z^OwlZ6r}T!MNFrp>b47yg7vrR$=SdwlXRGu+hv5wVlTC)^V!y-6hi?7PWIKuZDQTU
zonOp0PxP-_YOXu`>&}md<(~;;^(2&Mp6@Lm?fe)xs21k?Kw#{$KP-1=%YVylbY|mo
z?y`sbol5LKM2eKm&c?<92lm+9i$0{#eanx&<BQLYG)1(&rPtasYouV==O(g4kPwvf
zm_d>rJp6%2f8-`+9`3ptDn%?hAolhBmF*fZL2V<BZ>UowzuEWyd-?nS3hRqGr`uw*
zF<N@6B>u<nqA960t14bndEC$yOY635LfwPt{M<QdxF?H{87W#%T0q`KitB)2JO7w(
zX_~%B5}EH}XFT}g@UZ<>v$<zj2iguD%#Ie%>)VDGC|g^;x{0uIQub+qEV;e2SAU44
zUZDp{r>>x+^eXAAkm9dW|7n1L$|rJOD_TofmF69><ToE)lj!mS=AWuul!87zz4(7j
z9&9D`nIC(cp7oT5o?2}5|0T4_+To8vMz(m)qN2!6`I~THfaEiWwo``6Pj9XR;+F4)
z;<ypMi|0;3wStP<JD+?T4<yxkZAW#)R87=+*5!iasNTpC+Ry^;MHOB&p1lpC(jEk>
zyv-MkQ!htUng6(Gs<2xV9VItsSt)zHIxSEl&YluaV_NTU<cn{zX2H9zP^lfxLk0s#
zIbY`*KY02J1;Y7niKG41X)xZJ>;YSQVxs2F)_+xG^56C9Fy%E3*tkmPZ;==CVCl=U
zx@?Qe@XYtN4mOvibs^CzFe)^FKRn;s!w(25lS49lw%FpHmZJjrBa5W2lCch!f1N+u
zIV^`-y|Sd}j<062k<HtAT<}UvcZc|=!)JXV(fZPeZF7Od{-~YZ2r2nq>@Rorp-3l^
z%{vF-4iE{joA~_wIqp`{bH!yjz4%b2PJ5-q9q(7Cqzk%Eo7~2t)Y|IYG8ge|xkzlh
zRh->sNv?G>vn)QQr%Mh@pMgkHmbHMz%!81Q(~>PH%jh?QSO&E$;a!pU@$cWJTjM#D
zu~2)u@O%#;oyweSLy`?Dw9*?$>k*h<Jp$<sGuQF|dQ=~QGvd5pCyP0D+0Pa2qLn14
zt-K(*N4e?!hv7L?HY720d1*0*KYBJnLo5!BbK})Cik)rRtG|`6<i8%}iL-TO;q)sZ
z-u>N&-(*eE1vSX}(|Rs>Q6?*hB)S48{{LDHkEQaF>`a%ZO1t;7^72G>HH)JoxIlaQ
zy+e@8g&O4OD(k7ii8v*D>hWL$^;PEqpUNgazhB)+a$KUd_kC1d6&72Tg!_R-7iTMt
z2n#p2?(O(N{}s}3kiCu?m5ZZZf`oENJ@jqi`Cky2I{?m`Oq=oFyAY7;tAF?Z?~3Gk
zO4%X7`09=o&NG!qPfWTmP&uA0k79&Gsp!*-N4R(AalxK^`<-BCehJ!*4{O7M{-fu!
zRBNw%s7$VY!r*Q?8n%1q=KL2TJt&gC65nMURyXOJP5JE?>wc)MfpKyNOKN5Fp#Ce5
zg>W@-Ko!!L05#8(CD?rYvgjJd9!tn71OX}wKmAk}gLL+!+1hEV(($n&7$_L=14;Y<
zDiPh^tY+Q9>7@*!Ne4rtso0Q|LTi==GU_h~i4ftT*4+S}vdf-vn^x7GYei4iprW@Z
zDdJ`t_L{V*pDX>>^2_J<9t!EEY)5HoEb6-G4;inyk~q7>Jmn7Z*w9L^XGb32Thyw<
z1`*xzx8D~7aN|ssxF$5t=+ym#SK0+`Npu|@OMl7t#7W^^RrYNeZQY!lblB$jZXVdB
z;0Q0v{;_?k@slK?(Eq2xp_8W0pPz7aQXsLI9SIimF49}%pw$n&>W-aH#E>GV?cGC9
z&e7P`nTT0k^H`L*%6lzwqB3dwQxVfyi_RqLp_lcA`Bq!w8OKq#4%TD7mH(b^7J>fu
zJMTiEOFF9xc02r4`Lp=c`VMg`Ufd?;t^W)MP0!uOWreCs`ak|V^Ky^{obUf1WyjJI
zm}dO2`o9T+%r@_Pcp!6bDAyZVoZlo)e!iZ5k~SLA6(pb}<$tdULu4M8D=<{i01i4B
z>?)P#PD5E&%gT>DI6N%;zidg^Pt~8c(+Qb2{N>pRir)c0RjY}E-TC+p3KaWpvG4!p
zc{QF%@%c(Zg3TgcyzewNDYgQJA7F{b_-(~ib^MGJiou!Ok{`6VT<Kvx<IOg2IXQ{{
z{Qp=aZ+N(RyQ;2U^~b3zfJR+_f(Tqd6PEMEW>s6MFFL;dDD3@o>+?ABEhqc0=0A0z
z8XkoU<)BSOU~m4D=_7G?x%fn%&r#P<H$*vulf#4AVwaR_$iYJ?A0hr@fl)!)URJ-q
zSQ)#!oR!COGP36jwVw)KiZ|sg$<tYN)C7#_K+;DKp|u}PR==b~%zitVAOCmZ4b2?B
z`~TnxdCDI7M9lWWhu_=D1SBh69xdjrxC)`nH$1<6z@>bp`+O4bL@o~T)wTbSxd(b)
z%zij3Y|)LKgS>y%@XOij%X{we2PO@W!=r55ddZ^9-WQ02Fp=P*SN`+5y=pb3paj}Z
z-!de^iTnO&Nu~-Oh;a#1Ai8hP6^T;1a0@n#vsLBcW_7QO?sZ);#>;!9mvg+!WN`0`
zUL9j3MgaKYZVXO42qy6c@Y0T|HU%vk(Vi}>?0Bm7Ws#yP4$gUEq#Ta`7;lrd7zETS
zw8hLbu8PohyPEU#RNQp1N!4u?4f(wLus@s_al=QoaYw+`oxLU=SgN0i^E&2ab(x{l
z5)0)8S4Hz@y=cMzGCKV7+evsxL8swXjm)Bpmj{XE>Pvos<<S&eS%z7ND6{065_mDH
z*Ni^<A)li!fdK4o_3x{T{MOXT?(HbM#4$Uy6IDy`g#~N%21+g*YC~_5K(3ynPEKXq
zj)<mr@TSz;$lAZbdET!quAfKxB+w7Gl%1Xw`=hba3&*f%A$aAY-GjG3J<A$z9;n+W
z>unJ2mJO+gSuPUHK{UJxWh2HpI{#4EF~u}@MP|jKI^ZP=#s}C0%S8O_ysT#AK#o<8
z=szj91bj5*lkh8G1Sc)TANHIbNMMs(bqj0C51uO3Nf+7jEG4kaK%eVJ!_IoZ8jyLm
z@$>q|8UyrmQrCQQ_1lHKgfA}dFWdEHREKc<V2M$|9>pAOSLu^Lr2jRkJeX}BnV&|%
zoER&-nEiFbdhP7~YuhiwcI0a}=NogMX=@h&;mTzJ(@;A9%lF}GCh)uYWhNgZjd-37
zbc)Ixxk=<ZL?M25Q1TR2fk5iGY+b7RyIWuXxfC@d5{nPjTx}^A+C;Z0QEwvsd~5K3
z3qV(3jd=X?e7O0tJdTl87zK~?mUiHWW9{>Ht^fRA*TqpT_EW_u^u`Rk+VdpZq+F^w
zncgizl1d@gbBkD}=^z7A9B2|zEcD(X1G(5ek?3*wcMd=yv8VnqTE#EqRVp|ql3ZN=
zp8|r@Z05r^ZyOR}6ASF0Uq2URdyO}D>44bPokb5MU#p|SkH~3{FVc;dk4oRwe35_k
z*+st|L^ILQ)!F}hbx}6-+mye%b7I~#f4=Ru?9qdh_&?i8+@0;sPj=gh{X#y7FImq+
zBJnD6iya1#lH`%#YIhX{&8Xl&BJ_OhU-NjQi~U7fb>`Nhqfw{CHneu|<+GG+j;?O$
z_7l0+;&hQkh8mv{-w<A}qx-2H0m3JW{^%l^h>SoX^iAu70%YWRxK)I8SQS^2N&s9x
zgFF3hY*u!t`@G+N$B@l?{LzwI#qiM8M7tzHsRn0_>z+e5dW!_l@n77Y-b*vqByeUP
zi)irl8+?!?)$FhTSmBYcuC5DOl1Vtpi#3<gq3Mdh#wJi5!A2HjOAwibb0a#Wst9l{
zS2-KdtST97K1L$YBCX>Z7mt)puaE>=+kTWwa>)OG&fcb}t!!J<{VS{DMC2wTfW%;I
zb9#~xAR{DgNnn$miUr7^L?B8+cH)0`;x;O(QH>k-)(_Zq8z*)}?8c4Lt5!Yl7<0}w
zC9pHMBdX4JqV+M?{1_kac*htv<LoQ4h1f}Y=VS#`>ho!Oi1hOB22cT6_?SdV%J<ly
zb%Ii3yZraFTHh|g?7~;QM62H+taHb{Ap$jmGCT?DTK=S5Z>ZUZ%Sp&qaHpof<3b=u
zLU9BgR{%Lf*6uWCJ^c4{qA60n$GN;La=XL`4iYdt#e()sOEMl%ALRF7FCZ%_dEp9E
z=N&g&zE`t-)GZRUs-uA5Zg3oMj|KsTg{ZvrRhWR5A1H;GFzAiqpw_@{#Q8~&BNV*f
zt%r}^!g4iFrq%O9S6A0Z6C+1mx4yAn#aZmP_Azb-#pw{-u5XYoFf0p@oJ*6?`7*Fu
zS204Z$XoU8P0o(Cv=tTA?b+^U<5BJm(~l$^5Ugrz5#?Z(NLUK4Cf`Gy$=Z7?2b2Jl
z<w^jX+;ls2_?PzvChp?VcAaex2%I<<9H05EytaI;n46?oc`o7{*YC8?RPF0!T>_F=
z=`~Cjf+7Aef*a`2*2fys_s}gw{^_3DE7mt4d+d4bCeHtYATGzsv0Fcn)GLIW7@a}+
z9RDCiGej;h$UwvW*8o2?Id|pcv&0C4AlZQMDSs2D20rUEXB1P;B=BR>pEO$~HIlnH
zeGCT6+00#A#wTU|0B4Yka3_{Q07ZB{&;<b+Pl}OsEPx~3sgtZVEZjAPmW1PjAA#M6
zI`O`$zQ*>(sA8!(7xAUKGH}${gK=A^21tqz26SeaOQ&3A_|#-!#PmgzPBD^*Lt?`&
zke1MO7b>+Ky=4MeWcPQmfeO68^8*4EXiU}a4%(@@lp2tdq^k~v+0KYEp+J{mdYFY%
zhRifhN+yYMpb?ltF6(h<axD|&od#5_4aRdxZK@bx9OOc(3H+`2n=oUG^^s9lEnT4P
zgA!ri_?K}Z#?m3>3!zWhNZg(}km1FTOd?+VCXQm93P2F_UlbcPdVWfW?-N$#iegQ_
z)L=Ync&J^7Q-n`gN_{w_4;#O>jW42JkB*#KHJwTU(qaX$*gb`!c{#oR50OjRn*eQS
zES|zv@x4$Os0Sq*p;ABX4~UaB!fSM>!(IWPB)7eGK48)O!`Ran-nGnIv-YfEiiXWz
z1%Ic+If#ey2<un^2wsH#nS3|@hU($azLaJ#mG0-fX@Lld@gOQf;3ZljFhwn<&>9j@
zsIg1iXZsnfiU=p!Y}W4-gX|n8g9K9uLJ)Rq4*tppbeTaO2c#mTJ`@s{!NXdgvb)$m
z`(0T?%6~-MID|{LW9%e_LWC70Rb(;OV6`)%{jp@6%pI*z0B(SZsE?A&0hv$a8w(GU
zp($ZGSxi*Zu!b|vBI#g5SHoR5J+JxDTnKa^x37fnW)6TlRgPp6QGWJv5u}jtXLbw@
z1~NI`37AQc0pP`LvNgLM15@``BQ-0AzKMVSQjD|1HY%+xBj#9RBp)Qh)8YiYc}+0G
zP{eBe6rl*cr0gr1F9}!S6O%_3{#yrbT|7)91CS$UkI-ANKhVLM*OMzhEU+sYWyBea
z@=fbOJr}q4_>rj>d`n9i1v3H6!eq(r67|mv8Lc9cLJ<a=r$DmP^$agN@+i~BcwsBM
zc>E7_^w6z!l402jWGw~bim(;S9q5fGWlDIXn217~jBvB)aNvry#>ueZW+i-HY+R~p
z&=;J19pTVi;$HxN+s#KddAs}G_cbpe7up=p=10}jv9Oy+!AzNY@Oom$91sHD`P9n1
zY9hn~a<~cf?hXAom|%x=a+{m^K@jA)BvuNbSH2uo7}+LJ?j?5p3?queXA2048$}J?
zrjtjFWtsx0#scCZ*-%_ZN-#`A<wBL0K%M|Lrw6@$!cZDRogsR{Vkl>?$Kwd)$h3N^
zzAZ&wK!q}ik2_RFLkIXuJ^ZMy9!x<f3?7s)TaQO2h9#SnbWDu-J0Di=%(>@B4D(&o
zyVZScvS8Pq{9W-5wp@&-vMs`4z(vS+vmqGlKq-7EXROgD0VMWN%_MJPH9{$>G{SGb
z2}^{dm~fP2o8rD=)^U=te=)4Kw-CYlv1SuNmMDHK)n6W`o0lQ@s2Pd6K{#vF{=MnL
zVgmNLZ{_KwYcx!tSod_$b_cEg3Hbm~IFY}O>GpJm{0q(#nBfbtAii|j1;r&Ouc5av
zGjYc3Rd`j=epIYGE;Yg(1eb0%-A?z!>{V4F3H9u3S4vFLHNjiHu{!@B`cfrjazBE4
zx7GA<>I{bZuV%Qz=s>y2gztB3Af({1f3lEba#w2C%KExo{4E5nP#_No3Mys<&v2Jb
z%>e;8@?o<k2en@b6|B6e*Q%Yi{AF8U1GVe_CI3rn1LPN&CptG_XUIJQ!|IL8#Xl&r
ztvlt7L;h-@93tDtV^J1zQOY=ejRArY4&1}}qAnhZO59RKrHF5ITY!PW;sX2$EsB~B
zs92sn$P_d4W>&g_L;N$tOH~i)fRNf(l%Z+2T=WQOMT$i(!Si)6ze$uMJAC?R!fza?
zU<KOOO25@GG^Vqny%>Kj4)3Qb{ErawpV2IhCNN$MX|R2Wv1v+d5&|kpsUy*_u>_8~
zr+`hBHK)Y@EqM*;iDMaeIW3wL^c2!HdtgsY$lsT15mY-`cSlhX+5tdY?iA_^z=I@f
z0V2yQxD7CmX=O(4EX)G9FnSGg7XzK&FbRZ9xYOshhlmh*ysm?eL}3MPp5IM*H?73N
zFHqfZjOf-xG6l*<=1Mgrc{8$(PTLGhCBHMHNA>nQ-7}d&dciiX&p#oA-l>&#JeG<N
z8Xv41j$+5`U=xgpc65!K0l^XBz{tZ2RxDWPa|{2OiM$Qch-o`K<>RBPC52xz875UK
zS{m>uAv`(!NQpkAGB|3rG#!wMt4K4jCnpS@k7_cnt@po`0%|q~??M|5pq0C2#0EcU
zew1R%on&E5#yvKWUUtJiBdSkHXks|f6G0fe<b__iTNh1rv(yFKtK>%>cGM~$zIZii
z6t|~xE|R4RFPYSmh@ihD`8Qs@E;seV|0Suf(`Ht=u^J7RulQa|*uG65l~%u@!W#dR
z^pY7Dk+?-#;OM%<VZ%9lzE0{KVnED63-g6#2-H62um`P3|0!IOaB6FC(oOr3fXzR%
z{oatjsL+#Jcu{p|MUTdm+`XhGy|_f00(6rqUM1HKOFKjqL>It*`wjYuE4W=zJXog=
z9tlVAWV7g*Z<6m%3uqxhT6D9DWJG1tU^}id^AdQ@i4<_~??ExZ?pKkNF`AF<GMn>y
zwBOgS<0!zWu~p0$Y@K_g&!c1O3yY>rfg488B8;}uqT+irgor?9Jt+s0_?Y@>;nU+b
z%B}Yh0sGe?GDE4CS9{piF@#2`=!`?sz^JEYq9mOiw+KD32)hN5JlTIOH5Lf6P)Cv7
zJp}~eZ8RFyN#$nO(5m6uya&7FTUPN89zP*GgRM=vQ+BvPiP2b<dF7h%KQJ8RYO(CB
z>4ILMc=VdLal~bm{3S++_&K!Z+sYmhr^w(KAYg@r7&t;a<a-#)E*Eho1_)vx*?q><
z3>0w`SZ$UraKO;TP0*P7ZJR9%tGrWE7)@3&H!TRo*MWXuWHAX$ja_IS0Y_GKaNyFi
zyXcc9&(|RQ;#{Jfl4}@5LePTRp==%y2W2~?<L!|3%u5&0$N{8%TsIt2evHN*4kp6X
z+=~nhq>xeb*VATO3P+7PC<=f(uTA*;m{YPAKlZF}7|nmL=eq-{H}Ck~6$m@AV(68F
ze<R0sh1#j`={Ei}JHgT}br9ste4eJTiXB^08KZ;9UjJ+hiDL*pL$=yA942ai*+1;F
zcxTZlRX@3lOQLlI6j^0?8m>ywH*5@+OBdmOGh>azbsRz(=Yp|m<pBzCiDEvxmJZzX
zq>Gqq92YeE#`=?ir3a{h79JXBab`}k+!1JB6jHN~aO{nGWe#Q<*$6Ee%>>2>BCy0n
zHLTpcUfDDIrw%w{g;3<%nn}4<<EY<_{(n<;joII2{ugVtp8KV+Wbs*sAh4$h=T7a!
z;VVNbXd<@9Cj#o?`U=-KVG4poc1my$G&l)xpC2XLi7$tngSZoVO2R@IKhbPhEdwmY
z3elh)9@Z`waD<KJb%~YD8zXy<C?h9CK#V<qk42)er&XrZX*nz}7!-ShfBVD)dCv^M
zRvz@VJ|;9ZM}Eru!)RNQy{0tl!>EABZ{pr?9Y&<YITaAh2N9P!rU+_1kEIEc$_Izf
zaR6=Jy8iN)9fbyv2Z*QH1OF{RVhdj#3UxfVV17i<PRfT*2uW=v<2>;(f!1lyeFt0&
zl-D6H?yyfh^#Jr7jm-nfAHbHQL6ItP1c@MwNu2MyJ9d6%zY2)60!g2xR&o?aa~MPe
zRAZie)@-W`6k~uG!a=u^y*yukAk;&p8OW%0{(pKYaS70X1dm6U*J1-oShRHt9*k|w
zI9eE1K%a!Uj1pUOD|nsZ+r&|#7Dtew$f%CDkfj&_Dgurgyw2-H<ic<XWdX!`YSokR
zNBjVL*AsmGh?!v@VvVd1!#9?ZP%x{U8D^7;uqn`)<W71KasfL|P#=ibOng!sLQ_oL
zu-lCAD)a~&-R5r#t--QjHCA*xdJPaX4icHflAPiWK0t|F6M-jiStkN017$N8xM2M(
z3>;ZUkv+l=H4HP!YW|b&M8q2&SvU_`3}-2!f#TJK{z;r9Hq(aWmgZZP+p&Q#n;@3O
zU4{uOpjO=jwKgJ$Cu>en0bA{WV4Z%1@pIM`W{e6-cM!;Kwp+zU%#C2%s+XH5hm1+n
zTrzybeM^x*unO!Blq~NJhLv^!LsaJ#x0LJ#=kc+F!MUm5&puM!SZIjBC(fO|YVgEH
z`Ldo|LpGv+uRPLS40foSaxs?tY?<f5r^IdKGBz0FfTy_Zj<Lk510r@9UvpSuhCRai
zlBpSI6;Ko{!B!^Fd}lF`8F^-qYV3+|P9+-11Y%`--4D$AQ5RRG$!Uy{bC%|HK~zLQ
z&!#GB#@&cUMWF0=Dx}|^yVjrH&K4T?rX$FEGH9PvbE{F}RxT+eSN04-umg=mWeJ16
zpJ<uQod!K|u0ojWe@pm--K5lv4;=}nuwedIszuZQ_DM9LHV1W7q&QE&7$~4*+lE!M
zC5lEe9pI7~89^E5Nuq4Y2__=|``=(_d;^M50q6!w4nZ-idh-HOMU@DO6%O|0!c#+!
z4Z(r%(69}c-rHV&D+f2^fqH%%d$(wx><=V{b0uUGX{A;Gqoc5T3&*5r_J=jK`-{g*
z*%7&F3ROojd;<&2S8lLC)6P*x`8d!mC?vJaSR%a;Kj)F`UMv%=#SLs*_uTu3n2z3!
z*Qg?hL+(HSNu{fBu?ULcEr*E4Y+-prX-{!2aUxgaok};lN>}JJ?mZ5bGKQqG^Me|s
zk<PXWO!&0IGXVNFB|6eUi&igtoCUyW!=8q1B@aDK8ix<9IC(73reCW+iaY5WSRy~v
zf04*WEzx^ZPkXBlx8J{pITh(d?u69mi_hU2Y~Jr*gNuP-{YTfRVbo#%{UWhScxJN8
za>{fDY5Yb;^w<uyxu@b_3Kt|f8Uy0A3$+O%H|RxFN^dzk>?F#gV3cVBV9Pi`u-B)S
zN@NIZMCZVSwvM5|Li=B1!<k{rts3kd&}Vg|eb3{q@^I~@T_}r_at;m4G`p{~?MK&n
zZ4hN3IQ@sn3GTA!3*G=3^WZP)52tB&Gz>WwEr1ZmKT^>hl!rcsy@6$=A&4R?&ZeY7
zm9Qd)jd%;Fi(vQ3mQz-S%}`X_con(#m+%;w^ft%@cIl;{o`8}vZzH!2!$q%vGW!)P
zW#xRT;D-`3_#|5ZAWf)_8xvKDd>(ga?_oYyITCFEm<cCRZg9Y?P;sQEC|K0ip>c-2
zci4P}gsBcMz#uUj-rjKRnY43r=*Vj9R7N^$r^RixYo|iL!v1-us$R7jIesXZ2h+=L
z>{zl{FainNAO*2ZC-FWA4S<;JYB{J$&QU5AQDy0fzywPo1m}H*RTo5r*RioB=1H(#
z<u$koV^Tjw2IIrIinGyKj6mcu{TPkw2UuX`o#(vxMx-1L)?Yf>_5nfVY7f3sC2Xv>
zZ5(zzo4;vKGk_l<d}>N@Kz{I6yt^O0RUw)me5>jL{MfBBU4QUa)oA>|Tdm&Kj|^Ct
zggl4Sew}DqEF0f)yhX<x(=$0ACN)ZH52C+gleX^f02(12DJCQ|xTao&mL;bvfKHoq
zxhyfNVDYNnP>KZyi3nY6$=mFWDFSOQPK-C$=6el7L?!P_Ks{>*gd9=PApZ?d6S^5f
zAXP1q#C|3OY(Vm@ptOOK%RDFa)9ewTY9Zd5+{7`(Dxm8-#E<``T&3mEF6Rp?-@1PY
zafN0Z^^1V^L+tzb7hSo{<8c;nFU}>P5UnXGJ=~|0vCLacTs%JD3@S<uRs>j4T!=`#
zOhC9ElzcCpQEbYO3LqMWMrFQdF#%Quv&5AUFR6DAyMfav#3uZ3)arrtD!m;UNTiGM
z)%%2cu%awWffr%)GcxFc=O_S+iB}MvJ|1Z+0u8(zL1H0)@U^moekI@CJJ{;0uwcYz
zv6VCYF`t1Y$HVQRjiRAK0>-n!C6I-cCG3!=19C7VR65|{LS@M!SxPkEZ&>5tits7}
zO_;*c<hNU<v5|>GPH~E`Z@iem;cKG0Aeqh!-dtE-c_l<0Q8?|^uoc}X?O76IFq^sx
zQZc`6psX%<6!E*<-dPUa3B>74)$LaALk-3M&Ah(|;n0<cLUCux+u}>rclykumU^TP
z9@qe4$~X#&t}1BUE1~n)ioh(T>_e?jOfT(cPzlUWi|yK=SI4Ov=}U-5k17qbfG6;G
z%X1dQ<Iw=AE%yii=1E{aV#us`@~z=^T_VVdsY))hjiuzKIBsk|P_f!(oPv1%uy}(`
zwKmI;jB(wKeG%SmS+B|B7O$2R)0nTP6ut047BeMYjZwgqd5wlF)Jw*Aaat!d=2hZk
z72%G`seZvj)|{9lrDj*LI9B8-vH(i<ew<Uz;kFcFoBl1&0M?1ccCnqo=ZE{pc!sNU
zZW5HTR;XpwfhI{XDfC#zSwp~f*)Gn@o9XmFDU2Q#CtaKT5c<K>NhxJb28UKN%wSwz
zSW;Op@J#dp!{v<F<?RpLC+t)R@SKX2DL7OGMadW7`3w?_4G@l1#Xb4vz9xeo$W;wG
zWJNMZbfKDo)`Cpiu1a`@l?d$o?@JXP@C~=g6#%WXEAS(>I%XCV(dWC6$u^C~bvx-1
z@2_&%G<nP(Cs<q_os-jwy=Cy;vjiKWOC$!G>)jOcY=Pea$#i_E^HY(4)FXoGqmhMe
zT%BM;5ee&qn}U)={D%hQgwIqyEvgriV}02}^D}uO(udJYv!TDjVjNO@nVApCAQhg(
z+9`a;7~oKm6~I6C^+x`m`4RtkaGcR7)p(fX)Qs$*6sSf|Dg_uJE@6uf=_#>_0Cbhf
zq>^|+zUUM#&)Z9hW5njwb$Cv7aU&Z<Lm`eBTLS}}J&DBJ(2}c$gqFm&Tr3R|ceS<@
zHH*w25iG@Lg}s@!`>vYdFbDSSngk*o1P-(_!ejugR3s_wHUgM>FqLn2fZ`f1xs7*n
zlFKdlIhra^d2I34P%=J0x`SUDnLML_jV`8O)@yAMD5TEE2?;HF-#c|wk_bnYVom@f
zQgX#oiJ5xX<jnz<FxE|2N|GT#L8)!G(N_TlNr4rq78YusTg4F&FQofk_y?>}YyiM-
zFf|_A<u|=@OU0~pHZH_}>nyUPq)bn(X*f{C4@}NZi_Lo9MysZ~F$R9pr49##giNYO
zQ4YHk^Ss)FFHe6zv{3<Qpw>r&@73q1UJMzPC{@c$&{Bgi;5m(-AE~t9@2oT+&3LC$
zp2CXcsp)4v(J@)5C1h_=pbCcJj4DRv%0(unxvfOr@SJ{ZW~lE$g4U1<I^75tzNj}O
zkVr`b(Zp)(ost|z&621<!+{{Oi{bpw$v9MnEFT_eY5e(~v_&EO-?VpAeweNdv*|eM
zljY;1;gL6h`T`hu_7vMbiVD)c4A8kxkSHPGzAK?2$v)vM4~paN@Q5v|f2;Z-8<Wh=
z?paHg=OFH4vTi{d0`(zq8R9&U#*2e!l>8$^5W6|sYbf$CK0}lIXq_C|5LNmbp%ra_
zKcBNtbpeE@Wo<Z1OmXN+^bvHYwOPOUk%&UI(!3HkN?y$2_!@VJ%vU@JQO`qx3Bpb&
zHy9#D_B*k1Nx{0I#;-^)-&3`8oe(pp-a4*cDe;s~Mm%^xD=OITSra1J1%R*rw}&wc
zoz4s6jgXV)Arb+MVpN}l%>{Rl3|@3kt~R6ABA|`{j4X3BAY^!_nR7SPc|0*SH=9#E
z#Q#P86jTrzJ)X^I-N6w8>go51p1P~S)(F+7$jhMc)QiVRtNiK>V)e&PE8+=*`$t3|
zwN8yCC8K9m>sS?1$BvEUYYgKxzshoJbpRE<A@%3!{uUBTGMg+_UZIp=I%CSm$bkBt
zl8g=Go63Xlr}Munz3}>m+<jT}f-A*}^C|_=tZp!goR-z|TRoDAYkqL$6+&JZfxNSg
zPiZzA3G|Q|LaGfB>8OOU`+cFY!nFv{B5)l-e!j)7)0Lj`#zpKVKDpf_4qKe|{*#N0
znj9B6;wh*lGsrD%Yz~YMMyD58zD18V1*)0(f_ov73o8PzlAT)d=~0=R_!41;h$JEq
z{<O<Np)9oW5A6@U9d%W5NL6b9{-`Jrj;u<fpdF->E!{eJ{%;_6kmb@j1l3UKZ$3Q=
zM;$}L)x;ffyn-=JMNC??N268Nj3w?@71L08z0n*rb8ZF=RWNPCMq1zZx#+x6T-wNQ
zU$yN>HJ1VPjKU83q6SGzmq$htas>$ZZ?+F;2_oN&WH}s3n}nDETqC8r0~K2GHdxaj
z0NPu%Gwst{3jEjqAsfdxj;4rS2?Q0190^o*riKod3*g{{av4rJI$zu5nQ0yrjvhw6
zaP=g5gp$h~&YZoRIk{%VpNv8RtXD6wT?Pv&lVD3mW2LHu1*9!68?x5wyBGhTIm3=3
zMP~0tAOOokw8SCh%OtPalwswV=5vBf;9~<=hfhU}FjUv;QohRm?ab+SfEZv2l!zHq
ziC`YnZ^Hc3jM8TI0eG3IEg%05{w*NcogIGmt}te*H~uz<saCZAL6p^y27V@@DHoa`
z48af=?krsNJq=fKIaO(O+a<*QwchQ6elwmGTYm-mQ2M>(D3P^>u|8}awV?>&F3Q5^
zGfn^*X9`90?=aaYS<oWF`u!#}&BQsaG&@jfXj?lUsoY|Y+*?tGf7fZUs|YMa&T1ll
zbFO2yLc9#mU6iSizYvQ<RBt3kMUW)r;>VzGMRtV5m~j|sYLCNR$rU*VX5WC`X%-2n
zRo(^VFvQ-$cd!Y41M7#q55M18+1>jMC0s3?gG(o4uDHk)M`GHj+`{v#p)(dtX-R1b
zHP$4-bl6U@5(h~K0E}M!K*NK!?SnynSvJ|sYXHgD2w0NY6VOPZ%gp{)nJqI$8M?^4
zxom)r49I8scYGG)4BqW#Q9t^{gHZ2Op1L-_WK%qaVqN@GT|Sq;+=7g8Q(N^Cima*8
zgGAknqC#p#B98#Hs)R2%6QQD!e<9ZUzUo&RRn*Fa1yjL^o@9vNoy$72(mJ?UejA3M
zTMv9nu!Q-SNI{TYF(&khUhIP+W9)npNNrAdEdQGxDA(C$)v*WuOAj2_sF@TBB~k+0
z>^ip&{cDuya7LX7N!v(q$>c1A5x$C~jQFXliIRPfL}>E0*dX}l2^LFcXl3-N^>hEw
zUZir4c23<q(Y@4{p8m$^g;fgMO;w7LgeKal?eobJs`RBiTpvH@uT!>28xvgr#f})j
z<$yfzldA;R#q45gy>FKWix3o@?XwCe@J(c25fs;aBR!(_5I25M&WQ`;-z>F2l}D=z
zW7${qbEkr2*h?60C=<tv+>rW_Q~?|+9E;|Dr+Hp<PQ{h|75@Qc*<`j;ipUNz4bf`@
z;`|)9kQ|IRpyot382+TN%2McJzjX*-3S_@9`_W>*Ob-FG9r<3SZkSH~MDS-{dI6O0
zKp9C2UP|S#v2?!V`-jQHKr;&!S@<4Cjg|W(KT{8*4U6aHyi@6MtOxB%?Gc^4$nIqt
zaVV{Vp4K?>lS9Tu2z=%@P)`yZ%d=o8xPNd;qo;oSAempGG|Y}w2&H{zLxcjdhyI_A
zevQiLzX$rL-4QtA?_R?|NV$ab;v@de;&<7a%VUOZ3<w?Sb?8hpQ6W9v>D9WW;bH`5
zi3kN*Rc$x&OsL0?=UZe=s)LEFWy5G8Y*SOOjpC#F9=Q=s%UjSeE&Es>n1(BFmR>i0
zV^F~_-H11v-$nq#Qk?DJLO(Yml5;E>xF*|Pm8}vCYOg=$wLzMxDgeHrNA+IJ8&M~T
zdTswbyZ78?(RP<I#gj@QIE7O2qB7L{V5Q*pVitA?s?-gxhPEhXDTW6%6sQsr3lsTJ
zYKz}3hH3taNX?YB%pa~NC31Q3v35qE1e=YcQ_IW_r7yS-YptRpH%LV_WB3KGzDXQP
zJXpr6ksz2UpT6gNMGW~JK!rAlO6Qb-l9EZ(?7Sz&suAc_DfR*j*NRF)UgBv{KcJyh
zLg}#-4b|TZI9sI_<aP|DAr{n7OPN7fAUNtNT6lmHDbQD5pae4{Yz6In5adyFc6-Jv
ziNhiVphXB!35+krBFR(%L+D}A$Bn&q(mbqDTGA>B@MW|#0LVCOG6c)j7UMidDG!L^
zD*cS5=5X;!gbx1x!2y3DsAl$VJgRzyYmi7>q~0SuA}mq|9kgL#{>@Y%;xv>sSQ0WC
z3ku>$!9{GA=AmeNm~Z60S%>vvje2B#MA&(9<dLH2xRde%M&j!E$7&*eUL68-0;+Zt
zikd77E5QL_4PuVJoW!=4zzQMTs<KJIVlZp7qxkH-EGRZ&zPVSZJ;i$!rJ{aLlPGed
z_J4boG$u;~7{U!NRCB=25f=!n9lAS;XCGPR$zvvQ%%&4Z8_Kv<0#|%Gjv!=;@-6>{
z1oL!4p$p1l!a4Z;fl@0mn`U`ZRN8<L=P^ahz_hE~<y-F^lWX_^rf1k4+D-UwK9RAo
zrR^GOe-eDak}k=pDfX$K&z_ibM5?-mNmEg8g$E+su-~vDY7@HLMXf1Cj7^_8qxN{k
zkVr%<oZJbgz%*y>uBKE?zaFvBdNBJd*p}hXGX4ylHZAADRrc)&FBA_<u?t)JaW!sk
z<g;0GcA@l33riR)Wm0}EXZj7UD5kbBVTB!Vw@JEj9U%NQmUx%4H*D3^qVQYQj8Q$6
z2StsMTly!3j~^i#`7dLcn;1W2l-VV2@aR^wIAmWyP=7+0We2q?-JN{*5E!JApi)@G
zKoQhL_L8=?a@TlEr1Fy*1U>g`AV~6so&OG0x@Swrk*#rj<(DK^TZtacZSJ%{TA27%
z01v+zGtb>|!cm+Pql?&rMnh@Y&sOpI6DkHKn>ZQ7muw%ixq_z+g}*oyVIn?AqIGrZ
zty~Y4c$nJYPk7-$C*8`}t#<0G-LP-qP5&wyn(YQLAc}HxzFC0xl*Q$2@s<5+H56DL
z{2?xckl2aF94GbVTw<B;9QSl#_Az=89OTyFx7qO3yeoHu0OE0WY?5~&0g}Q8)h&eX
z4wPdtvHvM2BT}z(H_SZMY9bUuKO@yh$yvY+C=8$C;lC-n-qyeaKpHob71{d~nLhVv
z;|C$h%@1f`R=i(b!vLwzg&U1hj3f1F$8O<fS&h|X`pc44jvqsNoZ)5yT{>nQCs+rO
z>HJjhN0+0u{tmqM;P_cgne$@~okDU}lH_ho$0XYlnT%qe5#4eBRcR-9HL6~~NerQY
zG;^w%mQ`WJez)lGI7WxTj4na#t#FCv4j%K-;YPBLncOa5aff)N_A&-(wuI^=dkB87
zWq*c3S2M)%q3`cKErhLAOZ-Cf$kRBLx_9utu4Vmiu`Z68Cjv@s3yDU&Ld$=LzHIb=
z&9_}OJe9tgj8)wehXOK*#0>TQN6Ju-pc}$Q_(iv)%=b<Ekm>;dWA$#Ie4MnKs^7qw
z+Ka`*(w6lPT5-V`pc>(MIofJ{LNe(~A`Z2Oe}+0;RWG(*tTMT~uG1oIIxv-s#m&=_
zzDo<BwseEVyd+4o$yAV9%7*HpC~0x)dyxD>Y>}aHjYKx`zv5Q3N!8k9w&Zp~up-Ep
zP)=Wp^pbY~KD4l$(DWt>-k=IpLLdY`eH)*MhrnJVK>a~WJLsPN$|QH&XQ(e<8q6-4
zm6Qj51kSRMl9U86L9Fci!py-ef^lb|>LT@-N!DYoC$Kx<#(o-KAU$)TV=LH%*h_N=
z7wKqTwFC_gG(mR88%-m*gZw9|%f3g2{QnBQ_?B@7Sx!RFro3J48(FvV$=Pw#!Z`q<
zErws7XK_e9ak!~V$V{d)&d0xSv=L7kZj`i=>a>I*tcnmHC?aROAGcQoGPY^?YkxcV
zf2A%Gf*aWD810xYzX6^o025@CWhp*e3E9lsMeTP|Rmj=1k~6wyS<@4Qmt^{ORz4d<
zq&^yamsDcJEK)pz|4Dm3ED%Yqu)Wi1SrX4`+DhQy5Ubj2Nvt>!^e_c>AUa>;xB;~u
zH#>D@w4fm{f}51oRSTc^BFc&o*T6;=m=L!_viqvb*tuQ$(7dp<B<-r}WFv~?7t0E!
z3?kRp1QD`#gXJ8ON=+p*><R5bc&~7s^5lxRqDkFr$MK2ovtL4)2-4Q3Wsigv(lz>6
z(-4Pc9P0RkF6VE>)KkPpC5Dx(O(97@UYU{>zp5q%WAeYKB!OXH&rVbjn;Hui+F*c%
zmbP{nBeK9~vciyg5Ac2V9{zC3|BEw6@CtNZ!)eu#9_~02l2bgyGP8$f|5m>+1zW|W
zxGAoMpVGPl_>SpF!0DYzf0>@$@Iq7?DDBip9I-sLXcQP_&>4eqYDw@tHnrg<H*=Gf
zZI9`Ksh1LuRrpA;G1r+PEUO8MU&mmvVylo!t_5V5#y7uJtp~&pS@d}3aXaQ$D8AA-
z>cA+-w~4(gY^+^4S$I1?!aCQjKg{d5A_PD3R&623N$=|?_;`fYm$n*~v#A!g!aMeS
zlUf~FT8Nzl3)eJ1a<uX(@q?G`Qlk(dZZI8w!e{n>MYWbspdO0xD+9p*Zh;m`VBzs$
zX(_Q5;@zwFp{;5MN}t0E2yqz;#jCD<@C0>U#obH?P31K|=H|{u^(MSxc9F&QqmicJ
zL1(nxWM91W*_<7P=OQ~dY%CPiamP%qUaNCN#LI`jDpatpJ`_D|K=Z`1F{;S&`?xYL
zj??&YDNgF0jePQLTB-}&HPZ^=o1N6KF4M`9u8l}`6=Ag{fQN>o)fj?RsrKUPm{*m;
zE^Z`km`x-u9X&Ma(i52b{8@prXTi8IU8>JP79<u@yfUABh(sO<T{`ZoE9K6DJ_HPX
za0(VBBc=-bCLI&rscerJoJ@HH2+kOsWYp|n{Zi}3TVN(d-(YtWAw-<;tH^VFe)W3H
z;SWvQ$b<(zvY!BzC1hJ<$yUC0z9E4nNL_uvUH>vqGF_H-dYhY5K8!aYk$jhYQw1@C
z<lZ6)0LxsSiwtE7&dHk*@kH4b+`+0-OMq%v=@zPD#`+nu3yDjpNW{^>0J~O+Qu&48
z3Cl$&F1;$Lp!(Q(#XjjkgCzSLrp;;%39v7iEADw3z!E?Mw|)FRtQ8g(_)Nk@ryn%m
zJSP5Xz$Y1-M#>X!OXU>3C|~sm$}1yEeEeeV8bkzora~}eStx+8^dVi$S0>$&UQHJl
zDgJFScY!~qs%WXIe{*=eTt=K4kXEXe`tIBy-2UQ*i%U&D2upWDu~@A|Oc%72-2qi}
zC>^rN4-A0|u`UhPwN}KI6G0&3yj#4l5lhaBX>cjKM>&-JvtW5xL71>D^s|HkrFsWK
zYrCgC<`wHl`1OE{aNP24e?ZAfwz)FEb%RBaAuVO|qRmK$Bx*|k<DQK30p%w&RYEga
z=*7ht?!F?`vH@5Wiz?HGKq2u%I(OfrXz02NtV_UA29&=E^8hQ@!#tJ`k0(K{4$h`*
zAOZK3dJ9?Ip(cn^3*hc8hdm@g0XWfy9igUt#WKf+@lQnmfhjM_VYq}e4Ip+aBS;!5
z@!ANVzvJW&kla;xS4*GNk<L4hz_>;)a0ow$wXrIW{T)a)f_0Hmq-kv9HqusEAEL<y
zMGbkAhFMzruBtaLF_DV>8F*d!spKoHHQijFz-0j94g3i`mzjJZj&9Kn{dY}_LjSMS
z9Ef+Lh!+%gw0WfH0J>bhEG~g1&udULKjf6o)nPg>GD>XD^2}&K%}WW3!~Xb-Zo_L9
zQ@|EzWGhR|oijLth6m53OYG;2{y9Yl7o_{?)BI*S8x?i0f(oyr>Lw{dN<%exXBr*d
z)08CzNr^Jpp>(rSN@J2{jhd^#pT<SsWh1^ScImfVwCnE+YB8x5t$z#-*>MY{MtgIL
zelno+g!*D^X?S)W5OBf!n%5ZM@EMM&v43|_-rkm$Ck|DV+A_6ajl)+^pBGP?4hgLu
zdqgqCv@>*x#*SzO&70oINRK9u3v-0BRgvKk;LHsQ$~`cBI!)yL3j$Q}m~Y&(CW6Gz
zai;AAzTN^GgAosJjFg|HW!O`0L=7e_dtBrbgcF9WDz%==+yEWf=dF7RzU`OOqY>ve
ztg+IB5gYq;C`c;xvqqBjb#cu9NiXM4HVQ=Q9TK#k1T+gSMvxA9xK#$?XQB+dzZ@Vq
z#zpNWNNT&092*eJ%f-B~Vn*zT-si_+Vse38HFnQx)dTwA#_#3{RBge?@N3uw6z<`V
zkO_@oNqI)-#F}+#)3XRc-tb)fhHVXKxVXRmP+G_O7$eX2!Yf7xeAHHf-D3L{Pi8(K
z9~XUcj)8yZ9SX$H8ilIAGpH1Fg+L*V)Tg;Wy}ad2JdppXZ-wlPiF)^NgD3;0ZM5uY
z6+NmUxE!S71|Ut`%mr);*#X6`G&R@1wEz;S-oCCnWQ=JGW!C)Nz=Z1WObsB?a6vh&
zMchXA38Z<m9jx%Jc9?N(LcWKdUp+w!z!Tu3L&rRn2j4=2Q2dOnK)hvBCe(e;wvf1r
z!v^(8Jgt?LvXz8x3ph2M354mYAQwDKV;ZKfWnd(v!`gKvG34BGc&FF=opLHWu(PR`
z%?A5w;tGX=U_yd_A)D6v&R2up-Q5N8K}>=RT|FU}+U14tToj3R4u_3rQl$fc6hUyK
zh5U(LU$>)AROKYn3-8GX{c4B4g>Q<%A%y)XDY%uYgDASt7oL{5BZ^S*XB0JQ@?rPW
z8vFryM8U*DB7$RQ?|g$SKc0&1ZlN2%cPd4%$1wrWV4c<Y`S^xGMP>0Q=_UPwuQI1W
zBC=RzjzS6I`~iCkF(61f-AyWw^%YS(1YC)x2(ro86R)<maQF`<OdfK{-F7X;yx9I_
z7YqBCuo<CO=+;+swJbV=4-^vKQc})a)r|h8K9HE+E{+zDmp5azR431kv=Ks6HhvX=
z=nXj^$d38qh8Z>1sdu$zqhZU1lsu>+0#p$LX|c4C+c<LkpOUkcAo_5ySg7jU+y@mw
zeX!XSNZA*YH{j@2?Y^`37i*04bNM*RMVhYXp`WbuEZrQunlN9YAFvjPDPM5jR2hwE
zfiS!fHLxLZ5y;FDf~9vOfmwa5raai7w9sbUr-x8Uqo0eteKrhI^Yt4w<E~>S-Lq-P
z)T61>oC+TcdK`}dUYKAS**uo~qr(rTO4jPN<L=;;R5U;)8F4$<F93Fn8AZ)0fB=(G
zP2bjw9a6PFO?WET5RvDLNH|n<rl;QBN3FvndIV_Q(BG^%4h~WaImSV;?Feij&M)Vf
zVk+60QBekb($<hBS#oi@+TO!`Q&2l}%`CcgD;<utgGw+xNF7@$%*3_cqYFGf8|}9G
zJ&j-a%xY=R6h7RzAca)NQHb7`+<g-z0Tt)S3Fbu+%$V!ybnQaF6exB$aNp670?&e?
zG5P{gH*6G62k<>bBd-zdHn%}d_mS$vnr}=lo3gUkh7-?N_3e4-mp?HuyK9Rtc28vX
zB(*^tZ=@6uHeX54RQ*X-6MmT7hwg#Q3Mvx=2}e~y$yurgUlBevn_H)vKn+`hE1@ay
z-G?-0tWSS0;3M)klWf$OeGse~zM|4Il_*7n5Z68eKV(yY2nZ5r?gx*^6hKv9fWiT?
zh5D4oLgZ8`K`YJ1LU$CkL8pK}z{k!nF=D4U0+Oq;Rixj7FbeWc#WIIfR=A;|^0K`Y
zOp`rT9{o_e$F54olfI2VQ$K51(5m^iBsu)pkV*bIj;6%vBQ7nMBCyf78?;Or6&DKj
zgkWEbYSUxpg^<GglEca`m!>on3;r;gKR!^tNh+UbDDNL&P!hQ}{UV!^CR6<1P-Cc?
zOT{6!(2K!*a&yP#-gHS&IT(Iyf9ieRU%NW$bgkj4HIF^(b>?AHVO}LY#VulIG3a8K
zvx*klUr=I#7uEOzYTk@6E2A8L^-dp7#cATGL(!n_2pQzkxENlTalb2&clVe5T^#CG
zuhAtWiEUZyAFmg$IPw(y8h|A!w1xcO(qr1Rzycdm%7Crn4PmNXplhg~1tHNKfSw9f
zzgIe4fhq1Go@9Ro?*i$#O+{K16^D4JT1}X8n&S1sE2K@S%z48{_f4adN+C1^Q;(&{
zrk(fV#B}dR4;ZK2d+8(Fb?BzF>)h`Q0~*8u1u>1@U=S4c!;^~3nrjxOAK!MreLz`I
z_admUyIH)^ptT`%T#3z4K4$!&>?H{0cq?~fc6_udqOzl>Am<b~kE0~%4O0SGh6c|^
z$gB;H4}Vikd8cU9jxfcRbPlCOIOzMOQr1>&2V!pfQ;yR7hTaRo3AJ;E%%XJH2O_FB
zDr)s*z8>~EM<0WOGrxZdK0vAs79cVG>g@Y@Z?`3-(GfWC1I%P}QJ{<XXgOjc09t_b
zQvJZw?}<vpvRXEs8SZZ|%>Vr5%!SIpch1!*xiDVVo(f#%(zN>AC{P(NP7QLu);i>9
z(}>y)wJ1&fgJ5?Z4=sKU69^2{VW1bSUZoEr;xbcR`<usL1t=+WH2w|QQ{FBRWz}%(
zHRMJV$N1o1%P(T0Telee0YpCG$57=><29@cBei@I8fOFqC3oQkA3|H0-3#F6Iv^fl
zjwK)r_}#akM{Q;a086HllcNOX#pSKJ8FJ_^#}f^ISNuMPhwWT={}i5S3^0Ug`VtI_
z+9RWS&){ImUq3NSddunobQD22LSw@wIVXs$QpSYD$ZF+RTw}b2!Q%F2`gnt>G{jdz
z9o;~ocoYqBb+TA%7jwjW0oZ_&SvZ*Kg+&!j17eb4!3Xv40}wfhKwC%o+-<0lhuB!j
zGo_m*HT)zhrSNYTkGKopm^D&@W{)>=!me+pl8{1dFxLk_Zhdy2{C($VgT~@wKPrP)
zd^@5S#50T#!!9}(C!M<~Gmg;w#=G=8PMr#STt1Gz)Ck8~i5+oPU8}R@Nbr_DT|?^z
zd{F(9d1Bblmu_h4PgiI-&Y%X3kig&>4l(s$t|HRU$%Q{WrL-)EJ!x~UB+?<v=&=QP
zF~|hY3}YVLj4w*w@!i1#*idKiMn0TK=<{N5Nx2PeDyspAOD@Q!F~OpWcGnI>Ok~Bu
zfhr7TXDK>kFb8O8hYo_REb&=lw_`d$U^cXpK>sf4f|`X$IVzP)_w8vSVeD*k1|PZd
zGeX}cfnp3rpGwk?L7*e6F&HTTS6T%n!~=lIi#8sVQdL;>cDShg$rFr<8!E6t>k#C5
zqkbu9UL+;|TjCq&jk{L+o2O$^>Zq3J;~@MsM3NO=$+?v+)1?M{rQ0Q0x3MV}Y&~E(
zKAJk#rrS-0T0OKmqB}t%)H}GphNg34->EK=7*Uv%Q(4f_<8sf)u27J-V>TeNWS{QR
zDvVhp?Ra!2L!T3jY``YoLYpCY%BLxv=yVd+wMd|Je2snLTjdJYu0BhaUKJ<EG+J5n
zW73(vj=RKUMA^`4fc*(mLfB>Nt(RJhLPuTRV$%e`?q<4RY=5O29oNuXK}Cw{uppBj
zOx3i~Y;fU@5hL0N2J#6ohk_NaM<9Qo!6AA~?nTA5s+dOdk+3SkOjrSqKOdJ#KMe-p
zhAmc-4Oq@fK|Ymmw4X)Ir<*u0THG%GWaZDf6Qw=Leqld`Vd>onXp~yJ+iVq!q`V6@
zi}5no^~19pI7)bmv_!$X8W;TIxANi!xmrD7<(BPtd|)30*)IF`$B^XvMugw;7RBA+
zYx$paTha;oY*08bmg<Goh`EhjjOdoYXKX7&!Jr~Gvp|?L<8)Y|TI=;U-hn6c78m7|
z!W1x+WemnISQ?5<BkXEWr(2HL%h$-&h1}8xuw#)oPGl27fWDITDP&uA3Zr?rSvZJ?
zA5(%J#v2OKgA61w(2(Oi0tYE!=#9VqK9z6*d*H;(&CToRBW|eJ3gJF2G&6~l0V!GH
zv{D#yq%hi~?e55+VsvISl$gW}YC!LI9;@B6rK*nAed*%|3(mxXMX)VqJ!~5{^n5~4
z-(d+%@f@Cz2`A)%n7k@oD8P#qOs%&uMh=bL4%BG6*}@xmCYQ`2m~Pmk>ox@-ZPy%v
z?9-O*9Iz6!if<_!IBkK!Q0_0-ww)-VmgWV{8$dk<3JFDg^vf3kD=JJry`>3Vx<cG<
zoZnG47+y(nGVHkcDhYz%9$T(HpH)-I4HG}q*vE39Hk0IGyrUZ2%9pJjcTR^=Q*fna
zC{IZVUvk-94{-r1meX~7-i3tnO*3!z-CK<FK0ZE4x7ADa1u6jE`s<N=*UAY3fLH23
zc@1B@vMZPHG34o%RKc$<(VrQXf)-D#+#p<eaMZQVufSyn?jo*1cf&Ba(Yi^3=&(b8
z>r7ke!@!bdnP1;9kA20#++pS?!3?h}qdo5I=KW`SmQ<!Kr7KijV~lzcq(4`0ZF7nC
zWXz*JF|PxLaA_-IXfMx~EroD1wPm6{r40vL7p-um?0vLVYaoY)9rFsyy?JjqZO{xB
z5+;C7j?Cog0aqrkBIP%21MupYn)R9)2bzmj9jER!rr0sxv-4@EI5YiOQOq6*2GaEz
z5f}yV0D;jkOhAQ`dO@C(a`=UC|CYJc!3Ok8chGj=4}@K_p@cPj4L?-W1D-4_6W%Ec
z=>K_nvk>YP{5i@AQzp5*D-TDb+s>~%nbl+Yj{pd&s1kox(1$DQ_>3KVZ~9yWctwN3
z`@lTpo7@Kv$$=ysbLH$&X2ZG(x5~NE3`*Qp0E!%Gb&;y22Fixm_}YeX8Jhy5$tr~b
zS3>VMQ5nZVNMEJvxBYUAFy)Y0C0g^Q)EmQi<{wv#V}i<@<FUma#$SVl0HuHpPsJ|G
z48ya$mPZz-%s=nwctAnH>H{?dOd9NKx>RZd`A`GUqc#|$tMwf6^E4zAy#4Y{R>w^#
zMY$voAbj9Oe0&h0Bf%H;wQ3Ub;@{0J2}oGPI~35z=%W^$+zA82cru7in#k{82|o3w
zu6#||9t_PkB>)SKHwPLwHh?xB_0ZOYvy8ekBoTXE3cWJw7#0x1cV6Zn4^;G>YnDEe
zqNNcS{LV-2DYgTkiqcEr<sdhBqfAXUJf4EgM4%rO9m12UWU&xk9$#OIka0HLb9+q@
zlj1BrJh%_?SMzX5<`fIE1ULXFcF!TTQ;%T)ZZ&7#rqgz8#oO@k5>EgsU|%CKgf62$
z46Up%0!d1Akpe4^CF?a{IS3M4G<_a51Sk_&UiW~|b8|?&HBv?Kmh04R_v3XU=B>fU
zDf+>T;rN`Cm+)Y5A<a|JMAAS3sgeUFmCwN@7pnoHk3J@tKrXf45S74pG#8C^xb>cj
zjP|$k21nGENU<-hsZXL4Su~|~DZ`B4L@I!Q01<%VRHpMlP|+xZ8ChoP=;~(<+4-bx
zD?E9T>^JS=XwB>26@mbOAg~HoFrm5`q-Pt1m+z2UrtSsho$kbbio4MD`&^qf99MmI
zI3`(K&puA|b#Mqq#oGROM74-RLK)+VLBKUs%I5GLvUJIzVj9+Eg;0H)eT@%|xW%(u
zd;<UGSu>mGK7SsQdnUgeuTc27G+GKy*e76K!gb;G^~nMueoTx~xc1&2uard^ZNsIN
ztxOdz1wlrCCHjbYjuHV$cj)6?rDTrodu!zS8h%1GOKCAM7KHI;hSFQrTuQ%twejMD
z@DtYmh(ll=7lWZzjF>SIF(fPoxWT^i_zR(Rm@SGB`(|Ng(H6fFN_co+2V}>UM{zcw
zSq-`eL-E>d>UD6X3vm1i_g<;2GTa)HyWr)y%ltA8L!JkKT@``#jS;QW${r;0h{O5^
z*R7i|<<Pi&GNL5AM<&<<&Y#nbmZy;|3rXUnMH{T5{}aitnEg)yfTDe2#`7U3L;Tz;
z083;C3X}h7U15drMs?Ca^0bDHe^u<kZEx8DmC|&(3hTlyr<{_aK9lK2jbH*<SnR^n
z!r16k)dy+#P!obKkd#RM^a8*~LYO}R_yCa$PV0|^u@W{4`)bUu1m;nScp?<IP-w<%
z17f#UdQ~;$vmHd&3=%tfy-dhN^HE0!P(*OT8!8`Gm7m0RItH+vj2Yti3KW$qX;Wf=
z9TlSAcx2opM@b#Vv=fC|T1{2dekHKMwlNqTZKq<*tv)3IfCx~wTaQGN@#77M#SH0H
zyTG`#Sx~E>Bu(%IAZaO1g8C0-RW%zbBf4E+51I<zy#LCiT_gJ{ObZ>Trh7I~T&_S}
zd@2u6w-9+6kPXN8pWs{)OY=%)I?udy*e1rvuO`mmP8(J<^DRL#OnNn&PD-hG7_r*-
zqKYW^w-cKK)6o_6LhbTGWQY?QD%DyWt$m|n5L>4fhgq9KsU*BOm^#mj`38J%dFI$7
z1aZQQ1Z%WT`;04X!hu>3noW*ofJW5?n#O`g%F;isS^%WvP{Y(grSc_VBJjO+t_CXL
zL4AU_>&3rpzuwq-%VqF6q<J0YNfu!RxhZ(VzQjGp>5pn5(MfjRsbp!Fc)#lVRyd_k
z6V{4}P{y8n1D#(tND@QL-1}?eIfV2p?FxklW*19T$r2n#m3nX04)X``5=0DM9m8ig
z|8BOAD_vX^xE<7-@uSE75ck7vp06gW{?$Fh%jxo)*fw~O%|TxemkXSt+77%R)bKbE
znY38DGo1=8m|z&kTHnljklAQz09#h%TcH-*8BiJb6^L@Avx8gU^-=wC>;{ZlNesSD
z$w|_?yoS>%V$m|M1|mfIgAT9Up}=q97U5)U21*FG1AQ<uofDZ*G#)2p@Lo0rhgVQZ
z*cw1cqOW9&BIk?h1hn^v?f`Fu4WW4e4^n&_+tZ96Wjs55PLst2I1F19&4D9KQJ{zE
zgYNM*j7V^JbnJ|f2B#enb~K-jOc-Lm4d)AsQHgsImKcBln5I`dR()NfAtJ1|o2OJz
zOWZ@92(H<A1t+hIPHD}}QEzg*dB38^)Ct8j;V|vb*wN<chX5^)hoUI*t-2f6yGzbm
zq#&BclL>yu_P#CZATXoPoH={?E|CQjP;s`TyB*m!8COFtOz)?6PbQM=zaDN-XqR?8
zEXbt^C7S*Pk&5qfsMnOYkCLj44qDqg0DLG{Q=-=j6<cGiOI{N$V0x$>Qo}@ji3+4g
zV3$}pc^d(-xBJU0*fso*JXa(RzMQQn1$v32CG$3IUalezf(s%et+e3D(E?VWJFw*I
zet54-=ui13lu|RF0CNh4yh&CL9I*tqh?y($?cI|$v0xve5;1Keu@K);fS^~&mKWx~
z1&8d_2GxPy*Hn>jc-krYwO?x@^0T@Gi3jK)Hu0slsmU;ZC={r-NXX;%d!3;N3WsT+
zL@g{96u6-r08U_}b#Q*M10tVR(z$U10r`?6Kv8)av6ID2{pO7aZpBs+#M-Mwl<L+N
z^A%nsZX_m{#k=mNw+oBV0+3EOZWj#pnps3<mm5UYg+TI$FXaX~*$fZ!3NWR%ue?T^
zpKmY=5NJdYVd+sN<RjngJgFV1+*G#)>&Wb!_Vf|+4+4WJ<n?5u+GMEPB|Ar}{QzoE
zG8eMWFoZ7n#x)?VpFhwvyrdPup>M)MEFhg(5`FrOh7VE`KQZq{UKYRHEI_#srANSU
zd?pW&dm<r%$U=VwC6~IPuDGO2<~uPi&Ua=pBY{JpGJ1<V7pf<pzTvt3Xm7Djse;_(
z^WYQ>_ql`&RCo!a{z#9Pp%KW!ND!=dI|lWVeB(~A2&^@15O-AkAxbS<A&5Ml2P`SZ
z8O;Rf7(gpltQI{rXY=u~xVWNEi!PJ6tqCPS7jbSrmY+p(Pl3)owG2{6_CSZu+yMn6
z6oaj_0-o0DTk#r<=+W9x5@|$TsB&H95%9>?@C1SmmK@M%2|6>7lX{IEmD}8eKa}i(
zL_#`DzxW<~gIjN2Hv~jz4P>2k$UP}IIKg-;ZWz4g3j1sP88eU#=Jno52c!l;DC9oq
zaSszowg_S<+Ii_ASu~z=fqmKdg+vaZ+3D|Ce`x20dai3KR(vty>!|y>VxFA^+4hR?
zWb&CesvjdBE8Be3Kv7iKAiq%+gsQ1lP>YIIOjL&c$*y#-mDesUG#&@1p0MI<iaCeL
zKS4(D@fJwI=cCd;WNfW+^w@b7UxogtpY|x$6FowxmgNMIUqy0t71kVNT5lGhv>PCi
z;;30`50C6I^wMV8<UT_Xe!#5DphLtH*D%K@f?B;prV2S^7C+Yt4X3wH%xX?|<aHcj
z55w3eklAz3wph%rrod44r=R_`04=>vJ<F`9d<l$Ms6%A%-@*YQ4)Y#w4T}Nug**`e
za}zWe1;8D~umfF~{U&>wtuvbF`J%#ZnK;8T!$^r%XY}N`L_zMI;yuN>Q4LIr3S@MV
z0VWYSWrBtfk4?Ia1J5>&n)I8*R;nt0HDwYCCwYqrO+V&hdhr`5p&91FkF<3I()Ce-
zUhiZzSdK9^j>y!>JQK1Q<QP}&3AUrwgP<)71>`VYFuyeaZ1QUW8ty>X5h*!<YB>-u
zc%E$u+Y1ilav{5$s6~CYxG8b}*6KeOgDb$H8@EW_N-;o{1r~73Un7ugvR6>Ph_r7p
zHjHQIuZ25KknrU4b_$?GOx_}MY#5|lj}B7iZM=H*mRKBKhX2>Q@HDoRC|a6@K!wvP
z@gp9F^7JTVL`|chY-Q2c$aFD^y9Zk0jA<T>dArU&z9+2CBS0WAf8du;W9I0TB{V9j
zm?rRmAjjw}fYgvGrg;B6oIgmED35?dmBfOw-7O`}?|V9lMz@r+Vy3rm**Fj;^yt{o
zN7GhXMHD~I;*CK>TC%te<YN&Hl!W2#6h-l~<Qf?W6tIsfkJ%B4y3R(c^*{kra)abR
z@r(H@1{3a2ZHCeK6A{ACG{Vl3jI7u1yI&5_<Zjj39nyX|cMbdNey(lgwpOB@VAABK
z9j`(u)Ty6;TZl2(n3Z4H?y%*{dt;yQyV%;qxRkqtpq(3@Xn3g{qN3H(wd}ECmx0ji
zV2dE+hw;Q{{9x>wuu8VQV*dHw^JH7ARf%vv=okv|2Dz(N$OcbKC@Qu?7R~e_ZDLKl
zy<F+4;-i~+EIeqe>_M!Re7<NgsVNTU7{}~oEBCc}m`K}?JBZQF=|?_?w$#+hR~-3w
z5V<l>21%z8AQIPdsJ&gewpcm1f;qD@E|&}u{YrS~X2ypz*qg<jtbN=oVhi$<FGb8_
z*X9Za3!B81alIsXxe@X!sD5Vmi9_hWRMeruf5hn%8FO(l`Urc?6C*O%H|)i9`apkf
z!DCA4d2}RSe{y()7(Gx2vm=wLHj!A{m<`h1pzT5%pYGTM<{e+!kg%ytz+YPS6ci$N
z%c9p~EApNa9)S5BHI1g+42~l*obD=m0Q5}kXP!A_o8uAD-EwuTdKTs;l6#1tCQld>
zWl0)iDWp}R@Fk3ZW33YBGaO-Iv5;$<^w}DoP`S3o`kS$cF@(Y)V2ncOYAsql{=`-;
z11rmF&GIrmPX@C-)9sf8naU}^BI;Ob9z&HQhIn86Hh!Eh0#o&Il)wx$8SA_Hvjz%X
zs@rh9ymi8Z0KxF5lvVMS|6la%gssG{8B`1eN9kvGzC|XVk(F=12H<ZU770JnlMG)V
z=06}OyiKTEJlC8m)HpGUs12w0l8<s%3>o=M?+Nr@yDf|iAOyDzTyhL?;+sn%^79*t
zT!!52R)@;sLkP1nZM<z<U?(==>F!HJwi@R=9j8@_3A|u7#(p4!wCK|C+sWssaw!CH
z1+-rvxg_IRCM1272sd51P!wiZACt~`WgcA&1=>_seyYBQm@WRn%|a2w%uL;k8)=(%
z(wM~9vuubZqdlsXYG#u#<iWth2m(IEqDu@*WfQ4hi{WaHsV*VgjC>d8@tLkg@`)>h
zu&lN>W;%XyZ!qkH_%ENPm2*ylq6jF`N=GLvjp>2~fM4B{MNqYU^^?92&yz)=UauIc
zA&W!3lg^94X)b=!5J@2hg+O#Nw0ow=okDnCKnmtV+NW-VE1lp4;R!I7T(+Twlwke~
zHPxxUct8HVvd6P;)K#i%#j2t&+(36lv4kpe8KMK);??|dL8dUSU^wo200#%m_X?xl
zGQ6^JEWZiEg9N=V1l?AmmOO+oqBqwd^$BnN1Fa=n%EU6TkX?pEQaYk?xa#=RGju1=
zO?eD4>I1kD{}$v;i;d#dI$sI`3#<Z3Gh#YB97Nf;9oT>zNEP~*8{$b1DaT;N-eO$X
zaGpXcd&Eey20<N;XA{Xvc}3E2(HiSv9mq){Y#|4UD@Yn34`M+5`C$ty+1p;)oz%UA
zr=hAQC(w)fCQ~%4k^u@sX=R^ES`urQk$f#b$4Rqx>BJ0Yy1<Y-yM?+48@KpH=j9Us
znM^mN268Q!ikvb@bKfN;_yOCCYpAdpw%RwY;~H!(&cgZP>ZbgnJ`AKpJ}%(3J_4~N
z6rJXS_>*Q@s-8;sWKC^?PJfPuaZv$`oF0_fs7?|Hu5@9E+X`Wf!hwPu!GzN(Mg|i`
z)Q&)-&n0Z58M{9OSg|Nw7ZoMhvjBn$i_R_8r}&pw+=%=~HXlI0O$r6km8l0oQ*|&n
z_|NFtds&`{BMJX7(`GO!T|y8!Gj3}G8bz3Ne9b(2RBoY`&j!(<TFI^_2vx-PNk*HH
zjQOSKK_C<HB#d!tZV8yEXlPs$q`i$=DeourG$lzZ)K!cyWU=Y63&K(TqCF5)-?wd3
zNzu4X9xCcR8&&3!n9B+WH#h?GCC;0D8M_Y8Z$thH=Olt0RHen<&SPj;t$edwOf9}{
z6$HhAIEsfQ8dwsm(h}N*1`zIZmtuM5{ViFIYr}32OI<FiD6PaRu@*3edvInYx)YAW
z&cT6gQ6i~#0~hk)!82NMAhCj*Y{*-vl5B1ftDKX=4a6ai&#ROK{-g22#AEo#Nyn{|
zOKp++@D2Jxk`qW=@(5h_ley5rO38C}Q?OZgu>DK|5%wd}pSV(K-*OFQarXA~zi=`D
zI?5TFO3Kb>FPU0W2W%L2ChvSvk^?Be)1DVKTJZU&>HgC_sij&({twbaYa;!1B6yUT
zQrzOYiCkgXmX|jhd^^~elNzEl!fKTr)BRxdtd^{JwiAAWsaQR?_UT&8W?8uf1{yL8
z5caC%k2AYi66QM>LxCwJu7D-g(~E%f1-{a%ngEay*?&&?W0)WueuAlSx-zv5K}Mb)
zmh+9xgG&Spa|NY^W+yL)_(w%xSn@TK9(57FEkp)QOsN*iH5?032Lz!jvGp2ObREVG
zK#>ioY8WxVzTKZKZV_oNKbl&F2eAdUpHRFMbevw5biB`lMe?>mU9}AGIt+=_sy%~s
zZC>A?L(V8DFv5|7dUEt6IEeVMA4#>I`<GX5w$?pa=2Sw?@CG5)<LKjQ-oa`y1ArX6
z?c(sfd*1CT6o8G!$=}C%Fw75v?R=p&?L8{O>aKU%;1NNJJdJhzMM*i!us9)hkm5h<
z#44ol%1#^WmaI)dkks0Tpz@nhPfLQ`?eQn$VF&bDs?yjG0ak(tCVhXk05I(mts)X6
z6HbT1rJRI)Kv?JetmZ<P<WYhelE<f_BUvqN0zS?hcg`Y}4yd1Ts}iiq{SDV@T7<^|
zb5QVnI-y;P;d6(h=_joETUiEt4Hi8`7-_K6j&ICA7eA8)wEjFQ)>o|6PSq~~!{}#*
z68(L+qDU<QjCA!Iea2rnQep<rmu=z*JlYyO1yDK-Q<0}RBjhqgqF&<=3f~L?B`M)b
zr}f$mtv34{Q=@hVUa5&n=s|HQff?ZFVv<A_f|@04ln*4HXa{B9Q<OZcgACW|?20fz
zBph$<ar&TD()b8A;%A;#3@-dAaZfAxZ(i#T^RQivPJ0{Qy)=k6d+;{+#P=T@1z`{~
zGBf$Y5+2rH7o)FCwhT-TL{dc>3g5uF`0gmcPeE+iOZ;C)h3&pKsJ1`2?<695%C$h{
zefM(Y+g$t^0KhRJv1yo2H1&6HTaWjl3@;Yd0PU53uoUrDG|yx@2B%D)XLl!Nx~%W#
z3(1sRFDP-JZi2Qz#*+-}8L?dWL<^8zB}j`Yh^*s_xPVQQR9rl|(fHA+wW~x&;6d*1
zDJ*9~5?!Dxv=yiKz>aan^*mmsT+8S-A_O=o-m9xRfBaSEk#;h|7497cju=0KlW38&
z8KSTV_~m9^w&x{e{g}$)!1+c<{-)f`9&cxqj9r<2YTGO~JBF?QQu_-RS}>T2-9nNa
z;CqbJuSHU)oCs8`3U2TS+$zOSQPE%U1||Ir-PJGTf_qV&o%Imr)MvA)F|ZgudDAuu
zk!sV%0YAb<mwUaBmXG5^ulhk}`jJFVJmqGlS?*}9cSyK^x;0g9y28sAN<<LBtwIA)
zv%Xln1A*V~6!jy4drDpMIqG3^eu9`~SQ7SOibZi1oD$3unR<X<=gUBSoQx!%7?3c`
z)6RPUmhL$wbYefqCq{C~k-;RTTnGA$&2e4WmQod&0|KzDHkOZUHC~PR#*z1Z#L5S6
z9fLq*GL6x$p-zs6UP2obBJ4T?Ca~jS096LUM5KC{iwBDvh^f&bYu8Xi%0E~dYaU-h
z*y14*c$_^fZ8M&pun~&_B(f;jn-!EHauB0rHb%wDhetK4A+`E&Tn4-{ul5%}q$<=w
z)Lh|@l2k?PK-ryUc$vc#oLOm@$W1pl2~E=%ku9M^iT|S^ka<cdh?G-@JW#>Z1@dsW
zMa13oAdpcs1}F4$iJAB~!MLC5K*W1_kT5Njf7r#DftSGg;JI=ktn5Qr?vOiii_;c=
z;wiXIB-2Z101LVYhxGBl#C#P$2oxBsbym7pPRd2miC?^=R6V+^F9Gc%%;3jwhwMrm
z(uo+Z3%oQZpq+@!4a$LGLcu0(!CJ>Z>UK684Uel-JC}#;xha8e3hsOgj)r;Rjc@i$
z)zj(<#hunav$RmUuk_i0Raooc&trOUatZmhYjwJ)F%V1-G|(Sh#On|nJV9%!inF$?
z+^rv|BQ$-YL<a#{!Hd$K{8`y3O)B+M;z}gZ8nlC=Th#dHDUFx;&lcCoV?yqJ+<?rA
zG2@;Ne<w`O{y89(jwwKIXWma#4H$$WE{5p3H9dgADX<SkFjNc@h(lW$X>4zzs+pAa
zEfy(21i{CbojKBT5#_#?irl~`$M2~DrRip=0~5*oqK{Nv?`|DT=%7p287tvc@hWry
zE4dI_4h#vXrN_=pxVnpK$Ou`!NLAPhM%vUDBdu^99;w%*UUKrQT#z8|kgkW*xrL%u
z066U^m9}W`)rc>oI*;O%Mgg9wD+Y!g|EA(k88t>t0E#ZMnRVFTc(ubP?!6`UW4(J4
zkxo@nt$e2y9DrTII`^ng0wjfDJ(}H=c5b1k5kK2J*%bG|bDx-Z5~(q{O{?0}5*33A
zV=PgQW`l0k8(dB3NArY(n>&2aP!R=?0KhLn#$JYZg0vDGrk#KxL$OwuLHOkhUaFrI
zWr1aAjKA8&)i^L4^}*W|Lc)U(4VYESY{IlR*${~7#sU2ph>X~0u+HYJqLHg`=L#$t
z#0nrBUtyl1SEEUG^jbQ@cm|ofq^u(L@eJp526D?`zsd}EifLJ?jZ62LOs;b7Ih67P
zzAYSp)i^6h#B#8NMYf+!uD+14&si4nm@uOr^;#?!YD^r;uRJV_PG9L*uog~v49&zG
ziY$mNNikSFDBPOuK1^$-pbi~`L0fR(bW$poD7aN?faGN_7}t^i<Ww6fMY?e2e;9ne
zbd_rHQ=_y}UrBSp_huL~DdmSE;7OEUvrW(_Z($i2_AZrj`9vbFJ{*4FmMO4`<RTBz
zB3hMS<tjil4$hj!iiN~;gNjKoLbaT4U*pRTSQi-wl21CRAwW;gWz=+dT*g%~i&VBN
z)W95H-~bcq`GEa$T~gVq0?wDShzL;+&jzgxMg|3r^`@gd$$6C2r%I)5U*;hCpxCg)
zYW|9Zy8@7RY;AZZ>1$Y43XNc)QSDASHt{DPW&9RbT>^J<`$5$KWmbAf@Id8TT*J#X
z<jfhm@nC`b?C-?x5Bn5S_jZsN2HjJ5>_PmzP#FsWi5+~@+OViBTo12x4(-K?>g<UQ
zG`K5g)IK6G_Ix$NmLZaeob5N;&y6$!`D&Lds+oa{K|im84t)HxMFSI6ZuKAEn)%WS
za$!jQ;oI_CsQOC41MYL5;H@*FC}Di$1tyP63Lb78PuMx@IWMAiP2k0{D`O3(q<Eyz
zmCFo5(YzNBmx(7>(EtjO$IV6|)#*z9#MH||1+l~v6fK~ZlCPu$i3?P?Gh{lLqEeU;
z(9!CH*^U)ahQ_G}EA-=P%SxCk;z@uFqXy07!RkTn*em@~Sp=Jv{&{x76g!8r(TAI7
z>?iKimm$R76~|8t&noydl~8H~1j^A12tUXczyd0HFmW*5@DMYBhDu=vTMs40%GDd9
zc}yW{aSTI|{Rpv>I*8Ow70Y<fvM|Zx8cdfyjey=QQ89#*@3`DslG}_tvHDkJohbFu
zEceP>?CF@fDCf%ISuf9n4WDVVAX8B-t<TkKY@k1pVELwaKiTAS<;em+;S(Vqt`}6}
zD)#o|)B(O=Bs0oGJp0*#vtRl25;+jqZ%E?cI3$gR{Ge?s=L7qVsz_KUd?EF_oKu*v
zcZkEynnDSLNeF0=t)&!C!WFc}wSo)0@NwD9*XiGOD&HNRYohW6R!B7jMP9aw<^%f`
z8wf(FNn3jtJE|B^QHG?J%;>bE?h=p>V)Yq}Z61^;_3+1p_TWMcl;=)u1O%O?q>gHV
z@fgI6e+fUuujRwFmrj7VfrCVyPNqPW)NFSN7#N<A;TMFBSr1-h0-Mi$YHCVMp!u)~
zq8!$a;dTP>?9Cx_b_3=LHsaP$yoxJSD+lk7y+dtL@WYIofgQoz$4wk1uZZ>5OhPwP
zh8*bp7&D)&pxVBG0c!|rMVh2sl4GNp@r<yRxbBqHD<5FYL!1o%&}i{%6p^3JKqi9a
zkSu=RLhFSPHnI%}^Hm54ZVYEMnNWBQiy65p*E#ndJta3;TMqXSI~&g$!{=7De#GKe
zfgk1G5Jq9b>bMoeT0bynPLy>i0y7+~B;!S001TW-cmyDh9Krlo9?7;Oi|(xBN${+4
z#)wN%3cVWagr*N3onmM!!r>=~$-0Uz(XL46?Ek2O)7A-i>pO*Uj~Z<~<Q|_s8fU4Z
zC!rU2u#w<aAs7P#)`$F~N|#`%i5nZS1t!(%6R}_KF_E+L1c3xUf$OXWxS)8#9)U)~
zhP>P?0tY(#b9CVNCVBz@SO5nPh9cZGf7g-lau@9SAi$8a1Rw=W5&en@-)ZWhhEukV
z4zQi>2`mgqo*(3SdNuK96*Lh|(!^}y7R4&%o3^3EGZKD~(PV)YDnzj3D1z~*Q0LO;
zBJcq&+RIZVHDb*_jzKTf`*HuYR>y`I1c-tF4bewQhQ@ey>4s1e=FC!+Q3y*2F9a<y
zAFUK45ln~@`{xV-Y=}4i)Gc_td><vhu8Si;6PmW;d>E3UDS~!`|0552d5iL2!U1ht
zF^^m{+LTnWHA{(VVKrq88TZCa;p5Q=H+Shm-lV#W+Z@10aV9@J5k*#-v%f(0Iboz;
zwL7_i!zUYB<wD6BmrJesVSGit?bDV)bhFkb+~mYJ5#ZKyxPRERY#WiQVDAT*j0;8R
zKO=Am{YQQu-^iYmIOXWzua9tHspO_;w!%>!!+IHHAP7q0Z!!a@c#Oe4Bdc&Ynh|Ib
z@SAqMta5Fden}$;ozQDau}NHwzbJBVLm~8s%nGsHN?uz_3PvgpMHZC6-z_18a*RBO
zxL7+KoS3S`Kmt_~Py~ry9m$UhkRhAdcSI?_RZSY9`AX&RClA2;`yxgwoE*hQc5?Q%
zF)3bc=;y>5<Y!zP+cgCGh+wOR$;KIzDf9*`k91rn)>$)JRViLJ2H0V%dxF&mb|~HZ
zixNXL_47cmi2{c2tccTqZgsiR$gj%9<Y|Pt>b(Jf%O$c12^hU?>o6*a(iWmQp`Q5p
zb5$D0$nYqjuL7wXMjEK(q+qS>;_MQijrB&?%0rj-;qWW(Z|QFj74d`EJwYx-3S`~c
zQ6fCCWIHB!LOH4cp_Zs5UtWos7N84eAbJw@QQm{HR8}I>53+2BCBjBw1KV7yVTL`0
zb#VR^>L~`Z*Nd`n!~b$pV(DFg+EE)37LQ%3f${$E9E=HbdDB~>&HzFzCla?#`@h3|
ztn?5*qH@4Lw0?!SgxAKys~@rX*flM(u8~JIJl0FwA!Mc^$ZfhPfTKXR95QT3FSz1E
z+LL6ArchizH%$q`%kfbJ6r1w?_C{(n>`0I3C-+vL$TFIq^}S~|3j8xuZKFwG8#$Wa
zo;3H`u-WQt|4i*obAkO%sY8(m{^Xs5Lz`ae1$xeryFubNP+(Sx9zC-hj8u`Z?1b0L
z49Y&ttkUJpRS9N6*Rtc>>*|S<30(F?9$(BA#JFZs>D!0sbP(s+^rRUU%w|Qw?Xkj`
zPaEcZ;Mfodc;=z=q)Q!tGS+~ICR5tTBTLwQD#d8ED62FDE`#p#=1*M4%h27u_C9eU
zM{^y`jH?>*x6>PHvh%^Plr=Y5Tohw{X)ZT7=O83-L`aKWnaN5RFi&W5{BhV$#0fI9
zu-9no8z~iwkx{g}AH_5OMpl<*gA)LtCa=Xp+1Opm2>8Yg#oD0J2pO4F86!p}$jc9K
zj1q!>;MT~<SRTE<3lZw>4YneBh<a|2IWKNqEWc&hjz}+?=Jg!4!~7^hqR<u+>je92
z^gFpnbPW<Cu$makq(aSudw5jPkV!Q7rO9P*;I9#N406CW#TzE<h)5Ik=fw+qC+-y2
zAT&Ds0ql~g#&<n9eXnx-(OHHmKNx0?jvxhm_k+{yZ>SQW)Y>Jwjl5Z+j$a<h8jSOc
z;B&w&>@lWDRqK!f^TjPy8=s$`l{q28D4z)Gp2Z+lN&V?xRfhMs>4wTAdlIc_Go!q$
zm~K_%1?DxgPt>$~+$x&;r$|(95f*9ao?nDU!ZRS;hR}`2gpXO@oR}hq{;LL<mO|(L
zE-Jj{6-1JzVoLC|un>U_jPPl{@ac2|A^U(PZ;}(rI^%CUMxHzB((4U*7K|e%8ofOn
zjg_jm67fR~;z6p;veJZtN}}fkhEt|I_*~2@A^~&SY$@;fc{r0Wne2j;de6Csi^yim
z%J}jruW*7zSx&B&Zb<{(0bap9*xzqi^_F&7rOfcv-b6$KVW*(4EBRdA=xYx+YZ0Lp
zfTasa`q~H7io&Yjq&;z;YRK%zPzqUHelShTuOd*sV22?upgiNvk-w!1RCbK-B{Z@O
zA*?#!M=Z|y2*y@*J^^rOp~cz|&t-B$S|;aM(JT=}w9zM@R9VM=<Ihk)5Db5!-&D3X
zSY`TLhEJ6qmEI0IHk@OgDgq;fQ4DZ}MXKV$QBvD@cDAsMVN76UQlEHq54R%t*k@49
z)eBAI(~J?rA@ni51kSI-m6srqtxsO8S8|dwln37=d}y6OWe^8FZKUG;k!GQ!cG;vM
zxmAN!W|`Sq8>zCf*L@+AmEYN4Y~4=(5F<{pE<x3yQV9==pSGTGB$05cAO+lyco+Pp
z_Wm+80EhvdlXe7Waz3Ae!BGg0_4LYIcxEzrVC_Tj=qUL27j|5ij%`DNfNONxuCv`b
zO&G8V+Mz8Vm2P|08pUC1Y5^F?M&qLom=hhxz9NLE08W2}bV+W(epzbMA$-i-0Zkj_
z!B7k2DDdTT3QeOk(uZWb6J@@mN-yvg03Vy}*q^KSi<Bzxy%L;H`^tsoWP!JOLZVRp
zj8O&S!<NV+L&;0m6W&s+SI3_%HPipf`T(p7-6^#8fpQdJM@1~dj^lPD1skOy5B1&*
z%4j%d+0Tk}@~J(?d!ww|dPQjIo8|BXoVh6r-^ZdwZuVoOMj@nyz|2v?y|)K*&Pw+I
zx(RhI4g6t*Tn37YXN|C=GLl*9*#@lq0`UtZz>n&=@$y306O-epK9GY+t{2G3kt!9_
z9Rz1tju6xcFOH8m2Q)~F3JcORzVY9P1)EJ1WABocc)UM#6DArRBh~9P+Zke!9K$Fz
z!j6<mG2VdI0wV-H4WD=PxXAI>T-K4(kBzj1^?-~6mb*x4t3x|`n%!Fk2=r|5H#P@E
z{Z0NypH6C{iQGHTF*J^ffTYu$?O*7V8k8bopv;*#WL;2;P?Uaginz28i+L&Qo3OhG
zqs|tP+oFSRs=_<qd1c43a+Fbjjj1G9oEab67On#T97@!DXuuy;C?y<|mIE(>WJ1*E
z6Z4BuF4q2POUkZN4u7mNs+p)HaX7*LwHt)vlf)&7T2vo{k%FBc*E09*fMY$;!36Hf
z6anJR2Z^MRd@{D~^?U-H8C+}jJmS5&pQ0nLRjiSwKj0m}EEbB+mKR4t#2taTC*w;J
zD#9@){Vo1;e;ji7sMUJ`>WnznSE;szym6as%Ma3G%gW6blVo?o!Ge~Hu^9Jn42U7G
zS6$lzFG3F>!xg;XTcs{Zs-ytg=+=Ph+*4b!sbLy(dj2_N5XSf(gmY#7jq$~pTt?-<
zRa*D#b5KnHa_{?x>s5b*XsD#105C>ZygMq)G$A@;tyM$`<#$-UhNbP&W<K55M#iZ%
zXcDW-S}t$cAbM-sOC+&cw`5X>5(ph6GqWpn2RKuN4o=>x9B?_0CLRUCJ+qA{ycSoi
zs)I|O3$4K}41D7UwFyIjKf+=?hIB1<L3u%xjJF|FP_dym6bY$XUd16_TP<JD7^E|7
z4b4g@I|ZoMU>M~Zm99lwMPy|S>H{7_Gu(H@`~9<Qf1^!cWPWV-$$(agPT^onhc?h1
z=_-$?1(IjXA&Ddw;#9-}KzZ~?iaS{Cvt<{@5DV;1AXQXt7!|a3pe>FpK8*EUlDDYv
znWYRRkX1Yr(OQ2O;+6^W><p5Mh4UimW8QQW@r(<*0kDcP{|tH_@n>34i>k|?@E@O#
zSM!bRLxah&l<ml-P_cRb@t17skdRQ%$mLZa$R2keco?s6BaxGzrjuLDK*Q;=s_F_4
zkOGBYJbF~~zWiKJ>kxO=!U@hzjt?X*O1F{NEmay?&4h_9k(LbtX|+T&hpKSay=M-1
zc;TiB!EF}ibw$$pfS==>Ay8?86XL8&&NJH4?~j;((lp<#A;Ar}{6g=cWMM%0nkK3k
zKPwRd--|?2J<H<U)k=w=N&wxzD9sscJ3&={pl)$2?%_i|RSTxiev5eIMPgegS(XfL
z8KLITh{meo76_KqP9-xw6(+#f!&bNiD8RaK!m`XB`yvHEnQ3ZMPJ+*!3=V=2ub@{%
zH1ZHkR+%HHuyhW1gwPPi@-W3!0(y+LZMK<!^NBvSWN*gRBbDph5?x(<R*l~e%qxkJ
zA7aoO1i7;>1IEx>KTw{RQ>tJk<B~;?(%Bd@3J6Q?Gu(tI<OJWOwsj)zuzsdUxq9$O
z{wqcZ57Jq%*4<Y@)!FuS55~S9z98~;^aTNU3+<NzAzC#VzPfv7TWL@qtQRT!l4wni
z&ni+QD+_6<9Kg)ZRrz{q824!gnx>nrnUJ(>g0b7*0k;im#Ad4CUQDIQd}NwcvD%o|
za5WS+82(bjZlMVaeVC=Rnd5sMvC0Y*YcwRbS?QAxql-8i!opZPzK?KXKs^nm8?^)g
z5*%gHzNxg?l}wsos^TLJbuvlCy?7gV&<U}?+W?XOjd&Y80#_pHjl!|E^59J(Lo^2W
zuB^{6Q6uVMh>OxtW#^OL;}XC60y&mDs$_D1F|+11hR-t^5H&fs$LE1ZMoXkAvZ1;Y
z!-9oMleYv45-!q}iMWFMD85}~ERpn~mLyg7CuJJo45=B28B%TBWO?1U*(L~6P7_kg
zS){;0GiNldowXW27moyrWJEK2{5RRxaBr*_f+RIz`n}>K`4M-c&CBWCCM@nuOj%|z
zb0+G~v+Bx~I!NwuV)r2jlC+2by0e#XZmq3{Vgswf3>~ZV!_=!t0_NFkZCfa!_}7+r
z*&G|9lVpKlbW_Hb!$T4@?h=WW*MNw&Y^sqqgy9wUD<LGu5U_@ktV1?EUe*_KMCOQ=
zR`0Xo=UDD_>m<&Z692Zv>Hvx;9%ejUdosLUWM=5aT$%H+R-U`ITuIYlj++o<!4%n!
zA!KAVTi}C{zoa=ygXA_g$tx&RSvO}FOO-FEyt!=*2Fb+W1}3?ia!V^iU!qX{jsq#^
zd$D1>FtFe%_FMN?ERYHB#^yyKq-S6k0t(rx$*gbwPA@KeAO<YHPsFrT+qS9eC|N$6
z>M8i!5T-8KUy{$uCtz3o4J`%W4oQtLbWn7MkKzFG6e+^<g+hpRqS}~}TvSaS=TZ2v
zTs7(<0IyR6VVe7=@p<%<lxhph<kMuq#dyKnEoOO0<?L+wO(ga?I^<Y06k^SM4)h5%
zbWtDa>YP`$3nm@{KrATEQZfkF*lgwkve=ku!=vmQq?Czn2=Gh`zcfoSCZeCKB;Y0Q
zS>hgXw(M1Uv3>Wxr0Qza0%PdBNBuM0IGt2SFO;&dwW2nZzHTIqpn3&~a~L)p(KpJ)
z01zUJkbJ()xsxim+*#jjQ;wx`+#>kjhD*@jq%d##Z)upm*aLy;7aby*><HGaoub_s
zfWujL3I*y!fWu@?8xq6{qGM^n^DBbq(oZkX*`9#$O0pUsNO!Xdrld5nU6m9T17QIG
zdd5Rlr49n7z{Ud(n00$d##hvK_)JLN!7ZuHjKvxs+BT<z0((n<Ctsn0l_pf-j$Wac
zE_E<KjR}7kHr*`FYVCIOJgR5gdEL&ScGhZfC6E<1&fPU_3CR~^heA9H!MuQX%8-bf
zy83Qzh2^X8!}Mx4`i-Rz`AU<_>)3`tQ=`-0L?^jt$!(V-TK&PZBjcxhV4tTCu@Z$R
z=iU19w1;C0?}*i6GLdi!;tpDUMN<{aM}nop;My@-lAaAG7CCfe0=&&*>OjPNxq81z
z7CxxH<ENOlvF03Ee6M-cJ=6YJZophUY~n`;P8Y~JITcJ1R@-gho&jNo%sU|cH;&;{
z46<d^8xK(+jg*g$kNof<IUm#vebRz*!m&x3XQB*8xK}B7qQUUDCdK7i9U~OSk5lj7
z8YM)cowjZ}&gO=E#BY5ETMO@u?1|%5x?t)iSpmyB+~7B%Pckh@c{<huSbY#ixI$y6
ziI~iOj4<HS(tZ&RB##YYd_i|Xt4Q8P1debCgW6*u)tlW$Pnl4go)|aMgxiY+Sykun
zx$0Qe94LO^C)*nMXW900Z(Yu1B)(pgdxxwCf%!ri`5buD;wTmZtMsHLG4^;39LiH;
zwO2MWUV0w;p}7TK5PBV^k4n0()!4bf3!ClDMmW4m-59C{Ez!l5)DyGi?0ff+`tM7T
zF@P3V`s}eZMxJ<av+74RC#Gx>vx+>^$*I&e9u>y1d7&I}t4Wm7sxZsmk}iB~fUhr=
z8XADEKzt%k1P@nA5yEYUKFcI|DM!CQGO7?TO`XcRq;$;3e1OahF@mF?&?%sk7opE`
zw?S*=b6o{o0LuqNhgnUMa9Jg59px8akT0&OXAkjNI-35kD0P##^0&XkhpitrvM=YD
zg6(5{T#?;mv7IJo^5)Je+YO&&Eo6oO<P)VM>DU_l9gZ&h_)hT;87#z&6-nTIs(nnQ
zoQ-~yvWi*265TFa(147JZSEi@a1k0EX{e1aGZmwGxwBD-GpV3dL4M4_#zEsO_N}*0
zwFgOF(Z+5*SFNLpg7pyGET)I*;Oq7d0B++p!nKnlku{3OC6yZ>5~`*TzYMQr;Q}59
z5=%InNDK_TnfE0`Vh_8C<zjmqZUI($j9a%`^?nUuTkq1cRs+D4DVo5+k7)99Vh?hF
zDZV5^iQ0XkATWs^aDFugBCb5k5ekiVk*Wk`6Re>~LwN205tn#?<XDjn?e$W5ir$3Y
z*yA(G=@DVQ@x%e0=c~iZ!m2P|1Tb5a>tJT)H0Qi~$hL@t;V#b;(6zjI*LocINcw_1
z%M8vq?iO`O4CEy{BPcvduK-|jvaCIt51T`2CrQV+ho_^q(~;j6!G^%ifg*ubN^Up1
zlD);CX~OYf8rK&H+6#`f1~L@2)MTJ-uYHL1+J}3pqkMcYlp7=ox?51zb90?rro<3G
zgTV*eyjZ8c$o)C_?E}k%$L=40DDSzA6OGMZSDR?wQy*V@EKR37KN<`LmuO6PSK0f{
z7lqR#Y~E4uN@OYG<Xb^(qYTLe5|HZAShuJ@%cmjqz80r2Rg*n}sf3>dLP8-KWq>Xj
zyKE8&{zv1D-b4VlI2;)WqURzrNLS#->xoJ}sTP4Gvisb{tKDA?isoUPzk8BDKrvOx
zXna$uFcpkAwgHd9=)``2oQ~{bt0ban8YLz<*6v`c7BoR*$F(Ligue;#;X(L(z?HQ&
z+$6tOQ};5sj!lPP1|#s>0IS=C@_Qw5q+r1?lOdm7D^*Py2PNXX8clpdGzaxOq7e!g
zG@JY0tUQW&w>ML8S|L|Z+X2sbR)Q^IP5wNEkjUfda%uWSGKDY328^8NEK^sqDr(p4
zp6ok-afR*DnIR@tuKc(MF$Ra8rH|$lw;;g|2*(gf2Dy>|3bC<3<r6jxst#c}q=ZCE
zrNY<zY3QS++`;u?x`0kia8I)hDxm(&bG3x?MA9+Rk3;+5e9hN5Rwu)LJ{$SqRW(o_
z4LFfWBo+>xo62zJ@ha&nzD3)}PVi{P+;YO<Ego*1OfSYS)KS}I;`jTt!)}L^buK4c
z1+0Al7Eaz{bNqFho*3j0U?vilG79%pu2RVwQ+$xp9?Wh|@2|+}Xc|c@+R74%x|M}t
z$mmGkr4G%zqBiUbi8UL;?95~)JQ3VxDy{yh@^&MY8Jhz6!`U;pkRl94<Fq|IB_Jkq
zzbYu{UZN7o)yB&cAUQNADCQ)a83qU(bOxY<hw{?4gZl)?S`aKUeW@(yrTZ(+5mJB>
z!d`G#6Hn9~dqbZD<_&$P1V2-ylJA)?2wzASM5$nNrdZVm&)^5n-fk6~XwwFGuKeL`
zeia89G$s;{tn0jh)J)Q-nF`^Kpz`yKkC<N-o@0?a=rdzXjL1^SF#hyNy_4Fi)M--6
zJDdAh|Hs+u{Ki}yj|gPR0cuZG9?gX!yH7F4*fTI&S2Q5J4lFJ^mK*QOG2pBXO03d9
zzJp7F4=|BQo}fk`!$SU41_X8<RW0VMSK7CGVyn8$X43{Jo*HZ___&F4Wz<)MG`gJB
z9vXsZB}BM_XxtlrwzgTGl4K@inwmZJYP&2SKW{w7IvoBT;MZ+baE53GYgQwr@ySRq
zBgYeIWYm8<?eV<v6FQMyfQcr9oTX%i+)kT}NJPuzp~i{C0`g|_ulzt=I`(O5Hsc$c
z;2#9S93am^tdft|(4`FjWBR{<0%Py<=6fOxcl;3@ha6k0ANMS+f$No5&}=vR&ktas
zsw@<=k=q-Hc$mRl-=<)igyfou{ht;8QStdh6;QPWi91N84vXGV(P+?ROS3}nmDd4d
zSZ(8#Zj@G`x`N0saj))E&l$h3gTG|}6(+WmZ-S<`M~mFA8mN3|b#hUVCR1}ySa1-k
zW9_U%Hiu9;%on+$5ypseFqdkACWB1gLTOc!Aw+;>Au$O{Jxk%xWQ_o0toR#OhQKZ3
zO}NR+R|=O-uGM$n4#4s!ujG_Go4G%j1=Txpu;{xBNjL{-?|Cz|4h?$@r@#j$Hv8Sd
z)fSiZ1;3YdhPlJ>e>T8Bx3q+!{$RqgHz`(x%=@udX_#++@Ln);4AAdRNbi1nL#o~A
zUc4GrIrxJevldMJbvMqm&*ihl#n{K{t9eU1J&$H*#@q$6z-#qRcgaHKn1s8r$Seh_
zT1w)z$`DXUVWRpZoKYn@*?CRhlg<{8k!?!V#l`@Vn%e}V$vpChE!U6GI}E8Xp^5Y6
zeXqcB3B=WrXdb0ZkFFpAj4M63uCkYxMhMCh2Lk_e$s(Z$kK=XF=21puMYi^nQFKTL
zo?v%HFD@F`SejMIdz7T$kNjR{oOlZ5&x!208JVz;rCUi#Q9^HwLsJ-lNZ^>B?+)Z=
z3K#223jigHx#@Rn`y^)W7asts+d$RWUn>B6VjStN9l*;S-g8gP^e$S(EPbQI(GRDb
z>rgi2w3l;8xfP7VZ530SDymquifD;8Vu`N43<=r|&Xmy4<Jr^0<8&ThFz<WaU}P!?
zl$G-lF&P&p@)yHY$+D!>3_+981sZ@MR<;q^3e^`p#1Y#J3*PmxaCICG3S4Q*X{0yD
zSmnQX7%%{284N*U9HJeshRgsZg1Vw^6!SDV-T*nxR9{A|&~#Gwg;Oy6X&6#4j*s=%
zw_+f{+MND2=Jg^H*sE2m9ZC}#6ufw&VtY}w6k99CxAHyka`+R&6e=M(eXUC`ikx{B
z{3a1c$zaTFv$k#9u}TNj`_kY@k)wt`^D<EXv6UtGDKc2mU|fufCXzDjpJrj34A9|c
zK$Sti^`SPT4?|6l$EiVf#7$sDZZJptp-nb+RK@7G7ic?@at5^&$e}e~d?f&lKO$+r
zj%iG$wEH{Jb4w*x^)fK3T{u?ct8q+(bVoI?VnW6-!>+lydQ#7NbLfN=S@~9;McF;V
zop#98Ry~_iS-!i)9ya_>#j7p;=aZW0X?n!G!c+GgE-^Iu8+E>*xLE3@-m2Xs8%7*j
z0(A_r%ZaK9A6kpwNzrhwj2M(UnhcPe7~q*@XqUu?5#IuoR%{~9bBwXme<-7sV%){X
zz)|+Bg{D_|(@SXsU?41}BuFFuq{;|RQfp}>=x*g}SO7ga?mUizL4*cV@-)h$fHP`_
z2=+iG>cZ_K_pORyKosG~<+d!~%f%wpkJXWCeRjl2PF!q8Vh>bWYHuidA?`T^Kq^6|
zm*F!K*n+u@ze=QwJ&5-js_taQKS+CS<Yf{!#W{gU*l-N-vCwpN2}p}7>A+={5`uza
z70289Ig~*zP@vWHu4n?y7&TqFC+|p|roxz3*?9N>-)p$LyMOK$y!OvlYLi!?bcrne
zsW-JK>R^L=BXj0Y-Eypc1&^Z#yN#-|fAURzFMfVIosa#E+rotZ)Eftj&n4u%3-!UF
z`#DB|mWVx&?E|LQ!r#)37E@b77Yb4dbxK9HHr=6`&fLAgwE*Uh7It*Mxl*hqt9vVF
z+mE4w<B|EDtFpz##)2KQp5z+0%bf<8ny3(91ZgYPMr9OOA&ig%Vi!w8;9e0^laHGq
zHy;PFleRdwWLvi;cMCVaAVW~flc7gHW`mQ~YuOz}n4w$2hq@@1O=|EEdOqVQ4&|0{
zbcwuF72V7T0$_W%u?U86qS$<Uc_69-X-5O=kyfE64Uv1RMoOGSK;!|<NiIQCqE#Ir
zSMt4?4<rfxKOz~OCDO8uR<WU@I=E5_Pp#mVS_-n#g)k!gBo?#5S8apHsRyEYAd-8<
zl9eK{&kG#OrRD`l5AQPwrxZKk0u);NXhoe2OIktLE(IcDp(x$MivxfbVG0_{;jjNd
zZy?fI;1s084{Zza^&~}AdY27KzZPS5n0Gm21S-<j8L1+Zc+J&5QtbWzkalOwaa_r|
zpkF1;j+u6~wW!TO5~aJ77)XG`Bn)IxZGDjhKoXlEz>Pr^^?H5LuhrkbhKNXzRMk1%
z)@Q4TjEsy}%a;$o|LzWVnE$>RVVZzxa!LvF3t4n`5B(e~EL+c`VowkLM**YTZ0i{~
z=cC~iCEuzCWlxCZynr<rHPeZ+rFC|XZO)RwM&+SG6KzFT=l_vT+8<kn&Ug8b8U3Kc
z&GA|NZMIZ5E}l#6t;CT{n<zN*3zJ=!423wdpY5EvJV}BU*x~;E`p)Vr+>)*JRqWp(
z?O(e3KbVZdHSO?v`?l1x^n5^AC{d^HFE8SHOhV4I-~ijm99`*Gnu;F@$d-Yu7No2O
zbu6K9u(GNm6g$5;lkFofOWLsf-h^FK6EWq%0pDN$QZibyZ9g3Ra904Qo<%eX>j!U$
z_)qv+)6)ro5-q&t9u;loI7e@FFWc?&kSW?tufw<=&4T8W?>mp-XTtH!VAkLzP1>h8
z-SnX(NXX>>wQ45a=2n-;AL7on(IpiC`M>k4vNlks)Ccu=q(4_(9=6@?$=nxuU$}k8
zO$DBYs8JaQKa0CwtnBXq20uueoTO;Dy@R`;1z4jJt;CE9C2HGvW6pn`G}bJ+)4P~l
zfBN<?na$IE!0#nSLG<NrQSU%)ZY$TV<Yga8BPFD(O@10Jbv&Fx5$malVtw%zo_~<6
zCmqGgZvQ^p`R8GIliTargO%^AT2&!%Ps;ZDk?UR_DG2d$<i%|gw=F{ABOLa9bxog=
zyz=+jk==8@I<PNk0=@v5-P~SPhC;m@zbj`EQ#lE`&OwgAE6z#f1m+)0>sVj=(FU|q
z8}6`4<uB!^4pPB=snRH_ynS~_V#a+=uR{^hE5$D}<2Re}VfEuC+vC%c3B0Z{Slwua
z1vR>9`J65(BZyvK8VV6v7Bsy3kh;Qj7xsw*g)6GV*M&nayEiD=yB^l)oBNjHXY_)J
zQK?m_>1b2)Klj5g&3xY9*xVbC?%=D19bvepK;vBr0|E=(F9fH}oiz6gGMzob^DSY!
zCMsKL#AiKTzFOZuC?A)8wL4{!=DpeDY8p8kFWQGc&0fuQ+?mPzAW%&#Il~C*_j|f7
zrr^5de#@7P?Joa)bU*2CPL8AEfVJwJK<&+KaFrm7>t}W`_*g3b;<Sr}&xkM#X>IZ5
zjYeO_sMWgO7RfO8XcA9IVr^g70GQA24#>HYiYd?V5Ug#e>fTbs^@ul6$0c)Ow$2=(
z>om@|!ra}9OC;{lj_Y}Wqcv>Q{D2h`g64niub0N%&tpGoV~_HM3=SSVxgHL66vq`3
z2JnP`ov*mJ#WGx6ergY&)Lw7L`$R`T25TIUFiBbvy;*p-kZY^koQ#lv+aD+2a%cLJ
zPt%ofPp;&vZRw)xpEx3k;TfeuboM3Ycy&4qxZEmZv$i&WJK9wBe(3iY)k)O#i>RZu
zasFO>%K(&upsJ7rGI4WXhoE#rgLv8WFU|oiZYxXB9x?_*K{T%^9o3V*`1W{Z5Bj6h
zp^J}KCWPpv96IgUUnQ2+i{WNL4n2h`2={hdE`?|OMr>BGc*o&RL2W0@6u&UJ^>N5{
zQDf7o9?gMpQl2nFWiD5LEkB>S4L0a7Se$529H&^cct~gl8FPLyWc=fW{8&MPGE!74
zqT_e?OO~md9G2K6opJH>cJ@ydbZ@`;b`xMgju8=fe|Jx>a9z_zOCl;wTPvsIMEyi>
zG8(z!XuLi}@_rL>0c16OS7!2fRv6#5$RWx+gY%>w%W74hJZ>mJ<n-hi`Q*DjPuO%q
zJA#;{j$pt|SfU_!Fc$5>X3=dSk;_XLeLf*XAIyU}NUw$vboWzX)Odn&nbdN$c5TAt
z55x!PplE;MQ04`1;`)D;^2JBasMr2W`RbqwYU<O*5q%BCOH<RhHCAI}`X_jyqhHN;
zto+{Y!J%*j=o%+_*|RRsTiQM}RCv@VjA)#+(tX5b?7#I}wm>^jK)Ez!crm7}>)25J
zmT$1t2Uyj-=4h&AL(>-i`+!=d_Nfw0tN+OZnr$1LexME2NiWs4XzL)JZ8sElk<nHX
zHsa`kB`B2*Z8J;SdZa))A)g{1AxuuM*Efsnu(=&a@+8Oz>95xQF$cef0O2gowtVI$
zst?jm<YR`h8}r(w%nH%S^u+w?>he=X%*Gtx{2*_|@nGl=Hg|RnU~O}k2RaMyIa=dy
zz;Gvk`!`OgMm|3}`F#0Sa0)NVqa-sQs>iy7cr#Z@lV|W?H-4d;P12z;(z-ASE`cR)
zKg(0*(J<x0-@Ej;tOVq$-;Yc19nqSwV|dQPnd6|W&DZJYqH4#M*}wiMyx!Pe721e$
zHV-%TF<IRWz*rkINaxTiq8h(9%B^7DV;mf9ygJ&O#o_R1jt_t1StbtW$rH0Y-&cW^
z<{-tZtB;Sxb+B`^k$=cd{HhLv+q86RdQo0kKrI4J3291!M|sW{{W`9}y=PjTmizp|
zTTn**@j5LNmoBAkq`jY={@1M-{j{{ZJvgPeo`wfjdH@ttT|J4*q4(!da#Nl;Z3;Ga
zUvi)HIex)?g0q*$NSmqpq%Y=aAyv>{@6sj=Qe~kI(&LVR_sG1>=G~%B3Bl6h(NM;u
zpqHN7qKjSD7N`H^Ghdk)=dUMkJPo&q$Maq>`CDE(ysFev)Eq&ihC{Jvl`7+JMZN7A
zt#aW8b_^l{?zo*Yji(O5!Od+r+g`8{xrT(be3}g@dse)LshLys2%iZ7b;OmIpI~XV
zO@5V?H%4uJcX_#m(IA^=r=tG_`1T$=cCvRP>wbDSQ;js^+udE;-rX;AHx5+ByZMr|
zvxOZ2r;dr_#o|M7k*vv&EVRtzy8lg-kiG;JifVRVZ2wS(Tw654x>~rBR#}iySK*~|
zeMSBBL3_*S8uv%o-uHK048MY>!8|@i;NZM`DHaf%SEsgkrx=t{FqR$aQt{oWxsw}u
zsE(&SQI1%tyDc8Z_>*I^2-jzcf1IsutncnTeRedGct^3%5ajUv+MIjqlPa-OPI^zI
zM1No7o1R`}&3;CkpX)`0H;atbL;1X?x^#Nw_Tt?qRajTzsN+RBA}*RD3^~9Q$-(NA
zq=zjxIa4Z<22EXGmA@xW56kgaP3MM|3X^#kU(t<q*Z;AxwqE<OJ^lp<uj_G&7PDH6
zs--RanH#5t&Nn}G)V=99Kh}_vP`@&xM3wTBBSf^KW`}ZW_g6FM-B$IU+Ig-S?tHd#
z!~&&AXkdQ1iX*MScAqDE&gP8+<i=JBg&+5i{k7r>ndKm^-FddYe3UFc1gJNjn7HBJ
zQ8r&=*%h~{pneBT$Lq_Gsd}}d(3t^_6`JY|&nh=%S3=*ReJhsjsVAZrH$fO*9Q3>!
zd*HN{f4XqU?M+5wPxiw>5gtpRm*{jkfBGvE9CxbEp$F^LV>y{6h!QqwFwrQ)HX+w;
zYEo~0R{hSB`rXIME~5zZ^*V<q|Erz9>#WnS_{2i-gLL3-s}wn+xU557lXB<zIAWX6
zm$&6t+g0G6<uxk0(-&!Y&St&OxJ;94cbC^w4YSL4{g4jJc=)?osK$BDI>R~F7<#p>
zmE=@zug1Hr)6zS42g7>~07SIQuc>&_asCVQMeCyb6>Cs4ttBTues{EJ^{oWu0lA(7
zzuyv-9xN1BjHCh@Zr>Nv{!*I|)WPwUeczVhcCUE|YJ0qMmb`CP=zqf&`HBS)^8EXP
z#swPIg<6k2A3%q>!lC1=hLb5st#7>-O2PCb4TjQHpt<MpOXvFbHJ9w!?oJEzt^tq;
z531%)!U%qy5mpEl<$+BI%aDXG6#w)`?kIl>E5~x;J4`PQ<W}u?aZA=sikiLDSQ%p{
z+CFPf96f5;#&N~7u9KZC$lc@&`wlSrb6gr;#oK15hf_Wt>fyoskZ3K)`#4#7aehV%
zWzMnYa{3v#hI8{kVoSd`C6T<TJ~AMjCRQ0de>lseiZ*HFKABjq!CJyHv!;)*40?Nd
zD_-OHnt)g72SLnO)Te&WM|IbIOP@#5x^jwDA)>g7_aweJc5UfHl`F6#8H$&iPmDkE
zR7KVE`tp&4l5F$gY6GPGNr}B^V(;)NI!XDJuKm;@l)juDi5xsfnwz%^5j2hgY{1&q
z66k`UxFaHlAMr2PZ*@o$CGn{R7#n+*?lOoazD_ER7srXDOi36*G`*;eMr~fI09h=5
z7$yb1#~o=M_qSq;AL$kbap=7rGi@h-O-qz7{wk@-t4STme%w+L)Uti$8^0#o6X-|i
zP>7U6&_BGj=go*#s^R$Zp8nKzw_u|>Ox`Qzu)b90&pb86s+=SGuKo3=*~1_IlPwZ>
zrA7X5Ta7Y-kZYn%R)`S%?!4vY^EHkHM$5jei`(@Y^&I2?$Y&Q9xFvBBUH2pV_X24=
zL2F++fBqR!ey#!fZK9uk3<DYIZk0W|qm{HQBeZ&Zora1&Jff6;8qtJV6O_o)`{EE!
z{i-?^$tRm#X`18rQVml*tNC>%lz7&M+&gW=^$+}EH(jI};g(1N0Cah|x3{^s&Mn$n
z&G~=$2r^)Cy!_AvAm_cGzR+mYw$~5?5Te$77ddIR?Z_Zq=gc_oZMw{;0(zJ<(VT#|
z(!|wl?1@E;ueq^4-%{AFDX08f8F>~;e0=9X`8_!Zh7k}d@zjJSJ-4Io^;JBDwNO_8
z-q0DXFH&tVAQL$g#OO|%zBgmuxtDx7rXFYqV<<_T0lNK)R6gQKxd1!9Tze7Mpg7)4
zOmZ}S0#D;IJJ)18r>LDS`S2uzGt;N;8nkii^!4IG%(qhlWToX)luR<1y?sB2na-e@
z>sj0`jbF;_u(EOa_~8SFdG~`^;{99wBg(<CPan?n(?8RgBbVO~<zO4v2BWbUUw>pf
zlCxA(a19R{gi4na39nMN*G17=PW^R(s|bH}@loVnAF<pm#Sn8A0U5J%<BGhN5A!zr
zi@z?fAo6luKeQ@YyGrm^&jjaqDR?#`=6~lm?~A7@sjHmgqD$I&$PZ|bZ|)12EG<@p
zyA)Mh`|Av^X4M#yIBbj8*4p<VcV4z<jR!A0r^cu3k!bH(@AW=zY7!4${MpEz1g~FQ
z&BSUn1HXHx5*%cm^V79pRK<8~Mx&co(nV8cL!|2+U!y!uM#Z4W5~uS&;NHD1GoP_Y
zDapC~`1}(7PFv`)AV9OGq_GBNRi*3H_Hg!>MF@1wT(LA;O47Ho5o39Hy;f}LkSwlG
z7XLjgB4w3ghuRPe)<q67NNxOFBC-&j)Lov0eVL~(4oEu_js(|zgMM5(nZ*?p2>x7}
zn5J1|+2e>oRzpdKpzro1gDPI6_sC}&x^}A1$L5=O)b;^}$R}WDvVwU*-im>28JF8O
zx*rvlrxsL-Yw>A8y*71GB&Qf$lFTbAaw43^o8zzm%3av2-0mu5UboP#B9h00aqfa+
z>C!^zR7-Y`k9_FlC4~0(WRt)6`-AfE`wyRvcdASY;HIP7Rvyd=NBi1SKk_)ruIYfJ
zG{TZiD~c)*WpIbXN-wp0+LmY{<>XQS<+9-u%0{1wjiA>XyL)hv?Xo9HAU~h~p5xN`
zhOKAO)r31|Pk2EagZ+7wg2oq$98+3ZRuDaW5E|)j5fw-0^zEQKA7Cf^JUiRjT^%lq
z75l}Wlr5MN2)bz9r~Fz<%1N=Q7Zh843(P1qy%*r#dxIUVpFkSff~S`cZ%)snF#C2v
zqup)37a9q=Q@i-*_<m1z_YX^Vj}gl?_G}kY+Lnwm(3axz@}|xvUGf|B!&Z!Tpb5e8
zyO&r1%1s%eVpsybwRb@!ccQny!?)?5*7eE)n^0spVMz~}+oDVKpZ;q06E9_#emy{<
zv&MZm%dmcr9{ws`TpDIpB!4h_{l}dQw=$UL&vb=8ZtB1EG-5W=LiW4$a(Y_{)jdDC
z_&}Q#$J4rr4x^|%+x5r317c$C%60<0n&~cOgX6;)SHrAGdO?=dx=r*~Tat%Lq|L6E
zWz^yIbF*y_JE88~KhhT@@D!nsA}P8iC22M8<S#%hju&r>1_ayaAi(o_>sSvDlLS+8
zZPxOAvN?Sz`vUPa94#rZkM9`4t&s6_Fyyp-r=bv)Z97!Fvn?;+?&H_9cMoL+-KKVW
zq#{Rc((_<tFEhvF!98S{e4QthliI}`;s3`;h#U`S@7<;0WJL@#cX%{g|G}d?%hb4Y
z)8#p{>AKgxudx!w)Ak}f{>g)YTEn=A`;qb$jSkL?LoH&aaGy6@hQZZP&EP=h7<^X4
zUe7oHm1{hTw~6N>Cp$@BbZa*aPTTkXG1N}o&!CXs<pjA0Wt1dTkUd>pP`ODDY$Ksa
zo@VpXfUhNe^E0Id?CR;s)#ZnK2TJ+6v@i)wVmd%no(vBis20BWpaA-U2IJLU8<u;H
zTrhjGSATbK^*sv}!FM^nJO{H9VE%H9cS#(c>SP(-jABSsmtmXIzv|&^zPbwLZoyZ7
zHl_Z=XG{8{T2HY6Uv_r#AE;&R8Edza^TKp+Zq)DQSO2uqQ(w$a#8uvSYCDG#h)5Le
z+I7*x^h20)82*a!stPKLE4!n~y%p4socB~*6dnXiIKcv{D_0lHr9TT8Xpk&wX|OT8
z>;t`Vg;F&mp-8nE)30Opx_7zD)2;1(#+|SJw7e(|_x|aLGs#)4zn_P+2u4*!=f$#?
z{tBZ3;SXa~TTPpXh1NZR=-q@0b;sPryl&?zP*hKLS8?^cJv0!6I&=u%$vu<<5n%aU
zC`mdS4KGZ?h<ArTX(cfS38<h8DK0Gw2E*;Aff!s^tya$$M353YX<moiL>E~-3vKj2
zCn~?}w{Pp9MCH%7<&7)knGQO80LXQw>EJLl$8Dgq;^)ns12vdJsU-P)GocPu6~8<4
z=LJNiv?2$gL>dAit<W<;d(QMPix)8ok1!c+2d_mgc^ad^Ch%HKwMDN_Uzq<2T9^k0
zUy|7erO!jK)2FAGAK!hxu3NNx4Tf8oxz`*PM2Yk4MTlfEkTu~c7?ngkDxB>(gK#?u
z`3=~xHJ`!NW){?@jvXlJOHBd;DX#sEa`K+x2L8*77*+Rr=16$9WOTL`2k}scZT<1*
zUy_@9w?Kv6TYSzs)u@xQ(br<)f<2&xfR@s!IIm`Fq?<^X2~`e<8=7(_xx`%xiLt0H
z?FLRq*_2Y|I@RG6wdb_mYq&za$?W7mU;pQ#T~bbd|NLTdCL=w1R;j&h1K&DMJpHXl
z>BfA(m6YUJT)oC6vEL=|9wVEf3?gGo#2L45H3>0Y6kQ=kG$SHnrYqz(zNSXcC0@Jz
z@LI4_%Y#4Vc#o&mQh=ydwVXQ7*5-*(1A*MX=|j|xRf-Z>f&iZmhZ3rz!({t_I#Bxg
zla*8-(SgGGq8NnESEsjsB1xrdcS{=t6%5<yPlr4#+%Gf>;DyVV;awMRPW5Cwyu6II
zpl)*rWtM!pvUN0cY&$w2d%H7%xsPE~*oh|bAXKZ&Tc58vyuD?aE<AK%q~HzeFoCgF
zOqF#2T{PdKdh)~j3N!$8=|(U+KsbAyu{G7MXW&OcVTD)kOJnU)Q$C(xPXm0w<hOc_
z#h{(r<+}@kl67I?SSHbd{rI7jZBc{)_sWN1Ck%Qtk4?=I_tKp*;as_SdMLpnxD)Mc
zj^D9}iL*c#&1cBcnKohjwhaGEeTJtp$<Y6avZ<reYS;4GPKbB<b5U4~^?&DZPc>3J
zP#Q^z+r;e|oL|4iFxiLg`R~84D@&X1K}A(wJ|p5-tQ@^+m<CymKCwwn@}n%du<oeq
zQ4;5?E8lIFhBY_ELx#M7m`Q_K$<hSrC$+mncZU?>KNS+Y*Z#G?eyFih$;Zx0k0n34
zQ{g+|tqRB8{jD`aIQm~7+)s1vz1z2W`N(ivXHO$+WG3fxBb3u}uyg}2(lES7P7fUC
zq@ba^zrp@KD2d~Ph2e`qX`;y}<mxqa-I3iAbVePV*&b~%KMX6iv=2#KR44fA#ijlz
z!_R91Ch9p{$KQV%#?jD;xZ{`%&x6_e;r>qC|KV#7%$DJ724wlvqM|R<iidmnFng3k
zzJut^BkrLI_(WjDNjtA?o*bm5m<Q79v3kIr5bK*jl}j1wf9KK%@&f<fO&wbJz~O?A
zU#Oeem!>QourQ4(_NxmkQx1;}_BnMEouRaAT$2be3{H7u(-hoCXIJc&l<>*K?<+eQ
za6B$WdK6ZXT$P2%Ix3*$MG0-Hc%&n0zM+|2prM}N*gt#2o9_c~D6TjW%?!ERrZFuq
zKVKHtd0C+jPnga^XwPSVr66wntM#A~HlM7kAB8du1M8cZKva^}7*FHQ;v;Lfd60)!
z1DnF}`@as_*-oG}oxaftDEJcKz@)0KT{`Q|+l6Y9E_N}TjzDe(iUB+d3l^`3r;`-7
zsz<Bi+0m~HcwGw2t_y!n+#nRWV?~A=JOn&g-~IU-ng+*izW;pvaC4`^`F@qTkkcrQ
zuI|k_M^T{SmZ46(Zht}4INFjzN2x>h#YZyJaARcaHyx!NeiT4La7Ve0zAo*$yX)lp
zOeTLYk)vgL`R?>otIs1<Ci5Q#_uUYB$s`Uaq-DJf1VSa}jFj0QAs#MErW_r(x(P)X
zEbUDS^gTSAWrkC3uWvqE-_NS!%7U&h@lTzEkW{13r(O2>`5ttAUsEI3>sRD*v9`+U
z3Dm7OnFu}4A784(?mDce<T!Lo((%Jy)-bVBUSOd{5O8p=CF%wDte?O<j{{oM`pG>k
zOl|-RKxY|f+K9MJ&Ok2b3;bAaoc>O_<>vgfqts$kpHkv+QHR2(9G+<eJ;FjRPFn*i
zf(A<kauvMsR=PA|wybZjY^`tibj$j_mfnS;Qv8fT6PjSBFUi_Gh+Zs8o>K+#1OH_`
zxZEa>Y^_Pg9t=H9lf~J!<2uK$?jG$F<{XEIa+}NK+VAD2kHfAq71YI(fYrnzLB@Kv
zF?ofFgX!1BFZ%~OE0(JCE%X=C(4&&4s7DtNfjHa;d0b$k{n~)Z@LOYt1`9v@vO5U0
zRv=W(ooo1oZ;K>F?KO?4oVy#(=}lUd0%RG?wQ}{@IbM8{@hmfYMrS6==G2?>G<E^-
z1l4o{0K)Q#c`ij{W5`!RoQl6cNP50@Z-?>rR9L$E`Liro2_vZTJa*bMP+98XWxksC
z6fn_(-bsT{jt}5JF@tv;sEFA5^|46~q_-+hw+0TR*nrdEW9Rst_UIS>4&EYFPL4GY
zs(ebgzAUao0Fb*#atgh3c`1EjbcCEEK0qVJ5cykHuvGx&#V|QEORQ}!1Kv!}ouLZy
zsa#AIb;;7#?u$!Xz^=c1m*}=N>bh%Z_9(AB9=`dghI)H4>$l_x(0{xel1DN?7R&d_
zUG9fUdmwCWu5Gikyg=2#lg&uF{rG(VgGmzWewt|K%Vjo|+W}R$Yr#D76#fw4#0xJz
zV@Z7djfH+Z*yo=RqSG58FOb)Jpxpv{NQw$kr##7VO`&JKr&xLgh|IkZ@0eVsQOv0Y
zz6uDUA7Z;7hXM-T@YVLN91qP(<embU_HHD3Xa`uCmk3SKa%oF4+{A1sL<fG}1V>Mu
zf{L8NQr=MB^K^I6O=7)NQ=Ffs#qezBWnCg{4Nb#aS(jVquTWt%J0H?3wRj^-C!fxt
zGfp7=5$MI$XAJg};cf0fok{%*9$_^fUZ*5^LM`}7)JC`x>z7xqHn{8h(*#`3Dx7U#
zP)zmrT@X?`aBjQK-O!w(CYDkv$k-tDSFoPmNUdq1oKBcgcDBNAqqh%$p@7g#Y+}5F
z(PG%3se34+2XjlV>vPqZgXhBSrNz$|A5M!VFJb+7W~b+y)5D1xJuZj<o<2`>*VxaG
zf!fUvkQUlM)j_3uh^Za<Sa72z5>^|fA_utmGlz@w6hwN8pLq9ws0eVwfoXAFAXrq3
zehzz7JnVKnQpe#*5OfZk>O)g1swH1JUDVNHgj16D^yY^Ii{)Tk+=&{E$iRCLN>d}A
zCeK*f$HcUQI@_cF93pXq^SK)nJ6FoL<k)B30|(^FrLaN^{*cFqRKTRrXs}sXIA&Kb
z_Oo-u0plrJVSHI7Fs}<T0SXB;oBW|P@m)UB!*by2x^8eMXJSu1n)zu5{fL26nC-m`
z``8v`y>c+MJs4X3#wmz8F^!ELsxv`e^~Q2>t|=(LfPWAF9M$6;VGEgN@8J2%<}<?2
z?D_UFnS`;vFN&rD*llGo+il|R-eJkZ9UZjq>9YfYefI9-+3DM41g8>hhZ5=Wv9E`4
zB;G?#Ly5p4B+SY`IjVq`{`MFVfWz(8ZSBRts-hj|?Pzar>(vwrF!mhl#~z>RjC@C1
z=oBC@nKM(X3n4@+_s)uObg_bNK4rAeAZ5deWb}t!asuwBM^&zLmkcz%^LB6yO7D4k
zcJuzXF2QM;+8Hf2YM)43QT>9OG^4!IE?9)nlT7{NpV=&s&<`(v*!<y1S|E3KzpXMd
zj#Q77HBuDd=_w0che`GBw(ZVLZ!8p|2UmD)dv&uClZdQvv!P&-Klj>N=_1n?p3O?G
zCu)j>FK;FHn-&Xh&Oe~H`E#vZUC-Q?mGj#gK{#&a1u3kL=QgO3;idbP!UL{LueojB
zQnAK;d4}D{&nM^HYb{2pu1b{&8CZ=wB;uriT*h@U4QJ;GZG*y%-yd#F*y1aEJijeY
ztq6x!dAYH!Fl^r$&49m*FsL9t4kR0T_!I^0i#$(XL~Ir9tHush-3iRG{4ttFGw9eP
zfra#8ML|-B^`}~EN-+~~nC?NlmIW=nbEtr)=&U0aMEvAjw=S<yoAhhreR;pa_qgLw
zx(6G?woDD*_y#`4W2zjC+dmN$La*~jP13WESapF~YVxwbrDw-vOPV+)t=XHV`h1&T
z5IdG1#;l??<2?<R&&lvzr#BD5c*Uc>c>4)=l8gg~xOeRUrLALKul0{-*T-e9+`Nn#
zkM0#;TiLJs(p&P!gBuN*6pF80EzWY3hD^YCBKsSP?fKhVf|G)DFR8T$p{=E)?&k8N
zlR9)6Z;uL9<L1@8ZIQ~LVdWfDL&1BsB+tWbO~(6<EPI=Wg-5h{Zi4IIZL0hwjr{up
zyt8x&qi;kaKmC$LHG3>Y+@j%xcH^#7@ZC^P9!<sG|H9S$&tE_wco}fhu1&gOu$^-H
zAwj&ejl+Qx1PAZef#9Y@PshV2?0e_}vuD$%Y)i`Heq=kA9h*!|DlUyWd7jBaSN_|6
ziChUpa}o(<EzE3@y?c+TG5v|IYR3oRbR(|3X??_`!f${UcB=McI|(fcs9J~^6x03t
z?k(a-Oh5uvu%^<o65#f(7N3jHmx|CX9?U<Ovs7tQO5JT5vZJ{rcxdP8?tH6DBj<ym
zJTykrLLVK>`@KNvUcGl|E3t20RIV#o|71-(Yxvc^&~w^R$W;&tDpmdDVAH2$u{!A!
z78yILoblNL$(QIbK5xA>?R0Rg&b2=pkD238&z?UA_3HN*nSwDAI={I5)BD$;o2`Qi
zn#q(NAA^tksLVj4xh|CF+n$i5MyZhk6r<!vOozPrtN%uS1_c-qwdkF+$wN~pjbUn0
zL}|DEwb!Sc<db^Lf=hQB#ca+HZ=3vZQvd@FO{1Pyt(r?XUOW^n#}f&&FXvFHZ(bZ&
zlk>Z^`)X~1-+m2^U>_ubH+P=w!roUmh6Q8%AOD<fjX&iz&)%K){U@lP#OT`KYUy{*
z3^0as`y`>;FQYs;Gs5?H*UNS|$^uweK*tbG_-C>F<*)q6+29<F43Z_kHl|KOtnY*^
z=R+KrbMQvTiZARq>JXDW%^o$Btb0r(b~q@o&@j7Od%%(_iJLP@1x>zske&#pwv_J3
z5%}VOO)Xs`iu|KodT+IM3D&weEgsXh(y^Sz17Iy7#Omt77%+b2J<#GFlHs!pmBuH9
zk|SSfIA}3Og_OXMDY)0x^7ieuGoa6OR~X>7bwm(0yXD+V<WJBhph`BD6MS~kc5;}D
zI1~^}j+t}~1oLREa1xSb0BY@ep7Rj6`c1!7G?-j`x|Po;69Srw>X8IS_{G_km>v97
z;<F0!eQ^rVc17N6GG~L5PX9F^q$Jok^hrSIpu8mt81$h!V@~>U`mFYpUTANlB*6DW
zGq^D!u0#{Emc(J;#Ha1k3k#~m0&S9mtijJ{=_c~ziT|AoLu7vJ1QdUmqAqEfCiS*y
zgeg&W_)TmaU?Ou?{4XiHWG^ay0|d>CfLr}lMs;#0%bWhH!CFe-mR3ro9qAWF3Fjw6
z?e%GSO977sCl6?`;8hpW!wZ3Y(EGmu2vFwOwuz@y5-U*|D_8tx>o>YeTEwEP1eZZ<
zqgF9y`ed=Tbu?4-%El{2c=t@NI^5r7vc~jJh`5xK^(Y&j(C98ci~3whEPpMubWJ85
zj$=NN2QoFW`j>Wskr8FKK<=JqQtbhFwFRjNEv15LoSLQvzb=ERMB(s%N*}7B^NYp-
z2PHFeA5Dv;%S2@l{T<B0sb(5Ig0mtt_>awWTA<p7p`tK7v1Zk`&<Um6Y=0s^DZ$Wt
zqDe!H1|h~$T;F?s5u&2oe_{D4Y3IkR=7rHLO^yfBS8~|2VLGa^b6H4~Jl-SfRL~jx
zA?p~ucdr1K-#CKMDBOejTIw#-Pry5B4|{Ov4kSzxXibLSYuD!QgCUo!E3}HM&#6)A
z4~}5N++<e=QuDAgun;ySet*hSI;IRU4gHNwjOr49nO1lix<(V-r4te_SLycx<>X!b
zTnv}CG*E;v$cD@-^H_a^H4P^^SIj;8Ti7V(emuufL?283e7r_xO`hXWgu-14yPaxW
zw~;qqv~6;65~xX0-p9+gVu-*^$0K8z3QcSzXLy*Azf}{^$^6$Ix3911w$&hBBOBD1
z)J`-7u4v#0@@wb`N|f~bSm4^8%&xmV)rF`4tlCzjB_p@XKF&Xz1sX}<64d;9Jd{Eq
z@6Btti-Z*&^rldsS_FS^`>}L3>4#boLc*8K6`hrN7o(S^mk4L(#aRK(2e7vcw!LEI
z_WZmRtX4ZNFo$AEj<072N{n2^wWJxNhq51+7k0O3?M@Y}YQTlg&g0ay%ppO{biq=@
zz4izyS#i>~qqV*{yCVTECDPqr!d%&F$SZGe`*~#fHZQ|~Zg0`;>QsPBRMDL1uifQm
zo_eUsu+-Cdi_;*noOy<R^~v^Ak3@#U`El$|QyAsqqUZ90;vw0L-QDMnyk66NzJH&z
z)`LSE_FQ-T0yzYWdwUhd+RtK4LwLh?9)qV!-96!I{8<(gTqj_|-K`n9MKoKsLW+#^
z;Ege$2Wzwc@k{I<q=+PJLwmMIa!3xgWVX&I8O_$S4y90jJ%A&>(=!YTd00;>9Qol1
zF!259#Rt~Ad+A?u&7}@3%8(VPL+diIYBcM!p{@;G#o0<5G=p`5Mojm?F+wB-tmxpL
zr1Bf&i`a_z%gu_GN6b1Xfi7W$(sK)ItERs<yojCo8SuAv{u$rVYwYQ`aYI*(N+fk*
zKe?gP!f307PXy-QFl!F{i?Vk;wKqw=EdlxIfw8(k5vcXKPzLrf&=6TDLXiiC8jdO0
z020@_bC;0#$23A%)wm@!nr)cHy@$GA`*#{HEcY?Uy%ePv6(5Lv_YE1jPMkZR`r9xC
z&f(hGsm27AzOw8%XGjmd_cTQrl}hzweGQpzYqn}2Vft6?__H75qq0Lqisj|2h8Wg2
zSRa1aU{M!@l?xpY;(Nhrx*mF1rs_gthO>YACzqxWF>6k98eLTD*~pZa6LRX~FcUhD
zV3|hn2uu(sb#K8Bxg$){6cNkYYZJ)c*Py2aP$kAYEJJyUlT+IjCh@^c{C@WFcrpIA
zNS^9@{(qVa+M={OKl1QC-pQIKI)$+Ze9Iea0`Q<!BMaiX$N~{L1^Xz3C!gze{=g&%
zHqt(l9oUuP1Q0F%1g8shc=!SvCbNt>M%ir=K3l3?7au@h0}>g*8-qbN*O@y745TvF
zq*u-i+XxnrnBU%A(`ISc7~cKOr<FaoCbzaPw~@CBY!a6DYmWb#>Gc=T_AKDRN6zMO
zD{eHzU|aRr{_aa9O@<Onm|*DbZfOzo^uUD`T99^SmAm9@4|5v(Ngrz-73fZ6?C-8D
zV{cYUhjcNClC0yqI+k-3$Ai!KNWP_+b+e*bt<|;v+*-VjO~OvGt8zV?HLn=4QP<6T
z#&XFjn))b)IljE*8Tkz2BjnlRe)28yZ^>&01eRufF1bQWJ`}f(NnH2U3*(WdyPe<R
zr3W}z-PqkV%x+x2JExM?vM9SNTaK_5UCW#~3E*LMABDs|J9zQpV9iZQHZ53`-gP~l
zdCEsWrrP5CLeyZs$#T>%?5B*n1>-`e&f{vxBs8WEW;)<`jXY<qhcA&?0PsFbRz^pS
z6sf+s<CWq``;nO)S&F}jhQeV9T0xDsfMDV)a^jSoZEd134<(D$Hv5{r_|}KXd95CW
z2s%mHSsQ^Ge@&O3H$rO$W|>?ijscuF^*Ct}qT))i-Qi(MLx>OWDp7{mf~bpITVMXI
z3ARKXcLFmm7LaU|ntGo9L=7E73`G}=&WG2fs^m-D>!<s4(5m$9RdGuPZ6I%!_cH@L
z<3Xt&zy`0*|E{^OA2U@Zp#YA#I#1`j#AY9oXc$ukK`kF8NRq^|aUBujc)QQk&?v1U
zhf>&|X|{%2$S@~&#ZT72#HM%eN?1fC7%LwHzLxn2ma9d%lQpzIxpogI1JxOnVt<Py
zinQQU!#PC&Jd1}uSlL1>2Fo_!u`v6JUvoi^)k88Vv~;pVm)Gz+c-$S;%(Q74lqS?A
zX0Cy$g9kU8Z>%OtRcqz=G_Q988)Zjtc+^2^k;DO)iqTRtSCV0z)%bL5IMpA$l3oSE
zu;JK<!-PI<QG)7yEb;3X&zDru%S&`WoWEpfZlGZNiMU>2bbJs$e#fR?{nez{4-;$+
zmrAj>!X7@+diKNPakHj9hx2lJN_x}lYkdWZm*$upds-h+3~ZZzx5i3vb5g!=bd!u(
z$XZ#BvqH?TE96}7;v4XhJDXChJOz!U#01+pA4e*aV?pv0HL1HZKUkapHfcZ3ca1UQ
z5%42BYCSlR`J$r%+UhY!IT{7sn<9}-Q@LE{WXf~@_T&;t5si_A`zuppZC<8&f70im
zoh~xZRIZu2u}UKaAl}*C+I{+Jc9(Wr=nm=*QVA89f$-mya_(?~Ueby0(n`8Ka|skh
zuYzTudpVR}Bmo`)%_2B>bX>N?x_@`I?vZrw#)2A?-kPmsoc0|>htnhhq$Yh-{euk3
zzhb96;)bu$0gb(|Xf_p3I!W-e^G^#kMT2TzLJLBYq@$ASavJ!)G)Jfgq7SrTg}&z}
z2OpCex}&_f><}99=+@!{yXg7{3amVp?*<qNjd?=Q%AMg30<LKCZh=Ns5$@ym>hn#7
zF0#kmVI>7zUw3T8LwRQ?)T(aBt%hV+0<jEHGb8uI>btP=^YD5-#KHX&Yq{xEE*i)0
z<!`xV)v{`OEZZvQ-Z8lMQkY{jMUBWV?`^XyV5?Gvw-g>JzRz*{GnGBJK(r{NTH3`(
zhl~erdCEqN2dzH<Cwb)@ea;*PoWa@!#IrJ4Y}W5Faow;F>lo)bg<M0RBY8jtWwZQl
z=}0r;W+ghPu8>Y790Fqs?wM_A>8J6Xd;UAsVcK?A>fbp9^_J3Wu*@TQC+GTj%ekP8
zj#aukF$?9cL-GV5F3jIu-8#tYrRNs?yr#0R9@@vhh>0qDv{Ui!7?y}0!?^w8sILS^
ziUaXVtNX<_izGQ2*-v)At<9h%_*h8|WCF&>!x-cMyWHc>PpJ4eIYAt$1x8QuC@I}D
zo(0`;0FoMijo*gZRt%0~6Ovbfm1>)7iCF?!qRU`n+l$gGijqGtU&TnVCJ{_<h};9T
zR}WxA{01K*Y%DA(O{SmElLV#7Cq7<UeQcb5I;TAD?GdgDNOz|!UhX5i1D>TjHh&v_
zI$;D~w4M5(T@+t-3r9VC?DB81EZ#wDAT<F}yXgHxH%x8pXX!1+TYvB<|HWb+Z_K5<
zjxCK1O+t<^l%`l@X=^=0<Aw)H6c%6k;Jejfu_sBOND<_2_4X!Kv+2j;@`XY!BzkiB
zr(VVYi(#jRTZ`<2;PxPAql`nXV;kKIJG4G_wAq{+KTX8=gy$-e+$(nzc1(S2PAJ&{
zdcI9ot$sHmHl`a8oGIwy+CG`*4BTltA^oQj=Edcog$q7W8@+%dJhNzbylL=4;e~Yh
z9$wM%L=c8|9L#ES_5xV(RJQlmlf2IRLRaHZ4T_;Sw_Kr)4(H#sz;YU6MV>&cD+;mx
z;A}*dbGOFFK;sY{M9D?ms+!eIXbQ_|t$@MnQ29JCXrWQ|cf}VH=?}kH1@s%<r_y42
zbK~~<nu<FJH`6&~b6Tn%V)AQ@5EqsMatA?AI1(*}pj;~+%SLC6-uT-~f{>8AK)zFl
zC^);C?*nK}hSx6XK$r~If9uJVd%zq^lppLyEee6<iuV?O_PmB!AUw3%bs`eUFL=yP
z4p$}_*Iqr?f_xX)iu;O*c8@abduwww?f)n7Q*V>3uZ_6uUplGmB~N~zbf&TA>b|?K
z7xgXsG0f%(yw#7<5Kej&W6V;(wK)IJG8AIT@L%Uqp)NItHdlsnc2Z!XzELRKAa(?!
zW1F#dws?DyHZCxOCO<!!m-4TxnW^|NTK*Uf<J6Dr8SUP-0ZPj=`vDI0Dg2Y>G^jPZ
z?`b213=~eMlbohJ{+69ig=eC_(HOTp#z;f&md7`cp&EG0YbB%SftQrCarX8W=TcIg
z+gKOKBpP4-1lWgd@CAx252rKt({HwPWx%sTebownuGCWz<?|75pywWh!^EW!?}SFu
z9PC=55;Ad)+i+er&H5#89Q7foy0#Djo#9)i2SW*`&9rl#Z-u9SlptkQvx-msRRYz1
z`!j<6&F`uB_||8s>-*+s;MQ+`_BYR&jPuvO_luVQU;8ZY|2;Ek7s|Boz=K(}q~?0W
zvbFdW%G!q<R!*TnShHZ!WE9`@x`~o?rSRJ0nE%pS4{>sr5AOQRjMGE-g#pvb-?Ynh
zl-JjNmkv*(!32*Gfl<|oL&0KT&yWwO<S{=`R7x9jhR`S+>c@9_I+{803u#J%Ri3hG
z{kD%U#W-K*Le2hB>*tE;7Z?6-d?{&`@-oxv>-ZmF<{piJ!_MXEic2rQF@8c!Z?0e8
zUcF8KJYp<DPhBCXFVNt$d&VH_jx}!9Ql;A@cfKnsN0GeIVW-}p7D}e)jAZo~Tqn^h
zosi<M;m+Pft{tyA&_n^xrmI^WxpK-mF~r37h#T^X-A&+Jx0*d2wYaeT^}YS|>oUg&
zR7C&4(YcdD=fX}@$;Oeuk_eYAGM+CL#eJ`b#}q(uOE-{lODoOp(W?h54i0yo58KK#
zhA-)^MRf~;!@?%u*OVrFwbtc_%Kps{<CxiEaJstxQuA1-nUgd&UV)H454?T6gD4#;
zP#_E0-E{+1+Q0D4+P~5UN=mqY_UKn}#eD5R$OYmIvn;irOEFYEn~$yO3Zqg(`_g@&
z<wdp83oZmiXM5^_s^CF-UvQXAo@m==*9tTjDqbddV6yUkI+)^7>0TtF)w8RbJSf&}
z6r535To)AOUtX82uny);mZt(W1ma^K84(P3e!g~C9foDu>Q8Pz#85fhp=x;RRI6P}
zbqe3@(VZ8CDlxmfPN;}9Qg`O`mkOr5C`^ip04jE{Z`9Uo|5Zj?)zoYxlY@)&|D94N
z=#+J+ro}<$y-d=c-E>Y5MJXo?hg^f*#o5)H#h)aRZgpD+llR9P3%P?ITG5XIgviE&
zC*?AUG_X39ib-;CIp*pK_d0z#ClyjGo49?rzr7Xf+P0n>qfFe{vV8SBvQz~ZLMKxr
z_;SY!O>K6RJ+EZ_FlKtzVW&L3kflJ&!L9l#j`2HEF=z~#IXTZtEi9d@{<im(4d9wz
zzAjWb+lqfQN*w`#DW)k{<tKExs*cg{iexytVDF!yU%p(z%<70jS5`cR%aFRST~q4Q
zE@6_Cog|#Un^eXQ`&xG<43_mj?InfPbK*njR(TQZ74)hNoEzFIqi>b!BR*m#YL!~5
zLpQm8qu;NMDQ{Mlx26s>e%GeFtKz};3aV7dWt7Dq+6Qg_kmL$Z+FxQ`B{DZ~fN}9k
z9)iCpJla3~EN^#GIXuHZMpI1brLWAtcPV0h<pB>jiY^@fv2@o5-1C3ut_pO)d8uRZ
z_0chvvzX@Ye`t+#Ua&)dS+rj1SN6uJi3ALb!i-zGM>`0qw)&AEy+PFuX4y5!6vfdo
zHW4uo`S`M~WbW+%!KLO08#6tq?^%4sMnfRs;xQ}Q;U?{C((5vZJS>T-w{6J%P-aH6
z{I^63Ips&Q-+E2KbWz$8cT-3|mVAzJW$~|4t=hEWa6;f0l0v?BRz{Pi3W-~Ou$ly)
zmH>frJFB2{3#$IWA<b2sjW*<!QvB&x--w6<2LiCANJs{7gb+I7H2id$fb|%pC*qe2
z`so`1=I)ikG6$hjx<_YlB2N!~N!!sHX2=}N%zGGa<S(h0&$McRC0V@s{2xoFAdNrf
z@9+8XIGJ)$F(ZwOoA*Zq)=D<f|H)F9Q|l6}EX4l13Np9cUkFrm)3wWfuHuZeKG1vR
z@~@H}!Lj4mW&&x~)g!>-N-o+<_jq%a=xOuf0vcCg<^g1d{&EooI0CG(FR^P2D-2vo
zKyEcIzs20oLr%rso5k~>7n8UzinT9pu|IWO`&ZYwZ13Ua=X5MOyf&Nh@(ZslN1`;I
z{i29ff=-4chyHN&Wk(0P9R`*?2-oD@mF9Z=kAPN1)P*fsfR6x1V=f_E{0n0ms{Uuu
z!kxW%oR+gMu^Tkty(lnKJ(+22m`o2*|5<~oaB+^=k@XKB&oAxh^?&rm7*-$)mMZ(1
zX)G8AoBFNPX4#uN#yH_L7$lX4fl>z)6k9VoFX;kNZ)~ga1GhSI`5zGYLgC4VjJYcP
z2_$(}pG;K8vRLsgeu^ZAO{|W76PG5<Q2hl#9~d=Ic#AjT_db3s&L@+QKw>S*b85#^
zXj~^j=!t#&?zYrZEM0J4(r31|4~D#Qjz@Ms;FFtkaC-8#^cnbCcrZ$`EUi|yYui8C
z&}jtOwl~Ux5UvIwEe%O(wQ*K5&8*-F_>7K-W{5^srm|sB9X~_+Bm%#<U_1)LrC^Jc
zeuqUV+IPG1KM$0RqMHH*H#yrEiackO<F~IWNJ*ZoOjBG!xVIO|jw~W5{-&rMNn}<V
zEEIjx&v);^{WyH_o%NTqb(2EkSMKe;6dLa#X5{vdRel9GnKoxQOo?<6%zcE2%*>$`
zsvh^1kOwn@Hi8zgPxcpZ_qJT+W2q#{Pb^tF!{G@2*ODtBr;P@ciFAXpO4Jgtk$*+S
zORR1edYitOUo%SOVoVivdnqyk&HFzd(DP<>=QTbbc7vBIMbHxnIR?_{={gs*t?_Ip
zroEn22P!RTTNJsGu48Es^u2{@g`O!KRD(=Y`+EhRt8yD1<N8)<{EtL#cNQ1^5)%}^
zZTN#1m!6*fMVr{i-mYKc*?afq?t#qy(I@@=A4{WRQ5eJM_}}=ZpX6u9kV(J?6|g+5
zyMLFbcFG2PdstzGQg9JX`fi5y<n5GJ#(Gs2-aTFVS@+(+>Ht+Yo7R7zQiENm->2*L
zcUPakG~3n?cQxs)3)%}GtL8%$L)CvDAZ-%C%vOFV!%et0E~q41K~F-OtULy<5CgGA
zXJsa#<tb$-bF3rc*MmRA4bJo4Pt&~LKd%RFZ7Q5Jg*g6tDNZ8rOl?ny3?Jnd$>Faa
zZS9X%nF}{aR;l%N86ilg$hkE0=j*^(MSB(Uf?hcsH8LRT?pcdF%9S&xYED?6E`ov5
zk8sttX6{pYSL<c)<b2J%;PBw;Qfl3kSQ9-mP^g;!joq;1bon{jU(JL9=a^;~x;eZ6
zFMu@%u~?3OT%S<Qo8jS@G=Mrj$cGQa;k$1UH|mQon+6#XnU%6587R8YtKnOand4n^
z1ZBxG<CXeVHgFS|O`F^jg?IUK%>!LoqKd9glVn@=NruPcbAd2YvAcA14d%dFzC2mH
z;Wo{7eou-zF>yFy48%fT<UwtWPo>SAHQ3!rq*~W`Ii>K#-qenMb;VNlb#<#BxFTxS
zA$m9q+vx|8{leOjnGaoYSp3O5a^7MeU#?E{=>UumFNvU^Kz{#eI~KzSTqI{@#Rs*^
z=J0`rU%->CgDt0&S8*Nwf8IaNV%XjO`UeI21ocUU9AauaAdkp$GR37?kpDqyobkVL
zrS&vwt^r3Yw43Hl*smXkr(wfvwknyo3tD*VR5u05;1&Cx5iAW5(b|F5ezr(gpnXpu
znHijB*%cVe;*t>spQUd8*6HsjG=G-HiaXp0AzvgZiqS<yExnnMDWt$ozZ^A^06&T`
zVL-{)6y$SR_+67Js{_K)5B~7t<$_1ElgrCDKU~z&6{$=s=knPtb3e$$@`3CgEsscq
zeC1`b5yNdUDG}#Z(($xB+IPtt@$8-2y&qPKoa5ejuvX|%Iw=+DFZbJQbpu5;@5UV+
z`HEY^j1R^LiQyBz76y2k$eBA7Yk}5!TpWfNdobFql&0-0nBbVztTC0Y!F3Ny8=gT4
z7Fpzu6PIB!M8-ljO^qETgY!T6k{2haHOZkP>I7g6jV35}@H-u{%9@m$sr?+ly(fiz
zyRy(z0&UDRPx^OQJs3r4q?KlOm0+GuXf@a1qKfZ`a{-`<Z|?1WqMDM9`?4My$Clsw
z?1!}<gm)m~<+{yO!)}O^KM==r8R2_RsXKE){6W8Yp0dlUTC!PO`i%t&>nUE`@Tiop
z(=|U&$Gl)+g``;gq^p}kdmg*C>onxb;DJoy5{#W~lf-xIwRw66y6g;+rcwd%?ap-_
z<!v?bj@3+U+F5BnVcwKLJ-0ng?U=#`uml1#XIMo{^8sj*G%LxzBdp6T9kFA*OvZ0a
zBL*&u{dy5<9_%VIE-PS3THxB<mFD{Uc~++LXP<8EuCSB?qpeVms{+HWOt$On!?B*5
z&5s#U`ga@}@VtylyH=n2_m}Uju_a0;fWc7;FqR63o}y>2e@dmr_%_)O>)L<Lzv?~9
zGDveX|DP|%lRnY@)H?C$ZgTw9`mC>QBZ=$yPW5NP9C08UMe&X-&;X@>|FRWK<>F($
z{w>4KmFkb^!6>Gms1}y+(*il5y<=ag?68^w?1AP(kGJqqf+;VhFfX-kF(1`<HL_Td
z(Y(9WE%EZ@HF9j-i~4PmJGG(HfbYRSE8jJ+lm!R^=xCQdwzPi@4RSZ2jE%kdAyL^G
zG>OhHsQnkcgwf`?Q*y{=PJOhM*I&|-L!GYiY#+}$jwvW#yarhKQP>14QTX=VdFysY
zf9;e&L1$>aT*}W&5p`*eP#Z8;us_fNGffLVKf8Kg8kKzQ++ndMvRKsW$IVN#SHHMy
zkjea>w>13(W_Hv1hb=qeg9<@Cz@vzoZoL@VsraHgTlm3=jYLp&{S7AYNzBUQ(%CSh
zkC$VFiQsTN^eU;gK8Vpp{LW_!tQ3A>scE0tI0P6aMF(z)Mky3KSl3cQ9|LplLwg+0
z_A8fw9|V_AXq!u1!ve+tq&N$VbE&lc8aXBKwv3^Wd2?<8Va{v0RfH02?>w}UAtI|c
zrL+pRdG#?S*Rkz!ab1NxEM6xMkvXL1M9^;0N+O%0O4a6%-N?C+5EjN~zN^m<o>nIH
zTnE4Kjiy6R!#B-DKXDPZ`{%lod0HiagkF)mGWIDrJU^JdD2_qav3!|Ap7H;m?H;V}
zZ450wedLKa9Em`fXeok%BKF!ppQq)9h`xm^_9!gSoWfodT>VA>3jhTmQb^#%FDoA)
zQW0(5OX&$P3XVIQ;~|ISpd(zro5)mo-mpWq18MpH)0>)gEeQ>}t^fh)0}6>$f!SRT
zDPUk0G8Dq4YL+_+Fi$)f!&EMKrzfSwb{0Cao7o+;+Q8N=0GXZH%s(Dai=3ILQ74_-
zli5EF9KMb<qb-xf)2w@A{r91Ws56Wn8F=)FH<pn=?O2rM{BWmQffpQ5PEa7+eER(9
z4-y2$-zX24(Hbvq&ySsxZBLih`ng?a38mCfPOO;6;<#&^{}dT#Fc``GOpKCy(*6lh
zHV%X|=@;N+0UixOnglV>pb+DlnvZ(bmh7y0ZfbydXMjhnVDheuKxD8xXbD^Md<~b3
zuUTyjQ9C=m_d;)L^8qfhdWk89Cs(w!Q2q$!2*H?>(H#VuHJlrVkOQ)};8Nb(2;D^S
zQuK%on|dkGh?2_VIpAtC3Kn}DbOWn}K^)EZ`sTZ98VlbZXCUC{$<5Q)vSz%gKifjW
z|Bwm4S~#HJB?YN`d`vUDOUk0+r(AEVPXtBuQyCv>>ffaQ8aW!*$NSXvIbn@6mgM5z
z$?d)U%fM$42*%|3;v(t9@+HRbxa{?i5P(jD9uSXnCNAzhxioTX6c21=99i0s=K8ZM
zB`aE^0lg5SdNLQN5h7u!qNL1&Y>1l;N<#%2Z7GiCPr-|y#4KG9yYUA@rog$;=6dC5
z^*MZdZMH?qh}zED?yPqxti_uckPtCTt1anWc2MaEP>x?D1vk4Mk#u+ts1O`Jx$BVL
zuVhJDB)Ymtt!Z&w`vC#^5s4Md48Kw2B`$lnV_9T<0c2E8-)X^`P_>-w6v^R))LQaB
zE1D9_%-C8a(raPM9oXo4CtLAsZEk*5`)0KQgBpPoIvqXnUD|3ZX6@C7?FfZ`54>&J
z@o!v2mDzwgX<(@mueBMiD;$@MK7|lzSF^u*qz8YN(;>lOIDNl3e_eoy!sahvYu>_#
zMi=j`ral%R8l_}f-27>%SKrN^ukY-vue}mb&Z9k3jR=fM*RHOE=ud{cY{FFXiHw{>
zq9F^tIM&wZcyi(fliNM}RC+ypkR$BDLhr$3&a=aQGT=*H>>o>`2J!)I`;`w=S#$jU
zsd01H_$sZqZ^pr1@j%|Z(ORoXa69t%vjU}i%3%Nc^JRf#2|EvREbqu-z`Pi}2aoUl
zdjD57(hq;}H{Ln-eBQ8Tdbw7kbo4jhlCzarP+Y_3Eh?5n&*K6<9N+LSJ$7V$nLaIU
z6L|Hi=nd^XoilJ)X~iLI-HC&wIv|YAd)qY?cQmCWo6aU$xm%*w<aX3g?(!fF2ma;Q
zoDf}%5xz1Nv;=Hcw0r#eSa`u5y>QJn=W+qkj<(VOKQ9lEB*&$iz`J%g8VkQ?d%X9W
zu1ql0;TVC||9|H4e}vF@!a_<DnCThPik!-RWM+nv@L0}8Dd1Sv;Q<Pq3bv(2rGv7M
zW+=uA?TjEi+uKYSRAS$59z|CVJGc#N{DPU4^~P`#An9s$E<Xk~ZN84@ot`IWTdaL*
zoWo!<^JR&l$Fnp0cy*IqoEnTK{&AaG@H2_Z)73RTb+=U>e^}y2%pUx7n9bW}8|4UP
zi5x=GlWrw<o{CNXiOcyikVRkM0n8d0!i)2Ep2pq_VyYDD?sLue4GcNRbmN!)Um=P&
z=RUPc`E?PABgIpXzZqYtd2(oQ{?12I5LrBI7h|B_zn}l6C^>b7*W%i?^Iva$oLR#9
z#1we+?=LK!T_vGl760Ov=5oYH{~K49S&-6x$E4$Le_dI;1YtrW^%IA?auFaZFG?;%
z=sUMUth4mWs~d()E}B}DfnkHDo|wz2WQF;dOck?mCTlbb$X#bfgcjfP<HE`H%N$Ee
zdv$khzO_En_jEPY`Mu+AeK-v-aZWb4laTrCOBKvFG<?#HS1qPzVq(-wW~4j+Bk%=&
zu#i2t8i`TP@ZKU*?MFBdq@Rps?H93PsQdh=!<nAdF^o9e{-p&4$EeXet@zSHaN&7F
zyqQ;t80SydGsDL^PwENs-U{thMd>jWW_dySN14=e?-7sm;yAui0v8GV5+?cAG!mFS
zc;r?bBKqN#*AH)byi10G78F3uMk{(|5XzdTr|ZV5bK|~Ojd&L#P+*+Sl|dF@Pi_<m
z)ueBQ(V9-8&XO%I4s%pSWY3)yd8enq`R7ax$)i1r9f<R#*yo-0VQljRvr0V$O6uu_
z>N{cG64mz3vSu75jAVUB9A;Gb&_-Z*-LQ7kFi-=pQaHv&u;7FY%Gebt9ww+ejp@!m
zd(rn;NpJL(sJ-;R)6DeEhmusN`WOQQJN5Z$Mn(0g&oo%Cd++Vl!g!BKe*pd<3S}|6
zb<{$<3NS6*UN8nJM{qzPgKyuOD_Cu2R!EmJQU0NlVngoh9qiJep7V1R&T=svlz8S>
zm>%Iq7V|vp(NPC0mrLHsL&%2oo#`(S4qs{ldPlgSPfqhvElTGKs0Wg4)K2t6s@;ZQ
zzopkbOH?D;*y$BN;dngmF=uCOxv09BgX^*j1^Uf6ZPe<eKPgrN-kvRpfjoa(>M&A&
z6x(QPAzH}5oVE@vlF2{8KqcU@&+u*<{AR)O^*Z}Ir;_=vsl@~>*_Rf)c#V+G(&q6-
z2t2w?{TO7A%vy#Pbnfes@KH1nh6U96b&>N-hw{8F_VwF0r+;O`0&dSXU&J$yo06au
z>?2J#F`%Vg^>Ir~Xamq8pR_){x7FyE^tPHb_1dTQwR!*z*G^>CVlxRe+?6kqR3%(W
z`DL@!**#kWY9VtRlJoJkhe*2ZgMdLD*Qw$3c{Qggb+V(hk>1pM7KW3XT>;9w^WsO;
z+I#3j%`68aJ_?uvLj!8sw|Woq7>~&}=%DnYdd9IzYQR4=xU;2c=|D!2JjS@Ho-0IM
zuKlU3)-dt2?BSA{{2vb=yIb1zWp%C=nz?LDUd9oPC$91VSYYb{!VhJe2+yzwFP}e_
zwz*_4KH&FmrG%+GCIcnC2k|&8^Um(ApX*>5#dbFjEdmz49vB+T{8wIr8zcuOMwNuu
zpDe}NPuRfG<*g|;ny%Ptu0O@LvG{OSa%2sAZIz|<Y1F&%>~VXxU#)Cz720*pM2V*;
zkeGBh+NlS?AM!et2^vqyP<uBnoOZ>2;k@<zBxY55L$O1(IY*EpH$&Os1mPUykyF9H
z2hDx%C#%PMIeqljV3qr^7s18xQV8nArRZwUSq<H$T@XHu^{ZUOlDtZm>at8US--I8
zW)NmeFo$E}YB8^OsKvbL|0P3^VO0m&@t}aZiT#VKuy9iIi~!dKApFu|NrmQg&%vT7
zWD7c3gdY5jk1pWPkEIB}NTJfLOsCosy@6&Q&o(w+&gZX|pzBU^FMD5PRBW9AWL`9H
z(v)3^fbuaeyc<PTR)*hfM2b#l;2;O(_W1PPI+{UHBj3;r1Pqm<SUr@grwT`rS8jC<
zZaBb}P41%_t+)$q-|Ct8v^YD<Z^JdYS>SkCJpYkol*iQ6Z86{l<2cQ*L%e(T;87UG
zrI^3dEscn8cCD-V@`AaTm8Xf1wzm_(-0>E*$sg7U(^;sS>B@S;9WP2&1$2}FfuD|b
zOT1$putPYn5=Bk%q}qm2=C=$C^7v50KSt}5E307{KK#a&e2=uP|95VhOWk#!h0oDR
zkr4gHIu9y;I1cFrv~ze^O@hB#B>8SGKz^rX^5aUzN(D!xrb>&N>Qt}@{>}}9pwCYn
z_tT*z;i$5k+DVXRZfl*C)1BY^94(y!NrnDA#^r_Og!wFCkq=7X+$-P*M<dB6d`lfg
zOb?r*Ci0UH=bJmlYhEq?^drm_%LeN_em@W3dsS?8dD{ny<!49tfcd8-NG{7panaZF
zI}AWP-v-<BpFHhYi-TL4T<=P)zb-!*zE+yV3{<w5gxVYSG+@5Xq0Q*O*~)g#3!*Fv
z!d_`G3DgNrUA)>2?`_oN<;A@hAPG}CrtBS=iLWJ0B}hyUtW;00BAVx>UcN46y-oJI
zMzpEke|0`gVr*w~)H@zUJ>{7#_^J)}>VB*>q8t$f;BVoy_oIha;7F8PM8Mm27E38B
zb9;VUmf#oLU0Rc$ee~R8IYMDhyTa3=hOPfuNA(sR%)4^m8bgGQnVxP-=?ZQ*@f-&!
zaM+hC0Myl`B@r*7^(*W?;0Vr-2UcBzZQ5oQL6bdQKHGlt_6HA<2jccK9Zf&;cr0`e
zyIhfuMqxqK4Hw+Z6=g_A>a#YiICe>VN^o}1kqtqWuR&XUt!7)BfI=j`MhGFSj_XDi
z$1J2`E(ZnB!-@bDFQROd{ip!)QuAs#wW8bmK=4xOY`#`X)B8Bdyfw!}R%!)AKH%il
z7j70i51vX3nmxATZ*t~*LPXYVBalA%y7<ZIUD4MxJj>=u=7+h?0qD7a;rq1@sJb%P
zV#M!~rEN#5#It*nRE)jF86d+rqY{fK+fWQ$XZ&REdHc1jt^_PdXzw(mr*qi8F}=i?
zg2xZbgDPYcTGe>0$06Shxy_y)=m&;9Op)!sdwKE|dM937@*p#Mv>mXe{zCB5aQ6zy
zahL%$FzyjR6dWJuZL+n#&VAh9Gm$YF@Up!>xjPNknm?btdBfDjpE)iaIg1xriU#t;
zJ+k^075{(rOEUKNvs{^0@AYZPP%BCUSu#<piJ!!IP3)G@03Nxe-iM$#(-@MTtr_{@
z&$6z(!t@!8m^O{oZDL+h$WN6lKJvVIH)mb{`{;r6cda)ZYIzG~J$9?wz(?r}#%P{!
z7fK;wSQxTE|H3SaA2~@W5bSxwQR$7Yb2HauJ*}+w&NJ=7LRY`L=!1cG|MeR2yn+@S
z=}*(M0sw}aQ1b`1lW0kFEpweFepXLu-M7UWZ-ums5o;xuW))2c$uU0zFDPp|E-=GV
zYN|X;S}h6#oW4sb-O=+-m*)qwxf0DAvti3iV)vwkDE9_n1e9qt2IbemMPCj}QC^NY
zHkUTqZv`*D&G{?7PScvhi)&maHa@*61J|OYek8O?%LBxhJmUn>&TY5>k7fq>yzkm(
zvW8h@waO-4jw-na#d&YF!F*!fl55ZG<1kZe%PQK0UhfO4jZH`$+!8)jepH+qs#0Mf
z;0%leOhQI#pRPUOnVtUC)8k86m^ZC3t)>OV#de<L!%HKUZ)mNMfm!tyfwEf$8<&uQ
z#XdmxywHsIL=G#BnM$kdID%<>ES&lL8W=^6SQVwrNE*!Y03H-$Az%NPg*z)5re2<A
z#R^OY;P65hET@xEjfnr<&*`vhDGSe1e_0l83RW`MH^ot1!d4-jSO}LNZbBYde^R{O
zvMX`dN#XfvAw^9fM$rXe=K0<c3zO8tG`r!O;AgO6s8ThWA5>HYy2=$$48K|FlJ(D}
zP_}!rW8Ji?rOx4i%eGJSR2WL%L=t>21G%(NJui>%&|3erGyIxwDEp-@QC(U1%BfLm
z%T96)qJWo`#6n#*H)tM1R;{UZ?=0GRzQ4P%vtA@CTZ&2YOU;wS^`sS14C0my@qN6C
zv{EVNE#HWehL0M(ofQ~qO>(;roxe|MAhnUPbcnr8?>kbp(zvV?5smegQL1zTRPy9H
zoY-Xo2GEd`vvXU0u_9tA&cxyT_)&BT=p1B9d?=43zP1Xf0QJ(7v){36gpLO14fZL*
z@$p?qSj$97urq8uXhq_Q745EWVlT%ZOw-bm@hZTWA6$~x`#+V=Z#QQ&P3CE3Ur|2J
zkwfS2k3auc(OA+Of`!RJsh&^AM#@tEiqDmZt~BOIzwho)tICHM%9ioKuZO?JBW71W
zfB5aTn9AA>sh`jL>7+`?6wGg>khFU&8M0XB+<ozZal=1)4n#%7!X|cOMri4s!SErg
z98R#1VYSj^_2KNPt{KxF3|&Mc6i#dLwbEYX$?bocw%uST3NJI6?kupjO{Ml1bVVQ0
znWZrK1<e&oUbnwlLAAyAN5fM&K;1ZUwPG+k^sRI%oYb_q%cj8kO98Cab0fes6{!T~
z_VnIdv&KY1QyClHRg(dnCp4{4<~q~1-XoQxR7(0x-D72g`sdcEj?oWd@i`82RaWg2
z_lj1DY6gdYD5{$BjBiE*pCc4sse>p%b|8?dh9xoS*S)p9Diy=uc~KncgU>a(T<%5L
zC4noUbSmbNn>Z!}4YIZU+Gj<__?foxjdPg3xJGR;a%JdM%fE)&`rMFs%uSqh%3%43
z2<^mfI*()lWQ(Zr4<AD>jvwT2-~mApSoO+6Sr=owxTzoOZ0|}n?!-0i1}V{er}PZW
zaVcZ9?!12;38;lE+n8*a`#&n*f*3w5H6SV-VF_Nooax+9omp)e@Un#T#Ts-jW?<!v
zaF=K*G#||~DWn#kp~33GR)Ew}nLcQ13~ZWX^zLcG0G)QT^OC;l2x0(pgf<0nlQcFM
zUh#V}L(+9A8~Tb^dJ{=IUipd&uE>r)0HRq(#V4uP4T;{)B4j8WKp-zP@Mzao#{lX|
z$s6T*n?h+Xe9^+gLAqo-?mLO6f2JsC{Hvz=6(y6W;kmq3r~gros%}kNthC;z%2qcc
z3t~t|XLj@v=X3Ox$YuIGSgX=q@}RVAZ|(g0nx}hDRhC}U98fi1MVPW8EMSGaWG|Ed
z@TnlN@AUAvj0;qv0P-92eO=yX+w0rA`?c%)!QSSfih+^(IINFGC%zOI4Bk9@c6(79
zw91&rSF5lf*AF5I*DLRsMMwE)4CmE%3jkAEI8`T0_0i9&8(Y=()UbHK^i?Yq_Amii
zSnnD1Wa9d`1Z>?M(u&9`F-u;`I^v@=Cx0%#b{<<f1k$`fX<Va1m^OQ*V?au`9J@TV
zN|YayP6=yW2td~g-C3l`_vIknK!@h@fNbU+LCec3`C5z&>Z~B^ud?2`lfsms)`fnN
zVIMsqgU(%<h{it^9UM!`g=mRaUrklzW22kZe|m&y&1z-yLyyujsoIT#omAa9*htYb
z=D~bt-*EA!GLf_}x<kh6_+}H(u2S_jXr4ncH0_n+8nA}9@Q%e&(<^(~Fqt83)qhE|
zZ{2J%NB4Rx9PiJOI8ojUfBs{+Vt7FEB1*NTAe7>iEFD5(UP$rZ=f<^)+flwKGp=JG
zTfhdXmAG{JRGmjC#|hl^gp{P}ui>lVKWwE(^=xx<ASf$@1;qA5XPFXevC(Us-Dhmk
zXCPAkui)z>LeafWQ~)qf{L?^H^yvA?Ck+yYS4$Je!q-gYz&CkxsNQ7yV8{9M8nP0L
z(h5*_bcy|~qxC2H6U<iU<%oJL{stvd-Os)iab$}eN8SHxiW*qh9-jQShN$!%Wq5Qj
z-#iH5t9_>y9?8%Sf#l$B53i*i1CM7VqjOuTzHf3e2Uu*o&o?_xVYO;Bnd8sVAfBo6
z(o(TArD;(oV$}k_iH&T+L{}O}4IRhxH3qxa>{F8hk3<r;7pV$(pdkyPQpJ#Nhm!>K
zV3c@YK|HqC_gNQBD@U5e?2Akk8T~ai9=k{A7{+AlO@YvPaCo#9x=Y~|E<;eT9=K`*
zf~LA1`dix~Danq{>9>H`TU!Ecl;*N=7xM5t;GclNn&%Hbp)}lre^%1kt?3(M40}v3
z1)T%Luam3C++4R5X$yLPc6yK6=zsDsp0UslF6G*BZ#4V%^LkHsO5;BnPES;vt{&BN
zE#S9)TTs@yTuOwrv&KBwJN{wwiypAyf75I@!vcj%pD#jqjiLQo2(4f`vFSPL&uMUJ
zzt!>SE*tPEKn;>|jRfkC158qYcmAfho{=_zlhR5^HYmGxC@JmE!*P_ZxI15IIMW1=
z3_O8XIvTUh>w?Ti3)fgGdsj^vb7NX#<*|Mv%p=A4Iq-BT=)WMl@h~SIMsKv&WZpsG
z1G#{EUiAKPYnh(k1K~$B*AM5}3kNL`(#PA^sl_X5^SjDiD$-b4B)o<oP6P+FBN~wP
zBntC7<T=32&D$uhJKn2CqI#8FE#59pkXopQ;ozsGI~+=)oIAgL3-m52k!hQ|2RM}p
zN^WL9{XBe6eRkNM<ZK5t8G9b&fA|<T+m=7aSYMD$d4Y&qIzs!-jh~8T*h-tnVv(18
z2J~Nt`(Is@zJ`Sk6EYz)Q5ze5H)ys&uy~T9^5PE<H|?U@k5dp^QFEYxgwJ89L2s{H
zl3oc!Y*HDw<1K6&?epy5*_}lON@)ePEDWPrZ^2$%?ppuKpT}ZQK->b6vUKJ48JyiS
zF+7%GO(nK~vh&pxjpag(pMtWTo!1F(Q%yO1C+M)NPF`;w=x$oijN}%pZOwxBP`uo+
zcHY23vG#xdmRg|6J!;ixOLg=m{uT}*2MV{5?78<Gv;iJUc~x;B+MBb%DJgln=_RO!
zbXi(lzt^3G4QME9i?#EXX|X?B{qQhND*C1(qHuu7sOi0bQ>Y);$w{rVanq}yw$DG<
zZH!;Hk9i=+d%J7cKRL%AQMtw{Mx7fGqt@?j?i}>h)7MI5JuLQT&lK=!+Mzw3Cy5cH
z-~*LH4v{+yY*<lCM8?lve<)r-W{MQlWNV?3q)}62|E6e(pF&QNQiY+V0qcLR%neE?
zAtARDsVTD<9K+r%Jn>tJvE%XP)FpYL?tf#|5XHQ)(ygC+(zf|Wd$(_+x0#|CV8>J}
zOBdUeTef9C!wV`YOsrnRH-j@A;yj%OU{$r3&OpPu)c8fVh^~BY4qkAU+c)9+C9WD)
z0+W^F@#MStx1@<5M`sXL4)a~aO@W355HWP>2lkaTQ%KTR4kxt413D(w@4-EbbuU;k
z&n}Ox^bokdHQV3Z?X9YYEIy`(6?=Ymb1g@67v)PIaS@pyAQiJ2#gjEdJVy~-M{-=y
z;R3qx*eW_{Z7a1@o-MB9CQ#%4mi8xRlQcij(cVAwmxI~%)9phSB|j-OS9Mq6uI-<m
zeBw%^$fQ#5#X2s`;1w*Q3S#zrOFt`N^b0f(ZYv7gErlR1j$%V@2iJ<gTkb?lK{yX?
zumAh@RLz>VDvGVd><C0b<^1qN5R?r-5;HTh4UmiMVL4Zc?^are3Q_y^!INU?h!<FN
zIF23qT^4)WrmQwj6n4u(P5$|%a=eZw`ZS#)e?Pk_qx=fbSIG0j?3re@B1CD8@r;ti
zVKpo%1qLzr*#BgLwoH2_KyZQX!hv~7zDXu!nZi(yogm`zulYbVKw9cul{xC8-?sF_
zgQRQLPt!p|_BJ$0Y{RlZ7CXDO?@GHNH-7g;SFsa~;oFZncCWX``3V{`-8siE7bQ0e
zfvTHB^S@YKt&IvL*p;22tvr=&)j+5AXX6pCbB?!;l7OY-8ibO<z~C?M!a<Jvu>?=I
zzA}$ffF<t|q5RB>MF*BT!Qq_~_6pCoHxq}XRbW~si*F}Y#KX0A6wSKm!H#3+WY2@A
zofTpfRZZ8Vet<-BBE4*_op0D{HDZDT>zsZri#)pE{`BJB{Pra9N-E|0+n`Fepm)fj
z<iLeTS^;oQYQ{T_yXi<br;~o?tyZABb-GcMDyl9qtcYIrv;x<Il%ss;(x@3s!sV#I
z?2xWeKl<<E%ns>3N$p1ZNAc!!P#8bEBYp97fA?sx;T|<mvhCX4-kxFa3ueByjX8F&
zRKGqYc}4>!=s7TaT(Q#T?<MJ8w!Az8PkwNaD3Qg<>qOnHAz*)XDwq08%e%Ad-lL;q
z1?-HrFTCovRLA*wuwr=*)>VDM4id+qBKHtl4t$V0GbA(Q%&T#MON7)NXVl2Q``oE?
zAO>)Mo))elIaT=TINhpQ{-oEzfIY8EQCbfZ?bBSOZpYbQ<-<V?$vw$`xuMAv^RV5O
z^YH%Mwov<GWl~L0{ORWN9T#89Gi<D{h+k)swHIX(V8`QBxf9(;_Ar`LB?ti3Lk0v1
z6uW>!qLb9S;N*awV00I6Lpat7#B!v0O{tm0m^f6{EJR*EP*YTxqV0#+_W3gbZYyEL
zCr|W$aIk9_<p2Bs?9QHO0Ry^B>zCP@SKL9b*%gEAZ0zpOR?M_`wtjGw9b$OXY)Eo@
z|45TA&(?2A_%o?Td3BIRe=b*ZXL+YvqVj*{<=wlzyo!Pp`JY&r0<<K?SmZ7J!4l=9
zUM`MvF#JGSwAvI+sOK=!1+02mVLnj#R(+K0SV`06kNH}zj5`QSm8<)nskr?(%r(RR
zU%pA6S+)Z3ShEA=E<5G9NUz%!n{$$8Erh82{q6(uDA?6vy>yJ3NLym8?bAQcsP8-P
zB-+B|!7DpPlmgz@P;-JD$1l-Iu1A6JhT=JQP-YNQN{;P$zU~a~JpF$ANH;Y9V}?@m
ze7?Q+{T{0QRtaf;%H;Tep1~-JZi+aN5N=pep)E6F1+52G3WG7PWW=E@V>8n}hoth=
z{!I!ji!7@s^PMr+Nr9f93Dnxni#c{jj&jhpmkX<0twIlAvpxFS{G9*FiHUPk)=-?F
z0a2S+$sSqY<%@>bPf`jrVmF}vR0YPp1)8L^wi|&?kE(h-6hlhKT6sX;9TANmIgL&w
zHMpGr<{G5@x>__e;x}$LxGx|b+pu-{x=H255^Pe58mxol=#uS~U3R5(&(Qx>L8aiK
z`ylYng<ycBm-I7}8ZNN{dWpo74rWCxlKz;EcyW{h_gk3mV5L)Q3l{_fOyc{6D8SRy
z+{7S=$zg#m)8r{#9D3u&W<0O+TR(;F(~Eak$tm<<=hbW_nyB>cOCOn^X1~<~+EX=t
zOQ>K22Ahi<rSJgS_x1d{1_<E`P^r}w>B2TXYDp&i%>{B@I1AgCe=6`<TKCZp1LH$!
zIL}FeRnLeONJb-alBE?NfPVKDy71TwG0Tt{?yXgdEy<-KgR~2RpB#%MzVTXwk_jys
z;-VCam2BVeQo=dR5Q$!yFrmtIz_l@d!~t_2bXoYa^@rbg{Mcc66Z7lF+L!qKB?nP{
z!)1taG&^f_a`yHMu0j_z&Yd{$@+u|Z)X7r*bi#3VJFUbyHQe6a*#ke(b9Sl0*%e>h
zO$p{X(X-j)^%YZIx64=jQH(~cp3Ppuk4uw<SpI{{i(zGCv^mJzrwgKennmdi{{$b@
z+#g96bu#MkB}3>y)Gtu`<5=l6sh@E?<2<Jy)f1R8qY`U8K70*C#OZ{v*0zUt3!f@f
ziJ2bQx*=P){Dcm*FY6e-ooa`w@p7ulVAe?3qI8<vDpf!U>y%j30<RXGiLM!y?y5Xe
z)1?)_)dJCOX*;rb1xS4<5ZG5`yJl_Ip1$1OT`LvI^;OljIQXK3{lnUXcmAqy-KS%I
zix8*dayE&>rn_Z9dnk15+sS~)a-rThih3&^^xwC%Y#^Os38A0NY0nD=n26C2tAX9<
z+>2<oJbr2L)U!KJdH5%G(+80)XeOY!9)xMw(j=8x5$?4vqHC|TR}}*FHIwyIkMVr-
zUS8;-0c-Jd47{81phRtBp{&ozWa7eu&GHJ(N)(Pk31tAgrGuSf^ba`?E2k$Zf$YCz
zxd0GqjuI)K=@I~N?4-K>wt0xexvu-p9=%JeVeiRn;L|E!PQaBF$?B>a3C4c)S(tNr
z_C6IMPzV>~GhK1iuIQm6t93qPfyzh7Q6ZeZK0RMKtC`N+Efigl@7+HqH<I=N%;v4)
z(B2mpv8ooI<(qo8P>_yW9a}xAPsFL@^RMo&_GiujvheUPQLs6M%MtrTFgQE2!?W|c
zLR^Jqj1D*{)i<OPc^uMu{z+-KYzw;}O+K*Pr=*@cm_zA*DKYS8R*fDf&_=RvDB}5N
z;->>zVM<qaUqOgGmBZRF#lF9(%0&b1nHX{L5QOMDTk*bem86rRRlpXdo>1D~QTQ4T
zAV12h5}x6g)F#d}z$uoUUbQ!0q2cjBM5;h41o!LR)C~>#AsJGAZqgygR@R{qLp*gy
zBdHYlakjO){_=|z2-m9mL%Km-nKe>#yG0U0AKG2r6%BaP@hJ8s3J&~}YGxg&NyNb5
z10FfQa*0i{RYS62dtC6eRU!LWknzjB@aa{N)u44l_^g+-@zz&fv!4u(D1wpt=t)|>
zITg|~<avEdr-Aj^-jNB_2gQ$GO|rdOreJU_H=9I9U&D5DSsTX_JSn1F3S|4Q>tMt%
zuCN$_=8z4`bCu<h@IgdswKgLy0U;^||D&w))jMgG+$q;59-8f@=WdZC2BE}8R|NrN
zmZIxbN}Crce^t7|_ciGYuKE)kQ(=pKK1(8VSgS{II)hMr0;@_3mh#K4j)to;_)~f}
z!?(im>oCe<y6BP^HYEhzA;VeUgX0-f`P)|BYpOMgb~rP}^Iah%jM=$bI8and&4Gd6
z%9^LxY&>|DC{$0gsYX31&DrE+SOUi~(<jb!9YaSEbk{cUZIM%k0w9Psavb{}h6F(q
z0N*Y7Ng0uL=X|8K=WKm@Z*zb1pY2wxGx1OIHUCfL#w6(m^@d~}94f?}Z!;=d4w;Oq
zgyvv%Lzny6$}T!j5$(qhel&PE_*$2Opj*2apZ}~~>y{4I=%!*HIomoCeUz48CW*;z
z7x1+)FEY}u^3(ErzY53%87A*=jh652W0s!HS|!9H;`8x1P1o_x!u(oLs+`opuh)|G
zj~K4+g4(n1qK;yT1OYv#4Ge*cn2J5Mbi)=xpb!HK(%4e9)~0wEW$f^LXOBr94!GDc
zDgoYu%a#8)HH9U6gLo&QQr|0Re0ppY`c4!0L3C=9m)XN|=>zfKTr0)W1h!^9{hdcb
zFV9mUZg)l<tJja(oy)U}8)_J5mr#vD=PCDmmt7<&TMHg(nGetc39%!^Lx1k9ug|_9
zcGYL0KkMl$;jtZ?#;Ol~;Ue-kr9&=aT@pA1ozGSIS+eC6uf+Qqbsc(4Q5#Y<cR81B
zl@+&$YR%`lJdRCMB-Qm%1V+=7(|BU;o)Qv}&NeBx%LN)<THnEU!P0N7Nl!m;aT9a*
z)IHv?chnv5U3!_cClG|w=)0lhhhsTi(0WSzG*x0?_w}d(`*&5gBmV6k^cCr8i}+|g
z_~mfmjQxv?cyQdAe{~Vhg8<lp6oE~w+?|Jx_zG8~E4MbE?y{l?ByR(W%ywU2gP3GT
zuafRpFiaIWf>6T?#ie!k>9Sty>>80#@`9&|s)cLIBz3t9#&mV_@KqW>AFS>k9v)~Q
zlXg`CSCuw%wf1P=wAHr)QqdS${+|g4j~C}9BQ$PIN|81`14j?npWhWn{RnL{q*KD4
zf%0^NMe*BUufx;#$E7=R?w1!Sx!?KqaeSM^RQ*^3l`#_5=TEoR%el9uR4t`GzxZsW
zf4C^=(QwJ)#Qt%)748$E8hwzaDh;G+9Tf6&WkSZkf4zqm0QB0G=AaC(BtT1T_xkUf
z8U}9etQ{F-plfprBykBtg(BzIpPTmM#HK>>?2rDIoc3RYRGOQ>IdM8hP<~Kuaj^bl
zKThW7+Ig$C7-+KY0l5rGm?VU%yu!)zf%^i?zES2i(Ga5%@pal@B8v4e_0!&dBuyl_
zE1$1FoEEPc9~K|w^=ngfhu^{mq+pj*vjGLhTG;QcMJc@Y*Q9;c&J47&C$f=D&RVJ@
zaPc^b^9vQxRZBmAI{bh~<!xgaX<iu|V0$34eA(tXt0LoXsfo%UxdleqI9$CWCV2!c
zxqh7exhQz<S+g`|3O&60H=$#t6cdTrK7Vs`oa%;geTtk`UKTZcwYaQ>994=RyC>l6
z;`E=+eLEr^AkAn31b*=W6c6_E;VB;`m*LSWywi-5zg?!tcC`*{v?p84+x43>6xxQC
z`T~GpW3IC<cHG+T?*75Bpp=_OO%3Cx1^=NvKZo8n8fEbAgTt2Jg!=FZpdP0o5J?v;
zjUWX5*}W%oS)W(4wOySS_lIA|d@Zkwf$|srU-ezDO4Q$>$YpD$?vdtdW~`VFzn>a8
zPh?jLy||nZZ`lajdB9(I|1x9Pe|x)I>;6JM>Gs350}YpTX4u`%RREU^!lE&8Vz5vu
z2dns^!vnLHZWT3ziB}VSO2{yQ<|~8C?c&zKL>2IZ+0M$UG@wNkw&$ls&w>Sh$Cklm
zi}zp8Kq0rVuO;ih`0z0%plL3PGe!xFg}{C7^rJL>X?*42Y+Qb*;@_*1%j-sX8l9;r
zMj?%kN6@?w{x|nt49zB8@4hJjoc}W;w8qzwm5`#`PCxxSjhTzKiv02mat+{JSK6i=
z9A9TgCwBDecEF?a3N%mzx`Kti4J)TDTe+e<_vqM<8}Q5H2%ElEd*PDz)0HoiZ=ZZI
z#0xOM33(-u8E&GgjG`?7)lCUCR?dQ|MRs{9sQ#0tEge%BzKp->RFpa@{_kMKhDp9Z
zfncbq^Aq!Vn9$*STElt1uYMu`{rY!2Xv+4B%P4(<;YNstmmY2{h_>o$n@<bdAB?v?
zdm+iICtNW#*%)`?U#%VOJjZ>#i)%JhlCBwOa+G521Kk(5`_X=eLv*gRDLZX20<bsC
zjMdbywjCXw3HBlFur5r$j_=KW=`SXDE`|=4t7S+T_9mK7gw}s+{Jy+6$2Ef(l6gQP
z9ImM@TD@}ikNJy(r~gNJLyRgkBNk-1NxB=9(jc`Hp~w~$$)eQ&Sc)K}BL<vIMI%!M
z;e6{`^`0K$X<8s$-WGpZKX7#u@6#E$IVd1Y(8JQ7C>%erc>;Y~yv|xV6g6;2Q&Z5B
zUJH(NC+?RY!pLeXar>G(kkYC41Jql5vYwJVxc%$){aMX#SoW#2?@<IGinaFSWu4!r
z^Ee)EuaT2rec5!6DYT^xFnwG=e6lcoyv^v)1Tl^6?>5pO>w&)Kc3qWTEBPty&oLlZ
zqEcmJf;onWyiMONMyy8q?9N{qkp|#Y1iPQCuI<YrL0cW$&TmO0@cd%x3S-L;GgYBq
zKXqZ!6njUip=0fXd;~URn`jc*;&?91A-s>)1M}5Hmgi{GNon4)GOY#bgP+nGz0`yT
zoe)(Hx7AfKdGPYtb^R=RSq!{-;VjA9!bJ84#{P`oQ|(DKnWTFe^5K~NFxV1E0su5I
zROrUd8no2qa07f?kAH}hT!xHQZJXBut6<n|hC<Se6FO_U44mF>5yjyKya_qUyMGO3
z|9;P^bIc-jMcY5rbzw+m*kc&(7mrqz3n-Z%{!~-;B5h;jQ=ZN|Zp$rSP_qF;Q!dD*
z{KFA5J#GSMu=2{fiyUpP5(dFI>l1vvDJ(R2ILX2K>d}5;o%P?2HuqYC%aX^D|76Se
z+uak$j4H-<<;k?aXS$B+FZLfqJE3X5Jp^$x)U$tkR3g(%f5^Y3^F&XbHfsVE;HMZz
z6%Sxu`Q1fImBr5X=TDyKKlF;DSIfMxK%TE39=HH}n3Vbef}s%HQ(iWBx=b?9Wcy$(
z%ILCGEaCY1V$x24={?<z4z04k$cH{k2HsL&EohEn2+7?rf@xzJ&Vul?!&@W5w_R%*
zL6GU;nawx*Hpr4+u_tie{avyOlYIe|rOJB1B!m$2zc^Yu8U$7n9eO*B8vqjVg%UW(
z&RB-MK(?{dmFQm|ez-w=9YNS<&Z~&A@_$o{k$dzF=iv&1&{zDBw)|O^oRf#kf1>pP
z<WK1KKg$Uj(f%}L3}AG#C_!iie59aMRg?j#J7#WY*5xbX!aZ2SoFx`KSQ%`m=M;_(
z>Qv!>5$XLGo4VrM$wVYe49wZze8RWX^wB}M?kNe6%sMpWw-^GWI0LW`5V|UCPG2dg
z5jn&~*gKLMob{ge>k%wQo#jT3&r;Mj0|v23Z(Uv(Nu241x#*V^(t^5Qm$q%@KVYWj
z*q5Bmu=0?ta5|*-DYTAP51#@sM047YT)&U6Rluuq?~2_9O^r%5`KvsaW=<uLD7_E&
z7w1Vqx?Jik{LGgNO<v!%40(f>C&lxFat_xn0r=a14P9fWsZK!1LhTcykn@V54fvD@
zfR+ee#mOnILcva|4uL2Do1itopVA0tEMm9h0b;)T5imr&_w|nypOEVJN+HMP(n*BP
zF$W+`H+5lqcX}bFQvIq++K1PnSkUd{bMN%#;DdN!@=a}x38w@qXP8&=#blxMG)8w*
zE|dw&-5X@D&6_(d$kf^8a64y|k*;;se?pM*!)_1*ouc7u2*%lkNzu|8`q{QMP7KTa
z`Kk^C$J@coC4YO3Pcc5Y{A3bur={?y$AtMg-n1d7yZ0~-;p@AMc|XX6ikO6Lb`}<9
z3-Ma+qEX3iq6eW)mLF)3F~dH$(AQYQBv?wH+3|%HK-#HPOIX*jO`Ba8cdY2Uc||q~
zu5r)%Hgy~KuW_Es)}-`qd-WOrytwDn1S8#%<!2s2c}?|Z;hO7Lv&|0?Gy)DCzmKWt
zSy{J+(?uzq6HS;2XS^n_hLuN1E~V6@=8iLoT#zV9RUcg#q$Xf_iC;MK+MAAip%yOr
zwXmXjf8NrG=`@gGsgj%NTy}gENxa1Vl1F0_`A;n;Ig?ovk@9`p8;Hgo|1QDFlPOg<
zZ!SqgnbSsL|01$3gI2cim+KD5QyGBtx;#%=^`Bs^zZp|~w=;3ti_*QSicyB6*@h<^
zt7J!dOk5$10^v}dX^^9$^LL^5LK+H%O1eTgG(Uf{D87u7{o!>THrGQ7fE4P|{9<wb
z*>s?3jN|tFQc&U3MbUbLnH?4uECCCx1fZUZtCEsOW8s|0&EJnULh>x$P(VnBGqxsI
zJSt;}{^p9{{j%qsp2biu3k#Lcz58G6*~Rg(X4?RZ5cP_QCgS5uWxREKB0*G%h3*La
zgDkjJ4is~KuME|K#WE@UP=Vdmy+d4ylc{D(Q`2&MGrR9jv6}ti54T9O`;mjA)0|im
zsr}Ju<`VV|YO%An<_{eUACPB>7;r1Kv1f7RKw(@f>0bl_Dcq@#HHQiP65V^j&)8Wd
zxmP3!{pitbb0gKk{pOjMu|MbLtrh7Bd3N+wBOc0w3hdbUj=7JbT*j>a<{Cu37WfZu
zRE-n=Iw@L^XGL8i3`)&WUg(z(X$HmrqnZpM%gmw`eJHfFzxL2W(zMvU*4<jdr$Ep(
z&)3hHTX?$755fa|tQx#ie_tO3`T_zc=;^(<1u>No@`vnq=!h)G`{?5G)<ZA3a&89I
ztN=1-1S8+ThT#*cfE00lFKcko!8uD-Jk9NO&h9d$1HvidZu6B%OqrS!oA05^79rfJ
z++AEte08S6@Oxs8itjblua#G68VLMQPB`N**>gTbHcsC}IgcY;?0p^ZoJTHK8L@<V
z9)40bg!{zBZTHdBaCC4rK8cs${18Z%Wkd-)^xI%A`Mw?;sb)`!3V*P_L^ifT4i;G4
z^maUY4xXdOxL;jf1`T_oc5j;4r^nIG_&dj?U^`2*tPgT?-a&!ElKAxTmx&k8#)ex-
z4JKKbH9vLtE+wt-=}ct!rZnLTl_ka&#(!lM+3|}KwgfNDhUiN1AL9!mTF;&wCVH@{
zJB7p-vU>BL`;J*elJG=l|HbG}Q3iaLG}QZV_p`i$gZ>3hWia>63mWD&E_6pTyG0)b
zKW6>##nTQ-WH*c~*M#r%^Th`qNE6~guELht2}!`okEEqHFg(9R31uGk#%}BBF_GA0
z@x*?K4>Cpj@Kt^WCeLY*Ap}%)Vp0{>+rB^!b}}+D2h9^IIh6?<K|eu$a{A_auw7oX
z(yRV`#yrZSx-|Yfuy^|JjkikUR0g%l@c!b2u%=}07yn=0b@tos;sjBocB=k0yE%Uw
zkF(XDgj_qW?vt(6QbUHz!n20pP8YJQntlf{16P*`JN9Ib2dk2KMe$IYdb1r5=%)Tp
zvcPee^lx3cT&)%|_BYcSt4ekk60p7f)K|w;MGpvk%B9{!jkzuS#@xTC<ol0#roBkB
zxvb*)(i-iH6H+^<>r{k{lCs-Vy4yv=o4^IFX;r86$6k>7{yS;Ecrahln!Oj78Fs8N
z<KS>pi~FF`&9q1_0#ANF`}iqY^!9!34{Jt+6qMTvdq?nN5d{s0oc3`qe8q}`srjGt
z50WQe9%4<4q=!B)-d(;8a#dX6uQ|fA<akdLU4tRQjR!H-c0}y}4$lX^VA_yquhWfT
zcyBN#|8jT!ywF%D#ckEic|>6Qf?bPpnB$lPzbBK-_Y&HHNTg=2pxSCPkP+)DF>7$H
zXLYzkSNPs!ioFUg<ku3gRqJoD1{2v%dF_=WS4u4fJpu;YMGDyLq~C8YKl1dJe?Xo|
z?6PH+;qIRO>t?Lbgzx^<aT9aSgTh>Y9#5fGH-VE*Pv(CB`N!0(zq65Po&Fwjh2(@{
z=D$6{-+hyQg*2_A+UnF6IQbA?u~h!qmZ~7TSaj)%W=%otzu?roND;Vapch%95YA@k
zB&Cr9PU5v$v!##Lu+1DK=4WF?AzTyKtUZ89aa-;LPs6BRe3XnVy|+m2_zcU78hik*
zdb9XY0=VIZ05s}<Cspg!<4WaeZQfCM+<CLdWf%tBtfT^#S72Oo<+0X)T%3F=x$Amz
ztYcp!=rx};Je7~dQq}{NmyjY^-y4;8S>=YWwf9c%A~>EVW`{4zvlm$|a5#4Z1XEd(
z7S$RI3@_?Q!<-ij3@<CxMO-!VOzClP!wXX8UXKlv#a`&<t4E*1GGQ-z$|tb%8y-Zb
zpNuab!J>%5B%6TD76f)SkJA}|uuIM4Yl^<Ymt5QwvX&<-+Eb_suk|YWh@wEw2Rzhb
zNv)Y~%dL8+LUZNz>TU8(nKpj@=FR_C+nsI4aV2YluB%?F-y-TpN4ZL1ij#)Rz(5ef
z5J&__in<E|APEr!crcIxU#%aYpP-+o`ulCWdqjX#N@rEoMW%=d5BKeRu;I7g%!c8@
zFw068%>IRmeom?M8|Yz9cq&y!-St`s7k%j?)Mr*rhhuIjG&J8<oj{z!Y4R$<Wz%Nu
z<PTIBHgmVI75}f~p;uLGq6>lcBk>G=P4I5=w_j5qhK9V9`Rg-t&-K2fwvX=Y((bjG
zMZxs8_NSBV451m4_$`%quJ%q_c*)*0*_?y{9Xq?_ExhGq#F1@@-U(k*-Z@?75HfOl
z+*OtOs##};d3Vc^<Q+(2^Mo9l!~nRxPc%I2_kRY!3p|nnb1oXUH7(L3)|%2G>I*8#
z)tR3jE?LI41nl+OdOYDzPyscXX!U}A^`~EZPNI1S<Cm-QB@_6^#zFRIQ5LsP=5LqG
zy<m5A2ZV$7{phy~7|g)I$#jVHF-Tc}ld?qN(asTX@8hYuRzr-<%f=Uk62P*aV(41#
zNQ|CGGxrrT3>iBj%$+m2^p&GSwpA4!m2^G~J3EDtadr!nXi13u^zz%Kvn5Rc^hbWD
z$j_qQ$_u0r^V!WGNh&BhfOSvYb@4!^z)VOBUB$z^Fei3+zPmuk<A|hWz>_mna!EYx
zco5<L@uxg884GaRgO~dZ6JXu5^{vU&T{{AWii^g!v7-i5vX&X|Y?!^Wcef;w$zaZ;
z3VNxcviD1eIxY^1!@texp3PyolzG8;nyjh%JU9aV^UzCT23({Hm1+E_yUb;81f=#c
zS!Yi#F6(g6U<+9~@{T>(8@l#-fS_8_7?v^{l@|GqVu|_TA7iEJTHEQv8{5AKB6Q}%
zt|FRPLY&6N4?1-g{iJP2*h#_`ok8vRzG<jg_+nr)wR}7XaJE1ek%sL|zO6KiGnJ&0
zJyLs?v&N2Z$qlPAT)Nqan`0lY>SF-`8;Dy^m0Z@!dzj^vU7&=<3Tb9EeTId120eyy
zbb8+8^?WFyYOwBh5uF*NQdT=rMCEaRL{i`OwT0($$ILnxqlqlJ50dBK&%_31AkASM
zaCZEieQ5*9l2Q^vK<%4_nHwG=7B3bJ6Wk!3<|5p_&8{w5%0g@)8;qZm*z4&^XS@#A
z^=9z!7y+)lxV*`hfs{P2gi6#`RG|=tI**#iHP1^q&pW3_Mamtcxc%86*w^B3Nq!|Z
zMw7Rv6=`k5t(pQ|5_|5dRuf^sdwNHjUse&j<y*(1_XYa0%j2!^QVT5WA@OD_WQd`u
z!+)Ob?C1-Yt>H6hA0b!dbA8c;#X7vK-<&cC1m&K=7Zb+bo9s+B0gl75PB@uUJHsC4
z@U^Z&T#h*FRY$sSRyc3LGc0o4f?(l`)n1nQPaPp=f#q4ep0D{EnJReoqoy$i>9st!
z%UeN6nVoQOB2|ix%vvoxsDFKoH;&mj0hKRMb(LuB(!G~!`@5M)t=TRAg$C$K)Ax^B
zWCSQn^8IKsdzUUwwsq@sHFqugM=C55%&Zs({K`86^JimwWA-cX``34KnOWI5Ses~T
zn{k?TJ1Pu1KuXmh@PBK4!v>|*65@KXm4kQs>XjrjyQAtm=Eq5xG-t;lnP#gHiAP_U
zlIhr?LeZ&;L!skj#P{mS@lP%IF(nUhQ=BvefKd2#X*@g8-@{dSJ}g?rwC5?V1q<O0
z^Aq<rH>%*@0FGdp1*1z#w9dpyK7jj>o+;3R-GhVN2@GN|(e^0661V+<ChMGMw!p>v
zl5c)4vEFKprz$8esdrxqff0F%z=p)_+W{--Va%8Z$|ofKarV);3Oh^H$zI@#6-q%$
zrRQU1YTm~?t>5|`1`@la(u2j=)s5@*25=%S%!061SJ6Vw(i?Zs_I>!Hdy>6m$}4SW
z_2SbV!?H7ml&%7hHWl-P$9C~4C07lvN^P{dPsp0wv<{r4idJuQ`)$guDtz7M1`LIi
z>-Q4EtRCA*lBK6+G8d3JZaf-VZ#j)q?J{{79M++TZYG?hNJ51qji|w|ot(1BWZ5p<
zZ9!6xQ%xkWc{!pn`XyY}Q$<<1a~U(eNi(E^a8Y_#p6BzDX_2dsbjt>CcbGTtwlz!s
zmTdgTe3K_9>(S_6&vcL8K_nd-hV~1h!`uVO$_79^v^N<fA~%5GRI@cMJt(ifFtk*c
z!dpvP>{s8v3r-Xm;el(g=S7QjxWC{%W%A_a<gBVPE_^Ot<vEOphd=u7L)=X;fk9@z
zH+F~gn-uQ~-eL47tvq+mb-KHcuMg!J^aJJxn1o{0P+jjB^^VuG>)G4Xcq`Ll53!x-
zXlu~+RsUnv+L^fnf|0Z|vA)(L$tu`}Gr_zw>Nnl3*ai6VLW;4s$Q{AMCJgSxH9IRe
z7l8>YzCi7QRn&Bw8y+ldf!-&MYK=1TVbh+p9La<fC>@StZ!YA9DMN!WaVx&DXr=T5
zJyqgSu4WNwaRyt+r$=O(q3<@Cv!8&c42Zi&rbQ|wWK%`z>YkqSi}l8Qm&euLc2`b-
z6nbto=#F7wK-X{m!&&-fwDAh=l7HtS*>4!8VA$^M=U8CB1R|UW2v1FGF*7JXq~{zG
zoF0c{<HH50ybXLVkANSn)$UWzgxPAnyYM|o4<BzKYTnS&VH*kvfO^Xzn!dYTnuGZ@
zAl{@<oF<r5X|UC9p>W9FZ(mAZRzf}Y6W1MI;Y-ocd9%9dh#seg3XrlYxg4mFv4H#4
z06J%@qV!M=`eFLC@ViDZvw7~<BBc7{_QhMIgjBXj7uhEle`NNEvG}A|+Bh9U-uCcv
zQuJXTT)QF`<PGsz?Z84-I`4#fruSE&LH7ROlXi5|j)gGXFnPytg{@u6e`BfhBk~V9
z^lTakA!Pp?&{#mpEy+8mnjj}{=h^P+#zD#jxMlO>eynmzFZcYt7>Mbt{#3y=jdgfx
ztG6m|{bAuP-TMX4r(KPMTyR=5gtq=Q3_DRnC-mZdQU6<+gs+=t9F|8+=~cNDDJ`<>
z4%@|nLqZ4pwMfgu160AMI$zu#NzluoF3LD{b*_?Zmt)UVcr3Ue<q~Uvz(zQ}Uce8R
zD%U-vc3R$bMj4?oUzqu;cMHfY;1km3|GvhqlLr3A!K2)lU&}WV0KWQ-$jqbBZ>tQw
zm~&k0p751;(u!{^z@ThZDp2SosW)xY=A20TcTP%Zw5o>#pywLpR;qGLl!8)naY)M)
zP063XENHFPn+WB_`hY(!3WBBpJmN=~-d|o6%Z|Y9+5B<xuTp?1{=G$Pm19kC>-l1;
zOMKc?K`J*6JSL7%!$6v%WXgO)-t<-62kX7f4fV@+9{;+=^h7XSaD&{6JhWF|NRwRI
zK0UFUF7sia10oh1qEu+{WIG~$&*B?4BMgHVySu(ofiNZjg23+4Ci|poP40$XxyqCY
z$t-QcVd7|Ps1C43w)ItsjRGm7p5>W426(`!6W>lZIzRtAX7H+}+%x`4tFK_H@&i4i
zGzD_PrTi_`N8sbc*(bhI=csj_<7+RA7OyS>F$oGZ-f7(Xq`=Gi{4;il!eowP9LD2R
zY~&GqrRH%sgkg+RZLi@T;q)z{Zha0E@gy#Es_)<VXEbMg#M_8}wnp`1kCvonMDEm?
z=}b8CsLV&pOnDN{vA#HxSLdO%4Mtigv^0pY-^+LhliZDv5gW<RvEYlv#)+u}r4&=M
zd+yFDMqa$-E@1QT%HLWx<cqai=WZFFua`>Gg53@E<T}3j!G2aB-!;L2xA8e!Q4;(7
zD2!ThJ_vXZJ7HUy`9M^@N|~W9G+&^H?!j?AQUkF=aWIqGNA>#!h#@)-z;qt3nq`(=
zUS&9lN`;96K?|}p*A2rl;9{`d)PqvdFi~&#asn1J5gAQRh@1mm1iiM99-*D_3oJ62
zxS8U~M{wk_GOulF!>l4RLA>k3&d~9r=sn8$=GEma?}@Bf)WFkOJnarL9frgeP3&~0
zmYiuAK1OSfm8E#!X!T_%{&nAQQ=1Z~__saOmn&h`h2lMX2ak%-Y+ANcf{eq;U%F)+
z(i(4YodRg#R;E{G#%SjRSKth`sME4GAPU(7F9l@Vnz~>6>%Y$hpM9MhAy88s*H<@b
z1Jw*)-8O>19aV^QkurfzKoX~@U>|gz?A2?=r=H$sfEzh~ANY+O#xYn&we6(9^C3Q*
z{wISDUr~gol00=8k=Z97W|>#u)*NPG`PDUcw#BKIHftBq_4sM6dM2Zk^`ySQ#f@E9
z6M0j+X^ut$<wNjIv*mo>Ahq5k9g<*D*eE#$U7)STOOC5-TC{c&t&iv5wK|%Be8?eX
zSfnd(s|Da~8m(r&u@`G!;;?$PLLCH>(Ve3|FYjm>^dTdFOqP$g1V)*iBqot-WeM)i
z0fpX_(jD*-N!0^3gI4RTk45*Cm5qU$RvzB->CLPDU2{s!@WUhsh$*TFxt5fIraLA7
zSawyVQq*GLm3Lg0Rzb?ops{Q*ux9f8mbWRg9jETMlx^IA=Uy&773$3EQatX<^!MS=
zJ*f7OFB0&wJpv&$c`U3T56iB2!%x%sEme}<-Zk8_!apXz(z<T^(bHyo)6AE8S4TXx
zOs9vozHkJL^pHSZ-&%$~mknRPrN14}0|^cxB)yy-ZtTL03S4D>gBZK0AY+1z8TP$j
z%Fh=kCqYl&WMOL@575swempt5XRPzLXBe5<&Hd5l0peh{EEem>q~mU(7&FHymc<fh
ze%wrU)(%P9HS}51nl*;|9D(LC55chh0pbr$FJA?``pRLbql0sfc6@OQvADUk^z|M;
zLa}z&pomL5c`zs2n~jeD`Rbpu(Q_jGbBxLk>&gvu>-k^10oXcN25W>VwxIu{CNIf6
z4r=GTaK5~UNTSNAL#9z%NJcx5<4MAJVijHIKX<2tqC_|Lp8JEp!DHBEP9^yHKdMr}
zHKNsEI3$%~^_Qt?v{IL+<DHF>QoyS<$k?XZl?{+jq6zFuIc1^f#HCOL3_A(ED@B3e
z{UmT_t|16X`_?R`3s5ZL*lx}~W&dejodnG5jwQowlDc*>J2LHqGVWzoe&jraHkpnN
zi9Knq^X^>rbj$lHwsIBvZJ>kP7Ap10&Dl{B6vpRB&j|$73cC|Eo}2{5$*Tm^0%yL<
zjO?dJ_=Gv4tSHU-rT-KMwI}=cD~1~L!^2G9_eu9I%v7b;4xn4!czGpJzn=z8$&{5Y
z`1IoXmy1_dnG`o|Ns>eri6Rdsxaz-G1kNwSLVnZQQ)ZXwR}{87bK;=SFH|Iga4(BN
zP906K3zN<_iLh2Xq$Nodc3qmcSKf=oVXXxh4?F|}WXGMyPs7b>+Mu64vY;viEx4=w
zJh5^DSPvCfJHCF)9;o?~8&{x82w_$z)u!5<^a?;z1>3Qr-E(dGV`|L}x~3%w)Upqz
zK&Ini0`Z7SEAfKbxz984JgR2=!w17>P)_nDSqjNNVhTB{MbR;%kAC(eLJ<BJFQ>re
zTmZsoGeECF0;W|~u6eNYlQKL(NWi{-QPnkpaiPjOUU#Cy0J6l{8Iqkgp;%ACg>FUh
zik!PT`;g89-4);2_M@>_h=d0ui-4W5-|p7~z=u|5gpzhFewDpox5_BB<L4lmM1Bk-
zbrr~lK5J{J18xS`o(Zy}yTy#|G)pH42&2S=r1YOlb(q~G)S`HgIk~t=u!i)?#LGh$
zU}z~Q%k`GnjzEWm85bo<J*V=+Y6X4}hcD7@UBe4x&ahTzS0}Gbt05JeppO|1PFCw|
zU@yQ*V$>({*~JrVxX6cA>w6GJA*kTOr=(q1A2w{gOMIWc;FH%Yzv(D-9$d{vN!s{S
z)wlLnWl%T$Q!jCoj&n#R1Lx6b2Q-Qe;*e|*k>VIkBfIB!5reA)BL;5Jd?TrYARfN)
zY#Tg2CJ}dD?(RRG?2bpN%)N0K4<?(n0Kqn`m)zfUqo142y_!v089&2>#<}m48@riw
zqsJsyVo9mfwbIw0ocm&~aKs3r{h$yP@?0d&M@RFp9l|6o;Olm+7v>?#+&~L1M$E~_
zm>o+R!IwhNWtqkc8`fuO*W$gg-Os|P*-&KpO%~5~jLg^#q<FdDI_7Cr8RaQ}Ky9Sy
zA&)f#`RB4jCHK}(6RH@kj$e+RY^-l6SB_W05<ARg<%ndhMcdau=_A_&p`S^+NotE$
zrnON>hb~>t^nk8};oj*zJzv9zrUmtV7Cz*EZ}M+$pY_6%CKm5=d~O;`YPtRrWFtJR
zw89ECxz`s92U-GxEnL|m?Weu4kC^D(Fk{Cg=UG|frWzJ$J%VYBk6mS87BRCg;CHSp
zXnuVYAF4_A;YDfaEKhm>r1IPV0d|p6($zbt@AIiO9-0SGQ;73P3(&Ga5>PAN7|qFC
z***Q^bZ((W`m(de6NR{t3woJM-d0)rgDC{^@Zi~+oVZQaRVBR|V6#xA9AmBMKX8MB
zdFg*&au;eDLK)1VFAXt29}lrQkkQ1)DlpU`HrWu>U27;F)G=%lGP$^9t=3Lc{a!&L
zr>+kg3vleTl-nejdF#csKz9K>_MpiIF)_Ppvd50>NkM*dB@1e>&|=JSFQzBn?7Wn@
zay+8!Q{@Heuc`gNvy%n|2V<P6jGMK2fAp)0L)1wt+F0i{15WYR(XMSD`!8a2!A($R
z<A;Y@JkON#>AvmZ-qluwpK$`5n?t9qFwSsuo|s)ICUAL{W?tQrkA_xSZ43BVVYsV6
zn}*S5F|i%YlJta_$2^zO!{p6TzJFd(81_l=3g-bQnvYwv9{~od!cw_CS|GB4JfkZ?
z6vKuNT2F{ZF)l7zqFJ2Y8y^pVLLaCa4oUhQNE(|VbE{8vlPs8~$vP9rDKYw31rwl_
zNVE%D*0gin_dcw-5MIPT4XY=|{^Szl3L4$jV_(>{%yLfMHlz6)!A$bzUU6ed;<Q!V
z+&DORsgSb(%$=niZ??z$6uvNgL<N!F2;>dhoylLln!V;sbSACr5S)rwFpO(GtQfn^
zcR=gHHDM0|r-Zu}L;i{i32+^z0(hyVu5!k**w1E4hQ(9HJ!7b6s<q)@Q^LLeO*km$
z3~^(SwCP4~^ruz+`}wRzhui*Aa)Q5ddI4bz*<tqPJUM^yGP+m)9#3nuajlR$IYJV2
zZosg-f+iGPHvTX6EdQ+WVH?;~wnmEjjQ05aolqWr%BVo9qHm-A`bN-MU(1lz;)!cG
zN5*wgyJmq#lq*z8F5QFXoO1)Rn!lKw@#Gbsot1H(a!y&8Z1^94s*GcO5M#DSE7zh+
zvs6R!{3MjjK^_x5KQnx4+-uLiC=nP1mZ}u^BP_L8Tg@`<Hv#d)jpcK(tqLNxUk``3
zXR_UYm}ghq>LnfOgjV&3R?IUcmRg#5Nr@Vz_Joy>hb~TgTv^kbpaQY)Tj`pv4EWMQ
z_O1p)1TkBw>JWo2u6T|8?yjC(U;T!46B5u+-DPrfEw_<$9QFtNIsDW8MFrnIkvik>
z#ZH+WD=qlS4(q-F3o%0mw5&9I_f`CtKxN3A9Ob>)2QWst71=0AL<;n^S?On~CI;Rk
zva+Z0@+ioX0Lf_RQigyJpY2sk&-bUZ+LVS4&EsQB-HyDT(oOv+u`)n7Q_Uw{g;Nq@
zRsBS{b6Og6Q2nlnoV+Ao%qcDU9&pS4>|3`a7@i7MqZ@S5<<4JUmaTm6@4v5k(ARDl
zJ$KJOOIDa@2!D3EH{Rca8&2=>YHY0zm;&nYhGjBs9He{1`e;p_6Z2s@TtZPI^|9RK
zRawsN)Gph;sznyE7eeJ-(?^hl@rF~I&0&r@n6`(6`*l|2N5hIr|5(_QCYX2QB@*O&
zFgjUsV1aizyHOW=r^~=ivi0Ig$25J5B1c;gOT+dgLUYgB3vofo*GqLq+Ahbiqx#ox
z(ou;1cqO(u|0OIbk*Z|cl4awk!HzTxrSq!}#B$zCu3`)*A>}H|V0pSC3EalCZH*&T
z7{YMY1w7pASAmUY#b<{t`tnXn5+3Q;&hxCnq$JbwXKCf2U>KCXFW)&lA}~KYDfxUP
z^~V-~?ssyGJTAlPp?*u2s{fcY@tcEZ_J+=m`~@m8yQPnASDb`p^K*GyPC9o*5>8eA
zSe*4cZ%b_2ytG!8<XL0BOR+qnU68|0zZ7d$20l0?MB^Q{R`65;2?IA8-p^IB>>7KY
zRBwC=f`m#RKhE|yXPg^k#x5F$w_GmM{1#>69VUUT7dCvU(c%ZOq(Br4m!uZu_kkS4
z*lA|r9kA7Ng@8n^O4pP#<5fSTR8!}PXJm-tP_op=S?F-u@}$CtpobEL>RtD4e0~*T
zmOe;1qkVye+%9hl*u;m|mHUfs@mEL*^Rw*xmKQ!mwH2vjjlY1<308FEsXN(Qwv6Tx
zBT=FgWja;(7*fw^H3Mc0IDFT4l_DI%5z^J=eL78a8qK<XF@(g0_!i@X*kSX25pekG
z-quO7K#Nh5+8+@VX<^TZ3EykTYUyW6C=h+;<ofkY$;18Y+k3r@rnqg={;#bF;?LkD
z&bha;D-2n0^u4{`=>BHl7NQfB{&0VjoTw_iJ@%6MS4#)Sc};GsCbI{-#S58J7+wOd
zrhq0?9^nI}nx5+@SFgFXQ(R%S&#<j_)(;_7ubhqU3By*Eaas@{Vc%78?JylS@fx0*
zK;xWdQl>}Ok-i}9;cQ05=^cPFy7BAb0T*J~aiHBHR%y{TZ0+%y=;+i0;?!P8&j?t9
ziU@2z$(4l5exokB%)`DCI6*Sxe<g=DK<C1Z93xt|#@?RRdr%t#fvW7dz#8*&lL9fE
zk@{J2NNvUnU6OLcpjS^$e~-}J`qhBZiyZ3C<Szd4nj+EqzMi~JrG(6gLj|9x)7%dt
zy{_?v7f;OuFpjgJ(nwU5+w!6M+=4j^rks?)K2o>fa7K*t9sCARLn?eojzJ9M-%{(4
zzu&{7ZGt0%1?hehijHALiPbbTH_%OJ$fQ~JJ$dH^ahSMd!*I-7p05YIsZMx5hBUaZ
zhsb<0xNlIou4EzAteXC&bvi$}?vC4iwj2>3T&d_?-KOgg&9FU<iTr4merrUqxE+ku
zxTSG(I=-^r5Fhr$Hx^(Zc=x9+p1`iz8+r}g-Tzq#r8oMGG!JL2C3G_oUk6ON<}a)L
zY^s$fHMci8NPqh@*9x4nI$qmeRXE;tSPv54@QXLsC!iFWQ%_&O$yN_0<8@8B5Ue&1
zUno8{>OhueVCDf2lb6d>O(34A+dAC+HA|S}uLY5za57E=s3ruUQ2abT3(~EJqZ3<b
z70C}>^36(mMhHt?tvE%w)5_UAS>T}z3x@UOJqF}CL}Kmj%`pt|jlmF@s!ptGPsnoa
zbf}N9r_l!15cA07*-;M5f&i%tQU*>Xwau4{nBj<U8%byw>25Tw%TfnoTfL|;i(%(w
zk+x)|EuoAoE%%yk6Kbtbi*o=9GOL@<w&xo*!ii1{#kc6=NdrB*_>f9BEj=&xLQU%E
z+k^G-Kk9O@;ON1lt5e$O^#$d1HafbvH##d(RedqGad@JthrQLd+rq9&?{lRBic{ZK
z;BdX}t<zBVY8@zQH?W=$wH0{sY%kYXLAcvflWt*`$~!F{EtD}{)B5b>%}qOfMG2UP
zcQm|#d(KXNFB#U;=?Ibm4(H<t*OjosvyJ>N7mQaC+iiX*us#+&-+tE_DT9xFpz~x_
zEeis22raGa=}@zj%hIV(sss7B|0!upYTXdi<6oY2@^KNg&VpqIq=s$curRqia1jrR
zd&)+0o(>8Bd*2PqBGtU|J%*8gvo!ASDDe!_X7KE{=V!B5gQ#(8e%38j38Ux}SNR|%
zY^}2BX`t7TS+k)#+wj}%)oJ!hw!E6geksr}NXfi|usY*utPpS}#}t^UcE1)8DMC#Y
z?L5TM5atD#>&h=Pt=&*eY>Qi&<T9je&4q{lbE+QNdCNYObK&6%m_!@z>}+h7@ZnAo
zER$zDCUy%xwKiFq6weHpC3S%qy@e7dz%t*ulTpO^;d)>VYTC|BlhecJ;~g?)L9{&5
zVq!Ge+kVOYh~zmOZ|zl$&w+B8=Pi~~6K{tVD0kzK7`Xp^*PDMSfE-|pceS(?d(Y3L
zMO<Y`ds8ZA1h9j$vJ0>{YHYn8`Z2*{F`>R<W{0P^cY|w~%@{M2-NXJ9Zxcxt#z4he
zPy2{cJq6!HkoWz`7o{P7eEdD9jcqts4V_k7oGGz+c+In4wsc}9r3*Gh15>*^(sce)
zL=u1)*4*N;cOgTm7wx+++pQ-Xw2s_qL*qoDC(EUtJRSWq-p}eUot^tX1%YZrw}aCP
zpDt+bZZ<^H_#(Zc>EfVs477WrOoYgULsznJxU6`kw<dTlX9qjRZ-`Hstk1GBH`brE
zetyj2sm^v7MD+E7r8|HtIRg(z+tVER?i7Pht#mz_jv+u6WbfK!QC|G~W9Y_D&3M(}
zt}(b96%<{uwLTgBGLh<|UXRvcEk0!iBv5RP?)I6>EZ1Sk%afRl(B0M2SZQOhYz}hK
ztM63@qLoR;p*+2cc!_b?n-_h%(BA(4_9<!N)z06j{Jfx!0o<%62=Iy$&>&D5RnA8W
zfmq}rtrbYT;K9U2ivy7H;<rHIx2{KO+T|)yXtf!xM{zsiGCPTJoi(zHf#m-y4}e&^
zbIZC{#qY)=RW0?p;8UI*uN)Oqkep0vAe$nQC&HAad3}-9IX#>G_nNn8gHrB0wysaO
zpKPK}w)*ck3)(3G<5}xGHb``m>GC5ouwOl{Zrp7LB-;rh5v5KdF6`*of8B;$+=Th9
ze!Y{)_AYBJ%~0LYn(!)K9`1EFCqKdev}%7O`x9ZmEr$czKJ>HfQ)TlHHZ~l*g9#TW
zuV_zCHErJ0EVYxDd76GTk4NurFFswIzq^rtTO&xS(c#4{n%%t2%W!u}IwhfD+`UlQ
z_}KB$ZH8BZVhMg1JSD3V;VgQKF6Ik_SUxB_a5Go*&%RB{4J>~9x7`>$(XJ6JVXzB!
z?9Mi4FT=L=(U1CQTi2s^f|A|dox|h398K9|SGCXt=<{{&A$`YE(6z$o+=~AdALdjx
zP#qUq7Ip_{A3})>ibe>J2?a&ZzRG_>#lgfuH)-*(PC4|4r{v<}$lQHi@<kxI-p|on
z3%bCSsyFPU^5OK^XgjKNYlWq{`Ya~-O0lwcNbJLnm}ozzzbel}id72minwvADzk{`
zVmG&K$*@GcI~}4&y{>Y;+{0!8T(>J1&8@!WK_@{^%2Zw6z3J_~y*G&|#jucXJ9)8k
z7!n&=Lx0PKQ_vikOw^)W1e=TcZJU$H3+lQNp??(Gv~^Y8$8>+XvAGq%i>V2|j(I>I
zjaK*eK`#VFe8De7Z}T-Wl+=?e&kP<is|HGC80M=~ADQxT=4QrR(3wDP$2#%%Mo?>R
zQjNBf6|e|T$sYP)bh4>Vg?r|0)E+-<dy{5j!cR{wZUPEHEAtjVrkQNtOavBBJlEXz
zr-@YsO8U??5zDNWru$*bH)+;(%-iyC^W9H+yV<$t7yC-^4f(tMOb-;ax|DhHg<f5d
za-EGHqmR3e5i(BV&tN`PyP{^VxDlPUdwMu#K(vqS13GPjJ<(<WdPZYj#ILMp2Yp(V
z60$Job77={FpUrNDqmqPZ6iB6`?N*9?rb5@JrDhGYrOYM<Y*qYCLS>Q=J5I8$WocC
z$BaP%wGbIP7-jWBGQjzp!<&oYI4*42wTs?mRVgO4<c7TjGp*x$<<u?;`uV$LOoS-d
z5Ly#*7|J<3bn%2S1XaQ!F#2VR!s|R_KZiuAhq1T$uaF(q_SU}i&V#z~sq3{oF1xuq
z97p6qtzQB#&4b-ABP%a9OiLZK%mfz%*wX8h{VvaFVKgqHqmX`@cxdQHZx42Ncsx2e
zT6xvd<#TAzM|w>jiFjG$MA<}K0yQt_#RbPAw@_h)8x>prVA5`B-nQj24T^%4^Jeoa
zs<u~+2#cd=U4Pe!VS~|&w`xyC$IlOSo~tJtuLN`wKxFQ$m?TIBGw7CKaOWqYY4UL<
zwCs|r;chCe+URZ84nbr}c`3V5!<>q#BNr^9Hd-J%B&={-UYSG6zFBQ<qy{^Yr%=Jc
zVe6PwLk%1GUt0yP{>Z=URyYPk_6j|JxOJ#jyK7@&B-u(BanUi9@PfDBRatf!K48M7
zqGJXA`b79Z2&9)&zf>i%>2=bDd%gDT-Q}Cv)yLc8i&r;xw+YJgRF_65NV_;9y6p-P
z*KExSV|4bhz-EW-_3F`YReZ2p@wm@sZ$__ic$`Rqv7qVvuf)yr?74EEGqaTOgRe{I
z{TN-nVb`6=)jY=}AHAdy-=Ex`2x-{qv$NA%fXN#M`^WQ)SJrhbgC0=sj${sE|C;0f
zyqR4kj?|sZpW<MypL+lr2$B9#itliS=36SntO*J%QU<2b?9#I&^)oM)XSq5;ZC>7d
zFtWv<ix!DBBMG>56VSQ*PiHp~&FFrq|9}We0{MRf@hN~Q*_9t>M+G0`B4?)oL^-3Q
z62p*i>oI%x)<e$+v3F-~iL%kR)4jEVqEdT%w8af|-`>g^P48s~LUbQd)p`s}?|tZo
zO;|cKJ2&s%+XcIc627;HGgj5T(dW^{z39P5;<ooS`gJlcKEG|&zmVej?A2)h-RsP@
zi_{yUVYZIcSGjyMJh)#8Q5(xtG8oo2*WLHk$Hfu4xTJ$dMRYMn)c`sQXoGSsm8rYU
zZs{_R>i%85g3<vE%3{siiW84HSCpqzxT?~S$NzozdrW;7Wc7j(D=u%vJoDV>mohyR
z_4r{FQZT!Rp<T_*tIqbbGjcXBdwkF2ww;r{b5kE*pZu;l&<X24VFBUf^wJz_TbnhI
zXefM;1<J#=Z;<cPQ0nRF=l2><=fZPsZ<)iV)riDTA{YE7E~$L*DY$TWCVGuPPj4c+
zEt1NqjXgU4k3sDn%|_ocU$dzc&iQ_HEotncC@Y5lIR~8#>KT{td5n~Qdx?53vQl~%
zErx<~8LgTl{Q6XR?XBIzl@8jUOiIHb-0L}#OxA+cxDKy)vi&)zjEGE*Hx<ctnka54
z?FQUXnZW#HA7<aqAi-wy`&yMVHN3iAD{CZ5?JJ)nI^Z|ly*`~PALRKTWQB~Th16m0
zSeXlLtM3ZEZtY;)&Y0QmoWNhEYY5QqPfjZP_InXW(4|7U71WP}NotUhC9gK0ug~5P
z-m}mBsj6>(NHg|)dnoSo>NNfpPM&gL^`UsRuHt9!A~+rUcK=FLG=I7FzEXu6;hbD^
zjyZvgM^eaMCk>RypvgleAgOi|<`(siE=m$jUK}P6*+rTXC0h6m9;+PH!|D8x^aNeK
zm46zIslkmygLx!0MtEjkGpR|i#2W{w$mc!1wcR(hMY=vwhf5K1l_qA_uLKM7M?b@Y
z@L_d|X${@<hK+1{4FkNLYqM|hiwlv(3J8_u_p75Kk=<Oa%yp~d4nu*j5Zx^0+4;#^
z9--VP#|`@NHh)@91GWcc(Po2prO(Txx{xi6y_$E#wrBURtA@9tJ)f8OL+cf~E+^sY
zGysKLB<7y|{vLSjOm{7h(Yu3<G(l_XU})a%au&^8C(xu&0#7fj1AJyXgh686;eVD^
z1x8Ig-8;CqQ}QMiW=E6a*Ib^Yp9apAGu0WFoqd=E;=fPzqiO#9Pd__9F%zOL4{oqQ
zv$y0Tx#}{bEpz0m*$VxS)S0m^+b72YcW1Kpk4I&mtSp-+QD^j3EY98z(YK}5^lU#M
z9vAJI$!qvs-cj{B{O^koHjY1kN@be$*<~=QVfBxq{7Qm8q-;j(PoLfsrWqt5Jx^`@
zil>_@u?jP}RTvMcKzc{b_Ip=4=!4Pmld_iWC*0X4gYZRg^(GUu1Kp_MCEssL+6M(7
zJfw;P&-O!9vA!tO(sU+8Ye<8$B`iitVzz}2HzVx!)U1$ot8(1Af_#I>_3|9a7I)4g
zI;zvvy~}$wAmQ6bqw#NIEqj@p<Z*1ps+wJ#vn33qw*iRmRLtEuJ6gH?e7uq~B$l1=
zD@2Y-Xia3W#I#9TH2P|FhDnk$feNl8aLbKI*Y&`M>L8rP$ic-p{cw8nQDa9p`#D)-
z8}>&@v3F(kkTiHM&`Fu~NTmV^QS&A*&4m}OM~?}5-^-TKEA!4$E75)*eYPV5mKCsU
z*zH^#f6gddYH-Q(95s_i;v51c!s}gr)^MJG%3)mJpY}UQ))_6cdUHmU+h7$4a3ec)
zV^9A^Z4ibzWeu_B)*|Vb1NwI#)?Unruv&CCM3K67_%&6XU0=ljUOoM6N07wD$>FmR
zi_bm-kuKN@vv)$KC!<$nwfSaFPn6r7=4MjBu~?LPVaj#$nWUX%{pmtAKB$p-x3MkJ
zgOpaOI7M3l+3*6k(|g&`ywLl0B$fRx5ZXJExiu(qj2Nn0$0tY5Pd{Hi<XW{_-;;BZ
z;`283oT!l&*1V{0Xrs0LwaAq2EfW}WSY9O)uG-atjY^~`<`_i#Z1($1Vo;g@u|^qs
zS2s6T?<6ar7K>rTa>#7bO<Ph(7S=?~0Y<{?_~u>ujx2Sse(-&)u>F-{#kTXuLKgy3
z9_@3~8;Ngfj((5nUwFsS?e9M9go~yEaJ0X9F#;Xv<+t%9e$e~OiLh4C8O^i?b8`G4
z3(0-t`1?>(*3*x@Sbc=YZ3-*;cX^W0fOBbbgPWGG$(u;AS$|MSXn7?aRi!ZDUZok!
z^FlyLGAxAL)2we+&?YBSF0<wjFs=ECr^m<6=mtqYA7jqd!m-SFS!@z{X18lwzs~o@
zk1>CQX%d><KkLp-BJ5vtR;Mv_SZN%Llh+xzGE2n7-?}tDBH{eEu9a}hxcpm}+Q`7c
zn9HngCL!a4QIWKR_W&>-B%`mSB5RV`e6Wt8(eLe+H5)yXFdVdNJ}*fS);&#gk270I
zWxcd+?{<_rov=riz{Nd$-nJBvt*e}vh~ilzH;&N9Oc5O>qwKfY`wzad-d881t6Ds;
zhxM>?$^9%(s(w2H^~m`;e*0{DF>-{O<(MhzK^z~GNI~7Z60rjo@a>jr?@SlJYxcnd
zvRno+J4J(UkIGQP3ZHxWgYSl{GCq91vcL1JWR<$hKe5&U!{-tNKKIk3+9BIv15W-5
zeQC3t#~>BZsk|{|4o8qb#k^TiKqbu^SF78cEv1ybOCm-~s{L8g1XqQNPY9q^H`Co-
zHm@6fN?@LXrI$pd_l{-`#5gZTbITV#BXG~J)GhmPrlunZqy8<L@?JKYl83W<S1}8I
zPUP1fdDMBUoxH@~cVFo<xuF0pF!kiZc3N35pz7CU>Md|FPM2sFGsK=`U$dON*V|^q
zFd(+J#u)tzmN+-qzRZ?94mh*qgR4kFc8{M-c2+zxjzM`ikosi2HpQcSyYTkW=_S02
zDLhzLV1TRQzAl(0mS(iJ`YY2u(Y#ke=%>Ap+-nO_E4J9i+Yn(>Mz*tfz`YT|Xu0(^
zr%uD#XV#qZbHs2tGxQn|<KJJxzO}S<oKy+crSRx9YGigTk@(_RWNQiCNd66}w~0_N
zBjyM=Cc*I3ZY!r{z_xJZ=lDuYy#1MOn&<M8f0@BS?9Pe^Y4plSp3Y{MuP$%WC=a*p
z^g8^A4k}A+YRN|V>g2TF=yq}l%*teZdMm5H&s6H?#KE#pr*LVoQnm|6gFKBS&jFmj
zOIe{VW|i@q=qdn3*?G<UCERhjQ;)~{_ts)hkLV6@7N5s96+~$Iv0MHJ{K{aiDqS3Q
zMPR#qA%%;R8s!uGs2OtkZEM)cDanY*vY$t@Bh*`w<Y5QD8_kLuM!r8-_ADPtqCpM0
z9c{f>i8gBbm^@+MPYZ16q?`H1d*a!Y)iFLO&#|h`9+NL;g6D;1Weh*3(c|XyP~LVz
zw25gCrqNeS&HO|OBY><DHG@)){b*JDZLC41nhj_2FcLIc#%)Sgh&zgQB)~pX3rMy?
z>gPt`6APN$#XNNAk1k?ubNGMaK;|<d=$x~eK)dR}irwW8JMRsD(Z4=$rQSj+kLyI(
zbRs``!!+Qo8=HJ((pL$t*&n@2L$h?Qfz&9e49xl<t)J<#aH7?~w2&WRd^J9ir-S1U
zqgRB%xB?W2vfjmz?1L9u`{(6yF`K9<{FM?bC0Fg0m^Z7Z3BB~<Lo)*y#LLKp?PhMj
zYZ!Yo?Cc^Z;4sM!Kc|}m8$N~2G&8u?;0FEf`~nbsRqR!Y<tNe1gQ`cx*Cyv$(E#yr
z<9kO~Ha~L4&l`7An88%qI@U^{`)KYe7d|Mo93^{O_;q)(Guoc);tp<)*K~?lpG;!f
zzq|PGdzKDNUjt0ZspV7hbFwj$i|f66IWIpz0iDCfA5ZZpSe%{;4Oj8sUa@9C2Iu}v
zD5fOo+n4K$!+k?9w5qD_E@#fL!!|%^-(bcXcWA<nLDBU?9&js5p;g-do_jH^aJe$q
z-Q$YGoRcB_PNiK(AR?($P<svJgVE^+hpxE@W{1rR)+E(i{S-Bh0{ajeN6e|-?NTt8
zqNWty7JaVAC6EMFj5Z670X=<X`y^kY178_RX*pNfsa!HrVJ}sq46W_@nhZr|1nPwI
zujDfKc8egRmT`&nkI&z{n{l;lP<W_+lF;pJD`i_Y&3(jap~c>f8W7)RP{_Hra66Q}
z%zXdX<t2~qSXXTQ<-JHr+KXZ3bjlwHv2nO2qOPl4+kE<vFsxS8C<zWUY(+*T`#>~M
zN~pM3pkc--Qd}p_CDDQwnK%|Hx_B<<n&_1-O<N3H3;V1O{QD;tfc=-9HZOc%+cTZH
zH&C>N+~pmsu}}n?d5EVf8XjLO`qizx_O`NAE1_VG1z}CP>}0wMzi?Q@;Vd@B7P|;T
z`uJq+!lCTlZL&p%h*<pD>{EkhtNuo}@iU2~6O%kJ%xjIBV=#Jp^-6{93a;D*%dxlP
zsxkyu0gG3FbR1^XtC{2cj{1g?2a!9S1MX}J=GX0MzC5H+6b$XfjV(pl9Ln#7>4;;6
z;3~>?hPVi@Ia9$dN<`F)+PFEsxjeghb7PRuKO)TYU(GK3=kvSt4BfuD{v$?6()~$Z
zlYLSsMl+hCULPx9!{?zlwr8J(iY#_q+x#Y#q@_{o=30cRSw~=RxV2F_e$$<;q?J)U
zu%_`A?;g$*xz-F;Ghd)l8Qs>AW4>0RDwZ<m!+GbjIAvJHPS)rpxiq`#{;+P%Nxg`(
zG`lIcsT8BS%Q1k_&G#nH$N7imcw>AgjRy#StEURlEbb?wC55nhaeJ(vOh=dKVP8~Q
zPL-;U;W71&6QP&<$h4TSHAgYIXkgTh%k-Db`T0oNq@d}m*$tevFgKfAWJ2~WwJL!4
z{@$y5Pcye_6p>=ni_gHx_*JCR$t8pCY6Vf{!@IC}+)GUFR5#_7dYF1=kzKh+?BUKm
z!DG|sfs5TZ+!C+b_o^Ir|JY6o0Ml#o@6oR);j<fO95{n)tFpFw*iEcH27UiDqJViZ
zBy;tnTYa7tRbj%hS@0d?Q#avxgl0ouc#J~stZl6~n+hqJ-bGly^VMfefR>3f9Hu&7
z?YQMNl)p?(p#O7E@epE{%Kbn65DgP6{pSDJt7J{m=(`0q2U0!7*}qy)1(NqE)5dP4
z(_Zt6%RF0PIZoaSV-JDR+LTBNk=^%p?*(a9>y{IO!vL=7`?vj9A0mDPdaHZP@zlCE
z6Gu7CY>O|yl^dOU1eDO_Nvkc=OfwGF_t7&)y?RMawa#qw8#?Sa{Yn=<vZ<bIV$vm{
zgMLbKm9|&&umhj%@#y8v=eOsC>)iG2D<cq<#Q9>#!EhHN2<=Yi4by8Tq39bIKiVVs
z3YfbuPnQD_x#9KQmnRb&sM6Cu&48|zQro^u7-=EQap#$9@wyZWW6+;`PKW!9@_y(g
zvb@W$sATXqWh5=RPAUapCk^h+ZE3|Q0VWkE1WK+}xu|Y3k-7hu_m_YMar*I#_01OB
zi%hI|0Yk?utio+=(+Hhn71wLH1gQ{~Jxm~&rkW?D&qRB@+(YE3?tvF!R!$T26w$Eq
zQDsAE&hyzv4c`+awucAb(Lw3vZ0|IifVuaPhft9=z)m{6wsYJasbRg#QeG5uN{VUh
zT{5pSwR)qXx1hZWPmRkzz4%!4zw9{Sr<0Gh^WJr!%V|b0<qB8+ueb~U(N4~tM>_B(
zxF6>NS*m}N*f}1eV^e(N%+Xb{aoV7>Z9mMz={!n1ws}}vmkQD5hstw+=zEKKFxD$(
z+eH@=`K@;q6nu+9G1>tpbxOBxAzfhk1y>Zv;0SHxwpAQ<c!jwQQHQGRipC*6npqo`
zT4%J?jgwTq`psUm&c5w9mj%u)2Ma?-5VBy*W$#SKPs(}`XB3PYpPjAr6F7KBi_<rH
zdMi-kK%Lks74Iv#Sa5!J*a{+wvK@`T)Q;r02U|~fw^m-%W2Gl&yLXYoM0eU~#Ggc{
z&HsCX@!ja#iDrZiSzZZvH4w47!8`Q0)G(lC9CeDnH`+t<Zl~+=eC5sTb9)4K#g|Jb
zAl79~^0m|vWq~QMBG<Eb#Im-{*b9o!QMXLcgqTWhtCD~aVGBZLwdnZ4N$%e5D`Yby
zZei{^j^(_INx_UNFtF<=pLM~SxapvQ4SC>)s(LUKc}d?b(bN-R?JE-)4w0vTQ!w2a
zdaPJL^)(CRrny%?fc0?rQq_V*URLB|<pY|_!tk`)!98E#Fdaj{%~Or&r4}qBLVG*0
zliF<M<}I4yRTnBXpFO@>dmVz2KEKbe1~WgnwbL%dR5xsQ`->4Evw|62D##;~)jJH_
zof?vjB`_uEN46Pso{&1?ymye#wzq>T3?uH|io5~Kc3vvSfq${j2SCfyWX*urW+;k_
z&*^`sul*xWut*8ecQ?o$;8)unF}$n27H`>;Y5R73=V#gl>`O1y&gihs7X$ebXr1m1
z^Pb<3Z*@^8ta{zxKBej&!k$zO$ivHPx>UZMBR=C@DB$ziPUm$9WW^QIEdt^dSgi*K
z`g<=>2oxs&$?jmA&#t0(2SQs^m_mJld>J`1S^KTuG!rg)4n;hequJ>nH0<$-B<uuu
z@Ca~BzUu0@CzS?cOlP`ykJH&3IoeoN;Bp%+%`V?WM|d(@_9++-Pvi8xrR|mktc!j5
zU)WE6kkX+W9Y$zBwGFTd_h_zW3kB;lFH*9(KV2C-j1EtYW5KnG$lAQQcCKu^cVHDU
z;JM$@-Yn`|G5a0XN}Lmc#=$#DTGJPFk}DD-#n^54o6qnFOMY_2RwW;~V^VLj!?=^8
z*{h+?1rh(|V8+r*aG`Y?V7|`Zt$Um}t0?Alrr3N3HkTj>SqgUgn+;r8>7j@Lm?@gQ
zw>MaBdVt=!V27u9&7AHp`aamq-HQ$<yHXGOOCEuXN))3<r@-7|RaVDIETw6ti`$#e
z#xGGScq;GRIU7uAi$B4WWcb8I4%zjlk#a?XD6-+YGE`p7F5hzpGjqGM&)TmtgAi85
zB5nod`ES1Q2tgci_1|Xi&cqOgnL9!s_`N9v(kwys)1%M4NKugAN1yuJfYR`u(Z#~~
zRIEveSb^r*=;HXp#V5s$;{Fz&(vA!MqEx0x%4c9>I;M!6T)n$kslmZ$1Cpl2WsHra
zJFj4_-9^X8ckvh2iETvGzT>5zmLAPJ5yNW0pPZ2lc2QX=#6=Ev<7=I8;;a3eD2}ER
zRjm15(OXJ4F_mnWFwi=d7DP;hY2gFs5uCN~0cX<{)1nY|p;&<v&?S!S1!Q^9ttcox
z^3_9Sqjs<&&|ozw!1PBCYeM3xC^O=k?baBxR8m~@=_V1>Bd0hVlQ?m*{#mhWTVaYf
zDlq*a?id7FhI?*Nwm4cSet->B0Q|spNKi}uRmTnj!%Ippq9u(>JOqewI#s1tdE7!r
zxb2i+G$iYGZx!owVH1fcex7OZz;e)A!;EK7M`B@tE8w&vAl8D{e`6Q1S|h|^U6h;T
zt?P*tWjb#VN+J(i=Wp%_t%)d|o*%=sz$V3)W3Dk8{aURT%eH@gGkRhBBkU<^Q%>bC
zvo!vI%wAWp%yo>ZeYFF0yR=JB#gzC7K})Z&gqfjm<D)oZt`xsEPYjQ;gqj5er*fiG
z<ep8^%+`i~&6^;nC(-EH<!8sP!iN<O{46&3LgYf!ATtxuZ%snMK+sLun(p=>PPp4-
zx;I%#8To-D8oVXJiWvGC9gY(Nm+Y-Lcy|;8esBs~bG|UAoWp8@lj$TQu4%~Dzm+0h
zbe%F?L#)_$xljS?i#I5rm#x@aocNQ3r66^bgo1~N2$whggCz@r*e)Y0-k+P)u0-7a
zc;Y8fy$tj|^zTk{lK=Re@z3UpP4kxPR{FdGpwm=akEt=(x!pu}&!n<>V*6=CIY_r+
zE)K!y2%h`+A3)75DQCOWXFf3NOr%`1V(-&5*Q4=2V_hNFQ5lJ|R6m@K^;ha7+(``)
z%;xPiiZ>_x_37tZ;!}Qf-4brDoz&;6&kn@rcY#3rLF6h>!_|fCR1)@-K+ewiOr+*j
zMYwH&FXa2x?2|76vJPMTFC?X&z8<m^!N=6m$77|)F}W1v+gzaK&tv8~7z-Z;>bpF@
z_>7k@MB@Mm+=c10r_Y|uXS<hX8KtV!RU{R}lTI=|65D|M<SmKfYuY_vZy6YQq|IOl
zRLHqJK|zShtu31=H;kw=ECm_{yFoJl_bKhj?oe9W`A+3S|0pvHOd1H^r(H|;5V`;c
z&oz|Znozo7ETzbRn*)4pjO|oaUCZ_((&Ko1Eb>Y@Jkb)J7hyZ643C)8y9E-cFd1B1
zJsuI!a3h*<r3xtR2lq7yIGB(7CjvKmDzN?(FSFU%@2hy5s8QK_olS=!ous_=ttT0l
zs-$R85j(FC{Ci(wa_ltt8s#SVK7#-3eD*f1%FgfT?&W)$cYJN!`!i9h<!|#OO-_IU
zLDGi6w)={2*$_{8y)nmg(pN77TMegdLHDGpH$p+*vZ{Y)`5(?y)f#IK0CNCQ?vhOG
z&$xtEXX~ufRB0dDI~5a=uwGdyR`i$$cYJm)mVR&2$(u4szZLApZ!Tc#WF)EmEae9N
z(K5F7l?>Ua*Qv5Yicw5fQ##N`l)PEqy*y#+zydqT_B)ZL!1QEcm3eHkGRwq3U%Yrf
zcL2XINA%#Kn%AaltQux<KU4*-ACD-*!-Yv2`{RSX7Lrm&h7^CKoSqBUotzP38RG-l
zUuZRxX>$S|ixlpvYRdcv|Gn28(~=C)jUqcfOx>Mbf!!V_>G^m?f?OjJx?pdMmX*=*
zIPxsPo@9H7g-6KaiGJnvD!V!RW%uOG>`6;6c0?Qhz^YzQK$&h@kvS9rv_&7Zmyt}&
z9y**nw;d%74i_>88njiqqoF}k&&Yy^_2~yZ916UnoaE-}(?Mx73XylM(@2*_>?Xqq
z;OT8-1HRUr$RrURcRlb*&s^y_2SuU!18m#Vh=&c{<15rv#fbauh&xUeA1tLbaOs(r
z6_6!;hNBT2CF%f~=lZ0pAH)3@mf2BCD5Vw3qI;xr83?#j-NOKuZqpgDX*4~0dwu<(
zj>2$hFCBr74tuwj3hpkfWpo#IzB4n~ectlP&Jas@ouej?d9Zg3Si4!dl5I6$K3pN8
z_wn;?)ze?l;{L%2q$yG>x4jK*1nry7tUz;qvt+8J>5|AtG(D>*87E!rTa^&bHp`Hw
z(wWV=CTlaXhYRlBov6kFhuA3P(Qz2tfpM%v?4<xJjh)!H2Qkzk!3~&Tk@Z6YW8v_p
z08DY4y2*T)VjoXr3SOn5;lg%7PoZ|6KAD)nX4N&miDedZxZqLsXReu9Hny_R&|vs!
zj3`OEsq6P<)QobPCanRt4iDzGf14}Le|m?pFak@byl1aYnP)AI-dpzf9iNA~A8ls3
zs*yoT;qe-e5~An31b{MkMCEvM8m@?5Y#GC}=uLi{mTTh}$xdVhX@&b#RHw7E0+#F)
z*GQ(JfaR+j*?67vlQ`M~i>E{)#*%l(51$2-QI$i~H?ea*!S;%(CNZ(%x)!DX<leLR
z28lqMW_b@&5AB+#EeOJX@22(B{a|<9ly{4S|4J*bbH&DPrdX{LTf^Obu-oN$joJog
z6GIrG{$Ut6dBgb;L@v=%6BP3y7|{M2!?}6kAI^?4&WF(8R*EOH(*T0|V2aU;^mFV+
zRUb3H?Xt1hQe;m;$mIoL<cY96J@IU@+*mxlXh#W?0uX;|boeT^N}orG8Dd4QLsz@%
za$tIGkS+zIwbZ<-jg4rY%D(bQvxTqkeIOEBhD!3cl0%I9|9*B^xRgAJ(e~@>Our&1
zk47hNR)o?0#b1u~dKfm*S2)a>At4ria=`31I}6j;SmN}dk#!5%qeH!gpW3WZF%WFc
ze@J>b7Mgj<IUa%Pp9`@?*A?%`*BNT6R`XVrpyxH8z7tGR?5DL4XXaVZNPDd_=Q6do
zO$I>k%XoCrpVZEtUEW-E&xi}s5{ccBqGVU!O%$Du*VQ=4bl@7n2i7)LLP8tX#%T;?
zCr#MW#jKNj%www1R<S?}JAC^R*EPCq_44z@=h*Xrr=&G*>b*RR!eI6TE3X2KJbQKW
zS^7)RmbM4!(iEG@p1=5XtAkQ-E_7!<AqZp>gf@jMN%H5wy6{RmP=XVc{Z~(uO4#yB
z*Z0>+hLdag-1$N~3G|kf_E9PPe01{m_2{1oHAbv=Y#K85`?3&ohFqB&*F9+m@iNZW
z`x`W__cxb5Wvqf@4o;4*Zte2g(5DRk^)ML)Vy7Wmy26QWA(I!#S2cls=JBwlzYh;_
z>&&lLn##7}k{^`YF=TO!b1RsRso`E#iU8M%m3tYV1@s!%2$~eEGnt^XeR6(?O3lqX
zXebY*xeZ_iJdYvCD_Wy#i18{gTJOoDA=P^X!CbZj1ZI=%2$rPv(^I>d8B%ziPxD91
zmDB~J=b=G{0i2eM3m!~w*JiMFj&De;Vm#&B4PrJ`qQg8@k%{G$r;EYhKq&@L!f?-_
z`EK+<ac^aEMxSSI{p9p0uB4H_s~y7KK}mTr-Wy2f)K;=pV`1UB44d1gplI-`spQC9
za)^-f7+%g4F(sP1lV40|rg5K%)qy$P8b+QzwinK4ihug?oY~gG`7!D!zLc0|u2Ge7
z!a$)sw%Tu9Xv|1jItQ3Mc>xRL27fRz3I&?$ot(u86G}H(4?Ce1<%oJA9&JER^WC~!
zaOByZl1YD+@Y1WrmZ7Yxmfjq=IQ^`|Ti~tYXbu!WRYO5-qW@8Yc{>aq>o;idT6@M2
z*&OG*Dz-9w23-`)L3Iw}I=zmzYL>>_jq0_E>@ip!)^=qX_P~EUd6vWJyDIVS|0;fP
z$j6JoeXjq+B`}P;NSK-tCiZEj<q;s0VScziIyhu;zF&EH6E-y+@-v|>I}Q=dW>jkl
z(jrCpec1Fauiq+gCh2)#3`$b%E62@8-81ff7Au0B%T`jfhNx<~Hjh$;ix;!{%^}<?
z75-UF8r7!^ZYb~HM9ee&{d0+1RplaRr4vBpC8m61$PZ}*J*(-VbmP^@e)mdVRddlJ
zb5HnIlYpVY2`mE#Y-4jgeRl9<<;B(kgmgMx=_}s3f&3Cn-f>S><nX|xbJ%=^E8~c8
z1taL6RZ%aEKT^nnB7uYf+@w2n&!XZ(TAP?T$!3?jlav5WMe3|RbKUiw{<J3mzNa6)
zc^`{(FpVC{kIEFeJJ3~u0AtAZCRK_~vk{xFc~0YbbrE|y(z<521=FiCX&*zI@5Bd|
zN+Q|zsvJSJG|up+<s<hNgz_+dqun+P>Tg`7Weq9xm%Y0MZ6z#S{6!mZHv?Ax<z=Du
z{`Ey{)W5t4m;!tH8^hut{^ezw?XjZ%>Sl_&{EgA;gY`GAdcc(aI|B>K_m=~+Wmt)S
zHGC-2UtgqK(%+bTcG%yzmp#FT{L68<4Dj{0F8g~!`x`gYO7d^b*x%UFR#NcbFNdG3
z-@m*_iI8Ms#1W>WdwhgoifK*^6E&DKsg(8?$1!y${>DXrW88^Y{q>zfLjUWl1pN{?
zPcd=|RK~FPQM-du*3C;KHHg9=;-M8TNg#H#y0Mq0D;jk!){f54Kpvt((m18#gf_&c
zH)Xj)Qt6svABtM>w-d~K_CdmPkeGSwWVl2-*AN_!))~>trGHmWHuLOUB$j_2vkgzS
z#YEnptN@J|(v7ZFMMJvO4>{xaf6VyOp+^eC%k^JI;}5{a03eN`CCUq78t+X|rJf0M
zR8{<g^bVhnx(eXwrqYtrO%G?{=yjDUh^4NqLGuRU-SH$Q!m!6Pj&>}F8{QKSyLGuT
z3NEvQY7*1rt5w!k_OHP+kJQeCkM1Zg^Ej8H?sTaS^w?#8lWr5T_~}t~M)GP=9E$;v
zzO)sKzV&i$8`q`4cd*X-|9IL1I#z7p5$1ayaPX;xu8`g?m`Eu~3+Xg;#7(ImBz|8e
ze}8Tzc9iL1${6EbdXgx*#hX@7pYl+I+IWQe=3U6(a;PdC9b*dRGS2R?uxfn8R)!&O
zDhSN~-c-g!+l`Z|^_UiBOs3OgpaSbGzvyPZg=fpLtq4|6g76menw_clRwl7Zi6~cj
z*XvmqX<5Ec?2#P%;l1$Vh=<*y7hKBJg2mEzXTb<8;oi_4E>5*}-d6A6_ZM^rW2FoB
z-T&EJ3cWmH-=TN*dEwpU*8(Leevd2mHtk0&46c4Mh3a=i+TiW?CiOfp<`QkxK^*qm
z;bb!|g<v`JYfTC^7U^=C^QAX%sbIVG_Z|Hy%e{o!LG#(fpUj}-oDX&SI+vps(r=j4
zDj}Sn2Oe0S%wb;Y)F|svjS&M`qz%qHkR7z^Qa$eq@ku_2ae?b{8(EQiwN$e@e;J%E
z!b<P`0j9@NtXgZ>MZLL=ruWn6<j^S`J|p9R#npP~De$iG6Z=<oL$Zf$ad>$u!kLzh
zv0gdKNuzZ*SmB`c>%~Ke!eV-i2MGA&hH&X`X0QWs)Q$OzEC_zWYi*CtugBAv<N77T
zA9u%_`&*-<f5JJ=E91OtwkR3t{Oa~hmAN(<)vS8xAipu4$ZAsfVQ0KL(L#B0phl&8
zn%Ef8HodAvso|Y-(Yo!`E-#CCJ|C{;bwAf#9yl>SaRR*$GaapT>t!H`A_-+^3(|J^
z4U-pi$lbeNXZo}koXNo(w&x4zRT%l*G<jxP>)FoTNg%n7)t*a9*PLM4#{kR?YK1PS
z2(!QkLp+m5>N;8dSI3fUfar-ie#^Q0hbtZ_HITxL-H-b##`4^IIhaRCoKhL<?p5DD
zO(Or{`gfhT!!`e|PObFy{0e%cI>Y6~#XHba{E~3DFC+B(>_dAkorZ3XBwXJ+Dne*^
zjC$gMTkn2+A1KL@e0%aC?<V~%sI=k);#!coh`5%IReau{S=BJF({|R0^4_;2_Bf0C
z%1Z7D*ri57p7>K(YtKb|Z3du*6G8)yzCG6SZ2I;lR)7Vo36pOcMwWU=)i$WMi5t+#
z9O0dl*JqM{+9`-KXik)~dnmwsrVV3%@Hlr5NB`Q`|JtDp9%!->xiwph+q7wj#luDJ
zrvRyL3~8kP=aM9;OaK0&^j(dNWue0thQg%%865(HF3~V5w52~2+28d$wV4-)1}Ye2
z6IWZP>RmaADQ;|^dFsaUD9R&&7LlAvQ^GyS2<T!VZNz>ChynvX(vL&^<5XpzJQ@A6
zp+cv>1AFK1o$;ZguZ_S<U=-&($6kSQ)ZtS==jnn3w2vf?-uVzfNbt_Y{iSgYim9Ip
z$b;Ky+(<|37JGdTPx67KsMeZ(Rds+f)->L&vJ?X1UGS%3dtGg|K@v7QN%=4FqcTi3
z{!<N>c{gDtFqy3h3d-lt4(<0{WEtaab$4x$O~WR8NS?A26}co#$m(MQatzpxo6mNX
zWt=?I1!jM1e`6;$tEzp~|4r|DLL<{V(MQ*$>J&cS)6A)Fk0WLkD@;ivWT$EtUOR6P
zbWv4fb|~w%%}TKp1%A&yQ;|95LmvelytoL;F9*tNLA(26qT(qjS)F#meSSkDuSfj1
zI3kPn2OIh}#Ih$hmyF3^k=a(^F?FX*6GA&BjIZ~npOFym9p0<`R8|dplVV|t*A0zC
z5C#E6jkMj_X=wSUWl0-h80eGTjnNc@bS#vTx6*e|2|!2ssLa?Zjx!$}L3O{M1E*4@
zl$)}=%jy;0ov)tyq?RZV`Efy#y?wxhq_%UOFU~(TQ?(G=;9L-;{!I-fL`*1;`GV%9
zrBEw_5I=$*pHgPzU?<lan$}tO4{fPLAK%`biF_|;j@oAlKAUTHo0>klHv_`Z4(5BS
zvCGP0JyN7$P@%QtRoQ1%%LIdA0IFr2j~_l{2gu91yqNnnc#S;)WVp8iJUpPX<a!%=
z*;#TkoiW1+OW}AD`m~;ZC&_+(KPHgsEr09UhY5C%^jf#v8*9%Fv<wIJuCqY)#+w_}
zFr>Az;M7stPoJ%)_q1*!I~y;Fo5R!??AMUl5S5c(GCxLlyEU|#O5y9j>Jok*drZ9h
zEUDm%xD7A%;C{MQY@eJV)4ll)7eQFXf9Qe}*y!QK@v-fInsjc%?RSAuX}BUJ|N6?b
zr-2jXduzIO(7yqW293Kq*`8~7D>|I?yg^!&+LNaUJN9^o1N6U_tKsm#(GOJ!fuK8=
z-LK0*Awqqv<PUKVplm{rlomYY*hz>!Q`6Q1%gk)mEFxS6iJX0aarvMkv#S>(CyN?C
z1QSkFI7oNDdZ0J5uP#sD*3ohwCEs~0o7&&;0O$<#u4<aS*zdzv>3wCO&1i@k%poN{
z<FxK>?6NR5U41IMSYMrrTBVA9^+Z^xcAHbp{q3Bv(avnCH-h33fK&A#WGD|d;PRxa
zQ%)NU2IHb^q`1M$g(T<rW`+>dV%Su4t_v3oJIE#mqIJ?b4%5{MQj0lu^Fn=jld_!y
zDbO@=u(nooNk8jF2<X6`S^Z@?dhv7u2_NrJBs<RnG{>}iNPFn|x5efv-4ZAIf$uB~
z&-4X^!@<tIAF}gnseZAUZ@cP6CT19D8j=X8+9&U`9To&gJu1->I7j;N_?3^?98CNW
z#Xv3HTi3^Blk&DdogV9aOc|B3K>1y0X^|17oGq(E@DO2&)VjX9X$-Em$rjH5*U_5_
zGQ<uY(i6XwYw9vPd%wYn4mP7tJL_Ml*vA7dw003Qx}8>E*p*MAE#1YLz{d__*l?SC
z0D6-H#?X8-t42JF!?HcYUwN85h_mLw#w+gOin*2^hC=0d5vv%z=!U62)(-_JNT>DT
zt`5lP_vdg2oHs=B7Y_SvH6~wp;QSiBpF~@3&OdW53#(~8U4{!{OS3>uv|A4ikma3~
zOTHHJ#PQV`K%vKGe1XLfW9_X>m=x(4m?BjuiuCX%$4$7D+9xj*U_YJiXG*is4<kdn
zoTNJ^bJ0A@k5kK(@LWH<BLp!(z{1a7ajz(%@*#VqB)@V*?C!xW9dCA>)y8XyllnSk
zkjfeZc+oTmFL$DHQoZFc?(5oQvadSF;nwqwh#tS;2|fDBfA!rJ_;kUZOZ$2+M913r
z|NZ|qrlXC7r?x_851G-$sU^CjJ%(PK8|%?Y>$xLKIWR>2sr~Iv`>k&dHrCyw%EjkF
zj@a%u=^xl#FIixHJlYu_Z2JF0|6F_y)~iBpDaSQjk0Y2@s#-VQ0Q0lFP9+phj#+cs
z|J1VB<|MS9uM!6C%(e+j35pjdXU8duL+M3ewRNsbYpEnOW4J!US?SIa!xGY5alI}g
zKWuI2WO8^HHmeP$)fj}W+eK}!gz8ILUVS)agALmiAQx+|@8nRXN+8#6e+ewec|$KH
zn_Ady!j4o~K~H;Fa^Q?1xnsEJ!;o5Na7UnF#R7YYe1BmFLG<lj8K!SS61c%?3|+yI
zsas{$(PxAaTN$d93o^22IC;l0&T)ik&&{35>Uf8(-?~dh&{GPTk1ozy<8InSWiFoN
zI3+-@j#wQ*qr|cu$sSsDTizj)G|Yvgs^Q&FG?xLwGcWLxbpvh8LAyHiByQIxi1@R+
z$LZzL&8E2y9c}TGazniE)_HR+OnX{Fav`tW?vGhaPo|BqQ~yTEATGjL;qUz+uL)Cx
ze51-VX93utyvt?PTbs`wm?I@Pq)Xy5&(FO75c1we)gCg<7z0JE<G@L7aMMK-V7}~C
zp1_w4!)tu>FBJ|{o@H~Q@a3?|(hm`NbQ~7%oxuUyPFsN2t6<{Zbf0s){P2Ee-O{1m
zA9tE*bo|d(|Ktn#fUP*knX4T}6SA3EU?<#z&T2l%qFs~M=!#6GZ}sT;%f0|NW?#pq
zyMPsjj6CR-?nlFn{GhU!Z|4E&AtK_?w8J@ED}+F{(}q;R-Iu(xicBmUD~7~w2#P0^
zm7+O(*22x=JMqNVPNgnMV7{jKnI(49kT*3b_pCHC9Q=z)nGN^lCByil2<+a;r2^{R
zSyr5?LFaRELi;iHrzqpt53Otb9Sbo5B}P}8!&iN&_D^0AiI^i5)|)-Rmb<>5-xnOm
z%xE<5Wm(tlSU9}X)-KTB2*F<OwB>ojhEMbiHRtWcFmh8MC;>)fPc!A6`p(Vl@5{I&
z449=UOue)*GukI-j(bTX9ynw<!nwFm*Yor25h19TTX6YFiE~1yna`t%iU60uzIf&L
z({nvf_&3*(ZrJgEaS_MZ{xJTF_cmw)TXLxN1o4`2B)fCGH7u?c=^(MGQBfl)M1)k9
zecOxTW<P{|_2AJzsccR>y6L>@nHUIf{pL~<bD*-}zA+EjH^1H34)vj7a9$|DUtyW#
z(+(DCVVD8|4E^yXZ(>-R`E4{Jj!1@fNQdtFbZVKafn6pS-{@y%<?HLWtZ?OhTvCh`
ziLT7<ovnX8+ggu}z{p?69%GL-7wD06{P>K2_I=<fXyTt=keXa&E5JEG=vQBAIJwhy
z`x64DbXP0ZP)4l1-OOZh?SKKwTw<{VGn98<Cv31{vpF9AXm_Q+_5u)BqMDnY>_>=~
z9b93_Zs)R~fnmK6mk4T(&fr4L*6+lRTXRj=rd#{g8qGUcpu#OydM*8R6XPAkLXZ8_
zZU9IJps7R!_>@UMJ*wu!5rXb>-e8kN$B2WavzUW3$Jm&Iq`w^Kw^Gzj&l*6GQSf4f
zl9xgzPcO3b&KYa#ifLT?U*?AUWp0#~U99W3q!}|}YK*m!f<e%fQ|G)FUcR#v7!6Yh
z+s?D?jsGyq8!FB|9Zg@R+o_dmWH7#{soI<&<jsPIgP#;9?Qo0Bz*q9wR0Api(1MnC
zD4MAD!7u#s$<DL%z?}9gf8X(7-N<TbB|uHf4%qfMTt^bag754^Bi2je2T12QKfAS&
z-bJ|lvpG_O@~IdV$1p2sargxejNy!a?4K8hU&@B1amXnp-WB7AFK^hY>zDR;khtsU
zV7$MDEw@4A?oBsFyOX`G1fVc4`@nh5P}gvFV?DD={IV<(h@!uWMV(LYCmjlblPP03
zUG=+Ov|3*fUImC8kVTZ{4kAgm|Iqq=r{5Q7_weate;mR>;TKzLdBgoYk3+$27co9b
z{l6r7W;-sIuk0SLK_H1E1?HNE?YB;Q5(&`e7`3Ed-+sE8U=L%VEClRCOT6frqs#!f
z>pc&2NB4YeK*_;7w>6yZCvw0eU{y{YCd9)Th9u4EiIzZjgh&K=9XS198_EC;A#Z|N
z8hgxdi#(U|nm>oIXpsf7f}GT~UzpyH+zobj#Zf+&g0ZYqJO7=-&muwZd!3#Gi+0SS
z@zRZ+YB{|?k5~=CB1`c@{C74S(P$uB&qfcv&&RwF3}Rk-*DP<qyYCx$l2&K8uPy@F
zs1QUh{`TqQ^v%lpsjT>9fOP?vF2<F4L9Y;@vC8kSFK*b5{p!jJC&TW3?8K!tXq6*y
z+)|3ALGt>{Jq|7aH>wdWB7J@o!@YB}i4Bh>wNw80#g-{{oI>}s5~^RF#jI_9E~2)|
z&GclBL_aP84_Ohb<7wJyH$4O~CaCXxCjKZfE@^ptaXq_xI-Wp|;mmgcbr)99Z^w7j
z!^ztA{?p0fWVk<~y!$uzY5tRJ?2z&wJ5b}jP1u(<y%6KcUP3Cq#1})I_~VoC=b(!7
z{FW*4*3Q4zM@ckMAd=Oql!t0>Q}+EHO8(o68@vWu*|%+qvM`-_EqTe|9ss0$v6J^R
z^_Y8UVH_^8l`1$t4@(Y4Y=bN+>^<mI5hv5sl6z1{Elx4nOR>5kv4rK?sUVK6I7qtJ
z*$^p(NbALxd846TO_BP*^0-uW;8J()BCRA_yeGXZhBUbpjPJxhnO?(7)bx2Upq4lY
zs=KV$4h31_((2mAB3au#=xu}VqugUDwUUqBhLI5`@)W%+of1UY?JXLUPJViC{a%VP
zESX`C9H#jTBdEv1=ucDIK9PU;6jS=gNn2F<nK2`?PY5v1C;HBO3ofkFeVG-Zd{kyu
zzXNPa7T{L;Kc_VChOk@{5CB$@;^}0(FRNp|!A#NjvF2#iqiBU?8y-Z5F;ZLMC~V<$
z%n&<2>Zbsn2ISfi^f{-E{nu&iR6~ybXnn`2E3Aa$+Yh~89rPrK{%%3EPu=~MS(umS
zHVc{<n}wb9QVhoRWWqW)7~y;E9KQ55Itza<t9vKZot+h^pcgwT-Vhi`)_6o3wRq+F
z<k=>U7$aokh4{Y1Sdq)jy+k`f#f$gX;mCBgT%vN0igU1tnlckpPdeSTdqih=+g^__
z0#Jq2zS57d7fR|a71qk|gv8GGW}copG9#E?8L&pN=q3BTOSEf3gvf(HE;VOHHb{&_
z&bV&8E24qLZoTH;L2D>hB9-u{ei1owrnxZXxPjr@QFFH=dL`f?C_Qrb<TxcP7VZPD
zN5E6@bLZmvs;R{J*Jc@l@?>(LDg4;X9_)uv(*Z^{O!MbA?!9nujxOafmIvPZ|5bYV
zAZfiFcxV`<*wymEeS53)(m<D6+%Ua_i^u!(D7ogB4f2TE3SiOPV8%eU`4?7y3p(g6
zCGBcll`UBGWh(FgYEqV#ovzScl))2CUgiQP@cyHb0M7T>DZ@lbBc^^Qf3W`2wzaDs
zlt~xPl5BUN^zdRNWqesg06qdFf4sN5HA<D0OaPJ~NHy`$!i|>)BqYMRc=Fl-W;>kq
zgA%lbC1<0s6WJ$SuW?y3OdnPkmp!a4{KnKY^AuJ&AnVyVN+2nHRzcmX{%-7r_`)}@
zUn|G+l?m)6kV?U_9+)vlXBRieon)njA37=r7vzkz(8`l&Dk}lpKc|O`Iv&%nTZShd
zWaF>yj49lS-7#n8?7bY2TfJ73y$RgxJr0<dABzFsADwpUn29WA7!@E3*8;_2J@0VP
zY!~=%<le?wLVEf8VLAakzd2JaZjL|>%S;j2azgjPZTHIGB=38-*v_NExAb8W?>iX(
zHW4!IOcw7h+ZTMCi(8n<(}-j+Z0VFD>h9@TAgG?O({Yg04`r|E)oVvwyhWCvQ*ZPf
zk{N$~QLb83q^UN!m>jjJWNJ&dlaa{&?rk|~MXVZLOXyJX`>%dwzd7Q&W9{NrXN-+r
zvi%&&KGQX>aeV8L8R~wE2A)Gk##PLIu$&8hE#aduSp@hT`OV8D#Kz2is~lJ7PWCwC
zlIk3W&bP>0UBJ#|ScUl8<xkSAaI5*}!!L4%V%UC4ztyj@!eZql8-}VnxB+?1@fhFm
z;P)<$t$LrY)E@^>nt;Jz{KQiTQ){ja+cBUnnb4!d*;!TgV;Efr#~e&7A|a+qb0+(U
z)-ZVN4e}T@la}qz?eL}UHw??Q>96ytstqK4O+dP1M{d|x_;KY7BUh3?Lkw#DVC#8&
z(F5_AgY~KVHanW$;6zE~yuJEvI&*@)o1WZ?xL($#-A`6rXAJOuL?{Xi;O{}nDgqD=
z-Y`gpoSOl$nTBGcHLRxA+g=U{Gn~{*>ZZ{{*K)>#EPfij#3!zw)J}n>=f749*R9cE
zLeEOPHFf&pZ^YTeZXBMD&h{WbVp7?^V}-Bs2Vz&F3+&8TVwK!E{K7+i_#qc*!=uRc
zJ{UEJU~!w1R!->Gzfz!(z@F@EO<rSP^h)IWH2&EkKdx@CgwEp`58KFdlsB6dRWX>%
zf(FP8{h;tqqUFd&#Jh%Fm*Epr+Ve$+IP^~vg9hNobXrS`kPd{+>&U}Q==?@l`6+dh
z)1!6S?EK<&x(Iy}!yNS88+mlt!~fFNJkGy=Z@TEea5V}1U%5J27Ju(886WfkUqow%
zvjyFro~B}i%GS+4WWGUtch$?h3dp~>N@kb2?42_08)qJWbzwc`yyCl7?6({HThsLr
zNrlL$pHH`E*9aw@+LZ54HfyKDfo?eYk{y{Nw@}tk;Qz}MlH3`K@=?~kx-f1>I2~E%
zuiTK_jJv{aa?zdlVls<a$;}Of38-sBOwB=n=pX6)HJ>5*+sQLvk=W_FGHwv0Z-N`;
za2CFk;kcu$jgvQTh=h<;i>cP%I0z~lqaG{^D!zMYpnpW-)6e;8Y45u&mRtHgq&Nuf
z-f-?1dU55GBCRLsF_XMUeO=PsH?Aa)tg?GA2C-r)z&>@O-2Ne0-GAxEN1lQe16^8#
zm03ZFW_8*n>DFs!Cqy19QlQp|%NX74XR<!d4rCy5SG@l~2ZATh_5!GvMO|17pn=Lt
zdszGERQCJf?02;k>AQ2c0X4(`P@SlwOG4|&^)=vP)rm;CfWcT{7)7|Ix_F?<7}mUs
z1?R&JrPYe(qL3Zms>>gOX;qymd>IlG4}F(0ptzuIKx`aTFIH^9FH2k3-CBzcwgT6G
zX{q|kEoD|sH*^f^6TS)EK&r<xe#1hJc=$U)?Ouo>n}O&4L^)f2{p8>t({A+JtJ637
zM}A_1BCIFF78sLMp^X5~)rm`0*TOEvY(VW@m+>~y;dM5(;c&kSKG*H>ux@B~q?uc&
z%Ef<@5VCTsHKvm9U9~PHHd`Bv@!9KHpWv(PC*yDR2>M~gguFZ;DnFCA@NOxfK(*ie
z;mtZDCRJu1IErb}I=-Cgq-l;*$5lMvd%+&)oz!Wt07u!P7gy<A=qt&YP7XoQS_BR8
z#{m!ODtd@7*;ze31`2aifeI{oAm5+Ykq0?UU-G2uN!qu^g+m;15<f*lcQ9u67E0?O
z#QA=mXV|ZJYRa|dE$?ZcD4JGC?eSyaB#GL(<J98uOuybwv5_~s9o$}8NMJSb72Ed9
zosI68Q)i-M^<Y4%omc$X%7Ip14nUGXW61hS&{w*GzGzO;?W?kJTFWH2h`&fBJb&7!
zRmYjf_S#$v))}%z-O}u`f1ScTr5O8i6yET$vz0L72RorTB<=}&0$JF>nL;9?s<JF@
zPKg_|6W(MgoU$uFpVn)(t&|x+l9FR~r{`$;#gDa$Mlt9nr5}u%4fcD(>1Nl;Lib|A
zziyz8tf`(8f&Pd}lHv}e0XM|Iq9sRb39SVR{KzWK5Yp$b((68)#b4=I0-l)8UwoVX
zm1Cw=F)TkKa2)I@h1AxxUE_ch*SNFj>64V|b?z`)a_h<*TT+JEDhoMX?TWm!stT>m
zZor2gHaa-@aFb%R`Fmc~#epDtHVYJ*eo{%l1Lb5eCMGd1A|ZY$lNxm#@3%kwc{U;o
zV<Yat*7o73)e=&5NTFvGaaI7Y7)hqeUQ|oG5OIWHE;ugNj{Q&!<I#^Pab6|%7s|S4
zrcitAysAQ?u7qsRtwSHvL~Q(sg2X^h{&>|QwPY42Ssu(q${xSV1unK(Stsi^m-??#
zUj+l@KOC|=LG;ylXV908TKralX<o@hRRNp&U~gQvO4%%~5Cb%`(@B6U()i~3s%sC}
zmmW|b+58-A>}_w1I=85a1I=Vh>~>PI7CrNy+Hr4U&GMPkiLNULwcJPQs+Z74f_v@!
zeyA{HS1#q}(CBKX5RiRggI&z4;5T`L<c(6oI`;|IPOI{lvSUJ;d$W%uZBrm%0thAq
z(FyuP9rU48ksefKvMlKT(d22o3Jx-n&_v<NkvmmTJ;inSmUvkgA5z?^jR3V|lxkBP
zQdXC08Or!WGPywG2zq%zPzrqpprXBuO_S|vZJ3IkG}GCUs_h98wtiv#Da$~-AY&B&
z<()0owJmh+V<5fy1dSa$$zJU|it#etS|#E8&7G%k+qBfpLEgzhX4^T1{ewm)zXpSR
z6a8U>F%zF?;Cn@mQ`bIIB|dR0D#|dxj<#dWq4~4Ned(j9YtQOlB&WB9alh%M*W6es
zIX3!s^YEL)GN08QX}<G}2=5Cl$<0a?!z5@Aig(ctq0d|0&~JAkH+3H+cgg7S+HZK5
z)9o#lJhl<_)yJKkDc$?o&RN->9esYU_iL-Gi&cAn^y%d6o`k<)M*2OzDCpEit?=0m
zu}Q1f9A4BSF=9rWr-z`-u5YU|?Wil8Y23$Tb4Me#YB5zF{9KhlejU4_s#NyHT#z%U
ziC(44w7Y`7_C<Dt20W(!^1zWD=E*iG09!Qmy4wiKD@m=bnCC?oTP=OL8*obF(N-7u
zQCd*G*j;HQzPedwy6__6O6#X<w|A?lu74YR;z*mg#5t6S4Rb=P6{nz;geN?K{gn_y
z=S>iQ*;pv1L|y#VHS`c4-?}SebF2Q>OlPdT?q^uM&HIe){BiX0_5*76_4#RQ;B(ql
zH)0`>2nzX#A6?e!e6L25n7ReO-nl*hW6=tGfNVhLY#fgF_lLEJz~T|yB=24C1{=Lq
z$P@A+rb*nc>^fbVB1pGfpe74cE$6VlO_!};&b^&jhKdGnW^%rk9F=0fs~r$hcGQ>(
zGY)0=5f;E9dOmxj+S4s=W4td`WRdWNvY}Wf*PC?yuwCOSwa%cz4vudXobK&~t!dE!
zOhPLAULDW=(_x%jmEB#rU4Qm1`GIHAs1=dCUsDiCnw30PJoZ1khJ_=B(G82G*cE8{
zIo+K$&cp)rJ(GjnaTC1bXS}R;WVF!XYlUn3GudrZB`|H0I<eZv_EmOl99jd}dS3j0
zDqluB*c;Q!A$fkHOTsOYt|P`f2e0}pr^F@2xQb%U73N|Me%?bh5cIrO760@j{d8d%
zcWjre-9}JdRGY%V!05VMZS2r5d5K<_WwZSRAA7?xVvC@-_=(;{n62c=e~jHdyL<ig
zgPp3t6fRHabu0+KkJ-{8clDZaW3Cw$)VxJyX1|nW+M8hWG6r~iEcD%@zDPN?4%W;?
z6$KFfrO1994tvLwp4U!=6VO#^y&hN3*AxQ20qt$GnAvDXWt#}Kex>OS590}LO4;wU
z6RD&`mcH}k{9-lHR6J`cm(@@LiHBEam{=cQJ6JR&Xi8&c7bm(H!4|r2x!E;8X=3UJ
z7)A$Nyl_}}d`#VpQz?z$-_0|&7=umOxx&?2NeH=jiTg_%Exq<<Kes?6jBg^s9vCW+
zA9x5PBB^51pg-rVp=m@<X?)Sig%s?IJZP3AW;->1w{rx$wwhA)h=cZT;musgJdW-a
z85(QW;$Z|6u0gGOl}Jb^DdtBCN)_FF^WN#blgx^wC=mTKfJhMDI~yg-lFDWCHAl0C
zrvL5B(=L{2ZRdt(Q|iXN1WFss^$D7rwka*WpT7uljzRod)-8<Fk0h7B4{?{OtYBgH
z@{)IKoTZhRrk_H;RuS6p_@G`2$)&1eAHk22`(OVZed-Wzsi&tl-ypVuGkk~b@novd
zeaMYl`~4b5xT&(UvAx1LBnUdESPKdfiyf=bT;;jT({JQntog;<M->MHdhDM@<e7`k
zBTc1i?4d}IR0)hIxiZzqf*n;hkTwc_4&%{GAZQ}G046{-gUhSmX3V*?#lTvQ$FcET
ztZURYK|2(JPeuYBgx=S0is)E#nk^<4%7)C`hWp~JyJpbj2G6N0>AP)Tsd;E~xkoF}
z_Nq%$R?Z}Wt~O$CG|f$=^QuGaN8r4^YM{asO3jVm)d_Kt2Lys(O0HyMDQK6#2;eA5
z^&a^Cv;GY|o@5m`63b3Bsb?vlt!@n%j^RgP^1#VI=2a#obpo|gINY%=Isr!$x8o7t
z@r0AvY6U*5axEP=(>(4z)**A;9&Akw-p7=FB$<u~I{SPAtXNpw>H^43P=>u!C5mJp
z59)OV2oidf1XEeusm5I{oO^n{BleXqym@F2V%P>>xhQSZaAbHG2jvX-z1g((2N2-5
zUsL03v(TiI0MFwrUra1*-h!-+fM2?SWPc^%SzDomnEIsQWYB~Kn4XVTH#<|53WYI4
z&TUKrJnFl1ytbROrTRRtH8ny~CS%?H(q^I4_EbTu>4&1h-G=D(7Q})p(aVZ15Z##=
z?R90$54IRtKiswfO76;C%rYFS6yDNlq88gLk>YWt#<3=P2X<JinhRX!)L1H9b+D@9
z_V$*3vYrl9<V7;xUeBhFqJ20T|A7IR;;7?x8&`cHY?4LQUKr0JD*ba1!i(nB{=mwh
zg0+G?KlwOXPs5e{5Y!SObx>8q9u#FE4&~e7ka*4#rsaCNH8Z9Iab@n1YuBBt`4Ge(
ztFATBDPhD-J&hC3B0rj?5ey8u>bXATIST44?R}llSMw;Q_YOFm_0}SsCV%IGO&h9i
zKgUEW$mX|o)W2?_okTPcB70sEKQ-T4YYRre@xplzSC3V`zqz-ChkJ7Q$?%}UpD&t!
z?dzP1{p}<Nn!uw(HM_+Xtr5&*%vBNWK<g21acdiTs3<C@?r_>~x2}M;?SdCX030>K
zYH7Jv9~E2Q4YO7!e*{NN*OT5q?W=EVcPGZGSbEgBp^&0x$EQhdl~9cuNmg9P3osAH
z{`5q!`}$fWN<~)$l_n<J*NE5Claqo0dT~tHalxu6z8u~8L2xq&+{Pb_)Lwwbrs^p+
zVX=MN_Q^l!(W9)`gER#kZ&wSU!wwD$=d)E?l9`#i7ksG{^-vW)`|P3oIhe;8Kl6}!
zN(`kFpVsjwIO*lFU6OZDRG8A-ML_D!{{DQ{8-{#0e6y|=<r@dMmIt6H8ua2+a>hAe
z?#+rD4jafQ#rMqS(urJ<zywk|S(Y6KCNZeeAT1;jOGB|;zTaT3(de^LV4HG*;Z7--
zOx9nYd@gG~%|BT2Ul{jKH0wEw&!J~)Jn8&ZDmXQiIsp4j==SsJWqpjHq-@R2gXcG+
zE%<Ge(0tfjTRM0`LEhn`5n|*=kN^5*$|q^^MVn{#TF#bgSd?urHk*8fx7Sd6W{b(%
zb2u)t@5*$BN3xKiPJfVE4JklaGb`O#{8vCjATc4qW~JqLogGz7$E68vl=9#(Q64@o
z>~<PLQ%r-EQ{M4#HLqbxEYQY9I-UIobip2(m0RRA%^m3lL+r8Li>p6-)s**-SOC4@
zIsJ5cownSLGFPoL@ON7hz0zgUSW}3^&OFy|s>octW~f;RfK0ViSIK_hRYc0Yt6N;%
zsR!Jeb@M0$5Ese=1LYItIy+0Qbuw3;olA>Y?)}|aN7>*t&smZT=qs?Rsf1?i8|3U`
zu#diyY%8Y}W<b%m21%cmgaOG1Nt%%9boM$v3Z2xg@8h4PJ&k@5krZZ2FQt{)JTL{s
z;akQw9DnfUbxOat!5Tun@L9rnrH$#%Eb95n<a}kvbL!-(m;d8kUl8lNT6mPm9BVk}
zce<T=R)9Oqc6WTjD?CYbx2zX}1nfLcbR)G|PW#U(jS%{^O9*GL6PJ%uc_Rz=A$-dI
zWl@s6?DMVdz)A4}yGh_P5r1~cz|Mq4Mkr@24;2-7FxsA^Y~j<%Gldd2NArRqE|9||
z@gRwr5pI$o(r4S}_oXDs57<~g9gnu}ZI|ZLau8Luo;2)b3KF_EJC0Y-E9x3qSL?;=
znO$AiIP=r}g`*uU7E#wDwl>G9m;H8c>(~8^99tL2aJawO6kaafcTD?}jp9Su|H-#_
z#OMkY7d5Ey{$jwVXG}%t^^u>%`wE?%-BwVCESTG54fwxPBtr%8HcvnmI(~b7l_+@~
z9P6qppyd6(>(=vOBI5|07QYkE-cNZU4(#^H%{w7TC!8XVOd*PV$zEbH@i!^U)aJbB
zVC2<nVG=Cu*`1~}qBR3v*poGV>}v@yksqNnbkJu(-vmkqfKUQ`ujTBb%mmrud-wdJ
z_NM61T)Cy|@66KzNr*rB@rOQ+Sfj=`YdgiE!S_sscJKO~Hz`W1-~wZO%IBMDtyNZM
zH+>IPYo-M06=z8&m^k}=`cB}@S*r$N4(_3BbTM${C9TSSnW+!)XOWo><p^%~f<Nys
zQ&E>{g&1S{OPo*9@@~~?yFXNuKpc}1&+ohnOgW4e*lNQZR2BQKoPYc6d;mcj_dIiX
zj#QyT+N#?N^aB0#>{yt#ws27Vr>ili@7r7;=B;Yg(C3qYNUZ;>+2t&a*uYN=`YMPr
z=P=e!18(nbY#nYKPM;-)vOGVjzx|s!@gBd#nD$6+M3mrBj<d1N-&z<CrXSpNaoU?N
zJLv3H)2Yc=V5I0QN*aXVui7{@?M|D0|KaFjuiAlOB03!<p`OT5kxGyVJwA6;`ce>L
zcT%5757+$axl9A5>C?$%$IU7&cYTIN()n5eBaMFX5cc>*l63DLLZ?@ZWo>=D29%TP
zn*~N6%KVYoj$m>i0TVvfAhGGs`ZD(1zn+cv4!3svrZR#gAX9PU>D~yp=D2t*uvFbW
zz-3exhA=^NS)gfd@e`^hafnW<1NQl7`}X4a;)d$vErf1&uiMEPVN6H&fElp2SNAoU
z{Mbta?Ky;8f5M4nq+-%+?EK>5rBfVZ;-tVe6iP?T{ojBWO9YTik4D=Bvyx~{Dx_QR
z=*f7k;<+-T`0lSRa2Y<&&5RD)^qfVSI<(%A7~fVne*R51{P~-+BosS9Ufc_@-}euj
z&A9ITO6??|OguE1_|;G*jv?*{x5bZBq|1DkT?P-xZ1$R<<}vufhXC3{hY!F4mSOee
z^!M0J{wqiA&FJOL`P<p)prC3K4>om-zr|Nkh%UPCc5Tf0EbaD+%yMs<y@sv<Km{_S
zj&m`aRFD7gE(3rZIzgShjd|EeHdmvo4jW-bE<FwBf-k#HLw9AIrU4ZuySr5`rIJcV
zJ6pnn8|%5f-f;}GRYCT_)94}YQV_^-j_Hz|&fFnK^h|~UodZR((x>CyU!JiGQX>pR
zQ#m~CK^!oBW40VQgm)blR(gp(n$2rDU1V>`aVsdA8DTA-NQoRG3F$ADg%2km87<p;
zuInNho{%x+4-I*$R4NXM64q-kN<umdqi^f4p^iv<CCZ>tU1BkCG6e;4q{x7BkS|`-
zoq0B^?<YQ>2_3I*{7Ox9DZeZ#PIsHDc*4B-Z!PYd8FTvNA8D{=*HV8hBalK<z;=gd
z&AfKexApUX^ejDQg|duPNgd$-_TT>7=Eh`2{RbJ6betk?2rLqzM;?n>&k|H@<=dlw
n)Ys(dAI$q~_M_O|;4NQY@y4zKpC13u|M@@v@1y_c|N8#{E)d5S

diff --git a/images/nginx/rootfs/etc/nginx/geoip/GeoLiteCity.dat b/images/nginx/rootfs/etc/nginx/geoip/GeoLiteCity.dat
deleted file mode 100644
index 1adb8c3c49241cf2dc55d4236918f6c67a882b71..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 20539238
zcmYg(2l&)P_w`A#Np_P>S$gknhTeOxcCeseMM1@e*g&vg0YMS4f`E#O1r@~tD1u<G
zSU^#F@4a{UPVTzz_kW&w4rlJ%xpU{vo%v-q*<b)BU;!y${^>FcPM5I(hvi|{WdYK_
zJN>O0{jCh(0opNZJEjk0fd;G4a1{a|1R6eoMi1bQ<thS3mcXbIh=CkX1Skrelf}7N
z6a$I_J<>QQjS@gfpr?gi7D@r7fu9WgY@iHK7T5!9TcgSW<$-y?7eED|BJd0_Xt}Bc
zR0ggEt^=w7Re|<E2cVj?Dmn>N2OeLpYKWvJ@bYq13wV3E`h2+}E?cf@(`TR&PzPYO
zE>KTMeZdC6eo<pnutGHkngGp#7C=*=)(X{3u+s|FZ-rv@ffcGH&<bb`v;io5L7J%W
z{tDF=Xa|t6e78bvSfMEI2y|iufL=gn;N%L`oxuUR0L4}+maam&(L<?rUa8Ij&Ic|4
z&Lyr?=LwSBxKdpRJh)PQwNhOKj9;nVU8$By^<v->+Fz+I7rYd>j6qwa4y;t(D%D$r
zZ0)#8T><owYG2^dRqATsO5iGy^jW2-bL%Qa`87bE^pgnR!YXjR#Q6rn{=fj>Mv3;#
zBDqO8!#-)18Yq%ks}$GqHsE&P0eTMHK{;?2a5r!#K=(Kz9hkRD4Ho=;mD;*W-2)5(
zh63dG0{1a{S10mPtJVF$Fj`x!UR<r}u2#c=uB+7z!fEXx;9+1C@C5L|YBhp$1Ret(
zkt!t&+E1(1`qk?2YV|ntc8waz3}2&2MgwEShw;FZz*E5MYt%SkEEi&p8nH$_4cxXy
zk&l<^qBV*N9CU(A<nJ}=S>QR~d71mGz%<|m;V%kK1SSD50h5`iB4Mni08=Gy+z2Pv
zC`OFJSEQ8^M(;Jc0nDWTz#G7HS*f=KORiOKGN0Ef76#;PZefwn0NxYwZXv?m)+TX&
zUsk;DTJ<6AuT>udp8&HMtF`JQ!8g__@=t-;z+B)nMq{m-11w#usLzRW`k!-A#2V*r
zu2bamB}29VgV(DCz?Z;6@&5<lM_`fguLQpq{08_I_)cd1y&$(OXU+K%e*%66{sR66
z%B@qsaQm-QfASbvt9}I*1HS>kOA{l1-a18{Kcw1homxUynJw$oxOHmgI`#cJwG8+N
z*aU0_{soo;>wxvZ3W>}rU^V$VwNk1F)~PkJt=977S+COTlWgG-<So~$4We`DdbJT?
zm4yy4>`Yz8mRn}4L|~iXc3=mv6Bxc;y|rHL26hQ&b%IDfU$6E8`{V%J&#h$OMgs?c
zgTNu+FwodQ69Y$pqdd0_qzwGFUL6BY0jFtsy*e&<LhvLH@C}N>8XMFZ;4Jso2Gx0k
zx@?1j0mA^fX<+6C_3Z{VVS}QwZD9EZl{F9;a16Kx(grdHT5VLlHmZFalxKkG3%VOs
zRS|{;A_FxI)G`no$Qh_)pt6A?28tTEev_(TpqPQ;23BlTB@EoYQH|cH-rT4bZB!)<
zlrpe)qbkkw-#}T>aW|=Q9DS3bet82GH>u{ER8Of^H1Oai_2MQqbCddhld58%>Sk4g
zXrP(_N>*-C)eRh!R)4c<yIJ+!tds$5ppJpM25O6i=QgXEo0H(&vsu+MP~Sj91C1mm
zKW$bGgsk7J7>%QwRk%gf-l7=2rUsfB=xyL~1I-PzFwlvb2D)xhEe*6W(AGfTEvl7)
z)&}m{qFC58W{Y}ri)v?}y@3t}7H(0cwyKT>R&P-!w<yNH=~mT+Mhu*1;Cut!40IO<
z-ruTv7&ynk16$R(1}@&3EZ;4HlsvyxU0~os$_-p%;35M(4fHawVXNZoe%_jdi2A2U
zHmge+-fillZR*x-k^@GP3@x^)D-87E8gVY$6#eOI;A#VZZc`(+sVfa!W#FZ4YVNiq
zH?A>otpP@U+ctHbfiv4wKLh2qE0#vv)eUrhyXr4U2Wagk12-G^*uW<S1{%rV?mLJE
zZV`T~VDg86`Cue}omsg3?=&#jzz746Fo1NDbLV;)xW~Y~28I|IO0(OOUB>-&AEUHV
zjo7YU*skt3Fw98yAUTij;RfE?uI6u7|7=e*A2P6OyL#9F|2VQWwL_KLp&m8xn1MH`
zY2a}KBMnS6Fv-9u15X$j$H}f%qnWxZ)h#>JQwGK`N;}k(f<1RAa>~bYhptpli&u~C
zP~#0uFz}3l$ve~wV&PfgAMa4l@gir3dS0rW!i!v~9f}1z)k_o_c-6o(15-HV)oQAN
zm$_s+lVhB2aEMoo<PTrnok{gI1Ly8k(;1naisW?zZ-^TMcFLcgo$9rn>TLt>7<kXX
z`vzthJQ38p1{UvBpY2RWBq7c;ux+Q}pZE`{uuFZw5qGJ^yVSY6)GQu8yVOU55A9N)
z8klY13j^~xsa<N0fw=}gqr<z@++FH(5mG*nbKIrY?Na-8DPy-<VBkvw-x~OiX>VW=
z_r>m{iKXOj^%akiUFvJWZv<IYyVdsvwI4*tE<XynaJRa4x8f+jaI;wGX5m-Ph-aXI
z-?=eOG&k`Fv)4cc6BSJ?F|d?p3;P=Q%fR0}TMVo;uuNjLoYi$nZv125Ur8h`AFB-Y
zUAxsPZchfB@iFk^Zneh1dajp&wFai|R-f%w>p1=0YT0hJQTnpuW+9sd_v}_%grxQ)
zHp}f%+nIqPA>UzOC-=^tWGo_=b$7lOk9X1EPY-zln{Z7WG;oO9&A?d$hb6;L8aQR3
z#~yXWz)_hC?Hm(w+`tJT%ufnW3+G=e@;)*gulNl!$=H+$(@gS*?ma1kS|)f6Ib@Hr
zMS(ipO=%Mu6U9xGFyWc-rHNg#CSKd4awdwH$sP<$ghI$86R~jqtz`AfJ*ub)Vlfkc
z?@_z=BoceCDrth3YNbt-F;Pl5s~oXxftM3fW^ZyuS6+CNy{eLl$|mZYXkg;}y^7cQ
zRZLVham!xy*j`o5M0FE2Ow=?{+r+<n)wI2;mI-Ypp9qxT7t)JWw$`Cp6ZJ$M?@J_<
zAKI%LiX>lcB)qX;6Tv$BR8te(_o@E-R0|U=O?+r#mWfs-TALVd;sFzFOtdx8+r;H2
z+L>r?q8q!I=wPBFW4KRsF~L9go!EDu>db}Mr=H)ZzTc--?o({-%4qLTNDmX|nCNMu
zmx*&lc%g}lOq|E*Gs*X>3&{7Y2KyB`@w)wL*nTy3znZ>ZU2I~(ezkkQx=hBpgz?|6
zE)}GXeIU8&xWYsq6E~T-*+gFxSDLuaL_ZVd52&UGRL=wID#rGJy4u7wbVDT93Zd|N
zM&p3mbU+O-af68$52#rORDU5qA5b@%IC(%7IjGb@HIPP33^j4TiCazFX5wxW_n5fd
z#2qH?G%=XbJE(dcRD*=jJyvP(E)$O&R16d)0}rZ~4yt=i+-G8li5UkIA<H}=4BZkE
z6P)j+gGo7lP(5hkArmi~c*VrSCPtVTYvO6zH1Vj3Q4*HNI16UWA=TxO8Yv;Ah1?;<
z_%pCim>6y1+CyrLiKn>Aht#k`>PhMN!Xd>gH~Kct#CQ{vOuQuW2_~L1@w|y=Ogt;A
zLsP#TN*3q^6Aafx6ReWFC{?Z+`G!O4)FCz5#8js1;e=1&<`Tkco5Si=6Vt^03~oK<
zz+v@<iRmU@7tZQ{!|K7qNe;Ye;w=+zo0xc5y<_5o!-|AMEIh1M99Hj|*ne1gN7Q>J
z-ZwE*svmGe?N^kuQ1c@bADc*7uq}LI;!_i=O{_67+r%6bKbrW-#9R~1ka;G)F!323
zlh9Q^qPiSOf<K?RXCi%6eaF3TVj<5K6JMLS>WI4ch#GxFEiys!hE(StQOk~~Z%h!s
z72JD7vG4aLeh?!}49@On#*HVui9dO098E^~)x=`){5Nisqw06^qsbKd9aTe*swL9&
zuZiU*mdf7wOC*1rm~b>n{$&i*QS}e2yaGR}R>%~X*sDyeG%=q;97wEji78xbVjW|}
z&1>SXqiVg0ttPga*kEF#i5*lnu|=|%e6tDbm?EL&a>vwmDwx<~g6Z1mm^$~E+G%1J
zH`=izfp>Fj98)aJ;k}aB%<X+bC^=~2kcs0aPMA0>{vS1Qj5&5p9Wn9VF-7wAvBXa%
z6{o-am^#Tr-hyf2l!?>Qg}Hae#J*#S<*X2X@53&vy2q7ef#KzLd;CCBbu762X2wEk
z3uy}(3poo#EL1$M8Xi}kh4YUq-$K?(PB3nkz(Q!D|M6s|oNr`d*l`tGNmNOSTHq(0
ze~zn?7K&LYPWf?Fg4Xt{g~yZW&p4h$m=h^up{#|v7V23jXQ8|WWkFl0KxIl!sG1h`
z9aohsR1-p8Sx6PZs)8J}x|JLzH7qzM6bmJ_tR&f}&w-kpQ0JadwJmV;Iu`n!NVYjc
zQQtxX3#~1*vCz;$BMZ$f%#-eoWiCxEG!ZgXgv~6BJE5ivZ(*UOg+ETHZ6{PK3&zQ0
zClWckwieo1XwP6umB)Jr3!N-<<|rpsM?rc^C(k*lx>(6!%Q*L=g_Ekg1>(7aJuI9f
zgp%>ndL9>|Ah|%ug%&Qd@Vd0}gY(4}F0t^2i|H;dwQ!k*<0+g-p|^$0Ep$wwQwmpD
z=wqQqiq{yruZ1fuY`3t(!c`Wows>Ww|Fv+9g=;NLwlKxQb&QyWhb@e-aJ_{aEZk+`
zZmvF4$if{K23fe#!cClrg<CCrdQ#nN!8)Y|T3C8gZ9A#>F@)8!r_^m0ZfD$1C7-QW
z<>xGZO1jg+V7h%O`H08D&oBHKNW6zDXkoa82Q1uYVF(vugBr##Zb;MypHf5F@szsX
z!V{;G>a<hIN7@H1Jj7()nDBWb;Xq4IsYfh4%H^{#-oj%R9=9;s!WawmVWfpoG$NL_
zpGt<dPphh@Rfp5+NefRgMNg^MPOGtu+v()PCZ}`fY4tRFoleLE3(r`1!NQ9cp0)6t
zg}tZM^Gu}EYUyc3o;{Nw&GOUbL>Xn01fj+m^%ARRRKGK7=ovMY-Os3n78Y4}*}^Lp
zUbQfdr!hlnVa6HtnuT{rxZD<gJfq$a{pl9o6!I3=`iy$p!s;`Mc8Z@(@Ldb<S(s_z
z0}J)fs%~f1^=H-lbahighM!gZWcs0nSr$IB@X}ee_^kTaO1@Q?MYXL-0B2j6!?{@a
z!U8{5a~509s<{@3pYb%{p4y^LolS&gpyzWPp}(}Sz(O-<e#j;AV<Y4Lm4&Y@{6Nnw
zd}HBT3*TAbNA-cwqoAik&xWR{@42U-w?hA9;b#j=m_inQvG~1*{=>qby#BYa*a8)p
zIpqxf8&3&C|1Q3fv@$d^t(T#>O#C?fmxW~({$a;$>Tjl~q4_EGaYMgu=-Gy55SCk5
zVPU0(RTj2c{7|4*TUcWyTZ11u)>>F+VWWjj(zM>f1|b``N2HK&zig&IvT?RBEYuMp
z37gIc-)UhNkHHj5q_Eq<9t)=}oME2u_+kcHIL1@g)ccv1%M~wc4_G)zA1oZUaD;o!
z)YVMgR`3c_k2N(V$3^*s;5(-N#?<V4lIOojR!jA)m3-0frQoMvq+q5J`{@)cA&%e)
zQ>RiqqO~p9z)I}6DV{vKpQSUR!>jJ$md>USq;S^K6QzVH<WeY-LX^U6=@qAV0i5)r
zg`(1NtEGzxSuDa_DrqX2La7u=r%)z^YSKz!*%T_KP)Vxg1k0yTq0m}6r7NeB3;wDp
z^b#Xgq^V6xQ+R7iSC=Xy_C!k8Orcf^Dg~WFs}x$NP&<_@3QLO=>ZI^`O4k*vCs<#w
zfnY<yMuLq6n+P@)Y$n)TaCS=5PD`=;LrSkmCHC8-&@P4cj6-3>-6HS6_}hsByAV64
zP}J7{r0{PFT~g?pLbnvUr|@J7Po>a<!B64#6z)jj+!W4B;hGe#P2v0$F5pR?!sRKH
zxAlcdC~&dxi&E$*q@}Idbct}1%Y<Aic)m3Cv-K5H?UO=ZA?$LckgHO-It5l~ipta+
zCS9(R)*Dl}DTRJ1T%W=X{39a5{wYilodHsP%hvOydb3n-6&%Qg6GDI3dRq#=+j@(r
z4NBq86dp<8(G&)!a90Y$QW!2i+?~QbDcs8uMf1KChNN(R3iTX4R1|2fl#@*MtgX8V
zc|b;aFolN-?p^8Vhf^3)7@bw>)APreEh2nEaFC-%rZ9?bh(caxbP8jn^#w=2?Ih6{
zo5Is6e3-(l6vm}6K82T4c!d$jtEKQ_3eTkQYzm)=o##^c&C$<GD+$dqwiCtq$tg?{
z`AdRZ#6EjXk?PbG&WPmI6sDyxBZYTUcrD2~Oi$rW?o(IOD;j)5^jRf;D}}eEs-;Td
zJEF-ZmiJPi^7|>|gD^9N54b_x#3iax;iD8jPT}hmzDePe6h2L1ehLe?wWW1V3Uh_D
zbM<E_e4fHQ9tF1UEn^K5{6Z8cq_r<)nhR4{R9FipReqqaM2%DaHihq)3@QAP!uO*8
zQwl$G6<qy;==>;oNNc}H_16>@r@+OcBtN^~3Yjp;)qjf4UxG`xOft2lQYB}Xzf)Ky
zRa#&WmNVJ*tJNv2NnwTXm4d4n1XuIp8*yz4>r&V*^7Y)&LN*EV0+QV~3SZ&s&D_X`
z)E2?5g4;N$eaQ!5%6SR8BZZwQ?Be;)=&e@=dG(dTo)q><bzcexgs^FU3I|<H!s4eB
za#)&<3LZ(JiU=t`CX!ZZeKLhpjI)D24o)+9xX?Cc+Blm6Z1lBprOopPrj1%Qlnu*9
z%0@98#ckL&92=LUb!@{GlC|+fTBmJfY}}sKo(<o|!nCGvT3Rnp>;1w58=;NJhL_R2
zaZ@d$+hlZ3`W6u^DtK`w=~zN|B^#A(l(bRGMrj+o_spgWHp<#4XJbl+%Y<7q`q7N0
zKeWlQKF#QgqDD>HuVUlpjIM5@zNf3&*eu4Y**KlirMzUI8aBFmx~84n0;Z<6QQJlb
z8y#)bu~FAXQya}})DxQx1?$_m+S3h$b84JOBO8rv-0f+)^rWYo*qH8VhJyB++h}E@
zwT%`MD@s~Qa6b3+pPp_bM%vkED`c0aU0=7Csc|l}+{s2~8$G493thEwu8s3-bQ7H(
zBJXaaimzMyn*P)NInvb2Px$$waG^*puyKd4NBVk-uP?Ikk)K4YmyL_*n2k$qTyEnE
z8<*Mm!`HoS?DUfmQHRCI>U_Xyvk&8+P2^WG4mQTvc+$o-Hm>Db*tktbyv{~{A=K|D
z;kw?&4H9aGh3hrI#*H>^5}koI7>b)EK5S}~)wjq3ou5tOc{|;<G1SKWqCCjPT@1DG
zJEhBD;q>Posop2mdj$t%^+Q?B^&KK<z(pBmW4Mh+Z9Hb<0nvZR#=|xq6#c1LJtv#Q
zZG`AQ!cfRecVsm~_qgbc5*#UgsmURpurZn&BuM&lxC()O%Enk5FW7idl%KZoj4Z)8
z>D4UI<8A&O1e1r$aZ!+r_^gfRM49|~8%$l2i8dxNmu$RggURrcjj2pj8#f1fvW>?B
zJ;lar()|_bJB?M*eANcs;B+{|>o(qyjX6KiOGNoVpx?4VS2@JHHr|%L@7S1OBOU5W
zVbY5ZyeD!d6(jtCjSp>{;=0(F#pJQE)W%;nKDP0Rjqh#zVB=F8vu(_`vB1V08!baU
zFVvsgm}{d~s6S(RgnC4%U#6TZ9_lY_><hIM>1vVwlAA)hd?RX$=y0UJ=DvvZS2lV_
ziK#J>em&CP+8};MvyomJ>79}Ok-?AkuiP53E*<NixOURY;eN5vDAx33v5ntsUPvT9
z(A1w?S>cR7U7~P_m>n4FzilkDvE9ZF8~@n&*G8Pv8^qP+HdfhKZDR#fC{B8<<O0R|
zlUTF5#>P4uG)Vbc`Vec*ny#+5u_4ySW4+PFCLTdD&2w^ktBoz<15;P!^fvCGT;dF;
zywk=m3ED9kXt#|6HV)d@V`DEp;daRB{Wds}XLI`PoL-pID|7ltP9L(-sfa#e<1pPW
zqE!*i&@sYCMb0=dXvewDi|7+JPTCk$M2{_^-zuWd@bKp;=b*lmJl|tDDC3~41Ji-!
zpooK_4pI(m2U!P!gZV|Y;~?!I<G^*Wv`7+!{Y8?wdk%aDtkNG^_KPO+&`H)hcF?}4
zu2xh>PO`FGzAK9AoP#@yCf$oUc%o<$w2}^9Evkz<DB&cT!}xH0*}aqlPP4Rw*+um)
zMRhp`<sH;;P}50fUBO8bqpE|74k|fVS5#MaaIC1VB4d#hDVCVxN>y`E-APuePBGoJ
zn6BmE+G0r})pl@SF|C{=Nwj#yamN?absW&=x(;R((~FAf1`ZlJ=;oligGLS-)4mMR
z#6eS;LMsQ&oMd%ch$)WS+`+%ak~!`zrdx_NE_7@0p^e1KDXuFP*X<Y|C)qe1I3ow0
zog~dVI%r-ziDVacjC5DA$>`A~`pJav;ouwz@1+v1a~)jdBujjrgY(701>($wV!3B=
z&7C!%xb8`12NyeFdR!uw=>u2fk>ZJ28o$gzZwFI~>&s=tPmAlHiYEc&w?=&(UKZji
z2Uk0YUF2L`!x%dF+QBytu5-|j9UV+{aJ`e<NV?m>Jq~Vg(BHuTk=#O?4sH~Fli<yQ
zR30dV_i=6$GDz@t2X`?23U{6OC<Qg|bTGKk>n<m`GezOOTto-!i|YvvhBz4N;Bm&;
z!Tln9z`=t;h6xTA<h?xVv+qL=9u~<62ah@6t=mVW%GO66<kcuVUR+Z$%E6Nkp5ls&
z&S(c?gyc$S-X)|0%UB2FMfh~V&Nv6Wy~U=yGRZRzo|V?;1fLgtLGVSviGq^^UlN=w
z$i95+=Vgh&OuAP>zru~<V48#19K7w|9qtGRZ#d{%Lciremq_L~ovBqqzbQyLIb%XO
z%M2m!J9t;fdj&a-u$A|+KXCA&3^dEZT!$Z9@R5U$Me>P+>r)3@I4aYb*$(DN69d93
z?`wa~b3-Jo&U5eu16V>&E1`*>mCy?ueCc2z&6d!Ah-4AhRH~G)%eM}`bFhm6bnv~n
z^sj@`CG`&uew6A@4i-E743&8Mv*0fdeicFq7w&iAe>zwq<PSmKqg*QFZ$WDQ<zT18
zYMDs>Daf6YdbxuYJcS&ra<Iw4W(TWzn3U9O#S=QShUerSMZ#O~>zw5Afb|YG2-%pg
z7EhYCi2haw+Z?nhsj1IG4|%J7JB2&d4#AxcdX&_x?vWKY-DGNex!E1;r&kV+@`w}n
z*!`d=GxrWTIPBmEw_(X-eTg)3-1+aJh_en(I5^3ZVTU>;ea{F#Eh|VNhj^f*hMUCJ
za1*tOC6ko4T%=ssE*ux0n`99+Dd%ILBrItc8R2tFCQZJJtcyT2sT{cog)?ti&37;2
zqNt0jTwLv<n9C2UXyKxzixOg|x|`hpE$N~ZopDjdMdiX+WnENsQOQL)H%V-k@-8X}
z|D$A5<<nox8D=;=sZ!`w)de?iHNlpA>d8e-7aL3JS}y8vEEh^fq=(u?ZQ*o)cIvsP
z@1m*LVYPvaM$)mNo9sK5lO;7Xzp;xZEPIpZGl?wCTr?Lu+&(nbN-T79lO%8LqK%8T
zF4~E(i<oLJyrW<TLGFc4ZgQZpbY^hY|94n*l~xM7yXfKK92e)h=;h*K7w5S+-^E2T
z3I}2kE)ag9AiGf5v(U=wCBl2VxLnAkf|m*Ahr7Z}GP$ov`f$lgB^Is}A?4J$#>KTR
zM!Fc~;yTHkdj<QsxZcGLF8aH;-NhXu9N;EL>n$#Bl<G}_Hwz9FWa8B;m28JwMe{a6
z?t(!s?sRdFn<W2W(Y#B7z}T`2%iVe5?xf0fzt6=G7eifeqdnx}VHfwi80KQQsPSnZ
zsy!gHcu<fhGp94c#Um~rlO&;$M;YEynn^{@hZ7!`9l^gfT-+yQ^k-znN4pr~;z<`z
zx!}S*Elsq>USowbV(c=`#dy)5AV>*!(6cU{bMd^37hFtp@fw|RG10|j7gJnJlCV?r
zB_RV!X+FQiDl>Ulsl=<PE?$<*f2FV&UKPRsGBbHHQ|EOWFQu7*Z@PHP#g;O<a~iWs
z>9<{c;^I>m-;~ntxR~MMT^H}Uc;CfGE~=K+|CG`*T@XKXv7?m!K#*0ISuW0&(nU(^
zk2x37r2cFda~L`oCtS>>!wkNQZ7x1{G0(*s7i(R7;bOjv-(39eVu6e9rS(rPes=Mt
z@P$m6(t45LSAt&)ek1s;;CF)G3;rPZqu@QIHT(V|c1URXSK%a!nVcf|Lo_M*%f+8A
zmK2n!zf>goj(@vY#)*sazb=-$SRs5$X}!|LDi^DzO66HH=y#<xn^;}P-70prxY$rI
zzKO?0fv*rZHcOQbu+W+946KVo!gspZB>_3;Vs~Mb1JbmIlG1vw;682y7bv4CAu@nP
z1?j_K7f1fjT#mXpCU){ZpLB7GXKWfJ)5*}MU6^TD!q3PkXK6MK`e}%;W|<_CsWj{~
zvS|cqIBB?P_~~S&I4&`rPCUt^;Yk;A7WQHjCrF(zjiS;NNv~KiCs;(VZJ9*5nCP%$
zaUng+=u*;JJB>PNlun~e8f8U7<(g@f6JB1hf?&l$Yb7C-1*@b{RY*0#>Vh={ua|LY
zt(H_(8d}KRBCnf9y);^-(OQJ{(`b}NW8n?bXjsr>mnOoS3XYb(&4f1>Y$4NWS(x3_
zGP;e(I|#NFY?sCdWpw*A7D;#Vjv`-LMt9<FWqy{?+__!S=$cNpa5us3f~+1Zqt8v_
zyma#P-OdcoPve3#)@PF6N?gdrDy#oW<L@*sN~32Qz0$Zijjz+mEuKr#xHO%7srzyo
zm!;7=jXTpAoW|uMyef^W)3`!7b^4^yH;pUP|9$g+DQ~-!)z_qPZ5lVHF))qm(&(4Q
z0MWl*@P>5q6*Se@y?;9Su9e^X^Sjm?)5&+dY`RI*c>Ca%!YH?<!LO|O-TQ56eyNB%
zM1D@$<ooAA>Euh@W@R<2ccpQ6n%@dybQ<@hac>$AiYC?W6Y@YBL(&+U#{E(qMnB7H
zeq&5ehKqz`aM|P*2FXKdJe<aeG#*J~q_jSo#$#!4EVe!_5`KrwZ;x3WSyqn{NxnKJ
zjVBp-kvx^g*fhqaF<z=q3-asqp)$&ZG@eQ0SqUKhWHcB<-avUSjpylreC5vD7B5II
z5{@-7jY(;|l*Z&Vrlc`dns{4;P3*`3=KX&qjaSo{md0yo%oUy2(|ChP#h9ltJ&iZh
zm?3hG$jGz%TT*?S3n7FO-W+*1jrX_<T>X9;GeypEdE<s7(&1Sm`Bd;D!H)&m_Y=mg
zY_c@73z9kMWNPg7SsI_GF)xiT()@B5i_*zG3%Wf&jRk3ZDf;i1)j!G|oJkV!uehv*
zZ|u3&-=y)ar0aKrO9j7A;|C!>3No30O5<nYzohYN8jFShA^2NC=XW9BmQ8Li{+Y&-
zG**?>N2OY%Tq0bS#y@Gip1~U#{F}z|G}0MlGFTxUPo;4>jg`Vz39c4glg3&h>(V$V
zWPKVNgltS>dm1~^*d*1>>Ey{n4zxw8TLrhJ!6ytU+$pWQ(%79wUGay)J!$Mq^E*TE
z-tJz}r&{-Nnzu?1NR>MM%jrYH52tY?jibVk7g~>{lSd+H@C4JWoaU|JlhQP)oIaDr
zS>bL5$iT=Tm4TgsnZZZpG|Q%Pnm_U45G+5J(`NZ3N=_zmn59B_-C87`=mZ&r8Ti7p
zg<k9u6?g-76rRhVNCrhSD3(FJ4E`*yi)T<GgQ^A1k{OiApe$EmuPT*6X_5DovC0Xr
zC|F*wg5W@DrF)e!s4NolDj7bXraAX&8B`ZxjSOlRT5FP&*R`ao1hwF_^16-?TBw`B
z=LO64GuT;P+ZA-f3>sz7ID;k`T%N%d88j9B?uA~>GH9Mb3#qoupnV1%GH8`SYtFGk
z62mqbw3XKU(zjz(?!~jIV+LKMsgq!5!4A@^YX)4AZX%&37pO-D=VWkh2Iq;eC(nN&
z7Ybe=c!l(({zX#dK)o`!SokFwTqcBZzBGe7MYFd!Ge&ry4EknpR|a>B+LamHB;=|L
zuFl|^46e<fzepJ5>xA?ZWY{_4^}=ruw^<z^)f)x#&fJ{AK&jr6!EG7bp5dLHB;TgV
z=ywReQ;;4G62grzSV(?G_hfKy22W%#I)nQ}{!j)FXD}p#p;Em+gW*CJRnWtP(9Q!w
z9u(y6pedFSQhi+Tkqi#;DqZ+vf_#2pWL{yp8YP*@{2wEdXEJzJHpP<}Je9%N44%#;
zJ8rz-I6+pISI`rLAE=Pz<Z~H3pTX1&Ue3U)s9%t#moj)!Y)+KwB*E$x6MdG+Qk^15
zf9Uxu;)#|iyefQ};A<JQtEls*&GZc3%i#SC-pt@FG0s!;?F`<@V1`uhtC*Z8jKI4Y
z^r@JTnHhYL!DrI?q2MQivod&26h6w}W7-t{O-0^-!)zKf^_&dWR@8F^S*5AdqVstM
z^D_7%gZUXO$Y7mV`!a)t8GN6?4?G7<EXv^P48F<WD{19PMN{7j|BhR%k}h2-G05SF
zKW6Y#1}igIB?>=h@OuV-2>&I6UxiR@v5?;cFQ}ydl;AAO;GYbZWcb9IUYfyQndEe(
zGRxl?Fg-~A&ES?wdW9gX%Y}@pq`6@!Uo9z3e_pMm*W~s0s<j#LQS*GvKdYoSWU#c7
z-bl?1Z$T!UWm^VY3Vdr`p_1M%WJd;+<b}I3*qy<i4EFNi@=(L$bN+gtT+~(bus?$X
z863<c!m~WOJsc8#Snvp4-K&mfa4du48JwU{JUmoMhn4lo3{LS3teni3XVGankyvG6
z)sTT`Ht=8yx4b0sDG#;>$Ajy^_mK6F_K@+CKzUx05;Weqa)Pu&oBRt!!m)^<hsZ<h
z;hM_HlTMXA<b)UTP*g}U52ZYm_E21^CB!T(mlVQBkI2h-DDR<yhq59pSJ2_m6{Q!A
zR}wP3a<Wrctx}jvRS!?d(9<ewUKQ8$P>YkwqFENogZ8k&!$uFaJ=F0q%)@Xmxi4JT
zLpLGh^*r86#;28a0}l;7EUK&<d1&R~)+)NOhbFY<;or)-auwao!@kNoQ$;uTz-sd<
zx`mLI9(q+t6k2;|<Dsqe?ckxKhjzl-3qD#!(`F~(BwajAtD-wgb&fQ3^{_-pcMp53
z=pG)<@o=t(^E})pj-Bt}0uOyW^!0F|hl@O1>fx5Ex~GR!ReiBwFTrwEH6=}|>Pw`0
zUR8aWhu$78_b|Gu{;I0}x2nEEIIHhe)mM7B%0qt-13Vn8s;~CYPYC%nT;FQ?S`XKG
zP}OwDYMMfp>pk31(CH(>8$H}ClA8+h`$RsFPKxAK5938Lqnf_m!yPiIK_2cEa;M;6
z!Mi-(d{5S5Q8i7x$HOWi_vM9^^$-t3h2JlDP+GZ~4|sUDu(A(&c*w)U9!7Y0#KTm|
zJv{2+F=n-gr>g6?x_;clSWd9I9_e8ebBQtWFh(R4a;=FqtMeHEw5_h6D#-g(*G~%{
zCpcbkLZS5;56=p}Q-*ln!wVkXsIFi1Fww&#4-2X%lX}U+WNwWbx^WHtcXhp^x}M^J
z#E@!_8u}Fvud}0v>ucy&IguKA8ZFe&uL*uwLr?ecriUsu^*bKkk_f-e^r)s6*U(#P
zXs4zoZ&g#z@X)iSzNw~uk49?h_dU$?@PUU9JuGDOJk0X&k%xJVPfh)?;A}xwKjGF8
zKDVZ3b&iL*9{#MUKlAW;L5FkMF0Ee_B=b4P0{>EoRZD;6;cE}eJ*@EXjfZbN{OsWu
z58ufO{vi0hVA)zpe0~&8@)P%?NPhLOn4{Oy|9JS#!|#kwExpXcAKVDFG|LmU_zcE>
ze2I{yf`2iv1^Ml@^yi}duZOL*l1Uj#uVjLG7^w6*539K-O0VT<p!6EytkRA1l%|Ax
zYCXfK^kk(sdD!gXGasM(*g|XEo<1)0lM`ke_ni;h$94}pJnZza%foRGCp_%-u*bt;
z4@VeVrT2PRr}P2g`*{8fq5K!6k0^bR=RY-t`&u96nWpvaT94#ES|9V!LF?XHpJbkB
zea6FC52u8m7F?h;<?vzn;7c5u*Vcb)y^{~c)YcVh>z=i><>S`c`mx&D@!|TY;iIOH
zw2zFBQa(!i@O=0_VjnpllWXg&kI={F+L}D@@o8=STWyUxI`UDXj;>!v7x7WlM{!nt
z6!X!ePBO}MbrLtIP|{E4GQCc6+ws0SdR!e{#z$Enm3&n8QO-wsA3N*l3O>H9quG~T
zmetV}{bY7@-m0t1*40&fR1-;6A5H4&bLu96x~{IS?t==$>*`uQl#kXv+W62uYWrwR
zO&@i9)D;IB_;{|at|z>{kN4~9Z^X#Ty1Jo{Mj}5blBk|m^>kAoEqpNM&1kuvZZ62!
zlDG8Hv7T-vNH@sa`e^5)vyU!5+WWY&p6=+Qlf<fnkGtyWaZ)(JH|uF)S0CMcoa^H}
zAKe)-ALobz3+w6S_4I*y$?RCd`nr1kBx2|LXj@-jTt5jZ!+4R8!8Gfmr;lDfF7|PW
zkA6O`_i?F@%Vd48_R-tN<vxC|udnn$BUkw7<D;((bZdS6czr#kezH;@*VkA1*im0w
z4RqNCnz?a}k88!qb%ISqc!Q7rtopdk#{eHU`WWcrkp_u{n|$0%XC%8WXrONt;lu{|
z79X=3=p_x3x!f+}4idaWkPCOG5Kf9~akr0qe7xY}MIZP2xX;H}A5Z%j;$x_fM}0iT
zJZYfs_wj&_2Zaw49PaZqADT@MN%avyRv-2;LO5g2Du-iiALp9-80}+>55{(s;1l8o
zt1NVtS;`<k>EkKcK1`bm4U^!H^D*AXvpz0pm@LW!3C=S<m_qEuSu|^?+4P(!JTEqH
zXs9RpnB?PaAMf~hi5tqtYm&(f*A$)`KIS&m4>r_OeN1hbr1UF3UKQc*4fQl3RM^o_
zzs_Dhru$%$yv0r0NRzx-AdGg^MtX*icYVzE!Cm<tlicSMVi?j$cWk6*G8r1_51F)$
z^aqlYB(p?FIXCskK0aZ_`k<+I8YR;qnb1hjk%=s5r02?5oa{U~?hXom;bXp!1>C$$
zAx^xhUg%?yk0m~qvNY0P`S{VtPd>i(@r{pfeSF6(ZLELrv8R#t8|&}6wHs@ec8&F*
z#(GR+{WBxbSZ`{qfAuk^vHnFg7mH-EkKdTmK2AxsbQArDk3W4-nWbS9{TDY>6TQmE
zY9D_KUnWT5KR*8TvE0WBkv!ByQ@FCwI-rSO<72Iltv;GI)$4q$r&%ATo9IbR^ao8e
z6*l--+(d8mu~DjQ+RVQKqEou5W_6qN-7ZKYbZ@7`WS5WKoQ03QJ`T{0rg}hA{cuyg
z&&QOenq@y1I!~HvznMPd<1oYS<0zLhi_$IhF(1c$RLr7M7AJh1^butdXK{+7b6v7{
ztC>FI<E)QV7IqfZn`yqj#}r}+QbH%&Hq(|=Nhoo$aI;8@q_;@!YNj(;JWb^$iGrU+
zHj9PL^gqp#2nSj0Yo<f?YMxYcSro~l6g|wMXciTl>k@*+1X(REq<M2)QpiQkHH9o?
zvM5*3DJ$gm=DNI)3W5wK)hg3+6RopY(p*=`qN-G@@j72f^(<-#sVP`XaAfnu^VbEx
zXs&B#lf|l&McpiRHrMsC$zSSZU7BmFg>JwuEp$Ucl14%r3pNqtGBwYlMHcO|=#WKA
z>E1@LRTiy<G-{C?7w5LnZL?@6lHMY@y@l>5)h=0d&7xBlouxWTTKPAkTNd53=pjN{
z;2A=kBCT^<=<~8TKZ|)q@I?_^ki~^rOw3|Z78hmFGs_46@NgErvbZ>lTeG+=i%Z1L
zO@fzZaak6<g<nyyf4Pu<#C{*)eY3bSi~TM1Rf1OwUL#21wOL$O;Qg|=Uib|KN&hSc
z2)|K~7fbANvzQ%N81WV%Y`VQ58Jxu(!Uq*3cM5S^CUd_li@US9CyRTtxG#$#Sqzod
ziY;{uQMj<BzO|*kUxW<TuxxT^F+7V0gglr{{)+M7;!!_Bbe<J_MDS6;#{@an<3dJe
zF)Eup@ce|}Xu&ap6h4{7Qw2U&$kSPjD@ev?F+un<f}>j|PYXXMW}g>)p)l5qLSApF
zU&>-Kmn^^~0j6Xzm3ujhlWfi6l`K|eu{w)avzV5}$60)m#cNr-p2dtT-pwXIW_crv
zx4F}^n4ZO(LMU9=GWm50e~m(XN7P6R`QgcXS-hXcOc5?=sXxf#!z@0M>MX&w@~f5(
z^1BuON`<{X&0=;I-(~TA7IU(g%e|k)qAWhk;`1!NkY1Zx>f<u#JZ=i<J744+cR?0k
z3inzi{;+%{)o;0}Tj{T}_=YnQS6O8%-TonqAG7$AdpwJu3U>a;;^!=W$@0m0{c9GB
zMc$y5?$}EImQ8+E!}2?GzSVy-rOl;T{FTMOSu7Xjzq9y9$g+aX{;f1i-YeQ)A@Y@3
z<U_~b@~p{XZ8rH8*wHN3WwD+oMi#rM#xq2ew+n8{Vrv%Lgl`ty!lV_;`4KrvevUh&
zm2=;n#U7@pOlPm)KJFSJqgv?$Sscvbuv9tULlPp&Sy*M6+)BSMoW32);<z};iLiPq
zi_=*&2+%OVnJmuoG!9TY0AJZ=1PB6z0n7kafJ^`{;1kYCNbMk*Cdrqrv?CH%kdm~J
zKU!&Dbh3i<gu`uWm8@43B&k?5K(PR^a3(`8KoQ~j2vDtf0A^#!043;&tXDqH%-%8q
z$_9M485ILC8uX-GfbufX;Z`~?sT81cfNBA%2gw3e3I6}DtEvXc7N8Hzy&5uTod7ih
z)C!=aT3e6`I)K~yzZK^y)D4o{t0!1rkk!(yb)x`{19S+`F+h_5O#`&yZ~>YHXda+-
zfa_ap-CDP4ty=_W8Q{X!x|Ilrh>)$LTWfL>%G=3A+S5pDJz0dE0(1^=PJnX*bP3Q^
z6!I20_ikdUyC5y}5Hhp1J}<!e0WRQh0lpPGRHn^~0xWB-Pq)@l8@;Wy?kW1c1UZ*W
z16&s1;~YN8p?84G15D2)KQ6u^K%W421Q-;cZ-6U<<o@!_0j>&gb%5&v^y6~0(aqcF
zYdC8m*9tkWjlN!#ZwSy|$W?9h03n0g=$nMxNIPwk-%gHbqbVF1;FbW-w$X33(YFSe
zE9ABSw~LT+D%=@haFF~hJ{sVz0CxwN72u-)_XN0?Y5|@La9@BS0iTe^$N)nF+#lfK
z03(9ri@RUj=wShd2Y4XB<~I7l01pW{(MA_(t5sXguWLHC)mOFEj|6xuz?ioB?zZ|-
zn(`Cj8*TN1wt7^66>asH08a*ZBEaYX$J*++ovz(Z_h_e|3NV(DX{RSJwly@#(^4HL
z$m)0@L)+<b?esGNh|}BY=L5XJ)C%xMfG^wWzuM^+156AsDZonsrUiV|ACr0b2dLCu
zzZzgFgCJhH?UUaTydr#8JI#ldS*1>!_PTd_eOvqF6UXE2_4EL526#8Xd)x)0JR`vN
z_WEsZH(G12=e5^-0DFm8qx}5<GXs3ct<gb$5a4k8WP*IEIqaaxDdcyC9|!m(z^VYN
z8QTD}1AG_Y`v7yecAQ0kg#kVb@Ogj-JLvg5QaU7`)8_^FB0#qe`Z_86xxw=t^a2jo
zL4VUhbMA{cTnGI%*Dj~OqN~mIN;WZ>c@}j{zFpxWG68-F@MD0#nbiS)3h;A)zXFW!
zsDF_V_35aGbkx5FsM=ApEEe)xfZq#}KLY$&;7bB572Zaa8OC=zCPVxqKCcMyZ-C{T
zPRC?jC|}c2uS||a%_q+fcGPPEtPQY>2Vj780oDiD5@0Kj%}z<sHU!uhfX~BkVx|cp
zui8ns?UXzuzm2QFz1B(Z;704D2X{(>{8T5slbZ5bp3dyyamScY!eDmN`vM#Ya4^7r
zPQR1h-6?VDkgO>$Q2EHZ)mfMAoP5E>xHamW7(5o>cz_cDP6jBML#Z521vpJ35e`K-
z6W}b@F~sUHd0(dy;-(NchcH7}AxeiR6CxERukm4tL)al4sk(xmU^+ympmQbQhsa7b
z5R3%F5a)N+H+I%TI%}HB74(aQC>o+zh~gnih_GaVP;I;@mkN`&1F>2*M7a<>LYxz#
ze25Am8ii;aqGE_jA?k*x7ou{ADk0wMtaXU0Vz7FM8bYcG(p1e5wS+5L6U#KtS0UwJ
z`b1t^TI&e@(plFR(onF0Aa!UVZ=^|xrXkvdXe&+4LO#i#M69`B3&H%WGFu5}Q|k~M
zj-*|P_940!<Q+nE65g>Ona8&UhUg;EqyAQTl_E(uQRp6GqlD;O8Vqqoh(6Q|aY2a7
zMB&1Mor^<U6r!h8IXW%$5@euGb=H>%zf>^SC0U@}!Y>!huS?$$SBJPpBv*#GO2`}X
z-bm_S8{+y9H;C{$!G5v|Y+~szk{d$|5K>cypqy`692nx35Ys}u7V`HOiDQq47#ZTW
z5Vwc8BgCK(LqZG<ai_FWVK9Rx7VZ+s-39qQA?^)vpH%sDHw%?H;{72W4DnEiVIhV~
z>jN|{7A`G#@^FYpLOd$1BP7~<mE~hnWqfFdRpO`+PlR|e#KaJzLyQrH=R!Og;wj-1
zLW~tMPLN%m7V@YJG(H5MPp0shLhG|k;9ZG?<@pdVh@8)(vN}olRKb@D`jdrB2{Bm=
zz8vC}5OamUDoy#teLch*l!y2%#B`Cr%jFRArr=v4-VX6jh#6AdDi#(Ca_IL%%n~{I
zOd%hH_^^=h48=zwJ`VATG|dh%N64pwX4fQK<SnH7dB|VH;2+^%gqR=V#}Ge-SP<gN
z5Z{FOHpIdZi$Z)A;%mCSR&i=v7rwx=L|4sl)$6MHica$HLVO?MhcJ1eD7P(<xteT{
zmFnjZzl8WB<nPPyYly`mehcwCg|c>Cx@x8z=g4eltat(}39*!?ig<NJSIsy6{Uw~E
z(AqK%A)#Qee??B=av>`OR|@j|V{1aJ4beZsfC%eCtPgQA#HkP)L}5pWo!p_qX<<`{
z%^|i(b*td^5Zel^6Xbns8NU2SBnJg|hu9-zui*ZWKd1WdG|uPhfkM*K{-F?urS(Wb
z=ctflA&!SQA$(9*%|hkVA<l&0dzp2FvpoDGl!+3{Mg%j0A0ZpT5($M)gj9jsLim<o
zH$qx?CNB|uLS6~WE<uDaLM}p)2vLMMLOy70@<fx>q7jNkC>f!YNQ#S233{?OSyP%K
z`CqTn5jZI2Wh0am{qhm2M*M9QDnzIlp;Cm(5voWN)yB#+^9wqutFA8cnu0Y1=ZZqa
ztd5d58?#I82z4S{7~!G_btBY^&^|(k2=ya0h|oMjiwF%PG>Xt9LQ^r)MWWg`0&|QO
zSeix28<HtuUa{ITLaPXEBL46#*%2(Qr6bcjuiuV+3+u)A5_gQyDMF73=TMDJ5vb5T
zLe~i0{*UH2Vw{6=EZR9Y!g&!c5X-Ex%lQS)Z9)mFJtOpra8-n>rRm}bmqq-EB`zsw
zUK%CuRp$P^oX$t+%ZW%6cN{JB5xzpk<p${}h4O16TqjM}{vTz^`$f1u!VO}Ry=azr
zV}zR`d>rAE2scL<7~%N{FGRQ{!mSY=k1#UAZ4rM2ilGtik8nqXK@skbaE}<jQ}C_`
zgN1OE{4v;BJiIr;eG!I8Q?C&H!vEB!@Z^s$Ji-WRdLY7sLLMsE$y<Av@d?386q<d6
zDIq#+dQ1p~`KD13o{lgs!V?ijOVgMLPZe~Y6vCGYlZ=f(!j9ub_)I}(f;3V7tVo_K
z$PaYYFGiRc;f)B>BTS0$QiN9ut&<~6E$}HqczV;w%h7*lIQgp)rbT!yN)C2bUoSNI
z-SnH%Wk!T|g}fEvZK??`CCasgzZc<y2p>jxpUy}BU6Pd$g;}CNvmXhekcE9ejW9dH
zh6o!Y%#o(AB77b3hr0MI!smrv^O*_4zbHs}>9Qcgmr`9AC9m9EB)nud&EH0GAeL_;
z{2t+t2;WBdPFlYg{8{ja2tNw>DMC$gGJiSuiwJ*>usFhR!uk4cmb}eBBP@&XkI0uq
zSSo}~e?`e@{C9->QB29d(zH6l@`BC^o>382Nwr}&&62mdMkH(bS0KWA;a$6FmVE1`
z2s<L|6!~VsErMG)qLA%^`M$e^?-SfDxJPiWApb^RDQ5RaI3N-Z!MGica3sRfI9Yd=
zqdYNUbc=B;!tn?vBAn!D8KYW^QxQ({OpX!9IK#s~f*T_pgRkZ{V%TEAjA6z6dG&wR
zxX}4aaSCbNDacvP#PDKdV+1k$f;^v5`LrR1BF|TIF^a?}6QgX5q9QLYSWGZ~HBur*
zNvW0+EG@{C$WNROl#5XzM#UKArHK-DtR%d0LBd{D3Y;CQ$EXpbb&NJKYR0G)qd|;@
zF;om4qn>Eij!{QQ-8eZvc`X0$WahceQR+)8n;OMv9HY5Zn+P_I(M$-tG?sOt8oRWJ
z(K1G>`2SnWUkbJr<qm>WYZs%v@O<bx#^{u9ij!T|B~CUP)$;N09-~K$=VQDO<D8hk
zf5(UzkHk2SZpRoH<CYi~#JDg<pBQ~(Toj{cjEiGjA~w77pc9gx)TJ>li*b33D@4dk
z`rbnLha>+-DnA|Kl`*c0ab1jlF|Ll2KTLG#ni%;%M&#GV$+a2(DqSDrh8Q=-xG6?|
zu{J=0z|TSa8%Jaix=Ht&rIkW<zct2fG46?RZ;abx+!5n0X&n^f&KQG*^HgWaU(B!z
zFKq4>d7j@V{QeljVho8fls<IUJizn%!=?4X7!SpGAWkldZj!C^a18#9V4)FSBC^Y)
zqB$zY6EPl(@pz2<W$j3j=d)sTj4?6B#TYNbCu58iLL*NJsTSht0-=y)LX2k%I?u=!
zqwqPA<k$Db7!zZB&5*`?!vJ22F+0Yb7?bH?jCW$ph%q(B%Q0S$@kWeSr0=vCuf=$^
zV3}95&q-`)oWkiMe>28g^spf3pC`7y9fQgw@5Xp9#)mOx#dtr)OzH9giToj>^8d(3
zF+Ps*sVLCeCqih4M)=lfB878fd=_Jo2tOC3{L2{gVtm2A5@$;0$5<e(`BQqK@MY5a
zmGC~|<hL=ti?K1rrWoJH_#wuU7)xXP7~`iHzs2}H=35u=ON?J*ES8SED9Yz>{=*k{
zB2)bjY2vtl3Zamk+5T6IzhkV4u{OrC82`jr6=SvN{2OCsq1W;lE4X~(9zU`%&+{8O
z{}Greu}(DC3$jZ48)T0#w|ObJImVV4`(qs79*MCn#?BbKVr(zi-@$Dq#+k19D~;VT
z_Qcp5C)rEM!{YEhCPNoJO!D@i^gSdvST0l!3qMk@$@D%Z{5XxoILX6bs$mYNg&4Uc
z2xo+!73BZULJ3Q0=6nuT4yhdM9DI>GIk-7wa`1A=nU+65(z)c@41Tc6?+f<5nST*P
zKggjqKcUE{xkx0jU`~*lMT8X1p_q{3Ig}8>7hkg^ZsbrVhi7wmE{C!?l*{2BQ7E57
z1tC3hsF*_~;q7v$EToxWl^m)Hsg^?>A=L$I<WN&ctsJxv4y4#OLjGf5?OgI{r8qwY
z<WMh%`URavLK+A*%q5x3!=Z7ZwMh<5bN_vZkpI%4xiq!Np=Cj*m5|msw8^1u4xDd(
zrukX7m(~t~9dqbZ=+!xgE;)3SYB#~|IdG@&%Z>kCZ=93ExzcoA4(I1^K@Jz@&_9O(
zIb0<2D{|<QL(d#~<#4e`IP1%VT$013TvmBCH-9wRJBQ0<c0BZ0ILE%Cc1@1&D#4Y7
zzE|aNb?(1!RPtY^T$jW3(%Mfjzh7?nKm5iVZj$PqIovGdcEN#y^yiiwZq4B~slL!n
zvrx!#he!rV#2Bl=1^v5(++C30E7ki1hX@YM;r<+k(a#(n&tYT^4~U#LNANa>@P`B+
z7UYW1{v!pQM{{^gcz&j%a(F_j;{-?N@Kix_Ob$;9&s!KP{As~_9L5(kC*<&q@c+g9
z`5Y#Sgg@_nLCA}O{Ehac9A3&{vgFCDBAk*-etSMu@MS?>Fu#(+jBd#f(x>H;-_E}#
z__`o}=l+He{y6<jxwFHYJ8ubjJBN32$?pVb<nV3|Uw6~*<?x|M$ln(-Q}6?6{i|E@
z`1GtCJ`y20)jrK(b`EojB)?3Ylf&E`=I5{=m;AR5pXKm*4)cU>>!we2(_aWDVWGm8
zIV|K|ry{t#2o~k=RSrQBghlXm4&UUkE{F9we4E2}IsBT#VxBo^{k`B%f<JKY?^i!E
zAJ!{2{VYO~UxY;6^=~=+p2Mo{dMy)Rz4{}EHM!*F!+++mB!?Q^^-}Jm9IoiD|B~w8
zOci-!Tf6T1ACcVMUH_ZI@*Gz1Opw;syK4%c?5<ad!fKAiR|<F6Eb}Pru8(%t8^om@
zIqVd&k@M=IH|4N7hb>&n9IE%wm-o=yMBcuK-p(D@Ll5eqIr^>~cJqAB;Y<#D=<QLp
zH-~*W@c)Gw*+cKo;Xv;H(R3BiR#i>-vpcwTx}M3{*xf;QcS|EJA&sOoNF!a+ASeh(
zBi$W#H@3h3x99oRI&0RP*|TS6Pn~n_-S-}Tr-0uIVe(7zb0M6klV1|zzbJ+Oea+K-
zFUjvp|FaPODuh22C!O*M|1N|tUy=)o3UMO;7BX+-x;%v|Qn(<63sblxg-cVoC}q5H
zu|gu`cXSHr#4l4wB!B4MqH<*lSEWoWiWilu6{%NLUM(uurTDKzcr1m-Qz(=|Duo+U
zxG9Bn3YirA6oM48DdbYHQ*crkR#dDM78DhRlKAR#h20dk78Orrl1PtH%h93|rVvqS
zG096IPMLqq<B=%xLs8+u(;HH_p_uS^w3ytS!YwJ>k;0uyq>%E(<kl1lrywabD`v!U
zIk)MOZ&%p8nB0}Z-6@PKCJ!mRCx!bIA*DzP_ZHxscz*%@Knf2Q;7f|h!v**wDLh($
zZ!acKr0`@4rBf)A!c)3B8t`liPp5FM7{6lzmp}^tTmHEeo>vBjfcf@<+V)}!FBL?m
zs3OG_7EhssA|(};Qb_auC?;i7D5r8Nrcgd*QkR)oxVX^06&M;tXc(1NNug>ABU2ca
zLbVjCr_e5i_9@gzp=Jt=QfQn)Ee7jc;d%;*)K;X9!n%xjaVb|^NUxtlgB0o)mxcwL
z{0sM&6>pY8^Auh!E=^KsN_E9$ZgE*vTw0{Czqqta@xQ9@MRB>XgtVsFDYQ-DffC}D
zkTyD<nLwN>N|X@N`7h-iQs|ySj}$tl&?#kJL-1+}T~g>uC+KN|64JhebW35V^1oJq
z%+%AKDfCKVU<!j$=uLjr(m#c@C8Tc({Zja*gd9|jf0vNgSv9{ECNe<T3Y9dL3{GJP
z)AGl{!<bhk<qbNmqzp~rnUYeor1UH)Jmu){6h<f;|HFS=Ng18Om=tEDFf)a*DJ&@|
zlT(<I!kf&N6vn48A%%&mWo=10R8qby`QO4PrGQdK@6;6DVh)#*=_y#Hq;M&Dq?Al!
zh)YS?QqrrGaA;Nvvs0MQ;!0so3UgC9qVzGPWLYVhmjdBB#VO(K6c(niNF{t-N-i!f
zi&JP=T9%~{mX;+c++SLjrckQ1$(H3QtYCmj8!bE?Slawz{hbt6>2+bXLQ<xcmNj%H
z6{WE}jrUVnm%>je{LKEJ!iE$Mrf`U&O3Mc<`4qM(zA=SOifmTM(Jd+LC@n;IY)@gg
z(s!irVG27H-&MeQT6uV>BIh0@?oDBzBHx#m{fZn&;o>qz)L}Y=Ax@dU$T-S~d{g)n
zrr+tp$5J?+!im&>{||glk&`K$Qsi_BXHqzuGW%r8>b45*B*~W1Z6qmtTrlgVGUn>}
zsS5loh0hfs<qJi=OyR2n%GZiKQbxX2OK8k@DSWT^4+?+e2EQ`Gqiz}bC57`TR7j&@
z8o#FS8@p&4PTCm%dkR;laZMV3r0{17f2Hs@yLuWIr|}PiRmN<<;ENdlrz<7?uOfWa
z&ILN1lnc}5MLa}!T%yD))3{U-(l1Nna%CWXMH;=z2$8GO=2bp?9nbhOa%~#drIAy9
zin?Brd@Y62NTtEOA3V}&WE9U9Q20V0@>|NksEoL2cxl{`#+_;SX#`4_G{Q8ZH2<Xy
zHz_4fBS|AKZFZ7y56MQghbG;SHt!yyN!(t-)0@+{C5;mWqqn9}SXc3lQf^aGT<`5l
z{JV_YmB!s^Jd?(=Y21@Wku)Ao;}K=MH;wz#cp#1Y3j9DtocmxJ4=F?bVyV|EE03lj
zW#zFn9xoVrLT6PdD^I3PI36!6PjS`yBBZBvsBu|&E{*5YD3wO(G+s#K#WYIjbo$4L
z{kHH+X>=_sMbjvz2=U@Nmk1YIQt=UGh08CKM%gsVr9rEvmz9-erM!BEY&__+N@-M1
zqhFf;$cHLvR86C88tu}kmPYk7>ZMUXjT)-Gj>4L0)Kd9dDL;*qs_}=iQddWLN>?;U
zqhXr=^=A^2S{kMCavDw2Xk4(;i^@q;71AP&mT5Fgqq%w`-zu6-q*WUE2%#BO{x%A8
z<;*hMr_q7SPorBJ9aUH7G`c9#DUDZE7kx#KF}27~V~D?&Mt9}utFT8JJr%j5oY{#)
zo?fb=w-Wnka+1h{`<?oyF(8czX-rIGU>bwc7?#HHGzO<JL_It-ji=PMH&jSP#TzRe
zk;X{MOk*r<QwmKQrEH@qs(|vQQpRaMQ{#9&CFi7aGAWJ8Y0ODuZkqp^h^cDftTf(I
zo@ojfmNQG3t~ikyY0OkM;_vIwY|VW7d|n#!(^#aV3-aeGd|OrT$+x_$oGT}bm1l{L
z(vqcVPz#Y2X{_XWvv@j-chXqJC}+?lgVkxgn}(f%lfipwtV!eBG`>q?Et`KD2h%u|
z#=11tr?D-K?P+XC;{&bet!ZpjEsXdkMSd(Nn+x=AQRLF{!sbBjJJR@2DNO90itJZA
zcPYL*jXjF&O=F)TTnJ}b<&A%M9MF^_ayX46X`D*qw6Yyd<5(KU6)#-gOu3MKLr*#P
zWC3y}&A*+*muY;J28|@!ximgX<Kr|wQ8PYQ_-PuS=@crW9J28ZXkQdio-Qw6E892h
z<mDuvfe4f5d-AYLGpQ&)ji1su&sNV`R{JUE=QMs%ImFq-eoONYFipAr!_Kc&@Ry#l
z!2e8xk~#FZLLzm`8(r+!d=c*j8C;XWwHeb<FU;WL3@*tSJ1@$ZDP+4eV_L@*N+kWV
z3@%r^ojT{r46e%HYNgPO!fF!R+I1ORpFyr*7VDx=2B{3vDmJV1Ovdy^$|UTk(yR<v
z3w$>m%ht`n%iy^Tp3lI~AjsgJ42onBW)Nj?YX*fgh%-nsxPiv2z&sVm*2;rPa#O+S
z%^AE|Uf2&wza;}gYLpCa%ixX-NMSycNO-&A9KBQRyeorw<%P%H8PGx^wD#T%9?jsf
z4DQR|e%1Sc!iO_>FoO-{g~vk~994w;k7V$TPJBFrCzSK444zbkqxr}s6^!JkGkB(e
z{wxEb#1}GnF@vfZRLkI{42ot@CWErdR!m{Z42mmKLZPFxN@YyYDYLXL<UU>kGAN%x
zWu-H+6*8!pL8St={0t%gT@|E?%E_lx&!C2$Hp-x82DKD#sIYbh^%SATIvLbeoD!a@
zAoUe*ps=}`QBkdGtQ4jb*_vk1EQ2i>Y|Wr~1}!p}oxz+8T4vBHgZ>!|$e?uwuVm0O
zgI*c5QB!-Ugti&9%b<ORf8uJgw7bHN8N8}UCxxs^4s}+%i^8r7yD5B4AuS<Ke$Qbs
z(kdRk8Ee%-ypJM%nQR4h_qtM=SCD}j3}RkoFfN0^84OYS=nUQ{m^)MpheC#BFg$}1
z8Su(JQb*ZIh>yykcLjqGj#2tpg{0(LGCqST8BA5;gbXGsGD$6`*^@Koeul_f8BC+!
zcyExw^bBSw!%St)@A+INJ1RNN^|Y+;bZ!QVGFYrU^D>yP2$e3#;Ozo@p(5qdSdzig
z4Ay4wzEYNDurh;p6ko1zMFzZ$$+vk`25SnEYIO$ha^Yp=J%vQblb@FBGFYF%CY?^=
z23AuVPiv}tpu~+-p?7Yyb~C3dzAc08^lHYuK72<8A7*eSgR>dz%wSgr2QxUNKHr_e
zUKO%OUBTMVZ_)cQ*q^}x*6+84N#PZNSBJwH9LeA$r>OR$864NS#}qPByyBe5fXw+9
zAZGHZ3{Dq}()e>3e3ZfWq-5}MLD0X-;FAnKRRg%>&ocPDp!67sFEaR2helP9c@^Yq
zwg|SG3i2(BRIk6pzf%=Ne$3#f4F1UAPZj>N%K1%w@=FHi6`_BARfL`Mcb!PT(Kb&1
zD}#SB_+JKpXG~uu=b8$#iz%nqL1yv=SzMUKZCTu&#YI_MoJB4RD{D&Qk}R&w;;Jkz
z&Em4G5tyI<muJnr>lImWI*C_jaZMJPtho?eo5gj?*-ZU;Jw<(6IGsfyB{EM^S(7ci
ze2~t$Srx@DL4G?6CyN`hxG@Vi3onZ}izEwQ=Y|S7B~Y1XRdtm8?>b0JXc9;BvdA}*
z_)S^doW(85PuobjRo7KG3z|d&q`*`z_Kqy>%;Nqm9?0UZEbi8!B3b;bia7Tkr7$yz
z-<!pKS<~c+Us6#X)S*YRcvR^RWkKS@3d!&omz>3u%9CH?jPes%lhw>^7Abk2$>P~8
ze#_$bES}5a`7GvSF*l1BvUo9zo>}zD;-xH#W>F`Lx>*!cX_d05oJH|0N@P(oi&9yX
z<IUJ(=K9VRQEcff$|!}zvO0xGc|{n73L1-w1*hb%l0}UyYGzTD##fMPI#gXDM=7CJ
z7C}XMR-HgfZ5<-LUKaJUXq83lEE;6dFpDNxG|i%sGVreEW%YdHd{|aUxx1oSc(W{8
zDo^tQEiLGO^?6Cwf;Np;vgnXS$E>+cYLi9VEZP-_ZJ)(c6@?TYym9K3MYk+oqi@T~
zt66kbgm{-Mx)$IR(p}Byku~==Jf*KFgvRvFq7R3%7@I}kEc$Uu79*Kas;++)19S>G
zc?`^A2$g0rNJj^&*|ePY56yz_t|iZKMTRNNUlh9~8AfF>T4z<tn8oHZznR6jET&{J
zHH-0C{v)^P+Y=S$Kf<udPs(C4(@Y<?c{54mtt_TxF(ZqaSxo0#?epa-3YlpDmo|$-
z+HGd5MiM!3UKaDSIGn|iEEZ((b`~45_#lgyE6TzwRx)R@Sd_)$ES6-kG>aALv1Q7z
zJd3Rwmscwa`H2rwxGIa)S**$8U1cVGFN?P-8uyZ?CLeqhUz^4ISuCq4>vWVu>s25{
zZOmd*7CW=pr4lx0%`M`GS!^Lg7TdDsMvl^UWU*awo^m;Ss%7mHl6kjI*`LLMEcPhA
zH;a9Wu-quh-20W4gOpa$d=NqWkP<olXcot^_&AGCvN+BvOXExyXR|nw#mOvAsY$2R
zhi7yld|>>kqVSpboDzwAq&&2c_@`NXmc@5je4oYVO8+v8ud?_;ao$f-_19T*J4*g<
z75PTxka9^S$;W?Se^c{*%;G2I`B_i-K4r3T`R5BX{;CL5{f{jE%<@m0@oWx%W$`x~
zX%2o4|77vMEH2OCiX8sU0y$ieGZ{it^OutkFU;YhoQc}S3NKN3sX`JjQ-ra*GKZ^j
zNav8rnO1Xk4%g&xZO(i^@!(@}og%3mZmT5MD^7Z$9Qf$rR5B0Rq(50nvN|`HGj}o^
zvU0F<C|61N6Cp=uxe7VNDM1cl4!7rUM-EXAaSk`<a0?CKQ$P-RIoy!b8>&h|34G|j
zQN`Y*kf&5}tFHI99C%8b3oE~<4gBCJpLk~ucjfR<4iD#WcMkXDaDUExW<`E}L_nlS
z4)-dB_<f4-I?}0<JfQf4IlNKHusxz;pUPoVC3!T5$8vaF8J^5xsxmy0GsR2JrImz~
zr<MO$CFzsKb2&VpL(?3Z<?uodFXm7ohl)A#;RgNiQVvCPD3(L<97^X<MqN}Qhf*qm
z3?<2|pJwpNMcc|M1MM%DGuIj-<&~4th*!#?at^g~sFO37?<zV}BZsOv{+T=)S2C4V
zJ%_L9(n><e-*DB;nO}0%(orIHbLL9gFo#At)XSM0gZc^^C?o?Zd^T*H17VXKUe<}6
zLV?7IG|!<$4qbETmP1Q=DTfX@bj+bOCFIav`I%I0)V6jC+vb4EW-XLYA9B^iJL%A?
zIdsk;tD{{MAp_Y+q5ZEZ51D)A&|UE!3VRmNdFkw}ILosSbF8wN_<9cgbGWk$?&^X8
zIsThH4%Wn>ni!PB;2hki;5~&Q41EsQ7eS#S7@ET{R#_f!1BT}?B8QDWHu)Ht!zkho
zHaQqgEjc`C<0%_sb9j>xx6sVOxE#jkaH)mMEKJB@Vh;OrIFQ4n946=Zcj8!`!xUyw
z4)b$Zz<SJK8bh4J>>M7bEYowCk;6>ZQDx~|S%y`XrIlq@WjRw>&R3Q>In2#r9?PeS
zJXl4ZR#>Hqw5}p==ddt`WjQR*VNni?b6AqY(j3S(u!_u7&eaM@`B;$^Ijqd#9j>&B
zSXHG+RU@-#RcTmN-p%2?9Jb`JHHS4htj%FV4j(WBRp7cD)-#`#e}uxhRpmfc*~ogy
zp;k57tZaW&m8hCLRZTiq6XM%)*q+1g9QNd}BZm)j*qOsF<(yE>s9sV{PAEeBhiZJe
zfLSc@ee`E_$*V4pR5xq~b2ya4_v{8a9M0iL4j<+4aSlgwIF`f798TqMTqmAT$SI|D
zV$<q!I)^hkoXz1}4g-`pt-7qPE{Ceix7Fp68WPlyPjdJ)hp$*QIeeDG=Q(_l!<Q6Q
zLn_peZZ%|d4P(aI8bS#NYRI=W<eMD6&EY#bs)o>+m(-M~rs27-ru>-0PdWU_X0FEk
zoWuDXe$C;R0^5q!l;0HpJ%>M3LT#N(IUN=Go6Voy-ok|z{->P(vV1J#nE}eMxTfr@
zDSy<Ii<Ee=g-aAk)iO4S!e?s9<rc0W-NHi_uC#EK#TO#rW(!waxW?j31mIe@*1~lb
z(iSonuD4LgLdwFPT2if+bgCu8Ysvgt!Yul{mSipDELaw73(V5%Ys=lWO}a8hFV>b?
zwWV!s@htcjA`7wF6Icip8CcsGwy?G^g%S&S7H+U`qlKNd<zpSXu#U;YTNIM>77Mpp
zxJTy}wjdVnuyCh^+mv#<!eVud%zAZXP#w9;!pu5CXWng@h%g*fL}wPUaIb~?EZlG5
z0iCs>jvT8aKk3}d>KX|TTX@7mSqtSXJZkZ!4|v|f3l<(%{wFOwrN|Q&SVVDMdD_A=
z7M`{694D#-3aL|9I@Fan>dNxEa;&brXz}$BC}E+bg`yUUStxGd@_O>K^3yiPnl8Pg
zo|Ljs+Cq(bQpN%)w3#*jd_8Gf&#a=ng$fpGTc~59qJ>Hps#&P6_Efe|#X?oZ2i7wS
zS)g#E!WtH8TBv1#L!T%G^$m|-pKqN&JqwL2G`3LR0_8NY(2#a213km4A!jW;eOcu<
zQP@!_6Y5KI3oR@hwQ$TrOAD<mOtUcELTd}JSm<wIfQ2>|+FIyl;WZ2GEVQ@K$-=9u
zv4e$<Dv(-M)|Y+tP1Sr=UpiapVxg;rOB+bx2F3<@<3&ZfTj*h-kA=P#dRpjZVQ2&C
ztwQLo8V#gv1DVyp^t81Nq@RV?EwB}^FCA|nzc!Gtp$xPz$if&4V=WA}FvP+L3nMMO
zK~c<S3&T|!_1@P|>Nb=v4P{zGS=CSuH8hs6r;V~O+QJWdN=l}YyvgQoVUmT(7RIyr
zTbOA5*TLAk$iqg#Hh5<vnPQpppK9SP)xu18zLDw4OoO_OWCpXBd28W)3$rZDwy@N~
zG7EDk&BEIj7Fw8RVZP2?ps-UT8QaLHSky?iG?GQCcd>;f7S1W1L#zm1N{B4Cu)@MS
z7FJpKy<l`DE4{H9U2WlA3-4K2V}YXXQQ`}YrIsReEP2*hSZ`sMh20i5SopxgRtwuK
zY_zb+!e&mi(7mxtZY=LKmfbp$h47;y+b!&{@F9zxE$C%aeK)==FTQNVQdez7_E^|!
z;edsMy1IQ9_AAoyWf`pu4CNuE9JX-8!XhPZdRa~?^2^I|oDpYRvvIABlNL@{_|?L1
z7EW6@W8n)6Us^az=dg+`d_vA9#(<A3Fu`tYVq)~ECf;W(LpIDNrX7(^9u_q(YF}CS
zn$frLqlIrQd~4x53*W0rOuq_EOyN^h(<aiRiA-%GKUw&hLAP*Tc{VnYQ%#JVUz>>E
z)QEkcsr+u?4+|IDxWvYv7XGpT8yDF4+rmHW{1*Pzxuu#)C!NAJ%WR*}RF*ZB3vF{b
z;Bk>6$C}EIP34Maa;c5WlyaqwxS6n6F1K-o4NhbZKio`8H<PPuT&+A@brYVxEZ5n%
z-o`C9ZnaU!M#_e7Be3~C5oBywHf-h3+Q=!=ubIg@YM<Op92>3@JsTUF86poR=dosT
zzL|tJA{%)&Zm`W=M{FZeX7XIq-1v&f&CTUT8#mdwS%)5PZahgy$1+0-+YlQ?Y}{+(
zHXFCwxYNd6HYzulJ8aXzcoFYR2`|gtHtw;(tLo0?LWhrRE{mHR`S;nl-^L?09<}iR
zRoHmQ#=|x~Zf<&Peu9xLANi-bJZ9r@8`&1}gblVJu7#Xr;Bik2dD_M^bg6?Y9XxB}
zIUCb#Ot<m8jTdaZVxx_X7j3?p1XXQRvr*JWF&pJ=RIpLpMhP3GZIrQ5QWsmwM%@-t
zyv2X=JG79pN-t+)Qwtf=LT0s)b2?g4>9nD;jY^9DQ825Do_Z~%x{Vq(8ryi;Mok;F
zY}BKRY}B?<$A-~G7qyfUEu~>g>DE%-Y$?>(K&Lmf(a6Tqmj79DNRh8vN)sDRZM3k_
zQrVg*Y_9OKR^qn$kH3{tS~E<ogml_jtd+F2(auJH8v|^#x6#4IYc{&mt2R2>nBPje
z=&V;2cBYZ7q+=@?-AXvr)kZg^Z_?A#t>m{>(!)kC8@+Axw82$h+gfgEEq!eCwb9SU
z>o%TfEtU0X)mr+sHfBt2E$_6Jfi?!&7{gn48-r~Ou`%4n2peyxilH`!+1S%s=yMwX
zO>4RI6*G6FjZrq=&w{FY8oeS<D$-Tqn>NPTm}FzJ3K?%>f{ls!Hn)&bugLsYWcw@f
z$tyC&##9^h@LM+MQc9+K|4<><wUHS%X4*Jt<B*M6HfGycYvX+zb8O6IL~JZmne%Kc
zu<^Fy^A+CGMi$ywWOFkNme`;oN`A79fmIZCRJh#63LC3!ylZ2njdyIU(&=OyrVO(c
zZczB1jWs%YPEX16dmCA2W4(<XHa@hm!NvzRHrv?3dM}W($;NeU<<_=F^%HGntBq|s
zv|VBCf}!@xu+zpa8+&c+v$0zl_7un&stofK?zeHEfX;~wD}^7n`N|voXyYdvM{OKq
z6?5S>j@vk4<Ft)4I_0E|Qw4K3sI;SP<*bc!O8>~lcS@u{X4;kQByK04+W5@I*EYVf
z@wtsJY<$UJsSuXoBkiP2J89a^Jesl4IPqHwvGKi)AC#w0J40k~ag-H3QBQxi@r#ZB
zvGv(FZ{t@Rf3Vft_)YWecU81pIXU-;B7d>}+xUmY(n5Y$3Sp|f5e^3zIJnfoWezTM
zaFK(H9bDp|aC>>Oz0_$htdUohb7*^$d(1b^BD~ze45eS?;A#gA9W-)qje~0)JmBC#
z2iG~c-a+CZkEd0nkb|s)oP(5uHSHzsAfxnC?d4aMV>z%Lcn*9AP6v6ogE$Uc2jx3R
z(+<+PgAD5+frHRN<REsiqJ!+}V3zPn2l-o(prhQ^QEqT>ql4QV-0t8e2NgQXEe>u~
zT{r6~rxbS3yrZn>D5CVC9pywv`JtoS;owdOMI7Ag;4TMuJGh6^I?2_Yj3OSi{OL{x
z*6$?u=|b*z(4&)#QHDjG<RJ$SJ1FI#w1Y<+JnG;%2hTfr%)#Rho^tTCgD1$-L5_8j
zCmn1kko-d@p}J?-{~hEzgeG0~s!{ra!x#6Un1kXDUeeK`#9x&nI!cBHuL_r0!ojPr
zN=Y@C#1Tp?<DjgA8V+hYC`V^HsO+E${otUYgGvs*QXy|E^InBqT~!Cw9K6t3sxv)0
zi``l7?rbcn(^)!qmRb&KJE-UIO+ctqu>86X#wgDiT@j<xz`@?mLZ9$>r?WJ6@Unxk
z4&HRo#6eRBJstFN(2TKg(7{1R2Q3`5bnuFUHV#@jpa*D7YX`rp<U(D{X<G;F9JJTK
z-Q7jXb&;lBjQ@G`>mr@#1P9$5yyjqP7wPPvi-WGZ%r#x)Ko|M4i&@A;U8TE9=;5G5
zR|&hygI%RQVHN4^ppS#W4u&}B>+m&F7@(XSdfmb5uF~H@=dLnMnfG^<fer>a_@b*^
z)=db>_J)I@4u(4z;b54~t<+6gbd$K7Jl0J{IvB-Ie&{Y88rjV(inHc*lil6qr*3lf
zYckHkc!%!*!V(7)986@bIhd*WHi_$U@Rozg4yLFCE{cw#1Rm2IOn1P#xbro0`oe3%
zK+JM5+ra_{Z#$UdV6KCC4(79FUz5JC2{Ul~YqC`NcfTeymC3o#!6MC43i(2Z&|Q`~
zSmxke2k)^kyUTJ1D;>O}_zKobcOh{VQ>(kIR>PR#&AUtA?y|7EtZ}f`!8!-)9c=C{
zXSxer_r7|P%cn~>I3VQ%CRJBqM5y<&9<tfN7UsN%q8_$7*v71LQQyUO2RqnpTwLqo
zLkBw@e8~`V;SP2?e3cbWIM~DVW4q`fM-=XJaKOPq#rLx|dkBXPG5U%ecF<Uno;{3e
z4jom_V-6-MePs_h>ENt`a}G{9I89MK<a`ggrl*`?#r2dYddf!*K6daKBh^zrVSV+K
zfj#9@bw#V5!h@90nJRQbPdU_6zVB&teeK{I2Y)*F%i-I;@Ez--hy3c`dj~&ojlJX-
z2R|zElY^ff+|Wx%<V3=k6sNW4RSS{dSS)J!AFQcfGFmz7_L9FH{KMYv;u07CbMP-)
zy^Ftl@x5KRz{Q0w$eGW)u$OF6{B$p&5Gu;`mP=h+;o?dcm$|sy#qGW2`QB2iw=v@?
z7euaBNTgM7>D${(xz5G)F79{nfQv#dQZDjb+~D%HWyrX2T(~Z#_Li)wwp`>~tn4jY
zddunF#wuIszxEay>A478gle$w8k4T?Baw@n`bg{|QOe_ej4`$QNQXW$xR2b(QQGO^
z4i`7OAn{fgg<agD%rpAP_C9jDkBAGx+vtS8X1cBLP8WB%xYtFozEY&G-0k8X7e(~6
zrZTkYD<k^K0v)~2#fH8@&IesQ<f6EX5-uKg@raA3T|DFBQ5TQ7cv7by>nlI^mB(E?
zL4kecs(x}yKY5{_)aoZsx#-kSM)#9vUA)~-o_Fzri{}*I-cP>kCoj5q$wg7hQR1bq
z3)yIM{JK2&x|Dxin!PS1U6gWB*+mr>rCpR!&I&Hdx+tf3c^89UmxZtEtSYjVbE`;2
z7nNL`Q-REZe_xlXj9nk8;i9ICYA&j~u=>j#{pH2}Qop~{a#7nw9T#<#P6=K5%eekV
z)RO+PzrTFhUmCb*=;E-8BQ6@bXzXH=i^(otcG1K|KNqjNXzHRFSMB0e7tLL?aM8v^
zTNf=|v~tnf#Val@9w62Lxod!w9w7AwNY?=}e1OauAnjbVXINcybg_GYd^SM-86Y<d
zl&1zt<$(ryWuSC+(Zxj%7d>5cb<xemYc9HL0t^@^a|arO*A0~81Lg05k{TqvT=aI)
z$3<Tkw+%9M9#0RF8iS<GAj3Rtko0#kz{Lm`BV7!1G04R*6*$<%5EpN_80uo~AXz_1
z&JB{w2Fp!@<$=LcX|S{!EW^n>SY{2Db%SLT)7!<HF2=bS!z3ImV_6_W<k!J+{Scvc
zsvGZO0tF6{i7uWWBDIG|hao~94iTTi@^SH=i#0CZaxu;2>*TP=#dH@lT+E>vE@qNv
zh|F>^+r>LWWbY99eTW2a$P;fE74uxocd>wp!JK)+h;99b417aoz9H+B;q)7_*u@eS
zCa1et>SCFT<t|pZ_(l1z9co;3^H6zGk!nMw>rh$cVzrBR)h(lj%9^2aaHxDe)W~1!
z;(c~+7du?6bNS{wY;v)g%YQ>QxcI=uM)sm%Vh@vthe^d@!d15zCR<!=b+Ju@(tDVB
z27h~)>=-5=50gKJ$%ig>y4dStpNm~g1{Zsjlj_pLg|WDExV$)AY7UqEE)KXj=;Dxz
z&ckKQa1*9Q!)4oWIX7JX94>`M$Wa%^*snaKJREm%f-7}#-o;55r(AsD;!9fV;*5)r
zTzpJLBjhY=hgYQ$^2`Xc#?B*T)Cl>+#iuTR9EZ>8H>K|zAzzOWj1+sMJUmjWjFhij
zeC^^p7vH=1hM7N7cznx<k2G@Tj+9*^<p&o(y7<Y(&o1a{TKLgOxoDKcqYRHZM#--(
zesgh=hl@S@?&1#@|FFrs_|wH-?3t{l!Dgk^MoBlFMN>zOl7C&m!v!8L^e}&vv4@e`
zJjxUreSStcFY$1x$CnA>Y7durxZJ}P9<KC22Idcs^U9VTEq9ET7e>o99<KFpormi^
z)1~W-mR_S})@Wnr#?f+ewEQw!(jGD%?(}e%hpdO3hdd8Ac(6R!9()gh2gif!AsHi{
z2S$h4e#ID5iCo2lWB6`CL>^)?sFoUIq}>=9HO6RJI7W7jkuS%{jUI0DARcb>aI=S7
zJlyJ`Fc&-4Ftgr+v8E~?8Y|_;N{g}5S5I&EaEHpAI@aU^1>Wu99uJRsc-%t~5BGA^
z!$ThK^RQ{G-0$&qfjBnSaGoD4*S;yYy=m}g-js(uJmTR|4^>Ija(+dTes9VX9-j2@
zoQLN<JmukO56^gbR`pJPQ#QRRXWo>H$C;{$#>vCuq{cXT!NZFlR*jSP<7D(Wqk<(<
z%tLXy%SY&=golzImU>v`p_GTx9=dqw>Y<E>vK|_EXy~Dwhw>h3d3-A(DtM?!+dNeB
zP)Su+_E5#cNfrLH!fVINjpL=dhZ-K<94|HLgz-joweiwhktO4$jt>1hUg{}Q*Tc^7
z^2K<uCP;m{Zi1AaAdNgU_Rz{hYY#7bXri3WY2*ZH>S5{xX-4`4={`Z$PLNL~NDB`w
z)uewW2=!9qD<0Z-Xz!r|^JJp5_0V*pv||(|O8JR0YND*3C>=d?^6;vM&N_GhMEQE6
zTt3N6zju;3h;;Mt8nt^E=b^iY9v%jJ7~-L)hh83D_t4)%Zx4MuzS$7{816|@Vv@9)
zBm*YNlu5F3k{p>N-|^JLMU!Qqhe1r;$@1uAsW@4hPnJHDWx`~6!^2PyBRq`sFpNQ&
zEW<sVo@@-*K3V>nEU76n%EM?6V?2!IDyB&BDe}q`!_a?<Or0Vdr^wkUGTy@k53@YX
z_At@IBoA+SnC4+J%Y2GVq3d*|*G`q2rkc4ticOX2N}S<gribQJrO#9uucM6YqNy^+
z!(0ywJiN_2>Zvl1wXcC-EIyeke@_+XEm`Pck%z?|mZ+#_-!hWxza`z@k~iOyWqP{Y
z!wL_dd-%e`N)PXN*zI8tQ`Ez14<C5g=;2)t?|FFN!#a)l8V_qZ<t^F!mN0WJm?q9N
zVYaOIuz?YuCXY{(O4E$4zSCrrhs_?gd)VP&3)enPwz3t_nVd3BzMm#nPZ#3xbor1e
z=V2E^IbEKZF4d<?+v!Hg-08Awy6p9^k6G>El!yHu4tO}?;i!j$9=@M0hddl+3z{KJ
zKPKK?GtBfVGvpYXzlRg*K#FQNLk7<<GH1>(33=MX84n+O_(YTKtcP<RKH|bB%K8~{
zTseQ5Ay>{6X5**o!_U})W*Q01s3&L2mma=iyY_L3kFPy^<KZ{P)Wf$PzVq;tho5Pl
zhaWurs1qydTuyH}Q@YQTDKq6459d|#uO670t7po-nezEexn!2Ov*ZsCe|q?zhkrf%
z#V#~U{`T;XMuD|iYnF7JC8KAVwZO*(J}&fek#Dk{(^t)s6SL&}EMu)VTke}Jm-@KO
z$8|og_i?$8D}2)juJLiD50=JNKCbprYPR9$(RjA>m@RW=%eB5~8l>!)Eroofd{{ng
zA88*MA6XwcALnMv?;M>Yx6Lt}Ov0z;NQF7#_;7uAK71dq=+GMqxzc<sbLL3oBlgk4
zM@t`xk31hw`FPsL4L)x4@qmv9ee9kiH~A1BxB0l)$1Of?_3`-}DeU7P6-emJl_GQH
zcAszVLlHW`$DKaz@^QD1dwi6hD^2GbrJU7gu1uOME9T0cxx$I}`M94l=gCiV<(heh
z=ZSgpkScw|$D^v^VINg>sNFny%m?8U%J8`2oI(qq^f7dvaOfEy&-$q5qq>jhd^}I>
zKFaub!RL$BP@GNP$4fqn`Y6VD&6nl#%=8cE$;b1=oiF#yH>V|4ekq0dzItiCl=V^0
zM<pMXeU$f6cfM5cQPD^D`7(CCESN8(9Gq{KP=zYyOVxtuzt5LwfuYy%QPW35AB}v}
z@==>YeAM$%#|Jg$FNBaL)%Wql0%@Q`QYtNwRtseC0%`2yWgks_H1jcYfi%&%w0Xw@
z`D%e&__oo)qd6m`cq<>ReT?xjmO0>~jgKBadirQf*ZJt;qpOehK05e#)dz#fxg8bh
z<l~XIO<2n+<kC7*!rNwzBzEJfb&WiI&Bq|6GaOuXFCV>q4Ds=Xk3K&7`WWD2pf0DM
zkJo+l_c8Zv+4{D8q!wPjP~wF$NCQ1s^Xh?xQevS=6{g2fAH#f%(&@u}jNsgbGSWxm
zg~rr=3TY3`pu0w^yVfm~H+_urvCzjNALD&Y@G;HDbRQFaOwzzjQSZ^`lQl+%7Rm*S
zWU7z1STc+L^Wj5_WCq!&(Z@U=vwY0<F^AQ<z<f$Z;|UoNno(wv%vU)Je7vnTG+iWp
z7a9BKEi#`+E%y0NSgiK(u8*ZYmibue;~gIi^l~4k7Rd^owSJNOyhsQsbCpuKG{%we
zJw1Kj$2uQte5_>~SuD3KHk{8ami0b1_~^7)K2WwAi%perh{uq{vf0NLA7>++i?G$l
zHXltwG!3!c#||G;1H2XBLmxX?i2)u6u#0Q)fdCf-*yCfbk1u_E<zt_Z{XS08U>^s3
z98_J$d>ry|*vAncN9iIpiF)~s|E9%qYO(yQl;b{5C_lfp=01>HmdI%zXMB9@^R29S
zVu_q(AM^1M%XW$MS|a0@7~@wikv&V~Qy-r(F?@XC<2R*qh}&!~Un;jP{cjt<*FL`S
zao)$TKECzwo$C78$M-&d@bROMpV-!x{^yfwOU>7{ZS-{5Qu#%h=jrKhK7MB^`uLxZ
zKYaY@<1Zh7``AoH)#c1mA@b+a|K_Ha89DqWmz$&hRUx-8<9mK_Q2;N1AK>Bumjoyj
zAQj-!0G9>0D!|o&*&lLwfGYxA8Q_^^Qf-;pEx=7LZI;QHWpYh`YXe*t;QGMqnW0{@
zb4Ir_ag)r_Wo8xW0GR-}09Jr(06OY^{YskO+tM?304IPO;EXcwSY|de(8>Q>CV9&x
z2oMIiEx_#oq5yG#n*!V%APJBc;D!J<26$+>lvysFm&@qoMjgK*CtR~!ZV7N}fWiSJ
z0QWF(N6NwF!d3siT>KSg6?d$VI|AGpph$pw1Kbth?f~}$rn&KWX@!A}SC}0~-By_G
zH2muMJ{{%83ByCx0h$G99^l~sj|3<ipj?1Q13VVsr2s_(JRabQ0M7<^F2Iuko(k|Z
z-58i}vGcV|SYbA>(O1kyZi?%|jY9!m2=HQn{H-{fR+w!(->5Og0u&EWN^K|+AiYw!
z!=YpV?qA~f?{wzfE2VURG686I(UsDAr3_dp<pWd*P$xj$02KpN3Q#RT^#EK^WyUu^
zRhn8~7OXV8kGPkHA>Oi5Y6PempjLp|s*VXvgLzkcYNh<W(qtD;>jkJE;N<{K0yGHF
zFhC=!4nU73@0fgh_8n>bjtqQ9-g?LI^ILUhU{k6NuvsZB0<;X!FTm>oS_NnwpmTsO
z0bU8vCP4cD9Re`T+R|^lD+}=TJ0^S-MWmw=I|X=E<9pdENmdEn#kD`bO1cK<7NAFf
zo&mVk?X>_0s!DfV3-@}pSS5W|Nv{CC1HKy?eFJd&5ckqdUnSdCnGF1NmC^F&D(N3!
zK!A|}Mg<rcU{HWJ0t^i>I51!9521W+W?OAG50IZO9Ts4?Y8k;ySZ#<rDz7#v$0dyB
zasrGGFd@L$0B;5uS71{9mdN}~WzAR1!~l~5Ob#%Gx>n0vRl&^|n-n>{+H6jn7GOH7
zHN<5hW(1fSU_X}`U{-+H0oJf21I!69H^36QD8M|`wIIOTip&qd-4QfzVSq)9wS~n2
zey6GRCH1b^_CtiD%K|J9uqxmSvaupCn|xLVct<7N{jQXISK7TRgWr`U?;7TJmHwVW
z5=r4smG=Xz3$Qi7wgBq`YzVM1z@`8naB1(F4J}OdoyyETikky$(dnNkh0&yMw+Gn4
zZXaMb`+tDH-ZdKqcd|LWXH;<d<L}9y0DA+zWE|t)lS=Oi_n48V>wB{DJ%bz!a45ic
z0lp7#IKYtr9|!m(z|jE50-OqPI>7M&Cs?G_<YWL&+4r6a8Ec=LA?c_y0nP?E7vLlH
z8+#Nv&#3{wzbDx>#*$A1e8wyd@J)cv1AGzS%K%>mxMPjk^+$eYZ^bpzY>k2B=Ng%Z
zeb&gg0j91o9p;AsKL+?az&`<g3h;A)-x!ntzXUiR;8*ob{^rcpDuF@<RF^*j{Ha5K
zvAVT3_pFg$m4V3r*l+?|7~-N32><JE7ldF3<^n0<>b1f=yf`%b*)9oj^I9pn)>zwQ
zty~`BiV%;4cr?V7A+8FM7xLxixH`l&A*>K~h-*V!7a|oR9pZYGU#LJ!zqK-Nt*NYa
zYb6sR8zL9t*jl5M2XmN^Dd&W6Lj)nh5MBshr}I+v{aU&5eY3&l&i5q>5i30jP1+QF
zUmCtI<+$PbeIw+?5I2RmE5zN(b90EoAtb~tA#M%9eBeq)zHc(&wh*_6xFf`!Ar`zZ
zTXi}+28En@U;cdGY^uB`M3E2=P*jL}L$kr}z7Y3^;9gdf7`nld2)C;}6q;1I#KOah
zaMv_%8wei@@py>JA*zIUBE*v+iiRi_;;9f%hj>233u@;xA)XEK9EqG*+uVw9!&qjW
zxdPJvFNS!D-l%Vk=RPQQUDjIh5G6vC4N)#c$q=PNlnzmbF<NKXxNDjXoNKAR&OmOO
zEgzynh>CPVh&Jm?b0gcZb!NL7H_ov-c-vDoL^ZXiUWn=;YJ{kxr!_;=3Q=3}x7W#$
zb@J;vv$ck;kK38*>XNxXiaAz4M1v3wLo^D}IK<1$jrHb!fHpj^UW%_b2v@}0gJvO`
zGgTsFBD4t6GQ@@uAB1QX^2PLcGsL(Muh7&GeM0o5iV*EWbP3UwV%JOi5FJBwqHkME
z2ev-lCe(esyc(i2z1>E}te1CH9f{pSycVJtld7fcTQA+2^C5bM;0BB@*2@JO3^ApU
z4855%8_d>=ej#2DF*L+5o!CFbzz~BJ9}wah<*Bnl28S5J+z9dN2I1+*4YER!-5X?h
z2x=c0Viapi)luUo8)S5di$9PtA;vN*+M0bJcYYwxd>}PGF!=Zo6GF@lF)zeKF7pF<
zE5x)AlR`|UoDXD5h)+I{sbu&-c6=ZgZ#0XY&gQQwW`&r^3fgG4W0m4wwT)74qs$I5
zCq%Q2W)o5GjWT1S%xBt%SP^1nh__j}ZDdi1#UU0dzGkD4vLwXP5X(X=4{>0le7jLD
z-DD!j!&jupCV3~ssu1smSi=<EB&$Od-z4ucbJ`o8y2`dT#QP!Eg;>uhC}koiDzaB0
z@r@xig*YGL*ASaSYzc89#K{m_Lu?DNC&XUf|A*MYH8S%z%V(S9LuS`z*%_LBQ2*N`
zMU=>)-OA8lv+N78Kg5v`M`?eEgCP!uI7~$?r1xf-wAt*@TCv$Iha1=kkA*nS?zBa?
z|7z!E`E;}Vr97uXoDT6N6@@qx;w=3i;?of4LVToA_?R7Li#)YOs&6rJxb^6jE%I52
z&qI7crAi#IMc&#Xs}(2mb%<|5{21b=5Z{LQF2wgCe$W#8X3KvYr&C+yp{-JKt2Ekb
z67uH|zc2^38Wr8Q%DS!c$yWI-#P1<4jZ89==Z_Hovb{(6GsIsZ{??%U6XJh7REV`r
zp4cWew@JHgazTU(BU}{W;t2F7vw}e%xJ@pJ%zh;14+YXiRCif~%OhM7;mQctMz}6A
ziG5Xst0P>as>w5Ro7pL}ew*RHK0=`gsR-OebXqASp5JDEqjAl4$wtUU=)}<oRs=gj
z(FnyNI1$_kcSpD<f)~M$aC3xPA_Nh_2ze21h|FaxiV#OgB5<1%_vW$oZ`y8@7TYd2
zMrg2IZc?@$+hzQAS*k;~MkpNNwg|V=_%_11<QG0&ZkO-2%N-H!RLWgk;10>#VWhE&
zpWI<WStP=}5gw25M1=by+#lhg2oFbiK&L#Yu(D2RuJDlvk4B~iJr-f$4&lx^LT;$z
zR<5Z#<jDw6MR-2K3lW}<@JxhfBRr=<7(wpzBma9l%y!M=D(%I{r0Yu&uK&=`&+m{2
zJ~ZYPk5D2)od|U!l#Eb{8Y5JVP&z`H2<0PGh_KK`*$Cw#P;9>NG9Q{<k&I5o2$dpK
zrn^*Z*AHd#hqCfRq4zrTDiEPYgqjhmt6}VrhdvZ;oU5g$wIlrap~($q$aOoVUWED)
znzM~lT7-rXnnY+Cp^-8-j_`7XJ9ZkI+4Pvt`J2#aPb1w_){NfRDK&OV%LuI^w2ja%
zLhA^xL}(M?1D*KlP8qpV7ASstr?ijIfvesn9hv7lCEg|MiVyCRM!Tf<F6kVh3)dcD
zQG~7$x<wchVQhrgn6wcFFenjvMCcizpIX=}LhlHDBJ|bMal4GE@9Z+^v}>19`sprt
zJwksSCC;Sc(4Yu|BMgf$T<Jq1yb)n2(^&J3oA)S$$6vH9!bpZ7!e~uSd$$zXElija
zyG?fSk(~IO5ynNB9$`j=@ew9Om>S`&2oobriZD6C6rIcchioR?n@7p@cT1n$rr}J}
z0_5h><-2A4ZZpJ$nHgbDgt-xBMVK97`);$J@Z;U`=Wdx7VSa=K5#Hv-caMo9D}uA`
z+#@gS`43qfVF{}v!nO!YBP@%sHp2T6mPc3-VReLeBdnwk`CEVptJDL`tC~8UqPp*q
z_ZXn9vL-ScAjj{K#d}Q0-nvKDMOe?2j<7kx2F8~`Z!H^D!l^xGFDnz{=RI=eUb%6v
zF=k5yN`74N?GbiFI2hqjgbyR^jIcMtJ}y7P?#S#}-NUR_PEKsOR|f1AZm-?XY+?Ub
z72E>N4UH@=G8|?DiEuo^2{N>hqY+qN#~6aW!q%}#<(!OgD#GaqXS58z+AII=H5--b
zcB-S_2tSJOF~gT&e1cCRe9A?|*cjt8uAPMzqf(47B7DiN6(fo9RfMnEa${T)<C_TI
zM)*C#A8ff1zK`&8gkK{3z!Hn_6MeYPn97KU`{aRrCbEpz`3RRp_%*_B+RYm8lh>4O
zn!-OL{1pK)E{O4WgnuIZFT%gN{5AW8*GJYkdkEqFee%sdxiJ3kS>U1=EH0|!<%u4+
zG{$8yQZdpoE{}0VjH_c@6XVJP{;L$>C74q#-7nY1xGu)^F$yU?+HbB15A2r;`wfFx
z#Wu;r$i{GEcrkJ@tQd9-CpM|ldcX8j&dCaC0H^pdf*4_pD8{?{|GRn~+%LZt$h_`=
z<i)rl#$z!ak8xv+n_}D@<DM8d$G9cNZ82_-achjiF(lTE-6Z!OkP-)s{00hp9*{d?
z+!^Dp*j%u9OUc_L_F*zGTZ+WEH^xIT9*%KejQe9ezy-!8XBZBqE8RZjfN?1)YY)gH
zvB~*=4#=ai*@b@ifDlsD6EU8QQ9MS87*EA`I>z%cUWoBbjAvs!7n?hi{EfSm$*tzj
zK{M;c7%#;r8lxB&b<ng65{n)*mnR~OAp3U77^PyAiBVQPUz$0lySQtsgmN*;$EXmS
zYdWLf{-CjQ^g&s8&|H!#$EXrxK#YMgs>Y}mqjii|VpNY&BSxbbjbqe|QHyJdQ8&hR
zmHEj*sm%mCWNfGxqkfDAF&e6NW+NR!=pB;#4@t>G((sVH9HU8W?#x@pXd0tgjOH;~
z#O9`j&5)@`Io%J*C>6L^VXGKh6=@TrZH(7qbdS+4MtjDHqUiq^9aUqe7|d8oIDJUY
z>lEJcc8SqdN4v#f5IM?Vr4I{l3yJq&CdB9)qhE|(F?uU!AIA5vlsaq}UOsH9o3|FP
z>rnsL^i1B_c0Vjbm0?hf!7--Cm=R-0j5lJ8jqxUR#TXW2M2wL!rX7~yF|LaK+xxxl
zu<0A4VvLS4CdQe=^2cFGA2B`T&Li^T5g8X_e2hskCdZhd2{th{SAQP)7kyqSro@=a
z^-{Qcuig>qb;KCVW84v0cEn`P%owv`ERL}x#_Sk#Xnc$XG3M%8=4o2)q&j8(_=vn6
zV_}R%)Ej{rMN$7dBAKJY`|A8yERC@|#tMz#GS=5o!?QBRJ2BSB*bw8zqb8|Vsm;8{
zTOEV&U4`$(Sfj{Vg`~f)$hsKyj+z_7PDf?LQJJqYH^tb@N=$H9f-Ovd7=On2E5<e^
zUW|`pd=g_vj1OZRiE%W>PC6mRz8L#s?2fS~#$Kl7G2y)dAICOO{!wv`8EX&3I2hv)
zt1Lzlr4&DAJYQdNK4j6u$6_3haf)q_7ShT3JC~E{wEX+_*N(}V7-wUgi}4W|j+wh<
zE}TD~S(UHln0X@ml+8cJ_c4B8D`4|yJ;wN&6{>e`-yD-K*-noOe*^LjuL#HGTh^v(
zxvs4-l|}l<afAFA<EI$sWBeN9=NP}l;LjgOFR!D#inTZ{zs2}H#vfYp92$LGmg#8z
zZOq>>{$a~akW28t82?glf-4gs!37B}PH;(Ln*W6fb{?0D6z4UX6jtS>2`)=;d14Zn
zlrN9V#V1Vi^A;#MAy*~1I>B`bu1|1{P9)E@iadJ4++^~!P=Zu~bb?HR`X>y92OUK>
zb~#}luL!LKc7nVFHzaTpxCw#;VFE7!e^TTpAkP?`%a*nLgfJ*kf;d5vm|ta5;4U5g
zt(AEexG}*^2?{5W1UDzRCBfY%<<<nBosfS{h;z~uAaTyREy3+-?HvmF{752s2wyxY
zcPF?fLBj-%5)?^rZ-U|pN+h^1!TkxIPVh{E2RJdoqX`~M@KAz>6Ficb4*{B<lpZHd
z22vFJ347Y(37$ysWP+y>@Ggt=u_w(<2tCQHW1nQVd^W*z30_R_QiA6blY4xAd?5kv
zSjfNhq)9U(MHBPet6~XuoRl*s<$z{gNfHxOO;9aC=>%mGluuA0!S5%9pPrRXP%bg`
zm>=0fr=((nN(m|_sKN-gHCF+CnsMtX^Rtxv=VI!ro}fm8x(Vtfs7Y5RsGXorVmkJd
zr~Z5VuX0LWJ!QJnh*MHu-PnLKZF5JLpM;A~N#g`BC+Lx&XM!dPnkHzQpk0Dy37RKp
zm7sNk76}*^uCApD*>>tbQ(sZDd3|Y<;Nw%8GwRj$2|6$_5_C<_F+nG~JwfLL|DG~J
ztkc2^pXr&Wg?FCJpKdDlwFKQYos1g~3KO!#X~W+uLGJ`Z6AVkxCqdr?0}>2O&@aL3
z30Rx`b$XN2MrQBRGU2qWI4y$`3{Eg4!5fLWYV#3k_i6cDdAR(4PfPBM3{Nm3!RQ2I
zRKmyvqtsx2Fv3pGA4A=7M#dK8;hPNN8Dmd_Gv@wzLV}6(OdeY1VN!z0EY&<*nujR~
zrY1O$;2@JE!L$VLCU`Hw^aL{!EKIN{!Az!2f;kE1s$M?*kup00Jwy5P63kDqAi>+r
z*p23)j7iw-jPL^r8b*fEXJm1LB?(p}Seam{3R#x$#mZQ4=D(k_@lj&q8DR^3C&4P_
z|5jO@m`fFt`S_Xte!ayuyC%Wf1e@8+6TF{bU4jh>K4AFtgO2qonHu@v_IQGgl#t*T
zbplOdfp}+SYl3aex&*ruY-idh_>j$tY1YQ{B7O+TdvdmMO5pXH_cnVH>`kyQ!G2cj
zS<`LGoi*`la@Hid(X~|$B{-bmy9D1eb_tF$yLjuK;8=p=2~H<C!;C#EClZ`Ya7vA2
zOgWeKux4kRm9q)XDg7fl|Ew80c-B0ceWm!PY&Z$NOz>5L&l8iqUlgqLvUBElRqXs<
zC+3riZ<t_gQ|HWWBu`nPkDrsu=j4Y3KPLDq!QTmfO7L@nUlaVMLRz1bUlN>GoXhWb
z&S>ZHdxAd_{K-@)ps-u6I%n=+|6%h_aA6)U$}^q(U-thzT#$#;=j8l3x%Q*~B;5Lu
z`3UIQkA#7^IL~}&K<3NxaCsgc$-|?0xFQc%<{>W+H{{`}JY1azI}c7CuF1o-c}V3U
zorml4aD5(HeI$kQP*o)p=LKsBg?}WOJY@6mf2OVi3X7s^KXi9DZ13DHy1To(ySq_A
z#6m<-Q3MPSR4hah1uQ^C6huWu?4Y~5{%4lYbN+Mo%$av~c6R2@ojdnF_s+gW4HPrL
zDP#K-wjcegIdJd4nh4amN*X9-psay%21*;+C}XuUY0vK*rKGV?-arMuXy^Y7MjB<@
zTTlP1ECaTI#6U#@jse$z7zhk_2K=-IWoST^4N?N<-LIb_5kdnI2SWYd0HrsXnH6Ne
zYP4VV-LEPcTI5zSP}R_wLuJ;PqPeab8#GYEK+UvG${9{BQ$Aa7f}*@)rjCKS2D%&Q
zVW6IY`Ucvt5d#ejG&Io6Kyw3)3^X>-#6VNlnXD;52}6)%+I~fIY|(zj8E;{rrGZuk
zS{qsd)08H+tl6(Awq?IYfcNcJ?F_Ux(8)k&&g?GL!9YjO3kA+Lb#A{l|L^P|T?}+J
z&@H6~Z3kjpxesV@M9{mZfnEj%85nG!w}C!sodE{=8t7*rBewuU?<w{H-4wAt8jn;P
z2By_oAJDe;5CcOEj3kND!eIu68yI1Lj7n;dySUGi<(MCBV2q*9Co)gT!<3B2bi9EH
z1~wRY-@rrzlMFmz;7J3M4NNgG&%pf#rW%-L;BEu=kn#pbA5ixmP%{lMoxyh<(Cy4J
zaF>DC(_8%c-2pW_y)`$jHiv2Y^UML2_n=}6eDJ>XmVHn?VBkRm3k_U5s2(!#uz>|>
zWwt-xz#}BiLDl%6VtVgE^~^!_sDZZ+s_h5WKL^!g1|Cl<FG?v;?~r1DN*_{BaX}e)
z#lWk)Yv36JD-5hOu*AT#l<)>#FtF6XG6TyEJV%~6q(?F4keZifRvuEk)*n(Yl3Na{
zBWWQke1Ay2l)jyXFB@28V0HSFxBAUf?A7f<iY>1(z(?LN@TP&+NS3s3#SZ_ETyGgz
zYhay$clfLUwn=Jmuxx~nziVK9TK~OtTqGAq6dYEK59<ma7}#jwR|CHp*koX{fv*gF
z&1GxgBLkls_`<-)20k&c#lTh$`H<>)SbfT=OouSxu-ZoQ9#)^FDF?_3yu~_vHDAPQ
zyMZqa?4Zy%tX?^+OST?XI}PkI@RNbPToDF#v)cytaIqg&-=-7yT{`=$Ov-RX`wpug
z4E&fja`vz)enhv={{Kudm5ybffyze|iT?{1&JlfU@)7mBfj<nKG;oS*%D`U+4j4FS
z;O~?aWSf6e%KXF5ANgNz_mkS`<9ziYlHI`3wDRG!CJT=lIG&cAFtF{2CgaaX)afHC
z$5F)&oHlUAz$F8h4V+D@olocPT$<<OoW~0WE~bSXnsrn)JgRyhRaZD_1J?~)O<8Ex
zQ9Xnk25uU-m0tWweqc(*V9G}_n8;}2VH5LBWHOQ2L_HJrO=K~V)kI>VqKRxKvYYTs
z_$G3g$Z4XaiBcwVnaFLTu!$Frsyu0$KTY$dDGT$ZnKegMf&WShnkba!ck$C_M^%wD
zU(`ggG*jF}i8Qn0sM>Q>v4!7{s?sLPm~hhavT0hugkhpwnrEHzCin_wc$p@ww4ASI
zx&2?AL+M>N{mDZ0UwLRk{>uj@?sS;#L}_81rYx*vqOysaCTgW6RnoNT|7*WmT2kFa
zjWly-6t&YlTdQlL&VTtk<6@f)Of)nx)Wk3ojZ8E)(Zxhp6HU^ZEz`8AiDo96|MzT*
z|JTl)uC_{VwKmblL|YT>Otd%A>A(6NQp$8pf1Ww2t{qjGkEzaSAt}a^ZYH{?cl)G;
zWQiUodZs14Ot3!b&;IvL^LNVorg!_9=x<_xiGd~tnOcAk`ETx+ADq_bE0`xKhMO2+
z;=%O6ktRl&m|<e3iP0v;q=oF&SQF#Y{Dd@Ro$>$OVh1Lgm}FwIi7Dy3rll#%c}-2L
z<vpgRr<vl%bRiq$t9i{bahHj^P26K*wu$>qJYZsuiF-}VOY5`F+%$7v+9r9DWMK>J
z_MP_G6K2?9rVphl`R5T63ru{a@U_CDCKj3~?V^l}$4op<lG^BDV-Y|8#+O={W8p~?
zPjT&7$Z27*iKk6`YvMZ-&zM+Z;vEz3nt0a4QWL99yli5biRC6%m{@7zITO$Gy(V5H
z6CP7-kEtQY)LqBa;$!NKW9su`>i1*nB@<VVsYb`uDz2~NN{*|Z$90`oOuTC1O%rc%
zeoee);&l^mn3#B6J$YR5kvER3ZO7Fw$JMFhD(eYV=7d^n;%yV_NVj9E$_drxgc^K8
z-E~4eaYC&(@t%pTCbpT_VB&ofADZ~c#0Mren%HDwGuuC*pZe^C`sIYWbVB7jsekfa
zADj5Z#HS{<aD|>!^-ikZC)JdbYQag}&lgXs4JXxSCO#)sO?++Q3lrN-d}(5biJd3a
zfs^X;NtNrAs&GnAZmm<Q<0-Y%#4Z!xnAlAQJEdlyQcs;yYfh={r_|r4)a6qu?`ieD
zi9IGxm^f+T2NOS<_|wE+CVn!p*TgR-ex+nPt$sGK&%}V!y2Gtbs~M*i^S_z+-2{LB
zk=}arv?lBur`3)$^S6nAOdK+C*u=jk_M13h;-HCRr&Z=Ns`MFE>5OV|M)f<Rrkqia
zoKZ(i9OYdT$2qfS)W$Pv&lz>*jLLOZ*SF59+Go`%6Q@mFH*v$n853tsTrzRl#5oh^
zO<XW>(L}eiYSLNt=vnpJSv_~3o>hC!s$*x>74iVror%8ZRK|0v^f^`WoN9hf%{ZqP
zo>MnX+@g55kj27n6R?oMLPiTOol~37sh`fN6X#Tx^SU)&nJh3ZeO^^Rud-UmW+A(U
zw&&H5^J?~awe-At>%7{2Ugffo+d?x7%`N1ykk^8;AQtjj$Zw&vg)$ZjSSV<rn1$jN
z3Rx&@p@@Z|7XCc1Zk|^~F6cDApjuo|11{)hOIVn3L6x*n%EDt8)T#@LKR>*ne!rmj
zNLdTzESMH73*{|TuwbNJJ%2&>mVL`}QP~&u5Nr#M1=oUSf!$_F!;7lNMNN>27u6#d
zm2ZJ5DH&J@E!4D7%R*!!woutZ6$`5`s>DJ?3zaNvy{LY>sLozgIWMVlmsIsjs;Y%*
z7OGpQVWG_>HRzJM>ymmRy~UqvFRAU9RBa1&EHt#x$U<EU^(@r4(7?hUm(=A;D$iwQ
zU)F8bzN|W5R%0%!#unyZR!uB4Wy_b;OPBSF$U+oKn=Y#s7Ft>u%;8vQWudi&ZWg-p
z?VK759V~RT@Y7}0&O&<<=ZZRUS!KVXs$WrUuc%HII$P*sp{s>aSJd1q>iH|`y(^0K
zzrCVgee{azVWFpm{uTyU$a+=vve4H;KMTDrkj?sVLa(aoS2b&OxT;9-QCHR6t7@Qy
zL1}L@UsFr2sts4wuB+<sRW;PYFbk6`OtvuG!UzjvEsV1;k{z%x+QJwMWv{8q*Hr6k
zs{b`L{hH#>$J5Ms3ll6%wDA2k#dZDaHT6+ieke_+SeR;IriED+rdgQIZeLe3EZn@N
zid|R1b=By)ns{B!zpn1G@WOR<w}pE+{LAY7>snxb&&n6n(d+773v(@;uyE4CeHP|f
z*kIv(3-?=iz`}DDp11Izg@-7;Ej(r6Va|?)g=9-|j)esl9<|WxhRS$D6~Ce48>&f~
zvgC0Ki!40B3Tert8;Y5iZm5kn)b1N<v4y8CEV1ych5a|wGi0Qjy2CebsFF9;QVYv0
zEaxg91+J^sH`Rcfn)B~YGcQ<p(ZZV+-m<X5!b%ITSa_AI*upAutc91EzoDMKskwda
zO`ZAtruyZkI)78GvGAIO*DbtZ;m$4I&2dYWzojeJxTX8H*23Es-m&m5x#*S}aZ9Zu
z^=_%9w-kS_XZbDl^)2<D1qv>f@4uz4-BKS|*l1z5g>Nlvvap#9W8pIkA6oc`lYU!$
zYT;uGpKu}ERy}U3!nd`w4{vK;+QP+^mOpq~y?9%_e_MTS;R_32Ti9t~yM-?;?6B|^
zf8JLA+*Vg^t9%d_LeW$o(jBsks{ryK<eM}zF3mIjj{IZcFAINL*kj=b3%^<T-NKJt
zCKi6Su#dEYY=-Q$@Ez+z4nnR&3S^L9C}c7SuU{#_(##(gxbOT)?#&>zGDxQkGADyD
z|Br=#EgZ6Nn6qi&fQ5q@<RB+EgRIRU+=;%<pj*D4L5^5BYT=lL<CK9J^?SKrCmDrX
zTkDK6Fr!S%D5or(=0dYk#>N>7XD#Hgk<-RG3+FA|Ad_3TVBw;LD;BPj8#Br!3zzxo
zjIuhTY|SXwGD_Y|`nqP}x&=GUv%F>|;ih(r!rwwB8<}|>Q?QZ2Mn)T5Gs)OYLOJtL
zCRv$DHe`}4HnQ5tW+S_eJ(+|IbDV{lg^RItW~q`{+GmzrHb!Tbf;I}-$ZaE!jl4GU
z*~o9BfQ|by3zdQ8nT45mGt2JGawM~4%p!$t6tPj<MhP25ZIsL+BeF;_8&$GM$1E~C
zi!9F~C2cT&Ad8f;u_24>&LY>cNZzbc)<!uS)os+UQQk%c8=;NJhGE0B;o0zQST<}M
zjt!T0vr6Nv(le`!%_{e0m1nccJ6ZJrm5nd5ir5Hj9Lg%!vr6G?5@eHx*`#YWiESh{
zDzi&AD%u#EO)A+~mQARB+@DR>XOnNT$-!(=)kd6Ms@b@eO$uh$SEuY!(?%^DZEdu(
zQQJlx8!c?Kv{BbaJsb6HG$6rms8QKvPIg(AUDjon?b)TFjX$$XBO8~pOXD<clBWFG
z)JC&3-~7K4KHkbkYa4C&iX4(Bhi<{lA(VI>bI6Ds(%wb~&Z&)VB%_T^=^H!Sn3F@6
zrq??;q>Bwc^<@sBd|-or<Ph=$Gd*qeveD2%BL}^0^s(`ijlDMd+URHF1sgBg=x<|y
zjd?ciw=vMhARE(cOt&%E#t<7LZH%%pG;M#Fjo~&f=aAev^<YP&J*k~j?DXeo8)Hab
z8{^o?oH8<}%+9IDvN)%(C*wJ%Ib=ebPE6BDX*xMgd233VnVO~~)C?OlZOrB{ZOpQ9
zmyNsAKD?e&w&j$+a?0hLdg|{Xi{_Ffm)vV(F6-x%`&jvymSfFx={kdR2{(}kY&>Y=
zDI1GzJY?fx8w+hbW@EmMM{F#x@hIQI`lr;AT(TjT?9L^Ja>=b+dO8Z{mMFJ8p1yri
znm&=H9NLp<rde)z+Qu_BmXfb*EU~q=^DKGbyy}}<nDUyITb8FK&)ImMZ%@lt=N77<
z8*>ZQp%pe(+W5%E$2MNFvC78VHrCl#ZR2Gdui1Fr#w#|y%Pp_kSYzXGZpo5I%H<KN
zi#75H%ipl^rj563tR=hV(Uc#WNAAuePv?>M^2n|{S|Ge*<6Rr?+xWo7fjqL_#(P|n
z<oP^OG_OcrX_{Ah<&~*<WuuKvHa6S%kZbdbdL*yBnpZx~D?j9wBWZd&uY6+TQyV*N
z?6R@N##S4jb0yl?W}{d>{kqS{Iq7>pKc>~5?KZx&vBSn!?8Z?g`J{0^>6=f!rX0wl
zmoxYAJDG26?6&beg_VuT`Sh)CIrfy=3-ig#`D9Bz`N77IlzaK5On%vyPq+=8Ow*rj
z?4ty8kjKF<Hh#5nmLk{2Z#I6nam2<^8-H*vZ2W6uzm30aRLw7c+xW*u`}{IGzs%1s
ztMbc-`Lz%@VB;XA3JK2F<(H%RB|`xrL5dd81FT*^x)zXQHjZ=R^2#Y2C%Bd~rk$}t
z)n!}(c{Htmnp*$`Y<^i&Kxl=r{Jf0|HsBzGgNu{~Hm=*a!S!Y1ijAu_uG#pcfUvdi
z3doTHlDVL!f2o4PEs2FUIcqj<rz}Bg#|3qNS`?Il1tp_{Ob)U+$nGGsgDeiRI(iak
z7L+Fo%4-E>YeCspP|g;V9IR7FayrQ6@V^(ORv|q!PH~4qGOUo~b&$`2>%eo6-$4Nf
zWgL`sP|!gk2gMzfa8TGm5eG#b6m$5ugTmQaR!BA!k{=2Q)yw0BBx7MIR#-|pDCMBE
zgSfEf)ux4oOgp%+?sGZz&4KOkpMa!-1H*yoz;d)6NNV3xSe6$Ssx<2h%kIK*w6HjQ
zZxM-$NV6j1J5UZPJE-D790U#$M+;<Lp@WF8bF^UO&ml!*P7!&!h)}jvbWq9B!uhQt
z@>vo2t%y{0P|ZPY2X!1&cTmGYO$W6coGl{Ri%OZIx}Vk3v~5u>{pvcX=b*lW29D<B
zK}BUoQF*+mtSKs6i^{J>HCH!w(8R$T4&HRo)Il=`6CF%)(A+@_N@E9o9JF-M%0Xub
zT^zJ_(8fVK2kqIJqH?aN<SZs_9ncWw8#_4Y=<qYt(upK0CbV2?6w@p*qL@5bOu9P!
z)Ub4S(8EDD2i(^Alj?U*2TXgVC8Qn;X`#PYO!_+L=U|wF;STyc7?4&N>|mh7Z|%w;
zN9*dxiwX0jGt(gshLWR-OR3^gxwy0}E+ZU_bTG!j*pvdJIJxK4Xa_@zYl_`fT%Im2
z>x#=b2jd+~aPWC?p}PJ{abboP&K8%+4yHI*<lqShQyolmaIb^84yHSp;oxou_mDYD
z$V>;b9Nd-C!7QO4uTw%gm5|{j^egytwu3pWUqZO&YUzDd-REGQgGU@JaB#na2gsQY
z9(MQ{H(@9F$b)HrC^48PNHU+(L=+-}yir0Pb+FLEW2BqIZ~N<c|Gk9Jl;*o=3!E<@
zoQ@|QJmug;2P+&bcJQ==We%1*c*emJ2hTcK$^}(Y>xAV?N|lmAL%2gp8BtQ^mXzmM
zv!p!l-~}=&`M;#>C@FuH)Z+SLNm=ROB?qr?IvlLx>MJFy9lY#-X0=;N8kCY=rDSp`
zd9;+Qaqt@Xp@h8dfFKgbvbvP+EpeoeO37Oe);c)o;E;p29jtS()4?tW?{KmleC*&8
z2kRZY=imbe8`Bxw;NX3S-vp37rQ}>Gq4CR&b(4e54nB175m#ktsasmurLLuAOlg^0
zS`(b<rw+D|o({f9>uhzfjie(fN^2$dozk+sv>Yt0Mb>r)Upn~8!Pgvn8QDQ@&m+ys
zNU<^!mXUsCWO5lTIp>#=ZyfBV^mg#8gKx=`4t{j-6WP+i9*1YI<cE~sUMwT)%gEPd
zBwJar%F14cXLICd2m4YXKw1&o>0DO$meFP9HwV8v_{YJ&4*qcPr-Q#7{7tSaE6<jd
zx6A6Sjbo&YWgm8zmHlkwoH{`Myrd44)gz@$<M0nVI6|TABBP6=4vtZJQ<yk7?%)I^
zhJ$ksPC7W{;IxA?4kPxZP&skSNu6>+<e_6ZO-Ay=uyQiDoSb)XfwW3*tuH6vmy^p5
zt~j{P2iayh$y8phI=GgyXzB8jl$Vy}<)(vM4sKIsx*!ZPu)NGHuh$o`m&eKrpL(^t
zWO9+&MSd3rTx4;P)kQ8Bxm{#)k=;cO7dc&xOMF;fekd;|S-*l1>)_T<p@QUbk=MoW
z3X;!dB#bU$dHV{QSD7j3qL7Q?E=ss4?4pQ^qArTLxTk^^l}}fY*DL4&QVrWtLH?|u
z1@*ZKQqn~!zSI!g&~)It%DO1$;;e^r9?H9@z`l9N?!j<jx_HvXQ!XqQwu_!Fdbx01
zxGoyIXyU?i;k&5fqN)o;1JXt0BIaE~0+)V930)9G>Sf3yhO9IsaZ%AlB^Q-lIwEz+
zZbJ?la@&xirYKWrR#ziIT-0?@kE3=`(?x9;bzHrV*K)Op=xS;r*EeO9DRWI(cIT&y
z1}+-1n#;fB))j~ay<^HQQx2H|ONfUwb<xa42NxY(G<VU$MH?4wU9?P_ZRMhMnkixl
zt@y~2c9slh>S{274Ynt3EqTJyjlXJ1CyunBbaBzurMWGgU628ItD8%6Sh|xXTp}Sf
z`e<R%qLJ3N47H`Vi#{%<yO`mkuZw;zM!Oi}qQ8p)E{3`o#&%o`axvJ&5Hdhk;q={O
z%Twt^Q;tU5>$VJcF~Y@27o&Jxp;9Nm*_x%V*+P(trdeS}#=02iVv>u=F2=i<;DU(9
zL{6C_1UzYMvj5!N*=Jr;Tue(xG?ip@q=%!+N2lpb7qeVE;Nn3Scd-!{b6wm=YPgu~
zVvdV@U5a|W=f2>`21f|$QmB6G=!HMe#r>L3q?OAxtJR*{judj`Ar}w3SV(x^#e5f!
zxLDxgQ5SrK2L3=-?sBzSzBo<U)Z?61R~ET=g5)YKpS$v>D;HfMmPOTcv5Ti&>~yiq
z#WOCJxLD`n9T(5KSnA>>7pq(>bFtjT^DbT>|9kSBi&~y^_N0O*G!U4+=wgM7m2BS=
zS_*U1yURRnJFIr`vWwTr9xh&S@v4h8x<9(N>>;0B>&X|M{Obv!KO%T<x_HaQS{HA#
zGDU}{t$X4d0}DzXU&AbxFYmfo@8VMzTU@;7VuOp#E<WVCaPfhQjV?Bkyr)!6Uu%Qy
zd_7a6eOchktG;~d%SSFgcJT>o-q2{?K3^{Qnk?LXwz}Bn;!AeV#b+))ckzXb?Jn{t
zq2ff9&sWk^Ngt+#h3ev0<PasVD*2idp|tkMI-e-{#>H+*R~N@zeCy&n7k{|;)5Z5L
z_PF@j#Xc85klS7S<YKRj-<6zGl0}60D)pQ)qC3My`U}_E8TA`0km1j$UrBipR&FOU
zSo9+^ME-K|w~K==4!QWp#lJ50yEs7MBl2c?ar632^d|DR$R&}(6rO?94de)=Q=sc`
zYv3MnoQuxIWfxamoOE%@#W@$}U7V&=DImPgy67Ir8A_)>h>Xn-WJMqs(z_R3z1OpG
zcKZ^gUui8xxw&6;am_^r4;ejNcX7kTZ5QycInblH$qt;=zJ^;QS0KzB3iJ+gJCH)5
zWb%;NLlzHNJ@}zE9GZk$Iqx0H#86itIF`dBLt>_fSsrqE$nBxAhbA8Kc*x7AJSY$O
zJmmLK+Cv!+1w0h=P~1Za4~0BD97<siMLfJ1%KM>)q;`i=)C2Ry_(*15cp#M9p%{^r
z^iYcJN76HrNs$n9F6*HjrM(A}@}F<aM1BT+J<L#S5~k)<S{`f<t_P1qxS<}2WMw3d
z2c|@^-jC#)NDf7EGZOI-c&P57hKJBY<e{R6N*;>F5_?*DC#(<)-4H~Ln#5AsLlqBI
zJyi41H<qcf7CRJ`bcHO6<<(dyi)wmYs;KXwfrr{2>UgN<;Y=)BVm%@vx^+GL91A@@
zSrQG4HRM2UsYV_uBtqnzb{XY)%|x1dXy&1xhyEU#duZXIi-)crT6$>Zp}mI=9$I^7
z<DspGb{;w=nv;hoGCR>m@zaT{Nn}eR9X)jN(AfhGB053#B^o+7l}O%-Vpo)I9=dzz
z<)OES9_(;M>FI%sw^K#UepHagR@7G?j@Q#$)dLmfxr(x(qU^3H13V1$D1R{4!ypfX
zJq-6S!ov^`hbqcY55qidR@|zn1rCh@BAi7l$w&`UNk(}X?SaU4vr1ab5~3mY(!Y|7
z^Dy4S6c1B9Oz<$#!z2%rNrXzmzLDC~D{0l@@k+V_?B_HO(>=`au%nW^oi;@qL_6#%
z3Eek$dAOUb<>3Pl_js7?VVQ^J9_Dzs*TX^&k9nBu;XV%!kuyEa^Kie12RuATe!i$~
zSJD(HR#~L7MhF{JmL8R5zK2IVEb#CsyINUGqy?2_b!8#IP67B~Wo@cF?qQLKr#(F5
z;Rz2<dU(piVh=Rof2=IWD@&#-LSIJ7Dw0&u+S(Ei&wAj9mXf{mNSi7$u!^R}^eXaX
z6?x9X^B!I&Lwb0D3&+DM535;NOjeMqJ-kE;oKvq?k<Y5g?^WbN6)9L%UiR<`>F;3;
zdAO>U63wbg->UMOhiO%1OI6udRTfp1HC5$J4{v#R$HTiG)_Qo`!#WRahtM?b{ZmyX
zb2TYdO{!Fr^<=qf@}7qcocd})x9s$4vM{|?SCfq%HhK8T!(K`o4<CB?lJnx>BM%>Y
z_{_uS9zOB#sfR5dwlY&qeyJv>t7)~07a5Xv$~JOxIi2}}6I4xSwtL7?T`E);4v?tS
zS029h@U4gMJnZza%fmM$9hYQv=~-PSR~Pz)c|BQOSVGtH_a63m_`$=EZ26R8;TzRu
z$T3}kWTAujv+DA*hkYLQdpO|X7Z1OB_={4-!*8U6hd(_0Ng8I8U#n{}o~<tVYG|Fr
zsi7J29}kUca5DwFN+iE~4VhR&=GTyeTm>GEdpP0Yu!kdDRvwOVvTDf3HRPunLTLJA
z4WXFLR#S`LlO9faI89kWflyQG))e~3JJr;X^5~ixkepXj&U?7PPWm|L<D!R4Tpd0p
z`?&1k3gwuO8a}RixJCi%qo|MT9&UKZ<|Dh0n;vda9{R}SV;SG*0X{PLAg0Y(SXWc1
zveKHM6wT}-i;t{6=n*DQa;qY+Oz?_oKW)z(K63iV=OaI#^^x009v^vqd{t8p)s$N`
zg^&?jqh3_Hme40yz(+wJh4^ptJ}TD|j)>4i>slHTq(U;dmdvUp#e5X^;rmcNO86-0
zqZ|iPOG^1D?W2s3vOXTKrR(#ee)VoGy>aZUC4bkF@;)l~C{SD9^=gaZ!}P(7m8Q(t
zX~yy4-YNO7oNBQ62z*rZQOQT>Bk~dZNPNwibXrlOwyrG<kQh)~Z#@*<m3>t4QPoE^
zUyIY}wdJweLT%@j+FC@=3-C#8sp+GZkM2Ht_^9opj*pf;TKTB!qn?k(KAQNb@1p@*
z@X^TErXs<gA8YG39;+>x>qyx;+A-ABM>8MIeYEhk@=&dgw5=lp>u5lRh{WtVLdSh;
zA8mYe^wG&jTOaLwwD-}$r$bPlsw4D3y;euI)zPcqKpj1goqcri(bY#c*32(N6*#o(
zb%ah0LNwfn*>X=Gy?hMwG2BOQAANib@G;OwUmyK^^!Gv6HVv_Sb;Yi$Z9p1#l-`4U
z4E8a^$I!Gwox0Mgt_-g$v(gN8Ncyiw_!#M9tdDU%M)?@+V@q8b<7@B9qPp^0UExo%
z2hHm7J|_5>NY1Gzzt)vAb@dKH_>sKI4o~qh)yEniulbnfW4ezgeLUr3hL4#(=J~ka
z$1ERr`IzJ5ULSX}OP<{0V>WrLp4?$VzN>yc=~_>#1YFB=ecZ>9*49YT*m}aH{eX`L
zeLUi0fscoLJnUn>kJa^rQ7CkCFRCX58>w_{t|yOjJ(iZo$f7<NN3qZc$4jy-N+*{R
zgSaSX`HBC2F81-XkLP{7;NzL}*=Kz$^|6GMFC}~GX-$t$E%UM5$8$c8*ORRErF4C*
z#?+{<-}s`B73_?Umwl}C@sf{KT#`h7>goNcLwyZ?j;ybR)tvhBO4{tJd})25`}M8*
z8t;1D#~VI&aM}8J)5lvrHv9OHg!1vWkM%y@^RdpyJ3ij^ai+e|5lnCIw)(QSzSfyp
zvcbpuJ~sN;M1jyitOmOL1M+zT>DoZXHjo7kgn2rMKl1Uhk8M6a^YIB67w6r_R(89A
zrZ(|Xaw*lJj~mF|2HKMP+{YI_w)^-pow$>1xuKM4D3uxt&1CXF74olr?DVnM$Im`?
z`S`}i9v?sW*zMz6AK&@-o;^RRh$rx(w{CuZY12?U7Kb#{B>IsvMS?VxyLcT_Ya7b;
zhO*DcFFyYC@t2QZef;L*cOQR{(~9b~Lrt40FDmwj8p^GP^0$wFeEjQUKNs?CRjQFB
zjkMOp>1)|Y1~t-|Lp~03c`9^PIO5|d1)4$`g=3sn9~l)gDV*?ek}}-K6(6U3oc3|v
z#|83mBRS*atdDb?++13NB5y2ilxkmP<sxUTk^I|8E|Hjx^e8B)m|pd9jcdxsZOVTi
z+!Jq5_)}1vP}dp>!)(YK^nDa+EKrcfl0kvEDCK99#?rH~jB6~J6|yK4QYfsDRUw-~
zZbfqp*%fjq<W$I|u&}W(#EUQm-BK?%mQNeYPmSetW67(KPa(fT0j24msfk9LOEu9N
zX+Z^QN>s>`Ceosb6j55iF3x|UQ7EcVOli*rO?ZMB1DfcKwWLBRr9*(2pV34XHj!0L
zq^v?Yh3X156v``9;1Co71w+A9a1}fSi*9WN3MEJ3qb3?y=FUZt#S+S^Jx%0D6B?CJ
z3PiDpP~8z?p+clkNujbrtdJ;FRA}5(ZZ;7HCKYTdUQ_AaRHihQDoP9gstVPVj<sNZ
zK~teBNF<HcO-+Sb3e6OnE7Vq~!^#Sc6zVF}Q>d@dAf*iL)>TdA!=|#QsdjdpXsTCh
zV}&LPP1DL5o9U7g&9w2$%GH`l3x$>nZ57%nv{GoT(1zb|EiY}G$&hA3L!Pu^A6UX|
ztGz-8g^mjJJ+TFDxNMDaFLRnn7lp2zLDE*Co8tfIVuHd%1^y#YPsRUr#1MsE3cVHj
zD-2NRqtI7@GuV&QbX~1zCXBG+Zn&wL>}jTF_DC}ss4z%@v?9Edp}BUU4pkVYFiK%G
z8BAe>!bpV{&4o5K-9{yvOVnJ)63`z#Mq#YNIEC@-06jQq^v;0hdROIJzQ3+!HJ3?>
zRzLrT1otXTQJAVQQ(>0EG==F3GZe^yT$^nFspgt_*v@;+<t~N074A`(t-x?Qs#0w5
zo95b1<Vs<l>0E{T6dqD|SYe*R{R$5#Jjm7BTy8YiM5DN%GqFeu30g>_7BXKEcEAFL
zeUf4=^crW#1cCaoEo4Cpp~|$fg*>jXh#W``S9n6<Nre{`R_G7FW3j?gg=Gp)D?FpH
zMB!O-X$y_v5dY*7{;7prXrXn&A}wXP!gC7GE4-i(w$ye(la|^;-KV8YZYi`<>El~T
zCRBJ;VU5Bnh1Ci#E4;#Kg*?(yR<#rweIK^e+7Tl$zH6x!r`HrH50ACfDmPW@Hx=Ge
z_>kRDSgY{1!g~rE6xJ!cLta%_uRtt_m1!^BZYjlD2^mSp(H&Rslci1hfaE1Bo>w&G
zIEti|Y*L_^vsr;pHE$(Us6OTbSNKffb554R7KN<}+ei~?HLYY;E3L6S)=K+3USa)K
z@`b{7g)bF$DE!n)*P-!syp<3Q&d^$4#ahcwg<a&X2qPkVqp+KF4zMD?w+i2JM1qe5
z-z)6ldJ(i1{Gjk7C72+W;3tK>3TGA0Dg3OkPhr2p0fk=_epUEO;ctq&>hhby9}0ge
z;ze4+r((}>F|da^f5q0q2+x1G606C-B;8F#b+mPB8QfavHae(qh(w@xS2#>|;tHbJ
zCpWg1r&`O}*78|vp+|#y<L|BILTfpxa7y8{!Wj~+jSg8klvUg|QoD_GZX=`9lJg1|
z6d=eTxTtVR;kv>Nh06+86s{^<QyTG@+eR3DN<wwaA<NpxhBn%dc~jw*!fl0r+i34F
zCGa<GwEcCxjTCGv4CBct$SlYrAe2H@;YJy>m8^nng6x7Ef~IYC^bT+JY^(K|32o(p
zwz8tF<QC)+cmiLLSCCIoMo?CeUr<0$R8UM%P*6xvSm?0TTN3%4;l!V`m7m*cZ`!4{
znk|b9N(f2`N()MIj@s!hkMV)bkgv>kLQZ2^tDVqHDX%RR*n$cILqOD=@nf{FJGRp%
z_Q-ZZAcYF8BX9*2p6|93+P`z#$&z;3WupWls4J)^2n3;^hM=Y(5>N?=1&Qb|RLYZz
zf}QQ;Ks&kFj<|(ZR(VxUGgZ>GD%(#p)zg##0J=_1YAL8Ks3SZ}s6kXp5-wZDywS&9
zU(i6%gd`O-6f_cWH!j>>8`K;iQ)070duh^MnhBZ<S_oPS9km+t=-XZ+x4f8V${n_i
zpsnCO!8}1bL3_a{!DvATK}SI!L0>^9L1#gCHX`W4p|zK;f^Gr^t`N20#aL6iffluw
zo`PP2AKOcB!J78k;-FFRNqeC{X0?8T{(>Qbp@IQ|fr3GT!J_@7bc~*Auj_E6SvpAB
z4mv+fFkCP~Fp{L`pzBcT(ltikC||AT<)|7X7%P}5m?an|7%!M2m@1ecm?)Sem@FES
z>e4~O5o0=NjpB}%VO|HBCfZFrog)&^uH+k+br701?{$!`I><jA<SxN%!5qQef_ns)
zI_R}YgDZbWxmUD`GMB_DA@tkQ7jJje?)du!4+vfqtRPbf9^&YP&@LVp%ojW=SSWZz
zuz-W=DDyi?y^eadcJ3&&SRWHSE?6XZLhw>Y4WtvD-q=xJ-*uFO9pzR>SuA*3u#Brr
z@Qh%I;90>^u9Qw15)V5`>rT2p#T{9Kn;PS?o)bJTc!AT}N$%?;&v(*ee7}=08gnII
zBzQ}(R<KI2nzJT&P4Kd4_4O6OtD?bVj+Dsrx1IDwkL~M%Hw15T5e0fJQ=z3p^Kd8q
zI#zgFu#UVTcwg`isU%o0cu#P<la%W$RXa=T&Uzmo(ODQI&#mMG!A8L*!Daz>ZH9ty
z&2pmoQd)5Lbk+m;Sn!D;4v+-+RIr6}A-F8qD%i#~BKS-28E2CcTd+s)g<w0Eo?w^Y
zOTiAoSAwrO5uJ5F!t0%N`=56fTJgVi)}#AIuv_r0;5#nlM9y^9eIT~L=)o*qq)Znb
zlkfu>TkwnESIU3k7sX|-;Ae93X;r0*Mq1v<A^Su_aEvlyo4=8Uf<MUQUGzLsZD`v?
zM^DY_B8$2Z+s8kG6M~b1e+BymhXjWO2RIiQWNQ~W$hqjEHS@h)^qd|c8w-vJjtfq8
zk<49%8%Oc3LWLyhs+(=zRZa;`3(k}OyUH2CS>YFe<(%k9AqHRd@2Y#nTMN6&1#SVH
z?ymAlSAC1IRaXR8DP{u{4scCyopL)MbbuRzn}Uo1G6lHBNfaPJhJa@nHLydZl(KPO
zSM91MVnbCYbAT)XvIfW&=mkQVK*z_0^wmTK3G(FZCOHG-3XnHIz5r#rN$x=Fhj{`W
z&qMsDdN-}y<`2MT3j`<_pmjGH(oKV?<OgbfG`orfC>p>BU<N1_pm>1N0m=j@5r9#?
zB?FWSaCbLZ(oNQNlP|mJz$$WD*#PANln+oL(0FO<j5^TbuWoupU+E?Vx{K;ARscJI
z3LpWT0B!&;fFFRH9gz@T#Qk_R?yj}aKHVh<5C(_>Z6ZzO&#LlRcX_kBh7-9-RSZxm
zz_0+r15^%Bh1CMI4Nx^ewE&F+Gzm~WK#c%(1JnypGeE5XwFA@%u)Vwd(OvIi7rRTI
z9$NZwceZ*+tsYW8K*Ioy0yGG~;C3=6L+&YNDH|C|(Xod#4bUt=ivTSHjOrotddTt~
z(mVi}e_ao06=-O^b$}f`^q$Jc`HH`LNV@>-1M~{eJ3xm39RqX==t4rL0G$JL3D7kF
zgG{dUki0!LKtus$_tcmY1LS(J&poAQ@V{V4?!29P3j5Y4K;HlZ0}Kk#kDci${R0dL
zFsG;73DRRI;PRe&kLIEq9AHR*p#k3ODLZ>=jc$KW9jU_BMg$lc;Qjy)u#o_x1I!38
zGr*VtV*^YIFgd`u0OJEp2<Y&_^`62AE~3Gd`J^E&EY3LjYD$2q0j33*P7>voe7&@K
zX)!&k$h{2AV?@C$jv~Ol0p^m60^Ac|HapA*^Xd>O;%SV(qQI};OA9L<G*wjY3ouWw
z7yUTnqj<Ll1Et8)0iFu5IKaaJ<_CBzz~fvyoQMFA23VN#A^S;_hn|iuy<|);-EA65
zivm1BI`on!xjORe!g;-9X)iq%((35|&jeT+U|E1Afd(+2rQ+I4D=ox8c=3?P@&L~T
zcs{@j0nVnksLo~Yt#JUmw>0mq@z0e3UJCGFh=)R~3b2|>GDQ9mF9&!fz;6M5C#wWl
z6JTqAZ2?{j@Opp^0p1VrMu0a1yu)Q4;H>~_1H2tz9p}2Y%;>E-gr2o0dTZK}@~`!l
z_2jqSa<#X-$3@y(gP%qFNZdz02(U50hveh{n*trJbZ;No9H4n0>EB12EsOie#{oW}
z<PWfg?YGhh63w(X`skQRePE}L4ixz;z~=$J3-En_FSvXHd==p90AG^+tU!s>SAOmz
zXZmR9lKc410J{Qw!zoB-fo#T;EM8yvmMip%YSvf!^%Vwh6aU$hin5;q><#ckfFD^Q
zjl1LQ6M*`el8W*nz^~+xzFNVcB0+cRqkZ*TR`-=nedUh;e+IZp(Hh{d0DlKK8Q>J@
z5a8bchXWi5us^_o00#pcB4eZm{timlqZ&mg6h`^O<2FYF91Czfz=;4q_0@{UiN2Dd
zpD;j?AOk}YO7@e}0nP+CAK(J#J-|5*yrxv{r&}P0Q-&}c<zj$K0WJr)LW$H*hWFE+
z8ag;A(}+kv&`%>~*D3r1WDb!f#B=@RW`NrP5NaFY775Z%zUe0!LLBNR8AD_Wb;*si
zut<MV{iQ*F$r>VCh+H9Zhae|p50N88&JfhG>CL1|jv6&LIC@oRP3VAu5P3uN>aStd
zsr~hiSs+Bg5N$)W3sERU;SfoPiXn=GC>p{DVTLFcqIihXA<Bd(5rPiTk|9c^{aMmq
z-tI3u`fIJ2kXqRg<wBGXQ6a>?{pC`B$vZ&%XDJq}0a9l`Dqus{Ayfzn;e>EQcp=@{
z=sZA14G<p3;E^l(UwE=+&H!ORLJ%Sh!I*?N1b4$I#QFiUbAT)xprOM3Y_qUb3Q;*k
zgAffvR0&ZvM6D3DLsSb<Jw%NVHA7G-$}&)Mb=iU1Jw!m8cy+^pQYS>+5cNXT579HN
zFfpybI)uBKa%*c8qH&1kAzE-D52V{2O+z#bv2vgeVP$aa=7I9#K)pe?4AF}33ehIi
z=h}F7kJbneE%LY}-8b~nbC~TzbO<pz#F!8rLv#w!FGPP*AVe4TffE#>Ylv<kx`*fy
zf=~$qY_?uh6n$hc+EDb>9v?`*Kl+5|%j=xVJV<7rSEU9?<v|*mVSL(v5CcOD4KXal
zAWqgTHJDurLC1Q_L0UL)>Gd0=8yp^DM2L|gMunKhTZ3fPAg$IC`{KkAH(-8jh;boi
zg}5uk_z)99ObIbH#6&*WQ6`0$9Afhzp+kqRB}z*gCS<~CA*P3z5n^V_lN6rc4$|dk
z)0B>23evkn+!Ny75OYJ!4l##xD64}Evk%rHw8CJiH(2fqF)zgZAsz^|KGS)y)~O~9
z)=DOoA37f&94rrqm>=R&h|3`!39%r=Cm}u!@o0#Jl)WKVhj=W+;~|!Wcs2x$+(jXt
z4Dl4#4ySUkHhVV>7M?^~OePQUObCK$Tszb>xQM8k&?&hz#Ilgl5m*soIhSpS=R>@}
z>8>Js25T6T#yf*}>4V@S#7x-3m0Zz7<fRZt(+<;h$QZVlL%b5=9nMRLS3|4`@n(p(
zLcA90c-`08y%1al1nbHSk-9^q(-0jKwKl}tA=ZUDfQ@J#LkGtW(XXQd_Q()fPgV)B
zF~p`28$!lxXdLMSzT&8QX^0O0=2Nsa=(*k;;=>Rhh4`42hsgIs<m3>Ic+h!7;lsUy
zUY;!>wubm6#IGT?h4?JQx9nSp&qI6>;_DDQLu?Q6Wr!UizTy~%O7Wpmai|srjI^Om
zO=?hI+QsECRK5wZJH+sznjl&72;=+i8LE}W??de2NJH!mv3RKbKtACshRRz*wHKJ+
z15q+wKa=r}seNSNV~PORA49dr?Y9uWhd4sQQZj`2lQJj7{t$nK_&dZu6l>?TBaFNG
zrJ;IT=N6W87{ga^kU}-YVJ_9v${42Ats29m(=aWW+2>Ki<XDK~A<l$28{$NWlOaxp
zI8Ejprd8SH!$co4O$XT7(<gM!g*YGLLWql$40*LG$RJ^E#PmyU7^Y7L5YxUA;wnX1
zgebzb5Z6N#h)^)X4K7J;0THrBxE10yDM`3&7{LyZ-w48Fi1gU$3TMhKJ5z+rk>0xx
z4bvAv&TJ8~N5~Z+ccdd!bFkUrk~7j8_|0M3a-rKjPlUV?@<qrW@ypnHgXTmKvIvK3
zG^X)zZDJIPP&h*Q2o)j}iBL2`$q1z)6pKKusd$7Ekwyu64%avjQxcYuB&8#iiBL8|
zxk&3#H0{X%6Nc;X4?=M4151nuW&}5a7r~134q``eA{}nTqvbrC$qaX>2ZxIvK}C=V
zL8P4vyvvKb6*-5T$s>>q<cK3A5n4rP9id``N)hTss2`zngenngM5q~|YJ_V1*+r^H
zcwx9O{GR3{3Alc^mMXO()aF<s)Qv#YlwoxYQQI+G{uwSj&TwhC4zO$xp<#rk5t>D4
zMAD6r#u3l#=zvLkgf#gt&j?ADG>_0CLd!^_Ni3mO%+unGw5&Zs+C*p@p;v_75!yv)
zAE8Txt`Rz<)7mjYrwELm;^;b!(9uDiBW*j38KDiaZV`wsc8|~_!h<8^#SvOf?HPgQ
z-cKWhO4P;?(kDXS2m>PwiqJ38hf@1T7!cvq2+288gPG1qZOl?#92{XtgrO0JMf#LF
zw?fVi57sf3vi?XN`^_~nGQy|`ae^elXwEyw6{BU0u@S~a_%Xsy5ynTD5aGoLEBHFy
zc{~zfL4?T>rbM_m!rTZ`BTVA}BitQfdW0DfW=5FBj-}2f?lN6R>PROBMpDL(8Y%aU
zlzSq~jxZ-30?kz#zcjrWBE_2bMVJ@iAu>#a`y)IM;q8&~Am=)d4m;$;Ju^}(a&*ef
zk3fcJ{2{f1FGdPu5g(1PFv2qtmPDX6`WR<C!V_u!aWZ*cq0i;X2v0>=OwNozFMp;g
z^6N;sGE$hQqm~&~dzP!RjVz6@EaDd-v^KRo!gCRxCxdZWjnWKkrzxkh_9*S-?L3N3
zVZ0P!V}wl+Rz+AHVJ$l!;pGUgkcA?=!Rd~$hLpLWUQ1U59~?DG^8>?!`Jy)?ycL0m
zm*<Ys4jrb?jneL<b?ioj4H4dt@NR_l5#EdR;Z`ak8%7CFc6`HXr8OYWQFBkB<o|$c
zf0W!9C7UCB7-4&aFC%;u;o}HfBW#QCNrX?iLL11I2y_keOa~p2Jl)9>YRI2O_?&OK
zqP`#pR?&q-nRr@?fo*gU?}+dfWln@|BYYiUXM|m(ScF2Oh3DB>hft3{S_c*LtZ0ML
z@?C`QIav{YAbXG2hfEoGY@Jlh^DOh^(K^33!p{_3G4jRO7vUGaH^RjTzee~i!l4L<
zBm5rWj|hK9_=i%coBSE!FZQ#z<_Bu;^rceY_?N@s*hwE!c(jIeNDvwkyl5D{G+I6y
zEk`K6xN0au$paCNM>rATB!x+$t$r?zA4kiv(L!D8j>&K)!r2JtBAkzqX^fN^qX9+&
zr$jZWr!j(yknE)hmw7iv<``EZT&0AMaGUZ!!gWgih{_lbit2-SmBvV`F*?qw-x%R(
z^qFG_#vyYx$q*xBj74L#PiM^-J*cf?<d-p$B}Ud5Ib-CCku65{SPwZznw}q{p^O}3
zHCW1?<c^Ui);c6jDweZ^2iDB7l0Qa)7=8>DqhO3eG0Ma!8>4WHA~8zDC>b--62)SS
z8Y{(P)ETQKQrEFMOqz(q?6Ja<QZY)$U~~%M5r)hWOkiQT80BMFG3*!>Vi+;ZSTB$#
z$I7~~vSX~~?Z3wA9mI*@vgSDPV!an!94ooU38PHuJ7XP*8QzJSF>1vKV?=yWj4CnW
z7)gwZF)GC%x=2;9(Krn=5((!qY6ekvA175~REtqPMvWL_#%Y(z<Ky(YCg}0<I88=+
z=xTFNF&e~Z7=u7x-5B*^)aO&__Y-I#@?0Ckn<+^e#b_L(S&Zf}n#B6dCO1tYax|ct
zrazhC#Yd<!(<$64M(Y@xV|*B+O^miN?ujuwM!Oj8V+@NiJVu8Y9b@#4(I-Zy7@cEu
zi_tws7mluxbd5Fs`M1cHaT*W#ZJbbr>k*@8j9wh|I347`i(wBJ#_5RVzA^g67#L$v
zOc$H<kBJ^jh4DhS%K$RTcr6NQjhDeOhQt_}HqK`6ggSQ~FFY4BBF4xVlVVKfjK`q(
z9Ye7nV{{A(>M?9;yo`%6KE{L?6VpQOH3SEqAFm}jB{oBzHjI}kF{Z|t5o2bIX)&nC
zO^<P8yzCyY_g|_pME0(amsv6Hig7n5ag6XTKXF4HgCdIx-kccs#&{vdi|l8N`(iv9
z<Ea?)V%#6&kr)eNJP_kS@(lYKYq#}7u@=r1C+Hx+5)(86L#OTW%F=X#JQ`zRjK^X;
zPHIok(Wl(;r%aGV<fUr5CO5$+V({1qFB<8KV>}&WX^dqto{6y}#>W%nS++1iR!vB4
z4d@k0j~Mln<uRU%@jTa82iZG8N3fijAekl#k8Q4qu`<Tm7;ndTDaNW8Yht_>V|9#|
zW4sdMRhBmp!f0hDO3jJVaiWZwsND)Ic|FD(oIz5Lqn@a>wG6H0#fh?UqVOl%r;5HV
z#yc@K#CSi(yD`?Y4`h$(8Xoy(qU@ijJ$EEHRhkcCaEsg+V-tsVQ{9}X<u=d05x1l}
z<|7U;#-$jSV|)_hQ*sw4H^!D2TS?UzyJKvN@fjP5@f9UZj4xtrkMSjEu%Q&6qyxkF
z-e{6O-OzNBK5xbMejQ_Hj9pwE#iVgl={HI4gu%40Am6eu#!oT!#`r$Qo)|yG_%Q~*
znKNsW7S2zxsR}xRh0W4V|Cz!+#xF5`B@HLZwn-YZ`hAkN<+<LumT9H_5#!Go$77s`
z@mGw$V;qceD8@fA{*AFe#(@}wi!V&l9#ZXn;2F%x;!YMu(H|y%#yA?|7*l?q<hZ`-
zPu3tw_sKfcbL?a}8RJxpb1}}xAore*88nWwB+ChXEdAlhI<$4wWDUPxpp?iZet?Ul
z56|vR)+##L`$~+f6tf8mC%DE&D7O=2PjDl~%@`RHWK3|2e8|;D&^W=5leIQ@cCrvd
zp!Q1>FH?fd39=-}nrQr%uxhR;n(K(GFu>TDqP^8Q668#fCqdo>xtKS!f}J}7k7lz4
zh8fhHBKZ>JPf#F1!33SA=(WIdVjZKW2tgaVK?!6PNl-L_k-$t)EJ5)EWfGK4P$EIe
z1f>#`PCy%<9pHBo?wO*$7_efBb^)-R%~PaYg7OJt<~6F%CB|Efv1f;Wo+4HPJAt1-
zC2$hB2|SKHi=3XKr-r92nPF%#V~Qj}kRVJDCE&u$GF7+03_pZL4^Ek>x};))N(stU
zMEQ!SoS;gAHxj&=plX6@2_`0(l%RTo8VR~4=$3FdN38_S6SPQBJ3*ZU4HGm<P&Yxn
z1oaa%NWg8P;#3_i+<dC^nX1vhDO2^=EgC0ilAvjVW(mJnuO;d$Q-vSAT3t<Z{>M{w
zBtXjqtrE0P&>=zV1Z@(uP0%jU;THU+(4SNFzDAgfs0Eb@#y)lA6eQ@Jpi2Tq@sTZQ
zM-wJxpbppgg{j&g?Vg}Vf}sh9CFq%;SAzZt1|;a6pihFn3Hl{Gn4_J2#9m14JkvA?
zLt}v<xC0XmN-#LV5ca2&uH#J8pC4g{085i;!k@$W>I7pFj7=~y!Kg%wi_wYp7WJE^
z4}J5TBlkN-Lyb!?KEVXCUmjh;rN@h3B%l&b&(7ooQxYsn@I->C38p2Om*D;c(-X`{
za8H8S31%jkmEf)fcPAPzVpt9d!n0;~T=3JU2`$Gt3GPiWH^F@g9-F3d31Tudr3uC4
zttc<2bsk9YV1h>yEMPzR76u3<n4jR|Y1+fZF3}cXC)vG66D(vqoU#P;8#1o@$7ynI
zn!d|6*>mpNPbPRO!3zmqOt3h?(+QR)SeD?K1WOXoh<-K!{apMqRi5eMPS-|Lo#_%;
zvOK|a37+T5tto^$yH6MDIgFqiKV4QNSef9J1g|D|DZ#1)s}sD;-cHx&ZF!E5@GPBf
zE2e9(ou|*%kadr#*Al!=o*by7>^4o;QjQT3-%ppf60A*dIKhzwZ?iKAzD}?+!8-}w
zP4H=gEeY0hUJ`5~VH0df@P2|15^Ut!NjuEFm3T|G8B%tJRGlHMXUK;MJ|e{ud_s1b
zA!Z4oCP2uYR`&Ph^hzYEzcs<O1YacBp5QZ13LmT`pOcqr$<i6ZpA2dHk_?mJEA}KU
zq4LIoumY(xu)OR_@J)hW6a1E7cY<#z*%JJe;JXChC)ktV2M%P0R<x+4@Kgw+7XO){
z{j=0A_9pl_!9I$S1XpM1wLpl548w>)eguOqCx+krp5TuJ|0dX<;LikqCHOnRKV;)k
z+Ob8$jd3aLQh}MmQ}&E#JwRbNQw}CL#N|9wXy){sDGU+hNp>E4JeuGbWo$)ct%&0Z
zP9(U(S0^}0GA1~m;6j4a3C<)qo8TOWd{j-Esk=m7g5O1<G$wkyV5VG5a47+m@XMUm
zKKf$<q{hmb`aH$vnQ|?`^#rJh3>9&M4EBFieFYF4H_!GHW=@+jr){DuEaTl?nIUCn
zW^TjG%*@Qp%*+f8Gcz>wJ$ByA{Qu03Mr+HmEXgwN9sTD~T%|TXmlYM&LST1A;a={=
zis}MS=}MB*0P$P~avONKk~~vMemhbA%Svi*_KTY&pMm@aN*O3^pn!pb28tOdZlI8X
z!Ul>Myyb-&m4w@moLX}Z&vB5D<8p^e>iDmOfs%&$%yxJs;Sb+&rNg<+4F+yBaEpOk
z4U{o(lYyHJb#Bh@EcjIvV{dL(-8W;aZ!^>u3cclagPT_>mt=PsSX@cARg$|6++(1F
zfsO|5HE^GSj}3fcpsa!W4Lr_z4Lo4rK?9Bf*FZS~<qbSy;86o&AZ6eoHrc@GN@{Xg
zsIu|_j*R@Fn0qR#T~@<@$;fZOHV{=-lYb6^+<IaVc(bznSXt^;7SDihAZ;LHATSV;
z(m-se-$LZ2Bi?7@MXBDEl?QSTHm$NG2C@boGjO=Fy3)43vbx^JIT*i6%U4C7H1L#x
z*9^RF;AsQT7<kdZO9q}b@SK6?4ZJ|Jex#-iT*&k8=<QWhG<K?}Pv&1X@QQ&~4OB4H
zMh$OAaQF44Dr(!D(Su*weqKf1Fz}{<cMZH};4K4O?7wZ`9fLm!sFqG#_>(OmHwWG~
z@PUC34SZyPcV9`sU%=qDFcH#l_Cn-S1D_eFVxX#l&kcNG;AaEB82Hk_R|dW_@V$Yr
z4SZwZTLaCisNldK%KMu#^ULwa)%^Jfw)Yo)Wrm*&^sS;&xO5`Iy-;4w{nfy42L3ki
zkAdF}{9)iv1AiHqQbm2`w7!bktLI3;Q-%{drJ{jK1}al~Ri#i>d7!GKs|vr=_`0gp
ztSZ$ER5#GrKofebftm*D8mMQWmVw#^>adFEgrClFxzV<&ie|hsOjzGQ0|N~WG-B0-
zWmr`ePPv+xS5+O9?5oPNPHD>48E9>wje+L$SOYB$w4%MZ(5@yNiDs5m$0F+2;eJw9
z;Ci;Lfp!Mkvs>j;>1C>^bAJYHZXtFu(AmIp11o4C16>V_H89RVHv`@2R|W<f=wYBI
zHD;infnElB8|XuORg;IS$y3$TB$>PM|5Q^4G5rk;pb3taA83F(Jguv#5sDw_@Ysl#
zriK_8YG8zck?ep5hE$U+)nqsu`-RM_rhaVULNzH?T}BxgZD0&L`?2zj6<oBIt*$mJ
z_-(~_0}~9)HZaG)L<5ryOf@jgz+{?<4p2@$sIHC};_9kKP6ekMm|<Y1fmw$7Ekw=`
z=)lb4{DC+hp7_i)Fwejuc5?&s4J<IQkREbXos#hLLvGUUEu@ALZV@jru+-pQG}t%k
zlZ>=H1LbnEYIXJNOe@)B_HF}b46HV=#=tfM+YPKWu+G3n1DjZ|x~x|mWP^r7s_R|Q
zuVu4=EtJr}R`!>#m1$;ISF1TbeC4yTy6iBp)4)Ch`wi?eu-m{MgWo@bznI6pniJKf
zXbrW><{btu1V-K~2MioEaMHjjLwzT5h!LZPT1Ovd$f_YnG$e9VBgZs6uHgy#?X$ux
zUJ|HKLoG9R@yFi`oHLNiL~ax34O}pA*}xS#-p%qKLpp;$`(O>#sk!dpPwQ}|!LJUl
zva_4WVIrpq#(CZ#s#8PVsq0)rcr%bOkc!P?BCm-;CJLL#XCl9e0wxNY;1`QLkR4G&
z&BHkgbDNjf9r>MC5fepC6f?o^bT}uUS3{9)t|2FCNZy)K(nKi}S7RWJ(k5;&an{E<
zA2*sPW5RM^JGjZj%_iQo@Ro&JOx#LVCN`S5&BW~{zA*8ni91Z(Y2pPFFPgZ^#N8%B
z6OoB~Ox$bYVH1y#xTf4^;sFy6nlNihSrhl`#OG_uH#Mc4#`o8hl!@{tzePpOn$oSN
zjHxNhYYNjJGC`QLmON_0Fkzc;$j8J@wdBKEVzG)^@?<TkR!h3q64%7oTH>1sOn4@i
z){?`uBv)-ABDLj-+VVkdiA|(UJY%9`9m$yZv$i~D;&Bs+iN>`ht6|UDGQPGfV-XWi
znkZgJcGs5wYRgk5o~HbD<e571Q5~sPN1iqDoQaWjWKkX2Sx25XaiNYBuPZN^c-h2z
zCf+ykiiuZEyk%luU3s9cR50<ni8oBVMzz!x>W46?D{q>pQ&)!8l{f0j_jToM6YrRK
zSL>%_Jw>*?uKZV5J}~j2iO)>*t|uRvpj3a>lTS^4lZ#KNz<R<KJ<F_mO6JD(WLiD>
z+{D^?a=M;;W#VfS-A(i`@r{XZS)+-%CcZQAy@|g~{A1z=6F-{x*~Bk&w)#@OzH0bS
zx}wMG%dd1%6RYdXpC*211MABlq^vJ|8q}A5^<`>(IZ$8zqK4~8js{ZEL?sh7Of+dA
zmFX=Fq>72EG*AQipn+5)w+2GIx=x|M#F<i4)7LUlo6T$>6B{UPlS4fd^-Z)i(aHpg
z8<5OIQxgqMG%~TifiyOetD)S|P__L?192NlGq$K9zfi_24TV{C8cGWjy&B4-hSJ(Z
z8@hpsPP$ZE6YWg2*Z8J}(!s<@&4)05Be}Pcbf%Dvq>G8JG;SmLqLFknQN5AOYb4tm
zNxMcetdaC2a}%>o%%S8a`j{APVvLEtCi<BeYGRm){@SL4O$;$Hz{Egy{8}=Ip4?b&
zZY()9e73QC(pYLWmd=fp>4($DOpGFIEF(-TY%GTwOYSC$=H@06Hj%L=#+jI6VycPp
zCf;r$6HQE_DVxXy6D^v^fF?4tiEM5nliAsuD4X8YRHm7jZepg1Sti`3@=8;gL9b{k
z)ius0cWo+k{^?C+F1^>pG84;9%s2UcHx`>%LP;1Cn#v**sb+Grsg!OePd1Yenn|r@
zvXl`+Ck|>R)0@c(6D#S5CTca8RVI!$ld!q0(a35Od78_u&E@sx@=bGDM-4ZZvCU;Y
zt7tB}n#(2=n;DK6h%9U|c`XE27`{wwHL=aaaT6y@Y&WsP#6E@#`f798X<`q1UkfSG
zLUz$xOgz*=_&m`<er+LpO%OI{Awycof);YX#6c5>OdK|Ggd(wf)|G=T)RVKN9MjHE
zi@e)XZfz+}OF3!c6wT36E|@q?RxRbMwka)jMkDoF$~hB+=h>E)%7TRdnYgG~UD7l(
z0n;yQd;u>gTgYLdpoKyfa$3k`A)kf(7Phujew*7u9t)RRN?r?oD`6t>yEH-@6|lgE
z++J-Zg)J1ZP|`vv3q>t_)k=z6nA=K<S*X@Z+O?9Qt%QjsSW8R!x0RH(aD$}+QIXb4
zo*OOPWGPo9UPkjI&gV=kxz)mL7P1x|W4eVqNM_+t3wK($%fkI+LfBgFws5b7`z#fj
z?$I1rQCW?A*jhOrxn)|*gBHqJNLhHuLU{|n^A3T9KCPuuYgu)m{G`^hy0si^t>W0j
zniUJuXABFb1&>OwVCi(ax?{n<PLrpN+}=i9rVyzqFSe1uLfbYHTll<<gcis!vQV{+
z;+(dSu`sxeBo;QdQL@c$BYb__!V?x=w(yFDCpG71EIe!BDGMjs$kP_`wiQ0Nww32B
zJa6I4w(=6S(N@*?f^O-H8a}O4*cK8{^RHTX-9lwuwt}VH<24IxERi>KIy*aa-?s3M
zg?DYdXX9N9?^)PkVW)-nEqq|1n}zNcK4e2I)Ur_9!p9aqvG9$BZ!LUk;WG<gP$ah3
zLYuZSudQrrD?{1}aW?QP3twB1c5=F{6lo_<wiBx5I}6`i_|?L17Jjhsqs8A+z%Q(^
zo&01eKX21cg@V7@$)I+^MlEb7j1s?F_=8Smp}K`XEfsSLw3n(D{?a%N@i(2ejr?Pw
zqDF{U(nw_ut7y2Zof-&e3r4CM7FbJ73wO6yuYB0!>R702p}B<?G(kP7XQ94@2K2-B
z@@{)+XrYmXCKj4fc)qsh?>{JWGh+8|FU>4WZ7&RWg*(XR_Hwelw6xI5LI(>SEwrY7
zNNk~<g|Zz~FMGO!e9%Gu=pgOsiXCK92WiqlI2q_<p|kcJDzFRn(?nKukgk>*n>f%A
zKiENfSm<eChJ~3HdNIqw7z<;`$3kBVLoE!m(9c4D3j-_+q}#Vp=3o<Yb(BGDaz`0#
zVF*>)L1`oEC>1)&uN|dfM;WdYM_3rC$@+AZQ5Hti-#W=ton%T!+161mb(C8=$v6w+
zEljpB#li#&6D>6EB$KoQf7nU>?4(r96#CoL>-}XK{lAlvgwJ%HNWo@Vm~COXg%uX&
zFnU;6VqvL;c^2kV`7LA-vpUG!PO`wlLON$BIp0Z2be8g+Wig$B6Q|B<9`a#l`Mt9&
zv((T`MbWq`>F^ddS=el0wZ)5zSjSvOj7HM1v-IpNYbm)#Hdtzi=d;nmhR$-ev)tN6
zy>8Lz+bnFi@Grw7?cP9*^(1h+$cviha}9Tq(!$L)Zn3e)!d?qkEL^p)&%%BS$1EJT
zaKOSr9b=DLsM3W;NGggRv2d8a(M9+S>LN3{sED+=i=65rCoG(_aL&Sc8k#8<&R95W
z;WR^cS4GJp_jHx8t5oQ!g2@G{)WWH*a@oQ~_Ry|!iT==4YIapId`eeY-&Gj=3-V(U
z8#!zgvr*hePMe$3C}5+YjodaK>?V0_<g<~-#`E3ei*8b-o8-5_NItxq%<rb6T-$C^
z$VOosMQs&$w{=r-z6g1Cmz%mv(p^|JD=J~5q>USF+-Reejkmf>o9<Ft7pc-+26dNZ
z-GzE6W8?lFa+8gd-KB63dA^5y+Cy%&ahna#hHv9`8+X_!XQRB0J8j%$<31Z@ZQO06
zVh_3321UBZMw=corH8ESp(H%iL+)qOdddSfp6DqQ?7^P$eouK&6aUdu#74@7X~VMd
zkd23JJYsW!gN{9w{wWEWP^BY#%7UI^*x21u^7oRvdWmhrvEkYXddVxj<kw!(u$NLV
z@xVrC;{{e>BeD_Oc*@4pHqtgSHWC|I8@+qUlwPu~mt5{8kJ)&f;@NnTI%zI6Iu&w5
zZ!vnybG_AMfRYe-#>R6tD)p9UiRi2^ddu@RNYBKMz2zkvFWY#N8n*F@jaO~FX5)2R
zMSHTXpqUfl_&cn(ykTRWu7YB)y8XT7Z5!{<lzo&fNOON5WzF|(d|+d(jdeCYwDFOR
z<~CZ`_}IoL6vjqn8=u<v%*IbPezx(sjW29`YvVf`U)uPJ9ifwaW2@<U+($m`BVUug
zk5uj>t^26O4&%f3Hh#1*w~zc_t1*s_G`Np!?ITS2#m28Tez)<5t)^8B=6rs$ajK6L
z>MMWR_{+vW+L7+=D`8*xq%VIk2Q~Ui=e|<W#-zTos;}(pD^+Y%wNcwf9UIkXL@vr2
zNDUi|wAJaZ{p7ZOQqxwWNi7Z4_})+I+NfuvG0AMyx6!}`!($^_wx4|7Ppv*0>ULG@
zrv|3B{nWf}Xg_IcV^Kdf=Wk}?Xg|r{Us~E|Wn+Ymkv3Y>KW+4}(bq;>8|`d#vC-8=
zdmA0-#{H!eeUEk3mk;|ZRY-q%y1#VRDXsd;!2Z(BMt2I<QhM3wp^=_s*jncGS21>L
zf8{L~`%7;dge3+@KO6nEiiX-4U}K<-!5rcT@V9hOet<kN;D2$L`uur-46#vnfZ{Vu
z7h&RXs!q>RM%frmGtq5qjIlA+##9^AY>cxpo~pJnSr?gLV<Hm=2;1I$fGimxy9USw
zT}$bKGKG~6l;;P^bQ?2l%(gMdR-t<)eWt0*vO!83@w0(KGKxVBaKb}4-^KzPD{QQ^
zv5*?JvBbtwUE^YEa-gEAJWy4)%*JvXt2NF<iZNoK@|IPMV*_QijWsro43xZslrNPX
zqzcmO*4x-%Bfo<J4mR4@WaGGv6YN|ze+LPBZS1r0uZ^uXcG%cSN2)9FAlYVPJG<B*
z`C*W7525ZL*+uVS<fmYD)ts}(AO$B463)j~4U(gSWWSBW>{El~fQ^H;ngbtVWE(8;
zU^S7;KUj{?ZFHYKM&}<a4VkX9PSWjdT(WW5=FKSd8Z2jRoU?I;`X4My1}nRtXAv$C
zSUclbW0k^H+m69<kz(tQ{RpqvxXMuPAh!b!E^v^;!P7&e%n*5Gh<rUnaylTaIYja}
z=sHC5I>_f>{1COyS~^7b43S(zm8b<B6moEvgS#CRc2LAY8E)V>DC(e?gHjGkJ1EYS
zp;E#@Ne3L1A04Vx{qj)xa;Q`vDs6|#4GwN})Yvg>s4N*OyM`*6Z+38tgF762KTK|=
zoWsN!Cbv7d%>n!Pt;2+i>o;^F@jEF)E2%$B?s0IhgYpi<!F>+OI%-tqeont(a=(KI
z96abKolG63no!Qcx?yrf<3v&p9&+%g1Fj-V4VQ-<JT_b&VJn79x#9B8aQS7p)E_Q}
z1Jgmz;c8ch&~f0hQV;ie@ErJL;^JW!0p)Zs&B1gBk%QPlO$W6cq#a}&yyxJ32Z@8M
zgO?q=!nzzh?%+8G&pWDLKjGjhTExM);qs&d?m{q;&+_5&jDu%24W~U!dAX7787?n4
zc!``x$cqjx4VO|Qr2Gh#%i^y(sNmpjN5zNN9K5c1zUhFmmjrKUR&S4xpEdnk4jPV-
z9wX!(2k+A2BV^48IXXg0kCYD_eCXg82ftDt2OrZz9DL*869=C<_`<=LjtZ)uIry9=
z7%AMV;VWm(oN6-ub6U&Suh`^~3i;N-cMg7V@FNA|?6-k@Pt7+_lVMJ<f1*2ekl#ki
z&lID*yf;!Y;k^1cx{!m)4yri#!@-{p{&w(>17`h2&h4eiNX3Ek?TQZijg%=PrIMp|
zjfk&e6B?)qc~uA198{+o>nUOiLs&ysbnUgagE|g+Iq2=6F7@M}jf1uh>N{xQpoxQ~
z)RKcn4(=Q!jdiOTpbm|cyrWb_&M0Z-pt*xqR8C)caTE`*(9%KeQEJEL+fmB@Ik>cT
z)FOo@;KH+=gZ2(OJLsahb#TzpK_|jdO1zPyWd11GI!extlER~<tAp+idN|;q*3ALy
zrGd(hmYxn?8?7j#(W+<lanRSnXa{4c3aZG#U<X4S3~(@z7OW?OXui=>bF^?IZ9iIu
zj+VKE4u&}x;b5eLEu&>PJNOv2C^$V@h}=tjj2h-fIe24?d^bkM(w!Wz>?G=BjEr|M
z!NEj!z0s-{vr`kYy}icBWCv52HAa??kpp97sslpSJHx?Dc7F#K9n5kt+rc&m+a1ht
zFxSCac2WoP9L#sH)WI?b3mhzTu*kt;2V89x7^|wF3*9wVg0X5UzC`P=!dO}EV1<K~
z4py<HW7S-}=2$gRU(J*Q<=3#8W2OCArQ!Kw)g*ttgAEQgv*8qAtlEIu=wOqhclJ6d
zCpkA(xzNA5%WQSPJsECr6&okz#>ox`I~^Qxc!31F=!)ZHFAYRV*!7wybMJBR);P7o
z;x^8Hw%x%&b`!nHN&OshaF`z0QY}15!{W?3=HRDsa>~JJ2ge<p(64pJ$w~UjI2Au<
zjFU4C&N4WUm-8I6#>qKd9Vb-O{IPLzK^J*&yn4Ol;4-7JixMubIJnB7>LQPeEI-?J
zk;6q!SGAOspNyAWE~<=|PUDqwIF9Fak<Ue87e!pPV&bwZzl#Dc3c4z87jl(8=}2S7
z%c}8mV7wI7>C7tTg5QL5$;PEC7g;4;lyY&Gi@RNvc5#D?TV34d;zk!`T-@a1W<C>?
zgJmZuv%Wn+O#*Lm@xuh=HgzV*?Jn+cai@#k6O^bl9OrLDrcMy1+(Yqn)#Y5QnIQMM
zc+gd==CUsCch!E&u?g~ki~JLX&s`IRA(5-v@-9S^aZ2D%l$5LD7?DR@JnEu{i=HkF
z7p9BvTzv1sa(SZ<uef;Ch2z3?k#Ui@@R%}DLKl$>pF@C)uO_Os4`Gdo61zydYI(x7
zN&AU1Y@*DcsF19S$6P$?;yD+OyLiIIQ!bu%ab%+8nIuoLy_3Y9ByUZUpC<`t`_H&&
zFiALv?><SMcloO$I6O&SqWN0Ngh}$E3({~ouzHfb?1FRnqLbB3zJiO_Tzuf-Ll>{R
zc*Dh#$?}eiH(k8t;<w52HdQoPlF9PXWVN(uHdzKvmUmse=VI4nwH&xSS>D&BZk!??
zx%k+{=d8=cLsR4vvYjHIQtT<JuFt4}(P~=t`xLcR_@#@lU3^2ka|6%?6+)!(6#3T0
zEKSgViqg^#G=YmIE`RS4Ke_nXMO7EoT>RqVR~LV~_(wPAHy3}n_|wJju3DgNm?9UZ
z2z6C*s{G~tZ|%(WT}2nEscN-b*~ODnr4j`u!BnZD1!yu=dQFw;E^4@_>!O~EnnVUj
zZ5MT1)MAqdsNI;^Q)Tm11sMrXO_lo8Jk2^*8oR1f7n-JGenS_Hw9DNyP5B`Y8oX)J
z%tdn-?Oe2X(Siz}Cao!(i<T~0=~qS@2BP1lN#kkK)<v&rYS)4laRS_d?Q+q@MOPP{
z*wWh4nf<hl>WSPCV-?&<?xt(xQ387kCF!nTiS%N>aIxRT0T+E-^mQ@Y#T*y?T=aJ_
z#>H3{16&MrG1SE{7lT}!t|vpZTMpJZU%8n;{Y;uB)EgJk!(EJUF_Kj@mr*W8YlQY9
z8GVxUYo^IK7vo(_aWU1!1Q!!sOmZ<<Qy!lt`KQa>)74f0IS~5O)p~ZCiy1CvvL8+7
zbvtFaucxcMN>20YPnTIP2)U~~*Tp;+>s+jNF`u?`vBJel7Yki1qBpu&>Z03pS?uD_
zbhQUEZn~_Rt}5b!eVL2p*SiB-#KcuDR=ZfMt1C1^9-JZB8M1~kaE4mEzcWL5(FT{7
z39-Y)P8XY8Y^K+_*y>^nd(ALa1-+Mk#odW*^vM~@;kRp~)eIRqL)OlaT?`;D_PE&V
z;^+*?J5y3K<(ZlC$xO9vvQKN93jBMf9HiKcs~(DYILt23$n4@OOSw4a;;f5vE{?l6
zLDRT6<EpuO$C+}H2o*k4?MSeh+;CVnQ;D&Ard*sUrDn-_7Z<2}_NJ-AE_P8H;*yKY
z8lm!8s@yE45SE3993Jv}{Fx)<^pML#UJv;^<o47NKpqdT&r-~}V?*ToSt=}332kO6
zRTT6vbe0tIu%Fx*jb|y75ijbYn1@?D-0GpYhZ36AjUGyRDCObq*>Z!Ywk%3($PFUm
zmuIP_F{_M+n>^g?sog627-b;Bh6l6dwb^o;hub~e;o(jX_jsVg+~wi>*}N}}`Lm_v
zY#BIP1*@&I<=kww0aez+{S?MWaUTzOc+f+C4+A`u^HAQyHy*zA_#bjed3e^ta~>Y@
z@UVx-L+s%Z507$I@4;uKHO25?da&4{IZ}R(*dCskBaVj;=BTqXE-PFQf6h?{WQ5J;
zNZ=v#)Uop5Icil%gbT*Bhm40OJv`+h@sRcKIQe*Z%)^X1YDslsj%=JG#BZFdUS+O4
zH&>qa@QjCMI)x`hpUhQfwH4>e^B!LC@Ro<SJ-q1QB@Y!myyjupTvhyK53hJwG*@1w
zap$SEo8muLUia{Zhc_w7JSjU*C2~zi`0+d?;X590cjGe;pL=-E!}}gS^6;?-E^lf2
z4?KLRweiP1wcT`WVXH*)@TrH+^JLUKSu#(ZZGGY4OAlXr_-Vd;<>AOYiRR0j^Ci!G
zxpTg%h}^!T?L5@?(183s{OF;ohiWY1;b#wjdHCDIFCKpN@SBI<J+<O)Jzp)lx!nGP
z+V*gMzVJYwuS4d`!uhgezWn2%qKC>Js?cz)<c0-G^ObbjhZZRHzPdmi^wTt7Es*Lo
zkcV0xYIxw63~UZfNmbNcAhlV<LtWk2dKz|Fpia!0J8pqA^w7vdTY8{}#vYn@XyKuy
zhb0T7DJ|t;#{wbFRey62R~Ja>h4RQkRkoFf)*jk;czU6H$HcaZXYGa3VWG75(7{6w
z4?R6}^w7ye7Y|)^)jX(W+0N{twPg50>E@w3d($F$V3EvSD4Q3`nT2ZE-pj+wi=?lI
zeja*z=tCnek{XMo?IIbmNO4%ONVrk3W04H>Fo?a<!!{3tJq+<M+ru1oXF89Eu^z^G
z817+&2fED|5C1Kak(7C{jAFfuCAC;a>(?(A3lpm^R^Bz<!vqggJWTb_ez8pSFv-JY
zPfZSaRy%yLI$E8-SRJ-<?L5uHboxB&(yudhMYGr!YRjI*a%HjHutd?%^)S!FIuGmF
z!96VSu-wB64-466m&jr&oF1<6Cp0~;KrHpJjJ<M+TE%n0{@W61vP4$0+t!uU9@fy`
zhRZ5l?~o<3Xo>7xB5UbLx_Ggrvcbbf4_m08r6NoDp$9gz7c7-0mMY0BEtOVFg<1bn
zcqZ1C?X)$Ed${0Xr-xm1b={WT9`<-R;NhT$y&m?_lb0!m8<xs{OJzT4mPuxrytPc4
zEK}D-4tW?zM5}B1GTFFHj(Rxe;kbtr9!`5W<Kd)-Q-n>W+;Y`t$?fzqDX?5J%jK+x
zb9Bh%^6_%1xLn3Bm*valKMxlf(tYIiafyL$sa&O>`?&1k3Z+`Etj1Q*KskKm^zrZt
z)uOA*rOXO-WrZ-0kGwt#`Y7as_e}Ency@&p@R8qFmLfgH_+*7tS|Npf6!B5i2USEG
z@}!~&$-mVKDdD3evwT$cQOZYYAJ6-E!N(1}{Nv+MABK-IK5p`HKLfR|mK8VqxYNg7
zK5p@GtB>1!-0rK%{2e-%S46l1;+%&oCMMqP;~pRP`nb=>z!k#Nx0x$s+X}g`LM^e&
z`ryvV=WW#5<Ut?hd~o)a@=@MLiIwW0t;R|zw^D@ZE9Hxo@(@*_Yk7hfbvnr-8Yg1<
zuzbWm(rkVUv3<BcJRdz*isNJQN?Es3jf1|Az(?q-St4J#kUX|h-Ij@b<Xfed^BEtB
zkEeV*?IY{sF>>?qBvsv3wdHYNEzj>?rJBZvr&rvnO|Oz?sC*yKQF|lRH4<`ubCrUW
zSwSB!`S{YuS3X|$@rsWR$;Zd5J}UTli^BML&Bsrx<P9Hh`gq+3w<7DWQbCVTk5$5b
z!ttx*9Ut%dc;CkdzB-|JkB(7G?F2GBGMbU{S}E>re(d8DAD_`KHRV$ut5!*l)pGl4
z*|$m!VW0c>LT6pONs?t&P5GJv`1sk!H$J}g@tu$FX;V%1gNDE8;-q|MwJ@d8YWc;-
zuR7~*4S)0ThmSw0^VRaZPT|dsahmyG`gMuM|Is-4RP?c9wHhm{_^9e*63yhJnvd!}
zy7}ntqlS-~K3e!_>7$m9+CCbxUR}J7k9t1p^NQMPsY|sll)`J&0MUSr<$|}S@M0BP
z*VtDBO%oqYeUx3JXqwSO)<|<-U7O(r1B&tX8u?|7wDQr~M|&R~e6;b=)<-)Z3)iS_
z(qN6!?J$jRT_YWRbYhQKD_wlGW7%2D!?Ewe8pW-vueL5ZmOZ>ydQcTUhWZ#r?_Dds
zd<<Y0pzVD0@zK{uKOg;daSqM2Ad6pv->;QHKANmmDT945mk6IB6i*LT!+nhKG0w+$
zt?iLMM*A2;e65UPx-PhQt-3<SQe&y-waV^vg9$z+>Kb|dfLXk{K(VLznCfGrk4-+N
z`IzowsgGqoX84%tV*&NxW0sHEKIZzE=OfQLxnrHoVgFhueCU~kFRl}AZqL^``F@=&
z^0C;*5^`H74c93*7`RSNR#_?M8_RvH@YUeEmJTyVR?=!dR%?GI!P<3lah=lq8iuCz
z!dcupAM4qJ+R6qtnbCE<nk><IHv8D(<Did2KK}Kw)yFO$yM1i)v7N1EU}P^|FK@4x
zAJ?lHPVM#5dA*EVubA)gvDe3b9|tJs0$ILZ_R+z(SHD2ctd}wy6v7{ydu)Ro_Ho3=
zF(1dNTP@E~dgDShH=yU7@Nv?|X&+~F@lQ4=mp<i#u=)mRyFpb-PvcDNypIcX?+7&_
z{O98$gJ+1_LR@0lXY&K)x>u+cA5{WW4S)bS0%QUt0dfY&72v)AWdr06kSD;60m=l(
z8}O%xP&7cX0QmzH2v8_M;Q(Vd2ydw^-XH}vTV8wPZVWeFi4+M`3_rF(iU%kWpmcy6
z0+b~GhEhrsb5A(;Mn%bmEgx>Iam$6W-4x*F0JjIYBfu>IZVhl-0B*#wA{HSfH*d-0
z){Sy!z`saPXN&g)xLYGU?&m8h$@X5ILVDu&2kP+g;Q)^Wcp$)o0m=n%Hi`sD1>nwA
zc}+m%g^g;T^CA7pApGq{c{G3#APNu%FauZt`~U$<Z4^6z7pOg6;!XfpCwAVbW@sFA
zxWOI<|GP_YOGDwE7PgUl)Z;d)mZk$xIYhDn9t-e6fDZ#a9^i=puLO8Cz>@)<3h+XJ
z7Xv&U;F$o=1$aJCi!v_U)@_t$0}ygqbaJDV*`%J#Cbe98DZtB=xwm}2Nh<57)h4MB
z;I#m62Y4sI>jB;f@MeIw0=1$Xxk*-TQU}fZH_2u4*(}axwG!v+y8+%K*=G59vv9NJ
z{Q&hgORvrHQGkyF{1D(rHb20p0lp0IRe;X|kkuCfW^7ihJ`X_1y|2xi<?Lqpn*Osz
zz76mlt*}MDVbj`3c8d^ydkg>GLfumMX^TqvDZtMG{toaD4H4kiKy73#-y**S_&va%
z0sac`M}WFpr0*8B9_MPBIM@EHi?5TmNW}n@zfyq80oXulj28g*Zjl`S%1!@DwE)!v
z^b62GKn+?gK+6EF0@MmrhpHE#et_Bm>I8W7U)B3w`B&;v5{)zn&@ezVw)9_VL`T(^
zgqsFv9N?ROl>;}??%m*D>He>b|5us^IQ*})2vBgV+`3hr61EP|CP3!^T>`WX&@SLV
zaiGptX-}WrDjfoJq`%EqLF|RCDsq0YRh<lW-KtW$2Iv-`M}VFIy6f7nEh`vIMs1Z|
z0eT1M6QD0$y{+*2E)Vq<ZdK2&t#WCrl-?!-0t^f=CBW1Gg8~c=FfPFO07C){rLF>u
zV(%C(!vYKsFhb+ywn=uInvD~_vrR?^7!#-&{#f1Qirb{kHq~(6z#OtoCIpzXO(q4H
z9AF|1w@uFK+~V8C*e=g)SCrENOb@Uqz+$>efSCd22UrkbR)E<7<^}kEyUfvWu7-T&
zY_|4xHSZ<fWxI^sE}OQ?<?XVNKDJ$M+#yQ>EDaDgm*tF0-0I=)tp#{^hdi@GsM{5^
z7yHp-b@_9ZCi`xOz6cs%E&EY`^^8{mE(X}ZXhV|)I1*q}fXxB+1lSv33)>Q4dw?D6
zg8`cCQ0CZ1jqQ*XJJkA)uN;zgl0!4uO|jR>E)7rZP)6q~SDpI;90+ibA#SJaXMf)*
zyf^;tPBno)L_gmtd^kEBWpD^^CcxPM$8}#m5#VHiMmweZPT@sXF8WT<h&zSPX-3y(
z3gLS29Q)%2InPMDNdDmTY=d0TDHQ1v6~&MqB5%mA2yvBRKSa(D+jq)^ol=~?TN;9H
z_TVnb72<_mQhAr;4)HmWwn{vXFZn{`4^c8isSpK16bw-$M9~l(cS#`)3u`!Rm#{h}
zat%@}M2QeYifhPp;(RD@=@2)BxGBWVq0-omA=d0ttDZ9Yl_?aABM7y6OQ^0$mC;wE
zZVz!sh*Kd>hqyDuT_O5}=o{kh5ch=mi~@(aH^hA*o(%C+h_WH>4-te2Lp%`T!4Qvx
zcr--05GQs?`4B=Tz0_V-ibyMYD8$2|+MD7Q8TU2|>{g*eU6Ki5hOk38A*R(+iB_mK
zE$`l~F1ouRyxoe4PYv`GPs0kkRV<<(zQ%78LL{Mz6>*4kh;Mf*3vxb_(TN=5vmqV}
z!KvfplyIRup>fjl;ZDNSA)X2GMu;~<JR9P<5HE#zImGiJYVYQkl6Wyx$JX6;s}3@@
zx$2KocFQXvUJdbjs8)p)sNUW3S_rP!F6>q=#6>Z?0AEY*k+(v;9pc>(@3D=0<ed<I
z?vW;Yl<@EEk@v|w#77}M4$*Uu+GF{Uo-kNA*QI!*`Gh*zBcF!gJzGwRIlbJuN4^O0
zCB+L-C&X7Fz7Fwwh(AJn!{&$hF~m<Hz6<evh#x|=(Os1%Xq|-XBMzP1^uDl1eh%?V
zh+jke7J~OiSP|1p?UnL-)issJ_R4#E<<Ag*g{Vvq3GsJ`e?m1ksKmPVO2rTp_6pB*
z8t;`}du7F5*}qq+hNu>zMu?gra_m#zS=_u&s)yjh@aeWvD^#~uI8qz?l<#r!P&Y)q
z5bZ;B2vI*ogAmO^{s|EphG-O`Nr<Mj!am_)O5;!s&7bX)N-W!4TJMvA`_wT?ix4g8
zDzrifo_e$jv1OmM4l#S5y4l4WR&<hfbm@Ka)P6O0rQ_YPUpi7JA$n-$okMg9LI3O?
z;{E;VMs(K@-9l8|ua1Q1tJfgUeR_uI6{2^jre1CL%aHx*fRcE>5dA~!3b8xHfDi*i
zEDo_G#Gnv^Lre)VHN=n*Lqm)SF*d}o5W_=^qGI&~egw<zmyzs2b!FauWn!-W7^y}x
zfHW2weH?pth>0O4h2Vndzx^_S{q%q&2ma?IpB#|MAu1hE1zR1EX(6Ul10m+HNNbr9
zVy5m00}luz51ne3e&tkrZismy7KT_9V%7om-2rpwhgd*09*|21gs{Xx<r_@rYHMkT
zWg#}P3x`-9Vg=nk#M%%m*{<gD<w02;VwH|X=0SNy7i1S$7h*lbPKb?kq=V94KT{9N
z+JkEB;KR+OEg}95u_FZcYPN>zJA!Qto*@n%RQJQ#<M@Nlw;vMgknGenxoWFjojoD;
zhB(F^dPw$>|1vqm+z|Uiu=WEQ5;>?lCXpk$;at-GuIKhgSx~RDSo}CcmgaL(L#D9F
zXF{B1Y>AMKa4y7oM$`y5NBr9?{Krljp+JO-ocz;L5pqSi9IEROS3+D3@#!ITt%7Ib
zwfIxi5pqQ6bx0;1l2wOPB10}CSnddUB6YTyH$t()k}m@NbN?ZE=rDh7P6|dS6rp&;
z->pUA2wxwTq7is1Q6xg$!_xJzIy5g9fgk2fJgh#?DH)+ugwhdih*Yp$byyA^mb^#g
z#t7v3&Jn42L>@XKWg<MGky|3%8X*<op$NA{xIMx>5$=s}M}#{g^gSYXMQVcG{D`^(
zOyurJUCQOr`Q#&VUxcy|crIKn!u=5*i1>G4IC4Y@zm|~G-9xIo5tff25%M2Z3kN>z
zFAqm}B!V5m(QSV;f*HYzVCYvCp+b1r9rjflO68A=8^MeC!_g9JdHe`LgfIewz~e_H
ziq!SF%15R5Q6cjAQAtP0M3{0^@mX_J$?#Z&$0Ppp6h39!BRm=5)d&?LJQd;T2ror=
znZh5HXCgco;d!p?c(o={w;FikrNA-%)eByv4;)jUmfU+x-aRH&kE#3Tl#mw@Uy0D}
znDCV3wFs|AcqhWU5#G>DsI)gV!a(s>gtxV*Lysv3ps3W(dl5d2@R6o@Kf=;u@`1)#
z#qMKjZ|Y;Mb1If`@3RP>NBBL$9}&KY@MVM_BK#QPEBZ!+?;^EWqvQ;XybSP71j27M
z<Td#3>4C>p^drGf5q>7y2;Gm%FLagT@+;MHTxF5N*T<#$ahY~p-OK$m!e0?8MW`I9
zJN$oZ+5XY)#3odXuu+#HtU~{9C{@|^W6CZ0F&$6Gs%e7~sTrYGgxWFc#HbyiPK0W)
zS}E6!P>;S5qd<)M5gJ68#V!z`VT48zdPnFJp>c#J5jsTZ7@=u|W)WJ^^bwjzXu;lb
zLRq1u7L2=g=Z~v1U*3q|Sks1fiNM=CZRu$z)Zy<7C!~FZUr(r(@^&IW4D1x43!4_9
zGp*A^>YtFIC!`xSL%p%XYJcO-WRD0dPN<QKM&Elv9WL`;`qdNCH{wt6V@!mx5&B0M
z5MgkHA-dG<CuLxSK@pzetsCA_KB;svG{Ue5!y}Afr*0v<aQpg6b(d_UmVZ=)(Hh~F
zBR3%_<PRqm92a3c`&xu)5hg^K7-2HqJ5ty0Cs84qhB&Wj^*t$6$f-W+czyaw*>F;(
zN0<@e>`A%tl+0wWIVF5vKP7V_%#E-k!p;cuBFvAlI>MR=3nDCx)D`p<5f(*QOdYn8
zW%L1#!tCii)OvQQeq{=?meUDOsf8g|rYj??qLoicr&DUB%o`4CBdm+CCBnayHo}Go
zn<8wc+pwjYX74Grx?FZjb)WpFRfoOvv}}#kRn=_~wnyp!{jt+3`0!9zU70v7yQp49
z;|S*??1`{9!eMsa2>a-k42BVZ`VW7fmX@bwAPdfvnWyDY1m2uKby_x^R<B1R9E)&@
z%o(xu?DTkq6AZRz<Rsg8Mv26!1z*ol@>cT689B?aa7HzX&p&760?icRY6Qf%7~vB6
zFp{5@4rgTA8QFJ6t+KD^vbUcV=dAD)K1YmPF>=Sq8LLSwr!>@Fo>&F3yfN~{s-pMK
zs*_*NRjQs<7yApwC=}z#7*EA09HU5#2V<0rQ8Y%e7`Ml`BS!HUC1R9`aZ`-WXQgC}
z(lKs`QHqqy)!51rlcVS8vvOmsW~X6u;YWGP&dSX(Zi$iOoa{d<9IS7Raa*iD;^RV?
zE6Ur>$(=Foig8bjdt){Gy*oyQbL!}U2N2#lxi3c97@Xxk5Q8TX-<*^CHNt5C510tK
z@+u!gVt6t97^xT!#V}%+i~#54;TVsy_%eAUMyGQ!>YNZRKc_^sV%Sv3dHy!664;5=
z)Z*AVb<DxnJI{-EUV<25j3h=@=SDH&7;l^xK0ln7bc{@lrssv{V*SsnBdW(@JRakT
z7(Bk=cZ-~>v!&C|%l7k1)Td)S6XVMmU&VMf#&a=Vi}8Al=VLVx@YLYt7%#+lF;*AG
zUW&o1U%Uax{VU$yd?m)KvD*Hspow{1?ZSB}aY5dQ@n(#VSYwR0V!R#Wy%_JuD&)SS
zDc@zpJ0X1Kr&2TZmq#DO_>fk+pt?Lm89Q%sK|YE315NlW#^+>pf!~-*#|!G_*cUN|
zUyvOa<l+U@+2>!7uVZ`@<JTC!#rQVHcQJmXz%jmOdQEkt{zDAT=<fJW9{W$tZTS35
z$>~Tn<wKoP=|8o&_&vrSG5(2BF$O1!f5!ML#@}?*|AdPdPFZ=xJnTPN^q*9UQ8`9c
z8kFm0eni7l017!zopkeHbg$;gAYVO34IS;T{3kW(s28PHtiH0bE=t`P^<o^<x%Fc-
zh%q6?#25`@G>XwDM&B5X=_jl`Mw?hIbt!Gr7|midr%`rEi&(9^t{s9@xF{{@gt|p^
zLcX?*(T@EhMwb|WUX=DRcz)4A6L5{(k-kSh7uDG@w|AJ;HAc4>y|q(y*RUtYrsdK@
z<8&47HgE%>7bP65Bw@Vb=0m?2{bP)ZF*?S87z1MrjWI07pcwrw%HSA7ba8I!@Ur^!
zi?Z>eoVchyEgv3ZM2wMI9`3Fe=bwlSkq0iRqlz&s!nRye{fKkLadf9kGM+wvNxlAj
zNo@j5iZPkZkFhq!lo(TE%#ATG#<UpIX}cJ+W6X%vR?<ve1&a`8oT21{FR7F3IWc$^
zzu=NenIB_8jAb#F$5<F+5p|_Yaqo+}b}YC!#{NrcUwvr|3dvAFhAg-u#!6Z+R{IQU
z=b@Q!r*3r&o-*^{=Ek}h>tpPQv6D10HpbW*V_S?(F*dU=)K#64|DLjiosNH*GerK?
zWr?#mVcE-)zAW2g5WaU=e!nccV(f{rH^y$Q*d~`%+}Nk_0~+#H|NdC5^eGax+V`>?
zig7r`kr+o~oQrXuy*S447$;(!jMZ0f9Ac(kR$u3__nnGyS|_f$EQc@483u=;>Pr0C
zSbcTQ3GfAq&DeNFt}y;nuvO|Cic2iTk55;rj}0#~&R<ar?eL0_EJqqS)A(s)x!V)u
zN+Wj~cV}=<26@uRn?{2)8m5sijr?i6oW?6@6iB0B8s*cFG~T-+h0?f-MbapoMv*j%
zrco@7o6@*BjpAvPNaKbyZcL+O8sA@$(z-|~4gb6%EZ#^%W?f4xqsf?cOB%PPafhb7
zO~c!D7K>aXzE=FsG_K{|qiMQoZuh2fpMEW?;R71ppT@N+9@MYoQ%)n~lS<>EG$_f7
zX*`_9BWYyQcr1-a(=gKT((uzTHL;zBlZJJ@ASEFmHw`}IbL}-qBTOSsBdy6OUZjz0
zHIkA@Mnlpk8o8!~$J2N^jc3w$B8?~0cuHrnE^;OTiJ#R?crK0Sb&cfwf~Fx)=JL75
z=cP2J(!N*Z)if%k@l_gMr}0`EuWRBD(|AK86yu#V-n@>#rIEKaB*S;FrEB=UhRd$V
z2Wb$pqL0$}SSNm>;pb_5s*%q$Bxknk3yptyJ%y(KCXH{?_&JSVbfdo0@J9--5nAU5
zP0T8O(ka(!{56f=(x{w9l{9|WX8Jpgf719v<A0{{m(~N@&PoaSRMbc%4X-7#_Nr-A
zOJn;Lsgp+aG-{+#D~;MZg#z=bsp(0{hh)?tVcj(9>DT&c@F5xbGrdt7jnmkY#=mJa
zNuy~R<I)(PMzb`Ur_nWyZfUegqh%T$uWO)H8tpXRI*m5EmTUF4)rqXMy+%6dw$prN
z(&%)(Z09t(Tqk3x?rHQ$V^A7{)99H-uQYn6(MJ<djn^ETWPQ`<pT+>KpMKg&PO!sX
z<u6_;J6@}u^$yVmho><@Yhb8`!_v5>x{+y&N@GkKW3^zTubbwYTaphE8jf&68WYo4
zlg8RKCZ#bsjYVlJPGbrkGL6}3%+d8uOJjPPfBmeAu#Gb{Lb3TeOG8RXADf%TJpH;*
zmzuBf1seZA<19<EJFm);G?u2ZN+*)ZvNV?KPD)GhmCuSaR_cfJ*92az39jX?(*-xC
zvHm)T4O)lH-K0}CYsiAEacdge(m0dGS$ahpJJQ&n#(^|;UboclG<ID#1U0<pdiq|C
z?9<TI@L(E8(>SK_Lunk=2#Xx~e|+P(PCS*yiR-y1HA2&zzHUUC`&=658KpDGpTUJR
z{$ohbD1Bbkl3z~aN*b50w}QsHng%lei&{A}CG~G!6+To^t_*VP#5@`0Jb5$9Tj&FX
z)O>*q3TAL)24ylRltJMPN@Vyy-6)bl(F}^|BDY=ddh{+bES^yvhccJSpfpQel^b-*
zHE(1VQ)v2|GPpT|TQayc17<OuDdccl2DfK$mo9jX_>K(j)UQu!f#1}SOzzF#z6|DP
zupoo78Qh<Nk%5`Pw^!u>4Ij$jL5-BlpnL|B!S7e4?^T&_RZ<$~YvZf(u%>w=gQZvH
zQ4NV~y(*SYucD!yfkPc;;AQY(1|MbMXAorYTn5i)5M~f%@K^?qvn^MJ0>l}lGsx(&
zNe0;r@*>4_J|wtB<4@>ZraYa&lh^U5G{Rr1X8JQ3JWHNPkq?W%kim-?yp_S*8N8Ii
z%Ne|;(_hg=DqOGP)ePRaUe}jMy{^;W(6BmEZ(c{<$)KYqdsi19h7?=<UIy>$*AKLQ
zC<E*LID=0z_&I}LGWaxu&vd(f%;573zR2L~48GAkztjcU*snCgveS?vAJuRTztfP-
z`CcPGWI%bABlVM}C&D7XX7HQl{|^Po;18Ykr>0~sA2KBTD}%qU*K)0jikfF74J&7`
z6DihPHG^s_n?a2X24^rNgPIxC%Af<=o<Z#l>SWL&gO(Z8&7fWeO?1`uHRr}!fCd>f
z)US;+q#>@^lrj)$dR>NQ8fmWK1*BSCPj8<=Yb{b64clr+!P>D~<xmn{<JKvI&KdN~
zpjQT6blI*Mbkn}X)^*ni9ks{*Uwd!Ot#1bXGGJ~W?YiX2r+)?mHJ<_3CAp@zLDxA9
z&0tst<1?6$!SD=5WIzHwBQ^b~>!t3<ks6)B82vgngK^i>S=}Q!l)WZqFi97jnZe`?
zrfB{YfLT*D@pLWZG>y~rGqiJ(fG#>qXU*1GOqru!=VmaET`7m6Wa7dM7O`CnN}6o3
zhD$PdJxA)R9I1bDq?+bPEze*@23K{~$_!Rza7E**Ggy<s;S7#sur`Br8SJ2AWUxMi
z4H<07;9p(E#tb%Tddf@<Y}OJ|JVpsxXKM!AbO*oIS+;9R3dSC~OBdgt!GR2RXRs%O
zy*h=t`!quBb<L5wX6S<%9MXvswA~p5NOm-XV;P*y;9LgBY2^$~WpG-Xo4$0CZO@U~
zoI`b@GrHbukjkg1=NbGnxR}8uopn4%>OYO-&Z!)Lk&VJ%)+r=r=VEhi%$Y)h90_uA
z@}Ho1f)WXGC&-f^UxNIJ@@>{d`n<{iYAlc_D-=plSR(}!kPlOeXr!1<EUIBj*Gng4
zZpj3t65N=eOoFE}NHovViSnNt66LGZ$xR7vPH?L(drP7!W$Re`lR1_1+@|>xVago|
z?o4o3g1Zy+OVB^TJqhkj@J@nv6Wo{Jt(+-8L6D$qg8LIZkl=@$sZ@f85<IB!avGM`
zuvX5LB<PYeH7aN7;RKH)uoBoh>roBO1cpWy<V=yzRt+7U!q<YiQm1pK+ysQ4hD;0-
zL<wF>@N$AUK{~->2_C0Db*Zd|37e2hF=Qz>SL(%FsV5RVsk2_x@F@+SP4KjC(K8yd
zX)N+wg6FRne<8tVxl(+X&gY+8saF!bN@88SLW0*c^16o2G#RUVL%)*#O^x))m3sSn
z%8Xp8_Y%CHpm~D#@}xdU@L_@<6a185U9Qwe2|iEoMS_nLe3IbP1V>prwVgYaCwJ-|
z{Sf~$!B=ER#pX`EnmhG14VvJ)1m93Lo$^iYRNdUE?=?@-vmlvYOZhp$FA1tAsFC2;
z1ivMyn4nUE-xG|<o%%DuU$l7c)E^00d`a#U6aUs(|7b`)%w=Nb1XU7LO;AnO!bA$g
zL?VO-a;GRm%>=a)G)&MaLG1)}64XmjpIw0BX-Y~<oIFWPm^V+V0bMkYs^YFZsm8j2
zO=#jgDz~YAZKmP1>RKddnV?mI)(JW#=uFk+NwrDPHbJ`tH8r31x}uH=I%qksL6VUn
z8`vd5SIUz&)i*)MJgII8dM4<VpnHNI2}WuT%k!l6=SlTW&_^?2+ph^s87MXzOAQZ5
zFp&PKZ8|8y-~`JPtVl2<!B9F$-qg|r!x9WnFfGCK1S80tJv71i1fvq%o;O9B(FuHw
zjL}7Y%$piZ-_R)&5==}mCBamkRX=a4ciz;b1e5hE%g)r#w!EqT@}_Rcmzt4aW`YF?
z7ABaLV0MD}Ov#&?lVEOwdDlx>`BD|~sj8XvZ9WBSYq%)E;soTzELPDYUuubld|jr?
zl9Kq!1gq$xjBoi<s}rnAurtA~1Z%141e+6VVSDqX)@y=|2{!P_mtx9+e5p-rb$*4g
zterpgFRM$iJ;B@gQ(Nhx`BP2ur*=?d`BU>XLQ1CWPOvAzemYo!y)2?R?Bi>`6gd-;
z_+WxV2@dP3FXT_%SRnOa0hRSkfz%OA$&_OnIiBD|f|DAj7^LBIO22+wAay3e*#zej
zoKJ8i!PNv8*jWmsE+-gUAVuWA1Q&G*@k?|$ow%Yv>R<u>^(=B^Q7nt%S>((jR~7}c
zD3nF+Eb?TLKZ^oc<SVEs^J*mD_19~OBxBZn1yhByD3Zk}P5F4iRM9M|7ff|2nEF_!
zl*poF7JCb(Zp@;TF2dX!vM8;|h_fu=l7gu+S=^)vZq9-aIgmfIZp-5KEdG5KTc5=p
zS=^b0{REsRa90+0v&a*;`3c;U#l2a)`54}MjQ=i#vRN!RQ2uBZ_h<1y7X7mrki~;p
zl*{6?EI!Yod=`>Ll0`O)R2C0q;b!4w@o*N8WMQ$2EFR6m$l}XFsal0nxeKLCrWZ;*
zUnq4;p%j^SER-5sDCK0aqEPBUp%kH?MUX{0i%b?_7FP?UVpdl;Ri<z%BDcb+=L@H*
z7EZM<oEly@HLq}LyMBEvi^sEgIg3}acp{4@vv?+pXR~-Ji;IO*PZmi%O$8Q7@z0f6
z>BmJ<&t*}mNb314UdW<Nk<_pvsTZ?YR7CN7iFz)g{+0QrqU!b4EGlI2P8RQG@mdzI
zQ$JaBDw?v3rd}+XdV_i>s^qC!H1$>%V~eKV)+vjNs*2vr;{7Z>&f=3SKFH$3EN&>4
zdZd`j+F3Mpp=j!(EC|`C$BU)jEvDe7S^TMyFQ~LE8f4Khi?6cyn(0~mmBlw%e4E8j
zS^S*EcUgR&1(o?j7A-Z~p~X`3ilu(kY?)5xgui6*TNb}(@oN?obz3o&c&=FL54v1&
zh4W!^{?6i`ENWy?GmDDU4~es=mPO?(s%TGO+53y99@o#u#ZwiFt5#PhvBqhUT3OW2
zqP`Z1s;iSly)5PxPt~P(#Z!ZdrwIAFy|~iAx#FotSv1a~LlzygXp%+KELzhXSv1R{
zc@`~LDhtX<V#-PW#Y&`FWkJrV5-O33YD@mbQeTxwwbRHmCA4o)3{B7}i_Tf}&Y}-H
zLKa=K=$1wIEP9ks!i+1CT2&&|BZ~tiQa!Wir4hD~oO6{--BwZ|ed)s`Q?Hgx^<&pA
zsT9R3m_9IzLF{E&9Li#F7DMPfSuD<CXcoh=n3}~j%9+K8EXHLqK8um;+F6XwVhl}I
zGS#GHs!z$(jFPF1B~xRwIITIejeMPu#l$QoXYp34RKZfIdrGB}QmIMoWu;Q|+bJ}C
zDP;x9Fg=SI+5cneD}b#yp07^`1b270JB_=)wY$E1ad&qQ2?<Gvhq$}DySux)y8%H$
zAR$QpXXgF*>Z{u7I@8nBGt<-4BfIZiyi|sl%Ru97sxQx%;e|51ScY5b>khKD&(#;=
zSIWRHyvji|<M>&9*-7OMq-_Ivy$nMPc&iL=m*I;td|8Hf%J6O(J}Se<oS0>JzYHIg
z;X~s*;~QuTuWBF{G?3dG=w>|AKt3tMr)Bu844)G;kZle0V6pZp4W(T}8P-t7HI%Oy
ze9G`c8GbbG@l6@NEyH)F!Ib=-&e>3x;%s8_tcG$!L;0x;zn0-Q8l<88Z0Ij+VMAf^
z_cH8hs3oP55Y%ZTTg&i=(Y(Hq?t8J3p1d;~$@VhrD8tS&{K?p5p{s>mG<X^6TBv7X
zH}#a^Ama=@tqlK|*|*R5*j@(42J$b5wU%(mSl303WIxBZk+#5rGQ8eMes07cAje@A
zs#>UKp@N0OEmX2_1aV{Cmx>lzHr8cnsJ@M*vV|%ZXgcDgvCL|$%~;*S@r|XXg<2MB
zSh&2gZaL*^TX?jw9Nt7)G?6+M-f1j+wltRd78+P+Wudi&h87xGXl|i}g~k?|SbCtF
zS)c*?G?Av3b_^PU+Gv)niL|sZw~6p!lSq$iB5f?RWwf`@(Ly^57dMe_n@D>LcQlcg
zn#i6e(x9pCFV%Lk(Ah%IrV=-mxlQHxrc$t=EDX0W!h%@nW}&}@0T#Mj=wYFkh29n}
zX)5<Mm7W&fYAU}pmH(PbA1bdSeJ%83vzrO+)4!RFY^KG^Z8gxs5DP;sEN&))EDW}A
zS~I!6nKsL#&E)-NvbmWIvvlMnr_6$7A-0fMuq`+id<%gE*FweSQe=CY3xQ{nEt|`z
z=CY)@t|+u{ZF7k%oYGudm6+X3Eo2r(S{P-4uAW<XySbDs9VZ`dF26Mw#_iD-f5c7u
z>KIGMq6#gfX$zekZ(#!4V8gL7(ZVDPA6odx!ek3mXa|mkg{c;%Sy*e~NDI>~%wQia
zEU_@t!YmGrg?Thu3rSnZYzuQNy;jl)q--$jns4c7ztGa_@&eN;f<+dVwa~ewONlKk
zx3I#(87<_77JBGu+m)uNkGGK37FL<!TyB`P#sZmq*uixcj<Rqnt!?3G3+pXxv~Z%u
zUys7E7EZ9RrG;#;@Lmf!-U1{4amH5}X<0Q5LJf>*1YDp`vT!mD%el}}CmA`Lx0F6D
zC2c9Evtbs_vv9tJO%~3yaE^s@>9H2hHhz0qOYN3ii|4kKV_Ceq+}BdxZm9?H0t*+?
z=Ud4|Y(Ne9rKKEbsTa+Q>3glD*h-J!Wo(s&$Jj3mS6H~x!fh6Aw{Vq(t1aAU;U){$
zaOjOCucO&p30Lint#r$;H|~99E4hIMTgd~h<YpuGb}PBX0P4Th!f&nQKr6kr-eKWR
z3-?=iz`|V??&jFFmivrZ?y=CcwcKk=%}~Z^#j@-|)><C4@R0GnN7xv~e+wtI*6zKe
zwKgFA@KKY?75NDZPg;1{!YdY@VzXPz^A=vP@U(?zEIdnQYuVmfo->2{No%RnMkil1
z#(Bw%RGT(3xQ*U-jcOyWvN7~$MiL9JTX=)Ps-C=MVQCvVyN&Mto5rzeaISr%@6udt
z<UI@Tn_fKKMn0fFw-G*Ec}Y1JKDO|Qh59xc*!a}KXBPHY_}jwg7QV3XD{W=rOAB9F
z_`$-D7QVKyt&MzZ;X4c87|i9HobMSJ+sfFsdJx;Tl_72ACkymmw(4h7JC~AQOdO!o
z(%*i!u-U?P3p-d{9ob@`$oOwzs|AKuK6LMG7Pw*HLyx7Nos9ez{<83=g_Uh(Q(Nu-
zi?|suV7IA-o5_C|SS(bwQN_l;7WOf`+o)h;zl8%9{<H9LTdnP2xsjX5(<VuC@j`i9
zTkX1s+c=_~RJ2ja=1(r_+0m|@9ARU8J6X|AhP4x}zg2Bivr*GVEgKctuXa-1Mh)WX
zdc3#<&|9dpwvD>H-D{-7Zyj65cIMVIoEzHdwXdO#Moil1W}~r<CN^5zXk(+Pjb=7l
z*l1~^xvlL$ZBMt;^M%pi^LEm~0v)fFja}{Zj<l_<gKcLUU2L?o(cVS}8}-^tCqoH3
z+UVL|2>7r^T}@L9Hk1v!z21bAIjy~LZqlmVZS=4)$i`rsKaz-Ew1bVlwhrURw3kcT
zOK+RM&8j8)*?6P93}9|!Jxu*=9oZO3=vo5}{;s_Yu`$%fa2q3R9dC!(dPUyf{(mMa
zv%w859mX<%cB|h(9~N92o{dLsJZ7V4!?$sqjpJ<uHbNV-Y|OS1*@$h7wK2{{Vk4!6
zZH%;$(ViXjPA@lY;Pj+g(owW$V;N(bF`61`>Bwex(DQmm2N`c;f{n>GrZE27`VcY6
z1|t}~dVL4EqJuC-O|>!2#tbte4|b60wqBq)o2Z{j9z$l*ARTmaj*YoCR@+!(W1fxq
z93UG@Z2a6oxFcO)W1)=$9b}P>`W<!Kh&jacoTWCF*;sC>pt)ACo7H6%d(=_5cCWO-
zjUw0Ipreqp*2a-Gj$u1(tYeQl%F#B~8*r4N91AXR8#?O2V)4s53j4Le#se&F;_V4G
zHrlw%#^p9nv~iM+vuvDg<76ABn5xgPaVp2RmYi<ufODF`+`^H=Bwc!w5j)dR?rhoG
zb8MVz<3bx3**MR}`8F<~qjvmX2jA)_Uv$(?ODEwpznC_pgH@MHY*g>0jYG<gckCor
z*tpWhtu}76ag~j$ZCr2T22PMRa*Yk{H?B2!7)v#l>x>g}$91EPo6Nx7V(Y`j%?3{}
zI!Wmj+~VGD;|^+|8=HpRY2$7i_t?10)(aDD#S_ZC2CwX-cjo0o{D6%IZ9Hs)K73Xu
zy=QpH#?76C57)9ssI!hd)k%-e<2IhKvDwBJ8&BGJ%ErewKC$t%jc3>@8?V~<tdl%z
z<2f78+j^6;y_4RczF^}e8!sDUzQ_>NSsSfYXRVWz)_%>#>o(r8@h&}$Q_03#rk!jy
zx2$Xu!P|#813SxmHr_W5{}JVD>Q(*&8y}i^F`={W>6*@ZbHai6lufenosI8pd~V~+
z&hnLwujvwX<qI2M8o&_5<To4zYVIuGvUi<zjeNFtmLF{V$cba)R~tXk)s1cGb?gGC
zM&&Njwu=nwBEQ-A-L#OHo7)LpOmQ23*f?n8KgMAj+imQz@wbf~Hg>YJU1Yb7KRKbg
z$SxayF{`$m-9>KhA`f)YXJKx4H+PXLUF9Dedu{Avz&AGJ*_MZwe~k~c?<#}3%IL1L
zq^lgT!I3?!tH8lw4r)56<)DIt!yQy{P}M<22iJ9#N)C>2Ku6`ez^y(57f%h99X#4q
zW3D6B98`Bu!@>Jqh2fEY$U6;&0<ILb9n^8qz(GR?bsZfj4lhW32fuZddXApd1Ptb6
zHgfc~d_Y0Q7xdcQ*wGu*mIZ0%pt*zg4mvn!;b2ukPA*7m16n$0Wk5Nzjf1uhf1Xdy
zF*5BOl!K0j*~LLu2b~;rc0fsHky55$a#^ak19b?CgKmd3cX!ak;GPb8(I5q3b@v(C
z=aBqM1?lf#fP)D|Oe|ucgFz0CcCp^YU<X4SeC6P42SXhUb8wb}vmFd~Fv7uf2QwU$
zIj|gzaWK|_?ZBaB9K;S>2cCnaN_+<&7o<p4O2#PJTaboI0tcrlxmHQ&fb?l4iG$QZ
z?x5r#bMTpxTB7+Z@|Tj4w1CJc2cxN9gsSF>oGWsx$crLhiHvhFo?URTTcln$DRh&G
z4kkI6%*J$+CEa9-gQ*Vcb(iklb@5ZX$utMIc9Yk-$)0X9)4?nUN3r7$W;>YUV3~vE
z4(2+T=U|b8#SZ2>Sm0ox!=L|_xVy~lE*rbc)!pTb?y|qTH0&Y0ddL!1*F*R$W!WCO
z{VN=-bg<UJksJtPgw+n#(2_mm?jE`&ZyK>}23PAToqNhUnzyIS=_%_S9OLk3v*c6<
z$2!>H;6w)}Is5@fInDt)b%KNAjX`eiDbMwkjU1_-QmL1acIqW3J75D&arm2SGN+fE
z*h{zPGzX_sgDL)AFWKbq2f4I;&UE-IUBYKeFFD7-xeo4k@PLE!9GuTFqVqVoz`=zM
zu5fUrspujHm(Y!SOQqg&v8jvTQU{kgAYj)9_Lj>Hp4MBgVn<BBKJG22nj+WsmTMdk
zKhayRcW{G)J00BR;6?|3_Lf^6+~(jWPQX5Lv!S;bN^c>D9l4!e*GJYFe21xhKp(lP
zkKFC>ztGFQ4(@UII|A}vAFcmB2lOKHEB2KK9X#aVO$TpLfZccSf`b<s6C6C|;Bf~}
zIQ&2DGO(|V=_||n%99SB;-EWtmbK7yeYNxa+E;GsD{uFe=NNzb$@7MC)LQlvCI|MD
zY5n9S2QNE#g`r7w@>K_~Ie3G1?k5}i$?L4KpLV1x4c*;O$bZ|xI}Sc~@P&hSDe2%t
z2OlvynGVun2KLv3^?}2GIH|$M4nA@4sd0N6oIWtNzpU#opE<a=zueQ`%#`l(YJd6C
zj5y83Qr|fEmJ!2+xcJV&_l%Y<D!KT<!H*7h(*6#9a_}=P>EI6szc~2S;XjO$EyVrh
zHwV8v*zBO%0O>S9*bBN)*#KEIKyDf!uME)jeltL}Irw*gY<IB3;eXtf#sjqxdJL3Z
z9192g9PDSa9qe)Nw}XG^r31AL=P!%T9w>WRobEkP4>7HJ?Lc{Qpd4^;&;eW==JJ1W
z$gY9%pYeb4nWP0OxH#NJ%|RM7_;eYh=@Bj}yJ+L0t&1uys=BD-qOOZ-E~-=5MJ-p)
z0?xh~WcHMFkkA9!jM^^$h+dENf<d}#^<30<(bPpV7Y$tgKW%C3qKV7DXP1U98W}()
zlcY}!l8+5&?xKZ@R<1T$OBdS)2?32(Ww5qeyTQ`h<saB;Gq!Wl-bKO1hl8bq%fD%r
zE-u*pjxIX6{GXiC+0_NF7_8mkI8&r6TRvE~ZO>q-Geo+%=<Z^yi*YV`xajG^b>X?_
z<?3+J*F`@Uy<Pq-nDj9m#xC;vyBOeNn2X`8#pT~>$zV3g#UN6pElJK$mwx~yXAhD4
zh6n)z=?E7L!euTj7cULbdTbXz4$*VdF$K%<!68y~;Zv=P+y!S!;39GnyV@&48gr=h
z87c{@?km|)NlhO)YMi-DmR$bTfQ)i6+Qr79GSbD>L*>b#GREcaG|9IHbD9&6cQL`m
z0v8KiOms2H#cUUITugQ`#l>_NGh7@PDpOs4lq=I*FlaML+;5o7G_|t<vuL_udhYXC
zF-+#V{3=rByZm2d+CApE{FY2R23NHAhRGrqi(RaCv4+NU`JcXI$Z%Qa@~bvk>Vmdy
zI$V~!Sm9!&%b)p{RRqIj%y1n#2x!<%!)2|@e`P7_TpUR-Ts|8vq&tVpQFP7`I+7gY
z;#e2+JuL9B!NqYdYIvyW;dmD(xOmOQ>$HrE6J6Zy;tm%l(P>>=;Nn6Tr?@!P#aZly
zi>@Q&G#974ID?}zLb4G;&L$UUnk?cOhO@@db6lKf_$Q2zb6x!Mdw~MP=Nl%I7rD6D
z#WgOjb#aM{OAY@@7nixX+{G0xD0#sMq2%p`5<FovU&RqL!ta^nbuO-Vaf{*nI6`i4
zaU-owZ!z_jx9w({)F`P`rrUfgM}hIGO!zb^lRI79<>E0HkGr^=HgxfTiw9lYOPytM
zzY9M1(Y?!LWSNjIDATQa$i>6-G|HFB(Pi?8%QqAnFzd`Rd7(@`GIc%S;#n8Zxx5CK
zCru-ta`Ci_XI$(v0<|sOr1q9P&spH&Wh3(fC$c3k8r<K~?WD{rE?za3j4YXI$tp|U
zpjS{cBZHBAixc0)M+U#`;vE<7x_HkdKQNR^-shN_8fji8KX&nni*H<f>*7-vpBd&?
zhJJ47m-IseE;FTAq#S&0nB`gDx%kP&&n~{_5<q7*<MN{sp#1HY{K8mgk`yQ(5y}v6
zcCp0;JRIg>tBXHe>~^uoNN#hn!^KX6w=*ml@TZ}FndDQJ>~eXlrY*yVYX5fekBfsw
zX0MBXIYSL*1NPCkjU+vgfX@Mw^{yq<{GY)D6+9g7p^As99x8g;K71+}@S`P17*N^6
zKP+YOqDkmi9GYsLcBkqdnB?f!w567Z+8$C5nTI+a>U!wqp|^*69_o8&>!F>81|AxE
zXhm#GBM*%|H1~Mw7bcr{XzHPv$LkkKY~DF&CIOXGpoI}@X$msQr?rPR9#8Qali%J$
z2M;|wo^Yk3hfW>}9+Zd9rbrj|!T@T!#As$g>gOXKx|=NGZl-uS|0!E~nj{r|YD*sv
zeLdJ791s0G^!G5t!%z<cJPh=B4<my;o_uA$Eu@1y9>g@DC7DHq!;DOshvBBK5r-PX
zEDBh(n4^K~!Sis9Be91fd*n#qA!IF%_$E2hk;vmtTkG892*FV-=;2<6n>Rh7at|dB
z6Fp4wFw)}=O<R&(80BHKhcQOgc#nG(`P7lI9(O@9&eJ2vD)>w=0?eiU$)=GrJWMfz
zLe5kV(+=5cx&akkndxDc!LvQgGhmK~xgJ<An@7z}Tus^Kg&r1p_{hV@9u|98;^A5k
z*Lhg#VHqQ{hZBsmE%&h2fE6BAdRS%f8t;EoY_+Fn91UAekMyw4!%-fNHe$zm+@5if
zmG!iPE5{g0VPdvn15M}3afWhIZ1ixVhci8#<>4e#{4_&P_Hc>;tm0Gys9~L}NAq+K
zXL#5|YLey6INQTH9xn56xrcL&`~@B^G~hf>YdGIy^wz~MI;8Cq11>gt$~9kVI8^(9
zD_3~9$|SEev|Qk7I>sSpd8@AXaD#^zILaPw^l+1h2RuB;DQU#+GV~S?w;FJpp?4U1
zyT_oa+r#Hhn%#iAJ={Y_G6Lk^XFz%2y5C?HdC0@V9-i><B<;pcl!wO-$v^7hOILQf
z^0?v96&diK^6<2WXFWXU@dG5`()NtW<ychobnVZRZ|TK_xeX2HB@b_Sc+<nn9$sNP
zjeG}BUN_)1L(7*r7Jti3x_3Oh>)~zMnLC*>z4E^2;e8|dp@$DV4Dw{H$5|<<Co@bf
zl=+0t&oEU)y&^vI@VSTG9`<<nf*tYjtB2n_eC6S5`kRLzJbc5xbLX$)j9&7-HM53*
z$um9q(Ny=dnY?VqPaa<!=nnp3I5&IR{eEX_J#6=|L)%TZF#db^!{9eP*=E{bzCwL!
z8oATck(SeE7bmQ#mvwFR<S)h_OAZ<tR`Iuo10D`CM0?n4n(?op`^*?I!tXap7NPKe
z9#BNBB5D_LSP>P9s8U4LA`UO2Vi89aX%MMoX#b*?XR=*UDi^^dF=@3TsuxkSsM}Vf
z_`e1HYBMFdxRc4XfCcLq0q#I(B5o4u7tx@I0lX?HqG1t@iYOGJifCL!lOkFb(YlDH
zMKmkwsok;&4iG_elWbuqlbjmmeQ8rf+afv@(Yc6rCbxs3?G2@=%U!x-5wYn7waqNb
z+M;x!fRUj#CZ&jOMf577cM;u-=ut$^A|5EprlMR`lyX2O0p<G?!6N-k@xI0X?GXAG
z@siQZN(U7&Sl5W8h#^G`Ey63JSi~?>#45rrVt5fFShlGBp{$54Ml-2X)IqqeFRlRx
zi_*cDe!locuqCWLDk3N%@+CBMvM<EsGaRKwWJQcAVr&t)sf!9n8Bi)>qydy%>dR<T
zV|k_H44;!?qtP>-4q*IbQW2AjsOF=(k10h=E#ieDUMyl-5z~vfxQI)Nm{FuXabywe
zikMZz>>?HwvABo}e3?_k0t1NW8ZfVj`3BtN3z>Wtn&czCEHPk35i1Q?YUnaUmmB)J
zFRKh#W9Vu_%ZpRbT9f?Jm!pa}x`>TMoLIzq!({GpMI3VoA6vwRLwKt%#}~oIoM7ld
zU)Yk9ia5E5GmAK@h*OF<)d-(n#A%00)edxZEOo{q&ZZ)$ie=9(;+!JRC*Ne9Tf}(=
zFqh3}8wkOLhEr|_GA}BE1<Aj(h|7w&p@<uez~y?ladi<_m?R~yG=TM9Q^d6fUuS5a
zKr3fEuQy57!sJaw++4&%MLb-@Erw6#?FQUh#BGN-ZXkCQac2>C6>)bF_iGQw#6a%h
zv<l>2(>B(~=G|wy%(}{x<UGjG5$H}mQpBT1;gg0wX6O@!K5l6FFwtmF74fv;JY(o{
zhCXX(d9$A{V!3JmOGUg~#E(V%RKzPqyjsM2MZ90cYel?X#9O8ad-O&TZyJ13AZ%N?
zs<#d29YfzWloqD&2L^vx#8*XpSj0y~d|bpQjQNI7flm$i+|Y97#esZb9Ohcns;`Uq
zriky1K>2X6)VC(dvHsqGA9Qfg{!a}*8}NG(n+^D-h+hq0?r#QgD7Vmgiuk*Te~S2{
zh;4???rbk&M-jVCa_6B^yNdYp5PsY=>8~RGUrY8BQO>0Py+!<21bqC<$Xvw!A`TS6
z3BoKs2N_on>7l~Id{ppJ+1JhHbGQLV_^9ZklEJKkrYO%XH)$2auWBecHGI_c@s*FS
zebn+%+s8;BqkPoyQP)RLAH96M9Y{SNO?))<QQt=cA3p?gSSSsBH1g3bl*T@iQ09ly
zC)E6AKAQXJ<fF5X7Cu_~Xyc=;kJCcAHk4Kdv^JESM?)cP=cD~0&IchQrxxybh_gAA
zE<U=lJ&|<xQ80YvLky@8NjC$U8$imkJxsF+*!bQ)`uHgGVHpj5eGK$5$VWeu?C&Fp
zgqjDK<cvrL8?ZW(VLpZ!Og%#nf#JUX7<hz9vJ|oH!|~zz@C=g{Ape|5ZjGeqGvFik
z;rn<Yk}o0&e2^dd*lj9JOp(mTtXNW-J(e!9l*MvfEV+-8kE>#>jdZk+F+Q&Maf6Ss
zKF0Yt*2e}P<9$r<vDn8F9}|5{@-f55Odpdu3Xx3pF^#K$kB4I6!`@A&KqOmZsgUU8
zJF&D$WR{P4KIZ$F?PCtd%VhOUWUf(?CNeLP1wIy<*7ENTm|SGC*f!R()W<R(NBdas
zgJKj|?t`WHtT14uk5z{_s|{FV=vqUMG<2PhqYPjvYT$E1qLm-xgC=E-$N4zk$NAcI
zae|MHJ~sI{)5nQEPND<&IGy}NPWExCkNXqd$5VWeUY5w4iIBr_{5g>`d?3}D%jsD@
z&h~MR56Y0q=Uii=^GpX>FReti7y7u!$CVrr9~b+$gd>~E<@Enlt7WN6O{vRhqEr{T
z!U(W9#n}F<eO%+?T3R^OePJom<5RiL^zQ0ZZuGe};RPQr`ncK0E$o7i2k0$6ZsT;$
z<Sri%rt(fIxBIxm)J6PzDtFQ$O^tW^xW^dqUelNR3}#E%&DNPbNFVU=xQ{1%JZy@O
z$>dR=s~Co7y1|?&)c=^Ng{FAY$5TF@_3@ms!_z*V@o`qB`?A`|v)9klZH&>#qy=uv
z<Ru?3`*@49&&Ml1UiI<1k2g$vUNd@F1(m;;$(tt0f=reV^gBM@_3??1Pkp@S<9*Y}
zk9>Ta$p@xY9~w*z><+7A*^e0~Gi`rrU>82~@wrh;fiHZ9P1Mh&d#*i!z59m6eXIzu
zGQf8}zW321K+ga_`1p}AGeD&PKl%9C$4(!A`uN4iuRb>W*y7_i6Jh*ZemDAA7duWz
z-D(_cn~&{2{y5Y@X6-1S(TQ#<r}o@jcKP_r$9^9NIQM<*@v)bU_wlze&Oe5-Ag!Sd
zlFL40TVl4H{3~+JJZSvwumJzjhXXv4%Llp6WqT?F+C2_8lm;O_B0%K;?E`cOP$fXs
z0L=rm2v9B1qgEq8%|M5O>H)Uo+J;q2+E;4@+#aA#pxv7fYbUL1lJx@AH=sd)h5;HG
z-1LxSV*{EP%E{a8|4X*y$NvFZ2WZ2mq+3g~P^N8wAthN}l6C>cl%yQfH#!Djbn4-w
zOMp%RPA=)@bq@4OM9?)rA%F@X0lEd~Zo0!P`Z<+cRnmRuLr$*%y{S3C*Z_S3^bKGI
zumki9&_BRn)*fI$0Q&8~0D}xDAK8aX+N!LJ$)Uzd!zt-wn8EbD5dq2qJ@+Z_UP*S8
z#0lUAhyx@6yg-L6KR^(mNVA)$QhB6=rg&r;+-~Im>@aMkqye%3d4Q4`KI)t@@_)lR
z($q3Kz}k^A%1~OSe7cPbFh0Pn0J8&32)O;j<N#9wTsTtqeUhn*lI+*i0Mi28#Trf3
z)WF_NH<*SZf2PUhh|CEvH^AZmOPFgkEC{eL!2AHOm?n|3I}9D)j+8}#UZy#@_KcLJ
z0hZA{a?Pi&E;pFDtY}q$)$CV*hXSl&7udo87X>&nz`6jZ1UNOoQ2~w)a9n`n1FR2l
zOn?mm8jO--4JGJ4O1L5ukotz6K(&#a6kub3nWN-HL&+f~J=x?QGfGYiaC(5V1DwNp
zN68rhHU&7-;5$djSpmo)U=|-PXD^PDa|2vpic{5j0nRs?%hi5klwTa+k^nacxFx`)
z0WJ%0b%1LE{4+`}4{)VvJn<DqGXeEqWfT%z8{oPCHwL&V!1V!cpxca=X``jyXi=lJ
zBq@an_^>0l(k(eU0qzcPyHRrFXu0DMxRYiat-DOh=bixf1-RcZ?>&_DfYC;yop1DW
z$MP^kM}W8Vgu<f%9t-eXfaj@yv^*Z*$pBArevOtV$Q-TP@U*G!Swo*Ol+15U*1^&8
zLVy<oyc%HO7%lu#fS2j>2D6Xkyb_>%$X*NZy5YQGD7*7!fYC;h^qm0j2KbC-86)qR
zHh&o4qX6#*_<%lX#HfurKMwE--DZsLGOhQi=_vspay}361v@oHJ{Y4d^JRdq7~)KE
z3Vh4p&zL_JKaR!s1RRSJZYtqN27mT9!3zm~4)6<$MA#bP*8sl-cqzooA$||AnbRS}
zq7YjGY-Rij(LKZ;0k$#NhNu!^dw?AQ_5}EwHteHz25@StzXJS8<sB3`yO>o?gJ%kA
zHwU+odZ?!QC%~k3>Og>l0rm#?H^4r2bAfuRz1kn(!#3(SS6z0PBImyV2yu9biXs0q
zj5;htg%BUjRG028tPV9Lt`zDbM}%N;GAoW17Qg;zRW(Gl5Dh~#3Q;{ojS%m&QguVr
z46!j&wL@HXgsNpIL5s1%+&U(!ufg>~)DO`h#IyZXv%czq-wO|9s&R-WA=-s#AEIf<
z;{aNPXdNQiQ)nKdMTnLmhWuT)qne7wO5Rr8v|D55{<^o&CPdp1GsX&;6*p^shY%e@
zbPZ7m(J4gdkbg9-x`bfX^Ys+*x??q<LS>j#C?Ve^sVnCx;-kk(j}SdWgdw63y+ZU3
zF*L-m5Pd?NH&*(G7!aaw2sXYSP1iuJE~qDltFvpXfgwl-hj?wi8WiH=KMMpy4D<G}
zLiyn#MuhygY09U}_Ci?*JA}hQpR6py`EIasLwE)kL!2{9JwH~+q`>E6<)lvPp9v}m
zL3&JQ71Kl^riGXuA`Ov+7$0Inh&)6o#F!9cLyY7Qv+-qWbcn}x6fSP7cI+q&*;zPa
zq^hLUxDXHhQ{c0Gtc<Oz2quPL)@-GwgqRd!GW}$n^sJzojT3^YM*fsz^uV=jq-Jnv
z8mW2gQHWUv&kivs#9SJ1oIK>KY@F1nrYJLaoRH2Bu^`0yas1Ocb>28x9AZg`%R^id
zVrhtFAx;T#YKY|_R?x_M3mZeM46!Q2(JU3>`Q7wStPOFb!D~WvYpE_gPLaRPaE=P`
zert94!9sqp@cn#sOo(Gc9M4+*E>LEJkw4BzQihT&enJRJGPgk|b)u>CB#vyRP7cwd
zfuawy8K;FfJ;Wu(Th0h^`#9MY;<<5>)l|f1hBzz4XSLPYhIz5U=NNh}9mat34ZXln
zN?sV^qC<F=tv(+o8(XMLjsD9FeX@<ByIvXMDtgG4!aX6b4)Ie>b$y5%=pMDyH6eD6
z<5?Kj8Bk@sF!x3ps-C(f#I43rZwhfU?fGAU%G)kix3T4>gLknC<GptpF}f&o+1c{R
zcsD21a>Y{jhPW@p{ge#xWQeCiJjl@x@hBaM;p?Bm!y)>Qmq+Mq%~b30GJ3o$9xu17
zRgbf&mDCd<P8%=3)m2|CRAiF#G-o|c6yli><fvL|LtFK{!7qe(F~l|F<-zeXVX=B+
zywu!Xpv)^FUJWrd!n6plg?OF8CqnfIZ-jU=#5RUX2B;8khxjDKr;J6t)H@;GqZ=^N
z)=}@W%k|Vllhg-{W(I#`WXSw+qM|Ut$A(Yg&q912;)f7FhWH}Hmm$6h@ok8&LVO*f
z&IE}%;+ygE&v^MOR!n|pnBQ}bOpq=U#GW7>tEtr!<fjlnhuF;U9^#h}zcRM4F`TpG
z<*W(1?EYzrdKj!I-_uoFIi?fj+iL0$ntGagYJz+=L2l}=c5q}Fq9as_@Mnl!A@+sX
zA7XWL^;d{JA^r}ro9;1C^|sWW>FS>ldrk6RBlG738FGxO)k|kpohU4IAjE$m5aEGl
z>LBCoL}Bh>5h_GDJkoml_E#_VRg_${vp}5$M?|O`p=zX!StSB(ML?sG4w)#V<kW~z
zGs1uf10&RmP&-1K2yG+OiBLB}vxs|F)QeC*LZb+cBQ%Kc)#gG&N={OvC(5{;1wIc=
zR81l@jrgCC75U313c;vB8Z);=gjNv<T1JRRs|s_~%Ux9K2vl;)M4?!_2<;<ukI*AR
zhX@@bbd6Am&?!RahzCj4CBmD36bOFbS2$x|VZE=O>#0-(iO`Mxaul;V?$!b`4iqT4
zWVz}Yp;v@H5&A~Flu(Nns@@T*by3$(<kw=VA8oR)(4Tef*7CP)D=^98gCY!$cpZc=
z!leC$ArXd07-8_x2*cR@%If^didkh5tO#xdkImj+unl!0>^e}G+fh9>QRdH8<QF6O
zrug|C)IA3ZEJ%JtJ46^2VRVEfLK>lLu_{IQdZJ_z@(7#SsXY_rwYKW^orRi{WMqVG
zJr#31Op-AX#zvSBVIob+CQXv@5k|IF<0#fz-MOW(v9+2MVRD2i5gu%<hPBX2)=!d)
zCdnO><oQW5ox>F2jtF-~m>FSKgp)ZC5oSl26Jbq+wGrk<m=|G5gryPYM>w!j?;;jO
zSP)@hgfAuulRGELqV{UeIJG#!@$*#G$+9d0m*y1_Rz_g%a*pO?Ey?1mBJKl0-0CR3
z58=Lr1&@rdF2av1)$tLIGT@j9$3{4sLl$8}NA=>?!ko<ohS0uS3mZ6;TMNf=(EF)P
z-POo#1qz%HVPk~7n+qqJ+>;EZ*pSK6)K{lQI4!~z5w47IdW16~oFCx=nwJ)vEN4eJ
zC&HN#&WdnVFSTH@Tv}b7G+EA#_|M<eJCo%+mYpmQOcv%=Yo{)Za1s07NL?1;;s}>S
zxHJN$$gh+frm8g3GNk83>hg&1+SE~#6$@TvJngy&*GITI!Zjwja-a6MYa_jU(<g6;
zaAU+<LEIMMrU*AjXgNi0VRD<!rSLavwTH7vpD99jz1=7whgo+;xI4l-5#Eh(PlS6T
zJRRYg2=_&}pDwz)@E9WoJ;C5dSfc?C8yZiMVS^N9?r*Q@qlS6yABD#wJQ3kZll=TZ
z;VCx$aCO7}!i*_G$!8-x7vWWgbPhMix|@25p<{dDg$OT3_<U>O^Zshx6nUYVdO5-?
z4EWm$@BULbdx|jYbtCy^gtsW!U%e6Gn_W79FkHMH;lD0gm<5@9FT(o~exp}Rkq;t#
z$k{>R2p@62vn&T9!Y6FQ_QIzTK4X}2RXj@FK1FK(Q8;URftxgDeaTXL3SZITw--L@
zqsV+^TjARX-%)LZpCWv3H2h#Fi+Aa)p0A)@oFWwaIl?d8{L?+Q7g(IyIvuHtQ{nGy
zn6Ea|*`^4=?CR<d&QLZZ#^*7%N7%vX6JvgioecgFTEu7>V^@T~xE#bdBIeyM_HbH7
zI2hq?&cw|HKL1Ae$Kbt&TAkF^4r<?_-2F7>399~7q2zxI`|<xuA;w__Z#+sBOzz<^
z?wzhG#yGr<q7uqij!`{EjTlu9m8u$}+9BM(qpBIBR*d>F8W?8n7<CP(W9T`5>E`jN
zXOh}yW~zoUn#5=tqfv~;F&><+E21jWW=5=e42rRA)<M%A^;D}Etz(ptAEQl-wlTWI
z=o+J4jP@})#;8|C{dlm@Aw~s8)Tu(7Kh+DJVqDuzO_(a3W2~AgXH1ns3>Bk)i~%wK
zjT*Ye=ozDzDc(KC%~Pd^!SAnA5BE|`_KwjfM&B6yVl+EYAg6I3b<YNMaFAk+J*uds
zmDRu)gV>QiYFLcHF^0q#8tYLe=cCo?g{eYG7GZLDj1e5@ChD81!e{!w1v`clV|0u$
zG29p)8@8*E8d{7I#0X>fCi%RrF7#Doa2z9v@qw#$Pn9bxX?~4q(&3Ln79)>QiZL?A
zC?h$qzWSq$BApWIhswvs7#CwkjF~aU$CwafN{p#7-f5sF#+VdiGP5eEj??%j#_Fi;
zh00A-*)*BPJ|3=!r^gsOO|G1vmJZiR%FK!}C&rQ%YPM0bc$%>I+!$y6QD{9{ojOex
z#8?>Pt{8X6SQKM%jMHMA&LT0E#yC30`WVY%ERV4^#*r~r#9(ydvx*?bSAP|btf2>Y
zb&NGJu3oM&IgRS7bw-kl@=>vl2BS^HJFu&8OpIe=oEYOIc6MiBLyY6u<ss@g8o$5V
zc>@0vraB?UMi!r`o*AO|6`MkJvdKNg6j|9-N2gN_W|8Zs$r&*=#kfA!tN)oX&Wdqy
zj7wsi9pjuB=f}7p#<?+`ohE1PFPz6&FhtclTtA;oli#Mvg)uIo>vloi!<5rqRhX{#
zftSX(j6I5RO^nN9ToL2Sm~U<H+5{~?A7*iuZ8}}rbyt+Xmd-F)^_VW#8SrBT#mAd2
zH^jIx#!YnK7`Mf^J;p6G$XYdap}N&Hn8s=NmtHvT;AGidxYO8;Ys4A*3R9;G={=nI
zG2V^wUX1%<+|Q20crL~--PHpz9*glf=V{D0L3lVui(Q3BVmun-v##pbQR<053j`ye
z$bZ7*J{9BX7*EDHkf|f5ORb4oj55y{g%mq)x;!7_g&420v+Q+6^<s>dW7z){UNW?O
z3w7sod2_vb#Uv>}&g(JWjPX{C4{ND6IBS+Gg12L=8=~G}Yp2U?xfWyc<LPqD=ED0i
zK92E+!5_pR=ffBu89@B|Z1suB{nXH>YpJx6`Xa`cF|q`Cg0EtH9iw)FItjkv)UL07
zjPX;9r~WN`8{^i03*W`~K1S6U@`Iu6X9%O#&+KE2e`D;6@hjs%j2#T-9EBJIXULYA
zFO{%4=I<}4@iX*3{0|1$HEJ7!Kc~YCSvgQoQtrU{oH|4PWbiiy|Bmq&gFiiRhU}qD
z2I?Jtn?ZW(enCBR3W%{c)@KB2V-~mi`)U6el@c70;2^!dg+hYE68vW{lRS`CNN{+9
ziV1k6eQ|~~uC2)DdGL!FvVDeBPEaL5^#nB%R83GV!CB3<0JBJ0gn-9b(wYfsB_LqI
zsxvjSZi0FV`ce6gLj42{60}XwE<wWtjS@6Z&>}(OL|-EDtlc!xmq<-ak^|AqB$>r3
zS{f#s)Y^bn3EIrmmrHF-vivHkeFCoCT@w@%bV$%K;lKV<of33T&?Uj3nbL8xA|;bx
z>`YM!Btg#vy%OBHz0fT|_XIsCdAJ%jM=cFBrNSjMrFVip3HloSXU&u+W+}?tHdCt1
zRu^?v{SypGFpvckI0@VYgA)u%Fd{)&f}sh9CHP{d3{UXvOyP!&7cbLx6!_34R)TYv
zDcjhGSv#Ak9W#X-FF`Rum>^2vCm^4>L4t|%RrOiYdq;sXaRMqy622$Zd<wLirS)$(
zs5O@oj7)HLf^!m#N-#RXngnYTj7cyy!GZ(}6O2nRKEad(Qxi;}k^~o<BZfX`&=mU%
zlN0_fvp#q5sd}(5Ey45za}vx=FeAat1hW#%<{(y7r*~64q0H>7C`RF5JE?c}7v?1(
zCY^6Illj_G)#hMfQG&$@RwP)NU<s|atFVks{j;!?79OT<K2~uR3+k!mCacfp!YTu}
z#*sg8maL{#hbe+@+NvWHY)Eiif^`XwN^o?7^$Cti^c4hi{qFj9BA+F9PEp4uxTB+D
za>p=re1a1boWvQuR-KUOV7@T{k9gc0pPb;71ZO1Jl;G3^rzJR@qiL=mc`d_}3vXt6
z&DGbBXL2GW`j+yj<J7!avSF4G^Zasdg7Xqwli=C}uT)XzC%7=dMF}oQbYy#{og%$>
zmRy|R(gc?!I)+@5V8>{+U|Zqx1Xm=un%=uWZ-lN)a20Vi{??neFu{GZgjsLQlIs#&
zPxB_YH^B`FZls<Bw<WlVeV-+_Bv7;E<^=m@$+J5P4QC4h>FvgncP6;YfIH}ZYjvox
zXUqOY>TXWYw%W)PzAxb$a6Fda@dOVfcrekMu}A16v*n=#4<}eQTdrHD;*RR04(i_Z
z>d^!Qi#sVYc}@L9f~OKZZJ1Beq_c%G&u|JPc#dseuO&&ZnJrYvg4~zBnBb)Z_hq<0
z!^<=slPO+K@oIwCI0Pw%rg%NU8w^J&s-}F~j<*v0$o?jHn{gn)hpaBayT*F&)1)KR
zdxmx>Q(yO1wA%;l%fZ6W?bOE!K4EN6@HMU7SbfSFYQSd+KBr?$P+=2w|7`hsy!z7c
zDMQXThw%3azD@95g7+FLW*uKeai2r*LxR_5>x+?}6a123cY-|$eogS3DY%24mSA&&
zKN4&+oGl5q8o;`ocIx}tGHRmQZa4(z{#&4L>>jUnCipYKF2iRne=%gOP|cet=2GVG
z1phFeC;TP>dlUR?eDVN?-T=Dme$I$Jg?siCcA87_gB*I3+&fziOHm;O@6{`(I6Otg
z6qQmOk!r85Ge^425f*vM)few&bF}A^&!cy>6xCC7O3^t*jTALgG)~bZMXeO}zCxW8
zbyL(fn8~H9RlOATQ+;9HD8=|W(!gXjOtEZ^FiDw-TMB2)k>?w!rYT>EqIHTkDXyO*
z%~P~Y(JDoY6nm;DK4d;MM?RY)w+~f2=SbTW?NYQ)(IEx-<SeMFD$kWxbET}g8aP)v
znu4R|N|zK}Q+<KZH$@?ZO3^Jv_Y}PGm^eU5s_#IWRZ_&fJn505SBl;#<`h-W6l5}Y
z)oj(rh~3m&-)b`1F9l;l{}cmK3`{X7)z=q;Q}7i-`5nb;%`_l$Sc>5(ma@w!Mx-c9
z5!1*itQ3ppik~7#wJ+HzoD^;fFV#-SAugskb*@}JSMHxHZ_O3nk%k<v6bB9dVXjoH
zqZ-bWG)0zTYKmzoa?^~_DaNGwwN8m`PBDrVwbza5Hc#Hn)Yuf`*sm0mI3h-Vf-w%8
z$~QjlJYm6!^JH?0GmlnNQvQo?%_nB@=_$UcqGr=LDP|ZvGsUbFkJV7*^I6qh%}p^c
z#X?q^V!p{;U?h*6ClsjAQj0B4vBWU>ChN?3a{WAELE_~pR;0K(#Wg8brdXBY>=fs)
zc`4SUI3~rhDb}WVe4eaJaa4*UQ@lS<HqR4sj!yai(9~;_)p{ylsVdEvt;eWV^JPPd
z<5HZFVpEFaQ&c`yotEPC6ek$G(a;kOJ;~6M4L!xsQw{AqUs!5FAC=4(YJPr+Iy1%P
zy9#IaQD>RDm^*T%nmb?4O>tg|i&9*i;(RuEzFd&%b&z*=8}}A2q|Nsi+V<ox<`gbT
zacPPxQ++FVnW2}bxFQ8F0C~$tu@lzoRh79{(TsD|Me~KsYg1g8;!zr$bA<g(aX0m+
zxG}{|DQ-(~dy1P=+>&Bn2i(ee(OmIZ$LG%ZLi+N2xg!Nnc6X+@i(PA?H#t1wF^ea)
z&*#g%Deg=0aH<c3_jB5&{44|yrPw}SDlCvsRwy3*SgKr}OoB(~V-wV<HR|ycPo#Jz
z#j~6msb1QKE>%w(@DwNV0vWVGMlKNYpEC~6X!e51eV!xUSW);z#-F`~`3t1gzlB#A
z{OO+=CS-Vx!Jm;KLz@h5F!-m~&8eN@trTyk_%X##Y;cNqQ+%G{3o55q(En3>OfTA3
z_#nmLF6u)j9ewwE>;iePf%+uHrzt+;NG*^P7b+fw2p(RpD6_7w`ZC2=DZWkdU8;8o
zU(;6&pf(DS^5*&bL!2MzUFK45;=Tfv|D58N6n~`Hmg3hGzopnhH}0=^<@kGw&75(Q
z<cgBw{VK0j?^z&QY2?;w<(9(3l@xDTx2M>d;?ER2=&|h-Z(muEA!wH=_!rHxK)x~0
z-Uae^ihoj6$xt=J-W2~bhG&?wtFSM{{uIb?Sf<Zt2N*O`{Kp_aOYzmf#zgT%#;bl#
zoC+E48>bG>P%#6UgSx7hkI*NzTOvh1RUMI`vQfhG9hucKRL{^bL!%5eGStjaCqvx~
zr!H4*yQo?jYG;_TR^9NYz7nsqQ0ir<pP@m9BWLM*$PP19VWGZ74;RY3h0-`flMKx>
zw8%ha(+tNglxA$q<^s?7moF5a<yo+0rcd{+j0}~OE9YykwiyOx7@VP9hV~gcWayZo
zM~0pmI%VjbL1mB(T{3jdz?Hg?=}60!ojy-Le5kQvTqWq1p?ikk8>mGS71v^}zgIR;
zy)yL9&_C18*(XEaOo!!u8JNXVl<d(^J+M%ya6pEE8MuOT7sqh@#zGmAVQ7XtLn*_s
zjNiz?%TUZPB12h*Ul)p-!OCD~a58<}&DeXOyS~{b;4L@t!G%J;pCQN)XGk*CTO?tI
zDANlWZ^d;HbG4pk$TEGe-f@`bZ~>A<`flM7UUX*|lYz_PvyK{-ft=A9e+o)3ro>~}
zfJHJc!}LY6evwSfFe$_78P3QsnS+>NWrkH5re>IyVNr&~l*}-L3NwA#H8aC3I$MUh
zCdn(!*%`l$QM}z6(O%7CXWOd@oz#3z;ZFMQi}d_OvXGwBLtlF?UZZ$Zw<N<ei-cfl
zhGm()yIXGPiVUL;(*g}@sM{9tqd~06^jqwcGpwaAW!U;>;rI;eG8{z>1+^i=(HYif
zI3~lfG*NRE$Ewx|`UM$j)dAYE2|igQ#~FEkR&hecBPUMG&~3gtDFfTq{WwLne0D4n
z)^!TK+EiL?v7E+nEYs(#P3&Wa%QIY&@q<RRSS+JksS7ilo#C8J2R)9?xf#x*LXLPp
zy-&M<4!Kwko2FhFuXmCcWw<!QB^g-oQV!^1IkBR;zMYCXtIKH8#X`=N8LrB3bB0^!
zei^P|Q(LGTGhCbLP5AX0zA7k!>oVNEtHAv;lQ+<?brk{cKyISjSJvRxjNhk$*1nT7
zYq8v(fiDN|VC{?f&6OhNMZsNE!a!l(5!{pEUiQKa5RJfs4`g^S!v{G&%<)i$hckpZ
zq8yK8c$B4bRLJpIhQ~8}PAAOpM5gbSU&-)lh9@&TmEma`Jj3%DUdR}76)#?%<wVZ#
z_9Bg+>!Inxi}_V2UgG9I17F-QFp~ajE542)el5f6oVgj^XZ+7_V4iwA!#f$?%<vY$
zVtt69HR2)a-3(h6>+4ohKD@>KAj5|lK4H}vK4M^5A|G?6n{fT!NX0ubc6`lReJb}>
zsn0kg0@Z4Xd`Syu*q&iWhOZfXGW^16oAGN>e3#)zR@zH_Zz#bJj5!VUs?m3eF!@u4
zpEF$0S0zhi{t_YhjWuR^5#O3&GbjG;0=IBm7*CeSRZFCvr(dA_kzpInxJ0k=d=Gf0
zr*?9%=-%54`!ejx^fl)040{ati$Qo>q3dw<cZPo$`7?gVs;AqhON8{iCF<xldWzlJ
zLG4^3`)RQZ2aT%#G9cGFt1Oi^OQqvP)px1B%RM|t#T=5OTaHROj>u6j=l6K1oa@7B
zwH(!RRLOND43<jOT>JU-rBWkD%^XiIl{z_U<yf;+YUkkH`=+HbdXZxC`lV8rp0iYb
zUn<=AHOSF0N9!DIax}`(I7ibQ&2lu!^<nw2Wzu+=l!N9uTI6V%qgAfozw@OzU$1vx
zrXPQqOkbv7ySL5JE=T7aU2?R~(IH329G!9<9{EafU|Yrg`TAx09U?KmXzH4ykn0Nv
zmFxF|7cLWCJ21)T4r<QPBge2D!*le^(JM#49Q|{BXV^POUjvBy<alnGe7;QRz^ezS
z^S2fT<QSA=aE^f#+gjiY?*DqLA*`r_K1mJD@#iw}Rw$mQI{sZ4k)td}jpgFy`tvF)
zhhv&#=Loq%&C>y#?QwIkNv~L{n8T-SPf$UQZT-~f*{b7mVKUB<<TyRY89CA%S&k(+
zmgdNFlyXeZF(b#w9HVkf$@La!bdE7OCghlyqqtng<`|b_e6GKlnY>*3R#M~FDe~7W
zmr1$)*oM#Koc~l!@e3J#W^?{>nQHWKEuNO^rJV1|XXcod<Aa@rg*j&Dn3H2Zv!?TN
zW!*vEPtK!3`s*NbyGbtKnC>d@Lb&$vYEiED@QZWoovc1RM!m3HmgQKU<G38h=UBnI
zs4B<09IJADOj|fYt>MVBQ>_&@KVL1E^jNhv2R||?wp2&uIGSThYYbHDIZ`=}rGwQ{
z4=++T)=_^iml`Xi))9&y&pa6_?!->W^?~%H9K2~9)l_ZFaiZbWZmw@WPtI`)Te7Wi
zYL3%5Kr5u<3aQpu@mW?^ZOU;bM~AJ-aaNAAb6lC@svPI!I5)?|IWEa@UXJr~Oj;oq
z(bZ?l1-ZWDyfD`v<nUt~atL^KTf0JLAFD2<{0g}&=TF3{m7*@saRv3SklPxmi>B!J
z!d%_1&T(Ci>*=2x)HOM-HQ?D5;-%__95?2;g;O#IFFJ0@adVE3R_M#XPkX4}R_KKc
zD|s=F+vy=?s_9B0?Xyy%m2y{(yXnsy@f`Q$xHrec4D2};td#q5+)tb2;OATXrfcI$
zd64m+&fHe<9Ll5dA7$#&mGUTqKO;bnr#PTF=qjX77|+@IcYz;Y-Mvzt&hd=#nP-g)
zaR<nCir-uj(2-uq@gis3SoKzpmvX$E<MkYGFd*c3HOFhlXZY@bo7GoW%G5s#->nq-
z81b7q=t#8(>dk6POTA4a=Xf{AXJgfSbZoY~rkXWI?OrLf8z?^Hf0W~6PJt38mGDW9
zPZ^F%XjH;yIX=(vcaDE@e39eJ96#pxDaTigUA5FVIlj&D!j{6<#@ngqyBy!=_`x^{
z-HA&rS8y`dPF1D)>gOE4<k-&0nd4WwXwEO>u{Fo<oENKv&*oeo9$Api&m_n956*5{
zsi4}e67Eb|jZ-%={?ppV;de7K2Wl5X$13@YqtjUJ7@^0Jms<QnV-K6UNKIQMdvpBD
z<+y~yOW4QZ9;X)<l(0X?ft+7!sDqsQ{nURPvXzQo9nkCejlp3hT(VGAHCOi)OQ=*r
z%@S&ra70O;TdR~%wS>wgy?F7dvq)7dVeKlZUP6r$E?Ombt&)mk^>LNYORMxJJ+(`y
zS3>;~>XcBoq}QoYbCm1ok9jKoTVV2=RnnjYV!ropTtbr)29z+cgr+4lD?ybYB{VOg
zMF|~B=vYF_5?YnewuE*iy|rjv0^bO?F_`N<H{1WN624<SSXptoZ(qXO26QT+b4kC;
z?po6OA1;OUS4)=?xH57hdT~!xFdFt9rtez02k2Hp_Y!)P(6fX-CG;(!R|!LUsosYE
z$#XP6FzcoM8K)#y{YvO>_}y1aakX4NNl{=>34=?>OI#q-kP?QL;FRE&Fsy{(CD<i>
z^cYbxAAgo$mB6<NU52QekJR5D@Y{gttA)3Jy!P=*D3%bF5SQSW5R?#>@Zf4WakcPW
zz-6n28x=m}BqiM1Mx`ZWwCCmmKeu>iwQw)-gQ2AoMwT$DgwZ98FJVH7e<gvjC5+?1
zbyoZ!fuA(6_Pwk1XAf@<)|Z)e)(91D=%6N-Fr|bu*~k*6mN2b^BTHCU!t@eml(3+L
zg(b`^q0<_fQ^H)DVvWqAoegKq8d<(ZPG2MQXvT_)FU#haaQtD4oU7Kzq7oiiBWnz0
z7Z#VmzAPzWsp;b~Lzf%M+!Y3_G<21rs}1FDZEXp>9(ikxa4U5bhqZ(gO4wM!diqQ?
zwV{OLN;sy3pVmmFG3wZozP2LZUDoj>Y?-O|hur5g*>Y>)#1c*|;WT>M*1}08{=o=N
zDdFz9dSA-t+i{A!)6+}XL@yno&M1LNKL4(fx@-AkL+WfgWC@p-a778{mcWJSLbjxZ
zI*%<Z>7B*}C6sT@iTNo4*Px3^xR~><giGl#b<|}XzB-EEJ#q;std++`sw+#ls)XxG
zShZG0td&Y7b#)2XaQOa@rmFzIs(9Kj0@4yHWr6fPi->@tAgF+dg8ok3({WJ|6cD7l
zySux)y9^ABzl9wrwy3BeDk0yy`}=sF^UO16&+P8(?9A+*y?5sH68oOemT)#NX9k%X
zA%6~7#=oH7pe<L#-xk(Z<zY4L#l)>9*5qMr9x529Xkc9))^kF2OwzF-4;!iBI_}W1
ziI$#+Kl1P=?IjOesi=8)HxJwLussh)sLzyn9(LwoPagKNg<fJ8r!Nm5^%CoPi5Gf_
zKYEE0y+yU&VqYE(<l!I%)m!YRD0+*>dy7Myh~DC`f}?tiMZLwY-r~L9;)OiCn1|Q%
z@J1e9%EQq-ypo4k^YCMDak;m6nVz|i5Pif0eZ*^dU=qu5eZ(;iypQPKM=b6m(^|es
zW6uK_c$>WS5&!EWP7>zfTpw{=Us1QOXx&%5mxuTB@KqkZ&cpFMe2|CF^Y8`zKl#tY
zCwcgk{yz__*srgw-d@$>7$^4?pDCW#_7z9^iZ3amUg88zvak4{ui!vV_Z21kiIe>E
ze;$6OQc>CR@Le8$;1Kfgy`sFQpD_A~n*AgvY?JUOnomD5sGpeLPyCXHU-R%=9!_&Q
z`iZ0c1m*TwKk;WjImX}VJo`&=ae!y?aF+9^qoR(#I6yjT9aro4I}iWl;lDgw&cnZS
znEk~CI($xLKXG2cX8pw_)gz~%dw-GbFDNMJD4<K4f;z6!F}}Z8(_ePVN5l*1a->K4
zi{t%85gkQ!T%)73j$%5BlYW3GspFUaqJ)kH1LXX&<c0x)cqttZ4G`?8jE=H8uG4Y7
zj&eG#Rg^sj2-Zp!G2z4kVudOxuS@kfFhEq&QCUYd9o2Q*pvxJ*S;s9pZq#v;4tB@t
z9Kt&Tq?EoJAgbu7s!JugRmX(^qRc?a37e{+qo$5JIx@TlidqWR)^XoJ!CO~BO^48N
zn~r+wDQneL2no6jltLiFq1~<ui8RpBP)8>nPwQx;<4zrp4p+xrIvVR}&4H6)9rx&X
zKt~H5O>{KX(VU&?xK~Fr9aNZY1Eu^&4V20=f1tQu$NvV3{|3sr{&Ao*pO!jW>3C3=
zmQ{X`ph}Pvs{L()1WVfJcv#0{I`VWpqNA;j-h;%WI@&3E60{s7uW*o<I7o1?x(-8!
zrNdSP)Gkw1Su;o+9wb=z<3Zy0K_aVz3=|(MJRKbA<2s(u;p+%=ggPP}JqC-Mj#x*+
z(G3=<BC9@F@FG27G+4CPF+r6q87!XEu}3|6N+BI6mVT15qmDNQ3tq&Z(a~8)e@?xQ
zE;_pE=&3VEO=`lkRJI|an~tvsi@yhp?mC`Rc#R>V*$~l#BT@)&dn?MmI{N6Kh0;-U
z86x^o)I%gPe~1{UW020E28`D+SjP|@BXo?^F;q3k_J`{jrtn=u1aIkWSc~nCQiWs4
z@DMRt$H^gr-Hp{j$m{$NQD&&5pTL<_%+whwChM4@<2@bk>zJxznvNYhcIud}Go%hH
zbgWbgJX6O!9rJa}(lJ}d9Ex<P7&BCK8!Cv*rCup~fsTbbmg-ohW09)3L_MMjEM~c)
zAti5Fak-A&s)RU8R_R!+W3!GeI@WLqLm8uoO*+=<Sf^vXj_-zw4LU9jl}?g4k+Q=?
z?O}qHENL}N!mXTog=|wTY*)7|=`l>~Vs|=T)bSGMSI1r*2kB3Si+$9AVdAG@f^ff%
z13Fd>6GznT`@_T`9fvthil+5&@q&&D!^QJlfQAbq)p|=Fj_P<>5xlN5U=S>PO~)}+
z@~VQdqU<$X5Sct&yrJVw_A*?&MN`u8Hu)JY-W)F8(ebXLXA69qPfX;vjt_MFsN*Lc
zAJQmve4~RV@Xc`Xv5qfwoY3)!j!%`p`b<Zy5#n?Dmf@o82toV{g%hEcvZUz<@fGz%
z5feX2lOG|>5#n1)SjYFu!O|*!psJ6Ms}&({f7WqI2MiQ2@QaRL>CbhX)A5^*)0E^0
z@dsI=#*PrnM+idtNy0yMoY6tMKC5Vc86oKLj*k$3Q}QFlc`~NsABFSwUxic}De8_C
z7j^un!&CSrx+aCtKrSmYA@NlP3K}SGpoD=QBSj$tR~sl|ps*pm)5MX2g+&bzDaI|t
zNWnrnVIo|JOByI;;97&RmUv;LxW+&k17!`AR<|tqbfhR};LJ!-eUua$k&>fC(^2Aj
zML?vy0YYBJC{f8kWdn;1EHQ9{fg24(24Vv@8MxViW<VIY#XuDUwGHXas~Wh~0L5F=
zKs7@y1l0{ZJxZ?N99InkLq>^Ns^3}$){hdrDE~T!bTXWdjDZ(NN%N^|;5Gxz*`|Sd
z25vWSmx0D)Y=o$9pn-vgirYIBs~prvqvU>|5l1>q{5DG5sSxVe-3AJcmb-$c2JWFK
z2FfL=iGfO^Wq0=)Xl5Xz2nbt@7WW%?z`*j+!ZpysKrmXgG|<YBZk8Uh?`ZKL#Xdkd
zhFl6;8+gb-8v_q3{@W?Yfjpv+wxk>_CH$zmeN4eT1G+*C1C~NaU@C-mVH?O&ZoQ?2
z67mt{Lxw#Az9CnZz>v#OXn<QaJ|#|q#6U{H8W?IYY!>YebT-h%z~cs<Fz}Rtjs~7o
z%ycmD!Dw-Kv>;<#$OyTl(pz$e(23Jz;M8cj8F)q!bI;S&z_aYvKp!gP7}3o@cLUEU
zPIy~sjOd~8o|Gr?!E*iTrQ~zR7|~Zf8em|cfyc&(eg?R|>dzMXh$qGfRv%=5%kE$`
zcHVM{XA8p&3^y>vz*GYx42(1|-oOM>8W?S094&ODpb=4>28<D742(78-f!9%v0=>r
zn;18ol*~i}lN2#2Ict*@87odRFx|jx19McrGn7HiGBDGSn^;ynGDcpsueoHkzgS>k
zp@De{pRbIOh50tPh`g!I56zHuml{}R;41@PQ-2Jspng)B4XiY<%D^TAn+>d1I=_}S
zYhaC<N@~$ZW5jw@zELUF24zR|OWb3e9wUm46}OBPTMX<mu-Cv=1KSL2r!tQf!^etU
z26h<Oscxy{_E^z*tk_K%s;6_uihTz58+d7~IK;YRr6KS-VBnyEe4Lbgdf31b1J5hU
zkH(5qV?}{+jGM+$%E!RllzboYvVm6(yr%G1=oZF_`s2hg1Fx%+w+uWoPQF3#dPC{w
zn`$_`<rw+W@s5Fa4SdK^8*-QXo`K`kMuopmGwd(gkCPXXzT?ECapGeGpQxu_82D5n
zpBea^nxGnF3v%1mTkep*G;l)o#fmG($?}s1zM;c3QPjk@2EH?J*1%r|zE@7;6rDVM
zlv03$<HU~!elqYgc^fBAjg!t0<HfIhI~y<lV7~@_Q%>fzf!__(9WPp_%O5Y!uw;;|
zLO<DkymXl74E$~2l7asWMvfzYu{dwwUqfz&xn%r5G;op1GeU65kgLfcaoNCCCJLH>
zDHoIi3eu*Cvq~Wog-y8(kvJb-ZDRa*d0WgxaT66xR5Ve-#FFu%w23k%N}4ET;u;fF
z{{7<x%X!gusNsZVO_Vcnt%>VQIkV+WPzm21FTNiyt~Wso;>*$H@zQWOca==sVB$uy
z)Js%0rRSjoyvfAPCT=nR{~eGPU4DX~N|3&aiQ6X#dVp#ss+)MsLY{>hCTg;-iT6#^
zGEv*a6DFQCQO88aL~9cdnT${8*U-_JZJMZS;x@KpN(u8K+x5s~FY(|6d0XF<Yt0?1
zcXHLhl*>m$1sf@Nr-{21LObH4drUOpC?<*rOf)rduZcqw#C;~3nP_f;>(QzSA~!+w
zoglampFBa_Z{qj_@yi5JV4`SYGMpdWL9v7ctxVLPC>|uk6Xk6i6Azp4Oz8k0G0|3a
zYMW?h;!zWZ3DZP8Q9NcMkD{I^UnF}>l$$G^vo>71U%rA_rhL=9VSvPm&_!o?N-#(`
zCg`hO)dGFBZz3=enuypwUkX@mA~8YFnKO}^a)F==rB;v`zMrzZy?V-bTRvJoQFJiz
z6qUrpQWG6bbTTo4(`w>r6VH%y69Y|jW)&09ndqT}+|@)k6WvWbs}z8~Ztp}nxm*n?
zc`i~tP4qI+kCWJ!q59}Ul{4k8kNe?wCkpO|f1D_IdO*tliiQg`@j)gAn;2nYq=`!t
z#SjxiO$<{LT5ggUuKME6pTns$N!&L{j50Br0yL#7kehQ8V@+6-1h1}>#E409k3C+M
z<i9dZGBMf23==a=Oi|5FS8%F{X(sr(%7X}sh*Lm~rQXgmG26sKD*q(0aFUo~Vy=mK
zCU#GfH1ka?P}S*e_>#!?G7f<QTx4RgDYr4a<rrCanTh2lcCn&rYK4iFCRQn&+Pj+5
zYGR9tttQr*OwNFfCN@#jBPAQ_O>9sDr^e>HO}-LxiP_9TZaIdE?<a|EwC;goyNMm9
ze1qdr&rX_5Z$UmUOp?x!6ST*~UK6jHc+JE<6Z=g(Z!+xz4$y~~I6~tZFIRy>)GkwQ
zHaHMMz87%5h|mqbXyPRkFPnJ9l*<J9Im%HC6I@VuOBE$!)Gl^<%*5-ICz~21-caIt
z)5KfqmX7OxH1jdyZ6$C{D-SeSNVR!a4U;Qrxyj<Vi4W-CEL?5jL)y5BA58pc;$st^
znE2Af2~)nhern=#6JIF&Gy09mqS<8mmc-X0&OTpYzoIz|7bi`8qkP)e%3YB2Z%urs
zaGE)F<9id_5>QZVlTUv#@w17)P5fixl!;&Ha7_GR;#W?}U`fV#`Ar%1X$7hI^q+sy
zeENwq)MuqXZ1${)zZ3y+s@6GEu7*VZHF4g=RhIN87ff8Fwww5mqZ=e&Z0*U?n^FHe
zPZpQy{4Er)z%JM+d833M?=9U<K?{Xc3&SX`38ILFq86&tsahyzp}2)>EnH`zgoTn8
zUY#t;SSV%T8cQC|Y@94LXZB>leRXL|?yfUj$0v)j7Wk-~qUWpb^%lxoxY@!j7Ajb%
zXyNP0;zkRVEO1f2!IBzS+4}!wnyWJlDV&=W8P$(C&rGUV;Nn}=!e5i+?X4E7sS+;A
zBw($Y7HV0z)52XAYFnsdp`L}?Eo9g`&lMFUqFE?CMV=|uRVBAss5wPC0m6Hxi29ba
z--Z;F1>QDLkjG-g^(mr}y6recG`4WJg$FFOV2LFch<h#Yps9%^Un1mXf$x|^nptRW
z;XVt4r-<28#Qh4POx914v(VB)D+>=>c*Mek7Ft_)$O7LqU!5WezL+8r-nOyi$=e@O
zL|e|zRMAfL!gAt|D!l4c*_Up?u<)3TJez4!U|HB^VY>yJg0e8w!Y~UC`LytyB`w{v
z;9KZyp^JsULTKSh3mq)EYDWq_u3&5-Q3%UZ3ps_izf!`vdqUwH4hg84PjNWoL?;U!
z6+!~uKCN&f&nSeH2S<pmmfWa3Ysu{gr<I!7%|dreE<p5zRM8$5dRpjZp*MwWVW5RR
z<aVH-f%GF~AJNy6`+S!4SLLk5x`Rls&bw$YgRkI2EO~Cs^5GUnSeR~MhJ}%=ZecQK
zlUwCpVl)S$@G%OGwd7`!szo?nl}w<nQs7hN+-0YVNfx?ImB<uJ?j@!w`<kY3ZXsAQ
z)50tZOD*Q8kp#0X%(t+>!W;{H5twUXo<itX>91H)m~RBCWU+-s3Sl9Ssrd@9#FBQ+
zewSOI{;#&M#=;6^L43N>!Ya;eA4y5FwHDUV1}$u|uwI$T24zjG$g$8d5^lDz#llvl
zy_2TOlj;=;5;-tc?69!Y!X@@)VV8y77CyJ|g@rv9Q{~_d3vXK3XJJ33O2fDC_Ehoh
zRB?b)Y2lEC!(`r)>)nN^qU<!GO_NWbS0(pPlWW;a7LL+CSa?kpzO3LY7NTkLJd+n`
z=u3}T7&A@0&SCZyy`~A`OQwmpNKAij;UiW4wuN^syr=MY$n7*)@qKlB+`<Q{1(tBb
zY4j7vrb!?BF`eN^@ri{`E#x1b@DWRReWo6roF=}saKge*7Jjzy6{Tn4drti*agwIZ
zVUCmUR&3#03*V_*w!mIk&h0uM{b1oo`b>4!!C5;+hiTy~-Is-5E&N7(u<(a!kYwkl
ziPH+_&Yy1iPYY-0W~a*+a4y6|xB{ND@He?7v4wvub#lwiXFqxIJobVrxu|IP3j*oc
z4w1_iV57Q?8a4{pxXQ-$Hp<&5XrqvgQZ}x!QP{@SHj3IPW}}ELTkep5GOXT)s!tci
zZIrN4(nhoCBAhOGrbPAT%Of}QrEQe4!7crDHp(iboQ-Q0LNXHY=&Ap7iBL1Cq7`gZ
zv~i0qEv}M{$~JChvqQuUHn?WpXyYa}I8;oXF4jyJFH9H2KT-&v{xMxtu~F5=t+sTz
z)l?N89T%A)?V_fQT5Q(FJvM6FsAHpnjfOTdHZ&XcZ2si{!bV*iw=tE|V0mJE%M95I
zTOiVChNy4L<KH`Mv{U6g^XW8044xrZ_C_}DQniTRsSqAMH@;HB!{jD5n%a2KMr#}Q
zazr*Bu+hRsa~t>BxZlQ$GvrC~tQlgX;+FWy8KR|)R%CUke8h{tj}VgJAscNtikae3
zoADZW#70|krMlx;^glBMtFS4;Yi7!JC>%;aw_(_rVPhu!zYWXAlQufoux(^*1U5o4
zHd8p1FrB{**OsoHzBHIA4}yGE&K*KzBev0RrpVby)J&zed_ST#(ur~6=t$dBPi*j|
zIREwuTkcd@_bD44ZH%!o)<!2APuu82G8@m>=xn3AjpuB1Q5|))@vJSqBAq|w&%InX
z3T>zy2zPNkZ1l9z%SLZo{y4=R=?Pg*K6wO38fthy8~tqzwlReIU}K<Sa*%@D*^-h=
zBo&qK3qx%TvoX@fC>z7`2}Xz!wmiP(D+8P2yD%w7+w%Q%(@e?IjG1DbvW3Yurq~!y
zVs$%_^D<0KQuymL<taMth1XQlj2F{w(CDVwph>cj4k6~rzm3^84%j$oV~&lvl$DJQ
zHs;xwZ)3TQ6*d;wSV#jLE0(bZ8;fmugv-s<5*y#nl&4ZlZ4h2mIA6L+NoTdv#wr_Y
zscGuiYBg<qr1WxYsE2(8t(CXyZ14z+xBSub`dMP5jjcAeDXrUNgUYkn2CZO=4Vqh>
zS<+)~x3SB{ZW}vn@OCE^SUGLN=Ci~e#pgaUHdXAU#3sqY{p!}4CAbhAvT@kPdp6#;
zam2>+HjdeNo$b>KY`ntZPZ8Z`$-T`>HVBW}cv&Ib<Zvg$5_wTMXNlJo<Qe<YS>g>_
z?#=#Z<4t-n9xU_`Z`s&8OCoRc5zSw{kH4!B?(ukgoaM8`$2LB(@qvvGIrU1P|LiA!
zzozPPtNE#o&upBaa?)816rWQ`28u7pZ7+HIrMe};H(YMozp~}l{c8pJBK)n5?`(XW
z#V1*OZ{r7gfGk>P@uQ8OY+Sa1EPl3e%EoUtPE#g7WqwicR~t_q(RlmQ9_`x^+V50y
zRes6Fp9;CCAPLSW<g9{!DR|Dt-wOFh!G9Gb<#~l%AWO3ZZ!gRev!`qSslu|eMa3mr
zfh?}d;?^vxWtr(qGE*Uoidhs=cwq%uc(p=`C|ER$Vp$Z=qJ+9Fokf`}N?xHXrI2f~
z5VK{EW!3F<3YJswS_N+!CP&KadUad=O5y(Xvb<6ji@uad<t%Pck8aE-Q1E62Z&8pm
zRTNTH!B(?H^(<;+Q8SBLS%iv*S60ZTYG+X=i<Vii>r58)CTR6k6;0tHzhr_|S0T44
zxaF9vczYK0v$!LR28#afEbdWA!z>yp<W2=id6z;OD>!1dXrhqj3N}^nUIj_nOd+Ja
z?@G!23VA@m7FkSDoVUtir9zsn*B;8EO%{{+D2s=)cqEI?S#-&wZ5HjaXrIO7Sv;z$
zyI0zLEQ`D=xSoY^1vj&>6mDNB$tuKAFke-?Ec`1^14>fi(Up=|AxReLm6Du74$T(F
z6vG_j6IuRmP-+yf4hnfHi;fEEq~OyEKBHiM*Il!CHj7EBq+1r<6>@%r_MAf4&VVd>
zD7@#Dl3ohwtze%l`YNQKg8da_tuGZz1G5;UN(N^!L?J`77^je7SqxXmh%81cgtbO0
zWR!wG&lY2@l#iwTUK!(fRX8Dwi3;H(R=oZ-sWwxyn3lzBSscq^dKNRXIGDwuEM{gg
zD~o-Ka&{JTvJAbEwdQ6qFN?Jb=k0ujEX!iSm6C-DS)|}%1(zteRKWss#BznKP>?OG
z%wm<oS1Y(iL6Y&&x+^s6v)FJ2-<ZWFg>P1H%a!s{s>-%3wyTmI3hun}beBSQE4W9&
zy;<BnUP@qp7GF-2$N^OzotOCGEFMq|9#MtQEBJzfFDm$wf}}jEke3yFC5u<Dl-HRf
zUeDr<EZ)rGE!w8C?k}dx#-Dpr!f=lGUlwmG`gg9>dN&_Y@O=f3XYqkTK2-1{1zDZU
zf11T-R7D@%e0-k87g-!|anQw=S)AaUIymOwt1Q0G;xPw#4o+tA4PByx5)OVWq<x!Z
zc0T->#dll+vMAR``yq>;s5Wf2tM+3Sm+NXySM3ztY#FV((0<F}mn?o&Px)Wd{}s~O
zwAW5&@jFevy~gScFzGQz{;BUw7Jp~)PgaHxoK^5I1<xtSzc~Jzl_98bP{6_YEG}em
zF^fxC{KrnY2DQ|FuO~BnG7V;_J~Eh>*Z4UyZv83;g&Y)iP|%Sr@UQYLyxKt#2Spte
zbFg}j;D70l%n|w3`NwsVeK1FqbWqAceFt|qxW++g2bCS%;Gm3yPdjPXI=Ie3SqEor
zt(=1Q6wrR1Bd&K)-a#b?3<z!aPo{zcUKJe>XG!t7vXBT1Z**{zgW3-2IJnutEe@(V
zsP3SOgQ^a0b?~$+gEjcK%qnw5{YSLMa|IJ1)NoMKK`lon0DNq&Siz7tmF};@TtPAh
zXlEP<2Xz&J=3vlVL4w;H)N^pVBh%dRZ<ee`gn=PT6w<&!LkCS9G<D>hHge=_Hg=c=
zQQqF=@Lv!z@d#)3ZU?*P%7mZyIN<GDbH%+5nmKsTL2C!i9o*;08Ei@D-~olVa8P5Y
zR;!2B`p*m>@ehrRq9W3Y^TJet{PVwqHVz(f&{okutl%H@WjlP@&H<Ba-IdiIb>u%?
zS!LEBSzUKvI2h+(yaUsLMS(l$<G^;1b?~Hv4&=~*>mZsZat=HPzJu67;vjGkvYd<+
z*S?-B7@5oK{9I9X9{-^(TFjGS8hn&00zUepnAV=XJ2H-g*Aos_mXw@4<)EX3ZVtLT
z=*0P=<cnxs9X#Wpvx9lXv@T?cZ8ng#@_S*k&nmJKm9<6u<F~?DtEYn&S8F{Stp6o5
zeV+J;|NnPnwpB(>^>xrsk&SZDUm=4W3|7bh2b<@KfeuK<ibGW4FbBgO45c34Aq!uc
zCq_76gCo^b_O-cyyom4`?LfOj8{^<#=3#KaAX#Sgn&4ofgKZABJDB8PGTV2s+`$wF
zQyt84FxSB}2h$zQqIxs!ry~O;W-9!|Ji$=nqnxHv63%uo=34DQD{Y=a7CKnuV7`L|
z952(eJg5=&FTsD^V~K;MY_OEZ2H6P9J9pPE%@b^71qDvYIM|>XS><4jgSC$Q*ZOM8
zq=c-(Yn>`#MRrGi*zZQl$H5i{n;d>bOuKHrY>n)ZtF5Xj{xhG%I~?qEu;0M}Rk({v
z?qH8<jR;c^v$efyjQbp9<_lI~;|CoaQuMDlIPBmE=^ebJYCTU^qaJZM{Bu65v&vCb
z^0I1YeySbst(D5i-r3ZvN+3jDckl*%g^NdByy@UA2gO~KaPdC}Z#y_cKjYvX2k$!g
z*1>md%E9}zRtKLuIPTyBPLnG>QHuH@C*8rvw5Iujsz@EC?or99hqQ=Km2U4g7%s}>
zpZJ=to`y4DoKSlE6%}~C%=|gyIqmimTI^uhd@*aj_(rwN2ETXkgM(ij{K|EKHq}-9
ze5Jvk6hehRrJ8EeR^|@n?Qaf#ckl;gYiOqxpZS*cr-Lr4S=tmi{L8^PI(ZjYx%gXo
z?0@O-X}q^;|EOC=5?yd`QQ?;zTyp+Dlk<P7WYc`XKz=4Id3nBoE2E`O%ohb+8R*38
zY8S2PLli9Rf~m21%P`C$E{eJ+=HkM9p%>Hs9jujEAWFI@<)W^O+gx1ZqO^+}UEJg{
zVoOHYm3L9WMOhc+Tp4qEtqZ1ZxZcHeuFU7a)DVS!&eU8WzK>;Mfr>6FyK?oZ<f8ck
z$sU)X8x(t7ZWvK@vx{3?RCiH>S8=V1E4|09E;wsdT~sR|^RiY`k0?)0O-&cITxmfW
z7qwk!2z3;srpdzjqE1HBTnI&T=4{4YAeFYBi`!i^BM&a>EBb~m8oAO!?{Lw;1x=XN
zbf~wSh&x?0c5%0hyIeWH?3D9(kBcTQn!32xl^T+-PTdyB46#h{%2_6IpK6e8wsvv9
ziwDSqi<T~0xp<HzIgNP~t9R8H+Ufq4In-EVgy4#n+CwhdxOmvbBQDxfq~+u~#YJjo
zo(xRjQbqWfi#!)2U5s)Wl@EhFxai`-bYYQ67pV)|Mb?Gu!lS^eYoitj#|3kJFxL&C
z@5*5I(3Rm!ftp7q#$ie1B6j89+HZbJFm8pp4j5&bbMcgmjxO4}c-+MkE}nGJfiqrI
zX1!w|Fw@`7FCr7=F?AlZsC9B>Fxu1Pp_fe0Mf@38=H6j6Syva&a=Kmgq!yjYbmNYz
zsEo!sT2brnGNMX*&c*af8pE=Bx#&%qpUDhy(T9d#U+Yipb<x*FKWc@q$ray|u@VDa
z45C_=&<49QL&f3+(qKO`HC{Uwh@l*gD<c_)yNv9XNT=d54-X@_naE`{=g7q}m+k^%
zDH9hnIQuTfyO`jj)1%r{7ZY6>5jj~6YLW{k7H)7p^OdVjQ6(H51D&Q($hOSnHr<t>
zAIvK?%f)OLi#atNwK*>4x>(?1Avt&P#sa2k)#kf6u|RMO#ET`HAJG<Z$Q=aB3AsC3
z;^K5qZ7IcdlQyQH)~%hk!o^A#TU=~)vC5Sh^LVXyv6|y@vDTGY@7B3Ezd)weq~wV-
zZ>DW<vC+jQ7X=$?j9uF7@*^)Avv&ViN-MWeY;&>Q#U8T#lnk2NL7D%X*+o$_)^@ts
z-%s0KNZU<wRzYoyXxr=Jq2Dw6_{c@gh2m^Ot=U3hEfk07M#z<i)gF$xc;3aG9`5q+
z0_}?)%w<Y*yyW62nRM}~i<e!z;^K8mLumqa;8j;<<bI7)d^*F-6~`39j1zCVc+16m
zF5agaxH4q#9ol0-sWxv@=N&<{>AX<9%l1RTy2q85`_RSlXS5F#9y(gv`?ZhgnrO=v
zv@@MG!l<<N8D;3=dlx^@!?-f+=!A=}lwyCWU=wD3b8*tex3sAyG9}tKRG5V_D_V(X
zwFwPm8q)97BW8;Dk#?lU@`sC`U7S+NcG|@+t_;biGyGM##AOS`ZwlGJP_XcK7w;?-
zR4{7hpDxbOsM~30UHnBF7mR>oHU?h#$jhCye>uPOq8@JWaKXhzx@!-`JzSz;R@4f3
zxXQzS<fM#t*#$f_8mMvq{K}b(<!c2!xpOP*;cA5x^7zUl<|G=kwHNU~Sk%KaWwdV>
z%2-I=mhe#0Ls<{yJe2ZOaLt)aX^$BsfJLI>BAMxh8Fk8dJTca;y+ym$!*w1idUE@B
zy@&E1=s+qc$jt_Y_H`g33%SRu<l(kOVz{B*=;0<0H9gewaI+_8mJ?A`ad?Y@RXoNt
zNvC?NhiZzTx`!GHk#SXvWMmUVtEdmPJ=A5h9_o0=uvtyh6cipFUnIIhs~2i4tmol&
z3hH8}p@;e&?(opSL#ykwQw8O2gnJThb-3x`dO?~-ijtAejoG7zULJaTxW_{i50Qu1
zLsJj;dT8h2Q4h^LH20(;J>=m&5BGa$$(B9PJw8A&7S&pK7`jMCtj}B|L)Rblq^soB
z+LO6_-@TAw-b>!L@$j%3`y&dr^{{P`oGH#1cMFes$n)T;j+nku_h3>)o-}{MLkmY^
z4sAww*&ebU98c!vWmaBZ`8jG@Ud(tNd{2hQ2A(vi(8D`rWwv%&6Jr|_52=TzsSF-+
z9@?|btF@;*`4xl5Ih%^5Cp<8wjGJV}lyy)g#}<i`i$q5c6mlo>-&uR(a%S-DT4xVk
zJn48}s-$)G@T@02WDgJBICc-ud2%7Rut+cu2@&c!m7ECOX-`GTth{|Z^z|^-!#EH9
zJoNWu;;#`N26z}qCvzq<RLOP_$D*|K&KlrF<s3p?ZL5`EEQWC|{>ltjF#olSTbGd@
zvy00-Y@<DlQElc2T~4@98}DI)hb7eK%bAHDCV80UVYY|KRIm<WnuqBgrg)f2|5i@s
z&LU(?H^(?bjdUjESwXHcgS%)%=6IOvVS$H*G>ye#o|?G%9)?xZa^>Vjg;}Hu>z&Ok
z_OP{!EMej`ChMaqE#(Y)SngqkrxM`T*H(HA)Y2YUEEuTBSJyRE9uI|mT<v3>hxH!w
zgyTy#=wYLWmpmNxu*t(_4|_fA^RUH(w^(fVutS;ZR%(|*_?E;MBEp>>c6(rK@2)H5
zRDeCIg!x;ZT`cx{IG`r(dHN7fx~W6zmU%=ur-!)&sN0_1<Wx?mqrIT?{6z(+;oJ#u
zt$EqQ+Y}U)hb?ffDQ6~p_V9*6jwyJcjrJzzVzGFOV^<~QkgL+N#exXw-}UgGhmSmb
zte(E_;R6pJdN}UM#cRDUNW&Hgc@1I+u<{#JhR+o8DHWigO!ml<&pjMkEK@6-@bHy~
zUp@Th;cE{kY1*Z<pVS0>L-oE+``*L13Ss$o?2)y6?FUuzBl%PbEx*#VpFK1#rSUqY
z3V)#vRF)rNI89~qz?k%l9{y0Z&U*OE!=DO2qaJ;or=40Xzd&)$!#}h&4}YuHSYCLE
zU?b=0|F4uVLXd^*=n|d3hs*TOzHGmsFPSOe<0@Ycq3UlL(hwoHY@v|Pa~l~NU&KdI
zAB}w6>7$sB;y!NjakGySK1%wy-bZ;~+HWZzWqi38;%4j`AC;Gg(mr?~)7jU``Y5Mp
zu2lrr`JBZ6&tI3H#jXPBefe@-(U&jU^_GZAKJpW8)2rOz<3{zAR?k=OTYQWwqt*6N
z$43<(Rejv*qneMJzBKCU9F&UEt>L595_y0#bBNp_^HD9bx>(G*Udyl-U%u?z?nC&}
zA>XE8T_4P&!W1InLZ+T7VXA5d8rS!6hmQt|d5*N9k9dj9XZT5H88Ca7kH$XQ_;}dI
z-9GN|@qmvOKAQMw>dQD~R=L+lGavUW4x9VZE!?Ld-38ypn74;-H_U!UCR_S)i}j!{
zQ@a-`r?v9s%FCPst$mqI`XNfPs78dTq#yCo)<;BUe6;hW+cbQboJt>$`N;FZm||VQ
z-b=*!tE3t;6}jcZ_Tl?7vODX;@!|ULe9-N4Az%VemNWMV51{gwgTP0qh`D5JyIMwh
zCq7ai9es2nET-jrJnrKOAMJg)lVLb8V|#fr_N0#vKA!SH$Ie4eLY{*WdMz}5rsQdg
zqBc7Fa+P_;N7u`l8~@F8Awq_kmt%>bbK9^)bocQbr5fU%5IubK<kJ9c1N8FI+h@Kb
zeCDH%kG?)u`dH<opO5}NCQ<C1U)KF2GsMSGg$!gnb+kbWAFLpAXbkf)+{YLnV^zrr
z1xIl>XEGx>K}*DkOZc0hHrkgtb9Qx*DG0_Xnh8F}s|HEQb|zkFki=7bO!fH=g84qC
z`IxRA&G9iq(a%!1Y-gqq=HU8OwLjYjJ7OWL&-G=l58}KE-Kj0`v5<=AW3ew^V3+$?
zqL8INmQl@0Yb@l&yaCL0K)Aw}ZseVk^2lg4jn2mrAJ6+(OXp8r;vD%{PgVRYv&F|&
zD!Gr1O4&9kxLHBwm}Sx}ekX`FvP~Jn4$c&XpVhcqF0xeYRD~_;$*iP%eC(wi710jT
zt5neT`PlEvog`l(sJ90c&Jz-ru+u}T>%(*)OXY#~3mgjxe7s6MQ7(cez)op0N7e1i
zzFaFAKmMAJV?N&It&i8$BQ6|oDwBM}2Uk)i?0So~PZM}t?uRdUa&dXr$9q0Lpm=>W
zTq@pIqdQImSt|IEqsNzueq<x3edOa~AD@sDM`K`kn<{eIz0^{|&wYGBw-DgE0AKnz
z;p38z|9pJq<7*$k`uNSqNgv<PJZXa}4ez(gw7*w<eMkB;@)JulmWm%}N9Qsdmx`Z!
z{Osct-C7}y*DpSp8kY#u{Slt_@jHKaIGg#`XIe1n)6V!fOAS=`$+pr_{N>}EkH3BV
z<I7Cc%(c$pGkYFiKj~5FmxwUc?Rg&;d|af-H`BOY^LlBixa<P~iU%kW$lV<a3k0|-
zK*0co0`B7E*0*qgs{<4X@WoP@b)4|-+chwikS{-9QcTgj6>H6VXe9&rX2F4%4p1tP
zdd2IS0O!>FmI>sWQP}|H0&KloW?WzPxO^?TK0x^Z^#a@;ph6(iHB=37Yk-OYDg~$<
zNVjlffSUr8TqbS^;NPIpMcf=n-+oJgDgjoU%@A+dMys|=Fv*fc0)8$8LJf+ECTawz
z9iUEtngMDBa`(&EUT%GxEE5^_*jm#RBywj{c@ZJ!bpza{Mqw_KnXl>xxFbNb0L=q5
z2;@r9IKbTj8U|<-;LZS5@6zs4aKJAa;)i-^d>?0C=z9XWCN>Swgd(M?oyrj2s|tDK
z#Z}|JKu&S101vXe01pIc!BJP%T5?``YU>+nPcIWAmkE||v1lDg)oK&qp+Fwi@nR;=
zhn19gio%bMwF~fQfDZ$F6yUJ{c>$&cm>%#mB`^YX4A3cn8Ndn<1&9OK0kR~!R`UZm
zYP=p9xLR`+Zr`ZQUnXeL-0TJHWtj*$<9}xOYFw;~mIU&6@Nv#NCs)l#E<k(ENPF$r
zGQl&bRi(8hmorbYuhLqF0K{3bs3V?ICA@t)z%v1c1Q;5ibAT=Z`UL13plg6<Ilurt
z19Vf;?jGQ|04J9558-mVOH-v)R=rm1#R2k@E;Y2?0Uf^JCta9!sdpo-pVG_$0R}3h
zzk>fP6I8rGREz-m8u)EfjY&v|4+}6nz=Qx31B?hTGQgMsW7X7*QgC#@gMDpv6KzsS
zO)spC3*@$8yn;liRBeCB@bdwE&SxeC@@QoW>8T!t<ZhpEs-olxDk*0Km>FPafL#G*
z1(+RRJ;xYePJp?TQh=oa<^}v@3>F1oc2F+g3j(=_FAVT@O_?5q>DqXRv6xy^MK05F
z$qukQz^VYNDgQveEAd)MIsf_p?@CO|Uv{}z6JRaJPD5BO?q4qWW1O>G@aU=ga<NhM
zMRVH{U=wM|X`9uY^5-z_nzjbmrY2&0fE@~<2|WF@%<?^Ex!4_GPk>jcoB{R**caf1
z051mEAK(C;$?usXfqYFk7~oKV!-33E!&@E&%%~v|eua&W@p;PRpUjKRwU?AW(<8kc
z;Hbjq-mEQME?%Lts-Q80H{r1WuLpRKBfUp^Bfy(vmBOJRtB%+On_bNBp8TERyV5%W
z-c>wPZFVjfJU-=t>iYqXQ~!GjzS;4cbRPurZIRoOkLe=l!9rXU;?n@11vnGnEOmfB
zFu*CcO#dIq*U4`<5b9)rugDDL$*hk7P6ps%b-rOT`y!?EU4S0~{HPfCK9E^xPS)0b
zqMo15e6w8q9LVo$@G}{_m`wFos?Aw>M)7+f4`+T0a9Yg*&u8f6{-8=!(Ee23<Dcb%
zzWpyc*Z`LT{1@PFdZaosV;BwgpMcr4P<n+pAK*fOizF+mF}w2ezcWn9GUK-lZ!ZV@
z>JSQtxH<%LPZbE|D|x{XSA|llOc=-{Bs>Nw6r$z|!AC_x`F>O^MDY+s70%N?p8J&u
z|KHn}RLGMx<Y7KvkxGXs6QX*E8X?MtC>P=ewjAQxQ2I}1P%N*I>q0r?>lMx<^A$o=
z3{fdW(^TWZW@T0%qV@eV!?cYoxhcfWp<HO*Hsn6`mJqjwa;~d{s2a*cp#imIdRrpZ
zLiuqzra<A-njvb1s2}2v5GN|jJyq=xbwYX6nF&!h#BCw85F*5^idwT3f_bjE<*rBJ
zoXOlC@&`)6ms#SMuhAxVldA*w*vwhfAVk9ujY9B<@6Hf+g=idt34wWd#mgQb(+>M9
zL=%pMqKHs7!o4Ayg;*V8O^D_p?hDZ+L|4i!!~-F+A)F8`LbMF=Sctq3twQ<h$wML9
zgm{p(&SzSO@@$#uzPZqojfX=#5~3~JtR>Hud9@4WE5M^62KAH~eQTf25b|p;R4N`I
z>miH~W(X^U9m+FgLY_18B$-cn>xS^C4-|3;KSaRRp3>3~A!o3t7OUPPh4X}pC5hsS
zxsRH98W)IMi1wj$__R~55l@EF9G(v42}y?#PpRQ_4ADs;6)wn+rj775ex2%>P;P6v
zaqS#}yH+C4hUgYzWQb8Ax`%j<+=l3*bc~K`*=<^n5IsZr>e?%m>C`wtPG8>;{Xz`n
z@I&+u!PBq-RM$XmJ3Bkzr!#x<{3pZ^&exgD@DM{odG^i*hw<g2fJQvuCGzQr5d78v
zk<lT>u&EGpLyQeEjv5<cN{I1F_ed}?#JMN62_c$v)Xvw?CWT;*eO_r_ZEA>VA!dY_
z8Dct>xwyuk8u@b-e<I`=-K<c0+SwuKZ1ewSz&B-<%p-gMW)_B66k@&_@&W}vv}8Wj
z#UYl2SRP_Uh@~`G`hNwxuMqD&s2#l|4<uKHa{sU@l&J!FG56{C75pl(ww67HILUbo
zv7Sapjiuy6Yz(m}#NH75Lb>VMOc-KEh%F(uhS<jP4uX1~e=z&s{n83{hS(j-t>Z4m
z8&3|Gtq^-uNp)A_Q6Y~g_lGzb%1nLKq5~nSw8icf;!udgA&yXW4ej|*9>~*R>EGxQ
zxw^d+;%JEDAwCH4a)?(#yiJt|@hVkOsneSwj?t48(q0eoMkx2p%>Kk%eyC!1T?yZ!
zR#2qpGVRV}m}rrybosl<yCL2S@#YGt<Tia>BHj<dt?c}^+J_-NQu=Tr#K$2%3GsP|
zFX;bCum0cinL>;X8uRBfmpgNoGT-Buq1*$UTp{?Y!B^z1s`hmVUR|!%n5FRB5Z{F;
z5aFr_-;>D@e}*^{;zw$Jh|@~Q%oF}|h+ji_0Dg+PL_skdTO)Y}bzy}_LhZLu{>nx-
z^1HH*Kd90r<cnUpmEvrOzc_cc_>a05;_na_LR_RD=%xJ=@`GYHuW+ugFZ`9EC%kyG
z_E`<>T%LAG`8^`M_?pK3(q;OwUowcmJq(e85eh}PIzo|1YC_>izSHp(mx85`i$>CL
zc$JD!EJE=JB_er-P*Oo23-EA&8xkVdMABoFR?sM_K9UvjTt)tmWpRY-B3vKAiQq;k
zAE82oh7lS?s2HJAggOy2kz7_PN4O<Il?XRPxG|Co$4v^}%ywwA)wJ3x#l0&<)d;sn
zs1c!Ngldue)v|gdJtvXxOGx)p{bsF}YOuC~*_Cov&*Z4=f@9Po)QxZ(M;d{fbW?rb
zwq7Jtx!xY3KAS3|J?!F+2>b?ag9u$#3T{;RLPr>P*6yTCB0L=7kqC_=+#TUQ_7dTq
z2u&h1Qxa<$$yAy5M)D+|*>3qm=jR!jfxNkT%Fk_7xm$Z6LW>9wMrh40?$cUEXcfud
z(fA8m_4~Bye`NkwSbHdvKR~yk#7b-YzXbpLarEa5e~f6W#PV2#yhyH(?IJv?kP$0I
z@M~r?G(CbD!HVRoiV=Y&mAYyCE0-O~e|BXf6s)T83nu(q7j@o?;71q|VQ7RPLKvY_
zgr_4!5#k6PBDoVtBBbmhlJ8=<2<<641^F{yKF|4(1DU^4JV{+zDMrQGQ*30O=orb9
z0sbaVfA~y<&J<3BJ{)y~t`t$k546d-epbP5oR@mqYb(WxF7ktM{F6YB2t6aFSd<4%
zU#%4Xt`zdP={Bv*D$zGWzX;wcF(^X+NG8G^5Mf{hW``@;RXWc)tHk}Q<oPWR2L?xY
z?{SR>2*V-_k1&zriZCL=NSf`%4FAV9ih_zTmKqhw?@RJUV@!m04{F`mehqoDF+Rcs
zimstFB_7am0V;kjGdaSP2(u&1iR90?QzJ}^Fg?QMni@S16LrprFf+oe2;3yB7$83-
zz+|38_|c`g+$2z95f((4r*PgfZ|6eJNH;-8v4|XYmmeV5ag#QBl~@vCX@q4FmPdFw
zk`81=gq4&`ggp_zVTWQu+Yn)6gw+w&L|7Zi{nEM!>mzWfqGw=c*F~#Dja%hG!6sU9
zgdLIGoo<P+HNrMd92>uw;SuP*RpQ-Mf;j&w@K#&-!Izy8cG2!)!Czo`v`Dx&0zbHO
zD8k_g`y%X*<k{eX2nWehPx13AIa#$^Y0NQxB*OFbIp;Djk+CY;3ktp%$rDK4^2-Q?
zSIf_i9HjyBQ>V6gCBmx_UW;%n!aK^kU#EB@`3nDbgvzVMo5ZP&G{Z+^B3VL8gOJ}B
z)6_fuyPWO_@2k4il$YQ)(dZvOjPMbCPDf-q;^PRPL>TlW20w{UBYYO&$;Z**aeN-(
z3)*Ii)+xS>aDul9zD)2{gs;g)j5lMPq>@ngV)!w>jqn|fG)Bc3-$(d?vmXI5eq`?v
z&O|sH;pYgaBK#WRw@Aj_FoNtCa;4&-CJqp%RpIXu{-8e@C_}Ru=kg~_tgj#q;}oX%
z6MscG7vWz{WrV*uiZL>%{GSL6^k4`BV__KWa>r^JZ*n2R#YhJEUW)J^g*-@x<S;Cn
zWW)=^xGF}e7}vxo7^6^(qA`laU?>DbISR+PI>y7RMUhy>KCl*X#zzz<L5z|ym;{gf
zvpWX3vG*b>GNN>hGQ0+g^0CZuQ8q@o7}v&ffJ{boT`c3gSOpfYk7eitZy8*}TZR`^
zicvX6(-`;0xFN=kF+_~IF>Z=+b4-0h%^0`Ds1nP_-)gFts<F%zaceB&zc@68z3{er
zEW>sfqmdueQ7c9!mMNHO$6)9gDeEYDcCE!SG?f)O3%A9n7o$;(J7e4)qkfDAifz(U
z!X&;UmeDj!qrs@dhB5MyyJ8theRqs|l$08)mN`vqvq=obpT00s;_X+9W-*$xyBKX_
z+!y2i7%gM8it&JwNsAcF=0s6&)&{PYJsun<9*ogC#zV0T0H**M_tYkq(N7P@G7O&x
zW2^|<#dtJ^74x%<cq~R<41+@+C|e-gx{@<T!I7HmcbZHp!bc2o%EoXw<6{ML<}mb$
zDMVbw2Bi_i2xH8QF)KzCBaYFJ(u<MANGZ%1U1H>7w2$!=*^BYGnusR}8UL$<K#e6%
z9qvHlfs&I>F_^~W=@`!_!7`|mTrr%MaZKe0iLR>a=g4i0XJd3z((X<MR*Q|4UVll<
zSgM{eddKKPy`3(4sg4+I$i_LRoRPkq1r?1rAjUxU5@URfK`{o$7#?Fp43Z6rF*L?7
zRhNpyx(tRQJUC7wBV&w?F($^SSVsF&hxv%{n9M&gHkN_Oyr>2fD3F<AVvI>t%YK59
zUz1}@i7_q4^cYhqhe0yhizZ3r_0@8iGzvzy&7ja!mV?<b=EPVZV?&I&G3Lcs5@RWK
zCYJd<7AW<m+&JWgF%~H$8PA+QtHol)IrU^&jOElN2LGz=R>a_3uZpo!DKN#w2qvlx
zW1QE-SgUHWK_+BaN9Gj|8)IyWae(8Bu~|*Z_82>2Y>BZo#<o~SUgs-6Jpdcrso2;P
zV{eRIG}TdZig#07LnT55KDS!zi?Lsgk!sIqZq_;!<8X|ZW4sdc<Cu6}*~N>hJIb5}
z`vM2MMw-b>${vr#GPJqY8X39#s_OArjMrnlrttjfW?Cc;EnmEE(cY=938DmV$9RYC
zH$kNY@5Xp9#$Pec#dx3E72_MaXgV&srWl{c_#(zf>?_76F+QdK^p}y&Y}OkoXPJR)
z6!K@(?cS1;FJqjD!Bh`lQ|4==SQw`L6=zT-96PCa;}DoM<~ut77{A8&EyfRY{xMFm
zab+Ms#rRn{SZ3j%NAlOmj_Bd3W9;_{3#ViJP8*LQb$+_c>OgJb(?4lDG0v)TdILV?
zyc7N%;~zTe1Vs}38{>S8|6*K@aUsS<r9zk3?`Wy9jLl>|6B-@;6%sk9s}dAUq(d%{
z$nbM&J8^1D_cfwWg2IW+BSbR7q6vy6D3#!v1jQ4XsH8-Kl8H1BIupjKbCx-F!qN%K
zB)BfY^@^Zuf^rG2O{6(cGE_fS;Yz{iQTA0nk$PA`wZmR03bs%=!3_zTC1{@D#soJd
zd~3t)32shsOM;pSY9*+W$W@O#S4&Vek!gb1+O3K708~^iE7cR!P($M?Kqp)~L7fCz
z0+Aq-$ebjkpP&?s2o1BYD!eU`!Ih+^lo&Q%KfxVrB*8ri8YF0#;LZehsqPvjGE$Y!
zgv8{TBVrW}s<G;n=`84$n<%_#0)`6GzulXF)6K9}_IO`{`xCTF@MwYu60}g14<~4u
zpjCp_2_90y=S;Ej2Pw%>a=P0ja;>?ipX`y1(Bd9R&^D1Vo177rFyQpD1bGRp1a<<Q
zVjm!k1g2_VI^>aZLMdkwXA?N8+~cU3M54EF6Y1Y5Ktex3kVwDHzG!jOv^YVMU`2wJ
z3DN|)1S1oSO3<FVl%Q9_%>Q^I!IKF(vtoh{37$&OF+nHFcBJ%UT$ITt_5A5X#>PIA
zVCfpE51dDK+BLzmiFC`)CFrI`DpiqesKijTcg`}0-$O~hr-HP~J_-6J7?5C~8cRPl
zmi`H-+hm?A3+HiAg277Dh9z<zG9<xJ^^_vz=%|6Dq(Fuz7?H>&o)=3-Cm54pR)X0H
z#<F69DG8>M^8^zTOiD1lpBxV5NtZs6I!w<nSWH&sRA#0No2I&(kw`x|U0EEhfF05B
zXOidMV!~klaSL-PhXl(K%%iyaiG>LkC77RpvAqivWEJA%d~t#$N;0g=RhuP5sDxDD
z<q7t$k&QE@!>R<U6MhUAFC<u#V6BqO-URCstWU5l!S)0j5^PMcIg#55Ho~c4-A#$y
z`|*~lvW3-qiLHsur$=N*f}IKWu!T{gWP)9E0<;BY_!%QLlUqU7VhbOw5&OtVf&*0h
z5#msS!&E9|{<KZf{IW(WAp^{hD6Uxj#RM<WZzp&s!O;XSCwL>ln+aY?@M?l%w81gr
zH3dmrV69B}z>?RM2Vjqs|62+EM+Y@l8XY-jVgU-A%JVKwHNnRTK1uLC6^5HMF6hdB
zk0<y*xeK<y)s`#QN6O;JAuE2$#(Rm+6lK1#e6G0Vig1FPf7)Y;QYpTs=_NRm;B10#
zsCWr}O7L@n?-D$h5#K9FWO7Cj{*ZvkkF=VMsI*p=oFW4WzfBC@^3iVzPA6dDpJY`P
z{-N;O6ftR<uay;9{jUV)5?rPxr1(3*KMBsOzW!BRo2s?^PA^b@5?oSGS^YoNJCV++
zodPMYN>L<5(G&$!6iRV*Dmkyx0>jpdS!+e%R3hwgqvD}hio<I~i4?q8SX@Dt@M5iN
zQj|_nD@E-TWm1$)abt>`RD<PGluuD1#kDD}OL4ub$Z@e*USyT6RZLMi#SJMcrC`hK
zoo(LS0%V2=2X%9bTT)a@Q9T8RP(`&&q-u&=6+IgvCv1&Us*&P-)p$*X5dUtisFNa-
zqH&75Q)nqfiux(;V2^7>-4wT_sF#ARu?1eYr?P7zTh(oY6b(7>b>hwxjZ$1#D<~Px
z6nP`7ccsV|I~lkqMUxcwr+6Sm(-ilnxP6^yu6ns~ooJ@mCaWAi%kNX7U<)l2SxePB
zd#v9Atx|CK#M$OUDcYp?u|0ljkB3t{l448_V{>SmqFsvbQ~Z$P(G-uRSdn67io6th
zioq#{q%g=^ijFBdrLa=iDUuXvifjreg_pu7tLucjPV^v5F>jsNu}-|bP6R2U6fqlL
zC&CmgDYahIS}z|FA<VJjdeJ_`<0M-zhO8G)q?o;4@amA_$t(EQ^^*Rn6rZU_Pp5b$
zMXwaSQ*=(zg#sbB8zjvi>qXZT&r%^bh;Au(+g;&&bn^z$c!TJnD0?dS%m%?)eNyyI
zF(Adj6#ZzG>qY+*b2o^g8^rHFWq3<``v%F||2Bw06v%q<9iLLMQ%s_?Qw&$Fji!V*
ziV^H?qZp|mkx>e1uu+UjF*ZeRqZpTBe2NK*xbH^6Dzi3<tsBKeYT!ok+D0)Y#ncqr
zHi-o(rlpupA*7g-;;W5f25D#ln*{Nhs^s5|Lfa(TY!bOmVlLa?B<6Dzo5VZ?$tp``
zZxRbrEK2dlCb2lh(v+Y7#*!32Z4y^)7F9OOVcxk}JhE9VPw~WNF<`S;m11>@S5my1
zVoi#*DfXv0kYZhm^(h8z5xY`sP*U2IVsna_o5jWyY-h`6u_eXU6gy}OTg0{$pKcZv
zw}|aZZhveREF@PCZxK6HNp6eSonjAL*do?%5qnd-yhZF&@QW>i_(4VX%vSMyibJ%T
zE#h#Bnp?#Yg%i=YiWgG6m}1mc@luL6w~C`2>{hXBt9UuZw_63Ti(AEODUQ*QQyf<n
z%Wo5}Qy`>I@m7j=RWJXeil*qXO^n|r-ccplZIb!M+hl9+sghOOB>x|z_%Ov6Jkm+=
zQHqaK)ZH#VP4P*JBilsr?ULq;ZQ{%}@mY!ow~NmeL88h}aN?*HJH)s2|0zzg)^>4v
zyXd=Jd_(bW7e}^>sp_`c4)I-zW;>)}|H%1D(IAJ0IsBaBRElCb6wl$86u+i8&q2`=
zcZlC8@Ezi8iqo8q6g_u{Kd7ZU#2JPEsUUe<y+a(?A^u8nF2&g$;%_>%o#NjV|Ik70
z6u0h_{O9cyop*|hYSdTdP%wu}DgINpmnq?$qCgJF$yp}xh@Im3o#LaNqEHTnb5cW!
z<nY%{adi$&c8LzVM1@^~w;V{(oYWImDUn0T9B#?+^F}C@!!<e3LT|{SbPi>5xHgCD
zawwYvr+(2cLCC9I4nq}weGcVwsE|X&9JcS07E04*^-4Lsy-QS9kbTkZ5VGXP9ByL!
zIefQEmQ>y?uv^fXRL$X57H$x?<xnk$>N#X`&?w~HqDBt2a;UBFnhJ7Ibriy<-flri
zA#@|YLrmB$L=JUxSg~91I=oxd%i;DM>Z`^J?vWnjjvS8f7N>SgaW%@}&Kw@k;fWmX
z%As)%kLK`Lj$fI_Jvp?=;bF=xho(8S$f0Ep_vTP@k7%C5eK|Da?H*z65zp@7f6p*_
zk9Z)5<$DAXw!BZ3x1t30h)a7!>l_};;d}LnqGQQJoX0()(q3`<Uhzl{?Q-b3SG3Kc
z^<EM0l`TxzE625dugJ^6&LOM1({nHs!miC6tSdO_ogCa8(j0O*csa0okVB{tKZm1x
zWrI-;u_{TZy{e?ZzW?v5{65JQ+i9NzN7PJ}Kbb=ZGL}QH9G=RdBSp7QJWGk~6P*<7
zn#0r7jT}1X&_%%^`vjln!&Upl!F|$ccgvxB4$tMJ(=NMT^vL0qYG2zgTI?6SbLgX5
z9+5-e9Qsjja~PaM{~QM7@WOsEki8S`7t{8Owfn_K`vpDukQ{#7FA5(J!>Ena_5<R^
z1CoCt!__VIaAXdns453Uy91)b0Wq3$x=9Q=Ajah|K8HH(k!g<!IexwepXKm*4wG`2
zoWsr>cI7Z7hpC)U>QWBVa+sdO%p7JB9+0X#BZo}~#Bqhs&S6dt^K)2`!`vMHJs=t!
z6!R2P=Ad+^G_-{|EXrYN4$G)x2gPDmIVhIo@Z>=;?4WEgA8tD+UOgzjJ}6e^uqubG
ziuu(!tjS@04jXc~a8RtxVO>rx?zFY*4vD)D3E~{rMq2A8v6+miVdfnY9S?~u3g^?2
zhs44|VjJx=haJ2QNv>W$B)&N$cIU7shhsUsp2OZ8_T}(A#h%0d91i4ggm$q(9L%B6
zVR49xdRW|e`2T3S4yY??rv1=+@4dHo6FQ0liU?vsP*em2_1$*2?_R*(#a^)sc5I*6
zdk3US?_GNDy|@2K{5>aU&SW;pCX<=TBztd0beSk7YKk>ckbd7p)fsYrN+D(xVrC(x
z7AgZitq{}6%x?tE@+%X?go)yBip@l^VxrhTQ4pCjQOqgCT+V(WmK9<iMd$~yun>z1
zF~1O{CW!?!7n4MnNuu8*v6yuyi6!LZ58^%&^{a`GnIx7MVr3y#PZFO^5-ZsGNosVf
zNGZgjNy^BSn=G157HbQ!t`H?nlrpit5E}|{gyyjj8w;_i5PK<pe~Hb7*iwj{R1g{s
z>TDr)kQI}~cB=4X@#JLj{$z2xMpjK0q#v3rcGKqkCH54e^j}IO`u-(u`%COA#D3b?
zLL4l_;X*9@OB|v^{iXaFzJ=*?4LSA43URy;=L&JY5GN=$g*Zdwz?u47oYGd}v{oEu
zsiC(QV*6i8&MQn29j6GGC}OG=r?`otCi+bg^lFNk%7>v#LnaWG&;?k=o+3({C}X0I
ziMl4rnkZ+YvWY4tMo$stb+L*jD(EaJZ%q;3O%at${5?fk*QzECOc6Cq)MVYMqMC{7
zCYnzb^xrrNdV1GP6}3zyq7=*8eEO$wr;2(e>a)tXqLqmTCK{S(Vxp;uMkXGbswxsT
zHZgXpLcW<Qnwgk2RWvuz!o<d@;>=Vf+bvBP(?qXnf{&_CQ&zFHiNVvvh-tzwAxu1O
z;t3PdL|YR#^O1>mCfb|0%tS8}9ZYmIm1o<{L?;tZPZOO@bTRSXH1W$cv2dEWz(iLQ
z7n!(_p7}IUY`QR}i;G!(x*7{dG<>=$*4;!86PK76IbB?8;+^TrTYGA{=&336;(nhl
zE;rHJ#I+{+o9JVL%(-ZWxZ1=OCi<Gn-?-95$r<7*6HBIxz0*ab8Hx$lu>1^R%@F-e
z+&4qe+zl{sorxPw++<?R3~{}Q8%(u=3^eh>48cS*yK;u$`f_B3s5w&@GsPeigETV4
z#84BdiOj?;CWe{Fnea>uClgGVCM*;AnPSXLahr+TP5eAl6jB)eR+M!!#gUo9HsP3X
z`O?2db4~A|k>qdjl+OAl=Kn1s69LC);zLbmPuN0ig2fVYQWFXDCPtXJmqR0?OpG#d
zm!4b}zJsHiDeg3J{%=upmLOy!VwSku#62d+UUHT2eiILvc*Mk`+&9e<4^ntcJWM!2
zM6<+Wv&37o#CNmAyjhBwqsiyl;xS4x_Xx8@)7hfiZ1JRtr%e1|;!g^IiDyiFWa4Am
ze-qD{c-_PsCZ0F(f{B+*ylmn{69Z?9&t?n4Y_=Gqv#-ups`rYCSE*vAT1_U-R<7yl
z*-CT|&K7S{k||dv-ZwFh1-=k(Q%+3fa=b;YnIoFd5m(I-&Kz<79PzI1A(0PEjMq3D
zXQK1)A$5&EBivcQRqqoMpPKmA#CInCXW}yxUzzyY!~_$coA^>Abc#4wrZ31S?FzCT
zX1`%S=O~05na}4a|M`0p)8~jEO#G<dNc<-XfQjEs{BGhG&ifp-$g&ENUp0q`u(kCX
zmYORjnwVr_9tFU}WD|dxm`M|1Vv32WY}~{QU8~7lG0jA`xq^wlG#eyOn25|GGv|sq
zWcyq(TT}eG;^DbsF2^`m{5@B_Zh?t~CjK$8*2E$ci%qQ3Jzt`S%mT|yY@REYnm9XG
zd7jH@WabH`6&hKon`O5BJh58$XN`V4E3TvQrz+_J8z_g=i+N&;iB0U!1krn**sKwj
zWFp75nqVS6YMvU!cFN2=WfOLp*iGYUp{j*FCia>*ZsLTVxP2xLnmDBK{e+ysd4g&3
zJaJePkFxMQaYW;s<#qE!qxs?(?azFLoHTKYmf2D=aN5Kf6U8l*uyEGIIjaABQPje<
z^HulGn~3HMSPF8xRK&vL^ToUKMKKGr=8FyU1z|}Gr7Tp?WlCE(I$v~NAj(-Nqw%sD
z)?Fa}rI)wBrvny<in=_Tt)vlqfw*shczJ=SW}&);J{GR9_%k`ww9wPSWfp2#sBNJW
zt6QjJp{|AI7Ft-SXQ94@CZsG>uV`SQp@l{kCM*zh7Km*N1Qsgip|S1;d)ri(Y^GtS
zg@UzOT4-fKSdbQ4TWDi}11zv`-9q6l6zt*Xg~HH8a)6JhGHoq2U+pcl(+JBj`}RW7
z!9qt1M84M*yI8ou!n2E%{9I^Z_CnF!LeoW}tA&d!Tx?<ALRFFUa*ISa3xsT{hlNXY
zvt1X7fs4eY<c~&rS-4zJ8Czqm-WIsy_;rzZf04@ewQ!|{ffoPRqK-ALvT(J9Ysd|~
zdiLXlYC099zl8x7*u(2JyiU`%EE4k<scy3=!W%8zWZ`xTg%(OK7K1F@Vquu>)y=y6
zU=4?8IMf3D7QS>iCt|TeZq+4;Fx{qcZa+;6T^9?>LT<6RZn0V!ZH+Vg=wdN`vB+`O
zEPQUkv*23@EQA)GvhXxHU?H|}pN0D^Bo<N&qb%HEA+zwsVv*O7$WM#K2n%x-i;)&K
zE*3`@3*w~TY2j`Q_gJ`#V!1>xHC`evS|YArqMqK%ZfN8I3lCa&#KNQOGheqvJgi%O
zd5M^?L`+>G{#hbMTX^ih#viwEW{EJCiYIij>Py9COU08G25ICOPQ8WqEWB^wISbEQ
zc!yGC;ROpXS{P^HEem5Pmb#y>S$K(~UMgPJ@D)veWT|*nXIbWTO?iV1*Y6suA?g2S
z-?s4DQn7NW8uI5$#gwID&r&tCV#`GRW#R)1<1Kt-;bRLQ>UOSLriRmDnJQo|6QAhT
zKGly{>wo0)GFAOEO=p=eEPP23a?~AkUs?E?!eC>#jc+V`YhkN}Z5F<xI9XU=VWEW|
zEc{3lL7BJklZBrx{9)lw3%^+S)xz&uEPu1`$}&NhmHT&Y(rN!`j=oqXCR&(esYPVE
zg~=BF;#^D>%ub>3Pf;$-Gz(KLbx6o6^bhHQFJ2~QSeR+yZyF+fl*g9&lvZ?(7Eu~r
zo(9a-&Ca7aU8WkGPuX6skVO`M=!MM|wpdtVp<uaKYhj&*r52W1SZ-m31+H0ZEc9M3
zZe1=`T3BUawI;r_TufN5I&klD@sFjJV3uSH>n&`c0DmLc6J|H+X4fnin=~?+wSG}&
z9qjF)<*Lkf3p;4yY}B!_)50zb^HzuoHg>bO7EW0>ZDB7h!>{6ig@YQ|XJNlaNHn<<
z(fCmd$24+S!z1MUuWGw}oaSYPIAN)iSn|2m3UQM5WQE`oNqB}TutF5GQQXE^3+F71
zULnqFSj1LUV5`NH#-XSUrhhBGw?dS#QOZVX8^lX$_|pne##Uz+OyzBq)p$7@{~oFR
zOXoRBMH^dIh)Omp+o)ors*ReqGO8?4O;@RIgC}XHSBM&#&PQAp`Lq@buT(v$Yonfx
zem1VPQQt-b8(nQ&WTT;tMm7u^!bW2oZC8pGHd@+fVxy^zW;U)~Dc)Qun%l70j>c(7
zTiNPZwY7~lHu&`4*A>|KVWsK-ACV&2nx=HI(auJD8y#(QvN30+I)Lq9gC*HX;!K@&
zNj62CL^gGSjSKZym}RpU+vrA4+URYgJGrq^^ssS>tsE*k<fm7POKo)!dKuwL(NnXF
zNH30bm0)6jE?Fh|u*xcNm5nQG^wo`DX@iMRnfU6fZFP=ujfOlRC6U?wHXdIk2H6;3
z<EB;OIvdy97--`L8__CplZ_iS^SN36w;fId&sBKPakGuVwvx;tHg2);_9`({XIYFy
z&I@PfR@Sxgj*WM1+)mcnc-Y1xHcT?y#$7h<wqe_FY@{|a8?KG-R|%#Zn_4CIuM(aO
z-$w8sJ+={QJo=APcC|?U!<(-bd5x#5#VB%PwHRSzqz%%U2Co)(@I|Y|of@)n;*YHs
z_t<#A#)G=zy*BRC$o(3=yITCRS}a<vy0m+>cu2QdVvTsz#%RtC6~V@1WT1_gC{&BZ
z6MWsb;sr|G8u6r!r))f}DI`8;;~CDyO7ZM}lz;j8yq;y^++n?FV+=X-tLU~yaO&B}
z%X<1=vGJ;{4mZ?!*90+qjkt4-c*Dl?8hO*kSR3Qm^94$sKUpK*;&j*`LX$!x`JRpU
zZJe-i(#8ii#@m=pLACLrjgL4?3MW;P<!yXn<4YT#+W4Q16>G%jHa@d4X^og*EBj1@
z8zLUU(0``ucyNv2xW2OSHI2U>6g`k{spkKP@2Fh=2qG-s{U34DKjKFlKd~trlWqKL
z;};vh+xWxAugr2sU}M5RBKb!=^N;!xH02+${vYut4Z>P6(Z<n#)R_Q9j${AJ#uOXV
zZOpJS)kdqeVwz@A_qE!=SS#*aD_&eHX4?3hqgbmBteBm&R?Ont*NXLP#axP(jZHQ-
z+n8@-0Y_@{k})i_vB<^}8%u2*S*zZ)m@Q8gHP<PpvF$q1XPsDPV>uOnow#+KT5Gth
ztg^A%#(EnYY^<^IkBxO4;}2rwI<Z!FjCG%1C&sT+4bt7+$fxVXNu6D;;T9WPZ5*(1
z(8e|!+iB-*?4c!GFLu!W+t|fnt{2R5a<5%4ob`eqJN8my*Nc5N_R~;L6vWw279jq{
zdU43cVUB{Vv(?U#HlOB#-1ud^IA-HG?cOXksQK%~k@ce7262jpg#zrLse>~#`+U2D
zst(TCIB%nvgW`@l`GJF?4ti`5%{Pc54hZQ{^Ya14tb~J-4$3+x=b)6MURuUc-^EHh
zus4VYHwZ#z-`F5{VpiTkMF*7}RB-Us1~FrU;I4%HS-U};-XJPFAmr<+IjHWSo`d=h
zYB;F2QPgx$%TXsh1sg?e2bXUYqc(~<4sO|~dct+5t^@j$V>gNhj*?h@rE26TWo+mu
zGx+;P(O4rKJLjSqhv47>2NybM;h?31whr1kXyu@_gEkHd95taVymX@)qrnk<FC@pf
zLhRWngabm-DfV1L+dFCp+R;HLhrdHciA{p)NxQ+x>dd!n5?vhim8#Juaor|G?CRhm
z2R$8J=HO!1b#RG;OC2RV-N|GJk8D!=+1w`eQR$6MO0cPS-)~ZkBD;Dy=;PoDGQj~=
zthb{U3tDEvz7DQ*aE*h0<m5_mm4mAtWgM88C1eZyh%;xC(&#OlM1KbZ$TtVqJIFck
z91L`DgM-^06gs%k!A%Z^lF4jslNjV+Foi+mH)~j9vk;p_ugxNR(s*WxF?_Qa=HREz
z;#LRuZWhBGytP>nxy?b9F$UB8&BAoBbF;W~i?AqWTSS{J!e;+JF@`;5I1XI)_BG?L
zBL<=GAaIa(Fv7v0Eh2P~I>;PEM7D^Sv-zdLlsI^Ni@K}4V4v~M7V+H{ar?8zNC%@F
z+~weI2X~O$Q;pqQ#GMX`J#8%5BE~;$@XqjcQ;mDrPri`?@R-V0-6~pd757sHwu%87
zf5^eZ4*z-sH-|?YJnG=Eiz6;ZJ9vz2aWTxr;|`u6-N6wDPda$Y!3+m89X##e83&&_
z_@9Gk9Xv-FaPY2!=N-JjAv<`TEpHVsIvC^NB{sfQyt!4p%<{a~eXDrI!H-+T;;rIU
z>fkofY?~l_!@-;6s)MoHMAvPi|28q!0THHg4*YH6p>5))ZQ^ZRV9qx2o`Y@M#D`?;
zcJaQ04;-A`CTeUK<0+Qg1=E1-;v)wiv$xyDCk}qyF8EU7?{62MIhf$!7ZM$O?%)dt
z-#Ylt!I#ur2VXmAutO}_t~$1RyC|_kF#8P^YKORfhxp#X4-S6bA%3J#?GO*@^v(|P
zlP3PGAxkdZA%1i4yMu`iCOO!@L;T^O*G^UbPm0G*(PpP0ob2E)2h$y#+9{?um`e8U
z6w@e~JH;J4#fv+|XFCNcTX%|TyM(bz{Ow?tgN+V0IhgHWj)VCQ7C7j=OAOs5M(h%E
z9n5p^;x6&UE-_=5Sm<DpgXIoZIM}jFEOxNO!BR^2F2PPNb5MJ?uy(7KJM0!$?G_L2
z7At8V9ISP)id@x{)%-iaZm~wg$-Bim2kR+Fd&CBo+%1mjGFA47K6?a-oB1LKyJ<!o
z4BsQRQU>;j?Hb=kR__w`>=8StDHMi1g7UCSO9heN_lUg?_BlA<;2=51z1SYHYmdNQ
zL4<QrcdzKMR~({V?-jYd;=#S*sKY-VqPdF}E{;1mLG$aPvWt`CC#|}RVlGb8_;U%^
zCyKZjzgL`f02c@MigQ{BC+!vI$(+4{NQr%d1uohrZrCS^yC~tJtc!9kynUjii&^_b
z85gBo{^L)Sb}@FJVES&KU}wn5@-DXS6BRTha(<tv=%V(1!F1t%QN=}77xi4!cTvqn
zbv|-Y$3_4B!q=&W3nDdL)Y8cFn)va4F>$}B>tgkOadf|^d_XjC(a=Q`7q1==@_=aM
zqVRyY_kd{Zf}FYXfZ|V67hfI_GY^PnF34&kEnT#7ahZ!=E?T>2<KhAr7rH2LVYq0|
zx-NvvJG;=%#hC+wvfb9jMvbr!%vL`rIx@NF<l?7;V(~#iF}U%d=<FgqD7v_K?4Wq>
zpdjq3U)s$@cNZ7A*mqDcU95`{>EYrM7ni!|sjHMeB$^yjwYnb?Hy;w2hL^kO?czEY
z*SqNB;tChnxajBNxkI9_iz{7hI3&J2B>p}muHr}!3C`Wsx_u(24vA}B3}D5>qCa_l
zSct=daM)on@~{}_;szH(II~B@bBEQe-RR;b7atxLgIwI~Vz9=kM86*v%MOb@hZQoE
zyxJki2g2blZgug8tL)fqE^c@6yo(n&3oc9-cewmRF)SChi-28n(d>wDT(~ZBF1j5N
zw;WLd@3G1e;p;|591+CF9}$s@*u_XqOkAWc@-9ZW`0I%H=ZMHO{gAF+>8NUisnt<&
z=}|Gt#n7XI#qM%(w~L2eJfaKV<Kpw9;sN&RsJPd~eHtNtzeZkSm80T87Z15ur}1M)
z#iKO-E}n4lBxlD(#be@evg?>Ij)}{TiMx*p;?ExwpB)oVxp>;e^kd=~4WD)K&oOcG
zn0QWSYaJJS^rDL~E<SScv5S{nyiApGF-|x5ii_7=yiPHu_#GGhj|)QYxOhYN{GH?C
zO^rNqT#fWC7r!1C@3?r^#oHQZcI9#Lo{RT6UlgYks@MnAZe8ohaZz4VTAdJsP6$5z
z#KosBzIE{(3%E#5h|gS1(8%Z$;&T^YxcFMv{ZhlXPl&Hvur8Y={^JQT?}Yfq#r6{d
zC&l+JexMe(_*u8m=%ir!(FI}Glj0YO?n&{hi{B^!C&iN|#qZ?6Npbk3D1AyyIw@A3
z6o0yy=wgzK$u8EC|D0tPQ(P=`vB<?#7t?e%=98H&X3+AunC)Vwi>9Z<-x?C(TwHQW
z3_d01xX4b4KTe6cE}l9i-a93hpAz$2?AHi~ut2v~_Ow{+Vu_1Yv?ne&iA!B9bFrMp
z^R&41v{*qEI4zh~QuZ`L{K?Z|4f%Xp3D`dx`Qx-$r?cy+i7s}z*iBpEViSe`jM(8~
zGtKX5vDL*k7h5#WY^5`z;EdQ#n{!4C)p+kSV$2z_lgvLOW}XpyT<oQqpB465vFVK1
z=c3A4ae$*>%V!kj<QYNAK^KSgqjqOimZLjL&galLr&RJ7R{<9%_)-_AxDez}C5O|r
zX)a3UP%4MBF3!0?4n=Y}@8aIGV(M9?U$36!HD97=4lB=!VmTDo$Wi@>-D4_|L#1;H
zDV;-^94h4S!Z}ekht}uBE$76DbE2Ha%WFtt&vT+;4xgM8l{B1uP7tq}L$w@g=TIky
z73ajkbE0|<HF79-Uewf(6W8p#sFg#{^J2((HM+Vv)X$+o4tJjy^>TReyi(hSIZ$pX
z1Jv0G=LK<=Y?8xenh8yFXqH3s99raXK@Jz@&@zWsITYkz<S^yDXr05_^P)`-Y>HBJ
zf^8lVA_tj6#~eE4(3bs#Y@Z{aWV;*$B-1tOx$Ka`0~#3%`4i+4$j&+JgzQ3=7Li1{
z=5SFCPZW`t(yKf!F3zC`yHP~eFCx2fEJb8@4XMIp+9f#*C?caGvS$wCi^$)K$Q4Co
zuN*GVp?3~_au}4u%{g3=LtmE6;kq2I%;751i^_gE>?<O#&Y@{hc})&9K4ptavf`4W
z^4c8w=a4TdpDik>zn>MA*XzOFki)v7l6o;Pr?g{QQOWF$Io!nRMP;>ODmyrbAvxTV
z!!S-|F*!7cq?mlRnCwwZ4lX7?DJF;KVCG=uaBB{?@#zV1dk!0l$uq@dq0W->S25KS
z+DuzdG^eS0ahc1(%VAy)^EueX!Y3zlcu?a(4q*;a4zbRT$YEp-9g53D!&Jje!@P#9
z&NNCF?q6IIzaxh`b@na|@7C}h4e!<PJ`L~Ju$Qj#P!130@Iwwia;9>4G>12H7)#O0
z;jtW^%i;MP9?xNDarv}{PiXig_Y1}4QyTKU#GldhXEh{+<zJwn>g=mIjLG4i;*#lQ
zO?gQ}W?%V_&K6kZHBEnA!#6Z!Q{!@YOLzEv4d2#mc`t`|boO0#PY;CfUnYD&dJZ4v
z@KFxm=|(=L_Wjr9r#ZZ#-}OITo%m<^5#K%`htL1RzsTWBjeqqY<!g<6lf$?FQ9jh|
ze4oQl8u=-QpL3X+!!+IUFB<-#;jcOTmc#EF|CdD^-Jd!;F^5SSnM~o-2!}kYxMZ4=
z10l21bC{tY{hh;_;&LX3ptHpJRF&7++0=#Na*l>`HRPiOIV_|B^pvnI%3*O1M{+ot
z!xCL(Qx2PRSenDK9F}X!TK$R@Ij{v*S(#&e2dvik8V&!+0VV$by?os|U4FfOv>}I$
z|CTH+|LrGR*h0&Y!!AwVn!~mn%9oJaHRRJBnoi1YjgWF6hdos15^}GG`>3Qkk;13{
z!h?De4{3N<Lq0l|!|@zScqr-N1a&!wE+ynS-RvoipXDl`kuzKZ{-dxA>z?PJJXOAk
zhoYKSeKoz9CbB?rP5ifTDG#MRl<{yw2{lb+^&?Iei<Q%Oc?~OgsHl-j9x8jdt%PJ^
z873lCJyi2hT^DHRp^=9g9%_21r786^WXakZspFyUe-w7C{(pD_4|&~YV-HO{wEU0W
z)I;<C@Maz!`0u?fH1T<zZKd(n9^TVg!-McJERW%NNDpm2?c4@v=c#XDo(JDUdk-Bv
zbo9{4!!4TLS;HP4E+L~lT;SnCO<|RbJ#_VOk%w2O7@wDrpKUj$l#ty#Y$zd5myq2(
zR4pl|zG__Rp{Iwzy4GbLdTFGer$Ull?%@g#eLeKn**+Q?B_+O4A>pp{aFxef+GLZl
z#<^3*)gG?#aB8$Mw4{9EC1Yx5T&tVvui*d<uhZ~)4F_s?gN8S1c$0>MG`v|uhE?J~
zhG=}K2XC#xG^(T==3%&pTREp5Z2k0|FI23h+daHcQWkpnu%t9SSRU9<QYMv@ge>5A
za6K$5DRUl9mXt&oe=YD3dbrugV4s)pAog(B!x0aOht$Iq4^us4oM;c9a#B2u@G#QD
z>mJ_lFv`On9-bu+OUXMu+~wgR4-b2|+rvE`?q}gr@?OeeDM>%}J`XKQNtUFaFtn6>
zz{7(co+%~YE+u~|CFhlrk9c_0!{Z*F@G#oLV;;JdmIF)6ouy=n(y~cuRqRO*PkC5W
zT0Z09X%D1~D=mL0E&bARbZJRncUNiooQLPh3J))Oc-g}%9N<YY#=}dL^D?q%8PyrO
zTdeXbWu}aLsEmBg!+<i<(>UMA9=_?}>oW2q4`a0`k}}T2TmRv2dw56V?`rs-hVN_m
zfrjHX{7}O;%cus~+Q*!%GV&7-d&)>6pLv+z;d>81kVR$X=N`WF@Ri2D@X)%fytJ(R
z+QXo-^69ej8#1%3B>t_3cgxD}IQFt~L0P%Ito+f#nX>XX51*8iKY93>dR<Qb;^9{h
zx0jRc%E>Fr$-BzQ7s|=sJ^bO}PY)A4TvlHG<zZSm$y%$*$w?lLmy?q{lq)Y=l$W=b
zmv@$z(>zS~uv?E}hKHFRHdClP{Ow_uhqWHod6?~Cj)x^4mU@`$;koj1fro_}ndf1?
z$G}7KkMeS9dAUdvSzs|aP+k_RARAPW%r5h=+{0=QYdoyr<qsY{s32ESe=Ep=6=YgL
zK2<^fRzZ@uu7W&KK~||K|M6f{lzl47+bYUCE6VlMYY$^8%8ee@SCpIB;fiubMR~HK
ztX4@HmE=|rJ3I{4_%;vQS-q0HyprO~P7k{%(v{>3mE<>-<m^gvj~?&#N^-A<eIE9+
zd?k5+#;3A8NLE*p)ho+GI(t=Rd3$Af)Wb1eTj48{b)3fELjxZTeVn90pzZZh#m8w@
zq^4Ar<EzTE9?p3v<)gHZ^B&-%n2+K<xC^+qvMl1GsE=`#<)4-1vdVH_Wm&>UsVegN
zDzc=HCROBxRn#NDiY()!td9ylD*7nr<B=+|ypJVS<hUyG=PGh93shCGl8>QP<;beC
zMOE3es;ugxnvY+r$@)GfR+ZI#)bvry$MUMOhK75q%Gy5a_`KpqzFSR}t|sgHsOO_w
zHQ7jK2UU}CHMy{w+(C*Sb!#7Od^BeFe4x5)>Z65^>#EDT)nzjuU8>9G8d6GI`p8w6
ztu!P;kMyDHsvY)+(C{IANFQx|T<PN~AMJd!_tC@0B|bX%=;-4jANSXgoqTlmQMHD=
z(8t*7vWt(6)#U{~zO63jRF^!IJ5^n_t|7bnxV(lORzqIQ{`+{fhU~6OuBstFuOX+_
zkeB-C$ud5A`?$=<ks7jDP1%cFttpAKOt+fyrkaw6pM88>;UldnpR6hSvbCD>otl!_
zt9@MK;|3ptYN>2LADe5+0Y0wv@qJC%Usst|Q}RsgIv>|_mTSn9HRV9gS}obSmh4$e
z-pDewB&*+~8yQ5->+BFtoR8`OY6Q5&$1oq0ef;HPxQ|<XyyW9$AGi6q-N&6i?($LS
z!=w%O5&N)w*ghN|uFvZV<<GU`!dh~BEm^U)%(2<p()ZzUnrh3QwI$&lwPoNV)Q|X-
z#wTH~eB8k<)sdNx7i!BDwdDvOAJ>+74JX!?BYlkWv9Go)TSvC2BQL2VqdM}*I`VEG
z_xO0!$7mn-`nb=>gJeiuIlhkkwT@g~N8az_0UyWe$eMMftSjBR@*$S5D<9VI5e?am
z$9z2Q<5?fi`MgM3KH=jjA1CU{pX<seeax*ZH`kR<`*?;bR!_F8C;QctVLkbHJ^5BW
z`8@mV<3%4o){|p6v-RX+U8Z7vSx{fTLSgXng^w?NyyoL|A0PVo$j2KLhWc_GUq?RI
zmv6G4_2pO=t}lta%_{ZfyFT9YF}=QgN5i%C<@+2<eL0>&+dvZefc<G8TQ!h{4di_d
z<i|cf@v*6a{ESo9Kz^#_@b3ol%Lej)oa;IYnc(AG1NpfRHd3dd<T>+KKEC$x1N-me
z8wxhf#UU}Tq3qgFe#hQ6l)p5TLmJBOIZX}a^9|+ZhVmyLzw_0N<j+2Sp^j4&8_M4_
zq<)=hsI-ifKYaX2-S^SDk@OqMNz|`K^2SDTbR#*ok(@#i^|8apP9M`aKp!i8tnx9#
z$4npde9ZUpH~Z5_wKki?Msk*h>ojE!=Y@0BNHSGxEEiCh8_OjWn8tFUk3Nm%B1&>&
zxmd%IjpYlC<x(HZXnB0B@NuTGtkFbHZmb$-mDNnXS_szpSnp$vHe79+$bWpSWy?)e
zu|7@Y1}e3WEk3sD0>hffkxk?#3P2ONS;PM|k=r=rCbDW%B{R#L$n8FkH<6_5^0C`T
zi2x-7?D4UeboQT8?PI@>!;~Caq^9x!*;rQ|()d9Q`!-cdeOps`l(x62JmzCTQ~7pN
z`Eygbqp2*_OrG>{iuN!-kpPXG$<rL2kF&Is&19Emk}Ljo&Ez>Q0n|I4eXN;$x0x&&
z;5WkNvRHtH&E)Q8vUmVy>o=DdG?%3UlnzjZj&TcFCP3K$l>$@_P%glY&E@FkvO<9J
z0pjM8%0)`W0B<*!-!+$n^P9`<&E@&#vPKJeeG6GNK(zo-3(53&3t2NjtpGy<wTjga
zP$$3@0s0208=zi*&H=gvs2`v~fHnaN0yGTJC_t+K{aVV#0p4jLTLfqsph=*dnO|DS
zrU3|>Y1ll#q85s{r-dxmQZ{HQJGPW|OW8WW11;s7Eu|6Qo0hUI#}z;XnAuWF4T(@M
z+6P$QQgN(ffDVCLyqJ!)l%3e0ma;-CmAxRqg#mg5xFkSV_P>?9I6$`m7wPgHTFI+g
zNosWW0DQ00N^&t`mK84z&@;eg0Um87$F`Ex({EbIUI8u-(3`z#C3m-yeF7|QrRc21
z?3Dqo3UFP3>jPXJ;F<u}2IwE4SZi6Ywd~kh_Ty8H3<!{Gt!lm1T0YuZy>4KDA6v_t
z0t^apgXZ?^*7C+cxp13X%bNpmI9=Pw!2!y&kxkktd`JKqTh_fLz%ahFjT|1})&Os`
zkzO15P#gJ88%bk$dw{|KW&kU|ju<;**Z~~QT7(7>T=s;#4Ix8#0sH_f0;~)W1PB9s
z65vw`10^TGGXb6rkOW8r+|LOLkOjz-OQCUhfDr*ka=L37ce2W<f>9dY5vW_=Ck`-v
zsAVt~!(F;Sr`pCvp1Kk4o&fg-xG%upZKR4y@Rpc#x$$6thXOoFrsWM19}X}&z+(X(
z;Y0-d`3gVc3&M?UB;WP8e#;Y-x>M@DZl>dH<WrOueI4S{fx3T^7q&ka;Q0V=QRV}@
z5a7iCuLtUG&oKdB3h*lRrIzt>z+fE4D`X1;By}|^7f9oBbvylQfx2jsw{SDC&Km*V
z3^1158zjaB>OxvxE7yOJAVLbS_<kqA`vE=(@NS^)glBq>OmkI~rSZC*j{<cg9~=BI
zz|F#7C=g~p*2LihjQ_D$0e<H&1560;IjaQtKEM|NzSPxu@!cI2jjt$vy8pz#)^y(K
z$}no*>UMa!_YagMP3Ps1C9X4mqOMWe1N=-CsHGxj83i)#V2o^y-#F2O)g{vG#-9|Y
z0J8(k2{0+ZWKPYlf|&vS(zT`rn8r3g5L0xPk-4S^VEjAYH8+E^f2N>)W8<;{$=jR%
z4pc;*SsD@<Gf2!0FppDE$yiEdJX|oJ7L1A?V1dq(!uu6@zw}~GL@1U}TYDPy52$;m
zhZM+VdJ;<v$8tTboX}MPRtG2%qGX6Q0saYaEWq&qYsvEfI|J;ZS<w977+_O?4U|<=
zbUUsB>2B8atpT=aWQ&Hpu77)g;e)Y*{oy6XIl((rd7ml+gzcvB4{(t5lLdPNbuZ$6
z&6a%{XEt9T$)y7UJ{+m889x-@uoj^s0gh^fH)_tzi}&&dLmr$6a5BKz0OvTl4DLqt
zIbBeX7m8B33gnqUMc}=}G8RHzq0D<(&uj5Uh$111hA0-Qc!I@4@ZN7W%P6|1&J{e)
ztEX!lr9zYrQ6ogn5M@HL5#>UZ55b#wDQvu{j~DS(2vIRq!mPp;Tx?VdQ6)sx5S2r9
zDRGNijNeS78mm}F^$_nBNQMCTZIlWGkPH#ELevgXKSYC2-Tc}8E~8GUg6q`{l|0we
zkO)Kf@)pE~A)16}%08bdXcVHcMu`7ZAe)6~9->u<)}dl%ix4d}!l-}DE+~-gdmC*+
z6ofEBb-N}ns0>aP)T?T2FOc){M)RIV+Ys&8y%6t*Xdj|Oh$KWBqGO0oA+8H?eTdE>
zx`eb#xGcm4AubHjgYdArdbcYJG%_v@aZ!k~1+rB?6*RM3i0&bHF)U4)SHh?;R9r&N
zlveQ&FAcHiE`{(a-CiO3gt&qwcNJW&VQ&q;&l!E$Th301YeQTW;_49BgzD<-RcDog
z5VFenGX>O_{vmIjG6sa;U5gt&;twfRV9jcV92nw;5VwRF7UITG-QhWyGoCkY3c)}L
zgF@UKf|0_0>|l)VYD`YV5Wf0a3=Q%9wcuUl*PJRC9^%#zZirln+d|wP!V1CL8Vhv`
zyxiUl@$!WR;|VgtLK{QcA)FA;_E9(V@{(9amhm{JAtKUw=_NTIA`J0jVvM*$@RrM7
zh9n-d{RfOs8OkIlGIlA%;~}01F(Sms5ch<*H^eB)URfo>RE;}A+!?B1I(KP!cgU~0
zhHDC5z|MOk?+bCimdQuRx|+rVd>Se(c#y(&sNm~{#-S$a{^y4^kvhT#9}O`&#A6}u
zxY>B-DkYyJJ{jVv5Mx5T6yoU+&xFc$QBa?yBA6=5^9v!KBUeLpkNwh2Ft!Mh7ejU9
zF`ph!1uxfqImGKB-p~^MN{ClOycXieeg<PVQz>|NIwJ_Y8RD%FZ-*EgVjS7UE2GJ%
zKrKDIF7=%d?{WqWNu1$S7zdUim_G<HKE#F)8$)~;;-e6gLQD?vafnaYKKsCF3h}=X
zUxxT9#AoD~A=&xQLr`)iXc?n{{UTI1roLiGhGqF$Yt6T0U5IZquGGggzSna5Lx=_a
z!SF+j?8$(hl-{4Ip$*lAy1)IaZW{g?VtrYI5#N3f@rPF7KSNB^2t##Hoe6md_+KHW
zkjOSeObszD#2n2c-fuiT#7tTbwifdEQ}RCZ#g`bf$d>C3KAlZ-!Ml0)7gV@Y-F7}V
z{Qr2D^C(vXjbV2f3#nWoR&toS!Nnm1K4Mv@Vt6glgPm*0<#bER7*v)OWYj3J#gMlJ
zD(WIHeqYT7L#z!|5c4&mx)A;=Pps4IqUx;=v8TDZ<o~Q8siB)fYz~14MIvkou{FfL
z5c{>9Yzwh7#I6wAX<LRFj3d2+oT+Qn6mmDmzPo^z74Kzh8s{a?+shlTc`E4Yfe;5n
zoS-g;I7Ep(TyP}B(GZ6<{%<(EW7_&1*H8+1xsczKHY$`cPHC|}9pVhdvXW7=CC-L8
z7h=eT#`%zc(@^)>PTf=R&Iy$mN26$jVi77ts2C|W7LQOWLg@%4BBfj<H5?-3C?U&4
z%Kp%#my1v~QekQ@XK3cTjPj8paykfU^eRQD9-&5r$`PtW%8XZyP)#FrjToPu%L);e
ztQnzpggOyk6tY%?PlRMx8JecL5sH>D>P46&<V(j2NMTfhh7lS?K#U?W8b@dn;h6}}
zMrazLS%m8&42;k`LW>C9B6N??GD52eZ6mac&^kh!NQDL<CkrBF_jvcXh?FiH5gse0
z;=;&Cg%WtKP{fxQ?IUzxA86GhEElq4gw7GVMCcUZ$^PKw&$L$;M3_+4;0kyl3p>Uk
zA^W#6N=tcBgo`6}>-*R;Dm=Pf!{`y=k_cCkdl4>;&@)nz7ufh^5qd?qB0}E?mq+Lw
zp--f&E~7&5Cf*L2@x-lSeszOLu}DRhxiV7mUKtsonUvQ=YTaQ_gZ_FH{UThekqa&~
z7@>&+84#g|l-EUI*stBSj2j}{7{QC+N4SX`h;Unk+xhBSj4K)#H%Ay8VMwGFpj#pg
zi!d|-1B3FmZBl4*hesT>vb{`<3`@umv4xRZO*j@iQdb9?99IOc7sT0fC*lw0g&QHq
zH<B$68--UJ$M+Qk5yA)$M0hYl6d{gqM}#{gFpNtQAs=Bxgfv1%C?#dJPG5t9%2i`z
zgi#T`J6G_8l+1Dp>JAcj@zs&K5&FJJ1uwoQ!o3>dbi66$_LBu)OSJ{KpYkwDP~RVl
z@Gxcj6Y*rE0v0?H;n4`AIq+dBY|Ud49*^(@8CAyU6^Os3WW;LP1SW>hpd>%VK~azf
zD=}uso9D=Z2s0`F5niAeNBAPbml4K9cqzgM5yn#zBD@me%?M+)M7<g*2mW=9zZPM|
zC}XXZq`bjqix}6PEEpHztqAW@r1Qqx)XILwJG#nYDa*8#%etxvQ13-}KSIN{^5093
zJGYe|M)-&`c&!Q;^f6UQ3&UrTy2}1j4gW{&xJA&r<6Ylfn-~)~WOBPut#OCz80$ue
zuOfUM;g1M^M))Sex8!PspLN~uBK#1k)$@Bw-7)3vR=CUfk<+JRD6|@{ZfyP~!f%nf
zW%^gG7ya5w5~*>&(<+uQ8103|VPd2rlKd5cj_9NalPNH5B^Td;MT{vCrbd_+VLB!D
zOu-CldUNBKGX;z}b$46Iuu~+?iZGitD#F?bbJ(#6%c!1|oKnU-3dYWY#WXSz7O?$D
z-2>0Gh$Z(HjBP82++*C;*;o=OlfG0#TJ?%0l^W8EUZL5wGQuitrdDgXh7vMBtya|s
z80R_|>msa=a45pz2pb}7jIe`miLfcc<_MK~7~5zPj}~mva4RR>kYBZxj|6IQq^fS$
z3j6$_f?W}IN7xr(KiQ?<yH`U77hp_*TQXx>TX`T-(IF2;xL?O)WB|t+t_t{gB*IZW
z-c#fx8FjFL(|sbsaSp$(!9WiT`fyTPYzE-?a-29F;Y@_H5za+8&z_%ESM<{*qw_}h
zjE))cqA`la7!hM+jN&m$#ONNQM~sp&O2ud%qeYC;G0McK6{B{HvN6iVs2rn8td`^Q
zu`>P@V^oOwXK;hdG_#dr5Mi1xjjFLSq}5~8&`7lycipMNRn&|@7lKj386v!0X`@yr
zqYf#$Oyd~!V$_dS_^?K?GDHnxWttjlNTbyHBf*uI;g#upHi^+R27@d&)8(t)qH3+I
zYP5{eD#nE|y2fZ7qfLy?u`>7tF^m}PVziGT_?E-mvZ8H_BX<~#mqcM8g=uYD$=K^1
zVswnrDOORa7@ClMU?3`{84nv>;{T6;b3qJ-6*#Yht?+Jt#=N*FR;%8{F}m?oq_T0W
ztz`C+7?;Kv8snB2Jy|zK{}=;e^ontLjAe%ku3_QR1-)Zj5u<O6KCy~uKuYt5294g8
zF|LYnHJRT|asi@~*<2&EgtYekVq6=m^^3Om^PC#Obun&;abt|@V`b<D#wrvS_x0SQ
zGXmpHF>a2*z(9jyJksCbCbWAyIXK1;cB!2*dOhnId^(JEV|bkC7`MjCJt&M}#<-0`
zzTdbxF>a5s`a;8NCoOXFPys{5IXnfTkkm4GvO$$}W8`8y+)h$|-_<bCQ=Dq<g)yQS
zaSV1W(fwqwuqSF6N3Jw}JXw&%{~w7XA7geA<Ck`F6ideVEXITwcT$jIJVh?WxI4x@
zF&^TJV%*C%J%gKHD&2iC?x$?TctF46!5E9$NpgT4Yg)^ABvwJt9*>pjcr?c7Sj88h
zEBIK9e~*m1jS^49xaMLN2J}fSdyL}rOpIq^ycOf^7|&6Vsv9rIcqPX3F<yw3%k*N5
zF)?1EUeq;q^fr3hDg<zES1fx&yc(<aUyt!djMrkdQ{&o1x040lj4?LGxL8FnVU~%8
zx<wBaRqCA>?@~T*GCt%a>RIOQ{(~6rYn<!*-ga_)thW4%P8ZzJ+W08O$FYj|@JWnM
zWBe}$1H{vXU^FHA52P>cW_%vw3-&O^tQcSNrBvP+zsLAGW{6?@9ILp!-^OZ5{XWJI
z)c5xCyBLkM@&8fJ-A@|Q#L>PH(xaxD{}SU@J-^M{%gS$wKVtkDV|t7o#f^zECdHT<
ztJpx3$tZTX4W?+F?bTimZ~y<t0t^&5jcU@=D0PuBu!qvP8SIQ^KJg)zm>pwIjFmA~
zQ9NSI)7@C6HEw>4g`DCT3n(NsjDrlW(Tn-USe+j()sVqkOP(wUh8X(>7=+ZX<uO*o
zSa-Of#t{{nXmyM=<P6OV1wO{w7#m`2WC2=2&sZO$l1Ecx5Wlm%ygDy7(Q-C0Hpkc!
zgN_;9v*+4NGMS0=ZMv!LTE-}5oo^DmV(gAFImKTo_Qcpr-A}MQ!M+&#sj~@gOmKjl
z=j#%*OmHa1VJcLDatV&aI7$aNLD57B?XeiAVw{d~JjRJw9c!GVdg|yQAGMbZAaX`a
z#km;gW1Q7EBP<U&t&SrYvj&MeV&&-squ3Nnly<Ytl8M?W6i-kh0llwYyVV|{6yJEJ
zpmc&V34U)ctBe=4;iQyLP$5Cx1oaYBOi(F7^#nB%bxvD3LDfY0s8w`!QG2<wy=1nU
zCUTQbPvD0BsF|QvqRt;`Cn|zo9lpJ-ikCOJoeI*&8L!WF7~VZWg9Hr|G)mAoL6bze
zi|ih|$_Ri1J%zKM%@Vb~+gC8w8_u<tfA%z5C1}lICb%p?n*;?3Iwk1LaPNsaWooO(
z#r1*#;3YY{PlW~Sbg|JcLHh)^pDpOXzMU@Un1Fn1(%N|UbV1z?vP*&s67)z^+~f-r
zW$G_VaB+gJ8mDJS|F9eJ>PGiOImSc?8R(5(@g)f^O;iY^)6K!KM~qz7E5YTYB<Po*
zccKK3T<WXmw@;!%TwRgi&6375wsB>Gs}eAv6}RM9Ckk#WY4BW&#`fAotsU2~ONm-2
znFb^%Y;3gaAUUVkCu)5enBccdRIrkp5)4Xs{DLtFZcZ>b!Kegxkn;(KCh*9a1h*s@
zmcUA2b6STQ!xP*_h9qDFv|HI*$KZhv6~8cnN#5$XpA4SfEikwg@=V@IP^7PsOW=}q
zwT#{!B+u%(oVB_dL4r_oHP5jmh!f=xX9<!-sSj;bn(*FKV@L-{GevFUQ=WB?(3}~W
z@EfICtv(wh?o4nO`IF#DGC9FL2_8=HNP>G4+?U`%isJc#`xC4jj0Y060@C15P7JOu
zTn8UY)Yh2JFq`56{b+*66194ADn}<^+&#vuVfOJv#a<-B*gEtao=Wg^f@cyu%j#OH
zpG!a|guchWE(aq^GWzNZ97_io+-|&-;N=8ACip4AD+yjr@L__F61<k+^#t!Fct61#
zoZJL&C3rhg2LfXgjMGS;0;A3qMw<eIME2?(En4rg!Om*$%;;%ifbl`1q6<;d#&b3Y
zE1Z%>G2@JXoL~YaA;Bl?XM+FnrQCEU>iYsWZj8*!9bAh{e39VG1m7h1Ho;ekI>2Q5
zniY2!jP4*A@{)&^-zE4y!4DioTZ4y+T(hXT&-XUCMdIn=&k24>FrCtv;MYV27XKr`
zpOiGJ`AKC@ekV7o7!<sTiP}F-PViTPNfe~2#=oI+rX*mv#;FOW@xAYfLN0|J<X0Ue
zY8a=B7&AHV2^J<;lwcO+cAS`-U|xdR3Fc6XI~m+xj~^_48fb9coX`1U`;20FtYEt@
zrgV_R7qfg{V~K|UMuaI~6i8+R74>xmC4_2~;_4KuXgz3cQdCQ^hW3!QH^JcqYbl}$
zcIgqVr@U1&HYM1s<#t1YjT)hpGQ9W}$^#kR*x12A)iAc{S=&zTU1u=F+ZPWhxRY9T
zrhp+n8D)ESf<4;s?xp=tus^}+RGnWP&^mSSKh65}E~RTcDm;?lXoAuy%A`1!;CO=b
z36SDMf|Ci(YEyYCQC{)s1ZRkJkUZC==o0d5mdH6>W?U(QUU!icMN?&>OQvXgpHVDD
z@f0Oe<h!bUgmsNlkOv%vvrMTJZZ%^utxbw@DJrGP&TvA@r>KysxKy0bTe)3LRkSj)
zh!Lpiu~bfZ>5Wk(Ro=_~4zhZR8Yw!a=#-)+Yo%zMqDhL{De9!kMm0>;GE_Ik!H13d
zDe9%Tv%CtxTDGG)p>2?Y$ICpuq0`kU1$RkAnx<%$qBS3-%9(GTs^E7mHQpk{^pZx4
zj*@}!T5)u{3OJ~O6h?}+DcYqFDSCF4GF4N?BlIC1B_W-?_9;4~O5ke@R_6u{9VPY@
z{>~}7a6~CCO>qHPmx5=}-BWyD-RPR)Vm-`@QnezGLL1U8MU^6I;N0+XL)U}j;yG0v
zqi3p?@5@v4)@-~iMK6sorZ%}sOWr3%-&E~Zh+mN^+fJ2d_DW6U_n>Q1^h@z%il<Us
zo1%Y;TnaD6fE3rI7@Fc1-T&)T+^Aa~nBoR9xvvUt)g)2zb8kv9C{=6R%_#<_7{Yl!
zUBG4TL0=GId?><UDTb%8bq8piZ)N!ug((=L^R^T-2PqGS%aEDEO4WLF<QkP_VgyDf
zRXYw>!+%|FKShw@t`v8t2vbC4`>BGFDdH3f-<~Q%nx<IUMfpydehXuOaxEBHPZ`(|
zDesn4$S4YbY2yyc24DK1!BZNh&$=7;Q1((hk}4nIz7+STcqmoQ1DDhXQaqTd52G|h
z-Rl@!RcQ|&)=xjYN*#SanqqW{$5M5w`FM&aQoMhc!MMXTN3=yu{Mzz#if2+xAV0ON
zKAYmT6tAavF2(byTE$*SF($=JDPGjsw4;2jhVe4RgQo#0US<0oB@a*N*#FU6dH4)0
z_(qC1$s)ck#n=?%QhFLHBKBMC1B|z+=@+U+kO8Lu>8#+p`sr<_3gS}62Pwv<_&CKU
zDLzc`5rwL*K}GI*yP(<<VV2_bX^Q`)_>6@+%14?hr6!Rd&1rSNNbzNgU&+`MU#0k(
z2H{M>&#BtJeZ$t+b1kUfvNN@e0hLv2Kcx7PqLt$Jj*=~mj>Pqz;C7h2QvSbg;a(jo
zmrKd-dW!!@@n?#OS|F)Ylc+ch(#li)K57M-l45F#7c#t<VHy>dnw8<g3^OQTDeWQ7
zr1(3<tQ1>PY)vsc#her?C?_fAlB;En#VMAMEz~>eV~T|-xb0fRIqE36d*XPRW%}d|
zu{2e&IBAQPQT%Sk+A_v+YUp?s4VlMKt0+0z{%oZE*8^G0dDO^1x*`WSZCAni6f|xd
zQnbHGSvi`!f^p&r&)7tpbFr~G#qN%h$Jg6ZY^RN)%4;6(Ae|0BRf%$5$JoW*HZ*v!
zLm!fgwpZKXeOd<xQ}SttJIU@nj92;^hf*9)aXbaXxgOEFOsjh=#ZeAfhhux!63-4-
zYwL+reS|uh;uQN<)L49=fM=xqCUrK&xfG2uG|q571u|63P$@%^3`H}P$&|gK)h(8x
zM23=?{tA#$1q=qiE|sA)=R(I(CFJK+s&==2M%fJISe;t{4J&9!PVzjHXFHWMRLM{~
zL!As&GgQmKlj@q8^6;x?%B<DM)Y?QRpZ2^#C)uTwti@i@k#3`8tZs(-+5h{o^)d|T
zBy*i)gA5HbwHcqU!_u)>lMGEWw8>DAp;@MkNy`jl1{lprzmM*Xf?Nxz1$0GPWoVr#
zt4nW$o*~y$BZJ5wGyFPKxhQQjw1Uw-Lx&9fQqwL|pKR!2bj;8xL+1=#GCb6Yzu7i^
zdt03hzuHOJ9R6aY=WRyU3>RfcGNc(U&d@Exbs4VD&^<$s41F?OktxUik_^2vbw+w=
zhMr9I3?4OKmMLq-!xjoE`FXkKWbX|8sNLaE!RMW1-waoC;F<codu4{Jvj0DwW;8wO
zX}=8pGqpfmt4GHetQ_M2O_}<Ta=8a)xFN%^48wKHH)a^b0qR+}NkguugE`phs^U<M
z49V2-<J3;_7TqT4jVc(oX1Fawj&G+FH8pO}U}mr~6mq0Gfa#w53_F99;pDCYH&dHO
zer)>tHe=uJf>WaecWQoyAXBkT<4m1SgyhfdM#PaeHE7%jms1ReVB&p7mLboQ86KtN
zWEh!YRE9e;btu8ZUQRR*mI?37a8HJNGu);7dAEjpJINmd<Gu{ddm0a9cra7@;`?>B
zbZ7Yx8`Pl;A0|tOi3?h&b)Ua5p*W4s@KlDU+1jas$1?Si{c&nRh9|TC|2ayd&XUm&
z|NY3tr_W?~HUke)pUdz(`Ow+;wwb{|s6100li?-mR~|+4csau>oc#>5GQ67MH41iy
zFEYHI;f)OMvT?0nGy<JE%QrKO%`h&*TbVioc{{^9oQoy~KW(4yXiOiczHake_x()y
z&mU&^hy&bL@PUToIik*LyZ3R1PpF>U%u@SG8=q!y2jhR4I&S4p4(RwXh%>h>6EbkO
z%imypnc=Gp6EjT8@O6f7s1X@{%kVAv$=S*9bB6CT++EZ7A;XUvu{+DMJ&gmGs>H((
z4tdB>{6ZaUY|yzSPkz^P@h26zxbgf=#vd7POftCVVwOL-p#hw%3rx+x@40_vm_ioq
zS8=O{J!DMFFg;U-dWPoAOd6B1LYbg({5C3PXPA>=E7c*x+zj(FEYGllMof$DBFcFs
zV?n0&qzl<w9t<`%YPK^LXIPS9sirT}@YCjs&ctuuw0<iytfA@4l=rwwn~v2Q=b<`#
zxHiLv3>!17%dnmz*IAwzY`oD~GRE|#44X4-(e{T2O5E*!T*>hE6@1-U64{<%M~0)+
zajIm7T^aUgI6yI|ZS2mlH^bD<au2m;kjUMtzNxX>`*insq(&V%nBg#o+05vBwQ-2H
z`a-2CM>v+o#w+iOhTV<h8BSz4n}G+OWYNhCr)i6dDNpQF1|AM@i^S|1+TNlHIhUa?
z534gEuYBx@-3)#MI>z|Fc@)p1LmnOTD3M3WJZk4rCy!Ejl+L4S9@X+FlUGYag*+<e
zQ8usCq+A~5^WfPIm9cYigJ)|zsi>4kmAtaFOqKI=@0DR;>LHBkdC;KI2cWvu$fIT+
zwesqOq{R?*Lb9&2EG%l&&7)o(&GTrHNBz87dU({_B##DpG|Zz>UhVIAFxXfl<O37=
z&{UUfmRGUAnYd21%%c_iT;FJ$N9#P=@PA$$NNJ;ho#zkL@(}#<S0$t9p#q)>SQo4F
z0m3dVz|9d?sCId@&#R^CSZ7I9>Xb+4Jo@HwWgcDfxFC;<^XQgW2gvj`FU%`>qxJ5Z
z2ZM26lt-m5a_Tik_q;kMzbubldGyHRk~}WW<LJ#wNP6bMc<y7`sUH^dWbE?1T7&wq
z{R0KP$<?xIlYYF6!R!@eNL9n=BCpEh>O2OK6^3z59{u?CJZ&$o&8r>m0Nq<6{dJbx
zTTXEU?Gg;kt6koWdF3A5kOxB;Tkng}7a2F@!C>WlbaNhq^J<MAlE+X=!U6SV`N5&M
zC6CSL3g}C)%B^|amPduVQSolvo=0IG-AAFvD3}~$9$$^X*CSx(;gHWG&~^meJaTzj
zZ2X;vmxrIn(|J6TN03LD$EZB+$Ro-l&SNCI(M2YCJo1ilaI=xmBjwyZZe)4%?jrAh
z+aNxI;<{NqJ@SMx|2?De%f_9Qz&sw!GcYdJzHHo`$NhOckjFiFH2y!Pz5;rS;(PzG
zum}qju~0!_Ki8(aySp1n;oW?9-`Wq|-3`*+-CY)fg^FT=i6Dv?|7Y*__c`Z(&YpXo
zxpU{vojZ4CXJ+4bcagDVt`Vq`gy!;}cj*|uf71v`NOlYv#i3F%S^TbL5gii4&=|fe
zA$Kj}C%I)9Jy}AAtA<r2WP~PZB$=aQ7!$*`7`DeSHimIA%#UFK`!t4IO3Lwx#;h17
z#4wTbe+-iumNCqTVT$HXjbWOC0#}XF`wYJ6=#i4rX^$~8hSDX4$uf%!Drr<wX0w;4
z7;|En%ht^?=CNs$3@SfA$9VgIu`q^39B46Yis8)|7ISdLusVh%F)WQ?c?>IJV8id-
zZ+t${SjK_8%wY1&rQ)xbl)uIsD|vgG7-g+t_r<U-hV?OAofEn4gGEM%$;O5lhLjX0
z%Z`b<;MUQ`<`}lbFsq~tzG{#jm}6|E+C|2;1IBv`j2$uTjA2g<dt;!Vcg3)qlgV`>
z_kzf`drJ!Yg2wNQVLyBAs&T%gkbfYCgE7#aLopoTD30M;Nja=OCzCBr{A@INE$aOf
zF`T4i3^!vq6~k!;XAEDnQ(|~KhL2+SIEHs(c$Y!A#`u8qQVjQ&lCv?KQ*cJ<`%3x8
zN&ahc^x)_kGs9r=!x)|}75$a+lNip&@I?$?a=N1#F<|@u34a~~<u9<CN(n(Dr8_no
z7da;^HAb#CUN0rr#~9zl@NEn~#_$tkDTWcH<cAoVm&5loez0*VhRX^{Of<|9MwwAj
z?d@k6KgaM(41dJ%XAHkG+S$xy#_uuw#!g{?{bpQ?VO}ZOy&<ZXue~DYz9B}q#JC;<
z>5ftoyJFnnw7Dr#NVOv-7=LrH$MBGe{3ia5;Xh7&Chj!>6KANz#O)?-G4a)MgKfOk
zjLiGKl-yw=mx((~+-2g$S<#<Q$*(@m__vf0+--thA|TCeB9DptO*~*CuZesn+D$O-
zGf{lKL1*5%Eh?37Yb5+2b#9Cd&R<%Z%#1h%OgwDjNfS?*c*I0O6AK3$PneO1A2m^K
zrtz4GLYjPOP1H?~E0cVdr6g%#6Hl9X&cyR-dF^2abD!blQ(B%iQEIPI#6(fGmYCKS
zGf{G+VVKCGg=X|;)q9sjtz!rMuZ^E>GF~+Cl8OE%-Z1g9iC0WiFj3LOt0rEfP7|d~
z{CV0aK~*NUj5j8|WeonqXg<`aU0TYRC~KlqX(>-rRg3};ziW`PNKjhlmX=B;Dw}9+
zqKy`>Vxq2zdM5UkmZ~PInW%1}20P^sqn3%<CTeQdhovQX*{DM^elYGTBOi@3J|1iQ
zTw3azXkel#wUv=;ZyOCwG@*tv(#S+(6XZNuMh;(yhCDI(6l-Rpxrr7gTAFBO;-PUy
zKnn*M7l#<t1{;09Fxr|J@tM($lR10SM0*qa-!eLw=*Xrij+K$lCdQVLU1g-Ji7qA<
zmys9F8B7j6Zk#D2)YHR6ANsAV^fd9hiC!jpv)(_AXUj(a3%*oF@+hD{Ulr@8-nf3j
z7+_+ciEI;tOvFr>CL9y435zzD725>=LCpV3lkyt6-0)1qO$-@oBu)4xIv+6t6A9K{
zR{ke8FWVShR<0Z|QYO+`Ji~zh+-Seb2vt6I(O{{;RAOSBiSZ_eGG<hAl+r?<8^cX3
zC@Uiv03R45S<#WG_AO;)v<c%wqy1rH3>|gY7_0QwLB<3vILpLr6BA8LGBKHBWSBA4
z#55CAOzfO&oKy>^tK<w5Gfn(jRvsuPtm3(Hvg&YD#T*lJP24Oe%T3HPG2g@zwRr&t
z3maZe-ZW8urLjn9=W<e~oG`iA1i_WV#`tow)WkAY{dLx|a<ZqKTr4LmOswR%D=(`U
zB&D!g4H)xHRNWfIua%eeCN`MpVWFpmjV3mkc+^563!B+ZCjMY-o7ie%n~8HKJ}|M}
z#10cjO&nv>OzdKum^h$Aem4Wy#6A;yG%33c&I8R$q0rQ52v6T+95ivrL|9&&!A6_q
z#$g@HM;O@UqkoIPUOt+0j+;1P;%yV}Xh)nhvA(>VHqmUQaZ2T9mY26U3MLxl6g^|S
zYvMf<@0+-wN{*D5mD7wfZ1^;z+ezcBHnZ#!gTIjb(8Nb3zBh5n#K$H+G4X|oFHM{`
z@u`W=Onk2T^H-40mkgtVT;P<b;m3d^Xg1zxSV1nD=vP6$VO()m(TRmao)>S{yqkZ^
z$@Wt5@7V8ij3E`|vWXu|{AS`ReYMi~k^OGs3Zwms@so+46%hZT^%C4aJ5s{B9)1;b
zD#$exztg-q#`X&GP6fHHZK0#CR*)MkqIKP8;iiedP2{#ful~cypHsbsJ1qRC^0!*}
z;!gt>Zn1E0Md6*O^d#fxo5pQcG^f=n9gQ-&J(q>ME!<<_P78Ng(X>xK@8E?i3YTH`
zT9FvR>E#j4qjlxAkk10=d1kR{()%quVBtXv4_PQ+;b9B;Eo@yL>E|MWpzzm`&POa1
zA8r)1qI(dNYz}iDV-*(aSg32^2@6kJC}E+bg{LeOro08i!qXO>vGAN0{9;R__E`%>
zEc700@QzTiq7=1&l9AfyRi>EI<`t#JEF;T;Sa?M(e?hH!(ZWkAFux?`|7yIfZ5&h<
zpD#B0RFqd$lI?m;y+Oc1UCKgP3*{`7R^c+%{{;r;94=tWTc}Ni<BbXyDk`X?loL3a
zl`T}!Bym*>)f89H;nYx2Q)w*=*%hN@8-szgo`w1r+FEF5p@D^ll;QBP(8xk#wT+R}
z#6nZnKFl~(QJPt3ZlR@xRu)=V*f}zKiNsw$8+|tGFsvxGh8V3atgR>%<_+<yio$nF
zw6~%cY_=L>bhgmJ!s5wBN2LUvEc{tf2)bC9yx8c<POl{0Ebzsl&sUP}7V3R$q^20J
zTj*usb{lut=xw2oh3yu0Sm<k^pM~KTMp)=?;SCE33rPzDsKJ7#&52nsE!gzACM^p;
zY>4jTY-#06;<7~*r9&m*e8T%XG5K)|zJ-7~$Nb;A#jYeN3uz03RY`{0W<~Q%wuO-O
zZZ&wZfrBiN8ToLzF~q`93sa^=$zkfu_lFx)IMTu>i~q;LVhf`!jIl7@!UPS8v78>K
zMvJa-S_=zOexij*7N%R6!4NHt$<%3Ks=8}TrD&<StddMq`Ms6Im=>*$X6o3PWkrh<
zCTDAsV2*;hO6Mt^uXKThg$foarR2w|d5MK}7S>x>YGIj$<rY?0SZ!gAg>G|<zbeT}
z3#&M$DodFWk)uk^F-lgJwOTJ<>sr6E9NS`S;N-8(=OS>E6-`iEI7WCEP|Us{XPX5E
zOwDCR&&t9jC=J+YVV8xUEc|R?w}m|xE^xN7u-C#q3R^gBVZVg~7LMzPJ80pMg~Jw(
zu$$DLA~TG?XBvxV7)LEks~oM(h>y|jGmLiAj1$_qCv)ZyP9Setc-z7U7CyA_j)iwE
zyw9OD!N@h$c#i=;#yCS)R2FiwHyQUY=Ls0jS@?LXalEozs4O>@8y~6Ic?+MCZ{ZUQ
z70wu!Cq#`R_)N#k=N9IUHJE&VMHDc9RhBO;T(t0=h3_?ZzM}Ume8X`u%gA3v+Dtdr
zTrrF)@~s8F3zuNyL}S%r<C2BT8Z$pw=ut%~Z#RDA5UwJ;7&gCH_>~$g+^}%P!fzI?
zS@@kHT}6IcVK8*BGMrSB0mh~Nb&a1t*xgm+nDYPP<j)z;#w|Afw(t)lWU%p{_AIw5
zbmqV6N!G<_EsF4o2HVwPwsETs(%WpDSrR34*|^h2VH;1|xXZ@fHXgN6$d2axdu%*l
z<3Sq_zlwWp<hGH=MqV3#4K?nwale9mHZIVfp~ixh#`=>6!I2XN7fuh^ctn-tw^6`G
zr=!N~(Z;nZ^019w<0DYe2A7dsO_4rENmgA|tkU4J>i7iX2^*wOveL6g&DF+Js*2zl
z8_(K!*~Tk2ir9Q;i()p4Ywi<O<vAM*&qX(*=h>XS2Fn^+^$Ru@tukmsmL|nU>8ipc
znJ?OSNpp!CR+U%nXt7a>0(LaLzoxW=jT>i;l1h74l`=Le4K>Qy*!sRvR#mY^Doj+B
zc~zw%b8Xz};x-qRZB()GiH-9%s@kY#BW}aDQQbxj8!c?Kv{BPWEgOw(G_g_J#-^%L
z&&Cf`rH+lWRfShw8*9%-%Z!t!jrul78`x;5fVh#3$`_)nrmVD@G`I0WHECv}U^V&v
zy0LVvak5mzX=S6ejV?UKvC+nk?*1KYbhOdd#y6*otkXt28|@V{S@9i%i~mkEvYK?Z
z@z!dC8X8?TxQXayqq~iMHu~G>VPoYuqc=e{p~9XvejH@H&i=K*dN*B<Y))2_J~pOT
zlfG)w@O8!;Ha1q10X7EOI8{w9Y1y-18!;QE4a-KZ>f+dNZP;2hYk#b|kd~}29z*e6
zgP1h1k+8Ac#tIur8z~#3Y>c*%wvn+h%*JpVp^a=CgKP}8qe0C<!GZ9<P2~`VpAC)_
za{jmR+_OE}A&#&yl0CaTy3tU6&-7@vA7f*zjcII%jd3=(*qCfbE3WZ2CfJy0W0H;f
z?-{eJOY`c|ahTD+x(ur>Q*2D-7#VD=UlHx54_B8NHfGwGXJbBnJ1eSsmW|mqc%Cpv
zCFd$8pKrQm?F+P)g^W)H**6T{cHgAyh8s(iE@pI9myf3yOKmK(akaYKQ$v`0a;dS>
z#wr{8Z5*(%+Qu3-*2Yf8l8wE?jIB1d*;r>|y^RevZfAel*ldGK<&B&TYDn1{!XqiJ
z_qNcz^P^KB%5W{co#WI5k0$PzVsOo{%f@cnTtfydH}=@ky`xDD*{5KyQa0q!YasKW
zjYBrxw(*XQ!#0j^fZI4><EV{e>^PmEQZ=H5B5y9!YRE~32iFo~jnk@!Gb-Kk<VJ&>
zx0Fx+yldk<8z0#Gdqw2uGaNFUyQUiN+u&N4_mNyHjj2nGbL@zv1`Ym5#VGkPLt<m3
zkaq{_`P9Z|3~UEI9DL3RjSg{ehl4L{d}-r~jo&zDPBt#u_}<1P8(-P@nnU}Vv0|6e
zd#>?~jc;kv+z5YXgH9v3%s8(hKiX)t&-g*{nHoY4lRw$`+2)TcqJvN-FV&D=X@D;N
zuhK0OjT^L+dTjh|<GM~k#SR)z)s$Om${#lV<eaaVWqDr5f;V{!;L_{5@sExF*ohAQ
zRpkSAM!B~*(WzS1nsS?iTb-yPUfth}E+%t1xYI#d2jv{x<=}1y&pRmQ;2sC}I>_&!
zfP>r)@;K3E<Ut2{9prOxzZ2Ox`8(tFnv$w1_c@ri&zN6R9#H<xsaf0;J)}i;)f5(d
z*uf(Xo^nvwK|u$PI(Xc{6AnJDDTN#i-)B7L;ATx3u`^nJ7yaFM(g7F1e7jnK-O);z
zetz1CHdaL(6m{^7gJ+${;rG`P(&Dw`In7<W!{AvZ#qR#vDDJ>ujgyQLY}Ya)%Yis}
z!9l%R!sLtW=!wQl4qkSmv(uVo(5;rd;^0*WuQ^E766Q{?B|JFYR4ZDImvm4{U02#c
z8TzwUbfo!Kt*B|l<sDRTP{%=C2NfMua!`}aIiM?l2h|-sS6iw$sH&B+AQe_~qRqks
zwS`$VRG?mMspX(&ZK<u4cOQ0cJqPt2yi!NHIcVUZp@WVNIyq?Mps|DI4q7;9;-IO6
zW~y*#ZCO@Zj?|X#YD>%WM&ljPCTr4ugFVvH0S~uZDQ&H^jf1ud$ZzMMeGcxRfKBVH
zP423if1hM@VO-Ug0(ByXaKqlHj?7$W^mOpLgUR&2gI??u2T3~6K_3Tw9mE`%PBhK-
zbMS_P0S+8aj}E%7h(;gh<be*jCE?;^)MTUP48w9@JMbLDDe1sv)q{<Fb;PYB6Y9v)
zI#O2)`V87_M#4d$0+ivRixct(btLT|<6xwNQ4T@}*$xIf7~(|drJRT;Imn4-n_ue4
zPzS@*Hm){@s~#Tej^K!>8?DfIJziHh)sJ>C*1<RjV^oGmi_9ADV1k25blMDKqVhS7
z{BLK$<rbMdC7#L{cCg36UI)`1%y6*6!Ab`+9n5ktmqUh=%#`RbbGC!C>y0@|325GY
z2MZi5aj?|ELI;Z+yy-+6Ro+}?-iQwR=4>?<D~HT?XGBGosTs>1T%P=YyC?c;m4nqz
zbUWMXpmJSV<6y0Wbq*fdV6Y?BJJGgrqk~NjTGf>en(SX!hS!zN4z@Va_GE6|=svhz
z={5)3>CcVE4hK6O>~cWYaRYU(uIyG}9&}Uq*SfOL!G6x44!(47z`;QWryQK-SaWdL
z!4U@!))P9a#L}o!=(nQ|j&bU6aKgb!8Z*Yoswe$M8WiLCHrMm@>&aUV-ga=t!TS#0
z;Sif)yvNR(8imcfn%w=f!PPi}>a2rv9BU3PIOtX{+JXi3<O2sEGGOY-M@m0d%H$^s
z&MW<t0k2@d`l!f+da|OPoY`jFc-Oe-;42P%ZRXeN>PvLBgKr#s>)<=(FfhL7B)|nc
z4>#(`p*_YA4t{j-vx8q8{N&)zUybkT3D2*hYr28@@+-&M;^-q9)n-R=^_zpM4*#Qs
z-yQtt04~0o7HvbWJNSbJOf&ve=Wx$L<_%V=N#dId{#N=A$EkwPH%4MS1YkgRUSizh
zMh5~^a=VK=T)gI?goj)%?sPH1#Y7i(xwzX!GZ)QW+~eY27caPY(M4_-d0af<;z<{I
zUF37|h>L<Q?sKE_(g$2TsNjC3Tns<t;(?P!0T&OuC{kbYyU}i<cKztI^R89V(HzfA
z$a&O__5uWjTs%e@)?QTxz8`T2DD#wy!qnhmRDF5c#WOCRRaM#9#vApcW5d};jeaX5
z`JyhKbMd?zo!J(5VYrz2l~Igk&qkXOF4wbMh#Q?PQ<zCo@?UcCGFRy?s<`<0u<?qE
zQZ7onc$Lm^QG%_WY|O7OCE1)|1~(>q>kE(aSg?$X@-8Z9b!A<YQ$U@MuQDpS_^7^A
za=}w;a(=2W1i2eXRTtG<G;%S%JgU2>;i8s{+S;6&F6bGa3>R$>nODa}T^FMpNCOx3
zT;xA))Ms@ojj9czQ{OfX#B3l9UA(DDx?=DNqp^!7s;a5B(V83?*}_Fj8s;K!(aJ?@
z7yVtl;i8R;w)DJ<-Y(j?Xz!wni>@xXee2+&vx1H;I=R@}K<+pe?dd*lAb&NGLJfru
z?B=2;UDQyzyXc{nvJ1Es;ua~k%6MHlw3!>CK5n!{>g%F@Lt&D*pK`b_=vEp7RMK%V
z&_&FJsYzR@r9RxY+UVX;7QP>;qFY>c>xYKtV%sVs?t)olCR`-7NLp#Cp`=`J2g-{v
zlW`Hc$aXQv#c&rRw3`OIXn4{X>SBl%ncq;TaF~nD4dsOD9LacdF~-GM7oRs2zL;P%
zcXN$|0l=H`IQsK1V?53H%y_I(^z?xtQKFGdaxvM(&n|v(F~!AH7pGmk<zkwP=~V7w
zi;Ed<v`1USzGHm4nB`)&i#Z%ME*83&>tY`3Z6x#AM~%d3Bs_NJCho>XgHLJ}Hj+mM
zMSxFF7Q0yDVzrAkE|$7j=3*sBYhzjNVn-uc;etE3Pa4V9MnaG^&RFH*>Bdo#bgheZ
z>|z%i=;U$6lnX}L#==v|jT{1FqvR$xdMriozvNc7)Wrc82VHD;(V?;Ibg|0?H*Pyz
z#2ZJCfw*1W&1iA4&yBXOd)V0V#`wmvpYzOk<3eNMK5=Pd+1FSOxj5|NsEcEqTdD~+
ziTnOEj;Q><r;Ot+es3%%>9^I<F7E^fU=w+^iJVf-u~QNAZ5Qvj_{PPzF5Y$Vo|gTb
zW3Y)_JZ+qD@xF_*F3!35#Kn0RAJA-`|Ff|!=uEnl&&Y;+ZhXv%ZoIK@UBvm+#b=Db
zCebFhMH3;D*DIHe3ogEJ@uiE4F23f_7;W%z*jEZRXB*s=^H~^~!<)!=E{^|ge6Pl^
zEM0fW#btVf-P%NcbWwD2^Z;(-AI49d2L?x5>A_zZzq+{M;wcY>J^be4s*Bq_+~MIG
z{ovwn7yr1p?&1#)*nc9O`Q9@Abn%yqoAkgb<Azdp>y{?+Nt1|PYZC30|78z)xYfgd
zIi7?EKD%UAo~BZysr35HxXp{4T(_y@@^Ghzi%liJhr2x7?cqKT_j|a<!@VAId&uLV
zYg0)zjrRCFYT)KQuNQ6M^Ld!wR0w$8#uIW6o0`h;ro#Aq(8EI>=)nJZo3wyd!CD?x
z@QBia9v)RtC@1$Z1&@1pB8T&&0yg|<56^fg>ft#L&w5~Vy*4Ep4n;gvI~|>J-1oQf
zycY#tmNu=J;^H0*+Np;OYz0jf4=;Fl(Zfp~UZ#;A&`b(6i_RSA5MD1dlUFIzO!)R=
z(vluZdD!J)w};Xm%6RZS1RlzIDCeQQhYlXfd#K={riWTyv}CI2p{f@x7b|(F?4gPm
z?TfoLlMc(GTYSxCQq2ROm`9g_8g%$<BWxzMJ=F2g%0p`pbv@Mc(2S<eGU|J1;6)qT
z#vU4a(IU2yhY38Kq&C&bU3L=>O*M;05L|w6f!AEiwouwqDOIru7aMInv{T`>N~caS
zrZ<ZYb-7yT=%JH`ejfUJ=<K13hu$9gFa}hzn>Mi8E8udayN4bgdU|->i%!vdd05{p
zS}Pt`O3-Yt!EJb7Ey%?uPc_MW!@~d%mIvF5*5m`}92L0SELwG!xMG+dZf_o8$BTZk
z5ci_xx~rH>Plab~i%tosE#V>QVX22@9#S6C>}wA*JY+nC9!9aOhirD!2xE|k!3qjB
zmmwa8dKm6ugf?f{bmNw##xM`BHJ9SwMu*QMJ&?m=YJTs`nr)2nFqWPlWlZxhj<M%q
zk_YY}xGv=eVS<N=Tt`hc>NXcr9vx3+rJJHv>l6=D8K1g>WfuKLB{MzD@-R;u!WPZ;
zFvp9|lpZS`_3T{5T(Xig-{apCqTj15RN*&0EMklH8eN)4r%a1IEb)*~U$Nli=CWMH
zwzKvv#tIKBJ*@JungfA@sJX21u$Cj2<CNoixUr7?<za(|HO+-5OWZ_Mx)D9&qpHp7
zD1xKS<-)th+k=g*9=3VW10d@8ySe0VAv`qO;bEr+FyoDzjy)dsdich}w;uL+*ze&(
z4<C6r;Nc*Lq=&aX9O8)31>R8)hdng88Qt8EaFDi$?&ill9QSa-!$}XP8Gg#Fsq~Z=
zts%Kga$3lhDaMIo#ycL)czEB#yDV}n;=IQmZy^g?$XOLW=Yi|Pf?Ow`H9k;Iv|yNO
z9BLsSb5MU^eCgp6&Xa?T^Bz9+@EMEOmkV@PS@~S$xrkzsFO)+jbD6xzP}JhYUwb&O
z=6&bkdk?>RxX$q2X<YK~#u?*^hsz#*@bIG-oo4*PU^`&^r1)p0WZv?b@vHLru$8$i
z^_z#QTKt;Q8!e>bWaAGHe`=9C<G8_I_HbJqx5shQ!{3}S#u)#3_{YP)9(bz5v03D(
zv1XHD&xq)yZ3f~Xy(NxY74TSt$;+3G0xji^IC8~NqGdGV{yQG+9BI{EaoiopJ#jQ&
zYup=0+m@1ODa5&zb9$GNFOK`-csRf#0q&3EfjIj4=<nmfI39}QcpN9<$R9_6IA+H&
zhmvtT633u82FFn_jz{C@#Ge<&Q7Deb;wTqK`8Xbr<B2$m#Zf$tC*yc3j-qiq7f0bZ
zo{r;LHnwH-M)7CjINDOaYAF+2%Bq%9B#sALMSP=`)M_Q2T8Y<6o{wXEE1|p*M^+rK
zv4L?&952N2avZP3@nRe-@=_f8T19WsT-HiHYbAfR623e7f!6YBJbG;=1&X(pl5v!Z
zqjVf);;7tOI<$`D9i?UCSfYTOv8|;-92MiJ8%Mo3Dp5F&nsL;Mqe>iA<ER!#byn9p
zvWoH_wwB*oOAR`?P1Fk3OZs%1D64iHW!p#{wV|oz){mn>9L?zbI2y*$D2~Q)G@&P-
zlRj-^h{`mLgBmughB<A7-+F5iN6R>FX)6WW%BeQeN(Jbj)^U8*M%pMPXse)I9PJf!
zP}(skm-cjtqiY;q9Pv21#nC;E0dWkBqemP)<LJw-kK^??dd1P3eb-t_w2fLp&Gp(!
zA8iF&{d!yJuQ+TgZ>S~Y%xD|=oMy-3FypY|Sl>2E+A2xl#^ETYFbmRYC)-B8^5aOx
zk%}WwRSAs^%ClZx={PR7l}tSPA|8`r9NBUF)mH9n7v)lHNE}1sm=TZONjof#;c-mT
zS{O(p;usyrm^el%XH*=l_jxTiHjZ)HgA>@H?V<+KtK+G;Rn!Y?>_m3G8aX+RDRFdY
zCsS#EJDH}csAOzAna-GL7s=0553{Fcscrk(MKAN88^;#4YMxSZ=Et!>@j^C7!JBcc
z&dFV@V2RSDaV+~EU+D^^EC0v2RD6{JHh)bHXKfto6t7phA&0+F!6v1f)pDA#HI8j@
zZ0D$HCp+WVrTiUA`EuahaqQu!WQewxy>w9=hdEx_%YKzV7{@d1<v<))+sWPSg_K!`
zG)X{(M^ub5OdgA)e|sT58OJHL;W;0t<9Lgcj34#a+i|=T#}9G*sI|Wv$A@uz#EGT7
zycfrrINp!rY#is}_@=#l5XY?cva!AJyG5tk%Pk$GU<dg)j!!stI><M1oR8zvIKE`S
z#PL}ipT}{5LDeC8JN+viq+SQ<)<GtBkT2--4st|`f5jpl<ZBMbXCrOAe(xaP#_?So
z-*a}2<FZytJ~ia+D9?8k+Q1j){}jj19FIP3_3=v_zta9V{)yvC9KXf!M;w3BCvjX;
z+pcrQ=qPPE3hD10ZVIS}mEOn^xXH*-%qm#jNUdm5NBNhb(ox{!KlW6|s1?j5hsAI6
zal4OuedP8d58UD7P9JyqpsBfhe9|$}f32h3?c*L5;H#&ZMaev!A~)voL3*Fkyh`)=
zD56>SYm#ND;Xxk{`N;31fR879Jn7?MKXMnp7x0*mN2uAyqsl3ylv$NJ3BB67Q`Cyb
zeNYem{FINvs`gnQPy2{<l4tzrZP@HbVrm<uRToj2qDq<dypLiUD#d-2_EE;il1^gy
z$nqgRUhwgva$fWCl8={t<n1i4`q<k^DE11S&`GX!64IibBTfk)C4E#<%ui#K@<H07
zvy}Bw&PNL$Eq#>tQNc%DAN71xq_B?~K5F`??4yd0sy?b|jeR;x*jeUumMu!F`*^Rj
zTvpArp_a<j@lo54-hIsrT_Q7BU40)7d^GmaL}eQKpepKltcx^K+X$NaXy&6<7irE$
zb%~18e!k0{`l+XtkJdiA_~`1RjgPiII{4_Q6}8h+?bQ!#CTpZ-8rHFkbkd4wKxZFb
z7n#sSy7}ntqnD4~K6<Dz%ezQVbz0PfF7mo++uKDx>>_=9^z}i&7fLgint$ygZ}=F%
zhWj|<W1x1^bRRR=xjsxEmJi#<IORJ&Tpxpd3}Nj);y%(oN_3UGyNd54;UnpTCIt+z
zu93|tt&8oYbI7OJ86Tl~BU>#T#185j8P=_9Bs0{<Fdw6QjP@~{l3k-Bq$3m)jPx<B
zYZMG)v^d?!hOiZ5HOYpLrvW}D`dHUhruewtHEQN0ACr9?>ni+4@Mo%Xs>aMTKYFn?
z4dWy>lLFetSw3d_nB!xvk1Z7QG0(?*A1i#U^s&IlLW<Ej-DHuEeBER*eXa%H<hbi5
z6}!n&_GUMsz%msh<~6FD{FpmpuJW;(=J{CfV~vlsEUQ^8OBsFxrAA)az=7jqlaI}Q
z^!=0r-Q>I~{9PrP%->zM`PlAbpO5{F?Yy$X$4(!+w8j^@%WejLciF>1q`6c={iM9Q
zcb5aI_K=UmJ`QpKc9&H5NZ^PzfytvPK+eqW!q1=_S0yKWob+*ulRt;N3Q*fyK7Q&h
zH0*8Ktiq?d3&FeUgj_x3eIIA(r~vl`IOpR7&Tm0<*Z9!KM?Svx@eN~%%S9g-e0;%v
z^l{$Dr?jMpeCFeG4&)xf#Y3AOGO$N<-yhvWmh_M>>2~tj<Q{UShg|L<U-|s}Zj|+{
zkMDfk^zpY3zG(e>no1*mT+-xaA3tys>nRm`MjxGN*HeDx<nQAur#K(K`nclbHwHsb
zp^Vp4ru3B6D*0tk`JEBPIlQOb@bL#HmY(vb4=Q06DdkE3V*hGE(tmvXOREBYR8ju(
zfgsAdHNY)FRI0@5!mo3(6my%r9?{za+!64@e3719Dnlj>xJx~Dcfc>@$vpw?4Uk)N
z^9Go&O7aAeRgA8!nxuR0*CG!D(JS<s<n>^HPhXdZ0^|=+K=IYrg`a22(@P2lIDV-(
zujdnZG(aI59N_T)-v;<Dz!L$U3@|yslmJf!C>)?=fK~yX4)9EX*8-FX@N9r00kQ%}
zfT97v-X+fmC>G$k0JVEbr(XPMloSv6wI<oyON@XYw30V_$w$5TwH<jOz>5K13Giyb
zZ{<k0yjewh%S!?B+?VxofQNHumF*pAs8=wndGCmp3{WaSl>k)(lnziPK*a!+0+bE-
z9TR?=L&^pGP>8TO<pWfp2Nb{Cn_q(97Z#*YAAW~LDhDXpN1F7JY5}STXb_-bfEsMq
zLs>Ng)Kbu|kJJuOCqTUb^#j!9b#K;?KC-Bf%zh$kUGA(sedKH(i51OSd0$qe0F47Q
z(}KTHbHEo+OH+1eUn$&ITISDc)mNGaXc6$e$}+C6EbS`?`%3EoZ34st_yO7mXcyr1
z0KEdV56~e%mjGQ=VMlr_K<9v;A&^h{3XNnHfAp2S{iIs};vNBd()0bKdw{-=W?gwO
zt7^ZfUb>6Iyn2(*&<fB;ThXDPuvGs5Zv?Oc*vcFbU|@h)fJg7miuV&X(4=ks<nSX|
z6E*436$P^{^b^Xg?k8>lPXY1aei8&o1Q;4%7`rB4R+5hGFJXXGfOLQiefV%zf&P-!
zUkLu{C)oi8u~GdaO9nHxS-iinyB9x@)%by|;Q>Z4U;>O|;Psc00Vd|l8qJ<nu&TdY
z$d^UVn1F9K6N2#pCa5bIHWLHBG)xF41z;a7D4cbpe-sZ>1569>PJnj<Ob;+4z{UWZ
z0?Z6BE5OnK%L2>}Fekv90dhT^HJ7e<L*@rqpta0n%)AlR#cN@JMT{9u(ttiW{KWy5
z=x7@HhRl0ImIqi7@VzmzKETQVs{*VIu#Qd(utwXyC2v+&bqjs6{SEoxjmXYlly2a#
z8W1^$oXr8Y1UL}jV1TUwwy|9S_6FF_@D8vuz^(w52Sk!>21FgVn_)IUmMUlT0HG81
z1=!DqKbH070NGL~>&O7<_hi;>#j_3tI81{BoCt6vz){ixQmRnaG1{3s>y?30XQ131
zz_$d*$pEJUBp=Uun**>=R_B3oTEoU2C~pP$xo{T2q=CY|W5B!@;3750<V=9~1DxgL
zAK>Evp9J`TPN24d@?n7Mk7T{}K-M<{<)eWArIm+ca-Oq6Og>`|a*m>gN3!a~B&$Hy
zg#cd!_%h%h{iI_oib*#nONwT#hzU8Y=qs)6>j2*b{2y7=`(%C};8K8x64Cs2IlvDA
zZUp!%z>fib;`C+8b&Z*y1N;_%5%r5E>GNL|TnX@dOzt(KV7saU*OdOQ!A#~KoP13A
zQz=0^Q*H+MTitSB0{;Z~mosGEta}sqF8~s_Gr>PQh-=C%3EY;z?FrnP;2%{Y&I(iR
zNbtWKQPXlMAd^?!+*x-eaCahd#TCuHCjl~<l{*nB&yzr23Rsda!5_K{ISl@1EV(~{
zRPL+?65#Cgpi+XimgG;MfMz|Mz+(wKp1>oTbS){U;8CT868sUhP{R`mJek0=TGvwv
z{*qaqN#Lj@g%v+dWA4o=_+-|5#j-xP<ZnxgB=E2;MHBo*Xk^TD3DmQtryT`nG3|)r
zN)4r1N=50sOT}MG;N=9yB`}`F6a3wv)JmXs0<S85O=$_GC6$&^T3TrtrDc_tQ(9hW
z1*H|0R#IA7X%(eal~z+)U1<%aHI>e?g*Mb-8x!cCz#9qvNKfh|&?JGT3DnmlISmvv
zRN5$k#tIJG@|i8nZI(dC1Ue<qJb@OP)iQy03R)%5I)OHd+baE2ixhC8g6);lL1`)F
zkl9(2-IaDppsRvzN}H)n55+x|zOIy|dL__12lr9XS82Zlf6^1xH9(W`1bhVpmBtb<
z6R;AnHR&p)u%lq2BVG<?jU$2LFo%;!AgMT&!%5Snir>;2vlAGUz~BUiBrq~ZW@rM#
z6%WhdeDBDJ9L(-u?V}PHt(-AA{IMKOZj?2FqbY%J6ZnqNo4{noRRSjxn3BNM1ePVR
zJb`IiYEA-k6PTW(VMYQo70=4y%x2iD&UwmtGlxH4!2+cV6IhhPFRQ|f6IhbNS*oC`
zD=Rqq64;W!)&y25bA67?Y7U|tyjH<FrGYCOa`+n)*ra%K4rey&N?^Mt4<)c8ft`x?
zC$LMwo*c>D6jQ_KoW082m*5lF$X5q6c`!%vnlcY3a6~yr6F8<IuP6U=`^f}ODd&R(
zPUn<*Pr+LWyshA!9R9lsig|J-hx2{{XLIm51*JXtFoBOaC2I1b(oYgNpTMU%lAkB=
znc`YrWHYY|n*2iPmrA>N@|A+Gm42f%RQc}{xWrjEiMx`~$i1AvuL)d9;0Ki<=f?zo
zQv7oc=NAPFJo!z*9|`=a;HuJV3H+{rWv?sP?a2)V|0M8l0)OS?-b~<c#pl$L{}kV@
zW*~`M6x^!xwj>`?{9o%Hj7Q*(Bywq1mL~5`;+`a)N}_NQ_bUJXBpy(ZJBd6BSSqiA
zd`aA=pt_bN|G^|4Nur=KA4(#Bj(mY69#-5@B_GY<Kc=9NQpUjJIs7M*cv5j(<)2RC
znIy7ua-UW3d=f=+I7Jmam*mmw|Fy1|a*8W8l&;q-QT&3^7n68N!5PhZHHp`fxOyJf
z&h!0{D4E3jBXM>lN+nTR#rBLunIy_4F=j;6#pRMHpTs9aaDE6XBvFy_8Jx|aQWBL_
z{=CvEO1mdfRRIfDOQL!bHIk^QoF+*$RZuI5+6w9@t(!zW1@)6?q=01`B+)Pj{}PwR
zIhf35irXq}uC#^HmP%VGrH0l?v{B6BOtw?pUTKFUIwsL6iOxxM&5{3KbzL<1zk=QV
zKO1@^(KCtHljxO1?<5W;aVUvCN%T!(X%fql=$AzQB*rB%K8ZJy7?8w>Bt|ANFo{?a
znIys_%p|NNf+Rll#ZJOW@_0x5B<}X*Szlbb#TQR0L0mysU*`I<%NG_&P+rTXlwS2E
zt>D2xB#`VR1}8Bji9s|wkO6^=4rFK&!;%=D1o7&CtIA07av-@9TuyK$Afu8<Cu9r-
zl3<cow}i|{$k-${Cgi<@Oh{s45(|=8n8c(ceoV;BBz7icauT_dG9`(rQGCj@B>bez
zOG@RWOiyBlN>aE>Qf4JFJBc|-%uQlm67!QdpOl+Pc__t?B1r9&^iIj3lq^Zf(UdGo
z;_0+3PU6iZzDfzNThp>cndQ^MtmR3pNMchGJu<Q~iB(BFpOKA8tWKg`TGp}q(y~VJ
zTBXUf%uUOB<$su#4M|)}OYV%+$p{N>Ry|vi*h<%BWLwlU>`G#L5<6%^Mh<4=(~R8A
z$ZnPF7|Na`9uK8@D8ze{*vD8>ykEfq`cspK=}%Ao%Z_62ND@cc@KBB=aVm+^NgUVY
z38g1lX(;DH`6HCKl6WXvmS)RGNxYrJtJ%^pTi!|HT}D^7yqClojy}c1vxS_qiq9$i
zKq;9YsuF^a8JyYjiPD4F@}(N{X%e3$@p%##lK6scOk;5xUnX%eiSJXml)_g@e9g9`
z&?$v)lK3`>aw(Kg;X4X&woD;6#ge$3#D7U3g&&f5bdda!#GmZ+B!1$QGDv<-V$>k{
zokM<*{F2143W%>L_)Y0m_C*eVz#yUgb(*T+MiPH<CK)XMaG(tmcHB3E7&9RKoAnNo
z!h?mm|8o2emds$eC52m4xIKlJhRFQEvU9L}G+1s+;rGGvzz`wxjuaXVkz6U<so*Z9
z<lLRYJvrDMB6(8Cn?kV^il>k-h5J%?JcTDxxIcvlQYe^0p`r3%3KNFNi6QcE3J)n}
zGQWZXO4kjMuZGAY^yCovXNWw?QYn-fD$R$=V<`+AD&vL<>FS~KWD3uu@N5diPbn>|
z^yw6is=!x6rAP|phDnQIQdG;b;ByL|XOoA?Q^Uj_CPoU9!V4*6r7(7wEFUI^hRGMh
z<i!+TOQ8haLgC@^veH+SGWlu>g@+44$rMVZuwb~9PNDK}={{UYGsC5fGRvm0XSkdn
zE)=McLd6ssq|h*hN~vf!Q6q(#ER{l)6mATcswq@Up?V4hM#yU;r11#pH$ujYkfkG}
zRtmLKXf;ymrBEk@{UfAq3V)4=#@A;f<cX0|dZf4`rG5%iN6Lng(kO*9Bc(|SO;h-3
zq%>yWjglgxq#3IoB`s2DnL^u9(p;0yD48%yNL!`QI)#;^<nSnILjm@}C~2phQlo|Z
z_9=AG<iDfj@zK&bg)S+62MX&_=$b;e6tYtoltT9udZb{d;H1!GwDe4&ZwmcV{IFM)
z?4`7~(mqPb>^EA*jh6l?3`pU}(eg$LD@F^ilcQxI18<D*ily-M7%??zDXln0+!Wf4
z5kG}1W5i1#o<d@bOdlhg#>jhPBw$jrl63W0$tX^xkXDdqtP~q7EEv-Gv631qgHsri
z!sHaDq%bsvVJVDEVN?pU$I9>&ej6)!#>t2jwvUx_V}*2d3S&|j&(KZb`EfFq)s2%G
z<76DWa-4J-CuB}cVe>fob)4KYUI-?oaCTe-rlv40h2?B%3e!`Vk;1$b=BF?-h3Cf0
zT&1&EwSwy7h0Hnhvw}h6WdW~Lw8mJ*7#kl=l?zi?q?|XEE>=qZ5(P^+Jat{i*#2a^
zTpcefQ&`0z!=XAsj0sYEg7lgogD1$E6i63Mi0*ppQ`norz7#g3urY;AYzqT8kliV4
zNntC;P9Qs|B#>=%ODeio^4d2cq90F?YZGK=3cFGuxPM}l+>?SaQR+{W{u5<?3I|g7
zl0Kg-2U9qd!sjXcJ4p_wa3qCK>70qYui;n<AExk83dd78LGLMl^h7zS;GGmsDL9?N
z!HL2mZ)x)F6fS7;wn_4?a^6#VM(O*UohC)X=QR0&QYK4Hl9rR?V^*rU11HHRnsuIG
zFiBP@^E2gqJxMO4@W^EOB868bOZ~~xXR=(>wtS`ZYo*^P{Z{FBO6N_MJ(J}!C;t?x
zrco`8A2~=F&uQG1#?N%fWcee7KU4T6g<lz{3_N9CPvL3`Hz&(APR=PjJVjofBK4+7
z_bEc0nIbc%$fhZBBZYUT$U{@*wlw}yd{Zfzf2Z(|;(v2E|0zHkx1^&|ylze7HwCw+
zaYs735$8%{z*HGGRZ32krc>qaH10{`<uqPN<K8rKr%^PG=hDcNM&2}@NaM*g@}+TK
z8U@m5K226mmHX3pD2+#^$+4;O0PmPn<-s)mnJNTi=1-&Kv<P_9<Y9`XLBOk^f=AOR
zl*4&U!Q*L6Qh}$^D4fQ#X_TMN<qg(PlRF8f%QI=5nij1DzMUpT(r7bXtm*tCwmhFk
zu{2&v<IWjUJdJVF#YiJd!HVf3Y4G+(t1eED?t?FA^2IccX|l)+sW?MkP2;sRN~KXc
z&42NTJ3~sOF=2+3R7$XNhLlO8Y#No)s5w)P&5&|5FO7d^M9ZPCX9z(BO;)7GW=gS{
zLb1weR8jdJnyj8ijWjx^(IpK|%Qfl7G+MAP(x{!rpqWx9jcYTdq2|_2qh1<wW(u$R
z3L2!bb*7x1DUH%-oJJE()|w?v*+H|U*eq#ARkNh$EFo=~MmUQf>5%qmv`V9O8nb4}
z)>+afjdQc4t<rW%ugwy2I<RMFM|<#&X>?Nj((I^s*EG6ORT|l8bWfuPdn%218a>l^
zJ&iXQLTNObExpp{oyO|f(toy$nJs<NI6hnYDu>K|Y4lh8&1_-vwmC8|4J(bdbL5FR
z5@U4D5mRaTITFkfn;uAmz*Ra+nLgV)M^fzBxe_QoJ4X^}{5nUHn#?;_(sadK$tbNo
zSBMAE)VVStjfrUtPGd+KL(>?>AvsURvr%(pIO8OZ9dl)bCdnC@#;6=TI*l<ocr1Hi
zu2A6YT={9PJTp%!&XY-LOeQ~#xoJ#EV`>^R(^xkzx}i)<V>*2`Pugm71_LjY$@7Gq
z)AM9j8ne^U&E-2y&f`#>FU{u5f^@X%m``uamooEZVH#xeTBLxtrzL4DWvpgUI)i0t
zEKlS8G|r~6B8`=dYC3kItfIHm*tkFrq_HNAwP|dji)a`}6BoDhWfMDYzHDGi=L=WV
z8#T$WA(OeA)7U#-KASIp%$IEp*9EdWjqPbLdH(|0kp}5bcEkeNrMTt-*`s2V+?z&n
zf$Y=dex)-O$iXxYrEz+J98RO+LOGho<ppwt6VXC>W}%SNYM~rY<3t)`7s^RWrtub=
zxlm4}v45d_x={XFC~s@i-b>>h&S_~BTqLh7ium;wN$*8+h9hW^%vmJo()b{a{23I;
z;KMXNO5+y>37M{ZoW}VyK4n`L$tP)?StP$Ll6-H<XKDOIj|CC_JdF!!e8Jf)9o>b$
zQ+iS9S4zKD`i)Wwe9M{V&FD7$eGcc6g3D?Aki+>g9o<_g!@KIwX*76K>^J2KCuGi+
zoHWw7%7L#l=gl;JPvbggcm~g#!s`zOR}}x5#tj<(rkvAc?#1%lVyU)R{^qQ;Sp3EE
zAER-x+?I(fU%Ob4!7Uk_UM#m}@Z)0Pb@vjvJ%c+k$d$pJ8DuY!hcdWJ<@07xb&1@q
z_#UPAD$T8w3iD)8WJ%PDe9E~`>HRsm4`lG5;;t$~&2yH>!x=o1LE#LZX4VoZm_eZo
zexbk;c~m*)mdIlnJf6W58RS_iHJ1u=pH$4`QyCabh2WVCo+Zv8D}(M!`4t{Km*FNC
znWa)RgSktEpcoY{mAuQOcm`*d%Fj!MTgVrdiDb}pnY^6AD;d0yfw@dx%wWPYc}Xe3
z>Sgk3ChDLPN?%jT<nd)vQt_o_!ep5Y%4XnY5T^r|OSuecXHX}D@@(L8sgOZMp8sS}
zIfE+y<1Clf%f(tQGnNYlsw%UZ(&|cUWKdH9b89Ksv|Q?DP%ncH8Fb8`eg+LPXqiDP
znvp>x(iPG)gT@(fgYffmX`<l0<&uAeytqPouaIULG|!+#2E$hfcN5E22tn%%+GNl^
zgVrnM_zG#8K|A)yO8I_;+`dvOu8g*g%<@)Brwlr0aAK7V%%DpKUD@PS(mR8xE2Ue8
z#|!95|7()&CG+(R)~}RXS4po7POX%0SIU#CqGTV|xJsN=(l>)itE68B{WEwYg8`c4
zUW_v2uU#cE_DBYnR_bKnDzKG)ze;kgmZw$=?Wwd{{0xE&7G$t6gG2_&48~<JK7&*S
z=?n&CFqrW`zpa)JR!epUA+uJ?%+<1OwOm^*53Z3H*T@jgnQLTJ21Du0H8PBbt&!nM
zM<``-WCkPF2*KzK#$<4Cja*nGV>8jh=I=GpLSjM&6Em2V!E81sgUQ5mWLgGOGI(^Y
zG+is^S|OO4K}iMERe&-xX!BZ`smYaVWljc1*UJ11x~-GB8O+Pz@><EWPM%vQb=S$T
zbuxdQEXwf61v@g>nZe==meAoDY{+0~2K(0uuQhB@2Fo*8p`4XD{PXK%RR-7B$?6==
z{p)3I4qlf5x8yAT(t6pL!B&o)3^rxJ8+85kvN?l3>tzeQv|b1nu9xkM_PO%+dfB^P
zK3y-nGT5ELNp^Y$dotL|hGcLogMHMW!66#CK_1;8WjDwHM(+lRZ{RWsQ#T0l;SAo{
zAV-uET;3qZGq`(WwA-z+QBEi>vQfzCuu<HNa+>3Gqr8>Ds*UnCOJ#6;qmc9CMtN7W
z-cx#p6WXSTe=dU$GVli>7=#Zq_=r|zV}CY2&fpV9U^WJ3<9sx5P&ylBvhi64pHn_W
z5aL1xUyvW7Oo%TtxR}9hA#M-xRR&*Ya3zD^=%NgYZj$daxRk-Sioa7@Ws|huB$qSz
zfm2)t)i+D9Nq)@Wrwo41VA>{Gw@KdKBtLAD+?(aO&C+qR{K}BtEK@ei)eP2dmTMXO
zuHe{axt_rv8T^+4Lj0M*jST+E;3iGlEdOklf?K4_7Wtc|j+B3u{=<R4MXW8+i2<+4
zTV&G~xh2GRTjbUdr!<*st30z+?g)`9#4{nD4RL3PyF%m-Q6R+KA?^v0H$=V=_lBsx
zRTgcPgIgtch&-C?zEuWojh6cNvEX!hC`7?+(aQXOO+FCfK?N7K%8jj3a+@^XCJ%?`
zzfB5-cr3(-ZSn|<gjljo4sMf2L!93xH@8WF?ecgSZ7`n>@#=PYBE*v+ns1k<G+9_F
z`ObEkxINl_770-_M8zFqgm^B*n(b1IRqv4JLmb^M7q`pb+oia2itP~cvqDIS7ech(
zAuon_DMWgQOxqzZhj=AK$q=PNY~LX~N_{oNYa!m>A%AGHM2LrWM*Np|M(2>E+^v@l
zQ7%No5RF2V55d7wIYbqLol=2Tg{Tyw_s(b$J9wuo+$mK<R0~lzL_PX2M2!&GCAGuo
zgm(YV=)k!qo5Mq9r5AQaE08)N3hjzOea7J~X%NENCCzsUkM$<*65_@onuO>UqI-y@
zA)1BYVNpjqEkuhD?HH~@q$TN4Y0a+RB^!20E5`HW2($@td6%?Rde?3t<^!_!Aqwx7
z4k0S<mX5onQ;5zXx`c@DmbZ6H*AP>8%f{XEgC=`~=o!LhzwDLQL-Y#KCq&;6ckGeE
zd!#o#ut(bN5qppHWAC#G^JQR&F?(c%UT=gT7!cyHCSxHk?h#(50xQHnd*qS5;)HNR
zcx>HXnXp&lA<VteeQNz)d3UcQLL@`{9O9P{DRyXxr6HDu$b<+(Objt8M0SWlG<Ba0
z3-Rk-860A$0^%Vda_<v@tbI~@pA2VkhTt-FWQdRV$shY9d!LM=hJ7-cmMfUQPsWBI
z9jA1>(g`7U?-Md7hnNy#QHT%s%hV9lLd;{S{W6^azh7o6C77XLW{6pgwEfWzg3LJ~
z=7wmzKf=9~vfz9zz97Ux1#|YxuKhygZ-!VL;@W;$qIHpz?|{ewSsr3*h;8(3h?OB$
zg;*V8Q;5wWY9Ej_A=ZXi7oyVvNgR;%?9c<ULFxJfLd<KUCQlxaEg`-=Af*lpw@9}f
zltKq(dx#wz7a`7u*vVRKc_+lXAzB`kUGzYRJt6igpU*4~E7+%We~1GL4k~5AL+sXr
z(HimyM=LuhCC3<|3XUs1p_KfS?8k%ALy*%soVOIb%|<Ez%t3iC#F-F94#{r^CHEnz
zcqn>+axTONA-)fBi7pE9QHU=X{OnndjziI!<ns`paPkT9X$U5Hea1l5EaFiLE@;-u
zLvrMhT;xy+@pXs@ACi9$$u}WLzg1f3uzbfLKP)W|M+bwKLoj-O&>-jfGj>>hRQ!`t
zMn1>muOY5*ZplXeZ2T7DY6xWGmTX)L@p}l~2mc8%?yy|v%pc+gyE5SXgLQ}Hox}21
zh?^n)*6D)$?+(kIN95TfQsYQ;tk>;`{L7gkA^*`=N22Few`SwEY~;yC-fY~SjXSbY
z;Hc!zMy_luI3jmt<K_{$GaGx42(M3$$lckvCp$W*;V}!Zd$YkqSAv(1O8ujfFB`p%
z$^+R^4BVHE!AIr(Z1B){?oru&R37Aw^{D(#v13x~m=wt7fA{c2HXhDK^<(mgQi6gC
z9?eD}1&?Ke=h9t|3A3Ke##7mNDH|_mqi{B!&W^VHS=o3d8_#Cr>M?mP8>wSbBpW-9
z$%n^e_Ax1{9Ii~B&qlFq<U20KmDWEl#D?OR`9YU#3^*>Mj>`+#Sbkhy%*M&%Lhwp9
zzCA9jPe`e3K3c-9C*(ESa6(EbzogQ#CxkLw_Bbb^&@G#dy4k3gjdIy2pN$IY4f3mJ
z<Nq=B9new~-_u3TIp>_-+ir4(N6sLKi7X0c1r;PJvN_G}%q$>+pa`Nw5hE(1q9T%W
z&N=5Cznc4g^FQA?bL!NszTJI0?(EF$Y=#$>__Xn&t*f^a(%y>>LY9a_CoejC(M6PQ
zf?Wk!&VS-Sv!@rmL>%tL6JGQdKFo{L|EWG+4De#0C{KFP*NdmTcv{S71)mXQY5nEy
z?Q>%G6YS4vu+C`+k3pgg6&&ov5Fyl`_x|rrG5HH3z9?8zGIm*~Uh?8)QC{)lbuZrF
z#E`l4nux>2ji2ny{-&4r>6{5Of^$i}DU*}D<HfsFy!hCQQC^JpBI-rVi}$=3<3&)i
zj1{E+BrnFfe7qMETs~3A`+^?``q!xs-PFlKyk7WR#qUKx_*{uFBs?q_aeY><Q*oE4
zyfB0(1e1cMpe4xIY>tj}@)TE@DrA}$yVj|X1nD-zi<z8zUM%$D6LI)daF&~Ewh-RO
zq4Q_L=XmkCkhy~M1eyAU7xRUG=_+3dxwcL%@?x<UKXBoAvBZm|UVJA>UkiRCxJ<Cn
zdZ(i0!qeBQZ@nN=;qko}oie$k{_4d_FIEWuS@0LZ;o`#y`I{F+W?Uu66I${=y;$u<
zGas7!@E6xO&%nLd=fyu>tP!{EUi>SB&KtZ~EBrrKStn$@pl`j}C}fl1W<loK;>A|s
z+g#-n32BEHJ4M;$>bt$zBYdSe?Dyh;7gxFcig?hAqh1{2NUc|gyf`f45kX$t;T4|a
z!cPgF5M=Eqg<M^)PJ402i?d#w^WusZuWWFdf8L7=UR)HPLZYY*>XMuHvXCC4`!=ZS
z-2Ay)`kX$zDM=5xuX=IIi`!n@5#@p4T|v6t<8l+8Irmry#mAx)_MwOmkkYaUX7wSP
z57~w17R(`-Q!tkxvwyZh<q@7&FrN?kg%sd7DJj38>sd(1$_=Whkg|fsd?@Zi3D>8T
z4<%jBa!R|rj1O0(v~r@97c9EbiNB%`m3*k|LlqzDi(XZ*whwiDs3x3l)rHg$tm#87
zA$6sMG~wxj^z6D(d4wxh(LU4_Ue8rtmW&O2Xy_`9gf#Z?uDvrNJemq&6)k*d=|eXk
zy8F<|ht{HZ@F7D;J0Iq5RBeQ}6=dGnM%CWsyi?XucqhTmuHMCmuEIIhnWcvhJ$-mp
zlwN|*`0%WdCw%DbLmwZW6qC;UT1V_F=2L=C`~J6kKj%X~9|rj_SoHoJM`<km2Z%CI
zaHWVte0WLB=LLrfz92~d7kwD!^5H&Qmn<)fl7EwW#fRFP6v=BoyzavruID>Gyy^0{
zd>A2oq^rE```^y_t|+5ieYBAG1jqO=R>(Lvwf!ciy%T*{>BDb6yf69(K1}lALmwvl
zFvo|_een9=^C9KK6dzvPr2IY@J|uhy_z?6V<U`nps1HAHQcR7A&#X;ql9(~k<38-%
zr08&UlS=xKce64DNosCZmdkA+Z8oc^63HwdX8SPBhmU-iF3Klv<RAMm!{sxD4BV{7
zY<8M6WwYY-nNNNAX0!UthmD)nh0TgMSKJl}&hsJ97FBDD`a;NjAD;|yl&=IA2rd-t
zutia4v5S3JB6*hze(l3DAD-W$zVYFEpL4ZpIj@s!QQr!FCrFdm^nQ@k9|h_5laLkc
z7FYR2$ge(3-QryAS|#PT_wy|`_}zy;eE8Fc)js6*BaffYtKe@R-xG_AKK$du8Xpe&
zaL9*$eOT+mCLcEY@ShLs*l-_sf0-At*ZZ)62V>jfm}j>r^6XnxrLAfUGp5utTh(?S
zwhE`YjSF+DB6)kO+QEV2<3m2|60%!xPo_9o?e$@w%l8X8z`3#2dEDr*4@Z1B>vK*!
zkNWWSRz72cQ{0pmt7D9Ct2!?H1RJ=_xzu^uhof5+zgC<P!mHU2x2m$+)Hx}k**0~a
z%XXV$X_tJs?86NoZu&5Oo4Udk<ioaY>MA>Mo8obeS%h5J=6wCU<wL&h>Yfkxx%F*V
zx5d2U!(AUbZC5;=->%-@u4Zgk4}5s&b8dV6uw6a!@j)PL*{<M6!5z+pyDWZO-L80K
z6_U-5?5>hSNKV0Ae&>rS-SYa8&+lw{8+WPveiZPdt{?SSnjeMy@c2=9r>eI@751Z|
zAC>&*xkDB4<E0&{s2{~7Bl8ybqlEC1ew6Z~w5yk6EiNzX$D|$36fG}G1;Lr3RQBV?
z9g0V~kScyub(Ly<R2N>uRciWC%a7V(*6}0F)i+8B#|7{1P|6RrQ)xe**s0#!sp30T
zeLv>!RE_;;;zt8Fs)l|v68^_dXJPW1c2hqx{AlAxGe4U9v45w!wbQv?(ZY|G?2TQj
zm0)W>^e#n{w<p@NmR*WZd@bFj+6jMqmoj##j(&9V;|e?6kIsH{@#9-RzVoB2AKm<T
z%a0L$boZl&AA|fD%)a%bmmjTnt0(>7b(kmo&W-Foe)MM7O;%@jDPqpus>*KF*AG74
zz~d<)Py6vqrXu*9V82WyrTY6Zz~uwk_9;%rA$~mX$IE`a;>S=wUhu<OrH1?YEE$IE
zRzL4nyLYP(cB^52Oy8}jyyVC2-KxYM)p(D3)$d%)dEJjU{CLgpJO;z#={@RAKPK#P
zu14|>#f&|Qe54<5`{DJ&=f^vKyvyEL#b?zp%8${0<l3uh>{ToF@I^)#;|B?kZF|&M
zKQ8Q1<6LDtixoam@O{A#+|)^a=Mh0>oa{&2y{i9S=Q@wykANR@{g~%R(2tOxZ%ub5
zdDxGLA9?qwIetX_h>3V^FaQ1th9ArKsu`jr{FovnDaec_`^V+BkQ8Iy>&)k=u0G9=
zkAzQmm5=>Mi4RMjDdm6S$1EXKX8ZA}@XrJ{?^P6Q?o;jesbTw^lD}ZT?NbZ<IJ{4N
zzE90(EB2``{rF>_`bv;@OcqKi9TxeqSojh@_^oZJtAFjsGU4C2%5ouh_o?sw_`#3u
z96>H3#_Y$xeynB3`tdV|*za7V{l$-8{aD38oUKakS1bK^bHDnHvuMBSvtLE`t1tGe
z-x-V_tM@zi%KsG4)q;Ns9ub{I{o}_PKcBc(MGq)_z`1n)pC2C{P+R?2$L{@Bt@mSt
zkd1z9;U;rHZ4z^{ARW3Ka5g|bAF@p{GVdn`)J{Kk`EgSEd^dwXp!WN5z>htC?Db<G
zm+%2q?4YW9(CO0K2h>3>w1et6yX&Aj#5sIW#Sf~(ejH(Y52~Yr#{_Beak9k+`L-*^
z`QL-;lpm-4IOE4zKQ2p+ye@Ihk8Fq3B|pyl`R)|O<ANU-U4HtYVrrE`s>2~Q=#aYR
z$8|2f0EPx|!_S8^Q8&ORHgSvV%a7s#lnCICA9wx89YCG{UloP%hg9|eas(W5-;b$>
z)B}#`A@xx3ksptRAmE5u1hWd#%of19LyF|&A(b<LTrB6X;s*^sIx8Jktq-fb0ptsy
zP{3Io`2*n7K?MZ)5kKIt8hcn33}DJ(=c%FPhxzI-6bYbc02>dh^M_TgBdS;c)sLvQ
zM^woGN(E3pfC>SW4q(U;HR*^dE2K=odG3@-xd3J#QT$2E&qq|n04fDgHGpaXR1RP}
zi#n>FJ*uu9QB?vUZ*WwNI;yG%P&44{;p8;}AR0&2f}^Td0JTMDQXL^_g6RQxTwMv#
z0jxf%=vF^~qeoS<0GbETAb^GeJU*%#1<)jbmdBhOzHz|0G+p7CYAQ<qV`}U%)q*^L
z9s%?WpcNnfmyYTla31^2V9y-mKdqpRm{i&dX%|3ySLq<6qhKe&&K&nK&hNjNw`&01
zq!3<xU3ScwpPP=UUJN^cPmim?PQT&IG1ZTwc3hG43E)Xl`U*ZJ__QEXpAqt`;B$i9
z()$N6Ab^4F=i_SFaWzOt2jSl1YKT;{`nWo9T)hy$ivfHu4ICE0@BktKL<4v!fR_Up
z8^E{#UJ2mU07i3)9#=eG3*e0a-VES%QF5Jd#J7aM>-vlcV5H064&a>ts+{2a*3^I#
zYLw{joltxrbIJ+zUI1U8P-6o4Ps$k|0Ph-44B&mX<%F6LK<<;yIUB#Ueh|RmlPVOz
zBz9>4R3-=D6GHA~8&9gXCmm0}hylT%AivnYe^P}5_~@isep1B(hzBr@W&lP2>rbjF
zoR+6lf~z0^Qxsd!5~Kq+>eDAxDuA4)6iqr$l`MR;W_kc02QWW?FQpr21n@}!vjUjO
znR80@JEcaQQpr<l;VCtnJ<oX9wD;7RQ)-ToHK)|)0n7~`+i5jVkk6NXA*AYQ)#|i*
z=Ct}M0ODf71%e9&7X|RPI4lv9K1+ps&8@&yz6oHt%fAiaJD0~#s~-aRkue9bB7lBp
z)P?|l4&avn{tn<D?ho_SuL1mf+L@x{D+BmVMDkSu{O<BUg#0PETJSG+#c3zYnbT?w
z_agQoTY6gkE4WthKS4hGn(K_Jaz<sGah~qj7{I0gHcK#!XHNiQ&ZsQ`Y!zjjt8W*w
zBY>T*vP;Nrj@=o>j0?`Fy{z<%bBFyv00#q@7seN1917rY0FA=VzITK>LjWg3I2Cft
zV*y+Z;97vU)o_A(0H*>tAHanGPRp>K3E(V~&N#hsE&v{xI!%ff1Gp5x6%lD(c2hHb
z=uEfk+yvOSLHrZMO>X{NM?t(9#BHt!?k7RC4dO00e{Qxx6bs^h09nrRL3%t2;DPW;
zXBCyl0U(G1K@<!kOAx&Kke!80R#^o}vIWuNta|3GdiSi#5rlbG<qRU15c1qY@&u7r
zNIt>*ZtCK*>c6w9P!NTKsC`bIKC5z_QzS)#;PVwE#e*mjMD-wQ1W_^wK4e=yhzdcJ
z3ZirnozJPE=M*2TEfYjpDpMR@E(ks}OHwiDJmvfSIaMi$56-EX=Tzk&X!58ML{;I{
zTxHWaRWr!{kj2dNss)1yqD~Mk&#Oj3qy>>4M8hChmnR55yL;xG%6eWY;aae+U_HV5
zf^=&TbiP!QFk|`iilsG{GMfa^G>B);t7c+07i8-A^XhxL1<^{BP3KkXAcz@3oI9^b
z+6B=*i2gwg2%<v}9fRl@M6Vz^u`7b;5p;gUk>`Ty5=7S^x&=X=c0qNg!v*KA`iu+e
zg$ruZ1@+wpwe^B}B8c8WzReZS1kopmCxd8rQS}Yt!UdJ*qN;Y$dDLg{MfFq=<1ea@
zFRGs|s%L}PeNpub;<+Gb^434``bFnQIs=0k6vVI~hI6)DQiIuDLH^aa8p7VYq&i+w
z&j<0sCB-C)F9h+Tq<$(Ue~t1|5HAPuN)SI^Qu{8c+n3a<oM4yK>p{FGr0`|MPxd;O
zRrky4tsq7OF(rtpL5yT1vM4^}^br0|5bx6AvKke{`yBcpMh6kTtlkS^&Sf=*Ra{nM
z1;+`F7o<2r$iyJFT~;)YUUpXBBrc81s^k^b@QRuogf|FZ5Pq(mD=N<ZzoG)H^olxg
zMFoQhu?bgHIEa`K@`#Wqvs_U$dCb1z+z>Z{NN^foRrRm(hbriORhdCpLTtg5AoW+T
zs%b%d6vWaXz7Aq~5FZDzfa~I#@?TXmf|wV?7cBp(ni<3=LS_kmdR5KNB!Zs_&I#gk
zA@rXc#IIMKLgojZdvIR{oo9nd_Fq+B38#7Ms#+MtBB^dM=h!v%>NRK6Tf$yitr}cY
z%YyhO=<H71h?aBe&QgEM1o$?H@3^>F*ERJMCnPT>1o2}KpD}DXe!Hetu)~A+C5S`U
z)UVtGuB$uO6giKTT*ac3uL|OKm;Vt2Z_H6#9Yp=>>Mxc#%effR<GNbI<;F!3LZ=Yc
z2Js)KO%Qj2SQo^4&gvkZy{R??u`!5!LG0(s3Su+I@w(b06XUJxDt29M31Tao7R3DP
zYI_hngsi@<X!6(@#4auY5&5nBkch=@sJ%fnxS?3ofgql^q0X{HZm5HdnN#tGIvm82
zAdUuM-%vDp#=GQ(I>rcZC?3a!oDe)Ic#7HG)H6Znxq7;tlQPc-k@cpkcvCgKsV+*3
zE(LKph*3Ayl_0LN2W~3srdoPaT?^v6m^TD(3ZA&B=x~cW`7MXs4e}qjP$q=3A>3!j
za+eMvUkDG`iU|txQN<6|N8EvLsmFqCZmBGyXBEsQ$YqjUNDjfAA><O0+fB_QWY8^@
zKZF7ylnkNu0yXiLDi}hM5MPOp>9<s&5DJIz-7UqRxe+(rQs-`|T(?!R5Q?+F+p2^h
zNwwRmR0yR*Xm?u;x~+Kablh!KE`;(S)RKxSgq+*Wl|v|WM^y}=63f4>R@_$GZ>wv!
zRTVaHn)A?I)ex$MP+iO#A#}gvh&A2Rx_4CV5bA{R@*R~Hf+qweJYCRtM}2lj=@2@E
zP~xtt8$!Jh>W9!k0%#pVLm|xs**}d!Xe_*mt28CK<LofaU8O~czd>_$Gajvk?6{*c
zT&0bWwrsVlv=8B~lu-Y!>Ty?f4xvj3<3pGb!s~Zc*ARw;@O%i}*t8I$^a-I)2v3I4
zGlX6td~sJj5kl_}4%}7bf8JH}xpP<b4dJN}cHL70LwK5V<DTjt!nk|<aU2@oQ_l*L
zJQqSgm-oNtoLLPBVa7f6(>*mPgux-)yysk>DRo~pxUYtW@InY<IJ+LG7eg2p!W$vH
z8N%?8^H{>`A!ojkyd>t!g0F<|s*u+Nd4-t{yjsgs#NPMSTOqu1U%eN?h!94G@V1!m
zhVbis6~3?D3E}hmiVieKi8wlhy<+lFoNM<L!x+m(Nj&5=AE=2TydT0hAuJE!gAgW#
z@M#F2h45hrlS7Dw5NG#3P~H&2Aw-1xLhy$W5dP8w6%<0BPzc@!ie%mc6%FCw17|?V
zS3OWh2)7?7-jFpp?H{UyU{cWYP<45ztPpG&-&6=wLYV4~^^6dv3I9lNx~qT8c;pAC
zGhOAA5N5f2wvZPesyXbC5Eh28h%@twnj6BGA$%3WJTa+!5yE`oA3StE=@>A-K`h{a
zK2+a6RGS~F#Y|nLmWJ@PkR>6Uf2eXiQdJ+R){oS(5T1RcMm|!;BlRs;aR{qJ_$!3(
zL->I)gs>un1&`E^A>gqp_gJlaq)t9kKZo#32!Ap*KK~iQ$`Joh%yIjT3*oUE^H}lu
zK#~EE)$gJ+=?@{+W3}|L`tPy&JA{8YvLWmXVND4Ca+rA0l>2`O|AnwAgv}wW3pv*h
zvqD#ZUN4;H1|b^-Pd`@8p|^yvof96Kd}|2XLLkYpz)9L6I+Jz^8Nr9XN2}c-?BVp_
z$cnk24S_xu!f_!7IPM`F3gNJrM+NC{gv$;34m5d@EcygDmMnT=7X48c-6@M6nnj-u
z;Y<j%<y*tq5YBP845L&S=R>#<;?GNwEsTpHT#}K!6~bj9S3|fa<O(}Ki{|iU-aRL|
zF8U3wM<G;rGkr@IeLI9ZqTCJP9{2wcu4d7^-IgVc2f}GS<odd-9)<8&6omihlj+H#
zvP+zK1ak;d%o#>5m**CeKda6wBwrY{vg-V9Y5^ey!zd)AuwW6vqJqT)iwm;k5@EE@
z>a>nWX%TA(mI<S57%yej<pj$MRuH6EQAnjQD!WP*Ayoyd304>UPztXpW!4g$omJNn
z!Wz@UNDsp!rV?xzh89xS^{E#|ec=sUg^z{&D#bPqqe&P|!)O-9b7Axgqj?xD!srl2
z$1qxkoo{(<Bv-32S_{ei>X#u&JilryVmo$%o0|EJuTvPE!{{AGpD?<F(KU>oVe|^4
zo49okqlc96e_sz-R3?8ybT%zhc~boQhVfL`Iiq9kPluiJy38<0o)Pm|xAy*F3<zU<
z7!$%67{(y>VHhumF*uANVZ0c|urQvNqK1a?f*S)%%Pcdq3UVI9rR2=0UJ2ukFy0K~
zRjKGTK?eD{5I$1!maB{sG9rwTuJU#m?+AZaaF_J_XgBpeA!EWAD`cFj^NFU3VZ0y4
zj4)=3_(2$nFp^<R67$0_CWqk_9t<NChEKR(kg)~A|GPgP79}PaaZ{siYFrdUF!M1g
z)AgAah9%q<Ou71$Fs8aZ^TCXd#GEepaTr&mjh}=uD~!)YoE^re(w}q0{7i;`L1y+m
zJDD9mSCXjEoFB%QoY?XnlCMNxFUTwl!dNJLQ5cKESmNs6hrwTYEEV(XFqR4VMsT^{
zw}RgZ=FjG=*&o9AF^oFoVf+%tufkV^@v{)>J+kSQVg3pp|Amn?yIvK>?_sPBgP#I?
zfbF$x`j0T;+4Q1p`p+;{hr!3^{u2CK@E<{nYlQqO$gc)#v+0xB^tv!AWY^8I>!-3i
z!E6X)V;Gyl*c`@|Fdl~SD2%OPYzyNoCu$hmIjJV7-C^trV@DV}!x)ua^R}s#UGHK)
zWY;8n!{EL>Fo!-A#=bE2vqlD=U02Pa+vd>xvH3xkmR)Dhp$~^KE{8rs{~Y?L;4#7D
zf)q~(IVpHb@N^hw+|*?`^!YF@gmF8JJFFsyz8J>!Fm8l#DU8dU103QUIwPmP8b+3!
zx@t~+jRTZZ_s^+6$f<eX@Majdxc^L3({t)yaymV*JE!KQfV(n4_qeg=)cJGi``rA)
zsFBNYXqQV5&7~iQfe4Dq+{hxBFM|9LWQ`zO1bjFudjx;v(zznY5kbxfKFFncBZk>O
z%cXNikS78@N_sSxp8u1|8^PmTx=L={Dz`2WL6Hb{=GKFA>w*y!ih!hW1QT-W8M*a}
z+?q*`bL(PKWAO+|M8J1zl#HOfD5b>Y@9|4VP=-eyT~@H1AWfbaSBRjZIP>0jB_Wjs
zs|Yf}su5HZUOj>u5!8&JRs`v8YV8Q>M35$C<2<@=9!=!&wqT~NBG3`kji8>mHHe^L
z1oed%yWw;~qX-&D@M;9FMbIRIrV%_F!E+Hbi=cS~og(NQK{StU5y7!My0!3@5iH81
zTSf3s9?hhT2p;9pZ6YY0SGN^xC)i$)VuuJi3U8cO)9jm9cZuNXh;#bgHG*ytbdTVz
zyt-Eef9KWlyt+pOJtH7lC?>@xBIq5#@w_@qKHVpRCnF%~EBKTkeW*MWalRB(%%|Jr
z(?jy<ejN9FdT<2&BYfk8^M;uL5eyVQD1s03X)3en8Nu@r@OPj?BX}u-mxaF|_+kXZ
zgfMlukp1~|k#E#3Vt)Nf1S-E~6|YC|1}8=Y6C-$&ZHeH$2*yOvE59BQ!TJ1pR0Ja<
zcsqjE^XpiC{Z0f6^XqpxXZEPg`8DrrjONTNpn23RpgR`OV`YFi3CYJr@L~Zyo>MWQ
zXui)0%yt#fJ~p9%o)p342)yKC@+&`Y6F76bfaWhQN&FE6#6K9}D-Crtf=~qE2o4m`
zk%)6mfJNOepi30gF>&B~2I4~c7Sss|BN>4iffa$xsS-t#sPhFd#g!GoEOD3;!BipB
z1ey9#1k+vqaRf7j&lG&KptEvkNARhb$0GR5_53`7IWFfb5#|b?C-_AK^CS3D_@7)^
zLcWS%0eh0OF@nVr{4C-U!S4iF(b5RMcKNahzH#|-A>Xn$B%bfZ{J~BAF_Q?c5Tqwd
z`z3;3g{&0(O_2Jk2!40@AM6cz42k+*5$qBDZ!Q)gYXmn5{u{wsA^!=k6J)OSLN-LO
z(N!`F+#JCcSJ@iDHsRYN*ul9We7E2(*C(@SjC`-F>=UwI@IZvWpm7>?Nbs=W5y7K^
zOqx?rACKTf1Scan6+zx8@<nkvf-~aqAcC{(_JaBfx0iWpPeFYy;ye*|K7v~X^@Rv7
zatke_$uC84Sw#N8kS3k4N|tMa*CV(gg!)Y(w<5SL<c{E7H}zfw_g&5(u|DJiETkWC
z)0TK3GqXn_XM$ykBCD9>*@R?|B8RKw6p|~7+^&)*>Rf`RbN(m_L{T}4Dp3@a)Iw1d
zj^cGGwn!93qbMCknJ9`y5fZUf6vc&?5d6H5E-B;>N#!S6*(eSb(tISNd=%xPxLru|
zC{fr^Dny;9K`IJXilTvt45Mlk-xt;mqo@`|bqS+J6f+C!`oe2QQA<c|LHgH;B29Sj
z!a6+)PZT673LQmV;WX<-@oHgB!oyowv$O_L@Mq>Ee6FAoU;b8D-z=<~x@EQ$(u{9`
z6VgJkP!XqlTSd`2ii{}QMDalslcH!VslB3jB8qlVw2z`g6!nVeE>U!iI`=d?Mx8yj
zlVE4To>Ek|D0)a<7TaA2AL}CT$@b22Nbe~6MA1Kr0a3hCL_ZnDQ&G$>qJu?r-zazk
zmzR<0_O#@ECW>c;JSW&skg0zb(F3Cx#IY-?--%*y)cK@1T0}n|#SqtrKQta1#S2kT
ze=!RF4D;0}hKV_xKJ(Q}f+R0965;pRg!#@7HeVC}*Q0nt$eV(12{Ls=6eC^!cGS7A
zO_A3v-;H8a)VZ-ZT9D*Dx(OdEI8Jc9-~>VXOce6IV1uIi!zd<4@lh1h*&9*#qDVzC
zB?^BOfhhQk$m2!zQ$_X2qB<BwqNp=`p(w%}0(pf_B#LMhF|HT+2?kT+Q5f`;ZuzRH
zP6{yvEkXL&QT!uCJu0gC1$=50<%{WQf_$Z0+hY3TC}u?QUU9vW<0!cnN3kS|PokI=
z#cWZ&68zLH^Rp=C2>;ww=0-73_!olnUHwbWhhk1c7DTa-wG`8KF})~?#l<w+ySA8K
z$|)BGe~S1^6w9LE+cLiqJY7uZEUsxTkK$WVz7zajkopfoeq=?ivO>tuQB;+TzjCSz
z8CYEN@(zEvv`V7--Hq*!DE<__+ExCF;%}G#6U7>r|0`sz;D3Va1lLEgLC8kIO@f;R
zw+L<(Wb?O0VHJ1!VJGKv6bDz}&<gC1Vh@`?56k9ZZxs7D-z<D)VLul;w}J%vByce5
z{8K=B9G*B1MR7QaBb?{l^kS$Q!=mE)SQJ;q=XlgHPY9Bn6mm-NwBVU2&bq1RqBt-7
zf~#DN;*#*ou5yJtTXD^zu0?S@iW^bf<X##>@fdD#Z;T>m47p;s6UE&q9!G%~?nSY-
zxV|4n-V%CSaecnHu3SPth~lB>j|Az^yo7$Tgw7IkoU_I7MhTrY27d`nLM3|)IV6dE
zRtcRuhCDG8jUm0H&Ktw>5;}hj1%%{_VO<GLrC<z&VkjI#kr*zQ(9^nl?v~KmO6oTr
zr57lvOO@1BO6tZXb+3}TL<}Wks2D?~7)r&QzAY0&Ss|rk_*VWVpq!W$1nE#-2$SeQ
z^QDryatuWBktOx`lDb+9)nhmp!}%C$#85Ma?_>BOhFUSyj-g!)?PI7DLs|^2W5{4b
zV$R>jozm%7&Zc={P%-Ej>c-F_h9xC6|In>o3=Lv1gx8Nbe*j1ShA}>Pna-n842^|1
z5p3$}&4e_M;i*NA8;fcgLn|qh{I8OFPf6V-hPE+W6i&=vN>?kTJH*g2h8{8WjG<Eu
z2hOH-je)U|bdI5mC_KTS*`k#0#yCsq?#xn3lk|%5-vjY-46nq{JBIA%(gre&82ZHU
zWDI>7ObpM(&`*+{j^UXYo{eGRxioraEuK!STf)J!h11uMb4Y*j96--fn&x0JhYAjf
z;hp<w&kK$!rO96q{YAlHg3L0UqvLXp+N&|V7K0gs6~pVUK9;ji_?t1j6~hQuA1!2L
z3~#&2J2AZL@=-$CRCD5dPxzP^Ug++a<6;;u%7hraG5CZ}jNyGD9|%qo{7{ftCdW|z
zuG0^GQKEtYH#HbTNO;&)B0>g~bE=C8k8_d;Nw_}A7*b^%2b&~@h1?<}X-W)V2$>qg
zv=}}T{z(k8giIIwIEEQQW(u+pju&yZ;9S8^WBANXog?J)82&8j)HqK}Lq=`B>+@v{
zUkP6zczdLWo{MAn^nTiR%$U{5xFm+9uK(9DEEE2X;Br_0Hin}E9cLc>JEZ>@!%s16
zj$um-D`NOLhQDI`ohCjmrGF9pJ%(RnSSkFs7&eyDt77=Bl%~UF!9OJF&lv8CxmwKP
zrM0KD{)d}S4F7R0l-6swpOn)7a+FIu8P|#VacR9l{MU0Pmv+jevXM$@y(xyTsg%}R
zW7rnMi5O1CuswzyF&vXDJ6UpReK>|AG3*jfbGMK^f_r1wCuF~ydLV{_!VkI1snYtW
zR9&HrQ#)hGRz@G^wopd*ETe~)(UZ#P8D;dT7*2B|Dx=TDa8_z3-&024DWeOQ)fc!A
za08DccN~}4t{4X7@MMiUc!j$<dnSgfF<gt`dJH!t^>z$5h0y1gkUC{G51Q1e+>7D9
z=)8AA@qzG1f)527i}PddibAr88}nusn=Ov)ac8T~5eN6`oN;7s+Qd9@<c*_593|t(
z$JDa=g}$CbapaF<V^<H40&!3&7{_o)DjY`<78OUaIDRhc6!oECaVePvPA{uV#Zfwr
znsL;Mqf8uS<ER`*l{m`9v9+wO5J$y0%ExiNtfpC_oUUI^_bR7HmeZBuAll`0Rq_0;
zoUSgUnjm%h*NB5;XE}YF{!e&n$C0I*hew?_(u4>4IHuxFrZ{>V=wqO69QEQ@7svWI
z>c`O_j?r<v7e~W58nIn*yc7q+ZX8F~IJ(8rB#x$WG>fCT=$+zd5l2hm8F93dgZ{1K
zC{W(ny~Eu+G~2|{HjZ|2w2z}h93A7RQC_zyub(Kdhn3f3%j>D-^^)?MpEz{xETwf3
z<g>Wl<LD7bpE%#BiJmfchsx{T>{4-fLU2uar*Byuv2Pqt#W5s~=i_)fj%VT+%m`<s
zZ#$dzY#cc%=)b0>KNkm09{q&$XR$&C3J!8p@0Qo}Nw1)X#?iTgeld<=EUkimA&zhb
zCrPbz{w2248K>}<<9LOmUs1mk2TucDWyf~+ycWmj6`Zqz*W-92jyL0YD~|0I^xJWa
zh+{<sXBv+bPjdRx<cHwx3i{nRMsb)b>P{8)po)6L-a7o~9}~wnap!zsY#ig_7$3)k
zIA)1Labg@H1}5hFf*-^&$xZz*j>#_f3h~9^ca?yUpy23=IwB+`7!`~O#sv*Q)|iMR
zDclsaT-_FusHmq1nd<7(gnT48UGQVU8F9=M!ZJUJV^KxtJZH8jpT_Z-kU5zS>`&Ko
zZXEMm{zV+~g?}mdm8&z7g)Uzd$6}W+iDRkDzZSBLYe&fPIKGYJJK?KbpYP-NLHLiZ
z@)L*8<v$DgMex@+R=WCcLRjqYar`BX`Xi1%MO-cTm+SerkbmM><0}6OSu6M-&%-7A
z2JSp@)G?gXp-pjY=0*|6jX1V&6NrQ7OW$%<b3;3qb|8*}oN00Fh+}6QyW;q}l0H~T
z->#^4$FZODr;^?i$6jt$m2_Gq-MNz9$4OpEzgS66sic=y()TLqLvb97<9Hm0S!QK@
zgu7E^eU!_;vhG`1kE*Os#Bnl?i`>lPNL1FR;y4?}xj0V8afTDPiu$s${=Kr^TUlSP
ztk1{!!dv98;tVd$s#SFBDtd4geL0S69F8jbN*q_YGYnJwYqPOcbgGJ8TSXtNqHo4=
zD~?hIN*lP%(K(y;I1U)N6UW^+ZkEBlIO@uIUDJMP_qjp!OM4K<Lm}jkI0s5PVip5g
z4HPs`$Urs&*$uvK7r71GE3R@F$Y~(Gs=ixA7p<y2*FEj3>O2PW8pvlLzkz;L_1jgQ
z$eBtkU?6(hGq0-tsjP}s)rAcdF;K!lNdx~>)kO^yGf>>X;i~$+_!qC{<kHo2w`zKL
zH9e`Co?1<pF;Lb(bptgFlrvDCxvJ|b1}YesQzfmUfwk52vTB;Vl7V^~J(Ud{t)}l)
z)5NL<RCWF3BTqF0?W^m4)%A$#&bez%1HS6ImSAl`nnrb<#?~3|FqeUj209tg?16J>
z^$j%OrvRICKdqjDS=BX<Z>sBt1{xX8R@2--V*^bLG&OLfx?WRVZ#wQFo;jaRvzdtJ
zs_Pa8PMu9_DM-@FKx^R{f^7ub3bqq$FG$Z0Lhe=9Icw<72D%u|&di;hv2``j%|Nvp
zy1T)*<)rs8aQ%yP|Lydi26`EIf~%m0^O5le9cpOuCk^yvpED!_PZ@aHz;XlM8hFOQ
zvj!#^_|V`#M5CX9w+*~wpud3u28J7W$>6J%ofEks2A&r(h{IP}4;G|8)Igwye!;+t
z20p7HXJ0()tD%R9GaY!I_OgLj47_3BO%Y!eydci68F*dHonpQvd?cGz(<y3%n7L|d
zo-xvV*T5))?{;?L8ExP_1LK6#9AjWC!<Jkbg5={Rb%N_NTJ-k~d|)71Q!lKk|E{Sg
z8}J%P8JNN;VZd)7!Vza*)zkq4K{xNcn!0!`9WoFWg^gk-u-=$~1WPjz7u|6E>(<hy
zf$p`m%|5K9E#Wkog~#Mtda8kG2Id-=Cs{r+FvGx1!#Ove&dEkk(RpV02~7@tEj`D;
zPqp-H_Om2?Dke*#$kS<(i?#IUl9ao){=&d~14|4nHSnc@uM8|Su*g8=+IoTbw5+Yk
znQO6_?+AZZ@M{Chm_@izTk}Ny8&0$TGYx!i;12_T8u-D$>e~7j1HT&hQTR`SD-7(d
zt(o+*m{)4++;yB2-IWZWj{eO+hM23kQ<c%b8yF<!Y6E{6*lb{nfxo$3aJcK}4F=W-
z`Om;QA^!@l6^z%>U)9m;4g6k5)0v#eW21rHb@V0!m&M%54rE9M_8HhN8TSb8FtF1A
z-Iyg;n%>2IFHP?jGc)7=CG9tGKuS9(ct~>5hexF}ebm4)Zc_<VNZ`1E69(=Zcwpcp
zmoWVeTw#;b^l1a<xZL;^fO9oXpA{sb!sEPw3zB-#z$F8tMK=YnayZiTH7;`l%(XgA
z?@QA+xaYG2*{C#q)4;7vlBNr#>$}_)({<PM|MkW_X%Ur&1|D(KPM|;nL(}zR16dNt
zns7ow0u$4nFg{Ax*%HW^K&}L`CqOfYU}jQoan384N09nW2{NCUjICe-g%T*4KqHS{
zo~{cgP&9#J2^2|SL%KeZt{<iAvL0PLff5Oj@L(aCN-4=zI)O4wVmax~6fGx&JwP`$
zwqgR65@?b@(*!CfP$hvn38XRp()tOHuA0Cb9$hVg>Iu{kv6f&>LHa~Iy0*)|@aXge
zh;<XFC&ZJ05<*c6`PHNA3%TXdjf6B1Y?#1KkEUAzr5lSv(ky}I33N!HV*)J_Xqmu!
zO1DX%meL)RZk0gm1Tw^AMt<3({=9O&Gqz12p>(?h+9$9`IY|^dCHTsEC%m2s{H63h
zrMo21H35=t3G_&yn%3PDxT-Xdyjo{yJwWSTlI1<EpGbf)8(Ke^K;Hx=B>8H3Je9!H
z2?P@eCGboF&nBF2F|Q}^oRAk1crk%~3G`23fGA8Il)ymYJP)Tim`OPtG9-cLS(nx;
zwH_*j-vpU7EP>(TL%vfxUqD_;;AJV{6~R{pUlU~NZLQx(;LQZyl4C>yBPEI1-%j8i
z4psv1C-AO_<K0}N5*W?yO<;_xj1^L*u2bVU;VtXx2|@;oNc{sby@Hbx_>f0k&113<
zI`|U!ysq|(LqL$?Uv+gjfk*=XC9p1mXacbWcqQ}a1mX!83CvF5Q;uK)$pr4z)iV+>
z6WCK%e<Y?Q{8(LWCy)|8MQ~~Y(-NRgPv)XYGChHhg%qi$RXsg3!M`4Gd^*<Cvp5j-
z974Cx5}1>~;slm3-~{F-@MQvDB`~U<p2x9BU|u~<9<Qf=t*7U6^@*98x<K5>7jm+>
ze7iU-P2igZmM8Fa0?XJsHy6!s6Zno(uD<>$f$!a1KM1*4PygsDIqGZrtPqogz4S{0
zzb3FUf!{d!>+3%f_)~gsRRX^Yp$~Q9YBB#7{7bM;ef>`YYa}C`|4m@6a5@jG@8p`h
z&9gp%vk9Ez_L9KH1U7M2)Yr%B>yrs=PGCy{TNBupaL(C|a%Y2Qdjf}9&gC@n9bCmC
zlJ63-o1HIYFBh7S{hS-{91?zjcL9WaSYI<s$E+UW(93B@*r;bbsq<;aSaNZFJb@Dl
z*!A_I`ugAc&KKBI37qDRdM@pZL{hDRzFc4DX`s(1a3O)VNwiDiVgi@g!%0+6;&K94
z*aJzFPU32Ue>{Q52_OmnDdF`5?kDgdfg1_j<QnJP<JI5>ns{6I9l^VT_XK(B$kc}k
zJWAk+272&D55Fi;=_t9fB#||VQPogH%FmVrFWTozBD<J51ak^5+2+ZWL~h{|$9VE2
zkyrTIvuRAqFT8+YLBT?Tg#~$)o;4N~UQDpKU<tvJg1%}_TUu{RFOx*YBq}9QHi>dc
z>>QXjx`8gAbiS=r5VRZU1r2oNq_Y=QNusI{4)Ll6dTj&Euj<De=o(4XOrm8Ht&*sf
z<QvqHmPC3I_ZsM;4Rsxw4RzawdO$<%NkXyMBq9y9PNHrS^^<6j#JdeOm3m3cX{c8;
z)T<lnhT=o9v5-bd>=U0Ru70hdZszjlLRuujjLg!SUDrtO&#qcD(p4Jij3nA5!3#m;
z#P&)4V+abKOB<6!$0Rx>F^rKn(Vdg%lEgDfJex$<BziW|y^?q$iEc@BPohT>!yD<I
zNi1xnCp6M_BfYwjW+6O!C()N1eiD6>cv4E<CrOtZ={$|~(@8XG?08ldd@hN8Nj#s#
z&?I^{*8P(hl*C~6Y7zsJctw0Z6rA2z50TQ=G}g;SVIhYa>)Va>3rV~vNd=ndYEAU;
zBwkA5WoBnja)KrCY7(y{@m3Nel6XCdH<Cy;(Qh)sCi<l&nvI>%L@yFDGKsgP`R^pL
zO7u*JolW$GCOUUhJvxa-P4#<8RA}mC?A25cZ>lFW)nk(&juRYDY@$<5_4`SDki@|x
z4ka-ui4T+bFNt+YOisd^bS@hFm4q(|e-fW3F*k`o62T;lBoax4l337GN0Nvp@mo_J
zPGUz>eYUBNF=HdmBdwW^bFnmYZo!mlrjtpSoXnEivYED$n3BZQBy3K_W;!KE(z}_S
zCVWN`Gn4oziRtX0W|~PKGpc5q2TP;*iMY+8TQj{_l-c6Xq|c<5IZ`_V_`8{&m&6xI
zEJ|W=67xAZo9QpPx|{2(46l(c(_DWgSr#Nwuen|**uJ@5lEl&^en{fSB)(2!SrXqR
zv9`JXhEuVW4mQ`{Cb3-j)6Ml;&Gl?1HP_#Z4;|?FQxYqZSjjF*;%D}AbIs!yAvc=q
zUpezzXdabY=vC63Ka%)U$nSzpTIilFG>hV~nzKmw-wd^s(*yq`v4-=fh5na=(n6E0
z6_ZJHSf9kkBsPij1}Tl=W-)hg>qugY@U2N~OJY_Fr$8Rt*<RthBz3PK_1#JAkwVr;
z>b@j)wb1(o4+zqS%HbrAB;m23EF4YZ7-Kdu%*62|PH<hDc(S!VnZ&6i?sCIP;&c*c
zxWgxLi4`@_+r#N&p7NYc;#?Bvx!bqU7r2+U)D+2y{9NO1c9|o4F6|0G0+P6v#PuZZ
zBvGTKzT3jN|8j%9IxwBb%_MFKzwIgm9;DqJ<=o%7pTvVCN|`8a;$aexlE`Tymx;$*
zdX-gn)A>Von8;!xtBK|<bv6^7Dyu#%HB(=0sXuI~bBI2@rC!!j=QfeYM7~zKsENEJ
zlD&|LH7#|169r5ZG;y${-cm}jDB_Klnxz#MH|8p0qG~HmQp`kg6D3TrA_h>BRkYH5
zS~-<6R~Zv!P1HBhz(hF{<xTz_5^9^MV4|XlDlEiACDZvp|EQId{nb{wvI*kkR=S!5
zGpMqvZenRG&A@7yVDLO@nog5R>X=9~p-t2kpLA)FM}lE&N=%Y}TIqTc`H|P0K4IaE
zu%U@YCR&?d6^%_aG0}{{n`kNlFc|tAl&D&mxY0_p2U-fr*IKtSQLVLZ(b|cbW`-2b
zhPO4*&P00?9ZWoB;%O5dISMA8FwxsYXVW=p>29Kji7qC(nkbpov*K|&#crH(t)26b
zp5oI>a6)VSG@R3tjgQmwwsG?I;cS$oFEY@V<xA?33_N4vSrY?H3^ehaIP?=dpW)={
zZ(=h%Jm^2j#9$LcC6!5*R60b==LL_!3F!qB@yF>T!%e(o;%^iGn0VR5D<%@`e0GtE
z*G!BzF~P*^Cf+ddj)`|oylLVs6C+Igkb#F8PQ9-^PXD~M9w~*Bzb!2#8O5H@z-SZi
zNfJ55F($^b>#{hx#<B`FJd5WKNt$TleG^_2J`*3X{MPzI@%*>7o@8QwYfb0LoC)yo
z81*>aZz5nKWFl;W4GEgK)LJtt2E+c0n24H)v6)f}d*(_Or+*AFSroHm$#BXvO<0_w
zCKj5oO{7fBH1UavDJG_JLYnwkvJ}tI(@cCM{l@Z{v3iE?l!1y_JWVq63~6K63_Z)l
zY!mZLd|~2K6Q7y*+{9cHLo)OniIY9XNQmrz4$!+9ntZ-g@ujpboS_-pSK_=Pi)Utr
zUSwjiiSJB&Z(<1-f|R-3#Md%ImYMj5M}}UL;Y={j7M9$ezmmz&-%3=wGxQH8el)St
z<iC&MCzj0lY~mLaXQlT2Sv(vOX8F~`)yL_~_#i{mTxH^S6MvZaQ*??Y+h{th7PCbg
z{g;Wm@YHVO)JuJhiGNMpGjZR<S`+_qhcR);#5xn}O>8%@L#D(A6Pq|=O>E@WBr}00
z?OP<CttPffS8%a#9NEb{duKd5P3$tU*Tg=yy|vzLVvjU!hO8Y92b-|pL@${z2PEm~
zHky-!?K*7Yh>6Q4u9!G#;+TmuY&iFS6DLfZG;zwr$TpfqvETgCmeW!TIm6=st;^y$
zXW}9!m<-B!spW#;%r;Jt&ic*bS<22aam~aXc8iJY(%73OZb^%7uru2@>;1Nb$Jkh4
zX7e+r)2=p}$^&lx+;1(EwD5?VKR*I2<hB3{SuEtRkkdj|B0SkGXMJU}oUc5Lfjz*U
zVS8B!$ATTmV)IzYYoVZpLKgB_$Zw&5<*Z-&)ALLl$DeL&X<-XREN5XBw@}n_9JtD8
zk`%MRm`NVW=$Eok+CmizRV|dUP}V|43zaOCXzR?|au&*4s9>SGn9P+q$(h8cDqGIv
z%*X&|S2g-rsBNK+g&G!WT40}WwX(yRg-0z5&DuIVP2%a30WO^0ZFRbZp=~vZwounX
zI}7bC)U!~Z{uTy2N^jEI!3M$`3N{j?*w{i7mp8RgTs)hL(!xSZ3$27_SZHIRwS`Wt
z!Ka}z3v6p)f%wy8#t!1y%fb^DI?~fZXSd{TLb_P!>MEHfbhprh{nHvf1sM-{Zwq}a
zjJGhs!jl&IT6o>U8ypJ@Pg@vn;Ux>tSa{aLU<*T}z~_i;h{V>9&X3ajTPP(a`9Sd*
zBv`Dq<Hm}fXQ#RCeZj(uk}I=>VZs>+kC!dHDj8p4sBU9l6D8C6P0k++?{cuD2_qzo
zkro<?^V{Od>fW)ys!5n@w1u%2##wkzQW@bGx5muAr4Or~XyJVeG0qSRA6S@VAz&fM
z=`B^TsL5`pdEHuk7XSUwsilq7MG~?QbyLF@B2p1+Vfl5$$FPvFkg_nvLQ*_U3l=A#
zTY@bj{W<h3aH@rA62MHUoo*kAIo-m?;z@<&&v0AxiHNfVXA5S|u{jn#w{Z1iT>BVv
zEzGlUZ5pmm!xt9jTexK7vW+h-e8rx$(a6RE3kxkAvT)eKA`6QxY~c`>)JrTZweYuv
ze=K}$VVQ+rEc|NW8w<-V{9xfniR4?s?<8i1$A)|_qyL_C#ZMC03ODs<ai$Na&`Jxx
zS@^@kpB7e$8};8gc8}88Qg%ybXRekW`%7jW9Wuo=7XFnin=Pyrvfjc53;$VIC!Iz&
z9vp5S%(c<NCaF4e0#G5L!&VF1ENr*1!@>az2QBQhFuJXC#d0sFM_awi!ko5xx8NSZ
zpW5nb<<s|BAnv!|%brfc)6Okz_4&5WjmslE`RBH2BbSY17LHrEY~hN96Bc-R<g|q|
z7EW4dUdKc8l!cpZHOW~E=PX?009ky`fakn8Ul2E%ba-yEr{q}APm?^m!=AkD^i>Y4
zg@@d_EnK(wPnx)E;T}t~aLeK!>v-;1FhZWc$9ryDsN7CBY3I~3-|I<x-*ewW&vyFv
zah~vG&-sw&0XJm7ht5NMp2yt$ZDh3p8#JwyXLvjP_GC{s8`*8-u<=1VO+DuKEFa=D
zCu(?d+sI?1f{ltc^4iE}qnM52HuBpjV55+Y!Zr%p{JFQMh3V9i*^nYOQtfoy>nUnu
z$(J5-mX;jnDPg0ejWRaM+L-pGr<Be2xOz(4{696%h=h}uq@0ZgK2Ldij`jST^pFoR
zoGz+lqq2=OoBt(>DmJRxsA;2?jcPWk+o&OhFo5-wom}N6da8}_+?nF3Ejo*;V}mVa
z(tV$2K|AfSp={K%QC~vUHtMon<0OEIPD56;(?chEE==$=utD^U_3Uh?8{24N;}sjP
z+GuK{nT-q^ZEU=o=DE;LH@DHkMoTeUv6%}zJeU+n^RyPRVh6Of(av_hDn4(cy^Rhw
z`q}7jqoa*ZHhS53!bWEfP<!3gMmHN>gww3pUUzqSPa8d4-l)CK<h^ZlZ?F5>cuGhg
z)*^%=eV(@Q3^#=K`dJ%8SyX#HM({ZiX-;pizi#iGgbc7T&~`3q4ze-WcJ4v1Ztpx8
zJjBM{_BwATMI3751sgBg&eN*HIU*hOo%VW|4Pwy_dMzK*WeI!`NU(JW{hE!}ZTxBT
zJx+MT#+x?g*!bMWTQ)}6h}$r1jN|~>_|V2=8}G2YY>c-t!Nw>Xqiu|_G1f-k4*ESC
z!47&(2mMwD=PK(s8!J0#B9mwmC)(K2LBG$*EaJruI#)-{ER#5AI_lOPHPLIsXCq=G
zYQt|MU?U{CnEhEgGpdf72MY{KF6!Zq`g2j3J?2)Iu#vPe-Nwf@OdFPsDK@4`s?DzJ
zs8cq6?x>mlyu>igMz&7+BXOWuv6F7r$w_5+Gi=PZ@u`iOHa@YzuxD{7C6&!#Bt$mz
zGs(*sm}{<$c{YBq@uQ6|Y|OW@)W+A`|80C_W07R1C-W|_u~1A##k#2QSj@F4A~`Es
zX5$+h-*HiN_l)SIS>19Q-%7WHI_Y_x^r}w!d#Qb2Cw-@r{>jD)8^5yuMf_Qc`h^=p
zXD2WFoFny{h`)=&D&d(m{vrLqiWtmaHvYD8(8kTqI=!?0$Hqn*n{2GH@h|6(jjo;b
zdcpq$X|5CUQfIxvReYWGW*b{%LhfNNb=F%s-#R-F!Y%Bqx3T%1^>(&Jl6DI25~SyD
z?tbUeNcP&;$0d``vtQ=zK4uqlYgrG)LpJ|h*!dyY5q`*)(x<tx@FT#+ac+!V^a&d$
zxn&*lke?ETq}gJ}tkgxf?V``vAf6RGXXCt(3xXE~`-|HZ8&|miQy7%OH5=Et;iS+s
zg&XW2?zAZsO5v7`+g$!BWJ%!;x1jp^zU|ytA-QYgo+$5jaqg8ou<=k#rarRqm|ZG2
zS%^HcrjRX#JSpT&A$tlrQplBZ3dxyr&JZ#^GmE8|I|ZMVNj+Z*1;i)6V5Sd|xeBLH
zB!y}zR8OI33dK?=mqPiJ6JGHYN~BOyvZT7`QYn;9p{&$cMv&R*HrK5sGlmK&R7#<;
zI8+p5BuuK3Le>8-*Y}dEMhZ1ksFy<h6l$eVTRc4})Dcg%B3($D;6GjT?k-L<m4v6o
znI+d1LcM{IhT=?<N23%Pi^#6XY;`j+TcyxiNOQp!f-MD4F|ZWcq|iNu9x1d<p<N1{
zrOftHFQe)xo*e`;i|xcwmKHI!OA1}ZpS&B#tE)4zJyYnF;)|V~u6QDa-YN7=;VCiu
zi1U+DI8*7&9(!8EX9UZ4b#A?}BI0u?^b@haAU)|nK(KCCJvfCSDPRh+Ou_Rh4CNe1
z!JonlDZH3+PQ50lFf4`PDU43xy%b(b;pG(GNa4*CUP<9q@p(;<r+hps<C!6Iz0M91
zlge8uj7;%;fQ~*wkY54bN#WfTMv2MuUY;~Em02>+`o^R%HiZvTn3QtL<oAnlDU45H
zLJAWl%ln*ot~0Z263!AB1Mx%g;aR9x2n(lkAcbHGKc?_g3ZWFjDSVc~oD?D{L{sR{
zRZkO)rI1X)Od+0vk;1^PI*~%GtER)Ku9{?SS8b(`N?{6%>Z<J&wsh6J{ClRWo|*zv
zn|ITXyXp$v^hYU7PvPSfW~4AXg-=tMnZhS2%wivQ)4jTB;)mVzbRkOw|Lmss2>F~v
zrLZK0r76ry;R}gvVG0+z>G@o7-St<(zZA^gT`x$XVRzl5yCx3nt{0`Sn0?jV34037
z?)vK#mU9Q_p;vd;%To9z1(Lnp^_A}W+Z4V_p+XP+Jx8{O{vm}HJ@ivO^yD7;qaJ!i
z3O}cCFoi=Y{F1`2DQrk#V+t!%_$`GsDZV%nt2h-?_$!6KQ}`o=Ke_OG>eVSM>!H{7
z(8qh|M?JLesk`-b%%MH?2R-#aDUeV9e^k8%*c9dW|NmCOKvYBo!9odTpXC^U9iWs*
zcXxMpcgM54voo_Zvl9;;7Pg|;iegKcC<cfqcKd(Nc|QC5^S!RQ-q-6s_qp%6^UQ3`
z(!z$dlvj)K8mnq4AGVaATT1y>vWGFDmE6)wI=7O&#dxzA`--ujEo>!k72};^yjzU7
zIghQxZzYemlJ{t7CGQvGgJOKIMh<V;)^cfUxw*9*C`Rkn@?kMPD#k&s?bb5AwWM3i
zeXZsB*78Yf`LVTpT8z&)p2hgC7>A1Sc`?2!#@EI8g7LGB94^L}jC*b5);7|kjZAG5
z4>iyDO)-uX<68#vHgc46-9`?!iHChh8+nnQ&81vhInE{(<2MHLV*F5y6O8u7_=QCn
z`r67*+(&Jtep_kZR_3;qbX)ng7(3d^zP9pnTiM-K*z!M$@n<pqDaOCWDBn*0Vl-$c
ze{+c1$<6I#P&=8~E_PniPW~&##&)v1og8Q<r>1aP3eRQmd<JDwD4W6!9pqRVr>AfR
zv(hM&#+fOcmBPFf=BH3Dg|ky=nnJS_%BOHn3PmX-Q}IW%=cZ6Og_g$>=V`Kn>iH>D
zOyL4$`cz6`YK_?W!h(gD-6|<Q?GsfCmdjG8rhKvLB`I8*ihm5nQalKkr%*kGD>S!O
z3bj+9&z0&^BZZm@bUWTou2LTsPoz+$y<D9_9kra>URc#t?c?u=)=fcDxFv;KQ@BQR
z>!naXg=>}Rc3q0kz>nL^gC}ZG$_2{}3bZr#Ce@o&dD7byXm6Op?QFo&#2sqkcl+<u
zHka1fD22OHxLdOtt2R+Bt&<;ZH&5Z76vn48A%zwx+?ztr6nb%})vav`?G#$2&{~1j
zwkg!mzF_H=LWdMOYO+%bT?+QjDO}fHI9y$IoabywmbR*U3Ox!wY)Nkh{}e`~FfxU{
zDfCNWPzr<9p}*?D6b2}iHk*|YhNxv&iqBb%$7g7v*Z*(!xfn)i)>u{gj80)pflI3z
zr%8?{b0@0KN?}q8lT(;dsBk*hm1a#-<t-nbdCbt{Om$-ovo$$Kb*^e@wF^>Mn8K4O
zJe9(t6c(p&pXRcLB`K^+p*V%51<SG&mMgDFVWq+<)wL<CPGL<7opptmDr?|72B{R%
zDQrk#V+xrRj1+t=l2y&6;Ajg?O<JmUp&mB{Pc3;aQC+vJvvg#5#vp|-g-9J}U$0P-
zLR<AL-D`0h)V?i+%>~abDQqq95Ov<J$sMY997x_@$bBG%2UB=RlRH%(Q++svN3@ZT
zYO=JykEig2CQDn$20Wd@t`rWY@S)nDVYEr%dF5wQ*sZ`8&eK7AA%!<ncq@e$Q+P?U
zUQXdPg;!KxE%@`x9(z)FJ%!S>^hOGMHLJn8qIue#w>9~G3LhxEqx!Dudnx49hqJ#=
zEesB9!+zxhx+9qUD20zx_$GxTYX2mK!wM|*X$qgE_?M~in*2P4FBCW(Og2e@2jR;U
zzEU86t-yjuQ}{N8UsCurg<~mvr}iIGI9~8%Q2M^WZ25@-|ETbj>d%F>!J2<d;hz-#
zP2qRV`Xd#8o$OCl!e1%;t<3LzF-iab)a{fskd7P4gZ-tRn*QHNmSylyV{jTn(l~>`
zKaFG>b<;R2jdE#Rmd532oSjDbG%6KpI46zsmCr3$&P$_$a_I`JSg>D^j)OT*cVQZp
z)mSBsY6=$>e5xvxw(8<^9QiL{DQ#ZqG_iPf^{JJ{6@^k)rcpz=X2HT)s9oTz(zrT}
zI+{$RQB<(AF{SO1G_FabMH=^}acvscrEy0ZccyWD8uik+IgMMiNPTLdYy*WGR9VSQ
z>G(3lw*7o>5tSXkH68yt<2H4;y-@0DU1<%|xGRmj)!3*o@{J2V%@mrbHcjJWEz-O&
zboUfa)KVQfr_m*iR%x`>WScZPD6~~&liKMRwpT43z>b>LNtG?{nnt$*v*q2>=&#8h
zsy)-_rO><3PWtpoqi-7h)c$l)k_U}E2B>AA>LAr$+RM;1hNV%G#`-jdr!gXpC21^8
zV`Lhm(wL!cqtoE_nUu!lG{&ScHjQy=pQy@4j#rqV`gggyrO{?e8dKFm;Mw{6^l1v@
z>FGEQv->mCn3cxtH0Eg5Le;rx%u8dw4k-i3|BKZN3VmEusAsW4=^|N{Mm7yIjpb>q
zNMmIht28&Qx|&^3Sfk1|OyjkKi>-3J?~2n%slD`EnSzg@P`XVlWlz;s&86Weum(2`
z-V6}(YVlQrG(sIZUS%S+@M{M2*^tJ@H1?$NdK#P3*qp}wX*`g|7WLVox>c3V+tN6v
zgKRG>Fk0?Q|1UH>n8rhCJd?(=>bx_J$I^IQ`C-*Z(s)#%Mu)g<Jf6_xlZD!z(&W>s
z%-yB)LfD<gb7{P$_U8+^ucYxp8ZQ=n==M??FKce;xV@^(>0nr3F5!(d_NwvoG~P_(
ztuzj#aWIXy(|9M1{e_y}Rd}yZoMqon;{#3ZQ!TAOjyAfBKTPA3G(Od=kGKaFSgJIa
zw@ja@<<Lp?FVZ-y$uHCRM&T>fuM0k<r#Pa?qpIH)mdAH#98cqWZqhUcWiU8{6KVX&
zkd;A#AMT{_GsAKQXJqh;7W_l?S5>y^w={k)aA^zwOyjRK{!Zf`wIhR5GWfUP^IsY*
z3-fhqCf+-zW&ZzNP$q-2YAn5wG55?2F3g~E24`hZE`zf*w|oZYDDbO*^f@<!^EG*%
zY6aDPg|k%D<OLa2QYamYD$3O}xFUm#GN_tCHMOv|OES2)z<mGt(gI(W!R5+bb(*fs
zpoS)EtJYMVrYEhX%rBs_wyQF@T9ah1nW7Am8Qh$~Eg96!Kr*;VbFazZ+6?L!Jg-yW
zmFRkfda9+v+d%mSRn~c9CSEOs(%YC@Gq^2-zM6Y`26tr8B!i|I+^Lqk3Z)t<G*T_S
zdAK`+#+ob*2+cBRo`I`9y+`f$X3$chg=*<WXq7>S3_51eI)gTucx$xHfOqokl+WxJ
zb9=Qgs}m<WgKimg&!9^NT{EBq?WI1Y&OOw*X9m3rHS|{KqdM!p_-DC12<&n{ZAt$O
z1}M-nu(WNwg~(uNhJO--H5m-cV0Z?LG;2f#BQuz#JW6#;24fXQbEWa3%=n+d_zWgx
zFj?&rR3~aKPr)TYosz-S3}$5h7Z^DO)6|Vw(-rtlHuB6usoCsT26H*2ym06Z=R9?r
zUnsReVPRn}EY4twT9#(8EQ95l|J_WkP$L_|%2%qcQe~3MV{HcOG6*sVGbqj=m4TzV
z=?pRo>>WJ~Wh;ZMf~iV-X~S$y=2T1Xh1?80P3Bd7)zSqJ@x$K?wq~#`gY{}>JsTA^
zXy17!xv5~^tgxjpCfhUEk-_5`JfZgcGI%h9hcdWdlMkqtF3z3GtoadzhgI3%M-@10
zkMTW(qw(vVCkvjt6rRf9X@$~V&l;Z5<g==~Gx04ejW1;IVg{dP@L2{gW$<zaZ)WgT
z2Cr~DJIJ04Ue6%vAg^+|JIHIacaYCJ$Qv2#<$CTYe{_hC3LWL@j&gU$_yZ2U417C-
z(H-TT4BpM)J#F6moWu-nZ&=j)hr~XfI)jfg_?W#uk~omT!3=7iNRaDG-4E4Bwl64J
z+A)5wfX63V$(%cj4rTCp247@wI0L_<Jl;|8R(!@UGx#bKe@*eb48GP59_=XKWbk&!
zxQ|CNII6~PGq|!-Y~gWCE#*7O@eID_7SmJkTqhLxaRa$=C;6GdpEYN(Ig4L2_>C<$
z@Uem4Gx#Hel?GNB_%nmQ7-tMLH1KzZ&&Ee30~Z?jH-rBex(%FdpmisKfzu3>F>s23
z$sZ?AHSpUTNy0tblVuH@Zo~m$eJ5c|IK#lKPI9J!$KOs4?j&zMoIJ|_m7i<u?j+?6
zoNwUDoyl_yoNM4<Cppnc&NEQCvs6$e6m^!01}-qrytCAQGI{pS<hagK*+3NoV&EDB
ztm+~Iml(KIxvGI`29|f0^_}Hn121)sKSR09z~u&N8u(>rvbuqfI!o0qa;1SQl>h21
zwA3&_BagaW;x{yE8MwQP)YiUSrFyk$9Rmr4BGsfS{p%|9>LS+~xX!@sY++Zq-atJA
zHyGI8MW%F-%l9Vh8(7;#9_%6w3{b7jNoL*1maEUrs<)`#s(PF1zg>iGb-T(P?8x3E
zYi?xVE(84y3}8DAG&a!IKsy6X3^X-xkAW5jnlaf``gWD(2H2^;o=SdyAj#yt2Bvh4
z``FSzaaY;gRa$Xc4YVor<)G&7?i$Zmdjq`;^fu7JKt}^Vc9l-*R=ZnVLuUhLb(1az
zx~j38YWG4tJq+|LFfR>FyUDO_(#Jqw0}H!JKLa&BikHE2yOK-}G%$#(#lUO>gAEK}
zBMnS7Fx0@b?a5&VhAVKT<-5tF-DHG;kp|evQ5=Co$uR~-Ym%0|pC)M;tM+lK;|)wu
zpnal&Ny?K8mIohBPBZY9_UP+wLYQt~hFWH-(!y0V$G}_zW_MX;U>;BRN_-((Vqm_3
z1>6hW<&y4Fue&TXu*g8m?y^{waL$(GQg*6)JYuuD%Y)rzxq*ofC07`DrMnPT8(3pt
zmw{)vJPfQeu+_je&W?eUfxH2qr)Zu`8!!xHl{2cv&62d61}p=%T8?*@Q+r5G*)>3R
zlnFdMwXjHFAXNKC)yM$dN(|6}x$9Lo7^u`kc+j%Rz-9wmxQTj51GUgd%XR}h3_Pm-
z_o+T;;30+k4LqPgPqubvfge_2wT~#URs8ADV+;|6vp-?rNo~(l1q*9<TAg|7XF1CT
z-Zt=#f#=ltl7W{EJa6Cy123wjw972jtcSc};8n&PwX+Sc8F;<Wm_6D-p8XBY-K)xm
zu}M7LTiOQly9VCVtOEw#H}C=1fF@c0K5owfvyU7c8hIQv@S)l{hD?59;8QN?EQV(B
znSnzFer7B(@VS96418zcxPg8><gkHn3>-1=rGc-E_+#|xJ>+YyfgbVoh<eljEj;e)
zA>S7Gm^#q7r-yuR;DiCf51LCTwf|_~C$%5es(xj}Ho&K!ot4G!2L52s&f*MS8k)+V
z+@AZ3PRrsiUIGmK!{BcKS)7uMuS);)kpCD=uB>}ePr0tA+}l$I^^{YynAKCPo^pRr
zDU(InY<z$6de8XsgjC`iJ8`(DoSDTRJtZ?HQK6TV%i`=T%4cy-7I$XRFdP4N?A$Ca
z%%XA@=V`Kn>iMb_Rq1m<7L^KIwi&8q<FT!t#T8jxRIpc7sHS>x7MCboTFAXDi^~hl
zwREL&B8wu08d=oLqLy-P)vL3(N@0J~xRE^Su!GHFPO80uDwB1ykSwmr;###_r^@X~
z=j)a06+G)_ajaQf)eRgdHQtoPty$cb#mxnuTNFx~C2!AydWR;dWF9QrD2uzY=%Mzz
zvuLc)A&VvobhtN*rdc%0qItnm+U$EY*`m;kmRYpQqO}^^skTvVtIB#<s=ab)aauZN
z(W#KzS)of7T@|{ib}!^|(0UfQmqPC>`ee~Ji+%<Bz%2R~cz{B!UNWd)8O+JmVIP*o
z@GRD4QJlqyEJkLrJc|`sjLKp(mq8W_vlx@bST4mZW@j-ji}6{^%wljanUKYGy=2D?
z$&U4t6SHWMOx{#KIVlV3<SeErOjVtxO8az$862Em!sMJ@!g}UpF*l2OJoO#PpKeO-
zxh7Vtm+<|o`JBO`<e+47Q5HLUNrhXJOB5Do@m4RP<w!4Cngw;4>XdrPQ+vzGELLZ+
zCJXW^uI=7JSepfpt9#3>nxrw6MLLTxi-^O*$?7du7Iqd!7FiBOZ!xoYthemzElYY!
z)LU{{I9cSg@Uw6^XdT4kF!qt3dP})J@m=mseWZOKp`G`=0moCBParADVnY@i8KY{-
z`YiZuu7!PsZ$R<olF=vDEm>^kiZXGJiEUYI&!U2f^G)o?;=U|CWx*`&&*FhBUdZA_
zLLYfBi$}8YFD`i(`Vhw?8{gzVtjZ@Sk{@N`v+;vg9?#<0EOuw{1iR12N7R%jvv?|t
zr?WBdQhi4CwLZdwMppY=7SC(_WInit%18ISl#PD{_Ieg?Wbtw~{*KuzS-hIXYgruZ
zBRo#;D|?iG)a2eQ-pt~IEcS61*O0e3?|tR%EUNXD`hDdc4SnybzNh-W>d3zF_c`}x
zF}bgN$l%#m2nRHIki)LYkFxkUi%-~#zH+Rul<6n?6b@zaIq$=>_$`Ysw6%w`_%aJV
zDTv=x{3?sDv-pLR-cPFclW(#(n#H$VIa%D$Pp0jTZ~I&KlM(&o7>#En7xt6yxCQ#j
z@hrYq_(AoA>W`{Fss60GK#OeaC%Y;oe`jRQ;w%&8O#I2PpT(j6@>hR(sh|AKm1*KM
z6aQrKZx;V$ar}zpDJK5niLOY(jFX@BlPdkis*)^YqAXVh3-*`OO`Kt3T7Nmy#P$89
zS%2x%Uy_xRJW~DRmqKToILAb#Gm6Ta@k^&c`smJcO`OL{2FS$&q`?5WcYsthae;|?
zX1snXnYhrz)h6ngsBEH&2|mcHriqJ83>qLc%y^bp43MfOs+sYn>SEPPRGGZg#AOA(
zT%o#&D+-n?O>7wu&nDZ(dZ@M7{ti;xjGqK`l`1zv!bFi4;k+bG)HQJ(JE*4?6R!-A
zYn882Wx>w|NNjA8{B=P5MKboHzKI4VZZL79iQ7!vZle4^xk>wStBIRU+`?Az!JY$!
zOuclV)Eg*wn7C8V%cq|;G||XJV-rnG+-2h4fpWKM`n4pv-$0=@H8FFbJUmdEnQ#Y6
zDZevNTF}#kWx_Vm(nKp0gG~%E(b_~C6Wut@Cfb_#W}tL5kr*WHOtd#~>L8(|1IK@m
z@ZgUbJDKQgqKk>HY;gV9*l3V+Q5`o(dZ@9ti9RNJn(;4KdzqL&NYaC3;~?p4qMwOc
zgJqzJ#|BA%uDU@oz{Hz_<j^1?R~RhJ9i%?2d8mnDCT6flCWf0BVPc$#@g_!c00+m7
z8Es;eo~4r}hYXf6Cgu*7v8r^KU}7R?)5LUjo1{8Lb+T%DuuN50KUkjCN)D+0I9O(x
zm~CQ-iKQmysLxyz^Aye=BJ)ku93l%%EHbe`jXWI(r1U4HEWVgiJS1-9G84;9tTR!p
zZYxZzGO^l3ry;VEvp+-#ONPiA&0WhgYAIherN)ejw>6p8<Re4GFp)K3nmDTV(}qeZ
z<V-jwUNG?@XWxWp;vo||xn`<J-o$zn8@QfL1pNNL8flNXYlceEP@$G+{e+ENawhIG
zaleVp+#uZDCbpZ{$_0Fj@Mttt_}g9<?=Un@?kLnYaA<6NfD2WD{GevB&WBArV&X{?
zPjNbi%G#mwsMhuv8#YuPH}QnRV_I<UP<h(KE)&mj7>CI-CZ6SL87jNA=EFmUZqy3H
zBr!~$*Hd&H7XK*tB@-{3_`t+I?n)D{a&?(_%fxFY_Gs_kV9*#QubY@UES??C7q1t4
zHEYE%@znUXiFZvrJWSqEJAIhN<a;LGSNltv+;8H5i7!ojW#XWT4^4cbEn&4EnfTPi
zXC^+@8a`2_os}F?W*hkH?9U7KPlw526TfS<+$>*nCz?2B;ybPI2q)Uax61V4sInf`
zKt0Z@@bI`JKWOpq86IyE`ji@fGVwEGxPyNk{9@u)hI$8QJNS*xoKPD(Z2ZB2HL=#h
zItzc9_}c`3hjxvHe@y(#$Z4VM2>H(hESzVdf`wBooND0=3ujt5%|fl=Qr5!qd5JR0
zf6q_sUX-|HxSVdG*P=w%;c}LRau&|9aIS@Z^Al%V7&~0bv#Ny&Ch0?{IWKW!X?!dk
zF6UdQXrYRQi!5AVp^}B`7bRHjg%&DnDJJR0>tKGkTsAk(s%qh43zt}^X5s1K^6qe9
zg_jnbJI#xIz8fwVkC4kPRJU-2g)3QPgw#~6Vd1(Fac;8_QcEqhRcX0O;cC@7stF54
z3Q1M^)V07@H-u|hkA=SMCfjVGo`secT3M)Xp@D_Q7MfVN!NQFe8d<o@LhliBlZEvo
z<e3q2vxO-mWYq|{#o}W&LEv$l!tJVesNQLzVIi0PcU$;igq#==zr13S+|)ud3oR_%
zHd2~fIDMqtqs**JN5&3aM#{Yw#wafyDXlHEvCzdrR|{<|w6oCBLMIEkk<#8m2Maq#
z3J-enAnX|_ow+s&#xF<46?U`G!$MEa+9>I6;g(U-b(Hi{=xw2o1(qE>N*0Wgl2P)^
zsJKXf3j-`HvS8YYfffc?m|$U|g~1kvSQutuxP_G^iJ|K7=P04u{!v0;?g%xGR2`+t
z+|lfm^4Nl9oWgjmkPee9Otvu9!ZZ%GW>p+5JO!1xgy|M$SeR+y>d|uVXqlxzX6|eY
z14j#wITq$B&r_YRx}cD|P=WsRTx?-U!M;>s8MleT3e}aWt5jF3veX&{)>CXD#pPt<
zdK+mjFbm&UIAX!DkhSo*g(uhr3zmiL7Is*$Ib{~|7JQ3;;2VGR?^^II%o;75S0r+y
z<&n|y!RUCA2NpsLk%bZqe~*?6$4Jo_X*x!Fjgcw65(~%3dOD1e4Hh;kY*O8<x<!?_
zTNSohcy5d^d7p**Ej(=D5epAkc+kQ_TsamFYRxCc$Qfg0)Y=3`=JK&}<5;2nQ45b*
zSTR;wjg=8&<JGlyQ{qVrPg&S!VLvyrg<TfjvGA^iXDmEx;cYf}tn6ktSxMK#tE^$H
zJg54+g%=cFRDDU6xi2fcVqx!CVe-qd@|uM`76`Aa65e2Lf#0<7R)HIJO>kRXI8NTP
z@IE&h_sBS5gK6a1ZyzT-#*dQ&?52gU7!}9MhZa8K;IlE~WYxI1o14Z-=5XQ@wb1yf
z!e<r^DSWQ_MIraF!k4UVoY1+-c=?*!d0m1dbJW7O7S6U&-o`Nt-&y$20&E<&@IB);
zN5;a<<K+hnCoKGEq5XI%vn;_jj2$mOvGJp2>3I3s0`(UQzbgEu`nxLae^~glz*ntL
z{9_>)FaL5t#tY%G@$$`h`Fp&aV&haBWo?{p<1`y=TNxX5C&WWhd4dp{PLMNfoN41M
z8|7^Dnh*~K+cs{3ESVtBtWK<-Al=NwIX2F<ahZ+FZJcMLf{ltcF0gUFji)CF7x3{3
zvTs7XCOHw6=s8g?v_URAQ7YSDJylc*7b#R#t!Crmg8dR3mlpV`HHqpruCP(lMlBmx
z+PHb5%$O)O^mH923dfvDYHb@=*|^$9@x*vda`kSVD7z<09UBQ7l@}z6RFkT8RcRE3
zYgDhb(R)FH#(FmD+ZbzOoQ(!HZm`kLMtd7K+PKNaJvLgf88&XQ(bUH6ljK$#x7pyD
zX=3BkiE_Kmd%46f6UASUxWmSsHV6$>35{&rRp7gAG*;$$nN@z0)SM*EY&5sgb5gv=
zIf+Fp5|bv$y*66fXk~-_T02Qv^B!Q5w6W2ajWiQnt4wmrI5_W4k`6XHat7HQ8=Y))
zw$aT-cN<-7{4hzXZccRNGMFsYC&!zM!_|YQ(}A5hIo_dMgm+GsUX!JdjlMPp*cfPI
z#bgO4OFtX^={f#?8|snCGKgzwvJAE{#0Ia|Y{n0hg`aJ)okO|arpPeW;i@B4N7@*r
zz}(R`#*{itPB1y%#snLyZLF~|(Z(bji)}2iG1<lx8}n@}uu*MF+|8*rrrEf5icGiB
zY>Et-BIFrrnW;L<#%zT-s?43MFi-uNT&QEXhzoCY-0c2+6SJoXd8v(M?5~ZLI!ep!
zI4r+9McgT}bBY|EBCEKaJ4xB8@qjS7*2X#;k&P0rJsT+-dCn>0zm1FykIQCkJY@#E
zGbz4uk+U{0pdeVP1lvZgz>b2e%6-J}%dN+u4s3)r?)x%PXR6#aRS4au%6c0cY;3Wy
z)y76HLc&DZ%(JKCFvx=wJ$q`rf4A9SCA_R`ohof|i4<$FaX;5~4()Szz{Z0%{<DD`
z9<s61#z7k&+IX0yxSnmiXyZ{EkJ)(A##1)lo+^*qc!EW~N*tRi9Kds?NyFudr)})A
zvD?OT+`=}3uM*F4D=`**mEc$rYE6^o(}bnEPm||ujF={irpZe-US^#(-m&qDjaO~F
z!F6ThH5+?uyv}VkO)`rUn^kvD6NdC(r^%b#w$r8Gba~5$Oqb@<<&7?h>C@$18}Hfp
zz{WmK$MiUAvF!Vtj>U=X)8l&f+c?0`G&i=tF<lN%7xG7(Xd6dt9JTQY&uHUI8(-P@
z%*G)O%MAI#M(yp1dT!!#P13^QJ<RAdBOcG;lM}bjkXs*5be|z#+xW%?Tgz&THYL7g
z@aN98@uQ9JY>b~F-*YD_9Op`yA+$U>Bi>W*&X8j>;@<tl@G?_=X0V+pwP(sNHhyJr
z?w|P0#`<lE5i^DSJ6{E;@lRD+{^A}i@IN;GRc@=!r{r*I4s~)!<ZxOJWpb#TLzNuL
z=5Trr=jL!;4rk<WW)AF2`5ey5fw8Du4rk}EVrJaI4KwALnbL4m;$=U<<T*L)n<*zW
zt3nPJ<WMPx^K+=kdS=C8gaNSnEV+4>w4Ws-XUT;*yf7-UZkAk>L)9Fv$l=Nys^xHT
z4wvR|Sq__L$%H6zNe)yVEfytGvl5r*P(6oTv!oH9J3UQ$97()4OKPxfIdH(Q%Ar;+
zzPQxRq4sP!K1<5Y7Q*Qx<?0-6o-I6j%$A}Yk~uV_XAX69kQ^H1a6=B)<Zx{c^*I8Q
z<+>cM&!JupM`p|X*<#O@`)A9Gv*Un33mulZi5qjcDTmu~xSf5RBRA)8OAfc@;+V{U
zP<@WvF(<xl`18xe9XUKTDRE~GjK=Ne#G^+@ex0~0hr4rVk;A<?G|r((4twWF^Bnrm
zk)}B`%fXu??9QS&^5`7lMd2QG_+*aItz{0aa%jtOn=7qz_#v(~9t579qkZPwc#xaU
zm7a5@Lk=BtcrJ(MbLf;q=Nwk%uquZxIdsio7)#~QEr;&8_!ZFL9D3w1nFVv$IyY`=
zX0EW>UODvE`pJEA=&RgMwZG~B)q$#mRQa(HormP`;@mhO49$Ue7f0sGh#W@hD9y`Z
z6i<3MzSEwP!+&#SbPi(_#;VdXPGP+2gd8R+Oe*9~W*5c@-Pq2lIZV^#I$f2P845F1
zXQ|Fsos+{{g{t%7g4fTJ`JC=~vLJ_r3X4=1t1eMx?ox$iIV@LLq1tSoFl%)VYdBmv
zY|CM74(r&d9E==_^(-kS=gL5yWuBy!3AC8=B%4E!1Hn|aRP9pBJjp3IIk*Ljr;u0m
zb(&Z<)MTVuqDtd>g$+4uELb)vY|dee!XrHCJlU=@#c6sphaJlI6)gAjDxmye!Say8
zPSuBVctoLet{=;R)6L`Y9QMzXCvtc)hwtXeQ>uigxowr7QGHf*w`#@tLWdW$whwdo
zhzmyfr5s+);T7FA+%NCs@M?iyQ`n>WdJb<W>@DQJsqmKS+p6p!Yj`(@_cZywDlH!<
z>{H#J!vTeZs-*=#&fybI*_gyHs-Na?RDqVyayX>?x#|}M`{5kEEbvzfU+3_R!jXcV
z8-X=^o5Qh!<+~h?D}P_G{J=d@;2#x!QvF%=+WGRU!f&d-=kSNZpQ@)iahv~A{yT?%
z6#iAE{XYe$&nc?>G7{~lIVhvavZ}P4?%)jNGYgipoOnAki%+X7@1T)`yBwV3;9Lji
zIjG>^DhF3PINt#sUhImh4k|imI$thu;_pK98x)lsT<FAKF{-RuMfD<88u>PRH3t_v
z@h?3GRhCN}KBq!1b#R%3%N<mAaD{^_9q^CICeM!_O0a6ag!83_gW3+>oi8<=_`wA{
zYAHN1Uufi?oz-!WaL~ZP4Qz%JKl+15eFsSgbsdO<YaE=mAU0m>;G6k!eZl8C1zPGA
zptNkY1#+W<n;hKk;0`T&v+8ZCx2WFA%IUU1S}hO)kAVy1PCa8o2QwB3kF^WrZU>Fo
zBL}X7CLAjV)0yj_nS<sI200k);2sAp9CUKf*}=UIS~_UwpuK}u4q7|-y9pj$Al}`{
zHV)c4sB>qMOx>_Rs60BTv7-Yzlv-X}AYB}E<?uS_<Di>^?hbl6@jn;PfnVqD;ovhZ
z-m?HTo5WT1b<oejK&_{Lp|+nF$N&cio5l{MT5h2XaWK@u1P2ox3{%gM4n{c`&dGI9
zV`1F3b&dbmp3x4*IvD5Rg{H|ds`VC13-zJfcux9V$%)#RNm|uZ2a_F4VYAg|^PS1L
znmf%wX`M42%u>&_4rV);<6wz{r4Ht*alV5E3iDLY*Oo6-UgUs-L(5`K^6c#Rp~hI|
zV5NgqYFzH%=v~Pbs&rVb#x<%uJKH&~w091Q)tGW%ILJCkb02B_EXCtQ<5*4gu^m_n
z>}hFkPLunZBs~Xt2X8po>%eyqIC#XtqugQ+A_v<XY<E!NV7>ZpR(-xPHaOU*+^bPM
z&YK)8S}3LSyT!p)ooh?mxx>MI4jy#ykoy0uZM)yW1G=1872C7Z!RCc>xJk?ps~fAj
zp;7WN2ah}0<=`1LKB4-g>eeQB%E8kPo-EAco`v$PgWcSl4qjEC=N!DG@H{77;rwPv
z9xp1_Xq3FDaq?vc)Y38Or!)1MgFOX@*SVG&B{^kpI(W;$*WAAj-gfYggO411tZwf*
z_`tzF<@Z$IcW`r)WZ8yswfh|$;OeEbwv%)Bd!r<e4;@hH@QH&@9em;7F!zFkLk>RI
zN{*@jzp9lM#p{{l`K4z4eOJt1DHD!xsW|waQH~*~QSw{0A6Gu6`duk6lv_&|hJzm+
z{K_}^9sK0rX9wKTzi26L>diW#>~-mE{_fyU2Y)&ELmg^qOW2q-jq$ewvr%$Uqhy0c
z@}C2^Sm&YG!znIKb#b+aIv!4QQO3oaF5Yrc*2U>Au40ypGhCeMqLz!=F3xgM&cy{T
zD!Dk@MR^zJxiA;WIWG8hzTS&u(jqxmx!EG2g&)OMa6vs^wW8|QMez^eFLY7G)%fqm
zFWz~-`pk~RMJ}qkXxgBtnu|+aT;}3p7nitragprnSv0*xQT1v?<*qEc+(mU(Rk>(y
zkK`wd<O&y8st+wST-0>&5no_cF5-UzQh#40d}>pr#j)0Lk#Mn=-FH#sBI#n1i^(qP
zx)2xjT-0}Q&0@L6MZ?8%y^CvIT<6A5>ETDoJa{eZzBvBNvj#41aM964Cl@!mxXH!s
zF79w~vx{3?-0I>sH-50vW0~Yr%aT7%OZJ)_Ke=evtYovP$va(~vM|}gjUTLpj%cXR
z$i-bQ?pAK>qL~66ns79fJ$(>UbLD#qx!wE3mE7y1rHfW-Y^~bH#kj@sHxSxtvR%Qy
zy+Q{U!xzQv>C6V#Np^A3)y1sELhk0GyNmQ<In)6?T=aA?)Wt9ty|iE-)!v2L9$T60
ztK82;e-{G^_CYQN7Pz$8gEcus^{*N6sfR0%VawZNgo}}y9Hq+K(JnYL1Ri7Amx6t~
ziwVjT3zqI1lRFm66c=+{%yTi-jlYL5O_ea6ZUvsnJ{EYki#f`-RV||1d>0E`EOoJr
zt7x$-bg`HXTOx-R%OWoRC35`|8L~u{&}WI1ERprq>n?Y((#0wlD_lIeMBZE?)Nhu^
zYA%4Kvc|<}OXbp~(s8MbS}MgZQZDXuaX-h_MaD(oB6MN6$hvS`xGw)<UQ8F33!7O>
z<=LfjaH-_n_&=)3Et3;Vh5t@fYnga1d@kT+l6U!E($a02OkO7UEt8j*$?;_px!A~k
z;iAOFdKVj9{u8UTSuSi0p}}(5>|*<+b+@|M=3<L7lcSc)c9;LZDLd4%WVvivE_;^C
ziRJPDN6E!57tgqO$i+?<kGXi9L12YE?4t7ud4$_-1^?Sl9(D1}m33#W5E`>9<Ovr~
zxp<m`<Klr8^4bddZiSq=G9FU8)m|yjy4daFRTr<hc+SQ1E?#o+GWXp|d4aRQjk!|D
zomUF~9&61?{u2%V?L}T;?*`Q6|6zT#l7C_%)mF(K7q7c`Lx;WpD%s2ZyGoj`67u|2
z^0te2T%6<KTo3QMc+bU8E`E0LzKaiBeCOggXR5Net7M;x{fry@{=WvLZ(SVZV6Ku6
zX>{@ID*0HGhh2Q);=n5TRP{5}L#m&vexXVSuB$J#2rK!@#n;N;s2)*0>hjtC!d(85
z*)fLG)ly@%P`}q8`2(Zz(ZsYebs2Li%uJr3v+mZb=OwvMe{u1vi{D-R;evnf%YQxC
zdNlEy3o8HA^-mXnF@}3M-NWB5{^4$7sQ2(M$Er{KdB=Z@TKv>wb^I1V*VS^W7bnZ8
zj$SRNd3;EFoV8f>3=d~|D6hF^d5Bg^Ib}M$#s+(QxVrqhnooh2T5IA`jn~L|9x8gc
zz(WO(PY;&KYvg<n)HQ3Ql7|aDT<YO650$<64}5ute~E`G9xn2*ag9{<_)u1<ro3y7
zT<r0Ar*hs}sl7H1$e*-NUhc);BYL||vbu-VuK3p$S9rM6<8wQuhKJf7uJYn}tm&ba
zhpua7%vzx?UK@XPhX<1h4@DmOc<AdP>7lNN79Q^PAReyq(9nasR<8AMoyW)1$!#94
z_fU@mxK3{NP+xN!cznK}JhE2aTq`#y->7<%YH8LjT7;!;RiHDE+dbUj@tKNpr)s@*
zv9XbdyEJ*Xho&ByDK}Pa!c(skwx_v==Ii7hJv)og!h_J#Ln{y6I3^xiYmv4d+NpCJ
zs#@sQ-a|(Zoji0XSo*D#DeI)Ohb{#RlU)nEcAfO__~<a{U9j|2=%xDnI{92%-p@mS
z53@YX_AtQ1K+bzgCUIIl4E8YG!w8R$tCAsJ{0(`|+E6+a$KOR9#wjR{_uWVjqdbiB
zFrKT<!x#^IO5Xfpxw}}#>M|QrENzP8e@S5R2_7HYBFBoQRW+ID@yR^$M6pa}Rh4Cm
zhp8T>>Dri~mg&@#+?9$?H`C*TGGs_fW~F3~hq)eBtIs@-k7AHj%JY?(T%fQ}b&={~
z4@(r5sxDKd=W-7#3cS+8wv^ELf}U}W*11;oEw!XPq&+mq<Ayvk9t;nAJ-q25>%sJJ
zzlR4rSRQN-B_7s$$a!!)_#Og}PYDp0{q^_*bMZVrk3}v^3$;yJXbHJ1J=~X;*U~a1
zEpyV6Rr>~RA`e^HFb`j(WfLcq4amr5k3R?%S}x5<%Zv=j2$S1A?C|hpMwVwJ%EZ;)
zr>CRCgB~98u-n6P9(H<om~I}P;!5!FsE5ZqJkHJ1Uf$2h_ZcDZc!Imn;Lls6oDnB`
z8}hV=XV_Uo<{Gk#Q(y>x7J9!S&wBhtlDulj^B!LC@G_T*hZjA5b6#HJ#>vK=BC}QG
zS3R)Q9uKd3sLCu&UXzu3vhs$9Wm)mFGCCXA{FaBeJskJ&y@z+a_!jgl4`1^t;Nd+F
z?{gvPQaR*dpNIWk{4M<tJse<nvT{)MjjXuaikPH+#P($6W7SVonfz4YGloY~nEafB
z?4i0Thdq3$K%VeRU4DU(@QsHf3^fbnI}b;__+1e;sf8)uYTJ&fUT4NP%zXF*!}t##
zPOy)8RLkQ>4?i)O=W#|JKXXHQ_|wB*42&Lr^Y8~3k}3U6nPy6{DZg_qDKzU>m$xE+
zbFMx7=K*>A%Mmc8k|kov-zL96TlbVazsDk{=5bmc3y0Jtm&wQf3s5$X#a4WG(c6;C
z``2YvXXbHM9_Qy#F^_V2oSnxxd7PU^`8?JSs{5=ZA6xO0_SakTn<eMla<whz<xwHe
z&tB!+a&@V9*>XW1mGk@vRVw9ip`M7wZg%`s{3W(j$>X9tKi89=FRts^a&aD)<WV;d
z$>Y*Ip0(xjJgVp88@$U@pS`{4iaf5&qgEcZ^ZZyRep~5BTWWB`Y^li>=7g}MUEQnl
zNap#@wp^V@ojh91D_ZnQQ9_}1PKp%n$jP*vjD0VDyNRLZntXf_xi*jM^0=NGHYfG-
z*qoDk%1rXvO+22<$&Gp3#NmptB*M*k+>*z%D1OOsYaX}dF)YIH2)E~PM;;UMn3%_%
zd2AhyA$bfX98EOLqfs7r<#BgD{$KTu`S`j|Xw0d}qiG(^)J{vwJen8y9)%XF_vZ0_
zF8&|(R(Z6}qm3HdskSXRFqcPrO?FUa5uT`19-Z^(l1JA(y5-Sd&rW;yJbEklQ0=MO
ztB_k-woe{?)zYtEZ>ax@J|K^Q1<Rm31}m2q;oJ?=x#I(Mhv)IqnML2{WJDgX-<BAe
z$0&u-s$*1XAIsJ%k5}a>Xq=SC<UAhAV`m;y@|c>3mq(r>pT~4+2U*M6-;$j4Yn>T+
z%*<mJ_l_gWRA;Ns$zyIF^YWOV$5OS>VF8z%BmAx9!aNr7yoc&6=7Ln1exeSOJO~`0
z`#-9)TuZIUV`Uzz@>re6nnFFyE&ai!ajXujWdvB4kH3LjteVOr%~hmq<YDGv<&otY
zR!=H_O3&hU9yxBYqX|cq#a)F`hht~e_4DylC^zTP_RgXpk5C~}Em2*sx<PfLDm^#p
z_!C%mi`KAJb(`vT)g5`<r*MBB573{h*O5|XDe}Xb`wVww9*-!~{%9VLDL=0IM8W=K
z9#1Jht-7mV@9fC#Jf7nQ4{%L@=ks`hqv6By@gmno9+UjIgD>atN*-7ExYEa~dAyd#
zPYi>3?BROI<I_Ao%j1na_Hq~G@qt$UW*%?n@lGCZah>RdQs2#Eg(L6f`My~^#bhdZ
zUmpAO_>lWOj{{szm&ieeCe0<&hx~CKZ#wcxo^Srd7BZE5D38zc_%@GY%*x|%9$)A2
zO&(w7`Hqcz#rbk$PcoH!gz?Iiql_48C(};;E|25d@)LP{pXY0N`5})1dUi5>$Uo-M
zPnr5l9=|dO`zY_@w>*B&;}jpK`uHP{KlAv9p+1klxa?i|o6Ay5ky#J<zdT<d3Vb}F
z7BcPR(|nZiafXjGeU$b2l1fhZ@rCA+=|eut=c^|v=cAk#TgX)MIX=$yQN_naKF;$|
z!N&zYD)~6y=dHd}^m&gRdy=W-3w<>4q_WSu*4RR(lB@ct#v(p0^Kr3{37%Zy^L?r~
zmrNyJ?qicD)qUPh#1=A@T*F6AAMJd!_fgA7Z6CM#xXs5^KCbq0osa8%)bWvEV|<8@
zBA@pFlJxPN)<9-G<ZIadyj<(^;u~AYRB}BZ^?lsv<0c;sSUfK`_zdiEE}2Tc*+<*F
z+~T93TFA7MZ})MBk7hoa`?%9bLmzkhXzZhrk4bsC%g5rpRDHHCnf~M^>~&t6`q-=%
zGVSDhe6;Y<%13J-_xgA;FD-q%skvnOklXm&5z^M@3W+UbD!GG?jy{I@81AE!kIp{&
z_~`4Si;u28didz+qnpn~CEeqZj7yQJ<X%2*@ufF=rxr5p<bFQ-`xxY7u#W*T$Uq;{
zG?z>t@(>>@eHrQ_R12B*QXb)BtnTrVK1TT%?c-rz#&GSa51F3iaX!X#G5Gk>mx(@p
zS38-x<jFp!_?Q}>7t4LD@G)KMobO|Sj~PB@YI2s3xeBv=%u%=?kShbB&f|(Y5{KMU
zUFc&GXN1!f#HZk~#K$r%vXld*Mk)h7F9a*qzD|{%t9-0hUgKk}!k|ES%nPJglPMo*
z9~tHbV))3ak<7ADAddt>wSDBciGn!#IX+w;2Yej#;rYmO(tSMT!}k&R*zRLTJg|s-
zY-BIAwh|xfeQfam7yV9-dz*c1@v+s%Hr9DktUEcr-RI-}cp~tKj|Y4_=;I+DJ306#
z#kBtu$9z2I<8j6l|Nq3U(s)%Gg`W1Y%f}ucuXEe_c$N{~$4fqT`*_aB^FChiQ5vaE
zj!tDY3cc*(6-Is^ulYD#BhpzXMWORG!o1;Qua9?qyvOapj{A7q$2&eMYUH_4qs_%9
z#gq5B_kHa1vERq#C&iPZlVZY$K0fmCr;opUeC*>BAK&^o=HpZDuXriqD<6k^e9k8M
zIPBw^lj25$lj6hIKECmB#K%z|H=h(An&=+CS9kGuK92kNiT&aj`uM@e2_HZDXsNrq
zt?uP+C+*E&Xo)uh{_xRD_vUXLTU|xe-nvf*=zjd$$3G0|0nQ5WuaEzHoED%=00cNC
zz^S^%2I`(2@_+Yf*#M^pI3xH!yK;i=!E#!vyz1Gi6LnXf6X4tc=c#30VNY?3ogbiL
zfC~at3Q$XPFAPvQz-0k04^Sn*MFB1jaEWGB4RAP+zXPcjpqU--K5EraxEbq*a;f^X
z3Z;60D+1IAP&2@lLHwd%ZYcRshK9nu`OvYtPlhu8VBM$J)U6%hssL99s1qO&peVq;
zP<{+$Z5iRd<918(L{Yo}>$3fkBqO0-8{oPC^+PlWaeaV#0geUuj+Ouo0;~?OCcq5=
zZVb>rz<>ZZ1-Lmt%K)tc+!El{0CxqrTU&cufI9-*8Q}H+gY-nyh5_b9(kMVmEo3%;
z+&Dm!0L=s36QF5;Es-<}@TBIF=|gT2;EhP`4e+^I$h4DN2WS(ZYk+P6+6HJBpkshe
z0on)nBa#jQ%9q5RWGcBcXQa1u;Vh_~Onbc&=^il3p?82j0eW(9N~Bj1e^$=i9_mT%
z8(>t4^b4?1EoA1B2eOX=rUsZ6U~qsT0mcRx7hq_BVF5<6RDj_DtP&X!;65!yW?Ay+
z0MC`km;eXWLZ+QOUWajFfJp%+1o&R<)X7}Q>t#xS>g!`qGL<|%zzjAlz@h*%1I!9A
zm!lnEHs@=-%;E5=Cz<}_`RwL;SrA~NTFA7M7YA4pU^)99U@3XMEDK<2E}1^$m7JsX
zvMRt+Y9Z53UK?OtfTsiO3Q){h4zMY}<^bscnE+mZd;lXrHh>)<$7%z-xn8UQhqMMV
z>mfS<epxSWfU`Hm7BZFW2M7X`1Xv#+<OpowN=7~PA=8JvAwc5|vXLwQ&Lk~lDtSwQ
ztpOeiurt860NXhc0qzg5BS4o8|NmVX`2kMZ26>P}r)9~kf&6fQM*=(^;0aC*d%8g$
z<BV61bIDZllU%nP7OuL1v4xKsqmrKq@N9q&xD5mB=8OjnTzG@`{{dbI@N$4x0=&rm
zvMKozJE*mhS(f~2fY$=-39wh~k5WrvVqIGHats5!6X4wdZ*e3y$lC#aRtGX`Aiu{o
zvr*n>{Mi^=$W-$F00+3C0(`;c7vRGHp9J_cz()aUZ<LR@snwHAfAVJmT5ps?+#_ls
z(@s7d;L8Bt1UM4lD{h31@^ye^noFh+`6y?9qkPLTR12AQ@^P+hZpjcAhWH`Ci2$dC
zC==qx06zuzhXI`3;d<b94)7<3Vxt_~D8Di^ZIs^v{LXm3NiNtV3Dx?W;!iwVY?8mY
zyf-nT#<_(582m$=65`Yl<2K2HO;Wr`qD}JfCV6#}e7s4%-y~&2oF3ww5a)(CBgB~@
z&JIyN#91Nu(0FVX-lLWa<9k=W)}~&xS$KEKTg|$g<-8CTLR1WKL5SNoOS{c-eu$x)
zWxz`CFWska7Gtw)+bn#jLgf%uLevaVE5t=1s)o2M#N{EXg}9g}3UO(OXE)2+o8`;R
z@t-OGv02J*k;}KpO<SaTh$})|8KOprmRn@t7MZ$5R&Eh*i#)PLUfLr2w@B>}SA|H1
zs2k$y5OqQ%LKKBKwk7`75T5}5-xjH~RW92qw``Srw~B<ghS5Gmy%4>&#=oq;HpG~%
za$Sf!?ubW^{~b1Ws}ygQ&0B@Z8$#R|;?WR~g}5oi%^{|Sm=@xe5VwZt7NUEI+c*dz
z?g`O?m4vu6#N8npv(&`84MQ{vaTgu*y3p{XD?*bHO+z#b(VTG7RiMR5k^f$HJVg5t
z9YVAU(K<w%5N&BWDcX0|2;YvQsxgz=F+`^jT|#sX(V3?>DYldQo)p!4gy<P!Scu^q
zjS#&<3<xnWM4u3SL-Y&LpIIkG@{^<Ypb&#Y4B@<o|BKj@Pm0yEH4cvmF*3w>I)oS%
zVl;<3#MlsXG(MjklNo!*g>m@ZwN)l^)rFWGVoHe8Xnb-6E{&qoL(B+ahOk1+3^6Oj
z@(?RR%x2{w7KT_9Vs40eA?AlzKsSxLCr8@Sh`N|34Y8Cb3Q-zePmZXi(Q;*oRUwK)
zq(ZC?u_naY5bHwxpU8PqgiMFXgfK#6!#F%LDwamblOvuTA{Sy~h)p4!5N?PdL>R&g
zkq_aAU|3@$Waul6gr%`A3Q-bbeTWSqPL6UXN3hKywuHDZ#Qh<*hS(Njdx#w&PL5_L
zN391!JQ(7k5IaMh9JL+}<KXj12*w|-WHOcfc!(#ssUutz;mHtBg*d{3A)XGgE5y5O
zScqr1sYATV8ba(2@mz=(L%bB?c}9#)@&dP~)<$NX<d;J*l)Vyy(To-{mAog!>mlBx
zJ;WQ_Uz=nvSFGle>GR4~d0Ru=JDg>;Fx=5jem}$qAwFftL*5Nye~1r5d=%mUr*e}V
z<aDbinf~ODLohsk!e*<5Ogs5dh|fcO8RDxDUxZ-rJRE}YleuIn`D=}t--KY;q=oU5
zO8%BTr7^-O5xxs?Jj8DyerIt8{}4Zg_&LN02FA_2Sq0-NOOdJMUo^D-8iLW47KT|W
z`Hv8PhWIDMzajqO7N{bBYwTq%naVi)UkC=_|Mz-<d}@T#BAgTP?iXbul#Os!gmMv1
zk8nnWGb1ouzq3`2ZIx5D$wk}ZdT2R20%LgjC=SuIkg4SJB2<WQL4-;X&X2(8T`>X!
zICIHV@`Vu?&nrh@NT-ENC0C75EkctBO(R?!;gSf~MYuk~r4cTRa8-n>BU~P#dW0Gg
zYDTys0<Q>H(zqqAflMXWiok0`?I^x9&_bq?>qJOIs2f2d6h+`wBN>4g4(5`n<ZB|V
z+#=UT;H88XGL>8}LVdoIAK{J&4I<pYcl#sU65+-OyyDyxffpTmlBwidBkbQIw?*;g
zh88lFd}kB~|3(q+iqMb)-afWd?~cH$61lNDlwP5jY!;z;gzgb~M7SqHiwGSebc}E>
zdl#Wigtie{Mc}opH9MuVLuNs8JC55{Y0q|UjV)v<xl@GB5xVJ#y0EIP(lv@NdCVnK
z$)#=UNjnEhJ$tM6jnFSbpD2DJ4Lzy-qxdR0AObIrw2-OfK@kQ=7{Yb3Rfb03MU!?i
zl{_NC$S8i}WwPqOdx}Oy7#-p6Z8C;)-Cia|7^}%~s^d8b+xTOUSb0oT7`RQwZj(jZ
z;t$TIXgyO^*KCvN`YFte2s0zhVhbw^kJ-#+{gq`7TO08u80JS<7-11>E1P_Ln=DY^
zjUqpB-oH)y?@#=;E&hCJX@q4FvJuP(%elh0%R2Te!V0dI2&?p5d^>1Ogw+x1Y!@E&
zw#Q$GSj!dCHNkIsry`^yWVm|ojz8o6w-01f@{YbR*nmXxe*JqmD}v4K7GZmYTm&aV
z7$IWgSHO+nYug4!MP583MS0bCjwFWvo(Q;Qw#Ognl+d{|=5Cjb5e96R^$|8GjM^?t
zZsIINd{K$qcHsxXTe-j5%R}2`&vyA@yZpIbF5Dq?cF3JO<o*Z`M0k8Bp4f>8BRmwr
z+5&qEc1C!Z`+5s1Zowm556s$tog45Nog-Yc9@nnN6Ab<lx|X0@37(4ZG=oVA&Mv{O
z2+u?~7~w+(jR?CVyb|Hn2+y%q6^mYCOo;G&guT}ly}+t2EP7G-$qGeh{+^(5%B@As
zdKA4?rRcQ?dm_9O;oS(Q{+)PT_05PcisK}Yy%7$#E=rdxdW-XNZ4r;RxqWsB;Sni%
zk8{+bXkUc)qxb_j9v?*br*ToEenl0}EZQG|dVmvgM$xjr5+6nQIKnRxevR-+gij+J
zkMMnj&mtU(@KuDbBOLiF@j1`PW%h64lSxHi&~s8z?;jFha`BH$5>9DW^bOr2e9LH{
z{zoJ5U_l;q_^!Y-jvN!0rTvEpyAnn0&WQ*=YMnntVAjvvu>T~&9}~;8>~9f%XU9u$
zS_xm~qg<8vp{D;u_%p&^5&q^l|C0D8!oLciTv1f1cF~qvMFiS+*DOK_sHc?Rz&~-a
zObN=C;NY;L=ZlI?FToil*fX{0%o6<E6_@;!DAmp<5@(g*@NGqe@+CN@1a(UwB{;VP
z=aryF32K(0ebu50C8$(_3rlc*2?jPTs;I`N&n>#31QT}re>{B!_!QOm{tHNmAkv|<
z2<+L<1xX1d43t#58%0vWR!|U7L6K5K?48}6o!nWvySqDVMY==$zjwYr|IahedCuIu
zbK}%K=iEE9>ev`57DMqEO2zPC46%GtB8HMNe0n9apsn=ogek5f{!k31V<;EHlsgfA
zXsApK{qB>pF~nWPTVA{^A47#07Tt;9VPQ4GN-;bVL**E%#Bl6N<Yp{7wU`hgufHlK
z_gsinjUf_)#1M_)@?c~Q)wA<EO1!yLi=lc9jbmsM!=v5tXbg2@cr1n*F`URFHDjn1
z(_&UThE=Yr6GOW}TGC#BO~&4<MW|j34P!{$iqwx`Wpg>^ss=G!=q~R+B#+1N1nGG;
zGHYOzuu%+eHIqxOY8u0nG3=-yFU0Wezmcb6bj$H<3{S_jC_WRzAI-$*5hZ*shUPJ}
zilKE3V{2x$pnmm_wu~W<r+8b|Q@nk<vb2fe@vN-pV|e3yWXkzSi?(ueRJ1LJ8bkXS
z{=OdR7z01s)gi>I4i=VlieYk9`M!6Qbm$sGw-^plBx2|uLys6{#xN^}o-y=_;dM3}
zL+=>+#4s#|;W6}$>7DBVF}z4wDkS|v*gu4|JoQox17jE*)5m%#u`kCkC<dxV3r|s)
zsWO8-H6+Gt5(;*bXL`tthQgY!u+11=C4+LyNYb;MR)kS8{5u36c#8PwkP8K~$!jsZ
zP*$un5yCe~(ikSjFe!$&WB8%5P><e=;hh-XjbTg-`SJ>{u`%3JNLqJ{&TA$_-j87%
zD_@U{k1?Hv2_bDsNtS%&skEntj*<^!%(g|R#PCTBAI0!-3|$|TjgRQW<7A5cgVHG~
zpT;mXB*pYl)IW=1S`7S}8Fk^E{IcCsjk*d6H6w=dRb<f1@_7tjkb^NSk70I<IWeSS
zuws}K!&e+n3_pfMn@g#P;ky{Vj^P_pwV0+4303}F<a_E%b72XI#&gj`VlfyoBxA_d
zQ{pkOJVD)gP*_cqx3;cn#&FtGtjt0?1}BDjG0cy_jWHvKfR7gwKZe_$V&yc)&_h2<
zoRE)X!ZCdIxGac)a8V44V^|mtmCdpmds!00(r|3V+0p;HUO|nZ{Kv43y2D0d*c3|O
zni$q{v1lb5V^|l%`WQBZt?~RepDmkTcgl;S%HAD$3d`p3sVyPYqWijRr~1UOH->#N
z?4<Jck|tLpyF;Gt3b|=Els%O2XQfd^De9{=XCnJ!I7rDEA;b^F(7C2OSwMJO*H=ek
zI2uD<1NRv?7Q^uvF40O*{bM*u#fjl}j{JP&6jh+1{2ashN8~g$;(X*MTHsO9t@Y)X
zu#k0r4UxzD%O5fP8N=Ba&V|O|FAkn~Z8;Oe&t2r};&OP1RCrr{7|!%2ir172q53=%
z>i)$L-;zzJTvuYa8UqYuGjNSVx=iDSTQOXZ;YLg^qh%ESd_XRiklU1{zan?TIo^rk
zAF6P5x%X~_*M|4x%gd2}X%KwHDQ7pdrsOn`%RuI<XbwXk%(%w@|HNcbKFJ;4<}vWH
zuc~y8_8X3S4Q*a%TWDDF8OU#-n1SL3?l<sBRTMH%_j06wp-IF=`~d?64LwKVU0xFY
zRM<d~unzH}2ENKEtu9AO7$|ArVFQ&6lrk_POG+CkW1w^~d60zz<)IKK^3Mn<YoLOm
z*R^s6${QeM{&-60{It9l;ks7Q&?b({T!&Yqj~J+GAY!1hp@~DvR59>q3!yt9hF*Wm
z-H2ovh=$kruG(CDQa}_ZQa}bjAdecTVc?vB^9E`fsAXV=ftdzs8>nNTkAc3Nh=Iop
zJa6Cy1N98lH}H&sW(FD<XlS7O7<tkFSD(iXG&0bb^$W@qq`<!sxnG)uw`Y4rn;Mu^
zURc7Faa{>{DlDhnc-qh_>3Cl~Yv8$%5nPv>8{jG5mIhiGXkoyrnZ<>;-Sx<;J*2gP
zfu*F4p}n1#N=nOG!rQh6+8O9%pffA~6&ZOklBb)rH!yh^I<WnE(vd#fXfYobHrs{I
zhNSKqlAZL=+gQ3A=wYCzfv$HVy$tj=@czw6i8~QOmTVd-g#8Tk=fDiSV_<-R7Y)2-
z;B^BpaYzP+8+e5xWMGhip=7$R$d17wQ-&CLuZ-}POgY^zIxLi&)!AiVO*ubWMi@-X
zYhI5uFv>uoRx%M%zOGElA#`b8H89UtWIAP)g(IT!hJiN?6gV5%?5npzWM@}-*T5J9
z6AdPjFqYkMs3nBb!XDo@FwVeu3Y*fNC$A3-OkiJC^zC2gBODmvhXy_}@L5Rtk2(H(
zWD13ZG&JyUmY5x*4_B4XdPP6wZ3UUinzgktAx=dj&8HcdZh-E=&%Ua5B{Ivv=LYr~
z*k|AigL?{CVqmF(FAdBwU>k7Qg@L&S3<GfkUmN(w!1vTs1K%3B>FXnc-x+Wp&FWJ~
zX8jY%QBGL$W7tKEl37UD3%jFRn+OY2VPTR4Cr#4IA1Z?%5fqi}EyXhMNLn>YE7yP*
zR-PYL_6-Cy2nNyyZfBDgm2~BKVFk9|Ev?uokp%`88en&e3@i?7vhnB2>8?4vWd@cT
z*i0ogu)@GfYQ$LCU|>~PbB%$uWUiszZ(bzMI_lBDC`Z0N?1)W8dPLa^?fFIu29>Cy
z9B3~W21U0T*k)i?C@u5{wj0<%b!e;ogdqckUeHbhW!q_FH`@%OfIT6Sr<m+FaKOMx
z1E&ler1BP)G3O#j4IKIpKWyNL0U8Hh(@RQ=`f|*`aT=(`a>4)|>^!xyq;?j~#c2b-
z8u%?VCO?JnX9K^4NYN{iyjA4o7vy&Xe;LSmIr4`AYR#Xa`cP|re?-pESdsp(3C-zQ
zN>^p+&@+0bxLh!B(LkFxo{!^_fy<<D9M$8vVsJkQh2kh2$29}j4P=iaM;tde_xf^&
zl%#kVxJB}YT0<S7C7dxvJN$R4gK70|D81V%%9NHs9NFSpnCYEPN~=}F<ZgbsC(g|#
z<clL`9J%7i9Y>xx?u{dF9CdF-W|ffHxg<v|nNL5qgwVYiR#5WCaeo{G&qW@HV`>ZB
zpF;|;B!^`06(!vAa<pI^4BT>;kRovujpN}sD#cMOj^c4V6i4Z}w%8@&bONI#<2qE~
zZK*gOjO#bK=BCxW8<9O1BE1_(nK-w)P(F@dJELq|TP+q=U?ZWis>osI6|NC)6qA}G
zqP6~xJQ7FMI3jU8T|_F!Q6&zp^1Qg*-+w+LaZR)=4)uH_8b`DHgjQ6Ah0)uQ!abso
z#!(}V$K!Y+&doK{ilcTMb>bNIuQnZYO}S*(W&C?1q8<J?9wQM->G#y?#kI)MfoTv&
z!#Hkz6-{==sJe3a??|IK8pqL`y~NQZj;8E4j=kk{Q%{m01?1^Cx9z~&pp?)<n3q=1
z#IZfCsz&75I0oM%&+*ypQtW;y(Lo0_R1HdR%Q$uvkydfE4w1n<qaTirz7R*-I6jQy
zqd3~d(LRpX;&?rd4smph<Ha~$igU{ko#W^kN3S@#u;%SZw>Y}T(UpZ4bePE?g&{3P
zy+>Tb{{^1CL%eSs{lZ83gtt?NN&mPGY}v?w@Nw2BUgJV!U|3-YSscg9aSRG?2a~)P
zB3zCcAhWMwaSV@RL>!~ycqK$ehK(@V<*&Th6tCaXYIGd0#&x*O+dsqh--zSQIJYS=
zHjcOA2zpAZV)D<6@^&2W#KBR$8}`VFWJX2#$a|zx85ti36@jbs`;_g1GA<4-zFdMo
zh+{$=6XU4-pw1Xf3Xy^L%E~8&@Z&fp$MJO>-^4K`j!)v;0L64t?@6JKe;Rhg&~<8D
z2eY5W^_n~SX_*nnrkCXNIKGHuW*lqB%B;8!1{nbEe^O@0@nxuAU$OCFdQs*zCysy9
zipb+pnH$IdRPWn3zKg?*BSj`&jC@b^>?iR!eu(48I5$jDpsVB?B?h(lT!i=sxrN@8
z)RaUV$v7BUSIR5D<r0gwrLg#M9o5=#IC1nSATDLNxOkM7PEjHki;C4<ru`jBlcaH!
zq$G@x!h>ag91BS8B*rGW4S_{*Y)oKN0*k4Vq(cH-6IdF@GFp!W@+7c4juq6|IDU&`
zWgM$0@Nw*mV|5&BNCa|$1R?R+4yhE!dMaIGdGovIhBz+ti53eKMT=Tis$+C>9FtmO
zOB}?jXP0Q8jRPxhk7Fl|4B1K*2y`ke*<SJvj_!_QPgr@;g~)(Fy&b4ofnxpraU6-`
zXdDOPI2gwvPB2i1sTwZ}GcZ35&_Y7|SRBXWI2Gq^G8joQ-Z>G+$+(V*7}_xAV#!aT
zg8v-HFBIB7^7kupxQ?`JBGh{NX1~YrM;zB_qA3{EjyTS9QXFRmITP2Jgmbihah#2#
z{&4B{jxfNPb}h1zL*<{p(D>7mjF79e0E6T*?LP_FTH~evj?}5E9X9$H*GT7gw6j6+
zyGi>=vEh*7xE+ewojCqscXX}-MR}tEq3j`nYzgE{;6_-OJ%Jnv?u=`J>|#Vmzam6<
zxm6@rLdz-@jhTUa6UduD-2@&>;JyU%B~USehZD%3!2JmnPM}BvZ6B8c2^36#fz<=y
zEe#h73nlPdJ;_~0K6z4#Cb<8O3JEmr94($ei3G|eP(Fb(g=JQL*>f>cGJ#SF5aIP;
z0uTL%mrkI}e|Xu1w(6|FEE)SM`HV#7L@C}B^-2lu+CwE!ErH4jR7pS*h$c`qfd@0H
z%>xoiU_gE$!m-uJsOK_TV6qZA3Bc8XuzCWICQvJZ+6mN1pl?RiOki9_abf!BOZ^q}
zNrk0O;{QS|(w1H#$51c9a{_3QK+6OgB+xK{#tAe@U``i2o&b{=jS_ewp$!7vEkc)`
zTX|`kz>^6yOW@fAp5mm!3eT{e`a0s{N<_$u^`A>%|D{Otgif>6FRVkJ+1aF2EoqhD
zX#^~JLOLbTCV}S@XrDlb1YRKh6KF>Q)|XMw$-rt^kCoSukF%s>Lg$yx435spt=BT*
zofF7jL|W&U*%{R>f$j->p1>Cg^hls*0<R|UT7m~2&^v*b6Bv|0p9BtdkiH4@BXe&>
z)Tn5G5;lPs6M7w_`&VPAb{*+JzQmFQK6@qVXLMk~m2rDB8Jxf?ob`pskOYP%bgVZl
zf#D&-po6y+hf1=bj7VT)0;5Rn+d7pxnx-bBX#9zHc}ZSR@RS86CGcSaZzk|o0^<|N
z6p^<Rc!$Kl8hI~)cPYayWK05MDVf>i<46{7sd}d}I+gT3IUClznNhRemE;ilAb|;q
z|I3|DB(<+bt_{%n(vK4OIH8kW(-N4R(8;$?68JPkrcjs%MVW=87c`ZVJs0^bp?#hg
zI!msbkv`dFdIB>j4})c92xoB?<)!#M^}poR>;%3{z)v7eX-VL#1k40d3Ctx&?nJ&#
z;JXCAPGEaa`6etOQY4>zPl-*yNFW{-{usho2$_(qexIHruS8gq<n)V*ny2{F|I*`D
z0!}Ccc36Qm*#bQZH-sK#a-P~yNdnR{!NV$8n7};p;$nn8JRL3OmgoORrA0LU39KTm
zD2Fuu32nevBtSo88SQ_F&_BuBQF_c%ZAZ&WT9Uz0n(pAPj*r$Pur7i1q2#Y6E3<^j
ziZ#taL&|Fdf2yL9%?a*1qiPb7B(^57ErIK_U?fWdI}-RMfnO8YNwO#KQvyFHu$#7m
zb4lQM0(%qKm%u?vEXi9+_9t*4M2J5f5yD;h<ZuGa6(339D7idO5vK$2$x||Ao}wFY
zf=nqST+>f-j)TyvhMY>^GzH*Fgvs-7&+7a+jU+W_!H-d@*l!8^p1`F9E+_B@rI+TY
zsGJYsUm-k8i<jVjw>HlFY2twBkA1ZzImf3S)K>cYdFny}7fJSzP=s_>SosPIuSTwh
za=v(;x)vgIByJ{fD}e$@Jdng~vL=DtN#sf5p9JpGyeC1c#WeE2H2z5*Xu*jdQ6zPG
znYy1NsqGSD$r0UjI7WnunKP-?Ggk;1`%on*{P!l2H>ox2z9jM|adengnS4nd16F!Z
z?oVnTHUITUg^|&MNfb)r!6Y7HcXuL%lPHoz(Il9esnS1MEUA645=pcvuM?!jlXxt@
z?474dCQ&MhzvrpN*CSUeYtvUci84u4Oyc1r$|ljjs5HGDDW62S5Pv40u%tp#Cu2{Y
zi(D$N#lBJ!^olDd@krS9fu2zoR!M4~C)a%acD5uDO`>BGos!5(ax)H(C-DSlkwo<*
z>Lhjg>(Qj9e61uHO3)hDNTOy^n`K@<Rna-g+DV<(rZZ5NgHNJf_*DHQ8YFcNE%z&E
z7?u!z(My(fj<T>(5{;8+nM5nnFbQrDJd;GTB$_7iWD-v$aio|$9YR{mwI!v@e3iSN
zUg)1q@{j|#zP0>2@*G=eqC=P#9NT<VESfbgmoTTn=(siM$!R9>LQ)&d_DL))Cv8L6
zj)R}C_Vv-rF=2mtJ7Jw%jihrDU6Ob?i9tzpO`=;8y^`o1(vSvW+s#OK(&}QQM+kdT
z``(c31Efz9eUo7J^2H?jg>>$p)DimslJk_10Z9z6DQ}jOmy+l+Ut9ix99VVX)CMOp
zB#AeZcq@saNeoNk)g(TtBg2z;eZCrz#K<IGdolV733Vg#?;|oQiEDXe>U=diL{7z`
z-}jF`U_>9f6nTx0B=JTPWIb<rU3peJ|K#A?WM!x5%Z=onB;E}r^V=+;WWJZg`=o}6
zmL|p}c|HV(N%JH=NMb?~@gx#SOr*XfF(ZkYNqm^ZM;u-fpHecfN0`t2n4LDz0ovpw
zrX+PPcU5g2#4Y$YGBvzi-62{phkTaAv?NcJ;NP}#E4wfwF`0pL5}zmWeG)%}O7}$)
zUnMa&iP=fe&U~4~oFsnhDV!shcp_hiM5X|Lo5VL9+bunSwq4}AkmjlRdKLSTx|T;v
zKCKX!s#p>$y1_`|P8k_;J(5hqOk!mctCC2u(<BeHU_lag5>66n>P`|axql<#Q!M+)
z(MsZlGre#j!WI1MF37OLKaqKqle&_wDBOs-`Bx<8Ff63lydX;`U`Z?rIk-54WMy!V
zj>48Du{;#BF@r&;Wd&7cIGAhg@}>;v7+sy@p&D#SVoefjlVHiZa8etRSWi21Ey9b1
z8<W^Xn+83>V=bi957DhjY)fKS61$VwPPHv6J3?zfghq8IZOeVq<I8BQj_gTlFJ)g6
z`;*w4)K25&D-l9&RUAm-Ab(BjEf3z(neUL5MRn%wQR-$A#Y_}8d9Vj3NJ$#fBu*xA
ziu_IToR8jYJ)OiaN&LzI6p^2j_&Ky`v}R1({+7h=N&J<>8QNG*@J!^-a3u6F**k~S
zuZS40$=^wwrI~t7*3DOhhvqAa&4nZ`QqGgO9-5#_G$Wy{pgFosUHdM&@0I9Pj-hvy
zshdml)s3Xiy59=vu<~N$W_Vj*fw~=*&`ly)?otT39GJM*)NUS3<S@YuRW=jca?NgP
z&$%+?ucq8%BBzP*-I2>gZd13+i-~%+{9<9rYvMk(KznW?pNae?O1GDSChj*;z|;Zt
z118?SrkASN)kyx=<zm+;^BaXso%>?ei<OI*+PW4swN>Qx_yV3FMM)EtO;j;a%EW^v
z%9<!=;vrM-05U^G<HMz=w23mNcEBoKjXc{-%9~mjIFg4=R4~Cnl~+Ymi|D(Rgv&}L
z6OWkK+FB=jd0W*)#6&$4^*LF#Y@()#S|*QIL78~eMEB>U8rv)<ysDeH{7;0UPMnhe
z!U9#p#Klqa@YzUhQ!m-v;HYbA!K-89$qIU1evHl5keQWbYkh5e8klHoqKS!yCXd46
z2@|y+kVd9<KPU`@%SP$#t)_h3L^Bi5nxM1sl!>QJJVT}^ZSGidsDJdu1?sIq(dSGs
z%iY`r6XQ&Pk18$q)|E=bqpeJ|HnG^m5)*AqJa1yGiT6w%4?|m%hi~z+iFPL1o9JVr
zuZa#OI-2Ol`I_itYDMNAL>ChzT4xhY&qSiNrK_noDfSH(CPsRg+P?KNb-dHlM86i=
z?!CJ}@wPYV)<SQr(4}PbN;&CgqQ8j&CSIgSoR7Rj8~b+zW2CBNaTOyRWMVLxXksK;
zb2c)>#MKee;T-3=$WRl*OueAcb0%kBF?Du=*T7a7Wn#36cS31=)x>Ki-ZXiVO*<_-
zzwx?>Hz?2Lq}<&Iy%!eJ6N_>em?Fe;3$JR&jBd%hCdQB&jf6N?f%j?rO?*x{q_ms(
zz{C`?fD%$&CYaz>%SR@D$uAR4OfvByVOnvEVe4BuU;44BU1eUAO`Lv7ZVwkGTRx@a
zGuv-sYB=)GLO64QvKOf7CT5tJN$TAvYZj<kCI}BLP!(J2+u0_*G+~&Co0vlhG4Y*=
z?@hglHrK>AY;eB%I=toH4W)~>-%?qg7W$}{7N{SnhSwuMnwU3OuL3cuKr6{NGP+=P
zG+`oXA~2CLVVX#pJkAG)bffa-m21!Il&{YE782KlXTmp;Hu3N<;Vxm5M<mZeMVu?b
zlTQmX^VGF@luT+Xw~Rw0@V{_lp@~H%ez+5%Gt8@TjjW|6mXWh2u9;YFVg;=zsbONJ
z$rFRvV`8s~)g*$6jhq)p_<eM(iS;Hnm{@1(WK_TUI{Q>MOo)BoPw!7{HnGLTc4{Bh
z>S|<b2)CKq<#=eJBIJRPohEjfJa(wHzUD&pKgFjD#EU-XA3dY{LYX;YV!w$4CJvG;
zh2)Tl!_@8)(qf_NvrygFTB|c}kCG!i#X%Dh9uZmpvYa$=%EVb}1odl#oTh}BJm07d
z(N7`#ITT<n(7$m~e@6bG)=)k3%kL&$?I1yG?X3P~;tbWKs9eu0T%m~k9p2K>ViKMr
zbl%i{-~|rJ#3dRclB=9tG4a%kQEqqAv~pgwu`|AlUN>>WM4lAxP4PG-Zka#|*-}~#
zZ<}DQo|1pZ#6O{Vzia9Q;J+rA0Hn<y5y_g;IZ6YYJq6|ma;A_Yr85lor0{BYop0o#
zM(dp`h1@B8|E9*@TB!1-a9;`!q;$Z}X)=+OFU8mGaeqoDQ46H-(PKipF)j`_o6s2`
zr#KjX5}|MkMN=r2(w|2tlG3k@e6~;(PoYFu@^T6#Qz(@})f6HrJea~mDO5;dWF%@Q
zqoq?k<cYZp)u)kYnG^`i_C~oB{&#S$e2VT|^gc6MF@=XysFcDZDO3rct;}YV(f>8V
z3OsAantV!9h^Ejgh1Mx#rS!X;^-|dLXGEn?Ed^(xs-8lP6l$jMXn4z#bqn>UA&xCn
z*A}W;Db!AZ2(LPvc!)n1!v9sMpF)Ea8m91g3Qwo-ObSn=&?to_DKt&t#5DPIsj$1o
zDKxL7|CR4al5~-Jij^0sTjQnbBK7Ex(tD9=mcp~FlR}FW7TQc2%X4gMhVWXFl9nmF
zwn#PoBFabDPU-ihO$t2h*FB|=|2-eV7ed%Jge+{ALi_*l4k>gD@lGM^9KtRk>>9#u
zA>>n^EK)sE_;!)%8A2kxLZo*Jef}%y8zTKuJXou14hZ3kA$%!>14GE4(u>rf6b7d-
zB&ENz@p_7<a4|IG!mtpM9m7+2CB#SkS2B`P`X4@;BKjZxT8Iqz7;jQ++DG4`Fr=`4
zk$Q_-kit75{%#6mLu5<{S&bErEmB0rr7%8)sVRJx!Uri#NZ~`ua0(N{)>uI;R+Cb=
z9#$^8Sbdzr<P<)k5T<xk7|j-|K8tlbL<q-(@QV;mOJRBnvr_mxg&CC9#p-{J%uHeX
zV)fTz#n!%{<}OjQLs(&nBHkc`Us2jqSmI)-i?35WjjV-pwu5g|_>N-fpq7L0Q}`i;
ztroUf_%Vf83bicMwqT?XPhlH-Ng<I!lIJ#4n4f}~LW<&DRMIKjYAOd?NzWz9O2MXt
zr{JdGagdx^0pYLIS)Re$*iq;VkR3rvTQhpCnH1h#q9f=96vz}-r?4i4MJX&!VFhW}
zE4qZ7Z7aN%rLdH(<&&T9L<pCs_y-nx$BJ+zRepr53gPK)^7q@?L0y~TA!=+4N4Sn`
z;vlo@@`hbxQwmJd@)*ySl#Yxxv)QMFx4gD;UJZrb(T)^$rg#t<u&^tI-6{N%!mlZv
zpxBe*VQd^uVQ&iiXyQ^hkitPuTqOIY2)FaTTB17t8{zdse>uWOQaF{uX$ofw$EmF;
zoTS>GiHsU7Wv@lXwbkkITBRhFS8CRmZf7Guk=jet&m`ay#kA+he)7u_^;-(Rr*JWa
zODX)3!k;OeP2pT9tAC|%CdHHC_-Bdg);U^msj9S8wRl4sFICZMQmc-fPvHXfbg5#N
zj4R8h4dikPS7_l$lN7Gf&QKszxIt1cRa~mZEmgGJ$Fs85{S#R?GD-*db_#dcehPPK
zoi0au-HI@7Wt|#LWX@8>7@4`sY!<RxsA%C~3pp&@W1)bB2Q1{Ykjuio7V=uiZDDbL
z;fb|87J{WZ(wuQlAJM$eLOu)mE!=PEoa&*f(!4`-81(k*)}`w7QZ@O-Xh92wEFM8e
zSqp_N6tVD-h0+%0zbMQr{&F@_lx^}8&=!h^2=NjYO8$qJvhd)4`0b^t@8D?hWjY~A
zX)I^yD4@KB3YJcWv(p;O)T-)I@YQIhtW>h_h=nW*%0guel=G?<A{MGx`1m<FK0sRi
z6=9)Rh+1gAOc8H5RKB=Rw)Pg%znX<dE!5zz)ug(mPsVclqo##E%ha7_qL;-xkxq|E
z9Se0WOttWtg~u$^V+9L+EgrT<0}IEOsrD8cT6o;TbL_>!6BZg-c+$dC78+Y<Vxg&}
z1JA#?$GS}Iy<a*%D=)W}kFH0aw(yLFW)_~c!15~RBSX6CZMZ*&MyD=Qsb%VDJ85B|
zrG+*Yp107-(wlngmZ{d34iHEO9+~D=a-~7?f`zsg+L8GA<aXaE4~)@K=hd*Rbg<CT
zLMIEIEp)ed{vTZ|o!sbZp_>K9Cfo+PyiDDGQwQCNYO=YW^t8~+LT|Eux#F=m$`yCg
zcbAn(oud6L^tbSag*Pn>u<)XVp%#W&dQ0Uc3olz3WMN=<TXDH!VXr~a!E9|%bchA+
zs}gy9xoW>$4Y%-$g^?CUSvq9qxf*)lBPgHch3U%C7GAaRnuXUbjE_Z!F4t%Im~#2z
zX5{2o(Fx1dx69RA7T&fn(ZVDP?^t-(!uuA+Sr|h}eqF{|d`|)Mx=QgP(z`>HfiO=s
zl&dEPDr3Bb4=hZe%$E?RA}MBzmaDr1qRgy*XyGFZlPydk!5azB7k$iO*Aec|QtWyD
z=M$<Dy<f`q;OMU9ifP8*Z$_qBeD?wKEiAAw!@^7paSI6xvn+g0i*4cecjXHUvn_mW
z;TsEIT9{+uD+_Z;fs0yU|6HyZZ!*64qoCBi7WsT|^jizxS@@omB>OH#DqW8-%4VEJ
zhxwiriZW1og^GnO8zDTCL)c5w;`<lyEu<}^D7OX0w%}Mg0c&vpxpb6A)8|_7ER1a=
zbyuiUBK(!*fdyLERx4D7lAKYrxAQD*en}s~g%%c(Qx?{eZr?>0lPr{fg(Vi2h9%1^
zEVr<Nv#zew>>n#F=ZDWk`ma!{SRRqpA*AjTUuR)GxszYESlB>AlwWvlB-smUWRr!>
z<mn2<TV7m@PJS8XuKIRP#KKE92HMz3<4?O}<9-{vE$pF4TR2NSvarv>Neibe?5C=h
zlOq<6S~x)aK*g*mhp6e~%L-MjnlO*eoc2@I#9g6iIe8tUMq4;RiM^$>+_y$XQ(dFS
zYshH}e^~g_!cP`{w(yIEUoHGb%2ORWO34w?gVlr$GGONkpMg1L+&%IaRlA#hmtkjL
zS+_!+u|UY%a~959fQ@W6E?Br|;WnF6a>>GF3)d~&uyBRuj+uW8*FshOZnW?^x<X}@
z)=9sctg}K<Pj693M(cC_4K7BCtW<X_{A1y6XzTvvz)HwO$f4T8#tSf|W+R7<=|kmS
z8~50#R!DN$$Q>d%ZSee6^_9xG9LZzjsg;U!<Bk<q@Vqwe3!lmtLgseZLWhT>fQ<)i
zG_cXoMnM~eY*e;U#YSNpMQoI|QN~758^vstv{A}NaU0D?L`&G<l60}I3@k3ZeWRHE
zFz<sb49i)_UrY7WQEFKm<!o?{58Ehjqk@f!Hom+Y;fcGP&rA1}ib;$&R_bM<l8r}f
zv}-A+>I+w7hSF6z9UECTl#M-4h}d8#&CM+0QClAxoVHR`vr*kfZ5wrLJZhtcjhZ%U
z**ITEH^LJ~%wUj@L{ckNJ1U5c$86NIQQyX@mFmGla$uzzn@6v16ME{5*@czraT`zA
z=wPFxjYc*a+h}E@wT&h=n%Zb)<5`>UJ>e-EPuqCL)~5#_8XV>MpYJQk!Ek3k|0=~`
z>N(QNMhhD)Iki=)T|eQ)pD0viR2K8k)4z<i;rMIG3pUz@$n!RyTctkf9&N`5+sUCq
z(%uIDK&;;?RqCI}(A;|axRcG7s?d$>s3o1r_af3I#A#Q%+vs7VuZ?~-dfMn^qqmJd
zHr`*Q#ccK}bvL&@=Mbz?+gB-iNBwR5zDf<S@uH2J-6U2$>%P9xX@jEKR;%B;MPIft
z$i_As+ieWCF~r6<Homnn)W$Fy6KzbgG2F&0Hr}%Fwv7=Ss*P7|yk_fgc$AINwsvN?
zWp8$quCGMb43EBUW6tyPhK)DL&9f1@b0t?Rp5vnN<i^1}Hr}=I9tRxqcZ{w5jj`;)
zh|=w3HjhSZoQ?4|KCm&tM&f>bDv}L8x>|A9@8q0ltJP}2YW1Owk8I4aG1JD!HYVGc
zN;Xkn=p@_t#KxyAub^9dd$m4GFnhIfSF34Zr_(vjemaxCwy3rz#An&~oI=Zy+xWu9
zlD;yVkKZp_!e>vfR$TGFvN6}j*EZTz%et~!z1>6_43xra)ZG`P#v1jVjqhzNva#64
z4>o?ZVcD?5j$)jJ&DY%cpHPU0@?ZK@nLkLMgfwkjEF>w4*%~#ts=U=T`dU8exkfoQ
zTvEnH#)fCZw~-D<&NImj1Zc#lee6BbN#@y@Z)1VYP*lHmvGi%Vr=g50pnU-9MUgi8
zMT{jjmfGMB{(2kBY%I62+Qu3iD{QO`DYlAYa3hkxYxIpZie3sG#mP1GD!<mo?Od|X
z#<Vqxjt5uLHF;%&jg2-oQRQuHA&Y54C<%i#scZff8T*VR)~J3(v~KR8@wf4hjk`8>
z(fHf=!^WS~bQ^nZ9Jg`8#y%VSZ5*<3*anZ~KXi{AuyK$hEGCpCx`qGNkRvvZ+PFSE
zdW>f94ZZ0(zMgP9W7LCsSv+aul#QQl{1P(mw2hx=97apd_Hz5{C|5V`VE)R!%FA!m
z1seliiqaqczK<+lqxP;*RMNj}oUw7)#uXcX+c?YKAC?Ot!71D4*c!#DfxIzB&aP3+
z-dwbC$wscfBW><RxYd$pt-5OCnvGkWR1LXq;|6t&TG?FMRgto570*o4rKEfO%_DN#
z#vL2nMWr{=>{5g)(Z4p}ptyq)4zfAO?jWy&`yAwO^e}Qd$mQT3hkpjDna+*)+zu$T
zc^us9Xfft~C54kT>Cr~$h~{&U-$5Y<g&o}Qpn$_yBT>-7yDfyAr9bw_+$i%u3~jiV
zU1zN-;^;7{sDomTw#;qTDzA)CY<N~-z*<$(K`Dp-r-sT79(3@KgK`eaJ1Fg7cve;!
z2W1_MS*xhI90MEwa;@Uo><SJlI(XPYB@TO}%*i7sOKFpy`a438_wB#+S<NaA-^xUm
z0~HP+;y@fk9i8#xi<3;kyK5D<7yHzaY7VM9c+^1+PUO|-)~}+p27K3s%j?>;ioRCS
z=Y%gi*LKjzL1Rb11YO5LT?daj_`6xOURYA!!MxA)PYuG`h9Ttb<0N=D^+b3}qzMP(
zV1k2*4xV)I6sPIn6$ei{e4P{Li>sF%G;{DQd9+Rqbnu*`vn4GYv~+M}t!nPz@>)ft
zm4ns}1~_=pK^xNT9+^2Z+Mj&<EAqU97aX(=@pcY6he-Pnb_ij|5VB?`N9VnXbaBwt
zLAU?Pdxl8&5cY8N*$md{<)C+1(#Jtxhq)$xBP+V?M{VT@nSLko-dnmR;Y$wwKjgqZ
zdOdoq7X~>POvbHKLmVco@YXu@>^jwZof_s~bQv{somx>tjc_p1!P^eragbW4M)4;H
zuR2(_PW`z~@!8iLyzbx)l4zY`;hX;<Z;{UHbp@6`v|hdI=;R5%H2yy2#|f8!5c0jP
z_c)RBIzKtiL7nw#yn_!&-u0@&^I7~q3nF~8cv3jisg8bI`9lXEIr`K0A3K=rV2XoJ
z!rSzE)t?=$SD!kVy<YL+?Pm_QuUFH^ZU-|Q%yjTMMWu7(*Y)bwdNs>|y(d~=gSxsW
z%EB)wz#H@{!(Td><M0(-%ysa%izk@>q3Th(9GqqT$H8|FHaXbL{Evel9L#sHz`>6W
zVr<ZX<G^qb=V%?64iZ$K_oeR!^~xl9VuQ{QE;%MC2Ub|luj976EE6`Uxf_)0z#~~4
zWE|X@DoxMHFXP3hK7Jr+2i<22k%NzA&2zA9gZk(zjjy~U3mq(Su+qUQ2a6pn;ja#s
zJDBCjQiu6HA#!K~Co8cT!Yt+Z%d)}&Ti%e6)l^t=)4}?%WUYfDX*oJqE^SaPTVySs
zCmikZ>9WDWMh8ca3a`&UmMspp@|L>bU>hmyV4s8i4t6-$>0p<G-41eZRAo0R&b01E
z)ncRC<6tjM$}}0eQBz>@Mn(Jpt-&riOj>PJ2We_9=;0kAe}B-(nvLp6NFpM~9h`9R
ztApPhoOICsiLBEOehPm*6~c1U<!8?Qm{glAhr)h;32(P0<#z{v(9W!vGY<ZA@RtK@
z(qrJ2YnJ>yP9vm-drQty<sFoCQOd;yKEheJ$m8M?)tnr0aNEHZ2Ui_jb8wvor)k!Z
zkL2^|Lga_#a)ZxqQq?!{+c<L5!OdJ*MD95Fhqm3tJudD#_?NxA$mXKuCe?3~&NCC1
zZk{!6lgjSm`|+}Ok`U%}!JkO&Tp^OfkxkPiTU_pSk=I2b7lmEi=OUkr`&|@p!C&WY
zQr~-$pN)80z#ee%<Y)4Ihpd7jLMCp!DMdSEy}4etEtMiJin=J~!pfOd+(ii&nN5mB
zASwFqmIr5P<Utn?xeymo7o}a4aq+N=N-oN}DCeTQiwZ7s&XoC6W$Pxj?3|nqsalbh
zL)tD_DUZ0Q?4pW`sxAf|ms2-%v*dDw<rCzA%}O?_>zfquEEmc}9T#<7RC7_?MNJpA
zTs-RH+0Cl&W;JHBs^Q|=6yZg}QWuzqXZEnR%Xm%rGCuS9kGZJlqCUrbNM>(V4LFkK
zSq)uu`9iCbzgZRhOm=PN%k^mN;!PKCxoF~|sf+F|dXP#ko^tVmi?%MFcJYjh7G#sF
z`A9iw#*w&q&ecqB?&9~&s!LLGd?XFNl)IZ%sV%CNi`FjMxcuV}sl7$LutkyD?D2UQ
zFK<y4l6EfIyXfemlZy^CDJNvY7Ui7RqW;@4No-M_Ltb}rv0{rN@4AM!{Iwf}u%2$J
zr;A=L2D=#IqPL4aE?#u;l8e4BM$eXhF8aG5qxWx7`DV+2kUK2r;3rO#fgDE2niBQ(
z2+0T%e-OLaqDpL4LtPAW`BpeayBJP^|3qGKF~UWSt%~@iZ>9NG)o-gB>1w+{<W(21
zxp*UN@b!={!<WeSZL&C85}z>pG<n;_J1*w9_{zn*F2=Zgqa2^O80+Fa7ZY7f3Lk&p
z#dsGVxEL4Sj@znrll&sbC%E`=t6H{IaZ(?;$bMI*uab{kOl^?0m*d%_K6XJkIfQ4o
zs!#coi<vHFx%kY*G%|6P%y2>CPY)%qz&1rvOxY%@uV^dxImx(MW{3SwDW<-ltS;1)
z`I5*st(%Rvsk!8o3)_X`;u{y=x_t8;2^U?rsqb9;z!6g8NV*xq>z!??@m`5h23-8P
zP>2)G*rx1lD(S+cx^bGDRLaG=ZF)H%F^_Ch#7|ptpCPUb&&2{43tjjw($q>9^Fon(
zZ?Oa}E^kwLw`*$5rz|~@MHP!|S47zU@T6F^vldZ|x2wgJgzYN$CHnkyS>|FnZAE~5
z0amzJ>0*tKwLagS$7&aWhm40cF4nqe?(vmytaGuRR>eaB4;x%;bn!EpP7C8=vx`G6
z4!hXmVylatE_Q_yvdzWza6F{#hjp`dxS(DPoub8Hw~IY4_PN+kV>L<kx|lp(zL>8S
z=chSxz{P~^>Y$6c+cmX`&)crZ`Xermx;WwDqzj7uu}~3?hxpf@$YYCT%XW3j#c3+S
zM>4KH56;OiVGBRGcy*$%&aW<hqvrBKs;Y}WT%4y#CsSPf<>GG_XF0GxBdkeyhSjFZ
z<++lrPL{b;&bjz!yP}cg?M3Q>iz_a!hGV!)ow_EZYWB&(N3OZJ?&5~lYbmiqv83fp
znK@V9|6110l-n-uxX9%pw}*dd{3*a5a(I}uQvRiu9hK@k6mfXS78c&WR4*lL>K;#z
zC#MH4YTKJ-z5KN_+oAG!xYt8o5BGWC*l6y0vhWApQ9e&=bbb$w7s#^{<<%W($`18_
zhk_omJSY!^JQViupofP%zS@i;9!hv9>7l5HVl45{p?=oV9coQ|c$?*i9a;fPdD@J#
z^4qhtV3+n##=|2XDtjo)fqAIlp`wTKVYSOU)LmEj>|u8OtMD8C4|~YBQ}Mw{9(ena
zB~?6B^$_tO9=`=DthTs5djBcqcPc)ZdJIv{dV)0Asj7LX?%@d!jXXT+p@xTg9_o7-
zG7{Z)s+t~Zd8qB7j)xz1s%1OX=$-1x@lw~rM?2MHobPElv|Wg={8Sovc%0;_hlU;w
z?^IQHN|8^c>Pg{Z)YwB44^Mk|#shtTrXKdz$CDvGf1F(3sh;xiz%DiSl+3G#W*(mP
z@SL84Zeih0sj^Gm+9K`9aSyFLjP~%Vht?k2c<ADxtB2=3yg<Tw=opfyt%r6VdQQ|T
zPr|nMP-&l#zl0?x%lqMq*~vr8U8-{kd(4q;9=dyY(Zfp~dhl5f{XF#d@YZ(e<<SaB
z9}m65+X1^23;TwJEFW}Q#_Uo9JlMMwSLf}ve7;K!^zgEW;be!0K^_Ks80KlW;mSlA
z;%QwNO156m&K{i>+QvPc;8YpmVWfvqo|bdU+aJ4Bp53a#Znb)@)Z49I^YFTd86IYO
zc*Db+WPyi|IV2Bndl=_oyoYx@yzAjT5ATyEyVV#EV?B_<)OX$v+^zWCA@)8xR~833
z{*-*+VFJ~G{Q5-R+pQ*gU<G%#n!Q`k<wFYL4DE8vJSmesOz|*{ly8&uiHA=;9NVov
z^Dxx|c|_K%->rC2JXn9sIGOGt`yRz|l4zEP&#5(}n1?Ss%=Yk&hi^T6>0yqCP6uT!
zY5S*^(yu%$Z;-`}{_NxQIKQUi>`@E$%Xc0fEyOsrx>{3y2)X<t`L#)E?NOcg%D<bW
z<sS9o9+mKr^k9)49v+)6riZf|B*l_-vS6=nlP;O#!S&#KNR#R7Wb7X0aa4O$!<4vt
z6uVx(M^R3wNApNMDu|CqeJt>>(Br2h@Dnw<J{Eac>0y<J#U7S;Sn7cWd6|b@7q!%V
zut)|@mE|4?S9mzGM-f>~<If5nc6(S$<L_aMhpisg)A(~FAIc_b<#-|T<09Eeni#sN
z&7}E6p)lXQCEGk~r)`-lJ3U<5qjr#bQ}m?r?^P}0GA1tczV=YL*rSJ|9`<?I@8J;n
z>tSB&tOFhn(vs}eHix%_42byn50;E<rJdDd9*%oBMawfmPEZkM$jOk@M5sF*HcGv{
zs$KZ_&mMlE+3}Iz$FClK^Kg@c_wc)iKRjII@I3tK;V<eqS>S;VB;BMlG$X(1*%kas
zR!@<0Y-GHi+IbJW<#i!MKAR$!JzSw8P+96`)t)9-J-wD)qZoW8T!4t*m?Jl6C?@LF
zjqtXIJ09-wk<-UN6k`wndVr6?d({IUXfl4bS7q~&-3Qmo96pkJReeKN?Nvwis>pA8
z0nOzjw~u>$<n@uq*WFdh2$xZ^l>@$y>-bFJBf0mf3wu?mIdZ>`0zS(5DDUF|9|e7s
z@KMr7A)o&t$j@$|n2*9fiuephq})E$aG&aTPS#JC;$ekfR_jHOi%TgV5BezWql~Zp
zNqRM0ZXWWrAJu-JD(mC&?=oqhwhx2$Df+Gzd{p#N)knm~!#*ncsO+PPuO<8uUn@J=
z`prH?Zj!T^eOmC=Zx-<p^`U%J^O5DF{SEzVbej;N!tVP;inYtSvO~7+Q#E|l^znv|
zH+|IdQQJo+ADw;F@ln@DGat|Tc+5vVAB}u8_EFzQ10Rq3c*5r!snXEblFY{GEzqz2
zd7ok=MXq)GOq%#;>f<RNPy2k4R-O!NQsA4LLKaVIuH(CBNUrwUvnBqVkLEs}_wj;{
z7VNY>TKQ<rlIhaYN3Z2_YoEGYN88mlKIoH>Vl=01eSYWz?R|8h&aTwrLC1rJx7dEw
z(buc_)#=h;zqYPje023Oh(h9{8wcZ~kB`1Sdidzc_9-pnq~dF6w_gq2udX!F`qG=6
zdS71IEB$=*_wkaCfj$PXSxa8@5p0l2`xS%Yl40D`Z;McIUiQ&@vi!JTE!(e#Q2cz1
z@-f=SFkdf)!+ntEd-p4@lCSs};bUZ2lKX~U`?#9$*Nt1{RiB#(@;YT~oV>=NeyZ&%
ztt$)P^6|Ehm=D9pJ3ij^F~i49^1{bhA0PSn*vET5-uLl=j|o1%awg+^jQ2sGkod0I
zvMeoi=8BV%i9ROz_>e8M&*JU5{i?tLtsOUa$z&f>d`$K6nU9H2Wqsn~Qy;I6mnsJo
z8=-#D5KZ$j-Pch7)#Pl*Q;Gq9nnhvu`4J4v_3?#|uSeiZA9MWhgb$_Yfa-Wa(UBu-
zzNybIS;^NvzVY#`kMBY*Q#=^(GQ|7d#}8x*_0iW%r>jp7kQ{%jcGiSvv*JDylz%dv
z+U>*i;rZ}=q^KG`93L&u2z?%#bKk7xlL|uBa9M4${7+fP*)*BxBg0-MOZy2j<bc|?
zSLTs!n}o{{t1a}g$j4G2%ScJ8;Z9jX%CyP){DATgD6)gvw4B2`pjP-;=|i?_<+|J^
zYn6}HKK?wQ$X4F6Ch>JX*8BJ}jX7y-@UfBVnMU<AHu>1><F=1GKDJOEe4Hk~C}tD`
zA4h3$K9C(gc2Zz2%D#{hyGTz48Vh8%k8B53o0Zx~^4d$|uuw`JRIIt*$ARz>;s<>k
z^7V3a*hlq)>WGi$!aC&FG1|bVwGJNlal*&Ru)E32gioFFaegGG%;v`{@QaTt)KF7?
z_3>NS)LD``Cckr<;q4zGY_L&!AJh@YU;K5ZoT1o<<!>BRv<c_fppOe-3F}-85t_kE
zA#(eftjquXdez4@AJ@b3oB!3n5h7i$X%FXCh)0@b{o~`VkK$>RNNY3xFRgl-pKuYb
zr%3B5XG<e{8adLqCk@K^>Tr02=1I;pa)l+i)5w#?rw0{(O@uIS8uz7<FO8oLs{7Mg
z^7Dr<$041`;cbC59!R5L8impbp3W*3c2qdc6rWz>SfOZGp9lxA&ljpy$uvr(Q6Y_r
zX*`(5LunN5sFk90S{s?NX_Pypk4lzFquX{ZvAiu87M2eo>rj#(4xb`kDa{X?pmO*u
zZzYW?Y28}YG^%ZuNQg()>2~;QG>xpVruwfw4^=*zMvXLvr}^Cs)J&sR8tv2QkVfq^
z>ZH*$jVIHnn?{2}+J9)0#$##JOQU{R@^}dOQ-cs`7(%82p9qmg|NYuH?2gr_CY<b3
z;cc@to=xNFaD*J*GifxMpvU=K8qL#al}79Erxt0nOruLklabqWg^}S%+JucfpT@RL
z|2MlA(r6nNPCBI8g~-(BvpS~HDUCj9^bJcohi&#`gK2aPaT2pzNX+ixZI2Kp!tQ#7
zc<&H?cwDcry!xdvG%V?##(*?lOe51Y>*cWVmqL7C2v;0ZEazwkr7<|HKO}@KAq9q|
zK~fN>AsUg!$TU8o;H5DtjnSb9eMqqhk@2B0zm~@9X>1JSjWpg&W64K4H0I-Ph4|ZP
zypzU}L+ah|_PsR5gvi(s(vx9*Cb8eA@H3WAYp;wY)R7Ou#wUbuVwxxaAx*Lv9rLG;
zLb?4o90R3ya)?Z!?znR3lBUDdG-jkRGmX!}c})x9^pFl*lsUFpAysFmQLH0A4}axT
zUxXEIhU6`DSbdeo+%yiRaVU+i)A%NhWoax=<J&a8OT$gWOXK@Aen=ykhMC5XX*_yZ
z8EM4Rh=mf~^02CWM-F`|iLhnHAnDWkpYKK;R;e^>>UA0x342(Ln5GNgnJZIH3*oO@
zrLZS{8uQ4DG}6>xGLD-2sa}Gu!`fnha#$^(fE`wgNy#)8rgf;kDC~%HId@p)I-)*q
znYEM(ctr7H;fgd?rm;DVEorPuV|5zq(pVopvL<YNZ5mC&nylREh}uB5ru7cOrZk2f
zQIn1+c1IXLq8J=)W$$V1N@F+mZn~^IqPC~8gN<*~gXAoBhJ+n3OFQa&(%6^A{xtT|
z_#9DO^(bQpsAan}zepk?V-Lw;ib@)H()cHhqiGyV<F7Q%q;Wir6Et*b{G7(gaKNY1
zI89S<NB4EU7HZ8DlA6O?Xvr^W{FcV=q=_ZJhLwr@5h8bvs6R>bJGxWigny@THjT?^
zTuI|x8s|yyadMHI-7gnH$cYp>s%w65LM~AV59w(7Y8uzlxJkiFBYIR_Pvb@!jON-L
zRWYVskE$nj>NNH3u+z(@b$7hIo95?4kSD;s0TAH*qbf&$djez&^b(Lg0O`OGk2A^{
zAXk9f4YK%`i0R3aJJ77BkdVc!b7z|54e&)nT{vlvWNniC0q$o>fY|{G1b868M}fAq
z1p^cc_&E-=2~e1g1b8$+jQ~Xh6bn!xK*a#X1C$6*CP3K$B?E96r2;${;Nm)+(jgrl
z3Q#)G1etSG5iU5Y=v9(^<pS(Js>%oWp&_^{bmpkaeoQ?api+QnfUE$I1Uh)H8Xyv&
za)2t~EyHIP@^L~5OAg-_iUe;N@s+kj1*jIFdVq(Hsag%Si%UHstQnwIfTjVS3{X2j
zod693JRX3`Qa3<-PVJat#PL{IQZIz;g(Pag@xL$4kEtgD{JuvT1!&C5KWe5N-XXn@
zDZ(Zp@rgVY;OPL(1GEV6On|`$<k<jk9@7J87PiBci?`2(g<pi_Ed#XT07h$qlRK=r
zcZNJ4;DrD$2N)EfZGd(GdIsnfpnZT20XhZf%+@Sn?xJJxe_GJ=C+QNPYk+P6x(8bC
zn2XDVUGxZ$hk|`f+b*`h<(TRnpihAQ0S0iWKMSYUH$dLws$ZZ5xWaK=^Thx!abU;Q
zu7(&GlA6@u2<hojRtK|-0B;3&JHXHY!vc&9Fp9%Iu7-yK`3hxVy`B!khY_rBT*nbq
ziqQdH3-Ee?R|8NxK0U4t*Bc~A0Pnaa6uaJWO=t&*zZ2ly03QUH5Mc9U857_=N<Ima
zlCdG=kiL0e#swH3fCwE?!vB$RVt`5Eus;kb&#u3kEPIcu7jEm8KMo~)a)2oTJ_+z?
zfSCbi1(+J(vj8(fhH|rJT7c;Rt{m6vJ4s4}qb+bkk&mBK;3v!ex_Z4M!cM;oFoy)p
zU_l071(+M);S4He@HNL4;1>#2fNukQ7hr9GbyNxpe}HtrZ`a_*0I>jOfK-60CzKH&
z5g-{L9^SS*p^9CWcWd*r64LjCc0R2Db^w<|3v>j;<<ALp0+2o}p&ww!cpb$QyeULj
zKNDbHfTaPJafAUD1XvhgQAmU_C)C`q&BPb-b5a%uSQ2uOn`I{w!py*OCjSGh3b2~m
zJx30HC@WcVLNTpz;)I$tQ^&<?0-Z=_Tyyh;S|4BowVRCxT-mWHz_tL}36}~3rOg4h
zkdKRHE9IwlR*RFWz)4l@q}oCCd?u?+E$j?H=X~&5ot@rA(fvVQS}A)2><e%-z_9@P
z0~{cO0vx85dnSw3`khn<1H5rkhh5A_9HAi^Cv|@jKFg5mcz_cDP6zlYz{vooIKh)@
z?@7hTYtBi<%p~*nY~*K7@Sq~nW0{;eseYrrQz<gIFM~e<{7Eqga5cbR0nP+CAK(HF
z-3j@d`nXTd1vnet<~*fXNMlPGyBG={gR)DsU|h56XI&2TV#j=7*;DFTfa?MNr7_R&
zGd{RU*=U{h4=EqkVcz>TP1Y%`5&37x9h$Yt8o4-A?o!caNb^%FTL#%P$dy6v402>}
zPexm+oEfnF-lr5hqQtU<@qV80r+YJ6Vq5N)59(ymb0(fIgZvqkV0i|NzVFYVPzHrF
zu(wHp3?9g!U<PNJX7Q&dw@KA6qD3+&nnCdlm_aR;!PV!pXfED7rQ^g^+x3Y8DsQO_
zztW>q0p&7yi2Y_zCWEpW%sr)(-c*yXuE_%vq<-k;oxd*SGpLZ!Y1nnARK<)=3s9km
zKaxS^42Ea$N(NOjsG32W44%&*l7VE<D1*isL^H_Bpn3+6W}q_Q{!z7z4w2es<n$?Z
zp?MZnphgBYGkBc!7icx9#nw)%h8fh(fC7Bul&X_KU9x}_3n7tuAyPkt4M>yIiiM3&
zD?a!{2AxjpblE$nRg(;wW_YF=%`<p1gQqfhCWB@fJe|=ia;22cwvGK*W}jC6X|?sV
zdN!kXlbJpuY>~mwr&X&AT4&HQqr=`Ii*!KB2bpak%>9#kA%nIV^vj?>xsyTr40>kJ
zD}xRhbj+Yz2HiQB3_54fyF=FhBkMb$rY63(AA0Y-_xA2?h7KY{kS0n8MWqQSHc$kl
z2}+f!^rjRQM2dB@n`BEin_cV$5XCOid++uC<i76j_?_>ZInR0K&Ye3mckWEGNjBkK
z0B%YpzxL9j?DN;Y$LRbYy)0wk_vQgc;GiIWc_>irfHpLUCnO|>aR>*zd+3arL9I~X
zWiN!D4C1LEo(|%fAV!K>;k`bd>vm{`f4=m{vq3x;#PjUT0d2+sZB)>^vdW61Dct5`
z;62sBJMxYR;-w%~1hF!Ru|bRr;&sju=Q@a&gLpNF*MgW3#Ka&b2Qek+?JbjnSbISG
z_<(mJ#5<d>1TmFCc-=QGh@A(tV=V%_yh-OAI-uP?piK|*olck)#Oxqu%Dh)Os7>19
zd5_l<?mMWBJ>r|g=GJ-+ztJu*FNpa;yb;8k^xHz;f*=+Kv51{t>wD~=#;Zo3e&%CH
zj6J9=IH)ZSVrdY|WGa^k^2frCgW6XIwSxz><w5WwYR8qnRY9x{VoMMo1hIyl4`M?Q
z8@c~8;2HLZv~?t3`p$O=<UOQ?5BhI5$NC_SUiR@O$U8y2%hnHRn;A2QwD*G8#JOJY
z-HPQEgX=Nx&fOCmeecsbhdi=1h;2dsz{f{HY^P%nX*(FYhkU#?LTe<vg!pj~p9Jw)
z5WyfmWxSpB9+_a>mI+_)L*8{lIw$;rPY;5d9&aETL6}@YIvVM)xOH%^3*vYX(I8?$
z><!|lAmTyTLB6#KUj>l}!U-bH=?Eejgd0Takd~4l*|^8I<B&FThmVp!4{6s9X`cu2
z1*iTcFR1?c(YsMq<goU25Z?sxeGos;=GVS&gShvw_MPxLhc%uv^dfTS4`NRcKZ@nu
zg3lh-W*yeXZ1-(F?A<8*If#8h{1L>TjB2ihA2j}w{f)wwfnNo^P3f@qyX<WH4{Lt~
z@plma1aTmUtA{n7`0eL1Iijf}TIuh72ZJ~i#Ni;01ib@#9@(9`9?^JFt82?Zr<MMr
zLDcRY7<xoI!7Y({qmB|fP6cr~h?_y&3gS!<XM?yH#HAo=tnr;=a30Yv(3ytsyu{D)
zm0n~rdpU?J+*^XU&Ym#%+Xs02fIH`hN4$vTDqs-qF?=_I;APBRN3`2P+zBGTjsiOF
z1_2$pbmZ2NL&vcr-XSli5FTFd9MN7`@5`gZKIhA;BcJZw1?Ck<&i=LyzA{HO-e{(z
zppL>iis&dL3arS(=p%plhX3X(s-u_=?Wm{LQLv<rQdHAXL-$VOOY11Fqk@hyI?C!8
zepFk~%G>tK>6m=nH}$AiQAZ^mm336nz1@KEz}dgN&%>%Zy2vq+yqfOqMI<$K)Y6fq
z!>6ORjygK(>8P(`+jri9pswzn81wXg)ln@MpJzL&HPG?pQSW?=xb!=ppS{(=r!oTU
z-p4*l4$Sf?9s7@Jyw*W^V;xO&OwsX*j;1=A>3CSjBRZPvXrZI4jt6wK)NzlF);ikg
zXr)7~^<6!x-OFBm>f<voMUH9pj%jUmwA0a1M<*Tk>1eN`gO2-YYN2;EtlcrK)_m__
zxwkq7b_RXZgTBX)X`OZNT3Htz<lNPHX@WZ4bUdh|w~jtK9@5cWM^D{5UhpmhA57|@
zW5O}*<Lkbu%YA${qnD0l$FvWRX`dg{`s)0US)iXNFIemQ<CxZ;uAA>&@gAV#Q610f
zcuvP-Y>xAyV}y=@ItJ-@LdP&2SB`0ebqvull*+5T^R%MJHEyl71vyeal){1h^_lNU
z9Z%_aMjHBTiEpHir)3t}9@ic|u8lpeJ-*WS3?K4&-S@nXQ99qXg_m@U*1fBUFL2_H
zYYg%Q$GxXzUew_n*M4Cw9pk8=<7KXz<J#%D-q|T1DWpx_8JVDCqK-+rckIq}!aK1f
znJig)W~z>9I#%mgqvKT_ujzPG$6_7Rb<EH)SI0aZGj+_;F-OPiw6oKD#9}rhP_ApW
z-tH|f{xm-Lm-o=ue45p<i2alsf^|>up8{xm!n?u5-!*UO-u)3)<c-uNI+lu&l@y-P
zmg!io!@GOiD!@}d9x+$w_-L>1=@Z@(SVhh4zSmA@YjwOu<2ttMcw5IhhNX^ob*$I1
zLB~cNJ5FdT*yy+3xe%|bx9a6BpZ9cZ(y>Ly2RhEY;oD4i<qf>Adk<6bT!^=`ndPmM
zD$9N86WUfCf1S{HduxY|4|N1}=<JD(k9F|k{HHoT(c%BrJ0H7tLgSejA9eUlidaf(
z{CO4PKy(;f>?gI!Ed!>^Z;Qs>N#LX(e1m!gqB>&i_8$K?CgR*rbo^xCX9EdNC|6Ag
z4}_4^;c_nuA$JHV9cdju>)5Abr;g8ce68afuB?;Vk6V2`PHJCp*>XcTseL6l`=qw+
zq<0?mEjxcw`$;<Ro#6L6eh@;p?9#D2!}sX;F~j!?Y56b=KH;{~_lu5SbsW)gROG*L
z`Rn+Hi~S?t?>heAp>3}3PeGEubo`y+Ts{mio?0KsSU$)#EBvsaZ>1MJ$8;R$3ewTz
zly-vMo9@ebN;{+DWG2Q=2|2CfyOY|{liFDwR5&MiUhsk-g%@>P%J9pqbxLb?O1rA#
znvUySr>C@=I&N|43Fn0%N^VO}CiV&-gge5Q?(*H`>YnNS7|#*H^ix_+!4_A2Z=cfg
zgpfCc1|ejHkT2xzpQS=59YX#P3WQKlBqc-M>L?_<uprfngius?v5cg+kP?Ety34C%
zJIZQhB+I*aWkcR?>d7~J<w7VQLIsi65UeOjo0WuA7OWCNRUy?frPYN5PiZwXl3GG)
zhfqgIUBP;S^#y73%Tt;!1b+yvLbx}C{inP~zc`735VVYr3ZY?!HxklVut|uoT=RU=
zEK}M%gqbV-EkbB1l6wRxp$>n$wGMf|r#gwSjbPgl+6lQ&kZSFPbP&8hgpNY4p7O4u
zaOHLmp-aenB87>MBX$e%HE#Gags(z)D1`1IEDT{$2t7jR8Ny2;j18ez2)#pm<r;>C
z&?khQg91zs3+XG^FNFRXd9l;lBOwf+Lr!athA=3E!67^r!s8)yKCKNstqqi-$)`0c
z3<+T<lkjDNpPlA=WwqfUj0oY`5S|O+=xOaq8a$&t9l}$R9mzF*Myqi~yZ4MX{*3kv
z-F`+}dPaLbgpbc?FNE-|6pa%3XhBwgQOKAOj-S!;p7rXE3t@Z+ubk87h46BSZ;HbV
zIzNPoAxvU?p3`ca(<X;7C4^}qyvh(gt2H~Ty+Vha)t)=6O{M->ZNpj3I;*|LfDhqR
z;lS>*-b4PBoI0!d&UyddniazA5axu??3^|?<UOVTy6_(7G)kBqeomVo!h#T%pY!Hu
z^sfz`x$Ao)#JBWdQwW<wSRBHV5Y~sVA%vwNEDK>(2&;(|wT9jNe2d6(nmwnj5L_u(
zshgjrYeINCgmt31ma8M={a=9H%l>{J-(JGB^PKj=0&EQ7U8W~A)_O<u`QMN~&uQ<4
zKqP-Zge@V2IF)()AB3<qgbzi(W=CyX$a`lI<=chq5agQ~C}dk7aZ*I`iQuQ1($7NP
zE02O9=t8K>Y&ZlX1e1%Uo4@3FEh@wkjD&FIoHyQB2=Nf?5E9(yLr62U7Qx~EAA%b~
zt@9ecC|#|Gzs&~k`>pHm_wNkh^ANs}K?Tlh{2UuU$9&&;jW0Ig*AKrA;Tw)IjK9M8
zHiYju%rHI(<NFYPU@(NSzqYn3gxw)<UZ#YxCxjnE7#9W~-P{|(Pa!l9qeU1$hp;b%
zt07zqd3S$);Xc5T3jZ~Pe&@B{xS}oJ?;I?f6Zu~>yV1up<i91$T0A8q9th!Z2uB!o
z=e2_&9HO7)lG?`e+R+erp2NHU=R!EfNDkpd2q!~06T(@B9~bfxAD>(@&TFT|=B72C
zLEaA~?mDj#&xdd!g!AXMi=uEz_A8zmvFNf$u1G(by&l4i5GsXHIgFbj+>+A5Vch1n
z&jlDpo-po)fUq}SUJuL>#%s+yo>L@+E@-)gP*UrHmN$%iVH6MvZ=+MllwY!~FK7kB
zC?tHuZcpCtf>tDqqG1#Zqj(tQ!>ABOi7-lrQ8r_<l#tSb&$F$0zB0mj0$eVm!-rDn
z^NL~bw>%Z-9G>P?38QKle$lBGM)fd0yP#!-`5JIvjWBA5QAY++Qxs~2y(fiOw{95q
z!e}7E`WgFgNxL&IXjG$)FZ}NlQ@rsP2tx})h0!pKCSf!Uqmk&$KICsK<k_}?Z>9R7
z3tBUgT#S1S-MOH(4C9_K28A&=j8<XX8^%LnbPuDosI?EHLl`wLYHh-38wMX+Vy$*z
z?*X~{!r&9~%-$cy{cm|s=5z_8V;G&n=p06lxxV`^YJ)C%`hNs{UBh^QgWcxoGj$8&
zL9stY6e#HtM*lD#4x?un%P(rZ!ssoY>=Q;<boz>ZKS7?TvkLwENEnZE`CQZngz=~p
zaS9%jiaGxLx2=I9zi?3-62{Olo(|&~kvtK`Q$mJ?F<i(9y8V*&r0^n_yywi>3WH%}
zm@nV+__I><d>Es`crJ`zo8f^=-T+63F@pMGj0t1I2fi0%9@&$ZgmjL1b;n9wk{Oq@
z@v@>{7MvhBQE*ZibmL^<bSW*o62{ap-n*ntW1NIh__FqD7|~1GPnWc_m$d0&%m{;o
zAG5A|S-bDDHY<$ToSiUU4`Xo{OTrj%S>vY?=Y}zleS6mXm)86+7KE{oI|=z^PqIij
z$s1w3DSWKRmxi${jP<O@NeO#@%3CM6LXg>&VXVsV)nTj=zE<$9jQnjO-b*!)d;hK5
z7zW>SvgxvSw0b9_^Df6Id{aiUS;+egxocjntzm2n!ww@6#`Z9Fgz<40pM-Iamkz>s
zvaELgvi4CJ@yi<1-pksjTxelL=qolChR$uatj`Q1#5I0JGXzP(LVQ=Wj#spSS2Ro1
z_-EnH&3xmoXtS?q>~oA}Y3+Cx--JeV!bpa(H;kXcd=DN{VSL5q97Z~fonf56>-${r
zWLuA$cYP#Zgz;q<<opab@f&Xb+}lO?oha|-QiA_`;jHz8kX?eQH<4|M@*hRQ?9Zal
zD!+%ZFN|LpieVgp|F?|1emjj7slfC{7zNvT{BIs#xVjB=H}DVjx#<}wX5e5Lhq&v8
zaf^H4tNz1bOnKRVO!$#7jtY76ipHYjVVnr#WEiKy7(c^*K8(|%O#L%q3|#6bIV<E`
z7+og%Yftm{na#KS;i9N5oa1M@#MqnTzZ}LDA>>!XxR&A9!?=;*o33cL!??o@s)4_N
zfxBVAKwblbXZUj%$Y~&tfn)u=-sUnq%xz%UME~~_{KH@NdNOdThg8ldRq`7cI>pP<
zT0sMa49{#~L6RZ{w$1j6iW?|lKpALgprnCP25K3oZJ@M)G6t#|sAiz7fpP{a8mJ`g
zmKUrb$WhZXo2UCL8)!Y-U&X-0IbOEQ3_nSZS^ffZ{nZWBFi=x^OP$yi?fiH@$(Z^6
zItJ<*$THwFP|rYYrq|&H2A})#tTEkK;z{nG@Aq@=`a+Zb2Mm6e#lP=$uL%}Wp^<^c
z2JSP^-ar!rO%1d#(9%FsI?&8OXo<hMfyjK%MSHGj_ZVo!CJeNZQP7R|3gMiRw>8j?
z9_ZusA-dR4;oh14$xHnm4BT&^i-E3&H>VHvK}Q3f3~ZU|4YRX>587*eCi(xF=C9sf
zd%(bhoUes`4yv0Fx`n<X?_r>)fu#nP8R%u8w}Ej6#vABkpf6|5z!L`g8R*Y>q${TT
zA2#rafyWFyZeW0TX4znTzsUb6f2Ys$ymV-}pK1dQd^iMyq%C8bf8Tg7Hin1=PIS&G
z{$U1&8+g{ha|T8jc+$W~15b;Wo-(k0us7awS2SW^zW*5mXZxXX9~8W*v6bfyj56?|
zficp7(K1IbaLTS|oJUR*YrSM(Y-SQ`UG?m=U*d0bReRaM1Oqb-%wl*Lm}Fq8foTRN
z)8~dakXIyPZ!Y$eb2gbsUX`Nh1`dh*H9F*~Mmf_AnJgNgZD0=P!oVUaecixZ1M{SG
z^i^%XSm1~lhqJC~3)lg%@P+}-*P8|w8+^aI7ZU5PYLrB-YD)|-uE>`gSYaT_;TTwH
zU=`Pkf$auX8(2eM8Q363)(WmO@Rq@M9%921FXkBoj7%Egylgb^j)Bbv-WSX78hFpZ
zCI-@cFMz2`PEA(a!uT<;)c`w|-5DzEy{Zw}!yTMl13?42fsYJ)Y~VAQ*-s37D*7A<
zH3PFeWg0(yRii&c2Eug01i!^qJk@V7dMEl#?kd+b3aQE1ju>EgSGlGU;|6R4UmN&_
z*MAH+23!Lv1G!}JGU}2Bmb~ugYDyc}Y2XV9wj=ZXpBvac-?O}EvA@YR?Mnk+NtM@^
z_}L;y*LJD@TlU1j57M9SxZy1D_Mbu1{JRY7G4LZT$b3<g8`>i){CmY?>?bFhUEOEk
z7y94C8WX>AAlEcrvnplcHv_*L_`|@T25uO*Y2Ys@-Op{GtLd8dw}F?gdB6S+aPv2C
z+Q1nGmEry9IL`UKrX4nLgi&-&>->Utlq2F~UDLW1@-y)Wc*4L*_VAi^{F;{Ix^{{#
zYOIyJuASw49nU&%;DUj3+;9eDF*UrdT{Lis4!o{iH*lGI#dU4gb-sKOL$7NSuWMHg
zTr;p%cu<hS!`HQ225xhQH<8!G9d7;xa+`dGk+!Y01``c$XgN*Xx~}CAEOW#AA)L!Z
z=Np<mALDOmftgx96ZuUPF;UdSiWjmL-|+lXz(he4TW@IY4Xuy~VqwAGZ+JgE`4hF6
z3AIWqZlZ*Vk|y};_}UGP$n@gRfzl?*m?&$aoQV-8o-|S3L<JMAO|&sl(L^N^4NPR2
zsBEH&iMl4{-|<y7QO!gx6SYlLH&MC`YM7`gMeW*nS?VzTm)9}D>|=L)^-R>4D&&-O
zY6G9i(+D&%(bPo1ghp?eXk?;!8z|AtHkfU#ai$g8r@R@}Otds{kBJsil-+K2TiF#`
znYdS4&lc{#<7>;TiM}TKnYhnHdlTJEJZPeWiTh1-G11jTN3qt4Qy_$<Se?e%ZE_}(
z2TYW@sgV#LGSOXH>20EiROxA=SEm2jJ;}B}-bXZPt-pzfO+0R5phzAu@u-Q%ObqzX
zSh5|(TC6_E#9$LcO*|nAlnjxI**e){A7)~BMwl&s%EU+$(@o4U@ib$=<f}?C!NjvB
zo-^^1iLoZ0H!;e@i(;0wMw@tnlm4Gkv#l{=Hhb*ZZ4t+r7|%Y-Y%)7hEKD{r#l)n{
zD1vS9itwo>rU{|7S53So23d>Mvj<2%)5I(jZ<u(~#B39DOw5xiuV*S!bFOd_>d!Z^
zz{En4EXo+9{p>C+7Ws0Sh$SYL3Sq5f8A2l~OsvdgSN&%!YfZdm;&T&UaK&}?zilEd
zWS!u8lkZl=MicLt2$=|*c-Q2uWb82Up@~f<W_I<zZ(@s(%~FLDk`K6GO>8s0H<M7Z
zUU0jpG5hvPd?fs16Q2mlR-p2yCO$I}%n0=isdrOjMZ<(?!ZwjGVM!5%F%uCJQ4=)F
zY<7!r6SP_Sag8rRaYWP2=qEFpsf>gbcbdr41*bZD?@{^E#8)zwuSNJvXU{X^1vxbC
zNZ*?HP6+w;CVt59T|#yX?h*Xa#9kpk3H~g&Pmpzg5%Med|BU2!A%6(Y9f`k9>^Jf8
z9(=L~|Cl&nV%1kz{S^+HIK-K9u+za|6Gu3?ajc5tsEK1H>RG67;kbzt+`BCAirh&P
zr%V*LP{P7#6K721wvfldSrg|>+~kIA;=G9qCN7(}!u{c<c9FZ~O>O#3?UH0EVfHG$
zD&z)tfG4zTCa%--H#KsWGW~K>yL?l-ZQ`y8Sh&Lt`Ie?`c||!abh)MFv^=vU#9YEj
zM%>c!TF7UisD)w{@>^c5!ctm5u%KX}j6RzvB7FKSZT&4RddutQFSj&yrlf^Z7Ajkq
zb6YEIp^Sx!7AlGI<y%@=3*{`7&)BKJhHiUx*#~u7d+4@D*qLW;d+%PZBCe|{SWR&K
zZLNlonu4_iS-rM}Iu@e0wYq{Nw9~*smWAFC^ohV{!Ea%ag*Pk&ENB)+TVA9o3k@yr
zH9Ng5G_ugx!hIInTWDgTsfBwiw35<h7OxGW@ExtWg<o!KEkwv#7jA1c?|276rh6^4
zw$R2x3z4+7(Cv;k?T*$?lt+kg^&PE)h5IdZweWz2j#AXgLT4e{?`YqMS{Dlkgj~C$
zb+hoGl=ignkcBOav>p~Z-PO7?mhNg<cmHjD@Lg@J@ZJ{sSm<k^ADwLBNelfgJZxc*
zg~1jc5mS%SZx#kv*gssGC$%28Fp$x5SEFR(T`hc9+jUnvc2_F{HN?VD3r|>3P%Is0
zVYr2fP)ngYLvi3kps4(mg^?C&<xtO9;9KRMwr~NeP!6>d>My8gEj%Zs&s!KJq;(EO
zWv0G4)C(4F9M5{u!WauLSr}{ac|T0IFwVkw3zIEOvGB5m32fKGB$~>hcye;8PJm}t
z5B2rFt@cGD@2c`E7N%O5X5m!}rwRmUlQ+D0MVi;l&-C^#_#9s0pJ8F9g}D~yS(s&E
zHUrhd>*P7qtK0lf^wq+R{BM`hIyTns@2cI~Qk!pKfrW(@Xq?&ITfJj3jng1I@FoN4
z*9PBM_}0Q=3riSO7M59vTd-;TiniRsCJUP_tYCok(N+qs5?n1v;Tj=p1>dspwuN;T
z)?3(M;av;wiF_lcps)6ha1tg~Wcr`{ea41`80WOM_JM`1mUrnXBDl?h#jw1XwVhLA
z;X@Gy1*!9qg^x4*6APba_-B@P{f7#AMiR0R7H(uDCPzKQdks{>4!#C;y%&B)InweT
zVK-VX^sX``IF=mha|;glpYcAXqy;y_Qx?*~cV;B~hU^!N-r2q{E$rzO_{zf9k|n1w
zokM+R;d=}JaE(~_!NM*JKUw(M!r>fhw}l@q>}5p@S97T1ITeN3gh+m)nzoNiz`~zg
z$QFL(E?wNWxtQ-aI`%=|?-pw0R80K*=)Ni5*#ENdH%EQfyPmc`GwOEm9kg(W%P@k@
z5qx<(>#&8(7OrsfEa5+5;i!dUv~1yog>x3pTR3TXYNsunVPpz7#sw(J<|Jn=?;T$x
z7c5+~a7lFjTbj+UTDWGRY6R6HxXx8$p-=>cBe-ed7P}Wgo(OJBT||&0;<a^0vUdf!
zTC?rsly2t|q>%0A6`nuB_mg|I@?{jV^{G%Wf@~v2A}AU`nFz{8P%MJt5tNLel+>bH
z38|Q^`M<iQGj+>FP(Ff+5md_PSI9KPy8qL!EW#=gZ)c`ksz*>Gg2oXviJ)c#wIayk
zmL5Uv2<k*oFM|4Ft!@N#BkeG;1OKzuAcE|X`XdNLpdx6PX<hsOT5t59{x^-FSp;n&
zXd6NE2wFtYDuR16bz6!i+qx&>&0V%{TmQd(XeT=DBj_Nt?#ncHzmSfC|LZ6F+$Dk;
zwY9EnE2mmmTdThi4@A%{g70(t9*m%S#Ji^IZF&*!b1f^M@%6|^dPdMoIOSC68$rJa
zUW#CB1pOm;IO3f(jgH`v2nIwjFoHo5JQ~4c5xgo5HErQtTmIm9*5eWM%&A6l2}Cd?
zf~O)F8NvFTDw$L9y8uHY*q2j15y7wshDUHNry3!WCpim!w7j_#C6#iirz89%hxTm5
zyKnvs$1)(R{c-Py?Q;=4AHj(I{>Hf!(<shqF7;q8^+E*viTYv$W2B$tPv%nGx5q^=
zK7vj$bdKTW2qr}EdK7b`m>9t%&S@06qnI4QlnCMx*b%%E;mhi=CW5sQOp|tJMKD{)
ztAeiyP8XaJ!Av3SSe0d%L*o%Fj$nxh=SDDJ$h`mPEQnxX1dIM7Vcj<(cvB>|3I>>E
zS{lI$kt`EjF33sAE?p_vRf4Ozj+S};c`JgqBM3)eM6iwyk9eQa`B-!|M6fx6_aoRS
z*>?or6?{){6DQ($*2A^_y?U^P&J_6vf;7H0g38j$c9HB5{4i7c5yK->_Y)C*D)?Ch
zK_R+eNHAN|6dn<@1lh{Z(nK_Zm`J!B{#uSi1Wp7eA~+dAG6I(&5y6iUq#{U1@QrBh
z6#Ob<=ko}@5dLLGlI^0eB|B~f-@T9TxFRy86Kmmz4BsVWHzOgJVwd(t@KXeTN3cJF
zpBbo9`n%vSg4vdT<@yyDF%0NQR{TRs|BT=-A-~GdDE}vdgCaQ~_}+5Q=Z7LV9KjKh
z922DQs1Q~>o{^juBd0i75u6v{=?KnbO3yN+Md3mO7bCbM@=Jo(1uqL;k-5Gq{F)%!
zT9!-Q$ncv&Zt*CP3Cr!`in}656gi^*#!1d7I9^uI6Gh%AIz`brihNPzkD_`MHAJmI
z6eXf4DZF45g`y}NMUjk!;!zaM@M0Njg;sbrONqR)VCg8z2q_yyg^YeVA>}i*SfyeV
zl|+~wtCUoUqH0FJnh?%)%_wR`(IkqdQE#$pN6{dPEGexMMcs^kJ+WM0ve~oji$Y1(
zFBlNi1ZkGdF*THIqbM2+p@f}j7De+Y+D6eXTPWB{u%+NVg4xczS9oi|HiA5>q@DYO
zcZ{OF5K1}-xu4F-L>Hr_OB7wB7#zhADSaS{9#Qm+qFWRXisT`BNj%&=V<)@aUXpz@
zir!K5iK1_&^kE_WqUbNAj?`uAk3_MfvNk}3zbNgoD5lrK<B}a1{dc<<B-w2HL!)>m
zif5yEg1c@X?*`~FDIG32B8n%4JSE7|kx@LI;oVzk&qeWk6w{)3HHuMDjE-WGl)ezf
zi&2b?Vw_~hWSV{{Q#ac=<D+;viU}g5q|b6pjCxm4dC<x3-sC8zMDdC!bP|6~%~;^L
z*q_%VJCnoA$Y+QLSTrjmnJr{aCMM@aF+YmmqWC?E1yL-FA`(S3ibYYp5yf^^7yUP*
zSP{ia;fteKB4nu`jV}|jJTtCUQLK()eH0s_Sd-CNE2PSDyd~sq!F8EZ4sc`CJG{OZ
z#il6U5&66SDP=30CCe?B{QW4lNcIE4t%BPGQ?eC&DEyNsK8@ld;jHyBcL4F*XHf*B
zFfwvIitLR&l#zsmWV_uIZe=8~DB{9@=Ilg~h~oPweu%<}A{j+mid;dqm_4(pZ2e`}
z8O7&Od=bT$QG6r9|E-I!B>S}>4?y1vp@r`<Gqo#<-6Gs8nBCz$!haN`sh@;!j6BcT
zC!7|3iQ?A`|1+2RBZ@z{-NjHUhQFftJBkZYT#RCW6#qnVS~L$taZt!H!9!6T$yhj?
znPpl&D#Glo?06I>BzsculwkJg&IqUeSs~{H&&$q64_}JnGI#74a>j5aimOrF6@_b2
zoLr6@nY!17bgB`!Ddd*mZNWQ&w0}95Ld;tTY&W?AxnjsI*&;FI5t3Js3dM4(d>NiU
zh62L5)(XbF6<0{Gupr;uOZ}pvP%MVxLP})na#JlGLzx&F#n3p0vN4p4K}l)(7%Ie2
zH->sKRE(ig3^hbvS+J^L6+zn1_F=Ucs%IqLQ9yXDjHGr9b%fvBN8>@EehdvH>lb7^
zWX0f%q3DT!&%v^{(14U`EGql&Hqww?lFhA23{7Kb9YdQKnu%Hq!RFa~Ko%Qn8N)p>
zwECYU_V4kO9j24pX5{w^X(xD}V0*z1F=QWiI!ZQsq+Md@8pF&OW{L2D82ZQXaEza=
z`S%F*ppb`R=q{v(V9!ixuNZn~cpo8sW9TO&_q>0{{)lA9#4sR+M`L&_hR0+4*bRoo
zFffKeF$~FA7%YT)4*SM)xuF^PV%aE$OZHj85ivZ;h>{mUKNZ8s41Ze4Gcl}_M^k9$
zInjSU<{i67362(gA%+))^jY!mIoM00IaY974CDC|fW6J*pCC9@aH8NO!O1a95kj3;
zV)(O<cL{NtNM03uO>ny43_&VTZFUTEV$kAHal9VG+!zkVa43d(G0czQqZmGp@gJsG
z7{kUG-icvR3~$7+G=^m{ycxsd7?wyU>7q8`s|m~hJ(pV^!-|-9Fnv3Qm7=pokbYPt
zWHlE^=IFmxByS1Q!|O7d>xFC(%w7xc#;{qk?+I=a%sxkbKZY%m{UC-Nv46X<RV3SD
z*e;}GP49Qghr+YZIX{Wv(-^*v;hPvfiy;_8G=^9Vy6CV`D~6Epa14eJGX|bEa6_Oe
zp4mn+n#{(zImD2PAss_P<P<s?g=9wJ#{NCB?952MkO26ci#NA-_Wq^Fzsi(yKm1ns
zk1_0x;ky{Vm+TKQZ!@I+F3IlB=<kW4gV_0r4aKlu<onodA%Dj3tB`fe@p}xv3IE@D
z;2;0V{w4hH%xYyr|A^#(%q+8qV>lAyH<D0<*Z*TU7Q@{b5XW&*I~T)wAt%_+7*54-
zTC%K2$DYaXvqJcc{RJV{Vz?f|Md6oXxXk@Oqj{C9NyeLf2&SDIQgl-=duO{P{I=j7
zS%cX#l_QS4apa48?#dZQE+PEYpF55`!m};2G=CfgMN%M+>{EIkIt%?rr)V6-BwI_c
zcpPQoC@Z`~+*`sWg_nw>w2<uHmW!jjWUIzeL5SyvI4TOSl#y^Es$_Wfh^oa=T_iO!
z@|tlxCi7c6jyiGF&B%Rm)DvD`uz_G!91UX_EBbzs1O(aofMsYHN253%j^hy#HjblR
z9QVc1B#x$WG|SeEqh%b;Gqre3xkvcD8A&T4>ts2%7TzX~wnA#H_8i_`_yciti=#sv
z_e-{;U?;)8a;Dl@co)I0ab&M+R)0_=z2kT&j_$&H2xjlkJ%#s*duxi$?;}~(>KjKt
z;r#`(XJJ4bkH#@Ej!E=k9FI%UQ-TBIctXe^!NG#GGepQx!R&Y#CVaTy2*D@gSRfuA
z8OPIcJQK&Wag2%MB`JL_j?qG%7o^Qmad6KhVR|8s7e$`E2FGS}Cd4r=!^g+*vhdB)
z3ImeLljE2Y$D%mih~t$wrg9I@=uZ<eL-19>*W#F-DW#)kX85c)W@q>uA*V-po8;U$
z=EX5T?)~IhAoA>!<c0BnkM-1fGmhm_v{-P7;L<n-M6pcx|Hin2wPd`j<5&~N7dF1M
zu{Msk7~3{#*mygRb=*VZIL3L&<6j@g$8mfT$A&mI#_>)Z@5T|yt+vMTo{;wiDcKaq
z<_zDRTWt~kK}NzanQn_?dmKAN@=+X>^QaHwIFnnkZk{}fS&~oV_$-c}7(#Ib<Iv;y
zoSlp#6h}A?CyrzsMjU1w(KuppShU79l1K3qsKnkvp3kG=aoFr?9u>=@5^?XVsdJ@>
zgql=y<4DJ`Gmey0|2dDM!r45EMq2VCjE44Q90l^K@8bAAj<4eQIu4e86ZeWph~G-Z
zT6xtEaqNm?PaHpT&E{2)=JiT<izfRyHm{nKSM8NPZ_KOgylP(@zr=AMj)PoTar{Qj
zIR50)mUj2$RliH!^Lf=@-1qXSzvI|1LttCX(m2yU+;H-FS=Krv`bPv0vk#)fQPb4%
zI8MZIEspCn#ajS$I0q8PDXzYJ>U7+@4?8BG^6q%v)Xv3mDUQo=oR53AL@x-ETogiu
zE24i@aK6;qB6uT?n{=0rf;Mi&y*tP`Y~-|YJB~Y|?Br8-g}?@@@NVg!`BW|&m!*1M
z8@X-dvAr&_v}Asz@+;nl&1a)iewE+$I!SpU8-;C@wo%4L5gRm8+(ro-MMa^Q;E?>@
zSXj5D4Pq$~R+L-4%(6;Z8x?I-5_vhn@-`~in4DiRt;p}SUfD(!8(W2QuvLY-`BgRP
z{NMRiO&hgryv9D*sBNQ;jovo;*r;oxo{f8Lw6;;-Mgtp-Y&5o!W#ffje!q=?jcfUp
zkE1A{NHiPOd-=&53Q;1bgvt#Is3uaYxs4V!Qa$`l1)GTlDzuc+dx!-Tvpoe{iEu#y
z)y76!8=Y-*vC+=PeKy+L=pdzRj@DS^ejCTT`#W-U1r*8Jp8ih4(_*TtjR$OWx6wm-
zMI+s8JSY|ph{8j{hdt<Lk=FrEcLCK)IJ1=ss=hY**?7vvNE`iaJZxiZH~&x@kJuPs
z<8d1UMe?YP$EaCQv9!713kB668*dg=LquV)aAv9SVL|m(LG^@<VKxpGRJRJM;i5A_
z@JUW?A;m<^r)@k#p^b4;^ej7O<3$_KN%nagqii%6O)8HTYb3ozGDdV>5*#H4$J=<>
z#uS^M0t7ou%?UOp+L$DKLm@TU#$2fz6`acE3aV)~E)-I~iljhc^{Ob7%&;-j#(Oq4
z*_dTxwv81wzXOOlHeR=}*v5BV{c~;16S7EfzKsQRRAE)8uxeLWkt~!fHOCiLZ_q`e
zwxqBM7FJ7aEVZ#rB;OTQ%WY6dO(s@fWn;CCbvD-9I96D#;r`FiEu!)jQM-Ei-(tWN
zQEv<KA5ue#s0}tY+90RSJ2t2@p@@1{s!&M2vWVJj<9!>Su_3Mz8z0!%VdF!owbe$l
zh@vLbHj!+nj!5Xnk8FG@Zu!{8CpLaBqUc^Ci|9IHsFz>25wQ_vko5A01j9BAA*SG!
zBFf4x?d2~~RK;w>ZP+&aMOEjbDq+Ln+Ohf3LnLiHAwrjPS5#$lu9ux$EF%A0$SUF6
zimI<{d~M^O1P&zdjg4<@<VqlS0^iyA-o_CdM{WE-pV;`r#-BEJ+t_2{SB6$G^<`1@
zqm8{bexhbkb*HE&`Pl}^J|1?9s>;Pw=NZ~BY;lH0VV`2^H;!HEK3z=F!e2K2W=MDU
z{=P@t&z{&gAd(ry6eS039Hw)GAL5(}p?r5Sb&RXq##L??Hcr?$Y2%!Y^EOU#QJ2-u
z*f?wBv~Xri&POu}iz%kO#nlBH7i}~vt}e04WsL@jwTr9ElD#4w$QE9=af2gbEEQMX
znaXN6Z9FgJ7B_^9=A7axTwL9?frO_?YdI3gDg685o)hvUkT-!o3G_`MUjq3PD3?I_
z1PUZjFo7}&lr5nOB~UnlqQVaqSA4dIeJGOf{BygwYEeQJOQ5)9OC(S-0d|<eQVBd<
zLNS$2fL<jTQ$m$ZU@5VLszCh&?k%ZWBv2`V%B+<@odl{RP&I)XQe|5SRV{()39uE;
z5wk?{n(S~fRV#tCNQiY4sFy&a1R5t$KjFEKX@3dTKzhY~W+mVg?$1a931}IvgftYS
zPgu8!7^zxP-7TS-CQz%K)=aRu$eC@Kz&#1HN?>3~b#DT#g-j`_+9c3cbb2JvE`j?J
z=#)Tbk+e^sLjvEHRI5s=4@;{1MaZ@~3VD67)<wtz33L<EHGzXAy(wdQFoB0M`gcUw
zot`P>mG%^QuS{w01e%JxUjqFTcs7COI1vdvlE9Dzh9)o|;eDO_(F7h#pkpb;@0c_D
zcmjhGm{dv)q?!nc%nlae%2Miy1coIrB7rA4U;X_2xcP9={IHbzwv>8Ggij}UgI*iS
zZi@xtty1cl1S*vFT6sQ!Q3-xG(+iu?3A~WNssvUi@L~dE5}295tOQ<4U~B@fBrsLf
z#w9R5ftRyqr?hIzO^@#F;h&tqL?M&tE0NRY6p;*-EEmEw>C*HBUQOUN88U@TQ%ZYd
zoRPo^>DBB6<|OcD0*e#;UIykSysybGN?=~XTTP#oR`bOU`GN!%Ch%oxPsnt*w4&x4
zqR&w;Nq`G#x!}?SxJ;OqNtR@V5Gt%p;7(~pvL=DG34EGB&ob(*1l~^Ig9NrRRAy-F
z5_l(pcezL<OUZ@=HfDH*GTyR%FM-V>*~I?e)+piXW_mw?Eg4P9w<WMWfgK5aC<}_K
zk}Hubh>NjV8IOD<i|b?hM@aTU`z(QA0wc>PU5v+shZ20FI1J$?cLqy~2)6_oEm0w?
zMYqJIB0FFUNn~e>t7HOh0x7QC1okHIlLYO~1ooFvKP2$EWWS)3g?z=GpX-HzQAT}D
zUk&jV!go?+m-%;He4oI3!f9cb*x8-H9toHq1u182F#Vjs9|`=Kz`g{2N#NH6u9Q)~
z3;rg^EO${Nvm}3UJ1VRG7GAWh+AoCLHH!{%eiL}WK{r1CnZOY?<e-v+qX`^K;6?&B
z8H#1q@dVB$a4vxp37izksRYglIW0(?N6V^lW!1v6>O2QhR$WTqasrXE>Oum$%c_gQ
zNvL@xf$Q9y%c-jgTq>(_ms8g=gr$wksau>u?%NIuI=GX-UGDP^ayjT)P7N)m;9zPw
z#gxOrav`}L<Z+N+<asl~d=5U7Qfhu%P8}6q$U$KTrA4!dgQ5<KJ1D{G<yA2UHOl|1
z#w=@<bTFyBVxw)#t5Ob<ef<N=t1=GCO7(IM$_t?al`9BeDHSU_sN$fRgXRvZI;iHL
zfrBgu)!BrDdJeuSuWCA|MYRg5u7lbR-s$H*R$kR%pUW$j=Bc2VC23kgb+4f6i~Pw7
z%ICoEfWk%&0uETDIZzH>t>8Up(ol*%lqxGLcy${)Xd-G&9UQ2jC}cxlS5Pe++^nGP
zb<o;DO9y2ts(WasqH5*ffr^TR*hX~PJLn*!t%G(#Sn)nlBe~x}M+e(0s;(mG<e;;I
zSETyzimHo)Wx{EnX=g?Cpo51Tyy4(Y_R2vI2csRl;Gn02UJeF2804V0gFX%(cJPRU
zz7G0vq?J_3N{a7c_^YD2Tv7FRz%1XZFo1DeNj)k!vXUZadd$J&B6&r!gB=WU@RWm*
z4p?QVgW(QFIC#RrFm_e!(DKqsitm5eR!KeSfJjZJl6u;~GY+0}@VtX(9sE{FQH@0;
zRAzOaQ=O}%MmZoBtgK#iFotvC;57#?IT*|MaWL7zI0xe$OmHyK!OPMO8fjZu)voLf
zio*VtJ+mCt6ndkwdWEq>FI83}`DTX7%C4+_tE{Fu;P6SNJDA~Mo`d-gW;(c9S<QAZ
z$H6QaH4Rp%qBySCIrUZ4Tp1%RQ{KIb8pHQLFbL0R3k642QFE%OMXX-M>%d|MOB{q8
zgdHs9+&OsH!Fya#4punW;9y-9wNh}6gS8G;Ian=O#-33{?XIHUlI+_=2Pdj1>NAn#
zt*X{@AyoCqM$vgkuys{WVUvT+4nB79iG%kYY~d6zs2qGi&s0@g1xcQ(suopM?^RVh
z99UJ=hYmh+KnaUTy!h|tC;ya-h0CoAbO%3FRYC4%RaMSviv0Bl{H?oyXgDw(q^Ma<
zSq>r&90${@si=br)l~0lD()aAoY_Xz)HBtT?SLd9$ZS&dT}DVX#fodHsc)(&#>3|h
zzF;JOfk9v3ORjWIRthsy_}alY4*pJJe-ht1_>Q|!5@nM3o}FY59UOD8%fW8WGSwXH
ztEToi-gBqFI{4ASUXlDnbda~Y`q{zRYHHt5jcUJ$q-u3VIsfYWn}gpS{6Qi7e+q7D
z%V(awzXR{-=RM=P-@!lJ4ICVl06xrltf)1uu84=Y`l>5(4&;cGa_2nGsdR9IYu~|1
z2d5nGak$G4PCGcm$UmNSj<wooUGfCZI{#h;9Wcgw4DY;y3yya;?V^KATn^RMvS~hk
zv~-@|dnEM=UH7$i)xk9f{DeyWExzlF>gtLwLT}K{f6GCkBx-i>-{v8}!Ch{l?fiL?
z9zu{LM-n-O=Mu~<SgXCCMR_wi`Gn+8qCiGcP{^k0ipC2kQAAoPDp*XA^5Q~D2$oEu
zln|O_QQ0KQB{3w)ui&A45*3nYmPGR;Dkf1W34aoSB*N8I<s@n)Q9Fq$NmNZ@S9Mh_
ziRwwzNa9#^g&L|{4Mnw@NpFftvat^PCe`aEQ7;Lq)t9=RYA8+gshO38Pjtu!Q=Y_x
z8mf^XiAthjhQComH5T3^iFa$Lrb(DJ)VDPh)mkLcGKv04Je<TmNwi9$YZ4D6ac>fb
zYN)nJv`gY<4b_?<T2r+V9;m7Auc_`!qGJ-Bl4zeqha?`SP^z$qd~8kCS+bjJsxC<|
zyRfFBg}4-TOQJ^-J(GAaiHDNdTT^vUqEIbGWwv#^rs|bMZ>iNciMq8^pClfwrAF8C
zEZkR1^^>C6wG@jUp%cn#kFf(u3=sLF(n;#GCj&X&J^n#SY^<e7syvOs!ubYBN}fn!
zSQ1|)@pTfzlNgc2D@jb{L?rQ45>F@bOcEoLFlwnIwbboeisbuR>e(co;|$hTQ<B~j
zxz8u@5_QG}MhT7<d_nL<!7+k-s+KxTV<kH-iSa^S7Mvi+(uqPQ2~JL;Y;8p$-`LZ<
zwzm?eCDE&o_b10!lXxwO=}F8;BAN7--b}$INi0obmhjn0%t_*P;R^(*Hdn|z!TEyu
zpTI&Pi;{Rl$eV(TlVFjzsCn~c1(qeTJc%7rv?7U>NxUa~RT8U(Y!F-{__pBMB;FE|
zZD*ZuT3eqHZWQuPM*eQ5#Z5_U7UBCzY!$L4qw|3f_Gep0vOOdDFo}<n_&AAAL=sQp
z(<DBlCmHP`2__K|q6=n^E1cokowSmOiX<YKEsSM!vTx<vNhC57C(~zFBq_nP;LeQB
z=R&>^{4$AbBj0fIPvS=gKUa5m|91?<+G-b%0+Rhfuv=~Q%|m|5cT4FW#%FCs<)7&P
z+UoZtSo(7k`#9v<>X#&bO@cb))cLx$`b~_G9ICDUNaD{V{$i-tR;)`qtou(A2a?$C
zVuy=^T&-ODE*@}kIEf=kly*_Z#ZhikTu@2eO5%7DCz807#N{MTGWe5NQAb_iK5)W+
zI*Bt$oaJ(^8@N+jonz?MQT$WMc_A(9sNQwd*gEPW&7Su+Kk7H?s9kl`l_ainSFEe9
z(sCU|;Wf@z9hI}Lx{*ZvYJvOes{VD=?Ii9bk=I2&7k4=*7r9;JagoEtvvpNY!8vQR
znbiWhT)bLWEw8JHw8Mrd++J7ZcTvDaQ5VHr6m(I@MPV03T)1`BA9dB`x~f<`k1(56
zPj#rL2G&!>T`Z}mO1dcF;$*GB#CnQY%Eh4*{txOYVp$jETr_pj%td(@6<lPw@VThy
zqLPamE^4}{?4pW`>MlQFud2F8)bmDN&Bd?v)cy;8a+1RJ)!t+NS}tn4sORGOk%2m_
zTVK@`&TOmtiixDYiv}WGec0bmBz_kG7mZz*bpoU6E6s&+(a^=4_0^90s*#ISeO0i5
zs^38USzleMubQ~%&_FR&s2XVQqJ@jLF50<h>Ee+Fs+Eg-UEJehQUkTPf!fkQwRT}Q
zP;Fc=k^I^~Wl!Jv2I@W+_q*swXJ)DPE^1||4y>D{n5E}Cx#;Yoi;JFF-YksFQq!~4
znk=>Bguk1M2VK18V!DfmTy%Hww2Nn4^q{hf0WKbO5zJD(T=a3#*F|s1ex0QbW~qKI
zZe*#4UCi*Q%0AVf{r9P%KJ|!;RX$}@4D9f!$6P$_Vwj8JE(W?7<f58i4Rw+9slhIO
z^Qj@i4^|9Z@~HxT^#q6SSJdg_S0m_Nzj}&ISJ$2tB$??~BQu<(&$@Wd#W)w^sqA8u
zi<^EmmW!yq8tq~Xr@L0*1s5;6SnF4f&--=1`q}RV<V##lt2L4m0p$;<mt9n?u1#_=
z+2t9LHi7;OsEO=wKyink!l)h^c*Vt3Ark^Be8fME;q79faN?$bBF=Cz)5QuGD_zWT
zG26vF7xP`j0&0$n*SS(O^;1Bd45*5ln#+jQ6rHeuc3doV!9&{vnp(t|aj}?A)6^R-
zUeVNBnlc2JxcE`{X-%m*fn_f8Dz%(mRf=Sli`6dHyV&4j4TtRFZ5N#G)=Is_j#Uec
zRvz!K)H+$V^OP4J8(qBPVvCCpT)gYzJr|o@98ikwZc&QOZIYgRuGIUSaiy48%Jo>b
zq1wu|RyDx1jlthgb!ezQbny{acM8Q)_}IlK+`%|57oWQL%*A&uzGn!z&|Rcm>~s-w
z5vG4!#9bJi{i*@eg+*7_4Ge6kA{@fdz=Vb>>SDqZfz3k#iyNvf4VBIH>%w91uuG)_
zc0=`ZLv^~La=9-xQV%s!DK7R#s(B+dtdS~y&i}cKFI;@XscEEwWdmQj_=-(5QcTQ#
zEu4heZ(T5v>}aHZaIuT~0|V8?ZWnu8{7hFjR?|-Ve{`{zzPjiq|Gbg<vyuAA1$mCf
zYM+Z=xcVBazKzwW#)`51yNf?u{6nvDjCItXF8+40-^E`HiN<O}V?{I?d;R>rv06DS
za8QCUUlVmmBJgx$)wxiBp?K8AF&DR8+;MT-#R+a@F0OD(baBeXoF?iV_qrzPG#76Z
zb=Jih7wgIenm18>&-h0*Q52qcae>p_M7>@vaM8sj?j$t=?Bu;=1MA8LidGI>r9V03
zCh8hXD+PL<_Fre8n<(;|E^fIv*F=r1A1K&Vk=%8G6bhwqyQ#{NLe3QOrjRd%>P=Oy
z6u8yoNg;O%oQ`Hqy;a8j>cOUJL{pVNg|C{bf+-Y8VQN#gvZ?y0sd}rAcDSi3oWg^{
z0!&4ObUo)Uo<fNfI;3!a3MEr0l|tPV>ZMRRg)%8rV{<8#O`%*0l~SmjLiuK@d<qp)
zFlq+KE2Pk{nd;iiTgW6;QW)AyRZW3G#ZpRg)eo?=hE$x`Ow|@rQ?QmGOY5Ytm=>BT
zV*L~v&}IsaQpifdm%^yp0WAfmnVMfy<MjDc_;XkwkV5;K8YfhxaG;r@gqu&}6q=;a
zDusJfXqrMZdMSk#DQ{=a(Ogv<7AP;+GKG6m-ceXJS1e*8Z=FJ$6xyY5UkYudltLDD
zZLS74SM5`Hxw)rC3yXwwOrcZCdjZIh6gsESC51jI^i82_3J;{vE9LEY-RR^Lx~I^C
z(<C-GHCJqfMrev%>X`zq(Kwepv%OipN+8}`{n%XfOQC-Xk8uiy1s+b}krW=4z73G-
z>=^q)YqY~t2pV}jg@Gvy68*un)BIlrj**%}Q+OhUW6jmD6rQI`Qy4DU5rR(&J|#F(
zkeW{mc_xKtGm__0$kjrzXmkoMq%d8E{~`mUg|~mcn!=bAUJ~Kh6ebCwf5xRSUiixy
z$%GUp3UAuN3!BNpr({ZBVbEsyv=n$)p$_f8#*ow0ix<2s1AbNtvpL?K7`zj6Qh1%K
zV<+<M#M~6-rLZ%N&(oNn!UBd<8d+&9q^nc>uOEI-;f)mDOd*s)n1PqVk`z{@usVgM
zDJ)B&w%@lhh2<>0o5g?Rt)Ri1-v9ER9O>s<G@pCKdne4A6xOEje#-k#-&-lXox;Wx
z-jVFO6xIvb`mm?DK{yHj!~1TAZ%*Mo;hQp&o-I`8D&G6nws7ns+$#8~;I<UDr?7*)
zD(LAjeVD>WQuMJPC7+~F=T#{cNl;Md=&pGBdJ&(If|<fMDSVrPl|m$i&r|p!g=h+~
z6h^jCP6~0UmB`q%v$M^86>ob+k}0?%N%?#!A!)&>E!0jS%UY=Ca(jLFQnDmp@hT8|
z-a?W8mEZSW3g4&jQwl$e!ViLbQ`nWl?iBV&_6t#_{*Nh)&GM|}EbZYwZg(fLR@CtQ
z!q}_q3$ON*|C$1E&fTm(xGkhmB#okJ{FTDrV(L~3`&0ObOD~0!Ddf4Bbs&X<DIB7(
zg?eYbpOV8OKbpc3AzN;EBRwXZrN@OV?&&*~!s!&QG06SCTP;-Smg-CjXHz)GZK|cZ
zz%BG<)_K8Nm3`zFg<lf9EJ)!MAy-pqS;W(!sp~1+;JR+9ZnEgECt>*APT@`pcT+$b
zxzfm;MvgRcrtwHi&yCwpdOc*~A4~J3kvHuHVIjd@rF{8><QJs8KpF*wzu(RCVPWCF
zkM?+<3cg}#lu4s(+WSXp@ia=XtrJ-#(<qgO^_0JK8uN<#CYAJ3k;nYy(kP!s)ikP!
ze)by<E2L3TYE=@X*~&tyq_Ka1cgc%sTuW6wjT&jxOoL4`)lH*T8nq=`hdnIk37NR!
z>WQ#^M)Q~cK3^LCG+s$#Y8rtwv^4HdqhlH>jfQEoO5@%%8p*g?T+eErMq}Yk(rB8-
zyCZxH#A(e$xU_<=MH(&BxQ7F|;q~p~sy@#6`z=-LG}_R~7qU8}y*O!`#(gr7c9Nxp
zA=f?)UlSiwt5Uuv=X-ANlt$+?o=oGZG`ghGHI2S$^h@J`G`gj|H}}>U?z#HGG#-);
z%+K=ijR&;{_`0XjLnJKiDWq2#y)%+NX(XiE{nL0jjVIC=CY^aCjmOjc@HYme@n{;4
ziI6XEoOsq73m562GzO<JRP2oC>>HBCOT&F6f3#G@Q&+Qy!_&CTY#QsXWp(f8BX5|{
z*w2w^Je|fER!QTTG@ec41+nv78qd?u^?jqV`ze1_ezJ&fbQ<aMzEzdI0lt{&c_n%8
z<=8YPq%kp#aT)peG+xf|V<o&QlO#J?kdaTxlr#$6qqsDtrSU4~E{*rncrA_TX}p=n
z;xuNYF*A+1Ql<A8->fud3xBVZXK)UE9@AbI3A100^vx4KKaB<4|1<J8(pV&%n+DaG
zZg=!8k+CcnIR~{gjb$RC$CzD_#!4w#mB#usHl(pyvTFp_3ewJ7Lf)ohh3t}H_Rr_*
zIm|l{Y)s>wG{~8fWqq5{*qnxuhMC6uvY<Xr<C8SD2<LkIAdRhQZ%^1Jl1C=^wx_Wp
zQ~F^V9|`A@r*g?=zE9a`8bLa$jkh=IY1F&N+b+Us*!_K>G#GeoM8c4;q=z=cER9GS
zQOR~sY8-4#1|Cm?tBF}hifAX9M*n+M?&3c8|EPKoXeo;4d;F3VC1(Uwf`Yu+w@na~
zoO8}O=bUrSIcEe#Q4mx>$%-KIc4udIW_M--2#ATGfJjCWg#Vp-pZ%Th|C~Pe+^(*!
z?yj!x2|F{JhNnF>rZdzO&JOsqYC0D}LGQCPJWoR)4MrM*X$WyQPQ%Y>Fw<bA;Rmr6
zPD3OOXNB8>pSIExX>f!`(-2ETJdMBAy3_i-Y<F4nX^d5dE?4NeG_<be?k(rjaDl6%
zvUX7_{+Nbh!(3Nik}S!=q4<T%Fb%iUa3>AFrQtHow%7hj!<95#O~Xymyq1RF)4+JJ
zvunj3r~E-XkKMo^UQfdf$qvlt7X2yu)V#%6tLAo(yB2#wayJe4)9@e-_tFr4P1~2j
z-B>7pn1;Wl)+50=E!|rG2q$@*hJTa%iIAs)|D|DT6;~5J@M9(!e8}j-<!0XDRa7RP
z<Wx}<X7M4j4?C(TCT58ztEj9#yyQcQ51J1z`;g6t5<ZmlA-fMbe8}%Z0iQcf>~l^Z
za`_OiqH+tOs>&lIuV6kwmi|#i74)Hy4{LgRS+TGWulP{hhjmp|5gM$jiuv%W58kS(
zs1Hr5s(w|~Yoa{0s(M}8B4I_!nWd4>tEy5yyy-(}AHJ=s-tf8KS|J%#&|Ag_yQ&K0
z_rB!=vrJ`um?FgEL#hvr*#z6-hiQCx+lNX%_v14^R#oMED9^gBJ$yipzv)!);b~P>
z(TCTnx!KA-yyHUy9~#m#)f7Ly!Y|Lf>q8YEs`@})&4=nf)bOExHPxw_8d^>9RWhcU
zKKGrnT0YbkLS9EmT~10;Qs0N!qR;2aH&j!NeE9v7l%W&d2jiRi@I^KE6t{~HXR4`Y
zY|DohY^aTAU~^APA6og)+J`@@sduWY*Q%>F!rS`L&WH9sbnv0GNT|@!hfcz?R9DPW
znaD(8tLmz&58Zs|?sLDn!I-%mPbKN)LvJ5`@Zr4AJyiAaVHUgULth{I`Ou$JBl3wp
z4D?};@X<aD_F;$*BP2W2hn;2Jy2B+q%;%mDFw1R$Sp1)qk(?$5!#^oki)lm($M`T-
zl*b8DGTw&?Nv`s1lY~$9fu|o+e3<G(mwMVXAGm`}_u+PL5ADp5>`XzPX0T`uL;Xg|
zHXpY8FxQ89KFnv>h;VW#Ec9WK4;y^$k93RKNgtN_u#DrXu1eHQozWn5c6D{Kaw<Qg
zy<Buw_^?vQD#5jas|D9EB;*gFXlk7g>qSVuwYu6Ud{a`g*@rDjzSW2Kgzu`ZsQkVU
zA27CkIO)R<A3pTqOOD!ykLXVy_WJOd4<GyRi4VJd_|%6vuX%R)P&b!ne|8V~sp@JE
zC$74>UtRGNl%;cf$UkQ+`LLhCQ$uC1q4xQZm0$7A?ID(^q1x3@2k5<_sV4`gPRQjs
z=;NW;bIgZBJ{+e1b9s&k9_8fLP_t_&O3J<BIqt*PK78ZDwi=4*gy^JmmY(wAJFY1o
z93M{m@G$D}`=I;qJ%gF@VxBY~d_G*u;eIExSP@Tv$C?@{;Dg}<B_W^tITxpfJA@!Z
zw}#?CUaYB1cB!bx@*yk=5y6r*6_ukt#H8*yAKtC0;y#>}Y=Y5JQ;n$UntHpCXK_t6
zuD0961s^W@(8G_Oe*EaeC9ZKl8v5~*4?lB5@Vke+Uwo+ZFy*-q@Z(qEzi}h=;ffDe
zeRw9(c#UgTivIE84<Y;}_8lLtbKkh1azi9HIRqbW3BN7)mk&3FX*|l)zMJ~E<gOIm
z^WnY^4|rwzJmsMee~a*uAazRh_7Kxg4<2&|6ZsRtr%9dv7!S`~vmC-#Tvks~GWb!<
zk5~Q3=tm|$N{!Gm`;pa;m;A`$#|wVEC_>6VuBnKp^J*{qk<E`>e&qJ!o0=-SAI5f1
zPQe`X*n<>idEoB%XG$JF^7>K4kD`9$^MlP5_G3c<Ex+&rf&~Q&2}Wxw>bxTSd8$Uf
z{)qSf1Gk_2{?coHyzYnQhd#!0y{0PeM`=IG_))@-l73J^x0Dj{hTxlm94w0__SIs=
zwYU5@Fk352`ID3sKUQ{fn<$o9^N7t<KfF?;BwJ391FVus`*Odxf*%!S>faWu?MEd)
zD*N${AMg56%a4M!R24slch#!-QQeQKEP9-hH>)=Iuats0wHoy2o9<8cHT@tytEq^*
zh-ObX7j^uo%PF{*!V}$ke$=PODr@2L8nKZdjs582cXz5Lel+!?6DOsxd&1w$kG6jI
z)9%gv_#v0pLORw`u$5qIL29;<agnt1qxqwh_EM{ZU`N4vFKD#WSuA(Fn?n0trNwT7
z-31?(anDJ5`O({tzx=rE2S4i7$B$tgweY@v^z-Apa$0}E0fGbl805!b;X?(fFhoek
zrzspVv#(CjM)<MQkG+4UjPzraAEOxqek|}~p&w)Y*!N$`I6uaVOXrnOeXERnZ9c*8
zUSLl2W0D_}{g~o+ughlpF;(O&nn70!pDuVcgL_UpQ}`@FyO1lH<HyAUTCQ6ubN!en
z^7(?N?z%T>7WuK*k9C~i3fd9|TM2CiXJHqXvTx5*zRjsE6X9~1R+g^xyN9+qTRp4%
zSnYRr38poEtQF3R%&zAu@MEJNoBY^H*ZHy8j}hbC@JOwtwy+!JQ^~pFw)xRRxl8Xu
zKeqevz8{HR9u|Ed&Fv6eKftZ{ksmxW<i_Gw^y3phc2UAzi+fis^{F3w{5a{yDNgZp
zZLc3+vY!kOKR);43lUOI2ksNTU+{n+7a)rc`f-S>uby^7V(G9SM}-`rg;{PiGLqT)
zF+Yxr{A<B)1V^{fSjw&GTR*PcO4(gp`_7Nkegypp`SHCUXZ#3o1Mwrx51$`?*;u&r
zT2)NtERZni;=pvyE9E!4Y2>CKmLE|+Vt#}fR3o(rgRPy$2;thX{cyw-JyZJ|FZJV+
zJ?{q>V1g^|X$q(QtRLr+E&d?EK+OvxxhVJ}-I!IoB%G^~rF7}fe*D7C-;dv9X>)b|
z>BnX9_7y*_3b`hD-H+deu+|@pidGs4(+v^c6r}K$5N>q5U315eyMDCMQLMOjk4K_f
zs-%umI)5Wbz3;~ZKOXw=$dAAM$e|;rj(_}k?8kFIpyOXZE)>+Bio2e0YntHUFd38o
z`N3_F<e3a4U#gZtN3^E)qV9Slqi|+3>BuZRi{J}_s|so?%Bs83`;v|}uWK(S^|R^7
zF8p){4|Q_s$gQI&d#)po4&G#ADx@QClIPRi1(IKPS8D+s1w~FywZb}bb=6)G33ZBy
zCgrc{yrHeVuDeIx*MxsPMWbYFEmd5{<`=XQI=Ylk<t+2^{0$wi7SyWhSW-*9siU-x
zGCJOpo>vqst0P5+ro*E{=_scoRd?48ulPQyr8q#Z?k;c=rt*CD>~=~8smP13D>>Z5
z@zh4z+ajr?qcWdQ%dWj6*>?r22=Z7-&1yRKznxlLM-5Kj2(6}$hB_M2;n}oWI%-o>
zM_qQWjJ6_|cBGc#3aY20z9=^k<lM0$LypHUlEylkuzNb1>1eK_z=ISHwuNZ66r>I%
zt#tPo$JAN~g>7}T)6rf>xR&aW)TBRI)KRjX1Uu7{$<nSux``*L)>B6>`YHf#0KIke
z(eb_Rex<Fij($4U>)4>9Kf~{J?@%4XbPUijP_lz`4AwD3`0uq8Q}JD1su73l7{PeE
zk+M?9NFAeeEYPt~$7mg6bj;E*TgO;VsQeG(I3crs(8lYSpktzBrzT4$>6k2h%T8^I
zkicqfnvUthXXuzIWUTxzd^GC*ooMr$+8iBQE^G63%+)bZcmGk8e^p%fH@AoiEP7l^
z9X{Y$q`OZjEv74UEY-10$8yG@^gK^(wIipubZu3)wwn7<YW^9iv$A<t=~%5}jgI_1
zy&rw1t<}Llv3k<iyN;fDrd6!r;zk{tbnKxI8N)hggme9YkS&5+b-X8Jn;;do>v&&y
zXK8eYjt`{|AL+1bt6e&F(r>lZ$Mj)s^$DxjR($s9P;JH1-J<iU;Fa3yGaa8x-D5hw
z&~c}>`jX2{$38}^jsxt{0`JZIUShU7ig-{YhXk4B!&Jn>I*!mYI*N-<Wx?Y*zSi-L
zjuVWBI;ubu_eSEkI!@|1#W|9jiaag<PRD63F8MYi7duJwI_iv$G#x%2ejWJ&$RB`C
z9UXUd+|yy`2<rGr$Im)KI!ql29cOh|I;Pc8VI2`}9X>C)tz%ss)x+|{bT~Rt*UJ>;
zNb4w)I8D`2zt&O2bDVS?7j#_Ys;r~Vb2<Aw#ZG$e@c!x<PyV{9OkMS(j!Rsvbyfem
zia4{b`bEdDI&SE=spB^tmv#KE;}5Qay6W6k?-d<abu{Sg{id$ECL~c;F?+wR>e9%2
zoh$d0XK$LfKt1)Rj$1kw)l;{1{KZYFp6Xgpjj5;V)>Gtr>Zv;%V_lcrX9(%Y6hP(x
z9_o0c<Ef7S#MIw99&>T=D8TKmi<ibv)l=u{sV6!Lb@tw>ry8eunSG|?xsD70<ap1^
zQ52}JDxLBm;8r2YC~|twQ(t8X;DrFPQxd?70b~teXMJ^VtM{b<UJrX-4uGR*P+#?|
zug29^*#cNrUtQemIaOcf3?O#^c><v4a|Lj=zPepsQJ%Yj${PSl#RjTL19fZz3Iu?L
zs$>8K11J<g;Q(F<;6?*gJb)qr6lFsJ+%DuT7C@PQJg)_?rGe_zK)o8kG$Dr@D7%5;
zzY9@^wMs}`ySBGf0B;2FCI=Nj3hRmy;#)#^M~M1mg_9I+sI&mC)o~m0h|nnPRRNR>
z;9>wj22ehL3IPm}qKW~$9YCW18VB6ZL{|!+W&pJUs2spMB6(M^nqU>dssS8t?77&;
zL;dOj)DYo@jc)bY!b$20sS`lmq@-d)MR|S6HVB}hkPqc6=uHA>8bHSYIt9=yfaU?T
zP1b55q_tp6!Bzp>lUlUaMkJ3KqMZ;*+6VAnLv)aAqlT(8=QM!60rV3|*8sY65`}jQ
z{O=p=Jp<^)onM55#B#d*J|dybPes^2T_J!0N%_D4*fd=+SR`zh%0mMf7QpZTMg;i(
z=GY#<$N)wKFgJjC0gMh{OaM~?m>R&?fV)eK4`4z7<AgKYxuKdEz$7}Mop-Vbt6lYu
zZs=a`Q$m~;!1MrS1u#2+8KN*#aH;6*6il}^N95^S(EI=v1h651jR7na`5N{)fJFf;
z4qyo<w7qNm+lGo{DI;Gb<jVtCk>o3dtP)(!rNj@7ORaSQtPdc)Is2|gJ3R1h3Scwm
zg3;C6yCs0F(&)f7?vNAGNq*OwoTcwGCiy#E0G|i&K>*hqsvQA*7yz%eKMLT}0QPX5
z2JmqJ_ZzB4-Ly|=>UIi$SK1|Hx8UQd+Jb(by<8F1v_xa=$xaWmUj(o(fG-31D!~81
z()P2H2ektM<Z7heYNR&2ukj!H4hC>203VwRxHrTO2XK-rI)Ec|*Dmd-;4#7Df)su&
z<eLCaBqiSp;equ#27DvcwUK*Yi|Mr3{62s)Led2JOgoEo;h_Lb_FwoX+chHqVvzIO
zNRe1{NF&7*5fT>UUl!Uz9KmP+u>j%$B)BgHaE`MhRanbzr0z6QKXB{;d~sWQp|NY~
zg47}@(pX&z;HLn(8t7)==Ky};u4o{ufnNjojj<iTz$WT)09UwD0=N~xRqiSQ{6XiG
z_mpd_S~OO_2Qaa*Vp`o;UFT*cMK=XgQax1L(^&n*eI|eh+};DY6Tn@rUrwdyoN26{
zRr3%pHdYTBE9w(-HBp`>ir*n=+(i8yz&`;z4&YxNAPkgvOXEMDKMCMj0M7$>8o+;y
z=O!wbrR@+Tfq{$$G8xEV;8YWJux@IiiDF{W?I!BQrYehpm%nn4gD)8HHdQ1qQDUH;
zf%*or8OUxR#eilYhk=|1iWzv-KrREh4HPs`$Uq(gc@5+@P{2UPW!|PuRqv)MpMj}O
zRi6Jm8=9*3OQjxYsuE3AVFRxiC}N<ff!i!Cn)=~QPtInlY%^82nMy60n)Bt<*9^RF
z;7tRi4HV}X4Sdl|l`_!1nVQ^8l{C<Jg?DW;MSR1+505?mX6{Y$G6vo<P}V@LCEiS>
zQz`kSnR?Pp6=<%?H&-6^{N+?-pqznJ163D$ne`fI-dy#gf`JMY8mMNVqJg&!ylbF}
zfl3A{8+gY6o0!pDZEUVs>!6_3+->w!aqsWV-BDCGP=ieysBNGoUEP8&9;$a*s8!3o
zMOJw07--!>)itoSg&N#K&1s>Iv~a68FwoFIE0!8)#Bmw!8FF(2O$<0KR8s@Z3|woW
zGPHC*iuFoMRj#FK)l#)EFsh|$X<$i9^+8K@tfgA=t`={p+8AhSpq+vC2D%vNG0IzL
zgtr6x-#MkDfjcb~v$<QTPMo+_sxy7nN|96@;cd`Lb*Dac_;|d5o(6gu?z2hb4fHn9
z$G|`XgADYgXTI_9e7+wQTB(Vx)UsBpzkyF$sR0JaPqk8m4fiLHAyWNZD|M%p8fwVj
zb_~KW1H%oBknBjou^fmHzHu;G$QVInNgbDzPalLEFL@>~AX}@61|}KqMdf4zQ^Z$)
zRnn#!m}X$QWa+)RLS_igG%zbEpKV}{@Hbm4sxftWN1Jb8fq{hv78%%JV58w~yo)&&
zMt%kF5^e%pJWB=n08H^B+HwOc46HP;%D_4UOLJ=NMrngy(N-JalK@O>gsc^u+g78(
zdINl-gZD9p?e|u#;C`Zze<iSmkzn9z7}vsh&%iduc?cy!*lyr`1J4a0hz|_xFpw~C
z*1(7KhJlCy+rUl(9~(Gf;9Gj$z%B!a3>-GFn?4t(9Wb!Rz+U0|8P%=TXY|h?cNRVu
z;TM9;?i0cy>M;8yeQThF@CBJu57IfAQz<_pYR3gBIV$pF2B^T&uLZvmWVUB(b&~sx
zfq(%+gx@iKGN<|soHp>iNcid#HP0AGOV%o%In{4qXltblvXne%AY{1jNl{3NX}}UP
zM#d86pjs;?7CB-(W+1&N%2klX?Rh+DpOSOjD>%!IJ^vXvZ{Pwqu7chN1}<{axylUu
zE|N=JzvaEZ8u*FxE|OC#T+LrN@2%C`M&94}7cio8g)=CG`jiuQv{uyoLu%bIaNWQS
zy0o>rDQdR`{}jnB!M_AqQI{r2?i#pf;66RmS}{v&XIra>Qt^?2zlHo`;E6Qx*g(m(
z_*aD2MgOVDS&@ByCWGbq8;6`Bh>St34PsponS#h1MDHN_1d%0(7lJ4mM5!QN3?gd~
zF9q>(5RY4{{B2Z98&$WB$`*8AcFPk)-XO9I&k;mUT4>|`HkwN$B)Nl_E0TOc<PYN2
zAYKciKoA8*p@?9iAYKW=FKUHF@^KrLo~4DNK@=0=hsyg$8}+*I;z4-Yx(&VDR*{qt
zVavAav$mc$f+!b6`5@j5g4xnRlnLT3;TmfRDH}wJ5Gssrt5TC(3GoK8SWK~WcUx5<
zh>Afp38HBbZwGO*t*RbGjUXxsuPpeE;JboV1f3$@szFpsa@MLDM6DoN6!q2(qIM8<
zf}jpxv}95FqF$z7+Nye@P+zctU_(LHY81r%BHqT5WyNMeG!LR}5beZH3&ECxrIw+U
zkk*221T(f%tkph<4ngz~Nk_phL39nGlkm=hZ-{2MAl4N1vP#2ts=IKSrKG3m^b%xe
zsL(fvenHIPL<iA7hyg*24q{Bu{ouwx@#i4nz1pe4k{uGn&>)5dF+7M-L4489owX4`
zjFi%ulHDLkxv!lX8^o1%YGM$Rf*2RXf9(|0_#h?-uiwtY?BpP(1Tiy+_U+ZwAb8Z9
zE;ucSzl(aA3bj`=lDuMjH7ke_?bX8eYBqONA@hQmAH>2S7STnosblRG|B!tFjkH(y
z+p7#sJd5f7_G&pheAK%n2$n7tTqc;YgIW<pkq&C5Ajv8rtLZu+e2Rd=^+9alaDuoR
z#6|`!tp%}9ENrGv`glJIVoMNPgLp3perAL|{6NSy!R<l3pOmw7hd7oxABvFQ57`;S
z$3c7|ruGWb=B^-i3;$Gbk6@J!ibbC#bv|b-iDZ8e2ZH!Mh%-Ta8N^pX#5$;NWPKeJ
zJRZcMAPxs{M6$;Ok0#gShz{y+uXj}kcWr(xMPGJMCxZBv3qeeMCwNMbUtpl|>mAhT
zAkrmiLHL5W7{rg<5Q5Ny2nP`fA|R1w$ZC4tK`{=4!b5_lpe0yMV$~M?vx1IbR4^tO
z7c9|HCAh^cb7T0NkRL>TJ_x>md_j;!<d=f@iPO~4eR=ukAnJ8gzXtJ}kYBjtbySVo
zdc18toMPhTAZBz_8#=0MLHr&BLdX!pA3<CX;$aYvIKYnThRpbbAZ`Znr$}zGiH_=C
z5PwPbw%{GXyMiob#rurmjw*L2#fBJ8pSJX9oz&kFvHYOZKir~&_%{faKIQ5N;)(D^
zqR)tZ#yDYzJGrq<Bk3e#2$@3eN3M#7keR)0;>jLz_x3CyybuC6{1-!bIfOr(dC0Sd
z@RA70DajVXluj;L)k)<DA!i7=LdYFLp%4m(kSBysI;ngi#5$?G!cTNk<oU&Z0l|WT
zY>x69Qc8R!1Y!}XNWxGr7IK%vt0BB5gfahm$lYNwbXFxpC>6qN3v(>I5yG2n+QKUq
zN{3J;grX*jnRqLNvLU<|!nP1nLeN6!9YUWFJRzip&_09?A$UVjA=C_^RtV)nC?CRf
z)B7&FcU-Fw!rLKK3SmaW)QTZ~^F%A&Syc{UP{UOI*Zeyn4B4(NJE0L-R7EPXZq*Q~
zC3*D_Y6z!3i>h~4wL@qcLbDL+gitqxdLh&gp-BimJF5mE@ZIggVXyg_)-Z&O%d|#<
zB#lGve<zVpVP0p|JcJe@v<jg$@s!pwgnQ?;l9#;vU!+TGHA>oq(3YiZwKMCrdmm^d
z?IinNXVo#}UdVSBB<Uoia|qS<YF$F;Dx{m>cbyf5Jw&0WV6SAY;d`~dA@mDjTnOVs
z=pVw>&T23n62buC%nqcZlDx}r8rvEg!iW$?hIkWI8z!cPv;P;}>-|xZ9TP&QbFSuS
zx?+J#n8t?iZM9UA2_Z}jVMz!}MR`&PlNpC0%$ehAP7PriXDWo5QhKt5TV=ZN=bhE8
z5DIot^Fvs`m|>L=N}kjxnJe;ng3MmrrY)2ziv?+6k&uziU2Az4YRf`c9>Tg1)`zfy
zvolv)8Nw>jNlDXICu^+{a`_K!ErY6ys_EB=ABDXeLf9Mv$wonvO+t=FHS#SXY)#4w
z?Z<XbdI%RnxER6*A?yf2=PH}8eMlW%AaqryLf9F?$06(sVLumI2)pQkE@}@0tc%(m
z0t4w&384X9RR5h?t+U>}qVO5RyNmi<_!ok#RrV+Efe^k7;RGEX!htU8s}Q~p;Ts9d
zgCQK^^y%Kif+R<T91Y=^kmG_@7saBV)@YZzxHozF?$J(4H`eLeob4LrS-Yz5LO315
z_aU4K!Ox|-K^t>dOAEorMY_l3RlBM-UDc?rYGGIP?ItY{f)PS6gir`SuvS-PiXS2&
z*g~uj!a|nK)94?E&JQ6G!ddPlAzr9@w>;K*F4W@OkgsXX4%??~@2bv)aAlsxD&+sp
z)6R?K;&(LK|1pG1A-rhf@G9-65PlBfK?n~+_=TYx!cFdqA^aA?W$q8_wd=IQI1k}>
z+7IE>KiV~!{Zkjbjjwr`z1meRzNA&Sq0w6Ir`iqfIrUPzZ}Qxtow?ebklV^%!kN7-
zByiUIw5z(ybsYl9eL<2vVeL@}e~0jl`=Mz5!`TVpNeGW6%ZBLor(*NJ5ST5|O?|lE
z6~4M&gNY0#GMk|Nj3zv$_Eo*qOeX%h;jY2hI#(@=>Gq0Udcj1yRa(t%DyxZ?OuTF&
zn~B0EUNMo~L=F=LOmH|kP2@6>PdKx=P2@@P>Ge`6$!nr!#2t8k6WzNh5*jZkI)wz&
z-BLun9h~o$&g`a$ubOy`LK8<!yl$eniNPj@m?&YQq=|Ya>YFHK;tdm(OjI`Uris!f
zDp0soE5ps-9UxLolr@oJf>W%S?tRV;-Q375x<(uHPHL^kn%9IfQBD-7)Apct;!ACB
zH#a28oA}|nmt?{`t)hvy+1vRVW2Qz_d&k7PCTehKCaRdIYU0^AbYHAhGu@!dzFDho
zqTvQD<xB1BC2o~kCQfxz7Y?8f6}qX~CZ2Xvloao->YB*3M0=;ZYQQQcx|rx{qLGQl
zCR&?lW1@+PrY4%3XhA<$aR*Xjlh(|{oW~k19BZ1|(!{{psjW=3>aN%pQ^|Ky+j9C$
zbTZM|M0*n*OeC77b~G_!xi+}F`gpTD*GwE5^=n`D*59b@-lTQo9GU2AqMwN#CVFy~
z-*vaXUM6~*=tD29(#l-$a-XE|V&&8(JGGhJReuv)VgpSa>aGTu7$0%NX=`^i$b{8h
zUF)v6{D+ztW@3?v#U_Tc8zv^0m}p|8iHtqeXz~9j;mmU58e?KCW9d_E91XHdhL;;f
zu^y`XW{n=0WMZ<3*>r-5DV&QQYMRLdw@ao9uKQS<AvR~4m}R1E4|hUYmjN)ehvFtP
z*Tg(gSZHECd(}fNV30RR<vs8{J=_R6(?hXQ)>>j>sfiCv>@cy+#BviGO>8o;!o*4w
zYfY>(vC71y9_q?(-qj`^_E5YH-gu$5MuLH4z4U*Bi7yVi`wyd{a8IRrs?GG9iT7FB
zHg!O~)UBp_Xy)2{j{)$jwoPz5gV55L?bK6oVcu_*`k{%BOzbnU-^8?@YNv_M=>(tl
zv1BRv#Kf*7-)-X4B;R9Vukg<VSNBv@{zB@OdCCW9-QT_snE1+ce|cZpJoQTk!)F?Q
z7H9UL2oKR(PsQv}6UR6@6IV?fH}SQJu!)F?Z%mvp;TL79eQV-76Q@m_OiE6f7_dPr
z-6HjSk)#Q-=`&m)J=MUvsXltUc`DPHf?l0Fm1GSQrf5<gG!YVEdM7P**sq<JUfCub
z6F<|9wl^x{N|-onB9?4DE)|bl^q!+vO<XkbBliR;oo8r0s=5QeAldXs1uk({iEBTZ
zxZhK?OL%kiQoqJD8vn(_uhPnICN7(>?|MJWl3KEt3arttnfRSCVB(R<!;SY36F0e|
z3cqgRh7f0m#-dx?KzgaWChiIOOYpXdJ3?5*6U+N1xKx=Kv5bueTr~^b1^YKQZ4-Gd
z<g@UYVQc~xGFW(GVo4=DHSwPb?l#;Io|$;@sP<e!krudvwWyQYvzN+fA(Mp{EWBtz
zf2?J;ki`OzjHM1~<9oRQypRWL3olv7X(5+|6}{BU7P49H{<gc9Vm7;lTYqUeEWEkd
z?b5fs6n7yu!Bv*q!oh$ykHtUNb{AcK%bi><r2-b>z1+oB&_bxDt6a#!zalAOp{Rwi
zmb(OsS$Ne#M+==Syk_Bb3zaRrW1+Z(5*8}4bdFZi!iVo^Z&@g7p%gCx*bNI8H)&-o
zTtBK6>a9xC@;t5bHjP;hC&hv$RmxlN$S9U<(YzK?h4W;C%E|(TOyz`7Qo%w+3-v0v
zHo1`B7UgoiRr7#%%Q(Dip^AmNRItEvo2nLSTG&xFwVGtBvjeNN8iMcEO)axPt0kqi
z1$i=G$8t~6sbAkh0}Ff3x(ltLg+}6p))pFDXkwwcg%*~3lF-ybGa=j!(hr*SRZ9!I
zfAI3>n^saZ{)N=Wy%qOKo)xzdJ8cEqS!ge$gP>cnZfa-x<eb*eLVpWgEUf=o>uRB!
zxVJmQ>2IyK#ozQ@Z}+so`0vG8IIBH=A+>*R)yKk&-m0(Eq9%Vx8erjhM6*8EhFTbC
z;pWfYjlI<%3nzQ4!4`&C`2C^wOK&%-hgo>oTMf4`!h%|+jkGY@!WhdvogQW3>vh_G
zL(APqbzkWs4UUsOkGC+v!bCbGp;hdordya~xku#5f+SNcOil7>jFUC)*&sD%a1#5d
znHFXVAun-7n`>d7g{Kz&W0YE0VBt3lmn|%`u!t_T@TrBx3<C=*Ev&NKtInld1?=-U
zZJCATmizHK3i)B!W_{GqKJGstuePwp!d46KSy*dforO&nHd`3CPFrtbgN2QhU)Pvr
zn$bt`f`Z4;9+KU{=&hW}kb7mBwz-em##puRk%jFR-na09g#&%m4hz5ZQAQs{ozMA(
z%K~jD*We!Q6AQcOq6VoSa|xf-NFIw0J;{mQV_~m_(-ywxcF|XTW}$FD^^JwkEqq~N
zpN0Jvj&t5Sdk$Fml2K&gh=s4Xge@GhFukv;&{t)7)zhr68qim5>Z=a-RYxs^`>JEy
zL-KkGW%pd|tDg0Be}(_rLa}=(nJa7eN@yo6e9QIKPn~4vH+sM0CcuF2rv~?Pf54(-
zZa?=MVrMKQsMcSlS@2o#b35YZV7WiOR5`2#EEpDobZI|zsGl<Xso(l3%AfRe9d3%6
zB^b645n>BEg4Br$i3!F9^Y?dO+c|5wf5d!F@COU$EnE<OQSfKMA1z!G@{^$ZKg*lk
ze_Q@VvcC#8=&!C=xN70Hg*z6mS?JYY-Qc|RSHD~MgWC}UtiL+eU&Z^Y5Be+en->10
zf>i&@Le&B4#R01L07cSafVykpo`pvi{<d(R@iss`;P3~ic>@&r!2#+a{WCyO@(-IE
zph^u?|MDoncov<P2dXFBVK%v4tu|0S<ErE?8s;-RKo}XqC>C}Ho-vF}VdM=XUl^Ig
z$P&iOVPp&Ag)m+WBdh3i80b1`_&_yppyEGGzr^3C2C5?iRb-&b9!AbEa)ps2jNb<;
z3{u40VH6&unhjEU!YDULrSpD+)U-h=e;5VBC=^D4Fg6ZSo7Q{x4N^Ypgi$1nzXz!d
zo4l`taY;zgu-ku@<{7MB4dboBZZ~QVR>i|85ym@Vyc<TzFiM4y5=P^O-Z#Q{*wFh{
z7-faLDOfs;GD12JRxIU0;LmN`%F1Qav@kqjq=w;TKRMDc7F_XAfk}n&?+UzsJ*7ez
z6~o}GRh7bSD84N?W3cK!*bThOQnb0b`|eehFsg>JDU8iwR12ee7+u5Y7DkOQYKGA;
zj7DM93Zr%yb;GDf7cF&vPOTGmk!eA;l=?~DAng92xnZ#4e~a^bl8wV?5=Of)+K16p
zbee_HJnY_)POsY{jFw@vl3M(yUDjpA)*RX%ZyP$cx3{g}rn2rY;2pv+tEY4dqjMOi
zAEtEVsI#R|=erUqkIJTW5hJv4V6bbvdl-Yl7#v2AFnUVUy##xQ!DpfM!Rqp0)hCR;
zBJ3A-pOfq_I6#p9fjck^BJB?eV`vz2!<ZMwurP*)F*%GWVT=f4WY~QzVnP_B#Lig3
z(e&Pj-Z6swYjyH*VspG8C2VV=XioY+@~I-BwHdT2eER<>WtEv>%o1-LnvB^(=5R#}
zQS9M-x+09_VXO#aq10U@NN*Gz;=cE~m_ay1EeT_(kY!;U&zDNcns(lmVXP9@mDSyj
zt(HdDhp|R1u&uR1)`d}eoBIvA4aq)i6hg_CFt&=$Ij*lTw$WM`2gBGN#`|IH4dXK@
z{eX)ij1PrxFQl>JN7C*tX>n&5A4}0EVwPT_0{gR@!Z7xPK{+K%9B(ms-~971z7XZg
z8&a9}g|R=3vHMaFgz;q<>^YU$N#da}4u=s8BNWDwu=~{XNv>kH8^$rZB8(Qjy(hw8
z+<qO#H~;^--=<p-Yp25aj<Ls8FhrdZ`S<^)G)=fq&>x1*HB~k>5QZTVa`v2w?V4d&
zVMImVcZdp06tSNXafmH)M{xEKH<)9><AMpnvx0oKmZd+0aXyR-B4PHTkn~0Rqwq^%
z{3PUO!CwS_6{P-eLM{tl31hvq_&a0!eA#X`y4(08jO$_C2;(M~QUtvs_%n=K+%yV#
z8%OY07`MZCGlJ3)+zI0@x8De|MsSbIJdFRscoxP3?qgy66UO5(9&wt6D5e2JyxXgI
z|7M(2@tzr?&JR)la>YsZ2}dLfe7b<8)O^lRk04V7nIo<~6*5F{cZg!jC?xk#*I<?i
zIt^7XMDW&7Rcoj^Jj6R{sCp@amm??|L9qz3MUXv$JQ3uLfW~t~kSl`R!gC7F8LG^c
zZqb&ZikL5g{1Lno!2`(_h@fBug(CQBs0xYX%1~7}f@MRzR3_#ariw&BWcJkvUK5)o
z>6~He^$3bbP;1!#?3a)t8li;Br6l`C1nFkWa0n4ph@fHwWg|$5Kt+(Tinr?9UM&J|
z1nUQQJrOX=l$tE+JWS2ojB*i-8m5@a3t2c!y&XZN2x>=ACxXfmY#gSlvbhM}iQwG`
z_6<{2BG8Aa8^aXwhhgg9VX8V?9Ik3cKwg7R814$0YKf%Ia8);gdJ!~;pkV~{rSr5i
zYPjk&+#OD%2$l|4tVLv^qzQXl$lEl6W)U=xphX1jB4{7MCo9o1f;JJ%9pG&xBWfMN
zAN}2N5!*(vbGSM(TxA^K?GQo72)abjm9s1@c8=iDa1|J?E)G{D)bAF-n*+Vw1q%%D
zlK0^3k5IHm>>WX$2u?)sZ3KNI=oi5@hEoLnBN!0Dm<YzQ8*g|AMld9Tp$xVgDT5d}
zBh=uC`z7;tMyO#C43A*T2sJu_RwLAih<mv=lFB30>=9~|WGP|Aog-9Wgc=v&-6U*`
zU{eGWBKVbR5%>&kV#GZtPZFFgI7N`csS!*|^63%G5I!?0nI+`=y52eLDqWGqGcV$P
z`gmCc^Ci1Lkn)8QEE2w0aEaj3Wa)?%Zms1JtdQy}1y>2Kj$lm$YlW{Dq~<yy-Bw^j
zQnL0iHq#XmJRRX)5p&2}BY2OVT<ZFbf0UU{-e<tP?)@x+&l&%_ydMbe5d1KLkA&<L
z{8;c4!Civ81zGD;A$ua&E2Pj!_g#!H7`hRBBa$I}{-1LsZ5<H&Qt&ImgMx<y4+|a<
zJSuoh@VH>gNR|GI2ML>?!IKf3Vw~G(XydyGPIIM15Qu=UMSLGY8iTo=`-;RFk??g1
zpGf?IHAX6y8W98|C}ZO-8=(ly2!4v-=LoC_!VH)QVxk<0z>Z+>NYzeikvNi_F;ej*
zzBuQd?)}=Eh~R7l=Oj3P5Tv)imM<!wkKjU5a#6^Jk?NAv%Koy(y1y_2BY45ai#C2^
zm`(I#vXQ+PE=O=Bf~yf+i{LT+AVt4NaEseJ7o%ja3*Hc9#hXI@jNsr%#Vph92$nDO
zJm674itZ*g??rH5Qt2tK+Cz~)68t-<^ABCI!YzFwlK%vs3f?>7_VbzW=Yp_ZNd`fZ
zj5Z3*b?aufk;R5JQZ1Y5`F?>bxx3br)dt!lkBygXl<kR^leMx5$!;Tukeq_KlBKzA
zT$gbjS>efRBcF}@HVPz5i`pnCyiih7*v2cuiwNG6krosFs*Tr#ye{~Ljp8;+*eEI4
zQi6HrxV>c}c~c}TEiGi(98XyrDK=``sAEI3;jvN02H&gVds3-3D%tLG^V(4C^OKZv
zHY(VtXrsJjDdFp)#7v_UKj`tc2;ZEoRkp!*qTi9a?+Vh$g&|s18`W&I&FWtNQc_)t
zY6#Y}Q7ft0<r7a`8})4WY0UaIii}ckk8)o~Cuudxy*h4WyBlK{+dcbgY@>;drZ$?{
zXm6u~jpjC5*l5FsM6IQbfumGw8@Z2pTM1^}tx?itjmG;<b4RJVn>_7o5I;Jkb+oZ%
zlsbM$>twsXJN&Uz>ulp#CAT^L3eZ(rJT}TbYwBU6rwzwJ)Il#By=|<uv5uZ;>+NG>
znGo{6Hu~A<Z({(vVPk@gi8cn=7;IytjZrp+*cfVK1pU9!TWN!Ln2q7W&yP}fM=4%D
zXB+L}o1@ie8#P9&u{J&&t;X2sF<Q+U?Oytgv+>Pn6&tO_+qgAay);HmvN74lJR9>F
z4`b968#8Rov@w;FZlmfL)pm>;F-A>iyJOV+F>02L**50bm}}$xF|LK<V-(e#G3tgO
z^%vM!Xk!WeJXZ1YbCHe3oSLyJ(^$7}RH!gk4H&DIvaPXhmK|GeV}*^CHh6Ws%ErO5
zYPF5`#wy+c2#!^2M1FOwT5n?mw=V}}9c;9*$%bwtAo01GgSGLIjsM1~EjG5Yy6x@*
z+iZNmKrQRpJ;Sq|eWw4XdE(1FMW=ao(4PxDjU~I&#>aGyjT1ILv9Zg>SL}w3-JC}o
zpV|1_#vY!6F89#pUM_^`p3@UNE0=jln7**FUo7vV8|!$P*xUgdU)o?>jhA~aPVtPJ
z<~d~JFm2B89Af}4^sx0KV(O@5KUwBVj@$TJI>sv0JU7Aft&Nj5(rox_oZ{xsz?k9r
zUYa{?gJ!A5KCqRCD?Mjquq0X=_+?Y&a%P|VPWBk$sB1QUw-Mwaz=p|f%Er$&ez6g@
z5wUU3#t$}ZhAVq+Bf)h+2QKxzwAd4~VXX0xA710>GT+@L;`2Or9(m7l3D0-Qc^emO
z{AlBnjlxIKeTL_vcr5=o#VYK;Ptt*Qz0mZi>&aiGtJ8ORuJH7Jt>-rz)VVBt#cI#s
zDW0pM-+z(k4{jG6i-Q~vZrHfVS+?=a#-9vh8xL(fvhkOV+cxgnxM!pK0uOicJ6ttK
z(Ql&XtvR0iB77h%=2+{Yko~9H-!}fS@vn_1qVQNS_jFI&1#ao5b-YixV=wm9T<gXO
zv(LGWJILbT1qT@%x1rRfo=grhI&O?{PN^0+ip&nqEpmPGqJyjsvN`BVA3Av1!ObNe
z7SSe=DZ_jZi#Xn#4stmt;-IL5+z#?M$mbxxBgdmfp1eYMY<gp@r+|Zk4hlIaOoy!X
zTwCfn)B)v|dFXIv+0|DZP>sfmIe67UNe87^eUj%j2bqqdgoD=|6nET%7pu@Y_2#<{
znX=yVh685bbWqyClhtk!4VH1-d8u|33ubvZ#uNvdgPz>V9C#e0I;iWQo&&FgSpzlY
zpd1y(xo0os9aM1ej)UIgR7D4GJMLYe%8vUyd?os4tGB^8_q7NT%6V${uH$ZrRRl?@
z3aLgXCnYt6)D*1cptgfL!gm~Z_l*yaqrT%lj@aBm3kMAxG;}a!oN6T4)InnhYsM+2
zCJy$DQ>Vu%mNs+n!#KrSE!nYgs*{7x4q7>A?Vyc=whr1m=-{9oXMDV>IbM0jtHOdE
zsX1OXc;7opki3h7MdMX>!LEYc1S#A$UL6>(dN>G-S3i$ey&d#nk%Ptbt%H6JCbN?c
z`a2llV2p#Y4)(S74s<Y#zHRIs<Y2H!h6oN7r2OCUD%S)x+`$M3BORnnP@^1-=8Q~m
zzdc3lnk3_BbAp=a;NS$caDp1|V1fe@ruQZ&V}hFG;O7bI;RHp6sSaj1n8^rXC{9#w
zO;pnv7!y_FiE5UE*$(D9n8yH^sGc?RwruI0!~RcHYbUDtbnHa6fRj7X?Z9^v)k5Ka
zPE?dEaj?|Emkz#iu*|`7PL_im4pul=>0q;iEe=*WSnXh)gY}#&`h1dF>p)FX7n^%u
znWP#`Qp641{2gp!-ASt3BsEclOD3s<lT>h$+Unpv2k$$eCeyEz)HVm(xk4wa*C)Gn
zDos|pSo_eyM-Dz^pB?OEcuZCwJNSfCBWjZ-t6dIuJNRs}S}hV1wzZcM`rpBR2cJu=
zFC3(I?|ZRKJLe~>1JVKZht07Y2OS)8;B(-2aM-~S2j4h2;ozu)V-CJ{z%CsZYc%!O
zWW~f<90dpUt%H*ezISlO!6^sdIXKPrJ4I!fqKMU|sMeB5+BNg0(T%OVv!<wht-M30
zxE~+W9fTa1j6DYieLh76*@r1AB&Ez!$8un^l`1OiAR^?7$e##OIp!elpj#B(qewV7
z%dIJj0#Tgf@^Nt2!954(9b9m5&B5<<h=U&;{NmtO&QuZaCAzwg_h$z`QGPvzk}mDN
zl<@M93;#FKxy(&6i-$!_R~%dwA$ifM>JJCk9o*&$<^C`7Ke<SkVSb9|rqtqlCDgnn
zMSnS{I@NuEmey!F-S~Y64;&zh3{gCE@QC}HgQwiAntJ{goqrwtBh?=Z^4;y$Q`OiM
zw?Ay?KL^i5PW`-hz0ZZWD+T^nc*ZC)MUgEED)T;J=BPW~tb$phcp-`xh4Up@ma^z2
z$-W##jb-jj>y%`VB1hD9OU@{AN0CPqatRKcs`5sWPdLXoUB>mOpIfV76osPhX>GMA
z3P<ru6e&??Q51=yXcTWo-5=VDMe%ABuk#_dC|--YkANQQ>3v;_HcWM&jxHW`{{xQl
zl2Me3;*BT{O;zbgLIoC;mWpMfcq@vsQN*SyK8t>Ds{2@}CyG?DRw)W^6f|BwiWbvU
z?rBOzQBEW@qNb?|QB)Mo;nQ5RZwqJBm7{nkig%+}HceHDqN<Sh`KEw$j0${0wK{zj
zMa?K`i67cV-FKI2N8M;?6-AvW>PAs7iuzGBiK1x~4WeimMWZMhN3nOBy7On*MW1-j
zOjBp4slG*0UfkxrGfg#%qB*-7Ma!uBF3jJbduwj<@?Fs!)7ALbyeZS&i-^`yaIV`#
zF=vN6JDUr6+eOh{TJIn|=^RBz$<~{$I<XJa6+7029pgk4^m1}pi<90Xik?w?5p{3r
z^opW44U$LECyKsNOo(D)6#b&;AH|f+sbd5OMBUeRMn*AEvV)=+9K{gf)EUlF;ll*S
zWJ#rPgz(izz2u{Wj~1jIO2$Sp?*C-RM?p<inH0rjk<TCsq4G2aa}-mfNVh=A^dz4t
zI<umfErbf`X<iibqu5BdM6n=>g;KgcibYW@j$%y|Yelkz^Bcu-;Y$VCd8YJ%tcYTz
z2-)H)_AtroW_AZi{dFQqSEgixWYg_zj`D3L?2KYd6kDTsFN$qax<hb#vf}$uq`T{b
zDAFs^&WFj;kA+b3nUGHecSW&V$fwEDJ&da)zg*sR_~(+P!F@8z%ir*FuD^`pt0<nG
z#q+Z`$d%>x&~xi74o7h$ihBv%Pq-hlI2y(2D8A=niQ;(Fm3%GuT@>F$af0FWOgmTu
z-$rqgTR{y>c&1V3l;{+aPhnK9fiqF0F_sdTn1C+|e-wif7@U9}MS$Ii;b06#6hSVx
z&MEa`E{3>!NAW`xrU)sqq6iC*Bqeqfj__zw5{n`(JRx{iFvngGtDleJLKOL9C=kO%
zZfH?tiQ$D9E=BQE6!)We5XH|?{32Cu3jP|!)hMn-@tb5X3)0jTAstKM_oRe7?H|Ig
z3*HdyJ>9*=XZlmJx1#t<$ZbK&?+Cdocu$ZI20Rq<G>ZSCcofColKn^UF}u3nb<V$%
zeIm&0rM6z;Gs$L*;dxRH@nnV=UX@zZ$t04@F?9aMwezB6a|>pT;iVW}7S5vVF=P|Y
zk0mn8lp}_m$<kagaQF?yY#tHjjUivMbjmsujG<5ro)}U^SU85_F_ehml^BY|P&BFe
zS`5Y5Jx<Cxx0P%gTzp+h)B9Xfcv-<xf^Wp|W(=i;Q~50+Wnx&p?tlF(whk%DQcVbr
zdxcbpp`s8aSWd7!`y=hr+S?+j5<?{+lvGY9g73!u=l`lPREwc{3^ih?%l@xJ%@}I^
zpFY$U{W^kY*SQ_z#HIJJehdv_Xc$AI7#7E{B!<Q@G>KtU45MRc8bdRw)hmYPF|?qc
zW9Sq^OA)pcq_tK;TF1~PDQO$Se2F*ut-T04NXK}4iu#>n=$_Q<5<^$v-I5aapE^Ba
z=qVC9klEfb^pR{|!9g+f6VhLBKnw#V2B^uz_#Z6tAu$Y%VVLj{f-D^#!*)4ljTFgO
z($6u;(&;gbjbU62<CBufLM8}K6r3cO-p?t*r^YZ%2<<ZzXT&fwhFLMp7U8@Y<_MW9
zm>yTuWF*W_)><HBq2Qtzg3_y{F)WK=Z4B!~zC4DNLRJV4Ea`e?mGISq%&tjB@A?=v
z#IPfV4`bLE!zNMK9>ZoK?+I=Z+$wlQTHGd_cE(E(z8}K}NeR3CQ4Bj{_*5k6!~a<L
zCxW|@n!ANC()Pr#SNLZ!e32~u{QpGwz8Ln$a3F>+lck*Q$I_ESF&t*+<M=3!BQYF}
z;f**SjKr}Rj>m8>hWjym9m6*<L}Q4>a3Y3pW3a@|$rw%v3B>T7kkc`IpKSL`3~4d=
zV(^QvxcRJJ=Xx?7N%R;_R`Bw)gxug<hz0VH5L0lH>^5QHkr-?tjvzIstV3M*FERWY
zLn4N=F`N_0`4}z;`9Y9wyeNdVeirhh;3ckZNtDmn?@8bHev9F<l-`QrijeDqR|Tng
zO~~(pe{j>A;qLi2BzsfvPeBSf*uP@9E!jKCo#bw^l)>;IhKJmN<H#1rqZt0?;VJHV
z=^xSgFRA%BhJS@WNlKo^z%NB?Uyo-Zc^(6#Vum;}389gUahzZ0T4TyA!YqPb>F|qj
zWR>hof(!|&Wsf6A9EIX297j%(=Ml^$NQK-&DxW~!q$FP)`IEeWkb;7|W%`PclF8B{
zaTJZCm}Fm#<Fz<mkGmUbdJl`oQ6jx)y(_sXSV|-fM5lBdW#Z@?N544Uilb~C_2Q@>
zM~diF6V&4H#E~kzTpZ<vcm<Up*GmN<?+UV^ibCENtQ1G(bh#j(hoM51bV=uws&S+r
zf2)h6MjW&DdYEd)Q7g%7$5AKA>&Ed#UpF;~qhTDa;%F@u8^zHgj`Uz_ERrUIP2*@L
zgpD@m&}5ogCMDa~p-miZCEGKOc0xMD(J_wpard%|Lu18GadeKOTO8d*f$r@hq-!!u
zo%E)Ah=f^AeJ`1a-f{OA6H59d=cRuf1LBx3ngin)BxGV7gX0(y$LKi5h-7FSql63-
z94<IQaHL>284E3Q6vVMf`{SgPlJP<&2y)d-qJM->iDPOU(}eSQIz5gVam<!1Yo!P6
zOv%m?OgZ7&pCf#(;Ji4-&QM$|3*uN9$08A~ieq&gi-j){Tq?LMj^%Nz5WX_Klppcy
zoWgGp@&@1<k!+4*i;%T~>*81+#|GgW<Jcr5y~?T?>eCr&t4KII@5k|;@NI(I<L-^e
zyk7TAmFWW!?x2(9)NW@SA2YTS&=UA0j$Luwi{pMAyE)f!gyJyc*b~QI?%Q!3jpH+^
z{-xmOg0%TX9Q%at7d()ZpPr$<5`IwdP#lMar2F&cdK`=6cpRtW_&$!WrRYQ)-wOFg
zaQk}K&nM$JCE5RXHuark8Fgob=z?j2K0(&<3!x5qAPysr;Qx_)CUPr|OL6=ZM>vj1
z9CjQ|9OvTrK{TUrB!t8S<ASH<V0u<KEpyX2pX3+fNM9WnMe?IydIx@v<Ci$D#qqlc
ze-->K8K0LWdqt2ouL@y&{t?IZIR29C4Z%MJZwgYAPmvLCal4b@+)m2x#Bo=6`gz5J
zI37|bfmaiF6vy8@5G0U2fq&w797mP}UP$0y(SI7pe?p!Jrf-SQ;>eJ2-S}LDBuIdV
zMG~fr31mtjvnZq=2!2}c7QL9jOCluCDui+Sa#F$$=MY{<FlPd}63Cq_&7VLX;duq~
zCEU+)GVyw(fJh1orhB`vaJKSF0!5O%sE`8d@S2d~36x0Sb>aW-x}#(QrA1Oo@C`xQ
zc{A}pf0jw$t;GMXXv!u_(<juEKxIlqm@4Q^KqXL4c=-e>CH{BvUm<~tBBbTFg>Yu8
zwRLZjyqiFk1bT_EY68^~XqrH?1ga-cLxhb4YbH=TfjSA)k}U1e0<o@S8zfLKDX%Yt
z{%@F+q@VjWmTVJ2)@?4N6Ni>Si=<}D1X?A~TC!~f+Y7c$@X>v@xz5sP2jR?iWOb2r
zNuX;2-9_F_FnwOAlkTe?BJ9cV6aC(j?IXxdps$dA3G^4jS_2XoD17V~_q1(D0z(rR
z$GKRJVF~ai!)U?b35-Z!WWv3_MB%6e&d*TfR7;nP5w)=*r^0x#z@lI;@1z7KGiYz5
z9AqRXFg1aX64;r*v;?LnuquJo3H&)j%}8KD0t*wEnZPWO%uZmQkU4^L1)tAQ`DQBW
z&rhJtOvUUXA<Lw6u^>yAu&W6yO@IniTQ2eyf-4iKI#acn>3&UUjYu{ouqlDH!q*9|
z7u+D&d#0KpEpC?V`|R*cwIzYA3A`tgZ3%1_!nRn%MEws$vP1C01U{aretJ8VjegAG
zM?Jd|*v+E=w}R^_JYi-}PRvx%nd;L7_9U=3fzJ~7Qk=%;=RZ$iUjq9R_#y#5RDW}(
z`)Ga3rCOF*>Oca;XQ|4w-0W9ecLlxK`+JFp5;&Z|kpzw=a4vx#67K25u>?*ga4Lc0
z34EQvHwm2Jz-Os%6Yjmomb28LS!(tybq{L)EcIOirxUO^>F3M-z`tFk5#==#I3t8S
zO^8p>&$~cE0?ATCNKh~&*lV{porDvJBw#1tBoI#^kwBE4S>$~*OA!OJR4f7FkF!+H
z*=olV&soWqp6!;NPvAlV*Auvrz(saDf!`9ioWP|7eoEly1b#`lH>J<@^e*b@B_aNr
z0I_&JMdaP%E0QJuohyB|x|+bXq(ax(YV2(F2V*9WOL!>1nZRuZQjyd@6S&2_WsP^`
zZ1oqTceWxwMja`=D`?GDS7xgR{~ufL9W^!eeGhMGN|7Q(KzbFJc@8Rwf;6RzG^GoI
zs5BL@(53g@d+)u2^xk_-Cdp(b$xJeIK}A8@dvc!7eAn-fcdfhj+IQb`&+T_IsW<S5
zcP9nq75sAp|K7kW3eqTed;^Wr1#=Ij=Qr?#$NdJL4WXwzmwxwOsl?wad3MA9Y6+kG
z=jaQWBrk6Oia%RYU%SL_MoOz7tAcC_(kcFnk~pLnl0m_%N#!*K8HHy`Dw!2zQSiD%
zgF}e}XUwi3hk_CcN-B6mK~4p4DJY;ImxA1i|LOUB3Th6eJPPtk^i7HWQa!-p7ek2&
z+vJxdyOwWXP(cxiGB2c{u<)lf0$qkuQQ^e|izjXR52aEHznIj|TUNx<T%X#3x0x%L
zGL%*hB~B_QNdc}Qe{NpEkm`Yyq=(%@=^X{{DmbTrza8_Qf(i-_C^)E~qJsAo3{Wso
z;m4rxfr1taS}OQZL1hJX71UEuMZrf3K34FFf~pFtDX6ZXhJy1$DO2N=_)y}vehq1o
z@_eX&39Kgf%rFWJ^Tk>UYAdM2C{b4052FFYX!0<sub_c~MhY4$_*6kd1xr3l`HTyF
zH|5%A{%gcm52M49tBHc93Ysej4I?gsFJ(3pv(FWLA%qpSFIZn*J~oV6DQK;ri-N8S
z+9+tNpreAX6>wF*RM1|*R|?umM$YxxaKE0#hEoSoK9XoB1>Y$6R>5~X6NXdw;WSG0
z`NRFvJ1gKzw0lJ9rtqUl_({Rf3cgqHgMyw(&)fs*aQaa}4+Zy!6Nl7#_7Z~(Bj^_e
zzbfdhppSw=BZxm;#5JiXq_2X0V)l0vU+gcu(Fnh)zbP1`V2#2L)?qM@vVvI(W-Az~
zV3>k&JWmu1S1>}sXa!>wjFh}{ByX1yG>Us>1PvcS8%EGr?*B$9Pe;({5fmLk6BJD3
z>7-yPPll!``A5<u>GR3rfs3xvIAxlG>56~#nWHm!Av8$gX3kXb-^LW?G}0gUISS?~
zSfpUFf_XfDM$&u*3%Dm0bQtMh^IgbeA?+G4()Y7O!BPb)6s(kjrjMj$3YH7sEC#1W
zQgkHEoS*V&B&|}gTET0hsOTtST&G~Yf?W!JSFnNSXT6lo3bybp9Yq@zY!apUD8J{o
z3g02PO_0UyLbzj@?-bs16pa~0yA|x=)iKH+!BwODO72y#Pr<cOv|qu!QN$t5Xn)^3
zq~NH6V~YQG=CFbzJRjBvijOA7<2*pe0w)xl<kfmEz^CQwj;2#Qd3cqr51i)S7)|$1
z`1)B<PMiy{eqO-^p10`(7ZqGqa7Do-?&mK89Qu!@tI{nu6e!Z?*95QgGT)Rkdo-y$
zUJ6_Vo&rsQuE19C&KNQjgcU@2!H)KC%QSg~_6=+qP3MLLA_|W83*_k&utt-m;OS_}
zF@_ukG0ws_>5ZW{Pna?O!$E_`P(r~?1-E(niNgOYe|;zA7Ej}MQf7{!I|}Yf;8YIh
z#?XBQf5^7{K*2)=e+o~15#L|JA1nA<2yfkwg#4r6Um^F$_;0;?l1%+i$WsN+ggj5`
zYz7stsCcU3nT9kf(yG|2VV{O{D$=Vs9Kw+hGN^c!%|b{M!fPrrs#v6Av5HJ8GOK8-
z;!71-RJ^X@eHE2dWL1$(MM)K<RAg6?Lq&cSZ>e}gMNSoYRJ^HzPnuP=0=b0b7M!y_
zz~YRvffr*auL?#E`BXGG<0}PJ6jV_}MNt*`#uATp`LR@pYaR*|7Ua_@#Z-PsGf-Sb
zyRlSfEY%&E5;_?up`x(ipKK|u;%yZH6+sncRFq}ou~d$YFZeU3-&mS5mJW@jS{DK-
zDoDk<D&A93UWGE2-cgZZ95J~sfoEL>6%!+YiYh9Mqr&3|mjjK&-~$yOs`ykzLlu=(
zR8dh=#m6c>Qc+b!H5Jv_b6VPSCGdw9=(HzLgZph=;9MxM?qFcu?m+EG;1d<KRMb;Z
zUxmIsP+P@!<EV~`HG2c?l|Ws|&K?dKfd<@f<LK}>db&R_eH^VDN1v%^q@sn&@617C
z6-`t$Q}MZq+vBLI%C8TiH^);Z-G7zq7t-+GPX(H@!|~K$JTYf)gQ9^}DyEI6)+#!V
zr+(vU%Xn&|;?#Izv7L(cDu$^TuHq{d9aQvG(Tgore66CZif$@8@o?-9e52x9>AG`H
z;5!waRdi8dji+8MQn;@e`TgO=!+|H`>5U20*$H%4@x6*4q(wX;JyiTCytnDsiWTns
zpH%#;qOXd6Dt=M%s|xO}mJ_HqkL(1hIf42J;nJCNul83lK*eAcL%5O?XrRh3s1N)m
zIAH<}Qn7sk@x++z1h_JPn}MM!E=?eB0==9-BUFs!AyzR-Md^t&O2t?e<9H}1(r6Vt
zc4Jh2v40?PD$rRCj8`#1MURQpaw2USmBK#Pg#(k>K*bCdGgVCGYOD)P<2B_3-UtQq
zL;}-Q{COzAQLg7K6|+^$Q!$_IC(;}h>nHjZE1?JGs^AV}!pZ^_3uQU*@bQf0b#Y}P
zEm5&l#YL{Uie)O6tJtk#kBSv4R;t*jVv~whJk@#rs93AwuZhH~ti$n?@fQN?RO|@(
zlYax3$X$BDUnZM31u{?a-{QVm#TGVDu~WrX?$}ARU0ShCMSM$uqctY^A4Dk7CZ*LR
z`f(DCoJ700Z@EOv_nGcsV6TdODo&_4$xWL?`*}Z6aYV%d6$eE*B)D@DMK1XLaB&hH
zRgsuP$5ell=Mg{76K{Wj!^=r@O2ujJ4Hf5AoZ+47M1VW+tjw|eld1Y-`u9TMf@EY@
z-6vDa$^3%cz-1LzRNPT<SH)Eo*HlDQL{(f@af8>F3WGhUP*sFfXguPRY38{=rn)KH
zCez%t0d=y!)!d&<VHGB?#AE)XeYPdQZR8HDbTMG5u(?B2xH4*viWu*fQ)t$CzeT*8
zv6;t>QgKtoE$Kk+3Z6f_<g4uo+?I`nn_py#|ATl>#eEfzRXpK2rs9E$zg6&r<Y9WK
zg1h=p88ZIiYaR~##Y3|tz}@vo#Xl<k6-!olr>Z=~pT__3O5}}H#Y<iS=L64plI#pT
zSCQ+uKRRsi<rEq@#qWHCu*M8<;Krs6AzcU)Lzomodfxm)_%#H6fa_J>{6lyngq$H{
z3}L|(dOd`!A?%q#nL@}M^3Nw^38Bh>lxtJ`GoRT){*NI4r|4CzT=o!hgm8NbrJYKJ
zruvvGgxn$2388KXc|v%TGluX{2zf)u7eet6N`(AdDD#I<G=z>*=`D#C5M;ez2!)co
zu#h6`VXA+wwU|Wv2`?E!sSw^3W%^Vq9YVQeuD3%dljLQEte;AO5Q4%}Qj<a;A>~t}
z%~H<JNJ)L}`@IlOP9+W%gj5XSeIb>S`UgTj6s#OVRE!@_rK;kpI(OYPswTYjG^&yG
zUsK4(A$*clYK2f+INyKHt*aM8{SaD*&_=`tg3UtsG=zpBd=^3@PMzlW1Bb?vT74Qd
z5z<tUn~<9NxkSGRp}7ziTL@_>*h;Y1G-?~dmm#zd;VV(vg|Kv*e=|JWkDum01KuHo
z?<J`tkJRTWUx(01$Tx!B1iuyhE`-iPx(KpySDruOq`N3rg#Qr2kK(XL2)%^#6yy@Q
z2|o${S@0J@zFn4+dWX;_guWs43t@N&BSPpO!T>&KnNCB*Y+wk3cy9CKz!JSBy)>Ac
zpVogagFha$^ozjI5Qc^LR3R~E92vr>5Jpe;*XC%R;nQhs2;)K+69Ruug+t@%G@jSa
zt+EpYdH?Jt#sgkSnH<8D5VnS}Erh8&Ug-lIHiR%O<iEakdI&Rw%oJQDI7@JL2y;T1
z8^XL0=7+F^JDitW$bUN}XI#kM<aMmmr_-Vk7E2b^Idz%XEKe$IwnF$y!Q$inayhK#
zs*18!aOZSdCmGjE^c{9Soi?&Eoi+(>4q;0O-gJ67ofz}ZpzR^-4*Bng49?)K3AJX>
zPQhJ*zYDgTL3={j8$$0Hv@e7MAsh^0e+Wey1~{-dWd^OALC0s%A<<bm8uFiK42NKb
za4dx5A)E;Lw>6&Q{YS{j5KakU@pK4hgr5!ZjTZh1jmNc9E{JkX@S@<Q5dN7#94>QP
zgkMc6oQ1>n5N?E^@Oqp{Y6zO-Vm&0J)J)QoiV;G!nSMbLUe3HxXh_ju$+$!F=YTET
z5sZZp55eVr3*n_G3BlWfY<x3>Tf*DV{NI!NcS5)u!o3jghww)T&m{Fh2oJf!A^aP{
zpFBVz{2jt0-fd<E`^}^|GpWjz;FNU!eSi&fq_C^UAv_7;zYrf7W6w<b|22Cqo?nPV
z&cbHbr4Fy~UjPkh`QTqeNoi4f!6F)pYRI7BRSmC+l3$Qpkx@e?4Vg7$(eS#4oEmaz
z$f_Zmh8!B+(2!b6cFnI6*Os$z#s067xi#d`kXJ)K&95*UzbS+*xlyTkQ=9yj=D!A^
zfRtNMu#g~kMPbcvDSPHnOha)EB_xR(#ZR@fnEGscDG@nZTFBcP$_ObdSWYk?_?LJi
z4do@eQ^PwN-qkQc!$b}5X{exKq$E|;@V<sGHMG-ENy7&k>T0N`;X}=T7QU*6YMTG~
zu*w>$X#V>UK9XFi50Y2cP(wp)QEEzREe$Vc(#N8FBFHyzrnZZ{)zJ_e5nL+|mDktM
zKtp2<O?b$jmHkvhfmwbJG~^N&q<kjWNRVGgz)DjM%{2c({#F`3m$F(2ej%ka7v#N*
zJ+u^_TEo_2(?*oGf_y6}+qBp4m4;t5{K|vHUxC!nSwj~M9W{Kdp_5pCr}=LH_(u4*
zg8bMf=S{7DR}I}X{Gjn!Uv%d_oJHSjXfcalX6TPsD)x|EJ*5t*N-u7L27cb3dy>P?
zlEg0o;PLIPp}&R!nt!)y9}Rsash@aAZOcFny=T!74MR2jCi)=3!J7XjgtV3ZH-Cm{
z7%qBhi6fFWT<9p_qXowZj^$x>Q^pDB0UFPpEH6)(B+6DnZq8&4Q#4GK=rj#WG%VFH
zUBe6wGkKn9n6F`hhS?hCNM$(7TruXlF`p;MZ>3<qFxeZ6H7pX&HRrD2(m8dRhUJ?7
z6_|;$XoZHA>`lWu4XeZh8?4c=S~$OYf}^Sa*Nd`A!)6T|q<c4t!ZU|$wg^wPOzo3x
z8n$cLAvzmy=P%sld*iT+tCZAt3)#anQ`X>q4F@#X8XOG=H5}4#Uc&_qZPEn~YdEgq
zgzzI8j`9Gd53+tt6y_({SYGLWR`X9&pVDwz!+rVmz!_1(l6p?~s#$bV!zJOGhRYhR
zX#S0|H+YXqAG|6$N3UtvHH)rGly!Ei@X|;h{3?A=<>{S17!qVf7aK!EScu6Zl`a_7
z5D~%|S9kUmOT%AMjTkp!7TwlxN9^MoTn(Ovgoa}2gSSLva#LFOM`vGTC!FQ3=HI{l
zP{TbT_XS!1L&Jk4XM;bvAk9Bx|F?#JH2f<LA88oh+3!pak9l`W7kncAnfxb7so!FF
z&Kt6Zu{y@-c*#z5e5a$cj#qS~(ebYCe{3kNj&wS52v0AVO)!J*e-rst9k1#5ElVJy
zj?6l;=(sqGPbq*uzRcq5y8mJ5tU3<n3NX1ji?ZbiyqrbZ#Y3Li#4m<=Lq|>>xpd?f
z@f{s`biApf99L;J<<*f-M{yk`bmZ6ZmX7ZW2a4(_prfFUB04^uO`Wm^3h7`htYcZR
z0F#!v0`JbI*;xWy|6<&z+5X3%`Rmmsxnerr)=@@BX&p_w1-S`~XY%-1R>zRpbbdC)
zXVaY7v|}~}bX3S12<k|Y%8>4V+q%5)uL}j<nnPT}igWz8TD`}XIx6aTUq^EtEp$}U
z@qvzpIzH3!p^nNrKGyMxjw(7n(otPU4IPc<Q0F;RRmZS7R85-3mFEWX=dHO9Yf2Au
z4d;~z)Y4H~$Ni##209kap*lM1>Zqq<?;PUFJ6QuP)))H%c>`DH(5E`?&LIxm6^(Q>
zmZWAnh8OlfpWTGpE(+&;ZLa@Bz?J-g&vksEqwMQ}N^b=iTk2?~<7*j|);ikg=pfB+
zoh{H-M>`$W=F*osI9hZrF}7zeuD%k_RZICkJMu{754a@)ox~3p^o@>h#eg|y?4qNq
zjvsXYs}tP>yK_Hq<>fmRp*l!k*Z(LO<BvLe=;*0q<!(Q45@+e9<0l<I>-dH1#`93e
zAZ}y5KyMxWboAG;Y8LwF=qqB+xx`5WbPUw7V3uz-bS|ZmMYAxNM_<fF=ol(wxF8!0
zlZtVn)5OC_9iw!NPPM5Q7{m6Wr#c+3V}kBqzHDk>qK-*CX$=%GFj>bG?gSlYbWGJT
zO~-m28+1(9F@x))V<DHKWBFW~qk|vP;V?_bY*7x*C64mrLUScLPse<*VV$o)Ez+@A
zqHA<4(Xo_U&HXTsmg!LD(sCUubo?=wm}i_vE4lyY(ak9-rRGt+c{F1lt=6$_9-Wv+
zYsJYr9o9U0InOU~qmE5F4)FTbk?DBKW*s|q?9#DC$5tJM=F>J_ck^jG&;0q+a6au2
z=j^}#eEMC-ZXNq{?B~grJ7o{IF?Y&dL3TBLK5=y2d|Eav<<NX$a!7|dpN{d4q2sWQ
zBRYByOJSQ`Q&Ns{7tN!G^C{y3I-%o~IANbBx#r@h&;sJ<Ssmwir!w${f%7^p=y;&x
zA@4{!E^(uD*g7ujxT3?*5!P{)7wH1JuH%M|Yh1|%{>@$d2`z=&_)b985fajUf&X1C
zO~;4@v{<+<`fHT~pQZ#%;ZdHn!9YYfJJ};<j*b|2DNkk{aUHIXn>udk@N^`^lI=qa
z=-~p&v5?9wq{a*Bc2Z|2T^G_liE`<G2)WP8GZ;wyMp(<rfj@Qpr6a9@bO!#`@kqy0
z9nW-}tQ7c1N1yiskGakZ>0h2&3;m|C@<hjflC*OnarC*47u*#K=@rAbe<^ukph~&G
zpYH}3IaeCPH+UrW=?!Es@VbGl23|G%Udm`7lY!TSr*;mDnGKX%L|F`EU*vZkhdM&C
z8R)o(vWqddZoneqZpVglISv2saDD^14FBtOxea`qCnb-8Hx2&>D6fHhhQIOhzjA)^
zh!4H^X{I@g=+RaGnsq?~K?5lU3K@K2A4LolHT)Y$N*gG~yaP&d|M1sr4U{l2b4_5!
zBI0N37)u#Ayol6A#5WJWZQ$M_DkIh4eW@(h-#|c0f3nEm-g7M`GEm+?O#>ersJ<rf
zj)8X#yl40i$K_iSs9@mWnm|PZ8`cC^DZe(r<b4B`MEO9Fl@AS6PVy>3J~B{MNHxLg
z$<!J`Xfb_apq7F91{xTsEyc0_x(4b9zgshfqxHm?TgNrw=%)rgGtkID!=(L|vVq11
zo=R$l4j8&7(8R#CHGu|;shNS#4SZpsxq(XtE*ofJprwIL1~waLWuUczP6oc=&N0AG
zig9Q!q^;nWg6&dqF>&fw!aML-8~9o{580j#{!#k32EH>e-M|b3oegv`FxJ3016>Vt
zGcer12m{?E%TNQu4190k2LnHf@{?c>!JdL#Rxcs`!M}lDc#<Ubfd+afc^?CP4fHe6
zUz7p=r!S@{QsLi38I;rq8yJ%0Y_L{rQYYR>1EUO#HZVpESmfvFxEkELCw~R`4=G2-
z^Yk+?RSYH?n8Z83fhmUn9=YR-iMxUcn=wi47RG4?IEnpmm}y|Ofi(tZ8JNvZ4F7-b
zA_I#Ju;pCAc?RYSSs=*zLLvMx;1YxH!w)Vqz*Sl*ZaK=%my5#U3Ii*JuSzQXzih44
zmi??Zu+HFDK=^O8<H~F>uu(jxwvlyS3tKp&fxQN{a@`DUH~h!#cNvH-rX2<bS1-q5
zC$Hs~Wtlu$Ourl0&0EA0YBMT@qx*OzE}{Jf4)A0v5Qt_A95ir<mvFPdIbM<msx6_j
zJOh`|5#dJ#j|m<ZWP=k1PA2&&UZ+WZ#_+$E!Ul}t-&1-nq4NeV7`VtYO+?n2T;V;9
zAI~=sGH{g_f`RLX|9_l=V&H~wKJ}EUu%%`|HxM`A8ZbC7&(ho}{L8g$3C-D_Vv4tj
z;a|4q5H(;4x08y)8|Lk@F+twhJlSXN8MtpCA^fHw?}4|3+%|AW$X&sG+;wucu*Z0R
zpZtT}ChZ^cnq5MFva2POeknaN@DJ~VVZSZ^GFeI-UJv83@Fz*-Ki&$G{F#vF23`nx
zDTuJ2_mwcJFQqhsX$8{>vY0-M48mU(d`&Q8GBr~enUg$A7%i6)XUQr)*=;r<*~7>Y
z#v8(O3g#Eg6-Mqb@`Ukb7<t3UCnD!s`FpU3H0MU2AV=Ry>IK3mnB?V`2MbHvx%owe
z6csEMMsXn}lBp%bD3#=;!+2YGnWR!SjB-gH5E2X{MF=JJtNi}YFy0G8zYXIyDuhun
z>>u^rxrO(`s1(M^TUd1qAB6FtWJ!MumBXkK#)F%3<|mA*VSE<%c{T2<Fb+m=D1sVc
z)C^;UiIFBg4&#$B{tn|&7`4R7j4)<~QCoPOFzSX;FO2#U9TP@_Fg^`qh(sH*^DsUS
z;|qy43ZqFFO~Ys$hI1gufy-?c_FqM~Z45?bO<}@H^DtV3F({1HOR1NJmSKMb=S`!P
zIB6Y5n=smj@nsm_hw($$-;vs}O&FcRXfIJ#z7o<QjE+L4<nlMVZ<489!uU4HzYC*t
zlCxRYB<~hR_avXNlzt4OM;LuX>6z4j7Sc=br~k*#FQWV!MsIP#*}3$-Ve}Kdzu>?y
z1_<G#)C&BTEOBrc9C-KR-WVFjurP-6aD*{RdSE0^n;LX@3}##oGGUw1qVtp2BeXIc
z9UI0tQJ9YpV}kIBf|CR%3r-Q7DmYDWx*+#CXPgzrY>tMpTf{kGYzSjx7<0pz7sh-M
zSB9}Fj0IsVl<1-`mWHt`jKyIr3FFvOzi#$YdbX67^Ez7QM_2H4T}GwT_}f}jQC5dB
zav7})V-0T+|D~)ISDe~y8Lbz-Sj;vF-<nL_9L5&mdnJ|aw}r7?l&i~VM;MGd1$PNP
zSVnuo*c-;(Fz$u1FO2<RTnyt<7zcRThjAi|lal>V7)Qc5D*SL5Lk|TDj=?cr;A3!H
zL@tXtW0vK9i%x}cTJ*9KJtO?n<#aZTb76E_PUm?=ET`ei=>m7oa$<ftjN@W_BaACz
ze^v0B;Po&f%PGUIAme|_NeM#@Bg+cn5E7#CdJn@0BOHbqMnc3$7*Qc^7?u#u>j<%V
z!bo=Z5ECUH2B)U_^upjM^P6GZ3gfnLj@}WHnz70Xx-WJ6Ly%kD=!U;|AB6ERj6cKp
zOZ3!kNyUG{_?LG)6D3SM4&#X!<TCMJ7*B;~G5tP#7RHM(UWV~JjOHu+{#>xo_Y6r*
zXW|thX#~>>a%%3i!Sp6Fn0VF1YbG)$^;2_#8BJ{88O$Weq}K|Xu!7c!=hsbS70Yab
z*-hjy@rLl6COQoWo?1bFPYJp!=%v`_Hj&4~n<ny#O@0$^naC$R)u4dzLM95EC@7rk
zmRiXo5-nz;Xi~qpJy>9+-@uY4N||VA;xiMaO}s4zl}(f}QPxCxiIz*|A`=1OLBSM3
zo|EjSig<g+#JeJXxsu*9QNct-iB>Z4fr<Bp_ZQ0#O>lPROgKA}DkeS>URAKVU^T&h
zSA#W#)a0K46LZDGC!%oPS|(}>uOnDDsn-)yU$BATrzZAF-bN-GoA{dh*+df)O--~h
z(N=7l3AQxxxrr}?H#gBj2$#hqb)mHqrFBwIon~K}XrENtnMfb?dxpbTB6cv*QAqhM
zzW9yst|qz(`Bv~d6P<;yK^GHeq_*8f`N_o3LcTZggNYwa^f1xWL@yCzE2+*B-|chB
zl6QLW7Zbml7%Hi~P4p2`bWO1DzrnsHhDeloKOO}W157X<XyP{$gLs;)B94|994tu<
zR#BH#G;WnYXE+QqF<d;X6J?Z%(L8w~C==n&Ct<7!)kMg|I1}Sd>|#q36HH7rG0((&
z$vDZxOd*p^OffN4_zb~mg3|@LtTgFTj;x~aDw@Tu{v$YB^f`ia1=|nttF*wxLKCY@
ztTwSo^u;EY@T`{YeW@tRQ}y$~WhQ@{#?Q4v6ecT8@N#3qVU3BkCf1pFBCT65HroX^
znAj*}lZnl|Bv(^~tp3l(786@}!mp-ng56hBBTicFch?RRJ7qGAljv>}d&I*fo{c8<
znK&!a{U#2WI4%63i9;q%nmA?Ru!$okj+;0kNk_Tgy3jG<OgL~6jI1+ZOifDVXSg?{
zP!`Xzlht%ykjVuh7fsl!Y28e})t60N5hqtoTr+W9IP0wk_?~Z=P)s~qO&s1@Lz)TQ
zM6L*OM_`x;oA}ejUnWcw5fe8}+%gdr4~~hL2}`&wm?9V#WY3-nS9tYt|LgyRM0ri!
zHu=PY-@rdi+%a+2#63yki?&_Y2Jf5rN>T?4J}~hxnUS;nZQ>E{#t~$R;2#tJ^8Ot0
z8^YnSiKk*Ye+@n1UjgB*JU{7~iRUJEub~$rz7&3a4MFn062Tv9C`|+z*AkPo5u}Tt
z_*zOYdeya*A%d2Y^jZYH))KcgV+5HZn7EeKt);fPQeKZBtGLP;K{g?8MEqHuJ%W>K
zDTgS|T1vCdZ#C<T1=dj>(F;USFoHLQ=M~H+n4b@l#r`dcHWOY*c<~4d3n?PV-ik*2
zqljV={3K?ql#ry75tNEx@;WM=w0v+dSXTHi5&RlKxd;Lg1S3d^pmhXoBA^J$M^Gn%
zx)Hn+@h4uD2tJD7UCH%c1QjBv7{U8o?J=k<Vx<UT>j>-Vg9z5IqmL574~3jvN3&JG
zu~j4d>B(SqZczmM3s_B}taGR-9zKcSV<AP>`(0Ek!nZi0s_?dg^(6H(!TJ$2h~U!*
zhClE<G)$7zW2Z)9(^!yGn?%qw$(u#+d6It-L380P1Y0KcRzmu$r?wG%DZH~_y9hc7
zX&=E?5p)pVkvnjzzsYbxOum+ArxU?%B=y?}zKdY`dg7r;T^*BV2D?PiHG*ytY?XF(
z7fa6meFQ&5aCSZY7(tH+dPd-`CyxHaQ%>|5eS>K>P@xU<a|G2kP^%5pJAytDtchT4
z1brju7r~4OW=7CIf&meXi(q^N1I7Q~2!=%PoA5z`sr4Bue0T&SA{h4n=p%)XieNNX
zLt4i*923D<(QCir?~T81@JDI_uL2RLL@-InWI;}vEC&1&HdT~q5p3H))03%uQGQkg
zvm;m$LCFHX!#NQwiePaBbH!#JPZF79+<OZmxV(WD3f|v9Ju{{(i6Fy9S}vBnpq56k
zOn8xveywT<t`udJ;A%lmYA_b-gm2*?;8`ksLo#)vkWGS{1>1?MZNj$;4%|pPBG?(h
zE{X1qU>_5y>TXf?@MPA5vo;cA>LCP|yI+zHa4vCpID#X*#B9{Fag<jXFGCAK%b!Tc
zBPbe0u_#XP?!oINg44X+Me%wRXLu$=@Far&A~+Yp`3Q90s3W)_&N=U;2rdf0ETvo)
zekFpdLas${SM=)=y&<Rws)8Xw_M=76EO{Ir7V)15%m^Y8L?f^wup@9Hcx{v4+Z<Zm
z48|gev;PS0iM<;Ei={64sh%i_2yQ0*-x6|L@D8``m~VEU8@`GD5HZ(pLFOzzh~S|p
ze+vF3__rXZK8m20n6=wP|3>hbC;29tpRCo>2%bgoTy`7YcG&(!1g}JqCW@Cy4~Y7G
z&c&sTB3%@(M)6t{Yi<V9N0C92ICYme9JSf6B>zw{W{e_J6xt@@kXgtRvB?@mo+#do
zB3l&MC4039atL`NikwlX8B%gZkz15Po2klX-&=#tlvk9~Ia3M<$rnX_A#VwG7BjXi
z7)2pbm=_jOL~!J0Djr3ND7HtjBZ`tyl#1f3C^|$@I*PZWs2@dxD9VU&#VFp7qO9<8
zQ3Rq0Mv)Q)MNvMArBc>GL3J~|!`0qG6}aY`>D?&a6T<w#X5#TJy*XGZiVvcwC*HVL
zA4dKEuyvx?wIEnIiYifj6h+mjKg87qnN;IKw-6H!HKM4!g=$LD$5DJDq*l_hb`<T!
zvToA<z%71{&EG<wM$s^e#!)nh`u}-Z{7h_iZlOj(77q_LjiOl;Eu&}^#pfb^5k+(E
zhd%yL@*c>?8%$bA(&a7GI*K+?d?``Z+j1XX^9`a>XgjV<6i>EL`@TWG>x}h|QG6Z6
zk5Tl9qEi&#MA4N8cPo7x1s_6p7C+w!4wqfDi|`NO=j|3n_b9$kmi0r_|2<_r)v{+4
zy`oqssXs;Wa}<4}=oiH=N&DVW{F>zHt_1redHJn=SM-l!U=+VaF+lXjTj|HG{EPzz
zNBPrcektR(Qnuy6A;S5WYiJb1q8J{<h$u!z;ccZUQH+XWbQBY!{%;(IF+#=(j*a@q
z8>#yEC^l@Rvs;Oy6D4($;AFuPCxV|X4^9<6O>jD|vTd}Xe{iOhUUD1FieffT+HJ&P
zj*z*6^P=E?%JZXGkW95-O<5$l7Dus!XUjHP8pTRcmT~Jcr*zy#%cEEk1(T~sgN&=9
zSj{UsIiog2u~zuHsDG@oKB-q#{n@yYdu$tR5^=NOmMFF+ZMH@6Z?+UR+sV^AinJEe
z@s1tE?kLVhabBvyKk<8_*eiTr6i1^tCVYPshxY~#L~&3E^FvI8A4w`Rw$X7hJ{iR+
z-v5R3U~SswFP76>;&wX21#P3-+x$^J%Rdv_X<_D+3sGE*LgBS3SuP1)jpB0B!xdhJ
z+o{EN`e{2|i{iTIH=>xhomOop#t?5}Jno|Fg5fC4?PMf99NSK&C=tP^pe1MvI)X7l
z&KMWsa*uJw?Uab(W)!!?+n-6Fx1;=NJbyOc6}%^SKbiW6kOxsb6p~{HmEGaD`mZSd
z7UfYC{|Nb)_j4hSd3g%?FN$YEo(d|mvYtorf_rHU_*8JJ0{OvxMKFzEs-E6L1`BUk
z$Z6qK(Yf4g7GASZOX`r(LM98DEo8Cqx`nJ3j_jaLJ7~xbTD60iCxmdW>=tr}htwmk
zTo!U$C}5$Wh<OC_3%)6s*FruE*y-=CHFEkJ#ap8D=1|B&VGAWKloF+gg`yUUSuh6r
zdlZM_7D}+qPQRD<hl#QJPAV<NWd+~1P)5jCJE^~zm6Paf;VBl#f@2|Op}d86ER3))
z(!#qI-m~zdg&r0vSg2^Bg@u+D-nUT6LIVq*ijxm4d}N`jg%2fKS#aA<s$zlh+)k=y
zp}K`S7V1h;4GW)G$hM1WTK>f5@UexvJAG2iLTw8(*9FV$A~vYKi|R=hZc%+99d^;+
zU48=_O0=<sCKf&u-pInzUBrQZshf)OxrHx;G_$aG7pc4G!7j@ByPv(e=qbNbD+{eH
zd}pDvg*F!2TIgV*qojUmp}mlH7V1l`)c<i`S=jjN|9bvwG5AKXlVHc+>02Q~B@36;
z#X>hxn0FPzTYYy6-&^=WqPEOZP8}?x+0()h(R*3=$--js^RtCtEc|Mrw}k-~26Bsj
zr#=??i)CMl_7e>KPJc<3Y`f_<NoCK2ER^2uH+--tY*SOBLoEzT+6))+)ovPPVYG$a
z7WRlThDXH0EDK{TjI%J_!UPLbles2Zm@Isfg}%FK@@`_Bl1$}a!)d~&TbLnam6Us8
zH_f&%$HGbrt1Qg5Fwep=F_>>*frUj$55{g<XyNbOly(m>F1E0Qr((vGr4|b9AtoI7
zuK_o0xrGn*&<e@O7YJ5cSR;Igg|!yeS^S`uzvpmRZ(#!uA`kr@KcgR327eX4S!}j&
zllRb8?wrR#4%;m3+(X+fT;n?Ip`Bv0OOTb{c^}wIW%klu3;Wo{!gUM#EgZ0L-ogb7
z2Q3`3aKge#3x|2fkc`JI9JO$a*O#0Y;5yXX>sKa=Eb4(H{i>d_a7K)opBB<_FAd&H
zXDyuLUfN5$_7WqfUX;`;7A^_7EXY6foOE?BU6m*kj^3~kwP0CLET|Sj7BmZ{80dmw
zLBqnmy~M|0jGQaOK8lE5cV2Mf(x5H8#6CZ%;a<O#xCNKDI2(Cvcoq^CURZc(;iiRK
z7XIQ9v~XK;{UOL%?g+WdyTLxXCwSjNr+qYFA3d<}(88a*TaNKhET?Xv%pY0!$HIS-
z@n69wf{z7fOMTe$)_wGpyJ#Oh6aBd$>)t+sjaO`BvGKZ%H1_}ILk1yfZKM;DKB>R5
zpI)``nvIO2@L$@@HZln>w%>329XThQ)kZcOxkS%yqpBq3u+i{(kdO1<5Iv`0J4qTK
z_@<4#Hp<#4CrSBi6coaTk@;=BC4AO?Dqv%~*cY-<*hUc>MQxOkP|U`~{Z!iaS4VLh
zC2ZW?Pni$+LsruEhp&_%AGE(M-uO`+t}}<lLxKStK^s+Ud}JfV2H6;VfY_kCjdyH(
zVB<sEKf2p8EBLOB_iR)U4^y@UE85@#Y<6;LcJO^0m25C6bAT8>IpF)RES5|<9H6Sg
ztJ|m{q?(O2wx74AL~GfoZR2C%p9pf&+yhicxFX*63D&pKz{Vv9mmPe{9m~_q!J7^~
zv(d=LEE}_JG`7*iMqeBKY&5me%*NL?I@#d8=yMxw57Mb=!7pqyx6#5zOWQx6-_b@Z
z8?9}0u>EtPZ3NqM=O3g;2dJ%$FKsa4&`y$=u-R9_d7U!<@Sxx1b|${D@vV*SQuFU@
z3_3_%k}c{iWWhn|Dx{l@9g>UjdmBI4_|eAPyTM*IezI}pAoZ}()5iUSl<5$aJVZa+
z_{BzVQEDEdUxl!J$3w)}N3sk)L~{;Ne;WgAjI}Y&#=vChgN6LYRTA=0_JkoehT0fr
zV>nO3!?fdQaD<JK+}K0JQ)ufU8pTywNn>n`w!u+8EV+J&R{qBSSpDG}FOz(ljS1p&
zqK!#5CiBcWOid5dRPO)7G=-aXm_~}S^e|1AEHlJ@reJo(cQuC#vT@MHAsh2-%(t=0
z#%3D}Y%H{~QY;q<vhfO@dr7`T$Wj~2Z2vOQa=~MVDfN<2kJG_bVzAnua#$<;zr(b_
z#yT6(!?a$Im7GWXt9To^8`lJxZ{hZ`E3x0kOHasd9x@?21uGo!2YnZFo_G`dRx}Z1
zkEC`NzEAjm!2^OLML%rgh>dGDuJidH8^>&1mek{dr)-?IaYFb>L3Y062%WKUR-)&*
zZb#^xjT_>PPgk<R1>OgE6F5SbcxOB6D@}|bU*EYRS*|Ails-x~Y$!JVwDFe>)ket1
z0~-%*Xf|}-D|l*&v0)=Fgs%gJZJ4}KtfYuwRFI>V5Zi_$B$m`aK1wdH%Kkx5Fd=wT
zki}a<Zriw%RPGAl`!TrM9}n|4{6BcvN-I)-wpcHGCHOZ_P8%5<yy{@Uq~Je1)h7j?
z3H~eiSn!G9e}YeK3^__{#^Je*7a}r$X#)-x9;H_t>=A=B4veFe)<HUP&Nk_V@X77h
z9AtF-pNSj}GC9cXfDe$eJIEs8@lkr+0b}lC#F$lhHV5U8(Wl4g8^Jdm<aChB!LVa=
z=@{KPM)QwRZi((ZMtL3Nb1>V%90&Owyyf5v2hAN6a8S^}dk!i%DCD59gK`c64vIJ^
z>YyY${4H2aD#mpy;h=buXFTrrWQpTcN|aBIQ)vfpJ7Ci4IF)fw)&Ua^KZs>e%*s1R
z5ki9ecpW==M>vyr9Tc1G&-027-gi*b!N-zR$w3tdA369yq8~aKb(}a<7P9&{RdsOe
zxPKbFhJ$LtIa=L8>^L!DhkPXbiGx}W>N%+Ipmwsvx<cx3!*>!+P~H>1aRc7`9W<7t
zhP?SZm_N)PnneSHjYMpG!vA+u@dP!IXj2ExxUn~bynXTi=+A{SY2l!ygYO)47PD3k
z+VijqZ|$IsgSHO7lxRD_QUm<9bKr9q9YkT?$w5cqUki4T8h#`ETftGHbP?XyK|di~
z9dr}YUGRHB_V$B=ABFc2?CGGFgP(-|nzZ@Z!7mcne&q@3?Vyh&rHYLGB|4O+7SCP>
z10Daz>o*639h_U|pXC_j;NS^TPtd~?G=wMcNuLaNFv7tE2NNBP6c1w@jCIiaW^j~)
z(L(sI8AnT<q;U=y#|zdxNgYlSM<+R$>|myYSq@m4;$XUi84jjObl6Fn=3u!PbL!EP
zWS%6BJ{Qb?irza#a~;fcu+PDM9#aPk9ISS*Mk=$=!Ab|KgfDWiSjZ9wOC2n8(C`#3
zchKT!@Y_=~<`gkmA<-_`Q&O{VU-2=_TFJHE!3H7g9GsWS>%55g5O<@4O%66Y*y3Q9
z81Qf3RtMW0Y<IAZtGALaouVC%f8KkigZrl_<7o<<CO(h!yMx`ljqq$d?N8C3r)jTn
zj!wSm&zS>UmiRpA;E;pE+|Q@!xPuc8jyO2#VC`w*11%Ph@d7#Rlape9%E4*gmrm2u
z({x4@_I8eUA-)#CQ#4n~n`it>kbEI>|DoUoUYKX-B5xgM=$A8e#lcl}9>cL1t~t2Q
zt1pJ?G2C#Va4TZS7=!8{#BFi#hXc)l?jY*G;u58-h=a<v{Q8F-n90)lwz1L!d0+B%
z+d*7(M=&Nh{fyrUt^?0O!okKfbjQJ62R9v@JwrFo&@BhIIeLaNob{t@a8JxWIZJkq
zlu~EufrE$Q>bZkI9sI>RszllC-wyr}{wS%mJxl*O_?2DV4o*HxPaOQ`;HjiOOWG8i
z=GT@F_Fg!6=>Rdj5<|Ke(#QO*BTWoxg)p!AYRcNPe*H6u@@i7&&F~~wYyf47A#)4`
zV<;4Zcb2k<!J9F>9z#~)*<#2M!y7SVPv(8)9KCgpa>kH5hF<3=R}3GVqZT6OiDBY7
zT6>O8oTI!kzOy2jFNXY*(PD!b3dF$2+q`*lm7bmRD^@s$;xUvEn<6n3jbWMG<WNkM
zpAH5~3VAz*GBK1AURp5!c|UvE7|O*^F^2bJsBoSFF;EQUV+h8O5<}zj^!<4nb)J@<
zr*~p_mu+GQT%ZHz>Ae{KK2JG>Yv-x{1!Ch$+?E)2U!W>6u=rsNm17ukfxf*!9A$%f
z7wDrHs*2|;7wG;4KVyv;YR1qbhMqBe9K$CuG>qZ17;42(n_G9$uV)>pGm{1})QzED
z4E06HEUBz-J|6ruY4c)Qun`v#L#r5Ci&*m_HHo3A@MbZ5A*9_!`aFi-7isE6YA#BP
z7+S{o^WSv(BE>J#3vu2ihOc7i5JTG-zD&(1*j_N-C8~JIuVF`tc8j6AkgsFtB;*^x
zZw0>->@3(tkTZ7Ws>=1XW|!#u7=DQ1#~2nbOPMe~c=2|y;mKh3DZw8uQLh+&ilI*o
zePjFuUivwPUy>d;`fHN+j$yUbr(X>HV>l%GQBelOU|phtG5p4DJVS$GSR-UGk5LRm
zV;CmUr7;YTVTABmF^m*4UT_o_9m5#mZ(jD7>R91S#>Mypuf8&Y=Wq;@M4v7=nJ2A~
zsWD6wGG|SYEjd)YOpPzo3=wC>_{j)gpB=*-QRc?5Pza0jgv=LQz_Ue4UnJ4RNt-1x
zOctH(mx;JMh84-wl`*VJ^3_bla;+%qVpuO^LkwF|ZBp?JZ4$CM#vi8iE4(#^Z82<*
zVMh%6k~TYq?2chqQu#dwSM2vBmAx^%OxA6G3<r|>K_LaM&|w*=BQgF!9;IIQIUd7_
z7_!9idK@QXI2A)8hMQcI7|z6SF@{T$<@EgESs~{H&kHuaLKlQ|zv55M%e>FWpu})R
z#H)hW1UdD33>)SLM_eH_hLDJHUcWKuJYgid{0bRD%oxJ_3v!qaUm^1fMPlH8e^EjH
zHDqqb;KUH)$#8{IFZh-`7UVM$T#Cy(ByW0Gi7%nPf0b^<a65)4Y#BqdtSNV5_#=h~
zQp#PydokP>;^&P7i|_I`y@xUU$?N4R{T0Kb82;g1i1&@FH2x|vZn#SSa$By_WA3i2
z{-(;Dlb-UF=DUOB&huyD^LY&RReHgL5(DBs=a62=D}reR(+Z}G<AoSxNJiP1EAyH-
z%qW;Cj=a|>bDTezLXECb);O}o@g|FLWETUz%9A^e9Kzoa%qf^lu=6$FVIJXQgy)MR
ze;mc)C?3aKq8An{AXrdv^))IK2P5a@P$Z6`q8}Hfgz&fHC=*9X;iUvi3&zE!Y#im{
zs1f(i7qN#x927_SID&Dch*|pUl=_46jzp`*vEB^6EBrk{&Q&3fio)NIqf#6nB=ssn
zJ`}7h$T#7Cl#H@cO}w$g>Ouzm6Ra7>$8mfT=dT;kgET3%;{G*#=C$MeX#lD<Bv>a7
zKI>bT^&!D}aok@MtS`Jl9G?ndy<r^f#kf%%jpJw%N7Fclc^K}YSsb6oQPxE{*Z-~m
zf_pEHHE}eLqeUDo<7gGf@Hj@q(K?Pcar_!b?>O4V@nsy{q~`4ezlq~pE=BlPadZ&U
z@4DZI9pjjDoxT?A6vx0pL5_YG$975W8prkP)H#kWLhfIu>^JD%SbzAs$MJm}KXA|A
z@csM}$B*Kc&xQ7gqbE1y2K5qT@>3i?3;*c`jk`gOp9VWW4fctnFV|nLFZYY1e;h;O
z;HwV<xEgT`7H_`^vj0JGek(Ffc;Od)@CFTG%lpB;>HW)0!z5Su265hzag35I^WzvD
z#~9(W<NihMv2o0h=s3agf~-%F)QNFS62i)4AyeX*Dr8zxpUxAeRarLRLT5_$S#f@m
zuOFQw(Yb>21am09zCifGI2OgRSoqR7mc_9|I2)8#Xn7nf;`}00S{cWtc(AEt?5WTy
zZnEP4+#gYBE!QCqxOm0I`ZzYk;l|;`vC+?hV{sghV{;r^#O=X2w#Knd_+G*7g1dPx
z4Wu1$?2KbqoL`vf|Ec7A4u6k>@wq~K;{3u!zuHw*+84)u$#o#k@9rbM9@kouIQ5X|
zhvPUB$I&>yE|0cJ(j}EnNYa%!t_nFB$Ei3@$N7D3bS92-ah#7MSBTE?$_>$HA-WL9
zcOkkM=Qk$Nun;l7B>b{qs(4LYh2qe762@^O&hI87B@UH0D2+lP`YS|C0vhRY7+jo2
z@i@Yg%Zwu;Waj>0G!BcWgho!B-{M02^Z{S-w0Wg0r_LI!(J01?OCvTot&ycsB95DJ
zyyQ0W?W1wrj^i)hd3e3A2;LE&e8hV<j(fbW<M<<vhjIKF=QnfGgE$)K#Adm5DzDRb
zIt|ll;h^9W-S68+aXg9Rzc~Kk$s>Lq3x*~2px{$co(n!p<)Xjf-PQ1&aNtu|X<Vdr
zQPf2-7wKH2cag)z8!j@qc-2K#*)(1g%<LkIkc=)e31JW6!NJM~z3!sbnP5MI&ioy0
zV^B6p<qH<s-Tz&-V9T5$zA2bXFt>|5LgpA$Po7H1>mr|v{4U;d`N2af=%SE|0>UpC
zbkpGH)TpqFBBB%s6N{Au*?(~tCBz$F@<?r3Nf)JDly>=O(^q<g>1`Kf#D=5e!W3{3
zbP;nA=X$yz7r(gp)kS$1@3?5_;xjRR*F^;v6<xgNVs)5~go%$o-*-{TMJ*S#U3?&B
zRb5nb@u7>#60PFmBOzfa{c)Ibn^fIJ4G}-)QcQotuPM<z_x<7E@Clb|`n9d&@@?}}
zUsCJ37-mvEQCM6o1`S+%DygYIWQ~ODCN<;s3U4CVRB*p!`P{`9E}FY&;o?gd?Oe3v
zfpgJTY+Ac~N3maYg$U)0P#f2O$aMMOU}m`ss6F>aggUwS#>H1II=JZQ@=cq>;cJ&~
zm86xz4@T%)7vH(~(M1o*(%D597hPT45F2)KKSGS%Tx5(=cOJDUeb27M_@k(w#G$8)
zUM|>@l@?Lz9i^Wn`m>;~xai|zyNewz`nu@nVyugCF8aF|;9{f;o)6rXfr7(a{N`ei
ziz!hWEXojW^@QN2DDg4OP}e__;bWNLlEfErM!5d<9VVk(eEqur12Njg7)d=7^}A@i
ziwQ1fx|k*6M8WAUCJC9$1qqod_##TvT-Z_nnIlHdKEuW4h(Fx3UA`BBmb+LXWDd_C
zi{`qR=YsFEnlHFOkfRG-EE2w0aEXhhE|$4`$)4B=KPAy^dXUXlx>)66t;^TNf~&b3
zSI`=%2ES&COXSeUB2HQ-2I~bkxY#I!^-V%H3vS_smejYom@XN2y4dC7tc!Cl`1Tt<
zwfMV>-7fY>Df?X<;MQ5R*Tp_j&RKrB2VESJ=o!JoE=~*Kq$5I(y6`MICj7YI3Bi+s
zrv&-7%vWvSTXCB&tI>HE7hGJIq>C;txqJzXu1NH<V2i84mNxw&S+2UcCL(8VJU_U@
zrW-C4o<BCJE<!>y9ws5WASW3v!bxtrhzO4+6-&rvo1CPg+vIXXcmwh9u7`w+n=W#B
z$nD{li`)F;>miMYJ1*|J_*?4pk4^EL!Fw*4aJVnz55Wg69=fPgu-u=5O#Tw`hC`21
z^YWS%@|gDx=YQk-#KnI+U9Zto!DoWc1z!j%{{>$Pf#;hA9ZKsVorg>wGJF22NgqXe
z4;h5N>LH_$*95ytDXBMwW)UU3;Ol}}J!BKY2MO$lPe|sF=o=n#dVGqN_}n1t%fv|@
z55+tb_wc5NykeHmLt!ELJ-p@lM{5N<6cVMNL|Hi@d0mH!h+b4MZR~$-FX5q_hk%EY
zqL=be+Cz~Ty)9VA!-ry7R-&x8k!VniQ#h5MDvA+Fw7lnY4l`o(o`(t^8hL2!p`wTP
z#o!YUl{|bPysF^tJ;4u!RQ6EC!$-ooz22<gCMl?zDAhgG@ci>RH9dSR3ZLLQF9uD<
z1Z#Py?V*n7^*y|L+h4PFJ^u4Z^>{4eeoGs8_*4uUdicx(pY>v~Oq}Y+`AD0ZcxdY3
zM-M&t_}|0l9=dtx?%@j$%{{dB@TKH!;h~j>*1}tQe9-IP#Mnj@KFQAxS4vs!#DJq+
zJhb=lm4^<Zq%NzD!oL>mB>0UW+kflfJK>!L*U0m>d~K_%$A^4=E37zu&mHCZ{0Fgl
z9;bW~?a7_*p|6Kt+&T|GOX{zJZ2XImJy}zFCzZ1=g8e-7_b|lcEzx&4z{5aET{|t<
z+@;?<43a4CkUd-)>|wM^Oooa*XW<{35gtZzeQx5Tn;69g9;PKQJ%KSE#(F4_K*0pY
zc^L2EjEA!xCU}_WVZDb9;(3zbEDw`~Oz|+)!(Nv(m!^4`F5*L%W_XzC@z;ujt(_o0
zwUou9*&gP2nCnkkTION7hj||6`;&wgcv$FRk%zB6>hIBFzm2q1l9nVzwqZ*)nC;OD
z534<_;l<*Cqa0Rw*e>L<M{7M~NzghEe|W^vk_jI-df4RQgj8>{;8qXYJZurpJy|V5
z+dc5pYCApb^031L@4c)Ky6#Vsd5j)*d)VWlWrFteU?qsjUJv_3Vb1?^4~TwH@Q@&z
z9rkd9E3XBQdN?NHal!QonwX&7|N8z<dN?IDIn9+!$h1k&IS=P~Mes)I;ev;Yyj|QR
z)x#wZmpxqfaKpnD$#qrm|DNNxCQ-hfl0EYy%!)*D(~pKcXdZMAh6mS!$4&NNdayk>
z9wNL0+@z=ni#LIr#GC`4<K>V_Vqy^Y&^4Jf@+KwNrx@JykZN#C%s9*9n{?O1J*mJ;
z5BL2+!QUPpiNOO8e<t%j^uXnEmcK+v<^Op2*TZwk{+K&on(&{8C&D>;O_Zk|o{0@N
z@V+Q7B%1LSA%RyCNRvR?1hOZPBY|`YfAfDef#w#{ClDJM%#gr4w}=-S^VcNx%^AUr
z2{2|7%q*Bi@O8ngg4q%nbU(;uZzPbDl?3u8kSl>tZ&98EhTWpv34C{pm@K?SJ8t=>
z-18-H;TGjjfX~3+yhUkl(_6gaZu?2^-=;zd6y_`mbWWg10!0(3kwDD^iX~7yfp-&l
zFM$$L!_o=7oj^(9r3ATAEpJnq1j;5rqLfRZ_iYL!5KLgkZQ693PTi)I1pd2CdGGk#
zx=rO1c>fN)lki_O%Ks3X+@T5yRFv!=agvY^x!)A3l)wiGbid=zA`T<(P-W4pB(U-h
zJ>S8%4+X0xP))K_PoSlo{Wv1_A1Clh0<98goj|PwYA5go_kRL)5-{&jGs#kyD|UzK
zaW~$j`UzCHOAWXu6KI(5PtrC@;OD#andqF<;x087y@@DIlX~0qDW8isb~5d*U)2@~
zoD$Mf^bNw>B+xd24heJ=@k_z>g6$G;#fI~K#TEF=Z|sY^^feFeJ>o5>lMv?LB=BvL
z^M=D_T@v_JoODf~n~?5;KM8)Hzz+%hm_UyNdNSUlUfjd?sM$ULRsp_eV62dz#hAVQ
zB4qhJ>YYHJ1o|e>Pn0PM^iN<w0>cv+k-)$NeoJ6*0#EPJpal44)W|(z%yKAr@E#3G
zAoqRZq@iLkj5{hd%BO%5=z5<fB``{IjZUE6q2L%nCS&<mK=^pU2}ylo0-xO{HW+!I
zCMUqS{60;UimfpGzM7H1OkQ+1k>)05B``aIqX`^KU`_&a6WEc!PBEUBz`6w1C-DC<
zbrwKUT<_ODxVyVM!!+)$AxN;`5+G>M;BE;J+}+)sAMWmM!6EFp`wZ~CeU|&xziR5K
z=broC+cMp~yR$PrYvQmr4(sCdo4D>|*ZMeYkWmhOmu_UTNs3dH*-UOBw~}ui#%*!f
zPM3lmad6Eyi0tC10B6`s-xr7dl<M+(dmIkZkHq1S9B)qJVKyIaH;BtZ&n__3;05G3
z^Yd}oD|sAF$Y~OXQw&QyHk_uMi9;u+u~PiNIGmG{&S@NLHAuL~X}rLii)8%gt**q$
z6&{b{@Py&DINXfGEjdcrl%Gd8^pi+mjoWd!6Nme8c)+e3PUBt5y*R`<jd6VI_(Qp3
z>@hTO86U+VsmoZxW$fuPO7m$Pp2fi_J0uRz<M1L57LI)xhgWih$KeZ`|Hk39?0lDT
zqDx=m8`(ye@h$m|d{2HLKa!tFDf=9Ur!J#N9H%nH!5jw<=c&R^-^k5aiqAJ#<6vWf
zopi(@ty^DKY0@o2;t*n&Hx548)$(e;Tp8R(e;fjA_Hr91x{b@-#)EF-9k(&gZA|Df
zhB+i6N44w$k1<AmCBKp1NtpCr`Jo_8WI|#SDw$B(gd`>;HR(SH@{q|)NN++06Ox;d
z!i1D2q+*`VglZmRYI<4|(y%E>JC9L*N0rxCWrmR+V@8wyI&c;fvQjdckeRa5W0X9b
z3E53(>DJGVQgO&(LQa$XD2H5u<x-qmdae4UST51hJnYfu%qy#Hg1i=&--H4t6g1(k
z$5@D~VPipI6N<1|lr)-9j8dGG8A_N?l3vP$(i8((MmEr^FQNpgsrs@el%tndNd*%s
zDxb{P2dbD*RV7Wl#%lCFoTsJ<wM;l_!Z8zSn^4Du$tFxOp{@z_OlTpSZ$f<&8gR%<
zudyMeDcOjWRcdTP6Z&+o@h1}=Bq+0vlmE=HnF-BR<teZ67ZX~UFu;U?CbTx`uj>3}
zLQfOgn9$aQb|(C4LU-1;H$mQr)yag;CV7t#I<o2a>hI3V>@#*Tp{q&1Aa|2J;L}5S
z$OTy*&3wiloZ&OyTF{H$N3BC|%I_x3;olK`P3UKm-;4BvN*?j@a-rc569$<u!i13~
z3^rki3By^_*QY-V@)*kIFcYS!<WDAV#>+c%FxrIia#;F}V;GJ#;k3`V-lu;=eVhr8
zeMSdIO<>JL6AJr{lSq*|e&bY`)`YbjJDpr^!V1a^6aJDv0Zf=_LKnaBAK4J*vrL#x
z8R<7>Jz<zjpKrnfIi!yn=E-5{H;TyL*TRJ+9QGR*k&DSC<Wf?)mQiMh4f-WiUjOH8
zBCAYTO<zMA#u?=10P9RxZ^8y9JIIYDY%*c930q7EA2)0>;nGxnr``1%x0>+UZ;bej
z^7qAd7H16@cT#qlu-k+^^dsb66UqjR`%EZ$#IT<{KuYtV35V#1RWfy*p=m&0+v76U
zgnwm0CY&(I@1MA7!YxjC%7kl_(<YodXgFiSSrHS?%Nm++*@O!+>Xq>#YeWVFj57kp
z9RcGNCRfQTT*^oCx(PQ-KmJK1i<aa0wh4Dkc*sfw_4T=HLY|=U9w~BP&JlXGpi!ES
zSlKoxzZK(&2~SOU#^kvPFDS!;#+Q^;FAVZm{3{dOa}A4wMmg}_nDCZe4iny)@ZJQI
z31%iAO!!RsNPZ$^W%dM(|IxpYaVj6V$6%q`Rbr*s$o}N*pwX!$zRYcchl$MWrT9oc
z8ITj45+cK-R7OmQ(qrUT@|)`YZUW5u`IvxANG2jBOl;P_x=19c8Oh8@&b)vb1<go7
zPf4aCQ=5^-jI?H?Gb1OH^kh~t1DTP`L}n(lkg|xlpfQ{B?35g&ynQ+sCAS$#LdHDw
zyk-;*=}&h)Gx9T$k5<VCtP0U3|3eDsMaZIN6f>i^870hUV#ZHqlr*E18THs(+6;pk
z){wEL8D*GMC5>iiX8FSh<;<weq`X=Go3|n<Qo)Q`GU|h|5_>z+rCG&{@gd{tkg*!`
z>g4}I#u{ck;A+=mQk$$3-z)FAq9hON+f|?5z>J2JMyjT<tTqdpn&odOv^S%J8O>C0
zYcrbDTaYcuUsP`^GwO$p-NVK<Oxlv|$X{iJ!^V|iqfnOK(Tv~Js7_{dHlvFfU77SC
zyP46Q(v%<AdA?bHZTv*o*wc(&X7o1WclP!-<9S&BO}md7eVOz#BN#Sjj_6Af5e{HJ
z(2Vj7B^hMKU^9j=A8N)#isZv6!^uC%5#&g6lo_KbQaOe)mK-OWrt%3C`6YG|WimO1
zoJvkJV>)Gq8Otd$+h3Hw$(d%%qRb}$F=LJybIq7%#v(HoGn{Y60y7qxf4oC=gnFy0
z$PzP_nz4*!|2L2K70g$XtH{;l8gi`}>nQ8Z*i6}A#zxAf|3kTF%N8@Xnh_t$`ityf
z!7DTVHOuY#vCE9zX6!NJF>|TeYsP*0K5{>Kz>I@t9HL(!50gj8qvSDCW;h-%<OwrQ
zQcjVl$us0xQtHo9&dZtALBIdrMK&*ymsQObGp^FFspPs@?h>qDuWpjJ$lI#-j#*wh
z(0lKxB!2P-W;|r_h-{^fv?pvnHRBoOIr)N=NnV;Ex496J$7?e_Gk>Fc-%{R@@5vA3
zNAeRXx3843|IxpYaiqx%GevqWX2f_KBAXd@GaP0(%@}CG9~QaADBNZ=wxEdx9y7dh
z?psjWqHmzjj2sld839fel<PAS=?$3?W*8x(WQ>&FuV#Ex{+$8~5^!unG7*_r&6dQ1
zq{@>~`f&%QuplLysmRo18d8>$mXeN4PiC+nBPA1=nUu;b7G$MoBeSbqzRp8>bF!Js
zg4~omWL{O1&w~8)0%Sq5km@aLK@oaUl@zm}xbhN|k`~B8C<~H@!GiK~dr#(NNTUUs
zsxM0^M^29zD_T&=f_iLLwxEgywN+(RN)56aS>1wl+-Wu0tVPNaFEFfQL0u+Yc_h?V
zy$vjANN+@bR>$p67PL_{O)dCYc{2-|ThM~dmSigneo?*huHe?n5jD28pq&N3GU;qV
z7Yo|cJCGg8PGs(=ein4KpqmB1Gm&O@N>8$f1;0_Mv$B_}>1{!0CViOnwV<B`{Z;P(
z%4ilWjv5D9FxY|v796x-hy_C}SZ=`z3x-)R+=72Bm}9}8YU~&bMkpUi8D+s}l^o=p
zV=Wk`lJS%Y<U|W5Q6`g9NZF#PlxgI2at8UA1%Fd!lCwyupG}cJZRV<E5oI1ZpIksL
z6h`y|OdgAwEFqVY%gEbN<4Oxw(RY!nE!beeMhn)kxt5d})>*J#d0f=EiM~xGn=RNv
z->Q;?G2?dSJ1p2qFBsFG)7|tv<X%;?&w~AQdF@MT4q0&6f?G_EsG74D9Hk$#;COs!
z!70^y!h(~^>&1+x>1R~ZJ!U*7C!GZsm|Q0>T5!pN%k-<N@`?o$xSp~a*DP2`zoB|>
z$`QghwA{Afjs<sB{*-dhg8LRcpg*+WvFd$9IUF-SQON^N`^<vpDtTeSOS*+!uPu0E
z!3}$YoAv~6EqG^v*P6g*P4M1=4;G|upCC>91RpK<WWn273EtI8@Y#a@WZiNlSdlBi
z7YpJn*!&$^zQbgJ*@9wz6!*hofz^U?E|hn{W`W&;?GEg4z+r(?cBu{jv%zJ7o2xO|
z3Xd$*g0B{Qv%qJ8--4K0+r(du0eX-Okzv&vp+w0eI}P$ldD)rYEr1mjt@6q?5?GPY
zinLawvm%idiLFR&)vt$1tSInRFHTCSMNh`A<W{7hq$E?3@=BK!r=g3;>p$tO$Y4bY
zCK*+p!-`B+WVRv;6L}3h{vM}U*~~^}C*=;VIVriU$W6&Z7P2BQB_Aov$}elEyr30%
zc-KV93tROU+lyFHl)c4NO>rx_a&t;DDP=`ziouGqlrpN)NYThK98%7T@@!Thmot=Q
zRkq@1E1FqR#fqv{9QtakW<`A~8nCRo6*VYQS(8$WtZhXdN?p}kPgaI^+PU}D*wBh3
z-}JrO$O>u7qcNok`4iccG=DWVx1xm=U1Za&Xvx{ylfS5$TUpWCiZ*PvC4aS|o$4*l
z1xd4mN;*<Hk)35*SkTRi?p6$8*n>$AD;DlB{ANW@hP}xCR`jO)PWB=DlCnAdteD8L
z1DFgX{~!mcn!#4cM;oMgs1<9!8HZUh+=@ThJC+<ljwDBsqe&Su#)|E;eq3+IF&s}$
zkmahHNmf|+s?-!Krdl!0is^E!+ECJl8CLvd#S<%@TJg6P^1;%XR?M>E#5ZI7hfHT%
zvD}IkR{Ued98NfwTtd#XV!jm*zZn;>xsY5$%DOGK!pdzIU&?S9DW}g$D^^)?#)`96
zthQo}75il;$mUzI&WfEZTW`e%IcC1=N5w`aTS;kdvSKrRi%ODxH*TYESIG`53URE|
z@3LYy^F8EVavxcNd+(qe#%%u2iq2}(VJnU>JW3vmFOc8=tr)aO-{&WooFq??r&Wz?
z`#JheD{fhFUga08xM;;CD=w?#niW@+U$tTsmwsI(H>_By*5|ey|0=&jxl11UZoIGZ
z2b70aJW|PHEADWHXI4D7BB>3@Y<OYCODjTFgsqTI+`qEoUn^c)5%=Ag0-9{v8#!j=
z>9gXk74NKg&)NQyUCQ1MR(xdgNiF5G74pV88Tf@YaiocqA!aLTLW>`3;}DM(c8Y^^
zs(D;ixasY=Aeqq1rjPVn5m1#u$|z_NN+KH;a!AyQm=#~G_{LoRWhRq+r$c_$$m>6(
zNJ5HS9uuo1i4Em8>syiBh7>mBXP(lA{m=?0(05BJ8&cbl#)h;u<WQs1*^r(tZ+VrP
z3^ru6A(QIOYC~q_S#0vf?)v=MRFd6>J8DaF+K|hJ+&1K4Zz3)+ud2*vgNc;|m=sib
zAsY(Qi>Rb1r5IV<hSjU}C6;1yv<+iyC~bqmhB7u7ZRlh}XB%#QH)u9Au%RKntn3FH
z%G=~0uX<Mv8*186(S}NFR<@xkMY^ikP&<JpQcWe*DP0q2wJ5c1sAEIrIR>ejkU(3`
z;=1grXG488>R<w`kqwP)Xl8@_!>EZ(Uhvm`wjpIgP2?vVnlcf0CeV`-3AN@nw6LM2
ztad`}7aLk}V4s9qYa80o*C*84QreU4$Y054w+ynB4sroZsC8r_B1sn;y4vu&4Sj5o
z&-Qk+p}P$|Y&e-vljd(W^t7QjyQDd7v!NIL5ql+ZCe->$V#5#{hT72Ih5<JGVZ$IB
z<g<8b5^2JL^kVeEHjGN7-F#@Mn@H=NNE>Fua2rN&ePm^pC({13;ZP#&P9p8UMEdHD
zWY;Jg5+v4}WBHsOAjjD--i8S_{hsH4+c1;iL>ngAFxiGFZ2m>c!7$Z^Y09U|PN3&Z
ztRLZnd8W)_vf73<Hq5r+A2#QZOKg~H!#o@2v$=>|K+5oia*%Ky@x^kE@Qhf>-eu%+
z8&*(OlB>wp95OJmww6s9yVZtu^z}Auplq~ZGi8&i`7%jA-L|kPzRia1^d00La;FWu
zC{nrGCf^vSZ{uE-?2}Vl`380!lpU^;!;~X79Hksn`MJc}2{|Ne_{ol@cAT=|v<)9^
z_{4%UHe9vg8vQJJ&W7`9>;=k28!oBjGUW>SDzSE*^3I0$Hr$Z2gUwquJfYl{%LV1G
z4WYzZt|Zz$Ht&-U$cLnC<|E2u8{`hX(tK*eGbYc;m-16URm$FbMgLbNuWfikf2$HX
zFh0<0?$l>%ze(q3o4i2+Iqk@0*Pn|oEJ$ESoLsErNJyfYZLr#4v%z9R+a%iEafV?@
zG<is|JnS|&Y;el&{~Q>wA!vh}?jgOTkCb}94f1wDkr0!wDi7Nbp+{8`lcQ8E<r~BA
zB)Fcx%Nr8xNMuK1JCZO-V~1&^A*mh7*-S>tf_89{6n3O!l8Q{Ndgbd=($dq}k=~9B
zD$i_3M&+68h`*I+7L{bBWV6eANc5d1j~sSf<brbBk;jfwc9gawFMIRbQNWIT^odFJ
zmx<(2(2loi>k8RXn7u{FqGU0$I9Y;}Q6=qg^PTPD20N<QQPqwzb{JWp$)b~LuRrPY
zmt|7Uj`EZWWJR(PDK(Yt_{w#tlJv*3S<Q~>?5$x(O-e1Yz8$qGb;!D8JyKs2`A4ww
zhLlERV>_Bqx*pb7>1R8d+0oH~P7XA;qlF!vQ)r*;XlchUc1*Klx*e_TXw4yG?Px>k
zVaIQFw57Krf3>4MrGp)vWD=Rv{^MWUa?9l|?2^UF2j08VyQ!qR)T=G+X~zINlC3cG
zVsCHqcU9TPj=uDMD(P>>WR4xEl0WPiL?3LIH~;8|!B9K?qzqFv!|hndQ6uaa$#9e%
zqwN?Y*BrGbPm^js`ZzUeyd4wln8@vtX(!2|*)_$EsTA2>$<rm%pS2lw{AI^pJNC&@
zYKI}2w!n^scFa_>&7#aE|FL5ZWiC07lu71OeoChGPNprgW3e4eWVU45ZZ2Xed)JW5
z>{zZwt*~RI@>O=MR(>OywpKRWj`b?pLfJrWBsbZynev{C*lNc%JGL{C_1R^|4&^)T
zh_Pn3O7_Tkmt5cW{dOF%<GCF#>^Nx0Av-SFF^^q`?Kmkr*^VO|)&G>?DCHP=Tu6~g
zPEaay)M@%fJI<)yvv!<Qe%_7?%G)H@26M<|JFeJq)sAcIdT7UWRddHKufyoi)J^i1
z%5U4TlVk6y<R0a|9S<m1*!zh7n0!J$C1t{Ac6?;bOFQIO3rYU9;}!i|axGU1?X{|W
zBi9-FJMumGLG^yLqgo1m_-8x*v*U|g_U*{*koTCuWQW;~qz)u=z+#8hj)?4G7TY-7
zYlmIU<DfW67wINFc8uo`S%i;?pA3*eJ3<uc4a;%G$|#eVT$=3org{@O@SP6FkLzs$
zN<s(jaa3Y9lc?Sc2Mo!T7fz|Aa3G}vsZ^5Ifz-;=$kwSfOvf<20~sh8RZS+@2`Tlx
zl+}T34wQ7D6uYuJP}qSY4&-nkCzD)c0S9ucv3VTGt300r`IXmBsTEXSh|)2oR+Li0
z0eRn7G1Xh#p<mx*>BCcMl9zVC;6POes<EJq1M^a9<s2}odd-2d%B4#NmS?kq0~INi
z$jYjwiUYe@CY9A4sOLa^2WqI^nv_}&)TY!?d0hvtb5sKd8p`$Dfff!lQoTPr(3swY
z{7L0a9r%x<nyDl~Dy=2GE%}SeTRG5Lc^e0ErP4Q~9g|<l_Nupo1C`j@I+fPhAs>%L
zPj+>2psT9sM(OU*KWo#&A%7SeM0znC?!cc8^mgEP2l_CXJk#)p1AXcJ$o}L2QdVQ2
z1AlOdgB+NdN*k>5A(WxyFmgKY@-c!w-hq*n&8f6el+olE2gXul=5Y?3<IEErnCOsq
zBkRxm-?9`3Caan$4osy_Bd3!yRPSF7yyOhC9GLCEN(WZ4>mLUeQ|34@mom?R`D&Dx
zLl!u&P$i4xEJ&^Ib9pRrU@7xu<Z@NBLQVu#v)X};vIF^t>KX^uvSuB*Ue#}KpaJVQ
zG1*LRQN3F!+Z=eaL0{-j2X;Ad$%)HO>~>&}1BsnT;>2DD_Bn9Of#VMBci?~nhaEWL
zK)2M|LC$c<fws%_8OEx0TS_?^-<w*yD@}Tw11Bga9XRE{X$Q_Y@X&!r4p>ubXJzT^
zJx87=W!ei4T%@N=qwk-~4qS2Is_MN>xh7`^<pz0E_1>Zs;lMleyK)7i+*dUZ<m_X?
zV+T5<(LT${q|u%@@YI24ta<6cD+iv_U&zs$Mq9%Af7J}{D6h#k4!l+Q5thAo-~*G7
zD*xob19r*g{KxQ%OuItghb9Nia)p$2a3G-*YcCjV4%i)tvCQFs-0?Udhev;-Q!cP+
zH5V!3rg$9iQhX}+%f&6NCIvyY^pFE#dc=XKJkjd=P@1OIckfpRzOnbas)tiQDH4$V
z(rU6wiMV3XtA?abBy(bj6GNRy?nDYFGCPrll_{M_MVZNIQ#+ByiL^}8k;VDiS9-e4
zpTUWY$}>^q_esgKI+4SPoKAV0vEIzCYPO}-aygOPiF!`dcOs7yd7Y^0)L;6$oL0-{
zL{TS-u{ggI1t<l{LS$jG2r1J}orTY7HKfyuJ5hpRNhdTX%F;_YQJP{P%aAh4=!CrQ
zPNbYlDp1PH%B0hGW<`}(qEvRGib|@opqdlanbc5uO($y6Ym;?UUe}4%9MZsvhEDW$
z;&&$+InmgOo=)6Jr!{fnCnq|q`le2_qyOwgGbftUTahiumZYrYFY*j>=GIKwsJyKc
z^O*n2q&?Yz?5JuwQTDT}3%#oo-BfRPN)PfkC*(s+vbbJOd`YLtBXN2yPkOBnd*$m$
z`l?a=oaj#<;KV>D{!n?{^x7chgPn+9=rAXSJMl7ucF~DHofzRn*9_V|mdOb<(kX8y
z$7m<U$TiK0J<P{CG2e*=PK<M6yb}|gn8<vV6O+{Z)18>Ce2NoOl~1GO;5(XTIPn*o
zf2-b^l&<Nu*(&+Ri8=JSDw!wilU_eI7CN!Wi7hH$Oj+r~63S9?8M&O4AuD7E$F6c>
zwG(SpzCq4M`Z|@Ym;J-ajZ8MFe6tfbnagZjo!G{FJGq10sVa9l@mW>MLX&6E_R0yB
zL93rZ+wa5yCl0dmuoFiphscQ;^i4Y|o<Tdw<d_r3DgTS7{Qgf_nL#^6Ij!<DPMoEm
zBhRb+f;@eP^s_9$$*(wZ)rq%Gyko&NC+<0M--+vN-jEG+;uif5d7I3TQ5%rD%w2kU
zeh~736AzvEmx)aN$cb0VA3O2HiKlEnbLwA8C<XF(?!*gK^O7RJC~8miuGcDmBj>65
zUYPez{3k~{yFQQ~$xpIxDRSef_?hFJ^63Np`et&%%r1))RwryuRLH3BQo9olCw67j
z60yw58lMv`iktM1Ua~Dm`JD)`86>}wAt%C=2pJ`15ivP~IO-dd?<Bam1f<j?bYTH&
z61$MZg)14g*U}6bf((<nklck7E~IoJl?!>)sMIcGp{H>ntqbW?E;mU?uRH@KqYIf-
zlG%j}ne=VXs*-G!>@MV><Ro*c-rSV$$;;$*p>!rKp9}e2D4=?axloW^h%8JNQN2Z7
zXvSp~cgf!ZD5>%?E|gMUnqqLFFDs2I*IX#8Tt4Sj!G(%0<n|(u7nNM7?2=D;;F$|m
zT&U{8R2QbXP|bzvE(~|!PZw&qP?N)da-kNbo|>(;3w7vqU6`Gs%ycfdz6%Xp`gg~C
zPgbTOdmE|x#x68bz9y5_)P=K|w4Y_uTxjk>3m1m5x1|fexbTNdZjGq5QuRGuXzfB9
zHrtY&TxjRQuP(G_)6J!KQ1u-t&oXJ9DP3IX>Owbq4^`7$4u;J7Gx(cIq}j`b-Y)#E
zk^z)HWM3Ehsl2}ng*jG+4`f&)vo?q_m>fb5CC94D#hJAcOh&sf#)XkC?8&TM&8&@L
zn8{~&pIMX74v%GXoD1V!nBc-h7p5?gWi@aZCb@ttnmi^`a%9mrp<EVix(hR0*yX}*
zm)yn9@Rtj-<au%7Z`p5IG<nRVG+Ai)N6oh0g*o)OF3fXbzRH)&d8B-y3yYL5rYvz`
zDP@_;|KvKXU~?t8id;>uabYb*)^nXKk;NNa*yzG0=3B_ks^(88wkqG|!gl35T-d36
zCnwqC!d)hNUD)Tseisg~dB=r=E*zpCci}K4*LVF&D8I@cap9;-|J30z<`Q0$+2|)+
zIO)PE7f!oyP4%9U16BFQEZR92&a-*Jh0BzSs`rvSBU$yQ<BCeIx{#O2b(P$p+;riV
zN^VoCXVo?xG<3+S-E-l-3lA6`=h%mGBxKbdsrtt*JdtygzmPA_sy%n%g$n~c_``#j
zF1&K#og44n_}7KkE+ldzv0J}%zj5I|7rwagR?YLyh4;!oP(HfwiSk+HPqJ#>tXiB4
zUX_?AX3|1hNt+9H7aT4)*_0)^U2rK+$Y0kzF2sw^1-}ac_I`7rOg4R|1ziX+36l{r
zN=k2x@>Q<SEdI_>G7xSgaO*Q9B%5c`#FMy@)Qy>L%yJ`{8_C@;NUvMJVOk0|GP;q;
zjfdk6DcwlLog?$7rlfJp=hyVzl}_d9-N>N)<55FqH?pu<n9S-%9!fScJDG#bN#-JD
z!rX53<(lVZl27IN-6){Epc{qgyXO4(nO=m=qHYv(qqrL-*!-LG$ebnJD5b`hcK`S?
zETbEm8y(%~<VIOH%DM5g8?Uoz<=v>j;s#_zH>$f)!;MO8Rwk>ERY{q@nj2fxvT8D{
zN7izqHl>cLtn1eQER`Ykndm=u`8!ENHXFIoSXDN0<0s`!-8il0Z{|jGH(Ic(r5kNk
z%`cQzZnRcO8%ijf){gS4%G*;qxREWpzVyy+ba7*x8{^&R>P9y={&Zu68{OUL;l>|o
z)NgL|bfcH-F}|wSTjl-S_?_NIC4JqHg~o4Je})6dfo@dh5(l|4n8^@wM0RZ`MTQJ>
zW4Q9REFP(fN2z?Y8)N8WRU%7VlwCWNU7O&>M23^xm`a&UPEnN)vTM_nPp8aq<1dx`
z?S_pDo$bayZai}1u^V&TnCr%IIVo~zsdH%a+*s?zIydIKv48^?lFMZsD2vr>OWath
ze3{Jl;>WSN!i|;8SCOk#%^EjK=Fs=sdN($>vCEC!ZfsP&+bNse*sPK*ZfsS)&5b4;
zyMxJ2mG{b_?Qvr-n+M5#ZtRy$VDTjKfEy<$hgfi!JVG8NWtEP(@tigPlVUecx^aqK
z*T~c4IXBKw&XO5&{x}BCyK#ZZMe>pxmnm1=xJr@vOXbv>u>QImH{7_X@_TOFqTg1@
z9m-uf>eT%AnLLmym8y|xpU^WL)c5&QH=fD*tKNSpFWh*kl2>j_<7}^0^2Uv~^i9k^
zxbacWH4oZ(@X3wOZlv}gjR*h9rsdQEZUo)<!umMU<c67Ial=KilCm;3H|%tWN}O)I
z;Zod8JfxTOsT#i<0oH_=B=8`i2VvD4aU-fcM)^v9bK|?p;n6SG>2qm`JcusQcS~Xq
z%H-0T=F*a|OOm9NWF90}NeT~ADo^Esyjw%c(t6M@mo5em(s_{HgAA<6<UwW+GOBv{
z*4iu{WM#7unazVdsyDj_Ip{f6lFNhK^l6+tFFhZbpDaMiatnH}mNkW$6d{X}#XKnP
zK?zk^ic*q1l}jtFL?$WYfsswkgBl*x^q{N<<(QQBpc175Da92jFLG&>DOJd-s<#@Y
zI_b}))$*XW2hCM)9S<6L&{*~!lX_%*vVp2;NXd{}Yoe0Z{LbH>*lg;-&nj=`L8;vO
z&TpZTmXu#SXhmtQ@;353p3$G^Up;8gu&W0hJZO?z>&#|HdMC1HZY}-;>0LY+&-uG~
z(A|R`9xP|GCx`sz!SUSMliXS_HhYu5d*I5g^&$I`{mA~LbPb@S&Z7<TV6X>!J=o{L
z5D$iWFw=us9t`6=e|j)Nj-{O1aCs8*Xz>@2!?Q5bqrU(?N_Jx&ZL|ktJQ&M**|aGh
zjH8cN$pjB3(kH28vIhrd{J8c`^<WzF>EsOZFID-sM}NPTOgr0ye;DraU=C%T2lG9c
z>w%mvQqUuhw!njh9&GpEULI|c2a7#el}B6S!4lT5mKDpREu}9bmy;{Vm88tGO7_h0
zAFm$7zf!u^gLUj(@4*HSHqy6xu#K|GgUxE}77vc*(N{(u-Od;$FV)4GN87=IogT<j
zDamefj|WNf>cxfgYWqE?l~?=V!AIFM9vt-GkOzl7c;LZ9500q$ugm-%9Fu39$ypE1
z#dnb>$dlwL4^GE-$@l-tF~$X*XL6CeKtA2}<5{@m!DS{_$g8BR+ckM+Iad6J2RE7D
zQoXl5xTE~8>~`h%DNFKdk0_5lctSZSTl(4X)PrXpJeL#jtKm*w?FGBuk+PJRlvm`x
z9=xW!QN3?Hh*RtH-h;&X^d0!ggU>8T<i&p;e347B7rXOmaUPgFfEUB_X$A6WX4be#
z3uz^7q}>At#YxJvE)S}5evb!UhCUA>6h9dtgJg)5QDHf?IV#E|Mt)Vj-zeWnxgC81
zuG_qPnyjIW{Wn#a#9rJTX-MKlQZJHu<x46J>AXnqMRKp)9sw!6`tg%i{biAg&D36`
ziO)$X_?cfZoWYCiD#=L6<V9wcWbq=a@@$mL`LrCAoMbLiE_!kwp}bz?^Wv5lx4p>k
zMFB5nd-0DK1-&TbMQbnGcu|=3CA=u<MG-HGdhs@&wsC=efEDwiID5sT`Lt4Al=h;c
zyo}?8fq8k=TgHniqYXwcG?kR~q8vR-etj2J@S=Qvtr@+t7oGEK)x4<gMHMfqdNH4W
zT1we~{8|k!X64u3<kx=kqNW$Myr`|_tmj1?dR=l0XOmI&y=cIsA=!v*OiFJP%DMbn
zQ!j$~wVzeq%!}sq7Gz8E7uDNJcHN#IXIWb>rg|~Wi*{c8>P34mvK7!ed(p*<3I((d
zUUc-LlNYTDXp#>spv@?tb@if~7k$0x=S6of))&y^kdS|K_fYfy=0#6>FS0lJyXx&j
zIaxsK@5KPG{yL<L9q7d$UW`yRgCtiz*oz_bp(+_BhbUeCtuH&_O#w~r;xf{UQC^H@
zo~58R!HY4fek^4iIi3s@&?ZtQk&{W8YKlCw1@$?ndoe>+ub?)|i@#K_d@s!3^qFK!
zR?aG@N!c7P=6Z3#i;G^&lP8@8TgU}oEcRlF7Yo^3<i)0fTI-bhd)4I2H&1htrCuy!
zuY}7fE69~ztny;D7i-wuK&~a%ky5|jix-?ke4|XR^39ZRL2WB#n-|-?*x|)aFAjN;
zqmZ_X`6qtm&~7zq4`r_x`&6>uiv!9JdJ+G%l82cb@#3f#$LOcY<Erw1loRAh@|0Kq
zZc156d7NQ#){AqL^Q7ecUAUyYbs_CC{R(-NyhdL4BDTqRgD#_PQYshH?#PwOi_1P-
z@!_5q_q}N5Lvx>gfqLM@M=w6H@}U=xym;)zphDUcFW$&yf%#MNnHSF~FXTBbq`joS
zBL5|2w%3&1g|sV$w0HF0GxhCyPygVBe3_s$`?(FD<+|ZRSs(uM;)@q?UYNYd<U?j3
z%q&jqLlPe>a$WVp=7rshkQZUu&+PS*GL_Q{7u~HAj~DL>>Bp*%iJuIp-XKNZzZ9W-
zS9w%+9sR3HzIhShJm8K>Kqe$*@<cx5Dy%OhDU&p0GBP=tf=o$DSt=h=E3Z~qOG{5j
zrYAFy8A+*^FaF5lL%YISK_3nm*0TDL&4=vl%|+%QbCRRECb@mc!)7yi{|_Y}nV*z7
z3;3|SuqJQ5D#WC)4@D?NeJDjKrYej3P(pc0AMSE~nV~d816hVN`e0SP<$S2=LoFZ5
z`%r<s6@927&tnmNM^*BnGDGnyK2)VwBde>t;Rl4m`Vk^OUTgbMpSgG)AL{xbQjZiV
z#yK1K&`^zS<U?cSO?>!?-c%(&%M2VMleh4pl@G0bXvyAReCWb1`KNgsAKLn`$%oCd
z^L_Z$hnYUi@}a#C9en8T!vG&Ta@22RCpCX(A4V0?y0F>Rhi;Vas<(#^i`3G4GVJ9;
zZ`J#|4}Iu;RnkwMbk+}KGSr7*KKwx+L=Gm0kaELA*(iAo_hGCL;~4(w!wAYqauhk5
zl*%za+~NG=nM_sr1j<Bmk`I$rK1I$-wf@t5n9h6#`IoBs+lRzO^(T6^5C8bE-iHnB
znj=S@4-MEg*N1rw=c`c*d{`(u$A`sCma2RSrASe28Rg19`Uc8lg%2xL%_<*O)7Ow|
zRld%L?p&PIPb#WyWWK(rcA}`Z#fPmv9P{D058Hg$?!!JG_WQ8Ihvys;f4k|O9I}ht
zP44kwFGX$wEYlv4)rNM^heJLDifWmPY4XopV=;a65BqS0l}AZQ^cO>XIN`%ZA1?XO
zqL_Blr~eH;i}j~`ayusdQhbIyOP(XolhSp;hkh*n_nQ9gx?78B=Zk4qeYoa>%Llg)
z*L}F*gGrtyA8z_^OHLDxy-nU#^W334=T!H6xX)&}jAb79AbjY<BcI$4O7|x|yp)6F
zyHWh956@)(_~0z2r75nJEUvxqq3~5hgW}pN7I!bMN!e>3-pEnC)bQ4acRq|Su8GUL
zW#0QBpLzM9*5M=N6Zu)L|0@6DLmYisaeX&hd^kw4%N0h|*eJJ)YYvq-efq8Eq~7C$
z*N23DeNXy)@cR&DO@Ivg5R#uJoG{EJqGm{5LMv24Ut-LMuReT}Yu7CO%`lS4<2%d1
zX%qO-mERPW$dAN+B=IAu9~u3~<VP|V+}LGE@0S~G>0?unDall1YErt=_>oq5IzJZj
zfANxM@S_&jB(on`Sdh(+tbTMUq3tiB-7cYxEuk$fp=D=R4nK1Gk&9kH&6b;z$B(=!
z$>&FY`jxZ#<`kqCA`6p6Na-r-#}_WWgdZjSaD?Fuqm&<|{b&<J+aL^nl<}i`06hXQ
z`l0zT+mC<zDC<W#KYIGn%a8JYRPdvvAHVof(T_@;yecVggTHgwSeahMum5{d7FvzX
z>VDLq)FfNTe(<BVA9dJl<VRya>eB0x^~naLOw!P=f7y_TJen~4NuHpR`ut7V{F!W~
z>YMxZFMpR_`L@11CAC&6Z%b({+pCfqCAD_+UsclHj}CrxWU~|5!;j9Yw+p2!*^TV(
zM|-Y`EbccsVBYD+MsGiUXYWL^j~^ra80kk}Hv5rM*58i-ehl>E50wn}V-S5XIfNXl
zdWZS3Ji(98di?3fI4*aTAEW&kFNbI;ZFNa)jO2biEvd=d{KoomiXu%%No|6fr$8xf
zk{^@(n4*$teoUp;Dy8pLc}!<>h98|uX@B|gH=8rbS>z~I&hcZeA1*)K4Cnc=*N=UE
z%x80f9Q=MPqHpzMn;(nmOZ-^smwUwN`)Z9JYh}CWE6A0kbglAZwesbqv~~2&<a%-g
zxsjCmO@18UT5Vx+i@u${OAcL^VTY>RNwJsGcB^EMU+%5_;~3lTmmAjMh|K24K^9D#
zsCONbr}esiTpjh}m>+ljxaY@lDe&VC%TD-lk`n)+^;7gqew_B>j2~y&l;LtPpQE2A
zFR1*YA2s<o(93>YVR+S#>y&GxeAAW;zoF`H`f*G7Z9h_#)}OnE3ChTKeBbxufgke9
z(nmiY`tit*SFDsz&=)SPJyxTh$e}`iMm{HBsNR=yVsg%ZnY<?7sNT1fcjSBWgCD(F
z|H+TfeoQN^{m0xUR~||nX(G*}tgwY*^<x9a+EwnLIQ=-s+~bFrN!b8=e)#3e96+W3
z0)7PjNE1L+gBJ25>_^m(7%L-weCODAq`b-DEAu1){lNPsy=;mjfCLN^l8H#k69<sT
z@Z*d~8bC7U$;lLCN-`BG^{E4pFZU5?XVB6HkaxBr9lO$#8OQ-kjF|(-5<n?6Dr*4p
zh1x{}$QID=@RmJ*9PG*&Kz>RtGB=rr%uC9G@&)wo!xE84fdC3JFGLnrHAMm#tG1#T
z!{Pyypp*>!cyp}0MYePRh5%No$};j(K+T|0GP_WYQa*qRl!^h=3!px|5?MKbD)L;=
z&lt370aOp52Aj1>S<jjQ)KV^=$djZ_0CiQ;O>P+xK*IpK1(2?czVjQgt2Nm;fF=R_
zL~j~E3(C)AGg9iCQ{)B<Eh)dKycOjcH?U0rZ3Ae><ktW?QQE7@4wR1Mv)hKwlrE~b
zs~mxxL~aQpYxr9LJp=eJfG+{`3ZQoYhXObp!0!R{31AyXo!DtKl+pSI&@X`g0SpLW
zP5^TQ7|7lU0sK}*`-46xfWed@0gR#y4PaOR!|8HYM%lnW=_5#KjtrnNchqPmW5}`O
zI8`$~0J*`Y6i;L_iJTn3lmMpE|0buA)5#g64EZa7Nt}NslUd|!)%#BX>)AUmfcXJz
zWxjw1zl>cHz(OXA$i-y*{l1n4uq=S(OjZW4in4+{$q84}Hw3VTBD1XxV4d>y0X$@x
z<Qo}oA~y%HMb*UrgVIq(+s<SMxl{G-qU<L3kbB8}0qmz7AP<tVl+;G;NB~CzcpAVn
zhQ|Up9l#kmQ;gbiNdh<#z{vob8nsg_7-H0B8MQ4&?UGSHlI8z3X9GAFz<Ksw4&Vyq
zLID37wTl6{E0uPMo<q~?uLdwe)1CxyEr9E+yb-`XiuB$L;1>Nhc}L}U<&5KSskzVa
zf$S^FBUSU5(n-@6YuW)8KbPeO@H&7Oatz-#+}E_10lW&pqG`#>YSNV1-pF}cR{Ipd
zTe;Mf)!wPu-cvpV@KGf>H{ml~-UBah8;c9TB-ghfvIk+7IoTDH!@jK6<{hj7*aENz
z;9wpJz^UeOQ(STdE32=7JUmRiq%Q!!stg1Wq=!@zmaCZ>6=is&toAj4ZvlJ{06}C4
z>KC5`K_m<!H9b*KK9y{^Usg-PW@1uq{F0QCEQsVmq@brFQ<5@C<br<Lx0Kb=s3dI=
z$;xTzf=Evh&k#gLdM1@*4&u!$gLKK*tU(l|i023*ZxH!{$QeZaa#}9VnVZZLM2~XX
zgmRj2bvZ465M_ce22mi0f-EQ$MByNc1odyUk^AizRqJz_lNSr3IFk}&NwO4Knv|s*
zg8Jo1L<^!U!^T0B3(7rVjNx)xtsu%XtUy)_qEZl*=~YP?ScUScoK}reovfjHYX%X2
z%cI&%>X3EGda9;=5Dn-JRnjPkLU#QCXcELvK{REay}Z7jKL^o_&E{l_AmVR7C|xas
z_=RCBvNb7rW%+V}Abt(vY6#atXdgs}Af|^fBZQ7YbPD2e5Kn^W97LBOCI&Gnh^pna
zu0f3A4Bdk0PU#WEkRXQ29t)yp5WUp=e+1Dxh~L@lLk=MOlKq0{Pmwi|Po4?~$_j8>
z2C00oOv_|pd2LsDZCDUD%4@^f`=_cIK^ZCA%gWJgj#0g1gBYiLd=L}p2`lJ(Y;q7&
zf;bSw!62pvF)fHi?EN&+Fr6|#h#6|^UqSp$pD71b5VPt3kVQG$9Qs^RCZ88X9p>T-
zf>@~XZWXk}K`aSkX%Nd8ZVh5|1#M{sZFvwYf>^04*9WnRzM5P^u2sG3g7|VsKixJk
z*+_0uy_<vBLO;fJ*cQb0Aa*d>r)qWvv5UT&+@tcnK|J87{Y-4UmBb<XsUS{M4hM0B
za+H+SI7T@h-wfge<)rE@=fxTN*&xmZ;X0tNxjfDXaYYWlATFrNi<C>`<scktA6^UM
z4#VrJ@<tFh>9@$+Dwpq5lbP=ZagWJ;@&Wl!)jSH~_Az}0o(A!ZVW|+FQzAh`gLo0d
z%OG9_@h?ML5U(Z7rB$z}eU|GL!?)x+@_i5~D{3F;A4!?~6Qy89{b2h~o-a1zRIf>X
z3eYVovC4_YV!LcOLnrByGmg1C2oDo)5Fs_nNAU*{P)RU|zI=0tEH^C29><EuSWqB@
zuR(mHe-9#U2(F46LP!uo!jQh}l9P$Z#AFgODJccXLO8}bQ!q)X@>C(DR-Pt=hpb5#
zLVAW7LdZ?Y7(ymW<`A+|vXEIxnLk?yX)EbFO&&QI<_sYh#lSodJujJ$%umLT6&4Jk
zPzX&cX@!{=A&Zj5$l|0_mI$FFy*Fnr9fBc*G9eg47#_l(A!s3#4WTn@%7suqgxVpT
zVsQnA)kCOAsYF&LW#%d&R8?Lrgz0LFYJ^aec`b4y^Ex5a4WV8L^+RYALfa4;gwT)$
zEkbCd=4l#2V|o*n{1n0~HS^CQG*fx=5F*T5GWmsUrFvV3khAiSJ={*N_RN1J+mjts
zW&CdM#AemXTI<SMmk_#!&@F`SA@pEAl>9A(J|XlCp(mTY$lm1dr0kPnTxdTw{|KQ!
zWq|4(7{WreR)ZK04q*u8AoF3W@>XT-OJ!|D2qRUJxQaF^gwbq{At#40mNHJ&jHgTp
zVWLVVg;1o*kNq$ugsCc@7J~c~kQM$bgug>r7sC1wW`-~;g!!sQzRYEI2=axP|1g<D
z&L!uO4LI`x*&$W5g&`~oVKMVH<PvfzDGORgSx&A9VI^gi>RlbeB+j;$$y)k`5H^Nz
zhRLQ7HdFSJTSC|x!Z!NVcQ{c++fLsR!c&gj$)+rK7iBlOhxAp^_Jxq4s=izHGdU1K
zsjAvR@=yqeLpVY|8o~*R^d6%emwL*aID>>IRqv?~PSYDz)g+gh&xUZ0lb<Igxe&rd
z`lS#qQ?8J|Rn_8~QgdCN@i0b(aU+DA?7bz|?GRpsaGT9LA>0k&9{qkuZnTc>5A^3z
z9uH;PnLi>Wc^twM<t6#M@iRFW_^ZfEIjury9Y&il{te-^94BEE4dYD+Z{^qs;d2P@
z)YyqtwfD+DP(FqLz6$yuo1qZGA$$oTE(B8uW`<7ELdL&jYNgvkuv26W9U(Noq5rIO
zF>#0B3BgPElRi~>c?tr`gYwk#=#7LB4Ix`tzpBUNvL8aaFw%$dO;sie<2xO!NkB?*
z!Z6nJX-XVM5{5~`ND)TLFp{a7<dl<DwN#WeDo;&$&f#gpaPalI45~L{7!t}N<dG?i
z%=9cO$x888)v||?gPt>td|~7dBNv;w$vmXYkT;AB)qb46Mepl#76_vtdkd+W!juZt
zv|?ct594w*tsxV6<4TDzN`}$4nid#sC>2KOFbrXo38O+76<HJijyoe=3!^Nh94X5x
zPZ?TGs}x4%FzTqh3Z+IERVmd}UY#<xnpTriOXamGEqwa=*A1f{oAp(11Il)8W+Qsz
zFq%+)BAbTsa~RF&GDFKSnk#QXNpj2Zi%MEi-c-}thS4sJPGNLr@@p9F!{`u3j0+le
z#n3T~;1olp>ROKKnl!txY(N+T!{{1Dx3K=d=I&wiVBW5}Ce7c%=*ecUFn*`>CWlu4
z@f`IDqc4+wq^xcKFy^uM4<?tYYqj}LoIzm>4r53dLsg|rGK@Z){8Qy4DBG%Qqr(^z
z#@}JgWHL4^UuU2nY2(6p%|+BpSY|>P6T_Iqd<H26lPOckspK?rI+<*mKFMG7A=C8d
zXqHSUmx8donuLGCm=ng_FiwYYMz$r4`C;q{V=wC$gs~xvjbSVdV^J838OjW+C`-av
z8pbmEayb`j=zD1en=4gikZZo0%{5`HrL0rE>*bi_C>gkk;Z|}pxrK~BhPQ>Woy{HO
zPI4D1V|RzqLd`R%hPF?(tA-|T{@)+QfiMoT>=1c8jKh>8<WW*)I2Ojv_!*d-AWy2^
zQ<SSUw6kHH3*%-Ox579d#(y=m3t?OgBXLbl{1VG**3>%I)OW>YHm}5w4dWW+Iw`$3
z<jTOZ+f4o??}TwTjC=GaVLYYW590ylA^C`u86Jl*f-{Ie3u8I`IeTA_FIDBMu>5JJ
zKlKM|YL9DbZ<)Uj<3kwlRE_*cUJC3rwU1$ZV)&W-FN|{h#<wqFq^YHER~&N_X(laU
zSSdDApC=3>i(O&3<t+G$VPD}1!yCr97{<ro3&S5qR8H71n%2_#*3yK5Fs9Ygf?;`w
zi7xU8QzCL4*3vH4(!R>YU;g76Md>KMhk*#DM=&FT1Q8^R;HL<hMvy3i#1T}Fphg5q
zB1js+neiwZL9z(s8O$5eH#2zzDI!Q2L8=I{Gf7Qmh#+GGY3NdxHiC4@(?=k;l8{gy
znIg!h^2`xrQJ$5O!fX7@ZO_4GPSu->k~@Mtlti_ETvhT#kYCjlh@c?7kV*<iP=uaG
z)fbDPcmyRFmW;@4QuQs8N2v%(D>p<?M!8XT1;>_+pd7>UWaS7dP%5g*N)dEmWfdk>
zRbDNEsTcG`)QsqFHLt_G7Fk=>$lGY^((6S~pVA<L#*~I+BXX45iY9EzuPZ-C&@6)C
z5&RiJbB66@H6mDCTWb+P%Lsm9xQ7E<(OZ*kB4|r#N6PB`8o@o5b&SANTN_$O-@~0E
z=o~>8*7PO2M$j#S?rK!82zt<eQ%O%bia1t=_h$He1bry^nfHsJe*^=V3?>JXe~>b2
zPy|(3IfThja+vCEUq>4e!ALeIM=&aaIdwF-tKlRjqazqY8LR5YMKGQ|K_wF-7{Ysc
z$g;NA(Wa<;DrK7NnI!tQ{}sXC5xkG!Lj*G;m=(d32%bhTJA!{AI2pkyS#$&+Kk0|i
znh54bFfW4noMd4Hiy~M+zpVDgVm4QhOUR`WEThN_%OiNl%9Scv6~Sud9lv00M7}}-
z>m%3@!G1ZGBG?$gCKl|9U^8VqxrN+H%FNp$KwW){b}-qga=8Vigu5fy!(^|@_eD^E
z^#_?8BM*^>$s?qUJu24<RvwQ}$P=np?$RtZr`fzko{8XW1m_|+FBgX``blwx`Gp8B
zQZA8_UzTeQuNYS&xE8^6mA9{}-Jsu8NpsF~JAykA++}z#g8P*C-{)nv2N67E@<@$(
zOc`ERdltd-2>$>7I9^2X?Va%*dtXNIO4a{Mc}>2F;H}F0y@9-?YEfP7V+5ZV=8fWW
z1pmnuFM^mnQ+2g35!h9I9K{rYnPMTWq>YrdmEYlojtHC)xEQ+0Km;CD<Bh<l+)t4k
zp9bTF46EKq1PysV`LD8R5oC?(lYeJ#QaVTp6HpRHk%*F5<w>F#e^~!ZBv};6qe#I#
zEt!%`MW!aDEDhy$T`gS{>7&S?^30TsQDmYxc;rZZmMG#kIUDorWDYVXnTyO#N`0Ov
zeqF1-4<ug{`J*Vnyhs#9qbNu(L>4CHBaKoik78_=Ad5%!zxCwKmL=JgUTGSlC=-P<
z3Re`yD6}YsNAYJAWuqt;MYAZHM^QeC3Q;tSqEQs`Edv#!sKgmk*VBsD(<(<%C5oy{
zYO9&6MNwUO4NA=@YEkOf`|(q(P84;S)QitaS*r#VxzmMwlb|#kN6{pT?)9_@9Qacd
zO;zR3QLJLv>AkT<RK9fuU7~0i#V=8`QZ;R(XdOixHhUz~ci;&QX(#)WVSBOz*^!i*
zPEkB%S=T7KMKK_Xxm)#vp?eg4R85a4exvs!d#Sv46u;B!KGBEtrT0_4{i7KD-YDPT
zIZ!2kL@`MD;3$UBhpJ>)6dtb0h$u$N_C~RqU8ACy9K{rwEs8Yt^<6q9im~h(r^b$t
zVgh}lN+v~7ip5i9uh!S5MKL{!-u1P~^|cwSnIl^o#b2ua?<i){XOXj2{tu<yP2)V3
zET_zmVnGxO>5HORqIwro<m+^os$^LdS1;?&uRK;nv6A^ZuG^X@)<*Fxisw<Rla2b<
zcrJ?bQLK+*LlhgM*c8Qa)^CntOB8#f*vID9D0Wh|k=sd`e@7IjIrA<iyH&m?ipxjz
z=SUv=qd3g`0C`Z=9Fik}V~;R7s`6uU$}s<56eprM$^29lDH~|=kO@ySIiu>&Mp2l#
z{0r|w6qjVtQT?BK7s<K}v@5K<9>opWGxEH+4A<1y?i_fN&4*FkisCl?4tYO{yQ=b@
zTzqo<IKLh+l+V-2$~=nVF`G|R<<ls}aoQJ5K1cB%<z*DFDE~(BI*K>+59C|&9Vv6Z
zk0Q)h-9Iw<L`o=KU!sVk$UC}C6bC6?W{M>WE5)XAdlW0UKJtk|DU*jgiefPokHHg#
zHws@Aez_FKkRpbFTs%4On;Z!Zv_}oJkeVkPMMQZtiWvQ?O5`pg-|2`UK}=sz!Wa@!
zX8o-<6VsEBNl6Kl#o*?;rEaLDj3HwTnPN!A-qfllO$=%2>B#gd&k#e&hWay-nMr;!
z3z;>BY%ye~=O%NIIY}9kOSZJYk7qMa40%<aFNP+ZvjCHVDlbGS977S66pf)5D@({~
z#84}S+A)-hp>zz@SYsgNM*0;gWk@5b#ZZ<aYf>(T^2#g3Fp+agUWsAl7^+aJs+!de
zwd(X^4Ye9E2y4c0zo8~lCx*H)w2YxpBhArJs~1C4HL5<PK@1Hkja1%PwwL}BnY@v{
zPkyF1Q#H+FXhHX<*DvzF#Ly~+)-kk+p+^kA#n6_$oyd0NucQ>WkD-I|jw0KCT$eh>
z&_(54Dc#8KG1TEY^pxEj!{8W(#L$~v{mI`+nYm94eU<l%p)*HGK7irC82(VbgJSY&
zAbq(*nT#Zdk;BP9Nhuf+(_g0&8O3BYIY#x4jp1qveGg2KrzwUsUy=4JCdDv0hGj7<
zk6{Wcr^hgZGL@W0x|ZpuK#A*yzhe3qxBbm<W(>1p7}H3b9m6%Q|3A#<#IUH5HaCWO
zl=(3%rYs;Al2WiJhCRYY+7c#9|4+UmCSPuaFlSp8!|E8;$FPCTH8HHE$ohP4q^+Zi
zNONNhn__qt!}Az6$FN0?s~8@{u$47OVmKPZwivd@u!G4yawoZq+)eHwWx~Dk^lj3A
z3hZZcK;;KxI7C0Jl5bprV=<hG;Vi@B@m=Hz@+5hRJS}H;;~(emIVLw_I3L3W`bBxB
zD3{2~q^!o37%FkpH73_penXy6{sMDLCATSeVz{f4doi@<*pZF3jIZ^B<Y5et*!!4#
zLOxaXOB-u1V*ih+vw)J~_`ZMLahJtig2S+l2Zs>c-5r9vySpa1g+OqZz!!G{K@$ih
zxVt+6X6FCqF7-SAbLQOhsrz2Ns_w4t-JPB3R+ql0M_-h!g0Y2t<s(m*zo;u;)K#Wk
zqu!xj|DtXXZc=YiWt7`82ll;7=N|Pw^?}ZL_(eTt&SSY;Ob9*sqMm+H&vf+77xi58
zi!bUW`IUBFe^KcxeBG08zo>Wg-%~&6oR4x=GUwA5_4$kXLf;aOE$Oh%iF{E}vZ5~`
zgq10*%xw1ISN57zFsxx^qjTj#Y#-Xg%E6|S>Y|G8CU~gw1xbHc1;VOoSXHkWn`$tu
za)(uXSj90RQCKAot0ZBSG^|3pLNY>zuu4uy5mqU~DwU3=53AIg(}Y!8&FR8wFt=15
z5hVl3D`QxF6IPj+keQmDnkB5V60%VxQ=Xe3nuE=p)Lh}OPyLw9nsPS-Nif1HPgvy*
zt9)TqGOS94ReoKeU|1E<ykJ9Y0)^Q8mRdNhis)!jLb0$auALHLwS}XU4y*GOjPhYs
zA*{X&tCuv(gw^*tvn-(;)mzcX&RtqjM=OO@<*+J!CcX-tgui*K$(|3Z8gx2QYlc;=
zu&PaNNv#uBb;GJ2S!Uietm=~+P#bE$QCKzB+$5~JaP($j)jX^czHZZk(S%2Jv<j=%
zVKu&@v5skN!m2H!KTz9I+fzGGW!#R06BUilgf3y#HLSXY)t!pQ-q*1M8eyrPVbx0x
zK}6+`sNP}KC#)`q)s?X78&>_oYDHMB46FXEAn&-&Aq)tsfnhaBR!CS439DIQHCwL#
zVYydcXi7MCpOax>HJq6}$EguvH8QL&nsSel`O}o4M~BrI@>uPR3oH3{l7uGEnMj?a
zqmv1DcteS)<Z0CDVf7>7C+ZBU6qy-T@?Bs7d8MdiH25QQ>}h<yO2*u<nip0_T)F3m
z)q=39Q^{BuR*S;wXL8p{MxTkHDV2=Hy3Q|zC1JIc@GEthjxHyxsbs7o?9=}0uv!yV
zYr|??SRJioY?cMd(0b~Iu-Zu2L`}F$!`86+Ev)v^kvVT8><p{z+W8-02h|uI+NJ&7
zVYNq_3EL|<`@`x0&4Y3^s2tm?hr;TxY<O7RsAQaC=qUAfsw5l>tK;N9s3)|4QkKNK
z*q%HcmM7(@v)cbVto|hbMLnne^MpNv)CKKalw+a!->|x*`Ew=XYFJ$hD_2ChBkH=$
zEv&+f-VCc-gi)1^+dBV^T<9trci6leR`<f{epo$V^BMIa^%3<k^$Arb|1_)?&WkOE
z=X73BUs7M`oY!Ghk^AbccHV{6d(9sRAH(WD!YA#24y!MkJFt5stfFD1BI@dr5F$z*
zy(Htx%M^)S70nT4AqZOuwurJ59NKqA)GsXMi70PGeG^fc81h9_Afkd1<!4jAS|UZ_
z$mt>~eMBXSsKgPKgieZxy22t!*-REu$q9RDri`c^Q)0796;Y`pDh)$vBVRvL_g`fr
zaTO!kN0oto#)$f^%Ga$(_>@lOh{_gG*&`}TM7647WR0kiRg5K73{k0>gT3-lb5e6f
zREUt98c#K-l7H@8C~riasA4>0_W}`BFrtn{)bWTa6j9$sRP~6e5mALBsz^jt*1d{G
zR0Yk&2*o3+L`0P&m!f`8EiLmW$XI0vuBx$lmL->qsPg}x8LDbjjHs$rjY>4vCd%Ep
zs!>H8Hmgyk@8qgR&4{WMQBxvnYDCqJs5%kVG@_bCR9)uOr`FT?@<vUAh-%2@I*#6m
z+?d*gnsu;h9#JhKsvnyzW#2|r4{~d&jQc}GwTY;-i$hIzhT0OOT02JDM^uN1>Zmh2
zM^q=x$Eq4#$X%)3wBKFMJN`w`lTI&cZ)zWEU#g5NfAaJv4~VFN5j7~H2D4ePnlXeh
ziaL}k`NJY=xaJYEJjl1X;iJi8B5EvQTtrPIjHgQ92@&;$nUl0LnUJ(v?5ItXvm>IG
z(3u`lKStC~5jBI&IT1BCqGsw|vm$CXS#C8Z9p$&jgb#bqi>UeZ7wF7|5w(c?vvw9o
zRKnMCmqygDG*?B`GQvuovpk|!Xs%t&*mgfQ%Ib((6H#j;YF$L_j;K8mwLYRYFl|Rf
zZ6qXoFh-I$Mbu_GTOw*J;kSs|PLSxfh<eIz{rpcm3C*2s?xI>htG$E+I%i)*?bj@~
zsh2tj**p|chqZr%aFqJH%wd1*3jc?kgL0xpRn4f{b1HN)q8>)nqlh{cQKuv743p1M
z&qmargs#<$zX;Q+8J_*I>&f|u`a7a7MASw44<hP8HRGR%`j^d1vfc=id08${<g41b
zCi{(t_(nwCjHp}MzZ+4vHQ$NE-mH`E^14U!eng#QFXy9p8S634rxEomBF_VjZT`at
zF?}9UFXWg;l@V1hBkENoc6)@xQS~~a-Z0G*RjRs?yt?r=qTWT+dzxP&DjZQC$Wr8E
zME$4vQ$&3x=dB)FmJzZ&8XGGbQHp@5vJgyE37Mm+D)X({u|-v9Iu1Hcs!K=RQ8k`X
zuXcO{KQ$0lK|-94CW@+6%uf<kNuw%RR3(q9%#5bcIq3)~si~qWwf55x(ozpsH_{U_
zP%~1$p~_ZdimGcIB}-IgjjC+g&k<GGHGisZ<Rs^!hP0nMs#4U5?Xf&jl{c!o)G$g#
zRlcaoAB}w&xL8ybkQWmQ5+3i49qU3-^(`wD)^&;yic){OrHZqAiKr?`s9wVe`g2Rc
z(oywYRF#RU@0nSRT9#TNs>%_hetE(Kj$4sjDXJ<Hs_2}mQT2(>p_BaTH1CWF)rzXx
zQT0PqwWCufs_GJ!v6N)ii>kvljQTViL{&pVqo_RiHMUfmP+LY-Q$jOpbE-sJMAc1Q
zr&Uz7rr$<K+eTHC(e`xuMCEa=szX$DWU~{sGd1Dn16{~nqpBOBJGBS3C$$$<#_cVu
zqGs$E^^2<hQ8g>7W=GY4s2UiRheX7tJt(RMN7b~blK=A#iK?NpO6d=yj?{IAN7V?;
zg;{VEo1>{?qH3&;j+6bygbCW27*&%rPmZc7nx{t9f4n)&bUHs$f1=Ky_GO)^RGI1=
zn)9M+E+OIH%Hq#wa{+Z>R4pQi|1)7R^%v?AIj2}{SyU~To$N+GH&#T|%BVVF#z`|)
zMb&CK3xMpvny6YU>p`KN!n&whA60)x)rF|q5LFwa>S$E`9#xy7YI9Vze;wM*`dg^~
zi>j>&Apid*Y>TSxgwq^-2YF{y?UJjO-a2nBV~-47%h=24zNp$CRR^M~Y^~VgOSqlI
z!KgaK=wYh(M+iSK=NS2PR2`4X(^u6AIb^krQ&F|JmLYJGP3e-rXPA68s{V|s3D;vQ
z;jgGV7gf7!8JB7q=cDRlEh9;7L-b-){S#Go1&6}FQFSS*UdV+vsxGrax7x<FsJcSF
zD(8Of*lcUpHm*n24O#Q_?^AC@)$ORdL!QF4yX1RR=_S84J&^s+&_kM!qUy1ZK8dQQ
z<Y(G>9#uz}{EE&S?Z1wyTfx}7ns4d6i>mig^@046+V^q%_1eaNauHzjGZpe4KS4T%
z2@yFfwWAcm9LuC231+H=Dov|`O>^2hhEu_%P+6ghf?N9~6+8-F1)qXn;g32-euWZs
zjDSKqh4czRg*b&o%uk_vB_<@HCZ#5$CRb=sC$_6ovYATC%Ki4qX{ZuPtI&%%!Wk5D
zDCAVgsPK(KCY_UAA+zQz3RyL0Q}}Ot>~bwH`7D`eE{5_dgmg}Bg?O@|ojeLt^oaRr
zuBl@bP$;Nyw~k@08=G(;g>MxKGg?F;nS8L}YV6m5q6)=m7T48EC?x$oHi1$Kr4_zY
zD8o=i>i1N622fc-Icj;Tbg4kdSl1|C*Qmr<$x|1rDpZsGrqEEKIulydH3ru;YLIK{
zzO@LosdcDz73vY{Q>DIqa-)$#V}%xUnkY0?Xr|CyHf?ceUR|TYfYATAz31y1MIObr
zq9rq1QCm~nP}?dbJd^rWU8B812ZcEba}_!&bW-?<Ih_@{C`?e8$YxiC9tu4by0Iz6
zyUR+e7u&tP6nZP<s%MN<=%aAvx{{m84^`;P%zo7V)B)6i)Irq2R4Fn<p#bm0COnMh
zaD@?sk<?Mt(bO^2!MxAmIE6~}40(+ww6AAOQW#s$n93ZfHd&5^=B1qQG&ZLz?5k(|
zNWN6hn4vIJVV1(7Yq7OATVb;&wsjxaWuC%(g$D``6&5Hgl<Tv?dWA&_KeNJeg~bX<
z>Knf*<gXv=_>004hL%$0=Ko?!Xc-e~);Ctr7jq?HmBMPm8ttzobYZm(3U?IF)i*XO
zY?8StY+>}4!d8Xf6#ijzo5FU&F;RllKcuijVW+|_I{UQ0TVappy$aJgkmT=IIH3K5
zatiYa@`vdh(f(0|-!=bvQyrJfi^2(olL~(;Twv&w!k;?lv@8tGX9?r~7y65EPW$I&
zyYw6`(oFa~QobFbf7!f5y{z-EC|p&z#^!Z}8w9yqj(jfbrp~E0Fmzk<%JreU+=urR
zUeq@{4UGFd7TFsZj}#s&yo=p&0Z(-PGli$*9$XT#XP&e9g8GvBiuziiLIdNC!do_l
zC0Sk{*h~a`l#5&JL!J0c#|?au%RAW#L<o{^LhMo>RZs*_#gT^xnKfGgE7?Z1Yu^F1
z;<zqAo;M`D<Pm!wM!i%Y)lUsjgVZ>x<jX_WL=yu^=p+S_0m*?BKw2Oj&6L#CKq`X#
z0F^HCN&_Ttdiq(Y8K@bl-%vAAB|kHe`(mu4yt2}i?m2**KyMTJn2-wy0lxyvBol}S
zN(0{k29O8%7Le}?NZ-6b0bMg6AwP8(cSS*<5SzRBJmSLSBGjT(sZb0kuDJwIQgbO_
z9*dL#z6TluO&BT*oTFb3C=XPiDfexz3RKj6D-kLKRkR}?8>mLEPOSmd1ZwGMeL`)Z
z4xz60>j67BRs-!c1R7~}zgA7jE#=Sy&l(ubfaZX+q0xf+O+(|mhDK|k4KM&02()E>
z!@;T(@B_IWwLMk#MhBoHxk<y=8tzQ)0(1qs>73p`cXAKy^aOfoe*Qr9A@`*YY-scY
z`s--cJ8BRx7#IVL1%?2x_*ucxz)+ntj4+%!f;tiyrK5)jtLc2svP^Fr&AGsMU;;1^
zm<0T!Gba<KQl|iOxkb}-bUN^(=KN384Dw9sEb43>okQ5#(3l6zCoiBb0v76=d_0AJ
zW^*y{i}shu$tau8FEQ=-5Lynbkh95zbSA6>RsoM?B{O+7uo2iqUIVPv71jY~8XD_?
z4FuuG4UNr=o}+F7wgSHa+km6G*LGPsz)qmD++l;Jy;1Cd?gI9+xf{sb$k;>POWjA6
zoGs7Q0nG=2L*&ESIU?u6<k+eAyLOHN$ALfCJV8A}JxM(UoF<gv1kRHGq)L&$fTr}%
z1AhY-=wGE?r2eBb|0P@kE)%Y3|M<<=CFmM(9k>D9q<@cki+WpU-U05C`*B3+b)U@#
zz(bw$2$-#-Pl2#poEdrsJO^ILuKqjzrCb3T86Rco>RzvbH{`d}chvVf`aycJ=6~Ax
z1bilcp?=UKM%lEOkhHO(OaQ?|HB*hohJ>sp*i0xlFJw2xeqJOs!C`{a1Q(m)1Wa&~
zJ=*aSd?xq_RT_W&2^C~Bj+)4X#0063#DoF7vw?6j6Oz+UK~1T1Qkjria~cym>6+<H
z_}+xFCS))nqY2-bkcnx<O~`D*#KuN$6XH$CqWfkwA)DsxCgjkZlaPxlKN?HuXUZFN
z3Yd_Gke4d+%x6M=@+!`xAh{6rTb)ywP{f3y+9_tjQRbJRGka&KB%zcEr3v3r%TQ0Q
ziLLx{CX_d!8J!9yR5YOhSwfXesA@tr6Xct@l})H(!c94pO$^agO^oVHt6_q0u_i`M
zHfvF9Q|nOcQtMHrW_=UnHVXm`wbO{u*n}p8rqqNtY@3_V!i1J4G;Ct@qTh<z+JrVH
zv?aGQp*`UTs@$x;1EDLmBefG%2JKAfLhaGS=tk(C(4_XHN@nGmv7IxuiP6`DesXlo
z$ZJM_Sx6>)FyW&K15FrY!g&+^W|zSx3^!o}d58%^3B#xfzl4u8VU!8WOjvHhXcNYm
z@GGM-%2*SoY92=zPn{qOO#72en5=n<2^*Tk_Te-Wrkn61{W&JgHQ^`n4C+kkEUF~W
zmZAASj(OVo*@XGz1=NMwUu42b)?ZBL7wQrnU24JuMpyEaJS*hlZ^8*iSDCPyu!p+F
zgv};wF=4IlyN<A)y1|5v+TUb?rRmqRcq`4F)Za|lrgOF@0Ck6)j5>c8o!!)g$Aa%Q
zVV?>6=^UUQHQ^vZ_QN3)4r@Ll=Z>!Py9vkWAJ@@8OsL1`Njj&fr>SSCXQ_Wu|DsC$
zbF$U<Vv9#!7fkrqgi8!vr2b<<ucn4P(Dt$kS4_BP!hJc29OWt#u2HX3Z%}ViZ&7bk
z?@*=wUD=21`@n>UCcL8m$b?f(jpruZ;bVCp(|lsWQ^GUqJ@$IRoR`#SQzKO~qewI3
zH51-Y-<t4_AY;9k>p-*EG5XJhPjY=W!)?ZAM#FLqPix4{{J)r><X;0XLlG0A3@LN$
zstz*}9w{PhqGP67%&-z{R6Er{l}x7@oj9V$46hm4&B$Sf&kVmA>C8xP#<*riz>MT(
zq%b3BhCGZuj(rnR6YDxj%t%U3rk!PXRZ7jN%#cSj$Z+yXZAKdHr!`{<M;AYX8Q+*8
z-&zvRXh!u@@q3yXnV6Yb=Vu{grDmi4(=7I|gPdl>H8(<L<T68=ADbC?qr}N=M!XsF
zw@~Fr@zRu6j^;)_GxD1;(2PN56fmP8>r|tbX>JrU<6AQdvsu)PVrE?VU#N%~^7TM@
zhqE~S64aK>ziv@UGfJ6Jn&x-Z3e+-Yd`~D#Ek~8DD=$Oqz7@@=M8C3*Rv}b1V-9nw
zvsuH8nuJ<r)HkDn8MWE0W5$-|hP>($>X~Eb?CIu4Lo*sNp|u(EA=SoaG+|TtA<H&3
zqnQ~A@7XptqXnZasWQV>W|&&UwyupCZO!<>jCN*pHKQ97+MCfuXLcZTlvSji&Sv?w
zC)PLN3zglq-^Yv|<et=C+V5>fCXOXt`qJztKLvDjfEjX2WC;y6V~D)_O@AnLgw7de
z#&B}E7KU|IY>kaHW0V=A%@||GSTp7`I?jyoX4vnB=9w`;_nl_OMDir+Wa<<hooYr)
z&TTrKAI<p5j2YzF)R{VSmdt^fbF?#8)(oBPEsP5-j0N-;ifP8r<X?5>Vl#drFVW6Y
z+5atLTfL0Va_R~lU1>&EMkQgj8NWV@Ut`8vGuD~0o;lmhNVu)s1~WG5UYpF=Ox{A>
zs{P*xa$BnH0^}WL>@#D(89UkBMcqx^LzQv&%G%}}4$wJDJxD!7JxrC%BZQVr{+)cx
zjN>}`hgshDi*4yCGftav!iJMJoH66996l??Sn;Q9i>!GI8dz}7jPr7)Tad_tzs<N{
z#!E9^nKATC=%N`n&A4U8Kf3b2giF-R)GKm@BwV9jr^?Vb%(ylv_D8{OI#0BJhj7=7
zd)m2g#skd{36IQptey7P)Kl^^Ge)#Do|9it7jpAooAJhsFJ^?zcx%QxGd`N}9~0i2
z@qr-I*xk}N!~Y|HqVw5|i!BZLSBspjFIyU(Rz}2(s2Q-pWI?u8vAw4(*t8~8j@+h|
zVYVP(iTzNpP^}i&2zIKA>YzHQ1ud~6ZVNnYdZ|9D_<jq<u=2-Gxq}w0Xk{E~Wh7>_
zumwd3Ni0ZeK{5-HTadznoEGGwpVER<7NoY|S}WsoD<h2sX=Tm~rK3vy%!KsR3>IY6
z{x=q6(ww4oY=&7Z$Vx{ZDJV^OWoI)7Ro)Q_5%N$anwt<$H7v-_B6-=&N6k+yKrKiu
zM3uhZT5yH``zvZe_0~oi3%<9Ym<7cx=)yWBbY@9HDQam8z9anK_ZBC#Hp*I1&Vuq5
zRIs3q1$8Z`Xh9_lZp{iEXl+#1b*d7oQ1|hRlhw%8EvTV$YFbcBb8QQjaVGWXq-qn}
zC%0M~(bh&o3mVbvWkq8Pnpm*Nf}bsDYC$s#&a^RxThQEs78dldpr-{bEofyyCw6JA
z>(^~#v>~^p{y=R<ZBOk$l|efa3bZjg6S`2l>S#AYcNwUSAx~@VWkGK`1F3ze)7uz*
z3H_*2vp-<~RqhKd&LHw&>JSTt5{6MXbK6H)Fw%li7L2xFtOes_-C7_|WR|}6w#K72
zhVb}=?rmcQCs;6%%}EwawP2bBli8d?&BUDP<XKed@+09V>I@5J5=t|3HhGQ(a|!b-
zSU`|o^9dOqh87Z9Fn_THzsM1>qL~#-ELdtmdMh$m@v9tG3$9ym!-C~<x>>N-f_)aO
zv|tsxZ?a&uuDsELHRQF_b=37by1|0^982aPUo6^e!4?a)>gWy&ej{(AZrA?*EZD|g
zJL&AA?$*&g7My2vzXb;@_=o;M3l0(fq8_&3xCMWZk63V&@H<sza?FBPtZ;(P8R|*u
zDV=lLf`kuIOa564{?vYXegN{E%t1SUTW~@1MGO2t#E$I0+PP%GW%3p3RqbE1AfA~w
z<utUwX@$#*+ZNoh;Ijo^EVygIJqzCH{QDL>vEZo%547{pf=8MkTTqqNp3!+leNKI$
zb6#4|jybRCywUz!S+w-uYv%*uqXqwI=aZbj%n579Y(<0|r7A1`1fa_1o2=N)e2aFh
zR@lgP?KrHs#2mL39-3*WUMmvm93R1NMSu|0ew-B_**7trBvvG~A{jX)HM!1AVMScK
z*bzykozzz3p(AEmn(3^lN++Wg-&j%EiYiuQvLdq;S*^%sMHVaCwKIlE&a>EEspS`s
z?Ckih6@{(HVMR_hb4g_@@{&W;+|+ogVZ|bjl8?<o)cn)}RGCjfE9!js`iZZMdty+;
zic(gTW<pVFF)Q}AGm2YLLiZ|Zh1^qAlI8Us&2m<hA$(6Qt25=<F_Kf>iVAcpYQGXe
z9#~)1ifZI0)aq8$(>XP)sHwS@6}8EAv{P4(rrxXdt!SYAhJ;4c##Zd$KYFUR$o+xI
z&FS~BqJ<SLt!Tw&M`~-T%(jgcZ8iTO2ZG#QI~}Yz!)H)RW+y8;Yrl&XUCG_3-L)_G
zgzQO9)IPSydRx(l&AwK2X>W|MB42x>pB4SBNVv!K04oMEVUVsc*oq<Kq1qWn7%r=b
zHAk{JN=L`GH^y2q&Wdz4q_<(b6%(wuZ^Z*ECR#DcihpI-Suxp)DeQ9Eim6sivtphV
z^R006kWIH@S$pG0D}G|m3@c_6W>RNSWpm^|iF3$vwIl!Q6n}vg8?D%6#X>9gw>K79
z@v{|+b<T1te$l*yuvC5uXlI$sklVGwij_21S+S0=nz}}3uC?MZzvC|>uD4=?_HSHQ
zo2}Sl#UECjuwttfzcF;kifvYGw_;C1rq16j>x8_Mx=Z`#pDMYPy%gU|XCHMx^?=Sf
zXvHheR?-ezaYXw^t@xdMOgqQrlG`D+22RpBB_}(Z^0wr@qw&JIHpQQ@LiDWs6+rll
zdX9RY`Zx6gRWdJH@ejEYyI;2A3X6|p<*Q^Ve$9&OR@|`S)A-PBnm4I3nOkzf(RUlT
zW5r$i_jI&<2jig?kJwCPi(PUbliyLFSn-tb%!*z7O5<}jUs&;y@QV7H`i3eM-deGS
z(|d2l2f41w#l#A~4FT5wWQ8I~=4UIuSP^E&gg2HWRz!83;~fmxV6wr?d<(S<-ypKu
zV6(wa$4zxmom8ppvf%;e;GyHyzE28vj2)xY)SwM<HWcn?)ahvS=x9voXe8E|No+`}
zIhhT~HK(v4B{>x}wf584ke0k}Q|z*t!G?@BbhV+I4d2+1$%gDU<X}Q(8~*5MWFu#x
zW~Hv_Xo!Eeqmk2wTsBm;p^6Q?$A&_TmbW3d4e>S@Hhkvfi__0T&1*wG8}i#wfX%{G
znMOey3X#91rtB2k_98l3lu%6ez>(OTOK86&p%k^W4c`&U*zi4}tPSM|(xp%*LtX+E
zY^c@AsHpu)gzWNpT^p*|(9VXoOLAAYp@t3hY^X2W)yb%7!}?B!cWS7X?p2#mhgz5V
zQzxSV!Q44EN<$kO+0dAdG+Wxxgxpj+&1`6{xrGfUIJZ`GT5G?JOh)q$Hauib+RjFM
z8#-veBcYQGowd`&hN7H9cN==xu+@g&80u-mSR2NXd&zd$(8q>`osFKIjlMSYvtepy
zV^wFPzYPOy7|68Yy5=Ao25TN-!%)q`2noMtjId#(_D9(;TJsnij&VM+AI96T)P`Se
zm|(+18z$K>nQ8NFm?9G(&!kSH{zRQ_!;ge|hhj&6206BqpQ%~o+0;4IxjH(JP=S}t
z1vV_y{vsQGCNI{`FN7sFB<8&zrSdWxtX+&X^p{gtP*>WpiXb_w2@kkwYi(Gk{q;6%
zAaA5@qHfmFEjGx_E~NW58`5<#cG$4fhV6`Yk-J#faDHc~bQfcn4ZCH((cfdkUcx@A
z+)+@vhy1a>t@hJ7V8cPeA*%R?Z8$<cs-53$kf*px=s2A}Y-rjg)|6*}p0eSzECvVq
zI&j8@v$8FAtheJ&8~(B(gB=;|I42Xc!EZ;vj=x#qi49L}xM0IY8~(B3UmIq1F)lIG
zuZz*1-<`i~!xbB@(!5E%MwM}|+i-)N@VGH?Zn1gWhC4Rgwc(!5d}zac%@5?ah>Edk
z%j=O1kF~$4i}6gRJuvjJi{Z87xeYI5K6^qhZTMirM;l(*@S4eQY<Nd_tNX6Hr`~H`
z$va^G$ELE!e#(3zf41QZAxw=>B^tG13x5ZL9VX_RsSZ0V1S{1>m3+G$$GO{uop!kB
zyLHrKN5YL|eA2zE@l97lHb*jpb|hs^95s<0i3#Pp8cF1cq%!2ezM?I=8p-G<r>3wY
zB_S16>ZG<K4LL0}o%Yk)F{o>7pl|HRWJd=(I@*!hjx2Umv7@RTS(%yFj(m1xBWI`P
z&=qppk;{&d9l7cJ-)D{D?J#ss9>T(|Mt(aAkjvUp(2hdnqIP_%GYi}Ceq8Lg9eEX@
zxtr4~MlNng2|G%XOW7eOl%$om<2yUb=nCHx5^ltipyli+Z$}0C744|3Gb<5fxPSOR
z>uPM))6wd7)F9WiqZXmI9d&iIjve8vv3V|B6q{;&I~v&0kkOXZMmn=Gp$WAqwHdW}
z?1;zaFRx)MLaj8nCbY4mt#*E}qn+mVcKpj7(#Z~axLy}Kx-!(+j=OV1?-}Z5M^8I?
z(eF;}VMlV_QmnTfee9TN$1FSg+R@LBADPhKjsb)*)PdAtvNi~VsY9qksWRuze4BK*
z9V6(Bq>j?j(RRqg(-XFCtR3U*7;nb}9i3vwMDir<OtvFYx7a$Is-0<eOeg21|C6l7
zZbqkW#tg!QZpLgo<}hKY9dii_sPm}vsR{S6T1Z|*{h7L$`U_PCU1G;-jw1Xk&1H5h
zC#;~Zv}2Xz==?Q=W9+ilj)f^=Gv8pxMmx^fahB0dcI>iaw;h}9xY^CvqWf;O<2O6D
z+3}^DadT{_@Xh$`cG%<zVs`8x2=64M>~8FlQ=_|aOfDUE>?QA`?x!B09;6<k9;P0l
z9;N<Hjm!;69hu}Gb_^$+;CxO}PwBaxmNm@ipLYCZM`s7RIB?F6^LA8spoRl~+i}4T
zuLC{@F52;r9Z&6eCTr4;O9@4Su~9DDahuI6c3idNny!D#j_c$b)SKFWaYxBt_tNnW
zox672BiyGxqCT+WAwkl@Pt;@b6YUI=N5I(e!j3m~ytU)!?uM~BUhXaS(hkvA)YsHK
z+`xBsz!5w9-m}67J3bQrqlT%UsGq4{WMkP;x<u@V(iB!Ka%fm=shb=yJ796ZO4CUd
z-$t-g9S*!^9T%H!o#T;R+9S3H{0;;hDBwUr2ZD^IcOZiUd6$Ob97yCqVh55qkko-x
zx^MO#Mly18Y6|VAbl~*sukWj*rkTcpv^tv30eOOqjF^#5W(Tr3@QsdUa-f#J-%(bY
zA!;^ib_a6k%$yG7(p;9CklTTHI)(#zWai}jIwzk4t(hi6xBaXNIq<Cmr5%vluNBr)
zD&l}VOebM_McJ{K1H}m?be)ofQq+Xa{LX<g4t(!GS(=q}W;qASlPhSaq64Ejhst!S
zP^;=_H3yb3D)*_Y=|FAzwH%PU*~oKqs;v&yaiFdP^&Cj<Fq$%2U-xa`KtpmPYGY~>
z9qqyU6E<_8xdSa|wsfGa13x&>ip|#4Hafp8A1d08&Gyt`rraF}9d%A82ljEcT^;zB
z(9?l#<nB~4d&m+hZM^Pb^kT2xy6@IK@%<d=@4#P9oO5D;0|VtiIMLXNK@JRdV4?$)
z9PsxvhOo;>2ZlN@j69q=f||2uZ0S~{j*@*#Q=Bn`u?~zQjMx4ILff9kWCy0mYImZb
z6H^_S=D>RgJ~%Mlf#E%kl@6?O;7133a$tr7Gui7G2WIIy^BtJ2d5!~f$@8@H<%L>6
zUPxU;{aHsBJFt)wmU%9rxzvGQ3CncOa>5D+wlj0J18W?3;J`x%);h3G&M*13*@5*A
zY+&Xw2R1se$$_1^!e$4yk+)E{YX3I}F0khI1V{Tj9QZ_kmjk;U*h7E60|y+~t8?}_
z;NorD4?1wjfuq_#?7$InD?ax&JN0)RmF98sAJh}nlRA1z7IUxIK|JfgpAKAc;3`9Z
zQ7_6*0m6Ce-&9GyAjgiqg#VGnM*otIUX~vjj9#O2n|hskgL;!HeQ!C?nVEO!+@;>r
z(fbaJVe}E57u3hpCpzb;1JB6MwIlzPkjgI|c%_}!gf|Yn)y_Kyma_6k2mX`mm=p4-
zyH5^$b|91U>+fb?n4HFmumcftR4(#PSe;PJfzC8JVJ07BO`8*TCz8`~IN@}{??k`}
z7afliUV__++sv2Q`kY93eWnw1BF>4#P9$Nbgv3uo7LaCACz7#?^iA5^ke5ITCZu#C
z6+;Q7Qqwe;kk*NGY)W!^Co+&TYUdj#sxVEWnQ3OBW_2PPAv-k(RdRAV(VqDs?c^rJ
zJ7Ey=Q1eprQKeUYXY8K~0)^;QmO-8P)``M$A>v)~ia1e}p<>jEP84^dgcBv%lokHH
z6Q#(dsZ#1YC(4k=>G_v+qMVMFccKD$1*4U;pKfiasuR_mcsexp`+RjLYB+Jdx6#mv
zn&J-(HDG2fYHi)C4xz3S^$7K~f4H~N;bE+f@*AOnp(ai=b>deimO0VPiRMfjN^Rjp
zTPJ>SqNVQJ%8AzGHrkPQIoiqYbz&f$4o-A*qNfw`^;o%ebL*p_PV_rdyHLAQWdhxt
z=&rd3;n4p=y|mNYi9Y1M)PB_dIy%6KOz&gA8w{c|m^y^|Meo~TP7J3r!ikYijB;YM
z6Ti@rj$@pd?!=EyjCEoh&GAl5*3k)0Ow>F{uKfBvqA9}KpXS7e^syE4lM^$XSg8G(
zgt^pNPWfou*Yk9aoDO|r`Sa+^*Zu-0^3Y#I=V$6-9nHgU(=2gfDIK|lN(Ff>cj7lE
zwmGrFiIq;Qa-uqmtaW0w9ECo{8tQ~TM%HDad1;Jw?7rTK4Z8A1CpM8cQ@3b;t5jpD
z?Q%)^Ep*(8KP2SDF`7G^*y+SBCw4n=vyX9*z4nmzQpMco#D2{O2%q~HhnzU<#1TD8
z!k^(so%mfl$K*=VH@1IHIC0X6%SS_JoH*q~zP`q3=G5$KbYjAozQ*Fd##tx+l<4_*
zxj~ThI`72aPE2!Qx(gSaxah?9E|hh}cGo{ne3Uim#J^5llFE9-hfZ8^VsBsLs&=l)
zndQU{nKPZc)LYcsI_FM;$(h`9;=cADIDvk#`OE8(6OWyEBIhil@~yqsglA4XC%mA(
zq`sm`uk`Hx#)-Fd-cjG{=m)vBFyRv&mkVweK0EP64ig=d3yqi%VKYiq+ykJd;=6NZ
z7c6Ybh*lSDWINTNeWwe3S<2&r*M%G|<aEL3g5QM<E@X6}iQJJXXarmcvP&E_nG1<@
zg~To-At%*N>X$0H3n|!4=|WoVr*a{+<}`%q{fu;k^xB`u=lFah^{<8g<is*Dl$n}^
znw6T3n%#x<Ov~j$$b~XAb5muji@Ff+g284UYC#wB67o^=Qzf$ip~LFfF)if6w`>;H
z(ISMm{fuIS;x3dRBz(xHqzk3kEKQXP-x1`=m4W_7+hL({E|hm+Jk1I&RCJ+*3oTu!
z<U(Z^>bX$gg(@yobzyTjzAn>}ybe{<)v6O}xKL9&wOpvJxsGgO|JZ7j2X^N=9^ZgP
zD$r@joJQ2f)F!%DQx}?PZtjx*;l}<tYvn>~Sr0DsbD<5Ro#o7W8fvREe;~ATp*^7k
zwWE%9a-kE)?czdLn%!LJLFle?<Z94Ub1y<~Y9DGExif!%qrVHo*&IL}NF78SOdUcU
zN|k93b72L?9YJR#brf|pbqrN9$GR|1^S=JZ1oA}fOmbne<|!^r)tvAV<sV&m=E8Fq
zesW<3Lo=zDT$ts;Y!~LZFxQ0xE*zvk&xN%vtaD+$3kzIW=)xlUD_r=QAoE%3!ea6-
z+F9cI`hg{h{_4Uq?JsxXUvA?{I;*7ShWOPwy2gcUQ)5e4Uh7@h=)xu!HZYoS`Q7Zo
z78iEw{H+N<{mq4K+TZSiywxK`cF@_W{ar46<meLG<HBD0`*d`_Tmc4ry&fKN;SU#1
zxNw-!Bh;fh^LN5A7mgEl?EE_ClP;X6bIOI&gflLjC9KhR)&7&szo_S2$fHO6o6ZI5
zMHl`d$UOfgR32blcHxQ(SG7NSfN{-*>ula|;W6Q+3%6Xjt#j_XaEE+XJNI0W&+$sx
z2Xr24{}DlM|01C$<fksQ<=kGl@Y01iHxjw=%7xc1d~qSnoHs7KbK$)UZ`oX?x8;Ki
zpX5?6dz-%0{EuJ+b03mv4>06YK%x;z8(_c<lN(Xl`2%AUQ|{PLzzQi0GhwvJsC->n
z+_1V~qvN64sSc`>D!p6;w;S;+<z>@H^-}{>$qc$tg*l1cNaDtKZj^B&sT;}M_{NP)
zZX|c3_Tt!KP0ubV+(@bWrg9@SISn<f_S3m>f&VV=Fwn^0Mn*RT<TZAnky+=22wA9E
z-N@!fb~h4k+n$4FPHHZyj4t2H%PpJ3rr}0GHww9tM@RFzk&m2TI|T^KxoO{$i@Q-+
zM~k>oRC6&mjxenRos!g2I$GL|+l+qiMp-x7y77Y><=iOmMjJQk3^FRXQIW|_-Ka#U
z;YLkDWoi{_RX3^;WLv81U0RDyZK*>@*!;TWhHlg&)Tc_X25zW9U(d=$ZZy_@6E{+6
zzZuQu)E3m1ZnV;wt!1Y%Q}X3&O^x|Ga632JGob^uyBi&KekV6Nle=iAs~g=k_Z(#O
z_&;`|7r8gJkM?CH^mk)`8@J+cI}QWg7$nEek3xP7c4LUJ7lphS>c%i>dN9<3;ckp@
zBbNsu4@SB%%8j{h%yVP38)IaJxG~9%v2M)dhK%Px<EUxZ#eU>Xa3eE6Gc(y8`_J7}
zhNh6E*_+=ro<?)J8$S|$qDtQxQdaXUH)d;|L)bXTnD52{SuJiHbz`9$i`+QG(9dpc
z<Zo!}+*nNK7dMu;u~b)B>Bg_*W!hOzSRrQ|@BAjCuX1BG%{A1uI&;;V*e}WJ-Pj<b
z(A?z4b^$jwv$=)3mHHcX8&!HGZ0`;>_qwr@u#37|=j<Vz7-Z}t?57@}9;8a0SBZ?n
znvXpQ{qDvwxiWZ=!h_>({NcubZhUg%gc~Q_cqrGg!Nw^!PP=i*jmvJFVc+xAv%1co
zZu~_)rycnY!r$Zz+PO&h$Blmp_w+iyA}dNxOqy5SxJI~6mD%2K<ECc0E%P1C58Sw`
z`JNm1H7ERzdiAb)<i=x~PuzGZ7kM|HviXeqoce+)qok1^0dBlu^DVVfL^bCB!X)~R
z&U-gL==_gvq@D2f=i_HLT%OqF{fir6CPdt@(226C$e^02l5F<iIlm5LrDLPob=2X3
zGr`IE^(x`^z~h0Jrq6>!1V1%E4N~K%QeVDfl2~&R50Yw5MmT>nl+uG#9%S$!qX(%6
z8>#81Ar~2Jr1c=-zB=jXr}v=I;Mh!_uZutSF7%BDnLOxEC$p}cg^<;QY=rFE&q2uP
z!F1;5_8{JaA3SJBU+!ulWm|iY$Ai2c<YTjx2c-%5Jt*KoK@SSCDVaqG-+EA3JL_4t
zs0YQgQ{00RnoAN+3^u;=prOmC<3U{y%6Ra-2W34d=Rr*-l-K!H2o*f2NT{U!${u-#
zKeh*|YNwh9)iu}fK!%X0ylT;`?ZJKR)bpT;Zq{eCflNmCZR9~?%?baBZt6iZI?bsq
zs4aC)D-WzgzK+$#gSPbL)JQkPXzxJ>IW8Uy@Sr38-X8QJbn@W+t@zI5E*^9xbfb2s
z%FKIs&{K0SLP-wPm)y^Trfd$OE}{<f;OdI_LDa$2-9rp<hRMa>1CtkKFGk44--8t%
ztn^@%2cuc-R}ZcXF~)c>&V%vfvDC;AV*(R?qCWl-Khc9pWSQY)52lc(Qm0X;>*$Xj
zq#YXDGc)MS^k5cYwg(G6SVW#fo$J9o!hGris&p*G?mx5Hbf~eI@C$W`&RHtw0?*22
zbe3zs?@(iv2dh2!*Mmzm*T@x>a9~Mjtq1EoSkLAL4|Wqada%hO_a=&+0`l7K!4~pX
z>TlZLCL6+u#nNc*@L;Eo?jmd)YV7e~FL|E_hY9<s2dD?BQsIyXa^q`(BXo{x|98SM
zS;-vh4*?J4=FBHOxI5H1&*&-YY3dmd&JzBl{za9t=RCO1U%7?<rg?#Sk@}A;gY{pp
zoR>X#qkCPE#pA&>>FdD_nop@W<-{S}(wVnCxI@0HoqHabhkZRG9(eGO{v+yRo%2N2
zhR%6L^SK8v2rsFxbmnWh;4t&82k+#p5#1mENltctVCe(XK2rblAmI+KpV|CE4O3;?
zBOXM_%KP>B!YjWT#rC|#3#%7yFFaoS_FUP#=swJt$U*H)c6i|=xTv)l@_OO(A~hX9
zRZ7JX0$v0O@<`M9^FxWqiK$7vNJ>aXP2ojyLc--;Dx~xx6`i#lC5;zpy-4RpdM^sl
z&)~($VMdOpp<G^M^x_+unW$O3$V`wra%-lnnzMP4ot#5EISKcN86iS$YP=VQ7kP9}
zelPNp^JynKBDPda!;N&qW5@SfFA956)`xOF6!D^{7YDpJ=tVK{hZ`%sSmi}=FG_e(
zk`)?x(b$VpUX=FYJ33XpsOCi(FTQ89EVVMVoEPN@6{r=dGH4}2T~441x$khJx{lT)
z)bL^&6Kb(p+lxA0)YUl+y{Jd7ubl>7tY`i)Y7;M-dNIa}v0gOuqPZ7Cyr?lEw#hBL
z=<G!oc5LZID=%7m(T2_Tx>{Q=ejvBgj(ohcgXWHePF~#RSY5T>&x>y4?q2lpq9?fz
zwU-yY3DMz(ykr`E*%U}Q!st&PKpjXOq@#nqD9C9`=1^Jf+8-`I1;`_*qqINTi>}Nc
z=f!xMzj`sji-}&$XLFLyoax16FQ#}gmCkhPH0l&R;*VbZr1NKZv0D4HyqHaY4s|Yd
z9`y)w7LXTuv54@q7fT6?sj@A<5SGY3)HS1oW%QSOu|j9292whPtL41*Vw)Fhw7=Gi
zb(+_Ev4Ol%JDUibz1X6it%M>YjqQX|_d<IG$UCSq%1**AFLo35Q0s95lE2T3{j&J)
zh5C#%L=Sm!*o%u^{Nu&+k;V}w|K-I|FMjvp7@Nnbn^@rw@(DTj38%a`OE^tELzOw$
zAIHwnKV=W_zQ<=q8t1$?@5SFtxIndzG9Iz!zg}GO;*A$?y|~QKBkC0|u6l9Ji|by<
zjn*G}af7~8zVF3N@-6M$CfxDju6FKuk!4hDx6A8+oavh5<eplijK^L)k&DdCSoEnE
z&vdWngcsD8UcA!&YcKk-!aFbCdy&S6v_5?B;-eRSA2yFN{`2CK7cZIfnY|o7{{Bx6
zdlB&>N;dmoVMzG^g3Q50m_Ev|63(%XO-Jnn8O2F(QQcGz)k~E+J|8-tiv5`!@FD0!
zoDYe7NT#ESeMsU%QVEUzx@STJxrak?=A_V>DSb#qPOY69a{bqw&4={l4BE-)!#Cti
z)XdZ@I-1o7xlNhOD!UIke8}lTE`~}_Lq2><$n8Ts!SEqJArCb#Rl4W%p*$yCKsyC}
zC`4{Yzp(a;_)wHwOgqI1BbZi_T*`;igzu<js4~j;J}h8bc^@kHu-=CaK2-Ffk`Eny
z=;T9XAF439z7JJ(uNs7EK2#@cXN8(NT8mKIhdPA1+OJ1AH`-|6Lqi`LvDw&%CWK+5
zV(YW14{ddRGas6hTWF`H53R_pwbO<m_x}2U&`$g92_2}<MjM@d=;DL?FZf3vy2|ca
z9$Pm3edtE+PVGVMN$ur>JRDZidb8Pw+SiAE1o6FNi~&9j^g*7RImm}0J`D9?upIF*
zMwKx}#~Ja%IP@4jpW!}?&^(eb%7@X~seDgu+8i3|!#E$t`!K-=Y07Jg4-?6gv@_X<
z`V(Ryc}?|Un)avrFd$@z`I8Sbe3<FOEEZqs!)(G*>Kq^D`Y=zAyU>UE<ONjuD_C}m
zycYTJv(8!U!!Meb_|RcYEazA4Ec0Qx<`uFNQpBRG=&Yu$(b2Vpb<`*yt+mmIy*})d
zO^~Y!eYtO^bl>7b>O{G>`tX|%+vsnXJzUsW<j%cTZfHYi2X&_py9m3f(sz&SXa1VH
zpUz1iPWf=ahl4&G(mB8Ta9HyZAC78X#18@;WAixm4<Akt5^_$HulaD@hco1})IWXr
z%ZGF1f2lH)^FI7dzCgXG{eR@Rb01!!bD4TYN3RlI3{p3Ixaq?eAHqJ|^5M2@!WiQt
zqj#t;eYoqxJs<AtzE6C3p!uN>k2F8_VHro1Sv~dP8U5!v`a+H%AH4O-hu3nx^Fi}(
z7=259M}4pJKM>CK5B*2@MEy)XuraoHB0far3h75Cf9z-~KjQpI<OlpP`C+E%@Wbhc
zg)BK%KWv)qgsYse%MTx$ZmLJ;c>OrQza#u~0@@Gy@s>}wNlYiDAE^jQ{76bjMomtY
zaZ~s)Bkk8UpW2TM^wUt&Qq$?o^nP69sUf{G()=*S$m~ZJKmPbD6dD^Vl9hfQKe7?B
z`;mi?lbYL)Tm;Ds5sqJqU4`PwhU_I4$*Xhn`H`PoKs#q&t8e`%?8k}#Rt8YSkD{{Q
z0<Z^A%#Y%J9Q5OmA0_-K=|>Mgdiqg{earb#fyGPv@tq%K{P>>!<>#^EC9kq<o_rW8
zPpIHWML#O}QQ41Xel+)^3jG>>)Ff2(qZ&c_R`;Vdi`SylfLdEe>k#VtQBOPd{TRV~
z>D$ncM%r&oXhLo3$E}sIog=RnblUjQlF*9Unkvzzd*a*r@q-`jwA0y-_L@8R(NS|J
zKNfP_E_Aw5yXk0mKlbQZ_41>?9|QcDa3$2+k3Kr5FQFgx%2;C{VIp;q{0qPz``dPi
zA0z3=+=hyyc{pJNb={cID8gtR9plGX@;K^v>I5ClupxeuACvu<;>T1!Hu<sHk7<5P
z_v2STmND%|Kj!)|&ySyEN&E4C_xG5|=qx{G>uPiSc(1o~KFy!~SU^}vU8FPH@&j6n
z{rH8>674S~B-}`OIeCq&NgZA3$12UM{ix56f2^gmj=G+@LFa7r;}{?JyoJtw>Q+B~
zBW$B?r>6BA|MO!9d8ZsN!Y-=p?cK7r55?BZUhVAjBiXpviFrUfGSFc^j`(rMkGp;x
zrT@E3fMAR>j?3vxzUapZ!f8Lw_;HeaiYhmXmzwfA%jS9NpVYtnI7g7^Rd4K#j=$Nw
zAZHL~@{b??`f<sRrMKfR`*Fn|`@*$+Wv^7C-0un-S9RZOet8EecJaKSottt-Xud5A
zp4BAb9?hs9_X!XDc<9IT{Kg|TKlt&O@WhX&emo;fuh){J`Gp@ZHNWy>l&<`S=377B
z>F9eonww)A{!tcN9z$OL`SFSTnfiqq*3k%|+J%q`#I^+im;zWb&e-5L_KY*k0a)lu
z$QnQ=e)r!IfKxbt&H=ara0gH*fNz=R2_SO-Spx6|;0wS{Gg$!10|=0Vx>{TSiO7km
zNvKJ6)OTN{2q4wI*iuOoKuY?lbToC~>z$t^nl^xR^waBTh5#~>ztK*n050l1mNkG-
z0I%81#)RzD90BAc<f6)#GNgEJay-?bikXLyH-LPE{L}(ES}*|5_}F?bEEoR(N(NAh
zp`rm4*Ez*xEasHZPTBEB=>Wb9phf^SX_g6~T0q{-!}kG{4WL{A<pZe9Pz7p5YAe>M
zM3zCXzgAVqRkb5O^oKA<qI1R@wF0OeK%D^U2C!+oady1%XuRQ^V7R<Sy#N{q&?JER
zx^II38ftDNdv!u=yGl(k8cr~p2GES5=G3;-7Sxsjv?8>oN|!bP^kHA&9|CAczdf~s
z&gmGy4CZtRpsTDv`rQIpKfxFm!1w^V)9DdF&j5M_&^v%(0X&~z^r1gk*Xc{>7eIf)
z0O~*;9Ym0?Iu6m!&;ZWqxecc|B7l*EQ95UI0An<dl?6XBwjbm*A%OV-beU*OWONdB
zasX2Tm`a{Woko@X=>hym{z*GC0?4DQ&7wJ*Iwyd+I%l4&3g#@}SPQ9(s6We|nP@B~
z|3Y0l(UAEp4Pfs?<5yN#MqN(5G|~7t(O4D0>Hr*ZaK>Rx0BZwi5k$)%*2&%u;7kB#
z1F^djZIG2P$>=l5*eFXSfXxAUgTmMnz}5g#PcnpmW6fOw><(aC0P?&ud2JU{^A5sJ
zSy$#*Xb<xb2XKV2m%1;2{e%P5gH+j9hoqM?wx5sEIjQ~M12{%LPW?msC*=35Nnel4
zsQ^xEU%qPeC;6GImH_^e!yUkRI!~y7%ki3IT#!pd0RIH=ZveLgxD&u7Mz2w28kY%I
zs8^|ZZ>#Hs8`PUr$-E`M`0-&M!gm9>ul;+3b(4$-gooOHM0gxP!VSBg25^!alJFz!
zg<M602n6vmfLF|X9l)mmJ_qndS9nW!7r?zq#(VMy>c;^7(>a(N+c{s@bOsR)AVQ8(
zEkXVj5CjM&s^pu4NX3p;IyUXw2@YxjCb)vJYqC2C4^1!CN0mC?ja9)Q;({m@MCl+B
z1(7(296{s^B1sTQgZPG-$#i}iLh>L|5K>Z8>1gU8s&mk^bkb4NQ#0tCj51s}c9Le&
zPG&+DnI|Ee_Ol1knbmRy5elLR{oFd5KZtnEMi6<(d9{;|knoks0_1{06e4`9a|#DB
zhV^AKMQIkJ7N?d7qNL7r%V#slm4c`oL>cXWA4FMlIcj<BR|ujad2Pwq!L1TR)gT(u
zsYb1%GpiG71W}VvOZ&Bh_=R(;OQ#;SKDB|)kz2(|@kVSm4x$O6DYco-X&%I0)@c<)
z>mW`AaXN@LL9`8G=@jE&5I+RbE{I>5-#&;AK@16EXb>HP=oCb+AS{1{u1q!(e(CKT
zL>FdurFNrsr}m)Ae0m1)kt6n|(}&uZ+K<{lhyjFwK@1}N`XRO<gUK`biJf7x6sH)c
z2Zp8xF+7M742=w89AOkyx{Q`1NFJ*ld34u!%@cx{7{sI?CexX!{V9YzQ(}i^8hP%Q
z_#cD#DTo<C%nagZojEIrdF0vDISI)+n&O(8PhLP>sQpDjRAKSObbg^Op)S=q=bxx$
zK`akqMGz~4kjDcZ2x3(btAp4X#I7LL1hF=V--6i2F6*cpsq2H-KuCC+$tLn<>K3YO
z*H$@qIEU@p*^vOU59v$J=I3g+j_xJwp&sTVPWF-a%R1~AJ6q+I@HnSK2|3gw)T7kj
zsmFpiPWXd*f+~Ga24gp~6*v>b!70X@Al?RXHi$oi_$!EWOnV)~d0C}{Lbrmr9mL;3
zTnOSKLszN)=xYB4afy6cJ6E`166Sd=82gsZ^&oCAdQ;~tzoz6HH(3US?$Eg##680O
zAf6E(P#;ns1@V~hM5+;_xO~?}G~2Myb2=}mFLm@)5LdZx|D(R6ui}8X*fsop5Fg~!
zka<px?T7z#uTMdICV!!ZsSzEG24nv|mV8qj<S#gD9Biy+rdr}4kHwLVwX-Q{ou(S`
zQ;ix^4Obl8ap)U|esS=`!5fE`acC6>pLAhzg*XHV+2fES4#7CY#UW7~cJbZaRB=d5
zPC`veO-4;lO+l69lmvMQos6D34ryebESoM4nF#5r8K@bllKD*>#&SPo)=ri<WF=>#
zu3$809CF2>KpYCjAryzhH1AS#$044X1~m^gFEt-kM#&$C)~~+46H<s~DeAXzC>)0(
z66HItl36qk#TY71EkPB(WE{S5xYFABE)HeL-&4y{%jszOIHZ~uJH8d;P$>?Twcj)j
zRWw(PL$x?mk3$VQ4X8D#wc=1a4t2=&s8XtK9P+VdeeKkmW;7%>qBhoklQ`5o5Zm4!
z(~M?uXs-PhghedUIu70A&?D~u@pKkYQXFj;-b-+2++DC`8<$|gf<tg8I0Og;cXxMp
zcZUymcXzko?)txdH}#)0=Q&T^daGKdrx|8vy3yExCI&P$pc#AH7|@(j@KJ0F12&J=
zZ&mOYla^#FvNicPd6^TwCuO1S7+S{Yo8R7m4s42dG@vIhmDa_8t_JKdU?;n}88A=|
z0|UCV*@Ns!_9A<eGD9B&`qKN6{Z&4IlATK&EUxk)1`IV|m;u8L7{PF@0V53<Wxx~z
zrW!Ds;RJFFIhGtp$`Z#L<k$E5M-UU4Od=<%-e5{hGhn&_E11kMU?ydW0kbG`4VY)Z
zY*jx;o^h_^d;=C3u!#9WMUl4bU99S*xs<+4CCd#MXVQ19JXSJXMXokr4P`iISVvz^
zZXh?3n@Aa3jUT^kW^)U<)qri3?PUC2NOl>p+koo^+%RAd^K%BAr|gxNp#l5p2gu_F
z9HhwnhYUDOKSCZ=`7z4UG1>{0oHXDR{WN(-<!238yk9?tFBovqfG^yxO9osv;F_wr
zB5O59yUOO^zOmxh$7u5VzGcZZ`&fN1$t8?#$`Lpy_Lc#+4ahN8`|8z%_YAmiz$7as
zTk*hvhjN^ovBivk4R|DLZo&~09vkq)fD1-kG~%fN&*T(pL>D8T8}Pyas}VLMUK;Sq
zfCNVTV#I3$-Wc%FfKT#@9;>w;t0gR;y*1#S0V48vPx(N0l%HJ5$zT3aFzWv(eBma1
zCBKp1$sgoTQp#eC7{cw6|M$svX%ZTd$cUsyBr_s0=aHHuMl2eu#qrBgd&g?YnWr`)
zjS(s6Dall1jJnI%-LYC)Ch16-$3QU}VWOB-ZZRUkxc`noyAd^*JB)A|<?l`Uw&XP;
zpAl{&JVtnp@EM^o_Ztx~A`?AGN^#VP5IwAth!H`~pI#*yC>f0?%sexjv1Ari6KBMq
zYOS&wk<EzgM&w{`ZZfA4xhTEIY4VUo%Oj5pe>Eb%5fxZafGkE9G@_6!m+s|N_<o}o
zA!UZ5M$F)B#f>Oo#P7^Y8c~XJ!>^U5lq1WKGODcXqR@ZqP~Q08@8~NU@dpbkk=2Z-
zOsPUvC1q?yei^K~5u3Q&nnu(zqP7urjCeav>tMu%aayOJadnNTXGDG3Ek^uhL`x$Y
zaE7L8o`yy=qBmAa6L~IpNorY2GltELXrX#9@T0|6Y_>I`HRW%zjjEA1@c+=;k?mD3
z*UU^aUh8N?CpiwsYw})2*wu(`Mr=1?hY{V4=wZZ$@!A?AdK%Hoh>=E&G9trxO@5o!
z+X(qqTOZEW*NA>b^j9+vF=7CHAUR0ogN-OV{=YpuREDd3xDg}h&DcBIh%szV9j}e0
z%rs&aWt<V?jhJA>L^frgOf_PX^2tU_q4!lwnP$Xv)jPwee=H_L<T2Zbg({z8#9aD3
za=ywJ81*YIO7S8i78|id<tvO>s(cw`IeBan&;RsQ<ZAAs_$972VjaWvvP+HFD2Iv>
z1$i+LDUhoJ>18a~Ol~2!lG}_p#Vy)t#4b59jW}S$ZX@=vcb`%Jy~&I5+Fm14PSE5>
zK+y^MY=tIh2aPzynqCvM!$usTpCP~G(rb>=j~Q{Ca)LZbo+72@v>dUV@GO&a<ayO=
z{S<S_h|6;9neev>SB$u7#7|iz6RsI?-H1=}VsvUZjJRpUBQ@&x@3FUxxXtDrS-MC2
zmwwlXd$MV7V(zo~fP6^GnjCx+Go5R)af0^Ph$r$-fDzBw`-Xf@z93(cuSgmDT3$!V
z^-X@u<Q@55^?smyG-6q4z2-BUU&ybj=9>}U=|9Lyr~Z5I3KO!J^mA+i6Miuvp$UoD
zw2_HTNM%B56Oyo*luSk@CsU9zJSAo3<G3^w1DRI!rZZuQSzk9J6BB7BEvm+9!Wr%#
zy9o}4P7?wq1nDjl+$MNT@Uoe7qCT5XjrE)Gf@38NG0b2>m=YnQsxrOg9Gg)knJAe}
zkb6?faCsD(sKuF}nUK|lY$p6+LM0Qjn~=kVA|@1NSx)j-6LL{<lX=Lzq|B4gB=?ij
z*E2tp0%SoG3Yk!t{+p_lYj8=KTyv}#lQLv+6G~8a^H2Z3n^2O?Ql!+Eri`2$Tb5Fe
zEKgP-rKX|@HMzZ&O{ii*GZUJdP}PKLENE&%brWis(1gvJCe$*a0lhX^kE}z=Y;{fO
z$l1i}GyKzpf6MFJ*pSUes<N>OW#;KSQy$HudVy?33)S1wguj%_M~JPI%RR!{n9$aQ
z5lsFup`8gsO&DfEdz1Y1K<jEkHxoLTFn*%eQH|<E=}dMpVFTAtiqA~cx~rNVCiFC+
z7n{Aw0VeEU9M{K$zHIhWmHjEtCTas!GKeym971NzuO*(OZ`5!$H%<F*OGlb8%7oD-
zj4@%X3F~ELO!Dp;<4ss-!Xg$=Ag7rykur&#Ov;2)C{s=Pr4^((-Gmt?%w#y1oJGzi
zrC<)lJ4u^InXmE%CgkNBE@rZlTtY5YHOov`u6%_&j~oBnid818X1<18t7_I!s&m?n
zCTwGKQ+zMEncPBdjnCy5wJEUOgdHaAWU`OkrFwT$_K<r`=*-FYtKI{YgC-nOiR_l6
zCLEI&kr{=}IBvoT6VjPsFyo{Nr%bqG!d(+iv;Hc1#)L_ew6&A8vuvIt&yyESxJbD~
zUM6L)UXev`O~kL6aGm)L@+NspRo<q^CEBF&9{sfm_f_u$6CTQrHQ^DHrz(F;c_K?m
zuMd>RGZUVx-WQaY<SX*wB<+m}Z%ue-!g~|an)TDg2NOQZN!yHsW_)7V4^p~5Q@)U2
zP57qr?<V}@cKu`$!+GRJyfP#KDH2VMMD*k;No+<E<w?y*raUDlNx^1HGg7HMwHaxY
zpDd&~CTqDSYetpiGs9$t*$j&rFN$k6Gwfzq&8Rq8Yc*M$H%7l~n!}987h|)T;WWc#
zhT9B}8R^Z)z)8Ghko1v$GXfM@|K$A0H^gSxjEKskW{jHr-`>t>Mw}U%8JSdXW;0@y
zXE9@?s?2JJ{A5q2mB)h5vDsOZgUm_hB6E{@NU6+AIW$@O)r|aR6ks#|41JPcZpIcg
z;~X#6D$U=_sAoofGm5aLs2Rm5#m%TnDM9{jMoCI3GfGor?48M488gb7QI5$UWO>zF
zL3Sy<AnztwN#&I(Rme~B-*z(|u8pg%dTW?blU|Fgt@1i%)K!it+Mi}LFk_4vV;MFi
z2b<BzjK*d(F{3Gy&So@IqyDBeH=_mRFR~@sij*yCEzk9o|DK~Z4BMLVj~VUg?ah#j
z)ks+fGdeQqBwf7eZ61#5Vn$cy-OT7ik>c)@9%l5U^ip|mGrmvMXX|T5KQsC>pL{27
z^2gW#^nt2!kQvoE{}3~VnlX&|a9Ib2b4Kfvj4)#)^HJnzGX5*~W2a~<r)cBM7;nY|
zGbWlb#f+(PzDlMYouW;W18<Pl>15nwGagLQWg5pWC8wJ)gEEtxZ^kUjY*LmxhccI(
zXO^2u>w9kjn+wTB<YH2~mdLSvQh)Ea%#7t`tYE%Q^{zBy6@4|iM&)be#d1*}wVufa
zawEA()%;JMJ1%{z8QaV#Zb1nPwwtlTjHDJMvtXwgyUh4t#zzj>ZN^PAZke&ijJ;;;
zGh@FQXUsUu-UDQfsoFuxA@Z;pM<_>S?@^AC$4Obe6K3S)I-Fv1TIJQ{R-se1b7ovJ
z>zC7%%Jb~HKwdN>^-%paep%IDG2^Q8YjOsV=WD8VLnU&@uG?m8o~pfJa)-Pti_Wdj
ze9w&g@>DW>XvR}Bp2?>`Y(63%lT!Ia)`x5RTqUpNlt_Q6l2@|FSYw!`PyW`7ckIeK
zO?xj#PA<**I#wuMpO}9$<FgrG=wHofJxvQfh^@e}-x>Ze<0mD?g2qYofw1W3e|aRJ
z{9-{ul_attvGODoxkYSp3sP7RwIIC(DJ@84!A;Kp`as;!X<BNQrLiEb1?enU$S#)!
z1`CW9nAmGkbDAwUG+AG?JggSjnA=H*s&UGZ(?wrTw*?-CUJH8Ni3wTYW7DrH0~Q38
zU;V5<p<y;77VPJ0WMESxGm@Ds$ZSEZ1z)CVw(0s(vM`S$rJ3NFK2KH)vRRPbf*cm)
zw4k5`g)GQr!KZt%<)>=}EXYmILrR#}f_(H}$^2xF>6&!aovz7{!WR5y!J6q>F$?-n
z*NTv7teSXH`nc)ZvFY0N_i?{lP|||E7VP6Hm9n6-1zjvCZ9y3e%34s)g7y}4u;78r
zY(aes{<NTi1r?>ss<q9o{b4~R3o5HEs%b$L<y9%wEU2!M8kCqB`mU%&uT9n=>yq^>
z@UozR1r04|BnJ|gRd|M0V}>Rl-8W&G%+SVyrWQ0~vpM;f1uZCxHtXk;mh@I+Yf{3$
zE$G4d+cNn_<?Sr`g@~m<9vv;{#C#ench1mm%+R`8(9MG37K~t5cMI$@wE;4l1wG}M
zVc18_*4u)Q94oW+wV)sK{;Id^*4Tj-3}SPz1w$zEP1L@-^`#GGa~K(a03UfAJCe;&
z7L2xFj0IyYSZ2X;3&vR>*QJ?a!BiHECns1ikur&#OzLaGYyMBOU=EY%DxX1_NzSrh
zHYN8=eQ(UQV4el@nJgwHTp%w!<%=wk`%O!@gvnBsx8y}3R#>o+$w~`WS+H95u9xGJ
zzLs34^0xeLzy>zu?tz;`=$pwM7HpwxC1s)8DBCTl%e9qcCzD;|ZgP+8rIz}(?6=^6
z1zD}gX2n4{Iapw}!eZ4=P=_rzWx;6+j&R6P3yxWE;(gq4*}ZZw%+$nB$a7jvm$5T7
zNzPbs)`BM%JhkAQ1?Mfe%ds-s1q-gxFRJ8{1()ep$g3(}HB-Azzd_z4Z;`i2neC3O
zmD;*{7Tj0)0}CF~|0N%({IQ&HD(Kt$%!20@z={M`{GC*LVZkfbh`+Sp(M(O`wFPe&
zz9m1A?<{yv`9R84A1N`jw9hg*{i_8(DBo1gcMIIJ^yU6kNsJXanMn8x_j7V95>g~d
zL`iH#5=v5)C$plW8kNF|l+06Ek(!dm3Iiprs!wM{Yt|c8VzOeen!##?%?dla>_N?8
zh0}_>v08|U%L<<rek<H;dejVFO8kYY0`!Hmv>+w^&yis(BJnj=#8T3evRxS{8Ocm!
zW>UTanuQ`YaTLvpJ!(C(TT#`DYF6Zson}QYD{@=$n-xW@$YVwPRp9bkabuSDWNmCd
zHP5eB<X2vRQqYP*Dk*G575=}wD3dZ)l%*82qBx}l`8!#Xlyxg*MQP<9XKCf=<yG?U
zyVwf!isT<;C9*OpGgPs{G+RFss#{URie^?cx1y%%t#3sw<+Ukw$hub4qh#gSKj{rf
znW~``jg&X0G$EUksh-BPu;MQ(23j%5ik4QiVqSB3Y->6At?0#O8!Osc(S<H^{zGX`
zwj=lNi0we>NOmHnva=O(b03keOuCWX$sVevryRFjb1Ca>MIV*-wW6Q${*(c7#IkZl
zIc>14@N8|O6+^5T%HCn*7%PTTMvx=PQKZa2+KThMy4qMK<H+&k1XUx~XOo#zcaEK6
z#Z-9-*x|5anibRK*|(vD4Ku8mDQ7|}4p}kFirH4|;@COlMk_X1F_%8iiusfURxFZm
zwpM#Y>_RJqMQdq`typ5kQWmTxWet~Ev0V8ID^@CBWyMZz`x=$3wPKy}^;T@4Uyt9D
z^quk&o}+EHVv7}9RpoXowke;?D>Uw~;)~k<Ip%1)<;7)1u?_maO?$1_XT^Tjx1FOM
zpj4QnKcN%mXosyhVujHLlMP3$IA+DaRy<<Oaq=R0!itj=8Fh+s+KMxjvnoF)&kOy6
zO1>VByJW>>Hm_K5Up8=#cGZe&Os-pTlX8QsHc5Zqa*Hl<+lo8%yDGV7#q$FCYCllP
zLo3d5Lmo4EYsEV&p3t9?&&cQG3-TrTij=8dTk%GDuV=CEt@t2&(u%KEd}N+{u9kkT
zzR*u>ezxKTm-x+!?@ZFz@Ph&y64>;APk&kwLn+FEztEGB(woqRM9LG}kVJV>8_w3!
z7nEEjDQrkdPo<L7Hpn+Uq(&ZTZAi!5pnBua*k&8tHh36XY_QtUcCKb))2=EVHaL~L
zY{<J!pU}%BWJ8$Zv%yaZkU<;9%+*$Miy}50o~vcIA%_i7_NKQX10|yk8YL4c(`L3I
zmYzi=aW*{QJkpz$VKy@HJS{j+%V|RaHgl1=NvX_3$!kMC%C9QVFZJ{E{Z^1kA(a=l
z;Wv5_vZ%_7$#Gsvum9bKk~VCxVWSPDY$$ERUpBO4SsAhxS=NSfHk7AVu%V_rW&Dp-
zMJ9jPP|1eM^eQ&gpvdG^ZK$TaI;HwNtuxni;yi8bJgv43b!@21u0L&PU_(86ee(Z*
z%_Q%N8_EGwRcmC^e?)e2p4QlgCN_vPC7Y4WNeNp}p3T!*ah@qQOtqo44S(CvMvep<
z1~E@EU#s0K_8)nQ=WFe3Xm3LY8#=P9j}4tD-O0{m7qTlUTi1>9>wK*Tr6<`-_4c+Q
z{wocAne<b6e;WoUA85nOUiwit*oGlC3}rsth7mRlQ#IA*Ya?wKWy3foqsg)481m^p
z{fyCZzW!{EXCgAehKck^Dw%A<7k-6fnhn!!m}|p4IsdbFCOLsK%%aa$qvlXHvTME#
zE7@FN!$NtT&exi~(pP?w4U1L%63S8=mZ@YpWrYpTILRs-(j1Ci&2WtkYi(GkD&<!7
z>y@WmpluSj0d^#?W3vrg<n?01LmRfTW`_-}hR1G`ogAlaCq-fxXgh7#Wy5Y8_OR?G
zxz~nMHk`I$pAGwMIAFs;<|l19M3JpHDlcdH5tVEm5Oa)vTqP&uY5JeO$?}kE^qrBN
zz^=<SoTHp4uZ+<PF3>NMmq-a`^3&rhY+fa=*>GL;-mu}Cn*Wv!w^e?}hP%q|*>GRE
z{7UX$`Umon4Ugqjyg)w^o-lbTyWNK8^jG8y@+H}bl~Vkg%{Sy*8{SbQe{Vw{)_i30
zN#&pAShC?On==<^-zeWz?++V(Dvz;ahg!<T1==rmB(&@QIwZ2gN=Zy6v17$c{V+~y
zM>0E-+mXVKl<YFvk&2R*OiiXCrGDR+m~?c5N>)CNF)26OVNt%}ON@>FZh@A1q2{#1
zWyfnf-q_)`!(&H%JN~r8YlqK{JZhAml7S4^5ws&@N0`kc@BTXyB5X$ONKcWqiY(Nh
zf{b=#vLmw{v33+46&q)VM#&;vs7WF<^%iPbIVu~Ooy<YzBy*8cncI$ToK`%q9r^6|
z)sFmj6tJV59p&wqy-+L2;-X|BvM~7@S;UU*oS~Q<#pxxOm$u_~J4)Ii1v0rjN>MJb
zxQrcT*_8REtAbtsDPMIv(k#*{GXF!3szj-5M-@s{l~<FU%&|3?)Ff-E-r9E5q1RPO
zJ=tlC^kp@$qoE!B?HFK}@4M>j*3phml*VKevZ)=->}YOB3pS;!4dpMgCE3c3)~fe!
zJNnMmzac4)ws!o(ydBwI)pVc~U!--Wbg`qW9a-dK>iMzVm^9=X$_(A@=%GgSr1Y|*
zH>D5RSM~O@LvFS%Lk8M0$d281>|xhnI~Llp$c`a)47FpJ9mD0>v}2APBkUN-nq?DX
zM^VPxF@ZALjxm(6<Tz3$pU6)pC$c$>oMgvj)jNeUmF%`in@*WQ&Lm}qS$2%)*3D%y
zU*+>CtJt-`j-!;tcKo|Y+bL)1#o7`(ma=A<9c%1ZYsYdnSEw0Q+OdkhS|zc(c>X#$
z!!ud0@(p%uq;FEm|LkboP(LcRFxg6OBe$!X9Td5O$1XdP{EYK2)`WZQ*e5H=uKji#
zu;YPUzgg-*I}X`#*N%JaI&8-UJ1*LBL^jQiV+>D|ve4spoS>gn$tgPuFV@%Rj7rYh
zaZdSpO1;I}C6!#a<FfKAl&f}JQ%Svh`sctm*t}`SEy``xd&iFMT-JR%CN0+F5$F{w
zT)S9%$eNDJV^1#D9;y1rlqYsPRmn3up3`5DFIE1^jvvGHWAd#X@9gN{Kt~7O+wsAU
zst#0h;G-R%<h<uV$bpA1Vm@=A-GMK5e6{179p9N`Sfc%~<0swVK#W6wwI+5Ti36ZZ
zGl2uYC{O4>BKj+Cm-HrOGnE7K+mK`qBxf^)s!ti;yF^P(NkgVpz3C|aOR+|km?&n_
zLRv|i0|B|09AEnm2b>J0>2knL_mE!FNBT*r2{=$}iT;esqqiAh2O{i>I*{3cSbBOg
zg98~UnMkQ`$bnfLD9R+x0nLG|4rFtnfU3z($>Tr{N=`DD>doyy4^EPoNj~yd)tlcT
z*JIJwt)NN@IZ&AXn@Wl}FpV=5V^Z9K5)S;XddoUcl3t1|t@1JsZ0D$Q4wPqD!GTJY
zimK)h%EcvGWtCKM;5A3dDphx&t^@TPsKMTv4*gd3wdl3UI%-tzM5s@1;lN)G{7G-1
zdK*$2k&PW_qVlE=G*jN(0e`0do}-owTRHSU$)#MXEgc@)n#tc}8?vnf|4?K-+d0r)
zc@nw*qXV7gnRO!8i7pOwb>OfAM;z$pKz9cgIj~rs5!Ux1d#bU$9O$h)<5I1!1N|K6
z@4x_t6C4;w8ScOc${=#E14Af7Nm-v^lrl^8%^67_?Z7D2+jyxqhCY@Yr}FU*#1EP1
zz$6DIJ21t8xvF=n12gH<$muGd;XqF=Xcm*%Dxc%PMCP&%^BkD3@&%NI4s24rOB`6`
zz-kAUvTK<`|4Hw1hkiT1734}XQCK^>R9oY~T9)l{V4a$ClLPDN8&tAU)|S_M`JV%u
z8EzrBkz2{POSSEk9pp|@);9I$nB5NSVKe?>m3tl7r+W80aDaYLC5IfaEYo-OQ3sC6
z(JO1~z;OpoIP~v5-gV%lsys(I<-lpm8S*TdlQW!m-~yW$$?FbWqFg4gkXK1r+%*T{
zFM4x>NkA?E;lM5WZB=te4!kq^Y3H5;_ZdDQpUOFz@~^6VM0xDM6O~+i81sz&oP0sP
zBwvv-t^8&Gtpo2INbf`jCz>COeJ|%~ClWgGLH-GF;FGHS?!af|UmW;K|E3c8p6U<!
zPcp{&-}^~8k$_&2`zMhTiJdSxVP=@biBwLcrY9wnIgy+q>z2Zal=M~{E6D<0$v+Ll
zv}8Ib465Gf#1K|moUk$skTxgW6g%l4outg^a_ZMv67ewcl0MbzcVdZJdeDgw^Dr4v
zHBrj`Wm-l`Ci2cQ?b|ZBCqkBLb+s%`#5qyRiP}!oT^Fl4k=uzpPGof=o2=?`ExQvr
zoM^pV%eh>uAmj|W$b$S~V_qlnIZ?ogf=>ME#Ng#xekb-X*A^|;{^Esa$HZuboVdSS
z`<<f-ld@62QHnTGlv0c=u6j#2k!Xd!?IoQk#jvy!6`lBlUdD;ClyYQwQi>}$v5uc7
zh*xr=D)Y)tRB<A}*$R-=m{%ujsIfJjsKZ|Q;#?gk`a3Z|_K6eqoT$&5mQJ*C;!k=5
zCmK4@h~A8BOg159=}jqnV$ht@Lgjy{ytNa5)B8HnM)h`eqOBAEu-VRuPL%d!2UXM2
ziGO)X{LW0esC@9xm~KvVXS0VBeJDN2UaF?I{HwujlwUW<O3I@jyW}^I1DzPZLL2VH
z*2LN%c^;iuwL%*;Id+H|JCriaiFx?%6*Pj$NGC=)G1`eSY>p*2f7B-*M;}j4ASImW
z#4)bJ6ep%S;mHYaPE2!Rx)a4RqIgF6@;PS8Q4vJ3AZ9r++lljDT<~I!6LaNxabtiR
z^PHIPL=6{ey0E~Bg-+aX;-(Xe)KWG$u~=RpPAp}zj$B4AcVY!)rEDWb*6JZwX|)q;
zRI=8I_{(XoXR;-WzQ;B?ft9*!lF*6GPHd4q#)30WY;$6}69=3)$Yck(o80NdE{co8
zWrjU$?sZ}xWj`r-Oa8>*5Sz!HIIQv`l%uluR8s0w%nABQ@)UVm^_Ke-bJmG-viF!=
zRrv)cF48ZNmsNg6UcYMHt}(n$%1;SyIdR*GTrT8x;f@n`op89|bm@n|J=PdqxbMUR
zCmzbd>BKiDzB7O1#7ie$Iq{gyC*)J|87VV7r@WA}5SRYii8o9>kZ+xMM~T0zgw(%h
zb8p|+j}%EhQ9e8IMI~RI=&H8m2g9T;{B$D51#q=x)Gw3-<P;VsbRiL&iB(M!5q2eG
zlH7$9l$2x|7gAAVw$zkOcVf~~(y83w!a2@hVq$i|;)0bvK9!bYm3}PQT(C2F#!466
z?SjXJ`1`nNPh-3cV_opM^dH6eNs)jHK^H<UgjJG(5+S25q^I;Rqe-zmGP;mSRc5B7
zU!}=63A4Bm$3@8cXq2ojWTRv!bEw{&F8t2b&coz47mB!$m)>xdmd}M>UC8f30VXMX
z=;r}>6m+4GnxU`@gE&Kdxeb{M<(L<9p|}fG7sQQOtk;*2r7$n4MwN1*G`$R2R^@A+
z#*}xVf(sRyY+j|sY}7xs`@@Aws;06FRg_nCp_=mQF3jed)N-M=3lClRmtA#S7$__0
zLR}Z?F{$suwN+Yk7ygt5jnx{c85&X=k&RtwLTO4iBV|oG$@f29_{)WsF0^u?n+x4t
zXsvqNy70I1HZE-89i0DR(vECTc5tDi3!Ug)NSV2_3-7r8;$2-xxtfQQAxjSy^m3u6
z3pPWRkVg~tR-^h*`jY*~{^S4`Hec3v{$Lk|xX@#bcGrcWE(~+wpbLjw81BLd7dE=E
z$%T<FjN+)3E{t|zj0;m;nC8M*hBC<{7sk=YlM~2^s@KFn%uRM-ib~}6pwsDdU6|*>
z4EjuR7CD=gndi6=;g*WecVP+h1un$jJ$9iBi&W)e7YeJ&r7kREzFhULaG?%+S20<w
z@-;53rLQB`t9*kCU0C12ru|Q9Y}#fQ#;?}auhzD(W~&R^DBE4wL)k&@BzKXr&b#HD
zz<KsE*+=eIy$9quWv^VBKh+xTunR}nbyQx<YqaxnPGIx63nwTiT{ulSMaulE?#G^?
zpC!+!+~~vw7urvbz39Rv7cMiuL0%!RlGjL?=ei3e*62snO(wU<+p6~trNJ8Qo}Bz$
zc%br)95QW<_Q-|Da@f1k(v8z=v?ngSaN#A(o{F#0p2@R3HTJm+CA-EZU8}uv;k65H
zH#}~<ap5g1)3^~_tI4gC-?{MKg%2)#lykTn3EcX>KA%|gmHbS8Aq%b5SNod_-`V^@
z{v;)j;n<q2`Gua$jf52GP2@&mdJ>f+b)zGTlQT&{rX*9Tn$(mDYqhj)q;tcda=RNw
zx`{Na+~S5+xlNYH&wm_DoTQ6f!{vJEem4Sc_}n<o@b0~spc^4Ks<~0!jWBDnxslzC
zh#OHi(ld!AWxF!Ck&&KBC7IpwHF$kTWl>3-8=CU0Zp5t9dvmyvlVL?Nmm9yjk)NKM
z%;QF0N<LDCBrm2FaHF6brQ9g(Mj<x}yHQ;A{^mwe<wYnyE~uDn-8xOK6kWoN-<g+`
znb{?C#!DGD%BitsDdyBDPmxP%S8yZ#!rFf@sYF&LtB^8JRZ4;<aW&ki=|)pFYpLEp
zDYf0GL#a#FQ@!=wsG-)Ufg25(HzFIWnkH_vQ#H*PHYZz<^23l;s<IQMwHtrC(Z&tA
zYgk)1I>^E1#y_g2og3}x`M&5M#*SL2ty!m?UZ=fSr*&rD#f`3RbaSISo4wrVp~lAF
zuB#`T@>e+--kaWs>`V3|Q?J(sx-m$$+Jm|t40dCP9Jd~rJQ(W6FgKpN@xqPaZj504
zIX6bSF-qQtyD{I5(Qb@kK2@H$?*ILZKh}+La>%XM525jHOklx8auO-|WXcpbim_}O
zo6}YA3^!)dXOXkXIjVOqrT%(tfg20mIO4`pHx{|E*o__RT0*XNV~rb2>B~r2?sCcs
zH&&`-mFz&SgY>SIP#$cqW5IfIgBu$uQnSg8DJ<B`$}QwpavLebw^Iszh~4SNE;n{d
zQ~o$e?jfbQmm(Lt-cLE8@`G+1QhwNtb>H;2H1b8kV{W|Ua*wn31bLD?MV=<lkTT?~
z8)wyaop<Ac8yDTU<VKPW+7&mhx-sb&?XsLPHfSPJf6a}%ZrpR@x|-nz<)$0ARC3#m
zJM>~3^da}@|B?^Lhop2hWWgggAG`5{@>KOcbE7{CUNU)0z9L_fZ^(1}%I-Ti-n;R^
zjgNAI^}yi4ybanXId6OPz51DzB46D2>c%%WzN-Wt{Gk6-NsI@(x!eRC`wJ;!z2Eeg
zSRxM+dyvF~q|8&Q-eevmr>9WK#pf}pl&7Yo@gS{AuFC3d(99dPo{6()8#S{B77wa=
zP>lsv54;}uJg|9S_rRe>c|35^T`F;VkUOaFXL*#|sQH;^B?BJ(`6Djq!9R(#5R<S6
z5lWQI>_NkgT6zyMu$hs}M9ORhzv~B8ESp(8h@)s^kB#~gvw4u6%^V)&^Wax{P7iWX
za+6Y)$Ai4|e*E=oetHQHey0@hpdh7?2ZbrWc~Fc}gp?VIdN7$wEUprHFDiLS4@!Gb
zhG8kP-QbwAs-~hmkMCm2c~G871(i?u9`gsi5?NX0RXi9H{clfJ_n?-_Yj{wTzJ}{i
zTjg=`%^wfyd$3CuB)i&!6C1V89(3`bf$Ufh8nN;(Ql5gw9yFmhC7Y4W$rhw+(UXl@
z;!Rph4_bN9+JnD6XyZXA*)yB;6>H0~j^sZcw4<~qJCIUSg5TEgZPH}Ov}{^e54w5K
zoxQa=Nhh+02R%LL<w0)`7JIOS1${gi<-uqV`g+jMgZ>^2@L&r6$1zaNKa?^^{uQ7M
zQF#sCK5rPC!#x<G@{#h~afxG?Oz>c$2V+(5ILi3=<|b_tWx5A5D3fLBl&R!2QnvB=
z=a`ww=Xo%TKAW7Q^0^+I<#OjUS)lTT9xS52WbaZBmU*z<gB>0$XTHLNl^!JGk6c!H
zuv$Vjc8v$?=xbFX*N0h8-#~6u`6kL$Ug%@92V2<ON^Vm%a<#YA|I^+j)-wK2+v!2^
z|LL;FgT3-<^5R!7_Ia@1gF7DF<&Xm&9P;2W{h%C6|I-hNBXWeK(QY$5>cKIOTzdg0
z*eqqoNy-`76_isRoTkX-Ol9mjy2xb@&eJcD7gc^q4i7HniU(IcxTf+O9$Z&0H8+*t
z^5FFd{X{gGqwaZdpIv4z9(eFjPMcmN_2OR-9(nMcU5`C@;=$AZX^A&$Pd#|%!6)X=
zJ$T{4TQzh1*Xmw+@QTT6mA~;|6PNXl$$RpH>iy`!DfWI=$rlg4(!Y`MHwBgz{=w!?
z4`RH47YV%j=|vuiz4%3WLP{bp{G0W?w}`j9+L=&G=0)wzT5>Ps=E4OxYbjWk(u-7-
z)TEJ2<3(CZI#MPvc+s1)iJKVC*sNK+XmlXf>V?e<yB7{GvariZ`eX&XaM9hQjP-co
zRsQr@On{!540;jrB1}(DMo1YI<$^>qc#)A|CQ|Z$mg*;edBif2W}IvwJ*yYFDA~yD
zWDYNKQtCa8k%tV-&1N1lFDap{TYfJJcu~iTx?b$stQGX45_=1IQP_*$=%rPC5ig2*
zQH;&vWC^mu&zRp;O-V0GDgXE}ri}8kUX-JkCo8DDBIOS+?r_gnR(TalRk9jc-HRHO
znq)0fwxYHd^^54oKs_d%z33u|7k{$ZfNbtXLrNo3iW_^;M0ry$nkkpB;kEGMFE(4s
zo>zG*FIp@A+lw~J+j{YXYu-*J?I|6+=%|uTUMwoCuVGg&x_L3xi)mhT_o9avL%kU0
zMNd}tBYVj~=tUnjwl5|A<LK=-^uwS(lL6#FF9uNtlhQlH3-=a%S;M^;;l)IikMv?Z
zeH1yG97B#JWym;6ZVsQ|Mf~^4C7<NQWK}c8izNJhb)_xZbT8I>vB8TOUd;4jmKU>G
zwo*R-rz|1odNI$7`SeBP0#asP=tY`O`hmSzCGyq%rSxUwa+R;}q8(REidT8Dn)w=X
zt*Tk)#c0-S^kS12d%V~yU8;9GWiz>j-0H<P)ho;0LElO4B6q9a6Z|vEJ}-`Vag^bH
z@_-iyDTh?$VJ}v49geBwlo!X9pYY=3|2yYA?Zp`;XH|aAi({POq8FEB6a3ic$7L_B
zc(Kff<vv{X;+hu&d>H7%b$OcP9PY&<FK&8qi<8_ZZ+mf%@@R{8$BX*~wY&1%O^!{t
zRX;rBF1^ABUOZIG4Q|yQd-24Jwmu}^u08eQnVhM7i1_f_ix*xveQ^0u#iqUV;*%Gj
zy?Dj3uf2Ffi6+Eb$~*EsDNFg_#YcJ}F8YfXU%g1}LmHocV*e&*cprZ8;X7-7kUz;7
z7Dx?zsLiqB34KV$JQ10gOrk22Qo3x_l2cNUDOGPOpMFVjnIx@BER=Ml!3QJ7q<YPi
z@mn>kN^CyZ=?;}tejT%Bt9E>==Jw$+SJJ~SFX<!wWPl8kAs-TM)7K>GLwX;|`B2`6
z3_fJ^A)gPw`jClbQjm?3*@sw47L~{OpefJl)2|gH#q!ARLk=HuvMZMlxhY;QOM3J8
zkXMbG^*JU#y{Hexd?-LKNERXslfRKNwule;)jY)+mLW@!zxz;<Qi?21%BVN|^I}=q
zOumb&;6p_p{`8@N4>h-GojBniK2-9dvK(DLROP_hK2)RBQu9>zp@#CBK1@|>BAZr6
z<#m0ir@X!on^jFiA6hVPq<S0s(1hNUY^L(&KAh*Mzf{ta(#nU{l)qKp#)ns|{KtoO
zKD1}v!G}UAvZUXxKeHW~bn>Ayr3=~1hpv=vWOuR$DMNbt5O+g=66MjGVIQ)u5B*e4
ze;=B+(B~iI!(bm4seFhJQ)IXJFw}=(42P2=d?>;78Oi1-A4XHgkmGz9OOXlV-`9=z
zVFHth<RsNQS)MY^GtGzTJ}mHIA-iVyFwcki^qD@$&9G+qFq_ReYV2IfkaKbJ+r#+l
z8@$^b*YTEq3hKr=7pux8l%+mQ+ODnHuC4H4r4L_y_{Myd4~Kj>?89m{<)Q~`C~JLK
z=fip*Hn90WdFp-GNZ%Bn$k!~lYg_2M$gSiyayuz2v%`m-%HzLZz1xR9KI~<<kK8ZM
zJJ<Pusys+ZvqO{1I~?)hkq>ouXh#_y^WnG;Cww@`<{ckS`EZ(k!-q4JOXOMd94TvZ
z-iHgyFZvMOp+Do7nOq^SlGjwtbvZus>oxMY$?%pBw^eTu4!`TeJtp_b2joNYUsA@(
zvL5^J#D}LoJd=<EpZn00^2&!7s`4d8u4C}phc`aFW%HBjeMfmue(>R=%CpAsBOo@v
z$PvqFzx(h*j(k5fzux<ky&iguAMhiAAHT4<>Rz15kA!|C@*^>mbYv1glKPR1o{CIP
zrXXd`lzyD$vQjfiqw=(V9OkP@Y7BlDRsL*;W>#+T!|I2PO}ifsl_%b*IhDI8ZqmO~
z^HO|%<lU+H=>b22ln|NGk1$1+8}TDbPp^^;e*I2%(v^uxW|hbKkwy8J7cp7=$mU01
zKl=HR-H#l86!W9FA36Q_awaa9AGuk)<WX!MN`5jgnUDOHH1ZlX1?aNSf_@aD7bbrr
zi>ThBepK42A8950_}!0&el+sqZ3;ap=|?F)O0)70DWjAj%aY~D@_tmH$dHQi#PRPM
zl~q!MQpJy|lxk#k)hi2?Q8oRj<wtEl>aba#tgCA3QCe~(|Ma5)n?u=b>_-#7{*C1x
zel+!?8N2==oBPp{BJ;QK<1gj&Ik1%<t(p8ywo$!p{n)_*8P(2@_I`BmqoeBW;zuXt
zoz<LOnRHWmcX@ZGX6VVV7ulQa<Htw#_V;6eALIR);KvMg<+_1>G(H+Th?Rr=7(yB9
z$1p#J(?^pd$dRP1=O{lcyY%O443n`cA4f^-(I!$B$?I{KHp!34eoXOWsviqf<uuA{
za=NS!WhOa`l*v!>yD@Y8n9F1yIbZdjz8$krx%|Cju^&tPSn9_zKjOM+Q+H|0*}F;T
z#|l4I`mu`1I&w9+hLmNk^<!r>eT&vJ*`V@`ax`*FH#6BmZc)8k{n(~_yBx`^+{t7Y
zxm)$_@uMeu_xo|ckE{V?3*ew1hx|wzK)L`9`*FmNyMEmB<ES6UIPfI7X_t0f&2xfs
zW|wx#kJEmfk&_aW8-ASg<Gk$WSnaxBzf<SB-}TM8;KxN4Tp}-%l3(%Ts`6`o96YMO
z_mlg0$~XEp+=;vC$1T-++mAcSpYGC<?bh!5@y(C#3?KLr+O0jL|LeyiKOXz>#E++b
zd|(*=W7ubYJon=TlQ-l`@)aqIe(lG8e(wF2$vc(5rxe_+Z_7veC-SqLpj6FQiu@G)
zhaW%XtR6s;0Ad0_0KWu~FaS?0t>$hmK>+P{Yw{SgTT2wsPXg0d#jWJbavSTU0mR?Z
zI%NRzgZ*RyBxg+uQi|h;qzXWaQ!`AXh8O}c2H=(j1z-xm9DpN$G3#P`Cdp!9r7Zv}
z<q#KV51{T{{jJNO`*Bj{WU(uNyRvTUV!Z+QSS*)>^#>3LAX5OD0|*8X3LwI+ux!^J
z?UbhP7J2yhXi?_r$qZyhGA4~)6HAW^AeJ}W%o0GMJzAYTnifE^7)`?MZMEzH<Otwg
z0Ote989=T8W(F`TfZPG(37~fXeFDfEK)wL}37}m7zXp&$fGPo04WIz$mj(S6Ktbh&
z0w}C}@q?Hm0Td0O7?ZLAlnbCZy#)Dt03`z`MK4XtY)$xKb(sLV?a{ZQyvi$3mOO~5
zsFFVdsHD6yMQ(sqd`(=n0R9T#*l$|(0BXoH%dYwX{7I=r)+X!7lR}XN)eAtr)GZ>9
z1_3l--jHlWHdd9z-^Vmn-i*?mY!N_<p8D{XY_?K0tto$#Z31Yk@^bHE+6T}ffKE(0
z1~7Gx_8YIFzj==~Xn$O1RoR8oRrZNWx>I_PJp<@PImbQLmp(jz5dmzS7uS!?{^WoF
z22uu*gUKP}P*PTYnCu76Gm^>J0LBF{iawegqbhG@*3$0P#s@Hk$pn>83}6y{G8wm5
z->XyU)5z%o%m^Sc-^s_ni;#lZvMcs#y91cRnz;eY3t)Z#3j){}z$S(Z16V<k`bCt*
z0W6^`C6}q*<rKM0#L56x1+ZG>8v<CPd~E>hl&_cLWU~I;RpHwHkNI|Ta{yapPts+$
z)W~BSMc#<+pzI`fk@6Xr6zmD00e@?`H-LQs>}S`30FF}*l2UevayWn^l%py?7QiXq
z{ZML7Fgz)V>OCF68Twh3G?^NEA%KekqzNKz5SIeD9Kgc>{te(t09RRdJAi8eTo2%8
z0JoUjkmYiF$L-Zt?A0F94|UYn|BjmZF6AD1KY$06_;1WU3gB@7DTDexc@n@=b|nkq
zSpd)FJiJfy?$cfb@G^j}0eoZcEAj*RntUV28|57-Q@xiJPWay|@gu`e0en`yUjmrU
z`~OPicUcOTF8(8cpR9>t0+lBSLjFK61@cH3L?Y&i$t0>KX%H()=}Sx=MEnKQQn0Jm
z*O*kQCUp?`_USe0n0SKl24M(7E>~4!pJoig6oi>wmLSIN)7*4x5KUrW3&PH(gLINI
zl`DvLoKxzrX48B@_=CtAM7AITK?H-y9EAMIausVrYE(Fg2tBHj^g(2xXH-e1p#DXD
zSww6QNA_u1n8%Tts*(G$We*}p5P6t9<Wh2~-dwV2%8kwSsq(U!FNj|$`GY7xDM%I}
z3k6Y_BK5z?-rlbd^pnMdC=tZa2!=)Qdk`gqcoD+O5K0A6I*4Q;BoCoX5M_gCA4G>B
z$^}tAh+09^4x&O36@#c5#Jz=ae{lX9WF@k)T4I$Tsw%G*M0L9S6hhYFboZEi`?U&u
zmg@vjH;87cvR)8X_G=yYYxRSW?`izWyaCyeY(zFDn~+UOnbw<BKlqym(ISYyf@sOy
zxj%LdH@Ov?t%LZR(uQnH{zJ;xc5<|^xML8Vg7^`{&mcMn(M7%+AH?h+x(3lLh#9Q!
z9z>5I#?fmQ(0T?jFo;1x^kUMR>_he?`;q-gS=Io`aV~Cf5Tn=}qI!o0F^oQ(9HH`&
zvS~hjAC6YZ7|K}ET}T@r#DpLwvMDzpxK&!4q$(!|F@-*roTl>WLBy|yOgocd{4eq6
z1hG4aJweP3VqOsQgLurf-5$h(AQlF(D2T;UAH-&kS`x&{AXd?r2C<B?oRpbY$Psuz
zUvqh^4q`p?HRM`Vvn~i9Yc??1sPaug6jWok1hG}+@_E-b<>?&y<U4}c$z+$xa~QBU
zh<!mkm6Ksm-sR#z5ZBmyFo;8x^W@<mP6Tn1ek6#a6q)mw>>uS)P(!WBsUS`>KSQ2X
zHRpopsA?`SyhvUO;xgrms=O-CJ1egTaf9K_ARejSTS43o;!Y5EnLHrxsowiREaljT
zD)~2vgG?SXc|zVkp#3<Y_4^e2Jc#!}e2`bV%$Y8WBrk(_6@<uZ@(uZxl<-{;t;*>G
zWe<GhRPler{}jY$HowSuV3_um{*9E%?{d;Us6P=gAt0o`9ut!Z$Y02PpJEbHq&JaD
zavao>(36Hxo-?EfA!P`|Ll_Z4st{7Mw@e6WLP#4zF*ehYp%B6$7(y_zX(C-Am?^Rp
zO9)owHi|t2hf16w`MsOI&Tb|im3t|^5d4&Y%7Y;cW_=`tXb9Ou$Pq&N5Hf_2ErfXo
zwT!AV6UEb8%S?$Sv#8#<5HxyLm84n}yX~M>p^=s|gj^vMReA0Z3MtPMLSA~l5Pl6I
zKm8NeM>e5A2nAK;4Tgn7_>D;smCJ|QrbAkmL;5BcXILVH-&Jo(`B#8mS|y88qihJ}
zLMVAiE6=cP2o*x87{VVRR0^Rb!^&j65bB3eg<h4c7DDw9YS3$wHAz`|tq_`UHR`CO
zZU_UJ{K=##*??@QY8r*mSa}mUHux3jW-4h;X%WI-Dv5t9*ow{8A^ffKHu7X~S^tF4
zj$!){x~Sd`l#XO4vU3P~S>H8;ZXt9Jp$GFpA@rok7WJd_3ZXZpkIMUo<eu014)3p$
z0kWma<$lW2H8_MJOoo!fRPX$oF(X456~ej@)`u`UgfSt^4q;9RV?!9nvYF)g5GGJQ
z@Hev)>61vAe{u*@luxBh3t_rSW`uBqTQ^H3pAKnrl`oKeMW3&dpLb#xDqj@B;t-aE
zur!2aA*@#Ua>`0_1^Hr8>?+kOmsFLtS`)%rCh^S;A;@j8ZiQe=g^eL>k}me12;pQ1
zo5ibYTSC|x!nP2$hj56!GS3cqcIZ1*vMYq$%J<0Y{jk0`dF%^eKl1~s_n^FrRqtVj
zN64cg98)#N<$!0+DV1Cb;WYh>O3sFGj((oJpz@0$wBp#yA++Z`iLQijRrOvA;X3_>
zN^XWQlJ&PkxD&!%Iq5ako~qt^A>3E~AcTj?|D`-4ABXUSvWoLO3*ji`IYaq1^s5kF
z%YF#sKp1aAcpE~qFq(()E`;|X<Ow5h7#~9TC?}#Ya)<FLgwJwH4<kVsUqX0(Sc?hk
z2W|2r+Sd@iaoX?X5Ar7&J)-aPV&pGjBn%@IMmUT_9GfbP)L|s1Cn1xPG9(!#c^D~F
zk}`}xIZqlU#xP7_q*cA?!Z5@SVU3yY48ujSgkh!F!jQi<+Uc?ship6lxanpRAU#qO
zM!Ny}q2goWSM?itWtE`pgg*LqMZ)M&RhR5xL|KzQj0|C9RP|ZH$VAUf#;Uvx|2`5I
zhQ=hT%Cm*hi|a3Q<_IGv^I__*Ler0ETiBZ~j9<ezQD3VPM*c7ggi$_>3Sksvz2kUX
zxiAXR3y1Mr7)8|lCBrBhhP+cM#-un|LiPS0#yPe0Qel*4UWP2IYMvj_cD#;x@6;-W
z@kbbynO7n+zmAcsI&_NB&fShpdQ{&nRn@3!VN?$z{tK%$!l)TWtuShbQHKQ$!>CJX
zK-MGclQPMlVKkngKNs@olv8WOys_$S5=K*c3x1;BB8<Pnm=?zLFj|JuDvbW@Z5_tn
zl(b)B+ED(Hr<l?<j3C#xJ)6DA4q<c*qZ7Rg*_o7ekjpc6Ro*R(?#g?F(UV@3v-PI;
zQN4X-^XZM)J0OgKVGLq2QPm8l3<+as7{kIC&gOV>L>MC}qsTGj=rH8%maNiPHph|D
z?8QY)2xBH?QW%p*#7<`K6jd{oA~jM!Ba9_sES35&W-*cPmdp-g$5CyLs-GLiJo<cc
z0lAP|M9Msi!??&LemJTvW4Jqv<zcL#uMA_8s$4}`9mbk4*2-(AhyG!#Jk~K^AI1h%
zxshTxru{FB&Gao{Y*oGTg~M&iw^Me6u~Q|x<kcqwIrE+{_A=i`PRpq02g5idFOUd|
zL~uBaBVjxX<9Qe*j%i23xD>|aFph<BJd6uPv=d>R<XG|5H)BuHPm^cJv*bDQJb8hX
z1zil|?Q?wtuc+j97+2{Hk7?J!xK6)8-Xw34GDLnve<zH)VcZMjK12C1q4zQEO!wFa
zVLS}uUsd_yddwr`k10>Wc&ZXvhZkYI3?nWAErM5Jyq2?ZL_YxD$m)e*k6;#e*E>0`
z!uS!!d-*4T!#|Rr!kC><-*2DQoL|EDs{ETAqW^#AUpcEskR*Z_;m<gEfRZ4BUnmJx
zo+yHzKlFm65hRNslNY84l1Gq&D`t!!B}EpRHiA_2)GA3M$v}O5(lIfpJgK~cy%!_j
zu{5j1La|0*Q;B?Y(xKcLfhz)c1Rj+HBk(HsMc`K+h@j)<|IS549>#<th(xeO9b?f5
z(z7xHnNf|(6hUTstV*&(aG9gBMv#qRp$M{5@<&i0f*cWiU_s6Zaxu?M<{|Tv`AFIP
zUn4La|L-_27(rI$a+7rFEgZpe{w2C-1jQn#8$rDYibpVNU~KP2u_ZZ43HcO=BERyG
zA*CWH9YGl;RmifWbd`&syz&Z^isT<;C9-k^Ww{Pj*_2V$BB-vsMg%qKwaD5kuS02h
zT&o|!pAmG9pi2Y|B4`*v!aVv~HDW>Q2>zxtCYwaiG=gRkG-p%FB001c%KwU>CA}3n
zjBB;<xVHDW)+Pe^e^y)O|B&rSnV~(U1KE-66u~Wy?aJm?dN;b%caNZl9L8++BKt?s
zTlMydpfA0jN;-aw89*OM4k8DWLrA$PiA*~@f)VoUr$_Ge7%9(J1Ph~B6vgNW#zf$V
z!WqTb2*yQlA%cq$jE`VK1gB)@AC8?E!K4UQM6fb~$q`K9v~wa@(<OGQyv!r8oX{6B
zjrnwP201f={#*4Ud^VfeSXTaoHaCKK5zJ>OpH)i10{X%T7Eu<HOCnfGStdsvMJn5z
z(BvVqDuUG!Y?YleICj_xZOI93O$2KrSf?u2M{tmpQoMoTMskyovYC|LEfL&j<+cd6
zN3etWo(T3*c9Ofu-Q>%K`bO=G;0T-hNl6aK66uFjayWtnC-t>G%H$Y%oIIgwPRe<}
z^xyRZPe*Wu`C0NDd7f<7SfA&Tyx1f76v5{Ru0(J(f}3(UMQ|;m|1keLE2YeC)^0=~
zzcY=$9r^7D?nLk?g2!@-xD$Iff`8?uw^ZMXdmM6~d_X>w^JEcySvTj$`A%w2<QdPZ
z)jFxkJx88K@GOGoYAJ6hFCutJc}2cfy)W;@yjA`#g7@?fD)|^ee(sqchAdy?RT)L1
zsQ%B#R~CGW;Jd2)5y4O8F;ReJ2}r5`C5j%LCovOi6pv17Nuo#^MKV=mj3RjyDWXWp
zBy|*NqDV!bcv9PNQcD{}x+n}Pk!j^|@}wq@csE61X0Ig*DV9)1*(l=nDEjh8nyx6^
zQS^$UcNCr|yez05g)a(!6nUdqw<0bOMKFpSQRIvw6h&B8?35PA%19LHqsS0Nl+B9?
z^##eJGVgesF^WvgGn27o7E)?5@<y2&n^~jCrt<8RjHk5qS+!iU6-#5||9p^}c^<ON
z*O+`!{2E36C<;VTgkkYh`nDIO7b2xuIEvqt*FU8djiOi-#iJ+@#UIRnSG{E^CCO4z
zlva5eN^eeHE{gJOR#3eaqnO4nSyrVeDl@M_R#i3CqS(rs8cb?NQ7ekt^gp9$5JeqT
zSvQJ$%Ij0)ZdnbZXcWaiY&Iral1-v$8bveuUu1K#1u5$je~+H{`&PGN*gA^8DQ#3u
zTgv%UTDvIPN6~@Ju4G5D6WN)RIlDyhf!orJNq3d^h@z+R!KpRFX{}Eb{i5j4urHb6
zv^GH145ti?VvtG(Q-+X3qZmdx&ktZnL@|=hQBlm4WA(H)I*Kt&#*&lCapd?YCQv4l
zvd)vDD0%w7*Ts}5rZS&KPFFQEWGAy`7L(cJ9CEIznHR-;<qM){{#rlO7e}!~P6g?a
zI6am|u`G(OQG8?B@+hvU`V~>EjAB(3tD{&G#o;K9M6p(0Us3FeVs{kl|BtD+fR^I;
zy1wtm-3b!h?pV*%xS|Q}E+IgW1W2$1cY+f%xCeKaKOWpAxVyW%eWy3n^Sx`$+Ur;Q
zoH|`yEqCrrPd78y>-^R6SVLa>#nJw{cue3pH^}K?rLj@_o8qxq^A-WUzT4ulL;Kt1
zIOYEuJL&AA?xyb1IdUEBe)3W69Eit3&4=P~n0!P#|HVVTE|hsV7LVicIHCPh@i?jZ
zBnNXk9%tyB)&4m-3@4g%cp)Aa<8dh-mu2r_^a}O1oEzhDRp(!e$92s&;&GFFOFQ=D
zxU2bLJnoV2Yv(~cUT_$X;_;Z~6Y5iHL%9ot&U`MJnqS5v&C#!W&TE=);_+5T-^odG
zzB&Gn@>b+_T>Mc53qCRWIUaEq^JFMD^B>vI7zdTWf`k?%q8W~Jc3Na!@>J%iN=hfK
z1?enEMovzZXbKBbl2cJrQ`1nteCwT_T*!iW3o=-c(Slz%+DsOVy&sp^f^RIyVnJ35
z3Nlk_X0sqSIXm@RY7S~ns^sLdpg-&6p_7-IkD6cS6tLj^|IBrlm;Ae7vA}A9Pe*MQ
z*fq-yHzdcwra^U5T~uX(n;<zJf|okusPbFBzIEStRD~=ETTsM`qE<vKh+1&Lf{PZ!
zEGTTje-<2-s0BqW_{)N!78J9fxCJd(s)PmKS+JvfTtf@Kx1gj2l`Qh8N~08`@5`x*
zgwoV9)Up<oBb2Ag*eY1i<(Ro5k}qF(R<@vu1yvcXZb1zTs_D#B*-=w-Jqv1)Yip+t
zp{@m|Im17&S)cl&&S@YU?v=TFG_v5?QT3ArjV)+m!4N)Fs43G@A2WB$W)}Rcd;MZT
zbIr1{EiL%fg5T(Lmcd)l%7WGww6UNq&EKi*ERYLvrIftnbJ0I^h4zFF7If53Cks~a
zN8DZM^wfSg3%YCWA$uAJ*2{w4H2YXEfbb`^FSQ?4me^mGe)Q|_J_cGai2h(59b&<~
zrRKnf$@a2f3;plnFv5Z<7EHCEP7O8Ef>9Ry&CqBI#_7Ie<Pgv-&p{Zkd4dHK$&<7*
z*@Chhvn*(u1xqYgYQc01{$aul3uam{%K~{^yCleKHvI(_%puIB&ZA0nz6H&6wS}?+
z(_gHkSs%nL)4axl<(gLzR$8!%uv+`FC#)5=U>%*!+FwuDV8KT1Y?960(cC5aaOwYA
zu+@TX7RYak4_jb+U~HE|z=EARf1d@r$h)a~sC#v^GcTy#&*lLO4iXOOsNDPa2y3<)
zrKIvP?VlqYr=FmmwBVGEp0?nO=Cg#E$JBZ4tQ-_~$%4xke6}FYYEJbP3m#bT(1NSX
zxn{w2!VT&j3vLo_Q6>Mj1^@TFjJq`NS#Y25f1j{Dvf$;vu8$TxwxGgp<B0`Nnefbl
zSA^%(7u1(jsVpBPz9zq+zNNmSzNbpg2Mhky+x?TAn#iysffebjNN+{5O-4d1(s0!h
zS&`U^BxLFPp2<nsOh!#kO<_e!LMp0crnX|+NOLQvwPNg3^RUfyTxGB#qZMP0n|>xM
zGFuU{B5cJsR%EfF)Nxh7imX;-vm&RiliiAM$#Q#M>6JtKRZ=6D=G<1~(VW+ceB}I8
zgUc#tMIkHVtr%8adFWfLuv%f$y_{CqH9M>@G#~40F4Sd((vI7ThOFt;j*sBCBA}h1
z6@T(cAJR8MbH+jQ)Db1etSC(A%sR!aC~n15E1p?V!iw*#_`{0!R(x+oNh|7E@dJ}f
zSy7cxnp(z+vV?M0R3en8R-jg-$`WhdHY#hbBHNT72#8;eW_4-}YE5b_D{2$!P$jc2
zL3NL-Z^e&RG_j&7onrFw6rmxt5%ni(W9pYNG$Tu$=2rYn{zW_T%xm#mSkcmoU#<8}
z`@a)fQCm~nP}^G3jv&339anoedmXIkXvKCbc39ELiq2L{v0|zfU99M8#Q-Y?vP(DW
zu-vLUp$D}mwU-sWt>{DUNBxs3OX(}c`TbFU?Z~~C2U&6TxEiLN!Bz|*|3w|D{Sm#@
za4SYwF_O+W>L}{p)X~&2R9V(onON@O!sBU9piZ=6lFpe-NN~d3C#PAl%8J!;l=WBB
zt@y`^8CJ}+VwM$4b^dHC7HFPBm}|v6?aY_4@qY3P=`7OzV!{$Da&tk;*j!Fsp>tLe
zYUjrq!rrsy?!8t=|7XQIE7n`FfzB4{M(QS=v)PKqAI(2f^7_|`t=iv42%k_p31_W1
zN7!Y>ZY%a!u~$wSos4}n1(x+Q_LC1-anOoGRvfnC6dkF2#EN599Jk^>I!CRLS1aDZ
zK%ytCIH`SUmg42{r|F#070U9X^7B^Qvf{QC7p%C*&?PHw%FfnWUDlabWXB+1qh8nk
z4W>zbNv?H5-O<y2m(YQee9wyeI{yLTp%sq^kG22A3i*M9)Ol{j3prQYklu!uR=i@u
z?DNKJE8fVt+J>YyytU$;6(1RTFAL&Q<kLLq{z3M%dtcv2ePY6AE8=YC!3b&sYC>uv
zs)P~~n)7iv$;hc~NKQyWO-W5f{c@g3Lzcd232pg9;|%0XHq1YvGLm<nP?>G`#)d3x
z=CL6!A*&792vQ-t4d0S;P;*jq>1b{n<VzMw%V$H1imHoS1#QT0LjfBKGRJO%!-hiS
zc&deJrAkMe4RSHCfMJ8vh5&t+j(TlSWVd!aHhlS4(MQLx{erLJ<nmXk6S5&}Lxg@&
zYLptI7N$yC5gY#RYUE-z6sKQ;`kl_H{4Gk^P}+trE_8LFj16UNIOV`;2g=z{-iFq8
zw6UXt4Ha#;X~QiWD%nukhFLbuwxNm*Rc&Z)Lkk<K*-+hvL8DXy8*ZFXHEi-5QsW1?
zw{SL9(}r3$BsgjAV6|<i!==~NW2i?M`YcZJ>$BI7Hsm;|q}kAhMvVSsLt{df^X5!8
zAvdK;vzZM)YyO20I;mRP@T(2~u=$$}t!x--!!TJR8~V$0%1)}DGUk)2jSX#WXvehQ
zshz2R*wCKPf!dKO%jzV_ToK_eG`mXWld78y-E~e68x}LCmkqsbICS3CM;6NHpEk&|
z#`;qGQKk8@x;Zlgm@rW0kT94!geuX$Y}l`tJKTox^hek*k}yh^-qW~tQvJ>5XzCd1
zSgKSQCkL;7_ddafiS#Gw=w#Va<f+tY+MiDNcv8(E%+&tvea0Lc=Gt(H&OABj1Z-Gm
z!<&>?V8cQi<QtYOr_5DbBoo3kxpBb~!crTS*|3}}32SXwp?M`?l?|)4v&IHD>&WeW
zBzZmklhh41Y_wsM4Vz`-o>KC*e~S(O+OW%p-Avdj!ys&<O82>U;&y1>DLXJL@3CR8
z4ac>=&xXUA_uFuQd{8@wY*<y-T(2W^{-Yk%(PK8WVNFRmVMAvAyDE1gI%UJ6Q|dI+
z&QQ<VaE@@EdVzY8Dt#-+KLR#fv6&YWUX`Oy*SyAr>vELYu;-LYK3Iv~w&9MP=<LX1
z$6Xul+3?AR&&<4U!y_9WlONddkdWxK%5~aYg(o(2Bs{g@nGMeweNTO1gUruM@+<0V
zs`Ppze+4wZv!Mhle9+EELjBV!&Tek6w05Mk19r?<ZXUb|XeP8H5#jV{Be5Mx$Vu%;
zW=C?eWTvtsh31rYl$mOFPfaHcbrhGIo}7`IfhuYH7MaPJ?8vO0<)>9vJF?kP*p4E0
zWVhp6h9cA))Q}xH?Z{<EZaebOF{pX%$ZtmhJMyt94}F&6@+xSDg^q9`LOiuzcQe6i
zhmB3U&T-hWEu}dpPC72CqPnRbJG^%I$dVQy`0d!wH5Dgl#~t$hR0!K~Bb}1#Ma7TW
z5o2<aGv=a;+EL7oigr}8qqwg29ifCBdC#cQos93<ENO>uDV<YV=9yfUT8>&?M=MBK
z)~~FcT6R>iqpBTyX1gv7Q`NLzolt{XlPXWjt8GUeJL<CegB|tls7ICod-$lhAMI#l
z$4@jH*wIi&>z`4L$<3)vs7<NOs6SJs&M$U!<OqdZ&}?bPuY})pPAfb9W=>l>+S&2h
zjyMN?x8o1lMeUerM|(Ru*fGS8zu2Xt9o_8cZbv6JJKNF!k@=>yiyd8c&Btlb!;YSI
z4AxFBLT{@4mO=9S*zu>1_9gVA_P1jIVW5r<vSXEAi)t6lKl(%Mn53h_>=;fSK^;jQ
zB`ZZ3ZN~(H^cq7LYsWb4jJIRSzOSD(O|;{PUdm)Urs$lhc1+Ve-Hv}W56_5McFeY8
zuO0jB_;4+5jve#tm~Y2i=E$>k&hU<o3+z}#XQA#ZUn?w@Mcc8I&Kf(`+ObSWm)o&|
zyiz->>{zXN!*jl+v}2<kn`o}HWBva{?Rd<!*sPr$ge`XbOV~=?rlZ^KNO{)W96PnM
z%Z}aTJ=$rO5&Ox{?09a+0Xq)bafr?_JB||$%k1g=|Li!bdGNis6Xg5UlXjf4<Fp-T
z*t})OSv$^=ui0^)aEU5Ix<I%{t@|PFGU1AjUL_PdtF9ADoK-jMxT&L;p2ywRd`JEY
zknd^7dNuBW=7)qwGH=>>LU>Be^D<5zOdx}K!RAXlUJ=$#F&dmzuk8?hBYXZ?^_KjO
z`kwm1j*kS%`9v6ZR>6S;4zzNhwF3zqNaR3a2Z}h5*nuPtq;(*j!(3caYHDgS2a*$3
zomD9uNJ*BQR1WOtwo5~&8=M>FxY9e2!2!Di4hJ$ikja7E4&-s*#95Wufm{yQ&Z%#7
zg)9zaC1-OWy93{9KiN5zLvv0C9&;(uvE(_G*MWxfU6m)PLJs6}Aiq>DWWHoP1so`-
zd!@V@7f-fOt+HG~i*qXQr+JDt9B?||rRj3u{4&Giz|3<>IdC(Dl9$_oe&<Zsc20@!
zW2WDM03ql=h;Zqgx%Y<20ue%#8gpRK0P|oe>Oe6EsyR@desKp%I#7ySg8H2U-xDOc
z1Alm4+JOpm%4ol={1>3PyyNS)W)<mF(tc$Js%WlCc+26{aNtJ=8aPnXfm#mK);aYE
zbsVTm7^d%u_XC^t9mvLOI2*Frl-h{;6IDjr*nuXR8)Y!JLNf<`*3K`4<_@$Vw50y3
zqrW+D_@22f+BneGfsGDqa-f}@{FyM9`UkbQ1MLYNs2!=D9O&#o7jjnzx)Cxwi|bD4
zL6zbcSGjtUdud1RkJ`t9KOLAb*45X6(GK%A;Qbiw@4x^D29k$5Fif_f?lqV&g!&h?
z#U0mh!U$^78|J!<B#)v>^KUr{&YOG47zf7E97mnuz<3z|d7=YT36rRjJlTOMniCaL
z(=<<a;2*M!HD_vnmIJfNbEsc(<~cCmfdvjMbYPJKiye?RC-N4h3j4~Fd1XOM9Okon
zmpZV_f#vMGmb!u}2`e2~MP99)H4gmB3jfp2ItSL1H)uzGJ+Ya5TsvDF_?NuZfo%?K
zcVLGD2kGpj?xyadF7TRT+e6+<-ACO|mCymg!1L;m>_QG4VRP=6QOS=P9XP5pkIBi6
zH_eb<CmcBGz|QmP(s`9yZu{)OSqE}Dk;{p5at3gqnSq}TTyWr`oQ@29Yv7Utmsu){
zfh!JNCBJasny!D}f$I+3kdp?Tr_I$Z2Qc0EcwXJsId=$msrMY{*wb7)c|CC8p#yQ5
z)gy);>-;B#r_^T-JlFpHmvJx2uN-(ycq3<Q1JMiWtpo4qyqBdLNMM*p;s-h(9r#4}
zOcg)QK+X&17!ooqB{h+O#0HX(lT(vYB`ukORw>MDt5RsEa!Rv)Dg&wMr1^jRbma5~
z8eUKtr~(-YnG9ss&Nl|SUQiOs%KU7)!q^KchYZhvVZdo1m-g)ja?3624CJL#ka~H!
zD<2`hfdYh5!_0}5S0OgzsTQhLKJ+3;^h=t<z%tH*%YZUa-@uOs+y*=bN*gF+z{~uA
zfuI4O0l#5>QzH+*>v+dVnMQ>SgbfriP*m3InNg;P5n+B*FC}K6ux5ECi~QW9)^?+q
zc8VJ)q4_%l-;+yfr<8#v%ghxiOQ)KF>ITZ`Xn6w_$Q89y$v|at741|tu#an3!@$)U
zuDbMV>S!%OZ3A_*bNzy<NB%)OU+&1UQ*QoXVDbT@q4paQexf#(aT1zR6I?X+t6vN>
zH}KlP8v`v2v^22Wz#ap?8u-n?Y6ELzk228Oz*Ga%474%O)<8!CoeX5^VYD;wyMY;N
zT?_ZPit$3(KUlmywS$2(Y0SN`vw<!K`Wfgi`w~MvsS@gDpgZ|}ccTX(4+qwZ+?(2m
z`lo@u1nIS-ciaF20}Tu}FoNbF>R{@ZFY<;M_>0Y<)L~TVJ1PlAlE)etXJC}}|0aw!
zFh)D)6Pw4*cmosuA7>(Y5_Pinrx^Gnk-4U+dB54|^#7sGFfh}=ECaI*EY<mQ2n!9&
zCCsDF*U<&sOQqT(I*X}GbhJ1hX19#Z<px%0f2Dy{<kj219$9M*Z2A(_IqM9pCvPyY
zksy~@e)&<=W;VA_|E0<Rwi?(*-cH>?-KnFy2*oa{y|M$#8Q8#O1N#jeFmTSmc>@Ox
z9AeH0ZqvHd!v>BR_|L#mhE7wDQDuq84V)mK)XpiHTXvM_8JcGe$i45RDX$B3E>f3X
zR7WnFcL5Urih)-&uNt^UxNe|gBj+OnH`u&MmCRcPZX3A6=3N61w11CqU(PmsPTxcA
z=YD0rQG9IR37x0fe`er0`Gs~~8o1Aq`;wbG(pv-X<fw6)ob-}<Z{Q;{Kj{4Ym((W%
zpAEz@CnXis1WqJ$e*K0zkrRoXNJ78PC39tyk_D0xl2cPSQJ7KjQ#p}Z=cI8WEjb-E
zJvD=lW^}?j$(-2CbiUDk7ALZ5&PK@Y#JAeXLFjNv<#r;E6A>4pF64D0pZHF!b0WVJ
z1)ON@L>ngxI#I}pl1`LjuXw8435zV+2^*U-fWJ9-yAuvN2GvP*=^W+69sc9&q2qO8
z*(K$3!tX?YPE01ji6A+odxZ%RC!&P^^eh!|;yXG;sl}+psWP4tPCU|?-_uNfS(PS~
zb)p=hj1zy|HfOKA6BV3jK(nF~m7F-7Q~l^fWjeK}Rj86&l~9dZ-H967uSv)=z^F~A
zBRc@09#w9M_5-0lRqDv&Cnk<Dy5&#}ooM95PxPDWXk#auXukC+u9@ba3BNee+=&)W
zwAB7@gkNR5TsHTyR%|9IV{%(3+Bq@FiOEj<?!+HXjCW#!6YZVo;6x86dOFP?_jPna
ze$6D;cy!V=I}^G%(Us7R+FeI~>lW9`iQY~Ob7DBnK2G#^VgUJ1C;IBleuT{Vl)Pj-
z1GPWMiNWL{)W5Vpl<;DrF+zsKKS?7A9flaAbk5&SjMhBHiLsi;$-c@NkOeioth!!S
z6P=iNSsfT>Zs;ja%ynWOlc!RrQKvickFGGoiJ9bC)Y;mf<HTJ)LQd+;cVa311v<Kr
zu!y>tx`evvvRX!1PF+Ej3M-vhMP5x^qy4o`Oy|9r);qC5j#(FSxUiAYb55LhVv`e_
zo!H`pyjR~Z>cqcJY;|IruCT|6?c^QW+3CbC@^0<aPJq4SecH+LChnjUhuAzzJ?zBw
z9>ysrjyUljouf`1BS^BWg1nBid4hV9Do>e|UZ>gjjPzCNEH_8X4(fsv7o8}ZR3&iX
zk`tGi4;QXDan*^}PP}pAnslUppL&CO%ZZzW()>8$Hu(<qF7+N&#`C+}_`->Ya_np8
znG=u6PpD6||E1J(CtlEbsr^?@wC!)M+FR|!xy(NS@0@r~=L7X4^^?x|?8HmG*U1ly
zGF~zF^Mo!Wav`w`Nm#*oMI|LjD3c4xTuAOh3OZ@EpVEa?<kZ?p<HF6!X0>#5(o-|&
zXhs*(=zTIX&2Ok#s99aerZcm<AOny(IqBq)6TS<%$hoQ27|rKGeis}r7&HsGFe8b%
z`tt6vpv!y@S%?}>wNR}t*a#A}yU^~65^%D+bPT)XA7PwcW_}o}Xu4hSxZoxGs3EGK
z8lVPU7{c+Ce`anAdCB|L^s8Ml7mB)2%!R^CD?*j%tShRx3ng5rq@8V7)ORj?&t^#%
zD!B0OiYn#8#VbmlOi`MC85hbD%2CTxrP`)}sv<elRddEFyHLf2sxDM>p@9nxU8wFt
z4HxP&r=|<FT&PRl$6r#{Cf9L6T~*~+p&lJ6^#kE&nm>~J4^@p^_{oJoTxjn?V;7px
z|J8-2vcw~<UtDNTr`eajE=+y#_2_HiLT{Fm$}P438`D}*TT><4#)Y=zcG~$}CMSWp
zb{(|SkudYB>ZF~{giTjfHy66Q@S_I}Jm}#<PZy>u{G-rI2H-*+g}MrTT=>(4_bz;J
zp|1=5TsYvuK^OYFFu;YGF3fUapbLXsn8LDyWfK!7yHIki>n|5ZvpJMHj4Hz$P8i|B
zNWv)X|Lwv#uKO4|V_kTCRmp3d3*$9UaABh6NiIywYbHp|r^n4bYN`wAuc>M5KHY_X
zbmbYYuOEBPrZdll`7X>M&(%4<K8jo5!a^6exbUwFi(FXD&_?PK>S`C35|&YyQ&&(|
zQe_OQ<mk9&4oO~XXs#92(RD7Y*Sx`n@D=kQ+C-<)HMN;A>w~eCu!Fjdx}DmRm3NYN
zQKkEC7xs|%Quk?pzibZXA9CTa3vXO_bxj>{;Xfw4bm6EA$6UB9r)xPm3{b~iI3>q5
z`GgB6<wUpH5PuGfoRNd#M<vgTJj?Fq^is|fF34f1ol7ok(=%|@g<Gz#7foGb!gUvJ
z5N_)Hi`Ud`7w))lS38dh_o(+>ctCilqmNwpa=6L5KXKtH{b$tYI_HH8%io)G`-+a-
zq4YJOPzm*x^B`04&V>xumHWE-=)xx#iYOFS=85sMoW>PWD8#WT4hRXT2^A7)KQSSR
zLQ?G{Q}~q7ERs?ol|sDyq(C9HLK=mf3b_=1d19nh$f}S{A)W4(ULk`*Mukk;$)b>%
z{Ec=Vq%g~-@T=@}lHM?`_cy*J=b--IRkFF+y!t#Y4?%k6RmexqPc1+#sH24x%3nA4
zSgV3f!LJZdXnI}Q<qHr6L&<Z=l{6*6so-KSd74`p-myxt=~nO%yi^}m@^8P03zGk2
zcX2`rVI7SqM9DE~VeQLfZHp-sSE!}%=DI4O{i+Jzk-t|cNhqaIQAbNFlp&X;mZO%}
z(FzLFIEG4eDpRXaH|VidW3xK7hC)q(jQR9+_4*f8o6Q^d<LW8=pfE(?FNOLFKPvQB
z7{F))h3<rg3XK$gQfREuo=*6>tBFD@a#Mw73O|#j{%^8ZXl}01g4|L&zY;RuFz5f}
z)40|OeV>@;mNp7)8EQxUo%#n=qD?cQ1G%GiIuSZ6bkR;%g>IVV|B)UFJ=yefS-r@;
z<*$IkpRy<Omq${$uR=fFt0J$I8>ldt&LHi}6N@U{Q1S8z7=>XpCsT)0M=6ZZnIjbj
z@f~3E8|rU`(F$V}#>ygYs7cHb7{}&#>I8*}gqb%~<~%CQk7A}M)V}SSs_-vIK8+nO
z-%v9YX3BPSqm~=96lTj2?FQVKqcB&=v)Qp!VIGqgQs+};9TyN1+*FISvzU<Urdp=3
zTw#kWOJRk=O4;J`)h5}KZ+<=JuTq%a+gQ!~H41CLRM2(SDXb@N(9T9ey_;$?p#$q|
zRd|t2ZPPjOEzEX>9SS=Yb}3v^xU8^SVUNOTowHZr5P2VUzxEF(9MmkgQ9VpPqVON#
zsKN=tF`aW<wgSg+Qah()P4(KHp?Ox}9N|3mg3i3Ca71TbQFx&6P~ob=H6~oA-ch)r
z^KUBL(tKOt9{b*<bB}soN1cW6Na3-<XYD*uc&YG8;VGSG)aN?-LLu=jbBnyD^Pc*K
z`c~(>Q^>=d58C-CXK!+hzI1PyPbF|8p&Ma0B5ovdBe5HX+dLH~p(b}D1tF;$$=sMU
zMRn<Jh^BNSl^fr>k;9GDZj4=Mq;VrHVdrM^-UTbmsB~_mXWtCe%+!q3Ow{wdHuW1f
zval%&&FV%r&Dq_kGTdCpoOBAhA>Xj)($U;*<RRy!=F@(DLIG+$u4W-}yc@DOiyKy*
zX>-G_+2KY9COh45xuM)}yU`=8M&D8%=Ey&Tb*3n<&iA?DCkLoOYDh=rpUtQnF*nM)
zQNfMEZq$2h{;@9QMiDn|UNVX@vzQyj-6)}Zm2~4f^7q<V%OM@TrAlk3j2mS&mm@s9
zrIO!P6=klpUx`qenw$4Ts_I5H9j#8NK{alx+HTZw!{>qDgSs+KHwL*e*o`0DsP9HE
zH+sAAqZ<v}_=8;<y3xpumTok?t$xxqTe#6!PC?J&n$T%VZKk6?6MmsKr<T2~<f~Y@
z0QFay<lE*Z{>_b6I=?lc4YjQs?X>^98{?SVUOOG!=t%D5MrT47YF9Vn_%1~%cXOjV
z%^p;7db+Wkb>iQ~$;IS-wEw3YecfMg-QUlR{`3dv=s?1u+iHj#f4T9>jn{4rbz_(t
z|GKf&jp1&LaAOP8M!GS|jrDG9aN}<`M!PXn=EsdOa)2;limVG^GIcz40(Bx)#yLs$
zNnWcjoHaY9YJZv=)5-s6XNDVhxJI+-EOcX${1wpAxo*rO&)3cZH?FhtVmiy+SmDMJ
z9bHOTMwR!OD+z0;tEj7~GOAn&u~zf{+*n8c^6}TOa%y2YbIWd|xrw@2<{`6rZb^8@
z3~h5`yBo*cIL_$4qs9(5cDk{P&4bk4)IC(`vX`)ry5EfhgxS;0Hw=e#&S5u>kpH6|
z)&AA&I6=PP#zi+yl27UAX~G#d&JxaP|GdoYRCBbK+_+5hi5pi4H{H19##Qn)oqyep
z8=BufjJvJ*0pX4tcM12jf8ULzN6qoe>!BNu=s(uct<U0~YJTR%bMg!7OYO_neB;Jj
zH!^yV$%A+F(|eG?gZFNHVDqD#*gfXVe`52q93UR373N6^^aT=lkWh0XkNKb_F_U<Z
z)FXF<Q^`C?t)s~aDX1wuNJYrSZJI{sq$Q;DKrWA$I`WDYHK#FjM`iZl8xL}OkjH~8
zOly5d$*;7s>b}`L$WH#2nnU|JJ;+6_&SgopydDg_qpURZd61t_fLf4Rh#F6od<)@V
zE@jh>-2;aQh6heMZmNr_bk3KBdOYxINA{(F2SE?2dr-rJ5dE?ql=C1=j!>i2m<NRk
zMLhVPAR{U2K{0Z1Y6<Fh)OlRHlH^j<(p2eH#)CHeB(pr7iqr}^y8Di*<iVns=7d+K
zS%q5FgK9eG`W;o%gIa9<;6ZIdU1}Yj)BUEoz3O?8;I1k)*Ql@koOe}24;p!}&5P|`
z{NzDn56*jV!Gk6qH1*&g4`z7K%!8jj80o<%4}S5Wxd(r-LJR7z9{lD(OLF+Gxl6S2
zptT2o(rH8e!-Ed%&7HF?o9(E-Q<q$cYcEl9M-RFaB(swToi%sypsVI?9vtO!T6@sx
zN$o}Lt#kT#P=_PwtDSxx^d}F{&Oi?aX&y`%;=$=c=J<!QIgC1-I)W;p#v_csJs9o5
zcsgUK;S3n(!B}!<E>|+k9&%0aV4??;=ue}HKiPvR<f&4J$@263MR(P7n$0iA&GcZF
z2TMFyN@unQ^9gf2nCrnjnU+%KAeVfL(@C7d3m6q=q3kM}7kjW*k7St#$2~aV!Ez5)
zc;pG->gHXw(t}kVtoC4y2M0V@w$t20)_So0O9c<sd9dDt4Qy`nU?X9RuD{8H&6?%=
zf`7?dsZ;Zt=OuZ`Jpp!ju#@I45BBK%-5$uJq9tLkcJ_I&UvqPQA%2j}LmnI^9HIV4
zJxZ1C$2_Po%3RP%8SN+6Df+ml-c47hJvbxhmV4@~9KZL>WeK07Q+mH~(Su7Kl<}gh
z7nj-VqX(ZnxZ=T853bR9JJ7iA!FBQt>P@PYy5+%b@*V13>OCF(Jv|<H@Q}?%)R!JS
zCOn}&r9PuRr@o*{<vxSVBmI>Juj#y@zSYrpg!dkNAk^e~efFT;Jr(B#yymnU6;%Q+
z5_%EzBIHFPFA{t4trt1GNaDpXcKODOq+TRresV9;5~ObmLP{@E5mIYEjTe_5ng?$>
zFVfS@K$Sb?ikZ=iOgb~O%;#Eji^waB7g@ER&5P`sm)=u3$+Md%j~BVT$n8ZQI)%K5
z_ad*(%;!aZasllW^vYF*=GK&#g{I+!m0+XVb*96Md(3pwaZ#0yx(NyIo29&DAJy+g
zfG}u?848n&cu|xPp+>!k5hS57K~^o#eHCW4VqO&2(GrC3y!f6_l3GefOB1TzSLM7Y
z@5MMT#(Po0i;7+h@?tQfmAq(5sO&|RFZo{7^`Z@zRn3d)G-V_;yr@a8MXjy<I)s!%
zR6Q?#AlIihr2a^4;KfiDY{ceI)W*~%RH@(id|Wdxe)i%QFH&1nNBYgFExc&y#jjrc
z=Ed(izm*s5G`E%kYi{dBt*c-6ki(mdKj^oocF;NUtK?2zboQc)cK-CDE4drByB9sY
z=t=Iab9xb;T``OI@uFnAulq?~FZwampE^M25A<Ts1T%SvcE%9?q7J1FqYkHzppK-D
zqW<m0Xu<-{o|GEv#Xj-`FD81i&WrV4O!8tf)0TKKg)oOI`BMqgyqHe-NBc9pm`R?c
zo!MU8Vdc4W=6Nxnu)vGOI%lC5i!`q}ZX~{LuH8~EmU*#U`@f}BD>Se4VikEcbq#f`
zj{c93=z-dxovmJMByXZ_rf#ABOHH`SJWI%HM@H=MVy72%e5mWgE-!Y=3Cf2AKJ4*g
zFO%=fTzRqIi<4fQ^5OtZ>3fh6c^7wxa9GX{57ZGI{m+Y|nvW5VQ%_J`@8V8-QTTy6
z%Vy;Zac92xMbtTh)IaaV1urhjIZaMhG;et!i@V~*O*XIU%xhj;*L*{cuLocEC`pz&
zw;8%ay-U4EE%Pw$ffo<Gc*Le;zVYHQ`H6O(5}r|?d+~zsQb%8T@tWM8OML4^fnDaT
zzVqU}&iUZQNAf4?XKI}9>tEho_u~@!kjRJ3K78XtVjq(Dkety`teJ1HO6o&0I!o!K
z@F69eseGuH4rQL3n=-WzX=tXUrlY2(N;Cr@BQ=u`2U#bJ4_WC{_8}X=@WJUrb|1cF
zGY7Sx4><|Be8}xX9<tQT{MN{;IiC;tH5c$<72oyUd!P#W5buM4yevLg$u_E8`wkz*
zv~Wp+OIIl7gYv=cgNII0s@De}!B36&5FiApA!?W^V@v$d+ySCK#OM^(ei1@`M%VEo
z)#5&sp!uB--}_LKTu$eg@}V@jjCRTrN<J{kYo~$_6*X7#p$Lmt@u8{@)wEyRhw47m
z@S!H1Zp@Jp*7Bjg=8m6@dOrN%!$Th)iSNUYK3wqOq7MyxX!xa+4~=~I$%lbH4Dz9|
z4^4b%?L!+MnleG|`}(U7&B#B0=^__`5}H$6_|Q`OOWwu(Ms7uo+i32(@@mUwXKFhi
zekX|khY#(^9jG0topf}<L)FEHu0C|rPIn*fe{!vTsCxL&lV&e!UmtoC`smC*eK@M;
zp&!luJ`B*&`w!J%ABM<&;=@>)fB7(!AWu$_8@LT457+r42qS$MMfh9$qkZx}i@9Tr
z^I^OX%jK|oq$c<<(TCa0nM9qg^C$Z-g*=ryP5ajL=E3`q4>Rb@q|VY&c{1Z1ALjZn
zPdkfzm``3nU8w!)>9Lr+L_13f%jERSpK8idR`{?|M_2i<n!JX(R{JSaVx14`eb_)}
zj}LnZ8>yS9n|;{g!@uOM)Sc9AK5Qq*vUbSHC)d|A=PsJNeJGd7T-kj-?DyfU5At;5
z13Ld0;h+zPv~$>pBjo?IbJT|p{6)rbIwz<nsi&x?sj`SOKFBR=1Y{BCxS;dY0*}-s
zA1?dwz=y(*)D@k7%ZIC)ulaDDe1m$Enl-gK^4mV#VY5~mvw4?%k9z<ANt5KqK0J{n
z`tXweQ`z$$so{^zAwBcqIZfd@kJKw4Udy@Kk0gG)q5n}w-}>;*2e~D}d+mH6EPbRt
z`S4i|)eO$jsa2fc9E`l+M*__W35lp56RV`!PftkZM{++>kW>1RhLDPynkv;+XF*!c
z=?KSP8yWoA_ef>*Ba<JQ{kWI~-}sTm4++UV+oe}lKfc^GE*raK*A>3?BZuakgxil)
z9zXK>F{m&G7e+om^84Y9z!yOQKMMM>EQsYn6!Ih9k8}Z~55VGw)sGH-bo9gKhux2c
zel+sK;fLWz)Q^}SP8JVPU4AG(+<rV+>+;h{_E>pjDSim}s9kd^VY$L5KA{RSCnO_z
zY;LJAn-M>DadQ{;qlh0r(k$vnF+b{%i~CW+kI|1+EkEQFt?y`dc&xtnqog0D{3z{5
zWk0I;QHCL@T#-<gT8>(tT0s`UMOR`|GV4B8UoKOxs-0?t>VDMFPEDDsp5}mS`^}Hh
zmONIXW?v@MqyFGWeZpSWZ=m}=daQo(qcNLps7+*6$EaWYC|h1NrPIuhpLKqV4MuZv
z3)zL9s7jMnOE!P?<2RktiqM)WZ;ade(aw+Gb+kR<4?p^MGzXdQiOMiQb@HRLAItq%
z;YSxgy81EBkMVwV^P{`Wtsi6j=)sP?{OIjRPqN$@EMZaAhdhKT1^@J;FS#GJKXm|g
zAaxK`G6xfiJW+qiDnC&}wLi>{;hIPIF_Jt=JAV_pJW=DGsO3-8SU(OvQ3t1e{d+gT
zkAM7_!JLVHO!8wgd5RympQtYvP)(&X&5!AX|GS^qOh0D(F~^Tt^ksxatZJ?wiJz)v
zeoV}1PS-p?=IiJJKNgY~X=kw?OEfQ)gX^i;MLJ&jL9LVnQx0A~_WQA#IUD@gD9gGZ
zx5h75daJcxI#SnB*ZaTTzgLPBeX2Im+)Ul#$G?7TCGVhaqi&~4{+mm2J2mej?Dk_1
zVK24LC-d#}0hv8NPWo|*<{>$g5Dxp15bB5=`}{)xKbl9W$Nc~Q9oSCDG01g1?Z+8E
zUi$IMkF$Q9^W%XZ5B)gr#|1y`u;WGQWvVRt65&hzD}G${<C-7W{kZY})W6A`4o}rB
z-Rri@A^!$Rg}Z*-qkmsVx6Uvgk)LYkG2w|HANWX`XKX&#(H8_6!)rPD%b$P%k_OC^
z`CG|n=pFUFPLt3_@+Ut&`w_=vF%t*OIY9sk=p@vBq5wv4e!i?`GWxseB-c492q~$l
z0!U3rqoZj9Sjzki0b~qdi8KSq6hP(xY6MU-fNuiG5<oD3Pyks2$QFPn057{|r{)ac
zTS5-%m%Tk#0J#I^<AW1zP<aB#8$dor3j|P*ke@n^w}LE0b_5Vluu!d3S$7-39>6t@
zQye1zr;fS;P@3I@jvWkN0H2<!Z28TjLtg#>s*F+rMrQ(9pQ&&Fr2{AvKqP=@05M&m
zL;!`!MW{u!Uo3#)<iInt=6Blvo=`G?QUob3(dy4s*#OGX5pMlVmDl+d0;ou?M6FD%
zLaj=zMm38N20c@?0;nCpKLN}LppNVY0gMe`Tmba~=8a++1@Kb<Kj>cd2|rRBP#Xs1
z3tw~0jRR;BK<5Cu1kf~qt<Ti20sIy~Gu`*+0Dd7ir?#NB)X{o;6j7@H+G(dXp$)Yy
z^};jtJK+y%duj)2N2&~?lMI{V=}M<Z06hua0_aZovj6lVkD~StpicmQ2GBQvp>+BM
z&_95|<N;Lob8{UBk_86IPD^J9oxildI5&oohf_yre`EmrgJ1WSziE!9j-gh0uExuT
zn`N|puBHSqA%KYi+(={QPh!Gksx;+!?!%v}sR2x*Go6}tmhqscc`}?Cz~TU2ELAlg
z$IW7Bb^vqqjy*SkdAiPg!UF2T02XO~(?_#Ti=0>%!14fc29Ya>6#*=KuFeK<E`XH*
ztO{Ut0BZs`6~O5L)=J+1j<dqy=W1O5djr@P!1@3-1h7$8-V(qj@@DNkc&`4H{e;bJ
z0qi7fr|!@>neEs`-mRTI0i=Cl&dh!~M+5kt%>w}()H#O&I7~jGo&N%`F-?+>$u9ju
zb$g*sFnUswpDTHdd!bgmP^Vs~S1;5VhSI)N=L5JPC#4{=2XQfgOY}bna5;c00lW?1
zot%7b7*_+h6~JwoYQ4nkgd5bGROd@|M^15DjQasR2;eSRn)d>b`w0j<WZHA;BkE)7
z6Y5i{toSoIx4itiFTDuhCH+^_*E;7-06*)T_W|^Jsiw2}A%KrM=abaQXr52vf<VxO
z1VN-CBn%=EA#o5X2}!6)sgjwDkUWSK+F8%~Cts@6bkYQoHi&fOOgblh5E;lBweut!
zGHd>ZkcFBxh!=YN-v;4$rQ}xO@<5*)L0ouiq<N)s2azX;Rzb85B5x4+f`|qY3nIU+
z79kV}qM-Z>5JbH8y+K%lu(D~RI)kti98`lU>-ahsTx3OcQ$0FbN`@rQ{|dsdoj?#l
za!5Pjp!wiVNt2tnHhHBA2T>%58bQ=#LQ(4XL3DqmiUm<z_bNg7E{L`KN~>fL<GxX)
zXqKjy38E~aTo9Fls7x*&L<NE@u3`|AI6UDhK~$q(l`3DNiCLX2AGrwEA~y=+ry!a(
zR<+rz6GUA?J*uSr5JY|Qk3lpbGz?;VTC<w@;^G<y@tdq*VsmDiNVOoEG4tmjn#=w$
z%gp?R&aqdj1)(MNSE@wkKaZ2{@@BG45N(5)C@T^~yC8lKVqg%1g7_nd=dV=1Ao>T<
zK8OxMbY$Nix<aQQI+MF-rz@eG%rl_^FDsR0^$eny&go6)Bil<mePwRr%@xT$Ue&Lw
z{u!zU$g=z<h&hO%!9fgR{$D{14PqF1G<7(21a%~J6jl2E9fYgAS!4{IvDzO;7*Cxb
ztHzstNZRBerqY~3m7kl6IW36kZ2l9(JlTO?s~JJe3}O~dNtheNY|V2BO=hdqug&Gk
zYd)O?K`bOJqAsQ`p-RruAWAZSMG!0H2nxdz#wtcnhs^E1I*2v0mx?2YUI>LlSQo_l
zAQFd=B!mq?Yz*Q)^BcTYn`DjFyUqr&IfyMZ{|#by5PO2y%H}recIpo5PO2<u7a{+C
zbMSkEIL_w2p!`Y20rC;*LFyr@WF8LU+E%m6e{_y&|5y-Rxn3veoTQ$jo~E9mO2>VP
zo#%o$FXtRN`3E5v;$98n5~Eji&gCz_H)fJ>Er{zu+|bdxLEI$YqTbg29XWP5hI`s6
z|JHaA#KRyS1@Tx;$eiIPjLL5<_rF$8$<L_I<@6ZD%OG9_@sZB!Al?Mcr|i9F^KB6C
z2rKj!mm52OkmD%9*9+}F1@Sou`It*qQ_Q#!%8%iJEPn;K=!7A8qLUew%lSl;hL9|T
zZ$iitLh=xz&*D;qkTL{&4t1T2NEJfH5Q^L}QnObYs&q^nLOODKY6k6p;EZKrGjr(c
ze`JSBtE?g951~K^*+P&f6-tHdA$%J`4rb=0=AwT2mn1hi4>fNH`3RYL`>%o_6biu=
zg8Gslf=vcYwot89xgmgqAj>ic@_ZjBVH<y#?<R+-9;!D4UkHA(^a_O#AP2RR<Z_(c
z6rzRP|3N!Z!sqlT5<<}swz63)gyJDg4PjacB|`Wvgf=0x4dMF`N`}xVWZulbR0yS+
zT!UIhwiKZ(RhC{ZgyV(HiK?KTiXl`Ap>haS=v32wRl)~uuj=Ga$(=poQ8R>EA=IW*
zhgzRnH-vfwDgFZ?#~bw{p@H@r5<+j(Pa!l8p-Bi$>HJ1*7Q!z&^XCw1zA?wyoK6ev
zw+!J|&9x_(39UkCO{XpM+lBCZ2;D;HPV*0HCu)0Y2Wm&EJbbe=LF#k~p{wQ*Z&Z&E
zdWJA6gug@RMZbRt148Ic?nC`k=l3P_3z?TmNGW*@q%$;xL4?87AykR}6~a=Eb{L)E
z)Db#5lCYl%qeGa$rZ)~_2xCJSM;K3)Y7OQ2FXTzo$<!&-10Un$H9drXLfArQMhG)Q
zSSV-Rx8_i1$q}^HkjI_OW^@j9E>)uQLYS|40pZ3QwJ3zeAuN$qptGL3EQHlMb9o3W
z$Sbw8DujvK%*Cytv-XRxqw7K_$iZx&vyr-qx>@IZb0bd1`L7%fZ<XA+cUuVCL)a0*
z&Jgy8a3F+TAsqFai`Xr@)>|dKNB7+u!anl<efD)QgcBhcN!6hc4l{H_x)c7>z2uB>
zjC`Ehz-Jae$zIa&R0vnvD1kGKo(<t#2<Jn%AZNBPGKFz5gi9gZ3*mkUmnE5Lx2RV`
z7#U|)yT;~q>J92ms)W+CQ@6=?sCTu$F^hT-!ov_=hww&r^0(?y2rol;#e~PyC)B4Q
zJk!0N6JCTMx0sgV<KC*(Z&i*tuH$dj+YsI{nj~z7-iPopgij%S(0!{Ob$up3f2-oc
zkfx*wBa8%L2qdH?qDnJy*!-tbASnwb3nO_LDag_>Eg@wXsR*gHpC*hf{F{<aJL$v7
zpt-^2xXfXE6GlPpWC=t5@yr^=sRPDb-rOKt7}>-4mI*n+$W6#e%|%V~&Ybf+VaStl
z^3usi%}<q3fiP^$DJ0IzxRUSG;Y}{9m|+YLV?-GCFdSht4Wn5YMi|a8>V{D-jOOo@
zD~w1O(J+**<|cTkUaF7krv|9OFhT@bdN_;$T)J>9jN)OG2&1r$79kW3qZr}KpEJq)
zE{yNPC`ohrJ5?%-(&SoUlp#n?Wf}88qih)E2*TyVs6ei$ol0S>f2Sl=Mfa*2Mm2JE
z?bHaPCi#ROXKgm?P#?cjKZH>~jK(_u$1oa&k^a4EK&K(KMJ{tUlh;pStl@tIP3Y$y
zXKtOJ!}ukPj$w3?S=Dvg$hIc8r2b0%O-EZ1T2tk#leUC*Vf-G3=e=1|UVqSRA4Ug)
zIC61<Xy-5ng)umcE@5<KsLFfQEsXBu9%1w*^whn2h0&Td`_TE5+Lzjo+MharD)k43
zF@*W@>!*$R)Q~X#3S(#(>((2?m?N;@z1q&4kztGq<6ao|!}vRl(P8WiV^<hs!WbLI
zzhP_*V_X>H!&n-|vM?ruF)@rKvJ>8ln-s>5_G<V}V;aj&4r2;osve1a<}*Evf7qN6
z#@sOGg)x)OSvqHS7;`jli^F{K0_r7>a3Oh-&RI;zb}{Y^qq4rsWiQgv6@-=YUjSjX
z_Sb~5_6uugT^KESGhwN)A&iamH|gkR!WL@A4{BQ&=}s9t!Z=jb+=AP~aD7l0kGhU-
zGMjSY@$N8=GkH%KdkOof$Ef?M2f{c=I7F3>hr>9c`9H$ZFv@=Ty8p<dPfmn!QqDFE
zoeAS?*!-o>Y1!L9D7l@~xiHQ%bSsPty3TdNMd~H$W$KkMt`cOq*TT5VkDYI5=O!WT
zE%S}^?J(}Jd6)X-3aAHRJd~4R1X&_@L_b9YDI<6s#*;9f(s>ca%P^jipHt;`D^l=P
z7`;BIgpseu;Oj8ngz+|vcg&H5&tbeLf1rNU{wH>n1bM|p09Ht#>kRxHmx!ELJ4pyh
zsmZ9xBgn-k%Z!|7*epmzGc{FerXi$_ARQq+H3KyxH4`;6Rq_{?Raqm*#-=NR>=Aq$
zLBR+LMUW$csUK8MSsbJ1cN?2Os0$xd?g;Wk@acn+?_Q-s-U#yPYWd|`V9oMO^YSx|
z_y`;k7&I+ZE7cZ(osfnz)105XI_XHwFK;kZ1nvktG<)z`owsice*}RDcE!w@4@MA*
zV0RRIq6kM2kzq#>A4N2RSOot>Fe8G(5fq8ww+LFv8hunnBWT2e#UdykL5T>yi=bIA
zqhSQ!)2~V`89}KCN=Hy8g7S1^alQ=ZLd!-_PCEs7^Qa0DRHRdhT3JV{$nZXzQ&cU2
z>NIOm>r!h{Yf)=QP=_GNLzAMO<{t?4sXs>0fFN5z(&Sy7JP@JUNA*(#jU#9hLD4a$
z-&FT)M);Zf3$=L!EeI{ClKd;7{YTY0f;JKKk6=IqZ6jzGL7xczjNtbO{$Nh;2u6KW
z?IY;ANp+8)Lj)b^ccO0Ky>L56(1p#e)NWK+O0zq0Jv8?u^!k#J6Xnx77jcUEM$nID
zR(}2_y>j;E`~L_AMa&0*?P1#B2!=52uLwrUkRlk$rsNMJ45yBu-nnJ`t)mko7)>6d
zow0;*5scT)gb1#2DN=0`&B@d$av%_<>CEX7d|>9x2xdi)CW^FC%#L7=_z`@JU~UBS
zBKS9gt?V*Cf&~#QB+K8{MTBoZssBZ=ID#b+EY+1)6P87=TstcWD<fD%SUudFmNh!M
zmhi_dW1V)^6E;M!k+6xnSx2|XJ}JwU-+x80J%Sq%+>BsH1otdzcLaNwwle~`7-kn)
zcC)>N!x0>bU>|uu^#JuC^$=Cc%EQ_Ji{L1mS0gwU!SM(#uz7-dhI*2EiYmQMM^KZa
zI!ouA_RmMqp1$N<jNlUe%Q|{Rb^u1N(Ydbu3K`X{2yRDkKY|A`!=Kb0>RsxD^h%t2
zGVPsAc&K~5l)nOU@@I2D%RV7Lr9PuRkKhI2mLAnBHeW~ZhVYj9jw)k*A3?&;=4{LB
zQv@lZNEtQHA)h0NBY-MSf+!MdP83DrD3U~xlumN(CySy;uCLV|<TUG~VkkAW*Jkq{
zid>&nx+v1q$rnWiLar!sN0E`7Df;!viJ95_CW<VCtW>FxEsE?>d>cg$?c|K2uwIM0
zpH&|Ed86n~vsGDhNKLl8@<&mCA-Q`)^1H5rQLN5sf+Y%T6uqM89fd6lJ99ck;fTT@
zSB=8?r6bi9g(A44C`Rx^;f=y4Q*>WNqUbPK3HYN3&=C$s5h91RGyb!Zv}hDD<_i}l
z6rmQCu`!`I>&y5{MDZQ@d+n5rqLk*+Q5?}TP&SHkQQTv*d=wRQPDMhcC@K@GX#en~
zxN1>UkD^8tHKS-8MUyCM>FAG9)Q+M~6m_*zFN!bU*8QNJ`ccT&b~4BY+G!X?Bl1t$
zNgU^H8bvcUTSf7+_FEEup*D}Ah4%BtxuxK*QT#?H#%Aj%+C<Sdigr=7r~f<k%b(*v
zbYJ<Br~|p9c527DJ4ewaiiOFYU1i76ezzz(vT_ePqvPB?qlh$60)3+RGl~&WjEthM
z&L18{zbN`gF(8V8Q4EcmUp&=Kp$0{<gmnfpa|rb>>T_P9arcxlEQ$ubjlKibUS^JB
zbV(FTqxd_D(NT<%5k54=MKL~#vE<uv?!QhN6QY<XBbVbMikI(<|2nBj>^nJ%DTJv}
z%ppvRVmjfUC}t97P-P}d-HV&0c{U*l+;a)@sPlDnK@<gHPQKiJM7~^G97S=s<<$u8
zWl=1TVn5tFqFABxS4FWhif-((Cxy8itd3$$6l=dEP&Y@hj<BA(fx3|@`I`u1Sz!zL
zU+UH<w&|ShQ7mJ^P7XlEuq%qYa0~2>VxR1yG1QG=e-sDgtP(@U7!F2pD2f*{X)JO$
zigSb`QT#_ZD(A5T=9<duSQN);o}iwjo}!+no}o(S*(f&jHM^Xbtslk3C@wMdEQ-s7
z7un27xDv%xHm^l-Tlc*l#SQXJ>MiX*x*c~%^IbW3qqr}}R1^<sKA}F6vugtPV{%>&
zTbi<<r%^N{JZGr!9&>E3qIexeni$f?@J7yT3EZC;eJgtipY!rAiuZIrP(M<oqdO@+
zM-j)juZSUW3`t^0z-B_K<Rp@*=0i4<(n+EHWQ63@FE>0-Nlq0*YMnEkLtVbbNJnQ&
z0(W}C$e_v;L*^JPF<4{xhGyOv^2LyaoRyj_2KgaFcJjAW8BdNFa%#>MLvGD^V&*@~
zl8`@!3klq>61WQz3dGEN1&C89hWHrLB{ZkemeBovmtkXHZw$T|>|{p_Mhs4}i~8j{
zIu(QDyXi=G4?!G%41pM`#!xMWU<{!cipTJAwGn1QVQNJ8iV|YfG6~&9v|p4^ECw;9
zc!?OM{-VB%;d}ZeV<=B3MJ-L0v@$W2)m$!y7VIm21)3G9m13x@bE?Gf7jvq|P$Pz#
zG1Q9T)Mi)z`{rNj<tvPpFI}}`Sj-&Zsqb9%V)!A30Wl1Wp+4*UAzLJdA7g01W<yzS
z3}d>P)7~hCpJ+CYVP8Ub6KYdxGwRROU#ODMoFG^Hwv1sq53yfk_>C1>QKe>ULYo-c
z${5n9cG~|vhNb+hwL=UYW9S+~w-`F<XqOl|lkX;U51nitAe~d8yX@YH+{F{Qx2`rv
z+ardaI=@#8y~%y3e^UEW`%xvozwDfe%&jvhhQTo`jA2m>Ll_+z!!Vg!ayed+I6Q_C
zG0cxap4m4thEcLXW0)4h-!Xhxs3tLUG<6JBZk{k!_EPeA>IAARZlcUKmpfTIQ(_p-
z8)Vgts_8Mzla7hp|1dg(I+Hp}=g%h0q0Wt=JF5-sV_5l4X#xEeG#AIPCWf^!ERpGr
zVf+7#WicF0<X#oSa$Ri&VI@^QuDm^0t&ZV-BDbXdkLEV%7{fZ9zdnWynm5L<iM*M*
zh5E0KZjB*TVsnOf&?)}^QS}y3Qe5HI_H5kU-MweJ@Pui1?<Poq;K73hCund85Fof)
zaF<JPcMI;pA-EI#dutEp{`X(2*R!6p&s(Ret4`I-^mJFZ*AJ6C_R6)rq3-(=aUc-~
zW!fa7xCtdpIGl(hvi3wglA1&uOT_6!oJquSIh|8#ClYazLwQnakJcLgrk_g0^ZAA!
zQ)+1+>4VGTY$E<i#C16r5^<h27s#vRMe-7PS*|CPr+M^WcL%4`t|j92BmEVa8;Q6n
z&w9S$K_YIk=016wydyI_rFNGt#rN10`Ikw5PW~-??vE4kBoXiBYLkekGJoV+H^ul?
zwmA`(Qfe;~@rsMQAU~$m<loH=HW^<h;>7<L-^j)Dr7>43tzs%IoJ#vI5${;mE|tDl
zKhl$#klch%iTIp|FHB(4pGzDm(mR!wte;^j7m?pRQkam^gj6QTi;!7O$Yw%nR;D4-
znvl+f^lI6Rlnmr=!}Wce$%M?RHw$G;W@M-2AnklXET;*%OvufoAeo2EOXef<lQL!j
zihPe%ArlIVb5n~jEJ_w5rSjpUxRNH6GQnYj(}dC{lwp_2gt8`-GofN??OPMdn^1wd
z(F6k}-UPX`<pqwMK$qq#HZ>MhG~u_;hDu~*vI<$%gld%P<Tqrt)S496;DU+dUG+WY
zW)mzXSWU2*5KFD)3>fVuw5JRwT_(6qXl}xfT+m}e(1ef)i&AS|CO#AVlmPi#NIz4;
zCLBtwmFtu6y$KQK5=JR8vZe{&QEHL3$vUJ|)-_??P5p;LJ(GT``T8a_FyRN)+suT9
z${U%`Sa}mlQ&L|4l*Q$q{K6I{bTpxp2`$;xO4YYEp$)w)*-qs@$sSPNfpTnkTxSy=
zr`D(OFD9%QVf>kS7qY7f-6-A39;8(EG@+OB-X<j7Lb;C#eHr#Mq52f#P<nrI06EZv
zUnzsg!K92fgtB3^zFUUT)1=WxnlQ?QKh0QV#&0H!mcwnvXfwu`FxG^kW)w5ycN4~$
zu)~C%CX6>>f(aYA_{Sp&e^4fyFp)Az<+6$?CQM~>nhA4Em`k5-!VJnxQp#qTFk5-}
zW86Fw=CirNgawqv<U&>Rr_3DX4@zJOeJQz2<;y9ylE#%PS!Kd%6V|Y~mRx7TYhDA_
zs~Y(Wcaqn*F{w#zBL5;co3Mqlm6R>tX2N#*=~oHzWl6hC*logpCcHCYj|qECxM{*I
z7VI<Os0qjD`^f|3LGqCN6rjkMN961)sZY7%CY)e+*@Tm-_Z;PK6HZZ1tNe@!XXT?q
zX*7Arvges!P`wvTxI|BS-}M!hU!`0l{~@oFH%xdtL_Y^_v-yaW<{cC6D!)g$Z^FMS
zc|dtc%3IJMtNaP&sR_?acus#|!YkGLk`nk3_u7Ov^czL-mNGQA@p*0IdlNpGkk_p5
zlaF%QmkT)kGiy@NrR$3camqnSMkY6-G2bbg(u`D0Qj?j?NJB|WrZXcwB?FmJino9L
z*`2gYGc(U(MpjC1^*`wBY~~<ylDWv-X5^vBwpEkw+@a@JNdZbhGYYAsFr^6DUEcX%
zMhP<-nDK)dCCw<sJZ45|Gs>7@HN$2`Su@I+QJr1o$%>?`v4R-}<?)mR(nxBuIOmB}
zRx+cqs;ok(N>(#tKJRq&4V&Mpni^&#DmPKgW?0NH=EhmOan~$;r`ehN&2Uhhq>GeZ
zH^oDGNncV|ZDSxw<oAC{$c!*0LPp6|&-LF`<WbX%@0f_!GNU%Vj!Np9@xAhTl=@`z
zG+IM58ky0_jLu9No6%ZTHlZ{no0-v^@*~-TY)Q5vWxdz;8QUmtOKC^`M7Ae8kR8d5
z1@W^PUFd_%=t_}s`k2v;-kt2B@}6e&qW30$QTfE<`hM<fMn5L~$pNZ&AmvvxDwWpH
zn!zd`LK$ktFv@V1kD!b+W0XoxZ8KK9Y#3w4Br_(PF;;#Am@&=_3I8C+lM_f;h2#_e
zPcp@fsb<VFV>ZKSX3U^S*>qJllXClAoP=}Cn9Jq@avnL~3>iOZ6-iuZMpFG^GnSaK
z+l)PCEHz^p>$jM(+>8}wtT$tW87s|LWyV@|ttMqfYySTOu4A4wxb$vh^Do&6W^DRD
zT~e@FjUc|&jBRFYXR?#r@qc<{oLy`t4ZGKjgJv9JvX9(v#sNywb2)6r5i?GkamI|J
z%#WLKg4=nF&o^nDlV<#F#woQ2B$UPFA##>WT`=RK8RyJ6|9|$I6kKBOWizf&r2eWB
z*;ILyUSPOx#tk{jF8uDoO*3wpvCE0wPTV%*j_gt=RyuK)bK{K}Z_T);=E;3C{x#!)
z84t~PWX22TkIi^Oc}_kx;~AwduQ@Zxr2o9g%z0_XD>Gi3u_fsz7x|wV@67nojuv*j
zH{*kBvlZ8@_-Mu_Gx}RFz=F?ad@&=31vxE<vj7&PwCJ-vnMMCABZUPkGs}k}b(hD4
z5ylrBSzc66WkG5S(pZp|^_kOZ*(^v$PfyAq87#=CJd*{P=~+~gl~TNeF}nq$dK=^+
zpLxk;L2e70S<u{qJQn1&;9WY@v>=}a`7JP6VCGT<EGTV384Jp%)e2frh+$z1icpG@
z#mKAtP(yJGO0Zdylx-_zK_IREQ@*SP<t%8CR;$jg@)lH7H5DiZ3*spWq*3*17RaYf
zWrRv9sZ6OtR<)p-%Ga00H}r4G8f2pCt>xDTu~-mfVzt0Vv6C*+K|0BId<o8Nfrm{m
z=_CE5j258Coy<d&u*xGAM3u)V{nKiB_8Y&mpq2%-EvRF`_7p~Wqmc|EkGib+-hz4-
z)VH94TDGwTKhPVhq>&tJ_1$Vs7&f)wK^A>3{m5n~3p!I;SkTgfR`k{uOyg0IvNlZG
zTF{R26WN~ZKuS$V3*_dsB0pQuMFweQ>}5e$)!UQO&4TVK=|S1f3;3~a`ZMay<QK9J
z*_Z5R!Sx*a)(*7bS2^NVBv>)Xg25J?v*5f1Lo66-!4eCWvVNEalP#EH!EiQ5Sg<Lr
zHj+Ndg5N9{O_u@3Q^t^EE%;sK<0z;2^e52&uwbI<on*lic1@LC#Bh!U(<#Rq>w91Z
zeI_}JoJ~sCXWqtht_AZ{GM}=*f`uyi(}G3H7gL_Xc>P1%GWszKmRqnw&XIYBl@_eB
zV6{xk<i@18g|Cq(Yr$WvTuZLAU_E66xsjAD`5z0s1@x`mY{3=__A%e8dUsl|jlP}S
zp>p}Og)Fkmg56B^sC=&l)~)(M+;71Fh6l-`<RJ?VtI8vCElQ`K-Q`J<<Lo+N!AVu~
zH|3NCrzvMte%6BG{N^nA$nXW3)mD9DF3L5~g3A_Mu^<DJs}@|dAemKOc`*JXlgEPR
z7QEmfH^_Sy+@#zhZ<BXO8St(JK5pB63;t#Jz=DSsJhI?!|F37?V+)?L>xo*bd{sPC
zo|7*(y=3zf`O1RV7QCUqwctJFKT_8C&H{O3w#WySe3YrK?zHyVf-lVD`0PMRarMV>
z$*o9XMM@^A$yBO$OEILOrzO*o=~Zw4oM@d+8=6kbWJP8xvRIMTic;*&M&4X+$Y(`%
zRiDF(ob+5|ZZePR&1=QkH2U2~^IK7XVL>a3Qwph?!jvLb6r~hXxqR(l33^GDJmK4Y
zOIuM!C1tHBM=wuSAPuUwd~q19(5whs5n))-3X>IPD=Mj)%2rgNcRFXNYK5?x71b%<
zkl&IuNa;<qV$s|L5sMY`I2n9g+)CQ4u&a?BRygS{mAI|&DEC^ig^T-D5}*XF2vL&W
zO&YZ#X2n7){<NZ|72jFW-HIMo)Uu+s7459}$%;CxuTRz`zbEUF|NA+Y23GuFMMH*-
ztY~IMb1NFN*@SFL%E6Lv0{u~WD=S*iTdHJmZvEtHZABZEw6!7w-!CM2dxqVt`b|PQ
zSkaNviR?`NOm-oqrmGe5mLU;Y_G~(>rxm@d_*E|BR=ni?>CFLuA^VVh$$n&iasVkK
z474Isdi@$Qn8|1>##k}LilJ5vQ#CUk#^K6GSTR!hC@X$bF5kX7){5WRoJx+fVuBT?
z{xpndGwFY7e=wOyP9i6hQZ|JW&yAU8#dIrXaKV}6TymBbvnjH{bFA>Pcpj7aDqlcp
zkzQM5#bWw-E0)M!N{-Dkg{)X=#WLp0tyo7{LCTmbDXXklO<AMzwQ^Et(9cSFtY^5v
zij7IV<R(@5mmCOg)mD`pqHMEbyA?aE*vaNT)w|1z-Sj;w*(=YHBgne;Gdw^ZBsXNh
zVJnVUag@zd<T3I%d4fDi$_Rg3(Sg5uomR;ixx&!TspM^TY)-FTu;QXsmrLYj@(L;8
z>Gaw^R$Q0U%7#TY+_2)N71eC0Zo@4rZgZ$O8}3+fm;Tv`dsf_+-@~oQpVs)V6%XXX
zl0o}m#Y45;my}0VJf=J$pOVkW=cGJ~7goGc`{WhF*W?@WE%~1n?<i9L-imA)^jRIu
zpvf=5pLqDrE;O{vpnXv_{WHit=#k8Z<Tj+Rp^Ob>ZAfWDDjSO1^b=Mdscpz<L#Y#n
zG&ZDVn9hbQsyDq28R!|wOe)W8!%VI{E0b(wb~1;mS;IRO=dvNU4S8(H%e;{4%}2>^
zLjjc(v|%I1EUc0uHWXD}%%;DCS2nnW4XGy^N~*jRrL+w}zGt=lGGjR#s;b`dlnOQ&
zY>1~P*ie~bB;}0}GG;|mq>^myGJP#on4IADyd=M|;aeN}+0fsH8a5=_5V0X@gUJT7
z4K~(WY>@9;wAwJ)X%xwlQ7e~G^JUZzlidb~4Ne<eYFz;v+;k7=C4Hoyl%>ktjSJF4
zDhb=roC8X4%!WobG`69p4Zmj8=4aHtv!Rv^wQZ=w`X6jqy2ntL{ykZbtWU}a4P+*C
z(4TKZCdc_-$R;*4m9;QwX2W)_F6-;KI?wdintrsQ1-n|>@Ut4Hl?|<JXk$ZLm2|M7
z9sMVjw3m8*H(W<1oygAQ6|SO-4P9-J*POeNy=~}D=|T1+rMH(2FURXIP5+{jJ~s4K
zp889|02>C{Fw}-&vRiBzWW!*!4RW`}8;cSw{D{*KoBr9ZW&MrAZ5Uz0EE{IqFw&-f
z_0kv{<c{U?WJhtq-=s+i@SD#1z&O^1-)$IY!+7RX)c6x9f7mclC6i<_D1Vhvo2q=8
z4b$l}R5DYZ?{WQ~5p!%<liWDhhI#C&Khm(eka4~ZJJZK6v>|gQZGlby?f{X`#}g!6
zY{L>8p4sqR4z~@<Y&dPh85@?{utJ8iVXZt<4z)_HtNu2_Y8#B1^qCnV*V(Y&h6A#-
znX%r64K{R6Y1}CFHf-WjyU4$6*i6|X6N4fnY_(yVa`|}s4*E`&)V~|ITlpRv_R{yM
zq(m7UwBZn&r^v4D^gVyrh9hhqC6AHE$rI#BQY!zJiN~k#KehD*<!*9kZMZHMa2w9q
zaGqs1<FMmP+y(kYIb}*2FVQdCaD{S}yhi>*%24Ms;3oaC4Nv5!fDO0h;<-gXM)J60
z!(CN*k8<CJe<=^hhpP7xWhgiDDgFLE{Zy*@AmN2fX893g$2WGovf;H{d+o?-#~T~o
z%C*;yjCORYWc<&DcQ(A|vMml6Kd6z@+wswcPc|%&$-pp;UH30G#MuEmlCddCN;{G(
zPhrPynMIkjR4PeLxtU2zYybLlAsr=IW_^YveZ_MoCYi~?%;mmS+3d(}#~3zq*pbtY
zGIo@;BbOahFBl5hQP_^$TqF;fmy|K{QSy@o>?lZ)zayke9!2aZZO6A9wx}J&*jt>G
z-V%0{R9?!CgZ%37dYQG(nYD7vXLZtNLV0=xI}DU~J1S8UNF%9{Qe08C^Mk(X%1o+|
zRaI{_JJxCXnBUq_!;T;9XlO^G9VR=1b}Y@TnOP}M*=@(sy+(^2R<*3n4!d#(#c792
zC4&Kv9bPtlb_7)Jx1$JO)=v7ZGGs^Cj))xxx*2P+CQ8OseND=Dq`X;iligU`jyiUT
z)Fr<srCE<s-;M^9N00R4Mt1#cJ&W!#HnC%WX05Ruw=-+0&KojSH8$m#&B*5DnNnzJ
zM=Lu<I55(I)^@a!N$Ws12in@v&W`JL+_2*(JKEcE$__^yI@r<Cj&5AM6WN9AEK@X#
z_A^~}Z=o#ueCx_)<>tojcJ#2LryafQm|({rvbT#Ed)qP4j$iHgg=KxzvVHC7r@X%%
z1C&26ib2XpPzIAj>=;TJMh+)s?M3)|%Sbjy+3}klqh*G(IgT8wDu1^_zV1*K8LyIh
zALAz4G0BcqcC5BzvK>?GSjgU~<ZL-X#u%p2r>muAP-c>|>{!nK_|IXb6wjs1lXa<N
z0i|ZT_&@Df#HAL?Bvhj<k!i`@xQxkia)s($DVxN1_^+{JtsVR1aI<Tj9e>%e*^c#W
zZcz0bMU-!{qb^65r@Y0Eohsi-*=EOfmF%$NXH~gNt~Si~sNTJl30brQDmf-+G5rvE
zm^`9-k5blhz~gqDQ29wa{#HIW9ZuVEB#U;&F8_MNIXlkVQJderG9qpK;-Q8+S+ol*
zzG%lK%4N0e6+5oduc_o8JJMv;r{YaJZpo=($6Y&0F_G}L9X9$sJMPOR+JQ_C{j&M5
z9UnNt13Mm49+Cgq@z{<h^rv>bph*2Q%5yuOF4SkyOEzDTugN#0biI{p4%hfjCGRQj
zqWEaXCwg?U@v|LY=y4AGkyTrnRlalz$+&IF9Y{k-L8c^AkurX22YPe-v`o^G=~ZtA
z2i7jvf9hps@+gnd#2>X;*p$zkWOpEk15F)h=0Hvdayd}ifie!{b|8-fMOl{Dq2GnF
z5M5rP%;$hGzXJs*;sqV}E{#z{R#e!5A`Zx(Gsm)O@^zfWxKwenghRjQOi8*_mU8HC
zWJ<aVO<9JO$Z`&pS2YzV1~T4(1eF^d(C8Ia^3SKZ$_`X<psEAaWP2Q_#jffOI2>>~
z@QnlCI#7e5jZ9R_njA1Iw@|DO{L8&+SGl}^<D&Z=2sq$&z~g{d_0CHMA6<S|k*6k)
zpaWsm8=@rrIEXk9Wiv+BR5hau>GQC*1ASK})N`N?^SY|{d&mEGkHq>8G+_RN>TO7A
z<UnJUG;yHcVf}D4ci=|{`a3Ydffn*OkkFeoEgfj(&_6uY+JO!ZbY$2@ehN_9sd0XC
zpuKVz^cNXAu~{>leu{N=;Ab|wIM9{S&4KQe3@nhE9uD+mBHoLVkWKr=fj;!6TaA4w
z{ZvhpY#69~kORLemp5~E%cc!>KsdyKp%n394h&Z=zebLdx#~a)CsH~wS|*qSCms0P
zfw2z!?!Yn!mOo7x=fHRe7OIgaI55$HNpjw)WL!3FvIA4toa4Y$io8#3MK*03eY&cg
z;lND#EONHW8x_M``aE(zxqwW1CGbzW?2|<fELOgRvNVZ%^jWmrffWv{bYPVOs~y<m
zz+U#QAveg`O<6}u{d!7$Gd7CQH#xAK@)s#Jn<-ly*s79k4jkk0+QDQexr^MbYWlv9
z+o${}Wj}eqfrBbP<iKJ25tZypkLTHq#~e7$<b=wnXTm85PCM|>fkzJ1oohJbz-{)P
zb>N%>=jqqU8S@Mm9Jr{Ky+pa}z!l0>@|x=XN6wTV^qDV@8*-+|Er7^daz<y<QfJra
z?Hv~1b>N;_>OSRP@&Q@ADjqxVM9vWhKFEcRVX^GmTgo#Bo;&cuftPH)B9rbZ{hBUo
zc_Wul-eo#5yY`<0!gmhT&#raLu6=ai6U&l0^|Su717952bV1+dKeB5gaZbGnr~Wx9
zk>pPNQotyWdtqZLCsI3Ma3bD`G)|;-qPP<!oJi+HdMC0uk)31Sd8A+VGdPiv%}h?*
zdu7N>W+AhZE3#{nOJxox>b*DQbRy|}uobc!b2*V)mOW|A<3wH#lFy04l>B4?vLIQA
zlyT%9l|`H=%I4Im#$qa8>oJz3mvW*s<xqC5j1y&L%pCebDW@vSJN3W#B&i_(xX-Sg
za2ZqO&=Q<5Ix)tHu})}C{f1p$Cwxv+bfOX$tV~vM>M!Hi2N|n6QH@D;C(KS*=--gv
zk~N%2q?kxqUFY|4R^@IdY;-&6Af2k$CA+=e*E!~qr^8#?`ke?k(aMR|EDJjIyZ+X8
zA|(5n6Ef^XM2!%2B1W%Cey8$U6ccwy9VhBK@ja7zWHYk96AhgB!HI@!%9b~FqLK27
zFXNghZ<<uk(V9E)qsm)2(Nekmcc6_EZJk(`L+ip&-Ui&xiQYN1pHxkICpswaNa^H6
zXO;Zy#1yWgs}tRv=+3;S6TO`1p=yq^pf{U?WinIxIMJ8V&xwJQ{-ivk0Zu&OBEPC+
zkj&(q`aF@x5GRH@F^pZqoft(Kp(;mG%IDO6ql{KfS@3r!#yPRji9ekf@6<njGQo*I
zSn!|-COR?6i3LvNIG`Wg$#MkQHN}akPE4aqKF5ja%4bk!Ix$Nnvt?SU?VQVS9w{FZ
zOp@m8?Uh$Q@fSI<n7vELrR46H`g2@HU+%;J)~|A6wG-PIO79xEGB~lpiM34Dk#ktN
zQJl>!at)#UMQ&AFwb_X)IkopWwXMu$v>ds#?aFshc9L2yeTVOHB9#lNUHS&^bz+|r
z`<*!8#6c%+I&sU1Lrxra;-nLQbEzXv9G8QVOFJqPK9|-hmv&61(}o1O&MeBMosh+I
zX*Y9er<^#=dbyX{87DsF(uTD$UUlLu{Tz9oyg*99MJF!NFOyePo;SC?>@_F;ky+8k
zD39xu8%{J^uQzWyamR@-PQ<xzSI$Q#J~;8wiTiT7bK*azem8@PxwQw}o=0+3$*nyk
zGx86v$1)q`DeN*nWr6I6XHGn)zaU?dugKTr8z<gUYUS4CA&b1@T4Y7<o#>KV6Zs^Q
zFt>IrxAxhIHLMYTkXuWcM+5hE>21bjE+luMcpiO(6bw_6(wsRkE{zLm+3ey%Iv3Kr
z;Bvw3LIxKyx=_xA@-Ad@A+rnlT`1r}78kO*kkf@+F4UT2$mW7AkM;}V<)=(`7jn4t
zA2;$SUDBAF!{$@#%Hu*_7n*W2?%y`ZH}($7qs`Bw6=cEoJX#@2VR_q?yuzP4zK9D&
zT@aB+G1-3QB}C|@$kHk=Ln-Tme3_IiQo#j-3kfb5Ic&TONFSdmuXa9<_9Bm_xlqxC
z8ZIQtbIhw%a^YJS<U16^E4xs|1#e!hD!U>+V>L>37rvpi%&SS66kmB}Fu7pn_yz5-
zxa4cjjPk!=n+sODG|zW34#}(8U2wP{;v{FM&_j=`#f2YSXy}5^1-}d5$u4yvzyYH!
z#9Rov5OU#z-xzjbOJ40tUQImW!i&F+bMtC7<>(AIZtrQ#nNRzeSCcQHuI)k{7h2@g
z8pspOryudUF8vo6{j&qI@qH5Nxlo_d@tiT3Piwd}q51QKMlLjVp|uNbTxcR||Ig6E
zg_d%#TxjOP{36C=<Bey=7@E8AqYJ<0)8sKLpC(_yygQ%PN{&}PEiS)S=)AFRakQ1a
zlwWJ-LgD<{ghL5GxzOGPd6~U~Y)`iMPA+t0vsQjh!p;mO|Jj93`8AQQeD2*`=<Y%f
z7kawT--Q7#^m3uM3+=ia`?BB{7y7u+b(?;b8<}5wv?4*gAG;)3oL?I#(=v7ZaM^ni
z<F76Za$&G+*cqcdhRD3yuFFuB45Q?JZW!UhNEdeH*G9SUn@j(!gm{DGMv>8Mj&Whz
zSc5djxiDU~ur_+u#snAskQMn5_F<yh2A2<$T$t>_6c?t-pFJKVcreX{=`O5uW4#+Q
zT$m|`#*H7`nB~H3nKN$K+?eCSTsgno$mPa7+4(N~<HB_p7Pzob*6zY~uHsJ@*0`|N
zg+(qbc3}y_W#m$|4cGE(%jqk~mE<bbyIST|etm|>W1R~dnXe}|sG6Hee~P-WiOFB&
zW^#+F+3JG)Cqf3<;lfTi`&`fp=)>-E;h?J7P1)nZUdldlzv?|87ZWaWNF|3|IHLTh
z3&)fvdlGlTg_AD)&E&KTXIwZ%4{?OEs`3)$9C_Y_3o5@T6PuNnnOq^Ss@`jIdb0P1
z%xV`ty6}lzx8#g-;iU_=UAV*Kt_zPS_sIL?zvKf__P|3I=5VyfOrDTW$!DtOxeJ?F
zvwErFl?(qd7k}-7@Qn*^DdXQJJm079<aaK-XUzxlJeU1UPv%B)xBe6M3!8CnfK5sE
zq|x&fZlrf31H+VLDl)YjX((w)sZ8g_TaGNA(T&V1&qS#hF=kOoRyVTIv#TVB8=h(U
zq{{6^9yiLlQQnQbZsc?0LnbWFiTtcAtLh85QP7P-ZWMN-h#MtUUet|Z^eHd&CtjRh
zLiJ|Pk5cr~WEqu*v*6WK!@-LQ72GhmQPquVvi5>s=XpHK5=bMdxlxf)iL6Y@>Z-U=
zSuItaVWJz~P`)K=s7m=ikx99kVj<<fPVb+@+38_79Bv%?VsN_QaznnK%gtt&f|`d-
zFDbdt4L?0V22~z%qjo_}3L<X&UQmm2*ce&Ujqlv3B?WAL??xR;T{1i0Xe!Srv4B1Y
z>M^WOE-9!rbfb|Qqum(eMq@XcxY5at&Tcf715w}D){S=Jn-iL`zPTGeQd*EQT1z)t
z(OZ*kRK7Adexl3gg5MU@+PkrvJF|lu9hqNc^Jh1@usO_)u4>u7Zgit}S4j^_PqLRA
zy(zz_-ac+*DfIRD_H&~@^8w^Q@>g;YIoORMlzHValydK_KD&m~N08DS>BcDfZ{&A;
zS#_-Jc{irHG2M-E%sqv)32uy6OO@wl{K4i#a*`X9DO1R)WOJ6yp#SN{BFap1mK(Dv
zbI7^mJW{r5z8edaFLYx7$C3NuE|#-wh;fbl94VwNabqcKmZ{3+ZmgiMRLLqgRx5W;
zHLT_0n+j<%$Obny%5}qoWFGvF8=Kttq$>Y%W2+n6+}P|!3X^e*OzCfMp4+h9jU8^B
zcjJN^J6V6ojl+~(a_H3vd)(Md-$(8z52)UQZoK4ZN0^*+<8L>P(vPW{<CGI*#=_bu
zw|)cX(`>flB~JFz88^-{IY&xTwy-`uF1m5oje86)xpA3tg}h2$bK@U3uG6LdmK!&e
z-*m&rK_tJ;@D3^AeK*<^)}FEXud07Qc}PBT<1yt4`P2=0$T-6aYtP+yA<vr4|47MS
zx$#>08@UeC2dB^%k;gkW-^;aBc6h4zkE(JG-}dv_jV~&R^FZ#4F7KC4?m-F<ig=K^
zzA>d7R=K=;ke-r?OiiZoAT31-{w%Cz@L)$_Etdzm8D=Cid5~GvWbq&?J)26hdyqqU
zP7fNK&^K5fc^DS*Ag>3Pxf}B_$xjv_3wrR0U4_|{rR41>MLj6yL2)MKJSa~o;Xz4C
zDOFk8gEI88D#=qst3Zzx(F`6`ETT_<_N37R&4bQf{Om<V4=Q=^4=V>fGgS6qwg+=O
zsNz9Y52|@k-Gh!Ebn;-h+(^{}uLnL4YA!N->p=}JmFR(qVkRA=#RDtFM#`$~9t`E$
zolIP$TlIQmrR?>45b&TiS0_saWnCV8=RrtShA9y;>OoB9au2jx9@J*Dxd(MTsOv!^
zHoqqukoCy=q>SIaus#`n@Svee8u9jMjXh|>q^ZiAd64QC{ZRg>k`^Acq_<K@(g)|;
zu-Vq5zmun(2S2Ia_8xRlKIwj3XAge%V4MfzJ?P>=S9!`FjPRhF2lZ|m`mj=@JDWW`
z=;^`S)rMYVZ&I4Suvet72mL(g&!q-?u=ulK0DU0&D=8a4$b;S7&qJ6DC5Nfr(f`G5
zobh$Wj`U!Z2Um+|^7zez(aOhA#*)8#AoWrpBTwKUGd%c%GLf9*!DPx5aw;kH(<swP
zSvD~zX3}S=MC#{yFwcV(Oa}dKm@iMtgC!m;V6u?>Q`Ik`$p40x%4t5-u*{>sl}K)%
zDDR<NE>nF;f;<XdPgv=}Di2nBu*QRrMYO*?SnI($51I`(ZsQ2+J=jFqphn&(A}5!8
z0X@Ip>MsvAvule7TUE`80yxF{$#0h{h6g)6*yX`d)w|n+1N1#A+3UeR<@-JQcjU=V
zILPD>d06!x@jyQOBE9lB#_%|K!h@5lMt<Kr<-utW&Zy+F2WRQ$$n)d{@**jtU6RXM
zQT@POQOQ-xHS+sw#_Jy3@ZhEgx8y44MK&*PdvM2t53=h#xa+|^51x7OT&^ueweB&a
zJnnn+Z~gd}d_X?*;1T69`Gl03ryfi{Vi1uH_-C`>g$FO?OfRbSDyqFw+w<CkHy*rY
z^FOlE)3|q(_o~KxE$)*CpFPOvMJ6x4s64F~abEq@2ARx@<dhU%q@+k!y%EM#^wcUz
zLz!4qOGins@(h%R8T0`&dy$3Bzlv(-ifXfN8RXVy*}cf&MQtzYc#+eKTwYZ2qOupc
zy*RKSp^z7axkw%_@>24V`N;xgK~ly)`!ucyy|fo)C`G*}Mk!8~AWM=`UyAa)s8&`b
z@sx62lvhawFAT~T#v?(w(F=`UQ6&ji<EnU3)r&BbYF<?L!sW%&8*$&L8jBa-DzD*1
zBHg4Cvlln!>c3A~nb=frr#MKb7jmGb#_ffNiPsAsMV?5eVtSXK&43p{iX<T~cBa<<
zc^Y97C1Yew@;kB?DP;qP$JO=XdoNluspm!HN<tHQ*<xCKFB*6u@`D%Wh8aZ~vf0Rs
z#*~XI6C`Y^Mr%fCPX6dc3rb7X+e!}c2K`yfqYcBhWIHc@QZ?<p=s@qNl1^SY_+-0y
z(bbDRUhMUvn-|?#u+objUi9>03Y)#W=<UTQFMeb57cWM5AvZef<3(R4{k-^<(w~$q
z89*6GHZP_P@?tQ3h!?{sLrJOZ&40uU_hL*@eUcyfkT6oZ-W%F1F^rawWfQz;wD9Zy
zYsND9og7Dw_kR5k&L3<}BxR^cUQDJhyQ=S;sb0umh10y4?!^q|hnFU-@M5MHv)G*N
z#au7uc`-+gAb&#6r!OWKkPB7spOi)9VBX?m34N&-%T&#B*+tyXLsuE*ZqyIcDw)_l
z46D6Z<HcH*ts^&kv0g2;!HbPaPHrOqQoZutzb#&D^<o>7q|dBvr|(cTJH6PYe78I!
zZo@t=_IvTli`Q~-@Zz8sch@BR<HaE_4tsG~)gPgp_Ts2Yj(Krh`3Wyh(*Gt;soa!Y
zKYVA{JS!8Ma-O_EUL>XFk{3IQ>BU!=T$RfgUu3w(=GJ1`bvcpcV0m#%PJf2C)v}Mh
zxI@3|#XXt2e8cK})%!2y0r`-8<i&YDcUj#NCi0W|8Ra?of|TBuUdWe>h`jOQtrwYn
z$l}9)Uc8gpGS86FhxcB5U~vYYzVRQuNJ06;@H6>^jAITm87cM2DI>NUQ>rAD52@*8
zJxD`I>q9!#o8E_wQ}ua!b++McF)fqIa~0RJ(hK`ggp!TSPUi3-rw_S&$jxScG7l+3
z<@F(-^21qBfL>4~g?w1bJ1!RWp_mVqe5mY0aUV+fa3Q~ObaAbu52aXa^r5s`s+<pH
z=w($>xww86Ezf2J9}JXu)tlf$O%`ZOIu+L{`o6w5rV0}iS(U6t%4pSn_=f&1SwrQC
zNnu+3;$Zf{qH?PbHoBd3sNCs;^V!#{rP~LO%Dq1LeDJdwAcLfQN?k@?Qe2Dp5cOeX
z7^A|7$y4y*Tma_-_|At~KA8M4`%&A6IzEi{VT=!TefZvopMB`!!-3*jJs(>6(AtOk
zJ~Z&*2M*qnY)CdD8<R~)S#MJxn$eq+KdQWi4>!3Fr3NMRz1@agKap+8c4XcXT6;<d
zAF^gM%A=zXo#>s(juQ<McJ-l~4}*Oe;zM^IdiXGqOZD`jm+bkt_&#i=<u5tC>A#TG
zOK5#5{mA~LY|j8nEpFSd^g*PIFw}=(^pWIna)b}EB^^s>Tlq-`8DW$Uza^D%kg-1e
zF6WCMY5W-H!+0NN`Y=nvMTQCT%D=qe@53Lm{dx7hapPs&WFMw*@fki$rA#NKcbX5i
z7bG;_r=MIIhZqa<or>bKeOTkeS|8^4FxQ89KFsGLOG;?P9~&0<uv+#8--^7@hd+H-
z#NNf^@}x>RgD5iEGD-#BBxD7Br4OrA?}8lqQ1XQi>wJ)V0$lguh7ap~*dS-U)cA17
zhr>Q>QuVtjfBCSPvc-q3lx^frAGT9uy*qqJ!DqBfB{Q>P4}Gsn_W7`%en2G$eb~qS
zEF&CYc#1qq9`oTi<pg<>l*+$-xXq<b`*6mGv&=90aEWq`JTF%dRezedIl9c|Kjal3
zuBzT^lrIbP(=&NV?WPa6e7NhwJs%2{)DNpXZnNeNSuQ)$pD^B+tF#aAeE8Rg2h1P(
z@Z5(NK0IRcF)7PFp*$s@`A|cR>Ga_x!&l^M@(n3Vy_FM|mG4yozkW^lz~)CEK2biC
zUsO$;AKlgX$ylG<j}(-YWGYg|N&Y1+tsm+9sLmw49~u0J_aniN2_?0Re&p~YryrSA
zeP&7)GAo&l%<jhuwZ>e26!xQtAGi7%a{G~o1+uQZe&kc0-;V<Hf+{KGmv09A`dd~}
zKh94zmi42U9|tQLi<2eD!zHznew3n1S7|@W&}&vRO0yhCD^FG+4QhP(FokS`k<DtP
z=0`=<TZvMctl~#imEYx)(l#5u@#9;DHT-D$jXqSOs!3T&v-n~4<EkIm{IL09_hW${
z3;l5T;gn<HM-M+-s=l=!Za+MJc>VA(Z0U#JkANSIRZY;3@BFC6X2_2)B|=8Y7%7`k
z(~tVs^+{V>CH4KNL$6DIPu5eth12NsrvaNkkPZE4q<SOyVLOx1gw3X8Ge4SBek5Cv
zGJ=oev|_VPWwh~QX)R-0Kic{6lOOH<Xj{ZM$)xY74t^Y}W$ebvj(&8abS8f$yO2`Z
z)sLd3zMgA2bD^gnz5IB?q_-cx_%YOvVJz-L4)CKdrJo=2ZZR35zaI@hC6sv>H_(r>
z)%E08KL)As2UCWSa+{{%eppIrll_<?d!Upy!jF;c8s*1tl+omPKgLkTlE0HO@;E<=
z^UsF~O#UDzs@_Sm!QAp`rL?JX7G#URP)eKT$8<ktsG3=nndBxG&!*4uV=iSLDeIc=
zhjEAgbpG^Xksp8gv6)?q{a8cEU0Pcrhk(A!kL8pV<SKHdU+#nSb>FUL5@B;KeVrfc
zDYA+Uer#0!Ka@>mwv)y!ezYmAo$%wNA6xy{#(X=u-;W&>8DXa%yXd>gJ>*_;A1O7T
zp2Zzdeo$tJ^22@{p&uoWsr<M+<*ND~kjLK)FZ*#y^`7?Q4E?Mh150c2I49Q-`UUc$
z$}jmbhXpdu6+gb8VLWxp@Q)wY{iqf|^#E@8ag#$;4d9j^xBd9!$7et8Fnlc&l5*FN
zdw%TYKD_V8zkWRM;~~3b<fnc-qCX~|s6380m3_wMb3b1A@scjz!1zkl$b^v(_sLs&
z-um&MAMcnSEo79};@+#84}N^4NBQE+7eC?xFa-2d8)U8katDwsfaGkZ2p}^>3Q`7;
zDuC1hq+ybtOiQLyHF0sspgbcbQvf&B{K*nPR)*Qg>|_p7#?Ki*p;}*$RGt9x2O#&3
z&Z~O!1-|~iT_AvhQpvmoS(q$B7A1?3GG=iK%IFigB)wDsr72|sC`&09K=}YF$abF9
z*IuBER=JEO6qiSQK;HJL?;m*>DH>UktQ0_HN)=LS+T4!YcTc~reiOjA0dx-F=KyL1
zkQhKs)|dh?2Vf7t5r8Ftjt33a0BrI*IX^&JkL&GSMjKy7lRv$k0k{M31R(Ar7vDG3
z+-~#+;16KU4t+(w0G1xmMVbMIK{7;!$p{$@AV!f&c~8D9@?8M60;nB89d28T09po6
zH-PWitQSCIN_|r58wBu!@`jW~<Z5nq6M9p!Spdx`veb_O)bC+DRz{n*-q<pku@&>y
z0kjFAExjYzPSyVuKzrpKWRsG8ofVxJHoju)5<u4g)&;OWfNlYF4`6-(3)tHufS~~l
z3!o>Py~y4H{6gtN4h*0#r61X!l<gcqk=MP&e+^&|n}b#FkbrzCi9RcaGs#d^n@AZE
zz(~rd0DcQ#G<_T?#bW{(tNeG$z4iL|;{%wW@;_uj{sK8EfXNJ}kTV0AN|{DZCuP|g
z0mSFj=j1FVvsFGvW{C26vj4fFg#rA@aFrZ|>j_EWA|{K;CFIfomQj|ID@a+z$^ahn
z-aD&RvWBuYfF9gY8v@uEz?r08@(8(!{40RX0c;6iE1UZR*hZ0&cLlJWzJuJU@|u3^
zrtcy5s(c^i>TtsW%0coFd6<+j<+qfh0c3g>cT8>G@c>S!-jkHS130CU(*cw#s~^*|
zOp+$Rg#a$fNf&}Qgi8Tjme~?SzaXvza5aF>0elJIS^)n9@IHVK0bG}he*jMccp8AS
ztadYie>vJMIRs_3+iG2RD0c(6N4c-^Zg-3i=nu(9<YO}FmL{@!&jNVMMErRGFX%5-
z@{01Bd_xW_tNllLr<$_hM|$dYhED;^;j@<S)0Adh5D3B@geQn(K_m|%YY^FjsCF+d
zMNpq+>4HcZ#G!==smRo18dAcvL8RJf6p_mGtj`ccMv5evD4B!EqLS`Y^lNGMAaVwg
zi(!r+wwKiwEivQ{B2N$rsxog7C4wj!L_Q|@RbGHnFo;4y6b_;Yo5fUbQA#{-9Z)=o
zBq^nO%TP)OQFW5O!SX1}q+Af?DHTWqDZTMQ{KI`EZVW;TqGAx0*jqh_Z-S_-Dyztt
z^lB=ZmqFiq-?C{5qK3*7gD@#K2ho_Xgj<=|g0KhSP`yq{3f@Z86~q^Ai8lye5DkL(
zAqYPUqN+X+ME-JGFo=*!!juTveWNi(sVN&%PWz5ti>w_)ognJc>yzJ;^+<UZ`#;Ck
zDyN?*4TESDM4KSmva4|rO@e4jmm88a3!*u_br3&N_NI$(5yZUF`Zc^|5YlW#ipZ}k
z63U$u+6D2G9L@g5Zb7sUqH{T|YY=10X&pF1M^Y*~Ntg1UgXp6CMFxy}WL(S5>mEc8
z<~_+?WN-2pQpV{+=^KasK@14uMG!B87#PH_K^&A>9mJp@1_v=Ch?zkQ3F_~H7|KNo
z^VVC#f*2meh#*D=F)0YS>BlJcP9T2^Vl-t8IaY?k*WVw04`Lj{@uY0Yo<4DZ&?l-y
z?p`}Nh$(DN4PrWF8Y%w>kVWJnccl={3Suqu*+I++Vy^7uAXYJv-uXc+qc0#Al79xV
zh%zpZaWQ2HDfLT(IGN|`&)MY+R|K(A^&aKET^+<4CQsR17sPrwughy2WEb5xY-iU-
zVGx^w_>0YL<YsaUxs{YP*2@3&H@Y1`>}0r$+#kelRkKH?3VokSth{s70XCEVB0DUH
zKsG*zBS9Pu;+U*DUVkFTDV66KH}fs2e+O|YsDFh=JNc&UAkJ`v2jp3~jF^m9gE*(w
zaz2O)^o!&r^0Ml^B6DM>ejwy=O|B0?TxZvfAnsCb25~Eh+p0dkymm)<qcXThzfb<F
z@&cS%4}*B5lE*<jp+6;`k<V4{`3!g!#Ool+hEOhqH$l7&B3%gSL;587k7a2>c&F;$
zQ$7UoF^Eq=d{%k#5WdjkxFARwAz28%@?U=kP7y*%=BZR~>JXZ;H*E-V1C2d}_3vTK
z5JI2wTILY4gy517&V-QA+n6bYN#!+>tRZ9zAx{W-L&zS2d>uoMkp8vWm-ZRNbE=VZ
zQF4cnG|BT1G2~-XD1`i!0wFAX9#>G+%g3M!hfpMhqADp7LNVpVDI3abB`KxI(qtJ@
zp6P_jC?7(F5Ue5C7#d{DDe<c2Sb5E;TnnLM2$e#ptdeg-s6wwwRwJvc-fu#<r}kux
z5E7Z2NVBT3gfO(XK56YCI6`oSaAdjOy#GL-V<{?Vt`OYv+sHmczefh?l6&j<WY33i
zD1^fy1VRXg@Mj2%LI`oprXe&7Asj*^gea4mYF#l(<1)tYD7DDiWStP|QobjD2%#RO
zKG}ej?UC>7Zb)yWlExu4p%<#4&za^S{20P7G9N-{5kkul+Jw+HgjRCI_v+86eg&;H
zy+#GCS;qKwT()BfohUz%?L+85k@_ASwsQ!*nEb5rE+KTKcO$!#JydVc5GHa#8KF1B
z5hLRIhR`pB(IJds(m#X|A&d-R0Gk6t_*KrPWco=oNR2Z%gdxg@hA>R|aLVcm+F`Yp
zQA~ad!H`-1(Ka@ORsD=JLzor9?`o-WA&d`U0-Jx3Q^|>Prcfr6viOt`{^iKim`o>U
zs9t#=i?ft5r9qn=(*GAZhxuI9JC8D-Tp*{6%I{o_TO7iY5cY<!FNCEbEDK>%2!F9)
zc?fG%<qFD5a#aYc|2Lm&TuWaU!uk+4sC+ViOW7z*CjVPs%%D$+%?!85mE^NwYY5vy
z_;e{j9@{B9$erY_5O!1ckW!QFh;hH1o*d_Z9Iu|n1_te*TCcg5@kj_qL%1s^S_sEN
zI4);O2$w@R!J6|T7mO$Af0L)wvZq5hqx>x8oXjY$=#>!{Lb%A#Io9A$FkT7aY6!PN
zxXthyd4v3iye`YCS6Xf|*__IFha!6*d4J=v-iF05<L=904WU*TwZnK2!ov`1gpnA=
zqYxg4P$-PTVLS=psqCvTQiU<bpgjxWKQ+#C$_w%(`6`6hlsBZT>um_{uj?0(cTC=s
zA42#@`9va&&lD;95<*;9pYu!j+>_ChlM<!~%RO@S(NZ%>Po^Q$s+x3R6ykf~GK7&a
zj7(u<W>?-YvZ$IIl&oa7FtV#$md&X=R~WgK=izgg^~xh3!~A4{Fbb-g;dkPSgi%zM
zir2mgqgWVGe(y}VFp8_15|ol*l%kX-%c$P6lmiB>d>9qz2C@<vA4USjNNS{PPsK29
za9>qsQiZHaR#P?A!}!9QZ<*AH*XqS<J>vD#!4!r$3=8w`NNX6jFzjJC*bIf?q)4$R
z3>V$4l9YFiUgbWDKa7A%f?-VJTEZ%cP@-gvtV!nPTN>8IYjwh?8%F0aeh%aNFzT_l
zbr|)-Xb?tYHc!QCKTsNyNq2c_M1K;mH3?%SKXKfYNwYATQ+^~{kS$4hMy<j~pP=st
zd0R-EFxslT9p$Gm+N-1krDGVKD61;#v$RVXUD+HQMmNeYWOq^udW6xF-iz!_%0^0;
zJo<#umq|aeKPmZuFb2|pRmq?*N^(1;cL>9w<ghS?tC|sEB<+gd!WbRKix^(UFeZ$#
zVf+`ty9j;{V_X<TA}AWc_%J4fu{n$_Vf?`nCd$DI!^*Wx4r59f>%-U(#?&yTg|R~R
zY8ca5xgd;YZ4zeCXR5W&qRb9s4rMMmPxa0Z<LV6k%w5RjPjV5tSk){EW2y3GVJxTL
z=I66y!Bt_bR=xGh8`p%fmd$lxG)&NXaI;SwNT@x)xG{`PVO%_#aB8>Vf5LdZLzlmp
z9Q!vx@~vTP3nN(s$s^bv#tu1y!nhg6&M<ay%zwhz9mbw8E{Ac2$=)yyQudLuJ^RBr
zpj_S+b100%vRj@d90}v^FiwSWl)cBu<Kzide^NHSguXXUGdUmDKd30pGhv)%a!yss
zzi}nMAREu*lFIK@(ewNzj8~alQ~8j1$j4Eyhq0Xl-eUeNjOSt84&zQ3cbSx0Wqd-p
z7sh?H?7x%;VLYTf3ga=w_A*W$vbv|Lau5G^_96^Ku=0^{a)S1fU9V(shw+B~HjIyy
z|HyZw4DvpV56agkXrJhx$uBC8i{ONs?N!pnr-&eB1f`8y&InRP^e3J<f-DiFrb{yo
zB`ujQg7hlSK*<<ECY8*)7MGQtgM5^rWs4wt1S0dV8-+4jI-`~=g4`^~L*|PhZv;-G
z*3760r6zv_1=v-PEJPM2uUyh!&nXr`@d*BiU}6L%A}ATbZxM`+pp-n32x>;~T?Az!
zSa8|kjNsE*W7!DGMNpn2REnTK*HR$@1Cw|%fi#jDDJ!Zdqw)U*l_RJUK~?67s<#@Y
zdIaB4zEydR2&QutrU=XtSXAzySR=5h#2&#0R?50&_A|I5IAzq_s@FsDM&OIUA3=c4
zFc~C6q%2!5fCxRRl2`=KIdZKCYDds5g6<L2iJ)!-ts`i|vhO4KLDkobpuX}3l%%a~
zNN*HD;|QA2o0309(2UZYlx>jziL{`%BwLY5ySi-z88rRKwrAKbf}bdolx5z5&5mRz
zvNQQ}1YIan*;OvB^Ys&19z7!H8-eVxo}?tbSk_x6lBWGa?-N0D4&F~@$Vfx~2nIwj
zkX^q<Fi1vVuPi&5;c#+D1VbsqNa^j)udW-x=Ew*}sXS)@V<H$E!8n!tPLWSB$WkXO
z8^^1B0;R+o!z9Yo2&P3anLdS_$t{^4!3;K^$&-p;Rs=^PILc&p1Uo5nBA6S&ya?t;
zu#L%r2o^@LDuUH){u#kC$|6#>WN`#blrN27BiFT@$qI6%>Xr9<tWo|~1Z(N*B3Mt^
zAXL2@BRI=(HYs_bX`9)*h1{wt&t$`P`VKPbMpe7$yCc{`*&D$jifrw^2=>ztkOx(s
zbX7bY!EIigk411if-4bRm8+SmxlB1p{w=2x<#YsRWFuA0g$T|mKQD8D@7B1el1mZ&
zB~#gqOXm{gUQ*YX-;$M5{vofEH^`f0=8Br3q86;E-HG5XlY8W2@_q#WQXY^GNm<1s
zIb`bpk53prC957vcpkxv2wtknw-LOezb4<P{Mt)H+lu<uzK`HT1ojvlF?^IOUIaIz
zxE00c2)@YEkK$|;aZw<OHc_;VB3Ts4qX<P2jv_@ADWk|4MXo43pA4y@$P`89sQ!Z>
zbrfkRX~}eCdNKnkH5sEA#BIo;l5A0ArT_2e&9k$aBl`98Ai1N+6Gho5%0-b^Eme?`
zFN*w>0_5CA#(GbUg`z0TW)ZSP6h$e;$l|1I$@A<eNiRi~R(Y8y4qwwR8s(#?5JinB
z5~DD%x1y?vk0OC?BsG=4dmLAZUO9>?l&a)6WVI-&Q)KYbHS|l<w^6L-s|w<#DC|)<
zSYVFALa~xIwUpf5*Qwk~aglC07L-C2^#dUfUle{-8HgfCmzw}fS0svP6hB5WtdYJA
zu_)@Ww`LUIMNvyFwVxlxsm*4g<ft3P_fgbSy^SgL$p%sUKxwFY8$~gPM_I;i5=B#$
zH;baV@-;cpBC6klxTQ*3QCdf_mCLq^;wRZZQLKrgeH0y{_&thoQFM%=Qxtuo=*#-f
zQS?+J{2WCWdRLWni=w;o9u)aZQ!h$y@)y-x^F%^F`Vf`$rwoW<ph|wF42tUCv^!Y#
z20wEo&vB^i%qWIOF@goZsrr#oj8c9m8Aj8`sAOyut@rCkL>}X#m@PXkiV0Et!Gek8
zG;&fDlPOcksiZ7*BOj*IXQ*Um6tk4e{p#mNF)xbq6*c|l&rvL3*Rm)UM)7A9OW9nc
z>XUZG;wYA=MD7nSYbiQR-@@fltYE&9T%~GcYORf8T@)vy_&bXAQEXsW;WNgKl&w*0
zODZNeMe$csQ(pgxVvF)?FXFaGu|v*2COf0pML873ZpuD#4=LNTmy$QLzJ>dvIH2-_
zl%!ip$R0St=27w(d7PA`PDJs7GfmF-Q&E(uq@9i;V<r6xDH|_MM<wlC6qlm7Ec-Bu
z3taFb*_dVi{KhM4v>Q=erC(FYKa}gFe7bNtzmxrT6nCQd7{#Y3?nZGhigzryAH~12
zhp)%IW%EH4FDVa6*`!C5$5A|?JSCrz&q=9yAtwbl?3GGhNAZR}ow?Nf$L5Ag+Sy9l
z`zSuB%9?)}KS%K;irg{ei6Jfq#PofeflNlGCX>gIf+D>sDXC)mzt^RihRw7wj2>l_
zN4gl&(|4TGn;E5y1y8s!ndw=`tYo$rvQuQJ95Lino{Q3Jg)uM17=so=z8LbyP=HC1
z7>ZH~#!!eNBNV1YM;eP!%Bs9Lr9=!RDW%BLs<(`6WMzF0lw(q!tUwybcv1=yC<j_6
zRHRgjp)zF%@7Wbhfhwx9Y7Eur)noXE@@))e)mtNmMCGO!Dsb&Gz9j~$%55<u?KCHo
zjxltK!4-p>O-~FBV)!8jFPpv?{FFcp-%(_=U<@JUVM-*1C?%%ynlV(&ssB)@#iX{%
z>rm>F-;?#o`Z4`01EgLa4P$5)L-QCKu}hN1lqNAWRf)f{_9ML|*&@mL8(J$>(>jJW
z^tNO>@+Y!ADI<5Fd|Ykl9K+8sJd2^nBtw@Ny2h|Qh8;0<i=lfAV`KO|hPIWp4%yHn
zhMqC>ilKK5=PPT&Il?dGuQBwY^d)8dew6+(3{c6y7>4n<42ofJ3`3X?Q@ulDn6Hl7
zHp&Qgjf`Ow<u`IPIfj(AWc?U7E{5?jERJCb!#9<+2{P@gXn({oF@{MoOlCfhoD#!K
zwd~XwrqQRXWJV0eDqoMqtQcl9pQC!`#!#2N^Hs7ShK0)ijA4=TjZKV8=^J9$7{js{
zZVfRk|9?cC1(Xy=`}Ow*_h1PU+-2Bl+}(XgdfaD_5E3-O-CY9&C%F5IySoR1y95cr
z{d@W@_5aS9bI-4CJtbXLT{F8g-A!i&b!7rpC15pq9d!*=j%Y364FBv}pMW=Sj6K14
zC1AVER5@*virk!lE#$4#ZOZSX;n7x;L`tb$3AmhqD+$=0fISHqRZiQRfPD$rFTE<K
z?JuVtNWj4aoKR&CCE)nC#+G$hIY$Ub6L3s9#}ja!m7h$&sRW!>{)GgbQG7N5=M<kO
z$UU9@QqIK$TvGgZ0=_A4boFWit|j2UoaW^<xxz@C>#`A**KVlDn}l03n1nmjyDIly
z0#fkG=m!aqwjR=dMEys_JWjw9#ZL*(63~LJKTm+~YFvBr%LKeiKw2Bp+3;GXAORgM
z=w!j$1iVW?DGTB)c%Og|(vSt&Eclp!PYK9i!NT&|XW0<W8~-p#Yrz+J3$OqdV?5>c
z4PhvoNMb=!3zE@EZb51llY)?vn#zLxrmtnw&^b5Ls3)BT=~cY=-;y&@Gf^{Bvrw~A
zzoRA=mm0ELklTVh7UZBWPENuP7UWXSF7`981qJEkqvlt+1yp1q3uf;$dR3TNMW{tB
zC`KqwEkP|wl}HnzPHD5*0?h)q1s*!3sZA^>Lnv!OISa~LaJ9Tv-GUl4D^M#^D_KyP
zAaz!;psM0(gyiqc_cxf*);8C)pcb9l7SvTSbu5q{ImoLXo%+geU_nE2BMTZ6-jvre
zRrtCmG_|0a1<fsJVL?j^?(wT+X+6OLiv?E3mtwHZf)Ce<NtRvJtP>m-IF;ifw7Y8Z
zTHv$bM+@3n;I|-PK^qmbA}4|tgqUo|n!^@EEQngLyv*0N5woBb16ottFsv<kAbAdT
zdj;($3)c6HYj45N%>9Mhfm-E5{Fw~sY(W<bHdwIHg02?)YQZoIhFkEP1>^YZvYr-n
zv)~dd>~291mX*V-Q5L-{=xsqC3;J3xlzu-8<Pj}(`I)UhodMK=s?;Ev1@aK({KV@<
zD{U~1uwbMdqXjFNHOhiNESPS=XbZ;Bd9*futeleU$v6wfTQI?biOia6!8F1o3nmkO
zr%FGkSTLYBw^RA+wT-dKY{+2@;|vQH$ob2#nHJ0<%vPo5STI-dJPZC*JfD!UqE@1!
zwn$b^ccbRcui_S4u!LDlsmoM+kK#s)E16tRT}54O!5S5_)`E3px&Bmc7<DlXXW4>H
z7C5YMTCv%JEfyTM;D`lVE!bwkLB?;lU<cuV1v@P$5NH0h-t_jJ(WPA$>{j*fA?&qa
zA7Q`p>wPfZXc|=14k>5f?D(S=9J3&k6`8F#PXCRJxdkUIIBCHt3r<^b%Yxg?I%B~V
zRrag}=PWpH!38>(sDG*4ixxaxZ48CH{<h#UeR+OXqI1=PYjmztZ>Ul?Wod0Uw$?iq
z+_m7j^6y#jj|GpJyl=q+!b6q&$bvBE<%x2h5-N-|JyXuV7RU|!rRM+Wyr90MzEUx-
zEr?Y#diYK@e+yDtF^$O&41m=r{?UR@Onz3SzE}{)tR{EAzK?%nMG`s^pOlb{nw*-#
zioUEil@+P2NJBFnH7!+2$$_LNXP|yd&8Tu`KaI;`MOG`yT2ao5X06TNS&_?%+zj~M
zifn}J)Ev~D)E}r)|F)#aLoRGZ5i9bN^QqkYRuoWN(27FjHSDvLEowz6I>o5PsU@f-
zsS;zd;wa<e>6ob+wX}*UV};z(R)Wi0QGsR)D=J!1$%=Yb)VHEC%^K7y)T-2K)auj%
zPrr_NO(ttuQJYYQDwWr@;-Tt!11lQR-_5(UH6k~rHla3^!6Y=dBJpc1sX;D9Y)LbL
zYN3j6CD^R6D@V5?X(i)`TvoWPIAq0PD?C<str%sMr(7B9$7jVaR&=n!uSx~12$Dlq
zgb5KVT3gYE9JL~*B3mUoDU8#qE%_%aepI>btj1+HlGR>0KU<N9{SmXH6~9{Xn-!f@
zZf7gHDDFy-iw7mLn-znZ>~2L5D|%Ydi^)NQ&AnB8e=GWs`zoiO71dN*185GU4zfZn
z_K|9bFgetUVOIQ=-WZDEs_Y0WMk<#0F;<MVVmlpAC2gD)e_Ao$it$!Vuwo+psd8=-
zCQ&C_@jGD(RVvrt$NfQ`rJU)68CJ|xj>ODXJjaT;isxC;jmNUUiiI>cTCs?*T*WLV
zEU{v#a+b+F@|k5T=&ZD2l@+VW>r~7dE7p?bJ74Lfyw+Q>fzH$8{7tor+(g(+-D1U7
z<!`g1?E@onhZQ@eiEHL*m9$+}?6zW$irG)tOWjA+&zTRX+=GPl@6AW#B(>rj8<N;?
zOg4WjJ~Hcs6(_BDASaF$r>r<_#WgFg%RH(YE?RMxd`>y%t+=50FDuq@^e)l)n|hgg
zMa5htoT;SUAly>^O)H*W`Fcj*rg?{Y*NS^8=DrorS^p#Dytd*WD;`_%L^=Nvo?7vY
z@UQZpTY+uH=)F+RODkR}F8Vy~jpDb2cd|zjJ}5s)T6`jZrhZX=oXuF$u%Z8LV_K8i
z5O+N;xeY07So0}9nGOCMre#axQ`(S<k*TSv4#gKbW0u>Jq+wDDj!%yCHe|5jmJPRU
z_|}GuHng&#wGEkU$ZSIq8;UYGiw${f7_-up)rL90nZBd>y{ac0A-fGZ2sx=gP;*hG
zt=u-Gt!(TVd6kpThWxS^P8o+#z=nd#FGMJ8Lvh9z6R@Fz4HfA(sjQW-p`;Ba8%jxM
zDr?&+Ypp74spp#GRSjl>W<zP^l(C^Kxtwy!+c22*SF)k94PN?HY`8?T7L!$NsHWnp
z6KYUv+VF~DwVAAALtPu{*-+nx1Qp+a(A0*8ghtfHDz^#2GQc?YW;QfeehV8~k~3E^
z#>!%Yl}Q`bX@i}hQzgJ*LkUK@=(v^dk<QSU7@w>M`T><2v>`+eQzO)<%8l6&W!W}1
zw6$TK4eM?A(S~+5^su2P!+x^iR~vq_p}h@(68M?sFVqgIo{lzjB6p^CQGQn&`mp|P
zHpl}eHdN8hR?)hXB{{u{*2{($RkTTr?=8VL$YuL|Z5S`jjW_j^WzVbuHVh>UR5cHh
zIVBIFzA0p!Cc|tPZo>!_GscFI<Wb5QZNp98e@TMJ(i~?)Vp(Z!f(;Ydu5gB`+GHDk
zw_%D6Q*Bt@!?fInX*T@9QVVRDE-SODHb>Pw!-kpUS=8CeUzGuK$@8dxQs=AOGo_7g
zFJy8Nbuo1bbt!e3oUQ7&$}8xsv|$xN%C44uK=E1|j`P-k8*JD}^KVfbHrenOlbdbW
zLO5cBr;ll?4F{OqX2W(Hc95mceT1FVT{i3{>`}RU<@{3Lgzl%AuBveq2W>c{Vh-ET
zsH(B5kIGpuy;A-u8%`)bDSHl|mmy)NZ8$^!EcKj<Id8)Svh-HME|M=%Z%#Hv*~Dcg
zugId^9e>q^YfMV;bsKIdz9~zK!FO!9YeNk?YT9wnhWm0Xc9gT@fejCBC}c-rJ098a
zj}4z?DcbPZh9|7#tqo5JFR0I`|5Be*rN#eb@9JZ`|GuR2O8Kt|Z)~{S`|G>&I~(59
zY$KOH5I)-QiSTrxaino}z;29cIy=502qz~bu_LK+k`bilX-;zrJ5n;4ikh05hMJZt
zHRQcvya}eaBZD2^+L4j|_tZ=(CNm+69a)w0ogJS)8a>ZuM|L}M*pbtYe9Zkp#pJdl
zm*Q(xkVkP|=@lOWo}W$u<rlPL3TLDUoubNLTU9G&M{zq!&?%|>>1kmim!if~%~XwA
znkt<vW5+qxT;7ffG^^Wj;fSfC9hI4^q$2;Vs#Q^3)sAZ9HD+VjQ&lroZ!J4&+Yz&)
zl^u2LsB1?<I~v(hw3=3r!S%&wWCJG4J~ciAG$z~ZuoIe4n^K$E(cEra3)6zhmed5Q
zg(}6Zc6eE*ZimATkMf-am)*Ey@VFhuB5~7^f4X{AjL#0g9RViGypInmKST&qBX&dy
za=RX>q_rJw?D)x!_I9*Y@ju$pJ9(*I)wJKMY3=M-JxuQZpsixBerC)sc61<gw4)25
zlPcTU{{PSGu6F!N|NqYP?y^pF<kr!{j-Gb(l7{S9X2)_n`q<IejxlzOm1AV7{&oxy
zcx#fY(gxabx}149{XupNwi{Qt46$RVoXFL*qt!II|C_+D#N<-b2s^6pH-A%I8)?TV
zJD%1v%WJe9l}rYVV?E>Tm>`R}x-r)i?U-c8bUS89Om%It9i6LdzuVEYhuKkGtC_jf
z6xlQ~mzrwFG=lIS1bG75Ogo08FSVh%HrtL_c8sg8<v12Em*SqTuFa8dSJ&p+F^?ep
zrycXj3zW0ajzx+W6P8ey+VP~iCPh}*vC@vaa%gs}lIf6KJI>g##*Vdi?6hN-9qa5^
zZ^srpw%W15j?^`@pgiEu4*99iMj5Lirjb`oo9yVG+bplm1i2O7%T4jyWIfl=cG$7q
z4oUu2*4!|=xn2!T%-weEvEzsxN2LZk_Std3j)QVW)X*m0GVPbysi7^qAK$)!c}5NG
zkPP^z_{}vm;lpx7bK?b$*>T*CQ+AkYYA5VCUqd@7Q|vWAuc2kAsWrc2u5-kEccl5z
z2J=}tZKeMU;;%`VoMkn&zwNjzXD(Tif7x+S@g>63;pQux$F4Pv8EjiqyUL`%bvtg@
zanp`lcHE(P+iu)IcuGxeZB0!;<A1kK*VOLI=5I$59Z7XOWaJw=-padx9sk(zSf;>^
zw6(O?h0RZ8R8woC@5jHg;~80!|Jw0f@qdIDGK_?OYifz{ukDahkyGY(a*UVE@9p>?
zZ#1>EsXa{}?f4`+ye>~9*DCEWf0nhk!yKpM3!zpmt;HY{bYtPkegA@tNx#UHOh<AZ
zS#)I8kwQmG9qDwW*O5xc%vxGn9j|L?TWV>kb)?bdS<ePvkVB}YX|2r}bbPBLvyNzO
zEpu(nR9nlaqiP>h!`fOVT^?eqwVG)fQd^VU?{v(otzGM4{z1q0I<o2bZl^iB4sRi|
zDTR4QZ7qk6oVq+PRJ&AL6Mb7-lLyh}(T)AHzK#ZjygKp`^6My|qaaxV3K0_TidI-h
z5hjc3D5j%0IbMgEP=Z=ghe<~%-FS*h);ijj7x8j4TTMr49rYMcMn_p46Y`<1j&eH6
z>!_xqx{eCWtwfb}E9yAkGcNJj&6Rajkz;4p@mKNkl7Jda)>iQ~b=1<)<f`$$DT`CI
zjxIk@hWt}buCJ6wu}tDUy&LLiq+^YawK^J0ypBFHr#hPIXr|*Q9qn~A*X6O5noWmY
zM++S-btK4qB{y4joYc$~)nfBHnk3uT(R3XS9c^^9)#V9>no~za$C5glJSfwp!>t?7
z(3F=)W`yjc`l$hGkQ$<fsbyQ2lp;|b$LnY@sz573YgzwwwEiDW-_+HzzBB!(<A=Ih
zI~{fEYQDOf=+8QS(ebN}-*j})(NRZd-FPa^r^%+W^Gdy0UaFIHc&b^TS6!`(4tZ!)
zR~=L8YU9?Ly6Nby%aftB9x_A?%yN6xc7F55y4v@L<9q7zOeL+Cj^2d7OPeLxPe*?_
zY8_*A43I@$PaC9Tu#Tejw1GN?E-}qaQ)-Bg)$PqAb>m-xLv;+(F<i&r<;`+AUafkX
zzz8Of6w)MMly2Nt|LQFBSRLbJ*d?iByet@bC#t7S(=k!U%jD*M^UafVOj{6tq^EhZ
zE|1aCey2{+k#>?<l2e(iF~anRj_EpP$egw^%XQNe9>>e`fF{?|X6u-vW08)<I_Bz-
z3K!_ccNy}eo_Vrz<nZfh^L2duWEMDGPkUBRTPRb%&?Jy5i+PET6|&UpYk!?KFV(S3
z$K#$Rc`cXIw!S7HSt}W^N)DgUpuQ&NIvwkE+|_YU#|9l6Wu5D|AT{gQq+_R!U2=A(
z(KhSYE-Uk+d5ey%I=0aiU$%lv*UbX*7O+D%e##!LukF^cN7lxx_!Dw08A|Pyp{}nT
z<3io1W513AIu0^9w!XH!zIKRwm?~$=5yDX!g!;z*d|bz)`bI0FCuK3{I4wi{-nez%
zIUQ$Y6KkNIm3`)bdB9tfsPmqY^_Px|vhW&c*L7Ty3DqHA@w9B9H9Tm3w$6N6POBxR
zD^!82gljrVHqaz_L&r@Ww{(O8=3F(*FVbow8fdq5h~AM2y%(Q$zUjV>2eM)6cq8jy
zdML|4$1BlI@&D*}rsH3k0-3l5+T=B+C$dC!2<%|;xtyNQO`}tqU&v55(Eg(~oN1Cb
z7kMz&iw4F~zuF$Z=z;mIj(4)F>xgsU<UZ4T8T{1RN7?Io#ea}3bbq`&0R0n9xwX`1
z*`FI~H<y~>z&8%0bRd;O?#8Soao}`MQwnlY2a*wzQ?o8HNq}4zAOQ&twbTw{6Henm
zyN24(hT8mwMo-c^kU?sjk5u#Vtpgby_@fJ^cR?lxGCOd=i@&_c;y_mMJx1~G9QfXW
z1uiUf8OdzI4lHyay8}5K$mzfj4*cdoHwSV#klTTJ4%Bxbj{|ufsKXBAb0EJ1HObo>
zY6S@894P2OAqOrs)Jk+Rzig-#cA$s@MVVX7fp~(nSlodU<dVuUIZ%q6o!5Gsm9G&>
zQ_DC|mLOvym6Ug&f&&%lWN2iJLnX36WkMAPsuHSEt5a)GCFamWb1lWS3DV)Zgc7W+
zfddU4XzRd_4m5J0u>)=gJPc^!fSu4(#;w26nPv_&rz70LftKV1szv!$2W(`Wm*wi@
z`i(RP!RdfYMLv5O=amYl8z1AtG<{S*HQ+#y5Tfqq|HdUU!eo>hbD$NWHMI@36_2aK
zeN#IJes<s&hup(c`-$4#fm_>6l9YNnFu1G3ct7pvKqn^WHPSje(1pB{VZV~A^6Sg)
z4)kzf5}lq7^m1SXIq_paZwLA?*_YbifqpV>{5s6S|C0=$Kae_zI@p0BgrU@7)ZtX=
z;pXL~MmjLcfzfovIxx<GG33ka+jz+xW|}}p?*Cc(vPtemFwtRL=-nlod9nk)J21t8
zsSf<<z<dX$$*IBMHdo`O6INX_y=|n;AWMrg9hgO)t(-Xy%vC&(5WXBYv;u}MGiPqB
zMLL=nIk4D)t4>^VVu=Gw9Z2CsN+*^%u-t*&4(xGY1q-gDu5@6PtnkKKue+wz4y<ut
zt*XCGV`E;LH`dnE+2FuN0rKPdrcDkEXMpf#2Sm3xu$8clx}7Ti4#G|cb`j<`*2LWF
zz&=*>w*&hfIN-oR2M#$P_gs=jJ^a7ZVFsLWU~gmX2wAd@5{@}=oN$7AQstf^oR%Hn
zo$(P%3Z8Y~9BVjFy+HkoD!CVB-%xy|v3A*kD>8ZxTw^^`ZpOdkF<y7zh66WcxylUQ
zjQ`@mZ3pf+@WO$Y4%~I%o&(RBb)Wjkfqw`Os1K=Gn`lz@G5M(jPYB}NoM?Kc_+LWW
zKjZ%+<QQO*0D13t<-liYYm>pR9e6{2>%cn)-jhE#@R3leiSeE*pUOVTM%vG0>S0PO
zRbZA;Rh$!W8i()=H3>DT)A;jB%w$d^rz7mYWKQKoYA04YvC4@wPNa3BxDzFuNasX)
zCw_1umlGMB#%3<B>`r`3&PdIq{LF+bPGlu~r~K~;*_>E--zc7g$(&UA{C_2#mfLCk
z0hq^$yiR<s^tF|IPUKfLbWCRKR0W(UsGLGh6ebs;7Nr)Wmf&O1OFCh4qMsA}ohao*
zyc2#W0#2Bn(445@L`|nL$fcdACRNppFT-S6C(1cd-U(|Ht&$U!ov1*+eG{!BVJOFZ
zP7|$)(|9;VRhse^oH+8;opNg|V^V54QQL_|PBeDHlEGZZiTX}7AlG$b?KV?Ar`)<(
zldOi)pXa7Gt<7ngYR{W!ccz+}IMLJzmlJL$nmN&2#^ic@=9{K`DND6*Lcr!kOF{zG
zLbXz#mNiR&ovc$GR44V%z9z}_Nd2SDKB|D%37Lg9Ma*rJXg>`z1)T^v@v{@ZI1zRt
z;zZG=T3cBy(4tPnoM=V<rH4tJ)=uM>EppdQ;WqTQbuj<PBJG^`Nd}>*CdK8|UIw4g
z!HJGebeBPBs`YBBb#kJM69V$;Opt%rc6H)c@^92`)Zd$G1+$pr9>n)>qGw`pY9A+h
z6Qsg^H_f7bWm3kO1O_-UQ1(WyisMa<-DZ#zgPj=S#84+DIWgIZ2TiqMGS0zLqn#Me
z<Ou3WIh=H*BzF{(`F-XwGULrOd5v{qoD*5d<7rNCVj`hmC$j|nE@ze#^PKq8iK(*o
znrVMHF`Y|gnw&e`jDMcUYiNJtgq`8UOebbBSH9<(O_)QSOKsZBSW)ttFJ};)1=Oya
zjN*&P0*hrrn`u&HsdAPPmOHURIgvf_tDRUQGtMzt>%=-I&XZ+u);n>~i9=3oaAG4(
z*(?6%#3m=&G}AUavEPXUPHb^vs}sL9(<U{O`+jKKoY?Nf4#w<sVh>@L>?F;!-Q>dz
zlgPbJ?4u*^^^%m&^P=~dE3F@P;+*Qq5hsp1ag531)U(tRPMjp1qMoKo*)xRqe;B(&
zem*nzOEc|)oMKK~WLEm-#_Y@ABbL<0tvvpA;xhd!60<R0Uh-eK>rUKo!s~+1g_};?
zk`2U#QZC$f;*M;CE@W`wt`qlIFtrQ!2@jljC<~tTKXT$9nsDK<6HlCY%cQjUl<<oB
z%!z-M|D5oj6EBqWQqCII_L|Nc<)^ETcjWg@d~p8%|CD}o;uHPP)GsPN&V>-``Gz0D
zr4LC6NnJ=rNKQ>bO-YrQR4yzZZ0yo$Tu4hZoeMKEf8CSi*V^Bz$nRXp=t3qYGrREY
zcAV>~G5%TTWObqQE2Ez8UC2f!J2k%xIb7(`T+7L%1pGkA<w9;k9%^2do6jW|)Ejdr
zuL3R<bfJ(7g_&Da#T1c0G}LF*VlEV?UxHdv#iaTi7w>}Eg*q<ObwQ(FsiwKQ3#DBs
z<3d>%%DJ$rxmJx?iMOdN??MGtLq!)Vkt<WHP^+rk3ua8bYd+RotKmXT7akTe*K(n@
z6sc(ze%M@--$)48bD_QqO<1ad3k_XpOhyai7#q3df@rO33(Y;tWT(@Vxy@W?PG~{3
zQCm_IT(A(NxRoF`VX!MlcfmoPC!YmeaFN|qkBWJH((HF3;6i^F2DlKEW#d90=7wE(
z^ENK#LMs;{bfT)%cgM}GU1%e-OsB0xX2y@?_ARtnD&uh4x$qO6d%eu<UHF;&3$+8a
zBUK_hx#Tw2#^M>-LhIr}SLOfe!f!5gbD_I(dbn_}@YmJYlV&d$daK+s`O#N#KRJq<
z#wWvpE(~&ECjF5$&4XQ-EQ`v8Auh;`_lMFSMjh_Lh{P}##t}wQM^nd8rNXhY4vT*6
z!+4q#s1se7q+$lVkDKDcR2QbxnMVDCDt|agCGu`A4~-I-LG%0q!<<E)?ZO-v*6}|7
zb6uE6Q*!?#%y%Ju0i*RrE-ZFoj0a;qSmMG`7dpDp$&F=l3d=%rBbOU1Tv+MCSr^X9
z+IC^J3)@`S?!p>YwZVmrF07Tdm|X9|uMdoF$ZG|c-~U|L!Yp}G@Fo{zW;aU>`8D~s
zmBegy$(75-MDK86C&P}qu#2#VDp|W-I6c`o%)NB>DSy8U2gnDhhp2~D?h(S;VR6S?
zIPNk&+&*AKCtPwtt9H_bQw%t*;?EHBwA9YKaKVM=F8oL5FIg?JQM+)_g-b5{P4h1G
zGW81eD)k!mx(hc5H>tN>xJ8gdDET_>4*6pWWBg^U=6G*<ASb)*_AWee;SqEHp;l{Y
zjEsx=)CIXQg1p3e=EA?S0k$-5l`y%bCU;AC;lfK7;@n1^uUPgq^?xiY<{KB@(s`HY
z%Z0#%57dv;Pt?!UFVxd5HMsE&t4-oY8aL9qk<^W3ZX|chT@dj(rTH0~NXeMgZloe4
ze&Z%jMKOBYQcLGXu>^zDyOF_-ZyA%(jZE&Z??IXANWk}QWFcpzey998nUPI#b~kb;
z&M94D&AHvk<A&W0-Hp6%<a48h8ztSy??wT)Jc!m9nVbBrY(X~;r_dTCXjyuj3eyiK
zXhqy8s_HC8DDFm2)@*X4lp8hOsO3hy8)i2uxKYs!jbX{NXghg3!O~2Yaic7u990@E
z@5a2F#;jFx!=E43=ub<~D!Wld#Z)C+Okc|Rz*L=FgL>myTx~)<H|o1lM-F^|xh_>;
zBfHnYjRZF=3~T5{BSK?0nz+%FEKSQ@O`0ig?nVp6E!{ZJO6GMoTivj^k<OwCzf8~$
z-!WO*nH_F88T^wQE;rn6v}MxchS!al8?Bi1xsf;sepPe8jUYKh4J$w5MpUu<X1=u>
zyWYpkxzM_`xeZy8b^DoqWK27m6pOKJ8g?@Vu)P~UyYUONI=HcwJ6IzIbatbQ8^_%^
z;YL?Cer3#bH-2-Yn;YZZ*qayK-RR*)KR5czVZM#)$(Y`5xhg^H<;E3W{L)9pxsle_
z4fzkMyyT0s0d5Rr<QVE8xBSLl8{x)aCWlamQioBcpTngU_G%=9EjP@gWP)y(M^iUh
zw6SiCbK@_@Nc_JRZ34?qbYqenS9WbOlYdZur%rKWDq$K`O4X73t5}V}nc>DvX~>P)
zlI6xGH|8*AnH$U9m`k2V{gXQ1jRk~-ZY(0Sd|?c)ycWB$gw9eGAZBge)S}75_!Vxf
zq`%6I)o!dIC*Ja6EqNVvJ#_<Bif?qIF#EaLjV*2zgn5^oN>**d=J<eB+v>(P6}g?T
zL)H=@7yky|?ZzINJ{42^vC+?cZtQpC0L_EcLvAGAFjI05yK#i(QB~@goXhOPNjFZ(
zZs0*-4^F#r#*N$_<l#S@&$^M5a86DNH!jEo$wucvat|)LamkGrZoG8kZ&@2|JYmgO
z+_>t-ebve}H*S-!Q*S8$rW>~uANvx2NAX?4J?d~?F7bf;kow4te+Y6!kKLHU{vUoH
z_tcGN^#7$kr~aoR$8axt#pGM+Yd78y<l&D})jK!d%bMR4|G|woj{zT<{6v-HXTldZ
z8uT<tQeI%#H`F8^BqeOHYLb=0gOncQ`D@udNaaCl8Q7jCd2mk}j^wvgX*8_|>B#A+
z8I+&RiHsg(@*p#v@06d#gRF{oWx)63Y|8nace~BuL0<m!YgiHU4<6+5U_(C0W5tRT
zGUsJv0S|hAj?d>oe$Utc@5x0;(it%edW>KC2^8_5D1!%kP>fK@gLn^$dr*SOk{*~m
zsBzLHU!6-?c^#T-HhZ9X@S6wS7*pDVsvcDHpo|A)J?Q+scGjwuW0u61_n-o~BDE5=
zvdXPOcxu(EODi4(JqUSF(}P+bH20tdb8Ax@QtMFbdQgv0pDL|1@L=^CqkD~%)7XP1
z<fh7LCI{8&>ru4y!0v(0tOO4%1S{31;zyK*gY2a`sV=IUD$RL3@Siijn3k7Mn0`Rz
zE-8+%tQICaQ1@3x)PtA@t(a`5B3paVhTK*;Kgx2l8T*^Oe)6C_{hw9tFEXbpx1$H0
z=y#@ep>|b~zk1MEMRxa~hX*~G)y}5%BFwRAg9yE;eLUz(=tq^-`+G2eJdiqswMnU+
zHf@NC8S23>@^Iyh@L;6kQ67wzCEdgr{6rn+!SBo+@4*DZL=Pq<0w2~k*#miYq`c&J
z8d7SC2UAsT(+DS0nWuX&gFMrNc^>>pp5?)8!W`;cs(i;G-!Di#^W}5C2TMIz;K4#>
zE%IP7!Su=49};z$2g^OE;zd<2R(P<|gZmyl@L-iJGY_tLaNUD79;{`-v($AS?C@Zx
z2kYfb^xzJEi|80>-pJhld9aDFnYx9#mAZ{8O>g($ZdGH5cF{TM!6~WmOWbY`_R!hu
z!9K!%>JjPz4-OIzQKk4{!bO{QlyHoCT;-mS6D_sT%4s@Mf1t4W3|ao{75|)^#i@*q
z;=BhJ=>Mh4UL;(i{!P71z2d=DLanvNAiuC_H$1rM!7WZ=I=iuqZ_Cj!<_=XHxzhO_
zS=yC8JoMm^2XS7&i+?<L?7=G)`NV@~9{kJXQxD`{+44iFGMh}#J^0Uq7qUmOiI*NU
zuxs+gbbq@RwQIt!RSj=Ecq<FTuDw&vd%_3mN9rdJJ`=uB<?$TS$#1+!;zefpa@LEa
zUSn8Nc#+bJWL_lqBFB`k`^heLAQb~LQBzaXP}6#mj*y<3f%+{~D$MAWpIRAhy|8O?
z3yZ8?eCI_4FDiQRy%#^fiIa1ugcsSo=rzNfT^eP<oL=PhA|Lq&FLDubQ}a-z!U1oM
z3C+)B5ibf53aZ>fUKCcGR@aJ>i&2X!|9Dp8kV|@D@}d;YcxqWM%qm9nqBOaTa#of@
zIWNk4(T5$78cOI|C9m<|fXa+%q#MV3kJous^P;*JtG!s`MGY@%dSUaz?nNyxYI~93
zg~f|HEY+M^*Nb{y)F;dSFpKv#Z{S74#G0v%sZFR&snT3CFE;T}RxP~7twLHVKk;Uj
zRxfgIjz7}Km{9qBi>S_k1ztG3aC+hL!tKQ{FNS;J@xtpx2QNB$;q$`pMLPxus4;4g
z8lr}&5vtT2^&-p>5N_o~Yx-@dZB@*VUi4$kPhPZ_WuW|Dyhy|E`x5UD)`|WAYG*IH
z5V}&kQ-Ag1H$pe6w0P=9Tn{gLGTF<EzRK?{^F_|L$QXov%J1)$AKMu7C9i=r2YE4=
zFoZf(MM}*hycp@l3@>KV9OcCXFD801TE&bZjP+t1VZ8DWJc_#!he=FMrpj}ifA?aF
z7gJTtnf`Ip$bTqjy8Lh=o6)zoAI#_ZNYGi#noXVK#azNX75^t;z8C9wL<_x0HQanc
z*A{uP*egFZ(Uve^sfu6b#d7ir>PqFWl2yv51FV&*WL+tLy%!t3@)HYfgX|9utuJpR
z^*=gd%8zC@d$GlftzK;N;(!+iz1S|NQhLql&{Cf??eL;mdTpnwZI>6j74Pw4FL|GG
z_IpvyVI2D*I`SRvX)g|wk5G@Q$YX@#UYsDDRQ@SBYk0$!GhQ^|4Z6>IagMp?sq%3}
z>c8m4B{?zMpjI3FEt{1WW5XC1#uYEFdhslPe*?HCXSWx>`!L0a8(!R$4bz9LKHT!+
zwimCxc*6?scyZs02VUG|va>_G=f$Y$#?pF7M_`3Rdn9iGGBV}y*o*(@KcPOA<_P~%
zpUY`j#pt2DB=`kQ;g?>#B9G<xy!GN8lj(hUuVOxUkzu>B&Odtb$&1fke32dAhh#pZ
z!Z@FNy{<ij8BBgdO+uC2uJK5&_-IBWJ_VC0eMqJJ)IOvkr&UfmpL_{!%vS~<zV#ua
z@-q`M`5=!)kX#F|mHW<z?|rD}Lwz5z`H<a*;y#q{AqRtV`tSomeu|UJhc4V^i~5k;
zhde&yWmZ9IKB`ok--iO^#9(m>F<ID$A}U6<lwxH0l0pJXlFdG7KA6a*RAjsllgb*S
zSK5a%K2-G?e*{UgtPdMYeVvhV3@%Tt;6p`Kwi2PT4^@;Cdk|NRT%B5jT2tlLBGmSw
z4xz5{XTFJR;6p<n+WGL44~=|i?8El|Oimw~_|Vh`yAQe#nN@$9v0!s*3m;k%5~voc
zm1?8Pv7~8ae2?SJXiSQO=4XfI^1)5^_z?4<l@DGYe02OiL{-^<4?)EtLfD6ha;&^&
zzil$KmIb-X7`KTx;@dE{E%it0fBa*%y$?V8(A9@uefWibCm%Zd(1F}hmWNX->(oTM
z(6Km;4kzA|sw4R~AG-O_ow>t(7~w+?AA0)G%ZJ`HhxpKkFo@chDwXsj^!H(aat0FC
zHZ%`bj{K{0D0!H265p6cGC9GAQH0UdG1ReCsehag;}y^29V8~ox}r0g8kfyjOH+NA
z=EDR(Ci?M*57T9Z`;pI&89vPPA+;ZA{Fvp#Y#-zrkXt^?@nNnH8)PZ^FwciSeOTs`
zht`?rv(7HtO@{}W7N~X?`ml(+n7V|zROQOzS?<FMA66<S*GSVU#j6Qxd|0cTb%gcQ
z8PklD=zl&Ol+DD4O+IY)VT+2~P1x$gHo|u54(d*-l-=dSNY3CMI(w=6sQal0s1iA&
z2oC#jL<XS-ZuoH2hhxn8%ZKBHGt?8*lT;~n%7@d6D}6LRE1qTYoDb&-7gVn7au<EL
z<ip>}x#q)VHg|>2Rpl=)fa{7EvGX^XTpKXomJQH{yRujKkkW6=?0sfE_2C)efe#N=
z*++zbe0WTFqWq2g@bj+^Nm#>kAO2(33m@JRUQ%CCUsI)_Hw1aE^gB7@eE8tQM>_E1
z6XA=B{OmJ+NFzn$6~`v_@+iI`FMS-B)Q@C-Bxf=ORU+H4S81yu6`kPc`0`23Y5hp&
z$M=3@^CLZd`3dy5eq<mgzTryQjDBQN^<?%V3puNDzVjpT0bvrE-H&fvT24Q5F!zR2
zvqz0h_y<37(aBBCL%o{U*a!0aQNWL~ew6d0pdWL_no9c7z@-&pOkrvfzkD666(viN
zVua#;lu*v?Ht{CEe7|W_SjunwwmjYsv&z-{C`~Ry?ZL3}epK)y<VV<#iu5b_QJFC9
zqN$1>RsBft!$PN;AJzS+;Wr+sw)R!LZG&l&ORMQeE#}si4*SuNT*r^PgnHEaROwaX
zjcXeD(Tq-GY7=Tx6(e^_X|A}1A1xKvyBTNo!^ULZ6UKPj$sVdsb@<^VNUqBdx8iR9
z#Cgd+s-GI52B{LCr#K>h`F>E_oX<SYkEkCpKU(?G+K(ZAxf7{zBDC?Nt4y>XZT<Ms
zk9MkT2S0uyx2OKB{9j}o#&Ua+yFmESN%@`q=t6Fl-I%Q3$i4mO<3~3Y)7_6A<etju
zC0)v4#P_AsU-|tA($D}u2Kq5b`2#bX2P@8$48s(U@ng8+5q^v$kD`uN{;el*W63AE
zPGn5R`{j#2t>z`uBtIrgR|Du9!0&!c@ngFmJN&3W%{0}IKmC~R$255h@FTU`=<Re_
z(r!)e7B$0<nX3L-e#|D%q0XhwQ@IyE#x3w;A(LDESVUOoNAbbt#VTfrA4|#0{8;YC
z3i4{|O6n@Abl_$RtRb&ej$ALiK9NtEH~6tJkyY*{KQ=4g;>UAt8msGL8_gQ;%sc(q
z<wuzS$_B98k3D`o^y3k8_xiEVkNxCYZtZ{{2g%o|hx|BCIPAv}KaP^6ho=a~{5VcH
zq5PA6_&J8B>71dSRk`Q<82zJhB3$s}FF!6S|8GAok>%0}`9k3``3m(a^%_+Q_I7JG
z{J81IE#=(t<F?{21#wsLJ;HrI9w?`FUi{<7V?VwPAY%Ye{CFz+UI0k~#+mZWk5_)Y
zX7In%=hXlFctLncmB^xx<K8I#NO<eVJHmVF2bC)=O8h4#Kl|~85Xa`k2jSvC<8(_J
zKx*YDBP0(X1tBFhmCBXYB|c5S_zNX1&2-fC0c21ytDnYY3gEvtrtAUapqV*<EGjo^
z0N;_nr)E=rw=Bp>&L2Pl!VlD3)Z78&A>^e>AMypzk+UgWFo06@3k6V^P$YojDzaz*
z#T1t=gc9VE$}t7xi#FrDi>G5&z7{}f#j~=bTma<*Xc$1F04fCJ>n)?mMYmRwF_oy5
z1E@l%8bHkeYLTl2P@PbNDy1?cH|C{w0QHnpCxE(&wY;cLZlIjBh0r*FCIPewpltws
zPMDeoU<<&`fM(R@0kj~rq$W_M6-xkC#V_5OP7YHY0XPXRsxJUH!9(>@r3RT7QGWmd
zIzi=!2>TWpA1WdNM460HTTxq6CAWMnqlO;?D00}`F@SdTf1<Xh{!IOaDv=!mNL;#|
z0_YrooL1%Yq6>4o2JkE4H)>C6w*a~mq-+m@jeqF%3ZS?0W#0P*&_96D0gMS?Kmgx*
zG?Pag6u>~nY{_ACa&Q1c0vJl?*!-{WM8lXIP8~rV8NevQy{*RKj}2fPlRE+!AHW3i
z`T!;dFe!iq0W1t)S}yZs`ZMKSfG~wB#ivTH;y(hIPM$%n?=hB{yk;>uJAgTaxm5Az
z1@Nch`7)t=3XJ%R0$8Q|#e^jREF~<XE~l=bO8m+I^6fVEMtQBKxh8<MDtBE#zQ8hi
z($}MHpt(_0<!%aKv*IlQY$b0~&h~&@`(u>d8Ne>t{{z?)z|jDXF<`St+Z(|3V@A{a
z=<KH+pdO?i3g9q7VvYnbi+8O#PUk`Ze-Taua58{X<kOXKnsA1CmMUe>5zYs2hW)u1
zz@-501#qAK-vQiEk(UFwqWG%(7fA7SX+4K=EH~-gqTW`ycL;Z>$F>+p^nm=7`Y?b;
zgny`ysS@)<{?VjnIki`NE<2|z!Vrdr@FIYh0n80zUJ$PWcrEKZh#o<_3E*u2ErUo1
z;#~mm14tJ{`k=9ZKLqe8fX@MZRP`72YF`3~V{S4ks2kI2-w={erEJn58u8h|$?2pB
zB4rS%RBl>AYHAv4{^e#{PNUHbL3|rTxgg31kuiu&K@?{|<{+{JQR<56haj@jk*_cs
zc#Q%4E{N~xWTR%Mil2j!Gl)EUjRDLRL~c5Hf+(nB@)Gg|k)KdN`LFV$5V<h52(_rn
zEk+1>wGzrH8H7o?$7DRUY!GIGMlDU1Zj=dP0K47ZVf3m(5EX-{6-4bIDlz8G`S=|S
zsLW&)YE^1AYV{y$5Ttlb!hElGRi=ie>I6}jX1yTl6B<yP2GNkvh}xJcH8cszzs`(d
zlvlGLn$vHgayRBOCdI;J=OC;>*n+SJp$GAcig6GkRA&$_f}83I!W)E-EcFBleriAt
zT(ujb6Q(Ab(I8?>whE$k5N*g(!%so9CI6_Lc0pKFJ?&}!EPbQXK~}ZH+>zReD#_tK
ztxFI|c}{g@{I5a$M(C#MTz0{jnx0IK2%=XIy@Tk(WZxkA1+h@I*q`PtCI^rQQU?Vw
zm@tGolqz)&BMhhRW2uorj0$3O5MyXg4PsglV^#dPAjStVA&7~}nI!8ZlQAjsnjFOM
z%AXR%O-`14UwNr0{-8gdI)gfsI*U4+I)^It4Eh0o1~ET~i$PopVu2iB5Zi;;5yT={
z#($bNGIDVcOM+OcO06X<qb?6(1z{z16?HXr4OLpn^C@m!5bK%TAVc~&e&;yjC_c+L
zsF+QJ&D1SHY$a@?PE=1S*%`!<Adb@9Mcp059)i@iH;8@Y{nP{0gVaM*i8(B5-fyh=
zV|0!OaUzHe{Ah8K&Z!_y2QluPu?))kwKG9npx?r;oee_tToC68!W~)FUoww`zk|3O
z#G@eo38KO0xGO<i58_4;S5@oR2zA%T-wfhb5ch+45X9{u?#Ooc$z&O8zRQ5MHH}%m
z7sL$SGCD&stS@Fb51AX+!sy%MAfCwH6+(d!CbTm@4dR;+l7#S#G5-efJc$2-c){d{
zAYKxr;48u+cK9{<O%QJh?^Mit!q5GUhCT-IiOJ8@FVwiu*L8>x^0YU?k}4-_2+2ZN
z(axMagcKp9q@S6ZDumP_qzU1WUz1mc5Ym#<DJOkM{`N7lzEw`f5HgYFC+p&8QLV`T
zQNIh}`w+5)kUfNa^mC}(oP_GR%|9q7R|vVud6bhkgqA$Odku|aDHuYb5L$>CLg5gK
zgis@dnjsVop;$;hgd1z7ILm4wlqQr2p(MdXEk%{E_z=wG6f7l9873=*P?k`RTAo^g
zDlrv9#*gy_D$}V#txBz?Vyeq@v(8#{8d7Vk+&YB1)OytVAv93A_wUCwQrtL%Cgi5n
zX4K{?H<%p0fR+$~Ed+ZAvJ5OC!?AM21oRLbA+!piHH$by@DN;7H}(JStK*fjA^1ZG
z&<|7PFoT2;Rpuf>h^pKep<6&}6GB^Z_Yi&zp<M`_L+H}Z{F93Onb1BYACisH`-RC4
z)Q&2qlbj=OjL+Czl+!hYU&+5Ir&|c=#u%GYj}Us&>=i<PLT_pxYG0~^^$TH>n%@B-
z45U9u<qnoLxx+XwhJ`RZgrs343u8nGBSUx@!mAKQg)lmVze2be!WfqNGlcmej16I&
z#B7QmAHpB>Cxmc%vFY~1xQTL%s{YA@-$R%}n5z6~QXzXaoz4v9&m_zWVK!k7b*{>t
zCtYGG`NCyE2)jbq9l}E9E(&2WVMz$9Rs2%IvJjRlXGI7r6|a(WHfYSnnh@58ur7r4
zA#78*8$#Hucw-_^H_3_C(HOBUOm0;%dH5W|?IG--vs3vU%3u%q6m>6kUkLj{IG|#V
zhH#L4h<ccMMCESCfn((3)DzT`DtBiYV_P^K!kG}xhER=ntv{!7&l4_CtzC^}b18&7
zvVDc{cL<k5xWcTQ{POXtDs?S{>xyrLa8vOu!tD@Z{Hf=?5aNT{Ls{@$%>wtCd_Zj+
z)E<TK5970aj%yXv9+RJh@Kn|IEQEi_&#C_@{{`Xhbn|P%yAa+J-ca9Cf1GF>%Lnr3
z5Iz#b`9%0*hWQIYF7b{F8{-4&H`F9yEFWpiVDd0hgwZ;THesX;BUKoIFoI#E4kJw%
zCBi5fM%pmag^?+Y%q)9lu4!IsEqxdn!jPxud>cl8E}@LfO_oi|LdY9NzA&<qzoUL1
zMz%1rlcnjLVdPLOZ>i$^5JoOKxs{)XO-NSLF6R7U6p$W1jF-p0izBasVH9FyVHID5
zP&ABU$|)YkT>cN)6h^5qy!7M4Fo)3~jD}%oVdUL!t{g_M(&o}(lwm+wYO=?1<p|}e
z6{r=d(t4#Z<SF(7Rl=xBvl_K_7}ZrwjWBAGYbi%YsgB~hVbmknSI&eAXcWfeqUIOx
zjM-@%MiXW=rRvmXVKfh;1-T{FN=*pELXd)8@0e_g?O}90`t_S2M;K1!yTWiQ_JlE$
zljsY>AI65D7T?1>BfI(RgZNMwVTQE|BSMI&Qc;5Zxp#qO$4oKpuWD`^#*bl)Vph8_
zej*GAqkR}ZlZ%J6U!+d6){RN&Z3pS0;!a_7R@{ZqmHI37x3GLz`a1jF!{`x4PnkGo
zr44Dl74!+CZy5cU>`#?e^6;bSn>%p>l{1JiIE*1-3=LzL@<)U*T(SJPYb1FyuOO3p
zMl(4^W|mi<jSpi&7<;4G7sbRdCWY~91iwWvIgH=s<cc6=1XIG88pf?KZig`~j6cFS
z8^*aXriU>jj1yrz3u!aMm=(r0R$k18*<t({#{4kmgt0QCHa85p0=Gd(n<wiwq#0M^
z%ENzUNJHBCFcwNK3ofRv3}XplDRmijIaNxn2tyAUW4KB=tHW4BUaOpSVXQc1G_irs
zM&<u6j7{Xt)Gf;28pcG{xjl>>Qd>yd8O8yXyNj?pj6H<C)P2<bRB0$B|13Hf#vwX~
zsYj?sRm?HM@i30Ft&?G#qH{WoqG9cfu}vArC0vhiK8#CY{2j)HF#ZZ7{;hGg%IhLa
zX$6g4@iJNd%OrdyjH^suql$Aqj2q;e)OiPtv+_<Dcf)uR#?vtFg>hdtPu|+=0b{z=
zz~e9;k{^Zf58<D30PoCsB`1z|HHE_3voH`b8vR$6w6TW2uIm57cwwvxBl$9nS7E$n
z4R5F)!+1-0M}1F~$PdQK`C7xLFh0}&qH^ORxXj#d*kTfDQfjh@RH!AV3S^IHsUk=n
zLB0s`N026hv<%A<LAnUiN05oh3=ve0Xnz#`+TynnWQ?HIO|vbcz3*-eQRWCbMvUC7
z5quZH_Yovs@sW+iM@FO}ERAS6A~?XXoDuxMtXxznn46G?nwL5*CkjMRFoHG_w2h!p
z1cf805JANVibPP9G3BYnBKTvqxtuf_L5T=TMqr{}np%o#rp8m{s|}6Ng#QyR6T$6>
zR+f(R<U(F!ntJhp5y5PzMBf>K%NPVyVX|rjbt9-3K{Y0;Q)^IbQl*Ak5!6;(CxRqV
zV|?mI(14~bf`)|V)J7_@F`-EWO_kG(kcY)vkXuHOK(MG7YXp@TV5g%i-w{F2m&OFS
z>9nSLBJdJ?5%>vNOBjbNuRsJrI-v-{5k$x_YLqH5@(ocd#Rtn91-C6W{}@5L2!5vj
z6SXV*Bf0IF)T7$usP+rF1GQrWod}(&U8r3nke^krW!Y{KbeC$Q_$i7Wav%}RjbL5`
zy&~ux!6e4_iJ&iGEVW+*0|?S?e?sewr3OZDJgP0bY8n*5V3j*0f}!ML5e$!Dgz`s6
zFp@k<IZxP`F*0AgqH0_O<0Hs?FHZiyDy>Y2U}D60Ncvx^;zi|w)RQClUETs%yxghy
z4i`*Q$<t(&5~fpUP^E^Mgjv+t)H!nY#f-}Tj9`8Q=BV6&0}CQp7{TWVzC^Gng2fS>
zi{N|&ON=uMTO!yR!LkUJN6;vyZD2hsB3LhH1glyZ!77@oscWcfsnXE82of**UHrh5
z7{4(wD}qgg%_=g<I^%6(TLgzAXnEPZJ%Sw(>{Pk?2)iQKP1r--t8$m{gZh4B6EK#|
zLFyrud+C+&&Et^>j?y_sJs!b{2u`Y)(-E9fyet{cC_XEtY8mVNLIi(Ba77OGRov{A
z=C}><7bCb7fk3O6_BTQJvYfo{johmdT#Mj(1UDjh62a35ZnDn%)LU{OSK@E0R_;V_
zSMfc<(}VF32oI@`sQ*x<Gmj$}$iaUW!M_o_j^IrM&zbw5ijg(*g8cIT92wHt#!$%X
zZ3OS=KjYwt^FD$PbUv#1PZ2!e&p#wLE{Ysc<ctDQd=r&D#~9~~QDllDX%xwrOddrV
zf@Gy2q>LgJA+_=yKNtnmGMO%l^n?s5_gjM8@bGO?^U(*U%*xL~$Qs3W%K1KuY~<|9
zDSyUTKR+;8G>TkN<R<5dA|D~IihTbxF2CXego05NQcht)kth~&go{N{_@t@0$}K@C
zNi{`LiV&}IWwn=%qD&OlC~Q%bjiOu>^`mGIMfoTyFsynMpEDUhr>_{5t<@Nf%28B{
zVt-7l!emwIf(k~~f&FIjYebDZH`a_IGT&T_xwWYhP$!DI<a)|!`7G{UOl!zwlPDSy
z8dFz3GFEa^71=C`=HwR2X&FTV*`l25xnWlvib9XV5rvbED~i0Wv?Q&x=c7#SC_GVk
zRb+tRqxz$$(MsDk)Mz>=yA6*k%&bThC)lMZld&jT5hSv86m7_DmGdLP(MoF{#m_Q3
zO#Tu@hbX2-F)fOYQFMx8NEAb(*qh$mnE`#H=n_TOD1KG-^d$TiMK?ls<@bo9b1P$S
z>_zBJzmLk5yQ%k!qJI<v=uBm#1P^3#5Or`A5+<g+hD9-k=I|&+M6r(XBc+G6%%iCL
z3u>cfJr6U9Gd7BY^W(=cUhdgGK8gwCiPTBd$yBNN_b8^2uWvCLlGh(m%!p!U6w~Ri
z<=5_~TWPbRm>0#LQOu5FP84&c+8X8-$KoH<FwZ>}FZ_tT>i9lxz6@hc^MWXnx7G@_
z))ujz#ndI#rBN&+ERSLfVFh(%6sriUsT-(kqF75<N0lC~mo?DZ7~74B4t0~t-7Moa
z+BlG{%GnmhcJhuWcFOt7=OON*vs=aNk@dzp_eXIcinFb7t`!bOaVU!CG5i<9;V6zo
zQ9Fh@F&vHJSQH<k_!yP9Y-5gYMR8k}Ulb>!7@V=xsVFW)@mCbxTWhDIIHOuQOE?$B
zdF4!Lt*vdXU5w%qoteGOl9USnj^Z+%D^Xk}T%*d}(XSJ3P$lwa6sK6^P83gDYY(G%
z#H_nf+#}pqkq@Fs*~X~6d>Q-`#Y_5+sZUhQ(<q*i|5eU&8BfJ82qhPqUlCqM@rLj=
ziuWq!9U(^<G$wqK4NCT_7%If@MK+MET9O!&#*9IWivclw6Z`sX&4O*TdTq31F(i*6
zOAJ|KNWn0F8|~~W<9tsUL#h~3$K>f$NE5@i%oRUvOg@Jg6{c5Ch8X&uG>T-TlZl#H
z<(}e&QQyUoJBB<ld`~|cHM@$*5kpS$56a0ELpP3|RGT*@A6HN^hKcFS`C`Z)Lji^r
zjG?HCFBC&z#YJLR$3rMar?~Q`<}tc$ieY><vzcb87~)m##5S5nE=?^%Evs_N#jt_>
zsYs_5wGy?mYOYEQRq0ftR;SjWO1m`)ou0?Z4Iv+HG1p~sPz-|!^<t<WLxUI^#^j?K
zI>*o@hQ={8i6Pe46pNv049#M2s@j^zU?sPpwp4yX3>L*{`JY%@40h${F*p<-yb|Y%
z!Of(H8jQh9@KOC#>3JZAb3FDCoiH_`a-%Wa;hmjY#n3v2HuQg1xou<kQE|H%ep1{%
zhV?g%H~n9f(;<eAiaQCvHa_iimC4Fns#grXne{96H(48m?$jRCp46lKFxiLvs*P6b
ziK#ESAGJSq0CgZ$nvh?#4vArC3^QVw8N)E;PmN)C47D$rN5n8PhEen<sNB(nG1Rd!
zj3bO!xsCYy^NBG`qBEKLJ9UbRY5p;8S`2^0kh!fE-&SkfR-4YOwr#apG0cu(R}8yj
zm=nX?7?#AaG=_OG{29Z7n0&m!{#2!wY&Xr1q2+9I{-oNFwp!v<5{o3JttPL<1aC3p
z#9S7`T3MwrY;UVAXDchHD`QwiSWR6+mH0v58)wRTCbv*GP&Xz9#IT95IWZ}B3gz)`
zWpbOeqWm2(>{MLrX55|__Qr4}hO05`qkk!ezi-ONBpit0Af4keoFE*McLBl?>QSon
z>i-dS7En?g@7Laoy9Rd%&al(CyK8XwFz!BsySoMn?gWP)kPzJ6-6dFX4fef#q5j`F
zbDs0mt+%VIWqNmKXL^qH#=4dIPn?q~IoBJf=%>juDnHv>zkR(_%Hur43%zks^<L_Y
zOV%H~R~TOHjW;T}(Hjp`<;~vuoo#OQ#%-0{>5aSedn&o#8*&J~uj?O%56MU5WAaIF
zJnfBt>CbxOd2hU+7q6`!qqH`ygiRmewM?To@|lp|gtshs*BkFC{a(a>=#7tZ1vVj#
z3I8$t+#6qd;}iYpC;d6~RWAO$k<6qYM0t<F;cteD^9*q&zy$ehaso0TnTV7yu?b0(
zC#4*G8lRjaq##q8^uKyi(Ph}Isgc%%hBhsa3CnC+Iup{HkimqEENGq*KberpgunQ0
z@^T~V%qHYCK|~%|C|SvDCS+H64ihXkO$u_UBsXQKP0P!*$coa;H54%6XA^pv@T&<0
zO(<kSTduUQ2}LONO(<$YF%znqP|bwm@~eeSD`}GZtD}SoTlwpX!Gw*?^!;PxBIQVp
zl&}<~v<YP>WmPWUg<4*D1xiJ-k_nYnUd4nvJdV{(NSoBSb&Y;-Yp}Pbs;Ol{ZF(KD
zuFC6CRvwIRAp4fyc8{SEr7_vWgr<~cWJ?p8Q+^>^kg~dVRrO74#b#@=jR|G*>0vt)
z<nL3F_9k>t^&L&<q`WhwiwRxjG%%q%n>|!-UH-}0(}Zu_#@;5FOqgiGBooYX_)O?$
zLVpviCfK-0UlZ&mI85jxtFUWMh8`2VCb;NsGHt0J&mEr$1?*aoq2Gi6MG~2?JVGXf
znMBAaDS6C<nyMy1>1mB0V8TEX2AeQM#!<b4O!DpvE%5{6P_^tB6Nb@;lOt3<(u7g;
z(JF~EV65_Sl=0*Q^3ZeRWD};Cu-=3XCQLP9nh9&!HQj_6l*J~@q{y6qH{mzsvnaDo
zm_wPX^7@7JLpG1i`Q!o<7E%_G(i@i>OH5cQPY@<6$mQfW^=ZMCY_2k4HAR;C!-O^T
z*fst9l*c-GuGKa!d2QIJYW|{ZA~&0`<$F$UCAX2=zvuENfczStQy*=I34fcg(}Z2@
zIw+S86ZX*elY8Z$@O|m~)UvC2fDV}OhTocW$b`e}I%2{}RddvYWAx)HIbp&PE_jN`
zY4VKfmA!Y~gbQ*hFr&B`7frZiLLxH~n{nBMD<-@&;gtzjO}J*lW4V|(wCg6^FySFb
zc&g5sn<m^+W8Ri$H~lVoPv!SbctHP0CCMGyBNI-YHB@S(AH*ljYdN&1Cj6^vo|*8R
z{(?M_TCaR9JAuuFX1rCEFza3K*nDro2bF)6p90E1nef?!FD86t630bksc$B9cKmn-
z4dpxe6POWUQf`_-{)3#vjHG5{XMHlYRBAJl(^HuB8+W9nr!wn5L1fG+4lRutY0a4V
zuOS_~vXSY@3}$4c{6uCVGm}|J86m3~9n$Kv8gt$d{nwDgtiLxqCwp^|xy{I9MqV@W
znNf&Ie)4Bh7A#=Kq}M-Q6D!DYWo;Cu6d{X}-`_e_!VH6KwORg1L`gH^&8THYZ8MB!
zxot6Ou(FgHrOl|b$#9%Irwqf&WLY!HQOcW9!HkM@nL{Nr*0XpGk8%~2SEW=l%iqrW
zfs@BN7Sv=@7O!JQT{F7M{xqYW8TFaBGNXYR4b5m~MsqV7nbFv+zj@~47Q;h_2B((W
zsWmY}*pw{i)a2^`ev!l1O>1e^Z=2l0jQfk@MdX!C`QUSFGuoK3F1N9*8NtzpE@rgj
zirSMM$c|(uQs&uNR?2&)tosx%i%8Pl3^#jwn9<XWUS|AiM#!l-&FHO`a+qPFn^j^l
z!%DZQ#BRpX`}%<LXyepoI5n3UFZ#sKnq%;ov8B6yUU^yUBmHDRW=;u_VNxnDl|jsm
zK4$!9#wXc!Gy0ja#*DRQ^fzOG8MDopW5z%;262(e<X|(#P==60$zf&;r;Lz2uf8vJ
zB$H9(Xfr1B%MoO~W0{O2$CDGtiR2{mLpe;LOeJNhX=Y3}<NN&;XE2;e{zlG{v&gAG
z7v`GrJClSiZJrs&7|y3WbZQICSjgT*<O*`J8A~X#_);^LDPJxpwtAImr5UT3uO|Oc
zHIYJCC##mFT-qBmHkh%|j2&kD&4NwjW-_l!pWc@53zA#OZDwqz{Q130{tIA66&CL_
zW0x6M&A4X9ZZr0nagsHA$-}CCA7#H82Pg+sen`$$j&p>`QSumhT-BT~!^fIaW}Iet
zMy~Uev#REt8RwN>Fk{mc{WQD8<T80h^-d^->t@_A%L_X{p0hV8_sLsk+@{<i?~*dq
zJu}904iC)u$Bc)}pQzqPW;|9duX;VD|Em&t^-M;1&gKg<UaI_+8LyQmE{Q!Z?XB!U
zm-fz#_mmIhM^f_ZF72}!U${tN3%<(X-e5><K@tnTsd3^g`nq620*ZJ-N+MFeq%SEY
zn+5W_Q!)#ZTabcDN()j^KDe~h7PRi8@4$>q(pZp|l8#JIN^b@WYV*B$Z*LlZvLKVn
zGh2{Fc~%Ruy7iMPy9H(4S`G_xT98Zi=C>d>Jr9|e%%^(g?#i-Y0XBcOprFbNSzxZN
zcNMXqs73#Gb1@5wv$us?i+qVMVS#*yl)-|M4C5^*BWt(7$fib?B1@Ap)b~$9m9wC-
zO3G6zkQFVcMDcK2q`ry;Rhd*HC8=(~z1I3pt0lX|f+a32b)k+0buGAW#{)a+Sy11C
zp;ipDqJaesE%@1rf>t!Lps@vh3j!82v7o61HVf<)G_#;N2k&LUFO+T;bhn^|1ubO*
z-P&rm)=I6tHKmOOZ7J<6Xm3FW)!W&Ej><b(^sjG|d3Ld&E5o`;P%nwTKjjhl9Css+
zv4;i1o)*Z*s6~EdS#Q!rnn|g*SYV~MTc~gQA?_cC1x^cG%sm!(EpXGHve&1UP3qB4
z3<-l4ge(|m!FUT+ua6J2V7NtI8${HCm<9bR8iz6LV?kdw`;kM*{uT`Q9#%9Cv|tc@
zuu6tlFy(<!MyRt<XF;xXgasols74>fk>!7gqb(RiA4|&I<eh{QWLH~o(Sl1BOk%!D
zCTYQB8P<ZSOy-i)ESPS=47KbW%1rV%3uaMftKNOdFpR&q|8BuN3+6Lls(Ke#u#mop
zT&(gX7PRA>m#JjA1uK-Vq~uAgAId*0*kHj%3)aYvO`#u}wHB;n!FqBp->)wDCJX+u
zU<bp^<Q5@Cdbe7zjlNwae^P2MG5$^2XTg38cB<Z8l-=YW3-+qK{+GA|796zTj7kn!
zaGZWvB}Xhcs{9zm<Izq~PLiio?`b(w+z)3}a?XPD^b0D<_$*HDKz>=yWD9P}U4Sge
z95h~4z1J+bPM4QECS)+)vf#D_pDg&y@QwwKEqJ1z|N73nM<S*1KIMT0|4<&1Qt-%v
zwVcmWCU4}r+QIm*1$kB(o>}mmVGI5e`-1+Gd}YCFii~jMit#O%dPlw|Kad|u8Sp<j
zEBr>0FLLpxr?cwQ`z8feq@c%H0gB`atVn1@A}bOzNviTBRvhMRr6!pbcj@16DVCBo
zsmRo18Zs>@^`%=Oy%ia(@_HtIVwlH@OsY4#6`AQ-$gC>QX2sbC`bj8{99HCHo=f%S
zrhM^ec~z3niv08f<h`=`W)`xduoVsEf@wt&E3$aC;#QPkK~b`p6-KXqNikSa(u#Uk
z)VCs@UA0N06&fYMd1EOnN?TEe&8nm<Se8=Git>~SR#c=^vZ4y5GTDS{k@_aD;;Jzb
zuWm&RdQFwovZC<~{V$g~OzM&*wQK`vzSH+f?jriuHMXLO6(%dpRy4JunH2-QT5l_w
ztI@hz@rxBL*lcM<CrT?TT2tgLXKg5L$#!IWQU>o}MMvev&H73^v)P4|oApW3&5G`9
z_8@zby-4Z()rw7gr@<o5-(rQ;im(+CD{NNSt?;taK|0k^`xeFT_G&IG+)O+wpK{aS
zv%=42z=|(wp9GnNthmJ_%4Suc*58U4y${)!>_=wv=|_A3U1XpYgXn|FAu9j<dfad;
zMp*IHCNFAXq!pvAsANNB8%A3(#)=#^<g{U|72~Y(iZL!*G2V&^R;;yRofQ+Um}JFD
zD^^)C*@`K0bbQ)epEi}_&$eO?WttV!DKp5Kq|E9!$}B6otkGYTn`_1IOqP)I$VFDn
zr%1s9D;6rhmH~_DJ-MYz>C4FF<O))jDtRw%|6aptS+=1jug(5pg*4ZYBHMl1dMh?q
z(Q2OIq!k<GfO5gVthnaWKKiuHYMd=1^sVGJayuz&`O^v+N@Rx>e_OHBie2nFLhdFH
zkbA7yOW8-tBKxg4!|y9U$m9@tSoLoBM}M*$wc;3)<0?Nv>6{X$D5uFY<XKXdI%mas
z`URC-w4yja&UVF$t5&?V;+<@%71w1C`1SeA<AxOvSbvkeMc!5;+@ajH;+{(GTalg1
z{$s^MhL6bS<YOzIP@a-9{=Zf{qX!P_$Nh!MUs~}>`D@A>E6Q@@_f~wcBC8GAZ1`x!
ze{w~&;aN%TlNFz>NMl1<8@|YCY(;V#FaBIS5nWahX9MU7RFcq!hy3q+VwEJJB())#
zN&;MU3L8?YB$W-RmEWnSuP7axnaK2H1{*R`ej=r&VpELfjlyKYSvc(}er>H^%gzF8
z%qZvK`GJO9HsrR!XoF_M;@fd~Y{+Lre%9o*VKV=_Q9zApp!{q@L6sD;p|A}_Y$&Rd
zfBjl9dU2JMu;GL{$|V`b+wlEoTqzr*zO)Txn5PP8Whv!k^V=GwOE#pu4GY^ED=@D}
zN?0PGRk5L}4M7`1HdM2rx(#h?Xlp|a*3`G5fekh3waD6J9kMQ2kCf4x1hj_qW;QgZ
zG$I?@&_vZVwZRh5=aYPwe$oDgc?;FslG4hC)|5f4l(Kd<^s?bs8`|5@!G?}DyxOCm
z?cHqX#LCWUgf2F8rO)HC-RV8Zp5*RZ`ctwuUBqvLiEfsO*<hu+NgHV=9i)?#rCc`b
zRde&$<jx-Ov1|Am<2~j9RVmX5+Yphn;;P{<8=^MEY?x-lbQbinVVDiW>3wbJXG4D*
z2C#YOu0GF!^g-lcatJA1LuE_X>CeFtDj6?71(c7Hp91tTDj92&`^o61y*wuIkE01}
zPPAbXWimNM)l8KiE4;1Z3>#+JaBM^TCL4ZJy~}KvMW1cM9Liid!Bp?>Hq4{XSIGh!
z5(M?*zDOmDZCIjwDMj91xSX=WhLtv~qOY}K9c8r*e^AztGE{|l{O_y2m)0}cKyFmM
zP5B?6%{FZLo~V4Q4cnA&x8YCavOjm&@V5;+ZP;bQV;i2>u-k?`He9pex*TyE_StZX
z_4~=A<N@*^d5Anr%EXRPas;(wl;h+H@+2uWi9f}iw&9EoXH{~^hI91uD!E|8MS2<T
zLs{yw4Of_4RW(v@gMOd9sq$Mk+@{|l@2dQs4f363GSmYb{$co#d}Kq3L;86YtgW9d
zPvzRe{GD9=C~wH;q!hfMyp*RT<+aK$@)Ij>+3d4HAMm{mA5`y0%75f18$PT2iw!Nf
zjd6Csj#_rqwj+TZ3GFCiM^QTx*^$_epY8hGl91W#$ZkhcdNMnb+mV8vft0e8cBHZ+
zHJf(+iJFF<){b<lCcPbR`61|xD*4HdMX%yA*^!w^7L{kUBfuHT_aNl3V{=fGFFwx6
z-dtpEG7p)T%ty*h^4sOVgg>5xlY?48I|{K`IH7(qEG*l5MSptAqnI5P*j3z)5_UA=
zd2X<yq#d^W#;JUFL_7<Oc4(ARc9f=+v7;>Ids#Vpc~V9mz<;t-w4;(8mF=j)ye3)I
zj%t+Zc5LT6QfjEB<p1XKJ`MTPvW^{f?O1Qe26_F*j{0`=w!>t{si4-tj+S<`vZJ9)
z*p9|_G_m6sb~Ux*Nl+^v(h~8}%#P+v@`N<Wg)Qt5zDsXxZATkBy4lg4Nn1NQQlz&X
zr9Ih!lmR<YI?Jj<S{Hg(IY~mAH>3|cp6p>qPdj?CS3(*5SGtrf3+Yb*vmF*YtlZcm
zA<bro-HxetOtZsbhtrPX>~fJ2JEC^D=^i`0cKGN)(oY6R8F}67xDY+85^qiY1c<RY
zknBVDCHs;6$pLoU=kx}#DN7BuV+ehy9m6Qc-o)MH#e9SvBkdT)aDu8IO&MdySjsq+
zkGCT(tZ(>4l}xhB|CfK9nNujG%V9cYB{{>6nUvq`SWKB^$80<1(6fiN`F6~u|4z!_
z^W=%iwJcz=Q00q6HtHw5JeJt8ROQR;Sgw499p$*}DkiJRKUD7;JJ!<IsbqB;Y^3k7
z<8M1Q(Kp+1A_ca5uOYXR+sN(YpQOy>FS)#^Ps#0Mc)^ZccI>9_vCDsKanz2zZ0=J_
z?WY_d5881^<%jKP&H2m7#~7Zn<G9Snj+3h9`$yO14g;rEa)xr&j&qdrD))r7i^?zA
zahZO_j;nTDqu(O0lQ+nlq^w=;2Y%a*)iJ{zCU;eSk0Ngp{>P4ob`*4?kQ0yWcr2Uj
zz#a#l*zr`J=?-jg;9onQ$<x_^rVc!}<Aq$79jN2LOFLfKk=2204!q`osT@e{z#F-o
zviZ)ABo6(&dT+-EJ3iX+AM*qbe4>0KKa*1Sh4R&oaol@xTo$DC?(M7pxKHRnA|{Dd
zJ|Gj4(vztqxdSQaDOFPGzqm9Gq;(*p1J^ltItP}9wLSFoEX&|Pe}1{oPi$r)GpiA@
zP%a$NPu=Ve6mZ~YCOI6)scLdLkei-|%uD7|z4;xGucnp73p!B9f$HxJ<=Iu3EJ+q|
zpr`}I=*1m~@ABhWS;7GWLs@(<zZ^5(0iy#N!%_~EQ@y1fD5Jcr1Mk&&m?@$^<tsQ)
z(Sb@Vs7zKTt2j`VQjL_#cz#(=4F_tfq?QA>;`I5{RY`pZnqP~r$7VdoZ$NM8z=Vf}
zMh-Nl99bDJ&1O>Uz)S~zbKn=2b#tJ*11;z+Ng2GA1Faos<3L*`9m#fNd$I#5l|z&2
zlj-D;_X+6Ih3u+&n?|%A4)k<jJd<7y{OW+*sdBgjy&W();Bmm~fP9;<*#Wl$wumMV
zivw112VTrE*cm#=5$tu+U1ayeMyZ!ua2HBl(&s?bftUk+2LcY{TW$!Fdm@^6$bm4M
z5mJ%`5v>n>paX*_eI4khdizrbkhdb*V9HR{JA~46r*Rl1E~>9Wwrd2pZlnXFD3XkJ
zU<`dMIZow+7aAt0y)=<B$$`m~Ddbdgngi1*GaUMNZO9(Z9@S5wSq`+9H}E?!FM&3j
z1rpAo%q4%9F3Nmz0lAQr%0=?Lo1{O9mdHsP)s{N2%z@?X?Wbv8u407)D;-$nz-s2}
z$Un$6q%6Kx&LS4e_XSH+9vh|0fvpZ~V$Ei9aRY6O1M&-u6l{|#)g<GeYJ}|$485n%
z<S!;WRQ|UEJC*Np-~>NEve$uq4t#asn*;kDI3Sl12W~hpH)=TOz!3+Ia*;#iVF$*3
z)u(if%@Yosbl|ueb8J+TTdtjQ;EV%j<w?=Yc-jF;mUDB?vFyBDQFj~VUUU1S+64zL
z%2O|@$>Wj(m+4o?t17=HSA)$)DYz+#1CQkb?!ava?msd<RO`Ltz+L6{q)Yh&IWd&4
z;LU0tvH2;gJ(Y_;{j&qlDDTPVq-@{|%1iQ<%$f3rd`n8rJK62AAIIo}10R|Hr+Pn8
zrliIfm59eV0jGY*ayd~prX`@KB@>c~$iz-0aU!V`$=H<o<W96u>q@~eC7Fs$?L-<?
z>56IToJj9P1}8E)k<*ETGYo5o8h&!>Zx)jG4rO9xW-<$zmCQzFCuNN}oEXhD%Izfw
z4cAYn+)lY$kv{pnPULg`|L-`?&#(abGr2sb6?USC6IYzL>O@f|iaD`Gx|}HPL<uJX
zP6SzLaKh+>Mlb0^JVjQqFQ%1pqO=o@ocJ8m%E<0wR}Cl1Ie&aHM>Qtpov1*mNLC_c
zgvw4-p;sl(@HPDE^z*#h*QD2SqP7!t=s$i6(Cd-)$p)m1+0cob+$W8lXyQauCz?4?
zs*h%OqPeQ+>clT{u$*YgqyyQCZ0$rFN?Rw|Q`(U-a@IbYJVZJ&=|px`y<NB#>Fwr3
zcPDzNytflQ>AlEbRi2Np1e(}1lNKkePT1%z`e^cy(Hv|#op4dyq~8e-#Y_4~DXv@+
z_loLAKctd5PK2F^I1zOsCTB|@ZK@M}Wb;?*XUhmD`a02%#r>TaN*SP*9Y`7E#9);S
zk*5Z~97mQN=EQK7+xloDofyUDXeTD9e2f!g>Ep=pD$iX?pX5X*CNY^zPEoxFQ(>AM
z#9i^znaoi6Ov-Og%%aRz`Mb23>%{L)q#kCR=fq+smauC+xqw_qE+Tu!VW|_#=o_4n
zmqC_0v5HNZ)e6c=GRaN-x4zZ%Kgcystfj0YrFXqk|D>>pJT@}i<iuu*j4a{!VTP?v
z{OQDB47bT4UT4@&F6*Q1aN=(#jyrL}iJfvRE*kbZvEPYZYW&?!>`}f~PU%DXiVnyX
z!-*B2^n-Xv^&X`hcH)RizJC|PG3Sq;K_{7?cj5x&6nUCFL!Ncw97X<kk&!Ptaf!{i
zzS?EV9iEfYwZD&c&57$yq;(;k3peC=Iq}VjI2Ud?aodU4PP}pAjuUse;B#5&j`(}@
zf1J3_<^xjlLbdb_c_@Dcu;4K%$rC4@(*Gr&sr-FBUMPP_dF4cozCVt_TPFWG@y?0&
zPJD3UBa@DOwJEEO(=74TS{o~~_!INb<QFHtQUdIf@0*4Tsa#0y(sxAy7ZOquxp4J=
zhQxHqlTeb9$y`WINuhdEx-db_s!juaoHXo`-`vu>kimtnE_8DtqYFQ|P~U~T{j^N7
z(gX21T*&D{W*1iW)v~yd)%D{|_%cE^7qYAI5B1e@xscn1!Y&kH_@J+r$Mxgm9(i5J
z$1uODFW|z@^nzp|l_%<_6?LH)Cs2`Lak7*PB`5~6BpFW{Ntuu4LLv3-kfmKHqw=yY
zl%tndNd*_~?A6cS=l>Zixlq|9Z+k;k_SRB0)m*5qyauJFRQCIEWNXX2fEd<QHT7KR
z$leA_8oJPk66mKjcA<$2P1$ViLK{jm7n)OkAzP3wNtswH8SR07Dz=qf%D?zJv8x@~
z-h~dTvZI{#{B(d6cV^gyoX}6}?m`b2>@GN5xZlUv(}iDM=r3O<%7TiU^*zvAjboyi
zU9hOcO0kj0>l>XexLg?LlDEvk&2WedLtXH=;C0D+`Sg=2LW=lZ2+)IMhzzS<x!<_d
zL|urv(8q<oDjz`UCzDi3x4algAEc7OE-Y6^VShhOe%~18!f^JEAV-p;$kF5&Qr0+D
z&hu3IUY+2=M1~7pm_*6mUz_j3WEZBeIhCB{!ZgZsQWl)y!c67AQSNXuv*~kOm`nLx
z)y#9@D+?C5AUCTo-(M3hQoV~Q*$c{hII-M?em?Z~VTC-`WUqSQ^<b3?t6doA#vnKT
zaAA!L3EW8N##(u1$vN!8U5>Ecg)Ni~E^KsR6MZw;y1#zL9^o7R{wGgfhTB{?>%ut~
zw!84B3xBz=gZW_>{-($x`&`&b-$m{w_o&{za?m-lRPJ}-0P}<7AyqT96^^)Y)P-YA
zj=OMzQjUK{opj+0o2SUrq>LtapB7H+ubpRd+lAx(wF@p>bm0<{8{}p33VD^hM#{3+
zWk+#tH&t@Wg^K0%<1Rxz>#yCDr-KWhT=*<kuw(HLTzKfh?J0(TRK45-=aCDKU3kJo
zzJU9c3r|(=zb-tZKPO+1FIDgT)cX8iv-yU6>%u$Adlx=XK9c{Dar|mF;g|1Cx4!sS
z7rwcWK9zBLA}!^BAKz>aHxlnKB<OBTB;rOLH|n~P#EqnGRO3>~+(_<52{#OGq;Mmp
z8>3R<XLhA>Bdr_h+(^x48d6r&@j+aA<vHBQK+ovLPn1k<d7q~~pUh+yQkoN=#$}^t
zSBZRGX-+qCxsh8Xc_`nnU3uyG+{mwb3&?z`=x1g@l@$73PZlAIlEvI8PLbldPvT0t
z5zl66H;N9>jBb>oh-;Mg`;GMmXwsDWGH!W$D$2RhI9}fhd6eg}72K$(#;ioC>_!zg
zs?z124?VbebyZWtjhggYDyi+pVAj-AiQSF*ZZvSCp&O0du)1NB^}5l-jSg;fbfYON
zTdVqJl;-3wWD7T1s@_&^%;WfN+-U1YJGcG`KAC@exBfo}k?;TY7U{%Adb-hBE!&0C
z)s1eH?kex$#!ikYOZ8&-s~f#3Ceo}bEpFUp<@ayKl={FPqr(lS8!k88ZbTEJzZ)Jm
zyj&#YhR=<~g%NZk(Ll{l*Oy|i<P!FUG0bK}ttIM4jNXUrtMYzwA`R3J-vBqZCfDS#
zK8rTkjUjHlapSEUL){oA*F!hfxG~&~5pGO!W3pR*#_4-zq@4C{jOJ)#+!#wKkX0M!
z#&|c{57Z{Q^;f_qxb@!yS0~h}4b+C$()^MS)TXfbciH)FOm$<L8yh*3>1u8>+?c8S
zH#cS}pG}$L#$1&g<$^hv#LstQfg1~%=NP1Kmpm59E^=du8%volS4%CExpBc2Dp~2q
zD&?!)07qEs#yU5y7Q!8Nt#@O)8-Kd7K_=|RCOPc~X}4Dzx3YJ$8(Y)}|D)XD7rJe8
zqbvWc_{)tQZtQPlyyeE<a+0`l&W-bK?2@z2jl*1Ij~d}1Wv?6iDEr9+s`qdL{fTzS
zjjtJXIpW4qb{%u$6y><8JmJPkdIJ73aGHKb^`3R(iKdTmfyt8dhU;!zq+cR0lUK;A
zq!eGHOiymSA^Y~c;U<|Vk5T-#EY1%q%C_Hi<DQ%?EPf_Wx(wO_HNrn`Jfv6O9RJ9T
z$8Lx`A)k`c{MU_UgESFY<8v0jAYYQN$k$|!uf}(7ym#YQkG?G*-1z85VGoM1`5$W%
zdGLwynUu0Gl&|DBGLH4|AOS^c5_%vXrxi);K@ty=dSD-<W%pqDAT5~($yt_yOy@yL
zN-8onnTC|b(|QocZ=gu;K?V;pGS8xVfAS!c^2{EL=DC+uCD|ycKg8vr<n*8xZ>W{a
zgWMkE@gT3N{Mmzi9^_}UfCoYKIh|dDw1TRpkVpT<4Vh9=4~luv*n=h>nAgS^_n>1s
zWE`xO@W9|fNe|+=NPQ2C9%vp^_Mi%rQe-&~N>j>^Wl0&<pBLrn708MzujIi^ZdX+%
zwa98@b+QI2Bh>WZqk8_<_Mi^)x~jJxB{)joga#foWU~>uFr^+g^`MyttvqNg8!}kG
z4m4-)FQhbEc+ism{i@rB-fXaDVR2iJyh|MI8Fr9;;z1|6>>OFPGrc?6#e=RC$-8;5
zE#Hr8P7j7X$zJliCBGxPH=8Ee)gD+puzKM3U_f%sCTElf4iB6j3?Hm5AFPE&8BTnO
zcgc~hYCN{jnDn7RM1K92&#Y;$jXn?j9vt!Fs22e_#2)<a#XK)U9)vyk#j8&;;z87d
z6CRxOAjb8M@L;3|edvA3ejfCf3D9McL6m_W{NMeu2753>^$zu5nDXIr@;}s{5u@Zp
z^<cLLdpu}++c3t1`5r9rV5|q@JQ(l61Ub_@nB~Dlwd_>NBo8K2rl?%*dn^M^V{^I(
zGgLm)gM&OM(mR{sJP+nj=90gw%4PTUA4$va$1U_=kp~-@FZN)G2WwQ#Qp$32nLL+E
z>1WFd4^}c6yEuN82fe(;)vEpv4{meqYgMw2vfhIYD#?=!n>^U;!4^pv{zYyjWwdRS
z?WC;kPY=GSE!yG1-^_Qa-d!GK9ipE_GMT-y?JD0#*-swu;MzTXW94y($zk${2S+KA
zAM@b2a+%>N4^DfK%ZuDzoblkS2Twit*MoB&oM+i%4=#9cQJytJv_mKK>+K~EZpags
zy_d-=9$ckdBc<lL2NgJ5@mn6;XMUT!L*7-D_dIyFR-f<#mHb0_=)ohEw5hBgjwj!n
z_3=zjMY$?^aU!|#g$FO?`soF{c%|w;QC@rS#)G%?cjQM8-m97q9(XS3oAaMap2h2D
z+Gh{GF!`$TZ?Xq?QI*~VUZn6MC7((Oy+}k!>_rkUlG2ltQkjf0qN_ghrB#rM&2*|a
zwHImVX;pH%hQ9XnY-aExqso8s;`?sT?1hiJGz+`3lG(`YUgS{qIVqWQYI(fK>y>+q
zqZpHML$rKeRC{R1&t?JgXR;t!h%8LXOp181f~za;#epGOP39%MFnCdtUPe{Md*#ys
z`s6jTl*&uXgv;t@Y*{AdyeRKQ1$t#Ks(4XRRaT;OE^Dkxsjl*BUffe>Q4KHRhU%l$
z@}jmEby(AgtV`A->yr&gDQ@V+zN`8nkVj*NO}uDIX{KtLd$BEzepk8{UbOV0l^3nO
znENPxoEL4pXzPVnHpGi|tncJSXD`~*J9yENQvIIcA`f&IFS>eRW7v(9VS7`$d(nf^
zlkBB>fAwPGkRLNNF*K7F(n>Dm4{N&@4mM>>rxz}|TO}SZa&rHaNmJ7AMa+vn><V}h
zq=d+@s*iXPRW9!m>8pH%7yZ2G@5KO>4Dre*CiLSwh#ai)&8;w$K8zf$^5V%cQu!##
zXmSiWmTaFI<GrZL2~Utc;Kd~7lfC$jGR2FjlxgI2vg=T724yBGQ<`5wpV%xfW;2;X
z&Q-m+f5Ln(7I^Wu7dsg)^kStKtGrm`#bPg(FkDV9l}#S1Eu+g{cJjC03K@2&CXdZS
zwbjhmd9mJ$Kj>>nS^HYb{dC#}FE)CyL*<*i&~InT=4Nq~ceoh8RrxkAwtMj>n=1_Z
zw*2MAY3`P%q$In%*ej>87rVVE#a|@$uzq?It#VD{e)=JKl6rsq?st%h%<3>jZiJqA
zn0CyI<6e~Up{x%lyg2DaG9Qxra7tF^#eZIWlIy=0XT5mu#Z1k3&WrP0{EZhEC^x*g
z>BU95%<7UCm+4nja@C7#%CA$3FE!kv-1Fi-<+c}hD0j(jyziNe_P~o5UcB_;A1@wy
z@yLtEUaV=N?~o^~6#3VSr^<gRjA!)cDw$PGe-gd&;<ZY?{|dLapgzc3hVQ%>%;pDf
z<43s!Ju)tOWt2ZcKeHf-58r>^_#&srN5fYyzA=yU>0cNj4^R^LkdTr{<%xYLA2dio
zQlGv$dE_6aU#wEFsriu7hg3eKW>fy@P}GMsKBV;_oe$}K$m&Bjc4hG44*%CF%VzZ9
zCx)3wNizG8g<hG1OOoA(JWO(sImujPZc=Kxq(xpI^0ArUhk}#><j<-`KB-iQURWhX
zeCWWn$ZU)GP+a9Dd@#^UlJP1xQbuG%DIa=`GxR=aEX|}Z2Px-6J0IH1Uh<)W4;9%}
zhpgno@sav3EtP$!!bH5P57m@c_o0UJnm*L>p*EYTT4>WbcwHar`LK4FR-buu9~w{^
zl8wm5WD~L}DQjuw!!fldfAOIO^Oj^QvNhR;l=`+l{KNVVO#D6seCX&yCm%X9v5{R=
zeODj4`Ouxs9;C^Ko|InXucVCJ+lNHM^%F)OW`-6Ytg5%v*EqWm4j-H<ar@w+%dHD#
z5f9y~dVM|=<!zdROkzItp@e)0Q|2YsB0fav|5W*L#`a}1_i*j|S9K5Y$w#rU-H$*0
z805oXA71<L#)lz34E14|56gWR=EHC<HN}S!lu15Jmh=3KaikA3ZpV-EVKnnG<cM*`
zu|ABWk0)jF6MUFR_w&<;l3Z)2FDrlAh)?xl8hfXcGklmy`Hh@U&LU@%b9|Uf`JI#z
z=E(utst>h5B@2C6L|;rUQTb9zh2h!?%4#3}@L?r=6`6$JD6vLPHXridihIFuoe!IR
z*g{`VZt!6vWfLi@PLGoRll}HO?w}8ceAw#4HrcnTcQ@rv@-K1+`L_={DKf$?A9Byr
zPY-$Q@nJ9XedK;sbHIn1d<9!-4*PJ~hbulD@!_bP=d3xcDvwi6_;6Asrzk_Z;0)!g
z59cW7eYi-uK+4F;Q{a+vx#ycCSABROPYs`Z-c4^__u&TRCVAI~Ta??R6x@+#fjZmo
zF}zQvNrH!}=3mMqA0DgZ3FRqSkDK|-hv%xdYC7$u{O@MC_DUu4hQPNzyz`;2AN~Az
z@52Xq2KnLg<D(D%`B2V}@_u|`y?ibvvmc**_~OG?AHK=;*{^R)oFDMx%y8}dTg4JE
zOy);IN+L2bnS_)@lKL@QZC!FdQZP?RrcyPj{n(;v()y83<>~#%pgf}=KPk`T$4k~{
z@nh``V^%-1`Q;OH$l*s(KZ^O0Q&r~kBNsh4nTO1)dNVafetH4&XR@Flg(!vnC_<5~
z_|nSQmv=KL&csNTP`w5}O48$1GN?H;dMUCrSw{7im2DiMU*9VDQPGdqezftUk{^}*
zXyiv@mR0eiwjXuqRsE=@maXnb4SG$omdee|^#fFw&4zx|Q+a(#1KBg$k1MKdmsA!X
zp*5j2Rh7;BXiooyY(chEy{%+!BQ)~}t*syJ{OHAeD7Rwq2(7&z9aLpUN+&-$`_YBo
z)sG&OZmOocZ0sWaD%4XYsjJ{udT&2Wl+jsXrdUWTDT~<ru+tr+tX)DkJw$r^@KSu_
z?v(IT0;CiNWpDS@*DjB+oO?Nq5i;sWj3P-N+1_}gNPj;D_%YazA%4i0gMVLYAcq>{
z$KPE0P(OzGF~yImehl}c>T2UiKSr@;1bM!KakN_d4zqELA5~5m$1)j5jwdIO6Uj-W
ztZuSj{#*BBw$uEW=f`|@O($oNGyV9DGK-u|&LQWLGS2UQ+~jN*_~irs`i870zmCur
zQ5O5L#E+$_ezhOV=*!6!<Vw}M%8yxmT}a0H!;dx0*OKd0O%;B%>jpMA`mxE6>$&uU
zwOMxZ_Zo7ms^8|vwE_A;`OA+T@^lU$X8?cuvD1$aa+&gDmmj<Rcp*=JKlaE|ex!EG
zkK0^)uOIvT*iS#;$7#7t`Ek&XLw+1)c#=Fq9wm>F$4Ob~3BP`WRuOreVpx@bgPipv
zZdLqcCg=P(Pr0C$y6DFx<%OH*l~-7QmApn?CvT89{n$`Nld?Np>ZxBoC8{5byW~Cc
zz8?=L|Bw&KN91Et>Yw<L_Mkr1XL51aZ>%v=^Di(wr?*OGltj8-`SHe&w|=}<OUWy@
z@96JI@S@Raq<&ETlZ(F}sRKw8z?o6{$e&sBh5YKrH^2VscXXr{7XSiC5cu(2NFG2!
zdLlA0nS@MA%23Gyn98-JV3JbhsVMR#IB8XqC4hAF^Z{fD==Uqm$fj?vzC}OLGm)7C
zKi-Iv@1-$o0NDZ%kw<n)(=5hZ0pt##P5^ZS$P+-`0P+V=Ab_=;Nj?rDV;&i){Tx6+
zHfsk^NQModd;k>!csNok5`ZCqlI$%?79)!XP=azTwf<^}JmLc=&BRDbqESkbhxpOa
zG69qgK>ijh$1vF_ea|17ZKxPPH71qF%A|Bvp;T4tlB9Y7HB@g+N-Yj3T?IK>y#VS5
z&?$h<0W=7pVE}CdXcs^uwN#q`8VAsX&87kU-?+0&Yt7hfu4;avv>;ms&`Ra4DRsFb
zS*kso9Y`5g=Fl;KYxDFYH7gOi1kg1ATL5-;bt5eSbPu3M06p1Uu+Ctn^df&Hdy}T`
z$tZ1G0^?w=(HcO~8Tzhvu*(^MD}dy@386axPXIFm*wYc-0DJ+A2w-FY_xc;}S26kn
z2m}xeAQZsB00spR<_LXA888w+lpa$_e}3$!Zvg%NF9~3P@<C_xZQOG`Zm>#*1Td67
zOeMnu7!}dW<S{CM3Cu^6W5}`OIC4BGmF==(VgQraoJ>w3&;4nfN|{DZCufkd)Xhf5
z-{^BkY0gQ;IRVTKz%&--vG_fJc>%N;h_(YUKY#@R9E#y^3=0ETBv0fB5=5{#fF%KZ
z2;yT9O9NOYyDo@PK`akoMF1BAxD>$309J7oM*>(Kz#jo@3t)QyYt$Sz%QH)!U*+__
z+1D{#Pi_ccBW3!R_)P(9<)M^0Z_z{joY_i>$n)aQ0REC|zMSNL#QQS+xWep^Dg9xX
z@!qgAfL#H|?IL#vaDYpR?+M7~zV&b)DY9SYJW3M@jxio&*`WXqQ;rwV$2=Oqu>iKr
zF&vlY#i+OhhxKE0B7l>uIYmlxTCRljv*bDQyz0FWz)Nn+<p8dT2k<I@t8)Gaa9^I1
z0bEy=w<$LQxJkK1Zs!k|JF4ccoU8PVqxEaTKXUO2;29I+I>Vy?{-r-ApO8}alrn_3
z=94$3J`dnU02)WgRbSuI*8#kd>p&0<gLoUjJNc0sM6Mv-%i#_nMGz^2df7*g^ErV3
zD4)phZ<YBHz}Eo2F_FqdLBw$pkdh<_BB64dQy(pH5J^;$G>Bx%lLyg+b4wLOYKEDD
zNE1ZbAd<_y-I$~cA_FD8TI%~dbu+RlQ)+w8D8-rC%tB^WmDz&Gt~^H&l}qZA$sI(V
zAdD){8-%<Cq6nM$$oxSRp!`f0Bny$Uc;O&^tEe9lc@zzz81v#}3DTe{O9l~7w{sh%
zUJIgB5TzNG38HEc)q*I?X1SoeM5a%#LJ*ZG6-i0H@59P$RtaJZN2|_ejUZ}L_O(JS
zN?lTxsvSff<+4;gdVQ7DDTziwG!7yd#Fx=plOUP~;R?bXM6)282hp9CzmOfs7D2QO
zqLmt<J*73-CWy8wZx_T$wY~Bidq?J-RBz`Xx+w1&L^t|A*7pdaXAr$quQiBY>Agu4
zX;!@!StGxdTi-tn?W7|Jr>gnB+dV<daT(<_^D_65epM3);)a@SD2Q+n5q3p`=o>^o
zdW`Ht%HaJevfd#<3{XBWh(XE+2Y-ATLTZLG92UfI$_Q1HyAejqp$y`2P(E{wu|bRr
zVs#LIuwZ-;Qz;Y3iE61yK}@DkQAzvK#%V!J4`PN&7Exx(SsKJF`s^U)tKK=3x#aKU
zJks?(ZUJQ>DKpPIMq3<2tufjXl`IWnneyd9te~${$*LgkrPZGoYnU7j;uvLZ5bJ_i
zAH;?rHp*0|8xIGuiCupN@fT$?xkX6XN^T=%!0mEkjL}Elp_09nzsa3J?4s;ey?f+X
zuzp`q|AlZr^8@5TRdXna{7LlR(~hVl&%bfUgE$ey*&xm_JSk7f0>(448^>s;f;j!X
zk|Ur0&LA!@{3nQuYMh&tOXTGsu28O$*U0OntolX}uQ|>wmE5M>A@9omq}*4%4=Cxz
z>bv4$5RX*;^-TQJApT|ZZ4l2WZ^-AW<^|;?`HFl^78|S8<$yBgJNYTVP`vY4?Y|&C
z1<@glj$wS3t3(isLRcKa*C4(HQ8$EoA;g7%5aL5HhL9kHgdyY#A$LeV+K<E`qz@rO
z2uVWvWi2@=l9ZAxgaKS{3N}-csZ>qs5Yo`osw7<qvsj-ogr7pl7Q!VqGlh_uHCa>Z
zYssSOvxcxuZC7@NImnzLm|N<Vc|!OwR?8bgKIY!X#{3}^2%&HYMM9Xd$WS4P@n?1w
zBny!jQ|ZeVrHg!ji(|16iZdypazh9umG4ZiFQSFea-3E@gi<Om9YUE9%CcFGtQbOh
zN(C~*xF0`dDuqy)iHuVvgsRG`$q20Rjnis`P*df#La4304y8y>WBm{sgwQU8_8~N6
z*g7Ql?lU$Dp>YUJRQ)d@G*#X#gyzcEzm035yk!Wjlpi@{oY@j>*lbIV9jA2&p(EWD
zLZ=Wq)2;msT_`59E7>iC?vx&6?+|)YWJ`O6@T>CoAL8<S{PE5WGeZk$C2b+tDGpMW
zby6DiGq^+Wgy0Rq7sBumMugxGArQh476i%uWGI9%B|`QIAxepnGUm(MaebBdqjccg
z9tMOkkj+8lU{&LKqEC2e2*Xq|=v&;#5Jt(_6~fFAMu#vagvsn3OHLxksrvDh3FJf>
zC!2mgq{;u|teC=lDmg8L>6GtNlCs}I_??OPEXr(h4mp>U;&~LQnNL|jE+n(I$C411
zhVU_j|3X+6!g6`ig>X596(Ot)VMhpmvvSEeZB+<a_^mFhL--?vH6g4GVI6z_N3IWH
z<M(F3uz_+sgT5h~LfFja7S+3hH?-L*&tE3n$v;)^Um@&N&x@TQ><VFb2yc@7*e82J
zIL*qvA?%~<58+4%N9hMbI7m4}9wucDZwuoX{Wv*un*P3*6ZDg+<`gACQ=C!B*$~bt
zKOe#c`bCwL$b~B*Tn*t-2#-U!7Q*!q?uKwru8OIQH$s^6n<2ij@h0nUk+;>dcVt0s
z<GXR%{m_rkqsf#Wu;8B%9#WEb&@U`9&J#ADeu;akM))^`XCXXi^9A{qd>O(k%4<><
ze-lEw@%r9-$K*ZvLG`}+689;D&mp-(2y%q+MK1nwpu>1~#Q2RhabX~gq8y<PnIMdW
zVSQqW$dq9urbv>6l9WsqMsk&>2%}poeGaLZqz)rZ7-{Jl$#kkReHa;(cj4-OVlz`1
znJI@8>p#<FdRaNiY+;1QYtqaaMy@cLhS4mH++pNlaf2}OhLJA}EsRo3@`q7`B7+nN
z<7aw7l@to2u<|bjP?TOQjN)OGpc_epswo*pyz=Rs?dI`XX(pAzs2oNadRej@S)Qyw
z${Z@n#CUF3QAw>Zsw%HWsZQ1)Ys&sPs=vZeo6S08U9ui2UG>8_$;mWi(n#fvDNV?#
zEzq3On*4=qLAE4ioK}=)9I8ziZB^bbjP}ZxU5oD&M&~fDhH)*7E@5;H!ybl%1>MNr
zVRR3p2R#FCqtP>rUUIOS>KpPa^Ar;_6Gakp7#8JLij6EZK|h6@VJr+|Q5dc;++lda
z@UnMK7(O|;0}Qj<YLmn8hY<)P7)B_J5n+sEO*o7`Ve}0n!e*3=kuq{H2l|E4pUt7<
zfG`G82C5n#f7TBUV~9#TuZ_d#!&Oq4-xD_~EcZ^)pC<Ac9mW{?Sd~2JA2*)f?`!-7
z%ET}xsonvfjZ^4T!<a^yPR<~k@~h2e(titM7RA;Xv%^?y(Rb-wd2%f>{LXwHDdBv|
z0`mDK<6_F1FxG~#guawqMlL5;kh1K`Fjmo5tK^R`8u4(f3u8UQGhu9?><{BW7#qXb
z6vpN-wlLiJeL?b1a%&jdDBHhx$@|IqwGn@Xv4hFqDxWz#ZkL=|iL~7+*+bb&?vt~H
zGdalSQB`v&jKj*0gi(K%p-cho7?b1V3GyU)ij*xqEoTcyJImx;80W*dK)+00BrlOt
zzvhs>!>@$VhPObu9>xv1F0uD!7`MWBO}`z+oiLt+@s!QG<byEoQDlVsVf?y9KUMw-
zW9bC#A@fJ%WAYw9aU%u0CusjNc}7a|Jd790Uxx9Dev4c2b%ORLjJIKApQu%ss7X`m
z--q#mHSH&AA1VKlpX9FqxtKqV`@*JFehuRrJudR&OdgdC2_r}pLB1&RN0B&!BoVkG
zaI+w31nDA3A3?GRk~2v`rj8&bB^BwLs81seJuNBC@e{QS5oC;@X9T?>_$h)+5wvD+
z<_NMxP$hz@5oC=ZTLifx$Q{Aqg!(w+I~%h{kVB1=lak;|T%HJm+u{pHP$Yu9sy81c
ze*^_6Ka&MjZz0MmPOoSL#t5_sibYVId5H*0s!BryEw>rvJ?Ec(K|I656SY#Rw@d`3
z=^cO8_gmQr%0*CK^;V9c0==S2Dn)RcEB#8!BD+Q!szp#;ws(?NgJn&~ni15Bpmqdx
z*la-7C1t64l=|eiBxp!!L^dX+M)Ic0n^Bra@QX@X$aX1jMQK<=YZF1+2->k(c9PaT
zg7&JWLj)a_ccOGAyF}1c<=y0L$)i6_norVtL|~t!Mb7fd&jNb{z2&%DjO7c!6w&W%
zZDwvEt)z{d(EyGJhEL*8fe7YPJP~*!*dM`x2z(LvBiI$ezR6lZj(!AVCTp7`2t^Q%
zU`7NpBZx#0jbNCJ6G4o_reA01N9jZMjbJ-RmI?QdU;sn$fe{Q+J~)CQ%7;d9ne`)7
zGJ!HOBL54}kN)Tg-mqW{n`0vwrz*$G^JTKWITKYfi87g-BKs{)n;OA1)jM5IB-a0?
zlBE&MqR)<CP6TsRK0kurmCvKd$KMuE7Ltp|#iUGNNdzr8vV25tSp>@?SP{WW_O2sW
zsmj$6{6Sx%lC>1iWNp1lHc&Q3ut_Dwdg{Aki!@cTHG*x*w^RO%;4jJ!@^96<GlC_Y
z+wIBPZh59m*7iiOmm<C|g3psRk%JK&ia`GLlP8M95gdu&p9mgCaFpYmj^IoL$JCg|
zBRHY_B;^z-uRNcP;2ixy1m`1ob<1#x%?osCUZkwvW4z4#N(5IUxE8^)QO4Wkb@B#z
zla#Jol$z(_#qZGXMsQE{-jB#lZ;aBFd5V5MeBzxyA4Tvuf+rC?jUX-xMDefGNAQX3
zeICJ!2ue-S@|-rjWFiZ`qr8gXwMyPZ@K*U2zC8Y(%?}ZLr2MCP<*&uh%D+VLRr$9F
zDz?y{unD3_7{yOfWQrn@T>PW@F-=V-A(N3wqZq+gV3M;bH7O`5qe!Ka{q2xOdD<w_
z(bJO|RGu-4J-79riC3=~<Q=)0qgb}WkR^(&EXYP?CyTs{%b}La8AUGTxueL~NZ+4%
znWW->GzvuVa};l)cpF8*C<;a4j=~c~;V6nk(K3owQ521$SQHbcXpN(YRz#C2TJb1K
zL}B1K6{4sZMad}QqcAclLuyf!qLhx}Houf%#SVS`@+cdXTWsmOOCIHAjXcVgqNvQU
zb`(`qZ}ljuDz8S7+acDV)KqybnHxXRUq>Z%DfP(uQ8b`5RK1O&*gjBSb(1KXM$t^=
zEhx>Sa{n&0Orif_CEvulYKoS+nz3~hZK5!%%C=GTh@vN(?V@NOMF;w>FL51JO{XY2
z)4Pye$!@B*dlZMb)pw?7pD4Z9^=lNpRgEbMDU)efqR2i~v#Q({g`MtDiId_Y%TJY?
zmBAOqov8k=ZGRMjC{9OlCW>Gbp(v(CF)fO46cITyqZrAhqGUfZ7DXS5thz6y|6ybQ
zC<a6^kj=rWcTf~*d7sZAOoo!f$l<C+?iVpCir1;MNlZpZF@`dh93RCvN~63#&W8zX
zP9$4T)lb*SQA}Y|yi96Lk77m?tE2cMiW=YIXR>Qy6u(6=i#|IlcR$ldo1>Pp=Em>z
zc`BJtSwQ~QK`&ku#bVXFB#Nc-{EA|^N>)UXuf1NjQYEV>bH2u}iNZO_up^4UqgWfo
zx+vCvuThm7qS&Z>6J>K0TT~)<$C6>Uvbl}i9>t%k_b)k8+zD?c8g@ppKZ*nF+C}ar
z_e8OmvX7L}wmgYDNI#~ML-JFAeuO-#@@&`jSM83od4fDio+9NdGtNeFE-E*9!#Ymm
zd=%H%b%B&+FGg`Gipx=4VRDr$kX7GTlevh<^(byc@xALN3#O#TZH_4)`jC<DMsbh%
z{U{uMJd5H1o3iXbl!xS_C?3njBp;rz`IP*Zl*+bM@LbODoAEE0yj1xsIsNG0|DXFV
ziuZEOiNO=YhbTVE1w4k#G5p7x)G^%Sv_D1hIf^d~zsi+!cYLZCzC{ri17iBt$s=hD
z31UddW}+DK^CeKp6UUH5)oA=vC0Pu~nWP|7s@{h0;|?#0KQdKI6GPe<zE0KB#qg8r
zO&>!B<r!nhHcdZO<WYW_mL-O)F;t16s^l?bkD&-FbHtD{hCFoRh4@wvjk)N#)j0C$
zv%K_tF+5JL{~*gBLjfkQpU3?iLqU2WRbM!Uc3f}K7>dPEJcbfq3}x9{f;7ZXk`f<7
z8H$nA$Wo-NrF0A-HUHcR^&MD_UFBn_plT|{P>EhyCG%^dS`5`==o~|r7;3~&Gp2uR
zym1V*VyGR%#L<S(iTFA({npTR)l!xN`d+FRLwzO<$cAJiRU@B^ZxTaOHk-xJI)*m%
z=HxFixnG|?$(Cd*Qkw5GBJE)PDbtooJC(POp##06N;<{RJGp+mcC9sZjiFl%-DCPE
z`VU=>?-9eul}1Yp;~MGvzh?}+)Kb67Qgjn(R{1PVpNusIn@a2y2kDH#rE;nC#^8%#
zSq#e=`eW!9L;n~8swODMf*vL#Dv!nxqxT{Es=Q5E44@Ar-TXGCK`{)DVMq*<r)l@6
zY4c(j8pALa43A+<3}a&$!RAO(=07SX_ayxB+>v)1j*DS@4AWIIA%-c+C&n;I`Q#W@
z^URsbWSYt&JuoANnKAsvWDYq?_0E<z`EaSZD)~KzC~r|NGnpU50_F=<?;^_L7?!AH
zX$(hMzaoYvJfrr;urh{KG9Oj5Ifg&zYsj@KUl+rA`UY~N$~VQ3Xu5t@Z26wVu$9sz
z5w^)W9K)Y%?j-*rcaVRRvf$%%`VQO`!)_*fRKDeQ+&($MVmQF01J`mehP>0Y<fDug
zr)x)Kb7HvF7q|Q3SPaMIqS04wjD{02oQ$DIAN1^lQ!$*5A!8r>)CXr`I2%LaKKkm;
z#c)1`YcX7p;euM@Re2`Ha4Ck%F>G9Gyu!SFYNLGis#8M!#FodGVz?2Ln=ayA4DV&_
zvHwTZSwKl~bzOTl?(Xj1Oc$OI++Bh@1b4S~_ihO8?yfKHBoH78PSD^G+#UW?d$|9{
z>h-MW?tAK%*EBQTRk%43FIahNB5qS2Pt@PPjhe3AnTWeg?vW44`{aWJFRlGYk&z!!
zCQa9#sO0HHJX8LhB2QO*NqI%SCf|?=1v1Wix$;lMr-}G55zSW_<Q3-I?9UVNg_SiM
z8rO1Ter59;8D|2xWfGBzNf|AP2`5;b%!K3&Q<(H8Vq~PJBvYA?TGgkaq%|QOB|Vuz
z^``p}xA&zXlL=3D#ScoRWi=t236)H!Y(jR{wD>!|xCuE-$Z0|@HB})>ZZeMvc`5l+
zZ+;UBC@)AU^+dm*6{Z&<i;~4m_{s})2{ucbP|AeTCX_Luya^AcYX;^<vMd=-%4i9n
zS<*~$cTN5HNoa~xV6&nL2}u<;e=?yO<p&dfG@&Z}<YVJQzkU=|H=%|Jbxo*eLQQtn
zB1`wt<g1ajWd+~qf5584@MRm+H=%(EElg<1q@m2~Vtjty8>A7F#$*!{no^pP%}E)j
zeJZpvp|uRsO6$S!XA?S6+NhegCbXlsS4js-M-vjy`2I7xvk6^PZ&x`6=-pLv@J*bI
z-?xwUiwV6=xMsq26Z)9Y*95Z(78ClJ(BFg!tRG;)K*|_$5II=RP(C$AmU)N?Lm7$>
zGa(u>3^!qfN=BM6O8IEneGByyQ(j|D7{`3P>Mc1#bL=-vWYa{-P*xLcCj4f??<Uwy
zaF{ULggGWSO>mho(}Y<jxJ~ew5RqAPDlge%hUPQDPp`wx5}*f72vNeMEXe}ia3;p)
zuO>`V`D9AM+qNktOl5N#Ih~wA$_T0XY1L<mjOH2InM;PbCd@Not8Dg1aq~@BAPe@&
zxQ4|GO;~Kg5)&4wX@4t+rOH=PmYJ|zB`Zu=sXS3XtfsH$XKvS;ur8rVzAK6il#Qe;
z)h5bj6Sk<N@VEGFCV8lYVY?&@cbKrxg#GlLChVf@Cijps&R!D|t<cYf11dRW!a;hX
zYsN_{42M;I#Dt^DXI8>76ONm3)r5z=jep3ciCrg6$iOFd$$$^P#Gf)@$4<ka?D|W7
z1W-<!aKVI&a*VNgmOMwwROcz}j_5~Gnu55*=0D_RRdYoS5_K-bvg3vc|FSEs`~WiH
zmRugq`juf!Hl4RkxMPyLMd6+aA58ej%KIj~q&$%2r~F4gCLfvp?+(UKm^?M%8Ra=C
z!@e*fKB{lGS4>`$Z&dGF$~zO@t7J!Qe4>9dA&!gp*@Q1lzLNj{ItDY6us{Y+WJY4;
z6?nI$q-G>jiA<70c}hwuGPN0LDEqmU($UkKk-?0NW@KXXc_RI{5Si)O%*aBKBr7H1
zyvR<^LFObkZZhUEBd-}_%ouA%J~Q&0(Zh_MW)v`^pc%zjR*00*ickuhF_Q1=imLp|
z46V2sCCn&kMk$8P%qVR}88ZxKlr`hS3{7r{Dc{}8JX62u#hX#Zj2~EOG(+w$R?dv_
zYP1TJCWTN@C6&ymtlXPHzLA8gY&IZ&B5RY?%&1POLDnQ?j<w8q%qJs=*D<3m^Lk``
zRrCARxQ6sbWMi@k*_4!NJ3oqRZbl0;S~BTiMx&WpD|&14XR;01mXxX5nbBUkai-Rh
z-pTy^zHpt{>_T=mqnoPiZblz&E*YVh8U4)|V8$<I^kzXHvacDgncBjcT0b@$CD)JP
zfo2SneWb=2Oc`#*5S0w23^RZK1jPt86F#yv%8b!w?Bjed&eYz{)W(@H-i#?`Of_SI
z8PgUUy=M5#m}u6Y>1;B?EW7emoP~pUNUIq(iY$zs;xNNWaglD-8!3$Rv-Cs4FTX(N
zb1)-j1k4Ds;OkLih!Q5Z<kqhM@`{?}j<~u{B1g?IOg7_JGemYRju%cdW4akT%-Cth
z3^Qi3Y@->oD6`F&W5${+`nEF8(&n16h`BW9nK9pt1#Bjq!V8rzHe-nyOU+nj#s*ct
z+>BN96)IUNqovnR#??&Z)LUc5TKYOwv)+s*Tx%(ldf_HBHdD5cTgh$YcJhA-lwa|2
z!d+$@HsgpHyUo}m`>Qt`v$VZ3YxeGA@qY4v9A=b5YJ|@Pw4-MH#^&#G_VGU~vJAUs
zX~)bsZpI&GT$!a^V!;XWq#38={l6OFEafjV{-&H(`5805sP#I>@H}~eyl6(w+4{cz
z$BfHNu9$I+BH>jt;!^0F;<`$1Pz-IgTV~vrL&A!X6?e?IYsN(jE?IETjQeuQvdA5e
z@xY9SX260(7W^kG^~(6hjJF)&5&4*WV#ZU-Gx9n4f_zE7B4sgNo6&_&$bH8o&Y~~d
zd%2XE@sY__@)P-)l!7mmwbk_EZ)T+B+ZFLdUPGnXT4D~8f=ogtwICTKxdmHR8rsg*
zgjqDCv>=rQsVx{-PD{gr92TUdq_ZGBB?Fnof{c_*WM)$4Sb)!u%W6S3CfQZq=yTkQ
zqwzV}%thuV^H`8q)#RfbOND|K6tdu`1tYh_7q*~?1x^cG78JFhm<2;D7-~Ur3rbi}
z-+~4fl(e9f1=TF5&JjwJ<;XG?Jl|t9(92p7Pcf3Rw3^I<$3}SzDln{Q!4Impk_DCN
zRaEk4U;Id~O8%tsvS0N7q12FL;I47XUE`$LT1^XtwaD5Q)S*aHmr~Dyx-o+^8(PrF
zf({mRw4kvCO)OZv)wpK1*3^P#9K1EzoP2Y`*n-lMY(>g^hw)3VKU>g-Nn5g=>TPd9
zuL1ghKsu?Urv;rEb|Jfx-N^2w)c3H!KHMnM%Yt7xVQ;d(1$`)e$$q51417M?06B7)
z3{v@E3x4Ak9%jLChT|<5A)DQTaTa_v>PPG-3&vV-E{}0E3&yBv<+i1hkLXWrlWlTm
zwl=|niR?O)NWX-d=w=Hn6f0>X?WEK=C=;(5-4=K(m}S9iCSEc|`YiBMq&{FlkRBq#
zWJL8wDY97-&Cw>&CtL8VoEPP^DHcq%AYmiOIMXbcuBMt{!AyGLIr>#-js<fq*v@30
z1@kS~Duc|?7BE?E!3xSkauK=Mf+dutqztl54t0(uzLMd33szB9tC}?ytX00wf^MpQ
zg9RIzZz4CVnk^QLXU#SyySYQxNMgYb3wAQxMees?H)RjGm)u9n@*LwwYYtd&P$h>f
zIIR4LIOp=41-~;qX2Ed_{*bd+JxA;W^K;}$3r<-O`B~rNe=_-t{F^*&!5ND5o~7KJ
zqn)Q*u;9xaO<p<YYX4Yp*@9eF<hJ691y?P&Wx;I=uCel8vdUcTx&=36`zO`sC4XPL
z$z0r&0e398Yr$t3Q?CCOw41B#sBL^}!F>yM-8Me3;GvxRs{T3Ukp+)c@`Un~d}cxS
z9{OSbLiN6+yt3f6O5UiNcNUc2VUQn-@7eXif{&`^lLZ&ly?4GcOku^8e8z7U#97hy
zWjw6<ToRFq$s}Y_Qo52^kzD!PbY)Xok;;nHR=iEEWm0(>E7B@YM@er*29;#AqCk3m
zF7nE3MHc2+$!uhHRhh$zob*w1^|K(46?v^FZABR?@>!AJijr2Wn5z}AB05(qPA_Pc
zyObCuEM!GtD~`<7idb=Xu2z&RMoP1DQB7(}aFR21jgeHwQk+p$ufbqNSu46*(Zh;(
zD~wh&wW667nib#XYPGDW&B}6Cl((V+y<)<&WF;#qQ>u_Zkh1VUS}|?4zREwTq?#4g
z=`~bRQ`TrZf9+#MU4}Br=7z>x^R#-Zraq;C6%8qk$i}L-i4{N0)3;S~D_St@WW@rz
zp`{hAtY~f3pB*4$$}9NE_%jRIsA=0;(T?7p?4a_FR&?N)ovj#6>B2F)TJ^txcVn6S
z1n+4@FS`6C{bp(WV#Q!9hFH;CjnjwH*NT2t^tWPUcKsL_pn3;dF-UnX4MXW(E4Iwj
zhFLM(D))iMNGrxMAEheG%O8U2W5}^8m;WP=w_*aD6RogXVY9-ddd(Dz6+QW|R9OtW
z6)uJjRpX?Th#K4~@yMCN)%P*+t2{uFZ@Gr8h*<H_hEFy`t%zA+u%WCCldPC*#Z)-}
zSoy20&ISEQI5|(7V#OnlDb49}=t_YVGpv|t#VjjkTTx@aw$_R{oN$R1ORbnopGV46
z^JQPq7m|xqzSxR+d|G<a`C5Vb+A`+LRqqPQN-I`TR;zrCY~+XfvMr1m)>-BL_SnF#
z^|$rIawB~cxmk7%Wh*JY+pOp^UqAMCSh3TJcUHW&VwV-Wt+-^xKUVCqVlRs?d^GH{
zV!st9tT<`K0X4!=D-P1LK8-(Q#bNpp)w`;ye!%=@#qUgxk;hf<A66tSs$YapF*zd}
ze7xaL`d{SVs`9iI_4u5cvnn}9Id8=Um0Yx9JlEy2?2Gx@6)UdF_2h{`ZjN-#itAR~
zx8ebdZ;*G$f61Fx+@jnjWs&mo_a}GRyhk?eY<#GCUs~}W{gD-qt$0FzMm|+FX;R?1
z@)uTY=CZwF@|t`@zEw4HACC`mC|Z%khNN;pTCs7HA+ZfIUs;~dvX^@szgY2=_20-i
zo4$ELiX@`E|6rK+F<xJB8<I20WkU)ZQqr^8kjjSCHe^&&rJ-c7AuS~xnO^m_O^Px3
zzF+w>G0aS6u_3FfssB!YSDf93987YOwVvq5q`Y$5kjI9+HsoVo*oGoD<X6)cpcJ&B
zkV-!AW+p{#au0ufzQxGms<(tqzY|5m$fay3t@1K9H0z=Nzc}6oqYYPVasv}+Hk7j=
zY(vC`@-|ekp_2`rIY~tuT2m_7P?=K2hT1mNvEc_Bezc*g4L{jXO^ttYz9ugjzdDl|
zWKGpu%ZB^xt!qO)*=5Y@tKJ4OEbs5pkVzx5vFdGNL!t%x$nt7tLv!XWRBuZgTG9XD
z^YVUHc^gVw8``O)y$v1c9aSP9VCZ5)S2jo6(9MSKbh%|y4@zGf`cZn?(2F9=@C&6k
z*@u+J3-(vNLn#An7)TjJ4pzNGY`D(1a5By?hQrAbHjGp?qhw!meaF}^)`oE^_t-Gr
zh6!v=w83VB-3AkzX40Z6tv1x+2o5H0(n-2hO{pgMsf&K%$jfVkPvw3}fDDo$8;&Q@
zkDRCtF&nnpuuZQ2HppK_=GrjNhRHVk%E~F^EE}d$rjgT0nS2IirW^qLukmb^&#@ul
zY4uVwpW!lcfei~Oi^#>~5^^ai^&daREw^C>n=5TtukuwktX96phPBGq$#ui5ukr>P
zHrlX>c`1G|VKaS;s(f@kZo90V)o|Q~KO|(n!-kzU>{2xcY}ifTL+&N_sowpR?hCYo
zltVTgrW_%Ev*9R37G`t{{I2|%4HLQVPRM3lpq;egl$?@QL&D9Y{<Pt=s{G4_zv&6T
zUY2pr*l?D~IUCN~aDo1hs=sK%CAthN#qzqW&Yf#=ShDM>Y^!JSH*EOVhMP9bX@q7=
z496bD-Lhc{AAE3|Wp`}2OSwlrl(U=ifRvHP@`IQE+3<+TWAX`^@NukXHautZg$*C%
zh+3e%WK*VnMR{$*8_HXizoWb-+ZWc~;U7P3_-w-$8!FjR*^aL^e3Oft9hx0+cEFB;
zcE~Mj64~|ZWEwlt+L4$p%_NkhWHLLFt2~7rDV3+PBQ;$HkxA0g)7z1OBDchuGuDvN
zj+}P9UZ7=Sn3<H~ER?KdHZr>%IVfkj{d3WClTx3@E>G^zmop!kU*!et$hc77Uxk<y
zCX3kdZcBVoJBqPc+>TPJz67Ntxt4beDQ!m?HVvw#EG3>SwNNWZ@nzQMUS8Eyu%jZq
zG3Q=|UfqrwcKks9QB_v8<0pDGm9%r}7nYiKw6^1CJ8Iccn_YG6sB1?(JN~d5&o497
zXV^qd)xeI1b~Lj8-(QOwvuiisX*8ubBb$>g>}W}8Me3Wb9QrTR79KUUvFl&7cURHZ
zsJ&etT!JZHO!cCp9i3#o+^FP6XFIys<<9MhbD^sp-Ry8W;Buh59X;&WY?sHEpr;+Z
z?DBsNEVSbnJ9^tO+m1PQ^s%EaXBx7jAH`~i&5r(d3}ADh9mDMyVaFh~Y=i9>LLW*F
zQ~8g)UHM2m#;atM9i!=E$gwIPXNQmbLRM;m9TS<GNVBT3*s+W?cDw%j{Jb@cE_OLc
zryakm5!`lo7<x$`=_doE%q3{Y!%W|=6=8-EJEC^P?3l#nWIKMfBjGO>Q<%&or;^ji
z>7<M{gNr0Gi%Htn-+%hdwPQY$d1Ut+dVY!@o)KAO$5L4-b}c5C*!6oQjhk**&gKeI
zo<mV`Z~RKSOts36)po40W24i!mf?Y7y05ciJ;M#;#soTzo9w7$GfKf$JGR+T)q$TJ
z*e(;=k<5YQ4*fvdVaIQ>0qxjnmyaduH_P2^$6h=3*|A3|-y8B~Fy36K?dR-rFVZS4
z(hksN+Jkl+QhwNuBlM#r7U^5~m>tLMxM9b?a&|DkK%TJUq#dX1_>;|Z<X_}jJN~Ae
zCeM&ER3F|Lvr$fcna|tthM(}f$lgnK{6o1+Zm6cu`U?FjdCiXNl=I8<y>L^`-$mL(
zJN{#M%Z}TWJLFyR9x285DG%%z%r%naksa^t_+ZClJD%9_lm)NIXXJD81u69}W%ZBh
z^L?$7H+H;L{>~0RNB(HXC%L?Hr+ikuU(}j@W%7-TV~q^B^JZKk<%uat97w7XM-ilO
zAf*E(9Vo>xl>?a_$l^e1Rg=bnwDfc;Nl(e(Kt`2ha-eHneUoN&VDe03P6u*1kd3|B
zRZR{`zv{?MDMaQW^OE_<{A2-A1}x~nVy=5(CPm1iWHGWhDU~H0*w4z+4wP}=@*?d=
z2Zp6L8XPb>ps}p11M#wKJ@q4`%M*Qrmt$VRf%23Bef71dNEfL@sq8=%mHa^I`7Cbq
z7vtMSS~Ul%J21e3fezGgpeB2JIZ(@i+72{!pov3&YGmfcS{*e)T?gtZukSzu<qaKZ
zq`a+sg~5Sl4#@9|dOGCELHYuZ{TkQFfff$5bfA^0Z0A60`p*uuaiAD)Gb_by9avvm
zpQ=53JCGgKRPw8y&dR$`x;oH}(p}{}D3um#m&O|dDa-!CW^dKo$AP}e`#I2GdG@J>
zK@R-9SR2Y@umi&vYw{XG2`$!!i8wIAfiYRinpiW^fl&^OrjH><@M9Ze>ElRQk@1uX
z4osx1T&(XYGu@(UtPa@dc9l3B2sG2TgWCa*T-=<f=7iS)p96aw*z15_3Rt{AwtsSC
z(1EZ65hfuAe&bxC4#XUo@4$n5hMSAENpg@oaP4&bx5b(?e|2DrOf|<a)q$B5@oALl
z<P0+R5^a|1o$bIJ<#Q?X99U4sC=<#Jfp0%BE_7g#oS3iT7jsG0(3d!{l(LMJ-sKLg
zP`=WERmxX8Fuj^l3f4NXPL2c)vW?t8$_Cj;*(AppWsAzUI#6+mzHQ~TJt1^p2W2O@
zOI7Zc*~RH6(LOo#<Z9qVCMOO!aL|D-4t#askOPMuxZ%LR4jgen{{H*71E(E0DjSxA
z{O-UXYP4gN;|@HpsE;YH6HHDzaEkJ$s{G3V!&1HGj7ly!Q1^NKSvJp+=N-5}xu|MZ
z_QOB)%j6aEDtV2R0k6yX#dW_ar!B)*4%~L&j;za2?J<+P<b4P3si_kFUjM*>hfMw>
zAF19WDey%3QwN^WpOY_C{?dUVobPJ~-Z=2qfr5AREg*d7z<ZW`V3+*CUGk3(d{WbX
zb|8-bpZzA{1e{3ZM1Z4h8lo**qP@*%OzcDkr@mp6IQ7YsI+4tY<aBAKp`>skB_);0
zQ#<utCI#|J>qI){=~eH}-ui%tmuQ)t$l^pHCki`}mA%=V$S(EI<8E*<axl#4#LI}`
z;}R_wo4Lt6PULl>ygbdviTq4tUim6%1?UA;a)`ezEaF5wlcHoXCyG-_I8jzrmUN;N
zy);=y<pw8u#q<@iz0r>xqslc(IavlLD$pxB@q_BEM5#<xaU%25?_1+XCRIt<4%MBg
z;lv{+9y?LfiCRvKaAKqrwVkLV^L64EC+a#;kM%vBsP9ArdRwv~*@A53L}N-5QWmu-
zrI{1WRT4dFY)NmWlGc=;ooJ(yOnI>WKVv&5+B50kL`O;|C%REOlU+!eOIM0vsn(s+
zL**m+o~pr8?M`9zcA}3HeVtgbC|-X2^<&LovcIYy;KV@sAe9U{sQ<Qkh!aCqGK?~u
z?6*`K<-}+w_BgTEi7`%$b;9L@+X?yB$v7t_I$?5RJc}o&5&rkLF?ng@otgR$H8Zq0
zVRgdhgq_XN_w`>qI_OR{RjE?&$i?4@l}@a3!smqFiRn(vkn@E#F()QD5u}I6u$ngF
zL{xdggR~|)F^$Qu<P>tMs!5y%!GzmBI5CUiVkc&+-uaX{PRymuQ~3ox>|+6&3!PY`
za{1cM66H%N%bZwFS)uaNCc|nc)<~1dT9t2hVjX=wxq;lMdN(=Ifw%45!elGCjohwk
zvUS4_`c5ZyIq`26{Ti}c^~x{m_c^iOiL*|elk2||i60pc@!kjrojAm@!%iHN9ZEk!
z9wmQs$}`dQ(c~q!{rrReCwW5UCn=|#kcUc0*<Wn_t$I&W&d6mXgMMD0mm^1xRfZRw
zxah<sRe7EA4|$oq;>1<ed(DXj>g>KD>&W~jc}vyYro3EcysMIXl>1IRpgbi1Q@z!O
z;fWJZ<+|s@E9dt+PRK$&W5ILs1zEiqUaP6TIPr%5RweJ8cu)U8ek4DUpGg^W^8L7-
zOSP{~G-|Eodt-nLiCj48!YP-&c@w)}aG|UVNnA+kLNXVUyHMDLzy4=T;X+Cm2COpV
zWMwKcGnv|jG?cV1{S$67PC6ITGs!?^Bqh(}!uch7fxNP~kd=8h)tjA?!-Y%S!nxSY
zP3BQGd0ogy&rizi3b;^E^%kPMUaA#wp{NVRTqy2B35J=L>DS~!GYs*|wBt{WC0!_`
zrYcP-L%zw4co&Q=^m5@B7c_?DU8q1Q=R)QI`ZyI`sN_P6Wm+TVmC5>K6&HSR;YWH^
z7iv*{BCC<r$r_{#Rg+R{M|^FS)N!FMy`D;v*Fgj24P7`_Oy60JU1;J$Q<Zmep_vQK
zWvNus)`gbzRw`-jlBeB$KabkDuuA==y`2l~nRg&Ns+zUc&{=sG`7IE=8`+)gp?Z6|
zFq+?q?(IS!7Y?{^(1pG(^mD=Eg4c!qa`3n?W`|*d3j@_uV_X>I!eAGMsAQB2L+Qg*
zGTem`%12TLF4IP<#Lv$Kjb(EjIbL=;A8J35O_K{|7c6uaX(er>opg}0Nu4hEc$~OZ
zBJbIJF8Ezo;lfH60xkqySfF}CE=+deR~N!eA}WtkVlH_C+V`zJI5DQsXSy)Ug{kyu
zs&~2zGnC8Sz+_2gvpL^|Ih48NJXIri_mY}4Rk2Vdi(FVtUqUV=m#N<6vhZB5RW7V{
zVUr7+U6{w)^2j)ATv*G>b>w<-1G$lunw|yq71_e(PI4=`&4uj=H3^j80#PROgN3{3
zyU9H+R1O*Ty0A}G?w5rL>X(8;OpcI;$%Gr)9Hsw8{_est7mm~aAoU5kQYYBl*bINl
zmCA+0ZX|KzZx>Fx@W_S7>^(!Cms6$<&eG43x0Y!aT(~IL92fp^;TA&~`Ldil4YXX#
z^^^Sy!>i;q7p_wp{iNM+;a^pM(}izbnA<A3L%Hk1J<5HRKXBop^8Z|@%2_;N@?7Ol
zU3f<C%-$C+ymaA}?6`vX=)$@;`bK;0!W$Rfy6{d-^`4S1F+Ql|cF^$2h0kn$k+W~P
zc5S}?<L@hzZ!US{iXqMoxb>Zzh!n|L6G`1j=0-_3O1Y8TjTG!E=0-|4Qn``Sja+V|
zW+<N-$l^vCHEmiq($UkC8OV&PH<KHg>C?GhS>2Gy<&}++oy_6J!#ditd-}V<+-?+A
z)8=s_FFl_d`6&gY-luPhf@~Hd3zHHSabw#?eP!kK`A1!fyHUao%SZj(`Sd?MFYU(R
z<(kGx%8&*(%2MJ<Be{%Advm!~&W-YJyj!lxtAZPHhoZ%ew90N&aihNn13dV_jUU~}
z;z3pqs=D!$8*AKH>y`%sqPiR7-I(A;4L54KF@_`8a-+5zjbxG)S{){TeKFLfZ2F>a
zfqJqF%<=Wf24q7wavX@4u(2CW+-T}XGuC%=qdBFmECWBz(SpsEWGgpXQ+_68<Th@^
zuh0+gc5bw1*n#Xsc64Jew{2%OyO3Q;nWVwPxbANBaHFRiz1$e6@?R+Z$=+`Cq4ZU~
z{oGi2>iZrU;Ku5d`rk|kxiOdpL);jlDu=o;O!;tGM=s|`CZkk7+KoZX$GS02R@rQn
zcbMmYH3k??bi?h2#|@J#<gR$Ln#w}4k~Y%rhC}r_DK0l=)z{AmuNzah8fLgL(+!^+
zem4Sc1X;6$a|yXISxp<JM93%^b7PX~J<Fr+S2m}RQ{9-RdZ)W_xv)ORS#Hc`D0fnt
z<HlS!ma;jIlm{f$tD((TQ!S9=pT3A(tnwvp?Bn7sW3pW3D<~_;Rpe^2ggp7tjrDHa
zb>p5J8{F9F##T9f+}Ol|Epmhm)i%=;9>aZYh5qY;?UJ~0%Z=M^>~LeJ8-KWQ!i`;S
z>~`aK*6)!6iSiq{&y6FL{p0~sR{S945P6t<zd}1oDb_~cGV+?~i#x_d{5WOIwYV%R
zwUhKKZk%%CPx@cvdHE?ok^0kaoS~mp$vHQSEA`|50+Wm6CGsCtbJ>l?thuU^Yn1Ec
z4LAO!+*G~t^u{|GjCb5PxyyLyq*44rLG3<!Ke_SQjR$gZWAi^Zp1ARp{)l|+MpE^;
z)@MxKk<ZB&<V*6E8?PyENLhuqat?Ai#osghKz<~(1;#IKe03we2N^v2#{4FicZztN
z2k;;fn*k1z*n=c&CRH^{nJ4!kg-TL-kV<)K57H=4>p?o@2RM}sl95R!GBcU5VA(v#
z?m<ZpN-@mgLA{Of1?V|F$mKz95Av|taGoKb2YKnT%<`0nj<*c?*?c~iKLR`$I246E
zD9o@3S(GeB7AIxe5|n%aLun7nc+kd!wjLNfDC<FOcEzj8niQi4ng``PD9`2(WCc}I
z(Su6#%48Ll|D72>(yOZECl9L8tE;4jY-e8NWvOa;a9!=eIv&)OO~Ky!9yIr$g$E5d
zRYNsxBM%zWn~+Ua-pm7^dM<EFkN(vA{6A>&y`)wwXiff1?rmah=Rtc9`mx!8?Ce1o
zN=FYmQLgZf->i>@t{!yrKz^4}6k5OR#_k@R8e{0;!N-+aPgcrW^zz^rdT+9i%KLhd
zZIynm`Azx{-+>+s^5D1!e|Rw1gCQPF^<bI@Ls>t<gOMJLt%6}54EJDsarq{ZK9#&i
zc`!~A4@P@Xag{cP^<&js5-v>>*z}VVNfT-Iz~X_GZu7uJv6BwcNy=Q3^D#+o4?Ik~
zD)&)ZuF?V?1U(3`ImM$tq(G($vl;Oqs_J7NOj17CgI|^JZf%rF<U=OYJ(wXIaFw>n
zgPF3kSg?#7wo04r!5sQr50+Bqc@SBp&8N#87f=>@u!yo)<xAvf;r|d<tkRCI(w2L$
zLiVQmd+|ySo+Q^+v3NDPhFnXo^I$z?11WRa=)o=SyBw>v%?!7Au+@WY9&Bf`+-hx~
zh^pV=!A|A7JlIX&qmsQI6iusduKgYy@Zg}zfA`=J{V;iiJgRzslT%=|e*DPm7{g(!
zwG$qB$SJCN@sk&)Jor=2AP;VM@RtXFdvI1wJ889cntnzl<8Bzv$pN-mAMLyc7nomE
zy_YEecyO6=g}kbIugUh|lKktzO%Gmq@LCSz)!MC;WpAmP+j5#Hzw5z0`h5=`P#%)c
zJou0D$b-j}CmuXa5VfXHD9;(b@ZcpymN~^5?F~Jz7x}z+>%lt@-h1#tu9;r_^8V3-
zPjXH6BCQvn)l`YR_(K1xl5ZZwv0f&DjKe!uC-%w%Tai@dDJaRjNUo9+_u^72Pvu2w
zdXY8y-bqK#L8d1&c#+YIO!TZ|W>Si?cp+bM7s;lQ>|WI1I60Xl{4YMY>doUtu3q}u
z<@ch17v-22^rDa#rBqE}iaZ!v%8GbVROQ9IC{8b-l9KXS7tX7+O3HX)P+r!Hc)C#~
z8fDZPtvsayS&^(nRwk>EKajEvKYB5lbE)P<buapP(O=fli<(|^Q8l%^sN+RlFKRPc
z_)I@6>#5$Ky{PX+11}nS(a4LI%o~#}$R=b{vKiT&ltJF`>x%2vXswvER{8I1w2rBa
zZM<l!l6GFSr*}|EM=v@l@9dS&rs_*2udWQck=?!eulss<(Nk6S^5PeIZ?ccd`+9MY
z+hKqg1HBmG#Yis(c@YU2<t4)oX5|o7Ka?`ei{UD{%d%hcX`{Rt?Zp@`#<J^IFUEN>
z-itFvO&&Zt!HbE^L!^oHcwzR!;+2P}>c@|Rw2^jF!V7KSq`Oq&mJ?y^_iK*V3m<bo
z8BjGrIRRM{W)dNzWQ?3d%J`GLXtzXP)9S3B=EZa`4)}4<j~QOf^y0D)SA3Y|#cZkc
zp}kL@wTij2-DKl?G0%(nUR?L$1_xZ=#X>I@(M$V{i@jLl#Z@+!da=xly<Y5Nb2+)q
zixpn1^kNm88%SB0)s!_}tfj0|`Fby!rP2R)w$Y1P@AUn?iCvq$*rIB-sxIl>o)D5d
zyx2+EMeZi|kX^X$`(?$wILG9m7l$Y(y*TW}@xeIGri^)na+Lhdi{Dj#OqT7b{$FEx
z{o%z4=2nh;O4a=7#a~|h?Zs)8>|CpzQGS*(XRUT#B^M|cy|_gAN9C6(S7h&Se3|1l
zCXU<s-2e6BHk&u)g1ORgi~gRKcj!`c*NdfmSO36^hYXwf@E_%!7w^4z<i%q)pLp?9
zO_gb#_Kf~qB`>^qsr(h?wHI$x@>Z@_>-1ywgBKs=+UP@hA3k}}e4SR@hY~(~mW#g^
zU%mL|MK&L@`w-^?eER8-flTB>G9QxD6Z?>al9ZI1Ki}(bz*6{-hDk~?mFi9H!`-F&
z9!bk2oyybuQ17U|p)xW#7>7(gWTt0PHCZVG*J(L?$mv5NHgl2r$lRn1lE;U<%H=+X
z`RN5zQjn7H5!}K)6k)R{SxnUgdZVPQ+G%}}G#^SauYNtQv=3!ejlqYq^mvsRDQ#OB
z&7b32`VAF)sOUo#AAazmk`IOBjFnm7S*MB1$P3qLKl<>rg7N)r<4-<RrAu?qaJ{#h
z57m9B;X_SMRnLd|KGdSuChL$=S=Wcd+@}qgG$tF8jZ{q{K8do44^354xi*^n(87n7
zKFHNl#%b$AEB3Y~e<s_I|8jh(X?P>9gAW~j*zLm}A3FKa*@rGZbd@!oX}o;YaP~vo
z`uE0eK6LkCt`GBk=;1?8A4dBy#)n=qFCUyujU#>N?L(sV+8~bKhwMxCBm0vw#{oVJ
zR6a8=1}h&z8S29@l??Y`gz`j%^|_4lA>Vqf=6Y?c5955W`{3|lysDWXJ7uV`%X)1h
z6BB7BEu@vSk+LL1YUyWz(}$=JF&|va-9C6IULS%KAL%Cpq)as>lRj<8hcJ_f%Da4t
zo8-e}Im^ar%lMndU)eRohbfe)<TP?RDdR*3>7&h*p8`x~lXFyW!g9{{VWSV5d|2R<
zUw&ed>Rsu>V&zMGSV~`}lI1?EP@eD%msLKjX0k@*YkgQpU$2r4vQ^iA{|UI6;TAIY
zZo^g|Qu6`3+kDur>i_4%4j*nL!%il<R6Zx2{4P;nwKG1P^~rOVb>Hv90Ur+1U%fT{
z?ZYAZVIPk8aFi}(fB5hl{de*hd0h3zeT_Sz{3PX+4}YrUFCS)b`A_>GvzWWsARHk-
zdRXv}59fWjK)>k2CCWzDCvB^rs$KcnfU7=SlkMQg1V66J+WGLohmSt|>%&dClKb$8
z6W)?*pbz(axb4G<_1YaW<r9PWeHO@o4=E3PxTCh}SIT4NFMW6-*9sq=vH9GG7e3_P
zpvh-r(l*kUr`(3``{ES~Ui<Kd@|Ju@z9*&l-CW}*x$OJU*N=XFeDUF{4{iNu=f^iW
zEd8kAM@>KAM<PFR`sMk{NbE-vKT^nQUN$E6>-$JvLsJ-&(UYsBMjE8_Bb6VinWR&B
z8b8v~<$JX<VR}C@_>qxGR#lV9kIc%m_;IbEUYU(ac9rMw<HT-#)^Z!n+<uhwqm&<c
z{K)G^K56nx7DZT`pDaKY^rMg(p|Bq<xvh$-q?jMYm6!0N0YAwvvncIHSwG_0RfaV9
zzyEdBsOo>9XnvIQqr4v#*sMfWR5gvC##L5cg))!}@S`79RsNG7)s$DK+#asg@}ssN
zvdV4zsN+X~Q{75otjmIWe$<zx^`oJz5tBw_Q?fDHgp_q@z`qGL^P{;+TKKV49W$*M
zw)W#^)f?Xkhc;*jpTxEIqk|t^RNj%&*^f>tsj*gnoU6=2US0j@=0|sS_3)#Ys_E(1
zKgT5nzcA@d_93rv8T!+Q`Z3Ip0rY|7AaXD%lMnHu3cpJ=+>a4{jPheNyLPA0Myi^t
zjkP5<!x%rtF&XQJ=TZFTJ^J@FlR-a6Ci-FWW1%05{4o1r@neo3#kLr%e%SnQb1J(U
z%|R*tA<jv0sr=U4c#j`mKYUE4sod|!)8&SMA3;At48wj*rbNgn86#z3Ci(GE?S)_c
zn8JLj>P_=DZn__<>S!}mGLtgPkJ*%h8}&7sOP@#1Cna1!ah5SI_G5`3>-<<RXF;;E
zOZ`~x#|ru~KPsjwTXmzhQcn4)`sucY$tq5}nrypK8@5qfE6c`tZSZ3w^R0etqHG~$
z+Rc>hESpkYzeH^FW4naRclfbaRqpg-7k#%%_V{s@6YgWOU*!@W^5d`{MS>_A#1TJ^
z%0Uvq@Bn`E<9E4s`SI0{V}2a><Axvq`tgTcBIGi~5l)il$(I|oQ_?kE`_qrV{P^3C
z(`qi~C}(6DRAM-<AJ6sq(4`B0Tx5QU{D-`(Dz8wklGo&@D}g=f^mTvtF7777yMEmB
z;}-okd54smbepvM%HR9tDdhTu5B>Phk4Jty_Tw#+C#vQ-<*6UfD7UieyG&j$*nH{7
zD^>ZL^2QJ2rtd!&-pMk&jhC-cOZ^8q>R9ke)qke!c^>!8kGKE|2T&vc1oY)e6F^!@
zq5u*H(7vxG-_A(FBxwN2D9K4FPC-dYrV1c6MLyy#UFiZyA3$DJnIWLxk|K8i8C8-g
zfXo48VKXb4P4;p*eHpT|nS;zpN|-Bvk+t+KU~i}83E*N5O(Y+C^OFV0f@C35iam|>
z0gDFEDuC7uiv>_TfD!?e44_m1bs3fppiBVO>4pHxQYw=10caE>DWlcomm<rtSw4UY
zD*u)dl>(?7Koyl#4d4gmKL*g`ntoOMiAgn;%Tp0+D6bhnEqZOTj><2$Ks|bWvOxe1
z1878VrfM3?_{y6G;J)?!|HaJ%Xrc0!0mL5YhtSUfv<aX;^A?-5wv;Xbw39tf?+}2Y
zl5zPCeUOe!It9>~BFU=q#;){k0dx<bhsyf~&{KJ@0DcL`{Zb6QRnmuYnjh8f7x;d!
zR2gkR07<GC2L>>RB0iWhgd8ffm}-=8gd6|?JPP1(0HXpJ9l+KAwsFic<oE!Z&oPb-
zU>uuidG~_}0Za_Q6o8rGrT{DfSOb_Ez%(Yd0K5VC0<g2`Af2R(bd$229y#g`=vz--
z{s5vX4+IdThsdzXBNX}5c8oG9fXM+2<Qe)alPRilT18B!F9~3205bxZ8NjRn$}QIC
zH9vsa?43i-Ra4Ciz{AlNFj+`0QoV}<SjgUGDp?c2a^)*1D+5@ilGT*P?Tl+F>&W%w
z22z$}BSk(@aPqlvvux+G+7?p2SRp(5bxz}UDG123;IWgHR|D7;!0rH!1aLHfX4#E<
z<Or{)9Sk5{CF9-z_EE(52XH|7!A+Xf917qti^V(4HU1XBwN2We9OQSkJjVh!uKbSx
zPS8)P<WvBkxCQ<S;O_uVtNa}040)E!vrfOToDblF?BW0}smjX%{G(i+tt>TH*c88}
z^6LTIQ2uWKHv_oE=IsFPtNcy?ca`6x<k_q}pgdIhe{$*AtY0~w1mr0*cpJdG0G_e;
zCHY)cz6jvuY2)L~hF1Z+X4sAszM+q#zYid15V?Z*5Wq*-4gq|Y9g#xI7Q~kTzRHz6
zh~z<h<0MIg*xW$h0&zk8YKb5cQ4*6$NXcKMN7hw_9?((*kur$32BUoXC{+-tS&)%T
zL#8FCb4k(#k)F*Aq>K~b-_$a(nVHNIL{`;1t}(I)kt2w$n>E9&_^#{XA6+x%R=tHN
zd4kAG$w%fV3y?B?LCTrUT49x3-K-T0qIeLt5bPn82%=;V8A8YyLa8812XP^Yjn#~0
zf-nRzIf!3_C>un45FLW(7=)#hW(=ZX5RHP+f+!b6d5-*J5LJVypypCBh)T*U2T_Io
z1NnxVLYD2PAZn|cYLx0^jUZ~OyjBoq^=YL#LDW@wy&&o<ZxBTPJNhomxJ7HsusPWz
zh^DHh8D)GHv`|S)N~<7R2k~<dZP;u_wpBGUa(m?!e?g}pItO85(j|zlK@6pLQ#E}k
z-Gk_%lAb~IqW_|j-a(Yvq95CRne>x|rwj;UpsK0AMH@sPtdb!?9Js7s0EaOd9>fUB
zNOBxGiX2Uj31Tdz7w07tjt^o2lZm7xU8=$?J2VKZ91IMDLD(rC(m^^&7wINt+LN8&
zrTa)f8Bo353+U%gh|Mq=2_i~~shUYa%;uh*62#OX)~_)f4q}=dd%KLwSu;I|8I+mi
z!XReJB=kAt-b(sh=F;bp^T`E4IMrG&VzQWALM{zr8AYa*eYzrul|igxvO(q^l+Rx3
z!>%FMlIzIzq;$z)yeYwh*ddn-`WDr@m9mZ8PR{4T?4<7_cagh;*h7&q_sURenfJ@S
zW`0oh9->4y8;=BWG>G3+{wL-4AdXRvlYfvW$djaue@f14HU3{g{LTC{d4@boo+G9H
zd=PI`{ly?I1@RBNE(eh`q;H=qL0k>uS`gRex~itS5yagf?gjC$N^S;mi+)=rcjRib
zRX_gk2k}7W!u%omB#5U${6~MJ>L1JXhxIbavmjnFf3A98$c2c#uT=7ya_NNeE#)2g
zUiHfT5<dp<iOtVJ#Bp7|u=$nzrYg@G0rn;$6O*zGNkZtYmM2*V$(g4JA!P`u=&8ws
zrw^o2Q>6_d9X-8D99y+aA!H7rX9&GQ$Pz-<5L$-NDuiqyWDlWA2tS07BZQnGlnbGJ
z2#=l^bA?bSgu)@@<~VuOXn865$owG`P<g=+5`LLhB!r?NEE-`v^)kMg>McVlE<Xh*
zCCO5%w{!?{k3Lyt1Cz2Uj}O5}*T~Z=_3KiF5cZ5SR19J0CjEVKrXKn(t`w5bHtR==
zyms`&k0DeIp<xKc${BwOA-puc-AzOF5UPbxdZbaB@)XD#tgjhDtq^L{>yvfJx}=O&
zFN8a_^^qGe8NWxLMI+VQn9?MKrj%x6bFu{~#Wn87wdM+TR>{vHv<aato9#mAr1JJ5
zbO@m%n@Qfqt+@OBcRodvmz}o9&?STgTeYsTUp!hj)^rb{hniNl|1b10D(M|UAK6x0
zwZ2UHh0s5Q0rXMizz_ye28S@5GK7?69!eP|`>Tt-c}K80QuQt^u5XahAzb6}IW~lG
z>>5v6LzqCB7=kGTGu=YURByLxS-0t9$}3|gqay@o2x~%E8-gnYcL-BLm>Pm71aAnj
z5GIA-Q`1H${tyBx35F1&hgA~prVk#KgPezl_+&YXILBXEBM(GQnEN!@o*^s@VLI~}
z<WKhvGbyvk+2ouM=2GU7GWmQ;`)XK3>9W@NdYpa$FJ^NIxs+TM!g9(AawRF1t3p^!
zKg4@stqWm&2!=4qhOr@pjUhY?;lB_zg|L}rXF}K#!dBU#A?yudTL|y=8JlyxwkM3K
zM&1#^PWmo#x617Wu}>zfXZ%ei`zZ%PI7m69^1~q<QGPUpAqVsm?e`FlF+3i^Ny;A~
zoCx7LZ{r{Z334igKiT^i`8O%Or{&n=(w+_B9K-V=+@xFx;bI7v=vT;pNSW#~#l;D)
z%JIhLb@GO)`8S05EV#www#x5N?uKxWa$n^SWCODPQ3#Laq8CQ4FrI|)R1U(zNE6nN
z?Pnn*k$tgUdmh4z5MFZH_aS_syb9qp<qi3kl&Ri@aDgL#Wb%#tM1Cf}kW%?owi_$s
zI6FxYMk3{j!$`kfKT4CTBv}~Am8YPj3?mgKHQ9*uX~RgzW_mJf7#S!sR7OfBGIJPN
zRDSkFT(&T>hmnKH`D)*<q9VDOJcF@B7<t0T%VxeXimGYzhfzRz!7vKZ3#+6EC8<GQ
zkz(}XVWj0RElaXlDvbWywbEo6QYs}8#)nZm4BvLm7={+c(aI<n#*bl4t)$<LygVnb
z5Jp9c)K?0lGQA4<gUZ+D*S{lBmCc{RsHXDjVbq}4Bx|YM=ti9|>V{E|NsBOAhEbp1
zfNU5>qc9rNS8mr1b7`Bf*))u16j`3;VLZO1U*hD|ieU$`HTiQGZB%7jN;|SWnI#=M
zQaXjvIgBp!ZlsLXH4K@rNcS*$gwd1vFJv!OQ+y11EAJD=Ro3?pV?Y>~g+#M3FpNQA
zl$?T6Q!qG;Az}O)!;~0?hA}LR`B5y0Vt5!M!uTzM-y;|q#;7ooMvyFm(P4~{`Y@)1
zF*b~GoYAB(#;ZB{!k7@o#4t=@m}TyXv>gA_7udoAH)##SMzO1@92935E|t97u6gKQ
zmB@F&9wyfOVFXkX3?oDjlMymX#>l2gz8}w%<up%>y_t<u!<ZJvKVe)BV>)a8CTD~(
zGmKeb%nqa9|FlD4%n4(zZ0#^sv0xs#gq$D70?I;i5h?4qIE)q<^v~@qRmn2S@-SAY
zq+21Z4r5Ii+rro$##-i^$aUm;asw$tZIn}h8*sBqwotZ)(P`}WwfkQf`&93aFm{Hq
zD~#PL*-P0IMpKR>V~X!*cz`^pD$hQSJ4`<!C!Oql`U&!P@)&uXlyUx$>jr;1oMdu}
z{8RP*C8sdwcv>ZAC}+bsr;_twT%cc6$t8;1EcA*TJYjqY<6{`t7~T%!P8iqeH^_g<
zo8&E0mg@cs{Rh@vIR{m8FO2)jAB6Fc{+~)7$+5vtHa-dCX&BE`{+jZfd=bV=$}82|
zuovFY-;(dh_o_E8G4M=(|Mn@2&$7G!r+tytS!9^U_p4vS`1b!RBS1vokBP{{q%@OI
z^3F0Qk03<^{UYceLCOeHMNl$=QtV9~L6!)zMvx|gv`o@PkU@=*o-(ncmQf{{BFL<K
zd{1PHAbSKQBFN=5=3ri&%qa;acLW7heI80)G9Q_rED*tQ?&U&k%90n3pa{LFN{U7F
zFPcf$F}^)}!1~e=l!>5S1nna*L{K(@dJ)u*AU*<P1l1z&rqY@<Gp5|3X&k3q1mz>B
zK(9hpBrB1XNts2fD)@o^qe`kq@Dsf=e;8F)c@0X<2x?JklXX;Y-3b0%tiP#~R|AF(
zBUnD(IIVwtqX-%^X+pLno084Q<`J}@$h7-2>N~ep1g)9;Otw+IZ7K3_?G6!ijG%Kw
zzrEr0Pe!?Q!<DeHlk6Rv;oH)9`5af52)eSk8`(XA9+aMB?+AKPej#O!TX~D2J`wa)
z$%~8_5W&C*A`wI*7!<+VKa3;f@*crp*4)fkc1Q$6RsAr^@CcIf8C9d?;vYdcf;v02
zF%gW7=+7T?vu0cb7Rq>X0x8QdF#?lvGo@=0SSdErPC7^@DO0&9ecu~A6tBvC5%}o=
zGN|%U1jTmfKVoFTCf$gSMKCFX1#-wmFgb!%225w=ujCXp)zk>4(d9vJGOfI3usJh=
zS*m7s1ap+njbNVg`En*6(JwNKn5>RqO$3W0SQ5d~2$sp7;_@t4^(!M-p*-O(G^--t
zza_mkf^`w>i(r2QMfs6<`2*tm2sT8pk&|qSU|R&+BiPL57ILc^t?GaLPhteSRI($2
zoyz~Mg5C5zD%mT?@S5*O^#R$50R#5vD{_zphseX^kqC~esj{cRF*(g67!t+MDE^4x
zL<C);=o-bz2u?+iKZ*iT{29StvSp%36~*5XoQ~jP1eYQ>6Tx_HkP8u<Rb!r`oG1N3
zqui}d?ojtn1eYVY9l@OluCVK0RezOoErRPRxgq<P!`@_aOXaD?;cf)?BKQ=+=Lqgc
z@F0Sx5j>0Fp{n^$uAKQXcZcy2lgH!})tf0lo=5N^f{#pIl5fdZ<ZDv4+Z(xhWYD+g
zJ0|Z{{y`2rE}JZ*^nOu!;;7#I%I3ES;@AW!d7`L(Qw|Y%C5a*_^JHXlRg)r$dwuky
zJ+(?QQ__%Wqew?dA4P^JGDeXpijt|mAK~(}cbRY<|F4=QimXv&V{!H<a#Ex>2c-nR
zq>w9$+$zr#MPB9kqBzR6D;PzgD9T4sfn9~8C@nMP?Q@GTDM}WLqBx}lS&}S8${bC3
zQHE|H%c?v+3L{-3%c;CU15}JczCm1%NhPv!6jh@5fnJ0Bk(BYPM)4E9no6ou-kp!H
zsghch+ELU|N!=)Ja2;iY`cX89qG1$`*xNLUW|YQc6Y|Rrt$7qJqUgY8OH!t76Gba}
zYnA*QMUI{N9&D?Uc2TrfE?phzomA2}ib4ErPd6s=!H=F%bf@<q8}8Q+m|pZ>$lhch
zQo8y^(JzYrvIo_jzz0MzkiCOc&EP1ia;c<#SQHbYn8>c-QH+RUB)wBQ{XiN;A5D&l
zVk~7GIi8f7q+boDD9lmJj$#f&OBB8+{87k_F|AS9D0b38I!PBPHSQ=pba{xFH;UtK
zgM@)7g0kfNsFlnm#F1x25so4fMU>6SWQ?3dN@WMG+OJVeVKSARrh2E#v>tsM%4;UW
zS#sp_?smz(#m$Xko~razgZz`Sg;6Y$qdJBXF)WT^NfdYG#EfET6w9L68^yjTmPfH7
zij7fhiehCHtD@Kt#jOLz)lvPa7VFiRYba~Ub<zL(8~tc5^JH>!6uVilMNPFeifzib
zizwd_#ZLMzl^koNFYq2VClu87M{yvEGf|w4qR3Ih!6*(zahSc^pBRr&j*@R*=o{oW
z`tPJPkIBA}9|2LEVDcAvl02nq{)}QR7yEA}r&T_;IL<|JK8j0G{1e3m<`>Chtba(#
zTrNj(EsE<=Tv5|rrN~z)Z&3b?;${@j(&?*qOV!+=+>WAKTRk^s)c-GbKZ*x(QHmi`
z3=gCDFN&8@ykg}e^06#TZT)<F!sb&_n$MzmPJfX={vP;s6mQr}AJb>?R(53+aWTAO
z_@4Ygek7&lQxu<-e~IEN-NsK!B-^FWS6+xAQ4EP=NWx(yNfkp<dNMM(%2ULUlHPd`
ze+sBPO$=%2=~U9DJz9P;W?*yC2K}de<{0wDke^8wGHVRkRDE_z4l-v9xm2DzhCIsi
z#*lCeivlqejG+kgLNWQ$x}k6khw~dn-sUojTq>p&WpA+<3hdIV?$TDdw30EDilIpi
zO=Bn>Lzx(=#ZWy4LkwkETs4OH7>qIOnSdW+&=^)A+wIcIQOd`@zjvz0W+k#RStTJU
zukV^4V|cwI{_hG#p)`MDSLT~>*GzFWV)(P2zV&LxP%DPo?5aab*kQA=F1?;g>c`MP
zc|%I07#gc&*z34vF*J{%e+&a+Xu<sF7}~_pGKN+$v}Q7r`+5p*7}%Cc&zRio4((!S
zA43P(GLH@2V+ifiI>yk61)a&RWEb*wQ+?IC(VO4U-~08TH!Xo*D3i_^`^3<jF1-mi
zeCW$&zZg353+V%67{nwR!(hr#RX>EXe3v#XhT-%PF_<VL$x$(kri>vc#xRyLjvP<Q
zd?&<kL>=4yc%wN63%jf_xG6T$PC7^@Dbu>-DCObmiNVXzM}|m$3;|UcjOjO*kV)hf
zjv=D*vc(WnJ}HLD$}8G2HHK+1G@6XYlQBJp88O%<!9EEyW0(~~p-Ct_3A1CE6GQSz
zNHGa>W0)7itr%{{Fh7O`a^%GDS4{pti$yW4mm^=U|7!d-F)WE;DVxj4)#P$=1-UYY
zRTNp~;a}tAvEvELzn0-Tvg=T6jA4@;KT+e!7&gbSC5HVm9Ef2n3wEjzw#Ber`Tt_r
zp<JGmyNkY?+(YhFz5C=^QC)v4cu*z3Qx3@~9Mc~#Bwa^hII4Poquku39itp4|4_Xr
zDDBe&yR}m>oY`v>`CCqq3Hq`6PYkD3<(U}HDnCa#AHxO8MU`KQA@A<*+vGCCD=}Q9
zTvIjIW4NLGUs+&!$2Iz4Ag?<yyoup$40mI=7sGwovmf;jnm%RO1NkYSru~odD2B%>
zc_Kg1AMw9ba{Z6tIrA6fOY#-@nv{9vO@wzb4E$ht&*a%heXD+;e~jT%44>(kq;Cp&
zeTm^KlW%04%9rsidZI~4tdb;?kW_iHNvN#0Ny<q`H3_LFLEdn--mRsXgtRQnK&G37
z^pr<m;|K57w*5b*&H~t}tL?&fK?^PJuEh)C=HOnSxKkX8dvSMnkGm(h>sQ>}-QA13
z!~dQId*+|XJoD_e-?NXO<lZDF9rXF8HX)4(%SRj2nvj*f=}75HPsw0HMoK0!v+B)4
znX*~SrjqQG9Ar*17nz%UUkZ6m$Y;V36NZ|Q--H4tv^JrQ2?b3kWI{<3N}2FGi)HS`
zO(?9qhzSOIQI*6~j3#I*DP}^5+o1%L17Ty5<A%~Elrf>c32!%RWlh+$S*v0~RTh*p
zp}d;5f(aGrmB>F-UfG2EuYVjlf0|H}c{Q@Ss;NOa%URblp*EX!$hu@bQr4(Q8#JId
zR7oQf8q@zWp$Vm_2`wniR84c)*IV>szNJc9nUI&s-zKy*VIcE%WOoyKn9!cS^GbXN
zN=FkqQ96?{R2LJvD(_}O^-lWuJ(>KyMH^tkKlEN?Z&lfc($|E3D(P=RB`%3Eg*IY~
zHi&tx5r)AO*A{IUWwfdvZo&u?Mw+l^sj;lXc(J>2lnGnA8!H?$j$zGMRoVWuVS))0
zO?Y9#OA{uUFxiA-CLA|miV0Iq*k{6<E!s2_rppK>Y~G^HFkz+~115w`n8k7CnP8&K
zCg+fIO;}X+#~Eif!6}z_<`xsI6xkFuiroZ<N{T;=bJM+~N9C>V=@$f_34WCXOb9CX
z4uh?PF=E1c6Rr(5MooyBFyDj)Cahx3LRGm`mWsZZT%vOM`4Sm_nVg|aR;YZXY?<8p
zUR%v%4Y`(Fr)v5?kK6FwP59S@jVd4U#IQ*=(MZE)CR<d#h}ZUQCTut1+!k$z%6FQu
zi@uxOL+(|*^BQ5l2?y9bXu=^A4%5?Y)sD6|ZfkBl!sb!gO|y-WBwEp}+6fa*GQ32d
zGT}T$R_C-_j&8-DVe_mkhRSPg)h^I4k~u%bmD^*yY{C^2uFAGG;h_otvFkc{$AlXc
z8S^IPmW<pMx9JD0+Fi;$@;)h*4=6Lo=@;rpCde;Pl%JwKX844BYQi(hv)}cN|D67U
zx6OQILYx^e<Fy=_a=|g-oe7^<(1m|-Nd0>gJ}~)6O0qgDKAX^StM-M-SMnP<cB?*%
z1ZE^OBexm9nemfZKW<Z)k<yHx>C#MOMq)F5G2>Sz$;c$CH>nvuj+30p{oeWrsmwV2
zT7PMjo?&V-jTvdxRO!rU!oO%Tn32&8!x+Q5x%y==lNp)K$ilL$X8DGZF_#(H*vwAm
zP$T3t|M&^cO7+lweS993S2QE98Tr`EZ$?Q<0W%7kQHWmDjCjiLWMQ(1ECWTBp$*@T
zF|t|042@EZEUs!sm)2KPzKLIoNoleSS(YqEmM5jM0wouJzM+yCf3R8Ej4G6>X4F)b
zf0|K^UY)F=@<RN&cP%zIZ`JCWQBNKg)R%`D4a`_-#xgS+n$gINQD%&0Wn;3d8Glil
zn9-Ed%#5}aS+?e8w4k?CNh>p2)7z-zZ!^wtFH3zphV9MhK<P+!Qk9*}=%V~7C+TKJ
zcP2f|=xN43X7plnxEZ}E1Ia#QUsC4M&y4=`0pzdS^ka1peK0wM97;;pFxl^{8Np;E
zIg0Q2k5M&K%ouCNI5WQeqW^6^p7{jXdIj|JaUz?O%$Q6mz^_+NHDj6?)6JM+hT9Ae
zyJnhEb(?0U&mw1=F^4jjoJX2S8F_CJSj@1RVPoPT?c{d;YP^%~BBlQOhuGU~)4XzW
zG4z|Um=Z7}Xhw)WpA3@`GD^w_F*&rV>sxFAlZE6W)qAxsme37#^uu_$87s^<Z^i{V
zY_@4D%^2b`u9B7I_FQeo8WyiLW0M)1%~;3gdNVeBAJB}A-$g$EW`=y=R>qXa+HKkv
zGq$qpEV<2$eP--8W4jqU%-E@>+C`a>6uVWj$BezoHx<SKGY+zOf;?o#VaoTnGh|*z
z*gR^+F^VL|%}D)8->oN^oKpE|Ig*uUz8ZIq{*}+y7tOe2#(Oh9FuZKWe{#JI8m^de
zmB}?TZkTbCew|GCCGHkQW^~Vt+sf}y?wWCu+faJ%oAE&PKBT04Z+K+JV>6zZF(F*^
zja*~5YftIVw`tGJcutqD7iPSqzan3&yiG2B1>bVCcXIr1*Z25GGd{_6&w^4Gd^Y2Y
z8R;#^V8K_GRo$*7v*4Q<aTdUW!b$W=ezoYkEP(|HE%=H4vjvGMiAd>{@4Nk?JjX;N
zp(j<z_i>W5nSxA7rXo|5X)H)<K{^ZCa5;yO87;`f-l7&{rsT39w*^_~GT*F}Y-Dya
z2bt3X2S<>a-<TA%AX-ApL(gkLK1zO4Y6@7eUey<3_&ZscEMkE{Ri56i#nX+XW<iev
z#$xp1WC>EneAXDHEqJ+ItI4E{1!XDaET}>$uPQ58P?27V{6poHEx5)zwpC^FCs~cG
zu4-ynP^+@OgKDXywgq*R*QGpr7uUdoh8Enm;En~2ENE=OVhfhYzP=Opmj(ST7+^sY
z3z}Nc%!1|?bmxT0cW5mvX!+d}8WZ0!w6dVJ>>~?0=F?}|kzIe2ZOL{Pw5LdK2Mf-Z
z&<`PbbYj?<>_T=WyIJs$s_DU`rzDhKWN)$$*_V{j`iVT(haG6aAPeSMV6tGa1w$;D
zWWi($hFUPpf(fULa+3-v8*afkPCJ4eNsc0=ceDj#l#jKbz>XiwJYGgn`9uqnFVcsa
zqLS$rOr=jFt8=Ous&}RZvy{)K%&}muN(z^PnI5ztWPyclC2bbi<>*zF9*UE6S>RTA
zvo!kl_gdg%;#YaVf(PyO<?OIS3o~@@&?2fgYC()XUnL7HSg3rFY$dM6QVW(@aNL3u
z>{@QYZVQr)HmtB<C6iSaY?mXUuyM5oYnXIwjI|c5qp!DM6Gawdg9!a!m29MJ=8QI5
zu!YU7s&|_OSJn34VZlz7@1mHeVvhxTE!fBAF>*h7z=ETxaL|JHocs{O!{ia^qR8?r
zPowYLQjYkOvgy9+uR>2-aEdO?Bj4iX72_EepS9qe9KiGoawe(~E?RI&`DF{PD8Fh!
z+xQ<x&UJ=2$eR}2qD(8N?=pGZwcs(6dluZ6{Uw{drSTyXk@P#Y|12=>)E+UB`e(1>
zo>=hIf@dm8Va0O`URV$xZ+vM%oK+wBl?AU^@P_<k!CO`TPBshu1Nl+qO(y9J{Mmvp
zOumxeRBtxE{D2h+tVn2;U#X7&i8K1uik~To$i$?K^NSU0>gfX}VUm<grh1cG(X70F
zWTvzt6~ok4<e;P>(^`>^lAg>=W*{??nXFh>=*Kq9VntSl*+>~SyA^xu=;P<KA{WEl
zWC1IFqvRp;l2Vq>iv0AtJN0EQNFUWmAHT2_MXZ1W2^=t3QPhgGHl(v5-U_1?eXQtf
zg=R%DD;itzmlegWC}BkfD=Ko3l4Louloh2ZGHe-2S+YB4TAsf3rJ<4)e^^nE&B|nG
zr&h;`D)g%4pJX+%Iw@n;pwzUYmP%?<ChgSfTCr)Tc7CTOL)EvU0rOWowT4zSvLfZK
zAIEC&XRV19O|58cMH?#&%$r%!T*lm`wXmY46=NB8+NHJPAc0-lmR;K4R<yOEy%im-
zXlKQRUE1AYc+JYBatk0<b|z&xJ5ky%($Baq^sZz#E4r(i9+aNsKUVaj^j5tYc5D6Q
zAhhDN6=xU@uwslX8-1V^gD8Wo7-GdxHPr|!hAAIzMOXgP_ehnDqKuYdi|hM+oE77l
ztg>Q)6%(zPZN(fbCaL;aR!mktg)-HOX_V>Y400wZ1Fm`+S9Pm?OwP4po)so5%yQ)H
z)|xsDrN`>q-(rQ;ibYn;+O65Fuv<~!pm9_ay~|;R&kDa4PBof~;<m!060a5YcmLRr
z0ftdBXhnz;R+SMeM)Te^F(&iL1*&(U6+Jl4VwEhhVkvzYxtv^~dRJPp#I9e;R?8`G
z#ah|0-{Ll_-gQ>2SH3~kPDZxkUnU#LO{%w4E^M)4s}<Xr?6qQ_72D}MRLxGxE^@aO
zdsM!M3%sArqvQcA4pI)0he=t;BUU(G>w7^S$E-N6@)K5^RDQ~e-Hm?KoRx#wii_+z
zXT^C{bL?i^CHg%p?ptx$iYr!Jl}oV+M)jZhYb>~K#SO|$@)miUyhF;8+?B1gN<SSQ
zSn<$`S5~~16V|Q$$J6b(6_2cV%;eT??TMP|sTI%Ykp%h?`@)LBeyz&_!%HiKtrHnP
z@7CT}k;H~ZL49@JTJg?`_nhPd`I8MFt@va`_C4BXCUG`=p?oD}s&7_U_?`u9`dku_
zA_;B!Ttt3ml1Sx=ZTN-$t4fmDj7e?ClpM*JBv*L~8&c9!k*QUl#)dL`^dmXF4H;}G
zYezXdGRg=xJh0)R4Vi7oV#7)sR@so%hHN%;x1om(*=@*SLo*wi+mO?STsG9_n7M8E
z%_cWCL1i2AF!|kv!j!yZJ{$5=3XlcKLS!>8i7ZSJ8%o$vlA(btD$fEo7;VtlEJjLY
zzjpeDDsDr6HEk&y%Con$swpGurM#RCvshVyNktpvP4i0suUAH^VnaQZRJGwx8>-n*
zok=aS23b?p)Xb0C%Inxrmybo9ODcZ4rh)9fb=tl?T0@pKvY|2MFR}^Ql$5#W%a0cH
zPGn0PT2Wft(AI`_^fos9O_BQX+yd=w=*Xl4`OT<rmS6dfQfC|P?9sX~?@D$frC>uY
z^t9n0*(Ns3X4s1yWkYXD9~=7G(2qWZl&SjLFn~T#C4+1jOvhgRSQ<(nMh+)OkkU0$
zjuzI8W-`Wxu{MmOPf<1FDHCj%NSUPa$u?}NqK`k-hARB{(=>KXCufi|ZK(C9ege+1
zVXh6%z1j*n9`<VUZ1C9NwZUYA*#?Um(`AE|F85QiQS3H2RIiiLYOm&|eBYivdenxP
z4Ssrnl$i!8AsfOfiP$id>pNd1i)>gxUr5T2OUi_cRqqnYQX7`3WVxJu4fL9Id-X$T
zwGC@zhuU!0hPABOW5Zq>*4eP$h7C-%exFv2@UIOU>6^&SD&Hborl)?KY*Wd08+Ool
zlDo*=s#osqw$FzBHk@X1zy^6T9lF_g%7%kB9AbEwJYmBTHPulYj?s^+Bn$tBJ!wN4
zii{vnYG>Gc)`oMG^EO<y;hGH>*t|$yA}^D&*jH?jAMq5C$DVI-*HwN)a{4Wm+?HkF
zUU<XLE#G5)pWKsP-va;H@W_UucEsE9*oG(UDs0D78=l$llN~?XaiJ?_elk9{;e`za
z=Newx@Ifx=tb9ejCf|^6$#*uqr^qbiU2Nee8$PR~MJnx!4PV*(W<#Nz`ntr~^)h+D
zjs(gR%2ILp6WNj2jzV_)Zbzbh+Anrww<CugzuJ++j-;wSqaDfYNNz_8J5t(_j(IB8
zo5qgR${STcTII=pL3(-yl@xgqmx-QPC0Qt0$!vDK`KT|dJaXFgcl2`Z(^nxEdvn|I
zn;m)V$g8H!Z%01m6<)^`P+riE6;JhZ)@3kGTWs)ujDOeNScJWO%tiyHRYkqPNH1xJ
zW=Ao4)+vVKc2wA>l_1;h)5J@$t29}L9KKI;?bFIjjUChMm~KZ!J1W^R&W`ac_`{A?
zcC@ymvK>{JRJEg~9ku9xlGVuScGRGJzq^_&)u-e|Yui!Bj=Ibx`HNDItWP$uqamdc
zDK(AlSi{XF-h^ROJDO3NlPy$bOFNFTvW*>o+tJ;Q9(J^~%RRRZ?N}3<ZM?^V_I7k&
z(vj>$b|$-!GOw<7bW{FqpVrfkf9(1<wa41g%Z}dc8fr%$Rny;&zVv?Nnz}!Z&jEG}
zR5gPrgUKQGAHOp=O!W@8V}$aNc8sErR>>GUvhLRpn`2uHm1`L%*inYf$#zU+%_LR%
z{WcU+?3l{rFP6=)W2PN<?YL*hEIVe~alnp)cFeJ3t{offSh!!CXNO6SF-~Q+!(xYr
zZna|oe}L6S`F@vjJG&fqI4LgDP0B*bJ3d}Jd~Evdh}sdeBfw^m45`X6B_dmi%PG^&
zw_`EG1>{0<5h=Y-?#C^mFC~|$e7P(<M_4KQ{e@wb%2&(rLtjg-BiF0mdh%arJN~s}
z&x^Q?cI>cYryZN@*lfoZ)@&!YlH16_S@cs(9;x|Wo4kj+i@7Ab<#dY}_SmtP$v$$w
z>TQx5hv+BlI7vB79+Bf#)f}T7mtDiRn`O*Xaz$l$TGgDPoF&hZ=Vkf1?ibm-WXEO7
z6+3QGWSpy%Yvgq~_9!=1@9N&#ZRK|;GT?p68#~@o9@z2Fj{oS7?07|aOg<r>lF!KJ
z<O@>f{?d-?T*B8(zz@m4vtxL`@WGCcl=q~3?er6C;vD)J^qKyJ{7OprjZ*e%+}?Eh
zzDVehFVvus6OEnt*?~k3EO%gq1Bo5@#esVVw22P<>Oc|)(mIfi!zOhgxdY)<hGY&L
z{Zl`!Zf3*B{aOkKQaX^zfz%FcEUFJKKQ@<!lZc<mkMs^?aG<pVZ5+txKqi^51C1TX
z>_8R={&1kOga@>&4is>pphLc%Z_LKYvpbN(ft(KHVlyw9oBWNG@$)!P_JF=H`IzKa
z`8wW+yO0C%4j3KSWWetZ6lQM`(m)nf_4$fJbD)@v#-zB)%TP*?B^@ZG^3o18;e2J*
zANYBya_lNkR&b!As;opA#NsLrG*Ed}2mW-Rngi9D)Ryfq!&rk}ldPpGKV;N*YaIvb
zGO4HX`VP!f%g~Tv|D5=X(wuBUHYJ;pGLHNprm%$rEmhLWfyHW^zZv#-K)#>V)`4~o
zw0EF`109+FLw0hYtD3emrHcax)Ck=i=+3YQ*;7?+;2!DaKyM~}$iAw#pKN))$v(h=
zfeZ(cBgw%I3{jOs9rCIEAI}uS9T=hfNnMPhk0!^EW65#kcv9AVf^2zy+hURflO34i
zz*GkoIIz%xX%0+xz~g||ff=lyN6vKUU+$hopRLB3BO(2#gZdFD50e9C2P_P&q>HqX
zb_X03Cn@z~_%hWkb5!3Q_OWZe1AbK#a3Dwzkzq1IMoAeb=0IL9LuGOi^CjeB^5@$I
zYjP}gz?KioWS<_?MjzDvzGhhIz$yn4I`NYes~uS5K#D{9x~%0?+Z@>Lz&iSRasw#^
z|8wA9`bKgSxtZKTO3hXWo*dK<wjB=al&cE!T@LJa;DQ4eWwSTc_Be3dffEkwW$!*U
z?S46;95~44A@Zn0?)Itg_ao$d{<xtuk2#Q=Cy4k-2Trj!oLH|sO+Q1PCC`!4b>4xY
zeCOKFEq2L)%j~*B-f`e6<r;aNl&NmWdEvk<HgC%sW!LA@X`Q}~cNyj=rYH9uc;LW8
z2mW*5jRSAl^~iyzl*i-~a&aQP{u%u_`GS=2r30^&zjk2jK`rq`!`XvcwRwhj%-=ik
zf%4ITud4DB<+B4{RFb9#T8zOr2jZOiyg-U1aN-r${bwf<Iq|0x)tpG|#4k?dbRw4%
zhC|w~PNZ}ql@m#vNa{o~Cz3mn!ii3YH0e#=On=m(NHet)EBG(a3{IrsT+)*1$n@m*
zcknYhA-8(S#6*@PvlCgAXQgCwB0D9A6V?*?VvjDSZ{*xgXigM!;@BYk=0qMfRbD6Z
zIg#Iq0xBuuL_vBXmHbXA?8G=8;RZH~lJTm>=){R3`te^}CFLn4$dXQ!qLe1fkY&ko
zq)fQy7kz0fuvyWGN|Zmy%48K%YO2as`dKfo?nDhIYCBPfT{X#CWSuftnHE!q8tba5
z8aPo;d3`73L*_Dq|B%*@;k*{wUrsb}VviGhooMPrGba`}vCxU;PPA~MmlM667}`f)
z$CggCa-y{pZ8&XL@^2?PQrbGP>5$frF2(Jg=s-Wqt=Ea(ne3u!YX2|(<sq#bo88GC
zWKZ%R8Tsjtzv=oo(btK7%v1M5e<ubwF~^CyOa?kJ#)+{``NbK1?FKtBM3$NUW&(y&
zhLPL4U<5_VMmjNyK3XMl{J6_XXycfScVdDQ6IJhYCnhPM?8FrMRFzDljC*68p^}+S
z%%aa$Nz#d!M|V2ma^mG2gUJcA>b1zBOSh4B(xH0uOo!VE51V1q>qJoX`Y3)U0xH?n
zSKnnJHlOnjs}XvXj5#r%l4+a1g%>%oSazQio1Iv~T*Ci3vDArWY%X^q^<ixVy;>RL
zs3*piPONfbgU=w3)lRITuO-)!>s9XtO6EGof1TLK5zfV-{Rx9<v~dfYyT~GkwXIHU
zqi-j7kg_B@DRmBOyD9R$Aqn?6vEPaAF7$BWfD;Fucq&&3Cl0aZsGRbY!%iG=;_FO9
zq86G^COq!MEhlcvnd`(!C%PWi<ZeZ$oH*^o8BTJUl*+S|bL4sQf)f{2?<FV3AJ#YW
z6((27YpVCU6E~FKbmFyHuaw6fC+^C2;Dj#no)h<-c);R^a=P(Z=07$ck&nqIq>PYs
zHl922!ifehG<4ymT$bf}=t5Q(UOVwdF32wAeQS8@#5;Md?$XbQ_nh_{`9Y2Ik@Crj
z&y+7J|LVjgE?69=mC4~k0(wI7CzXd&AQ3&WO5PmSesv*<3rU%zA(N5G$rNNtG8HM~
zr=}!7qNSyzb0IyYKw*91Gq{jZRc4}OCUb0z&*nmQ7s|R&&V?K<<YaCjbCJKhklTeL
z{4wj_T*xC^#)W+Bl93C#kY9NL7YZHG_fa90$S;pbv#<+AR3g7#AxTj-<6SUPG#83d
zij$>WC_$0Rk}g!|n59)xhSKSXR^EjQE>vSP;l}u9YmF6EO(n`7WM#673sqI`pDs+{
znAKHM!-bmkT4Zgqjtg}u^~m}z$WM)A8Kwm}Z6g;NyU^B!cCu&l=--L{%Y`N`G-dIF
zKKl99jNaUZ7A~};|4m9)D;HYR+o)u5FMZ3%{%SABVFzqJqRCIObWpt=UFbybtdcI2
zt}b*_$+%wV>B2uQ9CG2X3%y+E&922R^l_oD3oaMjF7$JuzYF8pHGmxC!eAE$s&V9B
zVMFM{$)V&h)f<-yBU~8i!YGxDcKx{5*%&5c$#JUpGcduWe}rkG3zJ-!EF0g2*)Gg+
zVJd58k<(QDbQfkQpXtImZtbM%(-d>rWp!bmsxi4>R&H^jcJd!r37ZRc<_^{Clrx>9
zc~s(a!Rtb^-G*dGwJ#?Peis5R1YHQZU@B?Me^ir4SdQ?cTGWLIMO@ZJ7-Mt33kxU<
zRqrAfk|)%sUE;!07nZrO+=U%04apzHt&mf!7`AZkD_vMcS?$6G${KPlxsF^<%2DzC
zCGP)R_?O8>a+B)aEJyDb{ld7_g>4MClY7V=F6^Z2B6pMD$J|TbNA4#NsNRFJgZMcR
zsXQWAMHk+<aMXokE*y8^gbR;YdD4YbF5IV|cHs==26@(nOB5O59Ob+V7bq81-uPAA
zW#v~~xJtjKlIxUY)r~hPw@CTb!rLzSnN<B`xl4-NlW7;~`~87R9#Z~u;rHYEnJACP
zOrE&#R4y7vHF-R9;koh`a%?Dn<wAQFyj7#Uqf}d~5B1)K4=#LU@`;om@%ik+7Z<*&
z`frrF{339iTVK??>5K{8_{l9Fc1409es&{~8zsCb=|y5UesQCu2c<mt)r}-l@5aAw
zBy}U18-Kac#Es-`q;TU;H>$aj(v4JZ6mi4gMrt?GxZygg6>#hSPE6}Y4mWagj_KS;
zPs!j$MmI9iWl6G8GLu={$f|PBANq1;XH#ytmy425_2zctH|2TU$g6zxQEii1%kP%Y
zEo<NJ<5$p)LaO(7N?|vSoX~ecQ8(h5BuxsV8=4zk)1loKLor#@r}4$v_46|0tb|$#
z*&uF|a-*~xmDOlv+^9e=OO_+ctKNby;wsWBspJoe=Z^mEn<{QpRe80J#_IGMZq%d<
znP{v<Y3N2HN^LjlP-NP=Zq!p=-;D;!Gkw)Z{-2!biH(ijI7w;hMl%*nAe)mN-Dp8+
zNy=2MD6QRSqmsWVZQW=`X|M7Ql$S@fPHuE|ql;`bH+srV-k5*?`Rs1=?qm-)7Vt~N
zz1--{WV{=F-017Z2sc(<(|1Ha=7ZhnPZ>ZCBnOdF^LbR<5amPN7)Bqik~D)clB10x
zN0Vd7v82ps93}cBe&hv%xr%Y38<X6a?8X!~JZ^a1nCiwf4rq2`x;*$Df!S`%P;;3{
zndL@VzVkkZ&AH?}Rb!&m8=zSzR??<=?QS^ePL;Uaa4Ww*UcYGg+?X%3=mfvY18)7j
z)Sw$7CSfu{MpaEr&dOu@<O`TAbYqbli``hl=4x^&xr$uo#&XIEQYKvK#+<OeJLK{G
zt=lzjtYz;ya=ohD;D&r;TFN%ciRQ*@H{Q6h*^Mo3+;!ug8(ZDj#^PIUY<FXa8|U4)
z;KoijcDYfsg??&(&ZX^k<FK5JtlZ<qUdlc-m;G)WpdVDpAvu@1jxzaCH%_Shm>b9G
z^2eZbomBZLSx)6=+&HWJoEz0S&PA16l7;-Je{M$}m)*Fc@~duKQ-0lz8}yqhY4a%V
zwi|cY>@`7?+sk+2u=klfB_FtP`K;lg8~@1y%-6?%#Qd=vPblAiYw4MsX!DKoc<#mv
z<uBcMr96JF@vR&0<jUzmW{<v_@7?(9#upCq!HtiUPh_S1dcjxvPb~gMkE4T3Kqe%m
zSf0p!_8^f5i9P6$-I&sYR37}IdVlpG2|X#9j7+Y2Q+P0mE1sH(_n4N^rmtxlHq(;n
z$n<0eGNT8V_vvL>Jjm)nP7iW<kd0kA$PLG|?39ZfJSqQsoZExn8Op~0jgrTMyp(*T
z44B`80`!7pA(hM9i-kQX!lr>N>OmJ?o#NRvk{T)F6r&XPpoB_tw?b(T%6PERgH0Zk
z^`M*wb3K^nL3s}<c+k~@ZXQ(hppplbJ*eWrn`7FW!uUgtuy~fCst131(Ak4%NmTQo
zI=kwVX^-otRSkMg4{A|rlXb|tWIa+Ut!dCec|#8xdC=H{zdUHdu$>1@Rc{*)nt9Ni
z%@!WCQh7@cG|sd&lX`R+`EL)}GWnjjr*|Mbl2X&j1MAWsXH6G|((LX*4-W=;FxZ2h
z9{l4$KM(qQ(946~9weKnKS_00bLrzjUp1O^4N!i+0tV8@vT_K0968j3+=~pu=)=ho
z<VaEmALYSl<zqY;OSi4oUo4HMPw-%(9I>iq8f7v$g`7$@2^ywTW{@+<S>$YT4ymus
z5rfGCvj>YkSmJ?2Hj4*A4?-Rs=F1qH2X+=aNdIxoNpX>GQpWLk;8pJPz^^>u!Iqmp
zUN?prF7hBkiK?0yWj?upTu9#Iipyd&E`y~^mdmcGXk6yOhU1#Z3J+E?U*$o%F^0-%
zi>_vK4Jk{t)`NBQ_2h={x$6DbgA?3Gn`I&8jP~G)2U|VZ=D~gs4zO%HxkJ{7f3{!x
z$+(lrE)RB7_K-5Ky_9|A_a6j5NI&htA=#K79AWdM2d6yxi?pL`9`oQhMMgM5sliXV
zZwngacFh;f+8GbddT`Ez^XxsI4Hqbv)KnMcs?u7&X3FDO5?uA*n!Nh;B8eB*J-ETL
zw;tT|;1+%8y|~GDjA`UkWSMc>gFCWGzZma&aL<GL9t`Yad@ei4q>uK%gNGjc$EhB9
z@PzW1l->n7@KpITIcA#ar~eBkFUeQrYgO~cgU8(3?>u<#!3PgM%0*jVw0rf1|K!2#
z$%cepd{*^eC|^DJMu}q?NU2ZYg_{@ZpS<|lt4}L004i@Wh=j6fzj)E-mEp`>gRPKJ
zno^(Ci!@%O<>bl8<YWpmr5C9vQkj|}doZ0B>AlG3MSd?bc#+YITwaX(RUa+c37wf(
znc0ghYTB%nY-Dya2bt50@Bdztsd9Vq8^b)LBzY-wlc0bXiE<bVs{D7(rH~iDdr{bn
zBFu}bUIS&!ef{K$ryEI)EJhah;y?aEWhpO8dvU;rgFck;qO2E1eTes=oEPO~OM2n)
zq5>yr??neMDtb|g%|E=TLa9tvKcW4)!&udeKfS2tMe7^!4ZUdey~~RlUeu)5@}fRP
zmaR6Wju&-RQcsRd-V3(@lZWT@gRL>WCHWWGgp{tPUNoaOS4j&mUf$5BYQ?0rY|<%O
z8~Wd5TUFW4i`WOfGDkji^up?e&5KT6boQc)7hSy=<HcAnMrg)vUJUkPh!@?x=;4Lj
zFQTUx{W#7)WG_<k-g0!Q@%vKN-Hh)~89)vs2a(@@_;@J2eutvxw#E;m%OVY@j37sP
zF-qm5y;$~D->u`A$W57MQ^tES!HbDrOj4E8DU-dJLYb=aX<qrCwtk4tU^0`OrFvgi
z!W=K=dNGfQiM;(#e|9sg8Vg0f(r%|Xz4~95Qs7{-@^md*W1~xsob5)DVJ9@N7b$&6
z<%7=)zZU^7f?hoG;;|PYFT!4I@?x_W5wHG%nGGByD!ayu`Shi-%3ds>%Ul*x7J0E)
zB}-&pTqEgS?!{^^)_Adky(`I8s<J`?tX1B49M;j-tEBnIxc|}rRmnz5vqy1Tyx8i+
z1G%1@)V6uC-HRh$9A)ngawj=vv2m9dyS>=M<^fWcYA<CUx!;SmYH1I8aY)r1_Tm`x
zV_qEh;-VLq*mc5-v#RE#7pLf_RdU9Qg8XXOIVR`H3#vDF4gLCgS+0Rhu6S{ka?OjI
zs^&W7hFn9A>aTfjsXRwI+@aqk@2UL0>^m-J?vvU>FNFWeG4>!{<cSwgy?E!vds)t1
zhG$;9^`iMM!*fpif_$mQdF91x`WuxjtAz_Gib{QOh4F)2?tDn>!$&VZ$(5fq@ae1b
zh5nWNM#eFht|<kPfS!>2iTqjh_WVts{1+em$+QA14Zo^92_>ly$tcNHp2CMpC-pNW
zwGU|+{_aCsAGRb#79X<ukWN*m_aOs4qe?RQkXd=BlUg?Ad40&PJO?EwnTyO#{zm5U
zVOa`&f%CB`lAlt5EJzk2<^8F`J`|yk;sP6daGccEoz#pzXg<vI!NlHTvPM4qK`-t@
z2_H)OP>M~t8Sj^K@wJW`O0!vpEGy3fl=5T+vLY$VBft7u*@r4VjQ3%J4^@5m(}(Up
z^zfmY57m8W?89F^)bQ!gjC0BxYf?_1)N1)qn}gKxp`jYBE~TCi^;Ob9wt)I2g+@NK
z<gfQO@u8^?omtb2>_9g6p#`NS`L_?PD6Pphq%3obJo+YW>q9#x?NxqQ)ANo#bYjvZ
zncnQ8db?7(k-k>w>BB!hjPhZ$54}{)13ugK_MwjteSPTXLw|M+^I?Fh8SKMA`XH6;
zsf;1?p(@FiRiE{6A4V`4sq!t=F@`?Qhn#1OW9h4V=*9AXX}FCOeVF9KY#-+MFxiJG
zKK;KLvsgBj{PmPJjWV5-31?7d`tX#8O`%iTpJC%%AHIL&TVB@MP8e#Q(#$?sd|2tj
zDj%$zB<MrP2b&LeInrczoYI`kMUMSpbgA*(6ps&HicjT!9|FpwlM$vbmEG+_gdX)_
z`?t6leZHz(AV+dLEc9U!lf^1uB0J)gex5G(;kRY_lcPLgiLCJ9(RQQAY9H44u+N9`
zQR7-pwa$n2vW1@*R_xa6H~6s2hk9*v|DO;4`mm8@n|#=z=CWB%eEL?EY@=+KYr-}C
z%DGeJPA<%DANHtZFQq~S>{rR!Q`#XP4$ISG0I35w;=@rN41N^#<CqV}<+|s?Cm&Au
zaMFhtKD_kdl<ZI+Zu)S`hciB$^`Xx9e~rq2{(ZR0k<Y8~FHkP}a7iVXDOY^>(o{cY
zuBrUG4>y#5|J&p?n|FP<qw?dYw0rdXK0Kg2^x?7U{g3iUUO*<+_kuj0FnLNo^Wiz=
z<v@MD@_5DO2lBNXY!u1gQr`LSUM2E7zmh*ZrG1vgW?00JuRgi&E3)~K-H$jw@_jI-
z_9KlS@ay9z@FSrgKhYEW@rxfn)1@mBWhXyg^{XGrRi4C;r1WGe`F=m}6l|s>Q~5EP
z&oyVu7}NTZRc5y(KAoyh??(pZ87Z0k$gGkqer)NlA6l2)S~!a_hb-Y~?bt+P0Y7re
z<FuBGmAO^@Z<IV_UNWB_`BiV()A~j(=tm(YzpK2kAM!ysxoy#qsIkduE#42K9|Qat
z=!fP<F_!fui<2GvDB(v*KT7#g+K)PZ)b*o`A7$BF&5v@FKgjZ=%(nuiq92u1lBOUk
zE3e{5Rr;SQ*%XiJ%4_&hQ+X{vYAX-$<IVNhZ0*N``-b{{H1MM#y%E`zZ0yHh6sc(<
zt9DuwY34_BKUy$vse12!ikGfde))sfDAI<5|4p`4^KD0I@0Z_A(~q2vD(~b+XL=Vu
zy86*g<^TB6o!*1&sq$t0^vQeq(VIyhl~*l_e)Rq-F`w23`Q=-XSm(!jKZf`*)Q_+q
z5kH3cG29O~D@XV-(vKN_%=BZFnsy>(v>#(AWBosFaXikC@v3HmA1iox$ns2LIGLP6
zPW5A&s+{h}epNY(p~a8cs&|ebbLsO)6KPhxH#woz4;vFZ=^&k|#^uKsmU)<XNuTQV
zQv!YjDIt~T&5S6$OAT$AA2IrTasj!Jl(k#r$71>tl`N$koFBiOvVvSmt|Dcs)qbp@
zuO+`t*Do&{#Qiwn$3cew`Y~aLVIw`X*RaWt-1)W5Y;N&ms~_9wGU0ANw$pczJ5|2R
z51CL3_NZj9AN!Q=r=&ll9rEL_AD8{O;>Qs`t{*WTm5aYzmlhZzN%hOcaaNx7;{@fT
z8sU^5r|D-@@-i9D`ElNl3rsGN7s&(<`J^Uy!mov^ays~7n5ZQP;JP0-{CMog6PDd1
z@A+|ya+|zE-X&#u;@=zY(;tuz$^TUEBe~e7*5~!qk7o=&`|(`$zVqV+{iPqTD6jo^
zOR1Eo=o@+BJM-hYV`zT7Xa0fwNXoFE{76^-N6i;`7GVC3j0^mDW<db8IZna=eq#7D
znIwQjl*HsO<gcWRY)GI_o|MgG0VJoSP`xPwNEXxgW|{!f2GB2n{sE*5AUz9m29T${
zmLY(NXS7TKWDKC&8BHE3f7LPv<lZ$}mH=`D4OvN%Yyo6fo+E(Zc!Pww0>~Y}Z!%N>
zRRj1lfV>>MB$+RO`~ei8#|K~xpdh_a0KW%Nn4T)DvGPJ==!{k*00R?Q;GzL+<JP!*
zM$-Z)rt+3c^wlXIKnaz+J)@NhpmYG8R~pJNtPnt1Hp`LaN$G7kS)aBdYbpis2c<Gu
zg_IBFN<p;%s<YXatPw!{02%~Plg(PBl+_NP4!tf}Pv!4F>nCQz0GcytL^dY>BAbv+
zNvUiWK#`h1j*S)pv}E3jY)!UNm463NQhoofT>$L^=nz0h)!QwAPRct|x&+WwB{|>f
zOVvGq9s%@Z_)h@6Rd25VE*kW8@1v5wlnVol0|FQr!1w?r1TZLo!2z^gV;CL4kN}1T
zFf4$b9}MZwYVl{aZ1dxrpD{{vIKvSEjHF01iXy){F-DG)L&mYPVEc{ZWW%1-q}k`J
zHZg!n0fYmHaK4jCYXDOMm`a~UE;y@A4`4<BGue~{o<o@xz-*N)-=Uw#a|4*i#6+4^
zuSF`)>Ra0ufIWcCnKefMep$S;nv*pyRp}1EL-&$CmA4;_fbt+EM9S;WXaKPQ?gnr#
zfcXI|kYhN2?E!3QXIvP-29_-fU@>J0xhjCA6j`KY0W7DlP|3;wZg6Q=Gg(8fCD*B%
z^#LR}^W!@CzX1MK`9{hna<eRh%C`nEC#PP&L)JQgvjLn7U>AG$2C$E^JAgeD`S+1j
z%42^3Cj&SYzyan512`1GVY>7llfMF#9}VCGm-)C#P6UwYoW9MqbJ}T!XTFm!O69*m
z=L5J9z%5mOF@P)dODefck^f)GAXn+v$m`^d0B%z9cK>l6-45UmlkXGWr#}nec>oXS
z4@nvAzW^R7e;mLQ`csw6&xsdunxE5pp3^=sd>Ozi%4_ls`IdY~%9!sdi4Mhoq<m8O
z=K#LYzmnfn9v8$EZl8of{1n8XFb0S5a}bGw_!dN52#JIEC5XvV7R0YXBnhH^5DkJz
z8bq=nY6MX;h~z<}2<oSB)gV#^kt&E>LF5jiHUAHjI*2quqzz(DQ)AAc{;TU!nU3}8
zgUAp>MtY_ovQeZra}ZgSXAQ#6U&6}HB!|lXttL0RG|Fhd1(7F+B0(5rMjm6{AQG?D
z51V|f%&+PT1W}M)i2PmUg@cH43lwECb#Hw6AmUZ8F$gV)VnGyVQkpD5mQ*#RWK%TP
z_kI~BWmR4-h+Q06x+(-wQRS6__=8@VtfKOx>G5X}o?^yoWOZ`YYJ=gH{%3M6memcS
zHl+^Pdb+;Z{|D3y;wI<SFerBg!6?~Tuk@)Jv#ehbe+AJbh^F%Su8J5MXKWutGj=s6
zTaYcuR%GiS+63`8UB+ogX&b~x&PDztua!{i5JblyI;ol-l+HnPQAt-yw;;N!<V8yK
zr2j+qB72j4$iAe^G4pw?e-H!M97ql#huzY5?%*JXusQU5NJ>6Dh!OOWD(P`GZgdc1
z*c=<gxFE&{;e2N-d0v~qaAFXXg0L1x=k!{m^V*WmT2FFn5YvL#8^k`AO%Ea##QY#;
z1Tiy+SwYMWBET+r-8&};a}bsw<_7hb!ShHF6J^?Y{qV2`vGu&RaJj)IhcqX2kS<vs
ziqxD>1~=V9dR6WV!mm8U(SkvQg82Sj^>7do)f=Vkx*At*6cz+g;)1p|h=oBclI35d
zEoSeMAa0%4K69L<OqK<)oU(#kNy_r93Su>V4VmeJz9Q@B>x0-pX?#KJFL@CE2C*@S
zO$>Jgu``IxbeUv}tUG<1O18_!<S(R1@2((rt32Zj{j$G@P4fk9e-H=gpMy9U#3A}U
z@^BExf;b+;5jJJ2qro4)&9VG~Hppo>!Te+pr-C?5zo;tDP|lL)f;dmPpnB!gWtW1u
z%;pt2vnW@|YvgrO=6Hh=eQCTE#BKVa3)&sZT~(7^egz<i2SGdx;=dqX2JtG0N9=v3
zY90sig#MJQd+o<_-*Yx!kn$}5TDEYCqHpA&DxmKOd6P)^Hi&mDcu#&HCI1-2C*`HC
z>H~fW;%g8)QX}*K^pgl7BnaVM2=7Bk7{X5>^bFyj5Pl9JQ3!cL$Sc?X5Pk_ESBTdc
zxy?%m$wEjTLJ}rP$%hxT?;r6^5ke*=DalkJqz)lX2x&t|&!j;WeVlZ3`A4OA26{$P
znw^ttnU!Y=AuBzbO0tKLgPv0*`Ts!f5Pl1x=oNj9uFNsczZ#b>g#00NQ#A!bFovM9
zSulh`D*v5Qm@E>4fl`!=CuKlaLVbaYh44oR|F$$151~W|B~@=3N~sV^Q~t^QV=I*n
zp&XO)WCgM!DWg@A&5}~T|8V6Hs)SHAgg-<0D}*K?R12Xx%Nmk3$hslaRMXZ9p|<im
zAyi7B9{}~3)F&ILUb#1EBYI;}J`LDDzy8eIG=$b6v|-qcY#u@jN=vd8DV0O)#=q$u
z$+jwQ7eagG9YXm2mU<^9oyjh$w`&Lmv+FbMu96;dL|xPhT-17n&^v@!2=hbe!`}WO
z3<zOSV`JYC`Z1|;QQJ1$I531kA<PM3ZU}=z7!ty)5N3xkG=yOxObB5ji-(6WO3h_N
z2qTq$|AOJ@5XLYWOO7MQtC|k{Aj+f=rZbrw!W7C>a$4xezl?_F)7M2FGnmgLWqkP+
znBMh`SKh>znW|-2tj!C-6@ohi6APr?9D+r;H3S>oPC8WX454@}eQ$a~@G=aMKGILt
zZLJ?*fe?ahe*d>~m>waeHyXm^qI%ha5Eh1THH2%jRYO=D!nzRFhmd=kVMz!pLRc9>
z$BWw15XL?>EDK?INWXoYt!I4u=f+hbtPWvq2)>J&{NmEMi`tqHE}9G-s%wqU#c#Q&
z$xUfC$Q(mB9>NJZHA2|P1=vq+B6pIT$t~noa$5-7DYB3|Lb!ZUU+Y~=c9VNl@7@sh
zDPNHh2j~Y?awvqu^dsa^l^+Y?ph+L|r0md~=$u2l62hqvPP5=l2<IqgRsFJ@I8VPo
zUL-Hcf>GXI)E<=9x2KGg=8|?jgc~8e4&hA*H$%9^n%l+o1LJlG&*jK`V7wE;UFOHL
z;a&*$LwLZZ)I1EKRw{k8|3Y{a!ef;`4dID$`98%n<vU)+y`aBT$t#NNdQ(Fzc^vmP
zgn^UvUt_7+O#2YRN4Zvqkvoh}A$(?KwlKbg@HK>VVWbb^TL^JsqzUWGAP<D`YZy1J
zh6GF!s{AMUD?oXoFcQ;$QAxXUND{`s7Ys?6BqNin-V|Y^q^D9z>M#tK^gWW6$=MJ3
zmA}~~EkhWY!pIy(M&|ukBhL$2!pO>`&<W$TOInz@Op={pj<Ehw$(-~-&*FXyBTpD*
z!zdR<-Z1ioQAB3P-uz({2%{i<GY2UY#_wSi4&%HUGs6&lJG{E2Ex2ze8pinMTA487
z!!U9xEsXb{j43Z`#n>!PN_~kiO43V_rB(j5t-fKSxllfg3JiOY6~ky5MyoL7zH^nr
z_#=$UVN?mDY8VZ|XvmsB!>C26M#?zVDK)~Vsge=Avr}z0>x5C4Qcv~Pmvz6aZ)bTl
zV%VH)O#T%{6G~H3YMO;HF1h|p)Iufl-ev1B+Jw<HjBa84t@19Ewq!f9eHa}m9m!6l
z4Aohdip$XBvVPOT?#vS`HH>U!oW{JTs{Du2D~#SM=@Uj@<^3rA$pPfRFcxxzAz=&+
z<If1HMKCOk;c~Qx@i~kUVT=spR2Zkj7!}6oFq~ny!Wa|ASdK7T)>n2heJVL2jQn@?
zqj4geB9p?HOrJtNtf24EY4qvjj4)=(aWz_>N*=Qqrqkrp@;}b0xnax;!xV;DB?&v}
zU6wGcDzQ=QVK`JG_ZD`C;Rz!c#x1U<H;e##eWYJie!5mjM%!~)3xyF5BO<3m7@NY_
zEC*64Ef&VwFygLg^TSvmTP%!4VXWY^i^=6`oF!o_r7u&-j@NMp-hFo^lT|8T9mX2v
z@~-zf<?F-Pp!|PwL7;C`NddX@GktFu`@+~7#<noFGufePzJKLyC!4#%*iG4^db{z9
zb^F6O6vp8&4lqBcdOt(osz>BX#XGGXWqyo2PM#p8=42RIuIT5*nJ~_V@hFVPVVskT
zKp6MKc)+p?av4<h7b%y>%VAuhTqUoO*GU=hMi_UB>x*%V$!(S23FEHvdtu0}A*AM^
zO8yHYm3(N5$B(O({@n3I&RqGC_b{G@(Q}O9Ss2g5IKDrA_4asaz6hh#DP3NL@tT9=
z-ePzY#@jI7v008^Y?pD~hw(wp<)fSeeDC;67+>Y07eSGTz8K$FkR*aQHW5JrN<#A2
z2!4v-=Lkw%(HdRR5=HbwJu$m}A!P))=jVVc+MFv|QYOhFNFG6o2oer8WQrhj1Sum(
z6+voMFQ1{6snSG{Rwd~u=_AOXl8g}yT%n&(St7_9LH-Duchs`6H<zl(9zhOzPL(XW
zqUBcpTLgLNc~z1xf&mYHZ07<D3r0{#_5L0~{S^99VThn8!^#oFM_`m$U)8Fuh~IZb
z(_}laYi&BMSOmi25!}9_iIiksDuORpw9@o45!^|ul_f>WMNpnzA%cpON)h})$#zu>
z?}#sPRg<zRoc8P}RHe+zi0Tp4kWCsziYRJEP%DBZ5iE_Mb_8`I_&b8OtgIVBg9sYZ
z>yh;%`2PKoMr_KeHKq)_s{Iu~lL#J1jZGtH#<1+|cxg7Lw@~#hDXqxX5wuZxTtc*q
zpnU}92rLnFh@fKxqaqm1f=&_q6G5*CI;;9F5p-4FErRa!9%N6IALVC?dPgugf^q*d
z_F>*v_4bRPKYai>Q00Rnn058XbKDSyL&;&}@CZgwMv}4x>U6=F2*yS*o5{Ec#z%1I
zsx~=-PtOd?IMjp)Cd%osK7Nv#O78JEMfubSrYWBu!3_FLmCTA@F>ikL;GSVl1annB
zF9MVD0{l{mRgU&++TsXo5&4&<envPV@I>H^!1>MSjKD>4e{X&>?%JTA4n9^!BJf8L
zpa;nid2Kwx6sf$;b%{n0V=`am3n&XCSVZ}vwx0an%CZQS%jqB07iL8SD<ilP!PN*>
zNpWN2&IoozusVV@a^!Q`V%M}yGXBfBbrGy*vVr^``7gQgdm`_{PSc0o9D)2K>y`+%
zs(f1n+vz)0BHy^&9l@RmE=5r9nzlEBeX=_q#P3;R+#kV#2u?(BGJ=Du{+R4R`eE{j
z%8yc(HNbI|$Zfu48BRrTmdR=IjOs19#CVQ=p1eR_RK40C=y6TEEZ3!y+N5jRwFs`W
z>kWB>yc?1Gg6gx7$1S-s(C^5lk2kp6`XcUL1otC&plY5{9!BsV<q`Rqd_u}Nca!S_
zK8xTvlNTy~8Nn;%uOkRu)6aspOx~&dJ>^3LA1R+A_$(JF`Zw|`DH9(16c@++E{-TR
zb2RaUQT!Cue+~9$_MW|_C5j?3{TK3AHC2)*lG2l@q|e8=lu@LL!W@N#Vd^NdN0B3{
zf0s5*6loczQ}yYi$e=tUB~uicDOt#@syAB{FSvv`qsSFSt0-DWkvoci=NNvAA`i>f
z+>gr}MZPGiMDfpcEq@egu4~1jD9+vjWWgv3$=XFxn9X=n*1AX(2IWPgh`;{h3S*2y
zQ~C3*D51POrDPPPD5c3VQFI!pl~pz6DD^p1g(xbrS&96EtW3(>FZV>%DE^G1S`^h8
zHX&<7Q7ekt@+`pS$Ob=-v^r5VU{aTq5$Z)zU-{c<`cqy*HXB9JSml33A$Ja!E_pPK
zq8an%WDByTs_Y)dwNJ)2Q4EY?P!xYh(Kd>9QM6~lt0#sIQFM$Vc3qPX3U-R3GxOeL
zmneFuak@s)jow`))%mTxo^1XTMK6^%<fk|LMA0{jY<bX6X1&|kU-b@%VhT6o;HZ2|
z3!_v%G>T#Lt5fwYGn_tx97%q^Z|dkM#;`dyidmF#QH-ZdAg4w#ks^akiej?zDbXJ{
z?Ua046w{f{P`xvw*v6%rt&%xW%%#sGO)9s2iL*vwlVdoFy8Ls)9)&9kcNC5&oGd#v
z!yxY#ojPUkMB$BMZxs8Y@I~Q|Vm%82WH^dQ6hSp|h$6pH6{ReRVyWzxC{9(ud{wg`
ziiPw=Dp?%G1$BfkW4JDg<&+gstc+rns$3JrYUQ~)VlBN=#~;Vx+w0nf@4a#+MzK*<
zZjWM<^373fp>I{mHaRhG{5TGGM6pxlyQ0{wd=F*YXT$y|4n%Q1iW_ne{;M5~;zSfD
zqd2504^xhiN254KIj(xU4A2+#R1_Cgayp7L^t0qS^1SN3KrwLfE=6%!<yR<IqqwG$
z?{^`)DK*m!52Lsh#cg)ok)-R7?Q=JZdkpWB57e}BXJ%Qd|JZy)K91rE<th1$l$z&q
z?sH*YM)4|&*UZ0>Z=!fhc}L2h0Ez!Iyr+L4KSuG1@|pZX%9vj%ojGh=42b<$+5|Bq
zr2j<zOeRvji75sDL6R7f#?a>k`ks(a_#k-<`8FZ{CZvcVWelxWq4g@HiXn9ja~5Il
zBBY5SEvK!t5b0t_AH&-DST`RTV#pXnIEF|JnPSKs!;lz;#*ih3tTB|1p-c?fV#pqY
zA%>zc<cQ&J1!G>B<c5|rhCkyl>4ugohTI(dH?^F3C|CH3D_;!xV^|SqETDP|#!!g<
zJ6V`4qI!GeLOi|lXoD7mk-p`IHh80U{)SeJ&EheXpp+zKdzPXkl8=B=ddtR%p<E2*
zW2g{A#TaVDP?KGiVyGTNaFXE<HEm@|6|$<V6s4N#)#CKxRcnm3VyMlqV+?g-s2f9*
z7@9Jv7ejqjzkG(V0lgvFh-|ES|BB%?cX~4>ZOG<i3suun_Mr0Cvhe&pk-t^ameMYU
z_A2Q>Nqtl66hmivml%eBiSI`5O76ZI*PUSxQhIyF@DIHgSv!d)VP6)@_8c5TKYD-J
z)Hk&Oboptjfs{dVI6cvy;J&~2JxoT3!5>2)h7mE0jKRvXQ8A2;VNwi}V^}cP*x;r%
zhPg~QHimJ^$5SSd6J^KU{Bd2H!o(88)EK74FrCeL<P1{AnHj?@<+J5zS3Xzj)i@@G
zW^zCO6ph~0exG8r#gMa+W|y7#F5bajXACYif;$Ee-AnpZ-ffEhDdj3p3_&KVN*hBl
zxk;LF$8<w9hFA=Z=i{&Wm@lgwL$3MAJs%5WSQNv}7;bTr#W8G&VQUO;)@Vy&SQ^8!
z7?!hZWelq*E65!;wbc|^(+!k0a^_Ojk?U1&-7LI-u=y{!F@{a5ceBi$TVq=c+he%F
zd`ApBV>lDT*%)>)IY#b|VNVQu=?6)f`#xDm`T>;`orpv9!{iZ_AB`cwEqxCjXYzkc
zodu8-SKEd6V8MgCyA3;y2e&|QcL*Nb3GVLhfnYoCK7&JmB)9|*?(S~i+lSox|Ej5{
zo_p@wx4n0FcBcCTd6GP(YECC$ahd<FcxMxELFMNXa9;V`t=h!|Tw?R}RK57$1YBnG
z3VBsk?(3!Z${Bhy0k;y6#Dt_K+-C2a1f0#M_ufgs-2~iAz<uV=$Oj2{NO_ciX>;{u
ze$3_*QkqZY(#LfXf1ZFBDt{?wvGUgmsKA=HOx`8neF8qv`}D+D%EttJqI@R5kTPbw
zo`^H)iw80hDb2(t)aj|`$xQgpgmlbXsU=BnLJC!xl9I}V)RZ)2TGji#38OewdJ~r2
z&@z~i(S%Iw&0#`LN@g+(nbm}B6q$8)6P#*}xlFi2&&}REWM1+x^8)m;WI+=OnNZk-
zA|@D^6eVTMk|q?R7gtFMO2yeIrIPX~QJNmF5+g+;%a~9riN2@GnNXfd1rutRP}2nY
zyg@}1DygY{pj0NSkX6ZQCRC^7PWIn_5^I^zfQbxSn^MPwx+?k6gnIP)D*4HTA>RM4
zQ4JY3GNCc0iK=O8LNn#fO^Cax*S9jEwFwDwaWJ8c32j-h+Jtr{v^Qaz3DZsJz;Lk4
z!i1y6w2mfpGNCiWE++Iap{Gf1OQIheUCC}_cT&PP{I_E-Hv5si$zM$9qiXt^<lFK3
z^7L29022l(A7nyqE^XzT+E5e5$);Fr7-qt77K|XrkRwg_l`@JPP0FzHe4MfLZ%;gt
zWV{Izm`o%mk(0?Oq|{6`VQNrcsu?CAB^H>lkX<v$StiUj>0e%+qw42U=9w^GC2JR9
z5eHdm!YUIMGhd>5mr|CQu$;0&<#F+Nebt!nj`7d{O%`B{32RN*YSGr2u%0#IzcFcl
zQ`?}X`kk_o++@OLm2Z(s<%bKvtlT9(1xy&dLbIA+V`w))Tc{s_4mO?SM1Bh0ZGy)H
zuL(ZcYYAGdbb47PtL9gu$?cm$CWK8GWX51KA|^yl$Y4fBGh!xeGvS;G=S|pd!VVMm
zn{dE{ot$<T*@)kw+O0<0BO8{!PbGg)<lim_P59G<lP3K`zw&GjS&Rk=#=lJXn+1o+
z!zOGr8Rd0Ej#&CJ^0>-RP^KgpPnj^{rgmD*<sZr!@~jE+&`BBpf(aK*cx=KG*@HJV
z>rL&F3IDQ2{^5ApgexX|7;7w=*m%{1YbIP*qur(4AaBYMPPt9qA!TrRk4t!u&HLm7
z@}UWjR88^pcuN0Z!bcOHneg0%gEzIw&*EM%f2k^8nedwaMkQ}ec&GfmEFRCJPbPde
zA(<J~_)*L+EJ$j`S4x~2^7$pmPL%I|ks^sHNysY=^sXEq4BwfN+>8{e=6gy?Gg47f
zlWEAbq)b&RH_|CjPpQ2anas#+Ms+i4Fv(&@J~Q&uvy$1!>}KSk$T&I8$VJbsl00VQ
zRo?MqTmds~4%JGTVKAd0^Fpe(uo*>^7d4|8y*ODy<t5Gd%x#tJmVN~&ZALu1jAm3+
zHJTY^=w-=rWO=dzDHH17f|rkgviSp9*^DZbs;Z_MW%ef2G-G*n)H0(sljfQA?Oex<
z24*y5QkVRZtVh;2<0s0UB6@KndS^4bn9<mbCT28cB3*6FXhv^Nwjf)Qtw^b9ZN?$!
z>)Tc(?aXLT??84`c_+$(^4iao0cNzkrFAu<8=KwD=u7EgMo+UmIZj_Tc}>ZW-t=Eo
z(nq!@w{Slu{Z*c6s$rn=jbkvxjG<=SGvmG)!^{|N#yB&^vtWc7qs-WzR2#|WujDX}
zDRUfc#uz5~ZyCm#5nOH*nPA35GY*>Zrx}yXm~4jimgY6X(gIUt7nrevlT0;Zni<pS
zGt8K0#(XnovN?;KP0k_bk}}5)&kPIbi^zp4KbxrZV&zNBSV~_;E>cUolFbcftfH(Y
z*N|(;b>wfP%xgVm>?Qp(y}z5W(Tq)IY-VVd)iGm>s@zIRAWgDI`1NX;%4&vF)!59i
zD|g80!!M_}n7CE$p)?+6^qJwO2h8&MaKm=lwrqw}W%!$rQTZvL@@<stTMRoWJ7t`L
z*hSxM#vaOEGyb6LBV{>jWWavq2jrS_Uti_Fm>eb-BsKnRhVYOX^~W1Tj+k-OjALr5
zf6X{<#tAb{GC4<{QoW}s|Cn(`C1=gpulCD%h8N7ZNV%kHnpehUGp?|C)r=dIYpVA;
z<<dg!Cgm1+o4iBHD%_QeE$8yUjE82VwjhlKkIZ<?g6}N)iSxvaXJ$M%<Efe|&_mB(
zu=$02X~ruvUYqeo)qFDJE&ZKJ-kb43`A0Jn-PX_a&rCX>|L-@?uWZI~z917>keHH$
zlu43Wkc@tNntoEtE4c+Jn50xSsVx89b3UyF-&;_`f}$3rvmm_%*(~_ThwWxyaaId5
zQZlJ&Gh2{Fd2TLbi?hb;7UW=<lPo~yvLH7l51E(DN9HGG*#ZUhZB@{MLMkat8Cn>{
zD5Wikx1hM{Enz`P<)tVF3;OcUJsHPnK`m(InQIo5p_Eni<tX{;qJl-f$zrU?W+m18
z1En%qg{*2pHPtI$xvF77O&Q;U+Hx3J^~J7ZL0t=evtYdiKUz@Ff-x41wV=KQKXJle
zEofjtLkoslFwBBR7Bse?54%q7G&Z5MCYxH&jMAKJLAE4YkutkvOVGxGwidKw(w%H?
zK?e&us+ukqbW+}#GO{*)rgXKS8|6(id`hY>zr1=_(34>=vNtLDFBVkd&K2)#K|kjG
zRqp@`1}Yy!8EnB2m3$x8PygX;jv!my)<#;;{tsh^4+eQ7Wt0W--t}k;2Hn;cskw}^
zV6p{MSU=tZ$8Bu_eWC@EERZ|Fwu}4key~$5m~Fuv_D&<GTQGw%lbl7$zgcB5=F%5i
zu*8CSbP4BE7LW_cMHU?3lJr<?kQ+5i%~A`NS+LxK6>6%rl$92&qO2y@sNPsFeRk_C
z*v)^7Y_Q;W3(i__&Vr2=Y+~7A3pQJ@MOI%;wUy$uAi;v0TmX{=W`-73W3|9Wx2wcq
zL83eQ^`UbrxMaX31~<Drq}KwUs`OhBP~I#RLKcLjX+hM2RwJ|n?23`Q$!+9z3wBU;
zlDkNm-Rva#I__a}FS(EW!-D;)Ch-a!wBS!R%k$l{zvzFHhscS&jaj0GBNiOB;Ftx+
z8Sa~GNZC<esS|9TwBQs)lG7IaLqDUEZ+9&?Z^6G7xlyyeR2M9`XhA-1mP<^^KGToz
zD;C_h;DH6+ZN{q>T(jW11vgl5la!AmN}0TFS#X=l9r7-DkCfhmh4I0rHT%{0P<{kh
z<d44i$8xE(;FASUEO=_cGgiJPpR1`}Sn!hmN+qBB>r4BF&9~$`3*M{V4|0X6#VfxB
zUo2?3%b1dvny(flp~$px6j+gnl33+i79gn=$*lN}$>?JGjFQt+s2WF7eauu=q_*lZ
zIaO(4S}VS{BApfKt>|yX0D1r4ii}p2v!c8enXJfcMHvbEB8wGStuR<o+KOx(GcTE)
z%t7WPW!AYUxyd|a-E7Ebm3u#;fT}5KML~KYvM^ah_3o^ruR<|4i(65GQd0GnqKpq1
z<E{ElEHx{t-qDPz_x31#Gk)8-Wvz0v2>qn4U`0hMnp@Grib_`eV8y(}Xkf*}vRY+M
zSl5awGL9A1*sM;b9IY=#4K;F2D{3jPZABgBU3u*N$Ywn&>QjDFz2DC6hE_DPqA|lJ
zRy3nDwaR0a^dqp!9sN+uB+vh{qLmfh+1r}zNJ?)TE81Goj?MOD2kU>IZ2b1I`A!Tw
zlU>LaV+=o2x?0hVBI86g^swU1b3;#3q!*>P6~9pWkbPBeKgu|+<3KAqEig>5Vh~4L
zbw?Xa8DhmyD~8dBTQQn4f*eWyN{%9B8IqR680BLr<H+&k(Sn$0#Uv{xTQP;n9NB#Z
zjo&^lHI>OUE2dLqv>8^+R6fg!*~<Izi#c;;Uo)9cE+D@Rwb+U!@^WISysTIzYih$=
z8<tzKLKeV=$u_LCVwDwtS@E|OtF2gLg;kBe){6C3Y_MV-lix_cGrmJ}{RsTs3Ja5s
zRt)TiO;-6Xv;OmOvlUyIZzU5*6KN);W-otC2kvM#E9_RBFJN?75war80w?LR!cFmz
zUQ(v@QT$|p3|evauzr|Dtk{-Ii^`dPCoat*L;nKC7z?&pvE2&WPQwm1_gS%%O-XiH
zv75d}C3~$nE(^9(AMg(=_H&X0<UvyMKdo4BQZG1U#bMd1R=l<1h!sbzxNpS+D~_qk
zGcuYLC)hkG8~LQ+!5!_C6(9K?$Z6*PsODKK&dJtL(_W=qu;QXhE?My}{jy4~P;Ot2
zyJp38`VI0fdDDtp-wMb(q%8L0=D4Rk8~<bS(27SY`Mb4#NqNlX6Y{AQ&s6VoD_$sn
zNqI%SwxZ`keVe?q;=L7xZ75<xio5!u@<CS6iceO2wgNUJvZ3V}W0__c<T8BWv|p`=
zv+38OrP*{QwjqfP8JQ#{CH&roWc2UI<TAJoDd}m*RHRg<mRWPYX;o5!4{uFpLwY6|
z$gUgpWy@s4=T^qdHe|6Os}0#~$gif#ZbNQ*4l<|8bJ<Xb<ICiEY{;wfe3ZJHR)A8F
zETnofk3dlyirLUYR^Nu=HkezYf(;c}P{M|iHk7i#pz6!pP+EDs4MrO@8_F;#r}DBk
z^iWG;8l!JI`Fw088-B3qPXKRdLuFRhw4s&_Rp?dKwAE~=POqU7d4_mx<v+<f((95x
zlJ!(?eH$jI`8HrE^KC?FOg15#lCo6IY-p~0$j@kHLu)pN+t9{_VYc|bHuSThtqtvL
zXwR-LHvCNKKz6jD6QwgLV?KNo*Hw8>8@eg)F55(T--mI%l=rsb7v+6ySjFY<uaaRl
z3>jw_Kn^4ak%NVlq2&56@lw_=kG`qpHNu9GYJ^`Yqih&$!x$UJvN@g{r)mtJ<0dGd
zXhV?8FvW(cHtexsuMN{|m~O)w*37VBCS`>Uvuv1c!!kMM?`d-wE+yxZ^GI2q`8F(|
zFC-U{i&gIu8~))OpOW%!|8jQC-><EttRjov(^lKyz8NnfW3IJfoejU)u%5jpIc{y(
zK>wZGNNyrGlUvBGq>PYYLk$jPVG<;*HrQ;i(><hvlzOKP9qwr^Sq7Cf`l$c@;I+ZW
z#7_oP@AP~K(ZfO;qVyePjFf4&*|1&tGu{JaC!4!$*sbygEwRsrKV&PZWIyEqDSzc1
zr2J{aUzERXI6*l?%3Kapj*v%fI7T_HdQb7^^+_8}F*!|!_<eyhHk`HLoDJt~cwoar
z8^+($F4$nb9e2Zqi#A+h@xOB1-qZSz*DkYpg_QYTrChV&x=NnJ<E9M`e&qfZ!`tK?
z@-BIgyic}Cibs?a_q4}0c)7pCpV;tJR`Z@FuV*$qr@tUylCM<nYf924+B+NG%QD+>
z$u56c;G>)oc8sy(lU!-#ifTt5JBCa%Ot@|MV#8M(;_QGO$?j_@?RY5r{hGe76WRHL
zfJ|aXQc5!NJ2E+$f|U9zQ<2J!)OMs{;!dw+rlhswdrCSoJ(+>bNXoRC>?m+wKh))w
z#g44Zv#H+flpJJEGM63IS)Z59l6I7$<RkOTXm%8|<1HVjQix$;vItp}lzA1iqd2_;
z*^y%!>?mzVV>_DIk$b)&-i{h})U?BBhsLrpWF<SwQp%C#$qHmeQpWF|A3xA5lU2y7
zWHnN1s@st*pT6$3m^84XA*Hq*byQ7V%8z!`qtsXVPj-B1r%&6Uk+G4i%Q}PnFcOym
zo3f^Z9UblZCkmR`(cF#}3|rdKj?#*3O|~K1k}_bwk^0_mZ^uo3bgKBy_)d28u%o9P
zomta`{8`m^mBG&%yRq4w+?^i1?C4GZ)sA0O<q$ji*wL5Ges&C0d4I|PQl=e58LWC|
z07L1+$l>G&)jN{Xc)4*DMQ)oQ3qRJ5advp^@YylmjtO>bwIjifiFQn~W1$_3?3k=Z
zSU{OVP9>+=G2M<C^qJ&bJ7!U4lQN4rc8ugPGmpu9m1pLcfL1RsEVg3_!?om6a@jZD
z*OpUcoE4On<SIK>Q`V62E%bF+NB_-^^^^^EIMw;`JClueY@%!?Ws)tjr}zLJag!`Y
zJEK{)Kt5znS9(}dqs5K`_cbevZKT}}hYU+U$dAOh>~OQ`A!VFFwcxiSV8<Ri_Sz9t
z`EENxc7)lK=Z{Ne#EvMNF;%n8j_t~K*s)XjE<0|hb(y=)xX+G1>}dZ$J8j2)Sx7sM
z+Hp*_$yeh+JN~jG=L0S7f%Yd8{lC4_4S(D9&&3_G<1pn2DM|B}#vDnE$7MS>jVI&)
zC}WhHR@F#pJSk^%O5-Uzsy)y|{;}hX9m5~!=h0ca{@%qoF57wX0y*Nfeo6e-j>~p<
z9Pm2yopQyF3Jz3s;Hn+h?6}U#4|aT{+>mp}j$3xzX7dSo$Bw&p+@s$or#91vdO#O>
zXvZVvkL~i*E&UIHr*=HE<2m!!s`rH*FX^vTGH9|s)El|(F?px*_i_cesQ+R3$&Sx<
z6mp=j17Ga;YDZ?SNSp(3;Cp%^GPwgO97rsymJCT8I2(tg%#)Ea)OQYacI#U#rAks!
zjQndNH9d_3X;tstWJpI(Pi9bgMh7w}m-le8IFOaiY-An>va8-44&<cgQb}$H=5w#*
zWs;A~PZm%$1s&MRnj#Jqb>KZ+7P}Y=;vFciDoapGlBGz41Ep2(_6M3#xkf2NmUW<<
z%F9#EJ<uvS@Ph-39a!Q(We2J_(A<F*?5#@v=s-0G*5@=<SJT#@)Ff*;P@7Um_12}F
zPo~v#puPh?v6<<i)|AqKY)Ce8pfRNhDQjBvW?VDb$PYF7&b6?m1FamG=)fcvw02;S
z1A`rC<3L*`?HuUhz|Zvd4s@V&BxSTtvft^YAL@I*s{`E}7&*Y$*MaV;rndt<=si`^
zOBS2;GRZFv^ilbsWcm@?kInuL3{d$%8G-dfn2b{SPzQ!7AMU^i`bd@h>VSL+Q3f2%
zWQ@wkIxvntUL_M8n8NWVGnq|JA*ZUEX_V;>%%IFv`7BC5epPS|eXaxZRPTHT7SI=}
zWD!MfZ@AQfbq}>f$BgS8Smu!T6|usBMwPW~54GEy_0xQ%1FKlPnp{J!CD)Ns^P5Ay
z_o^3faNu_bHp(ehKwGq5zvOOmV6y{T<bZd;&iVv3mDK?g-Ar0k-jVML+8lT>OdnHT
z4i4yKfy)86s$AF_J_q~`ly#z<69ET;a>Z~Wof9Dk!VWxe;Gq;d&~mZykOPMuh;rJP
z1KS+fuEyCz+2O!W$}V!Z>Mf8SdmY&4z#l3(=)ivZ0hO$)fj{YgspM}5&TwxYap0%}
z*BrRcu44{dP&LOLIN`ua2TrNvtOKX%|ET1Q1M-bF*$C&DoLBjO52j)B68WzKmnm0N
z%~c0psU!Rb!<({q=IDpFylyeM?Z6$%UGg3&z4ztfa8|!QKXTx)1L@zyePq`Y2i~Zf
zr<7+7JXgsJ2VT-&spK^`zKrvh$vc(5r+gq!zl#6lz-Rgw2a-CG%&9NrR|n!KAQO>^
zN$E}EM8-$@mibO4shvnpPeG<6Q>osDEs=(vRweO8jp?1pz-Dn7&52BO|D3pH4UCzc
z$m4`OeNSeQ#fhv=WOE`r3v#OwayXGwc`hg9rc6>SuLG5lmw7%X@>2?sg~)<VRN|5s
zX0r%cl$2?UIgvX4zazhd6D66KA`N7_M_Or0JZW@7qsX*nDC0SJdHOUbDmYP5=IF!^
zPV{i1rxTT(sKVZ6PE@5dCaXD7-H94>8SN)0YC2Ji&D!LTPSjDob)8tl8P!useK`l2
zG+@$@Y@~W0<wg_bO`ZSUuco;ZEu3iSL@Rc6cA_<<J=unAOSU6rspNbVc5tF2lTIps
zmK|M`|LjCpdN-AHcVbmyeXI6zqBq0wP8@rr-G8M0;zS=O`Z63$_9Od~1IU4-Og_ko
zB#-r@PF_Qt80y3@Cx$yQ!ih1eW+Y`4`70@p79H)xz{L8JAMI)!t18DiQF`ZpqfKyP
zqRJ;ZF_}I^B~zVn7X0tboz8HE6EmIqFPXEPn9XDkxyXsRYN~loB!+Rm6AM(b(22ZU
z{>4mkJ&KdpGAEYHj&P%;8!MbxDO=BlZZ52HVztz}kk5rRPONoehZ8%USm(rVoZL;W
zcf#ewmZOFZZ2m4w<<y^bRpqg^$%)Mjw~!V&p(qKYi8Pb4W#+w!vnsby>`pjT;*@pa
zzZhgjBQ6^~PI#U0IbrnaXXrL3{HzR+K{Zu~5*AXTDvwcuetqL_r=vA?Ik8*LVkbU3
zvB!zMGJYlPo)i0=_(RU4h~b(O`<*!8#Caz!aH@k&9Hsn8%4mN%@i+Ytd06E~oT$q?
znMlnshR2;a;lxQNPN|wRl+#Z9L+RVr*!8h?R`s59ViNb=^d$xv>LT+?<iAcVoQuo!
zE96yD=5@Rqt}DMmxk=t4Z<BYNxJ!}x)P-^1i3e;xbmBGTkrR)dctU?hJ|&Z=pC-?p
zc){c)`HGa$=FHMBiEo^E%j6yTp8P<5B&8<40lvsZ_`2b%6LBs)DQAp4*3UAykkchM
zj5Q{5A+ZZdTuAEDPlRkPB%`EuA&m>)(UX%Y$dsg1rgC9+qyNsbv@T?HArrg4C)2r*
zUR7prVS_rmGc)}5b2f_$Syhev?kZzucOi%C|Naq~OZDca<Z<E4JVSxxT7DM_xX^)N
zL9z&0$c2(~^vh9UHqE28qAnDp7k8nu3svYPq|Aj<bb|{<N@-H2ji-G3{D$U285hdB
zP)_w$bfLWR3NCC@>s5*24=$WhNy2QcsteB_Yt>w+?m`V0YP!(Sg+{Eb<-(7Y+GHKF
zE-A|p7pL!wdM?yw@{`INxG?q~{lsjnl9nzsaiJ-j3(n~4-pqyOs<#Ejywuprh1M>#
zVY40CR@Ka(jP}Y0j?m}Z(S=Sfbe6r7Rd04ty+2cK+>Gn)LJt?#%Wh@T(}hJYEOw!n
z3%y<V#f3i1r@7GAg?{v*F7$U{fD3>AY8-LhFp!}PKG-GynbPMXucq>hFy*akW0(uW
zT^QlQNQM*0U&&FVe40Y08ciQVj&)%iMe^}3jN1O+PyC4tC%G`0GKHL~Dm8vvXSxgf
zi)u4mnCZeScFlHSj;a|xJ8mw0o=WDsut51j7t%e^&xIu}EOlYET-e#QOs@8n<u0s{
znlZ+vXY_{-uavS{#-xRf#W+=Mvh9AuTG@A*u+D|wq&TOsWG<udcNaFgaNmUo9BPvb
zeis5RY-V$d3tL@Ckdx7-Z$pQi)XdGKBo-H}bel@-lwe{wDK3?}DIU`6f=}gbt0GAM
z+l50egj@)J>vCa_3wvFNs>+z05iV?ZVTTJxYUq2%$A2>JbYYjO+3k{VkLvqn9~1e2
z@u`k_^A9%nyKsPVko=RB-oNC4<W?H_L_5szG<n2@qpIc@<+uwcC@0BNs<+8R{3EBQ
z3ujew!-aD$oOj^@lPly!@)G$kDRaLpr|=Yg|6XNsjl8aUOIdM~ev7<K-XZUjGT}WJ
zrt+zd4_$a9moGO8y75>p$Sla`##0xbxp1Q}lDhF+_OE7q>B1}azL2AZ>;77e_Q{1e
za*UlYz9mK8x$vI;K_wqu*mvC^U7zK$$qB#8b>6M-lsFP(B2vP{Za6p>@xuJCO)@vW
zb0fJMDcnfuMkY5hyOE0Z>B!V%8Zs>@(|%8p+XbhmWKelVH=MlPqSRzzn3K#(W+Stc
zIow$KSwAFlxsjX6G<gaPB`+ym<GF<S*_6-c6mp|5y^$M5+$icsr6j1uq?j9J+$ift
zaW_gZDd~ohQi?Q?rO9|w#?QyM0X1oc^(85%^70hvt>8vQdL^<d`2$(mjVctGu<Te=
zqgN+usJx~dQ-<qDRBbovxX~`1);VUV%ibT!dTtczt<So?8$YS38o1Gr{_U;T#`Gp+
zQ?eP^oRn!h+=*-DMr${I^<b0-ZQN+<Mm`Vnd(h5}_HImbW4aq1Sl^jE_(bdI#_cCs
zCpWH)G>UX_<7YRz%GN7{p>7OwqnjJu-RPm_($9^a%6n0IlfSspN9BFpNc2=+-~Mh4
zU^tNMIuwH_gUKPJl-Zuf4X001$p|+_%8IZ#iX2Cdc4G`>EGg4o$fO_S<K39RWTMKO
z4At|=vgMgfC9m^?){@VVrW;W=X1X!UjoEG-$Yk8)#%4F>xG|T-^W?~MV;OzE8w)54
z$wlO1Qbt=M+nMXToXJWzR>@xh^xQM`#aOK>*SoQXzE&mc-1v=NnImkV|4wdHHA{K7
z<SlNPnQSE!RIiC5zhzk{RyS-EyBi)iymF?q=_FmGERvhj@u}uhNze^HJ)n|?bK^qv
zuu2?d5p!dk8yDQT=*D)HACUd>RNLXkPB(VBv77lG)w_(Vw%3h)O#UGEtKJnuaL|oE
z-T2Fmzuh?H#%XpPBA4?KEr;DW;>J-X$H)_I9H+>-<gbU5$}L0ikMcDy;?K~}lIO_t
zs#p6Cm)!W*jjwLRd2m@y0d~D4uex!^jl1+~<aIZ0P;Qd9NSXU>H};&-e;nUq@`Suk
zJ|G{Gk4Pzd>_&haMEt26&s6^0jTg#S@(wDm+<4984f)oMca-;Te4>0HWt@+0<d~zM
zai3N4MK+_F3p~i^K_(9pd63wHBpxL7AdN>qGUb(wlFEbcD9OnbsyC$vPdQF%59A?b
za{H`rQ>FFbd)A~=mFX!NJV^OWUy{r!&*ecD4~jn1vXa@z>|_p7x^j9@=b0vwTTPY6
zgS^VSaKHi{H1(jF2L(MS<UwH%ig-|;HAOubGzz6WFnCbRgKT@^i>ql%cu<nwag@Hk
zr9FuEprQwr7#c}=q^5Lf9+Y9TtOw;hC{N$ax3VkHr6zYReUKkKsKKN%X}xEt;z3na
zQ_X|w%AdT8t4Xg#)+XzCP}hSW>Gen%^B{i)eRvZ0lLrkvXz0P1XIk3l@l9CJ$b-hJ
za?Pwb$yePqHupfrZ{<O24_dIdYDu*8p!sTjb=r8))`Nb`+j-EQ(#wMm9(3fNoZUs#
zn4LW6th|c{KhwLaq?-rJxeIzQ>8W!0Y*KIKzfk&+eM#Rlt-l8YJQyf@$AfxRw7akL
z<83f|Wf_K0BpFH>Mh+)OcrcQ3it`;UTf+l*k;sd&9*pzgz6TFH81KOZ5B9Tiq6d>a
zSnI($4<>ss#e)^hW&Eig%<*8Z2h&tC-Gdp*XHsU7vpv{2K;OmlJb2DoFZ5tOU78C#
zNRi2S@0`AQ7qNb^2TRmAOFdYoe7T$*&-JrFUMoFV#e6l{{RiV34=Oj*=khL<&fh#(
z?|~(Yw!s6d2R09Wm&Nd4lN@H{VDg}6Fn%+q-9m09Wx@mxu5ko$vy7l}skeLJ@F2j%
zNxD>T`sZ<Ox`*_VKGo~@;KXQs1%n=h7=}IA=D~JxHlt*Wl(K4X<8~<D<H1h)E|u)|
zpp@DUdp+2v@;@m4*YO8DIOxHjY+m%>k_U~RYkzt0w+DwjIIQab@!$yks0YV9I8HxB
zo=`O>J?PDOomPowAkNUwlIO_ts`mn=nJ@ldIT)U6w>;STT)WKh^BLn653YJ3a*e!B
z-XJBs>A{9c1`*i;w>ilj5ALdw@3Bm}9y0mh!AB1sd9drb_E^qYhEHW>7wD5elcP&6
ztseXuHN0b&$V(4iF%f_5!5igoJ$U#fUc&dR+;LSO;S>F{2VXppyLQW`AD5>wewFhj
zS?M@0t~}R7=6t6gjfuTT;zb*;e$>e;DW$O&$-MZ^i{xIU@S>y_rMyV#MJo2@B2#<u
zz1;A}i!^H5w3K2qke-s2%%FNRdXb5qStVI0WB3HpZ1n784l*Yx_f^jAMIJBmdXbMw
z5i&nnm@ME$K}sP~)*??a$mi7;%rO*YQcUH=y(ppF`ZCV>G~VDvc`rUa*Gj8Ao?`Su
zQ%M<0Sue^_{%ELgw+dcVWV4bNwY;e9#SdOo_M!^I>SR??imQ1M=2MMoFsZ3>d2VbS
z`cGtC@<*~BDbv>XBKM2`t{V-!Xvn;g>MfZUO_VqFqL~-Xy=bA5)?Tz!-b(iSJN-?z
zbItU9Jt$@AwqCSjZ+o%==hDfG&R*0Ap=JnOy!hFRX?{%iqpKI)WLx=A!H4c%^zh=4
z7l*y*=|wLu)_Aeji{4)R;>AQSCVA0E&3Bj=tzT$;z38Ws{$32A4<rYXgUKP}P*N7M
ztQEt(7{TU9ayb|BSNbR~MpMR+W65#kcv41~;KguGGTDnMUM%rqsTaN%ntT*ws;rt9
z(`6&@)&vW@nBm2a%KE0B>BTILFq@o1&L!uOQZwI+;~aURS8n-hT;#=KcGX*gGu!n+
zmU*$<i<MrilD+mN?!yahg%|Q)xgISv;c6DI;^)>fztrp3dGVVU+hrNNSntIK7DT=H
z-HVN0c+`C3Uuv7Y*zCm?FXV3g&0cEf`{|Q!^&-Iw6U)qA*j2s73#)P)rQulp0C0HW
zWYeX3-CkVcZ>`enW$5$5PYIAgRT+}w`J1ccbZ^Ay+f?FCXFOWpxRcG@UWo7VV(?4t
z?9TW-UhMT^AG@w^(>ABXA8M-oUK~(<(2GCmf02KyJX#w^WI!)odGXqdW3nT>c;dxV
zFHU%I(u-?eT=(LXY;8_*)r)`RI`+tL#*4F*Pj8J2UTR)`U*?<_=UH}vyhvUm|0OSz
zvQ4hY0Y6#4x^CkGSVeAlaZC1c9;5s{ep9wH_v39Z-t$IPcf7c(roHFIedP}*550Iq
zd93o#3ga^`o_q0v$sUe2|FV8reks@9>v6*#7?12XzVYI%T#$V*`0!5VC6`AZ^7`<>
zi;r@R_5F7x|HMI(viaGIFKRAdy@*pa@F5XBu}YHoAb0+hIm#=U58p9Q?n4S6QqsRy
zm8mGHeMqB{v_80l`h@9JlAe-*%;>`vu2E(-vyfRynIsz}yAL@iImukAH#eo(M}6>o
zJ{0$%gb(={79b0fg~-BW5wa**jFf4;1NDtllFf%Z3@dl&1D5t7-iI;_$MOFr`#Q@1
zzaUS4(0us(Qv2`wUp|ym;}p4QsOUo_A6ELX%7-6(sO-ZKABOr+g*8pcsy<Znp}G$>
ze0V$4c-?NS$^1tjT&49TspUg$HD(<j>e7qm)w}Acygub8vH{u9henjfq!jNMi>5v_
z^WoQ6d~+XqGH>BSOG+yr?o`t{`OuopHe_3}9oe4jK+0$xeaQAoKL$FhqzmO|AG%Vy
zsk}R-hinSg_wu2)55GuruAwix`p~6W=DMMunySAK1C$S>4Dw;HN{mS{%!lDVEc9WK
z4<mdS>BAg3c;3bR%9=^4a+D9Fm5-r}CCB+No-%=)NXqKS9XKcZ(Ds!!MI}>xm`0zj
zk{LeCR6dI`n;g<bo9n|oALjcYpWj~KgS>k$pEi^SRj(OukY`TG_=|m5!s6ci4SXqm
z8M)ktK}+?T6>@&@pF694SR?0`AIbe#>%%%9Ui$FLhu>I#(T7VutoLDq55N1c(T8n5
zZ1-W4EM5=evR9hlhs{20VewWuoG1yT$p^C!7P_63`C5IjDIfJpbI_eCxlmi*-EKBL
zK6oiU)$4p47oZn9U<mpU@<Aj_ibN<;A7Yf+`{MObj!B>XWs^TR;ZAZFxtrWW?j`q;
z+h)Y=_u+sK2YvXH$r&I1q8#<%80ByBkPn9`GM6J1<5t6Qm7Mb71pTB+<X5lL^nX+m
z-vwvs=TvguhYQM0rSY#1mwkAlk}E!3_2C+uP9Eyledw|y{)rDaRLxBvZuxLq&NY=h
z@Zm1~o=Wb^s&Vp%OdhHHv5e3BDU)X^e@<za4f2bktn6za-uUodF7-b2*r&af%kneh
zhgVvi{CLO89-oXK)wD_d_@w-^4_}mj^&!p=`1OlSC%!?H$dANqCLtwHsH^uT^J5tw
zmzlzklzvq3qoN<F{7CIbIaa3e>mO%I>&N$Ow#$HYe#p18^ZQYNNqRpr_>s|%Onzi$
zl9SBhM^;K{{{EAVo}J7=%G{+Zm-5_{JY-%npN#POzn@bD{V1j?3;9u)UPL8DDW;c(
z;(nB%mn2suLMcBCew0>~nji6Wqe?vGP=;PsC5ii^JUunPR$R%CAN*+OM<YKf`!OP9
zsLS3eWK}<^`JuhmZmls?S0mK$qb9u;S(~h*dI$B!kIL)$kvk>o`|%T#2ILa{CEnPN
zCVouzV~QV5{b=ULU_XZV(OmWj7vmQ{TKdt-j~efd@*t<yezftUo9w&V#wM?|wleu^
ztrOYKkM<NvI{49%KKQjJ&Cc{L<j<<6tL)+xdan%CodfppqbH>oDS2-{x_piok^R`m
zkG@>;eq?`g06CD9nn8XPjMIyU`Z3Ip6n?`P*{ZEIxyDL3oMj`(k$(KDrW)nPXyq4+
zVyyCUl<|H{puBr;nCQnO)%)~j+*CilJ%nxv4<Ydxe$4cvd=M3anB~W8KZ*xXB7ix5
z%=N?ThtH3Be$4k{vmaahSisTNkqgO1YW&51Eb(KhoI6Zblgm}_3O`oTSE;0YVXRTU
zmQo1D-ze+-*x<+Ser%MzIl$<Atqm=x<t${}r0V6%+FO;o{Ydb`#HN`%UqrJ|tg6Q5
zhn?;qouo_k?#K_1@;Zs&_aorPE5F<_6hS{ie*EFbem}yj+5N5Z8{ZkCe#Ge8z9sVc
zAIc7Lrysjio*|chZQ0|;UMBlgewh2>fFEc5IOoSfKmPRNFF*eF<BX~~L^(+wCXe`W
zlyZzbPRjTvDBqr>aLSL<Z2m(oU85gV^8MNSueI}jT=3(DAM&=_MK$fW-}f&0@h_9h
z<Q3I>m2%CG>y+=_=vN`R@5D_%ZuxQBk2|XJsULU!xaY@xCXdJm<U>`{iZ}Xr?8g(8
z_@?RG=b0bRnY<uhs@@x);@<f2md%0zyi+*>cu)Tz>+;_4QRScf_)PyoepPu~09X0(
zi9`V;4j@SYNdw3hK=uHV1>`}x_&$Ji0ewl5lPLp8L6Kzd<G56Gd9yb)B~1WnRd4I*
zNKem7W*{@F-b?{xR-Pq*0^EAv?l~YM=LjI5>di^XMdl754<)baJ(yfyw)`@JN@QUQ
z(F+GqB!KE~w4wp*d|~LsSriLEKDZ*2lnkI$0H*`^CjdhLr3080z~lhp126_KCV;U4
zXaST7U=T+u8$h`L?4{5pfbs!U2%t#-O#`T?=36g-N&);3K;;0c1W;GyRVg(Cs79%-
z@)`mB%0-fesTDwNmDdTNWy;bRr2WVw*)HR<H(Gtw`xB)>01YXPRNgoM7e{LrKy!xe
zWNG=csfDU(89*y~YqE{X+fpuGH@2sAAUl$s$j+oJ=i6rZIe@Ngb|d?c-2>=B=}Agu
zuK;>0|0RHr{q=LLFOz;`e{ujhkdy*>2VgLLNC3y*XhZ44$l(Eu2w+GdeRs=iq-;Ir
zqew|c%UQrD35t&kU?TJJ<OEVK@=xDr$8sCT7ty8!Fg1YP0qhB28haN7usDF}bQxhr
z05b!a6~Jtj%%#kcV?*8jejbzg<N|Ub+4g<hk^q(l5DXv`z_I|&EHkbTU_$`Q16aYD
zmE^hrR#8@yYsj^vEW@+<_)WR|2Vauk1F!^OWw<ebO_a^#mH@T}kU%$)Qa^Q$K9xCu
z<Ztz>lTGCwiah`a#YwsXa8ttkn{+P!c=0mv1>mOyNExd4y|}RQUEd^tC?%%yZ2@do
zzC+GIdO<FUjBvEE)-|QRH}?jxFMt|vwLe&}pX~TnI}pIZ07k#n((t3je+KYZ0DlK?
zNR4?sfW!17<WZF$3t*+1%ZUI^GC!qy(|?LPL$9BpeIL{p;A{Zr0yrPQ1=(M3wMzl~
z8^FZ?{@i06_pecYW4s)|6*-0j_#{`$08YHsZUu0ga*ez$R~5=lQVQg;dUpc28^E&w
zo^y8h0(hjB;XdU-01s8NFcBWppO8;gexM&-1n`p0H{`1TUQ^n~w4`_R)9Tq<?Jbjc
z<a<)`4{|kr_uucvpXKr%M3NxBu=i^~ztK}1S07{|Ql^@4Uq5D&vYCQR7Q}Z!Bo9Jn
z6#q_Zsm4qhL@E}fCex5IZQ39<4A<wIE{OC&WRS@p$CYDm#vn2UkvWJgK@<t1Xb@S0
z$QDFCHEs4Fat4trh#V@pJw7gX5P5>gtCDxMu)Bc%h|if7c=2amfGkKBA`6qU7~kbW
zF?z`$N>PfFC4#uUR3E{>W;|J%eA8Ud<z-}33!)6AEGc=4xp8axNacz_R0?8W5Pt;m
zLlBjNSQ5n2AgTmWHHcP0v<{*gr;=OHzf5JU9z=~Git)1_HG`-XL~Zu|7(~4w>d@<w
z@)<ChQT-r(3L@D-ZAqN50rN&dG!CL6T?$@!wI=kYDw#V%pRidF&6%`NdCQ>w0buEp
zSDPT(2hkyjw(M<3wt1od2ft$woq|{##Kt7X&OvkuVsa2uf>^u4@N*EogZPETU4!UG
z=}z__dy>6K8LEB;eM$NRF(`<^LG)$bkL*tlAP16C*<nK55c<d<ex(czVwmb39>fUc
zvp?%c=_oeGlcUKoL5x*3<K)na{CE6MU^p>|NvgM1dVSe)9EqPA#KO&nY0RgSGlG~Y
zzyAj@JBS6Uehy_`5OY-`<Ih)qcZR+^3xims64Q&gH2h!BvLKc-+!Mr#AXWykHHd^D
zRx#X6t`1^N5HV-zwLz?tbM3A6{Z_+?a>n1(XzM8(g7}@Xk=&$u<*mXk^b!;FJ!lHT
z9K>!WmLRM_><D613uBR*@wOnm%<ZIulu4Wv7wHbdqw+_S^!4%u;SVAZM38xu43Xh)
zmES18$vlmVDc=^vcICY@Vkehj7n3eG^kGZ4(|5sMCg!xd?+@ZY5RZa*%<y0khl4m0
z#Gh>bMgC1n@u48(0b3$RgE$t%Kg^GlCxRIGP8-0VFDHXI6~yTvYOXg*DEua8f;bz*
zxggF5agS472;w5;RuGpcuTB_mQ2q_#GDT*0C5Wr^Ybv=O#5`UVZw4Wg$SdKUcALF-
zRL$KWTJY<-_nABhV$5mdLo$~sUi?WAPlHGtLXr@k$vDyYH$l7&;<*~(MG!CL6mF=!
z3gR`x!N0-C&t|_1LLPnoo}s)6CN9hQfz6LWe4>0NzmQ+axRAch<poNj5XPO?n@K}R
z7DCPta)t06yE2E6C4}T5q+l~8nSo3dLTZXkm?ng@%D)dGo$~Y{WKiG4$rwT=mCG;u
zS?SqB$U(_Q?&QXlzrViSQ!94}c|xcXLRI$W4WUp7h3WZ1$WJLi$}$wB)EtH)A@nV3
zEUogQArw<yoKk`;NtPlFA*_0@Z@Typj7+o;Do`XW6GB;fIkLRUZ>K~><&{GCfnHf9
zcUs{3JFQv>`;O=%SC^gJNt4%?cUr9wYKKrMf*&HN6GGh(8idg>j2}a&7sA;P&V^7v
zgr7qAHH1;p8$v@4+dYIvAv6x5O$cp6=-fx!`!ude2>ohmP1Ssxh0vVdB7~M9w4%2r
zPx<w$;<uz-2<>GA`6q7(9YPqn(;$zD?-W8ux-@gX*W?3)mEUVWbJ}hpWY28u8p1Cv
zjd?@yLTScj)>o}Z2t7mS#j@T~5JDgNtRwnGsc#5FLm2p8pLIXx{X-Z)kz`;9gXn`*
zGDMb{#nL;B;qZ{Wv8ErfBUMfP8OG5ej0s^+2zx^qD+h20>qFQO!uSv-gb){xWpYAQ
z(-&`I2$MpX9Kx*kS^`I&62jCFrg5~{A<Usn4`BvnCOM0g$>k|FbLor7*=ddQLXd4W
zpUnm2!Vrot*XJd##UU(VxRjKnco!^}!{EKPg2_siuL@x`eT_=ihOkcgZy{Xc(*7R8
z#t^oJuswuLA#4u86M~mzTS73a`mK}%(nQMpT9y#3A=pBAQd*NgkY!=)bO-4qU8EGa
z<t!+ziTKo*@+Y%Dgg^*Em4qm3c#oj4xXPm;#FTHUiCI~Va)<dHD%lyrF8XfLpGn`F
z`$G65gwss+hj5^feuS8N>pZ~lU<iLw{tDr5%ApXBQKaTD<p_C{O#3wMIOPN>H77$j
zr9AF~_7DAxO0uQF`4BFIP$G<yVO$L1QV2IgxD~>`tm*b8{(1<P=~qIy8bYTO#%pp>
z`k-ykY83B!+$c3S<a|ts7r7n6oe&a*kvNRIA>0cAVSP>SbA%@$JPqMN2-Wi#AF5?|
z6vAVA?zR72lb^BqIfUnw7a_b1;gza?AHr+;8}hBn-^s8a^i3zP4<USH{z>&>7QQI|
zN{QowO&E^9yXo^y5=PQ6zGs+>%(LE*mhxQ~$tfwwlw>M0HJOH#LF7Ae?LTNTVLB%1
z!x-~H%MeD!FfxUaIgG-pGD{e_!^p#C)-bYBvWJm_k~554s<O!t{j~bb8<pn`qX6@K
zWPVk1xdjT+3#p`ACKOR#G>l@(i-&QtoW8!L!Z0wb6vomITE;c{t8^IgVHm@>cgvuK
zQ8tWnVU!6&?kE2=tlw3BvnO6|?OQ$!x%X^^Fx($Bc~uPK;}N6C4;-*^7*)ckO0O11
z^)QZdzvQlAbiXs!2%{#uYK2joA`7!5C+aA#D?bJ3^~n0<Pvjkr(<qF_VXO*cbr?;;
zXd1@MFlL3(ER5!13=Lx#i(8N_!wB&EVy(hx9Y&k5eh=h6Ve}27Z5ZuX(>{!@VRWN+
z2%{rKma0=2ot1Y9<7axJkNPpzoi1Mu7VkmtN%kTo>`nPahW$~mZ#vbGpA+_D-am{1
zl!4?RaxgiBlu6E1!|*Uh$O4D)%WUJwF!tUsjtOHd<<~Gqg)useeN~Kq9g7cb)TCFY
z8W+ZRj!^ZZcD10MOpu+$WRe<rau`#TPYq+5^6@X@W^i69`x#}9v%{DZ#zOYam96(t
zn@1n?QJckena}2eFgAYFLLaq7Y%UICi5yX39Qmky`lu}rV;S?CoN7fFE5ndH^CvC-
zllIdmZA}<!!+0CUyD-*;@mm-PVVJ^LAI1hwxH*i?8;!q*v5C!%q`Uzut0u1sFN|B5
zh;NnitD~{oC(Rs&C5%I19A=j_j8GWiFl=nvNk<sYFkEWdfE>(Wc*5|iq<>NP=zf*-
z8>#Q^Ae;IdwqZoW*cHZZxo&JV#AFpd8h6sSg)!liww>G&M$ZEVY08}|R({g<gfV}d
z;SV`zd+2*-FGt%K#tGhtY`>b<fiMozJxlOs7=O|KR=r2F;Yb)4`WTOfaf}i<VU%Bw
zkIOYYj7u_F7*FbIC&M_!Nlr@*<sb5l8s}^n=aiqP<eZ=%u4(7S{Ts$*xkg=!e;URW
zc3ltS2IXoP*VI%cw#MJ2-wWe@7`N!R$vfm-QpQ|&EA9dP3HgwGL_Q{^rvG5bKc_^V
zF?p`?7h$}lzf#HTFy1I%T~~Wg&lf@d2tLT=NRBZk$s+hJg3n=m3FARA<0hB(H4OiF
z{m6-n=z9|pB%&lHB}o!NQsuWE#wCy7;sHY@`872TDI!S8uG`CzDuUDzq+v4ynU?&X
zOh=|CWz5m3kx{w)HkCPo8~nUP7KT|P^4B`D({qry$(#}7qR0phE9py{ht0g?Z^cj`
zf`Sp0jvzjQLJ@>c8w~6!96^x?iqcC(<Y8)tV)Wt>eEXb6iHQER^pXsZ9@js-A(Zj^
z<%UsKs*P4Qf^rlsf*yyoG7%UKY3@(jrZrl5<`p9N>yvillU9)h@=Y$8s&WKXBIp-I
z|0t?PP%Q#$1hxpOM^Gbz(GiS^pk@TMA{fY7*OsjsL4ybyMo^bYy$BM2)_#mYK4~V)
zBM(2y|5>Xa!B4VhKWp-;{#k1z%f^qN^^2f!1Wh7n%4wy(a|F#IXwGH}vRwo%DXmmZ
z>j>H?Z%gU?SwH66(>p}ak<v-km{RIr$L<or&k=NG*p2KJL3c_IvL`9yEPWZ*oBj*g
zN9BDZu=C{VAHe{IqdDK}T$e!+3}!fl9IB=oMj1|yAV)^<D`gZZb1b=9-&SKIm>Iz=
zhT|d_PnkeYj9?OFas)FdQzDoe!8H2x|3?{T^=D09BC{iy!!A<<b0e4+!RiRsL@+;s
z1re-_U{wSQBRJVylfMPNeV=_1>lc$t$fXf1qbw(7*cB1@Iets^WR26GwY73a^w+k?
zLF+L*`K+yD@o(h%2sTiDCpVItNEvN&1jjz>e`LvoTO&x|2p=ct%}M(-a|D(Ml7G>5
zF4hlkdjyUMzD5uig);(I1WzM)#-ZF1oTYdo@J8U1g^XZZ1lt(~WY{lStuI<o%{LT5
z_?weaGNyXB^ui7~%%&LsQpwH;cF}i7uqT4O^aHAQUj%<B-%siCMLS6OQ{~rw!`~4c
zV)JkWM`gt$IHGzN%9CG|pN!yy@^N3ZQ}om1KPo>Hfy_d-$+-y5M{t4pjR<a1E|QnX
ze<Qdo=VJs{+3Z?DKiIC(uanZeQv|o@4<mR)xh+>1%3W1+FM|8ZAIOz$r9RGMCh~x}
zc60R|^n^|Mt3>>H1jX}eA0v3d@FiKr6#t6yntT(%Tgp4~J^6u@5#*k|pXi?>_(GBQ
zRlfae8&M>RqG=S(qDUM?k|=6MQ7ek1QPk_CrH&#^R9}W<<acE9sDANGK~G7hBFDGT
z(nj%p6j~HxHDkIc(nnF4T^UFjCvOxPqsSCRW+pjQo+XN`^lU20PKmb}a;hX(6uFh>
zq3nGapO2ECEI<|{3z0I%jQoUiktm8rQH){nC=8SmWJ$6VDfRL{_tNxu(x`IB2$YFJ
zp4(D3igHnuXI@$LR-jZQD@E~x%H?>FF{`jyHHvDK>Z-R!R6gIUAA8HcXtkrL8^w=N
z)KR^UvKi||;r^mEilT88^`rU&kA7lr169-Tn<Ud_X4lMj^&_VVlS5y$=9G?6-2I}p
zQ1vaNXr;V$6m95j$#!IWvI8ljeN2l^QFM;VbGPwx6otNOeWK{9dQ<Gte{<^=MR%3-
zp!AHQmr8m^@e4i0SA9+8)i;XuJGJ4xj02(=DEl;qJTVN4VsI2^qc|7EkSK;maWINM
zqZk&&@F=FM(MCiuGAiGNfxOEt??^O$qW_LGDvHr87!$?#C??RyMlnuJRqu1$MCH}L
zYLn!sZeX0Ok|~s_QA|@wra71q#mp#XMKL>ytx+UIF^9b?qgX|m8^ydR=F3iDb1Auy
zTtqG=W$~6oafr9jS;l0!%2!0O;q8CFy{{Hm`I;!!($|r{k?U2jd?HcC{5^_|D%m9G
z?>NKeD7L8NbT*jio+!NRHAi7lz1ApfQP`t!FmaJi)w}9moLl*Z^zcRDXLAo3h+;b>
zNQR;aQzB8sDA8}tkp|a?xNXV@KaAU<d}kE9=(|-S|1a1}-=~s4qS#MApptL@#r`Xb
z(@gGlHU2GIm3~;&9Eswn@?%jPr=K8Cs{B+Gop>DnqmnaGysM}k+Yx_0iVIPEjN(%i
z7o#}2()b{Xhf!RL;@>DPM=|QFc8614iDKzj?JE768s|FY26>ab6~%4U>-wtQRempu
z`^t|!Fg}Xn$Tp)qlTLQ)<0zg)@l^HR`>H*oH~3_H9)<8l6fdLle*xWJlkcK<Ly_by
z<?vVSy-Ge%<ngbcqxiz1vd8c>inth3$MgdUF(is16+JO2;de14QJ$2Nj4Z?7(2~cH
zg3XlVw}<##tEi8bCWc{e;?gqzK8AELq^D;hr65BL8R?1Q%1ARaJqwwY%tmhJZCG-|
zkTZru{IYYd7(%i5Z~qI(8$-SrcE_+MhWs%Uh@njkZDS}HL!lU&#n3#4!qOF2rdSNc
zV<<u|N=jHGu1tv-O2$w*hANz0tEMOwgCT~}Y?dM8Nh2wXs>RTW%Pd|thH^2KXIF(7
zexOt&E2;XY^)QC@2PdFv3^ii%^<jM%S7Sl-7|!+6w^+>>YQ<2SVci&hq|}LFwVGGG
z7#cFHPyR$UAm{O;xiUy2HXFy#gd$1P82lWe1(Q}PZyAGp6|PBN<B7O3tr?z9rDbkp
zY!}1a80N*$K86l4bd;5iVR8&pV(84WUNQ8Jp$q+IvMbq*>`wNGp(n*XNgkb}U)g?P
za|GEZhQ2ZMqYoyfpg(0m3<Fg%D2B&e@*zxylEYN*@ED%n(SOU8*T|TB#{r{a7#+hH
z7EFp^tg4(4!#L&RDL?EtOjOCpPx|7anKtoR{L~n3cQIbctN$#U#)9cF%utmxW0*ys
zt&%x0q=bI-&X<iD`yWkb0p&!tMbSREySsbS>A>JFgS#`h4laYcySux)e>(1-;4ru|
zxV!#ar+I5-?X}-|w_a7sl1?X8IHB#CSjgVZao7@vMR8ahhb3`X8izWpJU?BxEDmc~
zvpfzf;;>SUHgh~y(O0WvO&p4HDw)MPhU??7fwEE6Y>GqTbH86tx61z0L3bby+v2dD
z1v}!fi?WjpZ_@TOdF+nE9yP+=IP6otUp5@)crXr!7&gm|!;~ZBQSumhoRrZLq`|3p
zC)a%Wy<JYnAx_m8;$WnkNHb|sy?JNA9tVe<k(fBiH*t6y2Ui^2aqz^!8;1w7f#Tp}
z?*!<t#KBJw#34ut#UT=he;wKi2`f1hhqG}w$AXKb^q!AHwfeZgrm0cvC6!;M$UCTi
z<8U<&*Wz%Ul`@GuZm{=G9Bxu>k+(_dHKxT~`aSZ#$_o|4Bl@jxy7*tV{uhVGOrFHy
zDdidYl6)?EK1Ifq?|QwWzgEewK6n?0HPC-n$@@5bpnoJkk!AUPgD<M)YaG7C;X9i@
z$e&~>A2${^dXxb$Ab|l14M=1_CId1Xv>hffnaqGBUvx<fI0t=Fvfzv8<OZZ*Z%Q&f
znTkwpKpIL~QpQPVfZU`{L>?Io$f)w}gLPR9$ZCMOuWl@_M3>EgJgPUl0XdZCG$0o}
zw@M~_h{{XPN9HFBsNRB<LI$*n*5+H(fMT*#cBHkVxGanTo6Xo_Mo9xo8F0jeqb5Wf
zP}+cjMhr3{#sHlG9s|4v#2TPCV6Fl43@BqjSp!BGFw%fO3@FFB3^Aa*0Tm2rYCtms
zDjM(t`f3L4--4A4sBC~-x$D)K=qj>q<@#^37;m&SpS**vIw!ATKut<5vc3VeDRs!Y
z<ey|cQl`z8p|r4p0S#5s$biPmn;4KRfp&IkZa@nIIvCKAT`kG^HFT|1Wot?svaJE_
zDD73RJqmvr(5r{8*yQLQ3_FpX4d_DYN_Hb<cHIq-KQl#o%2WpQR(XE|`Y7*9`P+bg
zDshz5_Ot=A=9vs42diHBhT%~9FauUuwWE8u0sk;*_Dh@BC{;PZfYGwaW}<Lv-57>r
z4H!o`n@u;KQumB*B4v^RlMR?+z|wTOsZ1WE(|yXo^FN!@$r%RBq|72`lQPpelm?k&
z=NquVfF&}H0Sg(*8@U7Zv53A{)hB%%z082+26RfGzg!qAn6H#)L`hp5t0{X8*k`~R
z1J)X_j>!fCHd59b@N~`ZbND7E+sVxaY@uu=w~?}hIlo8kP`;D0%YfY~*<(Nv?jieS
zWxk3!&inv*P}LkV;4u9Nc~s@cWOwDXCk!}gz$pVZY>YM<V2UpwPm^&57}QiHGHMHN
zX47GSMdenCjkJ@+8)#d>Np~6GrbtrnN0iS1zXA1(sBc8TfS>`t42Uwyn`eX#cx=EE
z10n{TG2juWIx8nD10K-N8*o8RYXx-m)<s`ra*e!1%J`QlR}A=<a#iKgt#F-w!+@Ix
z+*0{n18&prs6;AdoO^8ECu_cpdPw=fdzSr2zi~u64L+5Fh0Skr{^3Pqp38Z|fR_xV
z;4|fw0j~{sLw{?)C(1kWJ^6u@`i}<rKu<eBmh&T{FLI7bp#Msicpfb-UEdA(!TO(M
z{C5Cg)E4^>Bgz?(z=(uKBr;;fv6!qzWHTbM5lM_lYD6-Yr6-dcwX1=pG$I9?GP%53
zrDB+xOhcw6r81pS`$vz6RAw+DBd5xwrp;_b7Ugo^D5=SAM6?m5jmTj{P9t&|k(&iY
zjmV=a3sUkLk&lvJ<pqpb$|o!16f&YP^CGJEXGIh<qBxr+j5wKAd+sHTn3!HyO4azD
zML9?4n$OWTQw&2L8B6NPGDei8NX_HP+OylAKwn-Z6(|+SN=8&Rq6)n#S=WeaMpQSV
z2Aj3Xnxu?Y%cxy5S)`6ib`-^*%0ql=4UA}FL{lRg8gcA<R3r8_RyEI9)69rYMszl!
zxe+bc)zXN+R81=*TGQK*ZB^cm(%y&;D(NWuKtgTjk%ycsx){;bh|zaq1{l%JsJ(Fa
zFrp`myOVX3pqCNyYAzoD%Fnot)zkGhqK_J_uMvMM?`K4R<)z+4P4BE-_-?QfLu5b`
zdYLfPh+(ornvlqZ;YR#p#Bn1|aFP*5EHq+~5hIOqVNZ-UVvG@U*frLOaYoEgBab&?
zk`a^HoIp+_H}H%!g+7g(YQ*66+WsJq=`t1HCe38mEOIvarl(djmp+f2PfECe@+un^
z8?nTQJ!~#DVwn-!>C4G=My#i-Fk+<<tLUrAHAeL1-_dK?lrit_*4`~_Fk*{JHX5->
z`DP<FoYoF2d2BUeo64W^&*vRR>{Q7v%5HLBUF?k)Bla6{fPR>iaSj@BNVz3->=F7=
z@))_6-)=f-#3>_Q8}UX$BTgG})`)XP#IeR|gpFb_!bp*kO%yX}F(NPbD?6KBBYZ|U
z=uRVCM!4xRm4`CyWmGIb>+`ETEUyCeAQ_U=(P&iXm=Pvt$Rzv){dprU7;)c-2S!{p
z%0)SFlf5$jWy&=puBhZ+Bd#j%+DbbZuN!egC9<zda?6O@Ozs$Qmy&y}wqx9*f9j}v
zsOp~>@reGPN*>EP;j8&mBc3sQPQD~xkVPBg73EyT-}~fSBR(^EN4_UNkRM5z`zJYd
z^S=^bn0z(jn-SmXzsMh|@+ZZ~!J|ytEI=k8i|&X{Y(f$f{xG4O2}w;zW<ov_@|%#{
zgcK&^V3|yn(uDNNQ&CczkcN_0<>@FR=j$?<kkN!pD$h#EY(f@Fl8wKgX*M>qn=okP
z?<A)QxftdqWxjbRdC4UOP=Hd*gyNKfWFZp@Q>4C#2}PB!?SK->b(E4Olu}7Fr8F5s
zHp!*!1F<IP*(^g!QdZVaer*ZMn^3`o=FBUS)lH~DsboTBN)@syS&j7QwP|b8|1_Z<
zrIrb`DbiJkQkVREE2_TA8=KI8-jHmh@`e?(0h_Sdlx#*8d>Pfkgq9|>Vza#o9Vo3$
zXhV^y+M3Xgo-ft!b>5N9E++g%>7*(<%hoURyQV9{ZYFeBy*()RoYB2a=wrf06E>O9
z*Mz@Km}SCj6Z)}WlnJ9v=x@RR69zIFrbZY<8EnE3l?<iGxlWdIxC#HLd<11Ax%jJg
zRE{xWis~Ip8E3+H$^;W8nlMTAPBx*|Vr{^Ny?#HJsU}Qg?{sp8s+=kNGY^wFCd_5H
zikwF-F=4){TwuaN`XZGqrpWdGWkyR)SjOgZa)qi{X~H+2*`#JQ!!_hu6V_4IlN(5>
zNiZ3kmG3cO3w<lOP37AuJII~nE^;?1Urpaj*+<Hl`%O4NKS&-@`C-{`yn5I%6ONnE
z*o-D-oG{^}>;q=xG~<+1n()qq_a>Y+A<l&BCfqQ=z!5HzM$%-0*#wITRujA?_!!zu
za8YC#>=Xy-BrChM<IZh@N7Yz!!f!&rgmWqhQqGtVG9he2MCG-4mcDj5<}4E%e<~uQ
zooDlc34{5cmrJVtGUW>SuL)Nv*U0z}y>FUu%Y<i4WSrY3Jfz<t@2dQs3HRv_RFbD6
z9x4CNgvZLCP@bAlf|oCrF`qMeVZuvQ^U8$R%HL4ll2tlsFZv%$NN7ePv$g|&G~pAw
zKAZ4`^3{Z2ly9Wee5d>{;ipQ@%+W=0a_NN`3Fz@hcVc=fGg6z8MAalUBN;t8nSxA7
z>auE!k%lgk$&9qh(^1ls8OV%glzF8c6!OT-Bnz3<jBFIivzsxKS3%6hq_7!9D7ncz
zX5>|s`OL^qFF+O~3#ne~WE3@{m>IQIQrwJk%1g+nKxUL;Gun(;N@+4i)#%LVzw7r|
zLN80M^0H?9q1+SJl{ce;85LDh&5TOQE1OY;UX|>_ug_Iiy)`H`$y#P~;n}qgn{`#q
zpJvpf*C!j04ar8Ntg)neT~jlfnK9ms2@IQ?(antRX0$M)r5UYMWk*VDGuo)6tr_j;
z?N!o2#^EpE{!&RNGde5pLg{M8U9OoPX7pt8j~Trv1IXT_EL$H+U-ECVpR85YdoqW%
zdIy>@NF{^K7@~Zr8N=wqRnnPn^G294QYE7(qs<tjlCfrtQy%}5;fZF<GGjKwNoGu@
zOi?vc&6q}?PR<}_lJ|%G-uiRQSYpOfhI7ezX3VF^@-Lt)Bo~p3$%1@Kwv4{kjOCOS
zq)fGvvWi?yu94l9-+`3gbxhWi8_d{9k$e*+PeN=pW1AUmEof)Kb~AR!hPI%U1v|~y
zB}c9WNiEoI#vU^snDNjocVovsGkj+F&Dd|o0ghuZ<DeS(gc*nEhgEXKjHC2pDmhLW
zpHP32aw<Moy{9R0<iW`>nqe}-ta_bhSd?2SHquTyq_V7b+LwpR3^zj$DT$X-AT0uB
z1nD=(kQtXLVKQRI88gn(WvUBioTHytiM;i?NWVmu;_)bzSJ?cQylTcZisaWRa$>xx
zl3QlnR(^+am%K;bH)Hi(?GLv{s^+s9|C#Za%_rn*@+tYujOUaW<V#W}e`Q9f#P7B7
zhT&T?-cjD0@xhFbs`3*hOBW2~B_qDD`PGbXW_+i^qV2;!RQ*pgekqT#KyI`uz4A!F
zvV;~Sq9i6y@z2R*79_VoZ$TLgQdp4Ef`aT#WkG66PBIOd$%3?$bfk=&o|3_WjFd$@
z<R#B+K^9e$)q-sF>|_p=kKU%e-sNI5H<^dbOXef<TTp;<`Mp+L$b!Ob7O|idr6^g9
zEKZgnrMRR8*Z77(Jepx?GR6WOC6@fI)>2susxbM3l&Q*5%99l=sHpNvl*+Q|_`bTT
z1=TF5u6i3;P{V?nY}O*{Sx{T`*0G>2{ZBFx?>Zs#s&7F9RnyRdm0y0pk~U`8#Db=(
zw;83m1uaxEsY<N=dUR{qj@P5xSn%LWlssh2<<-#Mf({mxvub-nM+^S4AZ$Uzf=(86
zw&1u0CoJe<L01blTCj-&cC(<b1%F%6U5($vf}YBIS<su_hcxgL`+gSmm;KFxnHCJN
zU?96DSun_g!Srz!46$IS1*6%Ng&AhS2<5{m|5(uPnzofkvN=limYWtmM)_EZqoek8
z#?vQ|6UhaeFqtB~Qz%o(Y2<Wr*LB@2$^r`(S}>bFhm@)2S}>13UnP6Z(TkKXvtY6E
zC6uKW?Bmr|ms_wxwi?6Ls%Di1&H2gg8kMZIU>$uuxq)1xK8xGT<^c<~Sg@78P0sU_
z?W8Q>4$4k)7nz!WXzZcymF1yG<$ep|UxLLCT5yQ@Vbyzta@2xjlmqJe8z(JrtC~|H
z7Mx}?&H}5-4Hg)cn<!=rEGqFQjkPJaQyip|bjgv@M?3p@*z}Up^jY9n9-ss*2vOqy
zraoiASvK=nan6GC@*-$OGAk}vaM6Ny7QAQgB@6CQE?aPg@~;IqC^DC;a!#OMCr9&_
z_&4ddRLyM*Zg<vpu)7xAv*14S|15Y+c|bn2;E}37-5pOXcxu5bCeO$hs`q)k48==|
zZnQS?Yt{RP@|KKCsQ;kyC@Vf%@QKaO7JR3CA-}4cZ*r{hbwLLFVZl$8|FS?nSddU2
z;DMijOh_iOA~8jJlTgZ~)Fr2+vm(6}DO7JtN-8T-t0avTX_dFAu04?qY-S@fl9{Z?
zOp)F!l&oZJ9wynX$iZe#Rg=q#-1JO&wE^>5k&n&%R>V*WSW(c5Li7@3VX_D*lN7b0
z7`?bkUe?u4BPFdUrIKhXO4FMh)aIh2$C7%o3@Ke@DSue8kMEPqTT#J^idIyzV!utB
zwz3sftoUNZS1YPoQO%056%i|{TT#P`1y(GyqNWwKtmtY*H!I{0-L<V~Y(*0*>R3^i
z<Nrz4Bj2P)eM$qeAt^IzWW^+Y0OH#n-IQT7D~8w9E!iF2+=>=VT3XS{iq=*fPOB|j
z8!Osc@s}E*ofRGE?NuUof0nY2R`l<rNhju=Rc{w7Qa09(&F)t8uwt4O)2--fMK2bN
zu%b6*2-(MqzE=FLrX6TSKYD+a46x#&I<pP3VzA2PI*>!@!&EZdihq>Le}_j}G0KY3
zOvYO=fii|1YsENKDNlJKeUeJzFWf!ZiYY3YN}2FIW`-3rt$3MGAO8#bSys$fHM1#m
z$hlU`Q@LCrp)7x<vB-+WR_wN754)CF(Z(6Q(Tb&PE+dy)vBHX#^tGg{##L6VR=!3~
zR*AI#xvXQdUgaCCD1KgB=bNn9%y5epJ5}#iE4I<MlRH#?Ae*-NcCjhH)!Hk&s}*J|
zEV7p}JZ!}g$^k15QVx+aRc+pM_^33Q93zjb-V;`wRDQ~eB3x#f>NLYRD-0B)sxeuS
z^^JC_u`+R!HquTyNGWhy;Zk003p`eMt@y-uUp|%lDFG{jDhbJ<#AP@myJDW$2Ua|^
z;;g&`SaDuX{w%vAdm812n(C4jm#w(MX8gZI|Fz;Oo7Ys$b=hObX(x)COm3<CHYMqr
z=({SpXT^QxGTI|6{<Go(lg0~mk7d*Uig{(l6DCi|XXJBIX7NJyJ>|=PMZLD-jTLX1
z#2>j*^N!8;q};^$qZNZ1#eR}aP$T9ud38y&_%|!Q%YkXb3>$t}@l(!hHpJMpyHxy=
z<JX2%HbmI~8{|?;32aDcLn0e)c8Zl|VxGZdUMVO^Y)Gn-WHN&Ct!cDrr7X1#X&9EU
zAuT1d4OwhRM^CTnGf*<xkVz%+H`K^#Lq3&cvmv_;IoQl;LvBhg)mt(Z@+i-1L(gQ|
z-1FN|z=nb<FKR;}dSR6mku`8yt1QN(xXROih$=}hMMjfPc~=*m4Y4+KwxNqWOwoE9
zs@hP^hB7vkwc!snLM0o@(aVz+$cn1>#kZ)+%BxViB+^&6p@t1D*sN(oElMLBYOBh6
zHq@clCI3{pTu-Jxy#d)!<xxMi7xBh6G-1+|Y^Hjf+c1X5MN1o6+0a_$9Vl&VXiI6Q
z^7b}-Tdp0a9hv+^c2d0=d!nli-PjyScDJFg4S(CvgUy~~FS0k;hm-;3T0s4j53!*?
zeSi%a-fGJ~kj+6h3|2L#c`1^iHVk7jocu@ij<Dg=aqX|{Q8tWbIL3xas&_19968>G
z2`Zmx!#~xuJz=t3)X0V@DxYe@H01?KVx|qVY}m<UHo49QeHF~HVXh7Hm@Ktn8D+i=
z3n&Z8MdV^qX0(Lzpqg&EO4iu0LitL{DjQa-q~biRRbG;x9j&)vgAE&P*rf6;Hf*LJ
z<y-o#^lhqlyA3;(AI^wf^xfnhmG8A-AHB?2?FHh14F_#FWW!-ut2TVL;fM`KZMb5?
zzcw7R;kXTM8$33gu;HW)s}kvZC64XZTX(Wd>?s+CL!Gw4qQ;M-7)YZHCY77znEj}o
zORYB87}`mf4GxM^Rh}q-(M_~1B@Zvdpbb8XpA3-wc-5eg4PiDT<VErfd6qn9!+DB~
zc0ry6kBCbuxlGB~OLu%l^q2CuYQr@fuG?@ik^Y_y_t|@cyh+}&;Wp(Cd6$%tgVphX
z{)T*L!y_C1v*ED~FPJ<b<9GO{^k<|@``m`RJnqC_GJIvjYt?&ZHr~>+u84kT!+ZJ%
z@}sI*lpkMg_{wGqJKiSJf3qR6UE99j8U7%DlE38SZ^tQqwh7iGAQO@@Ng_MaC;t82
zk0cC}lF7*A<h~6^Nl8VfCQEXvbTYXe7lXJIL<T!D+F|v;=0PSqGTSl5g{dxNu_LP;
z%N$tlKsGzF+p*b>Eq3IvBc~k`?3idrE<47ak1l6Nc{_4*{5*E#wId(BD4Cy>WiCJ|
zXh$JRVX}zo9q=fsn0y7)juK3CDlchADS9+nTIDfzIpJ&jsyt%t&@(SXmQ^)>*io0y
zw}KrN?dWGme>*C%x3(R1?5J!<6?t9>V&yKtRn=70?5M81h8;ESn5>Jfr4qSAkj$~J
z9S!VgXvd$->#5%QcI}QfkE`n%+0odJE_QTfR};JTb-q@1G-b0H*_>=a%9t%FeG}_j
z+tJ33wkq#vM>~3Zm2{v?O|1Wm(n;l=<w?c<J}SF0>_c`ZdyqZt=tb#GZsGdbTmpUV
z_?wAiskT-J*fG$KL3RwbW8E|D`$bC<X<uy}V#iQBM%b}uY4kAGr+NMRGEl?W{Kt;?
zpGJ<fLw+(jis5K-3^|sRp~l%Uo^Dlp@+3QEFqv$}&BXdCc1*RS;Geo_vhDK5PN#oM
ztk0fAFTFGEm}SRoJLcHYA&GV@%$2R2M8BFN%(G)YWdXU=j)jy(q!cfvEU_ao{{_5E
z<;!IYDqm^GD!N=QOeR@FUrVl&4a#4~ueW0ZlZ~X5ZL*`$6YaHcs~y|ysOms92e#X>
z!;X)v*=ffvJ6v|S?byxagdHa-d+gY&#@T1bemf4ZdC-m{DnDe$VdZVB;3)l=N{-tR
z&AY?MUCB<_aay**vzY(MjIzYaW8V1KI8|w|!)S-e4zo&Z6bosUqhOu3tJ~Rhs2ZnT
zu9Bo3bRIjrc09M^g&jWjUa{j}JN$M8*bLfnmJ%YvWQ3H-&)89qm$DQ;XUBQw7s!it
zT%zooi_4U;+`d=sxMs&ACfC*azhlP@CO64j<ZV($elP-emEWV>x8s3I9@>$txVE?d
zr;^8ZJfS}&pQ(J$1jq$*Ub0!RxbBr5ukColrrdg7Mv%u_Hs9ItUQP8uHY-0{{$$5z
zJHFWQRZgA`<Z@_}e6wRsUSx9MyB$C5_-V&4Ssn+HI}pW!M5I)Ll7LL;&@S>2KgYxl
zBw?6TRc08db)|41Et8aFDl)aIN#nq`hQH68=@_PWAcN}7=)gE$4dzNJWM-I!%t~e>
zvpbN3BJ&#cA}Y57Z9eN(C()O4Addri9mwZEeg{fAP|AS<tSqYP3sMS^g~=ig+#IbP
zU&YugPL?1g%$x<$^wJK*IFOE?rAV%GpbYa^Qm^VK-Hj@%{0|4Z6w_8nd6iV4RCJ&c
zrLxMaI3SB5mDL@nLFwi|O$Tbp!5gFHwHY>YpfRNmS(p5itmi;|N&~VXDHA4Ki6#yl
zPofVe(KmHySG16@nFGyP(87VgC@mdmMQKg8BilI8mLik1=id?S9q6Evjt;zWYv-9x
zOgfWY$gZj;)EnI$auW*lbfA}PSqH|mtG5FQlIjOJ&_`AFrTpzcKb7=%V1V+04*bVs
zu*jL{!43>@V5kGbRPQJUhSUF1$p{BV(hDZl&dj6fW5}_pMt&n)tYz#32c|nPgW*I6
zCQ&AnQ^=|0G*X7T%@0LqI<SDrEC*&&;y<{aL!V2|b6`G2rdpZ=3zaXTEOuZCWvR-W
ze27}%z)D#~PE2rOl>@6Cxa+_@2i7>S)&YwHRtfq2z;zC+cVL498y)a}jWTnPP2@ob
zHaoDzfvsxf-41M{Zzp$<J5}#42W$rI1R{?;4EH*)kFsCY9H6BCraR=oVF!+|X&{d}
za7=bERrx;$PS8)P<dp2j+zO|e#HoDmei-Q{l@u8tEf@S5n?KgZ#NmLGVwYz$KsyRt
z4!9jS<G@)5JPveDs`on(aKOtl9~pnd1?e(L$bm(bwQ0jDiO8_LHt#tH&O2~}`33T-
z1B*ZFF48Zl`pc9n4*3z8HjX@^d0B>Q4qR8slAO5dz%2)EtK<%4+A{2Gt)1)cvzf_>
z%uYOT;GrCevP(Pg!GVtsJa*uT18?OR<dqViviOYy&(vto9eAPqr30^&zjk0W*R9Or
zv|abkp}i}3uX<M|)qkRYlassypVi_2#euKP<12qS@Y8|xPVL!MJ)ryLKq9&{qnrRe
z0hv(c)e|GJ6G@y%s*)5=B%>!+$>7aM=|n0vQ<G_(NJBZ!Wll#wua-Z96B(Jre_tqz
z6Iq>T?Uav6k<E$hP84^d1PgLFk;{qPPUK`$mb2YNZQ=7cQA{Oyoyg}zekTerDNGhr
zy@e>hblOx!oG7aDs61Mdy0)&Q6Q!J}<3wF2qMazsf~ro$IH9ALcOq6z^@kIBdKs0J
zbz)RIZ76w^bK*vn_TIIE>aFNRC3<C*RH3{|s;{P!>XaHz)TGo>d2J_BC)3Vp^5*tW
zhK-%5N2#xB8c-TK(MTnw8>5L6P1$TlwsNAm>TN-3>BNqfzn3}Hi>S6vv~yyN6O)qZ
zKit-}ccO<AJ)P*_L`Nt7Qqy*KqLUMy*?e3cT_|12ZmK3{Y82-(%VPI(Vt^9^o#@Tp
zK4f3=Z?YdLmHlPqtEmP#F`W5eatJw;97alg??U*8K7t%cj#9m&o#@5UHYU@Lbz+>#
z<ppt~JVz&9Iq}+w$;?+cvC@etPE2*;X!qD@PAp?S-HB7l^fR28>BKBG!a^rzJ28jN
zxujfCa~@^Bs#zd=kzLyv7BN|@@+D3zrGI*;y)G|z;vyGPmTHv~tDShk-Zf6Fb>fID
z44dnm*zH8htGe}0Y+$m{iEWfk<YsaUxs{Z`<-5(o?Xs0sveSuO%H=;M(!0lry-w_N
zVn6c(q({ByImqTACl0HrtPOC?iQ`Uqo$xtv!ikgYvXQ4qV|=j_rzvryAwC=tZ8;7T
z9cy%Eip2@5>XmzP+35}^oKCn@F2BTa(>*G=6a~K%0Vn=-;;IutCqnEx??hPDM4Z^e
z@9Umna+W-&dS~ztu?uWobmEfAFFSEXx!kGY8vV8tcbvGc@*7Uvq~B7>caC<K&4*6h
zqueJSsG96IqaM-!bK)`Oi4)H#PgPB0-Vg4%6Q8+byky>(zZ84p#9Jr6JMqJbcTT)_
z;uCv6IPuYm49S0gK2sy+_pJ%#)^eYn_@YMs>clsC65a;lrxU;ASazYa3sEk>h3YQU
za3O&U30)}aLNON-xscd}3@&7JY5P(VG8LKBg=CcEWC~JhQo4}jwe~JCHIp=CS~8ug
zNlzJhQJ2Yu%r3~~Uve|a;zCYUla-Rqh3qQHK`EVFKYMC)E*FFyQt0xykk<vd(Rn`h
z7IGm!rGT2MpbL%Fnkno;5tS$7B^QdjP|Ag9h9$_7<jm42?LrK_q6<38A1=%&jaa&#
zEJMnZE$hOi>c2k;Dd$3Y<`q=$oLSnjR>_6ROsbGoRc|#H`fv$rx=_o7mdtCb-i9vJ
zq1RQ(pDxs+*H=jc7p8H9Mob#J(1g;|g&bS8S<9oD3(Zx13m3MszLg8DU1-DnFS0G!
zj%-hMAZ3J(E|@vha9;YOiwj*{=;cCh7rME$kDI!?(1XSD5slRMlyG&lAsX#YXgkj}
zPTR+YzApUjLO<E=Qs6>=HU2;s2GB3^LP;{oAQuKR8A1+KmBU>4z|o{;gbU;3^TYqe
zj8wg&To_Fsqmr?d^eMChWV{O#*qlgCQZ<uhE3;sl3)5W~>&7@YX1FlZg^RLrU6>`i
zoC~{L*zLj`7v^%ptuD-SVZIAnT)3P+b^*ghE-ZFoAwAqx_j8`M{+GD0)P-dXt3+wL
z%5wT<a)k>kU06k5?ZSG>8geZu_3K<{$|c;uWTVPA$;xCtos`9pYl&}jVLJ<AZbmn2
zpxfcXP8UShevS5JEZsh}ZjTEGTsY{$UKgafDTRKY3;XHj6naSxaq=TB9ChL4ftbT&
zy-u;mTsZE6{Ig6J>4Xa>U2wVJX7MT6L)23Jk8;|DIF%S&Fe*2>aFt6dgIHX!$|>li
zcG9r9U}ud(RXQneQ|LY1ox&>jy5LjpcOgIzswCt>nv~k+jxaexo+Zzb=SeBJKq;P5
zf7yjAaw>46v>X32{Nln_Sxy(Oxp3Wu8!o(Z;k64lUAX1KU(dA5rrl=cLl<^@(YEp(
z7w$5-N8TqNkkXqs86LUtp9_yw^1_8D^rz%Al|Of(E|>qMN`9@3k;Cc@n{Q<;-H4IX
z<~uguvnk_$VDqC3pD3S6$$Ni``bJOfMjAK1(|?dZUHC<bawDM|iQL+u3Nis1`%ahG
zjU@DBZp2^PC#f5)9lH3hUMFXlOqIfol*&`N(SysM){S&-6l9*>jSOz&q-Ru>Io!yk
zJhK~F=vm2ZWOmg%Ii=prH}JVslG}|u^t@y~GQa9A;Kmv*gDhJiHwrT^LKamu#VEzy
zDB(s)H%hS?Pnqg}oIHkMeK&NJSW@ps8A@3<D!WmI{s&o(EKgP-E0UGmxTuz=DwEo7
zRHIZUYmhZbnR_iaUa`K8O6t1tC%v9Z))z+uHyXOp$c@Hs^l_uF8zX+`ny{c9*_3QX
zHg}_i8!hRr$TqSmDKf_di_liNdkWgS(ZP+5ZtX{2-BkXU8=aJQrgU+mD<xg3-|s-W
z%hqSoQ&sk&^d^g^(*I2{?bHo(qn{i7-58)Mhf)T*F^Dpl9HM&vD~L-AwOw?$O8$}O
z>&8eoMyaI#YK*3jQOSpe81KdeH-5Ph<-tTZCb_ZKjeTxRX3b(Zmbfv6KGltBl<98F
zQ6tQ7W2W+1Zp@}XZ>ycg=hEkq^T`F|LUIu)Wk+sAEp=m=8*ANI$8fpqpOjju^efz0
zNnfSvSIa(GN_(cAQ|ZTW#jbZ_yXxKG#zr@;grYa8WV0Jv=v&EcDj%3o8)SzYJ5{oa
zvfGV4locF&zZ(bKc<q*t_;ApTLvFdiFRr_B*o`A@1l<U^vEgUTQ8(h;Fwl>=ah!63
zJV~A+|3^ywX*Wif)rlD0+S@$48xA*2oUfU*kXF)0%F<ro_mrG$dPtWWZi-ypPA)6$
zRh2%9-;IDu;_p@#X7j2W5y}}i&bo0<)m(DpJpBTBQRQ}i(0!TBE9Ad!<f^Kz!0@<e
z`F70>H>zII&ht0j_)t+N=l@%7+?KPV8sR@T?kd0M#(m`v+<2(`k*qha^T#TALV4=O
zGdG^Q@q*1)s`sUwSJV9d{CsPFyk-7{d`G^Qg>mB}y`lQ<`X@JjB-VX)qdcz){*}G5
z<liXY$sca~RJr^G3J(%^(9nZM9whW2kw<&tF&-rL$PK4Z$b-TjB=sPf2U$GG>Opc3
z>Q9V5`XeU22Ps%A^(j3_MNdtpA=9efbRGmBYb!8=N-|P1k(o)kbnUc>(b+uOWpDpU
zR64syd$G&GuACm^@*p=|2FXv!<3V1P<nti^A?=Ms0VV}iE}zF1p_lZa6s0Ixj4V!;
z@Zd7HOIt&1v<IabZcC|?rVMz#y-w#rtOt4z%6Q}o;W0HlDC>cCJs%H_e$xHH`dlq^
z<vb`a%h^IFj|!BE9#m3EWy<VEu~k_wBUhtTC*|8aH9e^1L2VB{rqb8-;7<?g&>tq$
zNm7q4A~zVVue^Z=Q%}T7*w}+69A~QsO+9Gl!2~(odC=U079RBSptlDtS<uFVwjQ*i
zw<hENQfTMV-n7f3JHz%Kbf9$f;4cq4(YuhHNm>4~eE-mu&2D7;pF%z8Jw1s3d!Y}T
zgFF~a=}Z3YK|e}=asVk~4wQAvVa12Y>a7qv-h-hY3}eA?a<nX}svqIONadp_4qjnz
z41Fv)j!gI~DsgJPcYo|84<>ss+k-hCOkr32|4L+zQ`wwGPA6x0Fq1Nil$vz;F_*r^
zgS8&a^I$%k3p`k+Y8Fx!k&8W8qVlC47z=1e^l~OE$d%+ORkPZIs!xCaMLFYLlx&f8
z9;{cr8$8&ke3J*8>04BiH?@A72irZ^;lWN1PI_>PUAsKk@4*2NcC)!h)$gV3^WfY0
z-{+ZwOip-kh;mp}9-$od;FwB|Q;aEM<9`|bKQ>RR-VNKL<LHL?GSWnvNed~fLhj&Z
z_rT%7H6O0~;Pk-d!96eTd*SxL<3TnrvU}n6z~{j^56*kwSJMVP2+*si*4}}H=wa0x
z@!*W|vmVTSs{Q41!Gnt)Jon&*2bbi#C?|ARJos160CZ{AUKD-RgD-k*g<SKXX42Af
znab-N=LUJxgIgZl_TY{OkJb2hJ$R`69_7BAQ4`~V2a|Y#{YMP{Q#JGWgWo4?J|&-#
za*h3$a&Gb9hX+4B`0stRTv7bB2c1*v->7Nddhm|^-h&U6j~;xbd?G)Svix7<40%D@
zm%cIiu5x1!$OS@wv6;#%murrR@&aD%w4Z=X=tUw*Vlp|I#EYa9DN9Cawl6k?N>X~|
ziip|>sl7<UFs&CERBt*;da@jU+?vsgOl)RWHCZTGy=ct;rRMM=rx(M#816+bcEx(3
z_ae6!dDzTL7W8VD7SHEJel}$R3V1Pw`$Hiw3VTt+i=yl*=|wS0aaCFNvG$Ttg3b7@
zQeH%}S(=Pdl{!^Z#*4CE3}AEVX#C+tRWGV}QI1J@Qr;d^pj0F)c~O~Cg_Jq2DTnG_
z)bOIE7p)l9lxIz;<wb2u9WUyu`nq2HNw24pkvY+T-jHmha`~iD#&6<9Qzp$+-rS28
z$~WytYp-^;@94!}4BL3omeP)FuPQruAs@`jfStVP%&-sHh3r9gCA*Q`y^xP*rCuIA
zne_6aH$@V;#&2Kce|yo7-d`p0A5ISRVvrY0x%mcrF@(KC$@pL3{zG3PHC~MHqQdCt
zkzS1QVzd|6=3|-{(`D<kW-K|*i}92RUQDLQl1!vbBISMZ6qQe<eAtf}Ud;3&M-T0}
z%wjlS)y(!{j`F!)%u~LuIu<Bj=*1%Ci@hkw-^DNUV!0Q`yg2T~3NKcAag;Tyyjbl;
zAhrG~?~=L3iydC<^kS_S>%3U6#@Xz}2IU(mo5)?su!XW!^=_kV_u?Q|qdbLOUhHSM
zo7_Y0CHIj{TWQbq0A1vu7l-JFRdPi3ggV+OQ9g0qeIw?C7bm^A?S-WxPDza{zZXF-
zPOEw=C5|+BVWgNyGbuw^<RrgOI{@Wj^TO_h!waYC^?Kn_?)Jh%f6Qm(qx)6w;>-wn
z5%xkpa=gJX;>AVT6}>pa=2`L_d7hLxUhv{cZSCB6naOqX3i&U2m6U>OluuK%<vcVA
zH&uR1=2GPM-hPMST~a=-dEmuEFS_{9)rUu3{Ks79gX_BPu@|4b_$+hx;;9$Uym;=#
zM;0VZqrHl~@Zu$#ugKSAl}EZal(*zN@;&*1lnJNqMEt);zj*Q0ivm6r^x>Nq-&v5#
zhaX=2^dhkj`T4iZl4H@o*cIi|o(0GRWI{3#DP8himn8I_X_3^2Wc1`@3Nj@rl`U^X
z<w>JY?L!(L()y5&c{Vb=4;g&ONY6@UA~TaRZ5AKW-~Ij0M+V96Lk=HuvNtc8i_ER+
z^HAj8G5J)IpHksnR3RS<`{Y;Wu|<6-IY(D9jlM-1eGwmKrHQ@T93498iusT#LFwW?
zl%SL(B`HOT_Mx;7L(=Hw5kpyBB{tRvy$@x4DC<LO&gc&x%K6a1r+vkxJd-Lu^yMY^
zDzI6RtmH#wN^ft><doV!h^zWg&4=m?Yxq!yQj?V4T0YcPzBgLiG<ALWlSw_5*Z1Lb
zBJFr==tCnP8mqji4^8M_<G=r-^5#CYptmGjsXWh@s5U-KIfi*@^lg1;$Gkn+LDh7m
z{N+O@m2{Ssz;ADM^P#&BrzH2GhYvk{*de3s(Dh>FBp+7&i0SP^A0I6FbbWmo?!!Mm
z{Ov<O7WDUFpbvw57{F$Ee(oVpYA~DHU8Ur&03U|3IgFI#ZWfH7k5<V@$|$lqzX&&m
zK9(Fuj`v}L4-@It<{<vxK$B%@eVFRQ=~2<Ed|2(nG#{q3W`+-od|2$mOxbOGn9Xn=
zIftA}%JRg2RcyWw3skaD25I#B9rY3)Rxn>mE+dz#%J{ozt@Pne@b{T;jSrht?^?<_
zay_}hhmERt2H$RNW^;=VTPfSf?W#t8JFwG-T|VsgVUG{{<eV@B@&BgT>yw)g>h`D6
zhknKE_aXl3#0NOxK_3qJaF~9?hvRCrqm*OhlIKw;C?{2KO1@P%&1TStI3El?to%F1
z=tGcaHj}K(Q985i3_e&{<|b{Vopg{+Qr4}@hf7JcHR)mEC4Hn{)dYNaeoQ+#hkOY8
z5b@!R?0BVPGu+lrCTD#(uPV<`wk5y?m0YA;^5L>duK4gT{VG|`uWgqbKHQX}EPy5f
z-16bJ4|V<c)2|(ycYOFH2P2E``f$&O`#wDI!B<9G>}%z8583s|hyQ$dOn*Z@k@fGx
zGrCm1lxIPIp^{0Tqh8Tpt7OP$?TC2m!#gJL$q%acqdfgd+Ef1G!&e`o{D2?%=W7f3
z&4=$knC|Mf-PQf@;U_1Nx2eCBNKFDi68e$FkF0(q;!{iIM`}u9GKn8aDapv>WC}7R
zDT5U4jVIjJX=ISJ+RIs5cBS(pJtc!*yKO;6dL}hhW<T<>_(xA<^F!xHg|zzYe&p~Y
zrytKx#uV_QAd7R6xyd|aUO)0tWM26xU(dx9Qb`Fv3e$^_Mag2Sx40iy4r|-DB$HBP
zG+A2J#87f3*2Vgv_d~vyScXY8Kg#;?hacrsWhFn#(<_h_RbI2Lwh1cxQH4oWmG>*4
z<<<SDp^}<@)bgWHDP3)q)bS(W({`kKe$@BlkRONH)xeJleoXYEp&yO>XzWK5Kl=I6
z-;Yjd^-YB=YvxCDKU&b+k}b(rqzv1d(uS;`9PKFW$qr;kQY!!QV?4J}XC__z=t}8E
z_V%MYr3cy554p;&JbL+Y{jer|nD-@Rw7>n3x0E9C7~sc9<^%m0<i}w8KdN$wA4BQG
z$l)rN|E-Tuo@tIY)F?kjGZ~}uv6OML<SLo+E^3k=ll|DwWQreC{aEG4YBs0&G1rfI
z^yz-gpv)v^k+aD;q|8w+v_7A{(2qrw1>^><sKtJ)P?bw4OZ`|Tv-=UVT;=h%CSS?s
z)2-UGSmVd3wEFE#*7~uIvfhsker%*~AvckmNtx=>m#D4uZ7P|ZSsQH!n>+p3rSjdB
zJ>*_;pI^JFpA;XES?tgqWO#{BLBb<`T=e6TA4mN-=EreAPWTb><6TPKNmg3?u*x#i
z|L4bPKjP?y_+&)%RQ}l9=!c1kS>-!lM%m~GW=7vlTH5Z1!w;wG_4(nVyGf7Ay?(^<
zR}Zpmeue=*f|L`y4uhQ5!fZzTIHRUI>&H3zdGdnFXT6QOEGGd!zWMRpkAIn8l@&ty
zl2(7+j~nzC<V`>Rqulc2wjX!s_sF|s=1bZc_&#0afgcZ*Kk_3}y5IjPd(7~OA5T^9
zGda;I@Ai+j?Oyuv%8%E6yixf_Ki<;ck?&RhLC%>R`4f}R<QLWZ)sJyWw59st$4@z1
z29Q6XjsHuI!92RO0Yn9W01_}vOeQ1~k#eC4DNYhV(g2b%Nkt|nr7J}MDU}c0r%O#w
zqmn(DkuHGr0c2p3Er9F+WTa;zGpouh0c52&=X1$HZ<Y>uDLDhkMafOdeDee_fR(G~
zXlKX*%nJrkD1gAN=#MF53kS4MIm!f3Hh>}l6lFoN0AeV`11J$dNqRI{ij<-D6h~?0
zrn=D4V@bWr4;IHC0h9}%4wLc$R0yC3y`rkA5<n$-WtE(cMOAt=l~fO4CZ9!3Cbh`g
zs`o^3ZA;Y+;7=y?0;o@E5I{r9d;V%bY8nL)POoj{rU5hy;FoOHAeslzB7ma-91Eaj
z0IfL5_yAf{+62%xfPVZcY)nyIy8!wI@OJ?11LzPy#{m8cpl1MbH@Z%&m%%#+khrk!
z(IjoDx&+Ww<=q14uDnM84?b&Kq*nmdQ<m->z~!&eeMq@EsWDk>zX19NFoN}a?nVy?
zU=V#^0MeAlmUQ~TOoos{$zh}nJ6tv^-OTkil0HiHjt*c9eXL5xQRcS8ga9T6Fe!k^
z0c;OoM*vd-m>SS-ueLsbX#q@U<w|l!0P_NvPoEjUEXr(BmSIi+bCrLY9lb#L(f}6H
z7m<rqzJzj{3%rcJJb)FdS8kfHioTj$L#`#)kupcQC9W*zhJbd3kd0jCP2}bPwotZ`
zQnQUB7a7>eX^T~lJs7|)HO_9z9&&F0`&7O^fCI`$Jl7qfA105eT$bT@04LadAHc}~
zP6c2Kz%B{HcB{1Qema0QZ)4)rRE7YIbdyTV0a%n<1Ng?(;t0Sg@2&&59e|6ymjk#G
zfSc|Kz#D)s0Dl1I)wF>CBJ>~`Qh7LlEa|ng))|$Y4d5JI&s=^xc_Dy{s`rxY?fjm6
zP4@n)@~f0<<aP2!05?@{s{FVUz@?qh4^?tEfP3`&<O7v&$rbx3fd2w`tdbW2JfS}&
zpOMd1@6-=bF9UcLz-uONRNjq?_cnlcD#=g`au>)C0elQ#BQGZWDS*%H{i15V${JSw
zJ%As|e^SP$*CU7oLHrd&ryvprktm2if+!b6;vkX)ku`{HK^!cNq(SYdPaZ_FAmsMV
zy6w@c((4D#iB7>hWe}-?NF78PHl;E{5NYX6wnwL<q$ktPMn*~|GBYXlS%R3rUxjB6
zB1aJCe#VpuB4-e}f+!qBksxvhk%z_d2W(z7)vh_w`IP4mqJZ*(K@_6*YNMSMi>f?2
zh+_2OWC^k)S&Ee6G5kxmG@CJ`j*KPsLEN68t%|Zi$lZeEURwW4uP@K8ia}Hg!k?&g
zg&;1c*Jo~}s~p6fB4{2&iy*25Q8kEatdz;?QmT_R$eLs=vUU)4D6hHErT)(#>IG3h
zhz86XlMTs6q}1FTj3)G^DrrX9emOS7I$g=lXc<H+Car_ozt`jc_1T6=+aTIe+LIkf
z8M7lLZ3cbkAi4xGGl*G1bPeJabmQ68Er{+x^a!G75F?oM3Zi!q!{~j;fuxMqH;BKL
z_Y0!G@&Q4V%Ag&ygP05^hmb>6O&fkfKAg>e$o{)9QuU4sVl;gWIhGu!dJi;(+yZYx
z5ECW&96gEoWO52Qm7GRSCuLz~1W}huHCwi$tg#>*LCg(eUJ%=Y*e=IQpV;|9EDmA`
zCs{x)Bo_s7g5M!osz%!s#Ihikv$=v?8^lV=DspvDyWE*P)&#M1jZS18b6Jx0L2OXI
zQPwt>O7hJ?Y+=5Yynj>M+jj)9Gl-)>91EgmZ{5d>vAcrU&4N8a>{H|HrO4e1_6Ko5
zj&YSsB7+<X;;>4N1Tj_3@i;@9Ji8!H260N&7~_RJO~#Q1S%z%dQpv-_#7tU9YY^+z
z$c<v)48j$JHwd3BQo>kw5U1IDWvI?0=ayl*Y-Mz|uQ9jB#rlJIuqHadL4rYqC}HwU
z5E06SJK9Xo($A6SNeM3mA>WA=xg5lmApVPJPx;><t_Beoh9Qh=L0k_a96}_78$sL*
zVr&TGLbxS|e-NheQRzbRsU7YH@jZxwr=st1<VP|T4~_e5J_zEWn&YF~cpSu&Al?M=
zmSJ9}_Hy}@{w#>+s`5n;FX^wy*D9AU-@cR6$RllKzNcL0%K5;8kL0HyK2yGsUrDL|
z7Q~T3+U$M=@sr`(4EkR|M1_D55`>T@gtQ?f3~B2jT}J(Ir!G+li9<-jM8XsyB&8=K
zldC+@0d10$Y^Dk!waVXqk6N0sboMK;@>{c`bEDITkRgPOA!G`nX$Z|i$Q(kJ5Q>FR
zJcO(vWaET|$m}7M%Bb(JkIfN6&Jc1j%%?`qP015NUX@(vtt~_T5DG9UsPamaP?%ms
zB}FNJ{D>+MLdg(ngiurF#jrvM6+?&)p){K@A(T~9=_s)w=v7iCga#S4^VJ_r%8}(&
zZ|q=gc`C74IfMcHQEe5~TQ!7g^y(_f_aUlQ2(?3KtdcsEhGbpx&k*WS>XR~lgAn>~
z85%J;kwu%SJeq{$LN402ZXQAlcKsbf%Me<H(3Q>BWIM7ADaCDNLsZa4XdglchRb$n
z&5j}b#bzh6v#ReB!c5LxYPyBcJ%k?Y>KQ^`N-wfE*@u+MgS@1n{ClEb2>lrj2;m>f
zzz_ye29v`>7($V$hK4Xq`PkapQtjcaM=%^ojtXHkWsItv(I4YOm>|m;!mJP`GM`3H
zA}5nm$f=~aiMHOR(`S$gB06tI{p=9tNHc`fA<SjIpPU!M{16s|uu%4vO!|!>ERxej
zW!-Z2E~YObmy*j!DY%<azaoT{EL%mcAy<<>`0Uow*OBW(*g(miN!#l-g|In<Eli}j
zi?TI@Z7SIw!Vcv-<#6LvyH&D>vX|T!!p-s82g?W8Jg908g>aaDBn0_I@KO4)5RQj%
zLe-q2oFqRl&{o~K28d(RNE*n~?R5h(=}jS+<qY#oX9>Z>+)Bz+Hi|t22gOOcRIfV(
zqemND9$tn%(jP*A5+p;U)HKeHGa;OnBQ%VLVf^fjbMh3z$PmW)5H5spF$8})-IWmj
z4dGG<E9S&rmJ|D%*bZ}b!mA-%3*lP`Z|+82=a^5)8?vILjQ)VUP2M48zIQ42Lb$Jz
zr{kg@(jTehKg#0}o=~hyv?ui}gy(F&2;prA??QOV<}30w`G%C@l6mo-{*nBka`{94
z6a6#!Mde>9O%KL?58+1$KiNzaM&dAj(WAn@&l?CM0X?Bg4nB)YLQhF1Re7>7k}FRU
z*8Zs^3zmvWYBG)LO-o5f$`8{rhLI_Zm@sr<WL7nK!pIVaoD;H!k&R(?GFKQmC^^X_
zx3#@AH(jJSzZ{!4jC^6_XILPN;*^4_rVyntS%fSaMlsbpH<P}E@{*KNVMJ3(t9(yi
z#44{8hCYnlJe10WQC8)DP|Af-o>GCVsCp0fKxKNBFz)h_*Hy!)7Djc3HOM+))TGoR
z<=NGyd>)Frlt0OOs<(a^gCA>0M58bohtWNZ9$_>IqbUp8h0%=CO4T<HqeU2dTIgDm
z39IYGW%AZxv<YKkMO|A~maU|P?ZZftDYgTXj^tltCsGPJhtWlO*D$&%-^2^K^bBKm
z7<0nt#k_YIeJFjy7#7CxF#ZmsUl{!v4pGw%pbR7j$+J^=KKcG9{c-=_d+9%6j0|HG
z!x3cN4^gAT7!$@cHph|^$#LX(QkHx|7)SXFrb#N99L5yoQ^VM<zJV~E;S6$S7_(H(
z$)8bk!<ZMw;xLwkF+Yq2VJr%xGyes-_O`YH7lx50du+x2I@2uOihkNZn3jgIE{yeI
zEDK}j|Du<3v=wU1m0_%+uO`>1d~LiO*KG)6qb#|~H&J$mv6-?(<y*tpM&GWI9kOxx
zz35%C-!j}o9whgMv5&H!l;u1?8FC}$5alp=MD^x~)i%MgFpe`hq4JYqoQijqoDKs<
z?QN<t3{x22!uTGBISfk}7s9w0hBXXZ7_KnfVLVKstKBcg&S@Q_Q;jp*qw|E}4dWaW
zUl=(HX=_;Sz~v7k5JpgTU?w5i|C{N)X4YmJ4kMyQI72y0Ug)hmPx;ng=gg$PME@_0
z$6;I!<4PF+GPz4$C9j2%v8e7k{RS!H-wflH^4nqDQGO>A?$Ph7<bgap`Xe&_D-ANj
zlQ7;ec}gyspnFDn9>xpGOY#*d^{>PD5Y(R9+pu;ew0F$klOM>B<R?<fK8Nvz{#7N7
za^Q!&6v`Pjf}9cjVjdL%_=ivBLP$W7X|qL;ke(=l#1ZYo+azozBa@N^4<LC2DI!Q2
zL8=HcGE7aTA>EaJAFXNGOcz0Vij1FuGT>QECY5B4APYUKO1_Ve%C0<SkuFyRxg#hY
zK}-aBm=}qlXasrb`N;fa0kR+|^D0Cs96=nv@+3*I2%;GlkDx>Z`*y@+w8xZ`r(lmM
zMK-7rEB<M*w*0yXVk1}*!O{ry5tNCbdjzes#+HrXj|kdFP^3P}MNmEh?~a%j5mbnv
zVgz*~_>;4!L{^WWGDQZg5<ykv)hN+FqH3t5CZ!fxJAyhYe{?ja9=$PHpKL%jBpZ=3
zzI?VOY!X3JCe6s^syF_(|1BeErIOZ^He}lf+NnHC5FH}u7{QQn(fa(_j`tV4Iz`Z#
z(nVEvji8(I*}tNCM9?#W$t$9JMKCmiVG;CZZy&O61b;`+Pt^~Kpuh3~5e%fSwQ2{r
zJO<0$Rc}-U)O#B>Jc1ca{)u2j1S2CD#pV=pbOaMAV<H$E!8rN^Qbrpe!9Biki?=F=
zNz5m!-krNJl|GG}uJXfcF*AZ$5zJ<?K;?5NbIExT%vZTQ@rCq7<YJYdnT=%;ENAn4
z1S=v~8NtyAjzzF4g4Gdh&!<~)HhK*Uc0{l<g0=K@5v-?dAh$%Yk+O-D=dwA1Z+u=`
znQT+}_6V|O*8Wo1#biIZo7_Y0CHIk1mhxBB0p$lHI7C0Jk|VOf&~}645uAu16hSzG
zlk9azwEy*=5|7}t9B2{P)l`NEEXs`$n3S7kgoN5wwlcA)-2NiUq1+jPOL;;5B*ep}
zHv%8UPX<&?P!35xUl}&S@LU9ERPR|iBJOMN9%~KP4v-5GT#TUCY;8BYB&Rr*U5VgY
z1lQ^Rl2=LnPHmDK5!_-^&fz!Zq?ca{Z%1&4;a&29>|>Psq!bh^q?J94;E_r;jl<&z
zo<#68f@iYb&tS(HJdfZ-1l7-=#u>b1W!^K$cSf7`RRpgicoV_@i8>1?r>^&F&xYde
z?k-`H;O=fki$kHfLveR2?k>gMf0QDnxW?TRin}}Cd-rhu-&$GEdd@!YJ=gDKA~&z@
zAjMC}VnS9EUf;o+J9v8s@9rQi%cS!C9elZiublh?`SA`uQ9hGWBOmAfCKrD;Q*y#M
z@+T8ONu)+gOc`}bm&AmmCM07sx#}%g6e*O;9p+QfQ<G^_e*9BhoqKWVOi0fp1DTP`
zq-rvo&?@05t)<UqLUt26e~*^|Wl`mkgJn6%Tx4!Cj|q7xQnTtoTmcgbno!b&QYI8K
zp|A<X*jq%^6s2@Zi`3J#W1u*jRni$snDFNmok(dDbS6|bA?I}MuuR<v_a^Ggn6ytV
z#+#rw!C-<>jaHFTmMlk>H=%;+&Cy@mYn4oBlUfsbRAE<D6RJ_FlQmSm98R_Ab4{2>
zsbfN26Y7~z--HGx3^r*uQfO#GBNIBw_A#L`%i5|DnwZekgk~l*SIN&Nv{2sCgxtK1
zl`Kgs6I!dh4P_uVemi=5nUU)4U_wXbMeCr8@;;QVCUm28CwrLis|h{nzmYPpUM6fg
zpj|QK(VOA@@7gorz9#fzv%jhwV8TG<gG`viMH*tlP!ookFq~b}$q^<@FkzwzBTe|-
zgi#E~lB3Bnq|9X#zh5)Xgz+lrHALGTlh~YW!dJe<Glk8m<TO>8=mciaXR2hD3A5>Q
zR5B^QHrjj>mYT4P;R5mx6Bbeyk&DSCWTdq=$#S~!jkZ}<n6T1>RVJ)9VQUuSW)t#+
z;~$^VtznH6tTkbs^7WJrCTvv6Cd%G)hAk@DO4&wENRJ&R>@>k;g4={$49zB3OxSJ0
z9uxMOu+N0+CX~%;+;74G6E2x>*@S~895Uge3H~g`!)oL+CLEz3HQ|^E$LXiY6XZ!!
zmid2_s$~p+QBJG;ZxiI>G*WO@CFdyTP56g$LFNC-dB<bmLl)yAo#Bd{(dP|UO~{zl
zIAe)U{F(_b&KbHtH3*B=(cj>NH_2P%ZSoFjB3E=Yl$)!wn&4p5M#{q2<&4OxEtNc+
zCX^ef?IVu~UbzmN@Z1ESYzGtWv)<lK>y_^$2G|Um5HcZ5kC1mwh*G31CRd?}+STSi
zCihhC=Ifsi*nCJnGU2i6ePY5>dbt$Zyk3~_Qm#B^lr`g(T=q@KXV&sJCcKrar5QQQ
zcxS?U6H=Iwl3gE6_|6eNsxd#A@R|OF{HpSAl+zP+ahwojA~O=3@e^HUl+27I%9EPq
zli1oRERW<2mnKCjN=8+a+Kgvk4Qb3s%Oo9{UiD@$<3mO5nvm~fTqZLzGtWY1C9|nY
z`6;6KvHF~5<YF={eVNUNbh+ty$h@jjemXP183oKJsFD(tLS_`EOqro8LMciXBa54n
zlV6aRg(+!9DKko&(e#bBzvQ7~O&K!Y3_V41gBgLS_6MRIlk#R%pbXAxtY}6hGrGyJ
zx8f_CvG7=YLo*t&w~856&8SANZbog23{rzq(~Mdw>7vtiZXGk~GO1@qeafP&#s;cp
zPgY}NdQ&r+nbAb$m$Dk0n=zc<t?OV$3o}}p@iTkds+v}2v{v56j5S-dm2JnQy~=-~
zM6wz?nz3=Qz7w0BRc{wFy3*saX=jbBY<Dwyn6;Zx|7u20GkS3gNZya~n;E?+eaOD5
zSAI;v|3cTF%>m><auAs>n{lWdY-U`(hb#9m+>8-sJoMv{U)w$-&6w=O6eoT+W0V=A
z%@|`weme@-G1iQ6a`ak}#ES7|OfaLP1)VIIXvQQn>}EJ*S~I33td1E|&6sA!0XC<b
zF+*0wjFo0o=i1FQW0p*k&UnbLpKZn*Gv=!8u*i&g^!elh@(<O!kn#%$S!~7<HkXpi
zRLyeA$ZW<{a(Fz}-N<I#Va96NDQ2uyHJd5x%vi6I4YE^|Z!%*UXR(FJR&tx_{nL!?
z^h2!KX~r%yb~D*a?opK+dD!n`bH5pKQ#;wn2iZKNY7SG5kVnlpMmer}Pf$+EmcO8#
z9jDCr%Z$?uubXkhjKAq;%s6YtIrEPjcVCowG5?2@2`^CoCFM?fl3b!+HscEADk=Fj
z%DrsHn{o}*>u;HnFS}7BQFiUHyluuERcWG_&9G3cD!0jAX0g)@ml^3T$Y6on438O~
z%xJd|UNd}V#LT$MN&IF6%?Qcyd^J8mzBm-W_iB7|UJ}EsiI@?k%qp%e{C{TLGvkFB
zFXi;VuX}Vf{yuvj$iZyJBl=@96Tj*rlRRPbsa!=Vk~}v<H%U8BUorWh^4Dg(p}!^H
zk?&QnT$w-86Mk9vvl(B^=$_s9RrZkuNi5ppePh9QGve5k1QsNsCsxUo9Z0G?r3J~9
zC#R&aVB@?W&+$@OkeXo{Rg>0&bjpW+h|6d}CJSmX$!tLu3(8th&VsBKWMf#wg6yh3
zp9MMSIW5RV$!+=nzf+dSg1oA7Sv>O73y=j>UdV#N%A+Gt)PiDc7AJLN2@6V6N|B{W
z*$zz(YTKub1@TPuq(Su>Ef~%JUO(5@%H&brf(jN?w4jozdHyD@vhpgFsuomJNp%ZK
z6x6m`O$%ySP}_n!7PMk-T?^`2(Aa_|7Sxx`yI9|lc>_|uNh*&<7VUGb3EwJRv_M;c
zrtED-O0&5IE$A&(@-t;D5BSy=v{89mN;?bMQ+`o-2Md<4xU&UaEVy97zZP`0pqu0t
zEVZD!1wAa7X2Em|ezo9Gc4JQqdU5g_*^R$Z23j!4g5DNH_(j@27W8G_kL*v%(hjg-
zKzeOU4rVgag5N1a$e|VtqYNiUkW$<!Jx0+dsAM!{3^|q@XTf;YyYz{EB7G7$nVh0}
zr&{nI*LQ{mGcA~F!G^WkhMi@>Y*iz7-H~JtoAbvT<|T;gU0}f<^o1%}WWi$PsTyOM
z1<NfsV!=@hR#>pog01XbWx;9-w$Rt8`gN4Gr2MP0p0a`5NNyrGld@Fly5U(l{f@`+
z+bsCgg6$UUkgc6f-(rup%sW}O&w^c)-D;{m7VK3%kDoc;Z@~d32gyUK_i#dZQGZMh
z&RE<DIkl@9<YRcpEqFIuKWB&Gqy@wG#A};~m8UHD%YxGu{H;bfXTcfzS(R*PtnKvk
z7W|`<V-s-Ef=g^ZvEZ@=S1fqQ=2Z)>S>TdOG@I8gFsrF<Sa6emi@Z(VAx)&rW%uhi
zx$mfjO{)bqik)<*8m9#>8fuH=k#$L;k1+R=KGIJH$RHUaWs<O5IdlB@KO)L7M&2d=
zBkx&opCa`S<g&*4M@$~8e8f!MQwyG1@SMp@3tmxPkgdb|*Obo|e4)It;4S4H`JVhh
zek5gHpDb9wTiJZIz<EPIW|gk~6YZ$@#)9u;oK;(KSdoY#p4f_hDYa`<QY(^KQN)I#
zHYB$qg%$IySYSm;D^gie)rx9Xq_!fB6@{hDinJUdofYY=Sb9IMB3Cnm71^xFZbe2b
zGFg#X%_S=(ixpx11Z_JONB`01up*Zgxvdb-NfzMkgYvLGADP#R-&voZP5E!DfE5Ml
zg-BWWot;qBiegrjw4#(1au4c9#kHp>#aU3oip8h36)$at&Wf^Dlw)4CyuOST@pQcv
zMv8$<Szeo59@+F*mBV->hp{|!Nh(-TQF$dwWh<(v<O@*UiW*ilv!b~bHLa*+MFT4u
zT2b4IQwR0GpVc{wpbp)BKE5uco)z^eQt<I$e6!SsMpiVo;${xxJCnXkU&Fb}x+YdM
zm9qExJ|A@Q-P;ycw6tQh6=SUU*@{+H{ANXOD_W~1>10J4E81Goj!8$dJ^2gSfs{4s
z*$`KZ+V<(pq>B|@Dc!92mC~K;K}wkv_oVky$>T-nV?|#phB4_!4kY`N14x-xZU{e!
zKA0Rr4pqJ1Dr30v5tNa#_bH=PJ}(u<TIJm_%#(xgMcjBRCa`NZIgy-Z#U#pPatb+>
zlx0X^!gTr!awa)T_3nSKJu#lc=3Fv+8u<RF+rLZqhZPI02+3h=#UeSVWCvMs%Zep(
z3RrR4iodN`X2o(Vp1g|RW5o(9R$8%%gRCOgkgLhopMU%xx|Yp#R;;JU+&5UUk-qu3
zc5ZH_Z?R&l728zJPAmSTZ&%3<EB@n|B9rX0Vz<hh7Q|jF_F1u?$ssEaQw~^hP}Q`L
z=u$?s<vC)-QHIBas`t1RCzPMG%Fj+|uMeDJ@|Vh2G{qVEMJtl$)Gm@|**s^(c~$cd
z<$@Les-))qxJy=CX7h>_*C|(3?=>s_?+%$a7`ASL+g9AMB4CxfE9gxOZK~c(v5;0W
z;jLJ^6%JM7q_{}86&@?Rbe|P|Ra1n^Uo)pMD7!M=AdgX*3=z3N$;Hry)HcMdxNF7i
z%kht7n_CgLK`&p0kk0_zQzP8B;(_vqazb&y$1<7~Pno~A;*G2w{kf`qVZ}@OE0rwd
z(fHO1*pSGEcUHWY6=&~fE52Cqk^V{5uUV>{$X~7au99z7*!X$BIGffbj|#kdOkx|7
zspKaclF*Z?q)0&|r>7uOCiG_1Mo44B_?*UEHsrP;tqtjHNN+<17Gxtc+J5{lNhUTk
zlUc~Dqzp3rZCrL6%D&L$VB*__oNOlCT7P9uV;&pw+T^}Q$Zta-HPzY<+GV+b4Fy%=
zo1`zSeEN12v!S>R=WIA{LkSy7+R(~|)+{JxgTV%)4W-%Csj13P;%(4V&hX~OW$E>8
zXh11vLwOr2&@0+diy})>$%e`{RI#C|N^00pO?h=n)!O=+6nU3KCaIm^s-~_D^^}|9
z(2(AQY^3tWvMKlpbD6xU4b4>EoYKOEmXx1WUb-RL*wEI7$u>-3*v^K2HuSflace_+
z8-B5&gAE;R=ww4rHC1Oy4;#8rx{}?<y=!#cZ5TRTJ9y;rs}0LTKfIR>zp<t_*@u*x
zzBU}=F+ad2pJ3GeuJVC446<P`n?uN9<WL*#uwJGe&SZoQBPo)kpBOiaKAIe3!&n=}
zsoqI)K+-3uWTFk_n*8{WRfe5v!!#SV*s#@x={C%;VFN2?+Axc<(uUcTKgc=cTvFyf
z&xZNR7s&Fj)(*mjHY~DXvC5a(u!O!;CG9F>x$+g1^L4b-XBB-lxrSV8!#axeu9uBt
z(yp!>RkBGopz>-wgtoDH#D+g@*iPSJ!#-8Bld{W(-IP5l-)qB@v)YpHXL3O02W>c{
z{ICrVxEGGf?z7=I^S{Uws^+8!{gg`N|LD`o|E8R=;jBt-Ou#=jT(IGx4UcU2*M^HW
zxY&EihRc*Y<P{rk*l?46)rM;nS>WrG(>mOu+*WzQZF#c3&<&0lObpGW#RjXYu~F<c
zI8@@43u!Lx&y(8*k6aCM89y%6du{O9;I|<lCk4M|E(Jjw?#n?acY(GcY(vC`hPjM)
zIZl*}sWIz~*7odwa@|u&!cEa1sL>wF#<wAtT`PNP!!sLF*^%0g=Qg~M>)t6{Vmn@P
z+V?hmu;G;rFEijZlQ-mB@*OFIB-{b)qYd9w@`>`<hA)(_Dqo!r-<8MN0WL!#^8d#9
ziOnQrQah5_k=%|HswT2EKBe;2zd^p|mBx-7Ow!tsj*{MvOm<|ZXCO1$we^x&bd74)
zy(|o~lG(`Yq;$o1MNaxCe)2Q7%JbNfS9w1Bk58=^w4;z6zd6v`fx>navEzvyPwgmb
zM=?7(*wK-b6t}}D3qUVnN55Rgl6I7`V`+Nr6ew+nj$LKQcv4RqNU0fJ6y@wFSr{#t
zl((aT9Tn}UWJfJKYTHrSj^p38(d64zRp?d8YGie?1}SAV?Ko83ATlkNv5p;0Ic8lu
z>QU;G4aiCISAZfTH?pI#@+Nky<8do_Gdr3ymxEK9E$Kg#t;p7-bhWXgt@3tuv{(L%
zEEq@YWJhN^+|0Y!(bbO4c5Jbun;qTl7-h$3J3e35^^k2YTjPoDS2aRUJ9;U<^*4Ik
z(TB~x<S^OhcJ!wYAP18J?HELnWlOlT%@8|=s$@eZ?F1Qa#|V{-wBvW>@+##RIZgi5
zO}1l-ybHj5oa!A<nPA66l}wVI#oscRYR5D?mNTDD&a`8e9WzvAv+bBoUrf%iV=iT$
z9e>!d>ws>)s$4*kTQ@9J$s)?0$ND8IS!%~J<wgI+3i?VrR@t#y<?HQOLtm?sb#~a(
zYqyQsz+|J!H&M#vF>JMCn;n<zxNOItc5JuftR1(x6L;8glw~_*Y3<le-)qM{${w=q
zEbV06FUKL92grk@<kiySF#U*12Jgo)IY`(%VaH!8KPjU8lpW2AXuC`vry2fj#~Ibz
zG#GbI`FT73p<f{XB`>O8xi9V&J7y-*&wZs&pG$w$j%)0?ZpR%vOm^H*l{YE3WW`ld
zIWNp~J82=Us@F!5o0mE$PST}%-`9i34zH};O@q%4za0VlkLRwkMnOCNlS?%8A=cl`
zWenR9QPV~#F+1+6<Yorkqu*D_1Ij}?9#I~v{MY?>CL_!B%7Km!Z3DirBdr7J9C&HR
zD?7gDGQPIstsU>|cw<MK2l|Fzb$9Q?zqjLq9Z4Nnlv11OqaAUaT>O)qr)vB!c6_CO
zQ^|L^V&~TW>Vfr%9Eg68OHBVsjgZ8F{d}I8j7jelhU5;UkSlEpgFI3?kcysKC21V^
zWu?}Y-hm7bly=BZg<>0!(SckJ<mMom9LP+`qUMs-fo$~bWDb?*bf6rUP!_UzbA2A>
zc^$|{$xjv~3y=lLLh@IDB2yKi9ImcilZ!b}oXrwsNmWzIfz6|}f-(-oJ5a}gx(?_a
zFtDJC14dO@*@3dk%TdZZP=QiW<&`L{xY%+juB!5C4pdiO!-1OgS}Lhc8J62v&w=^5
zjg1^=%%ncqfNV(iEvfD0CbFF!IG@|t)PZIWG-sFOtsQ7VZ%O{F@>UMaUaCF&ZNsE3
z*-rJgr|igW^yD_mn4KI*R!ZMPj=em_&JJ{OpsNGf8|u3=@8;0H^Z37~y3{2M&vxtH
z<u?B6Ku-t$o1pLIz_WS=nMz!wj{|)jxahzo2b`Jo{TvwPz;FlpJ21e3QhAI69T-X(
z<iKDDhB(k9kMZC$y>v~iqm3XUqm6K2qywuRSmVI&4jhZeBnKutFiMWGO!_=ib)&ib
zV;mSu8ApyMCy=t@6XjUq@3l>FU@F5!4os8dbCPbJs+sQ4z8O7(&6y6&qRb}esG7MB
z?JngqpgiU?T;RYTl$X7*(18woxpJ`s8&eyWFkeb8b6~jxE9eRL=#vpvI<Sg~xV&?>
z)`4|w?k3ke@TUU{c|*SqG9bfEs(v$N3%OO!GL=7St=*z$y95357<V|ZQ{}rTQ(ndG
zabT|l`{dMi;5fsCFM}VTA5`^+95_rrLLOE5G0KcQ#uE;lOb8t~OF5-#{-T_A;BS?j
zaX=2Rgza{Y;duxCp<GZk|H{FiTKju<*?}t#{N~gS^{WnCa{x{xa^gBGZ4THSxIw?E
zroBbEP2O?9L@|>VQiih1W$L!}pVad2aSjI_IPlPcUK4aq2V4%gS>|ydsOr5Gp96lC
z1ROu^a~pCX>_CM1e`J)5smi-@Rmr2R?>#2>RsK8@_lW-4f!oatkLgbwcq-?Ps(J6g
za|d3q`I3C=z$*t{JMe$M8urG4EMv7Z`kk6eK7%dI4{UxUKgkh(UfYIW*!=3iHwV7c
z<G5|5OYT4-l>2)mcH$=|8avU%i6l-Wb)qC|jyBRKb0V`7S)54jL<)u}ok*ufNaaLo
z<!PKqt6c7vo}Qk8%t&TZy*pAOs}tGSEJS8^A`c}8nUl;#<|bu16K>X#*NJ>8$?rq~
z<prHM%WW=|g`FtkL{TS-v9}UG1X!G2Le+Qw5?9KJ(oX1{DC0yO=J8JGov5yA3{I4H
zqJk4fCS}QTs<*|LxQfcFI8ljSStXIhs7kM<lA2Am-BH7dnoMeuwN>x1Z*g^%*K?vi
zy#d)!<&B(ha~+#H(aecn%$qy$nqg-)TR73uiJzTl<wR>Ieo@oPtJZDkZOL{jZ%^4;
zP~Sl%9i8Z;yh0{)p?4*_k=@B2<gcWxS5GH0<o$7u%j@vHo#^Al37f7jDFywU=<mb;
z)(>%Fs1pO7+B@2V)ChwqrT&LuPVKWIay1^~#BhcqRLw~F{11JUN=7?TFtc{ukjGet
z<D3{znLtidm6Mz>a0#b6G0ll59z6A6x)U>;NaIFYH)c99%L%xU$c5QX%#p3_gvW`w
zPRw&+mlM04nD4{_Cl;wO<=q*X?;lPqbYk=aUGu!g0eOv!omk?;QYV%<u}M`fcVeCL
z6_l0aDsnZs#)-8Q8FO8KtXICliH*wT73|GUY+-XNxt-kR#GjOJE40IG2Yn|gO$k$6
zi{InK0VfVRvDb-xPV85`@+V1t+C$0?IdRyDqfQ)4==v6Sgwp<B-MERm<FYH+yzazF
z%H@PICr(lRa^ieKBG3Pw_?v!)Jgf3^PUQNgJ>&X^$p!LX@}jD_Bs+q8>WWIPI&qDj
z@R^w#^qWrHa^g1Ksw(eLOiq|77L^Bh(`K6!b|wzesd`;bZ08)kPWYU-=fr&{{7wX%
zh&T~-B5x5x(21!%^dUJa7VD*XKCdw>>zmiOv4_4*a(&E+yH5P)MEmJl^ZWsAFUaHg
zZ+PIuLnl5s@zIG#PCRx(ZcrdyPt@GsI`NeL%!%ie7jjao-j`0iQvT_X;f?aL<M2-T
zd&<r<_~gWAC%!uIjmZ~Tp04_ZRrMRM=-wUDeP<Z4=sxB(CONB%bHSU}7@Mz4?7~kj
zjBsJ33rSo^>Ow6SYP*okh2$<|aUrWqTi_HfWTK>W!I(_@1C)x*)Gnl<q$MR!=R$gV
z29;!#aq?-`hs-h~e$>BWK4Uf)vb#{og~Beh$!E;L;+!tjNMxAE-(twcB)1EB)Hr!v
z$Vbml7EpOX%I>?`QWbHbgbO8IDC$DR1-hrLQOt$nEEvpXI5bmN%7scyN|QPl%D50u
zFH7o48O<Oot2|Q~l%tm?E2zAp3kx~2)K_+)ipr}}s=2T;pRu~Em&$9p&}W@?c*vuU
z3;FXK2f0w!g?cX3ci}=lV|y2VaiM_=4LM08vZV{Le8$EuG@*z$b)gx(xk_5N@U*&K
zx_(ykYDH;HwsE1Y%G=3>F2A-%IxzW7<sDt<<U(gQySUJU(v|E+b|+=R<Gh#YuP*dt
z(o5w#@}W1qk4pNw(2w4q9H8=nva~a`tHEFwhA`Z-4?`)#$l<C|o~8Wm!YHYC;Tglx
zE?8Z#xiH3su`Y~rVY~}lT-fTu1QslDVW|rfU6{n?WEW<-FpEBgoJvk}VLC+?V}=WL
zxJ|@oyRbmzb6l89pQn=fF8H@<yYCN`ETk+V7rW3!jkC;!H7=}WzTAZsE@b?wTgm1s
zQU+N~=^Br9l+EON)w{ukjr2__X_G-aANz09ZDVrSg(H+dUD)oz4*E_P_Nn?^F6^f7
zQORD}BYfJhpUDC8pz1v&+YQ=&Im+a37tT<Qk;lmsE}Rr`;S`&vNtxs?7cLdkPD6R*
z>xr|>|8?Oa<s5n5g?}g)NU6-67MEPO%;s$uu261}SIKLnR9=_EfZO&alUpjk|0eDZ
z-9(yIZjsAZA#Hi=E;wAcb4C|-!Rdm_h0nbaa>30?$q&5Mmf6Fmm-NYArUb|!DK+_$
zW9c(Pqr`@YN}_TCx^UNp|Crn-?~!fzM$ZHKL-G+R<2-iZiSi}+jnC<?TzKum3;IhJ
z4(2x|+-&@f3vcCu>_!SV-nr0gyS9VAyYQZsAIOj7C-O7-h5SlN{Wlk`a_hypfBc1l
z8;O)BcH<{{5;CdElTjj^Fr^!**-WK+UA&p(*ZjtGZlrhPwHt5T$lyjsH{5P`+{olc
zW;aH;G1`qRZe-<zW!%U{Dda|BH?q5t!;PFw@{+m8+@vgd9ybQ^_3eC2@~gZ6r69Td
zdi<*lxZ4~>RBur?in&qaetdDV1S!pulu~4AQs+j&0!HbIcSG-n!40DuKfBS&jj|lA
ziW^nkDCb6bH!4WMD7`!?QhL6KucVU7Zj@-OuUf!Z&5i1Av~Z)PjL#A3x>1i((~Vk`
z+N7*q9ZKeGs84B3HXs|4jYz31`6jN3@}_PyQ{LQ-_64--`LF`U_&$2!f&#`p1&poT
zXyZm(H?H;9*S@1YUv1~cuWs~|dN+RI<Q?4Ts>bO^>EuRdm2`3A5=ZW)lJ0KwP`)!c
zdb#nN8$(sn+l>MAK4f3ApX%-JMu4Nqk_>cX5c9#RcZeI^Z)<1kFqI5<V+4JqN`9vl
zTBaZ4##s6qH^#{tWi-xrV}Tpv-I(CU!F2kGZp=_qO>$#0eTqt^x-pGDT_u6(+DS3f
zjae$0O_}4yT*^F^-!7z8{=w!FHx{aVksFJZe=1;HN?%4USNRGzR?=6It5sen2iCf=
z&W-hMY;eQu#-vYi8`*orjiYXCa$~a_TbS&0W0xCS)wJ6vf0EnD9dgnY{P7>zZZ{4v
z+(XKe?{#CJ^8IqCFW0vDK_-XD!>V`vgt%jF9B1>Y8z<a2>Bc{9Tu3Nz<8M`Y%8kG1
zr&S`aFq~0-){S$@&%5#Er8dWZRkFS@F48ZNmsNhnEqC(KDzB;Jx*Ip#xXI=%H||hw
ztKNKH<4no}*|mLSVbkh{P33lqgLJy#Qn}nR$m@pBjh9UPa-dS4yAgCF<i@GL_0QZ0
zGrT9;|A6-QBH~7rNsN@_t{eZ+%W(VOSNQ`s9x8uCc}zYbpOTMiqESI(sm6vEa!wUA
zZtSZUzH+0eM}K#|wmNU+;_t>W4~~2A-i;4#O!R2^M>jsXk;{YJ9(?9dUuDzDcBW_h
z5cm0r;kz4g9%S$!BPW3eDLpWK*C%3A21)F}PaY)kAgM~?jv^U7xk^%akYb+przaJY
z)GANoL0Wn`GQG-=<-(Cw`b-|=^!#|gHM0j<RBu*FHV?8>a;Ut@1WYSv+)~h(he>`9
z3Q+Qr`8?>XGsyNY=s_V5ntIU8gTm}8<w0o=iqMOavZ%!<#mN#LlvH`DRM2@)#)G;{
z;yut)YItDq!0160Raw@9iu7`1d6if2;1u_AB_@?szT&I)+FDf)sxhgq@_jo|Q+X{)
zZ4c_GM1B{q9=*Ow8hFsqgGOvNCYyLLB9XSo<0@%v?!n2mx;`HC^`M0ZEj{>|W$n}m
ztthQMXhUhM^54J5wfEo`4>~aE;z3srI?_9-n$8}`Excqd-8|^-K`-V#$X``WAHL<+
z(}S-wwbS7@mG|~w;|ne6=RtplqsRds45JJr2a$uxA*4())T8}skH~N)Bgm2D@2ciw
zMQ!y*doYH{Se1|SV7&4P9*pF(^hq8}_FxM0MIJ2nU@HCQUfnc#7081bY|bR-c`%DI
zo18<=C1s9rKVd$70r>~HQ1$Md6t_f<a}P#c((m)&$Ts~l4>q%Rxd$seSV><;UaqEJ
z<-uzD8geZubD5G7>y>YiElJ;`lHzgL;=xunw|THb<$rpxoxb>kesv^%r^<JEu$#U|
zC3`)Pxyy{?v7g}q@}LKng2qGi!{iYUj#8x3S`s6&;e-bf526fD3gr~=;4cqOGr8lz
z-yWRt;Hn4mkM>zL?L`mHDL+s7hrHmyzbb!U2bbuV$t&bzo?qz~8LqK;oxI_}P0B6u
zHYrQkI0H-`nAx;=;PSvtw|ZbxHFk=_1E)$-bkvR|51T>KOZq(UQv#&a#8zpQArHbT
zsVUF=J-F+^BM<h=o!^*0B=31}pYp(iWQC0J<MmbfnS2?cSRvzMIidIy40q1NKl9+Z
z2W@?5=fevRUV3oFi>qF|^5C@xL%bO3#TyUa$`#3rs$Ojw-f`rdUcC3<g9jfy_~b!)
zFEV)X*@G`~m1fyjmL;Ztqsz44DREwac_LEsduz0jfAS&;lcZ!aGP$ZLyB;Z(r}82-
zJ&j7zQqp<xx}P?bJTiJw??rsKLfT~{lNXs)Wfm{8(zB@~J0%BMyO1%L7rDL2qk0Wq
z<n<z-7x`6El2X8nf?gD&7bc65MZ73Vk@=eQqBy;TO2!mMDSBy@=)5RHk5`G_i`D!{
zkI{=-2efC-W!Y7ZEKgSOq9UadDK(Y7_?J%%s(De}i$Tn5cu~`fPF{4Dp}eT=MJq27
z?!!=r1&zI^t463tsqaMtN<*@d>h0VaO}yGG=Q6LRUNmFgoNPh1RFyw_wcA)pnLJv1
z(S~_jvK`r;{DqX74qkLrzDB3-;)Q&VzN;7AyjajuyBf=568B?wFM6=@S1)=}dU?^8
z@*CNk>_f^_9)8EUpBMdAGJrCW+)&6kSml2eG7j@%xEIsBnC`_0SyL}2v-fu|Mo}hu
zG1`kUbh*EWj4vN#mB&~w#;I|}QznqtU&l>SxqR<+it?$HozrzQD5t#m%Zr&_%<^Kk
z7jwMW<;89<=6W&Di?v={oUNNLn?lY?ZiGKL)iN)Zd$Ewdh?M17Oj$xM^}@q?$yYF0
z=|$5{m{~?!@>Oz-F<e7Rl9cxnS?9%iFE)6wQRUmb*ra?jWs4VEDd`JqC)c0!?c@$p
z!ku3E(3;k}$E*D)&k>dH^<p1=KY4&WsCo~1aaeg>PJYyjV@!^dCsglA5#{phJg2?r
zTG*Jk2`+i@w_K?X=*RDfKf{8v<T>&@`44$P&KJr>QWiDYF`XwDE_-1quOD65c+HFJ
zUZn9Mtq(W6xambAACea_-tywM7jM0I=fxd4R=sd|;q=0sFzjh<^IGUuHL}eMI~}Qh
zoEI)H?t1Z`7j9MK@xm+HicP;4Axc2?1}V$9O~PJ8*o>;)80A=D<2_l7!bW)`;F%Zq
zRqq4JL-LUqk10=7?^C%f@Za<2DtY0>OZqGFHTg#M%KzQ(>2W?hHsFI-`x5s@CZD|M
zUR3{?{)PNXej~q=vT?pw0(|IsT>r4JQ7B1bAAa)vxNax$At^l>nVd|adQ<w4ik?~}
zL!QT_^C7(tdLIlv6rZBY;6q*?^7)X_hfFNX>_aX}79X-wvXME->|~AvPoph{ybmbM
z%_I*g?=4D_-v=F=;styt=!0*Lt`L*LWDy^V`n2y37h|)eEDxmwDO1%=gi`d<DmloP
z>B{&JuM+tTkI{#+KD1;~&WG|oH1eUb4;6f<$gr*tl_*u!RFx@Jd`NgFPUcn3hw2P#
zsG6ES)KXsChdT5kMYQu&9`)F)??VGhL-NM1AN!?=4^5ezUTbKxS=Wr-oRn!>_>k}=
zm!ExT#jrKmM&?q)c!!@8>srLv-iKdg@A#3=j}9`44@-Pl>O&_MkMm)?51r{<eCX;!
zHy^tDFp5bJ^3N~2Uu7eE^!N7adiv1Ihu?hY&8}f&A0Gx%WU2c4(2w3<B?Ekr8%`#y
z?;sxrt9*#$%HQ48j>+LZj9@a7{9W~yT8+`N7U>Q07~{iOx-MNAX-@EABFh$%lgJt5
zWO9lRQz<h3G#{obKXw*VI_PKmFpJ4-mCvEfCFhaz$pt?AL6LFB7cnmK;lc)OH!b$z
z<qPdE<}x3a`*6`GKLU#ttlUnn^kJ0`t7W^TG5o1USVLLs!#b6$_hAElqYs;W*sSuc
zlr7|H9yZ(PYmRAK>~s<14j*><u*-+tKAe;;nbB<h9v}Aku-}KhY*uflcNH-n;Dj>O
zVIK}EKSW75kdF9pl+9!0aq<KyQ`tVo)%F-pvH6z|@^QNqrwpgr{M&~!l(XbHGV7<f
z^OS$c3#5$muPpEwZHry@;ffE>e0c7|RrX%<;X0*KH{9^yru-o&s+}pfe7Md0o)33?
zFv&%LO*82vrOe`km2Ojso#K#d!d7i_x!828UXKr6<=uzDPY;kmA3{EaRd39Pi1Mfp
zbu(zA-DUEh$}?Zp-={xN$wSH`xoA_KsQjr9uemE<$id^oCzZeQ;f)V(rPl}l+xYSI
z4Z?S_%IyvBStFA0?DT^VADNWl_WA6?7azVdN#aLR-bdvdo8QSeCLj}$iT(JAA}i9k
zsXmz>$^FRWM`k}#Fi%USBvX;8$uy))Rb#Jq{HOCHy-G6pkx{vPBR-4r?0#fbp3RSm
zeAQQ`&A~7ynahvdswNL*?|fZ;KMMHqrytw>DCkEaKWh3>%a6uIjfMRv;zv<>A8v$V
zoJ#giaX(7<QPPi6ei&u)M}|NbLp*;Bx-@HaWEnD^)cawe$Wo0OiL&%^ew6p40=<gr
ztw^avRwj@0Lq}EV)yV2(4ZqwlUpvlg`%%Y_5e)14QO}S1el+kS;R)@Y=W)}E8XNl2
zNb3FQ#j?hJ{OrfszWOG9?fHLGhRsMBu(=;C=q**!E(u!s(VERRWCuUmQsh&A?fhs@
z|Amwh`piN{SpYveGwH7KE`D@X-p!9wd9~&5!Q@w!-zy5o7~OAv?T!S){pjsSA9nR6
z2l>&D(w`ha4kTr$emOCiK7<@f4pY4)OCnP+UVb2Kq#wWgG0Kn8e$4P=CJV-plgY7u
zj8jvM_hSNmA~{Lr^6umm<x~BbMxU;de$z0^kJ)}~@?*0fbC@q9=lU^^GM`-J#{$Y9
z<U&%`rQj>=`N?8GmM~eW@(f$C+>aH0tW?Q5KUUFKlWSDIRt`=cx-!msKQ=JmsCpA#
z`r9IZwV&z#DQeuxe4Fas(p100kDY#a{O~f|<%h+O$06NrKlb>s*DpUUinD&4^JAYM
z`~5h;vg3Z7pd9q$5alp=ggi>h@*Jb2Pi#0z`CH}xlcR$E7kOIc<sxxs=+l>Jmxc3k
z0zT1={TeSXr2pfWk9gr<_TC~d`f<sR%k*ocOmfAKtIFk7uj}+1D!J)LfZOUelRKnI
z^_nRcC&tMq#H@6iA9g=>f7702Is9-kbdhdS^6THVUZ0H2#P7#j&Z2uWL(q>5#f%|8
z!hS?leZykfAET%rF(!A(|5Wci%6&f`P)f7-u^&(T_#Q!A6i?-p@#AX{--3AV#|uCH
z3*cS=Fa3DsN7DeB1@PLBH-2OZAZq|`{dng`x&YD#&^9ODbJ)**eDLF=A616^c$WA{
z){eLEm1X-P<NNVV=BSn`SpabX^gC$)nTSkG{zN7rr64J#U~=u0Pae<)PeG;(AQdGw
zDR~-7+5qBTYsK=&z+_@EW5xh71&}#_p2dv8-?hJz^7!hH%N9WP0ICL1Er1*>E)_s&
zO3nas1&}*{JZ#Fp?L`B~8$iAQ@-vYU3I$LgfYrr}1yv$0dEo$xFgeYpB*g+Ku4+n9
zN|G|HE`TxtwEq_OkNl*UeETebgj-|jRlOkqBfV?@<pL;AuS8ZLE0QwpgNmrEyh`B5
z-7TsIP$PgQ%xeZP;-EH{#sSn)m9;5#$hu^`0P0g3kPS(hs!;%^A8XrIJ~QJeX1wrG
z8>)E#Edtmcz>WY~2JmwL3j<gbK&t>+bHeEXw2?z4fI$Ha4xk;w_5u7NlSK8ki|9K9
z&@q5pdG%X!7&@tW^$DPJ09^v;%A_aRjqFbLAY}o54d7G?ZK--O`Hk$Yde0fOW2Ubh
zMJnk}89)vsuP4Hg0EPxIF@Q+{3}ZNf98QiPM+WeF0Hf$K=GXv6)5oY}I)5p9Tma)$
za*#ibEnm!^H%kAim~k@mDdbdDGcAC!BeaE_!DMCtvncYi^K4Z!CxE%i=LImIzJUBg
z<qZm8aR5sKXwca3X8=nBSQbEr;@SZ@I!?blfc2_!MF1=5tH{+VUlYJu`Z|^Ls*DW*
zc==hljSM%Do5?K!Y^7`?WkxAdqjYg&x|8ucnH&w^SOB{M*d4&00QLsZhs(1sfc*jd
zn^{}y1FSqqUfZQ>T-<m_jdqxFB!DyjYL&;?JQu+E03OuTp9tV&LM3@B!R7Nml+ywH
zt&%g8v*gjaasLExfqqApA%JPcjW+`FwJGhga4~>O?7B=|Atk>Wz%}}Hm86i@|CQgO
z+?JDz`_UADnTdrA2Vf1r7JyyVdjoJNcT!vdxK-kjJ;kjg^YsPbS9u_Spz=@vW6Eg@
z90?#AK#cj6T-sK;t7@cqUp7<#D}q=V#KQm{$*CGd%OD;H@FajlK_m`plRV`lp8|Lm
zz;ij9HsVD9ujH~HK(b7RmjUfFa;=>DHv#Qe0Hpq{Trg|u#ouwl%`<fG1Nflk`;pS_
zgZ?w+3;9*`ehc6`JuV1v?(S!CIdW@@@ly~<g2*4lrq^*vgGd%c#-Kd)Lh>L|1d%?7
z3_<iT>g9&&DT7$MLR*qlL8J~M4aZ4KrXv$>Cn&7GTQ||BJ6YT~_Ps815LtrA8br1r
zHu5*xWCVF4nmq_}abu1k<OZSgkY~0zIY=%tH<^dbOXeeG+Vh)HAc%rN6bhnn5aog>
z&#oe5X|iY##VEze5@boT6e;7p=&7x~j?FSb#8dR7fi#j*Q&#pJkBtgJR1D(ZrTT_J
zRAO(nAgTvZnO=pgs-{X-Lc0jm2%^49YEo*EwS%Y=L|uBlAX;D07DgV0I8_7Y2}3ms
zqA{D&+l10Ih-Q@LDo=X^KL^n&h{;S^2hk>o--77PW?R{VLHtT@7exCYehF%ywC@l^
zcQr!CAUe@ItE5X1U6pr}rR9PpyfinVjiD#Iie1-tD`D&vgmB>ieV-uu1~HLcHS+5F
z1u;yG&_9R)$_G*gk%P%0K@3&BR~q8>DBbWNMg%dE;qO6=r;JiHqk|YjAFGmal!-qX
zCQ#%@C1i8S)6Pjj?a60}v++}cm>R^iAf^YgJct6j^fQ8(8N@QykLTLWqR%Gh1Ti;=
zd2|_SVG#4_3smw)5Y|~g_S&K#7BgR>dY1+vKl>#UuI9)xyUGvstAbb^#DO3V2C+uY
zrXaQiv6Yjole2@ep4<?`u@c59{0l3CY?67EFm7g7Z@X?AWjpyNDK&CWgB?Na3}P3P
z-9cQ-R3<}Z{k}|P_5`t);Xd+33FCe>mE?zlI2^>yAZ{@{A`IeG5JzPh<V-JVJRZa#
zhwcP>`{%_;Hka><Z#Y5sR}iOzI2XkEApT~-SyGng3`Jf|l?5nVQri^&1aUnmKiI8p
zv<q?`smhC#OXOwpN)T67@3kOmaPn6ceK4K&rH}0&4Y%2Al4}U%P7rU;YOgC=WJ3k<
zS&sISMq3c}AfiFU<T-XCy@Qp$Ae=$C<g&xlUnX$};bE7Tl*INx8_LgSAc&yKLqUY;
z5tY=hhr2=iCnGF1q|Twg7sUM_UIg)y1rNwa<ij9#ztoP&$7<RqK|G~DQ^|8#oq9i>
zMZc0YQu%Aj8}ju>{X5Eg)%zickIFw$@}D+DcEx`Q%E$Zl@`0J}LBxfSFO2+QAcRCA
zj0s_E2#G`ZDTHPrG!G$32uVZGg-|AhWFaIEp+pE(XBkq2kTQe}A!H08RY==$sYA%4
z(@*9eNkdOdN|=t4K7<$V4bsdMLgtWmAAWgpBMYa^5kk%oveIR!Y$0T)C%n9$i(XLm
z=9baudC7cae$`umvZ<u8kV*<uiiA*<QcUH=DSwqTmJFd(2&F@iuTjg~r?1sj`DhT2
z56QQ?(NNVJLZ~9^&Zdzp8$vlsc~w&(go?^5g;1HkXUC7LLA4NSs^01$)Sypnp!L?G
z*Cy+bb;){UeX;>5#qy=aM#>w9Fr<mTNeE3<BA2)pA+!vkO9)*V{!F$G!BNuKDujpC
zv^lm>^=&EbLTFF<Mdckr=t%EGc2@cR%;*+E_Yg*g@OwzR6=aVP28A#<gkMAG$+BK#
z?+|{Y$WKnl9Oco6&AwzmvVRBzC<95U$)8MHyk=Ll`XM0<RrxT=@DN5&R`7#Hqv)f_
zYpt~j>&9su7sB`u%pq7pm=MCm5VnQzX9$y6Iggx7P9dj~)5z(h3^Ic<lbjX8>=5SA
z1DkboL)h^wZb~J?tCGg~AuN#Nxs-M(`y+&fAuI}EF)P=Fu!ORjTpGeM%JL9CwAP+6
zu3&Q|xr&sq>mS-GtO;SQO610d>y>W^VIzGLxtZLedbi5K%q7__OBljQ<~u{!6~ZwY
zFpqw>oY61h_k^&QQjf**3E_Pq>}T<T5Drrgl84C0<+VjRLO)6-+}Zv({RG*4h5lC=
zEre4c{1w7!hNckyrd%V>gm5;5b95Q-BISGt|4=TF|Ek`zopFhNStVB}S4ru;uJRip
z+@#+kZ<BXaue|Og^I9<9U=6_*!lRJ90tUOB4lIa<;G~2@*i_2s3c)Q`Ijg}V2TVCb
zs%7x9S8n#`3t?(0qd$ZIlOP!)W&922;Y?H}!a>fIGR8u<E0@r0`u{?>&zgH|x=R@)
ze8A)(IqE<Ct5U`%Av~3%D2y~=JPRSm|8%z->c55XJcPEZbn+zXMF=lh|0;ynA-ti>
zd_RWpmi|s9?<pT-MP_Ixkvu*z`AmKxzsjY%w06YG<2#eMu(pd4Mk0!MV#-fsk}#5n
zkt~elVWbEnWf-ZL$CoxXDQ(>UO<$_A{?zVx`5_6JFl`v=!gxItxx+{wMusqYd3Cv1
zpD~P_luTr1QYOg~Mpot7!pN>XM;N`;a>{dt8KsRyJi0t#H2D^nmo>=`#^;=CC=f=$
zFdl~SD2zg36b@s07&F2s5=PN5s)SKBjAE?s{W;DMM)9z`1QAyvjFMrLVjdrc{7gV;
zHD6sAW$3YoKdxQ+FlIH;Hjy!mvSE}9V`FJ!g)l0ztb7=*$y#rvFrvqGf0Z^?4r{+G
zBR_y5KJTNhS{T(?IW~+MVblzxc^ECih;Z#{v8y&IgVdqa4WnKd_35(i4Z>&`Mk7_z
zgwmKiR#2OD(=eK`S!{)NZD|?C&tbF;qaDLmVYCV3J7?EAjPirDNu=4cy`en|ddhC1
z{1QfoFgk|OiOp_gXHq8V5=K|$k=JqE={?9_RX&rq*7+@r;Y@mm(TCEP94s3@jQ(K^
zV6%o!J7xybMFxfCiG-F6QOVFShAEfteUDH+lJYw_iX0ur7)nQuFpmDYiGF+-r{3!(
zgfWrHBvNKEnKC7esg!9dKUEJiWp{^hCXBNTXNR#nj6Gq@31e;;^B67&;}1C$bLr=Y
zu_1^4Tzmb(Fcz_EYZ!~eSVCVP#!|{EQs%pivOJ6xDp?tZ+*C)p<guFJnlRR?-gRMY
zFQ)ZwV6su=n<$&Z*rJk}8MU%)a_lkLuJRp}onh=!31(w2eP0;+De}bNKo|$ZI332{
zVH{$3T-6^A;|TqzN{-1gJAOPbJ;Cs#ka9}Z{6%Tm4DxKhj!Q3R&%P=8b77nh!xM%#
zjK(?ePZ-z2xE{uZF#ZkWA}6`3Mz|ElW%?EJ(zzd7X}QjLL}$Da#?3Hpg>i>_{I;Br
zqjaV)9_Wnn*4Q1{eSP(}KN-wwG)oxPFl=FDORbG#XYL@Katc%2a?+{$ucqu|@P*-L
zevb^0N3!dKln^OHh2>nPN68p@SM~lU7pQjHS(&tq@xCmcTu#dv<rdSz$6-8?<2Hh^
z5j>TPzg(RnC=tPPPMbV}6cM}#<7F7H<f1B%clsm|ykYNKa%4m&tNAXB_iTO$<C~o6
zVSHrs6Zx6^LVhJ>VcgvfaS?4hfXtFy^F;K-<WHo8-PUVeN!d&$bLT%4DI-V~!O)s0
z7(wa?(nOGz1@f~94O<z~MvyLo^lF4mlni7>Qa=xwDOn<@m8nd^y->16key+U2y#<$
zk}~&P6uFDCc%BIIsyrVhe*^_o^89^VA$no5h{}snijiw3pkxH4BB&QZ{Rm1&po^et
z1l8DECW6Y8_z3h780h6mnY%H9vdYUve*9iW1(j5cpptTV`=I`1U6lwn|D-RqR5vS!
zp?U;0*qgtMG4DKGhN!-#tUi<4WF0kaU8yXiT?rdR&@h5l5wvDkjYVh_L1TIo()d}s
zZZwUcnVPmar9}iSDL<=Re#z_b3PYO+x<$~PVOz3Y1nndEC4vqSbY#+ryfs?e+VW(t
zGn-w=uB7B;`FYD85sWTl92&u|5%gqNuLuTHev6<tr4KoP>`V5Gpg%>%>BQ9>7{MSW
zXDetkmB$b^<&!7FRON8W2y!I(djz9Y?`YYZZ?v;)Tm<7Ia7N&YU_t~FBe)sCtq3MX
zFgb$l5$urjOFsM=!K?^obMmPXOp9Q81T)lVGb!cT=%3Zs#+(zu+z1YoF>Z)po~l_H
z!Tbmou=z&>ODGG;MdV^qCQr8sOX<s0vOIzn^!rJ)moHYSd^Keaxi*4zDqkPLQf{b?
zD%nKYOl~2!MzBrw{z;j(z_2rdU2>F0@DG#SLdu>9_C~OeeuUgl%EBCo;2`~wN)AWR
zc7nDYjxsq$9w$$znv)S+;}V{V;4g-!$+HpsO*x|~I}g<UaGaC#X!nnOeIbG??ERO#
zNM0f@lTsfkW4ubgMqXF>4NA{(y4w-N`o%k*8cY$~QN7dJ8O(G`1fITntIBN@djt+j
z3jTbvTWZ++5P_HSG=gUl_#*H}5Mc6O1fRH?!3aW3!eoSuk}*=2`L3L3FSP9@liZ8o
zKBpCbKzSI!Bg$iyKamSyyip3C%Vl4#v=O|G;AI4lccW~)@!FmE!M*gaB6uyQSTDUi
zHl`|5v{wAP2;N8VbG%W!)hO+k&NBAUw(v(T#-|8AQ@*IB`WnGE<#K)@ibPS|xeL=>
zB#z>zD8|PyA%-MTB#j~(MJ$SBQ6!I|brfx)ND)QKC`w16iy~DNsiVjiMfNDZPt&D|
zLhfUqHHx%Rq>E}hH$9m#iVRV7c&P6eZxm)?n3<HCEKv;OfAllsjcLjna;UsS6gi{#
z{6Af;C?1{A=Z+!|yYiBSqR6Kz^HU0t1<4_g;|f!XkVQ$ES20R)a&x?~B&AdouZHW-
z#2Z&N(wB)Mp5f0?=%X-1QJ+nD!O9p#)hMb(Q8tP|ymoOe7e#sYidUdijG_{yvdXJO
zQM-+{JE}9ON7f)~lC?-Fs7<L8MO~F_sikehk*f?1qG%XJBb5(KYG|yyNfb@#&B*3t
z3)R~)ijQ1W8K)J)wUrHRqi7e!?kM&|(LRb_qF5TmGTA{<bd(J~Q8zt`<KxjOig9u<
zMA12lE>U!iq8mpT8bx<Ce*Y+XMDc4BJ(=_-dy&7Xn!t4Qq4!luzbG>4wGAkb0Z|NO
zK8PHwYKBB{Vv)AphN)zD6eH*(<uHq4l*-3YM#}-oF~_R>%4O};o4}^LyEKt9N%c;q
zOo?JDWtz%2-qg1Fj3{O@nH9zCDCW=?MzJW0xvFwr6!Yl|RPsj@R|jazERV%eEK#}K
ztS0p#ZP?{ZRz$Hf`s4Fmm-gvbMX@Q0%~7mo?;3I~xsF^<ZXh?3GF0&?=)Xs|C92(s
zSejc^zAcJB>D$R2<WAMQD=NPcuPvTD_C|3!ioc`Sr+W8Cae#g>ibIscvKJ^vRLxP!
zF*!n1GW}EB$plx)Dav0_B>ZT?nJCUiahqW?z42TWH=?*1#d$f@7wP^{Q(cJS-zYA!
zc}cdU$}dN8MfvYv;;zxJt3>|pRPn{1u5Fk)On*!E<}m&JLHcbe4R@k2MPXLk$HIDR
z6t*brbaxb<C>(UB8qGzyKQqot36eh5>!$?ddc`9x#AaCaMkw=!>hDJJUlh$^Xdc78
zDDKPEFNTaUJc#0<TwvwW8p9(Nzlq{)6pz&iPvlcT%AZB?T=|PAUeaHw<h2}!T!t=g
z{X2&5Wxwl<m2HL(a>_?>MsGZj$?!=|=P16YsS?GsgYat<-&FEFia3UnBZl==wWBvN
zlkTOo;-vI+F{F<n89jLnA^y-qiWpKdNkvL=YDyY1E!ko{roV~5SViyR(q@Vwa}1?p
z(8Z7^C9=ejGlpC-WK|<%iy^!695FQE>(#lXm|@WvzNILWH-=Sj^ykLv^Tm+xTQ>RG
zTOfvlYT81S!eo({{EUuvDadvW#bPMVumo9>l&(?~d1s_d4DmAG7@EeQXK0AQNHOX4
zWn)M*SyzY6axs*Tp#r@cDdSX(p%T3^Sw-blW7wNaTZZaPYN)(s47HTkj^Q=8l9bhr
zp&s-4s<%N54e5<k(m00J6}2(b8MJHZ=wGz`)gp$LF${`fFgMQ6EbbpeD=ChlO$=>g
z=*zI38mD6n?diXe9aMgpFB5f&p>qsf7<P@Jdkj5d=%#8${i**|`EN1wr1w&ZeLZ^9
z`=}%?4*lplgYoG+-GCT2@6c9ZU=01HYscP@7>33$CWf&w3}fYp7)HwZvPCyswgA`k
z_ZV*0*56K#UTltH*=VvsA0+!8e}gZ_jbkD|b2%}FNpi^DMVY&p9K)0toH4j!m>R>h
z7*51+GKT3f%!pxuga+eGPB=G)c`?kQ&n9K@=EzCSJ9>@%WSAe*zUdsBsmqX4Kd_tr
z57sP<VNnc=V_3rGju@84u#CPghUIFUH8HGEzLK&khSe$=VZd7D|BtHgfSQ{4-hLl?
z73sZ+3h%<Q$<TZ6^`-aTQ4vv4P*D*DrHY^w=}J@S2q=hv6%i3pL6Gw9Zj#N`>>^10
zo?QNW&hI;C&U2o*bLY;?oja3kl1;w&4y&`VMzS9XZpg-3A?pO!3$kx_8(?FaZxXUu
zu&a~tiI6SX*qV)P!aoz-F1SOG7CvQ!$nUSuv$0czy9D=UV|Q9-kC1iZ`F)JBwr<q9
zN#uvJaWEUd-*)HJR~Cn}@ntr?lA;sYIGK%0h4mxZIGT;GvvDkK^BW<b$S=y{+4xNE
zihi4o@3{1;=qpd-dr>$o_(QtZk3xQ8FbMfME&r$}e#yoe$^I&MUhu5oZ-VCpf6vAd
z8Hgzd{lBttAsg{*B(iZa8-HixS~jk;&)K*v`d72@kB}>Z9OKM=?%4m-6)&KjzT(Z!
zhCdt8Y{Wz%AefLQg4r-6YYJL|AwgQOvk^}72*XuwM^au~sa$8hspD|CIb<Wl5BOb&
zr?PP)8~<{ern(noZf4^a7parMXZ5{G@jqYG`7ax{#pWHsyJ`FPxQhyZkd`csX5`?>
zzaKRw`uLeh*3IQdaX(5(Te<znBP6dM`TWQ)oH~#AQ9yV>!9r<yVLv)6*GLhOJStc;
zU0TeKNm5FMl72kqM>Q!b<wt2h%J@;%k8&cZ<VX2*trG1~L3qWqB<mz93$K!vR25S2
zr0bu@{diNU>V7<tE`8Gfe_v!~X$=u(3VH-<3f2-Ve>cPDhvvr{e$4Sh_e1&7$B({#
z)bXP(M<;6a1RMC#(2x4UX?cTEjncf8AB}}KNlTgvX(rfQu!Uet!GU+(6S>xYw2>@%
zTR+<Q(O$Cr0n$N8N5M{M9llMpiyy(=zOH^8*^6#zd3PZ_1bh0CC8U>NZ$a80_BHzX
z(ch18evJ2HfFA?>80E)kKNc+12l+ABk0HXVPt=Ce1CH-VdhUjak>P%fNLw2zq~U#S
z41F?3e|WEXtRLpP?u<kRXcPRH=*RPZyucU`<>&mECS<Z7Po?cV?Z-1|KE;n`g-=aO
z9{yB3UQxd&J(=#u3_nWMQPYmOG5?|;uZZSLY5kdg%o6@`T5?mVSJQm9AFrkP>q4ep
z(%<xBt{+?c*y_hye!T6+IzQI?G0%_reyk8R{;TmFKc+wME%M{tw1ovi779)qr!P*+
zmk3!Z_@3Z0!S@B13;JRid^^eqetaldj%B4EtI~Y6kTrgMl$NaZBUZ+B>;{p1BDin4
zw$YDGer#Xv-7J!i)B5%5xO)`!x3ScZ@BR3}j~#w|>c>Gp4*Bt!-+iGa6?XdZxzxHj
zNPGD2@?DbMEx1Q;ui!pE_6s>6$hu!J((1Tt|F9ol`f)<!yt!7Xk8AlWhNwu63Vtnk
zOz<1Q<AT(DY8s~0Q78TQHZA#12ydPL=*LgOe-?a4nmZ-@k>9<%$a9(_YORs{>c?3>
z?gnr#fZzN$=f}(dW(DxOALqHr1W-PJKm7QUI({78<^9W#3u5O#KQ0PcVP<6evAK@=
z+mA~kxh(jPAp3bm$W_5>g4YG#C=0(I0YAFV)q;K)Tm>S3^fW9#Lc)`RwqVqcu#ku#
zEmv*jdMqZ{xM0E$CtdpS<&0FC-|*vK;Wq_urRDG08Mo8?4z~z-h4?)`?)&k;kBopD
z4F4v)2!P+?E)c-(d+sw%IReNjMY#lX3+55bE0|A^n)w4T5^j}(0TdEpVZjoDj|5Oe
z$fJTq1*u#tfZ}Oh`-omL%}WJPT6h`3vT1p(#;6cL#Q-`6&?$gQ0aOma7l0N(l>n-W
zTCD&c3!qv6tMcnL12|nnuM*TA4<KWf_C(swlR~NoP(w&&TJ8zp^^aXwu<px-?hT-J
z0AIbW)mxx#+@Oyvqu-P#So8o?0Cl8ROToGU)C-_~+D@|o8U%2>j%p~_NU*UWg-rrz
zn&!<jwdUzsEf|3rZtJbmlGZ}n1kg4uX%|3y;T_VFBW=(*fGz<H3Se*mT?43|Q|lK%
z-VeRWCg>(=-35CH_6#5^UALEz-U0MUOZu|<6K=5e4`4t5SL>*O0o<*lYM#<o$`eW~
z8WO-b(I3ia31GPJvUS~+J|b;rq>xboj21FRaBRBt=FN=p0Za(EuScF3z~lg)qE8I(
zBtd>h`{@9l31HJTowtytq-(tpz_S5Nm2A)XcuvSP!ROODIppJ^(*u|xk{1PEN|(lN
zWV{@}D*>Dd;MV|N4PbTv+XL7Uz-yd(QQH#08$#v<Fh77fbnGK|QzUcKcHRo$ZQ&2!
zJj{W=6Tq%Z8Jh!mH-H5JEDT^#03W6G7YDFB&6fyS8o+x(mZjzI)51L0^D9L1f#8P$
ztQ4{;fYoWupN6|ZvW5;!f9q$h6s-$jy^sxp8`JumgnT>J{Ymw)@J|G@uV*Z|p>GXf
zTL4Eo>Q!EG6+R8%GcNxC_5{%6DeZIiN|YPaRXc?=mv<(gEKqx|WKRTeGJt);_XiN3
zq8}ia?7@J0J?dxxha`Jg@Jqq31lin?0EWtyy{|=bOz<1Q<7u6J*D}5h;5+&=mC>@J
zcIeaE{vEEPz7OCBhToIgk7>=H0yri7XTj5H`7c83%Wkc+Tx9|L$)kV>&+!l-<h<ai
z{oWi~v^@W5e+6(MfIAGNy6U17{T;xi0M;IIou9LXb~%7h0CoWX1aL(Zt_m80*95Nz
zkS)Y7$ch0WLGC;g-QChm%Pp?8<E~|5ScFNzh+s5;n2@+&LeLRpl~3g3St-fh2;g5K
zHwAAA{wGMy+X3{Kbz1ris@>G@2k;<(i9t*XA|nU{p$DOY$Pq-&pxc?MK|IwLxq>Jn
z+1x?ok}s#^k!;=|@&%D!c=szA1%wn7EF@T1@DV{;E58np22nJKVnGxSqC)Wht{s&K
zf?tbXCLJp&%B6xRovu|Th_b@V36@XGTNTwS3a^xwR1Ts_n)6!IV?k64;&G8Y8ANp<
zPXxh_#IZ9>HAGUfw;L6i!aYIM6hcWYAzs1Sf<8elh&G$u>UDys8^nMh1_n_ti2736
zF^C316uy(uFo+#8B0ix+<wjE4IEW@eG!@=VuuTxng|rZCDcDMowOR*pN{qA(BCrhY
zMBZMoLt2O5bf#vfAUX%pC5Wyf@54@R(7L5{x(CrC&3gusCA?Q!(mM#hv_d<5Mc7ZU
zzaa1V4hmv$5D)6AaX}0TVrUSf9xBK~Cag6qh~Xk3A0cF<;JHM`=(K!H5MzZue43Zm
z#*57ff{oUBCo|ZB*eyCw2k}f0^MiONh$%rl8^rTLyb#3Hw6$qLJQu|MUwpfBy3_Y{
zQSc+kB-4Y~wOV^k)Mf<nA|1HGmA@pCnL*4F^0MG7g0BivXLb<QVON>ybrHTHI7jf!
zAm$2rOOQHm3z-)LTW9uN$$k*The8$vu`q~5K`aj9_E~qaFA+J9Xyi+Scu%s+1Sxr6
z$nqdoq$Rs=xRJ9mi1k5i2x3(btAki0rRD0Wv$MP(r8U<Eu`bQ0-SBP<Vv}Td1+h6T
z-x|cnY5s|jErJts>f3~D7u+Gpc0Uc`GvS}7B|C%Y^qlLT_Xq0d^VQxH#NHtGadzrx
z2SjJT@E)aH$rnK!4C0W;zY3yOF*K^D4hQjN&?QX$>Zv1X%SY)$;m6XFZ-O|U<|l-l
z3?loc+xquG{1C)43-4R_k^9x(-cv#R9K=t;mo;}Kr-S%~LIbA_oRR9cgSZpKuR)v*
z;<q5q1rZFw2;%o3&Ij=i_o5*F;6@b0-$7hrywy_|ulfE8;zAG?gDB+F__KP#^BVuD
zN<N{ywz!^}kyl-2R9w*;Wogac)L%TTT@B(|5ZBq&AfBA%4Fqvxg6<FE-I-p_*96D=
zOi~{^+soG<nGCidZU)hChBp+19fT7^GKg>xksuO5d|ywMjQXNM#De?_hWFez+V*;i
zr$%wEqwjqrdv5p!1-0;B-c%6(au2Vo-(dB>yfZznus~d=<d)cH6aNKqwVrxVPu&gT
zUJ%0!3^#C}OOG3ufd&RL48TAo1C<TrFp$$gK?8*h<T8+(3iVY!1A|}n<}om>q?Xsf
zOTYWd*H;|Z6N9w;1_~JHSKmDY<X5nBMfAc39x+hPKzRd23_MDbUn^>0YJIh|zT#WN
zwcWmA2KLrh#RW?UGFwteDZ$bP%B1CG4b+>aQK5q2j<lkIt_!t6FKY`sYp3d~KW=-g
z7^rHXhJj22j~S@OZZ}ZX4LnZGcl0L=ymwsVE7r-MG~92cS@l(}q1vEV^c!FMJO*kS
z;EmL}hC3a#3}^;)176A27Np!qoxvIj|L>*@@cEfK2KdQ5W~($%4>I+72AVcd0~@I4
zPG}7cG&0bIts7`;poxKY2HI1>Kr;g^478-An3~l<@xK_&4b0Yb-)G(r8mLwV2CmTC
z8fa~x!pmA4L6T-0wS5g#?pwYNoS;{|)sN|&40JT`)fH{dKCQD)dwoOg&IbM}uhl!_
z>t>+4fdMpSpof8;26`Dt9rT@Ap;tcZwO`P)46M8C`?Z1UZ6Mk}^)b+wGiYGmIbVOl
zl8%@Bk0U-}zJ_X$fguJKo%9Z-ZyT!hxfOA!;l9N0qaXFl-1ZHOG_cCRY6GJTj5hGP
zfj10{F))_%Zs0i%xuN3cKF1jtZ{WcieS(201~xZT+oos}IjvM~s3r?OWnlSkFSAce
z_8D4hsQAAmDnHAye5sSDVzs9kc*Vf02A(&-?7F<QUobG;z-RL{ekXB;;eIXgMZuR0
z%oIY&EFmw`<}oj`#~P~H20Aa+Uo&u_p=$b!KK(=Qk}JMB2HrHV*uWA4a}B&@;9Ua?
z47_dNUPJZrUHu&cT=Mfc1zWZGg5?`2I=S#7FZYKs#cD64#~3{Gz4aTZR=@ieZ1yc>
z92!_=;C%xdmw5LM)VPW(^w5_ZSYhBp13zc`J}}(RvaI~e%a@%xabKTCYNg049rCes
zje(C0>^E@0z*<hCfsYM*!ig@Rtv9fV&3&kCpm77wHc~t1>inYUk_>ILfnR56J-2Jb
zEe5t4*ll2s;l7q_o59B&^_?8!S#7(49fo@>`&95VL1sT^@W?aIyF{7#<4bFMIggw5
z2i^322DTT`TMyKDosiit3>-A@y@4ML95Qg2o-uI5aK8!5R|J1)Ag|y1<8iI&5O*^_
zYT)S}`XaCXHN)m>?U=Oqjo@*?6M`oNssF8z@3<Q*aI3#kRQu7u=h?oWI5myb)<)`-
zWGQ*>QT-Qg{sz7^@tuiZ4V>kAG11AyZwAg8C~KmeiQf&J=hkN;hlxKpIs*v<4%ZQb
z!GPaDz`)%tzKaGf8Mw^A&Zqy)#Z_H9(MZ+Ium5A<3R5F>`MSpJRfcqLjp>?@>jtug
z+;5~P49c!$7%;gXHdar(?6o-jq?d`y_TMM9kO87?AS@&z7!`~OvNX;J+~y@oa#FY!
z8mqeoZm`tAO#`>Mjy}_GR?xF-?StR+f1lJZ-}U}y;5IjbdEPs$yF<$=smSX$R$m;^
z?(rzV#b~%6&TF(n%P=vev1+kH-`!u!X(E@2A|@U+k=sNb6ZuUPFp<~9olzRM(6%GB
zd?pq(R!iRW68FsV7Bo@V#3Lrcd%T5AY<^qc(pY`hSQWkFPS(1eUTu@NsEHCLN}4EU
zqPPh@7=P}nm+!>8+E|sM@SgWhV^zjPY193T&aw=B>uK%5avz1|O;j+Un@}byny6$V
z(}c%FWfN6QJZ|C%6Fav1s+xGrL^Tt9fQSFknfs;weg}<@OYLf)J!zu4iTX`chr8a=
zP24xH=Ip80Ffn4Rc7KV!r-N40gx5rE6MdVgT7tY;e4?^8Z>d(Gt>!bK(F1K=-sWSi
zj)}S^nwe;Bq8`nfXlSC5i3TQ~Yoc2G>z%Q}yP%0G{*K<5ZanB~YU0yw+K?N*CR8h;
z&CR9tZ>90xSql>_O|&u5)<i24b5?8YVQUjNZhOhuD`wl7XfOWkV7gyQdU~n0xrrjS
z?y7$@Lho#%i-{Q~UNq6wL^l(oO^h+o-9!%)15FGv(bGg0M`WU(iK9(aFO&b8@%1)w
ze72X_K9W6JQvJNv+uy{JJ>CH(zfa`-=^t;o-ChzWOB-xrh>2Ro)kqUOi5+TUn2F&g
z7F_dwzuCv{|MCL(#U^S5C&KVG9;T(5s8J?9`%nvi<{N8b97D^*vnIxym_RJ8O)~LI
zMU4m0iR|Zg{rV)mcvCgm#8aH*!``Pk7fsbOCU|9uS@MoeRmB$CRJzy1G&+2R@8)^m
z^Cn*4ivG=;_XBUDs@`a&Hm0eXZt_V6o#Z7GGwC-IADftE;$;)_Ow2d&iiuZEylG-C
zNmDi3#Oo&BF!7pXkG9q`f7Th^a~Pu4wbk!ygCFQq7i%k<stNtHw@kdvzzch)Zu9X>
zj8{tEG4U?v4*EKJ!^A=p%Nc$q4mVYcOuTPm&3)fu6D|JJmY7&7^7l;Se4s58&ZmF*
z-g_z+D4<`;p;y}J`>n0^0XzAMcD|wZp^23yNLC517G!pfiI38Jt?7Pelfv~THkjDR
zh{|1?XR4b_cW=MER=aZ8%j_p6wwTywV!w&4CbpT_ZDNm!?OZq}J~y$`MCZEtr<^sq
ztAeH{wLhAwmEUN6z1r@Z8aIu2Q?-l3|4uu3#9OeL;^|YMskWD%yzVP_K|5gL3ocs|
z$4neFamWM@2S+(Z6JK&gzwbSl@_og%*-RbbK3r2LY28ebT=?1N{t>mCp0AwxhV!+~
zds6VY;0eLeziPvpsr|cr-<$ZsL{kgRc>ZtVClj~1Bbhj5;%5`rO=O!m&CoJ&$;4$7
zXSn%uZ>K95`RlxAIo|JmzYG6O@El#;OtGl<b^W}Fd*?Nhzu5WLy?j+EpByW;O1og<
zBG*n;#q>8Pw3$o(;qv)eyY1-LOk82<aWB(V?nUGEgU#HNVcQG8i2!HEM9f6cguy*z
zx6d|lu9-4TggB62G|R-geR|P9d=xI2=Vk2uwOJ3FAV#>>nyK@zdE+J$46}Fie@$>P
z?%M8kOe9UDcociXdxPQEPH*(P#+SG7!VY)un<j2?`0KpfmjB~=DXq6%q(9PJ-Q@sH
zl(JCT!hMd>L?H`>Eo4}Lg*+DWTF7A`r-c<cwT0XCT+HTGm)2>yE!1wV$a%Lbnp3Sl
z<;`ayzl8!8rp)vvBi?)G^nw;BU$Vu^_dw2Hr9EPy+$FuZ1>UwUV&PE>C97yfEfllx
z(@m{Qb2YBH`lGn^(=4rog}KcYQ%MVJHhM|QSSV|uhJ{QTu~6PZ6$@1@{JT)EV4;$Q
z$`&eGSU5vp+gyFsT-E5MbII?jrLQ=vKW3pCi~49!T6kxjm#-#x+``4?is=apjB1kV
zv_D#7+FMxjSg2{Cu7!FQYFS|a>sao;?YtbaWPKKt5KT}QWH3{cr{6^W<hj*c)weM7
zEA9Cg^u`t%Sm5!lp@mW{6jLJ$4NvMM{I5q7HYB9Eg%%bjSeR&`rG-{()Iwhitu3^%
z(A7dW3vDg5;}o3NI$3CMp@W52?)y4g$ZDbZIQnyzcS;MjezBLr&Z0)mE<(6lcDK;O
zLQg7l)P?j#EmXgg-pXHUpS4iEEcE6qv``CjyV-(Wb)H-Hv(Vqda0??WKA?+%7KT_D
zYT?Sy+8_&qEfj32cz}+yP~msIBl6ZBW?}SB@6k0{))c);NA0<1^pO@kE!7wcV=atg
zDf{12jgnOAp!<QjaTaE^RO2o8jRDNAY^nHtrAZbhQ*Pm9$~o{V+EfeAS$NvQGZyx@
zR2N#RDHfh($Hr>h=eH*{e)4jfh3752XyGLbFIeDt&I}9u!9p@!vfX-U%<_H~om1t2
zHq*kr<=*@QwSQZxS1i10;av+0#O7=Z^BF1@USppN>#s9-w&`zJDA7tW%@Oh@LsZCH
zf^Vlw=W*^tjr+#HR%(^fhM)5;w6Mr>|9ANw9au;$rmO$)E@jwQ;Bn;GVejgG`kt;j
zPgf3|(x|qa%gsV38=Y-@VBtdx6+);O!b%IPEF7_Llq-u%!@_44KDY3Zg|!woTG(W{
zZ`fN$KgbO`UY=dg<<?BwAb9+a#+T2}Xr(q=_}IcH7PeSezTL~8id!vgv-rr9mw!mv
zZn>ucpK?VE(@AznmM4VF^3C42vb{Skd|~0Bg<TeQTi9cv`)X~kg?-$CbJZr_&$zv>
zZ8_<4<vX<lY^9YV;U0L%!ePsO2Y!xb^2=hT_e%?3iG;%DxAm_r9J6rC!haUNVbdHD
z=h4Cm3nwl7z$PqwYoU3b+M#j!_d>p-i)MK#+1tw9W`DA9rj`2H!f6YqxKaF~MOrE1
zFBUq!<n44oKTG#^)XoV0D#%lX-{|lII@38JzY7*Qp#RB<vyiahNWc`z(l2oLu<*Bq
zOBVj&a^M<lq}{)zU*@!K*RS2u`NQ)nUBp|o7JjYkj{2H~>lU&_=ohps1cU?ysbg3$
z)BI*zw|dBeEt0TcBwZS{+!vZrfyUz&=6&JiCZDvB;(jPPhkn$iXKA~?_TAuytm*yM
z)ZXXQZ*sqVQRg}5Z3}lS6bhkm2zNOsZto%F3gNzm2Nv?RRv96b`qx)#yY^yX#Zv`@
zU{unWa)fYgyY}%XdhU?hy)Co!f+6Gyq0CWl%M0GTA><2zgekv}0)o|Bt1d-q^C#FN
zAruLrB#qO~LG95HN`%0VYZMKk+-)yYF(Ji6=-OH_%OcKKX|{gTS3ZQd59o#GYGv5%
zxmsDla_mMPS2($~VriuiDu-|+grgx;3888TGeeja!eb#+3!!}o9YT0KgeO9%6@oW}
zCqsCrwaR4CN^iB{di4-$h=jtSd%T`6G*1XML)g+<)oh{@Ylq+qp-u>OL*TZfg`kI^
zLf{u&uMXC-xBGr*t$ut|`)IsYFNFFbWVcq0LhkRZ1|c*Ql6}%QY?rToF0JZWy>SRl
zLTDO-(^?g5quL5-CfGcL7D8CmQb?;1TBjv#LinYedRVJn2y+)`tllw%P9aPPVPXiK
zL+BF1&=7{vlk8pygG1<5MC%^H0$XG1FQf;%6hiZu#*`(bR|vh+l0G5yP4j*sL_Mw=
z>kg2*0|f_#P`!<!ux?dth%`}Zn?5{*5h08YVN3`kLl_mpD{a))d>T{BHfneq^>{69
zYzVQve8q}BK7?^0?AYUF;<;1HA9cRAVp0f`Lzof5q$=*uqNhUmZIJeK2y5G@!)??v
zA)Ifcn5GDMHiW5Z$#X)ch48$P7t-?SA;hK1iy`nQ9@9%g{<@;S%<hHoUI@!Vcr}FC
zA<SnCgz#DjuZQqP2y;Tn-&WOVt8OjOI<-}AhG0juxoy>3A?!TqohvxHt$Ld)=&X01
z;9EPrw;Jg0(nTRG31KNG+M_QFp;8fTQ3%`Gs*`Qi;t;0TT6mV1$ctvYIDDNpcY5Cs
zVR;C<L)a6-iV!{s@g=laR#^Lxn?F6kxNWbm3SmGCjYsx1A-p_FUoBal^HB0p$UQfB
zd!lx?ty&ktdM@y`YJ=cL!7pxk%eGUSL-?3s+)h<nt$)G@4`FKvH)rUS>=OAl!R>-O
z1V0u0EQHU6P;+MpUnaaH?dEC3y&>$Qgu!_V`$K4(sUHmC5RHH4J-~G;q(?jT#2#O@
z1Kz_S@O^hrU(?BXIDV>~`idhx>pK(FzYgITcM==<ZG02L@er&KLLr<8;baIGLbw>h
zw;_DT$qnI;5WWxLhY)_^P9mGqkAfYZMBz@_z1;5J`*R4ti}1AIFM?+T-7QqeS;5}~
z&k3F`16~mRF{=H^=C<kUXLx!3@R#s=&+0sV`a6V6AzTUJDm!q&$Jep)_41cP_$P$7
z+NpKz+*9{!AzTk3$Q>+%jlXGgHu<tc@N<tEukl&90C%c(is@=QWrpx8v^lqZnXA0Z
zKGn{g^x7eWL%1Enoe&~ifL#6|B<YI$S}cTw1YVrc^{AHTus))l{$D%AcM6qiuTmlW
z%h}{+)n47;X4~HVmCCaMer)Jg2)sznKUVz57130Y+zsJg2oFNYuyH?xU7x$Z8a@wc
z-{!B~sl9@Y95(vo)^geS?kAsd()&n3mD6@#iBs`4Z*CiTZ2Waf8`oatwL!dBN+%Yu
zQP4&W8<{o=*(hwIyp0Mr9<ecRyH?yr2^&RhJZifKk)k$!sG}7VzUOg`{I5KENgJhX
zl(lj1thcm{>YKe~Y`oT9@x55&qswak=2|%$-J5EuzrCFb>lJNOvQf>(<2HVL(_7g_
zRogv>sUq3+?G=TO*?6+Gc6o;WO?wsiP`lh-Jz;}b<BIkqo3IhzuQP2p=JVL7X`{J~
z7B*_x@Y<+nqrQ#WHheZT8#+(S7VH1DSM^tT?fbrK8+^(}U5>GX8eT)I!;a1L{`|m|
z^BJl;v%L*$G_ujyMnfBGR(hH0cTi1i{JGQD%*Lm4y?lv%QyWAcotfR<M{8-Lm5sJG
zmUK{k-}2H_Ya5BN+O@-a8yf>UsOcS4I~(n7EDdWNY<$~6b+qwH-r74lsIySab`h7-
z!<TJzwb6~eveCoFN*k+e^t6#><0Tt2ZS=Cy+r}^(!#USB`r7DcqdzD2fOq;YzUv)S
zp%dN#HU`=lVq>V79b{v$4P(Fi<F3O<o#b8zwPlUYFT#}W=#mjOM%sAR##9@lY>c)s
z-o^wQV`$+!eVmOuziDIHs~>#Kw*1Pwy|Y%Yqnb$f?)EWF5i-ffWE&r~(kXe$#?$H2
zXM}v2&z1M?sGjbq_y+aoY)rH9JiC2ZpDsx90v$NRT_C(9HN(c&3-uQT1Jm_cHeR-Q
zK*U1&&Bm)X-e!E-n9WGDF~`Q6^iopWI8A%q#v3eMtMMmZ?S1+uhIg)ww`}(Y%E-gM
zJ!|!MI=a{SR~XuS8+!+7{G9amj*1)mJ2u`G35Cr~?;;zEZ7jF3f-&DwEwS+)Lt?&{
z7w(qYI5k`2%P7YEt}o+K`dxotkf(N^pY?uV<3mQcsgau<6@O8_`jfVrv1IdIulSNK
zva#024#tv=j=yT_Y;3miv5oaMHn0P_wvlr>RNEv*ct>FAL7ngS$eN{pVq=Sqtz4vA
zHNG1GozylP+ig_rq`D+@zN9p<Rcq2oeP-ix8~be>u(6XK>#Xgvv0JQh;CmPwozz|%
z`)v0m()<a-8*l~BXl0K1&cCN^-L8FM<B$!$g7P3qRXsRcGlSk2Iw?xNvT?-5X&b-T
zILfKvK4as1jw_FLj7ykpbyB=_@{J85&(crWILSy}qVYz?w>IXE(s(hA_(>=AgN>i)
zMlN~oJgdC+SKgIb`g^7IpKV;}q+W`6$xn1rXKegx<GhVOY@D_6`y%f-qK#d5e7|uu
z-E(KW(MfOHz1p2lisVmjaW?+8v8b~u(^*}xaghsZnO48EDzeGjud|xkS>?;2E>W$b
z;%VVOvOuobxN75?a4WqMuiMBL?za&T5)?ET34Af^VVE{9$TtB$?W{slWDACEL~KND
z#JCBFB+j*CW}K;jM}qEC0VUh$j>ySdjn!^&GvSCL*d4)58@FtX2xDXz|Jk_B-6M>F
zVcfBCm-|u}jl;Od&7b>o7)8Q(z`1xsW6BqHNk$k5BZu&uVdNG<d9JW~tC1v+Nb;uT
zO+NNfm_LjHA}J_XC|z1u2=6&QDntuI52L8?Vqp{)QX-7UgwRgOFn-<TD<xQ3uuK?b
zg-~8DjPk-O2v!uVlrF6tMwK+LD&+gls+w4SJS~4Bj3<RxPfKcqkty6GSW~c8y3`v+
z?KJlZ`QcZe3ZqUKG|mn))eWP57!9PMdV(x!D1?Kh!gbMX5=K+W_70<&ke-6g!)PI-
zWf<Lsv=VGB*hY{>+J^ZDH`iMGw4_5A9ffxi>@3(NUD`E_ZfU;O@~~nL$xduhlRPVo
zUg^?@@;+ho6-htA{(@}_xdR*|d~g^;!kGQMmlCF-VGI}furTHp^zi@YoeS0?ez3qh
zDvZ%#)QZ3x!I&_{hVexh2g4W_#`rLngn0<VgfJ$C@l+U3b4FVF_)_snVN9m{fX?rn
z=3P_!L1*<$7*oP{F^reOsMtk48^-!aYIp5jd#Yq9c`l4;!k<q|UI=5l@P=K~j5L`U
z#;h=24&xQZUP~W)`*Twd?JT*L`NF@MuX0dfym=ur`*-haVGORKy&gutE{f@mFy@Hl
zO^z{)w?w{B@a-_>37H?pyJ0L4{*E9mFp(2!WKo(dPV2lE#<DQhaX4YTAI9=9*co<`
zBU%y02Vs23RoPilvNDWSGV0aRLpq9bc79D5ABo#pWvw`ko|zQOq~A7#@v#`(7{;bB
zs7xKYbhETh&XIl+#+ER)hOteA?Bp&X+XZ)o@u~FrGr`YAxHCP9hhy9w#vYOH75P5F
z{USN=KbnWaI2^{YFusvdd?{W1Dh$pJ$8sc$qcT$RuO$rjSe_yg&+#x$a0`kcX9Ooj
z;S>iV3f~HT$JG}G=j#WV&>zM4PhoJFG(|kk$P6PX%4fK2!?+g4b@A|7!3%=Fg>g>E
z@6x67f`5qQPvL(FGLYEeiz253{|@7lNG=QhBl0W4uL?fYr)G8-wv_q>1A;-(F$7JK
zSi(d9f8DSYMZ$=RJSG?yVM4g`Kl&VXN(Or)jDLktax;uu!v7PzEqF)pt{`>p3Ar!$
zKrkZ$MBF9G<n62His0SvGdvM@>E(_fPXu`*$QMD`2+Bp=h|MopRIoq<1%(ufxE?Dk
z_=re~2!B-Yp?`{roEC~lP(tJ-1xty%wD2<jqhDU+)zY;pkO;3NI+X>hh@`6U$Ns18
z<LO#YaA+d09s#>iL*$wNqghi%%3Xp>l7Un^g3luOJOW<?TEq=7J%TL}Y>hxgP$z=A
z5!8!dl@!&Fpg{yLM(`31M$jmN!4V9Jpm79EB4`^yy9k;_&@6(M5wwbco6p;qGMY!w
zBH{+~!{8^jj)1}3CgN@a-xRCKbxkjEV{9KmhY0#b&_9BX5p;^6PXv9X^Y2geb&i18
zMY3HZ=oUeD=~Yib_PmD>+RREzdPUGXEu;b)dajG&*tszdh`3wvzz7CO-?&9kftv|8
zPg)on!LSG>MKC#n;Sr4BJ|DqYaoxxWMny1M97`WEiWmtD9#$V0!FZaDV4^fin=Iwf
zsP;)yPduDSou?vrI)djSm=?h^5lo5T*$AeJE2zl<K0E}_CKD?@Pd7#|owFHn_jX#K
zoLd|%v#SrYGb5N4!4hfo<p^Gh;H?PWj^Nb@W=HTw1aqWl`4rD<5xg#=AZJ4Zrq<>}
zyeU1I%gA5j9(`z&-5}13;2o|Gn!1!RU);sg1raQaU{M5%Bkp1GVIa}5bRDa(W5lHq
zycfYT&Q}B<MDSq*%cTP=WE5<LI{6-PUCl;UM%<$VB}}xoS~S-Pek4fwS|RHM*GI5H
z$VS0Uf|~_D7W_nz&Sb@HTn@9mOfMXAFG+2e><+<CIWA7nEbqr%+$+yaJKed?oSDen
z6T#jHzKGyp1p6ZHIm!MA4x|aQ5A`3OCmf34NCZbCI4lZZ3VtQdIod_h;MWlxlj_H%
z=$i=G1jkN4u;~*bJSooqmh;7rzX*OWNDGww6u~J5Rqh;<a_9Itg40}&H?aB!eu>~r
z1b-)SDT!YrI7`nYurYz(A~?qYPGEQfzelhloY^~uJ~5n+;ExFYjNmWEKolFIxDdg`
z2uej!I*PwVGZH~Gf=dxxj^H0EcTw@28CMyo7c#Fz+_Q)+7c#F!aGk3r0)GTX1ZD(*
z2!b>V&oA&;?omE->a|Rw6+tM%3ycV}3Ou_WWUk#_JK06i1B33@EYMX^Efzss>gJE4
zVs1|&g1cN?xjjsdkfdNLf*TS1%kzK9-WI$i*eJK>KOqBhW!w?+VR^SY)4d4pb8(3<
zL+s~_0zz1tLrBkD8RWTy=N8N(m^X@iLReb0t12M8U=%xYWfY2{a1@V-q^Mw#wC1Bx
zup6wxR4j_(X?ck#N(yh%Rk5f{6lJ5Jua-nnE{gI|ycEUEC@N4ViYKF}9z~@ndUsWo
zqo@)E-A?CMjk-=Y|H*tJipQd;7R8jV>hUNRcU9ZFs$Tg$Bz&N8`2=5$C^Dny8AVnU
zo+xTYp`xf0#kXBmttdKmQ+gEMC~8M>rmHf#Dqj>2x++bubT{Serbc#CRIVFEy(l`e
ziqx$iMaw91cUKLfXc$E!cDtKu5ykm#YH2ssIEp6hYB$wXu$f?U!LPe1%9$eFRI4aj
zN6{vVwo#1ju4s*^Vt2REc5JS@YA;Q6h@zVmz0zHECYNq^iK1&1%e$+cl32vlJqltE
zK{nBgev9H6Iwy)gQfo*QL!;;$ML)6pV|Ue`(-g(E?rLBZgM{4cuIQG*!i)D%EUMK*
z4U1xA6r-XbA1*jTkR7J-=qR4=p~goshGXfWn8rpiPWTYXvUEZe3wo%DqB%)$auiPq
zd0LPirrNX8&uNrIF;)0;QEctu`s7#-*FP_a|JmqYJ=Am=#f&Ik6haGBm=(p#QM?ny
zyYxd8uSW5D6mLlDP7k-Yv!i%T=7O$cc1{!pda8M1_D$h)1>cI|?I_qNOPL<)>4w4l
zC>r;4Yb}UkA>)mmyq0;ly=PGr8QW^Fuj)Cysdk^9ihCO6OQU!%ie*u}AH_=gGmtr~
zr&=Dxhm`kJvwEr(Q4l{!XIV=5D$!gmxJHU7{3wdGB3Tzjvp^<I?d+*GMzJZ1D^XmH
zVsn&lsK${fjz;kbM;FDXQGCYWZ|T{}g_EV4XDRY+QEZRmR8O@d3V%;Uk|Rrf9>vZm
z4o6YBfv0R;&o1&7p8Zkmj$)7Sy<DVqJ^P{<o~5Q|sfAf;Q<gdq#TP8iQU{|r6vcr$
zo^x4>YIc^&+e=mMrM{F}UkQ2(WqeI%M)7MDXQOD|OZD%izKP;^6i@e3C!+W+itmM=
z<V4W(y%gmedZ{0x_%Vu~qc|<4KM9^<yP`lNRQn~0KZKl#A|`~w{JmA>MxNhT6vdxW
zoQvY43z@$Qo)@gzTT$|taFV}y6cBz<u(6b0isG_lCl$*0C#`w@3D31Cu5;^);gJ}!
z>B%T=Me$!0fhhlSizvGhg%L%M-YOJ@EyUz57sce>YHn{uc{u7GM3^E`Ot0+uEnf!t
zoqQSbC=yb1gK<*9;|Na*&dHyV60*6sd*(Aam*-!}-i+deNNz`QhYKNwJTcsrq6ZAi
z7_RnK_au9tTS0!eA;kW#^_(%}?4xqTFem1Ara~W;D+c1@IXpa>$s0p~7#j9b`9wc|
zx|X+sr(g_)V(8sRJ=4eS%<KxDA~8G~gBF7xL(v$D#qf9xPsC6>h7vJUilMSpFBwC*
z7|O>`O0uP6C?lk-^piuLCk8hPR*0cu3@3%NmD4#r#40gVjo~q=wLhoFNS9U<$<6Yv
z&XX}@#^4c2^%!ahp~qPCS1hw;4AuIo+A-9MfmyF0N#4Hhz<umFhhN2`VyF{C+Zfu#
zP&bBpF*J+uzAEa+&>)5;F*K!fVrWD=@yy1wS;^C^uWFXV<B}X63WxSp^xnvvo)`P7
z7BLLS;b|2^>lj*cP~|=E^;In^d2Zy)c-Uy07(VT*22}F2kD)^honq+B7ISzy#?T{w
z25p`c<6UCt8bfyq*_r$q-RSe2o|664)xPRZU)3`Pj-pdPl|^|!Mc#|1`l-?V)XaXW
zZw&onSP;j;IQp|cbZ;D$;usjiAa*H+Z(|r7!;lybiN}V<Ff4`-V)!tI;W3PeVSWtn
z#4s|3Q8E7O6W3@thA}ZriQ!r4?O4HaF&wMpd9R;4obfSi@24ijFi{Bkq!=a(e@gIa
z!Dj?HK~&(Vr^fIcdsylJocXPodOn61Vqnqq7-q-tS`0I!xfcar5@g+(G0YPFvfwL%
zuL`nDRCrxR$Id^@z9B_(C=@bR@GZf&1?LHN%IQw)yL4a-%VX%-UoDJbQ4C9Ccu!(r
zaSThuGKX-#pDNd1)$gyCiDX(1&--G8Zt+)eV`GI_pc?J0jDZuhJ%$}ItcqcE3~OTe
zD2DYh{MKKsjbT!MwT{C6?mW)vuO?RX9PF=Hv>}F#qO(bmlFc!EEc_F}ErMGGw+SYs
z;-@iu7Q+`YEE}Lck6~vF2RJFc71OR5_QbH4o7(`jTZEYdRI34M=m51ZhW+&U0L5C=
z+%Z6XJ3z7YpxCKd)kFDV8Sj@dd=<ly7>>qpg7Y;{ea(=F;W!u6Ky`V5x-~$3!;NB~
zdR($Y2dam1YJL~P_c7d#;Z6)c#PDMbW(-ygKhf<2)!#9c9i&dh@N*2OWBA2gyx<Z$
zBS=D>Upb<Iis>weEc~3{?}FzA{}B9BkhQ3MA%=@FaH;+@Pz497`vcXb7%s=~k1R1Z
z%7sR}!ktR`Kz=QT>uH`HgI{<+FeqpUKCBpu!HyvrLn?+aw~;|A7DKN=Dnf&O-Srz4
zLU}xfL<~+0PYqH`8wKAQq;AlqgVfC!Y7bWb#&Cg>L8|Cr)n%}{6~libCuiy1818Ws
zj-z-S_hWd#xgM+@i6bKp#8Eiz?&?fA;>a1tYlGFgDxNWe6-ll*a*KpKPaJuL=M&5?
zSU|9#U?D-;p)zsJU{xfJUk9s41&az=gB2w-ULuatag>RpWE}Sft5Sj_<%X!Tanu^3
z%EvK#h$<(%!w@xUh^iox)k75JmE))q=O2;KE{>{kJQhczxO)`iajIGzHR8yOgZy#9
zC*pWg$o?U!x{$L&lqZgwany~Y9-9!MFOJqjl{b#i5LKJ57^+CB4OLnkdK@Z_VM7%a
z>Ik86CT8oi1GzklhN^*;Jq?6Y-cZO3LsetxRg*ZH#?dT}WtBax1e?dvLP$%&6GPRG
zp^BxgCEG@j+3Q19`#3tpF*T0o;^-JhCw5hAc8-Hb-tKXXso){$5=U2&bc^G`P{l-H
zk2re9krhX;IL5^>K91gT^oe7rX!ecs**|4h^w2`TI2sI7y@#p(aSWi^Ff~wckl<j!
zA%YLph6$(I@Hj@K`N%j%2_G#uMsTd)vtoQg91Di2zlW)bacmo=z8R*7{|-}=<9Kwq
zdP?x=IGzzQC5~s~xKPPceYk2ViF{fd&&Tn)c;JONrpNJe9EU1;X2daMxOyp$-NV(3
zalANOF}q^8n#m(tMGw;~DI$4A^j{VI*^F2r%`1CO4_C%;^+p_XXgrP_Bh>sj&Q|oy
zjpHpE8KK^eV_qE1M<^CKl{_TGcj&GW>Rryx2(@^GqW+>d7V{XIaHDZa982Rk7RNVn
zyvI3><FNGn{WzA#@o5~N#jzreVii2A;#eKW2f{xTq;RE>Pe-UVLbeKi6vx^)*2VGt
z2-P)~Nj2j7I5sc<Vwp@E<Jcs8v*5>qp9pRdd{||hSlb@Q4k6b@s5>JRi$0HIXB_+E
zI1tA!F3*u_PaNGws@=kw)kmtmBH1U%qOl{@7je8gQW-ftt46AW^sr?4JDrL0FJ;sR
zN2;&lI1<PCk?Lq1U&j$0sq&0ckBw5zMyca*oZxnpK#l}X#_??&m*Th_$9EiQ96!f#
zI*uQ>^s0JJads+teiY8^PePhh^ias`9~Uxz;Z{Qn7c<Yq!7NkXQR-|Qzr}Gbjwz$m
z{84K2C`Ix+J0lYEKZN`l$6rD&2woKYTadM=_D>vFxN|13WVE^($F(@Z+&4z6>zw6L
zs=#PfeYDDs;~#2{QvNss!h>mv5r-+<5)292f^n%55o^&nVvNkuDlT{{j)V|O93ja#
zQbKMB{wsJ>kTXIxrvKu&EfVrOaoiPtPw>9r1Hl=hylu4Nh;k;7D}hD{G)^FQ0`;nR
zN+nP_fjkN1O(0(a`4cE1a_({kgcKJnm_VTfQdK;K1xX%Bpos8C1&az66Qo%xd^cM8
zN2`)jos#>bRha}%RQ8ll;9g}<S>feGpTcruRD}d8CQvDX%A%kpP(?@$!Kw+=9itu-
zUQO_E!6yWt6s#`Dp3{D20^P?bk6=x~T7q7|+JZj8@naM<^#ooYqm*DBL1yc+^TO*3
zHV|wm_|X_eg(e9!O`vT8Q^u-h2^=1yT2V4qHBX>L0xc6bKSn)1RuLm(RPM2=wUo9I
zq*|Y`s$Bwak5%mxSU*;ENT6c^2dj8GC6JZCxv`48a{^sNNZvJpZo<0@_7LnTcvzHK
zrB?#IrEVX=zJmP(`wI>bWOGy=B>ULl1coFK8SDPIV;Y)3jf*ZBk-*3VW+m`)0;3Wb
z&0!|+Yyx9QE@VC>I5vTC35*v`;e-Ut_8yXnBAJwyPZs&Xq8TiDI)P`>@&e=3)C8WB
z?2Do^P5285JTIieIK?VV(<M720ZQ1!OOmC0rVtu@Mac35RwVFh0<#l%jWb2}CNNKm
z9=85Q0&}FHHxrmE^0)q{lmnTcz&j#&Pw?FY771Zn3ldoPKgx^6&Jw|;g1YpLn#&S+
zUnJ}*ZGMozhY5U?wnNFvG+&j#YT;`H+sSy>Ca_Mj>p8jNG}<KDl)&Z$swYt+iH{Tb
zB!PDwEO4+T!A}jMxPuZ7wk5DVfh1Q}0y`4;G=U!y_%Xq^ZsK!VOW;rfyf3p;aF5`w
z1a=Fd{Q2IVy$S4-?0&&71P?GKOJ-1ksc!L%!wIx1p7Bir$EEbk1inh(2qPiOb2Ndk
zMMzGaW5QXhR4?~_&<XDU34ANU4@zXTD49X|car@+t+}(O=cfctC2%Eys|oy^z-eC9
z=W0se7Y?&z#;@G9BAI8{5Hcng&zRcNbC$ON7}yDrvz7fN{!ji#0)Hm(x9I;R_Ad%v
z5M*5{GZiY4aVdezqV`V$59MDp^{|y|30&vuNFbU(Hp8hzMj(M8_rnqyelf!S7(y(m
z&RYOx0=_;T_l`hMPbh)+ntJR6nq_&yqCgU(2TEkb6G%u!a_Tq<Y$}n_f1K(qy}FUW
zzucA`<a2N{fm;dOPvAiU|4EgWeO>#v6S$MWq;c-u2i|tMo4_06)V%~I^!3EEJQ<EV
z(QuH%ac_vsE}8KiGIBb|?I4eXTvAE}wn$ttPJJvSzbI3`po0R!9~8^ra0)pn?BEdx
zMI1crA$1;gP|R`1!a)^v(6^U|gw`l2>7bN@!46+riqa0sIB4Xcv4gS>Xt0KZOb6v0
zly^|UK}84E9M@5-TS+=r)j?$;RUCXN9V0&G;N>h2Q<vfyk30BvoO;5+lhR4fRCUqc
z-rF_eaZuAi9S3zqSj)jv#WQLP_omf+4m9Dq10^JToMLshNDEB$96Vhzqk)6^&i_p)
zo1-flvcvRnIJ1d^rVctg=;EN6gXRv}I%wy(_taVlwh?UUpp_8HTRZOTkaUk^a*o<N
z=pg;?^iZ>xr{n)<av{*kT^)3DkmaD4bga9B9u9gsILcpm;mp##JsjG4b|#W}lfmO)
zpjhbRfD5XxgMJSBOT_^W_DZ)I1|;kQqh*le#tivT2g5jC2hXs&gAoqKNykPCjuvEd
zqa3vC<Bold*c_Yo)rk@r<2f`36Gbwa4tFq#b0oq15U=&}oRI7k#$@q~X%3zj<!2pC
z74n?m!{~a!!E^_6M8f7~aOxer;^0M*wCe47NytnGv*=!#bmFUN{ns7L7XDgVQgFO_
zLwL3EiamML!CVJ#Ie1$-GhdJmG0k&ux2K2BCx6EQE0Qd9u*ku04$e7P>|lw59S%Nq
zuv9#=O7J}g%cP0-9ej{(cR7oMZ<3|)q41T0Be@BLGgmuU<KQC)YaM*-;1dUjOJ=Nd
zu))DbPGXj4y@R3RH!cun84{ZuY?c-uX19m}=X8V2?^YfK#Qt_c##@8&>N5wQJ2>Is
zq=TIfc5zub_{za<2YVbG5Y4^m`P%1zGswO%?Pt7+$G&iIP=trXSM0{&v<{VzFd!X#
z<KVc1uO;yTfMXm^Q%|ywhd8CFr%<Vk22EW)a=iN1!FLXRa&XE)SmK-pzZd-<xMO5_
zeso~>^NjE1`Pso~cFY0m{vyI5O+9qQ8R0LCS5!OeVE%YDvbU#Xf6wm@&O2}%Bpv)A
zUb^le+rgg>{&H}^!9@qxME<vfOVZ*$^h}8iZusovWidrNR~%e*uxh+I+RL-Ok7w6-
z#eR<O=kYrTu+I)64yaGJ2OSu~O+m}y!y)d%3~?a6J+|P<ejf6ugO~%05k*IhSL^$E
z{*dURorKiAl;ue|xIqsmku!;Zx%oS|FTK6x;6DfVq&n^2W|Xr3S)M!694%1j^z|(2
z=i!Y1H{M;;4`eIINTR?51;LWVGjb)7JBgA>lu9B`5_yv-m_(tZyN%~dy2ri(N#swu
zv(Mw#Q+?cnAdj<!rKm^}k0$X*(mnpNlvq?WId{dAt~ZJ$-9s=*iL{)%Q|TniB=J}h
z)siTiM7bm?B~dx)9+k=`!6qt-as@HV<0&mXJOo!sqN)hl86I#S3Lj76i6owsDwI>7
z-6P=~5i^tUB(XP%eM!_zqE-@vk{FzXH;LLwv`eCW622s~BpN2sD9Qg0LnTo+iF)kS
z1l6mb$2URMNrG|pcTYD~>nG82f_sEzYLIl}`EKzH@>#_*8Yj^tiLBn9rb#qUqJ@+;
zOM*S2u%!&JjbN)JS|^c^imdyPw3Q-ic1WUQ5(6aLDT&TWbWfs35?w?>{V@~NmA;;?
zNpwp~dQMP1*>n>9Mbb;W(L0GgNgT-X%$T4&S)RU0^rJVjJWQ$L8AOHzt<9gH21>2-
zCEbAxNn&UctCLuh#IPiWC-G(ybCVd6#K<J3Cov<5QAvzW^2H{2Mj9HE#6%%ulNgu8
zc;Pg~U7b@fAqk#F@|1ECV}|ql|CdreC5dN~m?m=SPZjc<AkQs}mCRsu%AZg2p{dLl
zMBcY##*0b3l*DUEyq?5N5x$bdt4YjC;$>;^Qt=F)TCgHRj>t4y)Or=qctZ#!&lJy?
zlXQ<h4>jLP;_W2fO=3Y3^F%&hJj309%I^p#;r_<aElgrj5{pI1>PwPXn#B7_EKj<-
z2i2I~OJW)4rDO)r5O^-MLfTy^$nE8WB#0kM_TeeSD&eaqsE?9ZE0#Y^VqFsJd4|t$
z5=mJ(ncR@XMtY#HySg_C*__T&vL%VFNpSz?+F^DZ*L5kkOWTv!Ax)5TReqMl=Sl43
zl=brL;#@~E8RX=|-4gSAxI+7R82tMgNYeUI_F2eb!GlR067tZ8bjz2LCHYFo5qd-X
zPs!Iw982PxB#u*<bWi*!JjtyliQkeqm&A8Te4oV6(nAIYC+>$Ne&oE1GW*PP7<%lK
zc$nmL62Hh?pGo4Z)MBXo`mp*0MGLIL#9975iStSPkskYBLjFvG!9axzlI8j8MTs#+
z9Xob8iR>i&GKzl$uLxchye4=(J&FKFF+tV4f%-QPOu|UQOu}M>q_8-JP!cx7AcbBj
zgp-IQQ89%|DMXWqaSKhMXbN#|2ua*d;!YA5CnzV0WD=<)-!G?_Ej&@(NaAJ^w-^T3
zGXHfumPz5EYcBqm1d*xcM0Gcbd)&ZND4fE5c8?QuEfXnZP%=@mF0rjB(?X6Ea;98U
zxdd|yGMgubyu$OPCHYe*kmd!2^qr_4Nuh|CWfN1SGkoHa_KT%ZJcY6;luMyRikB=h
zOQjIW$S9fO^_)z<lX>w*<~tKr=@f`%1o=ebdRmyM%BOH{qN*U8p^5H;Qk7Gvl0xGY
znxs%Qg~w9xrJ$uyErrKZsFec0G4MnRPo|KWf+vOQBB>$BBD0H!NIPXFDUzCEncZNE
zUg5q;s&<;_DX0`0NZmSu_0o3grjWRi*-DJmPvQGc9*&C!8>Y}mbZB$nB-J#9W+}8z
zp-l?SQ)rRGda3g4B-Jv7Rw=wKone-Q<87NlJGv-^uF{A0DRfMsQwkl@{rqB*>MZ>8
z8<}i^>3CjGH)*j)+IaUASCCu8wt9+?<L#Y7pA?=-;pr6mrqC~i;VFzrp??YkQW%`V
zkQB~H-v*`-oTLWHOwq`_N&K%+=Fk*A&yn%4#bHuZVzL@3WONE+QWzz@D&5^vbFvzn
z!Z^-F&WuSZj2E2=DYT!gIMD?XnG=OGOS3dMSrj;&XHuAw!pkYVlESkoOif{W3Nun}
z#6CwpS-l|9H7$jqlhyNrETVkrWOb>7hy2A9wog_s3C<LpB}gGlUrpiL$?A<1=A<w?
zh1XJeU5sCqQrA=pZ>BJp5tzceDZItmNr9H<u`?6Z#k_74%+60CHCZun`798H!cVy!
zU|N{2vLuD2DO^l}52wAy<+G;tsuWhIuuS;-f)p+nvLb~K(vlBTSSh^HQ|{wKYf^j-
zGLENkB89antV>}}3VS)HDffwm|HspHKub|H-MKZhj~rAKL6VB#4oO=;KtVt;0%pYo
zMoi?KbIv*EoO2Fh&KWTwDk!K3NO-$Dv$Ns9Q}5gVoj!GLS65e8S5^0$?U~u-t;r4f
zSehT6b@SA2Sw5C4UO|CZ49iLdtCX%*x<=_*x<$cyrIf7O!E9uR^RYP}yn(xw3-)Ql
zGyg65;f(-tcyIKP4rWI_cIIPWKKAEhS3Y*<V-KD7Q<S%)Nohv64&gn-z4_sdMS=tQ
zIGB&O^TRtGZ{=e`2Sc@o@^QQ4uI^yo)9O3iOe(u9$2*w!86z(Fe0-OW54o)J@p(SJ
z$j8U|_=HVu%%}NCbud?TG`Dm#tvi}GI-1XvKfI&)k_pVr&&Ps}hR?2$e$90HIr<Il
z>}XgHcMR{M@^0yo{P4~r9rz>Nl^@=9{Xu6js)|eIPmC|`@l^?*5;@BF=HpmCe$7XP
z7%Il_8|ArA#^A(oJRc`0oR3&O{@~{Jra6_5zZCqLkCO_{UWk(acRv2f$9gY%NwfVl
zcda)}q?0+@(frHJu%kIcs(|=hK7XY&WS&=gA;-T+M_q`LU!jw^xs!?KBSCL)F8T2C
z;pZb@)``VsmE>~n6t1t9N_!|}HN%}h7Vf~*lVy^3G6aZ0Vpx-td8d<!#E=)ml`&iu
zL!lT7$51+k%VPMslPMBIu^38rHbrBIwstRdGF=~Ziz}yuQZ|)TP%4IM#GOrp&gSwM
zhIJ0@xgv%#F+8mJb){w19yXOza5W$0RX#c8W7yW&T%&w$6qRDA91D}JZVXjoxHg8`
zG1Q6Sx)`pH;cyVG6$_sW{iJjF%1qT*_%6&1N~<ZYuJlHwQKhcZ8cJ&_eZPctytB#g
zY;KC-<`_&2x5UCn`!aANUCfy}H&^OnxT5*Ms@o-eShqzNb88F@V(1t{rx+T>&?tuc
zVz@ts+hXBKc=H(URB*e}#!8#SaEF4XN-5S%LAx&Df%aW7w20wu<rExo-=p~67}!Js
zo*R?@KnyKoXs?`BF|>~1ImHjMdwcVcVhR&KtoV@}=TQZZDSbSKCloxHYi$$5Q;MHf
z`b>`htOA}hw~e7)4A1BIFUIhK;%;jEOEHY<VqR9xD><2hrdMO&IreMHd_9IYa;<O1
z&_Qv5p3X6JiD66(W9j)Ax@pt!7`n&ML-DW}ddAQzhM_qPJX-G^Lm!5$z3HoTPz?PP
zkkenm0Hp(!(k+7((33-A;av%ekx2vo|3rO+Dj&(|#4uW2N--Atb6gDLW0)Sp43(J>
z!z2Y0bN0;bVkYPC6a`b2PE!wXAQn1jW(>1pm>t6$ZROAfqt8{7HZarfb{E93FoskH
z=?oUdusDW98eSSpVpyuZzDZ+Q49n@RIL5`Xf_;CD?v3HStKF3`tm2B`C}*PEm9B|l
zZ4B%9s61Sz^rjfr>w?-4!$t)MyO=wVMmzl!-K^CuF>K`;jD-(z@u4;DjeM-`yDnyj
zYNOhnG3?6W-3s<l|D)kC)V>(@$8aEqgIuI>+!V)KF&v5^&M8n~4DWD1iQ#Ar@6y^B
zzKY@N7~YTJgBU*JVvOO#Sa=uylNfI3YCekL;~4&<W1lxgx*7s9Kh-8a?eIkm<daGH
zFO^v!_Du}m#_&U~^>7SFw3U+IsWvKMm+w{J_O9kf9g%&1QVv^xiQ!lbf6=Q9I`7qT
z&yV4R_Wdn}-xW{;75)*!pRw>s$Wt+#<Ra=CK87*1t6B12w0l=WKC67@;hz}J#&9l%
z(=q%T3m@U&lL=?ov27^8=OX^2XWE*JvGC~yGS6%Ef>LrW#gHEhAO9$jkL5agG5FlE
z<NRVDBx49-C=y4}I8rgBxxL3>$B~I4t0P+RPy-*6phB9&0_Cvk#1V-jFOEX-&;SB9
zaV%n5#nB7LQCPy!i^Wkq9tP;LI7-CB(3Db2@0C<-^d52Pco;s0Y(rObc^p^7@m^QM
zQYIdTjG$~BSI2RE9982er^1!vs1ir{IIfAKLL3#9St$+%=x2>rfo6_)ts1bTqRaHS
zE;l->Y`P(i8+8Z@SBs;%V$Pa_M&oc*XN@>&($skPyb#5xgtWFc5%3|Lo8vHXJP=3A
zIBwBN)r+Hk9CcNO(Wlt0aWtUM`Fv&^4dZAO$DMK96~}EfIF6=qG>eCilr)Zm4~^Ur
zM-v6KgjMqSWD9ZgIHnY_$cc9~CA*mxaa8MO?umo=Zl!E$-pxGQ&5+)w!`;sSJ#Sd3
zp;a8M<LDemmpC4b<DocSisR)t9**OYINHSVln(l+(#PX?OaXPW`x9{#sC_aXK5|3m
z)7tu69Bmam6Gu-Dt;4akT^!HH@uE(O#=M|1w3Dh>C7{eJakQsb<9IU;PMOnuHICQf
zcwI589FbzA9pdPy8aRDw7}?Eq(%BU#>>5Y6IEKVAG>-0Z^oXOM3injnJB~ha^wPNS
zSthEb2I^$#8^^+KhC%5c$ACBn#xY2{3|2nHD9l#cKsqdr;c<+NV^kcR0+}o$;@GWt
zw00b$G}NE--uO5s#PMzl@1-y?j!CpIfgTA=W+=&Lp2smYj%jhMjbmLL)8m*C$NV@J
zFr_2zOr>*_&Qdy?fzvl-=4y4G(pAb?7{{W5Y8;E>SfY42Epe=+aV(=-A}%r2vQ)ap
zU7-Ril^*UEzF)IiF~!!z@t1PQTp!2wICf~$hB!9Hv5C7xH?vteTjSWG)fXZznUvqA
z{3#K4r-Hq4>{GCdzEZG9>E=SA8GH+Ae;fz7?Q>m3+yl%*$09hy6{N2ty&cD4$9mkc
z-qBv{!uQ?y1pfPs(NED^68J#DhjDxq$H#Ge5=T6aL>!;S@mU;y$MH`bpU3e<9KXi#
z8@Imh=1V4Cck_K5UvZIkH(x6y_(s9EN)N~Joq{8|)|TDPu<P6(;voHzt3bieO367I
z$1jSH<v4F&>kjU2eve}(hv;sIkH<lJB91>4{HgS$Qu0sH=ZY7o@aZ`IjpIxlXUXqw
zo~r6*yBq3kSH>+})jbzS*&gP<IO_B;=apVidQmBvm*U7*9LsU;?_s<+d~Qk!R7)Tk
zN8h5Boq&@-5J$TnCdHM~!?2_kWRzx=T8Xd;35WvXtBbmk1o9HNGJ&fSnAXD-N`TCg
z2^7{UIYkmEs<>E=Q#^qZIlQiiDWzRXD`nry6kMLb6$;8IeOJdSo4~^AE@dhefCS1Z
zD6f=F*CbFuam5_xsCKNZN~$Dqt%B>6Uaz#O(mqW>wbc{2F@b0TZUV6$rbJIuy{Bo`
z)6_`dsh(y<PqVkD>C)5GOrTZ*1T3`^sFTAtDY!WSqhOK>)J@>4o~B*`^%J-?fd&aY
znLwKa8Ya*vff2pTJqg^F!0idNNZ{@S_?pbop5{VN(>Q@9bX_lVhtj4>n<;Is^iHJ|
zxQn6eWeC2n>E7PUJkiT^>}Bpv;67^WW%l(l-}W;1CqVi@0xcD^N}zQD4=N`A(F7jK
z;fE7=B!~afzK<pFxN@Gz@vYwGsRW)*pnU?bCh$xG&nECn0zWr)54!Gi3Ea}#bZ%+N
z^)_u8qu!=n0?#WTenG*D3B07><s6^#t$UkSdz;r1cs+rwz0Dg5EV#oZe`s&Bu(x?L
zfscBdat+)L?9#yPm_R25#GUEz9PX;1o6=u<o1O{uN}z87{SxS%_}{s1!Tp6k3Gl#{
zr?~wS7?8kCK5q6gFo8i#W)EdO3{GH30^<@GpTN*W_*s}AEqTZ}ECGI?V;QbsL;@of
zjLPvxD;T46ES+{K6rPa4#02IhFfV~g-24-mk-*FZrX(<x%OQd3T#vmCCG+~25f`Hs
z`<S|Y49^7WJ?PF-RkIVAqh_?~6N=FoQd%{ij!NLY1m0J%g$e$mIyNS-D1pTZEK%n2
z1Xd)lR55!kW0J?h?kf{mrOb6oS0}J0fwc)#_QO^LA*KB<^)c&JptBB5<|f7{fo%zF
zR{j>HG>=W&6WEc!{sayruv0m^6WEi$F2$S_WmxtmuunO}9AZo#Q!v~?Wxk!jTL~Oe
zJg<+rU9Ej5fp=+}PMp0OwRS&9;KKwiCUA-Ak-*0Ze3!rx?e$3lpC#~lf?p~8zj*a*
z<+9foT#^ZVt;{bO-v>h`%QuWv0*4cPN+(({TmgMB7X3bf9}@hP8T^^RkJ|AkW_tn*
zE;}Ag;FkoBCvZZm$CPew?f$CZH>DK&T>%d^cc}+HR(djlQwf|-;NJwl+!BAQ=l@Yj
zdV~2ucm1NCIitg!)uy8H&|}njE`k4Y`p+x4kU(5D=W`QFppb{c9^wfk638TwO~6aQ
z=Wd@sO4BK+lz}VVH;fBCOq%9SsMRKYjpYFz91jr>;^CSYY%i2y;*ru<oKBu{m^l=<
zUpp4@P}D<d50`0EF%Km?lvG@tP4TdMDKB(5m2h;@wtdYTea+<_uJBMsC8>>k<^ThI
zr3Z$Cy{`69&O<j3-9407fyy4L&@c}bJXBOpC8b=d?9M`Pt%vJ8wD$0zHeK(bmWSFN
zs%rHH57j(W_i$rQLsa?f+pDi}71zjdYAPrgs1B|2(AdLG9&YwvJlx{pRu2t4)b&u$
zLwyyVqCTOvHGR#yiW_=pq^-Ak_@%Eougqfo!VpyKXPS7p!^6EE?(@*pLo*L|d1&FG
zxraN|LXKXqpLwXC;lgAWmb-PJd%W<b40Dg1H~N|TmHB{&mI~;WR@$AQz(u2}M4KM-
z@VJME6+fbs8Xi?Kj`f6xCq1<H@T!M49-i{>tcT}3Jgt(?<m5S73bVBJ(9Xk)9$wO>
z=RLfTlc6h?>NH<g&MP@Sr^6dS9P~90uY2g|p_7L<a;<NwT5gpT=%7prclOYwKtL&H
z#GxrrKzn%T>ES&O?|bN_{2?BOdKkUf>g}PAhkgAFOJ5KDa=5>T0g4CaID`0Kpn!8e
zN?|G==3%;r86Jjv7~x^0Y98xhoQF|VuGLYCElQ42TsRROuV9jg$sQ(nn5fmh4}>u~
ze!n}#!&K!=^RQJnDBfUV6AQsi53@Y1^LQYP*&gP2Smt55hq)f+d06OSk%##lT1Q;q
z;RiKx*2S>zVh>9^EcNgTZ)Yo?%n#2;^ZFZt6&_Z4Smj~0j!sFANK4izSgVxg6<AWS
zzuDknqlY~n_IlXlVY7!F9(H=zLbE+=^RQjJ)a`Fx(Y=}-TlY7w_czf?(On*PYb%{k
zK5ZCyK1!4JdD!paEf0q@E(bht=Q+qND-lk=Uw<>Tzj@okJ07UvUHYNFd8@xU*z$i?
z{n+1p;Ne3L|9Uv%;Uf<p>nMMF_{77f9*$}CGY_A8IO5@Z4_|or(!)30c|3fjtqjxG
z9<0{xIdx0<mhNE>WU_q6Ozs=r0i->J287Z7!NboUj(Ygf!%y0sljSto#1Q=Afk7nZ
zEh^6XR}a5=_}#;Cu1XIlwdsV;^bf^!0);7g%EMpEX|JPH8er-TFs&5-<KeV66{tPy
z;T-eaM<pNsc{tB)*+-s_3mz_dNO}lV_>zYhw|x)!IuZJf-B}VIJP*FgaK3aenVcP`
zpQ7`*)%y@184p>Nv3v|tGdNA!$-JVx?T2%8{Qsp2<H%&@5QTgc_Hnt7D|{63QPf9q
zA0>Rgoe_q+nD!!O-;zE``6%t<GG1{hhdyL9*)(o|VcfZ`l~MUCeO#r0`B~P-)ru?l
z;WvR4te|o}$}5w7ukru4lsF1Ayt0of+El~GwF;{GxWUJDKCbt}eV`y48Mtabs{6Rn
zN7Vmc1gW2)bafyKFlyAlaDb`lqn3}_KI*7Kt{3u|DwLtT@o|ffr;>O&iMl@O`B>s(
zsgL?T`X7(p=HqrBxB6({qoH<hq?Gpxsf1;hy1KEChkQJ&O-+3MI0%~hXy&82k9&OF
z>*G#sYN3?9?#d~-+YfJm7AU#T$NfH9X%okKz(-3Tl>BOdIjW;v8em%cc+f{dm3jys
z@$smS5k5xxc+AJ+K3?(B-p3O@p7im&j~9Hj;RJm=>*G09__Pl3jE`ai!|>67Y6{x=
zXs7nvF)+NN%BD60&5JpkUs4a;>EUJNbQx$S4m7X&c+E#gADw)>o|Amj#~X@Qs#@yl
z;N!qRb9kWX?4yg1UOsx~{Mpq<Hy_<|eR-R;hvJ?&4qeg5M_-1O5z)C*=8S417@%T9
zn3FmAK?(-@;k{iBJyabyOesA%TtTD4?kJ{{k6Auu`xxV6tdB`PCi@td(=)-x_#CF?
zR5ekn^wkt5t&izGW~e_4qB)ImS1|@?rb-sblR3x7TptU3EL8qHrSp|?cGOG_i+n6r
zZLG3H28BUq1}^il+{b4=KKHRgg*W-w>|>>mRX$exs5r>*P8_=stkLRPrR$Wg_pw1i
z{Xu4<AAU;}#VEYR#~#L76>e3!&Bt~hI~4EqvCGG9CYuUVzT+S>TJb&~`+a<*Vh4O2
z^zpvpx0Jr^;~gJ|6tmZoLFQc_@A;s@(}T=D)$m<T=Lg(pa*}MN{Kq~%$#FjQfx#h@
z<qIF458ua^44;p$eSG8NgpWUbeCy+|j~{&e=;J#dM|^y*8aPvStS~sdv)@4V{FKvt
z)W^?Ut%D7()n6ZMe(`Zk#~L}<{Hij)<s^UiaXg3F`lpYR+{1mG_i@U{Uq1fzamL5r
zKK|hZweWgi$zZc>u=z>{EimJ(Dmkb0{9uze#8ez&F8H{poVbrmKJpdE{P4bNfx$GM
zQ=lr+1h=3ehEYiR2)LmoQ9Fs0kF<}HNt8+=<0I?CPKN1ZDHWxxLIL+@27*;5iAWN8
zNfb(=coHR&U}Os?Lx-@nhzb|Y^(~gfqeK1|g@TW|6fT{_Wl3C}M7bm`PvVLsu2T6j
z$#51|CPP=y?On8E0WF)v0Iil!;+iC`P2##FDrm2YN(&}iNpWSRRg}^sYP&v%Z%m>p
zI}SECD5qMEUp<LQsz0h6S7{BUHFGlShL}1@+?2$9N!*{r%}JOf8Yj^tiCeh&C($s8
zMoH95qJ9#$Cea{?_f#jR{QD4daY&fJ9GYo)o9c`VHMb|j&jMs#H#GFp9Z57zqD2yS
zC($g4=1JU{#9c`gD;(}c4OOPKQdYUR_#u?wo+R#7g|7`YTrwQxft<~cCDAg8R!Ov`
zG2H5tpeG;9wLYZaVWp2GQIINB%O&=B5>F)Yq&Brlf`wDySS$?0Gf6y~#H#^b3-DYL
zZIjr_?n$&u;`t<cB+*klzL3O=NxYN{9|mB@A6mOFC-FuSZzl1I3bdz^Bwkbey3!H3
z*)1GuIwa9C89u{SFm9(Lx==>NIw!G5CA(>r0^O7NI@kB#p{7?7y^|Q0#PB5g<YWdW
z(N}T5B>FR>lAwjW8ZXdKBL`{g;3S497^*S_mXnT1Vq_Atl9-*uD5iZ9li59qF-eR~
zVtf)4Sk;J(%Z->AY9{9Jq$KQNp${u6ovQrlN~h&yY7a9rl9<UfP#Frh8D{1rF*k|j
zNvud>UJ~<@Se(R?Bo-vGFo{L#&zFaVPaF+v?e@}+q)SyNUA>F~>VImRJj|@5OOx1~
z#1<7;oy3|X)+WK|EZ4qt?4e<1owlx5x*>^;No-R5!!W}_Rdi0l5Hx;!5<8Np7@$&s
zok{FU;(QVplGx2KCGk@dKPRy_iG4|Yl*GqL>`&qV6EcbSRp-GZ-cmrd7lxTb+*pR2
zx0Ulwj{mNLYQs(OBtB65Ay?n<&=OkCiGPyBr%8O1#J5R&rUGB*`hK3o7ra6nZoX7X
z@Rfp|!wrMZ?o@I(iSKgqlZP7y;)qtir)L!Wm}^}&+#KbyP2yA%e<g7&iC>dAk;EUG
zPQP)bBypVH7#9A6*f-o1g!{;F^QUS!sg%s~!wr+1pWOdW;vZ$6<<_U*-z3f`$QxlQ
zj|k_;=g>&cCGlSpHI#F=(u+x4;#M4>aDe<Ie<%<EH+JnCPa=_or<jrQ6;Mf%>s0&p
z9buS|X>R^WNB}zsS41`mD*yt}3H0hTm1HlbkQ1OYH~#>60alJM^c&OcEfx5FgeelB
zXn@NDToIsHfZ_p41}GKq2hhXy&K%=HpiUakg-|-cWkI;^7z<JsPP0saD+81ZP(Hv_
z0m=s9^1M301s#GJPIu7^x{gu1CP0NC+*s&Fc4rfD<p5Ozv<Pr_fNKL>7vPovbpu=<
zplSd&K#c%51gNG%M|GOj1Kdb!)j3>29K{(KDr5v}2B;O_CKV>9b^r?32|yWEDNJK-
z4qyUQ92t6pl>B-D>IY~N;En*d251oAwg9*5j2Z@L6o7i_t0aXBRMCLO0fsVXMw)_6
ztZ9Je0q#`SHB$qa01Q1H!d`a;pxe1l?+I{kfM)_c8{obG_Xl_+z@q^k2+%UXg8?22
z&`P_vR(g+)`}|15<asy<w^oLRg@LBp#{xVapiO|M0z9GeobQtg28{e)pegor0Gh;J
z#7v>*RG@8ucFHW^v*Ys&pEkXyl)J=B0T|_%l@h$7puJK)^!0jxHv-g5p;iiS2Ivsr
zlK`Iv=op|=fLQ@%GyMW|2{0_caOw=uEkJ)JZGi3pdIablppTB#GYF5(d$E_!m&d9+
zwCo$8Ul1NwZd4}E+i5?KWCsQq6kv#U92|s4)&(b`1!9yLs!eZPjE)E}GQh+DlLCxV
z=9mCu1B_P8^K+iijtek8zy#&+=#ss7lF0*7Ql6|%4lpIa^Z+wdfJROYFpY!uF$G85
zAB{8xN24=UpsdDaPJp=qwg=b|U|xXvTz!mPfCT{-23Q(kS%5_<zc|1W1;=%c!AQdg
z_6iR0mj_r8gs1C#rkax~Im*zs)dAK7*s5LD23QwhbHFdd#|@(lHLMT7gJ=qG2(VFQ
zh&L%{GAiUhrF3#jcU!Kt%P6yx(+Ti)fOi7y4zMS{fdB`&w0VvcU|)d!%rRX-w2f!o
z<42h#qs&{X;gC|gg7F%tXG-q|crU<*0X_=wzP5g#LENrG)8Pe&*dJ>X?=R3Qdi%2g
zp9cs6qyl^q;L8A~0{j)=s{mgI_&LDQ0N(`oHo%bp-v@j?FiZ^g{Vu@AqrzJ-$5sCi
z0e%edlPV{Z0xYRf;l|E!e+h6b!0!Q$2lzDroxr;Tzj09QOUbK7n-c;42=HfslZ>4@
zv-arFb(}H}w^<Hx{}1p_fQtbx1vnkx-vH+V{HKF59A^TYRa|gBUvQg-%=6qBl}|S^
z1k{-yAQr$2;0K7)|GWjj`0D*5-Us2`7Dkg*mZWxMm%B%sbbt(Z;}kAWAsfI-p?C@<
zQa}olLg5sOq+q8)=QyeGu18z7KcbvGrG=DIpsO|&O`%vSJm;s!m=EOh@V{hErnG`m
zsqoGhr%y3nfL)P7nG~v}P(6h!Q@ARHN-0!Mp==6Qt9-dsn75AJxFKLEpTafTR3WFi
zq5|IJs-oZqrPnIGPU-bZX;0M@#;U1QxMH-qF~@gPi01IY(WVB)G^6IWa%-nhCxyW&
z3`yap6mCx8l@!{iU{bgxg_bF_N}+BF^-^e>LbDX=r*LZu4O3{O3L6mUTINdU(xVOB
zB`9#4w%(os^PzDHO%xE{q2TM$rg;i?s?6O=?@ED5-XayA>J;1$qVPTR_NC~(DR9Z$
zr(*Xj<tPuN@Q=>4bqWur@N^2#r0`G*52x^y%Jk#Ej1-<sp$(%y+B~Yv$5MDar{M_&
z+z_rA6Pisx%EFv{HihR>cp-%sQ)rt)yHuE{&ogko-o{e-2gVpyUs5G6r@*_7JSpX>
z=hnenKd+|nS_%WS_4O3qNTFvc+@s!1p+gFtQ|OXH$5gl@byDTr&<gVZIVw+~TMFG%
z=#fIf65uKzpbV9>Fzb4y!dpnaRev9)eU<i8%31VJp^w@*P&tE?hAZwubZ830XmAQ^
zQW&1Xh!m!$Fe8PLDl;mD(J4&UzGIjt%ABZlTngh;n2^GJZRLNT)niP-&NfK}Ca1#J
zLpb`B6s9U?no@H1jWIJ*n3cl96c(j0TlsTRm`gMG+y!p|C}(~O3sQJlS3Pf59-))<
zvF*i7n-o^6%+eH=rLa7O6)F6ymZX)^KOBhi1$+A{I$2}7HidO5?AN~QQ`nHgwiLE&
zbz=&f6>L(<?o8t?DQr!F8wjgcjt%LK6n3VtJB2-rNCLch9ZG5l3Wnytw!JCrQzbRW
zhTA>`4y14}g}0P>NNK@V{5F+nGEjyKkpIfxPvHZOnC4GV;lmU@;vSMhkiy3)e3HV+
z6i%h^X$qgE@Iwkes;bXZ_#%Zb6}K2`o*iq>`%%)bQusOr0+w$Se5>?u3g0O>l5725
zL65P9uhRUK;!lg>*A#wE;b;mxaOSPI31iJKsql1~0zCHoO@n(v>F-L9Gj%V7_c8zA
zCZ@d_@%H)yF1!Dg!rzQe3TIRUwf&O{Pr6QXM)$ib#u}dgoK4|e3i&C-xXMPG|57+l
zwW;vo1inObaIE=mY<S#yQOCN()u*pb#ZyS6;H$P%Vy*SVFYER=km}_A$x%`%q`Bp$
zabp@8E`R<DNaKn$tTd2Dp)?AoA!*p@aCVV2oOF1rvC=qGf1HVo3-2g#G3KRl6CacC
zqeapvnnsB<N~ZD1IMY!}u{4UOQGj_GNt;WhaalTa9d(vYhqD+nF0`K-%A|2+8rP<A
zT^d)Vv3Q)hI*oE^lvT`Xxb3HLO&V3wyb_L9NTXspJOHnpMkNIlV0E`DB%rm_PjG!2
zRny^H3}22j#tVPx;|5x*FLqVaNztBY8g3f()3`N_8fnx_qps?#l}2sOF^!wm+B!-(
z5bftGK1GFT+@dD2n$e+0-s`fpUOHUn3`c`B8m7@Sjb>>yO5?UP?ntA|`0zH<?Hv7L
zw26ASaXJh-r%7YTtTjG-CxSApHc#WuH10~H#dyPa-ze6CsxF0M)PHXp_oXpCtrtHu
zFO4_Scr%TbX|zh?dHO1i)@eML##3oLoyJ3Cjt^7o$uu5ju+r#1-aM+z$J2OBCrHZ+
zT=#@JVa9mVMvbI1Y0@+5v}e<JE{%<1@x8OQX{;Y_+9@SqtZ5s;i)p-+M*B2g)h-<L
z<#d>$ucR^ILiF+nT+$a3VT?W>Z(d7-^mU~ir2{i3jUj0aO`}s9oz;?V)HB|s$D1x{
zPd#4Era?*#-PHp<(&(vE=#|D`<!~as)BIK3Fxgo8vSSYSS1=%rfjQ0~CgFt8^K>tF
zo?&SWPh*s}j!?=e(6*5}dV#M-r%`Ky8I#6X1xLkVbzB<bwK_rRM5U9IvURe8DQW)Z
zRM?kg8snQEC76-M%rs`DF*}X-)&4m;)`~P%st4vOotMUZ1)TT-1q+of;$q41mnc}u
zw*YdS<r)QcS)~cNS5uU+Ud`2^cx@W%7{nZZn}Q9DvVu)H{^m5c<nY!s?w(+%WP6UY
zBaNLoyeo~}IlL#0wko+#Is26!P<l}5TS^ZprNXz<ct`QOInH}&^imBUXcm2_l<D-5
zf{(d^6nvWFf2QE`G``4jzD(n*9R51ZlmBo9eVfMNG`>sY2nS-O@ohCWrSW?j$J6*x
zIY-m~djaGpt^UlM(U&YJ{7V|g(&4KjzbYm8O+mpc8z<5@mBwFb{GlBw|EIQ|RLbuI
zf0f_(l*U<Y{U;}LTEV|*oXK%0c24nsInMbsCQk@oPPv%IrJOza+8RqE&Mi*ASBjJ}
zei})xhzy2g5Tub})H1k-FOP8Z=YE?(*$iGP=VrO#XW(RDWdI74bH6EMi8itIit;XL
zB!glZ6we?p$1jvYVZ}w17R~YN7Pd-cP%?uu%2_(Wl*-^T#iesH-OIc4%ej|la76|L
zEI$^qILeh7Y@1*RuFjxb2GujTF@y3MT$4ei3@T?(A*Z3Dg7+twpUb&NCzvW3T${lS
z8C1*QI!>g#YflXIuw0)(RTVy0pjr6^0^xgH8Qhe?%^B3lpr(q|$)HvSwKF)TCe_O6
zxoe_nqu69{O9stV`09zKt`65MgL>*Zdar&4x8`tz3>qqKl;hl%!R?A0=QvF=xI=N%
z9H-Ly+O)8v4tHk;cj;Iylnztoy&2q>!HeW%aDN65Wbjyqzrh_wv!yC|P;sjaS}UMc
zvnQH|a{3?6;1R`-<~Y^MyHBWOn+%@H;7P^QwqA#OI)k>#*;3AZCWCh;nrAb3E(2C6
z!zyXJ44%*RdLe^vmHBc8uVm0AgRU90&)`)R=&ba$3_4`cQSs{;yrJMtrKhwnBb%CN
zIw|M!Nv7JQa1>@{w+y-~b3g_?GU%B>?+p4Vr<YQ?j-}Bg(^spEQU45B?WeS$m8!@b
zr~-rN%t?j`Gc<!?8EnsBM+U>SX=VnqG8mD;$P7m5SnN1Xn?`3aCIcEdHiKs;89It|
zd<GLTn5Y7joT^|_29p&`$?-c+GShN+x`G)TQ76b=volzd!O{%oWH2{_d0ZnIEY_gV
z)eBU9VFt5v@{5$iaIo)~^6s(>mS?aogY_A#$Y7=N*D775lxfVdR%ftA2VFnOZ~+!X
zd_x8sGuV{DW|e$vQn<c;n`E|VmHM}3ur-G-PBMijn`<VUof+(6#4|XY!R`$9WbjD_
zpJuQ(gMAqs%HZt`_GiG@9mwEd23)pO#qt(+fbwpg$%aEP=<hJKGI);yI>cR*%`=lj
z$qzDMbUxCB_My@ug)PRh>tyq>CNRNg3cktZ^XD0Sk;7jq_)6*5N|{Ta7P7b~zRTc9
z2B$OlH-qmp_#uN68T^sKj~V=w!Ed=u;AgexSO!Nk_(jux#N;sI^c%N@U$vDx7^}Z$
za9pbeOM}M$nZaKf{GGu`<)2bIXY&6xlYbZ{&GugkSq#dV49;e7DTDkB&Smgl2Ip1&
zaCx_2;cu91F6f?lQ4@e8G7VxG#8u48AfbTc9-eHts1HpxzH&}ZHc9>$pc#`53&Wbp
zAj=IiBGn^eWq~aIbL6}ul7*c`UrYK~;$#uYhOZFjS(2AUp)7W1u_uedSro})ZWi;h
zD4IpFENW&^D~sY;l*pn|7JSF8WEQ2!tl(aqMd>Uq%c4vcS7zZ)HvE+qzI$?c7FT4$
zE7&qqOsy&52g8uhuY*u#S*3SQG3Bx-p9Nn+yhbUF;iX!IEGlOIcXju!7p<HP-)iLV
z#Z<}S+HCmR?{!&RpGDOyo|$4;Mocj`<Zv|w)w8%U$B8O%v#6n<yLPEfom0&H93_i7
zS=^Mx%~_Z%8f9@?7Pn->pY~{|w64;6S!|hNSn4adRcQmI2d0>hrx?oLu95`JmESmv
zCJNZ=4h2n>HdD&Jl)O{%T}oRhy*rD06x^G|(JAIWr36&cGK*GOOw3|Z7Ok^*FpDR%
zc-?Xz%Hppn=Fu$f%tRk%-)!^|r3B7YL*`@J^tjR|vUvPNl*~3+Je9@M^hp*2vlx`c
zv#RZ-EM8XdTo!F9a57pg6K%)fPBqVGc}5p~fsUGLUR0TXk4In0qJ0*<wEAimuQ5Hc
zsP|X&^(;30744vwJUG?7k;R)?^v^~=Ws~K0WVp3UhpDD>7G1J<6)yRIS#H-X#!fZe
z7_U>IWDnI-_(Zg)%CDMgrk{-V&f>kPrVleYi{n!balcSG2B-`t$hjA28=S>Zru2#E
zz(1oyn4eS4-P!0c<qXeagqk{%$vn-B&tg;-qq7)81Gp}N=r|SQEZCi9Q-)xI&WIrO
zS2)V#EN14sJtd2&?EXh|S{5{NI^$xwGn5ikn`UNZF*^&Yn!~jJJKFt3^qaq<Jx)gF
zXR#oQby=*>Vqq4GvRIMD$}ARVu_OyutfgFumBV*(SqPS8!*7IGp2c0$!f!SpUBz{g
z#ag;We->m7r}k5{-86GTzrmHvR#n^$S!@hVMZalg6PJ&;o0&yLtS^g%zeaJ-`6z$s
zU~3lJm}XVn?K<MlEOw|WY8z3}-KBlmoz=Zr?91Y3=4TfBvpA5&msxz3#X-tkh`yi2
z2U)z8#i1<t*x~eP=53lc&9J<a1wXL7OH;GqBT_7UhWW!RKFZ=VZF+y2`B;^Fn#Cts
zu*&l5G!vf|ew2<(H=lFknr^;ON>yL0aD(aQhb+Fy;@d2$OgD$K_%4ehj9?<l?lgc_
zeb2Z|GyFCN(jRrKpR#C^=DW#J>iH#$V_96x;!+mBX7O7Vr&aUsO8>~>PbQmcpsEuJ
z9-VI1UW%S%h?y{)ARh$HqE8}9Kp75A`cD=er-zS&{+q>_EY4<eE{pT3^S>+~yos{#
z;YreJwsk@I?8S4f{48SG@WXW~i#Qi)EINF;@v}%M_Ojv8>vFNkPi7G?ZKfN}f|wwk
zMJ9_ZHyKMJmQX(|p(;_zrz?3Y%2rIKqhR~=(8-kK=YztQ6tSeJB`qy!Wl1qhid$0K
zk~)@@u%x6V<t!<03E$%@Wy$3hU&oQsmhg=~mdh;RyNv{8RG_<Km9=D8o_nPwS1E_R
zzMO8BJJ!{fe5P+QUSmlGOK!9zN&!nMS#qr<*IB|B1}V%^*^(;ScTJ9Sy(QI@Q`M4_
z)6ES^3GU7d<*QqAU+#C%TuW-IWDTWk9Z}e-WeE$hTgbi1lAA4QY)KPKj3u`yzmX+%
zEvcutp(XVdG*HT3w_5U2&Jw<5$+?ipa+@W$s|?NH9PhBCDJ@Y>GfSFVa+f77EV<JX
zPUPcUFTT`CWA3)(-keqUXqQZ$yV0>|;r*68z%GSDuX2>Zj@8<d2Q7Ktk{49+A^OUa
zCoFl`l1D6gRGE}~OaWgP{eRCtX~{E|JZnjtoXk^}yjs|L+7jB+GU7g`{B}y)D&-en
z6wHoBzQ~DN(jnLPWlP%U@GF+kFiO5^$!nIpZpj<k^rq4R7Ztqpy2r6PTGGjq&X#mh
zSM*ewu9kGqY3pW5db;83s6CW(Dlbf}UY7K>q)$%f${A+0hP%Hd1ITxzuOkC38DvRU
zk!~V`Eg53TP{=UIP$nTW8B!cF+>#NNd}zr>mW;Gy6m76%ttF!^8Dq&TOJ-X#){=3S
zOtNIMCF3orF~fA5VJ0$sGt2}!aE3Wq#GNq16fNRTv1F<xGc2J1`AcS)Ju}QSOGu|H
z{bq)lX~{J=x@TsXH;cG)ESYP`QcIRuGS8CvmMpYnktN?Xafg+57x2Ptrn!2i8CTS$
z^2MA^aktLQaG)hzl10Mbj$F=cnQ2y7veJ@vGs6*AS<-)|Sxqx$n%7FWqYH<93l($M
zS+d@ey_W2=WP>FeE!l3#4ofy!ve}X?mTV<+ruk^5IX2TIXBrfDw=rX9nHOf6D`uHG
zv&>FQ2F^0OEZI%vv&`06q3|B=48`5!vkd!wGRy3@<bWlIEO}eaIB3aRmXw)oJQb$>
zr;EGqSn{qV?_2T#lYF+hZ?<`Hws}vL_nmF{dL|8?KHIFDZ9cZ-6H888@~<VIa*MF!
z2TOjm<a0~Du;eRCzGhP?x6ftnmsB|09Gz`qv&}b_d`ll%a)gd8<sP=A`Q>htIi|!M
zQ*BN-kv4P8_e`)k;aC&rn4c{9*^=KZ`Q4JEmi(eRf3;+l3LInfi@I;kF+a`;4Ws_!
zmYlHU4@>@}e=c(`kU!UOA}6^e&M}4Va5?BHOa8LtZ*Ep|%|Bd>bIq-DLjyW0J!8pP
zW;IV=EIDV%f0kUd<PuYEt~qbX>bd5E#)45eG&k&$Z%NFO6g@eQcZ5xxTU-&>x1?$*
zH(`mVfcWTKlhmd_DP@v#L$m43tR)sC0?C5_A`lzmK<I)0%7otL9BDSabj!TZ&O(sF
zkRp(x{AR>i=DvBR-8|EGo|!Svte<DbG<4sm7^EcRe#irmQjpS+T9De1%OICSDnqKU
zFQg2lEaYm)PxH)$dFD#URgiVf+@kYMmHDROd{Yim9#Vln@&I{wzPW~d8@hAmn^)(X
z!Sf9l0tc-Gp*QN62;c3!7IGb=8l*bpdPr5s4SdmIzS%h6d^SJK)!*lvs}>lp(;FdC
zhzqF!;bN(^z_eIko?BpQLYOn0IFqMR33nHl733yJV@MOo%@6}=0BH!h1yUDMA95?C
z>jE=wfmu-8tp}kiRxL1ZFEBqWF#jzGmrP`#p+F<ZZIIg`%<~2d4M%C*+^xLO+yQ9{
zxeL+)^29>Z4ALBOC#3sAGjX9=z0lD4OvrZ@n!6$QK<<Uy2RXXX<S#UgEZ24EMdAA5
zLawpMw1l*Ryaag}(i-w0;|O^g@(>*ed7MK){;2D=SY#f7JgQM{zbG8&F$gJBl;In+
z$jn+~o`h^#WZFP>6mdUTWS-%-hD6=xAZ;PfLhiUC+&z9-WZLoT93U@1UZlXHFbzs9
z4x?FZv0;^=q;Fq=w1;%#q#&<CUW0Umbb`DNc?0q$qywF>*gU;B+&>wqp9;J58{@?_
z#kh2)a~7B`N|}vaHDru__r<0Mq$i|5WB{ZWq&K(m(r#bKxW%Rq!d;80zH)K6Qu;B7
zrQCNHo9l|X10jPTLm+$s`PgD}v4oqy*bIggTVkp%F?@@^dDA+>AtRVt;Zt%l5;6*M
z2=X>$G-M29F=Pp3EC+(jfXsx9hfIJ>hD_mHmY9j`wZu%K!<U$jOU%M0X73X7^%64`
zG7T~v^3M{JT@rpXRfVOd-cr+YshI_t4Ve#F0GR`MWvQ79nFkrX)XZCIb}S8Fwf<_U
zIla_GmYIbN^fI%EOJkX-yUe__%nVp&mO_?6ws2mM<&YIzO_24FmCON7aA~+?RzX(N
zhGk|A<kT{gT4vTSGixEAEHh+o;KE#PHZt^(n#)6*?_6&9#y39*Z|0(I>OQsHY=dlv
z?1t=NZZM|H%}&TJZJoG0oDt`{VYzva-MO(WGy5R>AwMrS7nX;nmRezG^8v^~HU2FK
zyKr5T`3~e=$S;s%koO?(L%xQ51Ni{*AuWV_3i*f&e1-WKLX(=TFwd<pw453~qaMf?
zkS`%URv0>e@`{kp<wJYctT12cK$QO$av1U>w;jlLkRy=qAwMv<D-5Un!wPe5g~?kP
zV$QwNN>gv8`I#$@sk<_4YQ55oTxmG^uaMs$|3c0{euo@~oTN)3C%D9D`4aOdL%A|k
zxcCZp*GfaP2R3#8g8a?sb01K9_;ZuoKPhv4GnZ-el@50naxVN1Hi<+2gPae);92s+
z-@}oM+~QW5+g6#gD^1Z=VN97h9E<<Wmo;?xDt#h+tVw(odu&yhd!1GpZgKPm-}Fy~
zcXy?sNF$L9B+DIDq>6|YZv0Y8q_l*8wn$--A|gBuiiqTi6cS;A(SBwNU)3MED%^h-
ztTN1pq9Vmaii?yG*|ExexympzPp%5T9Du?lMbfLxm8-*8Tqbh4NI8-6B3Fo%5xGjF
ztVpfZ=Kj^@N|82~yHw63X}{VGTWziunYY?(S#7>rZLSfiAW~7JlE{VCrpOvob&cV0
z)Xct=X9`^_a-B#`Dipb1<hC`Ynn-n#sv<Xt(8=^R)0+{zQ6wtjiqw!WksezUW)ThM
zmk-cpn#w^tt}(SmZW6g!WW*X%M`X#GaCS!I7LocQw~EkIF5bF2g?b`fhI`h8i;-#H
zK;+ySQ(|rCs3U94Z6ddeJR$O=NMn&EBKL{hFLH;3`G1#43o4vznu;_NX)bbiQ}<4h
zz0KVl*M^p`dbh|uB0biI=F#n3oA-(|U2EE`4Oj64A}vK87I{RZl}Kv_Zkc&VWa3)$
zpa}PkU)Gv6Yt1`r&84+rfF5PI*O|ve9;aiMhUv#_zj2*uwk}M<HX=`nyvP}eJT3B!
z$O~#Gr}nH!Tak7m&#8y$0S@%Mgd6W;>&zSL!vBNZPN{R`I`gu~D<ZFpydlzF<W-T^
zBwQMd8b@JHa--n(Lg6<>I*4=@=_0alo!PlA3~NV`PW001aML6GYF!98eXh;!bOq&Y
z>0(PykzOMIh@2MbEz(D1v&a^az9RiZrix4x>CXff87VSKWT40(8dKdJ#_NBPAtFPW
zhwII$bq4FhuU;X(X}!63y&2BXi=3+Fwq0)?s_wqk#2qa%Mq~mV%R$$hu_EI{#%uT3
z9q#1yX7ze=XuTnxBr;iKipYV>U0%}jih@_6{I~w&`tWLVy2uQXWg^Q(W-<vmYmr4F
zvqk2J%okZ8GFRlxdK1}T8dY}*=4qAR22*827%76r8_Z&+rN~kdj`+j|({Y0txxp;l
zV76^ApKLHIL{^Hd6Im~^O624Qvsz>g*Y)+`HBV-PS<Cd^Xztx;_*FCIHku708$~vW
ztlenZZ8S`_o*T`ijpm(=hTr0{Rb-pUXUqhV?Og04heX~M*(tJ1WS_`>5z6ltxzx<v
z!*P3r9rx-GM>m>aqba+|91uAu@|H-QP3G=RrtPLsKW*-{$-E=-uE+->ABw!kG+S>r
zZ8GoE)oj{m9=p-~aFh8+<YSRfL_QVyb(4v2GPhK7OKvvTH+MNH=EnHu?iV6oiX0XB
zg_+NM6FDOCy~sBr-*Vwsb-&YfRC}`_K1^epxcm+oMw#>nksn2V68Tx=fv9`m=FkJ}
zRFdA~|M3Bv%`pxw@`uQuBEO0JE^=JtgzhBMHk-|x!~aU$zGw`$6z(}EnL;9eiTq9D
zH;21D^>B0M+Tothy^Fd1FM~^;*m9FCXSsE72eze%E&qv}7fEp!<-R9!Q6w&spoclf
zRpAi%YUi=dCdM4tY)Wl0?v^lzJ#JI;_^nprbDO%}CFjm9=J_oq-~!oVrfo49p7e98
zx5cr=vITbd;gnlHulad}%*$6^TQXgF1r@O+&z3^A@MB&05prSpnQrYC!|PIBR}{6S
zm@Q>(x!RWEwv@1?v@Ms}a%f9<y;0JZQnviCCH#nVVM}=3d$}!F*iy!pD{bKr9Ip7*
z@H+Xrt)cu?w(vUqQ+_hN!!2h^d0VcxrK&C0*z#y$_gY)7Q&7Q{iVAqSSjm>kimNEy
zaivSiMq3S69RGL!ThqP47EYg~hAq`>scy@SIgV>fl)bi^?pyUcmo|p9rnc5n%G|51
zVA57|vn|G!hirM+mRoG8Ys;Os++|BWTk6}=$d=n|xz(1{TTKI78rs6EXnv46wACD;
zF<XtZ&D?HFV_TZoa)&Lv>@2^{+_cTyvn`x>Q(H!qaGTrG%ntX`=aort>y<7qUt8F6
zpDp*>a<?t_*mAEe{2;^6K~uIFPPW%J^8o!;G~9t(Y4?_Pc>b_{n`y1p2N}C<;Xm$^
z+sq@JuPyCtdES=CY<b+4r)+uJmM0jpt>#Hv+SuWhzqQ?5wcXU*9$p^bwcR{Jg&e|`
zwhVMpmzx+rcRaN{{P)*!yBW7Vysmq}mKSY#)t1+6S+(7~WXsF8ykdtRz%LYb+uQQa
zcJuT0@Zy0VuE#bGBl5Z}9c|$%CVs<~H*M)a&ullvcZ530?8J!gFb#KvxGPiC7S9&n
zmhQInuw{=ed%6GH(#w{`Oeb4<+tSCD;dCZvx5M<crN1o$Z0W}YekA;@^Nu^hpCcb=
z%Me?J+A_!%RtGB`t4&LGnEgA<*E`HGJN&G4c83{h%P3p;(Pq3Yqiq>u%UD~+acXtL
z)0oEf-HG+x$WF7ij9Y1^X}r@+u;q)o;cuo-v}KYllWmz|3%|r{uF|PWS)InUMzyxg
z%yDKbn8gs+bt%9yM>z%6dA7{g>Vlm7LIsPMf%QW9rM4`yWh299%W_***s{i!wYIEe
z#CMui%uGA{wA*2)8M!n3j6<+^r&(tU?O$)p2F|N-Xg04`DSv=-sqb!9&uq74hb>za
zZ{?C{8j5YRg<oU!!%nl)mR+{&wuL_sPfKbvac`*ap5JNmcA4|_-F>#~x8*xqj@WX*
zmV>r@V9STLyv2Ou%5CVrt10?6(}Rn8R~RFHCgn8%)Ac=O=HhUdd!GwuR|r0`<zrjE
zwB;*XKGBY!+48w9pE8=g4ZHKokQaDgka>F;9bTO98slqQzOm(7TMpa84CF--FO0eO
z^4gf!kWcP1y!ii~+mtPT+wzYsKicw>Eyry+!5w3T`Pr6Zw)|>`XKP25{$dM{P+0xV
zmae<Z?{wX+P#cZp|G34w!b|QyY~hagC-;Q8X3s7|eA1Rv%KS?y58}u?ZOgwpkxRCm
z;pWdK4!YQ!qs_a_f3}?G8kuYU-DUWHivQ*Lzm@-$E;4HRX^T_NSAiJUku3?jacy{I
zMZXbHCTUB+jmwc+97)-dW)K}I??}d$EVph)iaTOC0!Q*3DddC~{k9{HBN0d1-xQv!
zG_K>`Thk?u>^5H)cPs1;H`T(96mg`eBm6cn?v0gdgaVX&tEOARk&=#F?#LC6lyaoB
zBbPby;%-xScjz%5BedKd{+}AO+mvzSN=L48q|u|{XWMzZ4O<yCR?8~$YNcde<46TZ
zYC2NOk&2E~a^wa_syR~Gkt&W{>&SI#$=2P5_SCKAUhha%M~?3{hiZokA1UJU%hNvG
zZK^wRqa#sATt||-&1HMS4-TBp#o8|acx6??3B6r?PiP5)Slf|0PI&Zj6Zw10&5qo$
z$2_seyje2rQrD4s4(~z86OPn(<W@)ScH|yM8aUF>ktP(T{f^w`$nB0arjv`iJj&py
z<H$YX86(eOxG_#{X_`7=y8f`oG;?Ip9&>PyA#Uyn>77dNa-@X<US5)UuOs(4yoVwW
zJ957x4>;k`Zfhs}$I;S}R*w9)$M8Uy=S$@9l&08T^B^PAIP}9K^w@m!s3VU#!oxIf
zYwq6gtcJ&TJhyq$kv5LJ=E&=gJmtvKj<j{8og>dU@~k7zIpMJ?_j68xM=^Kp4X+32
zrRN=af!X57tCZYpUUb6q)oy#uOIm%I9gDiJC}t~d8@o5m1fHXwyxo1nkvARb;z(Ea
z+G{${&yI9*!ix<a3-8|>o^Bo9YdSkpuC&WT+HQ_?cchmiy>-4l7@bAt%wE&e2|w&`
zy@zz4DQd#AcOJh~+GqMX!p8#!F>Usl{*DY#Fi<HuH}5lp9U0=tP%3of14lk|WVj<E
z99iw~E{u$HWRxR|9l7{>bhIO59GOeW)6ubxjB{ivbMjbpymBTo<*szuG{F&H!6Zi}
zJ2Hiyyvl8OJlbrZp)m0@N2WV6L;KED%8qPendQiAhDMn+3RxGAhRk`6%y(pgBMX@!
zIu=KH=V(|6c9#tYZM)Ababzjo=*V*IzS5C0+I@v1=gx+DR;giRQhu!?>l`_tHm`SN
zgCn~*$D`4Wj%;#--~7DQk<D7RaDA1szCRl!lco1Qv(1t1Dl=}M*+D<-Gdnr-KEv|V
zFVWqqXOB`U-0R3bM~<9}67P3p<32-hP+Q+}<d7Qhwj=L4@}48z&PLx+Ybo==KJ&hc
z{ZZC^<8+i}f8_8cl+cqj;}b_db>v4!esXx1P(D|CzIEgaN4|9AE6(Cr^w>UA_rK`H
zedgY)-LD<_MwxH_8fDY-zef){@*NG+j^A^AIkM`X|IM*>3ztJ2_$T_aBS#(i#}OLv
zizCMz`AhMyT;`{v#~nH0$ZwAPu9j~*9WA`yP?F^j6+7j~pN^bV%vSO_FUF!k=5L)H
zQ{^;QmLq2zIjfS46a~(yuLue{UZ5~{>4+4H2p{jf<VeC1&k1q9BQXVWr9Jc~LBmHt
zwVF|ybR<xaQp#sU)7-$@n@;?(Naax8Qq54xqaRy=qcozFGJM9ha72nkq+~=&DYK~3
z;t?s9lPP#mwuDxROGo4~#g!v+c|@*=@V=^4QcfAA<&|Ek^eUxgBXYF@j#w@tJ#$aq
zUK5cDIsViO;dj4N;Qw2zMC96B>vfTEcGpLwYL0V5L^xS8Z;VJZA}>UQ4@$AP5or;T
zyCYH~A~hpYD<ZWca(hG?N2E?fZi-0#h};^Hn<HW(QZFKWnv2hceo)T6MK#ooNag*8
zB~(?|;sad;kFz$2@P2nV#4Y<xBL%l9y;mj4Z=%&^O7DnB(}+C1KYTQ+iwZPX{+&wi
zQaWP4xhEp`M&yZzJgJ=fBJyBF9*W5Q5qTgYEtT0*pZIDOk=7B}q>t}%ta<y*!`k|2
zL>^P{h|&!@)=_=f_3?<jtJO9Uc}iQ`(j*1XMC93s^jFQ#DTg}wL?5jsU}+bT=aqj%
zHN03L6OorA@`~bDm9{V7YhU(yO{-M+W<)wfWJ^T0Mx<jz+Fz<OBqBo@FUBq+U6ey+
zuZVP2+)ZhBr9G7PRN8TBEsFJyNS}!GRSv5I74)P1InDqDM|#&9l;aGJ2&)tx7Lnl*
zY4o?XyGN}N5gDlh(;_k|Cpjr1qjPwSg0V`+DIKqLLPRD;<gfjvLGN1e{bsT<seDRA
zrsgn5oUV9AL}n_O6_Mq+*4Yu6lf!c(GEedRi10PQ1xg7PMr4uV#oQAX)Lx==snTUi
z$&4H@9Ct-TR_3&=ipXlkYm~0#Dpr|w5m~RC4NUR_W~0(gN;fMdbJ0KUwusO(dn2+h
zBHI=3P`Xp;E~OOM9g#hXQ~g6v?vKa;F8RE$@4<+?6_I#E5)nD1GN0sny{+IKrSC@M
zy&V621s^E=Fd`o*_&C=}tEl!<t$wET^N4&AkuT|-h<vS_KO*vtg71`4{@aKgR$QRx
zNJPGm$Pdano|E}8B0nkqS?N)wzvNnvDfm_CZxQ)j!Ix`7V@~8`njJ8IM&x8fPDO;t
zz;cO+k;8vS<R8VSmHw;rOs@58M9xLzKdqiudLbeoJaZG3RQt5nMXrUlb%^t|DVFQy
zoOV4Oy^wmF#`s!IDh(o%Qjm^FMnRVQe4g-mElOH>0`0{^e^yzTKWuXHB%(5TO35Lg
zt%X&rh|;2YQY=r3D=v{Im*<7|_e<u<x=S~eQd(LmtCuNwzQxT~<O!cgVkwg+S1P_L
z$0?g9SLblKJSm^U*W^hB#TAuuvTYBT$~tHjrL^i=1=lIPUTIaOHz=*9w0fT0s35A8
zz4{(7HS?rao(y|fhCeK|^Q2Cm3@#}{O3F=na&w-vEFrB*gj<uzlgIMp@jSUDPwM7{
zoO(*{&y)HJZdFQt0|gE9q*0D@Tb|sW!;SN#$^S8R7SK{vZySe4m^ssDdImvh;lkWI
za|BU93F#042>}HGB?OTWr39o)y1TnWy1TnW=}zhT-t%1dxBhFL^{n51_PgWknz>V#
zT!dOw`NasuE%;nHB`heZxD=tZ1!a^|)`F8M$<mx$<)xqWE2`WtEU2XTOG0I86$`2=
zU#6hC1vRAqHWaX-rUhSHP}YiaR{WYTUdw{h7M!u5wgq)8_{M^7EtqP-Gz;olP|t#q
z7BlQS3+h|Y(}G?WG_atd1??<oZ^8G{iUn;Y#)3wSY(teIjR{StO)dD5(2Uxg`V&<m
zTM&MxwxqVAwzi<#T0;Wl`o)4~BTZQJsj0tNFnz6YeOJonwMGXEI?8NX(1oQsS@1jI
z{95DrS|eBe_>Di}U1jPm2p>%8Zo%0_v2F|qtuurl&5j%Ej2;$<R$FKEwxEv%11%WD
zn7$SaAV{PA2>mT+wa)C-pK?>hO}IHJCOX)HVHOOx;GH7zAyUISV<@$6;rIv^eD&Jw
zxm<JB8KW#1ZNV4|##%6$x#KJtZ@~m|>osPDa{XK|K9SBO>d5~8`BP+rWHAG#TQI|d
z<IJ6D!7K|lTd>7~*|H5SSYyFj3+7rdj{&PKm`@l{#w@#lEU?gmMT!>_mQa^cmszk}
z<*twoMP8|#RTk{vXh=Ps_r%xH-)O-m3odO<S#QAx6?u(ep_Q?%bIsPbTCmN6{T3Xs
zV7pYpust%iTjDz{*v(|NH1S;)i1rM}ryq;W9unJY!9EML48~=*SxLI}#z96NvEZl$
zhg4gKEy%R~zm*dnW)9jh3oZ;c;RIt&QctP)1(#!IEjTB8)`}uloVTFBdgE^k{*h7^
z^zR*$q?8rCXu)+0ZZP1I1(#I~S1h<{!8HpiuQ%G=iFL{*zv>pdX~8YoCL4?tD{fnG
z$AUCgq_yI%1@|oY*Mi3^e&2$Js-6cH<m_Pfvr5gxBMU@7Nt67<f~OX|w&0Bg&lvf_
zf|nLNSEcqZjlGg%d~)o^^@ixo`7u$c<gE<y%9IK0e4q7(yx04V6}lB(E7Dn!-U_!B
zvG!)9#R`WNPAjZdXgnEgR6BJUYuLNqxU}AI(Mh|(9FPhv6Q2JG@LA!vBCphGMZk)n
z74KS6eRC{iMc9fAR(v`uw&zN0VwYINil_vyGLw-FMuUvWk~J)2vIJ+eA`?pqzh}k!
z<jl&+Lda@GHY>7|b6Al}<>n-OK$Y5Z6OydRW5pL4lcmqnkW`y&Me+v2n>M-O21B6Y
z1|x38unk7SYEG6x{g9f^iu_i5WJLih3e)-6ichR4Xhk6=``t|BESj=)Vv5us-58Ul
zvT9!Pr_8#zE+(}V<@l7O7NZuYeoiexm9jFJrO2hNC}YLE4TjV#T@t^%6%}M&G-w(s
z%8giY$%@NXRI=hrD>_=y$%@?@jLKFtV+~cTsA|Pm<Z3bk%$0g-SW(l8x>nS);%m9z
z)oJQj@eRXjQEOAb^yQV{yOoo_Wm0&dGw-<#M&NDIcUIK5qJb3+t>`=_Z&NG2x8esY
z8e7rCinBM88d=e<YVz$Iu~|2gq+rf*$+h0(SwfcNk5&jT>Tlj`b1QzbqJ<Sdvz1m>
zw6-E+!8|RQl(05d{9;90NwRV&B3HazUdj4RT9Fa9VwFF(;iEj#L<gCUkCTU#HgmUY
zd46XlbF7#v{Umo$1Jc!sKdk6xMRzNDSTWp+5mxlHqL&qetQgGT-d6OpqQ4b=tdJI^
z-M&`5;9bZ)4zS`+D+XGTsFIwnN^+i%c{{bzn_)v_Tir|=%1UGeJ}sI@%wbmCXW5Zf
zjIv^e6*H|EZN(TXrdTo6im_IVlj*QxvK8a4m|(?3D<*L~rTDzVX3ZVinkuc!S7~;#
zwrN&Ox8m@PB*`jan0=5e(OFi^W(Nw?Op-px7i!!$&AFIo#e6IFS+U=W1y)G#GAou_
zv5>q-R@9^1i^)r<OR4g6i}EYGE3Ej-igi}3w_>FXyA^BLgj6eYv|6!@%v!~A?;EVx
zXvH2no2Xl@*hbh)-9nX~Y`0<uIrUx&hLd;7fte#FS-WKQGE0)u++MPP+}8ms4q9<W
z28yOVZC<$!$(UGi#EPR_HYb>MOqDt=H$^_FoKseuRy@g_e2#p9dY&qEN^^gc|Dj%_
ziYXIu#fqy|q|wahNQ=(qz9w^R#RJ)`<C3pi@nnN>gL;#Ci+Y=ShkBQKPgdip+!FlI
zibt|69Z6Evzij2D6~a>aV~M2mRJHz$@SOUBD*x;4l@+haZ>)GrNG&c&sYF!%r<Z_y
z2Iw7va5_SI4Hkm*L`<6oyM{U{#-ZT@4Y@QpHMlgm>1WiCNrOj&uEDFpry+xecbVna
zP{J9HY6xhEWKIOB0wF>;HA(HWJ}!}u9Pt&S&H0r}lJ9AFUqd!lm03d;4OvxB`tFMr
z=x0XG>1%3s4N^l64LJ#twXl1vdDmEO`PXF{s<Bia4S6*b*YLT9n1*BxA8YtTLyCqt
z0}N_{HAtQFdc?YIH!J^;em)KP3F3UDp#WJ9c1af0P)I`&-gT)=X6L2p!Wur+Al;K2
z`AmZhf<RFX#aO?#(a5^dkgyUON@^&hp)4ybrJ*$8(Gatq7L!v%%V{XDp#uHsf0<p1
zls0oKYWPCKZyn>6G>BhW!<QPyJc)1q&=9i<x$s7L`xv5MQCrP4i&xiBgSFM9X6zXM
zT0<=j!%D|%Q%|RhOFiE(_gf8hHPj<F*3g9Tord~^22`oDp@#3tKTsP{{Ra|~)l|ce
z8vfC6QA0Bg%{462uvo)S8d_)=py5vqKWk{Ip^JvD8d_=SQ9mxvPTOl}t)Y#EUo^Cp
z3gu=sWZ!1q!qvqo0__;tyg_`THF;k9*zwYd4jMXY=%nFy4V~Es36t86-A}P@i`Cp{
z&etCrx@q!if4r}T?oxw>UK%9#A8WF!N4(RUl%BFe+Q%e7%-%9z(zn?uHHyV|T#NN%
zLCNYb9ouO9J190#!yp-I4P!M7)-XiFa1A3^!%!JaSzS|OQrk-Dz}pnzks3y67_DL6
zy_9TkQ{*<sy-8WQEv<BH#<kcu4dXS;&@fZO1ZhjdRQ7F>j8*&CWDQefJy(tk7n+_T
zxBMVW;>xs?X|e#+&3dNB+T4!M(lA@Yd<_d^5o(w#&9Nu@+Q+gzO-Na}1!+<0S;&Hk
z0dbEvS?>2$`@|9rOEv7)ut&o(4a+sG)v!*(3P!Hd%xA(<_Ad=9=?J$>AMc+&zFNZ?
z4KfRIM{=j@HEfWBqDOo?2W_K<t?a`l4VyK{49W;>(I8_eEKUFUD87vq%AX87H0&hr
zVp*x=i}{H`Gh=%-?9*^U!$}SMH5|}zgmoU2>9`#~q(MeQZbZ6tm@G|*b5w4>ee9Sl
zq?NJb!ZTyCX2g-PI;G(}YdFp3&S*F*CtkBe+qWsw;yJRw1;+d>OY2Qa?cZZ^cb7C=
zmgCU|hYeTcb~L=!@J7Qm4cA%K6Ad>s+|+Q7$y>6{AH|1kH124)O_t<e7ITB#<tV-U
zD|TPQ0}T%~Jks!(rDQr}@%+oyJHIlgOs==nQl4sfrs25;S=cY76+U}^p&<|dy7{7g
z>=jp_<i6FA#s-VcT!->EMOvHrxlgG?SZ3-S8|3cN*^u65E^-+V$r6>mS#4&AHJdp>
zHo3=XDb=Q>IBjs*@V*V1Z8-B+%xy#1hKLOw8+04IY$d=tePn6WZ^Q0434ubz;z1ii
zHXO_s&(+!7Ur`$}*pSI)-i5ULt__b0C1gowWDjMIj_--R$9klb(!DG;WVIn?gDhYf
z$!s>{wBZ9AvfCg@xpLSbr37->u((D%w+%@)$nKD)^Vo1<wRv}WZ7?z?c1%kVQ~Ho>
zLy9zEGxwvxwq#2tq={m2S#=-UkWX&8M_e|qr*I;_4coFO1U|Om6Bz*;&e~8=f^Ar0
z!%}v;unlDh($=Rod`2!pElMqBLvg|a9!H<sP=ZN`FG(mxEiGN*<4ai^%F!urLnRx&
zBv-JZB0)-hVS_AJ0l6yM@VgD2nN@{a)rPNZsK&dfZbLnrdDhjCmw;rN+Q+`8Uz?G&
zs4}f}XnsSLd;ivkx?~wxNq%QTeH$9s(9nifHng_kdmDbRp#^J}${X3xl-$^cCIp!~
zITIx7M;n^ak$Rfj@Do|qhD?Oy%Js9XLz=>JJ8f+Eg~|4EkN@x6APXZk{x=)i(U)Lx
zI@r+BhEBXBDNTr`o^@Spm~O)i-eXrA{vb%x-E8P?Lk}Bz+R#fDk_|(-40=-sQ2W@>
z*M@%N)WfYmSt^$r{<L8rlhTJlguzs~$6+=Mw_$<}6X}ewVKhNXjpWW6#etRN7#qgg
zFi!PqJa?b?a_EW5HOYplEIXMhO-~_6qtjHKvZH6RhWXT4)Y;TI)Vb7o)YM~q0eK-+
zs#-)?Oic}2Ci~ZhJvJ<-xx$9OY*?w{H`}nvhSfH#v0*LEP1JQZtS3l6<pq-s@~Y!{
zLwF-+M2`K%GtK3?g)v*H+o;>AJE%LU61IyVHS8rESN=X5_LC1#4^j_N4^yS=5gU$@
zk5PAV)14rnq@JQm<Y_{KZLxDUoR{6<KqUt**zmW^uN{Nz_{WBeHsrM<X2&HPF5B?R
zhSzd7+Hlo|2R1yk;hGKCZMem%ZcuNk`sHAeb4(h#O-JVR4&km1_Xx60?i1v}`jIRT
z8(uK^nEHe&D_?4ON`5B0V`WUP=dug3B;?4Fte4D^(@*$~4QcIw9dBu-v70BqJOPkL
zv3Kl9XNQ|kdOIw3Xk@D$^6H!%h7!4@W<nlx2Ct0S?6BL-r(O=KfRo^|L!PwA^DB=X
zx*c9Se0IEVM`k<xb_DEr*N%*g4BF*Wg*a6_5mGgT?dBOPRY_-}cJqNXgADRab6-o-
zne2Fv{gJ0Al9a~_(JXdkwIj)HKF7!=_1KZyZXWpZh@Zob5A2Yx3g@&#R7P8px$GGB
z);#L}nQT7i$-}Zz{NzR>*^U%Dn%L3Qj<_8OJ3hCggdOsQ2WcxGRp3KA9&*j(r}L2=
z1?>3PE*}Sqe`?2PcJqY!gj$eV$d1AUxmn37qUtF|C~C*8H|E$DXHrH_xTGDW?5IJf
zv>jy#)$J&2M>#vbWKzP)+fj)uM^FVjDw1VnzL5S;jS0x}$<#;i%63#?ZdFzGD?6$w
zmPgM~cg*Eclg`(6)Uu<t9d+zz$T5_xZ#ZuC81OB%uHAe-AkUq?W0s6+eL@4?ktDxo
z*&i4zk1UPs=Hp9a>dDQCAMI#n$1irYl__IP3+hi)kImc{Ka*u8w6voYmq%+m^2*_y
zF5bp&J_`4UCVpj1M_Dj-{6=nPM|-Xxsi6ZMS+~M+{cgt}c676&GyN_csIF8QG1n#|
zX_L|2E?@IBXS|2qe5%uv+KVdV+1rjjWXY0l^s^&hZ}Ta1e>+46$e0jhSfs+ib_}uO
ziXB(&7|J@A+p$7M$&TT6jId)Q&4qT1vSYLz^O=;@IL3}~c8q6otlfNqD*c(j@th&I
zIWIoZj!AY*wwuptrpo!#J|-|l)<*AGm6_(>7t^HC#VOO7B~Kb>+A&LZ;-T1Vsja=a
zr-bL&F;|k@fU?2Gk(w8<Q7N1HD7lEq#da*Qn}3BZrOIDA%k1XgJF*%7vSXzkyX@F)
z$0|Ek+p&X1)=<|{rSmdb>+D!>#|Aq#+Obupex-R+o9x)a1+!U2%4_&JmY7erx5=(~
zYyOqAogjZY?PQFsA}P4Xj=grAr?bzF{dSzN<0O*@>^MR=$hnYtIYc;2HP=kO_)$BK
zF-G_}>o=iv;uKAR(;Rl0#4~oBRV(D29nX82Gkd{~zZqHWX8a#JF51m!%cV9Mm+ZLA
z5ti}nH9a98PPk^rbvtr8@PPw2?6_&iYdhY^EwlJz>TT*Bo<%b3ckQ@m$9<X)sQ*fx
zW#bR+kWKwaHp29j4C&%B9Wo$K?09O&Glt16%qVL9#rj;<;nvs-J6;lAQN@vfw|1m)
z;5`T4cOb39{3@63fY-qVpDzB61L+({?=WY_<uI4D#R03Bhhmxoc7_St=*ZzLVGakJ
z4)d>3sl4t%b1%3Z@UX1xmsZ8%J_r0P7;zxrFrQb;AI?FCyq=jXHyd)8w<Av20XfG6
zq7KMeoq;NKzUx3nvY43&GCSgDb|4F@JsvZ+c2=@1vuqAzcbJDm4yu6kEtdni9Vp^J
zQ3sM7$m75#jL%C=rpBlZ>&In&Qyk_li#w2Tn5T{5FweUD<PWL&sA9_X5pxST@G(K0
z>6cRqvbI7F6n2=8iSjJsQ#zkfWwprk6(g6R7N^RMd`?Jxz%5BG<v?i%>Tfd2P|G?{
z&SCzUR^EXMbcE&aVwvBHOv<Q!=|E+f7bjd!RB@oH0}C8j=)hMFRCA!E1FamW?m!I(
znmX{K12x%DJ?hsE)N-J<19cqc86sVhnG*emx!+PHS(hMt=R0YX+`xf`EYfY0A^n$!
zp6?y_L0TymZ$y=mY3x7~j?$<f5|V7jf-R`csXtL=Tgl>)R(_V{!KX2;9cbggcn2oP
z;&h;`1H&8`F2RiN=s+i#G6zEE6S6$o$)epBYwth@f}AJvyybUB_I99;1Dze{;y_mi
z{&1j|!#qDFz8iykP`gv5Y4Lk<iORN;q^u3;RbK}NIm}0geh&1PA+2n#zyWe!4h&=~
z^6E$Gj*!Q}!HgV2l_En4vec!>2nLUHU?gFb!+hYDYqSGn$TI$8Wu-+EsS_c8)=hL^
zk^^%XKbbnyfmserahQk0R64Q%ra3TOwphCO461-EW7!MR=xhh%nXNoclJS@1T-lN=
zHQxbwq>w*^#guE21Gnfec3_DEOC4B#BzDk&Lk=txc3_1Ae>t$jft?PlbYPVO8ywi^
zz-lh|bu23@e~klc>GU{czM{3B{gLNFa#ONMHaW1>fqN(8!kc+GY@zO}VD9m44s3Ur
zFEz*|kIuVTb`NWo+}#A3T-i-~9gr7H_HhvQJ8*y?2aAl!VF!*#C9*OdIO@PL2hKQf
z)`8;=oN&nN;mM~RILWHyrH0*`Vy9I7GUjrc$yCZqwddrSzXN~E;BPX{JJ4@PLf{{V
z`8u|&kjpG`(P6$(cu8ibulXKdeV6$H+BFBR%gOJ+O^5k<zPtq>J(m~r<vl5RXF=Yf
z+xIrlZ3pf+aF><5<1~-rd*u5LJaFKl1CJbd&GjHt_OAmk<Ypas?7$O-J*7V9arcbl
zAP<q!v>cdH)i3gL$Mlp}994lgtmmx*X`J%u^#A@GmT&XQOLkI3;$<+?u@C8)YjK)K
zpVbM?37gY=kw=maf}JWw<Vt;t;&vjt6FHplIH5b?b;9RF$ceBMe%2|G0fIcM2`Wbp
z@Q4#pC*D&|20}X<-c?RUCo+*`Mx>JWoyhDopU((qp)Y$gtJ6FyvQg!!zGUTeqJR@0
zJMjTya#3?rB{zwX$BDdz7&V!iLXA@;GC?q?A3BkbkYD9~<izSt<}1l^ed0tXr~Et%
z3Np8l6NR1l)QQiW_}+;hoG9W%Q7683qLvfIoG9*;Urj+pCq8$|I|3-}L>U$=NiF3>
zPq(>X<Xz*``pY^|&WZ9){87Xlhop|?Zk@^Z1-@{ik`q;(_{xbdS-i3w{!Yj{(Gs(D
zqN(5hX4X^9iRw<&aH6IY!<v}Byge<NYk_$S@`kl&ZPrlNiF!`dapD^$zjZ<`c}G&-
z(3F_(oT%?aLuNIg$~%>f_ztY(3Yh9dV<*}%w}}%?ooGY;(TQeGv~c2QCYw9Wcba~3
zn(uQ-DfyvRQMp<=(aMR|Qt+Pn4%A$>TPJSz`4=bJvh1%;{KiY(>JndmR8X`%vpP^a
zQYQ^IN33&d5!r)IbRl=8{z2_V?M_X7xkHNdWU`kNy`AVo?(4)wCoVbB&x!s{43ItI
z#7-x6IWf?QK~Ai2;x8u#JIxbygcBp37$UuWn=({xWWM=&_%J7iJI&`;Ehd_;v5#_M
zv=g(OnC-+EC&tPkJ2AzHaZWs3l-M;rWs(GJijQ|<0%0OmoRrxy(XDM_Q=Pc{I5y3R
z6Pt`_&tt*6DdJCeVg@5;s`z`G4DshUG0%zlPRy0A?oXJJw^9}`W(l=XBYA%xi<}Tx
zOcii$Hp?z`Vi{wWt2%RUHde|UEsw2rVx1GK$dX*`#2WG_Z(Ne=o!H>Sb}>JXZ**c4
zVJmerb&IV3F|n$fjR|=SiIHoYjOwYBzC&U=WTowhiPHs%-A?S0lgEknOJjRwB5cVg
zsQaAQ@5BKo4mxpMoY^UJ&&3YOlx;SSInjKxaoC9?j66z}f+KSqqVeT%(F}tUC+VMZ
z;<Sw0W~1WWl=#t@WSw>5oD=6|X6GcN+P|H+Ae(wt>{*-Grp-q7zhnQH8`+TLWhbu4
zIq8Dkg@Rk-SDo_nFSsSA!PfXSC$1B2P|t2Q#Jugq9Vb4S7~9`4epl`&DgMZbf1S8T
zzVE~Xx!LQnWt(G?^^oSK^zp||JaOWU6K|b(>clfAUdl>y;yJhT3n$8Ujy>OO$kwj+
zDk1uszCfCB@sU$w^`FPnxRBNbtIOQ}-ld6l&ba)V!#gg7w;1`i80qMzr&_2I_O@$G
zRCD38YbgQ_m-(@c4_(OTg3|?;3vL%YE+o;{UGTb)$%Xe^@VVf3A>u;Rg@6k|7edmI
zOFj`~eh5UaYFiAvO4^^ulkt&!vog<{ZD}&N@U9CPU3eSIQ|xh4qo^5K;89Yh+ez=c
zklBSCF649}iwjv@$mT+J7j8c_KUtBbK%SN_lQ#MCY<Q3)b?&^E^nnW<;%RcZklQ8i
z?BpqPKWS67yp>z#nfW3qC6FhNbi;+13&}1d*z*)>oSOboQo~4|4mXqJ*g3K_jp4!*
zEsuPXB)<zE$>@zsE-m*czx?JxAr}g}@G+C(d?K??ZnDMvowQG7&|E0#LhCJtTtx^)
zUFghYG36I`;d62c<&4;3lu|6;FfHRUzf~$%Sr^JFF7Gm*SBN=rZ|n;fK5?U<8<kx6
z(uK+{RFP?QBb^&nUHHm{i7rfXp_&WTU1;mVuP)SZp{5H>Txcq}dt;r?ruo{1S}xRf
znV$!4=)(6d)FFRE{gzsn!S$%$QR`D1$hd7Wq@EV16F)Gr5p~Kr^E2U%$p^NWA0+<K
zg=S2);7E$ooXMa5C;n%0OKK}>Yib+mQjYj9F07mqd%VRE?r}EFZ!Yw3p{EP&Txid*
z4levo=t%8E^=&m<?@aDO?MnT_g*NecH>yB)LTszi%Z1)93~^zo3w;>bpW2t&k6M;>
z4j}(Y9Y`JI!kkgD!BqJ$p71dG(t(jK3@4AE%3X*#iaeS+hC0@T23w7B)S_2n;|UX7
z7?D2t_O#e!7pBM{xUkBFsf?fH!fe7c>U0-o5N1-lu%FV<92XYTnd`zl7v_@}QWsFA
zatT{RmI)PJLS9N;MqN%_!Or|8t8uHbYO5g~TkXOc7q+^v&4slttYg?F7uFM`s_Es8
z4djhfxvx}nvkP13Y~VKtGSo}n?!s;t`p-!#0XtmS$=qGkA@R7F^4ZrtF6^bV&xQRi
z9B|>F3s+sZ=E5Nt4s%(abK!^!M_o9@q^!?lE}S4A*=ih@qbVL2Q)b~L%{yDoHGJBI
zGfbY9BW|0qWpaw>c^59w{F{2og?|VVe^E}qZDv8aF4Mdstt5<&S7O&)xFM&93s33a
zbm5K*cU`!p%HAfF*=F1$Japj^;Xd^NHMS`hnUeA^`LPSK>f{ly30r*T!gKm*+~zKR
z;ldjxg<rbxiu{_ob!v*3Z&hwj7EkL2+?abU<#=1OiS%w*+{oa@yKY$B(A<z`k22IY
zH|%ain3Tbn36jg<hSLp~8*aCGVuYz4s!sK~F=?COqx#(lxDj+iCS6P!@Q~ZwBl7JA
zX+3q`qbyaSYO>Up(Tz-QWOXB(8`6RI*mM>*-ghIj+x+yV#K<MEZkxGEv%8VQjhGwB
ztR$x!xd|Uob5T>zq9k%2YF?`BP^lqBKK$>-M|2X@52^CQMv|KvnU9>GDw8XI0e0_W
zI;lIlkQ;^FIJM1a=EkRPeC9?iCW}zTFC~MZxR@Ko$)8h8D8D4(S3O>uP)7M>-6%&c
zPpzQ*ii9tymE8DJ`IX(MLas{vids$OR(GR@;+k%JO@6%1kWSVn*HO9OxbZEyF14QW
zzjLELxq)&T627PYKyBnkW0l*4(3JWkRX&&4obVG>nr`97&x%_TT2Wh5+faXTqb)(=
ze<l1zZAWeIMh8MiYA32h{!VD}HcwYK{%~WE2ZKH6=0<m!DGxsLpa<u1Ff~uvL{B$*
zk$Y2Ry8F1%m)wuqUsh>(V}Kify789lP;(~@WY!>a`<UMk8sf%KH-@Pi<hQqmyD@^v
zk#4MZV~rc5m>liK7{XXL#uLU-rIPzAQYMfm%5HLFGI;@YiW>`FCrx!@nj6!}GpJ(9
zx20w(p5?}D@*L&Nbz>fRzH+4aLN^}0PFlp87gLu|mr|Eems6!zD+I_Zm9xr?)URl*
zbz>dP`_%Pr9CG8Z8yno%=*A|R2dJB=TinR9D6y3)u#K>ty2Fi~%HQS2Zt@=LUg|#T
zeyV%BA;qO{2i@|+dgdu{#EqkFTyf*78^_p|n3vr+PCntrNm&)-)6{KE@<_lL6?xW;
zbL8{#Z0csx1**W`gn!()NVuf@rrFFVJbAVo*W9?yg7>I5+_+1)NxenAO_lgN1o>He
z`F~rIl<R>n>46&$Wja*ME5g6j$J8foJayw4`MDb}2r>my{3TUBF`HW3YbM`N-@1{;
zW5%SVrbbHg9S_oZklq7}2UZVU9=JWwJovc0Ve`Q5!H>7o%1a8e;2j<~J?6^`!f(qN
zvhuw}Q#>B%9)vsyd*GF=<VXs55cI(3f!||3QytzSsqu=0Jb4zCcquM_+DANydQi}V
zLLPGmW$@r#kGZELOnxUJBYT+1gZDgm--FB^#OY-5$hXvy(}NE@=yNA+Hjn%cDsr%^
zQdVk~s-$D`*GeuAa(j@+gS;M8FK@^zZ_@cB4=x>zwJLAKJV^E+#e)sE(@KldE9sJS
zRXQ)NCp<7b_|SuV9(=-f^Ly}-2L+@dChy<QU3t6t&$i^J$mM6c<pyiEOwR5%7l1s9
zNgoPx9HeI9A|4cFsg52L^Pso~jhK|+&k5B%D50E^gi;=qCX}I;rIw>gsq!9FP+XDl
z1+|g~UlJ-)t57ArD&Z>+su4EaF#9Q24G(J4`I=gbTANyj`VIA4s>IjzpdR@<<<$3}
z0lA@azW3k<@?m~qQ%W^vvWW*x2|udHW*#&r|3qy;{aNL<^q`gE)`T|HUp#0__?7w_
zRa$B1L3_m=2=ak>@jH=!_n@-}UC3QM=&2(AkVgS>cjfdT{N5qfOF6v>eLUz(=tu2O
z9YB><{`6p=V)>B&5D$iWu-1ch9t@*D&x84d;U0|eV5A45n4F+WjV6roU@T!Abv*U_
zLvykwk_9GtFqu3>Ia58Drg%DGh6ghVv#7IG?i|8gS@|Q(=S~ZlTuxm`T|||v#U3nC
zyp*tv8s3?9MXFC-NnJ%<o$AXMfjxL$#C!t3UiOy<;|gMYL2UG3lLs}DP%{aeJ=o&G
zq+FPs3tK(d=0Ou3O?7PdV21};bY#`B(}P`dDCw~1*zLg{4{msH(}TSp?DOEf2Nyip
zFW1u8K@ScQ4oIEuWO3v=?7=AyPJ3{KSw}rM=D~5Y<ev24gyPg9Qdayk)U*GSdrtA+
z9{j`H%N|@Lq!zhE{{PypFnQI3YlQ16S6aE{!EG5CI(Iy{OL*qNJrC}yFzLes5B~Mw
zu?G)5ctl?sN^R@O|AakNSyDt=mw*=@y!7A|efgD7@n4hQ$N}p?8aiU8C8TyZRo|hL
zPXBLAtU5Fu0Ubg5HXRNfPO_ab*MEt*bhveRXr^{RG_{ku4ljKlgZ*U5k`V~0_;(3m
zYJ?iq&0EO8BB?WykxnM&zDIpuM`nTqNYAtB$gZP+j*oTZ(2-L|Oh>Yg4;YhMN0N?Q
z<kXJkA?N)cC)Jmpr_fAL<5c<1wfF}4Lml}D;^f!y5jnN&Cprr1D66BKjzaW5(@{i6
zVI7~c|57A%c8W5$n2zHAQ~YxsrPQ#O&{2|EsYOIfGg(H}Q(i{}9o2Qz&{0vx7doo^
zPgRvv*)Iu|)ks!l@+)dJR+T#GHR;sX(Ll%7I%?^tO{XqZTCYR+M#r}Vd2p0Ry?QG5
zJAw>CL*+Em@jdwm<)jW#V<x51A9eGO%KBb3@S>TH<~n}T(LzVmiws`;tfQrlRXSGd
zXr-gIj^R2+=xC$k7ad)6bk)&T$FDlt>*%24Hy!PC%-U{j+irZn-RQL47{1+*<hkue
zN4b~D$(?mP7GIX`4&!$n*>)HOcNmp-7)^G_FD9Xzj($4&>*%hd^A4kzj@~+YNTWN9
zo;nunFt+V5&h9WC?J(p!kA0+)orcueR~8jvfQ~<P4AwD3$3U6WokokDX7C^#H5ni(
zE%x7OOxtM;)iI1+TEnc7Iz~y)b<EZ=TE`e2lXXndF;>So9piOO(6Mi)adD?1`fR7+
z+GS+jW!5%P$0XJxU6RgBmBqiyn5JX84!M1~_eu<Fw9A;GW2TPZcNuaG-DS+tF;~YD
z9ZPl0(=lJiA{~q6Hl^$?<KQl%@s#9+j9<+nGD=r>8E@I{G9Al#gDZ4MWO%ocf4A|)
zZsRW<KkPPE%3SO={@iWM*ln!Qu~x@r9anU$)3ILSbsW;MLB~cNJLE_g-fe7>-L%Kp
zs^i#hW3!GeI&SYa-q~Yh+GCX4V{DU00p8<xd(3;>C5OL`J#-{qVt(6W4Bcbwl_8P=
z++*yQC9UJ?9%J(!<LDma)gD9mu#O`-&gwX)<ES(wdqKxZ9lpIruDwRFy~c6bM0<_a
zd(9S4={T)p&0b^RUSs-R<BarquW@a!@oKN(+h?5DaZ$%59l7@z7j*os;~#dW$UdXi
zKC_1{_ZhwR858yy%l8>qbzIZ&ju+{?xUS=djt4p(>bR-nmX3S8WvN_B?cHbG)^SJ2
zUDhTeAf|NbK6`R;pYd#;@kqzNI$r8{B`aCS6FGVI8_(r5-fukB@r(t9v+OtTLW;kT
zGhx5cXulyU$=5p4c+HLQM#o!OAv7f^Q;^mRcrkjvv6PoUdM_+q_`L9YVPz?|S3W`s
z%?q0sb}t-WIK6PO)UN%;ITpOX->@7ouZ#x_<A9-iQTBk@882&);g#kBUIe`ec`^Hd
zQTKq+_JA?;fH{w0IuS2qLN^>Rr}bSgGI|m7BH4>fUcBc;W-qdMarl67>wxjT^yHwC
z^`KGYpz*bU7dgH7fVtVc$nHg}gGLT&--Cwm)PqJYFXRWQ^LUZli?s)h!v~G)2aUX5
zq&;NFB~^(^Sc(^MFN%3l+>7ChV+k)l_2M%x3@<+PBA=X2hm8Ex4r^0{KOz^PeoPhf
z6GA~R3Mr?s^sRebvgAswqzJQ$dhuXtOse|aixOVc@S>&{CA}!+MHMfqdQsYoGG2V?
zMP)A}tlRxqSr(B}<-90QuArQXUVNdrQfk)FxD=5asbWtS_=*))^P;*Jl1%MSY6m3X
zYcFbf@r@VX%9Qb{!$>JE!4f9%b-k$P#dq{uE%>kI{|{*B#rIx3&4_0i@q-tQyl8XP
zIFk{Ly=daa_7HZ2(A0|`y}0GaZ9kfM(cFv0J}mL!Cofufk;aF#KK$%OOD|S=v05h4
zi`HI@@M5GF`41Uwyy)k}Plt?OylCsiuU_+S*iK&jPWX-5j@n*Ej35CWy*Ss<d=}c7
zP7i7qmD|;eKgivv-IZVUkkOOei`rZHeZ1(ac+G=Yf0?y;DFf*I>BT_8AnI^01`~!*
zhf;@8r89pXGM{+Ya;F_7Tgi(#Ud;7kj2B~NrQJ<AddQe}$Qb9vRK^RB_d;|6bs}|=
z7n2E7sFEwCq|RwxOjoVU@M0!;7In7r?@RqM7sZWbbOh#mv4D>7Lc$`M9l{doQk6Tu
zhWYBsau!@6s_I-xxI8SeMs}GO=e@Y##X2w6d$GfdonGjNjp}b=11}{uc(GB&>QZ78
zRbVq=ix*o7+o;=BZt`Knb~&X;r}!=}c6+hMi@jbPXLI|gN2vR$2dD?B($7PL!(LQ6
zm?BBJj(Ty7=Ihh{IVZe0>BT88PSZc5%9cHBj^|lfKXke_FjvvvUi>5Tb=Y{|#YI`$
zhYbnq|0Z_Hi_5Y$4jWfwg%gCY60T9NdvSwsQ{~FL%o1~($vf1$)O%jsS22IyjX(6_
zkr)564=<>XRS%yKo_g_&@SNJ8{d`G&MSV?`&cE^EEje`!%Ww3*<HNT;)b$~q59xg{
zeE84@iw{;GB0fZY(0mA<jLD|ceX#k=9VeIF2Zv%O!R3QnIUb)mxe_L&yt2Cw89u6?
z8juPJA!?W^G20Fs8GLxxhkp(mNz{x!WFv@^$%pq8zwbk4au#Y<<;yHcWOgQV_>hzE
zfy&M0LvF>Nyqn0QI4>baO{S*!5GN$4Qs;{UDfxWJ??VM2D*Et|4+VV4a>QI7AN%l$
z4<*&T7bFz%p^$P4`|v6GGwQjX<|-;mE~a9N`|vrrgmPL8kCh^qrj}8DSs%(NE-wcr
z`yds5;X`%$l~nGRgv!(^)T-34e5gi{Qj3<yGtW<{;gf&I0D-TmwWyM;O{hct#)l$D
z3^D8Z@SP7GeCX(dbh5q=Kl&i&Ndp-WzV6!4hwoMWKlspy+?d*g+EnGf8J4Jd#AxP2
zb6Ep4TTp+IM*%`hYAdSrwl$%RJY+O7S65pmf2ICLZAWcSm4N<ZW1W2X-G>oAjP#++
z5u>vYf66kxoYKXIu0H&sB6}0MQM>!lgV2-Oiz>Bs{VS!9;=VrgQ{100z=xf)&8;y|
z`Gb5IOddiVs{CPu;XVxD+>P>K<`JV^qr@b_XzCd1Sn4<*#uFw`CsL)z)+5GbAEx-s
zkGo9uVK!kJRh;QQ%plLC&QkuqhUVv3=J+sIIrDs&@52Hg7SdUy{DO015_#!}vDAlU
zKD71YS3j2futIj0A0PPfmk%p_xa7lSA6EIW+J{3v9QI+2oGM3+ydN05eDV(wu+E3|
z>fX2dutD)gA2yLUQ@1ET>rrDHc{_CnbtiQMPd2G}w-0-K5ZFr<*hkp!!vVrU<$r$E
zXmHdxA}8CK*cn!G)Q4k)<J1#WnYfcaoFboAPMHm{v$9zprpR^9hx6nM)W50!sN9RP
z%#IoocEyLQKDhjF`*F>O>pr|?jMRU_hsQoV@!=-xzvaViAMTJJQ14RjQSVcwl+40I
z#gBaWSMj)`##8cZ<vjD@Ir)WhUi$D#@tULNVf98%`<3STlg5v<GJ|bm^50oRHR?Nl
zq$8xKif{45s`w0RurX=(!=ZeqA2)t6>-6~H^~J+}G|!w6(3$j7eN?|60YZ=(qDo}t
zD~X67Q9m-U&djRjcL^E&$V7OL`o79N*eH>OoRykQ`Pu!*q4;F~L@qya`%%h|(tafQ
zk;jjGe&qKfuOH8j8lhw6u*enjBblXAsBu+8!ViP|A+^pEGx#Gv632|n8I8|q7VzU^
z75@pLAhi&+upghQ+zQ8xBIKgfV#+V>$LHh{)RM~o`FO01A7%ac+K*a(l=EZU{#X@1
zvc?kSRZImxDk}bhP|1%k36+)qBX6@RlVAB!P5IRcHK;Y^rY4y4Slf?YjBh}{4)q)A
zx751SdVYLIs85xGSx&|q`tiLVKPcyCKN|Vb*pDX4X-;VB$B)Ws=En>+_mgs3{LiXu
z=|?O2t*LFOzo<x=h2Q*W=f`$GcKFfWj}Cqe^ka}89sRgJF4n`3o_=(1n&`wLzf(K=
z(S^`e)$@lR-N@aQv%Nv0(pdA?sCvoD%x*s1^!B5V%I)h%KXQNN3?TgJ$CT>kr&Dse
zk_Y=S$&bm>w`0Z-KZY`3m><La7(pIO9qGrVW5y`*XzCcMRFWoSRyEF#@pL9oC;or#
zabt?qzbH1xkGXzKB};M|VY-Z}a%K`{`7v8L7oVie^JBgr8<ewvu*#2xek}51vGSJ_
zmiV!huuS>U<A$`gg2})9SgHI1$BosB*Z8rPypFnF`PEo<qaT~-Y^H9ZZl!LcO8q;>
z#&-I#%a7B3obh9~AA9^b=*J;HS{yg}95?pLVs04Ur^aMI;egCkAM?Gf!%P;sD4&E$
zKH|rUaWT1$`f-eWoO(j}C;d337`tL;{WvGb`1sgWnp2J&=T$2g2!H$W58)#967@3m
z3ROB#=w-?^#n<JWRD9Eqb;r$<=Z+tDW#0uM{}bz;tXO%34PZq85Bzv2dnABn0X*{K
zUq7k_@Kpeh{dnR>B!FlDPyObHODzFd19;}gb3b0t5i?ByFUhZ{uc>dSZ>bV<=D3kI
zVAdd){DUshcLGR9NU!`fFH^LD`2gXi+5)f>909lpPHLx{=Bel=3wQ$1$t$m!v*1&{
zKY)PZAR!b$SUG7<7#RY1H-P*Bd=x;&05S!zJ8a|*;627<r@pV^GY61`oRymG|NRr@
zz~*2wX8<24KbMTscjoz)#A@>dke3h(AVEl`rckBbcmTeODFSjCG(QX=pUN$9!YB~H
z#{rZKpi}^#u$3azg49CP!c=MW(*QnGy#JOtTt%5I7C>>r=hPA^rtQ6yx+jd%0f<(l
zmI<INL7Z{{lvi9K0Qn(AG3EM#W~BhWBvhtWQIXPawE(IIkp4ofDI2O0zz+e`-knl2
zfUg4>xI3j*0QCsMwFz|s_(nP3N>z#-M`GWR>r)#jzaioK0Co(CNhOWgP-AM7R32>}
zr}FEI?N1oZ1NbR`kpYYfphW;b2e9OX@h7{~GJrn<=*A+g0%%QW6TmM4v<=|b0Dh+<
zRsBZjKy62DFY)339@#qv&`Cw6F4WFUb_t-X@`s%;x|4e=r$+!i$-Ss@BhpYGmD`ul
zkJ_I);D2fxNM}$0g9$^ZL#e~4Qq}MPMkt;&I5wKMyfA=80gMS?EVIT@X9qAofC&Li
zWOAA+H7S6}<SEpt%HMawm`<J%z_k;`Oy$oCz;W`wF_{y<T;<OTV7}r7|Fa(#(@Z&O
zEK#{j16W30!+rf%04rsW1mO>2RRF64_*V|70M-PsHh{AMoC{!G0PAJT%t^^tFuoyx
zjRE955IYvYrT{hvuqS}M0c>HNJ5(!M1K6f`yYw@?xo3AOXBS~NHTNzvYhM6|nA}f2
zKs`u3!?F@{IDjK`gpU&5dea_fXQV$T0ys%NrJU1*GqPDW$0Xo<0G0IQD*@bIZZ3lh
z0sO6M`-gCmdWm|OTH;okt1|upTxTgMc$aV^fSby>B|yHToW~ndB=R1U_o)v8cu07p
zVk(?8p2%TxDDh4Z6Bopv%CQ!}b2ch{dqsF5=Rcu9iaA7by=L-F0B==fnjq2!`6mEX
zVm366@7@_t7ex9XEHte_I909|gpF*cI;crc%oE<FV%!7|RS&|e{I^XLfgplGqy!NU
zA{0b8h|ED`3F5@Ult>UwPa5(y2dOH`A{l~smyl7_kSU1w$nPts?Pl}7%0G-{4I*0*
z+3DvBqDd#y&%tEQAU;s>cV8zYD>nm@sCk0OONddEsS=ZSQA+c+X(ui;>*;>d_%Mik
zL3|&=4<Y0a;-esr1aUNo0zrHnMBO0j1@TD`1%oITMEM{J1@WY3T)y)2Ih!s_{gnC{
zwMY;}3B{<zsnV8w|6R015GCo9Qhw<m%8<)ab9Fc8RDS)VLJ(DD5=WV(DhBZdb1SJ*
zUj|W`T!q^7@P8}et01bWnCd~)2%;vFUsLN)Yf)=U*2e!%jBn_CD|hNKoBJ+^`a$#z
zqE`?Nf@l~-dzpo|=5H~5A4Ibtng{Vi@W0<;YD8#EZ9;7t#E&X>OSy!U`YDJu%4reA
z&x%_H(MoaaAjY3Gf86O8I&G=HQh!r1?Skgl%q6Bn5FOd)PC;}b{7#k5cP7Y}^o6^U
z|DblGb`PQlL2?^(i1iMlk0gUw8ARV8`UNpIh;c#mXUt#~IUtBX$pe)$D2TzonqxjB
zh@n9Yqd$^5oH~M9_L8}SMv(<Z2Qfym{J_-sASTEi1u<VXdk~YDH7kh8DrP!i3Uz7_
z)0BVyWqgL>nL+u~joFjg%9#_yT=KCr|E-DzK`d3d3ki#;i-TCA{8fDTSQf-`IxCbv
z^lh3|L97m9TM*lWSVMm!b*+k7M_5nY5Jc>Kv)xThZdNf{2wSCo_I8JCu7k0CRDqpA
z>>}@`?os~Up!p3}3D~ck13?@lA5zX?d4fGOAu-2-I4*}z2$2v@1aXorz76735T}EX
z@2%gVb0&zZs#j-&I2XkEATB8965;Ql`~x8K{FLh=LB6Uid^w0K%CB=e?KQ>MgSbJy
zNxenAt#ain{CCOsg18^V1M-s~o)R8X9|iF*;W1U(Y8Nm!<Fg=MDd%|*FUT*I(|&FI
zHTexSbtOotG$Eu7ng5sfoe<K6;0~GhlAbDHCs;zTDn|>!rg(YPgoEs)x~NU~e>6N~
zJp?bo7eas_b@~Z2Z>0$mLdt*kG9C>fLkLAeC>p}MA;|BlWeu6XM3GU&WFovL?;##e
z`+f+Snan~>z0+(VWDg++op=a|5ORj_K?u1*$Q?qAzVzY5Nh67zhniRU^{Xe6$tl#2
znwjg<Ab+f4J`5orIe!Qrg)lyw8B;*zKGTd(6c-GkPzZ&Y{4|8m2=ZeH5-(TLw<*O!
zC?0}*>%1DXJ`drGkojf*5+RhNQ;J%SS~`R>1SwlKgyr?jcFWVLp!|v<q~42EQYnNl
zSzBdl6>3%LS5%3S^PzeOHCVhR^_vjBCe)(Vrq-dR?$&QZs2f5(I?{oLgzrMAPiUZg
z`DUx+%8$S|3ZZcbgF_e+LdP3vnuPFU2+cw$aWQSv5Dw3XjYv+6EMPPb;inK<u(%|D
zCj1scJ3>ops}Ncfq~<oVFvxAGzbb!fO1ymt9YW|ELT8ux!S9aD>K;NT!tdgT&_%`n
zLFgKipF=Unvzzkk-bvF#anBHXDefIYAI0A+Na@E`q@n(V0n|UK149_3a@P%v4Gm#f
z2#Z2k9K!GrMuadog!HpwuTB~xS>ePGLZ^&TA&e#nj|pKcc^q}T@+Zi`K4nP2q!1>D
zFh%ueRtQrSPa{kZVFqEQ@~0Fx=VdmNbEp+h8S@D9sSBtQvyjl_l(8g)r6H^hVI7@r
zr;KH?1~!>%czFmbQsY&rm4sCxtR}2c{)AJ;%2VdEi1l<fD1T!Jn-p&*Y@u!qVVm*~
zpE7oauq%ZAQ4EM;cL;kzC>BBS2=<1sFNB3*EDB?P2nRw)2_qiH!4M9G@Fs+}vc^I<
z62gTL{tn?N>#QA1?3rh7!($;Fr*k5NlY~<toK@|f4&jXAMmf`-BcG>s&SS2Ye?qtz
z!c!TXQ;AC<+&X34WUjzvCa+MhQm=(@ogle4<YefP5V#e>Z5FvheHg-B!ab@qabL~{
z#oMQtbN7hJe?xdoc%pKxr_JGg#^m!5UJzbVU#Xbaav*0gd!8nYvlY_%!tjTYHf;V=
zb}`=x!$J^FM@S#WvFGM96Kfb69a|V~f?Y*A!f=vZ%1LaGdC0nQykRtPo9za|2!@e+
zXgqTmt-p$g!svA-9t|VRq&N{m$=k6E%#z%9!^o&OQyA}&-&fA$iSaC9WMxCyq-H{P
zY7S~n>Ic+ZROv>^jfo`1c?fx_u`rUAUukYU5rz@Qk6|<m<HN8#(M|h#7$w5U7e;=D
zeH2Dv6<;8XkIA1<3sMVFUq;P)|CIb0Rgy&rMXAN8#lvtNHkV~dCaZ?=RT!nhD9vOU
zYDH?<Fv=0iQ>91+S@yTgnfgLGmBI);N%@k=%3)MdezS`4YGG6l<J&Om(yT$P6GlxH
z^K}@t$hE1x>}LPv`X-D5IsW5%%=$iz?^LP!ga*`xVO)4^_D8NC=rp1>rZ%BA4I?`j
zZSydG3S&?hgTrVM#?N6`N5*=D(K3uyVf@bE)>Nsj9idGazYy9|f2ICLm6-D$^W<+I
zMhE3|45O3cg?{rEIy2dY+LihTwObh72@-Se*F;ZpuP}Ot(MS3H!sx5GO6Pcg@&M|e
z)PX9u*lDBxqlB#IAz=&+V^|o&!$`Uvn-#{0Fh+(kC5)*I9z`7=#%NV`3}I{-<CL>E
zjk!D~gfWrMB<f_9Tj#VfP4Vb8X{VECC}(CEd-9q$KARnoKFlG^4P%~i=7+IBafj2!
z;xLwk@j8q*VJr<}Sr{k7IK>K=hp{P)&0(yNB%PJiHDRnGtfrRy%WQEiSzuil>lJSZ
zW20jC=CoVL2W7KAGw*S07~8_wPIE^XdsXDlFm{o5D`!s_WpkQG-#+E+CmfKzz4zZ*
zJru@am3xG6lzNPMJd6{BEGJ^ar^HW(aVCr#Vce8MGK||(;zvG>zaAbFILG99S=(X!
zP5y^^g?cfJON7f*Gyd0v=v5}Kg>hZ^^3Q;7vBkSGhR4lQ{Wg<#s29_uy%)xP@`Es*
z5+vqf7>~&RQXf;FsN8hB63-MrC%g#brE*>o#+)|ZhLI+MOcA^nLD~r9pTamJa7BO!
z&Mb((6G6HN{{)D@N|1If5$w3}-$-f^*y!7-4i%HDRa$oh`A;Nj^oxgRdZ;?p8-Y(n
z`U!yug39Ugt9eR<BZ$z6DnCO6?~*f8Qy;nBk05gdxgy9NL6!)1eHBmlX?*Oicvi+_
zQ)RP9kVA3K2tFWJs$ky5veQOV1V#iO(##V<UP6qTOiiK2sR^nSJapQ~M=nIoul$c9
zD4_Ub!Y2_FR8EWI@xqEfC45FLLM=+wU!?gwf)WwDir{qwB_k*m!Q2SuMNm3|G7+?m
z;MWMsMsV}AQ8R+CBPb`q^JC>%yg~#O3137|l~9Q)ef~0n%8IKH(w#BBQcg8O^$2Px
zC+iubRs^4&F`7isG=ka@)QR95<~E>yt0L=0P*3r95!6@w?HO}3HjLnVIzL44`x&DV
zxv`2lvda7$`9~&OM9_@TocfcBc{4Eav*MN!v?5DYtqE<YzeF&O&HWZZy9kCxFf4-h
z5p>|-ykb_z2)aekJ%UcDHBhDX&V()zbS3<u{Bo1b{n#Udei8Ji*)xJ(gx=IX)V@@S
zT+3DlMDV9_7Jg_hvw=(wieNBdh{`>C#uy&K2)U!P=0M3cl35d|qaqlsBF7NMQpZup
z%N}8=i4jbSV6uvwL6}0F8o@Nebd~!Ni_BzlRs^#Nb5w5Cv&Q@g7RdIG;A{j7BUlu{
z9(igV!Qu!8oi(oAh;4~rNd!wHSQf$Z2-ZZfmc>_4SEp7*T^Yfu)MT4j{x0S?<mi}o
z9i2_o_0$d2jnvEc&F2Z5$pZ7v8e7TRsN1PKRPIjM@``s0^VVdk?2F(Ud4B{4A~?vH
z<0|q{1c%8-s7IB5EP{XMnNx5=IVU3sZAqMp;541o)p#y~^AX&O;C=)b=wGA$P5p-|
zm0XPAlH$t|Tv2?LAgl4Za&E{*R(vah+vGdcyUNEob9u;gzjw}fK=WY)kEFv9JZAC*
z^@)mqN_a+n9zkIif5~KIgn5r|B6urDM-;W9NE1ccC~`*eK@^DMohSlP1fxh7#g(x!
z`SPqY%141HECeZTC1_L|)gFaI<<>f9xTM0<F*nsim84GaM&Tp)m4Ev{EX1;H&l&GU
z5mxm?2+=4q5Z<L`q-LT@Px6kBNvZdv$Q*@$Tv-TNqsT_cPR*fm$DA{AMUgv-PowxO
zilivkpEI7EGYnRkCyKnP<`^NFni55vkWjg&Iiw#(kxx1KqxdL_0!)5PEfmEkgn}x@
zd)}PK!cn9;MWRSPZ<J?l(I|>VQJh>x#eW_}3B@G|rJ^XUoG;HCWy$4~(_>Rgg(xaU
z@dcf)sFhUimr+zES5Z#YD1K&_q*v9VsIL4Pgql%|>S1o%+ELVz$S7Jy@l6!pM$saQ
z+6Q8Fqv+4#jiRW>BHyVR>Ju7J8%FUx;RlsFi=`Sf*@W7Z`XjX&wRsdj5jMPU9>Uwt
z8yC+Tt)gfhMdv8GL~(Uz?B#i*4PzwW7n$NHevRTc<+LZXi=rF9Co3@>=yarZisE+_
z8M$C|jbcUj_yMQ+$HE`V??&hzl^5dBGm2hJ_EEXLqZsptd0zFU(@*&yT`>NPVqg?+
zGa${o7!<|eD5_*Y)eIOC#n31&%g%~oSQNvf*c`={C`LpvGKyJI%$6~aLYokqL=_k<
zt&qnmXB=UC6cdy)F^aC^V-h@BIa8vTN}i^i=~2ue&s5IvO|dyq+!-HR6~*c(=0-6u
ziurVwQYC8vVIg%<6pIN<RBnw6#xnA9>I&um6~#)$AM>+PYogeo#%FC5>lCjiL~15B
zDrXb#MMiaN6x*UW6vg2vT3s-<N3ko4Q)Lo6ROC*A#EZF`x`(=#x-W|Tgag!rREZpL
z!8pQ#+b)=!@hJIN6vqiCsAs7ssi&x?qc}s5A~P=-=g8-yxDdtP%D))JKZ<2KE-5Zm
zFMc(OYjQ?qK$Z-+9>t9)>>1$50QqIMn^C-s;#Cy4qPWc>ccOSixJ$i9y-$_aA4Ks`
z@!!0Kf0=w7#gizWM)6GLJ}2avoaTjc{*SD)fVQf5-#_=EK^hTGckgr0*@y0KknWNO
zX{Ds3M5LrqKvKFvL`qOV326`!>F)0Mz5BV&cllrcwf1_}XP$ZIo!K+9_qlP-K9v?2
z+xtyETwkuGHW_#Ix3WuBZ7LIzXo7kryK(JHWEvUsaxE=29W}j4zG2faGg1ZKozvel
z!FpcLZNmF(p2dW$1WA(3gzV%T)ST2@s<wR4xWMz6kdMv>%FjzEcHUSf6WL6)NJlEh
zW`bRD{qwrZ1h)yLO(<i6$Ak*|wTKBC!Atd-;3r5`fDojHOb9E#O)%c=ydE{7fC&Xn
zNH#%=F{(h^1YL2$g#3!fo!1L-BqgYY)u@V?P?TJZT3q>ycwQw<C`Cs)mD4P1!mjgr
zRTCT+^l~O#I<J?f3RECeG@%lqGPR1TO}b#rQZ*B*Gg}SSOHIOuCe$L-R(`1qdOZ{B
zo3Pe|btW`0p`i(5O&DiFBNG~%Fr1N1OlT@6XhL@uo0-st(45+WD*d)3w4#1wLTlx(
z?P{D<TNB#RX>URY6FQPVrgl=1olRKkG)_T|E+%wUev1ow4-<N_IEdQIgnooiRLrL)
z^d|SA_Er9e1>^n6pHT-;2U2HPjJ-XWEHH%dxd}s+Gt7ih(~X#otzsig7)k#N>L}`$
zDsnX8E9w}D++v*acoQbj*^|LY^0f)`Oqg%NM0p7?VX|sF%Y-Q=Of_K|oo}eqsWVhe
z-Mgv2CC^k&KVQ;p#orO;m@t=+a$eHo0v4B17n<-rVUY=oO;|#{&ZUvar6!~dayfl*
zRuEQFSDCPyutwF6pA}zk!UhwLnQ+{MA57S2!a<Y#lhHWw9~t(u37b^>PlV0XE!3^l
zZ6<6dNUQ7Dv>hhwG~pNJ{BFXp<XzO=)IHSSsM2b{1${4hpK|t_aDe=Wa;9F;50MX3
zk0}2rVKuLs6DFKB;hYKkFX$&t_>)zqRODZT(<b~)IHUZ32-hy?=S`4zrCvAT2AvBg
zTqIngUZ!55%9yX3a7}U7nVP(t^ri_9On7L*ExBRNHk{ig+#%mp&OO3?S&JHR36MOG
z<h4WPd2GTH#ZOImMt-iG)ED)a<X6<!%70_RTgAoRX-Q_ljCW?FvLLk?Y0UV<j8Dx-
zYeqUV;%4Y(q&Fjj8S>P)fEgLh$Yh4)qHZ@Mvl;K1k=Km+r{h`7#>+}Bsz6pVvMJ7P
zMh<dL<*dD;<tD$coIHdNsK*W`Ny2<gYoeN^M}qiPg3XL7b>dQVu!)oEGQ(|#hb&`|
z#~6CaKB`~&W9KCY$ssceUDU%=fe1mPMybhW#8hqFi+aM0{AScOqn;TB%y^X?t7%5)
zbgZDnm{FKH%a~D?P=s34jACXKH=_iLrKlyTGQw^b_0o#V_tVOmQJ%%>)Cy))CR9{0
zmCUHqz__u<QN@g^^sA}bFD~je6qh<=#C&K*EjqQSb*S=yL8+>5MgucWU(`FA(a?-W
zW_+aDHYT*BHZh|qp_!^}Zbl38{EPqIw_CB8^3cfEX0&0kt%`4FMtj8_%-F_Oo#=En
z<6}Y>YBy?E>Jx@_C-*R;C!rTr2A^~@*4vCeW^5G4jJ{^{Gh?9{-<#3jjL*!NWroBI
zFk_$@<IEUu#vr!+f;w2`8DhrgW(+lB7@ZN+;i`5nZ|Ngh%ymg0WyY6gbU$Xy|7aES
z6=94SW0h0rl0HH4xAI$n857Nzq?~Dl$<!&-sj{Y*jG3Iy;tZ-3zmdM^3(u4}=QEnd
zUeafq@tt&cNta`e8FR_=sPm}{RPDrL@kM4VHsejt_|8lE5;Km}ip#OujHQZ~nX#O_
zg1S=qs|cyz#MdZitr_dc>!};4Kd9P8m-J0$^f(p&!;FJw{A9*vp2!w6ep6?(RaW1O
z?JWLG{gt}IjGZdx7sB6{^j(DA)IF;9Ehpr6GxjQHA7Q^42MDF9hs-!^#$_|E$nfZ#
zGUG48Q8SJaWLA$8PEb#p@h2hg<$rheX)`X-`I~x%`i~iB%{WJv3>VBeulT(U+C|0k
z5Y*N~|NYO`RhrMuxMs$6Gj5o1(~L(d@|GF*$hWC?sCQLu{>%D(#ShGQNS3FGO4pCc
zPpD6+&!|#W`?CH*@k_!h>TB5v%707fepyel02U0gV6fc(El6WQ5etf1kk*297KAK#
ze^e@Y#BO>EvRRPbf(#bpiMtu80+|SzEqITRg_>2>F3xQXHHQW3F6(X!a$1nfg4`D4
zl_H-7CP_|~Vjc@VP@I<_&jK|o$8Lc|vDE^b;_;VthhiteC8tx~_<_X3PNiQj!AJF5
z5Fi9q?SadBm<=NqXoRQ*36(RM5TnMax&_nt|19YuKb->9g49A56edXRwaa=j3yNFt
zu?1Z$C_%re1<fodX+bFqN?TCIf?5{TwxFy9<rq-Sg7PXuWeX~hD^e>dKg|`risGt-
zi)E9l6KW{GrUf4=c3;u!C~jy$U2;8YeQE<$TlR|HNO5CA6AR{tj5}U)7TZ!=sF;=(
zv?6~*ZB1>XYFk~=+mYK-J5W1PJ5eQVXW2P?J?d(~fGc|QD_U<0y0Nyqis?b<X+bZ-
zC)7_>?VLI>Y1PL9(Y_Y+BlM?=^O>Y24^&S6Q}H1dd~U%^3uaj`)Pi9a<2kyMWM!`y
z+jY1F@|fQd7K~&UUsy1fFiQ3Kr3IrEe`UcK#cSAnoCV|QOrU<PYA0H7kO9)gWDBOy
zpGuuZolc!W{e~)$-^w+3+W2SaYzw}VO>4n=3+7mG{ffSfF>|T&sPm}{ELceRp1RnA
zMFi`-fA2_3ELciM(x$qqFIT+6f|ZI_5msBUhOk!oa(moB{=<T)ZR0;!uu+O~z0>@S
z`V;kM3pQJ@#RB)$fA6SU>2ITMmrFqTJ1p2~!7noHtlCZ8MU@fCi{l=}P1xjj7WY#3
zS+JjQK*jhGJ!rup3l1yi1mOtvDD@cixCJSD^(2dbQl-aJ7W_p%tsHqC@)-;MvEZx)
z=PZyfy}fI}c?&L(Z(4AXaFr^xmk5_FxT2gT@`(F|$=6uCZov)Z%a?cDBHyOoQNDRz
zT;lJsc;A8t7Ca<Bvfv5fF|}QusDwQwORB?bl3!TxQtn_j<hS9K1+Og_XvH8a-dONf
zd@J%>@y>!&Rs^jGS&?J~tgu`0{xv<d6=|%<YDG3H(pr(uicD5ywxZ%9Exi>PtjK7^
z4;|wb4#h;rUe)DTa#e58HvXO!Sr{gfJFn`Z=UJ8Aikw#DvLc77EuJNoTl%77qnXDF
zNg_=?u;SHKJug)tpA{yuSveLftcoRGTFC$$RyeJ2abO-RyjHl$QYC}*k^NQ#*ial9
zfT)aFx)_u$8n!~SA}UjqE*i07+&$wOk*P?wBK44%ZbgI5@t75H8RW3|xdSm#c@%T}
znqI()f>xBXqP(=a87pK(5i5#X@w&WTm@0XSS&dh^5>}L?Q``!v5-0VoSSc&YNEf$a
zrK!&v#DwK2YsImZ22_yAv7(t3&8?_pMP)1MSW(xCDppjrqNWueT2al4>Q>aS;?R%A
zE#gpee0!Q$-D`UL=UVfv$$#ZeswHg~#%o(K1kwG|VlDIP`7%c9SyA7LMpiVIv*UOg
zGDDAR|6Zq+&S=T!;!Uh*D$6=fllQLNO~fxu)gG^owXmY46`ig4*oszGd}Kv?D>}%z
z<c)9MpVZolHXMJolKP1ST3ajHSuuG{Tm~lE(TdwElckqVR-9TGZ#W|+b36W;-o=Wp
zR`j%@mn_!pRNbuTZbc6(uD^@RJS@4UOQf`#Gh8c^J@#Z=(kE7Y%3;fy_9pbPV!&qO
zMXE20{iyw|_>3@sDz$R5gJmjYPuh^nhR>}SYQ<SA&RH?citOgt6f34$G2Ds~R*bY_
z*EM~#6<-m)uws-IUrO*b{q;57bX}KPfiYH$l?}icF{O6A6%*wuyRJ`Q@Ykw|R83--
zz+~AE*NhC)te9@aQJFL=W?1o!4AqKFR(xy4%rD|SPsC=*mi|gxI4VBNirH3tXT=;k
zE3BAn#XRy->U`>A>H_LQ>i5(|vYLZ6NwtK<mUH65%g6%D*`0tKE3H^%#cC_osM_^b
ztR=5gPMzzzL~fAvQqD%XjZBJ(`I8l!nQgZfTddeBr!2#+V|2GoR{2Cs&P8~;6+g4>
z4(d*o=NH1S(l(zFCh>1h#P(S6n-#xXu~+V6%&<?zA0X_vB6+1T_&-=YsA>;cahQCB
z+LgmTE?4ff<iF(-*sGne;v|dmIp{xSDX;6NSp186n!5P9F7aoq_=iRLiBS%5YP5=;
zx8j}^_pP{K#YHPFS#jBlTe8pPtgq`=thgrI*ov!CdtHBfT^GH<s(d%}n^uU5Bas4k
z7$e2Igp?|2^1zCRGPgFQw&9T#kF7{$GwvZz<VJnfxLLj9_I_%`Gb^5xTV74|g7A_m
zF|TC5DSl(cTg3%#7?*sxL_CQ(2dqn$&pM^C!L>urKut?cN0o1(O0PfyGLkddkeMLP
zdp2YtXQgISes&vjkR^kJ<+kDKG%b$}AK37|4MTTm)1PW@k0$4}A)gIteeq-)Og5Np
z@Y|5*rf#vpD$Q+h+hDVy_6^-`gTn@SB44{3`p_Htj2pVshE+H89XE7QkL0|edu=#+
zLzm+!)yLwi8+yP7?WP{IA!I|jo4P#wIc!73hDJAa=}WVr+f7}Ls0||sF%BtCm9goB
zZ*J-ZY$#|$z>T0Ag={D+@eYi1pok4cZTP~DQFauwp|}m3ZP;Q%2^&h<(8GqFHk7iV
zv<)BI(8Y#5gS0X>l$F8Qu;He$9OZ4OU_(<InsHGo+ECSoYUE1P%G4^<gE#f+Hq@}8
zK8rP}wWuGe0LdvwZ5!&)sY|U#75^4HZD2z~I*q7}sZCT2RwVDv8EtNZXj^IvYD;P>
z8$KdPZEG9aD4z5xxt-$ngbp@zBy^&7R<#*#>0Q}ZHygUA4B(;`yQSB>r9Zu!{Kp}!
zmkpoTFy4j<HhgMB<=NUG8^(Q`^j?{GZ=3OP{yx;cHuNL(r;7iX4FkvnmDBZ>KG=pK
z?B#RnDA_OsnT=sK3@49J&PZ8J#ba(63-l$6qp4p}$Jj7d#f&4!qaMDtVWO<;*;H$7
zm}J9b8}{AO7qfPX4f05bnKn#St)|&9UGWSXzES+G4a?c-EH;^K!*_%^)CD%oCCsBr
z&iMqnn+Y!@e@|UxL)@mPJV#;)lP{$%ll+7gHmoG9vSBr$DxaLNhAd}o%M)8?!?r^4
z^~%{m_(3LCIX~L4iTsmt?%&e4N-G<(+mXYL?Kb>u!(TR>wqb`2J8klfF!94Sj9zT~
z&i;#Br0Zk9vh6O}8*+7!_fvnP{!ZOX-A9#%S#IkG6#rqvLGmHxboo*{qWCD`m<`93
zbAoWvhCh{aO71+jjfMW(hBG$2w8@tvB>ls&U1rQ#>NypE-i8Z`FWPWP@w?JVSL9wN
zcPbmM)4XTH4Z=;TpPwMOMZQhFL%mCt0hGC|-?!m`4G-x&RsJIz9+RIaCv$aU0-v$?
z+=ds*KXNDb%7)iAyrGlMj`ViCCBLJlvLne3*p1f|InoePQ>R@{l~(yT4kTqDXQF2O
zkDpobdv;_YXQgIS{;=IzPCIhhk>8F2b~L}O=eEOYhs}=nS<FKf{{uo^JMs}s$~W6#
zQ9R_fZntCBZQXCj>D#)4y*O20E`r+*55Y_IsoL$g^#D0&M~D!nCQ~C+&5kHxxAyN}
z+G8xn?a&Dcs?62!yzwq$w1Rdtwxfw1!iDT8Y)270iZZ5#9W~`uz>eZ}l(3_u9Tn`T
z$f{CylqHm=mZ3_{*SGa@<nqeNcgNU@l~}AwtxT<AN1RnsTa8Y2J374LpZ!@Bzn&en
z6xX(+4!N#!4o@+H>$BK^+R%<hs<!4Gy{R3|>}Xpy{;^EHBxiSR?Px)6No_@ys*mhw
zO>U!{(Ts1$gzc#vs2%O-MCeSFF|53!cd?_Z9o_8cZpUYK46vgIYkRAho`hc1Pwe<q
z`MpcW`zY>fM?Z3Z<+RAm&wsHv)Q&;QA8f}E^5@EtQy4}bP8~rVscH}1(Z94~wCq?1
z@;LC79b@b`Z^s2Y#@aE?j%jvGw`05=5A}Gpo$<$6;;)y*Cb0R})QQwdc1$Krp-!b*
zdKx=zh8^G7vD=P4c6@8cOuKxwYkZ?@bvtG=Y>ge?5f<9<Jz)-YE_I$A^9hn_fgOQ0
z#;=5nl(XE9#fq2Mv6Q?_IV%q)uOP3auA;71wfQXiTE*)K>!};;_<=Ax<!{|~Y+~^z
zJANj}05;pPMe$a`HhC3L&c3t84%}hKPCCC(f2HnHG2N=h3J;I}X2&5r4$Jj5JpQ{K
zdkMn(2>b0gpqxMKIH>r_jMx#C=P$xh>M=Wx6HeH1lJKV;rwH}W8$VPRuJ!M=f7*_}
z>7SwgLp@79N0s26BV*%=#V*=$+m1VST(aY`?9XkQ^nS&T5Bcfxt9D#t{B`OL>P_k`
z>cY!Lzjy7pCwF59Qaf<pj&;@J&n4%wxWEGzAKLMVAkJgL6WJ%qc}AEyCHBIOmrVQ0
zj#Q3+@9nSYyrI6e;~n9D^PI%6nwgBdO&SMQ9nmt=NlQ&fP47Skg2ZGbWO85v=juHN
zvN(`c)#f5(b09k*2Q?@45Z{B5o1D`21BZNvGU_-`*MWQvm>ekWKp83a*31rA9I!g@
z;EtaAu5NRn;9cG4fS=9nR0q}RfQukwb35Q6dzDl7t{x!k4kQRcYRG}G0}%%_7GqS&
z5Op9~@h5lnxZ<RG#>U9cVo_=V8Ir0k<UnD?MI0#F$JpM*=oD9e2|`H+N-1Z;UA?RW
zjlMQs!D~BE&Vh}0ja4Y`Km`XXGOUsV)m40DLKO$95~?Zx*j>Gb;+ljH9jK+8dw2DE
zTa5A4bD+Kh9UbW8Km%3VP}c6A?k}r1a-gvTO_cwU15Fh-BQ&SBaG)ijm8uQjGsfJS
z#WoJKRen1{duj(cJBD?3;A01d)9gYWdQTtVkOu~$8;jkky&dR5kjy;^y&U+2@Tu~j
zWYqg8?(0B5a)0V)%5Qs5AE<Z`VXy;32%jr|r~|{ub2-ABbF~Z|<6k&1%7LGq*x|&N
z4vdynbE32pUpX+wf$I+3aA2$h;~ZG$z<S9!Ak}yW7CP{~To(>}?Z89_CY>^F#WMuR
zQk?9-6!KK+H04isVDR>23HZi=ZylJa#x{pAi#pqZ?+7pX^pCmZdDQvT1yt#A`#pUT
zd8NbnvdG2cC8~C*1Ix(EsVkJ9@{h|^EUtE74PmXSJ%3N%;J^<K{O-VB2VUOO<=qq;
z9k})^`9}vfIq(xBe^v3D9oXW)RtL7x*+Jb-{aMB2zHjWDoeun>oMbw?SlmtB<G^o(
zl$d=|bjOc4aMXeQs?`C)AJl`?L)60#^f_%@w#OVe?!X0^4Sr$Y2?zdWz)9+#R0%uf
zz+dFk%6W0xxNy!m@Q-rN63#hrUO83o>lc|>l3yZRre1O2s`9Tnu>8lk1l)AsmIFDQ
z$mzsw2ktnK-iZuO$UhqHI`GVa=MLOcneP)GIPlPcM-Dt@aVV!qM)kyjrz*0;eO>m?
z3kT-j*Hbz1lG{m~R}Q=;zoEXRzEidGZk!~i(F9b1)J~)!r=_M-{-*o-iTiqqhVh5@
z^^8vAWhIjnnF;Svvrxs)O33C!cI6zJo1Dvu+)jj?2s`n<6HWe3_T`AXoXF$E2XgKz
z(&|J$#U>}rWD9i=-+dwZZ7kZU4yw}$KmV!i7TA>Rp?axO^rZkb;6zaQa$Q86kZ;v2
z=0vLpy5>aGiDV`$OqIT3gt!yB6A35sE59J2fD>6C7#p~d@<R{wBIKgVslb5ZPLxni
zNkYH0(K1eybz-6ulbk5$M0qFbI8oP$3QkmX;^qTgzTC6_1AWp1ea!>Ck`tAksNzIb
zHm|O-RdX8e&XO_6QG;ep>W5C$BGguq2OsG5oT%?aKPURjBy7;+-*XL|Xy`;ECmK7^
z-iZzjZbEHEZAxwCL~}w5YD=p0nBk#u`X8~_+KD#GZ|g)m#qzJ%j^u7mbSHFjqBG%R
zY8R^H=}PcE)O!#<rS?>{y$GLBANNk`P3WU)`#O=b3ZKy#=EQKq04D~jm_dZW)FDoM
zP8h0cOFz^{kefWzzaosJenA~2uL1-a=V&L^R5k7@V`L{k)a4lK#5nSJ<xFtmYsLK^
z>XV(A;=}?c7CJH2iD^#YiLqqUCDj#u|3m%8Lw$x5-#GED>SeAIGZoKrVmA3Z>Kx@y
z=KRldV!m?LJ=DK<Vv!RY#gPqDC%)K;RWcI!ubhfm>cld|%Lyx-SgD+pFGyW215?gg
z!a66`6E;wPP_<be8GB%p6Q$M~FLpoC->ho4II&gnHo|r}eZG%krxU+85ph9t;aAzl
zPMmb&PbYTE=6s|dcjAOx2#@qVPW<MCykGQpm1nOL`<&R%;sNSm>K{%VBpjm3VD4{?
z9U&j39#ej+NBYuqNu6D>uSXcGaLS3loXF%tW*1I7@wXGHTu5@^j1&K`$#W;pI&qHt
zz=`vOTht3qTqIm_;u=8`UUuS&;;T*!;S^n`bAx(Q)q1<cZ!5k-xa-6{<=iJ6n`8WZ
z_|S<*EIwAXPn>v4ex{u79_cR>zjWf2;@3{RA-`45JHp0CdbQNiqmOjB(EY8Jnwo|x
z#k4M@Bd4ckpk`FH4<G68xsb&Ln+tXqvbvD{u`UD1<3cvqzrS~6cOeJ)+2vF@3AtRz
zO?Y3$3|gUm;DR*FOU*}>qR9m_*+R7{KlWI6xKQJ<KIF0f?PJ~Pg3ATB%I0&yL-s1C
zV<BVq{4NBP6C{LO2rH-EV?F9ZvJ3NEnD0W&g}4iSUFhe6?n1(a@-9@6;KzD?7mB;!
zSfLeQ+kz@XAr}ghizufkp_mIPAK8#5C0r=Uwxy`0sb#2ATh@hgiscg!6<s*-Sa0e=
zGZ!kkP?_1PxbUG1wOpvmVl`@Ys+?mD7iubg^w_v6YrD{ZP917pYCURws>Eb{VnjA{
zp^<VLyU;{&@QL2sg%&J+>_ST!$rHUDRiG8&BWi0G+7Q~R+73^2iD~ab2Ra><-^qo}
ziibbZyD)iI7rM#TQvH77LJx9JYA@x_<7hu+u{X7k%lKG|oI-yWK67Eb3lm(}@kGCL
zUf;W18{on~7X~qMunWTpL#UrqrQuK)hLQL4nU*7580o?nE{vi%&V?@tUr|R>rB&+I
zNn^-km2;M3lYV72zji^EU<Ma-B6SjVvI|qxDo-U$b78u2UO&;lap7AgoJpNao#n!8
z)ysD-%ppIm_U~URn)#9zxUkTLS1!DE;d>Vrxv<}b11>CfVTs&bU64=f$e5S9u*QY8
zE-X{omJ?REu#&Kfx?0tmpBk;!vAE5J^)761;RhCfqHauyq;5)K`LyFxeY4^%E^JlY
z@TtCC@y~=E)Sc8{T<F8@cComdx`+B3^>^xC>OQKBZT?2>4;K!)aFsjikPC<99<FMS
z5dNedr5>Xmmy3&Vk}7%1tuuazI>q8&RQXiS-|`aR!apkJBH=9coLtw+zu<zLnlzW=
zk_(rWe?_jNo5tUEuE`eV@NT$p&xQNsn=af^SHW$<9T)B@N3Ke_b{??!)P;x2f8@er
z@)PCA=Xxaa8H>-UFQ_kNr#&^Q-nj7Ag*<M2;Kn-_Qn~TqsebKVa+2G)OJ{H+BLQxt
zCWx8FjkM%+)bz@ijh%^{T{)Qv?@_b3kyZKG+*qaNBnQo$)Ld@lCcLjAPdwH0x{>{v
z-sPF@a3h}^(Pz4eYNlGKR;rC^r%G52wsN}RazmQCsRAB?*9{-RulzC3^pG22H-7Wt
zcP}DtXl__MuzC=6BiW4|ZtQd;=0@C&uiO~phVDkfjq+|(;DGbHu~bVc?ndcc(E@Y|
zQVY3Jm{5dTlv<3MiqC2rnM*I>MoBs{!=(tN-6*4+vV?Nfi$#(ux>3oEu5NUrQ`wCV
z-Kgb86&9;ft5K^{Yfx)a)1EVSoh4Vawi}JyXe{TLD_VzIms-z_`h*5lsck4@I}#UY
z;zm<9+AxnKY34=?a&zjYGsY%wscKuf@e#STa$2lOZtF%n7Tdegnb3jSk=ltWNtQk{
zE}4&IY3Nko^B${Ch<A6Rj~jj6=s~|HwU=u33E@*}Z|W>9sUKmm8$$^Fsh?2?xG|70
zh&rRrzxT|~-55zn#xT^4VdUY|5!96Nd_f-N#-6vSz9f&PN~=*Flg7F+&W%}ac?=-N
zyD`Cy>2Az$<7+nt6^T{u7i(3<_}OD3n@n<JGT{eP(iAtQsyx%&sLm%Woj#dd@M!Wk
zvhmKxzGdx9YK14pYJTU&95?2=G0%<XX=47>TCbb&-=FEp{bKXoSmwrZHx|eq?iX7~
z{hqprx|q6zx|AwmC40nIxUrI5{3KT^VLf#<RXSbc##+Ve+_0<XNp7I|19hV)VG~ta
z$*49f-r~kqH;N=DZKJcD`m?IdoHh1~8^5~o%8l1<>~dqb8`s>pE)y;nsT&s=`MU%R
z)K0ijyLWuA8~fbYuQD8V;{f>&>OtzElv>W4jOU0OM^ha6LlEJ(8y`0@cEU+F{-krt
zjek_kUv8XM{5RnY6)#eqRsK1`dFln~`Zh_I2$!i>sM5t%nE{UEh8s8Cc<9C>H*U!_
z@>_DB>)QR*$+sDKhkBQKk9waf86FU}W=(qRh9?r6e=)hvcH>vACvH4dG0$XIkY6b0
zr5jiIT{&;uc<V-9k9>y(w$DlR&W-dQTz#ge@)-C3B&q-isi|qGX+21%YOi-r%HTmp
zHq1oL;X!7?dsIo7#e=NmY}D+^Z?jsH+MFKbqLZ8YJ~fYu`M_g56<oqh9`yJ<+3Z2~
zJxQ%!$2##z&gq})HV^C`obuo=4;&siJ?QO09}ip}xIL)lL2VB_9(X;d=s_jP=0WJW
zUf6?y&vm~C0iH<EgJeQTombd{2w9^>m0$k39wW!8x(5kDeriDv3J_%8O7J1`g*<5a
z+_<3?@t~*&#Z+x+4~mmZP)kxvQQdqBcNub7YB{PTDNm?CZ7@lz?7^k)lgCWdrm>4E
z^s7><QLB4UgHV(DAyx9o^ZDy|P}hSt9<=q~r{{V-R<-h=z6T9FXvktC4;l*${P*72
zgl0<*ni85(n^Rj*CG!c6L>@T*k#brSI^{+?588Xsir)v(!Gnj-^=_;Z=*VIx4>}XX
z`PhRl<gUue^TL?M?y?P3=AMLJ)K93NdLUmFAz^(z=;y&o4_0~5--FLQnCZbR4+hA(
zdoad>u^v=7rVXNw@L(`OoFRnIsY9v5JQ%KO<;xL9lE0viQvR17j3$4j99f-l9MTjS
z@FZ<Kc>-02_q7KT$&;v)l`mh5Ai+~Tn8sGZ(><6${)YOk@{7FCWrMvq9h>dJcWge#
zgGGe7)OjlBe8K_`7Aog^51#$=@81R&d$2_LOFdXdUQS)1eEB|$)gG+zV2=mCd9c=l
zdN1_t9EqIEIuF)+uz|rp$X-&dHl~0Fn+WCklsSpt%;FXgwi33bgvqaI{N{_FS=`~l
zPUZhX_|=15%GoXZlNZ<TbPmgcPBeb}*vsNR5B96b1B5?3I7m38{BAGwBjlsXIYv0{
z!3n}i>Yu81)C>Kz2Y-7|*^4S(oblivxovu3^5U!q=RA1q!4nV8dvHO1VmzxiIBJaN
zq6arrhD(IY9$X<@RsJ;(t}CARLcdAA<-u*j9qN4#?h@`%m-9hV56BOx($^yow($aa
z>cQz3`dbg)$tshdQ^kDY!AtTh>TBv7RV&YskvyrqNasa*FOt0f{;dXt)YLRyq$L#T
zY}^wvc#+YITy!!~vr#isCEz_m7HU>6-f)E3Rc#JJPA{zLxf8j)cwg1#@!|t=Ugb2r
zklcM~-0Vf%3*8Hg7X{kJtX|l>uzTTPSeWYc!bfmX-BcNm#|y7w`G~hTeij2>1PLKk
zE6+QMDAv4)l9Q=1<)3d9Pk52vi<&R>rmvC<&@bafo|k$-uRIbHg;it;FN%<hDyNti
z#TBPKIj1CxrMxIj2%Ix!SW=Z`!g5}eCx}zQi;9XX5%Ry(t9nt*i?6+y=tXreYIxDf
zi_S7OFFy3*Bj&87dTdIl?L{3g>UvR6`Hj4&Pi{bMsQf~cw8n~?5N_s9YDQ>IZJ}yg
zdeKU8qa(&CwDzJ6owmwvM`-Uw2jz5>p}sVh<6|$nc=6RFZ4|4zdhw|jy~*9E-M#2R
z=t-3(y$GLpF*UuBp%04#y%<F3OYP@He}V*jMi}75DE2s*#o^Q;D&}*-Q0g!*7BO-J
zizBIDP;Wmregc={OD{&tu)Rn*WpTzZV5}G82;z+QVuIpdUh0#)nC!(8FP3^SMFuZb
z^<%GI>eCoA$BVgMOefFq;u|l%C4WbiY%{%>rFb@B(zE3A9Opb17f|O@yPP)`Vj=l^
zsuUM_v6!6Fe3=(HvPCy}@e^UW7c0D2NnS-=@5O4u8ma`Z^<tgkj7Q@e6#qcjD9M#0
ze@@@5`rS#`;>A|NHsx>k;%D*><>Yx~Ea)#@{7Pq+@^^c&hkS91abA19*yn{NpYrl!
zzZVC*_`-)#KK$XuLAlC&DB;5)FAmFX&4&y=9P#3)7w5b<@5M1M8ZX!W^kV-qV;zq(
z?Fs5hFPi*f<UghQ{fls#`Zx8A7yl5>QYAR{O0V%sU-qkZ!HbJtT=L?w7x%q*;Kdcj
z+@fAp@z=b#PQF3Csr<1=wA<u6Uiou<(p~aB>audisN{I)#WOFS(|qK`W5N^aQ)=$`
zzmYGzcuPlGy_AIH*VH%4pD|v0=S3<XfB5$y4MF1JLu$p#2FBBp(<!IpD?OtRnS99a
zL;qkbvk&jF>d@7A79X<u;PJsrCz}tseR$u8>@4O`8FCVG`7q+qzgJTpAIv^jeE5J>
zd8zrRCaR2Tmpf)v?C`;+*iPvBI+as7E+5>A%l>8je&q8Z;)CXcpMF5q1_>b_!pixo
zvL02O?8AybjQNbwiBolILdBfwXXG!yVnH7Y5elo?B0dx)7o#pMZ)7X!Ln$A6`_RXS
z(ms^&;bR}V_)yk|ay~Tlp^*>eeW>6=EgzOwH1bzu^J>&eK2#=Dp-OF4AC_MEcipSg
ztl>jVRr{fI^wyYXNmbj2I?P#@T8~<v+JGuC!(Zu**|wz*t$b)gZmP01^PxGpg>o+M
zGrIoBhxW>8?L!;IZGC8`xaz8;4vISxI#D}Q%OOd6?@A7COcw6uLw7Z*9zOIW_fpO$
zK72}+jUmBvKG*vC(9egTUg<*?X>(rb7k}0IGuvlA4Dewfc@T9db+8XZ2%l3^R!7cd
z7>mPYe-cJg#XtT^|I&xiKAiI5FCV`0VT=zeeOTqgSRckoFE5f8`Y_&y2|nW+4Q8|9
z*FJ0-r%m%=B8!u#lc`gvl6k5RciS1$IGw=~Kf{M_6o2c(O!6${$oB|H@OM7UQ5ohE
z=J_z6uz=c}-zFoG-}|sgMJ^^Rp)U1d8DY7qUE#x-UdErQR{OBVhkF}ifBNw7mA=-8
zeX{Xh>+5`2&)^L{Z1!P`4?n238wJRll=G9^5MCR%bUC*Au+xWMShdZE?S!AHJ5+qL
zpt0M3_2D<=?DAnZd5>~JO!zyCdu1*7v+;f(4$%2SW?n@elve@8hvij3@%;tHR3BsU
zxDO|ke^NFHpRkdwbG+Sa{j?8%%bn1VG=7}%;UC#rul2h=ob}<H%=~NJwLba052BLo
z8sUNu7YSlsB3$<23gN2qhjRSaeYm0ey-B!5z3syt<v%YQzvsiBul4&rJdjnO|J;Wc
zK0Hz}j|oqxPknesc%bI|r4Mga<SW8!>Kl1k<n#Px<nQRD@*~M_ybypYkpDtFtsm+9
zsPRVk_>ta^41VNzqgxn|k(!;F$&bv0_o!K@k|C=f*~kz1<y<-Z$jM?ZKk^cCQ{SiN
zp?*M>wjZra&PO&;&D4}J%NVR2iOml?!9jIWrPk$#TXFImUB>VA!^acxQ^g7R5hRDG
zVdX~%-QVcRe#HFP;>T7$;(q9U^z!2qKN5cA_oJ~NP5da}M?pU-`B7N{-j5aX%Xihq
zO8HTkMRAG{iuzHEP@GzVT9PU;@~yIsFKVSF=S8gywJfz9wY(n{2o<RkllrW-H&?uh
zAGJ9rRjD##)%>VVuA!Woetf97mLKu~E(xpSm$%r(<)}-j=SO`)18PHRBdWw)d8;+`
zqnRI_{OIgQ(R=X>qvOr}82v_X;YUj*Z{<fD!bjBB)bHOISAAQuKs!I$lRHp5Du34-
zeft{i^}OiEe#o<`B(e*uy86+L(4E>t#rGtvy`Sn+KYIJ|wI37x=;KFUKfdr|lphcG
z#pQWc7vAXo{OHf%&-@rb80g36eheiKq7L?B2toRFbWYmJ=MM`H^J6&u5vq2iAF19N
z!`t>y`_d27Tm8ho_-H?*_!U)Pj2~mk<CHU=Fu@P`D3%0F@?)|eQ~a39w3+$Uz|*!S
zPxE8CAB+50?8gjNHF>MgA$&vqmO7I<i#nV7ogc+HDv6&f8}h9_k2;^afVz<Sy&n&b
zX%Zl(u*8qmY`&B#&N4rilUGnzQdg;3`99(`eyo)R>XEdL=0-o(6E>)rA7sYz{QDEg
zk2E*=@e^UQis}1S-{!}5x$Xi81@N;UJLH}d00P)4`^}H*e%$cmS3h?7ao&#uZ}r`5
zd(@9(e(dq%H$Q$?+5RBxrS6m80+fG1wggX8&g-Bbhv*+xwMYC|!P?_=PE${)+LMGo
z{WwMVOZh1Y|CUz)I{zsDEa9BoDEPOv3oKq#wU_+3Ouj<BO1-9Puf5f8lJEL)k8sP6
z+k`tRCe1tjzAPMzZ>bNd&#906cuaUgeM)^sm2<bfGuHYAi!Z6K{CKTu-^jJhfOpDC
z6@W~RG)WymngHwpI07g*Op|ZDPa8nGfKip6nkj$`1aUG3(3#&UpE-c{0?0x?PXHeT
zkTrm80c59>i<*O)lPYcV{H^6CzptEq%Z(dU-T=&W@=;CHY5f0%)LH_t(y>v+`R;+{
z3}DwWeddaI%KPVCta4L5RBr%274Huqpt$inJsdzJfVKg&3qT7X8bDn+-&Bd@06u-E
zCj!XN;21R?fKFIzHg<afa`6C45DHQY1yGn!gj$qZj4Dk^@+Mp|fEsj41yDMGGUN&Y
zR1Bc3iYymEdGbWAR3+tC4WKf)igH%I)2k`29>4*{OJ6l<ei%S4LTzdt6?yBOUN3<9
zEH<Dvr#1|rk&0;?KofFP<unVxA2WVFl%queE$O$Senf3eZ9|n9XR1W|06GLPEr98A
zrRRut3}9fY#K-_T$>w3$#{u*Xpicl@SnL`=w*b16dr^B(dr~E5*)H)<$e${wRH}sd
zeI;`MgJ|{(pg-X=>Hrnlijji@7^<8hgwJIvxRZymI9%0^ARK(EeL)x%z?X#4)QJIn
z6~LGP#<D15m_Qgu9Us6<b|?PV0i?V)Z<30f9KaOCQv>*OurZ~(n#Z@LO2`S$ke$#a
z{tfk8>dXLU5yYPzz<1<1%5g2z<_EAKfM!874`N{e-v{s}fVTlG3Se;nX9GAFz>)x#
z2Cyf9-vU?`!14e#2e2i86#=Xa;NW^~LjbD?YXg{@HM%;0H7p*=hLl5M*2!qIVST`G
zr1(Ps8yWK>brV$reo`PYTLah@zz*2}Y_(mrm8zfr!@n@|E;js?EO{hmw~F~afV}}6
z3*dMF`xtgGMb~Tl2?wZuP~}ZThnVEBia8R%QL>C&&Q3B*{u2S5lrZ{dROG1u{!)>r
zndEPo&#9U;k>eja0_Ov`5Ww94?lJgc05=1;6~LtcE;Hr|^%^Jhs!DjBaD%1{L&hM-
z?Evo3m$WGpD|$bG2LU_};01#pGT<5cQ2>tvcoM+V|Fn{9(kf-rUNY=e0IwPFznm!n
z?*d2_gf9qx5J^EGh#W!W3?g+9X@bZc#Ct)c4I*6-8H30a{CBNoZ0Uo@5Hw~lC1J{F
zQ%)gE&{!-vvIhShLpJ4Prz5R$1(7=lQxN7L-e+x|AU;s>dFlKwb3WCPB?xN}4%SLv
zHjYQY{-1bh<qX0_$4!-yc!KbfPp3*ePn8G+5e%YY5S4-m(T@cYCxoeyAT)Lwr6yA)
zkMyMnkqDxA5G8`h&)|YV6bhmMIb~K0ljSsvC{x-NB^P5V$x||jQgq5wOH<2m1|&&Y
z7Nu1=!i>hT3jY~H<shmAQ9p<VK~xQ*8e?h&QC+o?{5688$)d32`H*uZL#nM}>I6}j
zT#uPkX1ie!je=-QUmS_gos^K~O;oF<1j*SVh?YU@2x4att%CR{h><~j5k%`C+63`g
z5Cei}8$`PxJ_+JewrU?lryx29(LrVFNRW;`CUjMP7v*;gqC2@q5WRQ`Jz3N_DjArJ
zq_=9-pU{Wem)cM5sFbrC$P7b+7#75!AO;69<UawQvq{QyrDPTz9>j?M%>1Yzz6@e{
z5G#Th9mH2bd>h2fAjSkSHi)UrFfNGkgo!~+VB4?%lObg!lNccRCkHV_v2?vHS8Q4k
z)0HzLh;I~2!&yPhmb-co-v{xX%DEtjIpn!P%p=U_Ny*wtLQ(0Z0jFybQ!NQ%G2wr;
zOIci|reb9ftAh9`h|NK)4q{CZ8yJu>a%r`ey{rpjJ$>mys(w(sk?<pR6IE)r5Pqi0
zc(xL@QMappC9_oh62z}TybR)15W9ld9mMq@ZUnI>h~I*^z$Oy;dk}|%IKtxIAodaV
z2XTO7`$LMd)@skEWKL1(;%E@Z883W{F)62ZB8Zd9|1*eF<iC`2n(%iJX9)jL&r;7(
zCEIzz#ckTfAT9-QnZ>K@;tB`$zcE~6QTn|Z#H}Ens0_CW4}!R(oV$d3)cb0#9;(_$
zgvb9${xpbZD*1E9zu*95c&~$aBRAd<-Vfnz5bxxc9zy02QiYHdLb{N#TT(`dkg*o2
zscEQEOdI<5elDCogbd2hNRWo_DJNS9S;$#cl{9(0DLFg4$PqGLM{<Uc>p!)5Liiwr
zsv%ShA#VuzLI{Kq48atFnPKh_ECfmA2*DbHO^wI?pFC3QWYMK+J?zvQf{%`$y-S#k
zLC!bCVBr!B3x^O1LHo~CL_<hsOpF?*>eNIC`3VK6MM5Y@kmQ9zD6BYN{!mfH#R$da
z1oMX^tR#!2sHLf8LU^%JlYx~Dp&Xs^)C$y!)JoLK)GE~Uvy97Jj_M)QrBfq>nuHHS
zsLj)<MU@y?sXD9@mJ_c>mLBVe&_J>HjYDV>!r5e;OGeWWnuYLN2)~EWJY@VDI3t8_
zLTC{}%Me<H@KFeZLl_c5>k!(6&@+TyA+%+-k3;AZLc0*!htPpzkiI&zsw1@%HD%+8
zc2z|gLpO5w5PGOpOBw$sA$-cJK_T=eh(CbPCxpHs^dtADenypSl3co$$bo8ah$+R-
zLl_#us1UvkVHktO9Ij%7M}#m^`Cll1bO>LCFfD}XtQr%-WWv}G#)U9Ggb6IlwwDZF
zhcGdONpxfwDgBBsJcXw4)c>!xC-2+ehUCesSP;TY2F#+)rhZ42wsQz`LzqWM$-gj!
z??YG{!aACZs7pdvObD!sNkci7hOjJz<sqyHVPyzwc!H}!SpEObc}h+huryiE3<4V%
zoHDCF(A+57BZN&M{1n3G5O&kt62jIHc7(7qgl*DS#n^V)pH<_Tk|G@jg#~^N;rTRO
z;Fl174PjSE{%9GWFgw~ee@u=!X^f$k9%zhq4-?8T_HrMd3gfRZ_Jy!NgaaY`A-gV&
zc3~Wp!H4iNgjXRP4&g`$H|1t>L_ZqBu@KIOa3O@_bWTyF>O=@9$$wH$9FB?k7x}b`
z`I~SigntNUspqJrGDjs|j*B5&r6YWaa5;o4Jj9vvvv!T<bro|X1Tm%RRtUF4xD&$N
z5T2>pdm%gw;ZX?pWq%$^maqp39uuB~@RY$)o8kya%yX6DMF=TPUWf1|go<HQ3gc}E
z??T8JMy9YaEvdrDKoCv}17V~NBMqHqIgmDt>XVJxNT*`bhcTs-F&H`OWQt}E<GnD7
zg;6|=EMa5~!xe@*jBH_K55vJ$Il{;phCPfA!pKD@Zy2%T#);=<@qKC@28fwbl~2qt
z%&f9frOFb<^saFMn{vh{C3>yWq={1vTL$b2!y864jAVxS!ia>Sh2akyGZ~;6R2f2H
zgvs)3I>~%=L~QtdO~OQt!Guvbj3QygRlH6}Q1gdTfKZTHh+02~F|jfv8A(w(0t2=h
zlU9Po($tb+lp=^fevDQojIv>r3mZ#TK8$)yB7>>G7#WOkWpd3hJ|tA3Rt=+?EK?XY
z!jMTQ&V~W5QLQj)htVvI=8UW(X~U>buFJlp>jo?~r8cCB*(i*BJG91OG$9D5j6WrL
zi!fS+@lhBp!;n$QnB@>?O>Lvhl;HMZbO_`3F!qMgF^o=OtO;Xn7@foTIE-0g%x0%u
z!sro3Pjc5Vx)HilWpZRla`XygNEn~<Og{<Z(=d96A!j=MLUJEQ_6?(782!WeEQ~>P
zq}6~h1}c^<Er*zcm6NhqLs^^@#;`DklShOxmM~I9ei6nf#a|Lehw+ti#t@bzCB_lP
zhcSWhbr=&>jDTD+()(oPObKIZ7}I1|)A^P<gZhn%k)@ycALqL;=7h0a)y@rLvEq4z
z`C%+j&cZOhSG*{U{5<z1VJzjm$%a`*kRhdPm=$5H3}cn5T}?19nNG>;!dTB#JE$9|
zKT>}PV<SQCb&_gR7(a!vIgBk~Y?oF`jOE)JhV0~RyznDo$aazo<mWKt5RjOi%pj4!
zgz>B5U197d@1g#t{M|_jiQLEH$uRbZaUhI8<mON3%#Dy7hh!gyaV(6(G>=f_ULg&S
zlTUCX$qa}iQz80i7_WXb0?sETPKWV#7*8U28o`+`{t2UM1l1xq8^$>aj=&s&@%+y)
z9!ppl7s9w0#-%VWhjBZMJ7HXr{H>yL+#p;H<60QkWoG6Z4-S>1XS0~-P1fED<Nhp7
zig&}fCoJ~?ITmQS2N}onq=Xy~!w?ozjz_ZYD-C!W#<MWeMUbB3c^<~=Fy4gmf@xn;
zUs2^T(JB4DWig5I@4`q$$ccp1B7)Qrq@k0RDrU-)PNnM%5oC-YR|L5u$fRnsN02#!
z_aev=LDmSe(f{bKaV~QFw8GH)1Cn#7_?!_$9>m3bKY~0o^F{ChLC!IyRo)0<9FG*`
z94!%88Bja|TLkt9l2tZGL_P`uZv;-|xCn0Q$v(y~d=UgA2+{FJ5Kxg(pDwjw7Bv|a
zVeoOINtE1xk9dtm5RX7ttqMhuh#-Fi1(Z`T0{NLiTGiv23rA3dRYj@As0F8LauG>P
zi3mzYP%47b^eaYCCW5l$auLW3q%60bwFH-^Um=2C%v^~@@heAAMX_w@>cSCx7(uNF
z#v@TPg4dtLJNy_IO>EL?M^Gn%k0a<3!Ez+(M$kHfHWAc|pne1mBG`>Y;|Sg$A<!^_
zMszN)`0R|<B!YLl^`_Kj5j1CH3u;ShE9ytoe5n(Xr=m3$7_YUJtuijwE`s(PYKI6q
zM$n0zqjd7Aq>!9QXBG>jHrBms1l=Og(#N($&^>}45iFAdN6=GFKZ4N_d=<eb5quiK
z=Ml_Fo#-7wp9ls-P$_kyFIAv_1pUa(QzxYO8TnK4zz7DhIG8$wI)+v94A`L&42xiR
z1S4ejQYXHQU}OY8q)vPhfz%2dNSzQE6~PsP#AHvC7!$$R2xdp{T?FG~@*~)jCNVvN
z2@!l9!ITK5M&L`6m?)=~CNWvoI!$6y1P#+91mqZ=CNV97nQ0O-!nJ7<0&-q6BKU^p
znKX$9X%gQGM<5`_EDlCsP6Tr!SR(U~HZd=P`4RL^n;4xou^@tl5qvLOG;KnjXPYi<
z!bVsWL1n^XS>Ky_%e0B5Z2Lpngk(67HnAdti)j;UB3K!L6y;bI!D_{F?rRyaE`s$D
zY>=6WU{eG?Mes6hB73?-AYEc(1V3`v!ZJ~%(;5C|wvx=kTO-&O!S)D#7E?|nf*ld;
zjNrIjJ`wy9!LJb<;soxZ?up<x*@`KgCXwqW?e_@wviL^?`w07Ggb_4Omyl_fqj$Q*
z1jPp#u!zOO5gdu&XavV-9#=8j(<M$u@F!>Wp9pTHOCWvXR0My~IUT{@a`PwK(kBX}
zH_l6rn&}f~BRChqdD*=`>o1OLgVHB1$TgMT=w0-(Y?26WL~t{LtFjH!C*=4ged3zp
z>$0(F-iqLM1dk(VmmzT{g1fTN5m+)LPNh%Wi$L@~^|p*EeIjj!#6!8aWJt*ING^6l
z{|t$V84}Or)*+X(h6Wm5$fC$HwU5`(@Jcqb+&nedG`xx6t=y|Myr<z^1gSLRVb^lw
zO40xgb0@|#X;@w=mRdswP2Q8B3#XxzmYPmOdV=^;n~^bZMrgug)5hd)Us*Jq3&wZN
zNzSJkkB`o(AsazBJ0S-(Cp8x}H}!pL9t|H5@=~Q$kyO$C9pWYpqGqZ^!_o|i66K<H
z4Gs-uG?dlg)bMkLM7KxrBGOQUTRy?2!K)#rAujJ`mG?Ah2y2LFkkvVnAra6J)bJof
zB16VRNNO`CN@q+o$e7SHL^UL9IGi!jHDh9U#>D)LiA@<3a*bTgn9wyOWM(oZ3Tw!(
zp@4>h8VYGh%4Edk$&`p>N>s>{Xpt$=H&a3``IVbA2`;Lkn1<pSvLxbF_<p<+8cJ&D
zaZ;O*DN%}0nz}4gLd-px66ItCA8FMzl-F=6Q$mgkgo@Nk8Y&a2P^(fUCe6*zy;HI3
zntX4CE>Kf5Hh>%-5^8Cvt(-c9y3~5qVWr{?H8j$&CyL*qXsn@$hOAL!i=wH9W*RnX
z_)$Z14J~92HGHk1rG{1-dTZ#T;Uf*LHGHh0i-tBD+G=R8p@W80nG^CWl{oFlNAGDJ
z2@C($q)LuX8aiu`qB(Oyw5x`04ERJtcbOA%FAY64$WIXxFPZ|vvTx<xYAJbS@AcKt
zkHsO>{u%}lif2xIreSKw<dn#P8V1oHOchgpnf+YDP!@-27^UG$4Z}5z&@htb7gS$q
zBZH{?DkLyk!x;KsQU5oRu^PtF8Bc9G&lvVZ4U;s?*RX)*WDPSke4}BC3`~QJWSWMC
zoRH}ZkQtL!-)fktVU~v38hWwz*Y(C2#$`@?C)3_ro2y}thRqudQ<BVME14@PF4XY7
z2DyCJYFMOUv4&Ojm&oO#K}Nfh#bwmxn(<qSv|7QUfD~m)1>{(*L3j<TBw(Fv7!4a#
z<PUPW1!EF+A`uteBrB!iiiWE)Fb!KY9Mf=I!&b)sqTyE!+ca#K3sz;2pI&w--bs+n
zuuH>k4F@#*Av2IUu}8yitdcX5UmT>P-!<%|BgK7${j%b$I>@5@tSe!19FohK&JpTS
zs`%?}gietE)^J9{N#*~k;gnoN8cu7F-J7xrWfw`4m7`<-$SqF8d6~e`v9p>ykI}gA
zN!10;;Uy-ysNsJzd0Fu_4cFxktl_PO8yaqEc&gzU<8NuWtKlB`wuU<d=~{N?eewgU
z^dbxQQ1K%TkIAxIo^YrV@SM&o*)XfL7n<=UH6vFizm%QU$(W7Ttd*@IgMTL+MY<@`
zN0Af-qUfa|Z4{}a#<i9vYV0C8cQFNixuD7ACfPF3&&Xgsr?F=;MUgpb{PZjQUKA3U
zg&9(=o$OKMh@xW@oubGYMXo5yM^Pb)+)=zAg*^&K6nUcfAPQ>~wkYyOkuM5U6y~Tg
zNXaQDA{#)!!mh=XBV~#tSb7(AM&XL0a1=$Na7W>hUt*%rqVTdwi0Y&Isgf-aMNo0d
z;)Yq2nT$q}97Q||Jqo!oO0XQU=)bok;Y1V#RrCC8RUm5I_hiEqiW+-H5{ed$8vDFt
z6s4jl#<1d1l#uh{lu9012vPaHpfqdCL{V1N%FLIexhZp^BB4eUH3^lXs7$C5MO8vI
z>Pe2XI$3U0A4XA&+%$^XQPd$fjG``~K2>_J7d7rb0&+B<DGS#~)i#cz2|4AaCo#>U
zXdXoink}PfEhkQvUmT_OBdSbATS9xP`0WU?SRDu{GtfDTkE8f9iqTPYiK1&1L!$UR
zif&PKXIM{egC0@iHYiDCC&<$GisF+fK8>Px6oVMnCyKsNd=|w37W+lfpNBM&Vav{!
zwfNsT4vZStLdxk3jzWSZOm^?kD27KdLROrcN*uWgMslCau)l~Jmy(#H7@xAYzlvf^
z6icI67RA{Aqw6i8uBf8F|L1-I>F)04-Z^J_Zqp^wT}p=t2nf;*f^;K|fFdObA|c&K
zDu{%D2uO#N)PK(&@9*ck-v7JStk3$+o_+Q?XP=mR?=#Q60Za&B8U<&Ei2+PzF^Nf`
zXj`7bnnrdiS3&j82w)}~7t>_R5};9=6~OEO<^(V|fJJ=iivZ^Ff?CKka6TIs1l)Tf
zMW7-SoVFk$osw}$080b-lHFDW@KpfISTASNiv-WjBQ@rm09FOCBY>UkusVQs0e9CW
zhcyALrS-Ve@748f0P6$Tz;2rY_&$K|xM3UF;sxAHmH@UTEL#HD%9<*o!}Hlr>msq5
zyy?1&_6;6ua@Z5V-T?M-DSFRKmM;DNU4!>%+YjIn^-jSu1&0GT5<p`GO%xoZHq*-$
z1(_5a3*dMFe+F<pfD-|n<WQHHrvmtyHY?Vrnch@96TokLdNzPx1OMLl&#{FXKzqV@
z))xY}$l_7}zbCFzV#$HruCV25!v049*AklUYc~S88NllR-URSh0Jj48n<qAHZnpz?
zOrxAuqr2Ok0PfO0mK3<hyw7~Ve8_yn^qlFIN1ji3`%Rxtdl~@o8S{AnFIfD;B>PJi
zub5@iX>WNFrcsbqL6QQW0w_qPAQheRZa}+Pas??Acc#6=#*|EN9K9uwTKV5yF`a@8
z3X*e|)3YZPq}u^S%d8-af}#qFDafiIn}S>lax2KrZZkN0Iaudp{?BU7!>5H5<Yhs>
zZkA6$e%2JW0E>cD>8&!f#(&5VD9n~3Od6Ep3Q8!bsGyR9k_t*G2r3BiRl2X0R!~Mk
zSq0@37z#`Uegy#qLV;AEaM!$<Ppizk!Kn%~F7DZ>4Z4CV>D*arvA@GtZ3W)Mrd)ZR
zVYWxuheA<WqHKvNh$|?sxcA%&Y@s6FS|(AME%g;Npjs4ERZvYqbp^E)yr-asf|^tj
z`%nYC8fiW^ODwK_0n}DdhlAHuP>(&SJzjb#K8+XE)lhM7-;G$4kwP_9&`d!e1)p${
z<_cOVXsx)nvla?kvY^+Zv?ac;-~*Z=3O-iQMnPKzow!KGu)Aj4DgWNY+bih6_KwWb
zJV`n$=%S!2TgbVGf)5pRQ}7X6x--3%MN^R+=<rUxSFODi^iGte#`IOtPr+0L(-eHF
zpud9A3dSfHpkN@o4OK9R1vPsx3wp=VDxEfjHLcKL3Wl>Dp<pBnN-5pTMzN-C&>NSr
z3O-XXj*Zlw@d`dyFhRjYD!#-|Eg@1<iIdneMZshR=O(*G??yH-oi<&;3<V1nEK)F2
z!7K$|D43^UHiw<doWrCB&^UU1pU;*VJm1K&fD+D`SxgIrwtc=z_9Zk``uaDf)0!7@
zUqR8aT)~#a)fFthQt-8cl?uL5=>I~nLBV%4SPIrC_%`9Wmc=>+-pg`|<L#E~X-#pH
zHYPkbv)IJb{(A-VqQ$HC2O1Ri+^S%kg6%YO6r5CWO2G~VJ82K+g1eae6zo^9oAn;%
zUM9UA@S+{y(?iUIyf1lnnjS~!7NFoKzC^|oERHES&VmMx_J>pHw8=mEPbYkSRq!*-
zd<AC|_vU_<?eu!@5vSK%2<O=Nn}YK!E-)`Ly>)$A!4-N;Lc?VZR~7uBV6Ma$64w;`
zsUW97E`jR`ZqNoRK%Z#eRNR*zf77^U2;{G+{-xj+ZD=*s+sr!(?3(Ib<~`<p<^u%}
z6+B{}$870)$48!2ki-)OPiY&^h-V7uW7X%Z>9LUa@&#Tf_(wtA{pw5RE9Pq^U45hA
zE$bxV`jCZ~OrX;ynO)#*4K=v{#VK1|rVx0Cv~c665^fjLvQ90KMxgCoAK9rr=>*6*
zJu`zqMuAM^Mn`%rtH6&n)hx^|_e+x|dp3cQ=StI6BJHs`1c($Ww?G~NDWD4E704%0
zN}#kret`l4@752L5GW{6NT9Gl5#c72YNxVvsi;6Pfd|Qwij#j$m6}Q&p_tSW>K7d)
zx&34;L+um@2q*&O1U|Uy^9$7GzL2vwKt(e`2z+wacQjmvLQ!!|K<5tD<dztmt||g1
zS7!;>++Rna68A31ry(ZwG%OHd9c9K6_P9WK))f+#iizY@X5r<kDqW2$)wnK7b#;Ln
ztjSpauJ2ueS_1D;F9bFUY!awLBg@6V5U3|mpZX%uSD=AFLxHXW9||-QXe{tPWq|Y6
zM4+iaGXd)IsI+A$lVoWw(1Ls2QlK^0NC|Ak8K7Kw>7w?u5$GV$kv-cAv=eC0KD`SB
zk~%BoKu0HmF6_{mxhqRqdM9pYbY~77-2{5Do%Ba6y3-i()t&+$v!xfax4?+kK62~B
zrw{IwULG#fPvBF5aRTE7`m=pFbAZ4=fk6U;1%?U?6Br^e`>v0sE=8c`5$Pa{#}Sk?
zfl&gZ1;z?|CNM@|`CT6!<Uo^+*yWC^DeWXa7nnfvitC!lq)Sr-Cb6DOnZN66#HFSR
zOcUtMacI_&+YEu30<&1pVa{fMnru|jT(*2%)BTmYc>?o=yV4i%O8Js6Eu{G`u$c3_
zL|`e84$WR~TqwdaYB_tZ5LhYjjlfp|Ukl9OCQ;j{4XXrJ3w+0#3a$}YE3htcN@Gnc
z>s#IpNURswz?Y~XEio?--wSLOI3#db;0J*%0teWKdc9R(pTK@T-6pV|HUWVhe7Z|u
zx4_PXCsjl-_weanCM99~4L=z@AMffxzC@aQj?hG<IWJLL;wOP)lpl$762}Ej2;8SB
zEpSrcl)x2%s{*G5eirym;Jm;u0%rt%6*wnwmSYlWq^MK0nf%vsLExgm?*f+vF7agW
zNN&{T|62YKxF+zIz%7A4Y4aDjLEHZSS?a(3w*~G9+!eU@fB8@cDcdxZ4+S0xyrDf=
z;IY8p0?!3raFHhhPX(Uw=+k5-|Nr4X0xtz#3B3OQyXtu+N%$mENW3Ef>8^-m63L~z
z$5I^H485@+rj$q}ky;{+bSKRJ*#E23OJtDnO9Uh`N@S8KBvDu*vqTn&ToSn@vPxu=
z$RUxF<77{eCMu0JMf)F19*MjX`6UV@YNVN;Pl9F?Ig>6Z-L*g#8UnHuktixrN}{wx
zF^S?5B_v8Fd_2$pvJ8clC`VOrG>Y@ztBQn>h)a~0kP@ndBN3F)By<T&!j>>3%mk?c
zw8ha*LaF<&JtPs9h)To~o;~mSB9eZ=(A^R}?XiMHMTu$>)g}FWJt|WbHPtE-|MjUV
z(c!L-`b)E-hD1#oDT!JVp8fx39f`UUgCqt^)Z?DEl4vbaU!s9TLrSJZbGA2@Xd=;6
zqS^mDS__GmiL10ss3q@9d?3+H;v<PR5^W_qN_3KF$Ai+IT1$1^_0i(pe&>JLS)z+X
zSBVeh|6%{HPj`tP5`885Q3fPFmgq%E`#=5rNPHsUk!B9%gi=cR|5T#C!~ltbiL3wh
z^z;y#Dj6|RVv@vAiD44MB}Pb$mH13zq{JwR(Gp|+-x0=1jF*_elauzq!*_iCjQCuF
zZbR$dmZtWQo-8p%VkY}crTpCWO=mq#x-VMDpGbFs88i=tTb4@AqGc#CN22>3cb<5h
zCox~*rHWT77Dz0VXs@D!ibWEOCGJVwmsldPRN^RYgA!j#ER)zq>7w>XtdQ=*EgL1i
zlK5I;y~GBIl@i}btddyGSLs<q?{P#TIj>>kTIM<?8NZe8J9-jy(4#)zCG1pWlf?HD
zn<ajb?h}t&`4S1bv_-maFzG=@FY=EPJNW8;iJcO=B=+*@Zt55N?BNKc>7WSv_^Ma-
zfW$$GLlTGCc!Wtl)E;v1#4+0ZDT2gxi4zhhB`!()E^$iYw8XCx=OlinCP|!;I4j*2
zdWRRp>z!BKZxZJvE+lI4x^t0F>6s{M9{rH$Wj?(safOAKnLp?)0QbT>CC?j)tGBqD
zH@(iXkJs$mtnWzN<x5m##<%_l5)WzTRFPYC`}l~qYZXxOSmJMqClXI-R!F>(c*gNx
zFrPE&WfeU__D`Z-(yt}nNF;G6ibj^Vv=3x<(@xKrksxC-70FfPV4oB!-cgZBMP?N#
z*^-8tikX^8Md;5i#I!2Xu_Zk-L*i;i7J6o6QIVB(HWgmk|A~-Yb=y$oefL4roa{q4
z{X8o2s%W92S&DM`RODCDm@gGjQBXyB)`jTzYE*<(L{t<}QB-vwF{L1M6jNcdPjM9`
zRFqUvicbZzw2Cq;yr;s-swl^&eiG^3N6P|yN<vZHche-K3YCo-(_-o>jD)Ajg5Iu@
zGksX?@M(}4VtRE&RmAwzd;YCjdM&QHf3Kl~o`NG|1r-(5f1i)7q@uElD(qiXMO_vY
zznY5bDr)d)P3C(l-c4MsrJ^JEqISYkN5zYE?l9F$Sn8{2z`9|=(n!UM#jZ~i6-_Da
zDw?bRKD#)Dvzm$@6>h1bmFlkO*334{_f>qrf}V7xOLVm5({@aHKC`2WPAX2T_*q3~
z6<t(pQt`ctt|~sHT2xF`(M`oiD*CG!prX5q9x8gN=&hnBw~(fgn^@M~%;}@z6BYeb
ze5#@^mD;9|4;>_i&=;7n@GJvW3{o*x#b+u8s~DnUn2O;lhO(wVca}IO=paEo9l=%5
zjH1(#tVc0NGsiH!gp5-${y(Rmv!1{OC$gTzoXn)gQ>kexrqdoy6JEs(6*E=LQ8AYt
zW~rD>gTmb;((<HLN&G^^JQed*_mu4avs5Vwi&QLDv0lY7UzsH;ma6z##Yz=la=;Z7
zoSy$wv7D1bLqh{WoucC_6{Km(eWPNPiZv?Ma<l2NNwTkIO<UYL6=eCAQg>RRgPuvF
zB1AH7Q1P9LjU1UyDL74C8u!gAcBt5?;s+I5RBYvzY-du-w{Zta(D5TTuVPv3Qn6db
zVHHPI>`}2-#X<I`aone3zlsCuzfZ1u<4$%GhuDY4mrjqW_({b{ZuT)1$NAC;rZ;Jc
zlz)$>cvh4CMa3D~OWEzLieFV+S8+qdITgRDxT4}JUplYiqKZqZdz-kx7H`M?o%Lna
zz3<TWMWo{oHd0;Jcu%7uf3k%fNZ(|AOT}##e{orIzN6wUTOKg)ab5RWdv#IShbsN9
z=)d<kDnj<Z+2INEsfuSRp3^c{@lT>4RqEC21$nLF4b6EC!!*2Ak))xk=8msV12oju
zP)9>D4aqg+*HA!13Jvr;R1VEeT}ln9G^Eq$ITrUcwT3hr(z1@Iu((DNbSVQHGiu1B
zxx2A<ke!aqd?^bvD>Ivh>@4Ui70;<57oX-PYRJpFJ3rH&Py6@Dc6!d7W?DfFg)~&s
zP+3D^4MjAB$U#F<4aGE+)8N-ooZ8IeUY6sOV3uT-VwToWhQ*e5+*=PFG=T$bF*UT~
zHKOpT&>&fmkE%gSXkCMm&?&htOM}f8hZ#&<r9~9c5Y-UZP@au34Rp|Qql3cQW!<}2
z1q~H7_kS+PNb8hXMMG5$H8j-J+#RVJm#wb-yED^LrLym8sKxg8nAB@;gYsCH3TkMr
z;e8GDH8jxBlHD3=Xr!ST>&6<IXlTmXn=Kw`1EKiMHMG$FU4wM$U22sW5wd(h>C(_%
zLmQq^G^yIMpzVdOcF@p?BX?wyh30c-4PCT<=d%}(N`0uITOz_oEV^sx!J?;zk2Um4
zTpg&Pw}w7^`iX{q8a`#+SHqd}Nfe5X{%jdQeLUq_Jo_Lv4rY>ZNWy=(h7lU}Y1pq}
zq=r!%mTOp{VYG%Z8s=*FLc>@MpJ|w=VG?&_9P@MLcqa90LPAhCC$pZ)q|+%Zyniy9
zreS)*K7++f<}BuH4RctG<@@+N){8VO)-Yegf<)dZ=0d*Y&G03xzho|DQhS!MAWus2
zR~o+7uz@WrnX405zhSXTgBNOzhP7;2r{P-->six(rqKTxc?Sig<2wx-6A?CP_+G<i
z+FMcue$cR;#TMpPCfT=94o@p2eoR<)u-M7m#oVo7PvYuc&HWP<`5(}5P{TP5ziBu`
z1Dc}TQRd;qI3D3<(0%YHwj86+<b4_)$2FYL+$VVHIH}<j>(k7i6ZT(NoY8QW#jgqb
zzRk*c4VlxZRNX}iOM~*-PX}3O=3L^6C<#~S!+%<y7T&e+hlXn!78+P&;7<+LHGHRI
zqmCOIZqj<u5z+CNhFi4n>BynuwuU<zl63fV+|_VT!*dNUG~CzlK*Qe}o@jVTL4H#o
zX?U!m?@WK`mcA9~wPTOP?(|x0m*{?5Jk`*Avq-a8Jfj)g!*^h~d{jaFqv557R~lZ^
z#4e|HnCqYUgMa=5rFn7LW|IGnhCpidt%i&T{98MS+9rLjfn++;=}505x$gd_XKEd3
zbfnPnj*dFLL`of9*2+{mE~a<CZiO_lUPjSuph&ADWoh-(pOxyXeHnBZ$Cb=FvgpXD
zyT31xiK87}>3+S>OZr=Yj*dA+`Z@kC1=MU5vw-_mMLBikVmC#n|Byu<9VK*>)R9+5
zJ{^U06xNYnr>6@<0Ufh{R&r->+wi)+D5!&OIi!o|$h^+~&I?gYr(ZYl7u7K+;zrI|
zQWV$mtfTwYf~B~M(mKlMSU1xjj=9FNI{Z2UI?D0YV=G)^EspuLu*mx=N$8MNiw;eP
zrNh>tvuC%kFsZYwpXGP6akspBd%kQsLpW6Xb`hj56c-Ku^nI8?3+W(|PgF-t$1okk
zb;Na)*U?@_2OSl3RMgQ>M<X4TbX3+cA%j+rgICc}O-KELYE?d^AdN1{>N<V%v#6ot
zSWMJpl6Y4~E!OWbYbWe=Sk%?ga<e42`Z^j=6+OlDn!bx;{YyUZHP+EYM{6DL>u9QD
zVMEzmM++Uzbo!bCk>a{I{-<cE<EsqXGgG!=k;RhVzE$>S&_19Zy%245w59n|Ms0iC
zN1w5_)3K<gyp%yJ_mk4{jqIqSla5|Gdh6&+gRbKv9o=<&F-w-qs&=L1=;)^7O$Mz^
z6R|X>n6^bsA1iy%WXPy}tYgeF*;B_qXQZ9c&7qS~?CCA~a5g^G(O<_WI{MPY$m)JC
zQ{(ZXpAI7F0Xhci7_4K6j#C>%<BZxMI%sq_4*mG})wfAAQ;VTG=;zwWe}s;aIu=j{
zbd1t5TE`3>GpPYO#_E`)W3rBUbNrv_7_Z}V8kCxH9FxjU&@qvEG|g?pzCrTmt%69p
z{$e?W8lPQG(=nAM5`P`*-FL<8jM{W+Gq+@xjw>_#bE!Bjr49bsI_Bu~&l>7+A&4)h
z`R7p^T8Z@;wY;PJ^L6B$?kBNG$6_5TXgG8%(ecwG<x3sQbS$OLI`Z%vHv@&si{W|X
zgd56ooqktE)cDl*wT_iK*63JERp|6D$=WI%+m?ylL;T+k_chrkR@2H|?v`Dr<6GLh
zUb-uHy^aku{|Adl4Se@9YN<16#WQJFhl))!3bbGi<TbFFR;Z3AI-cs-qGK!V6*?|a
za2?xq{G#IwtxX*}be!a|+o@xhjuW)u+?Bg^V2#{Ejbw57tk|bxzm5Ys4$?{~uSPRz
z%`$17M~Q-a1o4m#vK;11N0>*M<oOeeW6a~sKAE&$i~YTK`cCOMt)o?P^=E2lUa@k&
zk2Lk}td3uGoYV0eP2*H@{VS!@WdGTne%g4?(?YwKR5qQMGfiBeIq=-g%<nob>$pjq
zId|lWjz4r<V|`Ues$%XO_>)hMHuGI)QFNiN!A$=R>U(8(R@|b^U&lQi_xb7_+W%P`
zpW>FKV`3WL104@_Jf_J>^JKL9Extphibpg$9R!I2KPbhriKVyX*y?VRo>ATmBs1__
z#|xToI$r8{rQ<avf0CcRkoLk5|AK&cqvQ82{v-oF1N(}}x4O&8nY8(n#Oc2kI=;%J
zB{z`5KxPA347_6?rGaz?(i=!+Ahm(C28xW5Bli1ujPRxUR-`d-yNF7n|1ME7yDx)*
zj0Og55PzTd-_u2bPkppGWHQiqj@Xk)%W5E-fm{Z18^~_pUS*NfK*eR^Y9=j*0U~uo
z;Z;nc#VRqwCxfX)J_Gp;v@y`uKmh{<4OB5u)j%Nwg$)D^gs4ddiW<-i=mv@zC~mlG
zL^V*t!0U@{!b=+{X`mFJcHO0<yRN*+q?Iwy`D-`ZWet=w+`FEi8DP?>!a^`5rQ)XR
zJZHN9t?e@m1ab<?fNj8}w$+olGHb*!=Y?Z{SSPclXVwl*lVJl912F?}1LZF!)y@>i
z{)>zn=#p6*lUXaz!7ET63@py9g*W>4kMfml@2g~>GPO2^*mYf{gX*njpt^x32AUeE
zVW6ggXG8sU4E&f`d)L5w9A|WAS<Arr%x)%YvnAgz?)0e3x}JgQSKJ9!-#`PlkZ#DL
z5wkHf!$YN+f#wEU8+hM9i)x~U0s4bkD+BFP$d*hh_~GZGZ4o!O-Nw09d|+V5Vc(c~
zzIF!M8yI0=q=60wIvVI_;8O#gDBA`;GSHp!&|Y*g@S%ZjG-ESsU6~XlOBStCHD8Xg
zZk~G>=xLyrf!+o_Hn6&{?}(}T(!1>sWYPLi!=QdbQ_FDo_S#vrw<!ZkMM(#V{xk^<
z3^6d&z?4j4pn<{Emp96VKm3CXEJ-UmWzqK3kor1b`Ql=jfp2X|TXeH={^17wUyR$G
zQ3gg+Sp!pPG!2Y3FoBbEXt(&xz<6>qu<$!Mj*WL7DGi4TCoVdU6rW|$CK{MTF9M6G
zlW8gGZiDw`abr%S{2Tbfz&ryhvuHC6%rY?Bz^~2ZOeXo<*(c{1IFLn~Yk+jelVaXE
zH_3F+znjeG>J~7`vcM6GsXLTp6P-*fHSi^E0w$81SY}|kfu9ZhVqk@VuMF%mu-m}b
zRJDOE2DTdb#=t5A8w`9$={0aAi?*S>`mKRA2G$x_XJFI&;^TILs1_0P@5=RD@5?Nj
zo=@FKR}DN}>)%X9w*Sd{SMIFt-21`6w#vSBFO~W?#Wn-mX>J(UX~4*;{n$wSXkg%5
z(fWixk^}U@_1*pc_kD88Yq7_`UIRZFI7YjZf&B&!88~d<QBRR`j5uK6AdSd7Za!%d
zReO>|EAc+u#2(=W9Az#_;Vzcr22L0_Nh8%(zTD?#@05Ylv}V6|Z)YjW_;!sF`S^<*
z&lvd2z%2u3X$TCQGw_>%O9p<Yb!6azfpC(%Xkb_owQg3eOID5kzFUuW%ZEvqX-izA
zT%nE2fPavGR4KP%e{dVF(ZuFO@h6{>{knl034N2r-5W`_X^3eR)8sdBm-a&g52>>T
z=6@#d8+bsAD62N1fsjeQ<736r74k9VWR%;NC$zsk^#4uUax%C3bUfvl^RsF%4E$r@
z6>S|ft7nQ*i^cM|cuAXNdGXypNpB3iHIQV&XJXhZ|H2`Xj^15G{Zyi6I^XxyI}=0-
zn8L(6CZZ-{CQ_P6WumZ&A|_IsNMj<0iJT_Vnn-6NlZnhGiryFLP3#;dGn&XiL1>JM
zh*h<OGe>l-@5^E$tBGtTvYS|OLAmfmX*$cF_jA#?zeqOScjvf#GS`>OL~axLx$KlT
zB9DplgG4?PB`S!#CVt^o1<v@3`+NmV6f|+=xh!O2)=)R?q=`jM6f+@ANE5}Wpouaj
z%9<!?qEh-mDU&|gQ~M9|9lPp3msylH@r+}ZGvPO(X43-HuWTB<uwQgmuCFW`WYZLG
z3<=eQX2LRIo6t>+RNXmdnlMZp>LMOi62yyFg*@SNC>!YlAroN}2hS-%6TP?lN#xie
zs>OYCc8G|HkF#kTru*X@yt;`RCd!+rV4@<m(?nGh)l95uAquQjDx0WcVp2A3Ydx_#
zn|3gpmg2dxW{<d>O}lqMscGU}6D>`&GEvLKdnOu~XlSA~N3LU{E{pe5`jTbW>Y3Pn
zNY<xu%<hga=~#AcrZ3RQL=zKDP29ZhZ_K2t>1i`G(cDA}iqHOJyhmSTkzG6TgJ^By
zeG?y;XhTU>Me&q@_x6jEcST#%eVIz0?M>8KDcYI%DYHD5T6ExM{Jg_mdYw&lF>%Vo
zX%k&dd}v|`ZCob0nfS=WC=;VibT`q%!~hcmP4uL6ndobx9|!4WqK}DBSobzDhucPP
zIw&$7In()$lonqP6Q7#sZ(<W)rT4#83i}3`7)*2C#BdtNRDwouh>4*llJd&uzx%>l
zMTJ7XFFT1VDFY)+lpZ2Saup{z!Wa`{P0XapX5upw<4jDXK`}Aj#OEd^Py*MBufK8I
zaCm^&_>u3xX-RLjCYzXIVg{vRqM-jln`&a3iRmV`@qT`Fn(X?Cm~l+>YANVPNv=%t
z&8F^{m}}w-lU|Pc{?0Alogn=E{qs!Br#$TSFEnv+g<N2w@kjDtN8j)c;%;_rk%`47
zQsmHTG!jK~Xt5mHm$dnt*h&?dSWe5$#5xn-n)u4Z*CxI(vC70s6PHK(KQTm`2TF#%
z{^f&`GCub=&7rNPiAV8gicN=oONaQ^nt1-g|7i|wy@?H!Ps$06>0tStiO?uX9oa~6
znu`yb(?bUSN*hF}nA~jQ2f7($3jF$xkA5d~iwPx*yEeC*_|e1xS`;QKFBdyZ>^8B7
zlf2W!E*9jrVXc^vL)&X&KU@BKBKMhCpF>OkOsvW8X84ea!zPYWGfb?$FOJY8Kcj5B
zBA!0<PrEM~(Klk5I6-AItH(*?(CDC2JGb~xnz&X>URkXCOq&VqS{5=}IAh|hiAN?L
zQ_fACBOeog(nevre`>jC;u7sbCN9wO%<k@KbQEsl`<;5tv+EDqg}9wp6Yalv*`5DS
z7fYITLmnkvH*v$nZ4-BB)(sXnO|(xdZ<+XuW<o95tgIj|d+eVH--8_5T@&|BJTO5I
z<lUpqwx#HtMx8=$1NZu~<kTM0T<Ycq|J%e9^0AQ2a+~y&#>m7A+RbR0G!tcVy8Wf&
zAKK(CtiA4g$!&X;XyI!XZ<ueHNgU_Tmg4Gn{>&47$t|R?klI2T3-4GsQbne;@ZMFi
z(GY7|`wA_PsVr2=skP3jrL~aGLh_UT3>F6E)GBw9?LL#~SyKZRDr!cHo^y7$$}ASL
zT2L)$7P48$ZlSP+A{KI3$Y~)DH=y8MnagrNOc*yn=C(jbi(O*PDv{ShJ`4FR6tGax
zLLqj(GR^H{ld5iTrN5vr(@0ZE6tz&yLKzEXEflv<!a^wvr7g5;Bfih=>%CJgNh9ue
zb4V{s9^FkkcudLG(^t-d--2R6SZG$r7qIZbC3mJh8R1q@rMZ+AD!eNSKNM|V2s+g*
z7}QP+ac+re!M5O7c$7u8=rh2P{%@B1f)>8Wsf8^>Ec98Wge(jh;}8DjZ$4H&>*b4D
z2pkY}Q2g=~+(KmwRV-Ab#9G)8^li$ieUmj1FX8)Vr?Tmk?`Ahq)k1X(=hFtl*JU*e
z#NJE&H)EoPg>yNzF_)BDG)5LOImqmwwuL&BC>w=s)U{C0!fFd^EY!Eqz`_Iz6D>5f
z(1_Y*;S&puEi|#v#X?sLO(_W$T3Tpj;b~4Sb1tp9g>t#H78d5;PO6?ud-YJZw(ve>
ziMvnDpk54oB?~X|wXx8ajqP)}ldzqqEp%Yfk=cn!S39%VdffM+g>Du;ve4ba^UuYl
zm*V6Af3J;xx~=rE@Uewn7N%WRdNPMn11hP#E$rUp-!a^Gd7q%uz83mf7-nI(g-<Q?
zr)*moYGHr{E01r?0x{46jb?ymriH;4l3IwRxwOv>nXaz<=dvg{!B^=6u`QQ2!oo-k
zV=Rod@Ov)J*G-PHFxtX}^zvCQjoxw7+ihz3XBNg=_}s!c3+a3L^is0^X*n|@a@|R4
zyhL>F<W8PRGyyEkvoP7h6bn<S@!a28%;_}Qa%(ea{^xcRRU@}H(?X}*+VI@kYzuQN
z<T@k!zman-q&(+-j5aT~Hs8Vm3rj70No&f&A`6QxEU|E4wx8aT^r`6EGSE+}U~5Iu
zpoY+f`IlK(ZsFJ5+A0exEPQ3*YYQtaJWeYX-b=E^`$s?G9|p2;|Bs|gOWj-Zw%l6V
z-OAI^Vy%UBG?Oh{v+%8j^%f3VI7Bnk!gm(7Tlmq!MhlxP{9s{=H=s0iA1L%Tf#Pgt
z%jzV#qmwxHTA^3qTP<v}a6RU$o<=^-t?jU|)51Or`)Ly{pzg9zvYl@ajVX2Kwa7D8
zrq83%ufFc3O(X0s@B<d;fu5?b{q*W$cy7MW(!NA%*}_>1M=kth;iQF|ef-DBK2x5s
zaA$^~o#eRXe)2#O%H?tMe9FRU3qN!7=+nzzXmBgL@ktYZr3l^R1q&BxO<DMjDjn=U
zPn&}&@;*<hl}Dq~OEfVoT()q9vhky&kK*U969d<Y(`&_53%zrRlF5Aw(zr4Ir2bm)
z*?^536qzz_;cp9nS-8awxKArCk2Yn#xJ|9KaF>m5TZ(%$3Aweay1SF@frW<_M(k1_
zQI-n2eJ4$PLd(;_YYT5I_v6!N7XGpDl2(v~7qlEYN%|<2js<zN&3Uv}l%nKr*<U#F
zp?l&jh0UYU{W{4;ih{mT2Snk`BAJckHZs}BOhy~;*hpg|t&PX|)s!|;**MT$6c|j;
z<*R+J`BU5Ojz=-+)lNDa>1|}N@ySp@pG&98EN;*DH7&1Zv_T}FEH<**$YUd~jchiu
z+sI`jw~ZV&a@xq4SIfUwcAY57W|yt6%bZUneLhd6Qf8Hx*7@?;$Zw;7jT#xmvTI7S
z>q%30s)b%B(a%N~v{5RrJF-P=6t%Iy#zGs#Y!tWA&_*L0C2W+m-MeH(^0ZOfhGE0B
zQN~7D8vz@NjpL`}+a<D`4Zn>_6J?dW8of8Uw@3&Z(#FMCe$9qzqyGg_X_CKtD<6pt
zc{Sa}chf|p;o{LzY1y!Cgl$A@I9y%OMw{=%%Gz$uLpF{=9hq0V+eAcd#B5An?=Nqo
z_7oYn@#9)$X<m&!Gp}-5RN%4=_PR5+l8wqXs@SMXo;K>(xOq%eqa@g<Y2)zczUtJ?
zJ#LoXwNcB)d(^vAa%OIoNXNFk+L^o>iMlqrj+6Cl)TeRGtF0_5lD8BMZ2ArgW!@!U
zmV9pZ8rx`MW4MhGG+s8E+30EGV;jwFw6O8MjSp<J9pG<iqm_-;Hvarl=`t+oNo!d!
zmG9U#f4Y=DdVZ!2^?jqiJ9*levC`j;*`9kuRdle?(MBg5o!RmsvrFP?R~u_8xVh?<
zuzbXVehZKOcGH7Kird-CMsFGj8v|_gp~+^WpN%^M{AI_;zBaD@BFfbCk)}AG((JwN
zr_ZRX<<kb*7-VCJjiKc8%H8w^bMRbWh^86kFxI<LxV6)9cC9kf#wZ(8Y)rK=+Qt|g
z<7|w#G1kUsHol?9I<L!gZG7F}78!rccd@Vh+{Q#3lV~7ni3v=)lzU0wadGuTdNJ8X
zyL=k0#A!CB+n8-*4snAh_S8Sa#!OlT*|b@d+jL^x7BMoPwkV%Am#VI;eqm#tje*rf
z!PiN5R*O5i#C+;+F0mz_MqFfLv5nI<ezvj1#!?$U*w|v@OB>5<Y@qpRW4VnLlv^8X
zZG1(Z`LvSxwN*C0rqr#GE2%p+?&i}{=GW+yK1N&3*(hIBy_8qp{?fP3rccJu>l-<7
zmfwDyw4Se0*W`5nMjM-GHs;sreDCjlPcAGc=-Xhvx9NW*)y+(D+iGK*je|B0+1O4~
z-Ns%U`)us6vD3yb8@p+H{7ZDouZ_yDh1N;>uyl`&>M6y}{94OA>Z1G_?fIATyHj*O
zZ9bHZoG5e09j3!Jj&Ng6P$n~KV|t6DHh!WdkXAiLE1EC;I8V^&3od>#(ehKYrk1-A
zez9@J#yuPNZJf37tBv1nT()t}#&0$*(89NIo>t#$|4+Gm+kO|Tk11becSpS8N&h9<
z`g)4!Dmitu?+Q&STAMchvhjzFYqUCST&E0Fld~52ir)2apWw4wxdm?|+HlTRe=DHg
zqM@V&<`r2BXt!y5EZ}x?US4t6#<af#i3c_w+VDAmgGaP@ZTw^7CAGP;?{6DVZ9Jo9
zyi}hs%N5X`+jv1ETVFI7;hWz<)LAR%O%?AJ&|cYiZR4$tBnNM3)f5-BW6z$U(4Q2m
zmzDj?h+a>U^q^?;lP{Tr<PK6hNaKLsex`76HG@p)Alq&E4wG7V@<*A<K}T+FS_gTK
zD(M`gcTo4FLh~epgW=Epy$;HZ4)n?@=?>4`Y-e$h)xjSQu2CEZ*&PgVFw{W~2RR+o
zq2dm5ImqomI#4OBgS-w(J1FBIpM(4kia01rmIq1!@?R(lIqvI?g3J*Gw84i(VF&XI
zXhSxOVh)NsXnjJKa!`VrdQxmDpp|q$e+46bu7K9PzMxO4sa0hilyeYp+#7`7L9$sg
z-5&puoBk);m8JuH3Z=b(_RV^~aIpGUcURG<Qw}OPsOZ3OU~<8jgDeF#%Yp5{anNwD
zEIr)~9(2&@w!7QV5n|6UGvXl1qA`DD7pGLGm-J4yJk@facYX(z9aM8r-NA#ntm1(F
zqjtJ3syd(#V}Ca!eG*&4K}`qL)QxYF-gQvR!F%+wpT}zm0_6&7=YAKx|B}@TYWCl<
zZ!KBRL48UEHOWB(YNUgf4q7>A<e;&GrVg5sy@sHcG;#2C7V)UA_~C6*a|*aqv~VzN
zr+<(pAJy><c}H}<o7CFD`wrSVXy@Pq2W=cozvQ2pTy`7g&l>QRp6j1=FKN~$_w%dv
z4mvnEcU0+EP&+k3JliBYJLuw|uY-OLx;prfI_033gKiGm&+&icpu2;cwPlG1Nj)6&
z<V1b+g^&KS>}7KBP&c2wX$ox=eY`Y&;j7(Nd_vuC>t^p$2mKukaxj=?^6z2*MNTOP
zIw)Ml9hA{&WIr8!#`y=N7KN&bO#Q?#nz0TxQ78u^9E^0Z$iZR<qa2KOFv-DW2V)$J
zbuiw+=MI#sLa#4gwh^B>7)SPkTAO3CdUp2@*%N5Iwu*_A%t7+KS4s4dKGitI!Bhux
z9em+n8YRlXEC;h4%%CPEsWTlcEvVg_C`)XXI|^!b#)&%{6&lkyb>$ofM2awvCbokG
zv^rYJqOE1lkV>E2He29d$lZVb$W6!+ibM0q!5Rl&I#@=7=wPLT<?OS<!B;F^<n--6
zD#jJ@Wji3gzMn*Q|2M~!Zyfv_c0Y?)MIApWNUU|R&cSyMHaa+8P&?RJeCuF6N7#|s
z*KmSwgBPu!Mqe}7ri1V8422#$+3es4nv)KWI@sc1tAo7`_Bq%_Yrl}T!@*7m+a3H!
zNzg_6n@Iy-DSK}v^$3Yw4)$=s-OQ(dyW@EIrMq_aJMa(p9dvNW!2#M9dI)2eJC1Fi
z3bl}S*ulX*zIuhUI?H@NIXFf$&B1RDjypKv;57Bi!AS=Lf0Q2=(mu!~vsRF&s4*4X
ztp4KQ3=M>IA6Guh^^);d7T3DC4H%zYoOf`+!4+Bs4lX*l<lr)G7iHz7LhfF@s*v_O
zHK34ot&lcvr~jJfqqiro`O=3CeSbQ*?jRmS`5<o4l&0YeB2N&1Ik@HE9|tcT+;(us
z!9&_-9Nguq?=$Z)$JTOtO2-2}J^!BXG3^x&o;r9&jmazftrc1h^@)REMoCXc)Li0!
zUlrRfD$l9SljRFqp#@~F!rChbuN}M-M9LuEICx7plpvA?VHVctFQG|6_=2ciSZnmN
znD>$BT3EaBq4@QP7+Y9N9>mhZT8bdP<q;{LOr#1TeGnOfNF79)Akqf0C7mx_(4FUW
zcrPaD&u1Bf$P`4DAhHIrufH#I(A_`jZ((ovQ~GS|ziog!zS$FHbFj!6L@pNe#}PX6
z29Ylal`Z*$C=f)6AW8;NkS&FRC>+GVQ*w7<tw<0>gSaI{@gV3$6g`J?v9MN*+|sIt
zmy45M`Q><DsUS)RQ7#C75cEdlMp;>g1m)qDa$u<F)LT3+tkF&z2)fS;i6E39=sA<z
zMKq!eq8tB6>#eFn3qlXVpn}|tU=UUi^t^{1gjPf=xK)^ieDogHp(NjM(-I0I97H6D
zXb>?jLPmNbi{6RnAMZMBDXCTnqGAy3f@mK^r64K?(VRW21W`4JMnN<VqFNBugQyWi
z%^-FU^Iypvpg%Npt1TNo7w-m9D~R`k7?Q@FGqt&FognH4aU|l-_RYCP?IK#eAnFGZ
z+9K(+K@dHPXbqWkO1cS`Y8phdAbuI@Z@EVKrLX^;P5yC3v;kMt7D2QOqE!&f?j?N?
zM4KR52eEvLuzQI2gCJ5ZZ`R1$cg4g}{<cBdaMU#&d>w-57{u@(Mg-9*h|WQL5=7r1
zx&+ZRh@L@w9K?r|+aS7AOSl0a1(E8yJ2!s2B8nZ7rB?mB3brTn^`ePt%059{-z|F6
z%7VJ0h}JT>++0DF9q;QG#HW;jAch9fKZpTA45AF2Q6@eX11Y8Z{29miNK@njZ^d9r
zX_DMrLhLD`t@%S47Q~{}vTsWD!EWEkAVvi-IfyAij1FQ<5aWUvPwjjz>9g*!H0Sfl
z&uB{T6n_@ch&R8Np9e9C+LKI72x1~-IN;_ysi?MToum&Z)28)J4Psglvx3-h#8>aQ
zGCha`S=AXqTsx+$de1kLs>q<yhd=ZY(Ci@Q1Ti;=FM^nvOwfZF9r+gq3n#fT7X+~|
zh@(;b6vd(-7Sl+DaVCr<v{ZvQ9m3Bcd`V+OQ!xZRgyli32;yE4_i03e_&SI)oaB|v
zZ9!}g;+r5=QFns)=v?WIL2L?QO%Q8o9kGRs8)ye$y`D+mYe&ZKSkse`q`yyiZV6&D
z>mQi%oJv>e*vh9=<VVUt5Qk}62C<Wk`<T0!yP12KdzpocYE*nb>jTV#%tK82ry;s}
zl=VsGPt0S?<IEGx2*)|a`ZV)r<}XZ2EX6q+#IHe|3*t8#mmvNO;yhoy%)G$7$h^e-
zok`P=%3fi8mH7wLi+r8+U(6fKoBz3bi}h{h9p+u;<dtsB2SGdxB6kRRLU<I!W7>5?
z?oRu65Kn@58$?nFPuc$;<}>DV<_o6RhL@~gF<&#^Fza(pd?9z--(iB8jG3I7g4v5b
zQ?gFQ^kzbu5YmQ_jx8CP>6saruYXf0awgW9nOT@wnc0}xL-@R?Mn{eia<b0FEcaB9
zF)#O*x?D1Zd?Dlyp#YaE$}Gq%#4OA#!u&FWo4sPJi!)0wy=;^Up>zmk*rG7YGRraj
z%mA}{OE->SEtx9Q>$?$x8N%og#)M#nV298ogr*@l+~#-)<=HtHLWo6}8DU15F=o$e
zZY>o;s2IY#A=C<?65FdWD>JJwt1`XXtFx}btjY9x_a5s8%-YO4%(~2a%=*kt>0~@>
zpdsr<%*ISFezOpohtNHQ9wD>{p=AgiLg*MmEB0x_Y|VV1`2o{wLtEDEnC+Qf%ucMk
zGCMQ7{O9V2th+HkVtUbfhVXF+149@TLNB)WW%g$FVSd8&{QI%~l-Zv-fVq_C@L<-%
znM0UEnZuY~J4dh{$sEP>B99H>vk<oM_>K!<d<aWISW441gb5+c3So8#6WM<na}skh
za|&}Rb3eCaI_nwCnM|*iIjrY1=Q6)w&SQE$3s^5?E@Ccb4ms}bhhK)UEQEC-d`tU3
z+rMG1V1C8?nz@qMR=T_ND%Pu+YnW@9t?Rq<b3N-#%ni)%m>Zd1-o9tOnfU|LYwgw$
zwuP`ggdamV5W>L_cJS3b%$>|#%-u{c+FsWCnERPtv_q_qF%L73Fpn~SVxH#=A7_1n
zd6IdGnR~9=qhCTeLlZlUR$-hC;nxs~hEXhxb0Pc|LYlC<)1D9E0`0vaJPzSv2$w>*
z8Ny#7{LXRyU|wckVP0i=?YzeNPv&*z4d!!h+b!1jn75gCn0J|82JW+dz<kK`BL5x2
zlMvp9kQByKw!dUPV?JlTVE)6TPy4CAuUNlkzF~UNd|}@InP4VkCTFH#W-aF4g;TOl
z#Z1lgBBTu?T^Q-Z$Ph;EF!F@y^9na+HfAPfW@Z*<R%W_^?mag<>m1CS%v?<RK4iL@
zmvupAK4yMq0j5`bA=ZVNMVMapiic4mj7nit4x?lk^rA%#Lkpu+7^TA~!=8R-S!Ow=
z$~_IRR+xe*J#KN^OotwZ6Gku$gY72MV%kivZ6Ve%W|$daMwwna<E+awD=;fE>vK!0
z@I0)??XMa}wJ@sl)%Tb+m^GR2GHWrrbJ^Og>oDswy;ju^qd^!A+0vBRh}oFggz2@d
z8SCcE7ECWf>oDFAV?`KWaq~V1qhA=GhS4UBwqdjjqdhr?(LIa~T&fGRBeN5;Gt-OK
zmGy_rZcMNC9;|yadon*}_F{TIeOQ0O?923G_77t~7?Z=862`zV28A&yjL~5XW}jiq
zA<UsnFWPX{BbXzZUbHc+KWC0*e#RWf9Pe2;=Mz{@WKLpwk*9_+EsXhLEC^#d+vhN6
zFlRDnF=sOuakROtzhKT|deIiLUdmj=T+Cd;^nAW#y^Oh>>Gg%SwXeh2L<1MbN*=y%
z!dMl?YOgGF4RbAX9rIh}4sO*3*55HVGXE#?<}mhzu{Vq#!q^hVR<9Iu8*@AJN2b@#
zove2;cQd_c`@+~C#tF6@U>;!}WFBH3W_tcdS^va5#yrlv$ZbB!`V{jt^Jk`4_G}ox
zhVf?v*CRL=#&0yeBlsYK^I=?|y&{6L5nK%8QW(i1NFH%-4ZnwRCycvcTn^((7*{#k
z4dx%rYs^2H*O~OcY_xUUWc?TO7V|cfo)Dv}_rkaz#`7><gz<pwe={F4A2A;@y_P>=
z{gnBP>1FjF)^C|FnXj0ynQxf%cO|MZDdO(cJ|>u6<P_Y^ED>al;GGCkMv#iHre~&R
zreUUKreprY+0MW^BQp~-GxP8{x5jJ{WRIX=1cf5V!S+1NoXlLz+)S?}d0FRU=4TdQ
zo;dE_#|yJA!7Rco$}Gk#&ZI9&CC`$qOEF6`y<C-xz#l=C2&!_I1I%CqN(3ST$(|-t
zWok^FX)sG4aPJEiYn$mXz4nJ92uBcMOL=CL8Dqwoo@WKt6`7Tom6^llyYZ`W!x}KF
zM^GbzntZi3^Ic{w=6g)9cXe3TW!7WXXJ#+%-eDU?&?th&Y-!GH!feWH#`N0Of^|z~
zD`so&>S6cQW19%tMzAh|ZzE_ILHh{CMKC^s4iR*WU@*72Qv{tO=oLZl2)c0D?#!;t
z51HMVA2HANaA!*o);*aYGrjioVf`ud6J}p#Kc?r?pY;IdK;|Iko}e3fNCZP87{-=S
z%;C%t%#lnl&S=(Sm}8lrF$L%F^9Uwz2bV=KF@i}E%#GlS2qv@74CWN(ROU41bY?w{
zFq8Ex=4|F1rrZ7E+C0{anDdznm<yR+3m3Cq!d%Myk~x;+FOOhF1Yfab74vK6O6E6A
zZ?>#vy@t7#>BV0k!G;KqM(|Sv-*IPY58N5S#t1giDSK{XZf5?#+``<-{C=4`hqtr-
zk-3BE#orad?g;j<<sfq}b02d*^8l0nRzh(Ou|CW^!t~-COSJ7=1ji#d5y46CD)SWc
zH1lWXGS1H#)@PZ&GQDWO(Jdf?3v9W<yvV%7{GEB3xsT&qW&H>98q<q&BZ8X|d>lou
zDE^AzRs_)~Vo}_V;7$aYqR1S@-3ac{%_ZvIT<%BkAcB7)cp1S%j`NiHi20cLH}eUT
zexQeP@{IL!<_o4*`zzK-QFotz&H4@V?SFiHd=<=OOm9A<h~k|nQnDo-GZiy6GYvB>
z^Eb{wde#}38JS)ivP6+JiqcV(i6UDR*`p{BMZqX?uumRlPG&A<Zsv22nU{4wW`3sE
zwnD6nF$*(`FpDz1dW*9z!7Rxv#mrd3%~;te%0;0^VMO6)yI=;G3e&4gvR0WI(~EDi
z4l*sK&2*TaPl$Dx8DVDT%*UfBA4Pi}@e0iMqNp83#V9I8QJFn!Fsm@DGOIDGGjnq<
zYO;QpS&QklxlR;yqi7yQizw=`y)m;svjMXqvk{ZNUxISdgmqJ9Gp5&zmaIQuwqmws
zzR&b(Y{R-OvmMhb+aZdMQFLO<N6gO5F3hgX51HMVCikm5>mJOWOs|&SQS^yoN)%J0
z_=NK|lG!(keo=hNo<o@ZnFE*unS+>vnRU6Ap{$27hciboy_S!PVssQ^*z!4ZEb}ww
zIOce!*R~0)Co(57Co{ch)1sIj#o8#=MKL3anNci>Vrdk!*k?X-HggVhF7pfKJZ5ih
z^8(fjnTwc<nO-elvR=tt#$3)^!TgH(HIx3nLnHnT>s8Fv%r)Ls{*?IJDAq^uV-!20
z*ueJ9%<q^RnVXp3GrhU}1M4l!t;}uA?acAqi=C|ZGj}m}Gxsp}GWRhTv;P6s2bqVM
zhnYv1JJ{z~6vt_6jUyh%i6~A+@o@~jVmKAW=_oSBkST_rqxdC?dr{nv;!G50qqr8u
zpHcS*j(?5fVicF6ILD`C`7Mg`tS>On^6w!3&iZn~=Qta$L~)fZe<bXl^Ytih(N@pK
z8&TY3@fVXEJfAzX|Np0y7w|z852JV;#T&l#D2iuMJZJrw`F9jg=+8hI0#B*e+y;vF
zA`#~wHXeQJ{top^Hojt#&s!F$V@MN2QVhNr5Ocdvq27rhS<H<|r^#bT!FDfrO4h0V
zV<Dfke3~JKbS%h{KH=bXEprT6VyGBHr5LitkSzw49kR!eBZk5;6yejHG31Y-Kn%HJ
z|Mn$!40&S6%U7)?W%4BiRZ)<AyjB(B)_QdnjiFc!ff$q+inBjCmu69dS&~_bi%{`0
zd|Eb!axCcUDg24rDWFKWdD)QcL#4DB^caj7Om>d4-C~Afuvt*O4vS#y-ytSTm~|vk
z1zBP-#JQI8iBc63{*_~>5<{yPTE|c|hH5d?j-d{_Rga-Y!k_-FuO{nv6P8*ryvLfF
z?WLt|42@!F%#rKyrTWYUF*Hn+@;sZw(45=Tlu0dY#=^VWf}LA3DG%?*@B!<tF|>)H
zE$dD(wBrs^k&ZF6=i=0o4vAiq_6DwV3|$hTsG<*J=*FiXaXZPUd!h|JV(9rF&)zZg
ziQ#Gtf5h-f41Hr*7Q=FO=oiC?7)HkMX$<|@G9X63<KxclfiVn<VQ>sXVi?92YT?jC
zw!J2K-6UuFqLooGjE-Su46|Yw!~SHS62sUSK8s;o4C7;%#P-jb6v3M(6JnT{@bC9p
znasWLu1<|%S`5<@SE;%gtVvMW*)hx^XSU2u_{@vp3)cUWxA`$FNF;M%qWEIAEJ<W+
zX$)WTC90Q>6)}7j!`>M7#qf0uD`VIe!}b{c-XB)6+Yd3Uj$sY!O);!xVfXc~k6|6_
zZ<*9iinf6!d0#&r-^H*op=aKd-?I;8X)_D*B)uhut$gaW|3}ul5}rF)>|~PvZWenI
zSE;)FF&v2DByHe4QU|$%M`Jj|;xLmUA4w$SC$B8qkF$}kp5Rl8cABqVh~XmL1!DLm
zhBJu>=lIfD+M|xkU%8;jgx_K~?}g&NPzz6%(5O?F5-t2ahRX?k#fy*;*JAjScD6W*
z#OYriaD(>7IMT;)GlsunxF5rV7;Ysd-fcSNn0MH6Hxca~pHkx=#_%YHS24Vf;c*Oq
zv%~Wko+Lb<vM06eSt2I&^aWr2hb=EzQz){(iQz5n@Nsv(CB@wVq62aGSd#-CWT9xu
z<1mN&=|~aBJFHVOQzh)F<4D6gZNfrdl}TkY#E~<OTybQKBU7Bdvi{$7k&Ua!5=Ykf
z|K6>#C)$uB{=fTV?l|(W{ViuEZye)Jsrll_A4h>W3i2gtVWEVeHdA-VQZ$ZYaRlN}
z;wT=c9~5x=Qkq#Zj#4bh@;Zks%}u3(W#TByRhQ$de%4+z5r>Q;7)K}$H4cp(oH%su
zk;SLvX>fN;KBa&*3u+8iL<fm5`$yu4{wFwHB4@f<K8^};45^BtRZ%gHN^y*>h|emb
zavW9SxDdz1xchyZRpV$HN3%Gp#Zf(u8f>f`M;#V5neQ@d#ql1C0wvuax2ns!A+sKn
zjP>Jaz}oX9OCvsQ97mIcPpG8UJdPG|Y>Z=594+H$7019h2F1}jj`!o}8OO(Qd=SUv
z<biH+`W{QsCXPlWH9Fd|XctHOgr!3q9a(o`c4l^Ac4dCZ{IZUq;_lzb;^-a+i5|@2
z`2wWr+y8pS(Le6KlkH6nD5>>{<C8chmDKvi@hMx#*e?#zQ+`!a+h0;6ajm2_APyqE
zvmQ*Tj$=j~GvgQ<$JLf{IQN%+d~;YFZ%S(PG3<yqM#eEJj?r;Uq~J8`N@-)__>8h$
zN+Ug%EmkRQTpZ(Be@;yzdnt`Lfi3i_0OUD2j;V1>W6KogvQpY~7DUo?kQ+U+J1dR_
zarYNgXU8#zlF7aP|Css?Xeo;4Yq(@kk{|}e0Fw9Z?rU;<lXoZV&MpWdDkvsYOn`ub
zU=}eeAWBdHkqkz1P=cT+84(c!1|%84fQsLp+TVWXe@>q|x2vnGtE;PfcY1neCJTL8
zDBoa44=_zBW~VW(%J9qj_^U$a3Vp2%(*=+}gG~s2y~vp*;0>X(%P>a(ziva}c}1D|
zWmq71q0mJ_7Ylt;D23lD!`ns7%f|Q0u%rx2%dm_iK04NATbv=Wwt4hf&*hvQ{3~9D
z6=hgihE-))U4{?2Hm)gMBlLqZtP`-d4DSoreyAl&*9+btl-UAvV^L<4@HY$ns3`Ms
z8MYMhCuJyT*j9#p&DCdRcyxAbdl`0=MPD%4S%wqM)ou>GWXa*@xyjj67JUweFT&j`
z@}CQ3#eMAB+ERiqIYtb71A`5GRfez2P))<U#qpZwCcohdUlx60`&&-o9r1%gzZ1&r
z_htA&Fa?-BRED3*aJURd%J44(uMFE0$)g<EGW=DB!D|x7%5c04d-DmVpXqABzY6_L
z=n0`Gh5jz|522KQY<`T|PI2u$Bk@le{^oi(KUTMe`gd32i@TDeu21||hH@IJXi=l(
zHSi!^B@LA|{PIZhg=tALD`==FrK}Qbp;o<^OpS;!vB>x#SyjUstxDT<F0HPi2C;@S
zHO$oUx{jI}YH9dg!yg)IYpA2)F%4ri)YWj722+Ejp`M2N8ro=RtKn=7ehbx1!;LLe
z0}bbBI9J1Y8ZOpwi4>i$;Q|ef1UJ;8Zy`~h=|bULB$P~kNU^|dtl?5&GTTH$?7@<P
zd{g%5r<TOcHMG#sQbQ{ZB^u%yS{K#EG!)cQVUzW-gy>1~l%WPT9o6L<=36LL6dThb
z`jBWljqj(5O51DbprNCNPLl1a@tqqHpQ($6my2c>n&_sXd$E+tH4VB3LpTKi*5d1S
zZ4HiwJ2l*;A*CU$p|6H3HMkl)4S5YcSVd}OG-NddMV(X<7I97kyHjx8k`}6`hRZZu
zE~UMMQn<GOP6T4w(?`P<#cndobd`pyHC(UZ2I2S9aE%syOt!y<f?N33?rSv+DAuC=
z*NM(;E!2$~ZqjgzhFgU*Q0UD<*&J;vcxjM^+cn&w;WjBE^9X|$YMsd!cK>hO2Wz-b
z1KmDE!%z)(YZ#{C9u4<u7|vlG86Tm6{pG{^ti_2&t44~pQ9{`fs%0q;7>w31M#KHZ
zwjS2-04qwCJ)&U`X*gfneMG~f!so{qXf2gIu3?;p#k54j6B?eB(#aa0VgQtjLXH+b
zt>GCB&uVy1!vqZzH9Rk3FK8GqfK5=6v|!bX8YT(nB?(9}3j!|-liwAk@DvSGHB8g+
ziiSBF=4yCV!)u&<8eZ2hT_hQ4GdQCUM0V19SC5a+((s0c*`k)~TfI>+YUW3K=`Q+b
zo`(4v7HU`|)#-!<(li%#wpcKu5Xo<8cw58g8un>;N5i`sKGd*D!+RQ*Xjq|PrG}qT
zvQ)!z0n4OC1|FGA1gkWx*6@Lbb<)-v4Qn;LFCO5Ryf|dEmNv89^&&v9K>!W@`QG?O
zq13Zk!$%r+vKJaY*04pxHm+A1KGE>0hONcAG@gk{nAmGlc8yW7L*^sr!tSE-Jw<PS
zreQC;BUR|bLftPk9Mtfg2=CYMrG^6<zS8iuhHo@{%Oz!Fj8*vhciK<=h307U_ZoiC
zaGYjq_))_l4Tm)x(eRUoi}sXm;YWnIIJAsn;HdbDaeho%p(|)G4fsW}ziBuj;8&sS
z)JXxX&bka&w*IGvzqkbH=&0kAhQGO->Nr=&KMVs6HFea|ak<3vX$}8Lf6M8pq@%Kq
z@;acSf{u!MWD=cF&`iqP)>U*=75*7Is_Ce%qlOO3a1t>{Xe3+boMPZ{XwIb01JUfO
zt)q_AI=MP>NL@V|L4vb%)YDO4$Jsg>=+TnSiiH_RS1_^ec{<M5(Nae%9SwC{po1UR
zYpkOYm7rvt^x{Gt7wNdGrMg(hCDIUGL3^0!x+Xd<)%otAC;*yEDb+U9!2zNTOf8C4
zh+FGO>Ug7N6zwq`C3-aV;yMzvVPrI43c*vVLy5s{bhHzhw)EIfEjgzOKQ8S>CtcA=
zM`s;3=@_V^i;k{3JQfigi@wU&O-FYfWg=|oFa>BjbOE%7W>|t#LTw$6bfjQ8ZA<HL
zrHGPD<ODi0V%t?Z_VW<{9ldn)))DH+>Bvh_4;?)j5^G`<pw0Y%(PhOft-4$kUZJC}
zfIfN@)ok%f$<l9ysEC#n9sP9l*Kv)G>vUW%0@n&1Ae8oSsbt+7^k{b9D6P{ibR(A?
zevj{F9k=LsTE{awZq+eJ#|Rzw=(tTs(7$A`jv+d3*KvoAJ4GQ?-6ep-K}_R^N_Loz
zMPIbIyVxj;hD%!nH27W}BXvBe;~^cRL}s*(F*@!OOc_qq`(>2b{Ri~umxyu54$^*>
zKCEM`j>mO8qT^8=k4Y^`vLpOaqrf;FPw043$5RrAg}Pi(={HUdD&ce<JTda&vpSyB
z@w|=~bWG7PRmXVI_M(nSIwt6tDB(oOLenqlpxa;8F<Byz9^)LL_gKowHBIWis^c{s
zuLv&Gnl5+-!@exezOW-)k%(t8wmFpyv^FqX#~d9$={T%ou8w&+KGv~C$9$cSU}Kez
z)jAf^t9o=X!p^c&i*>xM;~gDuim#~fEwPrP@UD*cbS%@cT$)~@W2yMRU=O>`QCJ}k
zU-^IRq-~sx?CcsH8->4?aU$RYq3eaN6Uy+WA2u+CtCtjh8a~vqNylc6$d33&;varM
z`Rd^@3VfpDQyt&xI4EXp)v;H{=Q_6O*e*8j(6LL$ZXG*CITdp4+C!#Fex{?nj>7QK
zZ!~_N$b2RA3r;H?UkX0(fBHBLk(a&}K0Ead7q?N-dib4i*hfzJ?*;#$<44AcU{0k&
z#SuTE<0$_*8>nUAn3SH<@wYT_oXee#Uv&Jc<2N0@>-a+^><JEHb#+oSaKU7A?8u)w
z{*qeFissQ0+V)S;lIjNj)p1(Ke-toK(Lg05iu3Y9D+q<q!k-NeVr2tWgi}>0$KwBo
zXf*>zWEPN9!-!U)GmPjL{7fTSj+km2sAHh16xB7*tU{upC^^eOJp=UxH!yIHfwKiu
z50#uts}97@GjP6WBa=hJk6cqBXTb#q8d1N2i=;|p0~Z^(#E5=98EFgycKOVa(Ko)E
z7`RkqsEtK*Q8UT%=d8Jb7Dn`H@s`pAzvf9CGf-lnw-If&#0?}2Xa;lxNdu(@IvD6E
zMan=s0TgRvM2k;bBl-<umZ`lIk=aQ=H=&&kbTOizIYv}hslvb66z(piWkMOf<QN7_
z0~rHZVOm1FG%T?VI0jM%(gr;CLik){82_#jt+cEg2$O)T6DivY4XhW#dKmb!rOFA-
z3+2r1Y2Y#gy*R#;OQ?tDF_5V9aszz~Tw$QEfq|m)N}<;j^<QP+Y6JZw%Zbdo{RMMn
zzSh711J@b2Uiy2Z@EMtuxj`@oi1;RAm86k33-cBOw;C8^;5Gwy7`T)A$4CCT-H0YQ
zn;_<_WWX~^JjB3I15ZJ5$LVhNVn%$V&|yNE9WG#mfqROadudgNQWlLeaG!zEMgD^Z
z#t7z%9Pc-x*Ev2Ql#&k#|6v1<2zb;0i^yl9*y9Gq8L%xl7M?Khq=6Sqj5m=Vop{Q?
z4g)(4JZ<0^1J4?G&cIs+-Zt<&#SFY|V3vXL1|}GoYG9gyi3VOY@Unr)2KX|@Nd{gr
z_@;eDJZpaJP?OTLTd7T(Vp9yfx+uo$i`G+OyuNsaSp(Az%rNj8Bes>|uFJYv@!O}x
zGOg514qq$9Z-Y_^UsS?t$v3$8i~dCh=CIu{v3UmO8<;ChW+_R!K#CT!zpWIrOl*Cz
zFp1w3z}fVUfp-OOH1M8*B?i_QSj%Z;V3~ncQncK_3Ii(zUpO~5tyT1Q@yp+0?}+Br
z!Y_S3YT|vt>lm>HJ`hYMzcsU=h(DGpd}-&01~!Son+<F+@QHzs418?hP%HJv<dVNy
zDPvyArv|nf*k)k6fwp~1s<&26TB~-gRkvh`*E+g1>om7ymx0{|E-}&A#2y2m88~I&
zZv%S`e9m>)z;Ofn418hWI|JVv*w2Y$M4u9PxuUwhwK`znYXjeK7s$XrOJYo;TB~mb
zA7n3DtMRSX{MPFA%Ib^O>O^bxgMpi3>L&v=W9ml(jbrMNfo?I?Bc?{h)M2irT*Nr{
zt3=u7Vro`Q{cPYDh5^@~615_xe&tM$sdGxyj+pw*z~NW~P8w)lS^aL{4=xcU>Q9DZ
ziTaDvvqTLmQDZA9GXLSSZ=jlq>L$)w8ar*Ef{BVI{xhO%ITPj0s9!LlRaDa|sM;0P
z)K#UGOw24%_2Q~oTvawv#Y9yT%SzO?5_MYWp%PWY#2F^)nW)dYadoDNS|)0n=o42p
zP23(=WR8uiIwnrW)mbL$n*8RqdM~c_##Oz9YQe{sO*AlZfr&;Y&M{GzQ0JLA-^Aq!
zb*_m))zobXwWOMAX!5J0YEwczl2FqUiu?<u^dghr<x~`Ax>#zlsELV7iD`z3rY4%1
z=w_n3iRLC+m`Iu^HPO=K$23*jq-ssKBvmVupQ=>k#7vZ!h?^KuRRya{6DGg0s0Jj}
z2&Sq^nP_98GfR`It;rAksrDv1nEV!`YG?BMdg^dx)zL&J>E>=x$o{So(8WYolV6=v
z$0boi8J$M`CIS<>3B!bAA|=XAF~H(5m8$bg6&tdJLqIdqCOo!Vs$8K|xVox(zltI!
zV<Ky!r-{o<grueF-BQ)VM2<_7$&YQRhfAYwPA*kjO4UJ0y-f6`4XaE4E>(4vqJ`Yz
zy23<X6GKc4HF2eht4!Qz;wCy!sjE#~W8zv9{Y>;X(Xnb&rA(>bN)0e^orxQyo3|?U
zpi<YH;OA?Z*ozlcWaK~-H*@Sv+$LhTnEV!)x>fK(rC4i&Qn#D9!^EAeYl2nCKcFJY
zqQNF=woxtHs6Qlow~1jU9y0N;iQ#k+1G23eW8xkTdK)#;#3++rF;Mq18r!IGZPctb
z>OPaNc~_&wuyt+J@ivO)-EZOnMnxO-pvhOVD^@8KJ!0Zf6OWr1XW}siNn15ms<V`s
zk_1nfc+$kPCY}?WPnmd{u_3r1(5`JH)}yU@UYKlxonoWpOfWIg#6c6^nRwB}Bv!0g
z@?M?9lDefYnV4!~nu(W9Og2Hz#fy@pQ)q^OS4_NW;v*9un|RH{bb8XndnN|=Ow2Gb
z*Tg)*Gljk`be7OJOw1NAM=0fa^-4P5#A4wrDDoEySj0FKfj1@lR<ZPL0q>Zg0IM$%
zy2`|A6HALS%LFVJx<cqmp=^4MfDJ-feXW4^g?=D(ozV3rrtED&fsK;=Q0OM1n}xE7
z25b@hnb1#6d}?B=;2lMoZ34CnW$QbO{9OWe^H-o)M1^}f$|m*|Wxg`;MG@~e@ulDc
zMGh_eTJSeQzb*1<_V*@!FcGs*V&O*<hq%gFIM>2YCJr-JE&RJOcErR{6aSd_*TgY~
zpNSJ(Firey;ujOYa;4&YX{#n3iCwxn{$yKqY*l=ITg621yNN$c{AuDZ6WdnBN3V`o
zUmd69=C+EGr%e3KMP_yUyS99>v$~+2>d;P|Hc`PsMGOC#C};7F!K%DaSQy++J=;!^
zv#_12WTCQ!surqAX%&kvvsE?Qt54dgpGB;?@M~Cnd1h3F)M>BIv{2JREeo|R)U|My
zg>m=9I#!8j9V@yl<v;m)7V29#+d=~?x);OmjIWy(=Z#eUy?1N0CZ^bV7S6YDv4wuq
zk_|0fVBsPQm&{8HXs<@LSB)%OXn|m&q}lBiZ_TiDWqWmr#rG4c#ul1bxKwacp{;~A
z6WZM3%l%Xf!7Z(5XP#ABOO~Kb@93XA|6A5S7LQv<SV&qZweaLy@iL*x;;W6&R&XZ^
zoh`Hz++HZfItb_}^zZhHoOgD_x)e*h3g~8`y8vpSfM!9bTRKFyIGHtsX$rM0usWG3
z3u*ezK?4V_1<%598$a9dEd&-Gvhc8ljD@U)UKV;=2rZ}%swXX+8PAd5K{4em^bkBi
zva@!?FSD>`ZIa+}3w<mMu`txa6&Cth=x^Z~E4m=M(!$jOh_4dRu~JKdeijJGyw<`1
z3%6Lf)xvcauD7tcgBobz&H>3AEZk_}Cc$@iP~$tOMI96Yi<oY<K+eGqYLJE7EZk+`
z@9l}(E!;tQ3y*q9N|x`a8g`7TP>fXuvqv2j_4gvv!Y~W>lTJtsw=lxOC=2&lxW~f1
z!W?NuHw#$$(B2lLOy87mIoiS)DJ5l=%=7w}6iOcu{)1L@Swzkww827a8!;P?Sr|*7
zTlm?+;|y#DjD=PF|IcBvFyF!g3r|^i+QM`zx=e02A^wa7b3uF}=Z<im6Z$;EUch*v
z6NGYmlZmxnv@prSOAJd3uQJXxOtvt^!c+^>tZ1i~*R#AP;uS8hI(fPM3Wq}_hjfhg
zqh7NxCl+0#@ak`dsGVuybpf+jWMQs_H!RE+wUp;YA2slTk$9ekg{`6;KVEz>yO2?5
z;aw}*%~)h%G2O^8>tFJgg|`I|vpOlS?;f35@}7ky($Ldl$x;i;7*5~BmRtM~Km?em
zoRkWwf3?Lgp<ug(H5S%dc;CVYQhlq1br#lJ_(W=Lu&~j>M^f~mg-whr!EBVR(+{+k
zYUz`YEo`x(t%JfIMWL-vMG3DQXNy%kEbO%KooLu)MVI7X2;NQK)=2KL@R^0ZR&*oj
za|`>}qZWz^dCkHViC3V^?zixzR5@VbYX*;nuOwS&^jmT4!T-Z4@V^(%5Bv!baLB?D
z3rG1Yz-cu+c38~j;RL#c!_8YQ$HX>vjotjk!mnHzY@BW5Hw!1YCflfH<D`Y(E&Rh@
z5YhRE&_C(Mj%vSj_AlX_68d*>#M#7YQC{B0e^NwFIj$kRTe?058x;gsv{A`MWjhML
zLXb4!Mu8pe81NdLJ|VNZje0g-mK~uQHqNkdrqr!zqn3@@HW-auTI<+&g!g}KoMlIM
zqd5BXC!I;n3_LFQCpxMIHqNop)J8KK=ZcaGgq|n#eEWa#(@+3)HWL1YHZHRHUN2l?
z<5J;pDmAvzq=?xmPBAi>h?@()Fe0?Sg^iXru3iyiY9)ZSmDq^exXZ?18wndp8=Y-*
zk&2}@+Sq6-SlQ?`;eYoL+6kwV(DpVu2w-y^?Pzz1F+)7@zeHCX-K40ujqWze1ZQk$
z0xY4rP{WS)eoeuw%eidZaBQS(q;0r1JoZucvZ$Y9!7WGMMqo$V+Vm=&%wJXRXk|r1
zXd`DMZ=;8dW-l8(IgacjZ+Y-0<`2=1H#^Q+Y>U+|r<0}P6+*AK(U<nvxQgD;(BH;2
z^p%Z%Qc8K6$2H_yJK8%PVB<PFnl&6^#z|o%;da~&Hg2?WlZ}BkZnJT_jhk)UV&hgD
zgBU^*do+XESeJm7a9)t!VdG9|h)m9CHpGD&Vq>U{EjB)}akq_OHfGzHV`I3D5jGyO
z@vt4uf^<Gf4foi%*TzU2qv#(Sqiu{4g>+!y?%Vz1?FVc;$bOBFVw+*fxxl(yU>~vZ
zsEtWBUgG+1W2}v*Z9HS+aXY$8_@s@eY;aR+oQ)^w)ftiHwK}O#CdDYZsrRgn=WI-{
zG112JHeRqX-Uhdq>2vm%eW$NDSo~kax-W_`w1Fc?2fl1$vW*!w>VFoSVq>a}S2?Y0
zOk;mz(Zqa3`a&hF%fRLj!E{cynkBr4OXXbmX4-h&#w<I!CHjU4Q<BqxRVXmm#ynxJ
zvN7Mr0>S*yz(R(ujdyLlXJfIAH*LIS<83J&&dqAMh05W6$ByoPvR#f2jag!2sg30}
zR!9f=3$@ISZmBau=pweu^_g^~9aSM%ZDWm%wKm?j@u7`P95oy3q?HYJ^kYOBs$I{{
zR*yQkQHrRFnm2P|^3JbtKC&agQKK-$DEuk=YvZ7e?`&+dvE9agJNg^Lw8O?88=pyb
zXMt&Bw*(<e3mc4kg}=|n=K?r1bk`RJ;jIaF_DdTFB>PoCz{b}C=y{Iaw}SbT!EpUv
zFf|{x@q>*YC3}b~CvSvpP5dNTc89a?NKx{rjbnmo4CCY%8^1EnhsJ6<_|3)%F0)RQ
z?X)g&(#AhrRBilj;}09;{3-O5(7%KZYgj`5--6j9(`hd94k|kM&qg^1<(>a|1_CJD
zxRYx7X{?fi$_}bIsP3SO6jc?<QhIpA_Gmwr+G+^%3?~{RTE&W_HN`@LS^_9TTt{eK
zp=SxL=b*k+XDQp|r<~7mkaSS$;9LjiIXK@zLkE{S(W$BngkCJPkx()(6mXGH{(U0n
z5(kYX+e9dRNM=(9%^Wm$(858?L5YKwQp%!MPINAdp!NSz5*M5hTF_HyLOE#T;06ab
zI%w;lofF+7<6ofm4mvpK<e;;ICn_agc{bV6iKZbVhuJO;x;p6Pptpl=4!ZN-y93Wb
znFGy%<-m5(v6Jf2N$Cz>hNd3wqzs4e3R9-T7js2f$3e<L+5x|Fyrz@d(@C-PSSMAt
zbM)n7-$CFY@1O_!)j8UD)H<t-gRFzl;aiE+ZJkw)ZFP?Lk91ZqcUC=}Xs2;wXLXqa
zW|`jZtS)!Z$3Z^_{T*E4ps&L>IjE~0T<Kt6XLS|FqKi7-Syk$yR2P-*qIP~%I<$+r
z#=&D<)O8N7cW|wPnO)QXp#;mjs5`fmZtJ2Bc2U1~Q8zi!dCuVuMmQMg;ARK6u)hul
zI~d|%kb~PCaPRsqQU`ZPx>GoP_C!BtEGhsN5f5bu2^dzCCzE0k(~15E-s9k2hGn&A
zN>=ZxMha$jl!N<<xMf#$zk>&O_}0b!E*^C7kb|CST$aYe96=6r3OA+jDEsK(goBd~
z#yWW1!G{huIT**`cCf_3QU^~uc*?;W4rV)e+QBn)tb@r8p5-Jemw4X63l5%h@b!T>
zzu?1<Grs#ta=e2{4hSX)ohX#q7iq@m7{N<L4nKi3#lciMmf?Lg#?Pltb1>ZjKW|F>
ziUZPDIaPZmUlZJEacqWU$@#)fzFw4^<wWl`Bxm=^_#6jYoWw!~IcMD0v3Wx03tb@8
z?5fCL<X|!VIWO_1gLi0;gSQ;KEu8gBl1zQ}CrByqo`b8qDgx3ftrE*PDaOWDIQaMN
z*mA~|o*33utz_Wsimh_6+QAwJYaM*xV4Z_c7st*!6(fD$!E%(0@2Zw{DP8YigM*F2
zVG*APCoO=@4nAU7I{3mtqaPEG=*f?x?%)%ua`>sZ#OEBHU9qhWb~xDSV4E1g?rfK?
zwLUAcOI)$r!5#s0AU*S$gT2Kpy+k*Xav$LLrpf&dzT|kVO?>abKP$mKx&scrazIc1
zRhsykb9`Rn8=>C{W%i(h?>Otn#)w&QRO8Yg9Q^3ukOShM92|3S+`(bV9ua!f!JGHS
zSo-4D#LvPZ{!PFyLVx9ObX8<BQTTUS%cU}f^HccK!Cwrv6so6i%E8}UE>ftFLjBpX
zffbVU(mxyvcJPxV>z?NNU({bNh05iV<x_a|yvWF{T~)<Y^bX!iDL#g*F8wR<!Te<9
z6l!!+RZ<|XDs;+?i5jUWgzBbnRtn9#sWVbIGlk_<lQo6b5?WiRIVM&o#XA%UmX1Fe
zf9ASGy%esRA7`pB;B27{QaDGzxheecPK>1|PsJLha6t-w3PB2uQn)b1cWa|f3Kykt
zaSHqxRxE`}QfQn)%M{XgC7PsgX$nnKXqEy;kaL8I!`eKB7Q*3J7Y3J1f>tRU-k)eK
zb^Dx(QA2K3X-NvC@e~pQl0wNT6~hS5n4M^wLVR|tdkXDRXrDp{(bJJlq;T-h1a($B
z8ta?_X*Z!==qNYYHHGpk;$#w#mZk9K$+(t+o`TU$8DfSh_{6XTjj>X&h3N<-CshC`
zxJ8ba!mP8CEShL0Gbx0$R)!{<!hmjSNu%V$hvWGau1KM83O!QjnZji$JX0>wi;G+R
zQjTfISc0IpWG@%mCxyGqMa(Nx(Q?FeJ%>i{)hYB#p}*h(Liw$zYXn?NZ#)nQUzY-z
z1X`7n8>EQ;X*m}Lrf_o#CsX)6g<Dd%HHG;c#1sala9awGr!X#s+f%qBg$F6qG;wDN
z>*gj#rZ6gnyEw$t<Aa4WB!!_VY}g!UP_cJ+r!Xvq;VFzrf!X`Ise1+7lLDV|C5Muv
z#P_8zM)XkaXeqtwXzYH`NzMZ)Ts<bnR@nE4s6m|Yh|tIz0v=-!PDqRuO6C(OJek5v
zDZDI7o|1OQr|@)9=QAlhEBLt-o|jTK#PotN*&Gd<kitYMB7QN2NrKr0mQGG#N(!@6
zSUfg1l@sCN#B21efN3ebB7n?S1@PNRGm4zo1<d5U7BH*Ge}h9mEWs*NI7igZO<^9r
zcPciun<8D9!lD#*r?7{mj8FPGg^ek^mBQO8tfJF8B;HA(_u?2&`!5sluF&^{E=ghE
zq~ube1)1e3tVl(V1~9EmA@)t2V08*>QdrB``d5N!T?+3P@dpC9N-(XL<|yzXom`sW
zQoKEdO@cQICG(>cJ{G*C$oV9NPX%ukx=rY1v1ng+2mN_tVrLXxNv2(rCI7P&_HuS}
z=@Ykqp29b>cI}hw7ee=^@MQ`I1b;2`tN$~I94rp&w^EA>-N6*T6a0OV!)0)FH+3i#
zeFOby3O|YS52yHSb>#LVk|j8n!f}!LIfdT@{34XKeocX2@+Dw8Axv`q;Ns84FpW#n
z_=}4_*O@fxrSW$P|8V%6M3prD<qyHJI1|zlIGw_OMNT>4luzTUZi+<}BwJA^vy}u?
z7P|XXtZEw7($Q*DJ&l?Ih-(NqL+F`8Io)ars4cXP(7HnDC041Q#@XrU{o8+jo9I0u
z(IAZr(tI#k5ucOBx#{R5bms{@UnsK;(_Hf-Vg3R(O5?(G^qb3n_!p&dxBSR9PNPX0
zZPRF%#-(XYKQq}hjb`cSyX0Q2lICgfeeaB@csg2ATBOlZKr5lGg~rn0u$J)e-{ClA
z*o#COPw!78g%XqsP-(OgYssmzJKjEx4r$nFIB9fDN2^x%G|B{Y652V9E&^E8HH}9a
zB)Tzs8-qEarJ>W*(J_AD(n$036QveaO^TU<d2vAw69=6?6R9-#gV-aDbQ*3NUK)NH
z84h}B^w+4?1*J?u8l=pUnU$h2jT|i;8_P?UI$6}HyW0F&vKM`u#=bPZNaOM}`fz~K
zcq5G~(&(GU18F>%#+7MYmByWE+?B@FY4l6u<}_|eqklTu5FU`mb!l89nAvLua1Y`7
zG;R<)FpV3Fr8lwGbBTEmM|*%2PPdLU+*&NXUBI9;ZWD0dxe4y5P~Z;6gGdq&PGeXa
z!_yd2tTj}?-DwyDBVncyX^c!`R2ugbW$xv0bdNTxneG$j7@?zu@}A560{V%}Lmd4y
zp5j0Y^N}<j7r?rYrtw%2j}<Wdj~Mym1V53+lLEM_M&>hVJe$VLX-rPzxip?<v`gs=
zLMI5N*m#EP_(+~<qA*8wSCfjRFA3nD152l*@k)_DHH~S4|5%k^(W_~^#wbc-MjA8I
zc%6f_Akukg_y08W77zVN&g?Yiq_HNAwNia<8gHiYRvPmpJ3oyDX)G+ZvRJ?(p}d9H
zt~d&Br?DiBrD?n)MehoIPw0}LOW6w3GRdwKx?JdrG@qxAMq!m?R|{QO9GCag*qp{k
zX?(z$n8tc3rSOLWHVEA)lpmuZf0N)s2z{K!cFB^zC5=zg_%w~JX>1c_8(ta|Tj3Vp
zjx=_ru`7+;oMIxdr&#y1baZx_N|?Cc__^?TM}yh@X?)2zba9>wzS;Ny$6|e~x{I&4
zVx;j+8sDbzC+Alh2h;d2jpJ$joW@I&W8bIoV;YCj_<<2MFP_*LYg4cEr!)?yag@P)
zAa;boR$f&vQ#0$79PX|v+#UOQRqPmNTzSRnzi@7T5kJAncq0C*DEuvr^B#!3aZmEn
zGIf&6h!p*i#<gXN%C$1Z7o(lx;-5w(7gY5R7ymTiMjH6v>~tFCTs{S<i2q~kJrL`&
zIKfAE%e$B+%t7y$R&Y_##f1$@nQne9P9>FHR1s}eg;o=~tW2?}hKn=YXuE@3UZiKb
zsOe(=TXCjZ0&2UcBcN`Pf0m1Sg6kJKXA5W`^c)utFN~^3J76v@anaa~?mILTdVz~Z
zv`z3uLN9jFM7D7#L(s&<r7n88=<TAZi)Jp$Txc$uyJ+E}os0G^TDoZEBH<$GqP2^d
zixL-c7i|V4I2m`BMMv*={%ywVB}d9sIZc(iP%L%P)<pwNEuUVpbaJ#0NwJT<F6AA@
zcADzoqN9thZghmNlZ(zS-klWd!WK2P8zoHS^8g!ZHy7Pq5OZsSi5%U9;lg#{xiCco
znT`v~h3)c5uE-vKCYueVT%=tL6b_kVH08SpT;yEjrDDcKmQ`GQTq&yc>ywdwCZ48a
z>f!P`FSyL*qfb#OWqKk4f1WD2+(jQ3x4IbQ;tCgiU0mnldKXu^xXML;7uUF;*wxZX
zKhaMmJYmS$ajlDIdMBuSfbfZ_lm5BE#f`Mq#mz2g*iDSFijf#g32rI&lv{rVV{UVC
zyNi2V-0R{F7k5&?#ZVV_iR55b9}}Z6+ok2ice@zoVz`SDE?&~qqsL=Mmqn^L&1Y>)
zzN0D9kuF9__0ev04)#75g?5Rlht8z@1Kj*^@k9nsX7CWh&&Aaq`gwT7#iK61cku%w
z&Ba(3b6m`I@wkg|E~dDc%33a-WXS2Nv#y?U`3RC?ddbDp^ofgSg)_d$e@?*jLSJzC
z=nx;<Q4=IPQD|*lz35_+VCrG%%Yr8hMU_bTG#9V9c-_S;7q7Z_&Bb(%sUDq6{A*{7
zXZd*4a0a`ntC_-Q(Zf>uU`6!?eW<J1E|%zOi>|)W)jSvT={;^@xLDv~Asce>sf$G}
z7Q0yCVx=3MCw$Yz+b-U5@s^8Ix?<w_!@7og*Tpgy1WfNyZ4oaOz(auKFL!xPI|8d*
ztakB%i*+v66!pCCf@ZAclrbWEsF`%Viw!O|yZA`NHoExG#U?HVvFKDGY2Hw`8j245
z*hS?^YKx1948?PpJaS15lMJ=h#Wok8x!CJsyNexc_ulw!7dsg<6B4_G{(K}l6~MCr
znT92MM1Wb|`v2U;K1Pd+1GKGt%P&NDe^G!kqvy2#ilb07IwZjASDbD|@Qt{Up8VFu
zK^NaicG~I~6PZ7{IK*|vL)^npE)Kgm?eg$8p08V;&$A!lax^`5)WtCu$LV=Pop5oI
z%dB8#e-ZF2{ZKCX8{J~?P;Qidr+-}hEv0`5{gX1!C;t*jenyS*|L`|Um<J72-%GHR
z70Y=j@1d^8vpNbMDtM^kp{fVIGq9qE${r7hDyB-pDPR^=^HAMGdsEf&(9l#hJRY1=
zXL>k8n7vJ&)l@Y-o?BB(O+{K;_+-}c@R_N8Gu2rh>UpT|;cO3=cxddQfroRb&BFyA
zT3hN|4@dpPc^-P-kbJUMg7|z7TI~ol@^GPtF*6bs4kv6&ovvH5Yi8mi4;OnNV5;?c
zqKSt~smH_j*C&ULOEmS+%tLdJr&*%!-L#PE{Ps<cA4;jGrDR*tNUo(b5;2eGMikpx
z@KYk;A?YFKA@8Boi{3fV$-{U{DGzNtZ2z>ht%nW*+Hs-yJK0|7^sS}D9X$|GhP2v<
zSZ5DiJaqLy+|7%QxNCyDlV3xX3FeO%lkUOrU<$_)>UppQI6_lGsV6PK^>{WzG0Wr&
zC-9IFkS$7vUUblx0zEwR^nj6xjuR4>dFVwCd$^pwt*ACy(a~bkJ|3>{aFvHo_s05q
zxYEP<??=Bo{1RMndt$#8J<!D0CZwjs`g_q~#m54S4RDQzYds9`aGi$<J|_CO-op(X
zP#=wa-00yZ4_iEZ;$fhNn;9M+Uh!~?hg<1VFS^q=h#vOvpofP%-0tBH55ql-kfJ+1
z4Dm43<5AK`a<EWt(GfH8QJT9w3}gHhA5P(Yz<W5399a+ddl>0ql!wt$t02Q#_jw3<
zwj$tdP*UDeC4E3-2q^Y2N7KU-9-j1g3<-~U7$>D;X@)#d^SBp1FUA{r54;vV1i?mm
zz~(6rPtz?Po)zIMO8EKgNb_?XQ{Mme@B;ncGP>u>`<UDiW9$5%IYERcdU(;pBo8ln
znBrlohnKzRM#f|*r6ikRUEXNpzbw)-`DokEu~$93=HY!0A9&I8mD4@U_prdj3=cD<
z;_DvX@G#rMEXfvnM>@v?PoB(U*Z3fq7rl0};8HfU(8D4ROFb-Oba{Bw!`mL-k?J`O
zZwV-P@?BPx>=I7QqW}MY69mgWtn{$T!;1e?Yqf_p9@cs&C(fa&g0=!>t#u;&k%#pj
zHh9=5gS)Ay;lpBEyw2JzF5-0}4<>y~g>oe6Qx97`oaPGVVVl(Y+QT=TsvdTD*y*8F
z$HZO_pL5ahu$z%-Mfa)qaDnoo;h<MZscN6p-S6Q`0bdB^*c}i_{@wkGO~@nR91d2Y
z<=@h)9*%f8=;1q&|K0<SK>X<82gzP1UOL2|053XkKy8I%14lg^^YABEsw<PnIg}p$
z5c$F>g<m}U>P1gi{pLl-40vCdmxL!goTR+GyyABOTc(#(mxsUp@^H$--=g6k5C00_
z0P#jP4+&5Y4_cJ-QQpVdel&3KqX0P5k7BigkBUAj`Kaupnvd!}s`$}?6Gn1XKYCP(
zVgLU}isuSy_&7t9ux?=}Yx=0=qqdJaqOiV?x<1bGqXQ)ML<8-o$Jmi4<j#AckF4In
z$2orVgzvdN&hw+^s?PV(P?WHgVbA#IT)WW6MLzoZ=r2VV`{?AOvyV%BG^VLOE){-T
zA5DEU^HJg>?xVSn7CuhJ(Aq~!AFcf8zzj#3nmG|@Ih{ji##lNsPMn~@K1zL_jEM$|
zQ9(yBweh1z5&4ka`!bZQ*v<z(f!E$g2WhvX9~DtEeZ?W};-jmNz(>YMHxbZ$eo!9W
z$?RWJCLFFm3_`<)=||6Kr+ri{iN?b6VT*v{BPD=OY0)+sK<fJNq!*O*rIdG^IkH(F
zp=7W2qiD&I`shWoef03r(~oQ`1T&W}cDXkj^>KxdzJ7Edjir73=!{AsIN4=#uJmyg
zOUFm2a~bOF_2(56Z1)-;*ZO$O$5<Z&d|c;akdNE=6YyW+dLOrn8T+TjZs4zgkDGi9
z6wb{)ZV^D`G?<f!3mw%Ckb^h3`?!Ps@-f=SoeTpX_xRv(%E3N{__*80FdyvcP(K<n
zKEO-!c!GkXNqdI-7~w~2ELT@%Y3;o}M*0{f&GqA%hZ^cO890`X5$3}_?)UM4j|U63
z@y!ns&s0wT6wa<ZB2Igh(X~DbgU3bkX&=w{7$=x+e8R_*KAvJQa82Mtj&juPS<3W|
z9Cb5a1i?|55P#ms3qHn6Egs|Hgk>ppzUX6;k8gb(^zjnA=Ho3NZ;RMuAFuhC?qiCN
zsbT{UI8Box)_sLuis4lmYql~&_%nUH?&F$c(V|3Q(pf&<@G+aE8)EZ)EbuXharj~B
zT%iQ>1kgVVMZ+Q=i~Z<W7wa<W-t?mbKg67d41;%kyzAprA6rHEJs-<`tnjf!hMvEP
zONGBoD7~@L$0{EmNtQ}h``93OjgPgQFM`(z{Xi%kLNTWGl4ZPY^zoq|?K5ohv00d0
z3K*^&db;srI$>RGi|{}BKN`0A*e=<<LU#z|lm0t>>=I1PyM64DS<j<Qp9z!E$PoJ6
zj}DUU^YMj`{lY)s<0~Iu3NBcftAno@ja(?|mT<k|D#6QM((inH&-ospdw?H&{K%EZ
z$KO5<aWV1ni;rJL$zf^YsE;Fb&YTz%{eMh~j&mjCL>51sYeXT<(=~L+Z$3`=IO*ee
z&c_w8zkK{5@+|t3Va(TY$Wc<B)S@a1{Nv+aPUip(1Ds}X`ZzN{%>d;Bln+oTK;<CP
zLtzN05TIfJswI<&?N$j;H9(CZ8j)%N`tTJHL9{q?ZQ*p_5YQE8NNK?*wF1-*&>+A$
z!mJbEtN`@{*A4#nKY^-vf~$Ujvx8_BGonao1Bc^Wk>t6r^MdH7lQW$Q(FFk-1!x(d
zRiU8(mj-AW;GzH*2e>3a;{Z*hh*O@!M}<_yUm5CbCj90?3o<Q4xL|GT0I>k=0<;fM
z5+EL+G=K__2#}O2G@~HN{xam+2(xVvt&m*1IL+w_`k{mHI|b+*pkoldg{Dx825{Nw
z5}<2<@n=LK&4rFdWdXDR*9W*EfF8gIkO`0tU<R;6RS>`qq90sVNe6HQr-a@i&n&wX
zmMQ5`UaC-%heFwL9?c4ALx9UUUIFq_+FNLk06p1R9hY&Si*NksRcwf}iFL0C&^JJT
z{;?0De;rp!#j65PjESvW9iX283Nw3cfB}-dPALB&7sRNar8fq+DZrQj_Xijl;N}4L
ziWs|g3j-;@-~hJ<7!=^PBL9v6w--%1u_S({@Cm4mI)?-p5#SzS4h?X(fMG(13#Ay%
zqa@8>E1Zub1B?oApOo^~ykOpF2{1<20|6ckqH~o5lxL?N3h;2TkB<~}J}Q8k9}h4t
zz?%WyV(?T+oU+st0iF!-RDh=gycS@3fM)_c8{j2|cYs56lFtQrfdLTUdB(i0N^MoP
zDLEm)L{_xbB$0Vhif)sloUP{BYJ;sN2bdDz6$Xi;zO&U-_RCSz0<by-8as;GUgZ#X
zDrGCI%Rdz}0?Z2VMiBkMm?`viy8U<yZh*{|?7RT;1I!69Hvpe~pcoVPG!_I{7+_I=
z#X<B0#AoGOF8Z$pi?~n1T@He49QAg9cLJ;mu$rMhGyZOXC3KqL_k<2{q8*sFRn$|C
zS{5KxNi7esBEU+z#o-Yk#b-IUJ8DgUwT$pdvBxubKfniElrpH5!MXtJ0~`r(G{A-c
z8v}e1V1IxQ8SQV!HwD<t^~6o`h|xy@J{IOKp<9IR2=Ivj3V#}4tKe-#&h`L*kB+g3
zX(#)BD#E*^bdS)_gzgpkxlju1W9w&?6l#4L;Cqh#uGj%7{i-PQwSaE|d@JB!k^fx~
z-S1=FABvnG1sn?SQ;~C+J>49c#B_{nawfXLdOX0-BJfLq-vj(1_}2ix6>FUkaFSzv
zc9IqUl<esM{|Wd@=qdJBz&}DM_AeKNA0v4t)-9KbyvkHQ0|>5A<W$T=hmlxRxyY#^
zplSxy1XLGVqgZ-I24@yA54qLOpiTxs2AK@%3cn<Scm`)>P%ne}8JwNL#lmkO^a7#h
z2t8LQn?5gt^NYA)1{`!U8x=VhW^j>Uzi-69B!k8oG%1$0$ly}JO@%fq@|z3b0UlOq
znL#Vbwl0>&GT?1)7BMA+*+FPBgHi!XXd9tzg|-t)`Sux{dMv8jF@sJSbQZprfi9p+
z23-Yo6WU!Uh08M7{KEf6#1LkxP?Uisz%EKUnds;Rt1zX7>1N;+OZ`mrl0z0{GYB)d
zB7?pe<TCj4uUI|<t$dP4st&JC^bpK!&kQchU}~deFX8kSdU>(5j{t_&l^I->!5t!b
zbq4*Uxm$(y&)_Bj*9g5fg8>4r6MDT+9znc801dm5!LTc`aA1*ha|X8v{&ITMsX>Bo
zE0*4#!HA=g{GA!xmBC=)kI3L20YfqvD&TIR!-P_JIAhF>{CRH%BQv<a$R9=T4U4qh
zC!Enm{+LX3@{RllGI)^t|H6M%=)*;sM>1HnII8<tkuz2R4@htY8<&aJv5V%$pUU8A
zjzSiXW${b~&t`B=7UyR1Tn5i)u!#em!3!CT&){{=@eGdws-u096Ec{X!HXG8%3yK^
zQ!=QWQZHrja)#&J6rTaVAf-|%b!AFbof?~(!Sqb@mO0{S8N8AK!K*^~zv8t_w1Yv;
zj0{E(iOm$+cxsHF5PBnn*<4*SJnEz7WH2{_<r%DCHiP*YEXiPLCi?5RYhSqq87yP~
zH;9hTlCwzoi-o=^^ev%p3w=lEyF%X+%8JVf=<R*ccbu8!1B_i?ORUUbO$I&hOAbw`
zRT-?#V94}X`wL6sMsh8G0x}@}fb;Q!i1S=ZF}t2qW<`8M1{*UxgA_d-`C$g617C~r
zy!S^Le4N4Q4F1btO9r2Cwdr5-QwE=Au$8TIB4>D<Lv0hfL+Ey)ZJ$W&ECLGb$>1|)
zGx#Qhy%~I-!Tt=s%wS&z<<qKDT78khc>=CTD+2NlNa<G@+?`g>rPZ5hHKtec+YAn7
z@IwYa3jaHy-_w(6^^sJk7@3qO=MZP8@DFEjB!i<F9LwNj2ES);oEp;VmkfRt@G}S3
zRZU$*=5N9|!MR!F5d6V8F8os&{3U>r1cfSpXYh~Ue?<?A$nWQ>a#`Lui#~%=FN^Y7
zAd3oFRLr7!7B#Y{lttxibV*Vzi#A^;UvL#)+)*V9(yCeB<x!&+#G9;(U$j4QMixg_
z#A{|zD~og1#Lvtk^-y_&DK$#!{~A3JP&*6KIzsCTJu8bn3*%(g&*JPXy4NUaAe8^a
z`0wk5t+Dg6(Qyth3qOnV1vkv%f-D*dj%Sg`;=(L0%Hm?-P`J5(OR{Jzph=N`DO)V!
zW&-;D9d99^Ws%=XK<g}GMNWwT$|sAQZURcPP;^KZZ6(`DXuG0J`z$&L?kIFi-6RcT
z>MYqVS#%Zf!tfZG-Loi@tR~dSLKk2Z=)kxsz{<idathT`S)_&I3MKRX-(o=)nJk8J
zOtZ)epWA3RWf5kP%OWovo}a%)K#weXW^tL|UPAk3(ObafLi-54LMTn$?kdtNv$(3r
zxjKt}MchA&)1O4$yjC~^iu~&YT%W}aMb3>Jo$sQ)56t4`EN&_C?-Fop7K4hM+p@U5
zi0=?^r%<|daFIVGi=l$=7JB8p$lD`|rT1oWPZ9ILEsI8GF{;S9FN@JdJSL0#1wSD4
z!6N^mEFKp8h|nYAgt1xh2J{&@oSDPpS&Yl#i7cMX;@J?-g?K89r?Y4sA{OEqGC7Gt
zRAEsT&u8&*7F)7-A&c=@yqm>)Sxm@cVis>?F*}PFvzU~{D_OkCuy3JW%3?|uQ?qzE
zi^<vl?U0kty-HGE;!P7VVqQzWmc?|=%>-T-<_w`Tv(XMe1(=%ENpMecRyNwf<F)FX
zERN5NEzDw37IU+hm&N=n7G$FxgG>18#TwBrYeDnkEZ)rGtt{To;+<HejWT>bk$Si@
z(96I(oQd+(;gT$tX0a}dzt_i>aRKqvYOX5ZB$sEgLhM;7`d4M6i+XOC@uG~sFKe<`
zE2Zye@j*7ap5^ssv<a{#+Id)?#fB_4X7OPbo4Fi`B%cDN8JpO|ff!At*zUVyOuQ2R
zB#Te8IFZH4EVgE`EsKL$e3!-cEOunEFN-g-*qOzyEcRycc|ltiySW_ERC$rwXVM+&
z=iLz6$<Fd>k(c@V>E0|3Wbsutdd(UI*fcNvzs}+t(erIK+V`VdSagvWZPKzA{0aU(
zi=Q|US^SXYq57!eAr7l_fj#Br_K_@(X7O_tzhrSt1h_GBoX+I#@$l%;Gj3?GYj<e)
zHH+W4nw3SnUNnqW{hq}iQl(OeKWP}(@DLS4oZ=|Z9y&b4KjQX(IZ0{i${25&P&2nO
zSe>KHM|ul)2g-*)7@5b^)l+;RnoTef<ab5a_*Fwx3vpqHi$YWn(TR`rihPX_XM{L2
zM9mPjLeysD_m19j$wW{mjNa(W>UG2D`9wZm%`M6~G1LoDKg8J~8iZJWBHk#(IUzc4
zi=7+dyfE5eCuXhlLo^I=K^VO$f=n9BeKrP9v@axTFAi}@h~^<$glHT_0eq=YUcxsC
zqdN{%(lkV~5U<}KIgN>+rC6T!qRz6kRR~h@OG3m$+#KST5D8Wf(IrGzQBKLy5UN<Q
zO^CK3+J$IOpYW}}!Y82q4q^1<FGseMFgpunFtC)gTZkMx7@~WKvJhGbJ&Ybd4?-9r
z%n(k9R0vCIu~ECInbn!nA>2Yyk<U9yUKsszW7CwUOeRD&L>NX-eKNMm<XmHLQlLkO
zD?;?;SZ|8;3~^bAUZSUWh|5Ft38Q--Tpt)7oPdl^y86lxSA`f5;<^x5hv+Br*NAe?
z#QtHlT<||9>9uqhcPY!FDR6y=8$#SvFqN*WTXG{uoO=${qqrR?L(C>PrniO|6k@bU
z-X_ju^&uf{7tS4Fw26IZh`S^PsDCh5S3g=G*i-gsXo$N*3=`quA?^(^GQ@}w_lRK(
zc*YE;_9$xLizw-QxzR&!usRzW6XO054}{T9@8coHg?KQ;Lm?gx@rdXg8{*M0dR-)A
z>9L}DTzTjjE(lEmJQ3na;Xf5dThKI#iQs9e{tRPJc49g7&$A1hk0JgIF+RkE5Nkuc
zA7WyN7de6<mV}rT;-wI8N!^!2Ob)Ri#KI6$LQG|dhM2`@3GqsZ*FsDW@v1~STVw#x
zu>><h6y6~`GmO?!PCE9K*1i#9c8GZ)=7*Rg`sdP;;=NRcD_0e6?ee*1zO|K}S;VPV
z3|eLvhj>$Ju?gNXep^EB9pSty0ncFL{y8O=az=+(5n>sq{MH0prylZYA?eBxt3s@1
zcua|{5#tF8*$-%Nh!aw4eTWSq_J#ODn%Ed(Q;5wBFdZKX<$E<h3h{A>9UPqyTS9yy
z+O~!GRH|$ZqgyaskZCXh!*Y8V-N-A9`>qhXMeMT>dqk2;6WvuP-5cWbFxr=9m@&4=
z+#ll05C=ni7veyOuQ+P|CBBtjQ2*BgzA0we9Wp8KeTW~}Xo$m<Z(sUjh(iL1DZq(F
za3sXh5I=|bg##DjI0praKQUaWIT_hB0sZ!C7`+?wH;FX&c(m)zPMs8A{T|{E0e=cT
z72+=eTr(;2w_wUMJWhxBkAFyV(QuT@p?nU=p+XM48@ND=DCc9v94h5dIfw1BC_8^_
zwD@y&Fm;<;QZ<KaIaJSq{2HQ%rNjlXnmN?UVR#NBa;Tj{ogADTQaRMk;jA3m=g=V+
zy(+3+4(I34P;h;rXA5m0^qd^d6+p@J1n><@#24hyIEN;}X(aT*94-=YvCvC|7KAU&
zp{Zo!LYw8#N&xjV7tkVymPJnC1y-#k8xvY0l<$e6d?JTr4y8G$qI}yN+7vPCwi8@X
z(y_=d6VOR$XQ5qk=vpl8mP2>Jg<5Py%Rw)e8abGPts=+Hp<qlp2RDcQMZT9qK8GG0
z2;l@mGsV)ZfG~%gfWn)pdKOEs$l)@<y@d7_dU>(5j{r8>SHP7*uPT;aEudfSfA9Xf
zCWmW<Ga!dSMVaezxITv)a=1}AHw(Q<=s=<W|4mu9<Z!ES3VpmShud?wLpb!zkR0w5
zd{>b(IETV04;9YcLWdPg>C!=s6ZhnBFJm~7eCU_t{gq1j35=1s=tCHza=1?b@#q}J
z6!HDJ=yMxnK9s}5IjpE&VP*9SkL2)Z4)ssq>=Sq_hp{=F{tbK?+T%HlW15O5m~wbB
zhy5e)<p?~L!_zrDH~<d~z%w~Ko5O~_*w`1(<?wtCM|$CCFT9Y$_#9gFM9ZF-ki*0r
zcIL4wj~8>8ltc48TIBIk4ln1hIfsvOn4H6u9G2#=jLLf_r{?fR4zqKZmcuJKyh<l~
zY6d&vsn-Ng7h0!TDfu&n&!X3Jm?e0Ir<k3S!`vL+VvqL4=H+;NNG;@0a#9OkkmHFL
zMJ8#FW2G<8OE&%^wm643bLccTwzpwv+pY1pbNHiH$vZi`o5OoK%sXA$$X83~A5Rgt
zZdR)KYB}AQ!&>UhVWr5k$|ye)SjA;$XX$FGxJGb4Uwyz%`D(q;bsP?9h%Igq4vRJl
z_)zF3p{soLaSmH@D3?e1JU+?c(;U9a;p-f>=CCb?eL3FxSKArtgOYo4_$-GVba)QC
zgtMEg*_uS3I}$8q+V3m&f<9rF_i_m4B|jH>|MAi<a=7yM*nXj33Oyi{Og;nhO%C7Y
z@H_jM!$I-V_c{EK!*|l_a)F}Qk2xI5;m;wl-*WgV$D5m~SD=0sa9HS(9F7WL(Xkwk
z3;wyt`9(lSsWmuICnOjc4<{*ktd!u-9RAATUk*VI>voi$5`lkm_&bNs=Ov#G)O&&Y
z?1|*AKt<W!$^UZrHBiecm(<88<WV7yv-4<>N5woU<-so^)y<=F9#!(7%o%x9&EwhA
zrB5F#t&!)xx~i7P=@*jKg?7)VD>90Wo|#8Yk*}3UZBa7tSe&Y;p-vv_R>qjUFQd-N
zM*&tZkNWv2_Fl|Hk#<fV=jL(q8_5gvI4_U$^JtXE_Kc!88cHjd{ThEaqb|sUl&+(m
zV;OZ(9vA0vNgma*is@1TjfFN5I%QO%seooePgX0XSj#+G<uNLc`|@a=M=XzY9&R2b
zdBpS3^3d~0<dMvyeI6b1D9xke&55>ojN{8d^JtUD#uG{6rfm{+zD~Bw^YiYBbkkCP
z2B_k)M8`b3<<UKlPI+|Bql=`jdGw7X2Va#KG&j-joYE(UC8s?YTeKiqWn!$1mNZa9
zx+aV~%skr8O)RUNu=23;NagYP=)@bjgp)_Jtm1bGdG5C-U;VKnx#;DDmxrInHF;c{
zN03J*j~;pS%p;pem`6U3-xifW-ZELzDw)gU{xz|0CdOtTPS8l}NbKM7vCHzff>!16
zXw5{gJbLHx;8#he%k$_{#1}VBUYW;LdGyQUmf;Cj{AhII!Bg?8^SH2U1o(pD{$d-!
zfIP0t<F-6*&*S<$ZpdRG2Q&}Xx{)-i231MkBw2D=9*ME<b9W~uPLJJ^$E|q`%428k
z5_*P|MR(+JXC8OwF)WX}@)(>4tBhNg9FoWA%88-ks0+F$i2G&LW6vgrGgc?Y?#<&Z
zt#m{l2YV)%?h!zb{kSwSlEZXaf*MBWF(!}MdCZ|(@^~PR33*Ipm-BcikEio^CXa{n
zc!a~9#}j!>UK8unHSuU3k5PVmVk`%RJsq2T&`VsrCq{5@mfJPz$vmFQb8$|LTA7%1
zAkleb^8MXOy5-qCp6Ae{N}r?Udy^N|N|JIcUdZF}o{8~!@VN}?c`=Vkc}&aW6|VpE
z#^Z^}c}&UUW%_e>g04GzLyWO8^kjT0XU(u^q&Q4p)+*u1zM98toFl&^rspwJ{4gUA
zHa&KDBE3EFx^U>6Sv0SRIRta_n3u<@JXYs1KaT~Rxp^$lgR!wNkGJ!9CyzyWEY9Oi
zNpFeIX+!;;$t77uKr`ND<h+<zn#X&b@)eRxgc2;>6b;ShKNBk$D$?c8*T+`ov0`uX
z*qe#(x+K=*u{Mtn^Vr1hh*d}4jIGb(1L@tm|HssqfZtHQVRIuPT9KqhL}{Fv^GaHf
zB5A{K=FE2HoH=KXec$(eOABQwON%UpQVK~?A=)HKLP#kplr~Ed-#w52@B6;%daviY
z-{*ba?b&9|Iq%G&#VvhXW1aM?*6Kq>9M#fVU4103ek%U_c@ef0VN(%SozOlj!sa6E
z*sA~0TG8h(YNM#AFPK1hJzb=?DsOCMqPX55VBBqE)VERhwozZROA#J1@u-QNMZ5uk
zW}?1{Z;G(H2*-<Xg3Bvie@_t(6yabI_EO<R*gr+zM=IbdOaHD2-_uDVW8A|AtNdfE
zALw<`%Dxo-sR%#Q%0>9I2)`8J5I1sMKf)MkqYg9Y?9ryZlE{@bn%tn1|EskACiG|#
zei!iKTN<1GD#F>a_5Uuyu_6q+SO4ltwKp){>~Gw0(3sF7d9n!q6yahMmzems2&b6I
zO_VWlng(Ss_BKkIII*PunIe=hv7n7QKGQhMJ<c>nw^8Ji!o<66R4EggBS{LJcwalu
zj61TFGtp*yqAW*vUpwE#(A9}8zb4C@s9@p(6NS|YmJ0<`G*QV!wnBY!`rm1gUL^c|
zZPcYEE;CWr#0@4Yo2X*qY7^I(sA}SJ6V**zX`-4LFNy29f-7&MxGENMSZbL3sIIOu
zaYftz@d>UqQPafrCU%|Dt}{_fdes(5az-9Wa*#%CRcq-|$3zzaH=1a-Qu}+oamU_d
zJrif1Fm5t2wynBqZ*pE+l`x@m&6F`=m`Iv<z{G<ll!*o=8k=ZhVrv`YW)ruVXk?<H
ziBj7PmP3CeZ#A*Dt-4+4Z9-Z7wynCu<keYKEmF1rOg1%fr-_y(?lsZO#9bzK7|G_G
zZj*L%k-FPt8dn2~)U+bi!er>FdrbPaYVk*sw3UhbOw9RAo3hRLZcE~R6D$NQ)Anf(
znP@&pGfh|~TGM1);r`^YBE{CWCN4BpkqI2rZZK6Uo?WF)1SV_~jtSR9WGWU<z&OFa
z;5nwsm{>JW3r*x`TobEJ#j?v(c@tY+NJO$zf<H}F(Nf%UdwPzEK_&*9=xCyoiJm5U
zndnRtnCNbzhl#HA1WPs8X+)OlCYaS0mKw5Ldv|}b&Z<Pc+l}5PhFR*hi;aFJ`k1^-
z8+}a_{g8axQct!__BS!W1Y6tgG)M=UI0xRa)R!EGj>_&PhMO2e`<nQ}QX@?M29X@i
zjzwyuiBSTGE2Y%2{mJ=ya-50rvcVxMv<W7t=bk?#?@6hL1+zMlOHC<)$4oqKVvmWv
zCMKDfY~pPb@0fVP#FHjo<-*v-#8eZrOw2a%?XQVxCZ?Mhu{#;1)Toqt%EZ$q+V9b3
zn3&1#DMkEzN_~}5f2PzkCZ09%l8J?k7h64N;sq0PO*}7Ea^^4||49(A%oFAUq4Vjh
z!hEq<vaPKanOJP%74iI+Y0dl8E4KQ;Ry}Ps$yQ5DuzY8$`(7}X(pPP@%*1jNubcSk
z7p>8k+8c~bzT?|gT=@!mMM}M8;!P6=_9s|YQj@8;iR)igyd#db+QbJYHkepr;*(#r
zcTKz}v%F7-F|kf2ZRo_4Qg}UmTL3v5O?+tLOB35nd}QKdx|xYXj$+t;Vq%kt&txN?
z3N15NGaa>=s&>@p^z%(xUq>w?$5CHU`Af7iuG(tiWC?Yht4O~RyvxLP6JIm>L}sT@
zwo;f~n(M|l!r3j9RW^NVVjm;OLMaR1nfTtspC<k?vERfGCVt~;UG*b(aZ>xq#Lof_
zm^jEVcNI(4RlgKl<S@5G|Kwb*ViuwWk4V$6Lf>@NQ5o%bI<2ez5KOPAdr14+L`6@X
z;1&cNW5P7SRL1m0gU;Hf{UbU#!>fRaQ#9Z2`e_sY@merfqY3JHu?)?0)<g*l9J8c_
z$Wu@5Nw)N2$1822jD_kJuC#ETg|ZeZS-8-``4-AqxWGb17EhJ8z(uZq(WqcyxTj`&
zvBEztRey!2m`=a&)I}C9wouuMv+L<swUt%$ODtS!ftZ1CnSkFsRnb>fEL62{xrJ&L
zuHamov~Cr24oFbjS9kg`sA1tM3)fkwW#MWISzitF)itsbF8*2zTuDs}WD=0pws5_L
zx>g)qbgDWQ_Uul+I#;JNv&scf^Ytv;WZ|h4o=!otP~XBg7Is@mSkNtuwJ^?tVIgTD
zZ6V-;vKAUxXkp<V3pZP6XyL*6+U6nJEmr(k>+Kfqu+YfDtrnJ-P2MK-kNb^hd_~&W
zLK6#jS-9JRQ$lYlVs~0#6NOotiTpbv%)ZS<fRb!#Y2jWAtu3^%(8|Jn7Vfw3fQ5k#
z^uuQobw|d><{y;q4;2s2Vb4v`)<TiR?|Jm48#L2`Wg+}R^U1MbTkxcM@^O97q_{X1
z??~~{f&^tM)ig-SByCf#WQIDoFvP-8cCnDN(9J@33wb(^g;Q^79V~p%PrrJr7O%%b
zJ4*J@+Y2Q)^rqg?LMIEIEp)Na)x!5>>;JGJ@zR}o?PUo97IJ!6=xL$9g#i|NS?Fz{
zkH!1ISfwo76lp&J=Qc>)e&wq^&Gc{k>6~|<g+UeuivU$eOgfDIY4MMG^)dA1n#KqV
zKh`ovS{NVc?%L!ivE69yrJz5#Q2X?ZQM6Ed!_miEm|$U*g|{s{Y+<5>XDmEx;Smdu
zT9{&Cs&stJ!s8Yuam-5kj?0ZXiR5IN<-mf(6BI}!pA=eRaNIP_!gLEW>A+jHZWFbq
zsKbfc41NnFVA$zI^=e6SSe+%y;~=xCRlcrG)1R~OyoHst;3{p7g%>O=w6Ms+T#IkQ
z)aO~4Ukv{2t&_9B!i!Yq5RKKBq=}gP#TH(+@VbRJEWBc2$wKWl3rp$M8?_}CsDW2S
zn0(5U$#Qy#u}qjN81e#^3$3tAk8Fdjao>en*|UkaWFyBX=<irqZQ)Z3n=G)p#==?)
z>nyx0uDJUx?L7;0+V?4Q#^9vuEo`i1d`RCD@PUO50ydtbwTuC06J<AQbQN0dV+)^f
z0WT(4_zUA_7B*Y>!opSypVK|oChuCG*dnn>fhwysI{)``6JJ``!B|+RZDZ1-gPl!m
zrxVUid~M;{g*vNi-_b~q`f8_zT~g>gbhAAc_Hwio9!lX`3;Qfwl)}X+e8=t<{-yI<
z*l*zn3x8Vpi=JTN0F&Dg<5vp@E&OERuv8n~mgMX|Tlj_kd9A@JHFk&z_H2TxKEhO%
zRs?MN&B9R&ze_Kg><{L>69)OD)6XVuNUOiaUjJAiJ|^_Ig%bi!3MGGe2SXbYYwWaz
z|Cqf~D3`+cYQ`B0B~v(ge)24BaY!epL<(FCeG(~r^pnO?DuvR5%cO9g00tLJ*%S`G
zk)S~N6e^@}VG48rM*Rh;IQA>0P*DJJ%e2})HKuD4Nm}8O6fRBSW=@pCWhqon#m~`P
zlR}jgmJHFZNTIrbswrG9pqfz5#a7zAZd2n*=~6@JRYI>$#eXZnaUPhWU7JG96s}9f
zJGv<qTe(&WbTgLPDO_KS>j<bT^oA5}6i`p-lA{R<YpFPs*B45+Or)Tv;-FwL1SEy3
z6dDxsho4E@l0u^to)~7_pTeyv+?GPK6#ubTzg=i!p?9Rvw}a6>tw`C_M3_xe7?oCc
zN)wrP3G;5D&4soQ%BFh+v`pb%0j-4ISKP_~d>|EH4oYv;K0BLeokE)wI;YSjg|^g2
z3fUCG6wDN?6ucDt6b3EPQz^KzQ(LNZEhmMu3ldC{OvTh>nkK%uevm>&R>;U=fb?G#
zztof&X~-HqmqH;0cFfZgQuun4_C*7I<Y}FTBeR_}wNIggfQ~}X8>)2@zy)+op<4=r
zQy7xMYiEq^oF#>RDfCFiIjv_3y;5<`@6Bzdz*Nt8WVR=Vn2YJ3!hjT*Bzc9R_YR~x
zt<nYw<<*3EXbQtpcsPZLDGX0x1pQy+M^f!6j7{O(b!W7IF+zDYCzE6H!Zc2V2_~e#
zIHCY46Wt>;eF{@jc$6NP!WE_U$7Rw<DLi{7acGD(S*lN@@Y4p3%ix$(WpEBVUBEOM
znG<me4m%@-ne<*8wQS5vVRi}|QrO5XbHEhdNnv#g&!zBu3a?U8G+7ESq_8-J-evS*
z$Mv~%`?mT^-0X3EUJCOC5HAp|z9?0yci?nmA)REpv51^E_4L`q%c=On{YnbEp4674
z{+EiGV3(%wx;VzF6yBf@%-7x$$z>@lPsNwiK^9ifqrTAI6uOf6<Z*q?{qYS0vjp9P
znd)u&#!!vQS(C!MDXixP&nDgzCs{`;uT8$6!dj+<N&47zNv?+%KKc(8_(3Xui7wrP
z{`?`6PYR`Ml(zA43ZJB~mr0mQmC-h(@EL_C#^K3DZcgFz6t<+moWo^MCtsw%8<=e=
zY!wxe^CfNP=mcM-u$}p8e0<yUHTQUju|tGe-6>#K3f~lSb`uC@ilD$gCjS(Ur0{DB
z-!m0V)PAHvQ`n!v<iGSEQfN6;BVYs_6g3_y&J{nU@U!4wQt|!9xm%9I#T@S9w-k;_
zml8I9r}GQ`PZaW}(0_#fmBQaC982N2Z2yEXsR!zf<)l=p%zp)(5_<Za3<V}?OmSxz
z=`uJmmr>G=^B(N~t%|sejq_|=WaDBRW$oA^=i4Y}<IJi!@XOn%VB-QC6>U(}Ogr=|
zUQ8<$k8q)lbE9!n9RCs<m)f}6#x*uBv-x2bm)odjqlyh)c6puRO#&~(Ri(;tuCU`9
zk{WiL7OD%rQYe{BhF96xcTtk1us(6E4d$GhcI<3iHZSG8+)QNJw{g9Vem45ssKZ6t
zuxzAk++gEI8%=H8X``Nvn`|_+af=O&KDJfUZ5TG{+h7(=*#EmRAU`P_rZq;K65K#2
z#csCa`$>XEHg2_X8`ZTjzGg8N9)8had=cL+%sYfOw$Y?mhOySn#$7ge5upP!H{NaI
zK^qU*XiohP)mjK8xJN)sq4x@HW#c{p_Y0-W19p7jBba$QvD`LV+i`S1eXrie25DQi
za<ip%-kF%f8NXGxZ8$daHm~DwZ4AEFV9D9=Z1{GZPtrE-S(nV(2&76*MvOv0<%fbR
zE!TM!W^SY*3O2gf=xU>#jrKM=u-EBCCmWsZIK6bV<2#V4Ym>acVh&+pGU-O2vC+py
zUm9_JqK6&dJMmtcxTlR?!X)l(<F`_=#d%5M<%v#6u>m#)+E{2~k&QuIzm3T@p0F{*
z#!wrhZH(aps9qZ*Z18JRer0;aK;wZe#?IdQNa2hU%7f@^<+rS3ZA`H7u#Isx{|wjQ
zx3c4Hgv<3e&L$?(Nm9n6)XWLv5yneevCAL78;{vw$H#?Evg5CIS#?_KPuiGb;~5*z
z+L%fOB00mxOdHeq6R-$BWn+C>J#C}s+yuMuE8IcdjK6nlvur%FF#cY5Hl22a!P4}&
z_MDC9ZOpYXkGfi@aSd~9a2GGwsJ>cb;UM#EEZ_ocyu|T^&lTQ#ODr&Gm`*;&S#0BF
z8=Gx>ZsQdjOPE(}d}3q!Z0%JWZ`oKyo7yP<iB8T^8?Q?f@f$Xl731XsRtSC5#>!&;
z$43)y+t`y<EbrTBIlulpHdYH*BlKON<i982R9dZNNFGbFtP`-_#s|fm4FWdW_^_Ds
zk$`G}`qaiI2B3|z`;r}xC4YWJ8*n^%bD-*<NLqo~!koYqVe{)OY!#U=ZEWN2{!ZTh
zUGgiLnjP<6mUz9SzTL*xHg<5QCH0*`cTveJHC9=^5zcOIO2A&B<bNxGV&B`i@>F8K
zjUQ;2Ks^~Kj{NQb{YM)IY#g-llZ{_&9J28<6)OUyEEk<fPCuUfFi?kWZ1^q)to~->
zsEv0#toHD`jX!MM?V`DhKW+SFV}^s74*s@r%tk8*_c=Ij;{?-`gPIOb+WgiIWgVRF
zfPWA9uZ>a;)=$xhPcf!!{KxFgw0u}AAp!(v$$T+EQ1TqdLHC9RtG6H4N=x4|LeFzB
zZHvaC{G*9-4$3>Y#KENwDs0m#IH=^{LI)Q(__S*BK%goLpZFpNf1XUTT$53hyx2jh
zj2eDOyUfA!)3gSa>R;ucvfwI0s|vkbC<UqsxWYm8V$PKUYB*?IHA#W19TZin&vK1$
zIN)^-YB{*g!R;)Ewb~964s-|CJE-HJt^@0zWIYF$Pt$G?e4|kAm;9R?XwvJ(lgau5
z`hS|>Ah%_d;b8GptszIwsH6kspn-5$y;+z96nNs(#4QdQIUu-ID8UaeChp+!96Xg#
zcROg};MRYVO&#>ksG^MGd+F~K%xW_McZt$iU7AtN9b9#h(Zaz!4nD~!mX-qUb?}2!
z?|1NkgFX)WI(X2*Lk`jo0tc-fwBgnqT$xpE9W*?eFrE0Ybddw<|C}K>^?zcQlmpv=
zBUW>Tdeqy_BrWJmm6+zsILJEa=%AB>kYi?5&ViX#B~B$iKdj{)L=FlL4t%SzbP&+a
zLD#HmFSx{xBnyY??4XN-o(_6BSaC?}N|$r6Z;Cefu-45%m4A}srfH95RSyTvcO+lR
z#*5@GdOM&Oozr$d2mKw4axmJ#00#pd3={7i<Y2IaFOO<N9So7ZugfZ0kfveB1KGIy
ze_1u$!3eSMNC&eIX>@qXjBzlQCUbamh;a_aJD4PXGQmOBP}P{KO>{tuJj|uOo=6=?
zJmTO{X?n~-i)|W>+qY`+aj`PxIpAcOg5$H-6o!w3>0-O74t9T?Tr@>{%7GCoMg%we
zw1X3SV>Ob_;;J0{?%)px&p3G2!6pZvIe3oF@8C@bD;>;n@PdOybV3Jo*SQW}bnp^O
zR?QPS-@yU_9GuLB4(<;Xy>$D9Nh*QmWp<yUF^HBqc*VgI2d@fesnFMi(mIrRUGN(;
zWvE#F{E)WX0qwg&#-wA=#BVuR<=|s((81dhQy)6`$iX`fRy$bZ;9UnB9sIN-Nmr!9
zj1Sd&4&LV?L$y}uI-%=@lKFvv4G!K56{{cjG?+$~?$N)Y#-?fvoKGEaFTJK}%XTDB
zgt28eJNTT|aqyjkEe^gA-}}bFR=R|PuN~|V4uhR~*yi9XG0=9Qv=@Vm`rpaq)>y@3
z?oI3xqg<R*yQSkEp?igXE0i0jOMmZRzk{D0{K5qs(tdF8Bb|-OBp15@hoY64UJi2m
z;(qi%?&y$%!w!zfI4yIrX=tEMvy5LI{N~`O<WdG8m&A<9iT-r(mxGI4T;k$y2gj)Y
z!`g)|j&qR=QWsRkNeBNpDD9$*i;g+<uY(dUIOZt_r#Uqvcb36&#zDEC^wBvreMj=F
zU@}XJB!seBN=6_!&qY}m=esE9f~p`Ur3K5o*nTp}i$d(cQ#583dcp;6d_|}zw37S3
z%fUr17{Xj0t#+x4%UtL#3>TGMRB>^=i#jf<y0PnC;i9^W%LP{xO7CS7xY7ledX0-~
zUDObKl~C^SY5`nlO#!uqQusO-wThcqeNi@>JEYZhagz%ImKy}z=%Sv0a9hk|(WF{m
zXhJA+UDAbeaf^#aE*iMlEU78ZNK^=uq5Ho}8@2IXPTlIFv5O`yh;MUoy8z-l1nkVI
zrqterN%}VP-kpM*3B8LK`kbngkK?q3i+f!B;NnLYEnVE};&B&~T(oj=pNsY`I=Hys
z#RD#U7ikwQJ~JM4!Seu?i-%macG1R-?@M{hSLEW$<$7C@nYmmy-S|F`g*TQwPLOh8
z(^xxnN2n{*6G|qB4O}c}l+3vpoiZ{mvTSOl^X@csLCRs9EHUyfA{Wa}C)!p{7F--%
zuD6rvZW|Vl(2;)SVvvi$E;_sD;-Zg>zAkw4+?B5DqPL4~F1owu!QItJ{&9us>BhI~
zJQvY$puyYSmMNq8a-EdI{oMH8`{@UafiC)U%**rvLJ4@3g8%f#RSj|Z%Ni!Qc-X}-
z7sFkQ;iL<-5i~(XW0Wj)q>J0~%FV0Cp412A)o2$p^NL`s8{d$#jB_zwF!#mkL>YnI
zA7S^rq5`?RM_rIU=7NJ<IZU7I;t3b8xmfDrNf%RGJnP~)7gK4k-o|tnPf?yBe4{#j
zBuUO^dG)jlQgTRVa1Bx=p5<b8F@8pXURyoSz0({nc>3Z67js?Ab1~n=fxJ4CS6@um
z2skVOs{}7Hj$ABcIG@s9ru->wk>JHbt450aSA@SrC<R^>z*7^iyLiLJ$1XnMeqAi5
z>S+B6^;gjDE>^j)BE{1koU37^R=RkL>1d{L?qJE=F5W4wu6D7;#k*3a0H+ub#V0!6
zcd=Gh{zRnKxmfSw(d~&3Tzn{CgV2q1jK?(cA3mjhBphOLK6SB)A>-m}YKHMh4|n<7
zD?WGQvnXG<@zIejg1O*6(q${1;grU{{SGF1Amp`3eMMtMikjTvVyBC5Wk=5*N$zs-
zMWpt)_=e^?l4RLk+_cw?kI?Yg3F$r;-_aIr)b}n}_6z3m5*Chsz{NoqZ9Nou_{qi3
z%v~O?^6-m`LtGxSqKm^WjxY)s_2e8${_5g4M*6!3*G#Q)VMks3?t+I{SpJOEUoI{v
zsJ~qt<6asXbqngaIL1HB6$N!d2H`j-Ibak!7)SV5T;-I|SAR{OadFl~X%A&Ql<@HB
zV_HcM@DLRg&+2g5oR_94<;4z0RiEdftcMC7F7U8prg6T9avrF<bE_)v{qGzRwN1rV
z^kP5cIF&qH=*5P+$U{{D7Yill5&@TbxJ*E0p;d&^6)C`Sxm2qOy+UYpp;ro}@YNo!
z@zBu2Egr7*P}76vp}vRfJk;_~*TW57?5MRpK5n3{=i&>B2IX;}I$nHCh=+)%iW@!L
z<i$Q*Pd3XVPuw!CS?$+k!h`NXd1&Clko{68)YYHUwWJ63r2|uv)tjZ2(aMP$dAQZX
zy&hV5xXr`u9`5pRw}(4CG?q0q^I{LDA2#t~FKz09+Ge>^0FPJkR8=(|Kii&Y&h2bZ
z+#|Gw2TsRoOAnlpbJ2}iz0bo#9_Y;Xi`WA~$$!v`&u9^}_RvPG#x1iK-Pq)QJxuj5
z%|ptA?eT|ujPT%ia6RNa<Y}+llb(k;BaJ|??;$N<XhE?lL&Zw#oPr7ktSP8(3M%4`
zJoNF<*F!rG?LGAH(39S>I5EUCI(Rr)P#uMK63S|44_yRz722(s-`&F{?Gy!iN%!6~
zQ#-{$IMhAuRIZ)s=b^uc!5(J5pk4Q^e%<2404~0r8Ypy-bZ1qjj%8Se(l-_-h6!bL
zq=!+m_{Tkr_Ati7cn=dijP)?2of=26(D0wvh-Yx>c53u#?P1!E+U}|oPh_vt+9Mv8
zNz-G(-^PV?)!A{9hshqMhsF~^pY$+=h8V4r!}4iYeY%IIJj`e8czD{w46ek(3*3%}
zFJIDTd6><N5$Nq+(w^~9V}tRWhwY=Zu9Nj=rFyKLI{38qJh$0C26O3h6^yHvCgyn<
zS+PFlImpjHYA<?t$-^65q=$tb7SV6%s|@y6G>*2|!^<9CVMbb-SmI$%A46}iZW*d)
zUP}-!Wn>N2cbr%MwLs^Xugl1+F88oP*7i1Sx6j}rS>E)pQkcYVc__V3Uq!!aA2)Fs
zT-zEC?|NA0W4({}JiPCrnUA}CtR>S!c^?(n<lzGk2RV+14IVaf%O1Y=@S%r~JZ$#x
zxd)z@{n*1N%vuc08U|1KZepx`sq^$Hk2HVg;kTnY&%2WTeV)FBG38;a7azOjLC`Nf
z{GjxTi{jIy+dO>bp>==$Pg#;of*l@qQozHH9-jF`-{s+35BofP<6*aO_ITJUfUP`4
z%0j^Mormw4f}~2B{UXM5xojfkY3&yVY6ln>Z|l7e=|401dpPakKM#jI9A-Fs_{+l)
zI?Rmt05DH<|0<Z(-vk^L`n%9Sgw`0P{mq21QvX-zF%QS7g!0A-hL4ATJlx-2acVA!
zfcy^a)hWj21btL{)&5KUjEA!xO8F@5gIX%#$7ibHqoj`wv-NHd>O3pUv%5U-T*k+F
zKF;@1&PQ24K1<9K$fX<Wl;_deLH{LqBAN$)IoAa~Dsmhj^?X$FaiNdOKC1XA|AcXo
zkBfcq+%HGw@#9MbvwEqI%LKpPSZB4WkIQ{r?c*9B)qGsx<Hr#?kLj|hx=dX|gs&{_
z!bz|4F@Atfm*BA1`q=-6UYqNjq16<6osU`q&K)vm>-8d2$46ZOJa&GAkN>I|Y`V#Z
z=HnJ0jeOMik?^syy}DV%bRP|TjGmy=PYfSPKlUOe^x5``xXSSa4;%BSb3-3I)y$*p
zxB9rvM-w04FHAh$SijxJ9X`HnuZ9ngkNr3HK|{0f40)-hdQ%^F`Z%`C;6nkwwpVxi
zXzpXAk5N8a__)VM-bdu4rH^}kq<q*uTKTxoM{6H-I;i`7JRk$UG|(vDK|Sc>As<{1
zarf;8PjS=L+xTefgU8W}d{{o--C>wQ$vJmSou}4$7@JQYI6hn-9+gnf@O`9Z3p|n?
z`0-hEK86tb$Oz5~?NB#KevT_?t-4$j|1avQ0b0RFH@5m{=cB!k4x&cBguJt8yQ7az
z#rpqazShMDpMdD<W6K2wOX{TF!$(gaV;(UE_~^yOG}bpQ(fj)7Ex3=+*ZB~{61|^b
z3iKC4SHIC1=wpx%>Y2|t4E8a^$55Xyl-8L6M)*7!7USVQXcPh_3i25pqdA?A`92m<
zz{fZrGknaXclns$<4GS=d_3%9qK`?UnMZs)>f<pVkJDjh>Ku)QOnNN!*{p-QgD1M{
z8IyfHK_@J!FZXoPa(^YJ`gn@7`{2~md`uU>^u_8M^Yl+2(5cLP2Q|ybY#(cyBwz6P
zlQ*9A@tlw6eSF01H_dS7>2&)!)Y~&U)y^0h+CkAqbGg)ITC-ioJRe0P;~;&}2hFj_
z$70SqPk%}1LLW?qtiJ5y6(7rdEcda*j~}~WSt?6<l|J^R{u-xP7U$B}g~`@8gnv$Q
zg^#y5zK=Kk_yL5KR8b|J<@qMbw|%_Bq_N6)kMxMPnm)5kdspxpi4ii%A$^~h0Ffl-
zvon04-~(nMI(ZsS8XJ9l$ksH<^8q>^AN%-@4(a0)AD{Zz#Z=&9laJ4QY-N1;*zDtT
zI+Bkse9##f9WB-xWm3BFwSIg{tpEFJsBPkJU(;~s@gM<i-eGK~&o|Zic*Se{i^dLW
zhmW1onmQ6!nH+XAYBuP5ee7Y-_1BpO>3&R=-}>0c^0&b!AowK3e&z%pzx()up5Wtv
zk0aD=v*bY^KlwOJopewmj%YuN`!O^8;)7L|LzG+=0}jHc7<hU5)sG*1_>F-qAiiKV
z*8lYJmyc6EPBU*aiFHmK_i=)*I8s06<LeH}tD-o?Ngw~pT>sFS|4oo{yn`ZOm6HGY
zKpLgeIOF522$V?2VkOf!Cq{WzOQ-R`H2u6ZGHViL(pbaeTN8A0$_j_f^J$=&Izfdr
zE=Z$s8cotXyo5?=B-2o7T$sj1Y227by)+t~)GtosvNS5E<16?jX<V8HuSA!0jIT$$
zf>cSPS{k3;qE}7FR~eSe1<<#zNTYfhSEg~~a-9!rTqmGL8dnLpTIe-GDR6BXHH$IB
zkn*+Ce362xE%f>{>IfjGZkp$&;wBab(M@cUhglNo_`xDA4L*WYpPQwZt}^sA9(+(Y
zgp$u^xEiE!a~ijBYw6g;y!U8Ge4b9TvU+PeRyCiEx-AVplr(2RjBiiJPfOh)^z;e6
zX&QH?(Iy=~7}YF|ySSJ%TBY$?3H|Ogw)5eyG@7TuN6FHUYuwsBY4CxsmO@v2lO(<`
zjr*ng5Up9R{sUZ|RL_Z>lWbkwivn%aC`!XjgWWkPpH?H&5`mOZ^4&B%?mdmkY4~ZR
z(-@e>pfm!iB8?7dbW9^lD_1k3GztR3G;#v+Y5dqkXJI~P8gG}5FLUjw=XVo~7e1iG
zOL?a>I;YVijh+-9p?686dm8lZL`T&%jc#f1VLF!kI>vud!F#7(Y4lE`e;NZs&wbM9
zn+5~9!fB0WV%F`Kj&o_8eh2B)6(3Jyq%%PcPGd+KL(_;K^*T=<md5Zj9v6L%po!BM
zm&W)sPhRm=FlvlYg3$u_gwfby&eobqjyZvL<V5NC;iHFzQkXK2GL)L?kBKnF$YcWK
zbX>_3X*`+6i)p-+#uPsMo5l-i%s8R3X`1w!mBw^g4>?bz@pLhsAz)@2D=$p4X?7aV
zr15MT&(U*^=+8@EVy0QHjhs2cC!U+eXB%P-%u8cF6Q(?@w?JCC$c1SvO5?3GR;95x
zjhCrUdO{knq_HH8JDTdRGY{Oazsi*~)|b)`MbGEbCZF143VnkSUCQ8X%(8TRGt;i4
zdNUp0;qaofl1}npf)}Q$_2Y*b-%jJ5G~Q2Rtqii7J}^yR!!*()$>`u)0^SwQd+GQE
z0wX)Bb!q+x9?NV@<AXFd2!CEjMJ5Yn$Y+({<1{|uusN*D;nOrWrO_qJADHl28k?Dj
zGN_or=V@%Aa|UP^;EOc2rcoonRRO-Fr=@W=jS>OAN@K@n?LZm_8Ea{L&1xDunVp2c
zD~)f`{0SR-)BMn(?`Ggs&`)+$Ydfml9o4sK?Bm9n*;*OjrBS7mYS2lsm4%pvVmJSi
z{2`6joz#zM^y{RibW%U1@pBq~rSUg)+e!VxjMrKHmd2qp4l`wOU!Byi42n*Qfb=Z8
zoYjts7$tvC;}5|NJF7p_ASLq{leTm`%@uZ5C(`(rX?b6g_@r?DVF;{AuzHGt)>%E)
zSq00r|D?+qI%j9qb+2~n+Z##-;L(H&0#ppZm4DD#l?qTgh&Na!z<B}62B=Y@K1$Tz
z+gY6-pj?3RLEN3y9wqAk(^*vr;`OiDtdUtMK;<s#(g2sqXcq?1x~Pi+Tr2}}%u51L
zMFiwm4p1dP)d2T)QH^RDmj@_xQC9?@#;OUk<g5CKE~>h4$h<O$wMuYxfNKKW72xgw
z*9NE=Ko4L9xGn(4sT<&i0JQ=%SgX|zFsqAVxn4jWp??q1IQxxUo5<G-P;$Mtyo<Ui
zz~(OMr!K0#Z24>#l@P!&lL1tKqOR&z4jZ7^a;;HU)sTA>%xd+n>XvhS5#u_^ye+`(
z0qzLUH~@#eGeDC7J-e!=LJ3~~*?6q0B4{Q8tP(d5aQ$+vEyoGaBEUTXS_ZKxmvmJR
zQY`^miNfy-@PGi?@%{kMR)`JCLhw+4U!T)j3ngeH;M1<^Kv!i3a00jitN^UOu+B&Y
zu!}J{UI0HpK0p+J#!Uyv1jw@2zGM*KzpjcP48VzULTP%s0Ue2)%H0$<PAyTx?E`cO
zuq?px038E#3h*TD7@%{2E&(P6c!b>pbPLcgKz}-6iTd3G^y04RS5hUXC)ZiaAm}ap
zK0+zbS3shh8W6;9ziib_jS4VO@F1asg$@xqROm3F!-b9zI#MXRGr&g&7!zPDb=ysi
z7dlQTt8|_T#rR>mXg5VBm-J|W$Hm7U3oyK!Vqxq|3NV>#tDrw2E1cOaj%CKh)Bw{0
z%nz_2!1Mr51(+)y{&avD0T@cp1(->{{YZO8stnj!0cHnr<em#&=8b2iiF$rs0DH{|
z@Io<O(M`<@Fz6SZenM|yihD5tJ?hl}F9ldA&bcUvQ{UnMbXQu6_+{a|5@1U=wM2rH
z%+~@eWnXdEH)IfcFI|*{{<$K+n*k2eV*{)V@D?*|fUN;m1$aBahXFnc@J@ik-PC&l
z-Vd-^@EW0HzDt+rq6pRoSQnsqU7b<Co*sU2lH~&d<-0554T3j{@3C6DyW)#XKc>$I
z_%y&KQO@T9J`2Fiwppq}*J;Geb<MiRdfOsR#9s#37GPh1@0kAsY!9$Iz@7kKORt>)
zb_KX_y|IJd-dz!}%QwOyB_?ODNDl0-rpd_PN-HN~miV4YubVm$V1EEsS$+ucqhMxK
zR{aC|?FV!w?Vkgj2yimMF98lwApwpA_%py?j8I9K6#hNHZ-S2s<p|7U<o_Ybii7+u
zN$K<M>bLIdnBe0=-{`KGsQ(G@uOyJt88GBe1vn#KL42C=OVxE%yYA)pkm_uJ5*d{5
zp-N_eOdQ~`l6%AfUP`KLDwDx^8I;YSYiXU?pnL}B3oa*=Oe%z#zd|OyB2b`G1{Y>9
zJA-F3xF~~*Gw6{)&kQcf;L;54%%E8Ymt{~ngBvoqF@q|Z*cmwQl^IlJHLYKsLA4C7
zpkxolQe8kOn2uc|gR3&QIs?AX_Sy_;X5ts&Uc=Eo(l+i(UY9|w43_m!but*%L)FgU
zoplBWpV32IFC5~!B0w1m)XU(e43ZhBOneE@GDyhC^)s>evM_w~40tUzGI4_C9!VQy
zaB~LCoVR7LsfTKqL8FY^QS?x^WN?;i?ir`_TiLNo3~m?UJA^hC%J6I=pebkU7AN7m
zGPpZ~bOu2N%`<3`!F?IrpTRvDw9Ldo-M6Q@m-F^iR5-5=yeziLpiNK3*m)p>2Q#o~
zvJ4)|pmhd)_9ZR0X3#c+q72LoruO7<qu54FN5st7#Jtm3+Eb-6;DQO50bDL%x#nf?
zNl(Q|{Y;#H=>KHWD>4}rGH91Uw%9$w400LdGl+ykmHyZ>_8)@w8N9wu>y$y~3_4`M
zD*~_k9W&saQju$Pq5p`kh-sZ}Vx8_X2tDv@Pes}*!&6e2n8735Q3ic!noN9M<M#Vy
zFqB;~=%0zNl`I1U3=}#jgTbPNAwt>8UJRn)8H~!{?dLRx@Q4gX(#?7)mPWl|TQj{d
z%En|cmdfm<SjGt$pTPtH4;S<M^iq$?I8SCUh4-AE{#XW&3m~2(U~&de6mvN2R9VT>
z8UDk#F^yCA({5gDOc(H!3`OsqLHjN?W{S)#p{!E=*$ke`pmY{xvUom&IT`F^EBz;f
zxf!g<;N1-7iTvvsyph5D3>MJV!g)D^R|LG2!9oEXaFKw;8E{foS(aq*nlN82mSOAC
z{|_%?oMx~xgSY7IT@}4?MFwwXFu9kCW7aiTU6sMhy<%@+S|E6v(I=eM(uEv$d@qCd
z>0L}s8LZ7<T?QXBOZ1NKd)H^MflCr!{Xi&Pl<xgu1|QL}>!}UB6y2Vj1HIx@b5n1%
zDTB{4*qXtYlIu2SuqA^pWZ9n!hg&-b&e3g>F22ryLBzcARR-IILws<Zc294$BLk)y
zf^Ra|oxwqda0YuaJd|SW&EQ)Bbe??~&|7|_is-1_)pt_;Ug-V|&*sIgyiXuKAeiw*
z{Bs7sWbhYbA%jB<%&zJ;p}e6zoWT+LHgnx_ja6n;wjPyMg5L%FA+3MX<>VIYSO&*4
zIM73t$l?UUD#K$o@y!X%@sDiqw4~F2WzDCA!=?_s;{<X>B+m*xw^WW(G8>Nup{26%
zP^_MpMcFJ`W^r#8=Vwtai|ezflSTO~Dr9kK7MEo)s<)y)Uywz`EO<$(l#P?d#aUdK
z#YI`rRc7~&9fq@Cl8sXtQz&WWEUIKtJ<BtSv3%7mc$H*gygZ9)S*++C=bS6D@x|BY
z#=FNO)X3u6EUwAosw_`a#GI>Td~(iJ$*Gyeb;2aBl|}91Cf?ZB&EkeEZq3HGIyYuf
zFB^ZZxjBoQvhfEW`e!l=O>ljoWF`dYSr`JCL&#KF@JiG`=(gU9m=4o03({MJHp*gt
ziTYggZCTu&#T{8R&Z21+cV^>He@(LSeRa72yl4Kcw`!KfUF?<p-%U7;dv`XzxHQkA
zg#g~Cu}a4{2Y3l+l|@mOXD@MI7WdN-ebfU&Thn&@jF81cQYD`q882;UzAmb*(Chjr
zD~nVXVHP<~nuU{%(@{1HHw!O|ARB*z^JS>CP|nL?NqK*p$;MYY7N&9LOiJcOjqS2%
zFME&ZIRdB+MpFmsZL!h7H9BSE&u$&F@h4(dJ7?o7Y?D5U_eI_40Q?{yqFaa_S@g`}
z`z-cn(JPDISv;A=lq~wtrdf>OQaM5v{j=yX#2B8%E$cO}j~bB0z%0hDGsqmo);?;m
z&>=#H3MF$`7SBGX5wOc$rxT>3vS>TRn81zqQKPdMlf~3NYOFBF31)S?fbewU;VdR*
zv9ynRgdW&eJ)XrUebl2_{LqJIIMI1m^1nW6k~Fb(au!b%<J<bGsaZ_RVp$f;vzVU6
zQ&}E(!@?|{&SFLuv$B{?AKR65`l^|-wO)PIBYo8~TyPfixV2r$=NK=$k}t?!o)<hv
zD4Fayw|I{)_Eqz<;EXH_vUsr=^M8;R(E}64t6A*rs}^VZm$-ZzZ}R0V*7a4d2wfs{
zP8s7huI(dZX%??%@kSQ^_Kp8Wne>W&F<6nsn^|n)7cW_?%;K#q-lwBhHn_-DqMy~=
zcpde27VpqN{gl;Dao#o3MD4vR;60(#*ji4S#riBh$l_zs82@i{16`t@`iS{qy|z&X
z|1gUt&ugqs?5Domm86D05#djTa@U))_&kf9S?m%|*pkJzEWXO(3+|<#+RFV3e;v2b
zPaX1fz7m$kEwf15&I{`z?Q5YsL<6ku>lb^-H(BhKmF%JE`>AiKIswG&zE7HnzY``G
z{6iK$W>G6d?U3h<aWISHOwL*Sl*P|k{GP=hS^Sd4gS(RS!y{Ro=1LfVebr&1tXA%?
zeq|PwkvZ(qERy{dN2c=WsI>K;vWvg6ShXwpw|L+&CV~EnPI!`ug()}0#UcL9;#3x;
zLX-}1S~O51jOYDNocWB<vqCv6^$@PpN{RqNbm<>g%Y-;DM1?Sph_YeqoGj(S*cHzg
zI-$QRA7WmAMb3Nu)de9chOvWH3UQ(I`lf$u`V;-tWdqbDAubJ3EyNWeE(>Fqs~Y0+
zFb>tq9DIPP65_t&3Hsh&>kI}X=b}xkhqy9CjSyEcGYl~p;FRaQbi%7cTodBjFm_Q^
zX;!w@3}b&|xlRCQzdl5r5ch;=8KQ288$#S3;*JnEhNu@p=hQOtg9Fq}Av8`@M^VZ3
zLv$XX65QrGgRVk{Nrq4%ZleGlua9aF#(ChD5I2Wt7^2f!?OgbiHj<`Wh0;b8<6gKU
zs<d$k26fXAO+u7wY;aiW;m$BlKFvbhCCa>8Xp0cd1xy&As9}!4h20yXRR}*snz{;k
zq8o7%3-JIA7ou&5q7YOXBk`dSt;1L?4Bku1CEIW)nxGsXOHn5AT}Dc%C1xd)99uY!
zP&dRmCKt~|1|c#bxc<B>HA@^KCwSKYb$md)HR`1DKox~3glHF{J$1st2dWMsSh^2X
z9i{r<Kt<-G1660bS%?KvWh<H8X^0Tl<xne!o*{aLSW7<%(K|$+5YL5pK1AOT{iwqb
zkJ58O44{ERj0-W48W^BhhK3j<n&)N*hw<Krh*uK~3o$&5)6|F%V+4#8I*R7t-=l<a
z68LnTMuCk3V;yod(m4Nzm=J=V$?|ZBiGrzTRv!!Tc*vtZcq+ssQ5rQiMZn|`PY9qU
zpA12jQpr<8d_Pc46EiUb&_GXzV5*rV@iHTfFC`pdrT_-@Y~ep6lq-2Q1fz*y4p&ak
z5AjBbxg0sfB2h10cfR=Z0-1t|<wdE!B$N@fPyp?<SYq(y5U+$-LRXRSSsLP1!LJF8
z{Zk5KVOfafGUn<KD?-rLX9mV`O{KjVVx?&Btq`k3Ib^;q!tV&5RjO+ZwIK>;dU;Q5
z#GSq$f|me-^&vh8aWus5AvT2A7~-1{yF+{!;-e5>gxJbhTWowB#vjHvhxkOQ<a`=p
zlVE<9`HUU+CCU7p0-e;BFuu{^2VUN2eHq3d@OeYKBg8hQltJpN5Zl>tkRtv%M4Lg1
zrQ4wRQ}E6ZyXa<v;tv|6dqV6D@pFh@=v}|)-_nR7_A`OBGWLb|P5?jm@urCPhd+ck
z7{*^C|Hw-~`2W5%;3w{%n0yZC{6c`OhbXo#ezWx9F#c+npKFfDntu)Pn=FqDTOdpN
zBgCJ~s5xAe!(So(4pAb9k~th>Dmb8@<Q_vDr(-ZWda7%9AGKHGmj4ZLN;Y+d`Cq_)
zLb+LP^8=x0LvZ7qh`Z*e4CLY)<1)GU9<o#prE~FDue{}Bm3NZo<>LFyvO>=nS}uq3
z0xF!Nebfa4DhjQXi@ybBmy2__B!_A_{>@x$luL851*_!ZyTQwH@u!~3g7*!IKO$Al
z;qn|#4O0Aw&CgcVbMd#kT-DVAuFRo^05Y!<z?)&-eqWQrwYm77oTa7!eu%4`!}U3I
z$)Rfwb#kbiLz^7h=5RwUK6akWLFI5`4)t=lDHoq1*K(+zi%+mm`A_Ggnmq5#!}Ez8
z^jv(3p2f(4&t?)d$l>N3n&xn44h?g-C5Jn5@u_kiKIfV6MluM;xiyE|1hdQS#h|gw
z&IL3PK(S^y+?B(9IovNYcjs_V4lOz6L8EyNEd=oC)XIYuUNi2^f#>R5ao)j-|AfNR
z^*o}_NjduivW5pa=`j5vp=}4N*4*-7MNUx;W)5L4eq|HSMp`)pRHl|p<zVOF<lyFz
z&Y{;})lN=b^6;dWgP)5JaI)|;CJ$kfW^$-FS<6aacK^Anp35PhLzF`yhfX<k<_f8(
zCEA+Z$qwAtNv(Yjj}DGsenn2l9Oe&>0pG>M*M+SctoXL5ZaH+%VMY!!bLhe3pTp=J
z#&9t?^v+=rt&>Ba9Qx+K*Yfns#joSw1LO6kXhrg(p8mogki$R$@vD0x{o+&lkQ_$k
z;%CE$=D_MOp~G_+Az(o#oiE!NnTsD!X6w1<k;mpRE{BJ6n8@u6)%d21@i|No%(r$t
zT}9_J+K+HMx%ho7)2U3;cr1rWIZUPpF4P~-#qX2h)8bFaBB$|ZN_n}>lTw``bZRbs
z)|*>k;e+b8UZ_8n!_&F=9Sbbi-(7N64zqJuoWsjGJd?w-IV{X!5!F6ke=dgwoa-<B
zd7APIZB7m^<S<v3$Cnb2Gf(h*p<F+ieAN2I9A3(S?}_5;6!@kBDugeb;oCX*9)MRE
zEIF*;Msj#n#$1-e@*G~vVJSh`<m*(afZyuJ@1bHLpysKxFOTbdSHsF2|JdDFlZ#(}
zMDSJ)tIl!mH{Q<Som~8!{%Yay6%!PAHwV5RgylT}?^D|^8mz9*;e#A1MYu4+h8#B1
zE%R{l_%Mf$a`As#+>yt}0#4`fA2SJco5Q9YKFi?;&Yr{O9KIQ>Sau5dT<8`$fPk$z
zoRHQprMgY%S2=7Kz+PVq*g@YI5)ZQL9AD^ep?iex75c4EitQ8d9qle)ztEdx1g`mj
zEcj>+2L+JxlYpOv{*uF?V*X)f!eabu4!;TJIgN6Ul=xlnA42~umidbzCis}p<3dm5
za59H~7_*O*_?KB!n5`O=WR+915S+>3EWJ06TKV|D0!!p^Ssnvt=_T_(9<L76OXX2M
zj|zE|&ZA5o_YP6#<#E1%vO>uz)y60%!pmCf>RyAK3-Y*7S}PXIR1yI;T_l`~g<c}e
zON(W=fXaES{M=xvl1J4%F3+P{G3QDFSL9K>n8S5avPK?P6?3i@aE;Jwh1M*V-!oFH
zok#sV5_w#oN1Z$d{j1f@qif}4y*zH<9-AnZ8}pd3Awh6c9y2f2%hc92ZoIZ`95X&W
zqw9Gz$m8Zbj67pmPYNYadGy_@j~L3=h3O52c`H}dRNazCqhcBU$tGoP%j0$_l%#y)
zJeuUuG#|V419?1{$DMh!8={)!aaSI93%*Ba^E^fjQ7!VAJw&mr9-=7LlB$zd;#LCg
z%VWn7b$=fHG=oh34gEuT{4qpXdDQqW(K?Sd0*Kq@QB;i0Jf?k@ATuSxl&>(9PeQ@V
zV|^YU<l)N-C+6`;9_c)SJTiG?^B6#H$s^1omq$l#c7wr^&!c@FW!vjf9t8pIxHbW7
zC7-23akWz(o%85ILvYQ-BXrB7dojMSx?-;$dGr)cFQL7QTl-M+#rWJ5{powv6{i@K
z$KX6h<uN*s@n0K5X!N0KxZt6A3==^9U>+)vCbo_gaQ9F(M#dbU=OdhYy-oVqJjUfg
zKw;7e?EZ<78>$}8W8_dp@Tll#P987h@mL;@=P@ad$$4BmOg)pw6L~zD$BaA<4OLTU
z!J%qe9@F!fn#YQviq&gNBsULLPf63$LRn=KY1v_FCUrGT%@R6W=pT=3&*t&oM(w#g
zZXKqc7itYt#B=kQm&bCBoX74-#{4`M=kZRR<bph2%;P00d6-(n<qcB{MSxX`Egq(7
zX7rcyctwPl<ng)yc6>FD*93Q}kzAU`N5d4EZwP0Z(EY-BlX!~pj?k6o@D$^%JpLP|
zR^{<Fo$U#|=J^Kc>O9uu@vg|M&Ev#-Iy=6X$NR!LS6wIks>2nVHsrC9)jUoz|8oI(
ze4EEU=KnlCVT{kxwlT!=*hFLHu_cd3H}mlper1{*dsA|A9<v%5-A8MW4lx=ISGW9V
ze38f2Jl<@fe<}2-;mRGZh74C<<*_}FubB#FYb@Ug*pbK1V$Lp^i%q+Qv!|H9m*Wgq
zY~6Xi@m-!zJmH|=@AKF%;LbJL4|!ZOLHkiC#eQN^ZLS~5<JUZX&SUl6`Y%EW4&`yU
z7)KvzztJH}=_i&a{>tO1U{-%;kP7}&#v$kP;p*=^j^)wqALDo)eJ)d+h4bE4Fql~W
z5$8NVLi5SSzj>U><8(g8|1qmaC==mK9%u6?5#i_Is$_)w|IzwYOA<qHsR;K}S7eqQ
zp}ZN|)k4pUKwLJ$Td(Q_<p}y|<s&p6p(+R^xIjQfq0R_(QG|;lJQLyB2$w{-l*2}7
z8R4=Bl_S)W5voL}8lk4(zbfdLN9Z>~)rde`P3RR7stdSM==pExY`QAK)e%NEGU#mA
zM7TD>q!H@J>dA?9^uBYoTOQM{i*WB?ZP5r-JHqu5>O`m;ArV23@bL(B1FL~?V}!9Q
zbXMz0^(LX@YXa&ErS}>Uk`eBT@N_9%MQ9M=4sI~Q%@G<#C_7T!8sU}*&qHq{Rf3;J
zsG1`c!EM5!%<U1#BxoYzaHu;4G>!1@p9ZTe%{c5xMX>Gf#ND)A1Ok>85#D`IUv!bW
zH$tljy(9FAa33udA>`f{X%9qrFv3$Kl^bEtvBX0WiXxbTTSpi^NoymtZG_B7#j3@r
zCmT+Lfg{!8T1JX?nWWi5S^ez=z0P!<qj?eh2+Kz*mUM)G-6L!ssj?Axp`idVn{pBI
z5uylFk0d%p=p3Oyfe7un<&mmGgl3~unNh0dDAkdM7QkwHl<E@U%~7gHgsu@-?G~ZC
zfI*|wQzFn)1Sr!>z*nQ<KalDhVQ_>Y^pglnelb}3M|?gm#($1d10#?Qig3|rMKCnN
zun3Puc$^xDFoG73FfKx=!}`bwqXmo-TH}5+yWAL4j9V@+#&hMD8xw_6enNzYi?Q)j
zlAK5A%nOW1BiuMzkuxbmi%XJEQMVB$M|`jpPezzR=4dsY$`LS4C^<PP1m`$2B3#qK
zm>uDV1IEk<Lq{u?S=_}1$vLCdoRb>)&(X&sTvtG?0_H?`A;KTrY=pTH=0*54!lnrG
zBP@vUdW1J3ycpr72(M5x<h-mcjIcPu%Mlh4ysO={OW(a+8~Kt(`qaxB1z28<&~1jk
zG~xrEc<Uvt7XM%VL7l>LP9>Mo6C%79;r$3JXpRW0BD@`8C0BK={uYB}vKH>s?F||`
zdar2ibH+OnzJJG9O{JAK2-eVzd3(Pyv9VnJ)Yf>qwGq~Fk56hJMp(~<P0%(*C_UWx
zK=1~kgKyBuKl-n}dbIi|!tRH)kA)I^BH-9X^*^IqM))Pdp$MNx*uubx@KwZTc(K2E
zl9FFWm@`V-8e#ir#c>8bAFptGgs&s~NO!tH-@&1_Yr7(R69HZHokHL3Z0wdPYOFSX
z5U@w+UZLL#-6!-rq2CMLFZ8BMlkCOW4@5W^fs_8kWE<h8x=G?mmDJ{{2EqK(+VM^L
z;Rr_}{2Jl62s>*ee-{HCm2qBsMWg;7Jrygqf2-tQ5&o7`d42)MA{>w4%uSRm-~@wi
zMdB1AZbhQb-N}>8cy}lN5&ExCww|W)cN_nS48_hwI9rTM6ylC-MIj!rlu&}w0?HI{
zUIAqbXgW7RCJU?O3MgN|!2Mc<0;&~oMS;)Q#?^{KD;02I0T&6rw1CS5TwK5<0-T=`
zl&mbcicnVHxl>gYe7Vpo#%N?#FW|}ot}UQu0W}KXJ@B8S)m4S~Ubob<+SLWHdW}$m
ziepsWF{<<tz4;iG9iwU&;w#kM1vD?<dck!Hs9V4d1>9J`tp(gxK)nKPD!?cpS-_w%
zN-N;@n~X#O^$TdT$9Q_H!RqueN-u!)jWJ3U(15x+m1rcKn}yy|Ktlnak5LpOJv>I0
zAFF<@n7qA!I|^tfT^bkAgfm{L@7!lJ<#hiVwa2P%kL%uA{mueN+2t;gylbq=j#VuR
ze5M=i3+PZl%L48#pfy)jz|gU(RRQ-GuxYHiuYjk<s-<HUnGY0jaI9i^uz-gImlzjU
z+ZIq%fL}nm0J8v#`~632G)|?c+i}V%#CMf8l`J=tq^@v0p<CY4*%}m(Dewt#u-ayv
z$`(-hA1z-%SU|3T9^=&G<J7`&icK5Gso+<=Ad(brSHKVB6oIu<>sUa~0(uqDsesO0
z#!jsZr#P)$KVEe$pqp^Ib2I@Z#w!Z25cDpfWL;wby`q3V1@ND|`U<CC0sXnD5gJ=r
zrq3}36)?Df;RTGK(Z{PHT=RG}j2e?FF_|m`BMTVCp$ZryP5)Qs|4NcGzJLh@ywnp5
zd*a~&CQ^r8k?x8|3V4*x-vJdm@XvtoIQi|6Zih()OfDeN4thI0!9V{hU~d867BHoN
zsRgVk;LQT2(N79kSimA0u7IZtm|MVs0mh61W)|>F0nZjNi=kaze|DZWTYxoQBmUrO
z{ka03FW`j&W?yfRGp7JD*?LZZO!k^r!2ALhP>18S|HIUEKub|HUARaT1q78SA_h?Q
zz1=NLm=IJH%wW#EnN2gZyEFR?h!G{{oROS!&N=6tb5Mz*62<V}DZV}DKc~+<x2vnG
ztGlavcV~NMMye*|BUJOc0;`aW$-|^POwPmDJd9Jd@p+h#)u(0JpQuRXDIBODgHyS{
zpAGi<C3xu3@HEEcks#C8EoCNGRvy;mVQn5}=V4AB7Uf}a9_Df)TFL@lck`6bR|_=K
zuca)ca!dcyd`nAVT9Sw5dDz}Jurv?9x0GdyB-IdFk%yI9v`TTcV(C`GME!MnSf7V&
z6y{+AL+h_x+T5Cljmnwbq-1j*wqzwWTlp<gZATt<=3y^gtrTRoUMn$L$*w%?&cmKO
zeA`L}X(FM*K2_UKx7lthIh2RPc_?h4h=C({IGTq)^KgODo`>UkIGu+xoK~*EJp7u6
zlU&qP4undy_S-$D1_#|6JbhRA?u)sn_<?>gcT&sH**u(M$GMwvryUpijU(A4bYA)0
zt%dxl*3$4u@U7Oeeo*M<zk(O@a48S}=HWl?|9QN>9@p~lcOF=DZhP*UErF|f_={7+
zH|kan6aV2{KNX~%cCDpRk3g!m6fpcI3L1a`TCVm^!9vFW=H&(hbg$Gc;S%rrKPZYC
zC}yCFfjbNoH&DVrX#-^p+-RVrftw9@p@NJJcIqYr!&}RO*23vyFG?BMt8U+7psa!0
z4BT$u>iNKh)>6*Etu)d`sL!a#X(Qzgf5*1lNCo=S#viMS2HLcdN(M%>k;(>Ew2`B2
zguJSOI}O}p;9djO46y0D4E){39~qjeZlFS2xmzV9l;3BdhI$e(P}9KRM#1|HJfMVC
zn0;hjF0qz@N88HLWuY7c43Br(%8_k;_d^Ei8K`d{Y=B>n#XxNX4;pyLz*AiKFNFDp
z`C$Wf4DkCi`6C91k1A%`%3}r|H}C|vg|;%LM9!0{cAZn7U&!kkc-rv4s847suko9|
zjsx3$*}$^~*0q)A3^XwOuei?}Xrz)C44h~yObreEr{qPIzhq$N<Kar}<iU3GisA3=
zOs^Vv&A{sh8XIV0VB(qJ+sw9;Hw?UK;4S6pcG9_>jA<wQXjsus-chv^?W90^dEdYX
z2FjbLVB$jq9~qczV2Z&<F5nXb?F_Ux(9}SlfiDa+Ghi4n4WtdUIvS1`{tIa01`-CM
z%I|0|F(vidi>1UdkThUtg+IL>95*YJGC=&Iy%67TFD_%uK*j)Hlryfq+|(dMl5gNs
zm3*eywY_|<<b~zoFAX%O0|r_f_=;m|;0OBld-&?9&^HFYHSit7{$gNdd->i#elXZV
z@ko2A5DeDb9HgYxitvvHS{nGLy-?DtiL^2NH{G;l40n*qN5fR$Yi>dvqyuBXz(@n5
z4BWCg*vUXo#w4fPKo{*r!BfGm2D&NlZlH$}_Uq#lVZWy>0=*4P{UbcUz(50i4D>b7
z&%m!I!u<`T_J-IU^2Qy6ILN?H28J3KW}whNp}__|>mWmvZ{HInX9tI~dIy=&K}P5l
zuob3vgTc|PJ1cj*feDO2ws<_etAmWCGY0mL%q3^_Ep<b+`6e9$lMKvR9)9>@;Q19{
z_Hn9#X$F2a@QZ=z24)!8!v$qvCS#SuVqi134puR+<XCu#fw>0eG5oj&hvd#TaG`@R
zEih23qfZ`CTx4Le!QY+|=_q%c3KEwZSY}|kfiuGcLp#cPB`XZ9RI*BuMXQypF|bz2
zI>lBUg+&`UI2~o9B44FMzQw>+E@!R_y3|;fbQDhdHpa=&obBv*M<L-Xlw1+sWni~X
z&3DVg%o6ue!N4&C#|>QRC<hE2Ht<R(xuugFG;qiOM<%C}@C{AhJQg});3#*wV_~b4
z5KnNI*c~eHb9m^{Fr$T`@~eT9T&)HQm^j4^*1(?}8MfG7&KNk)*?B#9mOBiCb9wl;
z|A);_gn#FXI}!N9025!j#Ex7vaLK@5hW{d}ww>g%HpkZz4eumZxCwWXtK6KY2S~1Q
z78u5y8oJ#{{x!fC8$I=Nn4DP91Wc4RQN~0e6E~Q+(L_lTg_-?_7jIEaNf8szHVsiy
z-1OhRG=F`dgc7ccYn_CWN}c5<m6S5^WM{eAMERk)pLF(L(!^5YEhgs9%Dq)f%bF;s
z%3pUDuCG__3*Bbob`vBFQC6&IqLPVkO?+pfvWY4to?t~2cbKSZB4{FH;!YFQOw=@S
zzv=&TeV2*5P26Lmx@P}a8`|?{?!C(IGf~6D;+t})#zeVMSqgm{e85C46S<lKCUQ(%
zm=t8izMbXTO*u?dW|kN>AtoL%@u-Q~CLT2Lun8)#^dS@bZ_2rj*Y#<zjtLeqJ!WEB
zXTMSI!;f<dEuO>HpE6O`M9M_k#M36~nRwsC2PW#9c*aB%6K`;|O+07njbJ7kD0xMZ
zr`ex3@q+S(ijA`J7nQuE__B7K%1p1SgnycozplKo=^sB}_Dv3Qet`UK6K`=aSNWWW
zDBe*8@^?+_?kw+VmgGYdA88d!l|MESF%eb%iHW8r@=O?7g{I6b;qm+HmSbusVIr=C
zF0qN{J`VEChOK5D#iSw~V=dQ&XW}yxpX)SnNHZq#O>h`L)j{UulK<IRzA(|u#8;fh
zF8&mMX`;F5e*%)1?jrZj_T%Ae6W?g9BRvC6ng=QQ-b4!%a~PZ^elYQ)iGC*fn`mjG
zm5DAUx|(QhqK%0TCOVo}*)q`9M0=C}C<WV@sJK7$`J&M6zX!-~Dil1oB@{g$VCuwS
zIUne3^3eoAl8Pfk-Awc{(c46K6FoSCU1Z(ML8hK2h(;Ibqol9mb$N>}LbU-V2AUXc
zVvLDFCVnz8+{6e~8>~3g#1JJk!ivK<1zm(`5PSVYaHNS*+2;Of5T4gX=*(CX<4jC3
zG1bI)6BA5KG%?8p74~+K>kdygL1lJ|+4U{`ZcZ~X-Q?3zFiV?b=?oKp(x46kHD~Mi
zuu-;7&*zz#Z(^^BeI^!gE;t${wwYMO#YhV#)|*&jVyTH0tjIq88Cs^eoO4k&$n5Q1
z<-xA9iqpC=Xm^#>CSL6-xqk=Wo)cQ5d@X0Ht5CSX#70%yY+__rS=?22ca=?yz^=lI
zTeOHaX>GfS9o$JC3hh#Fck0A3%U-ajyBSVe%I>hs?BjkD2TYtban8g+6NgOvV&YdF
zoWmxL=%7)JL&tPfv&T#vS3=1NB|j@(?JA6)lidHcI!iehr%jyE@#MHMangS?ah^MH
z1VtkFo#AStU<8Qx)4_@OQ%#lYCKpUxG;xW0X*aoS;%_D7SCm{e@t2ZoS^3<vp?{SB
ztN345ULfKJGb_@5p@<*GH$*_k>edezJsx1TXv7cZ;t>S9NikKRkX8Jt9~ml1Nd$eP
z=oiJ!5tNExLj)TmC>=qW2tJMAvj}d9plk&7BX}l)auM7bfkaR{g4-gvJ%XAM+#f;t
zi2qjlJ0hqWK?OPxK_!*E&`l~w(7A}Pl&MMt`GutI-EwCH)gri;&a2v8iuWj1kKpbI
zelG6o6PZ}OM%EgIZ`2c-eINp2Ac7nvwG`PXjpu5MA(aHRA}xfKu#^@ajNqXNo{He(
zZo>4ilE))>B!Wkk*HL^dg2(FntyAaoZt{c*pHyV_dfmF3eOj@eVyABMYy{6mkQadw
zL4ydMkKo-1-lIPeG>o8e1Wi=4Q3NkX@QU&mBX~*4_2yoU;5E&@uE-+F*(lS<Zt_M1
zZ$|Kz7SRp*NjV*RJA!wVuc+l~PM95dKY|Y;_(U~7jNqf|W+S-X3mW(Ps8yP(4&}6O
zMi9}_OEY+M+^h)f2x1Y$b;=fW6Q)E2M2@GUIwYwGl35{Vhm!5x#8p$CVn#7vkqW2S
zqX@o;U~&Xgbkdte&>@135qudz^9a6*;OhulMbKJHzlq?x2)>WtTg|d{8fl@Naq?pX
zKV*4<?$R>LZ|g2?l+&Mfj1cvf`s)k%y=b2;>cl~gU_b-|Bj^%ASFQ^!>ZbZVwO`#M
z=%Lx`P16mMUJ>+GLTCCY33Qi!T9=akD*3CP42s~V2u4RRCW65c4B=37O?8){iX$Rm
zVs@C~aK(?h`$I$_(<n8_?AQp#MKB?Pi4lyC;JN~liJf8*$s|RR&$`Rh2&P4_E&|TQ
z^ay4|uqcAX5zLHWRs{3uUIeovm=ocHZhQxrXoN_AXknfrJ)vZwHqBPpF0)ItXn6!H
zG`m!@%QRM5x-x=Q5v-12P1a9ZV?}m^WUW@|sAid6uR?mbDT2-1VWOxV#g+)RM(}S0
z|3$Ek{zq^&f^!k<i14vFI2ysR2zEuVJA(ZY9Ee~~1beC9U2g3m`yv?DT}~H~lig)@
zciG-uYWI+X5gdx(a0HEdNYftDtcM)oM*Y0xg?u$CACKTf1iwV^YXqHo$j|I=QCZbP
zW`<>K4>`$(ddMm6hdt$D58o!q=?KoKgq(JMi{N|&S0cE|{hxbdPr1O0jXmWL241fG
z8Nt&%<?Wv0(L#ie?!nNWvZ$wAW=DF;pFM^67q@~%;lJ6(kX(yk?8w|j#iUp-`6q(v
zz2wne@^LRI5JkZ#ZjYjT6o{fw6eXj$DT*7SC>%wxD2hjs-%E-_Q8bFty<}ev>DWsa
zF%^@oy`)4GCws|_Q9S>=)D$VuTgvyAo1-WdMcF9IMNvBHx65>kk}`_)>Ve)u;jK~J
z7KNd;8uXUEwf)4R3Q<&y;@&9ki=t8#m7}O0#obX<iQ<kZszq^E6wP}})hO<a`lHdU
zw@mKsj|MsIEbT3QME3QTd!isY-&+dzk=oDu!peQ5Mie<w<VI05iu<E@Ac|U11fn?b
zs65z5Ug{&C^bt<wmr53gBpAiWJ`#$eYagjA5{{xvNapsDZGGgyC?1L;!y$^|;V2%7
z;;ks&j^fcM>O}Ek6fZ^bSQL*(@k|uYM)5=xPe#Eocq)ot`Ut1&-#&6nUtWuox=}pM
zG4JEMS}%(F$~nl)J{LuUC|-!7VH9tK<@qRf7nS;b<zlYX=qnt|cWHrbEee08*_Weu
zC5k3gj^b4v-q)jk47{eiYhU4jGvpex`?dXecvI`r@|mJCuCFh7CyIBYh(!^P;=L%|
zkK&Uknnv+K6ifQbhpfn8E9N&%@=+8YN3o-?kpJCR%J!2yHWY;!#q}&D5ynG5i7GbJ
zAY?WXg%yR%$?YZVksXB-MUuw*i7k@SP-)Ol(n{#nhyDC66Fts;Kfk$8qxdX}c2TsC
z;`1oJh~oPwj)$dL6kkU1E#*C>c@zxPuNA*i<eV~+Df~vWgL7qRQTZ+kuThvW(;|u=
zqWCe2mQl2cVnIJ?6$R(Lb<|(TUHkblFtVR;xY}}5+1Zes>n9ze=%_K-Gl~-Zr4xgM
z0mF&wEu9&({pF$l(v6a0(nI5?yK-h}s!@N5^cPN0uPDCiFTGjRU;0Er`RM-AKZ*hD
zT>@VuFffWibS8nP6Zk2L!Hl99evM&Bl#j>3n=!l<!>}lZM{y>Kvr&v-=tl7~)uI^1
z^~>ptVrdj(7=-=(i>qU!INV>z$3-zdiV0CnjAD8eGoqLj^{>P-O;*A`<EAK?syHoM
z`as`;)S0Q-c|;|%73V0jbS^iU0e*AyIi7T{p?^V@X<-zLvO0^o(p87@Wt<n4FOOnH
z6f2dlS6rpIT5*lyT1D1c7sZEr{LA=E8=}~#@=c1HvpQS2NVS!1QEXS?jwlW(*%`$y
zt}NyI6!$3ZRjg6L@8*8x2Nan-7{$P5eshPTIHJO%imRFzIHu%yR`Uec(Ivmvb^Z(g
z$~`lRQ&GI8p3vvhQFI=_hY1JC-2rkgir=^?#Sn<$d=$T{kvn4eBZ@zj-xkA#C@yky
zj-f;hm!i0=@<K7*S?|wU!I+O%qxdU|YbyCyk;1=~{KM8OhnZ#iPbCFneEY-y<^?fK
z8|@d}pms<KD=DH_RIykL<JJEgvpQvBD5?A=#hVpNWlKxP@Nk9ywRnpP%f?Vn$*ozP
zt)CXWU3vMeq=J%)F;r4gIV-Oc!-j0MRE^<Il~;@5E+y3!?~CE?to}Vp?p6G)P{A5m
zdCeH^&+-S9{HkViVt71;Ct}D|VNfxo7>+?=sI8nM^GFO2X8A+xqw?3s`hP+_nw8gy
z;jt_)I#8a>@|R+GDu%i-JRQSlyMqVn1RKOqPdT&oV|YgSvsuY=?CC&Z(ep7-ndyZX
z8fJN;7+zF<B|pF-I`DFgcUa(6ZSFO8XQ00ZU)OA7#U@!#-e43R^{c!c!#gqFp^Ql}
zyc@%NF{ENhvtQMN@5gZHKHNUE;8UY>KZxPO7(R;OW3|vUhCC&oa6D`IE5(SxjKRv<
zk0^=85IW|!5{u#B{BS&5nuy^|_07&ooEVZ>?iDWR#^7BDbfZ_Q=EabS@g`z?%8`lT
z`xsip@Of7Ms~En>@@6r7sl2)3_zQkiGkvYuZxp{({Ei0II7@$sp-l{JWB5^vS}L|u
zWNB-*e$J2Nb}H$l*j}+iR;ObOoz+@rm2}C<yT)*Im%qxotE5K^J!9w<L+==VVyf#;
zP@fnEYH8nWt$s1|&+-8=Y*EXDRFc+JJeVH=T775?BV!oFPXWyiSEShyO3n_H(MrZ;
z<zr$PtNe@00je>L=RS}vt$sOh^B|e54Q)}J62nv_(_)w&!;Bba#;_!Yr7E1IIA3wL
z;vB`fG0amE9^`kB6S^RVg(_L3Na13}s+N*3i(z$)Hwt07mab4-nblmy5Z&WX;#!q#
zR9vUHKC81K1}AH6Qw*E4^4E6w!MQbtZ85xdBD6h*9Wm^TVV5c#iD9>r1B!dHwf4ra
zFU$8UX*);`DmkQhI9tkn{%DpTi}7J@{yuynEBTpIqh6hi;S|R$j-_#&j^PYfdK}Nj
zaW;l?G29VH)i{3R<{v}BIEw8J{vHF*#+cg!e{hE%72-$spZo}j;i6i;mbHIL$z|$f
zC0CXF#qrd3|JLk3ivKG9r${FY#Bow}5J%CUq);3;#8EhoB5{<D`@JZtcyk=3loX4j
zcpN3-xKXn=DN?Ou93PbY-#&l%jDOQXX)P+JSSF5Jl$6ctSN}<FReoDma(f(|CjM`o
zR#0KZI4UWroYkokNBy7tSh`aswH2!=-W5mnIPO+{zv4Y{f9tzf`F)Bt6j{Ay93QHk
z2UJokjzAna%0r5|S<PS^->YUgD-k6_ev${3JQT;nN*+;sGLA=;)KPp)@o`1A`-GBL
z`uUsTQ_Abc@wAe9S)KX}k4AnUpNpeG99`q+7RU2(RH;?)!#F;Q;|0}h7)K)|FUIj&
zoKH@}OPYOI@fF2a6={l*Kx`bx8*#j;!X}CjJQjLO$-9bgE54&h{XVVzd3-O9_p_1@
z;#j1k@o^lV#L;DJh+k})#*r6?8;7TAMjVN(zNsXl7*&kL5m&NL?O1WxnspS*50<2o
zlp<SC$8lLTGjZg{(I$?zaeNxbXL0<XI-ke!MI7H|^_#`<mGUpMlIC&L9_)|j*ICIo
zO5PqU-zoV%D{sMGsOFC<X{p#MTiQB~4q8f6?Nrzyj`nffJ0dt%<sDVnNwIUbR+qT{
z9gkJI$I&B>nUu$|X0Y^Bh0$^JilevkK5-0F(l?HNO8Up~lM+@R5XZnQ9~8&oFaGzP
zZLkW5#4$8mTKz;|xbhK-BNazwOU)+!PB<oxv2l!3;dsR<aZFG$F{?Q#j>%d6vvzQ*
zW~aq5Ju9CP$C3WNC$m*jWr*L?IoZ;=O6J8eKaK@)EYvJxhB}L~I*a2dsI`{Gu{@65
zaqNj>MI0+tVND#X;#fa8z)kyT@toCMTtj5S=G=Gw3$Kl19gE`lvSzs15ZS=R@_FF>
zA+j-!O>u0_+TR(+7Uf$Nw<&JVmhOmSfVRFXE8!>g-Z=KfaUqV2aqL(5`8a-$^GSXF
zB03nyA&x&guG!OZ996=KKgV%QIn|EGaU#pFohtB)@?RBCX62`p%vJ}^C_k%sj-LWb
z?mAe&8=Lz_96N?c*`e}h99M?OH-`h{xkKd=mj-vd1nx<o(NMXfRc=r4#%KH$$F(^A
z=B}IYef~#_kU*gX{#E{;B8v(nP*8Qqt1S=Sp#0_pqIaTj0!0!inn1AxN@jJ6Cr~1R
z8#NmpDnAVMXPjxsP`OEkOPl(e8&fIGmR2m2zyj4QtJ!jjw<_MINd4|l7A&7Yg#;?9
zq*7MS$f>NnN&<HzP*wR|ig#vpswHqp?N`rA_*;xN`PJgy1nyH|jRe9<YAW8Z_&@@+
z5`0dnKT1Kx97Sexm2?^6cPFI$Ld}AbK<xw`OyD7vJf6VAN*+^uM3MTBDyfse-`Vl0
zGRz;SClYv4i=N7AUc0qmy#(qf5aF07@Js^FCQx>`e3-y<Y-O0dn7~U)8YK86A78@s
zf|7=Grg5;5@;8Rb%L%-az*`Btoj`J!yqdu42{cZi^)PuYf&RmU!X{euhT;U3Q23^1
zmkg745_nhn2MN5V>HP#)Ww&Z}%#kxn{v9SCsgoZoexle^k)G!zU?lL`@vxad&TyfG
zJeEK_!Mj>QnFJE-$Z&BJcw%(GO2AIQVWYgtaX9epa7i)1>Pniu=n^u9%h`8A`~}Sq
z9WUW;q=Sab#X6yUweYFpJ$2=?1isWO0L@6~Z324|Xr91V2@K)|lLWp_;F|>6CeSW{
zZxfh1Tv{aXLjpU8%XbNUp8$``UK=juM#zsG%n{Ni0dkU-3A9p4Yeh;Lj}Ui+bQ~e=
z6X=jY&jflU&@llXKkh^i6Bs>0R*sOvBcw|LJ!og7Z?>x%?55bAD|Cb}Wa}*Loj@OT
zX+Q!pl207<tMpTx_jRy;!awl*(nzsK%0M=x6^Vlr7?QxU1ePZ-G=X6ZrvzpvFr3{S
zDH9Wzl)wlUjg*lI{Jt?TO68*!sW3*#SjBM(jL*s^Bv8CrfC`fnSTs_mCa`OykW5kX
z$4Hr$z|Es%dIFoT<TA}jV5aimC}DOEJCeXc)=gl}#=yJ;=5ygEFkoRWvpk#q>L^)v
zIX68@7ALSIfu#wY93`Db`FGupWzi^ky=S2CXjzfKN)C97z>Wk~C9pby^$9*#0r!oT
zH3>{ule;c~wMtes3_mwo?w%j|WVCEdU{eBH64=VwA1#@;LYotOJ8Fn&;Aq*F!1e^*
znGy_*kvXGf&uF<YTFQ)(oe7LP5b!1jc5(TPkx7Sh_a?B9-Lz23!u|vfByb^tiwPX$
zCX>MFLxIx??BAbzIDumc98cf~x2zTcwsJH9YmBrWBPSC0Il(7D;#ZaMTPQE`l=6Zn
z6F8OdkIJtZBW#g-!ss#b{^h`#1kNUKjteA#KN9#ef%CLHMt)~UE(Q1-t<YGhI#wPV
zE4=0B-Lb;u^Tk-Xl)&W#{^6F+Dtkj$68I~DYm6?Pqh4c$Gxc`@)5iM2b9$`sxBQl|
ze9j>XSSVtlsD*+SVBur~xxvEf&AEjvR3FEqn^Jt7FiUx1Eq!mC6tnQ@IJwb6NhQTC
zlu*)joKVh#=<AP%Z?Z6coU9!u#L^bZSg2>AzJ*&Xl(lfTg?lWNvv8~Bhjb+izl@XH
zER?rU!NTpD<*h&z-Y{P787~zrG#oFn@zQ#{RJKq>vm?gK9TrxMm#T^+cPgo7;jXNt
zx&<yA7Ts&%J`1%iJZPbYg_;)bxA1_4<Ktz?(r}>(!ho!0VdeIq=>@A!kbv?W#azXp
zVn{KpNM*6GaC?a4Aqx*%sAJ(VrU`t)AsSDR??(h4Wv}`A;0e<Gk8o;&@ZN;SEwq~;
zPgr1<=}9F|Db`hdnjW_Bi=MIYtc8~?ykg-w3k@tZvhbqL!t)%!5rKvlMof?wbiNi(
z@Yg11>Lm;N=>J4{ZlYY7AY~`Ys}^3f@TP^gEIw=yjfp)2Z&+wzA#b8AnJ5P)%8wJ}
zr-`zDc;M<pDL+ZVljLm+@2EnfNkTO)%=ayPU}1)XnGQa*@DZJ{@sf>?Eqr2OnT6$+
z|IyjhLXsU}T?>XvO!jE9I2Ixnq84Hn;ub6m=O&3gNfH*ePLhGcgB>QxC?&Q9%1cg`
zOJ#zmKMkcVxE6X?=xM>Tkg?Fl!sYJ*`HVUX-&*+2!e<sfxA3Kf<{a?J(r!cW3yTjG
z3^wDu)DC|zSq}aYp!_QfS4)Mzv2f*&z}Kvj6Z(9zP+o3S=z9w-EVQz)xj^^_RiN-k
z3!R?}b=e+l$#5MNYE>$S*xEwZ$uecK5ZiJ#Eo_)9?Jex+80cc5gN2R^;K|a-!VOcT
zvzB)GAb8IdJ_It@)j~J+;$)yZr)g;}CD*D3neAnvw}mkl##-oOp|6D@7KU2rXQ97^
zK^A_pFu+2Wi=kfUgB|OKnw|~~WbFMNAbH?w?qF6do>S*!pxzXrlfx_ww=mMeC{EcF
z8DXK*Yr$#@gI`XO305%nW^lk18Es+a6xlvSew!lWxLUbVEX=ns!NNof(=1HqrZ-h;
zPnAg)CbLwJ15L3ol}qW9;Pq26Jj61CcDQDL56rgw6C*EAm06l4=Q)!(7UpV}Rj9**
zGz;i9qk5|FZh}Qh7F$?i`3I;dWa7~m)?La7nJTSlEkCfr!YT&2#?nd#)uQm=sj|l6
z6O8efg=-epSy*r3u!SQWZ3`PY7Z!F>VNY<Ag)Iy)PAfaLCpdGeP{_2+!giIAZ&YEc
zYoT4NJ5}~r*lS_8a%O*?D*M#b0SgEDDWDwFd^;7V$svaHG#R!z{LnOcWttqdaLmGa
z3%_%3vG@oboU(A*!p{r|3%_#lGRCfjzMCd})dC6aP%>+pY@Q}(xG1Qp{49N*CT!?8
zl~DNKG`VBC{K4Q<&;PV=!NNuL=Ms1CX|jK6sNLo;$z@fz?&MVqk4%@Br_0|KAKQ-V
zHtx3ZuZ90C6t_{rMgbcIZ8W(SDrEa3MrGfKjp%g0M>p6gY=f4I*uLjQRg=S5OtX}H
zGhJ@9QPRe3Hg30ZlZ~5g++w4wjZ!vxPZuheQBv9ldrb-L({ec*tjl(9Rr%!UvTC{<
znl9ySRIpLS#vL{)+NflsvJLuAP3m8nE@fs2$BmMzHtw`h&Bk3eYR-^)GyJyRn<1Qw
z{26|t+xOVG*T!Qu9=CCyjT$yWHp0}maleg#jT{>fXa}iZ%LXlUm?0x(2)mZ6oeipe
zPBA@PI74>L5V29)#=|xqvGJhReMlW(a|O4A=^h<;)J7c}Bs55G&#OTeJz?WX8_(K!
zj>Ens{FIG)O6n>;t;n9TsJ?QNXKWOiDI^VSJa40sjoiOOOfT4IXoEIy9Gp{irWD^C
zW<w9p<hi)e%QjxIan;6OHeR*ynvK>r+SqvAMq?Wz%H({_uGx6QM%+fi#+x?Y;&ja9
z<7)A?jdyIkZ{q{johk3ycuxZ(GE<mkgb+Wp@sSF-tUgxv=wVYOpXi`5%PA%rHq7hQ
z8BsQ3HhQUt9PLRn{e?rfEgQCtPi=f=!?FE!nz3<uQ#ffOWg~6-3xPsci*Efp<SC(q
z%Ykb7HdfE{$>-Y8wVCpzjlZvjzOd2E#vyIRxfWt{HMjAV4X$V=X1}rVt&Q(=Kz^|C
zqmu6xTPS`sI=AdBX~|G$*LDZ_1*~aZDY-N^cb2rZ(T<MU*kYr-jSe>E*qCdhqm52B
zCfb-}qqB`JjBOkJY;?Pv+m&deyN&8rsNpP$&GI+59=89X*;BEXBD1}f^ik|MOZwXw
zK!0qE<kT+>zQK1vvfcT?K{kF;oxzGj6^AIE|FYmPCBqfj9L+L~(rnXKq0vgl*cfYL
zobm~Z)ETd2c(WkM%*w&ZHm2B^Zexax($hmz88*v9)0C6cN`$&uL8h6kWn(t2%@Sr;
zF8AfMMxA*!=G$1sX|l1v#zGs*Y%I62$i`wDOKdFV$XG#|qB1Kot(YapW=X->vV!w9
zHo&x!!81#!KtAWUz#7iAjSV(7+8B5b*4bFEj&Yp*rZ4AGlg8=KCYAdYYX-O4*k<FT
zjZ-$Z+t^{_AS1-aP8+*y?BiOtvD?NTt+JOhHQR5Iy<o@3eD9C^0riJP<V+MEwsFM9
z3CeA->7zD|**LDVd|k(PUX9QWNADLKzv>7#nC(xBHJeY+#TgqHY+ST)*2Xz4{lms@
zHqP7lU9m?^zjc~omA2~DpLD)oaKvocJv>BmNwb$3#ytu$OSLN;=h?zHjb7t&uwghb
z9sI-1pBtb9aqu5Ee+Ok8+~T01gR*Brqizcoad5775Dp4CxWT~(|Kt{?PTAn|tAd5c
z2g@D_6m?L{!PRiExPy`oZgNmUvo|W1E*oai%??UAI4~%<Zbo47U%B6W7bwjyjo$_K
zM1#b#4$3*W+u`%EajSzwsho-qDml2#!R-#pJ2*W*@aT*{1qZ*(2<#}9(`R$AWNxss
zgDMWHIk?Ng9S&YB8?5SJ^pOCc<P*s874Bpg?(@lK1%f*l<W_gU=6X&E@OeIT>0Sr-
zJ9xmseGY0km~b&raZ2F8Y^mvB*5=@#oM0^neg6ss9fTYNlrx*-AUDhT7@xJfLsKv2
zUXBKrO$gO?@F3lA@REav96apcNe53kc*Mb@^t?dmF$a96P-aG8`M6*mj{I!dbvQ)%
z;|`v1u)ksG>7qGBW(Mjyc-lb&2hTgG=b*lWXW8QJ0E^0Z4NYkqc*eoCZv%bn1)p=!
z>}-Io^9e{VuvXEWMv5d2m6T`_8c;p_e4)_G4qkEao`d%tyz1aJ2X8t!{G`0@fIc*K
z(8TedfVAXvZsB`^!@do?L4Upt+&?UL=!U>ss`<9!JBsfrzJD>77J^f9KXCAogO44o
z?GgIW!SO3WJ|yH52TdJ}E1Q$Y5w0Iz^rQ?OmRo5Ke*y=p779lkL>;tn@Ph-!Sj<7j
zLB4}HXP=%pupPJ*&ImXTk`5*v3{*cGNICfTP;QzNR3^xF-v|WFZv(fE33zH`#q7|?
zalua=6uy$%%)yrqK66m|i{L#4L!UeNf|D{w7#@?S1e!Z|caD7R;2Q^DDZg?x@Z}u&
zmgC$v_#LOLl#sl9JXoQWeD9#&9BCE^{^+2kgFe*ZJUVFYpuK|*4%#?40%_}j&r0Gd
zTLEe3;PU<ev(x5CM+co8bal|pL1)!DHAlK|_90v5Na49seXcw{S1!!X?e2heX`zP$
z7WGu@rP!MjG}qVf=b%4>+`$+J0~`!=FxbHm2ZJ2Y!sxm3lY`V;={Q%Gso9|_AK_r6
zgJBL1&6WRFgoksbuLyH~FVB_Ubwi`*?Ob6hJ5R=P${b8_FqOl2PjEcfg@cI>F8&oL
zRxv!u!N&Q4zDt59cLqo%JGf2`v<Xb(!mkmW&bT__N9MiZ;MDnnSq^497@x$1B<47n
z>!4N=fh6WRnD5{$Hx>sA94vIOftDRC;!d(RxYWTi2a6pnanQR+POVG9l8XX7R8wo7
zEO)SeN^lJa%E3wps~j|(C#xMq=E>Y8xx5jHWJmkZS}vT8fpwgwdBU{b!Ehy;9Bk$;
z<lrDj)xlN=`xxikC5Fm2uGS%e-43=p*x_I&JN{N^7q`Iy!nA0f9GK^mJ=~+}`qx<Y
za(NCHUbyDJ?W_9BKl7yKZ-E!L2M%#*FdiISI+DvqS>>pM6Ape>Q^ypKE3(mF=-9r%
zNyT3knQi=OfOtx?ryZPea9zSnoxeFa&mAv`yOQ|b!5<EaC;6fl{K;8%@Hc~sGsUL4
zvgXS*PAg;MC%MXfa=u8z;1vfv%5v%RK;a*Pe{pM?FM0Fj?!$o-JA)M`2L9y^pTrGG
z{O5pKrUFS6O#Y7}i6(V?wSn`6*YgV}Q6!1e(*i}4D3-*w`7&p|@PAvL5xOv6ZcO6l
z1yVAJo05FfpByP0zB!3fNmNPVjwDJa{gW-_lD=<cl;5IAVOe%(Q-I`FEv3S3N^Vc0
zypjr8dBr3uDX*;f!UCZ(hqP)Ejb9G-njgF~=}#+XjaWU2yOX$YbKw3Y?n%O0AiVfr
zGl_eX{^=2B?@OXa5-k_VmV1Rr3!FG!k$xZv4i_)|<s^}t#HaK#iC_|;B;HTrgCxR9
zND}pvcqWP3Nj#XulSw?4#6w9uoWx^E)LJM*7RVz>Jeow^aybhZ$gTxaCy5ISq_h^j
zuuvXP;)x_!L{4S?QB{}K2L^dK>gl9^>6@uu5<DhE@@x{%CGm0+udryo>{yc9Ac^Ob
zcp(XUp=?|zFDB72iLMK!ks`_Dh4NAoEMod~p}d;JYe~GB#9K+cp2Wzd;U-CZ)hxi&
znEe_eBow}(LT2CQ6fcr@lW4F=NZ#RCDS1yN5#=8y`GO4p8orxE`$h6`644}LNqj>4
zi==51OBYFA5{Aai^*Aw;h$Q_(WlU=>_$|hhNN{$N;F>zL$R7tg2`7n^VlwHUpP`V6
zgek2Oo_z3<$Rxq8U0Eb$7E3-inZ?2Z{5**-lIWI1_avGn@g;pr;>X3ph1oob7D@b&
z^mm4@6u(a58zq!{o5Xj@zgO&aB23}4i{(cht~LynB$#DtrKGiv8?*GSZ4&LWS#z;;
zNTOpBbgWYnZb9kFX!$MNS+NU4cd;<brM+`_utyR-IW<FbhbPgC3+J~$|0D(^(VN-%
zen|IG(pRycA{R?7?v1pQ1S5fb5JPTJ;3vhwNi1G0%<f+-Lz5Vm1POOh{>3~(6-Fj8
zN@sa=5@VAXr{g(BB^+Lk{B`_iu}tJjVT7mnrXfsDVoDO1*{LMosf1}sY-j69OiyA)
z5(^l~Tx&~YW)gF`)h98Fi(*KCX||F%44Wmw?EECk-4^1%mQ9xkH+gn^Q4(J-k>yFO
zP_j6QB}yn<s$`iWci@#ttV;4NOIV-8>LmIuk+n(iFbv6>B=~0~*8(|*eFGyuiOorD
zN&06<W-O6S?8smt-@Zh)>Z;ks9gLq)qvhNZVG&o^&Lnm*R<+9RB=#h6D2c;K?BzbT
zR9Nv~68n@hyFZBoSzcqQ@DwE%$dM$TUMk0ve0d6vavnbk9^>X#S9rjKTP{CberCjS
zgB>8hC^nfF2p-5inZzmXFb8reXCmQe%9$k2CjG;r=M;ZaWcIw0-xdGhr+|_RiWe0x
zDbfg)uO{(V61S#sTME~b_?!FZ04bINL-d~{nlF_bQuvpfe-Z^!D46n3v6kx@KnfdM
z1Pi5b{`HXYScu3E*$=djg;V}{(IP1nO`+FPsq<NY+2SdbNa4m5N~TaYh2on7H>Gg1
zlG2QvrBW(|wM*sbz7UI;EtA46DNG6QSAT$sq?{^K{_|3~J%#ct9hZAw3KdeQm_ngt
za+hMI6sj^UlggT{qIicQ|L>sMohg5Bsg}ZH%Y=!$L3J%<(cLNBljZlaYYPJu)<~gd
z3U4oy`%?&{kdwm67QqKn{ytnwIg4^r;Pw(qf&Vjdw+W`ek4|o?VU<uQDZJhyK=KeP
zreLLDr|?J$kEYNhg*Q^Dlfvb5fx0O?O~)v#6MS6p2}Nd~OyMczJlw@>y%g%F&@kn%
zAkNn_DKtp=X97Q4CeNnuoF>Y5?G5!_CeNqvLJA~IQ<q7j6kbf>r4(MKS1B}3;gu9$
z4Tjg0aF^y9VYHJlo_Pe33M5RFY+5F7rtnD$O;dP_!;-=~De!au!xZ?>{<|r>m%{rg
z@FVQhGWj6I=X3?hi!PVy%jF}w!4I;b^08K-kS9DD##~l;jH|-|gHe}4gr+ph)g99=
zvxq#d!UVg#T$puINT$#sg^nqtQb?!pSqh)0;HL2Ia(^f9em>-JOorxW6iM<^_%zG8
zi++(pvlPD9K>9L;<{Ds(jjvMvM)7URKXUVR3g4uVzuf;u#4k&om;0OKcZ}_ye9|I?
zA5!=+g|W+}6(9SP!n)<sl4Okh*(^ZbCWZDYByX#vT?)S}7iNitR!FB5I<sFX3`(I(
z3U{rLt|`8J&5y1pR!H|0dgv7Q=QyvBo}9!K`lQfuXl^e$yh8e~kiJS72K`cCmO^sk
z0F7jF?(<ycKdF<0+17mFAK(02d`JpIQy7-Q%oQ@6ZVZqS%1M|g9G$|L6t;be?Vn<7
z3gc4P;$f?Y@hMD5p`MHSE+(e<PAhzx#%F0v=18VcEREu6Oyw#|VRs69Qkb5?*F|M<
z3QJO$!6s6emBQ>4=A|&7Q6w@ah2K^P?~j<P*_|u=8#flDurP((m9mH(S?S;MP+sx5
zmHsUlOH)|JEhvReDJ)N61t*IeND3=cSe3%+6uwv~yjg>{BfYy)cpD3=cU&p!Qdpnz
zZ+hC0^6w<#EiEHg%KVj5xR`%a$!2ztp`OBy6gIDvt?WB{T~v;*^zY!{ElYG}Cx@|z
z>{9$^rIcIc`y5&&dsEn#!s!&wq_95)HhnaOV<{X+;b00|8^|FQ9_FH3CCnb-st^13
zAJG9SALq8lz~H{YmDR&<h^0)wrobDuPH~@MocEIGD*rB?Y7hEV&ZclKg}=CIbM&}b
zajQw;QVPGP@Mlo|AaeYRN{dy}ca=<BC9NKl3n~9Dp5?3LGUsKLTuI@ojxhBp|6`SZ
z#}>)oDg2WH(kPVn_5V%bzZ426f3mhb^q>?}{_JYGakbQ1EjOf5I1Q>5RXHs)6-oO|
zusRd(fhv*4jcL4=#_MU6OyeeMrtv@;H>Xi5jjCzfnMUa}%A|378s*ctC5=H}1<Iw-
zdqyrvS<Qa9TF7rr<F+)uTrEu9SIflJQX!2hY5cO9@8&}#)m*<?Dra@5d<PpHmP;Y4
zS4-orH11C09u?9Eh1Ind+hVrh8o5{7W%j-_YN(xRYow+MNou7LNaLwA>ZXyCMs6Cl
z(|9nAU>cz`!f8kvKO*RM_S1|-A*TAh{Zz1T@S!xGSi=_x;?Xo7=BjxxNO{+dxtkvj
zcd~;6&xY!x@mLyDDukIHPh-c~&=YAqsgg^zLli!pM!hs%Oyj*ZQa_Dn(rBQZ+2k7e
zc8xrn2JyKxdT93fG+s!fVH%^>NF&vpw??SERq-X2ysTIvB(J1Fd^L@8YvhKt(m0JK
zX*5kEFO4_Se9Iv|O5@`+-b&-`H0Ey(f1vn|;(KYltE9?WVG+~&?56S$ReqNWc`5!A
znq4c-TK`Wg5<|0zG^{ktG$Lt4(`cy*aV4>AcHmlH-%i6x!%f3WW5!xZru~1TQfaJP
z>;HR_)<)Uxv9)q_tz<YU>*U3ClAi{%W!L$_&(rvV@tMZnG@5aK(-@J)$TXU#@l_gK
z(&(DT*J*r{#y{(%9mg|`@6uSXPTHjLeHtz34+CbM#Mj9WN`6e^hjl^;(HE|hR%wv5
z)>7)U<)9tOJ+w|}grq&~?+SECqhlH?nunM=rO{b=#r4u>Uv9TF=IjdeV#u+xr^DSf
z+e3LzPGurQVIR%*Ph&tDeU<l9HI}mOKsK$}VQKu7#^5yStQX3ehNyg~R=F;rwc#o(
zneW#fmB#2a7N@Z!jWKDyr4h4P%K2R{<G8n{F)fYH*UNau*m{|e#>6xxtd~iOB$Jg)
zQCv-h^+G<Kla<EIG>)v70vlvjmXK32H;s7=5)LwVgAI~*EWq^6xDZp_4YDweMU1@-
z^6OJUW}9u0rD-fnV{01Q(pb)MOJidio6=aB#;P<{r?G~^!d5m&g`okS8Cc7uv_a;q
z3$0^pPZAcraUyqp8h>t(4T{WClLrho)2yC1*urgUqntPx*v=W>8>qigcF{;0JGn*{
z<=($hwk-7T+}WK5Q{G0Q!oD>2b02g0hDsbr;~*`kaUqREX&g?Y-$psfUZ-(1jT347
zoCX~`mIl-Dw11L;j?rNrZ}>%ve$^uCe7(^xBA!a)bQ)*UIIGtFU|*E{p2n<=Li@j^
zab6|wtOzlCYsJv^jY3XxF^x-%XKvIw0++cQ()dgHl{Eg?=%1{h57)Hmzje6SB86=F
zzcdQCDB_~1i-IoTqOgnSHpz{fq>zgnT>cgiKFYH4D<P5^n|#jaVHR^y+{H~UZgx@k
z>2L`bH@Yb4;-1oSu9W0$5<bxKyG=4^lg!`rzki)dxtRG(X!j<$#r2;ec$bUnF3P$n
z=i*iux4Ed~qOyzIU6glG!9_*ae*$OGDsqL^N=uo|e$$*3Hb>v8xTxylPPV&A?qIt=
z_>ER$FRBO=b%?b#%iSz;5q2Ri?sajWiw9iPa`F6Tsi9a?(bz2a(}A#jy;*u~7M2EF
z<Z2OxIW8t`_KPSFx(KP9oHvTrcJUznbn&<gDm>)kQ5SVwJnZ5Tm2BB8OjQ0&kqs5z
zB2Tz@(#2C8IyF^oi*Nk7E%LOBcecprEwX%zq_;?iE%J<uXI;GN;WZD>xoF^Gl#9`<
z<>CbwpSWo1qM?gMF5Y*+=MTK-;w9?4c#WpUg<f{?ii^Elr17>8S5~>w;j3HZbr+3Y
zyiElcO<cU;;w{%-@?4u`x5}IB_*R)PB>3W1p^z2db#Z-dzQ@Tb9i~~9#<t1_+Tw?b
zAG!G0#qY(0kK>>lEw)OY3&TYV7eBZ#T|`{uyZF>a)J4CoV!Lo$#9YK(BvfL#IJ8x!
zY?akp<-%5>PSQn6i#)}&3l>rCYL=Sh8RaA;wh3qIGZ$ZR*x4NyUogP7Ni!E;x@hkD
z_aN8ZCQY_Ua+|c?CPTK#H!c=#6Q*x<>Pfy+vUi(&uSFz3x@hTQfQx}HTDfTLqKAu~
zF50+g>!PEJPA=MUgttkDY?bz0LB)g;8swt`I=d*aUAku5>cUCv?H4h1bJ0C3ue9Bt
z_g*e~yXeCy-r_6tb@9Y@zB2WHe)1mV{>o{PrGs4j<YI`6p)TIsE?;gJ_IEHP+x_4f
z=3=;u5iUk@-O<Qazm#`puiq|*xBIu8U*0ZbT#V%k@=(&lI2YqxY<IE4#RPu&cQMb!
zd`7;D$u4Hlh>QI@a;GRxb1~ILplGn{4xupjrO<SS%?@F97K2lTb6m_;Whzi}u5uD)
z7qAyDR&hdIEON2f#R?ZIT`X~tw?n4ykfkoZ*&%(EFLSZn1%(?myMAEk<PO13sibKQ
z!_UPA7i(Rt<LcWfw9sUyZ-hD<U2Jl(S<Nz=+9_=*+#y?BY~{|jL$)anRpCw-yBNbR
z{&2C|#U2+YT>Q+*b+M1Z>Ef`9Wjkf>PC36*_PZb+aB+|$+|8FX4oJ~ma>T_k7p3dT
zQSL>%d`Z<^vZ0<F=SHFA7p^83r(B%orq^9ga^ZB7rn}_kfHc}A$9Uz3JKHWf&loNt
zXI-45!R-O2-;_Lkga0I!V^7PUE-rA#_5cqTU0iZ;)x}>fE~}GVgIBok<@gUIsb0tT
z?HUd4l7C$M%eA1K*-pEJ_@8DAco?QxKGTN6LLP4LP{cz~4~0F<-6f}XN&Qpd?Yn$y
z#XNtvDdFMmQ(=<g9{$_qFMKL+2e`?@%^q?+1U;1UP};+79&Yzg#=|Y1f1c!44?Lk!
z*7LvJl~Z1RxA6Q1Ppz!K7UD6U@}7TSsj`PE9x8aK=z%9mcqE1gMJjpz8Km6Za)*bi
z9s+8FC!_B4@PG%BY98+LP+j@G9`5sSxAJ>DJilA0@X2nuPHL#UrsDmIEN#A9YANrb
z$~kJEr+Ro;CFCLO;YF2*huR+MdU)CczxO`q;Rz2<dU(k5zdS!o|GB1i%cC9+?v}?q
z)KN8RF5NAUtC0NCZn<fXJmrB{eUE>9g`}S6pFnHqp^@hwgQ>6hjE85HQ1YAy9)M}U
z?$Cif@`B2*ACKWdAPy-V;CE?~mpr_z-oBzp3C}OR?xC@VwjSDf;32vu9xM;Ghc`UD
z>ESKTsfUP%sK=L4;_myyAA0!6!@J7gQ+(gU2bAoQ&-O^yJwlz2J$&N9@L+mq>LJfV
z!M$>1kBr+R%l8O1$*b)3$-{f4@m`6s(Y<nXuOvKl+$(X8)m~Y(S12s7PaF?P56wM%
z<ss!E?eX29xVx4xxgIjgJ;hA}awyFAKvHp^g!aj29zOT*MOOby56!ZiIt};vM!xp&
zjfWpR{HR6WdiY++cUeu^X`wu(`Yp5a)=F9_ex*fiJoHl1-a`iuQ#?#%k34kp(9c7E
z51l=9@%Z9YbobDe7g+YmhJF6WD+!U`czby0?fKuF$$N4_H%KqVll!EPhrY@S?e}X{
z+b;t=4D>L{!)OnKJpANgD3`5PAME)b^wb%m*{ApW-@S)>7{SrlFOL_?d2hdrWc9T{
z>Ku7qNXB>=>tUkD7noukee*z<CV1$vUkd*mWSX&Gm?)&F$sXtii|FCfRl#W<rhER=
zx7K)=;bEqSKgR?Ydzj^6HrK+gzyfX>Uj^oHIVhQ{IPW_DDp2F~5OrF79Uv}L{Y8o;
zZwW0?Q%gN8Q?gufm4_8dRw}Zs*KY|CS9`cFxvhk(^{|fnl7|h9@H(<d-P`D4+kRo1
zU0gP+gnKyM-sWLDBQ_sqK6ZH6>0x&UdotKX!g$NzGiEuYTof6;mKXax?B`<7pk4+C
zxPCp9&7fQchddniaNNTQ55IC?JskCLjN?2!_}_m2i#>mF@YhGB1HxZ1{QAoDGq)EG
zRDR%B4<|jG@^IQi@r*Ay<Ke7_zdgPR6X!hq=HZfu%O1|F{-27!D^mFn?g?iC-FgKs
zWF;3>vgOIp6_s35yqYcji*eX1z$$zZ7_0xwO`CI?!3`M{(AJ??P>~8$zRnA)q^M$%
zY$>f3`+vMd1~+C<QYEDnZ&JMZ|LK%gUM4HKCFA?UhHlN^whZcKQ0SoCp7DR99X%jV
zWl%nY3K>+)pi&0+XYfD<m9urLW>7`>9g6&cMmu+AP))OUWpJ;O>WX(OQsJHq<bbbv
zpGs<E<ux;SP35&z5>yN*=45qpGkl+>UpJINn08eDa0ZVksjc{61`jD|qneK@XO+h@
zd=2;iX8*AaMri31S;><btWXJmkn+Sk^*IjpGk7M0=QDUAgJ(0SdQhIrU}Xvav^;;<
zHqg3H9F(^XN<-zZXV5r<Mj6zY7-V`egO{@W<qTd?{;J|@S$X=PG|7NN*Y2Rap@ctm
znT8#dw=;MrgGdI^4BpM)y$nK!Brk*aGgx|1KFr{w4E7(C547n^2j$}oKFOe|W~nf2
zlz(2150@@|$nTDk!R1?m|IROHssec|gLnqX3{n{+RA^`5D6ulw)W$!$M&l%`#fH)u
zxEXjEWVkB7D@Y40ZKTHYGbmQOVAZn)KK|Qp^z#h9$Y68^V=`!#!Iv5I%b<S-%`^Ba
zgZ3G8$l&V?zR93v2CXvqHiPdn_#uNI+22F*eFno0NsA2H91@ZRihB<UORr}sY0c6M
z+GapCrgj-nc;%3kJM1HQ#|%1U&?AGM8FXf}9F{H_bj{$6!@kYTVd<v4yH;ej>tUfz
zuMB!;(1*LqVc*nPMV9u>;JWb@hh;zp12ZUdL`G#Wh@){>hG^+e$_Fdbfzh7^htgs0
zPKRYU<1K@c%C8<4_K~${yy~MN+NpI!#%3@sgZXqO1K!g&K7%P4OwC|I1`CVG#0(}e
z4vz@=WR;NcYwi0-WLgF@Ib{rn!ZJOB8A|wt5JhD+_s=6TCxanJq`lUitDM<+N@h`*
z!J-V-Ww1Vj#TopYBTF+_mf;J*vF(UFz9sk9BeI-JBZJjy?Py_HnZc?I`0e-KBXZkO
zdFWo@H|;eUtmPo*NV%Zo9F_V<WkUuV>DUq3#SqH)-%-;?Wm^WDm2Xj`a4Tc`sF0Yo
zWP1iXG9cNhNW$jcDI!1IAbYv_b1~-Q*?jEh=AS`{eB79igB()socSo2kHZ-p$>2-|
zXEQiT4>R~VgI^dMN9A}1Cpg_<8Ftja>_1nL7ubKz;A94;xVl#h39qP=96l<iGvMX=
zt4HNr2ES!+ErY++&iM>}&!F@%{|bEHRq{s$e`@x=V{(CWeN--H@YFG3y2Ry{<yVwk
z&EPL3Z>z#T9PJGL)28{9GumWI9`pYrXno9g1NpciABEZF)lw+me{dEbdd3H870E}@
zd=z8q<zM_So)7+OFyNRhJ0>KQl+4FX`FJ27weoRuK1$`|j(k+jN9lZ&$w!5JRLsXM
z`Tq4%rgHfxo9|yN-FwWxaC&Q2ep@~+9+TViQJ%`j{h~9Q0=xiQDc`?NTR9&&Dy))^
z7mxebV;7VS-kFbT`M5hD_v9mXT<*$8^?Y<cF3pb%vqbWH^KoB3P9K+=`51FtYUE@0
zaap2?S*qQik3uJ;{0RxLiF`bkkH_<on~z{V9?eIce1ynPh~%TTl5jp=IU&=6@?btz
zR+oY$gkM4)$_IbP@e9Vo`FKS6|1tF)&{7o7*Ko->=Nt{N@9o=ZBPt^1fC6F!6ciJP
zft|QJGrK#xqM)KgMUbE*0|KIg0g#-{ii#*X=bXPg^?v)E|2ci`xm{gdU0q$>GjI3p
z46FUNYlll~$?c)e@a@|5bYQ!7V;r3rz&I9d*E%w_wuikAZ`W>$V{!$pb3A;i;TNUC
zUNlaAYdpMywAi8D7sqXJ+#bgraoib47m=6Wq1_e7J;LwKOFp|kJQ4@=DA{Uj<lZ=1
zMv8`yEb1CZw>Y}Taeo{=c4&{s!G}8bh~rTPC!#&TRfyxEI3A{NJG4gx`S&1s({f=U
z=^00_IC_gdAKv(w=#a2GTW6Qn`oz&Ujwj-HZiklMp{*^Wwdkxp701&|03D5VJQK&W
zajcAE6?Nk1AIBulI*tKxJRirfINpk5U>q;Rk&Po4$BS{i6o(y$6UWPOjM<^Z<Isf+
z66BYFh7ePb3jAi!DsCF9v6_e@8AmFPv<Tfeyu4<y1z)OD3bafdb9ZP#96fIjA5O@=
ze83$guf#Dpj-hezb0i91jblhW{A}knCYyYq^wW;;LzSI7!Vj8WkK>Iv-W25vJG7cR
zLm|uCag2?JpXv-}e#S8}j!|*E!$cB=@FO6)5eMz?GaObg->JRJxb4(}o#E#;@5M1L
zj`3n)g5a2)+WT?L+^H?vsZC_ie$oEisnPxiaeNrZ7jb+U56|Z*aZG2{#W9tu-&va$
z$NEm;G0wl`KVmXOw9n$0CFEnlPXs>|oEgWdPN60b-q~D{J+aRP=WybYP(C+~6Fap^
zyENigam<V3TW(bjk<sSI@eMcHzeQii(R^3<5iXI1k_B-rjAL;eOGIH2ckY?O@8jX?
zkoamOauR-Ayp*j!Xv+ncG1GQw4@z0VMBSyCyR_ADtcl|o4~;n1#<7lDDUN?QdK^E*
z@p~M9#PMSsKgGfC2!7*f#*X!3zr^t?53BXs$X($r`sB?~-ldoLBSxIJE4*Xhz|&xp
zHfTrW&p7^K_ZRVZ90zx4m3M1D?b6tBQyl-saezXe|8Z>Qi2UYpx3(pYt#NFRgPK&^
z##P=G{vp6#9Cruz<~nVs;4VQ{cXP7~-<y~0i(`MDPn%T88^1$5KPN|y#&KB45pkaO
zi+x_Uv+xAdhUd19GCEGhaXKD;x^j_c*J|wy^KiFzE{?N|)oP93tP#)0aUl+Vt;Wv^
zSojrQ2^}SMKnK4{D<w!Za(>-LEUTlOjw(8;>L{;=A8S<5QBlVOyTkAMD(T?w*DCAb
zpe*E+kW|xAUB~mgwfZ`0h|StkttqXw^zcIxs_~PMIwGfLT_N=Z`Hfz%TWcW0ku=uP
zM2D@z(a}`LQ)45AI-)w7>1eK_g$};=^YL4XE)~*Ju$7M1LfQzn)lsy&@DkxvzVKiX
z^)J(Lxek(cf+X#AM1&XQC7)#@MLJ?Sdg|z<L(`#j+^XX?9areMQpa^VuGhgIuU)0%
z8Xec_;V<2;*27<=@dGRVB#obLv9*H^{yvMJW!<2oqmIsc_`9|nb#&5klaBej!=~}O
zHTGh6e(Lq~T<vBZw}>@b;3rWO-mc>go&O|^`*qx@<1QWd>bQ@~_fza{J^X1{7ajNL
z;ZOEh`0FQj;m^>ziUM`I>HIgX7`@_euQ+-SE~1Wyq$6ATN!Noq*u+nh$RF16h#r3C
zMhlM$A?N2#y>&dM<2fDu86q8hxEx}kuk?LVCQc(yNR>arqUC<lol|>SH0kFvI-bpQ
zDi073U)1puS6}$Ryw5L4UmD?W$6nU)^KQ-1F-S*T4}VR@Pt0^7{LL4urp%oIv~)1?
zBncf!9piM2*Wv2$bd1n3Qirc2rDLd$*L9?I?A@*9IFODEGek$(JzAE+i?L37wD`qX
zvpw2i9k1#bqGQ$`?KK@!dlj*a+@n3ZN3-{6>-K0%dll{3qrIWyEzu!=Q%C8&+AtmD
zBya0zxmRQN;X0PjC?p@noLr-g)-i^=Pk!L}4wqZ<zvJF;Z}L0tv9e#@%kMAln)h`~
z(DAK~?{rMmF-gZv9iMTU+qKC$rqDM=UaAl8)jrh2n~FhuwP`x0>-a>+r#fcnSQXVi
z;vUSaQIp+otf0NRS9^c2#wuGWVVR}l3msqTn5|=uj?Z<>l_qMkb*?C{*{gk}gB`!t
z@r{mo%x9|Y)i?@=rdjr)O?pD%0v!uE9Wk;<$L77-VjW9#d@mAKFOOiUj%89^$un)Q
zwp?%pkDz^_do)t)+bWse0~NG2I@an~C)R$@@uSGslT^@X@F($&U4GU<XDFdFH2a&5
z-*v1pvDU;NIyUeqi$~g<_*2JU%xVKq8~B?UrK6RB)&~CJaipV!fszLP)$yN>eLD7Y
zP#s&CEjsF4t!-tBz82Z3W9uE!cGpC=>DaF0l6~5nLnAwM^d416!lqq1c8ks)K}tIB
z(|YgI?0wn+9S3!s)p1V8AsvTxoMbe179L@uE{q%(`$u)Wy-z#FlX*@d%O|r7Ip_&4
z?mlhhKJAo_(=@wJyRc6?BYhj}*RI;n42*ogvG6=Yy|M5DlVNt@Md5U>#>5B=lrq8y
zG%--xKp6uy4b(EgKkCaGsAQnBfpP}A?bpg1cy7N|L6Cp!R}{jxY*Zn!imDl?ZlJ1x
z<3Z%5=c2!U6RlwYsc4BtMX&7FmQE}D@4jel15@^E^$gTEP{)8Zuc+<n!ny`#EQ>DL
zuQf2x&<J0u)ktvje(eI44`_`Ir~_L2sZsvwjekBgHPFmJb0hpyqJ<Iu)5X988vkTy
zDU$mRXl)F%HE^?mTMS%c;8Fuu7`W2FWd^P`BT*y#T;+1%?F_UxFzak#yH}&XKcz(s
z6c~IqxW-Z_WX#EEk%5>2jZxa9DFaImXhRNYGY)7CdWN5MTtzzuIvBXl2tUZ8<QgOV
zc@94jy4Jwd-Wor>x!%AH65*Q+bTn|I0e;@q$v}&5BfP}(n$C+mKk#AS&TKjm{yzi%
zli^kaw;AYZpqGK$4cuX%yMg-++-cx00~ZfyT@BoA;2s0_NwtfCdkqxhz!C*iU?E|d
z_HV3PUWdGg5xxTE5iW6wf(HydC`}I;pytB{s8HO6-9PECJt}G>?9$snU+Mdp;Nu4R
z7-)1*<Lg@HkB^W%Vc@Cpk*g1CPjbng(fS$uK1-wI83WH6_|w2&OcewD85s^_V1R+=
z4P*=i9G!79;2204;og5yP#1j3z{^4?A7mh&=iLr!hHz8R614NJJgLIN%D^)RwG?y1
zfX6hZw;~~uQ^7l^rG<|?sAUc03=B6g!oVvA1{)Y^;B_NBPhK_f(Lrs9f!Cx;39BqT
zUfwY9rh&JN@Z{tn!()&q-Y_FP;&|-5Epi@KY#nJ}l!1u`CK(uQV2pwH42(1Ij)8X#
zj5V<6pvLm&L5;o@b2>lX!25Lmpf-W~YhTzzAzR7m28SS@%w>}9A99O{hZM5)=)v&B
zo6ap}U@^0ovoP?nfiDbvY2XtBpBngF0y5LUXWagWwAs>~(U>Jwl82(<h;zgT`bIw2
z0OjOg8JK5ap=i!G@U@U{WjZuPoo_@!XTCGAKs==Xlv6^5MFzeX1<r!PrQFU2)*JXi
zTv~2mwShGTRv1`mV3i1|#?jfAqjQ354XiUj=V_ML2rek+`=e<7V&GQ;KM8MiNc&lI
zNT~3e%;gV}{LUOc6q?!~RT5VJHn5SSm?&%F9|N11$p#LJ!oM>2En?w6uCj!SUFg78
z1KSL~))PAn>@~2@z)l0Z4D2?rN7jzcQ;nX}e=Z+`P>f+H4r==iaJ@(l88~d9gc&B%
z5ef~QHgLwkF)?+L8O~$YzzOk(7Pulr76zHKBROl}oPi6X&#+U0^Exl_XVOyPqKw6H
zOPYX*QZiO)GYliwf)`2_UN_5`C~u;^i3TPrn5bxmSzTMOl8I_2s+*{6qKb*CBIKpH
zIPH0FKvKg*O|i`U=XJT3=x|cSt#zbY*F-%b#oMQ$iAE+aGsF9e#wMDWVdh_AqN#~y
zW;nYxCYqaJ`n59A+C&TCElqIgDWn1kC&)0e+SUx0fK^7|QZtN0aq7~C%T2U1!#&G^
zc%u?AQDCCbMAU>~!ZcB2B4*+N6AzluOehn#ntaS4t}t<>i5pCGG;tNX9MbsspleND
zTta@0;O&RBzK669^!d}U^*SNfo8dEpSf$#HCOVtA*+eJNr{pFR{-Lnx7Ll+!ISYli
zo8Z%U?ly6ci93X|dZ&rI@_gbUtqZMX!iO5&Z{l7P_nGJ_l5QMS$oxav?}tK#<ANkT
z@=Xt!cvwuuO*~@aQ4{@53^38tL@yIha0|@Tsvp*Rn|Rzr9}|yp-4BP7%LMzHxaF`$
zWR>Je6a7p)CB4}3SrbnSf8wzA46Vu2hbVtegnTd&pAYuDiGe0w5VP)K?L`wWnHXe-
zj}99<wCH6M6f$mnR1pcsrEtt)O_xA@by%}Z*e1rBc+Z4mB4J{viPug1c34ZA7%X;N
zCXz^e6M+!6ri7#gGlEABYgr*V!B+&SS>=fKs)_bTwA+tpubFuAh&IGT>PYzDvia*H
zZ<u)7#Bjz?#u_F_=id^-r*Dm*dqay@-eJ0$7$w!wGOsao`$#x7;#WtsccqEbq-30l
z@g_bo@u`Vlk7)06E1CGf#005MG%?A<!6V_LoGKmFINXOOrkI!^t(P9vrka>;qW4j4
zni)Q6jn93$`KXpS8e0B{J{;9PW?~!-AN@o=)5K>c7Mb|o#4HoDO?+iyo{2doJ~zQ=
ze?f(#+RCHhl;@h*a#W*`{7V_`;!$nBiLXs8FtO0YH_X6k+P5aY6Vm9I#zM)pLddD`
zi15WGmY7&ADZ13eG83z~h{wX^UT$LaG3^WCD@?4EO;p_UiwK#+%<Xk1*0ZC9<raQ0
z@gom03*9aJWa4L@6&6}p_=QfIIBenw7u3Y>CjR4@!~1`_5shx(%|C@k<j^tgFB5;8
zh#c4cF~b)uRy(fEtWmU)2SRs{Y+~@&M(#SU{cEDtju^=n6I)H}XY&6T?K4c<#skO1
zF8aV1L7LbhguLHzZQX#P-6r-jZH{X!dra_6oqS*CK2Bjk(WK)cKfpt&L(xGKQ@6$r
z36d;1t{pXTjK{BqN*0cr{K+a#n>b_QB#%UHoNcl9Iuse*v=RSC*nRVHjjt;`%Y)rQ
zDGO(hYv)XyH*vuX`Lt<;7ftAyC`$<|BqasY-J+!}l(A6WLcJ4OS;2A^7IoEF+8l|o
zP)=UK!s)IWd1VV#EYz@2(?V4XSDes#ep|$#-G4%>X7Pvlc;SRLYkQ2<S{7<sXhMHZ
zYIQ8swb0PQ2Pd?8G_|LwfrZyjgfB3yFIB#cludjyX(J1bEi5?^R#~>3&^WcGbnJDl
znFVr^mKIuBxW>Y@7Ft_qW1+x8A!ltDwYAXB3SVY=i3M$P;iXo%b}W}!xIEA2EQvKb
zskOHdv9NPn?5dL*-vAr6P-KOP5wpUVit=rqEDWh;L0RBiS!wMG3s+jW%EALDHI}O_
z*eA6SC$%{zweH=t4i>JnaGQnOEnIKm1`D@X$adH0Oh+rsw421S8!dDa^5e;{sk4Qf
zEmZ3l7Um4``uee3Eii!HT17j~j^1J6J`2w0kvlEiWrZnsH(k23sEdVrq{>C4@Lmz_
zKdG^4PB*Qq6}~Grxjk~fg&r1$T6mpqTX>KQWZ^{%4_SEF!c!KW=BzC|YN4-%C)m0z
z*3$w*)XNHA=gOC#_O|etg~u)QVJe=|ZaSqAFU=F`-@#uITIk0ecfRO~ZebqsEvS5b
zEyMndg=a1PwH|rSLVtS52WuRO^*$AbcYsu%w=hr$CAZwKy=38KMwRomFvvpO3SSb+
zcke#Xr%1QJm$w?6MV}(RW7j>UnHDU%x-G`SYJwdP$L`)zn6;3!;9Br3ymv}t$q4ZU
zQx?*BIbTE@Sol(Oh&c<dSQu=DZ?Jup`DuYKu_Yg3;pbD~t89y3ZmUhz-mvhdh1ne4
z!Y~VOF|jRtXyI)O!!3-l@Q#HM7Dmd3;(U*u3g6<&Ax2pk&5hGT<F4d8aNo5s*1{wn
zViODBvoMY+YGJ$uzLB;V-xpr_v=)|S;hSnFisX{h5@#+-_pt923sWt8WZ`3O%paqh
z`2N}Lv1wNLTH)z}GX%L1H=ou%vGAFNSr$H(h|Lu2b6U%s4qvLvg<#S$-*&Ewd~RW`
zg)ivXX{}l9qAx9cWreTn{f_x?I5v-iZjEtw^X<&@Ep(e1`P#xaLcZluye~ot@%Wb5
z0t*Xys#y5m!eR?cnVdYhx@k)orEVId@zv?D%78FLD=e&Ja@u&r#wrV|Ei|yv(8d}I
zYb~6xaFQ8iVLfMLVK+l(g{SN9Ob-h`a$MOgw{|G{nF(p(R|^|XYc<YjzgakXS|e|N
zCai9-z*BLPg@1+oDfpL#zlCfR{D*t_jK)IE|LFYG!Y!O#tLSFgYusquZd)yEll`)t
zhlvoT{f<0gthkl-@QC{>a=^kt3wwp{6Qppz5WY^AQ#d5qa)h%RP;}S=FBW{KHW%Wk
z%;*@e0z&wbUkXpLBhPJ{k8i~p4tFG0%0_7$XSr=HoEOh8S}0+o{<hc!xgu~PC2ef%
z5QQCH0yrrqA%)HA$I95~cShqeQqB(Fn_O0~cXzyYMw@y@t7xN=jcPWk+qkud#yGH4
zwo%0nW5QCE<V+~9VTV4~wo%6p7p10+T6Q=cUiAiUiSg=Lm;TVnGuq#0w0bs(UzU#*
z$Fq@*#x}0C(ZNO&8%=E#+KAd{X5;3$k+wE2vC-T{3mYwI<gCUsxwVZ}Hm*La1x;d<
zw6VdnXx^dN$2$wT3of<s!db1o9qx$BY+Npcyq%C9XEpMO=oHu}uJQ^}WQV)&DjP8y
zlm05wY$zdD*tk*%9j1K9S&ewL9Ue;8*x?>L(mmXg*V(w9ZrHff#tnA(y61Z)7u;f_
zqm3JFbfSghT4y^v-fyzQn*m0Nm${ooGVQEJ`K>nCh2=IIx99nav)b$dMR!rn1~=y2
zl-uaSA%<yPZFIA7uZ{ai<mJmelX+W0-d!Z_FpY)P9yT_g)gG|%pv;%EW_%u!XplT=
zqo<7#Hb&a$WurHf#D-zxF&mHDc;3c98+~l_wehr#XK1-q^!!=v2|GM>xy_%nv7%K`
zKO0X8;ajj-eOA<%v7F{}!r808kO6}A&S@{$c+tj7cKBv?-eAnWU+X<L!i(U`HU`n9
zHqkh<A`|7Z-qjr}rVYzR)<%v)+i;j^Hqtf{Hf}mll(ga6;j6m&YVzng&Esm$jj-z5
z;jJCZ>^?;q8+V`6_@eE=#<S<Nd6OeNd2;8pS8NQn@rI2zZM<sZH5<PyjlE9nP&C8_
zU#h};0P>+Wc>h51!8wg7J<P^iHik15cf{VdvFMz}&B#r}P?Ix6JW)s47;R%ATWyT7
z@s5odHa@cPu8pxa#@YN~K6W09yl02k+)L&a?l~OWcusrY#sra1wK0*IW8*`v%iIWm
z;yu~M2X=TLbxMY)b3VM4n!=<#ud%E@9Ghl??{nwUOqT`X@&2)mPndExzO?bFjhQy)
zFafs3KC^MWo5qBhZDW?~HEy?$-iZwA4!+2n7v;}w%;hfFP(-hYU)h*v<7*xfHs&+K
zcNX%5rv=`Hc0aE%N>^=-F{Izx_|C=xy0JCZbEr0QVwB<f-o|1Z>$zWSEU~ear@D=`
zHkNS(yG2*hs~SbiZIr({#<GG-c}nBOop)%f#Lj9a=fo(jy?9<5az5N{>m=+m&TBt%
zeQo?^<99ifW*;j0nFF2IcAeLLvGJ>oQWv!57qsgxXn!zyy7K|l_}j(?8-GfnlXQ>B
z4B?5r(GIWs#h3ekZTx3r+F(o{jLkN-(0&?=)7WZbn~f44N_yCCV+Yedft3mDw6V*^
zN(ZYP?6$FoL3Z$>gS|HPF}x0Laj@UU0UPIST(EJ_#-kUsgBP^pHoObkAsdI8P8YP_
zR>zLmI7&~ra2K>?BH4IBJ7J^DMeU@GQ%nG^!rItbZl85Ak~30mbWuCUEpSm|x$UBM
zkxn{j?x2N(k`CaYii4^SdR^2?IVkO*jBx9sMoC!*6&+M^P|g8cS;{-8APQ_9aZ#%*
z!eR-l6tYxvP{Tn@2h~NBIuzD&P}@Oc2Ti0}M>-aFsVkCtg7qCV5YkYP9UD0)w$M~0
z|9|vmQk{8GYw4hsgDV|e<)F2LHV&c=iX60caEXJ<9kg?Bse{WLY`CbYHL+o9V~a0p
zEUdN{VZ=d!14@dU3Ps53fxKEw6s{1tR%}O*`ZP<t+QBsru5)m`XwovvwW8BO6h{0I
zyMf^?q3V}VH#+F(fTXzENjR%F3F%A=qIRo;+Z;UR;Bg1HJGjF^4+oEwP<J}G%Rx5>
zQ`W}rc5twRHe*e!i-UWF7gz6faG!&&QYayz4#~|WRCfo&`vvLM0}dW^@Q{Ot9e)0=
zdI~<`U{(n=ri6M_s)2AydO7IrfN~Zp_i?bKgzD?y2`5avKT9Yk+mjCZJ0R)j;3*+b
zJ9t(|r?s(XxDe}NY-M@Q2@{pV0n+-s;6MkIuu$P82QPD)4yHO7<RI?g6$gVI=nf8)
zP=*83!K>G4D5)BhRF;FJ1J{Ag1SqK-CX&b#QXRZ5c3Vm1F{C9`#(^({JS8M8Nc|u$
z&pOBnFYfrNgV!94b1>e)5C=mYyzOAPgV#CY`q-S3Y8WF^QoZ5eO$SCvHM*ptkmW5=
zxZ^sFe1wBh4n{i|>44SsqA<q6J5n9%;9XJPQc}?Z3oXAVO&3Zk3g2hitcy)_FiFS+
zZYU^9CQFs%Lm?jsw&&leYhn~mbMWY-0+#O_OlKN6_{hP>4(?nNoA2Ng2cHU`D>#$u
zE`+V0IoP*4MlxF@a|G$t=MHY<Uz}@VUx?&O!LI~su8YlMI!P-PzGhbN99S0``Bvmj
z*2EStqo5W#SmfY)ZaN2Jp_Vb)P$Vo%94wV4atfDAb;bV?u6D4-!QBbmlfYUB>v%dP
zP(Fe64t{WO(!nVQKRWoy!FC5b9Q^Fy7Y95)H#_)M$RFI84$`}0zX|^Cp!hib)4^XN
z`PaeUdEq7p8-@QPP1NM68}?lt`_DmfU!KpDZ*j0yG%4IB%AY{(bg+=$UUF|b*u_hL
zRQCw(qZ?3r9dubAqt1R29_FQ$@qs$z;E02x#X`Yyr9$~J;m7}v{Dgz1(sbIv6{XY#
z2NxZj5q?(ioZxvuo@vzCvMyF4fl>*Ou#`;Two(d$td<s1MzE~t^eUxxtcg`fpke}T
z5@?&?gAh?UfqDtlPoPQyL)&V#6X>@*RyBcY2~-zJO~D!o3@W8qs8dTMBotD)P6Bm>
zyi!WB+8}|32{cQfxu`Wtph;f8u^6Ea`!-F4Da|e|@~tg}6t}iYptV#v1eH12OA^o$
zP%@oM6Sypa%M)mqK>Gv=6Nn}dk){H{g{#AWFdCe4kw`|YiN*3kIJ7=&x*~xq6X=}4
z`=!)X30$4P^$FaNz%?T2AV~MFP2lrV>ZekQYS$&OTL^i_1a1@^o^q_RbV}eRkyI!h
zR&P$=mIQ9)=n32@^4k-*Lx?5{ytvSElhW$0yjfm8x+HLK0@D+ik-&WkbWPyR1coKh
zErITgUIOt1?oXgc0#7CIbOH|~@L&SH6L>6vhZ1-=fu3|@W$Y0ST3WI65qva(VnRu;
z1dP&(I^>Th@I(SnvNeIe(vfN`Y^AB<?)^mn_0sB@1fEUcg#=!drso6)2=*5pc6>g8
zfeB0&3tyI2Brl1=%Yrn>p(!Ei#00Vl<PtCwuo7?+@Di|j2$WU{K@vyE&eAF=<ZNkG
zy^QjOX9QCTr1MSGZ&5}O1KzWh4hhREqA)~s1}E^U5XxUmfYwNcCh&R!Z{+1ISH)O3
z%3I8kGHOf$?+AH2f#E_%Brr08QNq1dvC#>1DWj-KPJB0ku?c*Tz=sLEm%uo#cmfj=
z7|-a@^D=6bAo;`uSe+zcC!qr4Gg*X;{}dt91g8p8hpjAZ{V0Kt8Lm~auM+qqfmSPG
zvlC#zKNZgE%mhBm^I1YZE~BV0hxweqTv7glD1-*t#KKjcm%#i47MD?9bB<-yLgC*e
z@U4*V1lhVk$nRy;q6EGt7v-f1{v!vL2xni;k({_(BqS8BN?<i_s*_li#2Oy{30#{*
zha}c9{t47cqHYpDB=BPbhZ8uGz)uPM%+=%?wbFh`;MWBHNnjJhyE67$0vi(eGlAcw
z`bPqL$|x2#l`O0N;>l1}{Vh%P%c_l1rJTZl6ZkKIZ3%2oV6!N&*A^jE*eZ5t<c4tt
zw7Da%aB)?Pc6M>MQbB~&*`L5(;rqnHTgxh1IFP`>1n2;LK9u*0;~q`mm{hALaXf(&
zJiU`Boy4;%Vkeo637kvdR05|HIFmrHvTA5qMKY+YB0rzNg#=0@LE%M4bw!M2Qdvc$
zq+}9E;w!1H6D*TN*(53?QBmxd6D%*?i+fSIl2ofoQ)S^*1Zj}^)kI#b%=pwuqGs}c
z5w4X)ZQ-0Co9ZP|KZ)&S)ul-^NTQ+eR!KBUh7n+CmPF$`Z<0h);S6SR_vT5o5Nj<(
z&ZshswAMO_66I7I!L~_Ul0=<yioJ-JC2@HY?UHDpL{Snkj>t<uGR%som?}u3Pzd$8
zB5WmUc^|G!LM3rUG8EDW_99*-tyc?PBgm;yeq9pRCow6B$w}OhM8_mvNaDpLZcL(6
z5<QdXmBdX+bWY-~B<`k5<<!lBw<U2)Idw}Cw+f-0)!UP}BZ)inlK)TcNuo;<4<zwm
z689!?UlQGuxIc-mVv2pcNtb0SV&spMQ^g%=utyTCQut8b<|9cwES#;J;G?2Iok8VP
z?<5}M5|>lYCGmI?eUf-us+9Ci;z{982!2>jQOMFys!t_REPqC-&kBAo3jLE9ki_#M
z87N52;_f6bCGm0+sU*@#3`!!NL{fBgK{E+Uh#|<uvV}N#ObFpXzsOi_5?&I%*r)Mg
z2lkXxnIwWFMkFyZiEI+NB;H8k%_Lq)VsH|#B{4*j`PC%K(O_9MsjOoD59KOLm0OJa
zh)6kG$%iE|oGV*ay(Jyr7A$TmRvwka=p^1vVr*VvOcL)1FCL;~`OyA*NsQwV`GLkW
zk;<y~1t$nj6r_-2eZYAo@hua(yqc24RAvqjt`)Iq%;a+Fqa;2~V!H4df)sLzKS|=#
zB)&-E%OqxUW0qI5rS-EUW>K;tMztxcVwBGj`RDn*bA`}8o4yi0KZ$ulxDXVw<JU=i
zlUHN)yCfEfdkd3TEMyTgzr6aMd0SqQ(DNlpEKOpWv@RFyFY*=KI4fgR2+FI~Jp7q^
zE}n6*mWO{5tzEQn@zBcH`Xu%yv5!}QBz{cdrzCz(Vp9_TCh<!Wzb3(}^PfrlCWL%L
z62B+$hg9D!uRbfUim%|;u894W#NSD5Okz=a^$%xJUj3GDrR2XPHuKy_Vn-5NlGrN9
zzHB1$?sS`UB-ts(_XzGvVs{c{D*SICUOK7ILH8$dfG4DjS}qPIaVUvWE=s#NoWzkN
zP9<?ViK9FoE2v{U{CW6PP+cpi6GBdkoK4S*ka#AEvq@Y?;v!Fg3hJCFoEJ_t-ewS4
zO1Pmx2$pm~YwTOBP{u`B7nNL8c2Uknc{gmT=!WA~5MFG7##v=6Nfj4WT~u>XEUBJX
zW>XE}?85G~-S9@GJ_mJC#|`i0Sgq@ZcbN60i7{#DqLGVcE}FY&EW(!(XzHR#UZ3|}
zR4eY=!bM9LROpkxOKjza_a0Pe>*5j@-Q4hxg-cyr=HfaR*SomfMLQRYUb$%RB0>wR
zVnuG42_yxa^@>=b2&01RPI=75YZb!9)m$)Dm<(4+>(wr<5ptDavCg$FI=EmKu@p;a
zg!f1{xVX*5?JhdHxY0!?7dN@M*~P6cI?K4^w+LY`7J5PpM7C0X2czMli;H_*+$CM^
z5#_tZH|iHF7Y}-$SZ3d@qRCr0CSG?J_q*uf;sF=ET|7nyR>mIW-f{7;`@j3cM;I{|
zy`-t9;Pd(WOiqFKki40EoJ;10H;w&7p|6W4gwPs;|D>!GIW>t-xnUQYde+5rF6OxS
z+(myE16;gH&s|Jp_PQA4BJN_Ki@6ol3xXssa&hzgWg*9x$8_3vk#P~YFkM)*?;_>G
zcHy{4x^Ug_9zNlQe-5PO=6qF!@OIr}7rDJ>Yq2Cv2l99C)XYkkoQqe4IMOs&c(EFF
zhPW8&;yoART)gh$4Hu(bjB)X%i(xKCxELu(TTk#U7jL^5E`_PiXcXfp$@xbmu*7%r
z(HkrBcNu^AONaU-<6XS(VycU2lH0s7p1`2Fn8YP>F@=FGqdpM)P>@x2+*l#JXQrHd
zy2w9v@rjEW!avGuQteY0GhKY<VwQ_yIq$k@WVYxO^J0T@U3}qU2gA$Nckz{rpI!Xo
zVxEinE|$4i?&52gFW|!h7Yki{D@*^KU~%Tq4*#xMB$CB0mbmy{I5UK4!!w*}OGQEl
zC|u!UCFAen2N$bkE^Bz~yI3up=}m*{{*MJtnZ15=@skK?lhtB_wEU}!-(39XVl(%<
zi$7faBXiu~;!hzPUHm2F@BA@BH)xYFXCdF@;$IiVktvpJ5l!lBbFnqQK&);TPHW`c
zlDk|S;PEcU!fwGmf_nw`3GS!cYr`#nh=;$6GcL}$IO5_c&u14WT^y55dR!*OFmmq2
z6XYCExj6lQrd%vPCla<^a6!p=30iT}MQLJ8;GvX<`%~zVLTL|WJWTX4$wyfa<vg7C
zaKS@)4;4HN^YE63iXJL?xXD9j50yPs@o<TUOFdNeP|ZVQ4^2Gm*d43xp`M5O9%^`~
z>7kZ~BNbE~cC4ss({e@CxT1<yRMf2N;Q=A7o1%Y3)j)Jo6;(qI#71I`q^XBy!drW2
z?xBT;R-!PfqH5{k_lk=4Kdq=1R#dyiS{pC4M*D4L=<~ua^KgZSD?ME9p`BQ3@1a+v
zuy5T;D&nEQ!)28eI~IC~iiIM<n4l)eRwd;2N{WtM<>6ZKg#2nD*W^8?q=Sd+JY4VL
z1`*!qp_7M>|3`t=s75*QW)HW}vWEd4ZuM}Rhetj1^l-a}JGe$3dU&`~+`ikxJs$27
zZdOtZAg9npX4=)my+ZC2WCYmMO?Y?FXSFyo4|sS`#-$w!AM)_9tOY$`uSZ0gn!QAa
z<Vg>`Jv`>&ahZM}4}CqnUP&>wPlyG2LQYeROg|4#d3ahhpYy;)f5yYJ9*RT9Awq-K
zX%j1{=RFMc@QP@@;Ne9NrUy$F;w2B8Dk<H=%N_<v+I&$-#XYR76ebVR5Z{hTl?H7O
zt_RP9Bi-3I;UOtT$SYJ12lYMVWNIlHG3_D42+N`~jDd%&$T@u~H><2TslgszrRSB^
zYckwW4@0C%$(@zM<$K-38`9LfvU*bpO}*`5xQA69R(lxXVWfvoJbdb5l!wtCCUB#9
z7~|m`3Elf1-t{on!+7!Sz5GgzlNF&494lT~4Xqq54JSgJ<YBUhsUD_z_`t)59@cym
znd0H4rI8nhN45=*kZd{{p^(+-48qaK{7(vIFv7zl9|@9tEQHE4J$&Y2fro`2W_g(H
z;VTdGJk0U%ITP}u=$9Vma@UV3BL6}p6Dq53D=Sv{@LN70cfN<OJ$y$8hDG^!+iyJl
zNd+#)$SBp0R#xoGCO$itWs!#^9+vV8(|4oad*G9G7kk**G)m=VVqv+56+&8G5#@t+
zSBfUpKB%v;y2is=&d9^R9@cqS&#^r4`BXo6_>rdpBUwdNsiJ=J@T-UYJEA{(_=PD^
zMcq<G^{JvL`Hg$6igJbjA^PmHL3Bv?0IR<|{Ow^QXI(}8P(|^1R{wZ7SVdK;s{Zq^
zncjNX<>BzM!Yv-Qdg%5;Aw%8nt;jav+XX4y;bG>s2+3{_dpsOxZoePd>tUa)*HKxQ
z{T>bpIUq<o2R(2pxnze0kBBm>LvD|;^%xJ{8=@p9Je(ARrv%Rmp7wA?^r^tHSk8%@
z-7k75;p1u_*Z8RQX0)V_YCfv_fR9o>O8dC9s;c1Qma6LA@&#pl-s={W6)Y!MUJ!#L
z{i>>pJ}UVjVW}*nieObge1{r^HGI_c(b`8Fj^(4ak48Qk`>5liu4p#!(RXIFo{!h6
zs`@@ECnJOE6-}zDR#a6DeGIQx^lw!~Q%!s{_0iHt{c5TiJ-?x-g^#mURdeCPFD;^k
z*m+Z=sG4f!<KAj&U^Ug&$0a^uJ~U3s$7MbuJ_>vctEMjZ(cTY#^48AB=hf6x>muLX
z9(I3aX0*^p)JKtz)&CT&ucmfZQ>Cjb#^m#ZMZL-w3_KW7K5ne8uH>Yut1E;*Sv_?4
zDj$XGBFkq+uJzHu$1^^j^>Lk#>wWa_@qmvTe022D#mB>c6yE5g6NBvIRv$O{=<K7y
z(!!g4ynavg)W$-$x=NHR*ri9_sjhDGak~#z@AC1`j>sK8?(|V^bKz6nqO3OcqHpeq
z+${?C2vU>3VZYbMeLlMS=*DROT-aSKKlVl8x%1JNj}+bS!}+3c*N#Y)^05bL*2iN$
z9;ahI9`VuBM=u}qt1CwJx9aLq&T(+$(FKJEs;k~Un(ru@(WGef=aHH<R39#%kJ;P#
zimnigYN#iCyqSwU>GK)O(MC%nU23SOd^}x4J<U+;i1wZm?fY!ub3Xd}7)qCX4Dj*1
z51an@80g~#AA@|veZ1)7B_>Y|MK@mdajHZ?-9wQNYAC0CL9T|<eSB9#89q!&5(eM$
z@q3MMjaIjd9<8Bj)>H`}Ngr7sIUg>UzNYeg_^j4Y8%q?VeB4n}jU5+F3#q@Xkn_sO
z>;l1g<qNnwUhy&5$E(~I)m7h`YC^o|H6KHKFanvHis?F`rdnK6y}?=gc!yhq+2!Lc
zA0vH?^6@s4BpKlXji8^x|E<Z-BqOJ4s(YHoxJ;vcjPX&UWWnf?1<!9Ts#Qz1+!?7+
zIXc$II3MHLR5|*dk5$>o=|hqCeN6CiMJ?5}mbz+aWWj{U(Mr)FPSIo^ANbhpV~dXu
zeN6GOl3jdE^)b!Im&|hpxt5ylhwmVsP3L`l<l|$X5C1QkI4m-gL^!LT3c1)Ts=pKc
z%m;Cnk2h*5HqEG|=5Vw4eCKtPWv-7e@_czMHIE6yMe(t~$JdNNujrsfQQ~Kb=r^MF
zt&eSVo9`uT7G3CL2@jmwY7uvFvrzKAki|Z(?HyK^io?r%l=-!AxsMgx`(A`oV4-BS
zk2PG}+KT(PVJ5oP$4@?f_OXr;o~^CtE_gG-@`I2ceej*jl>g%6S8|_UZA5>g@+|F7
zL6YBn{NZDRRQYyhN?O!bf8|@*v{8Ef<71PLe}(@i*s-?iQ(Ms>aVsat^DTwODQx$#
zLyng!DeM%o%g1hRidRd}=RH35GNpZ-=B~HH=b`QM!MB9(7fn_V_&Dg}kW>%*IGL9p
z@o`l6F~Q?``3Yu=M1y_*=oUT!=8TV$DgO2r<EBK;irP6J=kxj(d|VV>A{Cy2YfgsG
zzGf*U)k=b;Qz#>(tYA4o>Xa8!L9k*9`*(#iVyP^W`L$Km6so20z|WzudI~jCsF^~o
z6zZf<Hx)i;n$K$fwYI7)yplY3x?TzmQfQb09|KZ96+RW@lsrV5RT@#dVog$Ln!+6^
z+?hhN6q=`SMG9A@&?1GFDYQwUZ3?YYxaqQ3YjNXPZMA$;tVx4#c9*13qE57Z3Xv2p
zP2n=BUM|>9ux1^_?N6jyK?;Q_MCo%K#nz$}Mz@P<f-%9OI*Jk{eC~om@~cu<S2orm
zh3itdS~#oMq;PGX-&sdppTZ3(+?>KKDRfNX#uO%x(r!wjQ!0G$?{jrjs*d6lX88UH
z$~&j<K^?X9C+*f0Zlj04YPU0<ziND9%&#LfK6!>seDv{MDcqex_f+^>=6h1;BBUEF
zZ;sxZ!j#`4kt@TutKXMG*A)1aIsVXiK^^tTxXAA)V3!7qA`hhSApK0ELmCgI@Nf#>
zrtn<~kEHM@Cz!&R6ndu6D}|R+7?i?>I_gjz)jNg9Qg}RtKFpB1>KVblDfAQa1oOYH
zqWsAew7RO8Kb6AM(t2lIMd7n4JSWxuDGU@cK=64%_U%(wy&(L>yyT@6EHTU0cnWR`
zUJ7~&Mhe5~DpSy*4&ywoz?LfIQ|hWjo+lZTx{5+Sg>UMrAcd@uR0==WRcYaw6n58D
ztmdRTB!!_VypqCTu0lQaY6`E30(EGCh2-@V-bi713L~V;n}TnN&0(U<DO2-pk<)qd
zk-|r%P_JHC<-9l|KOTIC9&*FhQ}3oQmWf(Vy(c({Lgq|8H9m#+MKVGBnaJg<rzjs-
zPtiT<PZs$HDSRk|O}Tn%Y6{bsW+}{&7=E3?N8Cqs)$A1Jr0{VHpGfsn!OsL|3VvQs
z%@RUo4#Dzy3SXq~WeRh-aMDVo|6iprFNMwZ)arVQ$TDBXBKbxLbtqYo!a^PhY1B+(
zQ3~JlY)oNS3X4-%lEM!u{FuVh6qcp1mf2NTEf-uRIY4Jt2w5pY<`unKE$*!m31hoX
zs_eL4G%5dy3z6dU1Myc1r|PL+Qur-}-+4gQSHFsc@ge_1BpXE1w!XT)z9Rme!p0Q-
zP2s;3{*fkjxxc=molPmQBUfs(bljTak90yiTX+x&*~UwN2#f9S5Pd4_PGJu}V@YFH
zeYH1*eKecGX`Z4f97rKkUmZ{3U<!v)IFiEA6d2FLDZE=>vD&}Bq5=zr$3&Tgfu-a`
z3MWOGRSM6faFz*>4h^0Y%?pC(1u3M#i^54*Etv*Hxl}qFmli0bw`I~On?|`b%BN8+
zjTQA(1;I*bR7_)YeN~Jn>#NFArKF0Gs)Ec7cB!6Mu9Xfyhc6PWokpEB>ZVaIjZ4$G
zERFhURBfOdrO`Nz2I(-n8m7TT=PGlTvDze!=4rH$rlx5$6GC~hPRled5lO3bnA<F^
zg|rcDn+~^pu_<QG<@vq^X|&7p_Cg{uD9zHDLg7)7(}!3Zn#6~}QE6O}#+7MYCFPoQ
z7__SenF&-TQbIe|rEz^4RvLC1H>A-qjc#dlPvgckI;GK7qQTU?DUI9GxIG=7sGZZe
zSqS+pY1}GP;IT>nx!><dhr9kB3Wbp0mB!t|+cXFjSh}QfZ@%?DA;m7y;QeXzkU<Bf
z@c^6B=${Vv8khT_G<v1cn`>QPJ)FiPLLL?DDM)#7o<EjG-!z^O;p2jR(&5&i0?U(W
zJe|ffY4nq(rv$lc*z~NZJtq=YdG665n+Avv&kGJr<GKdwg>-lnzbKNI1YZ{9{;IS-
z7Egy8P!}`=Sv48wx~h8v<)o2FV`Lhm(nzM^rtu2buCDUZ;pv)6V?cv&^ZJtWB<VDQ
z1}Y;+5~Pt8o=f9HRvRed;51%M<Fzz~q%lHPhwD2ujW^R6md5L1>J3SN;_X9xOR8_D
zQM~Vliw@_@O~+QQ#b{Xwrqld1#-#C18t<ktHjR(c_&AOC=xrL4(wLma_%!A>P`@-#
z6VrG<jS2ZGC6u#D!ty~HQ`4A6w?$!!AQkpEP}4<+eP?h-Hw-1jrVZ66X?&W-9HzP`
z%uM4mo=$@7NFAD;owv{G+%&#O<I6O@%6r05s54Khv`?-YhF*QmO_#>EvTEO@v4Cd+
zGqa&uC=#X|gFsxw>Bxm_Ng7L;9szm;SSFFFkwMK2mJ45z#>zBSF{Ei6Pvb-yYtneC
zq1u?nKWVH@V_h2S)A%8cKe*@()sJaxSs7#bMXEmu{+!0}hH834^{cf0md5XCeAiG>
z?YD;N=!)0|QTsEEzeHhwL-n^v?p+mQ$4zPc%YD~K?N8%BPKPPVOlYK7wxqFL_*R}^
zjTFl^Zs+eKnzZgnW2dz4%Ig>F>`7xUH_NIR%RbIxL5%VPX&g-BkPO7Jj;2934)f$m
zqi-X{+Zzgx<y$E{nMSISI+ez0A&kk~1+g<}Tuh@x2IObcIF}9y%lR}eUm3fQ#^^@s
zqeiM^2FRdN29+~mxJn6@&!BV$WrUZ_pj;-5CtDc-lEsZwg$#(SRuubeqP$85)kL$Z
z;D$z_GMlQ44tcE%YG*JhgUK1x$)IiqH)PN;gL)a%&!BY%Z8B((!R!3ea7Fk9y1P8q
zFoQ-JkTlMqNd`@YH_M=T1_v4`%3Fwpq*Vqjg_ms{%CA}#Beu=pk_@hwiCmh&Wf@T3
zbw%v*4BC;4e)|j}8N@PSViaV+p=lwSL16|YjT<Xsk;vIZ9W4VT%2#A?r4TAmu0-?d
zyg%0nxi*6idC7G$HG0Kdy1TKuF@sJS#54Tm9d62mSH^oX=#oL_3~tWgmQ0vDcVzHn
zW5wLKRmg1=ik$hDXsqrOA=U26;BJvqnJIK{2KR~c12X8ELAMP0X7EG?-7~nK17*-N
zgDR_HJu-MOgNHJBK&q7RU(_Dvj2f#)G9Y<sb!^?r8093yUK#Yx;IRz&-yl?=<Z;11
zg3}r+O4yh9B>QIYw8;Bqz$WTElL31@o56EJsMcQ;NNA7)ag^sX7$}~<Aox-SFG}PY
zUIzK)42qXy5bcYEOKH&I3`S&NW?*GtXW(Rz%^;V-w~bXIgS3z&S0MvWc#2_J5%Y!r
z(pXWAg;__;WDsPqM<hHDUddo^2E#=2)eK$}^13Jt5k54p%)U&mH!^rLZ<a<l3gvHQ
z@V2P^vph!ONEw~k`)&rKgpU@a@|X;`1n*?{=cMB3V>4K`Joa7&<1!d83C}9GKl{F)
z!32?zPh_vgisXX~KFr`u24}fO8BERKuMGZX{4<!I!FL%f$Y4eWA7$`0x8Aq{X3odl
zn;CqO!6zAf$}QhW&CKAl3}#7cF~??0UXieg`g5fExggW>OX*U(iTX+ibDL)8WiX$6
zq_N_HvieOv|GyPN$-)d4W$;4=KW6Z~2$%7Y7qXanGPz($221n37>5<Y*9xu_TqU?#
za1E!{P|*jDzD^|T#YlUR{3Lsy$K!7q{4D$zL7q#$%H}0u>+c!-kqJ-H4T66P7B_9o
z;GYZ*XK*BgO&R=~!Csl&f0Qqe?Gz;0OtX2uHG^##Y?tbe3~p_rsK9^_>FO@-qb6!M
zQ$iHjx`T(m*rd*WAqNBxW^gDk=LC;t!b{Jom9djTj%9FM$O+M56Lqdw9Xpl5=?q9h
zzA|<$gYy}*4-g4(fvJ)~)d1B3lnBB#Dixr#kdnOSE{`Dy4<gFT1YtBP1gIFGY=Ck>
zcy%ZrgcpKxa`+of!n3_nfXdQDP6w*wId^pR05t+M4$veBkFuHpY6qwjga=wJkucNh
z2B;UHkyPsoHV}NhNtlNXgD@f4mzOFcJ2nl_EWl+lO7j3M0=@+dZ3DCn!qdC8U@O5%
zP1Hh0j3>67NS6for-|YviPcM~&^WvYxIFJ|y8uU;s7g&$L4d*lH%kzr0g3`#8-R(#
z<2n|Acx3=hhziiUX(+#f^J=1aX}Bst@xgv|fNMmDt-P9d2yk71>jT_C(o}U0&@lkB
zx|86If~@iwyh%9s8g~}s{76%EOMqJg+{T#DID^SEu&KI3M!Y+~os={RC3giNa=YCV
zgjY}UE&*O`8aCY*plcA`Kah6|z$<?DAiNXcJpk_|9tiMYfID8nov+}b01pRvB8Mk)
zc!Uw4g#fPw;Rk3v1^ocM0`v~>Sb)blVt_#b`UJ2ZD|#|OzX11di1cM%<+LXPJpV*U
zo(k}EfKU5JUkLDiQ}s-M{s9IsogOQCR`5Am?h$46>!#|jrt0|s0|PW25REp_SV&%!
z?zHeyfMZP+3GGlG51<EFa4up5aD|xkM2O8S6*4d#bpj-WS8Jx?i=)&hVXGHl^r5iI
z*`)%c17x_e%~aVc1wnu;jek;T78JeIyC@gnl>j6xgE`Im8p)6VLz$del+EJx0B;2N
zF~Cm&-V87-z~_u`fVTp?9bjsJY0S3(BN%}I6N2zXkRv&IfH46^F;IJB-I^)lOU=|f
z0mcS+PlWG^<}hg*$6XdLTGdQ_(oBsHK&1XeA(I1qAgz-E&<=Gz3@}A3P{Llt%50i0
zLU#N#zzk+WfRAN}oirPO$i8f){>%WMiSn!fvjfbLR?6u)u~_Z#SoDhkO9Ctn@Ff?K
zsrz_zp5S)@I!}tu5Ad~ADgTDazbo>sR7ogV5MW`xby0xtMPadYWGgk71y~;7rXbqu
zLea|RTB+u0g;eKPEm#>~6+N$7uv&19AggNwtP{Ro@Q1v7OYPXt0e%UvEx`5wzjCuz
z2*0oYhYkezod;b-^#`|DCG~fJ4FUcP!v9_2|1j_i_rC%VslQQ#{6fD~^Y9-nHU;=M
zz<&WY2jM>_@VodeJVh(3YnzAvkgzrQ-#;hpVCVvz32;_M*%e@KfPKPu2iU`-tdinC
zKM?l^I1u1ufKveu1~?SpL=gT<%;5l3I4Z`E2&a8Yj){aL9_KkwIsC@}`g~XOko0S=
zPIIGGR8DjCMssye=6jJFGmG=wBNw#`g1=W(<osWPl3DNtx23Y6GCiT4q=(X3a8eVS
zhf^z;Mfofm<j^pO3RzUlBAZ1ni%MBk&f=~t?#`l07FDw-$|9CUwJfS<(K3rxS=7j4
z^q<k1S=7p6(1BR{6Vck)@JMMSNK!{gUBP;S^*L6)wP6-l9*9wmrEwNb^75uxG!x!D
zFKLm*o+aV)Gh1iTMueBqpRLjOQmt(k&rL64xkSjN+3>~XtWx=M(QKDR`@Efqkb*1<
z^OC3#zNA~rLS@l0iyO1Jf{tZzgEU<w_)By3LhGWdg<m6htsqC~ki~U*eti~mnup(8
zRq0ps+t8v;S=9YIa#I$avpCpX&Hpb_qlIeMLfxF#zeUKcg12RHyO2Bbt#>l8lfzlx
zlSLQKE{pzI+?&OHS@h20u`Ie~@l#u^<MjW1ztb&??pfTQMUT9NN3wVz&mYX<p*(*$
zi%Ang%a4krr(myq>x8-`9~a&yi@uC!i*QCyh~(&BMK6C;_@wZDf=>xj;pr@%$@6E0
zJl#SK$m01d2Dea|ECyyV=0t@2#OBc97qWOUi<d<6WkFMLP!@3^x*#<T=Juk{TPq7Y
z3nz<&G^Mgg3i0xqu8^O`hsr(^`>*f|rgXj)$r1sD3$;e$wATMcUZG=I{Kyz)@oE;Y
zWicg-saXukVsZ=hUKZoB7|Kfk_f8gXa%=n$;j8M0<*khp@|NJ+g2S^Ik#8ND#rG07
zIxt#<V+7yH;@!N?SRu68@mp<E3pGBAlP%Qy`PK<SCJIgxoSel6`PL7!sMj)FmuXo{
z&tegW%VI_rA7wE=uk*2xIf9>L@u`rRf}aV_5~PvYLN56+^0|<?f?woYza+`?d0AW|
z<9?l&e3Qku!oSN)76@4=7<;Sa;w+YAas7Dh-S5M7S(-)9mTL3Qh0C&7E;=i+Sex&=
zGRtqn!!u-cUb2Q~&f>7+y1Zn47C+?qg7PJQ&f=FWc4e_Ui(j+&EsH<0*dPjCOZB^K
z$?+{!<%N+yML4ge`Y(&Wg#RtLQScwZO@jXla?s(M!dGi;mg*M4t%BRK*e+y;Aa!<T
z@n_@kG~1KKUM^)8r?S{bms+a*qQkx1Y>9S2_`xg=2|1j_2_Z)W+5Ko1$MXC*)g;=K
z|F^Hi=`6PV5uR)%ayTP8XY-opxJQIv5WJX|fA=g(=D=THm&&1ZE(~n79Lfl(C`d_J
zA?0!?pO;i9R%jI_Sfv~)=jBy|RL!CKd-DBn4mCtlQ?RaJtsH6#Vc$AAv=JlqL{dL5
zZ}A)&<<K~XJ9D@zhbB2R%|YX@!E<PqL-QOi&Ec{fTIA4@7IJ8tL#rG*wNkBf=+{bh
zZ>5My!AnHKCQ4XHF3+J|4()S@ND~!`OF<5WIegSgMMXYb^jT%Eq8wt<R9w9xhbwcq
zkt61CRSs9@a6=9qbGRmlYje0RhwF3bki&vjYHur5y0s$N&?-b$8@3KnYptkudu#Pb
zYel>%hnsV_MI@bbpu)h`>ed`?%i#{O6Hra$RHhwPX@}(Q9NuZIy5`VL$UQl95pu8K
zeS))EE9!L5;r<+Y=kQb;)gy-oa(I}x`Z+w9!^+mGavSwf4*#@Pr&_BPZPb-*6#1h$
z^vt1`DBRUXQH{c4@|f76smF8ZBfM{3!tVXZb6CNSIXs=iGdaAH!{8jA&EdHm2IUaX
zp??k~Cusw6$Q&y?v>?*uSftih+Vjk%#f1ZNcp-;G8}*_f$xAuBEPPBG#i~xXcNQ8s
zm|VM`qEl)VuxjN%JAMwfv{K>-NeCvHEz=`z4qgs#j*77L5DHQ`r0GBopSMv*?MOC<
zK=}GLYIhq&VNR+Q+NxJ`crAzbbC{6BkQ_MT&>UW8Le`G;{xkXpZOU{;2oB3(xH$F}
zv$U<^yx!*YXJ{nsSooDTQq(y8Q9?!wj>)0yhUhyvyqj+wo5Oo~K2FGZCP`bxj<ho|
zhZ)RCW@hz*NjXf;;RCMzu?Xk&VGi?KM5hRnOwFOS9hsKHbRpEI@Z%glk>D@M;Zq6S
z7dd>H!^|8$lj<zN&vTe9gt46?q+up9S4jUE8iilwFi)xrIb0533ty1KH$uJ>e5S4X
zHivR2Bh<fdOq5tGUnH%pexJi)uI83d;mS;eAzhlovj0cbcR)Q=bkWMDD@{c#fT$=v
zUv6@T-h1!8_a>lXMX7>cZcDkzO@a*t1yq_{5Ru*$5Cj2HP!yynD4>9-ynPRU-g<AX
zS$pj{b7tnunKSd{yUEODxE|J+whCeO9r@VFoh={N^6^DJzRbr@`S>{>yYjI+AK&ET
zU_SQb<EwoC%E|-WJ<bRA=3_s@>F4l1ZeR7nU+4Qb1m0OSL~OSu%o~|rsG@i)*P(nI
z&d0a;IKtK@`Zo&lP9fg>`5hMp1Mftbm!Tb{hyT)l$j6WQ{#8rI1bJ(ve=j9BE8f6%
zCd4Z%i6`=LG9MT6aWNmi<l|I6e$B^k`8b`A1yvL;qvKsnyzKD|XDz0m6=Wl8s;F}`
zql)??ALqF{Z4CX+m7-~slk>7E-eGkqAAjcKO1^&uU;SAcZ^z<gR)6K=GDERLsH@yW
zcQqfpVvCm-@eZYb^6@V>%n0s};J<ua&qt{UN=I;01O*}}96^x?5JAC+U!_n4ysPs{
z6~$YR=rLC3y;wyfC>G(pi|UpLibv3NPe8A#cw-W8VY)ejJF6;^5)s_CJj7Hof=N{s
zNtp<4ji5pV75RAKeBibS2E7=#BjR5xce`NOh=1u;epN+zIVrtU@UDn|h1A^<UdtS~
zCxY@K-27&cYWGG^DdOMBIjxsYzwufs&fp_mv<D)n96|jE8bt751P?_JjzEu~N(5CS
zs1ZR;F`GAf@lLI35zMcusz<<!QrA~iwIT>aphXahATNTWRTZxv3`YDb8F>j96N`w<
zvXsb+$W#Qp9jkW4zdVhG)rt7GuGNj8UIf`*Iyn;+8b;74f>sf<j-WAhBL3ZCb&rRe
zMzF7!Pg+FKEQ0359|D)FDyF-usg@D2h<AauaP&42KW^Ja{1|8(0qtkvwY0oX>}Xu?
zNC(pG25vXdIf5<`ycNOQoT&)9Meuk8Pejl?f*uk7Z~B-B8dg(1BN)n}YN}TRy(8!o
zLEi`lM)-!TQ2%P`+WA1g2>3HgrvCJ^a0;0nBszlyhX`(2sk7EFx*~!R5sc)VO3UeL
zYE%U6O6r-J`iIpNvmKV{yQ`_O5sae;BKZ44Xp-RPYqf_Xm=FO8(?lV!T?#%T<k6h`
zu?QyTc+r{qlM!5~=6~u)(EpjhQxQBJ!7~v|iQw4?rZQ|Ic#dwVu9&I_Hkh9`T_h1k
z$o#w+!e{1mW^p(<K3m8f!58RoAq}MwL%1o(mMtN+pd%QKAeJkQb2_A!8$mLH6vOzE
zeqeWC0i#Yhv*`#jIi3|VH-Z<1ycEI9LSBjBH6gDG&J(QloPUw>>%!*?GE3nb5xmJ&
z909LfUKGLNh<^h!i<rh#SG;(6PIdK81WO|LCW3=pWf3fk;HPoH-4VP|T`iAbHLFCh
zB7%3h4@B^O1m9IxD<k+If)6A3gsW_+PR)-Z_*klt-;k^kA#qg%ZQj;D6(sSiKN(mP
z!Iu(*p9`)Pq<o!_^@1BB*cibk;hQ7ap3~V9!B*kh1fN^ye}3K}e5c?Sf)ui7SB{_h
z<)%Fm>{+RO6~SIEw+Jp*SM{gq2O^lWGw^i;`-PC-S;Lp}%_fH;I2^&12(Cu(Z3IUm
zI32+mdLV-DBRIhzT%_}ThesL1HPnw09ODjCL;WDwh3`SEp^np;jF}qh=Lj~}P$z4s
zw`wS6Pe$+y_uHE46lc7I&UPx)RP}1Avl0BtU|yvC8NqK6oa0EhXcy@J(%O09e+d6w
zkVQ=7#EXKL1bfz0e?{<EO?8<L{3O8C`nK@j5nSWOZlI`ve<)ubxXC~P1OG<w@An~Q
z{}bVLK}ujCR#O!;_^S!Mz=F`qD*=*1k}YiDotlc-tu<9K10{InT}>5O7%DEMHygM`
z$m`GR)TuE%RMJ2x1Emd=F~Ik>Fx@JIwf?KA%GXk54cuX1gn^L;%CX2mdjlN|+-2Zy
z13|;ztnM*z`kO#S1NRyzZ}6=;+JGN|6$}uE70uhaU#n!`K?4sNxX-}-1|Bd#VPymL
zYN>;Z^?Off%#v3zP}M*!gO}0iJ!+|H25K50scxW#kV&<aRZHEF5GPmF0|xR8d{ibc
zyF_1DOKAo|2Eqn(123Hkw=|#(^jfXgHc-dF+FI)N&-A+N*T6TmR1?Aaf{g?lNUer~
zRA6eHlQb2DW`fNPe03_s(iW0sM}@0|S{Z0<fP|@yfwl(P8OT@xW{J$wQ5^+)(VzKx
zC;k;M(1ku+9_Y%^iLjf23$;|YwxRAccv6T(Jw;CasUy+bKpz8r4fHcG)WG7TzG;=-
z-@qUPBm)FV1{x?CP$W!)ML2|>6v;4l_m4I_Cu9qw42(7qWkiW>V+_m?GS<L21LF-m
zY~VQq+O2sL3`{iexPd1ObPT9TjGWcMM-5C0s7DMWwuce{^_YRl!YTB10%}=6J!#-+
z1J4+EDp$mclut46tTe*xj)3}Es!V0PT@6fQ@COvrbVgL3Pi7jpdL=N+!1D%X8>pYB
z@(n}`%rVeAPrV>W@<g68444LN1C9ZU+}4=N6$vrj;4EcgHcoqFu>FE6nx|X?FB^Ep
zK+-^pL9#jI8OR!#Yaq?36v?7I#l#|}7a1D{#ti>oqJ(@yo_f{5n~a2@nrGlO!<W2n
zV1W?w`38Q<QzUQXB+M>k0F(<a61*>{77J+{RPPvA!XbN@?O~~bWd^FpP$P!r238n&
z&&K;U-X-BkE!Y;`H}C;XHIX&(A=d?0oQeBQd~Dzo17{4J<#-LOGVrB=T?Rfiu-d?S
zT4LZc`fzh-je*ZOsJlZv7qiyDI=ZN|qP)i4A>!IXTK%)yM#hhUZ3ea**etcSa77#b
zCzf<|?TMiLxexlab{KrwdV!q=zL3(NU-lazGA$3P-3Im;_}0J?E+_+g4eU2?fE$Q`
z-zS2fSiWX(mh#&n|9y@2je&y(4jDLXpkf)V&Ef!y#;w$Oc!Z0KcCz>H4190k7XzmZ
z95rx^gPn*UID^%-0;}|sOZ+NS{*i{s)c+*-v)~EAlY)&Z_>YM=E*?-iEn|G%2@MQ{
zel_r$f&UC#H*n6tc>{kM_=^S`_=B^PE^txs0vEF34}p!)Eth2YBO)R4%Lc9(xW=uX
zAuax?^>FBK?v~GJmD_04p@kDx>HkX6V(|loH<>74;tmt#Ou$4z6U9svH&Mt$VG~76
z6gB-F=Eh{*=!jV+4xH`ZY~mIZB}{)dDJ*G%t{^!dRHdXMd1(`6gx@N7o8axa(y}J@
z%FNzr;w}^AO;j*(x9LwhjlakAV}=t!<10@HRWxz0iAvH-<(%7jIEaY~516QIqNj;o
zCLT2LkcrwR>X@ivqN<5J6G0QzOjI{f(?l&3bOOi7iZ!G`j;Luze|9Jdn0Wl<5XY;T
z2$|4LDANzQu;`zk==)?x#-DM90TZj#HBrw*I}`0q)Hl(<L|aj2Q9~2WWxS098w)nc
zd7!C@AN~$ElWfU&fDUXSyrqd&LRt&95oC`YWcJx<2NNAlbTQGDgGv|ZB;9p3!C9sn
zQ>SpKn~ClwdYDK}(DFVCz4yLWW}{Y8Q%7IcKB=JfHqpn#V<sk>=xd^%iQy(jnCNd}
zfQi8-hL{*A{SFdjUB+Hj&G+_DdV7`5G)#&}+RBWKG%?D=I1}SdjOO&27|VfZ>e}Do
z)aBsPl{)Kk(Q%j$(^Q$?M@?|$QiuOaOqA9p2|mJ#&HPV#tg?5F_PB{BOiVK|-Nch7
zo-*;QiRVmAT2$a^6VI5KVuCGm9*1a(4Kga$%?!~qQ)R9>n>PY!hKZRb=9qZF<VhSn
zFMgX%SF8?k2pkBV!{tx?d=n89O|k_H_NDm|PD?lnQ=Dv>uuV8(sw)^3j0sXX&UKOF
zPY&@zE6IrviI<b7O?+~nUo_Xmi(E<;N?Lfy#LFhW;?gkjiiuZEtTyqPiFqboGqK#n
z3KOrJn9p&Uc*{h~oxuer-ZZh$#2b=*SyQVuwQHu{d{uA}>rU604r%J(bNbsRmT@_R
z)H^2r)YKBL_h$o31<QsMIg2`n)Vn6$;|@>rOuTR60}~&yVn}^RKhM$!&eHkfo=G8<
z2r0I_Go)6UI2BU!Hw0I4(+I1oVbwgWKIKdWLR4O3;&T&QOl&o=*2Fp!n;3PA^g_$@
z^(Ho$;J=6cSY=gkqi|-Ygw@=z+RSNM7<xafwwc&2Rd$=$VPdC=FHKBb>^}k65mrBj
z)fXnpF4FlTm|b+&LOnA_ze!hnxa4R1pV-UmYM+U(O<dxrP3$*uz{D97XH9%#;-HD2
zOlXrshfG|4*8h}vT*zS)-wL_u1^tN0FHiOFOnfhd{HTdzT)ZZJG;wv2&O{*-2`99X
zu6{Ogf_n=COjm6Dl!;&H#xnkA*N<oEl$@4MAJx^b48LE4=S-Y8@tcVw%Y7S`?+E_R
zd07+~SUB$w6OS&}EnSgc;HoT~chU6!FC+Pj7Mi$Dt1MihB_^(Mbi4gpw>J!Jt*Zac
zIKQCt)kS=h&OcmJv-N*X{3nEbiLMG*{)Se_LSYNAP|(758n3H@O7X2sMJyDxP|QMc
z3lA#QM5!UO^-kXhZ?<rYg*utQk8`#6)@c2edgfT*DWytTC~aYgg`pP8Sh&?fO$)Uw
z+-Bi+3-?*L-$GdncUZW`LU{}2ES{0n87FsHNGo-xg%wIMHYmB<0z-nN0=r%ls%YU}
z3p<q`C(Pdcc<78$l`KETiq}>TSg35FnpAnv!b6t7E~-#iTeYaI7@X9vYWa~iw6<c8
z)h*Nz9fm7IbVh9zu#jh=wS_hof)+Fj4J@R74KkcU7GA8aNWzvMT}-+VC0Lt&$jR$k
zsF&mQEpT$F+|WWJ8WvV7Yb$H9-q=DD3tVMQ1xcE*RCo))mN|JV%Rkdcg|-&jS?Ft_
zpM~}u1r;oGvB1|YeN$U?6hhuf2q(HL=k$Wk5aN5CNV-Y3yI>E&o`StB^cF&$K0^Me
zt@>LSVEM258f;;pg@#M?8g<klZcTOk@21JQOYpr{iK_ZA3&SluYvDNyBP@)x@R)_k
z7DibZZDFE?NfyRf7;9l$hwudYwvHNS;b9J{jvCJ@brdDD>Zp(FsQq=+u5SWVoBCJa
z5evjeIm})m1{nDtbyS(U>T%Asg{Lg=pRy-7S#?#1y6R~Q&sdmZfuVlquR%64qON+o
zs?N=drBf|Tlj+E}Fx|oo3$rXdPpqrBd(5=(a$WUNUG-I6HJiaRTW5N~!f$oe94?1?
zs_bHY?f%dM^;E=yA?-A-r%VR$B0mQD)>Dp!C}Y^hoi<_?;ugNKaL_`+f@@)!h2<8K
zj3NuKTbOUbV~|^Tg&ttoTgY;^rwxn~FErP}@lApKe{0p^ffp?tnxe&i2|iIzG25m+
zUn}5W;4sfZ^-qGYiDvfGK$G=ayq;QM;SCFmEG)M0riCx6`z<WYk<XsjXD$xBW#MfL
zOSz7Agn0b_9SiS#9{B75ZHa|(*TPIo>#6&uhYEZaT4CW`3!5x#w(uT5{BzV6KC|!v
zQ#<Vw28o3a*;*v<k%d8@20j)fN&OYFis!AO4gUnH9M(Ry(D7OA^=o0`8VjFWSWgef
z1Kr}ja4j8jEzGn|NRyh{25t`1Lo|M)h5kzehsKAta851$<BzWyKMX1(u-ihP&4KL}
zc39~8fVNZcOTjM$=lvesC4{BVR@bh-8roywD=vyxLzL|0jC9s$<bDR{T<w5`8^-YJ
zhSjqI)H!6~u!Vmu{Ab}?3r8%Rws6M6cNTtJ9s0?_&s-N4j#@Zo;Rmjry@4Oa{v!th
zD;Ecfwb3X!ZuxgXkWfNvPjIqYg-?o*@?V6U5=)ppYvET)EL`AV>#5&lg3hsP!>>DY
zXXw0z-?<*AhnPw|6S!#Ml7*`l{<iQZ)eZzMv-G6)7ynah7Y<$w5wCDL$ZZdgeix);
z+0-=)TZ-o~qW-Zk{&<k&x`mr;+-&0(+rKTOfQ`boKOER7X#2ev5~PLEz5c}!MQjwc
z{n#sJ<Gm&R?Gxn1ZQp?;C2W)w{o8Gnl6G#h{V>>bGE~||8QY(`TLm{)*2o*53DMzY
zZQoIM*nTLok=CCC@3L{XjR`g;+PKF?c^fTlw6ambMnxMnZPc=HuZ>E!AAS!>_4{nx
zZ{q>m_Z~e~+4jBR$M*9&=lVe#$Lp!3ZL}&js)|lE8}urptGbPT^FmBDY%p9&0ygq&
zG^W9BAZSCgQO`zw8zCG2)>B~{x{b}B2VT2hQ!-cv(w`rOXi04wb;Km{y5dg~8q+{r
z(a;8GfmvG8$Oes}VH|!F8%=G06*QB9G#8{pT1YLD);8L3I5q~_XltXLjjnXK4bDh=
z8=Y))mJxNZ(NXMSn_ORA#Gi}=PSdJS{ix<dbZ48QOx{DLrl(*p8?Vgu75sR!(U(54
z{Uye1e`%BBWp<E_!8S&625o;67-D0njbSomx_!8fC7S}=SUA8D!kOLHSsQI*jE%82
z#>t4dg4isr8gJvk^EyXCeAoteFxp8z$;Kl#TpLLnkJ@;QGi76zjmb71w=vbmG#gLY
zc+$oc8Ou{P=>Ml}f4ksTM$RSwjO{N~Zl?t%g`TzXoQ<;e6{oMm_|SCQUj^I;W{3}|
z#^uIPdEUlsn~!v0iBIO(c)<ouVvy6|d>aw*jA8RAlg{zd&y>?(+lIrYI7ib%dG*!M
zV_HmBM_f8$P$g`C=i!hUGbtOMjW^hZjkJx7jhE?s(a+j=NdjZ8WU2q6SVF>B<*Izu
z#ylGfY;3$3s8ubz)C;{Pny=fKFNA+Mxc$=qT+5jyfrT~}aU$3z<9}0NF;``m&^tEv
z#{+M1*4VqKy%-PB8*~mkT4rOpjTI7v^cBPMT^sy!@a>Np9mpN*0~;T5$B5#VC_b|B
zF=O6AT?e1oSjo-7LFaYhRW?55<l6Yg#%j8Y(_~|tjWsqtr%!AIifT-2ZET?B^;PHk
zYMqTep0=K=zP`$@uQrN&6Bn9|pH;X;CvA0ob-2D_t;ck2yNw+-_T}2yDayNTJkvS!
zg^e$5>|#jNSEU*#V$B9>kBzT5L3zBzJ>0Q@+RIREpk_DlTl?C^;aj!+oY`MP6dts3
zh-0^LK^i}7<2xJQ)8`G;w;WUhbwuoB_Na|xHh!^j%Ek{2HXA2woTQ&^{6w22mAWOg
zuYqDZCs?GRVkxsMrOs&^XKegt<D8ANHXdx~YyK(<EgGsJl07e)tp2;mr#Dn{MSju7
zB^&>6N8(611#QD~KhdsmejBL2Y+M%dK|}TA>Cjag+)({(;~JOD=@4DSM794Ilbl%x
zaC{Hn<e*R^RjH9W(@-%>9~N{_*zpHm$U*%^s%IlLd|;@EgU5x_jl~=kcW|?VTO8c)
z-~k6E95{{CZ4PdCP|`su2k$gerP+QXb*qCi4tCbn+P4XBYoz{bq$n)w;0^~B98`30
zPh(Zi!JQ8760RDnyG8#V2jv~GN{_~hbvXr0Z0BAFl^op1c)QcTU5a-=kxXptw@jNW
zJ1`sj^IOBggAN{YP{qNb#i42<uj+t_S?W|53CT|<LNy)Kau9Ivc4HNEpgG8M{6N~)
z*bgMO&(Vb(gdONIQic%S!mv~hYKv!1HdfTBM~^v}>)=HP4IDIdFwwyz2aOywcF@H^
zR|mzKs3s0tI%wsfse@*;u!(B!poJ8XQ=wfGHL{6%zKLq>pq+#E4qk1d+Bj(IV715(
zH&GoN*w5+>%W0h)tXvl8=%DYI&}BBhEZErrkwx7cbayb=!4L;M9Q34)gMJQrIq2;`
z{T;TOs@t2YU{lq{LAR#rk)~>7EYRP<05;xK4RpXP?OE7V{jf!&WRS?$G*v?#40ABr
z!59a_9UN?`Mo^j7)(x@QQ4TIQRX322tjURE9gK4@UTmX2)58uXNcPe~joC*_YwYe3
z2ah_K?O=|B#~e&{@Qi~gGP=hdJjGCHrk-%{q}bNBzs@1E*3%-d-Apw(5`Nafa}H)W
zm?>sVbuirld!HuR8^+Kcx`>IL&T_yJF+DGHL1SLvOf^#$2kRi;L4<uZQ3ma4rc4<l
zNxYeQyP0wvywp#39V8t@9mE{OIZgfbgkblx{)i5r2vU-A;5o>0yhp;Ul6H_`@HA7~
znki;aG*jdSn=4j%$>BSKamc}82d{AI9em*6LkII5yv7ja;&Sjhy;NFz!@-*l=1V)Q
zyFdt=V$nh|Y>}wl-&`$r@D{sn?vI+K>~V?1_t0U5gF(&JG6$SrCQkHn_Io18;nNRK
zH&^dEc+bK6+z<?n6*-)frL~V7eC%M8gU#Ik8Ga7dI#}mmm4i<md`5ptv+QebbG6#R
zSMO<TjpTE#j^>I%!YqaB9c*y0QC!MSX%(HrS|2x8wY~^#aj@0F0SCV|SKAzHcd&;|
zIiLYM9PD<mzqumc>EH_yekn-FE+Mp*Zs#i4>tLUQuc<Ffj6<NDi;ICuWsa1RZ&=jA
zcg{hXdXjG)9C2{P!Bq#}Ir!eeSqHy5IO^b-gP*v$(P<8T<hpL5j>~Eav`_<1huAMA
zTvkjcXo-VgxV<dazFiPH<>0h~GZMOVHGA<_dMv<|%Ypyq;GBaC4lX)4FFGvx!@=)d
zI4#tMM2KpfTncIVC2mj-{*rz<gy&nR%k1Tg5XZ}A+1lR@t~t0ViULu8hxvyw(?b2{
z;9sdi3BC`rsp}5bxA@=cMihmjC>%w>sK1#U75TLmsz?+?qbL>yIU8Z(Sc*r%_`jp2
zs?$=Hh@xZ^GoqLoMX4xCM^Q71T2YjV;?^kcjiOQ%w?+M9W#yuLX)kV%;+cawQ&}N*
zND;H$TB^IExI2n_L{9w?Emip_8n)CcL=jKv(`)JE6{DEiQn@YF+btD;#&%y6_eb$S
z)c*+_Q&l0Aqj)eUd59hmz9FVjp;{E1TB_=THKKU<jUcn#-v|bx$cv(96uqJdMxjMf
zH;Q^uzBdph3g#W-NZE*RW_2MdirPYEEDKTCxkTRema2Xf4WeipMLSx~;j~iCqG%pP
zqbM3nwn-FCg|J9TB4KI~MXM-UM?qmrQRvf3{a?*CQ7}uj_EB_*qDvHAqv$AVodj=a
zc8=mk-N#y~ZX)j<MGql2<W!>pY^OIHjAC>YW1@KKsMeRW5XB(j{i5g}h0{t=J|K#B
zTB)tA)L<c$3=^FpQ4AGA$?;ZdcoZWfJ5nl+isE0XUcR+ocWe~nqIfon=b{)NMT?1{
z$x%E`=SMMt?rN<jMlmUhN22K6TCwy|!DwssXcTX?R*#9C*(ap#lk7+cYf<@W!Dj^5
zOT{U|S&_C)jpDD?Dt$)(wzZlT#dKyr3hmz;CeDiD`6%{Au`i0*QOt?rwJ2VX;)N*k
zqew*IM!_FaMxwA7V{Zox+PuR5U7{I9**1zlQ?xnQD56|4oAkPERE(}(666z6@^}>Q
zFAb6;qew;ZSOe`vM)k3P7ez+enY1ySj`I9?pl2JE6$yV8IhQfBMCYM^m!fz%idWe3
z(}7pHrXJV$lhLK$2T0~|Wxe8)`B5xjFHw9D#T!w)$tB4-iee#~%>)*+yEbZ36g-Y$
zZ4C1lv)f+L-{Jt9>HPKPk|>sn+PhJBZPYRu;EE{D9t$jwf<xfZj}O|YF5d(iza4ll
zii28sUmNuyKm4=VrNJ+wd{HSriDI2pSsBHuC_al~O%!|@OfP*ZBU&w(o)VzsbLnC&
z9bQF0+eUr*wqCTY|Im1S6dSl&+p3LRl2L5tDrl=XYMvnY@%HeRD8{x`Ok1PamgC!n
z?1*A#PVxn}tOWt8(M7wW*d4_l8AX0uRsDS6D~`IY`n0Y3I*R?=&0;7P!+|Ki;rvGN
z2S*php(uWe;^!z1v{i?r_&$oGQG6T45h}D*rP`_QqTu5}KKjdRr;bJO1EZy#`jKm}
zof^|l&1|RmsFsrB?5kuR$%!aVvifrUw<vyz;uNi2s{b0rY3_l)2G7uMQGD7?4S!pw
zoIj&F(oXSdKM9|Lo{Qq4MS=4ia)&U})pqIv=P`<#Vki*fYbfz&6n}F=W-v!_If|<^
za(93a`T5wE=}HtMSLhYmD?Zny{GX`*g#X_t{u4Fw@Vh!6<L|$qU#CMZ=-p3*5c8kI
zPo1L|jQL*}@fmNS7z)QwB!))q6~D0HS1Kg^+N<I*+#K_l!@V)w62n(lg15&|Hii;0
zl#JoY_A1d{m5SlL_KK-=3}uAhDtMdVE-AVrhH^37!-?1(IMrU=8N=N%9Pbe3*GYH9
z{`bWP9fA(3d<+$0IDbK}Nc|3~ZU?pJkj5`KD#dUgEs5cQ7^=qnXs;Z@gE2q&ABtge
z0iBEYc=5c;=K}nda+Mg)ZO|ES)ne#hE!4Y%no=TMGlp6*)K8&73V|5%Vi@CMtczd_
z8ub%6pFk*va15aY!U^axs2JwQupoxo>?nqIF|?1NZVdHeSlmJNz7VV*LxUJdM%)r^
zD1^K%-55h-$u^0hSx(+m$gTf|sna}$7Lsk5D{U1+YvFAKCrkU(jCD}w4{06f?HHbl
zp<@i4V(1)0mly_9^V?8Y(cjoXHC`I5d^yl9hVC)+h@oc;%rf<hp;wOg7SczsZwy0j
z$-AM`KZXG!9GKG_#0feWV(E|=hEj8Ye!PPk7Q^ruM#OO8Vt8B(<AsbA93?nfa7+wi
zg%s?lsLAwj43CP0d_oKpg-^;!9*Oy{c)p?e7-v)DkLOCCV7!ggS^6~RJ%*Vv%!*+O
z8=RoiKQm%@Ry^>W;8ekBg3|@5(|%=;$e(#XAH!@Bz7)fp82%fsCu8{Ge3;~g81iF?
z#9)X#DrgE?g0>(v9U&KXhGIEMJcdM$yD_YNF+{bLwCo9{1v7$K!MTF$`o$Rd#&D9C
zV|XQof=#toxhnq%(BOHJrQ|j02rvIv`0K{n8#06n2~<qr%@`KOu!sQ}!^?5J631IH
zydA^6aa4-qofwwHa5;u6F)WQ?Sqz6_ILzPw#IPcUtubti;azEMWelshV1>UQ!v`^Z
zD4b?|EaW3Dw=KR^OrNmXP5<Mc#;`ty4Kb{y*`m2daIN6yF??G`yHRT$w;ld|Mq1b?
zrCS6y32tUQm-Lqg(}+Hy?IQeIa7PR~WB5Y&Zb9mNDP&g+Ma8N;+?_<SS8!hpl}d-G
zHfFLPB>P2pK#<vQgdF6M|MR>1HijcHoQ>gE`mLk-E`}c&{KCH%JSuoh@P`<Vmd>Nv
zPm=vb@Ml2^PY5{~;~N|_W|>aKa5`6dhWp8e5QV>q<U&q<PRMz|-v$4O;qjQSc`>JR
zNywjqe{sD`39$5P41aSgj-yoE--WL6PevSw<Dc9}{}u9|;B~>9;%L~>-@BL!O08mX
z6cR#7VIf5Xi^j3|fIlO}bEP-OaZ8Suh@-ExQ#vQPBaSk{Zxy^v@b+A3**NYv<j;ON
zk=!YGR~&c8aZgUCf{^lYOg{6!n5h`YiQ)bX-WSLHaSVxLXdDm3Q8|wKaWsgd(|y{5
zap*!Gild5<s&Ukeqn7Y$g4G3U#8LRC0ILKfOQOY*m*c@Weu(&`p`0Wf$LHO2N|;m}
zwR7@1Lh1_Ei{s;-Au2SCqfs0^;^-O2^)2DXakPk|WgJZ;+f=ZbAWNIa@yV+J5~fyh
zbQF2(INHR~HmB2GNV_<m?5J*Nc8KFx8NW)WI66yd7r}0VUE>%z^?z-4k7N2o{YI@`
zar763-hzDuS=3iZzc?0L^J@*r$p^+UD8~oK@y*kI>99D4$MJj|v*Q@SjyOkgJRZlT
zRl!k$;{`_xj)`Ne5SEVPru0RCgz4cpCd4sOiY5s@D)>kosgCM~&SP<`5dMS|O%r@F
zj;G>yTKKbqRDMRtlsG<Y9%lBroO~)R>=U}t+H?`l5S%GEi}63rFWucy&50u(M<R|F
z;>eF95(kA$b{vLqGbgcxbXpx?sUtip7>oN)+9`B%nwdC~!c#ekCnOz5wy{RdtYqir
zN?#Q6QXJ=`YZ~@y9Ph{RK^*hqnA1^vEsodYm@k~!#X=Uu@kUPaW}Ihvd`+fBaj1$R
zlDFb`oBO}Wm*+~C#IZETmoc`zz>Qif;&?YFe=m;HU-|M6<M=3!0}KF0cpRHLgx0W%
zkWb=RDTKmRaeSKNtA%_PM~O~~MQh`z(MfHNV~db=g6jo0#IaEb6*k53aEUyUts?m%
zjxU956Wkuhj-2LBE~rk5noPUm*emkgf_rj0UvZ1b>FkT+>zsUl9BWI4Sn*&Shv@A%
z&XYt#hXqf?@ogMOgn!3<AdVm7_+GNqIV$9s_?Fq@Ir#}8KMDREN6B*mmNK0b$uDvL
zJJTDI({Y>;;aS071zGf498)?elHcR_BaWLAD3I`X@(XcXlg;oVgEo#og<lc;OOQI3
z<GAxLe{W>ED#E{It=*9PBa(jw{}a3(hjaFSe_@fpEeVuJpkM-p5-2R4vSP6WisX3F
z1pZv({|#j-F2b7=m@w4uv7}^gP2e^mr4lHet5qg}H4%UJzFj2c61Y=HS;0FJc<Gp5
zdY5GH5oGr61l~#g@3TSq1hxsE+sXesb#DTd61Xpc`xD4ZAeg`d36%XkTr+{MI;qMD
zq|%`W6Zo)`VtOcnD#EJ@R?Eq&3#lQvsb8p80$*<q2c-8KA41sCLmvdSg#VTIp{qJk
zPe3JbB7u_$)J~vI0tXWKCV{#M)Jx#g1Xd?dKY<1byupuQ2{cTgQ36vFn3h1}1kZ@^
z)EGu2(3F~sf^8CLE2LQh&4p0dLP*O5TID3IIlw6zi`w1rOags`v`?Tz0v&~SN}y{3
z-Gp}*?2-U~Ou`{Bbx)wD2+4aSa6x=X-i!a;$X|2vz6lJ<>GVsWe~u3jGBAPe_xbZa
zI42(>WT@b<1QI{_r6Us<mB2Fz{9Z+`F)cWnv5~;U1jZ!zw#^{ZSRvyC#|u83z=of~
zESe<Q#|0k|d{mG{j|rKa@W1!J(asYIJeezfO32d*EcnFlVoCy$cLOxw*#w>wOA4*l
z(n_12K*@btHi1riLNgMWnZT?Bo=+f}Kukt4I{`z;9Kja^^94Dy2&;GYW6u<cm6O{-
z90p0_|9Lx}Kr&aF5aJ5Xt?MteR05u4(>a|?!vAFji{^@LH19<rFA2V!z$-#tO<-OE
zuO;w$0`oc81cns|QTcKmA0O<jh)figzaH3MFuX8<MF|`{7+9RZ`w1NB?N88K^dXm3
z0!yU#cLkRUF3Z`oJb@L$o5*<I%gGyD_wE0H>m?`oD1ncKe<HXtCtsDo*gt*c&$#dt
zSeL;11U}D|t`&0QWB<&5v<(St<kDlfCNR0Mwkd%x5-3+8w3z|fSut%%V5{(LImvb*
zI|O$!GVcge?Mtb(OK`W~9>K2!_X@JveT<6EiX<(gtNKyk#IM1F2^>n`2L@6@efB>6
zFx{2FcL{vUm0n!0b+bM!rN47RFVkB8K7pg$PYUVpcUH$}SY@4QduR1y0>|0K%{p6P
z`YC~*r8V+noz*W1oJxRC;r{HbW;WALC;aDxJZyf3ao9{hD@gKd0>9-r6?QBN{+__i
zE^cx0M*_EYQ5O=pn7}1&!rY%-Or5L$mB3{#y19A*7grLvn!tYv|GW6V6PR99|3~ne
zAhS1z^nY{wL_z&}0)Z~7eHV3;3*x$BI$Xagrh-BW39_{!(pOQzVuI|txR8Dsy@ZRB
zE*iRM<f4>|(k>oyQN`sCX>hBHdt8)vahr?VUEJw{59rFe{)13Hektdo=sf)n5kAyR
z=YjO*&GaQV>vyr%ioo42*00z3D6)d<KbE}LMI{$}o>P&1Ez$Xy@je&#yQu8?C&V9+
zB0kmO!yn$OGog!mkmmgr2)(0IQq@H@7n+NZi|Q_FxX5$C-}2RT`OjC7zwHbNsU>K4
zQT#15f2bLB{U4z6N1JbV@gL2FUDS3_$A#`fxhTF==cBppUj=#Qv961HF6z4&`G-EM
zx=!WOZS^f()K53-4O|e9by1C7G;z`2#Q+ygT{Lsi)<ruP*Se_YF1mJAtzEQm(UM;3
zs_IB;CGzoImC;qT5x$_SYVV?h)ave{ql=AQRTmZs>Exob5DM8sHy5l(LS*~I9xi&i
zI4ap*(nxQ?f4ZtZF8aFYCs`u(Y1lv^LtG3M`5<X<upmo^xfsqN(<faOkM~kCLiE}D
zjq0OZjF#?ZJg2kMaW2NwfFyb)@vw^t^o)z2T}*T_$;A?efs036JnACuBH`jO7n3=O
zE~dG7+{F_N8!B}3e~SO4i>F*X?fMTk-&?Jf>!xapyn8n_#l^D>yu(4On|jVgx3j^8
z-PGwqdDC6YaPfkRd>1oa%yRL(i`g!!?$Cym(Dr7uEz?7DT<lz|vBCKVLvJ_I%9Yh4
zE>^u6h(1!l;;3CXHFT5KHqw~ZbyK#BBi)oEND_4s6V67MbzLM~%yaRYi<Aq`#Y-+;
zc9C|GaWU7$i_%?I8f42f<IisDx8~tnyQ{0M!|bBl%D^iwUZn?mYn$H+4*lInHvT#T
zmBHLdd&|WFmsger7P|Pir}l=6H(l6`G`5!4T@BlzQMky(Vkuo{_^1Egc5!TZphI`{
zjth=@W<PD2i{&o1x!CSvg^PDxeC*;A7w_>|Xm|C2iw|AAFFe1yqNMd@?VX$RcpCI0
z7vKM&z1dx@q?cT*aq+o}PhG5b@tKQtm2`d?x-Apn8M=aJHJ<aD9t(WlU9EMo#l==C
z&|PP=^)4Qm8`vO7veCsR;hP1QoeojR?%FQ&Puv{ou6EFAbh3-@xT0^(`+~!FaoEL|
zE_S)t?P8CMyLzYt)akC8-xa#rU47+(xL0tWi?4<37u@)KfJHM`YTvjx$iP^sg?jke
zC$@(=_TU$|+PAKMUii?$&{K}~y^9}QblMsyb4)+VVD6!gxj67<fC@iy|Ka3L)#vn3
zQ|pH3v#yJiF3KfwXA-}-IK>s@;vW~MU7T@o-o@|S2Tp~~y7<+_Z}gs_F*|fe=<^<m
z=YP*}fIU?6GTI+5F1Yy1#bp;4U0ibUC!6i5ijLM=#Y0zm@EcO?$-Beb#s%j_16MdG
zmp@6;`)$!wPxZHp9d3xJYftsBi~qRaCQ&SjyS8fAT_A~qN!*mgn{R~*B>kiGBpgnm
zBnl_-)lK0dN&gna2|fKw5uKiDNl!KRV4!#sHz#px61OFBOA;lLD4oQT;&~;LsChLQ
z9TF;)#Dda!e18!6PSz@(S0;&;@98AJ^i;PeG0qL3mnuuQ^i+2Ul9YWbbXO90C($^G
zCQ00rMENADCQ&Vk3Q0st=RJ@_<s>R5ac>fpL~@@r6}lL>x0kwK_`jbA*!Y7<gvy2L
z^imIzTnrSeu2o5bMcsR;tEI!$lc<qIFbRzYC()sg7D(ceUaD3S*sU@9>ihb=uLkmx
zuzRT`y;LZPa1z^lsRl{tLh1-A!P<i3`e;<BE1aaBkormd+)J@#N*X57NQ4D?``M;R
zG)tmw677<>|E6&BBw8o^t?d5Zss)GNTeVE0Rg&MQ1lC{Bh;5QsyCpzPVtd-0MAsy`
zCDEt1>X`JSu1gY~BuhzWAv~bXz+ebHS2ol=i5{G$D}HOtKG|CxFBR%dwIp6k;`Jo@
zCee>BO~Oc`e-Z<dm_(l>F))cily3<>oW$THhNiXQNsJIOL~v*l!-P<Wr6u}=MkX;j
zi4`+K<fC#$V?;7maGW3&#xr>Ogh*I%f@n^Z)+l*2iN}(dnZ&FlCMWTD5>t|RHi;*a
zc#@Vp7=9*+9|meqCGj+)_nQzog-qlpUeTC+j?OO~nwrEk#;_<;I6a9OB6oYMX3AHi
z&htskPU3|m@{@3NZB7!yYle${7+6wNTi#psdsXAm+6)YlY}d7yDr#mD7Gom`Cy8tl
zlthz=C6P+POCp{`p?aFjY5hYhRYyw*i4@h6IYK$xNhgs>f(m>Re(n7byBM-IG&hMC
z*`Tz^W?$jVGG?UHeft8GyedWWlDLtb&xOV{m_msZ-k=|n_#lZ7lUSI<q9or!8(5yi
z-rCyYB;FD7mf+j`<NK7x(&rWhS-K>Nr6MO^#+{*<MzTVxzbi=1_mX&DI7^xRD2b1g
zpo@y6@CoBKi8V=lp2Vqp!mE;4%}IGiWBN3S{nx@b_-7&vJ*%B-t*uRBeG(gzSeL|(
z-ipT(`CHkINo-;loSh^#C$S}o?_@=AQEV0RRTA6i4dFYI*d=7A;1`0_{F2M0t^a3Y
zw@CKn<VQvq*eiTr5?|A*Bn~9;tw_E};$RYok~l0`r-^?YZ*jQ-_k?^>;(i~Qj{HBR
z-wQvQ#4#a12>vKY&ErYby4^pwcp{0DBD^VuU+5g+e+r%!{5^>?Le2{Qn#6BH&LweP
z2pc)oTQQL^{gK24kzdS}UP_{PAHVdkBrYd$B`5zUiL1i@&PlFu$GGTw=3kNgmy=%?
zGJS=A*J6Q`zXd_CpkN`v!h%Nq0-W)pDHKcjQ_oaf$jvF#e@SDuWD2EHD4#-w6iTQ3
zxV=4vvO>zFaBIq6DYr?seqC+8ME)Hq+@12j3@VqxohjTUoVaU7h>L>qdqhG)VZ{{g
zO`&EAwNj|uM^#GU0g@CpOb*?b!u=^U>!XJCQPcaV2UB<`h3YAgS4p92iaS`iS_&`r
zQFqPPm`I8}6rT28@UuRuMhf5bQ6zyB@={PK)J`Fo!XJH<mO_ZxCqgB*2E!a(U&X`J
zI=?CItJ?Kdqx-7yl|pq=m?flM3f<f2byMiQBluch#aiq7s)i~5S5K=`_$-A+DKt)@
zNeWF<7?;9$8k|CNQ5cc}UlP$Gg|;cQqaTW>mLh4DLTe!`Z6or-eO3DuI;7Aeg`O#N
zB%g-PDRiM*imFa2w3&thMO9bHc4PITijv>^Dw6J!En7_WqLJJ*`l&%F^hu#_3IinD
zFNOZn0-IX6J<KYsNc$h^rv{2bw6e}xgN5@R>6?nGp()hqr-r34JcSV{wD0E&N2Wj=
zmBMHtEE+?FerjwAPxn(yRC_pu2`Rji!hwEjVhWQ|I8#(*Qg|eVN9ocOo=@=wwV0g3
zloXy#;qep(7g0~9@Kg#;5%ok0iGGS?Jn#Qc;h7XDd0QkDviIjwm@1kxQka%PY8s}e
zaD6Hk6!Bl^z@~0gpGlpfemk>Mn3IB;f|bGx(pNsiMhM%df+5vO*vrZy%BGObN)cO&
z(w-FD6k=Q~MO0iWuF2VxOo6Vu(IcySDWt`IR%C;ebL?61z+Ax>xmbiy{xV5nU*Xjh
z=B4mj3a_WIJcSi0%qMOOFHB*PkOllJkiwfOY}pp3oKf_9Keaf8x1@9#{gdJYRV+zi
zX$ma5p+jW4kuB8U7gFI}sq#?@AE)qM3hzssAEfZ1$f?Z685lP@`b31Q1Xl`H?5{q}
znZcu>Yf|_;g~A?+cvzdlx)lCS;aUpoxp-4J$?Y+PjVWy6N=)Hk3Y%G%n?MS?Q`njU
z%7?e7up`AM!2ZimndRG2cc#GimVUoC_yt`(Lo0Pl_)9wKpCBbH<y%enr0`V=dl_;w
zG-mfnJNr|(aI;_iYc8DrYJ7infHoA?E>;Y0JsCKZ!r>H-rf`hg4#Q?&==&5F$F*o@
z?MMpWrEutOz5LqX*F8h;kJ9)C&mU;>`rwZ#92dgge_{yrS3ffvPX^xVugFhuX#Ex6
zzDmid6i(9sZjx(*e5vc16t4DH=TkVF!mr%iW@x{0pDd7fj$6$wVP?PYulPRD-?=ZX
z3;!W_u4m}_8=;FSa0r)D_%nsSQn<|RWqs&M%71%oxdDD(*K284Q{d}FYY$Mwe`Eu{
zF1Gzkm!1qT{U@FwxyeHT4}2}`uI?H<Tq~&;^uV{HG8GazNl_2QJhb-E#zS!rH+!h!
zp{j>lJe2TomxsGOl=M)_!>t}}^HAEuvzg%J0ji9LN=Nk`1C%>Jy*ogCF+kn!;SLYw
zJe2h?>y11Le~}_8Fngzm<LCSX)c1HO@8NzA4|u5Hp`wR-*%W&msPYD?&I1+I#t&5Y
zdDwJLXGLS6S~yTu_P`cc{Xq{K2PzuykYuSqVKoocJ=F71-$M-#H9dqq=pJf$2zUs3
z(4-cX^E`gM^#8Elu<H6i6_R!;4pQ|7DdnNI2abh()e(7JF`LR%C~?}izk!E_9-4b-
z;h~X-#vYn_Xy&1bhaQ8JJ4n$yx@GbpRp$w?ecHcbkYZ6w53M{f%K;K^khUJ$d3eO*
zK~c2#(80q%4}&~(^w7yePY=C3boS82Lst*oJiK2*W1CF0q&s``KwpvX8l(z5qp|B>
z2C3d2`grK)p}&W|G8eRpI!uKIE9!IN2GH|^eaBKb*uxMHqdkm~)`of*?qLKyFjx(v
z4TF81ky14K+rTJs3;qA7$j5pZ=V5|}iJ~xGy!Wsmz0JgEi4RtjJl_@UnijG(dh#(3
zk9&B+!(>L<X`P9dKk4Bq2AGHEJUlHOJtKCqlugm#DI#Q+WU7Z59%g!&=3%-A1`k_i
zS~A#=$s2r@hc}PvBX{d_JiOrHo|jPmCFFaEcvzFg=UEsYOa^%d_hevsussY&V_+JN
zhp2~h9?pA+d5C-X)Wd2I2@kG^mp#1V;pF>TQZVZw<-rr47R-3qI#?Yatf<rczYuY*
zhZm)Y{3Rh}zt&#$Fweug9^UitnupgtyyIbshkpmFQ}eX>T!2H=0>L)~-xORZIIU1<
zk%z^?-x8$q+YI1t8p+jrd72E%xe$ae<3cErN4_E_A%EY)2Od80K;;kVd0t;2Y9EOK
zU4|%{!6H^+-IX3zi6+%p_cJ=s!(k8Kdi-V?YdPZ{zVxup!+H<f8PY=((*_}%xcV4K
z+e1wA?$tMY*dlU!h}tTI@@;g*y*jJx5XnwKW+|k{c6r$6;cE}O#dUjfp8U$gvLR}(
zWVgyl_luDS1rK=mM#g(%;2g`L-0+WZC-iWZ>uad`-osH3r#)b(I>!Bht#N2y1`8F=
z`_aQs+(vf!{I~~SGDI=^vj|UcAKM#Z_7~A-l~Y0jKZMSB*xx8raj2>@RQ)Qw{3gim
zIHKP@{J{+{jml|U@NkhEY#OE0xa8qaZrW)ejlVox_V5qq!owBr4@1@8f>#-YL)D6*
zYWq;d;{(?`{4C@@uEZ9Kr!cNFTzOPPgg2%AuZPGBrco%3;%VHRM&Y!tP&Do97fJgq
zGZh}@V=>9H^p-SAq)}2dDP$LHnS{Ntv`iYerg3K)ccpP#8n>rWHjReE{1XH`igMpD
zMSh1!NXn)C^C=`ucc)Q4jSAAsJzQwR{8JAV)3`T{`_i~SjY?_okO*7gIgV$Csky_{
zd&AUjLGlOFcqon5X|zeBN*YzuXuw|5sFvncIndKkY1BxgW*WgXv@~j^5s)_X(l|TJ
zZ}67ks@ibXVz^>9ltwrWHp_D>v~c8bHG8;X@3qrl?{(7t*%=;}Ag@b<OZ&%U>ZMUX
z$L9}MjYP9C2blH`R`9$=(=?i;(ISnO?7D?&PUkfB504OwweWjyC32pK*)-fAW7{;^
zrO_jeo@umCqeB{<)98}Mcf(c3G&)K9^u~?jGt_75D#C7pSB9&*vVrcLh-`qoR~o(3
z=*K`>sP&;qGR5TVjyg<is=t(SER+vQV{jTf(%6~CkTjnHA)Q7hjbUjFPh(md)6*D{
z#z?k5LQP3yR2rkxcsPv-X^ctZ`Z=BQaYDwX@#(w(CF3~@{X*p@=){R>OiJVNG@eM~
z5&A8S$I_UbM!gZL_XtJhH*d;&dW528c7!5%GL4TU`;3sM1fLc>Aad%k$7j=cPD~=7
zD&*1#H6x9g3|EHYNHvSjNyB8Yi5augh@`=~bEK3CF9^vOWbX!T9;qmA{$aq9TC8aE
zuYmBVj3}0qcO9u%nn=S<Bbnw868v7+xF=nZkC&#h46QVlrLjDX7t?qtjW^R+n8wS}
z>1#5mSJHSjXUV*rF*Jkeb;-^bT#&{aY5cF*5o%Eyi_>^pTHp|9Kk+Tmd|{+|C+D;!
zX)H~Hew#N^(W@)ccsGqzoTfD1OM@Q%keX?{pT-9=FPs_*IgpRj_#};$!r3^5H{>^v
zl0hE^R;Te<8f(({JdJH>T&b+D<y?=~*D)Bjgr{x@41L7^LE3uBZb)OJ5K1<su{p=L
zq_H)}vm;dOSa>_P!HpqW`$ZaGrg4$6n#Qg)c5@%&qDW&8dmO30N@K4O2Ee{FzE0y{
z8i&%@FTwDQ;DP@?LT<zfM@Qct7GHfUNVk8V#?dr>OXFM`$GGa#IF-g}nbsdg=O>xv
z<KhrbH(U5w+<qdBlR_x@MF?A?@r>9r+;DP!`&BC5@E(JQHlI)9cWH-X`9nG)xxm3n
zc>l@GKaGMJ6w2T-eVfKj8GqDQ)A(DO`Y(-ZY5bGMztSmZgmcHPX$B*Kp>kc+DCBqx
zNL>ihdo+)!a0VqaD3w8xj9;s02E{TsI8qhQphO1s&g<kiXK;(~bCdln6A2qEox$y_
zl|h*dZq4{zaA>z>{B%h|_l}IeU9gusGbkthGFy6-x-0X)mC|E^UOs~g85GC@Syas6
z-i-e^<)sWNWpG~x-7@H&!TlLLkl}Csfuefl47TugpbQ>jgKhPn_6PVftSTAQ%%E1r
ze=%0o45|qsuP&s9V5))&WRRCZID=NBRFL|kRJ~FD+j}+Pp^X31ObYqjg9^H+sSJ)6
z)@x@lV3c}vl&VWVFpX06GiaJYvkV$!&@h8W88ptI3Dc{2ec`{Fv+#ADm_N#Y8CmlT
zT1ZjX3|g|;4BBVVAp`2P&iF5AW0f|d(3XR`N41k8mhv@u^GEqF1LbQ6J7)aXpLNQh
zGf4&2g;Q2RwW;X0zigD+I*M00p=Sn@sjx0w>7d>#gFzV#rY8^Ty#@OS_7&`xLH`Vz
z7t#l0@MU5B=qNQX13Ht+Loyhe!Ke&IXD}=Sy|7+#v>G9$!!sE2vVLilDiqd7X3%D<
zUS+gmtwy8Om<+~dFfM~%Ueq6B^|?C9_zWHv$%G6h3YnC_qZ#n`5^Uj-4BCoXx6z8q
zhl={M`FI9TWbkALPh}9x@D6`Goxw9QsQe73WcXhvo|o)%8B7(cW@RufgXtOUYpc)9
zU`7UKi|Aj!sM8NjqerXWCw<OQ5NAu>If5?;p3eSHGa^}o%Pp*%{4XE_I|E0AtT=VF
zism>?O^;RyPDBP?2IOuANg?c)*|Zpz@vG}g#YI`+n@6j;LSAIBy{sP@tzORHl?-0Z
zU|t4C>6r{(%i#44mS?acgZUXO$Y6;qir+`8H!^rL0}>`K6XHTCT9m<JA#Vx3E%=Tg
zBZQhuGg!ue8RPRxf+X)|@M#9CMeRL_^Y=6OK(ZeSekAy@;3tBtwK9WM!Uq@Bnf;8>
zQdr;2RhhvWk$*0@HmAQXgZ08U2yV>DH*wYM4YCEMtr_eT1GeQ#w+q=J7#^d(V3cOC
zD_8opklh*V5%QJb-dyQE30gM0KZ64z{6_Fw?rcI12_6=t+R7jGBf`JSNxm1tU(5U;
z<UD<z;g_fWzQLC%ALry|@N)(yGB_y;=LCPr;5Q+s1WyaH{WC(&X7H<!1wZ<JyHSNh
zBWL;}gX>&eW7LHVE{fVE!M`*3QwVkb5^_0%D>=zkA@n~>uVwI0PX4cu|1xNoYyYM!
zPUrb*1+yrW#iLm~mPO$#ie%9=i)L9A&7xQq)w8IPMe!_d&f?xIDrIp?7A3N{HH+J_
zyyi%i%%YSK@+o6f=`6}*ksZVPL;Ni9_AJU~ad8Ykj^d6i%4Kn97Ce~Ald~U>QA{K}
zOS^B3x;yJX#<@qZykG@E3M*#u=`#PjjQg^<Ka0v)Jeb7;S+FjTh;|;U%8pgqSoKgA
zRkEm-MTI57s#(;Z7rMcj9XD1PV-+Pev#6Ct-7M;5v0$tUWD&|DoJF2wgMymi=VKKW
zz8$OdENW*_CksW($Eu>6bz*ZKFO^b~`dKu{qEQw+b9!m4;=$pD(mOk4*NwBhQqoVA
z&ge{K#;N96w8&yW76Y?rnMJECx@OTWi`H4R$)ZCR?Z>IM(rG*Cm%X#E_JVoie3Lq6
z(TR;r40X<;OBQrOgVyQ>QrJC<9$EC2c6w&fD~mbfe5+_)?=1RcL0^q!7v;kw<&OmW
ziM9Q+IC~{{X+w}WD2u^ajL2eS7DKWan#BhPgFHbzjAkDT49|jzlKJD*XX6yfp>b+d
z7UQ#cIE&F)Y<(v<CX2CIymv-_;H=K<IL?=l31ari`TC@+fAV)CV`H3u{`ZkAC@eEx
z@jUh9EFRC|l`LM(;)yJt%;JSC^0RnK?0hbZsY0F>d?t%2LY@`m6mz1dNes-)VpbN@
zbMhG?42<`~;CbP5q-eHaJCSqBB7FFhg_}h(3o{EVi<d8jV_DFFb{2~s(w!_Au5=xF
zlr9>t*8Qx-vtT6rAD*rQT8g6S!c|am5)c&(U_jZov%4(<222D+MM)}x0YN3_oO8~w
zljF`TIR_OJh=PbpR!|fL6;TvKNuu!IX}<TLGpEk&n(FFGUAr&L^vKR)CgnTF<uNCV
zxmjpgeAQXJ-C4}zzQ|%eE4j0{OvzW}T~^xPo#RXATq!`zyLJ{%7R$3(k%gOumqkbe
z<X+&j=YAGJ7EEGJa<1tTr?}X~1g*+vu{et*jM#U|f-Dwhv4|DkMeqUbC%cI5UBptk
zXDL6kOT15)$sxDx$}Co8u{Mi!vZz=#tL1K8lLdX`MQ7JDtzF_Yy)9RNQ<nW(60^XH
zFH3I7;vII9Wy!r=#9v*+`<%<(qM^8kjah7Bt5MNg#fMpJW^+(cS;a?Le4NFPS^UJ}
z$zm%P&ElIZKFMMmqn*Vb*$O_*;<GG1&tiKP*L5gbp=<oxyf3oYk;Tp|c4hJMd-0z&
z?PJN;H^uGZ*sbwFZv|b&-YoWIaey_sDb=)Z(JvYHEcSEnbQN8tlC7f@{t9&WSml-q
z@!x+BvIe?}AF?>oReYPpcg#L}SBs+GXK`8H>nb*P7423ihouas9LeHRS5d8-_&JNC
zS)9w_d=|g3&1P{Ti<4RWDqT39#qSdQCTZPnu?v4>!HEQ1l=ROmPGxaAi!<CEY&#zn
zoqIU(cNSc(MK?iA8D2fQiL<OvIWg!a{>kD3o3n~CD*nylKlW`EB~@IcVQl6qC|^Vc
zSEQ$$UQ}WZA;A@wZ>cC&$S<zqszOZH=s4Hf*iDpDaiE*nYbO{S>M5(DoQeu6DypDU
z<yGAHaq6_RinL7kSf-MSJGzUhM-x<1MMYH=536`Y#kDG`sYt8HsJKqW^(yM9NS#UE
zprX1O2mcloHK<U<O)73y;}3{Qw`S%SP0`<015>qADf-f=yQnFJYe~vkx2m|U5Z^Ar
z9V%)Ua_*GiE)_3#7ZgsYC{U49@ugl=;p%dgg;y(srRA3$5i0Ihai1DTyRH<dr=q@!
zdsJwr;*$HVy24w}&P4+i_o|rFT`)xC`_)qSt9U>~LlqCIcu0osoeK#T-ZH7b;Jp;9
z^idU!RJ2pkUPWV-UxV?qif2?bRq>dLCsaJC;&ByTt5h?&`W892>b%6|Ri2W}<|;O?
zPcb;FZ&mvANVQPWQpIyBo>$RIMQaspR6MKVi|Pu0-+n}D_*YWe$?~Jw40T%-FGy|I
z_Yky`w_a57l8QG}bY{d<yrQC$iq}*$Yg@E~idR*Bw~zBOszs`PkJx2i?RtpUSq#<V
z-FMl-emz7N6)fFuD!QxaDyQ%+4JMu0L-bJ5Q-xkXwX}!muu%D;q0&c1UwXvmprW6O
z{){R$s2HGPAQPctii$xh2CEpYVvNe){1hFcVwj5IGKoV~a68{|F*!oUe58s|DwxgP
z8<H$V0@e>H9T}@)f{KYM#;F*uVp|WfuVHM}ksgAT{N?XOCP{0V-%CBjR29=ylu|KE
z#dH-jSQtHHuj%GYiK(2!>w1dWDh^+*>@|y$Gf%~Q6~2l<MOKBX!ct+gc<3^<wJ6Ha
zHSZ}5m2c;ZqtvyhnA}tRSSdDx!_vcwIx1Whm98qvip}*Do(dYnyEzr1ig#7Kr-B+H
z6)RM%RFPM)K*hqsICGCsc#(?5g`6c4ER}Sbq{}63@MDoxDpsp_M-ExuYq(zuGrLyB
zI?1QD^_PL9Z%O*Lq#GoCSB8a~=zSF*u(nSX`B241n$3>@f^K4;6c~Dg@@c&ctAdI6
zSj83<->ZBX1-7dAM8!@OyHv2%u*|lp_*BJq>E`DwV-=rC%usKy7uQ~Rd(j<o>5Bg)
zSiQSd>`}3w+2`i^BDGh=KJIbuslG)wcNN?Sr+SJH)YMn98*uv9D!x(io#fNIgDSpd
zRKvK28FOZz;E)PloLIV-ILwJEer27j_)#u#RI1`yKgkODnO%rtS1Z4$I3^9Fn{;H$
zk42BG_+7<073Wp_q2h#!zf}CK;-rc{sb2+CeC{>n%HLC09Y|T#;y*7Eka=3g85L*Q
znGeLZLEj0u(MbPMaY0294MjEltKvU)eny-9q*rYD<!#uYgz~B!o~oIKhAT8&siA|^
zHeB+D6;=2d%J^KR;c5+iH1yR_LPJRn4{3N<Ln#fVHQcP>77b-Il+{pKLlq6>wD<v#
z3K}YExTa{PyoM&Zf}55mzCV=auo9UXwk=6)X_uMRE_3jOOjQlnYN)QEh6X;*UQNS=
z7cw_+#dewNG-P{;>m}wb>Y;`kHE`A=tCKfrd<#M9vXZ+ur)z4crJ+DWQp2qp*7g##
z;SLSA$?3N<8b73W_Y$PFHQcFz2Hd5gjx_IBn|Mh52@NNE2^yeiNNKo7Lp=?g#dXsf
zGIX=I5E`nr%W&ztHPqE`-<foxw|J*mYUNi-eGLsXJRlvsS3~X7>H9R?ui-bTpP*T9
z!RwbL2?nI0h6gp=^h27_D1SEnh=xZswAJu}hDI71Yj{G#lQd65Qw@)4cw9s0-h%5g
zk~EbD)39c8ts5RqF<eh+Xs+Qo4VMn3DfzSnt>vs|G_;VQrKG&uN~VdRjRsmyN1l~{
zj?kFrHTb8~RNGENdkt@J7Nf1<B@M4?SZ^d=*6@l3W}$-y$}=Ezgna+&1T)f6Lnj$n
zR>Eu2Yx@4W20BjnyJ+aDp_hhSZ^00C)6iW5XYDf*w46@$ki(uD#`hL10M6>I;jh2b
zqid)7Y3Q%v3k^Fo4A3x8L!=?EVUUKw8fIvisbPqQp`5E>f`(xlhHDtDVT^_m8b)e(
zzD&_kOzxTZ!@7O<_{$yv8|GLI+(hG8Gu_3e-r`X2m_M;uYN8f@jhUihs)k7#CTsC$
z90dlIN%OnMG^ud927UqKHym=<#3(RJ!)y(P29s{~6mvApXEAG-t6`poi&8mT3b&Z5
zL6bUlntg+EZ6Cq!epH_7BcA9ZEDg2>SA(a;-IC37L_Nik@)Y(p1k|q~)bLuL*kBr8
z{*M%!UW_j$`7ydc!$J)kG`yo>k%q+@)^K-dSfXL6h80Y@7Joo2)3BT}7ZUu;WustQ
zBVMJ&E7Gska>X&Ur&`ABBiJ<7k)z=)8Lsv6?j290-qzwixxP>Q72<LL-z7)GRt=wM
zd=Cab(6Cv<NBsUzcjVj;rPrLxUP_yH_YwSF_b~%?IB}wn*uqlj8h_C()mQK<$~Fz3
zYWSQxt1o}<$ZXf}nY8fPUy}@1@vOp_+_JUk*Hwz{)UZp#X$@z%e>LpU@RNq0HSE=}
zPs7(5zR~cdhOaanpe4P<ehnv{PSJAOz)w21N3KqMP{X$xe$a4O!*?1EvH1Il?-{xt
zqU+6>hx^7d?fQ!2$rOM3IKo_fulz`l`U?K6!S7f6a&?qtui+2sr@t4IT<(~LU)d8h
z9M|x>hNmCO(0%IRiu6?PEAFe5I;r7L8P&g~&Qq*^$|qCQ%s8Bxp5g}zONE@X8qTpZ
z>nN$?yoP_+%ynF;;{uyMJAj5F9JUw#@yD*La#4%FOUGYPdWfctl%jeZUg+^pL$qOC
z-#EXyo0MWYitD&a$JIJ$6{oYVSO)wKLp%AA{bwhol#bFmD(SdJM;RSubyUz%QAasF
z-XINrC{kX>E*T$&m$kI@%A%|s>fsMum336naV_<qP)c7@lo6;ZXI1MamfP{?Y&9LM
zLxLN0RM+vUg^m_#=(tfwGXqZ;xJk#&IwBo;9k=MHsiO;h(NRmsty0wsI&RZ(yUzbm
zMFX1pVfqdoNgaxg+B)vkahHxZrxOJ_j`tOHBu+@`evlx4W8Kv3&B}&N>6DJUbv*K3
zGOZ({W6`Hcp@Xl+?J_s{?gxny{RD5-l>+zZs3!qACpM+;)p4JW#yXnlxL+FZppJ(m
zctFyIIyn94d+CRDa8b^BM1lvVB_5S}8Wn20tzTSbO?CWuI`N#2$8<cd<K)m}Gim%&
z5<fxVe&R`qC%&lAspdMKmIBZ4R$6JHqos~klG8@g);eD9Cx-VEeNQJS|E!LV_0j~-
z%Y~?|tqvnzTC~&AUdM|%=rV11MS_<&UFzYKz5PT7rb)-o7nP1WI_Y>V&Vu0ZbseMY
zrT^?FIFaBDIqWPcJ?*BWyN($;X6opnqo<A$I!5Z~rK7iw;WCwdbo^aU8K`4R$xL4z
z{aAASMSmRwB!`%p^2(<fLkbMiF<A16he$9~$1n*>wn~xNu~S^bqa<g7j)}CSP=1V#
zv4wb?1mk5WIBSyhbegn>{!Z30rO@}O5-^gf{$jceHTBQZF<XbH!)ImAP0nE?Wzgp8
zn5SdDOtdPMXC;2BzhKR1lA}w?aLqcMFy$;uhpoe*q>icmMXk0e-eq`u^cTzslN&HB
z7nPijh5h4FVb(%9k$3@_I*J)6ZeWp)#X7#zaY)A!9ZPk5rsH!R%XBQKypH#DtkAJi
z$3L|)sR3e@j@3Gj^%rmH__)7Vqhq}su9d@el9Eq>Hzl8-|Bs0>1H{{MxIxD|5|G1N
zy>=(x*RfH@CK<*Lba06l1H^}PYIo8fAUNEtgPf13S%NJ(wo9;8$0s_vN%?J(L$OaK
zm@q)pR#O~)p<{=ReL8=BkFDJ)m*%3xyL9X>v~~~s)c~<q4(Y;II`&I@P7M$TB-l4V
zd@W6SXMiC7M#n*_9U#8d@llmD0qOTTe$a7B$6q=Q>o}sL&zdCF{;1<89Zw7tzjH6>
zII5%0KtTgI<rg{qS6U^(WmWY0H@3}z;y6oXfI#^a1NDcr`~>&11b<3OKK1;q<217)
z9cOaS=s3r=uj7q@;;fDd1LN$|<;QmxrG8Giz^$}9`LA5@KWPl@xhTOU9Yu`TJYGd5
zfPpI{xKh$5<gKd=Ty5ZH1Gg9`VW6aeYYbF2P|84Q0~HNaGU8~LF|c5us337!Ny`~1
zFF|~FfcRjbpa9L|ax{s`|2|Trih&!9xWK9!xK;wnR5RilxXy?zC%9e?=}vV6HMruy
zxR!X`DCKW5{#RoZsA-^qfqM<qGH|Pb+YH=pAY~wJ#07ST!N08GE~&P*fuH|LF_qPB
z$#9iAQWbS33=~M4laiwp^1te(P&i|to`L#CTnxg%-4fI_@bFdXdkjz&`G*Dy=7N<>
zZRFf1mwV8_Lk8|Q;v#uK>St*+lvXh^j0uGwHt>jC?ok7c3^bN^o9|9GDYT)f1gzM{
zBzRoXKUOL%k0%X0WnhSjp(dIec-p|P27WW}3`1uiG!PkRX`q#Xkp@N?Xl<a4fsO_`
z8F<#fa|T{A@UnsD4YW1T&Omzu{+`SW1}+Q~<p+t0dotIjGiUc^UZgv_GV0G6K0JQ(
z=gcbxg87+O4IDU{p=1X+%vBcq^vtNr;xz-W8|ZIffPps*bmm+Gy$y6R(A7XU1KpXU
zL893p(WSC@agd;r9tNnE8i;!usJSOY(EMnokAc1h`WZO2HA8{^g9OdvU4nrI1{oM;
zV7P(741$57()g)^L@-FKmC8x4&c^a1417OGoEs!Q8zes3l^JbdjDf5H)xcN-;|$C+
zFw4Mr0}~8PHZaA&L<5{Y$v|STptYq3izb7`D}%*U0}FR$=>9Z=|CXMqe|2WiU@_gm
z4B9hT@L~jJ8<=BYo`Lz&q`8tlzbiw3sdM(=*b)MUPBWkza1D3{3<IVC%YZH8PlMl=
zaiGgw&M}Z59M3JXH{&zl266^AN~`EQmmu9YSdf$FmSnLR*g{j;{0+Qm;4K4-4J<LR
z+Q1s=+EN3{3@m5K?aEN+3Ii(*tdfB`F*r7l%M~9YzTOk(bghAPa@Kn33sb{nT{|Rp
zgwx+Pu)zT9WHY_)hj$FTXW)GU@5)%cel)}4`M>~Gt=gU0DC0)vCYkgP4KO22E>lAd
zAIVy}Ylzrt;1dI18Q5=Nn}JUa>@cv?z;**n#AgORmlLVy3$C>%Lt|(#bKPi&*kxch
zqha7nQa!`S?_m=-nz>fZ>}A7IGb|FWMPX*}K?a$&8Ti4#VFTYt0}dMa*1!u=C)52M
z!(xDv48<V>4A&er({D)Z`w@eO+2JQP76Y@d&QO@kF)U8MxN?pf_(hs`Oh%7YL=9$d
z95?X0fusq=#2*Gu7^q;PqKT6R{xtBff&W<ZawD8!U=93b;BNy|%gCRWDY$Gr?LWs3
zvo~`=3ZFOdkGxC%tRZnUXwO9hm)OirlrT}mL{Sr0n7Go6^94y6H(JFZV^z#VaWnRm
z8kjF;`6?5n`qoTI6QxX)HBn9qa8_v(Wz2ZzGJ_1o>LG$d0;aFL87GDRCQ-@6H70H`
zQPV_a6ID!HZ{h|MRZU!LqM8}!i2H)VG?g`f9lKd?d@YTyE|u3Xaid(33!NJx7~Y#q
z+-$~~<=ZW;85*~dS|)BaafgZ8CT=rvyBTj%)+&u8plfvDPBU(92@?e-?lQ6QXr^GO
zsKepVIFH;o6r=srpE8j)@f@*<j0s_)iHW8r?lw`^L_->5;vN(AOx$bYKDkzXNgGJY
z&~ed+hQ>?ZFQfN>2}YP@!$8rJhfF+d;!zWgOgv(u-OxC#1BMEg=w)jgo0vB=-pd^J
z*pqq8#N#GfnsF0rX5tAGPqE?4m^?|_xaDPAU~_m{CX~T!Vd5F{e;sM{P(f|mhKg1u
zTAT4UWIy?NsAwY<J}YU_VWO>x7ff_9(Um5dXm8?W6R*g-FPeDCM80<%RVJ5vp~^7P
z!NjX3-Z0VGL`P}H>y(ilsgsG<Bu5z*x6LNQ1WT0Z<6U~n_;fST-9$eV{Y~^R(bGh4
z6Mandk^y82xCDFY!c_c0(AUKHVf<g0OxIy?JE9E(Obn!VjNT{=-<jd()L`is^V?=`
zJRD|XxQTyETre@h#7GnCOsr=XOpG>RnXpZaF)`M}3==a=jN=m2IWjZN!~_#lOBV2&
zB*8=z2TvzCoGgb^F5i{Z9wx}2ZsM(Bf^Q!9a+sK9Vz!B_3Dv|L6MW{n|J%uVCgz&h
zFgC&AL06e?#!u+)nwD6<BegD*(o7f(cvD5Ek(tzA!vv{mqSIET+mj0UjtSSqViQYD
zc&uR)PYxG(6P1R?#|;N8FouzD@;C8WIb~6;R3wMWa6#q*6XYzsd`r^Th6{=<HL;BQ
z@qA*niRC6%m{@6I6}RLTW$bWKb#t08N#I?+_rM=6c#8TO6KhSFl@z|{;Jx9Z+4;nq
z^xDLCCJvc+o8Fn&YT^?U@0fU(o6E!|?v!6r@39Y<_<+rAyRv_{Xg?#xBVek(t(+e&
zK4do-AwDwkF?ZPru~||cjNWpD_`P9zi!_fm^c^9#nfTPiP7}MB(}MJN6Q7&$`!PN<
z`7boesj~^vFC>S|9TMzso7!z+4|8W?=?KC1d(0le-(!I9_u#cpf-g;cRmj<I;()|o
z7jnK~<!p=J2l6eQdL@26$R{Jj_a=TY@wbW7Os<I|CQh(voA{B7jz}E7J@to)pG^GB
zyZe-*CSEU=zU^r07da&7m;}E{`WuZe<o`|$BLoE=a#J;0DSxs`i>3cEfjP=46NC3A
zFOCqz?{-M7_)fWgq&Q>Z9IN_G<t*FjNU{AwvZ0?mZzB3VbKR;0>AxoaGm)~8ws6tJ
zB@@?KxZXk$3q>uIu~60mEL>sXDhpRzxY9x~3&kz)trvXZ0N;bbHw;{^fodfRn1vD+
zN?Isofp45holk6?pP*PtUny<j?vY~5xkNb&vwEf~TBu~9yu=(<kie-SuCdUyX^PcV
znfCmiX*p65SFz%Ht4b<CHA&Y#pXoPJ++d-)h1)IM!QcN_xY5GNk>XYhji)DWvT%!q
z-6O@#7Uqo<t40danvz3iEeku|R0ztB61Q3L+d}G$616SdX`#Tv&>4xlEPUH2Q^&$R
zU6mE>mHwL2eRCpV;m8|Fa*`H)FOnuuEbv7Z#2E|1LQ@Nm(Nha`X@i9pZ!7m$sAu6p
z3lCYSZ=r#O`z`*rC-@$cdo5&Vr0%ognrG|aE@(VTygW*b93}W3?uJ~eWC6j$79O$C
zh}Wd}lns59c$BL*O!HbdO6(gYChkbG6*RHp*EpzWmB%eKv(VZ?8w*cZc+$c%w8R46
z`|)k{)KeCkTX>pAPE(jNZvSt;SN5z-wY2bNl;Dp3Ba;%FlC9{@rX(xmSx&U@l7*Ko
zJa3_`g%>QevtU+CFVmE9#Zsq7iS`y+`l)@9@*;g1Er=V9&d{lHdF2%g9V~45SZUlS
zv*&DrhpJ~ri%u3^v(VW_7aOm0T|Rwg;R_3IkZGX{Yrw)n3yUmtv(Vkb3=1<Y^svy=
z!Uzi^Y5!=^%fb+5%0h1oH|LbDqeUMJeObw6Gramq(BHxU2?iGO2U!?gh&d%cTN!3y
zILo_sns_2PqXjqDC<~)4jJGhs;=%U{_v{!8V`)rHWgJuKrYKMR_}9saQecvW$%RTN
zzj3sfBKZ`UYGIlM0$$T4uty|jS(t6Xw%}NpV_~j^`78!G<+8$gbW=%D6&F=47!0@t
z&4Mmhr~ABUh9!rTr1DZNQ{=c7JUKVC;7gOJkODL~ki(p$l#jTaw1=}6NG4?tj24S6
zEV1y8g?BA1wXjUyS}$!|ZegW`RT8g|e44S^!Ws+fB$LCnoY*1texo$;U(!x`@ur2h
zEW9nJY><oc?q#zH-m~z&g^w(JY~ce78!cQ80w->=uvywqgFlo@yf7j`KId++u$8;d
z!gk5$6x#oZRKATRG+MOyCC=$*GI5;Fi^Cljc5=VlNZHuMZeZ~sHWab3$HHC<$GNjC
z?6dHtg`X`Pwc>--zOrz@!q*mfcHVv~K2GuSp^D!yN~1GBTHwiR2iYzp_)gM8l725K
z@BSdcVM&iLK{uqx{7Fuy2IWE;U6fxe9OD*Cqz_%2;qje3cJNmQq(s4QG;BtK;13HY
zES$IS58K_0#7PT(v6F0!&-DD0n<$?+#b1L@Oz>2=zb%}$;^XbkSUAh3Jv_yO+jyGW
zIf;2F9yu4JFc0@!xj6AJH%>kApQINh<#2!XbWt0yakGtEY+PaEN*fhzRI*XbMsYi~
z;cA<2X^YK!_<+J!e0Pus-qF+&HcHyD@w`geC|!ul*eEM;xk65P2`X@*E((ROvEx%3
zskw%Y$`V(Rl+3CUTq|icNw1UidP#4Pw7R4W?~QgG5MDRgc(#0sfbUkVX`_~nTkSah
z<<=(|D;`aFn+<nV!o85bogUe!ZR1XI<l&@Ac_8Usa#%;wgpC3TD3G+llS~QHHZnF^
z*=WscS3=mh$3{IHciX6IgA4IcOCFO)19;$ReH#zkc*I5n8~56{&jyd@YiP&kauVEc
z;{nOxseBxg`JlY@kfi4F<fAqk(Z}Jbr)@O0<D)H`%OMW{ZDPmoqi$;BF$Q^Hg4g2`
zG?VlRNuQMTDJe+-o*zp3j2*u`vxTHBCFPJOQMO^|Y`kitqs;>`@w|=pHeQs0ZEK^Q
z9Uu6})W5)>txvK_xl_0`IG2agz9ggcved?Ud&NcvYLJCT%9873<25#aDaKPKc^)XW
z@l?S#7@q_2F`Zp)bhGidjng)|+vs6qlZ_8;^t92-hGE0B(c4BJ8<TBJvC-E?KO4=*
zh|xCs+ZbR&S(O@YV<1B(`NQb@7%|w!5DAuDN^{6-s2nE7h#q6a*5k<$a^gryM@dSZ
zR5ixNSXSw_#5fxhZA_AQyrdH(Eo&#Hj}fcJhy@i3hW@ThwK2`cEE}_J96pnr&Z@g7
zHB;gltdovP+l%S$RnojQ$HrV6SsSX2dGu>Q;?F&a`8GZqBi_3wb+AkUP1S7tK1TfZ
zYnrbC*SQ%Fr)e;aw`|xpR@hi+qr_O@*obW88C5Q4!?$tUSdp_qg<JNe137FmR)jW4
zc~#h+TEHCHSZrg7jYUk;STXQo`uw};QDa5WMv4AQFSW7E#&W5I+Vrup8C-hJyUA6o
z0qz1D8*HqxQKw((O&f37SZiY)qiQD@Hy&QL-bVS|X&ysHXZ@84USz&w<6RpY?fAv!
zT=6|xyE5?shhxS2Y$;>KUt>k-ae{%WGfq6WEwS0gM>e)IEbJJpd>cHx_){BOxg*vm
zKe4gRj?X7$7b0avak~*yhGqG=jW29`XXB8K9kRgo+Sn(1#ZEgu%W{{E-4YP*xeU6e
zzO?a`4R+3NZS1G~=*-tPzM+F}Ck{x;qeZ#>FCS-o(Ei_{#ymHZyWo2pKiK%y#&68H
zjUzUWG04MGKg!iP@u-cTB>q`a);v!FCI1%|bJH|WEM+sK3&)vvMqaiN_NzbShGO?V
zVdJD7zc2c7m!q5PGpAUGU6j8h<?xJ+v)s83o_BE0#(B0r2e&!+$HoO46&zG_@UM;k
zSUC<#I=E=#5*xdNy7kjV96T{jz`+#`s$Q!UmBW75Dpxw-_1Olcn1dNd(?yFHYzUHn
z-I{K1DpxtU+QB0g6ke@Yrfw--P|87R2W1>IoTmg^l(G&!{7l(?DfPk?N;wC&S5SDB
zm*DkrqLPDa99-|<1_zZLRN=Y~u5~bWoY=EMIT0l~-j{A)Uiq?gy6#A&ngef~xX!_*
zae|<_gBlKQc5sV>8yy@PC;SSTOXI{%4vx1;1*H_yR@W*E$D}Tn&D3;218O<A&_S77
zM!DU=9S-hy@PLEb4(@c2aUdMr<)Ds(0tZP416C)l*{U>qAf0f~W<%<Sb18*u6)%`K
zDV3tv6_njCq|y#*jTeuM7cY$$cQb|#?r~7h!Q%^4<eXcpFnUABi~0`kb@&h7N&^RU
z=dx3u9arvSRF5m_c+t?ogN(Mk`;dc&9W-&!l!0~dsDn4h3kGCIGS$dI=dV(Y9S~=K
zPSJo8lVdX;bFh27c-#RO<#I2SP?|ZIeXTNgh4Q3>ryPvFB~7!NJNTka>S;-zk+g-R
zEhTLwX=_O-)<%M79qe3|<ghIR=%Am2{tnvFP6w|!c-_H^4w$Bw9K7s6S*I{iuQ+J_
zs`9FXB1cjkB<66(C56%G=zwAD#Hu@&;@vl7U@IR@_hqfFRXR)BMbfSgx=GMoQr_+1
zpr^#W3OT(c=p!i$Y;7{dN*mx{po3u!hCBRt#b5_py%cM8h=VV0P7Qh^#rO}U7n2p^
zPG#Bt)Cd{#F)TT{Gfs?jFiI9D>t{3*Ix?=JaSp~inC#%m34%30!2uOcqT}PmL<i+1
zGc`ewImN*n6U4X)!k-|fbF(=3^Anu<1T!7Xa?oNOTCT%v2Xh?kUx)(>G1tL72Ymzd
z3oxG*;@~R}`#q=*GzU{$Om*WQlynE@xrH4V4onA@1KYtyZUhI81J}WF2P?Qc9QY2F
zI9Tc+aFBDb(7_@Hq1=pl2MZj0JV8W~{y0HYc}jU{hr%2&JBwv0a?@S&WQzQ^%NISi
zL0RU2wMsCsyi#<cSm|IDtI@$*4pvihMP-eHwcIuN#Il0)ItTBUQYx=g7^UkciuH0A
z4BDW)?O=n04;Zvf3X5>`)YLl;-sO&%DBg4M>_qXt#Edg>pNWDXPNjp*4t{ZP%)v)A
z*uggr4zgWrRkpAu9qeLe<&d0DB-rNQQwg>g@;`I%xx`;cx}%Ukd!kr6QN&IaFWBv1
zkAua3DSIW|Cn<+tO7NAW`z1Xf>DLanOcWIO*1>nIX9tI6og9*l?(jtMJ-3@|K`b5)
zk2v_r!OsqUWb>IQZki<6I*xK{j~CpPzcft~u!sEW;5Sx_gHxRA;CBaqu)w&B%PXua
z?jTlgjjt4@=A>+cS4#SqgTEb|<rZKw{7RX-K{+jZ)EODrdnd*5WWh7b?0)P97ufvS
z;#?$L{Ksv`X6vGwi%Z<CF3Pwl>!PTOLv@s^TwLt}F0OEKd}!i|qlqhB6mxOU2&K4-
z0e2}4*Coq;nP@#plyFhfMQIn$-l-HwPAM1tCJ8E;H%WXmTv=Z=Q_e+s7nNO9aZ$lV
zMHkn&7?@0ruaU0g@(77Ug&JupEb1nxVa+7LRXD8bf|RS1f1Qi#UDS4Qr;8h06j_qI
z$;Hhss=KJ+;+tU!u6SU1@<yqRvu<%w)5UErZg)X`Ef)m~5>$07Jvth@L*wso(fnYN
z{F9T!&PjsS(h{n=ORh^$H=8VQk#zBjiw-Un7bzD{x_HV(+C|321C(?jTwGgD)N@ha
z#oaFIy6{dU%1;(OP9*MeaYxx0G;q=6t<1eH?xWZPsY)}HLuJMN3`IqeU6VLhq#!w2
zJm~V53~1`&G1AH6VHcy<rXF?ih|8D%Cwh%f-1M_TP9qnM<t^eSF8`31B6xMOc-+NO
z{tey53-2eJxtLi_OjxdvGroezoJ=%#(b`2D7f-u*#>LRdB0E{MaM6;1dMne)#p=m|
zQ%Vm@Ec!X|tc&Mdyy&9D6!E-^wl3PaXz!v&Ik9VUEc1ek4<1YPO^S&p5_9fIQUA%w
zF@A{wpCVqS%~J&DzUrc*i(W2zyXfTdKkhPbxajQSHO6y_c-;k`jpc)rq+MJLo+5a4
zchR*FcXN@QBGyb1JtU{698!kNJ}&yY80%sji_JxU7sFkQaPjFBF~G$T7ynEV!~-Q~
z5T{E(&e17i+ZXAfE{3@v;Pt_dG=)bpq%Ov|7$xVDQ@0q;%NFF2uD?=@XE{9}Cb*dB
zf(M@Nd_FUY1@KLLYU*S+e$fYC+);X};9;`UTugUyzlR4r%wQs1{ORJ9i&-vayZD$X
zb1}!oTo-Ftt}b|}#5@<a3&+KL`shM+p}DyCA;of`OJKTq_mD!4!8*((2+G};TDl<7
zb4Y?5mnBCZZ%(ar;kyVVUhX32B4ky#Smq*<dQSCLYMxEyC8m-E5-fDFh!*x%78mlD
zNbum|BxNp7IXIn%Xp0rxzq1p6T#;VoV$z$5)slWQP5H5`vd+bN7avOVrVdH`x=wl1
z#ak}+%~9TV@ty=5Bqiq^y5pkKbcGj(yxy0$K5((o#U_cr>lgDW&}3+0vx|>da;-4@
zVsh@w*y`dF%DDK_jnDSl=Hhb~U$`*aq&{`Aoek<4<uf@XhnDPc@#=@k+An0L6;pOf
zyh~Ctce5;A?2UI~hQr32(xhLpGF=>T@gutj)9uFRH+|1O<KiHj*rdcE7vC~dRTN&|
zNk9Qw%i(3dbusyai^J>{%TiBIN{sKI+%YoolZ#(n{O00k7qo=eQ3-yL^q8cdT}tvS
zzvC`Wu-(0oA^x3szw!rL-_-b+zmt;Rc&gytzg+yye(0gPhtn?3un&7E<Ke7}bL`|E
z;NjmPsWTIl^DJYR?>A0dko2OY|MF8nf^xY8Z(Wj@pokYsl6i%PD?OBwO1jTZ6!TER
z<EwxZ#U&-U%EQ$jSc=5^P9{rAKI@a1i_Z8<xuapKtcPnnRHm2*2BEx%3LeZm(iJ_t
zv@=o3i%+CFH%%#fONx~4SMf0H3}4HMsvbD}{D~APIn^ZpI!Ukh;+T+G!^4dpZuM}R
z7l%|#O5EhdMZ)W532u?Jrlhqbef8tS?X<*0MjBAt!&R4(bvz_I+*xS<U0%G)=v3=p
zl>!gUrs5$fFD7(+wNy$n$xnN6iV1{=yFJvUlBwce5BEuMkEHcH)R%y_8b~nz-?%J?
zty4O+!q6T{Lk|yn&^+iK9`f+8hc`TQ_V9>@M?JLi(Aq;I4~;#Z^etL=XyTzM*Y(ic
z!($%m*oh}RJn7+ai8*X0!H&`e?|++K_+9$x@6v5{C!Y53jEC=^OO2f>I!zTT2PMXD
zO5WX3d2gy{>0wEm%(qiT8!!IF&I=yed3ct~T}VI2KDJSL-a}h2{^cI;^5U?)hZj9`
z^5WkJz2xC#=8^KF64Q?+U-9CfXFGU2a$0am%wMA3G(6RjHLyNOz+VTw=Hc~1F$#3?
z(AC2z52HPFV-`FN^f1Un4-Y*(^!G5p!*{<YdwJ;Np|6MDtf*;1nI_(PJVX2YdFZ%4
zK}t+;u1Mys^T{WtiBYXHgFOuKFqCD(GG3P8D~~A9Wtteyo$`F9$k`-iMtB&>bxSFe
zr-^dg69i*CjP)?n!z>TuJdF2vhOC(8VS<N=9+tLbs8f^TfTuP}Jej`8;i73`ssy~1
zpP8b~)A=djq2;p~<N3_+=QFeE!of82IN!q@4|6@tlbp-+?+;VFo0abD<zIF@kRG2V
z3~m_@Ydx%E;d!t<Eb_3}gTt762t4FGcpiK&elmqmObj@a=F<~=SYzMc>Ci*OxxK_f
zk4Lo%J}Q#;u)vESLg8Z+ughmKD9^`Ome4g1D?F_9@X`0_+SA1{56ivy;gN<v#E)9M
z`FEOll@~wX(P_F^%~G5$)_C%foHJ=Ym$BZ%n;y1#_|(H&9^UrwfrpJA)>lz-gEJdE
z(7|^+yek9#o(IO{eUIlU3&xz7bd!e<J$%BjPZyhM1~<jh#8wYqwT!{Xa!9a60w$XL
zV$WstJ&9kR&1`4K@UYM0iHG98Z_}T9*u#iDm-)iO4i7s$>|%Vl`ZsBRx;WK3!)xPo
z@!fPm&R&_d%bC4)hWOG$z1<1!hyxzJ_E0fEr2yY}I7q*IyzS##79_W)k48QYaa(yP
z>!X~HA3Pjp<+Ip49P#iYJC%o%9)9xp3_E`H@SBIDY!oxZFCLD0cy5L`c<fFNd(RN1
ziYBMb5XU|I?&0DL@dwj7Lu{BKcFhpK&Ja~+#*%+}IOX9Co4kj=7*AHwOmUj+Yo>T~
zrf5G?44NsH%oL4_B+q%+G*g^sG*~J%3ii(wlN%<f;g6Z(s#)ScF2VNhqnIDBa>+wc
zAMjDc=P4?p!7R~wmgqh!o_>YTGctJKop5G};y$kOQPM{#A6NT$bCxLKgKEE+C63M#
z56vnlGFz1P`QCo<`fO3ghnOv%nk`1n7W!;a-bV!=clfC7qoR*WKC1hu;qw*c;u;@S
zeO&9KvX3f0w#^oYXU8sl|7yX1vqd!@*Za7^=j)@zbw21qVh&$`%vTDF;d2CKZuD`J
zk6J!%^<m5rH~YB7M@=cYW=?GOr*p)SIpW_rqVimEo6i?l@}-fY_FQqhlxZ?o-09;k
zANTmE=cA5~gb&3>%142Zq>qp0#*v>sHx6Kat{_PJ$k00<cS{Z5%oS&(3{B#Sb$!r&
zPANH0)c4WA#{)hZ`ncD}eLh~FC+_$8&N@+l9$(8Ai;b8kvh&1)J|6P<;wJI1kLB~k
z)_LO4yf}1^_<U)SxO2XEV7_SVqlu3ZK1TXz>f<pV9elj%<8dF&e6;a->@}Y7@uZJu
ze6;ZKl#iX43Yz<Pnz!c1YxSBhCd?Q9e6eA^*gc<rw?!)-t$h&xHeawBOJzl^Y%KYl
zkLP`~XSjT{_4%qLwDU10E4H66sFxMZv!ZiWm|3xwoUC}s$ICum@%fy7Jp4B+s;Yuz
zz#w<@(aA?IAH99NM)!Sm_0i488$LQqg<TkMRWwoKMPF9Mn)3yNRngr?4<9{!KCBuC
ze5M))pTXhqBUSYA(bvadA47cf^U>eO03QQ=uo$T1+{J?LR53`V<}X#0&|=NBd?>3z
z6T^HAm$&Yd{MH&DE)$bAG0MkiAGQyNR{0p~W0sHEKE|>BeN6Q+&Bp{E6Mb-hO{P0D
zM4-j?Op@AY9{E$G4R34lcAoBIhL4$yttNic_)JY~M*R&%s_9~mkGVcnADWMOKGM1v
zt&1!Zr;GWLzNQOH%Ihp?AEpnB+f5gY0IPyQX2cl(FLZHD$E54S^RbwQ`S5)N44RJx
zK7P?fjwNb{(C2?~i|Pj7cPAog?bC)>$P^f2k<b7BjT-`O<E0y7sgGqoR&!&r4t=cf
zvC_vX?!JymZXBk2r6Ihs1zQaMyJNgb*ZNpT+kD(<#!A-92vjh|IU^pD`JgE__;|<1
zcWjkD-u3aGk9|JAWPzFDeIK82%lr7i$42gvdIg(&Y^4{b_|V5@?miZeDN4Ow@G%$a
z%zw3t@fNnA*9$1T&J?7d`q=Jc7enpiGdcHjy5F&YN_ZFb3%+1;t6#7~(w#oGn1aIt
zrZ^$5J#xxkZqhDEPWj5mTW=H`@cDxt_DlTG8wCwS!8Z&Yx3DEzSh3m?miU%2tXEJ|
z4!>vf_i@_C8E$_cM|}L|<2ZMOkDq)TV?|lwXP^J-Ada%q>J<>sLhAWNdd<6J{wi@X
zKl!_q|C4@M;t!wy0}!uxLf$>e>{x<k@YX3Q@RyIjC7@r2Epe7@g#9@{i2&!>jq4X&
z@bRyYf8=!PId6&od|dQVJU~}lTw>b~P%PjdB1J_zR(rcGiUuG>fGZ@pQc`jl2VO00
z!HHMN>12+vMackVf;fGp0#KlI05VN^t89RB0sm|y$_J<*?{;WVz+r=`1(iD$ToYj7
zu{#?DXdIw&fGPp12DmoB-I8A|z;#?Yz#Rdu4{$?(ngMDBs2-q3fSUu{65z%FH_=W<
zw5gP6Q6{mS9=(?M!4_@K)v4j|*YBc*BW?|FTYz^QvD*=EQ1V=z36Ag`Q9Hn$0h9o#
z0Cxqb6Ce?wAmA^`L?u_;;fjW?NCy0Uh?wGvyeoRTf;b)UM_nN}(GwYdF>u96SCsU`
zW1cvEYocy|djfRuM7;oy1pF2xMtY)tz%QAifu#2axKD!nC4E3r-fbwsg8?3r;Ne2P
z>4}}5cr@U57;(}QO#(Cx&@Mpx0FMQDJV5IJZ2~k4@I-*81MFH<!0Sl~ng@8QkW<3v
zhoca_cqTxL04=G<7p>%7GKt&yf)l&Ek|ceWUdvn02W*TnzpWg;P^hh!FJ27rQh<&D
zIt6$+fbNS|=(rRhel=kC5Wo6@_+wuj@WpEZUT4h&=q6>}2+&1>^S<aD*N@=RHwW=r
z-6fw^^^%}RfS#;pX$Hl52dEo}K9Ukptbc$30k%f?B*MS|gBX?&%|Z+gFodO&!;Lu%
z4KOUgu>ijY7#?6m05^cgAP0Q+IOYe)(o@!LfJp%+2iQ<t85>~xNagKq3h6kB#|M}o
z0XY*TxcX~lN`R>WW&|jIMQXva#54&me4LmbfJ0uNeWc6`Fe~7X&&q5`=LVP~0XYM+
z{9#j>7vM5@>W7rdU@~z(q%=thngzm;*p$@b5{*;j+W{QO=@JMI{QyCL%>h0NkP8q7
zSQlV@fG9vdz;b4UCUIv4SR7ypYo=Vmq5#bwqYa9YR#u-*7GIxO8eo~c)#_}r;d!O+
zx<u)uvNFIb?&1Jz0<2t>xb0!(nfKFgRZJ%rCDsO@z)KG+gMUw?`C^a&Zv}WS!22wI
zhB3gq0koaUAScy$yP`R%cWBAx7@WB+HN0k;b3fpQ3h?DWiH!j^1>lOCeoH=dRl$f+
ziNxU~jr=&kmH<Zr{K#FuFtIhjcMN#Z%qIc11^BO0`qKd42I#Xqu|2?N0X`4#MG*h>
zWWS_4B;Cs$B*898cS}l{JuJv?;+K=`lbkOl{i^WpeRsu=2Of~auesSJI9Pc1iOEH#
z1R@`ZLjk@I(5r#+Lx95pl5b{+KMX|nfbxAHeqwT$B#*LU$0UAcKkTDa`6jVxy29Zv
z0iHdYd?rZ#7T`GhSPoa_@Oywi0$gAt3czEwP6Rj^;LjjFE$ifr#Hj#(1vnGnEL}d9
z_&Y$OymC4g7VVr=vAxOb#wh35`~&<Gz|JQcyr{f#4gb!Vs+toVo*k9=FTlkBmjV>Y
zVg0h?*jb4giBx?zanrU$(Hx4@%piv`GZS@lqD4-4dsD@7D4s)w94h8;RSplY%9PHb
zOb%D)P$GwtITURzcr8k#dgVl^9H!>Pf}ALu!zVdWK8K%kg2!@|%i+YT%*0a4VjdzE
zib^?Llf!j6Y&(>!8H&m|T${tliHU&)sVX^C&4GZ|;U?*7IXoJQuQn#yhhoa-%Jn(^
zvORG_4%H<fW=w9%@qYr5&tX9h!<Qy*$)R5k{d1_9L#-Tc&Ed8jf2)I34!7qpBow^r
z<Zwq0wR5;LhgqSxtB}7a6dOZ9P9leb9KH<2Z=tvtiewJtUlWOR4w)RD%At7<A{W1g
z^xhoq%i(T`Ijk$eJvr2qpuVIHB)vWQ-+TP-&!K4!FGb=3$!{p>gE>6J@JdWQjdOTJ
z;ztWPjdJn3H+iec|8pYoSRsB~f@YFFk;9V`^ph(-ox?LZw9BD=4lN4hTjnq&5>4f6
z23tvH>m1tT@T|no<<PcJ@_7lu%f?ImUL;<Wpkof5BzQ^EmveYU0vg#tf>$N2^mgL4
zLVougUN6LN<j`5-E|PXF<aguhhvWAU_9*1^%%PXWy(R5a$nQ&!9*HFfux4_Yox_|Q
z2IVj~hjBTKXIk0(Sz0-aVm2c&EQh}%F+$?u5|ddmFUV|ms~F9y$cr&7-C8kcEHjc9
zE%KsEUX03%35-}=-XNZs!=xN0ORVMvFEXde;fx$+%DdBZSdkZ7<*ivcTn68At-P3<
z!@L}{9CYrW1)}Bxaqj{#KZn)}L{?Ijky#+x))GbzW)8U=hAj}5q+Skw4t5TX9BK;$
zFPGXD2+9PK$-BgBB`1`a!zc%e5iHDMQ4VkBc%mg1)7b@LeGboMlqESV&0$#%%X3(r
z!y4Kz`By9yt0Y*N!;cFDC3z8W;#xWV{)J*4x7$L&i_G>5W0|*e*uec2;;s<y<nV3|
z=X3Zchxc-LKZmb#_$G%Bn3{!Re+~z7n7>eL%wbawALg(*hmUgjEQil?_*mw8YhlK>
zaN8<z#y^pqZIXUkcz1ga7v&o)zbNGF$zew!-YLPZ9Cl04_2F30UWxZf`lX~~ewD+L
zh4F5kDmMs0RFFBC!?!tnpTiG1G_EebqlH&w_<CX9JtQY?S||>4ld{*z;g5yde#_w}
ziGP;#sHDG0dQ4Jk_?0y&S0p~pPXWpQL(=1te^TN<3*}Eq@E2=Xg3~#ik>G3&=Oie(
z=zraY;6e`n=1?v~`4Imx5qlHGLmpI-xtNPzTzpB=B4Lbq6%7H2uPEePDM7Ii;~t3x
zt_s0&rJYxYC=tdzkXK0wN=aH;(lU~k4RM>aq(X>_A!>%GRXDv;h-*SrmSWU!Lx?I8
zSC#ZyNvlbEourhxUV?k2!s-&&ko3k7H%V}_q?EiRL`x}lD-8%yJA}GO@YShZ7m3?L
zj9Db^kTfwjL(Er3|9N$$PKZQ^2SPLqQ4k^-;+_!oLS)xxln{4^ShYx`<S;EM`I!(R
z#DoheV&1JA;;FTnooiy;{X(jKi2Fhi@M=J>3vtn1>H7=ujq5YT*JmCK`7wt^As!0x
zaEM1}@Vd-B>oc54<<!<VM3WGoE)q>?*uSZI{c&)0YSfy{V_^&^-0DK=i4aeQxFJII
z2v3D*9%5OD<sqI9@l1%}Ax4B~5n^R6(J@3P#wSFp5UoSB3GrNr=R+J}sVoxDG7*af
zuR4pxql-n`5U+&jz`%xR7ozQA(SNaMAL2#YEHUXz62C0zTsdpeV)1H-4;Bj!DgRoC
z*Xh&}(Ko~!Av%ZXB`xU^V*g^nt6PY!5}#Zwv|6HjA-{(d>nSP4dP~qpQi_#bBKn2s
zA7X%1-gSu>8e(9GK}_Nj(RzvCii1Ob=*L51Y8bsl43omVJ2J#57Dfmy#Aq6@L`(=V
zQGzic#!4_wQr;Rbfx1LY3Nbmv>=1K8ObIbH#EcL#sfUju4ieMC_#w*aVf-i}0hxSk
zmXD{+V*Tun1&HT{m=|Jx7(Y742LSmX9v^?BB!}5Beu9`l4`GA|Lqs9W5LO5;gwLEV
z5q1cN8SErBE)n~dh~Jh7H$>B7nPN*t5Tfc*@$6EOW1TD&k1Q4ZO4E6%$cI=EVsVHi
zTr|WY25_m^v{Z~<D%7QdJB7n<mWn@@iofe*mQvdfnX8tG6%-5cSI840uqwpr5PRuY
zh&3VBhWKQe_$b7>5H*&G4Q%ou)`xgAL}r<ID+I5%sb`sJyG-<2CJ5dQ`9>gqkHV%9
z?=#>_#Rv3jnV7IlkaD<MN`5GBZDxf?CixWjIK-9^Te)b6T_JX}R;4gywsBub;q8)s
zCh6yrejzDkc7)g|F|~2HCj_rb%VThUnIQO*dw;q3I>a|2zGCh1N66)({qk7&fSgE~
zzRShI5Z{ORA;h;Kz6)_E#H{79<)qPa@zhnB!!#_!A0bYJ_%Xy!A%5p>S|K(p7e9yi
zWx2Rwg*Y05!(SvlCMk!%O7L5V<At0Z%SD|Pg7l=+Kt6|mN_;8=`BY17r$d|xadm_e
z5zdA<7vd5VbU<NO`SgH7a6ZI8AufdYH$<5OG4o(o{Kw9=HpA;8x5f%VP$WXp2#9b+
zgyIn>c4dS^UE}7~s6UEDXuU%4V(+>t!qe+BP4~yDN=7IZp;ClvB9xZ1Dp1LqOqmE}
zBj{@~N7rP^MfmJOs=TB<RtVyX5!PKu@oM;6rgDTT5mv6vTq~znjgZ<NYv#r2)goLc
z`PWCFDl*5f5TrFC+!$d{guxMRig0s;mJwP-xFtf(2u&g+#woQT+#2DY2=yY|7UA{?
z1rd@F?ubx3LLJIPX#P{?&Irp_h`Z?QlfqabHm?vZ8)Ocwh_nCa3c*_nO^P5QFvZ1I
z#<@;M$Z*}2BC}F7St;7C6n96c8=?P7F=eIjR>pJdM`#eCVT1=G+)E!<i2EZv5aGTk
zE^Nw>*1aur8F1@86yf0rk49(|;gJYySBf8`48gXQf}5go1a1(@pOrQ=jqq56(c_fI
z+3h7DZYIGKl0GSeKqjx|Oj)7KGZ9)8;#Kb?T1RLT;q?e_M0hsBa}i#Q__GO~XJ%K4
zcD#Em)0Wk>GtIESAail#(>M|BBRnB9^>Tz)B6O0sx*yAQi14b!HP&X9?9X(RnDR$1
zq)1<jKt4g|2wfP82)!e8jnFMZj|k^K&AclYqCj_kkjaI5N)5NIiu2wlLSM!?0vBqy
zO04@d)2~oJg$GFfKuKGDnxV{)2t!$i5sV1KA`Fi(EyDB&BO;89Fe$=hmdD!6s0d>t
zjAK}&Hh!Ltq0HJ0Kh4KSm=IxN;VRraG~>eh%xmj2=hkLe%u^yvm9;%$eLUpFO*bRL
z%n0)$%#Scj&YfMTp?RNJ!yGxBD=9Z%RsyY1Mx_fEQtMa8AM0&a2{VGlJrZG61UrHg
zAs=Bu1UG^gAr~Q(8_JhkFOc|^{TXgU8cFYH*xs&)B0SzL{$8;#!lDREBP^q9GAXoY
zF}KFQsU;D%uFY^=a+XI}A?=||<$vSc(Y4hP)<pOq!bX-T7mBbU!aEVxb1SXMycyvw
z7Q_Bn!`l(QSe@a;%K2FWelKFvcsIg(5#DFXt;tZ5o0{OV8Ji+}7-2I@Lgt#xkEDek
zOUmy&TcnZ93vX?sZ4ufpz>5p8o$=?~JT~X?IoIV*&m)<~jtDy=6v?A#9=js!j`;V)
z)R_o-BJ7Ru9k+bMU)u9wMtmay@t0EOE7tJz#D2*<z<T5P?`)5pE3bo+|E=V_ay;>U
zgdZaO9^sD&ha((`a4f>F5q^yDQ-q({xFSqhB^Iv|TUH5bAik{U7paGQ4u6YqTn@R)
zkA-5i_C$m~Bb<^}os^V^I{hWV-;!QhB`C)0bm8!9gmY5Wc}Xuu_$R^ziT{=KKj!Fo
z;<7tkHzm3HCCR73$m5DUD&|osk1O*imPeU<9JJz+UY$pYJg&-v(cml^TrwX6UZo_U
zhSK@i5&Fm_%H~lnkMj9=Im%SXg9co-fnm8OkIH%6oX0JBRLP^NT;j$&uFazwaUM4?
zaenH$JZh{K53UxMO|32$sv#+vR7>St?k35ZyDfI7W*)Wj{Qu<GHX47c)LdKA+a$d`
z&!6;Tzj*PV`tB^mZC8srau#(a@}PbKC681dz4PdkM>>y89&Pe?HV=`<-FZBm$0K>v
zl^W{hQD1_4BxOb#<Z*8v59HA>kNadC7@Yg*k;L?i7V>&f290Yyl#fF<NUr;6p1<5f
z^E{r;qj4Th@_0OtW>RxgNgtCmyIQ=pI<A2y<dF1938;3NraV;`gl7stt2|od(K3%C
z-^NRGBG+xroJuTOis$lpK97!hbjqV`9xvqaQXVf$3)|)KqSVt~+WFzK1VglUwP4a;
zk^ByYt}(w<{%RhVi}|%YUeBX@9zF7SLrQkZqpJ);XQ_%}-7d!@AD0k=K+Qd+B=z)?
z;BwG-x33(I$zyCD{qpFa$ACNr=J}hM|5f9lJci{lJdeS7(1sz>3@$NLE<rFN&qs>D
z(&Ap=LgesbfsK|LE*n2CkMVgd&0|>}6Y`jthnk0$$D}+a=P@gf*|akco{uvvkLh_#
zm6${Rnr?=~GYdHb=VbU}IB(6#V{RT<27hm2ULG|YWO&Wb$A^XxkV$%CwJ5Vj=y@1<
z{2x=_0W~%8y$uf?l_H2B2nq-yEN}8=5Gm3W5DSO}M6rNf0SgMEGzC<oSwKWZMB&|R
zHrecMl6~pD_uhN2QUnzc`JP;U`#;|~bMATOnLBsx)MT@h$uD`B#2HcF_$d!R=Y^l@
zD6bil3WeXznV5%XPUI5&N;{r1^AO9!<UEl1P2}$)r-&puH4k}$qat|>3rQ;vXSWz}
zk+pLS;zpjLOyu$56{h83dLEK_NaexLLy(7b9>x?kJmNwIpMC^Ij0e9nVu!<!VHcD%
z&K)++6*lrY>suQgJT)T^GxIPf4|DUdq=qpo53@P^&KS!cQ^iXdZ+mLs8Dr&1V_qKS
zvw1!Bsi&yM(EqTpC=ZLd1VvFaiY0k`fQF-aIF^THd05WjnuncvSdoX7oL@(bjd@tb
z#h>fEL=&D`lZSPJ*NUVLNd|%qdAN?Luqh9l^RPv9=)kr-Y!!Sx?{>jOix}S?Hg@G<
zHwTjV$>^Ru?9bZSn+G!ccmeX%*AFP-1Hv2>$r5S#uw*<Uk}e(R=q+KK&%>X2IFW~w
zV(OI0b9p$Ohd=UghW#Rec4&ci7-*c?>D~oVzMO|E0xojs=HYKC@gM1?OTx3i4zvn$
zE!T{H^H3m)f>B)M1UYQ{mxpVt#Ytmbi7<7Wrx3+&C5#p&j6zYwK17$3M&W3v$<*E_
zjbc$0k0Lh;BZ?AHKDtEZD5^wpLliegQ7($|QQQ>82~U*~Nl+?^&o&sPB}zc1Y!o+3
zv=5)XY%mJ>>Xs-fMnS-61xdO!%5Qmxsno9&#ce{~<|}7f<n}14Msar(b)u*yzEzK+
zMil>?H13Gv&aB(4Ma?Lz4^c~W?uv$W`Q>C-3s$Fg6s#jL?cWncB+AzWP*;4YCz7qr
z(sRUl0$m)?B#BuV=!uG=K@_c{XcNV~Q8bL=gF;5jDDI1*Q4~~Y9!29QpOxW$sRE6#
zj!nfBZL&Je1k)OM$`(=_o8^(MMk}%QKok!~!RV`p4H|D7#Y0g(B}S(x+C}lOl+uw3
z0v?N^y?{rfSlYy(105v#xJV9oGAxDmpNQhgD4vqi4QW*-@e5y_qj*M?yGFshU7~m{
zoA=phIAz!=w7`n6N0{ZsC|;t6CR&^57De|cA0}gY6fZ~d3I|dYzen+E6t6|`Q55~6
zcs+_YqIf@w-cdf^##>ROef3@xZ%5ICJ-9me9ahR$J*n@jUV>luRiCxFjE?fvyHQN?
z)xB$SSNh>5{}0&gYjPPrjAFO1n7vPy=^Mov(fl}yPonrbif=d!q8JdxkSK;mF_0rU
zP=llRRKTDpst1b9XW1w*L&HD~i{kSrzKUW5+ayq5MDeBQF!j|y4Hw)`l&>2Z8O5k5
zz714fpk@bZbQEKv*b*o*XDFliE{dO`_&JKPQH+aXe3XywQ81%!%_u&a`<_EFquOP{
zhhY3;VnP%@M$t{8WCmx{#3+7=f`1MC%Iq0sXVj#u^9wU-vLx|;gq;~RC5ow0T%4P;
zAd0*wqEYx!1W}lrBkav6Tuu-&bM<%>Hk)Wo&I99hCyI3qa~XPA+FMFz>crD}l06lL
z7ez|+NuJKAoATA@9@_RBLy(CgKZ==A%!*=K6w{-a!D*Er9?bR7y6|WzKKSA}S3D<b
zb`*1>m>b1Bj&Pm{_L1W0OxI6vn$I@*MDa;GNj?o*$ZowuUlhe+0ZTZl1(5vZ_&tSB
z+(WQ}H~(BuOq4URDvH%n{1wIDQLKq#Z4^hMILhiou|A58QEZB0Llivo<bi2A51eWH
zZ-nR1Y-aDU%T8zqL~e~@uYheL$!{01BZ{3_W|x57BKNREZH;RCvZ?!{IM-Z%vaUKP
z%%LoQSOCjC7RB)>PSX=kKo0VJ^=7_08O5!C7(9ikQGIoaYsgTeQGbKy*qn)?zzE}F
z6lZBRit|zY8O7ld+86n1@D%OIqq)WU8yDC$BO{DHe~U3SU;V>byjZ&u#lIZ1CF@^`
zVnM#T%&GdS#&ck<M)4mnsV0h<xW>V7G#4fcnc+X?1xyq)!Bc1&PS+?4o7k7Hc(zZw
z2Xl)E?lL|?rnm|FxL(!-Px~P#VWOlkH;BAZ<V_+=i7YLWnq^E}$yWq>Gm!>g8Rbpf
zVnQ>ao2X#oRueT%+-2fu(x_<Sb`w=iR5Ed!iOND&5y?~@!b8b}dic+EH51j%@c-iQ
zFKp^hQ+Kjn5gi5UldNIFn5GD7nW$}|u8Ddk?l!@Hw}($t_n3HMnyO=>=QK6@i%4{u
zT0BifOnkjb+fz-;F;Sn*^0d}a<sO`-3QSihuX1V7L?aW8S=I}>qA3#%O;Epqi7M08
zebYlzEqiKD6Pt)15C2JTVxp;u?l;wMW#WDlz2|AoO|&r4OmLs+iVW6hElrG_u0Aha
zpV<6Of4~I)(C5KKtCL0>6Kze5H}QjshfK6H@tTR(O}=rAM@&3r;%O6)nt04a2NQ><
ztHgB0$3DxZtM)V!(TlIp9yigE9X&(wW7AL2?HARPChnM_n#>5lI^D@cXRhIN(!?_+
zx|n#*L|6JF$L~CAh6m&D=olV@^E^jRom?Kk!n0*w5X|U{CSJ<otDCi#1-~Mahqo{z
zbzU{YlY9u?F!82|PfYYT@s^3VO}x)`Fwuh@Vd7mA@3BTR)RFm-pKmaFnRv%UuNmsg
z8EWbbHFt*EAxXp^nD~%GXr}6C;=&BoM{r+JW?p`F_9Iroi@Y{5^05gr+r}9Ddg%ZY
z15J!FG1}yxk0C$A#84B11vC1ofX~>=1?q2p9>dJ=BeP$a_)@^<BI(9(GyL-DNE7_d
zDK)<`F+#EsvqUD5r?oLAzU2$Q98?7F7~gQT&s5{)M<}T<*2MQFwyuth6Kl*h=!3}N
zw+(&{b%Kc>O-wg2!^BS}em3ElNSK&t;um&@8Q!N&GVv>ciQn04T6i};*~IK`jd~@G
zg<Fg%CU{%^%1p&O2j0(2<@oW`V>4CMgvlfm7RRRv-utB<3-7uMmNa-zK6s|GIUh@g
zH|MSiPcyvhQZtffc*~kHkrrmsOvNY_d=r6*3@3{yOyi{H&jBg7bKy{7rioc5E`1SM
zLic2;DIeA6nAkisJn(j|iFqdGo4k9}85WsXki`oHZ~`u7+fIs9enI=t&Y_*9CYG64
zZeoRrm25yUzDguhH<?&1cukgBD`1_8^#V3z`Hh@79W`cQ*lhA2*w9Iau08a1N^7+s
zXNQTMCSG*#l7n3)c5?-@@UMkECia^6GlmN>>@%^SV>pK1F&r>)&_r$wMhu5I6HVM0
z!%Z<9;aoTrDH;pqQ4_~Z95-=7$U-rk6u_hl>`JAdGI3g%KeGH86K4gV6L~(%|0#f3
zE(-X|#NPt`G4Y>(OCm3eydv^nku2+~ltsXB%|rq5t)NJVyskr8SfWKlUYx1IEHM<%
z>Xe9~WES5L!*zvHF_ezsju`HYp-c=n&r%g)xHX2d#4(hMp?nOF&QiC;;N&QL5%JFG
z`YgrwOb1+zRE*)>S?abJD#uVs@K0tAUp}o83tw)%J%*|RW<R9!RnuxQ+`T5!_*yRC
zc%5)HQay$mWMZfj15NQ=*P1ch72}y&S}pRWlwMlZj)kwvk{Lcr-4jFI7_=Dl80y6k
ziDBt1Ri7S?);5<>d9&2yQi@DY3?CP-Pw?96NVonGzF<4Oj8ZW)h~b$Sy2NmA3=Lyw
z7sJCb+!sTm7+S{AiUwP$#xXRBp($-PSB%~-Bti2Snq@IxAZ;PIcq>IUejWaSSon?j
zHX<L4p|t=q_42|m%eRf;Az}8<3g0|^gpC;sKSTdi43EXoK87b^pv?|3JTB!DcZ`Kk
zc=(Ze+Gn(xo%5vV5Yyn(F?13O)alHgYN4*q3O^tJEZZuEmt%M(hOVqgh456m7h`x{
z@Cz}REfmRltrYo}s5vUqjWc4g)?MVJR_aw&)6RJ#hBpPgCh~QWEc&fj_zG<=${5}j
z%xDh*Jw;ZTt=^4+cF4cSTrCwnB<35qAH?us40$m`W9Sn@-x$7#;ma64ilHBw+3HjF
zS`44WFgS+8h3fZ@q48`rXr%s5Cu2Yi17j$3FsJiuHGhmgD8^T2bVgCQes@j(Op=Dg
zFjT;>7(N$3HR@cK!(;f0<GEz+<QPW8FfxV-9A+_$ieYpNaVuw>$T1?n75Q}x-w4P(
zAE5%ncM=^dvOtjYy@2r|e-Qb(8)~vHKgIA1NAhs}=NPtEH71H2Gg}e6v(=;+D1VJ%
z<!nW8Y_|GMnBQY4I!8^3VXA-{bJT-#lo>-ThE*}Fj=^FnG0csHw|_P#V+=gtadr#|
zW{)95K89qBJ0IY249wxD_abRdmP-*H1<5;4M*SE94uhk)gXX9^3*_=RP@0++!;Bbs
z0_5~qc%UfNcmQM9)7nfSXK{k`H<(JzIWhb^N3|Ihna3_*=`k$i9E@RE4Am#;i(*(D
z!xFBmo3+dw#iRM&>!+U{9vM4HUmoLj2(0AHnyGD?sqrTK@%+g8If|h6a&1ivYhyUU
zr8S0iG46}Tz8Ln$upx$xG3<<CR}7nC*c{{IIBhFets#*DmG$+l^(|Cxty|+F{y1$L
z8#xAo9U{%98u9KJ_OR=lYI`Nu+{YD91l5~rJY1CIffzSY;Hb1Gk7qo@CE_dN2!~$`
zjGmaI;)ArxBejpq>&Id^9s^H3tvyyNIal2^SDlLCbPPOC?;PjvY2%L=&WIg0HSe_9
zR%b=O+CXDwCH*{?m$~7ocNb&$i))>QffoLbq1#;5*1|&;{)ypI43}fL!iCi0*KhG}
z3|F}tSSWAdzZkA@-L`Opg?pNWcMb(C6tn;fg)9`cP|O0!esfh}0YyZT`FgIJI#*E^
zw?I%r_*rw+`nl>x3pZIPW1*~tV{=t0TAQazi)566QHClKZWg|Q;9CS&w7BgA*Hdp5
z&|#jcWZ^ao|7VKUZnsd?LaqhFLNyC_Sg2*8wuL(_Oye^jE4)RiZlQ*S&ozUOws<eZ
zLhrJ`e`!md3itWkZJ~~Z`WAASx3F=Kg}N5%S$N}&@!CAa2bla*IAXy%WAJ8)&nh*G
z|81#BnxR|alSV$+<P8<?j+BK47Ft+nY2jWA4K3U+rQc_vk%gw>Kw}GEo-|l)k+Vh<
zR^*hyD4%)uou^utG@4mx&PMYTi(WD<!pFI-ES&h(Xl-#ZR1a9(U;{pR<Bb`gk&c|F
z+F0NtEI#Stv#fR&9=7nJg_kT$YGFKL;ZX~Zu~X)$$&-vRKO5~WbhPk<h0J23gN4T}
zo~vn0c_)<f=cy+xe$OTHw1ubW`9zJO-b|yDkex+7Ba%8@*mPO^oPe$to)_?f$UfUN
zs&%u_-9ldrA6eKrPrc0cwD6{dS1gR%rM)VW;57@cXYu%+`kdLuTNd82@Gh%tp@)T@
z7DzJmvM_nJG5fa=Uy$&gh29oEu<*X<43VS{IppRTeQ5SKgMpa2w$3(g|J`U<DYw`}
zqo0M3#m`Sf_7{0~cYVhEoIw@_TbOBKmW59(d}iS{3%|1yEexfT7QVMIjQwa~l!ei3
zsK1SV=W@Sbzg#lDv@m6~F<d0UR~ANa2A$AGW|?;m=8oaWsjbKJ^=~bFZSfIzPPvaF
z->{Cg)s=bN8HFbf=8m;6V2m+qRixP%W4wiV9gT_XWeY!8m_S!8{KS?SZTvRM7}!Mr
z*+M7rfefP;pD-p_`1z7y)Yj?PuWT_31l=x$eoo<Fu#mKnvXIBp59Y=#*iuB)f@yJ&
zWe!73fF-is6S`wT`_~v&TRnUxlCb#fH{yyUAm6LKmbQ3InUS&Jv0=Rk>+W+Au&};`
zzU`8+^RiK4zRKrhv@qSmll|~@+gvqY&EVV_W3Z;P*>@H<ePO%B?O~W_VX1{>bkD*9
zHrISLxt3Z;gCmWxeq=FQV5G6g!s;G6!4leBl*_=R<rY@3PzxJ4{ZW6Vg*D7R+8|y<
zeG7Dzm~yQJ)@z-}c8hZ3M{|13R~zZ!+1$-s?yl;aEd2TkHf`6)Y!QB|g_Y-XBa3o(
za4=gqWZ|#{wsyrU#x4uHdH*kk?z5n_>3aoVFK)ku10157cF@AvVPS|Y&}Y?BM=Tt*
zaDhg+Hd;7t;f#!p6BbTdc)^eSA@Y>S(_G)K8YCGA7$x99I&0ya<T@|%Pmymf&Sg@y
z^7>y~^DVr3+2A1jo1K0*LU2i#%N)kF6_dW3udZ_O=d~b?t8rYjc%lwQ#4$3Cf^i^@
zwsAZZN1-?h$5AhiNE}7tC>lqVIBt)lSRBRUC>zJkag>OMue4Mxm0K!~l5yN1(HrBq
zNdS|szvRMqTS~|O_j*eiNot+1m5YNJi<Q$W#8F-_qqoGt7iS2V_trQn#!*T1Zxf#H
z*O0Fq$A2a26P#bKRgI%&9CyW0Ee=NS5P4@D)#Iok_*{6BgEo46gsHXS_&OcATRdSY
zwd1(wRHVXRIehP?4zcjWb)`glPFz0@BMv2|a#;6rx+YSOBUeDn?K)otO3YUc;<zu4
zMseI5M~4ooVH`{5t3&hEwfU;CFiqpQpS5VOn#4h#I?dwTk%&DVRO>hvbWkngctAi)
zk*!3MzqPu0P;k`+iqZQPs5Wu1#HSXhc5yr$=axnEh~tqs9*yJWI9`e4u{hetdHg1x
zWzlgw9>-I0JRL{JIG$kVejRx-j&Ut>`Fv^4ExGS6P<&1`@U-5E7NYty)S0F_3+D4K
zGEM61-z`wj#nCm67vp#-4l>WjVXoHJE>JJTkzNqKBtn@<>PHu-ZX8GpRrfgb3i{Xc
zv>FT5t8wr#-Rp6@!7kXOy%tB^OF8<VkvHSu8Q^cRC12DTi0AwpA?O)LuQ>Y0F(3{;
z;(I5K_v7dt$GZ|G^IkkWm%Did<AXRhkBanR-wF6Ij-N(FmXuQ;N%Rwu{X~8&lFEEL
zhOfX}dtT%7!+~*p8pmgG42q-WLdB%PbiRXLdrV|V97EZgd`QTOFI2<g_#%!k<M^Bn
zE^X3pp<+9*^&Y&bJ}b^Acwb4Ij9aKivA%5Z^EvzD*k;!s6Gw`z#Jb1vO&s6G@m(B~
z<M=I(vFwOACdBb$9N))r`DD%yoP!Um@q+n1zw|<N;Njd=3)N3?{LJQJt~zR09d%@(
zx@&4=VjL^t#?ps#C&lq=9J^2EILmViEm9?>Mt+ZD3dadsERLyh<i%md5sxDp#}5sZ
z8ApuGo~v3;%b^_DKvi9&x=)SRaZoy(`?m4PKRJySsd0l0>U3PB-ddzSU!;<vFm;jg
z;_%~G8^^jhf;cj9%#CAS9Qkofi(_USv*MT@$D1pSd5hExdcM*a@~%jNmB#Eiwl7k1
z;^@3Thk$_!l=I_Q8pkpY_&65Eu_%tkVq}R(W@Mm2YF=2RmWS2HsyON|Ry59}m2An~
zxuq8?GBmh4jx|y=@$8kx`ZzXl(OYS35xJ2=A`bGKB-)NfRvI6cug|;#wnnzH@91P4
zJL1^Mc^b!FPPD~}`nx0-!EON~rMP{Z9bI%<c<?^WT&xbr0656W9>?K0j>K^yj$Mn@
zQQ?n^JjM!I8pD&vG>(=9ixm}4irOiWr{nk|jx%wbmFQn0sdJ7ilHfl@UJ!XPo4Rj%
z&fi)5PaK!B__Ba2aa@ps{^R1$wa!K_8wG3>w9&*yQyZ{R$i`hZYS|nHC}QIl8x?F6
zwNcDQX&W!_A)(0HC5#&cl(13K2LH`u66K9T-ejXxmLyN*GB(QExLL^ZBFkm%P~p0T
zTWwUdLFMX_RLREeHmXwDMrGltRz>n2m=?KiwwjG=Ta7z}Wa^z+n`d8Dv{S=IO<|}*
z-)h_7{l9J_*T&s8>e#qPnEEz1ONU8yZPc?7vBNhz80BA_lnk1rGJ0LjkSO_k1t=R0
z1YA#TXyZOH*ht96B59M^Det%WJOq!~Xm5xA7dN-@fQ<)jw6Mc_eljg>w2~zL?aL@b
zYl%K2vW<<lQX`hm7HB8A9=7pFHrJz~R%%ITs)OJcY`kdWaT^_NJYnNW8(nNXYvU<9
z+{Mw!MrS*GQ2ewV?tmrp44ZL@dVGl@$>@Dc)N`Uh+*JUY7|+{yRTP+oZokB+4L(Nh
zW}~}}m!(`fz@%3MbAt+_ui1Fr#v3;H+vhDC{6$0XCS7W5e7r=xZKH=63HOj34j)Rt
zW8+;LM{FFm@t%$MZRFXA+UQN2Hb&5bjSp?~u`$TTU>n~pQGIRnv+=Rb54q|e+4$&D
zl~}@W`0Ah7d^Zq>Ka2FYv22N&aZ;xw9+-_%^HUqcY<zCxGaExBFLlTdwQ*>PBL2e0
zmo~nVEE~@1Ou|w%+y;vvsJc`&U8+Xe7;W>&8vJNujE%49m5s4Bz7d1(Ee#FQjc;u{
zz4U)>jI;5*jqx_<55o^)|K&xwben~;=$~x-Y~wc@zuTB-gU<hIW3r83Y)le6G{|t>
zAT5kos>n}~5?S0-F?ii9Q%!cFjpa60*syHGZTK7sHf#=2*2RX)dAd4cEmhYWCu!sI
zncTEkOW9btRE_MXQ+m>RwExFam9dd;W1)>jHm2E_Zesx(ypy_NnVKP$Vnv8&+Mt|e
zW3~X|IX31Bo|k3jb8apRm03C~NF$4FEae30q?XuV*wRT={8d}VQTi=j>ZIB%Q!6=P
zZEUx(!^UbGYiz8uv0l1+t&LfYb^6a{WSi654YXimtKf|`Hf39BGsp0<uy?j`058gA
z>DQ}9xzolj&JG*<q{_RcMtcOaFR01d?YD8j#z77h4xVM<(4rAKf0#YBOwoDTX?9$n
zw@e+gahwa9gDMVA*f_~0*Fj+ir)-?Ialyt#8-Lh1W8*BB4jVP3zU)&rJMnpOj2*;L
z_ot1WY}HQcFB^Z`_}9i&8~@n2#4h6;nWz)|vrI8m{zSVX3`t_j|G4ZsVd}LkU%)}R
z<%&sg@I^J9n6ik2q7KSBxY<E52gM!ya4Dyh$Px~2bodb~olHq#Zg8M4=ZC{|hMR=x
zxLlQXFmQoh#=)~iwKEy5*K+mMa#hYj1qZh}DDU98Hd<`Cy2Zhg<)N!gt?1x32m3^`
zl7n;${rD@|59M`czun>cCdhU8nhB~oxWhq2EZj+FmgLlQaF>AU4r(~~{Y{<Z<>jiD
zgW3-6U7l0dL8V&8-45zFxJNL3V<1^+g(6_%)DwpprG9+}ISw@XP#{+q3w5gL<Ud%R
zqZ~AF(9Xfb<Q+70(9%IG2lqK><lue>%^Wm#(8NJg2Q*8AEQLjst7$NLz1-%K)I#La
zc^Va%^nim09dvACw58=0s<ngOD^wf7PpweIV^;8m8Z4TjQ-|^q2ai(U!4nQxwZ|Nu
zO@{`(b=HxggM-H%m@Cv035QmwCmlTH;LU3K3l5%kP++AZ?j%g*m8!E7J`H|GBtaK;
zToym)plcRCPoGzY|KBn1y(?8W2i+YUPU1)sFFSa}!B+{4NTApDI<GpI<6y3X*Brd=
z;0+e!V4{Ox9K7Y=ZE89g;h=|uo@{vsgB<j7@Q#BI9rSVdx&+>13pn_|!Nz@&XI85B
z*}@U+mOpYnUzBszk6ivT(q=+r&+j>X9em`VpM#G%w5~+vHZvB*wa&vMP1k6jIOy+S
zfP*cwbJnIJZ$GDPzc05>0c~AhZLot+9Sn6a%)w_4hOqSxX^*zbeSf8jeXU*IqBkzB
zf6f`<;J4p%zGQ1mH@@7SQ+lV)=x_%|{TzaOryC<3jB@a;gYO)Sc5rQ6&exnZFX>|(
z9N!X|aw)QAR%F9)?HkVYQxWoG9gK4@K~g9A`uChK4m$1DZ{L?Q-oZ_GYb2S4%#RL!
za`>tgU*O6~&x*8uPkZO2MkA9P{L1cdFwMbay5}I_z~!)aFoiwtAm(7IgORNjL)1ZD
z7B_CKu4BtVTu4V!TlLTxY!2fd`t@9oeUFp><b1PIB^{(3TzFk2-{Ol}@ErJLR;mnr
zeozqv4%V#<!HJcs@G3Rr4K>}tY?@l7W{AO=4(?o~X1}gxk$+tgzx-yXKhME@4#ETq
zCc>9V7svqH>tG>AxP!%97T9YJwmMkq@TD`Xbg+tl$gWb$9jp*AEE!>R&?@!gDs@Y>
z+|>>?aHu#SUL$g?gUl+m&Ow)kx$9|4)HZRXtx}u0xUCNJURb5{)vEn!wavkH&fMjZ
zU1EIb`kWrC)eZ+cB|9z9>~0R))oSW$wTDiwR#e{SV84R{4qr^eUk?6uaEQ~v!D$D7
zI5@&_;@}wj+QHt{ir-SayjoRVqfR*CcNHI5qfS!c2Scq<r-UKNZvviiaMr<j2Y)&^
zM`zZk-fPsjHR``3M!(|51@`qCb$pG&T6Iw{qs!K)>02ZJIJoTKio>_t(DP(&dI(7V
z>)@(H{}VaxT}&JTdq}8oO_&=$(2+o)1X?7}GJ(Pg6iJ{)0yPsTnn1AxZcgx}ITTNz
zL;^P@P%43v3EZ|;-H^bI32d9AHLI$%dqiurR{hsme|oLzTtF|K0KZFHCV`3NjA`2<
z#AOr6++q-vPv92fwd&3UDkN|#O(l4|YGlwny<!5D5@-f}=P14RTGgStK|F4)s+_=(
zlDSnx-Y&AL$Z8_*V0JHu3e^)heoB9@tL6@k+?7DB1dIe!0#&bRwG*h5z&#0cKdRrI
z!0bS;epaiSK)nQC07QKjT2(t#P9GBJ;|6Lu31|uE34C6v{<^j5=Ste3b=rxwDp!~>
zcNpIv(;FmE_C{@MalL5*_a@LVfu5g6?n}TP7Ad|?5jPU1aRN;Quzf1b)vB*k_p_`7
z*0$CdnhR+EX{1#G4<zt*0zDFVFoD(yJj+RuK$`^GCh&Ly9TRvcf$|%*ZteBT!y@ex
zcsRj#6+?!hgMddxK9)dx0WD@lm{j(*P~nLLo=l)~0?)8dt7=ar@YToqZzXkB`RN2Y
zB|yM%X91lHJ2Q4kV9?meg`)a}i(1zNo@cuy@Nxn#B=CND<C%5p#RRrKqBmcsh+j&e
z8!ZdI5%pi8t5vkuM7}DL(NU8luM2);Y~+muY8TSpl;~RtTsj+J2leD7gT0x+$aU(S
z1l~=ce*yy%`0F<9y#)Ft@G<rKMcz-KcLE<s<A0byA0f$i9%xYZP2eLA)RabCk)LRx
zx9ila_v!3M4he0p#&QSJ^GwcX;=>@3gA@2vK+`2U6>|6J)1J|WCNPZMO$QJ*LfK^G
z3mNKPiX1NT?>QO=|HuSJ(JL1pxEP(lm;@@isO0h$QGAoYjs$il@NEL$C9p7oMG1^e
zU>wJP0{IDi&yHxWQVFCJ7@xoo3CwD)CM1yL%<889DAAu1_?h!4fnO4c3o}V%p2%Ml
zm@MG81f~d}h2IkxTvaESDh%<+$vIKMW&*J+No*zXb@}?#w1sp;CPb2S1yCWUx$4zi
zbv&tg2?P>+I<roVs;ek3OwksvQ_~Wd&Y6|KoCIHV4eP}X05dskMn$@|4DqZ44y+5o
z+yr>+>ih)AGt8695-cDyBGlQ_N-a)cNdoH<Sf9Ys1ePVRI)OC_EKguX0*{TrssvVw
zdyUpB?nAh`PE}s7o?fq}H0R5+INU-pyuUu&rSNh$wIP9x?05EB0-MCQEwnZQn>jrz
zXbjBAqUkgD7;I03n-l)&7P`uc@8a^309+Juu_uAO37kscbOQSl*w2CzI3oH7I7v@x
z2gTs0t<)hZEDrZ<oH(H!P4E?9oJing0(5o4GsbaF@Z&n&;|>P`I#0I={z%|V0)Hp)
zPXcEXIG4bm30z<sc2nz;+WBm~9%`sx<j54BjZZ&cZl>5@W7exn30zL#N&^3KNpBf;
z4NGAXvs|UADH@yQKhBzl`ZcjeP{2h&H)Ndkp;}=VMO>6|QPxFK7sXuM=;9_f^t`x>
z5-v)*{LvTTMv)FJ)D12uSxw3&FNL6#i_*+8BCHPgsMK4jQ}bpQ#J7knCz8?fZrJ$m
zwg|VfRB&-?mZz!PTvT?^+C>`|Rb1TeqOlw9C#mY9nv1$F--*T@F79-3my231s=EkU
zsv2(CP(^Z-J{C2p-%>4IuP7O6ySRr%v`}}usN;r1cT-FCM1@=?smr;HMqJc)p<Fa@
zk>f&hp}WWxBiDxz+l?DzuGiEczcZKhx>tN|=;A)93wxG)BNqhBMFkH2CN7$~xSv^E
zv~ux)%Qvsl!VSk*OBdfv3%9i}oNgJ;FBZY>W?2uq;rJn-skZDLR?WpLF50<x*u_&W
z-^<1$E*^F9xQmWbI*mN$qP-jL2<qU51B^Zp7Z<mmaPg!RN;UQ}13@Pjon3Tw@w|&?
zSj4Evvo4-<ad^Gz;)WZC+P4bZlSY`to_fK>i!NSr(M?LEhlMtTJC|sR!>qgbO!D>(
z>Qxu7x!8U<=N%WXyLiJz4;MXMwA`THbiweJ3mRm9y)C^)%%omIGWB|tskHE}i}z%h
zy)OpIaD;s5q7RF6vEM~s7azI!&c#?4{ak$PVwj81U3@~FiP|6+gE?Y9i1c?cz{Nlz
zyKYb)Y*0-7)Wv5mCN7CwNN7XY^^a&z4T}_6tnnf{l!I_sgqNo;Tzu(b1ef;>YPgG=
zuSS^hD;LA(XxA~bk90B0#k~WJ(IUTgF-E}Tc{yh*805c^=(i%t@cKK>#Y`8oTzv0h
zym<J7i{D)Q&haDBAH`LA{*#NJg(05k;+HI*<l<Msld}vxnIbrFk#RBA4KJX1E}||>
z7coilTv!4UBI6=$k&Z}~vhPX(S8!5fN@O~l>i01GEPm~-f=Ovf=E@gxnv3ZIW@L40
zHZC~Z#T*w)T`Y4kmy3yug)SDk;5Br9wn>L9i7b%z;pLkxwwM!tL<BEsOI%P6-mk6M
zpq5J(mbJ>|!l<p_q#het>4rB#?6}n~x^xY9BCT<;*2Ov(>&1sHF1EVZko9MyfK4Jd
zbM=q|-<WHgFuOR+1ndw=ey4!vx)<CnU{99c>tgQ%;bCzHTpVP*l9-poAx<9`HIulD
zKZ;!(b#cnYX>t3Qi{ma%NViU|q|;&6tK*iOlTvHi`NPE-X^rwpoON-|#SKZ^n8bN$
z3M%~R;_L>+X1U<vB0HC6#hD^W{Nv&hSMp>y)GrJ9pU5j&Z~t|1HH&$JdM%3!Br)}m
z0?fsLBnpWI;=)O+uM^g;XqG9KMDZ*xkwi(s#pmTx=O)2t3TmuZDZ!<)nq>r(P2y$&
z<+6O`o&`CNZb_m-5))qv?>ui!qGA%2lDI9ab4L=D1y@Ppb^%qBs3u@#+0ZwJ>SYVw
zDNJ>dWNIYQqfnSyD+#*9A073QsGY>!Nz_S#vzycQo@6+3Ui&dpmyTVH^e?E@pRGrd
zsGmem5?T_^B+(@aJsIBTKbS=8Byy85l2B4g<0P6S(LnIM*>W2SxG#xD0!nTSpOY{&
zO`=6s=l&#`32vTc&R;FiQgADg4`lhLa|*T*{Ad!7CDAs^Ka@l}!4GGdN0Rt&L|EVU
z!u0<r#2u1&T%sM5cq*&;gn%cLct`Y~&hnj-=q#AG-^}}L63->^QxZQX(KU(Zsh`BV
zNxYE6i=y_X$d{6MC2OHu65R#AoMn#O9=h>r60c>M*OPcdFn<Rz>8&jPHv21!dnVCK
za7}5w_mX%&i7`ohokZ^>K1gCv5`&XGa|3;n=r5XmMSh&M@KF-|1ji4DgNoskB<|@R
zI>RtPk_IL*rFO`Cn#5;Ge38VLNesza7$#t767JUj<@!8{ADf4GxFn58Vx)ktlHl;W
zZh4e2qm%p_B4n=X6MU1zI7uS@Hi_@Dc&q@sMyULK662HjL6`|5f6SJ6eI!pz;uqnQ
zA}4XqCXtuKuM(Xsl6HO*@H=alWtwkP(JZ!;Fta!&z)B)6;Kwrcncc~zCIq-ilxh^Z
zmr5d?gqKa7ndCtw2qc;jIgK)#dVM*ap2Q4cDn1;p53>Z%7CGnt)105gf+SWau_hT_
zJs0vRVs)J}bWswEg;|osasf+4E)yAEXE!Ly6%t*U#HuXM3+~z^)^VK7&e_iuEQt+C
zY))cJ5*w4@&)(|ua(O8s*d)=fR!6qV3b6V`ZJU(N%gXj-cyXcIJH*wUB6lURTfm;I
z|9g|zm&I&AUVINEagdh)S<v`Xm+KpyJetI@B#x$WEREwyoJiu$6y8eVWD=*iD5X#*
zh0{qsFu~0!luO|Z7k@5ODHKiN92fs23ZyV%L(ZS{Dv3);Tu$O*5`QJ}H(TjLHDQ8Q
z;XD1=HKAnmA9l@zkiSBMebqIQ|BAdS@;{MG>atPM>~B3(!4!}}p;UP7_<Ex%oWi0C
zx$kXM9X8}pp;(H)sc~ZpH>FTQlBjk=3QR4Tg1b>s`HjA+QgwsMrNq@TDU=p#G(zRF
zDd>Gd(DM<!d<wUuaC-_>Q>c)_t)g~Y3SWI;RFu3YcWY}ms!A!G+NfF;%dMQk6Ma;b
z6y6nQh^wV=;a~wq?~o)`<jxeTi(@rXxGNRbnrb!Ku;X<)M$K9&)D{cG(Z1m+cK4*v
zI)yeV)J>sY3Xv4*r_d;c#wp~a_+eQXDX0|Y6gBh|dX_M9*#etX^-bz{edE4OszD0F
zS{e7I&@hGeo5HvF-`J%1B7c{n#(gPJ@^HB(DKt%?SqkIo83$V$1L_&~r|@dM@Gw1|
z8Pz<67Acg^F<Pd;H?<!~@sL%V*vixS49W+EB;PW}Xq&=ADLkD*rxf^yX}c62W1%TL
zEYU|;k&@vbsgI_@KX!>3I<RFVmHgu=bQC;jQ~1a0lY*a;T#WLSAIi=tJfFe~DLf;o
zT~c^fz;hzIiX6X5(HfOsOyQ*zUSVBQ=$1nF6kg^)mA`J^mVa`4$X~jYucgBOc3)57
z4N)Mb0yQbaz|<7pOXK}CdZy4Tg?4E?oJMk!dMAZJDGX+pQ6Yu*Q|O&S-xNMd;e!<Z
zmGkjFWFz>-y`Ir01)fjEGjn*#&0gQ=mkQ6f`Gh{REC1E0z_aqm^cQ|W3Ihd@;Ym}U
zrtnz`D^ggQ!jKe(rm&C$DTVuoVps}ar0^w`Wr#ZKa<o$Va1K<7P8T^Mg&$Iwkiy6m
zMx`)X$nQjs5&5;qZ$xtZf6FfZHM|Tlj1_WR3g2f_#|t>JQ2Q~3pHgsANTl#{3KLU^
zreI3yFDd*cU{W^MuL35gux3*@#eSFQloX~4$V<UG@V~peRli1J*<7{&OJrQ+d&fex
z6Jo?ABV;m#lz_CzAO%kVHT@KdZ4OJ!WEu1?FfEHOHV!YoGg6qD!Ym<Yb2bU!>BmfB
zn47{pVdiIZEl8p5egC^^FHT`;3d=ZiH}eP`ep4f|+ts<VcR6+D8y|1iT5eW{Pvxvi
zVRZ`UQ}~lDkiuH7Jnw7g#NaxP{GW|&g4d_8LBK|ln?!CFxkV)X*-BT%?d>V-5OQY<
z`%>7S!Y+yK7P&{{UXjf8&A@^O1RqV|SPBOP9};;ut8*lUuF_W2KhD)Y%byT%Qsk)=
z%GM6Al?;FIDv;GV%c(lgAo<V~W4Nia9WJEsR|<b~tTxsziu~yB$UiAuN}=YyNP{#k
zr*I{Ol4;zK#=l~xU>Zn=%lp+7{uAb!$O1x=FTbZ?A;CqmOkn~0J_@^|sNiC06wjuX
zNb}{X(5oBMxG9ZlY21-UsWeK9!fk1k5l}&7*)(oWqnzMdM201%v2j*tfdOyeR^cmV
zQ!Ay>Pg<<9FjYj}o=vTq<}a^s?A@70^)%|Ik&{LZNv)m6-2!T+`K`UM$_%yAVar^{
zb%d;!#y#28x&ro>%Z+52d+LR^J(@&ykx#Z!xdM!=juLSHMC0Bx8VbHIjb>>y7u+a~
z#sZp%Y$}pA?@wdQ?68+xWSIxkXqm;W1Uw*eZ*8>B@@)jPP2(W}hvVT4;yVtHr15wf
z9n*L;4MramNzh(E2azuqGoDD}$uwR|<MlM2O5^D?UP_}|8lBSUoW`?hJeS5Z*}Pq-
zIZyqxS@B#u%C2cVpT-MmyeJA}+|A($lRTY<1yPf-yCl7m#;a+(oXyT82IgWG>c5f3
zn`!it=v!&LEm?Y|(IZ<lGhR1HhFRW8<6U9s26>Xb)A%3_D~)&>AEx=qW_*>#h&1}9
z@lhI|r7?tKCXJ8N=%2;_)=L@xPB1><6qsOi9~<H&o7KQHK23w*P_8j34a&i3@KhWE
zk|lpKhNdwrjoq8omuY-1fcOgm)>xyYZp`?>7%tH&KZM`19GS+bG=5HFVj82_xoM0`
z<NGu>9^;!dzDr{)r`}q1_XOkoQsdh+wl6hy-ff)QtRDHvAU}GnF`n~ui<*$ek7@jn
zM%nhN<`zYrpG2AZZO4assr*YClhVjzi;XjWO=EHzzoqeeI{dI^vn`5bmo2K-L1Ri9
zt(O^7rCi#1e~bEZi;AXUrV*p72MyL}!xrTVZ>Qm;u_BF?X(ZBc)0mmYEMA4vNTuPY
z5u}lp5<T9&N-6m{293}{CJk0(S{l>SD701Oi)`0kQSH^@2E&XrZriH#t!j1}bJAFt
z#-cRlO6$!_V?KNEK<EseWEW5_NQ1KZL1QudD2;Yo)v`3$Xe5c3rqO+?ny}PZ&W_%y
z$dox~tV&~b8at?y=FxLl%T*<fO=+xSUu;zySmmv1y<qB-VU%(+J=v<ZvgxFhE#mnO
zNjh27_+zWup2nHQ2HR~Hy-njl8VA$Z!)1q~Wt-Zc=BtIqE!)&S8A}bfDGnYo1Bw}k
zn3Tp5E`SG(?%TMJ%U~*N_w9IN$ToF6jT347=i!=%lWCmdxb-l^!|62sU?Y3z;^9mh
zXVXv~8hALD#`!b~dnn@J&onNiah2KAxR}OYY5bGMr8NFd<K6@MG*53eTeG&Q%8ha_
zb9U6v{g?f<O<fVp=*n&Cy|=W|7qn|>6!6euyDH?Npoc1NY5h$N9tv+)#6KprJGQHI
zYyFLddQlJ0ZC7PHl=V=|Lvar!JbbuajoBWqy$mHi+~EChjlI$1J53=jC9-suXRe#Y
zPIZqbR)q@XJe2ovi-!tXohlw~6<kqdC6TvfQ!9IjONqA&Q&nU&k#}Tu?)0!&boOpn
zH9ahkM=I=4cS&k3548o{?LiYz$HP4y>I#mCtS6Gb(cAi2oa5oYY)y3!xxyRSRBGPq
zp`nLX9v<*;pNB^5z8$K$hsGX{OwpQnXzD@jP{j9p{JpF-6NRC-8Dx6zP*iS_Wm*a#
z|DcC=f79D}c-TX04{c~+m)_RHLmm=4)Yu)0(PbhZ@$jgJ_8z+KRJXmW9oeCZ>{O3=
zsJT-;uv2yL@VF!$enIaj;0Y;$%1=u4DUnZm=p=xAXAhf>>IBcSzdXL?gTe3XT|GSS
zp{Ivl9$xV9qK8*KyyoG@Ir>W;x_fxpLpQowB$rITo&11HD2ZQ@ijbdigZ{dQH$A-N
z;SCRrUU^IF-XiyH!Ho70KxW)d#ppY%Y-jbphu*Z{;XMhTT*^uARFofZ1d75(!jtUd
zp|6K^I~8*=a9dhGFWj!iB<@4|#6y2C+=@293%6qpCiXDM1NUX!o!t-isTb~;qR!c!
zYN&@{9_D*k;Nf!*UwHV%!z2%1dKm8E8xP-l_{zfw@nMXIQoGbhk)wqfB{H&05wP^H
zJ<w+c`g63d{+);KJs!w_u^z^G;qJ1Bb}0rX5&z)fXJ+4}CU_w8qhLmV5<ms!nkY#m
zfAuiggTqnb;WrPzd$2f7JWTO0)kD;S>496nxF0M}NaELbshE(z?+SN?F=^N?#r<`!
zUDRw2<`wEMeyqH%?s`aakb9WMVN54IWY`xgl;^?sKuJtx%0O}v&)*fMGE8SzdYJ8D
zj)$3&+S<V^0Xuhv8`vo4UN38xn&;vA#<uGQ7kXIaVXudMoXhmn!v+r<JuLOG%)?rC
zG3T|16&_Z5SR)O)QsgR;?CzU)%K#{^>$_FWCMq&TTQ5oNcB|JUiQ{CGhs_?gJ*DsR
zaJZzlh1kP(4_k#Cx?4@!t!la24i7t7i#s%8Dl;%?H%D5{FuF&SH+R(cdpO|X6c=z0
z2R$5O?|3-Ik+vvum@TkdeY{IM;)S2~-T-aHBK^3>bJB297=GsayTjV1-Rj(KHSnI?
zv30aRxcGbc$HOHLXK8k}cFx0j0X_eW{K*EHt^MWUZvhuPTogbx@|17o>Xgnr?J`@k
zM#x<CaK*#Foa2ik)FHXGivCAy?WR4dfRBPcp7;5d8Q}AbGSv5x<D;;TB0j45xWh+L
zAH{r>^>MS0;(oYw@J1gu`6%I|q>tT2a&HjHeSi#1EhRbxWqgzt%)Nq)Qc{7lpq!6e
zeN^;O-UmD779SM^u%{TvRPy;w0nZA?=O1gFt(E<7SYF>AS;Y_M@9lm#a|tRrsJAB^
zy?6S!%SSCA)qOD9>3D$}emIG0`r-Vdox77pZ6EiL>>Q5pyM5I05rU*aS=UEBNs9R3
z5TXwKY_~^gK6D?C`gqJot`EaU3m+|gC?5@cH1^TN2M5)?K2H(`_jYm;H58`)MXiyK
zSN159+{^m(@|>nVD4Y2hv`5|VV@_Fvpt&FJp*_1(P1vJa`FOy`^gXJbk6${g2Ys~h
z(N=J4Hb`%sB$c^E_FO0RkPmK%rG<wj%OfJU?@`R&XkSiyA5Zvr(np`ZS_hGji|pv*
z*loEamp`qZ@-e(b{Vw#%M<*YheUN;HJ=;uUXmU8G$pD?;Ss%~&;Ao+8SIJUzhEDvV
zkC%MR^)b&!Hy_=7eD7ntkC$0%>Gbb>yvnBVG1|u%AFum(!$%JvJ(=p`_qO_5KHm26
z_Z~Ire1w;(_6M|8&uf+Ts$OjKuk?OCKKAjBAKogwEAl-b@B8R2xR1yWM1CleYE6$6
z=qvc6EHkNA!B4XIOCSAx4DfljGX}By=7&G-7zX<on$`K#$7fkQgx#?-yu%qL%;#DD
z3qQOxU(Y*S$gg~i5HM2YsH|q~Q3b#D@r{p06SQxAT;8WGdqL+7fZD5`-m6HC<-Ft0
z-j!+`NBBxb{DY4PZ16VPG#@|u_{oRwBk<90ulm`?R6m^i6SMYz@p&d**gn5znaKiv
zWAkR2DV)N;gx==)xLBrs)Q9OKCaH<6j^!gR*cRzz`8K@@{?$@<IU|HgiA-lxJ<g^U
z;cwUpdsT)cC)!@cutsE`?Z$K;GknbSF^i*}4c=Ry+gZ)_!(Gap%f#Hk%$>;`&+~mO
z@DT}6KfppCi#Uq|)CjQH#}Xe~eQfiw`bKT3j~n-?%|4cKK+efo?qh|ImEzBOk*l)4
ztroDx$J#8jj#>8p?|yZIkQ;q$%BB|Vt6f=^vxRHIK1H=h_NnbYcKX=GLAy`w@G)$k
zqQY*`|J%nuKKA(7>tmmf{XS0mI3-C3d>qNzJm}+);KNzwsQe{&RHDa39`|uVz?6NV
zZ>O`G=LP)1IWFLAmOsbF5lt%p>El9{zbN1@ktOHmT;gEk>Kfpd09SncD}3nySAF~^
zxM&a#n`>P21r!ijP$YS}R7h~)EK?-FAt|?5z_Sy>yd?tMm`yDi;0D3`U^J6%%JQWG
z6x<)ytBf#ZMcyp3Tvmr2N`(pmst9vymaiC~lHl92OyvO8#2WQ)7qTiD0e56|?xa^@
zux5a}0^AdzZh%^Jqpwywz}*4v->;hY)w=FitWKQ(_dc&G|CLM3T#3JO>jmh$Uya?b
zQu|d-04+eP01pJv1LOv{FF>OJMgYZ(0dPR^2iJ=I>hONmAXL@~8U|<)(Qp4jyW@ar
z9H2>nW&xT9I8Z?!oz|MtfdCB$>O-p-=S;2H0rhtitwn&A0r-Q9KfCw?t?L0r{9u6A
z0UinPXn>Cns5Su}3iwB-);7Sm2Nc7a%|^Qb4+lscP~_MAsS!LDpnZU22h`&M&#T1h
z13b|phw}eG#{k6+hU8NLo~F)BJU$bh0(1`WUp}to<Cy?m0{oJ}qzs-7@EqGSgPStw
z8sPZ=^QE0%2=HQnu>r;fcqu@)0B;0%Gr*k(6?f`(4^VlKdYMgkP`$#&Z>7D;7MPs#
znn;4z1-x`ny%pf?03QeVBtVY<Jz3nGoDTx5sH^o7{9b@}0!+GDk$+csg7+n<H#=pP
zVqofr0s4qqU$&K~QJI?kvU#aCa(1MDfG-0K4=^CWzyN~+3=S|XK>BKg;nM)01sEdH
z*pUeJZ!W8bW}{U2Jir&Ue^4>?%9+Ry2h~>rMg$lW;OhXto{5YMFe<?40NYFE7My1A
zyeS?V#XwN8wBn&sz0O3w3E&;%aiI840P*w1>wh0$e1L?s?GFJa1c(MOIV9LG1@vE7
z3(nmB#!mr$X8(Q~nJALr?ymZ;0oEN<Lws#YfXM-V3-CK@;cK@JFes1L%snHiQv>8>
zHJMa#iN<4mVgX7WQdWR?06W0rUuk2$GUgQ42poylI;7kHNsckLLjay&KO+baemv#m
zcmezXL4eo(iDc+`fHs2_G3B%X(<Rz_na(H!!OQ@&0`9oR9FDXy#yqh$S1`@CIHX82
z@NmclyaWVT#Kk|ri2x_58DMFEjR7_VSQcP;fZm<;6(VoCR}ptfX)6P);(!-&t;jVZ
zpFO0SSjM^l>m|B@Q_?a>GBD%jfTy$K2*-R%+Zte7fPDe>vj+q0Ab&{h=FmE%b_UqR
zUOuE45+YX~QhP*!I(r4s?1xGn;5r$A;9!8QCv<|sht*+@)tGTT%7TtcamNB2=j=GF
z(rwfOht;V7rvqFHa5=yqoK}a`dC7H#!}YLY^lX50!ZZ5wVfAN#3jr>QSATODw+(&!
zE5OXdYS&@)PXKy&>9C@_65!teg)%6dL0^@7RlF^bL8T+=zW~>`;;CFZFsZF7m<byP
z8Qgm$Y#d5Pi)2tDgDy%Hl~gjt1QgGNy})Qmt`%+74Pua{Xtq=ar8DS|;g@2<D@B<M
zZqA?_^(RNl(o|RNnIo!v2DfCOWuRwJA%kZI7<XiFX9l-sP*I|lGPqs9Z6Yg+q*|2>
zxCx)2sxZ~E{2RCDR?nbD2G3p7>t(R{q+T-vzCln&@LeKnWl&pyF-E&PgO_(isCG{V
zZ$G6o)XiYgA^n5?1}#LyPW=q}9Z@+Mq;Azm4K#8yFf!pe1`lSSsQj_sID_vCX&W!(
zG+?7;&@hAhGGLUUQ3hri;}>WJ8-z@g44P(ee+JDmC^pDwl|l7EM)M3>WYAKW*>g0S
zViE&$Q9dB1sKydoXV4~twi!H>36D^CB!fpYXean#k!R=V<R8mm+!4jlUO@7QS}D<v
z89b4}2<eU|Gk7Y49vSq^;OPuHW$<DKFVX+sRcDdUiF`(67hVMfgy$hlQ<PmL`g{g2
z2)Iu2JD%Oxo*BH7LH7)JiYX6OAo*$rtA2@u2R>x*n&8((l6*rz@jBXD89b0QIzFVo
z%?4Dtd(KCCW$;c0A7}7M1}BfGcSYd?k?&>jeug`d465}Oz(XTH6wrsmTXa5RuVp}k
zG+X4TVj%9H3D1xml)>N(2C&T+Du#g>G(H}A?}hMtqn~ClB!i(Dd`3I<`N>r93#7vY
zGy0`~&olT!K((Xcxv~tyCHj@fW=GXXY2i_9;qN1(GZ@3slEF6_{FuQ{8GI}JSawYY
z-wA&4tVYf61y2yk==cnN5PV&S4Ariu{+z+YY~Jgszh*F*otTf#`S>k^-`QdroXTKI
z22(Rwlfl{y@-m2Ku#7g3DKmpu26Hl)n}L-<JcD!wUIw3jpxYU^86-I$&qf?J=~0!)
zVE>uOfTQ6>HkAoaP;4z1H7fY@<fxjK!E^yZ1{nb)^99U0s)%P~FpJYr@J!*EIy-|u
z%Z90x^D>xE<{^Di275~>7Sa1weL)5bGq`*-#FdVz#iFo;lk1pT${9CY{a#iv%km7j
zvg<3jvVE_w6iKj3z-p1Fo9C{}V7+w8{tPy7LS?W$gB=-c;%w?0*_^>2^NkwCa`^?}
zEgAGWrWoCt!8Wc%Ln4gwbG=-;cd~y~?rtttF=JOITx|D`*Y?N)xMaTCo58+Jc<KuS
z7wVoo2#%Ahsdg}fLm3?A02ru_a5Y${AJ5=u2FExsjwzC-Tjo-p$e_XFD#mIaQ>W=q
z26yD+&V2s5$65A8K5orN(;3FO3>L#EoR9NtJytw}iyTP9BL(wA`Bw)2N%U`#Wd0Fw
ziOneBN|ygOgR6quei3G5xF*p8`6yCLXB1+vkVr;DJ|9K%Q7j+D^HDAz`;Ms+`6!u>
z()lPO(Hrt{qW~sdI>sZxL0L*9nVXL*Dv&8FlHlfiTxXbCJ|DM8Uh<4SyDz6=J}Two
zwtNsz^7V>OsDmZz-@H<*oR2E`xIG_rkE`>8jj9r@#s(Q|Ftj<Ys^_CdKAPu;7oAs*
ztD5<!laG7yaaTV2A6K<R*3QS+<BF+w3$Tx?y7{P=j|TZ@b~GoFkNWx0^O2j+PdVe_
zV8y`C(D36Rnnd}z6GMQ?rjlRaM5u6YJ{soZzI-%df92!;d^FBSlYD%*I6O9!I&J>a
z7<TUq0|EK}$J2E{OHI6A-lg~6n}8I7<t1+unxIq_lqv#>AR;OjzyhKopooH0K}A7&
z5m3NF*-dt{n{2YX4^R*Vl%^B~>AkoA&Bt&5=j7aT=bLXPQ@)ublPM2~FL|2~+J?|B
zg!UnH4WS#8{jAy{goi_TBn0o6)-i;KMEKV+?bb1kzMaJRm|*7+9u-paxbM}48PD5<
z<o@H@!mEMqA;01G453Gedw2Vi-p4gc9;aNqo)DyD*m13I2v3IaLkK^z{6pv$!mJQJ
z3*qSy`iC$kgs~wE2;rF!UJl`v5C(>@?^5>7{OSuro)sJ<_?+P25S|x8wMoY{YQ7i(
zaR~dX<J|llYEP|6?VMLb7#hMGA-pMx85Y88A+Vr^i<8S|qQ^BlUk_oIkP$4p5JpSk
zzZJr$5H23q-W7aX@EyV8Cp2F4;zjv;qJQUO+}f{>3*q(7Ig>*8gz<C?z8}H|A&d{<
z!w`6{k3={@u*?S<6+RX|QIO6?C$#<@)X5=C4`Buir-M2rgsDQN2~yJWgx0Z4&Zi-N
zeaC<kzAeoRp=qrk2~G6#5Eg{6kPVG-p3qtZmDwSD8NydIp`bEHa9#*=g?uf@oiOP&
zKf~vq(2Nt>B9>$bOG6-E9Kz{E%8Gs2zn{>Sg|L#%_N2z`H<yQS<v#5j!4)B#I-$|I
zDui!C_)c_Ihp>h%<)qg3r1s27Z7r+#r1pIXWw?m)q{c{yKZUR^ggqhb4Pku<8$$Rw
zgkM7bd(_4dA}lvHy%1{mSEjue3=1(rFokeUCFK?^>W=Etq(g{>5D#HRU)2_LLf|VF
zom5DOgoIa8f^U+5DZz9IxkBhW=A^b+6d3syA&g|J5Wf5EVw~><w}tR)2-`#WEu*kQ
z?)7^Jb53duxKq@aLf)OB{s`eu+IBB>H*-48m+&QUAFVNje?vGzBbgESi(OU-2SfNf
z1nz~!t**G)`=JoHCDcD`^-a{n!s#Sme^TS7TSr6qFNCupoD1Pt2;8T%)t7;jA#mr?
z;~|{jO`lT#{4hZIDb~vu0s5X6az>C|=R>#<!gWRx@%KBu7{XNvPJT(qW!7&-!gwgZ
zCQe3vBZP5%m75`){6e`U$Vi%o0(rv73gZO>FB(7?dBf-t=00G^7e@Xt9trz>X@M{b
z3aKAPp)d-EQ7(+~VdUH!<TN%u3X6nMG>l?l@N=wq7^T7}Exbe+CBxW83p}aOiysSo
zbe0L@#7Y0#q^uBr5LF1HVi*liX|=<s6y`SmxF?KSywNF*x1hX=_*M<0S{T)Z*9fDg
z5c=LFLlZd-TdE8~$(4mc|FItSAMW>tQCCPkK|a>`Om7gzeGDGPqo*`23_XlSVKf$J
zAPkjvk16zO5=OQN6~Vhg%5%gSWSKnSt2GUySs2q!Y3;&z@s!p)j8<W^7TzL^mO?1M
zUkKG65YkqHJQzlsFxH&XDCb2rUX+lx7qt#ybPVI6Fdi1+o*MttWROl$DV+spoy>kT
zjK{(t=^{wdRY<omx@RQZ)a&sudWEqvj8$Pg5k~JYMuzd0MA9dW=Y{kQ<H<0d3Zq}x
zUlTnj3@%oBI_xhHenxozFa`*roU55Wva<(@@3Vq*J|_Vgc5oQ~J)>;ssJy`JgfS$H
zm%?~G3`$-O;}uaGCOWT%c@~3zyMB4I7=(m4TqLgva<w>x4ERPEZ-y~KBB3&GLHVdK
z-VWoFFeZnQI;Fi6##mPUdx5^$+Ph&8M+?3e#uy<Lp3*2B7smTxlqs)$5XQ%}^Ml#r
z!}w4FP7wSkjJ@v#7>~U((4|HW6()+>B*79zbGjZ>IaPH^7*kn6VN4HWP8f5;m=VUO
z%+ZOQF9c_X@tF`V#-Al*Q%&vju)j8+7y0Zkz7+XatgNuVHvjM`ZFNoU>oDepu_%ni
zVa(6yFAQUWT#SFk%PKj^62YZ{cVk{AoL<Yr_(nMIwL-{}*YIr^-?5b$C}LnWjWCQ|
zVf+!s56zUdVQi!&gz-I{Vf+|IE+0t+)b-3=b>$~<u44w9DR)k3W>aND7<uL?l}~G7
zrZ9|O!q^&y8Ac?GB&#EgXc$%)ZW!?}VqvssrjXcS1W#+<>{WR6Jgrgah*yF=%&g#D
zxyO|6Rp?CfreSOm=O)3;g7ke^B4O~KMZ%~k++0`P7RGPvm-4H>hCwH<?LsD<)|kiN
z!`KnVPRVc2W(w7MRaO5CV|N&r!nhp99#(xA$HF)s#=bE2)3(F-H;li+Saw=F5XM0v
ze+zo2H3|<2KTKtD61!9hQhtOM9tJs;kA`tqnS_!PVVn%(0^3D>^%VOkHmfksiSvvg
zo%A|XM<t#ftI~O1B-c-Clw1^jk}F|cWi1%UGH{K#?yX)A<A&s};JU!gFm8nrXsX-^
z<3K;<wxpAxmhMvf-<wn6j2{&Y<TbFTslu@N3{)x|eCBhdppg861q7R(@k_6efgWcx
zmRL~(#SFAF(B43C10@XHXP}{hk_Ji{JQao8T%)vsG6pI#xPh1Qs$~t7H&DUA4?hOV
z8F+PPAaE!<e_dsTm)-t>;FP>-Wdl_VJd#(fYJgj{Fv!y4YKQj&ubt7pTA<c2P}4vi
z1NR!Z$G~GBDJv?dwHV}j;O!p+#j=&!ls}?4*8+77FjRd5(Mo=_^$e8#EBmEYfd)*>
zjX>QjwO}Kqk%7hrS{P_)AYh=0fgA%t1K9=?mSo8s4tj9+NS@L%q_?6PczS_K!eIx^
zKvM%8i1_f+fNuDM9%U!1%?va*F#W+C9uPw>?u~iBfmR0E7#Q+t;LK6AwSfl>fBfMA
z-qZ_>{7U(Lv@+w2#^Wt`ueKB}3``xMb}-P<z!L^~8+eEXwLaL{z@r8pX0aIfdt;Du
z+B?zrSa8IK;F>eqV+Ohy{-LWqMcCCq>WtRiKsRwxjmPy;(!=1KG@m>!%GB>Ak(2Z>
z(AU5~1J4?G(%?on{(;eykN6S&m}>+5Std7C&aof;XK;YwpOE{E;h*wMCy#t38N{r8
zuMK8V+)$qr&f{O1ayp+k{OS5k>JS=$;lEVWir{4fuP}Ee9yal+fuRO=8TiA%FayI4
zEI06tf!7SYZeXf`X$Iaf@TP%r2HrO?!oWxa?-+QORd7ao%fKiDZyR`giF)gdcF$Rj
zo0M{o)1FJU(FRD~Gcbn6P`pX&vl<W9X~TJ0P1LalxO*qb2L{F)_=qVt{F8k?G%$fS
zc2r|MvZ8$wP$wFkj2)b8V2XiB20meNT~}Y<r+)cI;K))f>j|yTS&e7+P;<J083w*K
zFwelJ24)(VZQx4-vkZJj13RI9ZeYzT%E+_Yth3tcvl=B|h`j%g!LOLFGHPc{o#VG1
zE%&U(ZBgeMFl%TG!i`er8(3&yk>PKkx<HW198X(pV5tFG(GtTSbDQyyFI*<}x#{oh
zf6r<w46HQZ8t@FPGVm>H!9du+ckKLW0|tI%s#w}yK;M?VmSyYu1x5Zn-we-b)z4`^
z8Cb_!I2PEzM1G|(em08rhQCuQ$ws!IbN*pQ9MdzHU;}XjHY={I7NI2{3s`K1tmU#A
zk2K;|w0+KLF@_zj<gXBPn9iC?!T@hKKatH%WuI!S@*Jfk&Dg*%v{eIX1G!9jK;6P3
z{UP{ko}5hvHXHtlQ9u3=eC?dZ@z0+{fjWhkVw-_qna#pYb}*8%+IDt~-PGR<)E*m{
za!&hQoNU?@^2Df}hCkBCR{1A899q7K5+?Q-*lXYhP1nFa1N#k}G;oSZWdk&D*uXyq
z4j4FSU{n4khuB?|ZZamQ?s`w_GDcf<PFr=a>Yda6WvDgTC)n<&c3L@fPCIIV_@9Ae
zLdcH`;Xofh5+AA>JWWe8aKXSu17{7~KBvWN2G1Kf$ND|5@oIiv(-tW_PV16^%Lc9(
z$oH{YWU+GOd9_X@l|v<0sXR4c&QY%!xX!wmqt+iCB%Yd}+%j;-KpqpfX_Hr!ep5L-
zt7MtzH%ZNFBA*GEsQrmjyFe48iIU$$0TYEyY?-YTG(kxr6D!B7RPJ?ND^%K7D`KLk
ziQc9!EN0?|@ydU9RANaJrA*W@aj%KeCd!zoWTLW(vL^o9lwHn5c@x9V`zL}`FfskS
z#{Wtcg-qO*UE+Oh^?9v|iK-@#sX{Fi)l5`3QPafy_DbzqIW<hA&TBlbf@33e>Qfc}
zWU=#FZ4<YoaGHOt^5}%RChD1JZlZ;W`X(BfXk?->dz)N^7I>eDDi^eA?bU`Rf)}(d
z7c{oAfQf9=|1M}^`Yn+cj|NjjLZNCRC&Pm#v<%mUG&RvIBk49kZE50u6YWg2H#vfb
z)+XAT*xSSZ_J6>{AzNu<;*|^9gM#->3(PQ-2^Tb0>+%a)2h(rG9Zharmd)n^zb^T3
zA%Da~CllYZoK1A*y-d7s;sX<pndoBT1rslt=xU;yiM}SDG|}C}kg7^A6Hl1vA-ty`
zg^vqqG)d`g!o8qzZ=60RxXlrNJ@6k*`<Jr0i_udi`kNR)^Dyx=ORt!+a=ALBgfbu+
z;D<BUk3VDjJ2eety`%!qniwSHIg<6tU=yDg%b}dt^CtejppgtQ@sf$xO}t^^WoF#;
z*X+N>8Zj}{#Be5iOfb^k-@9p;3GNxiYs^t)>zE+-BjO6~o->p;O^h%x%Ea5IzxM(+
zXSjVq8_7Gq6L?FIn;pGF%lRm<aZaG|xoobKf7irlmZXU>roV8WSC0}o#IfQWCs@C(
zGTy|8OtXnEXsZ{s2_`0+m}2516CazH$YP%mn8cgX+9mHf7d0+Z9oSJVHC^Qn22)MU
zF!8C0X*6Tg{{zJV3NHL4&Scf+Rk(xDXC`KuIQLO-OzRxtKwD*wW}EoZ#9|XmSa%n-
zuS|T+=GjM`BccARr_MF8XsU8}LZI9Sfq6{QuI%|H7MT8~NecxR3DU`8S4(S4O?+cw
zg$W*tw9LeE6I)Aa?I&wPMyM-ItTOSPiPfe*w*M_-yQr<bs13QOo&7{>|5t#6@M}!0
zHL>ZUMxOn)+KGezCVnz;%*1gM>rAX?geJC`*kEF#i3IJ(M2Pie!ZHzKM?sq$p_(Ql
zEXk4@k9lGOcxqCV6;#ImYj2zh#95LhG>4%IH6gK0JYPbaRZ*=!S>vHjo{6N1Tqc7p
zo!8nx+QgBI8jo$_Nler%Q%2j&e#yiyk`ew%=kIkM9rZKKzJX?M&%Wn~f2!24CbqM!
znK*3XHxs{`_`}4XCU%&}dr9Lr-A)s4Z3~<)lC#T%lVACALpHziYFyHGv#FZcN84zh
zvxg>8C1=u;+I|zngKUGn)xU((`L~b*CMQK?)7kox*7-@T_a%)>jQ?Tq3c-Jwaudoy
zMLicdYWf>k@%oS5<8+nego%@U+(b|^f>S0=vnowoH*v;9hhoY_6PFkXZHDc4do~v=
zpBH1GJzQXu`5-`Y*#tKz<G|My)1NTFzl~gRe3cF4lE1gf4HGv_<cT0F;v4WSnwE(>
zw9?1@y)tNr-2Gtw*#I|iKm?y%(uzh<EP}idf42=@`Gn+;pg;s%F<nrQq>zxpf<+?!
zj%O4W=PfR2^Jge~YUHqKbdD>fA}Ad}r3flV&|{WbCc-oOP$7b{5wyzV@2OQz2z!Pt
zmo#o`Rx#pl^2QBVm{f0aph^T)Bd8Yf#~8;i2~>~xO`g3<jflUq9CsljuNm?CnR^8P
zW3fk2C*r?h-Wx&V2m%q*ji6ox{O4Ogg4&n0W>W$UBL5rNyDx%<5r3?YqkN4bD0o>T
zVb~@SG>f2l1l(*SI|3zweDAAj1UW*2g1Vp<L7U53|I1oaaZ+vcWvxX7EhByjw~yfd
zi2skc9dF%VX(hb1AcYSIc~G!T1Z{<UeOaRy^SkQ3AY<qdLB|Llir`_1kdn?q9*Lk+
zMpEcf_M;Iz7C{%0bj`?F7u4T)S?du&&j`kN80+Ej2zs$LZ4|We1SkJQu-4)MQs@&w
z-w5VMu^@^kBX}x;I}zlGqF)40M-Yy{h@gK216V;3Oo;G_pghBRiC}O91I0<nvqA<5
z{&rb=K7tn_7#hK_2wsd}NCcy=XzPkAFGbM)Bkg6DypXe(wc=N_`>tqhuV}Bb9Ij{s
zu4uy}crAk0BX}c%6UCKZD=A-I(e53hz8S%KQ5YS;hzNFG(av1aMn>>f1SGshMew%p
zcQTT9B|Y?dFM=)I)CygdF*L%i%2>g1v|%BXd>~{z8{<`t&W|Gan6@3kng}LFFe!p>
znBS|~C%knfWr~>DWSY=bjcFrJWy!N%%Bvl(YSSZ_Aqt;HFgJp)h0ly&7F(I{&m;I!
z2<`0)R(*!E7{AK!Ig(i_%oEAtjC_6s3xqGsNEQjX_akkIkfnmlGQP_rV6iiv6_WCC
zSGAQ9tP<aEGdkZ1nRC^zptaQJt=XI-_#uKHCD-G&DL-Wh3xOrDL82uIUDY<;y+uaC
zNX!T#tbz!~s}YUBieOU&n<I!t5Rbr(z@zU`)sBGEViOTK;{4;PMj@B0oWH77>!v0n
zNJWs2pv(ca*fn30%ML;0L<%`on8CM1@N)#eu)#*KJ%ZmN*cS08-2N(r>tYyNpkxzD
zSO~wfr)38c!4BF_1iK{T`y$vM!5^8@_%njt!uMn(d)br7n&rPlayWv2BKTYQ0l|YA
z%|q;YuKBNd|7Ik|A~+)aXh!m%kl&5KaUmx%@{?@H686Pw8s|uJrBAUz%DD*6M{q6j
zzq#udBL2kn%Mn}@!WrzBBHY#{IPsc4v;9g0SMMs6R=&BWU60@fZF0YMGlE+Y+-48V
zskY0M3Yoe0^va3?Z1qt*6-C}C@<mZ6ihHBTA4P#EDn(H_ih@xTilS5$rK2buMUf~<
zP+_lDG>T$T6lV;*wDdKtcl{u*1J|_M*EAv(N-~D)KH-+;Wuhn-Mfs?|LwngMa<2PA
zUKOHv@w!&LSCG776x~E#g)yhHIZ3#>kg8FCOXq4)Ot`LbSLYg0)QsXDxoSmGJL)e4
z;7-vCuWLgWDkR)ix^5KpqR5UyiQ?utwSE*0qi7UGgDA$7434j&-WNsux<*3Z#>~Qg
zB_NXLimOecsNYMa7Zp?{HHscl^o$}Hg%(9uCNc^=>OW{&36eC8qFIJFkD`U}mKn+Y
zLSAp1)jEm?gg+R?BSP9l(Kd=d>MQM{=qQr*f*k}I^P>a($?6Y@^I^fG1$;>-;hm#+
zRLEn3ly`}87j%Dh@DD?kJ=eAFQB3Nj)G)GJl~eMJQXh}vi70wUxzl)duP7)yS5_hK
z6Gh)B%2W(ehZ4%Sd4YaWJRQZ@D8@z6KZ*fS42xoT6wgF4Fp3vgaZx-Q#lgR`pNnF!
zkU@fLMk#MEP`7LdtUs9jJZrFFPL0OukSJb?;^in_VGIqFIoAXIZ)N8k47?h}&?wfa
z%7k%&0$J*S9ocst2rl`BZ*+J)inpQ|6~!A-yh&5Mp^czs3-#7@jRS+VS1Ti<*f%cl
za>*uJZe+h5MVEn1-i=~3Yv+dc4sGVVa`wKQpBAX^MY&<JIws1kRMZbAD&0CMdAqCc
zNAW=v)1#OX#rP;bjAC~?bt)}kh0^VYHX(|SnBb3;kE57Eazi7ZD3VE0d?JLB$*j;@
z*(6km{H)TnrZHeXW#H}XPotO_#g|ch6$OiQRurE{@r9K9XUt1~b?I?+UvZVS!)vxw
z6V)c%(B|+#d_$WjI&-7=Ito@FtAn`lhDPOu%nlo=g}N3NN3n!)MsbGujbd4pCz&EQ
zisey!6UBE?tfoEO&{jn8ZPee9{^AX7rI1x@(Kj_pc%lIn)<m(EWgEr%D88pbUe$h#
z;-@HnpxNKlc(G^haZ`KkruIvFe<8z$C^klsj3UJ{ys3qv{=$v8@Ng7{5X#LcA{icy
z!piU%BfqIpfuU^n2@*UZ=n8s*^nGKr^7BnC=NE;K0QQQTqSze8;VAxzVoMaqZfXzR
z(tcqtbW8hLu)!^DYZTj}U>7v>mfscs8pZY~ev=0BJ8L=9Qg#U08O1Ike`Mr;N+KDM
z*PbZ$(#E3LFTMu^|H^3o&03RN9Lz`#30ZPW<G%g>Msb3rn$nI$aWsnmqW;kUf8NrL
zu^et`<j13+^RAF;C!;te`s6(6;4ICC{jG%}7S2a;A&T2k+==316qjfl_bYsYT#n*O
z6gSw#MR7HXYf)ThFMV6PbW0=V-2NYSzpZi2=`Hs2dpP_RASdRrkY%BOg@P7fA+Lq}
zmTxLUZfoOjYxykyjES#r`-fKWI0K$yKvP+FGEm6!J8)h+iJ+*3Viqb{{#xVW7D`ws
zZ=r&Pk`_u?C~Kjdh0+$v$i+1joM2D9ODOz*^8dV|=u@q-g(?=RTBv5BmWA3Ds#~aG
zp{9j<EO43ggN}b~yshyf*&%rGwpPc&isC^|n=f`pYj8)aXQ94@kxZe51{Ut)yRL=4
z78+V;WZ@wT4_jz#Az;D0qjj+SF1?9`_Cm5PJbFh{ET|T8ECfaPfCWuR3qf6wp_*D~
zmf_7U47uYQ9<P=b?iYD0!PXg_4@KcYakdd`E7(qut3|kud;T4*qlH3sbN;xa5g)P8
z$wGGvJuGx)+E~1;l&%)e-q9Wt>|){FZ<OMBbRxYd?<R8co)#Xr@Pq{E#d64_Q<-uq
z-woAUoDBG+g{PQ)3olvdXW?lJ11vmap}#0_^#s>bFd$<dXyI8AK2OWZqYkn#IFHVo
zJ}1tOdGx^|q1Ou*UbHYSk3Kh#PWie#`pXtxu`t}iYpjU;Ij>q6YGIi0-}2~ODaqxN
zGd-pK^uX&D-mvhdg%K9d*j3Nw(Tis3D_i80ucF%Pm6vNP)E{NxZ41*aZmfZKSO^xz
zTlmnzXbbO&wY+a(j1XGRILluYKbD1%r9YgdQ)2H449?O&u)qQ*nPA}~3zNn9v4x2i
zKC!?h8<Q-&pQV4DrE?KShl|S8Itul>av^{P3a2u87UEetBj<G}OaIiuOh#g1frVKX
zZe{78Tlm7lXEdRGeqZ`9*8*Gk(!yNEVBssKHm1(8{CC%~?Nsu$hqL+a%4;5bfU6o`
zX!#yXve3dJ3oEI4CTFpQB^H)ixH?&33+4GEL>@S@OeD(%zY$!)Tc<RtvD;r|;ahQj
zXJNI4HEggqHTtso6Ulj~%?}oS<Sk;j5yMXw*3mFxTw8(l7B*1M_G@7y&DG-B3i!i9
z*n(lfwcxQeS%|PSEZ7#JRDMS}10`l*9~%>kVnX2K66!x&v(L6y9195xg^y(qxvp>o
zvcMw>Ien9q7Y}Y@k7OamB3h}W*-ahNa@i+9-^32#D}~o)i)SDIkN<4p7vWn4yZ_-Y
z#^HjR?Up~b`MbphbpC>xFGC6|y>nG%hlQQ&<<y+9m6d0AtAAS9%@kVLZ()yxz0$2k
zS1R1tjcHpIRCMTnS@_$+5er8x9I$ZE!ao-NwQz_H<ldaa7TR`HdqL;VaS{gM&*i6=
zXaDwFAYXIkP3Zs8_ADHyJwx{&nj-=yEL^j|iau%Kl(hZR7A^=mBS@XILe2@E7i@JT
z&&7=IB_WpuuLxdcE!6h+)nT-JOx$FFv#*Qc;TUdPxWi66hT<{gi6JY-bD~i&2E=g4
z4djg>UkrUpsTW^TxrjJ_%wI&zb)YX_3*^3}6pEp63`Jw0lS@R4(Ais?x7%0dnqms6
zTq1^&F+32%gE1b@iqbLU#1M?3OblgXxHpEnF_eq>-E0j(lJYTBh@ql5E5%S%NM*q)
z8J(dw^HdXFJtHYw%YO&18N)pysU=ujuuewj;d;JKJ#jXUp}vp?g7*nF6l^3&&2tiG
zAciI)$<D}?7}N}3`$Co$gC0Zc7})bLRMVK>FYVmqj~z9Op}A<b5Ns)Ue<o}zA=V~!
zZef*Sx!k)=4DDm+5Ci+VwlTC5LOu=pckmTDvKT)Na@lwa`Xe!Pis6YEddJW?hDT%Q
z5kt=y9*dz%4BcaRYK*$Ni_$fQZcLk{a1Af3sl=$jLFlX+F6ZRZ-N$2?x;@Y<hC9$%
zv*g__`0_q6eEXi-R|3)iSlv&?P(82y;&$cf82ZOx$Kb>;AckjR7#hPc=K5&%z!(n)
z$MZ2f8^fR&o)cmIe7^B8AQfJS;YAuu4EN{Nhs3~7`<G&V@5j!NOH<halE1<n<<(!M
zZ5+*hE3Zx*9>Z%fjEdpy7+#OzjhO$oGa}}{y>NF3e)7K=!)Ky7l6Tyvz9kA1A5qEQ
ziQ(NCtQeN8S4IoYjp6GUyH<>eVQdWJSON?sb@9I7$1!{m!+7C*valXMjA4Q}KN6&*
z&lum9CW>=Xj6;#W4NuPaPRSSph0{g&x!{Z#J{2-kaF!r-K8s;pUf+1W5Xo%8F9pBK
z=*(eK+xtTn^F(qwul{`u^J7>L!@?LAiEvd6i-jx~Tq3wsaG4;3Yp?hz|0aeNB3YS{
z-_6mtF?=VI)q-m>zH4LHE-7T#A7c2Cj{xyncUOT=0U;X%H{KPF2$UI;6&7v?nlVI#
zMA_kF)?D*(&#H;V5SQBFL!8b;3~mhjWB7}GP7KKyeve^C45=8>G5j3EFEQlCaK22=
zW@cZ_*~G9#R1N~~TO8n%WefYUN0c|eQ@6&jjdj5WQdQx<q+esmeplHZ13Peb<6VX;
z)#oT9{|WGMurr2TG3<?@VP)ml4(cClM8lQcF`i}uM#u-#;KK@Uw1*wna6jxDX?0%=
zBSxx>@b4H7#JCI@XJR<Wo-+o{r8z-iKjm-?M`QR;_&+pwAqDd3M`EavPp87M7>>vM
zNkp7T!$-pfC8zH^pPY<g<p=7gPiUtk2p5T;jp1Ajl?o}Bm~mEzu3VsPFV9{%)8~iB
z1TMxvyxvry&gB?)()N{kU5(+I@Rs>>I&a2sE5<|H@l71J+3;f+80UHM$P-6a9FN4&
zDGtPuH;xu@w2UKP9Qos1$gehwqd*)5<G44Dx^WbWgYRRkzN&E)j-yE2ZvsW*C?$lv
zn2_Reln_!fBd4X6j-!k?%f?YLBQGbUd>j=rl8x1TgRdmc%5hZ5$k}05i=%oRH8PT#
zLY~a0-;<Hl5>h*kIvEMAuAXojSQ8=j<7gn{KEZ~9jRYGD^6mj4Z{*Xng(!k*963T#
zp5M<0<Iu#Z3sTZlNRy%}H}q&O1;u{;{y192(T>hITF3nza@q(!5XXZ;KFy~O-Ih&x
z+ql1-4!6xA=S~P6;vhaO*fEZWgiyi<I!8W9I>*7ML$^4(3wbn-$AnPWMM&4U|6WaJ
zk2re9@njrN#qoID-|(al)3aRR#wNYuctRw-1?RQSp>JRDefxW5%OSO298bsbOdRC&
z>Mv>oGRpO<2N{HWq0o0w9M8q^dK_=W{Vg~K$MIquLxevs_=4c-eELg5UKOO~%R*j>
zBb`sDb7&mH;uxOseN9NQ&lO(ueKU>`aePT(93!Q`KVxR&cq@)kaew^b?KnP;`|r>1
z#PO~ujE>_2A@2!}5gaQxPLOr?z7P&^j2H5u-~_>s1gUdoMAk&%lj8V9$YjA8f>Yv{
zDrA}<^`|pod;Ax?Pen3Qa8|~bqs07z{(@~Pzkc^?dUo6&`8=9WpF>NCV__VN;`o};
zzN5|;yf?o-FAk2?P(oY~2S;+yL0v4qOEX?e*jn@JR9Gewl1DyPR>ZNA&NzOLV^tjA
z#u1Ohj^n#HR>!d}j`eYW?fjZJzGtm*IlLe@L*Pye#2@1LQ6xXb{k<3N3OA7dt%c(-
z#A~BqNE8@@8An7UR@~pcA)4`}*R@1WOq}G5%84Tp$EG+ovtYwPH;$wvhTIcL`}}%}
z=D{v2zh0nRlh{NxH;!@nb&@S?7jbNlV@H1d7xreOlx=KTqm;S%^{sJi$gh+9O0)b&
zWk6=|LVleAcf_$XjuUa5WKUH<-xbHcIQGZ!M;w2$$6FoP9S0-d!-lXm=%;p~x;GB)
z3lS)w{}spIas0z35XS+@#UUvN=H+09kRKK=md}wmj!JCD#FuINPZD4AeT5quFy`ap
z%T%4Bf@D0ejWcnajpG8VIF57dp9|>B+IjJ17C1ceTmk)39GBy`8pkz}Utte(P~%>0
z%;uN^I<tJ8CAnLJ?Pvdn6v9oxTY|R*@9-%g3e?H6F;4<=r!}T0pY4y&<hT9JA9#@$
zvQgMZzXYC6poop4RIqW=Mll=3ZA`N9iH#CAO4@jeYBoyQC~c#yjdnK5*eGj5x6#x_
zIUD6|)Uk1|?GLjTF6a086>L<r{Rc`V!OAwO2&pPq(?&HR)dgz^Qh9j4tb2sl60Dt(
zpO~J-QQW#Vn%Ky;QBQ94@^ZDljRrPIc-?2CVTL!d(Ky2cwm%L`h0UWC4&*kj6jW@e
z5_67VP*BU<YhwYunT_T)THAQQ#?AtI3mf;dtbPg%en@R;!)TmCQnS0-iiP=AK)s|s
zXk(6}tiG*q1iOum%76F++MMRv-bM!--E4HXx#KGyveC&#XB!;J=YagfEaXlKM~ok_
z!Es=cM{PW2ql?JtwWV^-*#bJ1d36<G>}j=!jh;5%Yp3+F@ms;1$8GfD&tFzkL7n6C
zy={MxoC(-6TV0*k$G$e66wU2fIsbg8WEa$*w$b0l7#m}446yNxjn`;1HU`>w*2YUL
zHyeX&JZIy1n;VCsdqI8Q;lN<V^NI3mL48s|{YCQG>JS?%3hMbHO6BL2qxqX83hJ-e
zAbHisP$5@S3XUnmYz((?tDt_Upx(8WQnirYtdRbOjW=z)ZQ~sqBW#Sc@s^EIatp>e
zq)d>J7w@U?F1-usgQlpj71H0eF}PLEv_kr5W}j&;q%&c>NXFTC-^K)+ix==sA^igz
zAJQ^A=Zv?pE~|-CNGCD@M+@nv8!8Nf!urQHCen0Qsx=Gi{7XC8#uOW#jik-vj4_Sz
zFn2bl+n8ZvfsKVWKD9B^#%vp3+L&eIGaFw>44(@!DiZ$ACLxl4MXRvUqOkt8Aa6~{
zTpJ`5&a*LJc%Q;L|D;p6h-vPsESK08+gQS?6v;Bd*9z;C3hS+=DAZY3Tv=3DUuk0%
zjn+ok#<w=Uqg_d1vdmZ8SZm{ZDZ@23_>Y)>v{^MQTNWwr{-cebSX|YEONuJ%n4@fU
zy&%a3AscP@zv;78!-i?Ymb#AEh}wur?I#NBtRu??>-~j#IgFfU5U24!$9X1-Bl-y&
z?%jI)M4|B%DXye!q;2fC@t2KU8=GwWZexdy%{KNG*0=GdHn!OKnFdo>|HZ~ub~Tnt
zPUKakh`!y%gQoJE4OS~Jt%yEot9rXcutyPnr;R^Z=2x{{jO}pX587c7o!7J?`feM0
z#A~nMK0y{cm1(7a+c;q3q>WQHRu<6@+BiZ3w!uO^WaBWiUqt_h{o4>VQc?MrQ5Dh2
z{}UrWX5%=`c#?Xdh+ed)PNQY1o{+L-sMGBHZCtc*$;MeJigPy3vj;1xw=L>7tMT=6
zF4$m|(a4FHS#hP5D>kl*kg+{oRDY|eAM-UE<kxA0MRk%}Hg3~C9n5fW$3`9pZ5*_9
zkmUdlavTI5<aLnGK^+J8I>_&!fWxmglyJb$`GO7#J1F9ykb@gjv<I5x@B^Rw%N2F}
zF(PgeR?PX|m;*;18kfx}DWPgPDCMBEgEEdktW?fHc_C#Tf3SiQzvp-SZois?iVi9X
zr&nbmRRpUFQipp|RTo}Eu%_TW8Q*ZbtlE+WrfPLjy{?0L4zeA8qqF)B8aQYyzV|t3
zC~0Wq`1_%m)zs|i3WqE{nd|SH7jV!-e7R3rx~QINt|<;UsG>Ul4q8oGXh(|bn!^pm
z(9*&E4!9{_Q-|v)gWNx@nS<sIS~z(8aet3B4zLh8y3&e;xmWWy|8)G9{ML>?hk*lt
z4?6y4n_0#DPk?p~+B<l~!K)5BIOxbUIOyx(A%|O?qlbf@4jysP$w4;<Ecwn39(C}T
zgD#TV|DMozRV$`<b-<yUJqHygj2C%#W>b8pR8U!Kk2@efA=t~ov{3MeAC=zX<Y*7Q
zo@CWHc-Fxn2mKs8?cj$7>N5@s?hf>KFu?H#zKT^>=xka{KXRYatC&8}!CS?2sy*jm
zFq7wCh=b=HT&SVG;DGxd^5Xavog^<g{+A1PK7851tYSL1J^Z1V&LOX%4u&}x<=|}x
z9E2I}V1$E_63J^0I0E*%gExdQo;O)^)%@KQ`9V4(TYJm#_gCas9s|C^J31Ke;6n$a
z9lYn@ea9aQ+OajbxtKo2!B_|59DifRe~Rfu26+L>2M+$+qA)uRD+VVx_@#mRiG#@w
zK63D}gTysI@`<dP8G%WHB>cRZA~EysxlMAW3a8pM2e*sqB%eB%>A-RjV@@4>#unjV
zEwk_73kORbEORj1!IuseI9TZ5D~E3d7*<^GUR<wOT%YUUYX|e#Hbp`q$$SSS|F5vf
z!D8N5H0e9JxV}`>a*rv?9em^9TN)?Z_$XzCgFVIdRZL8AeI--%mO^r+xc^4Inzpw!
zNS%r${1;}D?^)>%esZwRfxo+y1ODvb$T>N84_@zJg9F2X>0l#UpMx+<AmyK*9xS0R
zkmJ`2{~GX*eW#U{(4#Ev-WvDS=a<gTi27;?J?_A!MI}%u0f)uw;5vI12QE7k2b&#i
zagcPluL7o&&^I|qOAF#ml3WKRW#$PR6rJ?_riA`8>&w9z(b+1!!666yzq!r9uj1V9
zV3&hGg#RY^yWkE7JB6@s;fOl%PjT*duv^F;!Mz!seN0{nf7I@;jO1?z2QvI1jV<PP
zXonsA!>;U9Hu=8}jyO0fIwu7G%jh3-a6H4kR#_*7pAtNsk-xAm>#T!w4$e#0aZT`o
z;6*|9Czl*t&hRS^u4Xu=;?Ot$0`;bYTkP8t$d|xvcK!~kyrSeu_$B%OMVgiHg%Bj+
z5NrN~KQ-%M37s8R0pYz`<Zu|4b9D+QP&9#J{0d0;|BG3z{Hatt;b;Gzgg>pT1S3!Q
zdk>aMpi;u`-b)LTlu4kh@N$CX1uJBHD+=L)n#vhTl?1A0c(nwo3$Kxp)J*sT$c&a(
ztpsW(P$z+V#aBx}PoQoB^%AI`(a#prAc6Z5XqZ4FaRxHJjT8P4wY#x3N#Lf`wIaT%
zU`|Fen82n@{!N=E&@6!t33L>%<_WY+;Qj<!h_iZ0-&%OJ5@(wPS_^qVkn#r;;J@9w
zI&BkZmyx#@(xRmPPy!DN@0P$L8Q(_}=p?*zMpA8jp2sr0i;%7f^p(4JPoRfLdM5Bh
z0=*M>Jfqo5$Xg}#K0=<%$onQRJCpLK5?Cj^e*yy%nCfDhi)RuT$g)b{Mgq?!Fem{l
zfmj01B``RFB?&A|;Q0hzNZ|7XzDVH31coH=P6F>H@KOTv8~cU)3X863&dY+^O6spB
zz{x*DB@M$87@ojune>bl@_GVq2zfIjAHf8S^NV+9JLRneMv46GjBo7|c^Lob1jZyV
zmd2UDiIO^}0~IW#bFxsqQu;U+X<B(dfe$3e_yi^;@JRw6igSYCM}i*<@<tOAXkY4o
zbvikL85#K$mQ03E6Ea<HceiFg70FD&SqXfW(F|P=%ue9T1QsN)FoCZU;3OZ;1e>40
zoCM~wFiYtZO6gzINa`!R<_Y1)9l!O6i&*AQtMg0gi<$CH{ud&@3VFw62`o?GhXj61
z;F|<iB=B7Vs}oq6K<QoC{OJ2u$f^Wb4wQVhA@JAI>@^7_#sxOC$yu9#*(!%=;{>hm
z6F9P38FoSaiDtlLClF?jT{LTb0vqI}Ofc`uyKiJ{m2)_$$zX8dk%T|%$tk5%hw0?J
zvM5tERH?in5Kq8P;6MTg85{4*ZX|*23AhP(O!f+8O9IIRQfy@ja1u*ekX?FihLBUf
zS)3$$OX)u+@C$o`J=#`@VVm%arS#IJbw>DG0>3A)JApk3>_}i|!hf>-nZPcZ>n)Af
zAM6cE>l{KPC-SkvTg=|B?oHq?>HYSx#~Y;Vr<vVSA1bX6F75xQ`a6MOuEM`ghY~oP
zz{vzovDOYN|0HlMf#V7M%L3%>mIwH^;wXh()&B%Z)>l{jU*1as{DpCXO`|JMsa8+3
z|4iUQ0vDOEBI;R|A=}P%#k%SLk2s$I|8Y=_KhQrYtzSyuN&;6CxXi-rrz|S1@7tLj
zFYW(*=E(mww$P?NxtYMN1XLF}E^a4qhrOta8ZPp<$Z}E9MI{$-k=I3G7e!n!NIn-=
zOY4PP<abfP#oT^s)u)w$F6wE@pliy$(mG=<Q%2_+;ihHuqAs>J&MM~O<D~z{EAFC%
z>-YJ*O1dcJqO^-LA}J?WHskwi*{t#zUO@==#a%mAt;{49QmVM<RYt$QO0DYR<&jFs
zib^#X%r*a&@Q+DN7qwi}cENw^_qh15sX|i6#l0>XxoGU7uB4~Fiv|o;U#-X3s;boC
zLUpcgX5#O2(a^;|B~@O-%IE<X{72u!MYij&g8zJ`A2Sz39~iDEE_hRtpbO2#C>L+L
z&|Nfj@w|%{Tr_jh+(n1=$^aKFSb)O&xwzkjHPxSK(8@(HJBPfriw9gh=%S5_&MqEx
zxg7X^W!2F|JK^mGJ7naoO8Niq9ununf{(c9B!q@Rug8S<aM9C67vWt6y9rXEyNlks
z-{n4@k@R6{2!A3Y>Fr{28NX-iE0QNO@~0T*aQ`k(yXfzt%5VP64VvFF*1n5@u5azn
zve4dD2D=y}&gTRvzd2oDnb6c<bTP!ma2Kz+cu6AUFSb`$trC#-|Jd2UtFHgwZKxmv
z4imy;bLz<JF5Yx8!o?e|Ka+%OorwHrH`2vhtmP6af9mm9pi@TY^pba6yz62-O~Up6
zj*WIP*2Op%@3|P``ptwk#-;Z(>GxfK6N3+ED$NxxlfQqd!s@1_O>q5%@Dp83a`DSp
z^&{TG_1Dx>$VnZ<Ph3oKvE?Ckvc$l@d#^WBXp<+(=+j-yaB;)MO?tVQ>B4c5a52lp
zXD+^TvD(GwF1~Ov&&7P#pE$&=UuV1c(#5yWsb9G$R92tsf_uZx5nTU;@-^FCS)Fq3
z9Ls4i3tTL5v6QWHrLxe)A{UEYjQm%*J0*!i#<|SJH!fDVSnh%cdGKmmR$uAjsj~Vi
z-iQWVR-ai`CsM*GF8gZ**SJ{g`qP}kF1}|IU_ck^Tz|UVkFGygibsTS+DuKE3bo$F
zMp34GgNrp~^-X2<kPA+NsxnsP^e4lG=_2C#Q>`o)F&9U8BX&6DbnaLicVW{W%ITb;
zSEHQXw4C0poKE7p@K|eXl`fJlQZ9D0E?lHt<g%r^_}#@O7n|APxY))jklZovzqmZA
zK>b;8W;vZj!E*SO87Zf4cTu#w{!2OiWI27#&S0bR`cqAEIJ0Pni=8fZx%h+GjH!RR
zs5w}@yPIy~D#6=h)Q8IJdzsEX0V@CHVxRE+F3vZ~8CYJQb29KZ&B?_(<@JLuC(mGQ
zdHu8U`dy^(UuN0G1s4}x9Ch)Zi<2%+x!?!XF`D92DmUgm?xLH_pgZCElkvEv@M&i4
zf^x>iS$1OUd>!sBe9i^87e4R$`wa687vi1n{-m`_?4?~?b8(plc1YV&UcbUJDX$+Z
z?;90A+4uwEI?e2k#+%+^=g)r0Lq`vH*!g?N@euTo<pCb*c(~U?UJv;^RQFKBLw*kh
zJiq!_rv)jm;CBv%gz!g9VGl(-6!lQd^SiH#g2e^P2$m2mDOgIdv<J=}q;gqtmJ=*5
zNMQxfPbW#GjHI%MD#EK~B-K2y?x@4oQPV>$&u;?noK^1eKpg$JTHEs*0x!z>CSTV>
zLl2ES)bmi^Ljw=@RM7A9{FnUJ6?7t<B#k`;JpXT+;-QHU@@(F#f=<F~OWH@(0||ew
z@q0(}aKDFE9w*kIsfT7BntN#Jfs=m6R?vwpxZbLQ-XPa^@}je~_;RjqI}Z<dc+m4d
zirWab_3(OH+tpj6gxFr3Usce_AM)@p%gsZ7507~0#5G(VdU@#V;ZYCWJaqT)n1?Q&
zzp{g?Il6lPJ5Pbmbrp0<c=hnmlVSI3ch`Loxdw!%6+GeLNoLand2bJWg!J{Wy@F23
zi3)l@&p(BPXDHk~se~tw4Dj%bhu4@w4+A|s>)|C2FMAl|ac;AJWW$Rd1`BzfvGJxg
z{owg4>h$7?3`AZ-JpWt<PtJFE#ltW<+o-R4{^1V1hO%(h_<XqMpPa&j7<eKBfBwGV
z;VloNJiO^)1aY(W&>D>N{NK$yTjAt3^=%K_QvMwe?+WS0-SszXqglCqwD&xJ{Ro}p
zJd<Udhxd8kG=`_~frs%P1|;!J5+8b);NiT73m!gVE<F6^;dc)cJxucOjfWK;KJhTw
z!&DE`*lH^3XP#BtRn(_={+X5E3{s|hm_bYSu)xEoES3)gpLzJ)L%+-FOb@eIeIo;X
zKUL}c!ow{)$ZL*}*@9m(J06~|$kE#1Q=acT*TdK1HP6F)?*zU{<WRVfsfq@dc>Mhr
z<neQhJS_H`gHq#CfM?h(6*;|@d03v|f5(F>J*@IzcrZPD>)|^OXKQN>2C1th@!u2K
zOm=E(Xv{m6wQM!Z6*_-p?ReP8Hs~R-L|f-!gAnrd9_qFUk`T*PP{ZOJ<M@)h!ia~c
zhuOQ8tsX27F_z&VWs8Tn2it?^A?d+kY#v^X1zk3!(>dCr;Dm~t3>Mts1efg%q?ome
zdaj2}9?~8tqz=)ls8e&Z1f(*BKYLiWGVqIszbfjtE9xiK1=?N-Z1eD|2NGV}g*@I>
z+2LU))ja&|VV8$LJnW-aBDkiH%Cipt^f-1A+|7=0UT_cFS|sqL8{F%mN3|UC{j7^f
zkUN4pwswHcYJA{7c9I?rdN|~PF>qJ3!;%pu=^qdOX7~{{B{2iaS^LL5oRAxxVMn?x
za8kVHM}w!>B)h9lE$uW*rk1vBrCP0$epV{?9DA5bI;-`fhfD0Plc<}-We-<86i=c=
z5?4L+uB7KrqCgVY*vomi;o&ATk_7h;z2)JyhdfEYl<r7Hki0MqbruG9Y|q(rF~CAA
zZ3l-}((@+KI3CECMCV9wMkSqm=EXq4BnnY}S;^}L%N$l%8ikW6lEma{IYpEH(VWEu
zFYNJ;r!1L7sU&JA!2>HxCs8Jeib+(W{<Z)UQ#OfmNz9Ha<&&t8<abAqoVn&{k39ae
zauN^M&#96`)g*q11?P?k*mkg5l7EzfH3h3DQ9}qNt&_ofgx3<hE3cE}+f<N^s7RY&
zy(H=<(JG17N$gx4Y><SKgqrkg>b@izCebMAH@C(~G)Z!HeJ~)nrjq{j;vm~vc9LJv
zIh6BWIZ6CnNpB`M3MQcm(FL0dQm4w=Kyy)RA=pyzenEzvxGMNS5)ZOqlXx_VBbD?v
zNiInUwohX7ciC-|XqQC54(6+@6FVf)F^Pvn;SoV<KAgndc>xk$okUopvi?{SU6Obr
ziQY+cWrABO-ICbi1zS|s$w|5=(L*HUJ(GAm$@%R;@?J?WNhE!e=$pjekCozs)F&BL
zW&P=--y}(%N}``g*n!YF#|ieQrNx6J1Cw|*i9eIroy4Fdo@3gQ_&SNfEYc+RKE+!}
zY@Z)|A&FNQ8*4lfd@+gU^MXT?cqxgOlVBkatE{v9S?pIA2Ztu{x>OBsJuHdgl7`m=
zX;i!;Ywe9B-c0&!lh+8^(h^@dDv7t5sU*KZ@z{<4+tE8oyqm=6B;HG6JQL7W8$$z_
zqK-@A{Uq3?#)^;<n)C-ES-2#d^1G4`MKVEfVr6||5|fhnG>Mr>e3HcCg~4e_u;-tg
zM6ExSDS{+Zg)FPAPnUMVrZIztQCWX-cVHG<Ynx!FTG|&${JTr}Oz?A-PrV=?9J6V$
zNvxh1{3?k#EYFrIIq@!;m&E)e!buoOEJ)&wi-8}K_%VrvNi1Swl30?&w@G}*yL-yg
zB$m?#l2|4eCA0s{;WJ`I5-XEf#aj3`=lLB0)@I*6DlhV7k>F|?Kp%B23!kAPL0*)9
zFZ^S19;~eY#L}qZ_dn~Ben+&P%9ZpDf*S=xN!+fiQ%E$Eh|sEOb!^D<g3%-rNw~tT
zB+n7>g}mZI>?9nft&U2`>x+V3lJh5nX|~hDN>VtTDZe&@BoyW*u}OUUt_;xmGaGmn
zeOnU0vV)2Rf8ld{NpLH>pjfb=7u=r2Z!E6wvf25xUK#j3i5;{Ab_gp2?AiDz*~K#F
z&d+R*u0m(==hZ3k;2t&y_F5@aN?~6T`;)jr6HVf;B>qm~G;2SJ14$fA;wV!{^0j&>
ziGPw9QAIy2&5DxVRrG%uB${(X6!@M%PE$OV#0fF2<6@IENZQ^>;k3Y0;w0g7^Q?5m
zmn84!k~p8l1*YE#UKD(MxX))*(WkalE+_qSrP=RYOQKgx1u5iB;d&A`q=UVg^dD7s
z_!LNj-NJ1_l4IkQ2X3i(Qoe6i3OwGL&U`84PoYE#B~yOiSRm#1frV2jD5OvdLx*9;
ze7}1vl0wlG7wY;7#Z!LMCSmOpsj#MsUMhvMDSY~^S~`WTRrE4~l(W{#iJV^LQ>c*P
zC9GiO6sj<)6k4QEHHB&^G)UpT6so8EroD2X+HPy01{1SW<5e?-dosM1klKQEQn*)0
z-HdO&6zU7lUJ_)$hACW_qH<O}ZJ-e`g+K})EDUC+!1&+2FQ-Wg#3j>|gTH0-=Ow*P
zSJBxna#9GUP_C-qQD`Z@OVI_J3N~X@mlX<Irf`1>%ULohv`V3M3S&|jo5BMrJeWfN
z6b7WwCWW>s^kCsLVGI5B8ob)2&_0C@DRfNvA6AbFl01~c!@?gC?39srW?5DJ--z^M
zDRjxmy9((h*qt^k=SPn^<lo})j83l<o=Bm03VlTKWJcaM#j!F!&Zk7uPw?rC@8*Mf
z*n>Tj!pkYVlEOe1)NbWj@g0=Hb3z6SJ}<~~r5V)=!e2~bh!9F%O8L)pl2>U_tjGDm
zw^&>)l?o&ML=H<~cnYtH^6P>l1>X>SGldaCsQFkYKmG#^eH@j-+Zp*gLf#b|ox*z=
zd85Ty<5GA(h4CqTn8L1Sv!0l%*0~b+Koq`C24AnLPe^g86h2Skqm<w6e4N6>6efwn
zv`jpoq%b+dr=&17!}}lg|0GTq=M2G51!oG*N@13i?H4J(!Omtwv;3`emHpXYrtp>M
z%n@8DI5&l_g)q)}LgouDNa4T||9g2+#&@xhB`GY;NS38=`!|0`c0~#+Qz)E9ku+AN
z@NEjaQ`nQjcPXq+!A-%FAZt=sPg9&9Tr1A+1%D9yQSc|hb%Km`K*g*LDQu)uBvwWq
zPQl1<GlfWoN7;&(`ZXRCNjxLBQ*bgok-`sBKFJhPDgR}dol;tSe-+G4VUv)}f?HGA
zB81WYEaVr#zeZ+l%gEXDZx{Ys3cshYBO~9L0>79Ta92k1hmb#0{_kwc_p;%na5#m3
zQrMruuadAsqVrb@e+xN~341UF?uX1!yq@T+^)Ht5ZwjYUI9XLclF>Pu!hgb#WhBQ_
zIFaEeQ!pd`-^|k~oJrwq3g=SDm-hRC^X#uuxRJt5QNEbMl@zX~a7mn(Gcok(l{Ide
zU&7Z!ay=uD70S9LJWFDu!tE69WPJ0a!EY`Kk@3wdg!P+0BPk%HU>b!o5*BaKG>WA$
zAdP3zD4s@%G@7K5okmH~sg=fzdBIX?lon^1G^z<Hn?|`b%4g!KETn>9#WX5q<iXBL
z72#DglG=ayEvtGOH8PT#Y21_HGo_!YokpEB?oFev$QugQ6Re-nY>>u%!ukHm2pb7+
zEEve>us>1KP}As`#zSf3q!CQ}-}rT_`30qk+JkB6X*5lvStiu|X*3t!A|q*;hP~3S
z(^evBosmC~MnQ>+UTxACI00?bXeYkyGddm8{D$&V_;8wkD!E5N@Zsiar!+dJ@kAQE
z(|9za*<HwEf?d++nvr))<G|N`3_V2BGb4XIjb0hvI1=n5{K<@@uMmD&FyK?d`=#-8
z#<zbOS6BEs8kokjX}prgt7){AybMa?xipUN&^}qI4$kO5pT-Lr{-Tf}f-ecaO#6|r
zd~Fz-246@nj|z}?y%=~c&0#UL&cy?{cq5HB({R)9(ioA(NSam}pQiCv8l%$qB#p@|
z&-uZ((|DglI%&L<<~;4-yJ?J0BW4BPOJhtLW7Dvf1YcYdT+GV~@?CLU8g!D3Pvb+j
zf;2u#`!BIf178A<-p=6=#K&oLTNUJ60r|u<CZ$2bYiu<R^r1y0z>m;H)%2;fmct6K
zX=zN)aK50<Ok-9W-=(oSjnC5fJdNdPe3Ql(Y0OSzaT*-4`I1GtI5;<ruhaNS_>o+7
zP8#uQI_2}yn4k8)6c(kifJS&Ohu1<14+Kc2ul2FPF#nrwNg5BX%wC$trbWS>PWG}4
zSwS<Xrt@>2-%2Zm)458>x5T&AE48#WX{=3SLmC_TnAjHhJ`Eb%!Ztw;R{W6m$FF`A
z{3(rfLO77MK0`ujgwu$yu?$lA^2yIP+JlkyU*pX*mj?Uq?NJs!>w=kLi%7#^w=f)>
zCPXYV9Er5g?>dP`62W8|sWb}YqF^r4Y2>D{Cyl+#Q5u`m_$7_4w6sNmEo^<2bAC>v
zVr}iQ{n=Nl>HId?md3AXj$kXhS#DwgJEWq269Y&LQhrb4q7|fJ>`Y@9Qz*WF3Q|bh
zSbaN(gu^LrOJ!dg`_nj=#`!e<qFtqNf;Bika3JlEUHqHI5mut`LxP6||6!Y57Ni14
zme|CO(ze;}RoDOHBe;(G#~zh<oW{mcm-;yziaD9asWeWfQUBM#8L5=JRdY5|LA>Jy
zCYwRhxRb`EG%lxcgT-hEucX0&7rvEUqwxsmS0}6cdK$duJ*&{Ge<FA@jaz99zF#Fj
z+f$`Q<;g|fT)$)C*Gg8dZ)3>yzhx%Y(unzTkv|vYloJc(qHr!M<)U&f_AU$-$whg#
z&BdJPg<`oVp6h=RkMM$Ja#13e6RWaI3X+t{Md=KuWtPqLn<U#^xm>U%vZyQMqGB#M
za>&@StLtpYRdP`^7j<({FBi*gjbEeHa#1}OHFA9mubGQ`aybYbB(Ih0cguBhac?ea
z3-2~p;p;04pZQ|O**xp#qCqaQbD`w=pDOnWHqJ#uAsm8elnWv&B_I;&G|5HJ>N=Z%
zDmT({p$o~$<sW~P9is5={9tUFi)OiK$-M7Yn&*Pn^3y%q(CWU~v=Ar1AnwooKc>C|
zYHH$p8y>0%QUnB%-pjsQlA-smC{k=FqBI3WK@<fkQj{u1rGubUse*!{f`|%ivZ=e9
zWI^c&3L@AM+xKMnz5nx_lXK5AckayGxpU_xo1M&{brNJUix(x^CDA^KSCV)&i4IA0
zOybcb1|-obiOxyfm&E-^bV;IX68vSycgWq6;gsx|#Jy67?n&I4#9c}BNP<6z?v|9m
ziX=$yNrpef2zn(^=1Qbb5`B|gsu%5@42PaSPiPSS%I58rc6)&1TU9)m#6vXB$_Uk?
zuk!t8za-XG6@&LF4=3?R68&qb{iP&1?e-~;CGmKYJE`L7B)+IB1|~5miNREFwPLPP
zUjIyawxBX3iJ_GFOnD-S;dGc8VOV%la)wFDAKfD)|0zi+kXWspsw$pI;#mg#Bt|7M
zItkXs7~Aklgl`_6WB2K?Un(yrF*b=8lHt#{2}!(|3}3U1m$cs@WgLg2hDu+0N&4rj
zYoo*y>0n7rW;bt%GoJIsh?<MjW2YoBHOU<>!;sDwJJXW<LqwUL#CNNdTR&1}u-8fW
zNd!sEN@8{rdz1J$i8)EkP2#O2R&$J!n3u$YBo-zyKN-F~=9J`{K)wSfem#jdqz|u5
z;>{!$C9y1t<-86mi<4NA#8T-_OwyfbBKj3EFM<`)P#sGq$mbivRh*$;g|7<NB=I)u
zq_1)YC9yUMz9v1gQdyS_UsLnm!H%p?;vc%)mkK$&iEK(@YZBX%;cf9<NjFQnC5h_U
zD4E;ocr9bR_q~_I4tDKSgvs#ck_>N%ymm?Oei9!@uv^kS`MDn^@lig$qnh|6iBFTT
zlW>yQm&E=g4l|5%;wNz+iLYp`Rm$h=_*#Y67ZMy~)~8|e%VhX^mVm#BD0WB+Zy1Fn
zhlx)0xnd-tvrhTyZ#3U<O3b@V6TbYB^VgDMlx$T^xUx2nk>RHV-x;Qp$Vg6BQgZm$
z0PS-o2p?(K-&_($lQ>3~o*p@!#2Gp#W7pjHH%T0)zx^INLAxb!DjB}C;kz2Xy<sjd
zzSudN1pf#5kul+|7>D3o65n!w)+oHrCvhPkf0xAf5?_?`lB7T6=U$fJ&i%?2j>0~L
zRb5Tu!D^!9fyggO{7RF41NR&Jmc;MmXYf!4e<X2@PH1Aji9eILp2R&mdg}au3xCt>
zTKEg%AC3;^vWET|{!5~OhNc>tX(*@x8Y*kJT|*%ag*BAXP*y_`4MjDS&~UScVj7BT
zSU5S(t)6d^wKdomYuhZWw%5UENe!hmy#7P1w1#ghC7!EMFs>B5MGH5M-mq8s^}Sey
z3yE^Fcm)j=HQXw3c}btICRi;?y<ICoaGQoo8s6L)KfO5o8C6BY9U5wBs7(!T%B#xa
z$%21gi&WE4U4u78t)Zc&%wle4XPlJGIvVO~Xrdvaq23K`H8j-lbg_7SNr#n)H`35p
z!-CRkxjPD;SP^@4W$c|9YVEyBo`$G~xQ2v=m<Br<AGI@n<yG~KYU2A@F-3!_aan)Z
z@k1Xedxphx>*G|LJ+1I(q`8I`8aip{tbto(x75J0tf7^L){^sVi-K)5wAIi~LwgM!
zG<1|z@sOqus)+}e#dy7py!A?ghqO{3mhGaUtA=hGx@$Z^9uH`^Q^Q>v?$&UR2HJM?
zg+vco3BmZ1v7Q?4Wm~k^UL{^S{0-Yn=6?2fq_+mrK9cs8^uWvU`@f10+7a6wjX$Wt
zdLaI=hKDrt(?AZ(y4Av;07K*gq(?Oj(6Ca&Dh-cmcwECY4bwFY)G$cH^BTr#7_4FI
z@yKuuBP19i=}-+%NWiQoHGEt%HcTe_HHbf@;Yu}8dQ5DThLI9KEh(AL(A4D<1fw-j
zfY-Ac#z_2}hO3`N$T`DpE4XEZhDjPGYj{z^I1S@9O!z%Ak;yX=f|q1+0)6|1Fu9>@
z9)Ft`<bMrcBwp4qh5Ri_!+L6>Ox{%b!?tMCX^~enyh^Nr!ZYY#??z^7m_^U|B2l`!
zh<>DyKU>2b4Rfi|j>xoMqvR00reU7s%$JlL*0zvSL&F>NY7Hwiymu<vu)0{JVF^dJ
zx*%Rm=d3O$yi{_?T&7`pKIQ?1)SP$rw=}HQu!A*dSfk->cCf3uQNueLei<Kmy1LjP
z!CDRLBp`FW1XOrIby44qZPM_rhRvKi+31$)Vw(oTiEQCmXke0eSSHQtV!MW=4HIPU
z)UZp#9t|IAcwYmLSmI%?JXYxg+GKjzwcQ$euMI86>mv=HYS<_HvRA{!>f&R1czfj&
z$thAp?5E3VIIQ8}Eed;dK*JYuP>4U5;2<N?v<Q=5=JUVOa7YdxnXznygMO)<lGM2L
z8al%ZgO!dVIt&da+u9rblRnHjtKl32kp@SDt0AZ1D035PT2f!qjHFq{5DA!Dt%k4~
zsDb1V@H(d9cz*8J5_}^mvrcF@De)-{XEdDEa9So?)ex+T0+AgGD<nRz;gKoIj~x1#
zdO_pv_hIsT4VN_hKr6{4IS<zm<7$Y@G)@h{B(Fo;lq>Xe4L@o4S;KD{e&?hX>MxT1
z%9xx`->f0Xc_^X&LGP0In#?7B`(Tt=*EReloBmrv0X@`#*FPHmmCXMn9XCa}!7r!-
zQl?P8B(sX@D5j&fjygJu>$pir1sxUjuooqCl+tmFj+<qYoRSi-U#0UoWp$Lv$K;pO
z!w%l6qr8q?vZti%X}eO1+jOLAh#ER7>8PxOoZEF=tRbrDs3MbhNJ@THDM?VGrl>Au
zh<VkN0=0D95U8u8o{nZZn(L^qqk)c?j<}A7vPeYIMv^v`w27pwhmGdt<EV}%H3gXo
z9m|BuOXyG}R`WR=h^GG^rv>#N6K}7hgN~LuTIpylIb^og(MIAqJyj-owaZU-)X_;t
zcO7?1PG=omb##-s3x^<~vPh4bf`FxNRC1S&yLE(oc3j7&lVbmub+3+IIyxHYWT3Z>
zK05lP@Nf!!b=;@J(c$X2U&jMFX6l%w<3Sw{>3CYlGnC{Q=@_JAunul^@rb04>gcbB
z-&pbDUK|5-Jf`DunZ=Ed2GT>GiZ`kpA6-*$E2N1R;zM*iq2oz9(oON9I@b%uS=BK1
zaeidDjuASzjT^t8dP>K8J>x7gQV(~lm|s(r*&Sz9qjYcq+p{{xu&f>~lH`IneqaBb
zj_0X{j%hmhA^cb!lXbkThqvPwbi63RI7!JFFTqQaPS7zipFc?gu4m(iPE%OCh~N$b
zq)blN@rsTa9EGCdRSwo^^-xX0MQdAX3gx(Rx~3p!Hf>I|b?nqJSI28Q-qNvJ$2=YL
zbu6VP=vbg*p^im57VF`P$Jcedq2o>J@NSF?9l13emswt~DY%l5s}?KP65OL~i4N{q
z*n3obIgO@+{pEtd`uk%mb*$3E#f`CAqE{`!HGw=UaE*?)b!^hP-U;vMSgT{bjtx52
z>EUWmE+ZUSOK_ne0T(oKcf^hCR4u`a?QYhwMaMQB+jSH^s&cg?Wwuhco#9eCu7TX4
zhpSJi(%M>rU>EDu@wtwJIzG^`TgPWQ&Qy%=(ea^<k9B-Pd+OjKQtGx>=U&_~E|?@{
zZJ*K!_s90>*sq5x3Cn&E=c>i_k$AYubb0Imh4T_@m-GuAUvgeEnCtjT@(=4cqT`Sr
zE`4M{7EjVLJ7by-U4pxMtK8|4)}zifj;bc7`Tm%#hYKue1WU((T7uwsEy0DgX&o6l
zRSH#8$m;MI%2Ftig0CZ>H|qFFM^4949p`mi&~Z%Gb5_SW9bZd_`6l0gj!SSt(vvz)
zNpLzp_lzE%`AhfX%Ght^m{zPUuGJDuen%td_(8{Ih8GTBsc<zf*S->5x{=%&uIl_z
z#}#>T|2p~u$C1wPGaX*XZ#sVGSjZ)*-0SjJJzSm3;%x2@-U?GFnhNK_H64HE>vNsI
z0(AVX<DYy^!4&?L_`iHkfmFEYlm#J+6BJ6Ja6XRL7R6F1o&uK;hxV+gkg|_Fv-svz
z_>EYZ6w0PhGKEqp+>*k*wMDbf5~WihCFVx5WZqX^DVIWp6e>!5YYOEh;HE3gx=rHB
zlJc92N-2<%f4k%mRACcmVg%JvsGdUe6k4QEBZZnN<fRZzp;ijDQ>dRpgB0qd!tKKN
zjcwf&o~<puT^w#FUN04XDaKDW8m7=F6@G^sNrj)h@dGz*Db_fJCMn$5Ta1+7jBp>G
zSPJnJ5-BJtoTw6?S6f7%h;bVn?wq5h&@_ctj;r<Fi-{Dt2hMi(T8hnF5T|g<RQSDf
z+Z5W-M8jjPQsHOFty5@|3cudv2h^m8YK!(MbWEWWZA+aWjr02*ejw91g)S-dPKDd*
zc9o;RkA?4*pj!&vCAc$%yCmq50{6e=klihl_ejcQ&lEOy4%f=|lGdO>zV8(8lLEgA
zB(pCKn=g641P@SQ2_DMlbH|%UQs|$;wG{qL;n5TZr0`Y>t5bL^g~wBvn8KtK2Bt75
zh0!#13WHPOJ>tm}hNUnhg`sSvq<A6~#`Y(wDCcSm<_=F`L<+y1jEzcxn=Cz*3hxDj
zhKGMsj+9M5ox(E`OqE-%mEIrgcPKt4h38UuA%z!HXmu$5d@9_0Z)__3HkliU@q=Q1
zUpy{_@hQ3OTM93w!kZVXC9V2RjNkLJX?|-wIfa)~cs+$TQkX(*Q+O?fdF;!D__P$J
zvoFJ=#6KNZUrFIrx=Q8v45{a=6lTig{p%DmsrhWlpOeB|3CQ8s&GS=OkV4%$VqpsW
znwXyn7p)^msVy~mGlfMdEK6az)N?WYTw08GK<dU1nU|(Oz?&w&N?wt|$`n?yr~Ev5
zH<yowJDs+xpwM({Qh1vtN?~sb@35*AwxzH=g>_Q@O)0#a!uk|8$W}I{P^3_T#ra9{
zN0zcVg)J#;O@TYC@^(zi@P_+KiSVvnwvw_Vh4)hUK-RO9o;g3VD+SDm@Z;#mIwjth
zrMN2{`MXotLmQ5cb$BZNp_IS5eYh#>$DBtg{F(~)wEQ%MeJN-u=qc=%e#ps1SLF4X
zOdd$#a|sSg`h}!lrtp;nhf+8q!C^^R>Z>);WIk?RN2F3PQt+g=@Ov)qi$yOo8O<ce
zmei4ye3zD#IFrxGN-%nD+?OEWL{8yo3ddyfdr7}e;ZzEzCH^Lb;}V>Zly#n@0$0OE
z&oCUVj-QwOvyz_6m-&_<u}=6q`hw(qm(S;}Qx{XXl)?{^b5+vIlKz-4bA{e6cj5a<
za(>R||H3HubvWy}kK%7B{GLMQ<~XlEB$%)%c0Gl^7;FvPX5epzg8h-g28tN?hrvIE
z|5E6ACI%y<1tcvfDU&1Xh(iA#r>GIevEl}9GEhunCK=F57`WNMEe1*(|J&iYq=8aK
zxQo=RI)d9A@yVf#0e&-ntAX;AF;LC`KQ`y~O57utk3hVMtgRD1dsHyO#~a>&DjBG3
zAYni;aJzvj1|kOX4BTO$s)0HN>Kfr*M%4_|Fi_J#b=lm3I^kwVy!f0}%Rp@dN9zb~
zVf0HKvEZm$&j`N=XlS635q?=y-#`P_wk%fTj7r+r2=|!f14F60qDej`hrNi(%DI(O
z%s|`-zn~|RdpB{{Ce?s2(B23?SZHdXnSquDS{dO7Ak7VMW9JqIR(}v@GEz6(F1WRU
zHj>}Y00r7gOaXq4LSfQwbwvkR8^1&0^HOI6U8szKFOBeS-qpYe15X*~W}v%)I}O}r
zpr3(<4g9%5>0zK3AMy>{ZQvdQkJl9odd7MhAidYX#JXac<h);3^f7Rsf%^^gHDJ^g
z4W=pl$oB!7x3j|QK?C2_6$B4SP`F-*A8f8ZVt{1_8|ZJ~Q3C^L{CeVX0|V&{&DF;Y
zw5TT*Pge#>J~{W*6BHmAVqmC&Ck#AkVB|)n=>}zFJu%F{a07NdF{hr`R!>~4Cw}Ry
zj5P4HfsL}W&lnhGV4i{b21awZ4NNjH*}xbB&(WO>yxK^;xxRRw3e*=ba&Qg2Kv%3U
z>dC7^eL+5D#v6Fazyt&58>tfwEUPazky&35?5QtaHZaA&OarqFoST8E2BvXPB)02|
zAM1-(*pPu428dY$D<@zLq_Yit)kvLVV6FsbXW-Tb;xz+mga0*61r``s$VLq;H}JZF
zHw-K?u-HI>#%gnUy-81KtTMSof~AsvHv@MxR&QjjFtF0VIs@xv)+&0Gfi-jznPl1f
z8VJ(2W%3<KS(co&5|3#hHb`)zHtN92HyL=>z-9wmIHm?ZFtF9YHUqol5HD;Xwi|fQ
zz)tBrJMx)yq~=XjQi@TAV7Gxi2KE`)Z{S0Y8t1Qpk7aXg=!RCGu$2aa>U~PDld6&)
zk;OkVaKHflVfIGlTmwPyxq*X{Q(pSXR|XDoOih$DaoE5S1J~&429gFe1E&m}HlQ0w
z8OR#&=*$MjUygLki@63&0~Q_3fWxMX$9H@g>s~1S+x5uy-y#bO#L@-|H53^G^*Y9Q
zRroRL8weO%8j9lvats{?zG3j$6*)$WMG{|gTHP9BJ$FA6JNjgJs_e3OtliCdi~7Y+
z7&vKQ?Ye0FPKkY^V`mJUHE@{@LoYJ$ExoHk;v(J8zy+!oiG5E8TNnM#K#z6NX#E)R
zM`dG0u0<<sj$EP+^<qC5pq@(i_&c}9t{Aw=`87N8n}MGU{7h?)j{RaFwkygHv}<3E
zu;8z>|C6z0Wn**ijZ?$l4gA3nkr%67AVzxKz+VjbCW@N)n_-{6XQH49{-yP=f&Yx~
z-6k<#dlHOT8|B+nm?&(59O6P|DA2y4_%I#eE7oEr_>S}@69?zTic8ElrF?1G|Bpxs
zGkj~x_j097++w1)i9RMun<!&KH6cutHBrt)T@&@#x{2~8s+y=~qJoKvCT=&eqM^7t
zKXRLiN+v3s(EF-9C-kv~;_aCc;+GqWDkknQ(Q-hHXLs_*&OHr9brUsA)HZRvi&E3X
z*<n$hG+N8Vwo&o<y<;rGlT7QF;K_+s&PTHiMST+uOhioNQF${wU9pjg#wM;d6wTBG
z&l_EsjWscGb0fh+RR7r@Inyl>H4&#Z*zWg{n2916R30bFf(o145}hzuVOu=*x2cI{
zCfb|mV1ma=HaF4AL~9c*SWq^^^JjVLC{LtqBL&(@t#~x;95cofNZV0|&-h`u+R;QO
z6Wu6d;;FuBXA@nib0b0Ah32|XC0IEx(!G)3x$}3LxW`0K6L*>DVTLEs-)(~D$rA8-
zX_s;@v($Jm6C)c59&`Eg)#!{yf=5{PHF2MbF(#ff!GnhHH}Qyx{w5wU@t}!^O!PCs
zV{MuBu<SSwV=Y=LuZ9+Rd1mBM69Y^PF)`G{V<sLqG1v@`SY6*p@Z8&h9J>K=UV|h!
z*hsL09Kk0{JSp3H*2FL~JSdrG91mx&=Z7a9^SIa%?5_!ek&-?w=`&PgKzx+Mqa~#P
zPiSRv4)pUT#+sO7VycN3OuT4fqKQc+#+leZGcw-9OD1UWZyE_6n_J*x_18vXf*GFw
zOM_1~@!`%m!OL<uo;#*?ULPJAJk7*(6SGasF~O63Uor72wUr&@m;N(3ckWkbaUfPj
zm?Y-$xWseK@bJ*rOz@nMg`?sX8jE?C)oLSS3rsBJbZ}AH#p@gz`n-*5Hr_O`$V3+l
zT`ep&vBbnrCVn=t)Wk9qhZycmEa!|cvE9TD6Dv)uGO;P_4&E}c+Qd2&>**NFl{F^b
zHt~*$Xk$_4tfF>T4lBwF%Xw}N?xq?`LcGDmMvhl;W#USOl-Ib!%4Rx1j|A~n_D<p(
zNpiMHVLz_CXJV&`y(T_3vCG8!Cic*7?8s8(0~5Px_T@_d?#j)+%2I<H3)Zk8P+9p$
zj3EhSa%1s{iBB0WWc~X%E}W{K`nieEO!Sia9N?&}RHiH8#p0wa&R%?B;!6`>F?w`Y
za>bNxOO^N$<%o%-iLXt3V?twyFyWYRW#uVJP0lqF536BSOBxHygl*!Os?bn01sh76
z$e8d=1hS7i8;i|>nq@<Q>X{%eQe2@Kb29gsiKC2QXO%<Jw$%L2Ks|2ago*PeE=ZY^
zCQh3;Bk?JQI3+aiSrg|>d~2d+Txp~##~Taw;`=2EUmyP5SP*<?;s+C#O%Q)?;-UnX
zB;B|ol;rgzy`_n`YT^ogqp`R>P;Y7?SOb~AnD~`J$-*x&<u?<*GiF+-Y~c?R*G$}G
zp@fA$O<Xroz(PR_e=+!*_>ZpMMEpZvZ6avoe;H?1gx02cORQ9wHDsv*3xzBcx6ocu
z9&IAt$ts1d&^R<g5er4F&>F=gCAh&q8dYw#P|`v<3%6P*W#JYJr70sTc~4PT?H9$A
zqTQ8~ic;1B{c}tcL0sNK?IlV@3lyjz`4lGqHY+p>?J&EExZOe(3$-XInRi&IW`X=Q
zO+-}-dnBlCp@xN;vYu}XDXi0JBG#Qz>R702p^=5g7P4<D^(@r4(7?jwCgM_2g_5kK
z$TFp&g+V#B$4aG%%*wM6l^|k)MJP;z$1L2jEF4+lxCQD)pjc2X2n$UujE^gAEHtyi
zA!}iwrG@4e*NKH<hds5Gg~AchS{j7bo*fM*DJ|UALOU`obg;Pf7U=v{BBG-Oy5&fT
zIXVw2N@oj+h#0U!>1Lt3h5Z&jvv8+{yDZGHFxNs43wK+1!orgl?y=C*!owCGv2d@2
zUKZ}NaKDA#Ryf>!EcCU&%FiW~-=h4?L7~IbvAaaX0~W3}!9!B)K{nJ~Ik-H`>Sz5g
zbo96Is1?rNK^6vBc+A4%7DjhQ|A?UGe<eayc@4BMDk3^9R|a!LSk?lE`^urv!DdH7
zFwDYm3ll6%v@pWLQ>?_ov((DM(-xj#aSQZ>LWe^uEk6>v1Z#UW5#lixp0n_Rg%>S6
zZ=u2>Wi0FOkzm%=<>9O$9w!xeNmepmVrEe#Hr;fkGReYZ3$tW5U$!vC!YdYDweb2f
zrR!m3s)cFvv^SM)?3DCL>Of@<M#KyYGcEWL@%7SBlQQGf%Mroc*%m(n3eEVMg?Sb>
z&^;{7x3Iv%atkXgEM(;t-n6ht*8B#iYMx*dEK)d6EVi)3!ZO|q^1?~+$UAvUEyVN0
zmPN|j(QtZBDyFQou*$+33vXL^%L2t#Tl~Nww9E}k&wR(iTB-1Q85U^sNAkov$)Ol~
z$L2O!c-O)%3-4RlY+;Lq?G|=e*h(Ab36AVGI!y5}RML!0&d3w*(Hmu3i;5`>q?u)*
z_kLhuw}rhHKIR;>@Szm=$O6L!?ZaCD?;TWZMV|OXX6=*oQwv8Hg#xr2bD2C~;d2Yu
z7_2NDwD5(6qZW=?_>wWlf@>jd;SjrEA!Wf}aXHqS1)YA_SR~n(JhAF**wz?dy#Y)M
zmK-M9kS=Fia4c}L^XjokvGN3GdWHePLQdM;vv4U-uxkM)U{3WV<**iriWbE~r)AdH
z7QV4?k&<lJ!U+p!ES%*)P+L_w#o!ZH=oL4FPfO-Mhm~_|*TQ!kbPMM#TwrKDtZ=5#
z6~`A32bX{$f;AkK^an;81`Q6Mg&#SE)lm2<hd!ZP;k-DjQ1~Zl0m{!gqx@>&HyX!N
z|FH181^Njwi_rLHLSc}n{B;I@3uSGTv+=iue|T%KakGtoE&NA)Y!tS`+d%<43|0kg
zRE~x>agGt}(ADXLtgVQRVm6A~;9a<=<TH}QqJnDl^VOS}wInnbH7sd^LG>0p)V7oj
z3NRp)mdrAeGWYYia;uH<b{PC`m&^(_ZnIIzMn#!qc&AM&O99HzTR1>BVty6b`W-gt
z+ng!YZPc)FtAp|mYTBq}<1HJjS<pru8-r~Ou~FAXJsTZubh1(3Mg#WOhH9gsjYc-2
zHexm!OCvO~!$%P|{q7PaVk6H+&!`v{4IiucoU^r<61S1C!Fj~HaI>6BkD_kEMpGMY
zY_zq}%tmt?Ep4>2(LyRoLviYn(wMDj_BWLdi^GSRX;E>{fdubg?P%2%N(US5ZSd*h
zo}9Wo8U}|0i<Qncy4bki#sfCGQjGf8xYtH^O4{gQ<8C{2><^;Cii*1^oD3a_>V4fH
z1ozlDFUP2tjovo;+PKd~A3Kbe9G$<T;)WR2V|?SI8Yl0AHXgFW8}#Eg`q_BcMt>WR
z+9(?nbdu2K(oiLZGQb9lkWXQP$7GT=8E9jWtbwzSnly-sp*Ehd@rsRCZ9HjXn2m8Z
z#@iTfV}y-osgI4PY>cGO*cfGl;f4A<EgK!PID8nReMU<wvBE)tO3!~zCdb-5wj0lL
z92YCRV-AihFS1lmb^IdblV!@e!wSJmHYV7ZVuLzQv@yvJ@2!(%lF^Co%{pI}Ox~B7
zHPyy6ITtvx9EIu9hug-)3>!1~+-_r$jaeLmCStCQ*JvEx)NIVLL3wtTwav3J-^M~4
zuiK!XJQx!t;>rR$d}d}7Z`jy6R4r<Qm`~1}T#Iciv9a973h7##RAp35ES08MCL3b(
zUTI@$OsulQ=OT^*)#f15@@s6oZR5C&6E@zlvDU^u8~bgnv$5XBd+e8u4K_B~*lc5q
ztZkExcWr*h6e`0pWk;691f6ZGjcqozOU2j(N0tu&%a15K>@YmiRd(5U-^PbFKC<zF
zjong`Hm74RDyHn=oa(N;yHer*V0&$RY~xcqe4L;`K9SLYI#XDSg-@_#erDr<jg$?;
z#^*K;(r0WOvGIkCFKv8f<B+u8jZzHn^w=8;mp`H~Fp?&1Xp9E&FzV)FLT5-hqFjv$
z(}rauYs0f)+dLH=X&V_Ee0;hoE?g;AGcMS*LV-$UID(ukzKwumZR42qK;DaU($#4q
zMle1<d~M?!Id|CHyYcXWnOP@ooU-v3L#vI`HqO}ifu3OFtW^HIjSDn2C#f7+%Ck8-
z@OK<X8y9I<MvS=V84vHg^t}-hOo|J3>PH(_Z2W5DH=5DLPxMI}ztHWMD&>|dOXGqO
zi7vM-E|PJ<TgmS>{;+YKqZ3uGQIoj1v#0u}bW2)0e2h<o9D;usg=~Igff5e>vr)i7
zQ3tG~paVE4?4XE)LJn?E2;S6K>Uay~p~c~lu{f(`{ly#<cR+24_peZzC&H|o9h7o#
ziv!}4l2V|wgECGS-^w~tvAW?DYmpEPgXJ9bmY{-ziVo&GSm59`2bCP$=iq(^m8pY+
zW)7M=sN&!b2aOywc2LzpH3zjE)OJwaK@CQJC%hf770w9SgbxM__D1<YUdKUQho4cP
zfrA%LD}3nUl&|Mt@0;NyYUqT|QRFb@Q=XP=;vnKcaiBWLa}afqaKZ`BTvkrWm;=(d
zq%;UITNJcdaiysfMi|}`iTNzeVQS%^rGu{QzJpc{T03a(po0`{<Af2lE!%1$IIr6|
z;mx<966()7J38p(ptBRkbKWLq`6|uDAFy56k>yII!%BCW*TFpwdOEnv2_s1l2lN5j
zc4$J}&8!0n-j~M*>b(wn(asL~$d0g;i5ylDP9=^kr&V7ke2k>p4>)+x!Lts=IC#iG
zKL>*y3~}%<ZR_AM2ah}G&q^E&aKfJkoR4oN!YILL%;`h52XcT^Wsn2bM$JFWMhN)C
zHPpcq4n{h7nmvk$Cmjr@^GLB_l0%Ep)1H!+q36Gw2unTV;6Or*axj_(TpDW2=Tbi*
zE+)h;i<RdbJnvwNgQ*V2a&R4tckq&|?M3O#;~da*tcOn~RAz#Mi4G<?m`t!zVL-m2
zWI;u|OgB?RwUwchKfGL-=3u&m*$(D7;52{5!K)5t$WnI{S7uUeMa*)-#~X%3+LN@K
zBIY`H&A~he@j&gT2ujkONEuprpIzwSbqAIM+rb+S-gL0b!TSytIausqt%G$AmN;1I
zV5Ngq4wlhR7AwmsFjOUI&0B-StdleDEeER|tl@}DF)GiWmek}O+CdTY^Vbx?pWA#;
zU+-XpgUt@MIN0cbnrvdH9IRKupF$k6V6k!~9)hh7wmI10;5{e&P0dl*PEY8O;2n)a
z#woCqW|6<hh{^xJ!EO$agU>1N;6n$WI@rfK&dKHAV+Wr&;jM~(LgUl1_bZ_tJ~^Y%
z&ifsRxbm5Ug>hwMB8(oi5=Z2qgD)It4s-`!%GM7#IPBmn2fiZs`~CSP$`QtgrAm^c
zza&gvRRnA1ZIol0a=3~Wrqr{9Dj3@txB1S5k8O?v*TEGBR~@7sWE`AvaMnTAf#=|B
z2j8#>2Z0mb#E)`9$&kg4b3)NMIrpon;ur@vFT7E*U3HOi+`$P35GVX;OqtUXoN~}q
z73AEbhB5h^gKr&tM^iXB?}R^CF35iIZ3BOO^KM8}lX=m>B?mt^7`RNCc~-eB!^@Ad
zj||uR3C0#VVSi$ja8STSK^MO`_|?Im4z4@+&B5;uuF+|up&h6UXXPKVk|C<#3nI4i
z7sq{NSouG613KywWr7-3`|mR4U)}{AgkV|N3S1O&QOreg7jLSfu#2K@_!z_CD<T2s
zIP2M|ikn=Na8b$)r^(H3_{*-O8~%7aqKdAr!e<8lWG3bKmT^(mMYA-Tr%}$utuCH-
zG1f(S7u#wm2^Wfs3N9+j<ZUkQa8Xs_N-mN$l*%q{m!OKI<eXAPH5b)gG;tA;k~Lh^
zc2P&-nv&L%^lw!>o`}_TQQt)a7pb1HdM+vpLBM*ZEmQ~^x@aV`h#N~lK1=1v8e%Sp
zqb|r~k+@`1lA5b7gp0l|?sL(U9dvQGi+iL%a~G{#w06-#CR<9{ae7#)jf=J}y13}-
zqMeKOE;_pC<npzKstVClhz@Qz^-h}VKp{xS3enlcLLs&a(alA77k9e2%f-Lv6=qR}
zMPRF63DLvF3Be!iDogcr@uv`dTzvkma<7YfKTyjw6}?>amYB(k7ZVphP?>wbiw9f`
zb}_`o-kX#MT|DBVzl(=tvY({nKP*ACsd&`I0ExRb6^}{qxQl@<ZU_v@7h{sbEI8D~
z6D~%(VAhi^hPfEw;whONE@dcrLwKZ%r(KMaOqQkmGZM2Q)^kG#@}H%BWGm0fg3KlJ
z1s5;6a9yNbjB_#G#ab8Z-0<+7mt0J7G1U!EmY*Q$L>H4Jm@FyzFH3N6b!?i8=`NPJ
zSngu+uE;AcX1kc<;#HX>XNHTJ63=qM!+OYhtf`orpSwtc*IdlY=gfDpARjN3;B^;o
zNbqJp|IvS<tY@*y)ox*<OI`3hAOapCw1U3TF~+@`-*T~%y(^YjB`FW<IlemNucpWD
ziL8<IZ5M5}#olqj3dvmWVnS2#KD*{(gNuzWHgROP#dvMww9UtxU2KtfE2l;f=W#z2
z*e*Fc@@3w0u~XK@tX-1%^UnBg7kgZM>EbIFAG-L+#R2*ohsMRnE<SPbsT&?x&pn^H
zHFUV`vy1&Me%uy4c3tI;)?DPqeW5?&KO;yGP=;&X4!T&{RD8kiR8DZeXzmex$i-n7
zh6|HHh7rK!zjX=Sh2~;cQ^6s-bRhP>LyKe<xAmsLh|+nM3x^@1TilkEJB0He((5Z?
zExwOsTx4BbrZO%(7ru)NZusA8;3DUOryZSlaa6j*2}zGh`n9CrNP1jSdJY>pnU7Do
zI4$uR7Z<z5&ax^O-{$9%!;3|37m1>W<KMaXo?<SxLSfT1JNcJf{BT2)dNJ~^utyw}
zG`HKuPcD9D$W7zsG=6dMs|zj&E0o4>v^>}UFd(@2odfZg`iG>~BxUkX39d`}my5si
z`ExJE|8v2yD3Auvkou#N!tJ{Yrb7--k0LFcMv*jbN{73V+f7B$G}c{=7f*)+R4k1@
zyeJ2^PWc!q<tbA#jZ%#8Y22E|jm^MsNuzW+^a0jZM%G+5jY=QKkL*v7Q$7vWRw0dw
zQihn<Z4_XqQgN30rK#XWP$i8!(x{zAoiuPfR+aK;R8OPrKT#g<#q+spq){`CT4@Y_
zH8$<`@F+32aGYm~F{^GG_0njZMw2w^r_msdMrrUoFG})wuLIZBhUxH}uj(&EJ~g=O
zQ8dC{98Bb;@nC@%+uC*|8s);fG~#Le{Zstp-gtsT&`c03X)wu4m4K&}6E|fm_l3+B
zX|zmZZyFz`(TWC1V|E&I(r81q(|9V4k!iF`qkS6pq|q~t4rz2uqk9^6rqL;l&S`XI
zf14;>Bqf+KCQR0ACb~&Z>t=#UUU$jl-D&hlV~mvPC9{a{O`}&DgVGqBM(;HGq_Oa~
z_(N&%zt_HL+)oX^kKC6I|Ac)pFK(TQJiuP3F?L&Ycr$T!ugbr1DcLWLhh-7sN7Cq@
zj~`8AfW(jGa~_vqU>fB&g$0MOkB!7|_I+|>Xc|wX;S@;l?@=<Jq?Hy#hDpl5P)A4^
zie39T@^l){q%kgy@o9`=sTGlD*)N*TjEt7_@h<V_(s(|N7dhg;t79p1NBp5l$_q?h
zjS;`~c$gekHPNqs?4>lS&W*gB#*{QBq%kp#Ni^^9=;Sn3Esqe~Hc26v(M(KDV_F(B
z(wLdX^fX?flhAES#s-a#RH_mG_rdrtH^+GO?GdLYvpBNN#Fjac)y+iw`{>*>UQ1(h
zI-H5~(wLvdnl#={V*w4G#*z!M6=}Sl#v8<(K52YXCHAJ|FG@q795YtOhs;nGOHR6(
zSeC}}G!BhbmFCJ19Lkx>Pp>LR2V*65mNIWiO8M0i6m2fp#5-xM<-BMv-c5r$W3NkN
zLmC_DV_W0vB`sYpv5BtoTa?$y_OVhgs03?As^5=Qx1_N(jcsXcPviYGK1gFn8t<jC
zOZMo)3d+4kxGr}m9j3XUO2p%?$IHwJmk{qxW91_5U?1I+#)p(obDR3;(jD;!nu}|;
z@<|$>(jPLYkiot*_NQ?<jUUtaER6#UJ82wG<MT8QreUOErtw7@U$W`uLQmr>8X=7%
zX(ZD)%;D1$j+U6wTo8<DE;QQn4wcCj%>@CO#3>r2O31VrwPcZ_^tv?MG`uwYH1~2x
zCXKAj`chW4QBM$%zLpHD4P@&%dO~wSHOOIw$7Hokel2s!Ji*DH#<?`UO=I!l#3@=^
zOPrRNwVjd0S;JYnZgW9!K8*`$T$KFp()gar(2_EFgLz5f8^UanNeW!y+)SfD1_d+t
zDUF}gxSqyejQ_IQ-_rO!jbA0cq1zu)y=!y;$)vWd@P^K$e^Y_xqGAj2Pa6L=7sUUj
z@n60S)nFyapil;7GoV!qXHX=A5*gf_LD5WT|Kb_kltHl!ZkUdg_{K$CGJ{f5tW3Vl
zEg6)~@N<|1%krX;|F3L0*~G1qUZ0~@%;2^Rnr6@}1Md7^DTA6B)XJc82DfKWB?Iod
zUp0ej8QhUU-fgi*>m<0<|L0TV)ia0`3%6}wsKjbyK-##4sGUKb3>sz7I0MSm&7gh;
z%d5sFu8P&mKtSBtLNv&rVJ6(*J*mW=Y#~@f6IR8_Gl=qI>QymTTk~M796t)KlZa)Y
zu(lQ=o(Xq=Pe{sB4~WTBWtNb1MhnrL-TxrcF@sJSw8)@k2CXt^ok0h7_K|p-On9IG
zPZnsOL0gHLY?ncwX5q;N*}dVR18kQybk3lQ)UZzmT{GyGL9YyYXTWy5XTn1kdP;m}
z26tu9BZIqT@}5k%k3D5tZ4c?yvWa`y_oDGg(-=F>nz{8o!6!{)v&Y8zW^kWu;(keK
zjR$1c2>NC4Fo!#b5;;7QL4TUXL(IdY84O^HS@g)_u?!y1;6w%|GZ>h`pbTE6Vi^q1
zU`PfNGhsX&n!)7`i4hq*mBAAdKPl-jNry|yuSh5}GJ~f%I=$4f8B{E<Jd?q*5)hBd
zV6?={{d8b#jKt4L`n;rMQjFIN8N8UmxD3Wi{sc+Me@TLMEd((unUulg3|^)^d#O{|
zZtECzn34hYAz*S^2Gb?~6-mkYvW1wL!7Tb`2JdAsJA*kHyq&>28O+V#wG38fu!_U<
zO=MmMZ)ET$JwJm5^vMh!*&9<PtFLGHDPokEpLLTi%3v}5YO=aa(j^%zm7w0<_!m<n
z2dXQi%jq*TZwtX{$*1sJG~=~M*D31i44zBI_v{JjntbNk4Ay0^IfGlysp~U{{~6ho
z!TotE!G;VrO3uuWRDK};E?sVpa{rK!)+~_NlEKytwq>xLQ?Ec`-rN`|uYX#Iof+)P
zAeDiU!TT9}z&Vw{LD}N&3_g)yPX-@K@Dc5BYwTl*_hz`mXN204!>{!}<t-qC{bb7A
z1Cp-#Or`!e#7evq`+~7018x_fW$;x7hcY-KljIzhfXee?GMUe>-csoKm@;MtRt6rY
z-b97Hwq=*o88{NSlCt~E;+4rD`~UI%3<8?vvXaZ->kPh;_^71Eq)C}|Tmn{33%6=1
zNKa*OI)huYD4)fd49;foTL!;pa4v&yGnm&{edti^d<GXXsMJTj!r<_O`dtP;(4@1K
z?=!f_3HyV3iB9zqI{ctA_t*9D%QE*zPKP<l$Cp&ntGoqd&~ItvXHND%BfqeoLE-h?
zB;{Ah=~_kkBZF%U!dcvs#h=u3iuzv$1+sW~ih7;iK1Ka2gTFKQhYs0NFv;s*$!D@)
z7RaJ_7B^*4D2u|`u;yZ%=6^<tWWgqiN)B5ge{4%}BUvJgZQsXBO1im3-p%=dOybV-
z<E69U2YThQsQPiNOcrIcD05PIe2Plyex}yfVimHem_>~&YG$$b)7WiU+>u4=Ph*v2
zva+NHda1W(Q6-BND<Z`F^0BJK)g)!9>N1!7T3OW2qIniAvZ#|q-7Ml+)L#^<M=C*H
z77em!m_-wrd_IzBlm%&HnOx9PP?$;5h~yJQv!D!<u`HgOt&o$*LdimvMVJ)%H8ho+
zW|ICnNo7{cELw3aCaGQ7sVv%L(J6~}TZ*<>w9BGH79Gji8*iUQ^~nk;F#)d|fSkD{
z@;Xb}Mbg79MYk;0z7y{*>79}eULPap?kw)f;v-rti=J8BOZhBb%c55ny|Wmd#j{xy
zo2c~3;^8bF$)c}Jl5<}c_e=bMqz~rvACjP-q^}f-_s`<dEQV&mO*sZ+@kc{-AT4}A
zeN5uVB|Z7Gdijz%Nb(0~F(eyCJj(Do*HS!@#go}^b`Q&9qy)ny9U&?CPf74^OF{g!
z#Lq}NDvKM;F&u&{)?ACcOq*vhypQ@KePDtzR*JnKDa$f$jLTwt7B6KnK?+RHVqzA%
zCn%F7C15FDHvpMavY491v@E7)F^hxMO4Mj2Udduc7PmE0U!}$N#t5cei_DamfSlP<
za*pIIeJsXO^Rk%FA<klR77Main8nw<)zw+No&_zlB#Wh4ydiD%W)_P$7Oey=$!oD>
zQf65e-~1LWmx`@qXIqKo)IW<4UW@FVsFKdQsIH=h7uC0<SiFzACX2VTTziAHS*+`=
zZvIJKm&N)lHfFJj2Far9ya+FX&2{28!2fZ!WHI29x|P#5%afiI8g^i%_;xmz1p%)e
z61<n?=2{_Vm!$7Y+PASv&TbCPWrbi5J*u(#;f<_!;vZ-63FBcFXS4V;i+x#mS@>D(
z&*HNz^ej?Y9H60E$DSP#`!b6HRpOs#aZrLUB%fapGxw`34$*Z-#12cEl=KKE<DNK~
zueTCf7CTxAg4NYjBMT>svE|~#W)`GY7PbW2uB!7o#hK+wfwZKVEV2@ipIsFRvdB@r
zzauBIpzu+~uFA^sERM+<zLxYGNm(-mxVU=Ir8rj?pUmPEJJm{@&f=NrczQax`uAKG
z-)2$D!z~`pXK^8m%HKxe;kzupXGG27w=DNa#5<+)u1b1I(jVw2S^Ow5v#v-mePM(v
z(wXG-ljQuI#V-=vkmMq2X8leV;y5zs{Sx^*i+>n-B)%@`Uks81V$5P~|7P(YP3@te
z$CIbj#phN2>gQT(UcK*ADL`f+4~0Dx@le#`Hp?jPg|7?9Cx>OfZ6$8<LVB|YuAMI7
zg-f-$2%Maf5)+j6P{u<&k3ZgHW%=m1UM=V0Ru6?*3+-gIyoU-Ns(GmHp`wS|JXG;;
zhlffYDwBCZy<HX=T1lzVTCgku=?x}9RS)D)tcHi09_o0gE9F_XmWSH1hIXw5W%{=k
zEcNYGm8DpDeGd&hH1tBt^Mykb2^vY-*u(R!1-l<%A0u(*=6T?v_Y*%x;~o+oKJ#(F
zhvGr?@RNt1JqQm?J*@KZmWO5@kIcYO4^Mb#L34TB3q^U{Ln{xhJ@oW&ujI7x(4J=Z
z(ALAk)}o!Hn_3IvjvhLBxZ6XyHsXucqO*r%t;MgcL)^tfR}Tcdx_RiHkMES=E=hYx
zc?#SkYv4O`*3-*FZx0W8c!<4jBl<{spQL>~v}+^o=jGu6j#?W*0bT_CJUmQ$N-=UC
zk)Xc^3Nx1%!2rp8EMF$ADFZzWl6_>6!5)T4%zp8j(?&e$VVH+kJ<RYh+`|YD<2;P_
z@RWy<9-gD|Jv=RId&a{kX%-rAG!>J~F&@^o5t}rHO|vc5$yO*ZR%-R4hZkg#58H$m
zBcG*S@-V@}kv3wQhlx^|mt~R#C&@Y|OUepQv=LKe@u`xsA(oo%;T2ixr#9l&wqmA-
zSsoU7SnOdoz1qX;GIy?r*H}v8c^>9Vu)qVAWJ9c+MyA?Si8?d+h7=%vQ?}KpZP?Zl
z56eBQkXcJTER#dY(Qn^2><f*#Qf6_PJ(H_FtnpxYFg?6Y*Y)tBhmU9<59>TkX)AWn
zL!MCAd)VaRT@M>%lAMha?0-Yq>|u+Ct(<yilr@EvGKItIp^J%a9=3ZpQ$)G1tr*@`
zF!wzVJ3Z{8|K}-I2jv3~?|Ud8Q@%T`+<#u#?O_kCbTRQtCx!Huh_cti#~#-uVnd$t
z33cW)X)C_+u+PJO4+lJa?&0g9>Wa2vdt33D2c?L@WWCMmLHe+VFF8PM1(PQwEgw~;
z7gkVAImFplR4Lg`9PyC!pwWf4sTTu9m*A5;B_-8pT2DFKL9sm89()f0BSSmkcyKu!
zj0{<oeQecH$;dvocB8~u4<09MONDw4E~ex>9QE*x$ED7A=d{AV)Q@?%UPNirPJHd*
z#XO~NJ8{CpNe|z9xai@Ohtmu%4Dzhg3m1p;IxE5Oc7phv#QbNL3o|Y-{&RrZh5syb
zc^m(s=Bl|%9LJ8z4<0TvP`J@-(NOY74_7@bZ5J*SyyAt6I{07q@=nV2j><0{e)aIA
zk6}K3^YA-^iI0vx-^t?|`|G2wk3XrihXOtd`uL0E)jIaKhkrcmVABQS|FY(2{69w8
z!LdPByl3ke!IPf@J_`A$?BjMHg?$w9QOrl%tFe6#$MtrCl@#^Es#pVQaUVDNDB<H~
zKm4W7>sB8nB`ziDEs~b@QO4(yqyLjBC&AVKRMyEN<@5O!d{oTGw@FZm3KR%ss`$9W
zM|B@He6UniAJu%kv@v#0szgoDUeqMBy`YjU+lyKf*Ort_o}E|EM|~erA2A;dd^D83
zXyT)hlv(^|0an{sGTB*H7?GHVvgP@BuzhH;xa254R6pE#BjJM$Q9$@;>SMMj$aCVF
z`DpH=osafDTI6?gO#ASCX-gli@_X0XM;nRT=5s3Yw5$T5d3h~pFFN^H*h#(9$6Y=;
z`{?4MtB-CzD!c}+dTrH7=`Qh$fwHZAxDK|5kGp+5;-kNhdwley&MbH}dasXOKJN2j
z)``W(#(MkcBk}Q?iRa42$n5Lm%l3lce#w78(i>S1`RM0^m<1p9L3+HsD0OG-Q6B?*
z4E6DZkH>sG?&G^si6K4~O;ZN?7$lQ_v=>usg`B}YE=>zTt0r-Z?X#8K$vCgBwldtu
z2p{u&%=ht>kC8s6_?YVBX&=w{c+tl=AESJX_VK)rzT1@}cO{;sDVnO!`A9m^F|@g&
zmgyiKDU!!6zsCA_!N=}0d1Zc58g~#M{iKZdaoZ2ki9ROLRV1Du>GP2|`I9AnnTG8k
zGQWnE?`f*;Yp716=`KWH^)bW8bU)m2?$XJ~D?SEy2zO?i>0_49MemW<s94L`Y#(!c
z%$2y}{zSiBv2j}z%1`egI!{y9l*(JcarE(ykF`Et_wk00<vvz$Xr?J|`dA{tA|I<e
zh{ci;te6{LD*2RI=Htv=34-gFqAPu@^6{3B{T;-q4q~;BH9l%@Ro?dTcLza(+}=^}
zW4|)Z)Ygi+&c}KmJALe8b1`*;k1am7`q=1W6CJptcvtdo+7Q_+ljJ<nUEM~LZdA7W
z*x}=7UuFI#<-v}k{6^(HAKXT4!nNqIZOZ#TKA;7Bd_q4jmDug$LkadsO3t{B;Wk+x
z$>d&1mvj`La$Yo5_EC8%)<mVjUs)gD-BDya3ab6NkAv)8fVTpCL5K8FFF^eOU->x1
z_~zqxABTM$@o~b(Nshh`%}3ftMou5yhe5xUIOT)8XFO3kZuzi%I6hn&Go}uj5hvv)
zhv&CM+<mb({)j&IO)Trf^O0j`efU1kjzr*tGV?xCD9_z3O3jZP^YOKhZ+sm0aiwE8
zk(t$GL|6}7X<9Pmobqwn#}7U(bG%rOkMlk*kZy^bqs}Y1>oSjziLoG?W}V;p_}<4w
zP7SFuYdiaq5^i0xBSOWfz;jXcM>gl<XCJ@#xa#94Myks3hKmXw+a2R(mDG^+>>UYK
z_$z11z=G`ExfSt0d|YF&4Nx|~pFXZLeg-HS;4eCfkN<oW2yk>{xFgCxKK`Yt_bTiH
zH}v4v9|Z#-K%oGI15k}podh+nFO5dZ{kTYr1t=b%WPnlu*qxgKln8Kh05;9ss%667
zeS9UtE;Q;SZV6C204cL*CDH*gwOoK(15^u8JwW*Y6#`TWxat5E1F(tPq%b>04Jl6r
zZVyl;Kvl`VLsB+Dflt;(yLS?_FvV&Fs427R2B;OFc7UO?P)BlTRSIwe7E-<z__9U8
z_yIHs&@jNm0Uim^C_v)?T>^9s&?G=4K(heN1LOsW21o?_Zyul5!}tXSV*yw9g_fyb
zHumu9@Mfn<#YBLnvaPH8Vnd`#Y>tYx2+%S>y8!J2v<lEVK$`$<+08FPPvFHqPU$56
zdqj=?9qV)=(jh>{0G$GK4#II^-}hHd&?cLwhRXAzzjX`HJ;1#IdIkJg0CxqrCjbR{
z1h_j0hn3c*Vw?iB5^LzmPK}7K>Lf^e2j~;vfdCH%=o{d^0QU!A>mPO!9KIU^MBV6M
z4+ZEKV9daRyx1;fs-IBkVEqF;8envQX9Elf@K}JS0*nmscz}Vld4MMZTpe0)P=LV!
zh7j+Il^zk+{MYqx10tuBcrw7S0K)@}kb2UkZ%m3_Q$x?8+g$D>o({nMNO?UIgcD@v
z>4Kvq=c&C4tvV*aa{=ZDSP<a(0AmA83@|Cc3jtmXFfPD&X%NheP~qqoG3vl}+4@TX
zCdfwV|4dE}@N$6H0?Z3ACBRfxSXw=HJp7k)T7Vf+a(aMQ0-PCB@Ku>y`BHeY46Qm-
zCW&WBFgw7Ue9l}6-jGeuNhr+M_zMHP9$-m;rSzWwZw6QtU@>P$XE98MnqF(dtz#Gj
zI1pPuQkDf+9$-a)mC{={J^MEd1=#)V(QqnpwyqAahPnkf8{q9Ad|Fr+V10mhI59h^
zYb7Ofb{%CyfQ<o;1V{$h6yV(e9|YJ<D+Ty<gUai@09yiV4X};Vp|kKes5=5|m$=+U
zm7LC<1;uts`CS3tmtfMmus8+w1o$w(CjmZX-vjjTEIwwG*rV>1bW~?CtFu_sS&*|Y
zz<x$}x_5v*oyBJyR!%M{=5`hb^8stPB;~&fa7Z!_GbnWlYZ$smt+hwJcaM5ykE#XG
z1Ed3F*q3w4&N^x;fDyn9U<HVE5pDpR?y*U&+(kGHGF=4mjbxvVVLjOZ9^*hA_3HqB
zfPk@)W3*Mx1?bjAjOrq0cM$}Sb`cG?s>cH4wy2xBh;ITMXGgk-69G;KaJz^twbhff
zVQux4q~x6MBL3|n&IR~3K!F?z=5Rj1g#bSWxDw#I0N>MBOD28@a4`rsSl|w~m#9E2
z@%P$r6I$+edszxlrhHd%HNZ~+t}&zs_&ET#nf-&4_b&ApiGP*!H%Wh&lmb_g_u|P&
zpDj^tetSK@znmQ>BgB6N_?!4l<R3}7nJV#rvK04L<rcWeVZr_c_g^iN3pcziltbZM
zxUcN&FB0<?M~dcfW0%)rITX)@`|I+thc(=sL&+SrAH$AgD3!x4IhaRb9YyIJ%H&Yt
zC@LOB*&NE{uqubQa=0~z@;MC5@xxnG$f05mopb1t!)-ZK%Ar{f&2y-n3%{nXlEWQ2
z+@1^fE92+(<W$Y!t_NZ@bEuUI_d}?bL-icubK<;e<S^`k7(wk^IL8xajIVC$<WM(<
zdO6h3Ax24=)j-lFk~Yktkpzt;Wx?6^gfl&oL!RVB^ZBjMhv&{Da`@v!I1PCzIjAyM
z<jXW=D_z5Y(;|nKIkeBALk_KSXq`iw9NJ2q-~U_f(N%C)2VQIcQCIC!+U5A7I7Tp}
zt6=3FbLf=A+`j7Mu3}kN@nKidHHU6F^vR)b4&7-PJK7_MyK}gc)}VJCQ=9y$a^I&5
ze?^Oa62B*hUOD`*Kh`q`CVAZ}0fTMtT(|*Ut8b$>J)qu~!~Hotn8QOkT;X1wWkriq
z(FbxE@n_`6F0p<&Je<R$ISk<czd3N*y^@1sk<xkG=&yec6F-ZSv#wkGu^b-HfqcD5
z{Q9XFH~S(ToWqbDX5=uF&d@YAG>4~h7@5NpIXuZRV%DMP@EoSrk3Tgv&cE76<ibC-
z`G+<CcYZpDU7KQ~au}V%GxUe+D!23EmS4|G3s291yZ?>JxAt>6JfFkZ9A3!b#T;Ii
z{Be>_kaWDHFG<QlxodpEi4srB=S-IUW!4nQnJVeD{M_b+3%-)Wt2xlTdv?Zn5zL|u
zbN`R0?|_z~c)o^<NR})JCPYQTzBju&Eh36Y&N=6ta}ELmW^zUW$vG+Mhe}jH#Q+G(
z+nuyKX%`R#1w=vk?lk}Rozthz?dt04>gwv=-QJ!aEY1o}6nw;C%0g~UU66&@S(uZB
z3-!c2_IJ2)_?|MCMURA;PLx;9e-WCWg~)yNMm@1G3%reR5obhw!Bn}vSdxXMS>XHV
zmt|o&HA}qVn#$}aSy(~W)fbKG3v!q!_GuPYXF<z?o`p48Seu1YS@<>!>$0$(4$Q)y
zENsZaMh@;uWos5Tk<&ogl7(LmD^2f4HfQ1Hz%cQX1qJ!rvamf1J2)jPM|R47@l*pb
zJGd(gyR+~a<Fl&5EECU5?9IZytl(m|W71Lkvv7oyba3z?b$}enJecjnFS78Z#9w7|
z4rSqRHlA8v{CfyTrDs;w7ss>kwG6gzBt4mh6B01k7zU(_@b9wlJv)+x^I15Z1)gX4
zDGNVm;RlJ={}%o+i~nVaEz`q1xp5{7=Oq7Z7VhN<4nI8oNKiDan4o7aWP#nul3w~X
z3%^NlQPM6OGbs?00+fkoAx~JDv@z4j0*n60!u2eeS+J-)3&|{`vXG{qHO1!2d0cTN
zb|gJmUwCpNa4z^+;OPs3OIf(gE))n~%fc0|a?Qg`S0(seQr<_$+b_w?Sx~gRr{2iI
zpR^%{yfOU6;mg85S@<^#x3X}tzWAG6&cf|1jO-A;SznZBATk<=f4785n>G-4*>{Fw
z43Eapzk!$`ng21y8i@N@cpw3Bju>*r0wxn;$d!#BiD8vwQsI#Xf=y&K5cy)rA4BmN
zZZ!~01!5>Dagl~1+%Vu2is3QIDg2NxX;DdwNlKZf4Mhowhc*=XUJsXwp>zz>W0(=c
z6ET#Dp;HW<V<;QLlQD#2h{W(z3{S`KQVbPicqWGT@+i;7P%ehMpNDyb=D8Tk$M9kd
zIaUUTbDodkg;+2s*QSOCRtT3^7(JsX6=HZeiHvJ%r5Gy5u(hGcjG;;lp;&PICL@N7
zgi@?nFa=J(5Uy5LdB34hq}bO7@m<5<uuwFH>M^_)gBpW~;pJFx=I50ds>M*1U8oRd
zmJ8aeF}^}ET)JqKD;rN4RbQ`g=wFYaMhtJn!1!b<<kXA-Q$rnMcrzA!a@C5Vb_{hS
zZWcrH80yAQPiE`K&`5#?k~Wl-Rc74D(OBXp*_@^^cnyP3q85_VCWigRgU_{=F|?AL
z*4dH`?*yM~ZDVLBIqkFgrS9bD$bN+trZ&Yy7aAPH=orSt&@G1UF${=dU<|$fQF_GC
zkD(PqPiEPdMxwW*eI@Nf<2#4R<dH1`F8(}Q#a?q-4T@oK45MPfS~?_#p)m}LVYnP1
zE`40+?1RBzjfi1nHj~-s8U-uiUrL0ByT-<_Iju~L@$HisN6!}(<K^g2ko25TSjzc0
zIfkjRU=e#ux|*XiC5D=f#1Hkt^!&6K-i`%J0R?ypYi11ZFl?xqb4`i78^gjF7BSdj
zct3^@V)!tIIWf$Q;Ug(9TT%}3EE$Ka!bChz^5@6!$SVpt6j%@oj+{NrE{<VI3@c(-
zDVa;@1SwC+WfClx^rxv|az2TH3JF%l@M#QdV^|l%>KN9@y6n!Hmz8df1Vf#tzZNgR
zdb%qXoHV107-Jh_;7Kq}0k*z{k<1~E;UH(|%gQ#!d<<_j;$?~0!KmJ;?2KWzw0Tzy
zy<3GjkND}##gLYK9>X3fyjRlwlJ1LPc_Tp$2V|Cj*)L-FGKN#JV72^8`u121$K^mD
zis5h!M`AcCvulb9dY<+(2ELBr8%`*QlQEo-Gxx+nZ~`*1Yvj{)-%?u)-^&@tj{g|L
zX^DTx=2ZJQIJ3v4{!9#KIYx2JisKx;LCtZz9LM<>F2qnWj>qHpHHP0}NXB5taFN6J
zZ&Zsxk0C3DhONQ}uSa6^Fnx7BG9h;c>4v${<4%M{Mhs>Q7U#PYNl1EnA{MVv9`Pbh
z3@#VyIP%3&-j8@OT#n&N41Nr$7}7Cbnira1KXQoySwB)^Ui80N(Vp|7&F4mc=Mo)9
zv9k*C)fleD_&zCIm-F#<41dRPL*hTPXXsxs+?4p1q^nK@KeX>ioHHJ*B>%+lFFTbj
ze_w)oG5jaN-bTUt@Ic}mQl8m|Ovr4mI3AH8x1_X+0yHmA96vV_!|z7($5DXa`Q!Yy
z7T#4fTriG06GD8vjd*NpJQhdcIEuv4;AEtjqy$AJxcFnJxCE3h!4WwTVNt0#O2<(t
zj>>U75l5Lgo{r<0ILgM6>wdJ8qD<Ns>Nh9)WE@Y$@mSmFqE=C}g8FP6shgqlaXcT#
zo^K-M;&?8OP5(xZRZvM^ph^EkUy9@RMuOnQI4Vfa!)!&#&)ZlqTP2QA9N{=3ab(0%
z)s8GUALc+4WX7RLPWi^7@2zOnTcIe2X>OFguG=Q6#&P*ZWJUFG)i_>>qf;E6<ER$L
zt8p}oqj?<F<9IEO`s^=D73K9fYR37)AzVZ1e1pMRBOIu;BX3H6tvG7aNQs9{2qf!D
zOi)h(dt;b!nD!!j+(^SX8nNSUfE&lrMB*uTqD|w-`%1uU5l727icbi2jH6YYZ_Nm`
zlkK)<)`_%<qpbuCLcdgmoc0f`YAia$QEOIURp@xA^xbHeIJ(9$Dvr_8hHi26iKA~E
z|BVcHkE2ICm@hpgCFm8$_Ecu?I4124G21VWVa=2QaSV*3e;f;ML^?GVq=TfuFi9yn
zSb`yO3}vUTN5~n_C`>wB@<+rmGLCJ_L*%ggW8xSa$MkqGXJ0QJ85hS}aZHJ0d>j+v
zm>9>@>fy;W>_&uOlFXj39%goYV=+~Bd0HHAGer9$U*EtL1WW`o;+RPrDyZ+o@m?J7
z$MG(QduMn-V?H*noc%jm`#pRR$A_{b%+f_HogK%VI9A88CXQvv%(*O$V^JLQ;yAH6
zlWBgO|B6Ny#PP-yg|9qb9LM5;nT^USpU}47LrWxG%DNJevpkNEv+?v}p%rngjAM%#
z+0|IAisMs;+1*TLnZ_hD3qGN+(Y0|9tczp4l-$6H5Xa^?HpbCDnVIrJq>r77Y>}l~
zC2jXhh#IzWykvHVq~we(k+D0D&*JE(p}&UD8CMKo4GlHyjbmRNB{e**VSgM4;<y>d
zEiMsp9E{_196!YIMI2woaXgN%<<jw09EajK97l^q!Mb!Lj-zq@j~3wX8wab<#3jMz
zTkoHP73LdyjJ}HF+c-{2nSqNiu(LWN9{lM3j(xlo{a*5!eROH?yJL4Jwdx}L7>5&w
z8^=#vprn9(EqaEdye{Lc%$|$m7p^whb&WVK@FO6O-?BNeI4(+@mCd06af!8Tj?Osj
z^nW`5res=@CL~QtYBOv)2QprqKhJTAO9YpxIMQ*TiOA@z(qNV{r5lS@T~zjNZddgR
zSG*?Tcd6m3q}Ss3Ljp=(kK=~Ke`a(3Vq_))J-6fdoAX^mJ`H!`_$Q8>8ld4{&JNDd
zIPS|TZ2BITrY53e6G8eQj;5W}99rNX?(wpes%UmD4UcI2Rf|WpV1ULo5fqp&DgDU}
z;XE34HW5#BiRRZ(K*M7i3Tr4R^-!{q1{Sf8^E;_OH4#NL6xC2d3)-T#Vj7BTpq^Hp
z)O3@e?_@Gd;Zhn(Ysl1~P=kgt8lKZoUPD<8PimmRGa8=Kf{>u9r=>!M1YOFaXJzXg
zmvZcQQ}NBU=<^z0&`?Q3WeqQCsG#8`4HY%83XNoXs;f%MSfV!4Dq0Ye>~)4z71FS+
ztIA%`PL_r>L^Qmn;dKpB+4L(Ks%cO)2n{c@`<J3swIDE_X)4&nt4&3Rrh-{2r_Ha*
zD%IJGF6vWV)EXMz(D0^)T9V&;5vD9cO=%kkqPB)Q8W<1tWUuRLLGZJWq>T3Za!?Y|
znT<3w*3e!<2gz)rp_zu})L9QrHGHungDVW(+d`JM*3eP{a$0Hl^Fi>npQ(+8w%Po4
z5{zmpI&zE-hp1uTwM>FeGTT{07YWGes-c_2-LpA8B<Lw=FAcpV=p$)gNm*-tQ!#+u
zp`ALK>lmbAu!i3>T+}c`!%z)tHLTMxOv7*u3pFg#FoIs?h-jFuVU&i^8YXF&tYJq}
zF-F5U4dXei+tslej+9sHY*Qy_IMGz(JP>U55=@j?3g}J6TN<Wnn5G4L*Hbi*!yVl}
zn+6-a+(2%-StXdE;T;X{N}V$`<Zl*i0>7sPo6HO7?PlVA4IgOuPz&~!pKT`QYxqdw
zS(1`DTY@=~&XshY7Ho;Lh)-*?O7CXDzxInYEYYx1!zv9+H7sM=uCCCqT*Jqt&#RxX
z`)>5DW@16JU<;i))iiQbGjXsPA7B@$W@6Dc^;5cKJyvV@ubEiGiPk*W<zBDx-NZPl
z;gp7r8h`)da}9emY}T+v!!8ZG*&T*AeW+nfbMbt0v0d8Py}3}Eizdy*PRZv!Hg~gM
z+N6G_1zX~D+WXCeUGcpd_R-s%FI@jM9AKo;fac<V9KPn_poR<01;HUnFE<z5Isa0_
zS6Z-z&U8qE!<+)#Y~Q9H({P+&uw6Z&Va|H&-lTr5;Tw+lCY4MM(Dd!<WH(Cst%mQU
z<T(xBYdEdpM-4x5mDsQTpyBxzV(T`Q<`rons<#L%|5?KsE!d)`W6w&^wuKnfLi{4#
zd!7@pyxO<CdO?C;C7sejWNC=;qfJLC9dQkshJUz_GFmhk8ZK$LENw6u(i$8MmWG7n
zBsDPVj<gVqT8M2egsZ{RkY?Q$fzx~qXIqGr2AW4}N&Ob0WJ|#@y`tfF#v~`gM)j(O
zYn+>m|CZtp4c9f?;A+rPRB0(lISO4RVD>M@VN0>Lr69c}4Y;l0Z_eMA;-{A44qGQ*
z;=3B|X(*)QF&+PDxX<NXM{XUbKT;oP$e|;r&in8q1zQQ|DA$S?2Z&rcNXMOtkWbL0
zm3UNg^6JQ=V^2<%Vx*1ssrhu|*Fiwx0umIIbU-Unm})nv#dH+cQAEdEtprn19djgL
zpq9{4QV)8~!R7xx1dOrLI-bz+x{ew;%IGMoqoR&VI-b<=6cy6i1M1T{p3zZW$MZU#
z)j=PY)A5{+>)X^)2h=sK#IaU_Q}wr2;sqTq>S%Z%h_s9YYR>~|1szvf39by}Jdl!=
zbyU&$UKj`+AsrbyB6<+XnK~35VTnt$4nq3wR+W_LVK%CRK(rPw>!_+DtF?Gd$16Ij
z>3CH~bsa5Qi{7opgw|p~>mVjKN&0nb!Kk~rNqs{{O+A?74R!q0TD+-)|2oyxQA-Dx
z2&URP>SW`5ZA3jCoCsWq>g#AAF|*IK5sjph#*$K76A7A1$_}>B(Nf2J9Sd}{($QK+
zUmg9}$2Ou#8_`BbTZ!B0=%%B)j`lh_NKQu`U33g?BbYkr=q&O3GTSwq&ukAJ8`=nJ
z>!qWo#K+o*SR2t>M<1!@P8(6WZ6MHJ#{h<bjww0@a`D%B%QQx@Rv~q;j-fh+=@=rb
zydvd?)7rLTNLw+2{I=qwwqk?Kj@B_o#{?Y{b&O>Iq@&|>jMs6jt>7c5%o=UQ%27&z
zGto&p7A^@hP1f;GTT!Z=ATzU_n5tu%jt_Nwq;uCO`nHbgI%eqjq>y@kDrQRNrhS?3
zFml?7W&ef8)sMWZ<2~~0N0{E%@j*5&Ju^Iu{%j}a(I@dJ!EBkGqhqcF<ZLgV@nJi`
z(uEup9Y=H=)v;K|5*-_LY|^n*$1)wC>R7E~xsH!%iH;RIUg)IMKCOH?Gt_Qr=1LuW
z6lj$mJOp%ono4~4e=48E+1O63(Xmd)dIl;L9*iDsC$x5=*^J=N_YFGuV9qt}ODqj<
z*7=@j?9;KIOdZ=eaddpHW4n$Xb)!3V?BbAJQg`shvL&MgyLI@5mC9Gtyngh#a*+jm
zE$Q1TkFxC1u~!eCO)#Dc-)<)!Z!Zq$_#Y?Q>C8hq4$@8?U+VaZD+AARyehm8qkPus
zUhZ&@d*Q2ZM3na8Fh~Dtv{8F8ep>XHj^jH1Z7+V(@wJX`xGr%_8%Iy*IH}`X`lr2U
zvow@wp`2obv=>aX+6%rC>pNC#FTUp-`Cc*Fiyw6U6(0VPvwKyT&+Adc&s<(Qh)a)T
zoZ;Ne%Ip-2{-Wc&j#LWi6fWraRYz$DPdNBZ$3-1U3$}$U9WfmvOpG)U*P+o%20k~S
z>oB+)7>F1!by!@}3=}nxU_~AGxU}l9bvQcy<aE~I>hN^@!9|H~WTOm*4&rwmX|5_A
z1k)u68g~$vv%!_@(yKbI>3FAu*d)`@4kF$`-0C21=qTDzRO%?|cN9H3ikmwA)^SHx
zzop}LwjL^<+)@0aqsh(8yY#INw!(^}XTHf?(ox*k@jypD1NjZ)Fp$$gE(4Dk7^H?r
z&I^7|!9eY0;X?mYa~pWnK&+se*FYWv`;UgFE>?1WtdM>^6$C%$QwkU;XrQoxcc2t9
zu<B~~F$1hiVQO1nI{JA>@oI@+^O^VX7o(DjqKbjy21*zxX@JZ!2FgnCxTK{dEiLI2
z2449>rOcD8a!+Ah;-@5j+Q2hX+q06sC}}xKpOdt_q|Y08K?2tOv7;cZAhRzSs3<`t
zNh?cA<rD}R$dFmKm}x+fm=-eenu4eS)xb>l*MKnavVm>}x*MoUQw=mQ(9l3N1FssW
zMK>C#&RPtW=Hd+l{BH0%ecnkF?-YDbsA1qr#{lpntfqlCjo^z`g-*c-JwGq%7^urC
z+tiw!f^0pO8sIlTeq8dq6KNv@jSaLm(8fR$15FLIG{6HJ{9I^ept%uzYvm_P>rSGD
z#LTj&l@XjHr5KCaN`40e9SyWIP}&PVU)mcO&?!*D)QQ3dy3h=%idDKA!N(B4k@BO5
zpof8;28J0JZlISDe2MLCppOB5R@ToI?Q5VP<I2Eb1N{x~(|Le_fz;3`_*TYmxi9}5
z;W3hBox~7YvQ0HQiJ=B|b`sxq61O{vqMgME10xMgG%(4)C<CJn@HoeK17i$~H89Tj
zzoQ+MI*ao1fJcqa;^ASB2}bZ0y<=xFnZUr?2BsUBBAHVSEZ?j$jp{6>NxW)(z@hvM
zBRDt0Ca8^i-Zk(ZL)yTn2HrP<ZyK`=%rWqR#2-rfk)*REr2vnY%r!92z!C#XjX=+Q
z0}JUu+4KSfkDUsvB7gOIES5~R`_S5D20k|MiGjJD#d2A+Z?n3>z)IS%KIqQ2&Voe*
z?E7j1YYc3oZ?~&!4XiV;*#N(4u75ZR&4S-Gbn*rR8zqN<v`GTWZ!vJFv-q{M*eXZ!
zkIrJdfgSX`fn5e(?;_fC5&SB<TgEN3dAo>byNEpo_8R!xz#RkoI4QU?7>FA<VBmiS
zelYN(frAFVFmTww5d&Xx)K-VTqHSI#Q~xfashN3*focX>rlSVFF>u1bF)4Z6z}K|a
z%xq_6zHep@H8W3U3x8|il*Ft{{&xnxmuhEr5vQ~Duk9j!GVn7a#K1Yu$H7XO8Oj+0
zZgG`~@1gj`z<C3|8NtgPE^tJ0g!%f0BV7dV&G^*_ZqMK$lZytj82{}Q9?#HNv@)b|
z@i%apQ`LaM#h(fdc$}@@sFnenmROm@2?I$3{}hfe@d^|&9j*hbLwxecH;^)LiT?RC
z#0RYSwvjX!lWxkx2eQcIqej0QxN6|0fm>a~H7>RlBiA|E7bt%in5Kl8eRDNmNQX_+
z)jtjVB?X8Z#WP87$y&D!l<6weu7dO*1OIY4GEvRMT?6-6WTLEz{|wwWP{2e%6A!o$
znRvuRZZo(PE~gpX(3r~%ZtR4K_s>VaUKU&^$7}kS9yO8I1n)-Xg>rdJH18@1D4)+n
zeiOW$kk==Y7BcaeiDD*-n<#9e2=zyzyj{Gg8C)&M8|tW>_w4c3!4f7)nt0qqDHFWr
zPKgR$&(2G{sk5|+CrrHERSfDH+*ir#`gvj9lO~=rQOQJQ6Hl9X#>Dd`UNG^jiE<{M
zGg02ep;Li=Cf*9TqHAzBI597VebGb(6TE7*qKTJG@D6I)!0R*#*eLm-W@;4^AroN}
z5fd5GT2@y~@VdWDGq@*{m*7#1S1w1%G;y)3c-ahYVE$iMAx!XYKw`cofVX;9HF3SG
z$lXo6YNEP{b|%`Jc+JG?^sR{oCTf^?!$d6;wQ0}CQC6yH;!QKSwNfk(E@0>Vu60cO
zQa@VH1TO@xEA{ija9%~r9-a6$+R#KJ6D>@%G||{Z6ZVdSVsd5$w<B`Am?h;^au2hl
zyndV)>9;b`mZP&Ix{3FHnjmds1{VSo@aA^jrQE?pM-%-_^f%GTL}wE{P4qI+#Y9&V
z-Ob?s#%^rrXoPPi;5CLv^G0j@ruHy#k9YouqrsiMCV2m39}|5!`izh&!F9X5k(GCu
zHsi(AM<WAF45oP|2AUXT26yk1$#)-|P@_Z5-~#Gl>@{8F1XtJcnpSFH$EW0pjxsTt
zV{M_lg)t_^npkLJk%@7%b8W^X6O&Dhmw1ASZuz4VCC$Ghz;BtDV&cbK(YYq3N-)F3
zOcT>+rx$%&a;8f<h96sAklrydOP0RN5ao<8@qrZhNHRY(F~W}SJjfGtfpG9)=S8W1
zwv?G8DLL~bAb&o4DlscEyV%4M6NU-X#8MN>IK+%h6U$9}%!y`VtBFrctT3_K#2OPT
zO)Q?QzJ4LP%0!iJVxJ%V`$F_n#*!k|msHo9SZ8wO#3mE#P2MgTU3)&d!Ni_PD)FAl
zYK{xh%_a_92>7f>u;pBIn~CivzBKU_r!XDfP3$)D8T)lEx>M3!G-;yBENgvkVz0^j
z1fqLr*e}t+BLlk6M4N7cX+M=`<NujBn2o=XAeM?AGI7|%5q_`kCa8oqFwr)q&wq&?
zH}SQJbBuWt-<UXI;s<)k#7V}3iSJB&&kin$erw{+1hs4=+HVEwPgJSlwCpU6JaRrt
z{!g3>EAX?4GbU1glroe*%XZI4%b$<V?k3{rqvuUrFp*^<X5v>_{Wnf$&drHxVuHG9
zqDo1owcP}1+=NEqZsKS+!RB<XGv}kcV1Jn(wM-;T<g)OHg`^4F#7z^oOgNlSCa#(I
zgG+8C>d_JtX}QMw{7rE_$~!YJ$#&WI-zB(g;)(=!y9M`WUZriRXtC~s#$Pva!^EE^
z{*r4lOWBu>(rL7oLqL0On>>_=yPSj4ygMe?qkm2OWAc8Iz{6uE1)ZYX|1)u)gJ>bA
z1y+B+E=Yg2Ul9OUU>}E_k20tT%JK4l3y)eTZQ%(Ec`W3$P{_h#7V=3+h7gtKw|Jdk
zw19=0=c7yoCE&Hdg)QFpfRYv-w@}nVF)Q#!2`dP~hY?lW3e00vlV7R3C?y4mkEMd4
zWQ0>~84FKYc$!5Po|HDT?$R-+JV|}V!qN?R)<QWe7~g^ugR!H+1rt^J=Xnb+aFwty
z*20SxDp;svp{|9OEL61cvW2P^Dp{y(A;Ur@TR9!AV&VG!XuC_%ki`>mQKlC^R~3r~
z43vn)ccw>~!m@~*s0G!6$mV~Y6?N{0De#JgYV?4G4w>qtGLcs;{9IVAVWGN(*DSnl
z;og5r+7CTg7w+JPW;az>`i6xGj{0%ljJ}VlZ(68jp|*uJe}q0+sl3r$R6CMc&q93*
zoh@{+(7-}N3#}})wlL+t(DX6kMiv@dXkwwMg%%cCTIk+gG_%lL0^(Ty2q`5ebQj4#
zLW{bKe^Y833vDfs+0jBf3+-vJg=hWnj_zXVUcRv_^!^{AcZ;g5*oofzNS(;X5I$17
zTIgn>zl8x*ZsCXSqK}1Fdx#zudRn;DUG$<QN`(AeJw$H{q)+t_eOYUx($7M;sLIr#
zhZtyKkcFWZhFKVF;dpLkh=sX+XlxH*tW-w(p|bat;f$P4>Ie%XEu6Zl(rKeC%<mzx
zo`^nHATrv*=RHKDjw<Omizl41nQ=%@T9|0zBMY-EOtLW9!aEk;weXgO8S6rC({=Nd
zDP%&K%0cJtaFYITOC_F884EKl^p1!2R}P;&qc%FKOt_`KXQ9_V<wFa<UJ1|Kr@U|B
z14h@2%FHT}KOFU&y_x8t%(gJc!YT`&vLhDeS@_t(Cp6f?0t?Hm;4Zs`k`h$NrI0R?
z*~J!?Wb>Cw(DGa+OP4>yzh$oAST_zocPz4!bEjmK*U%B~ekZh=L1JOOg$-<aYIH4W
zYh_E3=sI>`e|T^kzIZ@cnoHTpS>uMMz7`?g#3_?YdGjl5wXn^?PYh1RvxOZNzO?X_
zg`F05S@?{;wcwVG?6$yb^tv4iP4w0E<)eGZEFR7s3cu7Pyw`$qRAJg@VZX!&B>i7D
z|Dc60vN7+<J7nRog%cJ|TEV}H)BenH#KKWF{ch+O4L%h*&QY5bbn|PO{YFyqtIi6Y
zvS6$ZeJ3fww-(O!5I+>*ckF<FTGAgR9XdVqBjdTNLjI~#p)(eKv2dO%*t6lYT(XWR
z=eSm^4waZ5y1>!25VH`sFl}+@Hw!nfgs*<D5MSgjkYqM^GRSHcs@%w&vo>T|&?V;Z
z88U=SD!-Y@07zIUwK(*7sqn{(Lk_*fKuTg}5}pO0%T5CI5=dD{Tgab4fdnpDxNPAr
zR|5-IxU{Z{UbFBA)3fUDTx?53t}=v9qGK%7=2hjog>`e3n->1;A#QL{?J54W@RtN<
zepi{jWg*m4+-3(Y+~Gvt68gu&zZSlERUs}~PF+}5Fj3||+J9Sle`_>X0{7|gCnHB!
zM;}<okwDG_YOD<*0VeX_U6;w$8+{dhBmvUg2|Ox69!c{`nlFJWM?*DEL@7`(fkFv9
zlfbhHJeEM=1WG6HL;^*a{UcH$fuCn61Vs}lCOO3uXxvkfGoYs^nZVAonU5!My;ZoB
z!~}h+hm*x4WfJHxKU_8uxah5kA*Lr2__Aj7sRW)*;LWe2w3*p*2|SlTIDtq4<r8>5
zfyxOU3s+u9pl+{lg#;RGh`uQC!k%J8*)X#&NoK_aDoOA{%_x~w5(p(Q;>k!x0>2*5
zRG6(7&ZJ?_sl_LSHhdc}qY0=9)DK7AOh6>?ast&8crAgd?Cg<fwFG9ai|)7|c|~Ri
zACA^6k@0E*{nrIxXHW5Z0v8WQ-$;Pj8WIy6W@!RP4o9mTiPlP>_1MtiQlfSObvR7F
zWHL)9)Tf<nC5cy(Xh{Dj@NEL$(Txc-N#MN%-cO)u0?iVblEBminkUdAfnf;@PXsfr
zWddCi=$b$)>X)20^sNMKC2c2Zdr2vO<xXZtiFdu1vr__{B|hCVI3&Q-jq%)5^h=<7
zwtNo>dM40Ig5KHuJ_+=d_>-H#`LzBL56CVZD8Zlv21_s`n?E#x3xodejKqip#w0K{
zfsqM}N}%^ZwP}B~+N$vA1O`Zut5;yvI9YdmwuT7_Ow7iUB$zDeTlCn}U^jAF0&jD$
z5_l(pa=pa#1m2K(STuv4?5}R>8h$r{zXqu^hRodeLz{1BevrV239L<E9j8eGvl3X9
zz^4h!PGC*~D-(EV%-jT)%3AXzW%c<9ERcAiq>HloixXIqjr+U7|MklfSS~pqOZthV
zD<nO&H4tE8_v8Ho|Ex}64V_~u1#@N09H5q5iuDO>NZ^|UP9(4~flUb<VBG{Z)5yB&
zgkEBI0$ZfEt&(n&bi1TGB&FJ&66}(+b1(5(HvjVk_GII|66}+7e*#4Z1ztK;M?ILp
zG0FTQTk=Z@zDnSb1cxO(l3jW<fzK`nCx4Dh&ez%eCB4MwKd2`YIK}YmCAQX4Z}wOB
z_Y%MM65l6qI)SSRTub1G1b$55H%_Gle&RZlz_|o|Nq{aolfc;ou3U<4+KF02f<Hv)
zrSpjZU*H7i;Pw(6=m)jc;=Ki%pg>jvu>^c+Lp%X30X+djx-O%)sP&_|=VGQQOO^g=
z|K33rOJ)<2CMC5Ka3pXg^(3WaV=14K*)%@|viX-KxRSu{611%wjO-s=cDSe}@mLZ!
z68MuVa}v3d_$z^%3EWEHwiIq!FoRv7{Nl^ezqu}zjpRrM193-|{*%DJ3EY)_Ad~4{
z0{_V(;`<UjNMPHppeSb&)b_=WFzF*n<WAzzB=RH!cRjf+2t2E{npZ04&`>6y#N_8s
zqJYE&vpG-HQQ6u3{nWxq6iK3}<Ug6jQxX)Dw78@tk|>$P<4Kf~*|L&SXXzxK$i`)o
zxbh%aJ($|nQJ+ro4eUW5l_Z``qFfT8Y{};&ctO(gl0Gl#^xopdBq~Vny_7^n$>fZt
zl1dU+mXz5l5^#|r&X71$QciPn!V*W4h)SSJDkObbQp#kVLbW7bO`>lS{gSAj#A|eH
z63vpBx+DC05_OWOn?#Ky-bkWmk_VhJYbC*OVtSKqzaJWYKU7<Ch*?@MiTX)2qVfII
z21zi68z#ZwespK%wf<q&;=FDw`7COZ1XpQ-=1H_j^57pj(0iAnEt6Q&TeOy9t)z0w
zv`M0E5)9)ndy95S{MK9C?ky<XF^Nt|bWNgL62J6QIqt>#h|WoLkrml))jpzo5<QZb
z-$(S8ntLYED+$szeFPgCBWWKgK$)F=ME@iPBr!J0*YSWF1|~6rhTX{=l*Hg9hDgJP
zNn?h}IOO`zKGL?~lKDd)F*1n~gVa%yj+S(cq-3W1i1A5GNMdplZzaLNyS*>W>Jz2G
zlO(0Drbxd{OX8sirb<4A-<DvybUqzUx4)CbyGfL`@q~@{l6XIfBS{=hA}eR550Y4s
z#L6T-OyZ*?W+gG33OlKvBrzw6xk=1puam)Hu%Ei9q&#W1Ac@ZlDwJV(5G+h$k>o6v
zl$<3JER}Rw63essA4|X!Wf_YwbrDu2@hLe;>`7uZ-JZm@B(^7cQw`Q7u`!8FY`T-W
zK8X!U@N6MZk@46V+hr4*lh~5Pk{mg=CWBLmJaXCI3|8HTk4W!GVrLS&lYHhHyOQ7m
zOE${Geh-iB5%Vx1=?|UMy-Dn2s3&ode&$g26-*Vhzyk-8!C5t)zT=6$FOv8wi9<<z
zN$+)5%k>qshs_<9X0Xv}eS-sX$C5angp-7u#MeoDlf;E2eof*;5+{@RA&DQ8IF-b=
zjB44|ceE{u;eEwNeZ|&m(Nq_;b>E<ybTUut{glMdNt|QQCWB**XOcK8{Xo3Aub@>Q
z7*QV8qdm0tyqvIujp%PlTuj19!sPfS5lcc#LQf)|1a(&DvBNIviN3+p`ouiK$6jz`
zEjh#-lw=Z#B>xf$di_XO)s|}M1d4e{_(|ML;=d$Pw1iVQiJM7WO5$=7*OS3+(iN@%
zk?7SVu1WAayF5YV<`uUxCS3@&cm7C%+ar{@LD!v&R$GBTC1BC5ByJ~zO`Cs7CG(#o
zxIJ=5s^T_?-dC^+cdICKS4whY|9%n=lE`Nxzl|I=a@xVx;-fZTBbSZbcCal&<&W5y
zJTk!ZCk0zH<go6z$!Z=Od1V!Dk+EU{8wG7XB8p-*3Q0a?9<xD8G19`47RfH6s^T^;
zo<b=bCG6mjhLU#R0jAEMVAhhrR5r>joigOxSj37pp0x3ljg~fA*?8K<GdAkjsB7a{
z8|7?Nv+=5p=WLX>QOQPS8_(N#!NyAz=qFyZaig!O)=xC=Co0&;(@!vwU(rVYegS`G
zKT$<W3L7um2-)CE)-oi`l$2S;MmQTsY(%rMY6ov@p}?wsqN<HoXiPsrwO{oUXZi{9
zoqmEB>Q=Y$nhoODZM<QF9O4=_{_7VA)U@%YWY(f*`iptrg=@<!F(vESsBfdGjb=6)
zuxq^b-$r8_4JAIaGDGbzMvV&Y|8GKL<XZq5_YYnW&|GFI&_YU*)4RWDZKI8iNgP}o
zZEdu((T{$x(cVS}8{KSlx6#o?CmUUD6yK$GmXx521pn+*r}Y=ip5G9Z_OQ{@MsFK^
zZ1l2GWw%QD_->Wy%r2GLzBUM!_7|k<FGdI07_n0wVq>U{fi?zlb=|2>-=S{nF9zEn
zIMrVavoYMpXd7cFY$M)ZjATb_{Lx<!liuH;GUXm1#xk@Ru>-_JDc0#Twd?>f-o^x(
zC8ijwkiKPOijCRys*R~OrrCIxP1|_eMnxq$g8|%(b6lNnga2quUKX8c;~jcwdGNOm
zU#`TkeBZ_g4Du-7z6$=^#aH8fC~Ngx9%bEGc5wF>FX`gDmO=x>T!!KZ%%eZQi+=i6
zXub{71(Gh5bduyRv9Z*~IUBz)oNO$&vDL;l8z0;F#KuY+t8A=b2XllUmDgeMqAKD~
zZLH>izN>Dsv4)>ey_Iz~*0a_fb*-cg2Z-JS#0DExODh}M*#Y9?0ph>_@yh_Q*~S)5
zhXJDSKvC>)_@C+F?KXDUIBw%>8#`_6vT@MH7dCd=_{_#$8@dzPoJVy0Q2E@(9vk&G
zg~)lcK)~6@TF0=TwTdVQIGV+yO#kD&8z>0AwDFaVBXlXlyMQ=kgL)3LN<NXwozY;R
z=r>TDEv?KPD2{PP=Mx(S3f@chjg1pFez5VQjgvM`+4#=J_p%AL%k-^{-`j=r7gD+w
zQK;~=4Qe|vFtFz*8$UDNY@FrdRwyWC`Y(^5<pYXEDaPvOZCtQ%+s5BEezozNjY~Ez
z+qh^W%Z6*ivk{|X^9h?1mUCfgIL>*RM`(0~1cs!hq?V*CO-PWWh6@U_=0NepV^NyK
zMt|v`_|l%Vjk^OyiaI}3w&V|NyWTl`h2637r;WdCT(xn{#&r&mjV=YmADl{qMDyMX
z@rb;lUEZLNkwK#AAaRp3H?N@P4+n``(jfx|1*Lav{KF;AL0$*{vN^6cUn;pA+@pC6
z;Cvznk398Oc<0-F8xL%(8zc@562A=+1$HUV4+!UUKne$+){YQ7;vlyJ2FariI8qM-
z=EfkA&q00%k2xspfT6{}E8w7@gJOe&NTaGk4j!s4;-IL55)MkT)B)QqE-3->3DW=F
zQ6Hz0J8CHh)$#=)N_?%75*jSZI4JAjI}hJ`c+$aB6mapXi>Dnt<6x?TX%3!sP|iUU
z2TdJ3=b*fUmmNNohvyx<;GnXDDh?VA7B4!e;NT?({RWHiPi9OWEEWzH<X3dSY$XSK
zBtPUJLvkVxG9^$PQ21e$u;iQ`EXavEP#p-V+>rv*MzL3Dq=Q-xYCCw<L3IZ;9R8IV
zv_gfiNpNSdcs&~w84_4h)4_{F#G8^y$v1|GIuh4+&_IH^4(d5*H$<>51sX~w&1fvm
zYb5E2A%S7@hlpklnmZWaV4#B*4q7_s=%ACshnvvaL0jr^&_+6hs<z8o?Edi~qP+vs
z4pJKdQ+$Z%?4XN-o(_6B=qlUoE(N+t{O1r+WT>b(RP=B_N`>@8Z&}pOK_8kenSHYX
z1^Ua<UPHwo2ZJ4qb}&YAhBz4RV1$FAGW*t0zEnD>zF?>rDTiZ}Y?m77$xTBA>5-vg
ztb>UTCOH_#S`Pn7!G)oM${)5uObwGA{5e#-CDk%J#R1*ORA`uZ+re}Pzw!{EgWnHj
z&Tz2M!6FAU9lYb<T?g+unCD==gZCYL;Na)q!?T=V7yY?u(GNLIZf1VOkXsn;Z)B3r
zb}+{QUqCb0!E?hz2VW)TKL|VmSFB)ofrGWjG8ZIs%&rz$>|lw5jqC`uF^aB7*09vU
zGKrT<`mv-e`ozHsiC1QGR<UV`S4+xg&?v^Vjzd2;`Vg;|MH?hd{1MsgV2gue9AXDs
z9c**3*TFsq+a2t1u+!m{4tRZ-=rl|$uOM1)jE)^9c5_~^XqfnnZW$(iy&n180r?bQ
zmSDew0}j4)@RfuAIXLLx3kTPR1*NB@7-b3$7cUGKhothu95Shj8px;EQ3u3Kto5~n
zZ|GqMXB?bxa8la#qpWz!!M6^6YN*y8F1imF-*L4WF1~kg+ClM`0#$722g#(hKS@a{
zr_QsC{9)pPR6?0^(*9o@oR{EXMXDvZ=pf6%Roc&@9%9hbk(h(H1I^(lAbbZY2Zn<w
z)f6Vzf$6|<kYM-U3MC~a_-a&;wH-LwlFWLtl(kwF3zMcDT+SA_#HDXz=Ia+j6uTnD
zey1~~l0O_==gR4#q>GOpi`;N<m&-UK*}-29ZZghy;tm&QF0Ic*Zb^Du(!V90JUkdm
zy1mDb>c5gM9WMTJaG&e8i^47*a9OAt$?GDYiy=R$IV8>L0utnsl>A3r<j%&Ay2v9j
zTVzpw7rTdx0&Xxaj14-xpc{C*kfa<4Vn$RE7e!qZlT1opn5lmBlUm%x_rrxhT+oKc
zU6gWB$wg%srQP7}$|qes<>Cn!Wn7e%95Ne4BF4QC0n^hio^?^q#WQZOEz@Fmn5Fys
zDtAjnp39amFTwMYzTo0T2`WhXlB5+Sr8cUq;vyuoQ5P95s4DD&{7e^$%y$1NoO^^I
zjYvKPo*f}n7s3s$$9$PicwTwMMOB%-S~5!JYa@c&HLJUL&BgC7uDW>LMGY5gT&#8R
zhKrgmdb{Z3;!PK|T(oh~)<tca;i9pNCN91_9;xf1zKaGf>d9=0u_~EN1mrh#(a6Qk
zSCo=PGW`2WQy0x#3|f@g(nWI@EnNI@JlHp*e2+0f#Wh7Dtr$^7GFrQsQ8}9PHg~|(
zt|LS{7u{W493k4f=-{Fw2TO`|mD=7OA>3P`&Mrv1xL75#-CT^m6{4yyM~Kx&Lp@yd
zbaCitsFw>`a$$@*|5m84i+(PqxR~mqzl#Ab#<&>kVjyiEA%?gZD)kR?G1$fR$(gky
z3Tsi@FnVmXI?}~(7b9F8dpSJjzOvvOrQNO2C|NXGQW{UOak4Hgndo9X-CHE`?XA!R
z7wjDko+LZM(#bB~%Eq*Onv1tx%yTi{#dOJ^>Eazm)T!_c7X^9e6{7FDc+bUb7js;k
z${&5-#Ro1vWIT@)Y=VBiF-HA}Lv}cmX_f@+1>HE;#V69?86yR4Uf^OO<7%W>>GC8k
z7Q0yHV!3Q<iHoJOBCV}4JH(#WmKCZ0V;7`MpSW1zf_j>bRhgxpRW3f23Rg=?4jWzP
zV!ex#G}Xlhsq=G}&xT{8i%l*zyV&Almy4~ZGaHW-TcyAb7u#HHcR`=C%hW@#(*<44
zpkkMI%OdvWGid<BX|IcYF20ry+3(^22c4?MsQ+_uP)5jCF1~m;tcx<gWF(Iibky`$
zBGgRhgvY8BKJ4O%taVgUa*j!GoWpS|6lmjvz%EY6SYq5VqP}(Uor^3NF)kf082>+V
z(z!UziV@`pX%C&l;rrRe85ieeG@h0GKCeW6adA!#D?@_4$TvnMWw>5&@vD^lP10dw
z)r+!G7R6m??2!vkHle#PrDqIg4`*^LsMd1%_d1d?0&N%1cM3l&B5<VZ2z+S+op4Du
zk#doi@y3uISvbtzU3PIr+QzsVHd0*Uv}LS%nBw8OiyJN~dZ^^#PZxi=$l)QUhnp^L
zxwuP*<g8TxUg$Qb(wjN|aq+i{J1&+C$Xxw)u({15(to*z+zV}=AHL_}KNt69mYfF?
zyu36JJ8?sWhg=>?cqr-N5f8aN6!P$xhgl=VqaN~mDByuNZ0GT?YNW{PA)f?$8I2=F
zK@Z2*N52^<NGVTR*aNfV7xhp?mXaACDT;Y0F0)s&g&+4&%EQwhp7D4DJ!r0shq6-U
z2@j9vj<O<u+MnHkCp|pnVQlUw_YhW8kLDO9p7l`9!}A_q@UZVQ_2>pXNBc*K@*Y0=
zOwAl6Dpikuw^M!5Lj?~nd8j{1aBHILC^3JRN<3nesO+JNhq@l>c?fyP@bH?4*F9u<
zP}pA&RXv0~L_DY-gomhyucjz#Mu}si#CxN}l4;Rje-2e`q<(QddTDbsHcGtWp_+$R
zJ=_^3ytA20w?$7~P)dy!)jfPtRpl+aH9QQx5_!`@Ee~(7iP55_qy*%DaWPceLmerz
zhp&^k5?OdKp!Gd8@X*CWS1&m3*w8~O53MC`<e@R$wMA_rvn*{YK{H94OWMLi%k0v+
z>(NHywjSC^z#G?DtG&d1jz&6UOLml?)5GjTY)2{CP2#a0x_jv1p{L9a@G#IruZO~G
zGkQzV$KwIZz+k3+9{OkF(d#iN8;_J=u!kYpoS_m7^DsP{GlJv(Szsj7D9Icx=@?0O
z^a+Z_NjzTC36f6qFiC>Rl2WGSXff5pG!JV%o=eBu9;SPk?O~3G86FsB?|FFN!%T_a
z@$lj!(RU?f5i#ipvS^m1A2Q4&;2zYV(SoHEp6g+rhs7S2$fEg@E|PSCRJG8<yHfa}
za@Jbv;bVq}EL|q)aw$(S%B+xhwTG3QaUMRE0{_>X6rhGRl1V`M^&WP3*y&+|hm9UK
zdDtvl+%9FdNNrm^(2R#Y+9o;oGooyc_V4nr+rwcGM?8Gy;d2iMJp9kY9xe!b)qNiJ
zOR!hcno5*R;)mIT9=`B!NEUr5DNDcd@KB6+&1mtEf7Ijqsd2)?NrtYJ{F*C<)bmh)
z3je=`Qy#vRG7noJpXs!RA3V4|JRd)L_=!u0kJ&zc_Hc$PiH|3I)O;m!)`RZB@Nmw<
zFCNZ&xWMY0a%M5RJNm1K-#lDo?Cp*|u`a~h0}hT3{-@wy2Ba|$aSs}+j26QZ5$@{W
z94$-_mWO{m-1U&~kmM@u;f4p>gX7^356||@>3Z-y_#Sw@Ew8%et;MZdD@Eo<yHr$C
z9@6xu{5SKG1eZNrk>K}i{#6OCamwEdzP~Z?w%9*C{N>@chrhZ0dptcJy5)fvL5GT|
zya$-~$MWuI-eh~n!#^CsX2B)HY@Mn8!RS2?|8Z6Kk=w_8FSy`0hmV{-78T0*zzePs
z=H<o<2P^QA%MUaY=bEOxR!E`c>-H&+`Y7R}q#txAkB_|m|Jk3<M}CP5_$VkrAs<B~
zcr06{u#fBVQrx21oMJwTOI&13;OfVHl=6c+uIabRV+3!wCG*!JY8fA8eYEw_&c~BJ
zp7QYq2h_*YKA!QB;Um-MkwujA@sf{<KA!V=;Zm?I_M#tb2|n-R1wYtoBj%PP_XCM5
z-BBy}!Db+L0xS8b?4yd0kdM8EltQh74MXnxk+KSRED01JVINg}yy7F`BkDu-A$)K<
zuE7{FrgX4r_Hv`h%RUB;5!{j`hZ}Cye7x!hJ83n1yxdG7zq*gFN-5moe9gz}J_wk&
z{dKpO!YXh2sO6)vk0x}!k2*fO{jJvbvFli{{rK(}QP)R3KiEFCriVMe8EN37q3jxW
zP1&hNJ}5)UraqeaXz8PsA8gx_)7%esGF$jKmR~SkDX0{EDZ<{hrVnM^Hh!?Txo(VT
z@1ui{;p`eU`{?AOpO5}NI{WD2qlb^4oKU?L?$LFnc|N-P!LD7!ztz|nadb?uao5X7
zZy&GCQu;{B%|`Z}0)3?<g}DXIEyMvn2KyKy9Wu}d-#{_Q$L%qK{uwGIiwzds8{{|+
zli8wU#Yi8cd`$H*&BtgTV|+~XG0DeR>7wyICP;6LleBE!VBqeYQrJO)$v)olF-1!D
znicFDlS$>=WBleAN^A+g?PG?InX-4&8RuKV4NHdKp-Uy_Lm%AFe9y=G(wK~~!JywM
zrF`InbZ^cK3V-yl)>tve=P6bkU~K!C=VQK)^&D$@wQG2Rk0m~qO1x0gMLrfwz|vl0
zMXRpiWj;Ra8eZ*VMaAfHHs|9LVwojpm5-GYAFdi@_S0<sl(AxskF^vYD-Mhm>wKIY
zD}Em<NH_Y}#E$#e?c<mB%4SAydu6AOEiy~aRtdIAy4}Z)Y(8}|<sT<LlbjdEiTyr4
zmw1n)d$T3?NkFx<zs5Lm(8m`(PW$-5$Cn&p2A+@OJ`Qn$j1xzE9QARS@!2)}&bXk<
zpN<pkK2yOC3XT8T$4MWjd=z>s^BW&0Bw*2@apJde;#(izb5f5J-$@M>J1E50#|gIn
zqmQ3_ocD1-_VH&QXXpoMTg&zeJ3^UrT%*Q|U$|CuP?(5+_3@hzjgy5%9h8ec;y&1m
zESV)I#$GrI9Ys4Uj2F$v3&V%yBjLmJF>t(iXS|qELs>swB&GiyA2tVlyx>@nGBN9O
zIby7)FpiHN`?%zzK?)61xa{K!SHcuZr0~0st3Lkqao5K+pHIc&wvWI4U{CV8k6VnT
zwF>bK$@!BW-j?~7kDC$@mzWY_>5-F}4f}@gNajCMlKeB@X4d^zxyNblBVP*nQ@HQr
zfe)mRD}@{>92(ER)q=BC4F{+>Y1jZYHeNiELhclJE-r5hk4iwCCxtgJM+uk+$S3vJ
zL<^+wSPF$xD3}7XMFy&cQsAkoJ!eBjQYe~2u@o|Xi40pBls=?S)KMS#Q7xIm<0+^q
zh!jetP&$S3DLkLT6RF_%*3&7z2n=OXD4RlsrFb$09z%L6h4=fb1WW|aO38APvWU#*
zBxcb+<HZXpyqH3j6hhRH!b>Ssmepr24UP_0Uy6z;RFbtQ&m%76P(wxvnJI)*h@>zv
zyImy}RH00idL;8<mhvyBP&I{`^hOHL?#z6J2Bh$+#2l3BeAxV4<n<J0uLu#mmO`zW
z0jQC}v;rA#NE-hwlekt2wNt2{LX$G#Iw?%}I~dctjEzH?&Ch0L6pPkN0eK=9Pi7ve
zqU73}*(im^DfCYTpT$j5XqrMFnsF%9EQRJNbWEXB3N2D-$pAaAv`e8?3awN4;q`D^
zawdp2DKwZMYMfMxmQgY$h+f}@%KVtggYoTC=#T<I{`}!p*F$|Lh|Vc=OQCxTT~c6{
zhn%}|KqrWK&qjNs&@+YJDSSLZOq(EXmr?R{RC>{+zbg6bC=?){CiRtu^<((eQL<hP
z4@hBP3WI3>;?VU2nIlseoWhV4hNiIZDP=gL;;1r=f%mjhx>&~GZVHu*U^m(H1TjkT
zM@ve9G3?;EOoH+BSPI{yaDt<j!lV?oq_8!G$tk>*!jcqU#f~W{Oikh51TmLxPvPwp
z-eWwZFg=AC>~ae4rZ6)*ZQY<Q+o6(@N%}C$(hpMjFoln#7zJj@Qu1d@aBhMib507E
zCJ0uUC!3p}!h#eQO3c>FOcbPxWOgy_d@sc8GP-e2Xk`kkQdpisjUAaEr|^jcD>zAa
z1)Ri5Wn~TZ(-c;xur`Ht4DTB1niR+%URWU}AYGrrrW7_a0(+<%QrIZL>RKwZ^*ct{
zO7+JTdl$CJiu+SIkm7xP*pb4{6n3SsCxyK!oII=UPT{i@yqbI|t@7n8e9m@jsZ}Qm
za`wr(4^>@#QziHxP1PdD7<)C<gDHHG!k3am=HV2+Vi!2UmxkI;6yzMzB1cj<n!<mF
z)VVbSvpZc1x4fbpPvL8+VOy?@>9y3842-SOb1D3i!l@L#<uKjM{4Ryl3}cRUZT0&U
z=IzM5ekAl`DtIZ+&ncWqVbnzN6W5Iyp?c2<R=@Ou+U#cNYzoYF+7>;}`IzDZR){lb
zJ4An#ZvRbU_Tr*+X;unzCklF!R7*im!KVD$utDYLR64;*!ITx5rA#7)q;w9)$Udub
zEGXlo;L>}N?{luz2%OKJ-mRrx;^NQ9yoR@~;R+`>*W}B1a2Z!qxJI>?(dRO6Wyf{S
zqf2<|5^kjMCqp`o$!YwR!cDG|X*{3CtrTu^bxosq8h@v7hwDQcxzhM2g?}0LTa+AW
z++~<iKNn<rn~`9v4_YW<Ka}SLakKsS$yRT8nJxF@spU$}bWm%or#zAd?=62cjrK*t
zxzoYT;mwYNSH$N@BX1h{(gDsd>FT?Y%(+Sdi3>`~qCyfpCTZa`ie&SPO28_$4l5<n
zD3wO(G<HuECDS~!p+3&u<rdHM2|tlWnKYhE<Eb=mY*BWX5VOlGWz(2*7?-ltnGe*b
z(<qn5luqGi(!BB|cy0Hdy5Z9k1?kU!DbKMNysf=V^o2BDOrv@lucc8TjhE7hq!CS{
zVj7jwD11}NOoQ^3(+H)Jkw%p?#$`mxR*PI_2-$qu1dMWgv_VzU;G4M~nIyt=`=kJ<
zX$WcCt7*KPM%6TqCBxOyIGR(;K8#n=U@vF@mGgaJH6{t#V^+oMY1BxgK^hIy_#jXC
z4fb)6QYVd?X}l>pwbH1a27A$Yl3;hnP7?DbiMnajlh*phMSc3exS+2tl@x!TMx!*E
zrqL{o#xx)vYLdpTl7eYbNzpuw7HLdO2cHft(`c2(NM=il)@ihn%t4a2O{22}hn1Y|
zINTC<khG(utllY&g?6wd+a-;zX>^nPUTO4Bqr1dCvL$<_v3*kTo34-K^p~`6c4<Ee
z7+?dkIRn!;CFNOVa2i9h`9sqfCh_oW&WJP|DLG1VMoT(I(y@|`lXSeK)HWfF;Uxk~
zKC2S^oP3MX!jMkmWExY`n3l%IG&ZI2b{f;uSSxGINMmLiAExn98t<g>ZW<RKs2`+p
zf0B4FjrTcNlf|J|!_2PzPOUmwbet^4PZqP%m@TW%O9$@)n3KlbH2C6%sz)M!q{0LX
zCX4w}U;*8j#-eNsmrJl%(j{pum0($RX~(iTKbH8DG*+asQsPe~U6n0!w{OnX*?0|y
zesa)Xrgdqo=Yn9W8`3y8S@5M8#GBLDlEwkbr?EASZItKKOM~w<*q+8t`sDvH^&QYo
zRNvQ+O_g31u+YI52rrquiy$C^f(;c^Y$%Fi0Yp>;8@>15d+)vd04XA<fQX<}siMM5
zCYhN`GMPLC{PrCFS?gQtuD$j>_uO{wxhI*)<PHy4xgK1bhuM3Be9;5P&-WB;%)_QU
zY{|n`k`;l2rB%JW;O0E=fO?W%f8_G*4BPV13yPe_r|ihX&OGeN!`?jXVi)~`-{xU=
z9<KBZ@U(WGN6pi}qu+QZZ||eW=HdH1@8s?M3@Lq;US9Q`8{k3i&)(x54}KueJK+7V
ze*Pcx@KYY5d5BRt4~O$`E)Rd?;Yc2S&ckueQH*dj55I6b3x6f*y;_2;{mNb6SMk(w
zcKur(e$T^cE-S03z)8VVf)hLB^3?#H_6E=9f#>{ptruhqJP-WgLh7-;>U<uq<>7iB
zF67}Nx982=OL_QP$Yo9~4}S`${3<8D+f!irON4i_{|M)wmEP{F+@^uNJcRS`#jRi@
z4}9wf-)};$bDQ%3^IJh94`v>2Fm%(GZsuByig`#1k8=gvC|fv5m%joI7dj8=Jfzsv
zUxDL~2Z=nXsDG7!b8jG@Zr@kU?yGL*;TFfg$X_^&+j;me4+X+N7+GO_SUT|abHUp;
z11)~ft^B{BuS%d`7<2Cp6bfT&Uv<O{%r4vTV7*|Gu-AUkFp7n}kaAZTcMB;VMhPJ$
z1<Qp|N=RwJGJ@1E8^*D||L33OMOZ<wqF|*kIA*HdBiYJ=RRk%l8pgdDKI!QK4}?)I
zjE}?U8AkOmYJ~Ab7*B>#GmKhcXkmoHs2xU~FtWq&h4EDpt!^0g!g!Fv>p79Withc|
zAGwe0^jG~PP@glZqXohUhS4Ale;9Qqqw>N)!!UBfn0dFF`Eu@yV?&e_?x*<L3oh1k
zR|C0Ws4yN4qh%P4q>E-@G!NsUu=lo_#)3@*nSD5nrWwwczwjh;9!md67%jryf$-cK
zJVihFkoUTf9tnS|Fdhrz@v!%<meyfB(olQ7Uy!^_7|$ny%-&y6Jr%~&VZ0H>n_)Z?
zM%yrUUdnwXjAuD2s29U{DU9c+A4WU!@~V9pFVH^y6nQhj*97V69b^pc&0L<`{&E<f
z_fu2)DYo`%7_UjQuM2h*Ja##kMV-QUi*6G}*D&4=qjMPVg;D5M&O2fJT_#xdp}@Og
z@Hl$Dl%Y!)HyQ=jK;x+1590$4xVFY^#rg7t_HJSD^%jgaABE9f_{r-*zTKur*b6}|
z_j&k97@vj_h#(ljXJPaTqhSPxJLG;IM(;3|hp{4zK4E+jM*lDdgkh}B`7(^J!}unQ
z?f>R}#qUlP0>{_p^p&E1VN8Pda}}*w#Q-%~G*J9%S{T#A7!=0fFouLNG>q{g9~Q=N
zE<_lkY0s;H5h5HZoNh@8-%COq6UNvu#)Z8XyHL)T;57XxuvNTeLdI_=hC$^?VN4du
zl#G087<`k?omw-(phGU8*JVm)37H+n93gWB=VeOghrO80x=ahhSd@`3W}Cv73NFjY
zFYL$4Fjj?8pZ2V!R)?`BjO$_Kg|Rk_bzvL`<6s!;!`KkU?o6$X>?MrNl5KV^YfDD{
zKOtKMx6#@e`PgR*>=3?Fa92kDt&m^)DSpuG;bLX0y@LC~_)f@vLCU`md+!(``5}xS
zrPc+(pJ>A{ehK4{WDg7S)iX!J_*ppZu)TPJV`2O%*|UPj!#FAAgy3(2)cjq#BRM6K
z(;4|0I>QNXMVQWUcZmFarnLIF0vCl}61*&UC5%7AxEjV^^noz0iE!ywFHZg)hMmr>
zK0nATkrI+{7?ChaM?3{4Jq$ODbQn>oNJ)(D8ipB$B@$aOo++ijCBjHb)(In(kx%_2
zmoG?S^?dF-ZpjD=OBer&LRJJfh1?RnovHO-82k`ttpb_xKuAHs-+wAlB!bXQ@9ST2
zkra)fn2@^!DId7cn@EWWN{XaZM!q2zWg;jWLAeOZM^Gbznh{ipcy9~3S9B^yP$`1D
zMN&m1_hjl;782{Hs%9itzx8^#FM|6ccp!pmBCnn)J=o0qQz!kimPqPl<h3KHBfM@#
zvc7+T2Zd(~`Z991&>(^jujKkUkt@0X9?Bsy)Z|34>%JggjHS^I5wwrsg$QyZP!Zn#
zLaPX}z6msnph*M|NAM6QTRFtkSV*lo!A}kbn?}$)f=41~76BzprTQ!Cw2<thT&98=
zg_KbFu?QZIplt-tM$kHfHW54#!IKgGq!surOA(9IR(wC{QxUYN6pCNWeL8}1tAfu6
zk`z7Xe=dUOBjD>VCmjsTzAM-+f?pmCGRx{y{t3Jo!AlXmC2PuyoemMa8o_Iv$ezH<
z5xf$?>a)2__4Wi_kDy}&TlNOu<i%;bK#To>H)!@QL0-$0Z=iLGco$i`gsj)!`-b^;
z1f3aGMhD*!BzdgAdM|?aBRCSl&k=k;+eWY`g2fSZji6fuV<H$ELH7tgiXgc@FgSu9
z5quoM7ZH3JLD2!Bo)LV?uur!c5c-7H-j4YQ^ornf;Z$Ji9r1*H1m9^N?9^W|`xU#p
zm@^=P{{7Y0!kPVs0~X#-uzyB=!wwFNVBUnlp1pxV5$_-U<U=BStvP<`8yXhDXd&do
zBN!okq~Ivd=zeWiJ&i><&jk3i=eP*QM=&#jSrJU2GmPQCGQCqKCJLV<Na185Q#jv2
z-uVX8Xo}N0(?xSe#5=5D{zHnA*%9wSQ>OVs<_ON^P&4vb{ndg9=A?3|vrq_&mPD{L
z;+=tTAcAEPERSGAgnzKb3h8up1RUynje{#As9!R$DuS*3)!F`vQ&<zhTA9~6!S#Zi
zAd5CdusMP~^oMr}Y@w561-En8ux<p~B0M!Eczd+Je$_zDV!^7v=I)5#+X!}ZQ~#Q~
zQ*f8y1H*$i`YRst(EfDJlVADwMzAk}?;>!w<m`{&`v|HGP&6iw+92}WiFa!TdoA)G
zj9_HFzz>2y3jP$qAt96>7Q&m2N9pABq6nM_j&ZZdrv58};}M+TzRL<;l41WA!MO<j
z;3`LOl4`93ry@ARc=BI>lR7Or9NyWCgbF<IgF`wW!G#Dea#L^gx1Sv3;SxLQ2KFxS
zv*P6lu0+7>pAm#>YgYx2Lc5&E{X2qxXte)=*CL2SpbNhqL7tGXAWK)g8m#$dAj*3_
z5%1Uy@>m20-Tuu0)2wJNg_ab>1?>nDoMzOk$fA_26r&$K&}E!?AdrqAU&sx?TY~=z
z-em7@1*p@pU;$#5jsiM<(Q!-%bQIL_rjAZJ3h5}Uqlu1(brjK2RL9*q?$J?9M`(a5
zr(^40t?dAHmyY5(NSI3KC@H*DMp9Zx8NsrGKkUdUFLf&jRurrxxbKL@HY@9>qN9Nh
zzmBRp?$uF4M@=2~>9}7<mjUYQ0qOxE<kfUAJ8^&_udZY50QKDfb$WoRrK7fvIy&+w
zS(;l{M?D=r9rblgT$=l!j%?j~(u17%_0rs}O+)0=WU9Xe4Rz$`_;^Vuq~p}vfw#3l
zKu3_4xg9L70y|4L)O1itLY-V4N=G9d59x?52{o3Alw+V8u_Q#&R7W!%eFmy$bu`!U
zh>lh|9@GEtk6JA_)CM8`Me9)^Ed}o$s2<nRTKLm~Z3Lgx@r01R=R*w#djIfxN=F+Z
z<j?5%ihlv)@`>a*9nW)hR^_(S@uH5Ggtr%bK`=5o)IrC~G=+|iI$qK7D(y2+y(YL~
zprQh^Bt#SqG5dy&J97IG^%jkwd!NV~badA7j*fvk2I+X0tE1x+9iQrWPsjT@KG5-@
zj{h!ePb_KJC#8MhXkB&8ETMhGg&3Ecx5nR1M|Y~t1o^N}b9?Cc@r}^OI(q8f8!pzr
z5n6UJRNB!#W8>Mu&vo?HapkhsOXtZO+V<K0K03b8@r{lH1J#!_f{u-60$+1RGtp?K
z$4Qt-sL)qOKhf+j*!9!g0qok*STtD25DrYoEFDAHwT^K*#_JfaV+6Or{h={BM(P-)
zW1d!Ew9XrkAs#4A<O}Y3$~2Fd9?Ky$2(}s$qVno1p$R%B>6om8e4^m;UYMfe@<26B
z$8?cQ)lscUkP1vJO<xYp&{6S9D1V@utz!-iu4AQ+xw`j|_Cg(t*t?GTI?k{29{gUQ
zd&nX_N4=OUax`~|j-|TyXg4`iquId$M{}3yNFL2yeh1$S^1<d++%G!TaSS@ButthV
z_Wd1r_^_Y2UI(Ak=JVTpW}B<LQO717n{{kq92lhb>e$C^t7Dsv?Q{bjyLIf*v4fj;
zka~5HBJLEvOUJj8C}}0~PY0<XgVd}+YV9EPosRuF4(T|o<9n_M_xp~(k2($tA^$<h
z-a+cmg+XS2lI+Dniu{Q1p9SrKAxfBzW)yzaah#@$VO0z#bo|Dx7ek8}e%Eo5!7Yj+
zQ6A`o(>g32aUExLoYnD<j%zy7gVZ@47j#_I@dq8oANtTAI<KSDU`2k3E2!fy9gla(
zy~5};SpBKvDkH#PmG@`pxuT(FCvx6emfPW4=x-fb!%*A7ig=yjNJosDqCseAL<{TC
zb(HppBJ{B{q0WO<pTUaqD19%YJ>m};I>roEcV7*ejJ;Pwiw7%PM?y!wjvHJo9S-Am
zt590UuE8or`ANUaRq%&qv``yP<(@1O>bf?U&-MMQ<0j|$UT%RXZgI3HbN|zk6~%3C
zx>g}3N{$u|&EKmnC>XlYDugHsMse~?h;<7^(V<o7#9-C4OK#C9ibZi>6!%AQR}{sg
zs1(KBQIv?HB(tk>D@0K$iqcUqIFyTGSgTN(D9Q@y^nUJJ4MUN^>fNHD@=^3I5~{G%
z-{j#Cqe?|qZ=p8!!aY&Xo-C>wMWG?8auijEs47tehN!<z`tOaRWuZ`;A&SBWqNo-{
z-zfS;z4%i-idUm}Es7dZ)QqB56tzYEcocP_s4Kil6!oHbFp7|5vju%o)E9Ea=UqEA
zU|*6Y_eaq%!*hgmI_F&?1%+#ZH7{l5W^|O0Mo~PJku;9t@;>icjOpPhnnuw~ikb^P
z8pR_*S_r;9)SF04;jILjeT){Cmy)-RqKycj5PUX@CxtvE__W|Nf~?gxii(E!%-C~L
zJRe27jQk}b?W1@hBYBZav-tnclj#t}%NhAAQM@t4yHodi6dj}J62*IzNU8t35PxNR
zGo#r_$XijoEu?cs{!SF{3h%Yjn?8?4dOwN}MDorMFZ*E>T_xKsicg~WG>Yz-x*rMY
zA^5Ri&nViS^x9$iEQ&8g*h}zp!QO%_?IVP5*CPK?_*a5oNAZo2r}lV7{i7HV#a~hU
z9mT*X21T(lid9hzj$%j@3!_*R#ZVe2ipf%IxF9Qz6*59_WE7)>jLwvf5z_LM7cIvL
zA0Nd8Arl2B39@v+5H%%=sZmUeV!8<DMlmB(I#bArx}jM@W@qGcgwUk(gv=LQkSU#X
zJ!|d|wRxd`aYnKvilrI8Ovv&mR%9eCYZWMbFt9p`9Z~EQ;hHGcMzK!#`Y5&t*&w)4
zaFgI>LC&JuNzZw<MzKvK+waH)H=gv2uq%phqc|GHFCyF>#r`P17rrNoy?69K_wS41
zyA0<nSn)s<KZ)d^;17a7W^_(`fJ4F$3m(bHf9Aq{>D^#C7R9eoTon27C{9FiPWW#b
z&C^1DXOzoGP6^>5V61*7inAGc^hf-W;pd~ckl~$u1ukXy<tVOX_@6?qa^0(WJLsP%
zt}&X$P&kI`QRGGOpD2U{9l=Nxx{zqpd%=1<ikM^#K{jGWVP$yso{%j(A(+g_zuy;1
zWw;wfI*R-#Ze%34qWCw%Z$`mqZ`kbZjO0%6$%=U)s6Y&0dM#K`vR?1!0!3mdD%pB5
z6pP_5;rGQ*Jcbf6+%4IX8U1oGl*;hZF_g*hvi$Jf{eSVWd<+#b@`^E3it!~BSq0{X
zYMk|A>^(75meML2ovJb1D_q~=1%dm8KM+GTA=L$I3)T><8AB~0R35!Nr;hNt8Og1B
zcrb=+$@*f*i6Ia}eaSWu^k+01#&G(OXBMVl42@!VNQyMUkYH{MDx=>q<+)$u7@CTt
ziQvPT(jQ+a&@9873rX!N@MsJzWB4S7Ph)5m!(%bL8$*{E9*^Nb&Cr`Mbc&&M3~gd~
zB8DeL_^RMjF+44VcaOD-p=V-fE7@mbcu@$eKNrLE8QxAvd%+iC;Ey0wcqs<f?I6OJ
zGn%i&yc={ZWqK`!*F|2fN1$U2Z^ZD+V?oMUi}+Ryonx?usBJ^k+x(U_L_K;f=N+y~
zj{pgEnBJ2vx(U7?!v{h>6znQU9aij~;U5X<5yQtqiVamgrDdvp7DKNXX2mc&hR<W@
z9mB8~hR4t+hA(0m5W~P2zKp>)RDB)8H#FK%^;HaS4^`g`RefXV7eoIT@`kEuL)C_%
zifX?IVwiehm>LwrkQjOnQ;mnI!L*@}p)rgcrkIuvQzOV@m>9#P7)HggXP6or!?+km
z$1o;_bHls_lY(W3tMM|72~wTIV4L-atI07;iD6m{(_<)iE{Dxd6@}KrJp~SOMhr8h
zsPk~eaZ=%{;c89{b7NQ(^PbaN^g-^tnD=De!WibWo#EbzWDA6_h{rT-8?F||u!Md)
zTrG`Zg^*=2ERVq*t|(+8VRq&(!PVS%Tx$dO8dw{{x)}bB;hz}R$FL!WeKC9&!^Rjk
z#jrJoZ87h8S3UsDCy+M_-$I@5JRzUp-5&EERNhUmj$sEKIGt;{xjSRtGtW%B?hrv9
zBd{mtJ)FFkRYrM_Wb?V}{V{w`8^-Vl=d~qxfB`crcq)d2G5iqY>963y7v;7D55@44
zaAw!H@B-{%*+)lW_&J87!hfN+2stMBs~|Ox$FTjj7x#V>$?qBY$r$b#;Wc$ShKkJs
zXJR<ZXi!P<nG>d2r$Xns;-$39F<jxWW4K7G7FEF!>XOL2G}Bm0Bm5b|UojN=)_Xwu
zYRo$cf#kwnYJV|xjln;Lf(8m1$YUdSsdx-_3}J3V$?7r0VlZOfv(QoQ*%4kva#Knz
zK?*79F+wF`NXBq8hFdZ3Id&(8{1|S;kdiDVZVZb{1k!YP<thBj@KQ{1;mG;?GmodZ
zO&5wG%Rm9cTLR9Vvlzop|MJ5CpARQ#Cr?lpHc-UC-G=u#dQk(#SZbiWfx8S8H&Dtz
zX#*t;lr*qnggP`r@mvnpW$!%Kf-RRZP?irkmGoAbkJDct;XQ(0!SK#`sAzx>U{93?
zusOC$hWBha-KpcQz&+AkWdkkU+$!wF&1LWR8MxoT^9I@(c)&n41Db)5f$9co7-(o9
z$3RU3wG8+S)HhJu@Sb?DW1udlInsLoo(sWaF6tS0(D2U0_@lVWHn6;yVyZGyaRn))
zg&VMibgth(?npHtoy-3P1jHtE>7WdZBi#Hgat$a0Z45kNppk)xI9da(3^eBK3_QXv
z3_NV0se$GOX!dp^RgaOLn>91M50qX1W!-tOpR=aLxIm9`E%=fqIkDt11CJZt9~0`x
z1MRI1Z@)18{Ctq(eA2+v2A(nSlo*XIeDEFG7gue$7V87g8eo=cH1cy|>X9Q=djl^R
z_|QOC11}nQ$-tYOi-8UXUN-PLm#?ULB{R*}SXwslsvv!vX~{^{(ZCzxEu07k#!dZ}
zfwv93Yj{iM9g{LD(3vweyniBGEvo2jlyouho`Lr{Bm*<t+|l29wk09bw%rVLH_*$#
z=LSA9z=+Y)z$b=x(nt>j9}6Mp|18+Trv^Tg`LYqVz~#8}e~sP-zA*5mfj%+|KJ(9i
zH*os<Myjt2@6QNdbAg`o{>eh@XP`d^8OOVE3@|W|4s4-}g+T@e)4NQxGcm-#Py-hY
zT;f~|45uR**l%EjfsqCl8dzjtl!4I(rgKsT#uym4C1;|6Ne0G}8yGJV3MVkGZp!&>
zSI)MfL1rf#xaV-rRJ!#4a;F&hX-)8K%|MHIV48vNHw1tF*5C42&P)Td49piNnQh>F
zwV*pv%`wpJYT&|1HP--c=FFqdU-I9o79=h(u)y|L8KtPU*uWA4n+<F+u++dZ_HJMu
zo!r2gPJuOC@o0!-g=AL>t`b~LKN+Q1bpKxMv1n+$fp1O(H__k+0vil$q|b~}GtcLI
zJW5eMVwBn*3~n{B&A_(?b{kkt2?uQ8z$it&acYochk>0U*(G>kl%jBtfxUE?ir!zV
z&IC1Ql=6)Y?lVwfw7U3P;CpHsIBDRNnCScn|3L#k82FL45`)bDIdsUtVFSO>$YcBm
z4&@wSl|wnl1b;SgR0t)%7zm73B)^K}xagnAl(KGz>;B)lk4CHJM&LB##&-W7(#09!
zX9X!dC!~S=K!2Xwkj^|>jTr51<jV%G7^r08ZWDhRe5Wl6n1G4Dq@8Z%Lbnb4ZQvgR
z*F@q7Ugt-Efv|8>Fe1nXbpz21k1;%E_!1PbGCXd;&hUhRWQO;U7b~X>xFShs<oO0}
zWca@ZZf5u`da}&oKLc5&7m@Z$w!olZK@){clra(dJ5bm}5fd|~<&-p0)I>4SEMej<
z6X!=OzTAgcTsVo5=Uoq$dLh{IWKJm)b}JtEjA{k79jyXoO_VcH-o&7N{t6~iqgAJA
zITM<MDhg+|;uv+0iOMD(G10<A6%$oWWSj7rxYxveChC}|YvO(r516Q7q9$85QQgGT
zW7LOZ)cFz(dxo@TZv=A2s3BuiEfcj(Y#*Z@=n<ShM%}k8=lCW5M3__01Sj~Q2`Zl)
zqsUvg2-Y{zfRi<mYr=1$p^5IJgFzEHCZ^{H0+QuwvI{msOpH+)?K4&d$0}u_k%@;*
zG&S*%2`V%;(Zoc*7NO@wfh~MAR<TMm6RT?lRt*U@H?g;=#(}YD)L8YX2@d-)6OWr{
zDV&yUMdh)cd0U%k!#SFG#>5jQo;1;EXz(dng&)RxPWaDQ)nQ<u$T*L;rNTJ%tciM(
zeU9r`H;_CYc(Iz+-oy(gwwTyz;zbiLnHXVWq=^nDUN-TmiO)Fwyqs4|bTsh>jXcW#
zs^DvauM4*RH1H+|V4{nO_e{KH;%yV{|JL5+@Dl#cCc2JO@0ebsVk{anPOTcJj@<UI
zadX}`@qvktO!P2uaGd&(I$YfGs;i0X<5bb{>d>M<cN3d$1uHBKHGd`eF^3xUf5MK&
zt2X0RPt%JJl(VnF<5e#cpPT4QBb(@LV)=NrvSZ*26Mak^>Jd0NUR`-L_@#-jOnhzP
z8xt(O$Sx{|{_K>i9}niA3idZKz{FsNdJ_Zblhj-g<WTv}DLP5?tUvuiV5o_wngwr+
zSHomAbLRwxn_yikv|AM%Wn#36sV1hG-nkHC=q(e}1QTOTJRkQnjWcnnbZEQ@E>oom
zYNClr^8%AhOg1saMB52!aj(Fz399=9RkC$px``Par-@bEYbIuKLzQT_#Kde9b4<Po
z0*g${HSyE$!Fhrtlj;QK3ty0t^cfiVvPtm0Uvd`HCnGuQ272qxc9xo0CJinZTw!9t
z1f?Iy`SyjtY7=WrtTS<Pf|`8Uy9K(|1i#*s?3$p~o7iAtqlrx>zGx8KY{HzN_<2-j
zqT=TcSD9oRcbSQ(i5Pv-#10d`au=A`X<`>G!?Bt8*2He^;@Sazz|pt&nAm6HJJveu
z-^(30Q9U_P?Kkngtke%CI!{yw=*bfm?R-$OlyDJgd@diycF4qG6GynX6V<edYWqa>
zvx#FSuAB-U<#<H$i<FYn_*{Y$CVry=1GR*p-%Xr0afTBoPE@BjwTWuO?}6fz6h9)*
zn)rjZGI5UX`njJU7HztOE-(a5QkNM9H|LOCWa&QtB@r^FwUCNe>2=Z2HM->_)p>W|
zFB5-D3;*y#;i&+>0Cb$BuA9g+5jGJqp_|^P7|I6!iiYAv8oCSo^_v7JF*qJZDhse+
znTVTkO{5u7O-!7m5+;&D9{DdA2?nZf4>*jXCb&JbKMjOW`+w>kSUpMQo49G>mWdlC
z{*?{I9rxAl;F|vhZ=3jel4AN#$jviB@+=G2C#fO#YXvP7vhZKAhD9tCoU9o93tRm8
zGEjT6A{Mn!%)(t3Zk_PIJ6V;qP~1WZ3#})s*x=mZF9%BhsEs?6Q_8}b{o3tlsH}x@
z7CyD`nT7HeDp+{V!t)j?TBu|p*YZAk?zV7`g}N5%S*UEGiiP_vJYb=!h0R@pQ#uFV
zET!FRVen+NV6wVT$ll3bK)5nlRkKjtLJbR))Ur@pNKL`plf7>jzb*FHvA`k{W*@YW
zZ6U`(z{0_wg6IFzd=~0k*w!@IKrG<5usfhJ;53vhZF2V%MH8X27G#xiicv_j5VE|`
z7ntH@m4!wY9<tEb!lM>iT4-Y7VGAuRjI0rAD%jk@BSM-9wx6O{R2+fB^8zG9mbS9+
zn8l;O@QlSnkZ^ce&Qlg%KNe_ByFDFbwv7m%5PVWF5%ZVK4xalU(AEMuo#CZz{%2+R
z9`79JuIIGlI4yLt@D?rqXYd6JuUS~oAVB`2NM5qgLCDL3l)qx(RSSRRc{+RN241&N
zs%nU-qbR&#;Z2dShzdQYsJAWei{D2UI$L1&9SiST=wjhL3*AIQ;rkZ4X7~pdKFsiu
zQxv}$Qh_aWr)8$7TlpHZJuG~j(dlX76X|006g9nmpqGWuIXnx0Tj)*Cw6Na71`A(U
z_|n2C3!^Q3W#MZJ1L+S_)qyGM8w>sDv{O}I3vG4>ie3sBQ&fN9{02CHju#D`T$wY7
zu4Q3}g`pOPTNq(s7#DG>;!Zyl4K-NkCx30K8fh^U2e?(aVJR77VXTFP78Y3;XJNdB
zDHf($m|$U|g-I4BbMRBVMn1XjXRP>bl%D~Ftxf9fpJrjYg*g`HN}DrScdDAnc}-Q+
zB%ftrwg}0$O;vY-&pc^xz93s(VBxe(bFqab7FJkTX<?}}xXi+GAq-FqK3Vr@@u{lx
zG_}gYY71+{CJm;kH5Pujp2Jx8<TUmEG_{USI9l~x=%>XtTG(V^zlHC)87*w#?y#^&
zhP2hf4huWEcPwn@+KH{oE%g7-0_zT)rdWNK1sayqA^(=vh=wTNYhj=C_#Gv^{R^gf
z#-RcSu<B6G0q!#HRtvvV$HI>mj#~JIvk<c!vA_|s!9$WgY=L8DmiV(sSb9vxf84?e
z3%|-7xoYf}i^VQzD=yqgPU=F=84G7EoMNOc8)Vm~E$o`6&T~8#W-j!fw{XFNJ5Bu|
zSysQu(6m>(BGbPloY~7<_d_`(T%$iN{8Kh~RYt<>KNhah3FD{}$8`&N7H)HIS_oT+
zSg^TgE$9}ajPtUHF$?@4FfGtM>b49TjG5EDh2sS2a&hU1&XayBnB+z4KL1T>PFE9(
zha3wj4%PBLp3;K<TF95d+>k8gY=mEyNUlu}+>#m56SCqc5J$N<%Ey5?3dT{C=~AE&
zadQqo#fk_i97nRZCt=+ur>kOd+!aT0DJmI9DIp~UIen^?j-yN*W#g#SIK(UyM@wY3
zLL3!Eey?DqI4TRd`%boT=$^Q@3#iFdMTAx3-lr|I_r-C4+`Ei@AdZ{{T8%iWNwzvK
z=Z6L<=Ve{ZxVJrP#qrK`Wh8UR>&8(pju+y1F^&i0$d02)91q9gi=%!VfjELP@&<7<
zjKls;^UDA@5e_3qB-}ofYjK3)$c;m>!Dxt%)OWhKr??_>r>jPBJQT<BEjb)U<2Wc`
zh#)qNqgfn}#qoF?&7~twq@|EY1X~C`8uxZRP1H)V?3#<!I*vARw2k9gvBMLBPYXU7
z_dM+>;j}H=d`9^HrhBG)PNu-cB7Z)PcG4z!d(q)diI?K&5XYOeo@l-t_uT2VI9`$L
ztAZQ@P4Rjh9pgAPUA@7Do}m~h$m7!$ztX%#8_rN~$GxvN3`8vL%m%0BkaUUTy*M`8
z*ka@TI6jEub{zl3@nIZY<Cq=CoH)A0(LIh~aSV^+qd0od0&(<-<LMdd<2XKxqgNa~
zd9P-M>N`Vy633@;kW8DQ*3VEs%}`XkGDCe%n^z0|J41aD$Cq@2I0nY?RUBW7ynh@l
zqVhM=Y+pfE>=(z5><~%zEdTv8)gVzDETvoK1=BwThDi0H^rab!Ei{^`x@`!KpjqPh
zZjpav9HZhG&2@P`FkWzs;8?+Nf-HJ_a)3BNvJ(X-2~LiqX3#5Y)iyXaj%ji5&d+qg
z8G_!8AR)83cD(}3&W&SU9J}K9HjepmEQn)e-23jdFpjrg3ohlXmj)IIUrfVp^e++A
zOEx55Mr)VXn3fA!A<F9`fmLy=j$=(6Yq?T!Y>8uC+`ALCJ`R3YzcDfJMj4G{gJd@f
zZW4TAwts6J+hhPc;@D0S$K-SV=Vz)Thx|QP1)XETV_gDt=AB%W${IfucE_<Nj%XaQ
zIQGV|PwM_eW5&Ttw(sLO5Xb&Fcth+{np*Sjj2(<)*-Z6g96w~_qh~5l&Z{}8emIUJ
z98Vla<2c6Z7jk}ygRz}A7U=o>B2DsZ9LM80A^PXzxDdy0ar_>~Ns-WiXM~)J<8(%H
zqgR2m!p~(Se=s(d^)5Y_F2-?{4j;!QDZMOsC8POg9Q>@gqxp9nc^UaXaa_yr>#|?&
z=!8WW5!5-VmEJ9sUCVNeIBvyJqeHG4hZRShQHT+kc*VcuroUJ#EkVQ13GSV#h;_Aq
z6Gw`hWr}hI(}K+A3%Nn}&PZ;u_q+g$h9+|3WBpk+3fSmtqn{1fC}`se8&BFOWTUW+
zdNv-kQN%`38~50#Y@?WsyKI!VQNi|(-79XRjO`tDSi(k08>NKvq&rGV3n$?@d&IJm
zEhor|6>U_qakuRqJjm4V^V|-zK;*%UJjt+%jjA?k+NfpYUfVmD@_ri+2)R#?Cj?gG
zn59+?kyN+A;}faL7AUW6qmB(8&sf(66)0i4qe;xR;j_`i#=|!1+h|}T*M_p;=cM-J
z<k$#Em4<>m=r1U8&E`>`x$NTl9xWuCQ=_DjjfZUSK0ssJJ6w?mIdX!W6c174F_=wl
zG-Gw!JN~gb2WjI`8!ctbEo|?gMIJfG>9ARnR<?KKBMGtY=edtdEmmwTq>T+856J9O
zHlDWe9z&~*XKb{!@w$zUHlDTdoQ)1PUZ!U6+~)<`+h|8?mu<+y26=Sn3nFCci$Y!!
z<iU)u*m%{(Yof_B7<q~&t5A)J<PDL(W#erdZ%P$Tvy<(eFG}UkQjv8zY@T5Gj@a#8
z8(lJ%=fQ>_*!a-KXEu7-=xU>zjgM^fu)T9Wd1hmGF&(XO?RMZ}8$E4&DkkE5KjDmK
zdE;kCL?+sb__>WfHomaYTa3dK9l1;_`qIW%;tZ_I?AOBS8{gR8`K2WNZ7*_;w=u!S
z02>2s46?y{RwD%m+ZaNxF#JO~&T(qEjbYpxH*=Wo+}au;@|B1Dqil?}QTn8JGlZIB
zY>bs6@^LmU&r~E6xx_Y>*jQ>~G6!5Iz<YGlZQM6BIE6)Z0#j|I-w93=zQ0#shK-pv
zW^tQvYj7uyQ%rMg%**h(+_1AeA=7*j)|Bi*;fri6&S>&3&@%4I##m#6w}T#=rIy=R
zL06omRtl1=60%y*-5y*kn(J(=7qY>|#ygUMffmyOY-E!S-c};nYGWH6JAvj2Y^ObK
zSln(lcG%cy<CKllHg?(k?XMv(b$_<;t&QC__Ru9}sr@#-x3Sm8J{#Y0`6@Q#rxlTD
zz$|sZ#z7lLr0x$ioqVVr=KhkpKZ*V!;cSZSr%w4<kqYETZTw>6m<@LNyX{?l|7zp7
zjT0jIP4LC<wP#C*HWdoao~2GQywna*nRv#=SsQsamVX{NXX6j9pp7dwM)eGww{eM<
z9PKB+U}NDk!Hbe5p^*2NPJS5tQ=IB=8&_>G`<EaIZ&LkZ<C=}@qL5X|yK3GtOI6sP
z6SfiI@Hh+ZBOy^iN@6w);k>oWY<!j~F<aR-67-w|?oS|T!?963ff5O%=(h~r2^2~o
zZ6n|Iz7k|5aKpyGVyIhUG@6UQ<J=TZTiv$tpN*{lJnJ#hjI33Ft)22C;VlQV)GwSs
zQOOobcs~Q(F?BJK@T<jL3D4}TQZj*32~<p=k`$E|ESCVADwFWWQ&y1G%O_AF0cOeB
zJIUR`nXR0_JsHk%R!N|00{13Ben+2uQSE^QswEIgAUA>P3Dih{oAJQ}>daO(6R4X&
zJ>j(ys4ax@Ite^RoUMp=_HvbZf$Ri)3Di$u$S!}w1acB+kbpmd&a+kD*@`%QwhBlo
z6@o%|BUBT@>J%zY@Mcb9Zh_gVk?@BEDP+)~ut@?BODTEN1WwOZB#$J}B7r3dEKT6i
z1X?EWMFL+Y(29dh;LQX&CGdCxtrKXMK>GyRB=AH6ZE2`E>d6Fnq54z;PjjVadp9kg
zNuXSl0PijE1|tctUY||ixdeEb#^1kqL-P3qsK(oIFK`7Dc%2P)3B4rvD%%;YItYJR
z@Rfvj^+bh+bJS}I@16<2yiuoPM*c<uysF}lYi}j+b^;$J(3KWT;GG2cL+1wxyqiFm
zgm?Fk7e~B?<voq}65cPQl)TST%~2$8&ryBnsBQ^#Pk?HD68I>A9tnJ!z-I~XChErt
zd?HgI?<o>~jb!58T3&keN_bZs8|QfZb2>}{ob^=6QpijAU+1W=66l}6fCRoyV8kH*
zHwjS4)Hi{C!g=$J*?|cRN?>{dGZGlgl}%uL0uvG#n!vCGMkO#hf#C^QbJWO$cQ=@J
z9wB4q_^0mEcvUzifw7!m!n=jSrP;AEhj$F9$ty&DBb}JQqy(lUFqNLxBrutil2Q(m
z7hJ49ErD;7IlPMJ4TKVN)yxED(S^ze7bY;9o;+90rDM!ha}r?7cWxuk6Ulr*7A+8~
zk}MKCFXj@@^)4QHzhYSe%M&<~z|RS+;5JEMcLICpLJ6!+U~>Xn5?GVKT8`m`z@`M&
zC9s|`<b?o#5ZRExxqCuP8x!CUD0essf3D))_^k<SqhlxVKSqE9Id|^Q^OpV&u7&(E
zxGUk^;om9Pd#?JHU2p&$1N`-2FIS{o==%f?aPuw+>`Q<@H+(02KkYwPF-wJmBKe7i
z75yJseXja`u40u(3pYH(y;Hd1;RH^W(0<zLKbpWV34{}fBzU3=eof$V0#`VrilO5P
zoS<{cbodJbr^W&Q&WZ_~qUk28iwRuf-V}aet~!&zS>fjdsqhCUb*D6=Lm@}Vk+^fc
z-zok~c)#K?T@!MZ{wd_|1pX1i9}t<SaGgz+XqYDkr_IaGQ#wt=y)2WBadRb*Nbmsw
zzsXoMPg&gi^Ar<#JOMj_nLh?Q&r|*8DUzg^*I_*Q+t1$|i7uBffqYJOP%iC%lb-^@
z{}rTg#yrJeKX1u0krayf{^JKn#Fv#sfuu*6kVL@@FC?UJ5=AnSqC$!#aaTrCJc$w+
zUQ$S@BuZx_Ws)eH;pLJjpWzjRR7~=ZUG>@NJxNqfqID8&lBkkI)ui_&tx*#9CUKwe
zY-$RrCHR0~HNonFH3Vx4?&<1PXR0mPI)ZhRs3(N-2a_1u&HK&ECzAR}G!Wt!)RJhJ
z(aaGNNFtb#w6(mJLrLUjBudDF76l$kqHz*UGV&He9u{nxM6-;%c@mEZZ#K>w1Jk3D
zZ7JAF@UbKw7jmVsr}IP-PbM+3P{B!s3O<#@(;WXT47-JAl4zU6tQ2Oa@N5##CDAX1
z{wX}4M7tzDPT_|Swf0H8kVH6%ND?n5@lp~elK3r&4oSS6#GWMfCh<xVuO=})i5W?}
zmc;8x^h)BNd8%U)Tjr^u=dwRa;*BKUOk&wH+P-VqosxK>itnu?-cI6J0bl1NJ`nPb
z;Jbod1m6>+&im}ToksGZNV*Dk6YT!~>Ga^RljxbmCrL)C>`#;EjjUty6gkOfA|!t}
zk^MP~lIWAf7fFmtVssK;Ch=7g!;%=D#MeoDLw}pEh9)uZT=vmszP?G^<lYe^>7T>^
z;R6K+W#ogC7?R=P7CvgS`iLZ74d!cC$u}~Iz<l-meD%?MHF&-nlf>90CU9wzm_1*O
z<GLg<Uijwu>hOGJ)$mP9VsaAYc4#b`LcUnLJYP*sg81)zMVu!5yBfZkT*@TYB(at)
zBrzw6B}ptzVlJnU<m+beXThwzOWBncs0SDDg_zk3l319;q9j@@P*WGE#YuErpuP~k
zeu1LqvLu!#v4XzmWFJ|eR&q6;^F7|7;ldieRY|NCdESj|mex;ZuS;Tm65Ep4p2UVE
zHYRbVvTsw;J7oSZ>5kdWY$1u{0=1P}b)jOdQVUh~LT@ntOY*Y}yOY>KM~Y_eOkx*j
z{b)|7g`WTPS*Rw7TJco&yoG9C65l2HWPA26N$gMJ`y_r$;-@4~A&YenBymt0`LBEy
zb$$@d+zMHTgd7p1{IHP!MYDg-NRB4)Q3bEcu{)a4>|dpw<C&I!PvT?}SCjZFiBn0O
zPT~@c&zW+XNt_d}rep6|sE#aDSyg?1a5@Xs`6Mb-^<5CWD9G%^g^HR5$7%0Y@m=B4
zNTRa2Q2oullf?BT@)#$JWnD|+NYN}N>i@e?ohX{cDnw@WB%++Yg98p?Nq)J)a}J(&
zU~>G7cn%(L5KqERqLhQu4iYpzoimABjJk`IBbZJiCB#kQ=oszmcy`Nf8cXw&xRJ!a
z+zat+X1m@hz|z}E{3puA9Ar6OBLy84a!|klBunL5ixlNdg+)?Su!w^JPy1NP#CGm-
zP@Hnd>yfFX5NbAEq^MBF!HbJjMF*7}ly%U3kt!!xUa*27g@YEUd5hHD4z?{)RUO>p
zpt9qQmO^3`2b>7Wy`pfRgR!Hup2(u4nuF>N8ars>poW8*4*U)p$~bE|sN<ln@Y;gE
zEK+0R+4ZF5YzGfIh)Vku`W)033EO09KvOLCy3TQM-(nSFau5(6bf7u-+s>w(>6v(T
zt^-eDu~H63j@BAEct|AG;@K2FOj9^$!%i2grx&Yc4h}!<dz6i&vzt43L<ZABklnqr
zShW-d>a-H_n1jbNlGZ|~_Jo5c9X#cr%D>rd9sY!r{j`H;B(aorDSuYvBrI*`pgoP|
zV4Q;&xFQa|kOg|lK?et)IQZ1zi$(B?gZCV~@8DGjuQ_<rK_`dbBC=n1P&7ZgV8N`8
zl6^yv@}YM2TVjgN4&HI_ws2a8HhEWgmyBfmVzq3sV$lZ<K6J3KoA!}|t`536Xnm_d
zcL(bouhzXzf!&K0?Z#{mQKRHz2e-OuJq20xnG9yZXf3jsclq$SgWe8)mxbu#@RuO3
z9VT}7rGu|%SO?!Y817(%gT4;>IT-9<h=cw#pqo8NaDan>LTEiKQIwO=+QceL)KDoJ
zmdR2$Qv8s<I$B(Dlpy6}M9z;S^6?HPI9Tmqjf05}CUF>Jv}Fz^JDB2No`d-graGAB
zV79|I_GV9~ODs_{9L$vLGfUJguEi3?L{4NW)#f;uD+=W8duj_Dlz+yz(7_@h?0T_-
zB@VAQvwNq!v{dAGIEBj{tf0kG*#nlSnM>44cDF>W5~OhJ61CRBUQt-*EebX`*y!L}
zk!*6XS;#I2TO4c^{>u`@ira+mbg*3rCI54<LwKhV8nbsQ-of1&ojnfjRHwo|2j7W&
zf2NeKd(goT4hp7FD1{##-dDsK2WK4|;zn?A%E4&||142iOVtqvKMOzV;8zF7*)n71
zQgw`xVX68%kxjJ|4qjTSPSPh6*}n;r{O+KqD3Fg{s+KL~SplB@`K9WdgFhVn>ENn^
z^P<nD$}LkD99(peTB<HNxSVN++4)cUu5ekO^d-w>{Y5#Ww1Xr^<=`5#cDCW*x`RA%
z?3jbFgNTC$%T&|>{rvZ?8vRxmAC3rT5q+DR#dKgfcx;)9b5k=A#j~0AIoX|-DH4Z+
zaqzE$n+{wD+?8XNskDP$%hVm7@8E_53fVsK7Nc&m0Atr}MvQp&;$`YTiELRZFV+<h
zM9M2-mK&;Y3Pn-~q!3J@XbQzrsGLHT6z)o)cnTF$o;`OiQzw_H5-F5Sp;QW`Qz(~0
z;VD|5?pm1?SX4FzQ*_98{+V4qg$gN<P=}mYDdnx#-GU_du<_;ILR3wm({8PH3UyMr
zSE}5X!u=wAAcdMDp+Ys0R2Qrv$i{1>z%L{uyPojXWedwypXJJzLcJ6oOySYxDm#TS
z$g-aDQK92<RX>FWDfm;EwA>qHkI`B~;W>g7e)DIxmO?0nHYq%jLT(Bwg{CQ775zps
zn8tz+39enPnxyd4a`mue+2-o*S~KCzQ+OnW792(jji+djr_eHmR#NnsAcfSwwOmzR
zp+YMZv#mvwV|X%!r&4%3h0ZBF&6VO3*x9e8&^CqVR;U+Jcu~l+L|y_2Z<j)QAynYX
zGE4GO3LR2-HHE$_)XOPc>!y*g^cCUEz9-o>-L=<K=$OJADNI?RI;F6Bg?f`NA$~}=
zY>TY7B+I(*a2UvXFNOD0csGSEB439r7VTZ3K1kui6h2C!M+#l(PWjp01-qp@zvXAj
z8xr2{e7F#q&aF^AQ}~2SDOWLHr0}JX&r;|m<a5E^g1pS>BP6~;k$=UhN%reZ={F1}
zE4?BT;(!z?tyE(L2c|Gc$Y8-yf<rj46o#cRT(TntS!INfx+}eJ*UU1FrY~hm^V;|*
z8JEKN6efspB2AYmog`#(3J*!esgj+RDV@#*U8!cIFf$|R+|D;Ag}EvGp2o>E=A|${
zg<sO>c`kcF3JX)%o5sF07NxM5tC_}YX)H-$DLuqRXBW#-Se}BLLOO*NDXgSJrf?{Q
zRb0mucBSxb3TskWo5I!<wxzHxh4m>csNmbg?Yv1FT-LXNnk{{AuT&dT_-3Vgv$(H+
zN#ADf(7SwF1et9;RokAz|LDf6wbe7Uq9uGgQuyaC-%gHjs<vjfM%<mko)o@M;Q+@>
ztM1VD(NB75Uq0f~%lN)y=$NVP=PoGkdwi!hZk~3KBcG`)-=h7<#p1e`^ZhwpTQN&J
zyGCo?%6B-0BXrahuBY&G3P)2opTY%NCWT|P6~hj(jIY^UzF$)~E>k#>!f%W`)3sqG
ze3MqHbt}~y&3&g*c(0Q0ObTaHIL!~5mFmh$)$dVXXts7Pg+EfLK1ZuQOM7UR#sSkB
zbr)zCQ}~m+K7~suT&8VTD*p_x=t>Hs7idqF^Zk{=SF^RhQ^=XFy%h3sE-d|rfpL|3
zaFxnSA)G=y1v`aE3OYS`m9kQZrZA$I&tRxbA;$QyO0ib+GQL+<sU}-BnyC0J?VD+u
zGeb+HkW9fzA(g_^+1l?rwH~vy`t!BddV6-ed#=X8=cjOk18@;=@ox$@Q@Gp3JuYsg
zaGTNFMR6DZrI6*Ku!|xt3b=sFW5l%kw`-p-)e5@Uwp#mCcp(>*@Y?y;MH;VLi@G?o
zR4e9swwk?2Yrb78;i9CAvM$QG7`;l>+@zIqQQAcr7d=*LO_ytnR;l+_Xvuk6;l)~c
z7ZqGobium3+O6bb>mse@a<6FjDwVrftL&nRi&`#fyQu2oUKbCzsOI867pGUL`(50>
zSUbE}V@EM&w`=z;(yF_t>Ef-~8jEVMZc85to8p-3xTx!*feXKjdM+Mx;d60thIV0<
zHn)W@+r@WFwYH12BCA#P)vCS=+Pv{<Rj8JatqoYDHFR-oxkeszp}G9hh^JkIT;#fF
z=AyX^<)V>`CN3U!v2v-m(Ct>Mhg>vfr%SZ>5{=l@#k|#8&$imu<yw!`s`g6l5f?37
zJm%tY>G4q)tz2*K&<HJE(8%nx(hBW*AB}cv?V^o~CtM6!?U`}@YDGg0UZFin(=FF_
ztya&tXzSud7caS}@uK#ui|1Xm6XQSUB4?U6hSRIn{#9Cg7caP2T*epOsTr$1Kkwk;
zWf!lyc+JHtE()ztT3KJym72Ljd$qjpbr&67yy^1ae|W>is*T#Y*`BkVpP`+6#CN=e
zuh2B@Ef;5JYBkp=284H9yzAnei$7d+aq*sug)SDkc;CebE=IZ-<>EsZU0n=xF~~(X
z7u{Wa=Asw7SfkPGA92_&K6Y_wz4lsd->YjBNlzD_xR|g;BmdMzQxSgdqPL50T=aDj
zFXrpx@^uLwVfsSImuu8lLcZqUn|t!g#eMx;Y%1X!;DSM*{Vc6NmuZVObB+368DIC(
zzQHcmuTeu;N^8@@*Qg6?RO|Vgy+#dpF@j^8<t=fkwTdAzHD4R;VvLJvE~dK}%kAT0
zs*6NR-*}GJ#Y7jA=#6XD%WJi=wSCpsYAe=gletW5)yHeq6c@}kU8{(_*J-QPY1iud
zW^iA)nB!t5$FNq-;?`TG&0DLuQ|8i(T+DZ|fO~VTxAk6MpndR#c5JQZx(q>#pNm~A
zak0zAw=R}4_`BHPVxx=Y?90V!7i(PnwN|a<Qqt^GwfwcJ^g300oeFH$*1A~df;L(2
zB9-mgibx$so-=c`O)fUGUl-eH|8;5${cWAv>SFvl?X3;khwIcF<@+BS&-LwCr>eKt
zcF<#UeLGzYU#F_%`WCHIyIt&Y@e4PUi@h%Px%l420T;*Dsqb9uckzYhW8$Q`*Z0{C
zecZeUT^x3C#KjMc3Aw%>UF_bb{UmruFwADRX+Lw7XKF{eveUK3^ECQlf%R&3ec!Ka
z+{G!z4HqX|{3b&>>Ed@TLCD9UvM)AkHS+j<>s4sII^*Km_3A9Qb|W8)#x?T2yI!4l
zae;v-jr-ELNY7*xb#dFpWfxc2wF}$z!u6jn{&8{5#Z}sY8>+YVH{;=4ZT)&RV7;2Q
zUR`&Q=kiaEIJ91If?*diMiRd-;)0Xa1*3x8n3Nb&N`;&TK8ua7_bgdpgG#taa*bTL
zvQiF>vqAAQm!8SKUfHgtUF5sC;Ucog3n~0G|5u{QO^LdkHJyjy@jn+?X_QW*Od18!
zKpNj{P$kkRm`0&Ailx0#6;7i?1z*uLxJQblp>0r1OX~Pi<$O&_`|e8P*$s-RcpC2s
zDVc^@(N`)BekI`NCO-korqO4Oc6S>0q`eQga%q%Lqe2=L)8Lr5m-OwO>3w0SB-u$D
zROK|Pq><jBs*>dT)@@KfZcrCDsEQj^gN^F`G#*H!Ng5BQQ7w(?X#~;;roHW4BaM1#
zJeWq!G-{<$JB>PNyfIa)n?}p#z88ymLGQ*ijf9(hRC8Z;8V%FPN%J46*swvXpZ0=3
zgI)t6enHNf>)3j(Hf4tP@(xW)Bb3HNY3wfL%cV6M`&1g9J?r~gZ{)lGRHHOL+o=9o
ztFep5Y2^0Oiuci)rqL{o$7z!^ny2wd8jo^FX{cq|$XQzR9AAqx*n-}`*D8(2(q4Sy
z)_b77Z}diQ<8zO<N#lt$+NbeC8c(M2R2sWBs&;8Sody+{o)hv+8f`O@XSt?pyiZuB
z=S8@9qcT={k{8oBy-{^Y<7KY?2JNLZ7<u9w)tPPDD`{{qlN8^ivLE%mo<_$sHl?wd
zmQ3T#GzO$GFpW-Wyp=|;G(Jz`?KC>4@c}2E#yhn9CiPw#@2ByuaAv!t(Rh<0q0WaK
z;U+~*W=XoT$|lt<quE`^M``p(<70ls&B#AZ;}hY%r5)BCE!9bwdegzu_(ED{M{N8{
zdU6_l)A&k+Ukg%`rR<c$=$A%+8S|Yik$0yDr9oUEI5>?VB=oDa_tVA%L6YJ0Vc{bM
z=WkM@(ikm#jNn+oaf0Iosl$p)6VsTK#^f}nh<ujdRKaP2(*<V;&J<)_HZnWI=cF-L
z_`Ew3!8^Sy<RyUY0$vv^<|RPdyZBw2#=5k3p}kD9%LP{mvUH`8Rf4Mp*QBvlNR#{m
zcdnh+b8Dork-lnYZ``DQ-sD{xZ%Jco8sBmkq_HiH?exYp@+xHgk1?b|)(-Y4gm>V1
z>z;S=Nh(zGZpgEAc{AU&O=?dXB>!$wb3W9Hzpn+~*S?c0n*C{fpT+^U*2c$lIE{lD
z{zDo+3cuOL_fr~&GV+p}6*Z4Y_GiJPf;-A((G<s|*<S^Zr*T3E<-ZBJZ?ihZy^w~T
zk3>Gsq;Zx(J|Fkz<6Ihlq){>-R}1*gr*R>Tf77_h_@Bn5G{R{_(zu*P_vd_n3tnL)
z*{uE)yec?(sP-3k>t;pr&Sv!wcNx8Xv$`(&BzZyxY*u<2(KN1aR{3ef(lF9UiKdyx
ztj#Ks#+J>B#FA{BqZLBQS3|X=lsX*h5RGa?SL&t(*~>4R6$g1Ejrv_Rl3QuqW~9wW
zv3&fOMpizM4{eJo@Nf3*&E7r60{Pwz$-B3Bw*m_0qfkEDZ&8Kw@zEB=R3slGgs`c*
z^1bO7&&T2|Dn3{%k&iuFyuMCtQKj;+?Rj76e3Z#Y*?g4CN0oeUbCu6Wg?v=b_kK>Q
zn2$>NIPgu*-4qt~(cfNqK{K}~O70PP@vZ9q!agq6eOp!4eDJgW-hBMJS|fQt*5#pm
zG|or0d{oazjeOM1NBw*>kfK`osF#li^HE!}b=X%sAD6POWZ!A(%NF7jY+fjfMaLiZ
z6#V&Un2%hM=Ll+of&a(UcYr-nbm8uvH=AUG1(70(G!;!0(A7}^3nD1el_n}(ET|}=
zND~wbq5_HyY@lF4ETHt>d++ekd+#mDCb{n({@i=NXP)<Y=ggTiGiT0BlHJ+;6z@pN
zu~6c^YJn!xopjweLt?b_Zbd3QJkC@}O4X#aN=oabR7=WzNvWTdA|-=;Ao6{s`;+oO
zQXWi7vvFopTko-?R8I!K==uBWp`_GE%K91!riYVKQ~Ar|Of4mkB;`>hwevb3j5BqT
zQa33-jx$ronU&*Ay`=0PXIk+?At?=$!F|t0oW!I&kqqv=vX#apNqIUc&m^TO`;e3t
zNvS;EbT}7pp5$GC_>+u^@xkr9qAFz3Q>yUTc+)Z|ZM5j?@utUkL*6DSZId#NGoF-o
zNok*y9!cq$lxJxwDX%jXPdt~D=aceEQaUB&g{15%miTwP>6nxklR_f3g6#0(iI*5=
zDp@h!G&&rAH7TzpWmWOSo)U@m$K%xL%!%F=klNQIx+LX|q`aAw+9eWiX)9e7*<8oN
z@ovhyE3PV$ps-g`-cHK!r2LeW-bv|`l+Tj#c~ag<%DYMVASoX*+K<QkYWLpPZoJ0;
zI~+83@JN9DlJb$34oFIWDj$x2%CH=7K2FLfnte*UO8M)@0(}m1U{VHYmE*_ar+3B&
zC*_Nze6Nx(lk%04p-D*;Pkfz}Z?psU1j9zzlOdY@_i+5%q<oi@USW#{FX0bb@kd1p
zhbduC?m7|wIVq!)@@G;;BxPh$eqk`5i2t6HzK7$#DrfdLE{6$$GKHhG=nuuB1@XU<
zd@pzWpQMaY&;Om2(*?m;#wMlW1oNM&{j1KYHNjNTxnOT6BxNE4GASF9GASvOSy$Vd
zl9Z`QS&)>4Ntwp|At|$yGDnMMD9%dCOl^XrV1F(Rq1}YQb#s$4kIU_NoO3sy6$|2=
z=$;eIqNFTVZ!g!*EJ@1Jq%6}ey>KYLFBJ5j9i}Nx#0u^hs!V?}yE-XrbbxC)oNe)S
z>bI}d71q)CM(#^VIjk|WIVoF`vNtLFl2VYAtx4IQlpU&nbIk;OvQ4`^YJwr(d1(k7
z;{-#O?$#{jdz7%}`;+qZw)jCti;@G{1SL$2Z6e2eBq>KZUM)JFloQ;dd1Gi>{G=LL
zIl-LLp3@sl2e!t~CgmLWjkG+Jmh(xuz(`BUXDPXulw?vGr=&?rQb|d3cTGvrl=w->
zB;~S{T%M9FH-By#yd#_vD;1EKqMZtEqKP6DLyC@KSTUj)Rdf}<xnQ#vuR`yg5Zp32
zbuNAdo10(?r{t=XT&b3M(}8m8@a|smiKa+OHa19*6iZ3*lvGQ}eJLrCl50|OTS_XX
zq-092P05WZxhW;rrKA)aN=ez2T%VH46HVz<a4niQ{&<h|k%_!B5-*pM^4d_hiKgvD
zb3;l#(96y&VzvT}oU;=txiuv>r{tED#Oa@m&4Keu_!komZ{1SikBPyj9_5wTN=i&h
z?oP?=I>tLwa+lh_BPCu+IyX#EleqU2kNRx%_6zZQQZjp@xi=+M)HwULX=31zs#@`k
z8oxg!52U0<N*+!H7r-A(N%fRGlnO3@Q?t;d;DdP0nRums-VKvX&6GTnl1Ecgb&{!-
z;sLhct}E4QYnSSz<S`}u;HHqNuG*=m!upC06dNiwQhZ$T3B}nL?53&U`(gW(Je!hc
zDQTXPCso3`awAX0TPS}@@oB|p6k95`Qf#f*MzO78JH?two0dDI<hhjeP04#Hc|IjC
zq~!IKbV<pJDe0&q>YS37wA-(wq*F>>PRSGM1Y*ZYhC_ZeC9kFAl3SQ1d0*vkq~y(%
zyq%KXDe0P$w^Gt0B|X(<x0L)i$#hQ%-N@>!#cZ#<0|N`E11I-M3B5XDl6gnT%w+ss
z%~HbB_ZdPd`B-axn38@e>95^j^%axMM=EE>*dir#{wFE<G$jKxJ5WcoYtsMbh0T4Q
zlEEn%o|2!qNO#5g6^rSMRPbHvOU17gzgGN4afsqj#cvhAQ~X}>2gM&1hbg|4vVTs=
zh?G=F%gt#SnUY^paxf)_SelaGQnENDOH%TCN=Bt*66Yu-f23rzPS*I8{F#!!QZhCr
z|EA<`6>|FiNl9{&;g^5%F)1lLIr#q1^q(q>OG#pKa9@m)$0nNzDx9cTwunXHl$1<O
z$t<o56;4aZ3?*$Qo9T4jWb^f8GgBpFmCs4Z+>|U-$-I=zSF#`_yah&U)LAy!9GGm_
zrA1mKQ_S^K%+i!BOUag$6r^Oi%2%aiwUQMnS*e88@10`Sq-1SM)~93xW9B8V@sz;q
zItG}MjVbwPirJKs&0PDZ<2}v><KpPp1o_sKY*SOa6}P8kr;;6tBc_-cQ_RXKW*1u|
zPBD8@vNt9BQgSL}?N7-8j+Z_hYkX~smf7gxlpINko0eEwj;7>TO48gpQ*t~dCsJ}Y
zCFfFdQtea!G)?9CB_n4vTV!f5it{PCz|CJJY>|>A_y4>;9YsmSsV2kCKP5;@C><>P
zoGRGLEybEsjiiH{w(M=|sm4)ZM3MU8bl|rhQ%zJQbPLrArRB1;T$h$oX}LTtSES|Y
zv=mJTcUP}WOX0L!l@^*}^}$mO9Ys<kExf@>QcUfXNXs>8DXx6<)S&5-X&&B-U#pUt
zQw{Ilaz-e>J}srwa+Au-q@`?H%BSUqv}{rP<y3xJIgQ_#7T!W7xpG>7oLS;6X^E%h
z?zG&KmPA@^P0O9>;2^<miX@fOQjtZ|Or>;ice~cK{~aN?JuP>rj+fVD>0PQrVwAK|
z<$KdoB`@ze%~Vax*V9b3wA`1Lv8r%?zVrbl57KWhdNfiaEf1$<ds=p+rDj@crDb+n
z=A`A3v^<)YfoU0(mfC4~EG@64rE^;9q@`|J+NGs^TI!{xemeO0Zj+V<X=#|2mT75~
zmPToLJS|VB<(afRk(S1+aw?vhW}2w-Q)yW?%`{csOtHD*lZq`AFMYmKZO=4w_4MG=
z_HX@cZJiFzC$#1r!(qYaW@36!+E(rJ49v6X;2!bwX?Y<n9n=o{_8h;iOb^Zi(a4Kw
z>6n(6(qb~fcY~K15^3Rwb*HpEH9as$AuUkys@f!ZJuO|*@@`uCrsa*ayqT7_>A=(R
zuBy;2E#1@d7FUyg8jkGm@qAH_w7fsv^h!%l)d@ber<?Dlo5Z>Jztc_cwDd{KJ89|P
z&s#P<I8Z@r)Ojy0AEu=r>uS$=FzJJ|?3o_y=b7o|qqKa?@J`G3zTIEV@~B3Q`U##p
z`ZO&Av;*`o`%lSdY56=YV>tC`8Jw0c(lRtH-=_H(Z2Zf#e8t#Me$5Q?Z8wkhnZ8NO
z5PGIgf{EGh*ic%2Nz1Qk`GM==RD2jc&n45*`!OAywYy`6`M6<lD(|PX{G65%X*pCo
zI0jZ{h9McL*|$#y2LgXf%O7bOtww%V9K~qq=}ps9Pk*N6Zx#NfNP}%>n19&A)4{ni
z;=f$}eS<)qke2`G?HOjA;&_g0hGF)v8G(x?s?#QEY)@7`MRDpSXDUutoS`^Vah4*#
zlg!msyeciL(=t!_e8mNd3l$eBE>>KkxKweO;&R0miYpZ_eH(Fl2YU|F8WpZpT&K8R
zaf9MU#Z8Kv6}KoBC~j5UrpOCrJJYf&EsK3w;>&IZNm`ov(#)5=+$Fd*`EsK#`_pnD
zE!ni>(sGc~k(P7((w>&XX*rUX6KOfg{h#rCKE7>+ImS`X2o6>qPs_$+{QL|<Je8Ky
zX*t9FVP;TNSTQlvFnd;o&&)KvW||9WNu?#7mWx_9$zYpl#;dZQmX%5}+R)LNCOpgB
z+sCtfv3<GHm%=_DWfJ%j^QDk4AzvI{BECd@3HwrJmZ>t!w3uZ|^$E^&F?F70Twgw&
z74&CIBtiUjmbpxoFZbmNU#876>t`9~-9Y~;UyArr(wA#}x!M=%7xkr>FQ>G6aX%RQ
zHEeNqV6B8^PpDZocbzY#d@0R7_;S4#eUR@19aWaX*`}P@WL@&|)bHal-96jf<Vyu#
zs`+xCFE{&gi_d>#CU^M~_a)&=C0{E0a;w_Bjhe4|g`&Yga4}xdm&a!tr;~TPFL(Iz
z!ffNI8YhVUeC-|YX#b!I<ICN?ywS<4N(as~@6R^(_;RmyfTpTw6*`%k^dT+Z@5=+e
z)b`~uUmo<Ox-T_-sij2^`BKA|hm}+RhuLPrY;(!6kNEPaF9&8D4t#~Wh^F|}v5qfw
zeQD@RBTiW~QBT{guNE*T@MHt!?B3%(f1cZoeQBb@d_pxjUJj5=a8PWqxi3%pGSruE
zeQDv#Q@-@@rKc}X`|^x0FZ$BamzKV?@};dW?bLE>wbMp9BY}x_*pv3YJnKsbm6z3?
zJf}T;!I$S5Z+$!_Mm3f1nPXn^<z;I6($$w&IGj1=RbO87rIS`?=c)Fh8tLo{r{i^%
zb97xUDQIvq`<5@=Sn(aNyDwjU5=0&Q!>Q!lQP|6uw|)80mwvwV_N9+6eSLY)mv_|i
zJ30_H^sX<QUlOjY_kH=mm+$8o`iIsyk6dLR`O@E)uYCF1mydn<gl%!gQ#QLzouE-)
z_*HO#;y_;pDfvwCbH%}mUno*@(wx9=i{}KL{Kl6dzT}kepJRAxl=Ju<`{2uezKrwb
z2VZ{l<u_k`_hpzb!+jay%Sc~-Qde*)>7SpKUo$rt#TCB%;>)j$;kiNg7+nlAs*UpH
z4`0Um{7<zq+Lu4+kh$g`En@3``BG<Y5Nv;QNxthnr*+4ui<qUHt<YMSzVc;)FSC4^
z?aM@8Ciya*<ML&)FH=;1nlDpTnfeS2rtj3+f7(5oS~b_q%x@!ee3|RZ0$&ztm3h9*
zSHgiDRW$|!`_FbMS)|CRS?bF&E~|_@n33hatnkInNGu~OeOcwpAzu#rvf7t5zHIkp
zhc9b=S?9|pUp8}5__D#5jhxMC#`N&qdFG~hrsh1;W}fLa&usCfz?ZEwI4}4T_<Q%@
zvv0^evyI#PnfSjd-090MU-og6=l<`@9>#eOZ?7t>nr9BrGeP!DoOnQ6Ip_<&C2mzy
zye7}0BfcE<CF4uhmt(#h_vO4V7koM4%Sm6(_;OaAz&<dY;?#HdPAi7zn{&RDpKoY~
zMI=?{n~T0Qo^MjVq_q!8uDJO@=X=jLJ|}CwSv}tjoo_haoG(^Jkl}xB6+0u633^_1
zfjK<ieAeB|%?~<XCSyAp31@;n-@d@qTVNs?+46$dae;|u<h=!kq)<jK%gBuxxhW%;
zXXJ{El*q_68M!heg)>qlBUfjFyAM}oWXb|Vr?J+s1*T|5ie;pDMvg8p8`KUP?Wn$@
zq+~{}%}Du-+>nv$GEyod_bxQ$GID)JoQ0+|Q%0zNiI>Sp*^C6jg@I$6FEovMc$_;n
z)ODfxe4(k3k()DeSB76T<(7=ZGg3Jtw`U~5j%B1$Mvg2DhWyV$vv{GoEhEH=inK<b
z@XL94k+~xyUPkWB1XCY)dr{z3*5c6a&d5C(xi2HsxmOjcWTYz7BGXLOURz|UWrWrS
zE;6GQnK_Hh{n~&2I;ftJhcfbNMqbNEjf^~;k!Lc}G9xuJJRUDiGtw+0k7VT0OmMB>
ziHvMtWNK&Ram|uHmXSItB(Iy1ddll7Hpt5xW~5P`Usx2}<+)<9X{;8SC{l9s;y~U!
zBP~?&B%ds+o!IbxaL<VHr&Rc~BEROfQqnFX?K9GvZW&?PWTdSMYb-Xr0n~P}c~-L>
zGV)v|xKBhQ#OE{eLPlQ9$j+BM-WThbksgc9%NZemN%g<fZv4I2ypoYl86jasV&{y!
zo{>JP-z6h&WTZQ}R(UhS|D!EC7n_BPO;^V1`yRievR1c@^woAxFE%|h(p!~#W#ny!
z>k?C`uZO<gElUh_?ptEs$;i8OHM1G{WQiHM#Js1~S=xDt`7k5>GBP?Rf9B+)jPz%`
zWu;tJKBjU;)?{RDMn28RfQ<abK4)YgJySCAImg9`E14L?xmF2<^OqRn7a93BBj07@
zOO=16_;p6U$;c4pqX&3HxzJRZym{9CK5t=kMt;c1j~N-3k>MOvUj9=?Mk@a~BkQLI
zPb7`V$O*MT{tM$j8a#9KTSk7*$SBoxmYP2@vPqvsViPQ7`jZP;`9G?&Fe8gHGA1Kq
zGkig7FdXXq$K|=y+_uz=%gFeQOi;}kiY%R&kx9xY=Ot4zGFACB#p#MYwUwF5XDPDo
z?2OFG^SK$Br+mKR0>uZG1`cFetl5<rS(1^Z8Ck~7KO-wt*l4M_W`M`8zB0i3Q(du2
z<*OB0x6!qUb@Wn3av8C*vLPcIGjg2nqBk<KIV1Zsa)AENNI^#auV=P$X{&{8Tun-L
zDDGnT<t@|myOr-zq=(tuKINRpiUYiZ89Agr-<7owbLYv(wup6%+o0;q*P(q^GI42A
zXyl~&{9;Cu899}a(-}FVnjGC(Eh_lbn=#Nkml5Lmj9gH{QfB$MSt=vxjQAPppgp0y
z=Tei&&tq0i@i8<zE0UFKvO(M;E1|4hk(Dd6;$$V9mCIHBnOcZsC7PAK13Wh?v8)uz
z%98`U5lhWwS>XVgCM-1vvo;A$-Rnr<tX!3qqS@f_H%h)4;4N8die%;LY!FKo1_skq
zOnGs|9ZOA#tXwz9BPp4cYspn!Dl6A(H=ddrRN*j*rL$5-OR3Ln`K;WKm6AERHYYb`
z8OHKPR^H4?g{<71l}1^4JR97Gz9lOavr<WUJSzz$w`Qe$JC6^#-j)p>cRjPzRL;un
zS$Qlgb+S^VRN{`Tn5^8b+{?<HO72pu-`1nTJz2RoD>buHD=WR*di74knW|)^YF0?9
zDc+~Z?EP7JK>34tN%gEel;<^+Je-xn%M6u+Tj!+`k7!$uDl%JJ$*s#wT_p_^>t%&E
zl$q*hrS7ue=5oWV6l?1-J-^I6k(I{uVOE~aN)sJ*b50+fcEWC&l{HbTnF>i-WaTO4
zZKzN>@pM*NYnJ>Om9$iBm6dmv84B6MAD5X6*CpC!rJZU{UKSjx>7e|1MP{GNN<-JW
zUlK25WjPWrs=TA}mlR)Cd_}R7;;V|UDY8muC9h|ti;|)ti^8s1c`GZcIfSfq%S!jG
z%u~xfveGjv!?W^JR%*2LdSzuuR)%KfZB9^D`mpm^Ikn6T$jbU<=H0Bkr-Zz(l8*Fz
zUh+X!KFsreN<LET&rbm*pX5tFRl??IXQ1*yil1fWb0vcnzfh#kms$BL&%e&fH_Btn
z4U4|b%6C~AmX#J|65lKSpm;^O1SLNzFBkfM{O7EU$jbDr%*e{fto)LdaakFkm0z<m
zt8`*aR>m@m#BW*oJuADKd81U$qCdEJ^Zd`O{H6TwyyTxO-&t)_?cc0$?rvmSZkYa4
zCr>>QpOBS_S(%cR>dVdC#@?i?Ox7Z1IqB5Agj2K9wM=4KR@yE%y_TDqw4aqZS^1mR
zBr!WH#IKb<dNR&5mrMI(oWl88S&)^5Sy`0jo5SPFv$B}`NmiC=_V6=arIYs3tdOvj
zctcC?5?_&(m8`hjtWqT5ysXu}t>?C%m37M5z0%hwHfCiLjb!CWRyJp4OI8kOX+c)D
zD%q2jZCTmQ^-?;qOC^Jwc{{jCYW(k1$)lwbyLBLYmYYo{;(N2QFDv#6vtP$T2{~&W
z<i@qaFdb4tuO7|Hv8*5`p<J*>RpP&A$;t_}c`_?!vT|1WsjQr4HzZMQMc~!uE6lm9
zT*%7Bten?&yR9&{os1{5@=_>~;>4-i{AONSIkSFNGRm`gNluBC6FV2^i{jW7hTO?X
zI476o<Z|s*Bqwf8ZWoJ9M{~l-B8lZ>Z>dBfMK;Y2a8I}*CvA}+xiTmBHt|Rb=j5tf
zuw4{UB)K{#Mf1FvlHxfjk(XSPleKE<x}22C$zwUGqkXtu@!=f*Wpm)DGC3)mlX5vJ
zpOeb$TTX7^=AV;Wb8=q?Z_2aYO*y$aC%5FJLQa@HyTTA}?BK;IT=_qqV3iKuWh>2X
zIjNWn_5{|gl#?1O19B;r?x4Y(+@A{~(96l4O33fZiOKW3mE6N2=OtBgQdN01Men4|
zDohXL<RO(jnAfbXq~%IeBTuMSGbgoln2+S-(VW!I1<RJBX6n7t(CwV%x;d$rlecox
zEhqJJ(jX_VX_baKX_S)=Ie9K8kLTox9RClsJd=~gIoVMr(KIK`a=|9tM6-;{<~hDs
zJl-NFPvzuE<qSefxBywoG-Rb|nUhvIDSR^CPMc_*lQuayy3$NsY1XVXZMBGm3hi^k
zD$goX;;agm!}B?LDJL(h+6#&=a<DnRB0kP4+&W&#Nhg(a>nL@?<}hE)3FX{sh@Ert
zdQN&G!P8A$a`FZ{Q!Y_@m3dP;(^YX~yTCu)bJ8OxpXB6I>gS|aPTpf_PPp{m&Pnf_
z^if`Im3b#8@8)D)Q;!~gz_t43go}j>{L<$XB_F8Sk8<*%l75P8;>lH}zw(dsk}j*v
zfSe4>$xk`?IVXd3?4PrtoP4Hy@Ty?Fe36qcb22<9bPJtNx6nCX<%IZkPQFnxL~*Dh
z<=^JyyFCA1$qzaCF)taWWb`Vta8)o7BXTk_C%@-pR8D@$$$s@b<-h7gbLxM~PYNfO
z`_&(sr5cO=%E{kc?}Ez(|Kwy$PPSXvVPR}e{>{l`3sWromy>ZEf`zXvjL*r0oE*=|
ziJVN#$t3OxN8`(=sXm#NliBP>dvA))>C~J|%gOYd%*aW0m0_C6^}gENt%+m~=Q<}#
za>6rm^K{>spOXb#_^VC3)rQ*$@6jyGi8ZRyo2$*DoGi`>$)~FgpKe~NwSHP{Sa*3Y
zIJdbXCo6NZDkrNs3XVM&oDyG?lZ_m&^0hfx#|^D~Vtr2jTWvNd@;NW^j(>Pv=6aiR
zvLz=4IoX;Mf3^AS-{9G?Wvk6Lt-f!yVRk2%WKIs|<PaO>?(x01hdW_TimwSu_i<yn
zGC^{H6Ojv^1L6T}V%4$Uwqe0zWruTegexc~Wr_u7{wr#&V_eZ|Ou=74b0@hSaa*%+
zhlSHQIg^tsEfltJHYex!VPWCvwdQ<IF3_bp$>ro?PLg!{8sq1r{Th?XNt#oz#=O18
ze5vWS{@#`~CPP!qo{U=-F5MFm3uDg4Z4123df8e73pcGb)z=2sy&Vf-Z75>FwGguq
zweY{g7^mZW*0_*`%Pd@Op_iVEcqk=TSa|zfoP8TqFVSVKxynKj8njTs!qpavS}0}V
zdJDxY6t{4#1)kF=p*BaZH6<-vqkO<xGyFr32N5qF1-Z_`w6$i<TElaRr7e`RP~JlP
zOuUSR1t;TWEu87(9b6lnW4yrvZ+_iqfqY{RkEOY_=4K1GSeVewtHfFsF1+h8C6p}c
z=G|)HHVfCSGZihEbtc{*xb?<tWt!^lG1XjWJPUVPc+SG}7Ve^&g}N5%S-9K6Jr*9Y
z@SufzEmX0<Gal6xKfh=%d@NDb0!Q)WI&+^2S$e;PH`W=F>J}cd@Q8&+EquDp)UZ&~
zLM;mqTNt@6c!--wS5IGOHm(btS=&PUZXVALJ!T>Ofybgc>Z{|bT;D<i3#}})w$RW*
zBMZ$fJZa%^oz2D;npk+kg0tR~S#SFF_L{Qi>rFG24DanVTyGBd_MX?G78ai3q+6hT
zU2l)_XDqa|Fm%0nrMK62eQ-<tzx9Se(ngK9x6oEeJ4IGu(X(2;11D&`dAyIeeZ6_X
z!iyF@u<)UUjuu|B@Ro&c7GAdS3cY0Ebq&Z)3<(RbS>R*T7uN@uvM)s`Nf*Y?2J<FE
zsE_xCg~}U(yCiisn6B#Nf?nRU8%%c#J+$d}EcDr6dNMK@kQTn!VE*1<ru6nW_TDVg
zu97d`5P0KV3w<r@+hE?a@IHfKqp>#{zE|g-jb`UNUOx*TSr}+xkcIwq??&^ng-<Lz
zTQAWwC7hH`Eu`M^`d_dI<X6Y@8x7xe^O*&{U1zX`&p9Kf<9#*;@673VI{t+P-US}I
z(R^*;8w-C~-~+`&EIiZN`^CbqbhU+VEqrI;dyd7zPZpN9_I|K1Om+U-XnwS?YNH`}
zpiF`|`TE4q7Dg~~RDs!=gFRX!9^7ayk>4!*&Ugza>`i7A7vLsy(<bu={jkZ5R{T?u
z^1m(o!##nUKlgkK<1GAZfyartYw@8lKFibDvH0)~pN|`_@(GIEvL;%Xq@2$lQh%xi
zekd^U?C~@U(=E*4z(a|R7B*R!X<?Ry*%s!|Y4pz~GuOgA3rj65voPO6r_FKpoHykc
zaDja3@ky(N78Y^2jWUZBmnbrO_a?L4!U_!oe$Mic`AYi7!fG~TC(hc5ZogG}ajwV2
zW7uoC#0rA%QR^(Mx3GaRSt!BYQj@ruOQvyxsldV(<%!3G?AE+|o03h96FV*Jvhb#j
zt~PdC*u!0jo3n+z3?vIjEF87KkEH#I)sn$S+W}6rX2}m(ILtoV2^JBLSvYQiA6};|
zoZz0XN6JsCBvUPMih)!uIDh`~CbKY<s2;M;Svb!%ZsSQC7c5+)<wp|rY$O?q7H+h0
zlZ~_mpC1`EuCkG_z<2UoW`oBDvKDd{dT%n8jj)Y~4co@hO@>L7zy{9%gp@mq%to~?
ztGhNTJenB0$;4Dr$VS;OJSG-hZsQ6&Xy{5Ce3#B`d}YTb!)y^7SKHv5Qm(U6RE-z2
zQJj|RB>3Ky5-Pbyan~j@v7=W~IUBuJ$-Kc{DI3?@C~c$dg?L#T<!tbyzl`>TYUQ<)
zHz;xxETZuICR4%2%{Cse@t}=cY{YGNHtw{Muu&%!uV|x^l3Q)uri8U9zhbkgtnJ=m
z<93c{vteSdDr`19Tv2_qxyy#JaW|d6Ie1?X(>*rswNb^!YbxREcRt!|hHo}iZ4j#|
z-e==}C6usAbsG=asBPmh8#Tx~dXH)!9=1`_My<RD9#JxBvst^@(CnN@f^Mv%uB)q_
zr-$iA`kyxI(=+?;Y+$3I9W2;JnytOXJkBZJWS-#E*f_G;G_mo7n`maEsSQ3MyLy5r
zTTF>9rt%ik!p2iJUb6ABji*^^qqU7T+J}}lTG`;cEZ9)XEvDyLo4l=!b~awL|My*@
zy^YVenCERgYomjW=WOuaN{=nUM+OP;1yvxS8nL5R{Bw(W#YQI^D|>lQX6#q#MjNkd
zQH8gI{hufCI@{n5Pr_4nU2MFerQ|G~zs0;|W2%j5HoDp9&fePSY2zCkLu~Z2gWdIG
zhM$eMZS=N-?+krxyl>+J8}Hb7S0#NF-?OoLi=hHj&9g!J(8m5P<|7;ZRDlwnhoPju
z4L%Cd_zREEuzYG`kd4n6<W6D$U0q-XDl)rabNq7~gKd0a<JyAYZE|1QxV0eoIWW9j
z;wu`_?9h>wm?$4=<69el+4$SWcQ(Ga@vDvBIIiC+{h;`hjUSZ^qub|tln>YJLj~q%
z8zWRmKGMc745|XdQp&0MyQ*<l{6poV>|lpvb*9m(@MqrOKQ_jw@<he4isNnkYvVty
zMQh_!_(XxZWMKjWTP4g+QZiX_3S&lfrrYRTU{>2$V`GMmne_kW_$(W9Y|OPWTeAth
zyfBZhE--bU_7>T}?mb^|fsKWlDB;6FEM0743B6iimfBcmV>u(Oz^vkm-f9*W@X0%@
zw6VRwqzX*&t>)paro~pX*2X#;=WLv}v7YVrtXx3<AB}Hd-?o~bTg^sJ;#RZC#%3E^
z7+`-^;zz^$dfvZ>5?gI-qd^-xY@Fs0hIrp@H9I++t-(~1@8ZO5<ugIpV`H!KeKt-h
z*{^tjacJWZ7kiP!QSL}rCl1?~wAHZI5mjJY$7~$8aYD2FU2xLI9q|Me`2GhX6^Ly5
zjCSCxVq&tFRi9k2agm#(6Fg_cl(dnuad@jq+whfS6vF~Oo19givtdb~V=Iax6e$cT
zaRhukmf1*N9#!Hh#sr0wSlbMBt`J-)m@AkkC@i>2&`0o&porjVL2bcff}(<Ag0g~g
zB*RQ`LFYz^m#(%-2(A&7lwh@9Cn!ZbJu6=;!9GTEy`aRl;JquQB^V=xWh4lp8@2^s
z5zCWbZE-=}BDg_tqu?e1pESH#(DaE!1?9|EZjxa3{%s~MNC<8f+$PvuI^hW_3M#Q;
z2k&-)+u6JIyj__?IBz%DW^U^2-9dw$J*R_5yi;(OzzFUZ@bVoG(cL4sR}ia_s3~}U
zo2eprP)Sum?`@`<fDi57Cm6EL+^_Nn6#3c#Dl=8r>_dXTwwW5r9~K-M?k(D8Y6*61
zGmof+N41GFHzqD@Gj#-Y1srcLK|MizK|2Y)OEeHP6g(w(n#8pl2^w>l+s)&GCj{>`
z|KIhEtG1ga^o)R)AesrD6x7^qnrpUX*#xf!wBXoJ23KZy_2AQ&y=T<bZ3Ha^tpq&=
zd#zQO3iJT8ZRyEpJaS@t!Lx!6g69NX1aELef)@m@2s#N~6fF6z(o2dY9hE${-Mp-%
z=XOKktNGH-g4gnVkQTiz_*n_n-qfP*id_Y73Aza;ZZ}I+p+K>Rpr<OF(d+`-dYhA?
zA$O)pf+6uP!&~qtolpNrup4|S_=@8dd?5Hx&`(g%D8Ufr=spsBDi|Q>&(jlS5<CX*
zvEUN{4+AhUJ5Vr4f?uXzP$>AEvAQD&T22jPHMGMF77+P+|JBjKZvVC58^Mo)VcMl3
zjCLihkHv=yz7>#sr}(`hJ4^{XL&E23htnH^5rUrt%y!bZUyc;~A{ec9epMXB_1G*J
z!f%4#Rnq)9kJ&%+@(&varTn7%w|Za#-N>szf-!=zf`0|C-j^8hc;e0-!9C6Y7<)U+
zIK}ab%<@O#B*A3C47JbBOwle)*X&f~(-gVVnW!*Ri)N{CHe+UoVVa|arSk;~1nYqH
zz(T<yL1~~2u$Z$c*vRk`EEOyhENA4aDSC!GAum3!6s*#SWp*`JO?!`NJtJg?StH=J
z)3vlLU@7O6xIu%N<ntY7vtUc`A_OFLb@K;Efncj(n_zqJkKA!WcO?Fz`D=&SA=t^%
z>k_*Jy9HHmPVC|K#RwVY?bYl)!JHlDhKCaS1;hgazLtUH5cf>M5!K}G+N`U0R5>di
zQ^Hs7oDBXY7w*|<*w*Rb9sd|rG;ye|cUHiUq}WbVYNt8J;M`%D&I>LmKc(4JaMB+x
z5Ci<+q!0KP0<yt<2Jo`2%@;cYya>#%i;T>Qr4r=S`l^Lj(8?n^Kp4RW8wL1tG6Jl1
zgNy&<b$1$Gp#HkGR|vQaxC$tunjLnU%c&L()UE)oR3Uj`fLCitt_F$%*8=bCG+jCe
zS8Iy_#Z|2YaJFosr1EP3-g06o6NT3SrGV?T){vcM%ud7V+_=gD<$%|K&OmwK27r&5
z^TG2QftvvK@EM>2aI@Nc61WB6>nxxC%u4{vb{gJDW#ZR~TY=kvia;gcL7+NNS=H`Q
zyj_vC?f|?zzZ1AC&yAA1flWIN)tK&8NfpJaiq#bFQ@kH|K*=%He+Z}nJg$<573(P0
zRIH^)n~x}Y6sVn-Jf@_}XI|aBq#jUTd4s&9A<!t#vpdZb${Q;-QEZwoZ3Z;Yb9RrO
zZvi|--|mV(jo@c2-{s4XU3#@8XA@`*v;o=zF9WXt?WjD)Jj=1{3f_j%o>8&O+_KAb
z0G<O1-;|ie*I5AlCwMOaF9M@(ObmP=(NQHYDYEG4UBO!~I&t>PC0^y+4dVsCK=R2h
z^E$vo^@D*gfG)rrz?(o<;4`}2PVnmiJNy=cuL|9O?m!QKk74!%dMV-d`!>)U_=rvK
zGJO=^SA0kDUB$kNRCo`VyUUO;eW1b*fqqK1sIb5Cj}<>rq~@ne1}F{$1}QnM`k!mx
z*gf{v-EF=Eh63LL<X-__D<S_z$q=CAZo@1uVtmJ*0P}$FX@LQ}+x*DUoeI7Y4FiS)
zXX<)CDNY4`21WoQfnQWI9{3gbP5Bt$cO}&SlO4<RKY-E7Ywb2H`b+uW`O<%sG}EH7
zz`vUPPjOsc=VdLO08GqFCMlV$IE4|S3X4Wpng$T312dG6&r~u?akk<d;Jw|3Me~6L
z!3KpD-2YhwjM*ChXLs=Gs>Q%kE@5B^z_)NS4c%=9ed^J-J$0X12~6E>)&RNP!ILSg
zfGy|ZtASO!&B5JfEx^YsO700Bo!9_u1geHmErd<LX3oXYc<B(f00ls?5Q>Me71##s
z1@_UgKb!5`D?agd0=zJ_L$NF07pg)Y2;2?q0Z6<(!QssPoW7owj{?WIHusnVz(L>;
za9FdH98uC@k9lQ}VfHw1LPMoc2qziy+_5<d#xR`;q`8?hy!V*1zy;tUFmR7Kr+6Ny
zRW!luFMA9XlB$-XtM>$VG$_dcd?((xVu|yrvu%&DLa;-4d9V3ouaQvj@emFLmj(EK
zyif>EC}`;Ny}|49ZrE$?+iN0P8dY=^sT@<%cyI8-_OcKz4+U$G>534pR9-kQxhjMr
z%CA-|nwRta_9a5NCWPxk!4Cm`)2R4F;^)1lq-L)T1>Zd=FBQV|Axzk7_}$==uuKSL
zL&4TmE`$mp@RPB;W^YiW{KgP&QofX(|Gv`AA>0x|JcL9D6+@^L!mXj;JG1Ny4k6qY
z!rr}x>G)n#IfUCoxGMysoxCFiFN8alm)d6zS5A2QOx=B^%|3H?2=|0=ZwOWBu6<_k
zKJ&*uGiRUKzRz6PXRg>ExaGbO?hoN{Ix2(*Lc!KrJ%ooizenQ_hOqL9#7+B6jSwCV
zp*COduL?Co_@YekJD1gKh46@u?oqa~-!Qe<Z|a0lH-rWu)N>L+3W08{uUQhNOY(*x
zG|CHE+Bk$JA#@4hjS!lK&@6=ZAv_yG^AMg4VN@%xB}-{Pgr`H`xd?tYcq)W}`wjUs
zD*0u9a51@62(3dnT{<yyziAUf+Ys8(rKJ)jTX~!J8xor85W;huyAWOr;rS3=P=!}Q
zcrgU`giW27RMJtAUpZb@Qn<CpqE0$|+NZDRhtBL<``{o`jV<xlLpViuZHd1bLe~)9
zqq{=EXZ>3t^bDa_2s|FsO|g3jg$|e=id1+zgx(?a3E>^pXAvcoGqDQsUCs7YG-VSX
z=yVU{+)3g??hm6)zYsnOp?@g&c=}k8?<e6){u2kxCk(0s=F<=cC?TiLAhl5QfO%?|
zH<%;hJVx<o6kmq$RVdhJu8rdB5WeA5Mo=$;At4N<qa3{GpzQ(kZ3x926nF4l2;b9G
z2tRU<3Sn~y!$KGy!t4;{gz!@cKZo#F2!Dq#f)TPS{#yvYhcGgPU+A|-5`2%uuOYmC
zAb4LvzXN6zC$1oPCBh$c__lbRBk|E3^5OWhu=S@F@r4!tgfJ$ADIrV^VXO)#(%XE~
zLJ0qbFiu+;&&8+}`5uGlRFCht;M)mkd6MdrOlG6S6O)d`r)fhoLYS%g(=|(dHaaVW
zON}nC8N9n=ZV2<ZB0^Xd!u${xgs?nsZK0ASAuLj|m;*mxCLajiM8UR}hOkWK%yP&p
zLMXpA?nEqR`D%{UA*|ItbG&O9{I*5qbzFl}y!DD3LfFVyt(BlYUnRl5Z3&@(TcU%I
zgRLQK;{pufa0uH&!SCFiA?#u&511XgT6Z5XQ~daD?sx~ye)`Ri@8M>mWS=4>7Y>*M
zT#S3;2Njnbh?7qq?wNz;NC-z68-IJpIEwoc7nL7ZJfV1!F|Xvb;u*!WT-R$1Yn=<>
zJa@J~Jn{=6?Eg6+w3Ae8DaEv+ub5HHD&`a|CurAJ6h&Hg9E2Sdc5s!0h!fl~i8(=Z
zMHNY0hqpWe5Azikg;e1(#mg11aB!s(R^;17ia5M93cj7@*ZM*S@{9Mce94T1#}5X-
zj!QVW#zB1t4IGqoaIFLW{J7J>bq-27sOX@Q!)rdlhEvW#c?YGP;I|t$hcXVzD(4SC
zN?tr@Zg6mug9=<hNZjb){ey-Z2!DOt>>%!7)zjVqByMr=<3Tg1jhAq6tApF9yd}Qz
zVDO`c%F_-SnyT#J4hJ7J4z8`;o^OsPm)PiC4h)Cppr(Vn9o*yKJ_q+ZxYq$St2)8&
zP1dTSSrS&M#-8w<RQj9r0S7!*R9z(xI>Ap@>OACN^)nt*4JBs}np&z*+reW>9#MSM
z;kN>driOR;-&vqK4(d9=K1N|Z)uBQ|2aO!G;kf8w2TwS7%E8kP8ars>poOYke#kWC
z@XIBdJ7|_4AUi|JlMZe^WJoRzoWprWtI&<)EmgUdVrv~Eo8}POIcQH;xE4FZ^DPuU
z>+t$dqJx9y9Mm{un4VX{qK*z;a!@&p+rxO-!7C2VIXLg2lY>_s{N><p2d_Ek?BHt$
z-#B=krW}0apudAR9K7kEn}hBg%OS%<JFg!yU8!@(yybvd+VA0@rvn~OeVbDw3106a
z@8#gnre2j3HhFIceN^Ec#dj6^DzfxFCGRr;lzgbzFJDT7e>C$xb}-PvAO}1$^ofH{
zwQ2GJDq%N1bMUzX#>^KED7;i_u!ErPA=9Y2_oaj3r4wH%vUG@pp$<kk7^w|?tN6WE
z{7y$logWyw4u+}lCp9%ZKR}lLtP=W!_J7gpqbO1GtE&CxfTzfQSL85RWwgrw)cL(6
z;V}PkFvh_q2b&#?b?~o)B@UK4_|L&O2h$u(*IMHpOi?ny!9)j>v?1D`tU_8NXA?|Q
zRYJ?;#2F4|I+&%|OH(sjIZNj_n49PGl+0IL;9y~1zR1DiJZBTj94vRRlB=7mN&8S=
zPa1OySW0iNcCgmLItOdGE}DC<>A>06dI!HAG8@&@1_%8@iSL_xS?%){2L%p}J2=7p
zKi}3t2iq9-&AjdEt{uvm-Kk`kgWY+_9wmDf_bKjIJfO%{4sjE3aD+}cWR9u*qsp0O
z$LKnCo_La*o`w_S>XZ@&(itUZ^YO+jAr~B6bWkje;$b8m@Kjscfv;*QC%Edx>KQie
zpimf>g^_b$g%J)T5{4aygo8oR54_?N3d0EpULqkfF+_=6Q_*lReKh5UgO$Y?i-m(=
zW|t_uTzOHoa77qbhJ%Ydg~KSKa;jaWgd4@xc?lKR3T@JOi7?8CaYGo_gi$h#Ys0~Y
z$y8d&bzzjsORiV)QInucWx^<{*>d^Pc}=_<!?-CN>;sj;s1U}@Vcrf%BouE6qXo}p
zNg}RUl2={p);zy0jEc(HB^Ggj9Qz$%cwtNrV@4QvhH+OI&xX+<3=_uPVblwwei-+J
zac>w8hfy<(Dq&O&qk0$*g;7nd-N!M8!Nak%$v$s6WF83P!7xZD;c4E%O})92V75k>
zw@wnwUN~fG(I&?tiP~YF*$DWfikF?V$sY@&PB@6zqK6Gr-7tu^A2tobXcz`B;IpAd
zVLZ;6;*i65A{<=Lr?5#Fjg`0152L1GG^44*LDV%@!i#&%J{88(VYCUOtqPwBqh%Pa
zbh21VJFUYw7`1q)o4mbBu0LV73kO#enc6GiMZD+2cs`8J!x$XK3t_w%Mjr-77#+jl
z5yWm`bPwYteguT^XsHAbNxl+BCn~QpEPYjVB2B&5!syIcZR)+Q*hTRTMGD^xqpR|_
z@)FkV5e{x`^bDhyS|(>=6HITbq_-j+mDbCZ?}pJgjQ1Et>d6mT@v!+I3?_P&iP?Ua
z0xt~C4paXyzBz0@4&xIgpDI!^AdG=|J}8XO@|+#`B8)E?{9%j^<Et>fR)fD$A&mB}
zHBz%f!WbIHx8dM2H4nair#>hDp0Ux``$3W9$1sNF`S37)%JZMY7?J0k@n6(Va0FD1
zk3DRDS29YGI|HZh&oKVdn3>AC2qpdw<DW3bC}&hGJ{+7{AFJIU`8SOJI6=)krg346
zS3V&xnW$uv;$+1sikJL9O<Um<%nV~z7=<FZEP~l#%n4&x7`xf+Fy@7^B8-(>zuLnk
zVJr<}f%1i6EDB?B82b(zrc1F$vWzkBTFb*=l=8|p``r74O=Lr>!dM%|I<3B1N3=$f
zYU{(;5XMd|vW}RI+<f%Z@g|jQR@|aU7ZrrDHP5$&u|3asDB)8xG)QOep|`{E!^p6c
zVeDsr!Z@Zn2f{cU#u2U>T~LSe>#_Wi;K(%3+q0Ehv;)VvhcguQV*80OPI9j}5|o|_
z<8;2=GfK`Xo(to=k_-9Li(zoaS%oPTMmh|B;_#4g@ae|QpF4a6;Rviqu*cdFNaTNG
zhe{|6DWOA{_-GF$kqDv@xDj02+~c~AMZon=IXRL1@(8Yoph5&UM{s2Xg(J8wf>IG&
z6+w{*N~*!DBf-`*wp5~c1VtktDW=%wh~Yg%W=lkHjY`NVq2+5MpnEx+*GGb=D;q(%
zNbr$STCt2G<<u`93HFeiwE7JZ+^B?s$D-~>g8K!xL=calQUsMF!Q$dAjfxR`bHv=L
z+1nJk-*Tn1l=`<va7P69v582q{jwELN5R(bjNmTiMv+B#YxnM<rjja(lvh<!Eds_Q
zvkye@U?kX@c)Xn1>JdDqL*Tl5D1sW1U;#d?NK!L`T6z8mN0;Zdl`ul;XzOD%JnBc#
zAcCV29E+e~1dSs2ZFBrU1pId=k4J)wW4}l6L<Ef^Xc9rw2zo})D}rVbG>@Po4RS;$
z;!j4<CW5vRw20uT2zYUTKk=T9;F$=PA2BT>XcYn9KuFFX-K`_|dt02@i8T}LBEgUS
zXCvqkL3_^o@p#1}aUy@zKNrCZ5xf||^AYf^hLjvQVt6@%FXv1aOZZ33%PM~@g3b}}
z;=n5r@KuVPBH-`JS0jv7i`myB=n}zO5p>gjzM=SL1pKMa7d&>=EW5;)WOi51%MLvv
zn5eH<EPB*1`!=T_g0I+C1btYsApTJV{UdlMf_EcePx?miK?DyUHRSJcQPfJj&ul^b
z)}!V_m9wayl9or!#}RxI!RPe<(cs08-yV+l+Y$dX0^$J0fr^77_)H1quN^gm*@2_x
z3q_JImFzwo|ArTTBKRqSBYel>vG^Ya@u3lX8^L!Br^9ikAC-I`!Cyzs4-v4+hGX$z
z`O@J^_)Glf2u5&6Er|Es8Xu|Feu?1MNN{E2H_pPLIPJ5y#8DCaK|6M0G$%2Fe<Jvk
z#v|ZqrCYWH`vz~%jo}K4U}glfBKS9g|00+W!NBA8IEGLoZ~Xs<%q|~MX<`JEBACoj
z8Bu9U1XERE;ZZY9C8v*?=@D!@YFIi$B_zzwj$lp%n<Lnw`g0XGL@<w`8^MAI7Dhk|
zY?rMp(u%7hSgdN4EK#yFf@MmU=jAIRSefUMWBjj+L9f;*u2o#8Na1=VrH+}6s=p~;
z%R6QYl<!mA%FZj<&Xst~?B!Ob*`1oDWEcIZd{17|@|dBVo$PYV>{n%ygItWdHV-Qv
zQ5<m03_E7HV2?*|f;)2*b`&SI=$s-;Pcdkf^G?SZC1)cbXRY%QT!`SJW>XQQl_Voz
zEh;eijBpiZ6tjvsMP7cPf<%ER3Po{Q6rm`bC^j53v1qV|gcV)Ih+<UnKke}RW9G;)
zlU07X%8NyDg_78Db7d5TqqzRKxk{0wNEBBqFPfK7jja@qqC^zeM1v908zt2O<@C~Z
zQIw)GFP0vS-x$SBQIw9NjAqL!mRBsN$XmcvyFoec1@k&;g(xaTQ8|j6qqrp+Tv_EU
zZQ`v_B%<(+8>U*v4JEflQBfuINsHs=_9*U%qPi-x)QjS-D2!(BjN;Yf=Dp+Q?kMh2
z$$g6VMp0Esl_<Vao5X6$X_H3okK%zSE=eAYV$^X%1r|LNMU5yP*1EM6Ybvq|8)724
zp=6?V6mLZFW)zP_Q74MJQPhj#sVJU~qJ9(&qG%ok)fy^3q1Z_AaYYtQK5iQ4c@rf~
zqiDvVl}xa7>2dR<3R@^{JsvdrOcX7ncs`03RM?6gQ^KOwO4>w0vqz7ccA9OUFMT$O
z4$7a)OLE7}i+TR4l8#Zll$X35#Vg7?<t6mYYf*I8?CbeXcF`<5T=<0PsuMjZiqE1b
zd&0aGMYkxrN6{mSo>6=d#fMS!isJ2P@Kxu%D0(Y-N0E{~N_c1CT_uysCi+G}yz_*4
zUnSfRsn#!wkD~ZkB}er40)_oG+wg?>M9HU$ln+ocFdE#!VfOPV21l_siha>wzx_h-
zPu>Mk@)i3Z#Wzt5iDGyZKSeQA<<$Hkif@&F7sdBc@DMnK9Zv*r9sg0~!xVX(o^Lh(
zIf@ZnGEw{<#YpZRPU2TB{Y5#eTzb_x50H;i`KrsTpF@d1l#f=VPM;IzuPFYG;-4tS
zM6oD}#Zipa(g{&ajN)JA|3xvQYGR!7@f=#!paZNviDAH^C}u`6B?{V~raDuV2b~Nh
zrbmNw>{On2nKesG=S71j0(hW(b`*1>pc>O$B{V)?OBY13PzfvY^gFXlqF5TmrYJT?
zu`G(^YHD2+E0nBOT&cK9krltKnpl(PYZ)-=$@TQx39~`v8>3*NCM8><C{Vs9imgg^
z=_s~o$F@hYBZ{3-aA@q$gcF8+W^Z?^4#z_G23b47Lks)4`M9{<#epb)GUHG*ILUA^
ziewarl^;<&$^k}kJc<)hoK*?cPLeQ~^>xk6o{r)Sw?4iU?p*K^Fygr=&NIN?_sB13
zEk46Vo{A#P{oKW6Zg7OdkHT_cyU0Y5<$~h-KiTsW!JFRs@>n91xQMDUj}3)fILi6<
zyl|dSC*p#yZ6R@0ND@=B<Ak}~#T72fySTx{l`aaqDCOdM7gyyquTxS)@oE>hboYw7
zD3&iR?xKY9YZOZ=UYjo+kq$b^=Z{Le!2?$0<y@4>mzH&d2i7R$BUi*5nRStHajT08
zs&k7XpSZc%#YG);TqQ#;*zCq_$}1}N8)k9HG*Zb0Ur0!DhYQceLow8d;Z7HK(Rd6M
zVlXc5cJZT&VJ_}*aj%PZE`P<Nii@f)>bj`sqMFO=;pleK)N*k@U2)Pp<l?cD<^kmo
zDpFY8Ma7ebq=t)!RiXV!Q`1G|`W}_PYTykzX&!O$sEgVxb@9tdQ%B9x@{E&)xc;Q6
z@1lW=<}RLear~rd=%R^|MlK$Ad0QWmQ>HQbDO2{8sdCD6JZ0WHWtzHZ=3>YxGv<_8
za>}r@g^Q<Lv~f}Cw0WA%)%RK{KI5XLi(RKorh%6{Wv)7HSkzjJ>NoJn+bU<RXI*q~
z@u`aeE}nDoyo>G(8y7FQcu_5ManaGmOD;OOc-6(rDttxpk<+HtX+tAjPn*{`BPx8|
z#cd5eO4vFZD&NQ(c-p+-;!PJ_U9k1H=nW-QW8KpYJ=*#8v}s%4>*?ZM7kypya`86x
zPn+H@`nY(<#o`8DhXx+2&?alGukXF*;(Zq%x#;iW0~a6ai2AvhdD_Gp1)AG*)W0|M
zK6Y{LwE4uv%6dWF%g>k!XUqd<%s@`T8N*}eLtG4Eth)Hz#bE8**Dk)$Qday@$3=s$
zo-tqP=xF~NZHU$ToiRgQeCr0s*S~Y|J)POmV|a`>V`iQ)KTz$ADL7+>yZFh)Q5VNt
z{On?ci#aalx~SRE8|h-Si$57En*G(qZ#tIW)dPRH7^T?@X99oHOIMyXf4TVE#RL}<
zUHs!>jEjF={HN9F8LExdD)eoM`rbGVkMS-z@SD#DMjkwCCb^ib@|kR|zBk3iG#%zt
z20;D5d&KE#kn=c0i|GGZTxcq!k>+OuPtJ2O-$j9otu7Y0Sm<Jvi`6a`X_X}|mU8aY
zCJoYo%UmqyGCUiE#|lQ&S;OJ<J8MW*YL=GQxIDgy4K6miSf>tOugE}}c-F9QB%5@a
zwzx>^h&FR_&zk*b`47rXrE_K*r^CfQ7yDi8(4Opav75VAeQ&3R0eiAX=Xb9PbM?Gg
z>MOQ>zy*ES>YO>GBR%Nik#mOAblAlahVD5t_#FRlHUA5<Iqu>Fy&A(6v0#=@x=6Z6
zxj5zGG-qv>IiuUcc^79HfiAc?u<pWhhI<9m1uea(NNZ^qz6&>oV&_f9MV2#o(u8B!
zb<X5mSTWeKK$1RZL<xCF36G7EQ_WFAQ_M!RVl)P}NQ0Eb)N&z3N-m3mJt4U=hQcwF
zh~XNoepL)k1FvWdMKpVLEZEuD^T0wQuUHJlRe?J66{E3a4A;j{I)-awxGsiLF)+q1
z1tCf0^QKG;tVrb>VkjF!xfmEo<zqqQGX}`(oDbIijVkBd-5kR$vEUn^i6I_CB8G}F
zREnYcaPQU__)jfY4fpu(AaA4Fs|QDJD#vhpEO_Mbv-9STSa3`IgI_&QHObqZH+RNx
zR}2l_@|yhWbvqwiYP(zQ-=lbM3{{j+UR6o881BnU?pN|a3=ifd)s^t!mxnoo7+#5?
zQw+6YcqA5Frf3txqe{pdDXFdaSPXTP)K#pfSYNS$VnapNdTWaJc%DBILu2JlVrUve
zGv&`HHjm-S7+NTQTJfp>kJApXOSDu;E5+7|l(*O#oWW?T*>*9skKtK*K41D$49_Wl
zJ}-G8h8Od^qmqyH=*Y`4{Cz&Svh->!_^tP53|(X3Bmb|(&{+xj>q@#PzM(kfym>2z
zZZUil!;l!d$Iv5&cVc)qhMqC3K5yQR;m~=*)GNkgbEfo#fcK7}PhS4l2VUP8-iu*i
z41+iqjF#?RzZgD>;REGWE|?FMP_uswAII<s!$T#FE*L65cfkx`ix<py7tBo`df{#!
z`DZbF9>bS0d=<mQ3ues)bNGT89K#ne&<?xdTr^)ZdM_HL`z{&^OEgFfjp5rE#>Fr`
zhVNqdK8BxT7(sr){1C&BF$_~{Y?Ri9tEu-dnxA4|yH8#;uUs@EWB4V8Q8E0%>KDzg
zG5i+8?>bo8XT@<BgFdgkXxPuuv_QAV@F!QCj)nM73}a##8^ga`@)u3&qA8LzONN<>
zN%LsZJef5AF;tR)8~OPBgc!Oc%_R0p`#{S)S2;O`DKSiqVL;OSo(zV@?vc;nw#LpB
z!l*)+6~k;+DTE4zFeiq&F`SR#LJad_m><LL81~TS8x<EQuH@dLgpx%uERJDG3`_Hp
z<w};t{tr#p0VYN9d=DP+c6T;R-Xmu=%#p6hIp+*VG>eLgl2rI9NDvS(03s+DK@`k6
zW5Nt77*G@wqJS9;<o}!Uzu(v2`(9U9cUM<e*UawC?BVQpEByET+YXi7^G1aam3&l;
zol15UV~>)Li}6V@KINe<#^=TOLWR2(oBv+KK^h)yMm+C$$ZI`Y;mcxtrLB7vzb(es
zO4#}h7jj3l?Y%?&&)0?q?9-;-i}8b!{l)lE$xp@jS;+y#gNoEYM4y}rAKUw-Ao;Zz
zzbQXCp(W)kfAFLfS`QcFi1NP_-3u#H;oo8$<t9c#ryVQCapqg)te#-PRDQA;r;2e}
zdm(~K5fl}4Dk!NK!BY#GvkOb*2&xrYt0<`&!HOASYjv%DP%E4_qCBb?i@;D4S4>2(
z{_fBrNv)FD7qv7au(WC`rWGAUSJ6}S6)WE#T2i9ChGNYKBBTF*must}P6Tz8)Kjdl
z$X*SUTy>(TaRf~wD34%_N}5K{EQ03BGm6;=a!S}MA3>nJv><7Ju!yfZw2Yu<1ie()
zO0k_{nW8ARj-ZW_wu&6>oTkm&EAJ3NM<tyi=%%D|1YIH++#vK}*Mj~VN6T349zhS4
ze52Lg$_GX;D1tr(&At)zQ{KNI84$tMul|3u431#9%7+wMhej|=dC>*oj4UG}7^#v`
zilY?=tPGpRMldddxe;6&!T1O!L~vmQ7pcO;2+mb<h9Z^EjNmNgXDgng$RA8)(|HA*
z^Oa0eynul>JKVv^TD>fS%OkkBpm|9Imnxs4_(-eJ+Np)sD<YVte7fQc#hHp5ZU|?*
zGJ>nLI!p2D2xcq!pW>^_!$W$F@;QpE9y?k#FM|0I+**(<P;z~QzYGwbrt1pwMG-7k
zzC>~CzE*5q8o{y%mPc@d3RgvNV?qDs2yQCyKfVn!$qKEmWS7d#)|@E4MXRd|I@K#x
zSQEk82yRo!2F2SWSjTgu{4T{i6z^2zm{T`}TXuH@_e5~73YTnZ?i>pPX`@!}D`;+t
zVEeAn^P3~s!tjftYZMPg@K6N5NAO1k4@dAw1Un<xrClD4;AxTw9xIIScmz)r_>)SW
zQapV_IP9|#ycEI9DtRt~=asym_@d&{?V;LM<*!HZhLTqzcvT6TUW?$v@uAMP2;Pj~
zy$IgdrneN|iQw&mW~U!Rf4-~LiMLnSUXXtf!4Bo$A1K=WO@$8&@{g1>tkC@92tHAM
zK=IQEzE|>D1iK^nT>00E9RG_5_C)ZdR=<j1Z$aK*RoVX4VJv-9kbJA;JH>_Hgn_Xy
zf*-WHzo7GD1V1T%@Uc=VupErwkV<}5{6+CsMYjGH!GS?xzWp<T!x1E-NJViZg1;i+
zn^%>h_`9HaT**I*|3+}MAU~#L>i!BR3X+o%oQmKyGk+8nqG5PfjB??j&*?7WegB4z
zt*lKX5hYa=t14DgtR6+N66y@QH(YNtidaEnL=jh>P@K~xJey_|Rum1QXc&d9@^lm>
zQ8<NOZWNw!Uvb)m(4HE~>lAcqDybDk?Sf>RUa#wFwO$nUm3*wiMo~15qAUuDqDeu&
zSrkp9$V8DXNb*tS3jC={!%2fEN>ws%TewZl3#~1bw2Y#ak}sEpr;MewRy#z|rl8qY
zNxLZ8EBS0$=z)%f)=o+~NAY3faJp_$bdTcRZrIQbJ)-Ct#o`>6<j^aM-chvm(auMo
zDEdY*ErsbR^oyc@6k83vVqicN1EVO9VN48zq8J>-H&J{W#gHh5MzJc2TcQ{i#qcO@
zjN+y!Mno|(iYueIDvIXAf>BY7RnqKO*=UZVe2n7YV`Wqr7sdD}CPXnYip!$7Jc=`-
zI5Ud#qnH%MS*m%SB9+fpa*pD;QCy%S%vZdipmT|m3l%R?oE*i)h1T0u`BJS;QGD`P
z*>)99E$B>(VtN!av^rDq3dKKFt@wD^EE+aEpgq?`F<bfnqPRMWYn0DdoD)T}<7F&!
zm0TOeJSF{9xIlFlDsrf^kB6>Uq_ZrJVu_OL6)9h;WLXr;3z8d@-2Gh9%}Q1l<SU|>
zr9-VeUiQH8vei-C%1DUf*(laTu{MfLQQRNJZBg7F#a&U{9mV|fOV>qlM-+RHm#vTD
zwc}+h6yB+lzmJ#sC(7<&@KE`((&E*@hA1{Nv9AuETTxniqOA9cvirDwC(2l^JW=*Q
z6q}=XEQ-gY*uvx=#iLQYyDE4niUGF-Po5}yM9IUn;Y8Vg65{(O%6>Rec2Wm<B8n%Y
zcq)ooC(E9W;^eA;q|K_J?MeQ$c-eDNJkO|(;-e^Dh~mX4-i+d{C|-)<<tSc>;#Dqr
zRdC74vV|whwnnl3WZ6?E%U+A(^(bnbD%%#t8&PaOSyu5>8S#gcAyVGzRN326yrXX1
zL4z6Fr^?D`n3DGtFJu?puf?azxMd&Efl7!wqu3S2XH0Zad>q9mQG6Q3;ZtQ7pI>^{
zt-<rB%050-R(!gw{^_#Mqxgc3jpFMl_C)bz6f;kkeMK*=4*HxfBThVBM#&B2r_0{g
z^26z}@1nS8XYP0uC!+X1ihWW15XJr|evjghD1MCMrzj3Z@iYB)lE1)Kb|8v_%z;Ic
zFOr@`^6;e6Gm7MwD1MFNHy+F)xw%L-70Js*!acowMd_ckmf1dvf0+N(34d`dMZ!>L
z_;Im^i^QlP|3-0?$GL(usUY1d2+1)X6D233IK|u;LxUJjGtw?8jm2QZP!vOj7}~kP
zmj^NxV@UlGAcjgYRF3hX@f=IDez_{js}>~HlvGzNjv-QzM`M_>w1{2eF(hK(fOR<3
z!AvrSnlT*e5~N}<W3XbdWAI{V+cbB{|8kqI&N(r>I6ueY#;|NgNc<SKF3QcGnM=oz
zzcN=619=U_rW1?qKai;vL+u!Ds3231<Th21U~jH&4E16t?j5{bL3US=hA}jXp=S)e
zVrU#glNb)K%XW?7JSS)xLpFw744D`@*DU&{f|wO$THSm;h9HL07|1zAvluf*u1k!!
z*}3L1w1}Z)3~wLEuylx_m2$rDEJ|8)Ifd3XO4zHNlJ<&~x)!lxN9COqJ1bJiCi*H{
zQD|Ye7`m&e<UN$!`Bk=e41Ls-17he=QQo$KzO*Wa-A%KvP0iB7{X=JlWT2{%42ofJ
zfe(pcsPbWo!xcv;j#Q-ns2D~U__R!RYz*UKfPqQ|#>X&$+Y!SnF-(l%j2NzqVNncc
z#&A{)m&I^-3};iPqD+e6f*8(;@i!mjT)LVYR8h{4Vb12<|DMk+dL{S!fy@IH<-!;)
ziQ&>1F5<8ig=KOK7Z>>P7jx7<@J4P*4EKMPOMjUAtfEZirf{4X=5p{DX2dXy!4SjD
z7_QLqIXi!%`$`Jm%=rlURWa=NC`S^`&aI5$niz)c3<qav3F!-Qp36;yTpPoJ7^pKZ
z#&?HhevGdb3(F?RLay|c90w;Zj$ug*cg1jb4A;l7lw&@UyPal3mc?*$3@c(-&Lzii
zBew>^#SXir=%yG*YVXOl*^*ls!zx<)dTvdOuXf5UF;HQ33~b`Ox9UQuOe5E-+HH!p
z&MsmX&b2Ov^)bX~|LeIsl-wD^%1?5uH|Oq&;ocY?iQ&;0l9hy#4Ll$_avNi~Psd;P
zS<xo?GlmBWRZ2E1-=atx9#ryB3=b>ePEq)n@)vX!kH_#t3{S@R5~VyH!!t2FRp`6z
zy&MgDHU@6rb1|&hk|SYxUhUlac<#j*UeX1=97DI|rBvWbYi-HB8pCTGoDPZM^%&lW
zVQ&my$FMDiH)HrPhL2)+E5`RF<?R^WVXCPl<nPAt9``qf4;T-X<bB2M9I8pc>at2g
z+*C=PaD!I4;Jr$+GlpF;d=bN*7(R~S6I$p6yJPq?#=kxb%V$g-l|#}%@$-WGV9(Mo
znX<fKL}h85559`=O&{Sb#BXBw%?-Zec2|~fX-_4YQdubZK8AfU{1C%_uBdWo!=}nY
z!t!GbKdF%XKnw?!A5#3eApa$XUzPt>kkE!dnF?Y!5yMIPr?MR3>8>J2)quZZ_&bJw
zl>f^FUPa2Pgk~JAEXQ~rtAqv|kKtM+r&O(?!G~-^ozpQsdn`pp=-vv7&r}h5=Eo{h
z*+3Novkm;uKve_P3=A|d$Ut=i#RhsCShFyQ7>F9k8OR%9wvQR8VW6e~!$90X!a&kM
z%7AHLogMr-G+4ATXxcev8Q?W#jT;bc<&Gk&t^rTEUy!5?loa?~Mo`N@Z37JrG%`@f
zKwVCEZMK1dZ1<p^f%?1|9v&=i8B9KvWg%hfk^6$i2AUYiP>mhe1#dME`1=&oYX#{u
zgQuJ4Zkdv~YItZKuSbD_QUe_fbmXK4nj2_sppAhR23i_uWuVLmF9#fi$nGrd+XP~S
zDUO4Xw>8ktKzjommW9Kz{70DTI~nL~pqqj2s=yh$(Cu_-RpC(6ngvA{mi92v(?Bl+
z{M9MS|Js@3_ui8$lyYfHy99kWz8l`z_N5<??Ps7rSFQY;@+>8vd)dJTh8UP^;9>(q
z4Gc4Irh&5z3^y>sz&NIK10xNLqHuUH#=vO0rK*%uQdK%t72Xn4erZ)1Yv8)7az|Am
zPB8fRpK#uvs>(#=te&CdgQ{}2fpZL8$SpX(v_dsG*T8uO&Ntv!lNQxv5}j5}D8InK
zxz%KLHCdz811m}|GWe*8yj@K$F>omzJ}kJ(z!W7@4NNm|nHqVyTJoP^(+$ipa3$AO
zJ+x;gL!!D|Vc^?pQbi?gs>@_0Y@MY;9qn9twSj94+-Bf*ZkB<$238nYY2aD|^9)>X
zV5x!myxtwmEHJQ8<N4a^a-D%i29{{Ftf?-G4Se4sc)3OJNOfU#TXkXetLn1Mz>Qq8
z6C9{6%MB23P^?reH}OyuON(N;*+AoA0r@I!y@8$Y6!DJn)=K%+244Zr-)dmukW!L0
zT3!2}uu{Hvv8*$&p1WD0^d5uRFF(9k?l5pC9sW?jd#d{nWbQI>w*eBC)cT@(4Qw#5
z(ZGEMHXGPtV3UE5(gAPG9-x|XR-2cElF7yLpn-=BJY(Ql1B~H^c}$$(2?LL4mHbfy
zkE!r+MM{<z%i3aj(!f&&NS;<)iBj@MiludV<~eFE4defLjq?`_ylCJh<*hFZURJ`^
zcZ=m!1FsoKCs2~W>onL3el_r$fj10nGw`N?w+wu0;4=en8+eC_i*Xf^1I1D~BJUb_
z&)_%S@;;AeM0!Ppe7i~xk0|}Xz=z!Hh<s$=W9>!0)4;9*=Qy7f_}Yl<Ht@ND@3_TW
zS46%ru-AYal|7s^B3~N(GDldxGWg9&NZ9nXfp3^GqVlb3_Kt?aF;UrP;70>Lv5Ns(
zLdkvu#OYBvVBnyEpAGz?Y3-28?~4kv-%{;MeHQZH4gA4<iR0Ng{^U4JV(~D>ju`lh
zsV|Otar|xY^OXE!;9ni>lu>%rz%fSGflN9k#|@ld_{H(d8M%`h+wnLO@i53w891$y
zqBttVQBj4(iu~aoDpZQ2vXUxsR8vw_aaUBr)`OYq9JatCaYVH>rpQ)9$>ZrPlUOp2
zR2*iUKa!js`fKKuOS4uS#F98{CFD*VZh?DBe8n`)I2?9isT`A<anzzcqjR<6VR|&0
zXSuXGy1)$+vSl%;AIG5{L8CZ^#H2wSlVj2_j+c7|tTt9530>VZj!YccIC62Uj$=SV
z@^J)ljEG}o9HntIi=#sv9pk*$mF96soELOy5y$N@X{q>JOj^ZJrV1a%gmNmhj-!og
zwvD5mHnrDk&XAKaaSh@2b&8{F9Nkz9=^RHF-BZfP7{a-_Yp?!s^ia}Mk@8+jdMox(
z?5o%>&a@eJWEl|0z&Hk}{5nGhD;c7Ary)b*7#3&Vkl~6X&lxf*j?r;k5yzErl*ch9
zj!AJ`5Xaa!{=0IW5y!X!A0Nkr0-va4ry*x5IV+B{<2a|#dTyMdD;(iGl~j$(`ATZW
z<w7Nw(Cj!aQeGC9$x1F(>>m$1PEkHBj?0u>9tQ`Ze5zK@ip%uS`7$F8+AvdvY`r2b
zSH&?aj+<06JC6Uwu{e$;TD>}sxp7>p{2IkMip%4|q2|T$X<Qb>u_-R|<9JP{<CqKS
zK%I+xk?Q}ZP1pZ_Ulb=~sq$rtbrM3!4a#q1<Rn6~S#DOz3dNOitWt7|B3s$z);QM0
zu{Ms|;&>#EM;T^utc&B`I5sdy60$yyyERtt(CVFvcPX-Uc0%rn<7Op{=Z!3J{up5C
zmN@RyUYp{0AtCoGe;|%86SA3!B_ULf4G$iS<Dobn)-IHAG!Dh?)sym=c6ppfFDY%3
z@`P50Cgn*bPsQ=Hk_(gJP|wBjd>jYjILPVZcrlK>aeN)eOFV{gd=|&<IJR;ZlJagG
z@9~T)zbz@RhCatrNnv?CjyIHVQ+!kLEycGLsq;=8@2c|qacqy{gE&5n<J+VhP09|{
zNv4F=CMo%dN4sw6PDNIE)^^cpPVjLYpD6iMkvbF>J(%V9v7ggF2Qpv8k$)iAL(X%$
zxs?2?IATsfLR_*b_=cgiDfpiAD*29TDPbv33FZ5E_T$(e$B&G5l@NbYz91#!hvN8|
znKOY{0>3a47~~05OW?OSevhL{0>+BcKNtonshq$~ru-Sl;W&=O@mCzj<2Vt=lPTGr
zlD}2wpE&-F<7gbmwCbAjV@lYU<#a0i9_eHpMF~_$pwyI8%yOojR_tTSS>!3Hm_WnJ
zN?DLVr37Y~VJ}u6Sry!G%2uik5B8eUe^Ti`rc_Tb@)5VBsU?v_cqd6>P?A6@0W*QF
zR;ZsyV2mYKSdvVD_{7vwD}fs=`P33G0XqRFfv;~abrWbYwe)36$TwNy(;=2rvZa<S
zH4><qz={M`CQvI8ev~Ln@K~XC0(BCon?OC9oxl@Twtgbq4&DVdNZ`JI16~Bl%WP?s
zK;s0OB*I@5=d~$I#~#e^XX%I;#k%+Bb6oPlOkOciWB`;V&`f!A#TJS!6<aCxT2{nf
ztrKXIz$F|%fwl>>OP~*D92T@spacDoKsQzHm_TQhpY7&4B{0yIm#thEPSG#?lI^)3
zLH9)Xo!d3G^hn@*TPpD@3tM_7&?|w}wvhKugpx;X>8s=POQ3&(7cUH?{}VVnfk7%C
zoj|#g!3hjeGE{Mx;&8<giZpVhl2M9x&dpOYCK3MfEy>sf-m!&cTms_@d_n>fm7k$_
zrs5lSmQw8;9pvJ|$mb@QwL(9fuQ*BZ0>ujzFH)q!WF@~QTKTW!8+9q2lE7sNEJ|Q;
z0+%N+HNjt?#ry=OB``gKD-*a%9kn3{W+ZTIVRoh>$rTCgwuOXuQ1s-iM0k@hTk(I2
zS1VF@O#*Y2&sDruan6@TY<jp`upq%_;B$<Yg^B;auf9&npSCPXAU{7?mca4^u1{bo
z53eKj9qHi6PxFEswDqP0^Du5y&Q|KPj8wu;aH|ryC4pag%(<-z+?v2^y!B0BO#*8Z
zcrt;f61Xja+Y{KtNfY4h^tuG@OyI5r*0Yxzu-u`9A$qrx`HpNz;GP8T)#_v?{B+OH
z@*8;&65-w8f4vy14<xXet4rX~1hyn_&axslJ(R$Mg#l^m!@5`w&Zfuc8Ev|HY$)fE
zc|xoF5X#o48K{-=FLCOfxn~l1mXVXd^XklpX9S#@Gro|(iyGwA=f~s^E^hfU*P<3~
zP2iOTUQOTyM|P>?j?KXv32aMXPl8t{ys6{wOkh_6ZzaIw%<?uvuE5_-;63H<7bM#g
z*rEJ`g5*ObA1NMm<l_YPAIN-?z^A%=e&X0&8XR%tGX@Xs*`6(O<?{r-U~X|``-52)
zlCKijo4~#Ve&Atu<!c>;EBYpZZxa~h$|YL9OW=E^0_E4avR{40>3&qQ&Xu1MIFP`>
z1P-a>mjvHZ3^(g%CHzc8&cYv;`#pg_7+^^(OY$;}!wD=*;<_Y`B=A=PClWZBz~71R
z!x}^V-$eK|<39;(cjZ@Cj`Bok<W%zHcmfSP>FtG|%T6V5n&~2mK}i%PQ6Y)8NwiC%
zVlw<4&n8JUO`=i~m6NcNu#>2g#6(Y6VoItiR!gF~lHx*ZB#Ef<U+d=n(>Icct0Ym-
zNhXm}ZWbi`cHK$BP2x&V>L$al);-0NBzz@lMauvC^1Mb8HC0kev38-gj*>6z9LK4b
zM138wfg&XhlW3&8aY1sECmHS1JTx-L@v~aZC6QMWC{kXkq?uy0Yf%f;XP1^qv{GJH
zkcg7jift5gPOg0t9g^s&-5>O%W0IdP!|6ID!75AVB)SxM*Ce_Xcy}c|lHqqvRO^*Q
z?<D%@IDHk{6#jP5PpkbE2Po24gOeDd{8GiCNsLcoLK4H07@ouk6_zW~n2|}0Qa)Po
zKUa@YK2~v@A~jpo&e5KUNt~~SouPQ9;#rDpJzL2+Nt|1doR`E~p0J5!k_s<K;zA`C
zDNa_rSdluH&`YX6C5btH?y`dX@+77vF)fMdNz6#{1~POG%S<I#CvgS$SNT<nvy+&m
z<QyYZWBH#}$Ha5jD4C-;SCOqnMs8k#&sVZQabwq_MM<3WWXcCci<9By;Hew4&$bMf
zB*8C&uIEYdg=BdWH}JfqP&I`clej5~m#C1$%}K0C;+`b#O=4v-{2FI{5_crADv69Q
zw<xYwyj79HHA$>hew*U$1^GH9U41F{<<2DTPU1#i4)iL$D+%HyzD(~Deowd|iH%7-
zki_OB?n`2mw!Z2MmG5U!8>q%ETj<O#K{_ojGTxGSNHrf;d@6}Ylsu~Vm?FD8uH*^D
zCzIH%20X3RX9_ycCh?r|=M`U2JgS;4)1kq=)3P;*uaelC#4Aa>n#5~KyspdnSe4(P
zGt=^Z65EnED=lv-zNPrKB8BfLc~|khBxa_CLau9j5<7H_9~4&lp^}f1*jbS5N@9a5
zf0D!tY57zqrD30OMFswO5?>Vfo+Q3hzFY18I*D(RIF`imBz{fvQwF|E;(HyuLW%5C
z&7XBS^!X1;_9yY9lAj9l14$fIen`<T2{)*DiTuJbllU!(-;-eVFGZ3+l>C{*;ezA{
z(?Utu<?n*zpCtY*@S{w#+R9;1Fo1QI={n0PHI?$yDlAH&0)y6<ii#xsLFY=!D=V(l
zUe!{lp2El!Mx{`kLL`L-DKtzWnnEmvv}zhDJXj*}6cVX0)ZZ!*?sYPSR0`jfgj-Lc
zshm|yiJgL@#8vbZeZ_xDglZ)mt%fwIAvIE{nF>R_mSSy1R_iFKt5{F5zGBZB(kO+-
zDYQ$WeF{x<obffJX)25^T9Qd2t7hj?XsINxNDl-llooh1CCyW4QIJfl5pGs1t(GZ@
zV(S#zC~2!momDkta}DXhCw5Zkp8|PD#ZD=7R?;Pfu1dNo_EPMw*h8_W;_Ee}w-S!f
zM@iolcI)5+Qus&h8KJ8ln8F|>^vqx-LllRmFsvXSuEeMru7Z9TokDpE7jer{7?Z--
z6wXWG{1nD<$u*^aO&PDd$?+#BVXuk0z%x=fQ^{G1XDgngc<z5(r<he!CTYhDQ@FXN
zT%gE7m<=}9l#5fiB!wxe&noS?RF$_Xzbu8z3k&2jr}FWqF2UZKG9!hVDO~2@atBwW
zaAgWJY|ONARSL6G_}9cy6SGtJAH&teXcJeba7_w-rSNwOb5fX_!pkXaP2t)U=B2PU
zh1*h?pTdF^mNPt3SeU|fDO{hz(i9faIb-sRQ&^J1>6%hDHqWYCOUh~q$*5vJU!DJ~
zJijc(rw8+cYRQc$+?2wtDXgI<Yst+itW0553RGLcscQ+znp$#;>aR}Wag}TxooDxJ
z>*e3CCHp9;#ZT^7$JP{{NMU^nccgG{3L8?mGljdjQ?=!u6z)#Jsx2%%YD=!Rd^I{W
zW_oSen8JN2JetB|DQu!|Ys>c9a(@aB)E4pwQaD&!ST?7yMfrmT$wNvWR(wQlrW(6&
zoUmhUc`}8kQg|+f=Tmq(g=bQDRu@9ctJDdXMyypwq>j9h!iy=ql)~+GB=k%jxuA~B
ztt0f<6LsX36kbi?(-b~S;k6WAPvM;u-c8|+6yB>NZ>8{d3foe6Glg&J$gw&?jMtS0
zb)`#P8B<qM<@xtgct3@YQrMZo_7rxgD?U`uOsy;2kq<a{dH#mFp<6c9m92GUR|=EH
z=08c{W2)7aJv!83ZQ9LMr0`=3Kc(<R3VS$j3g0rh)eFu3GKH^F*qcI7Prgo}XT5NP
zxW+Ooe`Y=TE`{$?_#uV;3^~=`mjeB;vYu?IC&$Kyo6>Duo(?=f$ENUG3cssw52f&P
z3cqmq^~4;VUoa;BtMWY@b8P;K(fL18_>(!dz8p#6u#QP%x|D}bK2lF^)b0L<0nb!y
zq7lPBg<~lgCgLWJbBYuyo2X*qWD2KJ{DpkL#OV}@%y0=6*rmR7tuGVm3uA_RG^4&$
zGI4!<*;-$YkIHk34fUm}8M?8$iDD(y6zSnT^(A5=#;O;_f7Ha``cm9L>NSuK4J2VA
zX~Hw%n@E{3O*kgHRVuYi*gEgz1~R;X&;TOO5l@P1VqOEey@8}nl$fYzqP~e5CTg0f
zYogkpxmqS_E2(4R`3AD9f&A7$sy7Txt=CZ6H53YmHI&H>WnM#Rz|k7YnugNYL=zKT
zIlBq|6M~G1Rwl|!WKHBueh-FbCLV1lc@u#WE}2!DN^EYTg$i4mc(<W^+fe>(D5*wa
zEM*#rm}qUHgNcqN+L&l-qH`l@uh>p;dLyBvT#+$wQzPj_xrr{?%JCm)B(H1Xjb(Qe
zJxmNX@%Z?BPZM7@l0GK-n&@TXNF#|hmfj{BG#1MHndom~5KAo?Km!`fKojRTmZ6Qq
zwbMv)HqCA<Lre@cG0eoO#xjCSXe<vmmf<FdT;Pw5Wuyu2euXAdZeomyttMVEG1kO5
zb}?~_iSblmE;aE#6BA9GVdB0fa;b?kO`K)o0uvXSINQWIG{D3p6X(*}dUBo_COSrl
z*F+NI^4y>|N9CI}ku9V0eVfQdCMKJ>*u)i0<cuc5R7PjA=@Jvmo5-*+;dz;2;xZGL
zo0!U|ZX#w=d9_Kn<1EumOgHg`R%e)?WG07Fa-||AS1FmL$kDDgagB)^xWIAwIke5h
z62`fSYZ)Xa7Mi%u#C%4`xcmYWJbf(8^DI1ii%jI3%3?0Lsq}6d%Be=a)Wk9q48QqJ
zWs;R&uGTUF8K}%}H=6v;7B`z%VPfOB{7MsdH<gCx<um1Z;!92ClcuuT#I0<lOHHgX
z@tm2z!^E8?)|$A@#O)>yH5ET2>r7P42wT^iVcvecLB3fgjPtuVript@^veicbT4DO
zJbz9`HYnkw46WH2*<|8=6OS>jOgvy>vx$co01QGNVJ0XO59-0ZB_j`I<gJWwn;y|!
ze$)gvg_ozjnQ(WWF!5w)B%U|%!g=|pOgzJhvhuWvzcLcf3Vr*mO1fr+@)u0JXyPRk
zFEgA}!b3{=)U4c^mB+I3PF7wu@tTPrOzb!Dx`{VT>^AYaiESp{H1VN{k4(H};%yV}
znRs94eaFPHth{UD+pI8YFs{s;Y&WsP#0MHG%(pyEEpuUJpj&uUcWRJ-V&YTAgNcvn
zkOP^%hjL6leRJ{|gEki$cC8|f|AH}K;u}uEV@Lxsve(4dCcfg<<mAzuyp@x^IXTQJ
z@<LZ|`QI@;j>+#c@x2*d=o{pvQ$D;Jj>^lACVn#Uvx#3!9MB~&(;iep+sF@T$nnDT
ztBK!C{K-VB$C=%^7r&eML(dd*BcqEq9!KbK6EpH5r!$x3<!=-Ja8Y@AEiWw^<&QD>
z)A<%&vT%aQ-^54@qb!_a@@KlU(A+|ig$fod3$}$O<MI_PRI^as3jaq7tCcKNwn8tF
zvs6)GRSOJSR*Nk}EEpEQ{}1nQC}9qXTHs-iS@<R||K!6gl(3MraPG+*uL$u#QWi`r
zygoJwWKE+yFJ6uX*Fs|s&b}6W3w12iwUD+@VxgvmS{7<p;1*9P53imK!r={M!npi^
zK+X-MHU|&n>OksQsLz!a=Nnnz)D0{&w7`ogCA{~jHzvP2kcWdXTAEtn)hcfxu#mBk
z<=}zj6laXflkW+n)WWeqnv{l@S6Z7al@=CSTIg+|kA+qi$}DuW(8&U=5(}*@w6Vae
zPv=r;Yk|GmS!i!zjE>O3!qie>SzaoytPMyyTj*k;hsA%{z`v4!r{K@>e0L??6lpdu
zqZ>=*)zUDT^s?|nX_)sY>1&~%g(0-Rp7ggcz``I49GMX~kbBxJ%#(~g8aCJp@4MV)
z(xRCRwJ^-Wa0~sL38!GP9if~P?L03(+CsU7n=P!M%@)R5xSTdy7-wO;g-I4J;7Tn_
zv~aeCb1a-;;Y<swn#ozLHj~-S!tBi(67nt0<XjC29=-EP7-LQ3wPx}K<tKC8wF@m=
zq&szqg~=8!wm`S@GR@KcY8F~WdoHywg`v_k9F`VdrhA%bF4HXVgkEjoy)pUe>}X-8
z#Xl;A!dcpp<Vp)ysiaAB>E1lt!PyKsmGIiPwLDLqYb?yMFqaE#9^N_7!fP$evoPPn
zwB~ZX;sV8miWFX_WRZo%N|qGl%V<?|S!!XKN|qPoH!ute{3af&hN0R@I?duEF4$t>
z77ME_++pEP3%9C6ZsUGgSi=piC2Mt!%g5y(XfEq4+!x8OxA1E7@D7JQ<n7ts=5m*X
zyLmz_{#z*AW8q#48>wkw15bS-&zni!jM00Cn+wS%9@rLPek1Q1&GT&X!15x+yS@i`
zc3Q|27E<-{4_SDaVOdYww2((EJZj-Fjg!Z9n})X##t&na!#-)@DGN_qc!vAfLY}wq
ztdi#}EGf><Z6Rx0$ipq<^%nAi72cnG-9o7LvW2ZY<2LHrc!evnaLB^X7GAUPx`i(+
z?6L5Mg>4o-;)e26T6oLCb_+Wg11-dE$%miuj)iyWA1nMU_P&LDOCezy*fLx%4?Dw#
zOZdRThk7C?Wb1h?WtWAI)x6J{$1HqmVYia2TgvK|@|lJI2$8Lna3S>1mlnRV@S}zI
zTgqPDmv1b5%QRx)YgK!)rLgHc3;TFZEqt$<`&-KQWAeva%6>+2E6KJBKhrV%ezI_Y
z2QVuKEnL_t?AV>Hqw~L5_?7vYi?Z;Wh2JgwW#MlNe^|J#l^oGA?`S1|S~yI%w~`&L
zgmR|18@&8K7XD?*vT)o2?*Ms!b+DBj<<Tn(iC-osl%J%|=<rUALN*oIs9?jgVcV!^
z^S|97ZX;o%k{zZsx+|unvW+TAsw!4fq(XHi#Wo^Jq6Im<ZP?+BH#dtrlC;shOn94T
z+DIwyTNd8Io>eBi9dc~AHfq?YX~VNIr!0)gv>o0l`C465CM7of#$m|uu9A0>wQRgw
zCf}8X0bJY0<6Ip#-9~*I18n|L6%A}Ow9&>!TN{mRG`3M{qnV8+Hu(R>@^-k78EUqa
ztc{$FV`ZV8TrZK=JAOV5?C_S-kuc>pw=us#zNL*;Hd-iWcS^XwJf~$g#18L~THD}-
zo|%NanMgYu?QL|i(bYyj39ap5qoa*ZHah=@r9w3-voKS2v(eo~UmLtFq$NFU^s>?0
zMo$|w@;nJ`qh=pFjCrn?IzO5DeyUH>U&+-XgKP|@zRf=$V~CBRHpbZ)Z)2E^;p)%P
zHb$uOD4X{r`H{*wDfw*@ZdtjFF*e4kml&VC_v3mQ$rEf$v~jK-US7|zai)#4ZJcAH
z-I)C25}I@t-F{xUO%=xGxlP+ucz~afTFWFG7udMW#^p9Hw84ou<0UpOvN72Pj~Hja
zm~p5FnVhYc+L%&UU9;9Q)yA}fNpvQ?F<qBK!s-<^uC(!}jmP-?kBwP2R@hi+W44X|
z*;r&_v5l*3{^=aoGBRzH-_UA~jU}B+=Q3tm3#;e1mf5XkzKz>gx7yWO7TQ>#d}C{Q
zzO`Iu<LA~=wT(1tBTKlgZDg5^<=pW$a=neETpCFm+0aJLJr&$w<F__)qm7r_$fs?j
zQd_ynMy<ATGefAYkgT$Ci;ayo?z8!4ecWo}4jXqeAlu3sI*0SxSW8E>m229{?QP|$
zwzAH~dK-t@3Lk;q)mHqqttz*ZyKK~HC->O6SIOPni*_=+om|*XsJVfQZ6|Bm$)oLL
zla2drJZR$~8xPoctDS7N@pn7f+b%SFiw&cFI1#aNdwG}#xxMg@zZcxr>Je_-ZLNB?
zm&a{9VdJEYQ#PKo@f00m;};uG+jz#t_cr#~c-F>qHa@d4cT4cR9X@NpKNf#r;{_Wp
zax3W&8{2K{;7M$pZPGsb>d4$yUIlEt%A9jB^O}vfm5{%#<P96!l)PDxzhz@;`~QFb
z@Ezs>mA|L>enE#*y!~7FfFd73CHc_CN8GITveU-LHa@YjslDvtr0s>|Q>~Iy;fwZi
zq`mNOsk?1_ZsQ9&ymoevjjw2Pt?ZXPR<Z2PbF##}DxvUe6@H`DZ*6>6kQckzA8hQm
z@gq+elWK?1X1cU-hwzEz`fG{~*yzzB;NOK0au#YH;E&p6>vhZh%HZMF@RZs3o!PR3
z{AuH`jX!vnI|vJ(S7$lGsO}(t@dT-4S!s^dEgj@v8z<<8VZl*GR5o`^@wg(Z50&Pg
zDa*atK~CE!a?s8}dj}O9RCG|+K|Lq@UyPL;q#T$IDm$p+AmSkEpsIt~gL2g!obDi-
zVx`p_eBD7PDdtzNu~L!;SMq@<7!KNWl!ODXW2n|BRvLG}CMqO#gwY*^3YG)gL5YJJ
zDs-stz;`gSqqq(}9FkkzQ8?_UD}uBta3~6EI;f@N*H+;p9fgG>*U>5o2e0p-frC~K
z${aLw(8xjFLExaVgC?q$bMSUYY3d;3@bBi~qFCkNG?n~&HIGfD+C)>EJK*fi)V9+)
zT?+>-X-OyHy8bgj{!@0)T1o3p;o93e7}ZJcez}O%4h}jxIMcyd4mvsL>|nTq5e~XI
z=<1-KgZ>V>Iq2@7mxJC8dgwT`r>A;jMkhHVR=Qd(?Bk%Xw$kkXmdv?Ub&>%N200k)
zfHMwMo9V+Ls!0W|ZfIf5VGf??6!slS3muGeFy6svooI}9FE41m-$}+g_`Z{HSmFdl
z`sxfN6BR3V4!y_GSk87Z$-xB<&T(+AdiXq!+)=i?Ty(yUPt9~^Y1>&YbU@)H4$3>r
zMGht_q2|R7(j!YLq}rtprsxzLnM;`JV48!UUHsx=x`P=`_)JR&7c&`w4vslE?%+xX
zS8;U?o^&wF!E6WX9o*sIe-5s8u-3tC4z6)9$H5W@*E^W&VC6O0%R9?_2iH27=iu8(
z;X8B}{}X191r8QExQ^Ia-svoh9NgYn9#g*92_KH7aH)f3PWZ^yjSiMO;fLiLc&u6k
zEaWUCY`w|B&8oISait>Vs~p^-e04!`tCBT}&sQp?8GNYYb_eTt;yQ;p`Jc}6;>O@k
zhtJR8VF!<J%N*RpW6L-Gy2!l__|(Az4mK;<;9#Q?3hz_0N%4Ls{LA%&J9BO{x5dFj
z4xe(*J?NlX7pdEYPq60(*37l;65b0v%0sO-Jm%nW2fwt;bE5JtVK#fp!P5@jb?}~p
zXB<51;1vh2I(W{(^Ymwz@b$MBc>H(fUg8GbnB{9MFLJNDNX>JD9d~A5rt4nHZgnv9
z-GGEk<8-e%c-_Gp4z@XX)4^K~)^w2<y2xi;<kv1zwX3|%lhRejca=I_<sAn^3g36I
z-NBa*zH%_VtL)$zw}KDC_z4D8%75tKBSwpZT@F5V@R@^;dGwkW&FYu^gfY-nnr8EN
z-;vu}H@n-x=MKJLaE{MD|7RvXC%f&!Y|l(~=O39p4&JYyrF<_9?id_)aD+SJ;2Xw_
zgYVS;hZMh8?7gzpK6dGl`N6?{B|j=2Q2dDj->hP3yy8Kvl2G$!?f8o#-TSM9-wOP9
z2Y(d!pN#6K!)Ffva_~2EPI=}i6U&y&tzG3G2Sk>CxmikXX<tf(6An%?Wx1&B;uLc@
zGrSAaMUjgNE{a`5TvT+i^^XkSv90C;E-JZru_RmBMO7EIj%BL2IOJyE?kar4Xor<O
zdS&+eu2P-7x{23KcoL&-82q$q?f4+(!f+9Hk#Ny*X)v^#Bwe)bCjG~UoM^eQUAQhh
z7mf=)ZpSA8FRz^EGZ>S*g+cDSxbSp#PB%%rC~;B4<v*^<*K~2yGXV=Z3rQW94``ve
zixw{Gxv1|V=OXWhkD{&VCJkIPbkWE~V;4<aG<ESnH`&@vKJ6yIc9RU3xj2}#D99?Q
z+CBUOM3-d&m%s<x0(#(Jre1d`b<xZXAFN`Tuszq(MJt!DU!lE=Hr=Iv_wXQ;xezYU
z#rfT(jT;91tnNbIRwZBV3g4loNnsx7E*)KTa?#mE7Z>NcIL}2_7v0=2n@x1l-Noka
z(!)hhH+&B5{qEAsMQ;})T#R(l$3<TkgIo-z%~I6Q#Sh(OfQ!+~vi%h&UY9MsEj#c(
z`G>&}daQ4LsEc7PHmu1u`8F8t;&gYZ+e3zqEgjJ#&q+tIql;_TXD85C8?xmt#=02i
zV#tc@7#D4O$mG|uLwX3$?|2t;pUbZ6n7?p+cH{bN1<9X5=RA}>)5TdXj?K@WtyR8o
z*Y!yD92Z}$$X>NAd%lZFE*|18ySRYc>SC#jWiBpqG1<lcTwLwqVwca$VWx{KTwLm6
zii@c(rn%TRKYN*r%c<N$+HK6<`b2hq54mYscDjohF0Q*dyP=0{+mQYE(JVF7w`H$%
zah3L(rP$)VAh94zob6)#;%xovvsjY7#>E^L3tTMZa=368^IY89u87_^^jLPo%Isx}
zvhx{B*N6J_-gPb(xme=jdKZhiYfoo4{*vWluYD@J>DFxR$Fo~|$d~lb{OocUH@H~m
zV!ewS>3J8ox>)1lW^V4*><Skv)vMc9Wa;)*E^cwLnhsf?bv_9mcp-aHr##*JXAfD+
z{cTlrn~U3BynS=_+<UVnJ>`~tL93oJ@rCRiF79-3pNmZ{?s9QAjpyca>KC$$9?st5
zV$ZrPOQXNCudm8(bTOu<ti3zSSq5*--mgKjg(1qbz({j(@TTmwPh_X|l$(0W-kY=T
zp6uq!i(b4Z`-qE2U3}o;Ll=*^c%0Gb;#C(<xOmdVb1t5D@sx|F-SF+pXSs=Il|G~V
zvX8SP7G_Tz$ey<+nDk&6057<B$;Hbq{H56!Rj1*{*~SaATX`@~WZC_Zcd`}dWnXjg
zI@jys9T#u7*v9PiVD?QH9P0j_!eP%`nthAG@LkxY=C16!F5csIZ_B>V@q5bcOS3Hp
z<>&0qZg;VR`?V#zv|av>ZP}w$@*mOvF1~T`t&3eQK6dd1z2xE(7oWP=?c#G6v0?eo
z^bCH!BfF=k%-Wv)yQlcyWm!EuIR7Ps*~MNLU%SX|&))iD@a0FrksaCZ7GyC$+)Y-$
zbMd{4{VslF?73L=bvCgu`-6+WhUCeq^YOmyPuz~S`2%!2UD`d*$4a00I5@=M99P=o
zhV0hkS+f@(-Q@GVxXHuK9)5T62ZO=G5D$O4ILz5S<UAbVVHuvQ;Gv?2zg+z7;vX0P
zx;V*`+e?n}81~Dx?IpLSgJTTBboiR>aTT6meA;346!U;87kQxqd(~=RN`!|>9_o3h
z@1e4XDjsT3axhcXLp2X2%2}=M!S`^meR#7}>>=VI>LI4BrlO%3S4=1-6;q1r^=I9z
zRp7P~N741*733BF%%nY3uaV_MyhgKEyd+!GLoE-rJv^Ar*6~o6b{@_=ejqcgm;8Kn
z=~?}<^=o98_mT!48hL2!p`nM(TwSX4kH3O#y`+hUrXEiA5>~(KC3bJgc*yq-N!~-?
zp^Jxy+L!j}Eu|h>dEt#jGcSC?wz-EE9?t76Ej>KiTR!S7*YuWKdrO(>h+=C+c4?!e
zt%r66NqY|+3cRC-P6giC!-3x6?>Th!(9J`44?R2#q%-@-;oj2ILvIg#JoHjY-9AEj
z`##dwLq8AwJxo-|j6O0z6_#oBKj9#i+}B5jdKl(ms)uPF)-Ml+d*GYV6FiLYFwzSz
zsiQoM@i12TXb;~v56TsJ?=;Tie_+g8n~SK%>UfX;aX3%OL=R_pIMc&f9xnE9NnbhJ
z!#N(#_b|!BxgK8XBj<TI-A6v_Bji?JA%EcB%mp5Z7b#w-nC~l-l~CTNuUz8cQV(lx
z%S`cbnTNakh7T=Y*H<q0@M2%t*;go;?qP<9t36ypcdaU&>EQ|`<h;oK)>p3daFvHy
z4BCEDXF#rAKbh@;<bMo?Riz|zJk0g5*uxT)U+ZCkhlL*Id8p7gH(!yYLqECB!y?ro
zVMlf!*-xhQlg0hydJjuIEc0+zKcVuAyNi~q&W#>!@bFweq4IwQaNZRfMMXX;_*m&-
zm4{nAtoHD+hfjD0xnvK|vX_Uo9&YpSxQ8b^-0oqWhoAe&BV5t&V7(4<pW+=J?o`6y
zyi3X5iuZW9SILG#>qaH)zNsL&pAIkZ%}TcLKq+~sAb;4yu71M7+3`^ikEt2tG=>9`
zJjtWiU!L;tv{tFf@{ICKe|g@+3m&$4c#|8)cu@K4+@}8WvWHhZyy{`A3OUq-{z81s
z!xkl1^_LY&-uSOqe|d}N#lsE{A9#4j!@C~dS3BQRWZ&oj`Le$p=`ZyL$aW8H2gs-a
z;g}zK_{hUf57P(8+5z&?0NKUjfyzG*kV*rk=0N$>!y&HD<DUhw+r#G`zVPs^$A^$n
zHc<9>_{zgxcJVNHpj<Lgh+lj7MyGyyU^vUQ1LdxPp|8I8u+PJf9)9xhgNOYd%6pYk
z{{BGuexMv1D9J&g+5zo*P%%G9x(|}EgX9+;(m`^ZF+WI_43b|x{KoiH{=0`il>e!C
zSn&vxzlXmII!BfKqxi2P4LepK9EUq~f~n8LDIQD@&kvHFgXG{KA)#hPAMjDbM@=79
z21_L$rq2hPQJGagd=+l$?x3oVYCfv_DE1Nek?>J>uta<e8!S=f?FI{ZOeKbo3$;3L
zuq0K&ck9Sgs!3w|aC|&JSUexM3=ZAGPam$2^o^x=4;EjW*qT;SqBwJ2P|HVcA9){v
zk2-$%;k2QTMjVs4E?}wW^B<suyn$k?*1<=ErLm7DJbFW<-Ik!Kk85k?vVQne0~tSj
z>0sxYQX+pfh7y(ogTwCtOMNu+ksK0!3SN-OHCNukM@uEGe6&_lrbsoR{tzK)Q;_r<
zBJF*2@bN-jyjT|<eRQJJY9m=2oqcri@oNcwD?wKu-Fz%dV|g0gef040n~&dp^z_lo
z#|=K8%SCVg_?wT(J}&mr*GE4e6MdZFqrZ;<K8E`k;bWkWK|Y4~80urNkJI}z(}zgc
z1DU_C3dnC9BE#tCeVK>ng`8xhk5N9x_!z75(LUZ9!UxMS?uX0<Rrq;`jPo(xN7bP+
z!N-SFgNJ4XU9QitT6?Ip9V%z~ILpWRJ|_7%n^O;!r-#aUKF;xRu8)g`%A~oO1w&=s
zQ2B7ElwTek94Z$uDttso29@v2#I6bktj}D;SQ;jjT;k(WAJ_PN<{wjhT;}5nA6NRg
z+{aWO(}&3nAJZ73Z)Exmlj%Mh4wL`*_+heqn9Nk2l1npJ`IzP7e|~roVRbggpPIRA
ze#l9#rmHt(CeF_Uvx2#d1RvM=Sma}#kNNc5?U{u>9vCJIe3Wm<yf#cY$m929rrn#_
zGfWoySmLAB+{`i`tiE)6=6WAXxvlqR`Yp_~SeRLGQ9xYogLu}w%uPOS_VJXDr+uto
z+V`>1$9+Cl(cwPU`?$l$Y9F`ySnK09A4i7C_R*O&JcGkSQf+RqWPRp#A3N^Ptm97_
z4VNLqW%}mK&$EL&84}k9clo$mTc-|}dwksMqicC)gOA0-<)#?{OTBR!N<JBv+2rGX
zACLNYjH~mp*~ddZ9%hW4o!R2!K?ZYqrtdkKE@LyZ$7IIO4K@y!N9g|vnFr6#G`c3p
z-k*7CxO_5P9{2Htk0*T`8ZPM(vj2@tg%R@7_{=jtp7pWK$D2N$<5BhTijP+r`E>8a
z!HYg#@-g$0O!E=acZ9s`V=G;~By;u%`E+u?GIxZ$#tmJTdELhwbjS$leRJmN5wc^1
zES(wby&>}!&#8~EeSG8N9Ut%d*v=#{QobJ{@A-J&$MVaA(<8(l85Z&#K0e?{87Uts
z?pFLrai`)g#gBb_qJ)~CD)~%@VwL4{A72z&_b>-4|4MOhL78gb`uNVr58Cm2M*c|I
z=i}v(a`i~Lb)@VWDdfv12m7foIr!1XPfExSC^<-H79>CW_@%&qWjtudKYaY@V`Lhm
z(l|^Z(^MKQ()i2A-##j)fi(W{@h@FHN>2GW>f@M?6Fzp$2oj^@?x_Jc_qdP7qvX+R
zf*zyfBvZ#IxoBo)-}vCPkD@dxq;dNwd2y6{bY(!Slt$$=8l=M$R3(k7X{6JbcwdI4
zS{lg$ubxJ+@<>4vO(Uk<P>d@k6i=6j-BZd*%rvY5x6^Qxy9J4-#8(6Uo3}(IHPWbA
z(5a=Qb{cgGlDbOjrBS~iq5TchXp~0dG<J@XX6f)~AG;)Il19^lPDV*qF{hYU4ALl7
zLIe0x9t%fnnMSKLI;GJ$jh{zJSsJa=Xro*dmtGdMO`}~J<3~$}G+3=TTAIxZ+NV)(
zwDcG)Q%6h3G!~DRb)%(A8eP-qmq!0Ix-t2u(KC%+Y4k|rxzRFVN^p3z>>VxbX9vC0
z=#$2Pa_LJCm&=fIN~1G^CgpNLxy&h-0ci|OV`v(~(zvZ$2Bk4LjUj0;S3g!ROka2J
z&%9YKUzW@8G`^S;Fq4l+WB&dO`Q)pDmg_U4(<o14avB$>F(!?%X}CXT&P`(+7m~)L
zF>+=aRFkuU3G@l$uw2eaBR@t4j}eTKTGNBG(l|SfbJF3j9=$e3`0nT8F|v7#oR`M=
zY5XxIn3TqaX}mNoxFC%^W8~j45+5rUrO{-pRGAs{9xIomacLS?r*TahQ_{FBjp=F3
zV6U-qc^cEwczR|qRdLZ+d79a8tW>@-n3={EY0OGvb{bcvaa9`LIQe(1JUdoCA1hm~
z49NdSKaZ37<K(t+a_%@GpOePiG!~?>kS2|ji?0r@O=BLHHb1kE3gwykX;d69Ouznk
zxsLml#*#D^rNJr-uYL5!_1s^scVC8_u|YESs^Eq+ZshSSLCX@{l*Y|z98BX-8Y|LR
zna1ukK2Kv6d!_Mwnr|Lqb($Z*aX%xI(VoWIG<e~-kNe0YndUo6*qBDM@p58bCb1y1
zE{*kRj2JI0ccgJ=f!~$J-OBGNNbXg_y`Uy9M!Y;tA1|9Y@4U=q7X`%4X>3X3p)?*&
z<3Sp{F!Q9&!lpIj<q?%Un#N=4@OsDA$5p~iGGSrniU0H!pHig4(@LIEd{*%}-7Ge}
zNGGT9K^h;X@p2kl(|9+H_tJQU`%<2HH4O&9r{g7z9ObOOuH=n0wkdg2@vTDZ+iAR`
z{LuI?c-~KAJI~hy*^vg*8jl;X+Jx}tr}qT;h-W{IkJI=hjW2J>>`LQ|3Br!NOw3x5
z`IOaB@|ngh$^Og3pX%Zb29XE+3&tvY@t9v0%70YymEvB-uNA*h{8sTh#qSmODgKbg
zekK16@>3cIbUGr>#T|2kpVRn-`LG0b3Ew8eZ%nx*s8)jCsleo1f{G>hlZP&iznSXw
zTpwYIo*ewe$e$oQ=CqAf4)t$3{Mn^LH)hsPkfS`I(}H7Z99MEek&=^XoGS3sX%v-&
zYRpu`Ix_>5ph^ionIM%)P`L!WNqc^Ryf`EC>Qw>n=y(@by#&Q2h*NE55aAu{1c_3u
z1kCWp#PEKJw?@nE%@`$NhT)xOq6Enjq_~Rl^6ZpSvjjWl1T80qcQPX<ic<o&1WiiN
zv;<xW{1VhGL9G&`OK|B#sX;zBQ&NIO6T=;0a(iWIc;8sN1a(T#pacy|P`3pC$JBQ~
zT~Rx41CM}$C{l%ccklL=``(utIw%6tyP)*md+)vX-g^;yMMOXZ#a@vj_J)lPB1-?B
z&F{}S-#IyRCbQXWGMSkqlWa10XvRvwPJk-Ewu9W)LDC2u=^#1Y@DjN8TPzZO0&V|_
zm6Z7D4l?4m8fRw`$Yv&^Ga`XB`H%ojCB=r8jf1W>V>6`^`~?rWJ4)ikhh%8hXmiRX
zP(Fb<3CvAECQu=PClY9rK*a<qCD1g1W(ibIph^Pu6KIe?qNA*uK%E4C){F6K3RX{`
zhC&`vko1QWsCfr}L?N{jsI8D19VHX6`>2~hy#&^=JRRkjj`Ed`F<VG)$cE@B8z;~x
z0TPd?M@-g)g_)S)yUi2e7?`1zLRuuyGJ(g~aGhkYuGtKH<aUy+6R6fnKF&v-B#mL)
z1llDqCV{aDv`_GNLiA_5Brv3t?3h5G1o|e>DS^%juz%^2z@AR>hl!c4DoRSX1iCA{
z#~n&fh4fOew}P8G#T`?>1kNhti%yaVmA7DLIWU1iRD||&u!7Y)%OMIOWvD`iB`{ne
zBNQBY=jkYgjHXa^j<Xt<!1x4akVT#4gajs1G834Vz@!8wt1u;jj-BI<a%yLJa&5#w
zoZ-pNa(V)9b(Tbqc9t_$4zm)Nt&sd(Br~+T$ax9OPvC_FUQA#?0t*w^n!q;N{{$8%
zu!?=b`nZo+lEAVAmaFJe&ilH=oydv=4!6v#ypyJ#B97@IS1ZbzJM^^*S(m{2JCqFx
zY*hFr1ve|WMZvWylT43jdjd}<;$i%g3G84AIn?hGJ(a-zE|Li8&m{0{A|^hU!1L64
zMdynQw9GFh@Nxp*C-4J>DuGuMIFP`>1a`8qy2#fQysN7$*;VdJ;C1S3SGk+Ys3;Y>
z$~UMQUFDtx_9|qbf~35uko{!r9ZJit^6doPN#F!kIDtb6yh|&Qz~^LOSNUE7A9j^L
zb(Qav_*BI30VxXq=nm!M1U^ytrwTsZHP+uR63Ed_vZ!Uc$-@d~^veW}+`*5s$_hWO
z;8%C(#noHiB=Btl->G`l>n1yQlY~RN$pziyj|u#g!0!qCk-*Oh{@IFO6F5mb@JF=0
zn`C(Jw}@e1H+kZZ=r`8ukLYMO`DX%uC2%@{GlVM5sRX#Uk8geTXLObv{yn12<clPd
zav_0>G%_0IX}FZY-)xH{en{eS0{>7ok{F!Cl?48!?MfmmiT@I~O8c3Fp2W2TuG4TO
zktc~83EX7WlE|6FEmo?zEYn@yX3pa>Nq)V%<g_<e62-PfNaC&}9(pPo*j=vb&i@+Z
z(ovZs-DTb+?oOg`5*LPN816|TUlQmcPpNnFC*z4T!@WrqQ22cc-hYQ)P$3T_QAi=o
zpNWek;r5V4li>83p_oF7C-I;{N+?+J&eKE^$vb$p9x|1Lp|bK7G?TECaFVc+C^0$H
zu}54ZH;JEjL|zgv_mGo&$kjb0k&k-tKVpPQuy*`<l!Q>(o>#9BW|GKeo=G%KqEr&4
zlXy6Znn{#NqAXJ;!F-sEuv`-5$(Ejy{A7^Hn6VX-sHl)i3RYIIih_JvHHm5p=cgI1
zK~^VYKZ7$o!vgC)<6=LeYE(OkT8hKu42g9V=O0zIV>8uFqMmB6`U;ZLAc=-|@J2~A
zzJv2ae7#u`t&(V+MDrwCsQg<d@fbNaJX5Y`%$6oSWsjcn@g$x|qFWN(RnxRdqH7Y<
zd&;&d%B<Qcq`iV2lIVDc-YJRB3h#1<Le3Xo8?9%yN%TyD{u35sZ%^4PiNmUzy^~;+
zp-&Qh72Z$5{&(mDk{Eag|8#3KgqbAq5?eEgVMz>6Vo?%{lNgc2$RuVYF*Au#Nu25_
z$0RW}iO~wr*GuM|6pc%Q0~m(sNsL$cggcapNldzfPflWr!l&M$OjC&2D<1#+H8z@+
z#Ox&IB{4q<M&~3km(ATvZW<e%ot$aXOMW>nVst?g3t7D38NNlx(4&`JlEl&^HYBkz
ziDgMFrywP<CW#eEtW1IlR#7lU#_5>}5x#pxeRORS>ylWX#Dre4S0^5ZjfkHv=693W
zoW!;ywkNSAiD?7lZ*5ItM=!}_#F@{NNqo>t?zmGU;!i2un3#Dw$-mJ-gyC6*Jg4CE
zNxYzt7w<gf=Uz$T)g-=7qUgZP&Lmz-;!qOrCb27t*J*HuW!_0*cM@+T@wSTo+)Hx2
z#IPp`!o3RaOX5w1>{pQVw~{z;2S2EgJiTSIw=CaVHta12^p^bGd+MWKDEPjDA0+Xi
zLiqF}g?y~wCrNyIhyGa-pWnebMq<jtNqng&M-)7&;4uY{EBKXyClvhOyWdd8ddqJW
zB=Vg?tj97xCh=1eDGi2(pOg57wl|5ZN&HH69-R3-i9eD!sqh`W<!?zG>>ZDs=`{N@
ziGPx@_v|mqr$SCEcv-<S3Z7N)oPy^SypY62g<MjQum7!(Z+pvsddmm<$m)IMl_U=V
zh;#1MM-pC3;ySIdhWj+!Na7|9yN28vZY6P>9f5}T`pDeFGC4G??jv7O_@q8Emj-CD
zGw_E#5`87p<k65<Lp}}pS=qkwZVgO)kA_Np<G0%Ol|%Z{yCqYDG7R^scS*lrLqQEC
zG?divfQCXEifSmPp|BS7XVSxEi)h%~H|7Zg{mBf))uRVB>{Ik33ZCsN6B=|4M3Ndb
z7N+0-y%qM0z0IVU8Y~U%HFVHmYj8AF)lf}?tHIMCG^9278eUu+MdZe+D9{jU7&tE?
z&hThI*|(pZ(NAV+$gp1gRzJC+pWNF|W@{*=;dnn;T0@&<u`7Uh84YC>v7CbC6(n6M
zq=JTucPLLTk1A`ZqQ$PxqvJD7!;e<ic;f)-Xn0h^LmD2|P)kE?4K-QRxe>!7Y^MH_
z$k!_)y}zv7UpDP8j}ORHTp88nTZ`i~%{A0hIHUD7G`NE|R7fKYjTO@54!x;DnkmTF
zTWDyhVMu@Zn1-j-w_2$vDXrNG3V-4brHzKRckp%!ncrV_)X+&oKMnmgbk@*C!=JxL
zy)|^zaHzlRuAv93_E*$R!Ro(9zxJ0sHC*p6d#RK!{uWQN7$xkZD18+yIzSF!(`cBY
zVXB5f8U||^u3-eft6?bfA0UTOwAyE~2FQ8?<j#?qnFHj;0doHUIa0$U4U;vD((u&)
zIa<Ln3NkuYA>%ZRzeAazVd5Q}`5YV)5i*}k1LQOf(>2V}Fk1tOGc?TP0BnHd*YgaN
zsey5tM+U}UZ#z)VQIEzCl=C$#(9ljtdmRfkEYk3;hVL|<cY!4uc4>HB!%_{)G(1JN
zYgn#fg@*MSHc&|3h*nY)HLTI%A=WCUACX}Px>mzF4X+K92Zv==4~*Hxoqmt@&1}@L
zNy9b`+o?wywrJSO>bH!OeK}BG87K=3lH~_UPGg^>FbtA|S4BHC^c*B74w4J!M=J*L
z*bO|Z;Z;^p!*d#**YJ{tmx&CLFHl*OGSUvvMSN(G{B}^RbgyW*JxJ<<W1P!6uTj4^
zr{*YkcvN$+oY*tkt>FzC77g!f*rQ>uhW#4e((vQ3%swri=DexwL&=eui3j4fh65T7
zYIuh-qk&5a?FP%YS+AARxWRJy;CQA_KTM@znRi*#QJJR(%MUbssNqWuM>Kq-;bRS-
zYxqI~yNORUe5&Cy5(mrQ2Fqb1GPFVroQ?L|6w!}&n8M#)-Wn`t4apqUa7@Dq4PW#1
zA(`VE8V!+OY3!$Dr6IEW5c&L!Xv~<*H<YCl(efdZ__!hRdksHO_jQ!h@uP;HXiRk6
zuj6M8zi2q6;k1TdHJqd*vmM*Y-&iRPe`qK$l!snQdOtoMA}<e-jJ6+<+4)TL7cFEv
z84i_aXmd2&t>YdY=O`FM<avrgT%HW^i!9zyd6n%uR9;f}-wKj=S;Ief@GBbrRrr5*
zC|!oiYg9Vge?`fq$NAh;_$>u*E0{yk`6#CzduE70QSMSO_noJCbmYB*(<z-#M}8gm
z>L{RN#ZdXuP|4!)T?Qf_4VBEQppFN01Uf<;g>)3wq3dWmEGnXdi*cHQM2ae;n2zEK
zc~HR;3YJtb@jo~qN-BiC`N^U3_E4EpQA5Y$L*msvQ$;Nuwn7{QNq2R43ilN(IZTom
z=@2?HI<gh<Q2!{cBTGm1iJ9zSvhgt4dzdVxqqH6`EtSzRZCJe6w0>B;ltap{VLbZ<
zQb%1K^>kFwQBlVuI%?^tq@%KqYRpPU6+U`AVn16|A*Whqh_f55q2nPP59_GO^nE40
z^e2YN^TXtQ!=*D^HW)4k4wtoctQs!s==fx~d~tZ}=ecWk^r()L!zGt=>+5KsqnVE8
zdhGLT$fnWx-zeysrh3xp-9(R<-kR#MPmB)F&qidf50@=;wA9g>9Mj{W!ecsG=}3=|
z^!67SA-U4`=8>rJ2>FDLHagns=s6;G=rPP05f^}*>7b*dj{Q2`($PsrXMRP;OdVZx
zbk#9Z$0!}$bp8^KemeT==)p|%cu}B_j$S&ZOvv=6%#6-(b&o`HlItLwM##Q8_Kc8R
zpB<oMppGFrhUyrkV=#;NM|65bT&XWc$P10Lxez%_$B{+Z!*z^M2z8u}_q-z|*Ic-c
zJX*&Xokve_l^--pV|7em0ZvBabd0AYjLT5_2uqEW6ZKgAS&Swl<(dhZDQsmO)A{ul
za;lEuBVz-?x^t<53ng3)pQU5Aj!il?>zJcsu8u`I7VDTtA<?mb6`!1WdVD;UV>rw;
zcV@+P$=~Dkm!}42mgrc<lJJ$0aw$tVG<Jus&||;oMhX(QaO-$_q-0p7W3|H9D7f|x
zeVvZ=ckm55-d2fEjErl&MTx;S9ouzmrEJfQIO?EB_emW)be=DSSM_*}?<pPs@GYug
z*K9_gQPF1=B>g#sJg?vjI$pd(e@Vy73TG=YS^iOSC&jX3^rnv2bU348$}Sp&QSx;i
zyA?wG4TbDcaIb><6lCu+Xh?=0+5<Wc>iAE`Rn|qvJ37A8@x6{iI^Lx%(($>D_jJ6k
z<0Bm(>-a!N{ZaBmJzgE_H!5C1n>I>LpO|5k_$N9(C4WZ6Vz7HuyomFKjx(b&bR&PG
z<FLZNRPcy`M-@D#Ad?-}@s+|)+@X9;@g9@mqi@-cttFQOz8)oipz+snLB~ZMKhgM8
z{YT5QI)0(RkCMMqJyl{ZQT?Xl`Y2g;bS&pYepk^y6#P@iUkV}pltNA`ct*jJqvbgr
z=c&sR;;M0tVC=BWB^`gW33Oc1!6@~J)x4~O`S%@{`B#;hg4$!WtTQlvdW~7>Kni!I
z;<3aH9k+GlNZ}@}%9`kwf;3GO?3}51;g|}ND+P9xv=xcI89K>xr;sOwds4`kLf%wt
zMrIDp+?~Rd(ecU}-SVqOOLpS<Q}LqGeJR|VLV*;xGi0}_@{!T<e)WiBd+xO;ltSSY
zK271X6pyPy(G+^8&?kjrDHKnkd<rs!2U94KLa9{z=U~Yc5-HdzI4LAk(3msxuPeFv
zkehSPkCu80caM=p#z;fa`N&j=rC=~dx+!=mq*Hizcc#V|>8B8+5T?*}j2t;eE*>MJ
z6h0UuUr<4$@ItF>;#n#DGDc=n_;-xVR<Q8c_`ZPBDU?Yed#rqPtSp-XAwxOlrjQCL
zR7{~|3Xi2wDTT`1;giBcDO5?JYAXIesJeo@F{fGz{l~@!0?!yL^Bu};94jAAp=Jt=
zQ)rUHBPr}2E9)@-6l$fgY)v*pZG~`;Xx$VJkChElIKDcYNWB#5D+=*H$I6C^&PR<D
z!t}E@Wj9U5JARYnWV00Zug+#@u8<ZfV4P&MRSK<B=$JyM6dq6UNHMfap}i_bn-tde
z$mW*Oa^qy%6bKuRlbasNbVz}h(~TP!|H;^Goa~%JmlV3C&^?8&sd%q!$8OpD`m%BI
zxpDGR{_I2JWDiySZ^p@<DfCK#2w6(lH-&yFtWRMB*}`_G1g0=2g@GvyN?~RSvr-tG
z!jKe3r!Xdkp(*?~PL4>S$9NuG5aYusSL0==@v`1{Ia1O2XjBT*#!DjG#>=r3Z&e+B
zaU7+qetNuu6BL}N;G`5Lr?6+doTA`V1sR>Dkm(8@9WT$0m$@d$TDc@|6k?m6E)t*9
zJ2!<@Dcb++d4wq}Nb!&~EM=3WuqegD4KfT%6tY;g#Xak?i%*awl10lYfkiSa6@7(*
zr6<Ijf$L0=ohHcDY?KLd4O@YASCn;%LVRNin^Jg#1>=V%$jvFdq+Z{W!qybFDV**8
zR0`WuczyzZAI?0fh&vQ~djgMf!!s#7o5FKUK;c*PZ&k|66J&vj@<m0dI#F5^<JVtK
z;guB1F3!A~!o-Pk7e#%d+({LlC|^^x;G@@7g58R^by7Add~w-Cxi^J<Db&_8Z>I2e
z3hyX<zk+WmctF8}3cfN?9#R7QUJCD1dH+AD{&1qCcz=+>hberd=%1)Bew@O|iIRa&
znT9WZp28Qblz|rw98Td&YLkK529Bg~G=-}vTub2?b4cN5>U#=bG0k7m*Obf@I!wu&
zP>@ahZ3?`N;`<bSpm-O{d`J5^F}^;a$RznAZObJ2Q*6iLUB`sACdpq}k`&IQa5jbC
zQt^M#l(#<=@;fzak{mEe{+YsGDIVe!i{fde7ZVz!Cr*m@9P;9lHIwAI6#hx!N($#w
zxRAod6fULkcM6wjkaMJm-x9oJipOYki{t<9m3U>6%$_U$r8=a*KPmbi7mT{kh^aq`
z>nYrz88qM<xS7H&+H(W>4BSp3hk;xMU?8V~-M0lpi=62XCP^Z98OUwGo*e(d$B@Us
zPm^R`0|nM*7`<CXZ?W!^WPStp8eEddl;BeX_ZcW+ps0cS4HPuMA5RJy7`940pkRZq
zMdito(ZUAWPnHZ_KFky|P~5<h$&%?Sw$Fahz=+B6_wNL8J}qe=VZ?tZ@NTT60nOlX
z0U6zhwWh+~QObxLg~3pWX~4Qeu@&MNaPLsaEB@FO7)Tq)G7uVw3<x70pC6bU5pv8%
zm@$xTpo)R2l$<bK%0MNBlr~Vtz>dkXtO3cl3>=&+%PC5E1%H|>D;l^qSw1jD@<j&X
zm5um};xGL8@Zo9(svCINKurU|6j{SSr`FjI8F*xh{QIN$(#%ZrbcZRi7!Y~Hz{n|b
z(G*$7z@rA{8JKUNu7P?6`j83C)<6RT?Z`<34GlCh&}FJ@ZJ@D%CI(s<$TL+wJw-M(
z(9FPzDe|2uag<1N6+JgawlwgVfmQ~_9!Xc2DjQ6d+SK^2vBwQOVW15gVybLwU?J(<
zGB}ogW~wZ5G~K}f({wV>*+55yADAkSs~5YF)dqSfVpjv*44j%OZ%vhjrb%y_>}jBv
zf!^wA<!Q3%wD?<m+HIQbXQ01<DF&t*7+_$afiWzVfk6faQ*sOpH!#G&=xK7OfhVWQ
z`O_rvebeNzX>tS^WuVw}Ia)m$W#F%AGRJhuWGr^}bXjk@97k49mlF(3G%%j^nl2Yi
zm)obyH>dL~O5B_-pFNsBGF?vQyNWnX6_Ul9Wnj9(XBe1ipzsXo&5+e*#3i4t=yMco
zIYZ86?G$|hIY!Ahu*Se51B+W^mKaz{#K6@SnHe)A;W7iu4Xjd>6$);dAy=xz`8sBZ
zzc53-H$(mpUu$5Kfz1Zi8CY*%g8?SkXdwSg`5nKgG9+b-fvuE715c?8w<-7}wRoo7
zt{_XoPgk887vO0F&#45&pE2;P!dt3G&ntY0!e27*G8@IjG!w5Fc$Id;Kn@c-4ZLRH
zQv;tF*k#~#18*C6hi1fx|9$>!rrdAf4Fh{rbgzMZ3Yk4qZkj3IRQT&NC8G>)88~2I
zf2Hi-X3B%KMYH6Cv*aNInOX8(1MexM?kw4EmVBXU=6x!@fe)!Nbu(X$$o`lTGE07>
zqO)d6Qa&+2xM`OB+`tzUKLe+!ynJPN_E7`JRLU>;xmogvf#b8}saf(kUor3_Z5s8$
zz}E)8HSis4I!k_I;C!RZkw%%~vn9VMX3OsljBA$p!N5ba<rA~z;MsD<Z27Z+Ukv<i
z;12`8vYBSflLmexi)KqE{$#fNWwz|pF!SGR`6mU8>OV)enZy4DGWXAs{v5fmS>}v^
zvj#3xmMHLZ<T(QuR8h~XC@ItD$cqLpQ4HqDGb6GY{x(3kcaFSb;9trx+hwl&k8Nk*
zIzK%+`_H<W6LaLR4Kmlrv<8_x)3R^ym3o=e%%NW9pW)fJs5Nutff3m`P2@81h>2Pz
zVB#(lNfVlh+$QpvxZgxU6M0SCZK8mQ4s+!_CVC&vk>3Pcgdv|oO3jt`Dx}WbxTTov
zK9zXHTsd#9e85Ce6U9svGEvyXmbo!!if~u_+?WH$=E{6cGQ~}lFj3OPgC;J{mEShZ
z+&fQ_`3V!`RpZ7PYo4q!PwFO8CQ6woZNe~Nng~pUCM*-S3D1OYf{7gyu8FUjW}cWQ
z2hEd{nr6P{6-!MrGZemYo{UTg6ImuN2ErTj<l%WTZQ{>)@~-((pC7kQx%o2N1e>0@
zHJUHWm?&$aiixTw%9-dkUrG}dOq4e<dcLFp->#df$gj_ll}uDN!ICdibV|+(^X1#~
zWi=DkP1G=X=ps%iN~=bhON}!Ro2Y3*Um*FdO_j3G&zE@?#7J!ubxd?O(Zj@}ChD4a
z%tR{_^-R<^(Zobk6Aer>G|`A*LCh;^U)#Ew@(X151+uY;Neg1RZDyjmiI!B`1(Ge^
z!o<1-k^;cMrwpGgkgZKTZlaxu_9lK`Ag?aq`MS7wp=@KKEg8E|R$nMvE|fhN%JB<j
z2NRu5bTQG<L?;uA7slMn*ECj>XBNt?WR8h{7s>+*<%xxo$o-3CPZPaN3^p-@!eb&@
zB>S1@PpMlZ`>4cy$&-cg>+KiG0VW2Tn71g#hb@vvW@Hay!4}DFi+D#fhLOExGUH4P
z=POgPiH|ff!UP+abs;}Tu|-sx?#(i@DrJu`F;+#Hk`guE!~_!)6=jNolkPm7Y~s)&
z$z<OsINihy6Hl7hVPd9<Stgd4SZZRniRUV3&!rfDnVzHY3yUNvjLtJLU(pvRNXkMJ
zi|*iysZ)z3iOWnZH?f+GS}a$X@!#c#Qt^$YD^0AT3M`i87R!bTt}(He?PX#;Goe;4
zky94S4JM8*mYeu!vD`?@yjT+1tcYh8ODvIFO>CoNE|CqF$n7TjE|Jrh$Sq4`-8z}4
zOuTBwzv@42;u#Y^w90<g#Pif#RzyWV`ZfoNFH(7@$d}D{>dNR#to5dB4ohC4zBG?1
zggeO`UR7gamx<TS_%h1fR3(KxxitsxT-din9$g~$m^i;g=3Oe^G_hZ?VpJM$nK)qL
z7aza+IB4Q+6Ms1P)4@Az0;-jbiZ<Rg@gAGo!f*@koA`jrZo#tfp^1-7Ts3jc#K$H+
zp~Uia6Q7#+%*6Msg^ABid|~1^Er5x`CcY$dOdKQsH>Qu!RxFjDY)up2+#~&XUr}dZ
zdPEm7qDT6KiLXt3W8zzyLH<~jPYk{u^=>A5-HN`W?%yNYuTJN>5i$CsiJwgT%4|D}
z=J`bRv(eA24vpI*Vn$Zhg&Lynh3KS--%LCaW&JO~p0xPW<jpVQw23oB6wc@=6aTdm
zlXP*`#5ogxo48DlQ7UK#O<baIE|uR75DyL!L+gpBhKMf{BKvaGWU2he#1-leUpJAn
zgE)6OYH};`)~35Jm5(LGOo-8i#B~!lXu2)jW8tQWTeR>N?y?}th}&f8`6#D_92Oql
zSB4ZGmz2xG?h8@3I%4cnncKpXRm69fqdXP}iSMnRo!0_+#b`bY`7IQ;@SufzEgq4L
z!WN2HxX;4<79Oy8mLL`{mCrAg1^LBO(R)i}$7|90;_)xT3_mQDMHQV1idpz)X?&2v
zN3GNMEt4fIl(e8(&@KEDh=c|H2%NO=L<PaxnT5s2XQS&~(kTmu6`xt*FOy$Z&%SqH
zdijIGw%}N(W8qN?Cms{7g;EwuTktIS76J>Qg|vk%3lW)MVfz5_aOoV=8;N|D(0isA
zbxdazacxPFZK3uuxpA;a{vEYnCd*hTYvHpjQNuzx3*{|TvQXKAv@kd=Dp;s!fsKB;
zx+s1<+V)Shd9*mRFH^-rRSVTDRJZW<z%;WOQ&SYJCx$JPHQI<LU&wr5iigO53pFh~
zVxbm4%IddDcP=N^G>u!~v(lmx#OI!9AVpmZ^(=I^(8EG~3k}E<3vDbkw9v>xOAC)#
zXl$X0h2|DoupttnsfBsV<nU}kyqTiBa5H)+A@)=k<9emrUy53>c)Dn9;c;@TTYBMZ
znXh}MlUL(5>bp17)<QcA9W8XS(B9(72BL!%U%ttTywX8*X(=3CbhgmNLRSmjEG)|>
zymjg3-P2o^NhWBLoyC8*%a_gSX`z>eAr}63A82n2{Vepi(8oewi+*NND!-UoN$kE?
z46rcJ!XR?h!qQD?GU5Il;)`a&X(L{FCDWsKdN*^vOANK}LQcWlMpzhW;d2XLSQuqt
zw1v$UwpbWrVJvfCku07!i}4m_TbN^Ef`y3|rdpV0VZb9|l7-0@rdSwSL5vw9&I}S|
z`iT!ZickB9=@w>Km}y}aTe*U`R#QCJI=;R1`aoVqntoukm{U*8C3`I_w6Ms+;p@?S
z3k#G~KXooT_HRV<(m9uC*e|`9<*6)|u!NVRt(T+O1;yvh#n4DBx3J2>Y6~m)p~7ON
zf~)cf;%h8ixm&Eau))Gw3+q@ZX4ozL!`*@iTW6z%O%`?yOD`*%b$FQ^(<e>(RtwuK
z?6dGD#hCg_E|I+!c2FJ~il;3+W8o=<Gx|aUF(f0NweXyU=Pk4yB+mRBon9sj-7VgF
zMD%SaUb65qKVji@Hk^f5E$p=LngzF4ti`L}$+WpoY`GNC_)w5O%`0|Wc*DXT3wu?X
zQRk!F%cZqk7JEQcST5h0D5w|vsk3YsAwITnz`{Wb@6o(dJ1ic6k3$yTwa{$2{C8lQ
zf&cZ7zZFrh3mnMwA1aFE6(7+4Tlk2Qvs^YCEa(Jy_EfaN6W?cLeZr#Njy|Q5QVR-*
zUM<9c+Yu>;EqrMqw~ahDj#xNq;k1P_7LHjsZsA7@KUw&S!f)Xli|2lWMqq0#@in8x
zgi%S<x)FV++Vp!1KTvFz%Qeg8_gA9d^N8GKv!2_O{+VXV!fzISSIP316u(+HNqm2%
zYko17R|@74e^~g_!e16nk(tZo%{`f)DvN;|(!b@5ZE1^6;_H6mtc7zHu35Nl;k<<l
zw2G7g3l}Y1vhcUXGu2V^bo4{7bnd&v_+1&EQbp_c`Eoh4b^2cme=L{(S-488xGGJ~
z*H<Ut4ceZ*r-Haa<4;N0pUGw8mWA82`8IOeU@cgH>uj15u~90#LM|#VmiJ1-#$9%7
zKdY~cTcKZ5k=MrEHVhl4jeBh5vr)uGQ5*SfUQB?3HXg81z{Y(x?zi#tC~;=2$oZ(C
z5n~D8lH%!h>8O3Wkd4ANf)(<aeE-)ATpTKj*(h!!X+yK|pp6nXO4>-+7`-X&JT7Xi
zkSsPsV@Eu3I=U&c*rqxQ@Q_H^Am7Lk;;mOm%Z6<u+eRrHjt$pFXd|+Dy8(*U6+XXf
z<DE`vN;nU6dV7dy(j`4~g%mc@HnMDFY|LIE`{xmj#)(chqlE)R+br=~e$hA-rEQe4
z!B0pVWo?wR@%ai_o?kf|ZCt?{(#7j5BnJsg&qYhCiu@O&N;WE!Ar1;TsA8k4ji+op
zZKIlv>NbYi7;dA6jfZTswb9PT!!~N#Xl$d2jYn+MvQgJYJsY)c)Uo613m>&XA^)(F
z__?W|>{0dZuPEx<XkeqEjYcd<sjQmq({rM%-&RQW-4u`f=i=i8o7!k*<1rhpY&5rV
zV})#Cqos}KYl!i#pgu0BA`Vm&uckz68;{#~!bTe#rMrt8eZ;UqVn?>v;fTJKMB$b4
zg+R2o(ZNPf8@+6Fw9$#h?vw6jqqB{ZS)z-LuFT<dL_MY1FK~}wFVnG4y1R`YtVIVw
zrj=ePN$+i=kBtE~2HKdpF5TBgKO6n+cxd$1*qDtQv*K~r`v0OqHU`@mVq>V{L;iuH
z<(nCfln76h7hN}{`JoXuM%q|rW4Vn{6dUGgW0s9EHpbeRY-5UzaW=-=m|$a~jYn5X
zc6>b2>cuhQ&}*4VGz(Xw97V;htXL+e+L&fzx{VoZrjBB<BmQYESdvD?MDC{I+K_aI
zm2$St+cB`f#zGr&ZOpSV-v;H1R&hpGLEFwDBBgXj4zb9_VjD|rEVc2>nP~V*Id`RO
z@=m7Fe^Jfr(Vo$9;uSVlQY#CH?KW1~SZ!mYjZHSz*jQ_0osIRBik`7$=6Kcal-7jU
zKs$C{T-rHX<LG7^TWoB#v5jhbDjIw`?j6`ETzpWlJJyPcBA$5C#`cwxU)iC)_2zxz
z848t+uc+oWo})<EIB4T-8!y;+(Z(Jddu_aA<7FGWY`jkX+j!N+P8+XL`>sS?iV23h
zi-{JxVDxBT@!0V6Zayk57~Zhay;XYmN*;$Ll9!_4kBNOY-m>EpW8So}pS*o6z80M2
z{B^K6py=#9%e<O-$HpO>C#~UAj{j}EXX8T~Z*&vy+qk(p&hP^}zBioe$=AQQSA1mS
zV`_a7!AI4SqR8#&GYZo6=&+41si!u+AanYP>>E*u!Rg{<#St4vZ5*?4ob6IV{BbpI
zwZF5n>=J_d)wPJYZ<6@h#y2+pv2n%5w>G}B@h9`7wY2erjbAD4Hh#466Ahh>Unp{g
z#ILs^4vJ`tPUaRzM~I3AV!QO4jo)qjLGid>JToBOE)wiv2WDk8D<uZ?6sK&QwsFD6
zMGB9Nvo_AzIB$bo9ndXJ9uB`x1m`23PdMRR)NgQH$V)bFSHWdU^?&h+H{T73M*?s3
zNM9c<{<ZNRTi-!$2Ul%evvJ!-4hPq%^<*6zop4X4+@|z%BCEx}(SpknqxJiyTMrO9
z9prKV2dQ^5hgZr!S4xfwCYH^j>AU=x$m1ZdgZvKeb#S+XdmQ}SR^)SHdw6T5oRblK
z{)<TAu)KhS`yAZwpr8}C?+0xKtyc0vbWf-B<fPz-j#U(e9Tage#=%$zMI97#(8xh!
z2gMyc=%BQNG7d^ODCxj+;5$e-NIEbam<}`tx`UO2(<ui}bQTxh%J5Ji+C8#@BN@wq
z?Z9#1^4$ZO`u#++l;D)X_%GUJiM5Z5qN`-!Aas!BAmbo%Aei~pDD9xt#h9Oz2Nsg!
z<jI56*$zfti<nO-2RR#v3Rk1rMMQd)EbE}0gBlJVa!}rZbWoW_-a!Q>dq7llP{{$u
zDwL~}XQOegL^<}<EksoZ)f`lJz_}aE2sPy(?Mct{(XztsFCKPK)4`(->N<GDK`r8L
zj!)EiN3~YP*1k3w+fdYTV(q4Nt>>V=g9Z*7I{5cotV9#?iQFwkdzIL}Cms|vAvYR}
z4h}jxXzHMugXRueICz|_bI{VkW2`kBk@OPc?b8uQDPIi}-$jCoOsQj@Z5*_9z_DmM
z2lcwd_Ghml3a(AJcaY92IBO>C<e;;I{tgB>=;ENOgPsn0Iq2q~yMrDMu5=VsTaJ;~
z9PDeV?aCx8i{1|UIOyx3ADgv;c(Q)1p4Zo>&r4DER7BfI`#I3TAP2)JNDc-&7~){4
zsy+ptQ;&%`1!@T%NXU`N2)2}iQ4U74=_kc{$G(p<P3FT1SItsc6wz@G#yfb$!K)4?
zIGD(KIauvrl7q<(<~f+}@YW%o@{O4eX0bu<5!1-qv(XIo(di1ZKOMeGzPdI&+rb<M
za}{ynD%n+t+0DeU4e16A#Ao@%0tX8nEOoGqa(gRU<Y2LbB@TA1lKWT5jc236B8zN1
zwo1<EDV94}L6LTFvz7>I3qJa^gZO@5=4D%~aj@3GQx2YXu+G7H2U{F$b+Ey~MhBZ5
zY<6&NmE<r!&uYmj$>&`J1(*yODaAGi+Z{Z~k5YLn3Aap^zFL;89FNs2td@;d%O!<G
zp+@2v2hTfr!NIc*o}=Ck5>xIH93y=-P8{f%e$l~84qkRZT+d`N^ja<NDj2u>P6w|!
z_}IZG4t6<s-N8WzZ#&rS;0*_FI@s^<ZYJzy-QUjabMSsE!4Wk>t|H<yOU#$zEt;l0
z;sC#%$vV6}J%&{nEjY}3$H5^7ACMs;>s<%$QDWPt-*@;kT`YkQR1vvLiAAd=NA({%
z_=sZ0nQ|^s_fheC2l1(c&m4T?;9CcuJNUxEQ3uBy9H!n;Q0t2$6ukeUZV!rHC578o
zkagQu%i|8da&W@I*DUaA=~l_)>X_ycm$bT^2T>+zI=*x8J?)-@UmW~EO@CDU=-?;X
z0b6VzA*%KlbI(S#vc=KW@>d5Z9sK6tcLy9qB_B(l2xAp!kV_mo6}{CVJ^xblmxEId
z+IeX2;k1J@Y+M%`T%2WtQvF@jc5&Xp1<H>L)5S#xmuP!kULk?M9b9&B+d&Q&|4_di
zTq7qbs}BC7<!8H(6JOSfwcubOaelSr1Y}M(af4Pjuej;p7CmfdB5K*>RO~Mz2h!z5
zP8Ydc<Z&^hLmDnh6cu;5$nC=DpC-=Q{kkQ+<66Y0d0q7Fkj}G4mbnn+bCKUgQ5VHr
z-0Px%i-Im5aCte1$V?FTxwzj&zEx><$~AHbZH+ACqOgl1Zmd>MR}<rzY)m|O;50dx
zCW^aw&_&XP=3-m{QNl$@7YT(^W;p&K{QGjmDGBYc?t(pR%8jSYYYGclN6=kkxv*W7
zc2UNK<HB{}y9iu(EZcz$y+h~9i$dk&iDc*^a*=UCfxMnm2p4G=SuWToGD_1&HKD&{
zhas|ElyXsijcm9^E*~#A!!7ILdJa+9MHLt2_{fEHQGw-gQOU)KT;k-gbn*MeI}Jp|
z8X~)$pu?o!8d=pvH5U)Ns7Y39qPmM3E*^66-{y3ezG=EXK3<!??TKk?<j4`?5f_XS
zA^qVk={hdE1B`Mp+C^O#^;~px(aA-97Y$srcJa82hAtYpXyKxzi^eXRxM=30xr@zR
zMN^7R1;IJveWeAX>(@vgcuT8`!D7@U{?soXbJ5C;dzP9N#g*=YkDhSRhRv5lw0F_g
z#gL0pJJ#`~jGserOiT5lG4G%fFwK~Kna(b{xajX<09)ThHy6EJ^k!u%ita9YxajGk
zd(ZUAK4SM8`N`FY4yZnpL?6nMi+(OXTO*rZjXFy)w6CbzRQ$C@vLOb#7{pJz80um$
zYi-1XY7T)ozu;hRn2X`$wu_N2SmxVnB%gBP!0AA8tz;qDU5;^MhsjJAvs{d&Ah{Ut
zVuFjQE~c@q=j52^VzSFyDlkb^pE-~Ti7sMY2O-zS-R^XLqDOiLnYmVWD=OG2a2AuV
zOxA1{b6hNQvE0R67xP>!bg{_Ad}iy$Ua7azS?7m|o@?dgwQ}8Bx!A=L%68xMQWtzg
zJGOhRESJe5^Er%P;bNtW)h^ahTx*L}sxbUk(T;-tpS5?&w$8=R2Q#0ql|}B2M-&@f
zY;tkS#cj4SYwF^ti(?dN7u#IC>0-Z&?Jk~l@v@6oT<mc1l#AzFJn!OZ7tgrJxlTUo
z;?fHl8s|UON|uTgd!2m2#fvWb<P<NtpqH}RL-7paum7S)FGU=Ozv^PAi`QN3cH?pQ
zYi#Ay(JmKDD`e+y91nx{78Gx|*yCcai+xn9JmR6f8G4M#PwK_OVuBXQp-+IXyLjKl
z2QCh}c-zH$Zfx`K$z;9b;*g7XDYuy{`i^L$s*R6d=j@MOsXwBu4_#ivhtFMnK}~V-
ziHlDuMJ_m%xc_W)zEk?HE~3Cc@rbU*I$7}X^kElYQdyddBW^qe?pP+yjrNDKL^(X}
z;wu-YU7T@o!o}Avexqf(7=7d7TNgjN_=#F@Hu}!R_bz^L<9?+1FwttAJW)vWUl&hs
zes=K-zwY8BW%YDKcFkEQKh20u>*U^bl3ub4ozuU&_`}7YF8*?His53!Nx_ung6`rC
z*Q43p;=vC`)MwcuH1aOau?t}B&PJ<piVN%lTohWD&gv=js^a)Md6~xF#Z?#ADE}^g
z&oBO^F`;d_5pmG_eI|<?6P@{-(q3nkDMITdeHyIw1AF81jc+pZb+Lr!@Q~9(#zVG;
zTpr-zK@TN7+~py+hx<I-?;($;+QmaY4|zS@?ePy*v3{Vq+#vQF<o9r|7kfSncqqAE
zc5NW?juZ5Nk-|ZBK@SgjDD0t#hjIHe<Qpqn$itevf-?fPNKp^PJQVl90dwi~lAfXg
zIfPMCJXK7T^pNmidvH7?J!l>b57t<rdl=kVum?$bSYU`2K^&^4gvqBK{;VbHua|FE
z6;JgOt_ROU=<%*A_<XCP2$<Dff};p}Gbn^S@mqLEd+`J_%Zmpj?AKoFo93XGX*#c$
zr971OP|HJY4`n=*^-$g8^^Pd#p}dDm9=0?S(gO#^3>7_8Q26);ag+v}9Iou4iiff5
zV{TVf>B+Zh3R$&YKBQ{2IU{O%`0_&ZFgbrJdVam68{`oW@2r=7HmB=&c+^7^4^2JP
z^-xc}(#S)74-Gst<fBdL!BN(C>*YV|<-c69in89WAsTxii>Ly-nu}&0ntN#Fp|yt=
z9_W^7>ESWHdnMv3!0ECg{|3pfja}s99-i>f#zR}C952{aQKC4<Kh#2SMakU23)HeY
zc<9Jh^HJPKCl8%Hyzk)y4_!QT^{~>zDi7T}boVgP!z2$qJoNN1#KTYzy*%{xFu=n=
z4}CoJ_0Z2le{ym|%%9Q?M6=xD>5H+`n8ULs8{{Al1*5FN3U(MF$`=$*4v#&G!#oW4
zFoulvFv7z~52HMc_F`Wd2U;AXQazWfPSXhAwnXhlVw{KZ9wtzVh6@sDcnL?<iUqZf
zCMJ8B;$c3;$-`6+(>%=bFx$g)4>P=YfoUd7zCm))jXoT91V<e)@d+`<!(1=+%gys}
zpnQBjEnNp3jZEDjNnGe*k%#3TE;r1v*uxSJOFb;320bV)CB*6tyxT||E|oQKr0CO0
z9KIH<@c4tjC_X`C7Zt0iAk5jra~{@uSm)tkI&eI!_ppJI<6$eM@zu;m51Tw}_HeF=
zU@LF7#K}DwdbD<Jke_Xk+dOPn;zak$Lw&{KE78v4Vuy#PRBlgG<yjpM>`?Sg>0dX<
z3w_ehdw9Xa9?GzX7d^b>;WZDtJiJWCveEmbcY1i0ZJm{MV}qPuD|S<`hoTRVk6!n%
zn|h>@anedd%|Id{opt*>yy@X>inNFQB$8tu4pIjGi#S_x|B0P2ocl0mE)Z~NcZkMh
zqkPxHdlZkMv8tBZD1&Y34((&l&xam9Vy!)#_wccYPdt3>;TsR1diacb<lzYG<$<#F
zg@<+<Wu1+Z_+f?9q0O<-kd5-F(xc-Zj!_5)#BST!Y4MeZ6SO%c#GH-tf9^7h$G0AS
z^zf6%%UEOk^Sy^3$oY+OFSAXFie1t_d-#PGjK;^quO3c%_|3!b9?WwQ{crTgPHq@W
z8W#s?;j`}+e|b3N;f#l~9*z$ZWv@l2J#6eH+SV3?97FajA*OeT$M6?CT%^hMagUEn
z9{#3{@^C|0xyv4|c=*@DKT46uREt-K|D)=)5?4K3BNGfkH~Tkj(qC+p!_rwVW@X*<
zaEo@{2YlS7Sr%D2eB|`8=5FC9#G7wtPKqo}OM7+~clpTeBae@~J|6xj`k;So2TpC2
zhi*o>Hc3*J^cVSj<oChJdto2<`Y7O|-2_p{$9+ET_wj&_#3q@yy(sW+M5jtYKlWG>
zVR&V4hAEewii-I0u&}7gg!yo>^+BKad||YYF+NH%2Oo`mH1?77q4}ujqmmEZN6Lrr
zk@jKuFnxGFd>@t%+vnZ5aD8x%j83`In<USU-d8tXxjVBnQy>(9kI;{M$%y4FEodva
zGBu*SsJ}^4wX=L=e3bD~)<?FFV;$3_e3bUVg#a$BGkUy+xNspl!2R$(%KMN$DscD0
z#&nlWvT#b!eC_-%`sh}KR%!Mlm3>t4QOC!lJ}<vRHFDBNO&`^L6sj$1_;|?2o^@#s
z`92wz{;|LK`esxtThPEh;-i+2+CJzu;b`1R$MRp_7f<_Qe0NdTM?D|)S>+spQ_BVl
zY3O6rCdqjgi40xWr<?d_O7{A^5t#SEp*dT}M|&SFe6;k@Mls<rAFX^mq40T+r)hy(
z`*_?3`!7Zrxc|Y<DcHx6V{KKkEH6g~A02)08i+1FdYy|34oi3P(V4<fQr!GI;z+Ok
z&P-Py-B{Vv5vxP*dX;~po|LGK>Ha<j@GT#`ef06s*GE5}r<@5c<ZT@*j@1`jdgCfQ
z7v%@~m>Y`0K8E-h<by6LdZ@1D7DIgu^D*292NFX@i+Ksb=@^HmBgnBxj8u@wD205$
zw|tBvCw)B6dij{(W08-=J|_B@<b!VT`93E5nBrrmk6AvZ`k3Zpx{nz?IC5*;D*a>0
zxF4t4;X+s&OU&IQXZx7L;`x}zJX;7Zmu%l83-*bZOX6K0XCtOuKtXynv(S${-t>j?
z^(8)*`q=1Wlh2Eov7CCxy8Bq+W2KK({G1Q2H{EI$_u3EMh`2Z4{Y`Q~eev@qxsE#3
zMyzM8*_xBY)pqIWPo!72iXHo$Ol|hD#m5dGPx;vDW1Eld)F~hT-V?hx*fAY?P%!+r
zNe<qceqghF+Q&0K=qi8K$I&YBBYMbL$A%Bb4gG?T7kzx-<3k@W`FNR9>SHg}?Ul?c
zETNBGK3?^)(?_&fnz^#;Y?iFu>plo~`*=ekT)bnn!)8f_Tn@!Pvf9VnKHl-M-^W`%
z4p4C@Y_}t>2mSA8ca9q$$*4uN2I7#9cYVC)<Na9F<2$@qNUAfPY{NH84)WRKeB|R}
zAIE)s<>M0{pZfU1$6+6z`S_e)X(GlxEWT<aito(KyBN{0^(9RZ>r1`%!H#mtW=V%X
zmuWZ-@6SX1^9qyqzxept$M-ZKKEClmkHNP-zN7qXmh7QU+%FDpmK>1Kaq%Nnz{k%N
z#Z_{L@{@C{PTyw!E@_T4Px|<cRgSPf!tXx*pt%SkL;UIEFN$A)B>_(PI8Ay08Q_eM
zv(&Eu2yo8Fd8%p?ahoz(SX}UNg-z+>BD(+|fBU%1Rwyj~VH@>~SNbR|e`#WWBz6`M
z|M|G;<0e~wSB`5wuCoOzi5o1yz2ddf;+xI#fh}n#6n}4)w|v~aMbfLYBN90RaE3x7
zlQRGz@w)=#4xk4}1;`U1Z-9aU9td!EfO`Vm8=yddd;zxB6Z!ed7D*=8tShQ)k+<&?
z_XXhUWT(r~{Q;_6j5sCib2Z`$Y@q;!1Ktjd5&?<?C>o$xfZ{<sYonoPzD1UJRB)a`
zoKAB3tV#w*1V{$Zg4k!p9(?B$qW2bA_;l3mRKy(`Olbr#1Bd|W09F7yfEU1Lkpgf<
z&kaDMLBVDZOV`{N#YGSx48TR(C_rhhZ(fTgZISf#t=bYl%?gkqJwTZN*#TbIA{j~r
zI6P7i`Jr6aPv@et0p8mp`*#!N0?^yQdDhowA}&@|2v9LVuK>LRR0>czK%)SS$$<b>
z1Jn*sCqT6T)dM^npk{y?0UiqCc?TUtYjejXS-U60Irt+1I#m(1f_U^!PbsHG6gE;G
z4Nx}#=X4DetQVkufHe(r%+Dpb(0?$O-~g4dVG!@>df{NENr0vS+68DIpjm+C0a^!m
zJV1*8Edx9jpcSRg5gS^kd7~3$o1*(f>8zcPiV^pUC&;&@vQ2=te8m$VR~8jJr59d{
ze%K<pA*Vxtjsdy_=+2@B=p3L+fUXpe;pwpt#%6?$;+tC}*Y0^q5Qhr%gY^hN&u7m7
z^ht7nM<dV80DS`V4KO~ygaG{l^bfH7W;8m$fB*vn3=J?Wz@Px+?ce}If_P^1#Px{w
zkTY4%E-4Jd1B?iGeLO}{2FeO9*U~M_FY=XLnRuqzr?(grfcrPb1{fEBdmA`Netu1w
zl!*Z*1(+3Jc7Vx2Jb<4XU|IlnB~yZU9?_z!m>yt8fSCd4*zfjt#1RXxe>!$4x^gBK
zDqaFOC&0Xbx7EjbIyV4SX+>|bAi%<aiZ2!^`is5Ay_?gFGBDev0hR^$I^fOqSRP<S
zfVU~$0agZB72qkhdw|t!*#O&BG1dlH7hqF>%>mX2*bs0*R%{Gn&*7i<38QnGGd@n}
zsC`?gkJQ$y(Y65G(b2R<ybQ$YQmJyWN9#$I+YU<Rz<BD-^{i(CJR9Kk0J{S`7vOp3
z%rq4H051l3DZs@-g2OY8U^zA5e3oNfZg_Y#z|H`#1=vM(-pbPqME5bG)K<CaLOk>0
z_~hr?(HjBw1bCB7pyY3rdjoJFu`j^4EyM#k1syURV7x`12eB{oAf<F`yj85<nshwh
z)WpQCvTqoB`ws<pm+BVa{QzH34Jq3JJ`C__z`KCOM@l5Blop>b|F+^|GOADP)#sWE
zx6geR;By*~La}nKWd66JFIlAF;#h#=0gePXs)RgV?<gnegJpx#ZhsZv1f_IinhRbG
zbew)0;5!<<5cxuUAK(XaKETxgKL+?Iz*(B>06z!ZriecR{7GvT;ADW`0{l)pb2b`#
zCAzjY{o>ZRui<*!tgN^%`-{duz-cNVE$S9YZ#=(F%NFkj>=>K4c-?_EIl!d=e^aim
zMHdyM{BzxqgRaW~{t0j;z`tbCR^A38xRT4>imN0Xm~mLhxydz(L4cega)r1-R^Nzj
z1-KpHCTr0;t}mSuIYMw%t1>4AH{wON-?vJH;H8|oL*xnL-Gg_9vEI=ck~hTNVZ2fB
z%i0`8ivbUaZl|IfTV?(b_lB@TI3WszxGzM>5DC5;qF{)kA&P}~AVi^%cX^{oh+l6+
zpAHrUx5-l5<dZAoVsNp(P<6qUDjwp&5G6uzOA>w5H=``}2+M|~>ur<C5L$>-2qQ$N
zZBh?oZ{FQq#kO4WV&x%Um?5kXTuvRkO|rDKlgqYAH-s0WOc-Af<A(@BWQE9t2t!06
zM2IwNcOhbzO~~O&ZhC{(rRh9jG&@A85T!#5yAW|h@6+2PX8~NxW|U)lZb&Q3GUO8F
zLQv7(+9oT6s2Jk!5SK$#3Q;-4st~I~R0&ZvME?*2$h{ENLp&CuRfrlP9tu$}MEwvC
zhp4F<q7EDDM)XLCS|MtOpa<#rHpy`~TZ+x}%QpFFh`M3CgXPw?m{O{iXb_@dh~^<$
zglH6^afl`?l4`YE-P6UkOK$1R?wEdWf@l`TOEV1bwH7T^0y@l}t}1pn6BV}0)*&7b
z(S>P3JQ1Qzhz=n-hG<K^)fVkpwXCdm3TKp#St?X<n&J?1xy3Pz6+8zoQcR11WwI)T
zqFadWA$o=A&C-VG!P-p_Jwvbx6mKs7akAMbMBgyp^V5$FQCHBd%FT_9x69S{#FNB<
zAqIt*9b!(1!6Al(m>6PGh@ote5Tiqk2{Amx2y!XJs4(96ckrKR54}3YVl&%yyQHi6
zU`sJJ#JCXSLrkCu4Huu?6{{iJnzH?yB{=CDyIoEWF(t(G5Hr{ir=zJM%8wG$!g!Zg
z)53z;(uY9G%n;mYH!I|pY*DqEV5iCG+z|8Fh}@?UVt$APWL-im4zZBc=emChv548;
zj$YM7mzsjxn3se+a!1s>9WlBr#B$XTD?+RcL1Cucaw8e{-x6OFVr__bLL3UQF2wo}
zFNSz2#D)+XLp&YgnGl;oUXzXOA)XAeB?JxrR^~%4B}BWoGN~6c*Vm-0RT3O6^Mdgm
z>RV5R;0%SnbWR^m77$lNJi2%`#B(8@4?&+N+44e&7272@v(bHBc5wRT5U+&T8)6>|
zA7W>S*F)?M@md%=ei?SLjjl%{N@Y<1h`bSEkNOt-O-`Vm$Rp_3VX`;bj`aM8I1plg
zh_f5hjsA`Z84iYcJ4D`5f(Zy&Lc(_`HX*(V@ok9rLwpe8(-5E0$V?I+Qc%~YKMwH`
zHH*tVlVZOyDW9mP6aJ1q5Aj8aV<C>SkRiSdafJ4P`gJMZHN?=nu?SVC%$Wtd@~=Xi
zpy_)y$Jb<gNkL~L$IKL@=eJ8v5Wb`F5Al15KSKNv;zxc3;#Xx4e+uz41)Gl!WZn_t
z{q6FH?egC%(LdYeNt&_{7uyJKR_7>}{?$Jz@T_=<b0JQ}hC-YUafWrN91olrrRRqT
zH-?=Lae<N+;%ZxQk#bc<{HXR!9_b(dfKaq+n#;}qg!q3vodwhv#n;Cl{aPqC*xl@G
z*Kc>h#so1CK@ku|P*hax4(#s27U@n2yX$Xvw_;!?>ie1TocEkPb7psEXKv4(nLD$;
zqU@gb_VimP{f-g#w7I80I_Xc$wWoHT{z6l>Hve?ezffQ!v$&J~c2CITj7{xh+B_}k
zNuHMQY)5ldWEjye<!Nb8%XnJW6T^9WTe=m}LpL{PEobvgV=nJ$1y5^wTFX;=Pb+#_
z)zfO8R`Rs6C;Hq~Jll69CzusSm-yk#GF`u-S>00yPaQq2;fc-;KaFUOO-Gk!-{z0l
z%b>s8j4s#qw2r6sJ#FA=T}~wR#KZy-hRZqPTsG4#VQlDWBTpN<S1eIs<sRP5T>W6U
ziEESsn|eb2$!y_iOHbQ*+TPPvo;rD|Jk_2&PsUU1De>fc3Ot3LBAWZrBUs|NHN$qk
zAw>VMHSGX-)*oK#Df5(jDm)!9z_dHcK4+@1-^zyarTdU?Tb>B&BZGuAp1OG2+EZsw
z2cBg<S<*}x;&0<wO&{3BYzxs&v>wYD$J>r<2Y8nTT|MS8w4*0v7-1&e+0!nbcK6iH
z6O*O8f_2O6=GoykhLkYKT~{;RJ?-JCho?O~f_qJ`fj&Vg;Lf%0=yGgfjy&4z<EbaG
zdAh{YzMgt{I?B^9CaXO4_H?kPLp=5I*sh}fo(8~2nFBoa1#(Z9-tG@R*zX6;Ydgn<
zI+HnKba@c9-Qy4RM7(j^W_F_lvriX~E(dvfY`8zf(_tKB>uIoOz1HtybM5AaZ6Jqx
z8tUl?Pe+3CFCOs#qehnxk1pxci3eu#<mGM5(VmX+begBrJss<5xTh05o#^Q}PshXJ
z?>*LSzd6k;v#nut$%OMsz~Jc=Pp5i%XSAJmSgM!7|F`4uzw98C#ppAjs;Bcjo$u)^
zPiF(z>~Mq=m~#+`*qrNB0HR?qK?n68zSz3}sTkm2=;<OfWwF=uE}uz*uDh9^N0;nY
zxYW~Sp6>Q^kEhE$UEyh@r(5BUr>i_&@973lS9`j~)3u&99aA2&hiN~iJaq-TxPP5{
z(u^tD+Hj+%n>^j@=@!rKA_0aO9c(nzUSmok2DxQ|^fphod%6=zUXT*)!)pE=keAOp
znJ@eMcX?W_ug#n_rX1zzUQg3K&G0lDq&!XZG|AIgPvbm|_cXz?Lw@9zZkM>A8^@G%
zh(y}V98*sAG{w_YSmx=W$VP2J&o2AhrGI8fI&EQl6PEU7dYa?uK2Nhe&Gy7%=t|3&
zSwqd-BmKFa=6Ra$X#u7wwtG7Esm-%vO4eJ^Q*ilcO!**{qfNdFUk`hF1a{ky1U-u6
zcv{71Rino}J>lsGPd|Ek5_93{Lr))hdfL-7o?iF#hNoveJ?H5qPcM6V-qZg)z2NCZ
zPp|H2*4@Dnz`w`7mXCjoDT&k~I{Fn}d3uc&zxLisZ4BZ3IOsUGB=nJG$2UE_<>_5d
z?|FI~gLb$74m>^Bde<+u88T}Q^I5-p-_r-^OBfIy$$*973~xX7^ogghJ$(b&hnP=2
zec|a#PoFUbgr+|f_O8sp)oeUDJGs6BY!fWRcn&u^^zq5>xUwO_<XcbQAvR~&{PdH}
zBG?48nE4#;6Gh2G25vuj`Uf@l^s}d5JR9u#tEb;F`|#pu^BWesy&WU}iShTe7z^o%
zTUKn*HG1K{|Mb4!+Pr^)Iq(G2W<(_2(niY|Eotn`1Je#N`f?ZR8!Tl+N?>g;wp`X|
zIivPQD;l*kTHa^{Bb<u;huCOFhSj@_Eq_1U;4Q3Vw6YPC0F0g(Qelo*W+j+>HN%R7
zb}-t}sDn{QqfSPi(Hcf;8f|K{nbBHCYa6Z4=SJ%o+kLESw4Sl%<>0X;n!d&HKKAFe
zer7|Xjf^%n+Qf*EHhNg%@SzVrJfkO4mbW$s!f(7SjorMnh0!Tv%M}msuO3@&Wi+8>
zxScSzG)6u(7*$4rQD~GJWk!)vY?L6Ae|gMLR)fv>2SXxwi9I9iJU1$+*1d(KPmC=e
zip_{4eT0hgwNYaPA-6H=?64TLmg!>j-q@0rAajUSfo+YpGuqyWxyPTzmaP8o(ZyP9
ze0x~X)o3T9{ze0gb~f6@XkVjVM!OpAX4J!IPov$9x*2sh+Jgdp4NmD{OPhaFv&q3e
zi)BQwG0fk~Xm6u^jCvZob&I(j+)msiW_9q`uRF`U^|iO3QE#IIjQSeAKiqbseT?>p
zL<_x>4)mGnB5L<QFdb<6Au0n6KgA}GpT?_$j0PGFH9ErRV538f4mBEVbYl<0D&!y|
ztUbnUxpCzXM~B0V4mWyeKTCm)$CdTCk~ovS$CdP?M;eh1gCK^#iP?}3`d<PXkEYSR
z3~^t>jgB*V+vpvm<Bd)*y36QpqZ5rzGP=s>YUBhi8=Y@-fzhc(rx~4XbdJ&KMrRnE
zX>^tm{`}$NO8nB7HZ+6sfDKs(bv0*<E6+9j%GG)P4pfGCZ*d4KgPoS;%Y{Z48C`00
znf-^bE-{*VlsRug8<A;;wKGH=5SVef(G^BlBC$Vt%$!_1t|VgZk>yQ&wjsXp8pEb1
zjWoK|=sKh8omk#%bOYovy2)tJLT{htOxtb#Pk(z|cQm8NaZ<fOfNz0f<H~m@hqoEA
zEA0-W&j*{87J0WDv9QG+G#=jR9+J7oXq3?dMh_a@Yc$$uhS5x;F-BvJCK*jO8fP@#
z*twC3aM|e1apj@YLpus4#>S0>5uqs{Xf(}ex-0qWG5*bjxIY@QITSyw|MwodS!Wr|
zHkxNN-)N4}eMWQPNFN_Jj1g;lwt=i-x0wAru3Ug6>0#QBFPRd&-{rYw0Q(T^04byY
z89jpWH+stGX(R#TkMI~hY4q3rX2+e(tifip@pfUIU62HI*W=4AriITKJ!>$eBH++2
zg=}RA2R&sYbIu>$3q~&*y=wHD(Mv`z8@*!m;V6ImUpyR0qHPJXeS2&3QK#T_qc<Re
z(Oaa0{HHnvgpHBm6)6{%<Xw~(Bk5~dU+)`zVDzKWPgH31k<r&i-xz(2`fO}IgAqob
zfFtd0XjO8b@g?&11xD5AE2D+R21T<OVHAiQ;^VxrsKEmLYNPybjlMJb!RW$iA$qz9
zL%Oc{9?japFsLNY++*I$XW`~&qhAbRIr@j%jD9ov17UE+<ad|iyd6H?##C@ID*Vf6
zvC;5;K3goi9Ar0IvR3#n#^2YHzR0(^l*010ly65^OZ%e7XLren@#X7T@Zu@f0a(sg
zJ74ShTHn|5zE<$n!B<D$u0*u=wX&~Oe67gmzHX`QgeQ@l^lPj7c7k*@U#t5fdXwj*
zgaiFoU=3f$_S(MI@wKL}wR~Yq`%Vrqq-<^A)w;gjalmBDrB&36_#a;z`tp1kUmN+_
zn2=RpTlm_9U2DE3&JH*8#hzm3C_v}4Hgo6rl5|U7TlvB$bs`;K4&2hZVK0m?*W1=^
z!u5RxzG7dAuP?`!p|363WX&!6o>0cc9?+(~kY|XQ`69f0?4EW;^yti#P>jh#m$rOW
zzG`2Muin1;`0DJdi?8m!_VBf}uWfwo;A=-$n2E|mPB+{7BHhlV+xxaR=e8?^^0m8f
zC!%+Dg?Di&4IMJ6ZO9pBS6`&Nxs=(hZtg84qCgMe^wrB}6<T}w+S}KROWKebUhU(n
zr*AvcpLew-$?WUv@NEqlZbuwon5kf-w!g0fd<~{@UwwTY=qf+NS3j2_MtA_S;hfTg
zeA`Vh-Z|L48t5xM($);`ct|%f$k#oqm_vbNbwh@og@^k(3W5yrhx$6geKp$sMfynJ
zZgk>XC;-+U4Kc%f9qsEF-$trX8?UfJ!`&yx`8wX$3BFGB#jFvpPI9y&bHFinKL~-o
zr}#S6*J&`({nPV2U#I&z!`+_g>s((We6>v|&qA0dlxO=o$7SYT6LDKkut(eVbSath
z!Pk9wp-X@Irx@5Xyu{a~=t5_$-&vRWy4=^yRI^fD;p<9Y`v&S2=qg`V`|1{0ysq(e
zt*><htrzGzU)TG32g&z!gRdKXJ;0F&zHah$v#;?`6%Fz=66}24?dw*E<LeI6*=>aS
z-;Nd9*v32~jrdo0LedH4^d5%v9$%w;jqx=WkXAMex|(|t=22~<-7Qa8@fqLKT>O`Z
zZ#)hX-CW|dOhjdn6HxFq*|#0;RA1A4O+mqzwf-|*Gy86)qxIXF5fe)CeKPaMR%Vv3
zxxVJ1Q>g#CW)7{C=02BFE&2IK<H7y{my*E~yWizmH|O>toPS@>`}!Z6Ys@3Qp2V2=
zdeqlrzMal`+}9J3WkQL~zi|cYNs@os*E8roG5m*_XPxnRW(h-7Fa&wdiNT2`c){0;
zzFze?wn{T5lrQ;u+1D#hTp4CE|HkIWZh7$a>gIJQ*2}!*>ur~L!=-P!6vS8UZ9OYi
zj@HS|dyw7NVqbsz`oPzRzP|DGE!N4`$G*P6boe6L=M!HG{`5WtfC+Yi^)p|eW3Nsi
z`qwV=F?&zz2sr?J<%@vxg}%Oa8S)IczVo%n*Dt<)_4U24ACUi!<|haFkJyJ*?DWeQ
z6Kq#VZ9n_gL1pXuZ@zx_MF<dk6R7+T=y0<6%h#XIq;x*bKIG!zKfeC;)jrUQf!YEs
zfp7*|I?(#xc$n)Y13SnCaRvH!LV5Mk{xX4>F<v&%a)CNdEH~TEv<tL+pcMjP8}Uy7
z!=Gp|<(9(=RtmH-B?GMyXq7;0oLn`~YJu<vdi!>{ldaiAY_1-tL%?#R%>x)ik2M1^
zle12swE{J(o3&laNRvD}8Nqjbr$^fb+CI<*fi?`ZQJ{?j1%bjqn*`c4&=!HV3^XhW
zRvYSX7HIRpnoxX$&7t;R-d2G+1@Z!!Ks_e%Uq!1y*cO(zd>*c3XE4Y!W{d*GfyzLw
zKuMr9P#)NTNyH5Alq&<N!e)v<pLQ|Z542TPfoiY_v`t_Km`$MTW79d%p%Y7L?h=UQ
zOD;fSz=9*XZ6G3Dxn(!*4i3AWUAkkSu7P%f@@L!a;S93q(1Cv!_jcDny9L@EI{e}d
z-PEqJa^19n=?=BQ%az&7rI?*P1ATC_wUB$eC;LG2K<7*>StEP<a66f^U!dLq7VFAb
zeFE(t=(|vhLLCqg_#_j`4|QOmegT1hdOA@5Km))l&<%kO3N$d#DS=K6ba0?U0v#S`
zXrMt9*w_ql#6Q%fgB>?*u;qH@FsS;6$Gq97e&&ckM+O=m=(s>f!MH#~Djpl?XzXNT
zqZW?|><%^ZPaf-Ig`gD=j}LT0pc4a~6lmQUArC>2Et6!3_&OO-hZtraNKXrNdZ5ce
zFwhx+&J1*ZK<A~i0-YV`+(087S#FqE^6fdUEuw!RCd{QbJTI_4*Hyjz3j<vg=+Z!!
zA!h5DivwK(Uh_kC7jjFG58-X=mKJ~q+|E`qSAt8RYfv0&aOg8AV^DLgBgl1up#S8F
zcAWwT@5Vqk1)36QYM`3~-4bY2pnFlqAH9)*ZVPm~`|4JgGP`(3pgRNIg%bU1S^t=W
zf5g=A?m+jrhftW%JKl~CG$zpaKobH%H)uj=+*ru_qc<+lyAw-#go%MB1!5&=GCK9U
z9Xa;w?c?D9`9|H_rqO7id4cA;)@KBo6==3&;>^HC{V@od<0_o%9^U8j)c=+n=#g0v
z=&vc^!ze|d`vW}?=)pj*?P^|J)jZ^&MaMbf2527*^cZ6A8p1QddOQvRd;6z4t$C8S
zYne|sFh5N!p9%DApdSNPru1B(=L3Bd=;MGBTJ%DoSE)bHi>{uR1H4wtnwK1}@t3%L
z#XUqIUk~&~pm!iepf>|SVOabYLh`Ri_#!-g8yO=w-!~f{%_$RlAB76|e~0ai;NVMx
z%!f`$Ivru~+&;k?1o|q_!a$$7)^XjxaO&`RAT|rItCuHVq9Z%o%-4aw3G_o?Cyl>F
z_1q`l2U-Lr9|-Z&;3M(&<bfYyxN1)uxBPRUUof+wRtfcMpx?0Mp_T~sdtkd!O8y<_
zk3fIogq-026=-pwU){FT{r9kg2s8+t`UeY-Mto<3z-fKSPztqdsO3T}6>90wu5VI|
z3Gih?Yem@^O3JzkX}eI%hgu;Nn;lR+p0p3OVyGYX^HD(bVkMWyp7UhYP^*R7DAdNG
zRu9!7)LNm|4%IQ_k1d=QtTjWc;{<?F58R=HKoZvBN0ihbT8@MGdZE<?9GE-)_1aA;
zHwd*M*Ce|-Lt&Ji8a4^FS*XoJZR)-v6f>JtqMloX+A35hp08)N3~lE^#sj3^ZH45&
zT-7!mgbG957V7p;QK&f7&`?K&N<yWf_6XG@R2C`^wOy#~LlvRQP@O|{3DpW!g{nil
zHT$#m%x;rP%sYT_+koaI{sCmR4z*1vx>PI-lJM@Cw$W`JZD(&AvG-wzP&<X%In<7!
zy26Ep*6(7r8Ps+OwQH!|LhT+3e({7APd@J!3MC@bJ+%Ag$fIuD?ip&YP<=7oq4tKn
zp?ZbdFI3M^?6le!fLFD2Lt=?2V9QePP<=w}ABrUpVqB4m{dY88Z>wtugq*}~&1pXn
z2{kCxp^jezLLEeHQ0Y(~cn)?CY5EYT*TF&vJdk=YZ9NbYVK~HLM0EFIp$-S0Z7d2b
z*CLHahB^w;g*rFXuuw;bIx*Bqp^kCHIo_qmh8iB)aLVICz4u_sR5N*eGfcz@Xu)2#
zo|9e4(;$V*oD%9(m$}^8<TFBX>cW|!&I+w>jKw~wvpvM%?EmWb&8>+U5$e29SBAPO
z)Ge!<^Fv)2>Y`8=IP8eXLOw4JbqQSX&E=sk4Rx8*6gahs>ww@FL}<UfxgxX&LqUP7
zLtO(6H!(Mbx;E5xp{@^gLnykx<0gk_5M9iTjyM;%b9IO^Vw&Y<00=eG!G`_0)iHXh
z)vQJ0lRHA)8S3d!&xE=w)ZL+GhME=X9;yvBG1R0`_l80l$AlW|Dj6M$o`SZR)EyUU
z0wTSJ86Vm?UM>dO1jDc!l-^--sHvf*p{oCSQ$ig-$##y|!|9=BxT;u5N3}6E$KB}9
z4mBs#L!llHbzi8tj!+LkpHTBdEeLhL!~N1p<$zv>gPwL;$%-qR<xyuc4+6jj_6gS`
zsBNgnL1$9=sB4G--M8;;dm_}6p`N0C2MHfCLlW;`dG~Cn=R&;`>fKP!yH8#T^(rlf
zdcpApC*j3VFNJzJv?CPE?>Rlpi>{v6LcJd9P2}?rt7v=8Ya{INjnMXtbVhH5dK-HZ
z1ptPrXH4{7sP{vC8S1N0AB6f4$U}Vwg0tH`3iXMr=i|`2`sgyGqdAN`QuKMKFG6v6
z%T3N#p>pyILwj(<*P*@v;78jS6wuJOp*|kdhOdZ@BRSt=MZrDNQ;~iQ^%GhXX}?H6
zhx#Sd29Y+5^lPZ!Lah{O<w(DW`UBG)X_-iWhWaa1Tcjl-ErxnStUL5isJ~sFw$KHh
z{EOaAEXm;HEE$ROD->DBhRKaDCzVS@B4zBeY^3EPtq`ewq;?c=L&D{OYGW&qL^zW{
z<yVY^(Lmo9x`<+mtrBVVNFCfKt44NhYqiK)Hs;bhMp`4%nvvFutk=h2(+hRv<85n4
zS|`$ak=BnaYj*BuyV`Xl>xsd12+QYq*EmiaMcO!0NwG+q(8|A_7s*80G=g#3Jkl1C
zwu<<_p827p*)rmvLFS01EFHL|woZ|jo?JqCKT;4WiIhePBSn$zj|cz*su(aPmk2F+
zh?7NPCvqOCi0qLsAP6w98*9LnR~4y_v{R&=BhgPak+zAnZKTeTx<q!ExwWGMjtzOn
z4%<cA9>VtacXTvCp>}Wu@QtY%8`3or9d0(c+y&A_>Jbrisvp-dyG7bPQa4wab+_)3
z_HcRZKjUJ|?|;fgC3{8M8+0N&^Z==zk?k+I_Kk$4!XR+K8WP((QlCgy!H7uvM>-(V
ziIGl<)Hl+Bk%mS(B2vFd{UZ&EbZDdjkq&aaJ|xmElgojT4tDhSm$e=Xi~x897z@ue
zIMQJt;vgIniSQoc$Iya9AijHeWTc}a4Ucpjm0!{}EYi`Dj&ZMWv|t&%)v=NFk${#I
zyddxKkxp=&>K^LizpM(M9O;xu=S4a{(y5V7gIUCLMmjyx8IjJ8#PJAcqD@20SuRDe
z$#X%mb11yDd15{5)QyO&`v=o$_ku_lM!F=@rLL`u9E4l@mY5gQ+~ktXWsxqAbfs$!
zwZdxQVO{}K+~5v50gP)RT^ng)q)Cyki*$XYk&$kVbOZ7k>E_7#IoOJuoG##np3u)A
zSGPp^e0y`xF&5?9BHbQobfhszSEM^5-Gfj?x+}7s3x)4?8KjgR90S4<#=VeqatI^1
znDD2Pv603_8jm8gRnT`fd~!&4KOwSnN)(tJX-cH|krqUn8fjW2l;u8n5ot!GS&?Q(
zcAQShnUVD#nGs?phi(x&FvqcsSKn@DR@vLkjWo|ap||DX{gEDs^l+p{B0U%hM--GF
zii8V&{%MB35A+{}@`u^TipRlgX84%10Jtcy;|bW^&+gZI8bwA)W5uzajr3fk-!OfV
zo(KI%A4d8p(hJCWq&FkI<!JI!q*o%n8tG*R5B=R)+nU#CYfbZdq&FgaY!MJbYM6z_
zfy>*G-ih=cWQp`HTFmi-UwMcb@=OQufg{)ZVH*#*u9;kZ9O;utiz0oG6^-;+q^}|^
zgnfX@USoDHLyc{056Dd2m*~;Xw!*I?d*0@^k-l?)eG_R&f6EuF3Wqfz`GEQZDvwQD
z&kXR}e!}=i`URyv)}8F+dKor)FkJmL5<@mJe_;G0b&Rz}tiLe+U>9qJSbs<Q2a6YL
znOOfuYKygGEXCHCFA<9~Ou!Kz0Lt)$&WlYPOT}!0wwYyPEf-tc-Y&M&;B=!{EqFmm
zy6^U}R*bb;EWTYS*2=L~jfFsBt|2T+v`TC(JQFN-7V#@@^;jKZ(c=Iuw+vL*jI~y*
zO=FHS)7r7tiM3&@jbg1EYrR<O1IFkQYV=ywIx35L*-AD5=E~xWce-(`O=3$Ej1Qz^
z1c4fE9&3wOod7%5ma*j^`wh2>t!?LXSd7zXV)?N`U|!dH&iDp_1B?RGCfl$jo+q)=
zSOa1m6f29B$J!;<uCa<(Wvs1ZZ4-+RTd|s0onuw8JvOI~MbIywGeE|$ba8aPYCr$U
z$t48YHWvQ>_OW(|wViu4(rx9~F;-Vd-P_+OwkC*>C!%2iY-e{%pM@&z7Hjud`^D-V
zt6Qw@a3t1Vv6Zep;AscbBepSYm^JJ?q}UsjWA%)+Z*0e{80Qa-xnw2NE4Ge3)L<}z
z=L5=pV(srZ)el@&HwVP(8(W(R6Cu~Ae&)c~_Ifa`zk_-5VLp~^V61~<ofPZjSck+K
z6ziy1!(tuk${ZeRXsp4phQ!v>J1n+CRA!&vpKN!F&?pA~2v_n*m(mcX>1dZ99_zSR
z$57`{ZO6JNlxN25_*f@!tz=G&ZE!F21TW&@Av<3EDX~tCH6qq|u}+J1I%4U*1@SXt
z+x?vh#SXS(7V?B>o(=n4Z9h*g&vm?`9_VvEG>>&jtV?6tn_n2~B18`EOeqmFW<CLi
z&WNU&?7A$r^HG;$l=ky6`#q1g^uG#X#u}Gse4=Y&T^no7L~A9wE@om-ZzI*QZisbb
ztovfkrRi8V$GSV#J+W?qiLvg4p^Lp+W8D_p<3QJ+Qr=Ga0p|DK{*%)~GIzM!m5bmm
z1aFEB_np^fM#Z`pI>(w6YjmtJu9ESwk{`XXE~U<KF2iXOJmj3x39<Fch)S9qYYOCw
zH6zwk_hFAI<uoXHn>}RX(QbxzXT~C(6>BzJo@mz@=b%J0L$1@Ol%#{Fl=EWEM+IU%
z6Kg@N`(a{7^H{70unex+haE<2)dY)&T%JuFkHmTuT@DSgH_w@j%;T}1h;4u|pL0DK
z+r1u7x!O4J>e*P&#d;;ys}7{+W4!>25p354C4rMQ!Qmmht;Infw~zE+#yTxw$h;Pd
z{fuwMdMnoF%b3?)`i4udo>GpTQf_;kU8KIYn|U|Zd$E3x^+&AtV|@_ot5^$TeHiN_
zq&n7Tu|~BwAIBmj{u6qokv_3TpvLE)J4n881vp|0GJfgulz(VS`85g^>!(;h$NDzb
zcd>rJUJWpd9JFuYle=R{zIWt>&fNa!DnuB5q4k^mUt_VqgOE8E)_;q|`B4Z1#s0+j
z$7+{o`9zB`{%A^~WfJ{^@rT!mjr?y*v_ztB&cOH8l8N9xAF}YxP7P8}pbQsGUpBGg
z2LQ_@mX9~LGvM<6Pu>cN$gGlR)kN(RJv%>KF=1=1721^(Et*m;Gu4XCTT{wS?++o%
zYKc}))FH83bk|69<YA^`VwpR_?K9#QX<R$eI*A4(Iw;Y)iPlTBb)sz&t)FOvL|!73
zXv0Js@nNDZ5^bDllSG>)`gCX;5VEjN%3+urOf5I#lc^=}Z<%PTM4b{5zQvBw?FN{S
zZ?mU7(V^dUtM4ZY66J}CL}8*RQ37ne+xFedR8z~?p#v7|g<*9#O_U{enYeRzds`-I
zC2A6Nc1Tr;YCiwbZWjU!2({<blJnU(Hw=`!II{D6+eF(X>XB$q_to}^c1pB!q8$?L
z2qHbq$K6fWM2Aha$_2r9NwjOC-4k_7v|A#3a%pD%drOE#cgGYU+{4vIhKm~ZO0;*P
z{Sx&~v`?a*uJvAtU9|nL%)Sma>OnQ&W1mF(C+hDW9^hzoV4{BRwr}DjoamImN*CCX
zAsmZy=LRM^IMGFkE>3g^kR&=j(FutTO{~Tp0VNX+PBa8`5*?29%Yvb#E}ofVd(W9#
zezl6>;ZX?-HyRFhiH>%l9+T+UM39c=5OQ{WaKIX5<XdFvp~)dTSx!uJQlc{xot5b1
zM5iP=HPLAf=3TqmphU`_?jWItQDfQyKR5$+`xc9{0b`+eZlVz`bB+^5o}8EH$#&*K
zBrP-NyZi+%rCpxGk)7L{OA=k0=$1qy6J3_*@<i8CNunzfVNS0~bakRD6CJgyncf&u
z;<xW^Gwh(hhOefU0Dry1k+a}#Omu_GqiZv!mNzB389iOWG)q`@pt)NU-Ii!{qA`hX
zPjm;opyu9f2=kqZ?sfu0vAZ1BAGoum?n&6=@6>rrd2gcUr&@C~HnB$w60C^KfIcCt
z6B12C=2JzfCMBAj=sVOl(Ue3}6TO<~wM5erO;7YlqDSFHqM3>2C7PdTR-)Ms?E6r_
z!S=MGIf*zz9|BT2xXcBxsn&)pNOXUq2NFF9o3a3^qMk@KAnkaw{}2Lml>cxd;xw=r
zeEV3U$1x^}o^$g21jJADl*5iso=&u7ck_IA^Nh>T9QK^s=bhfYkm$w4ZeseMD^KPn
zm!aBMK>x<_WyfnWJmHYQ*Rf!UK2P)oz$bbu(Fch>O!Ri5cW6D)%R3wF;k$|6gFfBN
zS?w(KI3|viJ!@^#%8wF#45q-J*fWc$_7f=9-^vL+6w=ERqD@e`HKvtcI$#zefz!&b
z5;w>DxA!$h*ggN2=UcQ<o(uYXpXi4~tEE~!)sKmOO4OEWiBvx)`X$kyiT=VYC;Fo?
zzq`*dq`xJ0|2|Fs;hw-0*iCKleQ~0{kt+lP)OuRO&c%8Aqy2!)lBtwx`BW>US}N7j
zsg_N(9QlRbGO0ZeYNu%>@vd|(XaOf8K7E_tF12m|nf9qxOtngCd!Ln3tJ?G(E4y#8
zDu_CjteOf<XZssvI;85DYLir(rdlJ_nyJ=LwLz-2Qmvg@rCT?(Is(|Rd!5vF7W7T)
zxmSQnAnt~#HcD+T!z~>&^>3VNt3Ey#QP7*E#L~-i1&A`*BGs0>g>=I#FFK{_H?6GD
z?wjoaCVXpB`K~a_&4J6DIL&RaN|mHKF4gg=(o|WhJyY$KDo<6U+CJ3|smfHXRGm|G
zNmaRTAx@L3hD|OonEF}2wxPm{y{%Ji=P;$+ZBn~eciYrDPGoRVD7j;*uBmoQwR@^d
zcQreuVuR-{sWr|!yA<l}n%a}iC=3(F&kDPx>Yi$kRIm5<Ic|kMl!k7YR`y7(qey1&
zRQseFnCjqEJyY$Qs&A?Tq4091SE~I|^>&2it3IjrcPLDpRvwTFF9`CIat#>f_e<43
z)qqq7QO|FdkHAdI;WK;-kLb1zNi`_d5vh)Jtsk1|FeeWv%U~#ZLpdb1vPb6dlq2KX
z5S5{>0Ji<8RKrpolj_)1PfxSk0r1?8hLW-27Q6svcq)2xF6enesuO7?)lI2RN_BFo
z3sPN}>XcNcraCLt*{M!Tb$Y5ZT@z>`9^Jb~x1EuS-yD1}%?j9?vqEh0IjPP~HNsIC
zuAP_ae1znt5<5>Bn&TG?5d5N47xQhZs~qnxNp)GO%N_MDO$9O04p=}#R!W`x1LxJL
zt^t5l*QdHR)i2YmDW*0qT#*}GF(N84l{~?txEa=@8lP%Hs*$N~O*IPa!r(Ti2zR8q
zGu7>2x49(+=kVO+fVn%>J&riICCE8@4Y&aQ-c+MgjY%~&wSMVJ)5~!V&1q9Ygo*;B
z6EXg&X283SW^$@2sitB9_O(DFoa{A5q^CJJr>FY7ztwKi1K15Q)XYvbC)Ek1PAqj_
zs=3&NTu<eimuh~hnVDu~T9E4gR86MNnI1^>V5+}TEl%}Ns)s=;)d#5_0eB2Zs{c7G
z9!vEERiR?T%;WHJOM}DwZa4E3vXSbU)H+~*$MF$s5AdI*@N(w4)Q10I4M<-|^<t`5
zQ@xhzB`4A^J2qipL7Bp@AT#b~F0VrkWHQyeuGpLC_@m)lPGH#c{&uQu-1#S@aBaWM
z+un1pklQV$mmjA3DAl*AzDxCSs!xC_)mK=9>E)-6+Fv-9edf~7U5YxxIP3f~f=KnX
zD@L`j@*9`uM4+dqhKo{tj{!kiQvHDOPxVu(mC)AB+w37ci@m+3m%uRpfVN*T5vl%k
zz=IdFm%k(Y?aUt-mSHyVgZvTGt>OJU)jz4$&9q*oe^a$(S~1f~nU=`3WTtkRHN2Ep
zre!lrPu!=aGA*5n%rY)L885V}CBkx<l|2gc$?}<2$kg6_4oGKBx5osnoN1Lz9Wr&y
z)G5`fnO4iRx~rD+1o#jlfW<B=m^Cu3nQ5&|YiE|%C>p&vy3gBnGTk)Yy4g5Xe6oI~
z4KjJQA#IpxqfDD;+9K1&v^CPlS=ubqCYd$`oy8Wg|G?wGN%C7}_8=+#cd%7v{S%t#
z!f+rH{yCWXnSxA3rZQ8QDaw>&N;Aco?RqSno7+wqTbE__u>Cx<lV(JRPMcmnJ>9O3
z5i8!xgge2uWlC0=Y6r%uPR6=q+B(zmnNG;GO{Q%#_0H5M({`D*&$MTzy}&)wj+u6W
z&Y8Mq+9}h{jv!mk4l%Gtu4mD~xniKSTc+JJb<5N}6MLUw2kObIJu+dqKACQ{o_)AI
z901(zooOGJ@0F=%roG+Rje~vmbq_(GUXMZLeo$t4J3F+0rUNn!&NL)b-%JN)IwaGe
zO#L$Tcb^P&d>oKz>T;Z$*M@yKC=<QBJ<ik>004|UuMVZ8bE;{DCx>M^Jk!ycj>$AM
z(-E15Wg=z_>KzG#GCO{RkN?>v>@dB?Vu#MLnT8`FGweYDRDPVx+j)b@;fa|}%5+Vp
zYcrjk>6A?8XSyKMshLj8@HTZeVnZ*G2|IaaW;N&x@`J1=fM_u^!{{B>&YY9!+)N{&
zVP@Stqy=_EbKEDkU|;C)x+v4dE<-1B39LNCT%PF)_vF&ddP<i$EdbdoGhGGII-09t
z;!xWbDYs}1M7}Q5^_j+G8k^~cOgCn_J<}aXI|7;617=6^_D`$kw`BTkZ^MQD^88l!
z_BQzbx4pd+L^6$X0MPo~j)V8OTLQ+A^LR#iZ>G_XU)<ut0oyoNU}~mmnZ{?DkZEEj
zmJB9=cqWj=Ix)`Lbw=5LMmYth&#)3TJ<|+ict&}NyJf<JhX6S{(;P%P*LJz?%QQFB
zFPVPLG%wS9)F;yi*#AuTXL=#ii`f564+2l7Cy^Nk*u$9~aT(b3D5zl#oHe6<tOR&H
z?r4juK9%WdSMu3R&tzf<Z&jmr8~zCleJ<1UneBr4<bO_c$uLp&Ql^(Py`JffOiZA?
zl5tRgUIU$xK84{3Don}QUhrn7w=%t*>77i}Oc#Tp0AFTT-i6dN%J(v1PbkcV3-@8B
zk1{RH^fka_`XtkrnZC;ODO^MRZY#e)^_DQ7JMEzJC6A9Zdq&ChBiPXqW1{~zqx>e*
zx0!y-^i!tqGA+WgEpL8+DcB|7E<jHh+6Lpu^L*<*ZJRpmes*Fo{h^Rv__s{IXIeMc
zdb$3{^d~ksSNmLlWm*iob1B!~nf}SFQ@TVhhME6DfvII%ZY?<(E<j@7iG5fq*V4I`
z%hfKoox(D?mUS8O>|-6+#gL)!0wx=MvpjvhZ#%~obFGxCL#~dw^+i|Ctx&C+Yn9y2
z9RWY-YPnX=?dXhKE)Gp%?7v2?HFK?%YvGKN4bE%lc7kplfb3v!L?Jb!4D##e+8|eu
zE6lZFu8neSnQN<D8|T_2*QU8P%k8-k{7DD!7;bN#TQ%7tw{9nupsi#88@t^pmj_0<
zjqpcP{9J7_ZJ99}S(Rr}G|Cm{s&dto$(80Ra+SHV+;%P;&znQrHro(!K9H0tlvZv#
zP0R~+Y2_8H@HDx)<k~v7ok(YwGGn$4*mbsZP`K_?MSlBSJLDRX>%3e$=IWYjV6KC6
z?UZZhT>IqenQNC^yXNYVYtLNkFhBs)+-_G{duF+NZvA{R-E-}c3x|{EvGa3|a*DH8
zuDx?>+W~{;WcJO~D_7rK2g03^{(iao<k~-1Z^tRvga>8MV_EDSkXr@BlO*luaPOaM
z05q9t`(<KNAA2BN+_&u@p8ROd=^?oW<vJ$UvAGV-H8>Z)%p00(2=rXRS=!vrY(O`F
zIUE`5YcogWIx^Q$0J+c`mg{IIY;>lu50WxeCo>#A<~k+Usk!z2j?Z;cu9F?jPsnwm
z%TO2_%jEN!W7;sqaPzcWr{_8=*V(AUm=Y;EBj@n#HhQizbK8GmI?jRA)5>$5A`o2<
z)?9eM=jXa0*FCvL<+?D}MY(Q()VVIsbxE$Pa$TM4(p;D2x+2$=4uH#H+061kgO9!g
z4>Pw1%q%B$G}q*su(r7_w+8B3muE0S$9H`$LhPUtT1<C#Q?6Tc-InX-T({&J>1a+p
zbf*7J_W|4Ox$eky=YOx5^tiFS3zvJ5cei`OEj<^v_vRX%YYt{P*O**m!8g~mT;p<$
z&owF6WWaErOmyjg6U+E-G%<W;d6&!-<n7TA1tFb|KIWR4YgR70KL(E!W0@P+W+Pxr
z+uMts5|NpkYeBC2u?)E#?#+ijvqG-hW|j}+dJs~ho4Fo>dNad^b3KxaF$F_B3QwPD
z0iX{;G9L%8nPoSA1mFY}yb$lFb3FqE3f)=g*<8=%Y6^8O^n9-WAyI|e6?!4pi`buB
zKjeBT*UPy+&h<&IS8}}y{JGxC^%|0JoOuI1a!h&MX*6=qs^43=o!@xd6+rfY=N-pi
zT7N&+2f04X)!j{r<0?>q$%>C04L@?ge+oKSvs_>2`W!iVBwReR{L*E<aK(7?Rc_<A
zshRYf-0qtr|E<fQO5f#L<VsTcWs7XFA9MW#gt-=@<GFsx^`}$(UvvEi{c-rwwVQ1J
z{<||ZNEDjIbM*bac6JHxZ&VL;F0^!^f3bLlmMo+~oW73LTA~n#Hh?uf6g!1G%(6oU
z4rgFgi+x+B(6W^0<jh$m-Z%{{UucCwn-to#Q2RnF7V21NjY2CG*50mK5FU@HYn8%E
zCQlgnkgi_X5d>529SZF@%PtjRyU_GC3$0aX{lbR30L<Ej)+w}ZVJE;bNAKNfRcSpS
z-`D==1Us`qp$!XrJUjH~+NjXRg>~Dwm_ppF(B_4LLSdmT3T;`)6q?q~Y*naJA+NAb
zAh?{`*QLAL{oO$2I|Lz@;gI=42hJ+9LV2OMP*Nx@_+P4>lcxYSpFF})6lxW!3YCQ&
zUvS}6)P+4;6`ui^$<R=jLR%L)qR^3rwkfo2p?wSWDzsgp?F;Q*s9T{OAV{H|3hi8I
z(LENht^j|cogk$*+y%N7){ot-5Qc&y5KntJ<X114J8Wt9LVFb2)4ih69)<03I0%}O
zcu>d9D)%b1ccFbKfST~9jQ)l>!;5EGL$P0>-h~b+G^kLYLi>Ywp?-x9D8$@m-@<lk
zTu3-mg=G2{8o<Lu10l<g9>b`E3OlVzAI)1PY7Q>!><xe+x+@;jc4(o&g@zPj{|iH>
zq43ldINYV6NnxBczCEhYutMh*I=|4-g^nq7N}*E=9b0I4p%WZ;j&tepg`Mi}_P6)Y
zgCXd{yA$2>lXza}phb4X2WnJ)TA|Ymom*%`p)(459^jdU&MK_$N4|T1i`v<R&O!Lc
zl-%+ODaH+%Cr^KLL7@u^-9Ujt7Zth~L<(J3=#oO07P_+FSUF45%L-lYXhohu*%gHy
z<I@D`)rI|!>NPGUL$!D*WUept-vS?-n>dVx{7r>!F2u6nZG~<rG!hdx%NoO5k>r^n
z)JCYzILnZ~9kF!N<_Oqbh3-bzO081r9@;JRZlU)I-Ajvw9x3!_p)rNVq5_4c7aE5o
zqb!A{6q?|)W+Fm(gjFT{dAz|%2!k7{aKyw^M>Hn-Xr0>`g=QAIzt97PW)+%U=)OX8
zol-L^d)=01PGQXj8FXP@q4`cPSQW(x@MM9z1)~Q+6QkYTJPbQJT56L%x2c`ELa84s
z^mw6{3cU<T3q6S$8R<WdB|&DKY(MKb_zZ&4*-o%?(c3-;cV=0)g!F%O0fjw53v^yY
zt)`V+j2~G5dZo}Ch2AXmD&Wm3Un}%Fig}o|lMFmb-*U~pUFaQ}n_klNtBwob%(C+T
zexVNv{Zi=HLLV0TsL<DizA5yv1MIUxpBMVXSsT#&w6M+|eaaVwzC?run1zMDD)h%F
zf5V=3-z5y?Ev^xI`fb69qx!MXPYBpTZ&9Hi(48se_s)a@8#F|xc!H1dGi8>yvww&>
zb5p++`W<6lYN=9x6#BE!--Z6c?q%k$LW|u+op`pSSdV|5zO<EEq7?l*8)kua$<lgj
z;c@;lv+eEDrIsnRT&Z@YSWLtNS+=yj`N7O)Y+%m0#b3VE3Z>eYV#$?;zUtjZ{ftmn
zEbaJZrBci>l3BIXYNd86wR5S}OLZs}mWoPsEVV|djZ1A(YRyuAbusIdY_$+42CU`M
zwOtA%>y=u+w7t(pr8X$FVQKfta?4!7e<`1EwivgY@=2+!IL8hcN;_@7MX4=IJDOvJ
z_}|0=vn3nNF1=C)NM?osAT4X&>1ceg>u3!EDNAFxi*c!>ROeD%N~NW;Qe~-DDVC2J
zn&qVmR|B80r?T_xvT`lfknz8c_%6RGt^I_>Fl*~l+mza&v|_n!scX-)V}$KWJN|-7
z+n3g@MG<<>E_W=2+3)I52En6dm%EhOwbX!82bJ2b)b6GBE!C@3w^H3p?OAFsSD1rV
z_9)eZ!d(rUBI&znonhnN?rqP~4k!01?L06U+U4zjrFxe-5SUAQs$`#12RN8H8gBnm
zq|71oEp3OwbyyViFRizR*&*0~&qvHI2bMax)UZ-VmpY`>pi+mGI=s}Or3O>gcixcF
z&SoIJ^yYv>N6d#998S_0TIz^WN0u5p)IZ9lyduv<`D02k`aZVQaEzOCr;l@p9Pd)B
zD?hD9qao2rrA{u@RO(#mlv1aHMN55KI<3^{rM@e*sMHyy&SZ|d)Z9{Ml{&lBZKZB6
zbxx^sOI=m!>QW<0omc9jQWuwY5PE*83mi4b<D3J-g|2CA)Fq`ZEp<hyD-n_(y~|vB
zxl2)Jo`48Z$}F5APT+D494~cqsas0B2zy<r8%o_+>iSX~0>i~f<R<iSm_KuN$<ea6
z%r40zv8Wzl`6EkfS8pwadranzQg@abUur_ByGq?%+CJ!B?7z!E5Q4#;nO%-5ZA1!P
z+h|w-d0}X2k7k1SOtn#rl-eeinncZ|W|W#-YD#In@oA-|I$1?r`Rh}=VQpmS2tJx!
z&Md|FdKPMhE*xQXkk+vPb0Bgzdmau(W?rfJrCuxbdZ`7a?nmlMJy+_1lE^?kR_gIm
z4>@8!j6{`UR)KnkF*@k)KU#8XO#tbBn_WIp>d8`1m3o@O>s!fTkVVO79D|Tp=C?^L
z45j{8>cvtol{Urz9bC*`M`7PFZDjcHW%4X)yGCCr#j#O*h2>|3_l;6-f_16SOTAU<
zZ4fN=AqJt;yH1<lLuRIzjNL}Ksk!%ECDgg{oRVKYeN^g`QlD}i?|<x4`hEMh2nc3F
z48B0SF@WvOx7e;y3rl_Dti;!@9>8E)iS+nUZIE%lTkKRJtpC2$52ZG0apaeNEcFxi
zwx#wh{aosoQva4}Yl#SoU(sC5K89{i`I{40Z1ta5R2F3h`~RRmp<%IOF}(vne?gV{
z_+0;uPg(9+qNOEUTDqlWTGqqlbSBuRmX>N+1;<w*UACp=TKq{$%TsuLE0e&9I?(BF
zJ;yqGWL9ixrIyxgX)VeS|I^Z{Ev?qlDlNM-#z=%szN@#?p`|riRxCTVY&aGr@gd1z
z1BpapPK+mOx3q3c>$!T?X<6rlhwB4gOB=d}^zuv{kka*o6lXDQ($c0aZP(KFEp67)
z<}IZyWi4&d(v~gxEd?!Y)l#RH{oAA0;^&wa1*(OB#yw=D$*ZuXsHMcU!q6jb*#SEm
zjRA)a41fN-$<JFVTI$l$)-4VfveuqXxoN4@Qsr(b&%@f~nQ3R!cV|~2nQi!LkX@zS
zwk1xU0RXOj=af6Nv|~%%TiT<gt}X2Z)-82w+3E3}TiT_iT|vq%9)UQUzWHi5c(l+u
zY@4_lUC=qGcUzB^_H1dNmU_1A;Cio?_2enMx8o)?@Ni!^(o&z6_NV?8tfcMNQg5KW
z*=M1R6-?4wmNhhuUdJo}@T#S!T6(&r{w)n?>4uhW1pbx=wsd++XS8&1ONX>{Y)ivi
z8r0IEEe&nyh?Wg+9?Yv1%wa7JX<30>v5(!~1W1QF+KyYz9NE%QEjyofOw0C$!(i4H
zZAUxo007sW!VDkqlaFiZ_?Av-*_pi)sI4V9a#BmosgmJZ#`&KoyXWxhR9Esemm(^B
zb!JOvwR9=OY3b~i&S~j_mM)~gaR1zv&THxXmPWK}f5!wJ(~ta0jB_U*U&eOg7qxV8
zOP4rSZg8l7#GDe+LH2X!SOK`ar7K#xrp3>&wEkml*vTs$B3HF^b<2)87+KRVkh!j9
zgL5#v*SidGGQ8r|O)cHr($towwRB5MBU`$+rO_?j+R|+;-QzfTdrNn;beF>j_Z7<A
z*|Kg7<1bPWyt^gVEXc5pXcWTM$4(uOX=!YWW3M!^rEx8dcXEZYgXZ<O_}@Na{j^Cf
zk)PtQo9yz)JWtRv(&?bk(t?)mZ)v70GYhh}tPc+ib6|8!^IO7z(@o56*>s*u@pY-3
zTbwi?d7z~S0luZj!EsLcP|NzLkGlNBEj{8gJcsZ72KY=hF#8P)o^ZJ1xjjik?JX~!
zY3W(0hay*cuBGQ&`m&|3z^kPfT6(9YccDW|FSYb)ORu%`a!aqY?9{}JIhJVP&MY*%
zc)g`JT6){n|0aYT<a51+s86?R3S6-1nK?Gx?meWUr4L*Bh-*&C==(}P_`r!Y8Eodq
zEq&V3XUO^5<`WENUyJYOEqxvungeDsU$pecoRZAKmcDN3*Oq>3=^KpXedYHp{m|04
zEq&LrXO$B#v<R@bv8PW^4|e!REI(L}^y9APC)(;^PXPYKJ)r>4f2VRxYfFE(^e0B6
zuVJqBFRb5vC4(=p=9ZKn7I1*@KM?A7>!mDFX~|0KR$8x;DlJuMrHV8BwRELrDy>kd
zeWhjbth$?am6orx^L^!VF2(FKqCsJiH}VV(4rNW5+W1|_eRjHFl}f8t>R4%wN~={`
zy%Ll2HyqQ3JA_Dd;O!C?H7L1erL`(M3R|ZVu~j@=+tou=C){U;cuYyHUulC%VWp_j
zhLtv|v{j`}l{T)lNu@0+JJGahB__KzbKfGp<dK%mD=RbHZdut5n(OlWO0SZs+_<Ka
zU)eqp786cD_}qU^7k{COD<zfkN=2o#vXsv%8#cq#A0<cMSCTI)wJKGW>dFRUQ3+!W
zj6c*sxgNRC`V3tvZCz<ht+BPXskCjSpDO)aX}e0>SGujz?G=AZ)Q**gRyv|m*GfB8
z>RahR=v--+N_$q?tJ1EOcB|CA(jJvQ+28D5sl%S88%@jb_dNvc`<|vpWy3r1w~-vE
zZGWm&X`f2HEA^?=v(mnm?NfSHBD{f5D9l%6_N#RCN!If3Us<W+Fzo{zzdrxd<H(VT
z!~K4h`d1oM>Cnoqvka&-u+qVm_;tcT4jw8wq|$zuw9)8W_my;Z3~~oo8sY#3Bs_Lf
z{wR7_C61Il+|@trQ2)qEM^ze8>AXtA0He~Wl}@X4OvPW@bV8*QEAbz8KpkG$^NWtF
zbUcE(&>Og<?WFj1&PhD4H0==o6h!x14@ct2Tm41%l|12S4u0i)dZjZfomJ@!2)?Gp
zjxuLgI>%AtTqxhi{5{xCfG{7+m<7nsuXI7BYb#w>>B34ERl2Ow<&}+>zPQpQl`gI9
zc`SgzIl92cSFDa*0bwg$Rq1Mw+QxeRBl_5Cp&^B@akK@t_j;S_E8S4(rb;)XUvtYF
zE8V-Y*?4XVUrs*L9@BkGrID3xh1!kbpO}0Cven%3Zq9$GbZ4cfD?L-`u1a@Tno((H
zrF$xksx%%Mptee*D~+u*&JnH4NrrmHP#Zr-o@=M~L1d{vJ;vP=QS<M-NtGspQDG09
znNn#gH6LP6Qye<CoL1SN-cE-~b4$=fuDG35X?CTDDm`3j4k}h@ex(JKz8z#~^5;L^
z+)AYLDxEvG<g}~%D?L!@K@<T57kO_F^pRoyg9eF^w?`^HTImT?yQjHjZuuB|S?oRT
zq?B7^iDRIiM8_T9sey<Hj@fw@<6r6hN*`2uo=+;hUg?cWFCdnXy3#91>6~yK{uzN1
z-9%8RnVbZ#LZY4=Y-mLY9x?Mq0mS%C1hUdQmELtq)T_UbtiD~TIWt1wr_C+-{5{yZ
ztFbE6%Y0brqe@>wG%N`!Q0enZUtnaMVt(dCi*q|sQVvY!TL_DsTyUs8;dWuAuPZI8
z^gV)v#5%$F&gH*#I>kfEKR37hp%SNp|L9cgler~7wX6sFf6py{sq`zFRjWs>-zxo%
z<*c<utv?_;HoVr#wf?HK80o6DT&=$={R1CsEm>Q{|ApWO`fas1oA<JTK5c;`revvF
zOV?V)l>uznO<_bA;rTDquGaFk6_WO~R;bl+UU`l?L>F-)k6y1>TW#gxDz#RvwQjBT
zYOPjl^;&DxTC=wHrvo3l40*(Wl+W=w*Q&KnZB=aT+IG;qBIVYu|JK@|)+V(!rOe;n
zhBe0#YvbBlKQx+)Xd==N?(#RQ1>=Hw_VhNsMOwD3wN<UAR_9usYI(KNS{Yx~@@s{l
zQ!A+10BaC~|IR}LL2!?2CAIiN9~Dv+84ef9YZbLxwW?aB!vbxEI5fmpU6TMX>RO1X
zjoayEy42dbR@YiPVgCW+%xJq>+t;=?+_u(X|5zY_c86L!*48?4emJ%9pBez%xz;YV
zy46;CcdfNst=)l{z1xdyb6oI<&ylO{wTK+UfOETNt-WfUQtQ-Od)L~h)}UI4*6LYn
z-&zOO>Q}2*ZBKUUU8_&6{SX_+U;fd#f2{**^+kTZ^#BILMTIZ|kbtLuEogF3t%0=$
z0Q`5}F7wJw53+xVp0=JjxYi*MWU<$8p0#60)Zkh}Y8_Q;7=>#cUh4=bgFIkZoS0GO
z#Chd^=9lA$xe$h<YaLVT_*y5_wx>I`)^HfX57s+aTY6lrE9coGr|y|oo>=RoS|>aB
z?{^RXzZe*uR_pXy*VekO))}?VtaU-H3u~QK>+D)1YMobGb97FvbDc<YvLDEDf$aIU
z?b_a$S8m<64UnMlMYS%bY2>8VCABWCb$P8TYF&l`&MWB!D8?t`DGYPTQx#l<hF90R
z#_1FfsT>8lzSa%3Zm)Gmts86IRO?oU?9DaDCu*bvjCuf%Kiy;fwhjXFP~$dNj9%}~
zT6fhNRqNhbch|PxzXx@QZKE*m<E<>MM!Uj9Ag?;#E`K9A<7$nEgN+6@now(Et$%9$
zTWeCS$+h07^=7RpHNTG1gS8&QKGd3C>%LlZYt5)Nv)1fdb85}P+RV3H=Er9=M2lDn
z&fY{wkfM36-37JouQlJ{LYaDgi3VXA9)N(imS-Mi@p`z{Beh<D+O;07^;oTEYdu%%
zapV(`hO=|ZCmn@B@F`dAe-uV$o&lr|X7BkWl8ov-kL)?AhQhFtWe74a)q1(sX0=|c
z^-3*TzyHa$S8Mw(&OeUx|4FRTK>J>=ZP&xEHs7lCcCBw~eOK$9TJP5SwAN>}-mCR~
zt&eJbT<ZhO>D}dr2*aP2(FARxEVT7WZCwIfCOi`~)aGk_QEOqXuWNnj%JcB6T0`gC
zm<pOk9>D9HT1d#a)hxiUcu}qIYyFHNt@VSmKR?#`$rZrIz^XuGVE(v!+pkcj)?!p_
z8}qxfMSozHk8J}N8v2ti0CT;c6$#8*zLd@U?F=lHv^83yQP?PIv}7YSTC>qwjh1S(
zbffl-R&2CPqh%W{*Qi~i5%aCmas7Knbo2aj`9{-6`71Q`AUGa^0+6rNXyry78g*>6
zN~2X9t=<UB{LivxHELeyjdbo1w_pv-v*6v>a*f719=ye#tlemxMw>L+w9&c^=YVPB
z#;WJ~jW%esVWW*)J?I)lfcr!Z9i7=u1Qx(?)PJ)^n>Xsz$ZNDkV^{sQY_t_<cC@T{
zX1@K~7jE9LaczGtX-p%(QQ+#tbVDW1>qG0YOL3#5(Qb`)Z<IF58g*&3b)&pd(Wq|J
zG%6dl8Xdm8sUXx^RuSkmsGkgi0bUU8hqF!RMxYGL+ces?(N2x+<F;$`!TfTEMmxIJ
zw+B1tio>|B(9oF+Ac1Q;L&HXo53!S7yEdA6w~qlK?bfJ!qkS9oYP3hA9*y>Dv^T_D
z#YSrF*@$18y|9I)(msvuJ<;@R#GjGD5z<i=KE{5HdN=CZ=)gvO8tva$CLYk(ZV2rl
zg{nNELPWh^qXCUInEe|o`P4%SL#gfHhTmA|sYXvX8r0~}M%OpGq0!(*LtsIp(;FQI
zp&A|2=-5U>8y(T;s7Ax!RFAeJLE$KSkTO=3+W5@`;2qsqSAj)vXf?diajwisjgD`0
zLZcHK8$rRmF(rX>^Zl)}3V%;-bV{RB-CLLl(<y+zcSfT#8(q@q(ne=BIvdtBI<FD&
z703)Yo`aY<>}V8|dw!z}8vQxHytvV=$NLN!E^Ks>qb;1JpM?$`7L@4hWsNRxbOkhN
z?9ho{`j&|6E#*~>u5NT~qwAb(T;smQGCb1Hc9*n53T%f@4R3@~jV3ml)ad3$x4^7M
zqZ^H+=|*=ox*G<aWo~QiPmb<rbbDiM1u)<p-RZ=JlLny%Hsqd0qZ<A0v<!8Cbaa|f
zbxb3S^Y}()K{=Msodj-qrtRz|xEc^M@S5CcN~8IW7BrgLXj-G$jpm@~jb<Qtjb;JT
zkv^gh%|QWodg7U8+XYq!?{g|Px6wS8*?&O^ZBcXN1dX`A(F2VhZS+{92OB-q=#fVJ
zR&U+4%)>CcgRSk@1tqu81SNXBv12{Jd%{r<!UEot4s0^dG<vqt&y9X*^jxFosS0hP
zo<=V;dcDybjb3c@5)^B6;R3tIkiYf4+~^fv&9k<bu@48`zvd*FTaLtkv(Z~l1>SA+
zcB6Nk7JT2Q4c`y(xP3thFkJ6B7=ZA@Mjye`MhhE#jN&x<tkLI<?dU&+TpcV&<_)#Z
z!xxRd#1i)Nku*l5JfTj!wXdnF(V|A*H|lz#`L<EdM&G$Sbo2MLD=$AZ`mxbZPBMYB
z8yi;>OCksYd4Fy68&<lrmhG(H8@xERb=DG{^=G5M8ZB=0H-L?6WAq0K0FR~m2XjY{
z&#S@aeJ6_eCrkbxQQrY&Me%&Sa*ZeoND>tjqV6nj5!M!%Ja68cnfF#vLB#-qihvn2
zW<^CsB}z1)f;nKqM9w*9B<Gw_K;^q#`+NWIoH=!F*L0|^uCDIso|!fQQ+Kx$O@7_n
zaBXwl4GB&%^}{|-F5^gjs)^G~)HG4cL}e4Fo7~+-byGLu879s&ah8cHruGl4DVbGG
z?MztcPooq852rhuMT}ApaQ<&<Z_h_jV#cp+qK=7kO+Dk{bn6@wbxrLd=?{6A;?dOk
z*vlmKOk7}MjEAuvE;MnGiIo=qv~aPBOHABsp|yqjCKr)VY{9V5z{F(~$;9U-E;n(7
zi4G?2;awAkiP%J9qQpc)6IYvPY9eLgrKgNWCaz?v3yo4!Yl&YcH8#=2#8sv~rjSij
zW`d98TN)T#H)fDnnc5v~8Ks(;Xl^1fkv3tPuuOQSo}1Zhm(hx|ILFlAvoHzIgK()#
z{tN4$Vvd8psUJ%jGc@&DR>nkDWZ(upb7oKH6`A}<vmyV|pJTh2xW&Y+Cdy4*W1^*r
zRwk}B(Za;_CT?IAhU$qZ>2-|87hi{}=yB~axZh3VxzWT;CR&?%=6|yZp18)+xe!gj
zRJBH{f4dmBnYi6VdlPp`7223+YvK-(igBo)b|z20)~C=m9IfB+poh83#N8r)Fk0O%
zOpYKOO>{ER-NfrAI-9uH#8W1^nz+xz{U#n|5!H<cOgw0!ixl*E{i26h(|?N}7Rs{d
z-x#FQ9x?SuO3<LG@tBFnO*~<OXJ<bt3Aw9IT`~UCR5F{=#LLoT&zg8a8i<dv&zX3h
znRL(%NBW|P(tmUk8b3E5yP0^^#A_yAk!-0qzCguaWH16NNcx6}H%;_6F~CF*{`}cQ
zPZPaZ){)}3X%$imU!`M^k+}xg+tj|guZeyp`iR-^x30|UUG^Qm5q+vr@BR`}{=|Nu
zi9selG%?h~U=u@3yl>(I_OF{u-ji(UF^HKhYr!u;SX1sBeq`cf6T?glmv-Sc3VYut
zre6MKOdcG})%#DSMR+>Q`K^pEXl5qXvu{#kCcZW?#l%z--%!;iemC)liSJB|F!8gA
zktP~_QS`luA5Hv3yE@7EK`0xYZ{;z6{@|T;`NhPqRQUGd-=u>7MEw7W=F`se#YLk`
zj5aaO#CU1VF($?m-&n$TV`z#5tj+`z6HV}?1@`wzg<dw92GdZl%dt4>bDD|iCKj7m
z!k8vz(p{LCZ(^2-*(T<SDW3m85udpEX7U^sQD55(X9yH*fe5zH<dMg^Gg5UtR)7Xf
zA=xXJnpkFH6;*9wxrr6D(h;eZRMglMdxtK%wL#9GB0s?z{`b3;u~xLoyU&bPlyjX(
zJ7BchXkruHsf80QY^GEu_L|sdVk=#%iIAR6l5aQlQuz)#3hoOuFxr>t!?1Rl*lp^E
zxIH2;HA86`+;8H5iDM@IF>%nuA$oiE@yE0c95(S6bFQkZ!ys!-jU5q#Im)KI!{D`H
zMCxDKJT2sC@d*~#H;=O}qg9cmdl`e&25ZVQD=S&L9ofH5vT(A68Ww6=IK{%L7S6Iz
z)xv2ODqA>1qMdH(LtR;S(ix)_X%!1+T6zV53ygd$qVUx$-Mcw_oGqZbP|8UTi>_s%
zwuO2YF0k}UR2>U-Eu3rV*8tA3v<GJ9wCD3IoNsBDOAae|-ii7Rx(h8_WZ_aedHR1#
zE3-b694)>?Fnbv}yePwE7S@kems_~P0tI7oW<o&QJ33mGSZHXWm4zEEq%4$DKNiv!
z8d<o~LNg1^Ei|^!#KKin!Y+NHF?V2jz<n7-<uUj53}xYJ3%|EFcsz7dOHZD8@z^Og
zsA<8o;9IaP*wprOh9mUDP6n|nn7OsS&uG@E<c3rAE@x;VV<BfDZy{?TvgChsmOgiY
z+hP0_ZERuTnYyj{HY|UJS#IGP3)fk=-oh;%jcYBmpgafkTN$$>{bwy={y*vl3oR}E
zhj#wTb!Qu++8F(F)SGCfJk9n^{p*Z3sv7*e&Mg*hweW$34=vng;dVB(#A#!pEoHFK
zPJ;ZI50}=Ns=b9fEj(!9Aq#g|xZ6S}3!N==uy79>f`81W-l}S8`P&@+K8WXWvqkQ;
zaG#}*N_oHn<+<O|f6OM}n_U%?M*i99VGCU>JZj-FOaFK15fPqsA)eT-<Z%m6Sa{OH
zQ*5BK^)n8CKgGk&2Jw$TM~b^zc$)3VBU7szJXw#KKWpJR3(s44!9q_9y=ZAC882FR
z%|dqzFIjlmLN`l)wDPKjFGr<b5lj`4!=D85|Fo}Lc*8;u3vV&!<9a6crlp+;<>BGr
z{2S8SwET;Wci7_h=^qA;s;`5+E%dR_-@*V3eOc~RMn6k`KX}C$m6iWry~`%f8I|uV
z8OY|o${1{6h=oCd`4ce4e2*5zw9gymV-){Q#BcOiBLC7nl*Vk~Q`)?Rk1c#+VVH&C
zG~>th-;MZ#Wwz!Q{3UOR?uJbDxy2W{FxtWxR*;gj$59dsUo#1RO=e+)ROcJoq|}{%
zq-Wi!aNS#L8bPCmKU(;StuRLYX5nWGBQ5;O$fNa(6Ti?5#%REAndv~-<)0X%c*f%I
z7XDz}Pd7#hCE$E!tc7tFW>}a>yX7I97A9GkOdFv0*i$^w`rrFz{EgKV3w$b^YGIlH
zS_OYvK75Rt&ffH#9z98CS(t5M0XqftFS?}_&9m^^7&TWY|2N2q<$UV-bPX0+`UOJ%
zC~v8S#e%7yC6=Ci-d)F7W?{Ld|Afikg{=_4Ud-SsO2sLqixL-WEUdM#+r}On>*!l(
z>NYys*ueM}iftG+HqrUhRoXb+#uf^1;cp8^Se%9J7WPoX7Is*A4|J!6UF-#8^dE;P
z316Ukh@$`<(Lw!SyU)UY3kNM6qO-lR<bZhBnKCXgcvzb3*MExtvh+-hE|eo0gGVjC
zQHe@6VB;SP|I%(VMv)B;WdBj;M~aV2LV949xND3$!PZkmj>vjtz{W{7IAVVHv~jYn
zUynS+#;G=jK56i^8M@8WY^}hG85DzO*r;OT92<3QoN41M8`W)`ZKJA<6UVA*HqINX
zsQJtJ2Ez7YwmxYM>Z+1a%hsHllxmO8t+tIiwth2*qaOV;>A6g6<5C+9Y@BbSo{fub
zTw;S~Br)LyHZHVrk*y~QgUj_w1p)sV#h-z2e%tQ$lKQru12A}*jmvFZVe2Cjcr-i}
z#pHBfoSzVs*l1|Ow-MM#*(kNq%tmt?jci<Lqlt|&TThaw4J)~*k<r*j=8h8T>M9#b
z_{{BU8%=FJ^l&1|&a!T(;zeNEuxz+eL0hO}<MBsIH~^`!ii+j%#L>-T>2h#++D2&O
zMjJP=6dPF^Eo@w8BeD_OxW>k{HWE=<-bOh^t!d;WSTQnI%sD9!k1XUv?)lI1g&A#2
z*W0+kMoU}2<w8}n${b2s*?LEtm}1;)qqU7THrk4ix7fIil9Xy&x>YzV=yqGb560&L
zGVid_&c<Cf?iS^@w{fQc>Ys|D00g9DQpp``y%j=@b+Xaf#xNVhZQN_)J{#Scig#^1
zVB;AZ&)Rs<#zQt9qn2zv+&^sN5w@C*F03qnZ8ugi9~vzy#UePmJz?WX8&BEjYU|S$
zxL7pnlM+r6=zlnCqSJd?44V_1=WIN0<0Ts}+jzmoi;{m%_K!M_RqSZ2S2spDQv8aI
zS4FEFiCE>=*c|(`4`k5{zG34{8-r~OvC+fETQ>T!Xd7=cLmRzq^bs5GX``1kEA5$X
zih3sKYwMH2xj4fhnVh2Zw=uxRAh~F$18tD<F1rJPo`zj&yl3Nm8z0;F#Ks3SvkQ%(
zHa=pP<Pngzo+(jseos^}+u`RAYy!?ssUqg{DdXFiZexax&ux5R;}097Y<$TI+W5i7
zk2b!x@r{iUG?G(|k`GG0wecO>mnWmiBPxp{cxkNqUaXxy=O-IK+xXSSZ#G8S_(htY
zK7Y_y{k&P>7N{-?|GTJ>f>ET=Hpb8bZA_-jbQCbgv3t@tHqc+7GkK#bm8jtf(q0pV
zGB@_ADYkxao+epMm0rfRCVqIxb%~iaX4zO}V>R_=V~&j_HkL}SpKD`2otTYz5~LsC
z*Ov=zERuW{3zPZtq9Kv0tBqx1>MLxlw6WaQ6JuWVLNtj#MeRIAk#bhO*H~j?Et`_U
z)BoGJ>``Mq9U6;s3|60?^=*{oo0#DPI&(G$pE0-6ZPGSs8ar)lx3R<46Jxd=pUYU#
z@$XZNxl1%t;UxFk*k_}sgI*5y)9JBGI><OUXyXtaql5Du9JcWnEy2NQ4*q5X*{I|I
z4vyM5CPrT5;2#_R+W61Lahs=;G~^a-#qu2&Sh#o7;zZ+nvHuesz2w5DU=AWDIylAA
zD?ePcImywrI9Vu%NDdGTR(5c@gR>pfaBzl$Dh{eSda3hFM{jGM<)EqnK9w*}F5PfJ
ziK}@W>#I9@oTcNf>7bUQx5mzK^n-A12V82a!^)QGooKc@6LQ3<>)>2RuLN@IinN}C
z3mi0d(8R%o4lZ(Vg@a-Tti{C+E_Kkr!6gprJ9?djoA2CEc&L8SkK71oYFy^vaz}4j
zva{2n(L)*zN*tsdl!{ceZ5nMuM^E5cdLswiguT+yFF#No3dZ*3tuhB!Ij|hq4wQqd
z9W)nR@mN?sY&LcDvly>tk|)8;vC4En$~+wht^?me;OIvQs)8AMjvhNIbjy`zF43nQ
zaM6ruvkoE$_c^%VLF^!LaGQhM9pqS|gX<hz@1R@+=5qbD4z7{XnJ3paTL^#aSjBCc
z8yvKBaFc_Z9kg=vYxz{>jRL48R+C+?wS!w6-0J96?tjNBt~Pvfu$X|daWk=vgSHOt
za&Wh!*Tn8{(9S`72ec4o#S-~kd?$<8r<c?J;IUs0?s3pjsz$d-+ot|$Je?eL7Qr}U
zr%LaY2>Z`99&qrWgJ&H)=ing+4?B3m!IKWUIC#XtV~$>^rzDR`1v#`)nHBq4kF!%0
z>mctw<)EvBrzL+j@iT1Mng-uK<?<ty$;I>M9lXE_I(Wmuiw<6L(9OXs4qkS^4K*4+
zcVw6kUt*!Xz3SjK2i<9zE%oezi>Rz-opHJy-*nK!(QggCBNoegy~VP|DIWRvHruzo
zKKqYrysUL^2Yno@cd&sS#6dp?V;qci@UDaY4nBAAg@XYO20Hl2!N(2;IT-BVJyyZd
zYsf4sJ5CL8KuQatsz0Dviqa^|ZR51eLuvMZD85VciGyJdhCBF_n(w3!`s^}JEli3&
z6SJo<T$SxHP7iipI{1qD)65)v?cf^+BOHA1=yPemb?}{|_Y+xV#$+n0?gt9SjZ}Vs
z_IxQ-%3D7>80p|Qhd-XhN8{8l4t`~)ctGo!GLy2S{o&voS=1dZ0*{hz!Ub@uiz*%G
zU_ASXgZU07IGE^Qx`P=GCOMewfX_bDXrB(IN^4fk*7!~i1!HID8z3C5W>R1Wa~#Zd
zFk9T$qn8)4`6>jUw3LUzQ~%~_ITq3*IauLfk%Pq!mN;1I;FocFp2qmW2PNFmrstts
zSSEdwTWr+rN(ZYPtak7xHP*3&7bRIk$K_z1_$BrQYKb}MDeDayY;>@R{ldj5E;c*Z
zLeK2rh=Z*(UD}d^eGaxe*x_KeqxaEta$5WEYL|EnP6)LN-BrAYF77|AeC}=S7qdS=
z=g<0HX)N({y$;d;JNS!&@kb@%RNFmYI<c%F`}<J`#~d7YP~_qt_R~tnvHC^-I-mk~
zd{)H#|0C1VjeCNNO0I6WlU%^nLjY~;L|4YC=Sta^nKPXO`KP)#&BZw`>bj`x;&d0)
zU7YQL>N>;4nJ&(9QN`6gj*;2=RjGkoQ8icF5~Z#1>a14{7d2hfc2URGuCkU38V~&*
z4TD{kwWF2NeKCh~U7Y9Q5*PJdobRHZiwj*`B&jYCQ8_tbwrprRgo|CROlGJ%I|mC6
z2QDsmafOQpE-rKR4qCKduRARqr?!pLzx60~wX3Ho(wrK)NV&M*!vh{lT{Lnr&Bb&V
zSGs8I;#n8ZxoF~|%tdP#x45{<g>n(Oh+SOmqNxktMc|^D6lA%uUG3GIySlwhq4Zb8
zjtkd?=jxdo=iWTnv}nBIq9tisl5n>!>mqcKVX7Kh58MV~z1S9X2#JfFi|bw7;DSCs
z@8Vh)EnL(XugYCq<7#8z#etQYp+4Cb*Rfvjm9SY^dP^5KNgK6taigpE!n7gXY;d2N
z5pEXUGOJr%+~(pwCS-M7v~khi#htF+p>FHq=0}ZoF76QRQGqOo0}2bh%f;O;?s3u4
z1vk_<?eE~~)o;FF#=DHu$>oWYxYyMKP=%4O3YU%79_axW54w2V#S<<ba`CW>M<^#h
zWWKD3dh6n%p*ZtkylOpOJt~TN%++%VHaF|_q>HC3tk*?XW+hwsobvIB;2BXqi`#Ku
z$@4D%QjQN@40Z9Mi<exy<>GA@FN;oIb@7^uZZ2LCJy0#w3HAT*c-7s-8!pD(Ui7+X
zm_|;S-*nM~MqWoZ4PEihhmCh=gf0fS80eyxi{38!xai9w#%u3Qlk0zbQ9l>&y6Ern
zpRopa&shqqKyOA&Ee&!pn2L4r0TuOk@erxhds1I^3Yr0%j7sAREo?ZB(I2_^*u~E-
zM!NXK#V{9NyZA<`Gn}bheD2~?Q4}-x+LnCb>czt^MJKF9izW@f63n|)(YG$Xle9m&
z7$M*Xn&OoWzh`yiHAqtGg!Sb*&rgigT2G~Zaq+8*@h&E~_|3)dE=Ic;<AR&He~2bW
zx%!<zx_wf*9k$n4DwDP`UQcq^iwVe_=wgzKsqA+n^h=wQT|HZyB4UgiuisyyrQN_i
z-<ypYE@sk)c&OuHmW$cU-^F28#Kl|}>s+j7m0iqtvDn2D7bkH1<u*EpFjn8iB3F;C
ztnv+aYuB`tPRzv$7b~T4X>XjME_d<Q6%Ch;SAV)##Wf!nYiZRkW^~r?g|gO+Lsc*i
z>&2}2n6SacMi)ESWG*(*`McQ4>Pri5adGlXx-&8@EoXbdCb`JQit{08my6vl_PaRX
zVvpSAW6nModj(TSmc<e|${dsod6({v`k_nz%f;U=PW5n_ha)bIvc4WFc{oPr@8Ulf
z$E6kak5~WFbx%<I$d{7TDNHbmJUwZr81QhShf_T5mKo%Xh~Oj-CwsVHf})+1@(GA(
zD|<NILlqBadU|SohNow<RBtl}?9OL-sOo9^tl^=W$6tOK)!9-UjB4sGaJHw19(D)P
znjUI-_?&N<%B+A|J;y^`4_Ob9hjTrg=iy2ZjXj+2p`M4!JX}s;xcTeh5)bt~?d~q}
z@X{s5#hxC#*x!jM4Bs^4xPK|d^Yk0G98<{Q)7%vvian(0<R!l0>G!J}dMJ?~o93G5
zOSzIyZPSG^!$zK7oFSm{n|LVmV0y4TT;)M|XzHPvr*|Y7fqN)dv$FMz*eJ}0@#*E7
zdwQ10+-wgHv+@vla78(ur=M%sm6$(YT%l&Dv9yPbNWz`^(9=7`1T?VgTN|;5#6xQj
zw|K}=Y!59wTvrk2dZXOKH6rS@k}VsqXJf78>pk4y;U*6^dwTxX(nBi`H+p(Ht-D^~
zMHJ2uu9~370>)v*Z}o7Shr2x7?csJ0Z9KGNtBJPTdf<yC9GLEqTCn1LiH-`td4jr=
zrA&|>eYCiP2L?NO=;YxZsZo~+dd%%ig)q+-beFl$)31or49Mrin^`?b1$ubH!<!x+
z_Rxj3^YE;PM?5_0;Rz2<divze$2`4+{y1B9g5r5t#2-&kPkH+21nvSn?V+oOQ4<u;
zP~d4S+#TQn4bORao_6BlWe+c~h^qQj5w3f`C>iok(ag4+ho6rWzv}6;gkJG5+S8|O
zaIyV058bJXtUmPlbt#%9UR%ZJK{a~##KSNTZ+m#h!ypfXJ@oX@i`ky4HwAjLSDt6|
z^YE^RJ|4JyUHdGfFT2<=4f?YwKP?*I>HQjBJfdh|0rMyyF0Kyo@S%sH9^UitzK0KJ
z08Mn?q|YRvJRi{luP{FLuwsJZF>RbS@0p<Z7(3j<r>u^Lk!&V*F%RE*_|C%@9=`PO
zHH}A(oM0wju@-Vz7%TXVn9#`+)l9w{wy$`EhwoWm3NP>Y{U~>TV(*)%c(w)YmRnb4
z6V)#se)aGNb<Xabl8s=-Y_HGc{oT{2QBYbwQ_$W<d*EIPFTUtI&ck?*2i)i#s0kh>
z()rLK`<UcmGO>@7d`$5$)x%b*%fmDe(`myV7J8WBVWx+99_G{kd*Ff5Kc8gG5%Few
zSlvk<_0AJ*=CV_?(g#S*xlPYNu9>K~X1K`1Vh?|MSjC2G!?`q;(E)n6w3D$^DC4j2
z^oA5IWF<YrDSH2idsPgs_OQmoMh}}jtYx|E8h4bemvXry!~Jodrnf<u<kQGE(~Ku7
zUTj=O*g|8jqEA8H?qLUwpDvnR!^18Q2R$6}u-n5P5BohF@UT~`g&X=jD}-jVPl9Z5
zdSLnuF72{LhiS=8jlVqnEr9*Ed}lGYze$gH`0)aR;2#hFQq}d16MT$6RQ#WZ*C(nX
z!N=(aYifCTrq9E}OFo>aD*1qqKPD<(H1d;uoZ_RzM?)W{`Z&$UxjxSGQQ61oKC1gT
z+s7F`s`yYh>yPz#o$2E&A60$bL%G|?oibW7k4&oO^9*!tv^9Lx^ijvxc2dhnZC{_1
z#DiU$Kcvt8U^isjomka4$46Zs{DCtsPBzZ>QP0OEKI;4WaG48yaJ}Us!58{^C5=oT
z*?F;#`4bg4;8^;lJ}&ohg|E+tYT)BCUwd-)JJMnwd>_p4wW$!W+zPWv`6#8FJ{%v7
zd|c_HnUChaK5x3QkE>Ws!A*QUi7NBK^MDAhrWpJ5!9Y!=)?YLz;^FlSnm#Na!_GB2
zbS$~9u0EZFJ7Uy{>%;Sr^O2`WJ^~+EUoWIk<}~Z&WAj8s!6-J{E92{vj|iyA$Vbfh
z$BPr8{0}p6ITc7r29{js<62+)E^dIf@bwX^%%uC-`dFOnMKI={sbRGA(aOh-K5p{y
zzK;)l-0Y*Zj~9Hr=;Ib2xB9r>#{)iY^Km<M>*G!~*+IQy(#A(yA9wiZBCmwC6F`0H
zUzs&B?(%WBkIp{s6`gnR(a}dI!T0#Mez!hBi4&e<6BXw|JVJ#N+Uk=O>3u#(X%7$j
zc*w_7KDzpNn3?-{jKv+*zUUDjhx)2VwOi0D#{Ag@Dc^5-+{Y6>o}@MM1MNwQ9*Ivq
zZzjgmG{P^7o}-!hc$Q}Kpth@ElJ<=p@t+sTS?EhXUiQ(;M{gh9e7r(weZ1-8RUfbU
zcwMZN%d_2m^nB3Z^GKUXir-AJzI+3}hmW^>z0&xOk59i%z3uBSop1X-#mPMTW=|h&
z8Z~@$l47urkG?(z`WPf~_Ve+skN!S-Owwa62R=$d2?sETp(P(rQiFXA@%4iIdlLWG
zNs6^&p1k<f|Dlhe^pid&`}oMm$CSaxcRoI$vHAGI$Co~a)3n+fp9!S`Kc&I!DCRNW
zpVQ{sl&~x^sStLDuY7#%>-|0sE8qC|H`GrVq$7NMPgme$6phEnk3N3!@v9H6RL_~D
ze)93N)R!WSq$Ri1?{bs=CSs4XwYGm3%v!LeMzb&bnCR<~Zmf@S(iz7yLNl#QehbeB
zb0(SK>z4)zsBQA6_?YTr5slf$G#}G_%wq?amYv~awy&pNGo_C7W3wbrf;r+4=o9AB
zp076g8hSlp0S$g%@j_n@!OVYrbzRLRK9*7;KGyhH=3~bswcN)F$>;D*MJp-He|lX0
zQ|y!Stdd(isGT{i^|8*!dd8ur;#)M08q$-Px0P%Z4Ku<fUyt%^I67oja|<&e$H#UW
zWPs-a?C`OZ3JK6Oz%C!VeViHKtN?p_>}5l+c0Ts`*ze=8kH35z;8;0XZ?X?>Q&M-b
zI>;Wuq9>~+ll9IE`G5O3>f@Ny^oY0=md=+7_^`u9|A)@)U@?2yaUVqiP7QEcfD;1b
zZ!%5{a8iIuf$l^I^hBDiM#_z|lLLIUqxh5n{LKPwhX387ZB!2QH-oI>837*dXq+DC
z{+pYussy@-`~T9lt{R|PfO-KgV739y4p1vVZRW;3#{e}0-SkXF`=>~>JsMA)0Otg#
zD{&Y+H^6xT&JVx`d6q?ym@VToNN{0*ivkn}Falg0;F18B1^P^Rk2_h-jQRmC4fOI3
z2VVvo1iJP4gw9VqE)Q@;03P+ui}{oUXc(Xg<G*O6D1U%Q{wZ!0@J}GxBat%smBMT+
zlt~z&EWlNPUKv)BkWGI#>(#($7NB{6)&Xt_U<R-P!~v23b^s?p7+}$(h8w^O5Cr<A
z4t^cL4EZjQAAl~AAWaSYt2-uXCO|gO!&Vf4k4RjHr`uUx$H=kO0$fiWG83a=d4OvI
zT+5j44K4sOPKyB7NuyABo?K5oa~-CoDE3CGf;Kj}s1<F1eWATxd^qd-6r1(tK#!#C
z7q<quEkMTrodVn*pbc9;z}*4b2D<;YW3)iKi#w>sgSss)z0!E54v#X|N^U<{@n0Vu
zC`<$W9|;P7kMPyi+7EONaBqM|13VVsz5w?Jc!(wx=yzWq2=rpngMs#?9ADlzU;pWX
zUWKDZmq3r#9Pb{XF|^S`_T!?KCj&ec(3cudND%~IHEGy2z|#SK9i5_JRO2&(`A|mA
z^8sE6@OFTA0=yXDr2wx6crC!oRImKkcl@E^ZUy{`fUOT1-34$p=8XWa2f9=9;yC`M
z@Vib{Jp#NHfPk+>k@gJGE5M)tg9G#qaN{#ZUlyv2J^?uYJg18u+4*i#zW_W3^W6ab
z0}Kc-kg0Agp}BJKB4GR>0p1HRG{6rZ>B-gm0eFk=<ZQgx_#nWCfu5u8b@lA@qW~YX
z3rja)$E0|}sm1{FTH*6;#h(TEoLS}Yehyzy)wG-tH-z{qz}M_VAubN_O@MC$JebBq
zX?z!8M1Z3Kjs^Ihr8A!Z^8@@C;3pOuU?S@^S^XSfG`rFiH8Q|2RC0jd0*qp(n5=%M
zrA<}@)ut$dKbT~)S|%5n9R`<<2|zlQHc&G)E<iLzjTa6<`zdNtfXM--@LEyy<&e^;
z0j5#@nyFc|!@8x@1I!dKLnt}VPEn)`POFicO?#N4<^-54!Ru?LCiYG(2(U1~rU0AS
z0RuG3l`Ic%>q#YFPf?4hgehtXn`Vky8eo|Ow@y)Hu3!TN_%pyN`sx~~4Ya)gYXYnb
zkeRC12H?+$$gj^|6bT@6y~HHgD0dl$5$>6)wgfm3;2^ss?MLdeJ-}{u!vN1REnTiK
zcL^OdRk5;r1MHLFegPGDq}(Dt#2QUipA0JfE5KpF4DOP<e+Q^CO&t;4UOG+v6X0LA
zavB$>@n3-B0cxaCGmWA&PDo?i2c>7EQ7H|i@zyjoY??YT4K~4PX_(X0Noky%#wo%f
z^Hc%k6O(z<G*wxmoi4P?G*u;yGt)RLjct8OH&!m)aRI6dt|qj)P~JK_jmD=c0yadg
zH0q>rP8zk-_;^9dsA;Ne%T(Po&Q0T*v5hZGqh9sWYdyurIxmfd)71Gw>!oplfZfv+
znR{xddYo2zNgDMjNg7rfm!{Dmjb@BCU0s&O<!Llc<H{RS^Sl%zUy(*}T3eKnMoAhC
z)9CU}8H2o1X>^~`s8sF}@M<KSD=D)8a+(MzOXDg5O6b)>Y0r#MdAb&fwQEiprmF{+
zUty==q>)J@o7Ps!>bPlmX)s!=>FS~B%1@)mbQK6q3k}owY`P*dN@L=5wQssAPa_tb
z2+axQt-OF0)73R;T${%7kw%L&u216z!Pg0$^^MUot!@4up#-f2+$i*>G;S8qI*nTh
z(zq>+JJYx;joZ^`lg1rsw37&J(>Q&GZjJ$UQv~fL$Oz={BIj-zi7-1zLNfpFZbymM
zNoZ%G_oi{5fcu3$Ae2cS>QVGC8zqfD(ioM-BWXOE#)oMPP2;gN9#7-tG`gknL>koX
zb7IC%vMFb%r-air{Xc*Hw18)XJ}Z=yvFDj#amfp5yeKA-nW66bCiPMppMFwA@Jbr5
zrtwZ1J=17ALp?b|y~dVJ<MlLp%}^6&s5jGiLojcBF+;7Kp?a|Iq(ShuP=Z4<RIfC8
zr!gRnfzrxVW~x4E^reZ;RPIc5>rB-zjd#=Np9X_uQlA8aSi6~Oa2i8c%FxnxW~$F-
zs`qFKGu8V-#|Y<xG%CPH>^0I;zD?tkG?va(pE6n+!_pWowc9sS)taTPQO#0S&P#os
z#uuWZyN{*V9llKCt2FYn)Yn1@zM;%@Qv~0oF(Qrc)A%8cpVJsAwYY1RdZoDJ$23TP
z(k`WlfboA}akJF#lJ-|N%`EksP~PG-b(R`Ufz#NR#{M+Mvc1ySl*Z;X#-}kMjTvdo
zl%`)hOC6b|CZ;hdjmc?DNn>gn(`mpDl}@9Vn5}r_g<d&Z-8);oI$P1b&q`xX8gp6e
z*=jcXLhls8yfnTXT)HrgMdZv@^Mx*81I<<kW~;?=cWD~S(pVyxk<XZ;mP^OqAan&I
zr}3v?dWQ9BtP;Gsz*&>VTEXjtHkhORwkdRDA<lJk)D}_8_B3_~*h)8;Mu$1-uT+Y3
zXBxZMZRe^Eb5-{_>a#g&(j2v$+D>E59Cd7t+M7o8xk}Ad2huo5AD+hXG!CV4IE@8!
zRmZ-mztZ@dnmoDWsI<|ubJdW!>Ih9}uB!P`>9I6^nyYyIlg7UV{7U;&QHT>loF3wg
z5S2n~pQ}y@acT&JI6haMD3su&5GNNf$Ko3E)M+8EpQqZ)Q<X!sZ<*?LPifP6s!E76
zLsSoOc8KTask1^{vM*JwQEJdURW$@@HK8NssTv__hBz-o@%5#(Lj2w*bxw%7A!>)H
z6Jq8(wRN64alU#hR>W0eb#4d->&@59^F!1NaY2ZYRZDp>hYLeAov&KdEG4}pMEwxg
zhG<?p^(WVVLO3DZ5Dh|H7UJ>{SA@7KgksSlj1cDxDr*v=Bt*jy@6K0^LtHmsr9w0c
zab<{73Enebk@>=W^~#adXK$y7znZTm%~xe1R?k<5=BqOosH-VMh;9p%#S-5wYZk&@
zpqf(y3)J0x%FIv?E;lVu_bpI%h`|fghy`le0_BD9L*zqH)F4DU<bOMngjl~og&}Gz
zR8feGl#&&CY=L5lB@0!0p~{80b)oujq55f|>atMvSg6V+pKFB9Sg1BER8&F>Rzb8u
zJnNmJmLXb&_%X&$F>VZTQ;20DmWO&AyqPq_`ypC~xP_UAxGlspA)XC!dx$n6?ho-m
zh_)gBv6*TYg1H@AsP2%=$!Q<r&JcHnxI08gHf7UP#jP5PR0q~&k-A3`5_AgDImEqG
z`yzFp#3W!2nMI1J9t`nNh$likDe)hs>I(7?8(8#6h<1w<uSW$u7UJ;`Pf5bJg+3Kx
z{vs_^S4sZSBK35L-xjH_nx>wkS%!Ek#M>cW2=QWw*Ftm;@luGFL%bS-sk%w3pF5{s
z2|-G!cy;KUYF?(n)<x>|5N}Ex;x`0P<{kwJ!`i8LLi7yLKg56#y~r<1^$XE>vFaV7
zPl&$kaf{Wj9a41`>ncyXzw}+U`(pm%C3VYUHIN;IhJAl&dGpj@$$UtNA&b>Ri&eM9
zir|OE>Vps;QZ_~lF*L-{3sRqj_&mf%AwCZAiExI6xbV{yFWwz4oKJ;LU#!UaBE**=
zz6&ve^MB!g6XIJ*@^vAHEp91ecAi>9`aRogY7ws=3U^t`kCN~wp$z^K;@1$<LQJQ&
z*`q`J5n@z`Rg2Y;mZ{2jq{g&NjSg{Ou^Ja*e26iE85}F%&(~C|?rK7a$swlDM7yhr
zLMPD_TcsEzJ$;GJYHA2l24~PwglM@$F=t-0Ld*>@k2$wY%?>d~qA})ywyF8TBwie1
zL5PJR7V&vUay#^zqJ+dtLM#nIIT@{)+*%Q0B{>mJkMJie5+cYTox$o5YeH1bpjrlN
zL#zw2d#O4#gY_Xc&~s*RVg?&SYzncTRSU5>#Fh{o)HoH~8tMm)eQf0=%BYpvMwiPz
zwM6X@O0ZMFE}^?a>?!c~(lVDQM)-b-noe3?a*z%=L{SEZLL3h97fW2CE?cUaEmePq
zIAy6iBJ`+G29F8&N9eyH{wwe))d?BgaB>Ns#VTcR?NZfosg{isuosr9flJj%84O#h
zP8K?PsX8TtB}-M4-l@|vsGPy+8Jv+p(`BmFGF2sm^PW{_E>mY^aApR~jhQp6XP;FK
zmZ|C)oXrRsoS#9B3~FY;N4BZURILnZXK+piU)D%5Rh<kTT&6fT<1Bq-uM|g+x*42Y
zwe;K!-dv_WU#9A1a6tyu`=(MET$sT{88pb?GT~gD!6g~g&*0BxYU?sxi)(77F3sTh
zGIic^JuWjhKI31W!4(-4XJBMdl0iep-&V}X97YL-o|!7+icc*)buVQVBxeS%%%E`w
zO)_Y)Tv-{|8I%dWN~jWgwNOTAnn5$c%?lh;K&nLvXC_WY``a5|P;N#~RCswA_<}nw
z*OQqrgA9!=i!h6922ln-W$<$baRx~SFJ$nd$eg3DGI%J1d<NwiT*KzeptIa+k->Et
z+@3+346bMUW^jw}S;3YW+*H7=1l*XxYs(dH@wz#K)`h!d-YWRE0;l3u+YH)gaAyX0
z6!`55sqV_)?hHB#zeC~fJ%zi>pJjC_@R{4a1$<uy_X~bND5LRuZ@GFngC`4dx(IkA
zgGURT#{@hs^a-JhW*0qGxZ730(-}Nd;5;kfIib%B9l2b+l)=k1ZwYqG;FSz|XV52u
zSE-f^wiYzgJ%hI;4r}px25%Jbn*w?WeM{(UN%D^1o<e&`b(pZP1m73hFN1dl^cOlv
z=m4Pug+^}{4Hhs&D3iY@;LH`eu|5#|q0pg1Kg!_a3|{}J67PP(K4|J_!!!6agU=+w
zH$ut$T)-DXzZCkF(62L?c|`XDUf&Amy9`DMAm{rGeh~bl(7GbV$P9kT;7A5XGx#-w
z-!fR3!J-U)mpBtLm?+>6p`(P3&R~pyu|k>iI056?rzFow8F&KbWH32{DH%*H#GIMI
zv;v+kV203<$F<nA1kcW(bYKyKyyj*wPnh$CE)d%KH+^?8U0DV@g~Q-d`t}UgWU#Ej
zSuS8j1}iH#1^y}lZC9wZ1<vLS)(KuObVGr^F@sG7{Mx%^EM*HVs=(Qn!S({)!9KoF
zx7RM=?9O0M273h`61uMtbAJX03izOaCs(M$0{$xS{}%Ap3Uw@le=@i@i%YWjH-rB&
zsFKB*SqxvHj%P4hlw6d>30ds}D`jz-00<@LL;)uWJvob03j9;EdVb3Ym9scqnD<<*
zgJ)#_XMSg8Q8kNm3-POEQLBKfXK{7`*T|x#;EMLDUEtRdaE{QrLXQlsbY9`^`2y-?
zae;sfg<d3dxzwnB7MEtxEQ<y!RRiHS5qen`mkYQ;Xi8{tmOok3)#p_rprO!;tV*+J
zB*7~SaT*KQF9nqezDlUd;_5=2rdd>8sTI<^z%jG1sI)8`;rIo<E5H+KOOhZ9R+ecq
zbpBa<pT!SZL|MdHJeS4uStMEHvgnjW=PdGBlxJ~E7Pn^glgl+(v@GO&t$-Hf3%I_(
zzafhoq@Y#>&W!?Y%Hn1LtqXicyG`(&LT?w^rf|1y7Iz44C$#<l@mH$5vUqx>y1T&X
zAmARM9kc(xZ}wfO?#<#p;omRx(JUSi!0JDk#Y0&<EWs{WJR;!#`ZayyW5Rhnizl*p
zvXJU&0Z$3-nni`fWNy!7@vJbvmby<^sb0vUJIz&?FA9B0=*vR8W$}strhQewYixx#
zwcmIni#M|v!pyT+x>EIEzxY$Vo5fpMyq(26g;c!-^c31lC|kLYfWAWe31x=6R;vC5
zJRpmK1w1H=!Ga%b^*^8deimN|=YuRh%wnkEVeHOXd{jvFaTcEluJ@<5Kwh6p@C%`z
z3H@AX*`Ml50gOY=*Mh$(aK6pry8<2|fF}K87C&XNE{pY9{G7$eEaqo<LOOoQ;@2#u
zXE8%!{+7kqEZY64ewW}MLPrT5Ep&{~oJcq>i}4biki`@MlxL!VNm)!5(6vyPsaZ@D
zPG8}CD0HTj#Z<H8*6b|i2q0%}7V`wt88XQ0=Reg#;VjBxaTZGiFO__jX0a@b<yoxA
zVs#;hm07H+zy;1siF{EOYYLpT0%)8Yve=l#zAW|&XOqyqS!@=tC5x?DY!kdoDCOBM
zU`G}^1?-m0cMIMlw8H8bv(hScAd7=p6!DQ{Tk#>edratIp??YGt-l2v5qeZ;-Bs$J
z!rgxb{FlY?0*6JMAbD023ZcyB#0Vz|KDod-MZl>-Pm9oKmAL%~RU-Ty;YfrtBb*iC
z<p|v(RE<zA!i^Dbicmem*%7Xe&@@7g2sI;I8lgdiS`lhTs2Aaa2z4Ty6XDzl=S7HD
zsk#xKU!?}DQn!?<yH~02R;jU<sD-Q4`4M)nQk7S$3nN?<p?(CrL&J+BT)0|YLcCgT
ztyZm9tH)NW#*K9FvIv()D5by=u82?^Ar<iiD`iAr&Lt5VMqspeR;w>ot8uH<%GGL}
zp;!v{&UjrJp-F_Y2#qB^lN?&Du3`n(Xu(tjCcI*eVvwL&gys=45wZ~u+}6;fND-U}
z-Wp{^XuC#rU87tE<!%_E=Njcl2qL5-3|pfZ?e{fmnOuy?94@)NVMK*QxHdwI2)va<
z$VJFU*uO?qUaQI_^J^qSCSiPDEQo2Zi*S8}8zjQzYgJ20-b%z^1af#W!<!?tj_`DZ
zwQJQa5pIoeZ-o0I+!o>X2zRm85!x_SggYX%liZm3t=mdidiw}>Mqr8LP<UVRB<>*9
zxhF!$2$X6<L)A$Vc9zIYSW!FD`y)IM;n4_>NfjQH_+27A6yafsToJRS6!Ay|>Zi?G
z_1IeVc!Vb-JVh(rUGhYPH`l7q)~adyOS(oFFA>N;;d1qi)a%&@&qX-8Ry`l#Md7><
zVOA5xD$`D0im<tfs<lp)u2Zi>cs0V92xB9>7NL8D;SoNK@Op$dA`FT!m}N!i5usOv
z-Vxr45Uo>h(+sGqb?WJL>Ya-k_Kft#>x^}3@H+L~I@Kpa-w6F93}Dd`p<je|BOF_&
zYOdFDn2MP&NHCC=wq9MkUJZ%RX}x+c!u#wC>s7z?>VpU$M))|wClQ85_$b2q_3GGq
z_1${K2vgRpZnrnA2v*;qhDBf!g3l;Sgr6e(9N~)yUq%=a;rj?*MfjRczd?N);T!gm
z4a(i1b7LmVP}2xqHmEl?s2{{~ex$&ZVS_G?wIdxF;g<*mqayqo;Wx?TcPW>tm@{wv
zQ3zIKJDN$PpmA&_dXfmMB20)dF~Wif3nNU5Fge1s2-71>p;fF^b2g}{<m@lGsiE4m
zK{x%32s0zhi7;16rxIpG+*=2WpvG7c3OO&rKO5A1Q4z(c5Sv9Wim+G|yF9`YNxqDI
zWTRS27qn4Vw%JD2d86vKQLTuuG6EB_BJXWfEM;|sH4%13*u{2?ur9(TS`Le#ZHVeN
zias|8t<WUtmWZ#%V23b&*r>Ke*v{H*R1}p8Ct!&bj6&{?u!p@M!a=FaUQzfy5t4Bj
zf4^|ptcN7RUy|)%!L0S#jXD#y_)$iSki^Kv_$R`@bdNDEit%5B<Mh%o&WceK<AfNe
z#i$&kQVhg6ImRh5PK<F<j2fF%lTGRvYyDrU-GH(edzUeIY78!DC!5syzZWq`aC(d?
zF<umWMvS$0rS9CMcn#X5s>Y}mqi&3IV^oiEc8ppvYBT2;BQ~j;G2VQqY-9g2;y2vV
zshiZgO{z|ewtdUaiE(t3Vpil|GO%n;ud?%ETo5DPtj>>7bF<=APeAEr#e~e~;ux32
zD2>r5M*SF<#&~+ODvq(VMQMW=mr3xWcgxyuR^(qU!7F0)m7o!$B*v7%WesDbVsMc^
zTU6S0Kw0H}WuI<VSH@@@!-`?YXcD6=M$;J0Vq6vDj-pZ(<LVfrHmfC@)!xnO^ew9X
z7PbAIvgR>A7b>;4C^N>O!DR#gOWm|Z@!{Hu;l>DKWMX(Rd{II=Mi8Up3#CK1=(^m$
zMZLO3{kBCd+@i8EB33*`i>+$s7Io5Ab<tMUY^&<DRlT@X<ztk`cs9m!F|LVmEi;MH
ziIHPm7vuIAZDL#><AxZw#JDv^%NVU<+#I7d*Z*VO6k~mF{aDI!Dea)GdNk(>*p^;p
zzY3neRoxaty;F9=Hnn}Liu#tdWvye}MKg%;ORutaF<$Op);`9ZL1o;7xHHCkgUZOM
zvrTn~@oC?(%r<pTg>JX0w%gPb+f?Tm_r`c4#*;Dbi*bL9E-@a7vGsWBffx_QcqrD>
zo2kv!!!dsBQ`T#nVv7)T>|I9iXsn+xAB*wDHZ^IRqO_04Sg}ocP1T6z>ZurAV>Ito
zwtt(dyj?vV<Cz#2ZdVMp=~?#Rz_RCKybxmu<)qQZcqzs^F?zBVF}lTgHO6Z(USWj(
zWy`tOvt4ETlwG}Db!VY5dc=5(%^Ks&da0MUt2bkCBc}6q)p$@DwMXk(Gq~(++TlQ*
zmR0B#qj!vcG2W$RZdQG0Z!vz}u84<hSF^UOvfgF=V+@EfkVeApxmEqtzih*H-3tF~
zSCs~p)!v~7v&-yI%<%mfAF${cU&Z(^#?TnUsbL!Y4)u{}>=SP5^e_83#(pV%Sd35J
z(T$tmp*~}0Ihx}2d5n8@=={H+RS(j4NxzQ4ZvJhI?_zwzt|1Zn?ocCQe7!?`AL9pM
zGM~w04%U@jy+i#RV<fegpl5<#V*DDTPJ(k1{1)T)7|YoxG5%oJh%uYy5o2_WF)=2_
zm=t3yol;P8aZoZL#yHk1T{51nCLGf30w&XJV!qc`GE?YOp)+C}+M%Y!m@a@Z8RW%i
z2fL+aNt}w@=Ej&GV?m60F?fp?BQK1xh(4hZZE*}Tm(cI+)H!^Y)*>yFyR~<!D|V`t
zR4l!RrK%=a6=QXbzhe9yV+|c$jGZxd#aPEq6l04-+Yn=8j7>2%OYpJbDPBy@%i5{P
z=iRL_wn-c^x3iz_)OUACeB#|P_OJzG9Eic(_Qu#Jk(rRuDk2|@!E6sp+C%J&I~9YZ
zyvtIK(0S5<CpbC5G3uE<KgRJG|4I&&fsvUrX;Gr{M56Ht2`VLcLWCjnbpa<zg!gx<
zQxcpi(aub8T7t@gt0XvG0F$4QfJGDVB4Ci<tis(NcB*O#swX&GGUTn=32MmQnh9zp
zm|7^80`M-A*G+J4f|dzdB{(m^`3ceqU-(D81Q#T*6F3PjOmI<x%M)CY;Nk?AFmpE3
zxT2GbO6n)LG(m#|D|V{GJJsz@QRm|Z`6umCwRfp{CzKQ?FcMsupmBnd1Pv4XdfX^Y
z(Brt_I7N(~O28z8om8WQ|63>`zkSc5CJFW(H=0woMI~hku97&43OS*qzf*K|f~LZ0
zRzY{E%XcYelHa9F>L&pK6Oy`;gD=rM!8N@UZw10>C#f<CvI)u)T$3P@aubP30pf%o
zj~5Z-n5QJ6gyWo|Rz)R`?NWn^O0G@NB0=|E>N-hyLxSt6F-L3W@18}h{(xQT#soL9
z2@*V>;N}Fa6Ld__DZwoXZcWfW!JUcTM!${KPtZm%cS74H_<EPRBSE_a3=;DiBNsPJ
zyUD)rT?y{4h@apd0W~|M7VlELHnVC8?oIGuf`@3IyVQLN?q@6PR_E+i3?{qP11xU0
z2F(BA1YHun<4pX-ZuRbN^+>{>IN{FbDQ=SX>yUaP!IKG|Pw+y5rxJX#TRoG2{E53&
z*91S@Tl%z63h-=#=MpU3t%kf`#%);wZr8q;pj(1h5^UeCUP|yXrCO}!bV?QNQLiR=
zjoNFPdW)J&@H#cKhi_)0)*hAGquxkB>I;5&kLr=&#XX8(&>r=60#XXxD?#rB3;3(I
zoThye3{Eg4L0?Lk;N1jAdm87zWDH8sKf%Us#?fxZfCK~C%I|9YdUs>MOylRC#(N3g
zPp~e*`UD>&_%Olm3I0ehG{Hv+zG90c_;!!_IKl7)pC)+c(V|Zh3`_W1E%oes#shB|
z!{0YPOYnJuFA}WTqYm#;HTJ46*{6CLWqTFN>i3@U4Ktyx68y-teU0xDj7ac(!n4|o
zrhQ~=-C+#hWt8t#yLK5rCHOhPTYJ@S?0vr&BNP5K$@qo6?_lbspN&erjbG_ZdK+E#
zs&wNbW<Dyx=mfJ9%t<gN!C3Zp%9dbUg7M5h!K4Jcb{oU?stGi_p~me44bsU8rchDu
z8Q%9s`FqBwy=vaR)WYt@boTMRY6i8}%{a7I5fjWzFpFx;G`#djgA&e7Fpqsd!O8^l
z*#rreCRoO{J76qKuqeS|@>duPvR+FPRNJQ>@22tUVFrs>p5X9Xx(SH!hVds$OmNpe
zwT7-{pPF+ZwVM5IpJHVf>@dh*D|c7-Ha4&w6P%Gll^ixD*qq?+1V<8VNw77+?gV?-
z6E_;$66|D^6C8No*v`HzpyN(m95a06bz@Z@qrn1WFU>E(AqvAB;)eSfjUCEs$QJzg
zC*#g9jDxJ^K;zPZ#$O4Z7J1sfW~6r+?G717*|`!RhZA%7CqbicjQ<iGPw+2w@}ALe
zpCae6fksgdC*<(sKE=ATzLj#Aw~u;O4|g|C%Hiakj!Z?JlEbMvoR&l79Pa+axT?1?
z=p$qMKDA)Dae5AK-%(2ICFl4)b!HA{<xn?=b91PgL$w@g<xo4P?V)-OHF5|>6rG*Z
zZO2w-v)0Uk^53#YmtH4_g})mgj5XE_(!q0bAUJowIxmOwb9nXx<I)`J<#0g`7w2$E
zPIs9Lb6_i6l*46z8b>}ih@0<M^>es>zk02=QFCMwEwj^p)qoLlxIBmceGJ<C?_;!v
zhYd7}b1-r!$)RBm9dqcELn?>T9O4|39QUtrWe&}9Xr4pk9B2tmawyBu4;U}(S6Ah9
z*SI=|ra5$e+fYI&Hrr+Je)Z#ib>YW+6~D;L!O6juDqA_&IV|0;c(J{_9Q+)zax2JT
z-+nc%w~?lj52zD9G{PJh%;a#}*3@%*4AO|TKA>o#Q$8_rIplM=m3MO}&*7RJTIFzK
z4%g<;g4NIA2FbSR0af15xQ=o9X_dCjf!1}y0d?;I_1OS}joaok<E_!gO*z~w@mn*8
zH;r2avwdGZps3{Ab7+&pojKf<L)#qg$iW)M?>Esd2l|8|2XqG{y>FuN-%;Im-ycwS
z=WtIBY=RDSeZ!6E2NcbF?oS3eopZQ1hgWiVHHZ6hxIc$y*tj`7ki&yHJf6c7IXslZ
z!xS}#M{{6z?)<(%SJ{Oven9<qK($C3KE`%GVodK}GO?fWTtDN<9G=SIX*StGt;3oJ
zRo5KYA9>Lv=;FE#HJ;1i`5a!(@x=`F0^fvx+juF5=%9L$^;%)P@s&YNwO&Spp<2jp
zl<lCF`L!In=g>EYemT6J!y7sD%At1-Z|2a0mY>5rw49yBTVjnpBni7x&m5S~*!>2z
zNAT4_HS3_-{i)F>hb;%ye+RY3-la9>FffNfG`yb;R)k)6Kn^tzsSEoUgL4>?1G9Q?
zq`}tjy343GL<{yo4j;0)ufw(1VQ3B?(JZgUiPz%e96rfmZ#njrV;I|o#!!x%%JFFq
zpV5%=n4ZVyeEFaJJZ{S4%N)L9ugn8^e4WELIgHC;d`>@keVfC`9Dd2+I|-6ALcsSz
zf1tZ4@P88Uv(QF|^kYTlkoq-;--PqK&~}H^9|CxHR1TvHc#MFt^a*#D^40|QCN>$n
zyzrkqq$cGsIfp4ZOl6l5<}{&m>7#O(E_g-`GX=~NI-3nDdo*(-$ZRV%faXhZ5lykc
zUnqbp_KORgB?2l|%a;jWp2Ld5-IW9dyo!x3mF08L+8nm!usw%$Ijolm8*=zV?y~fa
z!r7F==0e&n0=BY&B+iZ;cINO`4u8|m3vu=f*qy_k0%xy)eRPk_w2}`<@SxB`LJte&
zt%^<mBNF^q=ux4^I0{t6DXjVbC&A-66y<fJpCFWA-63^i9w+5-X&w#oI603~^0+9E
zi}N@&kJIv~mPhqGDogwthxPL>Q=Oj28HF6G2sks3vkIK50*)P0#fR0|d7M+=*T|!0
z0oM{xJC8a7DmIks3O-lpc|y+@S}%_a1XMKlg@WV5>JkBzr+yx{AJ&3#HHq}HJTA{8
zD%`yykE`=&nn$s4j66yNG|Z#1fK(x7send#9zLbD^o-=$q;R)Pz*Tvu0;fS!)hv(Z
z68!P7G6ndByOsbu52wI!1$cS%k(^mXkVjgWVIfW?kF4O&Bu<=1lGp1A(+;a#9{D`V
z3o)-3aE;Jwg|-lS9lQJ%tqoo`2&ZKptprpk@a8;P=kZ1!Z{~4J9=GQ4U>*-igxm6H
zo5vm0XC7_xSW}Sm@58E{MCc@xIky*Zr_j5E-knDW0rv>)DD>>V{wGQ2Jnj_^)83cI
z{emA5S|Jtr4@<DC&@OpAB7poy^LR|~;|0zWc|2LbPvueZlFZY2Jd?+UK4s6!t!{Z9
zP_EmN*YkP2AoxY0FBSMN3%E*zd?k-p3;fse=w86Dvq#AKSP$WRlgGDtyp_k>dAuW>
zUU~Eu(31`HmtGj`lSkh?KF#AZ;rGj9uz+`k_7^%pC}kU%#~{IXiWo!kcu#`w=kZA)
z&IfsXD0ryQj|%*c*>(f9&GQ<T$8h04SkU>a0zMb!7ec?x<Euj2uLZpSm-;S`5qbQY
z$8ULjpV!;mKjig0%*^wbztoQs?WaPjp9PE*`b++QJGQ?|a9knIA9;)_;L&-EDd4fR
zWO-L-JS|Z2pOEJn(En?rNdhM4F{Qwnnn%TpG&Ay;Ngq{?2IZKQ$85T(a-3R@IeE;@
z<6t5Fygb&^0P>ih$AUcON%a@zu_%wld2Ev4iaeGGW^id9%L;gTUVlPD=1S%!8LrA>
zt$@`+*9fIf{*`>zv32Cdn~lQXB$Vru)&AB7zd4UBd2AKtHlcfkZWp>EkDUS-b5|a_
z1@95s+SB7BuYD5SpT_|KH;5-cl*i#b{>tNT`s#A6w<B`5Nbpg?WF8anPagjkIR6Pa
zF0{el>I8|;n3c+b0zOf|NkZ8rx%$cor<J2}Icf;=^m3lYrE7OaIrvHp$AT(_v}X!9
zs~lAYR1;dgaQEzTa08tQYnG#yFl(2iUg2&X0q2yXZh>>Ifb)c&U;e)_g2^wS0K&Ye
z5cA@4Tq3xBfz$GY(#y(mxdc@?t`NYwlnN*oYLufyKtrJ^p%q?;F&mZR%5pR=2V0ZD
zCgpmMfLB>Lt}5W~UeL{Sbvc@rqggqcm-EDA#N|jND@$k~)E4Rpb%lCD{c`XXIA)TT
zAVDY~BQ#r%=>IYG9#B&g@B8-y7rpo1J5To6rS8zXfVjz~ZL*anAiXLeO0|OmiU=yA
zBKC#~D2g3LMNkp@7aKN;B1o_AmHYYcdw%E4xz1<qxo0w&w%JWKBhX8R)3CgcDR7l&
zECyY`5RHpk;?L5o7;LeS9RXLAr|HL#jNx%!F2<0GAsxfw7?#A4i6I-qq!=d0kc(k>
z45MNg&3@5CBSddI6CD}D_%l%k8n2FFObpl162r(^5n9%tiH?n7Tnq#TTIe}J@=g>j
zcH4X=IwgjwG0cf!ZVc06m>$Dx!^78dcAtsPh@tG+=*$>?KNCH6GTi2DbXE+*&PEB>
z#ZV#{nax_Ajb48?x|SNlycib5urP*AXQMa7aAOSfd0~7q%q%R2KnsD72a^{`((bd-
z$PJO3Vz@bmJ7c&jhFe(YYLVMTZ;b_ydH;1bdRq(y=c0p`gzt!9X$-es4A(ptZF4TV
zEQU)}B825JtcYQ44EM*dGKPk3=<XQqiJ{NAsCO>9Du!9-qN`)LFNS-0lygx!P(Q61
zA*^A|Z;L#0F1kbP55({=hg=K~#;`7iAJ0Wkor_W*VwEJyEQ~%XN6Efj@K_8r&qp`J
zP<TE{*cjvX2SNGNCu4YuEg9p>rSWtO&&2Rn3~$HqYz)uEusMb;F+4Bj(Er64>eq_A
z5W@(`zA1*6Vt83nUpgOsh3$Dhx<(Gc=++osjp6ke-e7;lu#GdKPWbToXpN->Y+i;v
z=Yw|M&XHLs{ALVgmi<3FJ>TJg7yCysycfg!F?=A|Ti1z{y%62Owf#brp}43I*@hRQ
zJH?;yv3Rn~Ph!|5%%{Y8=shuf#>R=^rx-qu;fol)iQ(HA_QvofTgD3hG_)@k{Cnst
ziKZ?@$zKa!dm%~(hVNqdfm4HBc_I2eTTFat-yg${3sGh%F5zd+l+vL;WB4nEUt-)$
zJQxog1_xsJjbl}!e~1sq%z+ERUnWakj2?{PPz-;w&KIMcK8LyPT@2>M7gZxiSmCO{
zthwr9^q&~0M>(4$^>_^bF;&N29VcQq8N);!lXRSl;WU>f9i4TYiQz2QMjiEaoQvUn
z4CQrH&~YJ#i(J)pl+v-_V)RlBcUOy+&~aJd-iy%!9nV~hzH>2JQV){8xftD2Jz84F
z$&1mlI&znyWptFk6m5SgI_OfA(Q-Pj7pSPCl8)*+YUrq}ql%8II;!a?(=4+5Qgr*7
zaJ*#XSe0nAYS9^eqfcFm*3|LVrRWXSqP28<c`5q$rD$y(b#&C#QSx%&AHE!|cR5OK
zprfIVmO5JLXr!aDjyo?$o9GxKZlf+o=Uk39)zM5xa~&HlM_;=fZJ~n&7V{UEqpfwc
z(V^)G={UkN3shScRiJL^8*Qhfy$(X5DB&L~T%;o`N9mxWYk|6|Kt-!XBRa+uD7MDD
z0@aa?Q=sVCg$_F6I!ql=9ZJVQ9fNdq)6rc=ZykMf^w7~$$J+&}7b{;i%0{@jF#2?X
z+E<`xtWYi5S4V#x19TiNQ2lhU*b*fI`=SYvmL*iL66y*agLMqm!IMpuP_s$|^%=q=
zR*Nnxp{~?1OvhC^9xb6>EunUoP%&X$)DW%ggqdpTuyqXAF+zu<!`0#INb2~rgi7dO
zr!+6A*lwO!N|#isq%umXl#aBHaV1qo$NG{g%VSlIE-0zkk~y)k!XsHXwvUdnI!1G(
zRg3;rQeCZMb4j(Qq`Fj6)q)zwE`Yj5$9RDwBg1^(Ng8T8)C7(hC(Lpt>zJbB5!PA9
zR2|dUDLQV|F<r+D9XINjuVbc;SvqFxn4{x1D2}3aP}l0XPRGkob*n^oLLGo&>&@lh
z)bV81=sX=a=(s5Mv30^VOQ}?q=mH%JrEwN>43rA|`%<ND?C2#rZqjixo2Zn!wQ}^@
zQi_mi5xGsr?K<w!u}a4sI+p5Ku49GdTE?1}Qg_i<O5G{SliFTN?JuR+vnx4f#BD?K
z$jMTwLTS~qw7OTvYMx_h^^nxzJ{|Y#ctFO$8Xapna!M<=v|^n($R8BXb!?5&!PsN2
z#nq$hbv#&FJ<Rc6Etp(eN~;Yz9@FuLj_o=&>UdnoCLJ&7ctQuy@hKfovrTmDDy@Di
z9h~(uoN;B;b2^^a@vIDk24z%-GU~mm(HC^QsAFUqHAJF>*=5wrI$qJSjlEn}ZPu|x
z$7?!{l~MPUQBRdoTXnosMlrmq<9}s>jwo9-%6@5HR=v(%8yP0N$+@p%r;d*}Wy-3z
zb-btJeH}(w^^T5rnZ$8YRxK{8cCeSLMnBN8qpVt2R&6S)zAdXh<m_frS@p4wPjq}L
zD+Wi}E-p>wRO51r%p>mBu}8;eoQdVs=WNyL(RevEwwzj2PLaRVu}{apthtV_*w;ft
z-|F~I$JgwUp`p%0L*MAwIwXMa1rF%=O~(&BDRJH}`m>H71%47`#x>>CFT%fyZoaR8
zB_A0QS~|GkcO8FlX6g8g^_SFxqI5Vca7f2G@ei_aX65-G9Y@81<(JHakL&nPDtU?P
zzu3>@%Q-1<O2_HErMQr@{1nh}UW}{nE4UzVQIrMppqHgU9=E^<nxcegNl~VjHc-Yu
zg*Yn4QPw~?1J4_H!9aN$4J<Lhe??U^P{}|a1APrtHc-Vt3j-|;R5ehI*$YDT4OADX
zWuUf!8U}tX2-P$YDF~e{2=U%%9Z9Wgpq_yz%c+xcqjpQ5f;Y;kmA%6a3^X**$UtLp
zYi3|?ImKdmueOPSrUrP&b7r3~?}YBYtTh)O-imEyptXT62D%z(W1y{pFpp@Uoe|v9
z)eM9T?l~LW4`sAajFA#SWqR}}I8;s*88}x?G1|dEM{(<9@RjUg9&}L25Rb(QbT)#U
z!n~InHK63Uy$rAd70at`2D%&Q!8(@@s@hX3S$uPr(cT7ryeqg5`~Hf8eg^s*7-?XX
zfdK{v8ZZr51_l|p!oV;CR~Z;=V2IS=N&}tCtDy#1)W32Amr+*oroO?A<Cp>6fFZRS
zR9>;F!~29;!+8EQZ3B*hq=A$)zH7iYFsZys7<{{a*fWqIONH4%kM<6y4P*@D3=Eg{
z3GRs-xKWO{vv-)sC6ACKa-F{6(FU$&Q3hri7-L{83pX&?z&Hcfur=7!Qj_rpUwU8g
zLx~VOjx}eo6Qz(vD+;C<m?}K2*#EM&Y()X<#<QDlV1_g@nK#F;HE^AQc?NDUFx$W!
zNxI&^N~!<G@@lRDHalTxpYYc5>P7?e4J;P71){v0ztF%Z<rUBLV4v_J=_3M%CHwa#
z12-GE#lWpBr(1ZffiIs5-Dcn(1FH<&Zr~0&6o&XO#iat|Wde5^xJzJp-o8R$rRd$F
zKa^M24DDV6YdEJWsMTx`4xwaWY(kX!cX{>P-caKT>V6J60}pb*^R+*0neW=iobWo1
zfeMPSp1=7YDty?$BdlAc=%Yrk(b&^s+#vcGPhWs;j~jR*&rb?GWgy)!*t_i+$@r}3
zbE14bBVQNxqJd4E<E_F!8+ggU%LcwO@U?+g3~V;=u7URqY%#Evqmj2B_J(>-jl62$
z{OItT245lA`85OE<fL8~<$1kfV0)hD%?rO};K~Y$;cbCo6+^r{=9!MEpx!s|nSsv@
z?BGDEpgs^Kd?>I}^dkcw=k1>u*p=r`4eZYI9uC(EiW%8-d{p%dIq|)0E&~r$P@5~L
zeFmnPq0cHPMh{g`-x$I3x<48C*1&fLzBllLEOGk{yn1cXzpD%WXP|6F)wH5g71fVy
zKzZ9qyrOD%X8{}P7p`mu4sZ$-hK?Kf&%kd6emC%kfj<o#VPz^Re((Ov0B@}xGH}p9
z;f;}6^NZ4Z3&vGchdH_yM^FD5{@cJmoIZ8JN7=#^)iDGAO7zx>YJEkuyQ2EDqB>#V
zq=D07zfe(~GJ+os*bB8P1&26e;4D`#c87ryag>bXf`N-%QYxu}INqBZxn$rnk1{th
zYHozl!b+-`35cT<S9@_QHkOW~j6`Q%7dSIZxj4$lk(m>r!-z_X#!7Kij-!T&nkK5m
zQ8kWx;#d_&wK%HB(K?PcOpT*vJZRxoaWq|8P%Dml@!&KWYR6GWlIq66u%>+xjrHSb
z5JyAtVJ=!42{#sPlD9XFqnU7X(H5dDMVXzscr0db8%Mi1hQ)DJ9PQ&MjH7QH{o**N
zhqO4l#u1Gp6h~1U;W#4k;QzT@;^-i7dnNU7B}GfeIQS}$PH}V=J1w&+sm+ztu1ZS9
z(JhXFl~u1ey2rWkbcCU296wi5J>ocBN!6&VXbDwT*~+SS9DU-LU0E^QU0L;y2eW%%
z9E0K*z;>vtc2riJGW#p5E8-X&$B;N4Srb0V=(h!g%2m`*v0TZvt)gg&#i7TMjUyL_
z5l1|ZL>wM#8;2E#6X)YAA)8qShI?00WCE4Jm83)!<;Rf}&cu-tNXPMX6*awzT2@89
zC%NcfIHZ78-L^6^JdP1@jErMc9P{H?5Xa~^u8w0C$Iqd{F{0z+m>@7Vj&TA^x<+8y
zXTf%p6XTd1$CNlG{U0OkQ{$MP_n#I=u`}&6;+QFc%(dcL@wtvI8OI#q>*JUg$K3x@
z+70<~Zp>$7UKT=K7{|?V+#<Y4ba5O@^8Pmo@X)uiHR4z<(cAN>%i_30c&TV{fp_Lp
z@5&!*g;-XK-Yr^uF89W<nsX|S_v5&a1D+#oSZHG$YvaMHa(^5Th~+>P^&m%D9FIwq
zJ`ah*!xCN3d0j=(_=rRw72S~ctWz~e3RhK+$MHlQPjXzv@md_)IGn1gr{j1zj#uJ%
zCXQ$0crK3TrR105!LMZeb&LO?e<2>cck9JCHpPQK)H7VH7Gd>ntrpoF$Cfy@#_=j=
zs2e(ZW$=R-e|urcsX7trn7gB|$MHrSZ^!XY9NWeD%{boTcwQ2wKg;2-F7#ydT{$!@
zjIt(#9dUdR#~*S0$<bR?eHiCc-1s(*opF2=$HyEVRn=#lWdfgw?uz46f!(5X*u&8{
zEJXMsj+N3H>#C}~!e5H+6a7l`Yth%-5Iw((<9m(`GxQ5ju&VkYjvpoUe-hm<`cYNI
zBs%}ZIWDQ>pR20Gu;{OG9N+{T7G?NN;CC)-m4fJBTyWy}Cyt|W9Fj9VUNLf5>dCV{
z634l!>Tgj(&1&jjb_Z9FIL^dzJdXe3I2p$&$#{Y*l^wipiyEq?2>qJD7dR^p<;<WZ
z&&6>*j$KV77r3gMIC(yNQKFaPxEu#x099ZHTFOKT6D7^S6QYaHhsm?5snQZ9ml03G
z(rRi$HC0~9pEN35L7<{&CDF?K6cDH?%4$>-sBYo~sbMV>wM}#|(a}U56Ln3rG||dL
zJrng!G&a%1#K+ZC0~5bhQ;ke?ni*+mV#<ujqthcLs;idORZ|lKs;d?zuB)z^nP_ez
zTV2ue_w>lkGXfuGY;B^Ai9!>aiT?M6+nRW<x?&0KOf0Xi+VhmFs|w>HPgGYSIS}84
z6){m{;y`tEvAPPIs8u5XW?@n%6P-=;GSS;a7rNC@Q4`8UR})v%Pz<>ms+);9HB@&K
z4~~u8UqexQn8ADShTj+NX@dGv4b{g)UlT)23>CM2CI*@qB;21TCBTe(Yba*C!bIho
zYOskD66I1)<CXMZ5ssM{H$U3CrW(d7)l^rRAg5}onKjiNHC5b%X=1L8>up#jY!lNh
z%&_2?a80~y;uSM^wliU3mWgXkcqV)kNfRmdvWc<mFB2Ko*~AF8t%-KS!&_^roi$aC
z<79Z4VM9$d(!?k>el1nCmio4)8f}8ct4$oL8ALDE4D91fT*JO&V-63GH!;D)L=%%t
zJl7-Axt1DQOA)R;6;9Vu)XA*Osql<iYO2X=GY}Y^P7wRDT54t<Xur<HY!j<Z+{b3;
z$;ueJ%f$62=9##`#El$CJtOOCDZaFp-&N<ESYYB`K8@Ko#DDBAG;xQCrDpK&-9@5{
zdG6yQOGIxnxdH@HhFeVBDtw#h?Rh)@ugwRjw$@V1%-}IOhC5k}liL4kspTeCm{=)Q
z;zt#)K<+lN@R`s(CRUlaS9td~AzBW+8R!}lYfU_6Vxx)s&EQMNdJ_+uc!1+UqNmu%
zwbeSdc5U^LSQveT<92*_1G}<I_)%e1TSa?>2h|O~Ha`5gi6?l<wbctI^xBGLK5619
z6Hl9XhJ&ZJdY+v!Ir1#~LV$c|QiR%na)b}BzCR)IqKP%N)pNDgCKE52*il<C@Zs3a
zCbpQUZlQ*SttMXOl;P1$yk=sXi4RTeH1WELH%z=^;$0KlIZpVN9useyc+<qb+UiJc
zRjQ8Sd&6jFXjMnO$H`Sky)Ww4QRE%MADEb0M={)5M}5R)!Nlh#zA*6#*ClcI%*3ZA
z9<8Hxo7h`NZIirvgjonJhw7-3b=6)IUz+&V#CIkd)K&XTd}ZQmW}F`BT35yEs;;ZU
z6Y8pOOx#pgJy<uG_1~NL$;8j>ToeD}l&P!soA{B(t*aPV?E|7$UlTcBSN&q*S6%?u
zQ(8SWuwIb*yNN$coHKFW#GfYqGVvcLG8Y6+5EI8t9Oo3Prw*H#Ur+sQ;)sc(tHTVR
z%#8d)=2+#ZsHZkbX)KUT{ivR5Ff+o8CrzA^hCM6gFzM%d>NG1{Pn{`N@gF-ga>2w!
z6J;!vwQ$MAWlmuWu)uN(EVQey`qoz^EL5wn7+8*9Urnp8N=Xt^OIu)+z);Qtqm?A7
zyl4f{ilTI@Y@v#9RTgOB*7~YAX?=aQwZ5upp_YYy7W!MLZJ~~ZA`4*)buHAh(A+``
z3-v90USBn|(1<m(aHzg&HX~AVezdWLCKj4n!NqW?2C7kmppUrbM;oYS7K{dJTm!YB
zfof@?m4((8*3XFW1lw4+uYqcB@zxL8T6m#>YG>iY2El2PscY^HYZgLM?2ir9sRpV_
zLlv>m!Gf~T%|e@os-uOj7NQn9NtBk(7P<)cX{Z?W8Y+I8Fz|@otzfiIZK!%%=wYF!
z6?``JvhZy|ln!L}T_3hgL)BM2>Ab$78en0d1<QhMVUUF@Ea*HbHdL+XU<+4@=Mag~
zGE}03VHU2k5aTp#s4g`OPG?U;^@l**f+=oZ*=U_cD%?m7ZloLwu7#^DjIofg;8_@M
zVT1+WLej#jMk-?=MPnnCwlKGmB1{<@VS|&OZKSdmau#+pQVfMXBO~c^p=-6qYLtZ^
z8>usmRJ+D%w1r|AE5l&Cg$Y*h+SPFut`Q(}Bu}(3NupCN3}~#J#%i*K$<)Sbionvw
zYFgf($C_zj7E88p*5a!$!q>9DEIexAIt#Nc%wbI|+`?A1aJ|Jp9EIjvSYTnEFrznE
zc%reoQKD}(RtqgGvT&1yn=O3ZSkYl|-gAk-KVn?<RzdkDf%9z^Znv<SW68oD7M5}t
zmyfKpu*|}p7FKYAm?6G?mR~3D5`G{aTAl|QnR>T{d)UGpnN3u#iMp3v*+dmHi&|6c
zY~ewHwHEFdV8*#k)H>mZIHWCpH3&*u+eA^B@nNY6d4q+=EPTefV_~C($1S{JVLQ*-
z!jl$Ww(yFDrz|{e;YGIOu+TFWp5=6~P|#G}UNQ2Vh3Cb-rHR_pL>+9R=)=&ssoEs=
z>)$GPNr29qEs$R=_7~-K>{gEUri$>ISeSR4!0Vz;Q}w2Ww=BG8;eD~ZE&48du&H`S
zm~RPVE|##v!Uq;UvhXpdswC|cWh$%33f$E+sNN?QK4oWF*u_(mLsR$Ui=_iSr&Nr5
zVPUU@Uo9N4@TG-)7QVCay@jvD^IOrcEqo)uR~BEa7gU4cLpjP1V*k;?|HOyQwO<;I
z4nJA=*}{Ht`^5s=je+(5&BE^%j#)Tv;SURcTKL=I4L<y3;h=@XQs4#2MgKz*t<p>#
z;Y!#nIInm!b=1PY%w935jN=BC;VH9*|B3Sn3nv98HB+Yq=x~}7s+qc}nPL+$dd|Xm
zt|2xI8y75Gv{2qg1sjhwQ<p51vUw{rx~-YI%yY3(!bV9OpEXku{k@qg)m$;!xVb8A
zgUV3GM%g@<vw6?DD~%OxRI<_1Mk^bYZB((*z(zwGRc%zWQOibc8=af0>NXx~u3l-b
zYS^f0<I3iW#!=1HoaXA2=Bkd3dNv4kMF}jKT3@2f^>cI8$VRsosyQpbL)$pjTs5`P
zj7M*w$j7EdSX7G^ss+!tg&NaB&2OPv+h}7$F{6#PHrm-Z+(LD>(cVU(%@ql&S}094
zEE*Cm5@piUEfh5((GH?-w@{q~zLKOaHoDq~vh`Z3qLzy7$xyeY>TaWljea)z+vsUy
zU`y3Uw3jHOy=|mgDgr}a8`A^^FxAFj8$)aivT;jGwYjCb!p4Iw6**|AmTD-Q&gK@S
zh}rmAj(EDI8YW#ysN71mX%$qXS1T2_VcNLb#u#4z+pulyXr)HkaBR3XayBNm3d&5_
z@NFb*kUbl0YP(g?O(`2`F$R_y5o$(KvoZh}9d2U;i=7b}Y2$@ffzP5=YHh2a<3>w;
z2xD!GvoXWQOdHqO7;j^$jVoHK2{wLgr6R4>WL86XlIV$6s(x!V#Rii&x~S7^WLm4~
zETpw!g>P%EX4zmbFm+dJbu9-~YjvIIY}QtQNw2h4w9m6~gN--c;P>+zZOpfE)Zu0g
zSYTtJjeBjZwu4_I`FrUi8;kAWN9-kb@ZRI4!Z+EtS>P7YTSe(}n~mFr?+`8cx`4)I
zHtw`>myP8-cQ#$=&@ZhOi&`NC5>|2!isc>~HI9W>iJdzHG3h?Cjk7k+*;s4iej9(<
z_{+uv?0Oqd+jz#tIy?A8d)US!QusqQ)(cc`qYB%oM>&`u(>B_8oK@lk=Rj(snx`Wp
z+NkT=s3%ylHtI<md)uguZPe>+)KkI-+bCL|weg&dk2%q7JkPGQ@rI4<HeR%`$;K8N
zTW!2#<7M`~jm^wBNNcew$}NQY7HAdPX;(iI+UaTSjuyUZ<24)GY`o4zAg1*nrG0v~
zaQ8%Q=)c^YNUJn0)Vq=Prj563yw9P?PPFlkjdyLl$Mc;K;;tFopCZ;pTl_%i?zh9-
zpq#tHePH858#`@$WaEcL!49phPZlodptYVD?1l7l11%TVcG>vU#&<TpXA{}jW8+I3
z`?!eN_}s=9tT5-A(k^$>9xScR7^QtRUR&NX*oytC*4kG#zP9m=jc;ufY>u9|F4$GA
zRY>bMNozkzt9w-t{lUinZ2V&5R~!2|N^Shasb}M28@2dM;lv5SPI)B<Yj4Fh?rg{o
zJz(QE8^7E5gUiAYt;*5DIX7yjr-ir;A9rFpeX4L-XYHVkLpDxw5#x$v;|NEljel+Y
zZR5##p;?PV|JbP8R=qkWG<->D*P>9ktvbeu(^j3Zah!|l+z`Wm90PL#*l~Sm^%J4f
zGMIla5jn%z-B!(MtH}JueVzl46VSmd2N!Kz;(F+yn}f?dWd{u$G;~nHK}iRd96pQz
zI4I?ytb=k6mbX=<9h7nKcw1HWMvXVE)|Lr2OeybxTmMvWP|*Rm#+zhoet~x2Lg71I
zwKv+TDh{eTsO6xxgK7?{JE-BHro)Gkv??iWWmjzhw{E#Y+f!P*e5Lk9TUEzFT?h3X
z)OXP4+R&D1+S}7Z_rD$G&Sn3#Rn1FADtKBW2aO#RI?x<6akvF7S~+O#pqYc_4q7;9
z>7Y}8ZRr?o-&;{`bGBeYs9$I8x7Wkmu(FMVwhr1kXzv93JPzmXkY@|4EYi4%iDhU(
zCvyK62SpA#vJeMh2k~lJ#6brq*uRXUuH=Pa-?x{01Y4JOcF@H^R|ioCdmadOtv#|i
zT(+IsUsS}6R5)O`^+tCGJscz)cn*3x=;dIjgDV~McF@Pc00#pd^rd}{*3UtIC)k&b
zJKbFBuJtdgach|0Dr<urT;X7_gCP#M?PJ}}!B&#&g107yxGT!zRkeE;YQuOs4oo^Y
zh&j+57_7O2*(J5kU5Y+yqaB!`4H>4*Jzn_H(L(P2V>@shyx0paJLQcqx0>ai&WCFT
zlj7kSn(rX#V62024pI)%4n{Z_=^*1E>mcV~xPzI;f~}LAwNu^NDQ?I1aw&~F;u-Du
zr30fKT<u_tgD<CqMi0=&a1+lNq4j=fz*KEwJH<VhuW>Nm!DI(h98BPNyHGgM!6eqC
zgtqqzt>>{qZY#`9XSlJ;R0q=>Om{GYJ)R3KDWffEr}S;XCRsn0)41;mH!{A~!F3#j
z4z}=o9n5iXuY=VN<~q3E!L1H%b1=`r4GtDLSnS|N2lKh|J6Om*ZJ?dZg}B0$ifYeH
z4ebvXjd!$-CkvN2xXHoI4sPN39xq(Q-MIQ`cib1{E>RDS4RIq#*7J4;cW_=fSm9u)
zgJllxbZ{3(S2AQg9vxpd*mCZ_6NMeuMCZ)bwzkk#I=I`xJq}iJbX}#rwkFzUU8rhB
zjeEXy@1V6U2zI=>&%qi8PdIqe!CD9RJ9yZ^BMu&L@SuZr4j$rQsHJgRnPHQ)<8`$4
z4qj-dt)8#__IDxM`OakMQ3o3wJmz2{t9QQegKI*MPYpU(<D%C<dz@phna03Pm!5L)
zG_!LUINWUq&pLR{!Sg&yJGFe6#@)e6*3x#*&>k?g``-^A*bv&};3c-0gI65v>Y=gM
ze#r!zWw%%z<>rH2R98&ZwmNv#!9E9HIe5*%HU}R%*y-SP2X8odhr`>!b_Z`dd^0oN
zCO6bB7irucXxjQvyt(#AMXkp_h3t{{9K7#fhl3Be4y+5!U#M~1a+vL!r(OMcboprQ
z(W|wO9DK}q=ioC3pRh^}K6S9$33f^5Hoo&)2fJP0GF%%xD>SjCcE%5V?%)dtdpRtb
ztD`nEti9Y$anDU|iP*j<*oN=O@xreieB<C32fsS_*1>lUesJ(VE?)!iz2w?^WdS#h
z3dObk4t{j-lY^hx)D5*o^R!mS3ip@S_7rJ<4A)*ZwDZ%n0}g(3aL~aa2fsV`!@-{p
z{^D4ztbNQzJ`sE-zJ9I7?QSQhweqRZVJ@K#{&w&WTkqdsN1+a!K8J#R0Qph%$c9jS
zZRnVT;|_+oxXQ(U4o+~qxoGbOzu%s8aEXh#gHsMpJ2=CW<<kOp1#fRY>);$us+~IT
z-~tza`m|GwR%)-BOCS`uDB+@xi@GjKx`2x^F3P&-)?SrzQCcA0UX5$77PVJ|axPZ4
zS3BFQ8Up1-D~MKfQAvOfl?AGZRu!%0qPoEI?G+try7*svRm;W6_QBH*wOvpv6b5%O
z>ba;dI~FxBRDW>!b@BAzFhfIuMlKq=XyWqahvB9!S_?E2rKP!x7Q!v_mR6FBNp13$
zwgSBU$2%8=F7BTaiMY^Qgj^J{RtF1zZWUgINasQoc7r$Q8ilHZi;gZjx#;X-kc%r^
zba8_lhzwDIuA&V_h80`PMR$qzaxu10(Wi%to_YV}4;S=iJ4`F=BTDEi(9cExyk&rk
zfx^s72kKxKS4s&(Tnu%CCq2rCH2xETNeqklp97bhoZ=Z5&$=*N#9hpFalH%Eh2>(n
zixDnt7mmxfsUz+3^CIlJNV@ps?M?|7o(tc_1BL1p7UhHq)Q=0*_^A;({3y|k<jT6p
z37jZY&eX_A7o%KEbumqhqj}0M#<{4dsjFR#VFzi-?-^lf*NDRe7ZY8KchO4=4pICl
z%On?*T}*NL9W6{FgQKZphv|}wmRSNbT+9?VI?#Bni|bs>mZUj(&xxAi(V05W#SJbV
z=ZQB9-{@k#i+fzGa<Rb0LN|D#W2K8lE*8sRyWQn01;R^&Z*g&xi<{X{m$a{Mh}<(I
zbfQG?PNZ91+~#6i&7wJt!o3=W?{I_5gQYH(l+u=o67F<ySDu#(tPmalaKYVDIFG_F
z9SbydFKeQy``FPg-s%))SgWZuF4nri8>{XY-M~(9@t})!E*^66h>J&EJg=$s9K$X~
ze_ME9U(tJ-YTYROg{Jr(iNl&=;BDW>IFUo@isnTdIb53;kvX%TaPcHtV5jyJCxwef
zA=N9SE*#VnA@v-K<*D(+i_{A)UUcz_i_I=Jxxt^UUgDW@IE57d+jw_KJs(mZht#hj
zwZ+BRkb2d{Yc96Bs8OU^7b$AbBIOpTiABM)DEzzG>n`5lDHN&gF18e@Jw=N8mW#Jt
zyyN0s7du^i<l;RS@4MLH;sg20#@8?WQKa}k=nq|7C{ne;iYpt>@zdksk2!8#eClGi
zi|zktox{oqt6e;WqZ)noxXA7Z-m3ALi)+GaVOXsXtJvP~7cADrmoD~kg5+T4@Rf_N
zIYd3Q@$ij{Z&}X-wkPnNi|<|Bm%y3?e&CwmqG<xn64>wJM;Dh|Ty{}7HS&{-UtJt<
z@iUw5vjT=+1h`|uZ!Ug!an!}XF8<(P3oC{rF8*}!mqZV`ILr`MpNG{Uu@Fi}RKrN%
z`8QXjI^lmryF}D67suHMvO4|eqTGgPsmeIVSu;aB;ez{_p5#n#pq+AYTHuT*Eoa&L
zRkSagY3JSG0RxT!_6Wm8DT;r)E7Lk$kU;4K$|O)CfszRz5j+4;O0?vF;GZ%&D{wMg
zHi2>pG)SOf0_78^kO)3~#v)QNfl3KfPoPEul@q9vK-C1QB`_(XZjC5D)>XM$XdO>V
zc=pVqnhDfOAXYb2FM-b@s&)c(6F3-A<T?o~ZW1Dt?4W3=&%<?444pfuMhP@d1WRs{
z1g7+fd~~poPaTZ(BK)M=^F+9L0xc4_GJ#<Uv`nB?0(}$cmq6<T+9VK8Ad*1a1iE%d
zVFH?z(@wN~BG^}v#a8<`{Mc9Fvaf2P1nxPg6|pIn1aC{|z%x2j*gFw?s&-7EQv#h6
zcw<kv7af*qk&m@5ELKvZqI6RUbjx#hfgTC;%v+8;8@{T8V%|Q9;8TDP`HbtJxbeYl
z9aR4W1|)*t$p<Ddh-0roxZ~{+E<0Bwf}bWB1`7-k9a?Pcpsr$LCNP=JB4=cjD$)}$
z5{OHbm7kD+nZV`_%1Xda;2i(?B|0VnH-SU~UIM;YMkbIHpid@&lyF+~lMaf;tZ**x
zGhARq0>4V?D2a|1y*lr6Mv}%RFfMPoMqoULLC2uXi3!Y@7n&s6y?uy0HGydf+@8Q4
z349v~Pfr97aa~J?1ZHx4)(ACg7MdkM=IG+5#&rqIPGC*~bJ-eBcu^u)nF-e?Fppht
zhZ$~2;6~y3dCLNUh3wOgiVlk<x<vFQ(VIn?bV~xa=J~b+28%!MBQH&0MS?pvVp#%r
zCh++Up*NR>?n+?!ve0r4>?I+FOvm6+uDdy|5?GZ8p7XqAVfbE-)rz619o6atH?=P)
z<~G$rYZJIXfoBqUHh~8ccrbw{6L=~SytU@nZ^G*mcqoC~c5U~NqV+PO9?p-eM-q56
z&l?hWOn9T{<DyUGQ;%HKZtJL4ZPYe&R8J@HCVSx~t)^G-Tmr8q@LB@T=RIE#cu{my
z0xt=?Ec%KlNBd@hEeUKD`0>6FjoUbS{|pl%%e2=M_`0Lw&r{?#6L^a&Y6AaD;Ozw7
zN#NrIK1tx+1l~*F!vuD6DVR~fjPFZnI}-RHfkoT2|2itZy`)|z^^w>+b_zZV3O5CB
z=Gm3NrwQ!gVv@kR55v3J9d~McvkD#f8j#P$e{TX`Ch!Fhy-rJhsh!=Y?MvXJufty_
z@J#|=CGg*g;5{MKZ`txYwC@sl{h8nsB;HAVFFd)EqGf*qKPGT7flE^C!;cmGl)%pk
z{K6?9mX)2<fdqa_;AHV}4;KEOz~91ui2f=1m*_!J*7HyThx2?y;O0*1AAzHJ`@aIm
z5;!jKpXiBv>b!H>DdE$3%b5hu3ZKhc&L?m|xZReZg)a-2_E5${frqC$sS+L@=}}Zt
z6rzll5_nG<ysU@wom4Fk<-A}$WGL^Uf`^MgYZX1*^SM?@lu+4272&F))$;c00yR9;
z%v%mf$+bPy@laQattZ;lLw$h;q76kGiSoFO1)7M~>8zRwG#70lN}rYjtwj0GpSB*_
zd06J-P9N<(6ng0GqmK{GL&(D%4|6>fdFaqt4f1e>hp>kTqaHeX=<A`MhhCjkClB2{
z^zhKxLl?1h6;+~9Q9g;$Ef37nlm1=83p*>8+=~bG(8oi`?!kUi6FVz{(^>WRFhCAH
zkf{%K=|4V9XTF7u%D0vc_Atc51P>EE4E1oOhqQ-`hhZLfZHDE+_T<W0)bOAS+}l}k
z;ff0rOfOg%2@H-0&x7y5mDEJu=UK_}zG%`zDsSKYL69r!VT^~d9&#RrOVS7rS9>@v
z{v*XQN_4b`AH-O;OHhY#VjM4ejfaL}Jjv&&1SWZy>|vINYduWyFxA5h58U~2e%;8G
zUDU`fYMO`X9te-Rp?O`@Ob;u&sQKd~&va4OdFc61m=DkV)J4q}ey@va{!jRN5A!^H
z>0zIT8$8_T;Rz2<dYJEFfrtA%tnskW!y=9cc4b$!*u&v2>Lw32dw5+%m#~Ans)k+F
zEzEu@dYgya#qCx$epj`AWtTfVEcLLlt9rew8r4<J?y5e&9A42?-6?J?@GgPn9##mf
z%-iqgu+Q@<fqOly&Rh7_&9xrx_wbO1^<MB*bYEBXfQJX!$Oof`yQ+0!L^QarW_Z}c
zqaHSJhKjwB*dJrXB>Fgu6$`h(DE1#3RZn?%+QVxewt0BQ!?PY<@vzy$a~_`e@REm@
zJ-p!IMJZtu`#OKD;@2iDlIWln!CN5KMAa4#TRprg&KG3Ym<suK%RCoVuX}jI!yXTx
zdD!mZO%ES?_{76oUhq}oZ4djUw4G7)j)!-77MH`Pqv}2O-Qno_Uho>>9iktIGWwy1
zoq7JqLv^KS+~wg@7N~+YX`|F`4-8|K>Zz2i)aM?);0nNzushhe;cjtzT9jMtedXb6
z50^Y#=JmgaZ#fJ+9P#j-hwnZ7;^9{gnC{UZJpAb4C)S@CS#3GrU!)LzyZPA*Uh`X{
zTTp?sN*(a<n^^u5x594fcMpGXc(3a6C+CH{i-!IKx~YTWMn1%`+C6yt?%y8%@o>t+
zX%9y|{L2PB8U4=-Ue%lKrjBvd>ZWFPQ^z^{x~Yxb)Cno!q#TGfVFk{3IP2j8*JKap
zxLkASK3Z~LH?>`=$8-7Qo-Rkasp9QLSZ0Bb5<cqrsPChs5BR9yqoR*eK1%y2=Ldt3
zZ=)^aqpXj{-4$N~T()~~rqS-o=&s6(1K%85$wy@$)qGU<F`>Jv;-jh`G|S@ds<>rX
z+ZsM<`l#avO`2HSrIzHa?c)I{kY&EyUG3_w>iVGm-d#2D(U5Dkk3t`fcyu4FecabW
zHSy8ZM@t{Ad^GdX+(!#P7%e4xsQNurmma~WV2Jey>N!SqK@Zi&M_V85d_3Pn@qJTN
zV_{_c?GepK$VVq1oqZJf2>a;Zqoa=xd#Im!sEAaOJKga0$Y-Re+69psJyjPUU43-(
z(cMRs#r6!2rF`@k;Qo({_VCeDviB0D4|k1x;B1)hq9OP7(a(qO!(c8S1N>kY>>+2u
z1APn<zS75-p6UuVY@;xf28%K95g003oHWeGRpJ&C<BdHP-Qqq>ALD#n<HKUJPl&ia
z5(2i5)jgHt<B6V%cF%_|_N#p)eWZM3edK(keQfKgGLl5MVqlixK1TRBT01;il1BO%
zmG_~Mo}cto#Xue-Nn?E!XCKeu;o}A$H~N^!+DhsiACrAd@iE=UjQ>;GR3FpwCGVH2
z&h&AukL$!Z%g0$c5OucHhc)35d1`a>xvuvyFV9tbsrejxK5p`HvltipSR_zfx5dIs
zL|gO<PT>||mU)N3tv+rO;0fODgUTd^rTMeF%g1sbe`fJl7At(L^zns{y*|41Qg{1!
zjqT~<9v`cG+{-TT@sc0hfWFVi8V*YzFZft1mJL20^Kn0?hK~n*tn=}R*dG#oSd<yp
z3pl+LdEj>ikLK;SEGyXP<NYr~Px*M-$K&j1ws0@?q>sCLDZ*UQCwi%8eD2E``l6S5
zR)GAR!1iA1MIW2|;D0NBu<~<)Kc+o3BTRkS$16TI`zYwGw)oh}$<i=fzqfjolc=}4
zyJ1+D!2e0T?&A#~yM64D@xPsQ=&hFbR&V-v%g5V3-eDyr>0MDynfC;4{;oaQ?X7l5
z^aIfkMR$sRB>J)FC!+M<CGe@}g+-A~y%le`GkoR;ciune(0VFN_|nHdwn-XKr16!H
zuYG)w!iOn*<KtT{EGaZg;X5DS`?w{ETa);K1#*Q+qGb~Mef;R7d=eFs=+I32$;SyF
zC%O3e_{GPsK6sz&FCPbe91#9Z^mkDv{UPwD58hE?^pHf4iXIj{BFdz{ef%TLTQ-a`
z{43F8K8_3gC;HvRAnBBkOB<sXef(ZRJ1u-hl*Y3@&gJ>Mzy(q7SRtJ+`MAt}Oa>WC
zBvD$Rq$os7iLwrKU??NevPqN^prtq|QbVhlM5QEdI8<0UiCRh2PNIrLX{nk-wLDi(
zqK0ry(f1c>bYQ3>(MF<mlc*;^d;KID2sadEwTt~5C($JD(=>@@!p-v*HgBsWS|@Q;
z60s!OB+)h*{LV8l$@_F@pG3TKQLiM5`bG-bk4bb)LX&7nl=dQla1s##K6OB2r+lgs
z=q%bLiLL@s(OFk&LH53pZb@_(3%N%UJ@d>ProE*CtV17xzM}nDLxBPLRJJYaJSd4P
zr1FDBhltWXRNzX{VWRq(LOls1iBU<6P6oe~#YNLem`UD54lK5)mxLogiz|>2-PsMk
zKr)}2N@7v#|97V&lSDRe&j}0{9g)OHff?t6U((*~t*%aDY7*0u7?T8}V@1a$agD(E
zBqj+kX+jbc^UQmTlZB^<GD?T(Nu<Ks>?Gz0%t&IUz%0>gMd@&z0LKP-F6%7O>qX~r
zR0!Od!~y~O%$K1;U|1-|*Jfyo^QlXcxGB#!3-Hu#OXBt<b|mpZ5_crAG>He3SeL|x
zzL8}~@HY3VB<_^xU82iHSBTPQWfFJi`JN<rFPp}GZ-nnnVs#RP`$P$Al31JP`;&Me
z&&={r66=%Lk_7AXa1wj_M4sRvKUesOFr$wOY)Im<yk(=n<4N#A1v)&L#8XK;ExDNS
zr6it7;#rA4m&6Ns`}0Z6Jz7YI7sawEZ>RC)Jij8aISD$`b88Z>O2uAF;w^z~qO9uc
zNxUJvUGz;+_Ais(7Jf&R(RT&j6MbK_SAFfnBz7k8KQ6yXe3ZoZ>Cjg);6E1rM08gY
zp9<_w;tK(~?MdRZJb%tXRYRk3uUNj!+xH1DiF4}fB)*Z7zZLyX^n1}CL~ox|K(`;0
z_=#&;3e{8iIf+jH7XF>YKS}(O#IF)PAo`c+Z=$~^@rMAN|4f26wFwLd#dt{ca1uuZ
zDvk~@>1Y!Fa!pR5ObW-6IG#iSKc^OH|0M%GCwd}@lS!NsJ|oJc(*j&Q$Y<HP0_T&s
zAohz%To$+_%4cBc#!wtBA%`fL0t9F;CBU;To3~U-p`37e(F%EcMFGyi%6Utb6sqR=
zo}Q?Y3Mx}Cg?4SVn!=3MN};xJoxG)P3io#pJn2?Hg$Cl^P?VNN0*ytRr1*OCz^!=-
zEmD}C!i*GJrqC*dcnW3;ty5@|f=Z!VDwwC2`b63?V+!qQJX6TfL7*@NEpG`46r~Ur
zh={T>#r_>r=#=;DEYL-?t7tTZQ{^;zc2A*43PV}FjiH`W)d8ZcYOfS}=edtSU(tS|
z{ZlyGL!%qRK(P!Gy&{Fd0<;ei;JI_Ly)uPi0#}LB5);rxjT9yp1%I=(QaE_Na8xRI
z>c&oipVv+bZVHJM#y8M1qMj(DzCcnml|njif0@7k3+M8d;VF#B^GG)S`9fxA4M(SN
zbqa6viHu2MYzpIq8J(2EHNxZbmI<t(@c&K}(qXdjlzi&c6sF~w4l`4jmBRcK7Nqdp
zLhafVu1kUU!Ff`V+QF*~W~VSG-wtyHt{0srdP52~=2OQmEm)Ysq7<G;;mH&hvp`Lo
z-Jz(^*OsJklSFS$;UR%rQn)pR+fukah1FuYBZZ|YtVm&H3d_WDm*}0MEb41s=n8Xw
zG0JeaMDI=Eo)lK4aHO{?w(qDHq|$g_3Twn?Z3+*h@SyPhqHOtfDKOBJ$|zyIL?2G!
z5rIcjcuZh}XmObv^Zd8~5Bd}*!kFNQn^Jf>g;d9)XG96l(nt9DyyXRf7gK1iG&;P*
zLrXcYq_8c8*M&Eyuti|2=&PbE|Fu-`Bocw)jTGJy`*zVc^FD70ye&%ScLm-PeP5J$
zcW?ph6SUP%&ZZP%Y3ONuoWdt5)Jvm&8oN^XG=)9w3o53un~=gEDg2qjXDNK1!jCEN
zii>083tr(%@9!1;GCvabrSO&T*P?x|3(=Y3TZw*`!uJ9{h|>PQ6!r^Os2dD9hM)K;
zkWc+3g<pjai2jzh|1QAGNM6$XmBRTHE^tbwa43btl5|q^ND6-o{3Ci?^k@qI3h-FR
z1RC@So+|k-g%c7jzCt@Cd^+!WhAT;)&v6x%EZRWrqKuzXX^<~*-5aP~PN6`eB}8c{
znFjLAPezWn(rJ`Q2LrFHXgSgHq7_8B>@&4eI=EV^ELughs%W(|steReqqaazQ99R3
z<GTE{Rvj_c&089z(J+mUX>>~Ck8_2M(rA^&#y*k8>0s$=k`5MurlQS68Er1mB8`@L
z%QqbhTBpHoWoVN|+dQ{RqrGq;&oqrt8bxVz5KB0Xhyax*Rh*YlY~*!&=QIYSgD(+X
z(kR_p>zc+p9keLlXeQ7tjot#?MSF<$6z!D;1J_CV_Yq59(SD-+C6!5ZVBrJh5QEaV
zLSV4y5YeG&Tq!UtjjIIcKY&-E^4-CpC5=UCEKb8r!%Aap8spNi({R!lHB8IOdGP^e
zu1;<mA6=s*((nX)(WGcfG%cDD<vKv;y0x@i8r0!wj1VA?6d0ApXo0Im$K+ERMzw3w
zm_1sXoyMFr#-}lX&BZ5g)0i$WNtBk!X-pBGDmqOxDj%;iglCG*61`URI#K4O+guqN
zFI+6-Q*+m+(Y23an3u*4!Z(V}7hRA~U6=+xT<EqWjhoU~k;ck2Zk8sxD~;u8ESaF)
zlE$rUy=mHQqPL4OdWXPL(Pe4enYWj36wDf~nOBw6_{n>B8uz5}U>fVvSjD4k41HKm
z;{)OMrm?V`#;{u8zBJYdtQEaq^Z`-&(7$y?Yg|WrC>^Y6>p2GcsE0)#5q(s2gXm+T
z8%1kfE~Mv^X*|Wo&tPr_Pp9z=r(^~-GI*9VC5@A5oJ!;QG+sz!ZyH~w@uJM2SJQYc
zjZGX&jWo`$m)I;~e<eS^HVbS?W2*qC8{M|0@w!BJrSXQqyP{0mp2nMbek+Z)^ZbrL
zarXDpcweGB()d8&Lk_>Z=gz$6#{!?^?VHaOek!~>Z`mX8SsI@Ud?8wVh<*I=Ck?je
zi8S~m?bkAFj->HT8sBm$=o|Siji1x_MfiKsA2?0~n7TiWAJh0L9b8s1%0T!vpZcf3
zfi!;0TYl#XCd?~;I{zhnQ1p=KVNrfZW9r{BLjDouP&q2_ujsKfjtl&kPc6MVdSSSx
zZI7N#<4hVC)3}tz*)-0jaXyU;Tng3(pJ==)<78(ba|Phwyv(Jeq*g8yC__O8C4@`n
zEf6S`LFv4uOa^81eD|qB<|>~-1+i2Vtt47mw2Ej|(Q2Y4j|W+5W>71Gp&4A6LG29c
zWY8mno*C55pk4;uGvHM^f7Gg<L7NQPX3!uLTtzn&ZInS{fhM9YGH5D5hh_rJMftU*
zr9i8EYU@n!rHO9sGB|ooC?eWkv`|zN4T;jBD1)#tzwk2JLAax6C(+IsbjhHra5MuY
zz%1Pan57t)oh{E!@0CIC4EkiyHxvAGghnogoYDO<c&SnF6g|J0Qu}9usXZWrfdYd>
zuMnkuu)q*eent$-1Rqba40JYcCb$yb+ehP%entjyIp1*^m>F1^;0ssZmYSV`lfkaJ
z+6b|@8KeagqMj%{{S1=ADN!!?G-iaeqB+swqD*R%!bmBWC6CHrwD8rUV?@UmTPkXF
zxF&<~8BE9oKRGf?&tRhPB+<#DQ$(kV(q~#GSbPXG#4=NKRzCGwf$K7uEx-n$=k*!P
z%i!G%-pk;I4BkFgI6s308Qdt$=fLYFG|r2K89blC3mGipAu?E!!A%+5pTPqe+?>HJ
z8Qdc+%rbAy;LbeXmci|LzC&QC=rU1$A*KIa87!CR3elCKwBIej>%dh4_vY=ZGq_K9
zO$KWPICJSweJ}&gwI?#Tqnfr(_#x5t89XfTi0ES(JSsrv4eb4L8eyYY9?#oZHx}|_
z22V+8<fk)uCeP0bJeLWclV{S4ncynx9X9M}ZIe{#B^kOeXYh)^<_xw8Y!T(C-YW2_
z=xdqa-y$@=F3~qcw`cICz+3DH0Xp!BcLoA4HTf;z{S0<wkj)~O#Roi*3{GTlGJ~C*
z%NhJHgZ)yak25%>Y5OwxBm*uiyF@?DU^nY8Oyd_Be3s|W1^z7xoc9WUnYVl;MX|K6
zGx#RY-)8Wg@b{uW<n25u_REjbAis<Ll)=vezli=SdO-9y(Ptw;SN@T~pBelm7DoRO
zIGDj9fx~(G5rMxsZJP$GG{aG`{407agX4M6{{;Bqekz008Pv?8Ru*T(IJ%FzEO1uz
zoap%sE(lx{WyzN^C?2#0S(M14WERMRi&Et*N(qz~EiFoWnJmiYxtstm`)RL`Ma8_m
zl0e7L3#tfI6|I&}tu9bQl(V3A7Im_SW}&jEn?=1WT4&KFi}wx}*3Y7;0J%XH4fEVc
zpm7#W1a{5{(V>}ebI}%}G`19ICCZ-&+UD&Y1lncMUZ5}wEsKzFIPX&=z%Gd7EpJxQ
zI_9~PK<6yF<SktVs{S4Pq}eTtzFG9k2G{xBv*;nvQ<Roo0=={7leYx_NjX^9KN}2^
zVWI=F7?{N%;VZHjDlk}dh-mTUCH=3=qS$g(7O^b!EQ~BX@rh?)3OJ%x7Pi3j9R<v|
ztSC5~E0%=l_3}l}7fxo85=du}5umd=8wA4eEJkFpC5x?DjLc$G7WZbcI*ZX+T%E;2
z@gI4ya7-4HvY1Sti-lve7$-o!CX4ZTo{+^vVP1hVX-XDTC3?N+v@EU_m@Z0(8ClE}
zo|U(7{9l*n*;&jHo|^>&zezF6Jh9v$dSl*meijRanVmk1vRItOlKh!2&2kU%pnY!6
z;ue8hv$$R0Hc|eN!c>MkvM9DJ6Z@T6+$FF)i<Md2ExbaM&3=ynbFC6!7Zmr!ec9kQ
zne|yboW&YWy+eg-MG5z3@qqAydCNM1heY{x?2&A63Hq!=9~EYFLl%!^u`!Fs#qw0%
z{zMi}=9xdL(DP}DK9dc8V_}p>d@hUUvv?tk7xPDaSzuEZFXb&uJ`R3Vd_|(0MZMMq
zuVzv0nSzh9!N<qdM+#rdVp|rkXM-C+Z)EYl0C{^BZwkL9`Zl|%IEgbzpm#rwZVa3(
zJBpKfs}BS|6y2G{6uCq6aTcFsu`7#Dv-puCR_^BP&f+WKJ))m+smbCC;V(t^ivIt<
zIqb_vzs};DEWVZK527sayDYvJo}d4X;(rp|pEv%L_xw4FU$Xc$ivxMf?^*mNTzsrQ
z@>y8y!7L7OP0OKC4u`WilEuj^PG#|THhAyTh(Y*|1Gta+CyS$5{L8V_M;)U>Ep=R&
zKC{;r(0C#nY{1Gu=hIyLxq#<TDi`c<dNzv-SzOHGTo&iK3UvuT-ABFCM}6N%U1FJi
zf|o%R<N~-Xsl}EOIh4!=btvCgHR`KM=TIhx>N(WNp==K2a;Ta^wH(UlP$7p(IaJPp
zTfP?cRTXpm(xle)2zX#$mFlaw4QrJgruJ2IxTUY+3#k~^_f?zws+u{}$)Rozwd7cP
z`l{M_sF%Z^eN_X|`l5_p=&PuFDzb47O>*d-LysJq=FlvMb~&`qp?NO&J5TEz+T_qe
zxTWa7D@(M>;mo-(Q>*k-EoGabwmC%l1&`|#=Ae;t=#YcePla-Lp`YSI-9<S*lC4(v
zQ{fz_d=7tSKh-e@suJxa+F7)VXjjpwXy{F?TOOE&|GDUyL!TV_=7KjR_R68R0AG;E
zXull#=P)#fP20i)L<i+?MGgbK$Ut!mz>5sd1^azmQ#&#whoAZ>Zu!BySLQG*7Z|U~
z!4UYpRwR~#o(p#Upq)`FJ*^yUcF-t<N5RR#&7t*3v>Ay+4qguN5im!<&moz^$l(|@
z9H|`AIeeGH_c>&8$mZ}w4o~Kg%VBs9^K!T$hY@tnVR8;rau}7v(TPQ4a~LNuI)|%s
z7?Z>4ev0<0{Z;$_kEt&Kx2bynzkDdOOd<1-a__mrIrm=65M`d{c{qEYJ)B|hbIvv;
zq?CkGNQ6k52SY_FMT90wM2VD25m9JTGW<XLz2Ecvf6ud?&+}RDde^(wde^x3*=O&L
zD$dbzU4Rd|C&MVJ5=hV?9hDP?%Q|#aRjUPv$?Acz9hDcxSav}ew}&w<j9DGk_%Pn-
zsG?^6s*Z|ef<zB=RFlHEBaA6wH0z{(>8KvA6`0KNUomiPCv{hYK$}i#DjVKOjb${9
zyTe!!#uH&o591#8Y#2+z;2%lu4P$N?4~T^sVbIQff-}RopQVSfr$K;1hS?&YLuDb9
zJQ&7vf9H|V&O>25EC$Kvg)u*j1z|iQl7)hIR|+ucQQ?a+nv1yz)bZs{c2Y~F8jpvu
zjNRQyF>LIlmWNTNN?=bXb+VIM8Ajmxz*Av79mdj1fhWb=tHLPN+4u7^)a<OD=K$#J
z|L^8m(RnV6;?9c7@y=>`XZ2DTFNg7N7+b|rt2ySwcr}bQ5~b_bhOsV;$2+T687c){
z3uAp4Z`0vnYzX7^Fg9|^i!%Sb@Ihzwy_9vSvwD*=E{sidX1Dx)b^MMd>C`+>vy0kH
zx96)Z9Ih1u*<Dn(E~=<@U|SgP(YIlI7RL54c7*Xk7$0&hbx}LRct4D_W*+sYbW!uW
zs297akLa;5KINS4s&-Moi`pH=Ct)1vqW<ins&w_6%w}?ob?>S++!)v!#=bBPhVeyL
zrFB)Gb5#_d?+;^=NFMI0zTjWL!YFJIc($wB+|?h1Cn^WN3gZxcQYr9jS5>B)Iugb=
zVbs!ay@qeYI2y*qF#h8-4CDJSeq$Ge@k1EL!Z^Y8DvTewG<8!yg>jrSy_*`|O-<;g
z=5<r$Y6aGGQzzN9Zt8RxXTmr|Bi$6EztFMG10=sPwN8LV7k5`zyQv$xt8-yAs2%tt
zj6cITAI2Xy1{S7re-EQicV%~1e}(aP7(aDa|8lN{abI`!5BsjWBAHY*u)e$6-CbSo
zuIkngTnghd*KG|IG+YVeD%W`p(2%8}l!ga-D0Y3F9;&d1>fb}9dMN%CrHqDaG+e8p
ztmaP>I`-)vivHQ!LzUC~arku)b*_i1sG*XEt4s2))4-Ni)=-6|^i-d>&p%cr@OjHX
zRgGV1SE{F~rlGoq8k)Zj)YLGyNnk)v#i<(asoJ*))Yec(LnjTLHPqE`gN9rUc^c|z
zsIQ^9h8s0B(9n?9G&Iq`8s6PgE$yiqX?V4#KLML+{xI9!QyuTAnhEC!q@)F#+*1WK
z6jTb-?xk+h_$o`Z)IiT<Yse8opEJrp_tI2uFO^Sy4Yz1$uOX-*q(NzDt)Wokr-4<G
zhGORJs>qFAYHBY<-by5_7%jBX&{m?0dnvZJoyKpis$JIyx-|@R&~U4Ujv6lZQnzXR
zwyC0Hzwf0I9kZBmaQl3Y<SrVzY8awnsD^GDx@+jKVE~KP_#)XrFAcrvjoN{p8o$M<
zvU{sO8v1I`D+l_~fxQ*SKyGut8l!~|)G$bThpXJ=-oCE}Ygo`*y;e7H_l<#J8is2a
zrC~HZSt;;xZ^dCYg1dm`k2i*$z10{EVcMrF`Y27~C-79AKK`0>iS}y;diU{XpQ*vp
zuvNo04Yr1;h864u4KWRI4Kp;{ry-%iVNEnl)WG%7)sWJV*8G(r$*rf4;-by!c^bxQ
z7^m?=V19JGR4moVZ_zXL16(3**Dy)LWGcwuT+m0|q4_KS_!a@;RE^)dQak&oX+rK4
z<m|pn;}@OO-I9f-rfaxI_`QM`q^y}zvAG%^(r~|qSsG@G<N-m}d5(r!eN}#6^<YNQ
ztFL-k!#oX3G%VFHU#zjy7qRVq)dGn=qG6$sM+I5>iH=!|H9RI$X-;2%#&J$96IVR0
zVYvpb7<9|Hrhz~;e=mEcR)GJ8d$zAyso_Ztt28{NVNYMh|06%G;Ta8YXt?Q?R?lj9
zPQyCk&kIucPG9wc@D~MN5`0;3wcr}TwSxR#C$qdF{8ho%1lJ305PV&5qhLv{H-*0?
zxJmGB!FL2V3vLm7SFj}4dm6TD_)WuE4LdaK)NowG39cc(WWTRrzlH-EKG5)?#_y-7
zk2LHS^06Q#yM*j0%p?Cq!>4qJhR?X573S6Hr}j$f)xL_U`!sx>$@NrW-WM9a)bJhW
zct6E(P{`MUUkM)4a5$6Ny`MV5kt5M>H5|>zONiM|eJ_$91dj>+s9|b9^^@=twa5CY
zpEaE3%GO_<)No3}FB-qFpeRRwwY#7CrJp*(nO-gMD~C`rmum&_oQCrn8tG`P<97{3
z{Z%;~<#qg_;ZF^JY51GV7uPopUl-<G;F6-j?XUikC?)?2>C<14|EJ*+=U{)eN!&#j
zUF8;_ql}I$9i{aDIgRqtx^IMpek-f{p1)SdHM*a7xtJOyNfmTd)KObU9UYZ)RMt^L
zM@=17bX29VpQ@(&wYp9$?C!5NNM6dTODbzsOXsVz)%6l(DXbU^{inaW7|N@wqrMIj
zh8u*`(=nmYk1{mS(J+&G-2l}@M^hcGb+pmZOh<Da1v-M#q8oMGETn~wn{==UR^a!-
zyxak*rH*V#$`Q<ydIoglN|a9MIzUl5U*{{1eQ(hDA)PNAR;_dt>V97o2^I^MC~zn$
zDP{fu)mBG49o=>G&~b~-H}R_5bad3wUPlMfxmCxv1N>I+6zrtqp8={1%hl0YIHT1E
zs@#F98*4R??{xK*NqR~R>9M{-dg<sbq>mtLa@#=FPv`qQ`4(cu(LPYeARQZYysl%g
zjv+dx=$NWwsP6xXo8fjH!*~h6EILN&{>KQ$>lmeDw2m=4!a7ba&%UreJ2}w*E32kM
z*O8LEyi|<nFm+gLZ0kHjFpH1<3rXm3ghX}3git5W@#f@{xFSgkQb-BI{R0*2lV%+<
zbsMW=oN)eGm`M|KeEEAeUwt!?E#mjJf6bmGsdorY7W{O67B%nGF-^w`9Z%@EOUK<h
z9@H^c$8<KWY=CWCIZ)lBgFlMhtK&po&J5xA3C<K`()~ha3C`9rN5})2R6g$ekdB9S
z%-69%M^4q;m-wMoz5+t`|2T88pZ`UnM>uz~0!suJ>UdPhB0<U*3wccN<2SRG3R$Lu
zUn6>4_;NvN?#&7qg90mcJkPPD<4GN>bUdZwX_6uNmj~xF^%)({>UfSFJ&^DE3+xl@
zGT0|Ca;D4kDzE5xNyp1NUqq=^>u54at<`blU|@~lHG|YTmN-bY8>9vfQprK;RUNO<
zdzAv~b<7^5-fisf!W(tGq2mJ`AL@8h$6GqK>e$9nt>c|C`I~iY;ruO||2Cr{Svg2;
z9HjOzyEuQ@^?W^=x;jX`C#lS`L&x=l)pki;_g3Cck-wiwW!{f;e5~WBj_-8r(y?2|
z=Q{T5_=Hnqu=-TT9!{LWYV=_BnU1{-gVjEruaHu+2dk$Bt2YNLN|<Wb$vL3oppLI}
zzNkli!QrIy^*E~55Jf!1Rbq%b!tN7tm@Al&4nq{>Lx-sJ5cMr5&JY#e6CnRy#}7Kn
zMNmG1V>*7+@t2OjX<5f{9cOg>s$<p=b%Ha94%hv2&d)ku<)JnWQC|#EzvwtE!m~qE
zg`ukXP<7i-^_z~fT<y8Ya{>-k=Qw7Ds`EPk-mVy3H&ivbt<|48-XH28x_%g{T6geI
zj2F0Ka2b!FbOir$ZPamD#}(pG^&i)(Vd@f>*<otob%CD4lsQaI9j318SUgOv9j3A(
zV3dKI4k9QM!8H-=80OnA%V<ac|LM#~Bi{~F*GBNqFur>^P$7bf5!8vGZUmJgs2o9!
zh<|{r5<%4nszp$pWVpI6f_?P^U52Zc!_|8={3Ffi;rv&Te|1?if?5$=&mt-YYD?ZJ
zB4^Tq;p&D6>P65@<n<$H5J8iO@4$u;G>Z6F%{zvx#u2O;uD+I&5_6GLp=pHw;81@K
zSIs3aFG4GiP&Y+za|Ej*cq)RH5oAYTMqovd6G0$?ZV_~kAUA@%2s%dmf92#yP!NHN
zpmhX6kx*D9BoskmM$&wQ|L>dP2wI7xtwbql6G4X(Nd)a8xJ7t-L3J`f1%_cG)U6`9
zO^}i)BUC5hodvsO<Xt29Q}@@F9uf46U{C~u=?Y2hm(l4hq>o_V2o_0A`e#xH2pJf`
z<lOv{(uYJaB7%`3A1XLZa5!Bmc}Gc97aSeI7$IRnO>oBuRi(aPtB6EN3?bj%oNq@E
zjbIALRRl2+dJ&8j5|1Defg{|FASHx(lMz1P?K_hp&Grf(C#km!ju)Je(Vr;fx{+#9
zMsf#Rm*Fi&syic?7Qq7%JQ%@U5!@|F_eU^2qcbCddoui9A-9e6D{x-~GbK9jtlv|!
zgwGb7BS_&e(VQE>;s_p#;GqZ}j$mE{^CMW8(ODqmkqA6do-Oz&yGG>CNc8!$fh7?v
zjo^t)u4NG{7yh{5R#97#N&P~iD<gPPBo`(6bOg^t@L2?VBmV#Lo{ivz2wsffIZiJ5
zhuZTZH~9y#2wslhqX<5ZU^P2Bf_Ed>8o}BK)<v)}f;S>~C4yh)XT2K1YZ1KFuQVIG
zK7tJqyq>8;^-(H&lv=bk&}o$Kt~W)#DT24D&zkJ_oyOOgyc5CZ2)0Nnx8wctfvQoX
z6vJJ2`h#%$uB>elychAm$gn+voe{h*d<R#sqX7zu9|-?Yu-C4@_)&_&U1IZ-2tF0E
zTPjS0dn8ISu)Y71CDvqL1fNH6C4#FF?2q6;1g9eSC4w&^_%ed;BlsbLgAsfc!8aU!
z5gg*u5y7M@IW^m7)o-807eIX-!I6mnCaC%yvUar3s(3YroT<d4?DtXXJNkK)N?yr1
z7Qv4ZoS>uHXZ<8bjz>WGXIFAwYM)iuK8t357WqlRmhH1bS94BBaE7Bjg1@*fiO#PP
z{3Z%#BRDTbGvhgt)M%geyGU62A6#$$%Ogp(&-$BdGF=qG+$%X31X;t2lI6b$E=iVF
z?Xxbk$x@#U?XyT&w=4st4Ad}C(?DqhFi^ojMFV9Flr{K&y{vKu>U79ri>@(zCtPdz
zMcmpxi^$59H$YRYUL^yS4OBBwoz_HB#Xwa9*GVqwpO;*;z(9k{LYuV=TyLO>fu;s(
zvmgTv3^X)Q*T4;uvA$qER!<!M?v)(2g4t<=78)6TPtj?OMU7qa)+p7?Kyw2(8MxWN
zjfU^i7Lv*=Yz~o~*wR3@fj~x1<2k}<t+0I-Ys*sd4HOu-)x>Qkf(Akcelu{^K%s#m
z1B(nSHc)J!m4Ukq+-*P^Xl=kT;2LOSpsfMJfN7wefm;j=GcephdjlN|^fu6kmJQry
zpqBx@!m%SA&OiE%&gpERlfg&b6d&W^BOF}}P{`0#NVk%xfgVD7W>R;1S-CCzpXB-)
z=*K(!?8-~oZ`=NV>-rmLRz7FIzu5x}5C<9<WbkiFfgeUGMk_1}3=!p_EZ6fNq`xvs
zjWD3GIU}-1vQtK@QG%ld#|VZ6nUptL=?0%ZQV~IBxtPwg*dhbTSM#_6MCpXlDsK2M
z@R?OF5Ti@$2JRZI5+dOzXem!}m>Iak!0pfHr44unCK#A#V5~?e9B*J;hCeo1Q8M66
zt4ck6eLrvvWK!=q(`vGTDRlUmR#Od36ZxH))R#u9l3ddb++$$KoK|xU+-qQlfiFg@
z2U+ytmiHOx67pB7nTCH;@qPod3_j(eW*c~}x_|DSBhd#0dAE~E=SQm=W7I?Rs)2b1
z<{SR2Q5G6lz|O50xOI$rghO$RiY?6_AaB56>Z1lmj8WsqsK*Q}F|gUd76VHSEHm)B
zfsF<pH?Z8mYX<%uoVUWj69!%~@Uld=4$fO?;7Q@D4E!~_6?G_l%HZ2I^PU!bM(|nI
zS;+H(F9^OUxKOgJHn4`xH1LW6ma<lo$kz#>wO3}hBGUeZIjx!=Y_*<UGpAJrJ#T}M
z2gay3q#AD-*ks^M1FOfV?PJuzF^XB<mZWzCPm82NSiMWj296r|&cHSq^ZXFcK?Cmz
z-)>-sft?24H?T(}9|*qqbUw%ShxGZ{ypIG)J{Gb|aJPX^GV)Ii9DXF13ZEI+Yha&P
zI3W1BAWiKz_(P%p2>ll#`7$HtyBWXYig9b;5Lcv5fy2VT7Ca)zq;G_LD;Rzv>w5z~
z82HJ+aRbMs>&KVP9U4|YvZbNCTf&OSEjZRR>x2xjpADQeaLNE*uIPo;83Vr<IL)N6
z`l@t3g)_qHS4ky*G_1}UIL~#=L<<wY8~DROEz{pq{$$r1sA8h3iN6h8FmR2DYfbz^
zha1Q;QOd+cS<@~VxGdy9E>`WcnD<I%-McF5XKh)oxlS^aHc`g(*Lj#&8&*srFDoUM
ztm@@Vls8eyL}e2dOjML4n&ryL?Xtu^HJOWn28q{+!Rmt5OmKCju!clQY6{^Be7%X<
zChC}|YodvXrY3GMQO^X;))%BQ?GqcAXei}25^T(j(k?cQMK=?J%>_#qeCA@f$;8bj
z+DR6F*ARs~6WJzmOax4SE6EjP5v=69VYQLFfQbUG|0Y5vl!?|R3QZK5{<hM}^!-WY
zV#!rfhmtb`H^(+2Y-|2+=b{?V0Jli#<n2v#kP49B(>|-CiB2X?SoqmOXA@maylLVs
z6J1SoGjX?x=_b0H=wV`<iSZ_Sn&?GS)VV#kw~0O`hM5>{qOXa5^qZ!JnCNd}e^?DL
zG0^nyMUeAVa^Hm2AV$M#u<5^K@<Lcu(flLaP}84WT(3r$7%54kOz?xJv|oawO^h)S
zHldlYP5)Jyx`~MCf6~<8U|1cvy<r|-XE&>2wrRqmul~rcxhAhj^Iu9CH4!rrH<2*m
zm~c(7CVa2vshmP$`D4XXw}d)q>a}lLvgRohX%n95UxKleu~ISW#}^k(pb<^oVPdj0
zd?L;64BRd_i7wLAQqBMQeu{}ZS*4qDr;1uh6Q-GXT~iEqnY>HvlY30uYhtE}`%TO+
zai59p*97i2^3K-wkB;2Dc#mk7iP<KeGx5BMIW*fn=TQ@jOgv!nce)%#A2cyn<PQlx
zEI3b)sq=*_F!4x6ve3kaE7?q1OmZswF%wIK@TvZ#CYG_stK>Xo;&BtpO+0D(&t|U>
z<fEJ9PY5SjY5M=;AYoW#;&ROYFVZ*DbDlQwjEOacxz7rcytyp!f{7PRtY<+cuCJ2w
zl8Kj1tTr*VaSo$=W&Iix>rDTlck;DVzL-tI=qn~(HT~y{UX#>LZs2FSPK@w9#%~DO
zD0ts5t=_+!P2nc?mx(7VthDfsiOrnI7MfYuV&YvBCuz;ZRukJye9rM{^8T}W&%{pp
zlm0g`phga#$lAg2vo-JICOIFN_|U{26Q7y*h%1uH|JX!yZ7V**`R=$Jl3iRbbhX>W
zCnEn;kPkvLi7#y5E56;wm8y2mn^&`2>1yk=oC7AlF!7^_pG<sd;-HDcCcfs>uAK9g
z)aMWfLz$f24RRU{4@|6`cSMZPy~j9lgtOzm6>?PYI}_gv`5}`!bd3K`y%*Z$@Oio8
z970#Kf9CAwsJ@!r+6>IAnzMOTD;oL5#A%aXOvWV>XH5KR;!hKQnfT4bw1TX&oPZ|y
zEoRpIyjZ54KZN{FWj#O(bXVIN{?mhho4CNm-vp~Yqmw_h{^j~F%5=r>$vJ$7cH<jz
zE}OVwqK1W<7OtAevT&`1a+a@O%EC25N?YiwD_DqD&M6}jrj`}Le|Pc$T7Ct9lJXWR
zTBs!Q3WBK*vMO7sVxgKus|r%Hzv)-?I*IZ@Zu06DylOe0U(Bv$;d+rbwouyw9|Nvy
z;RXwJgdeElKNvitUrs%XU+&InAXwkRHW6~<G_=r2vM+Drt2N1#NdGjqaHEB=1<gVW
z3pZJ~)xvESZnn_ULeN6ULbin*y5eefzJ-9rZ}<2I<~$3zmjC!PpGGF~L1+p&*$X(N
z2j%dw(n1SG7L<k77K$x!ez8TZEbM)()wbvSZsmt0+E{2SmfH&+ZIaWD?JCM)xJ3w`
zEbU<7h?mo>e$L#cIUOx@vM|)bFs}cZR`jya#X?sL-7=EyLTXkn%~E<;=xKrDnfyve
zAA4KqlhN#Jp`Y;n7Do2X8DL?cg~4~{3?gQ9hDzQc5?xUyXSjtC7DihbBa)GVqXgf`
z^&c5MRMl^O{ok`2#{DMi79tkzw=m0sVZpSJX17|fBumsn%z`bP%D2cP&~XdNj3i;f
zvEW)LTPEj@T&zChKTesFRP@Q3QzK`rg>e?9SeR;IyoCvpG)Zvu7)-SALa!W#+lA1R
zcSzD?3;U}1-bm`|P7Bj4%w$JT@+*9oDBNe^ZXuLRw{VZ}doz+5LPp8+nS68pZYPja
zC1<vUITjw3qz5cKXkosE1s3LJa;@5#HM@4sLlzzu$vnYR*X3;MmBXY*I9mSAUP#Ag
z=kSr#ZVmjeiY&_HU2Neo;Y$SbYvwE!vP|%C!R3N0SPhx%Pg+=IVW)-nEj(r6X$zYy
zylvqb3(s0uXW<nK&slih^6#s>ME|gvs{<q7^uIF6@S;T5nprb-^|FQ4bdjzY)(BZ^
zVYx(KwJ_+htk*287dz{9e{bC&{7nn53!!AAkT(QB5uLY$FPfYGj)l#ftrp(n`fuS~
z3+;{swn{23A7A6&;lW!zZntn=S39I)w{QAiJ#)7QKHyBW@P&mhEqr9*W68VM!Y&KD
zIbo%SpIG>m@*RN}UJsOu_?6^oWRJyr#k{$yMu=pe<sVT#7u;|0KBPJz{GQVJlpnP4
zm4$CCd~4y5g~JxUmV%f>Yk$nkCo&wdcrVenf7HTv7QVOe1D!7t3LAYEIA-C;|C8}2
z?tqedT!gJ&@vWV-aEc3&jgB^cv2dE}gN<4?&RF=>LTMYY@tcLS7XGsEH#5>R7XH1}
zzf%4#qJC%55%s6VTRQ3wu9=2<x?d}vRVXYn6c1w;EdNfzKNh%nGW;v#qJ{s2ToSx2
zct!B4V3zIcml7mdG&rY>jj}e%+o)js2KkZtL58}<#<e!@Z>VyDJ=X=uuiV?JqK)tG
zZFQZEN;WFnprne8`wUf8c<-Ho6^3H8nvLo<YS`#HF`xQ<wgm!R@=Je^cfF0;HuC)J
zd39{mwUHx*-XPdikaeghq`r*?LK<e|jchc|@Fq5_b^e`@W*JFyAvfA+A><~(n=`2`
zg=7oz!Q+6C+)OIp5|D4Bz(&yakI-EG+S4s#vO_isZ4}wqV5p8GvWsnA)hdQoLX==@
z8*PNN&7`&ya*K^aqTD`^)4>Kmw{ffO9}F1nWTUf<J8Vq0(S=^JG1|r$8{KSlx6$9m
z0NekOw1@5gXxrQ71)%C_qnD8J(Y*hDZB@5TULPBMZC;nDel|8m^O~Bfjj0CO7-VCV
z?LSn^r;BN1Fs+$th>f8_hS?Y)WVj%ceu(A~M@lqi`cDfVU6vKLq1i~-aBS!{B2tr>
z4a0_M<6<)3w$Z6g-d(05w?tyL%_EQ6U=2y)k|p$It2+~Uu8l`c|JUB}Hj*3zt@Bo!
zDrF;W^K_~hJR4($kIP6{jR`g;+B`9;+igq|hcF|JeB$P_X;W-WwXxF1lQ!<OG0nyU
zHXgKbmyNq^%(8jXQw-B>%oKi)jeBj(u>EfnQ(nqa_hod>nX0;_?w4pw%g;62#+*#*
zEtZ;V;~~!C=6TC)JZxj0jb^3t7u%RGqh)PYe#-J6GhSfh5s{ED6!NIxBEjL7dMuN=
z#KzJLUnb;ncKuxc#g!{K#hT|mA;=QRCu9d!*?7vv$$fdV{`M>Xw9Wq!pzPeNnU;Fi
z#&b5Fx3ObI9>a?^Ua+|j<}b5U=N@@QtFnlzZLG2J*!eO`&X-whW1WqjKcm;rc*Vx6
z?Bz6^G+wi@o}Nr%S`r&<yl!J$(!c85XyXkVFU9b33~$<ai-DJlQEamDwvF#tPaE&p
z*lgo78+&bRvGJ~r4@8ZcTZQbju}#Q(HbO^o8Md>+!hiZVi&1L6Z-boVL(%+5@M9ah
zZ0r`!q)%;pBD_SCl07ySbtqM0VV@*@ZR2wx`?<=ovtB4QVNTW;HomlRFjM+hnX(Sq
zILwAyil%6U(Ie~*$-c5_(YHdFbTp&?gN<Vx!%?K7_>n^PLezH%!*Lsba)#PCVdH0x
z%%(*rZJg$UFZ`6?FM?EN>aRA=**MQ#z{XiAhz()s48IHhk*P*WF5=%dF4(wa<FY9H
zBi1h3_%~ymmj4q@`?PaKc&R8#NB#O-wUH&H#2_Vzf}FX^{2%!>QCu5EIcZmA!SYd5
zi2kp4s9aHml?2%lRidaG#dT4?XZuCbKZ<HmRF9%Y6g8v%9RSK}MR9!;IZ*^eQd_V|
z6m^8u72Ip78=|Ne1xbCu27(O*8woP0aTHIU$|h+lxoE#x)Ze+9M{%PN@)kmFisEJ=
zEd{d$ADQmoWBl1txlt5FQ5*$1KW{+H7c7V(C?q6Ed0`Y+EJf0at*}+cD5CLzilVhd
z+X%LgqOA}rv=eem)W6zdw1bdaGtt{5^-_gg8tD|}pFVOrN6{sUu2FQ0qI(p5MA##W
zo>BCQqIVQ;2K~D(f9(%U9h}EE=kxXpPj`IDb6?TCI5USv21GG13RimJ?H^h;D4RVf
ziosEk6x(V@6hosJ7R5hHLeVH@Js%n_oY4_cjErKGL`O%V3mKD14M(A6c+b9}NQN6i
zOhGFOTS!M+(IAb-qKHc=2|-GnDEP8Rl9Jh)mces-6qBOxgmYYtjbdDs+lN0OOO}NR
z(wvDRVMfaDV5duTauiddm>R{MQOu5FP88FkxGRe3QQRZB?iMU5j@Is#=!_`ti~euL
z;IN#@TFEG)OV5<g<>`G^6uWn3@#|v`MDbu0Ped`?R&xcH3O*$Gu;4tw`GN}ssr-nL
zg;6}3kt`CjSnx5yC2XdxsJu*~j|(mrTp>71QmL>~qEAM#N(d$W>gPQz9(YFZ*(jci
z;`u0EV9lfWL|R8jy%@zyoXAh)y&T0(A*-WU6UEvn)<v;HBusrp$c89h%}8F0V!iNW
z<<eAmJ&KJ{ypc)W!qF)FEx}D0`P)&v6UAnUKDjz?fvuRA;a!nz72FoZdqTDgz9>3n
zw}eVG-xuKrQG6(b!jGc(IKy{IV=4SJianf|QJjq8GZB6n#X%u^qu3{e&Hr4;e!&BR
zU$Auhf9w2LQT!l6f6bSHaX5;vg&Yz5M(|s~qk`1@E{gAkcgZSZl%*UKBR_I&6mnef
zgdkJxZ6T_)c)945<oYFJ=d_SBQT&>b{1(Mo;WupbEuW9#_bC2|;!h6Om_Hr<isEms
zpTaMQ{kk#S5W_!F{2RqZkz~bCDu(|urC*BTvhXW{SGh{JE=^M-JBEm*W2h<C$Pq)C
z3@<C>8o_I0C?}+R46P^URuCkqD5O#hm1C$9!|J)YRb#kwTc~;r*TqmRh6lG6P>tb_
ziUl=9`Oi)HjMmDOa=nn+G1L(<?@NDbGt`Trc}Ayx3=M=g6l^5eIEE%dnhG`(eBh}p
zh7t=m#?V59HwoS>*iw)R*+Qrsh#@zIJc+gw%oi*W3<^>|6hoo#BEjMqTE)O`LNQ6j
zFz~|=Lu(;zVrVPmQ(IAZOAPH}=n%uLF+^f8Vz@1ajxh|1VQ>tcV(1)0pBVba&?Sbh
zG4zO`XAI*HXO*u~n%GT>>&`BY<nc_%+tj^8(pzwbG?v&;q5}k}(?5pz3EvL`W8g1b
z+~!8@&l(c*x65HM3>USbF>E`P#V{g<kuglGT6#g%(xYM+9fKwc%s3{7uy9)7qnHe|
z$;(nb=Ks7)ZpL86FqNGigH2%!V`CT>LriixF}SRW@I(w>9?9b6FwgDGm=s|;hE&Y|
z@svNA5j_#|t8i2pFZ}ixCJC7!HJlg&KM%)LhC4()MR0P={~AJx{NNG)@H{Psd!)U0
zi2{@E7BW4?W1D|OzgMC&1o`CovQ=3#W4J$tSuxCx`3IQiW0)hU<V!{J0LQbCxq_5G
zB;?^3=4B-FV_1;kkHoN0_@gl_iea(vC4!F$@>D=0C48Ak7=2vGa={fbJRxLdCiTe}
zRtbMf@ac^FnHZiG{#-`FHRpv4e=+v|&upt>*bu|(F|3i+trety)(LqfhF3F^*MzK(
zVeWo^p<vi35-W)}cnLrr!=@OPIe6T`+cCToLm+|N1UAR8g*_WbI*xZ^*vi!)j%smi
zi{ZT(PR4L5hV3!zh~b+UzKvmL4DWLo#Bd;n4`TQ*hAVd#?~UQ37(R}nTf5+%7<LKy
zM39o*LN40s(+r`I;WLR+NDKR7c(G>abHVOLko*hbhd304P;yYnSAt(=hYoWB4lev!
z@Q5IzpAQJGoSOSr+u+d{zKijJkl^=%KMDRIc#Kv3u;@oYmUWy1RruxBp)U>>{2T+Z
z!<OJLF`SO!&lvs^$(b0=$8hPZAX9%8$#1kKgpzYHoT*n#!tlEY|A_JMtb$SXcMKO|
zs1V1`f9C!Z!@n_<jbptLyvSughSG6-ekS)4*W3RJuf%XQ=0`6J4tgb*AuEnjqC*8H
zJ=HcyWPk|E2tHd7x^;cQHE~=UN4Yr4i+vVBw-D)*ig8pDVP(N3TM8(wBD`wccO%uR
z$5A7Wu5omWqh=hn;t0f%8^`r=)Q+P`98Ke>6Xz#-gKS8BX--|i8wBe~(uTG94J1mP
zhC&*}(KsVv-lsMPo5j&Qjsur{JH#8~Xc5Ovaoik7->AxtBd1-E@|L1Qf0jgZB$Yfb
zj{G=&U0K*!Bn5G_ibKT_j3X3BVH`zbf%-I3ESzS^IVxJm(I$=#aoie5+c?^Zh4!Lz
zONo8S#Zp)wW+AyPj((kk9Yu$hV^P&fBqZyH6n3ExhZO#DKGdCVjAL*dL*ihxXB^?m
zq29uK2{Ovihovxk9R1@M5XV4KqrA<5ASEP&1Q{hC8pp6Wj5y3VhR3n|_S_M1j1&d(
zQ6j<RU|7iLIK~KJ5{I`IhaLx0Il?1Ch8aOdtvE&<$&bg8h{F~hl~g9hgiKmrKm|vV
z7FP?pLMTbbv85nH;>9sGj;&lG;usgl_&Aou@pv2);+Po6oH!nc<Mucv#c^MpXG?WQ
z9FuAJKyX?dQ&`DE1$Mh2qclD>4&t40+#6LScg1mc9Mj`i(Jpwe;5~6X9aSAJ2Z<EU
zkSJ}=6hg`UqBcu#wiHLr2jiF<$0GLf-rR>u21C2xqj5YO$GkY^XC#jZSs=(ogMGbF
zIK4;CybO!ucr1>~<AY1$Xtut9WT}{KQ7yQfg|heK*bv7PajcBv`8b~2T=*o1!LiWO
zoR|ZGtKyh-sqm>dzKp6rql);9$eHx4kmurfrJ6rOUx?$yI9`h5Ws$!sxH^t?Le>bb
z6{K?2n0h6{XEq4E76*}%+?Zko-e?zmJ&uiWki5ZFT{`Z~INlP;ra0aa@^*<ryWryW
z1)GI$$w(F%LFV1}U(tJUY>(r+IKGc#M;trj*b~QRV(|SqK8)id;U5V0jwyzZIRSqP
z?P8O&LnI8l<M>2`<e$dj#1zTiIQGTyHHSo>qR%-I4h6rA<DjVRm*@e(F9aWqDJrau
zDTc4&I1~rTVU`|K*<TlsABp3eIKCA*cM94(Dx68w`5}&DT)Pseo4}88{1nGOar_&{
z@i>_M6sM<D<Ag+ij^m_|pTsy7PRDUBj`MMx;j+Vl_i@pk)q=mp`KB^I`+;^ry1mhX
z;O}w#5yzi#{4L0&t1<Og984l%s2^9%c!3K`yC739#_?Yq6%(kGz$K2cILan)O#)Zq
zxXSsG@Qr6BP)bPY1eljar>Yb)J5fz5E|WlqQ@$x0CtjOCxdh55z#^#GF0LwMvM>6u
zh&q)MsFFa91ixkP=c+1}t0jEp>k{006iM|2R~W?>vACKE)JoubNn(k$g)nJiT(R66
z5~!De`YX3t0`(L4?7o6^`|=x$@dkno6KEu)!rok#*hG}6(=_4lza-5QxG}+xeipWn
zq?QTXB;@7<cJIn(U{bb7SW1p)Qka)Oegc>2s00cU2qv&3fu#wA5-3bSPau*&Q3AyY
z3`}590<CC)j!NLx1X?Gs`lF)uR5%oDlR$V!VOz1^E>p@a36$LuWN}oZ&TR>F6y+X*
zodmlk&{;?q!3QrEav`E}w*<P2q{-zVr(sXwl=n)YcLIG9=qr-`g8c-&DW$0};Q#Q!
z2@FYK6kYUm0h6|t4h~I#$S^E{;Tb+c$Vd*DX9}1!TB2hzso?}P2~6S<!breOU}6Hd
zCtxLDCy-9SlOm!CI2<rf7Q_;G=X8)Eo<KtQPahVQNZbU-lL@3UI*g8$J{p$*cYN;S
zOOA&Y#MO8Xi3^1j1i4I2O5lzJ9!y|v0+SP%lEB>wOqVS0Y|oEgES$<woxrpN?n+?R
zO+^e8GW5ArcuxZNCU8IH3Cu`<!kL2i2_ApCfI7@oqCZ>695F(L2PE3{YhUM~1RhS{
zkp$Mn)jW~2lsbok^F^6D3)nT63Q4H2Fo8!CSd_qG(LX%5;IRaVOd@jcTb97%3A~lS
zrUW>umnZNPr%wVaIMVLReIkLCZ1SOkCllCLuXsz_AaRvQNS;aH*#y=l@QNrum%vL2
zyv#9NCHTC|h!+xgQKFP^g3ut37ONBR>&7D51=sSpF8d(&^j8z$PR;PTkk=AeFJwc4
zYqH|b#iVyO2RE|IHV5Ajd{gkQA%$;~aKa|Amj<QiEeX8KUKmn%Vn^ZD1hyrxBY|BB
zyeFwU6L??9c0nc`zt2Bod?3*eS)xcv<ZIpv`l)o_TYf8e>e!vYCkcF-;8WJY6LD33
zU+x}%UGmAk1U^sTOai}hb|-KkffEV*oWK_ee3`(}1ink)pkzG6j$mqBeMMXoWM1Oe
z!jFix>09$D`6hvHMR?n=B1*nb;0KOgu8R9|kBOZh1@9i_SByd;!|{ZFQeyNZhv=}P
zp&#)Zf9e#+>el>U5;!ec8YUF$%px{i4*r(F?+N^oz*)NeT=1N~O7I0Z>bww2sPkt6
z|0M7)M>|iR3H&XD{DNd5xtPGXL%~aeB>xHFtS=!~6Z{({Zgp^*gHjGkJN&B%YCC{~
zG7c&_sN|rmgKHfB{7~NUO<n7toJ3g@UW_m>iJ^iBS1&BC?4XK+8V+hYsOsQ42h|<$
zB*Ua?4v1z#5h>>hjdBJ~v|5hel_bPE4(d9{cTnKq1_$*VG<ML$L4DDoLRT|LY~Y|_
zM$*XfPXZJ+b#UzYU`q$t4w^Y=?(q4^;EfJ$5_t=Wj;rTexLG7r=E0Ac<8TE~0Wmmx
zbK$Cl$`whTAkQjH4LT@x(8>W*Lk<cZ+~1;zyvUJbSVA$XMA*(jYax`hanM%ym@Pp@
z2VX9{#X)-qBpn>i0!6YuH`LKVCkKWD(?MqkT^tOe4lC?n_m09|4th(LZVtK&VXhty
zdODz4jwMF9NAz*f*FirA>uUIykn|@nd;2>W;D8q<18H1l1XmSCIn9SS80ugc$AIjf
z!`au*6pU~%QhJkol;f`eJf~?6MzbsjVF%o%OAZ4hTqSe|5qjWE?v^Q~8F*c3v2z{F
zaqxh{ms26;;0_0q9mE|ZIEoyMci=ewB}`iEyAF~LN|ufk?K}P|!6k*h^&E^9hjW}T
zI>Et2$3I%|kbJx2&p00QCOIgXuq9`|DGsJOxW~c0;&!eNcRK!AZW_(fb;m+?JD4tk
z7YID%QbOceWrpK#g7-Uo+p~XAnd$h47RoDrTr^9PW((3S-0vQAFxT-f)gN{6kb{RE
zJmO%X<8M`TFNfkh2lE|#lkm^v3mo3CRphKNQ|WCExkU~ZJ9x~&5@`rKtEJpqSnBx4
zFa|Dh%N?w6peI2;KjC1dgH0~pcJU;ALa(}*?BXfblhe&bEf>!?c-FzU4vso_&cX8z
z-esK~yx`zP2d_KW=-?#>FFSbE!E2lXM}n(4=II|9W}XpT$F6t4%5)u4NaQ-h<%msQ
z@A%hrJeX~8{9_omGb+<{Z?NMWY<BqBxZqnH3B!su@#c@iwMelO8Q9D3NNVZ7a;d}N
zx<y6{U9ru<dk*%{po8rWb~yOZ!AA~u`iq8opL730A@8oR-#=h;HW#vY$Uk<l%fTlc
zwCf9YJNz3?ke5F^v#~dMLikkVJe)IiuY-LK4sv*~L<jr1N;v*Td_X4b7mmN}@(97<
zO>c8eU~jUBLzFxC+QAXWzdWZ-a(*FCDFMg780XIZ4VSe`MI1BVIr!eeWd~Or{6J?q
z_|3stu9;hcKRP(!;AaOvaptxS9+#=dDsg!5z<H8`-@$2iO3lzI$3KRVP=1DsUX|dl
zB4?CBUN@a{aNfZM2md(uU8d@voX#?4{*b&p!f{3Q2XI3DE$daokBa_va8VZC|0GNO
zX*?wOgZvU}^=B^of~~&lAj|camntqwxhU<ToQv`<;G&F+Yg}CGf`=%cRLi>ll>$4L
zSJrF=PaWMI#WOswvnsf#=%Nz!pDAFpvdd@e{gs@190xoH2^Wy6F0OM?%|&(BzwyPP
zRm1h~X;6oyb3wk|MQs<|UG#8K$3<Nic`ou@+~A^~i{>tFbWz_$0~bwPG<DI?<(i||
zm5o^X$3+}Vja_ivX7>?qzFfoxHgo-Li<Re)YvJN17db8hu7AaPGn?c3ejslt5)M@6
z<+No7amaCB%N2t&997^V=;9U^?OlXi6uM9@TDvH6QSADMrB>pcm5$<4^R}Z%=qoPB
zZCp-R)y_p**I(@!SS#w#Zyj9R>Y}rYE-r5nsoPw1WCN!abC7>_xv-P#U%b%UUv3U|
zb^U`eJG7hYZ;{lY0;4@$^l~xU#TXa8UG#A=%*AjQeO>f(F^DC)=<i~Hi-Gjjup;&s
zhcQPNkB+p%J3k!lLtG4X{X-@drnmD4KRJ76gzH~Xj&%Kt7oG`6v9Ujec)TQrU1%<n
zE>bRZT6Ph05qDv5sGJU3E^HU33trbV`1{?l5QjmHA45?Wi?$ctHmoSYyj6-F7q0k?
z^OqUfO`In0eO#1w;kg*+V!R91WGsi}U%Bi@)|rlCnBZcfi`$8D#gRYB#p_jz4>*eR
zk<KAbaWR#B>f%ioce<D+6<hD(E*E!m<#hd}c)E*wTs-9BVHfwhnBig;yIb6TpWsZ_
z-!f?Je%HSPz*U0A=eT&l^>4GxrMHdXIY&Ln>KzYOcKwB&UB)Re&&7Nfi(NeCVu6cC
z*g;$TOX-C!9(DcwVv&pr5?*3+9&!9Ib%~3mE|$Ak;bIxb{Dnf!<;P`CagcL$;(o_@
z^aMM%b8w~W?^86(%X8XU#Vx?a(_H*rtdmjntc&MdyzFANi|1Xuzy>DNOPrXl;(6dj
zX#!ipam6}x`?!dU%o?_r)vgw#x4F2H5MOceD)Tyi>t2(FbeEQHaQ(fT;dLP!rH^b^
zz2*9+S>Ds&ZpA&Cx!&Ofp|6q{p2QXx?{X5!UbfZ6HW!y&TygQ9i|sCsxcJ7!4i`IJ
zeCA@Wi}zjsSoIOR!^H=#f9T?@{E(eEtcYY67cLi{xcF4mIIg%_a{O>e?BOD|&!6?I
zEu;IWz$Uvm=wiQ%12X(*?F(rU=R0RBmFb7CTpSW>hh<*h>niRe^gpZdHD?*`iVp~W
z>*A=3(=N`q_|C=mE>3VIaq)wTV=jK=Y!z>FGvX0~YaO$23LJO+rJjL(eUj6va)<|j
zUtFB>`%dw+#=V|XfVqBk@tcbaF8*=(LPeZ&@drn&i}S93Yqb6F;O``D{i(|Fz?%Oh
z&H0;s{ZY{#Bgplc$Xkp5y12;kCPU>vP6XZnJd?}w410&&&6&kB%vBdzNi;~JVG^a1
zD4oQ0NmNS$Nt8+A+9b*){Y8@cWs`niTqDToL;K~EsE|aZBq}FSG3j55a<XhoDBiMW
zt*RtZHR)f$ae%SO+%mY6^6*eSi5f|N3#gYw%_M3iQ74JINnD>q?WBK!!%4^8kShj_
za6%DpNczh-v+(B<?$O-n>nHu2kd!n^qHz-0N#rE`S=J<p=1JU`MAIaiCH<SabQFJg
zpmK{OZel4>b#u~Rd{{~PoM#M<;g%xd%ni_N60MR@N#rGwpG092MM)GS{na~|L`Vp4
z60#b<eN;rxusc{Q7RQ2$lOX46$=bF~qHPlGSh04&Hc5YDVr|LU9BST@1h+g+u?|VB
zxKea$61TDKNpwp3`^BInIw#R3i5^MxOrmQN-ID%x(4D^euaJbNL>?OXOAU`Ay^`pi
zM872ZC($PfUI?(8`m!tk$|Ye<NO+JQki<Z#<om9Fxxw|S6t6p^xFLc=1-Z7cVw}7q
zk_gK@9Vs}9uBcKxT5yaYcN0o9`sXMAvWr`JL^KUSQ;>EzVr_X=Fq%Y6NIVHQ`M)0@
z6G=Gqsyy{q@>EY!qA9_25?&HxlmB}rr{r;+@nVF(JWfbrqVU@@l1WM2A$)R1GDXPL
zBwC*Jf2=egD7cGHFedSO66AL$F+GWUlDIdCcRvWdzbb!85;Kw@xlfQ}rjYxSn3a*t
zPGXMm2Qrceh0GOvD2a!K%*&+CPhvraKa#{k;g7OWLKX`?CfKxQ9s>*I<6BGFn}hR~
zCGohB<s2tMo=9Sikd=Z@3a%2Q{!<+D8UBorXOnm?$>V5<;rS$9$nY11yp+VtLRM$w
zG_qDQt`mGk@KwRr1gWrI2p<60n8Y933y?yY6y8YUO?o?tO-UT!1W)2^c2MPlZArYB
z#LWAP-Vx=^f?MctA<Vv2$c(0;?V`U^qB{ihT7;<ZzVHu{_%Ml&xM<u`@VQ7xK9=aN
zBz7n9iSSR8ICr(^vn2LNlsd5%Axid2mVKFw`!j_0zf9s_62ByII*G56IF!VX9G^)X
zPU34(`;MKJ2p&n|TZw)nND1>E{XY^$zfa-^PQCKQ49A2}cwBTyPKx9NS5%Qufx=UQ
z+Jz$WGs4fZ2||8N;x{4d4*6v<oR{cdN&GJ455YeLx0fp}(fK=x3ni)B3;s#sU*Q)8
z{}a3<c$qz(6}%$+s$f>iuMb116iN%H0;6S9xF&^4X;e<*+7!yA@MQ`IQz)N8g_QpQ
z(&s5uq(TZGr0`)1l||?XR!O013fHAjErs?Xsh%mNZ3;C~sF^~o6s}KU;?msW6l$kX
zCxx680x8r@;f53%r_h80tZJxU3iX97SyGVyPi_O@4F#FnD8>C(kuWqB;f;dLQfMxO
z_L<Z|_)UU03sTrJh3pKcTCVVX!91xLbsBzEP#}_^U`Vh~kf}wY#)4X<poA|xQ$SO#
zg|`u`{6cO!Y5OHt-IC(ItmxYgDcqXEZ7Fn2VW{}0QwnV!FBqKS=OhX`r_d#Zt|@d&
z!5S1CltT9u&Q%Ky5bPn?Q?Qp{Z^1r-eFggo_7|*|RLnb2IElWvplwq9Ha$2*%3^U%
zwigUbVR#B7QW%*+EQQI}hDN0@It48SJ%x=Mf>W<A9Fsyg1(H{f=DJn$o>~`t<F-&F
z1tSHMtw^fVRg0|@Y}Pr2C>wP#_l~4uAYnMyGDNfS6dwFHHz9a>TY;NGQktJi;iVK_
zP9dFwm%`W-#-%VPg$Gg?pTdL`CUq~EMSrGndkWK1xQmh$?qGdV_&lj5r!Xaj*OH3-
zuO7uq1S$MIsqXX#p}MYT@!cs*7oGc4xF>~sQ=lg0Gg7!Og_#l!rPM!bgM9?kDOF<U
zfs~pp6?iVCSd9l$n47}V6qcp%Pzn#zu_-mMTj9JE=BKbYg~w7@kisJ=JeoqiX$3W!
z7cNZUtCS+YVPbG=N>P82B#|uPKy6pFtY(m@)zgan@f4P)@Kg#<r?7&h)C{gn;mH)9
z5MF6<!AE6^DJ-5CT$MuZa|J!WEefR7OS_AnN#S|cZCBB=V*EKlnhm`gd?AG~Eeiri
zi(cduJ6c4(THHQqjsKM0niSTiur7sHQrMirmK0v4qqw%SnQ672<1no@vS-tZVM7Y9
z)01h%z$iKKO<EJ>O)0!1<ZVG_XI>(s?=oXreUet&Q`nlqwiH@cF4{l6^m`&N(K(q`
zJ5t!0LMczZFWAgeT|M<t3LmGiPwKoYh21H9lESAcESys`e@uby`Ok1p_tX=f+LOX(
z?3X5?H$Ami^#86D`a~}t`BnbBUPb%4wnXv{r0@mD0RLaGD*w*&EqMkgIR<={!l9J^
zg!bVSj->ES3SXztcU#DRxcc_oZ&PUZeEtuDM+F)Ej+03EptlRYSygZ>g&$M+NhBvS
zI>&`v{I{6;Kc{dqg;Oc~lEP^=Fzwr9IFrJKjQ+1F{FdQog`5*SFZjFQAA)}h{w4Ug
z)SRaNk?6mIj9yIPKjD`$lFLG_2woM;N`u*{Tsl)92q}|B*^J~G?gGNgWhCX(sF2|m
zh0sV9A;Z!bo<`L)u1lj@8r9S2oJN;4cGYTCBaK>VT%ShGwEq+$B|M@KYo~E*8n;RI
zIxKffsBRiJq){)8`e`&sqe%3brJ<0PX*3ejSg=VZwP_m7gg4JfZWPiYjhlqroRRZL
zlbzu?X#_GnH;p{u`58$;8bRTqjHFNqhf1-KRvEcUqjiS2Nu#asb{WYnLfQ*<NTb9E
z-QF>cP8m;@c!R>OB4m5XyNN@X)Llpq!JdM>1be5^M+kNL3h5`<UvNMg12d_EgbYq&
zNJcU=4bB2)9FeJmmd405MoE8-PGd|OVc{i}WXG{e<a*ja21Eo6K~vBYw9|O$TmRA1
zXd1CJPX3Y`7da(MYL<4>NT#u3C!W}eR2u0tHc!EpDe%%5%buN##*;BFjqw~R<4}7X
zCZsWuz8#A;V{v;LlhXLd!@nNxNMkZ}Jk<6uC5@?RRP<22ZuXu0`_eZp?@ePy8q-+%
z(Ux}!-c9?5TTU0eCyl3?WWUJwoqkh%Um7#hIGo1UY22U2tTdiW<M}jZr!gmuMQJQf
z;{hfeZuxK;^U`=wIHPlgJe0=US4uNFKO=u6jRhHA{#tYjhZeF!!=Xn7n>EaSOi~|D
zV|f}&(p+hg92}wrhGmje+&G(jMH(wPU_|nSAX8Vd=4rGqo&8K2ZsY8y)5t$tYDDR5
z@-IF0Y#Ke0&D1NyLNBE8Vj8>C_=Me&#>;7JOXIyXR;RHhjg4u%k;d9I)}^sNjSXqM
z!me+W{aPAdep>u0jh}6K=xoauP8DlmzizLK<cQ{TCgs-mYxpMHp2j=u+%z_&L478%
z=;o!fH>a_M4vhNx?@Hyn*U#Q6<c>yuUe<Yg8apJ{M``R#<9#j~=URR!lIGXqgEY>1
zijr%GhG^NiTAKJVN24gLub<5*?R=WX-Zb{5u}6%5Cb;oxDJC5r75Y4lgJ}#nR7~al
zlJP(qUkIV(%QVW3RU}`fQPQGATq|_H&PUStCXG{R{2~UwP2<NjeiD9E@Vhj=7dt<s
zaV(9J>V4NJn-ymE<7pI>&LX+oDEoxy|IA)4lYLUM^lhAdI*l`F{F}x_N&PjAb7`DU
zgI)idNY17~kI_P4tlGb~`1dsaNaN2m{^IyggA$hYcN)YCVw0rH(PHYeIV|YEG%iV(
zUE}%vaygAGk9#YwWZHg})})I&eciIOhccc&!r_6@MUAqFjF$Bf{oc2Et%q`=P~PJ=
z2SXJ+bRFw=P4kf<Mk{%!EK{$F;B_9V3JH%@<Hssa$!d&>q=sNk!CHb7#)YU*M~vSi
zSl7c19_o3hFVS%x8hB{vp$iN3(8xn$4}~6zJT&pp)I&=T*&dpCXzt;MROn{Ob)$z0
zjj~&K*eyPMVtD8#54V)bu6DF|XX$K4b36n*<a;RakSmS)U__{TeSU~Glqb=C>Ch%4
zG;^$~WrTtrLLNvMrW>JR53M}3qd^bK!^G0rtv$5y@Z?xEdsN687UBfl)Hu7X$A2e<
zHjP#7J#_GJn}?1bZuM|rtfJ1@vFeVIp`B+-b@Jd24|VqV!kJK|aq8xAibQLY-OWRH
z4`C0QhaMh!dKltisE1yxo`-%O`m?jfDNZqMoa*DDFEz(0mPoAIID3GHfgT2Ve7k0d
z(ZL?>{j``9bLr_~`eEugwW@LUFb^X<jPx+v1EUO!#wmK>`=Oyx9!7iM3-ewZr|v&l
zJjTPp!!1v2EY>|lJS03gO!Z)TusqlvJ{_knr9w^0WH&97#n!R@Q4cW>^aE?ijB$_u
za0#(8u7{+Du^w0u*S!-g(L<Up9p(GY^T0Ky7P5)u#;d`7{K+`p!vyKpiGq~e?qO1f
z-{E0$hEEYPRq##^(}dh5c()+)P8ZT-yt-G&48i+6%p~zJ%flBQzVtBL!yFH*J*@HY
zfQJX!zx0xaxgH+!aJpR9!yaG59@>L!hVo}i&GRr{OfB%RRLCQOEODWSM>Bkpki{Mz
z%Se_8$sMn#xlH)u9+qcPS9o|L!&eH)t6KUg4^Puk9$u8${fviaIesLS-Sm7$pGz_4
zIL$J=<l$wJkCF9_lCll6*Lqmz;e8JuczDIbtL!fiZ+rg!Qf;*F`Pan$dJh{U@9P=M
z8-={#;mwTXEg?0_WWB=)C6jKahs|P&*0u<FS8%I`Z9?7?+%C97keVfV=}(s4zkJq*
z9zOEG73pJ6xAOjqx+_!SZXus=?0MMZ;WLSTo=M#+WFM!S<YLDC<eAi~rE$>1R~(Zf
zIppE6hwr(7Nc3wD-*Do1d{qm&pKH0&4iS%fIEO4+`;N;|1Ak@alFQxvm}EKa;f#kL
zGj0D#gvULc5JKgjJ)9JNDkJ%Yb4Tj-=rDif;U>j_^qa?B59d6b_wc8OzeM?W4}W<0
zc}S?Q43Z0{{56?A;UN4wW9@>FndP%Cdic-7O=B@>yt>4BI$kkc5ptQcMxs|eWQ|3s
zu_!$j6~?0CSYRw39IvjCTxG^$#dyU~RtQf@%yq3Kl^culLe`B}6jmCG%47c@Q{MqC
zMe%(7;DQlUl&peCP#(j3f;>tEQHd&uhysd%q?p~^Njoz;J4?<v=O{VnoWTqtCIm5H
zKvXd2^uJU5-gmxp`qa5yU0q#WU0pNNJG+ZY2~<wtk_0YIpnL)q61XgZatU0Kz&k0q
zT;+GGLQ?i(A)oZL(uxTX{GF022~<ts+5~DQaAg8lC2)=Qy*d%!tx>+LDb<uiTs;A5
zqZu`dIUKr{8c@5KQ{9w02^5;~Sftk{P*<Ds6R4j+flj%e>M@kwVM<{FH>gbG1gN}0
z0u2+m-;4*Mh8q*;ZAv4~+LR)t1hkE=6V*lyw<ORcfqe<=PoQZ6w<fSAfwc)VOT>4l
z%@b&$;I;&AS3u?+34C2SpP*%e7gkJ6U{V5Kwa#yyz+DO4t+-7BcPb$N$sbCzO`sj`
zhiPgezOB6{f%_8Zm_U22-mA1#vSEh=c$a%1FYkW(b4I}vN*_?#Noi-LU6ekk^dY5P
zl|G!nBMCg3z+(yYQcgEcEmPP-ad*X3OAbrV;_Bnt$|{?BC-7tfPbq#u>C;M|QTnXX
z=af?T`2+$}2v`!zOe#$&HI-UQKTR}r6G$h}FM<9EcnSCkL<x-fu!to{Afve6@wmzo
zYBgKT%qi%jw6D^Urci7^0s|8mp1=rY4pKTq>EHy|otlSgb(qq5+G}J2qY@aKz&Mqm
zp3!VoVPf_=X9fovuf52ekib^$J2`<V3CvAkUIJ4Sn3h0(#k?5|fN$&W@0>q9fo^B&
zmb@a5)tL$2U|@Cv3!CPXNy;)ut4Ht8|Nh&$^SRauEKcCX1Xx|bIHZ`;N@wb>>X5%A
zfu)RU+Ie3rzxT<8Z<(?zf#nGhe0X0z>B<CFC9s+^>YV?TDWv3+u1jD&_ecV7Uz5+W
zA%V>aY|-k*1U4zCFuRCNTNUptmfV)WcEvlC@^S2(hFx0y*OWcQl6w<4bzvS`4<ztX
z0zV}1BR7a8RsSpTassa;@M;3DCGcSaClYu)fj1KIL&^sU98BQf68S8L61dKie;;c2
zrg9E*UJ8yR@ScLVnUNCljqdVeb>CGEQ!djl`@WyRQRNWx&X$^wY4y0$i+aT}A0_Zb
z0$(cU;{-lQ;8XVEBTtF=a&R(%&l31Nf##N^KQ5|uu;`xiaEg0Y<-cQgdZ^*)1isNK
zyL`>rT@{=CZ31VQk*>;TwW}p(x!r2S`1?eB1Lkl>CGvmLT=7=|e=GP|=`RWVs(`8E
zw*-DK#(yaIQz^64KMG1Ffh7J_{GU?x%1fd|GR{jZ<18taMCl|hOyZ&>&eL*!5*H-#
zq7~o9uRcHT9R06y{>4d@Nupd5A6vqXWs|r}3k5DoVxuLOCh@u@1Z*XfVwWdzMH1z8
zI93@66|_4+<s_;kamK}27gdwEGKn!Z#@e_liK~-%FolOw_|B4QN!*^q9Z6JA;+iCC
zBynvLlEh6()J&pQ5)G5MF^Sqql(eNF8E2|G$v6vLr<CCOB<dF9{3PlrHi|j*lc;LP
z`KM6(-k`LBQmQJjrG+hxk|<L7F19>t3*{Rp(O1FEN!*e|(<E+HfhJ0q*)rLdi`Ex4
zQ$4$EdCwN6uiKK?w!Vm<c@iy>csYqzl4zMkE6zQMu}QQ}qD>OdCh=SncP4RH5|1SD
zXcBiP(Kd+=N!*vjx3;uPqJ0u8J}x4@M>+r6!s@-s<hUJ^xSu{u;vp`OBM&6eS(`d(
zm7F?`G<BqlT6>=p_ob??Nj%IU9O>Z*DLIcNk#eM05|8UB-ID08fbu<(=viz7s}y@e
zg`Y~Iw*qpWOroD71mhfeI*DhLPfX79NxYCmAG$G#L=s7k>q<xg9{wbePQpvVD%Rs9
zVJlvteO<+S9C^<XKZ)-h36jVpQOcF_t{85tznRi(5>XO4n(E3hS7y1AR?shr{z(i@
zVn`ALl33*m%OJI3pwiv0yz9zWt}q6MCNVOJOVctei9cPTs^O||gi<PG)2Jjy(`?mG
znQ=*sPhx2j%aWLo#Ka_KC($J>lNiHk;Y_C`F*%7T>P!y7GF3x`KA)b%47FjV(pgC~
z&@SxNCM|Q4n484BB<8F9BJNXqFD;DNg-Hxd%L3&SFm$PQu~wHTot%z2%eiVvY)@i`
zGFK+CDT&Q=LK3T$vnGjO)3PCnwMnc?VtHD2q-DK=!)f_EEgP9GyjazhO1ChowIexO
z6&T8AM{;&1vAei+mntE1PZE32F_YM@;GBj7NxYN<EoThh>PZ(*UQOb)BrZ;&ObV|j
z`N)ZrNqm;X!6XhP@m><|C-G(yhnc?C7rm>h-ctIG(j!XWR!aX@`lBRAC#5jKQSJ3n
z5+5XSEQ#aHLOSR<13u(V^yGw63V)o$Co1r%QgQ}(Lix{=_=16v#9v8#nZ&6ieoW#g
z9r3FqPABoTVmj>`E_V`VllYE#PnlG5&L>kn`96ssxGt)buA}CqiYfE63je0`7tYs{
zUz7OUi>LED&r5Yue`xEkp8TD}KTPQ<oR`ACN&Lsen2NI^r<|9Hy;LHF3w^2XOCw+I
z_Tx2z3Y1dX&5zZdpTY%NO{f56E@WTj^z((DESth5DdeY6FNI4}xGaUMQn*?L$|<dy
z!sRJkkwW<tub2%hr@#qTNTFgXcJg#z)^nf~NIBUm%6vufm8m!Y7zxLGsg^=@)mA5k
zYm{G8X$_^<Dy8rlUuvaLI~B)2t5isOT?*Hyz<p6S6>kl4I4-Aeq)<PFrYYRY?y9^&
z3JulBLapAQUgDH*OrcQ<O>~r^6dI>+a|$JbSihv=eZhI%RBQwBEyb;rDIdg+ZI;4q
zDYQtTrRuz0_1~eG#x&O|#TXl{QfQq*`xNd?p-l>Rsy*$L-j%}LDYR8g&2@u#T$Wn{
z=@7_0DLfvCN1WpCwc>#kI;GGth0!W@e+o+i*`dZ938b?sVc#w(P!BI{RL*MG6dq<@
z3!N-HlER}YOgAyZ#A7LROX0T^eovu$3O!O-lfv2*dZy4T#fL`><LD_ok%E_kpF-~x
zo=hQ`LMnx)QhW|YrHs6wLp+nhvnf2MF5-x1if8e>w*IHp1g*+Q(~OwPbW(6ruvCey
zoX(ke?rFNz7GE(P(mNwT3Yir8rO-cxFokRieN;Z8g({XyVXgvp-=v_g3cQw)0SucI
zhG=zA3WIexiqX9sg{#ba0~*gVJcSV{yqLm*6h@{nDuu}@Orfh&7?Z;I6egr_A|qo{
z7^f5YDI=UtsZc70GBJfoR1!)Q%Jrc%3uFHMp-fF-S_-pLm`$IjK+gD3W-6GWlzm?e
zWn(CFIE57Er7)kHD3n)2p@koXarr)s2cpdjQ&^-ES&_nGE`18i7^o?5tfeVX3H4Kq
zl=7rx640uZDXdCiwMtTe%=5Fdj@vVZk5c$Jg$?YU!Ye7fn!=_OHm9&Hh3zR+$;PV4
z*^<ImU0kXy$jXiscBZf=g}o{4N`cy_b~iVI$`e1F6*DXQQaF&pODXK<Dr95Nu!&Z2
zw^HrPYTnGOyvF38!qF5yNa2kX4yJH8g}2l{hm^jV!U`RN_KXkZND6PK@NNq4(SR&Z
z9^xRUqezdc0hD<^g|k^<;RZRT107G{L$0qnhohg+C8K2NC|-h3s3e7NQusE7lPP@0
ztsU_+1D~t%FH-nY0Rz5rB&SmNN~>*|A)|O)#?sf?<-SOsh~x~nOeEhiD=Ik4%^L|h
zKcw(u3csZAYYIOp^Jh9gk`c5al2;=6gffv_kdv!(G58~eKbap)v^DWp3V)|i%|vyR
zUo*$Q%*-Y(Gx1*vc_vDkC~cyIiIOJRm-n$S<3U-P<)nTt2IrYL-^9fx%9yyo#Dyj<
zGBF`1_iO7@If-(zQ2UlO!7iI}a)}DCFY)VYRXGz^m?&@J)0|wcl#XKG3MML<sBFf5
zt7wA41i$8_iis;tTxFsv$L%B4`Uq)ZAGuo1>)J<JYxNovHB2-zQDov;6E#g3w82Cz
z6O_5m#Pud>o2a9PQTcOyVtbff>zc?nQO`u!CpLqcsgO+s1!`Uc6Ajg#LK8Qb7}ZBu
zC_Jx^Y*xt|O}wh0u?aEJj8iailXkhqL=y!!n>e8|O-=mJN2>IdTXm+T`bt6Hc&4|T
zxWhy%6Rk}&?<>tsbm=QC6rXcNOO>Z>G_s9}yC~U5?lj|T_p^QDiS+F&llw|L6Ze>~
zO*kgno4D6RPZPaNbfCLTJZ$0-6CF*SU!jXS@BtG``bsAgolR`(8?Q186~@Ju2TeSr
z0>oX5<AM0izVayZzlm-dEv$Ao(L;^7sGm^b7ky*;N8k8q=y4NIn|Q{=6DH5f@FXL!
zpFCya@TsB({e+k@q|cgo&P2+DY2tY<w=FN2NYE!LKw)x{%73W1i)A9&FP=4<DBzk%
zo9J(1fC<lpZ{k!x$(cMsLPk4gO$_N5ONJ(<^^=vVXHP$g)R_1BNgoq^P5j+YIA}lZ
zLJgPpmw_e*nV6!S!Bk>mBqM=g)?bF2pq;}_4CCtekA?X(*RH>eP+?X_(^36n3#oRD
z33A3Nhs<#b#&eGpb0(UYq<FGYtG`gJe}9=ugZs-gWm45l6SEl77V27<ZDNjzFF9Eg
zb4|=MvCG766Z1{HXkvqjjV2bDSZHFoi4`UmnOLl5EYn#pF|kxF=Rj-J&U3S%{VPqZ
zGO^ACXSCYH8WU@EQu|cw9i=pe9XYl2x~z2OCY9Nu$~P;f3?F#6GQdo1H?c#TcAEIA
zf4p{Fj(_^clrgZ!#9k9eOuWrlGO^#pE8JWr4w!h!#LKFUl9vpS+5_V7pjs+tdCkNd
zCJu71aqA6`b_1l_06E0)7$ApDo@HUc0C`g>=Q43X9OR1!$TC~rG4U?<riqU@O%v~%
zIA-EFeK<gl43MKHK49{hQNUi@m7fogzXnLzf%2h>RUarf4wR2gd}89HiO)>587QA}
ziw%_2Kq00iyL@hf^a~S%2MW!YK2Vkql&?&jHgTSX^DTUB;u{lxGDVyC*2EbTznJ*d
z#97@?KbZJYC;lC+8Ytf@r4!y6C_gci50sxx5T70>mkp9@2gz?5<c#y*P24<4?j0oE
z2gx5MNX<bqWRU#LoNpq}!apiGb&&jPV%Z?sHAqTWC~3u8uapH?I6Np0=BG?>u{dIB
za&#M>93&T5xX{8?7Ou8%k%fybTw$TSg)$b(TDZi*r7HaEAUW5U9WS%uO;^r}w?Cb8
zxrOrv$Lr1*sG!1?EmW~k(TX=zB{hSVoQsXB7Ou47IAq^*Hc+M-RavNMp_YYfXv|=_
z)<T!TQo};wU}-s6NS_}p<gnDXcoK*SitAYDqhQHkAt&ELJqt}NG__z@sBhsW3pZOR
zpdMA#*usv%a)X727H+iAz{1;ug&flV2O3!@Qa(9f4;G<&2Mfz(Lt+^oV&6hj6&DSW
zTP-xRaF>O<E!<||b_<h+NNWpsSZF;&S}ARA#m7M`Ei61dL|SS!IYb6ga)>M*B5f>?
z-f3aGRu2u4wieo3xK}0HSs>>gr6-3-2Md1>k^8htaOqI#sF*VMTc|Nq2s+by7WP=!
zYvDl)4_O#$VVH%kG{Ayo!RGxx{XC=KQ45dJ=jr%psGEiE7M`~7jD;TB`nZKBEcCR{
zi=G_%ztj7+L#4MBpBFtzRYRrM(D)o?*id;&nKOsVvkIQ)>RWhDF$Go(jWcS(0@G2-
zic?UMp{1E;_fRn{FnEp(6~}_hHMP)JJEoNu4inFUZy~Udu@DvO3>B0ZCfQ=n*J@0T
zu{SKX>W*R3&%$7xV1Ek(EDW?T$cituJi{U7VbM7-#KQf<;xiu}zYM357Uo!(Yhk2?
zQ5Gh0SuKoKJ>!&)p=X8(%UA_;;CST|Oi<tqi&agwFqNA{&6{GyM|m7^x`i3EN{8dP
zGnx6V_{No^&!V^8_^yw9f_WC^(^nSOT0E!40>+7jB^IU(lZ86UB8$Ju7@N&;IgzCn
zmRVS(O{^~Gh+KD_<AGta(!#sLVlh(6ueR`|f^`<wt50@V*kJL17h4&47XBP2n=EY6
zCi-f#f-=K}M;Wa0iD^59lc+X4e&S}8%$+K;OX+Uzqv0`gpN0KgYa5r@IAGx=YPRr~
zg_kY7V&Nl;=gfH3!fO`ZuyD}g*>bF(<v#7s)0jgR-el6S@V<rK!{xArBix}D-s1l1
zBjoT->>bX|LUy=}87{n0<h>Rz4ZI&aYT*M5$1EJ@4vl2~@VJS$Y9CrS!HH{?94aBD
zo=><I7QV6Yt%Z{oKBJc`oU-sa(}*o!C?$AhczhN|@RfzrR(wjpbBwRGwU$2D93LK^
zPMooD*20e#e$q7fofY2&ea~pO<t)v%P<ljs5vedjezx$7h2JdvZsAu=txS&;W}alW
zj4zIwPXACnOuv6KFER1j@#g)P_YWgtSC_KUY=r!0A<sq$8@z0lw9#XPz($7=@l}#n
zy>nT&v>jg^>=AOljSE!Cg*Gm-aj_jcpV3&xj%P<)*2eG=@mwyk<6Bu4J|>j2ak-6q
zY_zv=g^ltyZnV+JMg<!cZPc_;%SI&|m3hu@<7yjK?D!d^s#4xh&K@CG+Tgt<nQKPK
zfe})THrS|Pqq+?~`+PVezH4Qnz_r?omYf|SwQba~Vc4i|gAYpA*|^?DT~(DgQu1w(
z)>C<QEI%^7u_uT3`2{v^u+hMdZ~F^vP%}Y8b{{DnM#fKDH;;_RDzed7J<!I6*tm)Q
zv~in`b+e6IY&5aabEKFfg^zMg?f9YTRy)4m=A_u2A#}TqJ8T|Ypd}}+K{#-vG*?W}
z%0_D&e7<9^=~OZz?zMWP+-c)38+Y4iYonbSz{58N*q)K`67Z7+`u|=oq7BoA#R=Nz
zXyXYRy=~lY;{h9w*m%@NCp&&BdC<l~HagStNV?eZBN(4?NV!?M+IU#`d@Le|&mfd}
z%tkjmes1bzqdNn}#_5sL)5g0a<L4tfio1gxKIjoV&OwLAy`Hr3l#Qev=dP!1JY(Z|
z8!yDZjXBRL{fE604bL6U5G0hzhh<_uu=AKM#XuSr9|G7m92@;?^ta*KNZSZ(WK`a>
z;oI@87ekZ}{<TNNcV(fCtj+hm(T7VmO4^NzZxkatzK$^L`*I?q;%IkA2?1{u2iO>B
zV+7q5${-tq8K2CJHij^0N5q?A$S4`AnA?rj;WlQC5*BWgkqjFfywVYmW{B$J2CL(2
zjJI*vjj#0+Y)oWWx+riliDuXs>0p$DDK@5Z^&M1m_;Y-iZsVwp4{Xe^G1JBl8#_6W
zjoCIf*w|=ej*YoCR@hi+W1fxqHWt}f%m}oxK)rEblq_T<1o62Lui$G(#m9p@ELvh?
znT@lfWGQz<Mvje&Pe{%iEz522;D`=iWn;CCwKmq-xN>yNS;HMMT6liNQwvske6-#M
z&lrj6=S?;?Gq%^q&ud#4w7zU*)kYib%cGKIJQ~tiWyfBlWtWZJHeO@A(SQ-cTh=``
z_ENycemW|YSI*gQ<7GQOT;dQf>4I`No>?)@U$x^SthDNX!^S}yZ`nA)h|+*LWaCZM
zaM%XzWUt|)g;Dgjjdyg*zo+~3U7FoTW{r*&a_=+d-{-_f$KaTa<2L@b@sEuUZJe<2
zwT*9Vd}QNe8z*gi#^gf}@WI*s-;Vy2W{j4PM$6|q#FsWsG21BSmS-N|{{70vccZ1m
znE0&bwB{CqZ*82h@so|8xhNFi#?%x?c_uDyz3(-95d5gxxS=@cFE)PV_8cRBFsY7_
z-)#J@)8RzeF@H>aZ}6v$zckTN51F0D$iFuJvvH}z4*`+qpoD`99bDv~q!SNa%0X!-
z&UkR*!yM*^^Bg=eM$UI|ffHv@Dq-=*#FUoPq>G(6b(E#TAyUQxa|OXA%4DviKsg7O
zJGjz`bITPD$~&m!pt4r!=L!lcI^gjL^-zYiigvH+prRgt4A<e9Tds2AD-KgibqCit
z=<VQ12Q?gA>)>t&Z5`BfP|HD)gT@YOJE-HJfF?PZK1Qx{_#ry#Ik?_IT^*FFINZuH
z@t_9hTWr!f8}^Km8yqxH=8X<`A$w;`oZ=cf_)@!2tdRp|OByT=ZlcW&Zg+6A8sEf0
zQwO(bcjiV;fuE8vE8gnhk1_E{R5J%<#>zEg<qikU9kg=L+QE%ug?AcsdkY6GweOu{
z<6e|+<KQkQPP2D9V3mc&&<3XEb`I`w@UVkNv`c#j9ci$GdmVIe&~+?7x{WDqAf>hk
z9CT92ha7ZPYr8mjP(f;Je0qFtAqI?%^><ZC#=xTv9&_+G<H12U2i+Yk8!Nq-sdx(H
z#CHfio%k-DNtJl&*qHKZdanZVlNO$G@U(+IoX9wNhGFKwcHn5==Nu#)Bpp2O-~|U(
z@uA1t+C4>%ikS{hE9V^jXRNr&_Z;{N(oX!idf7M$R7vO{>mZ|s(U=<JVyhwtIThyf
zG9QF_lyT!Y>Fe-=Y4mq6z`-ys;vgC5#77?^#>o%|gB%QIu#Jmn6sQvNhdP)&PS%eT
z(%}w9XfJl;@zH1pV;r1v@RftH4#qin!@)rZ;~h+Ju-L&82NNAka^i=|7adGy@^>)9
z!Au8J=~70l1D<%W@L`{iy)>JT&z#yU4(eczgSk2d9*?k<d=?(9%yTebJ@D$dxEGlV
zRBWNrMI49^*8}5px0K80V6%fQ+O*ukDhI0_tf2pSxG_#vI`L(cH=G=Lje~U#)@##R
z2S1FH3&zU^UZ=*(CMUji+^CpUo{g|qgYmLe&EP;UJJ{x6yMrALb~@P0Ev!wu9PHM0
zp^;pIJ=_B0g(ngmZodk=q=p?(Oc|<W6cN1Q;8ksU%>l34yk&jeL6`CItuL)T<ls#Q
zA36A#9UZ(yhYywy9UP&n9em)#=LuZ&ces^^b;($L-@!BEB{yD<ssOLr<HpD5SI4w^
zTq)0&*q7Q)I9M<~K4kdB!KV(saIkT_oTLqdh5XO7_1sy+=iJ45=J3jR`BK;Vv)M(b
z9emBjb#bYSZybE<;5P@qJ2;~PKREc&!HMy5R_S*RUuKA_EF79@e_}!#EWarISqEj6
z<yYl=H(vg5@F&x_i}PIk<-`X9|0(_3!9UFN6XK`-f0a{7ah{73E=sz9%l9Q>d6q(L
zYCS<%SUq3)ymcw#;sO^JYV{%)7c1zhGS5$tXo8e=F@A!u%%32axhUu2Di>F~xZK4R
zF8-Y$l~tg;i}xo;MHdxZtm7y{Wd8)I<i@uUXC??~6*oS+C^u26y13HCwG*Y`L}@iq
zs=27{qPB}VF0OIohf2PuQPYjD3pFU_#<#(I!s5#VwcP)`#qr2Q;Zw<VF7jRQf%JMe
zen_dSl;DMlQqM)-iNaziU<4MrxWUC6s<wfPhAv!}?{eTq7mZxp@8SU$MJ^h<Xz8Mr
z3vqE1-&wNxk_m2haf=&&s?JMf6E_Y&PK4$)b#bd3Uj)e+KQX4axwu`2xWmP!iPGG~
zixXo>9!Ior<6{&0p|z@Q=i(k0ZQS@y=1v!Pxwu<#TkTF&l;jN_pYGecxYtETI?a;~
z>@tvN3vo8%Z7nwo0gnXPL@#x6(b+{0m!}8l;^ILa=uuVpkc&qYbanBXn)EP@58{q|
z#Ae}4A9K;oMRylW!mP6J)R8;1my0J|JjL+tFOR!;Le=)xDlZLWKJDTe7Z!tUl056;
zIUOkF;(0nYl!S|<2Gt8LKAaez%y3?OZe?MRn=1UHnq;d6M=2k9_)P7&@Lg<RRJaIS
zWL(UrOI?I6vMxru7~>*xk#jNB<yi;%aJgL!a52yY{lo0h&qaUkngLQ}Qd~HxK`sVU
zW<Y#hBcEAlhzm**6i$*mCdqIYBV3GBCo^61NS2qCQEvR91M&TnWUPyEE~dJe#>i(p
z@SfkrWR6JZOp;(yoYPpCZAkfyKW36l;S!IFeKp<13^z{WbJdMAUCeSZTQRdV_0QoP
zRRdEN^FJl$xmd591uho4Sm9!&i$yLLyYWX7%Uvwt4(caMT`XgSPm&LHn$$+)IbUA#
zD7MPQYHm!8-ZPVAjc&%PCd*nEtd^K8q>Q@tE*eaZ!6p}*xw%~IcCkf!Z66|AxjVFV
zn~Uu(c4&HGpzdU_O^%n9_}R&_$HiU>42ffSpNsu2UUBiNrh)^yFW8iwEHAluS((fs
zl;oh~zos1tURN-3vK(aaFf8@;U=H!7b|H9+iD*W_5v6atc*n)Nia%A#ruUeUTpZN^
z`@qEs7azGe=HfWxP?=04+?$LvzEbkBa#;O@9?&x`;yIJ$q-y)j#pf=*aPg&zedFSk
zW}eep-8z|Xk;Mlld<BKQzSgb!*5vpR{#zB`{`$_v_f(aRU)2A>#g8sZr*WQEe{%7M
z%eT((GeiB}{9oKy=2xY^aoow$@NCiVOj&1(h}rb_WciC~E5~on|E*&GFb})<&yBwn
znU@CA@q6{eCDJjcq*8V#E|tdK*7<BbKaC4?^h?vYP(fLx7b(41Dc{j8Qw;bH@Fi)?
z__-v(WoeX4<8oC?8!9NcLTP!WmrRN6te8e6?Os`F6{S_vc)xN!%ascFdi>SOucnk1
zvSW>O{7p~drxaY9M$I&8DXyJHF9mg!QtY}ku1}+G8u@9|OQTI1ccx*aQ9q5F)3_y#
zf;0-#Xp}}cMQ%v*MLRT1<3=65`V^r7H%^fjQ>610d1i{xu%a{?r!jhph<3Rt4K}e#
zv3XOZNg7SlXr0ElQ{>h(nx(<MEmhlXY22R19cfVQdez*VtsG17ORC}M6lqoL0S-qc
z?0#1occ<}S8V{w>HjQ>^+)wvTm3z`?pGL=GYtQMtH;oQy+^1^urV7hB`?;nMq|r$`
zc24s}#CTjP;ddOan<~wwO4l?VPNRDo!Blxf{m`vg^P_1{`D02uOqHjm#@?W9J<=F4
zReGvU+WENp{0XJKl|HGIPUAv6oyIe1Je$UI>G-wn@*bW~<ApRfq_HuL1i$>t_(@}C
z8mTnQG_q+#X;^94Y525?0g#59#>o=-p3-z0KbOd7wM6Osie>W%_Ls@aq;b4VjQ>y?
zsw6qNH2S15GL2Db^i88*n(v8WP#XPJfbt8=<PA`KxJ(`kIfK&}ng;np(s;R4JkWDT
zi-xHTtHU{W<rB}EDx=dFlg6YpCZ{nr4Qd#d#(3?{jw}<>m{>d(Tj!O^XGfMPI*V!A
zG*u~QF+GhVH|MiZY*rex(^#3tDsI~}=BBYEjiqVKOJjZ-3pfPhs?`4!zDRzl*bj?}
z$D;ileX&;Qhh=FVN5|%!vucHoe$EmySEsQ?CD#>OvQ`20Q=S6rbu8jdX>3m8Q?{nD
zC5^4rnZ{dbY)fN%8vD}NpT>?fb~2x&!L`_x#%>+!OsRa9J!z1ZDw}s{)BL7QVh)$`
zKpHQlaWIWTbZi>0Xn9>FUrl4$EwR{ZS|wOHRY>2^D(z?Mo2q}%E%|$<$}cK>B#onK
ze2~W5X`HX4ypzVeT=!e@-z(PhzJhnA$}vWcV%kj2AExo=RQV{46Iwl`!+o4anQ2mO
zntYN5=?&B5vot<uM)gq2!xw3MnZ{2vBaKr`bZN9KoA*N+r_=a{qo;8;jh;>NzfR*D
z1>Y*I(j=cu77q6v6T&oM`JOve0iE-siV^&h=1aNwFO578zcJ4=$^U~!YU}S>eR`Vw
zrGPsBRq(gcf6^d_@}#t+gcsXW(u=pxdrk6#Y0_T#r9GVI;UW(gdpO_21zv3bg&x>S
z^Uj%ZOWC}U)1-`tvL1*p^KglWOFd8zWhlu}C_r4!!{yqS^SVNXYj=oSD|o2rp^}Hn
z9@=@h$3qnlRVm=1i5Gus=}Hf^Jk<7Zm4~Z6ESx4I&lHUw(Xg6_>K+JKuJKUA!?jx7
zJWXmUU|%-X@i6;L(akjJOcB9#9$ud&*DJHG(tHo~JQyD8YxPE@1xhJj=;4N9+(1D?
zwTewFjg(X5p|Ju{dXv(pQ$m3g(}XrO^>C~9YN@oDhub{dPKTc#PmnXZL;2LqsWtb|
zLczIdw(`(g6}C~Cwu<jmdY96>b+R0bsyOlX9&TC_U%T(~aIfOv_mUkvJpOx0@;iFC
z-@^kQI(Zo9VZ4XV9=dpVj_KFKgB~8Dq=zRwboKDChaMh!dPsd*_YtL!d3e+V|4Nc&
zaMZAyhwdKcL=DeQlMAOy?dj5sQ=2Z7?=oHf+gtSAuXTHS$XinIjK>$J(Xvy)lU|(d
zpYrgu0^*}3;@<!{IKQA>>HHTysQZG4gonUG#zWG>%n#~X9&C>8fs)j0@@FF6E_!Bj
z5vz`eC#TC*D~ntP%mw-BV%t0qeldP*d&AH}*25SNV?9J_&zR{l=F_@44}CoJWstXP
zSZ787&Fkl(zZYLq1}Gh-bfD5fN(XxwqF|^}N=DOVxZ)AToRJ<zDITpfze$|%i;D8+
zPL~za<NrXM;9;VN7d<TSFv-JY53{(G9;SGh>R|?F?Zvk=(>%O1UA%wmPX49tbPsKR
zh{1{Ja)@7XDv`hO_Y!kF%=IwO!+donzY<9Q@XF3Yz;g0b(L#oehm{^yd06aWiHGGL
zR&Xno{-4ZJ56isx%TP3|`R#=-eP5S;c<^u$m8|x#hHmt*)x%m3>pW~=_3He)cNVSp
zu=MAWO@FD|yJQ}#OWNjdr1G};n>=h*@WXUr^=PJH>Ua^CmB#Gwu#>Sj9i66QmxtZl
z^`lUE6!v)7%Z=X`?fYV%hy5Nd%;KUf4siOMU4Z!kUiR>chj)Fv=i^lmuQ7gnymC7K
zbq{ZN_|d~p9u9gq<l(f3uRXpGkHeJbuJ`bkha((!hCDq(_>(XE$G5kswnssk8S;*Y
znlt2<8S*}(%fkr|A2C#Bh&-78frn!rj(hmf!^<<`|A`x{lwj@*Y5q<A#~wcO_{u##
zoFShm{glhCfSiA42>*TW3+|)R#+P3FpLDDepHj|O9{3N=tbXI+TMuVEoTYQ_FR0P2
zfVAdJAw60cm+w4SHxzvD;Rg?Y78bBHn<+ng_{Bq0AGiAWmC2v_eO&M3cMpFs{rb4f
z$Dbbl;$_H3X&-+x!!zuCl<@H{_x?=zk6}DhUYIFcS{AT+!`;R_WtQ{-KNi?FQ{I~?
z1n2oU-^WEhF7|POkMC#7g+3@u0rn*zE#srCwqD}n!dX&N3w3e`3Y7D4xsR$ouJmz*
zkMce$tA+|bD*6~cODg$jI!ijulGLnNzHN)f?6`22RPiyXLSyo;@^Q6~Ykbu3QO(D$
zS^TO3sGl}ao`9xa>!YTR<Fll;(po;^sj0$WXGyu)QpZQ(?080WdtD!md~ijsyxYk4
zQO}S6EZ9(5-$#LhLZvryAO#JSHdIPst9JaC!K14*F7naXhxpiP)VtZo-Lr-N=YA7C
zc6+_|ZmV~Ta+)aZIa}D;%*Sm$I{3KH$L&7u@NpMgeKhyc!jJ!GzO|3cY-#DE6(@Un
z;pEwJvUOu}h}-!1^x=AUDji<8UiGr|+H&Xz^Y8J|-bXu~(fZl)&R530K8AFcPi71M
zPO;WL<IrsB=!5?b>DA18)W`ig&;u&pNoi-LbVwH;4=R30X;-BWD}6+1xgd{XkNN24
zqq~nDKA!S1Wm<kuhT?2_!e`Vq?xpx~rKcXtCx3IIu(yvVeSTfE@cZ_KRptoAZatj;
zjE`r1Jm=$iAFFgnzu+U`W0a54K9W9CK0+T^AEpnBj=I<geAqr5A88*R-S|xX5fu!V
zGG&abDjTG)oX&4FM|?VYjyzZ0AkFybU){K=EZ(YWL_Tsp2KpG}qYr(;(7nv)@1xFT
z#;Utyav7ta57I8>4URRy$Jz3+!ol<>W7Wq9AH6OyhWZ%BrWytnwytOlywd1d$+)0`
zK_ySkk&!-VN&h)A#>ZG6FZx*EW1NriK4$os>0^Q)TQZU1?PJy)*)&Hc(}zB$bLpS2
zKb50YFj%JPe2>f#;)c}?HkEp&K80ubnB!xvk8kJ5Y;M@Oa^+n4rjqenJDEpkR*wyy
z@1spQgBC9IvB<|mml`X%d_I==xO1*7_py}aGGm#KhI9E%_CjLLixXeL73@*K!V#&5
zepu~ejgPfH*7?}uW3SI|=wO47o!p5&Hu~7)!=EeLe7tn2v6=ghdx7$`ji+xd<Z^Vc
zWjsDtw%3W5X1gx&4zB6d#?_VL6&X8MKEBl0%?)13c;NQDeLnX4c-_YvJ`PYJv%Qbk
zwAah@`4z@147{?2QO@}7QX{HtESW3e!*XD*d^%SS`Zz?#`Z&TV%#}Ck_BzI4AA_qJ
z9FBA0O1<sl9o1HTp3olZ*?LC|-uH3T$9VzH5AcD{?-}6>A75&~ulMqfbH6A)q4XqE
z#60=P$HzW`PaCs*!Yx^h@0us|zBWGN?wBW^E3N%R{ZrcU3}eQ}S3XYr_?po>PrjwQ
zuBiWw;tm}P$SGI7{^)t~9W$+uGxMZdm-;{WSU6Aq^Ra!N{OIE+A1ezQ|E$bkn9{q}
zXO#lKD(5$)zx((@!JkV1Qu?=2O8%qZU!|jJ)Xxj>{yZrW#G{l9fB>ZebgojL)zSfO
z`qE(QwSO9{UJ&5I0Nny~4{%X{iv!#eph<u-0m=sa_7L&|ToT~Y0M`Vl5#X`_<pNX<
zaAknYDR7%{ZFA%6=EfC@%PXy*w4%~VN-Ha^qV&LwJodUOz|{dBRm^I&0Ha&R{OSRI
zzRf7r$~dR_+5oiz)DBQH00+9QRURozodDM>=Q`DSthF($wQ=5jVN>bbjd}rY4A3Zm
z5ukp6f&hg98mRoN7RC+Kc7MU&%?<wBEUOIzJl-PKNm``ZL}_ECG~>^fc{df~n-!4L
zG~nSm?hW`RMr>HK04)Nv3~*b3+XLL8%;x_erOcyhd8+_z0^AwEzujo9wEJzwT><V6
za8H2t0V>Uxdh?}ifOY|HZWSBJLMG?PD*4Ul%YAA_=Kx&-bPRBRfCq{#EVU<gV<)YC
z+A{A!1rIB&d57_kg0A$y9fo~d?Bqx2@cspl26!xp|9+Qtu4-ZQ2+%V?p8$OW^rC+P
zBm<-ZJQ1LGfae3e5a7uGPX*XAU!I`>^X2IPbLUIu$-=~Z89ZN}4e(rmBlBg;xI)tB
zQ-$Bnmjs!;3mbGSU^)LqF#}iuf&iHSb^wRo2++TGp-b~#6c$fGny%I=IbB{9|3#Ub
zEDQr=xuzWpK73Kez9><EB`?Z8#W_a!gaR`AQCona0fq$_z-hiH0|N{S(BuAsOBTpr
z&g)tk!qJ~Bq{4O+3+gP0tsNd<M1b)DCIlE6;D*17Mh7S{xuDqs85Q8c1wt?;fVV(c
z#wr*WV4PN|XZ-@17+_L>qKO5Q158mP-&i1DED%~dHNZ6GOjkNX=}e_;ofTkqF`lDf
zZh(i%H)hj|0Tu-KID=0zSQubYfIkBK8DM4eg2e$21~^0y1XvniSrFeptPiju!14eq
zC==j|5{0V+tO@Y%0$CNH{6ZmTEqB&JX>zup)Y*b{iqBOy2G|r}cYr+sHmmcu1=!BD
zX6!ALtpQG77@PF)La`R|TZdS7mF!eHYM~JCB37_Bz`g*l1!%fR==1%&=MV4-nG5AW
zz&~)zdnv&2h4Rxv*;&5vtK8{}WP0zyGK=Es>2Zax2Y4eur$yo}lCg{AO(wCjILc%m
zU~<)h!vWr6fGK`k>3d4w3Gl9hMRN-WT~hF2RPX%&q?xbtk8!vF-v&5C4vp++d=lW(
z04LOA%NEH;WG<4Am2wE)xlMh(@MM6`0(?#%2Kb6|=Qas&O6he?8-L!v9_cj;3rN4_
zLM)PRlzzKNN-dU}i)HRN#@PVh(bUuVzX$l933jpk!gX0JKLq$OK<mZw6N6I$@neg{
zUM!Or%dY|UE|z19<+lK&#JtNLv#H>(0Dp7WWRS_=A1)|EG=l~i{KrY1&c7mq@)_i1
zP$CmoOJ-0ygYz<gR!b@6Q#PB<&)|X#F3f;Gqgr!H{I}Xs$GFQy%HhwbUYtQ0#buRV
zqV!Uwmnki$^m3(#R~J%Gg$ycYP%DGl8Ga`el{2WBLE-Rv_uX1hCBq-i<-elDx9C+f
zcz;^Kvaj>6&Y)Tb*JkkjVyT|NA0HX~4{_3K6cg0Q;NLC<1Q#q3Hsvpo?uYA9L!As?
zaznmqyDo$46;S8ABSyUp46PPqaB(GUo|so(tL#oQ3KieeJ$`m;n8A%1Jet8{88phE
zD1*)!bjhG`29iO`3|eJyQwBF@a7PB&RYq>9aZ3ibWkAqGX;Y=QDs85eP35*4w<~VG
zME+iFG%x12pmLo>>kQf`^WF^Z%;2sJI!?^nusYU%cLw)pQ(L9&iu+niq`l%sZ^mLB
z6yK+`W3kNr3LeOylY(;!AEa+j=Z{_@Q<fPIWk4oN*9;z3{D{)edd8!7%b<G(&t&jy
z20b$9nL+Oio@BOJBE2$roJ-cCaPJa%^q}#CVpfN(F`mlc=?n(%Hhx?p<otHfAU&}}
zp3C6*3{n}G8N9$iS}JXqN-~3l;)Y9OJ<YZlk1rJ~13QD)mWr2wlYz^yTxO&*_~noh
zER`8cWzAA~rDg${eg>Z|mEV?1#bpw5MKV~L!Lke@&NqVz8BENePX>K67@on14Eklz
zKZ8LuFM|OY)L$kKFO$?V8JI!!Lq@A*LTVp08f`O%sK>tCWDHd>EQ6uTWW_QWnZc+G
z#$_;`fxX7qzf6uVlhGNFj>%xG0xDs(`f;Pf4ucPlTQ(V!GMJpfj0|RGFeQVj8BEJy
zdIohi89yzPGRvj<Nu$>;BeBVt__|SZxy;I7b_Vk^crk+}%jMWgV-7=cxy)r?k1Cv(
z!RM=umIsZQtBuc(8VfQQxLg)-o9{Ok(znZFPcF`&>4&k*k_^s{E+kl<!HNtHWbjf3
zD>GP?!PX46Ww4ss-Z$2B-7{E|0cSMf@w~Me^x9&qQ`+RXacWc{C%Z9&P4w_iV>8`#
z(%7Pyv3FJ1f;r1&dj>l)*ptED40cj-xitI0*rkp=v|M&)@a1wTu|lpJS@_pcqx~?x
z&yNZ#WIx^Vfzjbe?Dm&4c!hzK!O;v}WdLOGW(J2d`0IV+^$ZR&t86sh$YA>xgQfH~
zgZdBArMgY5HO5;Ryu(epLXL31uaLKOXs$)Mk7Jj<o56bw@)csOh*z0re~`g3t`}Ei
zg<P@1_)sH%-H5^y^a;DK5E}VW2Bh4xpJs59DKtdM5TDUw8GMt$w;6oFTrn|^8|q8?
zc}1L&PG#^_2B)cZS)98Ly=4%5t-c~SL$M5g%iwq2hToB9@Pi7U-D>=p!A}{G{-PWj
z`LlwGE2Uti{HnOsO6j^%{>b1@?u#CI|It4g{LQSWfy%xd<(~|aD}_T-1DAg6O34f3
z97QFh2>Dhmav}PJC>`Rw5I2RmImG!PE(mdDh^s<e7~-N3mxj13#Nw55afshm$|WK8
ztdue#%CamqCM`9Nt(1#iH(u{1<w9H@qH>5TA!>bMToJ-OZZugX<wH~m@$u_M#SoQ3
z9A9b>vtzkcLd@<}Ir=i=fmM>*XYA{hcXfzrA+8H?eTeEIt_e|-3PaQg@$IL^3#+8+
zM&sHL)XZ}Jn8Mm2qEC!j+PzMQ)x!%1uM*l;H$;Aj8$vV)Q7=UA4MzPCYr4t0Rbr@Z
zudR}A-!%$C6zW{q<>V@97-GyGqfv;W5I2VSYn4phXOK1yc`n`ff<1<WSo)!nci5=8
zIv(W~S`wm5hzCP74RLFTdqZ>x(JaJmAzFrL72<aCR|_p{9^#G=Baa(r4j7~@xCHx*
zZmOqsh&CbU#&(?kGULt=bkW@*?$WBiTF7jx%yVwPM{TA9+tWGw3^KXs_l4*bqH~Cj
zA;zud*ZgCJt5(Yc>VM*ctL4kpu><MwheC7>@py<QLOdMekr3TO^a$~2h=s?EN^7K>
zI_)tXC~u9hi?K#}h9GUVMjl%u%k~((!uV1`&^yGFAsjlEVe`82REQTsBtkqL@~02L
zRrA)!vmu@fF?x+~fjFJ#Lu^<RgJg(<Ya|uI3~~3X2C+p4t~0(`BesrCxBs_B+HW_~
zAr9{`{18EitJjLhWm+o)oPH)m7$QrDe`I|2hEcv}9+?sCIbnRUA@)z-5dA{D65`bm
z{X+~0v50{kVql0tbZm&pAqIySLJJuKA%=z+#*lm07#U(Xn^ws^YlT~Y28>Xv7-^$a
zfHH}-GL}B)=xbzR$T!<DfzCf^%v>vj*9xQM((MiVZa3NtE{s<y#MBToL(C%GV60yo
z`*T`|>FlyrPOg<1#b9=bKi0~;5c5M^u}<cMm>Xi(TBGhdVfDoj3qqV)Vl1SdwbFcD
zT)M0iau{q&7^oq(hS(NjS%~G_8jOGLh=axj-DQQ&h{mi8u}Y`I@L+Xqh;<=0Yh<q1
zu-T|#z&*P`s|-1cZ3>ZjGX`6@%IjpnIw9R2Vn>L*A@+sX$vLi**VoDJ5P2JoU5tu-
z#=3Q~C&cFz?k@kVll>tou9ufWv|TR;LVQ}YfC}rcm!9k8<q)2N*XW86Uxhdw;tj?L
zw_%76=<4-yD8$<#-U;z0qawsxT+Q`z-b==j5IA5Q-f!&D>boIUeqwO@b96@0do;Ma
zydPr4w%Gn-%t#zM#K{mJhB&r9zLEG?9daVX&+GY`G|Fy}{0;I6cl3sM7yt8y@fnj+
z-^Mo`F&M6&hxj7Im&_I0jZ->w&kaHYSO~rj@lA+-Lj22632`RG4<UXGaW=$>HAcmc
zjPDrC8)Wnb{**_YQCTj2%lL^yhxn5^L;MorSI+c+@jDlBgZ##sZjkFfHduHU^aqpn
z8wNMXnGG`XBcnPmRZQs{rTWHrHUFdYvnZ8C=`85*78~XGdq#;Y?ptP*%;JfSf-J@j
zFU)R~^LH8NW%*+rn5-Qi?NV?-7OOW3%WE6u;w;K!Q9Fk^Ih4)fk}U3x&>_O5SzMOI
zge)dzQ7((iv$!FP23cH@Mfoghu}e07eE4LeRLG)Y7L~H7oJHqNa!r=s^@yKIug-!W
z8#Sv^ziJj&W^q*(zigC?HpQQ+)Y>G~vhfEi%{EE(EJ*ngK#eS}WtUCyiTAKgQZoxu
z;yRp28^cgq^5KH(vba8rx>@9B!D_uM`rm2Hn3P9+j@HkjfNp7%H}OuRkoMnc9Bm!r
zhFP?~y>ZhlZp~uOCb=<-Mp+bPv1yYu&f?}QZlT#)CFiCrPR=hNU>AZW+V@<wSr)ft
z@n9AYWpR5JiHZgHur-T2vS^;gp-uAfCLyy$mcNS<x3*GB&^n7Yitki<S26$YEZP?1
zc3C`9t$@P!X3-&w=Qm4du4xwEZITCQVZ(xsS=^t+Uz?=jW~skfI&2m)J84t<_61!S
z5?|-Dyj34HDi(CjBAtbo#luva#iLm~#(}a(>e_W<oMh2Ei|$(Op|q#cUP`&Xk7x1m
zghm8UDyPrp_;WOtr?PljInOA4wpji-+N}76V$QHpjZ#_kY0O`Si34WnZH2_+H;biJ
zI}1mFTP**=0|h<}t61<#`GNsi1ljlzGNY6r%pzNiqbzcY`zY;O%<spLD8_$wsXs7_
zL5$uq#^5Z5GN`f`!o5%?J}NgV#%Jckv+)O!<Fgo%jXxR~sgz)pg3(IHC>^VG9F=bt
z3hdl0f47xM)RslH2sC&~7E`l$nF_O*mc{fec4o0Fiy2wW%wl~O8?u;{#q2DWX0eQG
zF+7jEU``ev{n_}>>IHMNAf1=Rd<8EmU7&QK(nU%aE2ZQT1s~sMEYI?%a<E4C6cw(_
zViosz7H@5ij}chTDk!r>)@HGeO<M|TZIQe0iJMq9YR4@Meg&J0^)%fgTeH}v)$LjA
zDCYloabedja$fBM_T8Pue&zSxB6}3<Rk|;WXv_abKaj;s%A{fJ@@f{ZF=Iri9O3mW
z-pJy-2<Jy}x;U7P|2-|y!8nw~n^_#@6tZ|Xi}$iPl0}Q<1#fc&w+IXIJ6S#)70lcs
z8@I^&%0H@<P2{lYgDj3^ah#!*#R(PukFI7&XYpeeKV|Vr7N2JEO%~sBzi07T7N@fK
zDvQrm_=_yQR6vCs@f9spdpe7+wGfa`4hzAVEPs6n-)HdyH*6McJ*S7=DL_?Z5|IAP
zWSGStTt3x9=C4`&mc{R?@SNDOE%MD4`AfU}%_OhjoK7la`InaK=y_4BmZe05k`WNa
z=9P+Kca_$rzf`Q;R=FU;g%P^-j<du?5iX8!S%h*Cs`bgQ{7mCAQJlBSD!oMMrAljV
zjXzJnJi-+bDk`UNtIW8sF=_b-6(SI@boC4F+bU%`74Tz9YpYa=P&LAp5w41GaI5fy
zZR}QAxK*x>aJqFN%l55OJ;F5+YDBm;!p#wGiBK~_tqAoa6h!d{#9wZe+7aqRxGqA8
zZE}5tx)Hvudt;?-!YSlOXrSPi>+02uU_>BbdGv<*h3p=oQG}uh_id8~5pIl-eywps
zr3BAx6Vm?Mq;Z5E9SxS7IJIKjbx;90zsxRd5}|2?=5(f-eQShf5!#okU-r(%v$yeU
zRx!R^DZw3-ELESNWdx@|!CevVj?gN?mTkiK2U>F$9Shnhy)(jVyBe~3UY^mG-6IgN
zw2ScOHn~UXInMC^>fINiV-#<k-y+-};eiNCA}m!-rwFMCW`xcWx<q&|!b1^yMR=U8
z5gv~4QRl**5gv)~DAzqgcRH2_q1)uK2&60&=n>(MZ9=~DdgF6|%!9}Co`}#p!m|;c
zi|}NGry@L~-79RDr@3C+rF)k`_F{EH*qGpXZs7>Y2)}hMOeiIjc<7u$Qm!VeRs=i3
z*a+k3q6lt;T!cQVHXXr_5Jdb+W^Cm0uyMLytTq!N8}Y8Yaj1N9&J7o7l?L~X&@aN!
z2*V=u*SQQ}*el@BgXq2OGGMz5Q81X(*)HTz&z$YDb-N6YFfziZ2*e{IysJ#Mj*c)!
zhv0BOs(ghVGM<)1m=$4mgo)ZZIl>f%N596C7(5K!9Wph-v<Ne_b-Ge&qq|7&*&#EF
zIhS=QoD*SggoRv}E`{^x?Hxir3)I5-N?%lA8qB_IrP!hfi&g%d^Or?f9^t(R??+e>
zVP%9p5%xw{6=8LRjS)6QSVRBpkoIpjUaw$ngmntYoT~f{5f;7Pc=Ha~%vg=EL#taE
zmTxv@*%sl6Hya<`A=@K-w?od`DWp3i?252kCE54tox(!lraNU{gjX5f+O$8yfe0@t
zewmlZV)^@3m>pk_@J56q5#DB&h;T>+4(rfwD($~hOcj2sxGzVUxl`WZN-2k!9IB%7
zqY*xca3;dp2*)BEkML=PlMz1=z}8ZQD>fB;9O283a)SGUGu<gH<bT4wP%OaeXAwS+
z@I{1~9plz7Bb?&iXHt!Dc&B_7VSPtAr5#y)t5o4P+V|TCrArr5p5@=2@?S^!F2c_d
z2*~+9!VlW<#|Zno#m4-^%(*LWV);ci{HoO0CBHLtBm5cRuLz}bD4oOK+=e|0O5{*7
zhdX!4KT%Bo<+|*W|03k&Vi4{U(uuo-lE}sKEUl^)oR`D-Ib4xL`5Z3D;ldosY3oHf
zT%5xtipwZ{L;IF3?z>j2m*#Mpa;S<5FVEq$@=NZP3OQ8Fp@z0rQhH?$SLINBw^Yud
zN)9*e77AC@F6@4F4%OJIl1D2Rblfczpw4TQ6C1o+ZthfgZ4RV0b6E0PUM+26^|~Cc
z&tX^}{Bc`h-5l~+`hX|=^>Q$B_&JAPa{RtC3UcU|L;oBKbGRXgE;&4yLxUU|=FmKc
z7CGFQ!+_l)v@M4jyQNVMMLDe9Esd2P+AYL4=kV2TX_7-zcBx-@3*Ej)s$EmCyg}iu
zIW)`Rwj78*xUTT3J#u>vVL{;?IczE@EZQUY>=A;NIkd{5eGd2L@YEh@%~i|ct{kE>
zMjNHI9+bOtXq&@(?2^OAFO6Y)WZoWWm&1-dGNOKAm1^}@HY)6p!+kk)V)woB%^vBP
z<F}acKn|Z(t)I77I#sOSqC))&d!=BnJi1pptC+c09?GF>4yhc>93IZ$ksNyG@MI1>
z8x%g8L-!nd<nUMy-EtVbS7z^(&3onWUg?>`slD<9<87bx%HeUXo-8aR^MUINuc=wT
z`aXVD8BgbsAl)a=aA|U&<O?}GM{gGuKF=xdlg9f5*ViYgTvWJlZ{DAUg^PRCPjXTA
z$<%#f<zVNK&cVxJ)jn}@*x950tNVo1RXn+F{Y_Qt`}ArK*&Ko#GAviuuYW@!@BitR
z&-d{c3(<$Mw_kEO{IyR`JSe1nbC`c^0htB+Wk3!CbJ+WTOkD?*6h+rvxa6FXECMRK
zv$IIpYD5$hNkD=G6+{F@P()A>FwFGKboa!bSwKl57!VT(h@fI7=bUrSIp_cO8~gh`
zr_MdMUcGwt>eZ{7)ZOF50v}9H(}&O5>O<Iv2$S$`?^x!N4>2E7KIHij_aVXPHOWc(
z&~c%%Wjg7(4CfWZO>!>w&K~8%Xu7meeZ;{2qsI8anD<|(xHQEY=X~tLsD-LYo$P4~
z)i@uf_RbzJI6;uriOe^bPx9eYmrwR#ipxI}QYa_qOA;UE`0$etU->Z2hZzi)4_|Xr
zF!y|zE*^gC!*>)m$zkw+Td1}ybYgyPp(?XTHCUvcdMW#2wd|QpY@QE`RQpA07WaGg
zY?AjEsULk9v&dQfxlCOjeq-X%+9LI{55M|wt4_{{lb&CE*!5Dj|E28tJ}g|Mp1Ui1
z*CKUmk@~}jKYjR%zD;giak1)EJv(=?V)@&Lc8gWN#cH7si+tGP!&V;_`>@1^jXrGh
zVW|(xd|2hfYHq{DYPk>F7V{Q$e9gX#)k<#a>e(#J#x*`%Sgh9hu-*rHvX=YwrR+=h
z<&;|De1Wim!LOc8h0Rs6H~UcT9xr!9$2!^b>g7~8=h^1Nb{`J<aL9)pKJ4_tUZVE<
zP=ATq<-;By_Hth@QM<W2mZ(&NoPE?h=6QRGV&;<&`_#xjz=T<%B1b%jxe<Ig<-=(o
z##hKb>cep#PKbqLf(w_Z8y+V)i6?#N_ALKV%VSl}KI6kVAI|%5mU&n)d(RR@<my~n
zqAvJQaj9ZyvXoED#1$WE`1vLrSADp~?_vBnzf@gkxGH$>_>kep4dJZbWENHQ-tytL
zkhx28SuGgN$md5Pzw_>W>2u!ve!!3SOJ>E(W)<+Gpdam*I`5W;pUEujM-e|>S*nWq
z5iXfs%nyC3dby{!xSvny#HUN0*#5j!ZC<KM`BB=BGJcfxBQnkTa8Z1jD(6Q<KPvfA
z-j51?)LEvQEmK{Wslm%sWf`3gRP*C5Ka6FHrHUU_g?}#9KbEQLery+B%a6Nh!H>Fr
z)b=CU5%>6=Px>r;SIj~Qv7R*D@5jA<+{e<{%P*x_sK#H|>-(MWs42|y!{bN1t~c9{
zW_~>6hu6;sS)hR*5BQ-mI2oSzi>royH1YEx5}rnWUL%p!yhT=HA-R>Za{cJ(&-H)j
zRSaEmb#9qz>UTaRJ;-1#S1ror5}W(+upfQ=c!>s|&V9t`f?j^K@Z(WG9`oaIKOb9)
z=ViDj7<M5X`bi-z{b=P%TKmz)<!yyLCD_i7HS$5AgC9?eq@!RrzSs%rEZ9Zx8Nsf8
zOv>kZ>rNI2>MjzJ9)3LQ@@5@SeYtaC<e|FGMRYGCr|)#{3$k7n2YY+_@gkRXu$N_1
z@7%tA^z-8#KZg17GE>Em!G65yM}I#WEmyB{IhLyq%hlV<om3g%$3R)N*W9&xUC1Cm
z-f$(n@N5V<^_Q!me*7-vEs?w}cxk<dP4D`#e_aOiC*sF&KSubSe{mh@N6_zlYs9~N
zeb0|?PiDR^_<`Vuf<8a|LUcju1pFBET`oyT`Wk-z5l^NmNMZ>I3$9zPjxATER;U=0
z$B)XDya_*kqmzC<ISNTXQhwxdU-&WEk5PV%7AHUPV+_0d`SYcR7sh<-$M@?!WBn*R
z+H>y;_2>#U&X4haOyKN>dnStf8J~xoNF9C-n#4RQ=qXpzJH?OB{Fvd#4}Ly}1YfX=
zAK&=#r5{uM_-Tcj=Eql5UZLhbz@Lv5$%qwdLF=4#D^!_JbLKwi`PPr`=zt$5R;cOB
z?Ujn8$Vx?W?vtFEe$1jBKjt!?+!|S)In2_PisVPBE>@lwR;u?_s(F4q(!leJAHQ;T
zEBPob%n&tdE?cSQ)53!uDzo~BAAj<=&{0yyUw-_}q5U}N$3K27VD>UBek}B3ksnL_
ze8esmGmNDb%c|BM;u1g3tW<?pspWpG;9jemL*Yu%skut67P86@28VJ=cFyxMV(a|a
zD?wZD$ImZ#HwfP-xXF*rLbmv^jmL{0Tcz5lU=D-KvO}sn{m#c3R(DC2WVauCgx7q?
z(cC9|zu*B^=OE7q;fDo}2p)A?kNI)j<!Y5W<;Q71Zi%GBDs_gZlb?@*an`!uDs^7S
zMVT5U7o_@ne$OS5To&Z4ukclX?{cMj-H)3>ZV0}&N;x?r$l%=e<BlI0x)a`ff(3Qt
z*8$-LT>Nd76Z}F_B`K_<i14C<#awxD9oJ=<O6e%AqrQ$z9c6SZTH(1%=d*oKR!2D<
z<#klhQBg-F9UE6EwzBXiq{^a6UUs#*F7m26s_Ce$;~w2PrK{_xsiT(g8agii==^}r
za<@qMvoe2M<nPy%)X`B_M?I1Arw~e}t@7L}Rr33U+%H&tz9&nEN5?}tn(N5c;nmSl
zM<Z#?(a}K11Dwce=eK*7M}=^p#;&zo9ZiJu_fsk;9h&a^nBG+IK^@&!JHM*4G!x0&
ztJT9g9?{WCM{6A|bUZ5EpA;Os-}(9YF&&TV;1BdqxTC~ZtCrj^@*B|11)erK+Uj^p
zM>`!~xW4f>rZI^e`f$F7m%}}+qoa<O4ZLEYla9`uU=R-n(M88II^GCiZ~$F(bknhl
zW6@9Dxt{Yi9k1)?q2pOD>pbssI$qT=K*#esdWz&i|BPNbUeM87$BSIwZn^z+{IXj0
z(b12?>3B&;U)?#-R<BmX16)lZuW;$tsQcHb=4;gSk=}QEWd`bcCkL_y>flva{N|P~
z$AjpYj<0n-n;L_4ys5+1k<>9n$50)*j)0E0biA!&q>lG=yhH!jsCRV?*D*|YzSeWT
z*}LX_yQcT`H7c}5jnFY^jbinE9Un0MI{Z3juTe|as1J4Q6T;TZYgCD~s@_`Fe60%V
z2<eFGi0LpmR!y&^Bdo*J(Pgb-IndA>(ec_^_48WA;f%Fv@>;cSt%~bN=*U>7j)|Nd
ztF2Qh9eFw?>i9&*C>^79e5~`Ka~Pw8UD~Zv9|>u+PW4%*MzFe0jngqf$F6m1ypHMX
z6n_z0xK3RaGD*j$I=<8~RmWr<Qy4lX09RqXx_`a;jJdSlafz0Dt#|x<d%a>DlIzu1
zItupnPLt_SnUbmN)wepn;|Z+eZ>|@|(lJ-ZJRLK1{GekN1Epi87~j5LU0$zxmQ;VN
zS3l~QBVqrE3AsVl*`PR0VzUj-h(9wKbo{2{cNwwM2KB2<aL@)dUq=7tvE1MW^@ol>
zb^N+P@fW&JH>mX+)X5F%AKv_>W4VqMIu`OY(6L0vQXWSeRke+d&x>_5-l*DdRQ)!p
z4>qc04CzMo?MAh5quRbvo!zJkZBi?FXlzpa5pa!;wK^{Fpr8Xf*6VzLBn~rauX;D=
z*sNm<&mY}+Z@|Rc#BIJwk!;nmx2|`;jvqHEZnteZw(HnIHLeJa9LwCNW4DeyRMXLG
zT2{|+R=Z8=)lDj}Nln_M&X3KaPW^Ma2gCx69AqdqDUu^R@do6aspvhe<EZdsI*#i&
zA^eo!NkOV@-K36fQY20n9s(ji=eC~LaZ_3^>A0-p-T>|k;EIkjmA%(^2<y1Y9A4vm
z<z8~Lx<O?fw{+aro%f}DN6IJ-yqZ~iv%14r1yDVJjDYidSw2CM{6Y{wfdC2yP$+=H
z0Td6Qgvg5s78Pu|S#{d1iUlxWvkGojB?BlGKxJtv9YC1?Dg;n505+8kpj-gu16X`G
zJ5|8TcObk9Zv197d$a1^Pc`KY`yAyHFUhja>MpTRC4i~{?A@%+N}*#l0;n0l?^{%z
z03Tq2y92l<fFWB{i7o2BE$Wdis&)X~w<t<tThv!u)Q&BxZUFTHIKM@)*V-02_Xkiv
zfQ|ul3LrCptN<Pgpm_kE0I~zf4L}9p4In3g#sRe2su~3FKmd&bD7n=+#v29@``NQ=
zuP3(3!z(;_saWP#)qAUI5^%0*B+&x6xxh1Lt9meirUCF;J9Dd=yjAfUvt|Jh-`?kW
zIDkh2cp|`uyTaJ!X%TQPJX<r*^JoB7e)c>T;8(%UE69qiiiM<HJf~#<2ezuOcX_gB
zds@-e*`C&dZ31X3<SD^+f^2OcKnIsU9dHtZ!p;G7VPFGzC4gsm_y^E8fPMjVW6%Ov
zIn%?-<az{fd#idbfF|42vs}t;iq{7cpBD**J%#iN-~}PQ1z!~GBlwaaull2M_e9R;
z^B4_J%h{g(0lXT(zyMxj*cW=*ZBzZWsR03u*rp2Z@K9~p0?+FK3<@|`^o`o4x^DBd
z`QGy;*OwATHGrW3ycNKA0em08+X1{2z?c9&3Sd|O?*<U%(gd6>Havj$1NcDrhyX?k
zc~6kLk2~u_hL@2Kz+_}9di~NA3P6`CEd+!F19+*sqwu1jC2DMq1o&VdN4~t7B7W5D
z-+dYvg}eX~uBIJ8Qg}*`L$muRw{^4-ZuyS`7#qMB0el(2II;Xm0Fwe3FMNXQ#zd*6
zhx=6eekM3MfGI-gC+)L*E?v@mY5-qL>sNvlP78ojAo)h{TUY*kcT5jpMgW@w*b=}G
z0n7|wK>!OyVO9Wh0{AI_*{=SN0siRV*qQ4}{uVMXfS+B-F9G~2e7-CBjr&*lAFkxj
z0RD3M$yT0!gwq*XUc}=ffK>skmbovHrj-FK4PaRS%SD)8qZR+*TofLUYXVpsz=i-e
z2Cz<ADPQjflbjvtKXH>xB)!U81K1Y8$pB6TuswhsJbwb%7r@Q{b_K9U9AICr#ctQs
z*W383ijxofxk&^3?+F|Y;9vlU0yr$=av~gsg=?3d7nP3%a9mo`KCtyf0AEQ)ou)j1
zive7c;m-2-3gAKj=fqEHvU|E$+VW){{$lF7;8l0^uSu24r5{r4Mde%E-2s#hqFfMn
zc<cvJD(G0t7exM`qfk5u1W`bEkst~RDI^$nv#W3r=~)yNc`-ru9oZcvTwXGW^lMq^
zAkr^nWrF|irt(2l2*MjgP7oETA4JU{Y6Vf*?ORpIT|ra{{<}c*u$l;~3)XNoxvlOF
zqIMAX260~y_XPRJ9L{v=x?_<uQ1ybCzs-pNtMv2!AToo<5+n6x2nsz?&2}xbS09;g
zgCHIVLJOj)G&KyOaS%;{Xe8D2K4SM=8JE3Sl-T509PvT%q?stQ=^@uKHa!wViy(Rh
z@j?)fa{86LZG(6!h{uFKF8GAtlR>l$qLuL0d=LMCm&$)8GFaLKktXee&UH#1f_Pd;
z`yjq-<=N57(=munLG%pbm9ZI}`Q|?e3TwCaJR@p71iK1$6Qq&uLN;tu<j)F!jw>#t
zQELx{bH#FRPBVxNL2L}759bxcFG2hoMBgC#1@TT0!-9C3;|87UpxzFme-N(*@n#T1
zxMcOS2L$m3SD})3U=Xhb@j6X4&8@mUcgh{_@oj2Q5XFw?k_=`xZdYYH=2DZ_BW1Mr
z3=KM;7v2h@?snC5yXv%E4cx9c#JfQZ58`K<-By1@5F>+_5X8hF-V5UWAfiFUg7_ea
z4}%B>5emW=guY$rK?H*E2b~WrEaSGTAGWK7+tv2%>il+P1W|N{GJ~*!xO<06-0OUz
zQ9IPrJ5)G`2&272^^<Bmh=k~T9E2T2GKf(@j25#acBoVkc|oLhs5YBCQ+KF8cc?Lp
zXAs#tRqLH<;|_Ivhq|*vRo<z_1~D!ORyk1booYM-%d1T9Ri6YgDTwJo%n0JsASMU#
zO%UG(F(ru4f|we_R}4!KUvS+i+^L4`bexRsbj*(0;Gq#tZQf2bEr_qV1TAvdx?!g}
zy;FS`1U;;|OMTA-+o=kXtoP7?ADHU9)EtS@%phjT>}ChiZkPIz!Q81B5c=PDm-<O`
z<_gYBM|Hb;Z<iXiOK~l}-KFLS@lOy7g7__nzjvwMgZP7a8^rcq>aQS5>{b+B*rgoe
zRu=}bD2Sy&EaRr$ts3uE#Kppw2)5s?mItwd+h@00C%7_*RY9y~;_X%xvaAvLT0v$A
zCGVg0u9qr#YPZ@H#O5F#58;Urwgj=2=V1t?L)b>&g18jKW$u?Cb_Q`ch$BqJ<IeL*
zF5j<q1+iPIdj$6eoi7{r1@U{Sto_0d2p$wXBzRxb9O@hmI^QJo+ne*u&)zsD)#E{&
z;DH&$DXCK7w2*f41?-t1&Pw&1;CT6V_d?LQsf~6n1~F~7bCuMUAg%_15DJ9wcx&fd
z?rZFLER!4Ox@@!?f;WS>CFHi?9YN}3gpe=f>_?XTLVmi-nJ;fuD;Pqd5DJG-B!rS7
z=Mz)W5Q<SJe{S)RbLCsH!nv^)URFy;YyUBg$$4k@vfZjo2xUWP8p4Ai+;|4%Lbxl0
zDj{c+mJgxheoqC#ih`9ws4Rq+PqV3N2-QNU7s9<ER1cv>2zQ52JA|4ceBVvg3Sn(^
z=MH`H{ks+Mo)F&cs_KNWzm#*^`>oxoE{EHr8t+l<_Ne<pxIcsjAv_R5{SY!k&XWYP
zL+HOpWrg4gA+SeLGIVgZs^*ww@rIBiYLld?VF-;vP$6XRRX@^f2u(uBWx$JjmhVyf
z_NXgTD(_WV2(9<3zIz=>vk)HQL`LR38bWg_A9q%yg#_y15HE$zendFGpq`uZW(U2G
zg)m~TviGX#d)1R6v<zW+2rEKpMVldnLx_aXhF*m*B!r<MJQYH_5PF8tD}?qT=VsNX
z1^?NrI)t!&uX7t|#}GP&&{^cHJ{v-p5T220S1#o~)lK;My{dZ%Jwo99r@W8#o_)@3
zn9nht_BlqLXLxHnk{3eg9m2~Yyb{8T(((Cysvn7PD!e45uV9VZPTyvEIsHR;mFphD
zm;3l3NDZL13b}(q7#ISp?Dd+E*F%Vl!o;D@oxg)a{4XcxzTG-^n*1hiyd`EwgfNo&
zA#B*E-U(q?2vdH^pb?gLLl`bPC&cV~Az;7KxxOL1AHoM*i~Z`u5IXEve&IeY>wZNc
zNBLolHyGlhKAkX{oZx<yHfx0N;eIu4zp_G@v0v4^)nxI06%8R4!qgDHqR$~DLii+v
zNg>!FBtv|fC_WA$6+#}5lmlusJsj&D#Z?&M%xm|4b%n;qddGxt-vMXnu_26;nGQLi
z#)q(bRmOx6CW_>d1FEa&unRRm4PkN!Uxe`c0rkoUxl=;;EQBZfIc6iG_Bn$r<jW8?
z3AubgO$*^`b_wB+5WWfF+Yo*TVP**5iDT2b%MPmVLnw7n)hVm!@Qe^1KB&4KbVi&N
z!t4-!4&j#&eiZ$m1m|!;4=Pi1=7um&gr6RC<~8@A`Za|4;y*2~KB#^R;jn0uuXs7<
z&k+6!VPOc1Lik(MDjib)gmC+y+IYJOC$fMpRdYsP9D?_d8h%JE;WQ7aUWe4u5SGbU
zqYtU{#8-x}il>Bu8U|K}uqK47Azb4T5yH9<PK0nWg!Rl81~!B}A#7x1c;<(&m50e8
zXOzw2!$RTPxN)Sqi+fWfJETgrokA{(u=HWIH-vp59OBe??C@YY?3g+z<bdE~ht-QB
zq?~t)k2tK3aDyLKM+J`w9%qsqRurBJ;dBTWLbw>h87|XdbzX)$>yCbou@Y<ZKXPu0
zXSo!@Wp+8Nw!5QTksK?2L|x~R8$t<#Pv>@a(9IC?8-RgZ3~~r}LdY;2Ogl!*XQ1v8
z$Nz_pr~(EG8YpC-uz{{e6x9Yv6I;zAs)&K2Vso+xiy0^`Rkr?oM3pj7+CXIkcNr+-
z$}1TtYoMHg@&+~>QH72=1CdlPP*Ei0Cy%JRMP9`~Rq5DKs+wRm!<qZ;>Z+!JS_WDe
zc+|k%25K9~HJ}XKW1x<KYy)0S#K3@~>Rto)8K`GCPYK{~l-zHizJW|vq90Y`j;cp1
z<YtM)BRK1*qJEAzz%C69G;n9}fPtmrOd|u0MYvbGH!*Nkh-RRvfd>sV<J^xqbG-kU
zY9Zty1I-OQEWP-^fn?HIzFx=FBO)1oOg(1caRc29bT{yXfhP?-ZJ?upmIj~UjHe9e
zKKj-MI3m4jV<2^mKcT9&2L2TLTaKxAqSIdR%rVtLNa5qElY!1MN*BSp$JN}z&Mo=R
zaB&U(Xzuv=@Noyb9alXJykMZWfoBaoXW)5*e{AO@NiV@Sj;pX}QZnVZ`t`Va(ZEXv
z`WomX3hR%nQ^!@|6RIB<<%H^RLe)CqSnhA&RRjN6SYTm*Gic@*6CarvXy7#iuNxR-
zV3C2v2Hr3**ub|HygwOu)4&kJdCM`&z)%Atx_Au(rh&H%ylvne1H%kVy$b=udF%47
zf%gr3U|_gZDH&m4r119ydA~e`9~$sUmG5x;uBI+_XrDsr1VtWlTb~}~wG4y}OfvAP
z2qOk;14-dg12G}&9v6}j?9nnOWgt)7rjw&Y_>mxo7%gOs;Q9`^9~&5JV4Q*R1}2Db
zzzN6OZta}UJ`+XqiC|FV6i#N8418x`ih<9h>2n5F2wT4}@TKsnuH-8N(_B9Bg!)GK
z?_%wH1Je!sAg;3S3~6F0=r*e}rMg)(xfZhx{K!E|d0FNdICnykaJ}Xlm}lT;1HTx~
zqs;#1-aPI7)j*Mxie<im--Q1z_=n)1f`19t619K0uP-@wpe!)3kh`_3^OmV}M%EH;
zJp=7cbTF~Zz;YfkCd!ytVPK_!69!HiSjEHNz;**W46HG**1#qMn+>cpu%72Y#JhpV
zLapp(Cso&z&gBOinRO>slc?7^sqUZP-C|&?fo%pROZDfIYW+z?Y}+<xr-5At4jVXP
zV7Gxi2KE~`z(G%{!l%?;1N(UXoKh3o=MbBpQU?w6I;9R7h@VpLoKob4AJ6^jlsanQ
zuTy*~IBuU(B!^C^<HBEUpF_zh1E+aDQ)1wZfwKm#@L*wt4V*V{$-rf{KJUF?;35yD
z)2h;G#cFFoHuX8JMzXZcxn|(Hfl|e?ZyLD4xt~-YomO*BtBKXJv+v2?c3Pc3t?n4e
zFj3S*F%$Vr+=+V&m?&r>zX_Nqc}C6b>7_91j4EWJu;~~nV&bVY>g6-)gELOJs<zLW
za7N8JqgJ0$#Z8o8FB7FqWSmt;&Zzx0vM(WrWLC^u)<iiI4NN>>qP&R;Chj&-+eAeZ
zl}uDIQPqS|FT2WFRoTQ{)I6)&oK<}VtC<L$RW(f1G%@L{sxHV`*D{?8kiLH<`?HeS
zB>nnj-(#YViTh2|H&NF_JrnoRnR9CHS+(}8I(k;URXdw8xsTI%JeTrJ6Imv5Oi=Ej
z59d_22`|ezwbYl>=A4>ud0#rGg69--X2Lnu&_p8>51V+zL}L?8Og>Z}51Pmo3(ACM
zV(vL-l=bJ-@pCHwc~$+qYG&dg6GP5BMwl(lO>{f&#P-qiill{!M@_Ug(Z<AMCLTBO
zgo!6jFomc?{Y95OvGb~>iK*vRD-$)sUfu!6%=zQIYHMQ0dG(Zu@jbm4&nw2Eor&#X
zZ}AIicrEYKCOVq17$p;(OmsH!u8H9$x|n#zbiP6vW}+*dF)`T0n<l!O=wV_ICv`zR
zYvMT*ubX^+zUO%pJ%yA@czOw;@D(91nCNZt4@S{Ps(szomxNqhlR?dXCSI0my$g!f
z{=#2%H3tY8XyP>?3rBdUQ#s%<hB@R7lkclNb%ya{nr8@uY+}nho}niGe#en4u|02_
zc!z!lJ)=f=p1z=_20VO}){}Q<k1#RPgwKSZX6e8M^}gxc$k5_$@Oplh4@`W>azTx~
zpoqG(2AOFlW?oPMLF!Y}5YCI|Sxn|eXAgzE%s67gHj(7$`8`n+F&;`6RNTbA3yLLS
z;<gZ;mMIgX=|dGy9$)VUXO3dp5BByL;#@9O@uKs1x{pnaHF1xHIu^!pHBD?ZvB|^)
z6BAARXkw0uPnh;5zGNDh_|(K?uAqr8Xm&zQgNv%zLhlq-$LD;;M7pT@UQ`S6ybD+7
z=B~{B@S^(4#55D%nE2Mj*G#bdxx)h9&ja2@dEPM>)i)RUmn)cI;s+Doi@`rHs_7=S
zT~s79xil5M-%iY#Wr7Ad&}`b7m~--?BL2jLH?f?Du!(slem1dyY9@X$@vDj7P5fbE
zKK1jwpKs6DJU-_)>ZhE~x%u+Ee~RTAm(<@v{t_&3N&PWC=O5F#aFJvYZN8WL?S!1g
zCQelF1}l1(u!;Fx(aWnAS(XWJa!HYQxTL7F(!?qgt4*w7&?<VVxz6Mt+M@3zHC)uz
z)2s108%!iFDV8x4ayB!sOk6Q>)x=g#+{8f>hq#rvzf9~gv6s=iq;{Iv#XONXvr5Yg
zE-A*Gq24FXbGZFN7$^q(fH+U#VG~D8oHB9R#8L6;xFEefMuXzj36Y!>WEYyHV`og9
zGjX0tW#X)f%a@#mCSEXc(ZnTL5w0fJk#eU=!b@_^#C0CC7Ajh}Vd5rFJPSoE+!Fg4
z7V=praarA#>K#D_Jiq0nP_xUbfCX4!hOpGWtO{EE$6j>0tT-<&V*krdw2N9OX`z&b
zVit<ing#!5RnnKs?j%&;s+G1-)<QW8Wh^IWD5SxUF01ku7&MN>xlg~WDp{y(@o#)l
z!@^w_s#vII;p$~o)dGXSUL17MWwqzBYFg1tc})woEGN9RE!<597CNa;`xUP!?-fM{
zxH@$$)U)uWg&`L1wQ!$>HWu1ixZgs33ymx^w$SQ|%CwLzqh!h4Y06{a#VcwAO<DYt
z9VD-)Z>~5KZ(uq3|A1ga!KGJJ6AQT(9=7m^g+o`AvhbjVW)?Kd*=0>FT)(2y+l@Q!
zAqi>utE%tBoaPpPwe*s-u<)pbmNKKqEIiKYRmDxsi9ccCNm{$?q$rUk>#AyHp|y<O
z{i+jf?#-txw6oCDLN5#LEp)KZ)j~JR*=UU0(-t~%?JT@?)!A9kSm<myJDR17kl0nl
zJ;<i+7J6`*CgePC;aQ3QbC$FFT2ILN>Z%g~a<0YSSJev^dRrLC?u?a%J{DfJz*Fdl
zB^fVSc-aDvlyQc)uZ4b=vu#;+Tve}#yuU;{J*fd)h&<;MVu)TBPEX#jFi0F@5ZFY?
zVCh0Wl(VofmWQN;w=KM5A!Z@YNLqN;f{z(!VYr167Cx|?Jx(7+T6o_A9V35_9Sz5s
zG`W0LeQ1HmDCrjHSjd7QZUiKHK?|j?IUAfwOEfK57Qz-HT&8P^;bpSbzow!VNLZLW
z3GqB>A!Wf9&W>C@hAz*-Xih{TJjw#kv0m5IM;1Pot--J}2(3yw0jEFXEljZRy@lx(
zCR+H!!W0XiNs4meCRzAYdQFxYadzy>(Lbkxg=rSPw(zBeq1T-A@GA>bg|j;5nsaD#
zh;P_kLd1^L`JPP^a=x>iQ<r20BW7V9SKq=+3$tY0Ig)jYuc_VF)NBhsS|H(~5Py<n
zW^T--s};Q$uBl%nfPYB#{%T>qY|`H>{+l*9yW-cKSdlQ*|FrNIx94@mc{RVT{<c75
z&=y))WMO9<yW&{Pa9OAw#yw#ywVdC%PFpx*VVQ;H7FJkTX<?t`+{M4j!fFd!ENr!~
z#==?)n=I!Zf0lI?|7XqNR9i2~pMIS2+;z24gd}X*Y@vxL^Em+9L}!<U?G|>>6H(L0
z=lt(M0lO{iv9OnG@o@%A+A_(09!(Yw@<6a~%))WTL|PA9I3hL&URU(tsB|PbA(l^C
zIOS@l_0u-bS~$m(HjGkXoVRen!fgw8EL^m3$-*_svCD#2Eqr)gT@l{8yR*kjR(H<Z
z>&&t1YQ}YS!@}b0>Ly<Wgpjk9Y8hc5i~?cjh{zYlpA&QPhj}}>bA}fTqfi)y!zdEQ
zt?TNp8;Uk5FB*327Z0OEm=8Qu#lmQLgWniCU8uk=PjpA=F#itH$%pD;lnp!QK)Eo=
zhd~9dZ-p=_hH;lDR0^Z}4K?hBirr9^g;SZ5D$-gtjA~(gcEj<O);KP)Mi@1vwN@B+
zhmn2>qnxBp7<I$A5XQwY>V=(8sahCK!?-t$`@*<CjQU}yu=D*xW*B^4U$dL4Nf=pS
zc*4jIV=gBW#skvi4I@Vg)mGh54Z}EgLoIp0+lUdnsVHn52CFQ!ZmL|yP@bF+9FoO5
ze@pSo|1g?`aXgIa8QMc(G!J857(a*ca2St-5emZyqXnJmk=Z(oHeoy}ywy$hSQw8B
ze?ss{!IpwlZWYGsH=T>S+J^B|7*B`MF${BkX85LR7shutRr@f`4fe8h5VGK=>J&!j
zFy0JfNEltj&NE?j6|&=|>c*Id(Jzdb!{`ylvthgtM(;453-b@?(KC!*VQkVf^W9Rs
z%e&Gob?+@_bQba#!{`&nOJVfoiuf}hx}`dan&Y04Ny)%l>Xk71Ghyg<7_WvgK*k*y
zhJK4*UO9Hg-BOqQna}jh9TdhJ(mGhI&AO$Q$yl2NhcZPO(qA&i-d1mi@lF^YiZU$>
z3u8nWBg1$%jNxJIyQNM^mut7wd!qAx7$0yJw^X^?iWAActp=qsTisT^F#Pl+j6fJc
z(PV3v+s*_B3i@v=GYl(?ufmuXMmUT}7^A`%&GqV$Is3MXO0SsfNnA)m&<-Q%%2Q$F
zxqRtuH71M$x7Ft&`6!H!!x$UJxG*M*WPBJCgiH!!qTB0}Fk1C?!o_mm)XYy^dC@zL
zw^O)BL^8XNqR*6kA=NJhr-pH;nsal+*J1qjLhd(Ve9O$4m}&UD--YqL=rj;J(;1Lw
zax30ZGs5^m<TC|lhcPQn`Z&ga6h23g)t|U=T>hGs`AZnThOv<W4`V(@<f#(IU!w4P
z7=JKf?x<EWoGw`F`^>+?SRTd-ZWc51AHfA-EEKXxkn+Vsmhe@;l`P}-yu(i`nZ%W1
zpU$rm;c7w3*9ch~#yTPEUHJwcN?mfPusMt^VeIFMgt0Y@pYEt_VSbLr2Jwxv+Yv_W
zP46zTzf+Kzvs=g>LF(*f)(Jm;M_s<74l>|j9OVwm&<=-@KSMhb#w#OoOOEi8SLK0_
zp&eu5WoYa>K0`YpeNTpQDvZ-%oZ-$D$%YK=Y?!ywc<biVE@f!t^J(XKlH}96<<p3l
z!nhp9&Iooza7FYBM4a>Fs&JBPVO$q}L-3|6zZJ%9m){YRAszEYkY5M{Y2nqJCIurX
z6hYw#ibU{U1n);sG=gFgJQ2Z@5fqQ0L<9{ZXcR%o2uejzErRM1l#ZZG1eIMoWh1B{
zyqsWpSH5kula>{wT1l|t=#0CBR1vHyIObPJtwsbjBe*Yu`y;3o!QBz(2kyEN)D|5o
z+#}?4ldL+fq`_}a$9ht|Hv&HWp4IwN%@NFuAWMiRg6s&qbY5Jd8a*MVyEKU40a2?V
z!p0FaiJ(~o4~Z~0f(M1DH1^2UB53*_ecI_UKcl%w9*Lku1P=>OyZ66Q9+eqACQXk=
zkRGdL1g#?I89}cIT1U_(f@dP=8bR9#o)XQD5wsIRJMD#}eeNLqX+fIm<mz-5(#4Gi
zdv%N8IT3aj?BQxYD}=vWJs-iT(HVb#<OJk}2zp2GRs?TH@L~jgB6vN5K@q$p%Kang
zRwtux1pTD?as;mkc{07wg0Ds}AcBD+e@&2P>wT2Lj`Z^lnfRL`AMCbrQHBT~D)_%O
zdPk}w1cwQ}%XtZ*L7HV5837*y#Z>tqf)68@8o^f)_#*H}FfM}e5$K|yh`^2@5J514
zkVvcu!Vwt4X~&Epof71c2x6{0DkQyF@d(muniSy}!IZ0+CuEf1Xu+ZRoD<-q2tJnT
zSV2l?Z9)VSBltojp9oHh;8P*#=}#8^nc$QNzLVH~E>&7!4tyzmv&g4K@O1=>BUlo_
zHxYar!Tbn*W3LFl7qz*9(*=KwU`7N#2%pK0{LWwaEJ0rMPW!vZWXzH3PlA*%Lx}UF
z`m^9KvXs9H=M8ATb0H#FDAhkB_$z|Hg{PyMp42}gSs+Mj4CW%?>D*fy!7{0CiD0>q
z)e)?TV1@9Nf~y1>K(6>&;k2_+$hrvD3)$ex%V#@t*(BA?g6VbKDtuc6+lA~9q$XQ;
zN3e%mAchxX*c-t<#xRQSqu3w80dC1C+C_0Nf<ru}qNpFm;RudIkS~h-QRi?z8o`AK
zE=F)Hg5zTLgy7i-PI8wCKP`Ahu*R5-^mb<7a}k^u;gpR|s4qouS*q6suS76uj3d7)
zRg!CrzesLGa8rc0BDmwW-u};7ml6H<Y(x|VqNp6jUE*!QD2hc<Jc>e56po^Z2-E9T
zR5(ZJF*>6}6eXi57e#pymJ%#0SUQR_Lbx3K9q@lUw?Y&ZMV<~g?NoBBRnjDino(30
zUQMvNU`o=gRup$fQCB3j1!<v96!*BCX47-8=SuF4;y#!2AyJu8WJS?5iU*_cM3EhZ
zCavBma)jhY(IAQkqDbc+?Kc#8W5GsIbdgt+CQ@aqGc}i|Cq+p!k+g8-4@J>j_`|N`
zk*M=3#@+O26puymxX7Ord_s^f95miCidIpy7D-z{3fn}%ZAFqkbJ|DwKw7*P#rsh_
z9Yx0|`bN<&icV2<j^eo}o|leYqUg%tkIrDPXGD^I748;A_b7UZ<k{%|zYeD7(ld(Q
z($q_kgT5eytuG4cBlwcw|5o{BslF4%D^c{1;?*byMDb=6L!uZcO|&yu$ZLYH3l56n
z4IyvU_fp}1!6YA=mJ7ZuNMWhY-eJPubtS{27!k!tsiwO#89s>O!zipM!Xozx2BPr0
zy>wSU7)409A!rKnC2aQwXDuR8M5FjLipf#LqKHQ^CW?=uNQjypMKb#DYj;W{c~Oj#
zfU_?PgELy><n--h;S-{mC}gbQIKlBz@JBSNeIiwo^cg$JU7aZ+|1yfHQG6!+bHOhJ
z(-Z$n__Qd#7Lr~XHhm*i+WgkFHa&_NQB;bdatuF2F*AxoJiels6~*i*7DurpiXYux
ze?&1Sil3N)QRlq@?fe$SyeNJag<k~c3;xO@<+yW~eR}BMMfkrn?awIw;ueeIACc3}
z!YCF9|KGk_6h(U1FO6bZ6dR)07{zkYSslfiC|1Z6R*GbmYlm}OD}22xS;y_%*~>Qr
z=@V>|$oE9CH;T<sY?10#!Cive1h+@ABZ{3-Oq!d)iM$+jaJMwkTROJS<p=pHApC$U
zNl%j#KN7{!C^BNm7sIhAjz@7zbWTKZGKz~_XsMp!X&~gZ;2A+qgfGDy>s%D)MM8c-
z&JB8UIf^SHydK3>x0NGa6VCTkRA#vm#m)b;QgS<rJ0eM+9{FQH48>w79{V?Y3&c<`
zhC(stWvg%uMT9VPMPrz-AtN0_HgWY!NE3P47)r)aN~)z}_)^X;%FD!XLSBi;%Smhb
z7%Ie2G4^lrP|i0hcg0X8hR0)gB8I9lREy!>8157O>VmcDn~<7<wFK`LOo#d&;dKP-
z3es}D7}D=Q?~kE=3{7KrFosNN&55Bw3|TRF+*wmUI|i?`rgzW-uAST%8phBlhQ=ak
z;>sEAw5D<;nh*+`xspeOJS5mWhKF5wx?_tN9u>)Bg6R$QWDG5(`fLoXgme<5hpl61
z6GPh=o)SrWSKdxY=5HAtVt6`+j;=f%oc{Ygonz<{!!xeDyO6Ge-2}@>O7w_1e__CZ
zSe}dFd1>k?NJ+04UJ#ykzE2D<#ZWema&h#Hp<fKY#xOsImt%M(hFA>o82ZQXY7E0-
zcsGUt(sxh{=O;MF`@k4pb1lE_ntdb2hg;%JslFvRL~y7eds*_%`Ry3qaV2zSxbT4B
zh!{r3@Lmk>$KVsm2d-xGF&Q7aoGI!TuDcQ@b})vJRE-$IuH1~layiF}#QuGWjK=<b
z@05taj^VQyK93>kYJMyvC72iEGj%aKhA}aG^q+j=8Nwywq{hZDPBh00e#(s&!^9Xq
zk?JJDk@EhHn}t417ReOB^y&HqH=R^x3r>w;hLEpfm?q?F!S7=DCWdcg|DLPq^!Pr8
z>C&1u#iQc~sm>Ind$YJD<x|y<BAFAzPch7OTYnZZkDFRv4t{av^z*kEevjd74Ch4n
zM+|FXSR2EiG5i(7-!c3n@@0Yx1Q*A!Pzc9eB!nm45?8X+4gPYTS081p5cx{CbyW<j
zT|Q!T#=02R$FM(!12JrfVPg#2W7rYHCehg{xLI(EVEXOQHsR?|?2KU--|dTp{_N&l
zj%DtVDrZLtao>OR4+=lZqh83N7!C{Ji{KG=-H(feeNXaibUBAR6~k%Cr~;jx-Eqc^
z=lK{e#84oPf^p|Uf{W7SP7Ie~xE#Zk7_P=}%e8YYh8x1K3#Mm5Yd58u_W8COL&`Ja
z$QO6cd6xWfK=}WrMq!~i3dd1I<i+DC5l2zs#r~sNGLBMGO%GQ({%<Cf5h0Cmua%FZ
zLLBeJF^sKoREncX9Jz5+j^nO4>cw$y992ZWb{zM_Q8kWgX`6A>62i#W5K>c+PTnmf
z{aTYN`>2jcIAYy6&dGZ=^84a=K;-wwQ9q8%II`ksAQF$D*X@-pBt46q_`lmc{cfaT
z9F5|bB#YkoKWZutEskz+bdRHH91q6PGLBYpG>hY*I35+v=7KE*9~OK>Ld4z2Nu{&y
zu{a)=Choo`gghxo|2fmv!rR92l#n)pl(&ncz3^w^=n%)#!aK*&QAj628e~aNs*6bY
zp@U|-3fJX*LXS9}jbmUOuf_3P9M8w`avZP3(NlE#2=<EOg*bZ0@nZbnPnR^3K8{FO
zUgE2OX!aB2joTFV7fv!s27Ohk1LFU_LwH@PZ@4;xgwWN&al9GF5Lf<I97Bb3A~f~3
zD`y1WjbnHmljE2Y$A~yaN>iTTdvW;V(CO{yjQ2(If#8R6_=KcCCkEmO#*q*Sjfdi}
z;s{IC5H#cezKe*sIx!(pH$&oX!l#35OKUQYl#sM=R2-w@7{e{hEE4(0af}r*Ns?+@
z924T07{_=K(q}sJiExs1mH4SE;ai2z;`ls{xpB;k;|r007svNPz7(7)_?6(aIKCG0
zjUcaC{gxY{lJor-?N1lsk8#Y1;|Jk0<CrBR{XG(OW=kYV=7{_!LAu2EqCdy+OB{>%
zqpb*kjpGj?^99-EHzB`^1-?xD8OL7|y}w1iK=7Zq^PZ65TIlw2PX0KSN_A5l%Y>|s
zV@({(<5&^LO4p@T?pmY+wN^AY2(F7`y^wAaQrh1r)%3b-7ETYh2-zCPHX#hl_Bdv4
z%-9jf-yb-i#dgQBCyv<({FuPrIQGTCCz(u4V1FD3;^>#a%LyEe<4_!z<G2#X;W&=O
zaYn2i6+Fp<sI&JNkKA6_#|24FaP9JG6MAN!;?WWCo)-KwpGJO`hgclvInBN~m*V*O
zPS%AuE^<1@GCM@G_@81;qgh+>X#?(LU5(=!PoV_5CvZKE8$1mXXxHC!Gmcw4OB1Lj
z)!T6t6LKexIaf0?63CZuNd5#0CQwK?1Pdfkb9^qFSO&GoA{I`dh%^-yq~ugSt+-e#
zkwD1=hW(mbDuD_KOze?WTI6(~jF7SklyfEJh3x2(#ny@mRC48&6S&LeRfP0woLxPE
z8VP8wyk-LTCU9Q@wGyaPJ?m~klG+K}lfdlx-Z~<wD_GBM9o;4C<^G=g6KKpe>hHOA
zA+vr0nF(Yi;7MQ*vKl0yU(3vvR<9t{a)cDluRS27p(}5cK$RgLDl|zTSA<IN@j}ih
zUHWD<P2j-<nkDd10&T?e=5#o}_K5JI=Q1A_vT>Lbffflon!sZTJnqi1WdcvQ{7E77
zu$3!moj~*IPRF(hJVjvw>Ov-~?M0zker;!_)B0M0tfv#`n85mnvpPvrXAV&)i=|5f
z&$zs+koH$I?Pgg$5_nP8?%4!bWqD4>^9l46(#w^<kU(#j_sFkt`}axUrG)cgzpr4q
zB3b0GB+x&BcbFInyqds(1l~+wNCE>B$SdRgBjM`_yhdSuZAKqh`L!wewLuB|oL_q*
zfx!uE$giEsuMvkP@K(Zk7FN&hxx6}b-rL!4Cr|<!OC4zMGH>g7{Rw<{GJALeBN7;y
zaBdtZ+$g6xG?MoccwZzR2=c;!4-@bSZxwa^&rVMuAl-w43BgbTh7g)H6R?DbT}dQ?
zsLNwQ;)0Ixli79xNw+n{$qFBpz-S?35*X{YekA1M1k&BdNp-y2Iw9d)#z2FgBrqv~
zPZOA&z@?Vn>0Ci*Q+N<To0h<534G3EUg-HEfvE}bw)HQWZ>v3npb_~WJzt4%JhZP9
z_$GmG6IcQ5AhhfJo1V^|?-I^m9DXl2qg&351b#?hW&$sq%`6x2&Pt$R*@iq}?m*)o
zvCT=~rv!MrA}=JKn*gtN*p$HL1m<z!68I&7UlUlGz_JA9C-7SW3ldnE!0!qCk-%RG
z{4HJn<OV6Abt<5-d%XhM03m?_+CN-~0@~C9+M)y&i{=t``5=dCe-zMO&h?V4FQ6@_
z{|T&4V2$Xk<k?kFTP6Ht0j;s})+ng0O<)~UD1nXK^#!#y1-11|+Jf51Trct6g4+0k
z+K&Yt2eu@zHGvxm+)Q9w0^1Wfl)&Kxb}&N{*vI2Nfn5pgP9Ud{wwFT})b{YyDx}f#
zg9Wu)1+~WtY26DsmJjg!XX+NxN{Xw&LfW`O+K~i~CU81|GYK3^;CKS35?EA7J0T9w
zETo+j!fDcT`oprbkam^}T}aC+teunA(uJL|&L?nz(@|cQi&PMP*_B)oay5Z#uH<?G
zZ3{aAxs|}}1d7=xZsSe@88!;qC}bm_jr=wW*v>jaaCl)YRakqWuoIbSg|$BmYlUqT
zu|ZPQcGhB>G@VU1712uAC~2dNjk4@+qk0jow2euVGw5yOB3hdwTF)X{IU7TYXyt8G
zun{hzO)jF%E26C_qE)nUtcZ5Ih*rr4k@2izqpFQJMq}`3RHHQ;PmOkdgyM^D4I3M5
zY_y$^Dm87?vT?VK+BWX7(bGmR8+B~dweg6J7B=eHxK}ha8~54#cRV~`qoIxZHZn!-
zu~ELLmL-@N;vG7~n^RQFww-@7_X_6NXjxQaX&~f<qFN&x?-td}Zn;ftG`3+E)oQ=z
zB@P^xnQLR@oJ=J+x2V?C#)CGR*;rRpd&owU0lBn)zNpq*_``yIzRRTiQ5%ohsPau_
zXB&^(C{|2sWuvu?Cxo;5Bqvx*Ye}DrX{@%foezLd+vsSct?;J=DQst>z3>jMWNTG)
zqGmDe>T|hNU?J~f;~5)WZFIBId8qd}8{KVuT~e_;E2M|upkf*&p<>$eqDIY$#k3b}
z^tLg<#zY%0+UR3Lw-K=Ml8wGxVjDwk^t17@jaO|9u$@1Af5pbr&*t{GF{_wH2fVLj
z@&fpQ6i&>1-NqmruL)=M=;6#aY%D9Ly*bp&RX9{k8*GF4rr;vK_bnT5+j!5$`!?RO
zF^ti+`6nsf{=;(LwK0P0+b_3pac#H_VtUH8i)&om8Si*MaAWczm!`PZskr8&wc?uJ
zMy0pB@!}dWXd`4JX(MIBuwmMW+h{W)*J9GzI9yzd+L%#X<CRMh8%v67b9Q7Bn||nx
zNk-k_Sj-9;h=aCz*IT)SmS<y>jj=X<o8!cPw2hCs`X#h6X@3O2o{*7V9VXIKCA4vj
zX9;aQ*Vo7-`GmX4#!oip+W3^tzwiCr#uqjwbN>$W-Z`8(#l~l1huwoEv@dN;wegLO
zZ$<c3dI%fOz2}|A1sdXA?emT=q4n;S`<;#NZOr7-aF0yQoX*+V_`$}>j=8MPD&fR%
zbqTHgTTb$H``+<?wv8Wc%&~E^gtM9~l}c*!xX?CM+E``d7aN~+&;5hPg^gcr%;&_#
zfu~Apl}36SmehV{b`8lT`Ab4U3(I+`Fkwn+EdSV8Abg?VBEiLO>k=DFUB1jlLb|N5
z@%k^$`S3+ajqAReBbL<G*;vDI4`!~lQSCMF+M!+!wBE+1lG@A<9lpuNW=1KGcPL<s
zjjc9LBylo{Z8o;s$WFqW#10!fZQSC~WMh|&-8L@SxNKvOjlDK5az$Rx*=J+FjpOWY
z<9tc&fQ^GpS00I_wEIhGhix3OF}{>`jOS7*jUOm_l+unebxUa^vr1`vO4vyor))e_
zT03jwH1|F)<}anyDy^Ndv8a^BvaghOj>c_V;7(lW=}OIGnM87a3gD&e>!0ylp{soC
zgN>^;##GLEv$RGW{BG8D8#lOEOzhIyC#AKYN^7f2Yj<p9BvB!Wib?15OTHxXCxIls
zXs?cyc8>i5Nfa!jl_n-pD2eCRJMWQL3MWw{iK0mqOM>sgN+z8_iwiFyNKMLFN+mIL
zMmDQuk|>*Wo)l3oiSk0oOF!6%$iEb?ltkqu?n^pH`dvv>NupX3)umcBiB4s-0cEtB
zWwhKf&Xp21lBk`;JxSCQ1xjiOxjTuFDAekd%gf{@l+o%WQ8x*adV==~vO2qrc7GBp
z%V_nJ$V?(DiT!0Xk4PxI#wnN8NO&!DP7)20cz_O9@T#&}!z3Cd@lq0flW3eo6Z)1!
z=Ol8I&SkETCGj{tNkU7aX%Y`IZqbZKl4zF1L!!V7+NsuD_`^x(3UF3gYJHMH`z?}q
zRGN5SNxQPz6G=Ro#8XMMOQNO7so6$6X_Z84A+*m6Whrkf)jnl4athmveg_dgE!a_z
z7sqm-E=fF-#Pdn?OrmQN-9-60@s{1YyJPhb@~q&nvKq~@wU<<1NTRn83SUe*_kFOb
zPm<5ta{h9QoL89lOXB4uK4&^5@k$c?sg{JE#H&dRNa9TyZlHKY{nv%OmUOP;rG-Ia
zoaBup21^q;n}#r*l6WhLx04ttI_&#S67LEhCYZj1X1LorB8ixU<-H`{7gHZ3F{P}t
zxGWzg;royMKoUW5Y%Fsr34?wA(`vdltt7%Oj|hnhaxLOXB$BYDI!5{?lSm246Qs^4
zA*0<Y-S|lO$N!O!OJY3JRV1GZP89q^kX<GTNn4)G8M*S$xGNVrQ~NTBsWO)xNqm*W
zv?P8`;umr3>m<HO;#+B@=66YapTv)1VY=Wf!5Oa2ACj0UoOi5HpJjFuY5&RRB=M80
zIhWgC_)oQ*b!7Q9iNBNhCyDv4&TmQl?(#o`{F%gGLYPkM!dns+B(azqB#DJd=RTT6
zf}9um(j=BK(?ox{YiG5P72Lu}=eC+vt~{MiYm!(il68XX-Bw;nzA=eSQr(=ymL#?^
zO7G>SJ>TXo+;&(0r?T44Bz7gSJBd9>9CPJ+C8~##*e8<xuKYj}2Zg8II4o++*ds!Y
z@-WGBHp_8WpVL2;<liylojeT7!<i(`Cb2q&H7T4+;(QX%rtn+}7m~QhgDZus6fPxk
zIf-&9luzMG63feKx4DVrK)xz?P4IdWH-zw@zA5CEVCR;|NXcj96t0!k@(HI-ej!Mq
zfRKWMh1}KyWwjzMFPcKJ6pBl=L<*%{c}XFq(pb*<^j#)}vQn)p)e0$8OyP-S<9kF{
zNwB(LWx=~rs3N3l3e{5R@#Med{g$X9@|uFQTq}jUh1Yf^m)oLF3N2)yx+1KX!o6<m
zeM0URte?WOqUK2<JB3G6cueHp6mo^+2sU6Sj%Pj~yrEzt!N!90p^1<o<uoNkOQC5B
z54x?*Q)njqA;Cp0otU#cEY(Nos*pe1I`YSbKb1l|Ax{WCnL<k;tpusoT1Xqgwt~|x
z=ThE2g)UO<AV|s6DRgvsrxZF1|K!PkeRxKyT~p{Lq`P1bLH6YrBhRPMGX*mRD}`Pu
zypY1+6y8jscM312@T#k6mDBp9@cSh%d%cuGUy=87TVEFPieP`iPs?co+}439yyo)P
zg$xpWgK0S>KMnR9)p$q>J`oO0;jI+j7Cu7o9YLxM6Y{R$a6$S%QpkIP?+a4%gA_g#
zK3i6Q?j5f`1>J28q!1Jy5;O#J#yRhQ!YM>j7@xuf5k>_^r4UP3?Z)vG62fgkc1fm?
z5}xNuM(oU8QBE5z)iHt}34Sa%HidCQ*q8oKOyQFhesv|2Quro?Z&UbGB$HE^lEP=g
zrwV>9_=O-Xe3?SkT~1=Ke3im9SN=73gyzV<OW}JF{*=OWA+uba8A5&#oSEX~XHEoW
zyRAP8nIp*H%ys4SQux{BzobxGvVDFEzcD>h_#=g-ZtI^ZEO7Z>Dg5p7e}tTCi-oRa
zQ3{J)zC_5ua@sOivRufD6jr*DRh-lbXLf5-SeL>hd1#S`^(kyf0eL8p=Oq8e6po~D
zG=)tmY))Z|^xfrJ*qXvN;oDuwjx-TWC&O;xds5h&!am{q1rG`yNa4E7{g6~S;$h}k
z(SO(CSPEx(u%~cbT2Ba`6g(w(T9CcYq;P77)9buQuJJr9uU!y+QSg%BWkIT45pq>9
ze|hKZy)OJl3O7@@CH%HvhQ#4c3hC)kGoMKE3pOmT70g4SJk-cT%{&y&Ly<gG%EP==
z<Dz-s->{a>!@xl~#YCBXiwh|sSW>W5-v3)JlZUb*EGJlAu!3Mk!4BeTW#P1TS01Ve
zuj)#w<)OOpbRO2q!`-x>hXx|7orn8e&3lB@5v(g%FAw($NoV8z!s`oW3TEZOBP2Ty
zULj80T7oYnBoBy0bL9<%G|EF`SJEU8xx$qzd9}RORQQ9gq*)#wa(VMSJnVA506m(A
z$MP^#B#-Cei99@)hv)O~WFA`Pp^L~{x%%z%(Awo~gtQfWDi7^kd3r%R<l$*o(lHO6
zT;5p-Us9hD;xDgt%|kc0wR^f%@Y(-k>N}vND4wquuL)5UCFdO8%-bdIHaX`UMFBxD
z=KzXiBxiPKcG6B*B}mQ^lpunD1VKP0NJa&WU>1?@PV;-;`JdCL&h6^z>gww1n%Ujn
z8A<oFLH{HMNc?;fk4ZqcJekBmi3dsgcpiUn5<~Lv6B5`DiKp^7PbcwA9)4DW=aOJL
zqQVzs^~Jo_my&on55FS8t9cRidXfpS?odg8_%43_aQw|A4mFEvN$5!oPvWg4Mo7+t
zBqk;?GKo=1j80+<nGcDvN&L7w&ewvhdPtCxGcJkovWfU@2^xy%q$DOMF(-+ju$Yp>
z)FfslF}Sdpmc-?Ugj!h4kYIWew-pve3yT(o#Y`?`VZqin3X9niPcJOyCXq}cmBhNj
z;_Jd;6PbGoi*yo364@l)Ny1FRO2SUUNrvz6y;@lCd8Y+W#P2F1N*58CB-|uCZooHH
zR=X4t1U?N*qMpRfW~uKcF^>T=GqNZNrA>5x5?3lmAG{h}ki?Tk#6nKLh`5qpeUJS7
zDsjC#a`_tHrAaJHVs8rjQdpkE3a)Po15;R;#464!1*EV#i8cI&B#C25tmQ0{*ptMk
zNxYxL`XoL`;zOo|BsM0oNtT{pM)(Lyr-&eB;R~iWC$S}o?MZx`#8!5cP1}+<P(-lx
zqh$EVN|tXVe@7CZ<Z*T;aa}TZNzQIbr%sJicyAK>s3D2Z<e=0;=6>#%FC)YUxrmZ~
zB#F=Sv>le<%%m74Z`p8Ea=u97%RHIa+eMEjae^yLM<sERfhU_TBys9i_ax3HaXJ~k
zO`GM`WJ%A-R(jw(-PrAaO&62+M)JQ+;=3dsDjLrBlI%NqLTJYKN&Jw+pGo}1m`viQ
zBz{ZccPa3*q*s&pMQWh%wXUJsYm)z~q>5C?LI21bodSO|gp#<KL?jg&dF<_QpzBHe
zD`jrvY5R|$Xt+lCQlZnRgqZRKx2JGN3MEn~nZlhZ+?B%pDLjzE-Q;vuS?)<8zr<7i
zinCfEg?m%DPjU*T@On`}W<N=Z3#BlpsQ9R;crb<cBzP!=!YLF<p=b)lQ()6E$){K`
zDSWH?OHolOh0-aMO`%*Wd^JOv6j%uI7ZarAQ>c(aofPV(!as&rOd&^tN|KUOIfW_`
zSIy&8OQCuSHDq;&8L2WLN-;%NRY`MGh)NJkp|%7yC9NeXh52fD7J_<`(=vrtDa475
zkeNt9q)=ZrHITHCqzzNxa1>~qLX#AlN@jCO$!sP8AFbRX50Ke9g*GX4N}+QKZByY}
z?D>cBlEnm@+DWnYDRjuw&`|=us=iAKT_t`bg>Dk`&Xeh$LJzLBtoBOb)>yZO?vp3;
za0-3%FrO6tXddpDLVt+|NP5cygHm`rh4)ifpTb~HFom~L7?Hvg%ptA7Z|7c2;mH)3
zOB)o6K9$1L49H?3ekO%yC4MfC^SlHvP`H?&z)LB-oWd)dcro#6D!e+pRWw?DdgL{U
zS$#c)p%M?v<Gdlko01Msg^%Q=Sl?oTKU0oOVN?pW<|(677?;9$D(|L_k#wx2{8^db
zqrRQO#1tl_Fo8oKRan;VQ6{G_C5221ZVFRVn8t-jK}%tJDm;KOL(-0`Bg8W$CYU9`
zY)R)xI#<%9q*r$;Q%@;+3KkWf3UN9GLt-<Jb8NO^=V2#>=ZXo6c`5kJ(o#u~LN<kk
z+)yd}+BNqbN#CXM#RRJ?^CV}!qzj~mTl_^SESAi=jY2V&B`GYGoMn=dqn`=iW3nQ}
zuf&y=DXfwsuBJ;RSewE+2`J+f6Qt|vM>eFeF@>Eee3HVZ6h27d!xT2B!p9V^D<=57
z-$TX3mQ?sw>yJ|5r|GRJY)ipA9S+2D^%Lb)RoR}x$0<1Vl^skks<LpHa-^WLF&){J
z!X93UiiczEPT`6il+{m}aEc3p{V5z^zS2-q!)GZROyQ3d{!HOe3ZJL&Ei+OF^>7MD
zm^vgrn!*<;oMfzSjeMEHSDa}I$7R#%tq}^Z?v4}xr<y1(8k9?Xox-UUPE)=+&ZN-m
zo){&278kd`xfIUJE*Da`D8ZY>1qE2XN#Vg%l;FD*E~RjpQ%K>L6t1T5y_EbRg&!GI
zdGhS|ljQ#_=~BtR#??vTwi4p^6n0Av>2I7}aY0a~L^#%8Df~^>X}CuVr~FR}H&cjc
zxSqnlDcq3S$p24*?cGsN_R6Q>HjS^J3%jsDg4;FRas@eeNY0&FI2NmqY>nJ4IXy~<
z0vhhsP)Ngr8t&6jP{RXxdZ_<?iC-=u_O*-9E%d{+0<niQo(n}$*;H5q#mJ=EVj7A|
z=1W^67w?J9C?QVX7b~Ul_$BIUsHcTzKgwuOG|Vp{%4$dyij~t)UPA>96*W}RP*pZn
z(ok8pQebNdapQs5@e-n%hUywtZHv^<@Jk7izoe-AK#VkpeM<@|tY1>78gey6HN-R|
zONu=OV>LBA)jn2-R+SXBG}P8WCQoGbmaUimj{jFM7Ux(RPL>p{rG-L6eGLsH{_J|Z
zp@v2pT4-pgp|OT08d8N~%``OCu(+h)D6DQTDTteEpf(nASZ+17lJacg^|TFt4ezD4
z)zD6Y_L50{2MPWvDLQHBtf7nit^7$zyK3mBp}U428Xl7z{*2yJf=49nC24OBeezl#
z*3dT(7b_(m&BOg9=&xab1ernMFY*KPS_f%(T;joboFN*X$io$`sZZtMr!_ny@w0iH
z=QKPo@e7i^DCykCbE*Fo4X<i=EsfXHc#W%|!PepE7^-2IhPir}f#1;ZriQjU+UXds
z;VlinYvJ``gocq^afY#mQ5r^T&@|{8#%LI;VXB5{8pdh(VS+kQ!z2ykHN3510(-ro
zCa0*8UXl7W)X%4@lQm4y_*ZN7t101A>B!GFQN8w-I$gsI4YM`O(Xf7&I#a_e4b4WW
zn<uE(N2-H|tCh#7SBI%{H8d|Jk_@d<g4L9Uex(HEw@p#g8Vp9Ph6Nf-4VDI1<I!T+
z8XOH7TKJ|)8$Nqe{bIQK?qpTGp$>UN^)&<<vKrpeKqW^fsBaBdhnEuXa_h;_=Se_o
zUmT^<)P)+})38M2AB3@p+ijS-m?2stY$9DUNu4=TU8Z5VhBrp5@AQt)wiOKZDe6i&
zFHVQ!Rv)jf(Xdv-F%8ExtkdwmhMgKdp^SzN8n$TIs$rvsP4whrkq_yaQey1D$Olp_
zHPd68HP9qZL3=E+jqzVfd@Se4X?`R}+^+E{^y=2pJX56Zkj~`l?9#AX!+s41xcfAG
zs$s8&eH#C~tiGkI|BX_qe8!m2OYA#+g!-9=gBp%#II7{0hR-!z>J>RGeZ@&p;MnMJ
z;-qxf7aG1|TultCUowh@t1tZ-r9yH}a8onmY50!eq~Vl?vl`BE3#U}B@@WlcWK{GY
zt<ruj_j&2n3mPtR%Dp3u9FFo0^-ocY4U9bVR#?5H;j+flt@ug96%F4r{G@-HC)H64
zLorUA4>@Fv{me9_f#6pSS2gS^C0MRWz|pCk)!#JC9Hw$oO-87HX!ujZUmE_V89Ey1
z_=jnq=}|`o9sg>$!7Q!gK^^~TxT)c89r<-cbmY@<yN)|_+@@p7IQ4Y*2=s6Z?4F~3
zJV_<zP91mYxL!&SlYgp|U=zVTItu70sN;T}Z#Gfy)p4KHKuiIa2TF?vbiO%M_L`$+
zC3r|jVI9SFl+aN`4#ZK4>R>DNvu`mSN@>xiv?!^gl#a4G%IWA|T9lT;Wpun&S`-+e
zPA)CR%=urJ=Di}B(xRe{N;=M!7Ik%0)=@=Au8ydVs?xj~I&ySW(@|aOp?)gi&?`#|
z&Q6g`RZ>okoS2T9I%-P}t)g%(9iNmI#D*NVj?UNpgj1`hgL>jR60#RLEJAkdIYDj6
z(RH-Y(Nf1>kHj16;nAHY#HGdkWy0eVO?5PrOycG`cnXEL&8=u>8Nv5<wUJG&b#xmQ
zZ7ezb-Jgf<+Us~u$MZTm=;)}Ula4_h)IK^M*3nr<7ad*Mg)4g{=R_INUB|#OqKA&2
zI^HZJh<oWsmJz-6@WBX+%Lvk)lJ?cZlgW?hcvKHx2g!kW*WHgxTvj}#!@r!<U&p3`
zw+)c^F{;(WGXN}uBzRoMU<rog@t@G~q{P?C2#P(e;~5>xAB;WAr70_TL1!U&LC1?a
z-qJBb$4gw|9Q9RFF2Q2;WgSh+idS?rOh!s9QYYr9uj_b&@v}&!*ib1mOw!po>YI{3
zT+$z!M=5i#O=P5w(K^QH7^VO3GZa6mjny$uUOr~(;30(ZIwtCvq~mQ)s$lK}9o@?c
zf)~n)$x>{-w3e5fDY80M(rJ=T*D*ta$z{VERF+vfwv`pLb(}6M=5S|~3-8I399@T|
zL)T&GFuAg~daVmTJCrLI_H9)+#QXY0EZG!koSV_%GMLk-n&!Xz;p;f5<7*uOw~UUB
zTn-)Y=y+GhS{>_j%+oPn$5I{3<YX5}x=7N6I`{^k_av=fPVnR8VjW9l6JNYFzpc7l
z;#E3UORz%Hm6AT)CbC8XYG6mdO@x%?2MONiHkYj%B&E;U^ns2Kb$qI0ua3<+w&>WQ
zV<$sS%6ud##kNV1X%pGbeWZhcmXNaP6CJyB?9P+qpfrR0J(4q8;(Zby)^S9~eu)q0
z_)Nz^i4W=cT<T;mmS^)c9F?udB>h6imlDir6ZuMlv+ENSJ}xoA2_3`aSf{w4I_^#5
zzBJD0ILqXj#%<{^sLtv5PRAu3=Vh-8Ixb4kS^D`K?j~8K{hZxp9anVxrsH>=|BA&A
zI)2vii;f@Z#<uE;Hj$sWkID&RegJ2ct3z;=E8AARrsG!$R<((cNzNZS{*;^>%qkN6
z&Ezk|sNuQ<|Fu>B<t}cga%!aH|HpCLsyBHFNQVkpTFF+<1!>$ZCq;a_1b0Y!r=)kK
z@raCp{CP6>r1=-T&<VFzr(hcQr%^tQ1sfv|q){l1(z5lzG#*N$WExzB!f6zdOfGa$
z2^ez4(<mk}t)(_Lm5^21Tq;kP{4!~jP2<+;my`VeKXiq3_!z*7l36K@$`ag?WLm41
zMx8Y3rcphO8foOD!(3PE7Ue78(@@jMO(QBfF-hMnCn!@>V!jh3RZi5Fc<C*E2en=r
zJ=5rwMm&u~8X_HjdD}XTHfhvPqd^)C)8IGEEKSpBByr<BP7?`sl@ra<Xr4xkG|rb3
z#mb9TX|zn^MC<Uq)&G<eV>*W2+osVjjrQe5XAZ<CKcrE3M7%>9vGO7)80Y^AJEp_8
z+jo+5&E=e@%8M>(bWNjM8tIx!;_sZvH*>nD(IbuRMU`O#6w=;lOf4^-NaM*g`bhk+
zq<y)>X*`-nzcdC*PX9FKEs73E<1xClyda)eUaTuG2Flh!l2X;<60mhh8Y~24K9xqR
z-q9D*I502zw8YOy`mChSrSW_kyUU9Y{-_sO9Hr!oQj)?irSY=FujFxFO=I(2p`M{>
z3`=8@jmb9NNaM{kdK>6tV0apDrSVf5Kc_Jwjge_APGd<LqZlx0*l9Rvj7eiG<;%uq
zr!g*#@o7v;V|p5Ir*Wir>}+{4nNgI+L|L80Q6yj!KWa_k1k?DvyddQv`FksfL*3Mm
z_r_<WLCP{Sjad>`svuaMlg3;Ie7RUM4TEt~K@g|X&?HlrG%aZ(*<>>OdZ_u@t5zP!
zFxnf&yfpkY_LYmdX#~Au&sPvZ8d>h9-Z4((oiyG}V__P6@F2h2pU1724!`7|FX^}U
zgv`qKsQH^k-jgyETg16n5ClupSeC|N&M}SUoD|n0jXi0sOk-6VAEfc2?6NwI^=WKK
zV@(=s(^!`V=l;H=1h-t_R1h1bTiCiuI*LuJD}=t<oW>TqC5;_vY)xYugHZNmN48Sz
zBT4y|b5>b)rtt~Qs33Mp{w*1*I#WSV`KM{@Wk{rPv`Z|fd+eVI;f=(;H1?-)Pq$d9
z4(gL_BW(ICje}|YSt@!+N{-$e`CL|uR1`<k_#%z7X`D-kpQ*p(c1z=A8ehrkh$*pS
z5*+7h{u8Ib*RpzA(o>R>>36~ziTN{1ncg@r*YTS)zD?tT9EfXuQ3eCSuf1a5rEw{Z
z%W2$Nmn%#f6~*^y{2)8h>>tzUUQw`6o|IwmOBz?{0R#6LxW+`C#vKOkH1JzG{Pg{|
zq`x!m)JXinMdV{-dZ>TO_4<qZcXE`~f6};~#=p$Hi=uq>GYs5F<G(a+rV%la&%kX4
zo~<ZmR21_nicJ;8p^D<qisGS4BBzr0>yP;D23l4Me?+c6GcvPs_;-)H4BTxXzX9SK
zUq(ppk+^`QuYMXSXyASWH4W4<@PL6r2C5mTZs0)!4;d(Jpp1dS28tLcWrWWK<>Nq$
z8sXEGOBmq;sEZjGQb`my!bkWLkYCckuu6iGEM&5jW#198N(RaqC@+;%Fv8=M6(yck
zDLe^DI&ums8>nKSs^nvLoDUJDk{U*MOpZl0u!u7?ph!RttGNcEQrq@Q;%W=TjPQu#
z$x5QOfjS0S8E9>wu7P?68XIWBb*Uuc2I?DVU?3qi7pN?R5k8xp3Ter$$CWpfO^pmx
zt{j@z)Ic-(mQx-V<AcrlNMt@zxVeEwl|>69JU&Ox!<EHQDcr_DdjlN|Os_238fa%A
zko<L(MMndj<m|c`__VU%sW#5Bvw<#Lj<=(yD~qlMNQt`}=piNfEcCxCi=GC086coB
zqz@bD%b8jjZ{ZOGj~aNx#G5Ai8R&1|YXheY3^4GR0mFc4V4#6Plriw8fyWIDHt?K*
z=ec$Uo-pvVfk_wDCk=L2o-$y+9w8`PMf6y!bp1wsh9O5^RS`X_h!?7eiKGTzH1Mi{
z*9^R5;AI1^7<j}~2A_`d?~QAc$`Ds+d|2tQSh;tK^16Yc2FM@(w{pl*UYn{6GjQ;t
z>RgKtH}IB$sRpJQ7-3+ffw7#FflpROMj04wU<`deSNUgxGC8Rnx+=S`R>m86n+6-0
zY+!<cj#uLoxvXaR&&tzll$>vspo(a?R+(a8*QF?*envC4RuR(;%rG#=z+3~LT~IMi
znQ34al_Zs+mU6U;n9cpQP$@K5Ng7BoLZ&NQOhq%Ga|cxwX#>Ah5tqJI#w=7i9#__V
zAFWzdSoD>F^#(Q=a13M&EHSW@(P+S9s2G@U@PWe!47|hjHPE!G7`R2r(x0Ak(p6?|
zQOc*3hpP&ff95C)3|yM0EHv;QEew>?No5fiakH|R31qU;{i0&OqY#X8m1PE&8(3@L
z_mr~2z)AzF4J50I=D#Vc3>^4bIeaMEcwlT;Rk6l^_MP(Ir_se##X1A;b1v^G>{a0R
zP~k=cn;5+eMFSrg_|U+|26h<OY+#Flj~ISgWm{FT)d1->1EcmwLr_)R{cdR9c4-*F
zPDZt^d_spCs5mh8bycyO!oE`d9fkbzePg<->@~2@z+nSN4D6?o1`biiRW6-SKBF7o
zQ4TUl-U(+n;yWc@pnT5RRTbCU<nI4aIcnew1IG*;H}EAlW;KzhCcZLIp_*9yp<<+z
zuJ0<Hs)>3hl_}el69!HiAb7f(AU$p1jDZ>^a!i~xaL&N(ChjnC-oOO|S2#zGYv3Cu
zy79_o1K%3>jtjwL)hPGxJ9EcX6Z5Kx52^`P-LuMsuas#^l^+cJXy89aY+Curz|RK$
zF>u{Ln`O!`2C_?(zYSbvOd9xAGRcq4P)L81)!z;LA;F({t$#^yxSBZJI`>L7@zWCJ
zUrynR=nVtJs4gPQlrq)DO#=~5WN~7{VI`l5+f2X&e~Y2avlkVD`qjmqChjs(+(Zcz
zcbmv>;sFzdOx$ClfQj+rmHSL+yA^_#JC%D)w40$cTA~y*aleV4)y1>b1^J^Nk3DGO
zArnPR6y*>*6?Pe0T@*IM%T_7*Gti2|(I%N_F%!cZ=2D=fiBcviny6%=w23k%%9<!=
zV$z<lZ_g#l#7WAO?z!bnRFGXV)y2B%g8Wabi^?Xdn5br=x``i7Da&>%RZXlos<6;D
ziiwmmqjT=j3yNYwHPOjLXA`+5q9z)fXksE}qNa(siG+z-CTg3g%jK>v9+;@qq0I}F
zJwL}!4Tv$5)RTNR<*Om)Yl<*Y-$Vlw`xhw`ZfK%p4ME99Cb<0{o~f|!c}Ho=fetGz
zOtdtys#$I`6ZIA<%}r3Ds3BUJXiZO=Xm6qohfCzPHSur_!9hE9%%!$7&2ou5nCK{t
zdAWw50qongf2@m%t|otL#uFyGndok!zli}RdT=>R^fj4R(aS_{6Md*t`hVP}a92*+
z6`fW?boo9y<V>{Q3guA~-0wF|DE&-S{aqnv#^#VdW@4a;K_(vOG(Cj^bB{##B$bmV
z!{jrVL!XIq6OE{s`=rVD4&x;gFPnJU#4{#d;51h#&zgA7#Pbr*t05-+pd4tMyR=>|
zo3_>vq%X=QYJ0`Rt0rjGP!lxlH50F!ApcYi!QpP!5HxI<oC2dL^^r2%#9Ite3-?$U
zVPd3-?Iu1pG0Mbf6TXSS#26D}P0Thi$HX`Wu!$)qrkZ%$!~_!)8DJ)M?vK7QMPXrb
z`+BW1eyuXu#C%&R`fG@%nV4?k*ZImU6Emn`tum8wk|SQVm0~%fTaM_pPI>wl<@9`I
zu8E`x+k|5x#cg83Fkza|O}?B$Nt@WQCDdPu@;PEwj<8I4kH)Bn(^-%smakPZCaA|H
z-^9D?LY*9lW)RSxtciCRKPFbQ)x<m#i%l${sU{XMmU6^<Cbs2>-_|OOu7z}_t(?vg
zi|B;Y(cHPAlBFh=nOI3z)QfN;%jLXQaFhP3P?)rgB4{eFXlqQYHL=OW2PW1@tJa&?
zV4~qV<$bP^9lDDqE!9J(ZIl9Z<A)|Thmnu1+(C+1cYv>>Rel*38MHv*6?2=3k4!u^
zS?Q|?Udjn}(D^3LF`b(D#KbNWUzqsP#BLLNOnheIAa|>-d}?B^iG55mUx!x&Uj9~}
zQ1+WRzz9(UtNiLr&nkyZd~V_hmw20U*u>m=xs!g4GyjWiN}oVEDkI0csPba*74rbs
z!o(>P$4neIae@oCUHN6Ja#DhEjbe;y_C3x0wM{w0UC%^uLLr{6h($_xt>jhdf{BYJ
z{xI>UiEm7N%lu>FM-$(fxMbpriSJEZmSu;ubEv$c{k{2rQ{Y^FGVwE4!NhMSeqpMl
z-&)77nc*dV!mkSP2}S51E7ufpk1BrWcK$iMEV7k-|1$BniF_7rv+$3J>n3iP_>aMP
zQJMFy@-NroU1jtmF&>1t$(g2<%dK-G7GIJWUcv9pDiu`$3%6Ui)52XA?yy1`UO}pV
zq%>9qZy|V(!N|1dDR*1wql)rvatm0v*Fq-?oh{sFp`e9a3sDRATX?`iISb`26teK3
zg`yUUSz!)*$ij=NC~RTIgfJO09*S7t{S`rR3neU+vQXN>!F5VWDbG7GHZjF9xs|c7
zR25|<f2t~;Dv)5%R<KafLKO>DE!6m1sbnF|d#bB(wPS8&E4(+$EKsUhsBS^Api;&{
zofVNB3!7Jmw`8T#%63&8R|OODcO7%Ds$n9HS*S^?EHtuE%R+4n!a{v^v{2VVJqvLQ
zOhL?h_vD7(+$y;u!5M81)8JE^ltPBu`jWz&*1+OnxiC{P$2PXm#6l|ztt~XQ(9A+}
z3oR_P$rX&iez}5oDJ?DVK4f>Z#F$*sYD;+Q(#Aqt3mq(Uw9t;O)|K`aiU-R4T(LP<
zu=+)=_%S!MndP>q=whL(g(odMWucpe?iL1G7-XS`g`O7r^7fu9yEf9xLS~oJ$3kxl
z`CH`nJ)-z6av!$Bn-*fyM=kWTFhFt^wT=(jt903`^ydO`h`ph}V-|QnLw=p8c-+Dh
z7Ct!~C4aDmAriCNE-J{W^hV@q3(r^>YGIg#XDvKu;Ux<%TX>%Qs9<@~!i1=J!3xiu
z?477&qT>Cic*Vl27GAUPI>mTq=8Q5XrL3N)M9(RIoCyoRSAWC8n-)e|7-eC&6&{9p
zi^-pQ4unT*rX7q<IT8IVDo95&uKrYp-kJN8$Q@&0EFCf@9P6Exin&jD+X`<*W?Gm<
zOC+9XVUmT(7N%HOe?;lKQkk$OLi46tm}X(R^vn!NTkco(ACJ<XukBZ6TbM%++ql!l
zTnkAH`z;)>kg}jzSZQIE1)U*k;T;R_S}-h_+^rK7&w^#)a#T268Viw_u<7ksn0_0^
z1UHLrC@%XN;b#ipLSP|l@!>+sp>LyYETu<G@H5vu3-c|!XJL_r1r`=sXjwbLE-%K!
zXA_hGO>-y41V6tlwy?~?atlkip%@aTa(RQYC?-hx`6VZ#te_rEDd{NRUR73GSYzQM
z3)?NMwXn{@2NpiG@IKvQVI#wSvNGs*g=v9w1I1#3V3UQjF~LH-nG>9&RLv?|CD>x2
z!bOD~=96tqAX%l%AIirTc5t&;_|(Eq#*c+v7Irg%q?CdmD&KysY<HF0YKqD=1#jt_
z))ZfVr(EBz?6t6u9d+d^Pg&rF`S~-Z4h!E~_`$*<3!ihJTKJj^YT*bs7X!n>QMqbg
zT6pUdh1u^5F7y(G_k__els+{@nWf5c*>r;bpQ*gCM4{Ld^ORE-PFuKO;i82zoSlVp
z7S3Dv^N4cW+sea7m6zFfyuuscNfLY`NBPdeB@5qjQ|wh<T^g#o%yp?Lu2|qbJa7J$
z-nsULa6|oQ;U^1!aa&pV*}^XjW(&VrxXO&$GxwT>nfn#<igJ9G^8Os<_-D$93+nF{
z{-6PL)V`28@w8HScDN}HEK~lmaGg<PBcIJzibwyoaKplX7Pi$CtbS2byx%?djycLr
z3w!q~1h?6M&HvCTx7++rpEBZr@|DOX;HKk<ciFhxMr#{wY~;6bkB#a!YS<`X<6avj
zY?QQdpN)bx3fm}R<9-_t*m%&!LpBQ8XwoE?0sP`j#gut|_BDlZ%b2fXDMf7*vr*g*
zx4@4zMFHLz)DjPGRGyus{BbE-%0_7$m26bDQO4%Oh)~W(c{}_R-^x(>%?-a0s9<Bu
zz*t3_4_s0R_zAsCE%Ez+SQQ&pZB(=Qf<+}>E6k8TP7R-x#A<&_$+4l>Nbq?mHdGtA
zHfq_ZZ6j(UMuQJ3YmY{m5PH@U!)u9}Hb|4TL>(J-ZNzOHs3jKH63iR<4=VNOlY`3H
zzm%H?74qxbXkeo;mDp%#qY-^oJN#UErItW#!AmOd6L`IDYNMHr<~A<<t3+-nEjTGo
zEv2-wv3^^4OH4_A7Un1P^6x5bISU)l+IY@Jdm9~WJZht#jgB@t+30SghmFoQy4dJy
zqnmVQ@QZT&J>~n=p`UrX^-r^0excFRMlTzEZ9HP5w~anF9%i++Xk1&+?G;+ZJ1$iA
zor^X*7tNUx-l4rzTTHGk`r8;_V~C9>Y&>RTppD15?o*UOHa?lJEU7I%t}VErW0xy~
zZJekr8eEJ2SzA2G7^owh4a(Cto+6&8Jh@!CbB*%BH02ov&*#dvYs&LBUf_55Hr}-H
zBG;>qc*W*zDwvaBvhlJ6#Ek0KY`jhZO&P{W_+DY^X0#8rLCW|X&@FewA!Rs2-NrZ@
z<86$vG1A5u=HV03Q8udF2)E2=#`fDvhdSb^I$}Z{F_z&vJ51eVzHMUywMpgg))AB`
zHAf*x9Z<e+kvql4R2zF7eCqIC7t?9KgB%AlY|LbYJ9yB+EE}^q^kCfUU=EYNjbk>B
z+eq3-*;s31oej-~Zu6rA7T8GJFl=OOxHe21pVkq!jsE3xEgNU+h(GIyf^|iey27!+
z_gXfpD?A&%&F@G<nLskL^pB1D4WkrbsZb-A_+82QDI4oqSIjP-yU@maHde@9tS+*#
zMB>G?wtVh$Qf8@*Wj0nejCSi09bZ>0m&yrN+E~Rs-YB|SnzzP=MP^;GOZIx7fl9uO
zy*4)3*l6Qp8#~z7#s@aPzr{8iAKGZ)gywCLV6)Ui4#(o?<bPyiyA4`PT(MCod8)41
z$+%(|_lWLcZpn%7lH=~S@mpO{pq{8$Ptc4)PPBeKL09avanQygIjQ~Jm=b&@DO=g)
za~p?k9JTR9o-s$Lyq@4#q)*oqU)uP}1}8P9o=DdVoyMjUHcr~OX5&{IUrS$IwDFCN
zQ#MZ1UG>Bn8|S5~iO)*TIq5f63kQ)4^jp2qSKr$B&c=_@o=Y|^OYpsoE7BMWa4gEx
zCqLwwM>Br1@v|KCmoU1bSEc41^}>*#+TU#aZsRT|42(Z){AuG~8#kmee{t_iJ%2M@
zm(OkZn@aiXvO7Jws%q|kHg4Lu%>f)loG=DX)D!s}FnDMT*ZOKbak~@7*d3A*+#L`7
ze5b5(#Je5jcW{sFTfhOWB9no43-Hv+eGW(qN_xKot61~_2j><<$$ZEOf5k51pr{l6
z*j?BOf0gE;g1Yi-d@(0H#$Vh)2?r$|lyXp>hB+uLdzF*4jDxZc_@gj;@fYxNaY2PO
z<D#O2N>2Dgb`>W)=TO<f$+qDy-E5^;RR`6a@F#EnxXfyGC;SzgKyjctc*5b=^~iM)
zb<oK{X9qC{H61i{(9A(C2elp4a}amXIxgxssOw-#Tnvtj$i4CTaq&%oc*22j@L7R)
zLkIO8?2=6W=tE8e`uW~CaU%z(;)0yU4w^{ee`K}Tz47J_+H&-SXyKrxgF*?>ieot#
zTOiItfi@Bou-eW+dj}mj*<LZ)L)uXq)-oabB}5koT{$}kk2>h)pu2;f4tjBdMWe$L
zqK5-M#cR*yoQVnXZ<R!E2c&%^?c?BK2W~>JkjZl3Vf3RLCxnOghj8^B3~=xm-S}tD
zAP0{-7%1`5gdk^kB0RY?n4@QM&LjjW&q1xZoWs6PIe5*%>kjUHBKow0XJ~^H{waWA
z^PGd{9lYS+MF+1qc-6s64qm3U(<6M`ddWf2rB`yOgomU4PKc({qD6#=3Nh5dFb7*4
zY<2L4gEt*G4l)jgJ9vwEn33t=_rvN42X8x=An`~^M@c$b(lL^bm2{kg@e;6C=o|-=
z986`ZcQDz(O(Qmi3nT=amOP+7Da1FG)o<@pU#+T6=Out^Q9u>d)R_)O3c<qa90zk9
zzQ7b|2T2FFH;<$olqsefLX5sw)f}u8;!`2W*;`pP9K2sjwH%lZ*gB@TdQk}5!5#HQ
zzLp76*Ma9?nS<pH7Br9e4&HI_u7iM~SWIQf(t8!v^7X|$?h(p3Sm+>8Uv#Z6?xVr=
z#n}4dJqL>&7!ogXK>NvD;$T$2#8SzByr{aezF0xqXb-oigH>{BYaOg}u$o)7kjk<~
zG70w87eflFoa{IC#lQ8%1_vKH*z8~<^OA#N4MeR5p~pUO!e_s<Eu?<lIMz{eo@yYr
zIrzxIP6wZGYR7BvltrK4bGJMA*ul64Vuz$W_K=bCd>qX#`tVB5ZpOyN@Shr)8OmM<
z`)E=I4`i_4!2t)~Ga9+A92|6T+QAtIha7w^Qwlf!VFyPXoRB%>D6>jC^$Q1I%8bE8
z@s&&(1jq6K@o_0eaMHoovLn+AQ_3lsf0$U9wRrgCER&mq$_~yu_=b*^k{2Ys=zs}_
z8oqOI$-!lr^mwF)eOXqwiCmGKP3_eF6T;N@ql3R3{O#Z;Y4*<!evtxK8JrIOaQMh{
z{3<Qvah>%I#Bb6<n#3}_P2^80OwFAq;2){sx}-F6PXqC<gB!Gm@yz6(!R;ADGRT*~
zZJF>G7_GXME#GMqp)s`ijtuV1gc<doOqjIq%HVDZm|bt#pI=rfP#}YQGq^7kPN85X
zOzE68WhhBpD1!$xsF6WV1`lOWI0ODosd@%Qq&#KHXHYbQVi^?AphPBInlc%bl**4a
z5T!F=t}c}cPbjg8Cw!=r%FAX@E)y;X7njynkn$BXsFXqF46e6{RLz8!36?5(c2>*a
z*4nXS6EnhIN(L%%22C@_%^;cyC(c>Kq-G9RKZBZ?@PfipOM=?Bs*=`~w4S7KNfQ|e
z39?giZ<MRmAOl7bjch0tHj=clq;z<*44O+Pbj_ee1}&wXojKDCT4&HMgZ3G;kxW|B
zR@z20IClmcL5B=FNmU)C3};GLaP2r;7s;U{akor(I*X;d1U)k7DFI)5N@kx79?l@X
z4vBT>OIK&`_5w^;fJZav$DNhMfh_uGFo2Hok?Z5J3<k35;xQM4GT||Ra~Yh^;PDIw
zXD}p#Co<Ta!Ili3%;2dEMrANMgQqiiCWFQe#qbQ)z7~5ngXc4NA%o{+waEC`j)t)p
zGnnvH?9B}BYAA#reMwed&fpaZUX}DUNne+AsHDRrWyd!%_@RLysMJtU1IKzxjyNKN
zkr|Y!kRWH%yu_Fc#%7???HTlKD8{jS1`{(FpTV0A1<Tvq8Wj=*Mnf@)^XeI$De2@4
zrewl1V^bw1m?pvW3})nUR$of2Y$#^Q>g){W<niZ9kfhrs&?Md6Fg#smWMF2nD1*fr
zSQ&JDE%tpw@ool38VWlDM@nWga3%00%}VM^8r<S+iqOt?@-WrTlX!jx3nW-5>3fp0
zwe_(G>5>dqXRt;xmu9dmuXVWuD<oZ+!72$jHFjAm@dim*U6;Z860euErc_J*Mp@mI
z!3TMgA7+r<6b`yI!<WqB;|z9W@LE@Vl;M9*BHJ_JUpCN4lx-xQUm4w*!6%HRnUM>%
zqPrN7m7@nUIF!Ne4EAL3X$E^UIFP|-8SJA=2PF1q@JICo3o#1;&%)JfB*JrXjl_*{
z>VQV#^9&Bts~H?+JiMWv$zTKjSRv_G8GI?hjhQN$$0Xi2PCcH%2@Ww%Jt--{*GwQ1
zpO$oJBSGd_sqnoKD)EI3E^?>1$aV2e2H$4zcLx7t@LdLPyqEZ%Au7QoNiR!!Mba6K
z#E%*Ll)*Ko+zfusgf~dPaDO!l{|?!pZuF|etdjp*2ES+UC-;<yvib+tv5}b2D(vDm
zh?4o2?9OM?UC-cO#<Pn%-0;ZI4d#3o`CRO1B>v0bCMVcP{F|E~{k4(cQSb}3qqn($
ziw}+@SPC{4ce=RCMIjdty13g7_dAcE7jVOWW966h9yh!+vwE+K`&?9SEDE|X8jJf~
zbZabzHx|SXxLDm-932>Y$VFin2O5i_E{e#G?0bHm+OAiqq?n81E=suQS0ANhYe`A_
z-pt9|u9S9BMpny8TE#^<3D~i`iwY7~%;QvYQCZ@b3WZN0W~u6;n&ecMv__s}js%K}
zi)BN}zl%hpE}FS$?jq)*ri)rG$gC&nhx4MfUDTm)V?k!!JZ4;igbU%~57|`TMFSTN
zU9d}I$!z4}o+hGv6G7TU^4Zjs`kM%X7A{)4=;5NLi&kXzh_-jp!9{BqZCo6S#G5w}
zENy966VXmm=DLn9I?0vo;-a(c^+*#jtVx(y2*x)NUAYP_(oMu|TCBT^6%zDv(VI?o
z(ci_MCZdmvzAnl>7<<^ocTL29O+;?nc#*d8N4Q39<Bv)@uSkqXTgx^TjH3EY#Xu&1
z7fn1g_3*fh!7hGu@so=oE}o!0E*86Z(#2CQCc2p9;%OJpxESu@Ef>$ac+SNuE?#x<
zJZJYv^aU3$x~Td{l+Qx!w=~hZsd&l7%e4Hk%BKxK+EjdgLVeA}>n?`680KQaSL#p8
z6RnmfRxM9-nI3z?#hWhH&WtfKH!Mr=amVx4t0P>DbTQ7wc$ddQFxth~CF&S@I30Ou
zcC5rkb;(whoUxLhb1X5msd(E3n<j8x$JGHR!`7E)#U{I$!gzLJx|r%>nu|Fu=DL{f
zVup)ZE@o5tpvX+F5np7{RD82E?AT(lYMxc+Hx-+jilhtcm`cMm2~sW&lmEF|`q8M)
zrJ<wtsVtiYM=Te%i>!-xqz#S>*M;XIBaNim$2O|3E=^QEq53X<Xet73)n<Yo_-R_~
zT^I9Q%y+TCMX6@u!DH&{tJS*eLu2UGy3NEw7w<7hnu#IJ!e=-yaj}#;(Zy#jmbqB&
zVvCEdj1U(qU2Jf%(ZwomTNmqGyzgQS*RGkMHhor%Bd&Gv<+K=|Q5kZYiE5|R_1s^i
z%><pfi3!BT!DfO+4%w!D$gTRBx|vS<T4lM?Ol))Uk&9g}cFQ5QGb6d!>Eh1j;$!Z<
z*)ggu+gu#o6x#m@w^H-)iI<$w9v7dw*vp;uzB;72*vHLsK;6%HKCU+UTBTR_>{mxL
z7YAJ&a&gwhITxSP;VzE5IN{=mi=!?YZ&1JD#FwgHaHh)=UrP5Dm>nZW*{vRPk!&vZ
zZV632>Ede|wlr~y(?6cjwyKOhnsHioS=L;fanb0Mx~sW3@8SY;zKd^}9Aqn}ylI14
z?W=GK-?_Nt;#6~S*+r$V)to0H-_8u@c!dGEU;SRvA0%a!{GVO?!er>7gompxt}%go
zxYNV0E`D?IkBjR}%X4GDGwrzeWS{y6<KYYSPZxhR7ps@6f4MlhM7?i`TE2y--$MNB
z;)aX=T-<aqa8+Xaio}>R>h8@dX~e_FU#ksQCh~c>&BKU65qK!HGQqyLdwAk(sD$(`
z4|jXG-@^kQ@_QKELX=&q-s|BW4`a@%{>nrF4+~F*z~HzZ3VQhEW3}=Ql{yP~c+f*(
z4@EpY<Uw7XxO=Tiv5_rA?sj$b`oy|5iG2eTMLn1;L@^HqK2k62S4(;*<srv|;-R#M
zG9D^>sN$ilhjKJ#uUf&w>Vb)EC)M&E8m|fsPOVB*^gtWvgi0Rh1Wu%?hiV?IrD_ci
z)je>a)hz^Vt}_bk(s!r2uZ2)O<a(&<p`I7IG3p`ap{DFb%_9%09EhH*<)O9*TAuTz
zT1NtEh)WMNkir*Rh=d2>;RfB#vCgXmMO%u7bkshzk%wL@6VI<w8++l<yJy6jd1&ro
zvWF=iT6kzlhkJO^Ln{xhJ#_cb!$TVnZ9R1G(9uIXFHB<XX=GEOwiI1jijzwdOjdmA
zdnXT_J#?XaTMA~j>tCrwSF2s6d^gTzV;EH2^*w2Whlf4%^};uN_4d%m3)3BU0c9Rp
zuU<T+KH}j~4+A|6@^GSewBPc?lPyI*4=)^7`+FE5!DEt=^V6Kzz%}aQ9)@sTPKMRN
zc>)~qjt|wRJUs2;4G(X6c*f%~2E69sbq~*Zc;3VNtJIf0P;AnwF!R6QfyTe+;U#G~
zHEiCbz9Pja`KpHtgCk@zEe!Qgb%Q$03-|BnmV$YE$R>5ThqpXT@Gy~)>|rF8co^ql
z-7$3(9lKAxeoU=!SRE~ukC8OpQWRO9;EtxA@sjhl2l`=EOTla~iE~+}e$`U&;!^iR
zb*hJH9*%nW!ozeAGd!&Du+qa!53@XEJ-p*#wud>44F<CpZp^tJQXVu9Nm*@uTD@z(
z`g2QheX}}thpKbL9co(AaZ6RpgYCibknvEwm0%b%*y61Ox9XkKW3C5}0y|XSL*SuX
zE5RsY_32h(TB~qBzRNx6;XMz3u1L)DFkfy-j<~=>(RGQJRwfpCSnOe$hvl@kl~}zb
zvBbkt8I7#6aIC9))lIF$=dA=Ib``gnhix7{^03CkS`V8%d_aG4MLevh^F3T?CAib`
zwHA-9P84k|HgdUJ3u?%1EjqRqA9~pAVT*^Y9v(X#?s`s>8;Vw)Sdn0<w<fWjDagYC
z51)D1;bEtTz1%x=mxo;*@QJ#|!*02QINu4a#i8vgZTr*%eaQ0O0d?RhbwBs)C_MGP
zI_9y&Lu(TUJsk4zxrf7~?}zEdYb`dk7R)WQ;RsXN=Gs%%B*^*F!&e-|$L&6jc{t9^
z<>5z0zK4?@E_(RJ!`B{8c{uCg96fnj{o$N?T7pBZ#TgDH=i7I7tjwCkH}9+G$=Ru1
zkmix|t%vXEB@f?wxWv+0TxO<iBU-FYcxw`TF9R_%dHFWt?2OpB{pwF1e)jOUhkuwt
znfyKc=HYh_*SHWT)tU#wg#0U$%u<zA(MJ5i<z}wS%S(&|HZf~89h4A<)$1Pq^$_t<
za=qH6jkw`~ss5&1@&6=c241ozOw{>&+(xm3DkaN29wEKM$DKZk`Y7h(E+2RMc)&*?
zANhUU<KsRb1$}TW3i!C!5AER;NV&MA4Bcnii2HqP+^Moe4yh0Nc*uv-MilXJUS3}c
z`(dsg*G7=mk@gq&QNl+hAC+l|k5WF$`Y7jz@m$(R86R{q@!B@xi#B4(#&DqWJ}UUA
zC=K}U;ph)-#GP%$;B^VoDn6?EsP3bNALjpRa<~qks%6@WH%_Xnc7)w?d?<c+QDB(0
z;WxZX)u@k{k9Pyi3s95busX@dWFNJB)b>%wM_nJU_;}SvJs)u&kN9}hM}h|UXz!zg
zkNQ3u_-NsyrH_U_8u@7Kqlu5_+lujRh1FK9lAx)N-`k2(pC_96_@u31X)eLnZAB~k
zxt(a^qpgqD{MMzNV5xpM(Yl?ud?>-sXzhITm$;*kPCk12=;dQ*JJH!kHy_=7bn$WS
zVB&`wb-McavPGPLtv#g7JMF}bc7oN8L!!NX^zrd9mq}Lp`Z&m@veDA*#g%sAj`pG-
z2lDZxkEeVL;Fmu>2KyM|W1x>gJ{Gr#ml_hK@>=c1<37IfV<(O#UfPhLh9`WqYagnr
zbR?`k?c*6AFZg)T$Fn}3XfN#c;yFM31M-;m;&~sd+lx=zi?i*;OEj`<ROujI_Hn(v
zDB3}E`aGfUjK1dMbsuAWjH7^$VLncF5F>rO;p0soA9oNVe6;EyhWmKS$J`EL5IG$L
zH7x89nla%>Vw8{3KE_D>^dW5^|F;gJU`H|D#{?g*brh95inqC59YxQMf(tQ`aegF0
zFvZ7I$^@7gV49EV47mW60?hC+lX=6(aUZjM%=YoVkM%z0&;}pxFn)X_eWV!qJ~BQu
zA3CGahwUTnV@5~8Vo30=#HNqU5`587{3^kHorLSdW7KsLS;jDTM<)?5qB;oz_G0PV
zNlfk}C@{~*d>>1EEcLO#$FKcz7y5Wlf|cjvZ=H!R;{NKNyI9gkFRSx92{M=YSk5Kz
zvBt*=`sZwXrH@rU_FPl9bP|1X<HtIQUnRJ=v#8oxto5;uIy;G7SJWn*#b+1d8yG@d
z1s^+nZ1VAekB@vD?JPdzblB8cY-OZ%7F&Ew=`7yqEMDv^SluR@^5@1Wa55U-E@gh`
zEOv4uFcg_yeC+bE+sA$%2WXFvPkrp=hGnwqA}+_{dd+z3T)b2lQLl@jwVk_&r@M&H
ze2niRKCT(R@JRR+k<Wb`_VEQbf{#0XQ;%@aF5)OX*+p<(oDl)1{FUSo<f|Sh=L7?c
z@&WD)@U@RqKCb$>=Hs-FGd{laammM7?lK=2eSG6%Tc!AU9~ZbxPv(AGCw{1l_~&e#
z`1>y6TOXX%%-r~0T?ILpeO&SJqmQ3_e9tDvNsV};u7Z@p>{VWh{p{lxAGfOQtH(JJ
zcK_AKZ$57L_>bAc#~(iarVKMAxBU6|h;#A3Bp4kH@!oSGz3$^*hTpmP<6Xt|b8&(Z
zUByiwkpKulCQI$}@q7Vp3$QC1Pj(GI<1doT+XJx6)~@2N0Cxu{7U2B(c>VzQ1h_xI
z0|5#IIMP+z7ocE(pSy~C$>}DlbQ6ubiJsjAInQ?!g#tVnpm2a90T_hUFT@`Tu;D`d
z`uTX@3vqHtSuGlXP4zFviw7tXpk#nj0m=j@8=!O$F4lWz!*yXa-tm(<t(zzppnQM|
z0mxa<EnLSf-2_*bVL<yU2WT3gS%4}5ss@;OO|2H7R)E?ZB|wb;IRTUa(EzakoS+)u
zw{9Xgz=>{x{+V4Nm##~-1-;SyY`kWG`u%eW>IA48pg{mi)(a4)^6o-NFVR<t0Bxm*
z3w9T0&&BI=xbty>h5;G{p{mC8z`1yn0N2jM84nzn&Tk%|1s5W~-~cTHv<lEGK<@yp
z1GEXyB|ulI4M3CH2j~!>T>#p~?(Cbte{RPBodR^G<oS?U<b1fq6s9HJ0(1|;yzx@^
zFwgV|&{I|$bq`ZV&+dXbq)&i{0}Kf8Sb)9(9tpsF(k}?VEo35kl<BU!V0pK@=pSH{
z)I)^><zfwDmkV*`kb~WYe<7})j}Hm(M1VH}ycyuh08a&YA;60Po(}K~ozP7@AK+Q3
z{5d+UyZENNpsxz`5YZlC%+UCk0=yjHwE(Zv)Bvvr;qG{=hiKkIJlZ4N9YasYhqCF(
zT$W+7mHUO;hr45VfVTpS2{4u}3NSLjr~q4fi1y#Bb9#smpUhp@LyTs`_7InQi1E$h
z;{uGAR=v$Q=_YRW5XF0jCe`j4;z<D}2QX<*PjTv(=oCg#fLY{}j83InIImd|;_18!
zNahb!a#@`nU`~ML4P!=txdA%%6c6_dPY5RiqylJ+<jXmFfOHUk;rUU8oJUvH<C8Il
zl#agrK+d?OQGPvT1+W7+0WuU0u&`(N{4|%*+ar2Ae_8G+JcjOVae^QSA6frVPm!e`
z7`i<LtEBS-EC}#rfUnp+z<U7>a>RD(q5z8ntPQX(z>)w<1AMYEx`rNG65$_Omj(E~
zr&u0fMS%Rh#L58GdWlsMKaq^L?j=@paV4NUJH8)aeSjSSb_U_M!5cWE`$E97k)aac
zg8&}}*c@PcfRDKl+-L!|1^9@)M#lKF{@`AMCx3?Z5*HRJRZ2&Tyd3?%GM_LV1=!6!
zUNlObJY5hz81Q(FJwf<FG`>LR(*S$94eu5EB;7CR0ZBiTl!p-5dWfEvKk9uR;IQ-q
zU2#N$qXE8<fWL*2c`U$ju5uQ$vN#doB(qtT$5ZijfKvhfVZ;VF9pDUeU4UN#oDFa;
zz~ul}m>3z@H<b$kE=tg}N#vUV-%9))b@mG1&)6%XUcISY;x#3r2E7F7_Y(gQ;767@
zk^W60tD8h-+*DY8Vrq)01Xr0Z0{kUa{Yr0i!S7ttyA!|3zEpC0R%FMV$R7dzl$`II
zM9BPG$`f=MgFWjb{|2}jAd<xmrWdL9zX08u@Cid|zASFb;;t<2&H`B+jHtI~Lz#wM
z@W`A{;EpWrlzd{Els}7m$cd=ydx=)JslVh4jqKVidS4a=v*?{gpDgar;(;ubEYvIt
zW$|DZ6|$(9#Y0&X&Z2Y{WwKzeB3Ts6qIecXrNSc3qUR$jHJ8ZZoyO5pS(KFgv64AA
ze}c@O`P8yml+WVzo65jBk#bqI%AcTBd@bgX#?eYyRL-JW7S*%Z+e=iD-K%E9muAw`
zT}`4?&N9DAq(&Bp?@r|0(qAij;HHwBMU>jIXq`nYi*jA~c0F*tYGzSOiq)3Yx)RsP
z;-p-`dRfFJp9`9hfEKb>{VW>DYQrp=X3;E*MzY#i(k7CAvOW@%!p&us3&)NvvS=xt
zLrj4-S+vcfYZl$IXqQF%ET%Mx?rt3AT6D;wOBR=#L_5m$>Lh7rN!dzIQp43=g7$RJ
zqDK}zS@NlzDc#7XUR>_pf}lum@o*M>vv`eO&Ek<P9?jyJES}AxAAkJK;_)m7XE7j)
z$Fdlh#USYcs-h>Uij=->&@==?vUozaKFy`?EuPGRu6~Lh=q>v87POo)T=&;{i|4X<
zK8qK#cuA@q*(CBp7SnqRTF!`Kua~8sSGg7u^%aS^;<T3I4$Wd%7UQ#cJBv56cr%L;
zS&WoUW9#rNI?oBWz*~&EE@7aK%3^dD<7CY2&8LpZ;*;KjAu%?KY;VD`y0@TPzU(a~
zWHB*|saZ_RViG-YQ<+SMOK_=a^wwl4d28;I=0v7*P`M&xvd|B+vzU{`>MYh|F*l23
z7Iqd+7O5<>EYh6s@ftkPaw|{j^nkpG7}@ZGTO~JPW??bmT+aEfx8VB}GFiCU@P)8`
z7G4&wOpRCTBdkf$e0{`&eMCU}xl^)e(nrkCVu1wjW-(6!GWmMnh1`#Q#Cy~)!Ho^-
z;%xZ(a(<1F>LZp&%<57JmSwR#kF!F8m6EQ?VrZZ68~C+ZtjpqqEI!QQ{VdjJ!;^k|
zgCr-lfh#pR${&e%UE7%DBj%J%T=$4VusMq@S?r|Sv)D?HHH&V`;-f5<^${Z{L|NU@
zM{LjHV+PNJ=nn3zKH_R0LHz${x(;Y5il+PIf{I8mf{KW!2yfn-r-Y>eMG#Rkl5@^E
z=bUo}1q5YxcH)MaRWU0nW<*6WD`FxC1E7AU|90`ebLP~!T~l4%U0q$%-80+ETW{^e
z+dJ_thckVkt9oZA>ULFax~f~cDkdpF4SU%^T@^1TKVYPy<r7$+z(+f=pYbPws}uNm
zCl0W4<5(QW!JYVICmP0aPaL1_#Al2%aoiNg=R5JmPFxa4i8#JwHOTK=^eek#C%)N<
z!#nXEBTwssLqd5(!?!!ZYth36WRiZr6F=_6PdoLIFFy!B*i<yTt2#m}(TqEBlz!M%
z@jAv~EBJ)alg0c~0!|A(BXo0D#Yx4*T)&8B;@@`SoYd|7PW-MTRRQaHfqh4_v@PKE
zhcN%#iT?>8=Pv<&GyV(sSLlDmck|+SL-Hc7r#I!|C?7}3I7-EFsc^0odRZKo$MHi~
zRa%l|;<!SR%t9t<scx!l9CvopxJ5TrA&vpJ7hMy_wQ-E>rml+P>NxV+6bx)rKzbef
zqMNEDoV~3Ju8*T)92akq-XMI6(U_IvxS49>s1Zk%IBtpKwm5E&qiS4t(2L#lDekw%
z;kGQO7RM7zmM+@Uw&0F9c!ox&hxLIfysAr*y;d`h{5a~wQJ0?3O&M_%#c@|01#uLz
zs_l!+ILdTar&<*dpBCkJ$5D$ia*_}E1hrWKk!jRj#o|zL@D$T}Qbf=0`s|MSaWsfy
za(6}kMxpn{(I}2iadeL3zBn3-!e((aDc1Zz96@(=za*Q+@m6>BeRuW0?&|6u>cKc3
zilccPE#hb!N4q#$vf4d#!&?hzMFB~+k?ey6KO9GUNp_55!>+vf!t5ZNtv%E;J=Fdl
zs!JSQ;}{*sm^iw{(Vblo$DlZR#L<(3qGdt9IC{m=TX3H^j`vV)TI(ZLO7>KJg~?+~
zDAu3-(o+o(&c!oW2FEcZj#0uH8pkmDK=Iw-af}e$pr_8uEB&)cwHGszj*Vkn98=<$
zDq=hbX?z?L;^-*y6XQH*N%5LQ3kx3CQzxgzF+Gm?tYn*l8F4J{sb<G9N5D*>vxL%U
zbK{8jRJ`WVMOzgRT;x#yf;bk6&X;>?^Dc>FX&f)d@k$)am_3eE9O*b##IZ7tZE-vn
z$ErA1$Mx~Ko8wp$$J#j7)8Ne5qF@~zqo*SHQYgU{y~HKr*dzjU4>BL&fQn;_DA`JP
z>QpegOwp~q^l`iQ^itd7*de`^6#94^2?0+CWhHkChzsr7OIfs4FI{=n%xrU`X~*HP
z!o3tPHx5s*FEkL^wL(4K%EXb4<GDDVk7IVlqENIw9Y-X|oX{tQ^6patoL*{I9Iy9M
z-}F+?#PMt#=X<HLy>-!5d#e{{<W2=I34M_x?uH`%N3*{5aKY|4UXA1HIKGMFHEM`s
zUmPFAu}4PG+hT_|XoueFO`!yD30PgF=$$y;6@mBS*eif0qM_dB(CDpbHy+pgq3{oI
zfXDHX;Qet7@2$l?mL$bKkp^DaRP+U(0)jsi`nk}N{dH9r^;TcTvAwtYs#y3?9N)(A
zZyf){aX60e;`l9&b8&pnNJz(v<3t<`5kJOpge~f=ev*(v&eOfs(Kr}Sj>VB{UBHXX
zlN65QY#cxHmV})jd#f{|fda&&|MphD#8J7A&d4mkiV^}|=jo_)_&(}F9KXl$2P@WF
z2d+OwGS)}6>!XJCQGc-sebnDV3I1Uh_fZ6S30#uUVeQHUN+f^;E=%BYJ~#WQk_lXQ
zlX<D&QVHCBlX<F-BLDKf+IveUaC=`>CZU7g6+)?`K^zQp4g0FH36x8qd;&fCs!unV
z9A6a@*w(Iq;F<*PyeHNyfd>=F`!w%bmXg5r2~<p=QUY}oh$V1C0yid5n1Gp(gWvnA
zn-Zv;z^1<H<^-x!LjqM2xFvzA3EY~%Z3&!N5UZAe-&av4{c!=4KfP(*E}T1r@>Z*b
zu^I`es%CxyMglbxc)hQxQq?5q>%QtjUqw(L0u}n{Bai+XU>4ChEOEPecLKGgGPT$=
z`FCbA>m>BAWsQFNM}L&B$Giz#{92w<p!x}vy|b`E0u2+mCxLr81K|OWLK~6RE4-;~
zAvyOY&{&wnO%k}j7&jI0KtJ_xKfQbKPy)>p=$k;l1X?7}GJ!4$bWNaD0<9BxIDz&F
zv`OfbGutN6PQagi^LSe3ok3oerg^{i&HJfu9#6>ZkU+--IwincuXqKW1$6W@CZ}5h
z-4p1Oz-CGINT6o|y%IPe$=(U1y@EIL3r2YbxAe=a9^{qkmp9)l=%2uV1je(_1O_HB
zD1l)K43|0#PM})TydhG`75(ytiUulSStF#B(Fu%UM|%Y$6Bs3+QNKJUDKIvHaS8k@
zttjIcu%P?Af{6)CN?>gQY|G>XrX(;gf%ysi(>HIblsJuD=4(mHPfuWm6g^WYb<Rp)
zw%|EJ=L)4TZ!JiG7F#XZqx^z}yp;gKVxa^}5?CsDnb74zR}|k}nZPQ+MNbq__!zC7
z;3jzyHP`t{TYf_V8xv@h#C=I@V%rngX(4Xmkpv!1po4{u7Pcg?l`ce2<9JEnu>`&#
zXLQka4!{m(G66e*9SJ<1z!UWR>&=}B#1s5kdLA)7FhR5TQ*-($OMI1_!vjqx0XKoS
z6L=>9k7FT$=Ms26fgqtbpm;?Iq>6D`Kqi4~F(+i7X7VVOOX$B;Ab3)4J;l})%j`<v
z8NtsMbIRA!%3qM=>j}Il;H3m!PT&>6uNF)0F4j-^*AghWLucGmeD@6jZzk}TfWLa^
zyYC8q=Xm~S3A~p;)AIVWy}b#%pTNEZK9IWyg?=dXBcc0+Qu1Q~2ZVmRwSb&Y1b<qr
z>T_BwUPS$*UozCp#L+hO^2*|y1P&!|DuL4pe4D_6{`LBnDm<3J;RL=*;CtcxB=m;_
zeq?v|Q`vrsVg(Nr9T7h9Q30*?6fp1c1Ws^Jmnu9d^!}2C#AgyX%MfRwhJ~LK_=RD_
zLOBb+Ch!}>wS^KE&Lwa@fxi;?n-P0w!3DZ*0{=^3_b>UsC-8>=;v=TfaG3FaKb3d8
z(QB^p4@Xl1|1t1Vb4TOH)A<kFT{z?#qf|-b&Edwxn~fb64Ol2?p|pi7ER?cvsfEid
zTyEi)tBqDMBUaD&v7hQu&R7a#PaSP`x<nZZn=2VtTG~D8#Ek47b6Pv2yoCxDDqFbO
z!c`Wows5_LiWaW1a4jXP;W`U9_Az?&HA;6cm_48%c|O1LulbcM+(5pCn=JhJf=SM|
z+X@c$H$L5MPK_DV|8GB4#lkHXZntoUg{l^AwNTB%ZLIc*{BskGp*I-U^;dJw<log_
zQNHyBUBgM^jOrGe^fyY6)_*Ed(?Y(5`W6~kFf6P&mv34qvQS`wzc%7k$mF^F8p(pY
zEZl9Oj)l4w_D?lxS*UH{gS(ARJ&emL86&zG#QxPr%tAd2%ED_`8|BXCli9Mr%9S>b
zS1=k{xW~eS79O&2uZ2bynp$|k!hIGRvq~23x6t>0dRV>ux?VUZY8AeAKEGdoMf`QX
z(dXy<W;ESZ#+3f5`Oo>yEwr%E+Cm!(Evcu_XeA9F@u$|XyMF;?+FEF5;b9ByErc(a
z`)@I}y=boPuLx$`Z^ZknxM{r9Uv;w3!$MCBoh@{+(A7dW3*9aKGcn#BJ<%ZGdcRIT
zlc1M{-WJAM7-yjmD{NturQeMAv(Vqdr27g+NOFLMAr^*O7-(UTRE(PggDw5w+j(pL
z&!=h@ypwmRzZzy?xTQ~B=3Rcw!=DEdjI{8-{`$yko;y9-($D=d7AVYrZy9f4f`t_p
zR$7?I;w((JFvG%R3sXdLs>L7t*5RJ;H3Rg6dzytp0S^vPGcC-ru*AYr3$sO-0=)*P
z8V&2sk>p$p^NRWN1uU?zu$Z&R!s24QbbCGKojgD-v#{Vq?EL=Natp604OUrLZQ)S{
zaJrL)wH7vUP)Npg7B&c2FZ7@Fb*N+`Wd<l-!|TT$vA{o|B=b3`b7FwnYGIp&9Tpy^
z*9}mQS=i2K&`_6tLS)K3QU?QdOP`>?G5zO&zsKq&ELax)vGA{jqy^i;dlvRua4fhM
zcCi!-o(11R#zNLYz~MPijUQ~L=+y%izZEA=)3t<299qb+9|x+4mLG2NBJ)WLPqB4_
zP4am?ZGp@g1J$z@p0lvq!mAe64^+=vc)`Mpa`&R<mn^(Yb6H>!%#s|aUXX(L$@*&+
zUbpb3g}3C^9t&?+_-&wif1o-fGNlKpw>j7csTPCOI~HPtbhY2*SP%}2d*9-zu=s&N
zgTvFphZeq~wJm%^`&jtg(jUfuY~g@_Pc8Htqz+p6#KO)&YSJLJbdVyT%xCo8nzi`}
z{h!<GF!_bZe<}2N5%@;%VS1*3Z-ss=w<!OeB)=DWa*+DT!V$)8w#C9xi)ZoSwA?yw
z;e>^gf-zW^TY0cLv?cG9aF}F$&R94r$)6c}Ei8Ym&aUAmWq6mE^qhs?E&O5Oyog;8
zT5GUsK3K7;e@d3WIHov42P<C8^0&yaV#NP3`c*WqPoiQHc}ZN7M2RGjM42S6Ok&UQ
zqLN9JO5)Nax{fH?QQzEpHg;JOmnTs=iHpg>!_BFK6**TVL9lkPDl4}tBym*|yjw1b
zu_KDg3nsWaiEEO$E{QLOYbH6@iaaGNj3^?lF`}qa5;r7aCQ+2cjY-^;#O+DkkwoPr
zZcge>yfuj`N$eb~swT02u)0MslP?TbM^48M4_4KZxGjm_2di>J^mXm1qUuT9nM8gP
z2Eh<jBZ+Q9R87H6hG<ia7^3D5(b;*oK=_41$+;_uyOU_ZqLZjaP{*vBL`*<!p>>3=
zAEJ267H##CcxH%FNz@m>TTJr0Cy9GSn3DU3DEb&d<0P8U@-|@O{v?_vu_%efNj#85
zvm^#4F(`=#lXxhJc1b*(MDwJMx~+w_NTU6{`b5^2NxcW#igu>YR5aTp@ops@QQHdt
zi3iR0Nz5_o^-5xPslpCPbWEaC5}j#>BwqYZ&wox;Ko@qj$R8e}crknTBzh!q>`+bO
zo^p#%QsUl8^hxUDTv&Qv(a<l6{z)*rkG<X;z@EL{q$KI!B!(n0A&H4e{5eDoO=5Tw
zBa#><^=EcI7swx(#ONf(B=uurR1!`F-3qpgbS%~KUtp3LFZ%hObne%Aq@0^gN@8Xb
zvyzyc#1zTPEK`&CyvUrE#B^Hni<-nUgv0s}&lZc#OJY6^lGKlwxza8^VptaIvp@vM
zXL2DstD?!p-I64hCh=+#uO+c8iREl^5--{23fiYs!OA37u_jaW+sV~QtVtqF>I1sh
zCiQg4Nx~JdE{XL?Y)E1wC;v(Q9iCw)u{o(HExfiR@rd9@g>DhLwfHW72ThsBlGx7i
zlEmY}w}d`H{}&LaNsHyL{V%`7uUc)gnA5ljCq^19)JwuoB9lZmi6E)pIHZzDb5IY}
zpL|pusu~SdJ%*||L)EsS>dB$%-J$CHp(;uu$5tfqR1z-~>wKE-oy4<A>?-CwnvdrM
zKhMfE)|11x?HIulyWpK$4bI1261%-Dlm>i-VW*4Q%`C%IrD5uIhMgon;<!%YjU>+%
z!Fx&UO``mS{I`;Lo3|Pit*-!f7Q6BtI=S>Lap7I&`$_#yL2v#iv5%&%ps$OZ59Jom
zmijn}14;ay#6JuL*PH*|RPSICpCs{V5}zgUeG)&=4>RWHLce2}67Z$auY`Ur^c$g+
zJS5;-p@)SU!_>XQ6mR{Q#81Mxki-!IWS$XlROqoJju-P!ByqABpAvAIekgj*O7dr+
zzX<(R=x;*L2|X{A`d2?^{$7m#5b!6*X))(7#uL%`ulVgHw(k9XUGx8A{I@ZAm?GXj
zOnGCqvz4?_%EsL`YT3Bd#$`5Y*r;jaavP;>JtS|pafOXCHY(bvWaCO3Wo=wz<DucI
zoQ?7}uCg)egMtb+b`4XfhpCU`BIjyq7_NBTK3rXE<2oDH+vqb~^?S8oMXq4paQ%+y
z1{*ipxY<S(8(cu$WTP^RP8IAJuGdpDf_g6vSGU+W|3SgK9~4xxQPsw+Ha;1y_*p5l
z|2$mXW`nnQ)&8h}Uw+<Uqq?oXoWIl7AA<HCm`9p#!;rQV2sN|ydY6b%rqG6IqsZ3Z
z=<+(2t9O^=y?liJsY`8JhpFDIvyD17>e`6esAr>vjg~f)jrun3v(eZ_0~-x(SbNQT
zZSdfop{I;{Y@W?!+%-b+K%U79jYc&4LVZ4M69#`957=mCqxlHc)JFdi>QGW2A9}QT
z;e)iQjp-v)b1GkEFfXrnA1PSfw}{7fwX)ILMn@Z+Y_ze_)<%099c;9-vG}C<uuy`>
zM<`MrY<pm-&OU6HKF6}NjV?C2+URCu;FreRyY#IQ2hAO;jqbKSwyqcH*;o%7$4(kO
zg+9E&n7>P(de_%RKO5t1Okizo46rfO#xQ!zW@DhO&&C{LW00*+C*z4vgKbcA)m}w3
z-E(#GhT9lnV<bJq29H8|W`ru2)W;lg8*McEeZDcq#?A(XAB|9BnM@hugc6iksqHq=
z##9^AY)rDTqIKb98=d#%O`+M38$XRuq|<H8urbd@_w~k18?#uSc7=0o>`;X_G%cKM
zV~&lc3yn^H7=MjWJSmGu096{P=F=aV6fRq5kS?O#Y}^r|dWa=9meR?6+~8xGjpa7x
zyIA02g^iUqRykPhV3m#4bV3K!9IUai*2YIR_Otmm*3*Y=gf=$V*l6PkHjS;ev6+1|
zQf;&Gh>geRnl-w`w%T}9Fq2zsJUG@Q=$6c{JyJbpV>|0lqm5M0Ofes~@yl3q!gzDp
zNac)FaT^I6De4@XZ_&p%v~Bn{Y#R;-Z~K^Q<Mom1<VbbNDE*g1=O)Cek5b*nn*qJI
zquFwldTwmdu_O6u8+}Kq3~f6~9q1FIKx89l<5e54*?7{%Q#PKr@q!feG>5i;%gU(C
zlKf``Q~9$to)g@vtS;+Co6kzTVq>?Bm+9nPV^54yO}gcOG$lrSNfmtH<?kM)z8Ixm
zx3P!*#*u5|4bkwHjkj&QS*-c2)H9l6o}Xk+o@~Cyurpfiv+;qAz4WLl`R|J)Tf}ld
z6nxicwQH;{@q@YM$2Jbw$a8ooHx4pf(4TD_xACcs&upGfgYRv8ZsQAfP><Ll8(-S^
zO6+{<;TWymVzl~NlHUluVvb4Xw>H=vhi$M$_C#Io4;<_^jxuu2H^+`vKiMEXB6Mkw
z*pmr;k_j_<<INK`PTKgx#-BD$**I<ES30VVGd9jjb2k5&|6jNK*Cv^4+RyBQN#-vc
z-DMQPIr`*ib)Hdrq{*Ud^oVut6T4s|K3e@Q4JY`YjlXRCW8+^N{OhP!MytO$TD!)+
z7_Ix|KgQ3|s{9y@*%$n4suB+1;2H<lI@*y+I=I3?83&~tT<YL52X~FpK6AO;C2l`P
zm3BZ{vQq3y2W1@?Z`G>cVAL2@&cXIEie_IlMwNF!N`+U6z|}&Tr0{hPu6J;wgPR;w
zbdZ{69vq`?aPaIHRmnk*nI-`_d@xmZaI=G398`5cwN<1JRp#Xrubg83GDck(8#^`4
ztT0yH=HPY*{T%dnaEF8H4jMaX;^0mPH5}A-P{%<{NB<R9frCN^`3~5q<va2Xhd=Gf
zH^wT{L6L*I9gG>P?qb`gm<`9Oj$?HbE=)JctmWX?1P$ssh&gEBpdo|6Smlk6)pMX6
zuwwOTw`nG=bWfgQ(jKesanOin9A~~bR^97>l;iP>vFbhtq`!_;_d96n;9;87!2=GO
zIe5rHa|aJPptr9cZ?c;RKIxg?!a++1Z5*_fhO`pen(~!mrN=3HCR;ZtnLlb;>}0Q4
zI|mFD#yHi%K}QGOX;@y<%}x%wIOs~_9MA8}qQ@z^<&be|$aFpMyE#}oP6gvsPY1mm
z^mfpPoYC3={(UO{&2fsk4v$lPB|9-cv>V`Hpo6Inra2hoU@#5nV61~7OwKolIvD2Q
z$EoI@<J52mBj_i*#;Z!>)ks=<ylOpOo#>=T&}iW=o1mM_*fq|<cs9Yog7K>Hiu{S<
zhm&X%0kjE?Y^=;Dog$nq<JEKrGaSrk76&hlS2G>Vb}+}mELLWE?33}T{seQ}1aqzf
z(s>R}k5`O`B_}8*7t&qn2@X~`Sj^`1&R@cY(@`g=q6w<`1hsx@Y#AMFg0?fM?&TY?
zQoM);-?A-#jf1rg&N(>mV4Z{Y4xV%Hyn_u6Haf5zBpqy`13P$(!-SQbpqT3s2al3N
z>|h(+V}jZ$N%lCIJX?vJ9S$CMu+u@@!KV`xP4t8VQeLMgsD$_lovqqL)n=S|<wRvW
za2(_uJn6u7;5o=T2p#ww4!Qg^9j`|$;JBlOCz=mURDbk{eLOan;n<m|W=>RW&Zdbf
za=;L}Z=xa&C+bn~6gdv&4$VJ0Q9bS8?}>_0h1Ph65o3<|tc*>97uX61-#Pf6z2M+w
z2m2j-?BEp<*z4eZ2fH1-D#_Pa&u#gy3$8Rtm$FCj8$#c7@RoqLg}x({GVcm_kNqxL
z_DS+X>5C7FWiB1AqwYsEZ<81w4F?$f*>DG6iohohJ`-^D0`pS=4JN721#}jjUpe?%
zlHWS`#=#-MvHm76O0FEI!D04PpV%0Y|A9{K;JAYmbfih@CkICy9F<&5rY4!&CaGgG
z067NfjVB$Pa&X4MSqEQrkL{YIKAoga(<dkC@yN)}X8!Ep7Y7Wpzj91XQolL4Zn8EJ
zW6O<G%?l2GXKZnCpNl^n{K-)1qKb?EIrz)rzcZk;i@zQG;~>w)B`*Gz%5<2l{$rpM
zJ@kKq5-#B4QWuxGDCz1)Kq;XFBSoy~QC*oUhUxgQbh5g_MHv@YyST>1l`hJ<`Vo9$
zvMT4Iyo;+`yf9g@jTKzby$N<o^1x(8{<SWyb8&-<8(ox}qKc*{((7GRlq7K_0UVDE
zm^Zm-Hbqrt1MPg?;x%B3y2V9R7p99M7q_~o=Ax#Hd>6O5xLvA!r;8tZnRmFT?&9_C
zu?17K#pX?n5!Z0hXJP)9DXLW8nBk(*h**KECsa>~%-$)gke2Ko<1_j$7k9g;=R&!t
z<)XHWx@_-M#qJ(3*F4!VR>#GWDeB)Ts_s-3bM<6^1C|BVchSH_Ll+&V>X><tROw!t
zXsT{3o3nYI+2s<|*hLc;16&MralebEF50{3;Nk%`*+nZCtzA6G+2&OBkc;N7e!?cF
zsurwXj~K6(E~d;g_e|AsiG{Y2QrZb^E0i-O@;NtnnDv~hCUlH-bkWI0PZzyJptFm@
z?y;^ey13x;i&L_a%k#Slll<;3dKBZz!(+WAOFtK%^p5p$(bvVHHTi6vHq=zJzpLkR
z9AbPB4{|Y>b#pP*#Sj-mU5s%t*2OS!k`XROx)|>22MR4l%1VxMF<SJqASU^Lm!#Rr
z<~U(aa50`Ga$dTw=%F53V4{n5ZHp!eoh+2qnC60mVy25(E~dMfL6@GUmGc2nZJL_x
zVvdWsF6L2Se5~;_wRo;MaGLHQ%5b{HV7}1BB39VLFb|7eETI><_=#0@vCPFTcCm})
zocz1k;o@-@D_yK|v5A#*vD(ENS5L{-yO=#qt!2+nQCp^|buReS;Nzb2G~V6dVxx!=
zv)o5q{e0Z!;xQMGa<E8pD@WoK^WZe~^fbl06szApww*E))QM^8RF~KjE_S*|xk$T+
zyGXdOT{tc*j)f~Y6)~GlS4ob_>8kp4MPGGYbe^t!7XbspIOT~|$)RR0A`VP8IYKio
zvMwSQITs-nj#Z;YfPf}iGRl0C1{q~OE%YgI118z^q|dr|&c%l=K63Fq$36$0i#;x0
zl!9J%@rsL=Ts$&P_Z<h<;^}I)i&tH+T?JEO>@~LcHSL5Z!5c2#bn%XhcU`>Y;?q&F
zm#3@N!(++m>TMP@wy3V?dC$c@7bRw>y)NE&@%3~?58=h9Hb=(?F8?J;C-=Mf*u|GF
zzH)KE#X%RJx%iy*cl8tSQx3PTv1*;o&i!KaE>@5I@`ZE|*I!)SF!{Ck_F)&_v4K-!
z-_Y}2e9M3^Lvhl@tNtXj?F{w3iyvG)4I4N^aTLs%p{h<XkGMGM;!Y1WJREaz+{NV{
zN_#lr;v}QAi@#i)a&ej=$i=TN=p<*vXlL2d9x=nq=P3SJ_^jJ+F3z#BGt?h0Cd@R?
zySU)ucfng`s2#myWaefl(mz@548;=(*|~qa_=jV`LrD++y103!%JXoEhyMgm>JTG`
zBX>mmSP2gY=jHR_!>E*pOFdlX=}zIYOHXyC#;Qy*AL<>8kBnX6p^S%{Jyh{<rH8T}
z|6&Z+dU`rt&O-$c^=7K_9-f<Ea$>(@TI?zhS9_>F$80xKdmU$t*Lk?!;~%-=Mh_J|
z44kQs&oe7|m`Q<|{3VM{R_s~tCQk?O%AS6{d^1!1J5xR1HFk@KsvbDMz0Jd|tYO)D
z)jYh^M|&4B={2*|?H=y%P-~Vhj=fgh(|t!=(?h<8hdea*V0b8CRXr#Vg&sddK`jrp
zJrsHR3CQa%8g01-yzUkzXFKfNIv(nJh<PC9bG&cw7@Kz20=*ogWPJ~fJlyA@fro}3
z?(y{WgZz6veLUtxZLCboS*o#zCLZqh&~mZnH}&v<r=Rj0W~pW#F8|r&@E<cvJ?LTb
z)EKXk)6EtXrky=>_t45iYY*)`bnwu|!^l}?I}bainstZA+OmejW8p0IFm-l~aif4+
z3Vh6U^z_rMtA|b=KIs^{ce2^pLl?nJzBNl7nx!tx($kL~9{PFc@1duMULFp0jrC?P
z&sKds^bu1qXmBvnAdKMy*n=Jhdl=$jkcZ#8#vYn)7R^@W`oy;Nj6FD82U|AzfiAJ(
z>`D*&Y4&dUBRz~_g*`m(VKf`=VVQ^J9>#hY=V1n&!NYhD6Ff}yFwMh650gA>n5`y@
z<@?Q6GiNKB-J7kZNR<et3;1ld>eW@-{MFfNmWSCM=6hJ+;rwhhhlNgy&GRsq?l(sj
z%~7PS=coyD)Itx7JS_F__ZYp5TI^worz0vc-FV9!Ju9Y8-d*8grH4%{%fl)UtJxQ2
z)jAJrJg`1<rkQ-`jM|yMmSyeCXWQ3%I{Iz!u+c+qj-tir&zwb986SIu?%`pJ2TtRk
zo@#Qwz17pR?#DcA6Y#+twXAE5obA%IU+1VNJnZ!FyoVP&#62WD1Rhcz|8rBX7F~`A
z4@nQU2QIiu&s7d%&Rh)`T{&s=Iq0UE+_xdUWv)tl$ar|t!&4rzbkVj&p@)b*JXiIc
ztA_W8k#j@aq8x|wSPeL{dYTpU@C<YHjV<jHdzM``S1$yfqaXIHw?%L`SG~wl>ERs@
z?|OLI!z&!i9`<<H?V(any=(ERhqvY`V$RZEqqao;*K^ey)I7y}la4x9hc6oZEe~(Y
zT}~$11d6@qVXub|J=C11-uJN2!&URte@F5^@bo-nS@#$zGxEvu<yiA0u^V@CKKA%A
z8xGRjJ^atZUmia7@EIeshvObT_wa>>!ydk4Cyr5HdidJIH-f+N&}^O}^ALl^TeUdz
z`If`KquFboZuQi8>U$4ANGV4={OI8)`e&CIm!F&G>G;F2Ny;&GRQ&d#k>&}8FM6Yg
z3*?Z_QfEAz6%D894BPVOc8mS&;TI3*XuWyrR|$7i63tV;31;-;44KZxyT5z*p4FR~
z{|9?qO5~o;pQ5eYeD$}7e;B2Gl=bm1!@dXjDCz6DUt=#n&&MUcwjPz2@KG>dJvS}J
zSX#=*r9MjgxWdO}J|3E{F88%rX3WrS=`&x=n6I<6m>w(RW9B3sb4bhiDDUH1AJ_SM
z=b-{M`?y;0#J>60`1%3Cr9JzX%X$4|nHam?$4m27MIRgHt1CO3y~moL&sR74xXH(F
zX`D-=vX7ft+Z4<cs`$9Y$Mpd!2B_-eRv%CJ*y*F1kK257rG6i``?$kLQy&lbsP5xV
zAGLkd@pVYAK|MZ9A2lVJFVyhChirjR0xpM(gwMcL%h$UEclo$mIGo5)38Os+MO_~;
zANToa?4zC!<)e|0&nB82?Dc&#^g+--C^rg-?-6{jP$oGr|C+CN^Qf?iD5tBx-#7n$
zA6!jzoMblh@t}|9K3dTDzMdG|Egj0GJ#kAPt$cLw(b3oYd#!!6@zK`Tv7HLri9&*h
z1#mh<++Oe{onoqdiB3K^ExdMt;-jInk1n)T*BDzz+TBMFACr7c_R-TvFCW8v4ENF7
z2PfqHnbAidUq6of`gmr(*-t3Jz8NMbLIZsa@-f)gF_w{Gh_A=vP$`=3L0o%*A|2sl
zB)vlT9Tuoj0>=9o?PH9Ou|BvK=EZ0;PB2|XC;j}3E3AnuVu5zQDL$ssq&}ATnC4@;
zkJ&!v_?RIIX9=a)Oabi5vg2ZN7O1(to(wE3zB^CAe4z`3vRn!*^7U2^!BTGi`&dsG
z^|9QCKQPATulBJ*Y(l(J46@4C3rQxKWsQ%uQVQ`pAKV`%*yv-Eujh5!S&9_2RVZut
zh=50hZlSiRx^>%%?>;7)$zk3dJ{}h(oF_0D_mS}Nv5x~jEFVc9ulU%_5`8#6o~5J@
z*M}#nB37POnw+2Vkrqzi<Ix3*Gb_$aGQQpo3m2%YuUA{VLSF|Kf}D>hIm$YlZ!J(y
z`FPsbv#(w3dI9WcCOQ8keO|;~<e(P)FZg<)r)xe|&#t-O^)j<`j4_P7>f<#ZZ~J)1
z$Ll`!_;}ODTRz_KQPtAX`_KZ_dy2`5aZkQn<9dyb<a0*!u8;TVR6aiRv6mVqnY^xB
zsNNU6kE61q$?Nw8>LW4QeyIl6DSW(AC%0-3`uN1hpFaNQ<5P}VAIE$g_wl)pFMNFK
z<FJn}B^Tv6Ouj0{Ukms~=pmupj`)ryl7fDu!AELu`GLc*hn{iKT-5NBk0T;{R46%|
z)SaLae4G&uml&K>lYh$B58u-aeSKrx_de_6XKMEGtB-SxP9pppJ5)CLIU<;a*99NH
z%dLyS<d5P~YTT^;^6|Hi%L9}S@DGE(4+JO~KrK}N`N#|Yf0oNh>?MLr2yMGi8;aUE
zV<{E<zlARqaG6ksuPXwS2~a*j1<7({fGyKw+zKvRtg~F8cg3maD&E?b&$;V$0j>`8
z6NJ|_0j@2^l%eE|4f&M<+z=oLkP2{PfSUsJ4$vn+<p4JaXb_-bfGPoQ2~fnmQc%?Z
zcLt~t;MM@u0&og<TYx*{7V+(Y-jgI?5!Hps4W+WvO*(4L0Qtf(0u%-qEKM#5KsTeX
zDIBig$iF+lliWNMVFtij0cs28NUsy1ZlH%euVo8WJ>fIE5>P+DPEmVLfO`Y93D7n`
zqX72>XcpkXK)()X9N+;FZX!u??ibKB0G~2UJ}DX=3eY^zbGg<c+#*2B;<EVKt5q@P
z8xWSxiDJ6|4-2zffc6181n3m#fX};Jk#!98ZVxdjV@T%!T>`!6=qi-p<Athw00#3O
zEOepb)syD!9qUE2FEE+x8=zl+1pyWY=ugc7CI*-kU|@hjf!@0qO9KWN5@2M2QBo6b
zfD8>VEYK5x;Q>Ynn9IGj@+GcYq<0ub7q{Y-&ap9qJ510O9vA3!dZR^ZJgv7#O$fk!
zJObXD9AHL(nE|E*m>TE>#Wbp2q_|JQo$%?>`vlBBOO(tDFgxIJ2N<_VkvUhG1j`ob
z+4y`h5y7H>e+Y#~>9+wMS%W13mIYWIU}>PoHD^A2{;mkHGQb9E@Ubeuy2<960BZ%T
z7MfV3URb2o1t487l&<xaFgFI+bg{8QAE66LbJ!woCvFX}P54fL#{z5*kdQ&QLzqv{
zsaXFB=HmgbTCCq$w3(>qf$;#04Aj7lR=%pR0wg(1CMa7d0dKKiTv6f$@B=P>^SP5r
znhuZ&a3R3&0kQ$Y0Q&=c93TpiW6=R#=MV_+6z@(pUk>nefL#He4e(q5ZlXSOQRjG*
zQEOq(80WpT;qz>AfESA`{E`4J207Ac@K-ogyT*3Y)!WB-y()m~(>(#+2(XVnGcERJ
zfVTp0Ms&NZxfuE14)6|LceZ*rz<UAq270l>WR1m&^nJNSK*<jRd>G)P;)-z}=371{
zrke)>91QSnfWva@lK@`^JStP$?b86C3HV$nIbR5<c%?So*8vXElCl&2jqqvh`xfh+
z^X~$DAK+|&p9B05;Ku+b0=;tYvRM7Z(cLw6ltXEbd4&2Wngn!%V*!p!s39J=Se+F4
zQvpuX)ZJsudqy~PU1B~ce+h6-3gxu(S9Wx94Nr1rvRIuL&*z}{gQJydQz)O(LHmCJ
z{tJ*N_%CsxzlHuI^xpuFFV^$VOHwG2;s-W*C5049ru52X|6)}tr9(QmQ!Y#4(iC1<
ztay=Ac4BO5X;nIfD^e(v(x&6ME1N>|>E@M^Bw)3<$6g_Yt5Uczg_}~iI)!Ue`q6xS
z3fGF*bwYVS2Q@r4N{{r4B0!l+0&WliCR6jw$|>BQ!W}7o5P~Wx@J-4sDO642)|7tv
z!siRKS4-hG$-?Sso#OMy7OUzh+?hg+l-?~Tzoy6-Li2@^N%tTvNP%IBpeTjAQusTC
ze^R(Rg<2_WNMU0NwNt2*!hjS8rcjraOrc#052sKs#S`%GKnl%LsGmZE6z)mk-V_>A
z&s43Ml(V2xOSJMvDKwRG?@MX_Z!ENlP$usez&OKAIacPu6dp>UWeTm>3scPIEU|4-
zi<ExoaC4Hh-Z-;$3VO3~iQaW=Be<<lGHHbNDRfAoR|>tQ(2gl|O`%%~og~>=XcwWZ
z8{L)Lp53L|4VS1MDgAXyPoV^?K%W%)ru0S=h5My+WG1*;7AE~^<Q_5ZTn$QLa0=5?
zn32Me6o#fSA%%%443koZr!azT9H%v~!lWZp7?r~4lwM7Y6FNrdSfOkt`MkzUlDlop
zGD%cTPQj|C-^osq<W!;4gmRTZF<vuMn3ux*6lMvZoY?~Aq%c>&#ab;$VPOi(Q&>Uc
zj5imhu!MG-tw-Nt5$mu-ElpwE62)to08a2$rod<JsuWhUQB!n)U6aCEk>}lY(q&|>
z7eM#p#EHpG6yShLVRs6Tr0{48ehLAHTMAoKa3uRS>Ed__33_-6+a<Xpg(n0&E|k5`
z<sRuyNmBFbCCW;{roqRXNnvu{_2xW1Kgldnu4wjBI*hZntV}9}bP7+Wuq%ZO`6)b=
z(ldduxPzWdA(C9QTTTF{`g@nC)8fgLd?tlwIU=^@y};g?qI;A0xs+aqJ}(?j8)(B9
z=?pW>mr{6H0FA@ss|-yke3io2DZHM-o)kVxVSkF}E#plo>uvF<w`AmU@p!T8-$~)!
z6y8f=Z;EF)|Njh@pUSZ4_a(WHmXv_-VewsV*L<A9ffVQ)U#4(S_<Rz5mcl0~y}$h_
zgVIt(qmeTCIUQU0#GEVc`mbKmQuR#=hf+A6!if~VP2q3~->2|H3J)&*e^2{P)Q(=N
zeiU%Dxb&Y=I3k$ua9K%q(=k?KtbS9*PZ3V0@H2agQ8$ItDR9q$d&t~@Ig`TK6bOcP
zkCFbG!f&*y=wZ-4m%;@J?8N73)roo$#Orrqaz*fG3jY%aSg}<7C4eD_Zt!mk|It^|
z7@0<18keNeD2@BlD3J!zxH*j~X_QQ(R2t>dD4)iqX<U{@nKZ6U<MOobR$ir<Ws3H_
zE7IEjT+=<dRFzF@OY&<R@(F_Ou?pmD%d3>e4QX7J#?@(Dlhz-fTrat<O>2kYb)5h{
zeW<FU+`1T5ZcO7QNzzf-p?up?S&|>E!7XW2O`~oau{3T?qgomTX%w=ye2X+K|F$%4
zPved>+Vji0H24avx?m>nOzRgk1pAh%nrV>cr(p<SwV5>2C`#k*G-}Zl^YZy!3ST(h
zmDbw@#MI9fU+rQ$)DduOsj8RO50?gMG)zMYt}m49R`S`LduZWav3t|{E&s*V@jY_m
zG@7K*EsgGJ+@D6%G+L$6I*kXUnGdD)o<D8UOp*@@rF%3_qlMshvea!U_=;t!O&V?4
z%rrWr(N35TQ`-(brQ~h~^>Fxf6n@t<{_7O$B$)ip0=lI2`${J1CzS7zMo-}nO`}&D
zz0(++#*j4nq|rBxfpUwlg!-k?KaDN(%@Pw#x-`Lnv|e)&3}U}5Q=D{B=fSOc4=mH0
z6?~cxOJjIif9`dRU$Dp*iKEgOoko;KE{!p1j7?)*8tc;-m&W)sW~VVHjR|QTW2dAs
zHI0c<`Xr%LKAG;?R~u>?o3KprIW;ql>1jP7nIV+Zdt%PpXEDo<I#A4&ybIG<l*YU?
z=BM?_eSt7%EK~gUjLF4mEJ<T|8Y|LR%2B}Yta`+_xM22WBFW)KL#<@R=;5+MzDfWc
ziODr-tS#pA3yKYCY)oT&8avY1#O!H2CQ2Sj<K9aYpN5Z0@?wu~5xg~xZ2}l$Stz$S
zNFOJ&XUt}W(|96{ogxrVBawzB7~NxAm#HLe$hW#PP5K*?E=OV-S+=5#@`a{^213c?
zgF7uaQ_Nw+3k7qIN`WWScq)w#()ciqr_<P##w%&;=E#*opH1UA0gN!L<nw9$GVY}`
zUJxcZFQ)P0GF^XOFAI}X_gB++Esgg%G$xp@b1Zi>-%R7JH1<d&VGMag8cXnYG3UKB
z-YLfKvKo3NYwi^eyMvh5K1p%{@KGB3)A%-x!)bh+*6*ag<N!?LfK=dM8lR+bguy?J
z&joxYl+lLFF9h?$LSlYl^>rHT^l#GoyIh92Lv)EgdV7=azQ0T3`!r6baZ1$wz>H}e
zP2<Pnw*SNtEp0zW4Ko$9A7>pVn_S}%pJ4D=rkS+N=`_0VagfHD;=E@$mSynr?k@~w
z0e)pvoT0x8IG@G^`d$`mviO~WD2+oIe4D|aY5XsZVHph1;IB0PPNRMX4KnyAjepa)
zF@u{j_>aLqgDWy9lffk!{Y^{h42D$8E0F;*;Dn)M2A5`Vncz}Fe_y7!zT;H?^34A~
zbI0`2$;+n3uFRlp2G?eAT?XYcD4)?QacZkjEP1tntAw%%Y|Ax*%Pm)wygq}98NKOE
z%t>!0$$o=Sa=4VJoWac*6l74CL6r<{$>0vjUNxhq!M92E2yT^RwTxaoGI_fsd8i<j
zRL|f}$x=gTzR;Q(z0zT2cp0pJ@v6$qpmqjzM5ajST^Zahpq5a|^OL-~G|?2TJeJXq
zMS^-#B8yf6=tvDSxF>_I8Fb6w-V7RL&^m)Q8Qhma;|w06wY%%L$xSkNfR&l1rv&$B
z(6kuyn+I~5N%FyrekaIebLpuTQWF;1GJ{sdw&F*UZ8K<>LC4~|56dlv^gEZU_8D}b
z9hNIz>|(Z}lZbWBpi6PP_(HII20bL%R|=vS3+<UfuZ$jRy^AIL2$(&_?3Y3R3<gL+
z3?qXxJTX8|_IM2vz+J>48ND<ZDzwRR9c@NrFfs#|I@w<t{`3ZGGFY3zm<+};R|YdP
z7?;6#DP;=%s&Tyuf+tHs6Em2U(GL-pLP|SuyiXMY8f{tz(=&Q)!dWiA)0>sS><kuV
zuvi4<WH3*_T%l~>#hsJ+l3XBkVFvt8p0}11%dE^`so-T9EEljs=#>(jyDnF&B)M8B
zGjb<nT?XqjcszqAGT4y8M!EHf)St70O~sO%Ind;*yhk(GBFwEBJSJdUu?%<Mw+r4;
z%$c!V?aUyafh`VC3nWA{Utn3qGD!g&mMaEZM|zWDtec;~iy6F>K|mX3kj@}O<IFXm
z$sn6Sn8DK-y@H4&`;*1ma`fSwb(nfeINWq1=KO6JEhC}eS*ZZG2%Z!0d<HKF$jUH(
zIfGX+*q6Zv8SKvB)ePPjJ$lZT!5bXKGN4}1V2=RussF8F{7wdM3vP9#o`$_E_&w3E
zS1@NC7qdiNb^Q4-gHJQ~EQ60S*q_12B6(2g0ijghUZU<NQhz4tFrR1emDKqQ@gH)&
zr04Uq`5v*aGvM6v8@WsUeB2z);5!cLEbhzV`wV`_;HoUH&f>=meq!v+;BScxM;Hw<
zdaLSa2FEfuE=)#@GZ~yH#wR((1)nbFaASuuXEXS@n8OJCYX-m3Gc!0ZP52{&3mN?)
zhV@|$e;3RoSMh&}!2gO{df|zB{|GLT1+w^;kAMvFvN{x>yEX5UtnPhcegQ&NC9^0c
zx5{Sq$7z>lL7CEmFU#U`0p#;-`xRM~$!cp;fb_~N_<bWmImupLXa%8E&gtJZSzMdN
zomte#;<_xZ&!Tb`H)l~%WNr{zDXYKJrV>6uZWPW<LNC5OsglJlSsnK8kXluhTeoHP
z=Ju^Zs|kH`xw>6$aTk$A^QtcO9PoL5%`Eb>sFOuqw&iEj$l|Un?iO5-MWF!lO#wwh
z&n#E9L>p_xeylB+IxkzHVpN;ev-*35sj_Iu7R}T~s4tub7lnV+&ABJ5UzBqN#O|O#
z<1CtFF_8Am;{L3Tt`B9=Jd38q`X3O`EQ<$=IeaVBB8!$;bk3qn7Ok>qoz)BWj#;!3
zv(PdR3uv1~I|1ClB(uHX4#hHD&anQSviMf!=UqjAw=BA6QDud$e2*-8(vreoFvskb
z1!-TQy|d^efE>C_Kf(QrC1We}(w-Uyi=Rx)ViG$vi=kNz%VIe5&R1iy7?B0Pn&`4Z
zjm+vmP5Du5(F!$MD0`E5tO!$nTo&U6PblV4U~(2ySacQ(sVa+US<KF2j#OiM7Bgt-
ztbSrrbI-@}I3b@UxA>*yMSqwp$$1yOLKZ&rg~RXp7jZa<7cI?V2`gVMk554A;d?96
zWmzm2$raM?E3<mPh<2b4tP&3Ougzjz7B6J+VixPO*pNj$i$oS1rMN9ZH)Szlh2qqD
za~6+e@n}}BF;}e6@3<LMw~EZREFQ~ZdloyS#GP4iDdDY9k7x1D3iSl5H_GI?n3V6e
z7tA*;$@P@bq<EB_g_DI#oJA&!tT6d%$rlg^O$nv@rD@OkdI}v1=gDGzltnJ9Ur6y{
z>nOls{<KtSR~F9*cvk3hLb)8{zV7q%t`+)u@lqBqXYm^cY!<Ib-M$jKJBwGdcrA<9
zv-ptB&tgv&Z)EXq7Vl;8W)^R;nOXhOARU<7r@Y?I>ZKMJm5c@qL43EeH;a8)e2~Ta
zqVtaxYSsk3M?o8MB}lqIi;uJToNkuI0akCG`DqqU_lh-JoqsS3(ockP^}$j;lL%H}
zrMhXPS#zcOGK)ql6+c?*v{HSY#Wz_TVxzJ+p2dkQ4rlQlqkR@XNvlV%RNrUugJ4cq
z9+o*g^B$q~y2XxWv38|OuT;la+m-6XN=14yi&I(r%u$)e=`1c;rOssatdh@J&d|<g
z^{eyhtF#U8U!{J{>ThU!uF@a2aaZcRw6}Dq!|w$y0kZfbi$Aj{5dxv!w*9a&{+GpH
zS^S;FKUwe-=>JH&#<q9W-y#2-#rYfc=gQn7&I@r#s0F64Qly(!sgfZs4RKkBQlWl@
z!76c5%`e#k3iQmsJk$}G-(g-6qD+V@LzE41eTa%7%7rK&@{hN0b*NXM6+)iblD~JA
zB4%G)6Y6i6ORiRY>%`raYeQTY;_xc{Gd<EuA#Mn9ONgqW9;7!4tsLSe0pxHcOL}vN
zD#e`2t2O7=P%j><3FROqzAeP<k|eITTHP6<2KD4nIft5|{tfRX5lTeJ4`GBT2vHbf
zcZgR*m?4TnOb;<5#9blo4$&^e!y#&gs2$?I5RF6B2~ju1Jt6K5!5`tqLevk@fE^J+
zh2YO@_ckh=eOCXR_RxBx#CoI6YSl1AuVn^rH41UGZsE#vu~n<p<kf1y*rFyO?ho-$
zh~^=h(%K;^tu~r5xx|RCR(n>f)VbK@yNw4!{VUpPeT!OzXc?k)h&CZwh1hY*xMPda
zz&6G$)xQfKwBKkO>R;?mZJ0-SCfkST5MpSEVIew({0}np4$&t>=MY^&^a#;21S{D!
zL^n1k#Nr<dn6WlrEG#v?Tdhd>E8YKAE9;EWE5vW-3@kVLhUgb!V2D8>`iDp?*Nq(@
zpwb$3<2EC?)gb+5gE2V75O$VhEc{jf44GoXLyQP9KEwo?ca0huVswZxAx4Ghy2|LY
z#9-x*KWmJoC%kQr3$dytm~6gAF*z~Bq!3d=o)u%TKK<6H$!ywg<C~g_l**@ym8J=0
z&1Z&~MVAY)J>>tLVNQrOA=ZYN8)9CFMQm({`Lx4V#zI;qt2Hd(@cG;%V3NPuUJ_y{
z>kwjfh-D#`hgcC}rS$UY)4Hmplh>&6Ta7hq6qC&8tx?}@HI}S5)`eJ4$q<i**bri4
zi1R<kHc8!_+IhQM6b3D@IRveA;+NP1N6k$;jfD@ywuIP9+nzD@tWo^E_O=jTtx^2V
z^$rf|5K)L+h$lkq4B>|G*b(QAI4vK-63we7=kZtD$q){$w8H2;KW2yeciaT58##W6
zAVfMuM*Jid;sR^_rEbfiJw`T!&31jMf8`xYM)E(ljVD7q72=r?&xUw9#4ag|KL)>Y
ztr}z*^LH4xoi&~d@qCDvSf$sD7ex7;=gb#5aMr5bzZ%c90Fy7XzfKvigrGbD>1!cg
z5Ai1zhS(G0jSxSE_$kDjtbd44LVOzHZPp~jz7QXTc$Zza%kW<`-VgC!h`k)1YZVV9
zp~dtM?boVx2h0ycd_--VjDu3#eh&E%2S|4tvE|0nwJO0Z3ypns3!APpUR$d^3-Nh~
zLm|Em@kNL)+2dP`Z&>tN#WDL;h_Bg+yNtH?7jAstyxY>9erl~c9O63$tApkbA?WSj
za|E?Sy;qEnPa3l~8TD6alOExCXS59QD-9Cjc!*OWPK)(UFeYr#b{@IMI2nTUr8CCz
zt-2LwXyj*&vmt(##u8UwWRU(A;vC&?q45WOi6dy45!-HD;DCDCAZCkxmxx4<Dz#2g
z?5_}iGo-B3XGqpOWd0K(FVfNPU;eOtz40G|<T}NR8JnIq$cNmmBeZ0MQV}kVa9M=A
zgmZa>(h+WpaC?L+B9w`6ZG`J0Tp6Kkgz^z8MBoqk**gQ*sd5pHo{O;>3`$o;+7+*k
zFjLC9Cei_cg<ihGxIRL~2vs875}{Ir8zS5kp>l*9BMfO=NSS8ajE(Emhff=2UNzF|
z)Xj|B>y0<pDV|qwt#4F~^hpKPBHSA3@W_~XWS#n3O1UFK^$0}~CT}zDj8G$j5uqSL
zO@{plFZV5CC(_i{tXChOG78tL<4cX&{fi1C{tvrx=VHT*K+1C4hFSxSb9aPVQVI*I
z9qCgY8070lh()LuK}C3pY9rK-&>+Hs2n!=LjBrncJ`w+RlYdf)MiJUXXdB_a2#q5=
z6rnlm^QX~-g+_QF;xs1j{z!N0spDp|2oG*Hu3Tz7NW<1vGdmSB@SeU)wTRF%!koH!
zt*Ee3A*<22r8ZP+YFlEg%4s9Ci|}xSE)lv$Xdj_Ngmo<nI})r{i}#t$>gIhI8l56^
zj=<9%=GnR<_;~6Tp?icL5qd^AJvooXvGfb8j9w9XOAn4-Wi0lLE#H|V)@z^X7omTI
zF%iZ_7!YA#gy9iJL>LrdaD=KGjA0R;Y*siV(&s!3jd&Ql(e-PCXJW7ibFn-M&|5}E
z7!_f(bSuXiBMB)-?$Jqk<06cYFfGD#+9bk6`p<9Xln9g9rxBiBuXe}s=;{mBD?Vqp
ztyfeyHR6Ay>gUc33P+e1VSa>J5oR1UX47Z__O4eCeZc?THRg&}Gj6kUD?MSn|DryQ
zgLPXJVR3{fBJ7N?B*M}Nk3@Jh!m<d<Bdnz{Bdmz<daZh^Bdm$AGQuj>e}OS^qcQG)
z@x>bkPpfD+C6C~j^=f^D4G}id2=vC4#`HJ!Nf)IzsM|IuCO1dOtu&55!ap@Owy>pd
z8rvc~#-aDNu{FZq$F(r8>$~J_XJ@g?8Wav&YdkJBZ?Zvk{KSk$NJNOJCxR6r8NrVb
zM6e?`5xfX*95xpoHoo3(x^#&RYCwm=0~?KF7Yy=eZBVHQnF!ekY1VU}alC0E>BbHE
zWQ>sGv1wtq&>%gvz<4s^|8?S-2v0>gv&QIm#C)1XWHop;!gCQ`U>m<R7OXW$c|9MY
z<646mUlji2c7<fV5@C0Q^ARpYcs0Un5x$9Vh{lYtC&GsjK4OI<ycuC{g!k!n5#Ht)
zkMM4U@Ll7-cZ_idjqE|=y+|Jwa=3p{c7x(kx?jZ#_ldv<?2Avd#a^n2w>IdW-A`LZ
z_$<Qb?EU{42O_kno%czE!yDAW2)}Pol{ab)pR%zZn^gWqgfAm}MX!D`k9z8CRBIa+
z5`0a8m0C0Dx6B^lM1+$OzKigEgd+@h5!l!^8`TdC4iVm4q}%>egr9m8P5RL6wa_?5
zof{RI$63kujYszyg;CyYp8vq%7UAazzX<<KgtOHDhp}s|KBZ*+Mzw3B`jw6yAs!m%
zsBo{bf1^6PQSlg)UTch93yj|*{1G89hf8w!lQAm7KNMbQJU-v}i(V9gpw}BZ$<nKR
zW3Ktk{5QgXjD$I3!*PSOL=MQILJn8uP%?*7Ih4ua%A9t{OLMp^hsy;IO=~@+bK3Y<
z<S_Qf0s_WKb`3$<9LnWTK8J7X=WYC-(e^#f99~1^rH!j|xF&}ia{ADlYjZq3#<(tr
z>vPzBX<@^yMk~jtn8V*&4IaR9=_XYvr-M1cjRM$-40Jc=P$h>EPh#YgxFv_GIV5wi
zbGS8!YB@B?;r<+M%i;DM3Ue@XxP!C(O{xYb{5e$5@i*_Ny-79Sq{_z3KARK|aGtzL
z<>z4J_?N``kY{I;dS#PZB?3ik$cg;AImB|fD~C@vsk?KiMGZOBkz23VF;8z&mu^-R
zTToJ+tz%L{y&O~y^>b*D!@W5)Vud%WhB@4mL+j0IaLkNtR=Y1#gEp%lOR4*EXq<z)
zSxw)p)^1h=uWnXNb9f+!NwiW9&2o4!hdw#<&EcUOn&;3yhYmTk$f0EpZF6Xs`#+|>
z1L}$5d;67#CRG$c5kx>l$i4|u-i(DN9RUGRK}3qE*s)<jREnTfk=}c+$!0g%WJ^Nt
zz4u}RK~cm){hqyi`JMkcbDs0eojZ5#%-oqIo84JFMc>A&))BPfloe1H#;XDoRGn~;
z!XG{l-8(_mo}gM!Q0?e;IM{1~dM1L75p;^6a|F*yN1lt|`3N{B{U@mL6I7;uXz2tM
zD5Sgz>V*hijG$`-T|{%=1i!QA1ToR)-6QD18HwP{2zo~Fas;nN@LB}DII|P|5q?D~
zva><a?;SzoiHbw_Ivtp(`b<<qCaP%@)mss~%~*<{PXzBo5Syq@O!Ph3B(>g);C)Ww
zB=rG<VWMh1DyQTmzxDcpeIxidg3%Ft7r`eC(Fg`d@O1>AMbIyT{t<j3llyrD?@dy}
zC#g=8)bj<^ml1pw!GH(`iiaF78k{{zeN$MaCaFOY>?rK}PaG1#&<KV{Fd~9)I4|SW
zw-F4BfbQ*_q-x1|;J=6`BO}N+*$;_P(qg&EDmYm+ovg-0@O=bRBbXM!*a*f&FfoEj
z9D&JdJUySRCWsGxCaZ;$)q922<Ooue)f8!B?__m;vMM!2Rhy#DkHqu{W=1fJ5j924
zh~T*?YEVJ-_7pWcf;kb)Wyh!Z9iivbrzl<c0>)UxzeG?dibWADj$l&+n<H2f!O{rQ
zY$bwa5p0>FR&n7h4xX49S{}iQ2u@8=D+Nh%UJtP-A_~z6bRjW8BLXvmf2XK;1W9@x
zK|->YAZxLR$>vHIi6iI=QvN?Ro?y0MZqDim)-V{B2iFR&XHYE<uH%+6Rgr9vEK4_L
z$(9JVM(|?<KSi*ObG;z2GlE^*1Zt}7oJ8&nQx!kfC(jP-j$ls&$09f$!QKe=MQ|vB
z!(2XGvtHmp1P4i`s`iqo|KU_McB(oO0r}dg>L|x#sv<c&RZ+q!Cpb6}oQ~k6SfJ!j
zQ8*L94_w8LpQR=f`Ogvj62YYi{)*si1m`$Ym-2p-UG&!o&U3S!rmoiVKW;8?HLVF$
z)%_m@zccU#1uk;i9PWSU{1L&Q!mCbG%wCS*?+C6(a3g|$IG$X{BLY_=XfRE6nx_8a
zViC!I1^o}Ncg(;w$?}^L)ow<R6Gi?g3Pk;#_O>YUMZs@(<nK*Wh+^cUxnFM#bRX_Z
zRM$|!sDD}GzVQJ!FSl?Mw?|PVilR|ekD^A@kFH{Z_e4=#2qh(=D4FGV2q_iComt6U
zLP|$*w~#VfdD$qwndV<*Wx6+ta#7qTMdhQY97UBVDr7b9=cj=12eOh%QAGCme?vT&
zl{_3pRpAc_Ruil+*4JVBbZkx_3QdGBMUfjtFp8E@v=T`uipQdOJc^o<eMGR9AnVqS
z`X3N=qNpo`JdZ`fRTPg3;SS8iqT}Oo?jD=-L=^R+sGqgaIEn_s8wxhc%AXW6cU(@B
ztfZ-sW>GX3vT1Bii>UvST)Od86s<+rA&SKK9Cocu6m6sa8GZcFq{7ou+D@>26y>Gw
z&qUENif2XGS&*8~Me)42-6<=%HBc`|wo4Q*3h63F>ZSZK?3UH+9z_q~Jq2IR%6moe
zittynlGmc>E&TPYgfF6ci?J8QM>_iIcqhv5T_~yJ4&6UsvriNQqZky$dkoieHQtZn
z1NNQDQG6yAKFJ9!sT1xS#m7;c|2glIC<gx*{4|QW)08z$efDc!m0H1mQG6an|0uqo
zk?Cqc6kkTsxJB@*D1Mrzwog-EwF}OAH1t@lVEO5)-jLAXD87#3R~n3BNEAb(NJU{Y
zGNbr5ia9hM#jq%bM=?2yDNz{rU_=z7qxdcgzH)11)IVWzR1|flE0QsiohbNy6k~;q
zi(<SGD$Kvf*PkHS^JDU8VUpNvKV3}~gVO{lXG7Dod`1*AvwW72*@C^ND;k^^#j+@t
zM=?K&1yL-_wzXKuqA0$auBJ>^OR^T0MzLzT|GuylQLJR^QJ9p7a#VC8Sqt=mYPtwx
zQNCu~uSNgkqHwD(3E@^0$^RpCqHv?w8^yjTyeQI9Y>HxY6dCC(Evyyg)lsYwLJ8Yi
zCk?I7N;X8XG0U&C$)m!SD0XCfu{DZq!nX_lD!$RZol)$HVs{jKr0%UQ(0=|IYJU_5
zqBtDIkthywxTJT7MD12zsC+bvV^N%n;&it9aj}0Q+wMsr<!7ifqVRJRzeMpv6hBJ#
zC&3Ogl$znk1N}KGl5<k)eG!hEp)QE<auk0@@tg491zF`{6n{kVXB3x2@|WN(_m)fb
zf5g;{C~ijaZxsJY_KK(-ouRHu_L|^z!L>8|S!2r40Uh~uzvH**$fx_ENI835Ku19x
zMRXJuVIjfW1q%yanxUw6OTU<o;v!_0!V+2jLfgDjI_}ibOh<Dacj+jtqq>e7I_}m{
zM#ud+D(Wb!;~pLN>3BS#-OCnd@~yb4^GsDv$H%p`hi59v%j=jI)+z|D4{PKP=%}Ql
zs*Z<rRMxRPq&=wPtz3<yiey>qi<v53SDQIgRnw8K$#+Mphjk=os$(<Ne=}7;ho(d6
zcvMHOj-Za(I_l^M>8PoLtvCT~VXl@pOFg3V%yq4nV24?Xysi$GzCBCji6)J|64Jst
zhRjmSXQ{{77afgtG|};dj(R#8(bd_izK-p)R6`wq%u=`2)f(vVv8Kjs(b?)r9p)oi
z<Js!9+3K6ws;T(AB2QySUaG6L(9u#yHyzz|w9@gEj^}hducNh&HagnrXs@HKjwQ1d
z2jOWQ>t-u@I3na%@1Wxu9nZ=LFVwUmH8nQZQRfSc{C25^IjWP6&N^PyF>qoI2kiyU
z$Q+e7#~;8h;@H%>T32q%bNuOeNlbC5d+6w?<4uk{2S-OQ9k1!=t>YC@cvZ(`jqhsl
ztBjtbmdsK2)ze<5Z*$Ze9EAEBv+UsMIqGe0{yN^((MQ_iu;k2D9F1Z1wfA(C(6sk;
zd|O8=P)n;kSA8JHKa}vG<&SlIq9dXss^e1~pXvCT6TwMrrS%j1O7L?X{e^rX$kH!`
zw3_R`vTA@1zQ<}H{hzA_>HaIU221J9PcT%+H##Qkn4)9QE1_?7e5Yf>Ts2I`a2+Fb
z^mryXajqJr<IA~fq-04b98C*X>#m%u#_0H7$5<Wx3g=y&tHyH%3+Ig!JT+HM&_N;7
zL>-fam!9Wmr|OudV=iM}N1=J)+<9ucju|>;N)xlVhz5k%%F;2R*}~`OJULu3b(^Q=
z>sX*;sg7kj&VC<S$iSf6^VA|8i*;0aHALaZ^AwT7CG*s#d1^VA<b1V4#}D(=&3S62
zj#W$(g2DN!*?jd#hoG(_rsIZ=n>q|mlaAv$PUwj1s5UIm=86!K&|wKl3Z?|#oUf?k
z>hN@I*0F`L%>~jT$h1aBhNjvEN6uHPxfc=VtF;Ugt}KqTj*U7t={%fMb!ibKvI;+}
z|DLakEl|}LsI5A->DZ-Xw~m7YL)#hZ`*U{c*df_JpAI%$ps3HcXYSFlSI1!;M|AAd
zv7a_|p7rM&JfMSL1NsO*sH2mRGQ;!cEKo-o3?GG#u?ewbEl?!+hK5dZJmbMrI!^0&
zdv^}`84ewzTF0L{e$?@kj^A|ruH$DNzvwup<5w=Rm$jiE2hQpsUVk-k=&iuQD>cqD
zJl+oQ<s%n#tn3zGBIlbyF6ul+Dd&wh0>3O!%wE#*myRpkng6SC^|rue9slU~SI6Hv
z#@7sF9t`9xRR3{;3I+Jq9=`G9{#pJ3?=*E)$2A?-xl7y?SQf~oWPis%P7JrjP&$UY
zi3?S}7z)L3dA9~ZlKe3g$nt_Q@YPxmFI0tNxIKm<F%*@eQZW?E>XeA#iG`|o4DA-G
zo(mN%l#JmHDeWs+O74u|t{9f?)rKupR4Wrh*%)#~=bjkujiFKum18{KN|h6=Ab6i(
z`I!F}Fc#e(L&X?k3)KTLo)hIaL{6*{;~7n=x**AeLaN5_kdSK93gr)H33-he0$F`c
z<SY%w5Q?FuWNXXd(D)-U)Dj8#<%OzFjHe!{N{dw87|#OoTURkW8p96`esu6y43Eb!
zDuK}nJP|{^7%T%x1NCEQ5W}xAoR6Vl42@!#62sIOo{XV!46n!dR}PxQ&@_flF?5ch
zSq#l%Xdgp|7+S>8>uRu73{S<-lH+gXF#BgBr*#Z%Vt86gDS2v<Vrnbd-iuVb7|*>?
zl+P4=M&!@Ncrc6VD99qF=VEwXintRp`$7y|Vt6fv-Z8uwL)RF3#&}kVdMSo(qSjrI
z7A{Nm9x<MsqL^6s;I-h(EENUvS7LZI1`?)QZQZq4)m-drz8S+?F$|!GF}xkaJ289|
zL*E$QjiHZJ|1gI4VrbhVIN)mVeUaQq<dA<513OMaBW)I|k7M{GhW;^p5yPi6cs1BB
zhR=n3meqViTD;5k2kpxkT3-*+>{nv*RuQv<Vi+95ScX{)U&k;ch7mE06gxvjb65=D
z2w@Z7#{6F>v^JdU$nu?Oel0jkl*h#IeGH?8Q~sS0YBCL7te7PkALCgKs`=I6#26;X
zI8&HetR`_t3xy^Nl2AA;hUqbEiD7FDGh&#@S&PBpiilx$42xn|9K)O#=EkrvhU1IX
zycp(76U=hb7sxCVX^N9hoN+C<gljN{1j90htBch#DUAzX9>WSDl&_3oRSfqmQA`mb
z(HL|gF+n3+Y6_uorqtD7QVgcJG?plurR3IpxiNS#WMWt?MI8S-3y0Ez9hRsyF|3VY
zeGD6<`nyZiIw7<<Vu{+A<(t^$C4NWNFHxJRFML}J+u8jXPQ<VyhMh6&i(!9^&*ZAk
zg+f=Cs9iDa77O<*ReNICONW;#CfYe5YScW$Koy<3BB$hV3`b%(8pAQsp)!RXmMS76
zp8;@^yGIPCSsKHSG5o~nmAXG<y&bVs{Vefzmg8_O$iVxBd!U;`!t6N_((Hv8e&cRn
zV5))NW4Op5G%()49}Hmb4+a_=xD>-*+$0T@GjN&fk^8fOf(HJHp;b}s3TG{be>pfy
z72lEZUkr6hXg7L>uElUYhI|GewNp1l^K=RAHp8!SQ?fb2KPsuMUaESO(f(PgAd>tB
zXlGYBt&oAj2JSFW%E0Z!WvZBg;s%O{+RpM?Q3I#m&85Lw%M@#sFrbS2_Dg0J?ldss
zZmo=gvIg!lP};!V1}aSsQK$7XMSobG4c%k#VH`zIdM)$2aG!zl1~db?1}Yf1-@ro#
zsu`$g-~j_w3_NIH(lS-a0DY)z@EIai{0{Bq5?cAq;m01(XuPU{I%TyVAJjIom1XK-
z1J&8|a&=v@HKbyIO)OVS?$C%q10e&C8+gJ%O#_b@2(vF@q!!UYT?4gcSU9$HIM2ZI
zr8Qb(TWo@DHCe76HIT2Y_L#xD`bB=WMz`gv9yfm(jfV8Og6~@c10O9{^t1Z&VP+c{
zxYpPwO$;<O@RotM4Ky>*+`x+lx*BL<prwI!2HG3=j+PCyHDKJQJ!S9-6xG_mQxii=
zm#a1gZ|e5jecAv$B;kN`kS=sI@T`Gn3{b)W=LkPX|HZ2=2G&chPSQITbr$l1foN5Y
z*$*4$(9}x?x*2%Yz-tD&8|Wc*dl{%zQR`{o*mCu<NCw>Rx7$qc6|qyZnAV#ee+h3G
zyhmESZs6bLDt(u)#_XF03RLjPI|kl0Fwnpt1APp<XW&x<pBZ@Hzy};I1APsAC{1wu
z82}6wTKL$&rZU<m9Ii5c_Urq!!*}~W=WmqL&%hT3zBKT;f&Nl4utG7>x345i{pKtD
zSs1{fE~O2tqzyLkwSkcaMj03)I^P)hR>)9xxs3MG3ias<HH;xG!r_9PdYXDbqV9Y(
zZ8Ya-h5DXofNqSDLFio455=V`)L6-`S)nEvys-q6B|Ay5e+liM73#<ewZ5d^g<>n!
zGy~HO%#~6~x|G5U12YZGGBBIddLqnd|E-eW`WyrLgWAbr+QTn~=NXu9V1a>!B#m-d
zagl+=oK5O53@T|$3@kUW!obR6+ET$~2EH$?G3zI;CIgjMD)J{wY7yaAi)oa^WU(6t
zOd+3F(BcN}Ew3dE?EOA(a#_uJBbVf-;#$gp&0&w@i#QwuE+fRmaTA__w1JW)?l6%t
zu-X7j<TtU#z*+-WxeyGjV?Y`>Vc?{J4eYyteFpY(q77^|u!Aet;7xaGi-D~Mwi)>I
zaJc<S_3BF1f2G=P@NO%$aHVoqs$B+l8`wkNL}%|xHF{9qg_Wv8uVBt9Rc4h6tx^XV
zIjhtm1BdC!KJ6f5dzI?DN*&=8uTn?pHpg(4@>Z#XtJEK>)NzJuL{*5WIuUh>tB*Uj
zfr|#t82G`!Sp(+`{K)kfQ9l_N6Hz@Ps&7R7ED{QT;l{pKBl*?9c`nk3y1@N>x3)N<
zm>eoZ)NdlW7EyoDZ3BOEljr_#;4f}XQFYnC@S|aN;f|<!FzUbbwnJ3?%T2OZ@IM1r
z3^4o9mT>Q=`a;t8QFYzG4Ffj~<e2{VmdAe!zH_Mhkn6$A&HO9Lx0(Kr<&R1P@|igQ
zPYsd+Ch9*DEL$d6!bCw6g-nnaHgUU&BEmO}%%P;HiDII8wq1x>rs7gMFRG|O3#Cll
zY2qsr15DgyqO^$?CR&=f+e8@?wM^8ezKMHGJY=GpiF-|yGf~MzWfRLD4&7&>f{FW0
z#A}7h6QhcxqR9(=>bc>;2Tc4NRij7nLY9ve9tl-3aj{44gC@%B>Y?trwRBaL&FSj)
zp1BX3sBZH5fXX#d!$iR3g$t#b7`#4wxmt*6?=RXSo`)X_1x<uZ3@n#h)5Ietj;#w9
ztq~fns~7IcrLd04U)Jgg6ZK5gHIZi`Y(lX+HA9b^c+^C@D!GrD*i|)m<o&s>t`6y{
zebwB*bX78@>YHd_qKS#7CK{S(WTLT&@2ZFHy+8L!6JK1==3dgO#T2uRDhC@B$sM#N
z{6tK>z9!tv#B(v#+{Da3G-g|wc*;aC6R((PZK92dXH0Z7(UyJO5Z*E(*v^F8E%#}Y
z->B7ym}*)gx4nrD^gN~(%&bF&XKB#HOD4LRc-}-O6EB+RYNE4=CqkhYOmyKojj01M
zHKAwjtL1Xt9=R7|iV~7R6?3WFT|Dn;;>WYv59hQVCXT+Ad$D%tWfKon$t|!Z{N+QT
zS53TT;sX;On&@rfbrWxyc$-mVs5dCD8amc9_f6^>>Ux#X<A!>No*1f+iT6yrYvS5P
zjj7L+;Lg?I#Om<-CO-%iQ_DMYKQhtR#Ahb@nfTb`{;ax|&;7*2lhs50D&+3JH}_K$
zf8U$Sx%ixuUOn`Mi7$op=VWOiPITi9;TeWnv_4ES(8M4U2@@9M!Nk`bXA`qb3^6g3
z-83=A#5Zik#7GmPOm2N@7&~sL;U+eh%-w3JD~1|jqLir~Hq~eojF$I{<i234#-{&v
zt?x~YH8IJ=WE11K1nPz+_?Fdp;qRJ?l5UlACz?FbA~@4j2~$lmG0ntuda^n^RXV=M
zR5KWjJ#(jMp|hqUA<i~2$HY=D7S=T}kIN^n7MhsPxi)cPL-_sG;jXL0B>CftWRWN=
zHnBuVt+@L3XYHxDT5e*6iKq$P#7YyZOl+?biU^@XcTxK+t|*L|Ft`%g@wnQwCTy}t
zakWzTYY*q1j;pJ2l{Ar}f{86AY%ctSN^`3>!O?aYnXFzV#N<gNZ2Ky-+Ju%+YfY@<
zr+|t6bwcl-)0!sKdJ}JS&)sNZlZg$&yCu}exuL_|aw#V=yOq0vi9IIv(z34D&Fv<3
znApjvODGQVZdnVvIKTJj=G6}6tPX#dQ2R{mH*v_sVUFAVxqE)r7AMpJY9`b{L8=`w
zaU`M2bGxwoP90@LB~)oko#2@7)~=bjZsMegQzlNEIAh{>ZayY{U|^W|uR-Wn(|-v#
zH{0a5fuFcjnfS%TSw`$0?VKP<6H5`hT8i(RJI`6R)CCj2aW;2rO#IaT!^EF#*Tg@Z
zoqah>eBJXU?vQ1Ie+ga|yjAqCi7O_qa!=+5fr(+3BH<gNZ`C5+FmaQ6ZyaUf$cf{&
zI7-A(GLF6jgHtV)FAl_!KaK)%6po|0l~XW|4;$t2B2u9^&flJUi!V7}<MueJbqE%T
zqi7sawi3tBmb%;_SX{C@Ek)rSag>T<*<+!*;<#?9JL9-3sXqKWnD3<^v!!1OmX0Hk
zRP~dpY#jH*(L0XU<G44@07kty>c??k9OdJ9h;7ADA&w47wQ0I`zYxB+m%L&e#0LZ`
z3097yijW5ds|r$Qec`~vaongMQgJ*gq<S1R=zwr7jz{7!iUx8eOSNDeA>lOz>#xtD
zkP5Zps4bf0b>gTiJWntz`0JY*i&FJNkHzt3Qav7r*GD^8)0aHKu{~Ggy{k1E#L+O0
zXXAJ-jz;`;^jnRm;^=W_;K?{T2Lp`-o5ayHj%LD}3no7eu#~BVWLw73N(e1e*gB3j
zakPzNbA<p?`#7G?@^+l!`+Q-CIQUNFXGGpnut%%F@xuPQm7kBJQyhGCVE9sv&8a++
z&T+gT67nu_yckDU$-Wdvw>b87(;B9NEb30r<LH^yd?k*Th4;!zmUh#q_G%ojiDW?e
z0JCp!aN;<fRG-B0Rvd4~@qQd1#PLoX?=pmv>OBcC234Op1}4>{q#{zjnIRO%M{#sN
z>c9H7ZyX=T{a>klH|FqR7Lxr9YxB?XPuW&Z__H{!Bvn7b&jp!%=V0EKaeNg=g9I8T
zFo5>syxkf`9E0K*9LKCUX2<b$97Ez58|UVRp>cc@$LP5K9qC)a5rV@6DI6ZhfEU!i
zO@nu))JVovN{x!+$iW;IeJ46&1i#Pf7vYQMTWRCtm=wq4I3~pLWJ*osfTvWxRvL?@
za6nROdRBj`kZFP~T4^(~@|khWnI5M8oH*vju_%tkQZ$d9?d<=l!8AXP1tMH1I4tGM
zm&CC&j!4$dvN%>|`SLhc2%nQusgzn3$F3LD9;tOcrJ~#iQc4#Er;9S<h{sVqff@-U
z;;^`o6Sy~lWE`nD(s5)M^R}|twE`NKyu%e&#{a+A72<KL35A(m9rte|*~rxz$C^0S
zvir4z>*821q>Qa<)aHw;)rL6Ucsk6Y&2cob)s{H6#_@b%jeJ`i+vE5<j(_6V5y#Fr
zex<8)K91cS-kUXkh+|J2NB^qvxf?trlD!OLA^Qan2vYN)kQLW!kRRqevQ`{Z^9PQ_
zaY~Ag3!aGMBsZwX0=`<<N2b$poDpU6wf6*mWMK3U{1nF%6@7)DrQ$DfKGNd5q{;@)
zG1B_^MMs_q@ZFsk7=-Ntzs2!;92bTEAxL2tTM_?^<B~}J%E~Wu40{Av^lu#harC-t
zB@(zITMc)c+Y<hsb5*j}xDN}tA$T*ZlaoN3j{Yk<^CbY$&!52Ux5&8~1rjJIyiitB
zSjebWfg)K+Q6a?yizo1Ae&1Tj1nx+nY{@{W1ZGXkqhog_eE04WBq=TA?gYwEP58JX
zfqd6$u&7)D_a#s<fd^=<M{v`naQTEk;}rz&7d%)dNJ*sxDkuEc&Q?vJN&-`R;K2k|
z^uUL<8X>7jx8OqwR7>FD1it-PyV_4H`K313R*S~^k3s|zKGqe~637)26buR06nsRm
zmLT<OCr~HL$F0kuBu}#81XNc3XabLA`Q!W-KzO~Zq`nZ(R*e#PGJ&@fcqf6z>{kLk
z66l#g(*&A{4jk1yfffn8l)&Y#{#z7VCh(jTwGw<vur()9NL#@U2|O)?`t5|YPhgAf
z-x1C9OadLVrOyhvRrI{@PJ*2icp<CPMaYW@bj?Z**s5Cs7i`7UJ%KJ00wlCtb-n+r
z#LJ@AD}h&pyejxwwr+1BuM55*_@>}ng1lM%-30n1@D(>_ku;bYI5;)%UIOnYuya!2
z14hO70j3Xye3U?6As=VupCs_9@XrMM34WeHe<5E8e#y;$N$8dxl7R`7cYOalhI0l<
zqvV5ye4W6MtYoN=Zx~2Ih6xTA{O5ddL;@p)H!=K>_%4AloXR9#PU8Cn#wKvp!Zi!y
z5*VMrL<^HFOdv_%*96WdFe!n_>|g@B5}3kBP9T+loxrpNrYB$~P;`9Gj09#Tuqc7W
zTvG|mPGC*~a}(gj7Jl|U?x^P^&7;qbTA09mDSF3I3lg|gRU?_@DA!R-5?GpmE~U!^
zS0u19f#nGtanvP8@jA~cw&<!z6)k#;2)3!9(E?4yq!!yX7<d&lO5zC&uAwCo;688h
zBS47rScu8r`4jwVjm-?g1UxQPS8<Er-EnCy4Og9LuVoTgod8J(SFK54t?+e%>jgIm
z_IB0A1iIG=Z%SaGRNR`twgk?&s@Isj-X%lZ6NtEKM*=rWgeJS{`Rbu9uG*czo&-)M
zP`pfVZvy++%><4nuwNt;9!lVvs}3Y^P$c9O9?q8D${v&K3Blunx0Fu`r}AmKk-!fL
z{3w#M9HIn%PT-gSqx?U!tb0!6l#pLY;5Tjp7T&e+djb~|sA=I53x6c|R~JfIxYNR=
z1pZ1Op9NUBoZycUT&3IG872q+;ojw`{}T9@%AR6sc`<y2`-Z2wdFn#1-0K{W1a2mf
zV`2Km@F$*P8td`-;^1u-mV4@#%DMg51%ED^o8LkK3q>sc!-&+-U_lEfJyqC3AqyKk
zMG5h;8NQu9c&cPtRZpv87K&RaVPV0AaGSK^#hLfhs-%TGEdN5y{SDOUw5m5ec$bCJ
z79Oxr$-><h%2=qtT19fpS}6BN_#O-QTK<cPTmBI)XW>2zl`n+LTevwQxFoICrWLa%
z(&|cDmCmU9Erc?vqJ^%Nf`ebnt!$x+h3Xc6si93qJ!qk-g@-Kk&ZvPIH8Z2CS+Fwd
zVGD;I2=2TXKAuq{9|#64{GCy`7J_tawbCqf{x%p`tyZ-PHC?Sj7G7GdK3T1ZwJg-O
z@RWtt7V222YvD-?jV<I^2wSLcp@D_t#dDQ~$1FT9{80->{tQo8t)8$DS*>QC57)D>
zWwrWgwQBp1#_Z3nLk%r7V&B)Or+yFTtWkMuRG|yuCKj4n$gEK<IRce}%`E;9L*F&3
z{TlxoR|^YkD+ZaStWk&8s8%vNf2~n%EVQ-I#lnjgp0?1=!gCg$x6q!`gwQh<I&!Gj
zsty*?59H=t3_rY9<yOvpmK|BE$a}9<LvG9MWZ?x1Q`V}^GB2E(0c#brE7z*791RPv
zSa{V!Hwzrn9u|69=q`NwS```@eA&WJYgI4ycew8%dCodTKVP%(&*b167T)BHSa{vS
zTleO2C<-;sV-s&#i2WXZn*+Pf@8f;z)YI!!y-GpeaMH)ZKnsH`yl3&JF|PIueqiB4
z3m?&kEB-6L`&#(eLO%<i)A%~|iG@!sOkJnQ2dz_)b?P&Y`8suao$7Dl3kzRa7+~Q`
z3)e-VX2CF(%dA%<q4kQIE!L~S7QVJH%ED;N|L*kTcx{M~p%%We@U3vZmVKCzo3#SN
zEsU@*lExe5ooeTQ^LgoF4f5|SjNy0|(DE+~es5tccYFG<UiDh9##tCIMdZx}2Ah`*
z4=fpCQPnb`$sB(R8!c>NM=VUUu!`f!HEUsp<=>*egagjyRwlSWva>AAwlGH|^8{Hm
z*TTg0{th-jD`9q_=r0mnEJ$mVFU|60+y{iOu&~m?!u5&@Oe9eYx&_;U!^z6($AuUc
zOd-cg`tBvT&?KAW?vd4`HQHpUE10pcT8Jl@mgZQxMzSR9801;by6d^~NcMkrHgj4n
zoM7-<*qYTm$lb=mb_+X1vPW>Ig<V2y>CSHULdaeb?i1WE$aW7{I4q@yNJMzV!m(`W
zQ6aQI&EtYJeoDx%7S3BZZQ+cCA1wT6;jGAi68u?^wW$A#1zO<LFnjL*$S+v<O|t)T
z|F>{a_}|?BE&OTWFRo&dToR-mR;MW<t=%I3NcL7M#Q!9FMUeW}E!?nBEs2MdxM?9L
zi7H7vn8a;K<V&J-5_czoB=RRwGKtKwaDgNW3MraIp(F|?QS5lQND{Y;@Q?MX$Od)k
zSeTlbL8!Vxkrb1n;({fTs4v1hBwI@GPC;tkl|&aQEt5pqB+4i8((&*;*(&9dxL5cs
zBlk(IzM@|tiTg#lqTmBboSqwG-Aa<JEXeHG4T@M*vJVL^-k@%kR!^cv5-pQxmE_eY
zXi2OV<y;|oNraOKCJ{=aW)hExu#R9YX{)yIBO4UkWyMPyRNW+qcWzWFiRv5G<4HUr
zI*%stm`ECLR4;B+^+d=j^@UKgfslrRjk2Xr3TZ6ZB#EY3c{3r+1zU(&ntCdU)*Q(s
z+BVE<LrmhiB%T*PpHA{}8J-c|E{XO+-rJ~#ZS*~#CD<{EXOl>6R0lSyiyKuZ(Rm?>
z3Y&bL&PfyyLe7dWCef86nMAiFx{GGrO{(oC)lGDIBtae8q2*plypqJ)6xOBiY7(y{
zu{en(N%T(Q^(00lF*1oalDs&Euag*(#9K)WYM~8EVtfnj?Ihkw;@u?rB=K1i{b)9c
z_mk+G#K)pGV?xdcLOvAyh|$|6_{k<koHilnlO#SBd2B)st<fyW=OXzki2+IUPvQ&7
zewhS|N_PnosWwoABnu|wY!?an;H;_dn`?hI%Nd%)H*|7B&Vh0GHi=<LTy2)aqT!<E
zNUc%)s^452N3|qI3;!;OF(ksr3R0nNmmuwsFil8eN)l6(m?))_#M)%x=bQPyO-o{W
z5_6N7C&C#?%oZ|J@Y_vlR+iA(oFr;D3*E9jKZ%7>v_OzT_F|E6I>7AGB$g$yK8X!U
zEKmB6jYN{X_=Xk2SJJE1+A6^*n-ux>1wlQDL=qN9k6w)oG8svjSsoV>-K45Lk(Xp>
zC1EEqxLfe#gTaq(1RO?1(*J_zCgCM<zGW~ixS9)G$iZQG>o%!1!jElImo_P0;#-#l
z@!l#q8<W_?-lb3{h0RH9;rJ(UEs3p3Y)j&YBz{a{dlEa6IGn_hBz7kK$7J><u`h|C
zC9o@rGqr-dlh`AKoTYB9;C@j%kOVn}2ZbD>57lckQF4@9pPfVHlTz`RC>$4s6M_Xd
zt5aMNVuwbkc}95UQ8_;)@pBS?a*Igfmn6<6@drb6vpSc=uSvAotS)f5ZC0!`dUyDI
z5_y{y$!}8qcR_l4F^Qg=70njh7ak+Ze<ksE68|J|Iop@Tn^l{=;eV4jv|0VJS^XzY
z((D!P7*geW5;wTRr;tB|o6=BD3b&>FA>!cBe-i5FOZj6(QXqwbDO5<|{uBzOP&kD$
zDU?m&_7v!R$rSELp-2ivQz(}5^($^s#f22wqUvr@B~l=A085FG3U{XbR!G>;UD9r8
z!Mg?7HOlWv;l32gi{#!E$_e2JuxRGaaN8}46H)IeA1kI%J;e*Hcp!yJDZI8tRZgL*
zkSZyBwM9Lc@~4{>S;X{^6je*%VIh>TD3F3CO+1pqge@vJg^+j~l<dkaib6VEQ*<^9
zuO$j}pl%9zDfCO>^Ay4<s1#mL;f)j?P2sT=+NIDwg~wBPB8BEDv`C?z7-`7ivUBPS
zZy@;g9>3#_QoI7}ce8N{&4iFQNug<$pA?7x5o{^K)|`T^s#OY4386l-^tO$7*fxcy
zvm;-9tLl)#GbvtPMwb*iN_A>JFXUOl=LFjy4tJ7TowIctZdEU)(3LxR3g2v1FQw2e
zg_lLSyG(KCt^RZ~^^j~&!CS-ID}`4?^Zl*<Xul>FXr#9g&d!@Dyp=-V6h2Pj?G)Zg
z@uD|ANcl_e-4vGZ3X}Aa?0bSNrG$yrJ{0~@Rx*35`b7ArDSVc~rk0AHQ`3~Dw{KPb
zQ}`l<L<&|4Uot{c7|&TwVL%E4Qy7uL$P@;pFjzW1JcX}?43#JvBK(XD?>8d(R&bc$
zjjf7(;Wok{WyeRQF#48$tzezK;qOuyBU#S-_c9uEeryVNZBye?7`HZ9eVdw?!lV=y
zrLZ`K$tg@pVO9#WMR}^=birxTT$62TMhZlxnL=oAj*x|da|P$6Fkc8)%>p4*`(KqM
zDJ&J6MheTsJvtv1vOI+qLRO}*Duqb4l(9h_4yi7ZnBc8aQ%o@q<3hM_k}0HwuSvlc
zl1?F$g2P%Vcp{-ceYdHHcZa)fQ=_)2)zZ6_x94#mySO*ZRnNB8r?7#6VdGsJ8#%39
zQ#PKku{nh;+>UJAWBb3+wx)2B+e-@DQrMotj+B2<_izeFQrMaDKR%dt3E7>(9wB=L
z_X+M7JRo>b@X#&E(;>fZ3JbTXGTYUO6ppbM+tiV5>Nt&WQ-6!R{u_DcX4g5L!jIgG
z$^_4Fk3CnT;P1g7Qg~#$BKawWpHuiHg|jIXw-G&C<6H{ArtohH|B3SX6fUOlM+z4t
z`<oz*{GP(QJ90>v{!HPr$S-9}|KfUi+HZ^L?-c&Y%30+~3RhDoV56XoYbjh$A)gEs
zHE)Poj%05Nr;*#TrMC=%*{tN21BGl95lLae+XZha7ZqMikoKw14wkS{QhIuaASI=2
z+$sF7tfaJ%yKR)oO86h;y*A3($g{ymHtw@g-bQVkKY@c4Y}{|7mW}VX`_F4swDF*g
zsx}_5QOWinB&lqpijWrD{RcF<iyGw**{Ck^YJ!wJEaWp$s9_@@SuI<dYvV}kV9-WL
zBsB#e$(Hg7l*o3qe!Hq;`*Bs*mLK@V@$T@Pu#ImX4JpA#1<!0(k4eRw+ZAsZ;0;&x
zY}B{Wz(zwG&)eu^qY?YKLp8C{)W(zS?3m!VDWS$T9@(K<?oiEaG`G=FTKT<fu!W75
zHd@(uc|;Dg<+=x-vaxn%$XXVhR5sY!2C<D`TN_UcX(!lTu!A6Vo)Plu4)rX<qiXm$
z!7p|w^3H6_Mi(0|+WuFyF+2Rx=Ctzia#tJOZS=6QWQTgm<|}WsZZ<aTP$ze&o^;8^
zYc_h@D6~`cvhk{o_B&O@o$3`E;hhTisJ=VZ)Sc>e8*kWno7H!z*iQAPjX!p(w``Da
z+o{M)?^2z1DOTxY<2@Vy+W61L`!+tXvBJhmoB!<KBO7BF2{!uL_}In(8v|{8V&hXA
z{cU_<qt7l?XNUHgjeeYnU8=RG-8mxkxs5NEXv}_T!#tpUaZ>xrM#b&gtX+!S+NB2B
z7;IyNjgdCKwxOTahO)YiAyRSO7On3wZT~LytqtNZ8#VU(+2N91|6GuKXXoH3u{oOC
z)G_V1UFtg<Y`yC?jX2iEI2$u<%(5}w#snLaZA`H-k&<0%66gBs;O)El${x*FrH$FI
zO||h#V>LrspXPT{W121_PeRYX+N#aAF^4l{W3i37Tn@X{JR9?cu*F$DbDBoN3&f>`
zVu!Uj2uo}%<tp2)mfKh+9<q0oGcE6#^JhQY?`f-SL~QJ_v6st}qrphCv5qrk!?5Al
zaBbc=9X4&mZ6s{)QSMD^G|NWPhAnL|Lbe^!QsOXq&Q9MxEqgZ7HdfpC;eeL0d4q>m
zDu3S913r?k5ji=P*E7IuY_qZ5M%&$LBX@qAe`BHLa&1$#JFo6mw6oO)2l?Mds@e%{
z2LpI{m_tM(JGp5fWHnK{Z0u$%4G%3!YQ%k<H5+GboU?Jj#z7k=ZJe@k$i`tC$7~$u
zLffSMcU(Kdl`d_aYpCcFg?Ap*PDp>py4sg(v`->o%1_g68$UAqcB?Zsem|sfKq&vo
z#?Ll>5etJm2N^S~)@U3J7X51DJmcTSpEmzW<Lec|zp<i?I!^{UO=Uazc#->|sWEZ%
zF4_1??EGWnvN-U!jo*^m{N2jit=Js-Ps@B~uGqNBHR#|q2iI&|=O8$!?cj!un>Oxs
zP|iV)gWDVwcTj>^Q_JU|kb}Yw;2=NcOSA$GPV80%9ZrFk8w>AEY0Td4ApSXuI4J7i
z-`%RvR&7hS@V$GK+M|j|tp-N8q=P#gzNkwp<Dis-J4Jq%gFiO=%BQLX`|Z$5JGfiq
ztUI%9h(hX@m0I@*E>CIqIs8`+4?C#tpaO*ssyKMi!GtARMY@{NDmi#S2ss^Qs_dZM
z9`)ubt*V2E98_~aUeOG*%A3*<&7Rnz)sUuh9RwW&97LA;bu|%EIpko-9#zx9BQgTF
zEVnzYO&t{?uj8PugO(0jImmMmc2Lhjeep_(g~uFlH9hKJcK7g3aqMxCKjC22aNj}$
z2MrxGc6d$*8aaINlXf!_UXswBbo}4otjo5VI%wvgg#$J^eUEDH@QBy&El=Wm{JG|c
zJ>{UagXbJP@1Tu?w$g3~2TzO5TC278(r!Bkbc2DqOFBjS&p7BP%H+=qp}|fLI!ncu
z9lYS6i-VUObaTLpFFNSzpvYeJt29mJ2lpzv-Q7VC2W7VTqsQ>*>EMaIibG9gX)gz_
zh{4ag=P=vb!RrndI9TZ54bF>$5e`N=c+0`t4nB9#-@!W$-gWSigT4;>ICxJY;X?=S
z%kX~HOno3ddUmhcvrc=()_&}sQ)G+wv4c+>^m9Prrwq$R>N8QJS4Si&s5yC!_SRnY
z1-s+mYtFBOuN(|;Fi7-=?DdCqpwyyfsg?dv4|c%n49lSozH#8~Rl`N{t%G3>=I>P;
z87h!mj%kPYsviw)l!MWnG6&NfeCJ?{gNf3G?;VVlKpoGHFV#59;~cD96=p4FudWPF
zaPZe&m9Lqa<Y2N?DZWoF&1h4E-*RKRgP9IyIhesI``ll%baJ+XIS%I09}b-!p34?(
z?Jhk`XXx;BL%X#!81{=CEOxNb!6pYw94vK^bdYke%)xSLCE;KNy>g&Ch;i-gQ>(Z%
z97GwV`~30Y;_V`Yi`{Twax0LEAMI14_bKjdTsy?x&6Gv6`&7MEVUC{dz;Tdqu-bvk
zVRUeApGxyFNke<Bsb6uo^pwWe$ZB27-pNF8!LH{tHB%cT2(e#rr)4DT&D3TGTO1s4
zaL~b42iqL%a<JRMcJYT1xPxK2G|aj?r6U}`rpL8CVs@W{{X+H%R@|>R5%iW@9GB-I
z2ZtS;lxbqn9&vEY!EpyiC6cK?A;Y`ds_+RmYWQ*T=zev|!D-2!anO8dsLy`YdB36q
zKRNiB9ZzFT8oxL=%dCfAJe+gzD@VhH=i)r~nGQkzV7cnxf`i{2{LX#A!QWi++%p~j
zx+pIL6907ktBaLdXqOl*4lXkin&s4Pq0MWq&2Hvj@cdVld1>)K26hYW3fI?uMMAvh
z;5zqz2RFH0xai~}$Hi?fs=KJ+BA*MmxW~o4F7mr5;G(#T5-tk5DCDAu%R2#3n94f>
zx4W3RU-1|>o;*3ENiNSUZM-d5(hM9>xy4-kvCcnz@$@8=baAK4$K3GE-oPD#rCeD1
z6|<#X-0kAG{fY+@m2vTQNVVqqd;3*vj4JE;2Mv*wb8(-`n*{Kni}EfixTxsj0T+q7
z{;|gQyXbw)zt5!q-+_F?1C?Cx^d$PjqRK9a*G~qjim;lChh4skH1H6+b3j!+;NRo1
zbz|VhmcR=?1_CZL7mvHV0|B`%f-dU1$a4{LQPagEE^4vq0fEO3sJk}?Ivr58UHo(<
zP{+ml2YlywFA5Ky9d|&5T|6`^pj<pEtsmMRsIfTAA@b|e=L0J9SD>DY`Yu|#Xyc-R
zi-s<mx@ac)jii+)UH`m9I?vQt<W1=O89&?H#nj<}7A{(fe9r+zVJnxnsr#i*iI9XR
zcD8l#w2KZj#Yr3&=-)lm&c&YxRC{THr$14x<y;>-O08lC)w3>$&vB>^Dw57FUT`tm
z#dj{cxOkDBb@73Vt}b43@v4j0Ty%5M-Nnl;db#M~;^$w3>}gMFV$IKidIuE`&fRz|
z@QMqbC)s*`px=|ZJjv?(u|RJZZ*j(5ye`Ubxc&)OOm7OIk<JIzJDmDy0egDjT^D^^
zs3&tveHUPQ&jpb>AG-L+#UK}hUG#PFv5WpLzHq@qGGE>t_{7DhE<R)3gNmu2>z@OB
zi+?Ucj?$MdzH-578t7u-MBnBB@rPviLDl_ifM@)E?P3VMaxp>%if4P?F*q=kk?dm5
zLG`U5$uJ@JYzdBZG0Fvx&18V_h)y2fxG12AV_baiV!n$7F2=eT$EkEN&Bb_zx{HY}
zCb{4tT>~G>VF<+!`p5PjIH)GO;L0MO;)3UUlkhleTAS`-1{a`<SuW<eXuK^j+x4$?
z@YvFVhtv~G0&`r<WjrqlFkLw4$4R9_YN3loF7Jv#)Wu>KOI$2-v7D>*YCs+G4^Lj|
zV&A#Im4>;WZw>O4$Q3SDayNJ^ht-)@x!@t>9S<qpMU3&xh3xw0?%q0E%#fio1>=G|
z#WCrkQj<KM73sMC0oN&ZM+iB?l7}#JsM9VoT!0>LT)}Eilgm4BaGmR}LvXE&%`UdM
zSm$EBiw$hf#U}0mqjKJ_q49V33k9^khZH|XjXk+rIqWWe;o^EGxZTALcJ^$IGcI<z
z*u_R&9On?Z*yEyoy<o3ixuXuLZQZfg#n$fFCqnA)ms$s0927#yAt8rd9LY+Ka<UHj
zPjj3Q$tl4DopMjQAinuv-f0(xC=h>e@guhjt`5OsP)yqnsoxIy<gANxE`H_a@8WM4
z|A_M!TwLU&aBr0C@9fKt9CqrNcR~dZ`*+v>>Ee=$zoeA%%N&ryiud7@KYCdGEAlIX
z|FK_(73G_~T7T9KUv<Iiy$-7zE^cy1^-#e>j)&Vk6!vhthkPDiD;6r~;n&hZ2<8_o
zAV}e7hZV7qWamx}?VlVf;-RF6J3JKiFy^qLq?iX{alsOTzfTU8@^GhzyF8Tku<WoJ
zba(Lazr*Ht!Mi<_@o=w)avsWh{&kO<SHt&scvKWN99A1k2bW9<QJLvJ55xukhTpt9
zc)y1#9v<{SUeQDG^1%lLD+yNi_`(8TSd}DS-kgEKY95XsRu6fYc6V^l%i)JTRQGV{
zu)1R?wiFB3@DT8P!ct<;L&$^aA?~53hetfT?cp5{wdkRTXFWXUp^k^T9y)sdmA5<(
zVGm6`H1l|nARhJ5$itH!9;3q^p72nQUL8@@kErv%2Z{AP482V?@X(O{{~m07M0Go&
zK0BhuA5qsz<~H^~(!>LW!)DfrA5m1^dqg$&cpn$qdU)DHOAoEYcxzFk{!`KfTcJJ;
zw(;=W5k=$eJhb=F!NW5iiXHV!Z)wsvW0<MhQJ<73l>5AgP99$Mc$Pjodw9V^cMm;0
zbn)<_=U={fi4GrC{5Ac;QPq_SNByP8)Xl?(S>Dt0f4uba@UoEMB7a3VE3$~oc16Q*
zZx652LILe+N4(+T-Gb^(53`T@=cB&mfp~k};JY6Bc$ny6l85&^yzgO<hru2`U~?Y&
zdHCGJ*`oPA^6-g=Pd)VY@UiD_gUO?cH`}PCTAMP#&uDyj4jW>Mf0*0f!xz%-Ko4Jf
z_{zfo$<FK;qC%T;LEaU=<EVdceE#BK`r5+~4<kH`<dli#w;qOh_(nLZFg}YE%HvbF
zg{B3EbK>5u!3%MtJdEaY@bJ9{?wr514?bF5`_99vo7KxUsy)`jIBI&B;Q7yc4n9<!
z-yV7Gj*aqIOJ45gNt=^BOz|+s!(3@-s)rdu=+ZO~(>W~Vf`1nEeV*xI7Kcts3m;RI
z{Cw2Mc^>9-t$Dnu4+}gj^svOkQV)Crl%<P2EM{!C(n?E}a&7$aq2vL{uJEwZL)3#V
zqqoXK#Dm=*^^U3MMWJ|$JnF~9f+0<hs-eAo%pbRe2g}1o51TwBxw>BuF|8Gnq7e^{
zaF@Hi5Kk~INX-nZKOVkSYmErc?(?(jJgk@O2Ei`R`<6Fz&3f4DVV?-Ma`uI=Xq$)a
z!gmPn%*uBOVf8&iE)4kp9`5&W)Wb0m9uPd};gFESg0y)=$fw8DaStav{Fs%W^l(ae
zU-9a+@H2uxWOYU!Q$Gp6<@s5D`DXy9(Laq}J)GxWQ7c$0jSF119_~)#O2y#sTs7RE
z)3_~-KRo>D;U*_&LGTiTs$%f<4LQWW7!1eMWs$S!Zz2D9_*ck(S@{(qS3O)4a$WF-
zV2yV|ta!^>zBG_V$u#arBYzr+j-f(n6i#Dr+fact3a0VTeZl3&6!CW9B*laj5iFVp
zR}h88(<mX5b)tOim@1XVogyin#$D|7<{Ya14{sb(<&LW|X_QUlo;2=F<AF3PrJ?T&
zm!r+&s$v@VrBObO3TfP*#?FR87BNvmtaV(ya$J#DPNPcNKZYxq#)D~8P5Tk9rTr&^
zzC7+9CGk)i)g;@WPsa<XE?6UtfDr2N%!*mZRc;!Mc89IwDwM`6W&9&PYNq{#^GF(X
zC0jd<bQx8L*);Of2&eH{8okp{X|&Cs`&b%}r}1do|99ZZ*&1BYPoz;Vjpk{zNTYt*
z-z1x+@zdPA2ErSrd6=rk)F_Q7v%Im8CTahYCX1Sh{)kQ*Yqd<HRT?ibPR`bNDh=*1
ztvOKA_eAYr+ccg|`+qPEv%>At*m2yyV)=X;?S(VjLC7<L9R;6F<2fNOmk-|3@09kh
zlXqsXg>(_5<VE@;e0?L|EFI`3ZggksLMZ8(#>>Kc3BHn*zba!wh1b(~BaOGycqh%{
zDS~|L@y#@TKCW&YS8t_J`h?O>_{Su^o5n{R)pCJ8X}rfdDieG^jStfJkh60_4V;r3
zTAVu|ojdqL_2LQDH;s?e_=E~4{5wWIOXJftp1CcAyfBfHerb%5qA%!w8q?C4p2k;c
z3}Czs%Ndczz_kAe$>21;PGgYpPs;@7olry47@Ec~8Y~n1M&#xRMb7kX8sr-!J6!A>
zI-y3UF)EGGqEE|{()ccoF=>1+64n}@##k==6Kb3wCFHa-A&rS*kZv$LIjcV<jj36F
z<Aj=##!RZE5l>^5G&(1ZxuP&zkag#!F<<yfad<%*OC?+Cq*^GAE=psukR|`elVzf_
zTqJa9g%G;8N{mFLG|CoFDqS!pXb4jH$VrtD9Y?V7NoA#xl)CIuDh*qB^>sPSx}xI=
zrWt-G6;npCBx}=H$315?3a!TaG&ZDhdj>@^*qFv9dX>icG&ZNPC5;1V986<t+P^}w
zOORw+8rwPG&9xnZBs<gKjZY-IMQ4x5_X_UI>g-SB?`Anx3+)h>vs_C#lg8mRj-<h>
zD@RG1Yp2pUmd5ckPNZ?`s>{hV{+a?_kU22LS2!*5*G?){VRJu-@gKQ(8R5MClWps)
z5MJS_+a-98+X(N)lAGTyaLdj3efceo-?=$R)6D+OPXTs8vX{6$w$T0(UVJJpb2OT3
z-!;o2{*%VPY5d0(#}AGS@@4!>Kv&ba$&hZLT}$J78aIS9%bVqRD;@8e%Mmql3Yj3;
z0vS+}UpO@jW>6>tl3O~wM~+?<Xr5CvgJKzfPwtyR@eE32@aB!ca~YJ(;EoLHWKcJQ
zQW^irzG@k~Tr@y(X9jm=P+Ej{XHZrM<z+HFWg@q0H1{5n+$&fvgZnZlpTVpW!ODUa
z1ev`*gNni*$e@ytfk$%qe<+KpWOW`CQZ<8z{*S`L8FX$OsGh-Fa;tWYjQ=%0kU^u%
zH8kP583cud1ZxUDB1p|z8Ppcu{~7;I?>zd+x*0r~fy&^~44%lKUIuf9<b82c5g*Io
zan9*U_1`l=;>we%eg@<XM8|4^h8b)=shB8ioWZG+s(A)2GH4<SO*3dF<myRP`jl_5
zWd^M>=#arP89bFi>kQgv@N|YxJwQ99x}5UuG&!Zn+et$sPpS49e0WNA9GbV_lwy_&
z9i`}5PE*IA%Ts@Q@J~<md<LC3I2pW<L7xoX%b*MSjX<{y-{|C%7X`Ztz9g7FrFvx0
zlk?8;<P>MnD}&cEeCz_RNHDP0t3sZtmvdLW9A=qbm%48Vmamt?m?1K~Et>C$oXV8H
z%h|7&Q(G#&&t6E;2ZFqxuzJ0mk1`->P%mfujljnle3HSZ8GM%UuOXbvpkD@`XRtVf
zB^mV3;0xM6qo!u?Wd>hm@J$BaaxjZ(0~qHS49;L6XSPw!@l)#WQ>xTy^>qeAG8mdc
z;p&=pTK)T6m`CnVzxio3EQ8@0jLG2p3`Vfmr`4zoM$_zRH8O)Kr<HkH?K`b5p7sw!
z`i}NXX*{B5YzE^P3>i$wpy(NudooOGRnGWl?40k4`e)R{jDH%>qzs-tqbAdiko-k8
zW~XH^ovV_5o>7Z3h@Rn7Ek0+OmBH)`rm|~i)Epsm1?Ocj|NrrH9Z*sfU3YgcIcJcp
z2ncNN^vvu+k7NWy5RfQJ5ET$aOhiGlL_sBk2uco;gC8JidwTNp%=7{hBnXmo&f&lP
zJo}$h=bl@yUgcNS)z#hALRJc{5~L1~BMASio&A^37qE`WwySeK6YDdvArp~IL|KMR
zY|4Z$6aGwWW?q@N^*nWVroFGSl_h_XTKcTEEfd>C@<%4Wtg(asCrGk`<YR?oSGMF&
zAus;b_GH3wR@*BH?i1WEm?@|WdIg!Ik%@*6Q%PE!)dHOVGZD(fhi5f<ho9AcIIFEX
ztA#T`e45YBu2&ny%tR~`ahW|jR7pC)*-1D<txRNP;y@-2W|!(nCJtruzl0nX+;dht
zD&&~p--5>lc|r@5Iw|~=;6H+=1<wdl;onT06@E_e&{_LN`$DF@_Tz%*A}uXPtxK7>
za@Icf;Yud1ip5^b<mX8CB9_*BT_iUcMF=Iggxt==9U*r!aZgC{IgO4A53)5Ma&%|n
zv3Q^Sr=!~=;%O$HW$Qc_@*)#S62#C7l1Pepp(BTooPsqZD36Z3I<Dw={T)X>9r<;9
ztfQBX0y+xnXrQB^jzT&L>!_t8RYwsWMRiovQAtNJ9mRE&)lp98msTjL+tqwY$7g*U
z&t|8U((%SQt+bA==d?092A<RCrk~SRoYQ8ms8e3Y{&QNs^V-pKS_K`%+vl`-v(qZ;
zcv(kv9j`IR^V%yqUe!@mM-}l>^2T|s8q++lO*yaiC|`$U;CXG?d98+ynvym79+8ai
z<6sLYQrWsX(sVd<sN&TGojP1X+&VJ;leAAu7gF;`664m^Q72n|@Vw>`{<@B9=e41A
z?cSlQC&K!I2cKs&($QGQ2ReG{Xu=lI@s5smI-2TerlYlvHaeQ?cvD9U9dEG!UpsPN
z(1w+-^J_0hOC7IVu#<gTM=Rm<*1Mo}6yetwwCNYLwmMc^(Dq%>i0yTB(9uQ5dpbJm
z=%nLacFIMqvyQ(nXm>AYM7klX>bTF;Q7&rlv)y!b)A7|sZRbo!(~BCr>HUk^tcyHD
z2E-mZHi-8_>ddrT@BBsWBlhyh+T`X%t+$Rox_uLLM8_vO`s!G!W0{VAIzH7gLB~WL
z{n-mThUyrmV}Op&bqvxmSjQJS<`qc&k}2!<d`SMa4jvLXP%!r;`@p~!Ra1%8FKI(`
z%xsjzQv@4d(s*<CcA?a7bd1z7O2=@T#BYufI?M{G-|F_wAQckTQ%CC<qhqX&anvl3
z`rajt(|)_Msb5P9<8@5Cq<tsI`I&r@j>$S^>zJcsijJu|e$?@kj_=8fr%t0e6-?zJ
zY*vlb={kPU?P~-j%Pwie3Z+wLu!L+h4vnJr`ENY-jW}>u9e!pzmo?R~NXKFw^K~p>
z^$Vx|A}R1dxu02vlBo-&<SaZ><0*w~kY9EDreleYJ(si<)$A{Sj}%YkWrBolwVeH~
zW0#IUb*$8}O2;OhUm#+&jx{>gv*TFt`Hr<ZerJwv+GocZWm4C%$H%~`@91AFRjHWT
zzDXV8Mrofs3mjW?up)ox_@9ogI=1Qdd3~(rb}1^46J%+5jr;qOwnGOGpxY@pt(tup
z-ENkXRnQUAu~)}F9l8#$j{BFi{W{8A)-pMh6iPii&oRAnDswk<__*@ttWqSkT9H&9
zD96+J+?TZg2gPM=c)`@3m$k6YPbqOg$3Y!Y_OA|0N0u~Hj9qhCiwhriStCz~gr%k9
z>3OqD*$s6_Ol$RJ?Jpgr<;c6kG|`f&qspWbkLoz4gRj{At>a%EXN4cvaYDyQ9jDk1
zgA}^ctY$W!kiRA+XK33(&Pf#gvUX9(c^wx-^FRGdBD|a(m%^)@D|B3^oP*Sh_r18O
z;}#9ri>hAS=7h|{9K1;J;*O5HI_|LnIUFu)k99m?=gN-mBhFeaQy<c(%BE4WWP1_^
z;1eBBbv)x_Qo&xbCVBB($74pkti8|?POe3g(!5rylv><`gcoJJc*$%3g(rs>IlZXg
zSIgx^Zm<0>o;+R@5t3IhpJ0ALh8FOmpzuQ3lEOlYUa^1QQ&e~{FN$Y}mJm|Xi&8>L
zXUl6`(aL&J&Wo45_5@Piiwa(}?up85lS?%#dU5#Yv`T_sY^g(u=Zf~kTc_O>?G-Po
zc<r<Gya(*llTK%)as#KD7d5@8<;7y|czf}h*WNj);YGhI8r_>aQd7N9yvXpPwik7Z
z)=Klj;RWB-<XwrUe{IzZC(~@6;_|}nMY`ACUEz&}CudD|G`DbhU|=0DG%wy}A-(W;
z@wykyy?E1$x?a@tBCT*rGcWolJL)r?FKU*1O=-Z4<R3H*g)|auEZD@0H?l*Uda<yF
z{ReaA$VWLXym-rtmR_{-f+u*h7AyvlTTH|@<<s8nRi}*?ZN2E=MMp2*@uHm<?Y;aY
zHfdZDTc7Ssa?P7pYj6?X$&1cjyz505FPKizMs_0H0%B@>h&lF(Mic7lMK>=#V!wFN
z-HRSx`*g$)y*y>T_JS+g2VV5_V)GR(d__BXMZ15+J_I}eRU3PG@rf6Gz3A;l<*QmB
ziAYlWD$laRr(R6-ViMcLi_g3m<%Mxo8^AVaQN1W}F!c*BzVu?C7lXW5`Ee2@UwM(&
zl}7iq5K7u!)dqX{Su}=v(MvKNeN`LgwGYmklkFYu#RxAZe4O;H$VYlHUs7BDpMn=-
zyf}JQ8|%e)UVB4+oOs6z-ngnUh{6dH#1c-HM85Z8nn<PyP8DQ%rhD-N`<H!mP5aS{
zpS+mq#Vm<3gDrf`PU@rawR2swPo5-ay=Hr%Ub7Exoa@CrmQCXROl$9z*7KUSfX#bN
z8zd2@UDFoPfW2t+4;uf2U%mLvix<a`^f#7x?YXGAfj12-^<tS9%SE!$i%njv5WZ4y
zmEdZ@HG*pee-~UQxL$CB;EHP+Q{GI2=P>l*gb25Ku~W!4!R=oBA>@Bv>=1HbzMHY=
zzUY-s+~vieBHt~z$BVr}_IVNZBI3n<FF$pM&Y3N@JK#mo3oq@#izTPsJ}<_ecl&8Y
zz0-G%%lK<`x<7}zZWDLN3xBWlqt`U=HLZlh9reQW;%`Yd=0)6#>({hHUL?G*yf{GR
z9_e&vx~FGxK*gMN|49ytcU_P4zc^0a>4ybLj?e&v9}~=XU89h7>7At#PtuqTyUkB|
z@sAg$CEv4Nob%$0@P7qUw>qm{*Uo!!!Hb6?xhQzWi>qE-5`I~bN&WUt$~8_wx!rd~
za$WchPIp3XN#ooRew#z%jGLPO9#r<sw43^#M7i(91J-?E1|@Z`YmY?uSn!D#PrZ2N
zMc3<El7X4mwdY<G9qxW1IOMuUPGPcv6bW5_U5j3~yFQ13oCb0k$Sw8FV<4}P^VhX}
z2J#zl8mQLTNzDQVN*E|<prFA+22j{Q5d+0VdGi2gQ3Km%sl^Pe&8I%Qu94rKuF#Q`
zGEmw;B?FZWlriv<fpP}Q8>pM=jE!?&FYGRBpn2R~G-21Yf`O;292Kc~L-XZLBOh{6
zdD*}#l2LU7RSdjppejpc;7HtEtGr4~zv%iesR5N-`Qz@_4Ad}C)4->%sEUCuTU3%-
z22w>rUhlk0VVVJlf!a4TRdm|k&?s~na2rTBkiilfs7D3KS~Kw34ZFqa82Iov+xR^O
z^3BL-`$hWeEX<ebzx7YAFPe=Fp0|Jo2BzQ8=o$)XWZ-x4dOlBo!vK|;LQ@0HgzuZ@
zWI8<uq_;5emVwu!s2fE~1FZ~H45CsHZyRWBV4)ws_|e8dTLag8xbDL{2HF{D<U?a0
z+8gL#V5fmy209w(WMHU)VFo%Ic$Z~1P~auCi<Gdtfdh9P?-_XCKv$7;Ghp1%%6^#4
zQjwgzq4f|sy&nkaX`rW=;ztHPHc)DfvzLJ{418&zw<z=xTyRAB#6VvI%SJ2x1V0s2
z&N%wB0fjSYfPv42KXR$`er4cm13ktlgAEMK&iAz|NrMdjD8WJZ@P;-dTi$!L@{NJv
zjBa4Lfe{A2H891%R0AUoj507*G)D_2&9aSZOm^I2H??sF#v6Q6nf@Iuzf}4p0}~8P
z6orL3+_?|CHy%o#Oar^A(KWcKeQ#izfnN+PVm})A!N5-jW*GQUqENroWmmp6c5lu!
zFiV8<4RGYnX5W=fpToYmX`2oCT#?LUIaA&AE--is2Nu#MZ)(-L*Xh3|outE>^u;1s
zDY1T~c^DXSQ(MBUZ)y|kx|fP~d=58-D-5iZ95)+SWneW&cW%4BYd8$q#i!jHXmvs;
zTqn7ctd}UMGIeh>u*u-BmeUv3b<^#>sckW^m19|Swj21v!0djG;yac98Q8Ef{lHD_
z%1w=A2U{SQ`=d9~|72qtcxK?afjtKH8aQU)Zv*=b>^I;u;5Tqsb!8gxN}4*Yahq*s
z^Cu+{4R+#cdwK~-XjCw0AS9&KJ1JpKIJdNjV3pGj^0$j8n+9SA;s(}qP!k3Yass)f
zky|3kVwHs)y5_8TOFLxXFP4GR1?yGEHKMTVsDa6C)t<MscQ!gJ{jLy?OLpfBo^65?
z22OHJ?N&}1IBnnz=fK&@KcbLTC*zdI^)H*{miB5zmHe!M(YLhux3mieE*iLD;HGF^
zGH}_z6*j_HXa5IDS2<t}ByQQ35LeZbRo&NFej&}fI&T@cZQy}{hX(E#xNG2^f%_cV
zH`1@&(ykwLFqV~}{@m4Ws7Y^SJTh?nkmCtwEw}nuIK8=UYn5+nPYrl(Ym~n*kmN%#
zABy{s>_dtVMSb=a4L;=X;m_Mz2XQ%l$n66;gL3&W;I=mDww6aU^ZKylwnmpvNPZs*
z2q`F7NU*RVb&5zLB>yE<!iSPR)bOFE52bu4?L#FWD*I5zhnIXP=R<kP!tpq1!6~(@
z4?_kkc~V>ze5mNdq1)O|TJrc-YGj?dppX03GUa6-<~f{IB+4to>HV{``l?8V+;>&=
zp&App@2W2Nn&7S5+P2HCTB5_+W%!WlgW^Mrei>;#s6IG-*i}<?_)z4IR`ZVL5-%m`
zLfj&!cWZJQ6>9rX#|O;^j}P^HsPDt;KD>2D%dF(8>%+%FoOjgGceJ1HXbpV0bVqB*
ztnX;n9WB>g?ZXe$CO*93!)hPa_|VjcW<GrD!$=>R`|zd@1EriTn5GY(2yf{_D<3w^
zcJ}n)Z68|u@U9PCd}!lCTOT_5(24WE54}xCJ0D)Xt6eu8N28AR><AwwMjegsYIJ*|
zj<-xl_Z`m8w1mIa^<z{9z30RGK6JaQ_3+`dsG}>n58Zh|F&)0HYKKa$wig|XE;;&L
zbbKIczKCNetKh>&Ql5{QsgPcREMficoWwpX-WGL->FDc2KOa8z@wgs4{V$2^kufUy
z=ThJSQeY}m@`aCwKR8=ma*%(;V(f5!Ey#Kel6Dx(xIPT^VdYz{VLtw@8sXm^<m}V#
z|0E3;oe@5KZn^5raZX*DzBZpd2afV#v=3u^80*6fA7=V6j&YwRP4r=s5959K&W8yS
z_xg+!>Q^4=oO$0lStRuS;KLLjruy)`57T^nH&UC<bna?X=Vy?URIcM9|IvqFzT}^L
znBCgxzpI_OtIZ<!VX+Ut`Y^|bxjy{t<7q{h=d+h9^L<#r5m&+O=$!HWQs?Y(Zmw8{
zUUdKB!`%()=XumcQUIp*zfS6?gRb8=zF2V)F7;uV56gX6;R9DYT=_J(XfL1Wn9j#>
zyVk4zKl&hLt?)mHEWhw|KCJg)gAa+G8Jk6NG{3r0$R@$icghwaOlqqS+kE&f)3seB
zBoyutzT1aAKI{~}OYl!YDm=Zb?e$@w4;OtHG&+6151BOe$!f?4osIB94RBaxBzt`@
zeDFyuKS$yP*M`fg->07M?IaKS(6hH%`(=0Gm1@|>!=3CDqAa!#2OcP<cw>T;$Jx=l
z93+;cmPH*O4ssgt@lbc1WOk?AfBEpY5c0!9j`(m?$gymBkpixq*VN-a4E|oF+9`I^
zx9+nN`j6mg!86(V{|Y((r{kOuR_(kG7qX*|S*~7^7P!m_@Sb)>_*Ea=_cS`T%ncuI
za<Kc+($6>QaodNoew6d$4lRLM`;o_wds3t4g7*d4!Vi3Sn9U#g@R+%mQ=bSv6@2Ey
zqPUYnqq_5j52waDll(~bBgKyr0rgTLR}Md7ot^Mw$;9-XFFUD_({HQg@?%x*43h8n
zx%2vw-;V-*<n!BCjXB5d+oFPg6!N3>J)Wjz3kwSt_oIjqN{R|8=Es?mYS+qkloBE-
zDd;PqmiD8JAD55X>*tsJ*m>9{<0mJV7X{4^j~^BMsOU!}KM$!;U-hG^AC>+1^qzf%
zdfAUx{22Dkp*>WqNR;+f-PQc4?uXltbU$A6qlO=85>(TV&u^<8ZmX$&449$Tl86(A
zsEXfS(){>P{b8Qs@Z&x&!+y-^>!5S`;qu!TBXVAM=ra7M?MJs`w(+m3np{UTht9PX
zUiYJ}A5Hvt!;gA?)Mr2Du*V=>11UfwKN<?5WYRsY%Vk$%KX_wBZ&Q&s6I>)!<L*s!
zKi>4?>kW1aEhMPKbyq7t-uB~rKc=zex%d}(e?Qs^=_B}#AMN~T??(qey7=+OFACeg
zqaU3mwBU866Pr3<CtKl+@~$WhIjX!T<b6N73h5@;%a86tm`D#lKFH=hg?uRZk>JOE
z-26qM8eMOZFpEzl$G(F71V0r#F-ZCIp7xpW0qhq)zVPEqKgNmVE5RXt3}y9&4-_0E
z$YKu`^4jU7Va#-d<N7+sH+~Swhl^x{AK&^hQuru8M*C6pw40%0L^4+JztI1XX^xjP
zzZ0C`$3(h9X_Nez?8o#a$`n7QisaBe?TvX(I)+a7;|D)}mMA|8&J_GfaE4&BC-$;-
zmhjnvbNrY~JE?3hdgu8upC&zDS>VTwd)nGLim}Q;Z=sj$rQISw7W>gZfX@Q>)sNr&
zIO4}qj#EFDN>T~IWq$bl@cXgcj}?Bb6yfiFtmF9g^Z0!nnwzmkglh#WOty<u{Jyr{
zj}3n8@nf$a8~xbi$1YKLJTQ4PEkyVh!L5SZ1Q~Zb`!}2aPsk2GTBO-EqT~L+pCa7N
zUYMKVxUaRkZyWhO5oQYR=cts83thZkMxUEu2>(o!1Hz+%LBWt<Sdghjgp6OPnnGfN
zagN`KD&6cC4of6if(HZ-vMGf8<;P(^9;{1aI^pk?2m9<|AM@jH&P9G)@#DCto#w>l
z#|b}9QrIkI(tYg|jViahx!?T{`$EXSqIq8MtRLT8Q_cy0;j~-hg7Aximjo$%bEtCF
zk87MF0z5Dc*V*-)=mPc>dXtleJuRbT0Jk~$`;jAnoB`bR<FCicLq8tzD!@AWk-L_9
zVY~84Y4w309fdsh<B1=?r?}P4j;AbV6<52xF5Vq~JVJRU-sgV25Rw$ILz4wl1nETp
z+7yK(R{*&KC>%hM0P+NosPAr^JFP$fc>~~Wdp<#u`~mRpo`j(V11J;#2@6SleX}y8
zYjV*5im~ty9ar|Lj_PXh0CM@AB&DRLuLMvffYJe!31IPk?WF+91yEjiS-~Ow>r@C}
z|9!1u0F?ruw{Y%^$^pa+XB@k)(fhJ+dY_C|UJdX(IyeGQ1E>~2^#E!GkQ%^i0bD7Z
zL02=tpQPBFaT$fl-o39W0Z^VMxlm3avG@bc8GtK*+5yxFz#Tw(02u)=h|w8~j)cmt
z2bv~vSs12CIdxu_+SL`TC%9;}eHCaZylDW<0%#<>v0#$`-Uy&eLsdVKbS5de)O|<u
z0NxDXJqc|g_?93OxseYog|`xXJAii{XsrY2`#@_Wye%<+b^)|!nj)b>hX6VUP`A2!
z+ykv+0G&im{__LvUEvI(8r}aMXzxqPT?6PAK=%N81n^M+9|!P30I|zT#Ujp0k6a`@
z#rvUPT}%1kp{rK_y#we&&4;f12W$y7KM7#Q4M$(L=PadP0B2_^be{@IFO)VQfX@TC
z%zg>rivYe1;I{yl1n^Y=Uk9*IN-|JzSODJyFi1GtVKD6>n-2{DYwZ>uE|T#9d>6oo
z0KTPR2QVstu_7NWI7ZO9#(n&_Ba8JNq>K|ugC+J1Fd=}60Zb3z2U>nv*Q5X@2QWqW
zuQ}9za;sAVn8w0CRKI7+FR3MuIfz@{R4Mr}fS&@G!%+ZrMgTJd_~a9Hb^!OQIS+rS
z&I(|~6-NWhNu<2fRdudt&I{nsP=!(Eb2N$MXF*B|-E#aQWm_b;SnyZDe!J|_E){+%
zfPVs57Qk|55x~j-G6Ou`5UT=MO@#n<1h6K6wE=7jU~>Ss9%#P@u%2UTy}R&3Z5_v2
z;|!7w94rsDje;bU+|6`s31Djg+X86uP}|ldqvu0y#6xX+0DlB9|DnBy%<W}v9q$Za
zR{(pN{zI+TZTFu65O;F|nda=U-c7zI0FtJ6-1{VGe*kmux-&Pp&4-#d0E3MXz+VCQ
z0`Lc5(x?Im1aRS@Mi&VnC_I!c2?vnlksTD3>aa!?9%*sTQ~?|e*t`0c6!<^@o<~}i
zaF(B(yZS^b_z$Xw12_`E;gz=K9F>+l7QnDawn@DINc%g0<KjILz)2wtVuKK8J<?8#
z{&~SOg8vGh<z@Qy<n@m9b8KNpx_7_hg2<WXMIo0slzd9z6#LR}m9+@kbN)460s^=p
z3bzGs3f>ZYbjR-NJG=x0a8D%n=R2R#t^#-<-iHA^3g9uTKU?{<o%`v4^lk&wp9Juf
zWq73dS=vY1i_g=a2k;_*q#&rn6jFpF2kna>y$C{U=T3U8k>?B|R}i_SY=s2#2<8>c
zCzwBo0zniE^2-Q!lbBt?P31Dk3rlE`Ac_W2EQsRbEgwXQAa-P`rGh9OL`mVwA*JFJ
zrA!cq@}#{KL}I8qG`FkjBeksXa)P~@JFlm!6<D4}>QT*=`=U}gh?j%77{a9xUJ0T~
z5M@GmDTG&ps2arIK^zaFS`gKPm>R_QLA(~^`J8ALMDrkON@3E2$OxiV5UD{ZB3W}q
zRfE{|S#nws4v~a%rd4>XQSJ=F6$A;LTS(Er9JPa}BWg|9XhIqW(RhyABm8xSKGx{!
z3aJ-FeIX5kJbx^m^7fClMxxnRFzKLefo}+JDmeK!dwKR|5G};pEr_>*`0}yVQM@gK
zXvO{iAX*3Uj>xA!)-DcE+XS&mNL$w84JRe-f@seMnXYyaHP_2da;DQs(&;StZV+99
zh&<M=Ki1w0V&!Ak`$6P+qS18?;ulRN=^jLnAU+79XAnbz7#hTfL3|X%=RthIrhcM*
z97OLR`Uvk8M7I<dg`Wh`H;8^TGd2zr5l8ZFVRwI;%?@YyEtUMUAczA58S%>?%wo>3
zg7{h@4u7Hz4D$Er>YyM73t`GsnDa!VBN-ONH$i+C1U2a$9>j<szGd;=R+;|DAW}9s
z#|OdONk#=Rn!OOj*dQ1>xQKiE6K$O6FfJ7=Nu=KdbwUv26Pald_oN^ui+4&8?|-Y_
zf1;Ins!a=GdJr3e*cikQLHroRq97Ir@sqUb48il=>|s7r_$<NMf)vgXGFNb(;C#Ua
zf<Fr`Wcv%Deziu9UxhCXVp$Ns3EwqFSrSB}nRYJAgIE#7dXcXTVpS05mZ-l65%;I8
z4%$2FYb5B}BKKMve_iLz_D%}d1#$0n=X>usDcN4vzT?;w#O5H5i1L;owg&N65cXrc
zAhrjg2jLB3??%TT9Ku2DWWzpp{!ei4D(9{s&y~f#Aoh!7H#Ju|_X_S|IiG5_ca@V-
zC?sYEK}W(MBM4s*F%~!oe-HuMWDwCHf<c7XS?tqCYS*V4aiHLTUdkyXnxgRIQ!T-s
z;*=tC24w|tAc%uOtd&^4?6~y)m*!zk6ssJ+7D)f?p!2BI`j}uzS*xE2;v^@Z5ORlb
zO5|*!3qt-0;xtD}S=SlCe+AD9o)bJT*et(`Iu|9%r64W`aV3bW#1kq)xF+&P*(qNa
zawCYFLEK_Rl3llhxI?Rpsf$uw{ky7n+54lFdx9kQg**^^7(~NI_Or9c?6Swo6Tzo~
z&w|L;T75431si<5g9=F@TP;~IC1kJU>CF+c3r3ey2=o0QDLGFFg+nM3Lf#Pah3pH~
z<daGHg%l7hC|I2<mJo=8&niVlQX+)*aYr%Xj8$An(}HOwL-;kS(3J|IbO=u#yUB@V
zMWJg5-9jiALirF6B}T;%+##e(P^A#kgj5!MnU{bNs&Mib?{_I`)et%-CoAHu7P9Z(
zs|%967DA0|UNeMR!czq=KGj;SQFByN%M?p<NZfqyJJk@J!d-&%vh2~3A-uC-ZNWMr
zXd!q)cs+#H%%Xd8-4N=9(2R9Io>X6SnuhG{CPr@{-i9GG64F?(iQpT8)M2c&T2AUW
z7s;D~Ed<{ZY$@1E@NGdxVZ=7V+X~YAj*xc$DTL5LNXP8ZP9ZFlMaa7$^vs>sMeser
z_XT$}Q7P{pLXQyEg|I$^4=4}eyAUQwA|HnEaR`^UI6e|@(QWoKsa_%U4xvv7pM)?%
z<b6Zv7sAjGW;Rd$G=%;kd>z8T5I$p@gzyzRqN4M2!Px~=Yp?T*5RTtgzuu{S83H9F
z6cVY%^nV|%4hms#2qbhvLil^0lVn&3O%AKU7OrnXAPx_q%O%_UZ3rVn7!|_k5XOa2
z|Cu%>1ih?t{vLH~2%TPXk>i>6$}?>|`|+-Gb^Ubmi6Kl1VNnQ+LzpbJ_$h=LAxsg@
zVoVL;d*Rar3wV|3Aug~TKZHR3qhQ^d&Y2<13gPGMShGWz7sC7y=CF>(9W9o-=W-dd
z*nQ=cQdoB{VCYr*xx>&?O1EeBDs-Vl{Dm#HLHTi=<5%(iF8G_^62YZ{%LJDTGVY2H
zRtjGwxLQzkWULXgHrxBZ752()LkJs1a)6fUc5e#7FW$`|Yzbkj@a=-z1iJ_9a{eLw
ze<AD;vNHs)kX<1h9;MLz8NzPidj$6i?h9eRkjxO`haI|b5;{gn%W@eZ_&Ch7T*r?&
zhyiwJ2%!+dAtWUINC?po%n)MY?S3Mu&tJ*^VVr4-%Xv!S84;E!WC^msp^~+U2SYf-
zNssx4a72R6g>W>4V<DUf;Uw`)(%&LK9zuzc3P1GT*)eU}!?aVJE1o#dgz&GBe?mAd
zgu>%noK=pxhd$G4Y<Hif{r}+({^33^iCoCeo$uOR=A_E>!#EknRZjjKR$*)i<9Y};
zI3<ShTNpP(xW(ZRMrs(hL%0({u`r5<aW{l}A>;`oZy5JOco4!1N%_aMj)x&U3Zca!
zrR+GRX3+JRGinG=nb#@hIcs!Bc_y6RMBF)grE<&XND3o4jFd1CMy@cbjZkug?TJ07
zU~Zq1K3OTeO!+FO+IpFiTNDP&Q1XRQ?-!+D7(dKWNb-kKJBL~z3~sfN6bhqo7)8S1
zW;ok_+8(8-@R`pvN=k%ziioR%q+c?O_baBC3ZrxwWkg<9@Fl?w&opY56JB1B-fLyk
zD~3@ijLKoW97a_ZDU1L|ZWynI!Hx6@P25$&_M2nB=XUQ_+-3akF%2@RhjIFuRx=Fp
z*92>X?Kd&#eRNQn;BqTrq=nHojCaCtgrSC!!AgZOYh*^tADzxHT+D8@;tnG{j91Pp
zKkZdm_pI+!@;YH?VKfb+Ss0!$UJs*9OK0OS>N1_pj`(NphHNh3^#vOUK6s|xd#p4H
zg9;n^x@-4y|FlJE62=>0xOXTEBTDpzqj?zbF0p&_?J(X9qxk}*MHo58XIN?Ox5DV(
z#N9G%ze&=Hx%WzcEADDdi@Kw<e&A{oMycmokq54JVYFxChcPUS4q<c*qhA=GhQTyD
zh4DccEi1S?Gx4GJMgQHfy%Ojm_@3bVf?dPtCZxL{b$T$JHFlJqVX)XAhHV@BNbqC9
zUSZH6DeNuYK4E+!gp$52OaT{3|1dra<LfX6hVfQ==KwL1v~AAM+4#@3F9g37{7R6*
zp=XpqjIu%DRf+qVZH6m@+1kUEAz_><;v)GbjNxHS4r59fBUsI-<J&O5ItQ1{+)o=7
zMxjLtv+i_38BH^worJOHM`Z##-Jy;XK3<T*?}QAT>zpW|RG1V-(5(&{=$snH_q6sf
z=7cdVjC^s0T{Dx$e8xSUgF*=Tk3xP5V}=mg8-*NVvlw@a<J@w`Tn>{%%KR`EgfTCS
zOIgm<&lO5&3}w1FS=pc2CTEm|g1-nZ5?n0EiY$?F!~wfBjCRlMiv``XFqVsaMHnl?
zSQW<VFxJp?PbaNfuMj&L>Zq&A+Aw|(gO9zq##k3d?s*D@BS+fnlZ|1RVZ_4NB<XAx
z+!DrC4#P0EhvDa-6X73Wc*8Kln7iKbKMsVU%8oF0hOsM*Kf~B95?!$0bB&>U*fr0!
zy<zMVAtn2TWQM_qfb`NWmx^T427-!Dayju_3knH^5f&1->WBzoX`@0OKi6)iq>X9r
zjE9j3<9K#x=@*(6MphUHWH?j*?=TJuKSX;LayZPB^X<WYgng0A*=>b`cuXV|roYf8
zA8>HAM$6bQSe^>wA2w_Rt0FiZ#+fjBMbJB9Pn-X8kVf!k1ZTrI7sh!h!_6>{zQhIL
z7um~UT;^B^;~FRYFfKM!A02Xz^E$4EL85laX!An55e6mqx@7cyp|$FgaXY&%Z%8h8
z#Ctc4d%OgM@gR(cVN{9W)d(Ji@tD(Z1Vtiv62?=`>Jj9Q;8}JGh~Rk`FT|T9sU=5n
zzqEZFPZ96<7q%7U5KfXag4bO3ePtez6v&q66_QUde*_yx$W!3#&_Y5sE=Vpaq+|r8
zA}E#}T0DXh*}Pv)JMq#Hl#8Hz1ZA@2FGWyR_~iHOH|Qz|uPj(GTc?tcQnTz%c{zet
z#CxKdy^B&+czT4tAwabVs<Rd%NsT}eQbVw&V66y#xoSVgO%pGPQ-~u1HCr;}GrJfr
z@wy{8GtVAqwZ&UEf_f3u$=1|_cp`XRNIBistS`KgU;{x48%E$fY_~jJ;|Q9Fe1B=X
zK^hfLYZ?KuSp@YLx!>yTY$2gtB6u%?w<2g6L8}Pfj^LdL+DXuoV|F^NBWM#rTan!T
zS-DU=ZP^R0y?8rB&{0D57g{HpN6_)EVCM)<ywH~alm769RxHWmO7grf`aL5UvBl9<
zcsIfBf;|L35M+*nXJ>pUnjZ;%ELiV?!nl1z=ko}@h~SU!)K4PlE0TVKpGMF>VqbAS
zi(u%fBwi~AZdV3G@cA7lr_(PZ_$mVJRp<N&zK&pEg#T!;huEM921oFH1k=PjMDSat
z5W%nrzKP&oIdwS8z{-|(I&Ud$l01ErJj5?vca0R~QG%ld$3!qTf^otp2{McE5qy`;
zCkUAs;j1<Fea&R?PRS0P8UceSpB}*v5zH3;V+7tx>i8tj%m{vpU<PZQ<Y7q~O?K`$
zqRbNSpC_FZ&Jlfk4%A%pBDl55?)qPoJPRWDS%MZuuuRA=5jcjabc=*67W_4W-y(Qy
zIhKfbX|~S9jkYB$XPG5#zee^Q)9MJ;L~t^KQxU8c`R@^|6SDhDb$tXIA~+`AjS*~$
zAS!%w1Y0859l@Rmwnnfmf}IiUieP)hUJm^)f*tHx;c>5<lA+Dhb3af{XE~Y_aPi9Z
zX9Tt9C>={CH#(}!9;WP#U|$3^Q<FnXC&{xvVlQv}!ZRb#*=`XS;w_Twp@L8NUrC<Z
zNuGcxQ$HxA_Be$u%=E`85y3Nuon{2F2;vbWA~;0TiolB4E0e4U4oG#X<aQktWxff<
z^8EaZvc>C;e3EiFf};`CUF$v~p?n_1YdRb4-3yMtCE{_8kqCkp?EC8m7aZq~B>%(7
zpT@??le0kt|3+{<f*YLqMgOwkIl=Q0To7_Gf=faQe5=e(C=ZkDht5|-ay5c$5zOKr
z#c4|w?K$D5$nOf?61**VCxXTY9kr4@)LC#MY0A5{%{+)8e-s6xc*sitO+qx2qPAr|
ziQuVtpHZi?`kX_<vhATuNO=)Kvt$pit;wR9B8VtHO!nl6;*+S7Q!tlcZoxc)c?GGE
zFKWM1LQ+uTmWkq}C<;YUILg11z_roNsALpHqbL@|$lhvk5tg7@IDK@oXO!-wPAQ4I
zFxgXD<RoQ9QZb53QIw0Kd=wQ#GIXxW2gm-fV?qwKauhE|ks5^(#Vb)%iK2QGuSM}{
z6a~k*>8c9B5T#nSWJj{6hVWW~l-G>nK(gmQee$#@s6&Y}3P%*Gc!wWVqsx`2OWm$0
z+@hZ@SSN}MA=Ixer0p8FCZyr-Zch|>S11gs7e)Ojem#WW4xvF54Wo!85KW*_6pf?U
z6T{vZnndwN6je=BGto4PW>NT~2t?6bYW-Oh1EP2{iWX746-Dk7N!_F11AUr7%P3k!
z@pcrgqi7RF=hMo&O!lDTqw21<QT$#!?H$2(g6#!62r{T+6rHkp=P1v3S17a%BZ}+E
zp7)}7KZ>qV9=)#I`@q>vgp^aKM-(4K(KCuO+mwvQN^crW6dy(LaTH&B)m~A|cdDN4
zO35{L=*zX#R)y30*am~XEN$Vmeo=fXgq)%Mg|Awp(EE85UqrDmieIAmGK#OFd|MTh
zm~0dSX+KeniegX{gQMUlGb5rH62;J{J;1*qX`VieCb8PSFJq_cOVfu_ct%M%r{+)b
z{C<LmTjGagdu=c}ibErk#!1_b;gDJ7q#GLrXRTT(p7Bw9Cqdkn;cfB+8kO$mW8%qC
zOo?J<6tkk38pZcf{20YgQA`u%_pT*PkK*y849+TCh5iu5>NR$BW;Y{h&w(T>m!|h$
z<DMPGoG9k8m7<s{CEWN)%DiYY=P{PH{+5&lOsBd%s9BevqX_!b|Hx7nMX{J;jd{_Q
zSp6uLN3kM`B~kkxXK550&MLi1B;To<yex`;zf(?Zbr4rZu_}s<QEXy)qR7`&-5{l1
z69pC4Mv-+x`CV|G;Cev{`EY-4XO$^$7X58e@XVzx6065<Wor~fzH7H#<lO0P;8S<7
zIu}%3^mj(FD~dlwvNwu-QS25@g+0uoP6kOXEn|Nanc}77`JHqkh2AI(snqi7>gyGf
zeVjeYs=S^CqX<dj`Avj{{1wGvj;1K0QJ6GT4n2{_IapFWRutPtWh6xMVTwIlM((9&
zQU6{#<p)K6NN{|rz4kj2#nCA4MR7lhV^RD~d!U7L#I<)Grv;WvImxLeQ#m1$8Q;54
z9aBz4;a%eRhlA*Xqs3$Qzfqix;!+fsqc|7E@U6;uma43ad)kWOx*+_bAcZ4RJXfN)
zN@Gaz>@S#dEsCW4?k#6s1-2<9*Ts87@TTCcC~ga3=p7+<X^P8j<p;FkC~}y{Y2p!$
zCyEzTF!6+4pW=BM#WNwyl+}!$b<NG0_MF|3Gwpp<O*WBYqFYrJCi=E?8p|9kc8Qy=
zjQjRTsTNjpnaE=zuW4UOatp3n<zSg(Ta|n!#x-<?QasgD(h8U;Xrhpb!X_%RB&U=j
zCW@LUBT<S8mJ}>*Vpd!!VWQtx>G}-iN{XkH=rc-b6L0o(Z|v@V$wY2=%9<!Aq`ctk
z@K9L6#4AE7nW${yWfL9YVcb_twD0aFsgj-At3sGXbrY|dIB(*Di5ezqn)t!Qk0xrF
zNHy`Ui7qA-6KN*unW%5VVL~<Wx|G&w!e!$3uah+sZWEs!QgS6bGfbqL_J>a2lyZL#
z4<)rt)G<NA$1W?*I{0dnN22dcb=5Ud^18ir<SSJTOf)pn%Ea3y8kuNpqPdA<F13j$
zHx+!t#DYw9(PKx)2aaYU;d>+RPEp=8(SnTz=UXCd$uggD=%?-1u7)jkwl>j*iRVx2
zXyT0q?zT*%L~?r*@0e&O@*W2r!QyGnBlc}t2NTN*I_GRwI+@U}I$QTl>uh4WROCGq
z@0%ECVvvchGz=48N_O2%^f2+UiC!i?FztEuL(`skdkUww{94EImd=mZZe{E_u(yd3
z_w7mV6BB)eb19Ybp0lqBPLKTrKNajR_?h4U!OsP$_JxVyVmArX`O3uCCSOBJSy42t
z$5C~#i6JyU6XV&NbCjVbzA-V}#LSb)!`NT2$2;XCq>$g5_6*EjqmkkrCCI{$HZdlf
zj}^j)q2HO9U}B1isV0xVNSbJ3l8MO@%55tq%h{N#(0`VuGyU&POf%7>bcW-9?sw*?
zyzWdlv2vWP@RNxdCia@x$5PSeO{_Dq-o$JZb4>hZVu^{lCgz#=*~CH<^EqIB%G<Bm
zGyeh;r&l?+A=9&c$}c7snOJP%SJU2V;~U7|WGOGkD%?t)I$9;K*HB%`4rRV3|5SzL
z)Euuoo1?6tsb5v57DyW~)!yM*ZDI{uMtXBC2h==;sZouu#td)f++EVyRdH@GvC+gI
z)G@J1vfIXn%~Cd-*ka-zc$n!{_V`?-K}VH|Z<o+!|5N!o^bQj{P5de8Q(>2ht4mc^
zy=3OHxPfc8i9KwP@9kNI2lxGa%(dU-zqAlD5jUZm@Jhsp3B!a>c*um`M1aNEtDK$f
zoVHL2n)vsCYxH>K2|Tal@PtLJNe<7Z?P}YEBWl9@Pcq)#o=uprOq^n|O=OukVDgV$
zIBw#gi9;ria@=uX9#N|NtNbM`#zs4A;)rm{)2};d#>|ujo=`N6AEq@KubeP((nRa)
zj{oFqvs|ZXb;VN7uwW+6tg(mrSrg}Iw-fDtq*{)(b_&5Y%0&~GOf-n0VGNgPPMnlt
zs1d_e6W2`SkD)+}U)kUWC*&9q!%Y*nOx!VXmu7z^=}OV$?}sb5Y4$H1v(wdkChl{-
z-Ksw3ytG3pT+jJ{6WR>rp<t;U$|F`JcNz!F6Co_aQxngmeVz+a^1?(?%%0fkl7++`
zCgq4BXAF5_$Qwhh7~XAc&ltI5_M?IPM^!pL4q!?69C_w`SH75?={F_Rf-w||p+XE5
zV<;R$kr+zHP$q_=F%*lTL<}WkC?3N{IXrb&I6g=yg^Q+5%W0?F>9QKw<0=&cpD$4U
zQVeBdczKmtp6M)8j{c;Si-DWrlU6ucfKKgH@=7sOj-e`xBxQa%hF5*ct(Tpz#K3}8
zq42&+@~U_TT~+@`OI~@we)qL{j2~$#EI>^bI|enzAGF!kPmLi>h$2YIsK-eT;oBbD
zcYH44=`l>3Y`2v=hPf?NUTZR9s4YQ#uOyAm;i(hD%p4vq22Tw1zAji-u%2Lj!F4%2
z3~dxcW9r8+i|hXw-iYDz7`}+1X$;L`=nzB47@EhhKZmDf46R~#Glmv1ycGjK|5Pr!
zxS3og%^l6@ep?FgP7LkXhB35>;bXpyJU(M^E_YjYN7;0e_H6u}if@ObMW1xKL2!49
zp>qtM#L$;rEGaOl9x-$gO)9@9<oy`BW=p!o&^?=bwx(16gBW_oK=Pp=$wxvy7VIV1
zTd<FmgbMv=*uB$Pya6%%mBaI?c>4=}7PA+z3|+s&Zsadx_$r1;F-(r(>lg+~AxFmW
zK~DFe7#`&Cd=tZ9@eUEBd}s{Agtv2Lu(GWVyNAaxB4&Rw|E(a?CqLC7W0a&eI)*Vq
z#tM!T9548t-~_>mf-KU3m(r)izz>JNrzONNRX8if@A0S8v|>2fEBz;Fq956J<1=^$
z!pw8-f;l~u&xqO2n@DEIFeir1F>Ij~#V{|1)iJDzVSWq?VleWhEsx>n7$P;)g@RRb
zdidmm-d|!^Bogw)LVk_mHz7;1<x7Pui-Far+6r3Kzpj*!vNDEMF_6%u?o&KDJ!@n5
zJ%)8Lbh_=Jm)FPjGF~=vs2))^u!0Mfzf#gTjy7>#N>{HXyS7R@{6XXtaZ1@1!*-Ey
z=A2t!-4Vmi7<P-K%^{`Qa{IS*yJGm0@^xum!%^uSXa5&T+J&TjwCWgc$8jf)%oudq
zSRCEr@Ur?b<c=dx9KIO*G2CZI#}J4i7{jp`{*ECOLpX+b3<=hhrWJ!3v$r7XK5_6t
zB>O0Gj!Q~cj288a(jlkEqEYb_h!_q^^|NAl?~GEdU>e)uP>lb8u)XAeN$6q0BZ6P%
zw3iS}^LPv=I7`QHjr|+LsTfX6jtu=L#`lWt9QiOpuk2(o&ajtbI4cU@=k!o=E{5~s
zCBG2EMd6nOFK5fI#O&KEDqN4@hBV-9mR|@T=H80ozXu|$(fKbj?!<6cihXUM^Bx=F
zoHFx?gWuOYjNuXcC2mh>k7IbkS_pp{!?PHY<CtDo&77b<r_sjIaH{em2EOb>XRK9+
zzN&7pltp8cmh`aaWW<ppj_^r^ZrVka*XvxA99Bo2PRbkS(=IfQqe&e3<0ueE^*COO
zqhK6`;wTkI={O2YzD43F8V8%Y<&>miaTJfEMBMHvHaN4OTb<LhV0?PXI2LYl@S~(M
zal8~q#W?!<m9lY^i=*lA<O;Nq3F?EV%KnW?`8bHdqmE+b-P9SK*I7w2svO75al8`8
z+Lme+<|u^xRUuX5c)C`lm+s;PwMHB@;}|eH*~xN#t=5VoH4a76sd>%b;qP-NiR-$w
zI2>_%VM(V7;cC_uhdYjyW7E^)Xuvj%BO{L5any;UhSRzGBj>rC9!<DM@O8nuf`Oc#
zdU4bjPUX?6vr!x`a(ebQb0xp#Bw?~|u*z|?jH6W?&Ejy~R$55Gn#b{G91A@5u3&hY
zy{>pGj-0ENa=C01eLD_MQrbkHqjMas<7g8{Tai%MF^+e#c{?HP1v_wvEmo+|NxT_r
zoaFCHUQDn{9PbIQlgsmd9PM*?NV><-BaUC<{C*H0#L+X3(Q%9swGZR?JkB4L;v?~X
z97nG>>Xo<4*;^!i1Y?EMKVj#_K|<Frj!(0Be<7c-U;ZPxJXH8nVhxXDL>ynm@wIpd
z#_>%YlXH0niFdHz5J6@)RLC&FsWX+McO2CGHam1=oTuEYRd%U+eafgfR$p-Sd8mwy
zV_Y0l;+Pu8_&E46+Qc{}#qnJn6XI|_QVxwt|6`Y9%`MwDmdSnGWJ!<<_3z{SiJ@yc
z%|j&9;^;ll?xRBq^+y_ia@vA8eu{%$x*0-d#(DE=OJ--w=LnfAI4_R*+42>+JU>e!
zOlKi`<glY&O?7b`zsBK@^S7J$EsiB|Y>Z=5+@7nKN*Pwfu}sKvK|PnJ|6bS1I99Q~
zwAHze^&(%xroN-Bjbq3tmG1XA)@5_o9@mCA9&K=39ig;6?${j17DkC<heX^ON2i~i
zhyG697RUBDmNv0BxM+ue#PLrq56MnW3vWCB<Ve4g#Jizgah%C(-@fgRV^17=B@w>I
zUMIKbMJ~@i4uM>r{T$;$$aP)?gd5osUmWE{IT%MMjtg;I<kS>LB#x{&4$vTPI-+s@
zDg{ekQB5|EmLB7b^n=0|A%5j+v9G9!I4lVzub`+0*}^PU9RJ4gR~(1gfNPaCO_Mik
z&LeT0jN?=sN8_OPnBd=n^d1*-;y>XeMZcrG8gl-_21!dlEy%-%$@`yAIvdBiIL^nx
z_j23kOMCykn*66TvR3Jo+jA+7%W>R{<5nD3*zB!UDqN@6=eQcjkzwjJHuX+r@O|gF
zQOP%?B5zk#KgjK2HQ9`-Cn|U2xX0-?fj1KTKot*YBncEt;30c0&cClBPXdpnou9_>
zERH8}H1Da>ot>{dkJ~SSCnu1SurCuY;z$xg&Nr@KKCD2zITOesgvTuGKI(jLf-_eF
zo9f$_2D-cwR4{>jLh=h15M=0>+@3<hYq;Ho69_spiX`yS)bxFM+{Hy+K7k4elt`dt
z0;Ll6ioHw%C(0z37QSO-5+%IHc`1Ri3HxTJTmnyrJ9oEo?mnefloZkv$Vi})@X86i
zoWOey_bUmw6ZQhKN&+9OcD$NE)dZ>~P(1;cD7+@92vWa>keUh9%9f-iz?B1o(nR9O
zma9UX3Hz-chR(_DAuidZFt6HDhSw9Qo8Vt=?IzU(J%Ue)xOj+7y#(rWw?Bc#2{aIS
z!vv0xwp()kVke(|7C&kCtaoE_^*8M8g{BEKOJG_8(-UZ(z?%ttnn3>qS|spR0`Di#
zHG!51v`V0D0`Da7wxr33t?lNrlWmj0#@rq{zEHu}UD_qkA%Ttwv`^r>;wja}+f!Mm
z1Ue^hHMi&81QuL&nWD@}bxGK-VZ0|nTvt$`TLRq^_&9-H3G`swCeTxI%$vu)`s|6g
zxhx_1Fk#;+enis>Db@0LdME66pXmA~(1)hdTID0%PgslLZjycp%xmgo=poHEs?QSm
zB7rXx7?53;&lBhpvggvT68JiS@ho`)0}~jOz_0|qN#Ob>bujCju=h#c$m2P4OZ6{x
z4o%=mOZB#;4o_f20;3Wboxs@!_5y~x5Z@;3{gaV`Tv3ycNnrgHbzA~t6WCwPMYmy{
zozAS4Dz{lCBrqv~$q8_qWn#kqFq{XEe3-{Gg@&5IqCB3d3Ghs?UQ?VS^LYNq<Duk-
z1b(Cuvi+G$0y7d=D>a&#z^nuoCh!Z>VU13?7Kof=P6Bh;8VSs22laC|eNAoK*G)M&
ztN(Mh+M)z%6jB!xRrmEa?!UiPeof%F1eS<|jj$qtrNXJOEP>_1*RFKXyHfZn!8@vZ
zwU9M}#p-ALE?KNg;6gq7lD$5Gg!C*=mD!YlHvuDo%?WHtU~7WEX~r(Ls^;7-v34Zz
z>|6IA39MMGR-EYkA46w2zxvVUJ838Tons=-KNHxUz@7y5CXktc&R%Ze%G=b%i2K;=
z30!8=g`C9pXPu|+q%#(gCGm0gkX+7|bNOlZFPs4mgpN*nLn5b6m;>a~IwWQSu>`(7
zfRP6fXBB8LS(uOoD}k&8lCqGTg#!s3<Os6R)#4=>e<kpeg|Ze7CvYTzy9wM&;3(&!
z=h`(ISOUiq_&Z_G%*SQyUtv%JClfd&xt|mKNAPrZdCny8Z#F+GgvV~2&z4+B;9@qv
z#ENJ0!0KeqEmvuW?NvTXC^%iY!F&_;YB@(<&rObTzcRjkI={8NoxmN=HkLx(d8Tqd
zfd{nVV$Kp49wzW8f!r4ISoYJI#|b>=fZeUoJ>e88yq)EECS+R$^+k4Ql7(c6Ld_Hl
z5S~LYXSO_-1@~Axsf#b1c`f9#(CtwA*#9|p<x0zMp@4;g7NVO~3fET3C?uTT!WN1M
zFPbeWCZxD!zi>!}l9s*NFJ+;$g(n5mcr#Uo1vsfx%<JK8LOBcNEqE-vZlQvOiWXk8
zP{RVB<yEp!#lou=DvS4J!B+&iYe$8umi?9>H`1$-+_hh!tZvyeQne;3KR2ssp%%Rs
zb{x0&&r>aYS~yLyQ0`kNclDngQqwHd%j<ElRGXdcFS?u-Tx<ag=@zPb70t5OV;L3(
z<@IzquhbTA9l@?F`C-QpUD?;y-kYs!;Vla-nVN<A78+P+XyMnKPHtB=ve4MVwcO4Y
z7MfTnme)0Lu=`C5ZwRNisfA|Qyt$CWna<xzI;(9}j`<Ys=(e&@XocFwLR-r|_vUTE
z))tQCb<tbkL+3jd&Sxqen9)H;JHhsX%O5EnEnNS~-ARz7vygWMyRafcY6KJpb+gdj
z;t$HPgvMau0}BHzo~VPK7CvP6S?FisBMTo}s6Eu#$Fg_r{w<c)X}P191!8Xt6D+mL
z3&*GHou5!GkCSSA|KU>$&u6*&6MZVZ+$8zT!t`10y}8_9Sp0!I##{K#!iG`KuPh9)
zFqHksE<30!-tHX8mbXAM*h2F!({qe*j;!w*W`VDM@nOL?mc6-6KHTD~4(RihlixXh
zYuTSb(v1`{N^rD=F+#>>hmNywd$vNg2^J<=m~CN>g-I5E$m^L-wD>o9`zk+0kYuWm
z?=4IdGJTXiY5!>1d*(k`_Pe;e%5Zm`WQK*ABALZzvFz39H#O9TWnFVE%(t+>!aQbl
z%sDJ)8lS=aY+>p+h3;1&3oZO2WRc)v!On*LA}e+3uU3{?SZ3jrg?}t8x3I#(E(?EJ
zSZQIEWk06bW?{93H5N8n*u<vW>w0|KxmG&scR}{rIyQo3zf4QMfo;gIQ<vHAk8QTF
z)q<JVbG)m2iv{Akyq>nVl=FE#+b#UTiZic#&YiTzMGDCd%YFb&a_oc)`8>NV?4e~^
zh*;Q56B?r!76$KhaNlg7G}?aZA5=00bwRI%x;vc|`ZxgRW%vb20z!foLfI0&eH~@l
zEEL_O9I+6y(C#laZXqEgPaY>9fLa#*8lnt2qP~*PlVzcGA?E=L2WcBAo<nSq6whCR
zB!@X#+uKo&au8Yg+d|U~4!V=9bv8d?VWdYr(pROtT3k78;f#fw7H+ZR7S39@%m%k`
zj%glBzexLBpm5LmJdMXtE^wY%?<C>iy=38TF7@5{>Q!3%1bd_D24@2r!(!)k3z?6U
zCiy&7uG#XbLFKk(zu54YwYG4F5iQ)aaNoiM3tY*x=-|Hbp>ytTm9Gjs6ba4mk&rP?
zSGRl~Zs$I=@Qm~PW%ap*7nc17JD*?QJL8(0*M5UNB@4)clEtqrkR!{s@Jd;zoQ0fO
z$d!fMS;&)xqFE@Gg}hnFm&H96rBD{~i)LtrL(|g>2rnqe=&7TV3yWG2!2(`|@1*@7
zO;-VJMfHB)V^h-I-8Jvld%(~kC>W@uA_xd73MdMQ5(<b4ij*`+DBU3bNRf~b3GdA9
zoVk>w(kS46pO61tYt~--eCIpgIdf{_R7o#Nc~QEnvl5X{<h>4Z4nCF<Ue>F|ttc!f
z&hlPV5JE{sA<UD?UQ`ha+<2K6gID*Wh8Oj`sP9EhFKT(!e>2uY=38yAdVr4lE2EBA
ztyZWj$VW_tM{fRZYT(7~hM82b9=aQP)uM?;l6Vq_7fvsFdeO@Zmltj?o}z*m9xt+K
z#EX_*<ap88izZ$)^{Vz&Y;305v@nsOd(q5`=3;7Bb@g)lQ$6=USy1_LeRnG_T6^)N
z7ahE4<K;nPXy-+HQGREihciGpLdqZ~6Y3F0vmL!^T8lfPaq4@8O<I?Q&Q4x*_TqyA
zdUr3L@#0x8x_I$|7w<JwaXsh7^Iq@?IPQSw_H)_q`L!3lc*%=yUiHxI%A302;0_72
z%qY0L=umq#TdxOiq+>Q8mj$him%Vt!ixFOo^rE*HuX_24i#K@7YqUOIye3KQD^W1I
z0jIQnUi9~>N9_PFmL#=-UcAl>>6p!HdI6pD>(2R|Z+h_-Q|QHTF9v(@HnVP`HdIV;
zZq+-IfkOm2z{=Nb`VRBrT~Q-HrMWj0(BEg0Vi_NJL4zFsW$eZ4x<@g8yqF-SMtj-o
zVyqYAy!e>q^@E3VX~uZ*`!Y2eOZ@}Woa06F6E9}RGq{k-T`cQUiN#*&Vnh?Y>W|-=
zk6n{k=*84ui_g9If)&g_O#@$gF~y637eOzkdhwMPTfErn#n)a;^J1YFix}LC=@P|U
zFJ^c#lNrVI)O62cJIYigJKKvp!_?Z$QBzcs=7{op*Rwgde4ZEc#ks(XGRM@bIG1O#
zbu4Dada>GzHC}wjHsZw!FTQ7tZz`Qf3CA)oh|9fdO4!9NF3zN-{0A>qdhvNX*D5a#
zZFGJ1iN<#uI@fx!&Wnw_k!G3vEx+E2R+ln1@HW?Kx+YbqU)Cnx^5u-pUKDEJW<VpU
zZS!Kg7e~D~=EaYa$RmO~*u+SLpIh&kyuz_l_%1JY3)v%hz>B>?n6Q09eiq#C#V=|3
zvY9G>4vO=T7l+gGU(-4jud46C<6ivc#cA<9!NT?8q!(uk=*J4^k+B;01RiR+PI>X^
zWfz6_yXTzYCx91TzWjUPXNhd_{MW}h{IF(<1%0XJ^P=_z2g%h8H+@51gxT8|$Ymhn
zMbwMGy|^LDF)vb#%Zs=d2``dfP8h?uGZ;KV6@*RaYR7uNbIuAUcK|!*#d$BTuyX#Q
zam~dAFBf;H&(DiqHOkNadEQ;^l1M1LEQEvR98$mP#Wk<mbL_eopV^MT1gTGc(~DbP
z-1Xv~q=$bXZ?ihF1Y;SrnXja)#E{JU;`NYK!i#?xmlp>=bnU#WrVTt`=UK!}@}Kmy
z507RtAXA=UfZx1F=V>sI+dv5eB@N^;kk?QH{Y4GrGmzg<a|sF?D)CPkI5ak+pzs2M
zA6#%yUdTXZLG>kG#8B@)>MG<cX5h(dYOX?YvBqfwr403aDQ}>Hfzk%b7$|F~p1+)d
zgRf*>*`@-%T}^#}S2VzV*s2<+W}uRR$_BW%+opTYDh6Jd>D+bPNvtl`-h0<Y3p7i8
zVl4w540JS5+dv%ybq&-r(A+=^1NC_$2C@t|3^bIm)Yl9&GVsgbT<jaiJ*!^fIA-J&
zUyp%oAua=MAw3Ri89N*~%(Uy-jSUpsn!V*mPt}4tu?g?-Vbi7tbOWchd76onlJP%!
zS{i6&psk_4L0XF)&edrnWWwi8Zj>}!&(%(R+Z$?P&yxoB<acq$q#7HXPZ@aHz?%l%
zGSJCDX9GPA^fK^_foBc8Bu1Vyzy}Re-o?Q4!jIolkDeC{yvX!4Q#ZvIDq>dy-3&DD
z>GAaNbT`n02Jb2P_=pPrvVm8aZ}*)84D=Su{RLk&(8oYu16*~*%{MM&xLy<9Pmn^U
znZa9M$avkrKnb#EeCEiKS%VC`!Q9T5GrpB4?@!Lb2HrOCzJU)!=N$v@8EWurh=HL7
zR^G@MX5d}k+O3Qx1=as0&Mo9xY<_qSH?X&ZYG@-Q;D^M~IU|L?|3$_qgL@Nc+>DnB
zqgnk7EcjOY*uWUxY*|;yr(HGjyC@lN;1dHwObj*gseuUw?iskx1Q?iP;5P#&418u_
zvVpAzwi)=`z!wI-H86+$zkw+RW*C@hV5)(ySUDwjzCL};OqSG6Gt`?^YO2QZwdstg
zpw4URQf-!@{!C8m>YQz;(J1n_$GGU^d(m72%M2_xFwekzreU390ZYg0SjbEptrQlC
zlaj>-mI(h&aH(K8x07DH>lMsB1FH;hp~3eCe&D^IfXCtHs)yAE))?4eV55Px2G;Q|
zPGCK&lPrtis)WxA>aEXYbBV+z1IBUZW&>M<&=iByckv3fjAFZi9}WC$V84MKtYfUA
zEEHyfft{>2M^qi##oH;U@0OgQbIn{O^t(L!L^9ElGiIKWT$u0q#lQgrqwi|R+3*eU
zP2iA$!!+wvh4?Gmmw{u<<T)B2<wt3Mu_BX;xrt56yZOpNwTZVJzZ*Dd;12^{1D_6e
z?JcOElDJMA;H;Q4!oT@Xb##US)8GsuoHgJx;1{oifq<c2EyC>Z4FnB@81SHn1LAyp
z;ad|YfbrcsY9Pkivf34AnhUw_SPs5#(>H0rGGL3T57#^1Uz#~Hs2*hJ44gOAo8eV<
zIE^wd82Hn`B?A`?WsS4N_`Y#j6gX-8ih)uc)i19?`_-ghdR;ScU2Og(__u-S``kAK
zZwlTLye)V~kP3GVaM=aPKkSwbcuZuQcwpcm@5n?kQ+2$L*qNJnLim3MGE8Ke$Ylbi
zS`d`mM9v}i_i+!eP(eM9iM%FG7IIqEbMl$ES5W8mRx-PQiGrru*w)^sN}-TgD`LW3
z#8cQ*Z}=ocdKEWO!bBAlRZWyMdAbKGn&9$^(k9B7C}*O)spePn{kg0d;dHeF)w5r{
zt5q=7WItNq3-IHzu4Jldhm}qBw)y)Rt(uAICK{R0Of><ohKX7xYMZEOf-6Co^UO)U
z;?|*k6ZK8hW$=W0yCXI*(a=<NkM?UW^{^JTTBqt#mI;T+pA2xB*jO&7EvvyqjW3^6
zb2GX%>Ybc#wshv0Xl&v&NplkuO-(#w;#qO(CYqaQVInJ$(agku+_0DHzf80;(P36j
zCljqrv=PnrCidOuG=8)*ad)vZ*~>*|i9-5?bJ~+8j`-XiXtSELqu^75Pn+0!PMfn%
zqr9^i+&|4lv(JgaUM5~P@w|yHCSEY{q6mAKc*#Up;bvad`d(zO$ejO0%?Rpls;_VI
zZ)SOVnwZf(o8%QHzL5SZi@-#0Q+=)1enpjL*zJD4kUqGO-q!??n_BlX(ci=XG5&_&
z>m~*Y8D!$&kJ`~$>R%<Ni@a&#Es_6tNoD(B6JOqNzHQ?3Li#&`D+=kuOuWlV;zMa4
z-ZL@Wgx^GfC2rya6WdH|H!*_gF)`D`EEA(xrY0scI7`#SM<&LZ7;oZZ6Jt#D9j$R_
zZ*L)0d|hfd$1+=LI5{Tx2|Iri6HQDqad@9Lftj{m+dWp}2pxysh@YA2*Uk426u(&5
zP5i>d6cbaKW)pPM2=OZuUz>PkoU6X2x|eAz>%}gP=zSx%IbCpu;Gvx=+h?=Mm{@LN
zg$U=Em~Uc%iMisOXR3k7NFlxPknDvf7MWOT;`DjfViQYDe8(D6NT>5aH2a_9*(Aja
z>y3ZoW;LLMPWpat;s@4S6Prw|G_i^nKGilbXTH<s?$W&boU7T`muhQFtTnMtIEO^n
z3wgSdhhFxRZjLi<W=c#<c%W@H!J5XgRQ|9cQMpmU{iBH;jMT(I6F)KKCib$u6xMgL
z>B*d#-6nR)9n~46S_-c{>{aCSfqf=^HnE=_LWS(73hTeHf<c{kKwha#_8}IB34_fl
zkLOpD8+v$7n>fRUU~-yS_EABSV<wIZ|4s0O;O}YQlR{1jvSRn2m_wYpGW!p9J1oJK
z*^iy3q>yRz3E^g3K@%YpS4><r5oYWrF0z8XsAdvIO(acNrW&k_3C0Bz3@cL&ZC25?
z&XkF>ruzSR=};!8Xr2?x7fhTt)f7!$oZ`5ujkDe-YH9zUV*HYc4c8r)nRR#75a%@$
z*I67s<nrM!6MvhyZ{i;lH%#0VYj;fCVh1u+yKQ34I_Jo#+QbDahhHtM-!)OZkosu7
z$A&ZAiHoYi{>wIK;t@+~zw?2qru1++&3~*Re`sYYxiWl;jJx0*S6E;1ffGLD_MxB;
zg?z~4!#fdYJ|FV?kk^O#h4rqJTyI#;Cww6CqO*YT{}tBhEbK#_NlsqHd??~WQE~3C
z>m;Y}kHUI!ABZJ<C@F-THp}=>)`xyR^!K5h59NKBy}{YehYCJa^ug_e$A?NjRQ92s
z5A}Vh;zLy*YWYyxhiVK`DOU|2YWh&!hq^l*ys|sHlGoi_rop8RR|@OzJ@nM^sU;Y7
zed^iAM>cWWA$J2G8v4-42hE53mt2J=X7HyUy|R38_|QG9dTd_hold6&4E(OSd|Ygz
zeZAa~?L!V%a{18OhsHiM@u9g7EhLtvKIlF)lf>{}F8{FQFCx#5haN7MXekM%*`qaG
z%j;yf@nLtRTugIYiK4b>9=Ms&-iIfB=-@*~A71p~B_Ce3JWu(sdby+6x?HV`=ui95
zi8bVx?9LMK8Np`-pA&puu!|t0dx3W(#=H8^&4<3cWm6kmCbPQ_Jg|e0fSS!bJ$&Fv
zB|Qau`S7xkR|I<tzAD&9keUqgnh(8~XT4KIwcG(dyzawSK78%NKpzH4)Du}fe0bA`
z;Xb_Y!&^QKW~K6R4Fz^|PzCX}sBtu8^-<SQA0`yhhlyl)5&gGg+PlKv6Fj_Bz2bi0
z!w4Tf^?^HZj`ZP|d|8Rz+Rf%Jl2JZ<=u?N^jTZdKhmTo@uR6#0@QFyq3XT&TFGyu>
z!my`^PD0}oeAuvB75XF}KJy`1M4#-#m&~q+`*R<@@WCpc<r$yNi9qz4;=@!Qns(2*
z@~(?`w}?KCMK&vEh7U7+_(nLL(}fhC?3^WcG1rHAtl`YV)7rNpDREMp<HOi3j#5SS
z`92;Mr)tX*9~StqklE;UF7jcq56>1=gUfXCBFXoP^E+m2QGHTTeYp=Sn9l*c8Nl~G
z{NTd@KMwk_(uY+(^zfsnAFF*><3lk&iu<wFhjl(&XZPa6dfu`RXMH&5!$x)mKE!;8
z`}pG;TYUK0hy6Zm^<kS2yI5C!*zUuREIS{5@_|d+So+WQW~Zn9kC~s)IID+mM>~CL
zXpi%e?i9@8q7@#3v&V<MKI~(*%+Y>7%!4`9cPRNUOsWqj*>HR~$f}r7bNr6`a7g%J
z!CzJHk$r^r=PKhzeK;m^@~Wnj`oFOnY}QWr@VgLlYMy5Dd@y`4+10SNOj55O{4e44
zf$w;)8S2fjlh?^9a6UFAuk)F2HNOwU0Lxtnc}PfDFd`Ub`z?`0FTRl`Sf$%Klgz#G
zPC6}dQeq29u>)-3qLZb0-iHf5T$JMGAQ$&(`O}9hJ~h;Ji7kC#Hm}P}=fs@%HfCS-
zVR=#g8av5d8p+<G`rkg>kg!kqRS$O4hr2%96Ui+fZVUONsD4Mt;`^TaLh}06>YIOj
z_}7O!o3#gQ3x4FEo%v95>5<@n=^V@Ot31r~BbN|z2+8e76WdK^*Ne`!wbi}kqY=N#
zL-McvS^+-_`cX&{R)pkNcVXe2Yea>jBH^MK%1iiB(vSM$TS~C1AJzOQ?ME3u%8I0t
zAC>(m=SO)zDu{$*;#`bYQ8+tu{ZnU&jjk$>gO^fW^t$<~!B+RH(b(F4)bOLG_}22{
z!Xx+PqWYt<IVW}~ojQKh6|Z`NlyIxb27Wa3qmdt)AI<$};YXGq8&5g1Dcr9){OX(C
zDf!0D>s)?L>vg#O@c7kUc6<>U*4ddOnpAEqq=_F*h3IK{Ga;?_X)XO|<;RnLbdUtJ
z_M@F2`HJa$M{46oTfdq`UuSJLx2d79y&pX7j)dv#=*LrjJnhG~N%fN1$&b!{JfFUc
zD#i3?{OJ2eHm_%eJSX_mp6o87^FmtlMJ8K#*R-UYAKlZuQ+8%AW}_cV{aEHl#-of^
z{FuP9_M^8Sulmu4X8riUj}d;n=0`t2hWatgkN$oP@Z)VilD(a;`!UduH~o0ak1Dxy
zvWw}1{CL9;lFKD>x)#&>^OT~KuEC=GVKIGei)@C<w_STjk}-ra)^$<xt{?CDvHdmm
zx99M+?BRaA?+4F9BBuqC^|{;y3ucb=W1Jt>Y;BYuANnzx^-Wfaea!5t<ot*hzSa2J
zGe(S$^@DRBcx`t%$4jVB1V0tjQx4jh<i}@z%n*IPq)qnY8{wb(@r55>`qes=uLMb^
z2$?F#M>8c~`!P+N+#rjuh0`VM$&a<%e`quPm?hO_wjT@qYD)9Be$4S>t{?M6ZTbtD
ze4(1}hj)czfnU9P%_^qnU+<!Gk?1e>V~HQR`#A4Tc7EqqZ-A34x%jVXxdh)VxWbR`
z{rJI;C(f!Cx|UA?k+0$-fR?QccFSu-Lf?1KD4liUT<^yQ)_mb*I=VOcQEz~AV=>*e
z)Valvt$u7{X8N()k3GyrQQOI?e$TnXkDury@<<3-xkj=n!?}yqW2Up&KN<DcIQ_pl
z_xka(gyO&MeSZ0eeADr;jB7vp8IjNXUJaBV^5d`{&Hy(>!LNQC@gu>i;>S_Z@%mx-
zam<h7e*EUg2|vz={C7X>rrG>#IqgT@-L8|&=K@)${Fw4Y7767q{OkNfG<m=6b7h*s
z!-78E-5!VEk4k;j2U@_7pkFO*2nmv$D5gh5Gb$Kk)p{d4F8rJ{Pm8hpfdHq+BlTGB
z$9W-V{Rnqab@+lG7kSqrr1MWduK01)k4t{FOoNik;>A9n{F)zk{kZ4H^|bz9e*7)`
zhTu)XTY|R*?+7yN6H`<dao>-BM8X3o>Es*Zzs2+iemoT6Bew1UG6T3YG3P(F--&9+
ziCh8oaGBRyarQjKJOShlph5r@1IQOZ{s2k_P)gLE2%vBPMFQB}##11Gf+8$Lo&6sE
z5F;{pQ4tmk;LvB8ms@*^2h;!}C*hQ!&50V9$@B44I)JjGRz{G|^pjO{$_3O&W%+;_
zBK+%TjX&Hf1yDJF`T;Zuph^H$1E>{1?EtC;)MoEB0;oyCy+;D-C4^D)AJOCE6&|!x
zyN=We;Im&m^#Z6Xu~1>2tV=CjTyGO}HVi-$c_TsVipsz&;r#pO5W-m80eAv@%HWj%
zvIEEo;DrEQWFiA-5<o{$YZ_1osXQrM7i=a-gUthIA-ttvtF*kekTwCd71Ay(Zy!*H
z8!{lT4kF|nfTsd@I)F|AbPnM8wB|EHo)dglklXAq)P>!dUD7(P;`&PgbPb@pNS<uz
z84$_n#scl^;uZVO*+b+#)B3%H)ZCESTS))3{M7*Z@Mafiy!r}xEr5PP_}`Mk0iyZ3
z;6TAa0ky$P-TNw6-wI%G0L?>a5yIO6yc59v0R9PJh-i)v;FAD`3Lhr;ZUDLdb-fqB
z@BrQq-~*O#0HXuwQe59!)-|lSJ|cjT0gMV@P6yXl#r4<2+REa3yFIx+3SdkCV*~g&
z0Lp2E3gZHZOmiJR`~RBcp9U}?fa3xDCecl#asXckFo_i=fXO195<s(3nKw$fKM#QT
zh2WR03=a3f;_B%<m7UeMs+gt)@J#?aSqB1`9>5H~jR){U05b!aC8m}K)M<~i16UeR
z&-!nf>;UElFi+(3S+cV{RN%#5B@0AIzEH>_!Nr101ixc%V`@~07uT2Ze&>0(?coZE
zh>4-s$^f`VZyj4x0INiqC-bfjU`+rdyw(PAtGG_GA%KkmY!Bea05-8THS-Ld=h-S`
zv*4D1TGvK-krMj00H$Rr!YFnG)D)Nh1@M#Dr{vStIZRJI`N!CMytX@lIwkZy0qhN+
zbqRf60LRiP{5gRA0sIoc0amIK`p){Eqe2b}9uhpvr+^SD9AQD1&`G8X77wY`ae_H1
z2CoNjGJsP7#F*3ocN4{#0L%b<0sIkAzio|x`o19XigV(ST&$DadDS04Ab>C{*d~qh
zD>(mwA11*7LIH4&!5~xPms%u%sKmmW%$XHdNp~WEWB`A%3k|>u;O;feW)9HKH5J8K
z7VBOo4PFp(E`ak?E9s_?0|X!J(JnH>OXzja$Q%#W>W<l01Go~vz5O1ugg&5+hmvdT
z;wt6*RYLzOfWO(tmeg;syaMpf_1t6^%G6F&weEHRcbI?x2Dx)8Kka#cj)&x40L4;@
z{2Rc70ImgbJ&1<^JYrlyj1J<z05XDT7DV$PGK0t!M8zN~1%aSin_n`BQbFVnB2N%`
zgUA<z>yCqKZ}SIXSz4hW3J38-5O?;tc@+>+kX~h!lL|#dtwa#^9Y@h1iiwl*;z2bn
zhlCfGvvF2!=^)AkQ8vi4-Lv>+QZ9)6?c6u+xyuLf)(GbpKe;Ld)yQD}y&Cr|sT@R=
zAnFEDFNmr^R12aG(|<1GdM@Xh_Sw~gsKGQ}aq<jM4q(*`s$r~JLHyR#Q(O2urQEek
z>RgggKZpiF<OI<;h=xJ5Evf(Sp5_qJC<sl+;ssh(5E~|I^nLVqwv#y!M4OEccM!cx
z>YgANBwIM0Uz~O{31Uzqchevo_q5hVHn|=IC(5qhrcu%&h?YTg3!-}vt%7JB#Mti6
zzZT`RVO&A=;`CAw+>o|i5YGxBZy&^yL39X$V*wq5;29s>BJ3&geLAhvDTvN#{tR!w
zR2BpBdQODT2hk-6o|^rF;ERHE@_l1?QCHU>&OdUJa4@<@5dDJ~5Jb=5|IgU(6~xQJ
zUr9@P2l1-#K50qcAYM!JenItbil$x<Vqg%%f_OKmKDr074wQBd3E~ar7&n3td`ob!
z;M;=qdMC)fT8%yrl_2~P#DMRyh)-)HS?El2P#qfbz97j5LPju){`T<5l2M{Frld~I
zk7z20UA*5Q#xSdyk|34^F)oPlL3|U$4=*_Ri2Q_Aiy4(Ci~Q3dCIqp$to!A9YA5_j
zL3}2+HaUpTg>ZWf&cypd_?LoH1bNF-gZL`VzZNnrsQx$7YkCk1OX@R%m>E>v%d8;g
z1Ti;=*+CSonnTIABKLO8eyyH!UJ&z{o|O*r?wWH!P)*2LC`htM$l@TDq$S@;tD)EO
zpgLT8We}@^*jZ9v5ybZ*`9bjFP#1l_(Oj#8*cim7pgMbWO%Q8?SjUDuS^eBz&wL)E
zZ4ey2!AZV3sP+_M39>iX62w-vtVubatjXTS%*^B2E=clY5Icnbl$QKY$WBIdR-?k6
zAod2~WdjUiUl2bB@kdbo3Ev;YFKn9<i@&7KO=b=RL2^*=kl<m#Uj^xPM99$~j-@5X
z*=6O^>2*TvFu}hEaWc(M1#w#V8NtL+7Zv_4srSp5Wd`A6H47re?(S#JA4DXGXb=H$
z1_eWGbk`hV;VdAkasN+lksS+yyB6?@3rPf#r2X7Zi&gPgjdGr>aW;r^QXwz1m9gWU
zqh5_J2GwKe0=w3w&c*$me+K{mJ?c^rC9kO64zEa%tAhM*+~ph3UqSrM?lFXNA>0V!
zW)S}d@gRs>?2e9T_oeOJX7|gE=xeQTDV>{~-wom(v*>9zuZE@ce?;fT1ocAxFo;Lu
zEFQvtL1cvRL<j{!$P6J@2zf)u7edEUIzq@3Lf=w)ZoyHdbn-=|)T_?_O6kw9)$)fx
z;h9o8G4KbsgFvAW3Wva{wpT>0NC-tk;G&o@Z>V^Sh0q%A!ljimoh3r5D<~O4sSrws
zP$r}{gW_??k2ioKDK84OLZ}@=1>qG#s1!ow5V#9Rl@O|i@G#70hxTWS%xWQ251~c~
z4N9vN@*z?)ga;9K$I?1^k4IV^vET~99YWm@>V;5WB(qBE4u%S$VF-;xk|n4K($qjP
zIHt7j41vnLYFEngh;L2^jYG&5-g>!u4`~uYyXl!cKet&3O+$EkT8=KrPvH4;9Q|&o
zx8If_wBoC87%jtS9YUKB0wDxLXv?r6tPEjQ2<=07lGz)=haq%eafI+j2yce)6s?8O
zErjkNbPAz!2+xPmC4^@r4bO(~Tu7}>;w0zC%bNHpJ@F^)1@V0;gsvgH$k@9%cjr~-
zT2AZc?D>_mR;H86JwoUi!s{%r5PF61atH$$`&{i@3+MLI`YWsq-JQKdxVFvts>tcp
zhZQ5uUlY<Vg#Kv>CuLEG)9*Ryozvb{UCbE7QoiG0RxlIZ3Sn3X?}jj#p8z5CAK;x3
zmP~OC31RL-N3U+qp&<;v<fNqeWY>Ek^$>ZVmH!X5ea&!|-E8NwU$qZH7!ktAkeW?L
zn~x`q@$c^F5IzcFI^`iwCczlF{Vzfo8^X8{CNc+N8RJ8U7tQ)aER)pzLHjg>39M0b
zH2#j@R6W{ZswPR=K4X;=^0~xCIb-}XgejDda!w85>ky`~;mp&%3aQnROk1CA+G~F~
zzX_?SfU7=qaaWv~tUn?2so<V3>6y(t4XN3E-_mBq%sC;L#j-f{jyO-`ocy-vxN`xM
zJ=wJ|ghe4Nmf%YSY3H{l&hLaTO-q)AusqFIgz&xa9|Wn)Age=I6T+bo4u`Ndgmoe8
zmBesy^!gAsGw~s85Xr_6HifXl?>;h4J1I?IYY5vy*b%}{A?$17+RoNJBWL?w$B*JX
zb;(WP|3cUq!fsaPGO8I~F0Jokmr_QrSw`nhlC`I}_OQ>fwBBX(eIfiz&6SS*(yR_h
zq`&ZH%jk>B=m*nn?WZ#OuPm>=YGK!j5RQa!G=yU!`AzV62%$3i%`$q)vU-cMIyL!9
z`FjW_#o#Gs$QJFi@G~sm<yl?J>VF9FhG4KCXpm!y(<ev;e+VCx)k#7jgxRZvQ6r2<
z2vOch82Q48vF5OEVO0qs5kiuUB82M_g%v_7q#h;w3bsSwe*<nVdNzb}Y}duJ+P3kW
z58;9+l>DEEdjMW!V_%W|C;PXF+9lzaL%1S@@~a{6pE=22A^a`&{}JTOq8mc^f8!>b
zo2}gvye)V~@NNkAn6?$!_r-bbfQQr4^zu3XQdmj-+j+!-2qAY^t&rucq>L~SRvmI?
zSdGr)5@aIzuZBWyqLoK{xeFGZ`NMc3jB;U=52HXBJp&C3hEXUC&Zyy!pu%Ak38Q2f
zrNT&F$tW5|@vu7Ef?rI<!gzJLnn*)ui7+}=&EdlE(qZ+Vr;OO=J`A*9RygOee=;ej
zLKsi)a8?YX5)F3D;kO$z<Y7s7<uIy*Q8kQxTXS(LyW>hOF3GPJ24~1WUYlPtj2y93
zD~#G<)Cr?*7!AW{6h=Lf*JlsBM&ndZrib&m8i;Uv(HstHXtWbnUqD%5IKr4+R^Qmu
z<qX3W2BT)N)~}Pzhqxz<Y~JG{&(MSFm6bD*8jF!8f=$EF8Fi(cW?^*R<7pmNWlc2>
zmuzN5W#=Ep+A!9I(I$+xVT=u9To~=bXwO0kqhA<LhS4F6m&164c@@S}v=hcN%n-5P
zDU2zjowpOtw`(|mZQ*2}_G}o>h4DfdFNX1aSoPKHHoJsjv~-fQKUvq!`BE5N!>T*&
z8AhuHZq8Ef7UnRw>i2fP;bBMJLwvavST7-5@yedCHw%u*lhbMYgmJE^`kBd<9etS?
zxYmB95&MTRAdDel43*@)9>$wtTr8^(3}cW;)|JV{^`vivak8vVLa(>N7#zmiVZ0-n
zlvFLJ=PjqahK2EN7^A}YFpT%Y_&I;(`(b<##_%v$Qrw)43E(IBh%iQmaq6Mx{Cbzs
z-1T@{HhPVg7(WiHll49l<hd2xLTZf2d;Q`bAI2wP%nM_F7@vkQA&lwbH8G4y%vj-{
zh1Ki&<S;%DgLCs}w&q>!i!ivm9lzhdlp4adKdcE;!}yBzyoB@XFs9M+Bu%fVR`!v6
zBhFj(JTt<W8OAJDr!eM<{cppV69zZyJ|&w8bGluNa(e$fIh$+b;$o`>VJr+|wP-F1
zV{sTO!uXzv*{m&L(S)%qjPJyk3A?)6!PSVIGP+zOT}P<``a$?gX5&F^@9hlEAYCP#
z&ZV1FLtDe@bWXMC^<iuX<7gPi!q_OGc89Sij7`Ef3vLNxYZ%+Y*d9in=UhLA)kiu%
zGs&M?s1bLF{3pTx3GNi!CHT(_=U%o}*7m0E!z|D+I0f`z7>B~x&uZiL@cJc;18Kfy
zk;?GPLp-;hR%QKb7@U{&Nx`fmY!v@E*Bx~n597Bm?n>HDgz<YA=fk+b+Qs_79-Dnm
z7^lNH!}=eF8O9&%pdM-7Fb@G#za0il%I5NRa$gvJF%k|VK;yG=c!k0Urupd6+Tn-p
z<#N1c?{a#K{XlV@S4v1cjD(P6T5g453+EvYk2TMV^ITZ{HlgGr*6=W{utiVG{xb|Z
zFA0)dX6LztBTDXh<@Bp;!lH9s@Grr?1#bx66uc#PTaX6t2;mU?y)f>F@lP1s5Q)3T
zKM3RBFm{wv%V`gn(;u?)yr1!iS#;FFnZv})2y#WRCxN{QAcEWx3`}590(m0H8$s6u
zx+Rb=g8UJTkKvOTo`|481n)-iUK9l*C=|hh2o^?AID#S(ycNOVh<czDjUXq2#t{^Y
zpm+o&A}AR_b@3_{LFou8M^GiAHbN;w3qh@71ZBlpPOy9gj+j;<f|eVceI7c9l|+r2
z{5qa|S-o{vji?iW)j_}!5P5KLjR<N+P%DDk5x8i7sg@|Gm#vXmht?iAIZv-{1oa{^
zVK0IP5lsD82^&VxNQ9bTRs`2ND7izNPC-rtx?L>GEjB%Z*@E1!gRwM;plJj>Bj^=@
z9znARUX(j+9zlx;o)+FRf=A`_b`i9Xpj8B|BWmG%n+TTGaJ7wKNl6c#yyl;9J;}@|
zuXhmropqcH)iHvnM3V}15<5lEIf7>*cs7DA5svj|KNnHU>YtB*E9-e38}A`f@`Cub
zDz8)LB}qwF(d-sM_lR1dPqiKqwFZCi4z&jV<%pW()}QxMUVkNmLq(juBY2hf^`f&+
zgp*<Ln(%f99b+FjIK!b|MD5P;VYYMJBgcRUUT2|a=M0SCO^Itz1aGjIT%Hmh4>the
zky8A(%w@lCM>xcZNfCS&!4T2>D1wifFyX@lS;X%~@SgDDg72s0A4D)h_{g+mR0JQU
z`Dh`H3V6l{880|iaGc<<k5%9DiSSP&n0&yoWwbUSf{DWEe7C$lS$w~YU`hm^3;!a5
zBP&%0%f&BKnM)C1i1S;)uOs*-g6YDiv0jze>BVbC1hXQTo#7&%8Nm<b^<&+#XNwvo
zKfjtooD;#^2<Am_puA4a`4Pl~(77mr#cXbDXi+SQ;JXO!L~u8PrIMaMBJi?SM6f)9
z6%l+N!EQEW#uCBG2)0JBErL}Mtd3w^1nVQXe8{mTg0&HK$Oz9C;i)1d#0?_Z9KjYL
z8wEG9E&tc_sh4vY>hvK8&nUTDUf&+UkBmBkoy@C4jvW#FBxZMr4y{pVR|M3jF9Q~T
zSsh=pH-dc;{L0*m;O7YT^G+i;C`NvXfMKag`@}<HmgF#dj0!qWKhY}abRLc1SOmXE
za8jZ>9>H%BoJikDrwaO;6?7h(Ld{d6a5{oBLMZ&Kf<ETuoOiFPSd0iv$|JbKP9_3>
z1Xcug1c3;G%=QT4tVJ@a8;T&z7Fxy?iKy?pC^OKnb`jxA5nrMb%=QX8zxA>!yH+lA
zCRu_H9sK%BMQ}EP3la5YN;Q7Bo@1`Ibe@lZtC^b4SD%&_#rIFaOM?3XF6v)p;ePJ?
ziz&?OxyH_<t@FA__EpgN0`qqSHzK$hLFlR)(!DL@7Moi>4<*qG>a&YebnZovC#t&N
z`w{%ZAQkj~Bls_Zj3`bQay{T3u~%UM6>@Q&$<%gk{-(=}B3BfMB6k!;D(c+NdG}9_
ziUmD9CvnEl+E*7ecZsaLVl$s$e!(XMsm8bp39lYSjVKD!NEAgyQc|#36vd+`5k=oE
zjt*y3yUUREiKWE1bQEQxC>uq&C@Mu!Ig0X8REVNt6z8`(Jxx9JE9y^H)QNO%GF(-n
zs2WAJC|(uGl0O}%T039Qbkj**Gm2VKbcy1HC~Av+EsCrt>O@gDih5DhkK*qWTB9f$
zMA0ycCo|noedheLwsT}fz1xSbnH6>JT}%Z>6wWBxMbSPAR}}6jvZKg};<^29PgIS&
z^~{w`PSQAvCQ-DAqGc3KqtK&h7De+Y^8DxV<natEo84-07S&Y1JRXK>6-DbP+C<S-
zbY@k`=CB=g9xE^ub(lr#dDl^Nh@xXu4bpXrqO*{vqIg;e=N?eb;lF31cs8mIHRBvn
zjw(JUoX+Qk)aldY#VAjo#G8^EU8CT^<vpY56-77U-J|FcMJGMyKt-KiiHiE38J?G!
zy;1au;*}_RNAYh(y-X$DRY_kJarTX3`=_oq#M*1DIpei{QS@hKR&Wl8VxSQ6*Q2=m
zrn66B_aKpQBT5Q+Ut>GxycNY@YF6@`I^}#jig%d)O8Sr}hDPBX<ax7_PAAE*D0Yt0
zmX2}`kK%o%Fow=Cd=SNmDDKdB6eFV;6~(Vn9FfF)7{#V2Hb*f!ijSiBIEpb*%#31|
z_>PU@b0OncH@L7Uw`V*9=JtHTToOV)LCC}?CZ#2xMKL+eQ*Aw8h=nhsn8H$cBbyVq
zrV1hdO32qyOiN3?iDJ6&8EJ_&+cP_gZ=+Zd#rILniDGV4ol>V-keNL%im&E)=10{)
z9!FXiFpKuP7YZ&Cq;oN!0#SSy#Zr+h7hIP1Wi_J?oj)+y?K~T!D3;r^Qur!C3Rg$5
zCe7ChSr^56Asf<i-WRvv=$YHIg>l_!`V;Ruimk%8vGk+(Q8>LS9K{Zn!aGg)_C?$o
z#jYs!NAXJ(yQA0>#oj3Pu@uIuhbFHMC3F28h26*XX}`>>rE~Fngq&-T4@7Y=ibImU
zR9K!@=^qv+7qC<9XcWhy_){duqxdZfe-wczPOzC@a6G!=_#=wnqd3Wyb>4AG@HFk5
z&!Cgn8Rl~(outqOhc^l%iZkaOW)wb=Q%L714hcpPio)VOo_B=VBVBdWKJSP{5fM&j
zRHAz<kCUHwB-n_AEUBc^X|r>P;;bYfP)R=@#W~^oB=!qYTx7B<>5S_}C7tAw+!1f~
zvXCoLTorPSz29B;b-}*`{}!b1Mie)N-%3kvOV>)Tdr{nHQe!9|!#`}cQDnrB$v5^!
zIS<6_L-xa!^?H@{N8<dCHD{iufXnm6ou;{B>ZySkatpB<x%0%pqr(fu)UnrjW7yW;
zLubAi^3z}pEi3CodpbvauN8=)U<@SmB^HjMNDM_|C>BFW30qvSgdj~_t>odc-6W-A
zC@n(H!z`2bEgMs3h*MHQl2J9r4I5E0hDzdWR7Ncas~kfWagvu^ky$;48Zk7Fp+yWe
zW2hxwdJMH=s1t)0LskqgSJvysP%no1F&wVzT5{UO!!H`d&@jf`EM3JaI*Gg*iPQ11
z(;-GEX%d4ohE~5iT`{<0@WhZELrx6y>bh@ja*nL5FXV6Ax^7;Lc?*?w5{7Cjb{J7J
ziEdXw)#sLCvwcjRUfn8&8I|?cF|>)HZ49d`>vXmg;i1ZURGd%7&>@D7F?DG5QxfV<
zWt~T0KP|l67#Hn4BQ^)e@OBK(#_(JW&&SY3gneRoK}gRSCd_ue7{g1<#)_F;W9T9B
zZZRDC$<>|3R7Gz*&)ILDdNgz7x|is`Ecl9GZ$TP)HHI&y<dF1@;WaVRFNW7+7#Kr;
zaSn*7;cVLB4o-taLjGn9ZwPl*(YsX9-xAIvSvg?wP7FiDIZ|*ad-xdkwsH>>C&RuQ
z!+S9dk74MB%=ek#s!lFe<xmm5Mu-lNQz0J}!-wLG`W&NUIJ3pU>mwl_$1q07Six~=
zUk+G*%KM7p>lmiRFj0a}5u6mmXE96`PUDGG=I1edvq}3RhU$~FF9ioz(fRjpYFg*3
zn3|G7<!@q`9>bovYE3g@m>I)*;j?0x&46*#h~wKB=EQJ4hQDH%%eoZ9i5Py5VSWq?
zV%QhM&oL~FVG$c$4BKOBBHZE_*2b`o^@;{#Dx&XVSelM~Sq#f#SP{ebB3T*3su+Gq
z`&JKNweU4*$^NCPLh{fnzN4;>VN(p7W7t50leCS@iYYD<j!<yzSo3p^E%bWMxmA$l
z;*?zc8}=g$n$}|KIk+Q+KS$?Gs-kn}oSnRPmS7CKVrnBDUb|!9dK?l?d7akTIbxqS
z?4omj48O26**ao45X1RnYM}Y}f7(G7$0D_LKZo-;fX->;zs7JRhNCexgmjD@i%b*c
z|Ig#Xe-q>%X39^-a4Lpq46ztavy@{9#1N$Ll9~|shvb`=tx1R}=#RlC*~>rD%vD}o
zdaVEH<Q}l07?wFaVOE}Ao`@iK(;|<@kch#KA;q%z%fUrk$ryMR0}sEpSU^V|_nNr4
z)eIL3osHofZ;f}FFY5vu@&e8Iy*jS+BC{)oORTYTombgr`(<4gPUn@Fn)OF=P4pS$
z#J`TeW4IB+y%_Gta5IL3A300caIWp@yv6>rhI2_3{dNp@n3yX1UBTT|bn<^<_&0`9
zag>hZK@1OL$cQ5|4sQ1Hh#ljgY@W^fUrZfls&@Hn;>;E2u4^b5M~C6g+;QHT_C#D&
zygb6&!kJe{KEeEg#w|wy(cx$XH4DX6=@gEuxdcVxa7}X-jjJt>iV2bwkE2AImyD}v
z02G#qqih@%;;0x`|DySy->jmSi=%v8&HSl2S>wcP4yII!qpB!Wj-yH(H>&8IjgwWw
zy>zAX$gQT;;^<k-74c~`<ERzK&^U(0QJX1=qiY=9;;0)(y*N6>(K(L#aWshI?c$!c
zaWs_lGbKFsv{4+~l|_pqD-K5-PUc2cy*Y0rj(2)Hc{Ps1E!-oRotEds!O0<yb()B<
zX&idmw^<yYoKV4OtwkIy#cV4<N?HqP6UVmO4m#U0se_&E<9IU8)$TdRu6TI9aECZL
z#zFFw;M0P1dUrdXiK7=60>|-OT>VdG#e1I03p8#Z_Cg$8DDRiWU-bLlbW-wS9K@HH
z;V*eey2sIjiHu`N9Q>`_GmgG-yhej@wH4CKg0BeD**lI`)4WeyZ4gRfzc~8G@h0oc
zD(8SWUXQEgt8c_HFs`;t92CdeeQLW}a_)Z{bGW&pmfPWSmzB5TSpTOsn57`3R#lzO
z6-S-y1lG({i-6vZ<Gnbh$1x+0;c>jrJdEShI6jE0{$aGFWJDYz;}}JqZQ6%|?6NNI
za&kQm+v7)Zd>qFZ(R{tCK0c1I!pEiWqC-`E-wlm_cNdM)IMItc?Mz^mWA07L;Wa6a
z&*GRI$LAuMBKSqx_sh8Y2BccR<(?YHS8<ShEjUe(&Trys77)qIIFF>kimLkeac(+<
zZ{z9_xh#%3ad6kW@8aMf-CS1A64~?O_@b&#;e7F0Ah<A&MM4$}(sv2lQSoe&4IgVu
z>3c%kd{|q~Ec#Yk5y##iU0lw|H<lkH(v^a%1eu1_aW%ZPMx1K}*TqqNi;G?x<T<r5
zj!i-~$FWPumN>Sue#Wt#PLcdvRsS)L9m4qvL1#`$&rflLtLo2=aPAa2pD%Z+>br#(
ztEM-srtghoUmQQjv7hZL0cQfg#BqQ<QUduCI2gyFIIK8q*3vlmFY)&{PR7+i;lIXl
zgw=bCb~LWGmUYk8j<F@q){YDQ7RL!8l(1TIwCfbRh$)&kj?<FW%<VIA{2`os(bLHl
zuSOhZ9KJZXHHV)mkK;~}tUz3?st5{(1nJ~99rTLC5fvTsn2>lJiL@js<Yw5FisNit
z?J96Dj&pIGXBTu@yA{WUI4-i6``vLfjz8nL#2$=UI!3$9G@MZ<<+10vBD_F1*Ht0c
z1h2Eagi!78IND~qNY37KUf!>cW7zk=d7C|z?6P}D$X!A90QckgCysxm&&)`0Dy-*$
z@P~0V4}?AKBXR!s7$;~vPdqb$TnSaNkx&nGUb#66AUv-iy(oMlfdUCsNT6Z@1rsQg
zP-mZ&PoQuD1M|C!CQvMaBEmVPVR!=<YiaR>+U~e)0woeCnE)lF1WOC@WR{UTwK554
zAFC=|E}?p@vj1v)6t2wj9AB?hN}zHAwG*h5K$Qe~IkIacz^yW?Ce%uNUeyw)F1*+b
z?OIV!%>+s}^=#PcsFi?siq@f;UN@nJ)Ca$m-5`N_32@x1KF2$bXhn}|uT@irYcx!#
z7mP+sgAl&|WF;_Oyj%&m6L^-XO2Csqb^`4ZXrEAhT~0!c!Z%|M#I(i<G!fENkP=<U
zrDa-kQEMUCQm~aE!?sSKjqtW<NsoitlL=h3v!6=f=>$3?)SF~SK@wK-P6^f9aPW~;
zy|eIV1Q%4(Pma`{PoPTzFDCGEC-)1IfEWFal~<dNx~P5Wbib5PCyQ~B0&7V31bQU!
znpo~B*gG9dF9sL>N?P(zcKLW!oP84Lo0fB%6sD@5IQu6sAT57AfjQOH2gMr+yqUnf
z1m-93Rsw?)_(F8v7JNT}4}`pvz>sv<p+bfUzAN~i;BdhoU(Otnz)0bf6Bs3Ayx@m|
zqXjt*`%wZPCqTk$Oafztj}v^Sotwf>MDtU@34%=UL?M#|KNI8>j?abgltwCiDV$_V
z0#g(CDuJ)ll37BgCGd@q>4Gx^XA179CiCdH5kvytiiCFNBrsR_yk+XOd_e*W6Ih-0
zU6jCzG+!)aNdn)cB})@nCVYD#_woeJ|EetT`d)-TB(O5Axk?BX)+Detfpx4K3G5W%
z2EmO9Y)arbl!eW#-U)0?hh?3ikcTo8w~26j0zW3OL%2~*|LL)2+DWxt!goKGbF=YB
z&V32|oWNfR{GGslcK+fOO5gxH{{+s6^H2hZnT7;@6X&mjM-pg!Nsad%6>?03be>wF
zQgtGMlOp*&E&sbru2aHKrzM<jP0c^p8;Hb6%S|D^1pGn*X?ZZAW+*+w9f1;vu<sK2
zxwLOgNIZc=T9OoE3EG0G1kMV%E+u|GfeYfiD0ofqPr*wGE=*8uoYxg0R|U&X$+(`t
zv@scls;fG4Lxkm$D4$fyHxsy(!0iO?BygAAod_wvm%x3|ocxC>$A1#|H-QHtc|vp^
z3V$T{pJ0Z_GX--A@|ZV<<&|4Vo+R=L$tRd!kTY+oP(XM=!9s!*7EYpw@S=jn1d9un
z5G*N3%~C?zXJnR1OUfouSMIk$5*3qZF7irAR8GQ`gj<|dlBkx}uPUTYi_GdmY6#X8
ztd&IVB<j$hIJ1(dmqh&}4y<x$Ni?8*r=y{G@mw&jP;Qh&w7K)-5Etc4TcaYm9OCN~
z<Vs`;d3lm(ERt-&96{wZIlGDQrfG?uM6)#K4^Qf}5NAulR)VbsOUE4Tl4zgAvh)0D
zi6@ijki_D%SaKE}lXxnL3=5eSo=&1u68|PK_e%ZFNj#IpcS$Tw;@Kpg6XCoho=?Kg
zY|tZ#o=J2`a;9bd7X)7vd`YmYV7DYzhw671Bv~T+srI5*67MDPauTm3(L0G(ljxU3
ze<rEA-X{s}x%yfXeUm6N)Lp!{n@CB&>iU2rUQc3B5^p3iFo~AA8uUkl0#zH3ywla4
zsM_GoBnBt(b`o!~Ag*UV7@`8cBL-*pat{?UMDTy7bA~0cu7^8&h?_V(iT9J3lEl;`
zK1gCj5@VAXm&C{<MkVoK5~C#)p2(<`tAW+S{ZSH4ySaB(*DqIAv45Pzm?S1v*Lf|j
zu8&WmNniJ;NlZxM6B-=uKG4@q36nZ8iOER>uh)<Da!*QvlFtOa)%DMl_#(;EMsl9Z
zs}#OW;>zh9-qcqT^|U0uNrJI|Em8BnrYF%NcLS0cNzA*H!;G4l#4J(1T3u(1vy)uS
z4U##6a|P*SvRSzElUN`Hx=?UY5`SH(&uej#JFMc}77fS~-5V@RVtEpll=zAyzE9#e
z;Xfp?GKp<TY!~OMBsL3Koy3|X)(YPsxK5B2W<5KW<_$<TrX`z%tSpqVC5f#`9LcZh
zRh|2}h(9K=g9%RJU=lyE0*mIpBz6kfowl$miL1FAv}oR7PZE3C5+y7nqJ^IY_Y3|a
zNVSL6^+QP<PU5&oeodlS4gHw#BZ5Z-8T@fl3oUH&*xHFCeox|L5~q>~i_YmJ&Lm+Z
zVJ7j1NWAH=X9{I7t_JsW`9u;-%l%0NgjcVjdur&Rw7g~Rj0k&%Bw|SnXx<<x@^}&n
zadxbsFU_yypIpyj!ff$PC2=;1b4i>};yTMNi3>?wWStS;KLsxdE|y%q%;r`@-y!^}
zWExFf6Ed)wDwMxP`A!lyM0iu2%-dVyye+sQcZ0hkzn8@QB--T8V8DOa;%ex;ct;PU
zE<F@v9eb3-f5LN>%%C%u1z2#T;7lR6g*+DSS-5W@uZ4UT)>&9@A-{zuEWByqEei!K
z6ts}VAQlQ)C~Tpsg=!XxSSV_tyoCxDidiUbp|piE7D`wcTSG4;SW<9a4V{w5ysQQP
z7{_ll^l}!q*3ch&5i5#jB|$1vfmqo>m9&JRs#~aGp@D^l7HV3kWr0TOT43<n7S2g1
z@;V}+vz`!2>WeQ)BMCynfV8iPlf-GkWuc>mr!2TFcr3KC(Aq+_g&YgbEHt<9u!i2)
zLQ@O6g(l*pq*P74VNHd+TJW;at){-Prry%R;F|gbk#DZ4|5{V0vyFwe7TQVJ_PmRl
zdR!Eqv~aVg-a(M$XtkzKTj*q=mxY%tbhhw}#nax^Z9Z$^ISVgY=xX743ti+cUSt8)
z(q9my4mt0LxlPWin}zOaUPHW^*3x@QK>BvArN3gKw}sb5=T#}4*V4JvN7VXScw8LR
z?`NUEg#qb8q~z^dD#n2p28o3?B*^3JWswcGFw(*(3vXL^$HEW`LoIw@A!BXUFbnTm
z7;a(rot*b9OsJ)kY^|j)sHKy?FY=Qj9AP0|OJ{AlQ%nEQ!e|TMSeS0%BMTo}m}p^=
zg)ywLwe?=L^>M5iwe_(UTGrM{#*6$D3!e&^Ao34ttGI}tS(sW|pCZD^7CyJ|h43#0
zm(|v3<bQ%wEqrC+YcVoSkii+23N$st!b}U_Sy(Dwvn<SIZdjNt&TrHDbA&t&HQ&Nw
zaW1g1P@-e{7g;zZHi>jD5jj)7Of*+m_};>D3ukNVycqQl7FLSa8qs8iuVVJr)^pd<
zS6d)bhj!M=ZIW!Tu+hR5DZWh>Hd_c-2wK>}#%STNg<mafv#{O5J_|pyrPtAawD3O*
zJB9DC@RJbAX?YjRNSu4wM(XGk?n(Rh5a)Y>`z`!p;Q)(RoChr&vT$7ZJV6HBT1P)(
z;i!cZ7Jj#IEN%8UYrg3GCXz&2|D=V}7S1rcME*FUKP+y1q0;QPU|29M_{4cvLQ$tk
zT@?`(c-60~hb)9ywInxM*VUPO5ereqSXZZ$SBzCxNWwx=Dx}5CXJ;bZwvZAst*)vA
z=Y{_%NaqD17X_JDmxNrF^w5_HxN6~=h3gjnvhcTs8<LD4>gu~BB{wbHV&_~>zsuXK
ztKSy9V}Tc)m+I=oYW4KS_4I!%{L6x~am2<0_AM5A+URBDk;R1=XlbLBjSL%^HmcdE
zZX=fs*eGJ7sEyn<^4Q34;|W`J7kO<|lvbS2R=spN;RVEtz6I05LTO218|*;nRm?_l
z8<j;~!bVBju~ErJDI29lSk6WnTXiF4(_zUO1;duNRaacWM#p+OFG?6MvxvTZ+5d}v
z)pRIIYS^f0bGITiwNcAPZ5xej?xKu3HtO1FAetp5<uqGQ(p+DVP8x4$tEUD@mT0<c
zxNSHjZB%eF@#5>Tku92!m2*V7u^{{B$2zPbx(#A;8_k6DucxX_3*jW==(N$s#xpja
zwb9l_JKm;^r);#h@l8GbNgMm>>1?p8>**bAnDulzdE-pU(-If+fs#%(I*TtA==Ge9
z=WV>i%(v0S#$^fhqKy}9<gKsQsIQFh2Hirs+2|p$P}to@ClU6ouVQ@J#w#|a*qCag
zw~beAd}6Dd?_;B{jkj&QBhJ@s46yOK@P0P>3!&QM&Uv7XH*LHn!a+9Purac}Y7WHr
zr5p!~*H`uRCH3_oHip_5W%FkmhKYQ*jrVQ*SYLnF=Fz=4USHilgMVNnT3_ci(gq_M
zA<B=vZr0aF+xSQ%;{-ppF^09s<|g(kYTBvaK<Cw_fj(Xo`ilHh8xw5RKTNdoxe)S6
zHn(2KWO0sYptI-srh)#2jW1beEU>{6srHqPuWf9wvC+mfmYt2oHkR0!Zes>Z%Eo*f
zGi}VW@vV(HHr6)KXWQ7{Kt0XLiF6X@3I;_&=K>plHqaMI{ah$syhlnH<U1QnZLG4f
z+Qu?bTW({84cehE%lCUBE2W<NVB>KWeH`f;8;oKt8+$|jv79McC+S%)LOM6u*v!na
zu}2!<7Qr1hw%XX1ZX>L0+gUo|MP9L?{*#UW+1M$PE*5r4!)ek`RZG4G>}5@p^c=MD
zGowqlCZ_fmR@#R8fwW~x*s>Vvkd4DO1~*i9#AbEW#xWZ=Y}{mJV8^vK>y(Ytj72z|
zCv5yK{G=eWi^4ND{;+Y@#yJ~a8-|UTjW`Rjp>8s7Z3Jxin2infT@6)p3rdEEZSZ9y
zB%F50c|}<9(h_Pi78*&|NZPQ{a$CsBhI&eT8R}d^{k)9}HvY2lH~Zd(`b9QO8&_Cx
zQUhuK5_{lAs(RBPgV6X@8`o@Hmt?Ts@}iTzOcE8^G}3R`xNW0s3guF&Vcwx-8~=&H
zyEg9GxNqYhaXu8J&cA#LNZVmVy&CDm8mShMkwRt)CB;at6d<G+-~Us{lfn}z6i6X&
z3i(8yUvO$8)%w0~q|-79jTB6wPzr_VD>f-9l0wlGyrM}b)fj1U2~J)jg%RnnrBWy@
z@-l){{<D!@K7|S?R8OHs3KdhTPp+CmH6fK!s4OIprdLT58fOQn)HJ<j3bj(Gn?gPD
zZLX=xQ#*w^X=SR_PoY5yjZ&&#EhE*E*f0flee|VJ6R)h4df0W*bXN-Q6k41`%d_yL
zke$N(6c(hAlS1PZUP_^BN>#`vDKtx=c?wNa&{G)5!*$nY@uHCyDYQ)C=@dGp&?<%2
zDYQ$WeF|+-Xq!?c%R(Qish2n6bWML!qTa0O9a5_IqlJ#5M$M-fbuFdVIfZ9Zcs_+L
zDLgAe<{lNEOMwB8Xgcu)k-sQmLn0(HcsEJ#kQ9cd&^?77DfCRCR|@@87?8rtDb)b$
zv*(vgdnJY5Likd_XG$O8eFd3aucgp0&DoG&=Z&W@SS$<@d?WRLbiD_Z6h-$w%<cmM
zl9PfGR7BW?+3A_x1)7|r0VFA6!~lpO0)k>dksu&RF(L>EC`u3kl_ZiuQ9w{sL~*8P
zrhB@3dZwGK_&t61-S^}D`S+YU_dIp$)~#E&ZiTMt-NqvkaD%4KA;RHVf|#jjyBrq5
zqrzvF%n=cOuN>1Nc$s~VU=)iYcs7D3A{ZUP_z0e2{6sKTTr@5M9*x|9`eX#8OvqDf
z=BYfYHOW(-j$lFr<aEsQvjhY4)aN32K7yAbm>j`G&LH8x7{Lo7Ne!d&)JcM;NYNC*
z9D+~t)Tx3O3ZI<m5xgd5%!puS1g}IeiwaL+UIep+&+g0>=gf)tha9@AsMoI+mwvat
zaDD`@i;RDw5JwgH=j{mIi69n1Jc0!gyc@yR2)0GAFoH!K;t1A8@LmLqBls|al@Tlv
zA1;j`lINde59F!uN3cwo%Z09>4SBu+eEj)9#E3tN;B21yaRilvDk~CGW>o~MBWN7-
zF@-;gU|j^CMeun9pE6>D>iP&ahz34+QHGP6bYsMSawlN=B7)7*9PuVmPC)%zggG#%
zei^~`2!4t9d+1jY?1<oC1m8xmGlE?a?59`+yE*zn-)YN&>K?%}gX&%Z`?x?gQd!FM
zb+Ont0?1*}cM%-oERNuqNFI*ha8Ui8ixSrvsYPLGrk)=n_%VW?r7kP7t>eXdeiA@Q
zQ>vVZ;MWLFM!;I9BKRYM-?)A%YAr?mo$gZ9j*4$jL|TkSP-KrLS!$+OA_AQ&UKCeF
zVMLH*I7Lx13Nr#Lf{PLVtZPS*VlYSGMc_m*Nbyg<=?KOt>O8@j2tE>UTIA10a4v!~
zB1z$$ib{Guf(s0i`ab4u!!N@8GlIV&xD>(Poc_F6Zlt=39}m<<u`J<aNBtIAg|t)@
zS42@Rit<sEj-reRkY6^6D@BY`pnS-eWTUjLLX_V?S1U(RC5nnsbPB1Jgi?UG$oQ&J
z_{N0PYSa)?s|%%`tD~qHMUyB3QPhg!nka6F`db^*wNccGqHYwmi#gnV$gda0^}@L>
z3ML*A$s8B*qp^MzH%8GQ>hDmEgtF+SC>l~e=!+H6oG5am{vng8u>i`mG>_|i6a}I@
z7=;o=NR)8f3Jdd%kXodnP_k+iO?g+Jqc#)TTqv_t)j|XaS_)tn+C<SdiaVnIs?O9-
zK$ob$Wwej_`$z|&9qGDana)y5;jU416FuFdxHXE~qUaGtPvP7w^cJD3Xx^DZ?()5&
z=p99WVcssZuTYlu5m5Aq+K=9oDg&fNZrtqMoly*o;w}zQ6mJOs?kMhw;>jq+MR9Kw
z_eC*0ipQe3KZ*yUcrc2GqTn4D?HnA%Zy|r?^7`xHC?1JoNEAbv>Z=zx==IggVRcy4
zzd9p__g#-h!K*Ox17USU6eFW}B8t&bJT5Y$qW)o+RVdH1al5d}V=9Hmh(c-@D}Y7g
zqj)Nc8BxrP;^`<RMDb!2lcKWSMDbh{&qwiWQMP#ZnJC#8gz~&vv<K1hm!g;w#Z>nF
z26eK~-r@hhbXpWIOO@%x+SvLlA~rjUIZ@1t{^x;l0Iz_em>0$CQp#QRRjKkC1HO14
zoL`KKT7R>6+~1-<1?TWtfZmXkz``gNMe%tQUqta<6pN#%Un}?1D3(OARPb7%??>^0
zfMr6L3#H@=0q<R(`(ZI>rGSrwejLTBV*Y9YYlIF9tDh9}*9jO^2I~cEDCTdB;<G5o
zXDbD@a>tHpwke9YG`y{Wcykn6qSzYs@!2eFi{i^Dwny<5XR(GGH0+3CXB2-k_%-Ze
zJTQc!_&tg}QS6Q4XcWhy*vCMP;ycdn?A!xUd>zHNQU33>tZ$+i+&_GfRqEx|uba!#
zo!PmSot%07!!1%-hoU$f^?$cI!g-gS`#odT@jo4S^zksWKSc2(7bQ;cD2_+*6Jx1P
z?#~<}qp)`0@UQ{l1p~s@m&~2lFMQ(K++Qh^$~nnc3acBC`$_HGg<<tn6n{jKio%H^
z5=AtMcoYdPlJ#=6C}KP}X6KeVRLB<jW7d16pmXu(njeJ~MUvAntTw2ZJMo)BiZwpT
z|JGGlW>hnqv!;}9GkcegA``{AD9%UWMsXS?JW}?kj^EQW(zUZ<*jc@h=J8i5(hJh=
z#VG#dT$mT8a%%f4ic2C-9Pb;Z27)XN*&1qTxJCmsl+;jJLlq6BG+d#ff`*D3N^2;i
zp`3>D8V>T`r=@brYPeGK9Zt>kIhj<&p9twamR{-~Cat9TT{tDb^i|bRO~X|hYLqN7
zX+XF-f##1ItE;K3Xzg6O`pAIr)f#F_Emou}t}Vtp`}jW>*49u*ICVAD({P<&HgsFr
z5`IJd!}T@XsNo(B_iAXM;U*33G_=>yP(vdPVGa2jax~;>XrdvY;rp^B8f*N{uV0-_
z5aekHYEU$UG#m}99E<XgH)9hwmiC99V@mfHXeeYYX}zh2W*S;({7-afuK7O^s`TE;
zLIN+9v%A0l3nu$GT`#P4U9J~aTWe^;rmsL-S~$Y@PlbFnHL_U;4IMS~)6ic-Ck>r7
z{)Ikn*3d;mR}I}YFy82GMkA|qqy0_}gK%Wo5<S@E>|Dm`EgEjs&`U#a4Yz5&wfwP?
zLrg#eZWj%GH1yTLV5YW(-xM~?SDOw9cgj}>Xt+bVGf2aoqA*kncWD?XnED6hs|?QV
zb#w35z=^=b7Vpz=zlLWtJgeaWj;4mkHH^~mpoWJuJgQ;1hKDsgqG6aQ=ad|x;e~v4
zDEpYNK3Xz&zfs66do-zRiI#^7+0bJe-m9BCLc>U!R5zFS?6tnnpU^N`!#EA&HH?v=
z87n$DWbELRf*b1oEPG1B(~?!PON{@vkbycu14EQWq|a%1Uc+n+b2Ln(F&ZXon4)1p
zzWO3-NySNQy{sRltg<Ozt%2OB8m4KOso@n3FKg&w6wVMyg6Wc_Bzt!>U!5hBf+kH$
z<?xqZ4%u8fT*G{ke^n?a%WDk6Y(MIlsQ+~hZ)pBP!O8Nb$dF&XWQliZ7~?sHdt-Q4
z!$J)y4UUFI^pb|1Tq-pz*04n5CxNg|!%_|JYxq#ZN{Z#HyZYxcEz_`E!wL-_X#Sf6
zO#B6zDcCpnBaUF7+%{L0Sf$}(4YT^^uI!UbdZKskY7J{R*1dfVYuTKr`c%Vu4VyG<
zW;ju8tK82td@f)kC!LjJ_R6LHu~(J&LYOE}DMS7Q`H^vphONTiCiF`U+ckW}#s87;
z4yjHsPvjS5W4DGq8jflBLBn1R`!sy5;T!HISCyd7{i2~pfqH-ec6%;42Q_>v9XzDr
zI}UEE+-9wOV+h#C!*qz5b42L(LXQeP^l+H`A30w%L^Ws{e$w!>hLapeI;2{OU+4sp
zY~4GTKb8I}P0&bc{$2Q|H2lF?(A)n}o=nO_gwO2XRZGM;*)v(X217%fev{@B9H2hF
z%|$Xv4W?AFG}uyfz|3iw$znx{r8Q)@MaED+23LcpAuERL7*1<Aqv3*vi!wTA#jtaX
zqF)QCmV<a+_%w;>PYr)*xWvV+uRrume`_ca^W%Xd%PdEEW#3%HP%?(AW2hNJsTi(^
z;mR1w#eCP5j^WX2B?!t$wye};2dSZa3>Dq1N-<Q9p@Q(qtSErqs1id}sZt|`YB5wV
z)<adhtCzUi%K0*@#8okj>Xlo*y05=h4A;a^H->sKTpI)3KD=*k9oDT;qBd=_awthk
z=5?Z$Rj!xn92DZ=)k@qL<DcfCQw*JBxG9E)F%-m57(=5Na$?9M)6L3_p>YgNVxauu
zez`;X<&v^`AO^d7399N-twb;eMVbi3Ku$OYGAWZE;|uV<3~AFCn#Ir|hK?fHoCe3x
zCI&Tz7BRGxibayF*h)0eIc;P7Lq*@KMS9wcLT0I-!Uy~MmT)+j?Gi&*){3ET4BcYr
z9z$;L+*@Pl5kt=yZjRv=;ZVN1c#oyjUlgUcNl`DMy@hh1Z!ZS@V(2e6+#SPbt#Sv%
zFfiu7TS5(Y#BisGeKI7>?8e@?cf~MBILscaQG%2P+!w?BF}xPT{1_gHVQ>s{WzZjt
z;h`9wis9)P9**IW7#@pZL<~cubVRihkH#=mnjXfL&GO^3rIkZ4T!w>v85zUlA}~6J
zez)h2;@B0a6kzl|A^cDK<<7W0cT5apV|X%#aiV#=P->&(a(bh8?t~bgiD6O<FU9_|
z`aK)NbJES{V|Y>ICrXwbe?b73AZp-h$uv2JnK8T)!;~1N#xP9;W{Ay{e_68Ag?{8_
zao(}rSuxD!xLY}MVhG%xOF+r1`{b$xD(So!UX6jXhKm?m@uyD=Z-^NSV|X)$w_<oZ
zhIfR+(xP`WC|NY13xxkJL%O;@1dAkF)b}MZERA93gkV7&@5it#hT}2(6vOfuR>ZLO
zM9zMCAchZP_)@YfWB5qGr!jmiV4cuaF|3YZ4JY8H@a&o4wF0^qsKlSJYcs=l6{swt
z!u29gupx$xf<F`bc?@3&*hJ41s9ObZ7P>_!ncIp1t8W)f@Kp>uit)}Eb_w1c!yW;w
zyH~(Ip+!m##PGFbzY%&&=s}_1#`x(pzIC5-D2Br^MBive%ydMU-^XxN06BbM`9Z4C
zh93n?C{TZn;TNvAF?hl`K@BlzG5i|C$ryeU=I=r`+?LCVOs8V_Lpa0{0kaC!SPXH&
zrqDzTx`6izREn)HP>mRp!eMs%sAiU6TPUBEQjB(bpg>K>kl}z9sKiVxIvv9qF3xe3
zkK?S!UyR|;7|sbkFZ6;?HcI7x#c(Nx5^-e3@wafOB)d?3hmRWtYIfY0A?FGKh@+%{
zQbK7MOH0R5qfjj)w5(8OuZ*KXp-NC8j*4;AjiX*1m84d6%EVDQjw*4mA(~y4rB5_t
zswRL<Q|(o8)QY2K99K&%a){eM(d=b0@0vK&LiO4>YR5tO?uBZdxc?MMa9teN$B`$s
zZiu742sDo4Mga|qwXxPsaSSX}SB+}cFpfrX5HRHk$Q4VNWphp9APq>@2!e4aafHNp
z3Q$j2H0O&+w2GYJg=%3OQwr6laWspgIg8?GLHpzA5JyXzy&$ix&{lD@j^lxmK8L9d
zEg#dY2)7e~`$nRpfG$Ei#nHK#KXnvX+BJ@D|Er;A95=@?p|IpLg(Yu^<JLI7yP@Qv
z8%o|5N3S?$pT(TB=pD!HaV$;Y{S^Ad{Wp8Z(1CIE72Ho~f1v|}-XZi(dMu8+;us{^
z5tQGd+%0%m9QVZW&|Zb<-Z<_Pe812Kgbo(^pwNeeK3s(NDv!i5q!<sS{+R(Pc~sO6
z7y6jcFDm+P+B1!e<HRE6@i;~ac!E~_9_;QmA05Z{X9FyHGLCU^TxZ~V1LNa(iqk<y
z1szY*EpgOIpl$-s#PMt#P8?|tP|xslaZHTk1;$CG?C0Ysy&$hn&+v<JOp>Nkal9np
zgE&5nV{#nxN9In6V`?1Jg#T_F3mGSIOpjwm95ds1TllZUF^j@+yiU)@F(-~!<9IEO
zxl&rLlHa3wg8$wf?%y+9#3`b02>&gi9j&Z4ea!*N6ybM-zu>acMS_<JeNX7(IF@kb
zH?x+;L7ne&j`s);*%)GCyURsph0r3Im2v*r4&uW3m=ht6-vzIZV@({p<JiOL6UQfU
zd=bZ{IM&7SDFx#AJdX8oY=~o{G{L^GA(~pHU65|<y(dh{EcstmZM->-Epcp*<11>=
zbGOoOR@RqsY?FcDSkSf-LxW@L=Iw~%j!}6#<Jcu?>2s#{D(0>IJBJGQ#<7pF9mk<K
z_Q!D`j&DW7*HY`7I1a`!ES1A56rNnpuSlzC66xVMj>K_1j-MDa48M(`qj4PL#Oaeq
z{6ieyw95Ta%v)Tjjy>bQXG_a}j^md&sOL8Zo(TUM$4SP<PdQKY3^QhE7!UBQOZ)l1
zbWVx){tz08Bg$Uv4%euZt;G>z_p3Ih7`3s#36ar-8bXtCm~mJPQ8ULD4mHy`q?G4q
zjx@7aHxtJhF7<J^ad=|VY4KI9irMT7tvbhm?-@n{B@;e4AIAmJMto6<{*2=<;an2>
zx6l#^e@(~|nk|&_<djO_iUjIc%B~^WN(-$dv`hkJ1zef%CsaA1<%Ls0a7Cfx%q*5x
z7Cv=WNua9ms|l?x{302aUM1P96R0VmmdIQq^je{{g%-)zOW?W$Iw#O2f$I~vA%T_&
zv`YBfJ?}Qjsh_}&2{cIHCW0$VkXb0D4HIaT0JAv><R;KKfhGxrg%c1O6q+ZLdMK#~
z4PC~`7hG@|r)dJsXr8pyLa16?%GQevXq`Zt1lrT2c77ym>ltpF@T0MvP)0AE(4p8@
z9TVu3@IMMbW)bb0z$Xc;OZfA;TLRq^=#fCr1a6igo14Hb0v<?Ua00g`a9aYs66l@4
zK;hq>K%WHex3ca`_^Slf_D!IlG}mNi7R~4{W(-JxllP8<|KFsGCN=3@qG6EGyM^A9
zz`Y5Suatcsbtd@#g-S32sgp5J@L&QDB``UGDG5BBz#|DfoxlX@Pk{2n6L>6vp$QC2
z;L!v)NjaBEsm-6TyTfdHL;@qllE)JmEk=%#jz1xoCNVzQ+?WK$7JKYT0po;@PvEIy
z{>DP}8EydyJe$CC!ekSEe|!3-KA*tE1YSshU4D`AU}a5WL%aP&jDCJed_piafoTcM
zmcGAStYo@)iIOt}%uL{w1ZIgtsExHab6Gk^Y89>X^AdQK!U@bzU}XXyCGdIzZzQlV
zfkg?tnZR2zMs(5J(lqU%o$pAC3lex&>?|4@8u?xVi#eL2pG9nIi8ze{OQkRD^)e}4
zE_6i#A24A0<Wb;5;k+XI?8gbLN??s}R!jHk3MyoEwz5_{Q(ws@X6SyJz<~t5mJY5@
zU_$~MSuugn8LlGFC6s;tB7sc_Y))WH0(%nJo4{6%shQO}l)XEFZ48fcxnCx*J%O(T
z^Yhc>&`UcK*eQM4C44qYKF5oc`*rP5Hf8pS!?_4^c_IBKfrANn37k&g+XTK#;5X55
zNGRQMT)^Q3jz}NB7kX5f#{~b7z>kv6E~Y;T_*qJS5qd&6zY0Dnl$wj=f0v?D3H*^j
zB!OrGS^{PQRsu08qNJWcTxumQt7`~O3Z<%|sJ5j_I)RjMoXbixg5AqFXA(G@z=Z@Z
zGN?x8o)f2?7fk1HOXY_3X99mEP)_%Up4m$YWb1&Aza<z-=*ZH+?Tj0AB`cRQC3Te2
zQAS5u9S%x7ZDw7eqqOdClpNeSr+mrWO4(QHxUpJ^=9RL!yFH!G;Rv#BMIDuN^wH5*
zM`ayVbhOsdMn_d0)pUe(gmqNcQA0-~9XUF#(!rImo{sBuT&<&~j#@gd(NS0TH{WY@
z(7f6@>gfLYf#(ET$WF1R+)vs1+e-HJI&RSYg|wll+H7Xk*TJu)+$gkx(3^xZmdNL>
z%DpmIM`Im%I)b!8$!?-!(qCBt-Cy_EO}4^Lu|-Aqcl@F*bBWH^QNUg+*_;T4Vqps%
zEp;>%+)QY59jcD5A%E_(3uP+$mpS~?X$EjB-9O}z$#Y#>9UXOal0j*wqrL9`<#h+z
zDeDsTa}sryY*!s!bkJt@k^F8tx=XDdI&RT%tB#(`>UhA);w0sg#aVWnj$S%?>wZKv
zQL;IR!AjZe;O!jr-C=fzz3Zo=KN}SpHabAZARTwpLLGPN7)YP@4AakdNz*ijej~j{
z$GtiZ>o}t0KB@b#jz@IdFZcnWgQ;1T=m#bH5F72`uh>HvMGNx$QRo>Ss$-arM|BL>
zv0B6)(=kHFD>`QB7^&lN9WM%>6-Vh9qhqXOpAb4)JV3Qi>KLcvc^wmVjMwp$jtM%R
zk%5>~G5cu|rWl=HG`XJD@tpLC90oHx$c63&Dp#`UK#n*)Gl_$)W3uiaq^Ikcp<{}U
zsk%SErs;TDf`sG9jxaW;e5URnEFZ1lpYS=jJOj_xF-OM|9ZPl0)iF=UTRPs>@ha=;
zctgjV)FujF*Fl{{ryA<#@wi<AOO@<r%q;ft9UTkU7afarysKj&b(&d=q<4&#qJt>y
z=j^+@7w_v>rt?2+_@lpE#|j-E==e|v`_6@$`xpDg_*|*OR<f&A%BI1bxgYCTCB6Hv
z-_~$h(D8{s^{`9FZXKWMSg+#?9h-D)(6NyUb$qU)f$VfeuDCA&hIa$SKecYwu|>yr
z9bf6#D#5%&$^Me_RN|1qOm{KN7!^Bo>=cJ^Jz;pTYefUJN5@_r-$`Hg>DbRzNQRzs
zfk)E=I=<HZ0~OD}MZ<AW$F~x1oOkR#O*$lX|JdPs<9lhBl5F>=@Q>;EK?3+k_T9=F
zX=QO8JFep=9bAxq*71u>gcCY`)A75GUv-?6BAU%eV>+ed58+V%f7ft=s18j>Oh=qy
zZ=j5UgbrOA%{E}@Na{EzSyQMd)Z(D%NO9rSk<sDm_)*DzQ^`&<AWxLwv|`6cSXoVG
zW^p%sNXKcZbw=n}q4XYmeO~Yd9T#={spBtpoNK9p2bJtgT$4lo=oCGY@Nq25!1F77
z|1b>5B!J;(OA0L|^a`PTJSl77O2O9}C?}wr(DFhn7^rBVl7Y$wsu-wh{Ez*YTV7q{
zYZ$o7z|{t78mML9n*X)%a@%N6ZK+a6XkDT8gwm=T4AeK!B88SI+-RVIfq6DwwQ-XO
zC?-NC8X9P1AV)Yb`LQtM8fa{wiGhHDbkgr~o`E1Q6Oy<g3B^Fjz;XjC41^8j8+g>f
za03Mf3Jvr&aJ#|3Oh+>V?F_Ux(A@C1p_T?(8Bl4A;U9A7QU)9Otqng=nc5isdQQNw
zZ%dsOvI#mE=xCsuf$oOCNOqzOn{Jg$+*vrpU4=uy{`N4?Q#x{sF#U$4Ij(8kC2uuw
zn*jozsF`|kEZX_Q+Q&d&0|O1*C7gZ+`WqNvfRV#{gF6g=&1bsP0K*`l{AUXrWZ-TC
z_ZxUXTD-@=y&}n{3HI(j!JG)JIGDp{V5os%!hFcUBL;ZLWYNRIp-Dpwe-ENDMbnUd
zA$XAw1qMbKc-g>o10xMQZeW7J*D!pwqYOM@U^L^cQZ{3oX^eq!yzntF*6_~><UA?;
zrP`+qRPXFR5kJjZvYC?7+s_(!jxI95$Nc9FOf)b_y7PjleNlud#wo@*LOWUOB~ebz
zR69lJR0GpQ13A<)!@x`fZyI=u-83*u<X<%~o59f2-{$5Sm?N0NbERStpEkc{V7`IZ
z#T##MAmp^bV;B?h+Xmh-u*ASp0}BkiOU(ub*Unog^7PmusX}2gNf%3LQTBZa7)H)A
zVN&vbd7AjZz=sA-8u-n?N&_Dm*ll2sfsYNWGO*de7O{V|flm#rH?YRQTH(;hPYkSM
z_U{}91`{2=K?3h{178@}NaxTnj!WG<CW<jiH_3>wr^F1utrBwE4SZ!_n}IJm>6C0P
zZjV@5TrGDP{`rS#r-%{klIjFhxYxiw1K$}qB+UH=zA<o6V&j0&uNf-x^zp5PE-mCL
z$BJC&Xux3u#|->n;D~|m4gW%h!*`T66rF8$hkrD1+`tI~zZ&?7Lv||XX9K@TTO2PM
z&toA02XUYd-mTFp&bZ$VoH9^0i7S)%gZ3Nv)4*Q_q6RdsCk8SSGcf}?7kt5Sp$Vb%
zQqq8FASJ_OiRBzkTP8BQK>OK>Bc;SFat(L}&KWpw_=ow^)MMa`RHTtqcvi-UMHdWQ
zH2f`$kJUW5vcEjml3wC4NkEoLqD0bH!h|HUlE_Z_%NM)GL}tn4f6k(hTUl2m{YhF{
zXc?jO207)DD4#_2Bx)p4A&H8zgjP+W5|vAwJSpK?S*lbK%8pb^`pZ##zfZ49;%cc?
zN0>FmhHI0kC4fq<5mhvd6>BF!h3rLLDXo|EhnU&xL<4dCByLRN<s_yj(IAPNlDIXA
z+mdLQM582HCDA&GoFsCSC`h6(iN;AZp;)_MIEg^g4{s(ViM*u0>;#3fX=3t2B0%AM
zX_tU4Hck5L5AAF&%w|b{I*_9#(LyY5nFPPeN|#cGrnX6<Z4#Z5=$!PKoHFf_XrDxf
z;<4yRFZBqoQT!E*4_S0_m!!Wq^h}~_65Ygy-IM;x)<ZA>69sM-YYA>)H$&NMu2&Mh
zlNg@FV@ceeM4u$?N#b6q)i;R&N!*b{KT+OaDBI!%H8tER?!7CCfdY8;pc9w|N%n4`
z6uvKs`;!=&^dHS0NMdjj4|C|PToyf;#6u!hq>wtP<Pj+yQbad~C^?MYu(Ajq6(;eB
zBt|CjbP^Micsz+w!XL-}iZ<FXR+<}4ZwrS_llf$^PAVTS0#6C0LJB;S#Is4fn8YMu
zK9|Hq37F@FQsDU$C0?Mx#Ye}NlK#%iG&PCIf~SZi$A!#k5(YCv*$jypNz6=QR}#CE
zcqNHhNvufXgCu4rF(-+4l30+$TnX&?NxUu<=LvmP=xahb3*Jcjn?BQ9BK#)9Qt?j(
zZ%cF$+^hKO*t^Uou{eo^GB+0qt*7`0<|V~5ZkaHb3VmNFqm;q0Jn64&#2+THlHEz-
zbLrGav>}O4lK41@RY|N)VhvlDD?th~m|Mt<qm$Q({Dvex6|i1xBcEa$g;O*)zer+J
z65EBdIq6@^Z%g_Q(OU#>70QV~KGT<y&8w76fv-etM-n^f_HzFFTGYHJiM>gjNaEKd
z_9d}DiK9szOX5HhUng-$Cfzql9897}^S7dqng`eR7tilRps20GNgPSyx+K0A+sLH;
zAH;7zNnd^xd|W7tiYC#|lKn*}_mq=K{Fa2CgptJWNt}`(jB))hp1)C16=4{g{^>{)
zXA<xUF)qd=M3R1^1Ct_b3x_S5B4EiH!aXP@d`Bopp9(W#xhvEYdRpk2B+e#rE{XF=
z{3RT=cp-^DMIrG;QNn{w(~y6*xx__4ib|NsHvJWq%q-In4;ofvTPYJ)n5bi-u8Gnn
z%9yBNqN0hiWcCbSX`-CzZxDP6<Gd(uf_JmrC5buNE19TlqKb*CroVLX$(m~dgQ}W|
z>LzNN2#VionEq;0)5KL`!_`8$XVIQog0B&Jt<a*oO6sSodM2(j(bz;26W5!#!9)%Z
z^P-s#!u2W7U-v{g<r|p(ih7gKhC&+&<$UKaS$y=SJ-k;8n8>4H(iTl6laH}m%`BQq
zd%`C2*+&zjO%#|YG%?7;-6oofd{3dx=nxaCi54bWnP^Q9$l1Fk9a#K>(bN+q+L&l-
zqMej-J>l(8dlS86mUUo{l<bZsI+^Hf`m?6HXeQ_)*{&wK2_T17k@k=*nKzrb#l)>9
zZZk1JYEht<i9RO!n&@rfb`wR{cf2lOQ9ska(Bst*m2jr?H~mS+$7Jp%cbNFn%(~OW
zK+|8_c_ng}iJ^*r(RYuDdrii+@00sX+;8Gx6OWj9z{FtM&?oO96AzmH4#>p0M#{y9
zQ|Z*S5<{rO#G@vL(>bB+EIuZfc){|2+hX9cZqdQ)F{wVnZzYTT$EB@NrhgU59g~+N
zV}vt7=vbjonjA-r7yOh^p3-UI(}KAa5I<w$SrgBhc;3VW+b^BS)=j)<VUmRxO-$lk
zumB4$(G@0knb>V&iixQve=)%_6Vpt*Z1R;kykTOxi5Vv5n3!u~rioWf%rY@sY-ZPJ
z`TwEwOuTC1H52pyUFJ;_Z<$zVVv&irO}t}bfr)obKT2zavj0inGqKp@jS!apyUcPE
zD@<&pA545;;zJW_O?+ZvrHPMBd~9OX|JGe?VvUI+%Gu57$?3)^yw1d@lr*uSxb$*K
z_Lrmixrr}KZ1aN$n@nsrvBktz=`Tx*WH{FU#oJAMWnzbkom^g${uAgw=^hh%O+-y-
zCia=wZ{i0NKbkmT;%gI!OdMtyn>c9VTNB^?yPhK^zBh5y#IgUC;qt{R(;|A@#7`zp
zn)uDc&nA8`al*u}=6^~rmn_1+n>c0S4-=7pmx-B(oA6AWHjyx)o3Kr!Oc*ATCQK6+
z*N~8ZC-YD0m`Iz*m~j7BhWqS)<<FQnYvNB6f0;OE;=G9qCNBQ3{N-M~#HG(f2@6@)
z|HIowk|iyave3ce0*EUtl(ulAg$9(jP}ag#7GJ`|l@`ibsBEE%h4L0ESg2_6?Dwxa
zt6HdLp}K_{mcKaHW<dUf*0fN|LR|~>EL>yZS_`!;)cJS$>nvPv;RcKUe)<2Qt-Ndp
zH(6+Cp}<0+g+>-~EaX`TTFABdV;`DW2+)3!yqp%<rdSAB2wTW6*8fkLrWTr6Xl0?b
zh2|Di3oR_Z{^zfO9MFH#HWp93XlJ2)vCKdH(8)q)i}(2$Y@v&Vt`_=Q=x3puh3*z^
zwQ!q-9u|69xY@!j#kLjcsTa!T{4JurEcCW;yM;b<>1F)OaeoT~EDW-6w}m?_+-YH;
zg}eS;{vL~OY~ntPKPCS^d|qV3gBBjLFvh}I3lCd(#KH&*BP|TEFx0|u3y&4o9cJNC
z>p$0A+$(vaF5(o?$1RMq@PviY7K%8$|KS70<@8Al<19R5;aLmgEj(r6X$un=od1w4
z;yh>Jc?%OQ?mPbvnW8P}B@2@|L2P8(m||h7g`F05S(s+=iWti+tgtZM!VC*<T6oLC
zObf4Am}lWt3$rZDwlK%STxyUF?w|BE3-c|!ZsCo8mwDU5I~Lxvu-L)^3-4N3Xkk&Y
zJo~~?zML+xu++l)7M4lB{!eL<<Odc$w6MX#Mhhz~d}Lvbg|!wwwy?^=Y7UCLZSsHW
zeqv#rg-<Q4xBRDX-n4ToXQ%jR@L&3wh0iT)wXn^?7Zx^I*lb}-vHazdMfgh#+bw)$
zVF%?e)5A9txH1&c-4^y(h**eP*lS^*g<}?eu(0340Sn(*IAq~#3*T5cXyIG-{j$23
z<HHt?Soq$;(SMiu(ZX>HzgjqH@dI1<*}^XtPKZ2DiM-qVuT@2wf3xtrg;N&(D3-ar
z#UiX(h*@wgcoyOo5*92AwgugSVIgV3{9k*X3}w?5MKoo>v5>Zqp${+PUye^(IAh_W
zg+DEvwQ$bDc?%c*UH&f%mn{5kp@fa?N;Yp?|4Ct^q>Yv~TG=RN;|d$~ZQN+1w2d-0
zYS_5SMp+wI+NflsvW;>!%G;=5qvF5otYV|8jcPWk|GUi9Hfq|aW23H(S~jk+ajlKo
z|1Mw8#&tHXw{gS2%QWESzm0qw1vVPmXk;T`BhN;Tja(azZ8YH_P+n&HCk@(AY=mrt
zi)Hu|3=d$J(?U5za>_Kf(bPsW`+rJR8!d|K7U^$oqm7NbZQNs{t&MgzZnbfnjrKM=
z*yw7bn~jb(I@#!Kqs#x+z1+g?HhS2&*~Tq4dfNWs@IR$v{5J+Km+WPuw~YZd?yzyY
zjXpN|+30WoC!+e={?y~)oU1P5ic`BNy6&_w(8gUh1{F&VGym^WcCU^5Y&>RTgpK=c
zJYeGy8$)aiw(+2ihip7-`)B+AE`5*i7gfFpBy=c?Y&>dXIBQ+TzZ{RW@wkn#G{D9v
z8&B96ZDY*8%a5}$-o{flp0>ejXTGX;IpxhT&z8@~cs(ohIib(nm}uh#8!y_JEu2X<
zUb6ABjp;TfbMdz^)y6d2zgzY-{DaQ0G1JB?HfH_1%pB1?S7?z2#>{Ir_6vu2zKz#y
zyutXf@s=<@u<^El#X{c^y1>S}HWu1gWaB;I(8D|j(#d?TZ<+Le#a<%(r8eHTvCPJD
z8!Lpv9iMMXuyy|M<Oj@{z=t+g+W5%E$2K<G*kWUqjny_b*w|=ejg7T7*4g-!u^r0h
zvkcq%#P)vyXI*A_j9+j27wLRJ^O@4h=Zq*e&6hLzP67u)m|Q>k_%M5G!B!jFZ0xeJ
z+s2oiwl==9v4hJ?wG#Xdh-!Huywmny(<0_mJRh0)XuQY9UK{&F6>k8joTa>KD7p<e
zApEawd}HIF;G_-H#<zmMvvJ7AVH-zm{A%N*jqhz7wegdUpKbr{;+XB<4E$*02Lb#Q
zjM?M1|8p1toyI|@@l3xkyf=nU2<3&qZ#I6n5w)S&IA!}kqerC0KkWZp`;b%gFw0so
z8@iOnZ6s{}>Vx+u<P#XeFS_xtsE3Pc3RO}_*>G%>NFghQw2h37b2iS)3gg;1ZR3ns
z;&FoS@l~B=yYgck+hvybFc)lGwDG5nzeJJ(WK!l5S3lm^a7~aKMS7T55PbB`P5~*D
zNug{CB~vJsLg|#>WfonL@}KKF@ANhB2B7F2S_Z(CDU?s4LJH+l|0ybJx?&2IQocRB
zUSJhoAn>uhY6{g-sLvl~Q>dOojTEj);o20gO5y4hYKaEwoX6j!_zGyszxrUKMQzni
zp-u{QQ>d5nM~yPPljI8n*QIcM3imyL8&duowhS1y#TPT!E-h)0!c8eCDTGpJnBxB&
zM&lHkq>z*1X)P<47MfW!kFD_J$%+A570S*_At>6|5Eb&0kfk&xoI-vIO;c!=LP5$O
z@xm0Im++w3MM`KnU#n=If+`;4(9jZ=wo0LO3Xi5RJcTwXv`yjR6dp;TT?*|}=$k^n
z6gtq_cELU=|4rtOqMtfDrO;Wr+$DvsDL?YNrO;bI_Y``FSWmW<!Y$GrzT|Uj3b&>F
zAFz6HTq^l5%Q4Xga#;O#sY~bZ^>XTGFZ^fx6dn?XQ*1!Wzp=SP=$$DH6hO{h0tN}a
zTj)JP@1_3*Q09IC52P@-nDbzY|D42sC5CB&czZ|+Gxqvl9v>?G8YYxkn!!`nV<}8c
zVOk0!*qxL=2OsCq_Y6-FJSv4J1dJ9sMkr;*3V2fJIHBWHcq)ab1y4v}q5w)hBj8z~
z&vEz!oE@mJ=mo(q3Y{eMr4%L$;5QfYU+{map`8OSHKzAoPGLGbl0v7YCHTtmOh!}+
zi)GMfvG3RC^5v7?cVM=7drk^-Q<#^+t0}xAoYzvApTg@Yypi(XIpJjj-{s&dG>s}{
zznQ{YDZDLX$9Wp4l+C+w4lA$Y7NqcQ3JX(M#3n>fVWsS*m9m@hg&At7=6jWCNy@+0
z<0*Za$dGf_Su7X4B83l9_%MZ)DQGTYE<Q@(V_KfZk~CJOusVee4mLVilfqh#tb_X<
ze3HVt6dE|V$-$>7tWV)^3P&g@Iya@TIfaeHDg0EZe$GkMRL!rD^+gJ23RNaDx1_L@
zb1H=$TvDRSw3W)X6uu<h6L_z0Xggz|soL(R0@9saeC}4hWzp{7E{1wjb$1GT7z0i7
z_onc3Q>8Gwka%AT`-OQx=+{EO5z5kow4tX$@EtWjt{mdHOb^|BODJ41|N9h<az&jI
zy4Jz56n>ze9h7(QV~T$-4<m&nd%=cM_$|fHmf;ua;|ZbXE#JdyhG+en!b#yUyR<^+
zR0`W_6hw+Sf2916YL)yXD@rG)5EFh}=trN0_^H`M3MZ;6x^RXzRZD*wFjKI&{5mM<
zz~<tg!i5wrrr^-j6x<ZN6f(v77dBNVHTD1Z{%LwRh4X8J=cMRt3STr;Yi9f}9h8}`
zoEK)TC4m*C3)ij={h7ig26GC3ab#DAn7Z}K-%~@mus>_TTY(aezqVuv<;#M^KQ>kQ
z!KP9U%1ZXJ>B<!jN;?>LOXyriDdXVDmjh(B=v;86gLMyv2r4+J$Y}X8c#VTf4k|l%
zR#j>`sN&$rKqWX{ahj@C9aM8r-9d0w;3@~?)DX%~nGj#?;Ptlo1b8^ay0t_@gCh!c
z{@qlq?Vyf>x>UY2z*OHsJ;83v&~*;3cfb#cGTq=Hz9B%+a#`?32a#RDz41Up2aO!G
zanRO5jsxC$H*?V3L1TyiNC8b9+_zr|I0&T!1rDzHB#<YV*`NT0w3rhXkT3MtKLdph
zh747{oD-<mOns<qXv)w~k82gxK??^h9i-2Me^bNHeyFr+rnYj>+5vm|*7(9_)&_t3
zInd5Qdk1|S^mWj|K}QF@9Q1b3i5?qL_}L-lRtMh9{LVtV2<<Ago6znKdI+FQPX{*_
z<6GF-7xT%ahTAxNhm>kPLL<s3w>wz8CV2lAKSFA?%j)N#zk|DFd<QtV!|}hjJIKL+
zuF9Pb20B>OwV?6b0JE#Bgzl2;`<wGAGrF&@;U1}Yuh9O@)CU|4b}-Gs%MSm)3LbLs
zsDt4S9(M2udpA5Zr<pp0Ll6(XyF4(|!4u8YB0S7NnJS@yjg`k7jG%uUJndklgU20=
zqL_nK&D7O~vT;%Yzppgf!Tx6IScad2F&w^@A*Kxz^B1koALn2^J=sEWp9-89(rn$w
zLE;Gxo^kMkgBKY~tfDB^gQ4dgJm-Mle`NN1FMlG<)54*Bfj!5<lN`L{V2XpO4kk0z
z$shYg@RnmCy=th@Vnv;(RGt}XSVig6xL~@284eaW{8AofI(WswJO{5jh&EGaIhZSM
zneCvV5-L0#p5x$BGnIJon!u9v%4@9EBs`zdE@CyCtNdcuXIqsw9K7jZ*s9Q5!hgrX
z+manLJk(%au*sMH^1hG*;b57A<qqECEISfj;$SI9mi%SPy3V1N&xGE05N@viewQ+;
zl+t*b;?+`CIQYQ9N(Tq-FYH+<??VS1(<k%7w>4LL9SctWA@mW0=kwsl^tOQ2Le~gg
zEA$hg>x6zPl=ABZj4Mz+WAJcVrO`NzFC1)gU^=iIY<954!M6^+bFkIHHV2PYD>&fb
zO9$H>>~XM{uB%q?m4h7)cGAMKd3A>?yByr`TwpiHZd-_H53BSkSTjM{=kPHw{McUw
zYsUvR<P`3AkX^li;A;on<^<ke5cq~3TM#%%vF!@MAqR&YoN(|fCzONl8B|*ejypIT
z4j*;!1DAcl#~keI7ACXbIpwo+!8zNN!ta7VIry3Srv`rE$X*>f@N4L=^I>LBI{1yF
z>_BtyyMu$zh5isqaEg;?fik4IN*ob9rMVj8a^%3Eqt+-1hC#*roy}F9q4Kh_gwFpe
zXs!#~`FbeHmGgClz;=*wP%4cp(r~zdIJoHGPX`$XE=Rm<;W?^uaGITJuAZU7Kb0%$
zDr2Vy-k7GmdpvxWp>;gWaX-(lHCLG~2)H8=_)CH+D~;?l;+w;lXxQfP-~3TcvizJD
zvsG*7Z~4VP=OFFx0wvQpci#V&W$84^q;XXmSEu=Zu=C5NQ9X^l^8#0<Q7(=0X@6KN
zrco)43TX^l7~+_6npaMvN*YzusFp^9Px8qpvx=%VQB?xU%uW^5NTWke_?~ikXWk6e
zOrusBH>J@qjl(ko*QEVVh}KTy$`Se33hk=;-x#eU{JLq>6L6i->xJGRw7yVE-pF<Z
z^P~36KA@_N(#T2UiM>9)sbn~kuk3p@)Fh2S8l%WhBQK3$8Uxa}BMl|Z9Rb~_A&qbv
z`DwIF<C*=T0@^%0#H6NCD7dN6X2tyGY3_Y$kxYv;PW&8Pb}ZN`jn-*wSgN#1qiNUh
zppyZnwrR8zCi(3JbP(DxjZVe<&S`W>qpM`!QdK4j_ei5>8hz5}o5sy)+>%DGG<v7;
z{-x%(rcpXva2tEEII!_0#W3<WsOs%3s#SPRhr;%s2al?1wdsZZ(m3@_X!Hkx%}?j|
zXRxU%Q`r{kooNhAV@Mi9)3}SH$-Y<3dpM1|)3_&%`_p(Jjq6*e_oi`Q8rOXs;8zqo
z*@3$PA>zSlOkYy)%c}f`XiQV}L7{D1sO#q|PdUmX)Yd}%>Dv%@<Y8&>%y4FNcz7BM
zn-xAPbW96%`GxRfY0UjRFhb}^p^pn)R8kq8#+Wo_rtu0x>!;w@G$y9;LK;t|F)j_g
zWZroCAsKu&ji=IlD;~#>2PbgIsJy8<uZ6m*g}SeW56FLxC*Bt7^P-1UUX+Scgl;_^
zoRr2(X;6}_Oits%fI`YlO@l?#(s-HOl!`M%o<$U+Hqu#X%ueI&G~P*LP8y$o5S)H2
z_&V*UHhT4f^4PJ^t7&*wC`_-VF~1m>Y8HNjYL5lqOk+~b&|91fR+!nb?LrIa^J)H`
zyD*J+(}=WCpB$(3nx!mC^P8>yrtls+nD)U^j&d4*X7E=A%hFiRq0Hc}3|6G^K^he^
zsFcBnX{=;SrtxbUAEohe8egWdo!&@eH4Wwhp2iQ)6s$>OT^gUJv6c#3sMoYqKViqq
z=2iVhX?mbwJ)<#=jZ`&EDQKzoYN-xsseVSwTdLg38&uAJr=_}y?&4}QOxfI0-JHf2
zhUMSEIV%Fsmd@Lj#?LL)b1l{TH~BBceU-*{X&g#pM;bf1Vzg3sadvMA?&f4{r4Ce-
zJ#^_^p}lGBOJhInv=ydr(l{Xa>mp7hNajJo-xkZPjsy><afFe;2)WVs;rB9#Kc?|k
z9pz{m$JklM`8MASe%-h$PjoYtQV9RViFsq;&uK2a!Je(uUpU=bspsp4Pp0u(8h@uz
zB7@&KgVH$9@JQnij!POYM>CCR8d@63G|V(&^hr}yPa_oz##!-DkSQUcR3u;sKl`Hq
zOCN5fPHd%GY1oXMqe?1`@e2bEM{Q4-+12fpbQ*(0;Y=D2KNKQ(yOnx6jWcPSrEgoQ
z$6KlA(%>%16j>Q0eV{_#MUGt>m$;a;R{x@KEA`3wp`6xg#ie<bTC4Z&55-;&ys$Vg
zD}yo_l+A!RI|F1;GJ{eX)T<QchnT;rk~eBs;ED`NXF$Mo?3KX1t<~j=16O8HE`#x1
zlowj7<uh2&THV@Ot&qXjO~co(4pz>fN(S{axG{sf-&Lw+a8(9ZXYgZdwOR(L@qy|Y
z)W~4|66Kk-%BdB>ni+qLYG+U<!+#H`)XLx*0n6Sjyq59&X5rb^>Q!yjx*1%b!Q?;l
z^V_KPGPo`Sf+t=Ikdk?W6s`I@&>(}GGH8=Q+YFvM8f=(BqYQE~xTTHCY;FdPGiaJY
zvkaPK_&=Hurk)J)G8ocE4Q8NZ@M0Tv-u%$sa)qR!4A?r;qBd$l2IMdmX7E)Tb=TGa
zF%2Vbo<WNYT4wNT8&%EVd>gf9TeX#B`?OVCvx&Cqltl{h=(cLR4BFEh8-sl_h+R@T
zWY8&thS_<180nY+k7qm^bk3kl23<2abaO$e-vZqQbQ3zWt=c1lo*CTC!TK%0bSryT
zj90c*Z!5;V1oReqyU;!v9B8YuN<aGl!BBsp1Oqa-qZr>Q;I;LEK^(pe-r@LWa8CyJ
za>VJ<4DQR|{tSj^@K^>9WH2~`M>BZ$KIOp-9?HOMs}9ZJVfy??=#dOg{-TtQ23R^o
zWUe_8`mw-w+OQ0+Z08T_phAVEBQhA7LG5M1aTz?$5p1W9&R`4!Pw*4;SUYu4JN4;y
z>eviFNgQ}GgEz@J8K^Z^Az0r|J=jh)DUiX03|`J)dIryA@N5PzF)%WS3<*BRIOpJI
z@O%cn7AX^jmT#{P%2D{W)=3%u^Tt542}-$&N{`tg&Z8+A{?i_1Dm%L=h)o647)b5a
z?(Nm`uPHM!m`MXNcq@ZfGFa1Cc|+*O^$KPQn4Q5K0ds}U6Z)#q*M!a&`nph7@3SN{
zw7p8uzI~|OGXXveyq&?~i-EU|z`GeN%-~1{-)FEWgV)b1t63|9twTfaQ6_^W87!6T
z$3n?}U%;{qmKSqY2>5`zfPj_7{Ez6L_A09^7@@2ZCP!p#2A^cGD}&t`tjplj3^rx3
zIfL~XY~Yl6KlB+rSv5?sQL>BLt2mMWxnMHCpm2MYU<(yyu$_}didbbE=e6MD?bXxm
z)l*jf4jND@MERXuG&-nC2bJ17Ckysuu$Sve2H#|`k1IoEWq)y7)O?_rN#TQ1`W>f+
zfNwc*&M1^WTx<`8S>?Blfuk85%isiOWd=WR`n;<A#HHqNIP*&2#|%i1v*VA2N`9sM
z%<w+b{1>5})+?m~p_3W>mVujr$MrvhQyEwp|K0dM=$2$)(o`iWAR;s>RO9RxK!G@;
zOR!$dF}T!Z=d;M9!EXh4`LKGYGU~&i&4wz6QyJ{Y4?9BBoML4{nGA02ppto-R&`L%
zW^gWp86DI!8NA;?<%Q4ORPcNT7Z@bL@a_)kw?^P%2K>P8<dRCHgL;Y9a*1;>)I|vw
zSuR2@!Y;C1z(si%6<m~b!Gl?87iC<O5`2Zwf|Eh&FYDq;7dKz0loQI0{_hSdvyE;K
z)#|8LbWzDgu8YPl9-SMi?4p{B>MopZp(-w_3TTvDcrp{H;o>S6*Se_fBEO@0HM4Eh
zJ{{GXk|n2>i)#dzJrZJ8xfrhFqMnQE*u=(QT^H@EgelKc1i|$#ZgA12vBCohne|<e
z-sqx%fSZJp)6hjD!8yeoo==*%xc4<B;G*Sl<?)W{J!XEMi|O6Myz2<MP+WeqDfsqn
z{?$jmivkzDUEJ=X&_z=hZC$i;(Tr*zD`@GWm5b&sR2R$Zg<H7T)log!QGKPOx}u}X
zi%mX^Z{MEZn%>@9(8k5&h6T+V7qoZL!9`~mU0e*g81Cr$PvZ5CDxKKVg(0TbUd;b^
zMWCyT?k;+`AnqoVzfSk$5V+_?OFH@6@hxn3ao{!=w+i^HqtC1<MSVJ{BRi>mT=aEu
zw~KpR^mEbQ#XuK#xftO3=aV~x_Nf;pzEkkaom67#8RUZW))xY#N7m%e9#QbXdgWdh
z_qn*=#RD#OTnInp;>+<_TTUs1T|7uHHC0!1QqS#Gc6Cx87J+Cd^$`I)<PT$bxOm^i
zG8e;LJmzAii&tEXa52)w3oc%C@wkgouKyf5!Nn6UM!OjA`p15zF#?_xI#y`YWN@4S
zboS5TPq}!S`g;}B>#R<jT-c(s`i!W0Rw#8o=i+(SKhHBw6u@VM(We8GTugKEvWu5E
zKs2db{uCEuJF8RatIq1+Z}W-$)6SmYYn|2UF6wL!t?Q=Dplu5S1hZVscJYpj1uo{e
znCs$I7q7Y4y)!V6_wDiEdpCrM?_M38@8a`=!PgmGE;e>niH~$v-*oX7=Uo@o>Z~rP
zUhuZdZ<L1`bWzD+r`~n()9T=22H38^LKll%yyv3k@lb~@DzD}ywJ%&k_x325>jjoF
zZj<4})`I0OR=D`a#X)h-2QId8m|T45VkPZiAh{UaMcv|J75n>D@KbUo2UZJCmd{%w
zV6BT!1W;g|fG={x>qT;d(2YV_@iTU+7=PhnQ!(D`!ac80;GyiitsL~_A%g8LzH+h0
z#a=E8?-b5i7ueyV^~cIinF6~w1YOkKE^f>zWa1~?_p#!8q5WK`YUH23*8j%+0T*9$
z9NXnj(EMAA%I^feWk+6CzISod#dj_axj5|Nh>LYw0@wA-w{BLNUZ4NwEFbf$ug6^c
z?&6dSuI)e24-*1E3Oz3LCl@~pApaK^CyMc}0!|A3jdNL3DDVdZpj2MO^?zI-s2>YQ
z1!tNRkP~;2a1l9;=xOLK3>Ufw!$Z=A>0*Y5nI0?`HdhZ1s)rOE!nM&uZ4YS|8O}Zz
zm*_(mi@T`jx~S*rA{VE*EORuwsAuVf&lS3K?%$yy!SFfGro4g^UDOLMD16aHjjn#J
zKP8*rRsEZbzlRDQDtgHBknQ0L52Zc8^QT)W4^MPe>+A}Z^g!CDtD1K*Jg=)-#zR>T
z-*#2YdAPSvh?f{wdbk_mInRaGc2&zu5ldU_53tr9yOl~FDtoBnVL;{3O$AC-4<jxr
zJX8}`^HALbK@Fi-31#+b4>bkXD&}0{;ibt6i|Tl&>mk=eV-NK_T<2l?dgUe$c31U!
z4{J)R^*v0=1a4rX-Bf}bDPLA?AVs^Y<~8o7*1tE@&_g2+1UW(pZt12r@euGZ@qMMh
z^Y0JygoZr?1t>y8LRs2<cz(WMo>iDF^w87;FQ^~s<{x94QPumQ$=%cz9$I=B=;1EU
z->q7CXzQV!ht?k2unXsdd<H4sLCHE3XmNLbdk>F}S2}oD`g~wkG}O@pZ)M5p<e{^N
zE*?&A33c_*hsF;Lb`#<59(oAqDfBj>H+#560PEiBA^My`z|_k_?_&P#o`2vWldAf9
z=qEb+3mqWz4xuc))58zt!vupk${rr}@Q8<dBtja0tvujCs~Nu61LN&J5BCed&*%_;
zHex^y_VA$RM<&xl0ys=VJPh^lf`=D945K|Bp7b!z!*CCec^Jj0^S}qv5gtZ*cw9!7
zS*E4kR8ndfE&Q<}M$KacZ0)8V@20YpR*m=YtcT}3JmukO4-@F>ua#$n5>OB6CN0SH
zyy%}OMV?fz(w!fU$)7}H{wkOv^d%3IJ^#WpEJfr`^)O9}h+p<Fy||RwS3Jz}u+_sh
z53@bY@vzLpau0Jo%=7T3hqpYu>ftpHXRcS?@GxII#{Hd-B%E}w)06%E3knA0&41><
z?O{eKb%BR>J-ov;ArkCfEqqINbs>jxMqmj;#ls@O?+GPyv4G{X3g<Uc8cfQ6-@_|?
zlpn(((iI*)@bHO;bsj$Su+sC-7^^&-T^{;~y%?D_YDyOI$HJ*lBgE3xoH!oVavFw}
z^*aJnKT_^F8vNA5dJkXF$$JBjbXPZc*n2VmGY=a*OzEz^-(B6>UH#m{kKI-B|C*7%
zNhGK53v3p!#lz3PhCkRB_>z;?!%+{%JbdM0hlibGLWfD&=mcet=l`tPerLfh54$~t
zHU*wPt&r~Z@ZRnKi}rcgFEYdjJbW$q8=(h<ep_7noq$6^z3ysnEp&ul(n8;JXpV&m
zexS9CWCoIl;~swEJpCyDHxE^Ns6Tr+!G*47_!r5Nv-)sg$NA8&H28ezq=)i#lqKtx
z-#wi2@P~&8r)m%Nz8-2+lu%FO9%`Re`2=wf{GB4f1vaO!?UhQqdCH+_1>3A((u3(?
z%xR204T}Nk;i}WP`ZQ7=9Ini#k$oCz4;c@axIXt(T@D=Mhr`4*f#Kaly>@EBr#;m9
zJyhaz?52kc9xi(5`2R8W9new~&)2hiYxXIKAc80;pk(nS9v}^p1(E#7Ip>^n&KWU_
zprC*#B7%T|0Yy<vh!`;k5EBM;XJ<Cecc-5F|9<E6x#xCub#--hb??mV?0bFkI-ksY
zuy>xEud`@ocJg0**w&=DQXk}BT$V?Ev8|c@bgoZ>$MdZyURhj^_W9ohB#O(UC>BN4
zcE*lk&apaKY;9C05)D2YYD^CeYL$N(z1^C<d2&JVDB68nP$H-nkX)hFS@HZUqbM0g
zsVG)|TBmFji$~phRTQP8sIaA=*WY<mzB-DpcIB4Qj-T9IXWi`lTgK#H8^v`|^p2uW
z6y>QLMXe}qj^g?#Zir$)J5xQ1icwUeZ**o?cI7B;jPkO%PS@6T`Niu^QH-vX@1Cq%
zB??xnUC3QDCHUiq)uL$LF8Id0Mid?QW_!Qp*W|p~nRhSMsU5{FQM8QW_9(KW$cdtE
z6!oIWjRrR(ysgNO2KNzpQM|agfOi&kXzHpu1&SmT66;4{qG%Y!tx+^kefE8@9sfsX
zUafynQEzh^MR8jc6gE~QX`-ZQ6wQ=0S8Snps9n&#6{p5{M$ukv-l5o5hi=2f7?XFW
zN_fvsA2><}2In7iilQ^8sZI2pb_#Va^o^}uly_C^rr2Gvhhk5~UW%MT?-Tibqv#jK
z;3$Sf`9Dqa`$sV_imk<S8lBG_5Cxx>w3(mH>LC78iaq?faqiG4hD9+licwKSkL3=J
zf=~ANoM%K7yt=FRSw3-e6l0<o7sdD}b}i06-Oh}S;(^=pAN;$)<bHX7M{*`aF*S;x
z+nI?>{z%RwMUu%;bia^2h531Jy+3#7@@Aah7tDxaW)w%cKvB$!Vs;ewMsXk4H;TDT
zgD6(ghbZPpu{4Ue-_E{RJ8wZ0i!_-lr1KUs18e7<Emmi-N|q=V+f<L)g7#)v6vX9<
z(NX!=w>PVzSR2JUru3C&wc?s6>_K%|<)`X;da@{cV-&wvsJDT0e5K&%^SO6Lu_=l(
zhx6`^;`5vGc+ql?R;O*vr|^ExJ&LEJ*vqAlV$GcV5B$6xQ9KmIW|o`t9%gp6H@{wH
zwrF*$BIS=n@o0u`Q?fmZ$1;+~qnLJW9@Ta-$Wc7AApZ$wV2QjZmG6$CXM028Q!1o<
zkCLH$>tI^;Gf^DjR<c9;qIfon{Th=4oOOFMseQ1INS=%0ph^xY9#*9M`6yl}lAH<D
z_?1oW``Ir=@iI5pC%GT+B#Gi!6v<THdr`a^#cP~Jvd;1LruCq_-R;fsD1O?X%kp{@
zZ)Et1DBjHQx1u<i;crLrPKLi5#g^g)?D&2ZOCHO9;j!#fQS`Vwd-HGEr=$3g0gvLN
zC_ativnXn8srNC@pZ4YxTKm0#)fUCf{3>;h&&>ZkinGz+3olNy`a8K_C};IcC0{9i
zt@uq8-zxb|@q0yT{t$(~BbVeneT(7=2fH0yU_Ns@JGjHaFH!u;&FG+#gWs4cQC#Vu
zq=So5{1L@v4lZ}_XB2-$k)|moe-w?H=lv7KzfoL@;`Nic<FoRQ-WRM?RF@_dg`*^<
zNV%)TQ;bKEP?F5FcH0%A&XNjwmJ=N5VF%sQc|(R4gdE&=D(}#>1}YInTQQ=TrTEb2
z+0-xQptyrXdsD&*t|j_zs@JcCxk3&8UN(GsNWqUgb4xk6%0XEN*QmU-gMtpGjDxGS
zTDF5ZcPh8XW%bVV$}8stU!AX>m3OU!$z$>!a_e5_puB_L9ZUrWl;5EIdIz&R7z!z=
z)HtuQgBu;xcW|qNn;cYeP$s`_o&%%{sye9Ypq7K5&)2Eupt_P84mNi%y-L<2-t6GA
zYISaLknNz!;81M`k5sJNd2wEj`o^&2I=Jqgx+E-PThz&SP>23IsOz8}Cw?N^P2^QQ
zkzI3PHlMA%yD;zI7j+sqFb<kJXyzb2Kd;`zf`$$nIk?S1x%mY%))h2y&{#REJ+1sc
zm+D;jH@msRuNw1P>9`~<wAxbfcFy<XTne`|$op$<ZW{-8I+*BSl7qGm+Bq2DV4#Ec
z4mvpK;-IS<>FD64W7&lcI&o4hLN9bMogF-C=aW!gvRq#5SavrDJsEQc<lP<gP(t49
z>%8Nevd=Kc4*ICIz7G01ICw+eflI+Hc7F%2SIT2)_EPpB2ZJ39b1>Y&5C@mK77V37
z_3M%FobS~$pYNWHa4^!rXa{2)oNJP|{b=@;GqXoI$a^@OuO!{DHhZjtE!ztwIM_I(
zV4TAr=hhkT;ExW5gu{(%6q@W{ii712RydgIV48zj42#3xGGo==>{hSl&rovovE0Yr
z&z{M7t<9rwj)Ts3<S&|>zs$kh%$m+~Fh9c=C|Rhu$iZSIOB9zXa`Y+NgProm?R8di
z2<{FC_d9&`F}v2w!4>;z2WwPwt%G$AN^~^qwOVFp0r>{bNQHMPQnE?O-45=_NbYs`
ze_OKI^nim09qiEV4>|bozP$C@vo|X_7OM9!&xD=XTNFvQDtSclQN?Wzwr5%&Q}Vb2
zcS=3(6#BVS&F<oMI2XA6q=Tm%<i}7ahCSMJnCReX<$D#Maj?(9vviM3@8HXo+3R5r
zIC#!M4Nen=FW`MXI-k7pOSy*}{I#ks$qNpSaM#3wQ{||G7ag2*@HVs2!OPsFWApgd
z$14shp3mdkASWCgbMUHGUsHTt@wkIl9SwEf(CSd-TaV|y>EJB~BrJSI=N$*{I{3lC
zj}G2*@V<jj9DM5F6w{-1-f4!;!J>}l17=r8LvpyIIpg3X2d6t47D_(mnb6Vj6InW$
z&m4TtX*&4I!C41is1bHKS<KKHb=tp|_qBs>98mZzkM2%E$3~q@|4!yR6@E_(H|4Q)
zb|-Vr!Fk5S;p>0+iHE;~UwPDXIEOzOE7&}@;1>t{8e(%NlP;aZ>cLLtcWwH^!ILNQ
zE@~^upDKK>WFC86a_|pN&KSzX@GsA?xdkyUv4f~`M{#MFx|Dkk;tuQ>)|brtu#+Js
zoPZ}Cq?Du`gtgVzs->I?p;+J*2{ICifkH|mF=Q#ZEQS(FE>|q3NQL4tT#?~LMy`yZ
zWDKQLc$H%5jJ2Y%%EoX_4CP|DHir0(b?EtD8W2u4zP>J}PYG|D%EwS4hU;UvA%==E
z)QF*G43%Q2%usYT)nd3YhMQuj5<^v$)ah)tudmy&vzgf0bXZrHNM1dL)aih;ORX4g
zjv*(8Tou-i;g%S(V_3<Koz2r<)uBGi(at7M4YC&vvLl-cVyGL#oiVhHp<WF2HPsu(
zf;V7qjRkM7HH@J_42CYP4n7@tYyWv?<8(HSVz?~^l5fh@Bi6q^w~6*`8bdQB+%nB$
zXra7iMsj-$tunlI40kARqgdzG;Am<WL;D!I$Iv5&4l#6$p=%6B-p(sCvTmmsx-i0p
zrZZ<TvTmUw$rqpI78IIZTk~T_vb%A_{RJdFY2=IiGEW4zODw%~h~A2Q6nPC#dA}I?
z$1p%817jE(!!YH86bCB~iQ(x=fp5dLx>#|9;>Z|A#V|UCF)=KN0V!*24C7*$9mAX$
z#>X%rhN&@3i}4$cyop@Xck=kMG5MqzCaZ9YA|+QgsY9F|!wgRRll&6T25K{7m=!~{
zK6#X|6dO@6H->-a)tw&$U*nv|fE>xY_li6s|L=f%Hh*CZi}?Q$3e9%@i-AIu|4-f$
z^>eA>GDS{gxsnx%D`QxtWVPZN#kGpmT&HAx3>%c3w1dA0x+#Xcxpu{*O)<GAhI?aJ
zmcsHB?u+4m=1Ck?;&>p22V=P0Lop8z#jrVskuFBLcsPbF%y}0zU2Kiv5eChLxOg;%
zZ87*UST455@K_9Q#c(o)$79$L!*ekljA18V`;TF749{@)6`E%Y%@Z-aS7>%Cl02#8
zDaAdCPseahHTT6p{oF2QzmjKTNEVu_yO;wpwCQ5lcTg8|D2Br^9F5^cu3#7QJT<$R
z7h<@tiy>h-q7vG9DTbG0__T{T5yLAn9E;(&HXZF^D10@B*R=JLR;mAb3~$6xysN3&
zHL%k}@lEa0t*d!EhIeB4Glsunc$aR+@C^^H7~a<@ob75piQ!ZXAH;Avh7Z-@7rO>N
zPwHycbv0*V{Lc}1tgHE0@u|7F<e$dCj-M%h9s@`Gv#U89gWb)1q4=fZS2298gz}2r
z%y%(-AHy#({K{jYoB1Jz^D+Ds!;e~R-_4xkA=AZ>T!`Uk`d?@UcQbT`${d&YTMWOe
z+nnY_B~<=H$^34C&-ZpSPj)kZ#}L!$AMa)^F{K&6ZieMwB~czMN@$ZpHwI6Y<1r+-
za4~S=Y~m297}7CBy9H7GvYRR1J;;iX8!Q}4SV<KMyO`U$8{0+1MOhcuxX5yGnTrxG
zu2h}NT@-h5g^RA;O)(eax|`+Q4Lfoamd)KwNf)JDly-5o3rhBNH&?kh(LI>^_o|le
zZpyeQ*TdxXFpPgW7uUMD$wd_x*SRR~qLPcs+P8v>8(dU$alH%n?bzeLxs2=)_{qLE
zx>%^f2NlVyYR76W-s@qWQ#FoT-NpGH20epbwOrh(6S>(%Z5Ow=$ac}(MGNhi<D!m>
z0vEY1s`oT`E^hB>Nb<Fnq^^s4+MNkp-^IY5!Q40XG`Fe(=i9)AQQlCok>YKNjTNcW
z#6{B#Z>D5cPxDky(~`rvXypbe%HXut+1;TEj5a0Ahc+&VZ}v28U9@x2-bDu&{ao~S
z(a}XG7d>3`bn#<P)7eF`r|GJ^&_x#|l+yvqySeDD3XD?OUcoGSx#;bpj|)bO)x2JT
zX5WmTlnmf}T?}<G%*7xL!kxX$V9f*ub_iFnyBVUU7@P&Y%y8{H!o>r<3=6G|b}`1q
zAs2^TjAin;xKHhjcQL`m5*JHdOms2H#dH@lTugScua}wXVw$Q=alyUGvEJ$xY|<}#
znM5x$(*?-_#>&Mk7qeZ=adA~|)3~>puljQp=PA}ud9U7PMsIU}Z?nk7)4k1NwZN@$
zqPJP*V!4a8F4nnN;bNtWW_?WWKIWU=W)+29&CPwxzrD?BH#jubD3<PH*1Oo?Vxx<@
z=zpKUHyWp(G`PvdJ!+rAyIoLDLOb_zpgsY)pYd_=po@oG>~ishi_JXzdCt4o=3)yc
zUT7ZC>GN3F>f(_;=J`H>ah|c;nJTJ)zQJ~Wyhyo^+2P`JAG1^O_dbSvH`B(&UKh`B
zfAuv_apH`2Ut{{3JubTSHRJl4Ei}T@pwR4dvEL02Z65p2awB&!>~g@xb1n|{HShK{
z2ep+7tUmAJ1s9()6fTaqIO^g<7iXA7E?#o+mWz`vUUu;c4*?f%x;W<IRb7iWT)d_M
zWF)zQKlC-nUA*psgoROJ@%ozL{Y;I1hEZ+O&%Ev89d2zG@2iD(b-v7j-u=vke&&>m
zW&O+toHb+E&yXLWuwSqW=lTWn;-UJHi;uPMC!B(d&y>>v9-hok?mNch3$B+7*M;Ze
zD;Hn8_}RrTF1~T`El&~`Ke_mhClWm=G(Wls_YW+y{GgKZ{Y`#<bIt{^NPcI3b3r4<
z&o%O2RqYQB?cz5Vzq`1|1E-4_+CSJn>_z;`#osReWnQTfe)3*&gU{cY{mnlvh_uY6
zs46(xJ?3Ih|3Dabk)T%|;327F`7SIEDHlbbENK^S^f%x150*RRfuB39dRi3^R}C-`
z4_O{;5A?RyfWYU=JhU8Om`ke$n7#wdqyeV5hbuhn^YE;P5+1Jf(9lC8R=b#z9&S=n
ziq<@o_Hea_>pYbA@aO<j#zR>T*LXqno*!UN4G5N|oK`OkFxPq@vZ;axe}K8cLq(b@
zG}kMZ8)zzdL14QLG`wc0?4j;JbE8TqWDKi#sOq7bhw2o1sN<oAhngO4@sRDImWMF|
zO>GYk3^XJ+>!3>pntcNeB{?2)J@8{U&%>Jo%{N-yfu_u$|6)b^1su^sJ?%&*jR%IJ
zzE*Gbf-TcPgGM3!$sQC$_%;vIJWSVsH1^QMLsJjUJT&*v+e04@Ef`x59XxdOaJx?P
zP7iH8wDQo}!yWWi56?DAn9sZbYdOfYQ-kdlISQRAx>)Mup|gjcD(^SQ6e{WJp^K7P
z>Jn4En-_dKclXdk30I%hUKwk54KjT_^z$%ICH*}NASpB>Jq+})Ymgb_VX!vQw;>*e
zdKm8E)j@`3m=cD9i^VRV4>BV>{Kat#%_!#8;DC%)Yhx70dZ?_z@oI2_hlz};7aa9d
zRYEe^!xWW}^8}^^PI-ohnI1NJxXZ&V53@bY_prdj9PKsF1G~@lf&-K3U6lD;mxUe{
zd06FPwTHzXmgw3o_i)=_vs4qQaIjgXRpvQ`D>7@nQdgF7UgKfZV6$kjS?^)3a@t>~
zY9y3z;1Gj@71`wBZaToU_iztWi&yv_HhXwb=gV2#=kaAuJV4KRVK&%2s42wI@jQRn
z<1e<%77sk4Nq8a018^(zr=R(0u-WEeyN4${?Dp`OhLP5Gc?b_Nk1Os_+^NVlVr#`A
z=1DL3OkwqDF1q&Gqu6jrpul5iuZL$;(sfAik<B3Q_i)a`c@GCXJm=w{heICT<zzi@
z;SPIv#ltZV&wF^m!x0Zhwfl>TW7O=DA?78W*UO3=h{y7)9$r(Ow-}!x=D3HShL|^L
ze2977!|5UB4G$-jFf&<Asi~75$_))%eOvp!qgXK1yzk+Zhc7&Q>EQ$R^6-&|k3D=?
zq&C=$7;4UV=rlAq<%kUCf}!RU`s3j<t_Up*HD^71uKKL**TPl!%EQ+lzV+~(HvKZx
ze4~U(MK@T!*Jb+A11<lcO&Df)Ex{#Y^nPN($AcsBf`^|y{NmwP5C3|Idic%5@7xz2
z{`PRu!ynq0OHZ3zapIpUDL*XWmpr~hg^t5a!7#(2NhowY#CWQENPGOP7CaA|RL-X1
z!wlCn&cmvkN$^uZ2|Zje%=jLxI1q=>G2Q~i5sqW`FvG-PmG-&rc09OoV2Q->+OUAI
ziFjEYm&Z{oj^c5Yi{siju85;V99PG|h+P>+Nwvuv#!~U%UZb>DuTsu)fJPWnx=}{u
zW#hOej<3~cZWeEtxh{_K@gOXfRG~r~730Vo9(24ujvG`+vt@?|LEx6D97p@%!Kc!V
z@nD+|8*Zw`Q7w+r30$2(^*Cz8@n9Se#ZfbkT5(K{V@e!1$5A_u=5e%$<CZwG<ER%$
z{Wx;s$c>|J9Ix!j$%`XDj&;M$_TlFFa`jj4%&8N{%;Ba$k%SVe9U5+KjiW&vx5d$z
z_8+q-H*pYI8phEm!%t|JCR%OENoC~C;y63p{59OPjN^6{4vM2y9IfN%6-Vzl?ues}
z%6rCfXB=(gD2$^^9PK#wI67zSbWqYsv11%`j1GiG1Xx<Jt2R{`VS2>TEe`5*XP~sH
zNV(n!bB9*@sAk_d`YB;R`o}Rq^#`hiF`<N(*^x#D$1x<1p(+^@$JjWA#W6gN5h@v_
zNac|_D7%bSNv{!xe4O%$isLhy6XGZe7kf=oA(vok9Mj@h9mkqDrpGZumuV@NBaT^W
zdA{Oo)t{rB-REj`o+4ePWI-GY<5;Ae4lL1FE!Nqw%0jheaV%Gb6`BJpRfiE<r9v9v
zLa$|09QWv=ua9Fx9Gl{}TfL$J%SKhcOOZBdnF+&*a8d4!<34V&I9R=3yF8$3MN!=x
z$HQ^FAIGUUw#2bDj%VW7#|)3-(KvR+@kAWk;@BR?<J$Kzoh;qs5F9rzjvZ=kr{WY{
z)1u7W9mkWZ#)W<=jy*+PMwqA7&R#{jL_eS9j*j!qUc9bO9*E<GIF2ZPPVu1PA;rUL
z=lLSZaC0<{7imhXwDyvcmlYYGqFGaZOeL@Kgvn?=G{P{FZ^ZFd94DCrD(8&e)QRjH
zVcu2`DS1~V@361Vj*|D(GRX&VoaTWOhZDz#ah!?cD;_d&d=$sW+-q@s5yvNSe98do
ziV#1e<_Pn-<~ge@tkP7`a(t<p=SP@t;`o-QQydrL_%4p`<M=6#3+mDjis$0^F%EZx
zxqM{M{k(EkD`@rSIDS>h%_Ge(aWouh*u?Ui3aS4`9Dl}fDUN^Q_$!XT<6y@kowg%Q
zU*-R1Y_b<EaK&SkXf#SB;KdQ=!JdGfKq8K0999CM1X6LNH9iYRn(-t5JJ5U$FRQc@
zP6S(n5^^MhDUjsF5lP^R1eh3Es&H8XmnTpx5#()gmC)e5BMp(=xw7m+a%BP~wUxY-
zlB*KIX~Sxn1j;6GA%UM0xF&&e3A~iR%L!bYz;y|9PM|P>@(EN(1Q&1Z6SzKs8xm-d
zK+6OwCW24Wx(U=HDKwQ5sGPu!3EZUB+KN>at14DgtgcA?8VS_Q@LEc4P6W?3*>p=r
zo}ECB^4yFhFM)jJbrcH}i#`x{j5PHVXq3Qh3EY}Mg9P|V#1FDpM;em=FMb*(f;$3|
z#tEDqX__U_Jb@<4n<`Ss+XP;C^Zu7^@Z$FN1X^*3E~Z@qtrNj5QX4gLM<RGAL`~kR
z+?fb&vD+pP9U1f@@*!%eQKmxz9kp+#1lsZ9p^Ld?RPYe2O9EXJ*qOkt1iEn{61Y#*
zdL+<O$=U>ZkrbLa3CvBPxAHy-^i80j^5F@LNT9#+0g6-}sAQ1hV8tN`3{^5rk<L?X
zr1CKdj7{)24#6laqm}R)X<SA!P09EK-xCgWCMr(Kv`$W73R5DX&wmPoM}I|jrmMmX
z#hD4r%IMElW$MgJV7>}hCBTP-3wUAB#jI4mP;pTLi<K-<T&lQCak=6OMfR<%7f8V)
zkwUXNfi-HDIl$_=1lA|8K_z!5g3GXt%I{L#q-%HksNkyd9&No>k@2DC{fXdV-2)sY
zfrk><tjoPUfrqv4)&w3=g)NF)O&WPro92x&+ms9%6<h*6mH@A58Pdm<?9e7Yw|OFg
z-3jbT;OPV&7-e_^cxaS)G67zXJ*5dovNwTe5;&N^p#=6Nf*ZsA37i^bo>e3ClNVh~
z&I1WNS0v}vT7Ppmvwe=L+Vcs#kif6(RcMZ62>FW%FdxFB%_|8UOW@-KK1tx!1YS$v
z%>-W}#qk7QPvDINPS8%5|8Dv!jMl(r9$%kK;Ozw7=jaK%lfb+5JP|ziqpRGEIaJnl
z;j@<y65z9}GrC7k>s&rm<dr9*^icwBRhiXKb+|8RCxOox5Urj~V1O#{K?hgos|3DQ
z`S}Fqj5gmS@O=V5@PO@RzD?jeCFGnY<MX4&^RCh6oD$BOp=0?eGp}D576u`SSCjaS
z#|5`o68)06n7|(i)Jo#!B>qg`uLP<jQ8kIb6S%}9H;H0N{FA`H3HS+ENkkKHxTd2`
zJONH5mH_k6WvZ(u9*?a4!DT!#!8PLfpZM>)o3s*o%f7E`ghNS$lRz@C##<Xn2D>kk
zL{<`ZGBEh9s!_;jT$cRrp%yI{PvVLs$|iA567kWdL=q*FD3!#OYJtxIXz(iK?0a<*
zrIW#}MA6WElvE}eJWyh_ToTtNaeWduByk-*>1!&eX89zTt29C#-kCC!D{`zcrg9QD
zCQ(T_=ScZY$>8RT9rMNn(dJVcCIb&%o)XoPK{8iYtdT@bC48jMZwhKBaZ3_+Ceb#D
zY=*R(sh`BHN#rDvn?zm`y!|go2DhRl`C6?*{r*9<ZZcTedP#H`6Fl*t8>7dV21zta
zqInV~iK$}@OT#1@C2^Zp8!OHqW13`In<i2Hi5#l6U?`HfBZ)Ri+@8c;V@&HLcI?U_
zX_X<Yl5<|0$Cw>sg5laF(LRZ;Nl?-uiD$+HH$<J2=$J$&tuk(O@~tsJGzztE7sc<!
z1V*|g(LISCN%T|;y%l>UQLrnAg$jLCLc(hQBnBjLFo{D+3`}BB689u=ZxVx(7{ci!
zF)fLqOx@i%EaQ_Hmc($aj!0sRl95S_QZhP;;$scf;$s3Fo9Q)93564qn5cYG5|jU@
zb&B%qweR#KW+eGDaI8pTrpo6eF;~f~Bxq{3@|>||9&<Q}#YrqlVu1=d=prQx6`PJV
zoz>=2tu9maY8OzAk|ATw$|P1Lu`Y@ANvzgZHmy-o)MYIrpcXb{S~n%JQTbhpE3}op
z?$+wovF5%c?oZ<3B(|vJ0ft%$$9+)ALyG&gBZXU&cqEA@nY~HAGl^~5x+{t8Nj#Rs
z<4h9fttuDUDMF68lSfTv^e2+otsOsA$(|&hW<IEdntPcu8P3S;Q_je6MfNK{ki>Hw
zXpCWaiza?JiRZal#+g@=cp-@+NxaN6VVwD8tT~zl@kPad#s-p?c!DXZs0z&$UrXY6
z5);nWs+q#;NxYGSuPJ&Wi8qrtm&Exb-b&(R5@(Y5D2ca|c!ygri6H;?<a8Zp-sKh;
zXINN$KZ#S?^nv1sil-I(k2C%E<gnMrNqmyT*GYVn#HUGomc*C;qx^XiMZM0d@Qb3p
zdvd-~!tRuOo5Xio{o#LfzR&O<Gla@NC2>LB`zMK?mHd{(?~F;t=U<iZisE7tMbr5+
zi9a%}oa|rx2+*cWI`{vZ@4u=OO~O$U;{nJ+I0;v)Q#BxoB$7#_lKeA4!I8oPWZ5`F
zvTd9>IL@3NXU>l^RtljM!YL%inXD8pOYy~wfU}4aJB5gntHuYy%Tp+p!VRh5AS#~1
z6)9YuLYWjwq;MsLh32XhN~VH~v{G8FHa_@RWZ}b^(kZ=~)hE?uQ^B!ZE`@7Vcufj?
zrcKFpDU?s4LJHTb0u8dX93Pxu{Em`#`iwUfQ>c_e<rHpAp}Kl<Qwmj5sG35x6!;K{
zb~rAPkI{%z$D8%zO^sA=b-{1_*i<Wpn^UN*eOsi^GKE`G$W9?Ah1?WwOQCTJc`4+l
z&?psT7Z;*V3b&@vAccYy>ZVXHh59L+93Lbe%Pu9)kN^MKXtZO)RIsdU{c3!WpG~yd
zEQRLU+B9RF7O22Na(fD`QaH3bXL<^)Q@A6A!6^($p-l=uk2eESXg0yznL=BdN}+uU
z-BpqvZ?2vYlnyC$<f2S4ofJDOvRbI5i(*&BZj69->7f>Sra&XT6niW7QS7V8rhZEL
zYcE#m#z5^jD1}F#$YFITy_#Sqr7(Sh8J5EE6h^3IVhW2N&l#z_+XOQzh0!UHj8Pn`
z$m+Nhe|r_kSthW%5*lRR$tg@pVX9i7WSWwd6ATMmAD&=lq%bpuSt-m;fmN2JO6H_6
zHzS#+WWM48#f6HC6c?wkL<#%uR12?6Fe_46$;gY`DY7bs)hSF4$&`?+NnvdYU#Ia+
z8tYP6pMsr6Bpp09+>pX!DLkIS#uV;KVN(isr?4f3tts4-!o4)OGiS5nee4*={aoS^
zhL3I@(CUM!z{o?2Bp=ZeRc0?fBz#15`1puTkEU>8g4veBb|pnfwH+z!OyN=r|D>=h
zg(p&YA%!C;>`vjy6b@?6KgHGwhUGvCds28hg}vP76V0<Ke<p=}DU_OMDo->GCYp8=
z1I_)~G*J0-s!ZV_?wtXK<!}nmGk^mF&O6hiDZI$-mcpAUyu={%3@*uzF?tit%bZ#Y
zyrkrn3Gr1uCAi05OW}Bizn;Py8P4m>x46+#c$Wu7D!A0?rI#pgr$F*fM)H0Nr&9Qe
zi^3hcE9V2nvniZbLdl0p&ZO{BM)GkApD6z{Bl%3p=P9h47+mvw!Ni_uzEotD{2LvP
zKK!iYTgC5E_+H5mnbseboKrlX!cQ6b1qOCvaOuVJiwb{L{4IswQ@E)74<4Q=^hpMV
zgZ`y1{hhJEDgVpBPBdwr+mlQ*g>w^)lR`|1%LD4EoCME6t+FYu<d2CanUSQFP|fE+
zyK}5`fFZ@OBGQmFicc~Xw6HZRjmy&LnMSWPE>ELa8U<<8rA``Gq){o2%4w8H<H|Iy
zOQU=mCDSOCMwv9qrg2p|NO+dgN|@*5SEqvqm3+X<{AZ!$nl#F(!nGNFZi)(NT%X1b
zD&f;h=KTM)R!j$vui5d&G;T_xb{e;&Q6-J4s$4^{nqqZDD)UJ`^=oRCq*gk3`ggM;
zH&k{SIcemjk)K8`txXDiYdXoWiBG!fsKa!CUD(9#_0p)HMyoVhr*Uf<4bo_uMzb`G
z+P^K0#%VN6qmkODerN4P(nL)Wi-gUUwBRwK?opremTBCck<kA;(rA-LVH#c1xHFBm
zoV%*EQ|zGFUa=@9v{3Y@t&<8nD^k)mjc#f5&}xxR_e>c1xU%T^aPKtwq_H!NU1{`9
zqhA^$(-@UT|1<`qF=&#RG|3E9LOzTnjlpRQNrQ5hq1vU0AATZdxXMTTPwQy<&!aw#
z@k+)hj!g$25R^|yV`3Wjrg5LjC#A7k$>cPqq%l=F)#jx!EyJfPnV~pSaaJ0$Gp%#d
znEQWxl40NZX)MS{7Ajf9(bHI>e5vA!G?ry_mZz~^JFd(~Rxykd0#j>LvQ}}O;`)rv
zhBP*2_+3giDc+sNJxaE!&HK~XH!1iCdn}Cyls}lpLutG=$xzO+S%nX$u|)|bTa`Sb
z_^9GG#qEkTOKXp7Ja;J0nPi?wV|N;Fr}0i2Po{$_xBY1xNC&SGK9$CvH26N=(~2Z}
z(|AVtKE>ecNF}_EdM=HFX}n7Jn8RrtPUEF?@Jy2B`819)8T7ri7t+C{-H|jto@8i{
zF9*Ju1|M7T-7spttX*DFJVqUT5A%2$ucz^r`u0XTc(IV0Z>DiVP0<1+Mcq$QN3RJl
zP6}=w-%aBq8cE~5G~U<a>r@)2)A%rr541`h-msj>a1vH2{3MM})A&;5pJiIlrt!Hd
zuy2vt7ix#SzEYhcJKv`9T^c8SyzS%rG=4~<y^jt)eoW&Wj}afaKF+84N4;=`j}ksE
zr15hai8PXF{F276ngFphepA9k`aO-Y8GbR1KQjDJp0|_DUy6UHaY+d!|D^G6hDVh+
zicCv4)7MKQuDsIZAXj;IrP2udfFE37r1e_GPs8#NQc3<~!@?%<!CR^<AD8*TwX5w1
z7r+r8ttSUpr<eOE=A*a@i!OSL?!S12Ol79ll|HWaF?zBo=?6C*r4&i7@=-d&drvlH
ze3bQZjgN9ZZuD`JkExT*wTjm%@@}QP63QzmxnA)G9~Cq5N<Jzpr+unb@ljQ)xA>^0
z<YphWeN@lr*HBW^N3D#cs5@_qctgayp=_1UpBz}r^O5hPsgGtp_)%EL5AJ7g^@HtG
z;G?dRdW!WGDd*#t20reeY>Z+<AB}w6=A*HXCMwxB*}O2>oSJNYm~8%@Z0sqfIfF38
zwD8f=4>Fcn$5C!)w0+#+qm}>PEpyE&rj5Emg?2vf^wHJ_pM*4=5|pAOXZMaiI{8@U
zW4VvcJ_>!z@G;Xz7p|9&aX!ZT=;oulkC8t1PcdDmm>xcQ`{?7NCv{ZP%SV4DeW^di
zY@T9<`{<{<KjS&Uunh1qQ28Lm!HPpNtwVhb%kU*r%m^Pe!d}FaQ_LtI#L+&+_!z7F
z%oKBeiiu7!wf5#*KGjUnP*3!O#{!cSNhbT4qI|02w2XYZ5?)@;@-f@T5+6&MT2q4?
z#yLLb`k3dV(p0m6+q0)3nXlDRPv$K2!4rn(%pxC){r}D}9#ibddl@1R(iJ{d`gqF6
z9v`cGtoE_N$3`D(bWmm;FXYzJ;EtSiiX`iqT~iIoT|PGXc*Mt}KJNB$j~`rUJ?!IN
zANTo~Kh-?M+?Z<a_wj&_2e~d&4XdN+;Z(CyakHx3Kh^A>8Z7Y^A6wN3`O&Fnn~&{&
z@Ui;@ozG<84j+&E!Cf}*rg={C9Nwu-yA)a7tzDi}{Ag<Mk^Qufy*vSY9P{yv?$ASu
z``E<~J|p(~c#h-p;XkJ~Ab1<_!c=q6hczvDDogocAJ6-^cA9y?$BRB*@^Qq+QI-7u
zR1OQ9h%c*<O{@}M_3@f|#Z%?DA7uXPKHlI_FfDkzc~l=9aW9<UGWmGRN6xfhYp^t*
zX5Qf$<zu=fGc0+}$NN6=EXlXz6gQENs1L`-X&)c@_{zuEKF;{~$j8S%KH*-NX8KJt
zBc=sw_o<K1)E_Q4gY&tMv)tOdb0$p-s$cl{(#P6q=8<W^fiU@&+TZy2mWkx!oI1>{
z_nq$0?{!^%P%L^fc3!7;K~KU1)67pkh+L7MncEu7Uw!<p<ToA;UClew{(DYx(Z?Su
z|5Nd=BHq>ft>hAi%Sit9gO{8c|CkS#$F(JwTjKeM`-oVQWl2Kw2bM5l_yL;KBu^=(
zefUZ&OSlC>iX>r6zMd9*_=+VAlrzoP8Nxl-ir*AW51t?uv!u8sH(64}k}E7JVF?3R
z+7d3@m0XcRQ&I=zi9}wCt$Z$I2{$Rfe!AL{GM1FJ<QhvVT2jf9a+X|c$@J-F{q$hp
zU1tgJB5zQe<t?e8-6_A`lFHLf)9JyTV{gTs)6FZ>O=U|+ZnWg=bi>zQt6D-=v(*`X
z|5D8o9?R7&siCB%Vl7K<wuImOvZ=O8Zc*f8B1$ezH#zi{zU|0iNlrI)EGe+0t0mnm
zscT6+OYX3wjV1Lhxz&>9mb9>>fhF8cJUVW(#87#hX=q6!C8cK=7D^b0#+EeE88x+}
z83Q;Y5b~Cp$bd6|Ep_6o-fjuMl4zyMtrhvz+ntuQwWOUT?JZ#fb1U&SkWLnT<<Y?s
ze)4v-q?09`Eh*&M(XknZrNs=>;aD9a3#;8N>0!wLO9oof(~@46^s}Tt`HbKifZ5*L
z5*~(qEa|I5Ge!BbIs;1&N6#=*XP7~j47OydCDSY!V#!cT##u7nl3|u`la8=tq$R^G
z;UnMqGYpZ}Z=)<3!zp(+qb=e7x@(4cVul&3l2>P#zWfP*C7cdNnPkaC<)6(6COFxW
zDKtC7BpJz>rp?YA4srd=AYxRWX~`^0ezW9vOJ-X#$C6hqdCii!mdvx{ZcFar;##u6
zk`<P$v}B<ri!51c$udi-&oqlI;U_8WEU|<?TVSDw%PnCXnCeWtqHD8NmaMj9gC!ev
zf!1jJ*=wyX(>hD|wd{IDeh)={mn98n1_vx}wMaHua{Ej(en-x|mfUB_lZ=2R_gnG+
zx1J@BGx9S7A0FfiGQu;>L$psm(>$!WMR6+wJ~L>2M5~WlvP}sk+m*0&2e$*ar-pGC
zw+}xcEZMDO70u2xk82^>W69H&9O0}j*{l2Ic}w`v;2D~lY*_Yjrpos#9#DKP(|XX7
zLm7Tp7mHn9(A~#1;#`>UFIw`l2I}BU^AbZk(|j<~ykf~QOMaYbF3mJqv&?m~%yCOz
zx8yTRKDXozOHNqwfhDIcdDD`&EP0nliX|u2^4pg1NpjJT%idw;%rb|c${}(uaJ}B=
zM}WG-(c}6x*@u>#vE*Y*KGE(UX>#&B<i!A2nd?i<Pjx}L(0ujrtR-L2H^#w|FD?1X
zlJ70~fv2J+oYZ$Z&2KFER;$^wOzT;u=d2(}M$Za9qe-~p{9g6EB|lkm!IGafu*=!n
zH5ls`OZbZq>IC~}viViL-9F1)wB!#<azc_Dl0Pl^%aW@?QaU7mTXM;ga7Yl6e=Pae
z633F5&Lv9AyMk{tI4(blI4Ez{TpAo>JWCGFGI7NOLpsYO6;q07MPJbh1+5`Pb|IIL
z*de(hBqc(@0T>AdXZz(L$s#E<mxYACw%`fOv5JMHct}poGT+ZK|I9L3v(1$u;p0;}
zP%0!PLvrnG!*bJX({#4kaJIqKAt@7*8$wbsBxTiXIqHPunvisztpVXzKZQY*7@zAx
z!ppPrq2S}Gg5vdxJU1$Zq;g1Z49QKQ;0)wZFmARkfv$L!kW>vxHJwp52byZCE3ctg
zQ?ZsJCwp^9YAe4bBVj1!&o=kWHhCe*4@t|A+#ZrTAt?xn2}#3{)D20!klY%Q1|g{*
z5+0R|5`E?|wQomov-zaXg+Xf+lG{|RSx8=)Z5oG!`PM|k$XQUKsRrTG*`|3&_^lHs
z(jpWbo;;LVg`{;z28U!wNbU$pn~<~(NxP69o-@szq2QyIhwy@3!8@q!LsA%$E+Od<
z68@5frDI4sWq4;LyjtrTl5TXVyBQP`@9~`O4Eq$*M|qEs^i<MIv9}_1F3mQ?zFO@U
zlKx5tWLgI*p)x;xxSNKCWLQW>hh$7hhU;WUGCng*@i}G$7h;a7Ime7*R?iI1@J4gY
zSo%E8OjJ#N?2Ze`cm}_lnV?A0X-=@XlQbp_*VK?q3&}%}&5-FKnGurD!*Vt(Gea_q
z&*Ve0R!z-j_mC_I$()ePRSCZco2P{F=QYg2kSx;bN+xp>EQ>?3L?uf@vO>u+#pR0Z
z!j4oUvaAZp>i?0i3(0zp9+tIX*$|SAA!!npreV1&B%8Pk!t&~qId_NT9`5CkTnfp(
zA-OLk7en$#NbYB#=9u3?@_R@g2+4z-9aB0aZ-?X^Zl#cH3CW?591h9WkUSESCqwd7
zC@}aa6F>?1HYMA+JCr=0kx!gsc4qi4B~OH8cSf>kj@gsp&nkIZaj)VtA=#&7;~c{w
zSoVkHfJ&ZIq~u^o9@p0AL-ImMUeCynD0xNksN#zuc}dC3ibpawkFlzf*A$N{evoN>
zBP1tO!m-{A$y>@#Dt?#Id6zlB^bW~;A$eb$PAPsAk`I)y?`b6;hUAQrzcPJ4*6JsU
zpDKP95}6y!_Y19_SNt+0Uxnmr<!t&sB;RECw;}m1!>^lbeo+3S;yK0IYVD_t&IKhu
zGoLe(UzIddHD*FlGW@AoLH?JLE^~tnVfCMo{2P)`Si<3;8dYH|Bu+-3?zw8vQ;aJn
z6xozik_t&WBk`43VWIO>Kv+c6^~$htM4Gk3GIXwqC}t^Mrg*txF-0mA56cx9UP8&N
zxxrj$p;TC|3QOs*TpgB5VW}LJGU_~A%PQeO*XW>hpq!Fx6|W0R`HZ|mSgu!oLq<|D
zEUVRL_PQ}FwZn3YHr*7KDoUzmG^>TBdWP3fQZp>Il-!(=7o}5nSn6jaIbq4o@H{2?
zVX32}K(TJ7wO&}Zs3*5(Bn`r1ls8mtq<EWRV@3MRv}qQW=3yD9p>7eDmSGtbmce1U
zJuI!l(l#vZ!qQqpbVpd)C}BMB4F9*><Oej!jAVOl?Gcs^N;)cbQtYf)s7TE&Vd<LT
z-NMp6!{1U<J=MKlVd<Tb_fgU}Ed7-9R~(=?P?0tny&+umu#D2~bZi)#!ZJdq#>tLU
z&2KZ_Qekvh#)M_8%8PQFcDPx_hh>5aCx&HCSmuUhl2#{Y;x;8LQ!{*8Sf(qVp*T}<
zR;G2flD~D(dCV5IGhcCmB1c@PWKmcaD_NqrG%U-)vRwH}MQX0#rkfX}G|MU#mYx@+
zH>>NyvR);x^863W#<0AoL*EsaO<~y`mM6n<cgD`vu-v1q_bT2O79L0UD}O+d;d)TX
zLyDUfA7+kaT5HWSk7!^y^rLEao8orG$HMY>W~?1bb}H^td_u9&Jo8jo_Jrk`u<Q%V
z(<<Dn$kB@?MSNBz`xT4U=zxy<Tt@R?SPrRIhcmuCAC?y~{76`iW_Z_m<|Xa*vLZcy
zMaeNmrtxb^jw`+%mN&w3Liq=ZZz{f}$i64T@^*&56P9-~{5>V_hvig8GGd-No#7uU
zITMzTlzgoCiQ=b<wES77?-ybDl1B<88}e0Hz79(<NO8zF;oxHU$FQ6W%eP_qPOJRs
z7KPu3<p-^j^XK#DnaO8sIbn%~<)^S*2+PmBBp74<3Cq7qehJI3N`6!PU6BeGmHZKw
zKb8EIk^ima60dgV1s5Svt@6r*w*ah?xMAVbfOuFEN<2k2CBu>m%jJ;O^GrG{epmnz
zhy@8j9^00)Wu6H`csET2R!N99Bm&8TT&5lOY18Y9>{Zl}`jlLOASPuY*FZ`@KAUH*
zR7pulDFnCqS3$0ZTruC2*6PK1!L>T&Wwcs-z9|Q}7E()lT}R|Ef9VgTJc36MEc_wc
z4UmeEs*q}sN(e4rZ$fbSS{ZVqlE(8*hxx$+?J8OwsGQa6kQyrK&8x53rl#^K^MlLU
zn-N@f*G6#1#COBUb0E2pDUhj<JV-vIH>3}w4x|9mX@Tj%rZJ{2q!HvcNIeK&;H(e1
z7197=APrSv`TXGJPnHMgo4v{#Lz+N%AJl~iX$I*4=?G~KX#r^mX|Js<As@^SZkJeY
zhqO{*YsEVhDQ~0XPDooN$5j94`Np4b$}TXq76g4eX;bHnLZOl(c~?j`NOzSKS!k?X
zdO~{9dHy1D_J1#6_l5M+MH$L}3cWk0KV%4k+miv1fe3Cu`Yteolnhn{zNR>C!GBL~
zhe3uzMnFbF#%jz*>8g!}jDgHs5X7H_!Xo)N)fuliK{Y4x-w@3<ER&Q>=33|qPUFQt
zWIkj8WCns=Hk)owHZu`Cf19N^RKIba1DVUQ)I&Z7p~EaB3z<SYau!3DKo)V~W|+Gd
zn8y~FrI2Nidk{RpTn<?QxeKz1Nw~nQgzypiM#!lJW)*h?<-^Px#kGp-6xS<mP~>eO
zb$A!UY-hO}!tNw|4#0O>?uFdPWYc%y?nm(K=mExdLGa+{L9Nn<hap?ItwhR6@GxpC
z<ZlGz5y+#EZIJDd!;t5>iy@D5n!9rL5$X0A^8{o!WGCI$D$j?a`<ExRx<~OT#UlCB
zkiE<|y~lY*<unpnXr9gR{g49;g;ozj4rSz}7Y4^s)rIB-$Pvifkar+Qwe`5-i;$Nf
zFVl0azNUB#@~V<swL2}eR6^nFkT)PFw3YI=l)MS)p$aE6a#r8vN<q#-zJR>XrGb0|
z`B)V`Q2Y>bTFL0lC}*_FBlHu<r;yLJ%26n1`An;G7Mh}7U-IyW`~<lG`I?76<a@{u
zs`D-6JILJ&&5DfWT?@^RkaOC4o?*|(sYCmR7n+~BzL4J`7a_kwep5{vIlj=GQ9E3|
zKUDZ<@UMX7ymn-3ktvc(!T)BFe^ti|e!LqjbQI#~!o{>oiOZjV>E}Wsc$Z%;6S-U@
z6};3Vyujz#@AL4NV6BUmn>Rg0`s_<mBoq-_b?8+@g4D{AV7MZkV%l_-NNJJcB3Fo%
z5V=x?B~`h|2$3C2X-D#_wW&<T4kavQMVy7fyQ$ZTTqn{@f+vvWMJkBgCem2sdXXDM
z>WO^1$W#=mBvMP{W|7JwH;PmfsV;JpNEMMfi%eCKrMq+L-%@bdB2#&hA!)P7u+)%X
zoA+H5Jo>IFLPE9LBDaX-iR6o9t3r;*_(g_x*m3D1lPmJTBJ+&)sv}ZYI~HVyc%w*8
zWszIiU4+knepqB0DlwUABlVn3^uLJ&k9qmb>hi^=sRU<fY*FxtgO5R)i?op7c}Pn|
zlG_<i<*hT4JCu}PY}$&n6WJ7zyCc$Gq=U#fTgKbcQKXZ|n<8(CbQUQTIV5tJy+pc-
zJS?(Bq?<^0kvY8673o2LM8=4W73n3?TV#mHP?0{IsmK74fg*g`-%q5!NWaCV`eM^u
zk$g}_LIsw=syTVF874AZWTeO_kr8}ta<QRu5pGjHTI93EL6;+19mkl9Ocj|XGC^db
zc4zA(k;!UvisE0|C2L90k=CY*%n+F=GONhL#fBczJ<5y5n$65v5)3_0WWLBck@X@A
zL>7uH6Im{@NMtdWlFO<#Ij<#ZiuT!&MhaEFLS(hb8j+Q>tj0MC3l)Z|ed@2(judVX
z*(mam$Yv%v7f6I|JScLv$UV#@5xPg?_ln#v!Wog@rxNxhrztv2WB`dAV!;ygfXcUu
zJR-73=SZDLxs^nAifj|vF7lYJ#p7y!pL#_d4!28JkbJiqd_vVuEiq3rH<p;Ev`RIO
z^|Z)dk!RGxb0P<sy&})5!hTgap#0}0CTnRBnW8Dv=gLdX^V;;9BFB0`<cRX4A}=a=
ziJxC0$3$M%YQv?b%Tk@`QnPfad6l!!>Tzv-UE~cVFDx}DlyGHf_N2($B4us4#+G+P
z-sPz!k`#GQ<b9E!xtl~ziF_dPrN~zzr$s*G)?>1XoY5gZ7Ws9l`ADsC#E+MnPgE|;
z46DS?Mb4_Eyh<qiLWDw+uSLEQIWO{)$hRWjiTt4Q?-i*)wH)pBqmDw!IVG)^1tYTQ
zf@;!%0n5y<BEN}vD*0XHqR77@QIS7H{uH?+@(<HPgn{}yW1lY3VVW)SnRX^EGmf^#
z6sgQsSNR(CBwo~4c}gVB4+2|?+2V^>w%E2rYzf&Cw&mzDQ-n}XJ3Rd<WZ|G$$}dy=
zP=$XgvbDG^SJ+a*mZH`xZ7Hd0S1XoMyvh!ikKUHHx%YxNm)GuPY@u-)DQC;Iwsf|o
z(3b0LDQ`<dTN>F?!ItZ7sb$N}w%lNgwcJ#(rK&9zZK-5SWm|5vrR8#SlN}`Rb<2Z|
zlfB$f!U*?UZmQX`X}PIkOLbLX>x|`Q_i|Iy7OJsY+m>5wsc%d76(-x399!~i$yepq
zmYZB#K3i^B{$6hC*ixYKx{6sVg6=o0F!ku_ia>{wTh(j>RWP=2AQldEn=OrPxx<z=
zwluM2<_h!73e(b-rgU$GX=Y1vTUw|-mFYQ=9gnRrx7*Unme!2Pa`WYiK*&MwwB_#=
zrmZdQY$>%en00$wIC`U%rlUI0!IqjU1I<oqv#4ViZR&5!09(2$@20KYZRuf4Pg{Cv
zwVy4$mGo8YV@tP{!MH^@cBNq{n$$pBhN_)GwhUInDGyOsm#qw@FwB<Wwv4c4q%C7~
zp+~72m!7Sol{3xA$0}z&KeEzHuw|kxX{M+xlWdu6%d57$X3G>?rrPqjEjw(PX3KP2
zHrw*BEi)KTTb9|f+?H9k%x0dfGD~ckW6NAy7V28Ow9?G8Wxg$+t~4yaD=yHgtO^3P
zNYxgrgw>^5B{8ea3R_m%a<47-*|N%()wZm+WrHniY+0*iohlcuG9%O!d(B#9HrjHR
zEl;UrQ^wjoO72!HQoeVU;h^`c<Uv~=$awh5D)W$XdQOAfBU^0Q#x!1Sw%T%fm3hRL
zUssvbD)Xo<#FDGcc3U1}My(F?d#pB-SDT%-?6T!KTMpXt1Xt6Ry|z4K%afeZYV))$
zoZVB3Bzu%>TOCaK=xVbsBj2y&S;aS3n*$j+JvpTOsN!M8=M`U2q@5$Se60pwwB;q9
z1FOx;w!C7?F`XI}Smkn%(3#`5yl%@`TfVU64O>pIiBn!`-n8YP)#fASk1cQU>{??^
zYPjB3<YeDb@~+~0w!E+8l;Q`9rxmIBp^`JUR9O>5sgdF*nbw|b%xAWIuGI<Jv}%p{
z(w47m`O}uaI2T*KvE?Gk8uP6!-)S2BY|Hny{9wzEww%+x%ncT<@_9{wpKQ6H@}hNT
zN^Do-zi<U@`HktlCdi!MmC!3D5;3~Q{9z06s<q~CTQ1q+*b-wXxKq}ef4Pg-25M~-
zqqZzi;%YJ^iMDvQ#C6<+;zO#yB{-mjecxSctcZjnG9)5HBNC1XB2q0P)gvMiu_JP2
zL`p^^5((DmvWQ%+Br6g)KnY2)h+Gko5-Kkq5nh;4&TM3UlKi^Xl#0kz5xG7hH$<d#
zM6QlVc~vf>ST-WpaNKo)GS{M9M6Qj<b=pKfIU{0`L1KkSkUu0W6(dq9B9&=Y``)Ns
zszikQ`lg6*?@*`yI#X5U?bn&1>r9P^)Qm`*h};>GS`oQ9B26OFG$OSla!W+&MWjCG
z6%pR&)QLzzL~^xnUPSVh%+-N5tuuR-)Q!lAb-@-Z@`vQsh%|^u!-zDBh|w-I!d9vg
zxv!~nn@U)1tgezYi%9c`w93d^M8sKVZr5tdh<v4ei>AZiv{v~Yilx_^wh?I;kscB0
z$?N}!bcje{M7l(zW2R##uA_#cvv#57-1VkwM0oCXQwd#SRJ$u@6aDEGk=_v*6p?wh
z^odAc^>aW(`l(L;h|mqH@lYbR(k=rd!EWlm-VD~E86WBli^%YZOpF8v;E0HfjL6tX
z@Buw4BGcEKF%fxfy%`;mHS5h&Bzo`g(Rwp3BI7xWC1wI+l9B(j-b{+f<cLg($W%HX
zk%bYNMmrIiOFwmp84;PSWTqkqoyE-DU`SZzM5O8l!{p?4E|SbwH6A;QBC<FlD<iTh
zB1<xTmqlc$@<wW5c|=xdm7A11m$;gqM`S}pHb!J^MAk)w!u6`tZ9||?Gzt|+xVwpW
zsSf!)5xJMSS4^4~llvlae?%G=3m%X@5RnHXaxhB{WywPk*&LA_5!o4$hncip%p;ND
ziRc#PtZt12kEbSVFpsKyo8tC}JVwtqn8&rs*WTELf9Y;lM4n*6XG!fW*&UH5BXTh!
zf6%vx?1{*kh<p^0rz5gAA}@3AMC6%>>{AQR6O|lLq_zDKDf&&;b1FHQksnfWI3f>i
z2;O9SAtFb(TQjXMMdU^0{E<Fe`T8I6SVUfp$U6~vSDRjo$m=w&{5U<-KYB*B6A^hU
zA}3Y;rXpWm;PbTo8_e5UrOrtm^u36Dppy49@>5FAZ7`=Zk`I~BYWZW8d>4`LBk~DT
zIwGG%<nxGpozXlSkuNj+3nl#HDqm$J9QqsO-)1EI6D~hQ<j08onvtA~$OYx+6@OCX
zlRY}j^0QWdiOB!W;y0E29+9+8=g)}z#T?F(5?S(hL@sG7vgDtL{2LK3B5{>O6=RAH
z4_p1)XxD5su1az@24f{?Ga`OOk}9Mm6_K{uL~dot){Q2dCGQV4p)47((JbC*iaJV`
z*jYj1MY5!r67sApxhzXA&yph<3#T@k;+a<d9oj3iq-2(q&yor%ER`i?vZSo?tFolD
zlB+ZN{L2Z~D8E*bf5f94m4_QXf96=%W&O8a*Jt#rWXTQ6D=JpXlFHOkPj1W-t^#}A
zL=W!@2usy0sg@<xv!sUV*Hq*mC#<XrwRFBzyCqAqvt(SBjL#B2<jT#GR$0<IOY*WL
zU%NC>tdk|TW=VrADbQ+NMRu>Jq`qQ-?mLqujWewcl{Ctd+p>gzpo1@%u?v5XOl+DZ
z&9bC<Mzdv>v{25~X`mkdKc21wYKod`3-2R4JAHR&c4l8tR6r2$1yRr_s3;18qV(R2
z2nYyB5kv$FiXy%D-jUu#MJ(8R?;Xo$L8Z$7<gWXlGv}TsH#eD^<mS#KlSvvRz<-&W
zO;!yPXq3S15_?kujT2~}K!*gHBye*A%@b&mz%5j)r@BpOQ@I^)acctH4TgMP%_KQN
z%LG~_&{ib#d`7jFU>l)-$U?Yw36M{LjtO*1pj!gn6X-0Qu0mO&E(!FTtR9~HU;Y&C
zAyK`A_Dq0XmCW7}B;dxC)T&PccO=kP^jRWl`xP=AkiftMrY0~gfk6q}mB4)oj7?y0
z0z(oQCP|pX&;;%lytmNS?@d<26Br@PkwQlcy+`OMp+Af8y$OtwU}B0^=Kci6CGc<p
z6NEWFfd>UJ>Hz_H_w^7pl*WA|fk%ZuC4q?vJeEM-*;4*-R{Iq7gv3rt;C#t{vIN@-
zrVJ}>dIB>NSf9X#1ZE~MD}f~mEKOjxNX|=OzJNJG=L*$}dz+~R2`rQ#G52#OT_nN9
z39!i+Tvmu(MPo}~g#@`QkWniI*W_|m9s!U*8SVlnoV5w8E2PS|&PKLc0$YT+DIb*p
z9Uv2KWh+ck|8Luqrl=hW?4;&N{as@h-9iFi8Ti`3o&@$LaI1ma4D3r_e*$M2C}rTO
z1P&zdaRQ$t@HDec;I#x^PvF@E4kq+-?QjCmCBU_XFDCF(0*3@Yp8z+pe1Rs>SuZ<W
zJw-1RKQKkFLgd2fmzhw~vLRj-@Sa4yk-(b?ye}MXH~JO})lt18^lhOm(YpfPOW@Zj
zdP`F7A@cz}3AO5@Gw1b@+?3$c1U{n&PT*()pC|A|0!I?~DS<CpWVyu;34AT!`$Bzw
zBf)PI_$~n+tZ??!|MEO{s`^p90TrN6VCFw3@Ecuy0>30sXQ~>_y+9NApCo52_xmDc
zN&hHtSkk`|_*;Ufg#IJ+cml@+a8qR_IU)F@PzJe|4(VxD%dw(=6W}W4Gjt%LRcQl7
z1}-#E*#JKnoNXX&AY-76frJ6e&<oLd8HR47q@kDK_K<|8fqMlo);8dXq-($v;2TI4
z(z39WAtx{p8YnhU*3d1IH4qtyMU2b-bB1mU-i7Kh32`|?D_q{dc?P(B&^d<w^meXb
zw%7RvE->_Ss*-^U24;vd6(u)j!i{?Lrl8y)jywMtxX3_V1N974HBimKB?f94s4j(~
za18?&7jTIHZUJ3WvSkhwxKx;R3|wyDvVvr70c+&GR~WcTg37>^2H0@iKI@=F@nOe?
zxZ1!q1{#aZwFc@NxWT}U2Cg%3y#emN&bzQsqzy#oBT36(Lj#Qr{4PPhB#?8Hp*;^l
z6Op`GYKg&H3^WxEF|Dhaf#wDtFz}#(76w`x7-(RS)K4n|-3)X$(Aq#718ohoGtgP0
z+6!fSb!16fstyL+X}bAX&z+>UiFtJ~(6u1RmhC~64D>V5-$2D_s+WN~M62EsB<FSk
zeT1@osbOEX$TXeposthZ10;WLy+zCd-eq90aPAX2#K3R^BLoi>dbcDT#-d3+Of}NL
zXqu%|!aY*SqgZ4)1ca6|hNj*@4VtD6gTb)|?ia~%2F6QNzE)W}e!zXmz{3W%8Q5-M
zf`LcaMg|rbc+|i|15*u5Gw_&!#|=DTU~-`eCP{{Ta8nsxQzXbv&Ck0GPN$U`m@7;M
zXG*GB66CFC8<-;|$2yrXP0P<KNS5xd78+P&V4Z>W1{NDwVqm#}6;x@OS}L`{-KUoc
zActvJ8lbmaEp(Ms6t|ioXAKKAO@p=42MOp}H?WpEtIY;B3ZMd;@<1pngt1!$Z#BS;
z)EL}hV5fms4ZLPxmx0{|4jOn)6y78BfPuYy1PI<w|1Til^xQRz`yxIq9IE<^fM*SG
zD=h{ON$IG=iw2%I^oQ~n46sG=kHVJ>9OjK=>zJ3B&_I4qW)`1GUYC--W8hr_Z?JkL
z_?CgU1!x1N|7@u(`8@;g8~BvTS%hio1JU6l10T{&b=AARvon5d;D}V_ClX7up?aSi
z_(FntYa!=LF&_HZZw!2Epk@-6B=Mbr@99O8NF?!tfgcV0ZQvhfXy7MyXG4$vc>Qc(
z2={-J;4cRFBMg~b_x?WvzZrS~eCg@>pR7L&{AqxH<gtuLh5wh(yudL7#|@NDq9}<I
zG@(}NtfZzV1)nl-+Q7ep$>c50@JZc9FWcs3Xr)BblJh%qvhfb@!q3KMC$)w=ZG?9;
zl1L^|K8f>^Fq5#72$Besu#;LPF9|;hN3biDT9MByl|<R;ItSu(5*djl=B=|yL`j@0
zcOfU1sIp1q1QZM9M)!;=m&7?qsOcK#&%0rA=6QY+7bH<JiAqUbQQTXe`d3Jzx!m!>
zBr5aeq?xLgL=^!SNfg%<kx7}V5@Z>xCvkBSC6Y-Ep}a3M<i%gqYb9}M5(APLn8amC
z)J~#B5-pRclf>moG)m&8B(9)(Nz_Z?YAMc@Nz|1)UL`@^q5?NXX`%Rg-8D&Eo5b}=
zG?1wJNn9tAl<6mGkDIP;5Dt}WDB#8<=13HGZX~m@Xh_|f3TTqV%>r%_T26kHxK;3N
zNi-ACJc-R>MfpGOTP4vtiS9}C5FOei(N#d(B-$m>UT}vbItpMdb&^b|VV5L23-j=F
zy@-qd6_R!n&JWY|fBHQ|^7bV9B+*OwRJeB%)STVq4&msMCec?gtA)Y-f_Y@modUR5
z<e(((N@8LXk0miUi6Keco5YwTh9+@$5+jlrnZz)$5awTIh8ixIZAuHdM{xNWdhyt(
zg3Rco{=JK__a!kliAR!PhvKd8PvU_j9+dlz6FOeBWz<6wB$y!J;k?XrMLpSB9xcSO
zH$6_HJzX>@i6_{VgirgNoW!&wrqf_%s3}Qs%fYEhoL@MxXoiT*6k2hbnpMbcd<Qir
ziMdJ4OJaT!rA(AIu^@?sNgPh%<s=p*v6xoD22ElKYdZ<9DcX?4G6BRZlUQEBD+KVL
zqg6?)7Q9C2+9bG}C53sd6VCc1xSb}0EoP{VNo=B#&rn>>$LigZ#8#1cI*Dzp9M)tK
zdxf(jiQNKr3f(1?ncOi$-8Vz$wof?wh4L2si}0y}%z>nyv!cv1Y@;L&3jc*9UQFV-
zBo0aNc~OHhJoJH-*Gs}5EQdkNouOW#g|txLB=Kz$uO{(Y60axmMiQTj*qc(!w~}}}
zseg@OSxDaz{819`Ch=Yp?@N$5e~`qM8Cu{&;SiAdF{@pepCs{xfX|ZnoR!~0eUZf1
zau<qynZ#EG%p-o7mgmcSm&Er;{FB5n`u`+;OyW=8PO9_>h2<_kCGm3-ztG5KfcdNR
z_xdM`SbNm=w}K|W3;2UpBsv_Ge3;c=N&GGMWyLahT*UqrdLoIFN&U`zDv8s=VS_SA
z#ZE~kXM}l{DL)PI!C?X>%9%LF#Mvgwn8=#iv=Txs6SfIMFqugKrcjy<%j=j(nMm`R
zsazAD3H~(7%NM{T854ntP;N&Z@>N8d2a$<ba%0(ZrnWs^#RAF-Wh<X+qP&T!CaRe@
zub@d~6X%<_z(j=tr;>?^1za*yH{yj7WQN351YabS23g(2#U?H@QCm1ALTd@FVWOsq
zOH4GBOjx~4erX{gaUH<~SDLuo#1$r3A=Hx`WrAlC5nRP;X{YL%`Y}Z7A|;b9<ysT<
zO<ZrHflLB(B8As=rXFEY;06H<-YB=oGbwPBiN<V~2vLM4CT=z{B88DD++w1siB%3(
zJGj-vZ6@kksAuWrg3U~HFwxOOb5^5?mL^)6n%`b1w>jd@Kdl9~G11lp|5t4%lz^L$
zQGmjoOmsH!iHT25bTQG@#N#F=ndoMsyNTgc!$c1gJx%mA(a%IL%Fk52O$?i<+mWxG
zx0~o=>Sy$nnfj@Ehl%w9`b*95@TMVb+!^Xl6PzU;Ab6mOK?3eFacHI*ER@^#5f3%>
z+soZd%Tr*ejQkJIQNu_R_m~)GV!VlOW~xypMw__T)SZq?H^-Q`&&2(5M{Z3s*2IaK
zdP<p(Ee7+`BM+E((8Qyn>O;~rOgllq!zS_v*pc&y32vKAFi~=2vp#0(<;rZkCrnH>
zv4uesQ%p=XvE0N8p8sfKx{0|a=5hYt#7yeRGgc($=JLwt&r;;fHo*nYbA<91G?n=#
z7MWPgr+|qnvlMrtUTA{n*)eK~iR)&mWhUCpQcDH1Gm^s~V^`87SkERlm{=`_L_OCD
zSR-_;3D!Jy9yCjFcrsy@+DNr$Df)*^ESHJRrhaJ7ou#XYR~Pz!6WdKZZ{h_LJ51~}
zalpjWCU%+FZDPOF2G8l+V`8s~uV$&kv-GijEXY0@kL;^ZdbWDX)P9Lp{fvoc*{r61
z0cPw$6VI_Dx6;DYid~87<z{PxdC|m6Cf+ddrisI*ES)v+s+hsc66869wPx#+s<<b>
zYbIW&Nz48Ktgg3Ayv_Ea=P~gPpQqE+yC&X~TiiBVz0c%N=ohnIv-LqU#2?W}X6p+4
znARwFr>f+9X5w=bzcQhTFK7%Vj+pp~#iSZ+5fk5uCbV|e^EZMyY~gGSSGkk(y{Y#c
z_(AB8Cb&Cge)IWFv(?X1Z~RK~3l(dw_*neS#P4)#7Ajcy!^EFVW#Y7nqhc_Bo2bV>
z4O^(cq!a}Im^fzQIBRLP`ewE|Dd2=q7K9gH!2UIHhMw7iZ{aKpr7V=Okg!nNLXoAH
za&m5*k|$Xw{7Ga~4F=B^CI@8<8Wt=IwuPjnr+`cg>~Y~7Rb`H<KSwzhTuZ;AbH66O
z>ab%nlaz(Dg~&o|fm22qOE+uQLLfmlO=y8lmY+@HFd=85*ups$hR#uK=BTn3%30u%
zVZ1vjFV^I_7RpmAOPekW&S{oM=cw~7kTUa%7Aje&WogfFp@qs8F1Ao&p^AlzEd9P$
z-9lAM&uCSXAUUsf)cMoA*#QYyq8b)zTDZgl2S;n?sQq)aDdrvfr4}x;P+JO8$HL_n
zSYF<jqogY=TxsDd3&e^_&d^L6KV!@BaK_f^Y75s`sBYt88`oN>PycM;fQ9QUTyNoi
zOD|GwVBrP}y)5*$aHEBW7P?sIYM~J;%0e3pZ7npm(8NM33)SYTn=RZzmAIUBu6lot
zYHHzD3%6PLagGj>e_B8@3(eUIb5#qWErl|N){+UuuAQreN!wZIV4<T3w3pZx64l8<
zXSpfGm@}{bb5%FFHI?ZpDs>lu9+GP8T*dq;%<FawBQ4xxp^t?-EcCU|&%#|623zQF
z;Z6&KEUccZX332PSQsb?xkWA0a&12^g1vLq5E_PsyDhvkSN$?qkq)ykT!O@B=Bg0|
zoSmme6{=;l=#y9GUJESF7z_7V7;B-%Je@f&*338y<1IYE2DLE9!dzO>SoM&FsTQVL
zcvynuOtA1s0Y7SCqTt60oX0IpD&Qw9Ocp#v=uPwV(&FiY+0ZjsX~LN)?LNx_|3Mf!
zPt6tqf_WC^TiDO8I$tedkF&5$B$;-~JhjNeVhJu`!UBKUJhf+@UgW%7I4dlywD5{>
zRtaY{jgw|C_{l=5br#ka@CE@Jg>JI&v83H>VT*;W7PeW~Q;^(lVOIg~5U|t2uOd$c
zc3WVOfY)9N`wEzOvJ%LA+QKt*JGNdv{;Y+A7XGwwlvX!XJ!j!P3-4PvWZ`)WFIafd
z!W$Oeqyod$OBP;cp#&cm8qQbbziQz%3$L@kOYj<@&E~6K0^SnIcPzXuV2m)|70k3#
z=Bp1Zd}!f23*TG#hy}OsxrHw*d_oW0O8?{kskoF<oQqyw@)_%VzGi+&lU`Hum4&Yb
zlpmtLvGm_b-%`o>`X`q?^Yt_=@egzk!_`j~erDgK%`Y$Eb%Y7$t33XNF2%xc67{Rl
zV-oedB>Y1tCDRL3r3LCQ3x8WUL))<N52F^SlT5z4<d|Rvk6SoVzzr6tQx;BJ_*Y~o
z#+`Y%mmMh=pR>Zb>q{wHFYhlcv_Y+svu*u@Phcao!JSCU*httgY$R>H<pMA6L~07Q
zgxUqZW5X5f3H1y7lz_C*j8JZ}nw8rX+bAm_5*pjc37|f07pQVJ&aw3$3RQ)9E)`o@
za*>Vl5<E}n`9d!cT0v+<q0FI@jSCC7vVbZ!_`?OGc<~1W(rS`FL5YnTHa@lSnT?t@
zF0nDq#&jFCY+P!imyO;wF0)bF#%(s5*{EaVa(Z$b^=;jG^&bH?l#MHGTqT^VZPXRO
zo?g#J{{{L#BVP9}P}3HuYb1)`Ivdy9XlSF6t$jiR8#hW6C2z3x-wOFu1UK1OwLmqo
zakGuaw*J|H*Uklse=FQ#qbWJkxyZRy@JkESrwdeb8`Q0hjkY#g2ySVkl?{q9wzZ8v
z7bs%hr5&5wMi(1hMe`0e&R(cG+vsSclju(!SPJ&v>_WvTUfpc;5V7t;D;M}Z3&GoM
z^s#ZDjj=ZFu+i7X-8P2V=*JAD2zRl@7OFcX|3NkeNRXU?0`fkDrK5U-g$@xq)JBtq
zTAATCMhJ&R7-{1k8>4KDmeMh8w}rZByd5>aS8g#zC=(7|sP4Bh&c>s*_EgM&yyWwc
z&<BJ*NE?uvdDzAT;m{#JVuLNnmSQFoZ9FFY$8Aiq@r1M>bDmtN-l;aG2ximdE1XR>
z!^TV-`)xdBW0sBCw6U>jn~gc_8f;=4t8L7)G2g~AiQ>;J3v4X1vDgOjLh8Iw|KYMk
zf=g{IkYK*9wh3NtV}%V0thDjsLdA>nyvrIJ8*FTpY}eXYCxHC*wETryV3Um}ZEUu&
zMKaI3ai-lWK?26|Ms)StZR}vtZ0urRsD3Ha?iR35=pLbaZSeOx#^xy#9<cGWjn{3w
zVdEJ(e;Y5^I4o)$v~kGB^E6QjvPGCDuNUOjFADPy8rY)$%JQ;sUbXQ`K{u9{@~;VH
zCU1%kZ`*i>y<Tu$jdyLlXX8U@toJ4D2R3+xg`D}<&qp>sw(*IiqW%O_p2<JA@ddlT
zgXRvtwDA=kl!J2}d~M?!8)s~s<=|Tz-`V(^&e_KIHh!@2lZ~HkQ28HiR9d8t2+p?%
zgEWa>Z2V59jbCm2Px{4gLfPMGHu;|Zr;Ve+yi$_<RS;n8F&oEioU(D+#tGpwlarz|
zX={=HSL`s~9r`TNU89tP(hh6~j)NjcI|Rc)($PP3o$a8EaBi_NlK$V(ULx-(^7d>x
z+N)R&MlMpk9$Tbb2cCo2LC%5iASF>*2WgSaI0zhFhm_Q=a+nGo5a)xD$dJ!qv4gS_
zEaza+BK-pwug#K*puB_g99-t0wuAGj=R#G%K}7)<2<^!lc5tDC>JBb;P+6GF`62;T
z3NqwW6@98Xct$cWaZrQxuvlH{pr!+3tYXt#QUJ9ae6&dYx=4}IJ4K6C9S4^?xXD3d
z=Hoy)xZ1%rj&{peI;bmvt#Fm2oi-b*o^Tk;vR^CsdIt>z)OT=QA-3{jb%TQ&9qsWN
zN)xc9=&0E`jT~)41f)$I-0Wy;zb)TPLYuPA*^w9M#=TWIY^-{Vbth`!prwO*9E@_%
z%0X)fT^)3j9NIX#|8{ZE)<HYrv=`dZK?ea$p6`sE9CQ{AI|!LfMH}w!pofEj4%j+9
z**as@?GE|~=*9V{#j3Ypf;$}ab<p3zoesJ$*1fo&L=9c67#twY&DLi=yjV+v9Ngt#
zuyF2nFwDUa2NM>np#>Sf2@iMl<70$_LyOhI#cIo9^~qv2QUu5!?ciPqvmMNFFvh`s
z4jyI>l7yBs*1`P_#!2u2soU{_e_5=X_(2B`Nu!*#L{~T)?hyx%I(WjtWCs&P{&As<
zeN1dAFF8q=#8Vthbuit*3~9}*<TK4dl_mc@(`T{^i14gJ5@t2m!8`{mq@L$HSRheL
z9V}%1I9MXV#X{>YQM^k&EgOhwNtZcTo=-AHKcQAiK73#?YK?=nG`SRRNMW6W^$w1B
z_{qZt2OH_NTzuzZlY=K6G;`71#byUv9Jnq#7h4@{bMU@{4;*ZFu*1O%4ql{<IoRdk
zfP<$U>~^rn!9EB3o&VM+>~-{%Ca<PTG=0iJZvp(0dr2qtjDu$#JYSGG$VQZe&k1MT
z5;aGJd8YYh0WUc??BERtZ#sC{(aX<Xaqy~xmzL<IL0l;E8Vh)`=yf)FOPxRO$Wy%E
zVkhmS-gWSvgSTnGGd2Gmxkdiyb1K87KAfWYkbT_2aR(<HeC*&82R}Rb#lfczKBI?s
z@Qs7d9elq;eL?3>U$Io>mMWfY&G`gQiG0O2k`Kh+vSuc!?;ZT$;5)(jrK(i&M@N6-
z{)siu`jk}=q`WnmzdHDzgQE`q5+!RhX9vHtDd~Gz*rob=G%pJCfU{;x)!z>OarAl*
za*omYbkviX4~R<q$bQnnDf&7WWn7$g@UMeXu3pY@#zAo>b(X6qnm7wb%_+<rO1pY#
zO_8gA<>eGsenAwcq!KO+7p4o#Mbg#x;>8-^@eMq0&UV4$n_2CS3+l!hEuNl6HGCH-
z7d2eebdhF;F3xjtzKg&`=%Uy~Sy#_tW?e)sVi${->bVzAl5id-=YpGubFP(>y_{1e
zznqJ6T=28txkAgk`fD0z1sTQDB`$DL!9`UU)m&6`^(4=QE-DMC<o@?Py=H4w#l=M~
zb}!X=GWhmVO{=?lQo2NhFBZ%o?_11|J8je@E^4{B(M3ZSm$LR;T;-y!R6=bRm%F$^
za2*#vFV!cJVVP1cxQ{5S=t|b)GF5Jw#`Rp?3$Al<y^E_|T*I2-KEtk_4Xf|!<zWn}
zW!fwoh$I1L&u$PgM)6Z!BUgWCZ{p%+HpH=_n_M(z51p=yaN9C<3+vFptuAhJ(bUEA
zlSQ{L)61>LFH;Mb=>xCX$}L>9bg_t4?V^>7)~rJpV_mdy(bh#z7rk7xbJ5;KH_@Sk
z&`vHoyXffZMZ&x|X~}NIl^b1LbY-3JwCFzij5cz*yXYZFh^aqUS@d>syNjVN?sn0~
z#T_pCySUTUeY3BNe!M2D-OIE|bH8F@8r1+716>Sqbr)mith%?CsUyqOT`mT@AQ&Q)
z`4bOwG2F#HE=IW+;bJ6PK^8_*C6<@HlBdNn^U-3NV|e!t>Rzg}OqE%#E?BOk?sqZH
z#bjE(i}5ZVa52%vV=f*Pdzj$j5f={$e%QsKR*Dy`OD$LY*!`&R*(kKY$6Y<?_k^o$
zW>SGqW9FnZ=k}+%nC4=Ri@7eQvo~?)Hy5*9@D%tNE?A%69Mi|Lv#^u6oRU#}RLkXR
zo{RbHTrPNM5iNEBTeh|SPBCD)UJ$|^gZU|N2`$#eVHYpESjKjzmv*tu#R?ZIsfLSn
zE><zaE^3W5&1x49%Nh4vGRpQkGEJ>_vB3qK>`50JMP`!=E~H@%*X*n4cqc4Zn_X;i
z!9{dr(vecV?JjoEAYB}EvD3va7f-o3z|Q4jkBfaS_DjEDL+^FLwPAE_tnGU3^aT67
z<+@pUJ?-Kd8s5pGEy7__viY8KwYz)X#S3C5hv+LhX&=j+UtF$Ubn%kpOi8Y7=E<k8
z&@x?o;Nn9UuerFXt$M@7o6-cYyLvj>V`pir-l9u!@ve)vC5oPe?f4#j;|vYnrvbFl
zYXdl!%fnkga`CZ?FI{});u9C2y7<C{yF!1d{LIDY3@+E0^Uwb**VDokSLiw3uch`_
zWa>YH3xT8^S!3V3_`$^x4?{it$U1jX$HV1(?6SNr91pICUtIj^;$IhM=o4K0=Hee0
z$6Wl*+Hmowi=!^CT%j9<_*Mbzi46WFH~rhytJ>%&j=MPF;-rgHF8JUhht_5A6fpM9
zsfyF}`4;TALY?KIlm~b?+xxF&OMBW!6$u@`LN`zu4+#&Ja2PZ^{X>fB=|@1)(~ldj
z$XX=I*dnuOg+2_?^Wb}^=%JE_l!vs3vL4EL$an}m#FCu7JM@tC5J~W$+>WmDLjgGt
z#hxzFpDXlJl?HH*hjTrg=iz)0-bz*8)6ZFgYAdyWqiKD0tcVM`F7Qx6GNgtywhKK}
z_E6%XhKDL1E|RF~9=NWus)vRvbs6a>s(HvCNOZA>9xHWjw6~fbF7Z&y!=)bhYXgP1
z%2At?r@Ow)Lv2r6b^Zii+VB+~l!vw++IhIr!&M$`@zB&mT@Up<H1Kc(Ys|wn9<K9n
zy{C6Kz1G9Xm8!m{ZI4Ds%r914BSg$4Km<2ZNe@jt-0WfUO4W#^Yo!`{xJi=JTq&==
zP>ia<uUGuOLsvuQtseNLvW1719&Yo{Oj4~~shWEr<wYOGe$mQ98*)a~Xzl4I3v=dE
z@7a~wv$glo!9#Bkw|nU5p_7O1tQilTJ#_K(UkTkj3~aBudf-Js<0m!cQ&dk6pRUx$
zwDt1zdJ?|0a0y4Mo$BM^4i9&F7~p}6H~M<|+1Jn0pUc^m{#>d0dwN9*Gau+-5M@}O
z9rUiYchQ7q>Ry&#mB9~cY_+>R4D+zZ!(I==J&f=$&%=DyCo}Qzh=)f#jPfwr!~Gt{
zdAQfZ7!UV}m9j^0J^cT#iykY?GON^h4-a^Fh_xr22Wh~obbsMRkH;=ELHO*~Tvtry
zL@MuLs)uPF9``WG!xLg)EHX7@@1V<??15%8MfkK>8V{qUdzj&2rl%J+bK&AFiJjwN
zF3o0@n(d+0D&3DL$;Tq!8+p3x0vf!BjUG06Sma@`hZP=HvQTZ+656MSWuEqIOu~06
zK6I9Q`guh2VEeA}u-elvR2#@-i?fWY)Ors*P>-)Vcdk<F1QYPpi&1>I@cZ(U9yWW}
z?qP?g*N1GO0h`z+c&i7t3z_`-#<ebsR%u&hYwq;0%foID-*nU;{b>@E+2>)uhc8*i
z=ISXA2Ryv);SCQ@dw9mft85)E*<ywsUi9#ihvz&T^6-Lma~9`$%E+HntUA6ARGg+?
zFUddb;bl+1!4k8=*=Jv&$5^UgWnYuBUnjQxriZuK-)V}hA69~g_dR?-8|HAp)2l|`
z^T5|OI&J2&eU<u<owS8|jjeFJh_~Yl1D{HtcsSZleNMw>Z(6E8V|S3#x*1FU7h=h@
z@FT0#S027*@jZO&;X6-1Re$jQ8wYX8@%Lgs6#G%Y86Gd&Q~gZmPru=#osVCc75#&c
z>wWy@;diOD%Y6Ld;ZJ%|ALV=;_3#(nvJb<@-yZ()aK^(~K8~?a9!`2VC7z8r(>0x-
z*~t5+k-%vW|B9utuyo^mQD;;sAEkX1`GBwYxnd>o;=1><eU$OFe`AnaTXU%`DT7HL
zrVrmo%Gbtb`EUdf+rGAE_6ygC=YvK|CT|q=P-!0-ACZsPN8ls$!A5K*fBj^A-4>-+
zEBa*0^UC=smgIE%46=#i)#@A{=lZDXqnfY1WqBVJd{p#to)5aL^L<<(fYwe^q*W7C
z@=?XdMZSK$ztGq3PL+M_?g;qZnck94j|=&#`?%Og4IedqJ*J==<c>v}uGSraW_*c{
zT0SoIbuVbJTH85&6n!1P(bx7-$H(PT16TQ|>*ET+%Ey(yZufkNIKHdr<7yv#NL}mW
z8cMd(i_i1JE;=-Nr24G1m5L7<c9RCw*2k?rZt&4%wYpLAq)bB}jeOkXqp^=BK5q8)
z^O`S0tfHZ-wMXLP{uW<%iYcqrZ9ba$XvwtFN1FS3^##kt+HN6rPRG*92fIA4);`(@
z=GsvP+xzI?<B*T%eRTBE$;U(=kFnLLkB`AVhWO~}qnnT3K5qBXT{P?|`t)G1tu7jm
z<nASWRstWdeSF;EV}Or=J~&|MOC#^9`uTcYC>87P<4zieEHmI^h&4aR$L7`Q@M?7z
zjVGxc7nNt*4fS!ik5N8G%k72<9m%>~t%my;LB*PDFQErbG`8c~Ao)|_y*|eHc-Y4T
zwz7}0KF0faz{mYQ=+DRbx(RquRnq()HxK%F$p3Gd%6<bUR_j9Xkwh7ejvtYtJ?iU)
z1lcv}aUYX>toE_S#}hs#`&gcD2p>~@%=IzP$21?)ea!atPnR=%%w+%a^{+<EmO~Xf
zd=5;A>5e$8p5yD6VLmeEQ{D&v7+UIMq1<$_k0m}9v72<#uSRU{8f$baD#rh_mdSnj
z#}@f3d~jN0rH^lq6|M61TRn?*!y2{L$2uR|SouEI``F;?XYnR!k!$IiTC0uH7x<F=
zBwImZx6nTb;7f1&HR_%<+WGJBvD3!^A5Z((<zu&xr=%wL_}D9|?)UXLj!iIQjoRny
z84MPXZe+t6&7>y0*E7;953>IXU@IS@hNEgcM<bMFQ7`y-(TAOalfp|r4zp%_{Nm$f
zHa!dI<6|GMvL=1J?c*IEuZu~%>EkW->*neW3arugz)IjvdGYP;UHT#}{`c_#t4mbn
zZ>LAsC=QPJL(_+n1BWU!hELdWXk9+O_VJmI&wcR4;7fWTnM88dsxRmR*XnF5t<~o7
z4Qt!S4{S0Y-?8|TdHuCo0lqenau~(k|Bm?hNup@3d966k`js{8<Ft=|>HmHFPB%!$
zPXA9Y&0{9$@O}I#wbbrd(NXbitS(+071Eory-1JyIN{?YyQ-{wZnIV&X~FB1B<#ld
zANIku3MrhO!dWSlN@=f1FIqZ<$JeSNq0E!GObUq<Oc5|rdTh)0#$-ybg5%o-@5S6!
zu2oh_zfseM-4whOs;6*q3VsTy6w0M=PD(#1(kVnK#3^J_2vXolpkYeS17szZ!4}>1
zQ#hB>ul>bBS((ITMSwZ5mz|qJ`4lRrP$h)}Yt?xvR7jy>3g=7k0!j7pTK!z3!=Xu6
zO5ws3II?C}%1=yPl+r!Dn$W6}GvDjTVdiXzk`!vBaAoSh37MKH)J~xeg;S`N(xar`
zjuml$a4E%_tILFP>f`bhj<V?)d_w;eb45!3N5hUr%Gt%MQmC6ky%era;d-e_Hup6t
zT$@6DQG+tnfy3(SQgGKPUKFUlPJ6{0Q)rk%s}x$N&?tqQsBm-DGKIz|G)dvs6mCoD
zm7F(o{igt89#~1*RDxXC*(`<Tf?Eh3bV46Q%fmOBgkoF?K-xyKZJ$Di6xs^rUD~DO
zm+I!KV+x(vUMYPhNaqx~2<R=etI%F4bQ92BXb+(j?#W5!b^4HtzgCox-kw6A6f{oZ
zPLb&=!G1#f3uSD_b!vdb4iq}5kQ<{03mzhLsL;EG4im~-3>VOUow_H5Q7lM+%>hQ!
z%!o7CoWYnB?&FQpx*Er(a6gMCcw7qOQ^*Q_AcY50_%?;_Qg|qZhf`Re!iE$kr0_@z
zvs0Lp0uRD|G=(WCOif`T)2>qs*Qv+YaZ-9%%HSknK9Ry?0p#pir|9aZr7(laa0noj
z=NZvZXQnWVrYoZcMxDiJq7>$(uq1`0DR4@8ehLeib4tHo@qx8S(!RS+Elz>+AxuJp
z;Uj}!SqjTjSi#=M|0vffK4?~^u!dGANmh~a|1b9F^?G?8Rb5A`7R(n91~;a#iH5=6
zB$7|2uq%b#DQuRmx+R6JDeyNmrrpMl++1xJO0Yw~PN7tT*B*XfkQw#8DeOz>cM|q)
z{<gfIWl4bG=@gzx;ax_h@T{o!BHeom2UB=X@;Q{k+yq__{CpvQ=FBN;(!(jdox(ek
z@MWQ|2z^!PYeHX7;SB+A3T3Ld^7_kL)AgNoK3A_-@2BtqeHyEpHlIRqPxWyMpU|hJ
z^a?`;JFHiq(zHgXA?wu_0zOOOa{-)WV9RnBg7Q+>ujxAEUMwKrz&WGK!OQn4{6J5e
zMyWJ@OyNih|D<p%g`ZORIfXw`_*0VnBJ_VL{94d<;(GNPWsVp9PTF3rSg)PfQP$gf
z^|#0n{3U=}3h<>%|Nh1)pcGCE^8{&gbyDalX+gere!5=$E3s$TK%LZI>-FQ9Vx`k4
zlSU$qqO{)DlZ{1_<}>kZ=@dM0$4DcYhMR_$hMCrnbt?^<vCZ@liPTBs^hy2JK}@6a
z(@3Qer1cyxIq5VqB23JoF2#6|9IGfy|F_RTlt!FJE{)<es-{sbjk0O|etT{j<<lr9
zn89-d@Bx}1Yp{yWOXK{s_Uad;wOb~qLK>tMg;o-JVH%YMR1wP9iv+N$tEX{s8Z2PT
zG)kC58V%C8A&r_+@LFkH%FNR;(v-=x%UG@rst%RhplZu~Tk=2OX6o{ShF7Ga(zr5>
zs|uWJ(x@xAp3tice7;VwMAxQKzreXJjq3$B*q}T0jcGJY<K{GONuyC(|5Qt6lQeD;
z+*l}?{4e-8#~RI5Q|ighpQWBVZqQQ)obkIY4O(e4q0NQ1NP}P2$ZRELY@J4%w02x=
zC1Hm&+NIGxjS(Bv><#+GlIGn}qS)x{eVx<jl1A4wx~1{F<j_5h9%<aqY}4qOMz1sm
zq%km!-f7&P*6)`6)7Z8_^+{u}3~=s9qp$Ga*`WFf_)*HsiK9Eyde-QyjcQODccpPp
z8l&VEgVPw6#_%+Tr1fI{p+fH#${=Tl*i|_<%Ne8*X^c!G+^Coj-%&?P^08@Ly-`m`
z+?&Rjv>wXcCzLW(Hma5qH9n08(%3}#G#*Ujp)?k!u_TR$)0mLP>@?=2@kknvvPC#)
zBWm+EmcAR+#55k0yF8x8q%@uo%;uOTU~(E$1WYaPSqakx&nR$arg4OOEHqbN^i|_F
zs#zP=+%)E;F`qfNP&BXwY#_PgBB`H^8`X0gb*bOqsQ$-`W8O5Dv%2n3%OuaUH>pGI
z)QU7#vMlX&J*-M&bsB5vf;Q+62emdSg0*R^6V7^}8-#8Y%Gk1-)aEp{q_H=ReQ9iE
zBc}0MN3~0Cv^|X-w12K9E&TJcQ#8E9#BQ4FCSBWm(%=LU^?abC+MmXOG@ef5DG{U2
zoj0jx1RqM{cn4jIXVW++oacnLlc`0H!P&Skr14@JFQsufjW5#pGL4s|q}(j!Q+Am`
zO};ANwKQH&<Bc@lWQH8Ya4mWoZ%NeKLf;Yku29ClN4w%TyXNWx;e06cBcUG`WImzH
zCN1+BU0HMWc^bSmuZf$~S7|KUq~6@5eoo_Sxg&$$r15PU-$@jwL%&bs2f;rI{fR9u
zfH~~mq^A^^<QFQuN&PDHe?otw*e3P6;6H@^DfFmNW=r|M)A%QiW2{3qaRzHLIFZK5
zG+JcPGJ{ie%W2ff;PMRqP2&vRYzDau&dQ)v24ylxWb|XAbOsPW%$=IcJgG~1c7ek=
z0nVZr8Kg2uXOPUm%)rX%sTDf|CxiSyr)~!2pVX2ZDR_c?p=5GEk;&+R2Cq;O1{wX$
zm;7vj9|_<zW^o2(GpLr)lQ!itI46V38RRE+&ds2bBrl)Ac>>NCdI1aGQs26QWI|9e
zqo=hAE);?Mf3H;}pNoVt!>R(*lZx}G)ibzQ?#P>#WKbi6E^QRAni*UoxK@F4sesFb
z)|Mm`yF%{Eg5R2f%HYZjuF9Zp2G?b9y+qX$dacl_Gq^@Tn<w>9mskA^I4ecaK=@6W
ziTq%DLk2fy&`_9-GMG@1zezZaGiV~<W}!@eO9lf)hLga|{I-l9wef0}(MK>e7fP{K
z8MJ1#Nc*<Qplt^CWiU2_b{Vv1xiaXQK?k;-{6gDNGSA~q8FbG4cP>NzvqiTI`eblN
z2Hi90A(A~ME$_msR|dU>dArahqFdh#`eksh=+-}jJ2MzAu>*t-6Uvef6fj8WT|x(E
zFeHPag740N$4BPx^3;>+1Ic-WM3Ff%gL?{ilz`D}h_2e+#$-Tw%5YG8e@0I$jTb8&
zC$+(`EiM0n3?7u=Lm4d0U{MASXTaY>CS>qP29IViF@rfG@R-oYGngdc_b1g80%i!E
zoWT?UQ-w~?V448lns>?LnZjXkmVntA{h^sbUUP*rFN667nFSeClxHaCDi=$+mSn&K
zdD%mmCrx*mlxVro6+&0Cq6D~`6+aAdu3)X?wn^x^j9!LOcDh>6PB&d`$Y7%Y{z}gd
z!nruAv4t%z!V>~)%V2v3Hw4;g?8sne2CruDS_ZpB;F%0AJyx_^@E&%q4EANPKciot
z4rKIeKVLzg%IE<yFYZ?Nv_vuX!p-VgNp(;P^_<W{LfKN!3wR-e7X`c|^svyEg;M4f
z_O;ErSzqUk*k?t<H#2yP-Yh^Oz}p$Tlflm!{F1@Dyl)0yWbkDM?`QBq2A}Zm%~bo%
z>O=Oj&g$a~xM#~p89iynDO0{A^PTq73_i<X#Afw*M!){m<sMl})r{uqE1Ko;qHi<!
zjwYSa+a-OI0jCuBI?73*?=yPP#Q%kV%;+6&exNyZ*6(cO9O1CEhx$n>f#BB+{+GcS
zI_ChtW$=3j$LY*7_#=ZqGx#fmzp2mZA`aI0Pr*@9c=~3&aDtzkIZ^yi2FKWWS8L4i
z0y8{G|DVBWN^Vw{pDg-Ul5paSCFMYXlk)_n0u-^XWYktV(ElXnF@$+`fEPDwju9Xk
z;QRm=1TX_w0m=s89IqX~36Kd81aJd*fqs)rG1VmH2YPOwFZrCtX({uQX~~oKW!;8>
zeqGN7pkmZE3J?d#1^7~K$DtEJvB(pY3vf<=a|8WNFt<gW7ofc0)0_49i#z9#SwU`k
zQGlueDh8+|!3zUa7QpWjdQj6{RiTE3GFD>|s78R)S*RZ9cE4CCS4lNLRm2$~7QAKv
z4z8^hsuq>u-e>_X3s5^iodER%Tu1#yNfqdI3s(fXtyzaG+LZyW3Q#xDt8ti5{xep+
z09T7VIoAZZwt%^P-}QnU2<4V09Kv({oYi<EIn7nW0F46N6rgc{LBeSg;N}3msr&|Y
zOMs>Uy0Tqbs9OWv7U+>h#{kU&G!M`w02gw!2+%Unhm5qA*j6H3Yl|LJa77%yMsW(d
zZGd)x9!#}o&Rf*DEvkbA$!WSpbqdf~T5aAI)kQMl_>mK#-6X5-fu7Z*0zCrs6izRp
ztO_!37d`t3y(2(hiRu?%pm11({sHb3JU}RaLL`%uW2AQl7#v`TwD`yX_XHR!_->)Y
zgbo)vLMT_u&`w5)st*Yr9pGNJqhKm?VvD*j0KfTe-=f9_xIX~FxB#zi(VX!Td?3Js
z0?7G#i*C?|1EjZV@JN71r3oemSR>#up^pol6yS*flLJf%FfYLTKo8!h2ACOOR)A>%
zrVD2V%~DppaQI9CzWvS)Fqb(r)88NG1Ry2mdG4eOXtV)V1XvkhQGmq(I8C%H&}$f&
zkgc;Mz|sJ0L0+6C;DVp!yq%0p+1F@4%w$!7)q#EoqyHgY8(>|4^`bKccnVUJbtM}D
zeRTE40Gk95SKX?%1lURiLM#fgjdc>>;t(Yvb_CcNpjxQs5_bjI9pJqH?+4fuU@uD-
z;3f8vt!iI@LxKLUe1Cwa0vrg?wzuN-EEN{~j8ICF$*c|rcuo=$lleST33#EvJRIO<
z$?$EO_g3`^>ngzOY(5G0*s926k~adpDQR~`b!wg{dW+gdb*RROt@=>rcLH#-^j)Ek
zY*ilw_%OgRx~u>n1^76?Pi!U{-pQg*0(=(Wb5;oFPXhe_r9=CIo{GIm+#NYz1$vzO
zoy2}E^c$hy((2mk`FX~EFET#_xKLI~9Feqq>*Jy$HV4PTq`w6Cm12Q@E%}WuCBUCF
zq}A$oX*f>uZ~%TZz+VCWW^KzsTK|Y*90lve08c9ZA$~&I^t@2}jgtXR1vpJ*0@xv(
z5NBvSA&*kP*&!BeRi#4x$(skUln%Ai;5yqsI3OCS-2!ze6JqaHl?;&xVT9T<&@1xd
zW}%$GF++^+psY}@C?Ie{cp;(?aR@&|Dnt+>43Q>nt2k(VXRFGD`mK@|-!Ax$m!+7D
z{kdj<<HTHu;t=PCx-!d#`s3Od4lY9QAwnn2`Z*`mD;fCmLtH-8D-9@leyFYb0-+T`
zR18r`a8;ofhNv8(N{F9n7}M270$At#$jBg@rqni7U2J%R>~&BhM9mQ0LUd<&L(~e<
zK12uV5aO~B%|bK}Q9DGP5RF6qhx_HB{^m%xzz6OXAykMfLtMqm=LAlOx*_U?xK66>
z>QF!O_<#Mi0<H=5N%!Q`5A{#?ymH&r^^%bF+#tjag82+(uwjTsA#Rd;@e!lltZWC@
zMC$71P#eQ7A(~2S67#w>#BIWFEZ+oMh&|9GTC)b)tCm7rh59Q$gKX|LA=-)!&?ei3
zdOSiq?--&}h|VFputK=riPObgCM~<fFjZH{llS7s>mDI`N^nky?W;?Ag%}WGV2Iu!
zZWm6U5dA~kDfo^MeFadmpMYB1RD*4*)iy;A>7WpIg_s&*T8P0R`fO9<Xlx;dgcvHp
zyF=U;Vr+<EA;xS|yoL*ZgwT;f?-4pm=;#pl3Sd@a*sR+W!TrL?QwCQIP!EKdyiM_X
zIK+dZ*otlHAptvtKOw{;bbZ?tuSY{nEa1lkJRV|Ff%Alb$wH?H<xQuDm=Wq@vRTZ-
z+tkbuN4KfjA&6&%_+*<RAcq2Tr84IUoiCJaw?F{jHW!Cj65`DeZ-rPIVp)iTA)X7d
zJj99+&xqK{5UWCLA|}7DTFvedVqJ(eA^7j7y<Hz2PX1^)B5l3MYzVPY0Qr>J9AXQ*
z25n3vw}#jmVwVVP6Xtf7i_YZVBA))nv(+fJJH$STBHlyqA$UPQ9mQ+E1jnB$V*Uq0
zJk8EBST#OVMEb1g%r4Jj9-@~RqF$9=`Fw~MLcAE_r4anzmV91$a9G4%rqK$>Ghbur
zLcAeqFOwe4Jxut`>utJ@5L2?4n#H^97a`8e;`}V$5AgvVR~CL2ABOlS#2+F443Qb2
zJ`Qmt#7}IO5T6R?vk=z~P(OtDT)-DX|GiUv8G`gHp<fIAM(DR8z7xRM?*)|Ku9(A*
zR9FD<&mn%5e0~v14sZRx5Wh+Ace!t#S#5wiO0P&?okdX=e~0*o6}Uj1VP9TVaxBD&
z5GO+%7bZEiwyRTuPxICSnrv5;C%@BnMS-)jAg5Fo6c`{;JaF#pEGS?~R2jiW7KyCB
z5wH72EXisVU}a%v;Yh42lxZopQfMlRbQWP2*{nY9DkC(=;?I8ipg>+^a)vp|;+(90
zTE$u9ve>m<6$>pVv}{(d(V~N*=V26|1?Q3@OgdhUCN9XLLKeNU=$+MeUNMWSvifAe
zN?BZ(Mdd82WKkoFnps?wMb#`WrUC;LuWDITFW@(}YtFaZRf%x^k>DjPeipT}sFTH|
z!oRE_Z|qR<4xQxkEXoX2R|>sCD1(YQ?@$E1I<6?Gn?=1WuFm3`EZSz#E{kiksGmiH
zEN)=I`D;K{KYXvx>hU1QDXa>vGQBa2hFR^{TW0kGj?-w3vbafb<1B8IgiR#K*qgJs
zrGT4eaccqdaoJ2Hn+t7`)y|)rhw!GYvS^*v-+Jor&~@7;tJm7;sOGAD7F|T1{0;&-
zX3<Fi<vR;#w?lQ!qFWZ-8RY6d*^jY@U<P{%;M)ir;`S^CWpP&)eOQevOYRWbS7<+>
zgLkO@0`3$#Ad7(lC_H|L8cZu1u7+hXJc}WM8629$-GWaI(+A4W*r7&baZeVbvKT2B
zIrY|*jAj9|ShPb;5IRQaeL^?yP~?vle813fS&SF(fY1kpJ|y&Ep_FH~q>o7O(JUqk
zc&rfncovfcKT+UJ7Qp1wvY4L5*I9g%#f&UwX7OScFJ&<+t4|<(l1-n*>@4PFwX>Z|
zOU`0N7W1;0FPsHgEXyMAV;3^dEEWrYNft{59NeMa-JzzQDq?bqeZNDkEXc3UVwK?j
zr;1MW)vkCA%|lYH6H3l{0UNT|n8hZxX~AQk+@ZE)u{De5v-+{Vjg-AIi``l5$m-ny
z?j53jUR$y=tIuQQ<?K{@sP+K0kBvS^H_cvYrt@|xw&wmUo|2Y5P-x$$vv@}EvjxsU
z0ncS|NWi9nIw5cULKc_ol;>tvpOnXq3tr3OWtzlY>J^%<05Tiy)Ej!dp2ZtkyqU#Y
zS$vVjmsz}>#XIax?0N%K9Ui1UNWGiY8%ng@ske`KUzGenXuqB6!z@TY%Hm@I#GeTG
zG>gv)oX@jpw4#JjwD7N3u66n--myFNz7XGL@txRzBEt7s{J^@+;y01`F^iwr2L&Ht
zr&xLx6Y}~+IKK+5K1h#W4)s#MXYofC|73BDZYPVQS^Pz}Pv+g)vE(a(lC1U%+h{e8
zXK{iKJVKdBHx0{pGOIn|DSCKX;7+xImD5-KOUJmX<c!d>B9w}Bu(VKuqDY@PO2BKM
zl#T;KU)+KbAsNApU`6mFq$0f=!`nNR9l;^)tG?Z-+z3O4DQf6NTF;Ay=;laAy5olt
zKH@=;kv8}s!rwdfsB_M6eGW(*AxE{(MdDl(M<^R%T@LGWC>P-z-Y7;o#<>y7M|dy7
z`w`BIaDIfRBkdUJZ7yK`5iX0gBdQRgVuVU80#)6mryMIs+PiW=7jczHFTcD<XjP%r
zB2*VZ{>99pnJSTB4WTt7TvCXw6=`odyS1tvp$>Ooi*R#<%OhM7;f4q|Mo<y1jBrha
zYekc*BGilY#?CyRpswW1p*Mq93sbMJlLg-OCF;5e*Gq94MEc#EgD)11)6oqhG>XtT
z(qCIBuRo#kH=Ia6DHzN%Z;8+}!k`FuMYuJ>Z4r7z=oz6|gyy12*9a|Gb*!9Ls#AoP
z5n4&Gb%eG8+6bipe@bc>p?!o7q7^wEC5kgq#4JeXNDoeVb&0@5;{?>9n+SK0^j{%V
zuUCZL5&Bag!tD|IM7Us=*7gojhU;hgMd%yp=?h+L8V+#uvUypSJRs6fC}uK{wbxER
z4F}VrBJ7IvmfAxj+#O+Zgeeh*$xTPIQ6dbFFe1W8;V|tz0`f<1j1v8c$3(a<!UGW=
zjPyWktW@d!ksiZx@_byR7q+o1<0;l!e?NLC!o!jN9?hSv)Gjqa<e!M}2pf8r<~$l<
zqTt7bK3?EY5=jbhn8^&MMwrI_7-3$dzvoUD-DV1%5$RPEH?VRzX~T9G<{Y7HUslWf
z2n!;th_Euk!U&7l%knngOf43%r4g10U=G?OIAs)}n`FojG;Ez!5mrZ>`p~ULWmv{F
z%z^z&wB20LdA)!Q5jG0gRNy};wZXD%5zf{Ee_Mp@1-v5yE08k0`@Or=ZU!U0baroq
zr>L9!XSy%Keqpjf8O0ff12k-zYIsIuo{exY!gCQ0MR-#<O!$0+!x3JV;0r=ujPQ~G
z&P`F^6~V7Zcq78Af?pHLs5xSCbV|g0482w0za8P70)Cf$WK9VL=tViK_#ncE^idM~
zLxdmM`Vl^f@M(n4A{;nV^i_n<S@6{*U$9L%@HtYIX}@I4%7BjaYdX&(RlgC=w?e<;
zBS3s3V|h`ZBN2XLyVJT>l>8jw7uM3clD{MT8sUF}|BUb(-EwdByU<%t6cPU+m`R8!
ze^j?=oxen$;2+8DScK!kIU)3<P(ET#30SvFC;T_UnFwdaC>0|a!;DcnMp2BjW0Z+;
z<-bL|1uw*SYL}iU<CTbUc$fOEmof@WMp-fJ7+#Fp)MuA!dZNgYSYkKE|4aHYzL0z}
zF@hMIVmuimjPb`V)hNbIF|skD7;%hTj2ba&#wd<aHpY1|&W|y5T}e55egVYi#Bg`3
zO1oA07<G56=DQW?1u-hbs1)PE7z1`Iid8JgGq!S!Dlw|ZxH!g`-RhzkRby0(u|OoZ
z?p8dPiWgJyB9oY>5tF{UTU`>PR*VLc+odrsi*a>~Yho~}b_~Vpit){ERVT*ftj0a+
z3JH?Ke0Za)Bw;<Fb%j!fcVXt&O0a&6>jW@ECb>Qa^`SsMNN_`p8)GySnQ)ITIGK%O
zG>I{kO2)W3#w{^=#^@F6Cv4Lgx5a1{<5t#l^Z!nAZyuvXtcN^ZW3-IXDn_RmZDX_+
zX1f^eW3&;@*3(54<HffN(heffk+ru+2d@@N&{_Chn1gV-(Q*c=?m~MAWw8Gq)tj|3
zQ1y$^KgR9C?<4dMp?wRI9BSPe<9)sZ3{`j0LY9{d5IRukAffl}QG;XfJ#z?6WvJSH
zrihdU92R3zj3;6Yk1-;~$Qbv;`aNV~j8QR03w|`ly=?jz6Jq^p&Fenl59y~k?J$;&
zI9S~uW1N8TLdkg`#)Ad?kbsAIuRS`+Ba(dO9+~bC`j~JY7s_c9Dlj?5lo*R+EMeQl
zm=<GhjCt%wd(`w8vjh;&h%vK(-`k^R$M|%039mUZzTcw==EwT|q4!X=P{4v1$M<MA
zOU|Mgq<s6Dd6!zsTgO-t>s`E-#o&SLd@)-YV^xd|F%I0TR>ykJv9&_E5!o8PQ0-L&
zWUh-*d9PYuh??}_6&qvleUD&sj4dpC4p-%{HO96WpR+s1*dAj?j1OXb7-MIQU34ac
z)ZrMrW0d0yKMUJeJu+JDi9t%vz8L$(KA#f$q6i#_@w9+vggz_upwQ=p9umr|o{#Z@
z;4Am)&BtC6%zep-Uykt#`(upPV!RXUcl+04yb<Fq!JI;QQvl~%ez;TRr(E8S(R8n#
zgn2i{dxcmA-xu6%uRfBS)ky35D8|PzK8f`N7u)nx0kogbXlZ+O>wg*Js~8vLP$7q}
zY3=k~Ih4)e+Zf-)NaSGTv|)cwcPCZ!*k1KR4ALKk9ufKz4O_r3LVp!Xng0p+EynKx
z7VTAJ{u$$FjK3tee}(=n^dF&Yg<}Ga3q29zq<~XGPYd0?SC0#Losr;KIh5ihoYDe{
za{4TGa?Tc7rVz`7$sEia>>QjN?q617<uLGcQR4xs-@io!ZVtq84mpYSg!(z8a!7Ir
zAT%SC!61iFaJImS1iY|UF%#y-i?=A3!#O#W&*?`bJp(KAT+xS^8lES7KB3Of{Wp@T
zm_wx;F5{{0Ib4|2&*hJ$r7Gw2Q@e`Li-a;*RY0{IstdTdz%LO{Lukz$`sF96bGVc_
z=fDBW<w6N+3#cRXe|yyx0+i5i*OXA8ZVvTw=#oR%9InpcnjAXi&^d=|bEwZgb-Jic
z4%g*yeGWI~&@iVRR0E+E_o-6*)D1ag1T@OwrW{)5bO+~dc#U&tDY!{a55aidEZ~+L
znhLm8=xv4AW&)b$(4xS}Z-UoKGT}aW%whOw)t08aQ?(OH&_0I_Idl{mb_(_gGC7+{
zz_AI(mECgap2O4}rsdEhhn_i%%;BCKdgahNhoL##ox|-p^vU7Q+<$X!cL?Ywv@dIZ
zhpN3#^)JLW+NTE4sB#!2oV!GTPn`Dq)L_9wgfbOp>e!>%ZFvo2eGX8=a~Q!J?Nj6S
zX(kIbN;H31=xCw$3LPW#KA~f2r2<&7<8l~Zzz^i`px}oJoP3Q<$l;M39?fB*@E<G0
zavJ3E97vhZq#T|o@F(XmMey~q>mbL%({q@g!-5=U<S;Xb9cxQw<uEsg!)Iwco5mwd
z;u-r?g%N5V-OC8Y*o8SP%3);=tE6%ki~X>2mgKNBhh=P8;jf^;KK;CYMkpV|#H({y
z!`2_E*5>qt0DBfS;fHe06uq}kZOCCGwJM7RWw9xTCv#|2jGKzFIfpGd6cq!-*qXz(
z9FFC1oc$t)i#C+Jk;9u*HHV!!?8@Q$ed@U!4hh(u!yW--?#*Fe4rlhM{Xz+z%Hco(
zKb^xff}bsL4zkADD2j2&`8=yd@_8Yr*FwA~^rbwWq~iVR<s4qg;Z;)Zw6IUTp2KT7
z)Y`8<3z9b4ubI8>QE%n&Qw~4p@OBRG&_3@`@8<A@fcJ!w^L`E=2>!6Z`AERWLO;pj
zQvsg|{ah$hVU+r^fWH#(bq?PYINu8RjzuVNe#qg+0zM+3>wf(}|AoDt+c@X&D?tvw
z<?wqBM{{~J5XSz&M&afULit%g|8MDE669i)zu89o{JKv6$HYu%`6r~6&nnh0U?+1p
zMU@7s(?b6h%HSCRckfrFinVtwEi^wLb#^hz6r*l2>J=kV45Jw57vq9rB#U7d>%*hV
z7sD!sU92DUnPNBs++uhFxI3s{3{pO$)51v=W0B0`@g0@?K$uJ$3djnLgvQ0l2`Cmy
znX&@P2|cG6=N9-A_v?wH^NKM?K!sxcW_ShFD@Mg)RFdF@#kg1iqbe7pN--{yU{#^j
zg;py@{(Un4Vp$^08pWt7;1Z#=i&0C!r9vrrSuys=TPSgzVq7l#d_Gqe<Emmjw_iWV
z*wOePds6V##ki(e{{wYnF|IAvuSV>He2UdC#&yMdpVjM&af6huK{4LnuLg2DdWYgg
z%s$(&SohqYm{l>F6yta?P88$jV%$=US;d%LjHbo7wHQN-|BtEffRdv4zTRao83Q0H
zGt<-EGd(@sJ;RCvBbI<-02P%S3?L#oNtCE0K_!R+A|MJ#5=F#B5GCiFb52T<WCA37
zx8MHeJO8tF?z#2q)vH%kud2iJcH_+eY6Va`fY$<O8bF-@>ITp#fW`sT3;4&2hMXNC
z^#vOUa)V;zycF;cF)s)Fcdn99`IQW3mI|-Z$s0LLO{5mpUJsyI0PO?l5J2+)S_IHK
zfHncNl!~;_D)7HOFwX+(lC%w=owT(y$8V9sHv;GwKxZ*aNvBL{o+n)b=qgR;DHFQ~
z&?A7s0lXVP&j5M_&@X`g0rU=_PXKQR{MSmq#i9OGF?B488;kt+NcRo+Z>8q@qFKt9
zW)BGXZ_;KODDrpMio6kePylx>_TLNrUI6b0Fd~2t1HL{rhXgP*fMEgf4b@csK;**(
z^CYzVk=S9QquF=iqr^V--{v78fHCZ>y!iULqWDCdWYKueegLxq_$Gh}0sk37rkMeJ
zCj9dNCUPAGFquOXz;yPpp86tysR4iYn-cK12ujSw{(mTQ-<T2bZ^!Ye%P#}+9gy0p
z;$lBbn_mU|-_*Vq3(U?A;M)LpGwK4ELpuR1;%>kt(Cy*x1NbR`xdE&nk^2LW0wSdR
zjS;zZ7pr*zEMRmkR`Ua3A}RJ^?$2BrqR%XA{lbmn!`xp5DOnQ0QkDj=fnEi$Jb<-~
zmc?p?AjwL``H0-Uixv4Q5w2#(7ppaNOoZz)`c&H}d~*O>glrN`R;1?E0Je*e*=<6o
zzaxO1VxI<?-6fm~djr@Pz}W!K1+YJW0|6Wh;CKL=7OR7zb0mO60i0T_4hxdpT&#`;
zaL*FOL<=Xl*#>Y%#^+Q3ze$U~OE%8|wn%b1fIMfsC5lGQ%RpTU;Ie4`A!B$UfQtb<
zzC<xKSfZ{3@Mi%31n_SFe`UJ)x7cA9Xp_AlUJW3xI~20}{{?V^J6;fO5H|z36+koy
zD~Q_xWCi^rV96k|g&>IhLh=QXBZQ^rvQZ$2rC;S1%18<Z@lUodDV&iM38H9*7YpK!
z48JpoyE6RlAc_kwA=qk(e>lD;h*Ck^E0X&K?-OLBEM+PkL_j1#K}teGG{LZ-E@%W{
z3W*5va7^V`(0|b=U)7t3wq)aiyfpBFNCZ(eh-yJ3gD69J5Gsh=puZ8Nf+!cn13{Dx
z;z5z*?LT?DR(V#G?du^aN(cRYl3N@rRuD<gCH_{%EYl+*sTf2hA(aIm6?{yPI#q-`
z9>fzuo)mm4Q|j=&&_O&C#Ct)!AH=gkR1czF5cPw2F6i&%F9cB|i03n2vFVyY)C!_*
z&_BM^4*J*Qbp%H&@vp?EE>UxrsO%iSv_TLJgXj@N&mdk5`iJtDN#wHnCCT#8^GXnn
zgg55!2GKHzSA!@#Ks6D3O|Yrp>w?V$n+x)nJ8HI)>YX^MGjdxCXG3j*Xd6VkAlhdn
zZwToiSh5&8W(bv8v9na~5=2)a-2^FrQ%Lt9)-CbXdIixth=WVi;2`>Nh-T#uV$qG9
z86DJHl6^afzCu{kFNppbJ|KvJ8U7AiY41M_x#30*Z!*6t25Ixs5`RvIaB6}W8N|>a
zh6OR4i)g808WF??!b?e(k`IIMg!8EF{|XSq=pa50Vhrtbs}K4oT|C|TB#5y=j0^gg
zete3i(oz*_r${~xVgjdrdM@u>*I4S`!JZhzB#wUwO+uI)#1}zig^(S>lpv-Cu|0?#
z42dA72QfE@c|ptw;!8$Cd-X#QGlTewyo;J0#MdIE{F@+VNv|tr`D#q9ma1<>ZI0k~
zL3~edm-;{K4ie-|@*ji#LpVPP^7p&>K`aPjeGnUh_&Mmm<$ekGjUW~V{hv<8FIB$;
z@oNx^s53_K|GfB5YKu8dZPX7-)v_R#2eC4URrI{AT0xzq{(Y5CZ}<-stqx+}Qva%R
zZ4hgMXj(UyiIQmt%B&0G&!wtt_2kANHU+Uc=${%<bH?o){`|^o)h$764f=1;<!{j2
zxN3MyA<Ms~u``HWLHrTKg&=kZu}9kdEr`8A|F`uMlHC`?emc*258_A=M@4u@6b=Vb
zWSM`_#55zzuW~Gi<5CpJ$a%xzq*S58DaK*W|9-XqJ&4mmoC)Hr%r(1tK8SN%t?iVz
z%<pwx$1etPi92l&|MFUFTJGhbf1m#fm$2MQ;?4g*gZPV))>1M3%}Ia5Cs%{G7Q`)X
z??GJWrWC{tZu>$1CNM{a1438%docr#1Hyfy(lY;cD^D9(nlFT$5E3CIL;hs~LbxY{
zQX%9Ip+LyLZBj6VLLvW#4;Mw=uNZ|x{;icFAruu-Opua0gxo23m*CwY6wj2F5K=OP
z=a>0Eg)si_4dMO}N{9TPLhcLwZ$)s)2SSL15Dg(1LMQ|+gmB2;pbSAh<Zn}4?@W2O
z0nLzq{!9fXD+D`)cnC33ri98)$lrh55IoT&&y(k2nGpCRPVJDt26IDrAmks0$_l<9
z_@H1)u$*A|5Yiz$6heg%9uDDY5weyF;n5Htlk6jc6$L8^Ru18)9N?-*mikW$c|3$C
zG71zjJtf(yAygC6WSK8ydM1QtMN(amlIJ*{8Qy)Fs*&L}L#P$<kJmr+QN%hS)a7_~
zQuRV;$N>zYzGNwB5c2PEk}$m#!YeWkFH0$Jcjw6)h0s_e93o0y3!y2)Mgugw9zrwD
zT?k7;XwKF{_$-9aLueU7s}Q<{@Fr)un`+H=yZaNg?M6<UkpB!o+Ys6bX)oA8@C`wh
zb`;Vngw8^`WaM3ij98|+htMO0;URnwLeG%DfxII~(kq1C!utr)=eML&ZwvMn>=#0R
zAp-;l3Q}{*GXF=qK_LvzSbLZ8nc?q;FeJl=hA>R{JgLGP<|9J>Da5D{J|qcYBqO1h
zqMU?CK3Wt$791l;{ZE994Pl&+@q(WUP7tIHkL(jen8e*agsI&BLs-7d|8fT(r5pZr
z?iV5d`8twmA^%sB=~9cO|8!F`LijR-nIU`?@{c>;34Sg3t>7%dZv<xx8n<((IVZ!v
z58;OpehgvXGR3qYgr9`Z6`UtHUy!w^@Uv80DEN!uuYxRElu=t6!m<!Hhp>em5$D&0
zur}mBqOgKRgVjpGRf4Mpd9lwOjF;H!LjG>QKIA`Nv_X($qmWI4JG!c^A#4j_e+UO;
zS7|)Uf6{e(2s=X983KPX*%iVbA-e_7E%Sdy*-Q6AxFNjwa$j;V<Zq#8LpT@0A?}J@
z)!`71a1{$@_Kc8Yg2zKRk&&Ma;gs;-GLqjzI4wN3T(RQvX}SER_<RU|gm5W@%OPBl
zw#ssWT+QJF-WR#OEcdtQE3)_U5cXHdKal;&^}gJ{x4`sw2>*!iU%{(_*Fv~1<i8MZ
z3%Mak{hLB=2{sWUS(<M%TQHx7E+WjYp@4>$HN2vspoT&k!Wwi9g*6n>aF2#k8j5Nt
zrlEv}lA0e^JPp1>!=0Lc(sh^SM`LjfcWeH6#h~T>sl`Hh+LMFH(;J=+F;?%@aG!?K
z8UmWXc<<NzY2_`-l|B6hNSi?o<EH0o8bX>s3%tDLiy9uh=HGudG?*G5(@;f2L_<`=
zgBntre+03_nx`SA!PXGh{F`GOPgjE@JlfrVvYn9@y^+ILm?ktNHI&hitI0Q}HI&u-
zH@LFM8to(hS&zs@X}p}~M_qXhX$|ZV(?inP3Yz~=>*Krur9o*RVR}SEMd6hMD`(`7
z3K_FpJ+9#i4bO7$H9V=|DGg6+ct%524r~v9e)-E?HO>E`(2V8&=Y+WN(hU|7pVRQX
zh8Hx{(ENYMWt{M!#wr}@nlhWUG|XS_KP+9Fqqj)a(eNfqg)>`ENPP_rGLnWGUKIXP
zMzXAvYNVmDhF>)-((tN=CK}$+Fi68|8k%Zot)UI~e+|tvw9wE}W{^|gTnNLMQ^qXE
zt(E4VedWEiqpgN^8hUV$HMD12byNqLGQRJNfx#}kp`oL6fxMH3&ceH7BwdAcV|Rpf
z&&cU5A3W<tQ#1T0I(kbmu<1S;-qQRNjJE~*3icDEu)l@@89q?Rn&oP+hIciL(eMc+
z8s671TEoX0hDg77hRKhJF+_)o+rtEhYxqFO2*D2pKN6(oNDZTeA6@QO<jD^Yi2SjD
zV=|UOuHkbH6E%#NzHojgX!w+?iI4m(_n)S2(?fm6Ww^p8lQc}${QueEX847MDH^`l
z@Pp<bccuz{!-h0W7e0d_E#yl<>dcfTNSMCXFiYfYk=fZ9oo_YF$?)%l)RVX>y+ZxS
zWwJv3B<p&vhIvBfYxqUT0>PgJxeqMV{EIJMMiCj7i#06Ka9+b78kTBUreTkUy&9Hl
zSfOE~hD|a=D>bavutviw4oDCG`9S`Zww9*21x?G{pkaMxRG(a-m^hwwS11;duopb)
zZPu_wy16wI8{0H&&+r`@c4qi44ZAb^`mLOO8un{Aq~WmUp9vpec=L!^M;&C4OwDb+
z!oQt+MArKm&Ht_EC>6S^V}i#8PY9kAJSF&>Ak}^sa+;CPdF-yvYB;Ci!xgG@Pc?Ie
zTChT0&~Q=1Ee*FdT+(n^!wn5LHC&NMrawG|U^oAiarjHa-$MQo{8#X*;5EVPg4F+y
z11sah-L+9S-w3zXtT3{}Kp6SM{_f4aD__{}OHSCof;+Ure>Q+?hi|#$r5{&up)d-E
zaZAT-9Yw+@N;Mr7brcKZjxbJz@mm;ohH+OI{lgd##@%5Q52H~Sjl(DrM#(T94dbye
z?g^t*7-ho94ddQ0?hE7c3Ka?C{xC`lH~9RgkWd(!kf7jyD-<=uVd#=2FS^oCBuu8r
zSsKlhT0&xB*h1ohj-V^(2_^)Sf_au7V7n_-I*f<HC>zFuVWdP-PO!{M#Zsp7VbCR#
z3Sm4f)hh`q!AAri6Za|#uf0-L<_N4*dEKcJ#^Yhs4WnKdPlWMg7|(_Ad>BuO^3!2F
zBc!TeHEE08Y`IcB8%FPys=6Sv!&WM0S@eQv)(N9V7&V303Zu5DeIW{YYIK9j^+kc?
zMIjBsXqb`Ey_dq6yHdR@_=+I2?Ch&yGzp^@ZHDn$7)`_I7)GZsUYELU!e|>tvoM-V
zwuNA;Fj|TaY<<;A)mnrkY`R?-?Ip`zbP%04GMf9OQ*^a+7+u2XA!=O(S+RQ<-Gsj>
zcuuTQp4Y*iBD^WWK4H8i*%GV#7T*q|Zy5c;pao_*mDVa%VU-#f#yepw2;=8428A&=
zjIYA@I*fP2crT1GVSEzC`!blr!}vhz4hdtZkYR$f_WUX}Lik5vj11$$jGSE_CH&)z
zWVDbb;u87TFvf-PMHo}U7%xSih4Hxz#i#7)Dm6jEhW00BEKCZ6p0iP=$($77Q^S}R
z#tfM+%BORcWkx2?$uGm0DMHFwWmXv9gz=-;oGtiW#{Rcq%*pUPZ@&-Yhm2(KD)kdv
zkt|1YUKkU^f%zg~TMNVZC5)Y6><Z)8FcyWeHjH&)EDmEy7~ii_t3`8Z7|X+0A$(aF
zc@3?U>?%R_B2SoyYh)bQ;(96F5XMGUm!>y`v6(Hd^5=9*rtbDIwhG@S$Wj_Sy-Mwn
z5hK|h#-1<^gmEy8y`r-(Q<uZOUpUpSNyS4F07t?ovRWMuBedE#bu^4)VH_9D+|}wt
zrWYr<-L3WqnfQAcr@77QD4^p^7-z%C(*5u|muc&280W+IBa91qk}$4>aZ&gs34^>9
z^k*1<iLiDUe`h-WuaJKP{WZJVAAxIOT<4Av#*Hv;W?JF6y|LOKfm`%PdURWs10~ry
zxJBd>uW|$-$k1hJK^=u8`>>9}-28RKbvQbTa`V@5pN{)=+@a%6(YZ&*T{`X-&WRqp
zS``;wQb!3L%+d!U&C<70QgpBG2PzZyfzmnxIy4<&DGKTc38DV#uXFo~KUC9oM07-T
zf5r__Fa>Gc(*3>5*8NSAB&PelCdpH9b$B`+&{0-LB4asMM^bnhK|03fILO2Yb)-aC
zCya7B%IkP2Q;Q1e|D#_aBhRa@bc~m7R?<;f$7~(n>UdPgV>;UEXs4r!j>mP>(@|f?
z6FQ#M@q&&TI-cTOv`|dX>Zqz?&T3UHBY9fLGlDBu`#RNyKd0k)_F8HYYwG?DL#A3n
z_@D2!h1AheSI6$v|9htQ_tmO_j)pp3)6rD-Pmf>J@v@FrMC~O(3Yi+|XrlX1`8F1{
zR|P3AcRhy>{jx>=yFIh7>u7vEr<soCqR>J|E8V|K*)pSFqNSp8YaMOGTk`tXbK2|Z
zz`)S)E@w(KyXfeuqhqF4Cmo%2++3}g*h)8%zop}C9dGLB&H=oh(?ds39leB8hpD%Y
zKBCFeJPBRxtD~Qefuh!5e8?*ukZCI~`;KG>39{CEI^NgunU2qO4AC)E$7mfN>lmhE
zxQ-8Xe57Mv3*Wa7qzd~rBIC)(jAhyx#reIS!zQROM#m?N5RtIrSWz1%nCAmEKb7nR
zE}WLW@mkk&ChC}^<4YYgbxh{ei^2>YQ*=y~?o5+*X`lMEGhOWaU63)!Bb0xo<7=rq
zOUF0=r%_+6rJAGTI~|*KY|-((jvsU^*0Ds#kDQ1pS#x#FlPW)DD$dujK*!HI7K-Hm
zx5B{tMI^=7C`RM2Iu>!=UC-$x{w&q8Ovf4>Yei?dgy;$#e7cNoP;I4-RU%w1NDHh;
z=hsPglaBRLk;)r{Y!u_nGUOh(m9tgHHXUbmoYS#g#||CGbR6f7p<|bhgE|gzE$Had
zQtj7qK*t^(dnL=aL+lg67FkMzY?p*t#`$3#M|ITdq$oL(nPuuk)~FLaAHJ1yQpYKJ
zD82YiCgpb>r~gl|oykmk-fJk%>-a;*UpoGlUR=<@=B^08D0oTma;B|6B}-@6#6P0^
zA17#5?!P*&>bRCE<+J+N^TzFZ4wY|kG+L^gQp$x)hqDZ18+hEr6Q+Nqlg~gC1Fsp#
zF#rSk4HPg?(?Bf)1q~E3@UQ{?*Lh(BMGV|+ptyme2Fk5bcNzXI<zfczFmR{gUxe~{
zpU;Nn{btGs&v@sggn^QV|Ad}y;2s0Kzk08M`wWy4K9ILG`D28E(rlu;e>E4NO#@G_
zQDFli1AJA!X83mrmW=e@aY`K6L^WKaTCY)t0n<RlKvWbe7_jKojNCE?at*|U+k$aH
zN6;0dnr9%9;YkC0x|qVAYt;K|)B^^HWet43Mln4oBqdl*u)JW}z(Yc)Of^33@Z}n%
zXv#oE1C=<!hX12mWdn~I{-c$=1miDy#K#Q(pV`@56>(t68uf&MCk=T2<veBJ83WH6
zsA`~^;lC}4*I&GU^|ax?;D!I%Q{C|2GW48*=MDdUDPQ{Wg5kfeibF(RLpZZL)~MPB
z`0ueCNj6%Co*1ZS_;;3G5v*^Zfq{miLxq<OylCJh$(~=Mvezos<*$&`ZzTGS1(|(S
z$USRSQv<IX=w{$ej^tX^%<%8vwP$E`Qq2Wh7-(srmGIUE+6W2D6TEGOw-coPqig-C
z??4NNe>1S7U?&50)~e1DV+^w{Lb`HldicLebT`n$z+VRbHqg^RF9VAVEH=>FKpz92
zab66(W#DZCLktWx(APje1A`5`YoNb@0R{#dc*pP`p5Y6-h%K7?|8~v)G8<(0uR7WL
zn!NVM@LzhF_jQ~18D_Or^R@o#%Z3>kZs21BV+?#?V1yKnG{El=QRhR>etq?k;eT<D
zi4WV1q9<$BXs(^>Iea*Wl25qG#;8x($E!JG4UA*Ne(is~WxN4?)`zL#SpTK&6Ab^`
z4Sbp5L<WO_Ic&(lWCLFq_|m{kE+WH!iN{oqm_!Jl=b3K!uil~?GYoX9>pw`zIN^)A
zzB2H&fo}}V=EU*8oNB9C;x?7}Mi;)2jV~6X^0y+)yM6b)fq4ez8~DM%k4*pN@QWTl
z8JNpqujjuQjdl6vs|5yrHt>t#znEwt`L!HAgT&8#Fw0hc6@w)FVAB#hY2dhl69$$U
zSZ-jafn5ex7+7gwi-D~MRvB1rV7-A22G$r@Yhay>B)^QqSFX_x$@sPYUEGa^|9PxU
zVxO-g;{svnW)7^pJ!zYP?HnI@yER|e=D%EmUz8Ki=d4w`4eT*cIU9!!>@~2@zySjX
z#S|xTzu~_JegoC`DwW=T#Y35199yf782ERsI?7cnLMrf|@3_~U<T5w#hXmDc27Whi
zj$_{E0lsa9Gke+qKXq}&0N**ubXG|F`iif|InSA`?|-d~ad<(hUo>z@$Yldp*iBmd
z!oL@t_eljJ*ZV(Qtp;w=hdSzC!+(PGDubc5x@O?IkpBcJ;k$Qk8Mw_AWFllD%S5(`
zJ51bZBA<yI6GcoEH38H2wt$I(Ch`mC8+a(;yLt+l{+kK;O2ERV|02qPANw!xp|^aC
zPBGJe{iZ1|;k?Vl-6l$zxYtB+)1UnkCQ1t7L@*>MxySTB0mEP*XS&byJuhwgL3_Um
z?(lpsdO)i1_19F;OoUB5V4|!E-GpJnG7&TVcSoD-3%~zpBElkm^^*S;NSku!*)|b3
zkuZ@o|Mxu_$AoLbW5?I|YFwCaj8Nq6I#tF*u8FGa{Eswob+feTI`yE5l!=E-RAB3M
zRG)RKoQd+Lzd58$@E?l#6;bl4U#W*pC=-=UJZj<*)89-euW0)3ZX&NFl5y*N&h(h+
zhhi1>Vzl27Ip6>Pq=~0Ej1hbtK~)pgI5iR66~WUco-y&Ui7_UgHBsF}Clj4bJZIv0
z6EB*0i3<GwyNUXy|3&5+CTg0fCBpm@Rb7sfi8_*~#>7u5*E2DDonoRw1F6-}#OuYt
zueTFlHt~vyW+s}OXk?<XiPsnm6aBCKzAA)YSoXgcZ2FH^k+7(#$Y0OHVrXHarHQsC
z+L>r2!YO@K8zHSZDHHu~`||VLmE=R!?b*Ac=xF-iP3~ag4I$+GXf<o`^R-<}bTu)+
z#6T0>OuT90Z4-UP?d~Ren&@TvPkQt)eS;*uCEJH{Cts@{!q34AU%Sr#W-%4|ndmP%
z<at%7^Nxu@CO#6)!6x1{G2FxlCf*ax_e~5D!cXh6%1{%-B+IYB^V7QQ4oxwQF!5o=
zGBqiAMLxef(!?mSOb12_;m6iLF)`M}HWS-Tj59Ib#7`#Xn)uYj1QRnE3?@D^@wtgF
zXw$?*6O+XFWWhZ9m8Hw%Q#0*OH!)3`VC!^pMn?XnkVEU#*Cu9}_+G~O8%BbVIa2zq
z2`bRq=+FHR+<(WFKH2Xbr-SJS(fm>H_Bu7s#C#KLOsqArz{JlcmYP_`?S)?fHnB)1
z=ob^eN+>ci=ko*B{ncXjVv_%C-V%}LeF}Lwl{0>>VBk$qRrxJ=6OZw8@RGf2z3&fu
zw2n*3#3mE#O>7WP@;-x3Wa(xTTST9ny@;$=Tg5EN4ih^~TrzRl#4Z!NO&l|E+{7Le
zd)aFfhfVA=v0wBLa18kkZn4Q3WYY&3fuAdm_7QFf>wQm-G9*NSoSG+iB5mRi6BkUJ
zGVz;<v)m9SE2iq})$b-wn`pA$&r<)46m?s#&Y3tblU0kK5tmYabNnJVH~B_9KNC-K
z#l)Z7r6b6R_}RZq{Ac0@_Yf2RaAz}dl{+T`a=l_2D<94#UYF%bGHJcKY2p_5$q2F|
zVBk@Bn_U+2gH$13wcej-M36s%q7i>-7l@!>1VtkL!YmX4YZZ?8&9Nv?pAr`F6X(Su
z|68_qM36TfcSle>f))|9jG#mWB_pUnn-Sa-L8%BVb|iv(Bj6@bI)Xq1_eK2G%5=Yw
zS7pqD5riYqBM3$O4TnjKU{qhVXT35q`jH4s;eV|6t4A|(TCgLCM^Gk$+z6ZqTq#OM
z;AM0YnYye<eLfmW@_>|<7c3jWgCr6Eo95*NNnYu%_`PzHv`hzQ<RKX@5*5KC5j-Ek
z3lUTl3y(+eL<E&0s2stgB4HDcMX<Nn|N2`c^1m;tKPi2z8bP%Po)S&!G@YoP7Wp#~
zJR3n1#$K{q^~`8ICxoMse}f8cP&Fc`8NrJYyc9vL2x^Ow`hs;Ls4L{kM1Pd(312wD
z=M99DG|YJNas;nL&`dhjD1ycjKmK25DIMUH^;b;=@8cKbg_PZ(dQDPKZBQ)Ys^Rw7
zJY$nxXca;02!==SK?H3gXd6L~2zo})PINj(&?$oU5p;;)mty|pzLDwOiyKsD(diOF
z*9g{RMy#7mM9Vwyrj&Niw8fRxD}vq;3}nPc&`0ENN6=TuTM>LC7WzrHe*^=BaNg-Q
zXY=!kJ`Rdtu*io<EAI+_PdF$2eaUjHxKxJ<AC{4H*q}xT9~;5A2tJJ9qX<SaTqF2I
z<ea$C5sVT3u?#6kmHi#eaVv(r!^HRqK8;|8=uF_E;P=EMm?Q)8nc(LUaJp$~as*#Q
zFfD@V5q|@j67lz(sSGpOuE%fiJ*1o)4hi>`FEg<^GlH^mNSeg~iC`Jm#q8YKg7XBw
zjbKg$-w9{Y_YstvolEjVM)ISOp9JSpbAx}qKVPy7B3QCP{T#tU&ZbmcEcmM+?JSC5
z!v;mNBqLcW<j4lKTr8{*Tq(Fpa5bksg0&H>i(r#T*3(D?`8KMJ89y(J5BF~LJ=rWe
zB$173TLjxVo=JR}#EuAdMsVE02?x6(*iAJHo`pSJjMRzZ%P977vd+6q6QkHq{c7HU
z2o7@3jNmZGIf6eTI1<6>!|v}9%&qAirNM0PSOgvU3ZMv1L~v3#v%f{~<v#Zm)e7d+
ztCb>Od&@l?LHUh}rDsI#tl&A(tg=yEh~OfZUKEX@xD>%<MqLzU6jvhnllyQKMWgtO
z8!Wf+DDp+|4|n4T{)^y71Xm-_@_S6zxL}c`gkNXB@_TcUMfpu`yam165!@2Z=kt5d
zZ&X=PzgCNlikK4xq9`O1X7fie6<Gx(TOjJ!?ImizAgizlYl+!n!b?VRPZW1Vai?VO
zisJ4libt_lbXd1U6!nDD^1uSVpQWM*L=lYQ-YD*qTK7j$S_n%&*r=H3d?-&MnAajp
z!%^r_^v>_Gn;i>yktm{3REy&2D6A-AQ9Kkyg(&PO;!)&A@qko!qHv?|qR6wux(Sh&
zi6R+A-iUQ9=+zfL%SQ3TKiR1$%0=;D6#j7K_vRJKD*t~xNell%hUH;eh~m*G9*g3U
zC@M-(JS$%%A%!kv)9uPpj49yFDd-WaMDchOPf96^*!L%d|F}_&E9gCykynl4SDDIZ
zL{cM)nnIq9qIwk134ak;oXY2gzaY3;T&fjCoha%?QCoyNq+j)-sGnC$uz_GhK{icK
z*dp<zC|(vq-k_k@IEq)J=odx*D4Im^S`;0kcq59YQM?{St0-DW(JYGQQMAm|;?%du
z@V#PrK>>fh+K8}i6b#F}F>e<|dj|YQ#l+?)>=;G2DBcv!PJ*2UyF}4d$o&#R-J|Fc
z#aklj8AY!s`b5Fe=q-{S(%-_He4DrPdyf|M-j0HU-&c^rfd#z*Q4EaYlPJbU@lF(j
zq8Jv%@F)gH@op4D#m;-O5V|7keaSMCxh{r8Q6?)NjgS*RkoXxH#VFAk5ygi>SoBd8
z463}IjuzpVC_WZqif@cY`Zi7^pD}cU-uO)2PotP1oYliY?{nb;3i;#4J!(=Elj*$d
zS6@UiMfg;~X&L!+27l`mb!Lj>TlPJQuQH`y3z-$=XF;;QiDI^7FP(SumCX7sitnTT
z2Dp|BA&MV`uZZF&PF&RA0J-~>-=yY6LHtE<eiRFYJhMst90hTqV6?Qa`KuHyiej-4
zN|r>iRQR%tWVw)6HmQ};99v%{WVPTLj^rjq;kqc+N3kJ_jZxf+V#WR5rYJTugrX?;
zS?-o7wnlL%io;QC6UiRI?SfR;L2JTyWhA>92AdR%nD+80AoBf!2Lulaej++Ygj4g3
zkfTu?i{iNO6N0}*aWbQGO33U@>USZhGg($YEBu@wv*)AuBf~EUxfsPtY4NgTuL%Ar
z_?IAS{Vn7l!G8s>3SJYuF8E&*H-u3CrjX?=ayWyxqsX$5ZTSbUd=~OsC?Gt?0)*Un
zzXA_i1uYb^5VD|IC~TpKg%TD@T71d5SJc9t7Vff8%)%WO3KsQtZ&DXFsY098-J($3
zf?L9CT*RAK%*O(yJl49$!hII*w@}K$y%ruQ;tQEh%}7zdw1t3$pjb0ED^_ID#RVy1
zSZqctL@nqR3=5`(Dw`FHXzI-DG%Z*bVxkteU<+ZRtX_Y!ip)woqE8R$YQjR&!U79F
zTmC`3jD-(q^I|%eE?Fom!Z$b$79O;avQW-Kc?)$d)U%Mb@Q{TkEIetUf`x}gxv~Xi
z@rovEYq6|KB6-9@MIp5R;I(`+ie-^JYT+@u!Gx?S@E*57{C#|dHSkDS_bCg{TBvTJ
zs)cG6p3Ye4zgaz#;cskK&slihLT#x|voBbvVSz@-=>xH*1y-pg$ZQ=8%^&gDD0zJg
z4J^EBp^1ft7GAW_NG#tp)l1^oE0TR#jF0J&!zy&Fai(<|dCfvo3vDg5v+#OG-qJ!d
zwj#A!NW1J26WwSfI;}IBZG_M!OWRxMAXP?hR(T^p>|~*{=nS>c#X?sL11t=*(9Ob|
z7J6CeZK1m;`~k0rg_{*U5~iLOh}XwgAoj7)*FrxFZ&`TTLS<ylE#&uQwIH+9>2G2B
zW<}vU76w^(*TQ=i23x39(I3ejg>n{bR<Bp|-nTGAYH=Q!9U@J)y_g;*gqp)GY!Evm
z7<G*8N$HO)%(3vDg^?CUSr~2MV+&tc{^mKx!Y39!v+%ivu@=Tzm|w|zvuwWcY^9R-
zDNE10B%>;M+>Ix2(a9c8K9K>|z?)>DRReE%tJGxCXI&~!u`t!bG=_B3)Hkwzr?b?;
zr%h8|T9_%MZ_^aBUs?Ft!Yq;GA%!gBJ}}$Dw^El2f8jsr?=Alj!1SYqA2NJ-HSebk
zpKD>B@cDw1O<#GTg<mYRkE25zzgqlHSg%$LwPRRhVX=iJ+(5ckSY=_gg{7R$&J~)K
z_LfPb%Pp)BLQht5aUF2!#u^K2E#$`VKn&|FtheyDg?~8O7B+J5Eu65h$--s}doAp<
zu*Jew3)?O1V6Tz2&BCoNDISP<&>T}JYbW=y{N8S!_6ym?@Q@?;<^tXfWOXRyAI<k$
zI3T4*xT5oW2ZbN9aB#C?_ON7ma!AdiY*(ru<L)76FDEUW5`|0bxP{+^U*M#3gR*ee
z!a0%5l3K)fkoAh3%$#T3N)gTewb?&uxkw8IJeFRza7Bv#wET1Xyi<<9M8cDhe=S_)
zCLF`vF<i57ojYd?g<|+m6mGKn7H(MoJL%=g#%&8(G33O67_wvj8Bx9%Hjhq`Echpz
z<ld}&JY&xv^9QPcAkX>f2K!z(h9WT(i{Xx#e-^~yEh-As&-03SXUrcoub|g7zgIkl
z5-}Jtm@$-$;hq@okD+u7rDC{ODmIgGxG#pD$V$q|8ygM85R4%lL*5lfNHjG;p50Ml
zN0*cy16`ue#7GR$7!smj3EDBlWBvs~EQY-Ec}L`)per8ooRFu@bd@A2@-l)v-KFP@
zz_KxvXHU2I*J}^P{G((lhH^p}mV2|kbPNy0P$7ngV|ZRPRSb{BP*r$E!6yW1q>_-z
zF+3{dv5dTmkjDj!S9yS%PsZ@n|H)EPErzEv`p?Ahtnlg?$#XG$-7ZD77c!C>G1L^!
z13l$+VyMe@Z9Hb99tR|bwlTDep+O7{W9WR$Z6o+%46TK{6vN9L-WVFi&?1JGF*J_h
z)fismkY0AZEvn?Abk!}Y346Ll%{b;Zjp6ke-u%bybIhf+W@4my48xbEnQaxrv>~at
zwy3dNRMRc$qhs!@EsAoc0#~!!$Iu~$b1|Hc;SG*$44W8@F?6Dl7(R_*LJVDE=o-V|
z7~bW`{N;9Iv@kYeSbfQTGluRlEZ?Gf#BgYfVyeD4-8+V>Thv=Iyd6UyQM=wF<^JjR
zjiH}p--)4r3<F{qC|PZ*@6UtRT>4gFt7^5!cYBZ+BzaHBh!{SU*58j|NDM={zOJ~#
z*vA+?h@sY2Mf*%`w<>y7qfhE1u{=74k7F1q6-UKDg<C^YgSV<NF?<rkIFXDMWEVKL
z>|LHG<Ee1PoxD|j7Q^Q;{1n677$(LrDTbLbd=<mw7`}*Mx(qd2oWh0nr#m%<d0YJv
zrjco4;iG@u88LiG{j1sAwyNK^Dw_Q|hFLLu%e5cFsH@p*^c(SzKFsDKotwV7RZ;kz
zbm0fV?_)T<BYn>{^<xY@@@28bvfI?W80K^EV^|Txf*5{|VQ~yg#MDBu^J@&h#6Zo3
z*IiawB&MF;=6iVJYBoJt$`#iqwM^tg+oag&${0e|ve(40R)nhrR}1Rb+;t4&Ua9pl
zY+y8QQ=eVUrYTC8Hqx<e>Vs|mRL<O{w#2YChHWuy=k&#JIEEb(y?bI{m7RjSM6z3u
zgI{J?YHtktV%Q(Uff%aX%%+fdkXzQ&G;0kXk|G`v{ZnFL*x&h%#&9f#<1w6&Dkr(_
zp7DN>K2mwhHuYN!zjO3Nzu9x%S*d;|2J&D3bt~MJkFER>!v)TujgmGl#&9WyqPD*<
zFUN2thAbP|HvZ({Z*Tga82*jnFKLAp|K^g(m$kg0ca@ue3^zrm?icCn(#j1+X{LAI
z?@d$x_igHy=+M+{DI&>dBggiab|FF7C}^Y2&FuU(3W#LV&{W=NuxrKs&R1B3MQl9Y
zHpN=Ex2a;bKdN^K-YIyOjk|@ggDfg8yxg<iJvLuFnAU9=HcHvJ*T#J|?iYh08>NK=
z1jkqR9{JM^3h(-~$A*~IY=muarkJIIX(M7IZQ~&uQ5%*G*M?^!#<U~-*rasa#(RBJ
zHl5k7I`mDI*{&QLPj6SPwyT7Vq>ZvR9;89h&$aP@jkA4Ill!IyZC9UdR|~c)+DS?E
z@-`^nv0at3aZ==JKx${-R0SIk+o-fdRkWdOFiQU$oO(pat?laW9m?9FD5+$l&JI<X
zrgo^U*WD@{JsUsUSZL!38&BGJ#>TTU=}+0HCWHY{)kfPLYTyn(s-L#;`3`mRid)^r
zb2ggVc-_YHHeRsNQ1olqSXbR+s%xXBaE?+f8?|jT8j@nL)e&LUA*p&Ys`UjM2r`PO
z%=Ds-mu$Rj;}zDj!Re;3;uq=0Qn!hX@q5#++W2XQ;&i+wbvN$t_pW9(nsb(IjI_~$
zT|4G>wb9K+OB=0hv}Qz!uoHVEq`i#}LfYB*{pU1C@(szdVn-n#yqzLHxkC{<+Zgkg
z+r>uKPNnZuZ`$Z?W2lW`HhS3TX=8wmfi`;CXxuaBEgNssF&lk2BLh-vW~3PdG}2eh
z_OsESO%F{yvQzDlChF}}9e1jCYz$(w*m&Q@tG}iO+j!Ro<*^xQ#sI6Y-sK}DLs+y^
zF&LN~p699{<&=yN{Lsc1qVwxcHOj_l8(-U)W#eOZghitBiH)%~CbGqa>2Vxb5q@Ul
zQyUX(9PRJh-?LM-9*}x?bn41Z^|>hIIWtK(6(-xrb8L!@sWztBm~LaHjjwFXu%RtX
zb3ncn<s!TMU^aKD%gAClRodkb>^D;My^SAi%ohHwjX6T<?o!`LPkC5xw@dxVNw+ay
ziu&zRb8WD{^JG!5lwIHwTR`W<EC+{8{9@xj8#iqHYGaX&#Wt4MI3cmR)W$L!2N}J)
z)p8pvY;3Zz*~Us6b9bpVHr6t7rlwc17aV!P+<__bbv8EG*l1(D2wxOo&zt$E%+ftI
zye&4i+Sp}dHx2Gm+eB@LjqQxgcD{w~15-OiNM*kY7f8p{J{$XO(Ar)`<1R&#y;}u#
zs{=O5?^YjO^DQ5eT8C{M;q1`8-KyR7?Bh0$iM-!#HF~#yIz-_~8>ejiMpHH}*|;nU
zr)`|GabEZt&e3jl)&`qcwp;xn!i$0z1o!V&y%wk0#QELo3O9cn|Je9fivF@eXZ{x6
zdtI7pgP-xP+PEf?>s%TGQw8?;o(!zvEqo_6Y<>Esja%HN;!tti<|2wC7Ka^2b{zTQ
z&@a39#<8VsDkqMDaTJOJBFs<Rqoz+u7Z7s!Z?|w9MdBzCN1r{aXdKU7cJGMe&Nzz2
z;lAKKv`0~LR~+1<?vA6l7^%5OE&1CmGdx9M%RQ=O9QR1YQF|2IEhWlNyx`pz$Nh1X
zj)Uixp*S>=2jZBsM+JpfdoLBH!8qtfR4f>Am~lknSiMKl+97HE-#v;7blai>dwm`k
zH_8b*^fQh`yObA4nK*LEMV^eK>}5B;*LP{k^z;L9JScKz%W{<3riRw^QX=VG(_4Pk
zEiZniDcPeQ5_tu2iI(rH;XM*Z#W)(q@nRg6;{J*8(}I=bcr=d3gg+rzMeuP!s%7^}
zJsHPSaU5Elt}4Q6aXh(KHQKAX?p6B>de6l1Y#i04sAe3s*k~Nj$MHfOHAGn8Mn0+)
z+mRl=SJ7Z?5!Q{Po{&0%)1|0>91Y@Fv{%hplYVPS+U}U5{!60JB94}Eyd1|XaWsmf
zaU6TDxlQAERZ6M$S{zN{2=z<#8J6NnzHuX8&Q<sIIGV*l2dKc*JdWMcP^&mv$I&*9
z!uu4J|JbYA#4+u%+j(i4YTSa_iCLDu5l2Uwb)Y%u6i4ScHpH<pjxKR@jbl<AljG<{
z<v2#f@nIa@<LD8`fH(%S>C#?LhNTelUP5{c9x9kc$y;%}9Y^0d`iZcAMzhbY>}{ez
zop(eyD2~&&vY8z$*>~f3FOK))7!t?OOszf7rQQ^sVImnW_(2@wK1{J9@gtFpieq#f
zBZcR=@o^ku;+P;3YJL(2TmLl9SHF5=ML14yd>qz3MFpn3hCUPd=YkXCctlFSh+_)Z
zNF3kAF;$9Y3r>q;x{w)hd=<ynaeOJ+nS!**MrURCH*p-3zEECQ%zm4Zd>_XTaV!_j
z#DVmWam<Zl9#_qQ^iP5xbg3{ujs*;)I2On8GY7e2&M$F%bTG}dPzWXDzsAwKV-EQe
zA<Lv_X-1QBCYoIl$I3WXaZ$&yL<W;yt%)Nm;H{5itqc^MUzZ{82fVQ(Qk&w~%&p8p
zj)N_6Y~>8bafV|X$M!f5azVwhBaWSnNd|KqyQF&ILRmD+ktbm*d*j$I(?Py3Z*cah
z1JX3riWJH^9LJG3PH;Pl<EU6TE^4%JOe&J}+NbCq^-sm|o9L7nkz)4u45!Z7IL^_m
zgKP)q<M>00{*2>-Si2%w`fxFhOCq@}7@n0&A*&DHr~ZoLZ*h#CQ}T~g`8STMLaqr?
zem#!=gx?UnDR@ipwjgz?Nc@v9(Q`P+@1T@}dmR*TP|!g!2X{Cq<oF@VRK!8y48QR~
zijty^KRYD@exTmz;4TMuJ6JDks<?v^j=whV5uChFm6W=a<SDSl`$W04gMfqkMUAHN
z+6qb$Ih7ZWNby!-*g?#JO%Erfbq9vy-%T|ge0R|0{h5e^sN>(Lu>^nIr+A|#?!a;I
z1|<$$2cCo44(d2aI7m8p+`$tL$~ee%P{F~&4jypOe`ESV2Pp@CU3AMjIMzP3eV;1l
zpuB^J91Pm$rXB3P=rSFxn<@@(XG;BiD<9>JnxvG2$_^fNK>mn>iVi9X4{IJd@iDQm
zbx-;Q!>i(8U)W<>V5%n_Jmug8QD)t$LY@_@Cit|2XYxqMqe6Az&j~X7ypZ$z6nPEd
zH3e%47TB-q3Tf=%RR{GP)OYZ+<~4B8(7}ri%>8QmZ)r+iqVu}<ii4Nw&!`kT_1J#Z
zNQ9p>NwKJjgV!9ib5QsBR8t49J80#gwHR;4>DZHQ;h?!>X_E$93g0Ak+c;<|ZP7{U
z<SF#Ll-=IJOZ!y^K^BpBa?shq6bDlsbaBwt!TSz|IOyi!O$WUl^l{MLLDL+M9`<z5
z!@&{VV|M*Zsa_6lv`=wr_Mb_=<=|~jsDl9x`a0<6;AF_V`;uEGUsjci*?m)LY1kX+
z;2j6=I<WG2gB*O;Ff~|wrrN3osb&pQl+dg9xC%N~;9L)NFwDUi2cI|??%)Flqa1KT
zU(Dx?aPSd>vq9=Zv7m2Gv*JjOa6XTz^L{m2G(Q$h98Ona@N`Ozb?~W!2@b|N81LZL
z-`T7+jKkg}l{e#`Nz8oiV4{RjpG(=3988ubrtMdY_p2`)5UD@S!E^^}9jtRO!@-vh
zesVC^!Au8VIrvekeC=SCgCDpe3TJ)eU^WLf?0x6pTPdC6fRn`mq&0>s@p}h*_N&VI
zJZ4Ea;8&!rc@E|~Sn6PzR9xWT7q0ySiedA!gN3quxPoZmS8;n0ofL&7Tzv-=!->i)
zUG89ogEi8}m12qwt#+`=!S_x42z=^*qD$1IZ;aCQ4mNP%i2g>=-{fF3cLv?#cy8g?
zI@m3xFNVEs4p?i4gY7c)?=(y$FZnL*<WoRWmrXFsv`4agrTbhj`yCu`aL~aa2ZtG5
z4w@X`|I2&Pu($L~`Y0ptfMRSM<DL`tJ~^P;XkI&bCmoz}aN9#x!rz*HlMQN}hu=vY
zoN;j0!IK`I@^FruKRe=Lql-TrTyW6RMJpE<9b9topo^4?%MPw^=v?S7{^WQ%DC(k^
zi@zQG;~<}l92fsO&<o~pl(Jo1m0puyb8ubwe;LUQ2RAePmXO=rw_SfX`>KFno$0R&
z*$_#77X^g;S160}f-VY6wvZqtO*f^B2wzb*MSh2iJ6+uEqPPpj2^S9I=PuzSC0vwr
zaj%Q}q{=-m-*e@0Q!SOTHu6aNeix-(1YLxrG>}0KDV67MNz<n0`dcv#5)Buoi=>M(
zE+Q_XF5)g67nX~di*KbztZTd2l;g1%^opb8x_Gp3R>JjnZ%^E-S=cY4O)9smo62?Z
zfD1;^A1zYMmK8qdfTE<Fi}Eg>aq+B+w2OyaRCCe0Kn^4Pc88n_E*^HFTs*=mF1`<W
zqqe4r6{RgUM;&5iIv}Middx)?;g1VGA^4==Q-ai~${rQWAz^x2ginXO>Movh@rsK^
zE}nPsf{VH?>ba=l`g>q47qwl~6wWM%t`19Y=Od@997dA*F8UP6Y2c!v>mTFt?7t}X
zUlM%nT>9mV51S9D#x7oU(ZWSD7foEe=HhkXta$o>A~qFe1_pU^;cR7{beZ<aTf1oE
zVwQ_<T(ou3&c#3%@3?61qJxV!U38aV;7q;YqN9sWE=Dy-b#c*EBB8S&=P2JnfB#`G
zx-s4^xu*+d^^l5vUG#I&(?u^%N+zz}VmC9~+LV4f!`<U)PI`YA14P0AW0rwI9OU9w
zwl|i|xftx?T~T<?#ZVW+T)gjMh<HLjy?p-C7%mE*WGsK+Vnl|2=;EUcA1P#%;Aj^g
z3mKCs9lbeCmuPLgi%(tup!TJU35=+EsTqQwx%ga2`<GKp6J1Q=(7l|REck^Wvr~jj
zbumrIbV1f-5lwNpXnCgC|H{SJnFyh9HkXWxUtIj^VvdXNTr8C4SoFP%A6@+9;s?>E
z9nR)l7o6Pr;y*)W9z)`sAMFc7^0VNv2C3*lHT-A}t1NP{*u_d0t6VH`vD5{_a+!oB
z7X>4v_o&oz#(?gv5M0zD=hWHsY8Pw76kA*?^6F>PT+Zu6NQLzxB-tdhR@g%k51U<V
zak16KHWz1IoO7|=#SRw-q~lyoJ6-JIs&ui7p)x8(&v$dz?cnc$`((9pX>gUXJNq-M
z@1WE@<l-;~fswg2ecDC-t!a{@+>}IeT#%9zLQc9kCFD23-!r8j-Ok5~XCzB<o}0gm
zE8N~)TyVkRx+J}$GZ%$$C>WNPWgjE?i<`fTEDzZp{^92D;y)KRxbus0XBXF9T+3LP
zRyV~noGJ&^O_AIdyd}s@n@!~Ld>(Q<6!cKY1OGdUfB8LB+?-yK&ttZLhdKw<*t2Qk
z;JPV}KP&Q#sHlfx9?E(Cdbz{HogOR?F%NfnxZ6X}L&!sM4<$U@=iz>mkXO>fJswIi
zHBB-5#D15^bgzfR#&n*fwCDspbU3K;6u!Kat$7HG1w)W>-NX9_71Q$<T{9z$c!&z8
zsVN5)(e@DcKpk>6>Ii4n72>g7AxXh9g1LeZ2vW1GkOw`agwPoZ%X>(Bc*sKq50yMr
z_P~S1!h`Bz58Dqa<>3(_6$Lq56rMk*9_0vkuJDA1Z}z(+k9nvflE(!nZcI}+=yaN;
zRXu!n+x^AEuR^MMcv{Fag3o%W?%_G%O+CC$$2`0s*%}^R6jD==MrwJeExe9kUBP;S
z^#!TZz(Ygfg%2raU&_c|_V9}EMuLq6UlnX3Nafcub(?u;?%_Soi-#5-?Bi}%58XVp
z^w3JOtv$5ov<h$Ip{<8nC*5|EjUQ6fXL`d!XOWP1^w7ye;Ivy=N?$pox_B7!o3Hk!
zhwh>_NU(>8ULJaT=$WaT_|5I(;VlmXJPh>kwuin_)L-!8P2WgA;p_tW!>8SMcuIE6
zy=zp8+4duS94rd&3No7-nHu6@sE1EIOz<$w!*CgdPXs^kFiOY>4<CB?Ncc!WHZlD-
zH+s`0VH(XPbK3pb!x$;;E@M8{!#K%~_rSHCr&)7k>N5|Yd-%%3*B&N%nB-xas7+?|
zL+T4b66#M8J~box@sOI%Wq8A#;o(aUGles2k4nux<&w-|9C|o;Nd4$xHpA(R`<>vo
zg3QkGF#42B!t}j|AEaIK)rZti9`YSlb7jQl3C<Vf050(GbA~VEe2q*|xX8m|PcGF@
z=PdF3XMR?4PdKcWijWuV%RDUi{44hrg8VOXUb(O0NDfb}7F;7(qO`Y`3%s;PIUh7y
z?_q<7jh_FA(IyYOJv_;<+2?Nduq9)8s~FrSxLt4u2V|eS)59)qS@}HYup;j9u-C&r
zv2d3Dd)V*cfQN$~4$(eO;5{7n@Wf$t#KTb!FCA9B536Gwx|8k+4x@)xv$KwS_~fKJ
z=CC>?g#5?DiVCMsyPFOxJv-~P=vTSvp7F5lG=E%n&wKd8!{6M@Y2>iFz(sLHUGZ?y
z!zBs++lN))h`P)T=ZNB*{>jC4MD;qN{_-&Lh?;Xm{mZTUgnQM)H7>VP?y*zunj`AE
z@S7g~^KgTfkEr}N-K?XE3Z-tlx46UK^hvf{q&%9yV+rI-ASVGNkUxPtM9!zV3M60^
z$>N1f!36f)?-dex;e<a^MFfiqGFvR+k193qO!&`?-Ic)I3I7SA;!>q-0woeCDUy2<
z2$3XEO0xGRa9;xV3oo5OfaIv+b4o#x%q*0}bgO{>_<cA5Jpm^HHvvORBMC$kFom<N
zQWvtV47Y{E1oNI6iVNrS)m{RL1j;0kE0SLFOi@xe+oByl7ewI$BH_O+JeWW#fpQ6C
zeU<xA0u_XmParL1T3k`i^sr<f5mX5rbbWcn1S)0JDhtUIR!QLT1Ue+}MgmVH@MHqD
z6R4BGQwdZ};Dv<$-zC)qpA}^GX(7+hnWO5dqpEsF{+y8K6KHr;QLRQsUQ<Y|1lovx
z-300-&{%}^1z*f)HelThf9t4vN%+eNyplj8Nz;xh8lmx#N7buR+9ZM3gfvZ{Spv-y
zcs*l*tDBlF5@?r^v`nB?0<Gyu0t>{>rV?4yX)6kpv=_2oiaI9HDS?SeKZ-gh5MG#?
z!O-F?pU&x$K-UDiCGchf-4hs*z=sL+NT6o|gAy2=z~Q5+7l-tlbpHf;C(tK>t4Gya
z3G`(&KI+|lOufzcIi{XCrcRdg`Xw;rr&Ob3YCr;|%X<S87=JwNR`K3R;PZX%gtYgr
z7-Z4V1l~(v?YHUo6Zqw)6k8c0Rk|EgLyoCo2@FqQe%kvWfiI4!g~t?)e3Zb*1SV6G
zz?NfbR05wQFgAhFTn@)n)^YW*SQx|LKd$H`?TkxcLITx~tMOcGb5ps;)u##2TIGkl
z&*&1zM5;_mpyhEzwQ=RW{>Rne3Lg7HC$s0Irz9{{bd1`mX$gFGTuqn0EI6)aCh(Ok
z;hz%tS_qf(HwpYSuEH$Fc8?rpnPw;OZ31%=_)gaK52E>fMt@c7)Q<_=E|?Q7?eR(J
zxgwt@IA3r<0zcDdjuL|>>F*f7Ca@@hVoBVQ#Nq^&Byci;Qwc0hU>S!rfprNi&)8of
zq^dZxGJ#bRx~mgdL*6=7w@Zbs#}zlF^$Bc9;6MV*Zj>sU64;!;`kEg1pDmOpuq%Px
z32aMXdjdPSBPDR+IKS}d(er<gD^?_@sX`~zo&@$LurGoA2^{HK;k*02zzKDxbA_hA
zr>T}Yq1g1n1P+N0hh;ZAM$H6{O4E$e^8AgabA{t<LL}3=R^Snewb;aO3H+VFKO+B~
zbrU#~z}W=OC2%o;O9`BpqCXP2z&-6^n#Z*Xohz_z)f4<+qIWrgD+&B1I<-%zKN%sN
zE8M8&k<&O6`^)sN_?DH#)da33a9y0dDYgDf;0EV+Tm@gbny-J0GnfE7P9Y_1G&_lW
zN#rDfBnl=`D2e<@zo7z2JlHZ-YG!(e;g8k%aTN+DQ6%XPd(k9bKjF^>i)gvq2{q}D
z^qooEl|;oPDkX7u62+5nlkg-AN+fY#689(lc`PZCdy*)X#JwV+4@|UEI*C9MktCu?
z1Vt^Jgq}nw361(Q)0{pI3mY|(Fq8g+#GEhog=X^x+>%;x!B`TucuO^IBb+1ZI8wwe
zB$7z7gGr=BQYMK9k|>)*ZW8Plo#Ek(q<F_1;^SQ^luM#~5*3noIO(6jP$8Y<f8+W`
zJ#tzmIrM1-CDtC{{~H?KdmN(jie0Om#G^^nNTOyEk0nthiK<CdOXBe)o=D;;slwi|
zp(llpKA||vG)v+9lQ~Z(@oW;+=|E}knIssQ9E9hReh^aUg(N1OP|r(6hAvk$g|(9Y
z=~mq&>LpP-=^wA#bgob*>7OZa#Of!}K=fZqqM;1qi?ZLcIsUM6W2|q1`}50Ek!>|f
zqHz+hCeb8`cawN8iPz{x5?zz%#z;t_SrYA%XrDy$Bw8fVI*B%7zhx4wWGHBG-U-Fl
zN$6M}X)8m`?oil)Z6(o(Zddc(5ab%9oWs~Ti7pIFSrJ@r{!}K>{r}N)9ne<PT$lIW
zruU{u5kwK+<IYT`Pcne0RFR^9fS-UOAVtMOv(N;TqNqqwM3G)alp-BeI)b90fFQm1
z-r?U9e%8v`>m-v&PEJcElessAUMciWp?eBFQg}OscT%7zC__qsUA(L5_fqJoMZu;h
z1R~R#{jyIAeN*U{LVw!T*hKR0^Y-qEuBlw|z`_A3Y~L>_bNa%-6b8{L^q>Z(FeHT$
zDU3|vqZB?);j<Kmr7)D<(a!lKg-<D7?OYT!Ibn~~=I5#8OQqqu1(pnZD`Apj8I{5p
zDSVj%>#(mooU;PM-Ds_A(qr^pUuz_X^xUypU*BpRr*XVSejzm>g^4Ll(%CzQ_GcAN
zwyLJ4usDS!95T0jHBL`qh9+ie{7xgU&eFv98fR<#A%!0`F-PNEjq_5NpTbWmEJ$Ht
z3X7<PM&^)e<`cEe&C|?IX;!h8=4Xw}HMYq%m+D*AYFwsqxyBV5f7bX5MWl(98dquL
zy{k2`M&ngStV>~i3L8@RErr(vIty$}VH3T{!s8Zxr^}~M)I>28n^X8Rg*67&8u*I>
zNujoZItI3;@HfMqf$RqUNnsl;B!#0?cM3aF*q6fo6#h+NX9{~#*qg#G)=A6Sol4#_
z{>QLZKkN8@$&-E=2W0sJvh)~}AAr!)S?53s2kB)g98M)0Bi;cyuv|o)@)GY&+vam=
zaV&-7DV$H?LJB8z&66pd(&owvbhp!VpI;r`awY}dewNWgw{woZtch_wGA^cYHHB+5
z!V{U7Qn*Y{Z|E>xp&gz|yF*{6QPD#OIU6UK{0zD60eO>LrEoiiYz8Kr_gRu*pzs+#
zO=r^$ym3IXyiPrbmvR`$X}~mK8OUWIw}FQZR5XysfVh}e*gz2jd3np;<P=9f1NjXU
zFp>jc1&!o<-RJ|dkbw^m$agLz748V3sDWZeBFy3j${4s`)Aty-*TAN<tP&dU(^yht
zDUGEy9ypoCI&5mg5B`=(epv(M43K!hNY34nC~x3F0}mPCdASOA3t7&RM+{^dNEtAU
zBt&ExDA^^fWT0_+wykF~=aI>?NwnW^AemTKJ>>`kwt>n9su*yLB$oOH0t2qWziP^=
zG}iPC5ceLC3>3V|6tZ6f(n!vzD+4h{x>=q*kQ}8Zk@ujiYT!`=H4M}=l1NS=@L8jp
z!C$zF9y9Q`f$|3>(-WGgu8|K5j76+jOUwB}TEg3t2I?C4lA<>7l!1B%1{)Y+puT|y
z23|7I#y~>@Pa9}r;8_FDP>=kuF)i!;LRpQdyR(^%4cti2rVh#`2j%!$SxpW6&qzL(
zXlCHTjr80r{pJRqqsCYIuOF1e=MA(l(9*yGp7}H|@t`Ep%D_NP@NEB!23i{+!E$0-
z1MLj-G|<by%UZ?D4<?_qv^UVfKt}_e40JWn&A=-(gYgd2YX*L+ob{@KvlEhR=ey;v
zbKshOQ{!8A%exp@r*CBC?z-?j13fhHHpgP%-Mck^o|ZJY;(@HjQxl>$d%snQN)$gj
zeGK$9lGXnEx_8#;r?dSv4$%04#t$_P)Hq1vlzI+t{K&w^28J2<+`v!+pBVVmz-I=2
zeb=gRBaN=X*@UPXX01Dz9O4~rV1$8Dv?2o|8Hf(b!*4n#4$A6H%uXXR))f!#+(M;)
zWnhef?+nahcLu&OFrH4z#xpX;(uNI;GeD`*kjMrdoUTC)PBbvdzzhR34NNvL#XxvS
zGV<V%oNA!-AvukfInM93&2Rs+KivS4=eXDc>%255VfA|hvkfd`;|6{(@S}mH+WzNg
zJ#y5HEprXbqk$cg^EEEg_>;y38W(Eh@j2F6tm!56M|O88Sp#%>GV9K+0=;I1fuD_J
z3jT#weKzw~11k-z()4PLEbMbgjyjZ_EnH_{y@8_!jv3fMl^NJ>V26Q?<dBQonps;J
zC=C2=;12_vHN#sB{K??YuwT#NF{GQ5owM&dvk%GDhve=<^70{B=&<~ovj8jWMkog|
zLuX-Y{~Gwuz-|LO^`%`Jd6gl8SN9m$cemfYy8ZHp<$n5zk^BncK}MUyk^?+s;4rHh
z7?3yF*5gNf{8*2Z+HnIX45XXLFmckrDc#gn1E&p~F>uMiWnFUCz&Qiw8QJd3VzX4x
z1@@~$$3-0zSW@k<yrL^}sh`M!;izWTH3Qf06dK58BF#+JiZ>11VoW$JnQm*A-dyPL
z8z@d9k3O3i63k?A%aqSVb`v>F<TR1XL|$E<+r;>O$rAy)c;&FnW1{0b&cMTo5z^rE
zn<!wSpozkq8q6eS7BZ8lUf4`xPXDDoky#$FEN<c+6O&9#HgT_s5++)kc*(?lCQ6#9
zVxp?<u9S(=Cd!z&zk3E*y5B@u6ImuI>8s^TR50<di3eC=QSxa<c@qzs$(INZnf%Q<
zXVPK0<gnydgq($`(26D=F_Q?!lxgCR!%478nJ`R96Uv0CdFHI`ny^gpgCL>N*67@!
zuO?rzcqV)^nOKh>mP~<(&;*G{BMDxLb!(hcDx1j^dGT=af%&X@>5rPIX5twWjZ8dd
z;&BsCnW$&t2@};#)G$%g#QC}oR{~7gk0d`C%0`%KnW$}|4*NZo%!5ywsB7YAU57z{
ziemt&Z=!*Th9;gilU2bTYq^8`vTQ_qizd|AL=zLwn`mL;Srbi7w7ZbrjB@+IFMUL^
zH42KUxrygY?7iYYazy@*j2)3Y*V@v=C#TY0)Sdox*>7dy1$J~U5lD+8NqB$pR%RO$
zZB2Y&;zPD<;$;(Wkzo_<O>{8vnu*S|855mMykg>2UTTy?EgsW-=ZO6Lh}_%RAzd>^
z*2T1p*C{s>Z)!2_EuMHB%V|^`Y*!QAO!PJJzKQN8dYE|E#Cv8E$tNF?Z&R56X1-&h
z{{sK#Ba--14~N3<X=2+E*~`SDUJg@lP4uC(k4R?wam9E$t-px@x<{&va^NSQ>^I*;
zbD)VqCWe{#+{9oLLnsPbnu(8Sen&DsHZhcze>5>RYKq98E}@P-V~<~iOsw<Z(PTex
zxQP)azA-V@Ox7VIO^i12m5EViGG)Bp(fPu}mnKL&c`cJThArr&BL}{CpZ~Rqb0>U8
z`)^I~5oR3yksf+A(e;H*ezQM(vr9O^#6;a18+@Z{IK{+N6IV@KGck>RVd7sCJ59_m
zG1J7)CVnyTorzf{=9~D*#P_<#A5F~BRy3PFIL7>eE_pOr=#m*eY|f>{9+e#6Jni5d
z?*bDGO)NLDLi^?-6N^nOG12^}>~d6c!MxPOG80SBW`3r#6feKxp}wXbO<w3TGXH8~
zrHOSW)|+USBikwyt4*xYt<jj77@67oS~7f8?mQ|tnD~v>j%+(L!`a6>8_5hU;UD?C
zwuH?l&K{M2Fnk@8Jed8bF8oX57L8jql83(;8}HKFOl;S5p6Y^^${tH%_%0LwF-kLv
zZu57W*kj_Li9>V{6Z=f;XH;R}>XOW!-Z9Cg1r3#Sp1FRlWAZS~i7vxG`_gfMZo+}I
zJ|>TA(Q);~1;E<}{SzjL6|AgNCQh3;qpk6RiHjTsl}=;Z>GJ?Bn>}x0_}JtV#Y-kG
zv(1KyYg{pt^?!{ezFOtKdrS^ECa;^gLETv>W8tQWTPBKHC}!cd$*t{VAUTN^(k*0I
zfR+4G&?m=a@!^T5P|n#cd_2KfKgFc6<*-0pbHdMMA-9D*Rua(iT42oKR|aE`$$S>_
zTgmiYz(Qe76x3KqBg+>YOQ!E47XBLVlPInkAP@IhxW~f1R&t`agq1`yc4Uoko*V0w
zv{1@QA|d;_+}HX2n7rRYSqqsKvMiLl+d@SP4`{l)g$J#~Rv)rZ!NS8<;*XTW#tA;Z
zQ|mM?`TUJNK4K*fMXRf1A!Q-5AT1acObf0B&w^zoPkB^5`xO=rACtBPhf+E&%O00S
z8#w-P>01aav^y?2Sv-AQzOmB}dGEDMCibE%#1^Vrc+^6#<FfXSL|K(BRI!q|iQf#e
z&Zy&(-pcZ77N#DT{J`xA%G1KD7GASZ!$M69FIs4Ap_YZ(R`Sf=+(I3WJw00k3k@wi
zN!eO>%0fLWImpKfD~>0wRG-x{vY1FeZQ&VxZ&M2$PiKB!Hmi{Zzg$*hjU<|A;#rNX
zz+0N>`ejb1J!j#67M|DH7c{oe*ivIFjjTWSb{Y?sOl#@9WTA~N?4YqNhjT0ac&=>i
zEWAt!m(F7Q?eE^TsEyN6)15S9uTUwcGkGAE*xADC7XG!clV)b&O$*a4%&_p5g)SC8
zp$si_wb0E%UkmSB=x(8hh4(D<wD7itcdTUL@vcU0d2Kr`om2jS<MLREEN=Ssve4T?
z9}D~u1MY1yojESKX~Vs{e&ol(APa*n46yKlg%2$Zq-?o1=0+}$H@}hW>$ZB`;WYZ)
z8{rTOAJIoF47I@hItKYcZ-m@_;Zg)A<c3rJy(i>n7KT~)+QK)iV_~?3FD;C=Fv7w}
z3!^N2K`HH#+?vihA;~RMwG;A*FT&2AyqYuPD+^;dkeXSIP9%G+Oe@|9$6EN-!X!GZ
zg>e?fTbN*BqLsWZ;qD*D!tF2a9px>R>>zbM<xio3S(s)eo4Q=Pa;e62^o@|4NL<Lx
zwD6sURTfrTm}TL63rj34r3+a2!NPnCKUw(E!W;{8EzF~l-<RwIw>lx;JR#pdA-S{4
zU-IEr;Q|W_EiAIIn4>$9?8nw<=WrCPPXRJfddn;<*LwNY!U_vNQ;%<izfiv?Bn3#`
zxL-;M&p(lb+?Bc}RknuXeIRQSH+C$nwXn{@dJ7vY{KlX}?QE34oRFJNBpoqPfMkiS
z{b6CVg}*KQW8qJR9m>bTRtr1Wc+D)@!|@Z6>~X`NLLj}(!gk%`4%)^ENyf+qM?p?#
zIlC<UXCbdZK7rj9_E@-R;gW^D7WP><Y2lQG{T2=|f>}6b;h=>>3>|FH!sQc^-EmKq
zZE}16jvm=5Ux6LBa6(t0wQ!G-S2Iq^)0&O57S35XqiNnk4#~-R3m3G6$s0|V%@#Z<
zFI%|6=p+Dvs}`<VxWyoE;ktzzjQo^9iDV<1NHx)nsV|Bso4~s%qzR-8upKte3gn^G
zNl7-ci$vx*1#$`G5SVfxgM~DE7UmWpGkFB8lZnNWCNud33J5$ZP)(qqKp}w&0uKum
z7APWcuRsZbq5{PPiVNH$5?f`D@ySH~Y`Ol)MAR)$CT!d%P*R|jNUVZcrqTjs1<DD$
zeo~eZ7<f|NuW`aj`GCNpld`<Pg91BiWfiQI#qT}27sT|C0KeWPQBmL#0aw5i$P~yD
zNC_AsnFYAitR#{T+qa&S`wsi2E_6ilsK|NE;-!;P2-pJ54qxY|os#^Bo-y1P2n3{n
z65xhRC{X59@^sG?Q6#`^780?*ApI7psz7Ctd@Ef=qj^f!JSF)}B{!xX6L?&pkw9aC
zCj_bsJS9+1B-3jRf!gFmvs9C#JDOEXW6M+WNs)X~k>_kC*AjJgW&W@LZ>cZPK;UVC
zXY^ffl*(!-lDVwQsYDJ#PDzey)T!jFq9y{*3bbZB0!;;)3H(psdEHcVf#=xBA=x!O
z+qCnU2PY(xR11NY0x!(-d3!5?38&<_Q}RWY2rNG(PxN%Qos#)aCxvYU+6uH6=s>Zb
zmRqi-wbRYMEU^A?vVP+f-%+5Gz^ej1Ze=>BWu*?z)2HPt0>@VQB!22*P^7Q(E`d!B
zes}Puz*_=yZOpULMWCy|HG%5_-2}P|{2=fnn-X|i;2VLl0`Jha1wIxSD)62_Pk|3<
zFao^<dJ7B?_<$yQSoRU<dpg;E=}VOf^wWHHIGuc9{cT65Kdp{if*q3wqEGi_@`;=4
zx<LYi1%?QGr1j2ATqp3-xUWL4z8Jyi6rTuuDlkgm3xUrBh6#KwFkClIV`dPb6LDou
z96__;qqjgj(K@~}8}Un#Jlc;D_?l^Z=4gShXd8N8_lwh#8wh+<=PnuV{Z?ys8r?)-
zoWOW0MPMRbRbZ-iUPexKH%Z{T({i%FFQ+95GR&@jJDtS083HqTRbZB`f9DaKw|vi*
zwac@YU8g1MuXrG<jxXm>1p@yu01C_#m@lwd;7@^{=x72<1(u2bKP$p!7t%2WPM(&F
zDUH3EOBkKb$dYFg-&roOLg06SKlET}T|bjOfnNnyQsdfmX(X#?Fj{D<HLlUPR^vL2
zl#j`YK-0fz+^CU-Y?Iq894xhb;cJJFCoK7kVTX+iY!}!n@HY*KFPQlHU}9q7d<f;(
znZy~nL!ino|6jVBNLHkjIm-vv%3{r30_V<TK6Xa#5!fqmTHp*vA+VoOQQ(9g@&SQ^
z0*7dX$C6#&!}PB+$wNWXg+QA#@+eK66?XW&&&akHlgH<iB6*4&b0Phd0JSsvjHDs)
zo&H&dAkEcf_A78+;DSK&Q+~Z!$qv=TGx8!G@Ql2~ah*wic;pJF0Da4#4;>o7=`-?%
zz)gYrHX7KtC2*Tz*+xa1hgy(kBfpITHqvcm*vM`phYc`$Rx+_)%8+p^r;S`T^4iE}
zCtKgSZ4^11ME*QBo?Ge<nUt*OS($N$_Rj@&K^uiw$3{^bg?X2L8O_o05`Uttn2q8#
z?y+&NoeYgn5d7^9p1$MrT?rfa+llV(vy)$RDQTmWjna0qozCBN$vP{`Xqs7$w8mLk
z)&{YhjR$O$x04?dc~F-;q>))(t)R<EJYpl$hP0t<WZ9@>!?oerNZBxKST=->=g&%$
z)%GQ_rP=e%3kSvN(zen0taNPjJ1a+=l|<i0U?a2<+2De(!Zx1*VI<*W>EyG?KF@-)
zGPY6KMl~Cc>5*2kQB@N(gAu3vNA*a1-%PvjdgkLcp0M$xjk+8ln=P15lOqo`Y}B+-
z%SLS*b?oE^IyiA`JSz{JmHf$trnR%^P<%dmih??q=&PP?lcE0BS=rFW(>8|M_{7FD
zHX7OJX``2o#x|OeXB#irc-96NA<d~r8%^!x_yK3GW|Y`?r=Fdxmj7piD+hA&yq!#Q
zEyzYa=il#~mNtk7XF4z1Xl-LnT1E$L8!y>tuZcEVQ*CXuqXzf*;+%Y0m+;qVsJ{3q
zhyQ%t(MBg5uW;a-{WopAW#d&%zoxOXMqYZIgQ8^4Nz&YWZd>2!Vxzl_9yUmKwb4xz
zq|I~w+nRpY#(NZ(re8WId5MW{waVwoAko`K9~&QVXg2!VnA#)beQH*-O$|O=E33bq
zykY04e>|Eszy@()QDdNuK{f{47(#w_CRh0*t~`@Q;v+lxd00N>UCPY**iK%xkoeTb
zXEw&#_}0cS8=td%8(-QOZexUvkv2wAH6JB==~NtzjXg5nlHjw(Xd7SI7-QpW8*68n
zHC|5^jqje5?1jsuZ+P{MaPeG!|5$&Vjqx^S*qCW!f{lqbCfk@|Cu<vOY7+H3!ThUW
z){M~(J$I^&Htmz??8VEO)5zXAIh_^G%Bkn%cQ$5mq&DX0vGly2xbycmX4|+_IP2}v
z&JXmFk<QCsCGBuA&;1RCsrfd3qLDkO;$VS|g*JYs=h|3gW3i2;HkOe-mpqg5F?op%
zemuqBrrVUBv9nax-{<6ViluDU3LE@PkHoJwR@%63;|7h*#%dcUZJeTYQ3y8vw($?8
zcP(ul<#sCVFB|Jw=S=1Xc5%u7jRUc<iFz+DnO*X!^Sg~dbar4RIjX$etm!}RR^Uv!
z#l}_}$9DRh-MUP3w%OQjW3P>U<cE^qp2<49?PS;GUyVC$?9v2F{?i0^WA@m1X+*~9
zbID8I{n|SY+Bjt6fK~xpVEjC6BlkZ4h>fE*Zl9Ay&nNNWn6?wn{uR#4<2HyVG)Cv;
zX&Yy3T%_b}oTXEI>zuQ3UbFPnpMK->@`84A8X*(6Z7*}+X<1inT-5|$YIHg;uW8lu
zbpzi8(*|xb_|vZ)-0$EvgTI5k4)QrjbCB*Jw}U)Ra=0<WNq$`+=Sd$9vO9Qrm!HEy
zqg+}2&r8xd9puu5-|h05<*drej2OiH4hlFZ<)E~Kf({BfDCVHJgTfAqI4J5Q@}!(8
z5Y``aUeZBW!uPqvdmP;BV9t42!r|t;ym?-dzE78wbg)rpi(g3AAxxDn$g&Q~Iq)3>
z4jyn&-oe8TDmuwB=|Km(z6!hK$#}>?1qTafnp4JEls0cnmilAOM;v52$a0eHrb-S{
z4#EqPG`GhM2dztH@dc~tBxmm}jY6ZX(b4E?^fcyq%3;mWLF7O=h@B*IvODP{A)?L&
zZatY7&-rBRyWKu@RMo+w4qkK6*-7TUY7QDWXsGGO96ave2?y03)NsH6Sx=YObWq#D
zxObdd4w_t$UC3<*r;dXsIqJ?1f48BogU>HW(%D~2)}M6G`VMAXNPhg`*9-D#2hTWY
z>7W($ND(<`?%+8G9eQLmA(MMEn>zUSf_#>`+u~ooAUO*+<5<pTa^?R&CkZ3ZJ7_@*
zxtP2fV0x@kR{4v`uVudA;6(@RXb+T|gO?n%anRO5)r<1Ui^;$lOUVqMwOe0I_PyJ)
zQwOg)_~8nFP9u4`9C1-T#5YqsDB|E1ZGK&KO>#BkqI{j~(QF)i!}Y&|w;c3x(Az;5
z2VEV!?cf~;-JB$rc6ZRj0V5KJzv5zICq1T^TxXJa*TH)ZdUCeu;E)prPc}}wy*9z>
z<DjpD4;*~x;C%=E9Q1cEKpQG+X20!{LmDS{Q5f#HjAVA8gFy}kJIT8hs*e$J2=&#(
z9O2+22OsnHyjhE8`^2G|{zT)a8b8xGOylPohilxLEn}pEQMC3#SzkE#N}JG^Iy+h;
zf4!EM#yHq<Q8L|cXN{%w9ISD$mWJVAyn~h6R3<o>NYy)->0px9-BhjO$qt_F=1g&L
z=Az7bNfNn`nC4(QoofPLCHP!Ld`E8`>vKIk-@z;gWiQF^^}Vw-QfNPD;zzQiiMe;n
z=Q;S|a`Kw{Cr$zMI45}wU&<g*D{GO1#SZxUMN3$|H}jcGGQ5;Lhc0u_@seE55b?La
zf_`)%^JfQq947ILgI{%J(yY14!D{N|QnCW!4D!__xlWICgM;53tk-m+3%!}ZhmMW9
zgsS1=*dGoyJ9x-L1rL8Z_{%{j7q7V3;$SNSj*Aj5{w8}4t~t0)aXHw|=;z=ZMNOx0
zu*bn(4u>Jd!G8{RlhvJ>JdH+XXsC37IhPV+V|V);?00a|!6`;C2M1aIQu0b}^(A@8
z!C`X6fn1Va59cU7cbR{TC4c!$q>pQwKaqEWq3L`kE3m=Sj1t>3={{SkW}R{16iSHm
zjH`#`B?p%sTySualIIrRIRDtC|33?Q#lcnHPHE^fa^#j<IyW5LWZZU<+f6otZaILP
zv~!yt=O&d|nC2q=vP^fAAJSpUaKYCWB(l56;U=e;a=J-h95@pljko7<k>5oD7kORe
z)9p|cTshMc3bK6{MO+khlK?`;;fM;maL4;Jl>(QOXHPa#%tdh*_qfTjw!&q}MB+Xd
zC0$4t%0(#`rCmJYBGW|~7x%k((8WV8%DO1$;sF=s-Q*-Hchb1;$LLB9*(~>?xWKO9
z;$asRIj%j4zo$exUj%R<d}~P#vs_dnKQ25MDHnzd+l8Ymzke*#)PuEL2shbv=hVO_
zZbo&Eh4=E)0Jh`n%7KeekC6+r$W7)rZUU1BzN}=wv5U$snz(q@MHLrSUDTvtT|DZd
z8VAC!Dr#mu<|dJ_x(mMdeB8woE@szDXKGm}Ni`@Uy<tma<=QUlxOkFs&}WD0x=8?U
zpz$fTe_7VkSYIQvPhXa8F3W~4o_0Zk=^0Hla?$v131!~YMKc#IU9@u1+{JS)o_EoL
zI{h#6e=er&^(jv-yt)3TiYe!JFDDPPFSvM7+Xmlgw|4Q8i;gsgQdv9NJ8fLFb1`zB
z&)4g1-Q<NkADmyNwBL2wyBL01GIemllTjq-6g|&mzUtyN7aLt{a?#nv>n=WV@hOMq
z;!PJlUG#GCmWwVfdboJoMOPQyD4eN&cQ;vYb3c>Q4ejc5vE;Gk9T)Gqcu%W_qu_2Z
zkGRlbsX?l;w~Ib52DunayGqaK>*9SE{n#%*X_@QycaxCL*F!rl%K<KCU6vncB=Mn(
zfp_U&FUuh=K63G~i=m7vHM7VAZI4LpP+1o)OD^3%b1}@tTo?0Pe9p1EnBropixHF$
z4Tdjpd8t7bgYYO9+^L|Ie&OOv7bHe&{7T~(jbCg0Mk6bX)x@_nr|A~6jD+Lqj926Y
z7ZY7faxs}6eJ1%`Q|>dcob)so(_Q@NVvd`<0hys=LW?VMri<@5G#B5yc>GGTlgS5g
zKB>)i!RKz?_=B7LylTZO$zvu%6Bn+uf%z_ea<Rn4QWpzcEOfD$isM00TGSstADsET
zPwkZaH<@K9-eoS9yZD)1Q^i*jKU$&9jE=)YO~1Oy3D~tR*11^eCZ{P@X<V(5*)=YP
zTuF{wtk=G_!NqTy7&+Old@*yHW_!gI`8&gciz_a!y4dXEPZ#@K?04}O)#PG_i+^2g
zW$@?NX(29lUr9FS$sR3dJMB>av@eCp_o0--P7a*z$wtz${&SNPyyTYtzT3qf#;)wi
z#Kd%mcz(EZz{NoqCtaL!amdACH#w4VgqHlTf9Z<k@8$B|qb`n7J9{(Jugc>z)G7W6
zy2-iBQdgySRi1Wn#>FKUmtF8}J_Sy@J?r9}9_)FI7hF6x-MOf-!Bt6`YcpCM*(T4|
zTwG@a_E6Nr4Hq|EWO(4eTitSTTZfBuFF85JX0v%oh~~X%Ub55057sz3M!f7Ea(F1@
zp|FRkN3(Kz$n7DIm-t#PkKY|<?K+&1*Ta8n{d^w2zA8IimHn^E{2u0Cl?6O(zA6i9
zB*9^p?eB0?mp(<_ig_sRp{$2;9`5mQuZI#IzrIO4h@7x@KDUw+)-35IF{G4-(jLlq
z$uwbKPu{LF-S6SfkC#5+p}dE)Iny6x1^qD2_eY%3XrI*M!(I}=S9w_Np`wRJJY;&v
z^3dKx2M?7zq&!sh@TdpFgXtmiAU#+fga@C^UQDE6d&$8JTAky;^>B<jVuiDrvo2<m
z=JAHW!&|>Pq4)p4d6oT|R32gvl|59^jd0(a(TU%>az-YT+$rLwUo{Vpd8px`riaHp
zJmI0bm&EgO*OFa&_Q<ZkoM>{ospX-zhXx)RlEZ6~zxBGIcUZ^6lOF1Nc*^6yip%<5
za(I$NJ)LDFc|Ug&>z?+&zBmIm^6(5bwLSCYYqHNZ+1Nu956^mN>S63P+1lej_hmKn
z@IRd;-CUPEr;+VEughC#Wc`*NT50-)yCpArSa?nH(o4FejmEYb+j;owntb_gP0}4b
zbn?*KLmv;XczBfp^w7miPBy;gp|gkAwaod$hHrSuu>?M3y{St&z8CV81&80&LpKj^
zQ|Yvg?8ym=?%Dt--X5Bu-dX;xzKfpqo`;?u_%PUu{Z3E4*vKr?x6*t&)z`!O9zLP&
zJoKZrc=*7>haLvdX83y}*|SbulXu?Nljc7(4fHU`!(a~&-^$E;Jvk3E#KTAQtRtB$
z`B;~e80ulu-lXI+55qi6_b|gt-YRk|pL>|uJsj>~1kL+E=132dJdC@UIm$z>eVJcq
z{8Hm+4_|rU2c%;tIuGAceY%|0zVYzTbxC5JmwX>hVuFY9cdzoZ(1|oZU4h@jvhm5f
zizyzOUzbxoOw(C@Ov+0$J$&b3wuc`)ym?)IbY0H!!1HoU-+P#FJt2N18+5~2{&Eis
zuFJVp3b*t<{Bd2*^KkOIobTZ$O^{xoiG>~(X=3r+^7I=?C|K%YnZCW0&T@-;g@>Q%
zZa3sFR2J>|hU{=duG9qS4{yjd9@aAQ_{imBorm@GK@Z10Y@p41*zRG6hm91thrd1i
z!-&TZ?#LVCkC&Ws8Gj>LtN-aG>zV%NGXG+z@i6a(+;~GCyCJuFNWUpd-jsY(!$b8<
z+dMcoCHDdT^{|s6&ckjhi<>_r^x~ZDFhK30z<VVBqO#XZb{@uGPYU-jjC2Y2YdqlL
zpe7D!Jgo7EM%Fp%p?kNG#0kpB!*#Ol;gpBd9?p3<@8OJ>yb<8y@GL!Id*Z^3Y{|O9
z!$o?E-sHceO`Tnn4L(3!_Hf0+RWEs%+Bez1#-T0pnTDiiyGaw}6yPJfpEP^hLpC32
zej<~{Zzgkkx}W$FyUXxV?>&d<@RhVXXLNJ;;72R0!^tJLk32qV`Kaw9uaA5_LLZTj
z{5}f!DC(n_pZrx&K_7*D6xQui_-vLUD&i*(5f3@ZlCrpudwjS)JRkS^N$5@-)<+2+
zoI~%^Skgx+A4Q5~mG+Z2sw`)E_NKhwPvTfvAMM_9%5gY8%IlI!8Xwg7kj4r=9`;dD
z)0rB1<0C%i%}l<+V9N4gj7bimrS4uee3+WHd<ae08XX^<Zzj)l;|nH}6i39_is9P#
zlcR=##sSkE=|lN=%*W$CVjq=#RPjMuV*NYcbCIaZrud_3KC1c2vlY#T$TpwwQQb!k
zA2qey?mTgDO~P4#f3H9haqV5l$CEzV`{>}Ku8*gDH1pA%D)Uj_$Fn|~YHk~7e8$J%
zo3f#wJXb!gk=aH*8vEd3)Fv7^1kR`9v<)o0ne0rmqvw45&rg)thKlgf!cR7w8H8K<
zXyt>yfco$)`GSuZeVo53^W2iZ^U>g@Y)wTpbY9Z<?@dXXufN+;O+H@slZlvrvB4cV
zVn-jHe01^A)yFG7cy#$yAFomS|0NNXBBFdc`*@wwyCs|5l5hBUli6GHEg#?9N?v@t
zGv5F3mh9%EJB`Qx{|%Y>w<J>!AN(leZ69lH$*s4N1DSN3o<4f{*w+I4TcEd(K0f~P
zvBgJUnigf{<LKW8Q$HV{YP$d3k^!3dz{iK07^rd3-K&E&F+}4>K0dx%KGer2cj?dS
z`fT|#ogJp}bB)7&jL^hLjjS_@4x;HV@0N_F<TX7;<L+CM)xPmD*2lL##_7T}KF0f)
z;A4r-PV_O!#{wS<b#}6k?=`_2r}&tv>1i6LYn*ZS>P$_1r*W2#eiKu?g=w}f`9b54
z8t3?!s|jA6=VQL6f4W<8<Ca{c>BV<TirkiKk7lv*QeCo4<MO*#SNQl@)4$v;`PIit
zO|R0p`ffR2#ITXII=fEedLJ7!@tekt8aHYDUE?1bH*4g*fBL9&JCWg5AAi&2wrBQg
zhJSo)^RfFW?0E{?eeCdYwkpn5#lO13M<G5AvD3#cA4A?T{`1i=z|#SC``ANEqfz-N
z9)RoH{XP!(xa8xqkAprA`8e+5gb(!d57VQ`1HIsw(|f9y^B=eRZTZ}7d5odpwp{SI
zd(y`#_Uq%EkJF5$t35lvJmbU9>5|^R#aJ=JJMZJ_7K8LK!!2gH7wEq}+P3v-XLo;{
z<6WUYF88tpNDFY4<tg`?kLx~e__)b9v)Ao^Te9$$zLc}1NBXv=C+Bd}1B|{cYfSPA
z1jx`dv(QBL068>~Q)4cTxi#j|m{(&yjl3&=kg##5wSocIW}yHha>~L1iUcUCuV%$=
zu>j<G_HEhZkb6&nmAB=+0h&y-N(8tsK*<250;m9SfYJfV1jq_dDZu>!$_98SK!pH}
z47Xf>2LhB2KzY{v$9>|M6F=@g7~luEZ4bJ{E*b8_0f>)itQcV5ZOLq=&R*7ZDu5Bd
z4d4YZ16Tp<0LO;8pX6}GL01I)Ho?u8O%Yk>=t~_Bxqg5%ZN0MpxKV&W)1k&qkGV6e
z`Q$_fAd<<-0jiJ=P(47^0FM@s)dGGc=RO*MOdgx#vCd;0T{iW2fU|I!CDzabtQnwI
zfc=lTw@mlH!m>8$Ek=ts{W@&QaG9PAP*>AWX{@KQ{@tq$G*Nl8^$c4Ja4o>~0F5c<
z0Mi4^2=HuxrU5<(@L_;v0h$Ns9N_f;&jt8jfQ|t=1$aI{ivaBdbO_KgK(%bDM>aJi
zn|i6V*(w0>1?p52tu?abr2uX2(rp8@yGy^!X7!D;vZ+Pc)Z0s(J=xSN0Z6<W;5D+B
zO%+d5Zkno<raGpn_tVrH0p1MIGeEBZZ|Ry{0(1>9JT1AM>4!AcEx>>_;rcYyJwT5D
zB$(a~@XlTOT}`|fV2i%gJ3yZR{Q~q4&{yBfcGA+-`vH#YW-q3x;^`_gT@B!P(^cbi
z^>Vrz7+_F<FKOoi1_u}t;Ijb30(=zU;{Zbgd_wlp6R!Gc9F?vXr>jo`{I0X(eEB)q
z4lpXf7Xc2YtLzzSM1YY2F0OJ4XQ<S2gSV$Lk`}6J{3^hh0OJCT5Abz>Zvu=B@GW(k
zq1eU#uT9o}CPQ_|P(5}12>~Vsm>OVOfcm9PN{>xVBHI~ia)2ppCqvE8P{j4R{_YG#
zxy=mlU4Xv>{1aeSfbRqRLf;H9n|>5vaeyTOehe@tz`_8F0?Z9?BSZ0L4(A7$r=?dE
zNjpCUSU^95x+6oDu=gtZ68T&jU|E3W0aj=wHiCKu347$TNlw`Z>Sqe@YjZHv$^feZ
z{1#wifYkxk1Xvqj9nF%HQ6+aG)MBXhyb6^kyDFbuZ3wUj>LL_z6Qv#CFKusecGW7o
z`h(VzU44*UZKj=PSASBH+12;iRns=%mH=Bh((LN3Z%pF00NVo`4sayEjsXAC*8&^}
zurt7}0RJ)IYtEluomkz*>}pSdz1daS9E$4L%fJ%gQubs-IdUWz=1>O%9174ohpLxD
zwauXh<xr%LGJw#{1DvC=1vnAlWPnovzRICy=TIy4y}bS39O^_4b((GFP-g;AYb4GG
zxIk-RA%jv*<>XAp#mbi%B}nH~SLm%d)f+k0Rn6*`Ig_h50^AJnWQe*UZUwl_fEnV!
z5ZOYcg~%VGK#24Z86k3p$Q1%1vWJOF=Fs?k&P2I)Y-x2)l{-Y95P3u7(^vQARM*){
zx+<6}>5HjUE>$o@p%7(4+#e<;Q8+}g5XD0Txm1x5MfHu(==z;<seZZCh+OKP5ch^C
z5#qiOQ*)_{xfI=}WQg^-R4I+6H8Q&^mns{goNnX+jZ`H$%$Yl3fJXIDhzcQ8h&aT<
zAu5J&LbxFw36U8>gs{n5ZWZQMSt07>R+U2Vu9QYYqp8sf!BI2aG1PXsRrlO#NN(kY
z@Hv(cVF-53PQS^m=Hylza;qprsXPfAGQ`Q;iYZqfRXIeJ5Y<D}2vIe}qamt=c#JLN
zQ4R8_PP+c%VG_Z3<N7@6i4gtssBiM9IeApg5Vb<oq2luBn6|{Jt%ppn*_9{Jey+Ug
zDUKpU=Mb-ls2`$1h?XH*g=iS!=@89AG!OAih(;lvCBq>a>lW<1s&QV`grdl+l9XF@
z%&Yq6O_={u<8vYY7vgzcnI6jW*?HBvys8CzDQz<QLWmbbyd0u^h}I!q3ehG+TV0<X
zaa1>QGp}mLf#*vmiz4}ynNM{H(J{oUAzr&XWCq4g6u7=IX*Qo?35oafC5HD#h&My@
z3DGyiTOqoHcsIm*A-aa>##=(X6Jm5e)jh;_`BaY(!%Lg=vfuKl1NoA%+|XDozv`*m
z?-ioACanCbM*gHidyVgh=ojLH5Fdu1b+NoZ*<;dInH`f~4Gb|T#NZG^bcH$k5@Qj=
zIQd+kUmeJ=hKBfrW)q`dj88*+MxG_QNDK?{Iq!<_PK4nhMufN?;zo#(Ax4E*5@KnH
zFT!LEIXT3X5MOdoA-)PRCd7mg6GL1qCH|;xAAVkZ9pal1V?%sPW1C<H1=KkDZvj=h
zfEuq$8W&K#-*u-yC?<vIS<pT5s+iW#e!YO28e&?Axgq9-m>yyVMLO61A;e4?#ul;t
ze)nP_^ScnU7#ya0--nnTqSFKJ+9}@90*d&hv}@fkehe{(y`1xyCQY{IljjhNLM*1I
zli>|U`-&o84Z(pdr189B&$?yzn=4+dZ{OT(G|DBGg;*Y9M~HtztO)UQh(AO872=l=
zzlK;7Vl54$uUHvkH5J;xUZt~Rd)q9WRzR_29pgZV-#O%AVgmz9Ww9~D+4lZ#nr61@
z8L^2hWeKJ;x4l0osO%2Y<`Da~3KCmFYz?uU*-^%Xd&S=&ZkBUTPPhM|sP7f6n~80-
z=Vqc!X_plm%n&<6><V!t#L*D{h1eZpPl&xC-gsUNtSD-ib=$5H`$Fswafr6++Xq4%
zq-Hb3Ul*)2KYeN;_n%z$*Pn>P?Dqw+q+dGmScu~x&V@K1;skY3)I6)Tf0Fk6vtT-<
ziPIs@+$|Y8Dv@gWvG%MT-h~jCLtLR%P-4_h0d+|edHT6mslHbBvKvO<8^*n{bB%E|
zcHVu-y~!97!i(TXxXs`np-hDPBcw%0k5DK=;RqQK5FvMjJQ1=-s9DFZ6xq2VEGlj1
zh>%kgYdZ*L4-`=K_u8%37<nT+J<P70&CVC$pSm_v{s;x`(giiq^?*^QtX(8R(FnyN
z1b<rHeldzic;qSj;&Q7*gpa4$_h`JAJQP&S-WMU)EURRMQkp2Oaqu3oY?a0GvJuKf
z$c&H`;eiO{BRm|TVuZ;9jTh4Fv#YEJBRmvgP;Rq=#<ABO(vNUl)rHC}XrhhzVgE^v
z4yg!M1QGFXe4R)02qS_SVd@7)e9+pKC#`8AduM*zrc9cP3fm1QLgiw@jqrYc`*I1F
z7(@soG>y<KLKHzpcq&4@2r5Dx;jsvh^A^_s(pYoYs2ZUP#a>YTyiXA4HL@R#P%XmN
zVL}yDbK2STR{v4wi3rsr)S&z$e15=qp`fZ2p>~8i5uPORsej~A@o!$UT{FLK1QK_$
zcZm8?5<`NXZleedBJ^HwH`K#<S|i8xj3x?wYOKg>HjYs1rqLwAvzj2?=!j?@;kgJM
zB6N)KzX;Dqcqu}g2;G)?y(b$jBD9S7Z-$~(gzx%@7b9HwL%a}SO&`&-plTiA(|&@f
zdYaRgtbXj@JKSg&A;-&h#gF}$BebWq-x2d(u!${Nr*(?(N`zM<ycS{1ed2U_lAbza
zbdK<PgzhXXCDv}Y-iYv4gf0<Czp0U|P8@4=jWGMV)h)uUO%}6cp4lEz5-OR#eJTCj
z2=CFnB{C#>M(7n`afBrlON2fV#zhz(p)a+=jv{;=p<jgllzD__ir7U;y8|K&jxZ#`
z2N6DuFmZqwNORJObi?UM+F00bcF6cB!oHj0Q`#^s;gG>JG{PqlrZo3RA30=v7GapK
z^ZTDR6DtpoFoG76(_H$p7#V>$O6!j5`y#@ZnjWq3D~*HSwR!2A2xB9B8-X$Q(=B3p
zZu6^x>P%^|a<IWLJAq76FA-)%m_&DoFf+o7t<ruhsHQ}i7GY#=v8JdqmHH~`eAh`#
zr!Y5JllF-jtiMl?uGrW<*v<Z)f{ier{nG2V8(t&vLxdkA%%QKf5c47|cvz5_tFw&l
z%$}KNf1F1wh|o5&rw=wZ7E}uvE+UYql*eum*h?cUi*PW)p$N+(tcdVOgv}9tj_^x_
zbrIG_=sep#UQqoSVI>9ruUJJsH9>lHgyMAtiM6a5ih_j{F{_Z;Kp8f&gAHDKPUko3
zI;XQS!X`~TFw6R#QKEog;hz!yim-$J5@Ab(Z<=~z^V<K=^&%WOVEnC-M2lJ0wg}rJ
zbRBHeDx`>s`5hA<Hx@f1?27PTgxwMLM_85H+!JB14vG6{oIULwdj-=!r4u5Fkh)H}
zo;GV9X8SbD2$!@fk488b;e3Q+5suR!cUdPQoQcr7kUFWer!?-U>YQd6spGK1&!%^l
z<2okJK5Acx@X-;m{T0vb<c+H66wYT}j&Ox8v)0NcaW%q&uZbHGZbrBk;q)AFT_a-)
z>GujLo;<!4Vc~J_He=C3aq3%9>Z4?4Nt1Y`UP3@3yF?@*C2~mQlu1Z=L?V|&Zi%uI
z<s|Y*<drBWQAqOV)<r%EPN1(nDW<>2T`LrjAi=b)j5F;CyRbxYi55$&+vDvb62zh!
zi%E<uq?o-&qVEdhUX3L*-lwso#LW>#DUGEyGFwIy_e%`#U@`lEX0N=&gCv%U-F@wc
zB+lm*t#2ApKbu4aiH9XB>cZ;z1WN`j6PXfOk|*v|C5e=TA(4Nm!S#<RVM&A%m7f<v
z;=A{RD>3V9VQbpa$ikCVZBN3NSo4YqNPHu9-7uI~lQ({`+Ex;=L`#WQY)YbvL?emD
z5>+K0m3T^`p2V2(Mm32V5;Y|rljuF%cw8fiCnTy%v@az{w_IXW%@minTGT=<iQ0O+
zbu_Z%Nlnz%_;&8JLVp{Z3#s}N4XC*7c0-A0Bu*4k>089p62zv}#DXeL&cdpR#Iq9r
zlXzaD=}6I3;yH<5{&SmA`xQiUjgRM%q%Ri{0|$#168H9WD->2W3o8;6mWdZ6UX<u4
z(Mh7r5TolL(OTjqiI3`uHe_C+gG5`2b`mdh4SdQbwl1ugNRQ3QU*<AutTLKDCSH+v
zRpL#F#ZQRWsP~F?{wG9diEGo6i1)fg_vZxD8=Cl_u;L12b>wxG=*AL-9tzzhdPp3W
zI6`Zbct>K1#8QcOwOEEpd@k`GrvQmwl(59d5<?~WurG-rWLV;TiGCd5aN|RXe`crm
zmlz=N0d-VLyz-H->WXe(C&(=843rq8D-V_^HNd!3GAS%Q$>NfG<W+ILl>3Q9+G2b9
zlY;a9r(FDBwkitmGa8}rNDr47LEDp<OZ%4?B{72r5aG|I;??uU7ZP7mHCx1J_RjR0
z;3E7h39i5!Jm7vU@x?jo8;xTnzSYDyjgvKwmzbalR-34aN%~%9nWjigy?b?<CZ=m-
z<1=a76lotZOM>5R{vh$a#B3UEce{NT!Swd4-j5Q0_7hBv$~yBT=2N^93#ir`V(JlN
z$10;mPKT?(g%XUt)ry*=7qRzV?qZ4h^Xx~Sx0gvQm-w4PmRKS2Gp|alqv1*XDzQ>x
zmBg}g;`xHkf^Eh>^DRzu)hjuxwH~Lf5^ESns@rdtbJt63koZkvBh}O;ZNX(@N?}!a
zuT2@&eOqjj_+4TPoIfP~BBANc8voSTb%gl3oftDrY^8nXc9<G|Z*P;>F7cnlZiyWd
z|4QtX*d<Y?u2|RKV6zuG*!?~=icPU|FR-he5X+l-dnESjP_~zXdQz0#BK9#tZV?AI
zS-E$M0}=-rGj|K7L)7?|r0}T3F`A7+X@%qTO-frKyTVC{QxexDZb+P#{8SE?BrZ!(
zXlEI_XxR6QuZz0pB#0{ts|ynBiyd9m$W9q3Xop)4+gCUXNHkv|u4%l-bx7Z&sEeAn
z$SoV6XW##UolW7{C!I1&(=!yh){tom=?b5Ywwdb8wKts?qi2g83ON;uC=^x5rI1@8
zzrv}RRvv}C3g31&j&FDJDYO}6?=GxPln_jfhuZ}dKJ050RH#?l=7dvN;aXueuz@i0
znK|<aQP^xV*Dj_|T;X74v97V$5ZU)A+^bMRf%JU}B{h-IMO09Pv%FnK;eLf@6dEa%
zRVb$rDntqoD3n)7DHsY5D*Uge$W+Kucu1jw!Y4iLhZQO+Ji?N;g4u>e6p?B1W>HDu
z%wq9IN73qxAaV1jbW_1na1|Qtv;@anO#EF`*b3|Ghz<jUqmZ%CV#%YI3{PR)X5lLY
z3PTIp`;OY<%8S206jDJc+*8c0rw}Xr{*!oAp_)Qvg=MP@rYf4Ks<HeiqxvlCF@@?1
zH548vG0S3lLKDt8qozVFP1jYZt%*7cPio@XUyKqfEYd{Y^3>fz()G!|LPOeBe&=b0
z(F5H6yFAhzi>LubRAYrE3NI+UNCQx4$}VmiEftzk=9yx85%qB{(Ols<3RB^Eg%*nc
zQ08`SB=%f$h@_8j=~&xoMPqPnuDW@9YlW8-UQ_5yJq|b8D6~~*r|_~~@V~6kUZJBx
zCw5m>bWpgu)n3uWURy*l`wA`Ui1jM#4Dqi#BffgmJDt}d-RoWBb%kt;jTr@;HxzdE
zHr`ZtOQDOVyK1~=n$2>iZVK<06eQkOct;^EMtY2Q72Z==sjy0+r$R4<ZxqHV^j7Gj
zFht=aN~y2t%X=02DKM~nU&ZcE&Ca*>7EuEg259;NjUQ^vn-aV_Na4y_Z!k-~w@45_
zrWq)VQuu;ar*Nx?8m{ou0Pj<U&lE;%62lZer(qOTow^BT|DRB(IoV(usfnXS?8~2|
z&7N*Nz1jLw!5(gm*7%jiF&e*C$d_*N(zongVXneFh4Bg#6ecQ6Qs8oZae0ydgyR=g
zlNF{=hBK^L3Vr*FsR}a{zEhZ{FkPX*H8F!8R95tyCP=UO%O2F(%RAcN{+q>zxbGEa
zEBv7Fqr&Y>yVnQy98K)mZ#OKem@T%*n9ngPETu6k)bDF7pgiBU7b`5Jz^gdR#u|&L
z@oe_}x5W}NklhJhwO@TuTrcJ<SGZ1Js3KM<{H*Yc!mkP+6jf)c+2@wq#8--{ZKcF&
zw%^6rs_?hM8ilnA>*$OMf6@%zvNtIFMhEO}-)doRq@k8{epmQIVUq%%7uII8TUK#)
z_wlzZwKr2Ng<U4nMasH=(MWcREgJ7J(*9A{rf@^yCQY3Yz!EzZb}8&o$*F*URkA-b
zy`cTr7OPzG^#2sjDV$f>t+0o>C}OwVW9-#@?o-&Wa6r?iH6Bzrq;Oc%9LRBnBbq*{
z@z~w+%7+bJJ)yHF=?-_x7wk07X!`8kk{YwE3knzMK@6%YS;1bSDQbfBWd`tzHVGyY
z*J;@IxlAS3if@XlB}LUOg^j)J+cb$7TZ*dJV{!hHps`hWPOSUX&WM2+kH>f-M)nvv
zVpuUmjGQrY#kfC4*%-NF<cYbbgc30>6;*j-tX}68jFB%!{ul+~<RP7j&rsZ9-~&{l
z7=>dLiBU90u^7ck6jLjQ*}c{aqnIN0ULfv?;eRBUY86xW#dxupDjA~`cTfi#n{tcN
z@&7-kj6dd;iP5u|VyZsWE*Im07?oJ^Y<l?^55}k%<B=E-#n@NfsSx9*$;STH>7*Zy
z(Qv4Ud)nb*J2M8iN3vqLpNJ{VY|<n~7gJnqreYW|%J=k54(D0BaS^{nVb_k~#Hbvj
z3U7(w#d!LL7sdE;lEsZIpRL8%INJ?lsFvdJY<K^3>(yV4y^Cxa<K@jlX^dmsPWPFu
z8bj{4s>OIL#-lNszGlxYrZyE*pPdlJ>e)Zm5;HUG>M?4>Xc41jjG8fOk$H9+qjros
zF*X&mpNwJtWF0A{%5FB|$3)#2XI=@Picv2{eO-Zd8fapd<uGLwSI@*~6r*{J=VCOD
z(IiIK8OG^D79Y@_B^xn5K5RXBTD%o`%{0v{8Ln7C{4d6^+U}&Ej29g7d<<fl;;I#i
z7_Y_XOl8qpZdt8kyhKHpaNitlPsne#A=@{N3;FG~G1|qb-p9!Eoc%I2(j~F;_AxqW
zx}(NUcgtUi@v5fNPh?}Y*JHdvK4Wx?@nKmz)zKb1NxT{3tr%At`&}sc;)+DIAH5-q
z?Cvpo#kg=$^oa3xjJcb{JB<G^MmKOtXFMv}=ds_@<vlfSY2db=D|*Ku_KDF~6JKnw
zne88AK#UPpFtQ3hVAnBbSH=&OF)+p;ntf&5R~dt242khajLk7VqQqj%h%qz9&={Y@
z_&UZnwB8t>(N6S;hQ;_iM%5f<@xxA$n@0Py#&C8)TfJzFr2VuKqcqJ+U+8Sp;);c%
zX;irdH&4Eb@lJCwMkBLhV|*K9Dr*+DxxIYtoINha_!tvnOpGx(#*`S7^i}Rw-Pxof
zmU|+N8;?w+r_s~Pis>}1>4H05y!2g+Suy6tm>=VN4mrjTF@B6O@SJEqLbQ9>$&+8q
zp@MSSe=oI4xMHrRnO&4a{1jtBjP)@##8?<(QH&KaevYv?M#-J_(iqEPEYUQx_ntK}
z|FoAgZuGNz6j$3m5lc$Bzc8?@v{tb&#;=-Yc4ds+MLZIp7guX2z~XA1#<d#%YLx7}
zvG6x?UR>oXBQ|PLuPv@Nk(o~R@ATp_f&}r;7=O`hVq9h1i?KDvsTikY{2k+;7<(Bp
zVr+|XagMzs#=kKbH@0gmv)FcuxjX6mH@yGITX}aEgTQBkg)G^v%lE_>x!GoRe~beh
zbsqafjDs-_#W)t@I9+~^bvVWmO^_~pB>m`J`p4R$0QW9VCrD>J$ynFQd$74^m2N-&
zgL@{%*%;?&$pxKx%kA^Da55Q#8`|9}B=dC>{({NFV#`qDk{<hI1{T<l3^lIBxX$5M
zM*hmU5#wfz?jwzi%DBZqL?(-?Y_#Wb_N)^k)yE^Y{=iPFjP%MNv9yds<Ub&0uZ$d(
zwa*rI9_el5tc+Zhkz1Ga{6DU~1KNoy+#0T%BE9$C+a!}rE^^0Yl1!4B$s`oTh6;*+
z4HZNXkgA}7NRw^>=|!ptB1Jk#ks=_7s5DU#L_iQ!<lp)3%Uf^#Yn`>%KKuJlFS&Q-
z%*=n@cl%`iJuenSaZ!}o1sN?BMCl;7R4WHjCWx{@aOqv&;42rzV{6q4LF{_gs|^m6
z5Au&g-?%S*6-B8e=)0xRdZVs-e|NQ75Y>a|8br4sY6MX;2s4OS5VeA+9fTT$FNiup
zK0>874x&jAb%UrEM8&I0{U90!vFTa0fkabR6^d7$RU3&&viFRyX^>wc(^~L@j?8nO
z+B^t~4E>g?3hP|L;}P@<-l?cl@du#=(K3j8g5WPEFU#;ML?8%$y|v(rzMG?RdYtsO
z3Sxa{mEVcfgLrSD`eIPM`K|BXAdDcwL68T72nm_`SH=_x;@h%nG>G1x`>Ivax77AC
z<W<t+K_r5BIEY7ru!69IXdOhGARG?aV)a@rU#EF$G6*+__LcNh5a}Ssv{#?5;Y;1^
z>pfUIy;yBa|DCGm8>PLFc7pc>alep(j!NqTK|ILH&r}`?;`h>8;qyw5N;;z*xVe3$
zb`0W+htz=&s*h&6T74{t$Ae&$p+z;VQxH#x!;_pa?2udP=t_F$AWqcIdupNDucW_A
z5E(qEJ{`m}K@1CGco5G9@mvtE1u-Cq=Y!}T#4Buj5HAGrVh}(4qxJ~m_0k1@U!e|b
z;eRQJ<|Wks9`^MNVn+iX!^=W?32t7eB#Zf4-BgW3zCJ;`8pOOoN?*Z#f{gYT(&9_+
zz#s-O=OEq)f~k0wfOm)nvy<0&hXgT{vuL-E;qu?=iY99BIZDaT0#(|oZwB#J5ObMH
z5F^<0L5vMzTo9vzSWrnHJzhOIMtwVo(Hx^|{&zS8Ldf&U)=K*LAU^y<na;@&#DpNG
z#?^O&*z;HB66-`+GLr-+2Qftm^{GKj6Yf^Xtfu!l2ezqy_EkT*p1Jz>0W-{c&In>=
zmVYE<mf-9l=4AC|Z>sZIv6H@qK`aWQRcUQO5PyH;`=Gvm<pOna5KB1<oz#!{>$X5$
zB1rPbuw34-TNcD}u4Uc_tm0$zlOR?F5eXq0!lyy3<}?oCRuF4gRuIQIlY>|r#OFaA
z3gYV^)^RNau_cJD{JHGpJ6X~H&LL$(5F0sdxDtct_@TNvh?AA{dDC(Y#m^AFqHYUf
zdl1ov>K=}A5IZ?rX8LvsIel2YcwG7Ipzq5db_X-Jz4#v@mFt!Cy^>^K5MKqcUpR9(
zDC7Wlp~^a=XWv$chl4m0#IYbgJ>f63M15|Nax{o<Si|~ixysss?Fz4Ke7Qj3ZR-;(
zB8YQAUZB89c3n^Pdrr|H7QXJAUfA~|hwPSmn)5lDcZwU-Ja6;Lx;r}eOc0gp`p$AD
zRMx8o{GBW7=Y#k;h$}%{4dRy|ehuQcATF#|@*?Vozk0cWU!d4f<#o1;L0k%=e`Wpm
zATD!(RMV!s>0|WAT;CrO9TD(d3xZ!exE{>>HTx%bfSP`WawnA=T(keEe+9umaT&<}
z4&onfl_As#;ol%`b2AU2a0vgg31zf9LGWH)?<#7;l4^kvcrB=4DD&?dLynNULf{=G
z2q!5LLeUT^hfpPiyF(}zLg^67guvV1#Y36v*d;?KA<^9zawt+MB|2}zl?`Fm2(^3&
z6+$Q%!uirF!<5Q;#Sk`(P%DLSpt8QIvVQh^-^F(V7b@$+{67BsP&I^VAyg0HkC^|7
z)!v#R)Cl3{(t%eh`v!jPqf#q`o#z#jx*^mHAvc7UA*^2Et<QvSsLeuX5W-XAl!hTR
z3ZZcbO+siI!qj^M42k`|qE+;K{9O+;4`qJiT7)p7ld1^!2vYQhpbGa1@-!PoO)wzH
z=qG94Jt4FT;ocB}A>@T{cDUAZikEw-9zxZ-JyYLNh#~PeLO6UX^EWUj07+P)PnfD1
zLM((QL+BhrJcL9D4~oAPf*nFCgmefFTk*Ir8G_4!7~tcT;d)hc-snGF#M5Ah(wc)6
z!u=sc1}gC?`o4~8TlPQ|eR&&SyAbXRfn?`)AF)0Evc2tnKyXkMoj=eIh463)kA%=6
zghxYoECk;08vBX5`@z7vp~{(}>f<3iJ6^eYRp}VQqV{U15S|EOb`_nxXI($>sSvt^
zFeHSbA#@F)TL|4lc!8sKRIPhXVOKmI!ZXZ-qqEQZ9Luu(MK7!5&vR;RP{!5KUJT)-
z5PF61N+@%WICB>`gr1xOg;d_ydO3u>zbJbadtc$>H6g68q7M%7VRoIQPYADyLf%(M
zzYzKhc};LY);dtgAeR22kItuW`ihoSUk~Ap5JrXYb_l~l7#_l#TqgUyJYF()gm3w9
zg_nQd3ZX!KZG<4nNRGvLg``34ywM?y4`D(G?{Ea``FPoIOek~laID}s?v`T}Mk^lm
zy&J+<{=FK)pbvA`jmssU#K!VY@p)xx2-CQ%3=}sq6Kr}2OG8)|!h13Y-WU8Jgbzcw
zSw)`_!u$|;?~f-6W-`xf>PK8+Lda)x-TmjCBhk4b%oEaPsgI@wAuQzZaq?8vd2i_B
z5Eh62=a$fz+UgIbv?U>a6wgnxJcJeO@DTP%(JMpPD&&(8R<T7~Xk5G@Yz$!yb&mTa
zh5ssYo~&gNMb&j7kbf@7i@EDXq;m6V_03n+XC|s&gs>@u%^`fd-`8uKx+Mhuz||V1
z^qb*3)>GZa&4**!SKSf9#ii;_;VsJhcX3?C`@RfecL;l!c_|;mw?C>3UpoG;Lf9X|
zZ%o21C4_?^oCx8&5Dta#bqLRw_8jM03!%k)^=Js+gm5H;nq^epO-NVOyX;Vov1w2H
zZoH-X#;7AdQ@#yBIjXQ$gFWiW5WWxL*AOm*@Iwe&-c(P8a5{t^IeZ`Zc;EAfn%Wtz
zdTvncz>2=^RrPZr{KUPEJu^TXR#oSTtXWlc>Xonieqj#m|8DBHRrPfP72caZ$*(wE
z@?8qy_YiKgjUim-z8AuuAzbHTFQt0QX;-+uO8Ty{&wc)DY~8=!Kdb7*Hj9)SA>0a~
z_eO<n{EIV08hh?zmC?VsClvGlBlxc%|0Sn#hcnp#3=}eOa;93)z^Dbjg{8C{1HNl2
z!(I7gr&8F!smE0A8w>ONW?C&`ps0bn4V0~>_tex*U-(*AR!bNtX<&kZcMX&>P};!5
z1|Bi^xjmFM;4$DeP|iSk162)FGf=@mMFW)$R59@TE^j3R?W*bDKCLR%^w*lHJ*w$B
zA1lMQ`1`C?svD?bpn-vg25K7Y6Mr28Z#({426E2(Y8z;I)i=7DPONL7o`K1WmHPh&
zdGo#TFTO?wni^<k;7&)iv4JLRI3HzSsV(W@t2i#V-(ht@HNClk76udpbE<1Q9#h+1
zQHUx#!GLKXX25SiGtkOFo`HaYDSSl0z}iRDT!SxHR2d$g?7N3euC6kqW-GdZdkt7y
z{4X!^1`UJ^M2yV6GsD2<YC7+-@fV*YY+%}CFG<wE%JoXyeO_g_8aI$I@SuT*SnURW
z%Rt&dYXi0c$3W76Yv6P>J!RnUw(7WYnXsUqM(hY*8v|_(+;5;gd)2^w5?rtPzyOt)
zPYP7mA7IXvwcP4@wdy*_)jzyr?^Cy52@F4{b};a$f#(c7Z{RTlj~nP>psRt7209sd
z!oZUTUVqT{NN0^#&&sY)IvbfAz8`E>rv9arFCTb{16@9_ezUI|Yf@c*#=x@%o@QlU
zS9uPNXVUoU!|?@F{=NN8XSKV57YqzEFv!4*23|7I%fKrJ!mGXC4ODs<=xJo`q!in&
zzRcd9qc9A5)YscU9|Kq7>ODo(fdy4wCwbLCUjzL(**5z68@OCh<#iQulGh9jU>&X~
z<ix=Sh8P%b;7vBLy3ULIL;0A`a^-bFk~f456CAbN_ZBBW+Bb@`&cF}VeIo=%3Vtyy
zceDXsX&+-?tdY5N@Q#6_uWKZnhvSUQMac0o8%Y=_PBbvdz%Bz{Qs*o(u!Qr+z*J5H
z&OHNj4NN!io`DYxe8{!-yV|RQw*O3l_YJIhQhlqs{!}@Ca;`eVz)S;&E~y_Gm}OwL
z@QT-b=>xu%cf4H4f3@_@Gce!4Vgnx=*t$>McTrtnU?EGNrYthh<2SYMDKGhd%Y1Wq
z+jOf^zOl-!c$tCa1~wY_!oUj7Ndp@={U)lPutNrAt`&b~V3mPSna^!?HJ9^9-x}7T
zy56+7U#q84<Zt>~>ifK(8(1fVe7%qsSG;>l`sdV9H*pmh*kNF&fi0X}g?#^v4%Afq
zJV?3K0CAgv?Lx?VeXibrz{|5qysxn{CwI4jJqFGiIA>t5fqe#!u-grMWnjMnp26Ua
z<^u)}asjsR9U7K<h@=0H|1c-mHRWseMymkB)8+j)qP}Jk|2GDX8Ti(~2?N2B>Tyo*
zg1+bH`N-XczM?DD?>Oz}si!znZz?C5zYy{t4E)ILYlTWqJk7cHsgL1|kO#N>ell?0
zz;6aF8u;13F9v=!aDjW^0q-2I`cpA=RZ~ANHgX01UD3C)mG2UB<J9FYXQ0ma>W3wK
z&(~9VLh@QwjVEUwn4(ni`mY)IleLZGL>$)*+~BSlMXf0QGH{a#!?+U0Ep7{(JYmcT
z;~xY6a<+%@W*D~({AZv|7;VG2W1v77(QxKv4h6%=3FC|EdTyB4Y5?JC7=^+p97ZFF
z773$h7}dj=`<-&P;76rA6~ZVMM)5F8gi$gKD&+)Ag;6?;GJ+Htn5wKqN%EuR!=OT5
zF^o!*VdXHYic&?8Inbfn|KT;nt!5at!l)faoiOT!Q9q2j;=`=+lQ30-Y^sJ?l3y0v
z*f@+P(xRq<RGNj+TzCsXMbIPY735Q^bYt*I)E|Z>Bp^tgMYqiIdxW$KBQLAyLhcm|
z3WfxYFv3D2g3N~njXdl%!yv{4<6$I(Sc0~oBbXF)1?is>k``<o&b;-GV!JTz3!_IE
zJ;S&^jP@MFW!@LVnTPBi2;=cEzN@a2KPbvWVLTkhBVlxqK>bnay^O<L?_=V_mTu|o
z=@<sFQy5POc`}U7VLT<A`ZHm45#BYcbPMBY;UkyaMF)mwCHkD;^Mc*OctObR>N*|x
znCDAUI$xyrau~hB7#hawVZ0K?us@W(Y)&yx?=bpE^wlsJs587VTj?j({(`TCF(8bA
zVf359zb%y^VGIgmu;iStutg+Pn(k7n)zGyX`WrGF!@|fPm$$+g5yq%6-VWofQl57T
zsUJ=7jpX>+IgE}DqhcA)yJ1WW<HauOJM4$&yko)`8^*XW#!HmSgfJ%eXhy>D@^&Rz
zL!ZRXAE^AbNtqnRlrXy1(5Hs+K8N6fcUl<J!+1}`&uZugYUo31=pQhM^_eX``pje#
z!uTYNRbk8uV|Exz!uU8xn<GfFkc&n5yfEeqSrA4GJ7?P}ZyiDUEDB?BzJE3qO-qF@
z6I`CvSA?-rc<U!UO!#RStHbyvjALP}3FEUcc80MljJ4vkK8y`vKHBO1JdAZhn1nfR
zWXE!d!`K?eCh^=XRr=rh<X3N77~8|x!3A#T<SWE{pD)AM9mc^h4u!ENjJ;v(595Fo
zu}`x4O0xa`QZdT#br^@kI1<KD@yr*A%$e0AAs!Fo+c16!<JT}waDc)%FPWbV<NGj9
zhjAv1A0+uHK_>Z;U2#|;VPIC|XQk#piGEIyT|q1P&r-d7PvQlMUX&t!lMM4cFNN{D
zh>Ttq!kKn8jBBz6D@E~V7}vviHiG9OxDm!*VR$0&MsSmxe;5@as2IWD-2AzjM^Gq&
zkB<2M4Wob%^4pv|M|}VBS3t=AGs+hg{RPFEll8eP0*d9|_7#qx*VaI>2#O0S5<yWR
zqt*uQ&XN*BN=HDk{cK;!2ufv5Oj{;`vJp@(Cs;n~7FnP^zAaEGg31xpkDx&WpI!`9
ziJ(RV_j-Ig)&{CZK&%!)bs-bC2Ix>Tf?5&Oj^N{86^6P(>IgCwm3qSI+%SS)YUoWP
zSooF7&?th&!YMWp6B|ywnTX8=TL>x<*d2T{sS)@hh(!>Oz#oAY!Q`m_-UtHHx_csE
z59CU7*xr^BWqVtRHBXRHU0ThaVTQp7*y>OOMg(DUDUM~C5k!Tjrf14!4buyJi3qF+
z9*W>$)+Yidf;Yw~_eYS7pm0q+9YJd$u3##HhBfuc+X6JTiJ)x+?L;S`lCR$<JW*3;
zKJ6oTKr(zVA3qOJd?bPn5j+_|=LjCn_Haibk45l!R^gy@68?lByS+<Iojw0l1l=Oo
zI3hDHUBuK?hLX{ENzc<_dM1MY+X77Td<5Mi_$q?^5xfw=i)?-biz0X_f*ui!k6=Os
zJtKHIg5eRo$<B=6l?YyoU_b=DBj{@7z8XQ_2!__w`$W)ZiFZ~_J-RK>PfYy<8Kw27
zdvgayFo>QJye^)DBN!qi-+>9~!wlcxC~ON16B84XQ+z9e5t7^32u5<OBX~y~^4;E!
zV6;S;1M^`um}E=@>xDBqPSVnu*TCP6;DZQ0j9_8}lQ@?mm=ej{YMCCv)Ck_MtWA?>
zw<;P%hJ5lKO`=m_CNm<K8Nr+g=1OfpieOd*vxT#`mpl3NUlkJe!#u9#2<A)m3LVX1
zbEq$nDEVRz5J!Z|Jc2*QDoY|*#RV9_(g>DCkT+9V9>Gc>D+FuK$)U*biTMBJ_pcW6
zx!@YX&ji;B`mQO=cAapN^+GmeO`Eu=JE_|u*dD>=2zaQH{#&@*t|?muY26XQ&Ioo#
zuqT3D;{T-}P4xNaNDfnx|MGp#Ua8?ev9g8~4@7V<f-@1Ejo?rO$2Ke95F_|Hf^n9Q
z(ZdlO5q?yx$7|};k4NyW)bPg$PDq~2?WB<JBFOK7@3Xz}Lsp^BsR&MI{poftf}bMD
ziQ=v(&PVWb1lPGybI;+7_4pWmi{Mw`7X;7P{(Su+cebAcmm>I`mACzuxl#NaVE7|~
zD_MS3$Th(~#f=Vsar2Mh-w19?hPSx?vx~AtuoULToaz6chy|jVn%oiIac&^L^n%e$
zapb&(Tqug-QIv>+)2VPYvo4B7Q6!3@QQRHPEVuj_MV$_uX2g<Fl!~HU6y>8R9Yq;Q
zOXqxldX|mit<oM6h6<8rMHVD8lgT+V`FCdJD5^v=q^e*w!RmrF1Zf%(%c&hjohZ7*
z&^3m-QPhiKa1=wLs2@dxDB4ERE{cXxG>T%$N^dfX#!)nhBEmwWXd1=!nz|mvy-_ra
zqInc8qEHx}qXwezMBx?gk3tnf-6y1YEuFlvpcX~WRd1q}o*PBWDDH`Z{Ha<xt*zK~
zwRDC&A!UwwfBoDSjAC84yTVbBhXf5l{>1a$JN(O^?|d+$*wRG%=QHK`>#br@#F=Ll
z<d&c#XbTRkrBA7))8s}oFJ(#zrUhFIwh{EU&b(Ouz9{aGqFWSCN6|itino+U*~x_i
z4+wuy@S!Lkj^YvF9R&FfI(qW+e8k71c=fXP@hCb*QS5PFrzko{@l+H~M6sflPUT6_
zzY^Xhimp*yo$dLhmR`8FPEx0~{tVZ`8UKq>ycET=!k=S9gmh=NGrhDjydVmDqem1y
zqj)Wf@$kGHMK4ZQ;f%f_q)!yRh49666kp9+_1Ze4{Uq97u)Qb)q8OO<85G4UA`Xq>
zb^bMF;<|}9q8Jv1V<Kr{coc6&QNu({6K_Q^B8oXt%#C7X6r(s{lD-*HyiHzPe<zAD
zQH+ivw%yCnWw|moig8iA7sdN5E{X|J{>^|XToj)x?+Q+gVqYPR(Mb}0Lip4urb+b3
zF^$3R$%N@qejPRAIk&d{K{WFYnH_7rA95nq)=BspkjG|uW=8Q*6tki@SX;j=VRjTH
z>ty)6D5}=<Eso;jXy%^6{3sSgu`r57Q9QXn@I!9y19kLfb@a};xdT^ZZZ0p0Vrdl1
zqFBz!!^z3%x5B$3im#(M9L35gK8a$Lh+jmpDT+^{SRKV0QPv55Cb(9RX+MwRkL6yH
z^`dOZ>KmizUPq_CnG-&WFQeEU#a6Ly7u=Th98*W%k>xw1*p=lxEx9Ml_Y2u8xKHq_
zXy$Al^FJWbgMy46ie^sckQ@=^yR3dx$Tv|O6LLJOe=Fof6mJYtnCfH{-$(I7)_OLI
zABCS1Je}3gu*bG${LhK<li>NR_2(#N<f*h?5amzqMM8dy;$jq+qWE2+*RuYXh5Ql4
zm8^0#ioMZH4h$=AXYdABjR~0eD~g*@+{$|X7scPg{}KE*tKSyFW2;PiM|c4<Gu8zK
zb4;|5%&8PIQQSlc(F>a>BBZF`-GcNfX2OyFDQTjVh?Py07E(UzQ$|Qx!Ez=(meFV0
z3MMLMeJYvoN|mTr5wWU?YFTS_lXo04t*&KaazbllqOqBo)wNB&a6Y$=iMl5039m2M
zP_O~l^)8JLtvC5!(6lBdnwkij2$^VRqPYpb3C-k7o^xB6P)vAC?5U#{^JxpGXkHUO
z6HG|1n)rEIM*Ojkexr^aFp+EG9uuuhv^24JlJ>Q&6{)NDo}zu}%gr-!d#5(_ymqe%
zT{xp%1G!Wphc$x*eHMtBh?@wTh?t0){Ahw^nwWK1BWeCxVD@B<eA0kG!h~(2z!A;j
z;2zNy9@1|13;cXu`?O!cHIZUhn3!TB&3c-6*+efBZA`Q^(Zxhp6YWggXW~H<51F{%
zM0*owHYyL8cygon!~zd@=Gt}jH48kgXL}wt@ra2ICLU!EEb#CvjjihH&OFc1*`9Z2
zdLCn6E%7|g%<Jk59Zhr+{zO)J(nRMhe@aN#x_UPgPn+m&;sq1Wn0VI2b0(fQ@mgJd
z)kWo<x;iVv&}y+~q3{<?ykw$>iJnr=`yUMqpX;GRop~Ns_}FYuV4>#~6TMB0G%?CV
z9}}-~d`%29(N~fTHSxNTekS^J0?hF+yk=rRmJbv%$i(2RGDOJEy82IxJm+S4zOAcY
zsjCk+@g{eE6C=#b580Z<nQGLW;VD*6@Bfi!@w`m*Z4;wSj5jgC#5*R&m>6qfoQbM4
zGggL+3o_lC&)LK8nwV%}l2otJf{c&5@P9nn$x}^CGqKjh=O(6`c+bQ_6N^l|Z{h<J
zvrWt~@u8%hY2qUj?7$gJA~j)0F}GP_tt2_mH8D@33k2D9beL~qtMn(E$>?G(LlY}a
zd}3mWiKQl%i}NzUDT^{bC-VEhp1y(;zTW?|WtEB5Cf1nvR6L8%&v^dyQ3e@4<GPSq
ztuwLS#6c5>Ol&Z*(Zp^}EfZfzs!b*~vt1u~?0WhZQTo=%<giuvHdbkoXS?7IK}L6)
z*p=m9ns}m~PI0e^eUfCq;8%jHyQw8)$PP%fw(zfoUllxT;)sv}!+k9DsEKbRdd$Re
z6W^LR!P+kLTrlySiIXPInmA|Tdl9Lh67qxKk0$!n(<z>o=$Wh!#h<eLXCdbW=}+fh
zO#GU)j;W{rCj6p_OG17(@rQ{kCN5`vX4TX4c|Kl~+GcvYo_>Qn12>ry-r6zTG;xbN
zb_^wA_}j!kChm^$*r)n09ZcL617i5k#2pg_W7u0yAG=H;G8BlRR%4AMNAwOS0{PKG
z5-l1-;TVbtAF#noH(IHX7nA(?vS^l4GKLwyHY*oH!TNeB;iU!3#85T{{;hJpp3dvK
z^eG=hg%~Qvu+!42#!xMWO2QefETl>dwd?DQMt1v*`g-*kYQ*r8rPUO@Rt(fT*4G<s
zRx4RNx{SIp)Qh2h47{M)B8CPr@G5Kb7>*uP8wzhEym1UX_(xL{5t|A&6J%%7M1Lg)
zPYm7|)EL^ua9<3*7-kMrA~8f`@C(-j12N<ZX&J-4Lg;pnkXC|uf_e;V4)|yaN;D*B
z2vQ8kFtEN(Vv1r5#suS8pF|9n@N?4?dO9&AV{o(9)<RN(X+b`IPPaBOwEaKg{lXuM
z;qe&S3x7cHK|%UIB;?^39ud+Zt3MjU>Gw1BXW;V`9YyaX_(ay{Ng<sDpAuZUS?w0X
z(=i;3;ZO|E#PDnk@5S(b49~^zJO_PP?$8*z$M8Z7{bJ}J!;2i^7+#5?cMLsZcsM8U
zatwtk1xR{Q-{=3NV1UtHOj0%QUVVK<mB6xH{tHC{eK<_J{I7B<vRkSLiq{GRYXx45
z!M>x#3j_vnqQ>y)7yf~QB)NP1EPZecL!=t5x&}V#8hAa1HzYbNh7mE0jA3{TZ;Ha-
zU;Z4w#Zfq<eNtZ^6~o&xjE`Xg|NWe*jgDb#3`Ztv@5E4D$sH5pmwB~alQjO}F)oH)
zDSx}7+T|VEyD?0RVG3JRRGSpTTb|s>G4RiZQC@9deSN|-t*NF>jbTy|?Mi)pS`5=^
zouburG~x#_d>F$bE}2`(43>UIo5@mQ=<rS8rL)?96SY|}I4yGLa&=GCX2&o`qWyMe
zOk<{K^J17E!-5#9Ox2o9*A~V=u~-BBfy3J37(R|+NeoM4*c`)_7?#DbJchL~d>+G!
z7*<N5t7G^?$SU?BmvhAXr0eCsX<W{%(w~7=Yhw5;hTTV+hwC>#`Its=U5rn2XDa-K
z;0D2sf=pieQYPUhiIRjO&9}y|ErvbZWMbGZ`py`33E2@tqXs(NzLe<hY${)O55;!(
zwcIDle!;J@R-=J_Aj`X-YxZ>vhhumxjsbBT;cmb^B#vkt-^6e%hT?IQh~sz+-^Or*
z+ei#2V)!nGpJVui>!pEyGKL>xI3@gh!5;))YM`Hv;Y<uavAdE1id4>u>0H)<$!R(t
z!)PJD#&98q%Q2p8#BVXoYoK2eY}Gt)k)6;$FVH+d{5^&r8t5J;a3uzsuEp?Y3|ECS
zO8vT|q9;WrVLmrwxW)aXAzvblzhn3(hC4LH@ox+*=V=w@YyWYG_vPH?_B&sD@16iT
z^@8zCG)FMsjnTW}nI!Zn6i4AW#<fw4#BsL}@}ffiZlIGFi{q1qxh%9~9Hrt=;_$>#
zI*u}N)QqE69A)Du7supbTD3UJvy_H<#W*SnsSt<SP^VHOu2qhsN*wpZwX{S@s!Eiv
zZ)P>B$N4&}Kn+1wtacoA;%FX6i#X~^<_+R#7)QN0>Pxg+L!E(zGBk>#X&lYsXe=fw
zO@s_-s53D7p5WSsI&&j_-B9<kVwuv>DvssDG+!LKLi}-PoI=AiiUA=P8|wMdmT|aU
za;WFUp~n%7BNWF+`*LbD58N9^(MEdXMmo`8VC5U-l7!=UOcZvw8AmLRhvRr8j(8l2
zIL@#4wvNN1Xyzv4m^fFl<LKK+XK)y8q<@3FWB2>qIA)ggq~b^mp}4Y<-X@N=>>oF;
zT^vK3YV9Sr`{KA?qSSjV)u=xZ$Ah9gl+`Joisp8R<Ec2h#PKKxeV)SbSR9XMc}F3g
z;&?*HlW{N!eL72&U(4(oN4Ge7#L+X3r{j1gju+zi{ZgxE1)mpuPVkkBUh3WBAUW7b
zCuew(wbBAF#qozIFUQe~4bS%%>?7Daj*^WtN%Av!H4f&$B>m#(FAhz_N^xKugW^~a
z$HF)UvlAvOZ^tn@jv;Jy9L`nk^*G*&V?-QpNOYJW_2F^6ndM!tYE(u_^zv1$#Z_%o
z9G~x3n5xS%?VUI##PP21F>#C)GER`z@j{rx#5g9!@qQd1NHr#NFS@Eti(`sJS+S{c
z)LyEQOpjyg741E7ppWOCz=zD_iZ&~b*>RYS^%)#)PB4y9W4-4r_0`5Y#V&2~=7@D(
z9CPX4CXf2}%QTwiOLBTHieqscJL1?G$H#FjiDPpd>tEBB#<7g^pN)#6YA@e%uIo5f
z#jzreBK`oCm7<e>8prB5J`<hM(4L$%Sx&cnKB2L`jytLv*vQP|xNm#lLLjh#z0_DI
zr~XA8o5bPmHi4Cm^(`El+`v}BZGzhc_XGm9wg+~_@nswbIK-Tp^OW6j>=WYg1@^?T
zms2q}@QW`nEjK{xS8?nYEBWf7+MzgJZmcmJWs@6gU&nDcs~iz!e`Ecdta6N15`M9<
z&LrQ(aWal?ZJe<2eH=fqH!Q5Q@FV9u`zL`_37n4O43~TY_a<;Qj&s}w6DXa)Py9{s
zs+Twwx%#+@M=1<H$MH*+{~E^y;lBy;z{bTmrf*T{cA1kuj@xnk7w0)QEIh5;;B0TA
zlU$ACnkat?UKgZZ>lgJe@wq8T=Ue<05I%d4@(+Ings&MEVDwHL1ro5PE5#C-$Lb3v
zP*@0gj*z<&fDrl=$`V?O2rnvlw;&(DFD_Y?5G*N}pQ=m(WfSlu@Zf(cPxh8epk@NK
z5-6WQg#@;3_f|}xN`hxIe3c}sG|?+3K%|Lc)dZ@EwYp#pLF%;DP9U^IWoVi}odoJ8
zP*0SGg7vf31_?|%m~mrhlt5$An<TJzwL+!UMIW(Q0?o7jErci>J3FUvL7z7PH31&Z
z_a%^<K+6RD3A8A$Y9f*ZBua;SvZR%ms8h@nv415k$ZQknkwDJ`j0D07bV%UQ1R@Dc
zKdyKeDXkNT3O5soB@h?x2+|=T#7dz5CB+s#XNZzaz!jcKAT5MeIzRiIN^Fxr+XR?%
zJNEWz<)H-bOW^(l+9z;fWv0Xjg*+fg2R^a;b)IkQY31Prh>s*trk_gjfz`@m2|SrV
z=LE<f7wjn5N$?5Ifm;eqPbJVLf#(u<K7p=cdPb0@ZbF_G%y)kF|0vxPctN6kISHK^
zUQFO6Hnx(+!05{f^h)5}1STf%N&>wTcq4&f33MBx^hsbKC(Icy`Kt-^6|tXSf5F!T
z%U|>j5OUuaemW0IV6dbbB1mPZkk_dj8lw!u6Bw1XzA5A_!4ZNZ1s7EEy`8{l;qM5J
zPhgCYu~~<42|g_5%g=KHd-CvI<Q$+$3A~rU`w3pm1m6ubC4s4&s|jR=FTqdvsTA)R
z+B20^jy3E5fn+#`qj}Nyq2P=JW(xU8aF*a~aib4QnVZ181m?2>A}$k$g$XPcLZ3wm
z(4U0i;{=unXTqgY=Tql0{jglpu1H{|So7=uX#%Uc?kv=`uqJ`e68JfRUlPbu)U^rh
zOW>;nK2Km>0_zi)P~P)J0-HFmhA0~(x-o(8XQ<RSC$J@fU5U&yZnSO{>ke)O32Yah
z@0M@fnZVrzRC0zdCCTmt_6VV}mn-ydg=BvM2NL*>(=vgB3GjjXZv;sW3He&^Z~{lN
z`cc+=ib@BDV<H|G{8sRUVCyFO_leAFvd##S{E)zpS$>MY0$E<iQE5G!z`3mQQv&C+
zoSWOPTy$)Ug<=+dOW<Mx|0QrIflCSep1@6xKAW&oxtze&1g<6UheWAdNuYHyhlJrz
z5pN`LJ%Lm*XI;=w@vp2WqkjwkSMZ;#o}c`-q@sTTE3=3g3Rx(a<vAAa5)MI*`1QY)
z!orIP78Ts+<S^l~ZEA4~6)aS=KwiQ^NeiWfm$p#W!p*bl+AV4sQAijqCt`U)CSj;#
zp{6)gwot`FRpHdD3#n#-2^p=C)tL#SwJg-mD$`B1o`w1rkA<L{g$5QHT1Z&1EHtvv
z*n;1JW}yjxyGJP=!KN1a{jD^!&|F9h3ySC$ogC_$42?)<uZXIJB~Fe{JZTD8$h8o*
z5V6qG!ad>>w9raOo&{YznS{>F_TFqlX2=kds3FdDpc1tZ%SKHh`ZhH#gvnVY+k#`^
zJ`49-c;*>3X`zh}S1=`*w$NG#uf;LYjiIe5?JUqrkxz@XxA3UNw<O^K3lB1%Man}Q
zsq*S077E?;J}jJ@Ka~z*C4XGRP8Oc9&{4z=e=B$0QJ)l@Zckb0ES#yB2~Axr^t>D(
zd72fl@V<o)EIe!BISX%D7-8Xg3*9aBvGA$|J`V5#{Vlv~;YEuV`ZCJA-@HAt<fEm&
zUaYYEI`p>iig5bmD<pl{r51)*7;2%vh1V<$rrY=G0Kr;eZIF<G`O)GYn)1ax|EU|x
z_+Pg$%))RBZ&*BCtS!B+(1GEl>%P%#eQ%1$H8s-0C<{|8Z0M=JZDF*92^QY9aHEF*
z9SdVEo-N7nF>GcNJ)ewhqK_AG?=l}n29k*uCW*M-uhL<%1&Sn7EzD}7PqQ%H!h0M|
zS?pZklSA68qm&OV%&@@PF0nAv!bcVsvahcDW(l&M^Tj$_aE^#`*$)Ghd8}$%9|_Yg
zu)rw!B5BlOasF7GDbj7JSn0XU!gA5`{Xem=%EEpd2W)(5VYP*UHU`;PW8pIkQ5&X>
zwH7|N@VAA3EUe=ktE29-@Rf!2>@gN(;R_4fE$pzc$--s}+bkSwqOXi;8=L4`EZo}a
zXOgXwaMmdwO}kwGogMz27KnQ->=Hu$rI6i%djyYtrCe>I)3o2h0So6W{AA&vg+mrj
zSoqGu*A@<2SenlLM(~J*qZV2;)k`<kZx+uZNjKGxSvYRtTW)|qXd{~Hl}-dmo^7h1
zwD7%!Qx;B(=?4p2o9ayRqeSU5r>Rc-uBm>;!dVN<^Hx)xWz}q!aXZg_o~zix&lW$n
z3!_=a^s9vnTus86mTs3U{BGe-3)d}Nw(y6AD;BPDGB?vFHPiLhxyvNCYZh1>%VPMd
znSR5<U))QX<QJ_6UmaX1mqoMYjNTIQmuC9tuf6|TC~D(w8@Da|#~!m#z(x@p*S7cy
z+St)2aF-3($gx4^UaP#n_6g+kLN@+9TYzF=G2PW%Kff)&RK;u*x6#N(V;d!Gl(bRR
zMl~CyY<~9{<!qF<@t`MA#zt8i;pTd=4Qhkt`kgK+Ns)nC1sj!ZRIyRfM#ttlLnRxp
zcmgE76+hhuNRsL{YS=spjJh^z+NdSYwQWoi>+<G0^CV}gdN%6YXkeqEjlE($E2e@i
z^v09aO|`Y^E%YWfn%c;<(b7gU8_jL_ZD=+EE%X*P6dN8JEIPeYVTP>0!!2~L4b=vT
zPmm-r%EuA|OeM~24n6O&(aJ{1hGFw$ICLBL+6b~mE%XU3GHquPR&_}WeQ%3Q&Sghx
zVfMeGN7z3jwO?E4?4rhs9<%YxrGRb2u@Sf7tDl>&@#-<v5+vE&MNQgx_Eey?jW#x1
z;VD6iX(4Af<+QcY&c^dLy4$$V#{D*)w9(l{dm9hfeD)R{I654)3V9C;J|q}ZbSey;
z6#d2?^-&xDr1Lu2c+5s(v+r?1l8!?9iO&<v_GxXZqCaJ$i;bsQf9?;8-j%b$qj$6M
zwW42AbYe4)e*2n_D?Q=SpSAIvjcz#}2IljEjThNhHhSB5$wm(eFWcy8<F$4^h8nlk
zE*_nvmyN+f-t*{v*e5pn+2}8BeI-@Cb0(FD0|c4mGmrj_NB_g454JJH#snMh+8AnQ
zju4C#eBH(yHij{`in(vu7};AJF8HQk8Lv)d1beTy_F`|1IEu5ytG_Kc+QvIJ#@HCk
zN#fPVb0&E8-90pxJB}0hwn{>MqT-*(scU17lsK7t=GnkvuRc@A6dO}*OcOrc#)mel
z4++rWJyG7b@qrL3eZ2aNtaXA{XAU3PAkGq;%{A3mV|1>Kc{b+TSioJHCE8eMW08$z
zHkQ-V#;!vF&cG!$K9-64xi_;sm&)SeyIHsdR@mUw{lvy98!Lr#@^kibCV$Gc)?8n0
zgQ>oIC^vX-?s2camQfp9Y;3i$PS(pt8(-L1Z)1aGd&8TV{M;5cao<of>teGFDjV+)
zFbC?}Y;0%6Y<$U0$wnnr-<d7<9yPN@?pO8QHul)qXX7hLyI0l`vue7|%Q~}Bvjzoj
z4GJ{e6u5ayc}dj|+PL|*=Mbl&jqwkw<P3*x9I<iK#y2*O**Gpf)O#&cN^DZ-#z6j^
z&2QObOA1?4_}<139D*cbN&INz6!+2--Ul3<wt2b|sso>cvo_Azc#8+}9bQAgd2W&p
zN;vr0#xL}@@t=)fZCtSN7fZD9n~jU?qG`TAZCn!ahv4smmu*D8S82`1D>km$ph)Ff
z)<k|?lpD;vv&JaHEv{S<{}!Y|>%Un(eoW3C8wH$<e^Cbo9pnfv?BFgT)C)O)a2Cxd
zIa84oagbjS`Q74BEUT1sP|87F2lX73c2LGaO(#?TvJT2QsN|rsgYu$O5TuFO5-VoQ
zs*=^K3#sa$nh=&nw;IB!<fp3TptdM=1S!%~UpSqcIcVUZp+p-wXp+?%JIL=k`ZUdE
z)m*GC94P<C$_)9WkJrhZnc?#neg~R^whr2{m(KVD4$=-<JIHm=(!o6rS~&<aAF<{+
z(1nap_572K_ewPAASA>P<hN*P<%j8`4qOK*2d3yT!MI?;f#tv!?g);J1ehu*eBGK%
z4*VKRpBqhYl+AoVv*l!kk1}OM2QyWDgR0->;C=_~9o$j%Hm@lc2NyW0>fILw7(MxG
zvj-hK<ltckk2u)rV3&gq4jy$d-NAbf9&_-xgWeAMu)R&Sjt-s^Lf*;26Aqqq(AmLL
z4xY~HT^w}F@~#fnx67e31IaU4{aGQuC32p3(A~ic?8C`Q4-sE<@REay$CU!bH3kxf
zo??30K`#fdIH)j4IjZ?;M{{oHXs<fx>tK|_r^3<CL4OBtIT+#KwQN~$I2hnypo2jU
z28%e<!4N0&h}@`DrfyB1^D?*B9i9iy=``8Pmx>Q_G7n`Bckrfzs+*Pm>70Ji|7pcY
z2X)?3n2Jx06-sHN9lYc4{dkxtIgfELLC9Faaa=VH{N+5sX4=+h&UGcHQM;VR?Q$lG
zmCsU5aWL6|cd5d_#!humLkgP4%EWT0yzk%x_Mw9f4nA}+!@+6?YdEr;oDLQ{_*k-<
z<zSA3xsuy#2TaHe^K+i(V7|lCtvLm(oCOXRIvD-4QgWbok;DJ~a*nsnVe{FXB@R|e
zR?YL&r4E)kSngnjgOv_G5xvllnLei{+rn;Vl>PrH*PvARGY4zgrQ*q=>Bb+{ZF$-{
zsSM9SQQ7F=3kTc9XOrM&2V121Ja@rf<%n!`uubx0KQLz^du)ef!rZ=eu$yxuiAqWA
zaj@6H_YQt=u+PC)4!&`4%)x#K2OJ!h{0}-fBxyGd%FEA<__gG}ESfX_b>)bIquD;E
ziBptw^0=h^R`7&_@3>}vS5HblBtbKW_@jeU+$$XXDQ>47oa2Viy+Wc>@A01%f0Fau
z{2l!6;If#0$@bW<4lX$O&EbFdxWsOW`&ogtG8_3W7Y<PVO!!0muS#xLI3g#T<}}lG
zSUDuux$!zEo6IcCzZ~48PZ9-_xFrQq{MW(X4*ubaHZ!yLcr@p8Gv_upZEgkJ>(UvK
zS#dS7tehn7N}^a2#gjl1g_0<eMA0M)Oa33X%b8|n{8`DnlepG4r`bSnKQo6_<@QLu
zL=q3R&M76%C6k#I$`+MQqD(ULmVP?tH?W*ITukSbPl8w>iM@-J_nT^!lc<v9mktmV
zhpI``O`=|suLResB~e{OmQo{$nn~13qIMFTjdhYd$d|(jS-rT%5?QzUNi;~pFa8aa
znKx#8l9|1wQ4)=lXp%(JBwC1-shTBumOIn)e3+ETg}{DLB<DM>e{nI*n}jOP%-JV|
z-A*?xiO#<(fh2O1s2a;@nMA83@{+hGnOR)<3xq!zdJ-es<uquW={MFel!TGQ6A}$4
z5lJE{4df#LOGl}EGMd%kkt#Mho<xFebWz9UCwO2du_TG5NjOO)lXxbHXOrOW;U@7Q
zyFJMZfJn3JY6V&+(JqPmlBiK5&?bqtLLRLZD7oAJZnePuNxWMl(4NjU0*sPBz$$&<
zq4nV;9!cU!wkwGaNj#cF$7JTOrpE+VCbY*nADXKJ3VLQD^A}VnHiS)HuaGlP<msuW
zl9}UG-IC~%L{~O#m6y%o-$*2kKF!WNqA>bg63-_wE{X9;bWh@iB>E)rY7#Fd@lp~m
zC($d39_-22l%AZ-*Ocuuy@hM3B>BoKV(Kj>>a<etn?%1Ph9>bk2R(_`k{HCf!HKGB
z1CrQORI9IR<O7rVt#F1gQ2D7$-jF2Ly^+gLtiF-NFpgIeqmn%QsSOu=iztK&{fQ$a
zTHL3<&1Ety_Z<#BKP5gaceF&i6w$^c@$YnvVQi9bBhQct?DixUay2dUPULb(;=Lr^
zXKll|lam-QRhyd3oKl{`PMfM7FQQFLW{&YpPlCsZ|C^=}KS<)kB<3?r(`F<wGl{uL
zlx-9ENN~2`_eTS>gz$V3O>=~^h<QSeP0ol5vLf@`^}e<!iN#5L%-p_HST_ceWt>sh
zmGwz%NMgBgMpq=UQurrHtP=8RGV}00O$@7(SR>+Rf@=k-f6l(ma;Dmt#1~2YnZ$LD
zND}d`frCjLN@8;oTawty36sQEN$ls6OkxLjcy10!>|{+8ZC4Usax*Eck@H)qMDpEY
zBFXomxG#wd$1+xa+4caJyjPq3MlKz+LfY3!98Tg)5@(Y*l0-wF{%sN`gd9!c8zIL8
zk0%lG>7(DsrO$UsoJ`_0S6>V5`y_tgiYt|OiaSYR?MFdoPJX6P=3B9SJ(*e!gLW>7
zpOU!5HRaRKC-F09o$y}-F9`lBWwD<0VJhN9(I<=YdlHwE_=5{7iL0XLyQ#x+Nf@qi
z3L%r~MiPG|akq<NE^cyBa3l3-g<Sld#6O%!N!*cs>*>>%u2ud`;x^l|R$(s@S^Aqk
zy?_f=zMzX7A$Pfe5Y~!1zmQAhCu<A4DB_~1o5}xupWdOcHmZTfhfs>UDDR?zoB1wn
z2^S?@loDQAu&iJi!4*EeoDh1>FRWE`QOQMh7du*Lm0jem3RDp+Tu38ls4CHFf`>d>
z4Hq>fIme}zn;B@XFJfI6^<2z!@sW%AE*h}%F2=iP=%SH}n2WfJ#x9z;$aT@uMN=2e
zTzFh~U7nCZ3l|H%^C>Pyf3NVP8zX<zcKP%>Kl=G5{~IOzstcbBzl$?I{kBgZ`m#@R
z!S}bfZ?D$y>j4+UJimUAi&ic|E)3Szh3?{B7eN;tj(O`Y<d*_ezLJZ-Q0un%kL^>a
zgk3~jL|vFJeyHW4{`?=U=s-6*(4Pqt-27ei_3LlDuw6JVUU2cEi=+$J#bYiWcad_D
zcG2GDw<plr&0NiB>!O{IHiC<$X5KY-pNsol5Ho+3UDEmv(WpP@^6L-i;Nnpibbi<c
zO^>+9PeM-T{IvPjjxIX6=<1@Iizi$>>7t8d$RwRzJSBYIwE&Yde<oxqlBZof<Kj6N
z&$BGQ&N{H5XT`bP@J#-U61%%7bSd*<%$HpBa52QiP!~O2yv$5o^mEb6#Vam)yXeCa
z(F^7W`jfosB0mfolgY5Zi`QHXbTLSBriuCh;Y&wpgR{x0)49~p!0RsF5I(}iFc-tc
zAwS8RqQB*W3F-XjTp#t3E=Gy|zvYg0@s5nt1iwDU#aI_4HCt-S{Q3dEK7p&FjQ_F0
znRiq0=kHw?6J1PlG1<iw4xgrf=;BwuzUhE}s*7nZrn~shufH$&o?vB7_i6eE!dve5
z)4Fx9e})Sp6V7rmn-xf5ObT;c%ysdli`_2fxtQ<b6BnyE!(A+Nv4job__~>6nTuU~
zEM(%G%qhy(=XgrY^(>y_S>|H7ixn<ba)`CesY^bf(N{=#VGF&TchOAGr!H2rbWRu-
zYuFVo*1GuI#esRAVVXXDu4n)JOrBkrc=!m(Iv4BN%*CD!f*S?D5ZolVS#XOW-KJ~$
zcJ2u-cDmTbk^R7PXR&9nWXL>MX!?DNJjWM%_PE&V;vX0Py4dI9D;Hn8IP79StKs6H
zi$lyo(+_HT>f=mh82T;tv{~SJ`?}|di=!@Xag%iMjf=z#PqR&V2hZdkbMfv%&v6&u
z3OV88yo;Y*eCOh%i|<7|<>EBgtZ+L2$c;$TNzP=Ib3)FtVxrUZlPF~Z`Y%E*y12v<
z7k)vIKEHAA3S{#6-Nj`WH?sO4F0Q(`=Hg0LX&KP}%<}6(+6DBdB<){W{U+B-es1S-
zr?1W1yvW1Xs@&%M;ZB%BlN9c_D3C(K6dI)vtl=rht6K{_@%f&d6z)m^DHKX!L_n{W
zLg5sOq);Y>vZ53fERn+9LW&6%7o@*6Jg;Pymr9{@md_06<%CxfET7dYr1(v@OhJ9d
z<Pj@p^(sQD3f_1puX+kKgx5@=u8>-SOj0|AI>J{3bVloC_4+~@q)=jPCg;m@|7Q;9
z3p`CzXqLj;DU42mPa!pD9d0Rq<mxR_P*U)u;7#EbnihN16nrVPO`%;1{uHzn%oJiN
z1X9RN;a+xK3N6JmPw<`;S_z5v&SUZ>y)vk$uq&Yd5YR&@7%4=>fqGa-MDR*Lf4FbP
znSq(aQ%I!XrjQb=m4cH^WwS*uWIU6i+?A{6r%Fq-b&B6A%G8{pO$rsndS43nr|?t?
zT~cVD!UHKhmcrvHJSd(Ir|?J$4`ov|k|Z5ccr>fD5~Y?D+A)PEMDHY6saIYySAQ~v
z&Jul8JYUGwyQa`Bg%?wJDTSv~ct)(x3qC9OoZ#SGeY_;;p27>F%*xf*<m!8J^&S#s
zD_%~aXO{mpG_O~dpUBmFr_d*bS5xSl!oU;;iK$--uVsDuOK-5pn9l$~_Q~KBhNSS8
zM2DvEdJ4mZzacnGkpB6@!BHcBlf5DJ9FfAv6!Hg-`Y3T`C!C(|*(p!4aUzXPVO$Ce
zQ&^P3_!K6jFg=C$Qh1l;?p43}TbYu=#1tl_FgcYu9Wi)l<`Bha2UXru_n%g#rZA1w
zGkp(szlX<f-cR9!6lSF`JC!-D_hAa1hAK0;Dhv8%q%ud~x>~-E*yPW(WG|IpDw&hQ
z+!W@gupotRpHW-bzEUr%^HQj{!5i<a@`P9uL*p%De$#Dn3LmGiI)ybUEJ<N$3OwfV
zNeat27DttpDg0c(w_G@*E2LZ!zBMjf+;g<AvWh##4E0ma%)5L%A@Er$b2x2%3L8>b
zo5JTzzFOhE^<oeB)}=7RlOZ!d^=)KtY*9C*z(a#y2;R-3Yg^RKqW|@bx-Et6DYQ<b
zO&Wy<C_A`zQuvbX9iZ$?f#s6yPGJw1VH)u?_NK6p%PNg<8egTbKZVBW%(LwWQaG5x
zuPIze;ZO=+a}#T+|B%Ar6po~DB9-~)tFWUT<+_-peVf8JEW*(kjtMy~2ql;Q(4FcR
z_%4N$Y_FtZLOzN4(_I?Lk13quRQKnePT@TFlgXLCNYA8jHkJ9;kKvq<p9E{S)PEMA
zUsB+Id35GKcfX}@k^5vCWzx8m!tW{Mq%%(&ovNT+PG!j7Df}ViN(xs~xF-CjAgzB2
zxt_v}tnyb19p215t#d1@OuOY}^dE`-D|kDF|FYIQDHM<r=~FPBnNcKnWfcf1Bv?3&
zB54#Aez#x=!D52N)0tyzOv_MGlu~KFu2W;QY#QZ6sh-B*iy4RV5+$jSMn&P31S@Ct
zDnhEJQ7x-Hu|=sNyk;7;(x@%GzF-}}x`Ootz1K25&_Fmz!!#NRZ`CsMq*aqNnx@e#
zjpk`+X#~=I)0fsF4G)`;=4G)=lz|U664f+(Y53FN1G9X{kqRGg<X<&>_Aob%mTBar
zp{H?AHdU*1=J{DZ%t%i@Dtm7lK{18WsQZh;r)WEV>?yI>Gw^30pHk#i`bZklH12De
zxlJ(sbW<}8-qe0dqKS0o?FaiWC`ln!8nzHeuz$<Uiw<aY(^y;1pAt+9Qf!+>yENWS
z<H)z_eQDgE#!G4RNMlk<y?q*=w$!_)@jx06rtwf352x{D8lBU4B#jPfJf23!G#-^w
z9us6i_4lYm*07T(PYBj-l=r`;r_$(>#?xs$lSWsub`$J-MsdH$<<+XG^)k-Srtw@F
z&x`5Om8OjjC=|nuGbUaHej$yohpR89@$XPC$$+2yJ=5r$M!$6CUfauQ^h)EEG<v5q
zZ!c%)lZLzDuKu1JK2r25=jR6=ihR<re>(HL;ah^Qr7<9lfy{HQGANBVMI6i=(ikct
z^*7RZUHG<D0Y({yNp!d%|6Sdc&?t_Ov?B$X|0p4Er!hLKydz|c;Mg?AW%cnwCJ6p>
zuH{4yL>iORn3BfEG`>h<Y8unhn88_^#`HAaBbn{x%jk&j3;!^U57L<nHB^ZC<fAlZ
zr892}T$jdd&T4su-NH2H2%nqAJV`rWq6>r*>BdYJrLj1TkJDHp`sZn$jlr@sR;RH>
zl;vrx5W+hh^k-O^#wVhz68to4r6=p~8RwoTyqL-VbQqX~CL*ot#b<*cE5C_zZ?5+c
zhdYhUX>4KXqtvZw>=Uw0aJ%3RL0WgFvFraa^&L=B6wm+M-3Jg51r&)27?4}I19opY
zw#hl&%+5~O2|G&$1ym4Gk_l0a7{Gv{5=2EYBSy>$W>FACFknE*k|oLSGsXA*@Bd!E
zdezm{)z#J2HL1I&68}_?&jfxh@C%xBO!OZ0t4f})EAWlrYXnjamab(4d!g;mw0RS?
zj@{W7WBR@V>jmFXN%=vLjhyv@Y!bLx;7<Zs3s0Apd$BJ&s4bja8;fr>ahr+XD)4&+
z{;0s8jHNod>ewo!uWNWi!(SEny8_!Pu${iAVTOhs6?_ej1{xY_*j0hu6<l$F;}zJ$
z;8}q~6*ydhy%pG3fddsdSb>kGw{1MBd_OOCdsDH4#SM=aOxT#5@^oo$r}Vdi*uNDx
zQh}osSO#W`+Qm2{nm$@OK#QMSHFlx`|5c!dhMF2qR-lT8LJe1LDgL1#_I`_4freh2
zioY(19biQ&!#_}JsH&kF;e`0{4vMh4;HL@PDwJ9p&OTXihK4gWoUWmGdU<UP^~zP3
zY2_b(m8zqmu7<O!#_rvme5z`!9+@>ft;NsMFw80)SI~B<Ra##t=Ln>pEN!Hrv4-{<
z;u@N0XiBjfVj9lXaGr*XG_=&BnO<D3nrV1&XYp50ls4D!_HW4+0?*fQfgl$OWGRa-
z*3e3ryOyh1CieU2_>2;;*R3_Q(a=^yJJxzRS)$>klf{%-s=+N+{dOe@FDq9x@5FOr
zv{gbw84abOw}zyK4jNJ#l!kJ#<R=wz@^sX|BYkT3j}da1I!RGy_F{kWxzpoaG<4O_
zO~b9_s;59A-8C#MS3M;A)Ry9R$`y%yH1wq!8axgCv}iz?G8+187@%RGhCv!C$a8bN
z%gp%ta<!*iv96{;7h<)Jd>o6XH5ih;P_m{5OM|U}oJ@|!zt1bbqngxFWi{N@QDw%*
zeVV#zZ2I=p^S>km4LJ>=hP;MLHH?v>!5T&gGDIMmhicebEjCQUaG@+ctqO@FD@#Yw
zN>yW{HC!STdIC$wY8WTkDH{Je9kn=th7#m*fma9|ui=&^5kJ#J4Oa`1_*H^T(s<f@
z6$-zml0KRJ<*)53;!`;a8m3p$uNUN64fCqUt`nR*lyiefAaauy&Ek7C+^1othMU>0
zhFKbJ*Kh~NMZ;|x{w=}yjnN$8KsP&5{Mg3gJ83ixvo+kUf%Ax8;pqVS{B}=vR7CF4
zKprCFmzB=ZFjvE34NqveU&8|$9?>wLKB?g$YNg>}`eALgvZMOGBYy&}s;1PrDb*pR
ztdx3`ax^@yVF4}QwDhu+x;~|*u8cD+)Id11P%WaslzJ+q2$yJhQp58aUf@7SGYiW!
zJg4zzyXu#eS}IkZ(eSK>8>*>U)zvK{%ReuO1ny0#T1vH4>P1cj4X<igK|72re_1#)
zO1(nOPg6|G1xYD2R;e46+SWSp8r`Fuf4WpO<C_{*YIsM(TVmC>1vWhrW6`@B-qTQ^
zqfp2DR7t~68h+OBp@xq%tkLkThL1ITqTzE5UuamRVYP;4<@k)|QjwCMvZz3<P?6fd
zD79ayFExCn;cE@wX#53X#KSHSUffB!(zQe<^__;b8a8V9QNub7-)q>wA=9v)5uixj
zB;6k*by;ylr%3pePHK~e%?#ZgBIbKKspZ1(MJM%(hF>-OqhYUxEu5PgwrSX|;dc#x
zFwTo9{^+FsWc2GCX~MKs%zmtsYS~%+&3V^Z`JL4c4LccZHSE^-3#5pXBQm?Q+QUmj
zL8QaSoz=^o)#c^br(wT_BN~osIH2L6hQoA7k$FfAvM8DQp|hf8c6C;pszp6w^<x^2
zYdE3dKMhs7sPFRSY@&f6C#7zmE~<(ixe)(KOIV}>I?mT|fsU#=s_8gKM*|(zb)2T7
zj?S-6sG*~#j@mlT(4&E<rQ_fy@gZFlt#rDGVi(RNA_DK}qHg~%{$9tn^>m!2<7^%E
zb=-(ZPipw2@Jua?RDHdRYN(@;j`MUh)6rN*6CF);oU8LE6p?N<tE%4wIVte0t`V`h
zj=trQ{w<_wB6PwFbzG#Qt&Vm&TI#r1M{6BzbhN7EiRmb2>Z<7Qy}L%O^Jte69i@8I
zg;N5vUDf!mYED<xUPoL<2OZ@)5<1F6NK(f$T~(jcqmHopr=m<p9Vs21baWOTMFVz=
zlw8+U?e3}?3(hR7bkosY$FK~BXV61OPaUQK%Rnz3y>&d9##3qZp(Z-E>)4^ApN{@I
zp4G8T#{eAzbv&%&5gmhcRM4I}X6Vp#=sL#e7^@?#!_YBY=MGS0$Wxr~bohdpIxHQw
z4o62;hpR{5toebSJp2GboQn|ny_?xU_=o7o2@(p->liG^)@?B+vT?P^Q1(UV68b`Z
zlpj2$WTYM~L0NxIN%J0sqjZd>{Zs8oxkM1+mkI+BRv)M1Y7t2MG98!exI)Kx9cy|N
zPSA0sj!;%FOw@6ej!8PGD%Inf0e-UQ@&h)<ir0vQ$vURc@;avJxK_t?I+v+Ot7tCn
zSvZ{*u35^p6W6ojOWNKb{M45HCH+)?Z_+Va$K6siQ{c@yZqYGI@LP4<L0jp#O~>sz
zPFaa}w$$M+PL^Lv##R)L>|4l{8xv#EdZ&AIJRlYC6?h-rFKj<Y$6Ouv>mU!c`l4?k
z*B7z%2X&rjSa@eF@sN&r!q4tg$b21-O7=+|j|s9w-~)XM9~WeSz=b*%=~&FkySa!<
zeJ1oMd_tO_dQ~%#oTqd=Eu2fKRiB9RjAV&$b;NTzp4YKa$B#N*(D|Pre6M4@j+b=2
ztm8u+9|`j-oS0mrBKUG0uj)AYK-(2MUK1C(yl>&_QbZ%u8gJ@&OUK)lt-PmWrH*$v
zscR)h8HHSJ^)Br&rY*<ueKy^rkn|5kKG&0ctm6|M>!j`~9joaKf`6*xGe!f!KiBbv
zc+o%8+j3O~kN##~xPId+9beO<Dxz`!MhDxXskxlvTOD33@tuyfVi~q_zbt5(DBi`o
z8+80osV$B6q%4mieUlLX5V%>#PnA4B>-a^-uR6Bq_>F<9S7cQ#A<OhA{9O#vvU^)T
zYW>Ma0J?{a0^wg${cj!H1fdVG)=nL}7!cCvk;ZNvdvsiw#zkrTqhl}QZ5lPx*r#JZ
z4bCp7!7~F7=s2X~ztY4(hKQSz`nobckRGOsK3Vp2-PFH2j*xjng6XIr#{?c1c!CuL
z;gKU`C`hACH~#%PS(uIvC*jjB@uGCJyaA*LQZ0?@Y4jAf(}dEgXMzmPHY94LQ7?_N
z(l|Yh+G(7T#+DNud1zr>LC#D^--YX>(fQl9r1O26*-f3DMtvzgKOHRtI46zs(&#%g
z*+8-l1vV1M(#C=`5!f`1b1UgoJ~)|bmPYe5h%mKCg9|x`@T2wxX)Gv8yfY`!GL4JV
zP-%2Zqg5KkRQ1i0L>jR)TBlKxMk#f!mui#d@$!n@dF}18OS`GIX|xl~U+SiMpG>t+
zBc6_qZT$A8<h*W*JzDu*Ss9y4qk{-c38dumG&)w|934_V>ZUrUv35(M|CU6zG=KJy
z?2<;lDA6?yE=%~So4TT1f}hlTrqL^n@o7w82O0d+Fw?MT78&jeQKnxS{nNO;YGObd
z1JltL^T*$f^8@`L!I^D2s!U5mPa~ZMi;OgW9$B`(o0?f8K_rt#ot_b5r{SbAj#(tK
zX}D<&OJjH%G?zzXrjbj-PlL;2Xn*g4M3{~i8!!!}=7JBF;Ts}2R|1?Wy|g4TB8`!0
zjOmsfE5kG@jnQdblIG#z${1C4sSw9hjv(#1erXw-;NdwpEG@fC^r1?Zr*Vbg^fzX&
zOk-jiv(mUVjjPg_l*Y6)rl)bW@UZDA?7m7|lg4Cv;7v)UT7M^|ra?DwwkCFzB(4=Z
zT%X1bY0NH7T$ctHY;X{7<e;Z<a~g+{`gcb1@*0Vo(wNDyE=|yR`V~d+7LGzmf~Ws+
z;BKSw)BK?@=BIH-nwzRHdv4;PH0~1Q{xlvCWVXP&)41nUc5dQcLGDXqP9<e7T``eh
zb*2Y7cdDpUIJKH5JP%iLa@7Qj9+m83fsb);>E4VFqsmycu#$688n18ppUfwOxFn6C
zb0W&qX)I0S{WQ3A^O-cBO=CqGucfgpjpx#MHI1TGiRaUJAssDVdO3|3>47E5620vH
zQDrX)&dAWbyLu&!O|25kg^ipWS4Zies|sHi3GZ-1>1A)E@n#wiuTH#`#@j-t@bM+d
zm2~ftB<Tf-Nb<XByeIs`|D9I$K^h-2O0;YDQ5xM1^f2&o8lR-GDvi}?6c{Kp@M#*K
zrSW|l>(lt0TD{bE){7<I3G#)&FVpx+5Egwc$Tw-Msib_%IM6*hcXVwU>(bb{qAma1
zP6^o$OE%D$FSgx7D9k^ku`!Jw+1WHUb0Va%HI1L7Xp6v~1^yzC0)I{8v09}>eiO>?
zmGnQ-ID1EQ%qG)cY3vaC-vYN)@@!`as+S<cPND3or0?d~og1BaxtGD8E}F)_X)e6P
zz!ysn5=XlOf-`&7qLM>`4;a;+*&`z1Sf!k!ysQ-c@4V3CbO53MC-7t?PZfjz+=-Md
zGQj8O(+t!wP}PVm%wL?dYZZ;#S2IxE01+ns5s$>023i>?Hc-pJ=>}>WIK#mCQtM2C
zXB((5NF9N74b&5aV$U+L=(VWDa||>P;&}oa8fa3<(@2oU2GVsR+cvGFpKD;(TT$I+
zLTO$}Z(-n$U!$I0Ae0LQUL>$(CC|kMXeIK*3?8ko+88J?&{}Y2mpvPaEj3VPAZehj
z)M_WNeWirBfkY)ft-I<_iFYzkE_laEN=guA;Gf&dD7Ld?y9n%B$<xii*K&w!Pu~0+
z7(@#j=*?0C{i&*fz6SbDF6nm)PA*wJCrYFYG@=VDk0<2~Fthi*Tf%pengN~WqS@<|
ze)CxolVKoZfIPe<Ba#27AYvPE3^X1YXO*l0*T5PB-x}}?_y*qPlSoM-Fpx8_#K4mV
zLL*u&Kf%D22J)0<V2FXC2JYQdg><H21`j+}FZ@w5+~9)tHX{U%6gbMjXhAM9Fjf#U
zTq?*I1CMl9%#Jf~nSslNc!h!Sf;=xp?+RSoT}?D_m4OEhJY-;!fvXMNXkdmYc8!7S
z4cuVhqpE7MfhimyD5j|fw~ze~pKjpVO8h!O_H<W#@Z4EV@j?5tp`|w&m}%f<1GgAF
zwq4ckp&Im1EqbWdJ$S^onq}ZtgR6OQX3In|)V&677yJ%^B;IM@E(5a-+%1%QD(T&N
zs7wzvvWH@=`wYzCe1V!PkjVY)so>LuVV;494LojO0WD)-zJW&#JVvoS)I&W~{i{-o
zdZ=YR)QTSJy&n9_Lx+W&L<SZcc)~!zgw$s}R7Ks=F=JEKWvMY&rkY)q+IMy8DFaU%
zxPMK_>jst@c*elX23|4ntbt_)UNrEMf#(c7Z{P*G!Aot;NvWojQxhhnYE4UR>Y+wY
zN>wzE7T<Dki7Yqps(}>-UZaq0G2XzhsVL(=dIr{N!=?$@&>I{S18*7J`hk@O-jUYH
zNg;F<ve9W-m-u@I-Z$`pfe#r#J}UW=BgnxmN_=eK69bz@l@VV>pWKo7%)o)Vsnvpi
zD)5;<6KiTDJ{Nlb%|%~u&h}66_U|iBD3SJ!feoLuZPg@kXiM8ad#LXWtToUggYz?3
zXW)AS{~9=AU_IFkY%%bgfgg-$CFD;Af|trR8u*bq&@yk7Y-Vs<UN&u2*<J6Kjrud;
zwM+bL;1}AVC{d?R;#c7r`F7bGH4?uY_`|?%1A90l=yHE1wi@`$!18v9`}ZU+-IMs+
zz)prQ1KSMjMPj=F5}9@|-u@FIJZ!M2ry5&7I_CEu@)+39J{r;Szx#~nIO3)~)iu-0
zc#?3Jb%}!p4zY+nz)#O>6C3|ZeE)EC$Z*4HWk(GhGf*dkx)~fdaDq`i6Mgmm&%jAW
z@(iZ7PgD_DlmP@O5LlSOeGeyC%2ZV-)daTdsYu~@hNrSMGN_qBtqe}jptxP)%nVYe
zC29*iBg0KY31*on%1uOHy6a_d7A;>b(Kv&%Gq|pLqCqC=PJO|dJtu><s}e*SX3!{u
z7RkigdC}3$ykY3xQ#Hw;X@;jIt8)dOC$O2o<^oy7dzA|^xG;mh8T8BGq6}JQ&>@5J
z3@*-~RR)Pnbe3{)2C)p{8C?5xS?dhiWKhbcGboWpc`jnv{fW1~DdZ`R^V%ibiF#8{
zi}3cMFp+0-N!BgPV9<sH9V00Sy|E*^&-XbQ^vr;VMXL<D2+}Eo&Kca>K7n|mdm^!~
zb+T&)-Ke$*TslAD#1s7<NzfYG9!&Jgpm!!(0ZwZKWeLBh>XQMHryfb%)Hc~a12Y3F
zg8>-~WV;!Vs0*wR$gCy^7Z?yvXJAy)Ga1xqlO&O@WoO`J;Ah}ukj<d#yo8$p=@WXY
zy6uw81{vfsn6WKBB!lbsB*F~OFG}V!=u<PXwMK&YV4>XEQ>|H*7@CO|KT!CH3`S;f
zG=pOqjLKki25)DuGJ{JpxHN;uGgy$pm<+~dFrD_#fS)z_Rc>4cmu0};Z(W{=KFm$a
z;0g-QV1f`QW}@GXvGhvG@<ZNLLLqUIAXjH_jUbZ+PN^)NO0n`!F@B5WN6hQkkqqvk
z8#GmXF>*sD`u*9>oD`Yp^W_YIHwk1DGpVY4xFpXl8O##qTLs=Gko4OHxkKQc8QfJ#
zpPj+om3ZT!rR>qYoKqRhk>1VCV7?%v-!I4m89Z1?c}S3X0v{Imh(P{~>`_4;6WCUM
zQnoOIMH#%1!HbzF8uO#r;!N~u><Q@wktNcLCo_0Tkf#MM70BK_lfko<__7S1tHht@
z?5I~thL@zR6&buH$jfX+kmUlY|Ep4k$m{g6#nHw?+WC!4G^TF~d`lRZrL=cgD}(JB
z?8xA~4BpRRa|S<gurl~i)LunzT+)`(KB|=eaR#4M;{3d_I)hI$_$-6ZrN49l4&@hO
z>U9}>DI-hDR~dX=iGL%=nhd@b<hx4xT0w5A6XQ63pTYXd@!BBB4+1v|{P9##<(U4Q
z!7uE^!jf$n{F=d*41Ukx58<H~@#FGu3?n~8+j)rpDS8swDkJijSc7bTSGpOCnBAGd
zt_%)ka5#hA8SKg6Kn4dh_$PzC8SIx@`@{~M1yuMiJ5DRnq?|sKz=39#rsGzQe=|5D
z#^hK~2YLk!ay)|*^kM$M&Ww&k{x5^(CR&&{$#`huaKl7_iK-^5nUVbq1r`Z}8LiGD
zvAT)VOf)q4vkX<kL`@TQP1G~7sHduB;tUgKnmFA=Z4=ttWhC;-xT2?8&@S;=PgTd{
zM$`o9glC!Hg}c6qb4;8qII}HQMMVuv{Mu6y5+~9~+G;GYi9j~p)Wo@!_<1IpRpPaJ
zsq;--V4|yuZYC}?!Sy61CQ40QWTGWgFLkkrHYUF8rCOONHW4#<p0jFgVqPybxR<)R
zmtuB#FU76;<Y{Z7or#nQWum=_xQPxX%FQVHB}|mjbiLGys)?<=R8sI~_ayf3Nt{+A
z!P@}#y`vf38@#NQT{Ab)$pkMAzqCtqHnDwq*_TC$E@t!&iuX3%&1mz{l_n-q852EC
z^fJ-ggl{5XTPFI_o+fk?{Y>;XqqjzbObp;MgQ^KW*Vju#8&3wB(Y_cWEUgfp)7O=y
zO&BID6Sj$r8SO)1G6i{~XS8jkesASSHfzGA8D-arClqeYAOrWF5avvTCPtVTX-5Ad
z$(tBThe2wv=rF{@e@{f)K-l^)6T_u-mh$~1;V2Ge)x=m6;{+LP;t~^=n)q>jg7h&$
ze4l@ssv2c4GjX|zD>!7m6|>__Ob~{<|LJ%Rk2{v$5ng3tl8NihXaf%0z1qYS6H`rG
zV}jYq0%;lIeR`{DCayJcor&otCeMj3uT|zIx^7M6daL(&7uR0hVB$s-GfdnhHoTcr
zplagE-fBo`Vx|eg8Cw&#&}WJgXRIpYW*P1W=WicxH*p7vCcZLpr-{2vykz2K6SGa+
zZQ^MY?=CC7N8mh8AG)H6`%GN9xC-e^b4<*Y()$HIAdvJ2O*|y{ho5&~_7M~FX>$`#
znRwL1W1MRy77If~T|92$)+b9>j7lvqv5+2ew1~KKw1~tf=$}W6X7yIYmv9yfk*&`@
zT12rEjutKDyfg8viDe?~MH6W$dd|f2?1k{ZAPQ3gtFsoXzhYv!iH}TtY~od^__~QV
z=;wm7#n%M6?`YAR^lB6DoA^MKeA~oI6Yq#76!oqUUvJRiJ>h@;XwfOld?-z`BW#ou
z3j9PEJ{7pi#A;EA>QN;!d}iWvDI)%bAQaACe{JF$HsRnl2Ww1xYa(f*gN^S@tfjYD
zm}+4i!=Q<_7TQ@@Z(;*S-$GprKbY8PVjJfvz0|}e6I<x#CN`V+iP4FnAi+h{G42HU
z*~BkQTT{$VJWzObVHJMmf3Uau-NYZ%b4&5x0=ZP+Px=5iL_C(<YT_>wMAZIb!tN&u
zs_#wiFtL-IMr@ynT_$#$_(!sPIPP1DZ6nUuUZb#zUAM|!6I{u|ESJ-ef4>=B=nt4U
zXyOpvueUmE;<$+ug8wV<h`^%)k8x&ADks~2j908{MOCT@ED~5Cki<eOT4h9p2^Ojf
zos?=8noNl#oMxeh5NldEU65Lpb;(xS!WkAQ<dlRnPjSAQtY_gY3(YOGuyD48`WBj6
zIM>2C78+P+XhlX?)m!m@RkR*gA~hmqOL3<~$;K84n^^d+xBBwVcw-cuXQ7#e``SfS
z$TQ-BqANEi&$n>(mE{*%XldaB3l~cDZG+-39f%e<UCb62B#SM?EVL4Qdv8_aw<L>N
zTWDip)V~EA3ySz8TVkQq!uNZN?ZPT64@b(hw-C4BTJS6+ER<R3Vxg;rq=o5i(9uH5
zLI(@w7N%8=9q6sNIOGj}SGMp;DLPr`%x-ddNu3y%71dvwT-YMErX9Lj=x#x`khajn
zLQf05E%dR_i%wV&Th}-07gLo!s;>p?F79t(fQ5b*{@EFIhaT9VPqf-+Abq%x8YHkn
zpeAr&A4R%hA!EU|;D|L$3-3;kkCcj*6*<_7?^E-d#QrOYWi2eZIK@?zMk#y?frU#f
zTxua_A+)$y3&SnsIdCTn3Vuiq7A5JNL#$|3QuDd-p%(5qk&4E`!blp^!f4^?Ga=4z
zbCl0sUw>_!-6zi&3u7%@Zs7`Arm$$7h082dYZvWpzvr$v6McY#JKn+ss%?RP_*zlD
z=#L$#i59p3_3ys1t1L|7aQ9JHQ_r80*I2l<Rcvk_HCeKxJpWU28b`;%7p!jKS_{`%
zc#>VVaJ_{aEIeT0K?^rpm|<ZSt6R9q!b}S{Te!sn`^d>fJ5ymQ&l$%Nq%YlO;db`a
z!kt$1+qD<_sD?kM$aa@x*|pggkG@oY_EC3RxJR_T*TP(SR9{utSKVh}ju6S&u&-iY
z?w2AWq&#HdF$<4dm}lW(3y)Y}uY31ZUssDA+gCi_!lM?nYvW8b^#ThEEiAIISekzR
z&tku?qW^nql22IpbX$z-E#cTDK$m7;p0=>m!rK;BT6o67vld>n@VbR%7M|lQK3edq
zxYqNOCcgIq2c@rKdQp&<1iozH6+xB@oFxnk`>GZ6{Jq8ZO^?4};Y|x~(YKS}l0O>l
z#p*HIhn~h|c<<2tI4LZwvhbdTiKXb!4j)^1U%K$ux2X>-e8@rHnEXftuI#HC9g8eu
zw~EmpR*MgR#@-1(-EVDQ^|=+f4O?df{>sAF3{5s_+W5x88Vd(49J25&Lx+W5Ec|L=
zErY*>A1!R+9B1$snH05w-JcrYXmP1w?6yBsKS*}wsw5Zek+Sv2B-aXV7UrKU{LEo`
zwv^NPrFT+XMYe^rz{2kq{-BY!MgG7zK!^X+!dAN0f+`0r{KcugsrYXT+o)1;jOz)v
zTi9V?w}m|x#w|)RvhAd=-WlH|kjU#}<LnpVKVl8ydj;8NVSgoMYhU%mu>zXtu!Vma
zb!`;cIAY-_eb~m%V+GA8mmjlmlHp}c{MGug;}%X>Aj0&Yh2wn{k^22q6&ua^DIzZ%
zEaswa*r;lwx{bOeSi3k$U#ezD(Kyjham6Wp@-#bI*v2?k%f{(8F1FFiMr|8s*r;dY
zEE`_6DrefLLkV_tHQ9Txm<D-mO^QYvX2j06QQt-b8x8GfJ>G_fQMfzD#s)n$u%Buq
zZ8fpc)W*nusxb$YeLq-yu8s3-{IRe2A{!^}j5iZ_zK!OBkkUdBF1#duf#4U~k!Ld7
zQYzliPo4Enve-t<MyZXqHd@<}AGWbkVuL@u;`%gNfF4C{U)EynY_zwLuu*0sZiB=w
z&&8>2v+XJR3<vtWx8m&1gZ)&wjgB_{vhlZ#lnrI$P8)aG=wzcatzpBr(Zxnr8-r|A
z*yv`XyNy0J`r7DWqo<8tHhSAUt~OdX$e7%APZ4&e7=P+LTuw?q8~tqzWD})$?Y~sn
zSE-7su>p1z4;ffE$EllUL$_htuxu=yQk1q~*vQym1f!Avni#E3Whh|Qw&B>w+Hk3G
z-&nmyk^QgwDBkS-C_d}c<2z==0~<LTSJ{|kBeapXF@nQkW3Y`OHip?4Zeu9BwkFA&
z9IAB7_SE_+MYPF|-%}s<jd9Q^YLt!9HZHNFi`v>_#SEdB(#|%<*%)JE%D=^{{we-k
zx_p_9Yj259v~fATXk+pUf#U^E5J=*cGMYpfPyXzuuC{RvYuUJt<9NJaGD~etr&#fy
zsWw`UkIy}js(MAd-c{v{MR%MNYx+X+dK)*`IQ(bvZKC{*HmW>RO2uZ_xXH#$8z=jz
zTWvJyuWlBc*;@peC9vCqWQYE$&UdNXrIkBq#{P<l@olz^yKStr@s5pqI5akv*?7*z
zeKzLMd2B4QG1o@5B<9(8*v9=fZr)e?fQ<)jJS1JatiNI?XxT5e?)EruBzPOZS@wvH
z`8FQqjN{~bJNf38;st^{UYRB3=KgB2jVEk8&7rsP>9W!#V)F)i>`7KXlzNKO@I*=(
z@p=8#Gom>aeyM+S4SLqbKSzqE94&s{#tSx9*m%vxi#A@evE0V1HeMz!G4{j$>J^TD
z3DhUa2UjLXG>V<OIL=VUfqvb_8#WdnE_hpJG;btm)i-Ut#ksJ*_=o;cB%ktM@s9rL
zT^sM&_}<2P8}Hlrz{V;Yt8IKp4Q+gE;}bE(h9ku^4t=%${qYn171w6>YZUvudX-OY
zd}iZw#)?64>O<leytiktdbIRQ8(-0{4itQCV+{k^-eRV2Y>aw3c?$oQ0VEwG-e7=Q
zYhxWl&;Z3m18$(XZ2W3ti;azp3<K1UHa3Y3`wxhw<YpT`+4z~mD))ru0CmQ!_%AjZ
z9V}!A-#S|Sn~mRX@UHR?F)usIT9@$tpF>}knzlH(RZQ{Oz}Pmj@sY$qxq}^y(hQ*v
zYCG6vV>f3j-OR=w4vLL^Huj6O*A7QPey`2-&(TypVB?_BkJ~szWK(pPa)e&Z;d?Ln
zufR!H#EDm(5kE=`3{b}eGRx{GXs9PjZyKPgI4E#X%|Uesg$|0GD9H0>pix<j@ePu#
z>fr2ENv3%N)M-MgMas!YpBj>_>F~!l>eB&g%lJt684k{LaIu3{4(d3l>!7iNCJyR3
zIExh>)R$TuuaEDFx7w51voIQ2Ry@bSAP$X#hJp}p<nVA#MWm@zp@bF=&UJ8}gJw?j
zAoj!S$>t7^(2t@Phn3l-OXBA{xWM5G`S^uY<3N(>A_pynLL#%p4q^`4IcP6pTRUj$
zVAg^vZ5)(1c<OL5rvn9+IvD##B$<iVg19gzohXzg1TS-N(c0wi0~Fysx5a6(jt)`|
zMmZSmKso5-AnU+&(Ahy32LstJ2VEU>quGxZ^c7JRU#7Y{=ph1oI_T}7kAq&4<-d1%
z@#161@Wsia1JsQDktY2d^mn4i6BZ3%7mgJZC%wXf?jY?%8zMAXd!WMB=!U$kQOt1g
z^v2?h1Jj9Sy5+zYgmXVOP?6%$VntPmcn*9AgB=WU5ID#=2p!~|=)r2(U(sy<r#vTJ
zuYroI-#34q8Y(=)91M5BYt}Pck|P|DlitNe{%n0DRT`+yTavuQ!KDtSI+*5Q3=QjG
z62&?g=io926CGT|?4jbzrQ;JETtNfwFCH)O;eoN}K9EJ}*qDKlKd_Hqu1(Q}c<H&u
z!DOk`>)!(I-MDF>nj%@YzGzx}x`S&S+~i=U5U+D^qk|a^u6MBKit-ycg8NgPJA{q;
z#MwKhy9Y+|eP$_cc5n;bOq_F;4Azo?YUMz6yMsF%ypY9<S={O1E(aa5D9>WHgS#F4
z<=}4z_c*xM!3PdLba0=8ISyWS@QQ=E4(@mGgo7mx9^ha(c+A1$BAf<%h-RceJ9vbX
zagd@x)(uqi#WIgNAYSLa<gS4cz3Cvez`<gvxX{5OT6Li6I7p=jMR4>WHDi!^lFF3g
zd8$gUrVlvWN~~TTq?XbFjQBHRkY^oy+bXt9Ad%-BZl_g5cq4R4JMgCKMb2&qnH%C;
z2Pwkk4qkQewu6=8X)7GO?%)jvuQ}jzN<oEMJTtm4x~+M~H%0ziw8NI-)dOPP`p4dJ
z@UDaR9K6qfP@#BD;nj`LR`ixlCsMrA{`<G&M-D!Au$G;5@QH&}4!)vf2din)5`605
zGY1T<d%sLRu`9*V=biTF4!)q;VhWyr$kury_YJ2;0^bQ-!x8zpc-4l~w+^0tJ(|(I
z6Dj)V_YT%O_|?G{2OC)3!6pZro#>W^-QOrK{Ucp;R}mk&`J7A1KS?Wh?oR#e;1`G6
zLRF2AlkVyyk>4Er&M|F|Kg4Gk*=|2vz)4#8Z^54qwsLw_sHIcmV=L4)2iqA5v#6iN
z4hK6O{O8~#<G+L54*qp;gwDwsDq;43m~r4o$-NHtahMJz>HnO4`x&w-)Z-P3{&~<r
z*_8Mp;XLf%A({9`9UOCT+`$RP%&M_hDpcS5qdQ4%@1ix>7e0?v$)X^O)3T_MMXmNI
z%%WNr)w9v%z9<W1(dhT&Hx;UC7UOu?s!()MPP$3AM-TNiStW}zvN$svUEog7qG(r&
zH}FN8s-5M&EmdtwyiOMOx+n^1Q{r{AsF%gPQ{xjpO`erSLQ};1Y3iIT8f0-%7A>=A
z$QH9WH;ePKXiOnlG|fiSaHytuNxHI0EZm#ot=d#gHOr!T7A>+kKO4<Z288*Clhlgo
zf^2ltOV{OlgA21*v$r*oi?e8zMM*aDguc~cs|$*XvxsHUS~|;{)oWHK+hn7MWj>ve
zzch=s+30H6E{ifw?TO_a%Jx~rvpl9amdHkr6->Ny;Ds+KoO3nRF^g0dmuGQB7AlKQ
zS!h}4S#-{#i!|Loi>`un&!R^b-2~^`25QCBGmCy%{1T6p?3G3DEUNyU>LakPKxR4m
zg})ZRsHyp-7$DULW}|1KL0N8)Q59KkMN!;nmX@L*i(D244U&y6*=80NM<g4?>Z6)+
zL~YjfvdGdnN0P3<(K}Ma{cLolqvsG(pD>HTSqu@ed4crsp<?`TSzMNlo-&4I@#ez#
za1yi8;~`&pjm%<H7DPr1Byx!$mu4}BD(Q-pu|lEEIgYJ$#k+#}jbh`on2^PNS<Io5
zSxlrGaCB(=EGCg(6u3HzYouS-XEB)(SXa}sn4ZOyET*!{x*Dge+jX^2k1iQ2_2_lk
zwONc_pSmu~#qDbF?$iw;=f*7fq(4I-5l(0JcV;%aM<T*BD~sE+xI>t46?j{g$C0T6
zy1FxqyXe(f{8R?s#?U!uXTkk+cW0yba@Eu7o-CTB)!om>`TVtFOzGS#?$6>05%NG5
z4`%Uj7LR1{5L+*eUTMywWv(n|qx9s&yz=?N$?U=`9u@qtEFRBB@9tDu-O@j{fM)3*
z`}+G7pK%s(?o^E}<{-8!C9))oC&`(`)0|Bw3!ag2=OkJxa=2-9VL{QeH1Fo*vMip<
z;(5A9I<iuJTztXy6!Dj`c$w<CnD641ES7W9xoF|y)ht$Iv7O;7i`TMvJ&Sc&e4oV|
zbbu^A&f=3S-pb<bEI!QQBWZ4>xYJd;lJ8{kE*&PV-pk?x_C;EJpONS0_$_JmdRl#(
zR=g<8{XKe-!j7-XMlTaq)8Gu43!*vxnRwS)ak<a4_#%rhIRsmZnZD(yRpMV~@r~eX
z1o9T04Bu6j-Z3V=J*}!3YJC<PviLKLt<*4!jhs#5)ju+<wTN+RA$8a!%JZRSGY4Am
zp9NCGUj+Fzi!FluCh+&lQdZ&Yrekwt|H?*}q-_kj$BO@!sn^g@d@0ISc4o1Q6Wm2L
z7rV3Alf}s_s<_dd{U?h9SsY}L{3*FNi+x$_r$N>wdAHWyP+RYa9}-c#B{-JF;Vk~m
z;)pbHRNw$Zu{kE*${x?+1P5qK@ya;<W87Yu9A>Dq*C#J1LxCH)U!jYib|(2kpzG9l
zkqfxE{QCH{2Io<%x{K3Xoa3T_iyAI!x~T8s!D7^Mak`5$U7nz&<_PDDhN|u23>Os@
zv1g~p3G29E^seioo{O_wtR_Q7U6@fnv31EFG*r#e@d0&X4PB&;6f|{lE~~gv_-*Xs
zkv~$@xrvL|o6*BBpMVHywDVjT+l!jH;1Y{=1KXVM;sO`LTnu+{p^J-LBwciH(bC1m
zE?T>2<HF}vz(p}dxlwTAUQXVu@-Bi-)qZrm#6_u#_AcTsZv8#g){Sh%(cj!J*3RWI
z;IXcm=n6;*Q-X4|SQ(W}$J~r6chS*B7Z+XG1s94s)T~0bPHuFiaHm8wnk{yAqq)gY
z$!s?l-Cgu>qq}R0<%I3&!gZs_*~>+57kymxr4E_scC??1{_HQA4;2q^xi&_n1rizP
zVo)VsA&4eWXD>2}4A%E4!i>wcB8tg$VF_+mQXE0D9LIh!GB6Z-w3W-_yyAhtoWM|E
zUf^JXLj(>L$Vg895iUl$xW&aR7o%K^c5xZK$i*ctE@h{V6pV8*Mn-mR^JpB$y3wxN
zrQ4z#&Q=Etc@uaAm3J|N9_4~JX%k#bba54{&>GdE4<Ce+Xa^TJauBD-uW`BjKF*gL
z(*&99Vu~PB1+L8~mQHtZt&8hi3_O(N2J`FPXcIc|8wA;tQOr_QEmK`!MsEXVy67ax
z%^VRyZgp{+i~C&6p)zuV$J>(I#f$E6aVOiNo~GjT;Z<X{i@V+E9{V1F_X=d_BW13O
z`&~T1xkD>$Pw^g%w=Rqibcu)9$4$ximn7%8c-X~MEl!hi=zDf=`zXD_MUe-1c-+MT
z8r;Pi7YjLXF5YqRu8YMko^bJui)URN+f}fHU86s@#gm*(Rbx+y&1acvp{bT~{_ZUv
zGd-S>C(32)>}f?SWwJl#;&~S@xOmaUOD<k_@dlHrUUsqEMbky`S0qcy;xl8fx>zAu
z(q9wg8&k39O&7DDiSJt;zwwM1k+)pDEfnHcJQe4?)_Ir3-*fT4i%(pva`AzS4_$oZ
z;$xQ|LnCkJjyztc$jJ)<pXq3y)h<4D@r8>o-RORgGxswWW9OBB?t+n=fqm|r=(7=L
zF&}lma`CmyBfcZ$r2E#zcP@T+@rR4GF4i&1x%k<|_b%4E*uX)g-L@o8y|H}n&(uba
z&d%cJCYKlgmi*DhCeHNz#qGXLZKnUco8-qA;=j<t7gS+<{>{a&Y_1@-#pQwjitjM{
z-4btoAiC-O)5TU7M>!lW{&MlRi(L%wq8Kc-&Bb;Xyp!)VFt&p_94*}G^7E+bWJMmh
zhx~n`ced=#KQ8t%{JzkZt?UzIzrX_m4+=aa@UXyt1(N>=1KqXJlBDA<PB41#Ri}rn
zrD&6Fhm!xfIO&4O$y?)uRJg!Hp@+ZMMmU|bs)uSGEDyGa>K;z>Q0k$rhZ-JgdZ_E6
zo`+dwsO8~w54BnG=i&!;C(rP3rWb|ofd^A{JbuOF=OHz4YJ8TZ9=Ft49+D>t&h}8B
zG9NAFnR}cs=Xhx7p^+C^qk+J0EY;XU6A!IC6nkju;am?FdZ;xmex8Rv_7`6uu$e$+
zn+wvy!})?F_Z5@K^mzZ+MIJU!jWf0MaB(G0IWZ5dJ+$#q!tPYWd8MWU@IjAXc7`{O
z-PyhLKC85yhxQ)2c<AckhGPYB=~qXO=dPlR9r4h?Lpd4j=#l&{OBLFxxvieRCGOfP
zMH6*zt2}h_u&sZLFEKiMxNC25*M2d+=I!R8yN9#~!^76bu^t`<dAP+^Jw04uE2dt8
z^cL91L*GhzKM(yY@d1Ji6v*e73J;oSxX6y)>*^j~I4izPer{R`hbH5J*5<{?6rMNx
z#~eC?htVD`@!)#!JPh+N+=K5SkkK5<;oDfuqdamRRxM429`YXEw4>W;Zm%5d;lqE6
zhX^Ev-}~6g2oEDYjH2BV(No46TXC{)-yD5s=d;zN9>#dM%EKfNV?B(c=4`^lWug*&
zX1lE}_qg9YHepwaaO|qc6(^i3^)OLP%1b|=VF|DHaE*s+JzVEuvWF=irV8hATV451
za^dyy{znUbJXk!<!*urOo#?@tu+`K!UGBHPqPLDWc(~ES3=cO^l#j_iW_oxjle*2r
z?H+FCh|t3&k$9^V)przeUWV@QaHoflJ$&Nfk+G?}SnA<r53@bo?cp8|_j*{!A&}Dh
zJUrxKo`*Re=6ZaMsqXjipcFkI@T}7#Aq&Q*2p=XzhzsaxPnFK+&>Sx!{ZS!4CXf;y
z7dh(fs0tYtdw9abGAUi+;Yq2rR3tpb?u!IUds-+7M?E8)toy9UA@ZDu=RLe2^i%vK
zz9?BL_KJt)9^Ufswue_etnly#gTrO1*F1c7yy%PLMZ{kh3bVv{>gJpD>Sd+OuJrJZ
zhY#o~9^Ump=JzU#$oYO{EiyCvkuVTBC3BUB)r>hlYWnz;ZP7D1p*(y}HV;2}_}Rmk
z9=`Ih*26jvUwin*!*?DQU!UrDO=^vYZ#@v{<0w*IxG_Z-zcKatW2x^wtoN|*@zjqV
zHc-^#5&sWT@uCG0zR|;vf^1^k;NUJu&0Jbae%AfP!><fA9{%)To{x`D#}*I2dHCIf
z<0#f;L!%u<e5(gG$BMh>r~VRr_`*ns?H+b`IN;$Rg9)(H!yXU+c-SR8tg^eZB1@U}
zQdJN8Y5d0{{hxj;g14QILmm!$DDY9}<6jR)MA}IY&2LN{^>EC?agoC;J9WYXAuIkT
z2=NYW63kZdBPB=9PZjxqkJBVeovZq&=7XigsdIHd>gm)4kp*Z6cC(g`(|rsj+w_v!
zKF;vb!AH4|Gkx5>v17tVnU6X?>iVeXbCqoB93KsQoF(|#0_zK8QB^zD&_^R5r9RsF
zXzZhjkC>0vKAQSC*T?xjF7R<ApE_u#&hydCM|1Xic&dd!BBT=*<x&^=xX4E<AH_aD
zl%!hvxNl@s%A$*X9M44fsqCrh#M=meiO+Y`idoKaHrmd|RoA52`&{6cnoxjh<5NW9
zKGrRd5T>LQeVI*tnc>TXR7W2vAG(jU4<$u?h%_ke<fF5XE<U>Y=;5O$#a@}}=A+@H
z)Z5Eb-D#Z3DW(S;Mf$)iQoU%;@u}WEjy8$H0ypFI_0i8qf2lG^Bo83Wqz3xfv$T{5
zVTF(Pho(9^Db44qwn(Mxy+}#Jhcz+MKO+@QW_{Q`93Rg(>K8{1@sai6`tXGE34?>9
ze8B^OIf0?TyuiT%$=2$j)XZfm3K`~OxQ`J&M*5M?SNa&`W3-P&FQvx&xWvb$J}#Fc
zYCA@hpO=m7Jl4lJ$r8VeLa1{lQu_*@uRzt-;i(BydUR|=oG22m5;#fV)dJZfW8f4H
zA9cuKWDe7OOs5;<qUVcieO%|`vH+I{xZcMNKKA=K;NwOgGkm<^<4qqo(aC*0=;I+D
zH~YB7$87qrk6Au$^>K%fJAK^d<8}_E9-X^#T2_u95y&$=?xKVa(K#e-gmRCMdwtCD
zF_$W>jNj)YUmhVnq_m7jABda>d<5C(v=*MAGCr&3`FNOy_3<n_<zv2&$9z045+0?K
z$k`+3)`-p<Ss=v4KA!Ngs=8W8I}7EuN_`e&)e;|1`gqF6(>|86M<dIbR%R8CXZb#>
z{>esimic(j$16UT)AHqbo~9N#F9;;ti+;4TkDM<HrJ5V{`c)q*B>TF+*910nRdKT<
zx72kaPoa9t$J;)B@UhXyN+0j|_{_)WKHl~5o{tZGeB?*x1-<X%0}g?h?z39TcGWmn
zeeB~Ck@+bv%F^O0)|G=+R{P)~HZ<2yH6u;F@bRUO@9FS9zVh)kOMR@By5IO%!|DG?
zoXX!TLcV1jP|<cj5?Obhlu|5@&7mfJ%cHs*d^{@5Kl<3@W1EldJ~sRKiFWX@)yL01
ze(~{}kKbtoSN-Z^wX1${Bbi&o$ZX=68y#-*hh%v&65IOA$KT=uY@(qTY0lKqQ#*X@
z^s$?>SajYcrl7)(7YY2w$6g=%q==)&Dx*9#(^L0|go8c~`6vlc8sIR4zmNI>&IxdY
zaf2~DK#c&$818(WWDE}?_dDU^zse?_^3*Gy`rK0m0SW^Y1wg>7nA$JGsQ~$F`>JYy
zYErj)fEK>uucjjPs;6oOs1=}2fVu%r7lzsb=`B3o=M2Hm4Dec!O8SbBLtHPwSpm+L
zqMRT3;kCZH&5s&t5TIdz3j$mipizLv0h$IlH$W3%=ID@z=^0<07ob^y=2Rx2Uqy9K
z4KeqAau?_M!cPq;{GtFY0~7~{u}V2E4$w+UzxSg<dsy*rU$quWn;@E=$Nk99>jhC!
z+W_qXI03Q&+6RaS7#LtsfJA_@0I2{fKr%pw03AgFtCR=P6l)cz)8+6V8i7PoItAz)
zpv$R-ilQdE3f@0JH$l1!>>;qHz+M7-3#5=f0s0EwPhcO>a6l0GHWU51B7hbk6TlSX
z=mF9J3}NPYQ9>9*)@IXIrA%9p8v}KhNOJ>t0Y(HE8Nd$^1Q-%vXn<URP&hdRd1>)E
z;a?c2!P4JT#vc|$b7y#f4}z$bABAUBfYAXi4KOB%Cio?la_Avci2}z8eO!Q}fvTO0
z4lavM4+}6pz}f)o0!#>SWq^eN76q6X;Hm(31h_N6qySe3xFNue0j>!!nUVuc6Zuov
zTsdd~Hqkt%rU$q-z;z7!0ea*V{g(6~r!LF=@8Bl-%nV_^CBUozH%X^va_Fn4ZVvEY
zO*JE@2yYE=o3Py;;L)6VIj6qKMZMT0@U8%}13VO9UVys;+!Nsb01pWNy#ntGa6mX|
zoH+sJ3h~roTol3!3XfuYFu<8%WW9$2JQCn>;bBMS2Y5^j^{7zD&kl}gTAEoE&4>j-
zwCkD3;s8$sc%7U9mIQb*z>C8FRDh=gJR4vc{ZKq}X@F;>n-_#p#crW`F2M8jv2wh?
z`GQCX$|U4)5WW=PWfApCfL8;o2(X;<B8)tWnp_jA*Q9i|D9?_(8Q`q|s{?!*;B8LQ
z03TAx0Ph5NH^6(sO!+)@jXpyKnBJFmKae82$HxIakuI+auvnDjFrDJ0zkL?qbK(3t
zz!$<cPc9!{22prl8LF?Ol=I@70BZ#QR{BfHBz_k}S2W7`KEV0_CpgLhHU#(~z^(wh
z18fZNV}QQ`{2gFZfX$4G0e%bclL+}ah%S_$idIzVmjJ)Yyr7|Yr}2A$KV&X!Wh+7_
z&+lOr6UeYDj1I@!7GS$*wNreRHryfEsuCp0ACzNHfPYv$z#%Ex8(_a6EZrwam3%aI
z2Lezyef4mFe}#UG@n3Ah(xXCQAmW%Zdt8Fm=~D4zfGRoE%i*jX3UVmSp=J)Xawy70
zBT_YoYB@mgi-f;=4%GvkmP3tPbb4F=d}KhHafFnfo<r>%&dA|RsnYTPi;8uGQa2a*
z)v4JxtExIXhx$33mqW80&dH%c4oz}sDx3{-k(V|S{5lcdI2W0YR-$6(3Z0k5Q=&*|
zp2Gz>T$n=((QxT$>U`m$oljLE50RE~A9!&Nt*A*3u^j9i$k{rFHaT=+qdAo1P?|$o
z4#^za=Fl#OxQJr)_PHpkP}Dv7XhzU)6H;`_(>mnPF^5zR<vGw}$u>V9O%0V}Jd6S(
zl_9Z94qbETpThuYx?2uCbLf>r_Z&l0)JGbYoNS_Z4t;Xyn?t`GUX&I|rvV8+&8u$;
zqtP6g!=N0D95Ojn<e=rC=a81s;g$VQsdXf;Y7bT|1}mO|XiB424)iWHSY1-6?7`}a
z!OF=Yn}eH!m&0J`lusT(@=_(2Lnv8_ojq6)vUMgBhvYCchhe#>r%c0hQ7od8OuWL5
z%3*X48*=y|hf8v}G>7|hcpw*Tj~bK1gdDCEd~6Qma?x(4%W}9}5cg=&6@rjBUXUk`
z7ER3IU<2GtL*;N)4wG`YI)`g=n4ZJ6IdDJG<Q%35^2A`(?r71}9NrwPn5GFrQP)Z7
z4Kz^>*XJ<jXc0F<wf(P%b!SM?%p7jYfg7oqNc>=Q1ZPnJ(UUumZp-2J9PY{C-W=`_
z&e=KKEy$fY+*MhZ8<Z&F)W$1rXu6L>BfFO7N?+y({C_*P9?apP9G=VJ`5flu@Nf=K
z<gi3|9?9Xc93B^ZzQ9Lw|J%=XO89~t7FJRg<?#6%DRy(Qa1wt~)TXtc&EYA*pUz=v
z4kw!78G&R@j*dD@o@JsWDK7};YcvRbFNc?;Q!fi~IY;@D)GH#N$g4S+%TrU9r&i?f
z^<YKh4VpTKk8}7Whqr|79ahZYZNVvgr6Ad(MepS>c~qqBM?!gD;0FRf6u5<+d9;W;
zt8!SK!)NSWrG}ph!zl}Vk;9ictj%Galzt^eYXp9s!~Vg%Oh=FnF?}oa?*yLOXhuKz
zUb5>2l4t#@)W#fs%%OcA@jN!=u$dzgVo8Xfa`>5%Aw;_nzvS>MgJ+1dLu|?6H%7}4
zRYUxq!yk0i91i91XAWC)_&bMfoT__^|DrKBM@#j7tRAa2L~YMuM-IDk*v)6vy~SMM
zx08OgrMUSJ9%)*<Cx?G>yk`Jkw6@z@{O;j`y_C$?+WU(439?^cpA!X?>~BjQ&f#B<
zX%7E!T5TyllEZP1;G~kHG|us2t`Inu!+qo8(XxRdDt}x2BwcG`aZwmCR|!!N!Wp72
zH{*pNKX}E75LVle;uno-A*zQsBjn8qP76^Z#OWbwhq!!5^c{g8N@|9v6-LsSUTqOu
zzbkpm5cQHQ>8}$;9|h`$s24_WxrwtmuAu(lyXd`c{SfDbh=ph!qCtp;A<hfYEJULa
zjYBjE(UjHu{%<oBg`XSZ;US72(O7py^&-B-Z62aUh~f~<YZQ_A!Vq<Shzmko7~+q;
zsg{J?ED%QK{di8C6lO0LVk?2P-seLU*SfTkhDrsNgwcuxnuzbK**cYJA0kdeg_sy3
z5uz+auMoXMB*SQhK!*_JQgQa~0%kjg=oF%Jh?Lk?2`m^8z5nkbc#kl8G2S&qH+stu
z)m<Q!KmXI@u_4jNub#qoN55E~5Pd_83NboFzYzU7G$Fh&`ZzTpgcd>%F)+j+GOSNk
zglIcdjXPR!&d})W=yV7p<V_l0T%F8>Fgd<qv}nYloS|yiP&Ij|vW3Dd=|gXc-#b)A
z%zILPh#<rWcIxNiT!=8l5K-xwp(-C@a2Pof9pl5HYSU14V5k}zg1ah)2^=o4_ONK5
z1y|*b45JNe{0w(Vh)d}+A+89)O<`j~j1!ss1~fJVzm0M<FAM*-S&6Urxzb}i$8nhI
zK1@wut&PzFJi@C&ObT&#h<id@9rETAH?vlV$swkMxGu!?A*PDtX#(fm91n-7=^@74
z5WkjkhN<TU#JG;}n`<L4x*^1kA!dZQDa6bW9}ZKuULUQwy?vNkGE6bcj|j6u+#2Gp
z5VOVdJVyJr5Vv#auaDosm@rHo8m7|M$L|b5$d$kpTYI>A;c$x1z;thjhdAOiT8KH~
zFt6=Q%?)us-J46+?~Fe{v2?lV(W(A~{87TgAs%61Ia#nM1oubG5Ai4+;JfIPVx!^e
zG3gia$3rZjK=$|DWZU7Y-|%Sd<zf!j@W_iU`6T%y$2Y{kA&!K2I>gctUxfHF#4{nD
z4e@@64?-*p@mz>EL%bE@`4BIJSP|kiY2rn?`jj|#n!FU^<q$Ow6~7YVRY8^uB&GGZ
z_~hY=2wmm%Fgk<6npplu7%iPzEuX@<w&Cp%?}m7f<8@{E$`J3+t9PduJs9QacyoqF
z?#D0GAJPaRK9i~RafnYs-ecofTeQA8zAB7D8NXg}dBExrgpUu8HoGyLel8~Eo<W-K
zs}Ns@*cjr+5Z{DY6JlM6??ZeW;*Gjhz6-IIk*Z1LS{xTH@Sx88zPvufh7do99DZPp
zIx<{wzsyI&71=h0*c{?l2Kg}B4E0lppBel^aDgkQAyb<tqs;|Ge&a+Au_MGz#ul-_
z+Kowm6#Hqo`jgQw#9!<hBilczmF*(9P4Mjk8TLteVrl8F5PQRD<-l&4n|lQQBal`)
zI9%<c7yVnXKg0n>gZ{A#79|gcI3yvC8;TDLQfpCid|{QNv>u~q9!>K&9^wRJcphiw
z@n49OA*$t3J&!7R6y$+Cs^+6mMjO(Sh56{BP?V1rU^5Ew3m|QB#)!zNPRpZ49<?cx
zqj{*f<p@<X9}P{dJWkJ}7kS=ErVkbqGSaeQojmI1Q9qA!@~D@`S$UkDk3K2Vyp&e+
z)g;$a65;+M5*y^vFps@u(J~KSS-8KWQ67!+xM6*Y$seK46(y<X`FWg|N3%Sd=P|rB
zS_qv+8$UvE>d|8_$m7C1F3O{29_^$%taWi7#e%oWNB+q)eT0hT(K?SddE7HXmE`gB
z2(@g4`gnvY6`Tvw+UBDJ_DN^(IXFTk@+iw=ULFtUk<6n*9%J$tn@4#b9rMuhNavBF
z=~yd|etC3a#~Vc(th(gUS#bL8Q+rcg^XMko?s@Pp@a!-3>5)fI(XE%j-U9nnYFmFK
zAG<Ihj|%p#W|e_?3=(^?Yg|S$?MUQ8G^WOelF?|gQ6rB`9)t53l82dxm52L(OnnEG
z6vg-T%3c%<1O)^Y1QWX3J1fDR@nImNAd(bBnd$E7p6M_{&N=6tbIv*E9K?Va$RK7>
zK@d<;e~S3sF3$eXcTSyqZoPh0_3G8D*F7`cJyE<B#T!w)sY>%`kmPS$NWybB8{WQi
zsbv&ztE0=>ROS-D6Gf{iqKqH)OD+fEW6nktW)z7il3a)=ELMMf&gQCp7i7OITX@oc
z!IqnKvz#b4@Y(q?SuVX~2RrNL=*m2&r=mzlF(`_`QM8VtO%y$&=*1w3qFof7qv*mV
zi=smm9i!+J4X&V${PNt@YtQR;aE(#^>T|rmZdJR=U8Cq0MfWIrFr?2s*U=U}YQ!h?
zg7e7PXC5z;b+B|+?<o4H@EZ`t@7d@ZMZYNet3GKeALYB)KFox`+b`K<AY*I?zrK?p
zQ4D2xL@_RkVXFDaC`LswT=5YKuXnD@@L-Y|9mSX^Hcboj%7IQ`As-*bgeWFOF<Bj&
z$a%F7Z*CM^U2v=^QOwE6m>NZ$Waas`thQzH<>$#~L@_gp52H8|#jGf1NBKz*>!=*X
zT*gck%hb^GqF4~c!YB@BWXzA^UAOYw@19>2#bT~q-K-^Clrq6R+w{X8TPAc2)AKCL
zqgWNi>L^x3u~Kax`f7Ol;Ha08!RfD2OHVR?W_Uf<E{bhYY>#3ir=SjPp|^8`z09!L
zOgru1$^EVB5XqOe?1*A#6nmrCr-Zwr*d4{5D1No2a6$%Le*XH>;AT#`Xnzz3qBt1E
zA@<WKi>tuX0Xt!NSG9egvy0+Am1=ma2LE5_p@gh!Sl|P0hlZ7TVZastD9Yaja9rsh
zRrs;OPZWL{#b?prmOn->PrE0gIH}}cMR6*M(~9qIn|Vf&!2T%CMsbeU|51E<^4arI
ze8JGV{tUU6kXi|ub1~?O;dk54uT{fu6!P(e@1wZD_1b`S8}LIEKQa-GK*bUGDT<4X
zy-v8%374YynY%KDW+_~b;z|_fZG2(lmng1AvBbbq1J{@jqe#V&j^WoRe&g1T;q8Lj
z?@`=f(vIQI7+>O{{lP_Ss{I$mpHci3<u9Z`^`=6SzZLn18$Thevi!?k%>9*+VF{V1
zgc&j1p}H!dFjFBEwriTpCU?b9D29h(csPc_G29(Pkr;}`P%IfL@O<c=7^+1=+Y)kb
z4EM!A(nwW{#ZWwkk};Hu;r<vNP--P&_$(m_FZAWKj9C(5!}f{LrGz{fLzx()YN*}J
zs-=}C$>7?V8A*90hO#ka$DqYfE`~>Acq)d9G1PuAR6d5sV|YUG3NbvU2<7abJ(qbt
zR3n}HWDMWCp)yIK<Z0D&Rt%Mr@=Of%lR`p$j++xhD28whkr;Agcs7RTlyapQD#uVI
zhN>}GsuM&)w@I(0u=um8<|)gYRS8c>%JVVY6A#mJ_DLe_B!<7;(2-eHze$8%jNzpi
zUXG!93@u`KD~1{|)Qq7~42@%`Mf+oTm4?MoM~zOK>%~wvhGj`9{Bn4IQeIK=e#y{@
zq|kK@Vt6fvhDum65xSx*Eab@RF;sAZDYG<*p{XOyh@71xEEK+>gl{Trt}x{Y)mk#f
zVz6UK#PCiGtzyt)FjW817-Ezw-wtwQwj*@K8b{0+;xQa>gtxfgKf9_G!#PJ-ZjYW+
zZ9Rof46Y(PRH0<}H%I&!?sbKvbqsA{_&~>pI@-q2jy#4BV`v{khZqjh0~fPcI>s<E
zhEXweilK81U6j0^!mbLt<!g42p@-r<74}ltTVWrCeHF6L@gp;SdLXBN48#F33{+&0
zLP`e5FeIN3Rb*HU!}BF06d7GE#C}G{urP*2F^q{}Yz*U6|I-zYS2!Vm#ECIXQhc()
zDf#lLicE`vCb7dA`SO`D%*yApW0<4(T!r)U<?~}$p!jWL*nDve>++8-iDBt&o-bLh
z$O?rk6|PdaTH%@))+)k&%DJ*Wh7B=nRFa+f@=Y;p&gWYc*~;y&$o72s4n>Oh$k?UG
zZiRak?p3%?AxGJ-$N}bx*}>cosp`8559jN=r^x$EO@jl6ABo{3ZW$eQbR3QGYbX@d
zai@+?V)!(MA7c2C*(Qc#F`S9vYz)U^=>1x5k-KwFC~_k+_hbyGxB(mFo{piJD>EO?
z5m$b^8a@}p=P`U8!#6QJJtK6UU2TYb5rgN-AXmPO;j0)1T??-+o6~wkX!f=6w{&&=
z-0x$!5W{yd%y(srD|HS;4(*Fvz8pU0%73FmKgDn{hCgHYD~3xk{LHK#<JVL8(Ur?F
z{1U^}7&1M%5<|=3A@+8S)nTC~o?K_*^(4=eq$e*A5B(m)jTnZO$)N#9&qn@;fyhxF
zyAt01K+gX-H9P0u7;Z7`#L#?X=${yFaw0=Q13Y1MwkQ9^kfEc1j!Yd}JUMnbe20$D
zJh|#g{rb6}4}GcWi{VQ}Um7>ey-P<S9Tjyvt)sAxyLCLI<6#~5=(tzM13F6RxKBqf
zUyAA|rh^_XqGOUTSL^2%*Kxm&xlYa%J7?XfkZtFXFDV~d>B~M}O6n-3<3Syzb(GP;
z*>xEnYJEA(S)cRe4?mdiBRb0JsG#F99p!Wk9T8&l@;X+G2tBF?D^fHiPg*(eC37Cv
z@x<2flRBQFsVR9vN5-}APeVhsQZjdc<kM?mBPGx1$kLIgBdjA^N6(ambmZ#LbmZvR
zIW#mSB{`4f>`KYAIx6X?s^d8wm34%A=Pnu=s-ok!@*(oEqe7pigm^)rGc**@`R+5k
ztfRUP(NRsui?q2y=mnArp?fQYnjDPWN(no8i58}%`KZv#X(_QkQbR{gJy`T6PR{SY
zhHL3~J1xnyFpBExsHbDNjuARu(ebJdms8eJUq=HSZ?Tn**K{=0@rKSX@$kBiMmn16
z{Ij{-;c02C<A<~~(Xk;dAEX7X<(JYq&2$X8Bj?f95}O`sPHRb8%Yf0LyRL*==wL9@
zpKt4UM@L+TrK1&>-j|pTT}Qvx64micgWNf-#n7?6wU`Rq-j`FfVs4%3Arf0hLWiUC
z3(3%{*TZ9e*XY%xjuWlrq3hvNzl4i4$n|xk=zPYEj<n9N6VX{m7aeVw{B^X~(LqN$
z9amb*kpq!*nVdV@NZB^hQOCaWIh|;vC$EeSh1*Ewp+P)%)zM8ycY3Lf+`1BOtgv+(
zS=vT=FwURIp#i;h^wBX;#~>XC+DKm=1K67{{dDx#@p&7$(MI0e8~J5;Xy29aeQo9A
z*%^cBD8?H#M~9wjE7jY|+47-b^g~;T+?PWfsbdu5P{&FgqjikYF+;~p9b<KjWBluw
z%+(nh8n0u5j)^LA`m~jo%H(h@7^oyubWGLx#U}n}8)S@WI`+1eb8Y3!zuJtpQoNnG
z4RdF4zB(4^Sgd0Xw~~$pIvT4(^HluLXFRtPE*#Sl^%qjuP8isA{|+tTMwk)$dT(Tz
zB1;u=-Iue;!3cBL^%0>}I#%o0rDL~_H9FSn*vzz`W1WumIyUOqL=Uu+S?y$JJK4bP
zzcqZKopjq9;fP#KCZer6w&~cx?ZYK&7c33a*LEFuwHLie&d6WG72C^S+cJyqjqKqB
zb-b(NFrBYszm7xnTYGu2y&TZdsl6OzRJRZE26M;{2O?aNW$ooX9q;Qn*j{)jS|L=@
z&Z&^h;g&z5<J!fnKXv@2<0GB|bbQR@uk)K#e6QnE<}@AWxVSow={T<Aw2m`6`mWGU
zFkh|EPU`q&Z0;BB<rFi_S?!-)8V~jVHo&uNwL<&1z0}>HomWl1(($#9FBGT3m*h1f
zB;Tk`F25Z4maDTiObH9C7r6Ckp0e;q9Y5)~Oy}shsN<53pShs3GEZy|l)pNn9XX>#
zk80buYOCWJH0&20|D4etKd)U?!~Oe_c3sD>j2|Z34pO&X<ObzuwBHp{{|}``Qz`tP
zj=z}-3^X_JkB*z%tp>6T{Hx;@leU3J4E)E$XrQoxyA9l7;I(F<OaoA)fPr7DgeiF;
zJ6upn?lN$v0ajVG4pPX#!&So-n}%w1kb4Z=Yv2I`B@EoBl#3cDrbrQmEjkFhDsJ$V
zFPZnVpK}pb+bSVRNdpfWC~crrzVeU`QpVsTU4coTZja3FARLQ@q^yB*1}YeM%)p}t
zT2#v|uheKQ`TzE0ez>>t<I1-8JIGT8Hg=FFl){r#RwGt4aK3{)t%TQ=B-?;ypoW2(
z267C93_NEb&)|3Ic-BB=PO77@e|A_&wW3utriy_lI|lQrYQR@+2^)wQs75atcwT9W
z0h&}zsofs&MFWjH%1Z`bRz}|Ls=9#>vcj~S)s0!<S_Wzxc-=rF19enCuNZjMKwSg%
z3~b*StP9I0pJWi(u)cu?27=}W8XCAgkgEo*T`iY7jSVz0(A2=`0zs9I>fKSA8F<40
zXT-VCq(E-qEd#v_^fu7az}p5K1FnI0474&}8i*T+DtlrIIU?P{7|;zE^kD~KVLvRC
zTLx?c6FLUM1PwSBNvc*0mBgdd40JNknNeXNZJ?bBxz<XDJ+$G_ZE|U9TP4}8ENpL}
zgQ{|x9rHC$b(Ag!x*F(ipobFPXd3Ef@TG_$%85M<%*YDgjtzzoBdU*qz6K^5m}H=z
zf&K=D8W^V94p3$cQ8>`RAOnLHAFw0BnQ~riPV<Hv7-3+vfiVU~s)n2?kB(COqOz9N
zv8p=Wz&N$UT&&xjOyDl)6zESjFvY-J1M>__<yv%-83tw=n5G(5=_Jz)5MS#QY=Kz@
z=BQ{4HicR^_Qv3(J@XALFtAv)Vs)W`MQTLuH8!Lq-bro;*fIml4SX5LS8=Q`u#&~Z
zDi#B)4g6r>M+0jNtTphNfnx^N8CY-N69b<zBnoO93~XZ%D!$RcCIg!dY*E#%3aK+F
zOLP7R^Lfl226h@aV&EeKyA156@vr3VS896<>@|3=GEyZ&C3@tsRnJZ`x|6KvBnR^Q
zIcVUJ;_oUvoG*V*k@ppTz{pp`nN*dXv>lmoppzUm@Uaq}>m>J=3*GD_O^fE1?krT;
z*ibvpSXKNSb3(E32?NwQY2Xw$h=DVzAvMo3)l|zR;Y4b8mcx&PK4<DM@CCi6biOh0
zts-9;_&UE;<Ia4|PUd$8zBh1zf!$d$3u$GRX~Q~8%R7VKell>8%VeUViAx54<|rl}
zHF4R%6$5vfC}iRn16K|FY2Yt@|6|~~fy|TIuN?ijHoLQI=qz2<M}9N#JHy++(a!RR
zQuv{>{Kw%=YNfl#{|x+X;1-iS3r#X`ll$><B)5yy=_3DfgLe^@)?FmS#2qGJV(+?0
z|1MI%#Lg~~X$H!(y2vM8<hw3X(8Qf4NNy?#v9O7|O_Vb6pox1-+-stkiQ*<obd{&O
z%6%q^n5fZJRvpudnrPWo+IN*vUFCigpRJEPKsEM1C~s+3+0#{yca@SRE_Rh$UFE@U
zqIHwfCLT8NhzasC?5CSNWTJUDxp7P*rn*U46N?Au4eBQQ2IiGFQNcvmM8w2nCLTAD
zV<KeocS9805UFV5X%kPHnBGm;<SEr~bvJp&M3xzNwQ%JSg@?My7u_VABbp$goS18Z
z{Z}>doQY>mR5I~LH>qr*3P<TKMY{*~uy96sG@!fm>@MTG%j@06>MqZl5EHdb)HYGg
z#0w@~GWm8vS=?Rfu8X{Ag5&P#E~mQ7%O<LGj`VO3smWG7WZ8$|@;!uP_u2@X)G_gj
ziC0b3HNoNPnK*Dl<Dteq0s|)Lk@_Z*J*0s`l0H4;brX$D^fA%bL}L?8c*ulf@>(>~
z)Wka`TA65O;tdlMd&rw6T9|mt1TAlFVwvie{p{``;fc8|O`Pf>Z!2W;sEL^Jn{7f@
z&42D8aTA6KlgoM{u!n`sEe2IjDce)>dP@1v!wD1hdj@^FCOi`zO>{Ehn@E{xZSpr+
zoEea3_LQDIC2eAAPg&hl+M2ksHqwr6?<w#1l<#^<dlMZPY`vtxz`VzM$%S`Ao$0Y&
z(#=G76Aji!x|ryyB;=D%Xgt)zL@yKLdPz^ZqL<i|^b(HM+r;u-vbUG?Gtu9~G)9Pt
z0VW1g*~EAggG>xIG19~+6GKc4H8FyFwzmv3G2BGC-tv5JIo?Yy_mYCWrRd=h_m0(D
zMyoaAx{Tqty=78wS=L*|n%LD_PV|-uCb)AanV8J|-diTpMSbLvJ~D;T)koreWU3<d
z`veil>I@SzO)N06(8MegvsLGFOz=?8J~FY7lvo;>YhoT(t&hw%QPvKf?judsMt1j+
zD}DI;HI|upU`XC#?(x2|#6+3C@@!vO%6RT8ulAMYCRWh%>mu>K!tKv}y4u7VjzXWC
zSZiV(H>`<cCf1wSU}6umgo&O5LmN$OrE{u>$TykTY+?(i)>lTWQm0vXn~Civc9`h=
zcW5W4&nfhk-F+o<V5nh>$Zm#HU%A#-at4O>nb>dQeG?xruo+rP;gE@g+{m*ss6ffP
z%!>Wwu*nCS<UO9Mnnzfz-cLSM#vE0aaP%W4K4K*I6I#WFADj5Z#HUJ!lH1lEeKB&}
z#0eAMnE2MjNsclwbk@W<nxy(UO^2A^L^uSSbm=Fbn;6qi&NDM81?qpvo)=~A>L*{D
z_(}<>xu~BE>6u4szccYY*O$?2;)01EOt6PbCVo_!KPgAi2{iSh@((@3K7Y>dT>m@t
zi;1fye&<$g7G{UnO#Dj!%*(v9MdZ42(eZxrb3gfwsY4N}W%QRnP5fnIN*q(;_@9Zt
zO+@2}#qp1cn@mA*ycoy7CT=ll$5A?t|4d}W(WOM>o;dD^^C_x;-=#1!j)ICn;l&3c
zJanhxBoFo%Vj)#6tnltQvX$`OIPO!DB5{;bq^QDT3fZc79QP~!fWi{_@{)?wQJrw0
zGI2Z<$8&My#qn?)kHk?ij;G@&8%Mb~*7cXC;y7O-@@O2>`^(%C5%ThJwCpbx;z;+G
z$KrTgktY;BsgUwP{Uu%^@=1SrCXTE)D#uYJjvx9<%@UDp)gk-Q6v>GrlrPDR<5|Tk
zDZJTVs8)P{WGxHPGgadtvfHpCkvN`@gF|d85qWZeNF3ED86e~ZN<<nCkmLZ-N<?0Y
z<Fz;%#_@6-)#G6E8gbND4asXNNiBu7)u46asGDz3y*OUU=dUW#bAUA9jFyGQ4G1Rq
zdK`-fNRv34aurHM8pY9A5qf}2K!s*;yrDWLr!$Ff#?d@q(n6896t-0Ob{y|0(n=xq
zIieni5yy}?hQ?vW@qUR&ihibo;#M5CB8fO0MW~QeWXAw;74a1Mac~8Blr|q9Ag$x*
z8Aq=;+QiW|j&^ahkE3H8+CaHT9}X0*cn39|2M0<gCGV`Ti$bb(RivB3?s4=`giFsu
zz14{Q;^-eopE&x)QE#Bwln;~%1BLz>5XYeWXc?#o4WoQ;97~nLFty5~;usyr@HqAi
zlo3k87#JDH@qzNwz+kP%#4$dO32}^#gH;|Krxxg6b#$T<PL5-eYFnU0q}U*NVvxK%
zNTxBQ)$$#VV@4b^<5<gpSM!}kc^pgPm>tI)wGeaTn5PJR!mykl#{yMdsBlpnHA_U^
z7!<58acLaO;#jS=DtGJhI994|S11W1lfqR>!Vn!%BC<xwX*uQV<Jb_#&Nz0(u`!NK
zaco!4;nB^?30u{SwlIy9h|p2n)V#bwLCn)3JK_+fz{uYn#{sTLiO3#>dll|exL+X;
zaV-wUaVU=7gM!WSu9^<r$ceni6^!Ep)&B{FA1XYekoJ5O$5F*U&X;_m$ft39mM=NR
zmCEPz8(W=><CKz|j^m6XXBB=P$2mo~kEnKDac=D|NYt`^9mh9uylJDkjc?=lj$v;h
zVd48YE-+bHc+|oVar_tuEEKfx6C1{HBaT1fxD?0F%s&^iuE%jXjw^~^i{lqXD8H)6
zji2+#Ck_&+sge8|$8T}`&XiaugUXb!EFL6(#_?Aix0u+O|Cw0oWZY!JkK=Ei0^-;)
zNT_zZD-yOPQip{k!@?aFVm&eo(AtYxnHE;4vB;w}wL2}`Wudr*`z;i*P}stK7K$iM
zHox1#Jr?e@@R({s32Fy+7F7zxtiVoIi9AGnz(NTNr7e_E3MDO+vhbi%`#-C0>px`S
zVGCugU@o^0J))YdtrhftTc^B*3Km|p@DdHM@VJGLg<Pff1pBn`w1p=vJf%9h-GuIa
z#zK|_%|eca?Emi&73gFRce{U*XDw8+kY^!mf!?mHdakOlio*Ui`IlFLg`X%7M=U(A
zsxPRcqOh8Uw#qr(YH9!HrI#&Kx6s@|3kx+Y)U@!5g;$k+Eemxl)U{AsRl};)ZNus*
z$=7PE`ieKO@R}kybut<%a(fY9SG<wJ#tJ#9CW<t*&`gmx6uy~%^v^-^mW7rUbPI-s
zx0Sq=g{UI$D7@`_E=NpFlhZj^OEcA>xCJYJ9skdVHG5<xEjSD?8wG5*7CZ~PE$p%2
zTS!@$VPU3)w1w6dhFch6p$*+-VX%cET%A&(b{2XoLf+m&2gN%o>|~*{B3&$W%h&0u
zNU6a>{q7ceSm>!Fy%cUPovEoqJlaP|`YP<Fu)l=?iVRdZNFg=%Zq4l8EHsphGFXOL
zn7S-XAxo3lk&zZgS(sp9qQyTJ36186gJrCRF&0*C$kf$X<1GF;d)}nMGG395gJqJ1
z$@K6LnQGyq!7{}{xgjD$<icPnI7Fsdm~Nrt5Sjj39?Pg9GRwkj3u`T`voOcPTnmdW
zEU_?;9a>mmVId_$<ozM?!w~szh&(z}B15IgP+3HshIt)_%2H+Ca&B!!mRT4*RF)6r
z-ELTAVYP)d77h&+PGQ~b2&eX=;su7u!^32~g$)+ATG(b`qlHZtwy@h_frqOOlh=mH
zW()Q(={Zcc3=4YLZsF`O*<oR)g{#A)U~c&C;eqll3*{A|WUqyN%!d{(TG(&lfQ3&j
zd}iSw&9HEUZn5yLg~Jv;u<)UU_qel$%lj7G;nH-tkPjU$i-yad;c`y(d40GXweYc8
zvX&#H@CfNJC&KaxlfVe6IYN$EIBxL<KYV53goTq9PFpx*;r9l4?MBEc)o|ztp&QRy
zIA`H=3+L(T5weACN65ty@&&_qq=ZHW)zTw{{A&x}Sh&FWxA3in?-<V`<$KPeLEft)
z#ThC6m2%)u3p++i!BN4Qo*XGxM#?1%KU=uTke(B{Y~czmv2eq}FLWBSjfLwxeGHYE
zKZh%hl2=B_uNJtnzbUjvNxxAtbCis)6#B!$pBDbMP;#{F86|&N_@9M;M+N+wQBu1>
z-ih&f|EO?!ezZhBi~P%ccq4R+{cvlKmX4z(!w!OE#%S3vS~6|G#!EI{wo%Z=oi-k|
zQQpQ~HVWA&ZsUF%M@LIx8~56{&&J(0?y<q`_QPnoH9A;pmdoSwir6SQMvB@fW+OC4
z-WVh4F*0b3JYb`QjfZSJOa(TyQQAfs8*|6VgEsyiBgGr%?HMCqjghgvb63xalpQNC
zjFskN<q?~oa8b@iudzWaEmZjP?8vUMQo+V!HY(YuY~yh|*oIHpsA%H}8;vG}Se{hm
z<XCyy#xpi@Xp)UA8`(BA8_$oEU&czoaZ+}ioSzeEGA@YWT-A>^PM%eShqx~Wj*}`j
zs@jOKm5t}<qTFzvjj)aB<AS+!o39@yAC417so0<&Ua;|^jcPV1XRKZrC%480!NVz(
z952;v)UeS^^;6SEEj1QbxwefuHeR#Q&_-PwT>V#UylR84sAnU0eBhk=Hr^O7%tZ}s
zq{qvU@iKFK-t6)6IwxzRi5=t|23unrSH?@>39@Cpd@^2|+TdQ`=#NbZ@C`blREY81
z!p2)R&e-6$b}enZZDW{?;Wpl}(aJ_^8*OYvZNzLOZ8$b`8-@+bhHb;N5$AntO+rm4
z$ao`EZGs#qnz!q(kTXFZ$p|NG9KV&fxp-dh2{LtpxJol+!?WSrSUEv9^vioMGkj=*
z^z(AlHrT`Y3DVX^JFd0OI~ma4MhAx3MCoLsqYWOtIzc!b%c#e4JM+x)UtWWvd0lJ}
zyV~fc2zhrKJ@R=^2FXOBu#b(tHu~Ebz;&D`&lSz<M^{gj_(bVGQ3l!=Wb;`(3}H-8
zl<gDcoWfrwN});e_#_$17@H(7PLdHeM%q|oW37!*HbyfBY|OAR#>QA1lWa`3F^<#W
z9w``}z|GPu)NGQpnIwZJ$>L&p6KyP1WalKAVq>a}X$*q`;S-ajZ_T{FCP|UW^5kTh
zX=9d+r8bt?nE7sGHWzoYIFn@#%`1`@6h-E7x$`9p6j^9vQNCocjV1Z~`N^`}#tM3#
zYfV>7mcqsJmK&ilxAN$J8n&7PO_sGBda|rz+}ilS=Ix!>U}K|=y*BpQ*rcYzh1g@`
z@MPI+V~ZkN6>d|wUEvOeI~DFyxLYAxeKA=||CjgMWZBR3GDQy9cw~xPzcai%BTRBo
zRS(&CR}o4MEApO=_wyysO_3uuKC<ztjn7nE9kubXjl>jbGDWHt41dB9ni2%qq$zTY
zamdh}ET?R6nkQ@=oFXUbhbh5wke{CtEca;}zfK9F>#W)f+z#iM2B*sB3d>EEFKv8f
zW3z)T4!*YW4O2l9lEk+*zT>(lFgbzmZCv24PvC_Fez5T)+a_>V0zcWfXyYFnH*H+9
z@w1KJZ2Znd!A;71GF5)%ENDQ5Z2nkqU6HFct|>xc-ICe3FO!GrOqGZ0Yq*qUPn8=~
zxR~{ajXxQXQ{^uk|6?LmeCbr#GgVGbm0zX`rb+oR8UNb2W#c~^uiuybzdLi-m2c)|
zBydLpWv5Aj1du@PG$GGSVAtXhNx?*L*~8LkniNW)a00~>xIclr6SyaV4vjL4B!b6t
z?oEI{{Ul0-D!!0+A3g9&CP~o*<`oHf)1+7e@6^rXk0}o%P$Gd!2~<v?WCGNGFcI9>
zS1J*F7soQbSZ3)2$|Uem0uR%e1o}^tM`&IGPbE+>fpRqRQdX*I_7e#_s(5*Y6%;<E
z@NtDydsEA#=93Bj1!4C2-?N@p@_*W9@4u1tOukN50@;dd`I4LjLizk`8|~Qy*mm^2
z*?HmYDv99FmGUULm{m1_X{Yn1PLt;n*g7rvfhn9oB*8yEM3GBbERw*9X>yxS+@rmi
zz)J~O3D^m|oIv#i8Yb|10yPq-nc%<DqrU34_k^mo5*R(PYV8E-(D@0}OW>6RE>07c
zJEqG6(*ttjnJ|$*0&-lI1_`{D2p+)UtY5j7)hL0+3A9M?reD4gATN^_s|hqspkTL9
zGc~p53A~}IZ&IOc?&P*vM7F*7PgYB%P^oDsYr1fnZ*%RGVdSk8i6#(JL|14iG!uw(
zS*K;t82$=I<wOF>1bQaWD}i4h&2$oQ6YvtKHC>Kf%<@&(aKvt0odnVew5Eg+l|aV?
zUaX$oHo;qz(P6r@m@apxw29%|_6f9KsO6N+=Fv_G%-<C1nm}iz+(lu93fZMQWDm*7
z89rUQQ(?MTMYJA_<mqyHy7W$<PXc2S7@I&}?$aK*1Jq2PI}+)~FiYV2bYUqpLk2RK
z6BwL8)ysiDM<*~uaaM;WFii2`3P&g$nSXRt0#8)WzTIm7{n>wC%;LYXk4wO4o;yB)
zE(1c(56zsAz(j`e3}KZxC4s34+(_ULhEoF56WGFVN?=9;GZR>pz~TgEB`}*?i8D%I
z;q=@&3CyMD{Ooh3vT5FPGvw<hLJYG743dAccn2U8!a~kymsWR%EJ<K#0xJ_(mB4@}
zLOirA!Iu_hEl=<t3bYl<1J@Vku%FcltWnj?39Mx}eVnx+fhC=@*D22GdQPEr7Rg2>
z=b=qB@}X>!dZ|#W8L};b?FoF8z|jPDB(O7q_qbo^{{(g?a9DM|hn{bn)pdp(NMNtx
z`xH{RpL1^$A~~1<6<7`>@NPb@Js^8}>)cs0Wb!N8%1c=vsJzjmUiOD-)<+WfvUB!#
zH?uxY;1gzA3e_|_*4H@MPZPZ79LEwk&MnDsRhH25x-aLRRGia4rO0W8XB3`I;G80#
zE6muINi~))I938*DdE@5@QQq+kVn5&<U8g-MK0va$EwBpQB`-&kV~{j-OoI?V9w78
zTu$Ih0>311jd7U3Rhl|O?wu)FGldShF++Y$;5P=tOu^_#jhWJFrgWSszb7zari|+x
z`ZIyQm=BXEpTz$X_&b3DNn|GRPXad+$VlRjWRR3D*3JD_x#d;@|8daX^6KEcT{GqQ
z%wVT?$kIMqnaymBBnl=`IElNHxbtf0?OWM*Cb6(#_^u>cy_E6c9a^CzU&o|*|7G8k
z44(fgn+zh#S{=GKiTgNE5=E0>^+AQj6tY@8iTm^U1B#SLqGZ0L6p0(58cS&<ER)1T
ziaf0F5rx@Gr(6=r*R-+qGJc*Z6_R)?2`!17Bpy%Vi6ov$A}h&1ip_hH9*76`2|txY
z#U!3i24@_W+vHNIyzFF<$!R>ZR^77MBi_phC6Sv%l_aVr@vLgj99x;rEETFmoFye^
zNyS+*{inR=lGr~h*nnF`YrXCX=g|pCkg!A)>0BvPEr}O63kMH7crl5Wl6W_X!%4iH
zMD--PCeba48cEbl;?*P{M!@VQ;TLB~tt4tE`9M%`W_)9oyplv+#p@}g@S7*Y?Pm!O
zHAv#MB(OBpDTz_Dq+t?`lW3B}>q(S(G0X=y8YP2=K^D!D;^VTL(rKLUENPa+8%exL
z!)9c+N+Oy>^JEZ>Efl_`u%*Jc6~3d83frE`AjXo2=Sy@&427n`cV`9Z-Aclyx9Pw)
zgC;CX-pq8Af}4b=h@V6oMN$f>lUAg461B!<-)_}5iFQe}SMm-?bj;Vh`f3gp{+cD7
zIeoP&yD0LzpV2*u9!bneVr~*w9}M+OqA$bpmAqa_RJ$2w>77KM+nf(a+zj_iqJI(t
zk{Fo8q$DOMF(`?_NsLZnOcFy>Y<FmpS8TR0PKG8iEQ#StI6~n_g%=*q7^Mi58a2nN
z>PxCRE{XA~O8JB&Cg$^svt^3nQ<Ipc$eXiedj8Swvt>p;pQ*?!Mo7LSeKTBhVrX6x
zi;`HJ#QY?978s<57I3R7UUotzC3CN2ElFa15*w0ON}pWGVp*oh@+4L$vNB)3Dv8zk
ze2pS&lUSE8Vb<N4#HJ+nvbTPDESr<q!VI9Q+*aF?*q+2rWg(A_n;l$x@8I6NE1P6j
z61$VZ=R|4}_bAS5!hPIFNgPm}@cNvZEC-V~#7O36li5OiFNyb)xSYh5BtBsBN#e^S
zzDnXq5+5bevx{~viK9t;tTy=BBtA*v(<F{3aUzM&7&A;tbL8<ka%i@EHCz6iEq#8{
zI{v1eOyYDBXOcL@(E3e#VUD~pM@V`qq|UTCLTf+gu1VsHB-YO1eF&MI7KdKAoOjQw
znO`UIU8T@>NqnEgH_6}@sc#iFd?>goyO6{WNv!D{`iaJ0%=%H`osVgJ-jh|zFRG)L
z6#lGmP^ZW*4B8|LIVkJ|N%dM17yisE;NW@^zp7;QTM~aH@n;gh(;+1bFn!%n^1XB9
zFD8GcdIxVG%lKPm=6@CbqmYUErXoCgOOgNb<rxl6eV#!D_Qs=`4&Y#1oxFk$?sD*V
z^_)8$Y!By5UXtB^WA^v+v(L<tyB*x)1j)0MgL`RS+fd2=xy2par+5*CMHLoP$lF|R
z>)h|)0S8oODRG-P_-l@^dVXu@K?kKBd{s3}2bOX8!(ymysn8=1$~x%gpu2-|4jy%o
za*%dV-r*xo$a0YFAXF~$n1dU2L&fIG;|`v1@T3EN3-PqVrxdbUkv2~d5|(Ei*co9G
z%|VWX*Xe|L5^|7B&pUih3eP&I<e;j9=Ny#iox^MR$_}bHczUkzIsJR4ROOSE#0~sJ
z;Gk&XO1zG0cPi(3hp$ONO$W6cRC6$|bL2$_FFAO@!9U&duDza1d}*${?4Y`X8ay;t
zTF#Y$b7kgS*)&&9&z0H^>NprUPhNF!ZLZXHP|v|DDjx2cC(~wRRh}oW%@b#y%$+Co
z9c=6pY2e^BMH(vHGfyaN<e;&GCJrC|g6_a@(9FRb3=apxs)ShHbkM@VTMn8#_+_4q
zX&nBqVYsD(yXQ-V`SQYiA-S#jj)PXJ)x0X9s3I|iZ_O9eL7ZM{6m}d~ijXJhTgAU_
z6lOJ<FaNu8$W`1^$g0l(s~n<EYX@x{baBwt0nfP|=Sy1$?Hsgs(7{1xdhbSFNBVPW
zh@VZ4Byx$JxIj%qL*@rpFLUMx`I#SDd6oOd>sk*7JsnJRFv&qL2fZDPb}+^PFM)Uh
z?c<=YgMJQvUlJPVU=TZxhx$7hpa_MV=gVLRLl}5tWw?W*^JS=mTl1yN0wEu!Bp2q(
z2nQn_j8fGG3&dU^)UUKa#;UE+dx2Ca72@e>9L+8g8n1AII#h2&#$*Rm94v6K(7{v(
z(;Up<(iGIDJDA~MmV<v6$oK`aYJnVBATu2hzhA&-?s(r+sN_N+&Si%T-GwsWL8o$|
zRtsfM<xs7Kvd9Up9M-FVS?pkmgQb)>Sm|IDH5bY#RhBzg!Lm>mo(vIJJ6Pl3r-ic4
z!CD807E0^)LNCn>-MpAxAevinkvy?THmIJrUCY|Y6mcnQlfowLv$s0f#ysHTJ|Ej1
z?4V;^+;Fjz`_93eE}Fa8?O+c>%f&q|_Bz<-;9CdZIoQvsIXL0qq=SPT*TKhJofX=<
z4h}nbk4b<l^^x}SBH36sQf{TzYEf`cJ{3N2@Sy|VInU}52Ol{gIjV5;x<L4egHIi7
zI;?%>;21Ua;O6`Ri{!ZCZ=Q%yvaVL-l*7jr@wtQ34$i2d`ySNJk{s0j-Ks5HBzqRg
zc?VxIFVV<F@`Zydi{!4w!rm$@maiRr!+m-&tHxr9tkha8mhT;0aPU6{wu2uW{78N7
zFZ$L&$Hj8V!Ou*dpJ^8rPFpOO9jsd{EJqdgemiuP9Xj~K!JkZ?4t}LSncUPU-!10D
zlE4xvy+nwzL=HC(o!+6XSgSQ#B7B75FK+WC!bb*Lv+CfcgZ~_4xcHZrEZ1%^Vr%El
zi)R$}B7AV**`wMWE(*A~%f-bdlIh}~wPCm@=wk2^;Ufv}oQ$kq8J@pH?sW0dl3>b(
zToiVL`F{MqR$!@A-KpK{;yxGET)g0-h>M~w9&_=yi()Q{yC~)2K^OPCIPr~E!bM3J
z4^V%F_Q+DHvQ+pHb?H&<p-;8?OQp1nOCxe0cJYXdGKxQ>kV0#zlyy<g#rmaE-o>LX
z*s%Tw+GN#3uccCfeHMv)xKzGgDo?n0(nZ*XwM?FJQPIUSF0x$wwN#dUp*`(_$Wm;X
zWV_IKbeYsxCOK+SU229n$B^Q=E}m7Sl8efUoHjE!@hXZ}Rrs7j3iA{>H9R-s;&~V1
z1~EK+x%TMCL97m5CNH{p$wfUEuef;G#kq}I4Hq?CRClpxnXv3%CbeAD=G0siS}rv2
z%rdFtV#-Ha_u;wMmdUHDw9s;S)kS?5ja@Wx(ZI!PF4D`TkqfR-gXPjtkuTrVUU$)U
zLzv`$Uusm~Q!P!ENw3$9G;{HWi$Tj}#d5jTBD8P0v~cm3i%l*zyJ+d+Z5P8`jBxRe
zi&ic=yXfK~>LSLmR2b+k3>Qfkj*IKFGfleM1tXcu8h3GKxs*Dp*)9@XsV(8P>%v*5
zG(H;RG6+A?SbRl1cD_iiFPD^xhn4%aU-xRQU9_R)^utlDy^9Vm#-5C{b8+vAVEb2C
zAst=x+pKkRK|b=RMr5_Ci*7FZaDpznyTLB&;i9LD#oM)NE2Ni;-b_I&q{rs)z7e^{
zUXEPX!{q&3^k<yA7~*1pi-9f{tdLh%Yn(+pcD{m7dSZC(h*Kw0>$EmhSu#xdkX2e+
zx^`rwi%~9SyO`r*w2Lt=IE5+9dn;tDi}5ZdC_YZLqL7g=QB8I-x5EmV<l@D3;X4m&
zFKrBV;#B(3#dH@lT+DPa%LS**CLgX1e|9_|S5yy-hq*51xme+1C6}9KbEYnqxLC+o
z;<}8;<xYQKW4O>t*|Q}e9AzoP-o<h?B3C41OE86LD>cRgag~cTF4ns6evYiBD?ZiA
zuatG{>R4pGiw!P@t_{~(DJ@qDaia?+x^^pN=t@4bhOI7+xj61(n~Uu(-$8-HE_SHJ
z-NRH*54hN+n#^4(yBQK{M`V2*KK`z@&&7Th2b51Z%`GeCAXoO7CN+ZWbV$i5d{2=h
zj6E0cD`(OhA1Lyn!t*QTsG8cxE<WK-Un!+mNt^ezN~`2k7sN)Z<TGUh$q5%HUHstk
z!CRbiaoWW<F1}^lx;X3ND;HmLd%AE}$$1xFxcJ<~meblx+cn~sYPf2jYt?J!4q7Gi
zSILf5!Loj`N@}kTf5#-SO1^jT`(dq+nNfJPJhfUbs4Az!@)Of6bDEkCv+K_;E^`OD
zIJ!F6J6Bv>We=RlYWYRso2#YcYUxoUGGeu?TP>GY%dblLH-&d^(Ef1oCs)mb@8K^O
z|8r5rLsgG29Kb)!x*i_zaFg531w0h=!1(7tw_N<koWDjgJUqHa3MjmTI3l;&8fmsh
zGCdGmuaP@F+~wgO5BGW~<OMnH=~20ND^l14PewfBP(p{?=YhMXh=;Ljr13Fr*t=Sx
z54ECf^`TZwVR3~Vy@ZF79x8Zv%tI*;4|*uap*@uLP{!kv&RDZXn6)1Au<ejmXl0N>
znd%==^0FS@TO;4D5$crpaA1$dQf93X|6U`Hdw9Zw<{`(!lOCS(@QergxuS=sJust=
zdr#vA=jucY<W*iPS?XxELT;HBYbE4i+y*Vz!?PYZsgFO?cy6tvgq1yDPf(>oi{;_x
zJmh(3;Ndk7VGj`xbv=w(E6;ln57j-?U=JQ1`b2xtLy1Eg9s2?$YoyaQ?IjO~YeZgF
z<JLT+@n}uuQo6U667sXgh67q{C9LCtP1>&&c3#iJD{7QiJ-jt0x4z<>AP+V4@H*Ri
zh<Rw_p|OYmZ3wsU&_s38%)=XsG*!rpA}++6%AV#P7OxeaDVXbc;q;b=mP+Ssg{`Rb
zk@gN<+9JgBDJ|T!Rv4eUhqwpJgQ3(+F9=$e^J~TS_>KtVt`nCFT`M=~!SV3TLGAao
zL33Jr|2pC23iDFRL)yb`4|_bc_Rz+|1P>EEv}G)L80cY;hxQ&ic<Ab(n}?2c@;d3Z
zPCC);do^R7bY>te7M3nvkb6nGd+6ce&9hp65Bv9OJw5dD(A&eiN3?tPY28QW_MyQZ
z`gtH9y-t|@cy3yx$O|VT130hUnIwZf3}G-+`Jgt`!!Qpc&TAt*d{{EXE0*D`dch;2
z<n&~hFSPw{hDLc9%@y(R=h2|Ld!6va_uAR;I9hu)Jf7~_8&oHGnCxMRhov5-c$n&8
zj)%D(rYTQO_b|i5>2-2toy_zwi($N8W_!W8^3l^7t;XdRTrZT=S}*fF%=fU6+owik
zfd>Y5$MrJdtq{pO>t&G#M(>%!+G5UPeVB7x=3%*q4IVanSm9x%hqWHod06G4@&Ro%
z_ZKB=g3Lc`eUOgWWbu00w_esWx2zXl8J<zqO&&IT*zRG6$F~PyEBC1fX1~yyaFGq_
zDrHTWCx{E1wVl*lr|sfGYznhOUUcztedd_ly-Y+Ne)4dUhq#M99QSa-!$A*+XtoEQ
zS>ELy@$kNf54h!3|4(j^Iva%Nbaut<@S%qz9zIgLlGU${MTjg%88a%<KJoCW$JZL*
zr(K!H=%tlG!&V#Q+qGd{u$}a9%EOl)zVcA<WaPAmGak+=wX0{fDJ!&d9?pAU+Hbc(
zK3C49Z|R3GR4_A)zb5hUy@v}76?W?dm$lz{sI?<#PUq7JKd9|o9C_UMvo^?&9<IEr
zF)A*3_}RlP5C3_%OreM0Jp9fWSgHNu;hKl*ieL4xeuI3lLB8G~zj`RJMk}yUxGrzk
z%Dv&?59WCf|1jRTKn#^}xwNqKM)@DzwNdtN(8#ro!KS<E;a?9Nmlh^B%Fum*4H-V}
z@Nt)q(;KCLk4zs0eN5dbeKtzZ!y0@HUZ<{I*9BYkPJX!K-rp#Nd=&Qa!9gwikoNIc
z+TA{W*(moYWVc0p6!kHM{rD*6qqvWTK3?~6zmEreRP*tIj}ksg`gqL8<339Hc+khA
zKFa&xPtyE2&yT>ReU$O>kdKFbV3UM5$q(ZqB#*GwCMnC$n8UKm`B*wNo5Biy@Y4oA
zjo$vMzn+=%gpVhEXg+fM;2Wg&1#_PA`33_#?c*6A{K_%Q$2~8GUf(3nCh50HD9QFQ
zO_6UGhC+Vu@%ec_xHl%3`ihWO@=-aTSMgCbpFgKao{z915rrE!1vl7;k29O()+Q;n
zSzh$<l8?GR>iKxtM|B@HeAM*O@~+%9HA9W>*S1v&)nX@aW$~x;%Y}2QZkF0U>iDR?
zS&YrXZ2yXnS6TJZz(=<mVSY2oFqX=p*ZkmLX3S<GeiPMYvrK&`)W}C;ABGRpM-v}S
zIf{?BeKhm&h7arUjNe9NzUhO%j?v-#`Mx=)zgb%Nc+1DS&B7nrK2rFOk5)dSK4Lz8
z+ANt{f?wb0YGZ5U!es4YLrv!zZISGeS#fsjqn(fTK5QQeA88-0mH(4IJmq%BM`Vk<
zwnbbTTscJU`?y#*FU4`U2up`8!CJKOQM+<*gJoMEKUWV8Um7BIptTH0A47a}@`GP1
zmT!^%K05p8;-f2PS5WJxu$w|wyDQQ|VNahgCkb?VE9|3?)xJJ9+#URYK732?jmiKY
z1AQFcB7=N<b4=syA1oK^<qf4L59f{bG0w*@AH#ioyG2I$80BNMkH5FbNJjNm(YDGM
zAH3@?x>dSu4Q?H*wN=LZm_R>V%$nq5qL0a2Wz|+8KJ|GXak4tZqldQ2G#}I1n~#5d
z{)Y}``q=7Yn~zyOX8Ty+W1){nMr6$KG1tdDKllv()mGVo;Mr3CdNrSZJ{Z2QV$LET
zi+!y0vC79170irh`g5s|Q$L57`B?5_g^x|22Df?!cbAQlKeo#B-?CQwSnCI0r?clZ
zs(*ebyw1mZddbH|)zud6>us{h$7Y6NR$jM1w8x&v%h@KcY?Jsl;XvDc>|k3T*M02t
zvCGF%A0PYJ%^(bC^WMlKKKA(7OROAfvyCr-!JuujUsdOClLJ182Ynp!@h;bb8|_5+
z10|&VJ-SPAe&5CF3(@e0s=8xaa0A9iYFYUu{3kv>_3?ur+?q10Wau*=pZhq^u%R<c
zhK?&dq41=_Q_O+fsy;s3CR8}*<E)aC|FBK|QNpP$bHDKMm5;CKf$j38!gVckzhSo7
z9{lFTuhG6${5yr;E4-kP3jY+$;XAK><UV2=RBz?FsK_M-dA{VbB3BgtqVTH1fzvX6
z_3@jJ8$SN<@nwZ<{wRFCv-Ud^$aZPPQZDo-^QYPu?(E24K6p1K2{Y;)Q?;8u{`FBV
zg-27k<>No*{1ghMkdeY2DIkS{sbFgqNTEePZP9k=v|Tb&AdcNGa|+}#Bk}vyJ5#}D
z)xF!La0+*)P$q?kQn)7-c(_;!KWvwKQ@Ae$=B^?s6jg+rxq@$1J-uCur*MA?52R2c
zg;H!@FFX8O*7(a=C27E=EI%iM$nszcrBmP`7XPoThf~2$r@QJ@$l3N^_9H3qN9VFB
zR9}%xQa*(WDO66ON(zsq@OTPOr0}F_^4O_7rbJGP#y^#Umcq>HxfN4<DG(ODl>JN!
z{U6EBP9aN?2ODJb_9{x=s*;_PLWrK(A-O3$o5Jfmq|^?n#FB!&Lwf9x@jIky3eTnR
zY6|sf>RVZP^h^pbk*5$z;rrg1&!<ppRj67DqR5Et;nh3jg%n7(Y!44!6?!>^clv~C
z@~9%!Q>dW`h3C6RYNt>qg?cHxl0u*CaNQKn?T`<j&e^v^NQe}Y5F4bxR}sFJLc<g?
zt7dPyFZ=ZrE*6b6N};hL%j<@kq;P$Q)Y~b<LObQjo$^KsZ>DgzJ<hd9b1r%ckF-PC
zc6cj=mTZ;Ar8M5AJt@4EM$0r>r4UVFSqjTjh^3&XFq`A1z!R&H;tQ0}D+M!!cnTK1
z#E?j#Z3>ALk|`YNr+F!K8=`IPsu?@QNx@Blyz5T+ca-L*kV+w)!swl{w1?I@g#|l>
zO{h?!o7Rp)q;ROa)+L1<JEa3-GKC9Dp(DrbqJ6egsNXq-e|8G17y4;kIhJZNr>oXo
z4b&rrV!MRZ-i*mzGBkx@^lA!yQ|L#x?+Q+rLlo(s!hjS8a^gxjNC^k0(0iB6-6gj*
z_wSN>?a=TPM$u-5U#ZXtg(FkEBRa&eq-0DAV^bKH!t>KIHk`~DuMY9()D$M<^NET~
zQaD-R6on(UN2V#lex|1|Lv=D!4ME8)RVA5A1D*&iQF~`z3iDI=ZkKc(ps_4q<P6Xj
zGS0cX2WTvd72%<!Dey{zKME69q_C0$rEy;xt5R5<!uu(Fz_idpTa&`36gG1$?CiA)
z*C|||!Ujbs->685|FX8w$#i%M@20Sgos<Z%>`P&L3Ric@4uv}v?n(uBK<!q1kHWnQ
zDWv9?=OX)4IFJI#L4_ntzdU+4h4(1=U-;0+d91D*o5>+QWN4*=`>qS6gR8ZVQaGBz
z$Bfd8S<N5M_#}l-Q@D}BA1Qpsgh2nOt$JMH=L)%VPbhLy;VFfu6`tYlP~@CKYCe2V
zmGk-h3q`(E_*DvDEAoxPZxvF%dMf*S#wrt|l3Z8#V+ucUe<}V;zUHMAepdXlLMHYr
zbZMs?lB@YT*SG=a26_0`e93Pq{H}Qa$1^Br`7?zA=^!2brR4up__xA;6y8+$FHZp}
z{HJ(^(x<y__i#r#c#{lyrjkQpL4_3FsmNUl@7yhg(<rxF?oK1JTkc7NckGii+bu=X
zD4NF2C&RT1<P}S!xYBQ)#{FqLkVefkYNb&kjgo2Pq!D7ZXm+VI%CfgK9!#TjIyfDa
zQTUL;It{ZQR^$<d!D-@J)}v{ZPxBROsF+5DG?=#^OXKl0W>pGuILoO;8Be5fpsn_#
zI!a0Thq9ke<C!$F)A;9(?5s3)7s+P1zfgABQUT$85t=$glXBC+y_AtOo=@Z1G%Bf~
zE2r^Xz716rsj4s))AAGvEA0ArR(iLH;xDH0QX171e?cMbr!l+-^<|FLHoJzx>I#SM
z7VbU@Yo{^0Rc4(u>N2()1-BU0OXHO^|86yK&Z`O=rt!KW_0uT$Y<7b*UQ^Zi`+{?B
zBgGr1(fEPv`I$iv^LI;=G@2?&?(bQYzrj%+%$|NQ^ky2wKidZ9$`)$9uI|ftJB@eJ
zSjptT{GUcNjk#&eOCy$so<{#P>M{AJVW!b5joxX*)riS7oHVR7Y_4o5^HAyRgp$*M
zDpiA<4Ba%^rqM19FJJDbk;>=kG+Ha(M&Z`o!Y1t%?~=wFBZ7;B4yxKQjZTVmR+vzS
zx++ecZfSJS=RMNssd%G!@X6)qZt0UozcfA`liN3q3%lj!?%-!TmK*1_0ci|OV^BJ{
zv>uwqurvmzQEHD2Q4(HJP(C~z-1ab8Nk%9fsc=*pqth6p_&9}B9;=i|SjH>i1cejR
zn54+`Qkgt7B^`W%o0{Kh8dpR$oS~4z%~WI-mn>g0M-iU==clnCjTLOtI(K0ji_%!0
z4o=OBxyAO#QU-AS-~-MQp3@6zyn%cfm$hl|W*g#XXEUfdCQG|qBeXh=HEA44<D)dz
zrm-%KooVb!2e)gkPh(>mo46?$X5}&|`C?rbulzTsu~nsC@-1l)CtcIFDarOUcBD~f
zkHq#!w>>g;kL*rk4|Voy?{N=a3++u~UmE*4@s%M~Sq`LeD2;d1xTA62L51t~$YCWp
zyGN+DZ;z0?pT@;Ke3@Z@EFUVuZjW+J(>R&N>T0>4r15Dwc%j4zF7X|?pD8@1@Q%H5
zJdHo^$Ym+HH+auO&R#i{#_2T9q;WRQ_az1&PS2(Bc^coO{~uM~0VPGzM!T?=oO8}m
zCM<DxsUaw!C?FyRKoCU5NKfwRxQGcAMI|U05Ku%3Mo=)3bIv*EoO67)zy0@}_s;pw
zJ-2RsmA|T)>6z)qLC*7F>=}&xjQ{sDztS^0&Qp7N;td9QpLvQR{X0G!Ow3aw=BY!2
zahMGa#uP~s=|-b?OlqM2aUsk)H5jJ{qgn*jBRDe{XE|wM{1e7GM#5ke(NI*w1qSmI
z!8?O77J-X{acM9v55|?jxXD9fFs^beVmAikI%jyE+A~jGxDq5GdNxm$obP=&dar-*
zHurMb3?}am#=XHv(~wU?K@E}lD!+zw4ejQur{=4#%V$Bu_KYA2t$+q%llh8ng)|fv
zfAaU|t700;_YaoPyq{ql8IV?7<8AKJ_(y<}8cJy>t)UF-U!uMp7%Z!yoQ5iz_qMIP
zhDJj&DhifgkXb?FFHtiZ{*zfr6lPTxg`}#6Y8t9*sG*^380EsKsiBsJPc@9xP+LPC
z4Nqx!T0>n8^)$5Q5H!@+&_F|T4J|Y@WStuP8Uh*`YuH=Z*F^e!pYZb2gH&j~++_bC
zhZEGi=U_I~kRgN$leA`%oH$?6T58DBkgcJWhMRBuG6kuVx7Ls|K1d6Rs05j8qoLav
z9|^I&#=CB!i-xWm9?;NZLa>vD2gRX-U`Ijf4{>PYgAZ%CT{O^HI7KS7M<hwTn}$a<
zJToKMQ{1|1xKmB_(D0ZLIxtClT#|HqLc^c))suoulK0ZkTSG!aQbQkBrQt;lgEaKj
z&`-la4ZaD%XEhAJ5~K}~g8c=Vd``pr%UY8VY0pdY1wod2NyEz;25ZnXyuuYJ(Bd@>
zf6WNKDx3~fXs=6>dfEIf!WyC)Vhl4boZW&7kv3+1fEL$4TsL3o8h?(Cw=}%1!O&o8
za5?iDm^HAA&(dHs*fcy|%SRhHAxM#Ah{o%{!Bg|qP>yRt@C`vKZ*p?xE9%5|G`y?f
z1CCe2Fb(f9<R%BdY}1-qZ?$hmd!OyLZ$|M$4IgRvm<zE$jnJ@mN|07+fueIR`Ggx`
zfnx3`4Wl(|(s&b8jM4C!hM5{>Y4}{jSPfG&{Gef+#xoofG)&a+rG~FGjAvB;*6M3U
z^#Vofm1@n1%_ZMxV3N6^Uos|X_)f!Q4c~If7O3O`MWl@p`<^W>P`@uwKWdn&;U^70
zYhW^Yr|C2e(>2WC*7&(8ZGFC`6iI&3ym#`e7pUJfQ2bSp%I_LZE>P5oe=q<vEYh%8
z!)y(6H2kaKKQ69@zqtn&svo~^LASySJ^P2}#zIALu7-IU7H~vg2j{cej;&}bRs`sr
zOBQNilDSJXEajAPK{YI6e>AMpu$s9%jw%FKa^9x53|DGN&N(5c6{_ml8V$rs544~?
zvQVwputCE{4aK7^Y21AjNw#R%s^PMRD;l=(xYKZ0!x0TTH0;!{Ps4r<ySTVb{GVw}
z_sD+SEl6drhN}~T)QJZ)9AsAu`<BK0O!i->XooZqDIV2uOyg~Aah7MJh7%f2vBjRj
zlROL?Hlgu{VJw(SPIKu?2ATVDzozGS@@u%L;XLE8Lvt!bTJy3&+9jTEWrOjB>Z*oo
zJi5a`7}qu2U>Iw-tASZf+>DzVZt+aeaA<RY_Nj;@_cTmfsKRA@`NE)>CP*cJ7*nSQ
zsS^u?Q80`mVH6FcP#A^7=r%35ZJ}b;qJ@gaWU(-chfy+&Qel(`<G?~iJGD^JEtixI
zWBq}QGGS08p>eUwhfyJn*TWbbM#V5Hh4DZb9m1#_MwKvHhC!dIVN?sFaTxc7Q9X>q
zZ~JP6Q9Fzp!fOiBjXJGP81=(w5JufF>Pc4GB1Nku*f8upFS1b>S&}4gefz#9Vfexb
zhLI8We%tS7e-<g8gaKAEKG<WCA~p@<+l~I_99M6}wwg)DsI(B}twr98LaQ(`S##KX
zbJZq{wqaz4(OMi-7{4!4p)kH)q)2G=X&3f(R(m#g*Z2NB?~^R;ei5m345JgP3Zrir
z4~Fqj7>|b0J&exm=ZC&7Vehr(Vd0AwsYk*fQm1tlv6~=$9t)#K7*BHGVLTp2fIt4{
z@{RG$Ymr7ydqPAiw5K`wql3M}=oN-J&3kzwQt2c5mPM*x7|(|Bk_^9p7z4t1K|0JV
zzM4N5#=tP1598gFt!dNB2Pu-gC_YRM3WLaDz8vO_J-y+-8umWna!Scx6NO1Fj4;EG
z&S6Bth=%cT7@vd@3nL!Jn_;{aMk0)47<L#=7<w2fb~ucEi<BW1@_{lvi!@=itc}D9
zgUH;=i<BG2kTBi|BZq4=HAsa>E4WzEhBDL_E0%gYjCaC#Ka3Bg!pe))yI~9q<2}yj
z#2~HiVnvZ;co_c0>fy!eBL>W3^`Rh@5u7X0iJyisGK_D+m=MOOFh++lHjHs$j0xj2
zR=Zg7Z4cezVxM!EixtH$!uXOg6ULeuzOPthvHESX`bV6}NyhUn;$p?ziD66%<Bzv|
zQ^fh(Fg_pUn;gb>Lg>IG?R!bm?FX*l$G#s0nIxYc#*8rkb>;22pThV#j9IKOj9<d|
zHH?{I-W{>^Z`_#4)|(cq=671N$nR48^t9l<#p-aR^~J^N_F`4zO<(OP!P#NVVTjfW
z{>5EzCXIF0ofQ0fe&F9Q{tF{5f_xFA&G5|)<3t!I!<ZMw{4f@Tc{^_JgY9;%^8DbU
zFqVX|RQO_U>MKo3Rr4)lkc6>K+*Sy#tl?W9#!BI<1X;ss&O;tw8^*dk&X0#1^7zIu
zHVNM>xJ7VlUheom)5_KIJ}>VGV`msl?&5hOxx0CkmGSM#^V}<BpWuG(cOeJ!au4w!
zs_xZ8I}*mxJpEW0$Az<IW}OP-bQpKS-sjCTVVn))au`?m{-3+)(~L`;>c#%^+yc|H
zE{H<$B2TTUie%m{f4v!5S9$*MXFr^F9%zgG*Z3+RB>nzu`rP7~xkRz@+hMd?qPh>y
zAm`V$ccn%0dqTRrnVvs_^ax5vP$mLIP=Lrku|`lZg3#Guu?QwDQH3HX96^x?x-C(4
z&IaFEqKZcF@)AX(PjT@fDG|Y3QA$ZAtj7!n%0|4af0ZI={YP54h<9y}Rz89XdAy<!
zUNx#50mG?E#Jlo;dXKMa1n<1-BdHNV%?RF#;Oz)%MNm6}Xaw^srq_v}ZUloOcqxK<
z5!8<$o2^99AcBSwG>xEH1dSs2VMS(>2z(JV7JgsEyY(wY-UikmL4ZA3sxl&Q)@1Ek
zqV6nF!3c<SpiZTE1TCasCM#U3D7K8CmH0fmR1I3{-E4OFQk9igEk9qYi1(uKAp6k8
zABv!jkhX&D1gW<da(@I52$`}}b%>y&@VQG>C(h(jwRNd_D1y!rJS-Km&S!-@BG@H@
zu3V7_9*v;8C{IW5Se|E3Aw42^TnO)x%PRm+2!Aqyr?^1!k8<j)wwLI=Bj_XKnF#tu
z(C`2E$@T1?>rlWyAcE(F56n}Z7xIGOi+N>Vj$l-0@0!D_5%3%2S0ea+PFk+=S_H30
zFj$7HMG%f)PL1HjrQR385hk~1(#T^G#3SCzaUuepu@pg4l6(cB$QUys7%K5*3R1Cz
z*n*Cr8$nK9?vM!H$m303On+0j{*<?8--+Pe2zExWD}rGWycfZY2!4v-{RlpY;EM>p
zj9_>KXSZdJ6(spEf{!97x=f7_<>LrGiQv-+MsmE2%w_7OM>0l5Fj{gOE>kS>&@wfK
zS&w9pf6j(PWD<8W$FVbaGO2$h(=tKuYe7!M_z1ocK4qDjyG%{wzT;Hn<$lMQS?0|i
zZ8GOM*OQ?e!H>eH2~N%PZ#Ub!UGww^_DZRrBlsnPe<S!Wf?p%}jmyEx-wM)x7cxt5
zrr_0O>W>Ki6kcYz@-J7jBOucGuL%B*;2+6ik|G^Q=0^B{18m^#=H`uHK?G|eSR3J`
zS}clSNdyN=`de1=|JW^SF=KwY>Q&y~rI?@MQps8t!Ezxh1Xl_&ca@OUg7oiG$}2@%
z7Xfj71TQXELzgS^O%ZI3U|R%Zm#fVY#47l=a8c^`f0x|t5$up6YnH3yV)<66-4X1G
z;CzJta>CvS_OX=+4n?q^6UB!be;+&`r1}a)-gE_D7SU;iIuXIi2#!Q>lzU;t|L%=*
zj7Lz#;Bi6T;^|Zbi52P$&)eKP=P)@;eIU+fc^>BJ6IQ5;5nPfbD;ve-2(IwOG>ZID
zJ~jf^BDl?iD1yZ+)czIfdIUEjxEVpAm1@jNUQb5PmHw_T23I_gF?Xf^ZUpx@8`HAV
zq8>I`sUBFV`mR**m5RyqC=f-7C`v{#Vx{_Fr793b!6*tvF>fV5G~v=pMN&A5BBGEN
zjiQ+FZIWfq@E2R9N=5PK{n^1)e1HW?3+HdrsIWg2%SBN>iV9KhV5}@iQZb53!rS%9
zesq-=z*VBC8b!4zhII8uM0szOsu@MCD7HkgHHz9%)QQ55!il186!oI$7R94c)Q_S;
z)O*kQa1;%rXcR>-ii{{4N5TK(`lI-Fl_I$>ipi@~lPG+mlT%!?N(DsU%NC<(7DaXx
zt)t%UDVj&oB8ry6c@x)GQ9g9TyCLoMRo+!Z-V&CW#SZk!CQ(s@qG%IE+bBw{_OfWa
z11;~@+E9}1#It=A_j4da)dPYZ1Um{+>=fnGa=qM#@|4c3bG4!}Z$#Q7QM79o>=H#+
zP95*0Q8Bn|L|XSK9*bgd6pyzJ_8>;li(l+U(KG6OHTHzyCnx>nPe$=n6y(#*w5LU%
zWqQwD>cbiC?(ZMPfGD1cqHh%aqIg!s&)a4)tLJL<Lx~J+wIY8miWeA2k~=Vp=Y`A|
z9n5(;V^9<?Me$k`uSfB66l2<Dz7hp>l0qdiSoT$M&gCOktA-^qylOe;J-vT;g`<e%
z@u-lPU_6S1kffk4NdJ@&L(mko1ZS*PF58Xb+bF(cEJbmnLhzHQce|1|q8Q3fcJsd(
z#k)}qi}EQacsq)vs};p}Br9`m8u@#|Ka67kYW2SG526^(#eLjQXBv|qi9RBVk0p#*
ziaH%WjbdaJqoNoc#g`1iHEIl(zG`r+;Ac_XT&-xINAcW<H0rc*QIuJuz7U7W!QfX>
zd>zI3DB7=46Gf!YH$o;v@$?#%TWXRhi8X3+6yHbjdlWOdoliEI!o`hZY7{?2!T<37
z81deDP9u-v7mEA_vwm<!6hCux^@AU*Q9p5V26*2QSDxy9S^O)rIs|_cB>8fU_od9N
zC{{<YM(Y1V@Xsh_M=>XgzoPg%ie*tOXCF>9`6r4+LjD!}Pmuat9vZ@{b@0uPVuA35
zf^HQb9Tqe2hWKbpge(>0J8*ufv_e|s$IO*N*q>EVbhzie*<KsPPixf1D6VrLYt%YP
zu8(4akfm$XzBOtSr+2N|%!OW~nygji+oIUcJrctcG3<z9C%1VFtzy^}MS;#~2ckF_
z#qKC>m(1D|#a<!T9}Mo}imX-pIpj{k-fI={P!xw*B!+@99Esv+6jyjeM{z8Q<58T7
z;&c?zwd&oq>O>UZtW_s@Hm>#ly|`hmIupg&C@w^CF^Y3hoLH;QN3nQx%Tuj0>5#t8
zbE~>eU5cWI@XPEH??SUqwfn5)HI6rmv>5Wma3hLW)~Q?UBtuJlhOAR#rO2Hq?nbdz
z_^fs6p5#_O;nh#e9|QQCkQ15dF(me79}zeH>GJM6RVaqSF*JywVGKoLC>lf67^=lk
zEQaDSl#ii846TRzO2kk$hH^3Qt$RtqQZbYkQbus%)85?xYOYs%NBVj-%-*omS8!Z<
z#TY8bP$h;+G4GH6YQ0+3F3{nS|KIVx_2Yc+zvrtSLyZ{f#85Yeno>`#7-~~|(>Hmv
zukKv$UIBx*28r#K`s&5dZHuoy-KP2I@ZLrrlZ|3%97D4hwtu7Ui=jyjff#~Pl`n=B
zt<wB4^dIKywc8im;(cV!h~e~GzNX?Z^+>SwBCiQLG?yC69u2l&2S$1SgU*a0D~1PS
zcqoQW<ubBkXd6R2&W0qFU`UX;ZDQDaGn1r!4EJ-e>{8F*<LlJ}F}zqet3wRrk@bq4
z`iS+alQ{giUh&Jp&M|c5&|-Kv=6zTAh#*Oq7*>CrM)GJ3kskiX*|8q}?lCM`uO5q`
zM-0z*^*>NEtJ~Z(l11J9%zZM3r(&>Tu=)F+7<$F<Qp~&aTkjZ-u2;`;Duncj;Ta))
z1^Wro;i>8w17dhC=G}{iZ@&k!i5LcPhBqiCFRoW5HmDakq8LbMbSpG3o%nJLuf*_b
z46ntIiosyKl}LX*hQVw|?qb9wU-z{b!lFcC-aCY7UT!RgxG0G{B^l$hbpKbDA51!K
zP-bqy57St1&<5qi;KuM}3}3~N6T^@g-iqPv7~Wv?cJb5RjA5woH#Vqo8@ywG<_7gn
z4DZJ9Sqz`YFpQz{b=rF|yw4>Ys@85$AH*;`=G_4Q$OiSHkP(7ZJ`%$F-hV9QlRW*?
z7)IvtQ9?$?FeXpQiehXG<6_<``xi0q{R11yzfslPsHpIb$Ja58k6~I2(_{E1h6yoD
ziQxwZ-bOVshDkAeOYEM>_mJPkK;`?G_kMD+h`jM&kBy2*g+AIwHEg5$F@~v<OJ%}F
zH6w<fVwfMpf*5{|;g=ZZ#K50L{Tjn>GM~T4Fngn#|4jyw`pmpJpC#lE!9VFEL>u9K
zmZaNXG5jscKY|qh74o0p+!*HN=`6A^#>abkOSw^Sv2<V+!#K}pX$;GRFV9m}2w53J
zZi_6tI)*iQxod^2i($Qx4T8Czo22s1d7fK@Y>i=?knMs8H+ZAi6~pcrzK&yj9DBHV
zW9S`6pE&l#u%E|Z9L3_`cdQ3u$RGDU;U0|PPz;B8_{VT5hRfVCF&vBG6wi|w)^bhT
zWE|V5j>m9<`bI@NDTF%hObqA6?Q9I^Vo2NM`Lh%&Azl!?$TLtxDpz8-l~?W67_P-|
zo#($e+!U<5Ni~;Bx^7apW4IH;UGYzgdlk~|<t8_&e4?;&is^A64qnhJ5XX0&(hJ8?
zP?Ck>-o?FFm!&bQh$u|bp?Dl6;&>pA4sn!>qf{JC;_$JOp25;_SgW$i2`?j9R&dF;
z+2!M?5J%UbzoKB{I4TLDQaO$)!mGwnO-S`P>gMIvh@+<PT7tC&>*VFWv`N(yUO!K1
zAf#a&jq;S?o78=IeDWqfrV4>Lvg2qSM=*|zI9|LJ%#5RH9L?ewoZsIvj?d<0HIJi3
z9B<wVl2bfU$e(|HR;xH(pPxlS%o0w$Mq$5-BNRvbIPQ<5O&o0{i>2DdF>jN~El$FQ
z`1@@l75@I5_p9j`_nv+BR2-e+crcEK;@(Yc9vAE^$mGLuJR-bHp3+rFw>TaZ(p~Ve
zyxbl_w8`l#+f(=xaXcwx>n26<={Uac>OF(3SKND3!TVY~6Gz`T-ihPgIQqr$Y~1@i
zrN_}fjsbDJz$ub|zq&~=?4J`pQ1JOU-hSAB`k}Nzal8~qIF3jhFURo;XMp^}w3Cl{
z_b{Zr8pmsK@3$!AZ_G;{9ETRi`W}8>LZrg?w9z<XaU|p3u@H~rlcE_3;U|lDMJ7Gz
z;evwRyrtqW;xHL(aX4}CPaOUCX0^^qw}mrVZ*P_xM@}3=;&_8S%+rT*LF1S>+jFKH
z$y<^|!sLQIS$wd<F!t*H;3sjs7svZ?e8645S<!~a(QvbByIFl0$5WftN1~6&%l%kH
zx_uhQ$hh}glu>bf9>>@?MoV&xAob7U;3Gx&@)6yv#>Mev9ACxph2#$3tR`(%d>+c|
z&E5+E?~eFQ924UBBY{5?m>9>TIHq!G;`o+ZmD}?~6E0Kt`!gpqm~+yn#KD1oAIGB2
zYUgG(dv?|jar_tu9hgg;F3UPQjyZA6h~uX?evW&;DE?iL<d-;p75<xG>5tPW&J;dN
z@DIU11@Eulin)Kq@i%v90<{wOCysyPxE06kIR1-cE~ASFDYrlz^W#_@$C@}6#IZ1r
zrEx4{KY2J5^IzMn7RT{RasSSTvr27IOX5hy1D{v%FOOpdS9yzC8OMEF)EAwzI&D$?
zx2Vxu)T%gUPt4lTHe)R(GwxmU*&YY4Bdw2PV;q|}t}SXq9NWwJS8P!uOZhj)u`P~4
zf241T<Ionhm1|VWPfOdXs%%xQwyGU*?2M!O%B=2N)h<TwR>k`L75#g8_{VWNjx%x8
zsN~-t$Kg1R#PQZvb%2q>+PH#S)$d|!wyL9X9E+oQE&s_lj+1Xy1-7ZW+tdl+B})6L
zoQmVmGTzlHx}D{&jN>X_WlDL&KOe_M>Ba@=eCuuMscq^Kx79XvS@bJ{>}S*B{%dhu
zkK;xh!?&rM4D6bIlJB-DR@Jy))}1)+#!)1Jq6uuc&wnqD{0XEdFn^m$OMsJ^FM(2J
z{LDfE1rjKn0LNP}f$iH=p#;C^4{$!4kIlHUO%>m+IzP{Y+g~h!;tB7+EmabHR3b_y
zP$q%02{hiWN+n=!_b#}VPN3s<#cOoWZdc_JC@<AkN}xglw-W&xADKj~n83*GillM^
zQ@5)s)&29gtEvf9W1P=Pub#l}?dpq4{u&8B<{*Q{#j2e^odoOzoCNA7P%nWl33N@M
zeuB?uM5_cc6KI$~qXdEpWUyBW+?T-DeFFXju54E?G|g<1fG>gnN(V~pP{r$IHrk<>
z8%Utd4)tK&%qMoJrU^7pphW`B*xRCko_zw1`v$5!6KKhS*UPM5C$mJ|%-46QtOT+X
zXqQ0y1X{B*eF8Igs5S|x1VRbCy+f65mRY4y;Hw>~EqnM(VAT#apjY7j1RfCQ&Ixqj
zEG6(@0uLo{Y=^qpE6|Bz-vEu>xVJ-*Os|_+ai<FGR1YU`t3~D`g5K|c5_mL$=M#7#
z0k+aTf!;zM6Qt53fyagS6nr92e^SU(2|O*NSDwx~S*lM0&*Uk6h4d4AR<OU|0Kw-H
z7$}6Lp3hV-CNL<0*Ap0=z)K0doWQFIyq3VtX9B)nfmdWE*+lN>sBq4i)Dj3M5KSP)
zg{z$zk>PW;AKK|HifWKqw0>qhff0QJ3BjZwlX?QFJZ=av6R?D^S~|E1<RmaDfo~HS
zlE51Ye8k)Yh9>Z40`Dd8egbcCnGzV504Mn!2?>^cmofQtfZ;)r3(X}Pu+v+J4;VJR
z0v{$YJON{;D%;!ZKf8LVS?0$He3HQD35-qPQx;Ev;ur>J^UP5Rj833jFVC6DaXS^s
zX9;k9S?9LifpOf1jL!tdC%{PiGJ&rWc(!-omz`?mPL-^cd3dM#hWocqU;;OVkRN&l
z7>Dc_9T=A1Nynxn@PmZe<OIGKWmEl3cKAo`ESc3A2~101O=jkF!5zf{<OiSekUjZH
ze0~=EMetX_-voaboSDEZA@t{h&Q4%X0#lOsA&I{d_?w}a#EVJ%lfb_`VG>xtDNT6S
zm*#T+?(}Y0%F9jjL?JJ?OD*IHlR(uZpM#0T2`ou?SFTDVu~f)@!DWKW1y>}nGJ#bI
ztWID@0y{a71lA_7DS^!itP`INg6jp}D(HQ)vr#z7xvw*~2;Y{cY!%XAmv?n*yYODw
zzFk802<{flb=xa^pI~m00|^{V;7|gG6DXAQI)5aAqX}F{;39Xlc%BkGE_gzaZYPD*
z3j|Ila3+DXdHOja&7?o)g`Z3ME+uf8`-mG~lq(5b%k#gQKyFpn^OPGxhNXD}zn#Fn
z1k$8qcSOIN04roxJ`vN2Lh>ikRvIlJNmf!YiDgfFo-~req8AY?Dp*XAxy6%sZIbt8
zTuD(%36>TtBUm<xa!HgIPPa-zDkM=+$cT$x6ST@nR1u}F^S^ehC($5@h9cHTqNb2q
zg0%%%s*aGlNz@ZkKTq!^!)cU6^CTaripHYfC)h;LC+JTiAS5W*R4{{KT={=}XeLT-
zvSkvXB-$j=O2kaTEJ5}pTS)69l#mys18tLNm&DUa^h%<Ao@eJI?ic<*5*?E0n5RD|
zq?2HxhS!0IgtvLl_pp#hlIW5|SK-}~cvML5XZ;MA?n(5N<YR(81Rob<J%`VDGyH@k
zpG@K@Ara|eP6J=>B%Vuxgw`jCXYzPoA^nngR!ILmeLxZ=hkDKfMR{Iu-i0Pq1|{)Q
z5}zgUc@i%t@k$adbCY<LL6Sr?iC7Y^b2i#$4o*T#VtLz4@^BLO+GH9fG9oNkBBN@>
z^hm{YCgVvYl1L?CB)!iF$t0>im7yo`_1rWjn=VOX(oDii!by7HU+~+6Z|0`ijF}P{
zw2yYFDZ3P#7?Q*rNsLJ1<0OW%wh|e`l6WtPH<NfPiMOTfJ4qbarIzec{I-JRT^?&C
zJo0`LA22d^tKmtc?N$TiTMUv9llVxK*1HwI`(ShIz$ZzJWQTWq-)nrDL_Z;;k{C_r
z-HIa}BLkT(MaCvEE{TarOycRcTYZtlR~#DWzkvTs!9Bax_$2t>%;lxLTO*QuBgqMZ
zH+QRVx#%6e&rOrX|2xih{r^3|_In<xd%WMC{h0K=K>sC)Uz3>1(A~pF?qc8Le%kaT
zW(fZ&Px(2CB0apU-;($}i7iQNO=4yevyxcEPA2h35`QMqZI7Ct<gd9fNBDm{|AkQh
zn?tA&eE7=@@_&-}SM*o+C?;uhB{?sNT!#gDr4}YJWRDuVM=jyupTwFZ*7E$x%U#Jh
z5k6~=S|Mc6ml>>KRT8U{Xf4eV*Kuz5s0~T*_ascN=f)oyoN_&DV-lOBMdn_=nzcCz
zB7L?cu|0|XT=yjSul5~D?^5dSBzAH|`exI1i9+&Wk&HdU_j00=nDBV|$vukB2a`CI
z#Hl1sCviB5BjR%+i2{4o(Ik#Zvi4rZ%8w_#YqPu(OFYR{n44C<NQRo5#!Aj4aXyI)
zNt_k`b4l>ZEp?W<n8YRawr~dhc_BAfRD0FcB(5c~dnon{#q}g^Bw-q`4BSlORuYv`
zsGP#>B<^r@Iu7W#%l*X#)iF~?nvQ%rp3?EOj{G{(bv_&!0Ugj$Ku1L#m2?!;QAkG#
z9VK-X)=@-9aUIdUs$vpFbu6A6ET*IPUhhToUR@uPea|#$)Xi5)$47frX&q&R%%2x*
zTFh5gM>!pDHw$cz`k5@xhE6uAAV|`(s;{z+Dmv=usH>x@j%qspVC%1`^GATb;1FMR
z9aHwI`Fm9j9mHLGRV^L0b?;vBSN1B}%GsIqbkx_;SjT-j8t7=KqY;z))cjvEOYKt?
z#(8MY3-S*6O?2$N)a2(oP5SOrBtA)Y+NXj#GIZRp;{hE_bu`n_T8GlnTt^EXnL4th
z!!30TKi{O4j-uoItG@Eb_Nhn<U*Rggk7flq*lZmm*yy~Vd9F!FM;msM_Fr()3%;q1
zeC>4pxzgWW2l=Vj{lsbeR0ka$bv&x0yN*se9@Oy&hp&Twf__NH!hLG{KE-pjvkv0J
zf<^lHyXyS5(br8X<UEj{-KWy`tH*To(D4M9du%5E?e(~ho?O`)zP-KtOy=wCtGZut
zy`JQ<ru$m%SG~B1I)>?ZPe&ge&*(_$Fm&|Q(ND+AI$qK7td9OVp4ah$j#qyT_Smlm
z=y*;C$GEYYZ{^)419eRPBC~i=@73x>9fNfET6p~DSNtR|Ns=@FDhH)Q=iE-rWEfPv
z)8us>9ZoeFEJ&gW3G0Xmi3-L9<AU@_2uTV)_Pqb){i;L}pQ*#r@urTqbSyvD#MY6c
zV~7ri5&K)v6+9mCk<V@7dqbjks1EW)Z}<|my~iKCEerSKlfHM^+fz;6VL-<GEW*m!
z+xK;Rpz~ip_?oM)<3k;zb&O$zvlOFL$EVy=_4%7>KNss`w!Yt6wUN4aTmDh|)hHdD
zbIuR>Hplmwj-|bPV|9$v@wtv!*PHZg?ITV+-{cD&zwB3Q_AC3};Fk>Y*1nMA8?WOV
z9p7^o=$N4MzOtC4<6GGsgBE#r8D$)DdcTwSoXp@E>^rnyRW0D_(<JbNjvsaWr1N&f
zn9A_(@1Le)x{#au6(dJ4>DdffO_DMP)GwTY1L{|9;RBun@i*a*9Z<6vZ#q`!SgGSr
z9kUsqIu_}eqvJ0g5zT}1b?@t>zd5%$UO%AzktCIWh5RRY`?u_QlFN_(ZyZny@_a@g
z@E#q$SjQ614?8KzWs*xzKF5T)%XQS;lSQ&h^bI;T>R7GwdFWodQ(s7<=UT?V583N<
ztQW$kDl^I4O**#d*s6n#Zf2bSmc8JB+NNXM0kuQNP958YpE=+?Vtbd4-8>n@ZI2*D
z7Abg8)jX*7iNYksgEH;Mxz;)k2|p}&MDVEYeHBhSCWL><JgMUpPmdIerEpru8AeVD
z`BFH`{q<AumX6yxw4Z|KbetDLenH4Z9hdTy%Q~(Izbbf5@OobE4IMZ0c-BER<-0Ui
z!piSR6L%SnLYDuQPBDK9=_#-2A}K%!c_ASM1Pco0Iu}kMm#|K{6;FYrR0^fVr$oxT
zs9REyEtV0HZWTl+oASn0POy9m6Xpb&q*W9*)>9>gswvD!;inX;rBFSEFH`s`g&HZ;
zOd*^?B!yZj)K1}%6uP8PCxyBxWTenEg;(Zg*Gr*s3iqY(T+6KbDKto-A>9tDMk(yA
z9?V5%&90HrBn6^Bg%=MhpOhVPPz6M!9+VnLnx)V@g*GX)O`$~!EmK%>P_<5>RSI^?
ztX~eQtQ5XDs4^u<lAQuY+TkZMl<-gryACQkUpT1RrO-Zwjwy5!|NB!YbVxlQb<%;>
zAqBdTJeXI1=M)|io?FSo(i|NYuFUM3Lbnw9rqC~iM^pIpX7G`gSv@$bPiAya;V~gK
z4k;!dPoZZDPo(f<3cXY4LsBREsTBW1<h=tVe_9BOXB|>RiaighXGA1_^^oe^)BkJ=
z15<cDh5jipNgKdf%Hz)r3%(%yl@wm(tO_3__>$nuf&-->n|LjS!Cb_aS+v)Mupx3S
zh1_H`g;)x2q%bsvxGYB^g=Ah;ddho)no7Zt$>}*ad*~r$ruYX#jHsDGZn5AYWef7_
zU{`cz<p>$VSlXV+<eMqH#i>hSWD0Mm@J<TDQ}{52cNtOgE6VqU3`^m?6s}bZ(x`vH
zRXF7RN{#qY3V$3@%>6_hMx^j@UfEoKW{pZ=bPAt~zUGh`lfu^{y)UWBKg$!xia0KX
z%^icZFH$&iNRfP<!gy}66n;qI8?I>zlT-LU<z4Ncn8G9>w+^XNht;<X{=<s)9V1pq
zkHd;?v=<MnAH{QO3ez}adHUGHYP#q@iSjceHii5K(hdBY!fz?>Ckn??_&vqjjAL~Q
zYf_lS@usjKg@q~n$^DYTUn%^}-CaFvP70R~tCC05(!*-^Vf7Dp-w`!8g?TCbo5FvR
z?07^CJff(-aYRjuW_)=>&1aoQ6v?V1YEcTyc)Uovi@7gSSV}vr4joaqj;P3YS?~GN
z+f>XddsMC9V2`SmDP)fct`gqqs9KxCItFbD`%_q-!iE&Krm!uAjVWwOVG9@fsOooA
zZRVCas&wI_M`lp`@u=FK!VYfL6m~Ptp9sEkv(-)>3pZOWII28;RPABbVYN4fD@PTR
z<YkYkvd6Ozq;M#O!#op?se>up858V&OdUyK?3iF|R0i>A3dd4->6lu5uho!a>hojj
zL<%QUIK{)CGsX&2IK#s~g^MX%;*=g!=Xegtz|Tu^W}PgG>=kj{F?IZy;<}_AS63Nw
zY%ztqDO^wChV=Xv7nJY(kE_nd)qvwF<G3m`Im<Y%ZZpV_dzDN*?#=wY6w(Zk=QFVA
zxH@oLO`np*Bn%WV@Q8sf1_~M|WZ*snO$-z^P{cqb1C<RFHBihzSp($^6gN=sp1-7l
zQU>y$P$dK_oltlB2KV0bmo`ww07=sms>caMQun6+m23X;1}Ye+XyBC-iuTS4HRHCQ
zq>6#62I?57YhdCDRm}kP+6Jl{s9~U{fdwZN^;!nDpHSr4H~dWQsS~_-Le(=+-#{Y+
z&z@8b43s#j?mMX(vi~Pl$CIk*H9tvX1HMuL^Q8Lhr1BZ?8weR_V<2E4XrQHmRt7Q*
zG&OMaq-xG&h0JCKR-aV0Zun=OR7|#zEav7v<<*&KAlpD|16eF}%}=X(O0_(tdYn?P
zoKlJdJf+?|rP>;3XW$_Noei`%@XaZ8zkvq~Ja)#<KhAeB(9ytyhW9JYzfP%622P(+
zB%1^ao%ZgmRsXbl*g$w_dM=-K&)?NRHv`WZ7--;81KkbuHqeK48t7r*-P7txPJYkq
z&}sF!fu07QI<1~C@W&B<__W%6*~6y{JZ+$tfk~&;xA_A3GBYk-_WyNSJ!4?wY1NN2
zX<%EvKwrV?0|RWjzw|l%jMt?B?5FhYc>^y<=Mx5A6!MyZ*9{CZ@RB57Ht?#DR|IQF
zan{i0Id3?F4MauP1j7a*ocTPT9ztT06&Eag(VrB;vbuqka6@obAFq?P0mneXMbd?9
zAcxUnVTXkw2Hr66m5HxS3^nj3gV01p6K@%K+rU}_>kPcZsWULezz+t78F<gY=LW_a
zc;CPW20k?~(!g*79~$_WfzcxKBf&?zXOEB$P}$KpK%{*lS?td!&U2N(7{Qm%sL`Cy
zZ?oP!qbPnRrM@_$#u@m6fni{RfnUz3FAaQcV0n$eSCXW{ddBDRw;Bf~(%+x?t%2_h
ztT>}48Q6bDkxZ84_mX?(j9S(t^HSGr>OXR`8<=C@F9XvIOy>!2;5W{|Sv7-K3@-YA
zHt-XJ|Ezlata|ONBKbx7M)JFXnFjvk<ec@oL7c@v%1cuDqETSBIFqkvk^Q%Ue+(=&
zu*|@}2L3a!kcW(cxd!GLn9p4-&OK{;k7pX}&mj5gtjbLeT9`&#Y+#82X8jn*d|Mor
z8<>4otuU~X!Fg6)I;&Q3dJU{G@bEdstP1DUs_`v@=M<BycD;cO25uR+O@9NM3>-9Y
z$iQX;TMX<pu*<+!>Be>gJGdfZEXZf5k(aU4`kzxoD!X}t8Q3Szdj$1!YQK;Jf+M9x
zdd@hf4jVXP;DUjRJSYqt;~p_^#=vm{Ck&i4aEe1?@pFoJSC9oOp7)Yxc?z9Z=M0>e
zYCE4-&z<+i@`m6g1D6e4H*mwi6~@x6?5hT@aq~(pkqVuOH$^0p)0lO~z+Il<CW@Gt
zeO}$;DQ#l&d6g!~e1g>1R|=$?fXQbCqM(UFCeEB!G*(;Wf@*ldBP><aL@^VkOhhUM
zikp~RJU}a9ddJs;7u2&CR7n%MIF~k2#za~1EN7y;5W2Boq>{H)Nh+DBY@)x30Vb-L
zsA?kHL~9e(OjI`!G?8JVhKZUc8k%TiqLzu;ChD6QaY51Qn5b)_o+SCyo+;8UYyPoh
zfVmA!@8LdkFQ~>Q?la*x;V#K)Vq)6`<r7ZNGg4&E!mNPkbf8#bK%l9KRwg=LRLx8@
zH_^fbMP{`$QTU=FZ+KCy>6VenQnRwN#FK;$%0$RSR}<Y#v@y}vL<i=YXlLT7jErho
z8TWH^SsCqR#z-EJWWS55P_v9qCLT2Lh>3^tth0%SSzAl**(Egnq9Q*(E4zynUpp?y
z<fA6Ko9Joc2@_*3s>cK$H_?MbzU2MjfBHqW_@W|zl6^4ojETM`o;K0TL~j#)OzgPm
zE$-Ees>~%t?z^NqTvE$w1^Stw_^b&MCUg71+~-UTG?6l4aP2Os=S{p~;#F_9)e9zG
zG%?7;OOkw9aQG!YT*<RZm(*(}UT3up0|^s@O=u?myQHEf!a~?Ygj0G+T@Yh3W+E<w
zEqYne8eCRMDgMA^r3;~tX~JR*nE2R)ZNf3}j)`}<#2nyd^#%`o6FDY^Faj^D(+#|V
zP=Aw$zu4O*-oNb40FAj5g%30Fo{0}loUI&q-$a8dfe%a!m*l+5D($=%CkJZ;+EoeA
z;Um#^TvnfuTvnq@j5hHpH_;U}QWQFq*S@00m>6qfoQcm&e9o}!>aA>>D_-kgnD~;b
zb43xU)0xPu@g}}uAX#W<VS<T?CLbq++a@NN_}0WK6RS;p$DL?mj)}iad~afkiJwjU
zV&Vsxx~V3nkqBo)hBP<b#0(QZF<P#u1_J^!uc+0cll*GpHxsi={9)pEDRu0Mn#qVN
z?@e9)tBT1#d2W~>QlaH$@t(SWoA}4%--ofp#J^lq6Z1_h5VyI4^8{;N^@f~zRV_5J
z$ON-Us62U9MI~$4RkhT_&f0+$j6D;}O-#7z-TCmZt7^+tMSZ3Ck8coIV`8m|qb81-
zSZ89riCrdko7iAtBV)<Lb`zU;;+fcDVylVsSJmpO0UAk>YhE`-_s$~U!L#L>+9^mv
zkw|@yiM=Kcm^dgc?lZBUb6z#TvftGW66teDN*y+FM6$B3c}?uA>%GR295->o#03)<
zO`PP(a7~?IRG2tr;<VIRzI1>hozJm*Cf;D3+()7ipDP`>Wa6@kYbLIX{}<QP6$ZcX
zxpT5<R9XfzZkV`ff}9F#yX^C#>yC-LJY6kRwQ!H5W}uLT!WPmj<g<|9Lb`=oi?Rw>
zUe?1k0<b`=cht{hLE$7$jX)6#MJ<%IP|iXz3&kyzvQXMW2@5}8Qzb3LGcxCY5nLhN
zK9Z5iB*iio$k`1h%Uh^m;qWz8S+JsoN*3sU@0!Xj#VjhsY8I+nsBfWx<wZpe3w11X
zTbfmqT@|Ia<!#=;b#KxtURRy2tGX6iEzhbaNU@=XMiyE!X`!)&`z!=4WLRio!Dqp5
zAz-23b(OlVK9NdTWU7!w*Hu#s%`7yx(1M*8@$Pk1?uN>^;WbAGl1vL(7L<jMg>2~(
zvsznN^Qd<+bP-PyCfoc!VtWhsTX@&PFbfY@=wRVF3j-~5w9v^yFLtSR;6V!yS$NDs
z4-1_wJby!VvCx$ZVc`*J$dt-|?-$^<?PlRo3*9Y@6!C`}>di6%8k>IHLQe}%S-5*c
zExn<h5b~r2@_jcHMdH(vB(HQ+^|sK*!ZQ~7T6oq%fA*?>pr5qZ>ZUhvCP@ZxN^dIa
zT}6D}!V4CX7IX_QS{Nk$nuV7vylmlh3xh4ZV&PTMUlaVWY=AcKrWztOux2`ZbyE?;
z79tj+7Gex13kmU`BW@dSs#8J=-|{;1b^Soff@8t8U|29M@a?o^fx2yB%D3Js@cnkJ
zTPlZd{w)l(@TLX6C2o65@!j$p<o--1-xBd{3-4Ioo9ZWTDI&|#jrg90_Zi+6ezEX@
zh2gB<!gvcGvXi&eCl)@n@Da0asSy@Fw(#vO^^X)Jj<hh!!siyoS{N+@8N*Im*mz5w
z5@Y?i?X@zFO<VYqlOS%)t#(`Gx^Zi?5T9>&_*<B4;d=`cIr+EMw_J#q1Cs<_xUI-(
z-${~nPO<QVg=rS1Tlj<@wOHi&z*GxOmt+;a&pQ@!ZY%N`obx_eKS{eJ^kLSo7Jjp^
zgt1}acMCHu{A=Mq3$rZzVPTGizc`=I1pcIQTg|r6yJ6;6w^h49CX;_l@*fNB8+y~o
zUr&A7F!T4!%()ikSy;qjF3z5BVS$B(9Cg1SuNBm6pS|X`Iwp4ewpuKDg*z(aj#_46
zxrOx>Ht?XZu+qY6?j{SXxE=1O&zfZrX)`MZh-*b$Cu3pOK*`!@VUvZe98vkeX2!rB
zwM97lMukSQP4u}lvzfco!Y*!q2hAPqwy=k5ZQ~;wdoAqa?Ad5$W50z1Jo;>YQounA
zhb-K*aEk{Qj|&UuES$G+)WR_fr!1W2vffe0Eu64$Qu=nRRN#+0iU&KJX4V-CXLn_L
zD7n=6a=@$$7A{)2V&STVOJWNHnU}?fgbr)&sG|EbuUWWm;Rfe3Ph=MD?|qrKE!?pH
z8wG6Km4azD^4Z>rdQXz4?x?<({rPRA+sJ>{>kpH}DtA>u8-;8Xvr*heVH-tk6t&Uq
zu4;N$5nmGLcLYn=C~2dVIIt|Uz80OF4rOhWvr)%JT^r?XRIpLaMs*t%rMAj8s@SMx
zW9D78>aIF;SFxTucNLRW>2pstyQgZ{=yFfhvhm41Rnx}6dtN`ydx}<D#zMWGjrukM
zHimr>Y+$3Ijr(jgvGIES%tq|MeVL5~S&%m6p7Plk&^VL2U&y?B>gS+0r9r77gUfwS
z-I0cx+h}3q85@0Vw6xL6#=|xqv5{#b%SL+}_e&qLZ73Td8?7bDs;Z}jh;3}Nwb4#Q
z``G~P|7Ja4ql1lyY;=~~jy5{kc+kc#v%S}D+RKeSXC_xH@=h~4kaw}s)y5Mxo|IDE
zY;?Ern2ksC+RaJ}^|0}{C_QcTkZuf43k?^-<m9x_Q#N|p=xu}iX&ZCXLYvY;XVXG`
zY>-eSXN&!8JZmFm!?4kx6J_HyPN|LOxC%C2v@yuW^Lg#QAf#ZvP`!L!*_Uj*Y~vLh
zuW|<Rg`O5s&le(RE^SNcz+fAijkt}3jj)Y~ji`;7jWJEVwfI;(^LNkYuO%nv3z1B3
znwhjg)TJ%D(Wsj?EE{jzc*llq!?7{M#v2@0(+t-}4y~DY;?=7dph7a##+x?&$rpOd
z#y3R+eA_^gS-EcSG6op=`9tq>Hlz>4_iUWb7ivGD<p(x~OY3x?Q5j+5V;e_o9A${w
z_|(Q9HvY6R(#9wolWcrzV>Ab4<4YS~N!iZ?$J+Q@NWJ{toQ$*a1w%;q6Zu0FzqT>n
z#stnx{t)fS`hjQ42ELIb{U-_;E?M7kDW$4kY<zEHij8TUC>uXew6Q&ZXsYB+$shVx
z>SytC{>&LR)|5;C$;QvN_Z!{I98r3RNIs%>;8z>J+4!A%Q_9W~td}0@nEt;Nd^SBa
z+r}IlYi+Ev@t2LiZ7jC2gmY`-UmNpm%(wBM6!d1;hACxvRx`Q4#zIb4dT5b2xD^8A
z)Eigw$Wj~2Y^=&FyWGYK8!II_H9a(7p0`IxCY1=R<|u5CQ#lj#)_1*)4K{Y$*kfZO
z7tzL68{2Gb<`MLlS8xk!OAj4N5ABlo$=hx0u(8v|t~>{3(T$ddPz8jDdu{BqaY#C_
z-^KyH3h?lkWDuc;@jri(!y-N}$}t<qd44)5;^2ghlQyo{xN74R!^y@u8|Q7D5r5)Y
z8<$&p-6N;D2wh-EAaqF_E(-Q65x6W_B=o#y<GPJB2l*V_;3D$y<WX<qmN<WZG3z!%
zF|Tji5xOTj3l=L7x_}TdzXM+Nf`bB%_qveopiTjAECn587YH#~Nc8>bUUPL@Wfyf&
z%s~wYHAOG(psa&(4oWyE>7bN@(hkZvcr2gi|5$<0Yf@XIE8fdWc?T67RCZ8B%2sqx
z$-%e%1JVATGjUjfP*n%j9P}O#sO}(q-7EF0)If5kOrVy7+722yXv}^(sOz8sm4aS}
z>p7_JU`2rtjme`0LMRw&=zz#%`+}kSq*1?vfP*Fue3G2k$P1Xh1w%nmG8{A&Jtd_+
zAr=ggw{XzX!FmT99JF$f>EJyF?>oriEIAn9;5i4a9ViEnIOyUa<e-g%2OM;8(AL4C
zf+1Ra2koTt-33Dz3Wn|%orGB(IhMv54?1|r;RB8Xodnr2ik%(M9+ra4Dp@E*v8#h_
z4tjB-96aivyMxCa^yIX2UD{{=Q7zDe!z|<tJU97-gC`w4<=|<lr&~2|!aElVt@+)H
zH~LWN<KP(w&pKf7zJkNUsvjGw7HIrsuuQc8-TF(lteFJ|I(XiJ>A-UEf`b<wXk0P}
zgB-l%;8h2&Ie1y>c||H2SSZA*oI;_BXS3K1w(>fMDOv0T?e%Jbh=ZtuqyybS%t72i
zLORUcW%IH>FBHnf?`sEA;y^SUP|U4?y6wPmFx0`D4qOME$st^q#u+&dW)=#qEEFPt
z!$HG^X$K31IG=Ahc-uj+aOhnJHw%T{aX>PRfm%33k(NsyEFAj4!EgsZJNU)HhYmh+
z@U?^S4(=Vw9^qiLgE0<1cJPUVzJ)`dIvD9-l;r02Em1hsBNU|bXAVAh@C75kaOlIr
zp|RY6g+t>cnd?dYO9x-cz}FY{7V%i&&^HbyP;oHT!9)j>987lbJxht(@AU)UIk;Om
zL{hVeSA=AWgC87_&{Uo{jd4;WG(&K@pj9L^sz`|9Pf``huMU25@SlUZxs`LV9Q-MK
zrr<2WlMOOvJDB6(ZwLQy6b_bD572T)@l%n|zmiLZgd)j22lMIXV5ukzxCI>SDH8hZ
zY}P{ZBB70^vldI%{MWqKh-D6zJ6PplHKX^rzzPSKi-cB+0||{jYaFZ<eVyoYY6j>@
zy-3jzzqi`xU=xoE7x%f?>|hHIIu`|9Y;~~B!5If<9c*{7!@(g3haK#6u*<<-2mAQ`
zUn(q<k-3MlA@2`aEy;cdv;z(f@~o4K8x%jT9H7zRh=Zd%?H!zSaLmEH+QC<A1&%v>
z<cD{~xK_~+$&YmcryQJSLkqHL*+oNi>sd5(&cS(}<ZRBt1qT-$T;-nqFnEarba2JN
zPenuFqM^?O$@kO>t|%J1=HNQpD(cM!v+@-S-Ewf-L7IzvE)Hg7++l1m6dhDA=J{k6
z3sIzz=Xa4V#@Cx3l1t3ZrE?({g<Vu|QPK5Qu!xHiE=sy6>Y|t^gNlXRVxi(Lo-5{!
zy_Ad6F3P!RRysf{Bc!a0(Zxc$swpb`c4>OCP<hc86$@2zQQ1Xx7d2c|aZ#pLphwSO
zRoDAQW>2vYc{OQ8wGGyEQOiYr7Y$t0c2UPgT^IEv_iK5XxGbGtIH4ttJ!$BII<1il
zW|b%&%5`hv!snu!i$`7fT?F_l>!OW|po<I_tz2ZfXjDAZls$COTv|CVb+(XtTDrKu
zc!(9wn&7=@>{UFJ<)XEV9W%4ZvxQKP7Y`}v8%bLi?OZ(Q;vrGmyLiAw2i7A=I*%wG
z>L|%hqWn<YTO->1;-Sti9(J*_c&Mw3M}+*_HM@(rQKUW5FL0@NsCbD`cNdSjc)`Vs
zTt^p=yXfQM85ccWJmI33i=66#Ck3B!@ic2|<gFLQG1UVNON5y0Ex9~BDE4*H&&2>P
ztBYsz`q`g7FX8pAw;;(t7tg!+er;Mr6ka^1!yp$gxp>vZYf^BSWWDTSLW$5TqMRuk
zc-_Td7f}~67n+N(i-?PN8w6;7i~oh;!L35#E~pS`rkwM-ixeYd2(}M_LD9w398AlB
z<-%qZ<)CT~9De!hVu6c=9F&V8F1}$0T)g38sEdzXd?G!0la0C<Cj2cIZ@YNM#d&GB
zcu8-h@40y2#fL6F5}ywQhYMzv3DD?6u|dgDhmxTYoV1c5qh#n)7b9JabMb|XQ4D?;
zpSu_<rN#(;=Hk<mq086&(*#La50P$Py7-Er>teikE|G5h-!CZXR<})XqKio`esl4=
zi*H?g=VF?R>Eb`x#SbK06c<xm?3Uui+64I??^4OoRL+$P5*n+T;o>J3zqt5S%CZ%T
zKMOBfD#R~9X-rbDQz|sm#a~<t7qeXa;o?v3!BU~wF6M}Tn^K|Pr9wp3K>Z&V|1#ju
z1m{WafBZVWRA{a!bQo1CG^13AIN!yJQlX=zLW^81c5#lA?_!CIrEJv2b{ETBEO)Wq
z#Rhu1Sm|P|i)y7qt6Z#hu|_y6%wIaR`M94t`RnxpElY>i<z-RXD1F#0xXDE!S+y;E
z3E&}6I`nes5Rq;>xW8N+a&g$jE>4|`eJ=L9*dqn^3Jw)dI*%(II>4iq;Z!=5>yRkr
z1;ekULq}X3b#cPQNf*bY)N#SpEK)jjM`}3b;<Sr1F3xh)H~r<xgoyW*3DL;Al=1p=
z!No-v$U%V|T;k#5;*N{EF0Qz^Diz)oyyoJ%iyOiROTmxJgmTF(7q?v$DeHCYN6ES;
zZuxSMKgV0^v>YrEoqWHL^c>`pf;lLZgOWKYm4m`LD3XI>IVhfkqEgV6&k_7U&4N@&
zN=Vkt@&WSFIVh8Z@;RuGgBxW+Wphw22ShqENh2v+HdHYOm2yxy2f?zTN6UtY6mzqx
z<)C^F2IoM_L5&>L%t4nNbj?An9MsN1^PK;~)OSEhQG8!7>_t=*QF6|Cc80LbEL*VT
zoO3XtpnwTP1x2U3C-iifZa|VE2q>5XDnU>L5fq7L%!&voK{1P>^4)&(oA3P3sdLY*
zSFc{ZdiAP$cDAP*9ph*mN0T^O$I*rk#L+B{mT??v7ilg7wTOd+RT^x4BG_N8L_$Jg
z+c-iTH;#xX7sZ4BCa`I$IKXPVICz@1msafxwM68_ade8KdmKIDh{h3%qcjdBIwf)b
z?jF0YP|u3y5y38Tbd94dj&AYb^keJUE0n4l1dY6MRn?-Z>KR9`IQquXFOJ?~ir7a;
z<%^5<y%Bt}?JrFO;wbnzMj<7?P7QEy97E!`GLEa_7#hbg=`}u%;c<+JV{{y2;utBy
z0aewgIEYiKsvqRL@v%}J7YD2NiEvTXAowg3;+QDCj>_}mu8!lHIBtmJ#yGAO`E_wz
zFJzM7Gt%*`s%ml^Q$%vOsw!7a)vKna#xX69o8q`Rj=}9C)8jZ7iX?UxkaHlC>qSVs
zEshy+%#UM195ds%Jq|4nJ&sv%+!4p!Jl+}YYU<87<_Nhfj@g`MHFZn1z-_CVVwDPW
z>1xZO`vmV5WR(hW;UsISDI<<V99A4Q*FBC@9A+GuIMQ*vUQO}1<7r7v^5BM$YU)QJ
zP8@C=KKEmFl@%oMn2^<#svh`owoVcGyg0^5_5L^(#_^dQel(6naV(BwMH~;uu_TVA
zaV+E1sw<WU;&?F6c^g1V{?GnU9Lu?U@(GQWDYUDrm2s?&;}N=DU9FNh2Sj*IvL=qT
zacrut9*g4%A>@z8@vivuq)5K2t|)vaj%S%>8v1H@E{^B9PviJIj&*Uo5XXmcd=$rv
zal91APG)r+>*LrE$18EX8plT3iDNUfv4(m%j$E13D)`Fo^pKJPt)g4vs8K_)b!!~2
z(cw#rb_i~ZV>=_vEZSZ&Wl9j?q8dTmsPKje$@vA&n{m7q$H6$>iDP#hZ^yAWj(u_T
z7v)Jc)E?$T4aMqyMzV%F5XZ?HYC{e6ZVgpf^M5(~ZXEB$@jeftxdqK?{_k4$K|EMl
zB|3-V_&AR5<2Vt=Cvkil$JadiB&wgq@kJb8#__q7k)r>VaC+E9zM`S<n>dcdaXgM6
zS4X~$^Ywo?7Ds$XaMuw3i^todNTy3);&)=XvkIS#<5V0!#qqO9m~5xH2Wf=<%)yyB
z4CzArO$Ar&UwHV(@p~M9#PNVM{T2rcjkCJ0rus9Ev(n^U5{yU*@mw7L@OaeFRKve<
z{Kq(GxI)8uu9}958ZOij-W4mS0U9c3D6gSV3;qkt|7h>7sjN*U7l^{DO(hi4AeArD
z@KsG!Ny8-?o-dAEtOY*&TT@-Cp|Xa{G*l6Z-XhrAMeQP2)KcWFYN>9uR8<Ytq_v)g
z>KbZj!M7Z>HPjS><Dpvg<amfe_T?Yxbu`q?H&Hmcma4Czfmmp$p^=8h8fMfAW}2;~
z)(Y8LOEuHbTtf#99YwQ+hPE0)8ecktRw8LF*ha(qwbZFviWs=6@qJiDED;S;S`>w~
z;MP0J+i7So`fR$Owjvg57*M6CRD;scNkddaOhbu=#c#$sGkUdEw6+>tTTQDSm`&GK
zT{Lvn&_hE{4P_d-Y1mj>b=OezQ*b?ESzcRF@^$5+*_DfWaTRvNdTU^nLN-yMpN9S#
zG8!xntzn>s$#hb~APs{xOw{-`Net0YwKzIT!)OgdH4M}6dE@AC4I?y+6#w}He}092
zPz<tZjE1oqCU6Q9i^d6#7vykr_^f~vZ764<kiD)FoTTAu4cBNmQCnTBfe#Kf8U*`&
zXOrl48p_pC*K4R<M^T?o8@NHkjr?S;;cg96HB6)b<%(|CFkQn<8gA8an}(aEwCfbP
zMFX*Y9Yv(U8H{-yHB*GFlCu=HDw?I?4zY8mhPyP(7CxkoqUC9I6bZkNx<|uY4Ji%F
z>Zp4)+^50NkkAm<z;F394LVC5^=ZoptHi^<1gk(ft1L+kxh8f`ixE?zx3P}0H8>hx
z)bNr9S3{NwqhX~6PlM0Z*RVvxJPq?TEY#4Vu6nPITA<;6>3+ISu#PO3*Hw!&u!#z+
zF4gdWhKDpP*YF@$xvnBElP=^elLaXuSs}<?t2C^pj)tc+Jfh)I4Qn+#CKmWPoFBZ`
zaBIki@W+Kv_=E;cMx;%CK7X3ar(xE~(DU@XMdVqY|57M<sIH=fWSxc=n6#|}&O+gO
z4I4D<)3Bd8tYH&_rr~uBFKgJW;Z+S=HLR<vwrF@o1Cg$t{xw7ik!3-<$ZHz5iJU@K
zDcqsq4GnK;*sWo2UA0rgE)8$y`qoty>nRF}jq9nmHI&v<d#J`FucuDeRkzg(n#f5G
z@Z@P9eV4J7Ts^4a9Wg>5_&k>P8JvklA87cHIXu4TuJJ{D+U-ZoqVYwC*wmuPtrsi@
z@ly?-@wC+OpN`Kpe4*h^9e3&YlII>z5*;BOUu!tbgx67C$2S^|X!u#fFB-npa8$!d
z4W~35({NnF_w-60;qsjpJm`Z%JSqd75ILXnQM*(0w1yuvoYC-;h98Af?fCJ~E27CJ
zR&)5PhTk;&r=dxG^}B{YH2kgMoQ6L&yjxG5)$kXGuBXV^g~-C{Kceuj=v+`g5atwy
z4~d-D(7C=U&_T{Fg*u?4rjA-VD(JXCM`azC>8PmVLLC?DsHFeTnTvGLJ(dym)g?ME
z6*--!k?Hjn3rQ6nm+PpiqneH@^x!7^<svugD{_|VBCH{Ob4?rTtJ*s1=xD5?iH^ED
z>giZ_QBflu^>sAR(NL<C<UY)kuy8E4k~G!POh-!{t#mZk!FR#8(1ZWsQekk5A{LU?
zIw))-3aq{_E_I1Sigbi^jL<PsM?^<E9o=+v*U?@_2OXVtl<MfHqgcn!^;JwqCviI}
zRZ1!~P{bw;R0%zA5KNy{o*_y{S3Nk3x(KQUfv`+CU-C}gLq|^?19c42(Mv~fx~-$X
zjz09Hf$FQ{mIjK&6r|Y!I<C33loBGV)G_N84c0MK$1ojh8>k_IuQX8P!^KGwYMyUa
zG)l*49oOoZq+^VZvC?{#j&VB1>$sBBZ%{Hp$3z`Oc43vs!sCkvS5A1fG+o0*ms?@4
z({a6yn{?bP^2s`G&~c-VDN<$Mq#q`qs$-gt=^}iufjZqlQO-hzTXfv2W2TPVb==0R
zYp7;00U9cj-00-9L~@59g<YiS@%1IMb<EN6JXc@G-8$~ku|mhgI_B!QSI0aZ^L5;(
zBd){Lk<p>)&~+qrB*YU#2TP8RYpB9a1AkIF(u|1=v7$+kGnObjI$RyL@WoBTRLJV^
zr0VOKCHlS~?YMH+-vS*=bS%|zzmA1E7UlXfuXyLPXa<BI;dDI6l+dwUkdlXVY-^}k
z$XRlPLh_Y59@p`Nj#WBVi{ud<kLp;X|L?}IAFC9t)$thPd2JCnyO8AUJSqB53qGae
z<GlT6bUdr$Ig$U|P#yUvxF)`!<3%0s=y+GhOFGu;cvHt)IyUIoNcVJX*Re^*%RCBn
zysBffbZ5scJSZ9ko;MXF*{b6;5q52)#y3*8H&P_8>)4@VXTH}PI#{U8vbTBgxnh@8
z7mAVHI`-<=Cz7{y?9uU5BgI0s{UUs`kvd2Z8>s{NYWp98S-hv?eI3Vi9M|!Ijt_Nw
z!NXj~w~f?CIzG|ysg6Soh4d<Dtm-!oY?d}wpNY=rT&xMPag7z5cw6IF+@Ac}pT|D0
z0?aG^w@dVoaGy>s`c}tL9VwCUKXkOSys_d3+V6CHuj4lzzw0=m<D`x=I)2h|O2=s(
zKj`?8Ia#OZVAF`&80@%4f+RV~&pLk5@vC^4Q=3?;h=t03==f8|-#X3_Cl;O6@s}R_
zH=li3WqDDY`A7P)wPPsC+W^k%C@?V1z;pxU43sy}(Lk|*LIW^R-#`Nc6%1Tppt=#P
zNJRq|8o10r6$2L;xY)oY1}-&F$-pn;iw3oe@}nTta=fy1p^$|i1+Q)zz1#>MdsWrI
z6$aAs^Bh+BT&!va*vgJI4AeAG%Rp@dbqy?QSVV*K#}(Bvc>8eyuhG<br?IMMfI{+y
zG6YErgOA5YV*`h`mozcZOh{9~?;5MZCaSq`YSwR}S{i6&ptXTE1|kO98E9)DWT41E
zSPVv+1WU#rWRZ9qN`^O4Io{p?B^?C+zd|Qg4U9D~&OppSiGkh*`WWbJpws~W66`59
zm4U7X$_#Wdf_nwo{iY_Wo56<(qlYN4N+Anx8e}2qWd!$svd~Ch1N{sPF)-9Xf6*Uc
zV4#q1+XR>F^=%@93=9@Yl7DQ<KeC4z7;a#sfl&rVNYhFgB_%jogj5(~;AN4Fys(I5
zynzX#JXvreSI59L!mp%DLO9|<>2j@s>++IGLcVLFNUmo(HT~a=rilCo12-C&DtzYO
z!Io^$RNZ9YW&@i<c#DBs4Lo4rL4&_;!wdt4fds>4;C2JE4a^a>S%P;8-XU1hRNW<H
zqKtUAfqM+Z4QL{qYv5i3_tB<&9GWRQzm1Qvs&m9ig*ifhvQ1UeK+3>8CKyxHfN8)n
z;2OvnungD+K5METZK|qF3byCgJfSdaz%$@;YfLJkJeZyQrs<ESYJq|K4J<aW#K0Ym
zixx6TE>?>e_S3N{&D0A6BgCRh3)?nRlrNQ5@?{1dGVqLnXALYju)@F^18WUDY+$8<
zM~vX7L#qTyRx>@CsmaY$yqRK^<xwX5nbHTE1)e-+;0cC8qVc$a=S4{QQwE;SS1Dw9
zSboUxoPie%yeRt53$8P;JKyUi1M9gT1!;uka5F{8M$!DUnR?m4W&>Lcyuw}v-Zt>6
zfvwW|hTv-kwi|d|_%^|rf0XVJLTeqH2R_$qu67#O#R(e0mp1$|<SkJcCapI&S9=WX
zHSnH+_eH+XzySjX4eXcdk*WXt#PW`Tce#$u74K>$(sB+zFmTAg#|Az$@R4*`C9SVC
zSDzU8lnZU(bCG}1T>T|YIR#pHVQB0t17CANGgz9zVFTY7=#WImB#v;)^Ds%EC=tBj
z?x=yEc{Un2X5hGi?+koz1P}6^>=m3~p4SYYHt>UilLo4_P%Nhm{M{l<`H!MTa)#$p
z3)R1cBL7LcT-QR?og4X;r)UCI6Zp-*?*{%b@Fx%L1S%wO*1%r|PE`w+OW<!Fq;n%I
z{|PxK_>bVff>b*%ggOO@pjU<Mh2@1%QkcNqEz|=o)CD5BFoBB_s3`o!7HYx#!iy8A
zln92nOoW#RUYfwWoJ+OvnHH+DNcaFKR;viVoEEkhvRW;H>IvLeDb_%+hF~4Rnu4_w
zs4b*&Oa5Cq#!@$ddLkjOpFqRByrBpi2{ulkNnWR^kY))q7t$gxZz-fz0<DF#$;;a&
z&|YkY6Nn^ma{{*{(2l|ch9*#FQn*6`9TVu5K=(xOYL(&yIww#nypv!wfmi}>ERC?W
zL?q-Yfi4M@B`^_14@@oSn!x*e3iu4JYbzA-z1t+&sRca}=$Syj1p15Gs;LFN66l=>
z9@TYbYC)d_`X+Emg(ANF`SGO@3O6l{3`k&L0)rAD{}Dxl6Bv@f{;35`rxmao7t8!*
z!>|N~C-@&;H6np)WESKj6Bs4J(Sl<H#|n-Uq|W#RCgl0V1g^~Us}i_cIG<!fwQGe>
z%C}yZ!1Xc;!!=pRlmu=Na${aTRme2K>4G;UaBWM)F1IFdTLNbi_$h%I3Cv6&n}C<V
z?Fr0cHYRXS0(T^kXsPBT@KlTNik9lm1c-MD&Q1i|id8nPZ>i=caBl)y0y^cj!V6YK
z?r0spk5Ou=;t3pSsYnc3OTd*-Clg2|kf8%L!)ZZNP?ZD^<tDc19wD(3uoL*VrE+NG
zzcAm{N^HNTEt~uV<|Xi00*{Nq`3Wpd;DH1dByhi&;`=2RCa@@h#R)9o7HFl|>&Fp+
zeLi`c_+SFd5?GnQsstWl9C(XzmBNP;ST1~pAV;M9bd|y@*A}i$;1L;XEin;1O>2z|
zH05yc3`Q23?Rg}y{6qpzCh%PX-!pUxJe|Nh+^PvYlfbhHY)RmiMDT!`=Ms34gbrU>
z_<REE5_m!6(<%f{2jbgo*C((cfz2Y^D7YzsmlG)ePn*)J!An~<tqBny*$@u5Qct`Q
zel>xu2{=<i`x1C9fo%!w;2ud}yLd~@*M&^!+ji))QC4>*@WF;K%i9U;%JVmcyp_Q2
zyrff=w$#}p)x8N!9~xBmGj2<x2LulavO1-D+xNKX68MTc`p-78ZQ&0R_%wmf68JEI
zj}kZ}4lq_93pro8?I%pOVZn2&oO5lOPiy-*J+IvM3+{+;+s3g#{-tQ{E-Cyvfx`)W
z!%Rq^apRzAWbL-!CO|wccvSEh4W0>_So*b6Qx_MXV9vKvr)05C3a+eDc$yn+ZQ<lK
zg+GYoM=sV^tuOB$`8k1Kc={z#KZ##??DI58;?g93PvDOP{$VyI@Fx%d1peXy*fX@U
zSBQAkiUQ)CR_gBri01@P_6+^U#qAw5l}qA$0tHF9trR7Ro}p%aLgkZud}3)~60N(1
zAXq_=)eDlSDEvafi}Lb|g;Yvnbt^@+%1K<7M71QUCs8Gd3f)5#UXctOyIe3QsVcqR
zTv5P5YY4BML`_kkW-TE!SVx-b3ery19R&@NXqZIHBwC41qa>Op(JYC^xxPs}o(j_f
zv3U|LM9AQ%$$<kLixFs@M4KccVw1wQNraPlxs?iua*-f4*+k)to&jl>MEfMB^a|DL
z9aM{x=)~p7pg{)FBw|T)G11jTNiujd%aA07Cec}VX%dR1B-|y5?n(3z-c_(nu$y3q
z8%lZ#>77KMBzg(IyDYY+mFk;Bza$2Vq(47qv{D0-IQ~PFgl1XD2PLs_dN@0;V6dp2
zYo&%IF+7QPl6W_X5lM_p;)Wz{q^slGj1ruf#ONf(2p^lo_#`GIQEySfIFa;OR6t&R
zQNf`_1wSk*V6Q8axJsI?7Nq1FA=f4`DKEJ$iR<%xGQ%aj{qu!Xo|?q8B-SPILK4$O
zep?bVgxr+G%|dPwyj5`gtHGc%lej&J`;%Ch#H=LlNFtF$GKo8rxGRbKM3ZW>lekCt
zoFwiR(q?NxyRCu$Y@N%L&TDc~l*E(JM4}5Cf;WB?G^LVAOLe}W$yHudkWC_!ge4N2
z`z47=O9Ev_BzHFrc+RqygrCGbk>{qs04|`zqEAzcl2|OQYm!)!#L^@lOk!CQYhV3e
zoF9-@_M%N%ekh6MB3Y5-OBjRYdsvWf)>xUus$}qr4VKkH9uZ883|HoZj!(2%E1HjS
zM+kW$iRY+rvJH(qDUzoIpHAW#A<rhUseOp$!B0!5^SlV>EG~Fa$eV&MC9yt<4Z^9j
zm5G<<o4ASce6x@(g0Cd;YF_?Z<6vH|C9y3p*`CDfdA=iwH-zsL+?AKZY4euw-GXoD
z<$IFYD}0~e{=EEvkb_Bdl`MKMiTC*tJ&octK1kw2W=;z66h2DgP!h!{bV}jlBtA)^
ze2TAWz^6%kmc%bSY?Jsri7%2kk;KU)z7(@xCvjNFS4nVdaNWO223P8%NgU($%=_@I
zWDX~LJTLh^iSP0}mowE`t5Zq7X9{O%L7IL@;z!wr?6_k|ki#S_KPQ8$^H+<5YJI`q
zME_r21(Ntf_@9D*CvjE?HUHuvEQv&ZE{T8g@|^HLsh$@sNTFOR$gZ4YNTEUs^;2k&
z!UZW*OyTkrt`LO_Q>c`}CBiQfyjU=o|Cb7{B3L<v%Y@MET&FOnP&I{WDb&r&tEW&)
zcnv|$w`K~%v%!hMQd@*|=*i+>FF(AvpdP!oR%~jRLZcMgq|i2n#wj!r%@(QP1Y>Jc
zsWua2wYd=PzLr8-3AWC+QXUdsltNfY?(~bK&@T1A08*!YUcW;sct1<W6lQh}kwhs^
z;hGe#O`#-(&M6E`VNeRCqTeNjt|_Q|-(2L&q}nTmZh3k46nY5nDOe<P>@B>HU|+$0
zg8c;t2=az}PH?brl2IuP$@8H?hB2N(MhK3~w=z(pQy7!N*t}$dkZ~!D&r9g-#1yVf
z;VO}|92vek1!hR@455WdDO{Jr4Jq6x3fHGFMaX19zDI^}%cbj7k=!mgErsbR+$8)q
zL3)033b&+iE7v-ov9v!!T4xI8GILf6cS!Zl6lSL|CxyH678c~r%oOJ4CHDy7(MtRG
z3a4=`1wDn&Q}`kUBZWi?FQo8d3ds~wDJ)E3Q3`2MHdDw58QZkL65<Qenw^3pp&)lt
z$co$({P}}mxOsWa`9c<m^8G1n>kz!!a&ZbvQg}Fpl_@OEYc5OS0pSk{<}&%A6qZYM
zg<$Tw!=_a!tQN_$DLj(GqbWQkRSvx-g|#U>Ce>UpA5Y<l6rTJ)vE|C<>{I_~(R?P~
z`dr@5^C_%L1t(ih^Q9Elr?5v_H>9vp$WFmcDQr$*OA0SbHJ9YH{7MS1amp#YD)Oy@
zl+&y2`K`J`gs-Qttj7O#{Tunf?n>cJX?;sD=f>_7-p<?kbWy?H6!xXCKZOG+e8^LM
zUFe{+z9;yO;JbN!T6kYL6ZiumOwNy_*CD}=1wRq|RFJ3cXDM9zbnr*bmnnS3^DvEy
z>ENjRI)$H8_$7tIDSVT{krcian<oU1rtqDRV}i#8*^9yXUU+V4PNr~5s;Be9AM%<%
z3OU0iNTL5rL2!DtR==k3o5=qW{5^%g^7?<I@Tc&zf;szt=UdMS;Q{+^3jYZ|&x@T*
zq#%uQLdpv=O8<Wakwyg(<~{^on8rnET#-gq5ni0e<!SKhTuG|@e(aJoE={9y8kdQr
ziXcDC<ebSNPuFT`R8J!!tu@l9nMUI@nxs)HjoN9{7kM4Qx@puCl3RUV0&@97Y>-C7
zG#aJB?a69Rp=lb;(rBGVn>3nBM>e$-(t@Vsh-j6U=lp3a)gr-AIym3hC7jpEeR6A;
zM*B26&^K{_3OUj#jfrVonMRcQX_TbVIgJ5n3{0am4JAf;rO_pCty>yh^SmsL+($%O
z>n_3`Y4j9QS3WLM-dn1D1pB7ZPe^~k)gK0a4oYKi8lyzQ>X0-><oQq`!vu#5=At(;
zjZ^tqj28JA#!$#O!SR9<1ZneBQRJ#Lu1;f18n2{rO&ZsxVW;7wF)5Af(zrQ|Thh2b
zuYY42lhc?YRYv%Rygc`rc4`{aL^56QCc)gXc5529rEyOhb455KjXTn~GmV*2r6;!w
znUzNFsJ~09bMmdTg>YT&&JkJbdxa;`NTzXL8gZ#=g1R7o$!G{+Zt$$*D5*5kBFSZf
znMOvcmf%Al{4bf^G_q+tD?%>~KaJICJd(z|H0GzVERBcgr?f6gV{sby3tuS6Q5cye
zl8_IGWNBWWOVJ0V%5AtjFJGC)iadWf-%2~Hn3FQoM@9IA;F`SV+B6<Z<8i6xEEAth
z<0+9mE!ob?H0?Z-xAR;Y&!@32jTh3`C~7YXzLfsoUp=(2UL+d?b7pB_QyMRegnV;;
zuf3Ya)---h<4hW_rLirIchh)J)V8OwGmTxsUr%F48gB?^p5*q$n`yk2#y%157Nq69
zLf%eekC5Eld8Dvue;Nlwc<}!;y~AB5t?%>0e;Qw>aX5_+)A%Tj&(p!##g2#4_)NNd
zoW>{rr|+lvnB?q#A^Pm{rI4=#`FGYgX&g!8q;&i?jiW-oOXJx8F~w1iOEq`2elPq4
zk3sS6lvJs6TF4Li=>3$&&paMY)H3l)8ozQ0Ok85(w={lF<G(b{i~b*J{GGS(XBubo
z{4XK=Rq44j{t^DKAg`Obm=u^OX9m}@3r&<aQ7HTZL71o@gsoiS+$vWT3AYKueo?;l
zVj)zx)I?<y)$;Pogj{Z-iWz*0$o(yIMZUGF5Kh0kkQ#!yGp)ApCMKGisAHn8bgw7E
zh9>F@p;rxr<Q!{cqOnwS`OwTna}z}-!X{ee_1l<eX`+>h)_DmpYPtBg%}YY&|E>`c
z6YWfNG7&Y=KHu6w2v5<DLW%`jtO!1V$Ap&(mYC>FKV@ZeNClO*%rA(_O!P3((+s{W
z>Sm(5kTc5*S?y(_w~6OWJa3|piM}Q#n3!mypNak^hL{*i<qqKiCJt0D8DwIhiK|;H
zmf5Y<U=zLihwaXhY-=^lg#TE{XcJ>h3^y^t#N(~iwoGKCiEXXbhpp8p6DKKYt;TY!
z;o))8m!z<b8gKG>xe*pxyVAr}CbA|x4rJmQ6Std~W#U>BlT1uAG2O&<CayPegNYkW
z)NZ3Xv{92yOfmU^Fmm6BaQ`++dC_g1BU4Q*_M;yR2~TOG^fu}y6E~au>M}CJ#4RSj
zaSh*U;x-cxv{BEsQS7+0jry{U`nipoY2t#ms&QM@y{)>##GNMYGZ8m&mx<ZzXyP6^
z*;dWrMA|A2G`FpKu&tVFV(gIcy>##H$P>xP{<g{(9{zSvSTmuUFia#&P=4Ny9&M}s
zX{(YZQYH$r(bYr3RYJkgZx0HmnMEOGn#c&T1SzqFI3`>n>js4>^i9k&vC7116Z1_h
zFtNnMQWN)^*lk7@npngI4XMc?MaSp~!@Jl719DGDJz(NN6Dv$SY+{*-hfFLtaVDhZ
zh18=VwK=3d4ylSois2nPG~A*{tu)c4NR2E~Hx;QzOgw7hNfS?*Si`9e4?o7`HnEnx
zNIh7jUMLFYzC0BnK4IeRB1QhRiDyh4vZHSd4DVVH{kBNalV=&~bfnhc@H!JOm^f|X
z2NN%vc*(>;6YrQ<Z(@UqS50g+u~E8j7ThHGvWdToROPUuS(Ys#e8ogFk-Wy-Gx1gs
z4Qw~@x`~}8cJW)&u-d_72&*@ks9|;S@Gv9Kkd7Q4E*>7H<V`M3PHtk4iG3#abIRdh
z`g?_J4yyw!CZ8P_IU82H2Zz56tA2AL@0xhe#5X36n0TL|Hu0&6&rE!1;v*BEuy6nH
zArl<&V@ZZ{_e7XKER`ebeE)E>i2B^b7bd<k@wIG|?h*ARH*7?)Oo*t%>^m%cdqgqi
z)UYtQA5q_$IKj<j;;4yZ((Aa1?@WAe;<1S07UK>j`TNcY`RUn_Qzl-CsP`j^{O3l6
zKXTnoT$sT{8T@48XYLUb|MC1c@vDhHO#I37pY|iF&0Ue-P3&z{NK(F?Vmh5QLH@Ui
zb0+>0ey<tqViu0|kL>ZEk`W#q=XtcYQ-v8IgMtjoWrDORFPPJ3wL%7eKNlX@PF2j{
z0^zK-Z>OfTQ>k?1;tVQfP&I>U8C;UVp=FWE8C;eLPNz#VV0x2Ok?Q3cY;LEtc4}oi
z^=><LMFyvYRL`JB26Zy1n?cPCDz;Y>oM`O~YGu%{eV`m|A7nm-Tu_FnUIwGvtN#Xt
zZ)>j_X3!`T+?X^kgT|c2$u=D`D9)fs22C@;zwnx6z<-yw%b>YbTL@C#Qb;So))}-B
z(l*~35>k{wSV%;0n_Iw+?K9|*fz@8oEDK2|e)*rljTubMAeKQ%1|u>UnL%gHI)h#r
z^v*zK@Z00zZh~Dh=$b*9@SX1zQ2uy(MeHt;9)djuw~M?_27NOalEKgn`iXo%1_Lwb
zFPt4ep_*ut4-(<v3@+^u*kl=&!SD>abx<uuLPF(Hj9~^7Gq^H?F&RwgpeE$4jTJIZ
zaJ=9h9hBEWvEx-4T+Mi9aJ|T{$>3TcD>|ri*M~QBP?Itsc~1tKoWYa~Zpa`v#~(VV
z3LS&eu%num!SoF7%OIY?O&Q#r!K@7KV3azlTQZm-Hg6TLZp-;524`k)yEF~$7)))N
z;GG%VEka7}5;8l3IYJVma8CwvGkC0{+SXAW>ZtDJZW5wppl6WbQi`%610^#^<gHaK
zRw-szv5FR}bOxr#$vKdn*Ksp&WSSImUc_t$p0xT*15qZ<XQ(TL7G!XL1`CC=dULT_
zl;?|uI2#Hd$lyWlBO906SeC&<+(8)}&0u*3D<sc9$l&1&Rx+v??8;zO2CFkzpTUL<
z9?9U*44%v2`3%-%u$KB6JjJ;)AjRsFV)aA@kJC=EV%boveiUK#g6Pv3Jj-Pr6@DfY
zJmjCHVkgzGlj1|*DO|_h^iAvq=5{B=>WdlFZyaOOOHA@kYFa0?F@sGRY{}pi(M)wx
zFN-yOad@*xmUmLGX0SDb?HRnD!E4gGv6JG{`?tx6tG5(z&>a~Z=%kKyQXK9L;T(>V
zH#2xEgLg7`H-p_7yq&?m4EATRCxi2y)Lxz&QAM)+o#>e*;h+n5>yj|v1u#CUNDfN1
zOH{olW4Te4o8$XZof%ahN?<<{JS6zBAWxM~gnTOanc(MwUkHAg!B;}4`L&S48GIw;
zh~T5q;C7>9863}Gfra}me3!xZ8FaDG)xwDkPV$(t(9FWA3{LYPwQz}rA2Rrnr?G`{
z7S1qTGdP>UUm5(I!7og$41UkxS8kcIaJRC8>F3+_5hVG8+v<GVKbbaV;R^~v<eSTd
z{^p@w5c(&Be>0%wIR<uq(2J$4tl&S!P<mY@M(QspC~u+ALPZM~T0uux*b-G2Sg2qH
z##uNnOYicbi!2;C-?q-`!iz0zKHrwSXF-T~sfEfGYFelz7A~`Jg@vjXs#v&OjC3DR
zn6p-UK|wVO)h*PpKxa4{3keJTscoT-g$5QHTBs|g*jmrR&*$6joL?}iT&TW<!}(r~
zEHuvR%v@ba%_bJ!q2~pm<`!C52wR9)XlbF9h2P5xLKd>;+qP!p%L>|9V3#}2w{2_j
zUbQF-XTi`FiMMZWDrje+y@k$Vzk`L2B9B=p7812UZ#!Ag3qp(rF&Ens4lzHN)W2l~
zj8CZrCC-1}EzBvDS?FeA8ZB7pZlQ;TQ5Hs9=xL#sh5i->Sm-TI_L1<?!rpSBz83mf
z_^Diop|0LN94QwX$X*4ZNI_@_6Q(RY$iiR?7nciBhd9*2FiyN6G~B`nA>`jg)kxtq
zNIPRJjJ0sBg-I61Sr~6&qJ=BP)d`GYLFnGHg6d;R{*0=tEL<(lTqCWQ#Z;r1>KIe>
z%_<9DXW@DaH(0pQ!ek3?m4#`1is;u{5TsmR(PY>elc@|^ELfeJEZl6tu#m8Di-lV)
z%&~B{h1)F5kbvLC)v@s2{DN5)?vRwb-NJL-!dxRR8O@%&Fm|UEYzOj5KSXC+U>dXO
z9t(3V+-u=J3y*XS59=NtBFn*!aSNJ-+heLuw}Orr#TY1^NmxF_NG2_$WL(!mS|Z6z
zGr2nDLT*fDELav+#guK~rI>OAX>eyuv6{8uNf%0d3-jpk`L^@LXOa(N>R3!Iw6Ms+
zR~Ejuu-L*93$Ivs)xuH>4_J7XQ?u}(g=H2VxA268hb%0&u$og~u2u`L5PaCewq=o&
zRk%{Bf5z0RJb9F9Q$D(uLu3lqh+2&jMdh|7>M`a<i6U9EEb^p<r=`nNqR&?%()cqX
zA-T0AxOwk+3mYtKw6M;?3l?6K*7bRvm$+G~g?Al{{{N1fEWFI!aeuh7+~&90;!jJW
zsS>rt;+?CJ2TRme3$HO677o&}V0{aBSa`$2b_<&pgr6%>uXFn1?M@53Xy3vf?wUVh
zZ;G4)y~UtC6xq#<{CA9nd~b=`YvJ1xwco-%3#{(EKg_ZCL6qbj#^LwaAqyW{c$ZmZ
z;e9U9uJ8vIJ`{4UM6vpj@amldPWdNR@WRT^8JW)NQ|^?`iq+3V*sNK}Rh`ur7XJ$$
z{*pP|S&<yJ@C}bm8?bSN&hUh>@P~z?7LGAo7Ebd><c&9-)p1?|EPS7j;YnTv@_b=u
z#Z|budiVzmKXQLr_=V@ch4q~k%TGe~bymluTE0|`s2={+!f)JP_eQy(Tw*%;r-ic?
z&P%}mvhcTsf5ranWcZu~V#5^${|KpDs#s-6{}Y9FrD{*Jk^&opN>w=<<!x|f>CBC#
zs)7yLXSv7@f`5TvMZpUNxe#o<*hZziW};M8wsDz_(>8vvQN_mPHomZNqHp918&z#2
zY$R<|vr*kfZySAV)UZ+0MzM`fHfq_ZZKI8iwl?b6sB5F4jYc-=*{E*^$7};T*ze!T
zcII)~W_2NtpvE?u*l2E}g&kavnsO})Ld|S6C>LB-c;vF$(hkn#Yec`59h{S`1%nfy
zAQZAuWFumuoei1|+rbr(yPnool&bbp?O+GzEzd)qHXTK>u2gZqM{UGxbhS}tV{KVM
ziH%Ze?QCO5sXAU(KsSbJg~~=38$2_4o_t)Yx-llDs=JLIqI~u0LY`nfZS=Bnkp*{5
z36D^oz|G3SeQor!ajlI>Hu~EbU}L0>Q8os0$?V{oIMfCY;f-CxJkSQ)7-9$4Yo7M(
zKFr2&8zbo0MKNk}2#!uZ+Qt|gSK7GB##kHUY>c-tfm0|epq+9`F)X|ea<X-mn#hGv
z!HIpf9bAB};aXf23yI{RZegD7*V(w<#;rDPvoYDm6dO}*OygXXx`AOo-}XlFbF>P=
z#p-l=s1(C{lZ`p@ndD|sW792maNQx9VPmF^yKUTK<904Ov*n`LY)-sf=nfk^QSY*G
zr;XiR!*f*-Qd-vAhw1Pfi6_Zi8~55UY&@dWeKz7YG#m4kq8)xrqB5@ntm+~Ry30j8
zWg~6lIUCR0Fl}UP+;3wcBW%OA!H)#KjhB^jxXRtaS>djY8QsDZdN%0H+e$J1ya>*-
zgG=Fj=2byxfsId<B3Z<ZV`HU_RW_E`SZd=T8_R7xVB<l4^5>-FidLgrn7MaGsq$SE
z2O2-7gz;Zt<6$NPKT~xHBDuF*Xf<bN<1rhL%f4vVMLo)$Xa}DMsLvEyD{_)2BrH!$
zZait@DT(BXvT#|KAbQW(c$PWPMX_TrTo<)YG`HAz#l{OZUbOL&jrCln)rA|y6i45{
zUEDp)oToFJ7z%Fr`33xZ$g){-lH^qzTW##OalpoFHn!Q=V`KK}!tFL*=TT$hO<D0B
z;?EnoJShn6l)c6cGQEr9rh7}a>TYp~dzl;RZQ0#S>Ag1g$+(}F3&pzxS$dELZM<*e
z133+t#_w`d%rAIP+%DIskRS6twDA#F#Kvb5pF=i2w(*JZ&$|YZXT+F<w9nJ#(fI|R
z+rb5$ocN`jW<1co67sd+VZm<%j|hG%cvSG1jpIVT6J+1-b42i@;3+0X7saL@ZJeR2
z4k|kM$qrue_MeUOjEs$6r24CkKW&_~@tcjOyQtp<N&XP>Mi=!Lr`ARN%OkO?3SRvt
zz0T2W7xfP#*;SGB=&HtaRRvC9pQW6TnWA4_c%dL1RLJXOx~dBuT;w3-Ano8{2bCNQ
zb}+=jB@Qli5OL7XL1hP*IcVyjnS&}0E_YDPL3IbGCxx$Y&>FF-4pwwkFLqT6FNm?)
zwlG%1K_dr^9n^HdYAuJa0#~&K>j>5rq_Ccl`VJc8B@G?$4r(^hR1*hZbyb}%i)PEk
zh|L|eaL|S}9kg`tM_1K~4$!?aMb2L33u4CfNTOn_d6}Aid9<`lg&Yuz9BjNi8g_7H
znIdWLpo4>M4!S$&=%Cm^XR0~q<Y4RBaLhr8gQ$ap<zsi0DZ5N9FH;-J)c!Jcw2UVO
z&XuXI4$2scZmJ7i>ZT?Z#yEP@#ieu3M+aRN?ct!OgWeAM&}=u=%K^RObg1*hWzoJ4
z`Z*ZrV331R-Bf=Ew{%l(H#I;k(>T@EbW;~siEinp==@Lz!yMe?;ARKI9gJ`=$-#9F
zMzXtu2@WPY80}yTSGKzv@8F$o>X)UZW4V-7qAcSaoam-VXqHQMsvvfygWD=cuNM8Q
z9B|>*Eh)W5gp^+^@h7?7LBsCq1_w7fnCxH*<I`RB@2(!J61}0j(z~mvGQ>0o;l>df
zU))_ycd%+v=`-EcEe>vVFvr2&H0xl7gFBf~J%Sj{WNuW6-tOSnC8ck6SD$xRvmE@^
zUELu_J9jzQUJz^AL(OJ#ULNh&L*3(Gt^=K6ba1bOt9qy{Jye`Fd#L*ycs<mb9*Pz;
zvHVUCb)ZsgRpls`FX7<(9xCaeu&1iiQ<)AjH16Pa2bKfd!CD88IdB}f4jypupo1(8
zI+*WZfdk(G!?m$eY*tUzuBV#E1?{P>?x~!f>V5}{94vP5NKdtp?iIwgEGnh*OB^h9
zz$k6*8LT7omblEpLlWLc9W3W&VU!%KcJQzWPxn+8^inGweAH91F!GN$sMjk<JaU$f
zz0?}fWG)Tpr5<<igoDivwm5jw!BY-i;37JBnpx3HJ;OO(8lBTiWqYY-9X!W@da36f
ztaJDdO2wv)g7oSo2kW^n9Bgv1fs5WtHSVpt^i~yntH@g=-xkKK!q}aNz08#Bt#0bA
zUUBfMgKbQM%c7ayYI$$<Qg5}@!D|lo_EuXe2MIQ;eB^j<wZp+1+@22pbg<LGE(c#b
zIPBm}2X8re-@ykC{_CxFbIUu}<DhCE#f`Jq!9H#}CNQJaExKRw@PLCa76yTxeL?K!
z%F&hOWA8e6&jAU`)k6w%_#va`;4=rGJ2)i9KjA9$Q6J0p4^DtS!GZ88XId8QDP|xO
z`1(HT3kP4yKwk+a`l!Wy)He=}@T_+5vx9FP9OVvjaMHoEebg}r-#K8%<Bb2J(gS@I
zk=5@V9PgtdjY>{Y-c9{LYjmTJI_;o#Uq#ZsuNv4_opC_I%$(X+{lYCE%D*$W`>Nk~
z(k?0GNy5!LVrl8JzCn1;I{3>$Ef=+2{LS-$C$NjlUHs$VU!K@5D!IV{`=5gX7v)@>
zm-F_6|DqH!XysjS`y_`&3*F#QWr2_iE-uJRDhjz!@FF)jsHwKTuiD#JUE<<W7dO-h
zS9Woki>m$9vA*iBzKWzxKXnBqE~>ex?gl5%hVrqV{Zy=cFm4SOHQnG~xu&1GxMGat
z&VH(ni@GivyJ+HqLhpREo{Rb}7WY#;LL0bf=;E1vYF9tih;E;cvV74mh*eV;&D`LS
z`MsZ_GbGJ9Xn#f0%0+7z?H)$^htY<ipnM5xEJ4Uck&89+v35SfE+Q`8_3)mDb}rh}
zfh?M4(ZNMW7qzn3`dGNwMJE?qUGUzCsEe43+g!|WQR1Sri=i%txxt&QN?r7D(bEN=
z8mC-zZCKQW=%S26^j8D=t4aM;Hy7Pqkg&|{ukP=!dbt?rVvvj8F8a85vcKx<qQ8p)
z!utts@2?K^SAX_bFK#R0BeE|YpaxTafSNQw4ROIHmR1AQa2F$7T;t+e7b9KVGeC`Y
zF~-Fx7xxcPte(8EXsnBIF0OR(`T#ZF#l(t5PYqBLg-md<sbUc&d{g9(-$GZp;16K=
zG`y=h#DIWIa&euDX)dO_xZcHNuD**O=*FY5v1db5T%?*6k+fP>e4~r0E-*0Yb>!s|
zzNv@L4!y}moq_5W7dJEhXG>Z5TCNTQ)vYoGl9?`Ucj3A4UCeTE2MxMNySUTET`ul*
zai5FXF6MA*F8CS<K6{o=%DS8JtW-2)pd!w7@$8L7Bc>L;;DzHZG#7@8go|4SDxKa|
zQp*RbG<_JT=xUOirE<}S1J!Hd=Z^!G>B3>E4^%7}7gnCzLaGf?p+U-Zk(H{h!c?2*
zV!n&VTs-b#0psjqrHfTA7P?r(?4{3@)b*>28P%bK6yLA0#Klq<54gd5Hy(7cOcZVz
zq#hFY0uNmbZ&gIXvcko~B4-#`UG3r#<}JfANb%JeT&zdwWYr=TDsUawx?mVdo?zOz
zc!9gj#ZxYxcJUlD^QO{egVeOvMbEh4qC6|OZjd5>-o-i>%j*;|AsG!C<l4RDVzY~{
zTNJH#vBAZ@L24tbFPCm&$3cqKm!(QVA=S2s@+*R`3Z5IJUURX{#dhYKi=SNl>|%$D
zH(Y$q-Q;4Yi(M}EyEx$DO&4$RgmJNl(_B)#+eK)w>ONR;(^Va;_PUsRDmrVh+UH`z
zV0CzM_|1X{n-02o$HhlXA?{+P<+12{F5c%F4OaV4Mw>oZ`~i=PMa3U78pooK4py%Y
zR;+&P;u9C2xp=}4e>hlu%Hwf};-IHwxbmH1&y~i$bn%so?_7M(xwts&;#(I-U3?>>
zEIJ-NB4l@IblBqJ8&5^+3{l5i+_<dxxQmAt7HgAA=>IRDMNhbV7-q?7?i4Ql;^LDo
zPRU6^=cg<z{!xsa;b}Qov6VtvC?2AIaq%lp&MYp-;x`w+yZDa>I1h>;>JJ*^fzNHS
zsQ6D8XI)GgqKqLypeQ-V^WVk4T%-GoRV=n_i28g{arctwzW>4n*`Q1LEWQ|`UK*mx
zk(_Ar)(};g1+t(fTLb$;RK+YV%;K^vs$_BU`jU&XxHyYSS@d%Yk|(2=WN~R0m9uE2
zVzf|YsA4atTZF+}v8?#=EUw6+dKNXZ==@4S)hw!IF@C6OIaHMmRdbI=XAM=}Q1ux3
zsc6k?;OEK(#kI4jlSSQZ@Jjjy+2D2a^@Q_H@%6KKb*Lg~C=x0(5{1TDbe&c*d0I)c
zEShKWRTf`ogFCKUWYH;$XcjG{N=Yjrtp(d;v45y)D?F6N_d``t7GWXe5h3ja+w&@r
zmv<CWELd)sie*ufg~xbuj#-puab*@)Wuda@!YF0YpT1>-Zx{OtmSxdRNcSvyW`i$y
zdq{Qr^5EM%mR?!(772MD#$j0SRb*YeFxNUDi(y&*Pyz!*XOJL`3>H&E1czqf&JTWV
z%`PLd7?s87EJlhZ<vBZJq&gwXM~eqOu#Dr<<T<~(oS5hAa&;EhWHCF7Iayqr#iT5z
zWN||l*Kz6j3*74A>$5o8E3iB{?+@iS3a9Y)ET(2LO{&wgxHXGA&c>=(g*Rn!b6)3`
zZ1DXmmDzM#7BfVLe5NRnuxVC~3*ISsS2p<4l1+DKaZeUj7IqeM#jBJk+?&OHLgHB@
zWC%^Fx*$6m`6+PpWESm)1>f#68fj55v&iH%8HZf-90@P`x>;oNt@M9h7W1=sJc}o?
zSdhj2SuD-s0Z~{exaj|PoL{&&izQj~k;NrG$W13YYXu(?TqU?%7Ggyf4+~i-NKfeG
z>MY*+JBZ99oSG<;uVK#Qv*j^HSd!|=ES}2ZjVyL%@w8~Zkj0Bao)LUj@HxTfvsfpD
z-|^DmOTss2u_cT3!YSM!qimGwCc&2lx$boA72&T5zA6rH6`UyZ-Im36X`-Fih3pXI
zq;_TTW)=ssILN7qaGxyDZf^4|_T+o*{XdbUk^Lg4w>h`p$>LC6^W7}o6aIc)@_~>K
zv-l`4;TP#23;!gGPqX+eFaIKo&xPmW`DI?tQ4VME4O7m;Tn|UG_%@5~Uhtpvqgfo|
z@#UeehvQj%mqnomc=$ex6Iq<i;xC?}3`G_{XYorGr?dDWiyyOahN+8gkL3POJ!6<U
zlf_TmDI!@jOzo)>`;~`(7M~PEf6oR3RgFi9l>d>%pFHK3gxQ@hrr$G6{hh_REDAiZ
z_1j_UpDg~9F8>PtJxqN%BXY%Xb)JXwaFrXPoQLw%AErW-UlFa~;Q|j=c&O^3qK6AT
zT;kzU4;Oj3*aKf5U&+JZ;cCiob+k(CgPDQb=5STnL!T)TmMR`D6aK_-m6Kd9)uxxn
z*rl3>--oN39<~ox)jibk@Y!(1LQ}Oo)Rt<Cqp>O@RI3rHo`?D#+IVQ|p@D~n9-4b-
z;o*mw5r(3XhsGY7c<47mHTBTU!*wIn+!4XQ`|He#tRA7Zj!-Q<wDN+uwe~Rb_6X<8
zSkaS1Bh;A@D&(QaL(D^ohp>l;hmIbK`T3u-9;rHb7(G%o9;w<>VWgrF`v27N*exSf
zCl65%J(h;aJIo3qV2@OtJ(PNQ@_1<(qcoD=3!{sNt{z?+sTj16MylpBBd13yy3x%G
z7MF2g#~vPfdg$e$w}-1eT*Fv-=<8tw9p=<L^!G5t!%z<cJPc&yJ#f((_6nmE9T>!Q
zxjn))Z8Az7ZW`nA4f8NumWjqoM+HN4of#R$xp<i9!5*c?co^$pyoU)M4jzq-llY7j
z%`0ogZWR)jNnPn-^(eJ@l)8$47L8ITMyYE(O!9EEhg%qJ57&E`>S3B#nCxMShZ{W5
z2M$^|TGbt`=+%v~HHt^8p`+Dw>Wo%5aXO<FV@oxr_pKgo^Kh4k*&b$im?`?RJlr>0
zEgl`{-0tCJA<T+9JlrV?lye=qgO08(p=6GSyJcur4~|y%vb%>DJiO>3?m_eLfQJV?
z=pGCY3q0I2D$J7bU<pqOrUcW1reH>J=b&g#-<GQ5!4;Af^aOpud4g1)&uC{#N$$@}
z7J69ZVX=oLB3YW34;vB~Pb~<Pmw9-UN5^PI{*Z^|qO&5e`LKtT!dD5d7JMY%`s>P)
zH6GS_c+A7&B3vi<goo#ad_Ax9Ne@qXAbDEw89`Q`_3)f<j>~F~DM5THL}J93JgoPy
zjT_d(2C=i*!xkYM1vd%4EO>sjdPT@<g0Bj06>K~vm=p`Wdfmeg5xyn(hKF53*t%0l
zZs<3K$Hu7LLf+2n?D4Qy_&&k?f(HZ-3ce#qYeUAU_dR^T%{32w=HWvRA2I$umijp4
z;bSI-k89eM|HQ+mJPLe-eSGHOa}VWwl=tz4hc7++=;4fquNWT>-|;Z_aM;5)9=`Q(
zl;=N_YG-KL7{wopHC-R#9q;?DjUD46GHEA-H}494{blIleqr(x9!`2V&Ew0%zMdtw
zK3-b#Oz0H%;Jip*Co*eS=-lB@VvHjB$-~bc&U*OE!!I6w<(B8tk5RvIgY1d^&Jmvu
zk(_<8bogrl>3tydC!<P*^`XB#JaHiOkB5IfoD<IKqK`uVad&tq@Pi+<9UY?%IT0FZ
zyDPM%cgfXGq|gU^)b&x%M+F}j_^9IJavv3aT<D|fSaqq7i+o({;}Rc#jZw78?v-e5
zd6*?}Bt+r*BcaMZF7q+_%g`NPg`PeXV#h1k-A7FywR~{C)qK?OF=2hEx(}mo37rXz
zRqhvowc0-3-4$B)O=!iZq13yfIzInYj8IbFM*|-%eYEn?&_^R5&3rWX(b&hpJ)x#P
z#*9_oiozyz{>|{QXF?6Oht6#cN(;{ANNDNPq1)*H8=>VZ3S0YV>m%eNJyx|5TsXF*
z;q#^4CdGc)9(u-)M0~XKajlO@KHB@};G?gPem*+-DE86SN12aKKBAn9kIp_~KGuy@
z6&FM}ku#r$$g6xAD)rID$M0j+?y*Ywc<9>L7h@G$De1--?hEzs(bGqFI<q^N>}BKB
zxcQM@K6?A;L!0B&?rfyR3n7M!ktFZ$V}OqlK1OoNJ_h+1<_9@2c}wV-9ihQKhWHrj
z<LiAP=3dGBq086BNQV2E;YXN|!^WvmK1MU_J|;3;KK306ERXZSDUX%)A{j4)@+&?G
zTCenRm5-~53nJBag|6}O^i!oIL>BsXosa8%-0owRkI6o!__)c(%|33Bg`P1fHqFP4
zK6-r|nkq<}<X;^KO_y=$*eyP84V=X58$!1+-(Cql`ATT&I7Q<RzYv-!>&r<Q<J28K
z?({L&$Gtx8qMttQ_VM_*AgYxPhvxVoDef6wx<7P}kGIFEug59o#vkKU*_P0KKH@%(
z_AI$@ePI8x@rpm+*8Sku+=h>Ykfb0bDQ1Na(?>=m^YU^_i0#7>;^yU9A6}mOLRRvT
zvpoNWFA%(6aG{SyLfE?4M^5<x=G(x~BR(GW@u2W!f)Dvv?qh}Um4XkvT==k$HIEch
zpJkPg)!Yc<)r=W|g*86b`Z&wI>Ekg*hD+>Yzt68V@T8B;KDPLHiYw^jMISG5Ir@j6
z@$syW=a{SGgL}w>d&T|WHu4vk(xNb0<dp2bzi_>eTgI!*U6GAGHu%9WM_8u6SHNDI
ze7wvIoEIgZosGWY<5eHKe7q?}wsLWO?C|lLk8RSC_rtUAb|3u72?=|>;e+?UZ}Fn(
z@oFb0n~n0W__uuQ_OX|}TC2DH;Fl>U#s{~`?_pTRtCz;B1LM_Gvm^hJ_&Dg}n2+N=
z-r*VI;}ajB`q)^#<UJoW^&!#6{A7gX1MzCsU6GG?37}aYd+v%9O;EiisA>}w`DZ>p
z_i@<AH#F5wO_-p*@bRUOucRZr{hCQTLGgBa7FLh=_*R;ZawFUoNX!Z9T=f#lS-$h}
zy^mjg{3bdlI8z@#_&6!mQ~BW2)Q=MUpM3nxWcI<y($w+^>KD;mPY?TtDcnCV`a73k
zUX=Xp3F;3X(d`whe{#9!MM?hlagOKYJT#j3|H%68Xeo;4`-OLrC?En7l%$A0mVHXt
z_n=jfEC`ZCa?UyDoWpFGu#<MkAcBe!10onOAQ%t>W<^xY0RsyB?i8Q>{_{Jh&po%R
ztE;QKt9y4c{@aKP+>kX?)NpYlE^#y0P+CJo!^iij;u`Wa6cf(uFZU_1N<(#phG;)k
zLIe7R56Dy#EGb2;`h~aUm(jrc^UG-{tMS5Oyq^fK)WTsYuZ5w-?l7pX5?)oqH5w{u
znAT5St)a3O#u#;oRW#mQ5#P`+>{>Mqoc)>_s%v2|)X=cKpE}e}5wF#7oyHTw@md=G
z?59Xh3Dy<+jWonG)YEXih8wgnwCZcPQ3IcbAa9`ICbp=dAqSzqy1u_+@Z7ASu)pfk
zUva+1^jA@_)1*_3*#Zr>uv9~lhFdi>*22JUc3D9~Qw@vyhu-#lFTzkEFSWcNuJQJU
zxY1t?o>kCX!yOu0YG|QBX|RVE_T5=@n}*vpJkVdYo>{<$M_9d;#xpAMJ2kY{!Usvn
zDda;IZ8W^tUoo|LzD0Wt9W=B}pj`qTHQdEvOn^@vcGA#U!#0kOhPy-eFkZt14P7<d
zqhTN|Yv`thmt*>9xK~4W;XSnQdR$LIl3rSPp{KVNUbtkoFXvH1e+>gPbUaejPXjMQ
z(*o1S{lkkX*HwrUd3k!Uh9Me8YZ#-UWQF)p4I_jM(=c4aU;Pz@OuT?d9I0UxC$43j
zsoa3j&R7k14p8I7rFsLDc}Ed1{Y=y_NyAbN%QQ^ZFh#>`4RctLF{5Dyn}~$YgcpD5
zq1fR?;h9=^J&{GTIQ7K}rwveZHO$knkaHyV*{}H;7HC-9I$rCl_>{atlEn<U0qTcK
z@g<^jWzX2=0qW@iYB|GC!&(jNM7~l({W^JTwD9`TDh;bO92=mRw2Sd*`LJv2HEiJA
zRg61Ycmu#j4Vs38hSTC+QUf2{A6g-93rPv41$99~gDJ!kq;iH4J3x_C8mL&2mR${=
zOcS{;ZDlnCLN*CfzFEVT9N)^);)N9M(6Ey;%XOq-mxlW_e4yb&4Z9hH95f9_HSE!_
zS3_~V;E09?xoR}LEFFJX!#)kq3V%fKDZxhtISY?z+<e05VtPWulfw54zCR=sGCi%~
znVe4kKy^U)b6h4Go)>;t!wVV?3BMd#to5Q~U(&*xE0|?PV(Wq7b;egTysDw!Ks9Ti
zdW}POM-hjJ_y*@i!_x!RNe=!%bzCgGEBL11TN>UL@{S-4p3uU3JV=<f4OC<O!uL3X
z1J(N?Cpo3zBMqO6{>K_Vp{o_*pUFggs^OI0g0ugX_!b!ydiaHgFE!AguQYt8q0u09
zI@i|M8qVbSHyXap@oIzA%9io7T-{>fN0FCJpj-k!Y4};gFN||3DwDvk8h+F8yXgF_
z;U6J?2%Z!CQ}8drS%cJh4gYdiPoQ`L|A~-JUes_w`2YEENwSedIF-u=sXQSi1(84r
zAy*{86!uX@tdwwOODEuqd%U!I{~&cG-R>T%D5d3vGg~2n=LUsycU2<X7FerNB8<<g
zMXhoIRdUv<3gPTmOQ3oJH4><qK$8TTCU9*6*CmjjK*I#?el=DrfqDsCpFnNN))Az<
zZUS!)QY1GdP(OiR2C1@x)r|=>NWe-ryg7kej>lI19w)ykf!~hA9(<wUl+_KHjV912
zfm;)3%q9k_SONtJbQ!G3=Y7+#&en#vBrtriB02MM!$pHbv*TZA*eroK(-1`qg$WcT
z&>{hqfIV0>PvG^zYV)sQ6Z;0MV(~_|C2&UqEya`D6Zmp)Sc~#j3A9dtgz3%%{uSjK
zLsXjtUU?z(t$hL=65+c*Gu;0ZxGNDp^`<A#DS^%jtdi{A^frNU35-vmYXbKq&@X}h
z33N-Kdjh=^=tKDs)gytP3G|XG&-ZUMYKU4gL~R<Po*csC4)mp0Llo7Rj!L>O0g?)J
z;{y^Hn845kh9xkFt<;YXNq`mq9-;;(aP?5tXlSU`cBmSjz=#A!B`{jlMqc)Is2Vg>
z%^9j57^+?xs>UQRmZMZZPUEadoRGl81QsT+D1k`{Oio~C0<#jBlEBmiri=5_#2GsL
ziP&MS843J7RE=*Ozj~OOoxq#~<|nWq0qQKPAD^4RJjTq8p;t@|hp7(3LN~~%u$XEI
zEKguX0!!)eFqIvqmWfwOhlL~X+%UDYULz8Ab0z!II8MGgfi(%NP2j{ZwIP9x30`3V
z&8|;?Ux#7hkZK7e5=bSGP9Q0RKzaB21#Ft*_F`VaZ4Khx8^qb1A%kNk!uQ5of<Fxl
zzeLQrwi9p?a1-#j#5mLmY)&AXK&jy>5F|<Mj1fnn5y=)2Ze_bUA&Yh-u#+9su~Nq_
zwv|96jbdr+PT&FdI)!B^>`7p60@IS1p2UL*Je0syNmNSW;RN<2@O1)b5_lwmM>+Tj
zypag64?dQ_vk4qX;Bm=P@`R8l1@{X+CHQm#&j_JTfgRx`+UF!Y_H6uM0?#LKNU{xw
ztCxiwPT+-{{)<9h60AHtyp(x_D<XkcMe>^9>w>%l$x`C61dcO?6Zk5DH@T39tB*vX
z?Qr!LcLx4zlI)2D-WS4J?<R0k_<Mr?o{LlXL9X;eA*TfC|9x~r_$LW`n$!7A$ma=s
zk(10Cu1@Fp(SKqzxN*4pCV_7gD49g5B)&`FEcc%TeiyaxIiADSufl&2{E?ey&ce?^
zei7V0T<tm@dRX0Q`UiV7Tt$*Nm%yLgT66mU3He*_AHnm2|1wbT&SPDs3nIBFc!`0L
z{GYs7GMwMyf_Z{SqJ)qu1pnDwoC-h7bdZ!zq6`&AgtJpt6v`!Wr4UNWCs9FoMZu#V
zhn`=ZMCBw}C($N}DoIpL;>IKzBvEsOx+aNQxw_SaR8OLYkeWI9wMjnX6FSMXtzGDL
z?Ih}mq^@AST<P^fZb+hjPSSLQx=Hx0Ni<I4=A1lVNJGJB5{+{5n2>@bZV}Q^y2%!s
zB+)F1coI#M@IMSYHDrV;6rI}ziv%feE~G^gO2}=3m#wk%4#~C@Y?Z{FLMUe>v`wO2
z5<`+0D#G?j+>=DNBs%1DIwo;fj&~B$S@3SbE=hFFmGVOWGg{N`N!*tNugKGWk0g5L
zN_!>ITX-MAdvo%>LQXUfd)H5R|0K`<{BPt3CNW6(;GBf3gPOyV7@ouk5zZSCUf-v1
zWD=v27%jpHf@1{73Q}QQ661xZa&b5@iAf@vEI37Qs^G7k!bzWz#LOiAPU4>=W+gE@
ziG4{tlEj=O<|dI$B9#R1E1>4QB<3fP9-$T_u}&;3Ok$Cc#eyr6SR!Pp;4;DGf~<bH
zUEWIJs{~i)<ZC#XIj(;kU!UU}lGvEzS`vvIcRJ^#lhBjcn#8swj3i9@qlI^OSV`=b
z(DIYW<n(PJj-V^(3Ht5wvO-uf5V9$W%{j@IB-V8P-&)=-!lrMw*pbA}BzEO=_9VI9
z|2L1jlXxJ<Idpr4KPdQ+;KRAnrl;bMCh=Gj$C5an#N$akAw@@$e1Hr4lXy9a7e=V3
zlHewPP>P<;)qO_Dvq>DtNuCR%J=_?d7s;WV{IHN01YZ<<iEHhza2~%Lq5d7AUdd^`
zn#60uUl%-@lfS``kUi?nB;HEm$0UAA;_W2fp<_vWk;I9d=BXs!6@F6iy`230BtFRT
z4~0}78HVvk<T?2#Nqj2&vz+9Pr^ERFGKp_<lCOlE7W_JiGdcM;Nxa%VoTKkVa#ryB
zT<H%&w)e?<J>B%@Bz}=>!AR9%r219(Z-T!I{vmiSi9eJ0OZZ;d5=UGN$M$>@|0dBT
zg{~?5m&66`V=3I4!o?&mapO(lnp7ADkrYY^AupCfap8G6351kL;fkE3q>#ZQRp}JU
zq);{|uPCIP;FW^q1uLX*d2^ust3*;Mg{y^B7OW!3(uFe4)l#UPLY)+<=j1g~sF~x}
zrf^-3*Aik$t-8V+q)<=D^*Nmzgw#*rMj@B~D%>Re=A2G`3Jrxv1smn$F(CyhJS0st
zPVosxG)<vdDh%?M^rlBd9#5fAG+U-nltNy-u(@PO_C^X?2v>sa<83M2p5u22SyvQq
zmBO9ETc^-LNE^Yng6#xZx4n=xTf(2<j>7Lsp;NB3a|(A0|5UuXCxvb)j7wpB3f)EC
zU$93CJ%#)+Qe8Pp^-7_)Wcvux^1VX(rf{E-euCUTSu{ZSz!V0hFjzQ+BU2cX<3oiE
z6C5r$La@Q8u=*(Bqf;0oWUS!xvY)per6!~>S0ob!C#5hsg(<>k3QiTIooOjd&+!>4
z^p%*We3l4jr!Xg1%6|y+gwM}O7NoE+#}^4%oWc?zuZx}KDXd80XbNwnurh^JDQrz)
zTMDaFSd)UDf|0`76i)Om*qDNr!aCvW1u5Jhgy-QCIY}yor0@Zw6cy6KpMO0<ZVGo(
z@Pt@`89`gn5nTOu+!qq0ut`W(Y+g39StMKNt(ixg#Ob5d_7rxca8QbNrm!o8CsWv;
z!u=`iPT?_;Kfpi#DLkCQz7+O~<h$Ml52f&+aGF{x4zrbJ7vhhkuw|4Yf0XfmA<k5z
zOZ0Kk+&@Y^k!zi`o)U#;Qg}LrV>t_yKP$=y1fNS`;(MWm=TkV8!r>HNNa08dujK5!
zC`MkA?8_;9C3c9f=6riCh0EQi<=0b)j1I^4SPI8eIGw`RDZH7&TPeJs!Urk5Ew$dw
z)qO`=Kap#TeK{#b@8u*Prf`aDoa_3I_(zP56h2E~do1<|H>J^v<Wp{>qt#ubl`|!j
zGmRRp-s%?pB83{g3%+F2-J)NmU|m^IyKD4J3g4vgM+)as_%?-~?~4CI_eQJlQaGE!
z^3m#h!Jh<w5d2ZpSj6;m3jS#I<Y@J)6n#5d{g%S-DHI!{XsX5-^(QyXuF-$F$)`}c
zd%<7arpBnhQ}`!^A38_R3!WZWM1FyrzjP|Ud%-2?(dB;KH74v-@ig+%aMHY06-c8*
z8pG2Vk;WBiluYBsG#aE)Dvi=<R88ZWG|Hq=HVu1>x;l+=X^a}9DyG8+!><%xUa*27
ziz-(tWYJY=R1%#fV-&NM(`aiHFjYxo-xx(wEsg4FT$e_zba;0YUnEi^jhbn^HYU8q
z<=QmPj8Wvo+Vpm;swdX!2(LR<)lGv~G*(?N@*C2qFNB{38Dtc(#hcQ&IgLBhXq`rW
z8ePV!r@kp{mPW%gqG>crBbG+vH2kruARS&!yM-e#RvmpSzM*4$$yjx38ssDtHc8{j
zv8rjB&uWF)cpBfgjTH)#6s6Hzcnd+5li!xc?ZWTKNm{1SN;sQi#Woz1H10~HQyT5W
zhqI-lXUas|U-qX{v_l#lg>Qel1*>#U<L)#Dr7@V@Nuz5T_omS|jeFAQmPW5MdZ*Dn
zjUH+Alv?kMRjl=+V8u->c0bvo)Hu~giZ0E`t1~VvWx6kofg<cD*k7>uI5j{>m!o0R
zJ;tdS<J6EehNi(dWZF1R4a;#VjO6U6u`rEAX^c)|Od8YDn4X5&G0N?FY#QUzxPP3=
z)QF8wV?r7e)0mXT)HFUHrzWTI@;Eg`_%rv!$^RUuDCb>;<;SZ#%z_zI{_y5`Y;L@o
zDL5;Q*+S+BQa+b`uM#7fpT+`)bU|UAwJn&gOUD;;;?gkaOgel;Pt);XKrT&VSsKgJ
zSdqrcG?Hng(pZ%S-zP9)ywcKGExgNkwI+?V!q;)w$1A4wX>1U_QIJ(AOr$Y?ykcE*
zyh^9Bcf4X^mPI<NOO}^%tTYZ^5q`0SF`wa@O5@V@BBoR0mB(mIqm7QXI<jd5To*bT
z>*4*Jn;5q`-x?R&oW_<kwx+Qyjjz%;oyPCu)%G-wr|~8i=>)YSjh$)i;%H0unKYi|
zS)eo?NMnyk_NDO%-4p(x;6s8B3)Y^XXoTre#=J-#6MS6o2|<=N6P^8OJe89?Eu`xN
zbwJ1q>~b2<2|t+Ad0xmN!NX~c7b7o8_O+bO%V``D{z^{rs*rUP)aycy=Hzb(ImUq!
zJ8z}&wn)Add`Iw98YhI%=XZsiOyj+r<b5F@r17DUgJOr8AEo(ZSvZ(Xp9uLhjn8tD
z&(ruK$4^dBKZx4b+^^E8prfLW>NVrvq!H1>sVO#5eVfL2X`JQhxQXg}!SiYSkj9U~
ze@f#wPGTBAOZFGRUj?gA468H!k;Y#lAwQSKpE-Vul>VK@KO*TU*?)!qCwM{dqTnS#
zS{O?;J#=R2L{(fzo(||Jp@Z2nf+SbyC@H*DPEuNkGf|bzNy-ViQn0*^N5tS&((CIc
zsd_pp>9|_Q>l0OF9W_NxUPUBTbzCEal4=|=;WcuSA0{de-L;oZ>8K^7wqPB>x`Nax
zF-bL<q^{R-gANj=`a*8h(I6+eNyyED`8qm^T2v3;chN{kOh<w6TLdYr@K5-r3%+-y
ziH@c^Zr5>#j%TVC44kBz>FC)m7S~azqeusLvlcp(jvj4d%>`#nQsnj8#;A6ijugkC
zZEVjZ)l$djlT<4m<gZLpcj~BLuAsG!$I2Bjk+;*)UdJFEgLOW!f{r@6)1Z#Kbac{j
zkB)9SI_tQbcr4y!vN}IWRhq22=x8`ubrmF`KYV%JsL6`E+}z2kr;c7a2Iv^5L!Yen
zOjf=1a0BG+(|z>t9{zg;`|7w)2qpb=^w04_lNG-$a&ofzW3rlgYix*)p*kk(n4)8t
zj^R4S=oqWx<t<G|=oqcXM(HRwMUB)^Z;B$}kHTn<-W1h)O8DukDO18-cN}*!9qB2G
zX@ZW4!Y2vt72#AJ({#+xF;mBMJ$zz4-68t&6typr$2XbK&MY0vbUfe|%;uzgTr@|=
zTp{!H@WmsP%$Mu}!G(g01X;9L$C4ahD&*rSYPpWnWeR%siV|1pSj{*w(A2;h9cy(w
zsbjy6bvo8_Pu3CW*r4+{8rV7<9U49F5M@f~*xn(U(D}CNkbKl3N=)ZUbsa{In?fuG
zkB~o4w76`+)x+P)53GnM7CwKn&}Zu%q9mJiY~~8>5Lw<ax<zX35oK1~%Alpb2zLlR
zpkpU50qD42$4~uYy9KF9&P4KC`v`Hbjt52mAsvqjd023t;3I;~YZp=TG2xF3GW&#(
zKify1()pAtY8c^*ZJ*KcESIE?KXe?>@f@RF#}_&d>Udtq2_5h1IHcpSjyH9@rQ-!1
zFY0(j$E#dEMLfR7?^Dzf#*!Xd3tx?UGJfy40+O;*)oa`qbR6Y?{~V{}4IRIZEnqsX
zW8~P_F&)=WRU}LlzRewYTmktzI$BRv{idp$BzscFdpbVR@u`mYb$p=XBOM<z*ruuv
zbrf$NYxHL1lo0ZjQ&p9bF@LIhY^q|5ee4K@pK;BOic#L8Y3xfKU+MTk=SN|1THIiZ
z-|6^T#~Jo(s``db7RBf=`L`mOJ+g>8XLWop`ZW95RP_@(K2`lfWgQEK75*&fw}_RR
zrfN)6Ec%U8IWk6aPDbXEj);Ljb^N8{o0f&KY3gqs|8SY;_*ch8uJmc@KOGl@d_J<M
z{WMiDq2TS2MZ^iy6ibU4C~ly<feHrl3@o3fN*X9-00v4()}5v(yh8ZCX{xk=G6u>S
zI5JH!l{IkR&vELIw{9LIUTNU$$QC3O4P0fQs)1_^RAN*#ja_Y^vVoOt^T<D$rifKU
zPEv7HteO!{eRTu3H7WdEN{jmBk=HbEt-*Kiqn3fFL|1LmxzRua19c44HBisM^#*P*
zP~QM&r1W&fit#>qb*6`{kTjmI+D}(ENplSi+-!hZrhEefMTdjDZ9+jK12F>yV*geH
z)tkqrPgl1X;E2)AiJ#()MYwLdYGxpApqGK(1_})n8MxCxYXi;Mgn`=)+(Dm5#FT*{
zLvfpdz3)V|m2r2v>iSFU(dp{kJ5i>V23i?7I$eD!k~Rj9iO|VFX9Ml%A^S2zbujo<
zpg47C;nH+<^9<FI{?AZ%8E7*j%-(IFi-Dd7t{4&<Fhg}U(9J-11NRu1G9zq=*u&r#
zj^a!^XQ+)c6v?wQ)a`E;_Azj;foBaIFwmD%$z9ICS_AzI^k;PgQw<E@5E&S2V4Q(L
z1_m1#VPGWtWng-zDAO<lLk;{^w%|gwIFXX!22RXSB%|m?ox;%uSVZz!&*&HfKhIE1
zYeaLrfr$nt8JJ+8>`WCe6IN%sX=Ye`vNX|VrkX}#V4;CU24)zTX<&|lxdvt#m@RdO
z&Q$vjMn1Z-;0itOOtqqUIp5|}p;}Rk+Jy^5vS6l4lqpzjU<u=y{XH0Ai*pY~mWuzk
z4JcYB4wI~4pc+^uwN?ujRx6@Q?3X)JtuwIRz%~Qh4Qw#5(SU2fGoTqr7<{f183RcJ
zDFX*PMhpXKaZ)$%$V|obUzq~p<smXD?4EbI*R}zN{W=)o0A6nE*i7Xc$Qt-=rrK;E
zFmNs%D)Xp+ljvMlD=|xLF|d_uc9vrIi8~DJq-6t-8rWsvegh90c*wwR0}mM3BNKGl
z0!N-kIB|Oour3GiVeytDQ)`ymC-Xu%r|dD&eB8hjLa6zqf&B*9ou>_O%APG-@D!K8
zEXCAomU>2tSjwq?jzdBF2EH-yyn#ao-ZgO2z+nR~7<j|LF#|6ec*(%423|ApvNUl-
zkmJK>dBwoAS&E6?zRtx}z33>{pajh2E(|&tIWGEdalsmRQ#hxX`r0hsCaT_HuXA%s
z;e%xg-ZSvNfzJ(m!3ARALj#{mEtZ}#@QK)G#g7bp%%Kw_^n?-1x%*5s4~sw4|I*->
zAB#>K_)6rL1Ndv<92VC4mXm0pn2F*h&Kmp-2hMTpHt>UiA7!9^=St`5U<j2d_)VJl
z#lWuyK9eT&YDFaM?}b^a-fZ=U1S;EQ-~Tf3H!X0LNpt@Qo)_d4-#%OY%Vj=WF@P^}
z3}>rLQnYq<IFd{e^M7%kX96b5nYhwK2{T+Bhi9u&Cay5U2q`JJU22s!QN|3T<>T3E
z-oZ#&6LjzQ*{ZyW3MQ^LQQ1UA(Wk?eOk8Dxt&=lm7!Q}*y*xGS>@_B;nV9EbzJux}
zYM3Z%qnwSJCayJchlQ3Ft}{`~gk!=rQQJfv6MgBSiMl50nP_VA@i$y=;sz5pnrL8R
zNT=vkb5wm3`EwK#vp1Qz*$fYvZ>3O3ff*i3H{>fIOf(V+OJhRX%u(bW{*K)uSrTR&
z3vXiLvXGi__RB<T6KzZsnP_gJrHNK1KByXNVM3X>&BTa*W8amG{(3HUJNv@ny(UKf
zP@jV9uZfYjTo<A8ohB$Gq2_=&s;!CkCOVjCXJYOg)yB*_U%RNIiMvenG||gMCll5j
z)y>2M_Z4*(ez%D(Lb{rGdycxt#M5*BcRq(%{`c-~q6a;fGd$nVQN2wRo2zQiRri|c
zBb?dGrSG<h^)u1mghu<7V*^YKG%?%6920{~3^p;Goub0V2#+tAhM3`j&rrc(f_&&^
z;>O5GlQ;H9#+n!<!qFziaFphTM<q;M=BjZVe-jg^W?~wn#l$2NlTA!9G1WxpUvK6o
zQ2Cc&#fLZZe<t7VwX$qJE6y-6)5Q6=BeTr#@drxQG>P#;3~#lHy<H<Vmw{wror(1(
z=9~Dhe&I@nw}}P97Yb6ih;@Z8$w`))SeE0<O{~cA`{t_ECe|?6=Bl+O#?4i%zVG%z
zlBL2o<TN)5Id*TJK3DCTs}d%XCQ>GzL4nDsG4bqNmF7wjLT;FNXRad2h)(f&$~N)+
zT=mw$!pD0QvX*DUH*v{C#6s3YVB!T6FPhk7Vl%^|UExlX??%8@6AVSh=jG_#W@0<X
ze6rdhLKa;v-DTo_6T3O5CZ1w=nAl@tuZhP@JZ|FWNsS&f@vw<~CLW@sbs;5vszm>+
z5`F91X!UvO5fhJ^AW2PVM0|n+QX#sZ12s?GGEY5e;_i8B+&snX=6UKF_R++vyvS?f
zz&v%p#QXEqK@-ohiE`14!wPOG7p0_IrRZ<-)FG3<l7)v&l%KC|n6F+k@v@1p7-kQ~
zHm)i<!cj7D!o({yXyP>!ubX(2om!w;%~wZFykX)P`#WDPnXlaW>cD*U)_ir`#2@oj
z*#+t?E~N!(@B;NVLwA9ixj?;Z;-raBO?+nJJvwIMLuMDK!~(VUNdArm>H{une%*3`
zIwkUt1gY?`kWU0xO^AJN;^G3;b)ovw#24Jb7OKVz!><!g9Uh;yP@OjMHFrqq#cw8G
zV1;i?d~4!6M*D*?zR-ZZBRMPC?*)Gl{88{H!Jke1B7~a13P~<he+aoKme1u%|1|Me
zj{hy>AHnk`{uT0HuJnSC?qiBB`%uh6aSPQg)Uc3e0T!;dP}xEW3)>f}cNeNs7Ot?u
zL+O%&&n*n!Q&-wT84G1Cl(SHQ`h#LjS6V19I^+j?#;Ep>U_}cgS6QeerA@aqWzo6z
zu__jbRRwulBl$H}cz<Ix3oIh3Y2jK6H(9uu`@e-+7H+h{eX_QNOIH<?{3m|Bg*w9P
z3f2>35p{?+Sg3E|`-Q6Z(Fi3C=<^~)^6AM)zJ-Psnpucjh+5%mA_~~bB1O{3LQHtu
zMQZtp!doodYN4?OW}8}=w@5V+K6sI$gxOhF78Y74ve3eUvS2P!%`JSjNL^Z_9$BPb
z6C>KOBAU9*0`Ydinu}E{i_Z>YLIx8vXl<d5#Sd6xGmX=+5{>4vEeq`|w71Z~LPrb3
zEDX1BmxWFi`dR32p|gd%Ep)YT4?D6roR=;Zx-C|t7pp~!RX0|w8NW})oJHM*^svxV
zNH4+Of_((3bFYxTf_x!iMr;nSFwnwa3qv@+*TtV&td1{MgGA?RQ8>R?4Ye@7SV4s)
z>ZT=XgoTk7rdvo<kKevTjj}LSN=I85BejMtQFE6lZHXFZVaF0RUT}gSvlE3(vM@O(
znIdGW;55Ofm#7&QW?GnKVYY=i7QU<*e`|?iiw|5ICo=oZ5;fn#0uDlt=+GX~g%%cB
zNLol)SZra5g>@FzTUcsgnT1srR&!n~tgynj-SWg2&rR{9-%3tL@$lsm#5JOMVM+J~
zT^6mi`11BVk_{Gav+^|d*8=r7(sJ$%8<m!-wyX2_D&w>T-GXbuqkRU6g^cyTmt9zN
z?2p1(R~0o}s@Sw`!C@qn3t#Eb(JcrGH-8I(6`r7DqPO&oZ>Zp37wT`J9WDwBzggJE
zHEZEX3;Q`r43ZMjk3Wb%Zegc|T@0k9>V6BmEj+*pTB;tbRKT>y0`XxBdxbnG_>f?=
z*73_a`z$<S;ZYIN$YVLeQrdsQ0&&4o^^}FDEqrL<l!a$3JZs@~3r8&+u<)FPmn^)@
zg=XP-`hT(TFgKhTac`-5e5pEQ;e?PEEWBvp^imaB#&3VCHp|oz3$IxGjJ0}|-C3rl
zEmIqpseQ}T*UQvv7Qb4nu34_$uyD-6n^d##-uPI-a&?@GV!0Z*T;19${<ej8EWB&s
zBnN*&Y{7D6EmtSl-{tD)a`m3YuQ#gqEqow#&o5V3uTZzHP#spNkt@_k>>4B13V#kh
zvG6I^HQi(ItWck^qJ_s-sLw5a)ml;Ftx#{SP+v0IXT-l<p}w|o#=<uizO^u5W-PK&
zRbQ!YU8(L`sfMgn!+OP=j4wLN-N^#U4;Fr6PgnB0Me0Wj>6PmKmFi~;zgYNWrTT59
zDzi$}U8R1v@CUbo4DQO{oP|HRS7%T;gTE~NZJ}far84-(!g)sK&#@~q_}9XJocdMj
z0=K4Bs`n~2d6inbN?qhQuTqz!h^3JXie*AIrs6{KGJud0Ir%5lU!|(AR;4q1qrNJW
z3HRrxe~xupt;%LlPO@WGt1B~nqq{0ESt?Y>pkj_+C8SaYPh4ohqAD3w&G0?Xs!ayh
zWKb=G#u+rppt`8l$)K)~8X43Sa;+dMUMHkh2DOD`SBGC)V5*nFO&Q#r!Sy1)L9o8y
zje-pXsmUt&IUdWPVU9<IG!lGlwJH#DORn@*A+N1gO@%D}tHm7|G!q`rpioGWpb~5@
z*doJseTN?2CfVBsi?8{g&n+`(C6YS@sn%LZ`8BF-2JJFvpW(}~Ro_ibJ7oB-=CBs|
zv^A=es0|V1E4(^qaCZh>GU%ECv-b+#BiK!l!tNRL5Z+U;S5DrWmWB6wx{zv2eKWZ4
zvP7`I-~hpaf`bGH3sV1w(v61Z{2wM{cm^Ycj1(LtI9hOw;8;O+XPl7ng0wR!gUJ~@
zn88CCOvzws28%LSoWZmVre`oKgV`Bednk{8^=D-8*vUeYnL;Rh@K}pE8N8PlJ#wtY
z+zjSr@MxLn;xf_s460U<1sU*S`a;3=YZN&zLodl-cP88?mu9dmgXI~l$Y4hXJ2P0B
z!3PDgjTvY{Rtc`oV2zNq8LZ1-z3~29V$@{Xz@YslB#8`?8DujEGDwMzEtnS61&s_$
zAyx(%AzO$3&rXwF%^Z=qf}Wr+NaJj7lkjbVn+3NBZWW}?*R5I*w`Xv<)~-x=v)}!K
z|93y${yupRNZ)s@QF}7sLCW3?N|Y!#v_?Ig!9I>;2JdI^2!}C)H!?WJan9iJ3=U;*
zID>lUqff}J?Wfur^<;)GC{{&hqEBV;G_7UuYz7B2c%GZmT2*(gI*`G08QgZRg<7i)
z{aDz0t+M7|>RPoyN_VYQFNn2QGkB2=tyM2&@Nx!6GJIF3dL@H}|Fxj-_qFP(b?V78
z(bqC~or`@P-<PNcty4!C80(a|PK`*#A6lo5GyGEVH#2xk$lDp55b};7i|#8Ie^>ZP
z!8fF0_uFF($PY63FoRPWe3ZfO8T`RP%it5PVn$8|pJwn`2480IRR*6^vQ9PRgHhZq
z*Q?s=m0BNWPiOFT2H!B8zAt2!*lWEylYvtvPX28M6V|JZ>lOL;8T`P}Td#i2;KvLu
zZfWsT20v%`9;eXGFWj1{#+bHrjUN;V`EP8xOZ<&4@pBpcnZX6t;{Kn(-`tD3#Q){~
zpW$nT6w`UpWR<>e7q#si|Bn-~LFI2yRJ)Wx#13EXQN~6w8^vwD(?gZE`TiM|XNQeK
z`0x#?gv}SHs4E0Z3YHS2(A=O{i^^<~c%_Z<Hn!W?VTX6`RIt(0MlTx`ZCquel8viv
zG_}#pMr9jSY}B)Hy^X3iuHkte8`s*nuX6m24Qg{HR?X&#tXOrMFV;{s1TSq+*V(9L
zqplr(v8Xm{ZB%sx`3fC!rr5^tLq$hUx46MZefGje)JCK2MK{`LVB;pK*nXoLv{4=S
zqLArk8~HX!*b1?cjgn^zZ=v%xVm99`pf+w)1vVd|4+*o!&NpjpgLr0SK@*!N{9`0>
z8-+I7+Gt0KjpjC5*|^h23mb|?E;VaOh3^Y*voU{k!5ubkm+bQ!6@`?Pv0@)?4BrdX
zdsIPd8ymka`gNmfV}se(jTo`LjSe=t*yw7bqm8?4+->8zGew=GJ9lcTvyC#Es;?=I
z*nJwGja4kY$3{0Bk80t7*qZ8YqlXO=Hbi7!h`nv}u`!2XVB=mJeQk`lF@dvS^Wji6
z$i`qBd@WBu!Ty2+1P9uDo>3J`gzw}TB5sV386PS*%*JpbEWOT*jkGaJbVl14D`bpd
ztwiV>(>Te-#o9!vI8AVpjmbGXQ-n+v>@J$qh0m}tQ^+hEvxQ8T()9^7j{|NaX(MH0
z0VCGN8d0EEi)<{jam&BW$QO%niH)T~_DJ>RQo6#%N*k+$uNGvLmlJCFr~(ptzShP%
z8|!UskS<W7aRzhzjC3$z<D!tX4V?pP#5_Cvkd`6M*)~iYGhQ#G#Ili*qN+*7tdsNB
z74qq^h;JinhwrcoY-|xizDdYt!DupkIn`FqQLeOIQth;{iwo011qb)r*lpvajrVLk
zU}KMsS8Tj$W3L_l0zPHqX&d{mD|pbxLqZ<5u}{b&f=@7_gghqrxQ#Ifi>N=OY2lM1
zA>YrPMA9=hp5+YoEV}r6_;Hg1HeO}~u8cir<DiWzuZ;~zs^=NWHV!fHs>BZ4e85D#
zAo!vnvoEoUq#~ih5mBRs*SHqmjE~l1Be%s~w{g_Q8+Le))^Qtea(S|qBE>ZN!#LAh
zHr}yu!p7U8L;3E%3aQMm#w<;$cSV_>k9nUXX5(KQ|H)8%XyaQO-`P0DMLn?SBO4#v
z_{8R;7HVUyf=_Ke^`N%ZD)@}kU8~@8!7l`v{nEx)Ieyy4*TT=_B;U|mF>>~vJdXKU
z8{gab!N!j^{<QIzjh}4%Y~xoOzuDm@b-qlhf0ODL;Utw)>USIGxP_+FA0njAt*KB>
zQrayb{%zwQ8|UrtFqWxZ?K}!ec+7ag#uW}qI=INVtzLA=M#Kp}!Bfl$+sboL+zCgr
zt5~BP4oZjug(Fj{loQ5DSttC!Vrdo?6qa$YD5aRl%Q?8xK_;d4rPR_6MLdyG(ZN*?
z+B@jrppt{D9TYgY#X)5URUF*p;ARI^9bDt!S_juTsK%534lbk=@64>>VC`3hHL2ez
z`dUhnpH8W**}_`l1Kp_SptgfLG?i9$DNL)W>F~#>Wm;YD;06cl(rQ~;)pu~Cg9B;B
zA5CHd;ru<#clh?yNJ9rvN3IC;h}GTFlx8P)i#Bq=?*YXGPo~wa4jMaX;XpZfyhZUQ
z4vHK!mqBRipqYcXgF=V5Z}C1i#YUm4!gpHmIGx)I6W;@Kn}gdOv~<wQ!I%mK9KAan
z-VzzRPFGEIRdq+vtX+k7I=qudwRX_P;r%eGtrLFVhlJS9;Vmd3>FD4t2NNAka?r^^
zX9xWq3}8hET^#gc6*J;YEa>WlCknbd;UnAkIOyi^hLG_7AKqd3=P$7y4thEu;lL7m
zJLu!!Ue3F&?xS2+-AhLMIv{?;S`KdvP&XRt4nqxeFo^y;7)ygr!C=8r4u&`w>R_0I
z;SNU7!#@fO<i4qqM)<)gW=D!9$!G_Q4V5ue#|<sUIpEvsju>iY?ZV%C6^wT<!2!u5
zh9XXOFvY=a2Xh=ubui7r3<onEOn1Qb%hM^m`IDEEc(s?Gd79<mGb21F^X0Z!*H-bl
z4ljhM%4XO)*CV^Rz`;UJpNHE#ETRt%?r_o4#S#Zg*}=2<`7V|@Snl9+2VXc?;b5hM
zXB<51U=;^H^dH+DtYJ(#FdbNoE(hx!Y;>S8giLk2sWvd4TSl1@Z6gT>Ne8+EgW+*!
z^u@LjVoG>gFxxhoY8&Zgs?PKBSd?K9a@HJV#fT&53AzsUFOQXI6-~8^(0Cxi#irWq
zU=u^dR7^{x-7OBbvUjGU8gYk%os3uqPdM1c&ELU84j$$JiUsQI5%K`LR;Pejro9dx
zbP%)&IdPwZM?~jQLH6sZc45(DlBNITPdYf`hvX>{?sq^n_Gqaed0HgR+eHsJc+SB)
z4o*1yei@#3@QQ<19UO9S*uhJp_KF{Qfk7zTkS@?Bd;PKlXGQD?Tlp@Zl54gVz9u?H
z9lXIEqiytc2WMMH*ZYxU4vtIFTMpjjJo=GcVuv_pX~EkvO?C4NY2;l8Cmnpi2o(MI
zILqxK@6$<Bz34|co76caMI@g(_=thAJod3jK5_7tC=fr(>8x)X`O?8x4obTy<Knb~
zuem=s_=RrgbiQ}+je~C``yGAG$vKSgw~Kz!Hu8gmA7%7@;+V+To;DSS<yQy4F{HUM
zN|oQaNFDs;;19{3%h}l@;qkYFe;l0WI&Brb`fy}M%jiF*`d4(yT4BE~a^G_R7bRRo
zToiM|pe^o#T_B+|tdb`}W@}mM3Ku0^l*&oyC*?RC;VhGsby3bmZ5MT1T<M~`s8x4S
z!9_(ESG%YzlB)zO2{yJAo48!Pib$%ts4C<dm#4l%Cod!Yui>Jmi)&q6e`gqYQ&+^U
z6U|yKmbMNhm$9ykdem{@NGMW%gNqwQle~VecjOI3coR|5(DtE`hAyHm8o7wMXyzjB
zqQFI8OWo?Cv5Q+=%!|h+Tk7z_f+j9c6f4hC4_m6K%Zo=v7fKWn3tfCzvZ#d%<)X;t
zc}UgV<*7gQpQVVmxu}n#P8oH(%d=ZNt)y6m23xtf)5RnglU=lS(Z<DK7ehD*F50>1
z>f#<3?OpJSFjEH?!!nAbql>#-EXb%%F1iRI@9g4k;Z{a5%S6p?F1owu?_z+99xi&i
z=;PvEj&|v2FBf|=s<#;LaYgh<Mlt(IM)eiRJ!K17{XQ4{ath22ba6hzgUZlyUa9CH
z7sOL7BSYz!i_tE|h-A2nkuF9_#SwzMxxKO-+Gk?jn62pcSQq15d{!##8q;_e6I@Ib
z{V5`3-6<}nx;V*kb}`MxbQfD(Y;`fi#Z2zlE|$Bz-7YfA#cUUI-0*}Xf9B@8Fem5p
zw_pJ$j{5IJndS@84@MVqphicT7P(j~e2L)FoV>=6*a{abX~c!)hBvM8-0vzkeCN_?
z7i(M|g{ieJHV7eKCuF@Ke|9O^=t7fhLNMuuKgTKIEKR%6bKDRz&{i22wu?<}c$UU-
z;R*@ZYg>7&?jq}At*w~d%+`hMw|Q_HK6d)~(W1>Rj@#<h#<6WKw!3)V#UU3vT<mo5
zjEiSo?Bd|Kc*Mn{E_S>8bF22cc+kbd4DXxepFp+84Ns1dJpOaxb&h(-#lu|Mbz}Qn
z{<l#*97Q3ECOYad7mvGmf}?k10kcoK@YXkEdfLT);ZF&Ue=ii0uW{4?T64l@0Ke%{
z_?(M_bjeX~IqHm~NDjMr!NnUcj=6Zz#Y-+;3D=<d&rwxe)v0XsWfw<WkT9L95`Cm^
z{8bmPxp+NXAZoO$j<Rcg<4lWPbzElZ^Cm?MhBvtq!=Y1eQ|RJ^iyAfJ2VC{88(yp8
zbs{3u30J-E;seH#i=ViVU7T|9g^Mp;e8h=xc?WOg6AoRq0{(;I&(N!Uc>hfPr;J{P
ztE)a2Eas_eJ@pkge-~%C_Fa6<&BRk3+lSvL<sTmYHT~9w@l50_|9I?)9a~cH9W}2n
zpr3pN;`c6o;A-6yWeVRR>Eag`7hGI)@vDp9T>S0g9~Zy7m_I9ePD1?;?lwQg?yXoz
z{8IwvFF}6JVE>FpTnOj63_ZnvO8>g}kL&%NXjd=18}PY@i!O1}J+$z`cq`_G-%rnY
z;kUetd&pzfLkSNtkM|$o3J)bcM5;8bB5I{PR1m@{rG=CcEGt;f<BLE;YfR-m99Yos
zGOy_2Dv?*pm0s<ka*hWhQPsmWlC9?9dJi{vsP3VLNNRehozuM5!*#-I<s_wtMC%Bz
zD_AclU*xI!!t-;I8-+9wyh-q8!Ahk<CmRZndT1nslHnWkZt-xdhsGk=5=0*w6Q*Tj
zL;WTqY%17HFfLf=p-2dInhUvYc0+C;`MVq5?%@s(zj*l7LrV{>JZ$i=(Zih{{^554
zJapi&cZjt1z?-_;cxdb4hxU<nUU)xwLhjJ+=;1C8Q#?%d(8)t*4?{c*^>DX`E*^S&
z=;NWQhkHEq@X*skH%|@(1bO(tgPOzg3Vl9B^{^K{OV!KcZJZ&w*F#?q13V1$aGw_*
z67qPkp9fxl<e%;3Rbu_U@CcEbgS_x?Y3}ERgFPJg!ds-s`FVn29{8ZvC=a7O4EHd?
z3%}p`_ERlJdf~wo6ZgO|9)9%HI1l4JjAdv2@VNc~uV8|BIN8JctBNKHui>jn3;;j;
z>cOTPiip!ZO!u(B!$J?`M#N@#nB`%%@R=U0@u6^zhq)f+d#GDA#%yyt!Zgq0Nx29m
zOpl(7P`-#G>|uq6#ZsM;B|?^ZSeBC%_-dtxRUX!QSSP~OVwM(YXHAZ??)n_R+=}KQ
z;o)-+UwBA*NO^eP!y!(h2i?Oi5BGa8JeVFfd)VZwR=%=4c<i-@49C_(m8Aua2bVMA
ztHIlgRxFH9@fC%|O2xBY_=^zG$eJ*_$-^2y{81oo@vzmyHqM=|wsUHHwRl?*`3?^|
zJ$&seN|;D?dw9UZ)0{64dpzv*@R*0k8LMUD4|;gW!^0jf_=;Jkee@@*9uZ{r(Hx<W
z*(W^gmx_(D>PZjnL`eBlA{>}i&vFIzh#la>W!3eg{`Y44=R|l=(8{XA9$pAz32%CM
z(Zfp~j(Vs%w%}zCM?AbH{O2mMS3JBboJB+K%_IJ>G{o0M_;6N{zv1CnPUk;f8}jhB
zhxa{vAi{S9-xWN;Q2C^YRZdFwJ;D1wETrT^52rkQDiUTt^6-i9k39^#H;<ki&MFcX
zeU{VlmgRlv;VTc{c{uCgw1;=Q7JTdBubQ#1g`W}pMzBe*0+yc2DwclFHSQrlP;CSC
zqZfX^K1@P>^6+Oi{E$6Ug+Tr0;dc)weZ1%64-e-!dOjNa_|pr|kX-4bypO*;{LRh8
z!+8;w^6{^biykg{_|L<jKwaR%36vJ7itS?&AI1Ez`V~Hk``8&MNH)*M56>3y7i3bq
zSP35o1NB}I-Wga@N=f+eX=&kQ1k3vPHBjY*KixJwu~5NBMIUv2)bnwbk4iq*GHUv`
z+DBzSycg&iA60w=L-WY1`gpZxjD)G)dvRhlAJs)ICBkccl-{Ij`Kaxq)+TkGkD^VA
z5^56bNNG2bT<_xsA5p1W-^YzU@`X3>aTA?+FV4G?m~QrAeqKZ}Zj&O?PD39{HmS@e
z)yPLosuZw0KBldXKP(MV=jbNY#79#fi+n8h(acBOM-Lx8{qUb>p^x@HI?y*C%{iEl
zh5tZW_)tD>^D(+v(d|Bd+8qAef3Zp3Ayvp*3Tfrz&YYyRk2b>F<|OTWoZl2)`R(ZA
zE+5@|?5iK|<fAjkbF=E|<8B}P?iJIRI`J;T`CTVw?-Bk`gLu2TjiQ@XcONs0spcxy
z%SUe?Q`tKoeSF;OV~P)Be^FmrZqR6=k4aMTJ|FEitA0NE`xqe33=|yUV~~%*!iV@6
z>SLJj8u#Q4r>ozEzyAEU!@m|hwKCGjC@CH7V~mfn|DWbKALB(hL68;MQ+{!5vX95_
z3p+(l$<RwJn)Pc`yKy*x(|ydKOPke9AG4%ZnWhEI&K6FEIX>q4nCD}@_|u|s?A7n`
z7x-A{^YdGUjh2Vk)V^;OTjFD>&kYm%eJt~_+=uJK^RdFmN*_rdDIcqRtoE_q#|CQN
z8eQXKt&eq_%7Q3*#HMdn6q0m~ML#_i*(f>*ADWMin^pUufO!9A_2Oog_M!X8_^>(D
zqQ;7r5Hk#n&`zl>Au?URML9lBoQlx$!e&w5N7lzSAKSTPeEw=+s}E<3+RSbqE!^T`
zLZi@!j$72wEo%N2MNb~vqINI{eLUb}kB?nGj%`u&c{hhhII~`}u&uLO)LtJ~Yz>=!
z+()Sv(Fc7z#D&u+%JeWpLii&&$)iFZ6FmEB<cVBg>Tgv~F>JV&eZ1!586VI3c+tm8
zJ`VVJ&c`7ihq;-E{`0w7owlmc(llFtL4?6p#ZE2Ts$TYS#K$W>p4zI~Y$;-=sKYV&
zXse=QulqRa<82@BNUb*n-(=T({`Q44_19KaaohjK^DQ4Y3qRrGT^U#^wB4pSXlGAF
zzCT*{zK;*Mjbu?Kiw}LA;?C*gKOZ0Y_}IrcKE9=emeEgqo>sz_!ao)K%*W?KUe29)
z_)4;03!WC_Ig>LvLL=Y#ILjIL@v{hdmV?6Yh5z8=M<M6s?8-0PSACrG`N72KZ$5sf
zW9_4Va4=29!;s<IRP%OGN@i?Re{%B|wZ9qjGg|z^-E5m;E%Ni+>$WM93;zH9nU~1o
zqK`}55|2kBSrpHP@?wI&m=W?k;kb-v^N$w`SM(K<Eh$(^P}>wKo5l5?7M9PVLKfw+
z;MvzJvv}c^qK{rFB38`esw`?}Q74N^SzMh(&1`s%x3XZhEUF8sl10@lc5PET%f+t|
z3CV$Nss_z&56=dFxJ{kgrmoH6Iw`G{ML&_>v|Zh~UDXxgjaf9vq8|Opg2Hz3q8qZ9
zwO!ShY+5vL%Hn2z`7w)zS#+rpqYjPl-L78SuA*5KWI@s>i_f+zrkG?&dUuMS+pZdC
z(IkuR_oK)CXqrW{EXr?1g{_EZQON8T#J8X*i{@EO-;5cX!yCq0WKm@ks&0bH;<hYq
z&*F|O_62w(Kugx@n}0^I6+O(Nbv8U}@ex~}8*3x-wpsq6Li;Q_(3315ON@2Q;;t+b
zStPUQltpK@mBoxK?q+wg7@5T=PC*v;WN~j6eZ@#OG22sk_bhq{sjx$>&F1&YqBona
z9ib<EI40}!Z`cvuy?h^sH;chp3=!r2Sq#WxpztQ&<_{8bXW#sqlk$%*4$qAY70IwH
zhG)@shbov^)OTtqAHngTm`^fzhZ-$96SA0?MTwpHW3m{V#W)epsudY8#CG%P1NA3m
zF-0WglZ9-Y8e^I&d|DPKX2$OE@@LY17Avw?nZ@iZ=47!ni$Cf{=4LT33!{2uQ5N&F
z_@P^Tfm9qfE5G=F_(I|Iu)*3Q+FzW-*HdCkvY>rtmvLGb#D3@#U!KKFcIeEiEN-bD
zS(C+D(OI1{wJwYGSsYtkq-C)oi*wZ@iF%RC{%;f=7O{HS+L2Ti=`40<@jw<j9m~Sc
zA}cy(7Iqd+76)eLTO!E_(r4D~Jt*#G;fdt3<^ReR1zBv$Vrv%LL|%GI*vjTCwn+B$
zfN*5$kBV>4f<-$-NSiykzJ%W|*zV=X;DKQid$QP@#r`aw%HqK+9+GHzJd1}#jS7zn
z*_Xv5LP~azUvBX+4$HDw#~$$~Sa(Y7$(;U-2lAiJ;u*=lkj1m?nvCS(ES}5aAa{WA
zvFABiJ5;SD`Alr$P_FK>MX^RTBOLY@StW~?MSdiUR~Yj<)Dt_@t0K8P1)*=Ni(b#-
zXclj9BC>clXXkhpZ)Wk9WOwWhn|M2mcO=`eP9C#NC$cD6HXJ&plUcl%#ry2h>@WsC
z$l3WYi&Mf!jS0u<V_BP@2y&5rN|MFNp7GBGzYzRV@GC(Uo#s-S8~a+aB;Rm_&W(SY
z#dlep6+Uo!jFRserCI!##ZOr*55j%m=PZ8Vh7+J^fM2utEsJXdTo>SXMmRkWP%6N=
zEDsQHN$k+bUs?Q<#d*p8Eyy+gFZ;DaUC83s9f~^tG2Yz#@l#?KMS(+IXK^eNpjd$7
z0rCPMK#2fvAIdM^s*oYaDo;#~7u%_>2pIoi_QplA(gDf@xGF%U0A+))N96-l5K>O?
z$^e{M$}38igxPk(Ldn$uDhH?<;F<u(@6V@AuEZ+L?hM^ysurMnfEodYj)+&^oj*Js
z)?%s|glmMPR)E?88U~1p@j5}ca_b4NE6D8i0d5FTKfsOR$;|;8<UF}42zL+KA#yj!
z&&d}b%5M}P7T}fuw~CNGDxmVX7`qd;yClDHfS-rP4-ASwIg3YRXcizIpih8%0~7`*
z3eX`y#{kU(v<RRA+$ODaHYs8CTX(A41GEZor%dr3f-M7d+Nr3+)H*;r)_o|iO@OwX
zk$FWFax1tvHQrv7nH{lH-Nh;adIabx!p;Hi4$y`E%r2UnZ9$!`0lMY%?-4S4U_Mj#
z0GIlP4Kei+IVYuez{APNik;zl>>J>|08;`?4bU$@{{SP|_W%O|3=A-YlOnYS1sE)3
z&ypBTHJTp#X=mOrkuW=4h_h3T$VqApkB<&8CcwA=;{%Khu;k7r&AZ2`Tz+PV69Vk$
z8J`$nQULnNiC(-bZ}p(~WU;^zpw6@a(*rCBurR=k05b#3=TOgx&0>`Rb2<JMir+sq
z#vPIoHHQ(hJ{&spbpE^mcTEgO^2o9xZ(2we1y~k<oBU#W5@4x>#I!|W5!1d!F-9iI
ziU2DEtO~F?zyksH1X#mW5Wo%K1y~ngeSmZTU7Xw?m=N3;Kohc0W;V$oofZyMN@D)I
zB{74g0qg)y04qQyz=!?9J~Htq^@!9O=0=#UIz2XXX3P(e4X`=D7OsNwd6zW<X<}1=
zU~y=CYk+Ok=@;J}U^~Y%z%Ef>(fHH(JB4$*X7>I7U+q-Icd2>lutol4><w_mtk^>V
z9uDvz9dko@?OkD5uGt$lr*^4F13V^1DsIB#0iFnOCcrlVo(!-*z^7aSee<6R@N|GT
z1H2^@`b>Zq0=yXDS-KtIIZj-UIGZ~Z@RUNxnVt{A-_XnQ!vVjW5aX(UNvypR;MD*x
z3qQg!uNVGNNp6e0CKB>DguEW$XijqPE_E!&k8}Ai2>0`OwIXi^csIaFDSC&~ozt1K
zi)S|Qeh~gDeImjS1V7@8<aACk%%+8QKF&$BU21pL(3#Hyd>-J70K0doQS~AmHwwSx
z@QUW?oc`AV&&r1S-v;=Oo9Cu*hd&$O`v89h_?w}ao2lQ0{21UTZZ*Px;r^d1wX|?9
zev|AwGCO|=KPUL7ptn2J`G;HjCKTU<^CJ8=z<)w61c*rM7bSb?|50__(NYvo_sP2i
zNdh7{gMd5x_7Qg<uSJrINHzc}k~2sW6cNNoMiB#w;-uZ3*`1js=bUrSIU^uRP()Gr
z?zF%6$9GPjI=8E<tE;Q4duL~QdL;c>syaTzk0PdY6?vr$F;wJMkw<1%4)Z6-9w$9t
zPU)i(aH17ZQBcL4aao)=|5~Du3ev(V&RK!SBxc3=JpWTgF%^%iey9{zF{-NXlczq+
z;-8C>DoUxaRU}lDR#8Sp7ZqJqlvPnq#S1E0s3@=U<_~JAsI8)+ib^V;R8d_;WffIa
zR8{?#4U5<!V2h@<=wgd%k~6k&ko+1dYN}9F1XVnxVszuQk(87IW6B51m-J=I6bNRh
znEbepLn<;=%&QulW{a@}g9LR{)K$??#WO1EsUS0=@-`IetC&zG7*@e{$s}%|B3s4N
zQn^qOv&F_zzD_o@#ufx@y^)H>Dw?Qhs^XX}ezOIwV)bS!o>lRjisw~4@t9wW%mN8f
zEg_mqg#%xT5I>y|FREy%qJxT#Dq5*%t)jh(msqPpu#Jj#Dqcwl;<j{PF~5Tu6@oho
z2j5DFmsS5!+N+YjqGEZINVJ&$WG&Vtt&@t^RCHGHri#~9e3}qHB*YsMP^NP6AXTxO
zRJ%AK_9R3%72Q>QrQ&N9Jyi5m@xF>NDtf8t&G9N39Im2|ioPn|QZZOXKNbC@qXw$D
zo)80MkJ6KZI6g3A5UV6by`=A=A@oM!V7sIks^W5a-w(r7eBV4m&OhaYZ>t!gVx)?9
z7)2`HlX^ZV6?|94fTUnz-A|K(W9@reR{W7n6(4YXRZLMaPUY=Be8R4&_(;W)r1)6H
zFS6;qNdZT^)HL#$it#EYs+gqWVpf(vxKb5CMaLiOh$A{y2@*_IF-^sE6<@0Ooc8FE
zFW6;A5VUsu?tJEmA00uHX0R>E+2@FFRD7#KRiUYvsp2~oKdP9`CRE&T#4Hs*NGGt@
zY@%t^;46*O1{Mo4K37%`=5@tSDr&gC8M+FC<K>E&ibk$5RqS~$oxygwP%ujG74nBH
zuELTs!(7243MW-KoVFSYX>e6|DsHK`ts=#VtYW*09V+H>3aD74Vy%k#Di$zWRIK3o
zPq(;YG5exo!&@1PXmiOR-|E#}u~fw}YT&!Q#e*miT<VIURe~#3>~qB`734fKJcABl
zTCL*G!a?Wx$T}74Rczs4skrKj4JtOO*d)g;&GWrS<z;F`HmfM<iF%%B?TKx&iOWsW
z*iau&>{PK!#VHl1RqST>RUA@rSjAqpt75;30~~ItYC_{Q)e}oSvGz!I$%4Uy>|<#^
zx{jzgs^Ykc6P%AKX#5{Vd_J3QS}nLo);%d3{kvs^rDs%}RdIy|bCpwZUd1K4TEzuv
zcJ7q8D0}ydCy1-2#Lv=24O2pCn)X=HARE2Lc$306WYKkMEBimE4XYl!DT~-TZTMBi
z9Tg8%q-nUT;x}sM!Y+;Zonz57@&{FU;+`DqyH5u1bMB{nzvU_ye4yfQ760%S#Hy@S
zm4daiv+`64vJ3yJFe?Sw5FPl4hFlu*XvnJ}UGp8nl&^6Z8ggs?P!3Cp$tmAs`7}JL
zA-{$Vts?Q1U}#Yxg_$j&VPF{_6xQ&Vh7KA!YAB+isD>;J4Kx(fc(WSSHPp~hT*DI@
z%4#U5p@fE#8V;pIX$|x_eYH9zN@@NO5b%xiG8FIxT~S^`1r1d+RFzg$)KE!7Wes)9
z`;o?q|BctplqfVuRMYUJ<_AA<jX8c%!#Sd+hNm>t(okE&%X36PLr_D8=C2ZphVbAF
z_9diY*c_3mVM3MQggHW;BbLq)d*_HcY)C_WiqZHA!Fn1V&JiW%3i{{r91+p{U~WHG
z&<S<s3i=^igV4}i!wVXo*3eKxQw_~Da1@@=&`3jL*$YmegEPXSc(92yqyJn%S1_cX
z)p+k6&(oPj{TN^eNtr&HD_UrHQA0Zo?KQO2&`Lua4F#K|u_BFWt>HUq)x5cWuiHws
zyXT5-*Roz>uQj});mTZ*K2LD;De$Tkp!e9*P8wd*&__dG4X<l>Lqm5BJv82F$D7jH
zmh%Md=_0M_s`-<e+0yewHx2dX`D4^m7WJDadTCf&EXYz0L2nIQ1U{Z8`f2E|VX%fF
z457C&2FO4fq+v$!;6M#uKIVthTarl!(yK!?{4kG)G=_&s_i9Vihs*e!H&3w2NDc2W
zXm#Y%@veqZ8dhsqqv1UbqcxZsq8i@UFh;{vjd$ZQR>KEu`cQbhhH)CU%@ZGL_(;Ra
zd1BHJ^*-i!WraSI^b<+_b0^sDkM#)h_01-opkbnhNwW0LJTXPXWDNw<pNUW{6J<Wv
z@P&r&HO$g5T}sZ7^vfKb&z1~*rQvH0-$>3(PLTQHTMY%~i)!-)HSip;?-*v;A>to2
z{HQ_Iph@A`8h+A1I`jwMDyG}dM08p7^pEvQN{+!*qHi`Wk7<Z=)aWq{mIhn%53}NS
zri6whgJiz&H2*|0M+34#pUf9+=L?rp=0>=`G$SR|y7R?64f8cD(y*8#)hBy_ti{vM
zcy`%B22746OEfIiuuRsXZ)w}Ox{>7?R%lo$nX5STeM5igx&E_!?R>FT!#WLTHJsD1
zp5xAl(y(8{Mh%-Z?AEYH!)6UzG;G(fLn_&-;n;k!P2#T4rV~@!PMO^$DYL(Kj|}S_
zx-(zoSs?aumFSiAUyIBh;JP#*^Dvhe4F@$;Tp$ifI_cT;Mg2oZxl%0<r!<^qD;kb#
zcxiz+A({VaILTFRfuPUN(5hj6({$Pg3k30b4Hq=r<07WvqJ~TK5@Un@)bO*08`8Eb
z8lTbE`$fZb39d?djRV>sL_W3gG&zRH(%#uOrTi@oGZ*;Bm)+KoS|A=d6uztBHw_#t
z4%wy!;&(17hr(BSg*cAP-e<UKNYn9%j=wZK;2NdzX+=Gb``;S=<vQOW^p6aK6AJ{H
zJm8L;XJ*&qc;(Wuv|lK<?r(TYmzY`TXwol4kVp3?4#)bp1!6=j^r(&sI%+%}&ab0@
zj)J<s@v^9nVmb=x{!U${!n*&&<S`vZB&XVQK{6lLQC#xN>Ucs&2_2<$l$M;5l5Tx2
zjhjnZk%<pM%19<Lx2KlN!R003rq+tmhDtgr>!_lmst!d*P)9W#PqIh{O|7ou!VBqn
z7K%$Rq|@N}*TV%{q}QYd9q(KZlM|3iN-q={Izl??=%_2JWJ+2~Qi|1<+MbqG>g6yC
zv`A+YEQ;{vzm7i}Wj@f+fIif5MaNYgLdVlOzSJ>8M?)RY=;)`Tzm7&a8tdq&qZ2)>
zqp6OTI$G&yrsG*1Ep%?7%zRGA2dA>1*HLSszxki%TXF|Za~&_}cy6Kpx(DftY~o&o
zxbs5MT1OilujqJHM_V23biAbFWvQyYj>F$)az8xZ0ikAUYjrA{`*wIdGPlhSTPQlP
z-CW_--}~F?U(@lrjvhLC>Ucv(XC2*iaOcmPI=bj6J29QRak@&ie4B=?Q{jInBy`vP
z?MAe-m+rqs!qkUiIrx)>{uced^o%?kVStW-I!5bwU&kQgCqi%O7%VlgJ418~<p6PE
z*D+^H8e1QxW4MmDDIoQ*J0m0>DJeTb{wST--q<Y#7A^E&0=kgpJ8F!Mu{y@<m_V26
z7^mYS9UtqsBpv&q?!V5kad()KpGZG^s^c@=KVxB0#q@s{`kRz^J_CC?QO6`5Q*}&}
zcHSExN-PqS88BalrbwzR5}!+L+(1QFe4%5y%)Z;ee;I-2$9|>bYaMHKtkdz0j&F6u
zbyzxP>iCX2b<E~e(lJZN4~((#{+l~I=YdUgm(+i*=HU-N>CklOI#fCO>&K^a;0$S!
zsUs@ED83f)aVVy9t4}5Y2dMEPVe3ffSfFDe`8pgODY{pOtNRCKd$J;9gT~X^ylc{_
zWUh{RI_5J_7x_WRPVrbFI)w4INXKF>6grm4;bW~O?A@%)kFo`~nJw3`LdQxSt8{+@
z*w96SmhiQ&)iQEu55r@P49h0>BOJ~3j1wJ4bR5;OQRfk|d|-{;IyURrqGJa~WRcja
zW1AeH?QHk`Fo%p?qjI{43aNi5O`0B}<Q^S+bsW$!atin1XYQlN7K#1RPWF_TwW#5s
zjziK#hjlDk<Zm`3J*MNhjx##W>Np`47MYNKlJjm>CjER$$7$&<w#Y0Ubxy~5#uB6A
z<In}!#6_u-UgFf)F4bPv@w4t9_rU>WE3qlK#yO?qx{ez<niop%G7N{N_#t;w$1NSX
zC#T)fx!uK&{M#}VS?gChK!rcTT^+ya_+7_6uJeqOMdA-xM43N1r;cacmy{NgLwR~>
z?eVm~b^N3A6=OWqk=H;z18D{xF_7CpgSF|o4CGxbKxY5UbORL^i~5Vj_=aL(tw`I&
zB9Gzk>*%vs%&it8c+^0C0|g9F;KRkDpe!Z7kb#+t#hk@r_hNB=u_$7osDY<q2*gm#
zz~ctuQCLwFH}HgkT@RHaQIs%H(!gaCKbt6Jpfn$<nkZtTjDfNSW*PXwKsf{D4ZLZf
zi-8KX%|Jr~&lsp=pt6BX1GNlPF;JCl83-7tX5dK!)eY33l444vsPbU37}!ARv@TrJ
zz=FI=jU}Q)rcz{yPz(eOWEcoh=MoVOD@VpCyj8XMVW6j?oU_6k#woQ8)G-h-kY%8*
zfqDk&^RchNyF&_<UumvfZlZMfHPHJ>rBVas{`^n_1K9?Ifu{|=Eft<$M!8x<*_=;#
zv#pXSraaeLiQEe`GSJvSYXfZzG%?WBKyw2x7-(kTSp&}*c;3L;Or>E3<<B>i$lbt$
zJj%t~%BW|R20w*c7<kb@O9QRwt2E`^ddh%K%3FC9=UQNBEI88)@BTZ`)<8Q0uNvrJ
zpuK^Y47_aM6;`<yc)Nx2Sr=u%{XnM|l*V0xk91K=)KNMb=w#qE1FsvHKR-0#apl5m
zO1=_Gxq-og`IR>eP<dziwxjPH(yj)&85nEe0|VU+^e`~Qz)%A{4fHb5-@pI^y*aEK
z()!W~2F@x<A4W^>VCECbA2$O7izvIAD-C-o0}Tu^@RotW9D)y&_PLd*w*tBE27c-o
ze0hl|(?x0eATZ3pa0Ble7-isX10xKKH1H1lej_mU-@yD)O25pEc8@EC)0L+yDm`9N
z-ZL=T!21TqP;(w-<F!DeG-Xn+;EhU3!*WW!>w!T_#5e;V8klC_a|0h4_}IV%0}~B=
zV&GE)pV3r0@Xx^R+{(vG#PmVRm)8SUK-pVV=~YUZWMHy^DF&t*_-={#{2k?VJ|&(C
zeSbHQzp;{9BKEdWzA!M|z&8fIHSnc@83w*G@HH*(s8pO2>iSn8^-ti+vr6QCU~7{w
z!pcmlGT<ud-y3)|l<{_X<+Z+wQ72=3nsR$U@J9o)4ID9W)WA;$R0GQmtT3P%&<%J7
zQU(kIrUA=<Z6InO#<^yoQO)#^$|xs4P`>W0bbD6WwM49GrX&m`IiPHg5t3KAutZ!b
ztn5uwv=K_vp26L<mAnm<IR@q$SY%)^<D4PESz}-!18IcvTw!Hkm*C})^6l!-J3SN>
z@m;#a;4U33V=(_77~4|06;|$d48B@a`Eq@z(d)`e1FH;dH?YINY6EKwY&5Wm5pH0e
zf%OJ97+||wV&V2T1B|p;k1GTEE0rrN75)lrHn7FORs-AU&r*ufUa>Njqs0`ppYqod
z(U}{~ehTj7Vq##Qf&G-c71(WHkAb~hWR{AjODoCz%A&`WjsFBLJ)#^iaL~XZ1Bba}
zHC47&R_?V^&U_ynQdjw=UvPO)(W@xO3>-Ib&%hrBP8c|8;EI8(22L3`ZQ#6t3kJ>@
z$W>f9Yv3GXJ6kdS2-F^`oGGK6?WA~(l#2!~G58JqY=Bd~P7~$VClq#YQW0g%uYo6r
z1PcxiUNi8Ef!hXtHE`X)4Ffj~+@h1)DVM7%muo9E)`gv40$&aZ=DQzQ)JM5v;I4t+
z4E#<vJ`9AGip<VR;SZJ5!-F>-Q`Y?+u-hv44g6^!-2_bhW#EB<hg{E1{B7VL1OIYT
zTnjW?Dt@l6ycSVTUJEcwCp==}n~b!#BT6n4jPs_y`25^Wl-wrrn8<IUfQh^&ILhQx
zPd*b@hA2#rN+v-;6NOB?{70a$={G^;q<m$7_LmJSMNJeV-^3UbkDDlNqLqo(CY~@+
z!bBYtbxoAy;%}mwi6>2z=HhRnf{BVI%9<!=qP&TrOT}wT#oB417j6goC&G;f`g6IG
ziOMFbn5b&vWI%appt7K%LXZ7jK`A}VkK_e&!_`gHFrk<Tny6`V8yEs62K*U#@J+bi
z+;F+Of%7$$2}{N4kxGV%kcnC*YMWS;TX`x&VOyCdNXwT{Zq`@yrDD$V(DJ3Co{9P<
znwV&6B5WdJ;u#Z-Ok|m8VB%>L4LJnY0@)@w++#ZU?+XaY8UAbF6njx$nRX}8>u#Vi
zonVJQ7s~HT#l;(eslNuAnRwR3^Cp^`cx;(qFh56owD7UM!HqSP7fiG;@uG>ACI*#L
zsJZGg!RY$BhO(!+!u62MHYVDd=xL&tiFPL1o9JxfO%pG1fJ}5U@tTQOOuTBMgNcr^
zcU|i!MFuFDU4vZ)DaG3=*~<hCew{8&g?3j^-e4Fk4p%Lw<hm31N>REnNbUu?ndok!
zD?MLM;j|((dMQ2VkcWYCe+G&_474ev^fu9l17~8GiM}TKndnc?o5=MyFC;=@MDXrE
zfq^t^nWz#{hOkExGy9f_!8w@gBn{)LGTg-5CPtcghvE8<zkYuChBAVe3fv1=UwPNW
zC=>6Q7;VDrq39vy*gt`CQ2NXXvoFzC6`C~G#0MN%6N^oZGr2(yvrYVD;v*9uo0!gi
znfS!SrzR$wm}25H6XQ)xG%?9U@2|rBmWc`M#WK;LmO}aw{ogN$LBW?AC{s;LGx52J
zFDU$Nc=-rratnq0L_?*g7QFCxVA6xY3=?0O_|C-lCcb7DOnhr%CY|#j@KQcy<I2#n
z+8L}8PlS0b@!{;?EE88B1b#5_BVExzX<k4XyG)RCsF}hlstL_R!bH-9Zo)7TGZAOs
z*_YaBQ93h_b~qZIwItlFxw5vQVwt%6Tfn9b%LJ>(g)${8lRxf`3D?A26Z1@XCQ>GN
zJy0&&zv`$O50lQ}OblgA3oG+E6SI{CCKhu3_6=_OEY!Pi@bedyp2d|los}gfmYUdY
zVvmVsCYGDnWMZ?46(&}47MNIT!dWI(nOM!(%gE^dhQjJQmI>l@Cf1wSU}7Ufv}5qv
zuYrsf3g61%8aSh#a^hwG@@b2SttNIdm_Jaqnb>Y(hlxt}13#2eI@MK{^$GHtq0k=z
za(0>E&veJZ{$jh=#6A<pO`I^X-^2kE2TdH}u=Z23A6H)IuU=8*u!$okj+!{eiCk3K
z)ZhPgJNlSkeSA-)W3M2uKu(%CW#XKP^IYhD51ck}#>82UW(9>abj{2lrygg)nrQd}
z2V!RUqKQi!mvrT=#>%|jL0&RdZR4;1S2(679&kZ6am~apChnQ|gTuE!c-_P;6SpP4
zVdAEVZOGVnER97sk@2gEI~+l-bvzal8JCucKbHv>{br)za_)`vDYN$}(>IN$7^NLf
z`%|j=i%#q7D>>OW?H|cWi{g<e{x$K?#JX+1@P9N{6zNgqi6U<li2m=b$^VLSNAaId
z>d6;H;hfS(CCD#nfhY>*@C!+Bp?2so2_{Mdibhc^ipP2JALX`8yc@+6y!eme$tbEv
zQ8J2BQB;bea@7A5R62@s%SE{;%0&HJ3jCv2R)Y8bh?JKCl&KI!MTz-eiP<VtEB`51
zm6G+B`?n^lMg9MSEtiWLQPhm0b`*7@cq)ny??p1A2t^T~*%Q(g$q7ozKWHpv-OMOz
zMg6-X<n&%HZmrB-GZ1y7s29acQM?>Q{V2jwyb$&8jYOizlEyqMX@e-9ksw=AA?eeS
zHk6bGPyZslk;IK9ZIZ)pDnT<z`3L;D9RBlBG?)0l{<6^)QM?#MOKCu>DB4QUTGBR>
zQs#{xeDm7LY<o$0H03K%yc)%DsjWj49itc|okpuVNoKDoUX$Q;N#BT~vjlHS+FjBv
zl6IA}ThzY?!s<*tB&TN-0|xs;**l6plG9hx0a5gmfJObI{{P(nY7LakhvU<keM{oO
zQ4En_Xpa1_D8Bl_7kFE8Mo2nR()knownj<(WfU`_crS|4QM@0;m?%Dt;<G5m%F=Pm
z#V1jG@E?}+LrFi9luAC9fTKf6#@_fSCPXnsGMSwi1&t(Nnk1bznE|}U=S-C{(<J>|
zQfm7mis=&n*VC_}_&SOoSW(vfCW`N)m=(phGCNbo@OL?NS;fl|3}8khU%~rsxtJ}B
z)Tn<~=cg!+pGe~^1uY6)@{K4=3I20qRO+N*u_!#*7n>D}hc-vCC5i-b6i(ECEp%fP
zn+PZtMJkH*%f(8`pCj?yDCR}M_eSS)Hc7A`iiHwTlKe#yACq`V6icI6CM&Xt0?VUV
zA+tA@3uaeQ_^HV1DAq)=Hi}#;#Clns!s{g1a3Hurg3>E|<(Vr)^A-M=FS@M|Tcg~e
zjeod&MX^1K9Z{T(;#?Fvqu3S2fhZ0}u{(-AQS6KQXVi>ZA!e-*dujFxu_RBpSf23y
zC~9Pc_O9?hKXfRH!}MVkC!*+HDzvRs=tvaTR)|Mdilba4SBhhj^6P;oqlgAWr=mD5
z1!^gw(kr<|9GNS9J*>#=`6w<#aVLtqQCy7TQWQ6$xEaOeD1PR=qlT5@N)%$Hcx9!y
z8pU^|Ld3&Yifd6!mdsTv#q}si$)r8L@+fZ8$d!Ty|H|b^@xOL-Yo+*&{)ys#6o1On
zdt9_vi9ckQDNLCPtHebm^j8#rb6Hp=X66Y$h$13Ezg52ehf$=(P%?&6F+37Ot{C#h
zkS~Vx7!bpnpR>NSBDrJ!yL(J|Vi;mZ2KCAOWR-v9*P}7ykKwTxip2ag&<e!-1KA44
z5M3n-#!x7RtB;16Dn1&%^-XByD*u?TqA@%kLvbltEQW)t#En(r(beLK7)r!Iz*K3q
z$d;gV3}s@d5<}G(%EnMGhKey%ilKZAJll;&uD!Ba@Km=7G5>70)8`{YSBuIqyiqEm
zuNK6USBq-W@*Ar~^%$OvVd-k|&%^rrSNq1-kT%q0f7gi0YlIR*FoxITcq5LC7(y}h
zjG<QynK9Igp<WF2sVe5b*TC}x-r+$&F<t}s=gicVAosSca14<c+QrbG-iV<=49#PB
zA%^T2L<~)0Xd1)QF-)>Tjbi9jEX>p}hG)oJBVJk~`mPa;W$Cyzf-=owXk08z@O+GW
z>3z)foD}$v|MeQtB8C@ZXicl6LJBjrjG>hj8!W3+*jgjnN)Aie&`UAA97ER_y2bEH
z46nw}A%>1IP;8adNwH2byhi7*6>rLlug7qEjp!`#8!;T07E&ztT0xmEG1OTrTC5e_
zrNHR5qDKrp*8065rUAWU=o3THIEuy5H->(Us~FbC&_9L&G0ckLhZqLNFeruzF-(l%
ztr!N!@IegY7;iCukK7nZhsH20hT#&AmXt+r$M|r^ml-MPJ30J!W87Qr^WT&7i?#pT
zTl>Dua(~)b3AlrI(5Uc-F?<xmCoz1=fi9T!aSVqW*S&H%K%8O+Uk`j1!+1L6-4HQ%
zNOG$i@g%8XY7En2m>k2D7}mcQzPBsugHfT>$k698ZdS+Fl!;-}S}~oW`%dVq7`}|*
z+*-jjLxP1#f3M&JY2LRnd{5yILo=mjZm0h)2b8<)?{fb!hS@R9i(!5YKgFOj@?Q%(
zF=!0bu~`-)uv0*f!HA*oI={ar1=fkEqy#Yu;tZQHS*_RkuXxxoBxJ3mq;v(DZVVoW
zV4aw_PNZU(6T{pX%ynYbIzj5IT_?s34KIjcQ4EV?*!xa+p``TK63#Md^XeFu#r(H0
zj<aG6%Ne4>LQE?pSScyJ)a#9Kl~+S|rP_6LAgjdidkh<5*vLqW;RGGR`5wao4*jrD
zvrB<3F>H@vM+{qIV3uhc1L++f?2KWTWbTh)cTOn{-Xrl|N%!UO%dYqP!deGoIK&Z;
zafdvP#qiv;K#?I?<2!_p#!z>?za5&i;joZ+KXfvNQyeu;d4|e}tkWEbCgC%jfa^v5
z{{EKQv$F4_x$`rIi!}aSe<S6kn7^y`=NPWUa9Ltzvqxl+UX|I~F<i^x|02P4NpHk(
zQ-WJLrS_~eM#Zmm^3c$o8172IfMNIV#qb9g?Koen!TlKij3F(KN8;c%<G*6~H|D?p
z^8LiD2hzg7WB6=b=pRWr3J)cd?=lQtFZkL>t~h>LFP5(t9Ix~^j}Zt=STFL#kvEP4
zam0rB+dDu0D0K3@tbB1i8ppoN0pk2|@NFOh8dETiLU9z1`&)>q|FJmsuNOrmB^W+A
z>+v{>$NfvSP#jOhQ6i4Yaa4(O|36B_{Y(Awaok-mO2<(qj<Rud`@?@mx$Jlvi<rvA
z(OaGmP$BL=R3fKh9F=569>BtE)i|ofQ8SLG;wZR56p%*;JQ+vzIBH0-vZFKqJDWW~
zRkJdKlF5n+E!p5-?`6m)+U*YWvN<!3T5<opm)fLpw1}gQ%+`&gUL5r$ZWzZiafIWD
z$ZS>|*%CC6nt8Mfs|$&rmVDYt4pXBznn@0EV`|tSn#9rc|I0iZ$8)mo^KmqfqvZy_
zB9s0g(rtria3uU9nQ^p=!>*e3avZP3(K?Pc9J@Gp1>0VFshy;B7kfndlFUBwhyO+9
zS0(NgM+XTyO8VXg|LGX@za~eDm``>($1y98AK1H+p*Q2`5=U2#P8{9i_&APF;^+}a
z&p6(WV?-Ri=)*V$#qm}geYp6?F@J;T&!}J@2W67>W6Vgfb%PkdRyK%%l0z^!j?){&
zusF2dSwrF&8V5gAcXVLp?G1u-IOBYyAl`5@JTi`V;ussp2XVX`$EY|)$MHVHW}|pd
z+F9pNc=4c2X2-<w;6}K~t#H$gf}r+B!TllQ;`lI*Yd8H52r^5_kK)+bGmASbK8@qE
zIKGPG>o~^8F(Hm=aeN-fMA^zD#!{cGFMDQjtITAHnVllR)HphA6wD6ZD87i}%Q$Al
zK|Ebj?l7Tp+Uf7N*(kn=`<rdPli6=2W!GlLL1Sk3&HkPa-{^1i;I@z-<Cx7bv(U)G
zPjRSm9FF4%T@;5N$GSMy$6>@_#xaksjw8z18iyB0Dvo#@7Q-Ws1Ow?<@Xd~)io1jJ
zHi~@R)A;F}WE?zv#*y?{FXD3eb_EHxtxTU2$K1I8d7b@-vc%5d$zEyeH;M&uER17S
z9INA4Bx@~+V`&_VC8nwmcLtZmv0P?j9YQN8e>6z`(T!rI#8gPm8mW10PP@Nv6ooel
zifxEvV;p<Aw#2b1j?HoG;Gjt1EsT>mwn<!TlbF#dL{&`NC1=Ni$gVhcOT34nXlGMf
z<EEJnHU|rw4ZieE+Wt7$<%3dyMF$x3o5b#Y!9#I=6e;c9P9fjOIF50-vyjii@i<Pz
zafi!M94F&A6~`4WstnFJ&ctypr@v>VTAEQzc9TlZ$N74N@70TvUdoZYEWyulWI4V=
zSmm1J{2IqEaa@;%-5^IYZ^|rXZpATVlOR~REI4>}I=jHSzs2!;9RJ4gPzuxjdvW|B
ztK5&{FUkB<W>2h4XI)l#Aen#1@s9-G?C_aPX%=!>zO|27{#X+fv9rHOWv5FfEaa9T
zkECp!)gQHx-$EG+Wi1r2eD6JOp}2*D5*Lz^g{8K~B&FIS5)`#iOoA!0M^8w}k`_uy
zP(so+&9W$8TH-xRf{E?^5SO!1-a;)4wJlVzP|-qF3)L)CvOsy-{LHdoWr?du`k#^~
zEmXIl$QCJ6LxQKI=9(7Ln))M7<pIebHYYnMi^$Bd5X!-s7JfVByQPkWx)z>hY;;en
zXQ93nXdr1=(ku%R%bz}P?h2B!%725EElY)khI1oiHk4V)u<6DYnpoIrVV8xb7MfWY
zZ()LkXDvKup|^!T7M{1z+(JhSoh-ayp@oIE7TQ^O(ZbL3vszhbZK0*a%$l3TicMnl
zi<y%LXScDCSvI3WqpbEE7Ynai=s^9CWV~!4RZYBNp?!s{!ud0fZW4Dli9(x&vRRD0
z5qW;Ic+JA=7P?vJZejYQ(B_tzZ&>JTq046RCaHz47W6_Hqc)3A`(=-9m3et;=&Q|Q
zY_E(S7J6}X@{1vbGI~;f-;7~BGg6zyj?JR4g?<*^rhhE-r?ssz2U{3oVSt5!7EV<T
z4Wb7IWWU9(wa)zTt?Y}NMU4U3LoE!mFq~t(Br<7GHjSw<ESvV+ER~TxF*MS`I~+R;
zA6j_V!YB)4ER41Ao`umC-na0?7V+n1vAAFM&;7FRt;;$$K19x@@u3gs;Vq);77>!!
z`jbN+S@^`lrxrf8@I%dv_WiTT{LDhUQfThf5Igwo`Yd*KqQ(Dla4fhMCR><7VGBQ6
zm}+5~g|97qW8rfPUs#yIaJ?CsZsAJ~Xz7eGTf|$FL#1y=nDX9;e8q}e#L_K-GT&O5
zX`xEx&@2nzu@@~fzqhb&i)e8>!af#VlSO>DQs~AOF`J9O1=B**!lPS-%28loY!%hE
z3XLw>Dw=E+{rhDb7G~d$e0n<)qx}|ai*G04_{7l0iXn^ME}JoIt6*S!u~qz3H6v|9
zR?<S=X5o)EW_b(@3u`T`voOcPTnmdVEVeMu!h8#{JCTKq#=k-fES&o+eb=!p;^f*a
zYpY=3EwQlF!b%IPEG)CI+`<aF;<w=ZLH>B9-H!a8p1E>h_LenSt1aA|6k5YzUX#V4
zSu-S?j%7Hlx3Iy&RyuZYHiv1Wg-sSV(|}(i!|p`3F!FCl)@~KY+219RD-%N7ENr*%
z`&LnKo7iEYNHuY+Qiyc7g*{x0Y!tGwm!7n6ms8lnehUX^xrOr<4q7;5;iQG4Wit+2
zI70teI3dGqO{LIL3&$)>ER;d37}fEGSv1=koIR*?#?%{;Qx;BJI3w$xl~XMLl+aV#
z#JvI8i^^tPuyE1BFBYydybEPqvT&KvZsEzE8Bg@eXxcLKiiN8du34x#EA+&Z8JvLq
z%80SIBF(mm8}y8YUoG6RaEmi;o4CymE{^=RA&Zph?3ygb55sB1HZfzH_}#)i3+Xms
z;|~k>E&Ofa9}9nSu9XpgF-o_I_>IV&n~?_=zV96B%@_T)iONr9{L9tP#v?W!%HX7`
zQERgD49MQJP2{pc%8xa04(7J;{=n?C?INFzJT`XEPRncK<7uI@Ei*4|6OY=+Z==zq
z5GP9k8>Bs3W!~266}IshPe`y)-$oG|MQv2IQO!m%8;{#4YonZv;x?aqV(aX*Qa0Wi
zoLzRiC}E?djk?>#yeT1u{gz3g(l*N2cx_UM({@mWtl9mu%iCzZT~xGD$wmd+j|WZ`
zR;g@b?SSl>8?&m|=(}Bfye@0Zfb17v%zV;DbsLI}pp6<fYTA573!nDQVBkGvgOfVf
zoyc?Fhl;Pu;vz<VhK-PoS~hCi$h0xHbBGbH+=?(goEqx4F{_RZ(z-UrZx;lK?PAY%
z5w;Pr(agrPHnP~?HCa#FXlSE>jcgm`C;IDW=CqKIm~;6VI?eVMmZmlu+c-Ehy9p&H
zhOTZGT;e!QIAvJ+X64XxHlDZ9(nc#A&27A3gK_wx4bI#aHqxtSj9Q;{^q(NJxvFLS
zTrH!ujW#yg+1QXraI&{$VC)dTP7E<JIgVV1Ywi#)+jxb&@X+7Gt2R0?a+0{8L`NH)
zY-~<oO9HRic-_W_Ha@cPhK<fPrY{K%vhk(_110SuX;(?RN!ne~9+FbNr;T0`_s-$;
z;ppVxeiHPzF+c)7U1Alc>~@)N*%)kNNRH$P8$%^-gN$J|hO>{zV0zm|(;b3fq>XnZ
z^IaRGb4o|qcu(T^x0x^J&UinEKgPybi9g8UjI;5w)bp{8Pi&mDaf(4=<1-seZ7kzh
z+n8X(vyrkf(Z(bjKiK%u#$+2)Y<#^#d}m{-jcGP!a=yHm{W%B7#ta)@(f`*1)9KZG
z%9l2J?+~HE!RPBJxyma>r{LE%)-{ZLYlHY3N%>ejZFca&{P6ob{M+5%+n8nhH|J}A
zkWI=DNw+@ZUsTMt@skZzDo@x*ayC5-Xf|}oVT*<Yrle7uuOIqm#3i*PW!9E}Fa7b1
zCWpPg8aTE?DBZGLwzxyA-y!BO{%tI_QJ`e{JSl8n4J@)TpEJEm)&d&~CAhsq<l8Ae
zZ5OPxQ)KP*&lq3A>Ch?gY@N_@8!K$=;<{mDrHxfwSm+8HtJ&G^{-xIj8*4aoxe9d(
ztdn#-$8=QaiIx7Hu`XQ$8yV!w)A))?#`|gCjP}po+`>h}#x|}4JH>VzJ8b;*nL^ym
z4NYDaA>C=?;@EWJJzV^49Jg_TGyQ5{pN-kmLe#Kxg|gqq0UHEN2PHTp>0wEaNP5)f
zTbcip>ATbaNG@HppmnffA?37<Gd6l8&@+LvHqOzQ1llBU-o^zRzuEYmHrTji<5xO!
zbNI52pKaW<am&UP8&_>yxAE-^W$X3OH5&yFD*O3f&-KtRHpcA~1P`|=H*9>jQxM#m
zn7yngZnN&h?D;$W!|m_T13Sg}o#L*IKP9*)N9Vrm<{w;UcZnv&!~8_WpLC9m2R8oZ
zvX($*0{__f*G9zzDkbpHMq0uTj8X|al0dEm3MEija?%sXCjlhQ{U7G}KMCZO`00lJ
zhL%Sq&M#?!9GQX%a32UunI22v@f?1U1d2*rEQg~{PAi^+pOBzL0wpC_Gt@t+o~g9V
zmPw$j1mz?xFKGoyDKovTQaK0Lkf4gBRTHQt!IL?q)f0GSvVXc!P04vm(txB&j!ZCt
z42gGF@q1A#f!YbQN`QOb>LgG%fkp{5mICz>XdprToVwuzA~`rKfti7HYGBHiOp(CT
zIi(E~ct+xGqyFcsCNlfHq)iiOmLvJB1kXuYexq-E^8{Xy*%mo6FDB4Z;?^a6ZQQZb
zd89I<aavpUH-T4aRi{9^1g5miYM;PM5)5sX^|AzWgW(PdbWGsAU83r*p-x=<6aLej
zt_eI@EaUYAj|8dLIe|A4P<9Do_g40s33QSCX1m0jl1ce)vR3y5X2c@Q_DY~PJ&?e6
z3G_*zZvyWpFeZV13G`23Xad6$7?8lg1O_M2{Ex_u+u4H>cq@TVb_wDo{DR*uF>99?
zB1<Vy>$k}81l~?y6irQF1Vb@bR_}G8cM=#WF?WA)FW<X4{Pq=<ZdVn%OXlbV2o~=W
z`*w-334D-1``u!C0^?|2nb5~<F@X;gxVcMwlt7-{BC$BT!fx?t0=uSVhj)vacH}em
zy+mky0uv;dNWV!y=A;BB=U{$ciJYl2J1v3FbNFB6$b1?Ieo6l%K*01>0$)q~O%CT<
z2`V&8`#ynL2`ouqX#zha@FVg5>|_G76Zk0sU5>R%XYLl7q_f@@#Gmf=DK}3V3783g
zziu=qLShNTCAK8BbNGn_>>++oISIH_zFT+++}JJh>=CI1mhBdE5}2F7Jc@DklXSkM
zUY|5_7E0{@E=aIg(u2E2?-HS939LzAZ34>^SdqZW1Xd+b{Y1F^{cwdnBD_be=Cs-)
znC9*euS;Nk0vGp)^b(<7d&GtWHZgMch>cvPrV6Gp6x$=VG9|E$T~4BZ65A8lkwCd5
z-x<eFju+Rr1pZB6cLIA7c#y!~3G7W^pX}_V1okIzAc2z!oJ!ze0*7P(<k~CF@AJQ5
zeVE}VKW2R-fujlkD<{V!B{-hIi5z@yk2sycnFKCydD$zN&T{3KxZz%Lj=q|nO=ge1
zf?3jwl0$Ggfu9q&lEBpj?k4aXN49b1HM*TAlkXM3NI-mDf*TCT9L_BXZYS_-4(Cn+
z$Ge6oJbkbDJ%K+GxSs&=J&yZcLBRAU-M&|>`XKu+Swv2^&%*4>vKg6uS_KInCXkjy
zz9b$^;t~4up}%zGP9j$l`}d0UB#^}Qr|R+>E<9H}wm&kpS}0Evd6W3KTBzpKG*XWH
zFMCD)Bnl)^Fo~=yk-|wlmIRw9B<W+9Bm8MAl0?ZQN+o$Vmr|6<uLg=G@wf!U#U*$m
zi4qcEpCGf6qy(jtD3c>uHi=eW`@fYHlBk$Oy(H=<Q7MVaNhnDKlc<tJ)ubP&HIrzx
zPgG0d$s}IiCq~}NW_IL0Q9X$oNlf1-nCyLGQPHfYlKvxufTVqogfpmchC=6LCJ|!Y
z+`$H~W|G!oixaZf?Gv?=s3S46b(1);PY{HYh$PWIiI?bvBpM{K=s-r<7lYYJh$Nm)
zq9HG^_lc!lLR2+mO4>6tFX=y6Z<EA=;hBw-Xp%&c{r*#OX31}wM6)EGl`_vs+B}Kp
zCD50pQQ!rMTS)q%q%G+j33`2+-dX~R)!Z){?-y;8AZ?fQS9OAylX!(!`$=?4;?*QN
z$ZihaFL)$or~QJ7;5B+_zbJD+^kHcdZzRz<34T`Q-~EF0%_O=ck=QS~Cb4P1IJaMP
zOJYmyP<KgtNZM1<UXrq?cM`iEL<s605Pg#%)hY)DBr!0FFO!&&#5XSl2PH8iiJ?in
zMNaeJ;G};D_K)ADkuubWB{4jSx0ATJIDM;p4|)WRO!_Zwk4)m7B;HM8R1%*hF+Pd+
zB%eheNH98y_azu3>DZjo9`fb-aWeZM<1>f<F`Lf8pGuIgvj3v=ge0cQ>_kZ?<;YA<
zVoDBfbU;j#`12gj7ZUJ8?bI;*`N&sEe4WIhBo4FJNqn1xlZ2bZ%p|@`!b~EX^l!#~
zpF~Z5MCfW@RuVrjK9iW8#7{}6NxXJI)E}c<ADhXo_*xRxSA_K>493#iK{7Lc^DjA=
z{`xl%OZpe~JpTRjcqE>L#o3WW@^ghL!7#Y*gCPe*GKmQX1c8@CDv5;*U{3#QfjQKf
z^gqv?I3VUGvG0JGm&AN7ywkJ!DJ6bEiOSnd_XC5c%`cW_FG*r4=YA5)+3O^>C9xuj
zl~UVANmnJYP6Fy*oy3|X*2?Vgw&_Fm_`gK!Wp+ajlblTwZ<ch6r2k27mw30N6x+dH
zfgHSx(bCqx`r4DkURo~s2XadH=ae3lod2{PN#bY{*OEK~1jmv%p2USDE^>}1!P^?V
zg1UA<oa9WG=f$0p;IyP?k~o{gKPSO?u9HLk^MYtVi%MDB>SkR^;&Ku{Cy~FVaz!?J
zRnj%VjN;Y(w|lN9aU+ReleohOPx_y2x-C`RqS!%E_MoVDP`n|3p15AwR|9vG_>Duu
zpw<0Tc6WA6U-)i=dooM#XA*xU@rQ%^4jv@&cM@+p=;HVb+CN+s9aMMlZxRoaNOSOr
zgJKRIcaY0Lx`V<F9&-SP2cIgBI^b%M+d&=&c^&^)@_dpKv^?k^NIvMG$nT(lgMtpG
z9TW==iW|$6LK07(s*qE}@q?M&`T3yOdQcRVHW1|hF}*ldIVj<P@kzr<Iw&PendP0C
z(vJU(xSE494$=<!M<17UP|op}_wtffa8S`fSy@D8B?pxypSX&HsuI67(f1Yga64QL
z2Q?iuaFFd_O5@N|4gwAo2VWLRXEx~IrPBVJP4(Gj2O$T<nGWhoP)kyBYCHI15bDTI
z@nqwAl5ghC#iDSIOvK^y9ltsgufc@l|Kv4x&_sf#9W<nQll>pEXB=GoL}?@`vrQc|
zbI{g7I|t7?c+SBK4q7-Elq*>Oka%8#=8}@r@{k~X(LpN*ttGRigYJ?^ej5&f#1wn?
zkZ8}|Ie67U2PtVD68Y1EFFSZ8M_Z5dU`L5xm$Z|E*Cb$FYFl<lyy0NaA<<b<>Ll*!
zpqqn*4i>Rp2R$6T?_i9Bou8-mbTG`pa0k5{TskCrJLuz}uj5DcAcv>opq~SN6Rp3b
z1Oprll=$R~Y-R^L7$P}C9sGGnkVAf<!~X+sI~c)%D-n9v!SCb4BPsK8sQO|5B=C16
z=7Hg(q`-TUj+T`2FXa!7b?^a4-@#M|;~aj21CwQG;rZDgIrzlErw%@L@bqCZ*URpE
zSdjmjgYga~a9+&M<|CW^jj{+RFwwyzDfxvIiyrp>n@@A_xr3wwhjHRyx&zgL#u#%j
z!@+kBzIX7IgRdR@*f8T;2mc&bmY-Bs9v0s?$UGBj`9j9U!(yg`zYdEIsxr&L51a*G
zDziDtUn>ObepG&RaIJP$u_I#4kIGLp{)ix7XV@GOQ3o*x2K%*4F&&INBJ$5xrmR%r
z?C%k=;fSzl##+Uqc}E1ni6bH*g}3U8>%em$j*0~iQk?Hc#assADrJtuC!fzCXC9-P
zvAsqqe^j*E8e-{?6H2?IVzI*$jj-Lp4hKseEOW5R!D<J~9jsuef0wqB!T)=J57~L(
z9_J$uhi4?Laj@3GCI_1x|NQxNbbcVX!SV0XtY<Iw2g&45|3=5ZHaPlx+Q{1eTxQzB
zseL(ntK(lmZIiU$QL)p(E(cc}Ty?OUQOf1Z!AY(sZfLIzyh9H5Ir!+P*ze!~mlRi-
zbyP4NbU;exVFyPTc(c-vIymOwxLiPZf9&;tl@S#}{3H-(==GMtQx48JILlh?l+*M^
z?R37daL&Pbxpw{R-~y*J!`{JV2M^y4uRSV`9Tj(uiUP;PlgGrGfgy2Bppg9Xqk~@<
z!w&8_xbE=8C;uZLzdE=noBlh0#%%|;BxbKW91{yi`Tx1@IC$rnV7lwzH;LQqiZILH
z8Xhu6f!sy1{$vO_*x+KLiw6$=cF@vAD;NK8*>~`a%R{34-}i^UAMl6^zB|cmE*I%8
zo^(;2r7m*2c)~>q7kOOdby3tsF&ER1iF_^!xG3o2Q5X4L#AwN?teFLaJf&*wF_HI~
z%t9_s91~21C3wt5ksQv0W8!faw+3Wn92do1|2VIb$NdAWS{xT8U6gWB(M2T}-HwaW
zF3P$1?zk9pT$FMB%e=BK`pnEEDDR?zi_~$k<+wO=T--k{Dzk|bqN<B(QnHGRQLQ51
zxmksZ1gZb26QaopQNu+|7qwl~alwnRr(7s5f)WQ@ym3MdIw3M#+!-zAjZUlOBINR8
z*#6l^pPUf;o(i7*D6F0kw7jm1dM+Bc$aYcRMcBp76C%sS;uC^S=vg=zaY4HCg#X<l
zoD{;v(=HlH!)lfG&kDOKFDBWMDkp`vB-GeNGZ)XgXySq&;BM;rKhxPK1@UvP|9jWM
zMf;QDd5N1#O6ChLUM-P9@S-fG!1V4JtzEQn@wST*F4}TfUG#I&p8_skVjo>}cJZ<c
z{x^BmMF$C9anbjrAcv`=<h<shlLVhi{_7I|DDj&TcX!dlMHh*?a<C*Aw=a90l-ay9
zyQhoZ94r^TTrkW3n+@9s`_c*RgUp8ar4bxIDQ=w<16&MoG1SFC7lY`i65;nh2|apB
zyyapr1MHNjc1rAOn8hFHVJ?O<in^oODgPe|6RVGuVf?;}F)rS55&b>%uB4+RW%fN6
zqjPXDuQJxf2QDo7(8V|xAG(;~;wu*)x%k+{Bo~wErBmV)7oWKp?_yW0%uikL*(;x&
zjXWhLxIFX>(@qH=Uyt<r#eb?Y#l=(?pS$?N1)t|mbFuc6IGIQAxnBH~IB`ncm=c=q
z;!6%ep^V>8iN{WhyL~ghcJYmiA6?9L@vV!QE?S-zvl#Fkm#Lxj{@LG4z=wvx)BeTJ
z51fEyGx(6J@sRAXn?k(o`H6=0%}`zcSx@iNLZi=53*ChwfhlQJQu1Ri;u7<jBeMw?
zNf%3KunWh9>tcb6g)Tf!D;INJ%ya#RvlJeETFjvjPYXVaY<Vj(pYA&CKQ$(PY+&|N
zEi)G}@>%P&po_@=Iltgz;$@6v7pq*XcCo_6N~VF?znu1;X!F7S9@(QcbQFVgS^7Ha
zT$9B<@)<N~?N*uVx%iwBkFCwx#Q1TM%R{<{Eu29v_PE&VVw>w<!tHReQ-bZ1Ry!kh
zaaNuYgU*QE^!6D+%zF`^oDut6?04}iXSa(3E|1s^opo`}#X%Q`TpV_BgrVi)q>H02
zo*9w3<%~Gap*bUtNjm3@ApZG`IOXEBi!)pjM`Th7#Yj8sOJh-|5t-**TyQaAMCJ`f
z^@z-iE`D}#h4XY@+9em4C6oL!BQmM&s*7JJa7F}2WM1Qp8<9!O((6);`fqY&J}YiX
zYuU<e3AT>N<c|8gE`D?IyNlu!_$GAE#UEVTUHr?X^_$RrN&k}cPcC9ohWrOEUOX%Q
zW*D3m<0Ml(D;_co&I+b9507|0rX(pm<o0}Rl|1C}kk><D5081s=izvdNC6K8Jv`ny
z@~DUWl0)YHvx2mchd<7W0_VgfnJwa>{5esK!XAox{xZ%5aQd6+q{Tgy@-Xn6c*66~
zy)5A&a!!=={IfKfZGTRb_E1I^mGw~0gL+PUcFsT0jG(;CR`5_!3XsDpl|5APP}M^<
z53M}3_VA>K>K?K@H1JTvLro8LJk<5@l!t(akcWwNLrd$16c79?T?YH2^V1hTQ<MB+
z?IW2oTT4>%YkNG*C!3%ijc*g7SlB~-4^+aspSO!NZxe}lAfMT655mLq9-6b3hlU=S
zcxdY384t_OiN+r8)D1O~3LCeNP%X3n>1^g<K-&lfo|USeldbPNC#aT9zu@6T$*I>i
z(!vAj)pMeylvGw`9j_Z|<DspGH$8Om(9T1953hTmZ7+Fv*+VA}XWK?z;lp3q-wx6Y
z+RuulOdVx+*wAZ?f%AeUk@<#)hpi)>J^WQC^u&2V+SNlh4?R8f^3Ywj-a{Hg<+Ss4
zX=-oTZXeklR=KHV_m#>k>)H3)Mh0;7J?xu<{c|wL!&@Huq|i5o!5)Tq@I0hE4D~RK
zL+s%L8q++Dmx9ARyv<sP5HAQvco-@1fbN;(yyM|r52HN1Cz)d;C4aO8?=t|-3ual1
zbezWnA>n#_XEyC44<CE@i9zMz6AzzynC{_A51)A$?_sKkX$(vH+`}Xf{FY^d^J3uI
z2>%()ZXN7!UQG5d#RCBouUh#n%U%yc6!@G9?W`{(C1(cva$bDn;afJ*J@gfIo)=%!
z3Ee{kR6End_mcUY2jje8S|uBr<>3d(r`V4kX6Ilwp?T05;dz1<t9URy#616Nq0~lN
zX<T}g1N0zt^t}Js&A5lZC9pjtBtPlF@lgDNpayn_G;%@o^g`_~h&dkSdf4M(uZMXa
z=6l%g`Ip=aJS_D5EB1|&E@CiySni?61+iGtC6X?crDU$~uu|f69!6gft30gnaH?|_
z@oL(<!Ut<T%(&pYE-C4H4;wtJm$>=sS>$ixB6C4(mUIi35ec?QwJc@P4rv?B+v#DK
z!~v1H+e3Jhf4_8}hy7f>QYezb0S^c1A`jO*9P)6ObKk=i&%YkNpD*)>hoc^jF#=13
zE_k@eh9o{A=}AdXNqSn+Gm=vHtOVygoR^?+GLy_Z7lhK&|LWx>50^c(8JAh`q9Dzj
zqV#XzKP}?Dj$b@n=d|+hz{3sCzZr7N^RN1<UKBUEdR!C)w>|vIdCFc~3f|)a>*214
z-(>c8cA-`#`PZ*!liv5x^`d{l@TZ5}Ya@wtLFVX-z72nS_*ZKFhu*#@+>2t<Me)!>
zS_+S(kShhGkUIswT*lYO(o?whT;^ZZ{nyR%q>wj-+ZRPamX-`1yD0KW@MsG8B`A;r
z-+*Hg({$DUxOt%z3d^FNQ`49&nnJM@o=%}*3Xi8yJcW!DLMc3vLWva0r%)k<RxgL<
z4NNbYLa7u=r%)z^vMH2H;qQyW_@Ke{Co`PSLe+l^@uJ$ld($XbF@;K0d&%!w<rJ!<
zP&I{WDe%$%^~QB!g)$PMXKIJCozMz1^kfRvQ^<Eo)R2^*rUXx=5Xj*uDFh|1KQo&G
znJLstp+O1{UP-T=LY)-qrBFYGx+(1WCT;eb^g7?A@j`vy(g<ldg-8lnDgV-)pFgX4
z$=?W(=gE-%N-&#N70INLB86u!i7AC6&!o^Og|;cQOZm5F8<U^Hb15`Qp(z`ZUvw?j
zDpxbwHYW4K=W9QoLh}?_r0^nBf#3@%TsWAKKW~_rpe0?GLhBUTq;Rvn?;<8n3MQW8
zM6dGg#r7$@ltSke-b~@;6wij`Im~IVrSNJB9a89+LZ=kQ7Y<GNIpgd8nRSYV&acYo
zdP$UCo3Xc5z1LHCBL(`Oe}Op!TH#Qa|6}Sqprk0iub16R&RMc#3A15lmxb+CK@cP(
zpoka{Pzeg61O-t^DnX)>v!Eb4(>>iY)04@FiJV0dCFh*syZ!j}|9t24x#!laSFfsG
zy{hi6>FM_3buapO(btRKY-GvQH|V+-!L0Ac=RLJ3ePYpu{k$mMJmXCURq-^oC$=j6
zGa0G=UJUT!DIcEpVW1a-=+gYIRIdMCyz9jZFTUma@5K-=W_dB&i}$=3N+V|)PGzoG
zc;AZ;yci~~qxVJ#87}d|$5%#r@u3&XW@dfFC|c*D!YD6Bd-1UsW7tP8zVPA`FFy5R
zf)^9LIC3th*vj;ZEj*ujF;+~C6C5vi>aPa0Fn?wG#?cwy-fh<6aL$)rOk#|AF~tk(
zxbn;Q>EEtSudU~#tV!=R!+rK-GwSa;u6*UiG%u!mar(G2!;6_-)HtD#r<_nonw(I+
z_Tn2a=6W&Di=%bYSItc!&JkX?V$=CvEbwCKqpmGzw9t#iUM%tA_{}DZ7&a%A0VkBt
zPAKL2Wzgr@E7F#E!GUAd%e|lz_|K!2Uaa!s55}q&-+A#pTkA#Gi`8DN@xt$g;l&SL
zto7n2FT66oKYDS#t+L>Ry?VU&n#<<}Ke(oOp;P&U5?zu#>N%y|!@S>4*l2R*-pc!=
zj1u%Bz}4eH-u7Cqe@`epLSEcCp}f;xiFgt9;%6=nUc|hJd$Hb&4PGR?NHT^`DC?-O
zB)i;6CH<tr0Bdtn`MaKLqZgYPS|^pQ?CBG(%^a+g3X@wTNkZYAlXe?gT+91KEd1uh
zje4$MIfJg{=_i%nB}qP{xU$2Govh1?|Ge16#h)YY#a~|ha#Gpj#Q`r4dimyI>|=Dj
z=F&<jv#PoFQ~#tg^mW($lgc444s#T|Ag5c(o>IEkaq*yn`&HN9Ui`z^RL6DHi>y;h
z$5YCHQ_3-s9JZQLe%y-_TsghC?8QkhPI+;bu4e3=QciO?PAO-&Vw7<$KBf3yaWP4L
zUL@`B<dI(xeo>G`u6S{kzU7MK#WgRkdvVi?0;iQ5?Aj^i>?!4L$gZ??jr3by+~$&a
zTH&DFd`@|7vXXNr?;d;M#RF+x?rFOt54}k7A)gP-eN^xfb~&x2`2ZjC`%u7#$9<^j
zLqQ)3`A~ZhO8ZdQXTR99sL#HhFXF?1(+UrM=D3&-#eFE@!{?`!ekr*nefE~`veQZ_
zA?2U59}J)y%lJ^%hjKoIPAlboNIRoc@L|Vk<@9N#q7RSxQ00tL$%hVSlzwNF%95m{
zijb;;)dZ{iP(w%-bI&NX*gT*815Hz(eW6mvhx%R9Gko@I>*@;Dqr`_N*my}c5^N|)
z9limN*w_b`NYVw{ZM21%H0Xod2agXM&L~ZM{C1ctn|||Q_8DdL8HGubwP%!E9}b*R
z_MB==wPrr#`RpG86d#`Sfxr8x^y-<0e3c53N5ch;oBPnh2a}#Gm;Q_oEqxf~!*Cy3
ziEm%>p{Ebe`q0{kHX@<JJNfXO@V1Vmoex*fDD4G12zKOPHE2vB^*f7N7s2O!=qjX}
zV0S_4yx_x&!h1Lpy76Tndin64NM3Q|Z~5@553h05<iWhxMc!NR4Z%K+W?v!wIP^mJ
zGY~7{@wN~B9i0I}2Kq2a$UBbwT_J-7htO#)?1un(4E5oCpM4VKChZ44OdfB4wqS%0
zBYl|b!#p28^x-4QeVF3IC?7`qFy4m=K78!M7#}|M;WHojoxbU<Qa+Iw{_JV{owQ?x
zkMm*rqLlsemfDhMm3n8DiHu|)zVP8oA7-|)OEK&p5x$vrl9X!FqH*mOji>tX6?J@=
z<-;`E@nMGKQvcD*Y>6z$<ZK_lmaK26CN>|Lox^UfPhn%&fcZWw@ZozOR{OBfhebXt
z_hE$(i+xz)!%`oXi3JvX)EAOR#!0@FtW`dI=fg^=f;NXqvq>Jce~k}6_~7$F6J?fN
z>%)&e{3QBb5wcTF&nj)t+TR(}MdJ6taN7KTejo`*R0jn^K3G14eTew5o^$+R!wqK}
zMtz9;knkbq!_dZ!CN*tzq-W!OW9_&1aCRhpSjQkQ*NAUZByR9wqYs;;?9V>?DJB}(
z?86q3kZ<*&+Zg+8PTM5+7r|czsr;Le-+lPQk!%;TL-37ujduI6hpU;6LOS;Pu#eMC
z!w3!gIdeHleK_sIK_3qJaKeX^J{+d!cQr0m)qacApFSM%;V&Ql_Te8Nj<Hi#+EI@6
z?38V9ru8~&KfCfTZKkCC=fiP!_MZj}d+pB#6Z_@%T5do7K_gt6`2A>-Gd`U4p}K||
z8qWD}o~xpUavCo9aFNc`kYB?kA1?cF*N1yPT;bIA;f4=4ef(@+?loRS{gHRwXWxsx
zuq1cz;@s%s+!c#+Z~1Whk#KQt`<6}iEzZ5eE-cO^q5gdz-&&6p%`W>uEbw}jM?MWq
zrfRk|W;GkAq-h{Bi_dEn&`?Z6aSa7E6w**w1BE<_3MrzYaR)oeW5YA)B}7<Su%uuq
z!AHu}DI-Z<y6{TAyoO2|Dr=~q*?W2wH9RKdy|c>XvkHHlt)gM^!3I2r=66-q?6Iik
zNQzf*J+7gqhOQdAX{e>4wuVj`I%}w-p)T96Ax}d+4fQp+HFz{Up`n2Wmxgo=>)WO`
z)X<2H*YN#WWznQ2$+OD-v&x0D3P}cCq2aBz=~)_>mH(WrK(#98l#Fvqwq)gM7<Nv{
z(a=Ogt8+>(Iaq`WO*I@4qG(VxJgcF##{YleDGe<&JVXDpFX;-~&|FMSI;Z$Lr4w6f
zcyFp*Q7a8>#?o`Pj{ls}M#FO&uAWocYiO%s>p6u-I}I%L=Q$;>efq$UGCFAJ$k92k
z)IG1L=M{eRwu{F9YNbD~;ob8}_wx$*kac;VlWTZE!z&tI)$pQbpQL(dcuBM0>-B}6
z-c!T$3XNXoym+fI$(5RoT-6%&(lDq;V@h75O=@0H25U&$+qk!eH`xW@Z)oTvWa)XO
zuLg|H>!-mwuTbr64gEC?<S1OQA8y}%UKya_)OjV}1*P%@Wsu0<5v20FVuYGQ=nV}+
zHT1ine8BdMZ}Pr|nR?TQ!}HjHVH!TZU>pDDf-+LWhZ=s;;MMSvhEW=pXjrOYG<7tL
z(=cAc7+M%-Ps7hNd?Nf)7P+8ox?sPUnzt%rH5|TR-@8rFFp(8$n8kTfBI9!nUul@8
z;R_9)-%sc9rG`lwCUaQFrBBf?RYTR18E<XPdz9OHYu<DXGbDFr<))R&XDmym%uh5u
zc|n=2;cL2Uh%!&ZyovU^lpAbm@{LI52+n1QZfQdKd<_dUEM)jG;3bQ~l#5FBi#GCL
zl1*KvVWoyu8kRGn81omEhZEAi)$B{4t{3eWo_xpf=2)C*xQ3%MzRAFg%4+&^LKD7P
zhn(^sBzLWbABBt)p-+RxwMfH74LT!4!wwBQH5eL94ZmslT|+=aP(y-&%0^yPLK;%0
zG>LJ<HH1YHA-SkTg)<t-cV1NDT-Gis#V#pSUdL&uVUvc<8a8Oy$g+)<r!FbSCN*hz
zN$DxLh0(5In}%OF(=RD+T~dD5aIcZ_$t7jZB|FGjgu-7L%rlzMvj37D=YO!xmz3>n
z>Lula%=CM+Q+8?Ct>Iq{|7qBxVJ};CAmwij`?&aPIH=(evo0wIxQt9mnLRsWXXSJz
z53^I374p9{{3-m1;3FaZU+c1Rl%A=a{*Q)ZLMY@x$#D%QxVCeZSe1TK@U-A5!T;oS
z^vpV=;jBnnUbbJYf1WGGxh8yBJ&_xpmo(haa8tu&S^c;GUg0|6@M{{bJDjh8yTwrX
zD*c{@`x<TwzoX%<km@g_@nG%)4G%SYiz!V<if)s9I#PA)n`<9TJ~lb!x87+a(DCxi
zx%qVz5H)fhlo!@fM2A<0Pe)N5#dP%0@sf_>I!frs)zMT(NgbthRM1gTM`_)Dima@T
zayrWB_FV&ys*g4PY;8I}#{JS|r96vYwtv@qOt%BIk&g7P{Hh2l>!_lms*WdgdyN`i
zqER&+b#)vbY+piG*HJ_Cnf17knu4`-)D}`lkeVx2rq$C?Uk6`n+`3w$1DTEZ##EMS
zpksH5Mh$fwuiA+3s^udJjdk!n04_E_2ziE%OyOCAZb6S=wqTARHJb?G=Np>o$kWkL
zM<*SM4pp}wHRl!elRBQ#?Z<)I>3CX4a~-X8JgcJx)dEd(e$H*FV{@(aX9R0B&Ny_j
zvC%N2wT?DAhFn&j<0#Zn2G+~?wpM!I^o+JT7IsY!)y*Kbr_X0K>L5t_<lGJDtfQ-r
zZaTW?;M@Lh-N=1jx8GsTN65PCm~dHnf#aLM@tVsDA75b$UzBzZn1!B{>-bQ|M>=}x
zctytm9Rqc|Dq--tj@~*pURGYy!JlhM-q6uU$J;utTvqz(NbYG`bZ6r?bsV~^^b_oI
ztT82TvDblIlK#B<x}sFSq7Vn^ct^)bvHY%%!MeR4GD4C~uP8%wyhk@)QHJXHrc>@P
z9q;S-fbF@WFv;VyE6Q-mntw&nI^~u<oX6ttOv~fu>L@l($5I{3=smgd{8+~r9qY$r
ze4=Blj&V9-SCmf~16P#K7^`!e{+GY$*(=I;I!DJuPKv8a#jEyB>*qSA>-NoTqpQjn
zI=<9#vS==kNjfGApW;ZS3i(QKn&7d`O=svlXW7MP>6oWuzK+>C+Fn(@7U4I7b97L%
z&sAkEJuj6m5cwh<i-jx{oOV@Nq9dnd6Iv^aTw;+@O*osD>-bj3N*yb7^y{Lmy{c@z
zsvNzltfD7%tkLnEZa<0ly&&b}H?Ar_==hNn>YB1v2Ol`$)Gl#N`AH<ruPHsRDVh$Q
zbJmZte)x45oV+@}n*&ovKu1JJlrgU(q{Gq?)^WPE{e%XCYToT8w+pz2T~iQiTDfwQ
zn2tC-uVaIb1V?0U`Z^uI*2qXQAgAW>n0-x&UQ?cFld@4J2<Pl(9eb`Rn{=GNrleh0
zwn#{975ufQ-PB)bK}SA6QvLW%$M3wJ=OU)tk1YNnE!nMOyN(??c5*tORCY;O79{6E
zvPbHwbY021uI$(C%~;NzgF0GYR}SbnQ@HVK*Of!Eh8$)t-O|6&5gjL-Rpl=oe=}Se
zNZafuS9$y+S;qwb75q=|xQ^wfea(MT$0@dr#zlTl@GK{ej;lJ(N%Fjo3qme(u!NMZ
zWk1V$Svbkt{q6gRYm&UhrPYz&&~Z~ZA7!M%ZAX4b$6evy)U@UIg+CB{=;);Q?S*%7
zFeQz|&rcDdm`L*bQP_{w*OdZ(tS{53pkN`v5!aRJ*OelEY`(7W;8Rk?{W!HFy_6qo
zTBq|Pxh4EKbX_UwxA$buPH%Yix>DMYk>i>ayP=fxqr4yQ`0=hE75u2^M<YKP`|+3`
zmHepcM>VOv?^LC-AG@11sp3c78_IcKQ(iiL*R5%FKWeg6h4dPt_P8K7sM&>De*4{D
zwFOD)u%N^1`B7i^6M_u{8#=jJgVJ4or2FCa!{bM}QBC+(`3%1u6-Q<@%Jd`4kES;i
z^5<_T*?zozL&@_)@gv7?ucA!^Nph*?@MeCDxnW<VseU}kB7XGu<0(I$_M?j*&vQ<3
z|6dyaoF6TOJR``Cv=q`x@L4}vJMuO{n&jF;*;aTvKiWIF9fWlBqmv`)><8bGOJyEi
z{g`w^>ETB=shYKS7xIGOi-LTw@=H>-Cwt*XFX4R!U-9ErKVEYzzaivx!QO&AxAt*z
z8B6_yzv)Qc65<c14De&1AA>j?YLg{56yhUtaE6Ob8tlgqKfd*2r62G4G1QNVetho7
z`{GqzFnqv*^6B<rBwf>o3yu&R>BonDeB{R{KgNk<v>zY)@u?r5Npg(fCxWfBa#`GH
zm^;>w@C}7WmlxAEvprq;F)Z8i1VNGmH|%$&Dfx51@Z(EA_~Noj3>!b@_%Yd!{I55e
z;>T1!zVh3fjWhh1>BltT(*;?U@>#-3X8Y|o!jbU!+EL(wJlAh8(F+9U`SDYql=+OM
zwf5^o7K(6@Aaxe|vBYoxb!e&JGQs77D+H;-+*N*j=g0S)zkd7^vA=tMAS0a@kQZ(!
zeAsf0A2Xh8^n)L3S;WsLksAHv$CRz<1#T+jBwk6T-&Ax41|9e(#{LPz57Up+`!RfI
zZorSAA0Mp8u=NP}VfhgcAQ8aqI;mS{xx#)#{D}Gy^MlFs0OEcmXs2Ma_9l{ktfMmx
zOfs<Ej}3l)iVKe$*yzV5KQ8!jkqe6-Teyb!ahMkT_}P!0e(dsNn;*aU@dwwLT{*w{
zp<Zvm<9D6~xGwF=Id!MOz$^Aa;daU0;YZ7xO0S#B)m=He{n+Ej0S?ejg*tov*yqQ7
zM%w4@{8DO!sEzECcTmcHy5BbVryocB_}7pB{P@d{zv)juj){>XHyRuj&F^n2Y|kUJ
zv`li`j}v~J@#CzYuWG@%o60G=j@`MbT)(N5yrn#9dHq{<!E=6`r^mi@Hy3#i!ApKz
z<_c_}h=D79T=nCD9}oSw=ErqE?)t&nZ%FMo{kX;D_f7*!KDedarnSqq6Yg+;#1!$K
zANQrm<XcLkYj$pmfqVw&y8H%K+)`2vyOA)ECQ0_4LK<W{3m7P9*shL=wL-#o-%^Si
zC}yCdfyWFKH&DVrIRoVllr-!Hlrm6SY|_-3TS^%NWu@S_A#UdO-IYV*6+}Y9x@bT3
zwo=Kk`%=X~RUWsM$_7}RS=9_wH_-lagO6`3?%PU-+e+Wt3Qg5CP|LuJ26`B%ZJ-Vf
z8hFw`T?6$DcnoA4sBhp21L+1b3^Xv%&_H7YE@>o(qmhAcZY%x9xmgPjdWN{>wnBeq
z8ekP!1{e|)u4B~(x?E|%A<Hq)#NY?xkSATpHPBQHQjN+i%SQ50419gbHrVk)H{<gu
z15X=x&OloO%?-4WvaJm~W1yvhRtBCmu=lndt8@iR@i=>1p}QCx<ZTQv$>D29R~UHS
z;3w+P!9Yg?oeXp~>=?iug+s$4)$S-w?<k$`C|wNDAe~HMHv`=bykKC!9ov4XkKBya
z#*^I4eaS#i1H%oBFz~X0UIyMY@RosB*kuE+8|ZD|Rl^Sc*TgN1VYcKA1APo|nEEkL
zrHZ~n=td@41@UbI{S6E;@SXvN`Tzq14Sq@w6YeN%z@j@!@Q$+cj`EIycMY7rqwp9k
zo*@}3gm&H+_p-(hoPir=*t3aU9%<l1#)*N?418o@l=xwcfze!EcIB||9~)pn4#C|!
z3LRMXE<f9c#&_*SU@ZG0RZNtT9nUDet4xqCaBi|J7l+Rcd?9tQ8PD9c+dSF86az;L
z{AFOOfv*fi3`7k~Gceu2cLu&UFvGx11B(qTVbpbOIEzK@D&H8G+_~XwMg<*vS9$-g
zGG(xv@;Q<_S8$$z)?c{i8(1KOWfzKkk>HBE%2ESEJ2za;d1_#pa3<$>Y)H%B8dzyy
z6&rI`*>hJpb5}{dr_h@BdV|#l))>$X=mvg}QswU{KMGlEVCRh-w&y2<pBjXZ?z*SY
z=BpiTvjf`Y`3)EbEY32qW=g|?f&sQ_u$xtcBuUcpo)V^6u`ubL5@S2>DccPEVjylH
zVIaw6fvdfNO$N++%6bDE4E%jhVH>vIQz*H4PuXl>i-E1uuv5o!%G_5P-M5?cvr`M(
z_N#&44D2?rhwGSuKNz1K8}2f&-M|h5Z23;<U90;FyFjE9*i_1CXRm>M1`csp4eaN1
zXqQJnA2877OfwoeNIzU}z=J;gQ#jkkQgji8e;YW;MbAVf6aN@E#(*?%!9b1M4gNK7
z!oW!b|4H&VTRYYL%6(<TeTBKFI5hW_vkY<rXAIn(=$_u8;q?2;jyny`amYkx&wb^h
zflFMRO{AK*%*Efp9V&Ac8@MKBZy2~PWc^?_&1Qe;K6zicY2f~SrQ8GMmVw)noBg4k
z%j2Gb2L>L}Eq5B+XXHOnir#H@HIzfOxA*6ynCSVryVV0F%>+zz-QBFTY4;_+iJ~To
znJ8eQpov}&ltL!HdSG{?uq2BJQvSgMrMMKKwGu*Tki4XcQl?!6ix6qKjES-)%9$uH
z6;%+VoC*~kzVv}o*+dl+t;JMT6V*&KF_CMcIwhv<w=5Hno2Y5x2@?%W)G|@qL><xB
zA1J>*P*~lO2TEPm^+2JQ>Y1o-g5<g+8=7cj!et`eM5`ONiyE8g+&-`PL%VnMQie2!
z4$Ksrlu+(A;W3eI+HT~LW1{Xud+b;jo7B`qGZQUEKhK0>;%O7jO{gMy(!^6H@*XOW
zs_Xht;lWZZOuYNhZtXKBzIdq2lLoNO+q>npl7i2g(4AJbG4Y(#-d3=k(-O9`gNcqN
zI<Xffelp=T(Z$5`CdQc<&%T)GW@3nm_e^v*@q&prO}u5|MH4+tyk_Ec6E86gOuS;^
zRTD3p_~oJU-$SJr$?JLF{nLO+;>Q!+BgVP^>YLZ=e(J^CyxxqB3GTio-Z0UJ<MNRI
zG<TQSmh({}r=Mi8Y=so{Z4>=X3^XywggZs09UcQ%?}cV0@0e(tqSEraCi<qRv_IGc
z<@+YMi9=1iZ(@{*(I!4HG0en=CO$GT+{6eIEH%=^Cn@Uu6qQwLDeBKDDjUXDvFx!F
z^)4+-OWNd9KQ%Fi%2J9gET2zJ&!>K7Vk{N*H)}M(-8-K;BA+_J#6*)Hn#5ugpL0-5
z%rr5}#Fr)}nV8BcKuJC|)H!dmi76)5<WpHNkxyl%)1-sUoneArn$D&sa@Z1ja(_N`
zwp2aG#9R|!oA`#qch~j+d%>m>=b2bwVxfsk`PBI)3Z>e<s*<W^3+a@qE-|r`&N1=5
ziDf1?7Ht2oq<d4<6=M8bj(DodN*AQ6wAp5&dzFbms>%ze)#BA3Oso~nH70&bwJW8I
z=(-cB>W?Pqx|xIAJ`<XW|4e=&6S@gM+i7B_3B!bGVjbrZZHkeYiMWZNiI54)#FOLQ
zgE}?Lmu5F0Y$77vCyz3~Cb&sxzkHgS;4J_rV4BMCXp^S0$OaP|P5f+Pn~6;(Hk;VW
zXzA3jZ<;zrtZk9TbD(FXscTu#1l#;8yTJLFs?xo`i~dP}4om$ZoMgKY`eB!e-6js3
z_|wE55$-o}z{Fk?`#880>}GFGQ~yg--!XCyGLqBOLnau>jF56rT~Lp3KusKzvaO;1
zZQ>{wf6f%xz3AE3o+IoaJ@BtnJCi3&oHUUZ00KB=;<SldCT^QJW8y5m&4D&?&e1<F
zUMe=;eL*BNI2^WfE}OV!;<|||Ca%heQ^;cmRJQzviJSD8X!412x|dl@-Vx{DXJ5p1
z_joE9XLs`$)CVRWnn(%Qvy75{_fzu;PYvJ}?2s#;U(FvtfdDE7@K^u^11J<gu>gt(
zP&i<ZOOXKF`R$76uA;)*=2s~xA-QD(C>Ow9Bd25lujW@v1yDMGGQx>0Md1he)$+nC
zP*eIlEx-C*ezj5nl>?|5KrP9w5<s;8st0iV*}ST3WPX)HTqA&Fe)VxtptZgERn~Pr
zzgk-)bpxmuKpo*l3fPUTAF%zy!xg|20W=7pp(AM=KqH4!lgA@ZQqKF<i~uqN$YKWr
z@B}bCfDr*?2app$rvN$!@Lcb_CIRkjqj><i0W=MunRqfUz+HXYy>$xM{!|0_>*t&&
z*{Y^_EkyEE0AFv*S-r2>lFoT80(drn)&Y<|BiK@~mEfy`+-<~E+W^|JM&VpcXqHEN
zNp=+MAh;|y?`5f?O90OY&^Lg70dx(ZTL3)+csYOzrBfDNPwgJS3jw?sz!$l8=yvOz
zN75s}FTL6lS|Iic;1#j?2FEUd*Mz?wzz1Ug`62EpLVC0Dvfk28A67cV&0fD5z*_;l
z8^GWI-VUHYli%hHblOkN0b*^XSQsSy9YLC6ABV6ONxm1rP_fA(?+3t+Ckm*<VH}I8
z_99P(kpX-dz?=Z)2Jle;qXL*3z*hl`4&dVe#sx4wfH7k2Q^8LJS$1~;HF&$(XObKn
zz-4L7gaE%bYmeQR0emjx3qdZ7#R}S0*DYu}e^LOG1DF!P(lgDTDya4l;j{pz2QZ7<
zAOX<HyjGm?sH`B*XoCu>Ukj%No^<GwZ#dERH|yCnZ(acN1Mmjm3t&M23j<h1O;KLN
zNMJ?67Y8sw>RMb-T^7Ld09J^+TQ__wgqBwZV2KX-4k6!5)(-)!=DfJwY>lHyQ)>hG
zF@VLln{DWAN5W6!QbY?t4<H;sBmjQ^25m|yQ!o%fFaQoci-ZJscFxP*XP?e!pLn{U
z8s)lINR3G@!-+oOV9|IofORszb|tVrfDH^S3$I()7{I0gmIbjqh|K|P;ZzNxVGvsb
z_&I=^T%7{g7QinIg8&W$P_>ZyD`WVvoSgyuCduC!HW%EK{}I6U0Cog0Y?Ehbm7JFs
zxjs4S+9k@n1@~~-31D9U`5(`jeJP7ZUZ|9lz06a3ou|ydnFj+n6u{vC{tVzm04D=D
z!YLf!$9B<grRVPe&iBmvhyBXS92fH(4d7ClW+Zuq)MFwn*e3fw&ZC;y$GH+#$m&r@
zC7uf4G&LD!0sONt>r4RWXh%$)l~S~Mf#DkSToi+kjME5>UkTu905{m?<(>^IvafMH
z+?RQsVP8mPlDy7Q*WGthS@w1ScLFFCL}?!DJa+?l5WvF#?ujeza~V&%3h!`zT}Vv{
zB3}@xLEISWqOin8_j4;f$M$D+8}3RA0zu>t^4ov>E-*?45wDoj<bvC(mA&$?t56Vy
zgCHp)NK#Ztu^@^&k`h5Y*(HlvJYJfSRVIkCLDUSQRuGZqo^nA{3Zill<t14`u%aMy
zA7k0g9ulpPy7;K8N)T0pXnZ5Hn&9I>R1fkC#kS<PLMjiEr7JRswS%Y=#7{l4>M=Lz
znv(Q%9GqI0^=`_{T<EIL{x0%75#*D8o>fCqA7AWgM71D34q{9Yt{~EbcqxdUL1YAx
z8N@R|v<xCE2zL-UK{N@%BW722$;=L7@^=|*+r>AsjxO}%2GKMKmCX*K8M{`_tpu^I
zQcj-mHtRj3H+z^&J(~Iy3s!YE5As{^uBTboK^Nte@Ms~)lZDh)K|C8oryx29(K?7>
zm2=t#ajbB9n;=eXPJK=!f5qICw-Y(D+6(CrM8_anZ17OBZk?wKEv)f$3!*#Sa@6&_
zU{^s#)VkGKF9gveh}so%USw-mXT7}1Lp-&}#+QTW6~wzi3=ZOzAYKik(4ow?f_N>6
z*MsO2MBgCJEOSw_H%E4bhdzIUj#}a&??-Pe^5ibgT>O#i&5Aj120=t&^=&cIUvPjR
zZ4L}#P!MfvX20V|J{_MkB#8Hd7#T$PsEghn8pH=dXqVmf_h!Ez#MLQT6DsBm3u1T>
zBZ8Q}-t$hvQ~kQDR$-NVX>-qqwAm^9Bf(KYj26N;r0|m<K4ky|F@sUP!Sh)Vp9fL5
zxo4~-#|e%XoFGV@i9tNE!9(&z5MKr{i6h7^_s{%_o*AEW)^JVXB<h(JSnruCauNpK
zG>*vrtiO|<f{Q)++Kib&%#!&yJBS5Bz7FD>Am#)y_lAqXFrP#?lk<d(I+!`?=Tv4b
z3}R6bi#h3b*fV!Y5W34<W=JaeQW5UHpS2>0Z-aOkL`n!NgIE>Bjv#gh@m&z#2T^3Z
zD;&h?Al3vC2qGB74-C|(%Nv9*h_#HUO&%tH<lGTCxl%nx3*u6(?ByS3`C0o>mmb9K
z!Koxh5MF<V$(i0IlY|N!^bmu8vBwHRDXjJ?ta8RRPIw|gM1zQN_27CQ#Fii)?8-<4
zv4P`T)lHsc;E8a(AQuV>HwM8aXcH&nj4Wfdy?Sg7;^!cK5Aq4jtZmHgl=;(+j9+EG
z{36Kt^_#3?T*^ilR{s#qxrNp3LK@e1?_%SFIL)99VowlzgZMj$qe1*r*1a!?13?@N
zVn5xLmwA7khvx!L>O-7LRdfEN(`siO7TkX*i;^Qj{KYU>oyBAMQqMmUKU`@~3ON?U
zze4^C;&>2TQ75m+J|U9VS7$KN=$TV8Nf!)roekn#5VwQ46U6x-rsid8d$O+zxe&xf
zA(sR%3tkbV+KHdDt_AsaXx!ku*pq!zkdwN5m7H4~?&kJ6g7UlU^#wN<(p$?t8}l;n
z1#w>_6h2@O*32f!7eZ<X+d}vygtQP4!b>6a3?Y9A1wwctga#oL453g6RYIs5Lg5gK
zgfQ(JSH%#DhEObok|C4|p?C<lhPk$_@x1>-#-z7$ON7w5eikKWVYPG!<w7VQLYWXo
z-*9E_ag`NvsIbb&xmH-M5W=`?8NY7w5FZocwQssAh4Ab;PvsDJ-l?+4Q!Rw*A=D1>
zZSY{o)d-<x2qz!7AD1M%%+pP+5H42F*}Fc2p;$MBzAbX<g)n!cXJ*vJ(?PRJIrV9z
zgXg2Y*$qQz6vERXG!LP12(A!R_9f{`XJ3k_o{+t~SN6IxLi{tDD^oBlWS?!_(sBy3
zMTcrRY@x$*Lue|znP8qHS3>ydx{J!J;>i%63Srh8IgN{`r^jWs2%&WmwG-VX<e3m!
zhR}+Amn5^=JR%`{^Jk`iqlc2`LTD?(c8*T_5IP9&D7b2K2GzQR@O%g_gz#brT|@Z&
zZx>gs?janBdb$a|T{F9pl0{d$T4(hsqNX0t>=EKe+cVGX$$mM6UTkCtvqN|#gjYit
z7Q*llUJK#%5Z(@<e+a!p_R85eWM2!t5kj93{-~UzRmpj&M^=}^u6`lB8L}^d-U{*c
z2pP{;b(3=;8W6(35Z(=8FoWt)=AaPXq0bk(y8e(crh{kE8=2%oLU=EP4_NO8&-fzh
z&=A&tmHFEa*9!}>-VcG2RYg=@8{|E7j|gF82opp2oTC%MN6Zaj(fFKEAuMZ<)oi(E
zG|LuI=N!!Zn1Q;%Gj^$G3@t}ppGfl45Izfmvu3O$sW46m^(TaoTic$GmB+ch2;obH
zB|8$rq!6s-p07gKu{~?D@F{{*1qZIkVD8UbvX6e4H6w&esp&IAsJANfnbyt7ch>W8
zMg5vX8G;dl$;PkEm?OB1fhvTOc_GXXVL=EB>A=12A0N0Evr|rP<&GZeERp0=K{{u7
z2rGntE9mE0AcR#Rd?!ij{}{se!dDBf5&S`LtssYnYCL|Dq&Ebg5KT}Qv=#n#T}rtA
zNO%Gv1nJulHiQt8xf2c{LMI5HP%rzH8}?OYRFd%!Vw`9<GP!=X8R<%hkk`OTA?reX
zn_m`{BL&hohOjw=Eg@{;v>NC7tBBe->7whlhVXL;Tsk;qMr`yfk9!WT_WT;cZy`Kx
zp{9l38Ga%A98}uEc8*R6XF@m|!p;zOg>X28KSS6Z!XD1w4W9i{@7@sh(dI%ITXMZ)
z_JblS`GF7)a&0+~Ni`1rA<oC8o~Jf>ct$u9!rvhr<+0H7m*A7DUH^z@jtOqN=JHi^
z(@XzyIuud=3*orqw-a2fgr9OGr#Z83+CD$W85BYZ3neXF;0neC)<RJWmqK`~sCqSo
zYeFuE><jfP%-!yyoX7PL?uBrl@({9%sv{0$-sB=I%C`mY2;LQ>exLC!hWZ08@|JD+
zp~zE&Gnvmqs>9PPtX!Q%A&>kP3W&U*U?E4Ru!SFL<WPZF%tCPs-Hy30b<N^heY0db
zWB$bcv{Dx6!xdj;@_fYAuZ)GV7Rp&DPa_s8S*T#yLsrqkGZk}qJ|$-)yt3R=*#hH-
zJ*{e?iUt4U*}O2Y&jJ?mM!2d!!t1UYLauc5)Ur_9LK_RuS*T;7t_6>UYzy@))VI*s
zf{O<CW<Oz}p#`oa4J1hkFJPE#WZ{LPDoHw9xWdyuFDpw(hJ{QE(=KFE$cB|(<8fQy
z;y_R4SZHEFwJ@@E_SHjKxfYtSF&3IyNW?wgjdL*=IxomnEWW!kgE8NxY1ZUo=}%gC
z%0id9nNR)TdYUa<=Hby?NDIMd1Y25YCFEH_>a-RzEuW{Yg?4nch3*#GTj*e+lZDO}
zKD_DbXrWZXbMu00e2biKFJyFKuUltv#GkkD{SwcQ*IZoRx>|PhQuu;}7cKOnA1w5s
z-&T5hS{PbXeJ?NbC64SS53dbYkIH)4vZF4%GK;4ko*G`YFsn+=%BW{*QMI>)H!K{9
z;I9b!Sm;Z~avECbXW>l?3oR_N@Ro(QEljX5(L#R<11yZPFxtXE3%pSOz``&KgDkvb
z;av-ZExgAzuvIs*hA;vTyEy3I?R7KBYw7nbtctmLHOPb4tHbH=<(>~Md}LvSh2g1g
z9wS*-#T?!s@G`YQ+_PuBr|c-##}>v|_{_2|=RTpY*4P(#I~RL+PxL9H<*17n54=zx
zYhj#)jA}XK1$nDW{<($cS7dy}7_jh#g)ccrdS*?sFj+kIY@aNK=oAZ6EpSO3v)+>t
z^3anMPPZ`I!q*mNSoVbFF;mDa3q0pC`HhABneKU(eF-{8IFobf?SC@Pw$7f<z+32A
zAV{*RsJhs~5(_>H8eL~$nZ?iSX05icTzWLk>sn=Dg#|W=C(Uo^JuV<!v)-$cMZCW-
z>pKf{$oCf37geV(_N?I$TUcw^SG@G6*TRpC-a_h6oSw2@!CekUHQlar_F4GVvNsbr
z5C+5BLehe1fp^dW3%uFk5ws9;xW%>!j|fH`dCWpwI5!hmq~%5TIu2sg^@|1a^@1A&
zHwtdDuvy3!LF#N3^0VMJ3*%#M3g2Akv3+<jbIu0OA6)$D!!T}!vBSbnhDR8DL+LIH
zyE$>fXdlKN3wzo4FlvUekDj;iz`{cd2P}J2<sS>jEF84#%YGI-#C{EP9Txmk@Cc(c
zFY_-8e+xM($Yq?ue?@^~alyiW!ddpXg%iS0S~z9lv?D)f;f%x2vZ?hvR6g%WrVL2E
z$Ptv}WeYbg+!B7p!c|A-nvm;)H!Q6F({3=2+akGd;f|2Ig7*ZO+hA*I{rzbqDPiOb
zqkI?@!r-k<YS`WwDJbqr6NF%X!2)6YSyW}ILSYmZNs%y02`MVbtYSinhf%_jlnmSR
zg;}K?NtrOp3NPnKQa?^%-z$dkSlB)b@XmsBvyzirIgBd8t2&ZuLaK*R!;$d%vsM_j
z!%)Id!>AKR-7sox_GE?aOVfH`)DPPu%bPXE@DpJ)2&17>HZzPy!W%mhR~YFI&!E|g
zIc)#90jWfH7@jb)C6|rl4F!ccl57%2u8^iq*=AwnIs9m~oF~J0DvY*akUt$p^Dxpj
zd!7q}7u%~!r?+r4pAphBj8;OP6>RO~wh4o`x2%+RA}mhdu07)F5Jtzay{q<C7@flC
z97gXj-Uy>h7|+v7EAsUSgExR(#RwNh7Vjp!yWk69yy)0x0K61N&oEvV$^D}0>NTET
z!e4Q8UJc_l;jcTAPbZ}I38QZq4C8)b3|nlkgj&MG8S&d=Id6vT?I2$2yd6gWFyH!x
zfnkgYV<c<YWXC+Ou?L0mP8jcs!NIg3WQgE<f<p!07i5tSgmCF5A0EaG86938aPj;w
zY_DM4n7Y=s*(kazjE}<@6UMqQ)`#&)7@vmmO&D{+d{rjKhVc~x=BSHvmOCEf!e|_|
zn>1eRPY7e8kk7;TB8)GEPZp%kBq8Pg$~VQ4OqHscHBI7;WV&R{5S$stEJt&;kgpjb
zhwPa+H;j2<#KTC0F+Yq2lIs;*7{>B2RtR4txL9yW7)ymL6Qq%KZ`&dIZ5V4rvQluB
z;CF)G3sPrw7~7WF-Tc9ktPSHw;XgT&JN5JV!q6nCKN5!F7h*U%W*7m72gCNMgf=aa
zgasplQAZ~hw$E<V;Zd!a+C48b$yu{FlX0>kjE!Mj4C7K5o5I)}#$hfvVGOR6vqg&k
zF1R&}pB-!4g!~f5uR?xv<hA}v`6G<&T>nL~&ynvGvP*C`&jOBougt+mt=ccb1A+&`
zIOOPT>6-6I7_DpM9A*5B&-u%d|1E_5`X`KI!v7UK9man`jtkQGi7-w&{FKc7M>U?|
zta0S$xL!H@LfGCIq|W6qu7tts=j-CDKV0ssqI1pB>`*j~Cv+;@5=oy3`bKa&j5}f6
z4dWh5MbI>Y`(ZrbS{gysi2W1B!!U|QP%L7f-BJYeMUWcdU;AwdUq)G22zmYp3J5Rg
zND2wz9A|Ekh`sWV6pz@`nd@!22ue7bB_k;1@X|ucL{Qd|Jc`)z5may_6(e{|cqPHg
zj-1g|ErRM1G>D-0*3=piJRZRl5j%KliVj!82eKO1l4R`&>NsWVMo`b;^&{Z^He1Vr
zyn1OEL2#Gt<VF!Rj=&W`x@dX?GXyi8vROjh5#$xKS70955#)%liKD}IHlsoWog?TH
z0pH`PM(|VwPxFPI)pB?Tq4&*wGGbr1@P?v!1T7*6$2?UZv(F>XM9^03v~;Ys67p;W
zt%bC4<j)B?bir;zy9nAl@(vMnba*ErL;ub9d<0!1;BOGUBj^^fH(+_w`g#Q2BX}W#
z7e(zA!5)Gy3HB6xS&+5#ihw_#k-RFB*Bm+bWA{$U>QPLk{Wqi*-sAU+;LQkPqVrY+
zZ%42yg6|^eAHjeKW<~5@xOnm!7{Lb-42xh8gL9qd9mnRoLIw*CiQqjUL!I3BBle~f
zTf$?w2&Y6aB7%_-d??8=Y^sotA{gbA8ZG2wL7uHXb>yE%@L2?7*(66YLCAP|b(g&|
zPjuv*k4%0M!IvVL<j5xr8M@3f)scJ^!8C_Yk6?zwXA0r!G&_Q?Blt#=i|LsSZd#rb
z!CXgko{;$wEN~<XBUt2co-UUNUn;mvaJiGaB7$!nzA|Fp*3tO)5v-2D8-Xu^HH`TS
z?jIxgDS{s&;O^h>V(Qumh}>)9p76n{?)VB1e|OL#&^fy!h(_QSn{5*w-jvaxAxSfW
zfRLb5V<-a4;b9K0oZopP%o_*(PB*KV8jm0mK{A4M5&Rax?-8sQ{f%6dl&lRAEQ@CG
zu8q5hn>fMy*q4r*MPZBJR>7Ym*d~OzzeMn>aQ+&?<R1}ik6>2>yCc{U!PbSIoe>;v
zoAuZ-5BC;GUM=R%zbSK11apqN|BPU-l-=i8+aJLJhaZgKki!p0z+d`kpBTR2`a6Q7
zoIWwU7~_8{aEv~W+TrnU1ph@aRrv7;PH;VmA|r~ETz0tFMo~P9(-EAB;93ONBRCtu
zxd<*ra5;kWbjS`De-<gR#B+hlNtgSu>tX~%ZbosBh1=j)oc3JhB0oBXHQtEeW(4;f
zIUTMSQ*Uwo7s(w*em8<@jq_3eK34z{J`^kvMT)eRS^1(!6`tluAS8d3pWXT2j4K#L
zAt$$R6h(v=btE%Srj&@HWE5qhC>uqoDC+Oc-gY%*`^0>uqxij;%HZi9b(M>vd=zz~
z{Cb7$v<gvFkJ>*bR+Qvpj<rfcDo0VpkyI5@EsArp0@sk_<AOB>YYEmCtRqPK#RsNx
zU%Gyjmv(SP@q{C95Jf|WHxg1~qaEIbimTlC<?VlF6j@PpjiOr=?kGG_-mBu>YB||a
z{-H9pNffzKDkqBd>#|vdb=5DfHWeY4dYa0MLWx3+;>jr5i=5lPT(_T!;%P}X7koB~
z7DAp8Y$@1EkTy?Fu&?V{N6|(k&k445a@$4iA2_JcK_ndoI|+7nbh<?Gyu*1$=+1zA
z;C?TPp;5dL#fwq&h~lLvUT15=S^QCkJ8U%AGm4j`R4<O^3ePLTUln}KvBnYa9mN}x
z>=Q-*C<a8)*U9ZC<jpAF67senH^*q4$3RIA5gZi7J3`(SWbWW7I#+M@NRz(;zaQnM
zJ%&XwJc=8~GP$1km)S-}M8SanB#KX?80nP#Fp7^HK1#^wC_Z*1W1{wEDa$@=navI7
z&!XVI!PqFqMKRvd`67x54xcFGbHV%d?XmbWib;~3?C4CP183Ol!&f4i7RB@^W<)VF
zig{7Yk78C7vsn=bi_ucV{@Ls6D87k;zi;xl&S#6;o2V?#jk_7k?Lb-(#lk2SMX^{c
za~?6GT6FL%iQ20KJuq-})>5bTWl=15_zEH16<Ha@Dh6s4-*e63{EA|A6l<c`6vgH!
zeu!di6hSIS?FV3fj3VE_)IikUGWsbBuVc*@h30TQ3cql}k(l(ulK+h+ms2Z>a1<M&
z_Dar8$OwDNHWaa49hD-nDB@1pL=;JfuM@&${LMYC^7n0n8>8UQqueOl62;ai_C~QU
zil4a<MX@W2-Hhh}X}?7As}$tI-bb!Qf0N|zf`3G@T?no1h+?P1w~kIp+nu#XlH7r8
ze$d{U+aJY&C=Rl&h4#)Zi#&h8ej?~l6o;euGs>ULz@0QcVDOh?=f5cacKFdK{t<r6
zk^IXRuK3@b&haQtIP#NGoO1YEGxD9~QWiyC3`z{=qqxA8GlsG;T;xD-rH!F*43|a!
zb`*D_xZ;$(8pSo?*9C6~-gI(r33;u!dRIukn7z#2b8_!T@j&=PN0K56r{w-IRd`wq
z5W<4_V<_P8f;{EP#cC0el#XFkakZ$ETP%j+4lfZyN#Ug&2|driV6c^op?nNa#LysS
zpPIRuTp@=0QBTDf9*d!p=vR-ShLFlJR1s2Du$mxS#n>Z09zz|G)D)~GSliKgyHUQn
z!s`jv|NrC-W8gz0JF4WkV`${a8^_=hp6*C8gk%b4#c;D`HY@cwx!FQ;1e*xv3O0?Q
znGinvL47rbCu8UuL$?^7is9)PI>*pO6e8<0n#a&0hG!&6<>z8(>F`!Uo{gckkT#Bd
zY*l*|YAeZhF|-%bL9nBv(<ui2LQ1vgV>nth=j-C?+`8G`(ph{?hB4n=)JA5zxf#V|
zj~HHx;dmS;;^-N}%M83Yip0??hF4;+V!TPgt1-M5!@L;g$MAX#y<-?1!^bha5ksFC
z-i+a`82ZN0Pb~A6kiYE`n^wu;Z9X4|dt2m#W9aX+aDb43f`d35Lf&<9n{P=S62p5j
z40R+UguE~Kf#5K~;W6+AoIT|+GKLRD_>tf!LCPx*NF5WyCoy~)!)Gx}IF!a4RiBIw
zf1Mc{!}J(t#CT)ETQl3#gcv3Xndn&fJcciXf9Xg@$a#5k3{xD*)EK^U__WynHjrnE
zq)^iH`y$UQ;j;z5b~L|<VUEM+aw({8p9mJjurLO1489l^#jrSr?-(Q%bGRpPv#PDI
zM2ajGTqd|&aE0KvF{~6q%~dh`fe;ez0e&yS)q-mTe~4kNqxoYDKRLYTgj6jCJ!aqS
z8mxVTduGDJ+Z=xkk+WHRsDr<6nxY&K3_dC-$a|bf4AB@)$8d(D6GJ?P-7)OpG%u<q
zV%QSH))<m8ds}jy6j}eM_%PQ7Asb`ZBxJKA=MeuK!?u{cBgDS&_$6lVD?ZwT{WXT)
zMDusSKVsM(!w%uQ91A-+kK`oFvfKgNEAk^T{3T?c;Qkm6IQj>L91=Vn!=H})mw!?M
z#nr!K_%8;=Hmx1yU4WB&EQWuD=gB&GT=)qm_oR?hG3+gF&&{(joa2J9I^!YN{}?XB
za65)}Q4b{-8G&+Rc!{Tg7_LacYl2q=x$Q#>*M;8@Wb&qvTU=fwI5`3D#Bf)H_Z*%3
zF+6ZM9~4Z9BVXL!<u16?lNz^!KTQyVOy(C-K(JsOg&aBWE{n!dERGp*%#5RW93|p-
zA&wX0C>ckoI6QG=$5A?tGI8+v%=9?Q#!*g+*NCI(-pq+BGRjM`f?!3#$Kt3IM`hux
zy;>Yq99}h!o8q_Xj$~&4)W_qfDal%KJmJV|3#lVmH;#IaynY;$<OY_O8^qDjkvEE?
zvBO<<N9_5M5x0NaBFU7jEJ1f1sr~KcHz$rJakP)4L)^a2$&I5;9K6+SDr(K*$P=Q(
z@pK%`g{yHqDdZ_Z8aa9{rG@ZTj^vp*S~`5(R(pt_jia?AsZ+_miF+=Nwjycg$g5S)
z*D(%Wx_9SLF1Ke#C&}s@M;9T_JDOeN=;rV)<!x*1V~;pqieq3LgSh_3@t|VPM}yL;
zK9=w0xc#V1uQ*<b<5eluJB~Nvcun~0jvfB!+(-CZf_(-13BD=FTE6I?`nK@?j%0uk
zQ%`*-j(6kW58|K3F<68n*vL+qLmbWb;utFYeZda|hdH^!<M#7KtYV}i`7n-;;usaj
zXp!(Hg}EOKALHnJ634|0_QuO+ag2>)oFktU$9Ulr1Sbl9?&N+E$CnP@ANNcaKE;tt
z74lUa(;Uh4ICyQ(T4u#DJB}aY_$iLB<M<|y#c?c&V@@1%<5&>KLe7*jne*b9AIFBI
zhYuKJ9?9Ts0)NL}<XGcVRW<wM%v<eR8ppCYW>wDlfqmS}hhgl;)z*mG3c+s$R|>8Y
z{4S2~g|IQJ<2WJ<7ayxAQ$nSkwQ=wPE$$w8<M74tGb1?;Esm7_sq5nW%Sk2!TaUvZ
zhapBx!AKkdA;CwM1+7PXm@6CyUBv2mL`4{jBQ7N2=p^IFC}I1D`yT5>xIu7Z9Ge`S
z%|f=svDJ~Zlf~_qIDU)c_c(qPIp-j^Qu%ZLA93uBV_zKG9sM0~>=eGsk?f9RkHc4P
zN#)HupAp?3$ALHwI`Y3cp@bh6{8R9VllvE!vTF93=%^$4N64`_{&gh(#qEc{sdF-p
zQzHB$fzxrEiKBM{ZzOOwj&pG|NT6W?=i|7*^(~HDjLbML#c@538(d2_c=((CWnPbM
zcU=)Axf;hchtC+0R<2|-&f+}>GkHgIJB~YXR7~Kp1n$OhPb`#7*bDppIMRfWKalo3
z6ig9eKEYJMPQ3n4AiwYe2^0~+QUwzzB)qUA*|R0JsPJNf#T|JGAszPEqhBh4(vmDA
z$eW|G36v9FUXVH!gz&N6N(t0H?y8(Xm4tmadR%VDs!DFH1gZ(C?v$z_<Z;28g2jHe
z*UZ`p)RAP}1nMPFUpVhcne~Kll95}}8YR#;fs6z)6X0dAD}nR`%7*M`bop#y&DAbm
z@MnpBrvy4D;7-7kKz0H-2|SZP%LJM@*3<-Yg*O#!=E(CBP=xc=l9fIw{3*ew1)B>p
zt3|@T|0UtkDuK3+{MiIrJG@N-&pCYMpZ2oWE`jzU=^)tA$!*>}UzY@)Pv9jE-*($(
z*95d!CLfaNCOX{(Ul4pzu!kTud8bC~nZV1Aq?eFa1Yb?yHAnus5Z>1HNuX~6^Aeb!
zKtFaQf%g;mKt}Mb1O_KCB!Rb`mh?|xfD|0)*cp`I?U)^+?>Z8tf9iX}hYE7vmCsSP
z*qhCpnqdk1f&38(jFhb53H&iGlaDvgiDiD6z^4g(mf*i`ZEK?hNk%8|vG6gD<P#yk
zPDmY_z_<jylH_<N_e&uY1Scl&xsWfM+<&&%7XXtInCwWVBrw(C#RjBK6FxnG8A4_X
zej_+5f!RW6;p+rmXlLJ1&JoGn|C3KhU68;+CKIq2nced(;@BmiC$KnyB?&A|U|GWc
zJHSh;UCR?#k-!g9_FKoo>I7B_UnTgRBmX`DKGVe-d8`p3*Os+HeiZ!4(ew)OC3s0-
z$89@VrFpCFPrz_=%mf0$gMz%Zr)D^TNCL40;t510q#1tPG+-|4T3<8!rDdK(0!b;d
zPH?N>dch3|Y!tFdaI+xIZei5Pne=CoY!m#&$^A8f-yHsX0>zuyUgfbpfgK{>DcG)}
zeZjLkfjtTP-<^9CsJ;$0)?r@)`x7{jz(Iy_68(}ml)&Kx)Fhrv;?D$*Bv3GkLP`9U
zz~2enNZ@7yM-%vmYj^_Z5@^8x)h6&?0>=~hSCRuus1r-5%S)&yBzZD{a0&I<?afX}
z@-!P(LS?Bl3C!u#kmP&<7ZSLfz!h39p<Ya&QAzbu0{2R&<w~k;OR8@#%)QF9MoINr
z0<<%#q-|~C5chRPR7sWO7MI6y?z=3K!0iO?NLiNhmQ=TuRPQJ7Ac1^Iq$crD+K`g8
zo6XvfmsE*tDwAnR<S(TnY1d1VKWW#+qkxdArPRVn6iK3X5_OU&n&j^kD3?TeF;zT?
zQc09fBBPXAB8ieouwL41Q%Wr(2Fr>XCc0lMr4BEpPA#QYNTOmA)sv_pS&t=AIf*L5
zD+%(oJgZ9CM%cotN!wS|Sfe!f@g!=py3%Sb(TtZ;50+A|m$H4%me)<9UJ~hSOcM2z
zctUg<5rs5N{%<%QS$?84A2Wt4iRPtkuTB{2ezmlknM76+xk-NZ6z(KOlvbCPR+|X%
zB#|wI!W<!Al~&1vrPXFhu;qD4C`s%ptzIat(vz%(N8vK+Q%O9XM7Jcmv#umsB+(&>
zj?$!O=;0(<OOINLq!mMPoSOyPB>71`v`eCW5_`wH>y%OH!?sBf*;EcnlQQaaWz>FU
z)J{osPGWu;^?7LqUGYg7wTo!dPFFFzs*IW_qrQ;Di%Gna#H&g4NaCd=dP#22B=(n4
zE0<MYPU3PIwQyP0RaSkftlb61^J_`Gp2QoX$+od2JbFuPko2KV(WDRGOyaF1)+Mn%
ziMNyJpTsvDz9a@DF))cwllUx&K}o!m#79YtO5)ul1}8C`&P-xR67MDPK@!7~7|Ql^
zYPh1Tx?;Th{Uokz%NbHuom5t(u-Gp-#8_E%r09Go7#Z)TPV;f@J!Mt$ah)2DPU7Pv
zNX9VorQj!$q~t<bbu4)jlasvH!}ug7B=JQOUnY^5;GUSo=Zwa3YT7urHP)?`vny49
z$sw5}by4_YId#;woT*97NMa_tQ%?OViD@h-%F~6+E2sL)sk6l9*GYcy5KQu*wT<P}
zBjwb&Nz6;)rzE@_yCfDQ@of?-lUSI<q9m3iu`~(xh1D%i;zl{ORCzUhoO@Xk%ad4<
zM9cE(j<N11L`a*x%B#c5tE-auE{Pwco!<+xqBTNR3(`x|%B$a%SJz51QC|JgA-*Iu
zI^>s}gh=!x_LW!tNzf0pZzN$R5fEW8iI9*><yGp?rX@-8u#kvgR4|rA+{rCm!R~&N
zQ@DbvR8Ti0u`!8rNt{n&Qxcn#IFQ7_B>o>$*8y!c(RF#3O_Sbx@8$85_wJ<`rHK?3
zP{4w{OShq-fTB|DprV3^3J9oJ5KvH&o1Wa7hlMUh0YO1gih$_9bNI5>zgE^>d(NCW
zbEYOUlicfUg1ZU9CX{Z1$AME%%Sj*bHzCD7Q%_5?&pcJUrk+NgVe{3~vYYUh1oIsJ
z;&4{-+Pn$hNpZg2go7es0qMi{BK(243Fn)*>CEEoo3LXO_HM#H&i|sYi<7^Qg8JHS
zX$7X;BhIj^kh6h)+Jv7s;gG29XVW}Y{0m2PeXVhQ?EojD`r1JevX+=No8#~%{K}@U
z6LwTy>_|s9;rC4_lSDxhe{cY9!dbEQ=O(b9pBDbtCLG^{Tk319!xJ1Mb+wbywN43V
z@NXe>>5Oz6nw?r-`)3o*ZNk4&UH?hrvLn%Rdh$knEtW*tBx)y7CkZ4`E{R%6Fk$&5
zDkO2q*@9|GROF3PTDeLRm6G9rx*&;9>xb=LIT?<Z^RZP$Emc2k-|9)!NQUEgSADH!
z5*#e#)I3>VW2dT{M1v&%stNUys4r^lU^L5CXe7a=f{g{4u!#^FsnI~Ag%(M)q_;ZC
z>1dTi>m=SxVo?%pl4zU6HA!5XM7t!~Cvi~{7bnqy_xfWUyCzYTM8_mLNwBkEp<oxm
zb`7+~Ckm*kB%vnJJ&7Jk6w^opEuKUoiIOCK{<Gt?4Z`14p;|XdHTgu0e89Pao=Lp7
zBypkWD91YXV(gZl#@`(^QJd62qgwAI`Xq6A5?3VAH;H~p3`$~f68%}#qBek0u`=(B
zEnf0oqQjZkrAf?cpbbpox<fsOu1FB+A#Dy3Wg5Ip$mrt*Lz5ULd}I>ClgN)PrmI&a
zaiwq?<WGdrs}bVfd1po?!(Y|AT2j5+K)Wu9(Mdd<#3M;upTrGGj7ef_5;rDsQxdm{
z^374cw<NK?fwo~}ubWTCZcXB?Z+p_z?Md7rYIi1aR}y!#s!xO!bx#r>e35u_V}hK7
zj*UxVd=mF3@jwz2l9(u7-Iv6zXF5(wf+f8-iEpLGsLWvJam6JAdp#(|CyR2|a|MSR
zXb*9`Gz^=g_Qu2%_FGn060?(dEQzT}93E3VBZ+D39vc&ni|6YP_na<98Z^|N5D9av
zGp?A9J(<K)Nj%MgFs_)^W+u6@oZwa5P@9v)GfBLX#H&d>o5XWTyp+V;B%T+CUr1s|
zLyc~Hvm)`L<VByEBWrseJ!z=DoCNvp4YkL%^khc!lXxwOH<DN&4zNOAmrUs!)mWCB
zju+6vLMbNQdn<{>Y{VpjB;HQqog_9S@nsV4Cb1-mkCON}iKR)fO_wLJLi*1#cEu!E
zMKpN9v9JPHN~u4Tx_w{p1M!MctLRUx%&`+43&s|I!f`F#_;c}XbrNfmm>Da>j{TXm
zINe*D#5x%iEDPnYG}OKjWd_&NnT8r`@2e!fPQppTO=2Ub2vN|J*d&EYij#l+6Bd&O
zjfR?$gee`>5(PU6x=n-hpS|5n!cQVAQ52@wG*TR<O((Idp+-BDkCTy@OM<<E!O|o)
zC-F-XhuD{r_%4Yblh~ca_nfAfDhWEUC5f#`>=gZNg4>hW!BU(EixxlK^T9)5qp*9^
z4R&?*4YtUhB=#n;p948oW*<{+=}8BEPU5G?Ln{B>P-8-l)&of#6w7ppz3y-lzb5f_
z5~q{+Er}zX?UOi`#8J`tUCPDWX^`^(lmAISlQ@~gxZ?%KC6-<5L=uc*@p*AN>i=Hi
z6pftdIC^8^OcH04e60@uihIm-_{rEmVw~PG_+JubbQI{}WJL)_aZCptrngUTOqA8b
zu}o54M+F_Kj$$1ZbyU*PTt^Ecdz6mqI%??Q>`_@q6(LmxDXFI8wSm1zYU-$^qrQ#?
zI`}(&wMC(hj>Ngpb4u#!sHdaTy~VsJX{e)-9!{`LB$vU*3mOYyNttO=9b-<!nu!9H
zS57Q$$;qF|b#&IzS~T10Xs4r1<jMJ&xxJ2#)EO6M(Lu*Z$(_jR>LQiURnitpDh?T{
z6^VqIDni&NOLW9_4An7={_E(bqo0ocI=buVq2odwnk4V3qn8l&-dm(M(%?lpF4oaU
zM_(Pi^{|;}nU%m{_4<LH)f#D>WaujE{}LSobPU!pMDo2<2a7pKk_;5dhB3wLw8yUx
zYyL7FAH~XCA@a*5Q}#^SX|g0ST*s9<Zqae8j;nNx&@o!nM(P-)<2oJf8-+KctEq6N
z<F#V{8o~2}jzZ2J%;I_-H%NuwsD~rsW*s*PVcKJddh%vO9VWSrO`~J1j@xzIq2o?5
zbr;KWu7IXkMvjHMb=;$agcp;K(=lGhy*lpGF+sWqt7VcNj{1qxe;AzeY%%NPVsZ6;
z@xQO!K_=^Xh`laA)c_Ccctl6mMb5<(9gpg0Xrqyh$8=0(otx-uVw#TWIvz0apn=DA
zJVEz#{HbGxjwf~4IvgEO>3CYl5*<r*%+xVU$E!N#vqa?+vvoYD<9Qu(bUdTuo7w8~
zt(9k44|Nky{TCnANP9uYi#q1%cv;7r1&QQd^(7s1bxi7AJgJd(M?vDP|KhLcICY_t
z++Jw^65qWo{#UugYdT)1zK%sYuHP1agFR}avXB`y;%`}Cc_S^^NIO+E!6a|#Sghl1
z9q)+F)RoHUuEq6QC*IX@cuJz%KK0Pn_+ukf)l`?UKkN9MKg&!DI##fU&`<Uv9q;S-
zP{%4AO~xu8==gf2vf#JE-nz1)YKhu9(Xk*=GZQOcr|Ty=KGpG=jx{<~>zKS>S-4W!
z)v|<m$#G?^j%wu-M|a29=~!1T(dN;_`ZemBZ`AcVHt5)-BdOy{9beJDj*V=BPnFFZ
zW6C;}dCk}uV?D4Ez7e+@_bk>q?dY&X&1At_D^>QyYi^9)us6QHk#^6Xcq=RB>hN^@
zpks>;Uq^})(baLQwUXA6(UI2?P(CXD<3eS`2qmi{$G$WwP90*Yj?KI_D&Oh2yHxpB
z=aze@_GJ^*8>4*Bj`vsLmroR4+_iYCj%_;j>o}leyN(??_UPEltj8!jb^OTZOsKmA
zA1bTR^02?u-8wE&;xBwrvQNiPk_(l8)^YZ^c-4!Q(bH7sNPdw1Fkc-<boAU)bWIJF
zIUW-I!#aKyLJwJ@qdI=qadZG{O!-5{vuDGM=rFBayEgWhj^mty3?vMk&~Z{n9Rqa@
zoZ^_$@vn~mbez_4M#n$Aj;XN~N|y#DXIWi!l#9<5-SThIIgyubti^UIWegM;sA`~^
zftZ1>GHUygDh!l0a831+F*6lP${GB=yKwwhYIz|Q1S<+wGH`*A%7Rp@VxV20B9iI`
zQjaM$4BUFFLYp(8)D+HOEd#9@YqgEgJqGI;sBfT+fwl%37-(pqnStg88X2GijSVyr
zXIKyhcdu7@HI*oO$fC8NH8IsP@?k(@t+gbfCUx2wXm6m%fMRgd7#$51vaq|9&&wx>
zoftbZEOloCUBoeRdc~`&1W8o!oW&_Iz&b1z{Hb40RwgZUGtk|@)y&aA4+A|7TxwvT
zfnEkKH270I=x0DPaFKyN29{i)?tHhf=uzcjI<s5p%_0ve9yduLdby&7HM;gUaEXD1
zQxgLW{wJ^c&x=aocJ<b6>a|Ce;|mH085nF}sDWVyevc_b3|wa5as!N|g?r8@>l-S>
zD+~;2th}uj)535AhlZ*n4b*F`UTNSe126upj*u)!dbd+)XA}##O}+e&!fOp&XW&i)
zcNrLM;Ccf$8MxWN4Wj?Rhy1WKOir(8^Afl47A7=sW{PsVC@@Fnej7Vde}&d69V)tm
zHUDVn)!hc}F)+@+cq!Ky@tNfvYk=i?Z(mrt2?iz_xYxjaqQiufq<+@CT1X45llvtV
zE98&<3e!$D@Q{Hm2DTb_*uWzOJ~HsJfhh(aH89t}JcD2QW2%8;wUuWLOfxXuz|#h1
za_pql#|<n#8-L2c6B3*u_@p3X%RH=pIzeeuM<Jgj!e<0$8<-<xUaXi=w>Q@23|9K4
zW6v3Qp1t=*^##Ef1z!@RCgm?1c*VdX18*64)xdlMZ_vHQ+H0cox*!cw^XRIg*SjSa
zuu2X5)h+R+0ZQ(uk)Sgy$YKL;8(3jrrGd3Z>>UHk4A9kg>DXX}*AgL11-GAxzh{7H
znQ%F~=+`llbi?BJ4SZnWLyol#MKr!jN;H2$n4CVafS=H&0o#CMV6}nI418^1qk%PS
z?uE+t{ge%1?%2{!S!dvjK;iW{35B1j>jf!UaHf#TUmE!NL**-j|0Gg4zF*I83~a7Y
zT%&gJ#J|){29gGJgL@#M^7<Z%A>0(S1Q|t}t^v<LV4&21&$-1w*1&>(O4`5+WqUSC
z6lV;Schsk5D_-rc4CV~v*>yW8bb#{Gg5u2vzBTZjf$ure2ddR8B)&LPIJKX$^K{`4
z2Ivnn`sBw#;x+@@4b(JI%ft=?I}QA8;Ix5V27WYf(7-ROgq7-U1N-RJA!TCK#2y2C
z*<OvcKRfjLy0P{Xi)>)Ofdf>o-?ONRwym*td|={4W35&b?T~@P2L5E@vVaDD<5)KE
zhk+v;woSC7V*KtV8ab^oqbHka#|(TkD6wpOcM2JGTr^Kg?k5bq*+g3>`dtSlP8qmj
zP$J(%W2R>~lbe8vvz#FfoHOvRfifm4HPt2$RQ}`GY@+?vM7w-^cVdBwn2C-}wSi5w
z+nZ|CDQBX*iE1XQo2X!-qKOMkROWLOV@-U~R4Z*7CSTB0JJM9EVxp>v3FEu7j7&?y
zs2U<^(@gtxTo|m_Osj38j)@`@iix@=>X~R`qOFPgCK{M%ZlZ;Wh9(-Bc&AdLnTf_G
zR#ZqdG0~KdaLu&qUQ_2)Exxgtmj6#7+4)o9?inf-TAG;Iw4^nQa7bw-cy>%;#q7k5
zHI#NH+MDQXqKk<RETD<2D<)_sc|oF+iFuV1FE!I1Y^G6IXyROj1oOS_8KtY_>&*_0
zP*XM0(*(0CHc?_CZsNDA)ov!bn@E_T!mm{nB0Zr4A2ri@m>{~%v|c7IG@+TeNRsy!
zyx7D&wMvLILei~gF|nVC{xohOZs8IW16ac*)|<H0#6T01O*~{`kcq)2ZZmPai6JH~
zGcnS{C=-{PxWdGhCa$70+Y5)97-nL)2|j4?p^gt!*?sZq#}z(IHorsVgW?D?d<cA{
zZi3HsSDU!T#Pud_FmbJk>rDJRO&!hbx)$?^?!Vy*9~Al2M<X|yxXHvVCgxO7ZzgVx
zJyDS0!z!crO!!Hi#I0=5;c=2XOx$VWev|)TsN7{@${)&D6XQ(W&4QcYGwK*>woVYq
z`6xJ^{lvt*ChjvaQS=!*DI(;wz{lG2`jkH)mW`?<51J@7W6bek6OT}6;!UP9@u-Ps
zOgu~bCZ?Kr!o&>rTl)WvI^D$MLKZYtuIjE_bu>Q9E}FVXdD6sFCT6o-Cc4&Fo|&vn
z9g=vO{fch)Oz@h;rd+C!>}#fd*-dGAOqo46@tle0O}u1cu8A}6t1p;%kvT3>c79*P
z*q+^$n}#IjnRwa6YbHO_z=HB>g*An*aBf+s@Ost6d=9a0Az$%}@&<d|FA7tYCX@xj
z87#9%S;VF^@c~<n?K?wVY~o!LON778k;1473gw$O7cONMO_lc~YMJ2J$;$cI<uu44
z++5?eQpo#)J8LFZvAddBZQ?T%ADg(Nn^MV)eQM$p6NTLr2I;m}5*B%liM1xkKR2<C
z-Suev=2w+>+N<=r&dVi4mTrTIFFEI!_{YRoCcZYYofD~vjV8V^kv5Srv5CH!a7?)D
z=VuCa6Q&8v3~vnvE%zzr{A_c~4pjf>SbW2YBI?xMRmh-c!j~jxA1`FoL*u%qOysL4
zsGl{FGx4p7?<g@5gna{>Mfr_FWss{-XX&5HuhkPwNK+MRB)*r}ZJgg~Bz_RwBDj@9
zyIV1Z%=hER5<5-oGVv=1tcf2@d|y7X*Tg;(yG`t2iOv??uu3_9`}oPk&n6C<_=S_F
zqcUp0iNhU~1A@FKk{@DMSs30i=dUh2Ec|@%h>4>n{xWf#d2LdDH}QvwV<y`5Q`V@;
zsDH!T6Yr9LO6-TR65jYum^e)fW_S}kY2uU+^1s<kpQ$8?vvC?HXWDZd+MH%BG_>%a
zi82-{Tc~28zyj}^Wi7x$%mVMrJqwi<xzN>e7Ajh(WZ{|9h2^cVAQdchzCVoO&6k!h
zus}`TaG6C_3)L*tvQXPXbt|lv8WwnaCD9j$_t}~j9<ESaw5za=g}N5%S*UNJV{`4?
znK=Di^>1j93a@WgsocmyV+-vqbg<CGLQ@NEEVQ-I%mQ!aY{6Dm*gcxl0U<3dTzEvK
zgl)}MYi)(Sf`k$(vtPBdz&^uZM+=>-(1OacFs+3m3yMgn#zrr+!v4@zEReAK(G(vQ
z*d=JN*usG3TDet9!a_F-A6xjuLU#*2EZl41J_|i9^s+F@!qs%if@Wc`g&`I$vT(75
z{+!+|^tQs~Pag|?g>cc)&*H1&F)lZ_=HkkND<-Zr23WY%!ayrrj&17~uI9!z*SHQE
zWP!oktE!h-xZJ{U3s+jW!U82jEesR#W!qv};JT02sLVy#RdnE7(FhCEs+VwaG|~!J
zd|#ATDZIwQwHEHMaHoaqEQ}Tlw^+E|3Rht_TDXbbppJ5bB;n$b!kgJBMwlaw(7jtl
z^EM`wv{axz<#$=Q+rn52<1E}m9Z}=riwaE61r#lex4;syq?0U6u)>w&L{Vcb-KPJ<
z`z<_R;d$1Q#ji>+nWeBW-NH~!dC0;P3y-pQS*Wv8eZ&H<O>+{9`xomK6OV~ddrp~Z
zfk9qRHP;@u@Pvig7Uo!(VPQ={*QYEzZQ)4^K?CKT=GveK6BN$ma5x&9W#Ns2;!Vx9
zZbOyT4U{>R63<w8jt#djw(m&nSqrZhsZ7=IcIED5>_rPNS$N07yB6kJn8&mh7Fc+h
z9rzygRSWYiyds>zADe5$*ChD5pt4e><hGo;(88M*7Dt+kEWE|audn=mDozDn|47=m
zEu1&9#KKYwA6i&tVVQ;ZEUd7wl0&S8w%o#9M`OEgQ(~18_)6*Ycbo-$KeGIR5SEvv
zVC{XxZt!=U1z`n#YGE};y@g*be8yU`;InlsthKPt3iqj83!hu~!h&Um`&#QQY+xl@
zFf4q@=H3%ew9p<em-tFJgI^2TDEJNANJvuf>rF8#T-ic1E&SCc(feU#d<$(>3(XeG
zH11g8)4~;|dTgcQap>(+`Bam(kg>4c!VU{r3poqlTKJA5m+i=jf>Xy>g-<d|+9XO@
zgaPXHk0yxcA6mY*@Pmad7Pea8UL14e#uqcC8{CN7#<_7%xB)e|d}61CT^4?_@H1<h
z$`=3DO5JOL8*VME7;%sAM$^@O7B27=K6fo|q3vh2w9pP%IC!4aPUQYlevx`RB+ks6
z9>271f{$CjSvX>WzffP!#!(BuTR3gu3}++@$5?!eudb=zR#yLH%~&|jGFDb6<co+W
zES$8kf4<6#!7nSTXU8gka|Z6GzOgaJRA<>sIm6p1tlssU6(X<yI8!ZA|Fy8Ug_gNd
zDI>89zfo)MQ$GHwC?>(OHku4mDJ*ZJf{nU1_Et+&v{A`MH5=7!T;0Cp0>LVRl?C5z
z+AB6PUeyM%*~oYe8#P5<$3`t16VAnJ+c?ug+jBZj1^0CP;thqluVXY-Ph#r}QrN)e
zPvsO+zcJmg@xFr(95l7j%*JsWCu}sg(Za?fHm2BUY4fLkFwn*z8?9}$u@SeCu+i2=
zI~$#Cbg|LiMhDjI0Og^Fm5xIAEB_2~>yOCm`O?D6rYMCrR2w8+Z4}v1Y+Sg%h#PU-
z$KyrLUASVKXKhM}je0FLZUc6+@isRPZS=O$-9`@^J;n0LzAFE3fP0d?XhaA(_xHG4
zc#$1$P97hl_Oa2|2KOPkNyxnV*|@~U02`mKR{9HaPqJOl7<U~nweifta3_$N4z@AG
z#vL~9q^mYAw=vqr^){}sG1SIL8>4Itvk|N+8gAoC8{7ooy8bGg-xI|~*x@e0iL}av
zKlc;3%dw#}M#<GSu92u~X}Lz?I^mz6jq~D;!3{RHv{!DjakGsZ?Qm0q*U+zHv~Y`!
zTSY=m?p@qw<90jTZ($Vo8A$H3akq`}Y*`!k*cfADoaobsu|k+iuaVeURb{?;t8k)?
zNjC1c@c^rFRS|u=*T#J|=<4|miiYb78*Gj}$UkYQqddgUkX9$#9PfopPRYY|xCz6o
zALZu1jn8bXu`$)gG#jtmc*DkY8;{#~*2Z%-p0LrirS_DKr|obdKf}h8jH;R#UNyl*
zG#A=4S?$yrl$d2>wvD$2CFZa=vfSn}pUZQu*}1fTo|Qi+G0(=!HeRstqK%i>&sVBk
zn9sFAYh1Q-{mvkBdBw)7Hs(u4Ov{AK@io@)zyz<$T51byEM%Xz@d2C6#v&U_Y%Jwa
z8sGgb8;jZBY(C_NOYhQg-QThCE-PVBf~$B2xzOg)dzp>*Y^<=c(#CQdT<p)@UqpG0
z!HGY|g=*wPF8@EYvC76L>};ZTUgsklA4_m-OO1>7)$9x{HEtIyYpF3KF8|lsSZCvV
z8$a0i+{PC+zOk{%#(EnYY<z9=K}gN-S8f|q^relj=<uj8xUiDCIi@gbqm9Z1iDSFs
zNgFzAo}<HtVZ*dx+i+}HENp|4<XUBVr{YUqDy*?qoqAAZ!tZ_6wXx9;Ny<jrMvhHy
zBf}hL7G`afZ<9FCF-*m4o}~mfN^NYm@hvBZ{)*SN_^)Pa^^Hn}ZH3=S7WCmcOJ#72
zjjc8ga$wrn#v#M$&gMTd^N)el9X58`cyy<-)5b1(-luqF&*C51(C>$C5cf#zce#@9
zcEx|P`P5qYvyJ`iX`PCftW^%!`~xhNUeO<;rPi%V;t)GPN98vgM{FFHw0lmgzuG97
ztMuAYbd){QQvcu}vhlmrWK|{3+Mu;R*>(FXf6?IF5?Z*qfALql;wNpK;xyu*pM$?`
zoVHQXK_v%gY@FrrZ>5!Y@Q;l>EwwTZK0lxoOzeJ6g8$n1&jy2MT53&NX$1~q4$3<G
zTqWMUl}1fCDCeMR)i@=*I#!LhY+X{p0ddWQ?iV<y?4XN-LI+i-=Aa3uXb06CRCiF<
zK|KdG9Mp7B%Ry}?+@t2!F*k3yk<0yCZcTHGxQ>G<JBpevQ0hBq;GmHtY3PJo)>Pxx
z^q;kg$s1FxS-9uSJ>g~!nmcIYpsj<QF|`H#anQ;Ecb?C0k~39n2f-!k)Z#FCI|uC@
zbaue)>kba=AxcLForK)+lTz`ha=)w6GBxSj#^;r;4vHLfbI{#^;^3=|YO#Y72daZh
z)`r{K8~;(_4iXNSggfE1z>Me#OVmSz+<Vs?^mNdRH6t7Hw0t3xyM=V}A}8FO=XJ4z
z-opE^u3D>|=Y+!kRCDmSgD2P!4lZ?YyMsF%40JHa!4(dMIvC7U4lZ}VRUsE*m$B;J
zRJelUnvpoAUdavP%MNoe+`-iju5oasgR2~jbTEp&f(K*{?ro)UOP0zEa$(5T>-k08
zwGOUxz)jlGPPlsIx~$=raOHTt1Fko3aBz5_!s|vMHwoVC;1(gbMzOaEq0KuT+~weY
z*1Ute*+34)IvD3*j04)_GV{PHrPV5BZ1t|=9ZYaAiH<p#=-|e4Mf9!taCJkMV)FZ>
zq};-#kVPgw$m%_$JnY~R2a_E<<bZ{uoU3ClMW;A;)WI|d)1?%w9M;lf4yMwv4q<X4
z*VHT~-QX7S3<pm-c-g@#G~(cC2QN5y(ZNgyeExaH37>ps37<_r^F<WSVe6DDUfMu?
zR${5}oP*~h&WEU%*oXV8<#xp93VE)THjkreN8Hn6yk2EJZ;vmaO$YOx|2@CG=HPV)
zZ#YPGQELrM@IkJ{V)ac2iySO-@ScOW94vP5u7f2G-gfZaL6z4#;!;7C1i5imS?Yku
zr@;qj6_RMf)aBwipZ8WcxOELbD^OR8^YowmLkFuI#9bs@eB|I`2fsV`gAL^1QwQHN
z7YC~yeA7Z%?_h(2ts~XX*c>8R>tG$H6yaYu;I*=q*6tIfZ|h>SmG&ja4$H#PbeFRK
z0_AH5rUT2tM(R7*<RIxlr?<>ykg~UxMoiQ#rZSWN*jP>PQ*CzFR+`I%tu#kCgY{Z#
zo&%rFv@1UIr35dMw1W&Qzm=ACkmuNUkYk^39U7s*QU|;?JNV(a!XS+k8TCCStb7Lt
z*zuOATR5LM*d<M~)xkCg+gTyo<2yJn-K&rgtMHL^P3%YJC2DNM-9q*VKCnH$PsmRW
zerC7d9$)vV!i(gf$PWwt5-A^IDH@f~$gd85b8tlDM;$N=3eQK8ALFdzprMOKF8*?G
z+`)ei%D6b;;3V5C79RPX;^fbH-oZJUtT;_g{<-ipE6u@KnPe))ig|I8`B$dm6OF?Y
zHy)y0F-a+K5pz-5MHM%kn##K1G+5pRBuG2u+;FaAR0S6mT`X#-RB~~F8_uZYoJDzp
zNmA7fXUG~ZYPzT<oYQr6A>{`twOrJ8QO`xsL^0)cT-0^L!$E6DIIC}M7h-)E4Wfh$
z(znJgnz$%*(bYv$7tLI>chNx{Ywn_@i&o-o3pbqqIl;De!DGiZF4~HmMiwn8<o$)U
z)J{C-gv^3>bn$bpsFOIrI_b>1%@ol>7Z-Guq{szxSKROx!@C3LcGi{ZqS(clC1Jgl
zxZquk=cnCVbaye!#cUTnSUMLEy5W~cy<A-A;wBe2yU<)*<YJJE!7eU#!E=+oF8aCX
z?V=BTXc8Wm@SKQGR*dTJVt|WFSr4MwwRI>Q(pnoBN$xo>adDZ8Q7*1_aXGzpaixo^
zTnv>|!(0q^F;g_pCnqu?jgX9RF_LxIT6?#(rVdW%qIQjo8(dIwt&8hKjq=eh=8W%7
za=qx2-zbD>Y3CLfx4IbTV!VsnT-@&BE*E#ZxP$$qnRcg(bFH;Kt;2Jl^Ah4cF2;&{
zjOb9IVVnQOP7n!|?-er9#U#0Uw$Z3|pNsqHcAL;3pIslIhvT~Q>2$J-hg>}D;t?0q
zT|CbBe_U`caVqDuvvJ;K9+lu@Zg_*>E+zL}r@7&MkdyxtE@rrR+6DI~c{_NLI&OHT
z`OZfw?~mMs<R&L?f-~LlhDDomTs-4qxr-Gpo^|<e>3GA%0+xN2`n-#|F6Oy-!3|$8
zdC|p)5z0$~jIHrtg2I<w%$Hd5S6sX*{KT3VgRi;a3o5Tiv5U5;3*B&iy4c0rF5Yy*
zh2$a^+xLcVt-R%et4s2CT<}ejrK0(+a0ZvK<LwXMFj>Z`K3&L!@44W*^}=cDN*C|D
z_|nB!E<SMap^Md`yh?KCVv`Hok6e7r^19(mFP{pMoX?kLKXb9h#ab8Z*vVb2cmKCW
z{#@)(fy-n?R?Qnk!lm?y8ePBUU}Pn`Fx+tE%T@3<Y_*4#O`K#NQj;zww$ZpQCO2JJ
zE>bS|YK`r};dtp<?7MJ<kb6Srw9%TDO;G33LoqIv)1sdd<f}N8=UoIY8mG`Cg;JJ|
z!_yB(<+m=rqw^j<_wc=oA2^6ST<&3ui>;i~JXH3ujrHu}2y4~F4$c5B_PO}U#V!{=
zy5Zr@9+!WHUbx#0&tk5dmT0Lf>k`UdiK2wZLqEIN@8Xb)!yFDh69-so*2Yq$*S6R}
z4%nsPDH4M`QF^b9_A7gGLix=FV=3>tM_G8i`a7o=_EHyTT^!@|%h{fd&IX;V{N>^}
zdtG^T+zkG-yLxNq;s!NKPI2(Q7an8%&GwZeo7190wL~oO5640*@vn>jIP}<R1H)X1
zWjqvkDDR<yhmS_ZV;;(SxbpY-ZKuQIBnU4jQ9N3roabc~JrFAie%f8355y`Ss(R?^
zp~you57j-i@X*pj4G%Rv)c4T93lGO@QKzL=&qHkwbv)GdV6_QP#<@TyVH8)#Tq$!h
zZ0Lmx>Si7qd1%bm8JOU5o3TwiH1)!zIweG|shfNFsg3q;8?BXx)*d=|=;(z@_%<He
zi;=b-+Iis`yg^%yawgn5D8YoCJaqO@=%J*o)`g8O_NmF!cE(b(xN1W2pnAC2LvIgU
zSr>cg;h`s!c!+yQc<AP#yBAJ(oWwYB5r?(aI7e~5;xRfG%e_2Y=!KIZXQ~NpHO<3C
zUieA?FD~Kxc<AflQV#<?^z+c)3m5WSp<lv2IllV<PtMZ^CAfa4oJ;sY9tMlGA!3L3
z3!b)9lRE><_X-a~Jv{2+F%QF7WDmE~H#Q<0%fo07*L(PSY+{6mQ68@LFj9g)j7?B@
zjfVyIB(7tUdlJ{O4o}4yeEgmSaoN7uO{d~Fc(|Emuavma!%ZHz*FC4L_HJA4^;7X%
zJlyJmTh`ngC*CG}V_WS`4|jRE&%^y5?)Gqxhlw60c^E^lwBm6d#(Nmc8lIil-c}?2
z*;eCeezkVm1QvWwg5+KgJVWQv{Kqwv!gk?#`U75g(El)dMa2ZkgA$zV;UOWEOqrwd
z`2G<OQ$&YBYEJbq&BHq$-t{ou!{Z)a@-WxK6CP%Gc!nLu!^xV;lQiOCmWQW2JS~!W
zXH;H{dhsE3Hhb*a*c_1;E>n0>{+!2;chu)Syx{S_r(@)^o2xI14mG<>=sxRFWuAwZ
zS-l(r9$sOeNyX=Tc+JDB9tM0AW3Y--G|De}ou=3{e$j7vwVPk0+*$IVU&Q2ZdU(sj
zV##O`yL3B^xxCFf{4q{{=*GBq+8#f?#KTe#pRrJN)ny*u^YEdERUVdmSmEIVCO=)Y
z(!={gYVC>-x+Y#tF7ml+VoddsM6DM5Sdd9RVb72Fr#s?ZSjN*uYuJd*)iUY$T27d2
zV>Q;szVNW#gW^N=vBATa9)9z1#KTwYV;;WaWb0w0hi^D|J@_6rc}RM&JvbiL?k&<i
zn4AshbF9Sh!Z(F@Xvm{L-gfzB4sYDNm8aJgx?Z?8<lUKT#*~M&hdig6oRaa7WexXJ
za;)KXg*>3-I`RB1p3B&4xgzjTN`*6pn*~X}<?z2hTrmE?>4kHMho3!c<vieFw}(9*
zwtL_i-%by^m`nA<4vzG0;c+vM2!HfoJYLA7z~_dkJW?dt>w$cq7oKJF@S2>bko!Fx
zV6Wf-iid+9c!0>$=R+L+oD+_y4Dw)csu82vRb|y*B`tG2>fv|JoIYy$_`}075C3}j
zk5kaY%Af349!|0M^37on$2nbabhprW$Wpa!g0IW+joiOIobhnh!)Xt*+iARbe!+8%
ze>|LH8TZ7=&w529%l5>}_$csE(MKg8F&|}per^^k?*o2#c2myBWqaby_r{-DUsCX}
z!k3U~zk&~9wu*9rkIFu(`=~!Vv8_#_ijS&3|1KG{&s6WW(|B~ki(c`fPAwm`eYEt^
z%10d^b$vAQ(bz{lTJX_Oa%|v-uRve9tK{QOy;!JC?KJwyv`zf*ET)-{=013w)YQkT
zCySZU!+Yb+pHQgNLgakWy0wosK05m7<fE+*8fnimKCG}f?R@NL7as0(5DA5Ux6?ZN
zVVxBE=<1`354y@Dr}On$Bte#ib$e^MM6r(&I_YDKk2o#+80KTRk8XbWmdiyxF80yg
zM-Lx-9i^v_UVeB$Hm^>iOQVttg=>O5y`sFgk3K#I__)+ZU&?)4;$vSumG5Iyf$#A2
z_tAc%^1;?PgFIkj76aKFJ}#H+1_=%p93q-jxWW%lyN3GwxFEDZ-hO)c7W$PwuJUoM
zkL#FMCN{#yNT2ge=-w@L6EuFck6WfDnB6sWeoBJxuJe_i(QFIKecZ}=kV5ec?q(l1
z`nbu*z_tm#S;ULyT>A<V3%)P8O`N&i#~q@)<w)#KA9wk<+XvrNzp{c_yS+w2JWs~@
z80TY}kLf<f`<US4K_8QSO!UJy2k!N8pN~m2^<y{{aF^zOABF9;2mEm7hw}gjIFa+f
zLn4{thmZH+rjU<E{7_ELiQ-Wok4e;2mSUCiR+nN<3)Fnv#}j@y44?8bgH1nB<=Et~
zebUFS#o<9e-vHsze%i-OJ~y5T$M`HioCo;Yz#JdX_;}XGbL>$*cKUeU#|u7^K6D>1
z`gqC5avv*v%=N>gx>tS7XVVN*=Lx>-;}s#b_NWxT=HqoAi+#N9;|-Rvde=97a0h7t
z>r==DPnG=ncbw;Ri+sH0gQQ>EVoIp<j*p@HlqEiv`nd9+_`4Du+Fqk@nUD7*7~iQf
z=xvV^$F<j1`dH=TBTm%Ms_*;wKnVGVLYAD1f6O{(k$tT9@hMxgW@4?6bv{=6_>9GD
zuTer=<Ky9TD#_;}{G`1`1tKLIB-K|wzV`9u|4Xvb$2UG^XJea0fyoO-#V@UyAYqi@
z!(`L5fPVPqv*jbjsp+U<`*3`?ez+;&`{2ff=Z8BFT$OWcf;+3VCn?-^;2J;cBPUVc
ziCW%AsUL1!Fi9YiY8PR%4{iuh@~ue7xr+bZ#}7WX_}J=)?_+ayzg@^SLGEl&LbY8!
zew0N-#T0h?*u&Y9_I>PSzU{SrK7JCyN5`Li?Dz4Tk0U+~u+)PRzxX)BECwbH`r*M4
zpIwQEef;W&PqXAq^;`S!0hPg{KK>9n`R_vb^n0HC<>R=I|9q55;e?NqwC3ZiA0Ew|
z^6@uoteHlh;QUVyW$AtX(exi5|8kn;qp2XH$f?68RlcrSkV3f>mR3!~QYf1Ogr7eo
zqOej2t-MGo2!;~A0-C~ICzK0PsGLHT6so3BCxyBxR7;_H3bj+=167R_YNk+2t`47;
z@NtO3_8l}P?9)Nx#V471DgIrE+8~97DI^|H>!&~kKGk$z8@p>)oRUT<+|WV$ITdf3
zLbDXU&SPU9%~NQR!m50@rfZo(s}vs2;*l&`r_d&am1(@6M%xtHrI1S@Pn#)pNa3AS
zsNXS#PAOcP!oU<dr^1H~4(eVhbdlJ?6uJs2N+C{{QczOR7ll6?qKdpYg%Tl@RC^};
zot(|5%5)P+cflTlJtLh{?FueTK}%uvGvV7u7o~7<3caJ)OH$|~ysuzC!TwR~4~1dA
z10?uR2W?OagHyOEg_~0tlEP&ozsD}3&gCgwE5R#L7%F5~3L}Itc6bU`3co6n>}?ua
z9x1_5DO?@NuSwzlI{*94uIofNTJU<df{+^{O|3@3EyC|(k`!)D;Wi20E;v4gJ5sna
z6&|46mBJVi-Ys~KAaj3vR>9bak7F;oEp%yuNG3+|Nh#bL@h|EYJiy+P!i*H2OkuLf
zrwTsA4v@klk>(U3{HWnkA&*7!4=aROOq1aB6do7yL=^jUg@UJ2cshj_Qg~5>GgEjb
zik+3hY~gbv$?|HUwP#cOorJJoJs-*I%qn<E_$w*An!?;jK2ONYf|V;5%op-T3JZk1
zmcr{oLJyOn<%JS_D}^^B`Jxn-)e3)OXK^HXI~9IZLJ6;T$vHx)lfrwVV5G1-g%v5R
zk>JWG)ki73AMp=T_)z$&NK(xVbN@JnPa?^uLRP2nStQ}>TWeETm%`^F`H~HNJ}QOv
zLN-L2AN&@Mk*_7VNpPd!H-d~!3eg3rdDE|D%oHpM+Jb38N6<~d6XFX}Kb68O9l~Fb
z<CPI%R*<iy1>F2$Crsn6G&ZO3Z3=~HbWP*C6uwX4TnhiD@Iwk)QusZEKT_D5!Zt~J
zNN~I0ZowUbJ5$&t<VQi~xGY<+CxyK!>=Vg>NdA+MpHtW`<ijt*F?CS*FOg2$6J-wz
z|5fle!6Sl41({@FBF3-SxCM7Cg+E33m*C%m$9We>g<EPTBmGk;*b~C$J1vqkf@cN)
ziFAfcDd5K7e<_qtqe43Dx@FQR5JDakQZ@|;DHqAt_baHFMx`_wrO`Nz3q)QcimjYR
z72#C{t3~qaY4G(Gnyr~etu$&!^7?7i5neZv)JtQvv||I2G>qi`l?#j0B#l;Sv=(90
zG@1!%F4!W{Y?;Q0-r+CCw}~Vjcoz`fPOyC>f4Qijqwr3Gog;adG}7WjQ5s4b!_pX@
zhAOd_q%k0k;xtOqh)4Ptr;$jbTN>RX$%Se3h<ML5dI{$)D815zUlhe&y{4dd#QUVt
zS9rfj(qG8=s=HM96@mlP7?j4)f5I^}IE^79yiAai%jwS@VP3q3vbI}>RmbbfG_Dn$
zs{}^~juadvc(vd)g4CbVv*5ZkMyGMTNN$PbH>7c+@S6m0j^tNl3T}<~ZE4&t{EkS{
zYkI-m!sn#%Od9v3F(!?%X^a!$6KRZ3V?r8_M*0)ecrfCVgxo85UmEvE@&`DI&xXI=
zIXRL%B;?^V9*HDV(s<*tus=K|lBt5z1g8r=E=UFTZQ=|GKAFZ-LY@|!DL6}zI<wi&
z`~L4=37$>k<uqPN<2i|aUhoCM7X@DuoGUm_kQR97eKn2wX}psTpJpj}O`;a2@w$*V
zBFzQq@Jm1{@Oo2(i_&;Y$YQ~_Bh3cm3f_(Qk~EeIUncmT;PNPTg%F;UeUQe7X*A8E
zSr)6(_$ZAlG8me{$7y_$M&%5uWbi46WE%U@_$iIg(pZzm_mX^V8ta7Q)A(G7o`yk^
z#`-iih-9PSmx5mjvJ_vZ@vDrlZ$z>wk|)#QC(KkZ)38LCPQw=B2|9wVAk}_oQQ!+t
zMUpYUgulp_kziIZCph=nf<Q>AAaypU@vZRhB1t_f_Ji;(X>1j;EsY<e*zIZT5WX{#
z>`J42$N$}NcBipN<a?u7`u1}g`_t&tQTs2A10p{W#U4!KmoyGZ@NgPO)A*frBEjDx
zog=L60pXnahe-YsJQl_N$-$Bc?<U713Cqaf$uv%-@pl@h(>RkxOY!im=$sS$C(_T1
zF8DX%iMC<dG8q(P5X+!!CcGW+s*nMMmlG@>$#2|MrlRmlf)_+``cO54Y8hx5T$Dle
z3~ESJXTh3+Ei$N;L2co6GH58Iu3$aE`hv{8fe^k%OWr7h#u+rpps5I(MLHvHFW}WY
z1HRl#wU#1pl|kza+C(}XGH5HjT_kCr0k=e`-%%u;BKcjv#JXfqm_gSJibU8g14W1$
z>Db#se~L3G5lK9fCo<u-6{C1{7h#VKdJ5?k>0ForKlZ1>#ToR@U_d1AlR>|T_l<I-
zT7MB<k^%R)&Rf1TgMlI(Bsf@bh~Q;{RJ%NbUVXw`hGj53gN+${lfji4T$RDn43=du
zB7>0`JdnYIl4Mi{H)L?5@T&!{5xh2o>x7IJq`~XywjNGaH;Lq)48{n#IfGj=xHW^@
zBzULb?SfRkgSFi#94U82lDjkEmt~ZU70JX%J}!gt!Y4$M>g5Y2Mf_eN_X*yg0e75e
zVKPl+@L~opiTvRVrf2YY29IPgMI?MhoNA8>e@t+y;Is_-)($N^k->}%o)zJff)vim
z;3?rxN0ONt%)2nupB+i&Wblk|{_+Fm&k28C@P$Z+qj)Y8O7Jbgmos=>$SZ=c3eFd#
zk=HWdk3x{V5lI$gurPx+CAdiN{7C1gd{kR3lD9K>N65Q^lrLco><jI@m%(xouFGJB
zkdGssl|tUn-~%Ba3a*M`KN51jyMDsEfCN_yekQm^kXfwFg!{cDpP!cqu8(3jWbmc%
zuOi9U>?$%ZZDPmBV1EV&GSD+HGT0gEm_kw+Sdqlez!B~WdXd~`@0F6KGst9+%^)XH
zTLklh-)0a9DHWuvn=@FvChQpBMUw9`_(3>#I4R#Me4F6*NM}a|(?*A>c4hEm2D>Bq
z9wC=CD%dMzUnKu2gP$YLK7TNSUpOmf!%f{o863{wOa^B&_*Ha{3H}!8AIadTOjEx{
zl0P!&TsQ22y#C}&lELu|PDt$Ef+r)*Qyc<P!>1z&%ga>%a6ZqXTo&gd`M(+bmqD2<
z3bLU>SwWIm7O%_?>w(w#{#IV1F36&SkcxtpBK`X_s4TpSVAV)oEsF)>NsTOOim;Yo
zgDh$bsUuidu$~}ute*{kQ008?4Mo^UuyGbmBAx4{2+gy&G>d^*w8)}m7OlAXlSLwn
zZlcykuxl1=vuG#0eHI-e3mcV!juG#aMdyfj5mK1Nm*RO*Bv*u}SrkW-k}Tp8f9{on
z?!tQu_7LnT*h}z2K^98O;-ZLOoW&-Y$0+ZUMc+u?FN^-dFNq`rvS1gY+8~kKk;R=^
z49;Rm7MEplc^0>b{0hO5f<py|2{PgEEUt|BRauOP`1c*PQNpjz;u;~>3f>@iT^6H-
z(8Bdu961p7iW^08QzXAx$nlQatwL^#<hKi{+DW@h$V9=r1@93YBRE!YoZxuD34+XM
zyk0O#_`QPn3EnUGfZ&6IlLe{&kPyDlJSB@qvv?+lXLEQgi>X=skj0iPrisF<S<KI3
zdKQmo@q|d`W)Yl?&&c9-E4(p1nZ;9CJe|c%iJg_@mUUS9ThGPk&}<gZOR%yR&aux5
ze@>9W-bU;N;V(v#m$K;CDZB&D%i`ei!j~nlR|KDK7iYe&W$`-uTNYns@dk%X7V9MK
zLcx_;yr0FJSuB#^TUjg>vRLqKK^lK2i+3ZwB#Ytvaf5JcB6OSAds!?Oz9Nz=cp`l2
z`#^%Lv-mKQugc;h;U5cr63IUmGN_aGnUFPtYoplal@gyv{0kxL1vju~O4+~8Vq+FL
z5q`sNFT~3tDTJO_LUchx(9DK!6fnw;bet?);ma%jZ+`G4n93rZMMiiw(qTfX<wY0>
zmS(Xzi*JQ9_B#%rW8os2*Y_fv*-6`)#kMT&$ze<m+q2lgi6w_tIqb}0R~G+f@n04{
zX0bbqKePBNi}yNdd_j6o7JIYUCq{nBhR4~o`I7{H7Tll30U?wh%!Y4PlN`$8a2CIc
z{CC0M1dl|TM}_bZ{0||=B6(_h!ExbdBFPCMCk0Ps@wbrEQS8|}3(jWo4`=>J(&5)K
zkDUz5UM3gzkXkv^&Y?hfEQhi=Act}itd>K0Ar}Zzxk3&VBVH+o@Mkn0EUYY&Dv`Wu
z4!X2EqpIgnL*zB1*innazE>xQ#v-XJSTBmLpF;!T4I@dT9Da(dH4$M`!DfQZb9@2d
zfBk&)*)pwjXp_U0B5BKpJ6+f#hn_jK%b~ppJLFI-q+<@9gme}x%At#pLP2`iHHRM0
zgxy0Ci5kh5A1_l9@wkvg4&5S2_gwe^HB<5GmBXbXzc2?)$VEByjWjRLp||ipk!0eV
zVa@c*p}$BjiR1%>EPcFiU=D+X56<BVX7pyk5D8u;c)1`g3|U(+RQNE#;gS4U^#Z;=
zaa9f@au_MXQGz$+aCHvX2)|bF`W&tkGFp%}i~AMaApFKiGXHRyn{&8Dg0~9Znd6uZ
z+v4^}=ML8P*{~|^63N|>{HYcNV{;gn!;>NzpTmS4VzN=pquYr&Ocwbh!FvVo6Qrs8
zb9f-)59TmcD(#^h9v0yvg41%CBIMCX^D!Y)bD-NaGCh(%p2HKuXG9W?4k|pA!_y*}
zDL5;Noh@WeE<ACg+H*NPpTnsf{?6fr9A3;JmqR{>mvWe!gD1-Ka(Fq1PjgtE!z($w
zn!}qpEXsv%Zu9Np`J(e$WdHRX-VnY(aA72`)Fbv*4vTa6L=wK8!#g>=FR||mz9+au
zaH-%jK|0Bkn&rY*M3R+4Mw{WD$p<-nD8W^NA4NJJbL{sBM>qZCtK*;LuqKBjhqfrJ
z75p-XbwWOmQhgz0eGVHU$)s%sUkU#@l5EW38{wNGN%PwZ4B>nYo9Dcya4U+nb8v*a
zk)+k1VH^25q(qXA<QXAZj*c6`p%h5)h+t_Bn{)U!hwnI_MEc(g*_p!+kz`8_TiFD4
z)NLZ!9?5sm=bHaJ7uzMmA9L6(WRKw9NONBf=VZS6Ifwl@9EjuxbNH-$=+!SGIV5;k
z@YhJ^HzAEXYe$9rF8D_jdrZimf`17f&*4NAdy?~>A3l?u&f!cB@jMcFoXz2%99rkm
zCXaJD{F_75Je)QK|K(67kJ@>Z{1Y#bQ&c9bnnx^;vUwnqR1#87uzVgBB6&q2{2GF(
zF36+u`Ct^Q9Vk;R;??u0A-twwtw{dnw*__bs4KyGg7x#@XEHR%tAR)w=Fvz<V?oNB
z<ni65|GWD)<0)_+E%Im?#nMhI;XS0Dsoyq_t|DodM|&Y1Bp1Fu(NTh(1Um~-ze^s4
z5r6)Qf}%W>Jk&^1l1FjGv;EccZg<P0dmgXl@p>LT^5~hz_&mQ7La#h7%wu#O*XN<-
zagih(B6zXjC4#;4=p&@BAbsd3q`x447KV}m!Y>sZC^$%Pa2^xoH1M)KF3;l%5snfZ
zn#Zs_h6^7dc%>k%UBxn1_}}_&WFCY64u{g!5_^r{wUOp^c|15RtnC}}xG|4AMShdu
zErK@-et0Cb!0T2C-j>JhLhcZxeA&E$yM*5@cuyoBlgHSIkIREUm_y}>c}&V<dLEDG
zaj(QaEO?*b{elk&Qu)C=CP)0CJoq{^g}ffgV~WThjbb0mV`{{wG2h8y4Lp&@3=z&1
zoKZ9JWFAlD@w5b=7o3^LEczz=S;0AiO#X}z{(8@Ik)%;k!3)A)6nrU?KRu#gUc_G(
z@=6}B3Yj0tTi;voMji_!_;wx(^Wm?$EzXA@Q@<JMEE4jT;C+1y7{$-7-^t@$ku1sM
zeIZK)mkGWnxLk0BAU$6x<o#6mr20V~A4-tFQ`hRNf{%oMEcgk1$YXULpXKqTNY>=B
zR>&ebxmcIS=Mp@3ekCh>eLnnze1l-O&KmhwB5%1ayxs8nhNC!-??t#NkE9Si4<ipV
z4=ayc9{D_M&Qy7%@<`|5vT^H_@MS75AAUy1x1<`4Q~Yp>E9$=^p2>%AOmR?W^Wl3|
z4bH^**3;5~Y9R8>9G<0Wsqhh<wKIE^Z#glJRlJ+R5A=S>V@n<tjb0yh*0$!cjk8=3
zKErI!V@Dpx^Ei>m&OCPIu|JOkdHk5i?mYJ9u`dt46>lAl^Bwy=bgx!ocjKNv<?(Yq
z{3R&o7lrTPZ||mLr>p!x;9wrV<Z(2Q-}5+>$KgDxlv97p<JUaqc31dn{k@&F*z`jF
zJ{4c%Ka$5!(+Xeeto^~(&xbz`^;bUpM&Q~-;V)MGnGfH<=Z`Y+C#smm$vjTwQ4k;&
z;O{(6i{`)dfo06&A5QzM;Th_T_UesoikT5d8I9AzvZHa@{7>}D1nBZ@jKQ)25TJYz
ze&$dv2){Dm&q=8Z!{4N$k?b!q7P%txTA}c&6ySo0R~EuwlBpJ;dVp2m;iK<RBS6gn
zGfOe66tx1>4)9Naa{=lEs2gBjfR_V2w5{a1!)m<%^#e2r&@e#10R00r3eY$}A^^Xk
zZW5qrfX;L>K(heN1GEj$E(pKQZV{kmfK~y1uG@>Bink7MXCt*u0I##g&%LR@Z_oK5
zd8hg%?E`cS;KULg0(7mc@*`^s`Q>#d$$}qN7X~=7TTufPQz1Z65PtNn1lZqM`{|1k
ze!k5hKld&Pz_f8@(Y3f-7mddGO?S5d-2?Op&@;frVvuh43ZMnJNP-sz7+EDj;oOBP
zzl-0HR`@}BZ;9#?>Gut=dcQ)QO9BiC@IZhE16&$lV1Qc#+!kO^fWZMq2e>}KkN}qj
zxH`Z!0WJ@4MSxR#l~Dn<G*O2Jc&1X<`5zRL4-?7o09Oj3<f;H8B0iGIYp4_w%S}-D
zngJ7D8{j&&;C%I>!)p02)r&iaKSg^(5dKcZO#yBU@c8n=7F{&0i^iX@xS6$4PrXI(
z=L>q?9^j4u_XHTjh6r$%cyf1uUm6wD^1nTc`QiaT|9Ndg;n)D<*!pFa4lfpt55g~-
zuI{2Siey57i6SAN6yV;7-xuJ1;rn`o`jeSFz|-tt{Qc(ukFe7Qm=<6P8;;&SQTUi3
zzcXr5CBaXVcy7xgY#pOc5AXzQZ%UZg;{k@BRTwoRz>`uNwa0`%^zl>>enmxvSpjAT
zcuDe|!{P*ZKEMlX=sjWVvn+Ukx6c;S2tVWEFM%+-7e$$6d2pIaoEv}+^xGExgzqZ>
zUJbA@K$}8set_2ktfRHcC9el~Bf$Fs4tCKN1Xvhgc>w;v-J1axv3mqq8sMz}ivzqH
zgf9&9=bGOR@D2wHe=Pb_W%(n@$kz(VpSvc};}>NaYlfBCLVJ&+qoelnzWCfO+PW?p
z4X)q--xgoV(Yi05@1lJW;6t``fR6&KWxk&(9|!m(z-Iy01mSN9@<*FLWw)ecfXZ0D
zqP%)voI>Wsmy;_NYCL3N@N<^yWbqe*>jP|H%?IIo*IxzrS_ofR=Ns(Q;XBx<m-r^Y
zCfX062iP584+|T>43G+tW_1lytss2U)eT^?iau31;X46tsaZ_o1@Ku3g&Jr0h8Kok
z*Jc7_1MCQ}GeC~6{u0|7U|WEEfPgM-kMk*)&yA%)`1H6rz_&ukzZ3F(fFB~smH>yR
zCK$Dyty8M<F^@S~Gn5sNg=Clb_9LgYeG1L;mD;uki}nWC$5a7+4e(RIkAsx`0S<6R
z5@mkL%TKKjatJW$pEz$ihlKE(aca^I??Jx>I1=Em0LKFy4e)y)w=?$qCF&mmj&aT`
zNZeeg4OkxDvsgL&Fq}8L69G<g&JS>!V?O|&#wllotX>g%btVYkCFXtbtPtKVpD5HA
z`)`2%I9N(Cr4&mFHU1=2nNk##B36pBr5I9*%SwS#lq*H&QgkUr`BGFUMcdNwmQ=A6
zl}gdD6pc!8L23B7RihL&OHsKryyaElJl``>wG?C8tGud}qIxMVy<Y7TR~W2S3Vzqd
zUkj{VioOF>-n{CRg2B3iB=v;UFGT|({63Dt#--t-T2uP4rjR$&CZ+gzx=O+?)S8u|
zxx`YTMJZZFyj3Y$3vUxiW|%QL-%g6qz7!pVP|{IIr&937%3xtBx|X7QDSDKms5HDm
ztEDI|4R6qj1nCm*&LyQt@OHK^ydB4xudeXky?lq#trX1=ehk>N6#Oi10LxyAUZuFO
z6nRC_O2IGnE)jl_;KilrErhXsg!C;%zev)*6lYhfjM`YJEni>M;yHDolznh129@Id
zlJL2LxaWGMZ4c%0Qe07rTbM;DhL&PjDXw9mN-?|?SC(Rw)aO;D;UmNdwpwZU6OrV+
zx&NgU_rm`%^&QYs6wlX$t00P~C`Ld9B<$|X`w~sgIp>^{0Wg6W5L8sM82BlQNX|J4
zf(Rl(ke#?Yv$MMol_01ff+&jLox=A&-#LBi+^(*!uCA)C>0Nj`Vfwjy1pFmT{;nf`
zxRQ5+UJ>+(pf4qF&g?B7a6_tJ1oZrUWitju&_9ByxfwrxltEQjLW*L8BN#%5bMFxh
z6}JqJ@aNXSKMx$n^vLzyMN>zL&qqZ-%jqS$eNMNW$0K+mf~O;RCW0p;;GOEJ2*%QY
zrRlV7oY>FX(f9~>X(5M+N6Vj$fKGT$9K{6VUpPK5>%RF*4nMZslcrvX;I#;UbSQmN
z#J|zK7(v+@SuaJ9o2Fil;FSm_NAS?3@D%QaOJ`)f8o{B1IRqWk)RSq7Z=5`wSMWru
z@cmzgrbX~3y`kYl4R1vdEm>za-4emuf~N~5b4CO+i}5T0-*?B{2;SkT(eQwVc@exD
z!3oA9g7+e<FxVWymIywGV15KkBUr{&cv2!*#N!#kvu^}Gir|w77Dlijf{$tZg1`?`
z{WfxI;8SjJM_^W((v}AL&JQ#?73i@eFluICF&!1b&u<21%nv-87pl4`usnhl5v*kj
zF?k|b6~XEV)^M#wfo*#OKduklIVZ3rO<jM!#L&fo#N5EU3j)6_46JAPBG?$grU-VY
zDR)7j>}USa&C$A*qjk4Nuq}eGBREL+MzAA-FCy3z!OjRikKnKo*cHL4zXGox3Op3d
zGt$(WN@=?zsJuF`NDu6d;L8a1GuGt18rT=XR}pBd0>t-gY3I44Re@5|1Jks?#IFP2
zt`2;|&_r+~f};^s>|Ua(3LTDM!gD1kfA`_Qw~XN7z;UK}Vd(xDfnzKe>557gwhw(5
z!Mtw*1X=`o1iwV^YXn9FW&}wlVFXqLb_8w&@d&ch)#k>bXaq4HA~%iLVUDc{5WkxY
zu=~c`fEPg`g1cu0R?P~uPFI_ngo+|K8Nrzd&N8<n_#uKHxp5|*7vS9MM*~f#1U4IK
z`n<qtp6>4gY#*-){1m~t2+lK1tawubKOPPI+A4iSx=I$7crjgRXY2IslYSwBi!8+&
zZr1Qy1eYTCBZ8|D{LVtXGH^M9D+2nz5qLRV;_UXof^_BRX@By#arLc%(i)f&&F2UH
zni{x9=G4I7LjMtZJ%WD)kY7SWNzE5vE2ZJ76+VE5aTf!$WLLT>qoJ&Z+ci|saEpd=
z8gA22UW1jcZq?9aPGI`fz~UW&U((frL>g1>*{Oa)-l5@64fklMq~R_N6*b(g;k{*n
zG8yWT3{~e;VD~S9OG^TiyM*r5kg+y!pN8{i(;j~-&^$v8%TP@62Q@sTp_hi<8Y*k3
zqM@FK`WmWgcvwR^XK8pu!=oB%X{fECnuh#$0yQ-LRzQjB8us2>x`q*0(Jc2d4K+2q
zn4y?3laB=6=js{)8bTV<IP`iTs3B)w{=bI;t20#Wc-p=UmB>*10TrfSriLsHdDN_-
z`I<ns1{KT;b6=S%M`&iI+LQ?7Y9Jk}2ez*c6liFjsp@Jdq}i_q9{M7G#F~K8Fep>8
zeLOeNKtn?fZ8fxGj5IW+W(_UqNexZuqD<9H<6pz8ip_JEUk$LkAeGi{N?=o_YDvu+
z+Gu`Sw$gCq+d#{K=~HI=na1|}@xa#Ef%Y0YYUreaxPyjO#{wT+33S%bMMG?6pgXtR
zB=kc(t*eGNy#QM`4M#H-K@SZ*MP{0lM#(c*0(~^})i6QBL=F8k^w;o&h9@-)&@fQL
zFb%`GDGh@)4AC%D!!McY(~D`P<_1V7B-2<iMtvM;(=s$d!${7Z5g4PP&!WI6Cfn@5
zXbm6F4D_1o7o0L#s&<xoT*EW-1KvA<r!<Te*FCLadEL-B8t`>sd^BymhWno@QDRMi
z_2C%}&x%Y=UWw;4Jg@ODV*CQ~_2EGJdw~};Owur2!wkk<!%G@o)i8w-xfBRr47{x2
z6%CUaf-Ln?xJ3Q>p~9tsIWq!NHM~Z*u*hq8UBeq1rfFbBt^2>guq?$xQ9F@FIw?z?
zx)|Uro{qOQ@aP5J56sjsixpnOyBcP5?%cp!4ew~6%p46TPNkj63myJGZThLeyYB~1
ze(2NpG%T4H_&~$^8opoQAJr$b^2wPmhmqhT4GXvh9W!-&tl<+LC>?j{Sg7GsMoq)F
z8Ww5zOv6qMpKDl5g&J0CSfk;>s+^_to`w|~mT8Et%Bj;dOgcYHtz=ec_#sPe%u<K5
z)U_-{yq3o^TWw?-YgngYJx@orYM!k&Fl5>4>1_4I(wxm2wrJR{VTXo8)pNFL$gPpH
zO~amQIqWv=6mC-^XGXSKOg*A=mxkRM4$A6ZP)x&D8ul}Ds^#p}@TG=*8g^x?g-yd<
zdWT8%Y*lt^&gpD*fJeT1&es~IR`)ft5q!f%HT<2e4r^dLA~@J7%tq!h4aYTH((t>6
z@91#4lzY?=VF)zDHFz3y4Tc6sgR8-0`C@wKsHg^;d(TnLa(q9e=P2SB%V3UTn<iau
zhiy@gN@z%GDAI6J!?qk>IK}016n9O>p370C!m3JGk@KU5QyR{(rfE2>;SBRc!%xhp
z9Mxx0T29!X(kATdWE&J#KlAu7Y8o!`#D&$Yu=<se4Xf#m3u)DFbbDBx533Tnz9lEZ
z>avC_d^G4NqvH<^SLqE6|7iGA+Fu&36;G!zocKVl9~Ulkoz4lXQaV(w`d32<-Pg=k
zQb+e(A8@p^4(PaH+fBMJPh3{VEjr%MRk!J&RpoTtDnn1^s@G*Amng5}b{Vap;|?8b
zauwUYTz?mgQAHhh>*%bbi;jDARML^FBTvV@I_}d^T}KTa_v?5-M^zmU>v&MdLpmz!
zsG`HpRlnw{bG^bP^Hk+Lm64}f<S8;A(ebE`YP2>_^~qDu<f-XGcjT#W^VDNHYU)VS
zk*?!AyHqV5b#w$MzdWb5j`_=TX7vdNbtLmt`FwS*S`M==q~rHIMUbH*Q%AOr935G@
zpX4?2eLjVmkd5+HSjU)rH6>roZ6EHIukv*i=xC{<m5xFkb#*k-(U^YLQBOyG9SwAR
zl&`kt`$<L01ZYU*VL$6gkL9Z-I-2TerlYwy|0j{*XvqTALO8?>1T(F*jy5_v>UeQ^
zPFo%AbhOvefey@9Jcc|h_Z9d%qO~pM`0!|VqPGkDgWOd|Hyw}bc!Ckv(L={j9m90=
z)X_`FKplg0^cKy1b@bEGM=%$n)B20+hzC%(PnZrQbIbCa!6Gw6$Fp9kg^Np3;N!)m
zI5b@NBXo=uaKbJ%O2=sNJSF#Z3{#SAjHsoyCv`lf<5e9~bd1$8PRDaPp4Ty6$J08V
zp?(1!3e>fgIi!q2i)P`W1!`h}nxJE%j+b=2tm6e8vkKHCF3Ob4R`+xYlXCBD1h43r
z%*5#JGuc?^NZDOdpr-10L&r27ugOGmUf1zOfjUv3-qi6Hb6W@F^0wpy-AjivZI};d
z3;cl2(lJ{{$UvHbIXdR*DAI9K$2&Ua>Da5|OC9g(cu&Vt9m{x{bbP?tuHzH>gfVR&
z{*Xzc<9|91v<rXuZ^4G@ISX`@EL5+q&N<+gn)gF?(^WY%cp>va$7eb|r9)&3+%I>r
zn5U^wEny1Du4y@im+M%eW2cVKb*$8}O2;}K+jOkv3DvPyy8YJWgrvpR=Mb-F=-1`k
zz#9Z_)UipxW}zJ2B4De~^xW|FV*U<h`+_tIu<g>Zn+}vAE_Y~c&K|)8T#f?!bbO^l
z*J0?$C{+7(d_ysAU&q(NX<eue7K5RM>adO@I*#)=>o`iu>N$J{9n<kG&rYZCq(b#x
zp`Z4|Cv-$~>@QSxm*=da=0c@OmlKIio|gg@)e+NSvApPDM%jfbr$e}I$FQTr)xl?9
zQb$~eC&`cyN<aG^F7T6zPNx4;l5BMT_d0&iQQ80u{HWuUjz4w$rQ@`YGdh0LaY@Hn
z=8ukZI?jt3OP1#RzAT6K{H)^_9p&n(i#mSQaj{UbT@XO~y=6J<Qfzmh@b5Y<>$t+Q
zFB&*ht*#=ys)N3w5C0Eb)A6^Ce|3~F@Q?WLx;U0@RCWK8q;N^Y_ck8~Y^4l83hnEv
zn+)7+;9djw87O0*EWgh;aHoNeua~;Tz^w*uGf>U|^OJ34T~*%j9eBHe3I-N+2ot|t
zSJA`s>-t4|LtS;30UCd|fr<jS>%(=`JqAwIRh10T4<9VcxmH)*Z{Ps~)eKZO@SuT*
z3{){t)xen5Ih6^zhCf)H!%M=Kox=|sAb!NaqXt&4%Bj6Nr*G3R#Y%3=p;!$Aj~S?C
zptgbK&B8oEH4Vhug)epSW$Fks(kvVl5a0&4=1`0Z(JY)!Cm85&V1R*416hV&L)se1
zHjrbWv4JKA!Ul2;6c{KpzyReL$ftjl;zk%L-U?W&tJBQ}>KUkSfX@geG+(I(v}$!u
zLj#R&*tRW)hnhBX7Y$bDG&L}vm#ci$+CVb{&Be(r7^8OKmIhevI7-|~_yld}aCs>3
z`QFYzdjlO9CIj6K^f1uLKxYG88OlP{g?^TTz>3jI{a5<B8U9U=GCd9SGSF8xOHOa&
zzY^NV08^cf6_OMC(WGoY{|6cvWMI0183qO$7-Hag0}~7kH89M;QwGM;7#+h6jAr-@
zj4&|L@DJ=L177jHZje%s3zLQP2?MO9!)y3Y;U^9M2Kcm6;|z>9@T`I73_NXs54C56
z@~TPUZp;1S|EBUEb{{K6=0pQ87<k>l8wMsBc+tQs1|}PL$-sK0jw<ys^R}*HrZG|k
z<h*L&HOWBYDF#TVGMQzFlrrp2Gw_y7WcN)OW!}DRfJ5Xkv1ig<1{NCl)WB>Oe+JRO
z{}^!t?--zA@6%U}3+EYlmxocQAC%&Ci;wd6m^Sr%@PUX?k{ka}&d4WX43&RmV1aNx
zF6P{@ibIPGe8w!2Q8E`BSSH7r<}ER>RQAP<bF)0uJoqbkScJ)n;TJ{&t9g!=<xmyr
z#YZyN@pPNG&BS^pn1PK3HW}D!;7bFW4Qw&6-M|h;DjBL(Pi-~u+uq<d={BmTO05g-
z6#Th?T>>_)%G=F6tf$7;Q(p+kI2KGE4ep^oo8}YjGw>B94V*WypOzai444MKHgM3u
zaRc8O_=Xu`;0X6_@S7#PT~GBZmD^DZF0Q9`)l;vm3Vv(gn1LS_lqNnN2~xnSr%o^d
z4hA(Qz^WiY#K6EWeZa2H?26}~qnH8PK*~T7LsmLB$`ZlkG!Qf3@bopvr?AU_uFQM!
zXppo_eSf(Yqw*65k_MhBmCIJGzB*~(djqEpoS_*8TGdyl3{0%A2!7=05HPD$E~lRr
zduaR|QT0=C_h$pY82Hn`Uj}|PaKXS81AiE}Xux_az3TDc?*?YhPXEooCB`ci>~}0k
z%67T9dsV>9&B5dK6-T$#SJw>u%`$GHjER2?T<3$y#PMYCUur%UEM@vZEMemIO@$>*
z{;O^w+u3D>T&1+>uhnX8u+^I2O(sZxuCE#_DJ*NEoQWs8=9OunZlT%+{z4BmP&A`F
z^_U1-$hA<x#2qGjo9JWWP7`;TsB1!*ejqBEsAD2v;%*c72&a;XM+Dq!;yx4ktAqDT
z_dyd62spFb59`sB!G}zcRyI*ZKvkg+3nf3ZfqK+LHBQ+dtZt%)iN|F6+QB6_y{3us
ztAe#mv}~XV*lNpY$CJUJiI9mL8gKdulV&2zM7D`^6B#D@H&D+uP?-X#hh0XT2{yBV
zp9#65Bv0sy25N5um2aXzx{Pe03A=$h-$0SpGg03}8xw6!G%(T7L~|1@OgvS-bR&AQ
zp=xHLv58>Qbhah}nhL$PJGjCNR&J<TQgcJqv7u@uUivZ-+_Np%+Jv_;NT;<k(cVN4
z6Fp6IFwxOO7ZY7goIMciWTLZ7As*dOE#4L+pxSOG-e{<%p73#Z6Q|bX5q#26?P{nR
zZ_evw!fdF9_fG3;qMwOxOdO&UObjsbu8H?d3^Xx_9y9TxiNPj@n0S)gF)`G{FcTw8
zj5Kk}sQkL$28Ww?&I=MWI-YmAp&DgkjETpYFpbn`6Tf^Otl3B{-5G4sNIhX<<J#bs
zO?eE^SQFz+Jj=Nz#&g|9>KW?aocFX~c3*7dhv0vW)bl1Lm^i$<^npfdA~QS^{BdjW
z1&M-+`{#XKBlVJrmrYDJF@t;)lTEy4;&l_RnwY}S#DY^zBpWGi`JJ9=(>CQPFG%Ja
zCZ?G<-yr`@6PFvQ$F>K%917Ok9(>Eh+a^k!2$pM+M*TUvf-_CbGBMZWyJ&;6W$8Ig
zbt_n@v2Wye+k?}arW3rwylSlGndsJ79qOI-zKIV^Y%;Og#C#L~GqKFXauXk#_{hW}
z6Q7w_VB%vF3r&1#;x{Wedt=_{#_AKv=hqsm7Y3GSmI!X$5d5gIS}YD<Vqz(C;Je_F
zFZ@=tKlu0c0&Z%BiIpb*2Xfvz6RS+DHnGOUS`+J1!DAbIhZAgVtd2HTfp7ebT5n<l
z^JiHh>%h*Y`5R4;T20fpnAmFK3ln=xY%{T)d@<(L-9biqhlz*3D1Eq*zuC`C>|(4p
z1li@#ZYI*P;MCIjdzm3egZoV!F!7~{eI}Z0ETog`tu6dYvW|hEJztwBTvm8cocYzB
z;JiJ-yJn;xHgSZ-%0g)iM@@Wd;<Sk~CXO-gCZZ-{Cca}7Oc+#UB4R=_ajmh^MNg`+
zI<qmaTReDI6BTTtnlw=sv#W^;?F-tnG!vjt6Xlq2O?+?S2NQ7~F%u~hMW+8mNH9-W
zf>sCLYNG0{D_qz_4O$;O$r87&Fxo`@(!@`peNEJltbR>Y*?mFhNbnT1B_6!FsjAXc
zoi*{3i9b#J#q!J4GVwc8%f!z-2qrF=xM<>6=4vWfe`he<)HmkC!}-6NxVo{B)#(z4
z`scN7s?O>8t9AshFqAujfAI7*RRkvvFwN9e*(o1z*G&A)%5UO2>u@sIV`h4t<(P9Y
z_%9Fp_FzfNFO}}9U<nKBnyP7E2H8EkHV6whS*T*6s)d^^l(BHPg?lWNwQvh-yM;R}
zl(TTFh25JAZ@2uqde7Rt+XyT$rD@xf-Rn;NHh8?LqJaH*klw!2!d(_V-V!|BRDHR!
zu%ZRhf19dG7Vfq1fQ1Jwzm9DjkawSjv~_vEe-pglLZxPk;2{e=R_0|iQ<W`bH%q@0
zxx~vh2OqZZh=ma4Ej((WnuW(K)U?pNnHtheRku*X0*f1;+S8k<CCyYV3$-l-ECekc
zOnlKy8O_wWW{P=BW9mfn_*~<|k>@4dg54xP%R<TKD#PL{=Yp9QuqWvBOna<X+TK#R
z*)+Sk%CV5%+z(Kmg?tMS*{E!zz(S#gO%^s=sB1x4m|$U|g?bk1Tj*(_mxTrv8d_*$
zp{<2R78=uL3oR_Xv_9CxLW!Xznp*w=`Ehly8T}RwHk_4S*Y)dIiygt17Ft<oP5I{P
zo#u)u(Z9Kx*j%-<(B4893tcU&Xs$X~=wzWYmu{{)T6`ZtkfoSUmc7jt^T#j#7P?!Y
zCwXCrHCH_tz8304ue3|e70-Te3w<n%urSg>Ukm*#46-oTLVr5Bg&JUCAa~S4^=P4Z
zH(;q;)FF4mnjovw5DP<TyoIqX)U+1r(-vyDh3zd=-Og!DFy6{WSr~0$yoIMNjIr>z
zg{LTN;Ry@JTc{^3{2B`qoOArA-tP5<JWV{F<1BFc_bt@M19hKaPA)Bc*1~fZ{%qk_
z*E?GJMf-V1zolYh{eQv2Bn$6b_`t%8bgYFpExcvnW#&Ay!oq6|M@u!?!mAdh&=oD!
zD=igoSs%1ibG`}welYmD#edz%U%tEa8y1E%%;$w|^48!qPG1%LXM6B%3)3yku`t)d
z44#zZ!I>6j$>`da>g$$jwuPTsD(;2!=2l8yoA-`|c^2Mf?53xGI3SNt!}gO(zi09P
zw*(pYuG@q2E&R{I5(`T$d}!e#3!hq8WMKg{uP^-A!Y2&qw?U@&LRqoefi$lB`mFSQ
z-O@g@u-NjeC}Xi<ZQ;R2`I)W!TiG%T%Pp+2u$Eb2VWovt7HZ8%uN(`q-i}*e$Re|v
z*}FP;hZn4r2(GjId*FHt8<=KmgTxypA_r4J?q#;;(=D{w!Z{1)Eo@_OEf^L|3p*_A
zWCh@PvGBQtT|DC!_OVJ>`0H3+v~=zl^uV5A#qouEEbO&F4j&5r++g=s>MINTEqra^
zpj4Fu%*Kz>`n{Fjb5?rWy}`1p{pS(eH_Ve(etsSiSAT2a7^B%r9Tm#6aNNRo79tij
z`mmKcA(Z(r{zxI8K{|6R5@f0zTIR>`(#D|0lWrktAtef<790z%g_z|ROuCUC=9c5E
zPTWhkv^FaXH?>j;@yXF>9z$7V;iQE#7S3Au-og(SPFZNWHm^#f{0AH6zY)#*k;ms)
zu!s2kw1xY31nGQk;aDs6lZERG@(!&Do@%9jw(tv!jE$RY{A%HXg}<dBT(tPm#~&81
zTDW9^)#-N&mpQSOfA@Z$Wi}G5)LLD!z<q^UD_&0iq{A&-WAdkhw7*GfzfkNr5ag$`
ze>l;?zbrB~O51p=wVK#4pJ%P4jZ(I+p>J!&HomogtQNLbH`^#<;|?2l+9+%L1*)8l
zTW#E8`wrZ&HjmkRn~m}|D%jZ8T5)%`%Mhy;M=8UqK4y0MT{bG(xYx#gHtrTZ|4b@<
zkBy?%s`iS)N;ZNU^Zsb9s<h#s)cKEw2W<Z;PCyL=58D3mC#Yhhs*TAuUbXSCjYn*>
zu+h@Sqc*D9$gvT&QQbxj8?|lJvGJIVnl@S=4#szvrWs6WKCNm|$#LJR0N1sVZX?4+
zh`U(j*Vvk7J|8Y=(&arc(?*t!-c8cEk?2AHX_DVYWsA;sZB(v}JR8bJJsbHf{x<5`
z{=u2JAuqbIu+aAJy$ldFr`7~Vwo&zMG_cXwMiU!L7L;ztxug7b=j;nMvhm{Q!O3mZ
z!qtUMZ8WzruxDB`8^;d?*%-T;Gt(*Aic8xVVq>U{Ha6PY=x(Ej&EL9F?QC?k(aHAn
zt-Xy79BQdp`RTg-ZB%C)U2Jr<5pSbd!^<5FcC+~*H~(rIHGg&R=7YhWHhS6UZ({)W
zYh&M*yuMUrqmK<^*MC<;-X5#ARlQah(t!hQ43bz67H{OVRc+d;<Ew+C+p32f=MS?n
z+{QCDp0zQ;#z-4a*m%;$C>x_~jIr^!?SGnEy)XEa>3_;Txjrvrhi~fhJ=31DG1kU7
z8{@fs`IyY>7N2)a0N$^jrrOQH1FQ3RxqZ&Y^Gp@G&c*~A*VgAvwEc?8kGFiTy&#xf
z9>$k!yli7?TlEUXZ2zXpHu0_W1#Q*VwrUE8Z0xl0xsBIsyl&$Y8w+i`!Njxiu8sF>
zyvg%oW44VsHr}=|-NsBC-?jCR;S3wzDF1AZSsk3|24~s0(pK?-TcMq*(@xFh$+9tz
z5oxDR4=Tay4J*m;c8Xo5%KMC+jsHoGeIUs*sh#?eDe4A4vax`3+xd616-x?PG)O<T
zv3^4y!KXGB*;s93jg8N2EVi-S#tH^&TX2bur4pK{Uj;`G@{i#%#=2YDE79Oe8>`x>
z?cW4f@u0O+PCLcVO6;z+vChV38(XMfl79ma#TI|=g?4JAjZMPjXAKsC2ivQyJnuGk
z&{r!8`H6VDEO&g8|52S?I-K{ST{d>p9vh~OFKq0wamdDD8+&Q(q2PWS2WSH`jb2@u
zM|XWCiS+oE;7z-NU)wmy@HJNb+pBMEG-|K7C_iU~HU){f$`R%U{m(42@vZpw7?VMU
zc#eFJt;;)ML$jeXjon~G=mHAt4?a07eRA{sz3r7{!)6t-aneTAM$E?dyGtkND;q9P
z3d1V<Vqwf_oW{q{&{Xh;_UfyZdAyb+ZKQ5Expe;Y9l^bB@Ov9S&?o#nV&g{{I!$k{
z5Atzviq&aXkYaokG6DW+ukP!hezI}S#(5h*+u%2E_r&oFi@%NAUB7#QOdDx2q{r}^
zjZ55b6yHVhyN$~{Q&EhJ;);zw=$t4TM{(80pEe$fqH+{}`ALpjq9_-|-!}eXVw|mW
zQ`D!|ZIp<jq~L#9{W_=?9aO0(N=E@<ZvLr|Vr>08sEHla4SaJHWuho60`oek`0v3D
z9n`H++!jT}DDIA;d=$6K=$%ni5O9ak!yQ!LD``|xqfF>7;hYqm_e4=ix(`HguYmia
zxIc<(GFqwQf9s}oR1eB1H8ks}szgyWiu5Qlg!yn3)uN~##Us*vv{-U^$=n)IJQhXm
zDC$H}vzT8iihjkKpYEsvQ3Rt1MUfW8>|*}-GNI)i)gI~66`4_FMNtq%VHDY-Cnt)q
z0IQ?QjUq3K{9^sTc2wx(TV7RY-6&KP4P>;Q(E36blnGI$Kx7CS3bRWm)g+3hQFM=@
zM-<JXXdXp-8KO*!C|VcemQl14{CG)UPaDB)qiA=7*-1?i%^jlXD4b40yGGGDiY`%n
zQoQbF0o|f-1oRZK0Z|N$qE{5Xqv#_XF3~TFzJh7<MG@{V-CH}WK>~&f9W0dcLl~FN
z|3z?^Foz2@ZVQcyVssQQM)8tx#t3~ripQgPB8n%aJ1&axQ9LDhtkC+!+Mbr~vqGPt
zoyGj;gfp(QnjnBSOpM}%Vmv8|86x>|6t6_FG>T<WOpfB!DBg|Yy(p$cF*S;}qnIAW
zYclJND5gd6y5Q9^_swE$Z$<I7a8jLB%N>O?qL>-QoG9jsz%1sHfWL}uySt0;ig%)z
zC;YT7s#O;?w2OMBi+W!;A4c(!fDfXWAI1NonDuaIVHdSaCN7BL<0uwI@fl+m#lk2)
z6=CW$yC`ZSU>kouNV-^tmPGMO7j^YtpL6VLa5<S#?2O{`C{{+XDvC`}Y!=DYQLK$(
zo!~V>(N(P%upx?#Q9RVu*Pkbppl4ULMMjCYN3k`EZM3;cF1urkWp;?b+g;VJD0WBj
zRTTT9_#%ouQG6*wdxierE<Wq3_6cWCS2e6k?g6?tiX%}RjpASw-$ZdJio;RZqW@Cy
zDz|s@4Xe>jeH+CwR;NjRabu%zN$Yo0C!&Z%aZ3#4V$h<{SuLaZBMKu5Gs?I3;-@Gq
zs+FZr3XKZ&qKNTO2zG_Wqv$5fQS;N?R3eIG6e$_XUw|S3vqj+LpM&2=@q=)F6na|d
zDHgXX{%K`9Bb+7O)VV0m3;r#Np9NeHN||2-{3`U?qiGif^cYzBhK5Vh{axr~9+sc{
zKwpjGPvMk``L6g&@O7crg#In`AE7MZl=(M`5+YnuC^?^ZQ>BYBVz?=Wo26SuXxSK&
z#eTRV;MN!_$<S>vloxP&40j2rAe1`qh~ds+d~0`AQSjYDcTd7S0v_qE?iFxf4EM+I
zKnxGYP$P!NVt6Qq$}v0~!y_?N5gF>N8bf|}KhRx-J{m(c8LBRH<0ExBG`73C)F<@O
zFNHOQSto`-47FmY9m9c-{b$^pGM6A2L#SBue8(U9w7bfPAv1<uG3<^ZD~9YC-VvFc
z7{W2UAUHRMycl}M(2MrOP!L0#7~018HXqcDp>YgNVo)*E6XAw2e$VWOrh(86?emBi
zo%fe(B%EDhPtzEhNw-xD&0}aGxFv1A%ik1ROvJ8qSFL4eU+K_-t9~@w#n3T^PBF9>
zeg~oCSLmTS$IvB)?!xIRw42a6J$xTF5!ypI{RH=p@ki}2I)*VZ^o^lk3`1iW7DIoL
z85qN$7zPOD^zkxfa129)^R{%!|4hK}7)A<zM6vv?9%@t!OOKbJj3qLU$M94PV@2Qz
zp-;x}hYXF2VSEhF#`vd#zU!VA`i#)qd#XTB-~Q)gm>`^qj8U6(a$59MLuF`XtGbh9
z=*1Xbis9uLUWwt27^Vqxatu>qm@4?y7$(aUPJc}}uM1ru%wUPon=!l<!^{|F#qf3v
z(`9sq(Cs}{q^EjW0`%M2!r3v*5&m4EzlesizZI76<y$*1hIfVkUJPpmydT2{G0czQ
ze=#hMVMz=h#_&-LpTw{*h6N(Si68Sghz8=*ZPPy${-PK@i{ZAzes0u~M?ijgzs@X;
zVOb2TMP@l^3@c+;CEdoNq`%My+NFDs_}4SGH8DId%yluWk70udZ;fGF3>#zEB;CzI
zx6oRV9Q&J}c-w`!Qz*MTVsL)-`JWeawr8b(5yPGs20IwyU~ddxvPw9p=wM$AU&Z*P
zA1=hOpGh7=G=^9VU&nAThVNoH5yLkz9E#y+4By6ZSaco{x>0O6c7qD%xX{+E{TyJc
zTs{<G@fW5QgC2tsgDKsgWEN%0Kjk05k>?6+;jb9ycbypA7`~6;hZy29cruiVAt4}n
zL-K5$`}+E>>olscD29{5ys5W(xVNg`Tm2ZrsTh8W;hgYK$8aWwvoZAO?dQNap#*aT
zoR8t>7=EGKd#es_i_ZP|M`Y+CFaI%=bWqB{r5JvX;qMs!iQ%%Sy&A)xF<jwc;c~?~
z(MSCyqt}FTmARLLRr~nsvR#j%g!A9C@?VxO;rkhKwoYjWaB!=G+Z^2F;ARoK#X%VX
zG_S0H8&gWZ>DyV(LFYbdq9`dZqZJ(7F2EnXKXiwKI~}~+N9_`sNFQ~#gL@nlI4E>b
z$-%u2YB{Lw;64ZUJE-d5VFwQsYk0`PgMxpR>6IN+k#2fXZpm7??`Gsa;^0x?JSMc7
zgX#`yIJl*+zu#&?8wh2$rpRP<$*<!e;2_IEwu7KB(;TD=2np>YQ!)f+I`}Q=-*DLY
zxXE!4c917Sxk9-d`CqpBuRiBH7~5CP>#OQIP!3u<Xyc%sgZd7dIA|(U8aQYqfI1sG
zC{f9u+qjssp|5J@pt*yV#hexbxDdr&%Fb;i;FuWM)<HW5eI4`@W_t%69dr`hLFk#j
zsxvKg&_}vmg;Gzce!h#kNw>Su9zuIMd_k?hP;a3Gt0(xi`u={Zzi<W$9Z)=)-A@fF
z#%=nkp$>*Q*z917gW(QFIGD!-a4^!rC<iY&c-g^d2V)#O<KS5bk2`pR9&<3x!IKW2
z5>@ZWRi|<Fw5j{^b|3H`l;a(~Q`NVs!NC9SQQ^Tpc+SB@2QN5y-oXS1L#z2|IYhQL
zso1I)1x)Iv=J!+U`>9tPOm^^=gSQ>L>R^h4*B!j!U}~}aYYx5<4Y{X-4a$Y474zQ|
zaI&A8mgQHN=?-Q%m?O-Y4rU3MEwn^`RjL1fCoZSIn(N>l;n#1Q?{A@8=sgGTJ6Psm
zxq}ZJ%y;mygHIg%PsAwmk%JE%v=t@XGPl1#hH7ogUnpRagU<wf>frZU>B-weiybU+
zu(Vji@cxSSQ`Kj^d<U*@u+qVX;?Y$C);d`2V2$9@U*)|d%dK;;UO25b`_{hOUu~4`
zCZYG``g`B%V4H)p4t{d5-N6nA#~pm<V5fu69scbw_Bq()V7E-!>);CkdxWkk_RRkN
zs^_DAyuNa<-@zdVhaDVn@U?@341ox*sg<56mj6@0-2>DS2S*)z>)@Ek1O}*P1OD^&
z-~sAY!6zI<9C!{A4m1b41KUB=fgw{&2Nu08lADEULSqgb2d;y-gP#Yen+E!7d&>p;
z(SfQ^x=9Bq2R}ME<)FyHNeACM_<`qcpc+0<<=*d~<<~@#VDUh8T2>@J!(t`;-2>I-
zUxViyoafnhQPRcF4t{ZP*})YDzdE=eQ!WX;$oeCzxH9+rZGPJSE<?dfetiFMaMi)z
z4*qfQr||!BaE(Ef9Hzj<f$HW#s_GzhT}J;EO2atBRyatNa#7kvSr@msfa{;Kn}yya
zl-<sQeBm-K9v47dPKIuCaci;6Ycf<`x)TTFS8#EMi#w(Jr;EQ_+~uO8i@ROi<6?%3
znJy~1xYtE57rkBF=i+`Bja@Wx@qmj5U1Yh)cJYvl$}VcVsN<rF%kM=|%|&$=54(88
z#ixVRqb`2!R7kLUkTM3T3xia->jgDjJm#X7i-a4#dGLSCnp8E|AI%-CItU232)Rge
z5hS<}zVkwu)6=Q^uYwF0nJ&f*R>Y)}i$RWyu#0*wwhUIeF7jN|b)iHu-$kK-0-+xc
zR-DL2KqXXrqt$oOpjdfB7mb8}Ly{{tb<xa48y9U|G<VVZO8CfN)yhS?_E{}lv~=;u
zrSNYZvMOEn`K?`$rUon0b}l+gx4qB~E;@>lS7o%5Fe?mEU0ie(+|5M~0o`4=$#9J!
zs_qb9Pfr&&ru1>q*Tr}jPrLjE75!a|axvP)02c#Y3~@13^m7X32e}w5+Nh_~5H-w2
zt9Dr<gr@x#9`0h~5as<ACUYdC&_0V`4AaTQf+6ZD7ke*-pO82{>4E{h5yZ(u)Q%x)
ztc&AA)HoN!|6D3~#>KNPUUKoWi|2%SeTbUqV)ljb^DZWc@Tnob!(VVQ$;Fz>;UO2o
zFVf%(Vd8s+s#lmxL)8=)Qw2<R@v49c7s8E(s!kWfueo@`#WWYMyZGgTZ*#Aq>P;7K
zx!~w@7vqMiw}-0v7sGE0XR*xMIaJM}87@*Tid@WbG1tWxF7~*1$HhDst6Z#h@ve*a
zTzukUp^NujeBk0k7axhE<_rBF_w`#?AF9p`RgZSeS|Cii?qe5Q|1O|0Y~+9HVv&ob
zE|$6Y%*A36TjHYT@4msMhbhv3+GjmDOf8ooc2~Hd+HxIz4J(Do(KRmCy4cK63TK^*
z4Fc9n%Fz-AZljA$E|_(k80?UhJxpzNvCYLUk=)KGxcHob>zGAh%Ip+e|5BJ7T0Xa3
z)@})Un_+6mFtyjkmo79K<6@tSuUs5;@vV#fE)KZ(#>F8~`?ZUM0yu>_nKL&GILtH?
z+sLHCNyB_E9b?=@_=M0wx0L=)z<a~gjad=tt{SEc7p4nOx|R!Dfa@aaBId%8E_eOq
zFvWwm@|Mz3Sv@X%u6SXXN(fF0t<=uX^OG*Vm+oa3KL|MO;*5(QT`X^xbxP=fTS~vw
zKI^QDpXf<er%QgA&N1gj{yZN6Og1KV`>b1st6}Z42q@sM$bSwH8R7^2DYzush<_Kr
z-Cbch?U40{$XsPL`z`#GD8J^S%!0JP<zEwCi`D*C)%iy-|8e2Ei+=@|h@)g2rQ-g-
zINT<bpmZE4#y7=rb1^OxM_IwQ2rXC4zcr3K8>Vw&`C`uP0xHCDhk!eU-X*l6(7T0l
zB4<^K<Joa}_r`Hw9QViZKpaoR@njqi#&Nu4od$6<jN_p=DvNNHI0A75<ESd#hlM^O
zl&T&TP%Vz?#he-f9urzKj#>h03#}vc*&QKH48@VLI8;|SX@b**W(ds`nstM-IFubn
zj^MD+T%mb!<O?W>W7+9Yp<n_wYF46|3)K@)Uufae*^T089LE6ZHi`ScEzlv3jsltr
zZ6>~L9!Cr5QlMoVtpv9g+D2&G;?Z_-v=>|<+t<bwJBjjcadZ|yPM0{k7ULH#*6toh
zk2re9(JPLA!tWi&;(to^iK8#~QdGOm#oEtasr|q+dAqiRJH4FOUu1rBYgZetsBNHh
z2gPytp4`Dghr}^dz%ZfY507I+F&-&kl+e*}j49?nF5uC-)1DHAFUu~*7Vm4EfbnrW
zE#R4A{<8v}i{trX&V)E73VxxOGbxT21-~Sexk}IQbi5MB`CCH0uLq{YF*T0c&!EB?
zycWmnas0j`eaa7bBaUfI%Oc!ggvn(J-i%{c9J}LqE6)GX=l`t4^f*3>V}alqLT3t{
z6~}A=bA-+n`i@Y}nkV30q3^}<zJL#kN9POpUmPC_c;X-bhZfmBj$=)+%qMXy6#S{s
zMM6I-9$hS8NgPWBEGy<Ok7I@4mBpM@ajY)J{N0$f#dw{7^>J({=4=$ODUQv>oGk*j
z#<8uKvptR-#dxQH&xHp6%=sdYJ#l=V#I7Xv#_=T+EP*8n?2F^8IKJ?($HV?O4#W}i
zkmlj*I1a|~R~*;k_=e}5zvmW5B#uK&k~ogUaWsx&!v8i7zIFGt<^_~ts}js4J|4$+
zGWzw7%v*jAX>sUrd>_XTaTsx!akz2B<FMke<8XK!{z#uTAv4M;6*FSe-EmhInFAVU
zuvKZ0O}-aLGLBRni8$s@3N@*p{XjUYNTxKcmwl3_xN!!jkk7e4#&L>S6vyQ_PRIS%
z6JKCf$8jbOzRuWwEaR+9{7L9Jq34DE%zp(I@T*X+OKqgT#c@fNApWIk<_+c*;anB{
zf3R|fv#9x;m+|nnj6WIuI_jqu8Gpy|PaJo9xW~iwIR1^}77yh-l<-i}LmAIEyOf90
zp6`U4J;38XoQ24|NrtF|eClMQ{<5CG3g6Vs?yVkf^KgfUJ4Ld*huZ~kE}cMH!Gr#A
z0Re|d+3xaC(F5la(+`zA-0PvLhlf4f=iz?O|NZ33p8s~{2RzIyUGSjizqt94KnC$c
zp8tkuf)1@Rst7-CxO&9HqaJE`sO_Pehw2_4^H5VXw5gC*!}H$^dt18y*4GoyXO!!m
z$wsjMKzbd@(Ejucit)9u1VInfOpxv&!^4XnUh<IXA&Z{z(9J`(ha3;hJ+$x;_K@qL
zfro}3@;u~wsOv#_DDbePMX7k}%t8;O<+^6ZT9hi>7$UCcfuKH}-!+qft;cZH$U|cf
zO+}cJlp$^6;g1m+6lg|w)#Ph)GdR7ahgKfid1&vUwFf3STU!rpJU{=JBs1-?eq!(l
zbnwv8Lub!FH5>}1W$;jR^6<=XMchT^^6j_8-97a1_**3y<)NpCULN{0QXYEC+`b+b
z)hcA`Bi;Ejy&pH2%w!-2dKlzksE1)5K0D^W`FgO2Az}=tQ07p@G+H>^!}ITFjF8yT
z9vaE+Xb)pN{;@Fse-s|~@PvnP9>#O^df88U7*R3fDG!zAW%BS6j}<<_dzaIn7W|Co
zzfbe|dfAlk<z+P56nfsnMCPrB2_8PFpFQEP5Sjgc4pD&b*Pi5obNANIe%Zq-9u|7|
z)Wc*CuX>olH1jZpdE(&>58rJJvAyQub-{co@D0u%%`na5FJ|}xZ+Upy%XnMx_Th?n
zIwQM3gJ712*&g2a@PUUp9_D&@*Td&3>x(<G-tjQc11pI>Tu}*`wER8c@U7z1GoLB#
zVS$H_Jv_KG`$N(Hk<fkT(kXvoxcWr8R6-4J97rc!MCa2R9yWPcEM_e8u$(bsG|yx%
z^-z9<dh&86=?V`kJ*@Mv-oq+}!^0X6YegZ=qs}$&XL1W%g@DutGP=P7@y6WnW)E8!
z?pH#)7-bLJ1n=|^I+?!R!w!$XVwZ7xYlz)SD>DzQ&RAY4^K%~XYoV7Xhd66DJ$!FQ
zr#)GFJ$%Vyl|VM@zlX0pobhm$_20t*RtygY>%WJC9*)Tp-v~Xzvv5B1kYH*%?D22a
zOA~ORqhiCi9(IrQ4LB|`-+4G8AmTwQp7lk`Qn#(lpoKO5%rHG9JS06>9&8U$9z73c
zen#AbBfu3(&hqclNkb!)SIn7zXGY3Hk%#X+{J=CGlXsGF-;~*HOy0Q)VV>L{S>-B(
z*-mlSeARD-Fh@@dli(-62I8&+DkgB=!_OYBdHCDIFCKpN{8vt2rq4ZG^!(r0zvSUJ
znaEXQ`(>38>UW-(5sDn=O8ym=3t9at^L&K*Q|#d?e=*#X!e#F8m;Ulf{y!}E36x6U
zx`%%mf-CtAw`K6H)+G|YPIgNtfCS1UP&NS$-IT!132Ydlx{Xk@pO$bfZta$Yzu!9(
zel;s6^j4v_2`!(%?E*MjLBJiNja{yl`CQK33EY!F)dU_+pi%;S{q6$^Jea_}34i1F
zC2)TNkr9f!;}GdX!mpe_l?3Qs8g}G*2KmG^?2!Z>O`ui+wG*f&3)M*Au>`6oK>I07
zC2Tbl;CsEfO>(%?I<jskfwTky2?P^<fH?H>q!4L37aE~5639%T@8xuI&W})}zhB9x
zhMWY#35-Z!WCFQVn?UCTx+IXFKtTen6KKO-Cr~$mCJ8i6`0ou@2{fQF3DirVzHq3A
zOOSH3Q38#{9%4H7y%CBQvNcP90d0{0-QGO$U$|Q)&`S0~4{$nZ+XVP#^L7cePhkEh
znFXPYu3JML66hrSj<hP2!M6Q`Px<)k%H1U}Fo8h{beGXS3IAOQJrd}dz|wQ+y%L~?
z-U-Yo3h@X0iARjc=$k;l1n#Jq)nBFzNPw!SP-|B}CS?XEFjSaBL<yN3C4ZPOhbN%&
z3dk9iz~}^~Brr9BF$p}LzzYdXO5lkEo=o6brdGm#;y;zZIBq$Cu?hTC%YXX+^=9a4
zX2J>o+5HToHa_FFI$3-{M$wea=Y>B}m=u`60R0uBd7QYpAoIlpwmzHriqIFEX1+uN
zs;ZY0sChn%fJ2iLc(r(x%-0flJ%Kq1%uV2p1g0@PDrU@}PyR@MQ}Ejfyv4}Y^KUr3
z$?zI8ot~Eq;Y<;jmB4If6dz1Khj{tq-S3?Q=5b#Md`Q|j<6WM(1UO2a?{SF<nY>f6
z`vLU`pVudLKT2Rh0t*xPRF?ZVflrD@X%c0)=pt_RS`IaQmO#1}qE*z%(WMD2W0oc{
zGKu90tVp0l5+##ZnZT+9>;$3-tWID}0y`7<Jb|?dtV^Ke?)0r<`T7JlC-Bdf(1rvy
zCj2YkCgyYfY%X-;YR921EMKiND^Ct>lZo3C*pUF4<gig-R|2~e_&R}u3IAsG1%o~<
z<I4p0FjbmoGSl`-;Fz@g68K62y<cPw&<~jzH$u#b-z0D-f#W<lwEXAL;RKE*@NEKD
z9?Lkw8ue!e6Xwgm(i!?=k~~Zm|Gt+1Z+ejgGyzNoUCdx^7zt2@S4~q=g&a!&(>2E9
zmcXS1eow&Vxk%vq1b#@slQgE1R00XXNuf-$m(wze#O#x@I?W*S#{^C#@Jj-}CU81|
zGu#~=%SzR<6z_+mXIW-PDptkw0)9^T7eC(g$YJBqg#<40tg-mZ5O07KASH(yE+@d$
z`jZ=>ADF!jv;LrS#%5d<OhC>x8qhTJI&-o`=HDX!kKp;C49?}9@Lw*`ErX+_k|>=-
zVG?zdKoU14@n8}UC2?~SWs<l(i3&;o)>k%(TLp0XElGdTa!LR0$L?)O-yYug$_wE2
z@{T0`h60t6xHpNrlBhXSeRd>tcM=sj<w$5pmCO}Ip?iukIrk+&&izR|kOcX}l)M2b
zTses<Nu(u_o<!9o9!{cG61?L*lEkA)yjiR8u_US`Q9X$oN&j+4PRnmHcmt#iF|U6$
zDL+yX=RF&$okSg(9!MgXL?{W~rYL#kp)Ahj?U7*j{n;5wWG9i61aYR&ETL2zP9isn
zeChI%nJ4RVA}@8ktx-uq5`9N10+mF)Bzh&$JBj*9G)RIsmTpNjqyb5E<h~kY^Y+*{
ziKa<3OXAuqp(aA#tC!t830~e>B+)X7qw6v$_R2^_`BpM(@|N`0Nwi6Vpsi4Xc1g4s
z+@YAm`*5cuIw$>$XqO~-r|p{b@3A*7w+lzA?n(5Y9O{t-?@k0gxv8-kyuJ6~7Lxvb
zZ;%M|6FPuYw!mF9E?2N`q#7vl6k{8l#E>M0a+YZ0MQeBx-9rAYkNCR^*`tyeoy6)S
z)+8||iN}-pIEhb^c!E1k;<Y4RPvWU0#wPJx63@%(<LKKzGoBGVK8dFVaIN?&p=V`j
zUeBhN&YY0MM3H<oi5HTXl*G$PoT!)mA~Wz>=q38Fbmp9){#}lM^cDK&|C>&kDIz~r
z<k{t-ZzM4-i8)EkWsW8BVOGZUBxdjwR4sUmmXFAIo49^9`TN&q&P-yqbZ3bGM=3^r
z`C5hVh%n2`{3PZj@op0DC0V{QKM<V+?@O1ei0Q8Xk)OmzT&u``kS$1pkKl=wvf1dy
zg-QQ;&9cdtNqw5cqNM+<|1626Ni0kHkNd?!mk6cga;_fCTAB18*((H74>9SgBu1?a
zu@tjv@hh*jaz@rAL7Umu3)moZV-lMLY!<pj=vJYW+?K@lV!R`Xoq~6+N#oG&r2l1F
zjT9bB;fo~p@cW-6zD)9m2=JX`)V`#D2|UcuBjYP^)P5$IbiYpGU=rUX5o?^u(L(~B
zdLhJa`F&X|@<)>XGvz3&O6$yTc@`?99ZNz_N&QbE!t#|u*%UM~lQ_kkOu|UQOd^>?
zDhVqII|(PrfB!;M3RjFK)yt+gsEV~>?d4EB36E|mlg8^7KbP^dQi2sGH_W$OkrpL!
zQXKm|6^>Mm`QW&c--?fnBz~k%PGs<c!CMEvmN}EeS-K+0-<iixN&fZ%e&xoK{(azl
z62GwJWc*A%zr8u0L3uuE`53jn!o?*2{|PR!KJ$}l^8$XjW>v3p#{bxRC5b;+u2Z-<
zg{wRoUPj3jN~L`8r*!`kdM$~+1(5$w64#6Ize$u3Ve(m6N~iq8j+9@Z7&2l4o`Qo%
z{Ethtliw!YlJc)-52XBOO1TtnP2si_%BTDr<2@<do<fBb?n<Fz3U{P%eWbcG<v*49
zjR&7-e1gz&HWr!1<umV2`RAG^u~G{6rck|I&V4D|pYol?iy5892P^LY56aL(DO66O
zir|M+cqE0KgBev*d_PO(gvT=<O`%!}1l2`=z{l-!*eF&rg<2^bPvN^1YNt>qh36@p
zLV&wSVSLKZ&rk|!DRfGqa|-DxWTem}g{IV>LRN~u_l`nt&CSeCA)G>P3T+mr=g`_w
z>a)e^y?18kr9hf5G?!qMqHx_5R0<76nDX^fs4sZgmh|4ERD)uE%_dnKZ6w{sLRrR}
zrO;e(yA)ca&@u%s)Fy>i!fc(w3p=xiP|wcn(TmfG+on*uc9>nNYM(-f6v&|&WOfu`
z+S7$$N?~9MgHq_0LiZH<rO-cx9x3#c-Sw7LdZqja3iWUbmG?=ZuV~=D$R~3^vBDdg
zDLFWWAt^kO!jmZsWfr9{GKEno3{PPMg-0n)@i!Gqzu~UYDU6Y|9;Y*RX44_3xBNFm
z0WzOT@jt<)j}w`(GM8fHaD!}5r|^up`dOjR2_^sV()5X3F2&z8!1@#>rC^NAoSnj)
z6kbf>r4;|H9<QYE-kk7T)S1GoDNIe_wG>Xa&RH-@Z6Bqkq;RoK<}Ya(ucz=v3e!?}
zGll3VMb4k26tx+>vpM~q(Td>h6sD)Zp&2R6Okq|E+vbFGMk}h?TqcVGT}G?9DZG=y
z!W2GDVO|RFrZAr;h&IseB{C@Xfq?gA-454sxcc~RrO5v<g^yBLApBTYpYw4F4Z4>4
zgnJ+D>t}msv|2<LrLamiwOIDMG=*g{YYC6iC`E<KQ&^G0N*Sf)YeuUhqJb82bae`A
zQdldL-AQx86xeh*eM1TxIi+{@(G)hNusMY<Q`ncnmK3(8uv^UD#wAkNnF7^v?=)$L
ztVKQKe4fHCMqy5vO1L7KU!<^y`|6#2ZnWB)0{2BHa64b6us?;bQ#i=tBirN<<=G0l
zmimUPm&rPm!eO4)ZlyS#8z*HuLidX1Z^cw{j){IUPoxlGAu94ux0d2V0Vh-Vo?=oW
z5>h}|AIuai)+k1q_M{M(lHy1`;ixNJ))3;dW0WUz*?n}3N{R;Jlz<`*iSQ38{Fp+?
zB9tn^sT5A9a3zI5QaF>s*%W?e!f>I+nLnj)UI1U4a!$bDnpyjMW^(9PdZTCN#T0%^
z;erhD*>|;U)+JV|6fO&=@fbxWg(=C2)&5N<xSGPX6#h=(Pul-)I@@0<P>j#Ye}qH%
ze?`f4J}=7p%TcC8kuO7Bx(F!pZM&lgHwn0<2<3`!a}mmj3?<77xUuxDMYyd9w-=#8
z5%{mD{z65*<y?;Ia(5IaxH&D0I`1sPU80lga?!gbF837qr=XJ1dxcJrlz5;B4;H~a
ziTFu8RD{Z0=p@RYM3o{`E#h0zF`)<#7vYg2bSOf{B0O5;f6}R4ggP`}ZDzG1R2NV~
z=wm`_3gs26R*`>at5zZ-P=sI+a*7b<Hrr*i?wT1Y@-Gr;Leqt^n^A<!Vw_ck>|)Fd
zUTzWciqNbG&5Mv<1m67F>K37($o~?XxKNnHstEOjS-%Jki_l1LgJQA90w{Ka)1(MZ
zg|qxXI+-m5w-(w`Xe&`m<s5BOgtkR!R|Ix%aL8<51kUAG=$(qtxd=}cVQdk)6rpPo
z1{7f+4H&7q3GH2k?gGf^A)qHc9}o2+-V`E}t&i~g3hh^f{sPFS*q|Z|F2blH9KDv#
zFRz9aVOSA{7h!0T|0N;6Gu#?4O)#PeBZcE0^7)m&Db1nLGHZ;`$Avy2^hu%oq)(mW
zm|c~#_+jKZ2CHJm`2WY$cR)K)eE$P}=+cX#AY!3B3@-_JQe2eY1q&8zh=`)}-n&SV
zA{_*&f;5pLh|-j%h#*A~QP7voZZ^p#yPE|O1pI&Y=9}O7pEKukK6B^JotZm#W@jhK
zdxC=nhcN1dP|m|r=7YbH`52Xt&+@S~AEWazCLgQvv08#{EI-4|$3$jpHy)Soy=RRV
z<lEdNQJ9^NIYK7q<2@l$1m73rHZoPnw0um@N@nEagDjt!k6FU`E=lDN^S#&7Mfq5q
zkGc7nmyh}R;Cm&73#4daYfoXJaK79v;i$I;KFY_kd@L2=|CKJ!2h~;*TjOIfvO<vh
zBrIB!@7;B5;QDIl-FB|c$0zyTp_*x(koAlQA^hBsLf(FC<l3C(+ay&s3*REh)7R(u
z*p`p8`8b!4?fKY|j~``RJM;PfZSjrpV7_lxK8XABv0DiFmqPaB<EyOXYax5NY#TJ9
z0@MC{9AFU2r-29a!I`D-+pG@{2|1jPBSMY}9?O<~C*=El92fFKR(?XrE4>vSO;6H$
zH+-k^y-yN<5`H=#XM}9I?cE3d%u(zJnE6QN<ClD#&&RL%NF4MV`QA<A1v(_3|6mBe
z=OaHK;e7ldau!_{a!Hh#{Zq1kWlMQQsY;P1NQ04lZ2Z7SIk}#XXjV>1EMp`i5#;SO
zZSuIAlCj*#hsF8Ihm-GJbzT)DN$11O@+*wDI~q~Q^mjh4iTs~z>2)F0VJQBakDEen
z2~u)9AOGc}Ko|wXo<dPUl0sqJk>v=Zu<#;T2{*}N!i)c(L`X?Ns+A6-Oc?KnF*S^`
zVg92WJQv3EVU!P}LKqK*@lY5Q!`_SY=a;?JT`7#pVcZqQ-C<PY_8vx+@c(wvd&9U#
z_!IeHsv7o?J6mJH>XPLKdw&=;!vB*~;ejwl^;W3%a2Pe&VgdhSVeBnbuU43!QlXyk
z+Jbe$$PvQQx<Vciyyu25H|)K$)DI&RhF>_dfiQwuerbiDlDse)W+jh?(Li{nh^39f
zXq+uQG~TC#(Ikw=+3hgehtVMnez@5*jFw@v3Zq#V&BOSDpZtdTA*?@xRA?PWn=sl+
z5lb@)ENv&%skt}k?-<6DVLTPa(_wT9qq8WpD5FdxB+rELtjN2B!Ri@PM3yr9LKrWG
z(L0PjVedAtYZxzu@p9O^@#CG|D`C7E_TDIYee_xw-8j;rzPH18J&f*Q^yCcA4^Z-k
z$lna3hmedg!&&-PR^BUH`c4?{3TG*m`$`CTcl%-V3wt-u{lj>8hi`x&$v`24*psY;
zIzz)476w1q9nN_VW3=!Qf+NESv<7eF#)L68jEP}P3S*oUQGbGv@nKJa_hU>M<;h{Z
z7seDui_|4jndsdphB2K18OEV7W`yxU7z@H!C_~`=&rB|*eYvy3-mT7T!8wA=ekf#a
z81sb84}14WloJ<)u{eyaVSFCO<+Zs>!dTALA$%#-gwX7=FdFUhQGp+jtq5Z+rzVV*
zVXO*cb=dpVjA>067Y=(ogCy(1;Aeju*uzJI>qYI;uy@7B=kLZaHi>+57>jx<TLf9<
zv#d1=w}rh2#1~=gqLX_!*dE3XAv*;#5Aog94`W{#`@`51_U;6}3gc@EPy2Z{#m`Ln
zSwA22du8Ah^5*RTJs-w5Vw~SC;j@^#3ZKQigg-1Xa5Ri#Tp;|%TRi?<_wnZHyD+{F
z<L5Ab3FCO!yQ}2Z@e>37K=6k!|B8r5n0^#;GK^C~s7B#wZbwIQ&j_9kgNGt!&k1?)
zu>U;wt7<{sh4L}<YuNkPo#{dtzh(JFE|%U3g_k%NoP8CCRQwsnUtE|f+N#J8BOFFa
z6?dvo!-$08gpm$I3q$A1y(3_<iK2PDi)On~&h=rxAs7>khmjD%J9!o*xjA$Rr0A}y
zK}*mU<b$3PH|#yyxJ%!m;z}4-Sro>#u=hXZZ-?<u82m;A)4yR{7k(ov;X&f2@LPh+
zQtdywZfl@`ih?Q%sowPqzXrowLEfm4^O*t_g;o62TVX1qqG*;E6H;773Dvt&W}-qV
z6{S@?NINRZs3@!AZWUEjZ)Yy2qP*%|DRYV$%oS8rRJ}d9l8U>8aLcW%V$ZjJlA~=3
z5${pGji{Q~zgP9P%Bq5yE$coN)m7ZDdK*y<L6RP_!#tpR`w#b%hgH;6k*mV5dLKyD
zQc*|sBB8eGospOraycsMs(3^sEb^(|#TSna<n=_Eal#!bprWyg$5aGW@7P>lMMy{<
zn^w_K#iNq-j><cHuVv20JA92)?-Wg;qN0h4%tCuy#S<!8sot*Al(kf}P|;HLb|LOR
z&4sY&$*TeGNQ}(P=0o0Eing>Z)J{cv74NB-qN0O}jw;@wlT|#aqLYdjRPW0+TsxgP
zt~P<(qIu&Uum6;ar&W+VBlxT!vt5Kdr{Z}Tc%cG83SU&wRmDpxURLpj>YbEc;j|X;
zGj&t(YL>sIB0azpzAlpPDtIBu#7}BirH6_)Rd1K;DL7wtyk08aQ87ftP!;d0=&fQ9
zU7GJ>*!NMrU8ui`zN)uC`U!Gf@Eb}4WFiJ~DvRcEI*5ZgM){PJVLwa-KZ6*{fv8~g
z4yTt?ZwF=?DP)w2(L%;ZPk6P?qVZCTClJOYt51;ZM8QcaCJTx8R#^1Dim56Vs930C
znu_Tv=BW6Pk^iKBhU&!zx3~|)12a``HPIonD1R|9n?cpwd%2#gVxEfmDoXZI20Wlp
zhX-}uw{y?o?zBk7VioIEe5zuJilr*nsb2Kf>Z5$5V!4WsRgf>^bi+@wLd8n))f$;H
z?n^YdO89Ek`yLKAJ-!aCWp8UY{)7XU*9{JYpBrvau~Ef#6+75UB6ky)*bly~T+7>i
zn^kO)L3xh=)q9BWs|Z{ppR3p=tAjVs+^cso9#rgCaX`f`6}!23xvr_t#jD~gu2!y;
z?LK}?$*rEjz{Spn7!Um1iXP(!(+n^Q4|31hm&>n^@oxN^?0nJwVGe}h9YKc(j;c7u
zJtu-<5qziOdlkBhsEXq%eo%3di%a!B<v*d~G`kV>_Ld*ndbq$z6{k2T;oR*h;c`Bs
z;;f2ujKJEBseE3l{H)>^A(T-5tBMO8tVlALQT{_#!DVjyjE$-OOETSb4yT@d{!5(6
zVdkp{tKhvolPV;lLgVU|SoQAzRm4<WQ}K_AxQc{|q>2>heYB6R;B(pJ0C)MgYUmtB
zsine}rX3Zo>V5ry&ylpaj)Y#lBBfX9Kq34{ox<y?_W|Dx75}Q<Q=3n4K7;7|o7|R*
z=5bzbalTIbZwvmXqCmvUG8Gh3NbrsbAf#}%v`7R^H+dft6_21q1UV7Zji6)%cScY-
zg1aK#2UTpnR0O3XC=>C%s97$8@)4Acc)JHbcO%kW6(Zh1=&p(pFk4BGgig3Sf+`VI
zkKld^6S?<@5jy1Fi0787G+Q*Un&5qcnG*;r)`)mRt`)%p5%1e>4@U4%1P@2Ruh7(t
z;3?jry`}I&8Qz4C`l^2Ih__MHiGXkY{3ZkUt4AX6MbIXKwh`2eAUA?W5j1A@j(|Vn
zZGd^=gg^vAA@v1Af_$^1PachUdmU4Q2pS6KK65eXe=Gte;(d_aG~z`L-+7xv@VKNW
zBL6#zFg_Wj)M*w$b5U*~NJ-0xx2d)gY%Ol2kajrab`dZ5Ga=D2f+r*1OWddkIz`Yq
zf}xUqDuSmYcrAi%bl?}c{FLFD2>6k~vw~d&nSCyT=Y_u@_@ZFfi1)P$rk8}gEcgnY
zCWN(E^g0K%Hn*2xcfmJUH-a~Xza`jHkZP>*wpb=%mg$`c-i@Gl1brf4-}*-|AcDTa
zne8WpY6G(th6ouXI9N*e<p!zn`_jNL8Sikh&nX@e@je_G$sqYX@QQr6Gg=hJL@+ku
z-8YUC93Sy+m6@GDr~Mn6C`ifV2;Pfe3cvgx!B!og>zFFlH$<>8f@#913(gSyKyYRR
zvm%%s!JG(|NAPh3A4V`Y;+;K~L@+Oc`4KFNc#C~O#5)x6dlw5M-Y1njXpt|y;9D%E
zRN%`aZ%dXkkRn(X!ME3ayxZi{oZI^f24TMM6E2VlRz|RjRg%8d5v+}XAGVUOiJ(;<
zg@m6<aD!SO0YAZHb37n@8Uep9#fTzq;^N|p*3eAD7V0o=H7|s=M(}wA<usJnuq}e^
z5&RLsr3iM=SKNmq_?{~wf?e!Y1cxHtjofZF9l_UJ4iW5$z;05XCpXIZY}y;az6kb5
zyt`Q*X5!m@{7M6_XPG?^!9kJptnv-bR;Wke;RudIyswcQl_gIh*DQB$uEb*z?{Ln`
zSZ-*?BltOjUn2M+;@#Nr4dO%uKguke6g(yPli+E=GlFLYIm~k$SNi}7tDleHw+Jpq
z@M{DYWW94n3P0@UXGz>PdBgB~1h4l|{!#tBwYVI?pAopU6Tx2*<g=d<7!iacP$P&$
zpvm6F8Kj@*-uCN!knIWZfzE-G@Q54Z!mk`ia_sDU1c?aD2<ja2j-y=8Jn--W!J-=@
zNJmhUUobo9=NWPYzY9vACvy2f=Wa>))d>FPRu;j(5nPLSw}02Uc{XUom*RgS-n%4k
z`M3$wz5I;zW(5DqHgYS1+v4Ge3wpg`P_dr{G!)cONW&eP_uc6dnz!FVIJ1Q{6cJuj
zu$W+RL2g`BC@K1P3YHQqEm%g7rpjvG3mQoU4HY$S<D%y)X{fB>Aq@{}xJ$#`8t&0>
zujcifW_!KkucCPmi1RmmRW*$6qg2yypXP0|P22jbYu;B%YG`;s^CIVd$)4ZuU6pf0
z57O+Dp>8|9k8EmcsHMTLA)ukQhB_MRY2a7Iax~P{;M2TdV}JN@fVadn@1bzDTYzsg
z{Op_Wn7M4!@UD7-8tQ9!RP!#ELYnvSL7sG#-SaB8@!sY6;?_Vc@D~J)WHmJwd`$E9
zNkx#PiH668KOwktmyg2c8d_*@G^91O)X+-9cO06A)*9MqSfF8{hPE2oX&9tou!i;;
zI<PGbuW9J0;Ykf$=mZTprvsfdJVl3V=&WIJA7xt~<;Ok><<Dq%Rup<y3`YAXEb8Al
z_`HS}G<4PQk|<M+@)tF*=!b^&nI*og;S~)TBdkkdHw~|A=&hlThVB~P(D0Uqw>9+8
z@TP{IQk|MKHLaGPgx1J=X?TaVDhA)xP&O4P(AVn#tv%S+>r7uM>aSsdkbWBeY!sx<
zKn?69dp_ur*SFC%14A?n)$qQCsTzi97|!s}FosPp@Qu)LGU^{Ce58i$*ZdR`AO6iZ
zR>L?Aljw5|<26jsFj2#hp@DMu_=(N>Ds`uMgxU8*K1Bn0tW$u(Vn6sJhHsjN=^Ex}
z_)rvP2+q{-fsopNdexa`F|?-nXA4>*e8nvPTn+Z_+<6)j)%->F=FS&FJ~rxKM7L`o
zIiz8UhNawf*=@$ThGiN);S$iWT*Jp2R%uwxMW<n<#(yLiVs$3Fg@;Y|`POK-P&2T^
zX}FeloQ7<4lqjs%@TrE)+~hTEpi2jaHfq=;<c~su*^vMxUHd9`7OMA|hOHw1oIzgA
zPa%!mJH<yrogEr>YS^cNGxCM>f47D&HSE%mX^V~S(eRaquQluyJCw5`<+L!Pd>#|c
z?$>ZY!$Gb=G4-t==ZIz*lSEG6VR6V24U9cT%TW!-M8YYcdyiAD;i87$HJo5rYWVB7
z+}}9wbkrdKX~9#1KMAt*NQru9G@KR9a~gipa9;S&TqElOtVNw)MRGyIe9KP>acrqZ
ztoY1NxqoQ5q(K+u%Ni&wSh8N2V-)_EAcgr<3;QRR46szy5D~e?t+ix5%85~t7#d<4
z;`E`0lm<)8ni`VQf!5pn>=N~9kiD`w@KTNZ=W|~v)rgi|?k8OAIy&jNs^M>Lo;qsk
zxTfJB4K;Ku>8o7Va6>~G9c6X=tKp`G5;`_N;lIT&c*0*qM^PQOh5sj5KuQY=781Ne
z5Q2pTS@B)F;Yfyrj^ZL=LliQtJD*!p$DKO=XnAfa9i^p|oJDg_<x;Jjj`BM0)lpSP
z1sxT2+@<4gQL7|aS#Wz_<zV69slG}T$wvDs_voMn+MzttRy8TAE_j~~Dz{i1xL>lF
z<{l6aJSfPfAJVb7R*;>krK7fvNssuO>!_n6M~9;0zJ5ww9aoA30y=^^9?{{GY&{*h
zI{Z48HVnK{F0i|0pg=$6fzu)K`Z_{78t7=KBTom59@W88l8nL^<MJBmXsqKgF-0Lu
zGYUkOHqr68jwf_96$NTio>6P2gH3cV)Tjk}5)8J~(Mm^a9c^^b108g<)zMBzdmUZ+
zDUBQEHR`8Ojil!z9(L3*h;8*%nost3*71~%6*^Yxcv{CZI!5RispDDJ)zL%8n>wD;
z@w|>#b-bqI1syNy=&Ivo!Fm0Z3qRF=iE^VpIa9SNjmTfoar*VV6IVl&bkosY2MOh`
z>&OV-5DA4;>#5@{9sP9-(DAm8UOL{@(ObtmI@n>(1^Z8ALw#gw`qDE-eU9iyCzqt3
zWOwva269|FhUyrm<9I)1u#Q6gl_5H!{S=l~?XTqZSB|u3)TzH`ZFtuBC>^79Ow%!4
z#~2-BbxhXro{n)k#_M1clXOhbK?@V5b=GC0nJ!UCYf~7pV)K12xBd!Cr)D)-eTI$?
zbSz?kiEyTl4;ik)XX%*DAxqskGL<wwkDk#npE{cZ%+do3gfqKP2xoAKj{JJTr8+(m
z3H6uhSS~g{*73d=WYet6TEmU{s~ESJ1AMe`&s?ozjgGat_Z0Y4#|9yv2(A-cFUTjw
z*$cjnI{y<^V2h4TTsyLI8DLx{tNJUSNzsH80V-_Mv7OTw#lR?b=-8>FQWTY=_(I1n
z9hwfEOF+k$I*#Z#D)#s2xOg0gb$lh+uXXIzv5%oxH^`2CBV@ne0Y<eD7V#<bt>{zd
z5ci5HJ`z5jJ}O)9n2zssoY8Ss$M=le1-|5Q|4ALh<2rs2azgM&!AbY}S;TZo$4??*
zmD5tOw3B;I$Isjf{`BYT_(caFDC8G)oEQG9AcYrn{FdcZ_+6@y{GsDgmS5KKr|`eB
zl3t~~Lqb@GnyD+uS`<cg7~FMr{HG(Pd&dJuM_Nc+FrmW~k`$yuN{A)KZ7$E0pF&rJ
z{|H{mYF^dxw<u8Ong~1EzUxA6WOe@4aZ~uMtc1!1q8OL*6^o*{kb;7R1n&@pVBsi=
z2%&P(D8BBmkW6_zSR#sd*7(W_mK3~Gu#{lwD9Q+-PPs2~J(O(uC@Kh{u%Zx}x+{vi
zqi7vPn<%P8aZeO^Q9K&Oy-`$+;=w2$ih5@xR_U<7S1pSBqNpAPv-b<u5Tx=0LMZ?H
z9=~_$iy|kAx>4^OSTl-RLda`JQ76kQp7S&xi6STxpI|+~+^mjYNFa)gGWF|65fWj>
zPJ<{KM$saQmQgf{qOtV$?(+2>i$aNdOR{McO@urlNXg?-a50iFacwrs%9}@#DdN%Y
zqcM4{M2%~fN4~aEw2R`kD7r<_K8g-eybuLXZXKguBtOlu-{S?_lalQu*jezY=>OvR
z8PR!Gkjh=6crMGI7sB)Ei&5{e+Le>OH<#(9C|=I;SE6_|%c;ZC*P|%5&-bp3w|f+C
z2<Z{Un?ia<@pcrmR{J;|Z$&}mBr@AegzpH_OUZ)4-cj_4;*(l_roK^7(oe9z;GPS<
zK~W5j;!lR(y4)dA42@zf^`jUT#qcOTh+-zEV7PBY6eFV;CB0&(j25rH7v&$4^^Nhm
zgmF>t@H|m)ydbj^gm5^MgiOw6Su{oJz8~cu5cW-tg3nf_X;DlUKEs<4|Db-}Gj~=L
zv!hrT#iA(YL~)`?;PIp0$^648<}$p?*PAEE?P$Ibx?%wxwZMx38ebg6a`F5USz=se
zOQZNGyWEz^0;KR`(ODt5Qjim|O33Oc)?_71N93)G@{f?<XcWhy_%w<QQG7*fvf?&I
z@mUmGqu3;l;tXyUvPF;+ME`#t#ZGSZ;{R=e+XZ)I_%&~6ySQpD2lhm<JL<i5eJSJO
zNV$RY06>MkQS4(pAN3y;m$GQT4EaFRd(tso?5{8mzlq}8Y#bgEayW`3*?^?NcTs%L
zDTv}+6vrjz87DtP!Eoj9Pek#f*gq-8f0E9elD=^UPe;L4-2Td$D2Sy7D4C=6&r$pm
z#rY_Hl_hpj^e=Fw$XqjEST_?Jzen+h2ror(Sx75sj-@1jaV$}UCH#sRUJ$BWbWvzg
z=!|(zV%d7pD2yml>~IvZDB@A@Ic18GgtSf_x~q6BH_1ixosXL{-*h-|JBq9H!xy>a
zjyNREQ3&A_UlBqNFxCGK*P{3*itAC_kX2vA@Rr`cQ4}`NWs2`+6t`r8CfmN-vey0+
zEMR!+uApEcL1ym|0zn1?cf3nGbGf$^HN35ckLKbs(h>$XZ1R^Byi>50V66cP<z)?&
zGqB0VW*g-VR50+HiHjyG8mMGoY#ig_sBGXa0}sUTU<`K~sA6~vyl4#f7`WF!Lb6p2
zR5LK#zzBo4F{p0fS&qoS{RV0nc+7x83kDuE5HwKVK--hPhYZv)kYnIs12x&!Enh8>
z*A`q`E|fbWP-{l0u4H`%>KWMIHt>i67X4W|lxtw874RDf7-&^GM1xG!C$<@&G&DjX
z1CJVLU?5MbuvX6j%1o~aM+Yd43~U^rP}tZ2t<e;PO$?rI(b+)LvY{u42HLQ71I?sL
z3j-|;G?#9u1C#;-mC0^yE3wmB`u}Fx(6MBQeQ0N(y)^oyfev)YK!wIT8fZLFVWaz^
zAz~-7LpcY<=AJU}w6yz-;G8lcdwS?O1J4_H%fQ<P&-r-KKsVw*rNw1mR|A7{L$4Tk
ziJjb2pUN*w#jh;is|G&H4ISI+drfr6UpLU*K*xQdH)!po?@a?es65rTa!BClm-TxZ
zU~^*zDm_bwdKq}fKz{=R47_V#)j*}M;DLckZv(FutJlZC#eoXt{X|Z(r&zs#2CfWL
zD$Mo|VTbv9X9HiA4Gm^*ujf)Y)W9$Uw7{_0aw$-|bZDf3Q3ehfIBa0FfiVWw8~Bty
zG%(J<JOlF$j5jdBz;pvM3`{gI$-sLCrWhzYNSRu_(PU|&-XNvJAcgq80ZK@irW%-*
z<!=vCJ}@wo17s6}l!5I-vkc6ZQdVSky5NUWN`<+cqo$2X78qD);9~<T3@kFR*uXLw
z?-Bz`4SXb=7QPvzus=kOi@03mne0k(1LSK3R~!6G4uLfWe!AtO)5tFmQa&-TPD*bK
zQr_6=r*H$qi3`d=@fo2_1~xOu4Sd16oKpjz8`x%m6}K9o+u2oGqc`a4?FM!j;6G!o
zI9OTVKE!s(cZqS5JwkRH_%bV@0vr8`Q8!rG+RVS#z&-|~fkIP#-xw%gK6JpqK?A>(
z4F$@0seHN6w<7O7SQ+UL9pQ>FaEW8Ie8&uY$8i}rZQy&+IcXqwdg!=;9}Ju@@S}l(
zd+O8FlyV_fZ*(B{vD%?i+&wnrQf+1V&=~_~8CM2Ql?k1bh4YJn^9H!eerAWy@b9LE
zel_4XaDf{XCv<@FMtN_oO&P3kxp5KwZr~58{#%J)yYeCTr0+7<HM?=r_m_b%O-Wbt
z4Xhrl{8OM_#DHeNFc34K8<=YO`dPjxoe&L?vpHtDhy2na7?)BCnKfmvOBzUV6SIAm
zfdVmb5!nVD18D=Ufg1+?<#I4^)xbZLob>%|fF8bPpv8<3Yu#NYwDgvb-C$R*Q`z!y
zh2G>gSk~J*ZX00#Zy9)htH1UsA9uF@3{d{<V5MLTKU@kFis24v6fqQzp-2pz8tx~l
zvLVI;R~(HOi=lW7C1T!2&2(oBC55w;yA36!VkjL$nHb8(P%h@J)@m_K-xn$$L!}rh
z$50{Wg&Cu(Vhmicw0xIH?h(9Ou!<nnxa9B6@~SZ}!YQQ9`^0i}!TSYk#Ju&zqK9I5
zIEI@s+=`)Q47FnD9YY_s6+@jEo{Qo67;<8$8$+`gn#b@6du98S7<Sz9`C_OiBsYfo
zF@%KsV+aVLLNJDjy9!Z1FDq#%<Wa!}f;0E~sM$z(;}{+j`;@R&6A_X;F2W}So5uL9
zl@JwL#JnkE>KsGM7+S^9I)=XnD@^TUXp`k_V`wLwnk?!dykoZXNg<tLV1TjosjU3z
z7@iUStY8;G1_pIrh~dQ;UW=hy4ExK47(7f}V<5gH__E+DF}x~-a<0wSW8TtxOR&4(
z8-hIq-xQ=mPa#~GZwu*_mA@n8T|tIf-x&JEa5jc>G4zjNKn&Yr*dD{c7zV{KKZXS{
z431$)3{zrwKZcK^p`kI1ieYpN!(td7!|&11h!{o+VfUD2$`A@k#>6mIDvp!v_!!c)
zLlXo^CJLD(I5~#*gs>GBvF_9uX2mc&hG|lFdJHp!d=SG-A#9q;)FjS{;lmi_WqUGL
z6f$Zk>*=sR3u9Om!zVGUi(#>7ek5v3WC%-zXOx#^?Js8&!dD2=&Po#DtFw|dF|5t<
zS?#^H*2nnge6cZxPo<TND=6O-!{!*aNVhY>&tmvITX!pCGRxWX9Wm^T;cyH`V$iRI
zzKCHD7hMdyB)d}$?H2N-taPqH>U_;uis3*Ed!=ZfAU7)(F&&KI+ZYbftQz`;aaF7y
zg<QWx?iI9iR05bW{6h@KgnuXaz2I@don^dT^h69l#&D9RBzroBQ`{)H36u?Sfl$bk
z7}d_maG3p>b!E%q6XARezs8`(5Q*UeW1EYD8^tLf(?xDOS^m3_KVrBfr2808;ZNZ-
zn9<LVAuN4hmO_o=jlp3Q#So3bh#?V!8N+w`LNUQOqqkVS+>M1OAtt#^4OT2EN(uJ5
z63P_W*{mDGl^Fhs;d%_zxf;XYQbaZCT+4ErW!)Q+{WseR^(nj^!+$a4#qnqy1>z{k
z6L=hV#Zf5k9g-R9W#YIa4#bgf`3lETQb-ZOqHz=xQap|lLZ~ypTi&bD5DC+rA}l4P
zrQ^IS2(h$m9OdFDANK}ZNw7j3gLf6G829?~LtQ`ROw8ULN0m5g#PL8J_r$&PVfDE8
z__$YiRY3}?#qsZ8<-WLg{vo+vbgB&T9tv#k!ML}V){cYxp*S9nqwUwZH6>e1kdMeM
zXLIX_TH8Z`oH**n@kks#Y90#Y4N+K~q@HAR1^saZgaidyT0f4E@QiYUI2y+BMjSoj
zXcWiG2XfoS(Jqe0aXc1>5(iK3P2*@Lq)FU+zCSMfi8vPR^f60?=5e$ZVGBV@TE@{T
z%c(|58_{R2_HlHG<Ape0jC-fwj)Kp|@uZMWf|PfT<EbovTF5i3I7nep7s);+_<UBU
z<B$NKuwCPLh0_=Jp0+Q=y;Jwg981&2T$p_Lz81&poT(w+6TDm8dz4d7-aYO;<*EE;
z96jS080Wtw!dr3gpx%c8P%iYg@Lqxxz9Zya!QOFn9->g_JqY6HC;I&b2MF?Xx3pNj
z!3>fz-T`cckRgIY1&0X^kAp{)jLyiocR(5?I9hOwV7G30<KvhR$DaxOmB7R}CdJV-
zfo2Izj^n*JevIQ}98=<WKaPcTcpOvX-f4$tS{~J=ahP$;h~onWq~)6@I8$(r;H)@i
z3)xsLK!p#5lgt&uLnHZo;R^&QUmVAhIQB4-+5b2`V(^p?ZH;4D+&kBO634nYmdEjN
z94q2j8OQ24)=1H+xOb}L6NhRj8zNszHOac=Jo)-KJ{8T+;@A+!M$z9al1*IZQiZix
zeTx+J9-^=!o1l<=_&knnacr0V>=67Sj-5hS%5_BCCE49^d>IE%zmyQUjei}-cX96!
zvNw)tLzI1S>=$w%j&I{QB>bS@H*p-l5~2>%VUZk-<A@MSGDXMY-gAf9@5SbEcB4$_
z2W|y&UOK^j%=WRZQw&;eXbIe%!09;7#Bq(iisNh?=i-RQVZ`w>EpYbZ_$!X{V&_5}
zzX|y@{=Yq(#xKV4M;w>p_+5%N>fWADyevAI&7WC5(emSn#JzKPSWp#YmakDnjXjTp
z!b~<6M?8)+=X8jY5TPXthoz=ulX0Yka5YhA3wN?QJTSAOE7h;WaaG9Qf_$}P(e*fP
zaLFXR_cfl={^ih01j{6FGmcwv+?H(7geUw@I7xv73W|ihPy%;kIT9$G<wb<>?Tk9b
z5-2X&5`rbOI(H^eN_gq4gtf{FFDJ<0XLY`JR7jv=!n<0jBuG*@;oV@6R7v2T1ny6u
zMgsRHyvI<_(jmUzRZVy=YfRM=xG&4AC$MZo?)usO2NHNNfd&chh2o(E9;U(&B{zYZ
z3Din>57tK#-s7gWV2()Y2xn2<EZH$V<ddR$BB4Gd{saOE1QXtT<%wC6`gE^I$l1`N
zBIm0yv%HjOm_VZhNE#>bm=Hzqals}Dw2-?CDm)<)W}8!(z$9)#3ACh766l`58ws>d
zpiKf@5_m3wwh6RL;NlSPb&S^w?Gxyn@OIY@2{7AH@JT^tI|*Sa(^CmNEt<~=Qu1s9
z>@CUj32$wZyqv%b3GY$zq994v1YXK=J~F8DN&>HDExeW?3A~<_&|r@Q-b`S40wWUM
zhToHJOyHda-b#3{oNo(eUQypo;Lb6=feG)ev$ya*f_(*9)GvYl!UqWQ@kikx(H|^0
zM3B{oCNNAmAEV5U<m{IXG1C4XqKrylv=og=c+cDk35-o(oJhutgqsEv^(TsO+>`?3
z?<FuLfiDu+#SSMhHGzc*ETW?l-u}jy_YV`8p77osW+d=I0y7ids|VBUg!e?4mH7W&
z1f+<a=~pH+H-UMH|7`;E6W(^QAmJTvNERosB!RUFd_upK4=rUd@2S5^_(y`v1eXhb
zoWKepD+PJo!74mKtxjM~!aH8_9LVgtgm=ZUIe{&l>jXY!w3G>LNMMr?@{K~MLqg<j
z$!A=ZgO%+G?}BBk;O7Z!6GBOqp~?<Xpw3PqJOk`b;7htLffEVLEg#s!Fuv^jicvaH
z;are^oxt7%_KAFd0>^|L;J_{4!33;a@4n)jg!k0`R`5^)hlNmbB!Q#CX@^<jcT)ZP
z1da=#Wa5y(j|rSic+Yy?+nh>xr!U6pZ)__W`iV~gA!h{73Z4^W>CZxbN#J}|@@oPY
zgm<m&T>)L>^l=FfRsKlevXDy&F!6$g!VJ$(Ak3gLy%U0(K!m%KiRvb_geSS0z~2ez
z2}ETeMgl30I)PXM42gIGi3CjgCmKo$@<IIN?m~S2?%!P~^T@Lk-fVJ2jx4mapeuMK
zyZWv%GPzfqC}QGz!aK0tO5nCc*Np`J70FGBaGtj-^87GZ`H%a&=^Zo33z#Tqdcs12
z92z;D3Deu6Nw`53HBr*UohEur4;3>}Tu2EM(@TfGD;?qsQ7IFpO_1MXqKt{MQgoMz
zawf`~sAPJt15~acIu#{LQ`D!tvdO>f>M76;b?!D%Mbs#v!o4Ok@~S4PiCJb@biauj
ztYzXg6Azep(8OaV6capmJ!GP`i8{g`Hc?Xu=d_mT9mPp<Ow=_|-$cmtHo!+r<eKmc
z_nD|?{_n8CBS%1lL6KzSJdp4ylV^fY!$(atFuk=*&KD>yXP$%`n%>E|kziv%&PWpz
zkDGYXL?;tZm}qLEg^8A?_qjte6TE1hS3AJjX>Q7vK1gY0dQTjtHbPpP-p0kvsx4>D
zM0?ZQz&n`U&hHVqYVMfLb~f>pSbo98(<YuV@w{Z8m0Hw)&P10ie^#CpY?t!;^}vfJ
zx|(=NM$PNfmrd`*ke8wi!dFZ$6xqpcCSGS-CI(4qcN4u#ykp`G)7#Lf(8C1rO%pwZ
zye0T{wmKiI@0#c>qaI+QkGP221@CO>x4tI&iKM?EpF~x8Ia$}wPZI{47-C|W3HplJ
zp)v(*k<O<BhnpBd2|FY2m8035w99UDAY-I;lCh#dGTy`l6BA8LGV!yl-^nK4GqJ_Q
zXC|hYc;CcQ6Cbgk^adL>F`waQVup#iCU|lEfr*(C7;{YT@{oJlEGk>R*@Apvk@JB1
zAqP8HA>jd%4}E@mvcUANqZcvA_k|Xkpxe6+RTi7xX=jNb32)1nnOJV(69#~Zk4>yF
zvBtz&dSIxsQiitL#45@1pu*L}LGhlS4&lo$8{+QDch&VKHksa&{ZkVgWP-SvY&5+S
zAXf@Iv)S}s;<#<{u6V17&rKXMaoEH*6WdJ;*caNz(V5su7jbGV-xnr!$wu*&IF?U#
zj&!$)FS$RA@gCEA*tbgol3qgs9K~LS)*yvXMg}wABKNa1CJvfjFn=Rq$z6#2TamEh
z5fevEoDdfsql-*@FPs;ZY@Oqx<>PF^1YcKqoZyp}&iv8DNveq^v!@w6!beZ{-bW}o
zW8$nxI1A?(t9)4SzDVZ%Jg2){=vToDg4ChpcN2e@$Vs7Y3YX|5dM1g(N&IQzFV093
zE0V}J5jHVAi4jStCL&zgN&aP5XbcP!rIIL}MAU>~qHl-59ZAGY#7+FejoL)QglQse
z!ZopYs6vILiIfRTiYT$AR;I`?@n=(il?Uoy5#_%HuL@Gmy4OUR3e>-0;$IX0nJAFN
zO|eGJ+a_*h^_v$BvULhG77B7uP5p(EUMHEh4^@yvVaXOr@=NmnlNU{*SQ2c4)rlpt
z@{&UC6r{XN5@nO9o5UkYluM#Kt0Zwx5*0+DvRJ5?1dUV@$*G|VYq8zCBzw0MF?(+k
zRYm!sB&sEGUlKJWTV0Snp$;qFFIif9K)OfagHrV8@X*6a)J&q5D9|lANz@k3T6KiP
zhbo1KDJ=3OQ7?%`BFs&~FBTq6B9KHdiM*_Z`bmU@vlVumNWanZoU#T<ZxU+^QyPi_
zeb_jO$Hb13#N#4tBFNU+D62n_1UtZ<H&3EP5^p4NyS2Y%60MSWIf+-2Xq`lxB%Vs*
z=_J}F(JqOOGE?oPtqw_V`Z$l703d%-N;?Ts*jdP9!<1)|cs7ZbB-<s4=aP6qEKuip
zF+##_5NYj2>10<yN;1NM=R(@B0Mo0C?O}n}lISLc{PiTd3xBzypV=NsyeZk9N%Z0H
zlXy$AZwvNH;+-Vk6|Ri)QNOqF*+)FyFNyw=r5~6bki?)Q1}8C4gp{zMA;O0V4$aCh
zo(SX@tw)8CNsLOO%v=7YNsLZnOcGO)c%Sn)EHpNW8B^<z7d}pq*$GKZ6nT7?e^L@%
zhbfbjm@_88^d94_nV)2864R2HmqgQf{^??z_Gby1A^3sdOsaMEQ-`IqMKVY5L&3RH
z$|5Sv7gGz8SeV43Bv_Hc#iB-qB}okZ*)ziQkqDP1u{_EDjpa#*y=wVaCb2V#FOpc5
z#Ofs0B(XM$?MVzDrhJmbx+Ib>`nL(LPhwLNSLOyj6{LKFkc~;CiU%m)ELoB*LOv7R
zDs?{>&MHiAM!mFylN<H3m7G@oT}gbE#MepePGasb<;x^4-0R;X$Wlu7Cb2Jx14$fA
zVt*1vOZb^sokbb4hhGX!;@c!h3cTWH+7|U6N#bY{zbElW5))qcA4}q=Bu*#sT@v3X
zaXg9iun^OaN&F!EgdjC3JedTWCOIWS@~y*^GfA9F;^!pJCh_s>o`m=d9XKKID|;)#
z^MaHx{l>-kiH}YuzbI<VUP|I}5)RFB5hd{#cl9KUBu))e@);XeAR@KGf~v?V)M$T>
zpF|fO@)(yqeM{$`2{7AvZ6LwjCNDr@CP5@mC1E9DGh3rR6D6KPjruO9BZ&ej6inf2
z();&A=34(h^zGF8e<yKG2)oVf^(07`ZV35T@TTA`!Q1r4TK|8-X{1mJccgG%3eOA+
zA%(&zlun^c3Pn;lQaQ*}LP$};VuHm5`IEGgDf}`lbY}{s_>^2)h@2_5v`|@5s34`~
zgwsxW$x@B`NyQW@Nw%`!U7~Zh@G63|bB~aF1*@h|O-O8*!lLRa+%MT0f;9ynNa4X0
z9uiXzi-c``Z`NniY_V1f#M**&QuyF(F0+rM;N$Quz(Tzga#L8B!uk~aDFjk@D}}dH
z2&Pb<&Pn0f6k<a|p%hxB&^m=Y$v&Dw10fAlP=qu}p>Yb2(I<4p(9qtcg^1)$r1WvY
zCj=>PDx_Ho&9jmgLRzM<ODa;QO$wc*!);S&C!~D}PYU5EI;7B1IJOsJmZ?(;EkE-3
zQ!E-DB6(U!=d-z8Qg|+fy~9F1Q+Pgw0cUdu?aX~Gg%?u%nz84Tu7WS8@KV-(#_TI8
zyebkpjcVOeV8z!3NxG--hVUMOZwh9NmmeNlJuK8Kg?A`SVQ>m#H~QaAc>&y8c)PlR
zJ}JzZ;O{F)(oaZ#b}uU#D5OzS|Bw_$ob%6SHie-n3`=3SNXDfwo+O2lDU1@y=oH2X
z={}+$tBhq^k|pmwH!vZEi7C97l}r*cIjjGFnp0AEUxZTyrwP)+bRjbYKM<Um!Ym=&
z;;8T;*U_24vJ{r5FgJyHlAWKz5+MsxSSVys3X6qM`OL{&CX%Hh`6w$dGF)l%p8w+%
z)}%nfv?7I-DXdCiwIoVNi1!ay)(ZJVFeCglg$*hEn!<$?Hj3Lj-zab(g-t1JPGL(5
zpQZ3s3O%a$w=!tI4t$=%HX)QSyFG<3q;y9LZL9cqO3^tZm!(X*q-eL`mnrNKLU~5v
zYergDvQNnV6lj482UGYag>Tu1C;Z1!_)f^76b=hHBFLhnDI9I@{nUu*`xH*5a7v1f
zr|^T26Isn4>B(CE`>oJVDV!7eX~8pDowGvt<Dj2~{33W>a7V`gn^?Rx@LLLhrI4S(
z#gzB3TeiUedkTM~@ZY_`OM;hEpzu%OGgkU2uU4sXIE8o$i4;_JV{0Iif|deH^%M+|
zuu3#rB_<X!5;KKl3b(m5`YEXtEbi?o{GEa=I%#@)xI%-D7-2)qx+z={`E$b+X0LHY
z4_B_Ia3h6(L{1?U{uTMHtmJ043YA&<pOhA`yt)M~6tcXAGCIV<7K&K-&cgQ=idy`Y
zAKtdm%R+I>Teg)g+-0GJ@RAnpw9uzyqf!>iTgYu4EN!8TNXl9$XMs4RO?@h`h`fU6
zR1~ZvYAj{Z-4?1?XltRJg?lXA%iWkdqE^+ygBBjLP|d=9BB^enh7eY~U&u@QeGiDW
ztH*p4K5U_;g}SuX!Cy<Tjv%wOh49B#IavvRg!M?4`z-G_Syb~|2v}%h;c*K=3-v8D
z5}l9*>NK#>&_bStM=kGnThwRbugU(;K8qUDr4|&am1&DVI-|l97MfaUWudi&W>VV1
zLQ4zmSaZozjXcv0w#6!KvPPI?QF{v=EIe=F1(A2O(An~0l4F0;0$tI`0=+>$JS9GP
z+QKuEeU{TLgqmGMhlGh$USx}XmDdHk(ujqZMYEeAO}%2_RpC^AO~?=9{2AwWms)RF
z=pp1y!M6l^3icnaFwy=y7T&e6z`{Zcz1cSl6D>@V&i54@Y4MW5TWkFV2M97d(88cB
zA1q{ug`ru=Fd@S&j1WRsu*xV4qb-cd>WmZnV+DV>>>Dp+f|T-imt3l>HQB-kmiMc`
z_bg1Yy!HFOg}*B_o@Vi4$IDWmzYm=*!WklAmhzb*nPp+NkU3H`*TT%<%7=nfn`iOo
zrJgl5$3(Ko!eR?wSlDG@iG`&WHdxq5NA*)aqTl){AG4D}7-P$&W5u@nDPLh>rNxgM
zysk1lm{v<9tPxym;S(X0ud}c|%Rd#uP~2!?lZDL|wpiFEMrh|V3tKIGE?J*wZWvde
zayGQx!Vc-iP7AC~v+M?OxAgY#aOI$oFD>km<?xk-uPy8qzR$vbZXnzJ90F5@9FQU^
zd}HBT3$$>^!Vw|lhb>$pN;+!cSXNHqaSJ~%Zf!hh<AjAD>9<mi%GlnfbdpoE#%EbL
zW#K0ar!AbZU|5J*IBVgYh2Jb(v~YE}^0S5W7Jjwx3r~H?02757enBM6X5_zHh=}Bm
ztmY*Pm$Up&3x5gE&q~5VRLlGIdd7lgLC=;(EnK&K8RKyariG-1gp{&%Cbs_2eg2e4
zGCi>^I2O_tTnmM56tU5Dq5lf~e8Kk*$3o9k_y29-n&rtUWC}RG>lSWU{BRsMY03sA
zOt-k9IiA98A>{vYPNlS9R;Q4SJA~70Mww=d+9+nDwCy!o+(ro-C2ia(*-X=!cG(A#
zQX=oL#%qX8m$k9DrN1110$`(pjfys^+x%95pQ)0KDmL!1c@v1cY}_sK46?M;2!(jB
zjcQr_sy1qmP@<ju_t{_~r^5Z&(i%2ej8G_l$i~AqUb6ABL`6*-t!=ciQHxb<)UlCc
zBhSX8?AX>oT^sdm<O+YpMz0&WKH(%IZUp?aaJEp84zc+s+5-Rl#D6RpsBa@AI^<NQ
zW&;}yZ9HM4sf|W98rx_ha@Kv!hGOIShIveEE@R|zsorCRLSZwp+)}VPhhSsk2!(1)
z93YLik|Ne^YvbRu{*E@Dw9!s@dnux32O+dZg-$k}vGJ^pW-a}lZ9FC9X+cWX)(jH6
z*myxC&#`YdGNnY8z9@2%t~OSTP^kQhjaO|<vN74lYc{&s=x3w9jn{4bant{%jh;ff
z+jv6=g*|M1JwhRQOC;AuD7|gGO`k~i9UJdvH8W}#M<{)4P_3`+Z3QI60X7EO7%TEY
zHU`@mW@C6(jXFbYP=9E)$_ObMWn;7mN7^Vi(lbScF(M)122yvVGS0?$8xur-q9BVh
ziTdx^m||m*?fu-CKel~e$OjzeBf+VH(`-x^Ldgsv)SPK!mT1nlF;B=G!4C!J+GsUW
z=`m8F=6sPX5M0RV9;vJq`C^eQv9Z*~M>dw(SZ!mCjpZU=A;{_<+n_a)m4d5mWX!TN
zYelkN@RMxmIw5SGRX(+`L9*l<g|PqM&GT)s@wts{Ha@ex|Hn<qR*{o4ZMVVfT*oWg
zAqqQfd|_jkjon-zHflI{z`-6HU$N9inzL_XuZ@c~ez&pD#(o>8ZJe=jz{WwgYvTtS
z-`M!p#!(x`Y#ic5U#)Z4#t|E5-8$cnREY2H$)oV>xxDX0cwwaSJ;UH!9*b`8$SZoi
z&Iubo+OS3{KiN3RdB0I;z>Pwu=(=ga!RtH)YBs%5$Rjq+**I_GS26XojpCz}U!>9Z
z_T<$VrM#D}({Pk>K}vt)@)@PD>HedX$)l7%7&bQIHWD^2+xSx&qGeY3i;=u1&yZUA
zHo`Uv{#%DhwGqj3&4!-kQ6cPPOseqTYSWHsBWWYWf!L^e!;>tNc4>ddD9;bJD3{!m
z=i0c!z1P8=4zAkxo7Nl@a&XPYKim*(+_d?8!O2m|4I8Y^<T=o-6PE$rvQfbC<g?D@
z-IkvJCrFo4*zT#ucQ}A36mz_R6n0R=K~V?4ObcSP=L(wIcP{UN(MoX#B^+<28jV)?
z55%cl%0X!dcR9G*K^X^S9aL~o(Lp&;D=)})skv3U#JWQ}=2Q|nd1VJ3M=La5#lbxe
zsyVpN!L$*<dmYciRi#(2Nn2E|?%;mM3m9@*8$Mc@J=&YW2OT`*;5i4+J9yYZO$W^!
zG<Q(TL2U;i2YC+aIH3O@ao}^1<DjmCRqqGsF?Ou~jY9RLKe-P4VxLXZEaNI59iUFo
zL49!!IfwJ8g9Z+oIC$JaLkEo<G?r4<`eQ_J!)VWA)O^f=A{Hn=I9ho^T3MWE)Kti&
z(F#Y(q81KX(hm-v6wkME(Aq&82V-s&q8*O6t%G(B+B=|eO0J3h4)pvOZ}^;-P7XRd
zc-p};VxjgJFN~jZaOGMf234~$%9|Z?Sn*luWEa7%W0V&hyy#%4gJBN3I(W%JPX})~
zc-g@#4!S#dL;A@9zUtsL2i@q;F`ma>7x_SGecBkMhl4jM8S}qUuNk9ofM1PK-geN-
zL2n0r9K0j`XCK~`x)~2}h4yvOk3|j!ioCz{Ej~tJ*fadN2@DeXU<btt+`+-p!jP<I
zhC3KR_d1y3V5Eal4#qhcFEcn=YK^6)keg$anLp>18><|=UT1>D*koyFqRbB4n&g1U
zkfwc3%KHwcI{3iBOh%(v;Hald9~d^|Go)hevC1q7q&W__iP06aMVS-#p%5-H&JOp_
zc@E|~-oKJ3U*LHEeSX`2brw7Pqdj<}QW0OJB1;{7<e+-tBKH?AvdqD92RkYj-dVBm
z!aw{UJNVSW1_$IT9IO;VzRJPsEMFsJt%Fa5tP@->_{(q~l{Y%r<e=?Mw7ZGT4z_SY
zuk$Mh_{_l~v(9~2QT-~mI{4hdHV4}s*k+xYSFppuPOhmd{6B_uzHqRMay||m>~`>_
z1H(a#`#<N}LB4~qgRdQQc`DfA_c~`C>~*lu!F~q^9MnM083zX)eB<B;&iMM^mf;P)
zWtC_i^~n#hOT!x+c5p-p`B4YQgnuXaJ(t_42FC?iN`6A@{3u9+Cxx7H@RN|PYlEj9
z{Q61o!sg)N(YZ~>D(uxc2gIMbvpF~~{8z3iAr}OH6TB$+yCC&DO5IBiE_0tLUEoiV
z|CKGJq*IN?sspz}kc27XfT%gpg+v8k9IH@Bug1l<mV*Stz(LYM<!5rfaSF01C7guW
zE>Gu>q-mB7xoGL)3O9fHB#rOV_?w$Q7ik)=rty!1>x`l_d}-Wp@GrOGG^(U=)4?rn
z*J+eY<F<qU7`<ssDVbA%rDbyprEy0Z1%)$Pc14hgG>V9%uxR!ft58@}BqPe@kQYzm
zy|GG@EkWA3GmTPdR7|7m&|v8_%B1<fbaTox`%q4^COI`%2Fs?ge5_I~jc;mrS(a81
zvm~riNh(%O<1QhT(B?g9+?&P&X*`%l-=)E-Y224a^)$X1t5i$l#8`zoe{T&oDU(BT
zzgVjwsEt(~O5<VSwbK~+QLttjwbEEwA!pTs;H|MrrEv;-RYw$Z1ZknJkn&A(>ZOsJ
zMzb`Ur{PZ{kVd048mAFVqt${SQ(hYNvpkd`D}s*-X^=)kAv8$M(<O5r%W6KJhLYt?
zgv?qJd_qXmti1c8V2d<brqMZ#rzlLLbsBBbXe)ht+Q{o!DQE4&IqR1P{o|B&X|zvc
zO_`hyf=>!|q_2wQP}oVb96R~bX>_ZY(<P1PgghhoY#QyxDU?5-#tUh@Oh=7VUQA<B
z*_@XINxBN@KF)JBvs9QnPI-;h)0mmYtTbLvqk9_t(&(QC!{&`N-b&-`G<rz(O+m_g
z3Ta+Gr&k*9$VBv&Iej;cK2p?Mvg|4+dh<Bt&^YA}X>@>eU{o5T(-@e>Aju9+V^|u)
z(-@M*&@|$AdVOQckP#e6w*Qp}2PtQajY(r{8j~5ZX^cx_y!dmXxajY3%7io;EDf@s
z#7R<gdrPof5L424KaJ^W%n;#J!D;O9c+Vk~mwQqA0T<fRpxev~!p_$lk<U(J4x==U
zU1@xn#@sa4rLjJZd1=h&DoEqwG!`%*$197{Se!<Q;yDY`{2qP|$+4}$63c>1(pZ|t
zM`=8NtI;xPlw{nUIm9O8l@)X#doE*Sqg|vktI}94nv~GbYo+v)tREPMpQf=PjV)<>
z#?4`IaAO*qIFRx=rIvURvROE@OO^$jH_hFe#?<l34laSFxu2)8O$hmRA$`XyJB74b
z?kVq1<I6PmrLkXTc2636rQNS2%SHFK5UzUmZOWFs18E%Ob}=+~h^zaH;K$PcZ>00z
zrg1>BEIpjY5m6&Qn#LdF6_W4MIG)BmF79>l12=&*uG9Z%{FuhcG}JUAX`D*K+7mpN
z#?NW|B%ImPX`B&$ZM<?;2>tm>8t2paEscw5{3;!|AUJz_u<``uuFYPDe`nKaTu$T9
zG%lq<|I>Sen|RYr9+;qHV(+gs^3w>*z&BRRdA67rkXjmg8fh7RR6J&;kxau#BgSP?
zD<{r<Ql^7EccIrDji(sr3xc*Fi6vy$mOMuYbtrVxxRS<IZvN8ZI}?;S9fQ{xcpZcP
z2%agC^UMT=o9(~c{JE36DC**tSfCpVxwxH1xgh?N@fL8sX8}_|ArmHeuD-+d<_Ind
z3*kn=?3%BF#a!G;iHn2Vg2i2waJ{v|R8j~xz0$6?hm><s-bESV%$60>t5i;xO~DE-
zD!Hiag1n;O!D2ZVYUJGIf>=fHZb5d58y$sJT~u>X-$ls9eJ-lIsO_STi~C*Fa8Xmb
z%~l?8@sNv(i-R*41Rr$0rw=XgY4xxuES#X!a=qB#7Roh}<Ko5gIrUuR3aKmjhzp;P
zZVQ7f^)tIT7;yPL0q>DPe{wSkGFvt$+1#7rJQs~zG<NZ5cBBo2G<4CeoTu=Z3&q6~
z(t#!}wwKH~z9{&(3ogkM6BKiT@^P)4rc%nTHWSiZkZrYc(b~mf7e`#QanaVrbQd#R
zv~$s(_FcU0qJxW$E`C&UUU2cGi%u;1G}y&OXBVjrL7sV@cJUNvf1<Z#eX&0Hj0*~x
zo)z-IMCCab&vO(LmFO@p0;_~_UZm^9=1YRF(CkFzWfy<f$=SL!k8Qo`;x#EEe{xN*
zyNfqm40kcY#n`4fJzTuw;$0VSy67q0c#C|Z(#yr$l4Zx(N}Z-TKc2}uy(-w-<^O3y
zfBIxqu#bzrLTH)U0WJn|t~UmUxEM82d1RZ{`XCpBUF_TF@w|0GmJSu2VJ;R-RG1w}
zWfv1U5iUl%7~^6BBX(nOtXQt`Y>)$?@o_H3i-eq#Z4;IL9fKcl3Qnf~UA)g7W}@<*
z46{mJ&a%9mF6)C+UBp%erwNk$J~UW$b?^fhAG=uLVy25(E@r!!<6?=p_d^$R*((<d
zrJ;E)ZnkcG;1RF&`65v#DvP8EPS9c(Cqp?rzRvk1_)~tPr7k{lvCKu0O?m&V3i?|$
zUM`$j4t%AHRW5eB_|nB{ar>t(Hn><Le65R5T&xqmUhv<E3a5st=jz}_7n@vs?qZvZ
zmsSQhyZB59`4$%yCMhILTV0e~<&o_!cDVR@Qyyon)9~O<7hf<Wh6mXV;x6I2lN9nj
zGL~-zzhV_3dj$`2%3SPcxK2`7ku!C`MGxW3e#7_?euzF?8>Cw(JnG_@3zx@T7vH(~
z-o+&smt7p^)VTQB#V;=ZQ+eJAdQzJBkq&ghPF7eOthOe2%EeFIH`aLkr`5qTqH|X8
zoZwf@bJ)sxnTQK6e&dw6XtF!FyME51NeTnzqKhqSgMYZV`g!nodTf$%Vv^E#Q(kzI
z@~4Zx7zQrlF7jQ3>4bGb&4ub>`MO}`$x4L#?Ifk(=Xv!fE2TH)u~c^v6*WVUlA?`r
z5-v;^&i~`;JD{Z~g05$0ZlRbZ8bFNbt^{3O@nI_%040hbMifv~Fc1ugC?Gj!B<Gwn
zBIbw*1rs2sU_e9^f!UeaFuUKKdf)rccYe;Cdu~@(S65e8_ssO}KDeiqB>rI*El(Xi
zf&aKnIGYQTEHW8V`4SSY&G$DXk8`y)h#r$Ts5F=437qBPY#06s1YG7WPIi$wf$Ry`
zE*uv*3cZrz30Q7K^7M+Ezb*$BdHr}}qWM4*bE8e0L$16eTAPnAO2P$~Lpc}ZqS)?*
zWT%0q_drwL#pq?p(-lchadB!HKh2HePa&@}T%1`Z=lZJPqQ~asc`nX(QPD*u7nSK!
zNu*rWMHM$%{yR1%Yc7o1o<lp@_TYRq)i6=b#YHa8Xqc$3NOFOa8ZIs@lT6(gr~G0q
zUZQxZi}&eC!$khd=)JYaf%xSvu5b}|k#KRPi-9f%xv1r$wu=rfI?~Al@j5PUadE4Q
zx-PDAakY!23*+LjS8|PuYh5fJXi8k9T)f>pQP0JHnfP@s9?itZ9f<$;Qu2Bi^;*^+
zKhUsP-^C3sk0at%%fyR*q;R8)n_M(-abEMp%`WORuFu+rE?D)}K*Qp<+VD0PEnT#7
z(a1$(t!?7s4i`;b+^$7-^!Gs1OnD1MT4?T~T%Y8H57&<kih94(MQaxixu`KHd6$be
zF79=4pNqCG?sn16#j3%{a|fAPgG|+yiBDfl-osH3GVQf^zl#g}RD0EVz{P`X8>D&-
zGUEps5-KkrWIh;V9(J)yNhb~6V@wqnk1!f8I=iUfGVxIFBtv@Jp%U^ZTy$~qoQvmO
zbanBhi|%EfKjq?S7tgp@-Y3a8S3e%_rg0--pol$Gv!{z^HQ>wJVt57X>=ua^T=a7B
zii^H3UUbo$tz7g`Wwv6J7>9Ej*MHf?@qbGgnbKlE7yVs~?-SL&N@YL(?JLRWzDo^o
zacqz|@4phx!eAFeTzu~03l~FO40Ewe$2i=@2p6xpnBrn&ssA+PVifavuo<nAF)qd`
zIsIr!^}!}J*i3LSQ6-aIFk9H~B(7FJ&aC*Zd4k2a8rPrdVw#KjE*7|$t~#?_%yBWp
z#Y`>E;$m-+=segoA8cywNwL*jmCs`Y21hf#>_n7f3tcQ?cN3CJwRSOQq*-DK9Ug4f
z3^t4X_-BL7AA=1Qmb+NtVkKwU#TFNDxLECCjf;&gHn|9gCD-!ghl_ED;Uuo3WU#5R
ztAxc3TpB|R$!3>dHb}kB96J^#IX_d<rD^?E>G)O`Z*ujy_`t<mE-w2v^^S{oxn$Vg
z9f|MyCT|~NuJ4~**s=cHzRCCK;Skezi22aPM=rLx_>`j_Vm@~9iMDO>O$jYfbMp}X
z92j%^C0qAP9`2jm+Bdmli22gRb{BR!TD)Jm_}ax07yoceak10IuP%Ob@r{dbUHs(Y
zXBXeO_};~C7kga%;DSbeA7XYXVMoOwhL#)5N&V<zuZw*uXV(>mn%YAR9VXJ5U(~Vv
z4BCPC`MXlJzbQGu)jHJNJJkH{;tvhTUoL+}gzLK{|77rong???yfoC19MW2n!_25w
ziNBe&Lk-DwyGs6banwbgp=O?QE{2*c_o(A>l4Dvtu6RPxRZP3^l=zC&43uOP-#=86
zQwu!L<WX?JMUm0qp>!JCh8io4ySAi;`!ROG^UQa15pmK$8j?o2G|o)ptTawa<K%QS
ziKnLV^H5Vh4F=?tH14yU<3kPkS;Nd}X`G(M(7s8k@j4@oHs6;#{!Pi*X;et#+%(Qh
zqhcDB(x{pS!^KvW(_rMQr1=L?O%q<<l(2YC8Xbn2{r!_{{^BrmzV=%!jS0id!DjWB
z4l~tN^3gDJVHy{u(L9LGEiX>v5>0@H0WPHidkk=1fSPGsp2iIxjE5`Ih^NsjjTcoj
zkwz;eSEf;mE~QZ?jRt8nOrvfZSEZwUyT0PpX{6G)PI*%C8pUfBe;#J)v5R@B5-nbz
z#>lk&Y?H*arU?q23f2uOH)-6MhBqwwxTOAx_)Tea-;<)w&1u|{MpM<P&@6Fl8n>m<
zNDX$gt;T84RFgE{GU9A_qhsB!oW(m-r&QjIaZn4?X^{pSw$$RecO>piqcvxl(~-s_
zX*`-nTdjH^jR(`XJB@Z}+@rnF+xyeFm(!|#((>uIC;IMA9c+t6!;|f`RfjZQ@0w&U
z4{7mX#qIM_9Xb2ACn)cvlDCh=JE!rOy4oX+$J2O%Ua7-f(&(DTGs>S-Wwv@+$y2IN
z=W(#)uiF!~Vh&wmZFddnTYeOQo^&;h=hApyo6yM@lnhAQY{Fu17Ss4KjlF5~N#o@-
zHl(pJ%}<Namsym?#5DS)(Laq5ky*T&#sIZ2ERAdKNDNdyIE_JRe6~CF;PB)HBa%bN
zn<jV-)moC_JSUGitffn%(ioiv-5Zz27*!}<7A4QvG;Z#iJU16Vb+{Ry#`XoNJN!5$
zlhT-+#)32!rtw-DQ_`57#vE-pHI11X;c02G6+=2bjTstS@=J!BQODx5()=(YzVX|V
zxoOPPR`b)$ZJRyP2Rg<8k}pbQaT+Vr{QqAfXO^U~ERE%9ELE?zo`~0M63y2Nt>wVK
z8j+-AwHDVYo|LxNq_H-QPV-Z|sLXU-&y_MVS)pnDO=)cA9+JkVbXa5cb{g-bu_cW&
z_N2Omu{XG6hMTQvys6|ZMM}bv$#>IuPeb~VcJzK4A21s=n6=V&)wKPg&IPp7kE7kg
z{v^$>TbI0gBK}z#pQrI%8sDe+SI6;X8sBJJ>TFMAM;bfR_)5*v;jd}=q-dBlOKdsZ
zFhjo8x!9MFQNrs79no%WvP%b2D&M1X%I5ph_$iIkJe=;~=QMsv<3t*68vD~YkOqVH
zPa40b@mm^yrE!>hS{i?(afq|iw*Emi%Y^xpN%(Eate2CVqc)n=Y{&$o+wAV|G>)+C
z{M4p-DP{;I|E6&?jsMa(md31kk^Hz?VAW&8qdg?eMVdw-jba*p8bKP_vQcN!n5LE)
zYIc!JBhQ7v$ZKjH*qve!xWp_EF%RWDz8b*xq9ozW!sEMh-0{HRGtDRzFUmJ&{>dK7
ztJ<j^PVu5HI2Lw69S*Hu+GZA=;o(dVaSsU(XL&f=!+9Rg_fWw@MGxnA(K4yzfeWFE
z$6d~@teizQud2q`FIURBUbNzl%uCUJH4oK2T;kzU4;N6rJ9UwVi#^ovaG^H2Iv4N4
z#Mqsp=X9p#rO`w6Wge12^f+|6hY?K@HN9v7UN|xG_6qNRH?b={)benxhm?of9_pyI
zYdqBTaFvIvwMcz_#LOlnNe}CGr+9I^Ec$LVch`BiUTf>AZ(L%f^IPJfewhWjbfbrx
zJly4@jgJN%8hZG~!?zx8_Hc`b4jwvsxYfgL9`5$gj=}NJ*h32sEj={xFlo4H>Y*7G
z-1zMtDs4*L;qi+T@k8IH2Ja||pNQ}7lWgu`<#0pN%EN2N<E_~p9oUq*)5EsmhRSUi
z$v#PvwyMxl`JUnC9uN1bwTC>M7;f(K@PLOl6O+4MO5RTkeUhh+Fb{fY@1f=h9$a&8
zkJAoade{T2*n1}rk9ZjGVS<N8J#_Zan+-iY=HYP<-8^*n@PzjMl!vF4bW!Z8_@p8S
z^^C_a{KQL#MzeIahYt2R56^q(scO%vt2=*8H5g&o<OL5es-%~P)+0=h5r)3et8hn2
z9}h2k80ujd&3fp|-1acQLq89rFGGK3>9LXzzAj-C5{`?l26`CeVK6)0Swi8k5oW&j
zGDO{Aw1+dDJdE)$*275cmrjo68Y$xp&RZj*XpdtY($Nq~BgQaJ<UD#<>S39O$(#ZY
zGd#@nFvY`EwJ@E_ipxg_{+Am0W`r3Lmh}6tWR{279u{i^=6IN^nXtgaJSNZ1l9NXo
z_BCHQi;N-jWFhnC<>VsOykMkRqC?<#C;27IJ*@EXhKH@p84nEmY7c8XaK=~ZK<bY)
ztw)-*9yWT|q>^=t>lHUB($CEvx{NgawfAGcm%Q#_i%OUql)uUK?%`u9dzdxSyzTM7
z<iq<O-qA6#`MXNkJ0r&82Ob#V57p0)6gj__2PNA)eCpvV4_|YM(WQ~*a}Qr=HnJ73
zuSS|LxxhVebSyG4h>XAvuHtu6J85=gl(&>n{+);Kx$b=2;^PMn+2e~C%KO;uVULG@
zJskD$qldj74tn_0!#)o`c{t$VR}KEp9)9t#-$T=PQue6GET=g2a<r^|^YFVS@E=;s
zAh1V<g;n)-lpON#mxsSS9O3q|v*bK&d)PzCDARUS<S_OB(Usn9l;K4D=i!)#f`_7q
z<6M{?(jGhyt_FYif6+)slsVw5FrzaVDCf42Rl?qL9`ee=G6|ixe8haf$IzH#`;q4q
zI)1dP%o`PX&KwXQ<$Q2-?CT^y+I+T*GS#ofDLzj1QPaoeK2Gy-x{n$@F7$DRk28H#
z^ifIe9KH%?`8eALQ;tbe!AI*8abC>N%08<2IM>H{K3?0DVv>J7%2f4njt>%EbmM#<
z)%<8VY}PHVx*z2;^PG|kRDNibVHX$CnGxnv9~b-h>Fbh96iH4S9T~Zd_K(Mz7+0`~
zk9t0?_mS{%rH{HkuJTdKM{OT<)ZywoN-iI57zg%3uWlJ_uJ*xfzgCUpj>nTeh}Wnx
zNy?8lSoU(AA1!uHT!}{M1|LRs>Z{LGxY5T=s?*R1x0D7xIO$xfrQ6GWqoehEE8F^L
zstp@ykMyJoqc_|%W=MCITw*yib-N!e*gJeYr>!`;W<Hv;BW>8yM=Kw9YI6pPc|yzF
zMq2wIQn{^<yM4Ul<6R%^eB9$>f{%$l?)7n>kM2Ht__*JX&b2!Gc+AHGJ|6VZ-p4~e
zI{N73<6%EK!RVkkcSi}2S%!=@pWYFjt~{c`M}5p5ZFs)1addPp@wf_~@X^JOPI$f;
zZMyn+(vJ>6cqa4vX!8_D<fEI9r+sW`mf*$Ho0DFS&S!X?<ybv^Jj+n~=)+O_cwP<m
zR*X)8eDv~>(Y~5D=TTea9=qlN9Zxx4_VEgn+{Z8<eSP%vF_3f7Bsz8JubKmVysC~-
zLidOj(sBAW$dAs52KyMIu2NEQj2Z4@gpbia#`qYi&HwF_WJja?=&X-zc@#62t{#gg
z#+Y$R8iq0Q@yt3(c=F?8vX5o#k#po@ijM_qXR42B%#aG!JRj42%uwN6#hHq;6=$h4
zv@=JGBz<}Mp{Hc?{pfJ%F^$_oAB%iYnF@=2EYS&Fs>S=pm|N776+Tw_*yv-E)~@og
z+K&#4=mT4=@v+wD|DA!3L3{((PP4>%<*cHFL*AliP@6erKHgBzUuW`+i85iUk2h7q
zW4d8u%v;LYkk{Ml1J6s}^YOlqAARig@qv#Ix$u4L(AtlDeCFeGA0IQN8I3V!n~wTZ
zADhRR9b-)IW{JPXm@j;M>0`S#>2th<Le5cojFGYCD~|o;B*{*#{np2K%zx!U5aaxQ
z&&^+pyERH|NZ)p;gbtJM@xhtpQ~EycC(JG%Ssy?9_{GOzAAhUne#Jk09Psh0kKZ`6
zJn$JCWqyO(6TkboV5}iI=;Kc=$+6~;kG~k|my(^wnpeg~y?itwdBn#*6#6)(!T*<8
zG1eUQqvK^N@LE0A9QSd;hgX(Du8*{K&2(j7rAf;pMBfK7P-MfLkGu~FP%c2|qu|31
z-~{0LB-cgJ2Q%}dvBnC(<rWKIH;$Gtf+%}QXouLF2b%#-4sce0vjdb5a7utPgQ$wB
za%zCnf+%Nbs#J1%fHPE5THLS0tf2ap6)OgjlP}FrRVpJ@0#wzibAl*7Y#3;(^MmM2
z?}7j|0#s98U2)X#=v4W_02c+Q6`*#2ivwH|;K~5qH{nwCzeXnBVN>cd)vu{|x#AUy
z9AI2Yg5w$&y-)Gri#F>7s2kwA0QCY~72xV1I?+l6e3ig80nYy}wIW@@Z|z<i@UMlJ
zu(+>xl0}{Y@<5W!&;2cReSnexzn_TL4{&3^r`GrlS~QBC!WgRty`Q=%0I>mm9%o2y
zR%dPraBG0uls5{{n7z-jXts$;hA6*X`5lU^Y8s$f5WU>-;%i!q0CO)&v<%QHz?}hF
z2dJDul??6*&?dl=080b34RAM`2k04~U4VPo>E8G=0Z;gGA15xrqXF&@@Bjn*H&;52
zZ%sZJ;NbvG#+mj39t!w##W;o0wKv{@l5uAF-gvihrjs@qInJ<Q=Kzm!bVpK8ayl9(
z9uLqZK-U0IXmKH9-Z=4k)x^mM;>6hI)KjWVgHH!|XPjZf{NJf=oX`OITNB@mGyje=
z&jxrdK>q-*GOz(&2+)UP=k-&(mzsT%i8|g?A8&dGXgEIV;-vr!eu<MjFy6evc>WUa
z%RJv7?>64_(}9<_Ee?M`fPn$VG6^{^0R{&c5nyD1A#4%=|Hi8{N(>%vW{)?+0t^rE
z`gmjg9jD|#<;17}TmFgj8XbUYB-_WEF#!&aH)r3L7_YUH0!$7tf&A}Cb0U}0ZIR|{
z0j6-u==Ph*sXVbf8lN6uMu2Gn|1NPn9B+s-1I!9AJHQ-O$W%^LonWY$m|)oIrU~ZW
z31(h^`5bA0g#kW49A6xOwL7XL7IC5{nBfyl`y(mJ=T9)p0xS>kCYN4-6#-TTSQlV@
zfK>th+!w$6w!~^B?@ln}YXYndK=Q)`b9jQ;pb^{5;Ro2rEoFk)#9%f`@TxM=Y+)vB
zO}@d!GSQGw*kq#F8lb~O(|w|Oo6{O#dw{P3yc^)X03QeVB*6QcU?0+fiDvjj^MMv;
zOf(+__<+TUhFxz9@F|aZe~Nz*;IjY&_QhZMJN~(nX8R*f32VPp9Y*Zy06Vxs1MCUV
z;I_oh0N(`omJ9PhoW<_~{u#jd_W^!jtduYQD}M35_^tpuCmIssj{)`ua08^(=AnsZ
zUx1$i{2bty07q1~Kfr+ie<)|~zXteCdDp{{GrtGORZWm!k~zqb1~|mcO%(<lj`KPk
z;P0}wPy7`%dEg}Lp8)@=@F?S;<Uhq@Wtz2rik}Gh*M{RWV-|<w1@O58XTXIM1jq!i
zGKgi6W%Ir9ykaguqmwKqs@N8VVSqw_A_r(iMWz#xm!08%`Hhn@aMT(UB@>N;-BICW
zm7JnTZ_8)Uv1($(N!D*w6Q^eIWx2@O=^31n!I`R4LGdg_R-LV++9X3>F@s8b<CQYl
z6N_3^&ET9&^bzg78JwHJd70=)zeWb<EBXC+d_gW&O?mYUE>Oa+^74AI5Wg^ki!!)4
zgG(}KoI#TeF3sSw46e(dUIsNYxIBZ}8Pv((iVW^(k?h?fSu2Bh28j%Am}EZN8wsz}
zsvhN?)|1S8<(;}2T$RB!8C;ve)fs-JIhD-d`xeRb!V)$od9PKn%OumWypzgcNsA;c
zu;KL?l&IRR8Gbt}RX>9pGq{PpXwfJ(>ugv>{RSD_oWU*HZ$rh*u~ez?f7D6p+?GMD
zR>?*gygJFS_;K^(?WNsiq8)o{KF+S2X3#8y<|=QI!QDz)Dz;L*Q?a$;U5aegMoHTY
zrcW{~@@kjCJ$jLEo@DOR>9}9<0mTOu+bh0Nu{I~G0}~(vF9Sb=P8mFs!G;VrX82J!
zI%hCCgE1LAmcip0yqH1n44%kf*ExwU8FW?BqL=fel4mn`E`z6(Kh3aDt+#t>y=Rnk
z%b<G(J(TzSKgfIB^QupSw@$4`d_jx7GSTg?RPs^=12Y(uL7xm>&ft{{`ZAJbt@<hH
zuehp5Jy*XWFhEDgp|w++gEJVK!LSU5sM=SP3_BWLW?_VqBU9^*%wSXo`zM(;J?o`a
zXKV)J7~2eHWH3I12^mbuU}^>vwMmOwn5<+H!!@;Djj8os)8d`e>T&GTl(QqMtv<;j
znVG>X6|PjAox%JJ7AT*?@s{b&)A*b`IdXDg28+w&i<B&Hk0nZ$DlRJ(Dy~put8*rs
zRT-?#V2w)X!1@f<GTElqt2NoIV>V7UH%>OC;oYP<-)Hbc2AeZ@J%cS7yph4@8GON&
z+soOS!8X--GlRD>csql4GWbZH<S^gO@c*^P2U>hj)i~*tf2fjMdpV^=N<Plu6BV|a
zY^-VZ8ufBM&EPX_(p8&$seF3|UokQ|abK%sM+Q5Ua5fp|Z<K$R!M92{UK;1TlkCc1
zcLu*@@H=-Tt=*^iqvBr0%cn(Y_EQEwXYh+k4k+$d>@?Xh6WGhITnm#8$sa0blm9X}
zn8BY~Je0w|O8&~=u#&$Ob64VsCc{69Y))%zdo%+s6FPj1n`Z_mRM}Oe^X!N^X-=8u
zNsvJ%gOh(Nshvlb`!?534n1<nXAp8F<}heaypTbW%OM+aOR<$=OwrE5$pTqO77eqw
zIg4^xoRr07S=7w(XZ!J!v#5|o#VpEaaf(V#&EoVd&QN}u;<J;DT|GhNGqre@B8z8d
zF|kG@uargQEUIU5K^9fCwrUpVr~?xwn{!oiz9O5Pr=(W5dTdxNi-#_XEbywK`j=*L
zVHOvu&c%vbA5C7OggT~k@}h&+jA@^|Jc}!`xG9SUS;VtQWN}p%S7&i$7C-EX^Qx0Y
ztukI)3ES2!lU#E&l~kMcvba8rYm{HBn9Ab1ET~-S)kE!*CF)rHEN&?Euyc~3Hd)-L
zMe?;zJH-DStInBrDIwmH#jUE)G7DDSmc<=fY?MXgEI5QFSx}$Dzg>%zu*arZte$L|
zDUvkLqJ?t)%7#U{eW{(G@jJ6<oyA>huuT^Cm3h)u$=zABE0f%#<lZdae<*pQowz@X
z2eNoDi}qRm%o$x6|12I>oz7WwP|``Uqayn%{2q<&kt`l9lk9P0lsuNj<7JZjek|#l
z<xkz?J+kPj<jE|a%HnCxi)}rlYTdKwrd73%#;D0_+hp@>nS~d!cuslkYKiBw_^?fq
zq?bxw%%XP|FDY+QEz#sZ{(LXWc3wA?w_eGjZx;Qs=%2-}S^Sp8t62=l;+-ts&0-)m
zvsjwNGHo(Ai`hzsWHB_0VOb1k@Us}31-l!O<!{^Lqq7*P#ZiiscZD<eXw==fEXL~)
zW@JH6CS);9btYypNhOmNr)Ke*66#D*^2p&7IgL-(<{UfC&QzYTtyvl+3g@VAa~0=l
z?ffhjC|Q`rVkL{TmddS;rie>aI22J<FwK@{u_B9=S*%jE4NRW0wX;^q8fH%2XyLCb
zldsPrbz#(eV-}mT*qp`dS!~sXxrL}{dCQOSH<Yt@oi=<^@vSW0F0<3FF5Y9BWpO~e
z{(zH6-?G?~#YZanIEznoEzEz$S@uYBTNXRA*vYARB>8C;pJnlR7GG%bE44}ams;Ge
zNT0v{KgDm9Q|Egn-)8ZhlEV)sDf~hCt};9OCmRm%$1HwQPiSgy7W=gJmakJ+{22ea
zY!tsJ*{{eY+5YQPINAK3#UC8L?zacC_>*g2`JpWS;$E6V%^VJA@pl%*EUX-kWbu!7
zl+WVdERJUJY>#ACCI4mNW|3BYEQ{k=oXBE%yJ$;kxUYoB%hTFS7QT`|acqZ3hgZ)I
z$%>AXqYrk1W<#wlC~`S)ZN_r2b2uZ1Gu25)@zflUgXB;yhm&$RMTN}0Qky5|aP*ma
z<yF}9aBAr@(ULz+i>E8HuY(&?XXS8q4%Kp~o<oHkD&|l*hbpSDu^8<Mm2&(KQ&J=y
zx2LM+a83^AYHk1hsq>W3L)M<JoaCaTu?zkm&!L9$D~`r4%<*plMFx3YtinqaFI6lx
za(NDQO7#`viquc!aAg^<l|$_^-u;3^UFBEhaJ7<T4%g*SFNbT&bgosBV(+@3XzltO
z>Z`D%Oy`ELqD}aQ988&{|Cgzoa%iB%hB-9Pp+yci=Wt67x2o`V#oH7c<uI_k)mV8G
zMfUR9;nW>vys46AiX3Un99k*AFNZsov{h`K!(BPFQQk_UT3sV{cMk1T$X;mq9_9Bc
zax1=H$peb4eK3diWxUpZQM4b<p@T{~mdQIQc_fENm2@tXU!vVTuEi&E=#oR%9G=W!
z%Y}(<iccv%tw`ZBIb7u=N(r%N4$tOrULNP?@mvni=de46JvqEkX8(sAdgbt94!v`D
zDTi-W-Y18bbJ(22>p8rVL*E?c<}i=7CtLk;7@5PU9Qx;?UF+2x1~AmhSsbQhP!5C3
zBtvo-TE;6>OAIgLBXZGG4V#S4VGMZ=lX4i#(H)In@|qd1WE>|~H%3Nmf;whiGgO$I
z!_*w6<?veBD5m71yFb;YYr|QJGZbek-m4ASc6JVPRC2}FDHiAFupoziCp*h?Sjgp8
zE!v`&<giFNi;HvE)*(r<G>1Q(#4_!1sy>RW$YEs;tJK=s9M&mWt++;;)Bbubl5AA6
zLGf(e_coPjZpq<|9KO;fTXT3bhYxf3NIT-7-pb+a9Ntmo+X^;K(V2Hu`8~z=bNE0B
z_heRmtbCi|CyLL$7H!L)=I~h#pQ~A_eVM}-$~h?3QnEdV`TI&pzSdSGJ95}r#=lWA
z`Ze<%x1)|pUf<`Ce8wSR^IclY^!PD{z1)%V(UU{z2C^@QpR}W&xqB;N)h|l+D;~(<
zS0%qG{+`1hN)9sMN~r%&=j5R>{+AMNs(<qqki$PY{L5W856R;w)B9+=n1hwaf69;L
za6E?-Ik;LZXxnrSnH;hz@f3Z<AP4R_jBt(*|2c#zq(S!e{~^~n@8+>Q?0mE+c+p8G
zA7yXp<d)0hq&zC;vG_G}vPR>SJWkD{yz&EjmpLtu)ALcvRmkHEZF^Q8?CVVBG&TEB
zw8@{XO-j?dqVh_LDc%&6P^W4h%ng!rRq~$BIE&TtxHON;@~E!z3-YL;<U-2r#Kp=l
zQsm9(l03FMiCwQ5V$D1*&*Mt1x<WCb7|%x${-s8u{LvU6v^r|?)Y7Ue_m<Sjqb^6i
zG<8)TH|5bFkE`=Y=5b9P*XD79R;BW|E{{#E5>%^~$Mt#CS2-mmc^rSuBp$6#PQoVC
zF>JfNgx8HqC~26-&3QD+^V@(Wx8(6xv*c}xw<_ii#wjV~*RM-8W*6&HP4ajtut}Qc
z(TpyYmut#P^E_Ix3FI)OWge~a=pEvv5O?O$I*&pg#XRoHqfH)r^ZbiFXq(5~d3=^f
z<8q01dEAr7h&)E-ac>^?<?&=5Pvvnx=Y3|K-Lb^Oc|4HEgL$;i<Dooi_DnwhWopTu
z_{85zPE4-LpN(|L<JVZCV;-IIVAUgebk0Yg+B}-a!cIwEKX*z##-J^%`?%s0id_^b
z?8=0nVo09O<C#2$=A)mGbjzbV_xU`oc;4xe$D`E}yq;CklcRVj$znehK2MjLBwoma
z-)ifX2fr=$qGE5wm-6V7$IA@bvFM9x{Z;r%9(`4xl79K<!zPkfwTfgw9s`*MS{$r6
zq)eIL<fH;mCWqxQJRcoV7Asi9QF)BcV`(1CG=IkAF)fejd5ooTm5iry9!I`TO~_-S
zN+u~zR;0Z2UOYv0rmB!R-)C>hj67yCjCm}|W0uP2<S{o7K84QC<CGfFj`!YQsd-wp
zKyg0T$dqWGH07<I?8Kh?lU#j#KV6*1l6>@{%Io^J$>sdx4|%+m$J=?V%wts^>+)F7
zslPwDI*&EXSSQi!fh3D-m0v%_P_iM9jk<8&VCLtsIgc&*=)p1?TD#=ydHzqGsTtxB
zDcmB?R(0u3ZNlYtpk4G*`Hl)d&g0!Y-pk|tJU+;y)`Q6p)zqC+OxG!fY9FbPa(eqo
z9^3NxR2z0EZ#{`bX~aIy<BL4L)J)!?xShk7#8-;rB=L0~gU?SKl*CT0{YLRy#qSiU
z{JkpwkjE}1yA?|$u}8^|To<sY#*qG$$1i#8S2up<beD^sdk--G^Y~MRrF$2Jzvc0}
z?tbKd<Z+M+PJ$QDMh<bQ=5bi{|5N;%^Pa~)%Blaa5>DUIQqnoeZR!}e6b)nFWXTDp
z))d3bRgzZp6n(`&F~d_JB{{{sB3p$@T0Wh$Lc~H`9U>XR4&j72H^g}%5JEy!4WrL4
z%Y`^8M3uIv9OC2<<wKkm;_MKg)WqTg@l!&a%7z1yr-j(^YVvgDbp|BK&j@iQccITx
zyILk#tPrAUllpbLCMzoG@p-C})|yIY$rMv1#DJCwDzoi5VPu)tyHm{hA*zMAD8$7f
zs)x~UOfF!LS(`sFIhKys2ytP^znc+{w@k3=inGlnAubJZS%{kIJU?mWwQGvGJd8e&
ztrMbdh$})IpJL)65+Tl*YOV}XOO>B{CP|&zs!39<UvlBGI3sYCN)l7~o4$C3XX{-P
zqCv>d&2eprREX<BP<VZa5+(H%ziXVRAA)#;A{8kApmD;4xKSlHDXu=-qR!1BZsA@X
zqIHN{L);eP4u&X1qY#ZlaEGxgT1~=ex4Aux{um3%%dHc&k4JweWMAt<Gp%Y7qMJ!H
z50Ux9p#ra#AzEn_`JzhJT_M_pcqqifA=-wxJH-7V9tinI25?V^`_%H>cF|uNxmP)@
zk@KPg@xc)7m5}eNXstLAqe6!e9kq+j3})*@rx3qAmV87#VX^r^=TWUCe=Nk~A)W})
zCB%adCtnP~AK-Tl@l1$W+^MFTCqq0H;%MvoZKj&1Lv)>L223^GLUa$odr*%M&noGu
zNJ-~=@tpGK6<<*7rTC>uP=RLo{p3C&UJj!J-T{zT*eQL8Ntc-P3(-GBvm%-o@hWpK
z#LWfVQoz6vgF^fmVsD7SA%=w59OCs5LqiM;F(bsx5W_=^2r-#M3(;e5YGjCUA;yOo
z6=HOV=~K-Z#c!sXu}U^gH55(=!E0iONg*mqf)e5pMH-nBVrmFBnZ^|~%}~PH3#OTC
zr<v)h-)fqf6=HUXr6HDum=j`dhy@`QhM1?<e8tj+UDX2lA}*y6{b)oxT2k7z)-DgR
zBE-6o|7{Ic>OfX2u43A#{_E4s8r9EVSAT5?;wjCOw8`!^gxDBjlh!)Zqk()g%^aF$
zwuE>iMCBP~yPDb>;++uhhIo^4m}aU^H*bY_n+timp()~fA>I%1QHYPZFsGXjLVTz;
zZ<}uJpKhL<ZU#&@pM*GgUHwl(d=_FGV?N!ioo<Mqhxlr``65Jax;Z%Akdu6=Mb>^5
z@;_k0ju1P!&_aCA*m9Pqn{T<eW|-s*LnmpL!})>f!L(7!kIXQ1gL2l=fjv4FTH6=m
zCvH0hoL0ckA%5Wo65>RN{UHv7_$$O=Iyv3^%ABEDt^)P>_Yi;RaA=Tn+WAxEB!_go
zl(Uz=)v<p=9N|``3Ka69Cr7#Bw05pGKc-G@o?+Y&=@4OvLI^K}&s85H%Ye)<fnv3p
z=Ew|FZl<|<rpbk9KGWp6&(Dlz>c&FJBQs4ggjIkPP_BSj0WZxolV=*c5LuvtQveEB
zJJWonb|^WifRhU-U%)8^9HQndLru;&tInAfAvI4g;EVz;D4<3GXBKc)0o4kqUclJ}
zR4AZo0d%Qi0awj3l?!-imZ`+<W|~H`4Eam5OqBx0%`(eonR5y_w}A7s_I%a+aF+Rb
zR^&X#6=-*y!78)Og#}zx0DEsxz{LezQb1kWFW}MwE-OT<EKxwM*`{UzS12LBTuGDJ
zhCHtPq1on2RqjP$0ksPtsiQb@wjsZ|fMnDQj?XsN6mYF7n*tWhHt)_h#8d&-X_35M
z0oRxDk^<^0zd@0vs6emwDc)4p>3zSY8Zx|d49TqpzW(6-0zN39Q2~t$=vzR)0-6+X
zdjU@t@KgbJ6wtJQjs<iopjiRU3%IX<`wM7M0R6eAfO`vQSwJf--l@HCjIFgug}aor
zQEXel-AdXiR+|%zD7H66eIoe-1w6<pDB$4&7!5k#UI{sMN|ifk+tMbFF#dDQV+A~3
zz@v0~j_F*$19Ku}V)r>_@Er3*0bL5{TEI+|Z=PdH$<qZqQ^1P_^e&)V0o@DuY>s)Z
zfF4SoRivb60l&{NBy@(z>-hp+D68$IBt6HxRMzU10@${X7GKu3Y)A>O{sp{R!0ZC%
z6fl6Be*v!*Fr|P&1q?1=EEBSTAqAW?H`*?ULv?`+W0KD`!<COv9H}@;akSzX#hd3w
z%Y^HFd;yaf!?_WkP{2fXG(Ga1NVAi*i{5k1)B>gzFoTgPU^?SG*StA58YZv#bE8%E
zr50!DoYIH61<Wg8YXNT-FrPVA!1@9<6tJ*>MFp(k5-wnI0sH2f)!Jl90Vn2~rCgr#
z%reF0iYpXXDy~wb=hR`pSIjf(3TQCTupyC>cJs`}0ygQjrGU)^yspNn@U$ur$=@ho
z_&l>j`CA3NUBG(<u<d*E%sWh&0$4?B)S-lgMG8MG;G+U67g42%j|=#ufPV`3w}5R0
zd|JSt+<Z8X1$@py74TC5Ulj0V0Y4P5tAOq5=l2DCH_v>f{A<M>+Sg9SZxp{({7#X#
zfKpG0^kjDdd$bifZ&E)h->b;sQ-{~j1^mWDD&Us__H$hG%mG#4D1Ox<C5!+y|0v+_
zyeMug9@Os0|59?efWNuT&i`MVM^wm}VykoJo1+E%$E+yg<RXr7=ix40gk8jm0^9<^
z0tyAB3t*^ur(nOHa$hk}%qV6RbBcLIj+d>91=O2wtYU<`xe$5rjziC#Vl*OAM3Mi8
zNF*$$#TN4;UcQJ^ia4`~vx+#i7~Qx}E8=t|-RDPlPu@?@C`Px!=x%sj{j-axP(-C-
zbpIVW-^`mIrG3RBw#+x%=bOXxqlc5KMVwPas)*}~IJb!Nibxc3WfA8WQLTu}i@2hQ
z>T1DRU}_d|f!eR3k_#0tQoLC462(guFH_{G**h=x7^lqzkq=ye96NcfB5D_LRS{Pg
zQHKL5Mmx`)3k=6j{~6x;3rw<zYgEo9$u-MSU&}Z&Pg0@t0#mODn!1(YD&qPgN{Xnj
zk{1?4UEHADDBh@elVStKhKe^U-l9lv*{V?yjXBb}rfCu57DTh$q=?&9!X4m_B33Lg
zT&I-N)%O>e7Dcoy;!aCiThfZ8h#!jBRYdC|?kZwt5wnVDL-_*pQW1TMXj{bHMYJp8
zo+7%d{N5t&Q_{7F`;}0+QxOj+e^9Z#;zNoLD|S%qs7TM*<PqhMDt1<UO!09=Dm+m{
zmomO<K@{pIi+HL`@^lf;DDOu97Z~ZDq(YA(daCf*B3@APoFWyT*O*YJmr7n#WU+Ty
zFE1DI3YX6;GrowvMf59TR1u?#=+B4$B1UTS0mbNnVT4ZcK$Q&A-UllVQ5>o`OmVm(
z$4dt|M{G;vyo@P=M##sO5mt>;$*~1yg1SLZCKfSC`Q$RmYf7dlPAy`ZlIe;w6xoXJ
zHM5JD!@aSHPnar2%qwC;5gUt`U&MkUe?V&17O}91MMbPBg3pSJizv6y)LUp)7qLY7
zQpIJ8%N18Bu2fv5c+o<`R?PnvN;rf^7n*ep<3h8(h#3nF$tK#@bbYgkwF}MbMZ8hO
zR>pI#*+TagnqL-1TPWQo^3{e9dvEDte7lHuG}<)#E;p7k{=SkAiukZh@=+1q!YH=e
ziukmMZ?(J6iqYMZ>y8g0pBMElK=Dh(?TTM1eyzAeai`)pikvmRFMOw4*7u5B&Sxw#
zyNlSv{l}8?EcvmBy+s5?WQy2V#7{;1Tg1^KelFsdBK|5yuQ~g<H7$xf;Q$X5qxY0w
z)wkaie^>mY)LX?r6%Q%W2ae)!5q}qPq=<iXvTj}!?MvL!O9%KLH~%8sBGT&Qaqj;b
z0d{n^_RGE0E8^)z(az?p0|OVCnOc=CB3Hy2mYiuxzKF1hViA@lg(CRy%vVu5zyOlR
zEPgFiPPODTOI}|TJ?ijn&anhq6vc9iCn-|rWJ}5`KShzx?G*CK{B%n=Szj)SwsgLP
zo@L3|mQ=E&vLzKP;X@$biM&Ooq9ywlMbCu9Dwgp5^c+k0R#KJC7e_C@G*xqP^j>hj
zCDkms-jWhas#|h_B}q%Jv80A2Tz6Mkaz_ytTGC*#xk$UdSn(3YOBF9utf_dpBAd|3
zxFzit8yZQdsVfz0Db`l3V@X{l)VWH@)rxfQT1!%v)U#ypVpD2_I@ej!Qw{Rzbk<^1
z-;x{Xo+V8!F_zqD2^ZAumfWPIi6#5z)M=o+q2kSow<zAKc$;D)#m0&o7e}j-4e37#
zv#yyXpDm8w^;%fMIc;tUg{*DKTYwJsS8Wn3Hg{Rl#*()zdE1h<mfUSgZ%bZc5G=XJ
zk|!+bV#&Rh@bTkOOFCO}pC$KO@_;40<5ye~t-%K^;gd;w#fKChR_vhIQL&TaBZ>?Z
z_4!c8M>0P4JZ4FqCFXH8c=Hm|m9sX_Ja5ShmOQEaDaEH1pHb|l*j=%QVo$|q6`xaN
zOlXI0_p;<g^`AZR36PTemzX}5yllw~OJ-W~iY0v+B}*nU<t*uM$tX)kTk@(U+$Tp^
zGSZR(mhjFy&=M}OL5hPFhbRtJ9Huy2kz=GLS1UIVu0fJ9mJr8UGEU8M3+0RIb4#MC
z@oJo8k|mQZnPSOQ)rtCLTW!dPd=}}?G)tzdKJ9aXb5EFM$!tqjShCWRIhKrAVwPF5
zoH{hM#LTmVx4ij^3ltYBE>c{qxI}TOBA*<n&xR|OM92hQWyxwwwpj9pC2KU2j3IT_
zDqp9#UU7rsM#W8vn-yPIq-8eb>kM(LO5QB(eO~mq@{T3%TH;yaGZQR%-;%xD4J`S<
zk`FD}Zpl}cd}PVTmVC<GCN7B%F+Nf9>k_k#^SCg275dzgaEbZCk}oac`3B!CSfu=%
zr4fE@$qq}tv*deK+i6MnpyXRizTxh%)U;e0on26$S^WbSwIzGF;ajqs>$Fh9i$_dd
z)K1@}|EosfPnP^_$-kBywd5DBUrUZy@{c74Ea4ONVIAYI%70V*o&L`;e<&VQ{8RCe
z;$Mmk2zA)}Z*4MdX;fUlG?HvvYW}l?FAm3vy7L^f<nYqyRl>EzT4vH(%OTJRg`B~_
zl8mnU$}!1WlC$LWn4A%lJcD4#$uTJ(lY%8hOU_?rc+0k8(RR&?`$H@iC84e8C_+&b
z%PF3u$Y%p;o)VK&wfSkWC|zlR_kEh;{=*&V%$V>|<m{MKh{;*8Xpd^JEUK*-lXlA@
z<x1L?KJd(qTUnKuRE^0wF*!FTjbhR`Cg;WE{Fq!D6W&UARg1}`F}W-z)m3tVVhzO$
z6)#e}Sn(1?u1z+qsl2x0<%(A*#uXEaS1Q(0<bJ|db(Ggtyh`zE#iZgjianP_nyHvv
z7n6E18Me&ar1I;Pmnha(yg|_@-l$05sNX>K8!Fzcc#Gn#inl2;+U%uCOm2_K!z#HW
zCQV~<Z%h^}GtE@eTCure3&oa-trYK6ERD%s%G)TmRlHlVo#H);OegkupYr<^A5eTy
zvAyC$ilsI?DDSA)N%0ZIM-@9OKBoA%;yW6*t}%HsCVOq!XUkJDc{(NyZMoT&XJXQg
z$rF>mW70h)Jz}yZCTnBTGbYc*WNb{v#pJn|JRg(6F&Pq*7h=*YCP$Z<fiZb8CcQPU
z_{#87Om=C?4Twn}<u5C~qS#llpJIQ-R~0$?Y(;Cli4TeiALF?JHZAf8@^aF0Ga@D<
zW5TLoio=<c%gs&8qnEEyF&WJ~pJON?j!}M}^6@d55R-W^nIDshF_{#T*)f?DlgVnI
zi=z8-^P2K0ic=M*DNa|Mp*T}<mLmP6Z@jIr`M~97ZcJt^kNAR^ER4yjn9!v~F<Bgw
zWieSElO-`(8k0lnDo3|@x%p;!glw`RCMz{)l(Se+A%n15147}tn5>V<&X{}?lMON1
z7?V$8vMnZ?)RT8(@*Z~pDlagvb9-5CwkUr?ajW8+if<{tt@w^&6zv63wBL`(hcWpm
zCd|DL6sxQ-SFSL$#?gHoi=Jwz_9?4Ym@i|po#Bni=P_x$B8tNoG3ly=I$x<*6z+&g
z{}twI&5hTzcI685ZA`x7+{NUNn0z0TA7Zj!XKI%sXZE8Ne94ODagXAUihC9JDgLDR
zv*Is`90m0`kOMLKRmb(4A|-oQn1eB?UBsW-7sJaZ!$aDNdG!~Eydr9QBqslG_p{|(
zTmGfPD@-;fITGdnDIQZiu6RPxRZJ^-ioRl?m{H^&MQiz(guD^ha;7Z>&5e_7DQ`=W
zfn8}VJIeEz9p#Lz=qN%_6w4`|q)408WYV6Z4Nte_R9j9{&W~(ps>aF)Ij*y8Iop;h
zwp7*H3bs^aaYYm>DpazgI9FCANogzI0eMm3JX_AUrLHYk*-}lLUtvq!mg?lT)KCdq
z(awd+FH*c%@e;*L6)#h)sd%{}{b#F$Emzu7n|sdO=vk$fR`D5tZrrspa-fbK1&331
zwJk|oZc>G7Y@srn-)PIVw$Rm-TDXowlSDnm>lI5B>nq-%XcXCdlm>c+Ogjy18K=>>
z#g<!bnPSUSTW+(ZkuA^K@|-P=ZE0f5{kA+{%k8$@VauJiwAP7eYD+U)n%mK%AU&tq
z7Phpqqm{_Vm6mq&FvEqzCBrdNc$Y2hY`MplHnz02<>{4?oY&nt1ZwhtV#G>wuPyi4
zGF;C$Xp`~>ZE0`IW41i5ll71-9c}4k%fnjiP&R|l)~Nr8Esxs5S3gb-ug)Arjrt@D
zRz}4qZ0TZ4cUyW;$Cf7<;pWMwx&N!HZ>%(5uZ%qB10LniXxnbKuq}<SibJ5cJ=I&j
zIX-X83$_fgWvDH^Y<ba^S2ZkrBkOI;%eK5?%S*QOv7<)_3Tc_x*Oq>^#8#R9jK<<<
zF8<V6ri5c3V9P*T263iVnZas}sZM9&tD>AA#<18jmQ%)<+tKsVC_8#n;LG?(4Lcu%
zM%&RF1chU4DSb)jYx{UxCfYJdt0pLN>z-`OYs&fVaMP;j4WivD6FvFUVO!p?WveYS
zY?*1xDqB|DGRv0Pwk)<~i7j*3kdd)vp)K<`m8+uVGv5}z?)6_~rmTtvTPoy-N{j61
zp_j#_8t3J<Y*=NMDd$5PHCbGt!j-o0d5oskXzh9mZCR_F_qBDle6cF}lxm|&Ublre
zkxjO2w&nL#hDL^7RiD<l32)I<r|~y!dCQiMZ24FN^|meV*z&G&D!<1F+w!4WWAhKx
ze?A}bu!zy-MQfkfvW*?t@~thOGSh6?Zp&A;SgXzF+VD$y#hB=Eed%x*{IBikb+}};
z*`c1Cx7zHqg+)Gh5x=wLdt3I{(K9OVn?KmnZME6W8Prs{Z?)n3DHCJNYV#x4!od_T
zKBN9*%g^lEk*^*3#g_eCM~<|0<N)2arLrSc9Qlo*V0JlTJMssIX^YR{uQq?$a>y2!
zIl0jM#o<gd$89-52bBM<ctr6Z#eWr#D*mT<Op*Sx?UL2e$q7HEr=K*Kw#8G+<g5y8
z$=H&$C1*>>4WCPLp`j0X`oG%n;;4%Zpd*>pQF9jgzC+~9I*!1RvmL46h&WPpjXBei
zvm7bs$VrZz>_n#)j0~eu-ibDxQxs2CJWcU*#WNK7RRQYoqMd8jm^;@*(SB@=sp!by
zHKvjx34N&Q$T^Or9J$Vsa~(O)k+>rXN6vSonj<wGx!jTJj!at<xq6u+7dX+PuA#kL
zsCbd$#fq0GUaDB?1C=?z^=r%(Y&$nv(fn2hqj#kvwH!%0a*ZRk9r<*Psq4s9j@03h
z_2iSSc+vSiYs}SDTN6DSU+c*6HHONkuQeoesh%U(JJQmTR*sZ7Qs0plPV}a8gCj->
zt=;IzO^)!XCb8Bu;ON$x#)=IUZ&tiT@m9s#6dNgW-l@;4i572n<PIfG6`LtGS8S+i
z?baIh{?uA?rz6AHn!6k!Z>`87oE4L~Yt7ws%#rbqOmO5LNA7jxIY*v%<UU94cjO62
zx;XNHBM&;l4>2Eiq`e~#F*y3s|HI7o*=Ez)==04Es?brflj0+ak1BRnd`yv}p#E2D
z&F^bXS4W<7q`M<M=#|z!?Z`8n3o6VsS+(3v<t(xlzW~tFk!P7F>!P(8*_mN#uQM+=
z(#w${jtq6=MMij4w3iNWq&M5nG%u;7kK)UUuPF9a?5EgY@l{27SZZOQBaPOXK}=DV
zcUl*j9p(sK8sW%DM|kEo+!4y@#wbTdtE*$^;ksya{8j@UCXRJv98EE3DxB!ZBuCad
zvd)poj=bi`5=WLgGR2XpPIN<A$RuZOJ2Kyq1&+*cqWcSbA<k4jOL4a19L2ec^At-@
zr5Ho%^W=o5+>6vKEiYEWs%4JwRBDAIE1l>GVY$kA+_B1$)sC#ufl!TiF>aM3)<qwg
z@!quFkqwS~?8qmMY;<IkBOhpFHaqgVBkyZuwrG01=g6#e<_+ar72i~ROYv>RcNE`M
zWXzdV>~50=lU;x4$VWPTJSd31G{W<Lu1!kTna|Zd3OR(&l(Y5=N4}(E3;BI-IlL~i
z!;A7Aj_l;3fLsar#*uHir$Nd=zH{VzhRcyZ9r?kLUEJ2VjXSd2kv)$5<jBvC{OHJD
z-9UJj$d6_Bai;WhYVtGJ8-Dy<bG`YcOvsPOe^vfFw|(9P94S44<cHultdGvYc!)|o
z<j7x+9OLdmKOOnok)uv@3d#?`k8tCiANl-`6P@|+`d0}*mgNV>|EU^{oN&Z-#CIf6
z-{?b{+v9rUIng<7^Yu|j8MXZKdXsY`t6s6|N7kFXBcUS`*Be$993d7JNi0Ogn4%4F
zlu!ah50fM(L0(^PDncqjPF7xC@f5{V6;D$<UGWUXGZoKLJX^7XBAukQ%8)9M%OEu&
zRT0JEVnjhc2XZdtJWkU*^Tm2|5#)SC_nK;o)fF#Ltf6?JB2RszOwedwqHQl#q(R!b
zT<!B?g)0yRijp}0D$*>&V>DtdNNvb-kmn(FAax<_AooD7f?N%`4bljbgj@r;5pomc
zT1X0VJ){Kk+j?^y$!b%NU#D7cSggFkT(!Z}XR8fnN89>0KzI(&ena%0YuJ2wL>eGE
z*lY;7nYDbgm}V-jGPgi(Wv3gWck@0Q%tW=*7}5mN3UVjpcE}x&7LZ>zn5K|skmitW
z8w@*Iy}^($0;LaNE%`%$rH0Qf`3<JE_SIG;?DQ@zwt;ZTvv@azeNma+-AiX6k3b%U
z+^_QXkcT+BgQ*8N^&8EDIw*GWu#%3%jZwcHAhk9c4wH5|X*AkzG@T)jLApcu-u*b_
z3CNR>ry#vHnl5U*E8|%xVef1>cB6S3@{F48rdWD<!*DU49AFPfPekwg&q8?WOXnF|
zwtayH5q%KTpG$k8c@feZ@)Bg>#^_wJj|yLb^i}dQ<gJb78?EA$QK6qE51(pYMRc3v
zEra*9fsjG82^j+UmRSTD3K<63s>;J5{B^@?{M7<v1Y{&+6l64H9ArFX3}kqx<X8y5
zhB|Fwoxe63eiQY=UiGfro0<Tb2;m<s8Qn7~PJ-B*%$;-UOop7HWGYiAmRJN?4B?lJ
zr$MGeW^m$~*PjWQ4Vj~S7UOWVgu<>bCFersLFUu9Pf~31oLjO0Qvc(KFQiMollN>(
z5tl%gLe@goL6$+5LsmgnGb|mGD>y;mP8fYV{hUpPznmiBZ+W(KjDCc*269Ov`f1O4
z$Ogz}u3yMT2qn~Pel*T&lNR~otf&>_4K0$B)ZG*b-(=V!Z$sXJe4;UAqQ0x-L#{_9
z?<;<w$TvPJe5Cy2|0CbV)Yal=ieD;zuK0x_8*b-3LcWIVfb8V94{5q7vc~%_krQ2d
zYa{=j>nN7k1Nl+O4~n}WyGzMw7HjuH_OZxi4*5yt6#k;*XT=?=wjXjpi<y!H6@FLV
zZj<>F@(1J~m(|53l=C7v#5IdVryCMyn#A9bBiwJx3ChVokbfZ$inJFw8vRf2a+b*1
zBK-dLF+>;>IUfCgT;fK5n_qH}Jj7!%RJJmzKpj8&V{ef%FMe-)f=Of{#5NVJkT#FR
zEs;wrS_Ovau0&BK6rN}secAitN|qfx^$R5Wcaq4-A{3SrdHyP!2A{8DQLVhlDI#Zx
zoGEgu$Wz+(bdl4PKXG@WeC0^3awThVCF|jTqTk3YHi-(tJzPpe>WfqosVs7tNKKI{
zB2`6dh+HVqK+X|4SA?FI`g5K{KJz+XNi~t`N-j{Wr{7V(NQAvyqLPax8tmhn4DnJ8
zU8ysdi(DacmB`hq78gl~T&W6lua*jHi_}rl@U8^EvR+rm&aRK#nb_7kkrZiH$+}jB
z*Qgr51JBx&$aPw*C&FP~FVgg&!{!W2-L{DvM2tu?k>(;dirggfD8Jh;(m<r4NMn&E
z4EVJrH;de+M(Fk}I)qzA`2T*g*htNCq%_VcxLxE95n3*t-^(jmR3rZ|X0;G$Nhd|_
z5oslIr^wwpKswo4q>b{sM0#y9l$2sy72bVU<Sp%&{+j7t_2fR0`$Znm*goDavHuU}
znTpYDK17MgI+67v9Yi{cyecw4q?5=aBHcu~bBrRLMY@VSsivN)XgwzKxX2R>yZ&dU
zT|`P}a7dfP@J;3^b>nG8CMw-~MjMihyerW|q^HP>BE3bP6?smpdNC)Jyr5XMP2%55
zQNy1rSylguzZ<hU@z*7qNUw-oThZzx^0I2ab5~-<Cev3r_4|qRSI&kk4ip(AGF@bb
z$Y7BnB4f37sK_vpG0KOF?Ce>O%A-W~SGGoI+K&`jyU8#<oU+lX#!<7_<IZSy#)*vQ
zw5oif$P^`$6elavrPtW$CPRH%o+>g;<>cEpnVBN9M3#yy6PYbCM`WJJe9e>D-5id6
zE*DXo#5N7x^v9D6L>6lEMNA%zDt(}1OO$Wcgjp`p4sc`Z#0ni36;_I@5_#PuR*S6B
z#mL_2(pr(-Z4w*{af8T4kzY7)kxe3-MLyz+U@MU=BJYa4C-R2KR*|>V0nX-|B8)lr
zoYM8ebbVW7d)vf2x}Zqj7x_TbY~8UKlkh`w9SAw6@)MD5bU<X!{}A;ZP*N1n|98M=
zc4l^GXLfdH0R@!ItsLA9tZ>kh1VpkTVkRkyhyhUn6%42tFd}03DjA7_O3pdwoO4EU
z4*LI0@w@kbuV1}SS65e8S6A1}hM5MI0n2GNunt&38zhof0V`!JIy`Wf;59N48qc|`
z7tUsx`vxwzN^Jx#OjetOvI{Y%zeNPL0=IX;4)MSqVeSNWiIUyGm`748BqK3dQ9q5`
z4;%na0;hn3z#-r`a6;q{14n^lz!9l(tmhvN*0-x<$b}Med*c~R;=xmd{{W`}W?N>z
zGn5A|0hfVu(wF|f$o!wL=Yjxk$wE_tsJjAO1+D`(xItQ_n1qW=QP%)c?zo%4EzXM@
zuyu+7_Af9jk-<eF9$TOw_aOP18rH=#3TTpVWs^dKreR<RKZFp{plg_+VWtK{gQ;P>
z20r^4))3L~iiTG;SQ?@l9?{TRgRQ~QaIc1H8e$q;4P`Zy(-7BCaf&LT;Vumc4G&CF
zp3rtvR8j+JVWCAd6cs?u9RlvuP%NKQTnlcl*mSpsx27m6EUlrWhEg1NjE`|XPbD5S
zB{-Y7jD|^56eY`RsGy;ehRPbq&(d&@hX0N8m(f2O-uc5Hv^!l<L$-#Y6#~usr>N_q
zAxDF+p^AoF8NKoZpEk#*s;bm5Ri!mNUN(5tsL9k|l<FGtG}O~@zlIw0&nUl^hT0lx
zYET+BluEJhw}1HeQQLcpn1{R7(Xen>U~pXxJd2H|%e^pF)z{EKLsJdSG&H1tWatMq
zG!o-E9Oa!dDH`8cLlX^s%BP-~nEvc9pEfkt&_ct*BH2>IL;3ElRw~7*eK0i`x0Q^=
z?mtfr?oJ=o&|X6a4Q(_$#u;gNLIck*ZL8rgC-o$KGTnb#LzigkDGlGoQar5o8G3Jf
z76X8klI=A9(V`%6M-9(v;JmtOm@-v8r{P5n^Gc>VX?R}43mSO1YQ{9xnZY(y9iOU-
zObZO?qT!q0)0L*Fmo$9F6AAzHc^ux$8m1k{dtjP+O+z;g12lZE;dKq&HGHn&3k`2*
zcvHjsT>4i2+7bR+8s6qovUPvDhlZXSdTDrOn(8?%@OdCmH}$Tx_R+v<Z_ecppTaEf
zG1Nx{_yY|eYT(g(eKmZn;S&bcl>#5hWPcjs_tWsH;LkMd8trecm-=BEzXtR<g%d;k
z{+u0k(p`C}uVf&OQuHmK=6%fxYIu6MKXsbA&HPTorfI6yaDSkNA2bYMFAak<lo;Xv
z!XY&LsDUSPmKy2*q~T}5JXo;KX#ZCY#fSR8X&9`bblnuEzylL`HXqBHk^ZS^YM6$x
zV&rfQBQ%WEKt9Xw0!DEojPZFK<Y*0J1T*Sbc+B58=~Z!9Fr5j4{}4Knn@Gc-8bZ^R
zQ!6!vQNjINE%i5J?B3L52K@d!b}2bsO%?fRLZ=JmDW7bbrC~O=MhG=Rn4@8?G=)N#
zr(wQ^)l#L{0u75bERpI$%1>8|1T)N9PFG7ctjL#KCSbWx9*nqBzzfsWDlX9U!2UH{
zV#b(;^%~A-I9@xoK|}B9YKMlM8a6VPrmIa1S`Fi-t1XP2-_txrmw2nBwQU*}O;_8Q
z#QFrxT^e?4IHBRB1`fAJ!yy5Ch3*r&U&Eb|)Bz1Vz4{;{M^9~^t|)w1S_zJ5xHw%M
z)o@Hh5i>=B<I-f$P^Sj?r+ELbVa_0*8<}S%pOz+WoQgBlSq<kjoY!zcCXx}tMFE`D
zO#zoQTo$l1mb#+hs)lP)y{>`h_EPKyL*h@LV8BlSy(O*xYWR;kYe2wx`;T;HDDV<X
zfe;D`F2uAi=K}MS0Qp)7)$;-YJp>~JGlXymMM5YVLL`LO7y9uKMh^0=5TYV)hu{iu
zLV?p_A#@+@^Vn8u_`76qGH;_9DnUI)$_pVG0?+R*90HH-r7_RVP<Mpz)BwM12<1Y!
zGlXIx6c3?92&F=}{=I)!2t8&fo;!SZ2s}vrs~L*NE|;VMGt|5piUOrYtc*~ORX&6*
zGt@mHR1ATqXI2OyD}=sQDisPm!(*(O8-M2c%d}^vx;F&kN+DDhK%5i8xfv=q1V4l-
zAyf?^&DQUIHnEJJ=rair93JUcqnAQK@|-{3r>dGEs1VwQ&@P1gLZ}r&!%&bpYYS~4
zw2siaA=C@u+wOjund*Mw)S9X43*beEHcz!v4}{Ptga<=tEc_=zXc9ux5FU|gvk;nx
z&?1DEQoYv-wjRCxPzVpp60{ONRgurLIPbFqfz}~B8bX^89-pZmBNdr9W(J3_vz6tG
znd(VlJ|*<&5S|ghbHmG44m7k6p#zsAgr36h7{aRpc#VEGgy%x&6vFc%Oc~*K4dG_P
z8U!zd&{;Sy3VnQ--z9_%Z~8BVz!OL*@G{q(C!ZcmzY+pZD;_aZy%xeRwNu?B(q3mQ
zg}{XTMhI_(z;lh?4B`Fk;AD0V%3L>Rrs@^K+aY`<mb??fyCHlQ0#CE;9m2q`eV#%5
zVF-Ofc#j=J_#gxxQTo5Z{<fKl*_BRXwJ)6(3hp#M4xwKNWo9X+-%l6`GgWw2aNO;u
z>^REjF|s`A^>eQ8EcHbQJdw742w%!rJRO(`@M}@>4HtK)|7{50g)l%k%-%fe^od#O
zd#UoR7lT6hk-IyDOPrlBIr=yTA?Gd=`CkY_1pF%WH=%=tzBwycuc09f3t@N&JTjPl
ze-B|q2;WH4ND&()l$VUr0>;czV?tOsOO0hnj|c)|d<YXl_#=dg^n3{0LYNf7pCK$4
z`M>CG&arfARtS^1^(Oe!LwIAnzjv0J62jCFrZKCROkJ6!xY<7%7w~6<Fq46rl_JNQ
ztwxXcXY(o`VslAD;QavQ=Z7%8LW*Sp?Ge04=whKugf10InPmdX&Q>czSV>2PusVcI
zV&R$))-psV_!}hQ)Gd=*7s7f*LYY*HYk9S22dAQQnj5)5vjdN9mR?(gvf6c=zdeK<
zA)FQtXG-~<A?ylacL;kzI2^)}5cZ1w`$E`HJWKH`^#dUs4B?OrI$>;@s#xeBTEdAR
z4dIw5JSFrv(_IKB#VU$1S5Sr^bFBZ5c$H_DlXFId&k8*!^n3^xxXtr|DbTQPv(@Dg
zu7t2y#}XY^L%0?~O2<7qu7_}g8CVap&CL*Qg<uKhDsvD1%LtJG%g}>wc{ClFItu9E
zsl)|EtdNe+#6Rr*(O^HML)Q_OCPSzxlz~J6mWC7jh;X=zS&a&|g*rmXjOoFx3qf2*
zLNMds(~;CsSVs{ZrF4|mQB=nrI!frcOUIo$icwNDwEZdQJ94%n;1SQnEO$#&Nj=zH
zRYf^BT^Su^byU!ir3d@BoR0D$#*D!(3-jmo@<_kV;DA$6N4AchI(q4-q@%Kqr*u56
zBS%NBjt6u!(&6i<qT@atwRBX~k=9W|53XzX>Zqopx{f^3|M@#aIj`?jTWgSiL8>)%
zC>_Iv8JeR?&QY~>)X{Ojj`}+4>cRD*o(>)g|NQRsd+#YK;dNh+rW$ZuC)JQc%u%i8
zsF&xc&*rEHbu`xTkdB9S44I>v=xD};)4|*FraI=%Q9I@+-Ws)_<~RJ7Iu>;Iug*~o
zzxShaRVy8j=xC$kF&&g?tz*(a|53VYuDWk-upQdWRgdd<LdWj!{U>#F6J`UkJaE(u
z^^A_TI=bk1Ne^!3+v(`2<5?Z;>9+|!O9%3$SI^$+IUUdIctJ-eX{Clfult>KjG3!m
zWXNTu7R*&U=Bi6`75QCtysYDO9o==jqN8Ai)NAzWJoTy`q!eqODl<=w?X9}$xG~;u
zIZwTzV@|Equ(GMQbiAqK^Li<kqUBPJ%B6bf=sZtdD3f|y$2&T{(=kBDyE=Mv$#i_I
zqmLe3XwpOc4|KezqwhS$PY3Vo!Cie<UK(gX)8LM}uMT^-&ussRj(!qLU+MUiTSIVv
zoj>CHpX>N(p8A4D4*$QH{A-^2QV*_lJkpvsJUrz3YaQP(M0F7NxST#WDmeT5dmRJm
z3LRs0{GekHS5wDO9Y0c`j$atDI%YiN|IFZwWbE0Ow|ZW%Kr37Nzv}o+$6yKRgY#6a
zhyHKejuX<)RZR`kF+#^k#+wMR%k_C`l#btZjAlH~SAEi{JLfCvVN=WbioM3^7_VbG
zhtn}Z#~(WW(($*BiIlIJnxx}TF5>)P^!Mf~UZ)6tp06hBn4)8<j%nN%_ok-IS8GLv
z3Mp`GzPh`1YNn1^^o)-AI%add7@uMl_1so+`vXG80<}PfSg2!>2yo&QI4QL70<~0_
zB@EnUU>QSK#|j-QndKM^TninmbsW@jNXHr-Yjy18QgTD-Sg&KVjx9Pi=-8-Zljz~L
z%~_!8F9>Y-Ykm6Z1!}8~Z92B=*rB6`@Y%F3lG-?3B8~TiR%*A7Jv#Q&OAFLq9s9V6
z+*C7O{${HF3)BedwRM3ypa-|I?0#6s5gliBoYQes$1xozb)3?1oB}%9RjF}ifwBhq
z3*{ry%<29=l0#1GI3q@y3l;Z1^^{*2*m<7Yd7-+f<C2aG%!<e$v-LuCS;rM-ejV4i
zaTW$i<13LLzEE*fQ)cW>{!JaXbVLo<2L9FYACtKO!$5`+q=<qB3K_^WP{0T-7WZxo
zmT%TV1p`|aD$PL1z-fX-irJ~eB2~G&Uwx4>4b*c}Ef=YX5#)-n0rJ_=qI@_o`^81d
zF%UCQ*gz2ju7RFE`3VD_fw+uCZ67RBNdrR`Df+oJGNvz5TNWv%prQuuG*HaI$wlf8
zv8upgMf12=#i`9q^^mddmZpkAOByI;;L;C1zpUT~#?l7L7$|F?oU~Rjz~3#{THZkM
z#erK=!oNr8f3N$z-R0*I^0S4ret=(zGZM_(`y5(gr*aLPn;6Wos)4kDLlzEOxYs~6
z120>6#X@xhd30<TW*9XL)HL9msA57HxX-{>2EH~>%Rp@d?G1D=P>23E&|F5TXW)JV
z4+<`Lf9j)Yetp3W3^X+GfPn@B{Olis(fRqP5f#=;Ra>kYi%b)tO@&gRnStd41IZQ!
zS{iuBz{3WfmeyI5{Z<AZHPFVuBL)r|!H1XD2ESkS`PuU^1CJZQN5ZEJJR#so11pSF
z%f)KzFM+~`e)P}j!Qwt6+S&?jXQ1<9HU9fRpkuxb?-+R2z;gyV8F-$mIJMsD1p^-}
zR?ElvFR=?9QYQ7Hfi6an-r1M*Y{^ttI@7=_23|Grnt`c{)w12`Uls?+{O)o7rp4;S
zV)eR#?grkV*-KOp#+89L4ZLOG_tGieIF($YYAjK`3{a9+fwwu?C5o2@|Bv)5OVqmt
zdK>6t;5`EqCZs<%@II|F(9ZyG<3BX;`4aW95!_DnHSiJrJjG{{=Y7%eCF&D;?9br7
zde#!fZyG-}@EK+JsbPsa_`ZtPNqxbc^1I*Pz?TLr-oGtT?o#y)wHa7rV6B1g3=E*1
z21XnB-oQWuKNuLq;9RO`3=6+{`q98o21bY{e>U)ofuXm(n(y1+xPylIzjC9=ec)j3
zAZcQEx{+VLkq$F3JYT;4QZ-WWD51SB7NEcw17i(L6Ar(j>N?mTXJ9;iH99@Pz$62I
z8u-Hi`BXbmeD%~)^%rd$;!id(#lYW2@XcG9-vftCHG*p>!6GYzfcmE!m|<Y1fmzJh
zGRkZNa||pnu+YF<=9V$(c?RYixcEPxpY_;<PT+T;1d9wTHn7CNQUl}i@AP`nlS@_d
z!$A4_Z~4oE$izwms|>6*z;Vf^wWOn$s!M<P|BOzrGq9c+&%l2MHW=7w;EI8(1~wVk
zY+x4?7tJuh4Yi$HTTgAJo*(>WOVu_5Or-oSf~jnWft_6CaEe)F&r-F=z+R~yHn1;<
z-c-E{g$@d5zkve=c#p(Lrtl$QvLnClIAY+afnx@a8#rU&EQ8YszUw$`;M!7kQt&B}
z|3_?K6Fc&YpfTP3bIjYz6!-gi?#hX2@-N8tzsMMS!*4&(zhvOD0q0krw~-X%(6_C<
zX5cz=;4*c?z)ey9eEHNZ17qr@?q3#sH<e)`(?nS_Nc#m$6f}`EQP@NwGx&*@HpEP5
zCPF46CM+{>f^G&^JyWnDwA;jVm>qxd`P~HtqQX2iz<12RIkpMjvhs?_COXQMR(_Qc
zH<2*mnZe#aH9hFaom<2Vz5y#?20kfj;_J)lJ51bZ2Hz1CGf~_OesOTz;1k)C%M`z_
zyUWDgCQ6!k+Dz4sr%Ib(-Y!LJC;9x`SH?({F@u{@UR=t_9I3Xvi3*}WODH)h0rv>4
zXd+ucrTo^)CUWv|t^k@^)kNCFGbY-axYtBA6SYm$F;QJcsUb8^=v&KzaIMKpfQc;?
zQ(rApr1zPqC9S_pYh4rdOgv%YNfY;*sBhvS6AzncU}Dr*zlBILRW>y7fEnb>MnVZ5
z6wsJUHr8)KKa@%}HPMW!CZ?O4Xjdymna)`$ehhDEV(!>rYp}GU!g2niCLR&zw+^c5
z7b6*4s|P<Kv@yYud(6b+GA=(d-|j_$rvg7?!7^2IZ2D5|Aa%Dh(cZ)f6DLh{FwxP(
z5EDa9JZs`P6YrRK*F+~1&ztBW+FmfxSwJ@vFETt#ylmnX;k+cYtBD=r6AsFsGe}=G
z@tQQ<u5vZWeBDHM6K|M!Q<~l~aUs8#wmkUV=eEr~P4p50R^Jv-rCh4Fi9U>N6a9tr
zo{0}l^cDQR&=2UDacTY}^pS~=O?=7#7CwJl`NTv&6D5`hYg$$4=hDO~EpNI!_zmbw
zE{cgCOblWGoA}1W_l#Sy>RS`vnHa!{OJ9EJaof&ff2Rl1Zxw=zAl3e8;wP##@vDiS
zWsQEJHtE8jjlQgvT3;dcn~6!wgFG|X489FuU;co_?!!!e%)|l{3r&nLG19~zCMGhF
z#LjU-e>X9jt84~8gpC!>vgPW7U(>Pufd-cG!klosX^NU;;!hLPP0SF^UnVA-m?HRZ
zGx#NoU8c&srpb0Yuw2~`Yu{*4W2T8&+|&#|2ILeqn=vfk)zfl!MbL4c2`=A!6L+<!
z!76`~B3)!+v58G4Hk(*tVyTHWCf1r*W@5RFyV}GG0V_?cVyu=;aW3=aE0n3_12?kV
z9%!A34JI}+GnlwNBZe+l_O?v+3bn<=Rug+o>@%^=#C8+AOzdVH=F99f(MU{fE0in3
zy|9O7uLyo3{BnibZ{mQ7!zPZ1OApFS51AOZLM>wJl)$$~scoEp%*1ht6aMbTMclO_
zSWV`=Qzrf~kr75_7^h8~G4Zd7|F|`p`e#jCG;zrUFL~!US(Q4^XlF7U8eDey>FKhG
zy8J<hNqcYliixYtQH<@;!IwPOMgH6hRj_)B!Z*#}w&9k{YrbqQcHtL*Y|>W-ZZ8lH
z{?Ma^1LqVB2V)fy{BE5Tzvtx5Mo6k0P7i}jiiN|7gfTgcDPdS)M8kL}jEBRp!*If=
z7)Ev&u`t{)3Wrf7jCdG)6K_&zxs@srh8G48PprFAJ-#wHgfV?St7sT^gi$h#Qeo`*
z*1t21yTa(VQWXn>CtXseco-!_!>cP553=X`d+!c|l;^*f4x@}TmFHZ(^UH=Yri=gf
z#msV2UHxAs$EqL#JjggJjFjMegz~s^Dz6kqWvMm~BPWd9FlvUO!tjO3w~XE!MwKwC
zhB0`hnntUJrqi_WToysKFsg@9_G3Sf^KG8`tVL=gEezwtN>$=Y`o1t~iINAys2xU~
zFdBr>FpRok@Jz|2H*40DR;newKaBce5KuE|p;hXEFdB&fjpR|44L=F2Z5&1uVKxn;
zSr~8iRr{}|$$xEj`p$lS3u$T@M#mn0@l}cu(<+Qd!uW*#45M`zkB0Gb7_WrUCXB~q
zAzljO@i3kUqkR}1!g!MWcZ1iWJ`=`MVLUA|<gn0_ZNtIe6x(si8`FGyD(UAh`yIo0
zE{slLJR1h9EIfnw`7mAx<3-`@pO)?{U~@m8E}}q}d`Zr$YZzp53f*qhd^L>M!gx<+
z(JhSE!{{xzdl+vJgz<J5Z*taQ^bkI0&5kS&u2Mb2`1BK>g;lD3M+Dww++GR<+TSSf
z_KgAreT2_IdSAc?VSE@yUs=$P!|1$<_bp)eXPc%-2Y%#}eo70&7!<~jG&_th!WbZK
z=^w_Iw04!EXTAz!*1JB-w*tNv`b`*XXQXfQzmqP+6#hPpf!suM(=0!P@$)K0@Do88
zL&6vu#xLA=VeEP!HJBT1mHL$vznICu{!OZ_W~9kv>)ZRYhJ`Uaj6cGdDEdc)F`6^F
zl{r$Xqr&)I0MFiKVRZ~+FN|?ixIb{q1g_e(tnsp&)~`}k9u3}`Jt>So!?-mv{Z|+~
zG`8F;KHc@-`n<mxy0g=nFZ#W%WlarZS{NTh@L>eg!<fM>A3;2VnVfhS7s9w0#_TZW
zgs~%xong!kV_q0*=#Vhxhp~X69>%gT7Sgc~*5H|{i@5arvtC@1UL3}fFpjNKnX476
zjJM@stYCIxI7xLS)5YrG-MlQ6VXxKFx5U-Vbz!UzW1C2B2xFswt=!bB)h3}^gl?8F
zCX=O!XrKX9zFp)ytya6lX?w%i7sl=|-d`Oo@t%CJKa2z1<6)fS5JS@kg&wBPFpj+F
zlhb@u`bZc@ISYxacSfa;OH;!x{(VIh-(!4As;9#^6UIM+d891+vYZX$To~u`nfG+@
zjYVm;l3ohqau~(0X6g}K34`w|{x6J-2(E^4jWM%YUFWI^|3(-$1x#D5D8?qzf5X@$
zATxpj5fqAmI!`Q0pIxmAMvzz%;5V11`L|B;HK8G)&o54sV?+>Hqs$1(uTkMhkOv|W
zSP?`8v+6`(N3iEo0pbR;f`yAkaCvyzzfm9&ffqsD2<k<UjG%A?l_SWBphyHoBPd6m
z5!?~s@9DTZf|3ywlW}QMi3o~Eg1}(02B+_$hBb<X_LLHtGLhgv&n%_IjN7=Zh;cd<
zBFKuMA{F-WQ$p_%%IXtq6icz|nZ(%<ytzhIil9vU8m#6<;73q10u@0OQJaq7-UzBj
z@a-B!|8r{9A{f6$RgWM~1c=Gxf3s_d3<3Y1eP0ChL#+sE3#fFX0J~F+rH=Gkwnp6_
zLH!7xjNmECM9?sT<`J}r;DLNQn+Rwm^uY)k=kpJ)QU9$`O(SR~oIBU5n@v;n3?0=n
zf)XuK4+$lBID%G!9}(JG=%e|qZ6bIqA3q+!6Zv@F@buFWJQG2;2wsn%Z3OKi=(1Kl
z8$o;Vd9}5wqbxxOq4YdCE!L{%BIp#s^Gpl-v${m^QUosu?kx00p=??@GELf5s;>!s
zIf7RrxXpi6IJ`HwE$^Sn>mEUm2zo~F1{W)WzH8Mzo&C2WAZ>jy@Asa5uL$0bpiczv
zMKElwdMAS30^W^a!CLiZPrrU=pTflNbA8X`5z|+<nSCSpD1w_2+=}4i2tJ8mVFZgJ
z=oi7K5quxPzz9Bz;B(mm-^kj1A^58Z`V07NN&3qO_OA`r_vTvlwaA=Yn&y`IRs_Bi
zIzT98eu!WY&5K}o1V2VlYFYZX2nI*+Qv^Rp@QZMMl`t;6PW?|D&X~VTI75UEWpGLp
z`*Pjs{}GIwb!v13V`PFOBN!FI?-9JbPI12U5~n;if^qcW<*b<uU;)IF1WbtF4*?T}
zez8um=}*CbMew(P$q`KB6gH-(NR<LpBN!o)(<7L(PR+>Y4{9B}Onz1bvxPG!g1HgQ
z6Fi?QB4GBmJj$H7lC@PdERJAF1REmQ$S{atSp+L1SQWwY2+pokE5xOA9r3Z71vnSt
z)e)?TU@e8$sM|}qPC{b6P<y>ftq)dYQv{o(`xT*EBG?<jz6iEPuq}e^`I>hL*dcT$
z_oMXP%_Mdqv)y{Nhv}}fPq06N!^6@?A~+hs0l^1_l6i=L8)R)Baf#vSV-XyerVA1N
zMu3x?NWSE$2+j!pCxX*#TAIGyg_MQWbJE&-y*e*oK~JCjixFI+JzU=#1=z%?5nPSn
zS_IegGsBGtUd<@T&BgHkalQICg30TZZ=s5X|02k+kZGZSg{TGFLO~0KESOesZ3Q{&
zm1YIGoqd@BLROG_*R5B&1yVzr2*M&C5z3C1h1(ZU3Og3=uyChzj0tru#H}DBC9L4K
z*%O)+T3Bcip+$wRe<XP4e=#e_9%U_*vrt@c3AS3eTQHkS2`Fh{+w}s@<pSiC7ET$V
zWhJ+i7hK6g1p!$?Q$l$+b&rLLg0qEE!^!okaz4(nkSmz_t6k2kY9Vc*iG`;8{$HG+
zZBW$(RI`HcpvUqo)UZ&~g0j%S3bxpN7PyrzcJc4GFl%1AmeAT3wqDDsW1+4E#(zCl
z*D1DAzP=R*vy|MR8j1$;AF$9!aKWot4+>~}yV|5iGYicvw6)OALJJEmEwr}qsD+0t
z@Y=_8(aOTZf@^G0<h0zN9<hRpJ1^*MEIel6NefR|cws|uJ!N^^Le7%(6C%@Bm`_{y
zpY(l305QedTj*fn!zJl17CKsZ*242tVu8w;k)E^AiJZl0s^t~@Ht5Vyk=DOO!wR94
ze@VvbDwM(VDg(yCI1A$~bhE%?dEc?{u7%evbhmJ1gPOQ2>kSKUT6oLC$a8tD_O#H$
z0*^qwyg`wY)62r!RJbt^Cgo{Fy)FD?;b#kdEIxFTde6cGMN{uv_`t%^ZvKZBKDO|Q
z1s;FXml2hj`pCkX%-~FceilBp@U?|+EPQ6+@&0NF&wsR#I+ypkg)b}=+o-B-447Zi
z4`=hfvOvs|n4B)2Tj*O0-&+`H;X7#^Ag$|nq#xd>ey|XHAmuY(0tQJFyL1t4ztGzj
zez!2%!mk#7voP4g5X$HU`AAXfT7lco77ev9!U~>g8pbJXRKo?Qtl&AOk%C7F4XV;H
zS2~WdFgBn6!$vj1!XFk6ink|Pm}FtQwEk(~FN<HZW3h$5g)@yiLcnC9Q!GpsaNDXG
z7G_$QCmfDA%fcKBw@T*C&gb}lr|0HlPGP>_1wt3*^PAU9EwQjvs_QK*%jd7Pu-w85
z3oC`QTIedqfL?HEq12*C#+rP|Q5)4d!S@vk{J^ro!bS_5ENmA37NH{}|JS;eD=wVr
z8x@6j2;RwrW?{F*$3FwHeHQju*vtK1BT#sIzWYV;z-^kD+8W7VxRyLt@Cbv-LS+{@
zE{<6^E{@$3!wCx~nLr#gb8w1rXrYyjM{Jz7aE1YF!?1DI!Z{0_qj)ij^A;{xaHEJv
zanZsh=Itm7L~+@|6$>{k+_Z4jLgV%6>lXHHR0P-P9|5dh+o*VY_$>>yH>v-qXOsGu
zOWD+~ut{Y^17@2|inL%9g`x;Y5s3zmcxll<#)u*m#h#sM;?Fh(dUWBxCfJN(_$D=H
zld^=#W6EO!qET$wr0ggh0cSQTR)6UjoMWDd!i%D16c3(FC!;7FMP3v&q9_tY(I_fM
zkrTxoQQR3t*(l0IQ7nq$QIv|J;rVn4p?3*owfx02>D^J36b_G8XSKB8GWjxeMR~!g
zd`<-cSu~)TPx*VKS}}@j0hNS4av`r-^PshTGe0+qDp6EApZ4jN=05rCST%}t6!!|h
zx=;#KyRAWbv05_<6~(;gRFf#~i=tK(4@i}q+ELVt;{GV=2&Zm7pU1DWwZ2pv3T+^E
zlF7nxNgI)KTi|@Uv4G+oR8s-Xgf<t-jx7XCzM1z>6c0zyDvC#<Xdgv~C|ZmExdcx|
z@hIKi%x@FLV*(x*`h-wzvtrYeQ4DS$0Lnit9iNG!ZN7$fQS7{xS8lUnYe%~AZ2Gw<
zp3QHqvsrCx;dhGS`6vijUWj7E*)&0yC|-)<y(r#~qH7c{NAXq^J)(FeidUm}J&NvB
z!qGRY*P`gQS$(=$b&KLR0dGVxeY0A-SsmM~-ej*!X_hV>RL>}SMbSHoK2f|KMdlXu
zF5_y8B6uf?j%U*ZmA9w|x2PMJ(p<`Cwx~C@s1Ks}Fp9NNtc#*=6d%b#kB#EvC_drb
zqZkrJzbHP9Vn7t%NAXz{pNnnZ2>l|8FQfP>ila^a{!x5G{muNwm(yR<|63FRtD}Ya
zZ4}={(X*MqU8)14_#uk_iIPE4{3zh(D1H(ddX@3O?x%MaqK03jwcLgDuL6Ff@)kiT
zGVDo*3UiduVM2$~&jLm=fyi*?*1)jeg*jU27@@RhTomJ@m=MJuR2#+oC?-b1p=U-h
zD~d@`{K-9N79{7dDE^M3^j0-l1g1tYB??k%o+gws(*=+-LjWU(%-JG8hnszC;FGyh
z<<P_n1TT$ZSriMSSi~G6oZaWsbixwB6nj`YE{|eG6f1?vAyzS6+{&Y#)xvpst6C%A
ze2YNy`Y1L;aZAkD7{#V2PDSxg6q}isnAW1$8^u;eW)u}$_`9OmE?|dHZecRbmj2Et
z-W1I0Ztn3*0e@c<`=dA>#R(BU5XHeL4heqkS#>yyBZ7~~&_@|FTNQiNZ{d@+JDoZ4
zT%hD61Jx)<z*4xGe>#dY((6hTXQMb5#U-hp7fP86Q6y#bi^93x_i}zKt5@^!wJ5Gf
zaYL%~1N+_-%=q~?ivPr_3_Do0f<iNG6cCU!3zAt#FrV@zW)9SBgansr8HAi^BW$Cj
zjZ!uuHY^)OZQNlaYQwe>w~?^n*ci4|#ca@l)3&PLE~Z_<J<g`dp`PTfv}Yq}<K5<d
zVLM1cML5d2G^^{ks(&O_@3c|eMhP3mWb}+}s_-^-myIgh)ZI3kY*Snpy0pVKMO@lO
z85`AY<k_Gz%i5?!wKmGxC@<YB*hty9$3~Woht8#MTuhTzl%{MOZ*2>92kj(fexQXp
zHgawFHon`YCK&~**r;mbUK@+HsawtcaoYl!v<(_iTrLXLZ0y>m&TmsSY}B;T(8dEc
zl#Tmr)Ui?5MlBhO{;X{WNr1^Gc0T?6bIRPVcI+%v&&K^WK0KGMZ=(UbUrLwSuF~68
z<L$vT8?mpA<~CZ`Xw13WXiERL^f?O}%&@1-pmXVFHb^^eS1mcjcJ+{rZ?>z~4&{-_
zWb&|$G27MM=hCfhJZfXCjd3>G*m%swYc{&sc-+PlHeRsN*~XJLp0d%-Mtd7;oB9j4
ztEX)|W23E&ecP42L(#&E+ttEbc^zzYw87oliN4(txbaz$q1bbr`wm6WdWU-623PRy
z=Tzqb>O~t}ZTxSC>SE(1am&ePRo5M=-wyS%jaNA0#q_H-){C~uJAz)X+vslNOB-L=
zc*Dk<HhSCWV}ptDEgQXTyltb0sOl+{W*pz4?2GAl#8K}u!gs1-JJs9^>GV$Zo{jfy
zd}5=YjSuK{8z0&Dm>%A#`ZC^js^@kpChf|XgL?qd4|WFg`qai}HeNiJ?oR{Gr#~0^
zg^izg2L5MZ^iJBT*6dVY)AO95jbCki%Mh~hqm7?z43I8AP|vgK$WHaWR0j(Ecc&U8
zmN$`WJ$FiSmtr3KnR66A{l=!>Yz($B(#9woL%0`qsiE9!0%&~WU23?E5mKeWtWtn+
z{=1FQHu~>Uo16L1HTSt{V{8z#-KE~xrN-Nsz<W*`=WP68W1@|DHs;%yWaCd8Q*BJM
z@fSzjrT(@t*~X^!K{lg39Ab)%rMnc%iVkWzH{JO(%S;;_Vun!OHO;ayTbkzBm@9xg
zonkbGbOFU|Y_YMGo6E*x8*3N<HkMGcjTI7F%WN!XC^qxo>!5b;QjC^MyMhh4(#9$q
z`_H9Ui;J|~fk~{cvxB?V4K_A1iUfbt%qQpP%Xyn@+_hV6w!zK*-Oe;`Wx0R1+1PI5
zh>fE*cG%d-0H#{*XpYVuw_ELDkZ%u^SKX}`>g4QYc53bua0&-(9J0Z^e2`max9YJw
z(0N!oe!e>}^_Y$0HvW;;6U;~#)2D2toBJni4BxF-C1rPJq0=%E-prg43wg_Z-o^zR
zF$b=Li#9IV;OikY2bXPJv2n}Bzg(JT{#6?{xHP-fH5=ENmM^3$T}sc|t=e2j-xU6d
z-HNUMaT_`)=md#3(+R@3fD>dJPK^P{ix(G##usuxCsT$c<iK!XI>F^Ycfc8C>`~90
zPlp{myGKPGL>yQS?%boQ>``3qCVQ0a1X<c4|3bRw9!0UZgM@=zhkt8_=OF2ztb=k6
z3Ogv`ptyq)4vIRs!$C0zqxUFA2$S2L{FKz(|7MROr6u$CsJk58?VzNCQVu9U=abUI
z+@Yl%(D*W9Co?DU>9gtb4k|dP<e;*H8ZG@S2Pp^la9m!<TKW}5IGfh)3Ko|;g{~mx
zMKj02nCF5Fz^xiE9aMEt+d&-%X$SXGn}eDTsyV?v;tEz5RV&V=831_>cI;8KR?*Iu
zK3C^H2egoPYxHm}C)oZRuC9Z6biRWJ9NaJ6sj9vcga>1oy&5>65=u5=tAoZeK~C+=
zo}h3#O@zZ~a<a`Gv~bWihITQubnuXa0}c*4c-TQJ2SXeT<tRI|9&zxfgEkJ{*`3vz
zi*hPW=3@>Xckrr%*Bm_I;7JGV9JF`v6ip3fG(MTt*1^EtSx-B7#zD7#vWQ8KUMoP*
z!9hm{ogKW$c%U~N96OmcVRu$1>2mIBA<D2k@8AXD5YO0~)y2U}4qg^c*L*%rVr#re
ziu4ug5&hj9?DtadIe6c}>khg*c!P0E`x(Oy-g3}GOnTeFfI<a&ig1HaMlS(lc4ob!
zWeiTHILF=&`Z%b5B8%po-x<)CLK&nVIQY=Pmkz#i&{ukWD)b`<A3OL&a6h3`%Z_ue
z6`(zz3FmX6UpVORAbWQf`7C++v%Yrlje|iBesu7ygYQJ_2U;lLd!cmT+gipznLB&Y
z653DjlY^ff{3<f6exPOil8^sKC!hGgQGRnUSo#(^9dL#@817)4gYgbVI2h?*Ece=8
zW$aa>xS<>z-Ievb1OQ!8J(|Jl7-5#!tH`PKt(xHA4+k?H%yKZ1;d&zLF9&}+Xu4NT
za`2~v)Bgkmkx%)_4yKE?Dfv353YaFe@t&+10@|7dDLmW390#i$tadP$dq0-3)WI?b
z^BCR^7KkM6StMYg%#poV77J&I(4EnY<zg_qQ<$wQ9ITY4`69f=!CD8KxFZ~JnbtYj
zAYi>va>i*H8}sphR|{=%u+_mX2fH0?%ja+Bsue0g;T^)+na^*(SCP4g3z5&+>tLUl
zO8)J@I9#Z}AqR(<*<vUc3-;O(2iKXVXf}gcOg--495pyN!2~O+P7x$iXP6bIr2i4l
zX>mT)Qo~v4)u?dl0+YYsYYr}n*cF1^K_p+6YBve;t0L2LuUa9?bko5t2X+ij4F5X#
zPXZ|%Lq-glF%*gguNf*33*2>k76oI$USs)guhN8X2o1%c3s|KETY%m(V?l)6aVBg0
zUPbwcbhLy<V^|{0SPX6q#bYQDLp+8=425GT62l|0jCF-mo+wNT-Ikfb$+8rUVPGud
zPGQ~=gJ=IAzgP^1Bv2`HSB$T)&L|zj-6BSNO2$wsA18KZm5E`^<aEZVAY9AGP$7o;
zF*JxFD~41Ic`?+8;hq>O#!xwi9FDj<7&<$KN-@++rVt7SrIEQY_%T$CAuaQ&B5TT7
zGlx*%Ug=oG352PkS`5{NL;UCDbj=u44A;C=y%_EjU)7O`vwJP6*5)eg3xcX{zU8ay
zrzn4a3@;qdB4`-H12MD;dZAGa55~|ehUPIej-iRz!*LH54zf+t82&sFtRQJBnQFml
zCQ}dbDj<Nk@IFQQa4guu1V=J6TF1~PhR0%fR3^pbLv4?XVK)k=o{8a!7@m~sw12Xm
z5<ttJruX(|5m1=^X&*y}7=DW3=NLMQp58I^iQ(B8o{OPV49~~VJ%%@=>4g}&#_+P>
z&O%=l+C}I~F@CWSc=DAPUX{`<hS#KtOeQ^2#?0%&Vdi9&i~D8_y~Gu7#e($PgMMHF
zoZ<J31(bHaEv@eerTn`Bczt2__hR@ohR;Od`<!45AJXPiS$&1mFNTk}^k=eIK91oN
z!8`T^Rhq%>pU3b;4Bv<_qmipaX8#zz6hQoyfUjfNo*8VJZ>9QO3<C&GrN5Wz4?+hr
za!zCo%gAVSI%`l2KMIo?7)8GbULM1W82%^t*BE|_VQ>sXVptf%q8NrUPQFuPVi+p|
z!(tdNU_=Zfxr1VXS4RowccG(&KE5mK>yugI=%^T`$1o#?3BvzND7*X-!^C_%iH^<3
zmG`N?W0)Mn6yZ!2TE2ej=~%`z!MwPz`%J+cWuAapLT3w|6T{pXhV2a&k#v3x6k}N+
zAp2z2VkVFnmT{Zg8B0Zy!A61Gn%Qf$ov|{8RWWRgVUy@w%`G3pTG?V0pgrqiST9X<
zKC9f78>Gs`+ALtJq>(LxYwim!g4?)QG3<z8XAIm~<m{5x*3!!AZm#dX!0f#->|-p&
za3F@Ti-?OO|70GdmnNq#F$tW?IuyfU?o+G4kr<A~aJ-3sjN3eh(Y>k>9~aIEp(ll&
zis2stY&|XDjL@?&oXh7=J6yA4(bR<)F2+!LQu@_>iu7^}S7Nv-Lua~y0oP)<9>WcZ
zSkC=l0XK!-63VIl$K>PUsN9<|q<H}?;G&?5LN4IKaD&J%G(c%CLN0VS@Ww~`6!Q}K
z+*Y@NDPj|@6|h`HU6gQfmkZnd|L>r4T*O?s9H?L_;ldLTck#b{ikzg2$@>(4D7?c(
zVK?}#dF?(`#6?jT1pHZ_^z=S;rwjh!rx=~QUln&j4*7#irtX%38g%kYy6C$-tCY~v
zLd&=)>!O_CEEjwOU3tM3gi?5;k#SEx&UR5z@G(7uO)QmMe5n^C$aUenSm$EBiz=L~
zi=i%txk$UXmt9<Z<f593>Movh(aA-giyAH-anV{7)^t(ZMI9F^f2{jl)DnDZZJPSG
zoyn@};z1XUT|QEW`(2Pz-^Bwi8o6lTqM?h0t$Z?PRLLWKra(dGY|!i5b?GK9n!0#%
zzpDO-Uv9r@=AxyGhdAr~s=136bX5C*UuVA}c-TcN7tich_jT|~b?`U0_sQf7Cm(hB
zOa~r!abJN{8yC;+D@gE!izi*QchSMchi9^$a`80#y7*?lVs+P@srReo4ceD(>!KY8
zYUQ&^+L5dIl+WK-`PRo@SEZk&J=@Z!4i$Xf#S1Q8b@7^u&TjCQ%dz{_OD?uQ;lJpj
zi;K+5nJ+)$w>XpT>SEb`#qzR?S2$wH)bp#--`$n!=Hhi1Jzey2aqF(sq5Z0J@l<yg
zZ_u#=)tfG|i>2NYO3=f_;>Ub~w_UtL`#F&vSyj%Y8E@~p=q+M>Wc2r4yeCzTe&JH)
z2f{3PK+&+i$I{8J{>Lspaq**zpIr3IU%^2xK9yN~=Hhb~U%2Q`&$#&3MX>|wOBaKS
zr@j{a6}ucu*MHpa*3RGbZ-MVz3~=!SC0qL^i>JPqp$F3WuLagtIiN_3KH*O;n4*i$
zmq=Mzg?@JVy8D7dT>K&<GGPAa;#aX`cnAMC7n`5;2fHAC^YLIcOB7EHcQL}nQrQ|K
zU5w)X{iV`87r(nf#+c?}x{J{+#<&<OoGC)b2^}wV0^@m7`VYYqg-#Osr_jHI{w;K}
z(2Kc+sCla376*ciG{ePAsm>AFVN$x?0X56TY^lC=Kz(*V%@s`HAqUiaF_LyJV6+Qf
z<YHIpLgXx#>Jp(PUh<c@Sngs4x7DL5X2P{DR=QZ_VznE*fRV3vBY%yw67a2el;KbR
z8(eJU4vnKz9GmDgZnQY+$Far5R+q2DMA<mDarK!1<KU}=cevQ;;)IKnG{ePi7l)bN
zUF>nO*Ttq!{ev#{F&fWhS&dTrDbS(D-v`tI;oN4D9+GOuCc*!ikMj3lH~5=6%j6;H
zudiesr;&|Pte$f5kBciVu5!b=IOF2HiwiE!x;Q6YX5|$6;!}TD+2HTE1nhEAG+%ac
ziLrDwbHxD_Xuc9CzvkjPL&fEb?C|k#88=+qbTQ+4R<WyDM+#&R+@j`dSp;{tt#STr
z@W0=Tc<{%b%s5{?7g%`vPxX9Xrxr&n4mXZaJm_M?VaB10Fy*N{97jaD*l{dxoU-DG
zvU(+p__jT?(23)Yvw3HG1^>j3$B~HRt~l<F!;2#s$DMH$i=%KHMMSJ9LBkqB-~CxV
zu4ffLpLItZ`wpo8`{#cgC1g1IoC0-jWs)AfnMuth<0uu!<pYY$(sA6L!c(96<>DwG
zM>>vs<2X7!T_Fx0U{E=Zta$L3W*$y(k0`7t)oj68O;T(seWO6=pvsA(iZtcY2?qlw
z^LRzlelyZlZ}V?tQMg(h)#E`h)Q%%h1bA$4P2uoQ)O_<So9>Ha!lkTI2NfS`s3n-y
zp*L#Q5r5Xr_i8->^lgJU8piQ-9M8n@Kpc(YcqopC$yu9zFpeg1G>xONRLQCLUx8+E
zF!4TeP_>AoIX!SN_^-=t+ES{o98|61cqES2arBo~;?e^HF_uT;XcNa{aXc=1o)r2-
zJjmzFIiydq??J^v;j;xZ+KNDjI3BHBsGZ>UqMWTA<9Jp$TaTqTuS%0LFFhZ}&vE<`
z#|v?EW@{W>;^-5{dvUxJN7p#s<OV#G^>RG8j&~DE@Jbx7QoeZVHQ^BOQuunDk5Oj?
z`9B_9v)+hfP_fkByHan((IbvB1yViZcw3sjebnz2N6R*T)`9dpal9Kx?>P29>i0gA
z$tIS6Su#`a$MI1dABzDW#POj38q-(6#WPu-#L+K~A2_dKsZZnhERHYZ_$rRi<2dn@
zKklIVf~!-x5a-SW-aj5(jL7^tj&I`lHjeM&DEf@gd_JvYUaM#P0dagE$3O;iJD-J3
zEVltW)_d9?6vvM;)=xq?=<Bcf|6`X^S%c#k634G`j5=JfO(*|1h8e$zJC!vw9z3@5
zXB>aUF)WVZaf}eo*m&^PqmhC~#qoO_qvQDLp5Q6bF#--&P4USoJ~cm1B*zP#AoLHR
z>^?D$NrLT(KC6E-D!6SED4xKSIHtz2I*v7QOp9ZB9E;+?L!C3?!2?9IxFxfKhmU5`
z`E^obhx)UHGe;<!=2Fju^t?Fc=W`YaSSZvem0BDRp88xObg58QmoeMq;}vnN6ue4k
z??^DUwQ;`95+~z0703EGHpH<zjy-W~WbzlyyM%6Lo)^#1k}Yv;<#NZdU7E=GE<06Y
zl0T<nYA2VkYKmpqK}7*J(baq7I2gwvW+w(!)zp5W2ZZuv9eWNcnsGReV`9~jI4&Jj
zeD&7RI2!yCJg9p--~JN<_|W}7ah#6hN*q_?IKzM(<6nq_Zwovt_*@+41(4FcY`sXG
zaqwkXbnoRj&J7D*fWzm)u8G0|2^37=y5Ji^Z^m)`NB@>!+V*c8{|U}W1Rl;5O27wc
z3nfsaRiHMU2wv7q{Fa~65(o*_g&IOlq47hCGLb|OfmQ-h0d@jK1UL!A1h@%!0w@+2
zkVpg%tFoHR=NC>O>rn788cR`O-jTqa`K^5Bv_t}TCGcDVof5b^fszTdPVmjlD3w6z
z1ga%aT}&#IK)D3UCr~yK#NotIJ|EBL>?$OXn}E+z5=bS2cfs95$>01+GX07|vlEy+
zE=^%R>RUO19AS3)HF&KAOO*uf6%L<bu9`qPf!c?HwO((gh<E<r=gEloi42FXA=R2f
zmC&aSsaounK%E5YCh$PjRCAeNy#yKwxL;`f{8=|hprPOg@;R+02amWuDAmRZG!f7=
zzqMHcFOLhn+Cr4K6#9_RhlO&)RstSLU_hM|t9*}Bn*<)`a){ZF(XcW8qqp*&Oa#%+
z(msKw5_md+o`=*k3AB@mv=z!Z4jG*$<<o^766l!VmsF`|6ZqzkI+F<AbI8{QKA*q~
zG%tZ)6X=}4iwV4wz`F@_N#Laf-jG4*!>$RuBKT#Y<HfPB3VtmSyuPEG;MawA7s_6X
z52-ivEqN<}9yBr$yncr!vGhvdZO-erAfCB9dP}dL6X27NeZ*t$CGb9(34EA9|9l_z
z70@q%j|6-y^ppHn#^I-eKNI?SKL3jZs=gj9&6f#$CCsns;RL=H{Eg6Wg?^U+AI7KT
zK&cW8O5lflO#MIR<DVE*;{%<lZt9l=+Kvz23GiD2gA*8)!0!nRku@5c;7fgjjm()2
zmG?pnPw=7F)Mvl=BNDhe&>zYD^0UwCXwE%>N{548HdaRYBY}yD;K}ZB2^>76#&gzV
z{0Rx%IHbs=&ccTSI*Bs91MoLDNCI;%VD1G>NnmOMhdbd&CrnFVI-4qDN=3{_U}geW
zisNc=%t~N3wH3w9qL`Dw+yqt@#nkTE^Aeb!z+R89(Z+%V7A7#%!!Qqv5`67E?)6a3
z!;%D+GL?BK<Y8F?%Q;p8M-o^;B?;`HbGY;gtWID<0vi)plfYW)S&{u$r(BlJXDe?i
zR%IPs!5Fxb+kIFztD6$ooWR$kvbQC0@$2jgeX_Smbt_{sma~6IWzvIgrS0^FTPfT$
zcUJ<t6WEu)eoi*#?@3_XsO-JWhyPVR(JT9-qPY}1kU)l=<Cn}m#9oZ*e%S+)IsZ<}
z+0#9z)~(7%6F8Q@xdhH9a6Ew%T*r0U|0J*_JLhBqr<jhOtkQj+U;nUL*f{sEM{`dn
za3+D@LY1PWa%tXKI^k$`?3?ThG?=lSz%6cv1USJfT-*eH`M2`r1Rfrh&Ec-<{xy1=
z4n)p7mvgSm)NXr&oPQJeFM;e{*#$fvCy|rk!5)_VXZtG0M`dSvAmwnhq~qdjzN26B
zP|8DT4<Qe_hq#A?2g8Hu!SWFG5cUF95f2UL`(+kq_nMW%D(7N*a6H63xE{LI&Ds8S
zcI$_7Cbh|V`mlQYup;GjJP%0^#XJ=EP}oBe4|jOD(*q@`;mD-QMLncGuSz%O**TM2
z<qoKtvvjs!!oyu2KJS%X(nEvA*>`(b*gYrNFWc*pJLs_DYSL+CyudSA?CznghjJdu
z)8P5Rq$+rzom9wKQ~5m}X0FPu;-RXCikypwN**eE$n`M!u*#9v&L8E3idQLrqdMsm
zP8Ht+Ic(+9q(z(kU0@#VtnML?tsY+VP{Tt_507v<9+ZdsJT&#t%tI{?wLR4JP>=q9
zvdVx5a_TVntN2A8$T`+E=Y9|MJ^oWVw+UzGfwB64hejTcXvt|PRe}cvu&J?!#>IVt
z$J$pRZC)?$gT>j+J+$!9(&J$YeA!MA?Q{jb{ji5t9@^B+p<}sN3_N;(et48j5A8j4
z@bH+2$2~ml;TaE+l+TU~j3+#d=vU=Q4^L61X%2S~t5n$5Lpu*#acZ+;mB#hT=CXG5
z@T`aDJ$$(+n?pS3p%XpXD)*BSxm<TT{C0S}-~|Cs2X^uBl81pFe(=!M!^<8%@zBr1
zD;{3;@Q#OfJ-o&s9GCN!haLjD34Pr|cL8q*rNEmWU+0@9=t-;SF-Gr{Y?RG;uv-qn
z{9kh>oX+`iTXt^`J^#u6z(bcObNX;0GIKxQoc*4M_Zd{1vsqp}Q}sh>r9fW+AJLO{
z<b3Smh0Zx-e(K>f58rt>GA`$H4_|or%EQ;Rd~8mCF7CCQFFo{Gne%RG-?=Au|K7@N
zE988`*3sGDdib?O?)t+j?|4rA_BjI>^Hp-b_fW89Zs&rzr>o`+;y(H@`+r>Vg1J9>
z_=&D)P$>IA<)4Mmre8dGrz;as;8(_vND>eBFody}okNAJ4(F12SnFXO_f)$|BN<U1
z=6V?A;dc+CJ&f@%U7E%Uogj3a(D6dq>+_@8f8^td0wxLllbcJx-}$YRJxs~RQw2;D
zdiJoIAz)^H>nsnm1yebPm?wCl(E0f?3p{M-o5R*c9u_nI3xB!Lr9zi+%l}oGW!>7U
z6kFk8rSMk?C1<sVHG(O_D$9DQZl`7e8@Yo7Z1%9l!&WZh)j*8pHrOVuw1k`;9(D@Y
zC6t`q0`>@{srx+~U~r;R_o6uH;SjfZ63vr1%m`urNupd5M?D;4=1js&;<$$s9xiye
z$ZWGT=cI>IjGx}Q#IN6-`HzRw9?p0;>*1V-^B#s*@n5^w|EolrSIo9W{Ox;ltRt$B
z?O*b6*+WJWnMqvnaMi;N4>y_XT2#5_;W{_+tje!1%Qc7O?2lDyGbrblhkvQOO74Fi
zf3v7WKFhVM*=*``HM>9(1(VQ{2qjS{8Jx?)RyL6i?-&SBEqg6^KU+`A5LdI=lzY?<
zCy_|POCpkll|(cNJBe5lE)|~4$*q#<B!g=`C0Q-lDL0<PrT&>si)Ip&pG+cWa?ZF<
zsuoM4a1uq5C`xV3^6p6DP62Bpxts{c@~&kQ6i=c=GVsY=LhlyktXAHeTQZ4KNjy3u
zm!-6TGD$q&w<@dUlc<nH%_LM3SxNpd3O|V|N!*h}*HCV55_O%Nib-TAF(D(TQWBME
zm5lBk^=H-cNqa_e2xv2Bac`bqHHmwZ!Kx9biSvBUrCJizlgLYgYt*Mer5a+}h-p>0
zb~&+1_a#v)iTX*bt(;psiAEzb%g1u+CGpC{+&VNsz}6x)j`zzU|9(0-mP4Hll4zL3
z1C&pqNitYCtAF;~jRhV|qOq(ImxgX3p9|EKOVB@?BeqDQWfDsZV_9K5l*GeHgbO25
z7_E|cB#A$h_$!IlbWsvtB+);KHe%}YNxYE6V@W)o#1lz8nMC^}IwbK_5>F@5Hi>pg
zJR_20mlvdMOKJo$nOh_C-Tv8cHZDZkF^OcWs?R3zoQNGXD|O;n|BtEffRdt!x+Yz6
z4%0n7Gu_j1NW;$T%o3Jv5d=gOjF?dr6p)}2#RQ5VCJZ2$FrXlUpkPLkU<3t8il`_C
za?Tn4+i$-8{_mVR@7#KI>(#4Quc~^&?mU?$jewH4e*||#@L&X^BN!0Dzz9Y}Fp>)q
z!QcpnL@<=0h~TaW?iR^jy-sIaZ1o8)5;-h_LUp*<e4=^_Hc@j=1fwFjzpV9M>3*M7
z$tlnt5VIuH=9mZ`ieN$nk45ls1Y;u@7r}VpKO&MoaKv{G<R2}oa-ja=1Ht1FJP`qX
zpfyU8StdsCbOdiQIhh_2JS!f)7{PM_*lUV_NfAtr;CTjibdJi<nwXs$!3#o|CDoTA
zcsYVsMDtn%uSYN~f>)(F_+XyB+V2kK8xc&GCgSB={X)}>2xba%UIcGPFe`$0rTUJ@
zIU>oQEr7!n05x+(b9vWF?+JLnj5$97SBCpAf{!BjmI)?JA4jk-g3pP|n4b#xOk`o*
zzldP5R2PZ-QY6QEuxq6y5iE^hS()bR2)-)A6J?IyNOi|n|N97*N3fO0X#^`G_#uMd
zBlshNA0t>9!MX_6N3e?fOZaOUbEEv~2$sBFevN2$?#{4qP!=kGj^LLFe&ucz&IaL7
zw)!mO6uPkbn`qc^Qv`oT@J|H)M(~%AH*-HmK+ga6Wyjw)W~n6jk5_>BKuiq{Zs*}2
z!I=ooMzAx&FZ|$81cxKo9l@Rm_C>Hig1yqWd)G?rReMbSlNsp)5%iAWpzJJeDC)Vz
zD31v9cmyXRILa%4NB6dHkJNu8oZv}L>R{$n1gC{Y%tAfOeNU#(MNm!&e|f92g7Qk}
zZ6%Qv6jW3Yj$4+H1YC|P(ppVHbp=%gQ@`tz%;C4fGu#?mp0XA@D!4<z00ngv)K!pH
z&_Y2y1@#rg6(kfikiL;J3k?-CD#HwsqCk~uRDo8eFDyh%s;*2>SKugcMPn#PDlipT
zN;p$nlyr>#+}kkpjm1;Yq|91MKx2^?Y~wEsp_zi_Qe~=;To|HAK}JD$1(zzwDkxTP
zo`QA?atiVaO3SR3C}^diwStzS*_6n><7D5sD2zrM1uO(ztm3u`{IY6LrexFk3fe2U
zP(c?39TZ%kpmUk!jsiL<*gra43zjOo^EAj+zDPk=1s5y0L^$V0lrJ0z<a84acP@K1
znV7wdhrfdB72KfU3Tf&g@=B3cDJVEY=G6+WQE;v3uM<gYH_K+9u_t$<f}RR)Q*gV2
zn-tuvpqGMMgm!1=aI!r7Z&lD+G<`^rWnw7U#8Q|-Uj_XX^jE-fsVoGCfV~DP7^L8J
z1#c)Atl&-sk12Ru!CeaOR`7s=2NeuaFjT=v1@|ZzCKec+5ekM&DI9~ug%L+7xKF|T
z3hrfuWfnZR$S<^#Hd?_L1>+QqSMZR6hoxz(5+1Fj73@5sfQ4aauYO%CJt~|DA`633
z|Ac}k6--euRl!rz^sIvC6iig`v{auFNwbAuP7>pj6+Ex}&p;f4#%YSde?h^E3SLn#
zt!$K+6uc~MaKwURuSyg7uZg$J2X^O{pRV9d1s}6j!CMMuD43_<Jt5Cj@Q#Ang5Op!
zOTaIF_{738N5Q+Id1ZFElye0Wj2@GJU%`9@ABtvy$PWtAD*uigL_C^45>3-|*q7x~
z1&b9dQSh09h0^r7f<*#&h<(9WO$@W*OVJQK{aASYEtTrmBA1E$O5~n)#oq|{RwSAK
z{*hg-V1<I^DpsiYLBWp-I;!ZTVx@vrTrU+>Rs5u2wSs-zJ_^<-SgYV~1^*~mr(nH;
z-xU0=;AaKDDEL*uMy8xRa%^B?pUxIs8aA{-0ki231)GHPm$>n#-~wUPHlJX#f|s`W
z?D(&O{}k*{uv5Vn1zQzt6Pq+bYqZaaZ)XCR8Q)cyrh>f+b_@Pc_70gWg+Lupa8SV+
z1!ol;QgE1ufP&)+j))zaIx7B<Ow3*<6r7YnPl=Jj)Ho;!r<s<I<><*d1^lVSiYh9p
zp{Bfw3To(8!9u}XVlttkvKq#x&`McNMRgTTR5VplLq$y$F%@wYwN%tr(MUx^MIAL9
zuD*%}D(b4JC)Ksv{LBO4ZlZ>=p$cA4yJfzL3RRSv$f$~Om*+{N{9k@Tg)Xh03PVLw
zg{8t)VX7z`-86{p;Si3D=n9z{S};VWMAKL#FLWAjrlPruwkmuTX%#J0l&EN_qDVzX
zMP8U$6|`KeBB!FA*r7qX&FK)Z&|At@D%uEWEs~m>gj_1sQGx?nP;tI!&QnonYG20h
zAfps)ULZ=k-C4zjDxOsFl!`7YE>bZ-#XuEZRa~s%dKEXQxI{%a6<4UZQbl(amrCEu
zWMvBrTG(!vb17F8(LSGxu2RuM#ntNnJiT0_hEFors<=-27N$9AyU#}j@^4hpQ$-&Y
zx2d>E#m&OGRmHnIvb|K?qM~qguu3v_1Z8g(zsuU)uA;B-`>W`uV&v!?OX0*LAoC6t
z?@Mq7sTi!{K^3E!Zz}FmagT~oD(+S>M8$9wBh>IYhu8X0=Bn5%Jn&G%r5P!iMzDH&
zxHR{wxKG9XLTg@j#m9J?h=${Gqm5DVkc#mt9#!$MtnyeDj|kw3k5fV4m`;@B6HHL?
zn2N_$JfVWOd>gsbd&?~|pN`2Eo5--Mn5W`B70;-6R>hkt-cs?Lib*P7RPmCE$zt$%
z6;lMfdoVwh!919Mq0G0wm*@GSgYsp@R>kWaPQ^48ud1N_HK7r(3ptc@Z@QQ*G*L;-
z3>7oUS20`oZ*w6o&(Bi9u}Eg2L1HrJaCFfS)52U8vr0>7_I(xeReYghk%|Q>K2Y(g
ziqBMhSmx&^Dn3&2F*DOD=5<fm`KkZ^<iq$ZRPi}|kR~!||4S8%ReYo3TNO)GELE{g
z#aC+hC{hTilP>?YFxj1aK1;CscV(LI%b0B9rSOA_A5|z(s8Os`u}Z}m6=!+=GYwR1
zRk2OQ8Wn3*{390DsaVg<RPl$3pH=*#;#U<LrD=mm?t+1x!kh88GG&&omX>fMY*O*3
zioaBBE^8`uA^C6FJ_Ic6{;v@JQ?Z2sl&4DG@@(3!Vuy--D)tLur^r1jcB$Ac$;M1$
z*3}dJ-m=YjK*d27$5otAaY#ik6^B(EQNv8;l{({4xYkEi9OL?SX;bil%9D~Rr^VDM
zkxZDQSC{Zvy_$k^D#}GsM?QsNm-5l@XLl=0wL%mX1ym|)9r|FtN)%P2s9C0|CZKv0
zeC=Ntu|^c65!Wi?)Q)1O?CZKw)DvZWk&U8gP{wH(#Ujboh-eBUMx)T8xGIVsQN*H%
zN6|WpHc=#^(4%M^MUyCuD3a2}i^7b;io%J)jp9~$l(Nh0SKZ-LGoWiFZ^!?f)v0KB
z3Q^xQie~gbisC4mN0E-AD2hxp+=eZp;4YXZLE}c?qzahITom~zT1L@II3-bxlMxG>
zajJAF$kHg<M){9r&?O2#iXe*fqi8RVohPzgG`#)_g+p|R;({nTMbSBmj?w>l?N)fn
z)^Uf=S98~?p`QGUqUah$_b4unhRJYo6y2iX)50ZE<txO(0}RjP%c9{!#T8Lp8O7xc
zDWCLqWO*#JsUSJ-)lpm%MV}~c6R)m~;)W=06ntG2*9#afIovafn;2oy+${1Ik-bFH
z)b`~?Oh^Kj-l7~T0l7VjJE9mMn!b#G6#b*&`9s>UGXB6Q21jvc6oZ7uYm2RS3BEgu
zAu=_(JybMoDy#^fLWf5&B8rhw+!MvzDCR{mikji+2csA*;NB?i6F}wt0v?EBa{nS$
z$3*c^6jP#@8pXp=jE&;CC?-YW{gfUuFWuz3^dnI`->+y~6ypUvDw3KBQ9KsK<5GP>
z<V2BAM)8z@ospKLJuUbdk*q!&#f(qV1bue+lj+qC|9KX+a+#`y?}vBm)#3$mqL|4w
z?bYH%kuOE@aulx!o)*O$0$vqK&TCP;F1YBOG^^7EzggD$R$0^AQOsiM_G&RFig%)z
z9Sz^{{&{tVa^~?C3wAW6q(AS9o?g8d#rsiw%gD@X#a{EJ@6sq1MDc;(cX#+73YmRB
zqJBrykGV8ad@A@e?rQ<mFO1^zD87(tt@AR}EZgCKDb>Zy^C(s<F8<~G+|zwpg-ua>
z#TnIZ!9l+k@Qn;tu7A;n9sYOX&-Wsivm-;d!>5Oo?E53HfGAc;hOCZajewt+57ojm
zYHeBOoQPtb;Pp}b9K|o(J5t>%@>jlxU&h=R#cyT!_bC1lyh-GrBL6CD-7MhmDE=wa
z?2`lMzbLkdW^0*#TNK;N@D84kf_If^c1N+N44+MfPe=Qr*e{v`A`gl@RK__h;E2eh
zQ5-AN9~W@dHRVs1X)dc<d?t#sJhe2uuHoy~irQ4Ea4w2+8p>;^pkcCx=QUK+P)WmU
zW70h}Ktp8>9W-2^p^Ap88X8MeH4Q(^PB+pJ(NJAO4GlFl)Y4F2!}^n%+8XL;sHfq;
zH$~T_i|cCm^H6$7-R!(MX;wd(nZD=MbOQ|yHFTbtrk%PwefCl`s2X$)hK8sHO+#Em
zvz`9V#+jJLA5Uzt=Du|Cq%1%DN@(Dx$=%;cQzkW-8u~WKcp5AXR5}`50XF@2Gt{tL
z{$+8!2AQS1ic(tmA>B1oGJ88_n`mgtAv84CP^2NFA+2Hl;-a~iX5aX@DE&aXg@zYr
z6m^_el+{qI;gX%c|4KTiA+Ld;y~q*`Z3MIw*-GOlL7CQqulpxW8cV5$wxS8E0s;-^
z320ZQKVL((UK<j=+g)_+flNmYoitpd;aWyX!-X0y*Kmb~E*hqE$y}u2^s!9KN|_}K
z(_IB$O!owI6M3n~?p&awMPyzkRf5MyXHpefT&ZEePX8*-`ku_y%hElhdbP-hrlkj$
zYf-c*eVv9I=)hxX;_EfMa9;>+6b(O)JhUf$lZKnQE*fspFiOL{8gA9_(Xs4ZjL+Vp
z-WvKaH?q0gH1yNZU&HNErKYcdSuf}A;D{P}6z2x9@8sM-4R21$U7yd5-|3%zF-QGi
z4R;EGc>Sc@-5R#NkQ<_5D5FtaGEBn=4NJ1QZi|bDYbeR)o|=*yDVlpkPTT3T^*#+B
z?DWTxysGGa4G(B|P{U{q4{7{J7X#nRjnT08z1)-U<vv-NV|CR||AAGxu^JxHK+Uwb
zGTTKno|(gKvdf>K;Ta9jYIsb;;~GByzW52od6(a8m;a<xsd-Ans!I8ZQhi$F@@o0#
zG)xj^k6nJv?~2dg<r7ejuiavbhG`mJ)i9MSejpQFl74}^U`hH#kuPa@SpYS!FyG3x
zAei@G+B?69fZgBFFr7h;<BmAq)bJLk7Q@&WW@wnH;cw=ohPO4$;;z^5jfQtL%+~Ow
zhB@srb3`s+lr+4nVel@WWv+mE8r~D|zR3B)WNX-~UFJg#pNZxpksphs{u2S8ihNYa
z3k82J@(YoRM6MbXj<uM}I>=ulnxz_+F$k$*+WCqx92AcAt%mQUb*+Z)rFD%|mupxd
z)gQ<d@S{j}Us<T`t@M+C)n!#SvAi(IU&oV5!_OK9U7Fpf;Wq)lXxJd&SCPZ_W!U<=
z;J-w&`iFo`Jk!cF1=?n*vg5xR{?l+>4A;l7MZ;DNO=4&o!!`}uc_PJ7Iffk?c4|1O
z;gp758g^?qsNs-?JxoOn`+0I|*vD;hWA?3GJ^>|hK|{%MSi=zw$NmrJsL%@h;~GwI
zeWlkXk*77B5psnX&T2TPp<E2*W8n}4>_z#%!x2=Bp;9ayh=om*Rbr?bL!%fXF;o+B
ztr%((#89Km0%<j4IJL{C!8$Q0yZw4G)Q_RA;NsmrHQjdm4Ptn0x8E>^0lWQiQa)!>
z3~CH|3`Pvm7_=DTF_0V+kcfdy(x_n}V3kIaF_<xUF{EO!gzv=Q3a~{MXa)Yd-G1X3
z_J~cIrLxK%zgY~;W4JJeE-|EIXc0r}7}~^86hkJ4mSQ9uL$QFocuogsHYXbTP$C`{
zhG->zl0f^~)J$m%ehfhjZKc|BYKF@51QWDlWEzzxU^!ou?PKU5-~y2y%b1;F=v;<r
z>Y^CB#&D%Xl_9-2hVEtf5&_*9kUe3vFOA`{7%q?DiZcC%C28s#%`YP1su+5R{^}U6
zDYL-7*9s=5;~xKp7;cQ=4lY&<JsGR3GdIOBtyk#tEqnZ%W9SvbEuy(yB%5xHp?4YX
z6T@vWOevp<oGNBhU(xrAp+B=|ZML9f>%bTW#c)pyqqq>OL*s*ExRbl)Kv9oP74M4S
z?ihx|Ff@i?F?@M-rldjcp<db1d;H&wHp4|TLL{3;3OIBkG;(hY55(|b49SJr`(n7C
z3pzE!E^KPMFgrSiF<hF3+1}Ai7by=(mG}{^V+>W|s2a!k7#@vbRSZAHFd>G=nC(1T
zWjP*?;iVW}j^T+Io{ZrsI=LY8Yz)uEFj4T+BB^{v0DYbm!{ivIO7~t<v(Ga)f;ppt
zZ&cE~7ex7@NILwAfY(J%6G_gi%tpcNQb?^gq&hu@HwDn<!~bSx#_)CwAI0!-46|Z*
zN1EoxFk1laycfe9!S9x7=Eg9u4AaQ_f(x2UhGiDS@Ied&ABvu%lk-UopT@8xhNYtX
zObB1Zuu#C~qWscm!(NMI6~2sNaSWUql`rq{3v*u<!}l>PkKwBrz7_&4e-p#EF?=WF
zPh`c}i(OWT=7$)5jPb8~as>?~%gPw)JrXYT>KN9<u$#L+hP5%Qi(#uQ@%k8kj^R(~
zNZKzkY^1dqHgGlf`0V?u05;LF-(&cr;3}={@#*#^$tAY_6~ks}`a6byV)$1kOFauM
z{3kP|g)L=?w=IV4JpW_Z8N)8|gz;w>8QVR3{7?5*V(#tbc^gByII8XS_Y3D}495f<
z5P2|$Lopl{Ja2C$mLuG8(J-ai{kY&0+(*$2Eu7?m9K&f*l5;MGGlI`@1Mc;yarXL!
z?&ag55ta&ZR1{n(4*tyKXyI2D4VfIJS{&8m$i$J2qedJx<FMm!;;0o5H>?te8b|Fo
z>cml3G*mVaP%n=90){7xxmBre7)K+~L_|K{I8;Uj>v1f&Ijm}N#6&|J7myH13q~B=
z=`6`OOu?4O_IrIQ+1-s}U-?W?99|r$I9A@AX&gs$0mMxNG>xN~05Yj$NlUfG|IsJE
z$rQ(ti{s`vdc~2Cqa==H&t|TT<DEM*E#qh%N1HfW#lbz!5YbgevNVo%ahxAV+c<m%
zaFid!!+YV(1#O7Wi-&7;<6ggg93A4gGLEa_xFC*>aa<9{ZOw~2#nCwq#_G~IE)+m~
z5qk;l(Kf>>OV>Cq7R@DMkeY5%?H&&|X@PT@XfBVV(<q-B8Xul$Gi<NlBaW-%;fYFb
z=@`K^arBv-=7zd1j_c$2%r3qmj+<n%ZynFx7)Q@Ip4sa!dNfz3elZ`a8HC;I@|0xW
z634B=WVJW#2)<3^?IPRG%=Q(~Pa;X$fH(%m@pBx%#4#w2!ExLh$9=4t**oKScdvg}
z980Q~@LP6w$1#Lax}eR_c=*QAx&O)y<D}vk5eL7~dXLDFBHPM$T&Wxt55JsDaDN;R
z#PLWR<D~C{A}^kv8_g_TmKzhtlckx5;`r|6+`}Triez=@HQDiTJQ~Maam<KgY`^@3
zIG&GVN*s^H@pv3h#Ibs>KQWG{X+#L*JSECKd;MqP_-K3yHP5lvttHP2p~gOcl7Pt~
zyY$bKFg4CUVZ&>2ydKAk%%y4BSK^4zE+Tj-j+f&|Y^%U(YM)OzO$e`YHKoe#Z^Y4e
zpa1^O9PxC%3J?M@jn9nZ?Kl?3@p&Axn67cWAIJPSe(Rf`9mhNYa~SG4<_c~(r2?B+
zTJ+1mCmP~H(}FlY<c#7NwKMmD$cOj&#2?4;sZ>8<VB;t#r|<JW6XoK4{ugm9isSn@
zmNVJnSWF|gmV6^}3G*S2uLLiR<IjCQn^?Z)9=|1&-TLNP{gx{d$BBJDm8?>(kS?p@
z_$iJb;`os#$^Ni)rF0~qsnv0;iStX;p{cdfeVy20)BiQaAvVPEYaAOA_%(rzoHa8!
zf!+!H9>*VChy)S|w4G73DUR)N?4X}<{1wOMIR0kJ#WC#u>_2h*8^;#Gx&3~3DgVXM
zf4@I&zyIofpPX%6i2eRAf_KKTD~?JDAc2{m7VVCQ@>m>u1nd>LPvm})2Sk!{P{5%$
z4##ms@Y<fOj+Oxujtf2^@}x*APsMRs@EMV3<2WavTmluuf%Y4-<rAPJxuR$YMr=$^
zDc_=U0@V|!k-(w-ew75OCNObpnx$F-&euf*H4`|HEmjgx6R4FyZQ6_#*CD7;TvsrS
z)RSs`k<>R3&@h2U0wM+d0Y7YNkdG!%yr}rizq48bu>>C=TTpqbR*rJ>e?@u%K?3I`
zU?h-CpxFW6OyKbYezOFu1TH?{+jJ}eS8&gx`6dE9ktvalMc#3Me-Q){2q>E;@TQ$h
zC(t5+q69KhZJR(=z^ns)8+s);mq0!NYDyAlEgE)gnLw)qzB=G<I^eT<=79fvrz}CK
zC<%OFst3c?b_txHK#v5jX3P`lkU*CNE=u464sp=$m_Vllx*zn{kI!{Z;JY!I3q=z2
zKj>4AJLq@i6cV^Bfy)!PB!O<^Cvd5BCt><Qzx~-P!J>mc3&9l$Tq#DbO5oG+IcjL?
zu{-mBNNbzNa@QnqOM-tslV!P9z;z<87kNVhHwx$}@+OftizL5S0>hRU5zr20p9F48
z;H3m!PT=+g`X=yD0uLw9FTua$#a#*9oxmLl3`k&bg1<6WJTQSl933UQ_GCscDjK^#
zed+3=VFNNfqQ!U8?bp&hD;5t)U}yrP61X=3a`-}iSOOjQ7Y$EfL;_=`w-_mM$c?#s
z1W+@vXa2qf?oZ%Bc1fT~CO6>m?7|nb4<tZ&<e*PZgF`;cm;}-S#wPGc0?#J!Tms_~
z7@xpX%y!BTiU!S1_ncSsXaW-wc#Qd$z!P-aD1I^lZEc!><>BU;J>^4icwXk(1)2LU
z&pw^Neb1CUBa$<nl)&T!UPy#j*z*Z&?~#9Tab_wrTrh7pYRE7CJNyjgMJ{Wv7997L
z1g0f0CxLepcr}675}3gqnh4)2c|C!@8x+4G`1_4Td{H)?X~tmg@mbzt_C~S<Z!=wG
z7PAw0N65`zPjgbdSU;(kp$~i>n47@71iodGB=DY)KVzU0cwg{*kqbnAAo4?zH1d&v
zk41jM>=LkbN`_6J^FVkww~SkWe+8Dn_p6H*iTqL|tBVs@B6z9D8_<HvuelMf&#<`H
zXTD)BeV2JTmu2<)1ePbTE`jw4tVrO81lA<LZ^CneKQa|%)+<HoSLLbviQDRszgi>#
zH6*W<F8jvi|D9blrdQ@?8r)uV+adp#1pn?kGx~zeMyBhM^lv=;1>mpr9|>$?oD=wm
z$u>N#uB-T`fWH#BF33=`S*oMfrvDYNjjNf!e}dV%MZnes&OD!Hm1Rc)`*~)Hey7M?
zB6o}2lfYg9`$Uq@PeTq0K9s;=rs&2dR31ryh4?5fe;Ar2e&CRQB7u_$>~^uo#i;~N
zC(zZ##Wv0)aF)ki5;rArE`f47E;ew9f$};k==fU4H##cnsHCH#j!t@*qR<i5q3Nis
zql%8II;ydH*jIE^*U|7~Q7s*{b=1)D<GJD~hy0p4e&|zD@z#<$I_m0ZK#q=jI_gt@
z$Y;~b<#H8f7m+;wkl#qiOFHEvI<`sc`*-Ba9rkHo)iLQr>kb36F&!`cm^XAJ1;lkE
zbhJF|>r&m&KYztx-_&90XrZG>hpofW(M-qcAMz}&4o^o)$Kb<0s}m3Vjde89(NxDX
zeM<ObGVidz>v+*hX>HKEq`8hXojL5kurgczh@a7s)zMamucKH;PDd*pt#z13{5;(d
zBPB9c*H-z;J9Fn92}kL5#BZbH#Up;Hj{A@J$HteimHI$Bw$pLGj`MWTKJ^Qa`0I}N
z?R9j}ae<DZEpwbWBhb5l{_xTwdeT|Ph4f#?ojSVcxJXBT9e3#H%H`8>jgD(|Tp|Nq
zs$>2S`EDY+>)>P$9Pz2SOvmLquF!F%jvhL$7Kb_6tGGbDOIR2RGU+OP=IGbyxL(Jt
zI(qB4L6*Cxj+=Dc$hAHiPLQ0Nb@Y;fZlSVOuK7{^c3z&|(*Iw^mypv($L%`$>bQ;a
za1k|Z>L(E+KCvdp$7cG*tQeqU5cA}Y{6M<bDbIWuIXnH?yIE$}T{`a8@w|>HI)*Sf
zI>zgGRL3wK!*x8UW3-MDI!5ZaSI2!^olzzC=;(9QA0?^P`KZrSWU{f`uj8Sk{sWxy
z-1Jp_O2{N_43#<_(XsTXPtL<S#_C{-zIN2-=<GY==b~{sem&~H-n)buOXUO|PwIF|
z$77QJkL!4X3(>pe=1cN4LfS+fPwRMA$8&UScKX+Tc@Ff9j7~gB$7I<oY@%@{JjZ3P
zsXAWJ@t%(NnK{gD9dGNHMQ3!pqT@9kuj`m59m#){`}Ecl4tMORPdjhun66`nj+rtM
z+GH5tlpXh$j>s{eRc^hKWB%pGd<Nki9SrijI_Bz_tz(XaowFwM@LL(0ou?zyH(y`J
zq1*G+&)2a)$LBh}(D8we4|y`^_*BP7V&`L#bc0d-x@Wj*pV670i>CI?F4RF~xWSM4
z)GX5RB|Ve~leSm_xI|WptsC0qhaU5n>G(>f$tB?E?E9^b?|6V1Xkg%b9m{o;<B?@x
z1v~24uj2suI#%lVL&qi^t91ONV~vir%yaGnPHJe$+sAx@EhV{iI@ashz%|wJW|PvN
zb^LX<%`ZCkZO<(}=Kn$RF@K|u=1od}=aF*U|Bb2Dv^4TtzTt77oVk~j{K+mlw&>WZ
zV>4H?X(`G7a6caR|7Ns*%d^VzuNe8SAUEf?>DaDgw~jrc*&%YL$lsfk?h?RWw;%T(
zIqvVJKV0HJ!{MeM_j@)iT|`fg`v-L#)p3mL!V|k&$;spXVI4;VH#p(1A6jx;@EIK>
zpU`nqs;8LqC;Zc_9`{?E@bA2>gp&BIj&s6%d~c4*3I-|~sBWN!fi5TfN(L$$c;SS9
zT*<)TuY&sbpYU0&VxX$%s~MOup@f>>T)(D)Su65&47`8BuO+y)$ZuEVsjn;gdLmby
z@X2Xtppk(h0~rGm1BwBi!=3b11NV)~#|_-xzhu$lnWzCuO=Qf#zNT4LHx4UF7}$Bj
z=ii7K(kp4eG+-I94Ky~;#DHVKHE_d8-!u3lYZ>RH-|?hRu&hc+$^hlalRgbLHPFmJ
za{~`e%Fyzplm6V3KHW$gSb5TKVSv@`C;hB}VgnsH)@eUyAaB4o5Ev*i(9%E~1EmI9
z8DJb*8%Uh;U$0hDL1dd#K0#Xp*PQZ4oC*WQh@EGk9qpg;J4gWe=EnI3+6$g?%3t<l
zX2Ge@)e8&|Y(3?3&`vURX9E`s=pu4v)sl-0bQMevyL2<q-N0@GdkkD^;4%Z_4LoY#
zawELTucjLYt}wt)c&{{Ym4TD9vdjDB+7Hh4VAz+Y39dD;u}k(A1GgHu&cOAIp@AC>
z+{{2-l<jF?!^-rB19LYS7_ce*h2S^KwO~^(nypnr(3`1Z;2r~`WT4v&^fS<3@a+cr
z3g|wf0)4oHMhpxwFx0@?e-#fjaF>C*1rHM1V8M49c<#;|33QKxcD_5e_wKMd%)oGZ
zxFtgeUa65I7-3+fXo%14&E3mM85qOG6>Ik!Sbk^jL9zLO0UCLCK#p#VHb4s;f|`d7
zu;U}rI#w|C<7BdAk}$!*V+K|mSYzOE15X%u$G~g@Pa1g2z$*r(8JK9`X#-QaM+_uS
z`_CAdWMHy^XE_lW{pPZX(B|_7ricUQpY~~=bEJIH0DXH|9C%4ar-wAPp=Sk7|5XF8
ziH9={yl&tPA-rXPP17ZYZ*si`=MFE-Q!*5kGbDyRZq2_fmS>3@_w2}Y>5!d6je)NX
ze8X%vFwelp%od5*dj>ub@V<fh24?inEuc&N!k}Gu+Gn6XH1LrSww(*VHo&nyHSn2%
zB?gunSZLsLCidXmVlMG%KTH@QFOt!}6wF>UNY5!rSZ3fW8L0KXaFl0H`%E^1Z@G3n
z@C~rnchd2D@npei{|5s<ismQoDX~ocDg%ob<_pH@Ckv}<4Xl$m>@u+4z|RK$HSnK-
zUzpVf{uU#@GXD+yVPKPZ{+q=1cWGL~Dfi2970w%y`_sT*q702oKsJkS9PuB~6VzFj
zWz!a^ZZoh|e4~?8Za1()^qeoNJ9(t^3!OamXOo`>=JxWS<EfGi_w0TH2Y8w#QU9h2
z2MruDP%eq`NgOtC#J~w|VFO1EuorXt7~Sq4`om3n+yF!O_PU}|-166ES<VVLZSa35
z{*Q(^M*TT@K0E{!lBk$OgCrUz!`)FSiE2qyPXb9)PT~OrRg$PGP3*{XgQ3`c+OLsB
z&19Gx^^&NS43m(3>n2e<8Ez}$I%R;pxSQ%H!=r;CWp`>CB@s&^o<t-GB?&c&Xc8J<
zp6m_nFk@+u#)+w6_e2tAGCVHyWOytXB9nCWjL#}_-b%twhTDfrK*^475?(SqzEVjP
zC6P&@u~eHR(Ud?iThjuXCy`&0W|gHy5~GKOIGY4lzop1xk*wy(6wFYRBtc1Kt1?aN
zWEf;BOOt4ugr7u^<Sz!6T$RLmNwiDi!X&yRaegv9ggYkj{f-Pv`y@IfaX}Inn?9@4
zx|D3Vu!Nu!!@jIiXQ8p_A_12q(JhItV&UQ>4mK_&pXBaIT*}dtxKe1BC2_d`4#d7Z
zr3pwQAcvqw5?9L#UX#T20vPaX1zabR(Wd5xByKEgrT*q5dL{9?i8oB#lEke^?4grM
z^iHBr5(|>}Ac@-~hX*AwIEmYn=$k~pB<AkP_uZ2pAfSH|cL?y#_yzqysdmk0?@Z#Z
zBwkM9l_c&?Vn`AblXyCbp-Bwmx+F1%X?c>LW#GOf?oVPw5+jqiN0g&PvXu`2_X_6a
z$OizH2a@6Qz=KKfTIZ$N{!Dn?Ka|A7NsLe8QBLZNKQ@U+k{Flde;;kZF3YNwj6UPv
zRkei72}wN0bxh(3nmz5`F)UQ_uh-|*%{-aJ3unSxnE0tADEXN2OcKvh&prESo@M*F
z>~l#>N@8-EW@-}8m*FV__`pEsv$cu|UKGtsN%Yi1<upe1j6ak4pTw(4tUlwv#wAE%
z=NbPECV=a|mBe(ZURI^#O#vJcXZ;zR@3|}qvyylxiTAkI)J*cMKbz4`hL2ctxMh;K
z<dOW;WBCqe`5QfL=5e{t`YcV4=ShA)iTRB1S)XKb-n%RNAyYkxwMl%G#K&CdBtA{z
zt0cZo;<F?cCb3us<>;St2*G^3`67uw{>;%C;xA=(lh67~q;;vtWg<yfaMu4OiEoqm
zA&DQ8_>Q^C8J+c4(848cmJ6<W&j0ajxPp!Qm)Ph0;GDlQiB(Db#3Vf7UwzJBoy6Gw
zB@@s2Z&xW9a?U4Sm&AGwkwpJ;!OuzjLTgEEN@Dgoe?t;~pYwkc{A&^$1yKLZIsbQQ
zI(N<|;m;)gO5)!n{!3yr536zk<=+BI$_4*$jn-xfs3+c%#MUwnHQSQtUM^rE-oYtw
zAC1e8Ef@UtNPbrmySbX>g3rqZT!?*1?B|v-(a*#IE^ZR7Otdy}h=)Iq$0W*`IFiKC
zB#tF<oLl}>`j>LSp>jd=qjaCTB`1<N&9n5Q^huGYMBW$k8<Y>uFgSHfSk9Iy%bTcR
z!Z49EQPD&t6Aer>GyxNpP1H6~$3ztqRZY}1QOiU%6BmrjPo9wFvwC&GHAI${52&wo
zEPvOw;%mzXoZ8*xgSsZ_nfT;*{>kzIAKmMlm{UGrA*Ydvh>5uLRZOTRG!roseU9hZ
zH)@8#DL<ivlKYfn(Kvf0Oz0*EsOjCWgu|I8EECO4G&f<Ja7;8Y!wv3=wUmj*COi`#
zly5<w*^zQ|zY-=uzw!B|CTNF7=y2LZ3lljLc@sq@R+JAiCbB{xnN`xZmJf<eP|{8b
zm*&!3OB3ZQgjGJ<(-c7)6Qw4)n7GJ9TNB-z<=UILx<cTa2uz%3qQk%W^G*ErXf8H7
z-%hGpg`lKDKurfmL&zOXbQZvlofsJoA>~5BRCYCaP2gG+*O|D)L^l&x3BS9EO9fnE
z;xZFYR0u9-xGDrQD+KJtD&>`;Sths#$wIqEdKJjzTyNqA6Stb^ZQ@1~J-HkvdYK@N
z)@~AV!Qd?>=oLG%`iD5#M~1#lm?U%1+sk}ll@B)kO$;<K$iy8cj#mf<h$LuKF&J#(
zP7{yQB?iA@aF>aDOpG#dw}~MphME{=Vx)<g6@%dty5U8oBRKtv!LvoB{VE3ID+Ua2
zjh}M&a^XyjHSvgv`%OH++^7^hY~n!^-&G7on;2u_U;d-(N&)o`acKk)|F3eKba_;m
z;{~(n+DgF$!H<c&w^C@~NfS?*c+SKm6BA9WZ<wc@XH7iK3>=+*#svK#prnUf=*cFY
zH}NWStWq$=#8eY6n|Q^<3)EK%UNrHN3C@fBxs}4{urGU2GfhlU!xCSRrM1^g{8uSp
zG^U$))5NzHzO(R_i5bjc3mFSDO}uU5OB0Jt%rfzgiFqd8<0cxKo6R#M=I{5jEo^^|
ziFc(sSLE4B0h@*o$-U3b%N>DWzKI3gL?%uS&3z>DLlg2B<N-Awi-tfOmitur?DCm_
zg(f~1@XLzy7bX^&c)d}Ut*kCFv6LN6oHDV@#8)OZoA}$r*CxI(@w3UV0pMG%mx)y-
zelqbrcem~@XWY0|ZGX*xRzEQ9hvis)WB{k7309VAu0%lpS2L1Ba%)Yj5kO3z*OlS*
z%qXF4F!8I2O(y;%GvSl7kvr7H@51Dyo)Ov~Qsp%HX#JPT_tkxZPZIuI1phFdOzbnU
zpDSWwi;0~kcJZt*u^hoRo=5`7XRm({5bWU6tSe$DcAMB^VlTJ$u-uHHIU1x71nfwB
zKn6Nu;wYDOXzrj?51HVghw1HrRy0WdF>WHU!0OQvIciSGT#8$_Ic@Tnmr=(;T?=Q0
zQ^i763+GIfvryhb1q-l3KZjqKsc4~+1%iVET2Zo`Mo`%bUFC?3gHk!DW`VMX$m&+;
z1FI}GMN>;;ZISF%&q93*2@AS~1{NAxh+5EOxJDKtq*>rJIl5|r_PHY2i%Pgs#4!tT
z4*gxWTjelfxyk{Tm2Maok`@|UXkx*%U|Dc1xE5>z-ETB9N4L3%WOA`+$D@-H)szJq
zA#Q4g!E9!Q2|)WCrMcj=g+UjUv=IFF$Xw`*g<=c$S-78lE#xg+Vc|*(B^Fv*Xm6o|
zg*z$-tt_;$P-@|k%0X)jcdaejHzYr!a?sX7VBtLB_!bsd4t}c~@O`j$!aSdDNR_=#
zR}P+7TXcbit`;t~(9uFC3!TMOyO%0lDB$jOd6q5~C@&H@a9`_7EOe9B%Pb7}ps2fr
zO9im0)`<L$;bE7{h49Vre8py^S6S#`p_heQEL?5j8VfgD;Lz7vxK3y{O7(idH&~zr
znx$mlo}#=-B&(bzJF@jw3%xB2ws5C~J{E4X(9c4D@$hyFWcC$I2k6qJYl~={z3#9u
zz`{Ta)YFbuB^V^bu}aH#i5tV1jqFRlbQvmk=nM<HjIc0LXrsgkXG-NgT&XHyFj?-E
zR)*pM3lCbDZsAP}qb-cF@RWs#79O(ju!YAhaJ|NIQ7nwN@Ti6ERRU@#$CWiru+UeO
zkFi&k;M+lYN)ia3u<)eNUak^+S|xaznQURIg%>P5EBZ+mCR=z;FwK&~Ue8-tTP2uM
zW|o@0Re~2SykudTg;y=SEc{n2)T|mhL*wKW@M{)cxA2A#sG%K7wvzT1lgh#e7Cz+p
z&+TJjj)iwE%#z{WDf8j>At8CTRMS<1xdPs^@V<qQhver;m9v{~VSxo&rn0lRK_&Zs
zM4E-qEqo!&Pb_>UAe<dNmq5|0h0L@v#}<j5B^JKqMi4UNNo%AnwXjTDzv4OyxW8)f
zwQvekru?3VhJ{)-YTH<0;Rg#RES$9PqlJ|gHdy%8!YT_tSy;ydZG^v?@fnd{Yhl#N
z+!_m$<`l8~`DPK7FINqCtgW~3vju`*L=wDlNoJ#k-<X6Jc3Sw|!XFm?w(t)RgqFEY
z7XGrZ*}|VvZPB}gN`BtQ56<|B;oLqY|62IZ!d460=-Zmy7MiLW@RPxXRRez7wVhkL
zRh}QT@#8jrWX8|Mc3IeM;edsMR``+S9t(RpWedlv28;j8G^!Tx)5(0bV84Z>n=|~J
z?vRDU7LJj?Jzg!~xJN7;<wbvYcEN@selE$64*7v2KOr4lE#QZn)q?CPp7R#QZY<`h
zc$zt1EjYtlKmak1Qyzom?C>xwFS3G-iZ&_<hRB*WDhsG0vZ}~xBH63DfEptC%s>q<
zVm{;5vEkbAY}B<;&qjS44eanP)@?Mj(a1*BhGrvTL$SjXUKPn3ka+%06<7#jqKw-}
zkUT6$a-kGj4KbJ$Y1*)a!$X^+*rIf76sjp3jcv5D(V7-E7B{i^!`4M<8%^ynG96AA
zH4}Yvsg56!Yhk0v#_VcA#zxLY-bPlc)D+YC;W+}95*saT4E;AdXjqPR2%?VPMh5k5
z1U5<qw-rhMS1e7RXM^MpHZBlv+u1nZMtd6*!~!42zOELK(9y<)HoDm8WTUf<-Esf)
zuf-gZLvZv>)q;!4#wEVQMmG-U;5-N2ZCq;OcbmVRfy-=MZsT<uZ`ioP#+5eiura_6
z-&(xNMo$4fY+P+)(O<c1IL+$84K_w>$XsjVIvZ!J1=outh*l47q=o7M%hxYuZn80?
zdT_JIUN&yAajT8qHu~A<Z=;WmUE8y_*|^=tv(<wS8nyZ1f*kpCs|S5$EQ0T<2Yptg
zcT^85)d&WPCnH1-vN71koi>s+g1c<oEud|UU<l2wNDsI1*4{k9P#X^{$_%qH>1>wO
zBW?23kF;@*jZrr4wef_FCvDtk<9-{D*ceB?jR$Se)I&B#+vrgv7-M5@jbLPrU~-Ls
z`c*Z8hnWC2w$})nmF8I`XFQiF$WIVS&Z7b<*9;!B@whOZngNZpuNgdLW1@|zHeRst
zw2f!zn~ljfZm1bNYvVZ^^J)geY6j2L3~HC=Y4dq8m9N`oig>lMX6QrH)5R~^c*(}A
zHsZB{mxVJ;yk(bHq`IwUP_b6<)GwJgO7pLY52dw&={CQ;7Ow2aBHt1@m%Gx&Ol~3@
z2gl@Q+n8fxmf-7Z1@CZ`YXy^=l~%bwH>y_fE<;x<cu6$#Y`kaVeH%`*(y>?MKeRF5
z#sV8n78dotB2VQ9v|lSA_=qchMV=fsePZKNo8KA6LL1-N_}<3nHoma2*v1kYYib3H
z7~U1>FS(meqz~2#s8O2cm)cln<7*q=@Jy)I;wv#&Xl0e)TOJ@2a&)qwTrSo1Hh$(U
zVB-fHKiXJH%U9&r*jUBZ+QCmeRhs5=wS&uQ2df3MI=FVQR%q))vWZ<d#4k2}wXxAg
zYI0_SNILms?cly<rN1$HwFCZ>%ta66H`(};r<sF#4*s&S*+w}B<sJNO;~yJGB;a)N
zUmJUD>=irz+1O%ZtKe;1DH}U%v};!SeeGbUgyL9}{4N1oY6rW8Mjz<aJ|0l{EZ-?T
zXk)*PV`I{+9w<{DvcaaqHh-=?ppuxMv>qkRhEXRtZsUZFlQvFq^V&FP<Fx3{@ZOY<
zWyk%I|8GT}lBHy5mio))hJS8f!NIYbZK^w{=%A7Ve!>U`l^s-Z!1qkP8K39dCj4-d
zZv$3!P|e|Qng_3Hxf|;QH5~l<SC*xwgIZ;{wtzY!AFLD9chJBI^RuOch7KAzXzHMu
z6Q2AL2Qde6Cp?)ICp?f<2T=i<$n3^qDiaQL;dl-V>1aBz1SAV~Y}f)E2d;y{9TD1R
z_R4LN5^IeeG%0Ik6A8^7q#fiPOuD&33kQ5<nsJbIP$ZbAF*Ur@iXD^=&E=f%l_p<S
z@WiGpal-SQ_v})>aN~aga?sjA8*=Idr4D=togT`ymFmCEO53a1H{Z@u)6T*94&HDv
z-9>u`9UT1UV2gtb9CUOr%)xMWlyK4JWo-5HogG~0po@cp&5AFQrmmEAg0UxyE_QH<
z6Q1E?ZVP?rCav8aTv}#fO`YI!2Uj?_(!o^@ZgX(EgB}j9c5tJEo(`^YaIF&_us1lk
z&Iu3gN5*BYXH2RG#JlQ*)hcyEY1IvGa&W7I-VSbd(2H}d8{FdX$AZIFT41#R`ZypM
zQ8#F~IoH=gKL>*y-07gd=xKQX2dW#~;qZ56gH?5dfdY2b4F);<QPiMHz2GhfcRLs&
zjup%{zbr>E)Cq3~yIyd9y<mickq*9g@Qs6e9E@`CIs@zAUI+I%c*4Px4(@mG00(t2
z&cTBYMmree;34MW<{aJbSuZHwoTIA`Gd*O=#GLi0dcpVQ!pmj6gGU`qa4@xAc=ye(
z7yMW+c+A1$4o+;&ZK)SjtRLw0gQpx!bnv2smmECp;28(cJD4JqeU_=kO(gg^kv~n!
za8SKcNooBsTs2Oor#g5+X3Du=TR-5v#wM1R9lR>xeZ|2v@qrF=L^|`D=!rRt=?>m>
z@R5U$9lYg$#^*SA*TD>KWNr!vvm7wUv$<vJ2E*zH&(#m!arlE}0sWs>Kj3oAbuf?n
z!odOu?=kFtetG@ieet$%$<oj5^@9%_F!CSrSZEMf4Z<ZjuR-vMgHIhSalj?}%)vrt
zqa?}a(w#y3LIBr}fn`X)bg-DK_ELs6DNl?kS?XY!aK0*A0@9c~-#Ylt!4D38bikl}
z?_fD+-5}s4$m+-j!3qYpK|rvQ6Lj#KgWsL-%Kpj0ItS|=taidne~p8+oL7VJhCS=&
zd0$icGfyXy8wS5P*uYU51X~&eXN9v-dbMpB(*6+qmxIj$HaYmy;V)$beCik_gufm9
zD;hot{NsT4I|t%*&pUmqgKZ8vySUKBb_Y9nhPdG|xRXiFtHecp7rPzoaZtfUMHhP=
z>~nCOspVk5g98o@J2=8!UuOT1*q_`mnBOqq1He&n=@^}F7(QJT9t^fN3{E;YC2=?_
z9Zw7GjDvEG!e<+;QRp6{bWS+s+%RJ0UH-Uv8-hwM;G(*V8ZIik;WJWIH=Hj+QN;xV
z*rriX&E<cX4;V>43k_-%)D#P~UDR^%M5FNGgwIrUT-0^L2Q5DHFjg}g1r1y@bdhq=
z*hM235f=#;x(h|RM=4#XZn$3TPJT>Ak27>N!r5`r>Gsk_f#D)4mK_(S8wT7G4>vUm
zcvRYg>F~)$;Uk>u!V@wv=iY=<aM4mmY38E2i>!-c7ikwQTok#;h%;f78itQ*<J#mI
zfrgQA`Z<QkMTzvKHMX*e4|w#7kBgjjD;KR@w4p)a)9p1Yv)n#yUHC2nH+){@1NM0W
z+KHs*eBJ^sI=HyN<-ceSI+p2YKc8l6C#haKJk!O+MJ{@|xWz?RH+(0yn~UylcmZAP
z;t~PG)L-i2G8Z>8wnKB5ySTy)-{!iG#$8<H;u<%6<F|(kzRi2J;JYH>`@JmGT<h}x
z7>Ct~k$~lT7dLRFHWpLK)}CUMW^WRkH%paw=&de#yLgVSy6EHLHWv@Lc+kb|F8aC{
z?BY%r{ao;(?C*jvbLb~u&fMW*0PXyn9Vp81m6TKo_`2pU7k9fD=3=;uA=JA#v^3PS
zJKr_s{YyaR2p9Lb7$qG?imOzz-0R~0GHdq<Ab<Ms9GgbF7~^7si^p6%<l<o$<ApHR
z4PW$~&quP2#gDic=Y}^vH5`=kQHe0S&x!<(3xA@Erv*IW;z<E)eaa0VAqbuk4QIr0
zpOwBe!ii6oIK1G7qc9-POLdBisR9`JuOq>W()yB%mj%4y;xz&6GEL_Astdj(WR>N0
zY5FS?yy@aC9xpCFl|yERi#aadburV$+b(7?P&+cS-S8VD@BNd0N2>gq1iv@JFOAG~
zG0(+&E{@xwhF?nQ+$+Pck-YC>zKaDeK5)bDP=((CbMarl@H;0Ti3MU3KISTyYcY3u
z(Pu6ey4WlZ%<Gr?+{O3o=;8|(i(Gu^VzG;5F23T@Z%WgXB`%gSbMDL)zIXA!z}(j^
zmh{biE5m(LMkC=n(eR5#{6fMC7eBc8nW1*^ql=Z?nEi6AUF2N<TqIZ}bG)Kwg`Zqh
zeKk!t*0@;fVx5ci+@brz*>NHa0`c#Cb0l!|4K99lvC##;QMSp&pDw@Dhu_`s+arJQ
zpeXyU2)`o2FHZc$dC8YF_`M5$`{Hkz??3dgU+!PV$Hf-G+uiWnBU?qXX`3kd<&Yhs
z*(q|DNGi$P>tY{E6YOVkalpm2#(1?cKi|h89=R!8k-}l_S+1sscRU<*ag1k+$M?8#
z+{FnO^}O(YIms{o^Fr}Z$-`+EXSj>eqP&OCHmA?JDCZ$usm<wgZm6ke=3mO>JGIPL
z@Io5P#vvu}kbNgt*+Uf%>)W&;uIizhSg0*c)jibYSWjffU6`-o;iujCk@@1+F3i`W
zGexC0y_T!vA*lp)J@maW&sJKf@1cQ*h8`Mua6GskA|4bEhR6Sa8mJzk9ugkzDb8yi
zVjkii|B-J%-`Xj`O-j(ER_@VvbFAtf|5<MEi4v?=f}{u2gT-EBa<<s1sRkc3&No(r
zPHNzJNYPsl#U2`aXyT!{hqQ;L9{Q_+lg~Hvu-Ypfrv{X7s6h)4MIKs2gN%nS)!;WZ
zIH(47qCuBvz}B3HyoY_!ppAzT4=p{k^3dAD#qZ_jA8&nYG#DKXUWo>uMuWA{U{$KL
z)I(bjyHlmrwP5A(*0vU$=b@d4r#wvbaK4B39{SM}4;?&Q;NfZy*LdjYp_7NpJY4Rf
zvxf_5-@_$r-Cfkh!$lstdf56^zM~dYo0B`Yy69#tV6~eNx_h{k>(w%^>@K=T3!c-0
z-{<B?`*MBu3J+I#__uoQJuSG>!;f09MGJ^~aFq5X>~gJ#>pb-GaEpiQnF$_l5}P;5
za2%qibT1bRha0-P=w{IyQl*_+J@oN#n{?^zfkV?KnYS|mgh@A;S_S1D9tL<A<KZC>
z13e7#Fp?|iVX%igJq+<M)WeE7xx1v}-5&obNAP=>JPR#w3d1}M_b@_6Su!`A5xrs)
z@hDN==iz=2_j+I#j>wrl;Nd|Jqb0-h9ZIO5J~PJ{_B!60F?`s=SPv6CJm&HL-UN?$
z7$=iua5$0i9v-DjyNi0n0+Kn(<Fq_CjOr8OA%}R<<3CFYL(0HD?co^@WX|yLEG>BW
zr)%-c9wrGOe!;_J56^p;;^E}3qNyHcHO+BLZdqM)XDlG$McJVrwamZdq2kwJv|sTs
z&BLo6Ui0v#haDH@UKeX`2(C6GO){0!rCOnD{w--;-Yv_%Gd*nDRrI#V*XC3pp6y|d
zhh0og5AVu}!9!yu2lX(I5%BOn^WVc_kN?LenD5~u4<CD2;Nb&_&xev@3^-%;cr5tD
z!>1k=diY%OiVO6aM2{=@RxF5I-sTGri)8fuUMYjd5G{@cOFS&~uv{X%%)?h6zV+~(
zhp#1tzLAyMyQlSrSa7T??Ckr!BnB-r<|{n>z>GcKnrrl<*onl$oL|M`NaC>C!=E1h
z^03CkS`X`JziaW&Uig=2jM#e4PQWib*=D3$#e)qVel1(0jRJlX`MbzJL~io<k5j@m
zVzf7NnjZf1@VBhjKLzsK9AmzPi6P1zqTJ?TyNtqBzA7G&K(N!p=Jq9n;{m<e!?VkS
zor06XJ`ejn)J>sY3I{wK<QeYajE6%W4vUc!V)KaDKgJ_;chOPWzbH?e$C<;q{EuIS
zC%{P|pAs^MSa&#gmTBpsdI~jCD3?O{6so4exwBLdP)TG(k@O7$DyPD@kyAygoOrcV
zn9?j%vRX5R+Np3ZEVWX|?=B*r`Z_60ZxVV%XX>XANkL)RUDQBi!xY>Z=|-t=E76Xc
zLNo;<g$|wD@J`WENTkC1C6+=w6<$WQTIL6SnPXFQYhF)*cg=)&kQBZt(h^A~Ex0Lo
zsqnb#nnEgt#woN(p)`diDKw?E6pF=WvlP-PwBXQN^UYJ?EjB!#FA_U5;z1^b_rJ*S
z{yID>$0j<H<Lpu>NrBFApqAnW@5j~xT8Si|P2{&t!B63W6gs95q{4f!T?*%?a9#?$
zAIG*Y;YG<&+H*K@hW~JYz1Z|!Jm@5v3sdMKV|Av5qEedWKy>3Gk*pr<Rl+%5oWdn3
zbdyEtF0;NYg-cW6uICzQ9ZI%Hj$N6;RVnODVOI)0Qn)&Ww^Epq!Zj&eo5G+J2B&ac
z3fI%s6#AubLkc&h&@&O-MoFJj=*^Cre>NW6oI<Y@Zeb!dDlrqmtpW=2#h-Ijwo3$k
zQheJa1h=R7r@O(jTDcb!!AA*x{vPyCVeGj)%N=wk5&S=<&I3w{;_Kq<!X-=2c}def
zozqOuN|O~7kf0zUAPAz8BxfWF2$DrINRARzlps0hoRlOPOh{7l_xi2%Ki@fh?)lZN
zSD~w_Yi4J9r`tv79}I)`5u}s|dgu2(iJ(&i{UYceLFWj%M9?#WUUYUzUe^e^MbMqj
zE}uuq9ufFA&DEFPEkA4IP%FJ7=tF($=aEDH(lc(~2uP`u^-6o6Mlc|PaS@D<U|<A;
zsD}}J9svapX8nvh7Qs-OqY?qt-}JIeIxK?WoVz*6+t)j+`EiOjlAX~JjEdlk2q=sE
z>U+&ZYimpdV`=&-m{bXk-iS=rga{@^Fg1c{5q!x7zlzX5@M044yCni@C@okm;!I()
zdx>Cr1T$zwMeub5Gb5PAZBav&<qA|SHFxWbJBNekMlg?-*<N#WiGVt=xJ0mas!7R(
z5iFu>wp4H=g2fRmiC}L8`)EKSSQf#W2!4oQIb9tu+!Yb5jNlvQoh1TtRz*N_mr^qL
zE`rq&e9Lomy+k;J8A=Arvn0N!HCZyCDgH5nwGnKOU`GV&B3MsdiePI58zT5Af=x6y
zw0KGeeM$xsN(LLb2?BCn&F`%)8LZu45^v*`aG+#Btsj_a?WBduF}oRd@oA<xd$<N`
zyR|=p0}&jI;1Inle(v_V?9yT&pyMztn9D8=1x-D{(Fl%3a6Ez&v`t0uYXm1FI2FO!
z2!5t5w^VRCLbr$nXLwmwDit&@6|Bhb^(z(p62UpTj@YMU|0dRj2rhDxVrT(dWjrc=
znJ&5ru0?R2rnpo<=2fnis-j#<-r(e|2yQZLE*+MlgMxpL;ExE}N@yqHPr9zVY3U>+
zN%$**JGB2ta5sX-5j=_D9-U?c4<q=8_U(%916pPyotINRI({k@{2Rfe2(qRG3x0Gd
z_hhNyPN{(4DP7|~y3ZnbPEDr-Y4Mc%f{RlPucQRY64FaZmGH8J3=$xrn1tdIGD^rK
zA&-Q-5;9B3A|a=QToSTM$R^<>2{|OR8m;vm<Ybrd`j2jllz_euqR#Y52_~il6>k_z
z6qi2n&Mk$Xgs)5q_N4^*B;=P+Si<>B=IxZAfP{h)3Q3?!o@s98(m}3^PMOj{<<dbB
z2}LEkQzf7#`mkR@LP-g-gs6m45>h0TlTe=fP+CG631yk7t%;@SmWF_UDvU^UUtGwN
zMBnCzWAbn5AYYk4k)TR2C0G(Ps&kN|OE9=66ii3FOxT&yDK?$On`Hu<E2qvl3@)oD
zAtwB|1YdAMLWeS8&nrj>B-E2oUqVF*l_b0>p@xJe-@270ROOMW!lh_%D88D6>SVG{
z$pvM?o)0e*)Rgd=gxV77&`@)Ho&IhuDf|MC0;u!!<pPc88xrb@K2X+<GQpKHK?4bI
zN_dY3ljgT<@Ro!|65i$}8cK+i4XTz68cTRbLNf`?sc&5E;Id(V-esn$no4M0Hk@A?
z(&?N<U*xrv@V<mL5<X08lwzo@G69Vk_2&a-N>cYe;)Xt!=>EfioO2Can(j?ygZ5Im
z=6i7~9VB#=uxP0BiG<D)y3isi8+4Mwb^fGm&{d+(41*pLz8LCslh9qFkK@7#qIe4H
z$$qDi^s!jbTS6b2M+yBTjFT{4LVpRLN*E?#xP$=`21*ztVKDcZRvIl-I<FxThO+Y+
zF9te08oj$E5;UrEc6)?`&#4IsqdA5KXQYHtblFlLvfEUg!bX=1#!zqR8p&?csjVs(
z&@5Bd1PK!*OqMW3!k1k6Bne+hSToQ)TrQxMf2UlKwR~87s)T70rj`$8Nc8P(FrB8O
zd@!JVP`Z3jp?t8md~mXSFk8acv|?rGGUiB_D`A_2?L3V0By5oI6Z3qkLBc{BPYH`9
ztdg)=!V(EfC9IIb`*@eJ5_}_JxkT?d1G+0XOC%s5b0z1JL;S6T@2E}*YbAV7-IhQ_
z$p3+r;;9rxrWIVr=6c#LBLCgDOt4YHChpaRyIRjx&St7)h*u>NY>`lHm9v$#Y$W(+
zowh^5PTE*x<dm_Cu3QO!(+40D_DI+(;b#fINZ3cS-^Dp9;TXey2?rz`WIiO}2m=Ki
zW=OjUgl@n%F5v__rzM;eSt)$4$SK+xdWQF}QmHc%D0x;2?>V95Ia-7gZc4Z%;Q|e5
zSLas=mnB?ezQjr&fs%iPnc%vFtIXGglf4XXNFb$e4=Lcbgx@&pFA2Xh{3#;;;4q4z
zNQ%G1ep<nM67EZQAt9ZN2NE7ict%~_r~M;^AC1!SSi--|k65YmWIhqOPx+K7{yCST
zTneL4IFsbCl1ws^<uI9^H3KVH$;>E+JtxR4Ba4izGP23YF5@LRY??ldrK5Qyp!;g*
zlh4oj7TH`fa?2<xqnM05GV;pECnLWc-s{pQ65h%}VFhFql*3Q3=}X?nU7bQQipb$T
zy~KrO&^^WkX}8N3mr+7SIT__;l$245`%_v*iX47AO*PO*sRZ;9YZ*EGxSP6KmitDh
z8KG*sIg$*SIv-f{ktxOJ$zn%kD13rxjw*w?L|KLmQ^qkF$7NVDY#GaBESKTPaAkCq
z@rfMXtKi8<P;us%j6oIMIE`cl+m~^!rCVs1`Lc`(G8)QgBqNYfQO0XBUYAixMr9e*
zWxOJz3h5xHs*Gwf-C!RK|Iwu_m$paRcIftiSIHdY)R0k=ir+A3m!sE+a0jmFeiaF7
z$*3)(o{ai3>d1J5tEx)_J~Vv2pkN9+lOsW!Sat~wWR#w)y(QyK8MHOg=0-~U3GJV6
z%V;d4rHuDwyd$HDjOH@lqptFv{H~0qa`-CKj5|YnQOQ(~l2nj-PJ34iYQ0=oRVx{-
zWwe#iPR0i^+Q|5b3d;CU4&Sa&k$EFLdeKi~+Pdjgn07xp)An-s;@g4dG-sGhGds!X
zEMvZm@oH)pno}90WsH&0O-6SapUM~@qlb*1GWyD(QoXp9-ZJ`dKWT!fZ{+(8y;YH*
zAIDI#KLd4UAWfN!VKRox7%XE57ynEKo!3yVfhK}@PbA!*iAT`#knsgIH^`ylBPk{&
zpgn&S56+E9I4_XGSGut>#>to^V>WeO#snEtWlWPXQO1`tzLGJS>(81JOybVa>nU}N
zs-jl`f+;d0QV7#&viQ}1Cc_Moq|VT)_?lMH=jL3V?m05ua2~!`)6~zC>HffA#2kxa
z7I1Du-CZbSk&MOE0VQ>bjHPrIO6rSNW>qQhMmo);;2Rk$WNeYKRmMs={M34tjMZ}Z
zl>za$bfvszZIJPkjPK~el(9y}4>H!tDBjEYkzR>XDp0^$Is7M3`qqFxQKt{I>0|u$
zROg4`mj$F7<?vs~H`DTCppW#!ZxiS%fDaw|(qWs7-7@yb*e+uSokE%aYS>Ay0y5~|
zW9jpA`uS`6=zgz^LtO1X8T(}%psVsD=OA^PKhGyk1FH5ghaF)(D&s}lu&onv_<rLu
z>q)v`Y3g6N^jGJdG1_SvXJnj}@w1FyWL%=l|DHyE{hHPt**h10EbpC{ae;yOqKrp5
zZ32q<m6oDz#oh4nF;`?<rOjcsc1^~088>LShIqGVj%3`V^(h5(kV65#ao8U+erG5?
zFPTg_{^Vra)z;s%LTDmXEMINhlX0I$DT+N&Jdp8FMyn`VNAVBs9v>U=DEuh?r7p>M
z%udNDN=5NR##0&3WIU(sI*J_8F!%)rWMWRon#7vSnw~WSE27BA(B!&F1xshPGIKHu
zYgX25QF>x{SS=l$>n4-tjG~Zmaz&9_aGoggMv;$``B@7_QGg-wx%a=~1cjq0B1#oy
zC>BL=h7!W32bxo4N)#qLrK2blMOo%3YdO~PtP~lELSmMMlc<}l2v(!em~~b|_|v3-
z%37SXS)C|ck?S$UqFC^UPhp8DQrT%9#miAth@yTJ4cG~ys1ZfYC@Mx#DT>N$(s)uS
zI;uobm7OrjP(6xQ7+z(KP14dL>E|(DW9N0&TC9{+JBm7j-(aX4MLpqALvIRh8pT_J
z8%EJc@Y@WHS>K7G3B$W0x9M`L8FSizyvN)^<hEpZKZ^J$joSJ^M9z+)O%xwS@lg~X
zM=>sn@toB*iY`%fjiQ~Xp*=%~C^|BH!rDpXc4naYqBHFlMc*j;MbTa4_F(84MK6Zl
ztbIi894WOyHnTq`2S@QK%}6$rjsZ~&6g()3by7g)kSK<7<Y!Tg6g3QE7#_t4hR<1x
z4E}FMMsf0sC`LyyhIwohX))AW3Y)+t@subgGJnZBiS;XyJDC>-h0!sU&1tODS!b}$
zWStd7z(eshFRD3F%#C7R6!W84!2t_cm#|W83mFzg>5GQ{uG6%Iv6Pd`qF65cZ$uwf
zMzJc2)lq!QSzDv{E{gA?*vQE>QT!0aPomV1G<wWyg+nWx+Fj4Of%VH?T3Vx<M9k(W
zwlJri3&n5a<n}0bh?t#G>=K-<qO&)OeRQ%4<|)`8#R1y%6eJWJjN(ufk7>J$;&2p4
zqWCjPKN^FhQ5=in*C;MWaeHXG<58T9;uOv7LG45oLw0GWe=umrJ{`ryC@w{DCK|pv
z&~cXGXVza>&#|75;sOK3d^;lD@y*t~?CucT`g*H<C5o$2{1(OUQM!ZCx)#OFC~ie@
zomT!_?M4(|r8fy?Ox12jk-4f}nje8jkgj8eI(5xy{k%e@tUsd2G{EWH)VveL-?X<!
z@hsW78^t}^hu2#VqPWkkxB0+&`pkUtSJ>4%)$E5+knYRw{Ts!N)ApmE%|}sWJ7cGB
z<~*euqR68luY%`Myoe%;f~*S0oiNiWfP#z)=B(0^6eKH1y``mR&A>{@50dpvN;oEK
zWG^#Ams{EiDY&u9$)@0iW@T6Kl7brVB*ojAITYkn=q3t1w}Q?)v|I`zW3?}uTX!XT
zcW#kS4dqjiU!hxzQBFYt1;<xeg%lK4@FqPnSHZIL8r=k2gmM>XbQD$SznRQ5E~cP3
z`z2UQvX){^VJ*!{!DVQ9JPnIex63O~6sQVP7Hbg&k^)%?zsrj%IQPI9chNZal1@o_
za=NBKS70dke4Cw94(K6JrUH7vI(>mfY$>o65IC$ZtH&B+rL4GuXL)UcR0S_9XsqBJ
z1r-zo3SL)GOF>12ZUDypwZ>}-Dl4d>pt^!r6jW7EjmP#=KYV!ctF4_(H?_aEhVLa_
zWxu9^VkgZS3eL|mS8O+T+@K$mO#b(Yxod@1TR|NfJq2$m^zX*dvnT2)sIQ<*t)#jN
zekmV5`>X+1LXe}Py~YV2)Y!a<)lk9D741gUdXc2GN4UPtVTK$uQSh#U&lC((&{RP)
zIzbvV1<e(_r=XRB)(Tp1@PfPPs5UxUDp=FPdY^Td?|#6!UtZ8UGPF_fAp=Ez#PBg|
zTh?|8+B0-urK^&{K2cD+v(<@}ptFLSy*z?$3c4%krJ%Qh?8$l$1wFaclcE+~M0Mow
zUyNto(fTNum2CD?pk>$lQvG$!b?NPoc4_?;e5!zejsXk<6%1k+%sNEm4yAK^#iFp`
z3PvcHq~I%B8wy4$^e#HQB95i=Mky${#@O1m!WZm}W~Hn#3dS;zV;#>rLF7)PYb{ea
zxpe%{Ieb9XWCha|%up~z!Bh@QzHCjSW%IE`&tn>}P}_Pb-Ap<o1-Zs)na+j<XDcYW
zL;G4m!=u_9R)TtC%=royC@@u6Di$hOq~NrIGYS?fSfXHuf}M1Q(uJmAt%7w5mMh5C
zzQRfcs}y`g=3-+7ci^}4=H3OyYFbn$weJ)(`c)(Nmg4(_kebu_p5~f%iJaCCtOP&O
zXg9P79(FX>EBHylMg<#aD}dRpO@+DpG+MEncnxn+K)jiC<OFRio1-e5+ZeVh^k-wR
z=&-R%!EObI6&z8pN5Nj&=N0s=Y=6N|E8a&h0SYq9<^cuU2YQi>CUL=e;e!YdDOh<S
zyp-ndHjmOKqu_*sV+tr)ZJ*hpjCqnS=X>GOJ*9viTiJiK*0z^Lo4{GRC=~od9iwZ9
zwg?4x6#PxS;xW0Q;HH8L3NBJ-j%w#Gn|JfrmlXUeX7)0}6$MuruCZPhxec!+-D3Vt
z!S4*WX_QJ^Bjn%@+Cq~PrLSv$D#)GPe6yDImjX)CQM0#pSHV5nH>PS2xYT`Gb^F3)
zv#NwiWgjXSJx8N@$a$pTF>P@wqH4HAi;qb6M8Q+qmuT~+iEd;TQ1L=R|J~XTL)>&K
z=trLE{|k~-B&$fTB7=&Ti1&sI3|vDN6&V@G$)qB);0q<qtjyV1vkSl5({wph<m6;7
z*1W8_Rpb#d8xAMsW6m#}LT`kpQ&2@A6@}R>qN1dVQYwmym|_gYRg_?OFI`w9MdX%a
zD9u_%MOoo@S(j9vIl?Llze4^bMX;_yW!6;WI;qhyc&zryLeo$|O0C!`92J993|8T)
z@Kn@NQCme!MO;O73RB^$*n2#Es*0CYB)B%Z&0t+hSiFLYN-FX{(pn630~Hljygf&w
zqeKCd%*raNaBfxBYOM6}1!Ym$S5>@D&d=#<sHmypH8uR^-Oi==TxPucr@yg*TYZdm
zXOmV(#TzQ#SJ6sET^03I`eQ$6p`t#`=`-U!8vGVklS5_$6>oCi-cr$!p^=Jr8Qx}X
z%=!*1wcaEx>vOFsLo?RqB6sPiq;~I`y$abaRnSw_=-4d>tyOw{0XnJZtfGyI4>@?(
zKI0=5S?ib`RNS^qf{!`bRz*7oa@x~4oG=JFatwui!qDVW_ztbclB6ywx~k}=qC1sp
z=MJFNtD>ihUNi;Y8+1?yNFQ$rxi_1ARP<Fb|0A;>C;N-YPgT0f*`zRfsN6sm%6N@n
zh>D>qmU4$bQ!z}%Bo$w&7_MT3ijgWtso1r{`dkek6{kuz@!@0E7b-@p^dS{iUo*$3
zn0d#j(9s&FVk|Qyr;O3ax!J**poS0Eo5=bl>&mXye%YL?Vv35nD(0z}s?tA0nW_6T
z&`v&$Ms=Y^$8;4l1kY44OGT6Z)@;_VSt&V(7RE-6V7`h4bO|rh7E@KX+;i#lg=+ZB
zJ~|eu=)b}s=-p3Sq9XN*)op~kj6PdX@r{ZVDpv8ipHGDU5JbmHl|H@**1Z#6Xvxvw
zTbkBW8Xe!M_?|g7I86SiVlDNmF=jW$Iu+|xbg74~^{_$3Pt>A`Pfcu8v59)9<BE>W
zDz>ONpy8l~ttz&uD5IgQhV9g06_02^&e3<$P^-AA;+l%xbnZpn11b)x*rQ_SE_*NQ
zKK3bVKV9!7-1EEaLn{4RuX{|zaTSMEWZz>SQIQf2jxtw@2E->+oK*1(`={7H!=)(r
zG%c`9F2Pw9KQmK2m3liGoKtaL#RU}?Rs5=API31VUDRA5X~h{j>1Fn>uu=f^gt~NH
z#cwKpSFy2(dqc%d2J&w)+*VPnSQz&GCi@Q>)lK#TIw=)@(FVT9zN6wE1M%M~?h0O7
z)V<Ha-J`)`F8ff$KkWR=F_)5@+Qr<*DxRo#s?x*7+#(u^YIvsNIqm-{(rL)9;Ux`8
z8j>|+(vVq0dM%91$eMwblF&eBM?j6%+^P{|(dZFWZdTU#UOO8D`DEr`&dr*WmCRfW
zR7oBUd6~({Cvx*^D8O8hwGeAzk$ZPgaxsk_o#vL(=%HY4aaMv73?*4V+-sAQ!dzMd
zndFqyP+mh94PCWxIYl&7)=))*q(LV0fF0FfX|OdY^g^fM?E|)^!C;_VT|=IOHo>V}
z$tK5BfTO|HP(eeW!P5}a5ZB;qpcu+c3r=tiX-=vr__8o7YM|OGu~Lz=FmkGDsHUM2
zg=wg+q5mQKbq%#NyrSV%PS()q?iaVFh8{`o)IQ0tu}NXyCb_jW)Zt_Uj(I~vJx)@5
zU5%ce;8GEatgq3h69Ms?8s6f7hOG11e0{&&Si?IST5I?~LlYV_js9>B-q+An!-i<k
zT*G@Bnz2bqDn+?1H2U*4Xi4!0ZAy|-l8#myD2tpnG#47$X=u;Mk67Ds{Ks6DiqJt7
zcF@p~b3b99il<fHiA}1iGk1f4-k5aPFh|2&8VwCSHB8VjQ9~~cy)_KhFoe&mkA_bf
z=-m4<^h-;!rc;6e8U`|_jn5z+y+cXvPz|4H_=1LubBD2xU>&Z320Z<K`*RH=*%`%3
zrD#Sdi`p8aVH}&pW7$lre>~3xMWTZ9rG_aQrfQg^q4<8Aj;}OKrX{BYluOBJ>=Vz_
zFr9gZh@_ZV8fJ5nihM163ZAE7zJ@g#e$cQ$!$J+;XjnlDUI`YlF4eG@VF_IhN<cp8
zGT|&2CiyF==j;=&VpvUMd(3IM-zMif4FunFJVCGh_KzAiYuKV;t%h|P*3)$Cw|`<K
z*uao4*(KhnVblNfw`$m?VYhI$Gwh^m<e<HSb_p)BOXQNXhj}mSKGyxL6i<~O(r{SA
zSRLbZ9MN!;b~YWEbsW=hT*IFl{?c$l!$}QS=_*iyqA#3N8h+OBi-zm_?b900&@OSn
zCjTshp3Xf-JLe1MqJ~Qh=QUgqF_il&GZneaxl{@-oGZ*!;WesO!wp)x2khTjZ_@JC
zaGROT-x%5|0r3DO_~ZZicQpL1(FZJe?XZ1U!#!H$O7MjBKI=ak9xyy)U7`dO@GtWt
zR!Tl**u2kvDx7Bw&snV(PC6Y)I+Ar%Pv=6%f&(@|dL0?qNlTKGQ8-z2WYtkoM<pHE
zbY$02Oh<7YFX_mkBhLXlKfS&yK~Cm8%(-;r=Hy?`oudbAipi@ZUs}Kc`^*dH&lgSs
z9R+n1(vk77U06pE9Ywh;b%09Mc;OT~Y*X11I!fv=beK9y=}6Hb>xk+ot)q;N@;V|q
zsKT=3_emxw$H}qWN}3~a*0vW8B^A!4FinTsCt1~TQVA%j>(KioQ`5wj4qJz>BcX#z
zITWeGW2Tsx4yrt^gHC}Cil@mUP34+j)=`10qJjZC6rUDGT3JUG9UXOiqNA#gYC0P0
zc!!2v$16JO>ZnKk*=N71<24<x>!_ilrVgiqv-7#L{JC@Pxl>CAaUC6RFx2MwwA^pM
zcL{z|g8Didu-{O}pj-Bv%x~$Kz`0Z#HPMJGCwN;&IyIoICOY2L(OSm`9N$#OdpcU^
zXeOFyu7f&2MW~gQI^NeoO0`iFq^+2#o;Er@)X`Q)J1+PU>&M(W6{NN(zCCxIs_LMF
zI!vVsvENBYXC1?I4A;>`M^_zvb@bEGO-FYfy>#@Z6_V`sVC_i_9kMA&hoT0geb|4T
zE18mS9J2fC_*BPW9Yb^s;H*Kc6giOE?UVe!f<twD##s;hBv<098mqzIT=NJWpNmq|
z?noV@Xz&l&U$8lvl_JN880yk^I$0g-bgb7gQOB2bvb$`0Lo!LnS2|YcIJn22tYeCf
z**d<~F_q4-h&x@!3?0+xLYtv)E9x%TYhT`D&!kmX)SblvR0%nhJ4eS{9gB4=(J@a4
znN)m{j`?&g(_$;?lCzKtPAKA1amsC{2Bb@MEYq=^i;(jT0|lqmOa)i!Sf$hB!`#(6
zzGoo*R>ybDZT8ueq+^YaAK0PJ{HSBCh@4Q&-Js(qot`!6{;XpoP0(I@n~v?YV-$5a
z(GW3gVWq6C96;~%cF+*%IHcpSj$Jx->)5a3ZgH0mWk~WK=DoD}lyLVk6Od2G0UAu<
zQ1B5QM|B+6aY6^>9%CgxE&imAQ#wx5Rmr8&YDm+xw$AFf^ovIP3oUipm*`!(j*AQz
zbaWb=Oir3!((x<%19sa@O1M{bT%&O?u+G4B9XIGwGSJk(O&zyrmorevz-?M`I_~Ru
zprih7o8Cpg*lYhz8(K8@gJw;~U$k|UaPQFRFcAOEKmormcJI+LRs%90>iCB?WCPg@
z{Hx;;4R|p(y@AI%p6GbNNpha*c&6hyCvO*XM-EOVla4b*-E;<$3{U`>$wpY5=8<AD
z7=RJ>A)|rJ44I6udvv5Voy7?IK*>33kevf^8F<M+4rcmGit5Q}gnv&F=QfbXKwbmy
z7Y*yrZy=w6HEM8B4Jd$GDZp8qi@Svl6fscEKy?E}4HPq=8qf?BH&DVrc>@sxB@NIY
zS=4lC1Eq}cZ!tPj7-;pDF;Lb3{mE92d$Qg4s6}dmV(4!=$$)Gi%FQW!M)c?2!HjNr
zBE?<ZfI+1Uy4fD40n0$#fN#JyK*R1D@C-OyEmcUTPe+W$flN9VG7}=;Wdo@ql5*1y
z3aDtH3fD#zRx(i80L`XT)TJaHRk=$vwiNk_fm#M?Gr!7O!$3`j*9^SQ=a|+F8pAs5
zziHqt18*3p%gK5M{p}evFv35C>l@);pcF~{q%);4X-G8~Xl$Sn2h-G0?mIj$X$~cu
z@C;IsW(JxY7;4}%1MeAVVbEWTK}juWNh4{Xn?XNWiB<+$8|Y}@69XR@Xk(zAf%XPI
zH1Lsuwg&2FaX&WjPrqc+4q03;i%XiNe{$h0E}4|u!2l)6Cx@~+8R$YC;NZ@*4*MsQ
znVSQMDW->ko(B3G_|!lznw>0e9|L_2^k$|c)z;4dHAg@N(;6LMU?9yJ`-8Yw<PYW~
z0mY{&75B7Yn1N9SzA!MHBS)}4?U(#H!$=OMo{u&##=s&2iw%r5FwVd<1JezRH!#7#
zR|X~<m}uZjj-Nzo&@E))IZ|^E`z2F_bVgGQOyvObX+S83`Y^-5Oat=_%r`L0z-$9w
z(^BW&QVmp)V&-zGdsKu+m4M6zY%Zh)#y%;H!x95a4SdHnFEg;*z&8d~h;ygYq5iBi
zu!?*5t%22inskC`K-Cgc%=ffTxc(mu{K%!KEaj%n=6VAg=z2Gi&%{r(@C;lqaM8df
z1DlQT@A3Txwisxj1v?DvG_aMKlG_YyXCCmO*HsJX*kxcJjT`fB1ACY$xtD>8r11f|
z01Z6Jl{jSJn1SQWhYcKISfd3;$t>(rzzG8<4V<I?YXKdn44gJ_#(-PIJ*)*3aF(-v
z;etQ25~pQR%z2Kyr3IG^{L1H&$;4&ak?2~Z>)OCo1J`KhH*kZtRy`=J2dW-a<AeAn
zo8;W0olOsJv%akde;D|a_F)6h4E$x_4y_8hQVjgfow;Y=zJa@ZP!Flwqz^brOuZug
zmm?puK4MJ^d%~QFW1bs$VIYGEm`G<L$wab=^d|lnPgSKcWl<Bv8O^X=s)`)a%qFs!
zm|DoqY9g1383kS9Y$mdsc!~WSthWldIT_mP0R`md$UN*k8<<R`@|!4NBGtspX1E^c
zIWs9HN}KdEpl%@(9SgdJO%yRvl(`sd2@}N`DECf&w<L2Z;p8anmN8M*gk{1u>BC*1
zfJ=vDqGbWMyoq83+z6ZH3cIq2s0qb{YC>mI<FFxmK*4mpUcfcj-&fEzIcxvGWJlB)
zXK-0P6ETKqdf*greQt=_O_-QCD4C!FofOqz;(ZepO;j>b-$Vlwl}%JJ@w$mxCaRjK
zW}=1(8n+Dv-0CJsUokO$U@`$6ud+kuNL<szYn-HD8p+zsbxqV`sAJ*{hR?YyDTUE7
zc3|?GCf+j9+(fSeZbK7|O#E8Veb>a>3}n8;&{!m!a3qZhWi@5987q~d@p(^h3x;(A
zlUtc+Z6aqOx08tvOtdl4fou5C#HvDWTN4!uy96JZ_?Vry3x>&d%<VaM1-I3a`4cWn
zO;d1Z6J1PnHPMah?@cFC$n9?8--2#Wc6zXG(*tU~7xS-$+&&EC^kwMBN(Bd)7--@%
zAH#eMGBKDIUL0lO7-C|miQi28PPrzAnb^sTbGV5SCgzx!YvOYgazXb?6O&AgG%?D=
z7j!8Vbm<spVl?v@*0HRgan^X|39J)YE3;3t`IU)jJYUBOxRXtgPGOzOCKaDf*ADYc
z*4fmVfyuKtCT+ER&C8Dp&NDIJ#5xn}O)N06(8OvJ-<nv&S062v<t7#jUSeV?^D^Pk
zTY_(xR|sb%!zvSW6;tu=IQfIf{hnbBU(}TQBPZ8#k}i2#t28DXOl&r>g<b`C+&0p(
zFX(RK5ugs!l}IsLO>AR_cz2=D*=}M7J9N!ba+itSCia-vYvN~`nu6{=6Z=gZHgUwn
z0d~kd#Bh-H&B87@XZ7GH4U~y9Y*JOnO`Kq+GoqN2%oKTw;WRf&$*?SsHf>G6m^f$R
zyon1ObKS&66PHX}<>ardmsx3FDqqOG!b~+}J7iyDzM}_}ykX)dUEu88=7!R`N=;C~
zKTP~dSB;A{F8(rchZdWSc{cv0?bpOg3#%;LGjX5h!a@fN4@^8XQQkttg8$t7hqh}I
zPw9%F)w{-cWQJe<K4!&}@N4d8CZ5x#mn(JHO6>);ZXuV2+*TNtWFe!4Ocs(knVvNR
zD_CFR8Zt9yXU)P&WwTny#@xGF_$3h?FImXJPEOX8z5n@nEEKd*h|Rnf@-a|+eue_n
znf&3mPK7NLv5+Eii!zj8EoPy(@Y`=oD#=`m^}*x+?m{VTp$t1^S<A6fwKeKnk_Fj9
z!a}NrsD<|&%M!T?gK9w&j?Q3MFd5or`0p%iPC6D`5$Q3+SmQJo!XL6f{57_hEi_=K
zf<?b29gcQI3$KZoN){?xsA8ciJFl`<W36uC6^2~}!msrw&I-r2hJ~7J5@#~P8(m)K
zWGxG|E!45_1}E#W))kQ%uWR)M*DU6|Y2hsk4J|aX(85AX3vY|ucP%s){0>7C3u*N<
z6@D`d&6(d5P73$reNKMJ+KRQcg%23ouu^a5mk4iq`N+b@?6hTVCvsmlf{qqGu`txa
zXBIkH=xkxIg&`J>&$ha7SRYzBkBzRZ-7Iux=)u~Pm2!Jo=q>nd?pt3j+mE$B>!%h5
zFbrfJ#7cep;uUxHT%CZ9?nW@o!f*=<E&S5Z8e!pc3sXeoNQUtiMhWK&hS3(rFpOm#
zCvs1J8rC_%!bIVGX<?G!uPjU!JkbcITA0Sk=@z~g{tOE<nP&-SwuOH0hbwaqJ9C9U
z&%%7>1;RmNhfZOUg~fa>#7itJ6}-&Ca>3tNSRvSXY^=8Mt%b}sve@{}!uPZbS-5Xu
zjfEd9{A%GcHDRGmXX_ZZwbsHq3+pXxu&~R*ZZ?0iu$5sW>n7ICtXo*=6xxr{wh7*D
zVF&Y0;oN=S*(3O%g}s9JS=i5fKsZY)B@QtkW<A1sROHq>X&kq3f|Dm%f3a|i;Xq60
zG{YGSXBmEGrM|7=Rdmk6dEs1OxX60R0(G9ku2^XHyZvXK#BUa^a@I8wf8D|j!8aLh
zS#%>rxFOJCmUDg={D*}<ng0^b9frSI?^?*-D%@E9*{nUF$NN}#Vd0?#N`?o+zpRfe
zJQn^FhNl*u31@gL+*M}$Zl|-cv7VE}N|0<LJ#z+D2tT8ZOoI0rK~@{tY`kTop^fY|
zUa}Fjq1fT+<gih|MnM}nIY~|~8@ZYD2q&+Ne9ZZU^G4Og^JZ2d8)excE^MQSjiNS+
z*`Q=8R)XRTC2W)w&ML_yKZTQ}ZIlsyizKU@sK308h+v69wy}+Gy;C{q*l-y%8#;r*
zYO-23ZW@8jyo~QV@|dgIsAeN(BhE?RM!-O4onT0{@v?9#*!Z?(ICm9=Q;DH6YZV%K
zGu+av+jzys8*IKRB41~y!CI5`H5;X}|M#j?%SLTB>#)wvmY(XNqppp5?9^v%!1^XD
z<!-8KHL~%xjZbY1u+iAY_-Ez^Hrm*D$3_zy?{Z`d)~2FVGaJpB-xE%kAxSL-zi*?J
z;MNS8%O-tj<0Ix?Ha=$P!rGR#osISk9auZr=*U1l{KUpTyikcd+bFUBzw_;Cqnn87
zZlectPvO+hAHK@;=42n%zBc-a-2Mzo_N0L}2HE(ElY?yxv9Th5>R1~?+4-FHGuC0O
z!&yhL&hx^ajAULoLK|h{3+B<Rlr@H-xEYM&YN_V&3=>!<+W3-TlE^*s)R-*FPO&l7
z#xzb&XPw15!^TX86Su>6JF}SyzP2$(aKD=7d>adFyyoC_2McX1vT@$V1sjWPEU|IS
z#&H`<Z7j2~!-h0QTW;eUn(qEqiP_<rS;1AUv$4{~DjTas&1-1&GJnVVz3@*~P5Qxx
z{A;=&*;&h4I3*mP^)@ze@+TWxMEph@n*?uW=>0U^R^e=8*ly#+`0(A}PFlcple3N8
zHuiAVK@qvv#y;l#tOr=zJ^$~0;2};PwsC~vC~ISpd*ZQq!p5ax+DZ0Lv7Tn7M$a&u
zW&PR4FAV2I?)rh+MJj8fu!ABFezkGg#$y{#Y+SK%m6Fx%do)%x&1=NDoZp$R+ql6%
z{!NBktha6aCj9o3O^W}6Oa00EmyJ6Nf3x0YrI=-Yc#rFS?$QGr4@KYpvGFhSBi1ej
z|GQqE(iZLD#SH5i?Ts|HB0htIbPoRsz?#fTHK(WZQo^!ukde(y4ze<2X3fI7{9qW9
zjhP_36Rs`-I&wJ3$$l;exf${}D8P_c#OHI6UohR(Or;8PvJeey`Ed4&Iw<BqbD%pY
z?tuOQt-OPgHSH1(N;)Vd%9eAG!dzN7Wf;mj7_}+v;nJ+3M%a`@jO-vPSYc4bSsM;a
z2UXa#9M}$C7Lg7^jMZiJSeGV+8+)ADcaUI6WhH-B)uajz0tXe@sU&=Pb5dpIWv_;}
ziB_d^>~B?LC8+M;6~V7E)NoK!I1h5^wH(xTu*bn(2X!30;b5$TaSrNoogEx>WT@w$
zzJmr1-gNMmgXRwX?SqD*4^13268ttpW7c;Zc+0|Gy(@B?I%p=i;pn6mf<JK3Qt<l>
ztsJx#PNJ>Z#=(aUJ`zq_2OkSQJv^x$b9><oIBR{v+|xlXhEA-VS-Uvs%0M0K#?akC
z58?D}<MejW$DyCV`fnZfb<p3zr=0BP;Bl#NB@7U`Lm37-7{oA`b%@9<8V%ngedb^o
zJHuH=h}@Q$6C(wWa`1)V(GJEif1D$1YrKOA4puo>&E`Z0a~#Zd@TG%E4!#nlW-v^4
zFhw|18KyayE}Y9bteJvmG0bND+QE~0VO#S!xm3i=XIQ|xkadxR#SBYWsYuY!T*kay
zINvx}!Msv96-Fmn_snlOxy8YE4!&nz!@AzV4{4FCYgyN^w(c4BY6J66td!j7U=#CZ
z;gtNt`mTz-m1?eHZ*#Dnfp~|5oq~5U>~?UzXBfQC!F~sYToiV3z`;QWk7#lo9O639
zJGkKBu!AF<Jj!~S^%(1M))Nj+GMr+izQy?s*ck_Bh4Zt6Uj(0{D~JOwvU5%NmuTM*
zeA&Sj=Buouc!#|1;07meI=JKDZwI#=+;;FAn}4uU>%Ti#77a)2Pj>zi{@X?>nRgvL
zVCNp|ebz2l!}y2H|FHhcN~S->eBz+hFmv~0Et`v{4xVw=a|an*&_mrQ<^?-+;}6}H
zMoBu7U8EO$BA1?#Ije9oF=Td;g<(&fuys04J_=uUv%7f7MGnr&=^~#fm5U)aYaSPQ
zg<th_xV_{LKco*^FUacfyKB1bw5W@!E~>Fv%tbjD<y{mPWlOjy>7ta26ycO+=wt?E
z7|ODyUCR;rzkE)<%qqK}=dPJ9qMW3r6$X{=b!E_nA5Cx3Zw*sGjMWyt<HBY3gfqen
z;><p4f;Cm-F6?DiU=D;+k)e`{%EGC_F!OVZevF+~cy$-AxOmmYi$Pi)7jL+z!A!}T
z46nKLkccpsj#@5i3!dG>tm~qlizY7K<vQ!LHgZ9~PeA8F$D0gqu{LzE>{K`rZ*#IS
z>pQG>#{D<HO*z?;wHa%3*7sbrU>JTn+$!H^CTPXbnr4<im;2DgM=n10(ALApF51#3
zoG$LTXy>B6ixn<by6E7dql>97rn%U+)cC|jPZzyhbfTf|Zgu7gyNLR`GIV3@&f3Gp
zvvpx_d%Nhv&UhDnUG#G?ij$Pp-^CCYLpk{=>j2h)E(VF1!8GiT!_oMRosq&H#xUH)
z2;qG0;z1&eobzMY?icKjW*sA9#xjhfi{fS&Lm$jeaKn#hC$fI&ViLnwtdm(OcM8qa
zCX=Af9%H(T`7Rc4Ju_U)WSAxDpUv<!>m1g(F6N2c9yhg4dyGC&lRolY=wcE3i$(4d
z7fYF!u`Xx*M&v%&XsmLv+QnfPM_hdC;yV|+T<mu7J;!XIJ><EuM#TS+2CQpY*Rig5
zkyhtV98X0yGHi0OnPH2ItuD4P?+`KD=?cw5pKcg*>~!(>NA%&fac8A5dxg37oVJH+
z-b?F*fd+Ozy$T3E=;9Fbn?1rYr-DaaTySyG#W5GhIqL-LFRUkBoN{rR`3!3$fAU#|
zpINWB3hSZc94F7SE~=SyiQy(K?Ecy}b**1rT&9z)YteCq;VSDj7uSV<g9fvJLjhFV
zEiQhW^*5S&hCf&-_fHo;JqS0|zg^sQ;dzL8xaZ=&i|2Hu)7o?Kkal%i_AdV6QYQ+S
z$JZJEGCvaaJZ5;pI%!?_e>9gGIbF`#BYQjPJS2H=Jh&c`J$x|5D(In*hx8sYcz_q~
z6<IxG^N^7_6DvIyhWsq71TzaIXJ^jsA&-Zbm~*h^WX;7&kyL+P=6u3=zoC;~Z~+gi
z_|>Gahaw(S_KS+#6oz7~#XXc@D9KuimFjQ(gI3x@8BUh<APK)5LwWisQ{gP+7jfA`
zlpRI*RT?`Qvo0Ki!SrA;*uvjo2K0d{HR>M=+l_nhJ=F2=hKGcQR1eiWRQGU&8+w^b
zRbUNRD~ft5d8jOyer&ZWbCSiM0-4q;9*SB4P1dVan`zZxC8+7)HNmfYs3o|zhiwZi
z3drFk)%DQW!#f`8iTdk%Xu$j?>szc1MQ$SxZwvOVps5w~;chhX@UDlZ9-47(D-qM&
z!+U~TcxcJ|zHkbS3I9HA&B+f~+j#hp;Uf{_G;-Q`Xix3N&^U$;9y)s1>|u+CPds$;
zFvi1J;<8p}54}C~p@Ds2(+`tV&0Sf$dFU=`>*1j%b1&g6e3(8y$?D6=As+fM^cT6G
zG7RuAkYNz(V39l33WhR&CY)gm!##}f@VSSPocw}yl!zJgr#V{imv!869>#l^=3%-A
zuW~pb6FjW7f{Fi&VVLCMD~8FeQ$+4m565{5W_Y-31@k>D@Gw*4&SIGD;cJFDtaC-~
zJP$eSa1||NXSs)OJS<{fEMk^;SSolKL+ge~D}=Mo!%Dg&J**ba8isE@e8=#;@O3-*
zLGX_ZYiTp76mD^JtY>F~ho2ZWipWhKP8<zCrrS!3maf(q<QTSl*x})Vhl{l2mRmbL
z9Q1I=!!AyevzuX$hrJB@SogCYV5OLvc5qm<a@xZY4@W&56V54y<E$q<oMh-<?7#O#
z%a7V;MC4fyKMVfF!#U>j!pZiAL$h<q!#^JW_3*2Q%XGbq+}j?mdbsA{x^U_qF>Wy5
zWW6Q)rYGIsJpAtA58>SN@F(+M9`1PfoB6KDZOzkK=TGB4I}e2a&_n4A2^!Bw9v*ur
z97B;9o_KgldvXjpV&Mrs^N^Y0xrY}X(#4Pz1K3GsP0yOvVg_a^6-f!J&B)12RA>4y
zNk^6#va*?tHM@u(dnKIuoSe)TLoVUxjv<fWybQER@-q|=enEypG2}lJHc^z5rD8~7
zC>BF;h7znLS?}iwKPf8BOb}rx6GK^sa;)V=Zru`L=ZD%sGzKMx$}u#&YpAjRmZBSj
zCL(nPgVkiUSZ!7(hD4ok|Cg^C9xdIgMvOHcgHKs8q;fJ~rQDZes35q^m9SJrPF9Mc
zdJUJ7Rbr?bLp83Ps;x(U46ktVRn}TD)DXEfV|b1Eb>YmhgWAk>g!4uWbp>BJ9$skm
zIoW{q%^2Pixea4zB={#gcqfJ?G$1jYjN#oFn#M3LhVd~pi=lZ8J!9w<!+RpWJwprD
zmNC2^L#r5CbMhk*^Fa)41b-OA8D7923#TnZyBMzT31_?mCp)r!5<@43&aB;H=)yo@
zU1M10gzw6_3#Ug69qWfqZ+1q|NgWF->=Q%Z82Yi<KZYR;pNdigVi*|1AWjaBfetEC
z<5;+Whl-fb7>30#TsT!_`*W_Jniv_wDCRGOGn!#c3}c0J-wr0kFfoSBF>Hz9%NQob
zuquYtF?_{!&W&MS43lG+!pW(uvtpRWFr9S<>r7VaUTq$(*)e=AoH;R=<-%)$j`=Yx
z75)N-g{+HWSS<V{F+5!r1}_uNa)xhMSH!SV_&J^6Tjq7b`7Va<nb)xXkmj?lO=J4d
zbz`{d*2l0xI6pCLWZlG?V_@>u7(Q8I)jFW<iD4U?+gW$8?qsEUcEzxpIc?te#;}i*
z`(rrDa6m*JjNy>r!wg5b3996n@Q=r^e0q59r(!rA!>t%@)5?tDYz#Lkt89|u1V6{{
zE1l+;FzlBY&T-lEqJ|3$7h||2oHCcfx9gWVd4=_A4A&U0i<lcRj64;tQu?=R(%)kE
zoi^b(lH+)^!uW%>qY>_d82%LTe=*!){X2%c4EI>?vr;8TMz{}||B2yWhDWT=SRb=K
zVSO6I{T5;C&pAo(B8GJFaLs=`FZ9zbGt$SAHI8g?WMChxl$DVo6KiJHEOAWd?;o>s
zGJhNe7+#7a2Sd&{a>bFGIWKD-R;n#hJ8Ujr90w<aP*C{A;wU7zFhdd6qVaH2D6+W7
zEfGga=2EOF!mn1^DjP?+IL^dzHjeUfMB?}?j$v^~amaDhilcTM(KwViQsa0z4mA!f
z4*E~_SRCih8G0O69CjQ=9Ah`yW9V0asFV}bobNakHc3n0Lvtx+i4%X-_2MY9LL;-@
zWRrf+Asz?i`f()UIC9wfFvVS5&8-ke5J%NGs>M-}8=~JhsvO6dNm`{idcNv**k)Iu
zWRgQa7O`@sQ=Ma8jiW{!zg^T`iQ{q>oqqGbW<2}}qu1l%&l9~y-TTpbXQ$Kmq1JY;
zao~tnCyqDb=o&}2IO<Zh7qxfdXc9-gIO@mIAdWZVcq@*E@$g9p3v%n!f2zF7Hm6ZM
z{4t8gq;XJ^jt@>~)T`{<jCbQ`%DJD!(JYSUaeNrZM{&Hzl{7zVCJK8k;@DEyYsn7P
z{C*s*1h<ak1Ho<R^sj{vZlJb4j-wq{OWc-$#;QF-#T`xuhK{WAUs@-I&a4#QC62-O
z4TA1*^oU~+k4eusdd1P7V|vrL_0;-N6HY+TCyu`C5Vzat{JY4av7+Lia_|7wfvi;R
z;5hCi>okKyXxSXmhSGR0)@US$$1x&~A83uy;KwmCju~;xjAK+BU&Jv!jtM+dqiMl#
zf5yZyxtu%P38*a1^0+uMopcXr_QW{8jAKgLVw<E*qA;4N%i;R@iWUGbq^8gO92=df
zaZIDRn`};x<9RKIeo^YZ#Re^#S#ivchrf~aT^wJ>F(-}%aV(^Be5lQhV?GbgJWkT0
zB6HkTxAIwSQ5=ioSV{${d*hPVS9TUU!4fLy1UXB3)cW!`zKMswZAHH;vdsy9`D#TR
zE8|!d$7=S;8N1Z@R`9~P?)QAAYxu-Vo(O;AZfzXvcvbI<V|^SO;@BR?4q7&6&7b1f
z6vt+sh>he|a}SksY58r5V;ctynD1<j1EoCb_HQ{8Z`{{t&F|!S*~2rqD~>(0oZYm^
z{G!p!?&Yk8)56(2-CNrq#{t?*;-Hf~M3){7_)O<;95mhUS9azU^p5g{c}(mQ#~Dtr
zo{ZxZ!)cM5aytFbar{ENhmVLKZja~Uct#Tu$N4xe#Bni>OSDwt_&bhYDd_~i#qoO_
z`~NX6$B}QLb0v<ew52=2HCBS_3^!PB#&Jvdx8va>w<v&G`GY&~R~#kW;7{7G20Jgi
zp?`gdbC=f40_Q;-4;k*U-e>LJ+WIGst=sH;3!KLc|5D`)WWMbNPw3LyXVCGKF2*hv
z!HYQ3`6%F{ppPUU$vz6dV(0LY-VYy`lF>&d9~u1c(Jk~m9S|&Zy1GGTKYVUZRv+2?
z@S#One9+@~=(#O<S2*<Sq3m4tC0440p0AYCM=l>T^0~Qv<l!dL&(Ka~NaXeL(qJc_
zkI`<BpOv7Z>sG(#6!KBjM=>7@-Jr0KB0hGyLCJ5N>Vut=hqU58O8H3fQNl+_KYVJ{
zWj9zcU#qg#cyZ4u&25$O>GQFm!6dD$kMk=WI?6FLD&k2#WFK$&Xy_yAL-A3;N8m&C
zq51H9#C+&J3?H_S6IH$9UQptiX?C_uAEXwmueuc+*YV*}aVKPYx=P%~-9gUK`BsAN
zCtslXemJL9y&%=c%iOCXue(%Xo0@J#AM58kHGI_cQOQSTA60x*_3;Xwjvua{YJ6Ta
zmF?;2R6a;)cxl-4SuPC%)$^K<*L~FYu{J4D%SUY=Z}_NHGn^@Mj=hqo!$UoLg+pdt
zA2dGoIG~vqH1P2zclA>*sKig>YUJZ>ADw-4@zL1FJASwUe(a+Ooq~_|e6;Y<ltv>@
zqM0AQ4AJG8c1<;>S$LrJukEz-@xG4_e6*p+hgvHiTSuF%ncrD$E~ZE1OwvB2`d4W5
zgGC=vhfjpt9c>`A)wK1|j?U3X2OppK;ftMlLK{%o>F6V87n6?LC)`ecxS!J|Io%7o
z`sn84Q|ja<t-FsNK6?A;L)~6&_Vkf^i_?ovhkgjl3wCXFDcRQ#cURgi`w_VIv>74y
z_rv|O-4bVjkAXB_l(ozlLW_U9GuRKe+|ETkdW9WI>tT|1;A?GJ`owS_BYgC&j(*kg
zxsQ=Frxh`?B1ZZ6g669NYE-~zA7gwpPsMww80%x4kC_R~N?^Q?2|lVNP(6W(KE9;Y
z=;MNqNj|=!b?##kU4VPF$v$S$!pme$;SFahD_#537^YK;3^Q5PW8wW>vpN22Rw_7$
zVXlvP4D*G*fEM8sg8~-&SmI;5j~zai(ro4rzr0vYqrptc<vzX<yu!yy!K-}w^dq2v
zZ+(2{<9qJII$Fs-)-eCT`eT}Q)7JXf)hhfOYJ+e#`}m1@BkLyN|LcYO+ZI|g>}(VM
zz1`uv?wvkPv9rs^ZrXg9kFxIdv5#TDk3$RxSP!yN*}So^=EIykLL=}ZtdNdlK8~|_
zg7u_`Z*jmqE%*$>Ssy<${K9%p<mT9AU-WT_HqQhKCGabal8<M!?a<ce<EoE`9C^*h
zby}#*H+<am@t3IKmXF_=Z?pc!TKu!{{p}yjf3i|?=bdyTGKL>n{4Jcj4EKE87tRBQ
z+PA}>dHjd@UmuS|?qh~0tWRlP`iFz?!biFU%D<%NN+2nL<OH%N!k4-9tOS`8$iNKN
zjI5bNZafxbVg5Z+*tcxL&(81?YYx_&30yfD{u!8?o1+%<B#>8dz6A0!7Z6U9=XT))
zR%S|+Pau*&5w4_Y0>u(2&P-L6PM`#HN#T@AAVqNF0^zDIlR#N^%CR257XE1_B_MM$
zHGwFD!K$!QfSQ2Dtg{Zh6P7X)uoAFEOe_J1*=6;F-yjymnSJ3T80f;GN?uN&LIObo
z71^vRVk$9IPN0f#I>&-s_rf`PC4pBH=$1hD1ZpHuGl9klypzCd)S3Kd`mBli3B1l+
zi?udu9o9Ek>$28kr6Tmpt5j`+1m5Jf-V!Y~OrR0-+pHh+y@gGfn<dbk;oSt9GK|R^
ze!}ox0xdY%fwg4<A2LwZ`wXpETeE(^+9rWryb?a*<j1TO-!_4E%<Y9UXMNbuj-31?
zfldsaS-Y@yWu=%$KiNOb(0U~BX#xWh=$QZ|d$AJqPM{BSU)FxC{aMfEO{Rc>2|Rx8
zk4a!`0)rA5%+(G_;B!&`&;&kX9>zMHb%e+rg>dnYOkfl{U$Bm5-E$>eIpdfovyNva
za{|M}1ilo`qy)Ya+=V|gnUcU%;Y?$gp1=%-w3=rp@O1+JB=Bzna}t=Fz)l+81m-0$
zpVn|6?YjgPBv7=leXx(VJb{IxwnYgnPSC?r!>wisn@bZ|#*q0$Xnw=If^{V;nX4F9
zC-5ypO5-r{`viK_H`ma3riHQol)%~q?r#nQ)+Ml>%?)V*^lNfClQt%>DS^$x*~YLX
zfvpVb4~GS}Gw)y>S2uKaC$J}hiwRsxU@xEG!35|xMJa1v0{c0V_yEJM$LS6waG3c>
z0w)tVmB3LEb1Z@5%qLh!=ML*X&HM}N8CEjSCh#-!vfg3LIp*^s_d)_UkB0uQ34GVc
zx|zT&&brKcC4s9V@*2Z+)*H0C`1+!Px7oRqz;6t{vy%Tu0)Gnri{X5sq`!r8H-USC
z?<eREgmB+}D4Yh1v`4h6X^K-(CKXQ-cuIS0Dhj0HSpx4J(Xyo?dn%rD{EGzArG~|m
zSTnLFry@NA`596H!8dkjnFMEM$dZbz!WnZfoQs!Ik&~SqtXp!1<CBXyH)|f&ysVU!
zFYHMev-XZrFcn3GUnmuY1s7o`ur}NiiZK^YMG28xlA%;8QW$Oy2x}{wigKy&Q;|r;
z2k$!NQ=z5Of6d$D7HN@GkV>p_DxwVJD5+4Hi)2lvq@D_cD>PYStQM=y>ZHPDpyoV=
z1y_wY!+5^uEj5+iaGEt!@fw>ir=mhCJ(C6%MX743s3f>DLzVwy>MVfVX4+=Eo20|c
z%$zuDdpBfTX2vixGcz+YGc)rWW@ct)X2yTi$$a-#sZO2gc{GwGS@wEmnY0^l{P(~A
zojIAf3~*CCq*!9x9vVNrvH?{L2pAAFAjG7+tO-*hWI6J%Ufnnq=oJm9L=nkO9^O^i
ztYttoN_E*=!+@I7KfR2qEq%_)=z0d!H(-eoOO0q?KtluK84=%zMq;xYu-bq%1~f6C
zsR6SL$Xq5~GXt6%FvNhN2DC7sr2#z*=*a<F8PLIijs~=r<F_%Ot@L&Vw3j|Lq55{B
zlL6gi(%FD6^sZ#fGU~$=Q+GBG&d~Ov^e20hqPGvFFWHamxjA|OWgt0-987+@rH(nw
zfZ=RTCP$EC4H!ug1)~fYO&=qZkzAQ^Y>p=<7%-7CN!BFTuAL%%ssYoaPd8u&eWpxM
zSv%W+Ic&}qTb?qHoNvGa170Zq9{WOuiwsyy5$je#+z6V!OeV_>SV3P&u9A7(%=)zk
ztTSMz0lN%XFAmyD+WS*AMPF(*7_gCLn+(_@>o*(3&(w0cGTBPmX25pJ4w>(~rrT}6
z9s?d4@W_C@2JAE7vH@2N*l)lAmYp)-psYV?z#;l!@(9_czxvuLreka#H{b;2Bq{P)
zdo`yGIAg$BnOrd79Q`~wlvjgal)aZIgQC@kaMgg@GQUQ-Zom!7P4brP6<6qq`a5ji
zHQ*lQKKVe_j4!1;HsA@HZwz=!c||^xHP6LfqrW7(@PK(ukI##C-Wu@EfcFM`VEDs;
zj})==uLgXge<r`ke9bEDH|gKSF`4h*QSno}3W!s#0e@s~v=LE8^(8<|8F|z7|I$P!
zFaky>MwpFAXhb3-v_|NRNNhwB78f=msS(MH$iZfEGOZEmj7T9zOKC(ZdTKI_%v-P2
zrl)6?Nd`(rGLsQ~`MrZIvNx*{*`#MTqMuIP>^Y6d#V|LSpUh)KUP?YPeCOYBQh?2Z
zWFhhtFS0E{FG?08i<26%gb^_mvAD`FwR-yG1=_NdSTfFtlCq|h5v8S<G2-^Rf7{$(
zgps+4v|LdCa<>>^HKL0VU5&6AVK<__IE5PFFv7{Qa-@q4kZ#gLdP$!Veu^0ITfdS)
z=^;v(j2KaXS74SmqJj|>ji|)D7Fn6BMphxK8pU@*{;hd+BWf_LNs6VcD5cb<*CFeY
z^<;0^jE08v=0>!jG$I?5O^j$tX-1ZpXX%zkv|}R1Z)HSldK<DWd7sw<i{AEZb}*tN
zr4!ki6uq`<x^DD=Mhr5dyAeH%=*gtFtm$RM75R<1KH^A|c|S^jBL>K1YZuL6BZe3;
z#fYg!3}rr^9A?CD$_OLI$oi2+jG~YJU$R{{R{A(2zO??gRVOf<NKP_hvaHE?K6;w;
z*_7!<%%IF9XUSgei>Nt9%r#=3Ocok3pT2+$E>f4ZNcJu^;_r3Z%ZylV#A73#7_q{L
zl|~#i;*b%mj96{N1|v2au|{m7ed^nfsvXtK8`c`JPL8vlQf^|j_~E=w;-LK*v(t#p
zMu_GXQpkUlt>iXxyAeBN@0@GulXsU9yE)VzIr3i0K61Yi2V`Edhi+a5-C-k68*#>n
zy8ARo#A9LaG4eQhLe`%&;uJkJQQZRKClt>baZUD~GvYk`0(sGhOGaF#m)@_Q0I$%m
zlA<YoOz^r9H;lN+<Q{oT_THx4A@3ToHlzA?@qIQQkPpd6<lix$8u84CpGN#LqU~?Z
zn2)CCM!YcMC2Pd&AB}iLe@(t2-;(dh_v8ms)ay>g9WAANGUBt?ETxn$<X7?=`JMbh
zih>8Fl;1`eTya@U$ZEnLaq>4I+N7TU6O-}C_+$bSWI{3#DT>9)Cov(Z3CWnGG9fi3
zxd|yKDarrUr(rXL327<m$n>Nb?L)J;j3$UL-DhHwS>}IADcMZOZbDg^<S?NqJ*Nq|
zOvp_yK;|LylKIH|q!>S2Y4sDBf+iG_NnsO;NH0}dDP}@(6Er52Fd>e445^hh6*z*9
zO+6WFLJNi^WlbqcX%ouGB=k`|+6^WcO)xQ3NV^GUSz|H5O1H_R??=6Z?j&7gfxPO`
z<u$=)!W9Kq75GgEnDE_%A0`A%2$`_kggqvNO{n)Ys;3FPOo*6J&V=$}1Af!Td!ear
zLIo3+jn{~&BBhcEl_^!os$?}%)cjf;Q^SOsCe$*aHdmt!S;vINl)7X+6Y87LfG$?D
zp?GxZ)wOLTlL{$IG%=y63C(2E(uC&p7Bb0QJGK?QwM@p8R@$1-&V=?%I*}d7j<Tjx
z{&<~D=)z`Kvbzc0WN)cDu|1@3D6RB1p^phuOqgmyU$OfpYKDqkb57HbE}H!*1IU5o
zAabw?Lnxx=L}_K13Byeo!I8(2Bjr*?iT?u7$B<)Xe)_q3dKquR1SS*7NwRk`#dSe5
z&4lSD)V-itX~GN>W-?!D!Yo<2fHIq$Bc3vpd9ruD2^+4chn$!eGF)WBV%fXI1Sj{4
z=v`*Qa+$B7h$Cc`39C(5!{#OvHk+`PzK&c^ZXh?3VjS_?Qd{WTW%3_oE4fXu*S}Z2
z9VYB#xQkrKHQ8&zJ`-M>@WzA=^`rNjaMOfaCLA!~pb3XeIBdds6E1L;BPN`p93_vD
z$H^1qNm8uUwVbi1rJtdkHQ}60y48=qNWVf}A}`C{yWjO!rC+05H{k~5Nh|fS6gaPa
zQ(C!g!X1WpO?V>f?@{iX@PP7=d_+Db#q7rtsJ9k*%H}f@p3D3N<)sO)WYYeU_N_SZ
z(ijdc*S$00`X+6I%!c<SRO+b}(+A2&@)P;lgfEn@<Tp}Ome{2GX~HiPYzpiOev8w-
z33>&w3ZfK5D~P8czG#+LKg{f#qQsf~aS0SaK^6sB74@Ydp@I|?;fWL^rY9kjlF7*A
zq^Jqp(4|z6N<nIwWT2!`kd~5;OfP%0j8{K9%BUa{lgwmmzMhIan}VkgHR87D;vdmD
z*p*X3UIqCS<YF^7DJt_Qc+~jc@s?jfA?5|hf@JEkYHwkB5wa*L!h2~A#kn92DVA75
zK@447=`Wf(na^Jv6Q^L;SWQ_48=gd!q>B+sDJad+%E&Rr;06Whrs<3_F;Nr+W|>$h
zRt0<ceP@RPr-GRZW+`wfa4Tq|psfOrf)i7;RTR8gtnn)FaW21ta&nx2f*?IahRKNR
zZInH>yz~l`iex1Pm1Ulyj8av6r$Iq=CJhxdQcy!dO$D`NO+5v*>2=7uGLJM=_h5Ym
z4P-L(P;_JI%@s7EHzk{qc3#aT=4zp!rL1hFptba-Yh&6e;-{sx{S@?9(4Kh*1sxT1
zQqWmJPbOW+9&)a(lx_;T%cNi#_0`|^Q(ePe3VJi|BYXQQ_|ZV^8lYgHf-wrlDj1|-
zu!2#n86qo3Di}&1Mh+)O$lm=Y)j_`BR1dJx;y~qbIF7wjWX*WW1ahK+NtDU5H&-h4
z)IF8WX$q!OW{?SZuZh_T=CJ9%7(G|PJOx`7Y-2KC!5Rf?6)aG&P{AUGVzlK77E513
zS*l=}Ox90P*Lek-D;2Dwtd_kKQ>eY`*xXF6CpVBA$xY;u6wzBK|NW)7=5s;Jb_F{W
z993{k!A|D;W$!M^ZUuW}vRA=A>4S#E9gu#Ia!A2p$`P68=Eal8*}Np48VXJ-I3;_}
zDL5_tjDoY$gFF(>E4aYqqRg`mjk`=A{YL%7;F^N#;#6sd!;BjWZi@4y8PR6kQgB<r
zeFYB`+);2>93*9wdz`T`N8Zy{{ky6EPt8MdB2w^K!56Xg3z~gtN<3EZL{#?CJQZi!
z?=f!_JY(}YDe@NzUeaHYuVucljPjPVyd&R}VuTNrj|x7?M7)3gD(2#wb3rkEWAi)t
zL%~mq$bV6OEBGUmK>QN%%!qGBb~AFAk-&_-Wt0?VG!Q>uVdhJKSzJu66H_8eVloMt
zluTwua*C)~8?8%ehH_h*iu0y6BMl|38JQ^Q$n>OGpA2SXl%9FFy5^b9$igHmnN9Y-
zAFau0MlLq>X5=<Q{HBtqFK9*{dR{UgnV&2`in9G}bcM_)Y(^0|T5(EIGm248rBc6S
zt)Z8YH8B(|sT0Qocl7$!x>z&f%qVF_DOqVUqcpt?S(Y@AMp6v^nX@Zqn3-5eD`}H8
zsmm%(GhAjgG^3FjZZkY))HI`(8D2Ad;vtODR4~JSO)GvD({D!181;D?FeAtjLUNq2
z*d5Z#QOb)!wyB#}{7PU&CY8*nOsPUvC99Fu$r_}X#qHDOwMAQdX=<BM$Beqn^B32O
zpTQEn_1LU04j5VASrgsZj3#D`GGnwEP0eU##?82RBh6@TMhlkpF{34=vl(5?Xhm;r
zMjJEQ(mRl1{B~xvr#I=Oo?tu5yc6Z`M{Qlr=+0(0+1tEXbPsw@ne?LcCTsJbQ+>_o
zXGVWB2FRMBl!4?RGX_(J$lju5)mM{YW(;RCLgw}|@t#I$M`Y7EM@O$7t{r2>$tdku
zGuBPfjAPAsGbT_bnlY6!iJVMMA)n7zAKf(ibaDnclN4RvvdSDY=9+QDilbJ{Gh@CP
zsjWz3#R4-Hid|ztT?-bOvDl1s7Noaei5W}HxMIdtGnSdL+>9TuqfVN!!i<$>>@s7w
z8LK${Ml&{1R+DSYSW8()ilwhNV}tZ2WtGi;T_#&7Z8I9SQX=9maFp%j4l{OA#5jG+
zDtn|K5~mvJ`zZU(I6yf_mY4THJ1ibGlcS^<=NRR<87E{iv#fH;jMHYEVRA|4XDR2*
zI4_e6W?YmW;Z49Uvnl+VS^OxfdeVC*p6_OC;~sw|j$ZK+!2CA((2P5jyW~CcKKXzY
zBistApP@Z6<1v#b<Wn*xxB54-n4Yuwf_zE7GUGMn4f&Q7m3=Pi-<$EljE_vBEQq$?
zlNq1c{6hX9znbxl@|_g(zFZ&gC;b=soBSht=LTcrS=5J|$b!Tc#HWj90t-M-NT%oi
z;zgdsf|N|g&DSQSBqNhskb)v=u9sC(Nl#5lV?kP(%$gsY!Geqy#8{xU;B#3elLa{}
z$Z0`~<Rvm&kVRHzwICZkyG)i|(7$S=%Vj|!3(^>r+%nH&L0;+kDEY|(WI+qWTw=uv
z%bFsTqGU0$xCI(Y2~rfty^hgYptrzpLBN7o3*syo=g~JcC?#2AmX)O}C~ZL*3(CsG
zK+zZ!BgI52vUlHi_1LgjV70);&~Aa7;vk)*ixidHcc?4xVbg1YPv(Au60~5%uh<$)
zLKcK65eq6)%8}*C3S>pH5-G;~IX|Wfy{b&AQL2+MnWJmUycVT4IU{?#dKT2TV21@e
zEofjtLkmV(FxrAf7Hr8K-NAy6tZYm+v7o61&FIZ7XhRW8Z(%`8dMmQE%wv9P+e&X|
zL3`<^Yeo+?D4i_mWkGKXI?KF^1zn|gv!FY@2ia5Riwx@7yN?BfWzyGze$x9>23RnV
zGDzmTIoA*ihRS3ZWw_Yvl#wzQD>lZ0vEr<2!BTOYSg`-QzVrmm91F%<Fu{U}tei$p
zl5<U_OtE09Oa}04T+=O>!DOb)XHjNb)ZfMx4@69Jnam^STd;t#(1JRFvWw`8Nl|&#
zpe(bX#HE-o24$lK%bBkrSCXs9)fTL=U@d(;xsDVgH2tC3AiYw9*i9A)ZYG6n5nc4H
z<Tjaar;Ke7yUT*z7W}Z_rv-Z~*lWQ(3+{8keHMK9sJ|pO7n=txI7m5U!6^$)TX5Kd
zBNiNGc!E4e9w)`RHE*weo$90o@3W}q)iW}`V8L1XIr6;Br?gY+FS6-6p>D~`^eYxz
zrChV%x&=4rx5=C2EmG8{Y#(=repe>mPx=R9>(z>VVZloa9x{I<dmmfyg#MI#CiCaw
zW!k9j%~uxOy`vY?N6Kpp-pJ&w1@GwZ$qzC=-!4wne`52q1z%+T)q-#I?=p!sD!(lF
z&F%b$i+++${Uj=VbZq}3x+p86t%zq;UjpKjNv%j=1*}N;H{?BL6VVfsNk~yY@{2wh
zJ-JL$Sdo&RN+wB1$ECF*ofU1YXlq4!D>7K&vBGObMk_K|5o<-96`8HbVntRfvT??(
zdDVRsHYzPI>9bpLX{4^06*;WPX@y8~kp;-yR^*}NCG(N_Nm1F_s1&3ZA`6p6WN%T*
z`~~XSxHy-qv7&@r^B9Vj)LEgId6GZkE^WG!R+O@$G{aHciDj&?vRT%O6ZiB6Qi#zC
z6I~(Aq(%0As;i#cZC2PhuR|`yX@yI=TWlYm7JOFtt*B!~T`K}s1g)rT6<6S>hfqjt
z-m@{4tq@-^4wDfp%2CRb708NYB~nywXsQ!)RpGo<t*Az+PSzl6lC?-tIU%`vrLldW
zrk)kKSI5-1qJb4lw(G=;_}Sf>hF0~}eAG-$BP$wP(L}C)ODmd6Z)QbvdJ8f+zm3?6
zUO8>N))aAbfOb~2w_=4AE3N2YMMo<}SuxrQOH^zptNNF9FR{g1={mE%ixpid-AJ*9
z-6=iDo>mOVtezQqThWI}Uvh{Q{V1ZVzo?Nu(27Cy!7@2uREA0)Mj39!2+BzE?;WJa
zSTR<-Gq+;C6;D2x##u2<9Nyp6zmmqYY=RXNDU(Q%Po_*Er;52gs+(6#)2)~xYi3$8
zi$0s2BlEddJmRj8GAWr&$^zyKW$z*@7SorIOJ%;yisjOM4`WtYv06MO-)jz8vBrwE
zRvfhA)1H`hR%}VGOS~rLKNhdIVuPG(BV`l0S(H)k-c~<9*=of$E4ItZJ(L|*?4;}>
zcay_YMdv=O{>ihK&3)v4@&M`9M2njsiQ6&FPOdv_MS%mFYEL!CtT=APVLOi4al(p|
z;z?w~NgGaCaoURdHZ-u|j5s{R$;5`NHk`BKycIvJ_-Vxj4tw2-8&+JTi=|(pTqduO
zSIKK+w?ff3t+-{y7dCH`Ppo)q#T_f|T5*rbLsE=(pYp)^@9L39Y(6IcUUwvFo>}qQ
ziZ@m~mvg<KytLw#Ogd~+|E_;)#YZOZ$oJ$2S(7N8dfxaXo^ebDW%~Cw#aA}Jk>ADP
zXHriNzt~J_LoyqFTk(g@D4TlD2N_MqBjekUfFgQ(DA5U}C$b?iJ&8=_Jc~{)Jsl;5
z4Jl=k%7)a^(@@gd#3#(^Lrc$Q1~Q|p$wbLaK8%gdW<z!x%Gprfh8#BJw4sy@rESP%
zLv9;1EX!j<UP@syAK7U|bbd+!vLIQA6pIdXgA}o$D3fAjadITDf-WH|V{Fjcpkq^S
zLmVZRoW4UnbW74#=2g9n4P|ZOTWRpvU=V}9)L2O&MvBP>MJ8q&EYg1*(%9&B(jjxF
z4KC?Zzo_Q~FBj)0eKtIm_h$<*3EB{%gvkgg=JF-gRj{G!S>3Vty6Oxol9kBHWEC5#
zQmT=oYpRb(T$)(JhMMAF*sc{*EgNb}uVX`9dOewJNu_USLn9jo*)Z6K#x^vup_dKo
z7igQ>(2T?GH0zsFI*TV}UVRH2TH4TxNjtJN*@hG=(3a98r@AujZRo&eN3xTw5x3qJ
zLv`VRU2W(_5lMGS4;y;Q<m5rE?y|PG4ShIoU$UPZr$1$Y4FhGeK4<h08;062*M@mE
z46|XlP5dK9GmQl!Y#2`&DeFhsFq%F_CSz?FC;ih--2~|qDU)oNER!iVOqKp^i)Om?
z88*zM&yvY(${ezJr|9`METC^A7uv9avdD(TlqKW}8<tX*k;}>dt=mc)R@t!HhBeIB
zk!wk@<u_f|ua{nq|E=3-!zLRZE9&`YGrP73Qnt#<k9T$3ZP>x)P8;^wu-}GVvUj%)
zd+2+~zjGasy+>>~DE$!Su-LOaza5qNF&mE4$MgEeQ#PCy&rmx`+HuB)vo^%DBfcHy
zY&dVjTN~claKVO)Hr%)2fen{zcz;ek5#6L*Ca;iJ$!j)Tr`#Y#vAFf9sK3R9-X`zZ
za96I+JsXl|RS#4#J!JUYhDWmZG35#Q)P`r25qv~1=r74v<ZDul^Tq}nuLAYwh<(rS
zyA8rWkRQoU<YybcP`;AiNKyI7q&~(UocE^<zvRfjDSyZ)JEHCC3xSwgo0P)MV-na=
z#E#11c6@duv?GxniS5W{M|L}surie$sVPaxWOgK%Bc!k+rSzdDB@I2JOw!tsj-H;(
zAoKY=Cug!FvrMwskyUzZNd5P84mJzfk&}|kj@*<yWPUsHQbc7wJC0RSA9w*K1!dle
zFFl3rIJ{WhQ#(ycQ9Fv+QQQuVtckUY@9zHF8ZmZgrR(g_OLsL>kA#+2qD$FP+K$e4
zbg`q19cAs}b54C#JH+YQU`N%FTAv+8J4|*ca$X0;Y=?znC2gdg6eC}ZsDF<*?Qk)1
zlOED5Yv$k8`Rxd>8MLE3B}9hF2r0%XXU9+Z-k^dV6=hyY>|#5ruvxl5^m$$zS<Q~>
zcGR$=rX4M1Wi30J&}-XKhf>#$29$baeNtSSC>AHChITY!(wG#9I3Wu*wWFC#n%mKW
z-jE-~x1zVUqYb649UUm`NHK4FJM!@AS>YY+=*0Z*J%qd3(anyrc8s&5yB*?8JJ60n
zcJ#2Lryadm*`Mq!N9$upUwS{X><4wt2hjh%vWw<mHb;>|$f4vgJBCw4%?LY2N*CwD
z(eyDg8JaG7yd4wlSZK#0h7;|WVaH7RByzGHQz%o(Y2<WLj4v)Z7M#WAd~!B9hn#E2
zJj&nu28+rCZ0b$Xi|trq$2L2*Gg(TmvtyYZ%k5af=4x^!xr!7cq!q6M^tFG<Q^b1u
z20J#|u}M~Lp=`F}-#bz^x60l+Mf5x9du6hdvWwhp#~zA!t0oq@kG`K2%>$H!b{vvP
zmK?gH;z@1C8VA-oa9q6kw<G94$bpk~oD$~*2XZ-ZTAcjtcxA_H@xT|voVDYY9k)5i
zIr6+67wqEO{kSAYzDBuBUa{k<%oik6xBPWGZph@O9oKo9y2Ipj72RVy?#kYKcHEc#
zz>bIXM>27w(Te&fb_hPT;~7Qxb30zpU&`dESO3P2w|1m*AY)kj&W`uuLB;42JMh7d
zk9Pdwn4jdxzwG#I#}_ug+VO+(jr=Za`e)Psr2oB^Ks>JBc8E}jn4%nrb|9XEpZ|~v
z$pj=ENPk4#6k<x`z@xhA{u1kx#G$TLQZgBt+<_F7l%(kWYEn`=kj8<u4s6S#6H{gf
z(n(KG$siskC6mm5K`Sb=IFMB)*&N7D&mog5nGLxe$m2i}2Z}oIETulLs8N*hskQmI
z+WE->q*&pCltK;^rs#P6Nf|{c#%8Po#T~eFQmY|LkfIqw(ULk+@4&{jTG18fKuHHm
zIZ&D-n8`AvLY5^B4j3sWQmo0OVY(X4)oo~Tz{=3(fXe|l-R^)xRyrMMWcs&{JP!C|
z?sfdX>m~dS1Z4gwvp(!V#DV?}3~->F1LYlP=RkW0_9rS?!GXFC)N`PstgqxiWe2J_
zP*o;1DAgROE|bH9qiZ@)%YoWV>X0jVrG$70+x|q=cc1~o77jF&b2S!gE?qp>CiJFc
zGnqFRM;*U(BgSdTuoc;wY(utnpf|7o_kM`!z@&!*9UTx&F?FJJCc8M$mC{Z2c6UG=
zB%(}=-;?w9B72j4$i8Gha$L!H105LTz$6DIJCO5=cCZ7Z9k`iRJA}=lq{xRkFkJcw
z2S(CI$)wo;-53ry_V2Ldcya<M)@Pyve;TXb1gZ2sF837O6bGg{Fpa%)9hgU%?!XLL
zKa(<xobA9InV+wzz7Ltt<}wEsIIz$GZP|aH11w^`*nuUKrE;!`!?nw$ub`}SU=?Mx
z%)Q@C>l|1wo?lKBbz*}!>>aq^z(of(Ik4G*!wwvApzS){76*3o0Q*nQyOpwy-0r{*
zneTL9m-IV>;>0nzhcoUK$1_DF`yJx$K<eRoP$q{QxIa`azS~`Q)Pb`c;TU<GJVBl$
z#nw1QIW0~>GV%3Q&t2ynI4_fT_UKCvTy`L(6RDiI;=ol0UODjEforTeGEaBcf$Q`e
za;}?{TMpc&+>v=DMY$)o#ys792Oc=^kp7H(L_Q{;IPjDrt~e5tsDIAp3-To?!uE>t
zh9m!U;Fkk$9eBs)dk4PAC4O+=BmEQkS>~BCt0(HO4t!(so%|ttjYH#p(-S+@Q~e(Y
zqMV4PizX=X$oOOeCsvpEcm7GpB#{%Zx2oqZF(qM=)QM!2<fO<`Q0%`=shtq7dZQF2
zGbIg~)`@f!(Usnb4D^g-CYjI6tIy&@RwuGKk===Wa^xJ8yiVklNiIrmGLIAO`GXzR
zkNrFT^E*+1T?NTPq*%kklzU%w#hfVagwF}T6B;K<IAL+Z>QvA0F;0|r;@L3m{s$VZ
z6M{M?^psdKjud%GN+~CribMK=W{IMdaiXjfLd0Zn!bmrfip<U8QC!iA0-IC4s#9Er
zIOVZ!#u=?$Yy>BSI7t`jCPnCR!Yf^@f53^L6Lp=a=R`=1GdQlY6Y-Li4AVt3LMca<
zCo7N@ov1_+HNC!>syI=V+oYNkH7M1|zgGj+q>JrVi&EQ(I+PCY)c4Hwo#;GVJ?h#y
z(ZGp@PBfDBEhvr2CSv=@ycwmr6Z6xkf98m(C6iW8w5GHn+mfR9>tStsCptLMQ6}9f
zoyg8)7qY7p-6&Ous{cF^Qx7Kw4pP0h6MdYR<;QG4`a03ii9}u`_M*QN1Dt5-Mk_Z4
zIx)zJDlSxYVXzZJoOmS;cqfKBF-)8T#epH#xnSIIC#H+N;KT?nYorsSD5IU2ND+%0
z<HT6{IC4BWLH3%*st<gU6O&~!#fho(X)<YaLNimWuoEks*jZ402(#I>h@9iZT*^Fh
zJ}GJzII&RrdX4(zT`UecnJlF&BbSpy+|es#?<&e_C)UVhtrP3$>t!;iVB97rHal_B
ziBk->IB`(i7Rj%^68-1IRwuSOv7KFe$Q|TPQq=5nVmE!tBXtLfX|EIenCzD|2b?HU
zS=~g3IPzgqEaHe0N9o7N<Kzk18(L6ezoMLW;<6m)4CO3&&WZDs3$pj36PKhn{~3G5
ziK}d0bK<rWcj(v28{|zVZc#d9Q_nDW>Ceb}PVuu}>Phv16OSpvA3E_!`eQ|TLVqfg
zq-OPF`R8oDaN;FpFn>tpjT3L3$mK$A7v70okRsl9Cw@5bUToWg`VZoXwl7vpAD#F_
z|4e=%zmnfbQIqqz_NNoSoJiwBT9>+pzqz2KF8pyK%7ti#B2VZ-JbHXG0SVdra*?{H
z61k9ACP`cfaXW}SnG4Bfp2CHc^i(oQ?ZT;6JUqmGnHXkqA-(L);6g@vCYfY*!OL%X
zXO&4d7qZiHkU3@E{%%wr7xKCg6f5IGJ{R)4P}+quE)-x*F|wenFGMNqLJ>+)@?>^(
zZx(k!!)6H=^e)7@5W}XH6a_jL)}&A?<CxTVtUkF)(o2!4^Za|=DeHpE1?wY?fw|EI
zlM4#nMw&?rDF(5+kaMJZwA-0DNT=-mIyzPi<#xftF}<Wnd=x(!aA8z;oe0A&Ed8Ml
zrTrNj;RxmAIOScaK(8p1N-k8Ez9x;XnhVukNa{v1H)^<0(}lS%%yXfZ3$<P7=0bND
z>af0*3zrsa>bg+Rh5AgIk`2g)WFxXM*@P5p)q9w>8NE5#Lgp=9D9rC2x0Xp87uvee
zj?MNibdq@oN=NdrC%QAG3)z(vODQu@*TaRLF0}D$C%Mqeh2AcVaABkieONPy>`V5O
zbM<#&0DYiLmaWhZrVo+HP#1>Lhs&hPWc9!v#pVQZG&zPGOO7MQi(`^c`H5_bxz;_3
zp6tRDHm8!aT$m<%r&DIQFjFR9+o^B8X1g$lN&R)|%kF#^7Kq*9!etj0y0FNF?Jn$a
zVKHl#yRgEACG@4_GE&U=<d0@0eUnU9xv*Ls<SwjbvO(tSDC@;g?bJhSBb$H6*-YQ^
zx02jSZu^^vd&{iW?xY_jce$|Jg*~$O0A(+^&xQSz8E4hMj1JNdk%!46r09CoGWM7Y
z$JspL!dc2m*?Y=`)ATbkDY;yCPWpKlF3>N^<jN_{6&J3$@X3YGE?jfrx(iR)d&7mB
zl>6i@^0qj%eCm$4!{%L5H1E0acgzPec}RKW!ef~{p|puA@yvzi^cUn?@}&!}D6h#k
zq!`)C!{!~E?_KyH^N*CcX6jD)LjUE$SK0fG^4*0Wl%M3^75FVq{w_qh)t3X1LZaP>
zM~_b?kom?Iu?eLoawD<yByN1%uD&fv?nVkX+-`W>Na;o@H)7q0b0f7IY24VqC$<=8
zN$W-yH?q>xxsl$D3~rn(^zWRR(Tz;(%1qAOl|YP~jh>qn&FqvMZserol6h3KczN8&
z>qb5|@-r;tMgdC6v+AG!Vk+oH4_<RySk6_%jiS=UH891wsv5EcDb_s34J}<K6Fp_s
zM@>n$dQ;!4qjVa#dIl)vMrk+7aKN&pnKY0_H%t_T6!kUDip32pn>NzvhMnS&HAOR&
zb<zJ`1MGFf=SF2Ws<`2IV~I~+-i;~Ov;o!x<y;|3*o}xx%2D3(hY~8#E0UGSErs>Z
z=V_|CQP+)nZV0bNRwrwaHOX3T)TY!SMdhr4CF^sLMx=OL4JZxCQ;DJ*Q<})$rj%xG
zG?z&Wx43R!eIwM`jW%K%dQirLwr;d@<Eb0Z+-UDc2RDwmany~DZgg^Eq8pRMaX4Hj
z?rGWCjV^9+4{daFV~`tz#b_M4uN=RJ8$G4>qV#s7k4*0UQeVXTxzS%H1H@ke(wh~E
zH-tW1CPOL1-0Hm(#f&4|80p3+**ngS(eyFoSec8v8jhz=Airi+kNL@NxF(cb<;H5U
z6Wy5V#x(ZMc4H1@x*IbnGs#(`{i*sl*IYN|xv`ANd{Tsq-B>_hNG_7O@xFTeFJW`3
z8!dSMvE{ONg&QlSA9@<K#*MXZ>~Lcz!*y<Kmc8rU*g)S%ZX(yL`S)qSmcM0gY^7{-
zV>@M-Ct6Hm1;n(A$$mF>Q}&R1NzuE{jfL`Cfd||;$ovp_nEZP`#$#?AXY+<Q;S7vB
zA)Z;YG#A8~#EpIf<4%!6PP=hN`dK&5(a+0d<O}^pw|Z01OXOuzG_O#ux^aziUFKbX
z>u++QVm)tBZo6@Za@UP}Zrqo>kKA}be<+jbX63Q;Ct~IK!wt{fc;Ut`H-5YEQaqRI
z#I~ED`RT@u%lcPtymsRaXL;+!XUaSBy&UHQ<)a&)Wb&w1>=*i1nS7&scjJdl#Mi@@
zPf&NnA2*^r$nHT755x@+qCH6MQC|z<c@W=&1oWh&2ti5cK_U+dX?2O&Od@-?nU!Sp
z<YWpmC7Fs8BV0BsY3OM^NasO%nP>JO13jZmGI`W5&52pEFv&`0lfAhj(Jem5^j@XO
z=|L_Ja(j@+gAyLZc#v1t6sF|!Aiqoscu<gDNG9S@h(#1(v#1BfD8)&Qta-Xz-B4N&
z^d7`|pkqF~o_Zw5(MytlA7d#wSE>`5vK|;bIOD-t4~!m|Jecgk6b}>+%pTP6pr!{F
z53C+|J@9#8<Ge08g53j$bSLGtS#eW5GJlaK+D{L85T*n?2+H2G{2hvj2bGvy_#Rcx
zgYxtWvZkU3FL~!f@o*}8P(|idJ*Y;nE|W$Lw6#2_?LmJJ26#}%gSsAc^q><9>Uq$T
zQlD(#K|>E3dC=H{=1iK9P07$__1x8rE@X3@wgp|Rp=gS!l?SaoXd}-5%-hS#c9a({
z)v^xsr7xm7Q+kqJ$gX5JvOC#>6m#WCte&oWdC*%XeLUz(?<bR)HPrV}1KAuw4)S0y
zWe7Qx6g9&<7%u(6!I+UAjAC=N2jgWv#)Gl+aWYBvB5H#4i5^U%-{w2XsUA!dO%Jv*
zobJJ5SvkXlnI6nyb2d4joI}p_U>>DBx2;&W1#B+#U=gKmY4wO*;=xi6mN5~{^&Tvz
zukc`{2dn67$knoDJbyfKtq1F5@_C5*=f(y$H+ry%vYFf>Yi|6f8QDX#jm@3pb`N&Q
z-pMbbc6qSdgFPPXWq8bkeUwA8X1@mq=m*KwCDiplEPIc5aFpJhuY<>Be!_#3(ocDC
zT6%D__M8Xj#nJA;D-SMsaM6QX9^Cfek~l>a*Y?~HbH9b|vN)s@l(<3)x$40+>DMVY
zJh&;7bSC{B51yXZ{<^Hrd)I?|9^Cif0T=qjgNJhIk387SD}o*~IZ^80XX#Hpc*f*8
z`GTxiOMRrTJ>qg!?Kcm;dk{%o;*AGyJ$T20_vA<Ng9mH*>yV$={7il!#UNkBiSd{^
zS_+F&%%c1dr<!i+zWd37UmpDS;14~@i}+skd@H7CFXGX6&;9p&Ou#0*NGNO47_>>e
zNa{tzhjKn7^CGzy!@c4+*^$DFlwRcWBDWW*yh!auRxh%7(dS`Q8ZXj%;j}0_-f5~`
z(4T6gOXo#;Ic5egGSV~2B(oP;=r#BY+S$Fx;YCg{vbfsZqP|z`Yf)z2)XcOf4=3sJ
zc#+pDZh()V7x}!%@5MxObXhN+&514GMT{J?pcjR_D9mONFN#uHHC4A#F<DdG3k|)5
zOcp0IY3VvI^psdHO3L0i%2ta~ic*>^Ltf{bZ85mP3!@h%FBIk?ad}~;TfDG(VWT@p
zJNbFL`nQjmoNR_$s4MCA!o#L;uNOY)elIR_n}oawd(qj8E@JO^QO=9TUNm7@c`vGZ
zQO%1Aa;}PARFYnqQpF1g-zQY}V&Ur;G1aBiAZwDfyr@m7LyDS|$901Byr|Elfy^6H
z8hKGZyIvHCb#BU~bnv2?7tQG{yl5-ep(Uji+1iUXGB<A1wezAqo7Y$AKJt-@(K<5e
zME*=0uPbG+*u{2zH!r$-(Su1}vM1S#6!Z2L$0R*7FM;ky?=O1?crlPZNG7SQ>LEA8
zi=j-0kz%1D9O=a<FRplT)r-+yjPc^tY|UYD9L~{<^<s_}bH!m_SUZlhjQ3)KI5@qS
zBuAc3ne4?B%2aZi>>a}oTV{AMQzo;#m`yLvRhs9;d@nY&irvF-ffs8j3%yuGSxm0*
zVhKg8@KP_9Nnh^8`qt`8-byB`$knoU4dwAZ%{o!$#Re}nGTBaU`ddbB_F@a=@8>OB
z>D$QZe97KH-%0Kw#X@&`F?pYQkc(+A!+l=tryL*;l7~o9vtAp0#0$4oIqFqEhC1fO
zaW78D-g91@q@N;BlV`}Yq!^*+&Y1JkFHkOeaY-hZy{NTOU72fMT=yc%hiD&ecyZH<
zKVG!xtZt}VUVQQ5ch}h4Ufl8GF6Vvh#S<^?(eINF$cN-3Qq0@Xsyr1ZB`@AHc`ozU
zlo#Ynar{u$c2E~5rZ;T9_2L~xB;Py6evtmri%;~=GEr~AC(i$De)HnH%zt?Clm3hR
zEpuI$*uGZfR>#<QKE(H-m=DE$NZ<o}$nL{TtCG-%L_TEjL3d4`*r&cyq$88~kd%^)
zOyxszN(wS1DT+f~VpG%8$Rw=~o#mrT&rsZ~PYj;XhfG{bW-<$zl@z_%d`LV;BP53p
zIXPD@9}37Zb5rv8ke8B=%rASz#w;kkkPn5W7xAH}bbaU8Z2L7DA4>YLpo{7ye2DQu
zh?dlmqN(>GmL4aQeH~*<`B2)2GCq{`!Qq3G!x~5nY4pKFQAn|6%sw>d?GS}qeXudN
zlN)&NBbTi7`{0)D@xe>?$z<sT_3Rp8Gf0Mf2+Q7|onp)TP{D@_K3w#nq7RjP80o_(
zA1eD$#fKg~@nI&a`cTb>20k?O;ekQD)K*N@eW<~4YWh&ihuU(?`aaZ=Ue||u^q=?t
zy=SO#C#sPTy}s(3%bLbMG@&<@Ni!dg@bAzTKD1=m%7->Sw57KuTh@(jN9jzqC&gNI
z@S&shPClHHcRcIjLs#bA$nLUcr&a0YLvJ4j_#p1X*2f3KL9MuPnYiOzU)J=KmHjE=
zCTRnG>fPZ6$$YR6L!=L-4D(^QOh&L+tk`HD#`v(^haEnQ^<kVikbGF^!+2Is_hANQ
zf)5krypt%C$tmPiAEwFPYgT2Z^tnFFl0KU<$0xp#q`olCV{`uhdd2-8#1q!0Y+$mO
zT;ju0$}(~_x!i{pl$GQvQVdwdYFHzEEoGe#>t!NF7Bw4v*u-QrxkdK==fhU%+bE-R
z8+Q7TF}v=B59O1U#V*Y*A9nk&hrN4!I3(-$QTF?AfO1gg-qh;*pTle(@!=@t7<pXQ
zq@1BS>BH*N>T}_g*wM_-kY~wr<au&OJaxcJK3w*plpm%2xZ=ZAA71+K%7<${+^iXU
zU7Y-Vm@q{XYg2CeaLb1+Gc?&g>u>uo|C9a^Dddh1cj@<Ja$h`yq(AgQe7RVZJ(kH6
z%2V>056>wtWUu%V^lKm9h!cyrN}&|q`tZ(&KR!hH)f4Y~AHH$@Kad~EPvmFv3;C54
z^&iu#AI^XG;fG9q`tVEoZ*l(Q_erBUcw#@2_z{mDpG-iC5#UEc>52TPdQaWRNtvYf
zBaI))WN&gx3O`a(Qpx=KH+@>^nJDS}NKeT?W|X}V9$lH)%tB`M|NGt5?0)3%Bc~s^
z{3yn*+++b#tWq97@=DJ~$xn*k7%fOCL>4BCkVQ##D;?1l_e0}H2_||nM)qp`(9vfM
z_;;3z^&?L9mh}Jo-PJOFl=Y*LAC3Jm_+j*;f*%$AF!@nKt8Gvz*6D{rH<K1pbXond
zNw-rRez+^giY~EkF5!N7xHzvLA-P<iAAWj(49fg{MfJ@?n9YbE<tXK4Z=7FO$&aRQ
z^|kycv{l`emDyE=tV&iRtBW<E)FegaW}{BbQrnL@oL6{VN<Ba7%cOxH4W)}qW$xyV
z*F-GNk7j-xAEtin*4&R4es~Y*$N16Gk5+yR@MEAKt+|wresuDS|J$kud|SEPc7C*%
z-ocOamDC5=*^e%M^k&|b>>+EqQM&u_YKZzw@5yE_G7s+{)Q8@e6b1eK=uaQ;TYbuO
zxgI@;&Eb9wmNi2tL;V;=xz7J3ji8StN0Fn+iv!i=j`d@lALE&b<_te3_%V^qN#s;N
zCR3)6E`Bk88htvs&aaLmrkQ>WIi$X|o8!k^KRSfaF@$-3%=e>A5M_f{;KxEgY6eg%
zfJJ^R_9JxwX#!Z{$5KC@`SIM3WqvI8<BT6?{aE40N<X&yvBR(aF3&1IHu|w<g>E&Q
zB3a|dTIuWjSWn*|ld*N<MDZp+Hgm2mq)7hrV=H}|OcuW?vy+cSto%_wcKNZ}k3CEd
zkb7nCK0o%;eL2;?tq#%;k%!46r0BZ2PIHWY+>aBKfy2}db<&ShvgR};)8Y8%#Gz$V
zuK97Da^8;%l#8V3y5z@Y`W5o3%*9e}<<{Ns<35MF>4#{llOMOG-|^!v{hmw~RM9?Q
z{X@AXk0_7*cp{UhejMaKo?iIzQk-=Ih#$Z!KjPokd}PgQ@{O#2OL<4WCqIbefm`X5
zAD@|gA%FVul_IvrH_CVNhaU}YssB~~C3}BU{`e6UP@ikjq>vFdCHz94Ab|b3b$1`e
zfO$ePQ2>c4NdibgNlGRolapeEsNedO^i*WJGwO2F29Pd*0s#~ZAbkKC0>}|SqN$pU
z0rehPOKr+|je7gFOq?Zi09oW{St;29$W9So$rNQd1Ni$5tXvFplX=Lz0pz3PC;xsk
zw@?5H6s`Ckt}B4T0Tf|Z(E!Q@U<jaC0L25)1W<x`oLD{n-5SHDHUM1!dU`B5g!fJQ
z8mn$MF_mOkDuB|IGNj1onAIn&F#szQ6RD79Sz`&PUy}Vhj*X$6bdb&f8gVJ^06YPB
z8CD{F0r&$5(8cT#N{|c%5T^Y7HIQ<$raYxW02O6&#HLiHSCL880IJcelQm>sXs@nz
zK-^UZhXXhgK-~c91u!mv@d4Bipg{ngw`zt4&`_*!038D8$Qc`xt;A!bG?k+@3!u65
z7L=9&wEJG>?{;V%KpWZHmeMYO_A(KlqIaVABRdDsh0>MmNp=gMJEaFHhE1G5x|j6c
z0ra8wl}XJ%>g!;CHU|VSQ09Xug98{MlQiQs8M^6)1u$GDBLWyHeN+IWrH=_<tn}KC
zOcMf_7{KZP)&ww#`OE-j1u&UDMOID?V4C#llo<h(;+=<QvpFw-`2oz4HFJfpRG$$G
zm@ExoSpW;^i)77W$`bL^^Zt7^5!-M%!xiL8auvDxq*^0>foN?2TbPLEI?8%-LjW5o
zo5;;%&m0^%fURt93t)Eud+6KA9pp}OS3uk$L_OyB2C$FGA#t{$i16aur~~wa<lk-h
zGK2bxa5R8p0elVMTL8xcI1#{&0B#0wl9d+%m^)B?KAsBTv>feB0B5D23*bEc@9!gA
zl=&sfW%5b@S1H%X>!cV{e35f^H|?ze9tH4NJi2b$+vJ@9?ovc@FM#{>2joMUE0wiR
zIL<5bDfx_iPKxng1n^S&{u<G*>2CsfOL-T-N7?(H@<D8|Tk3n!Pi%fBzsQ>VHsyN&
zKLW@cM3x|a2JkC@)IoKd|CTjLg7_0aR1ne3L5hNSLByvgARh$(9Wx2pOcX?7%DBC1
zo|G;m86`QHB8ZffRI=B1UYjO}M#nX2$#kS>rVk<mJtLV(=4~&l?|ZWbktc|}93)#1
z+2v?CC^^YoLFA@<oU5)+K6;TLic<2E1%fC@DMS_~|K8`J7(JF0vlpjmf+!J03|$+9
zo}!aA^_#@H{`<F0;({nC^HP-3K}_X$nhZf0gSZ#O{UA(1C_xMiVo(s~AS^+&4WeBT
z)*!?^wQNDy#Xfqe?{F!`5ri{{ia}Hg!WG1<m-=83*M4Z+bkXz#;g#;A_{l&JyUN9i
z0#O{|Ea4y`lyaoV%Lh?`zNlQRXo|;MIfw>9Gz_9j5LJVy7DV+RYRgAdBZw=9)z@w@
z)nr&Jh~K;)V;xyjH;8)l`Z5uZLew`3qPa{O2hoJyR3^=W7@SLeMz;v!;jrkI%v+JI
z$u_dGaKqU4L39YBM-V-O!0(vXM`Ah#A^w%tN!D}@qKovdlx}2qazGr!|LMfClBLx4
zV$wT^J`@r5rSuD;zf1;*?a%+j4Gv;R5F3No6vWUVh6RypbIgh$h6gc1Z1W&ybC!`o
zOp)`B3Sx8+V}cmVWTMQ+1u<Uw1hKFANA4shlgSa6)gx*ueVVMCPMJZ@B=ZHM=g8hg
zLCg(eUJ&zTvXHVMh^{f}-&ta6>WyA3dzS>UR6Lt5s0&&a#B!N$G(?x060?%cRY9zl
z`I;cs($@u1nfF^>&*lbk2#Grai9ZH|*b>CKAkK?Ch^;{!4&q1<+k$w#L|yvcAhy$Y
zkRsek*+uRSVvo$falm~+?B^m5kOxUI&Y>Xk@sbANN5!sZevCXWYwCWAI!QkzlhZ+*
zk$#r)rBd_-u{X!4>y{>`{$dc9g1F4C8{`%8DtV0*mDm5jrQZzVmdtNc?gVjHCVhtJ
z9*E;Ph-@Kb58)B>pF#Wz;&Bj9f_NIlv!MF>^}0*?=j?qO#5>B1AYM{lk*~=&q*#YC
zm(;!XK8P<e`4GfM`X}-;nbfJ4eGTGU5Z{^nAjgJc#U*yR?CJ-1zr|@kh)f~%wIC{l
z=nztc5aNI6;)T?^hb0anK6?|8AVqP)5E9WJol?&UNmwlElTwm}kerf&OeuR)pVz16
z_-RP7ptO{9A*7c{h7dAJH*zI2hmeKK%1ZX&|JrhdkTZlx2<1Y^#k_C`MZ~<HV{(U3
z?U^<YnU~B*<`1C&r65^|6qN(->WYR?HBMhzJXnji7)L8kYC<RxLJVCz%-9gLbe&A}
zA=sMy`|nH~!;&GClD!ksDrG__8-gJOV+cOxrVx}6Ty(Rnv{5V}SSi1bsQXS#_7EIQ
zoU*c6Qk|Rbk%>2iY&<0VG6{qbq=(3`%&Xd!@*z|Rp+N`@8CE1~l9fWJOsPVOrB@Z3
zNP6`UYDoWkr<7W3)()YL%<G0wk6vFUVznEE@X)L+c}3U$xwdf#P1w~mgjSShva)#y
zE$A)(CVbs&9l|R`+lEP7S=o-#K7^jUEk>shI*Ubw@hFTgA#@enFbrE5-9qRta`Ds)
zp@%3AVPgoJLg*F3;hs^$LKq%G?+}I_*7lJj_YI+62>sa{5W--}KynaS?YH_aYY2TP
zxtaGX7!ktA5N3xkCxlVVMcD+(=n%%pWNZlIq>m3_5brWEF@#ABCx<YdGKHK<P9q2O
zQICfi^qJ%=vO^{{pDRB6VRKao^C?To1*9lg7{Vgyi$ho<z1nQ`rC}MH%R^Wp^OYf-
z*Q@7*)lAmNd@W^N2<s^uWM1}e%;pfbgm5B+lOgOIto<*9-68A=VXLg!7Q%MvJ3`ng
zeV16bhw4_{E0ZH)1nK)J2grjV9HJbSy@mOehofvBBae%Z!g$iSCEocnxg>UR9qnoI
z40$$$bCmPs1@a;(Dj%MXxg5e3u_fzhuZD1&BK%qi*XcLNo8&Fo`#EKaJJRola8LUE
z5FSWRP+R*rgeT(68AjqTo`&!&gpVP73gLMO;+;&LyP6(FwJ*5ZFU65BLh)2>qVD21
zA>8M0;|hPvf_LQm5I#^uZa$}rKUMcRgx_MzH`DspYQBUZ_?7%dekXsBKgnO>DLGUv
z79;!#Au5dMu)6Exg^`dVJboAnq$7;eJO7=Xn&*v95=PQ6V#64|RClYEE?F31d)XXe
zBo8A+7%AmknZrmGM(QxK_tK_em?4a`lyqczSy`!%E+ah?X&$34D~s&SO35b1p`@{>
zy*b0k6-Mqb@`O>8d0tsxFpPZC^HU0l_5b<rbNfO}3X?_19Y3Rrg;6{V4Vz+cZ5So!
zF=QeB9;J@1C#&;!;p6Bf$x>mIrj#K~WLeTc8pAlnd*di<ilvw-7V_!pXnPorFoub(
z8iq3rR~R+Js1=4g3{M!|Fnr=sWYw4cq?vd}Gv2QF!w7`&BS!s0Nld{oA{;72hRL3f
z)DNJ_g;73?3QVeyBCJTM6h>vrvZMdr=T{A*nyjf#sS$?wDw&w2wpiTWxRznG3ZqUK
z74PfovY=iV^(hU)Xe#Gz7)B#{W3q|Nr$D_9vsoC;nY196^ZR#2uWMV2b9fly&e(0j
zXv?m4;tVh6ZBOYyb|gE6(OLFhIH*3@uHk>*(G%W1j2>b1WI?Ym`pe4Rls;kfrSy~e
zI=eDJ`oJ&-g)x}TAz=)qEd2cMb^qxj{fIC|GTa@;s4zx{u^^0vVT=i*%(fWuE!5dz
zj16O47~@$sm7G9MBqxz#JttG9gkc!)Z*NXxGM$`3&J1G~Mbtl<ua?aTW3Ei*g)yH#
z_oU|20sW`@`bA-EVX`=kC6uLMtdsT2!dM>03N}}gtHW4Dxgf72T@%JyCSx9|8+JWi
z$c8XBO5YU5X6YXrmlnPMg|Ss8+bG+^*g@GT^Ic)o2$U4Xd&1Z&c6S(;yJ*gaaW0Jg
zVH{xdU>L_KhseXEC_6$q8pbi1e5w#D@)K;HBu|m2!#G3n9n^~gvAFYLT$Sr^fpU?&
zL|zW#itN>oi@p}d^)PP8<Zc)@>9=HZJB&N@rRmk}bB}(Xd_eyFj_~6!o`i8Yf+G<;
z4da=3GDc7#g6Cnp2*VVC62Z$bUWE}ag7^`LpPGFwo@gB5O&D*(ct;nD_)K|Eejq=R
zpUA{z<9(rgCBKp1Ninauan?`izbL=M_#>032%;nEOF&)zDr<rW5JBz;@<fm@0@r`q
z6cMDPB#Iz0B?&3Il17k>o?Ir=?`TtTv}|PR2+~AQ?16gTP8&fwhUp{76hUTsh6plJ
zM8U7gnk@9J<lnoY{$+MqlY^2of?P6LAB@f$LB0rLBG5*VpLr44TYyq9f<lzSGJnjM
zlA>%DBa26%p_Gs{Q+U5P9h;>h&{JZ`II<)u*1SKzzFInhGBPPkF+^aL$;X6R@iXYI
zml|^f;)aTr2&@s<*z1YF8-bnfAf2R(bd#~X6OLGxFM<FQKlxzSzgOoVn;|kBL4;C{
z6muQ7D-|QC6v2oHMv5aXf+`Voh@fKxRmB0hS=%^*YJ2t7BB;(;YLNBFni15Z)F$hY
zV$8afz1!92SN#YYu-TAoL|)#eu3M7`nzGp}g4PrfHm9^8TSm}|^7p#{ZDdW`2-?xx
zlPmdC^_?Q<9Kirt(<Opl(z`~`jozK?A@iP;;-2W<ls;r%vL7kdr+)<h`zFG`2nNY~
za0El74~<}01j8ek#LtL!^1aHa2u4RRJAye8%xnMe?#*K&7#qPj&Nx1Tsgw!iL~;^2
znVdq3bvW}&-ICMToF2gp%1qfiON^gieGU3Qp1uQ0s^a;YbS38;1w<sx?nGdhZIGPV
zd12<|H{={8qXL2i6-7ZsKt(Vs1{C-yDxgRb5JX7|s7NxBqk-?f=D*)Led^q<uCA`C
zuC5n$W_ATZJ~rfI-p%OBe5}gHds61*0?9Wectz4z^YNMluS@!dq*QYIp9s8_kGBgr
zt0j0x(sx;}<b5?I-)Fi?<_G!sP=d9j5^!`~KGqlD;WwinN&ImEr+CNUwZkW}`)NKt
zlVD>$Hc7BKA6p6}KhMV(1-SR&;1$!C`Pf>(xvQhtk&m7EsFg(RB)-bWu6$g{$5ocl
z-y*y7aU>t#=VMQP@DGx{mb3QeV_!bLk@$e5`wO&vE5Ub?KK5<lgAyFd$JD0b!xH~1
zKO19Ii2RU`zw&WmYxdE69LvY?eEgV?U!}}XlAe<EXGu>;O3Q!A$H@ZRzF6?gbvhqs
zB<HN8eT)C!nf*<6f9F*|f<Gmtd}MSWa4sL`CFeo`|Dpt!B)y!E1NR4F_JfgY`M8yj
zLdl?vUzejd@^Mpwza{-g(tjoWPf|+um|D27oYJsZq+Ak3k|>%)G07<@DP<tR9g-GL
zqJ#vkP6v0?r3z$9OHfAAvPqPZ|ILsB<&&r&nH7_$Btd0Kt4mr%(yB>RlYsL7do5I>
z0N0d2;eRDdqHYpK5@r(hlDIR8mPxcqqTOeq`bmsEn0=3wY#?dFB<?EE&`5&2lV~i#
z=aC>*O_FGuL^C;&bHfrePohNuCnQ0Zq}j>fS(0KA*^L&+#FB_hoG9S@bR@fV5;;k9
zO`=;8xk>c@H`HFP+eTt`^CS?Gwx#_N+*>d@wO+VGf#n?~=p<?9B)UkjAS<xHdx1<+
zf*wiql%Q7uzjqRSB+f73T#QB(iPZv*CV?(#Dv5Lfzg<T$tYwas#6NF^`zK*bz9Xqy
zAmb(BOPnd-^p&7r60e>JZcUG!2oFeNU=o9p7%YcIN;*W+p^^@hl)}T47*T+=v*A$^
zkCt?dq+=x=Cn@ExR?eM}#Ka`NOkryZlaiR6#90l$YM7G5)Fc!Ys)}hz+@C~Jfui7n
zBpyuS`y_ryVtNuYl6XIfHA&1&;-Ms-PU4v)W+gE@39EO`!XzF}VonkZsM!wBWdbDe
zXcCVl(f!WId`TaXL+r9q=608q?eQd@kbsi6`A<r<)clkLizHo~M4f2vib6ThCb1-m
zl}W5h;<+T2Cb9PG@QX<-lb~AV+~*}&E~(v7)VLUaA&J*J<q%MEMG`N`A#&J#If+-2
zcrA$o9mV91;;&ZGSCd%WQLLAk%-7}68<M^$>06S%oy2MhDD#d4?<Vn{1Um{v$owFQ
z50lu*!kYxuu1(^jBtB*sTSwL<v0j4zagXRr$tal{lK6ysl*HB~K27qEQ`nru=SlvW
znb;`lrX+tiOf>5xdUg^6JBcrt#+}5PPGSo;tCLtFnF}lBY)j(V4<g%>*ui5mH_~HX
zWMJ{|u1<pZTqm(BiQP%;O=4dX>{_?Nd#JXv_*zne#+}7CN$gMJ5G&h>XyXz&-?AE%
z$T^V2cM{xY9+a4Tb`K|UBnfhEH;Nri;ux!nf<_9CC-Gwv*OIuN#7{~5oW!3DND?QK
z_=S0x#IH%5Ork?)aXN`J5}Zo%H&O&SAAXlzw2~OnAl5E7=eHz&PvQ?2fm+d@Z{^MC
zEFM1?UeQ@FD;D1!nNd1=E{V&GVP|ok8CyDfLDGwo+MRPQ6@bH?#g!y~yh2=+ltVX?
zxS2$G1r-$h&4ZjoNd=`8{F}soN!&`Jkiwt25LLQ}gKvbhx`;kq#AkJ*+?T=%iYWNK
zg2<~NiYh3kfPf7O?kK>;6_hBzgS&{*3QGPME~B8Vf?nY$eJRHi*D~kDE<vKs>>`LO
zDyXEOmV(*}Dl6FBMO0N#jgjmkswlYDMUYcnK@9~pC9`~2L1t4)3BD;W>L{qIpuU0z
z3hK!zcPjjzDZdpPNOJnDt^s|qt7s@SQ1ho<#q0c3rh<rqsDj2yaIEf8&_qE~1<e$M
z6l4*170sndEfgH;DlT*tq-DAV+Op+BVFg?33I5Mr>ZEW?L7eU@5DF3sS}J(t&fI?8
zL@NcY6+ApAoU4G_m!kw*_G-Cs{+h^7#ly_ZHVS{8QgrPm+A3(rSSjeO;9eyt0^Jp)
zzY7zzSI|LnI!a1TCkZ-B+C|c?l6I4nxzR&GPX#l(iRIk{4-1bEvuj;9(MLhPf*+2C
zs$Yp*T^gogssc^Hj|zTLpeslzSf*e(msVgXm_+jwm<lWfV;GsW5nF+yV5ov&3S0#q
zw;&WAtl;$@BEEueyNNcXMMieX>8qfh#Qh660~8FDc#x!HuZJnt@qA>6)U&c-c({TQ
z3PveGF=4r2Y@H+VkqVwFB}PmNGo+&xoa-hC#wr-c%=tX~J_X|yOrVCAF=k!)?xOn6
z?1?f18Nf)LoGA*XDww5Uwt{K&qPuuN!Gj9!SMb=e5KnjeYB|%nHH?_tj`xS;&A!!|
zln3x3F4rm8pl5pIJgi`jf@c&wt6;8zc?uq-1_cb}e5Ucskw+vZAg5P%u|PV-{C`@(
z;}SDgPe`y(!IK4?rzBX!43S{$@fgJhb{8|dizN(K@$hrfm$KL5cJpA%mMS>BI*TSf
zuiym*pDOrF!HWu3D0o-FdkS7su#(|b@P>j_3SL(5n!>LMh*uO)`Kyu=Y`zj@BUs;E
z?CUNF-c<0Gg0~g0oUT3)Ud_4VBJao`pX)9bjfg}G<&^9p-dC_j!AA-{R`7v>4;8Fa
zu%0U-Ovj%e9bT(o$Lnzh|E?aQLyw@0|4%`thiKF@XM=(hzeYacN#`YOba-YD@j?$V
z_0jl71)CJ?Qm|X$uf|0;EBHde76qU481@iHdx&d2#FspD)U049r}q@w6l_<J>?t-i
zip6@0kv+wRQ`tunIZTPKxNF6uY>O{O_9*yT!G0#Eg1rh@*1nO`KYTR4k7;%@*k~pp
ztMPZ-(4OL$9Az3GP;e>{JID$^*Ln)J!x9`(@Vx{-NP4tj^qpRb<5K_Dp5jDL@iRSD
zP*FuC6~8Drso;Wwi!7vPBc~LcRq(5V)7-w&IcHdedkTiS%cUsy_cs}VzbGl=|A&G<
z72H!dmKYPM-Ag2TiDWNvPC;(@-17>C_Y!k^iAxGDvr4Nds^SXExPpJEQ>M)|F40Te
zpsHTtx)NLjna?+Q37}uSf}maP6~v88|EJ)Vf<kI=rDmp8=`CJvn)_V&SYegVVqt<}
zDxjjYiZUwLy+cI_6(v>hGErPbthZ2mi&84a_7<=A7GLxh3wjIUvMP8%p^@cPlvDZV
zU2&qf_@{Spm8qZxcUHXHsZ73#h>EC+sw%3fxJN}371dSLP*GP!J!wNt6}8nMR-N`l
zYN>c{Y~(;BQit+=M68cc`-nSL)K_tribitL1}ff3#2Ts?(I;4rczz#ow{(!TrLhFO
zGa;tS+?S>*nyF|m=kf~01a6^%S<1N~HK@jHS#<fwaJKA*Rj}HS8B-BgAyl+gkx;=3
z-%>>@&b=eS{cWuxM@1VIdEB5%g8BSvACW6p+0;kGE989NM;zOheW6phor-%^bW+io
zqn}3FtDp-V)WAaC?a+*lDmaCJHN1<8d=*I*x0*(}s_3SI``BI59+LKyw3nnD>McPZ
z6<7NNJI;d8r;uR6Gov&Wx{6{Npdm%qRJ^R>6%~dGQ^i~r^SDzgY!#zbj8WmJaMd8M
zhN|#X_$mg<ZbrqZ7sLHk3{cTm4erqT5p2t@k}pVE9vS3r%M*<4AQgkv;C|IT6ds}m
zw|~?Y%Ma)<6~nn@Dn?43qa^Juhi(guRWVM*11cU=ai5I#Bo&iYj8`#1F3OAYL>0`d
z!TEx8M!uM$Vk&R`RS>fR@CZDYFYcFH$?f~NWzKXCsd!ioZdYci!M(~XIr@;?CYHYQ
z*CMl3zU2rKo1YNiE#(|3yf0tO=hoi}Kc!-kibqsDDh=j+#bYWKsCZoJSt#ifGM$(|
zf8~oOd5)6e(cR(xrK5{gJgo+|A}^_UhAvQyTQDxNga=K<G8M~JER`N{vv|08YMLYk
z6NY!ZFL%pf4SYexi_C$f=${lTBp`kuDV8L~N~w93$_I+z?(0={lVXR8ohn}A7N~eb
z#hWVDtN5Raw^Y1MH<=_$!>d)^42ySp(4?pD$WZXA^gc&Bi^_`lfSIZCc2uzOX(FNo
zS4qZpt%`Nrk&c4bDbkNre9XL6v6&gD;u94c8KQ#rnFKt)JjJ&UGCAyiuHp+7TUBgR
z!N@;eBD_V#m(0m{lv~hK33h=8ff>aZZl}#va|pgtu}j5oDt=e7Tg4s~Kd3mW;%gOq
zRUDuTD)y=PMh!0g->KNIVu&KXm3cc`32ru6>lj$3E05J76^B(EQSrUXpNAFgKM1jg
z(2N%qp=n_z5~F=g#c}$jh%+jFl;8vlzKWkz{4BfmDha28pukDlJ*DEb1P|29J)nq-
ziny;-FnU%p34Ud{t0bza;tv&ns<^J=hTOrwR9s@TRh;8_QE@@qOoK1VYRq%TYC{*U
zsNhwV{Hv7gB;rjX*JJ_V$>Jfpsp4-Hg*7};KJpK1DXWKyLRzqi+|&P9qF>HpOQ<5L
zifYRfwM3jZ9z`_#bv#^D3pDd)i52V)4aGH#&@fU%2@NGR+@qn1hEf_zYiOtiIY!|!
z8Y*dlPU5lzQbT!3D@aOyMU7P@5U#ADiiWBhs>vxev>*+5p|4JUzIa3xZ>XZChFWs8
zwuV{XMQA6L*O8pMlGc;-PD$%a+CU5LmncS)?$Xdm!!uup@0Rq$;z(mHI2YtJ)zC~s
zR}I}XG}q8VLu(B=8bTVfG(>5PhBIYE;nF$T8p0X~B65`A3soFd1&<61bzDP2LrV?U
zRM9GMCnz{9JDL30^#ze!4Q;fba(2*=r$G>x&f&$qEmv%s+fGA76W2@U48ESn?!6k?
zOMbp4*zKsHlNJ<>&XRV~_!?6T)x<na5OmkjLxZis(a=*vFAbUoT|;jTeKaUq@J#WV
zCh|2Txp%twQWGb&;KVi1g{q;WF4%aN<?AA)!O&o8AWmzTt_Ms@c5l-qlH+RdH1yNZ
zpF=XEcvq0oaByCDcAK2OT=AVSZ&O(Tc*!21VW5UV8a~v;H@e_`&R`8gGz_JZisGU!
zhG}@LYM2Fz7lqO(F<b-h9tlP<Jv1!T@T7(@8pdj%7mvy98>is`4G(I#PYdeRcu6Nn
z%I-uBlM3);z6Fwas-)8j`1ecDC?%$An4w{=hIvd&4G(E}Si?&xac@e@(lDFMl*q^~
z>n-sd4FqhTro?;=k7#&Q!|saW-)-5<2i7I#EpMW@xeH_xJ}xPf@CgZc(4Nw;NW&Kz
zwrE(a;b{%8Yj}fxX?Rw{3a-w~)bN~!Wg3=iSjxci!MuC$isSo~C{Z!;yoMJvyr`jU
zTJX-CH>;OYg7@dIU(5TVY3@o5t2DgIG^-$9*6@mkdn*c3cKIxyl@91@8oEnBCZEOL
z<nHj~YIuurz8-#C($$i_BPp5hO7Nbf?@PKy!v_VUe3)7%@kR}sG_05Se+8o-Y52GR
zZ;;><Nk5hJGYvc=T!L-0<a{paz;s~S^fWUTTQ%(0@U4bz8n$crTEkuqJ2de5>njbr
zwBT86r-q8%bNCdtTXxCWqXkcA1WVF_bYB6V0^by14t=NLfQI85eq^XM{4XsIYdE6e
z5XI7hjjzkT*YJaeW3o};s2r+bh>LQR0u=j6!_OK{OARM9{G#EchEqJqhUj4k3J)^G
zOymC)E;Ga#21-sO^EVB@Q>V@^GvW^oe=<XKTz)e2mxgmZ(K>V;=QUiQ**a?IxTxWh
zh9WwOQcS}Y4gYHRj|MCbU1iaJKYWvgNOsA&F2M~AZ$1#KxHfz3^u*s>x@znn4HasK
zYtISY(ojf8!>jRUi-wop8!fD3cByFHnUQ*PBkQlm+tv#g(@{!CX&ry=3`55qIx7iE
z=)oTsa(>A!sbj{z@btezAJq)+x)MJ(B~(U7MIDuNl-0p*IY|l1>!?tGhph@#)=@>r
zJ$Hwz>8Pq>!1tlp!tmqMV~elEPu7mA3&Z`lhidAmrK7cu938cF)X@>rk)@-qj(R%o
z*3nqUqthbwZiV-D4&SMxzK#Yuh#Ts-OM>(3BJ4JjnBeI7P}Y>hJvy4`XsYAhPeUcv
zgqygLzMCV>bTrqY9L%2hXow%yYN3O)d984^ju*CtB08cv!V<T7EYyEfI7az0;kb@o
z<05nQ$a+H%By_ZtoK}*Ov(FH@I@)k89qo1G=@2@qZ3@5laHy>gZpYz`;dVMkJrp87
zwjyMnj(5;mnbAc@R~?;nbY|QZMJzY`;=0KGDIu+A<oTtcZaT_c$X0Zy5_H!ws8+a#
zj-ImHOHvB-*3qW`=Sz^(v2jI+LvzbzT`C=B1ZHmwrF5iqJfUNu4nv2jV~UQcIxHQw
zj=?&H=x}uW`bWgqk<qc{TG*A;({W~G-i)V1eRcHH(XCE+ppO3BsRQ8wI<9?~O%OdE
zIebT?#f9uaQh+jCbf}JDI_}dkUdM1|g&{^VZPsQp0wZ+1^m&wSvO7x0XvrrYqhqYZ
z<0PH6D#VPPAa`~W&qbxIiR70FGGX5@alcq}GV``n<j=y<X*%xL@d#5z#{)VZE)t%r
zW1fx&$=n!bFsCzzrOh)XrOglNm{ovhb4mf8BLVlW=c<r%D>7e4?tsYrd%~n^sz+x2
z9DYp40?HRJ{J0K^mFg5OX$pcTbv&ixEgf&`SfpdIj#WBd*73BCXLP)%qme0w)($_b
z<2fBmbu5v_k8c~<FeYyqlc8>yr;lM=E-|~$OYnk@#|~z*yMlT;M=I6|zocU&<4`Ni
zHm7Zrnf8i~*QxXA5R?B^9bY~gdQGP8Jw?NB=y+2H#Tb*J>mxK^wT^dmY|!xuYr^Je
zUZKdlbVSGdI(~UL6uDevtpsZ%{XplHJ>av6>9KV>uGR{#XJwF}&pqLfB=}fT4mCU<
z{#3_jIyUoM@6O(+W6Ouxn|KnJg_v4jo{SiUBK_9}=kar%qX%Q0!ZNr;7Q-(k-74ue
z9or?~=ne^X>i9~6T?PEzI`&BXwWNC`-6!dltx-<=mSv}5c;j=CFH-nU#{nG&bsW;M
zDHZS!>o~%LV2Uy+e6QmN9lx_U>p03_HjMqO<Ajc5I*#*P+#UH*$4@$1jA~W3dpOS&
z<osDR_6u{PQTSJScRst*`RtP{9rbcf={PL`@fjUw3osX=*l#>L=d%g^)bSU~Yzie(
zILG3z<ED<kbzETa=dsdpUB|B0kxNp3QKRT(*}cMYaX$O1#2lS9IDA9LL{re6oB82q
z3P+xj_#Yj&bQF?q{;T6Z83)SHhQg`9fbFHi>=sD{mKRN-m}K@U8RZaCxI=cM`C)e7
zHbu!4z8w@UokFP;yke1G#zqR44wF;)l}OnX%B4^~g$gNrnnJQxZp9QTrI1P?oeE-G
zIfZx%35l!Fo)oI3P(6hjDcqGpBWYpH6z-IuRtmKxs3Ya;Nm^GLLse|FnXP^b4Wt-3
z4O7rc1b*F}LgN%#q!5xr_oUEFf+kW)Q%PTWFG9)Y5)&NzCzK^+s52s&*(ro2*io=t
zRCZ%2T)ZpFDJ^AJNZLwLGFwX}Ig;i|+C~oLrSOZ?(>8^6l5=kgJtSzKLWdMOrqC&c
zt_6CyO`TJq*R-cgDtI)e@@{gpdx6aOyJ9_4=p|)(r=UvECxv_lKZP<%gmV=seCOMt
zTXJ<x%Cs*M)l>Y0K%mp0K#I4%cqj!c1v`bYa*C6JE5UGXv;-8+NZ?DuXkp(J`f*1j
zlWPr5VL%E4Q`pxkh|i#cS#>NiB!!_Vd?~%)&@ed^w}O2fA+?Q^hK-VRv>Y9i0ykw_
zZlG#h3iqWjK7|P>OibZHDK<$?oRY%S6ei0l%y|m4O-tc^$@x+Xd}Mn-b{AF(PnUCP
z{0zwn4o(WQC4MV~hf|m%1)fe}u4FzbyYu8)^HX?4G9OK00XHRu$7GlK8Qv#SSeQb~
z(!q-7yZzs~4DwTQ?xIw1^cEM$pC}Q2CWU8HSdzkXDXdE2<rJ36wO&kNMGDJOST2R1
zm-K}cdRsxxQ~3x>u+$K+`;r`8nZmm-1e{l-hBs1pGlf@EcukHnhObLNf%!7#w3BmJ
zS>kQUU!B4`lJjl~Yf|_?;`dT`UygF!V-3O|rm$A>KTcs?3hU+2N0R<eQifuqRL)hH
zT^l6x6G;zA{>;6x&p5GDcq22RLG(bo$Y#c*MEG+_2`*TI^?3{RJQta8I=U@|?Oe;i
zdILLB*vW!mppJpBQrMNk;53G$u{(u5JmzU+rSWwNdsDcU!gXd~3g4t~I)yVS>}SbJ
z;V9FIl|O|8%#FfXhf~<HIs0G=hgfod&9e?=m$60fdi-N(^aw8jDg2N^k=oJz6?6CQ
zk1XgNCO)3Rk13qsK~CYP6n;)YT!|O|Ih&)OY>q6hnwwddJ>QC-Org0gPBB*dvnTBh
zeU5NXTbxbdS1y#o`4oOj;rA5&Na0Ub(esgtg|o_)j*=cNl(qRl=r5-F#R&O(l<)<X
z8V2xm=yD2|Qg~p0q+;s`b<)n-|AooFB1f;LaCmQw-5WgA)R{)<bfEcfT6j8CG>v~!
z_?JOWfp!*2qjKf=trQBSgDx>!Vae>@wir1aDwYP)xFa1*FOkOZdePz%vrAl3VuF#j
zD3j)sDe9-uAdPZqlux5p8nx4?kVeHcs;9B-&-f#@s6_o~R7vBtC&J{g5mZfsL&Vi2
z|2D3XMol@3Q#e#d%G8wt)WB9x;yVkbP*1}&?n>jHG@7KrS>!a5l6R*;%~ac1Qch_q
zLGv_Pq|vOvHm-7e)@>uR(+H=LpGGo`NE*>JI;7DtjaVA-G!EB{i8K=FU@vmh81-|6
zpr!1#N~5&|<m5;&v2UVH8hL5_|L74=L)$dkNkDvW8to;1uX&i=PHA*z=n7}`lFGYC
z+C9w|>EW(vbd!yXGEaKQA>y8CuuIT89i&PhNeN!Fg^~u-FO^0*4OL?1xt4~WMh`1K
z%!+@zsL0d@LPi>H8eSU2W*U|R#C95v#7xCt=yb?WqkkF$D03(~BWd3>`blthVu;Lv
za`kVu$e=X7u;SBdMM*hvXd1&9@HDnFozfVQ#<OWGNn<3vNaN8oIDK>)W73$G#{FsV
zD2-(z{TH5;#<(=@OJlrbPDo>78hs0A@!U~{0&MJ(PEKPAt>vcM@!Na~JdnnN>ENW#
zOJjN(Gt!uq#_TjMmWs}l{D&kRe>y}C#U7U3Icdz5fJ`2I($8(d(fM*BWgd~EWImS0
zf;1ja<B2pDrLj1Tg><cO)>D!`DJi>DQoe4$e>#n4(zwkhli)UfE{&yWtV?5k8q3mH
zp2pj0tWKlkm)Xy!u~LE;BqirX305#xwW2RE&JAK@u9D1`(|9F~R|_QH;Bk=n^#Ts_
z<V~45Z%GdGigUTS@5qh*AdPp^cu(T@(^w<Hw$mXBFyN#grg1wN*2>)>hY9vSR+2P6
zP2(e(W8{1+!3IgMAI<(up2{y6v@|wK<|ZcXZDBb?86I0s{8FCK%4uws$CH4YcxzQ;
zM;bfRxSqz1G`>n>R~kR3af0=q_M~wnjqh3i)7Z-`sG9p-8v7(5-k-+nR{R^LL4`QG
zY~RWuG7qG2P~t;8fCcimM=AV68b{OkQKr)|X0H`ziZ*W@IW94ePrWPgpJ?RiATp%C
zq;WEh^J!d2<5U_A&xFn}tJ650#&7>*vpZ>e_*ddI{!HU9SyY$5k^Or*xJ>*ZDZ$I%
zWS^4(sl74qnqgr~@|uM&rg1fmp%+8MmsnDog)d8bMN;zFu1U;m$IUeUPNRf@k_P@s
z<KHxj8MsSCzj-+FUmArCFxxNHjowP5kbzq*!o<M^&H(Ebhl(0OUJ=6xu8eGV$mzw6
z;KIaiDFdYqR5Eb(bm*8BFJqv*0S2M00e0ESQSGV-K?Nf?j1`R_O1A^WDV62KDh8@@
zRO0HA){ykXzhTPMl(?1wUVPcDYoMMHynuSkz?}x_8yI9@uz>~!8XD+kpgS!z(8xe*
z133onHqh8W$Uv5Xdki!&(9FQjCnJ|0h;Nu3x_%_m)WFdd;f`O0n@c{2TF`h~5Kti7
zK+Hhg;D2%thYdswL=D`uMUBgm$hJ_a!7*n+D8W_iFmX!*?6S3zp#1evu7NfNxJn19
zA<w|Q5(r7Dv#kW}46IxcW|ytKloxr$IvVICM>|W}rGVd6f`N!oZ4Uz{%0*HJ(gu1O
z=p}vWZ6Iktk+_e6d<p0djii3nfG%fgQf*e594<}w=`0O44EP2z222B%0lUBvm%zZP
z?O}TN+s3$OU|lRid3O6sJp&}|CvEF5-Jx14=ZXUj&>eyy28J4V$iOTE!wd{JFp~*$
zJv73=NCOiLygeg4O4>%J#u^wc@ff;uDO}wVJBvof6^z~|!FX<2(Flbn8kl5YGV}K1
z?E9r2f+?~)l{qW{m6Q2^fd}Q>=~9fE8O9kBQ_nXGLbP+XfrkyeXkdkbIR@q$SYY6B
z1M>=&dsJ$eZ-DZT7&tgM#<`ElQF5sB2?GlaJZ<0^Dfy&<rzD^ZCD|59uvofJFP@d%
zr3RKUj1oU5DYa2}xwQWU$$4Hzm^PEog(&cn0dC)`lCG4L-Bku&miQG(nXY8MRxtXy
z1aBC4Qv$}2qi@S&wc0=#UILip2P5zD5S5R;XW)GUYj_Z<ML#g`p@CM8AYN;r&&jaj
zh+Z9{HOt4AE)D<Bz(<UdiTNfzHn71!5fepCd}82Jo+$&z4SZ%`qk*q^oDFO;u-U+N
z-qQ0FZ;RehC;qvCFIZa~v4y3nczmmYQ6=MFGMJ92mXp|KVBn0z>KO^rUUlLpc0_mb
z5rARY5pB3Ly34?B9)TH&JqCI|ScII|jKmw;qWic_1`ZoIVqm|4Z@FIv4jFjW5r=EX
zzoSWxIACC(BiR0`9q+IsdVNQ<d5QP|Gyc7S9}Fz26F+Kz=0#$;9GZdnmez^$X8cD3
zKN+}S;G%(_X@-H*2F@^0*;u<V`ip^+22L4Blnmsb*%mGFU=g}=*1)d@{xt9xHP?#&
zX5bG4J&MJZlJVbJ26Ga0c4Z53t4^H4Z`F>Uqj0S_+j%2U+xGdaO9n0*xWPR#aK*q?
z1J{@p3|;Mb>3Z?Aj`#xcB5vSai@Nb++oBA@->m-z{xwj`759G?{m%d$+`2tl$P7Yy
zt01t2O-$bzWozw<VkTgsv59+3++m`)iJB&AnJ8hRq=^b9Dw-%|qO^%}Cd!*AW8&P}
zc+JA`I(f0ktyozTq>G!2DZ8R43diRRj4$3Btz@FIi7F<lny?GS|0)z;`gN4@-Cfb&
z6;oYN%|vw*HB2mU#fr6YHiFtF>X>L?qM?bpChD2E(?op}FYbxPcSS$h9d%Y_aiLdT
z(S2|9lV;*B6YMrJaW_qB6WiZRWEF~k>WVsh1528iXlkODiQXm-xT2Yf6*EJvOf)yq
z!bHeKmWg4dqHz=1CdMrcM@(FH1wmMLmCf13W=5hWVkXLZV$SC5WmR$$Chlt!U62!P
zNy~GhoZi|*j)`0oZA^4A(bYtr31OnWi6-yI+M2jpG2BklMs4C*SHky7OlDJ0bdWL~
zB_*emiOv#t@&xC0leoKy9#nfJOb%O5I<>Y)hc@wfH{$FLoe=3`qQ8j&Ch|=rO(-T*
z6Bfg6LNlS8SoS{O5}?Cp;r0K;Qzj;5MbnZJ7!qVWG0hX~QqnQe*Thm!xF$|42@!a*
z>zl|(Kn^AQnRvZy%smk&9cW?@y}lZK*u-EHLrmOn;sFyw8D0|;OunDQa1$d;j5?k@
z&cwXq*&~T%xA*bvwVoJlVxK3*NDgJjO7OcU?lbxMglx);m*5UxOfoUq#Hv%-Q>4ta
z6_JL%pv+XsB!8NeBzTY+Zeo^PZiZyeG;yylX1fWFa>_#{d^vY^!CV^F?Mifx3DUVH
zcD@~=Q;(Q<lxb$-X%q2Fg&s45dy>bw`x1O~K6~}F;5%GTm{=$|#7~;wM*^ObbP@NC
zSMUXqp2rG3W8yi+(8T_8p=X(y^}|be=!S&}mdUxRUk$$Tv786znb7l+z91>PFPDwH
zWMZX>Kl|aYepqGVWfQv`>~`>qiC1}QY&5j-8ux|yU}1oTH%z?A9I*I<y+z(K@iv3N
zV`5^piFZtFHu1TM(SL{EHSxZQH74GZU2@9sGhJiCAJC)G@sCY>Xkx92b<FT;;g2L;
zPiwgmzL>B-J~kXBSm+CmZr~-r#HS|OHV<>|MiZaWfQ~uW+vF4(9^NDszCq#9@h?nl
zF>%zyF%w^!*lOZC9#RwAOl&vtwTZo)*e+*>iLdA;_kxvVYM7kur4yvPP3&QfYLm0*
znaHfRIawEr9&4M!wvP(i=6oaN3HF=#mX`O-+2RXIwyzjHXyUjpsNskNhZvCJ(ZeQg
z_~Pl_5l;EuM76d#KbZW#R5=v0wnmPde2a^dCVu4h_00Ln#LqHNCn$NTD7~X=3>w`(
zW#Wv9vnC$u5I-#gRW&0fo(}(N;x`k&n+Sg%IbAyOhsiH%=QI^Le@ehlM^8vZ!x?ej
z#0BPqg(em*nz+PDYoV-#%O<Xv_|L>GmJS-mykhx!B~ol|r2VMyx~2(ymwm&;O%s1h
z{y!%EHPP&$*h7_~6#JxoPOpq0C}g3q1z5Pl0{tptp_qla8L=ZPT2yj|WCXh$;_er>
zuysMAlm+4vl9rToRYp|YlU>?E{mFS>WJEa&<t@bein}aSuu##$mi3YP7Aje&Y@wQk
zmS4r0PE{-%&4{WN7RoM}H#4HTg&G!WTF}3WbChB?cgAa3Agyhojs(PYE!30vPDyDk
znRm~QHL%do0s&jizM_$Z?-8LTcUx#|A=y`q=qncV6+^n`G^H69T3Kjjp}B<?7T)SB
zvMq!q2wBLokl7j8-d9w=6pmOp*;m9Z{8}t4O4lqL+aA{DB*;AbaDvQ)h52&=(Aq+d
zh3*#G91Z7^T4-;fgM~Z`!a`dM?JN}OC%D(yC&CT;iF+;ZBk@!7b4c0R^b;K|bh6OR
z!nl5c`<-Pdx>_LaBB{|&FjnQ)XH($Gexiqko)&sp@Dd`QVL27<EomPMAM_LK?(Qd&
z78DEryBPaJa#RZ?`UgWg_qtqG%7S?zTyt|MZNXshH-}6~2`mY03yuVC0pGLWOPrCk
zZvnrbg~NrLapFJ=gDiY(VS|Oi7KT`O(!x^~hFW}r#)B57TNrL(goTL~CRrG1VU&fj
z^xDE_wc?MIj1R6AA8p~D{$h-zqQBU;GkPBlE*gKJR(!mL2~@i?xcalTYbGXJm}236
z3lCT<8u3;;qf;%M-Wi={;jZmbwldp;8%5p%y;3|rw{>EMg_+D=3y)fO$igfObEw?H
zY{sf&aQnwwKHhOXOy5^#@g}oqNZ9q_`8%WYEbQ44oo``5-FVrZ(Z>i_SGPqUrz6GU
z&uotlL;TjxC=Gamxh<RCU(k_778YB0)xv8Qp0@Ceh3752VBuK{ODrt2u-w9P6xbQ%
zO(SnaY5Y<Pm$pZT_7}8adVj%Hc>npLg%uWFvapgG`itL+$G<KX=e;ZMRCznMscw9g
zg_kY7!bF{sxE&wf7{5*<Ev#WySa_33Zs8pZ?^<}<!efnN|LZU4@@gihE7-c!jVFr6
zugJT{_vmkb@jlN;-8jLA7S=MCEPP~Pos?ftELfV$t+&7saYgPFw~05R(`F<-vGA#d
zYZk6^XD$9|0EaCcv9QU)W(zwk?6mN?#g~NGV&O}k7kNj=8$#;YYGE4#A~EkIYg8<<
zori00l=pI^Us>2?VV{L>=uvaAsYrY`O||f~g%f*%#Mo=$On=d}Xq-2M?C!TvcUSZ~
zriTSGzvaZ;(KEXPRR^hISM(5TlwAFbT~T(wxA237UwHOesd(fq{7lUj{{A(3pt*SH
z*XVHzKU(-n>N)>)v__#gDJ_4cnV`&n{lzI}poQNp{6R~&XyN#;7ASC*sj@f9R&{_F
zT_paS1yWl0r-i>*=eg+?&RMv(Nc_Bo3$#kQQ$3bTnInY)$;)!lD;BOYKD(oIpUnAr
zvFlRu2CE_quZ>DJ{<iRsg_1T(+4$GOf2{U4?yzyoLLnPPZ8Y5zEo=u#UPRI!YXkkw
z2MFGr7o%8(B28~cubC)r2LWWbxMB$#Z%R<wMj0w;F3L;V^6O|>8w|yqBJpxI+71u|
zTMET1*hmi$qXvk|HmcaDWuvx@sy5#X1@_mp@xj{ormupqSGVC6jn|Nr+q7;^5Yjqa
z+QywW>f1pA)U(m4Q2f_sg6q;qa%eMcqx@Yq8re8t<DktqGiYpMnvMHy++(8&ZLnd`
zP8-c^bg|LZ=HF=0!bUqA_u2^A$g+{J(b7h?j0V-lBnaDx6mX&vR0+r85>);;w4y_-
zmBhk^eImwLtz|dIMy>>HB+ZkQqpU3t4-jo_TyGyM`d+-fjSlq4MrRvCL$R~(#yi@`
z$&D==Al@1vs+Ed$EgGBCA*O|5-RP{1J~r}g^sv#>MlTz^ZCq@d*o_#q4Qdf9vN`_W
z%drgqM@^r2(uQI~wW0AoaB6(ulGwpeqSW$Ow{9^b7Mt*FOt+D;ajIx+YKhoPFJaoS
zYz($BgpSZ!8+~o`v*B_(Z1^@ZHkNLWm3TIG*S9e{9{Z?dtkb|awUN``#sC`wZ4BaO
zwMZO{#I`n1oIvbCiCE(|<E10HbZw}OVK&CuxX;FL8zXFtu`$+0bZ~t7x!4n3V<T;h
zvN77mL<C`E+cH4VquKRxe)%rczD;brjR`iU*qBNg?(duNN!0L8yif7i=2NjHtK*Zo
zmEiy!8Xztdi?N*_6o0_RgEn5b@rI4*HfGQZ8_R6WwDFLQMK%`Om}O(Oji;FNhhh)g
zm}6t14H`e!#$BPnn3j!W-;Ybolim4}K4Rlh2`KQGjRghxaS5K_^Z|lHPs)A&D>qO=
zg-8Bu&767K#xpjawefo>wjnFF4zVRRl7r$#vDkAqCjA@;mmDaT+j!o_N*k+eykO%+
z8!K$Q#JwmL`)yH-^0z{<8d<UN@5bv56m2@hUbgWH&lI<tN9=s8MXA`eTRAtr3$Zc&
z)X7-AY2z&$8*OZ|@wScCHvVVhBOCA7c$X*9#)sVfTR9Yd&&K3ZvG;APv2mh9FrBSU
z$5`uuqC&CQTJn3x*V$OlMeodgX?!AopkVMnwz0v+C#*TkgPbfEij`@X@CU~~Wv*_D
ze#Ug&9;hPSY~ynqJ8bN<@r8{oHomm6m034XOc*F0S{>*1F`17wPdu?Gw#~+N8OcWm
zisuK4uWanH@wJV;Hg?<iG!!d+HrQ@jvWGd=DVITRuq{ry&&D@gqC@U}8{gXajy?_)
zUk()95rV@K9I|nk+2~-bgCjP+XQDb7?%)R-M{R_i;1TbbjpH`zIH>F3M;kxc_=iQ+
z#?K6njY~Ez+xW%CNgHQuoaM2yu`Va)+iRiIHs(DZ{(Yc$DJNcHkf=XM{K_LgNL;Y-
z8*ADi@w=o1e@O7BjlT*w=WLuWz*IsF7a7=vk<1`*#l}_E5a#Vq5%RCuXwW#q<)~Rv
za&FjsSq*ln_HWj}L4u9=KW4a%3JxkdDCFR|L87RGVoor(u!ABJ5dUwGfP*_6ly`#V
zz8xek4HCs2lyCx7C7s}{H9;xaEiEa#Wh5voX*o$N4i>b5LzNs<c2L7XO$Sw+z~-tB
zs!3p}MXEc<9xVDuVcJhjXKP7gYC9M<Sj-+QXcgV8=ip8UjUC+M;8@*AeM#@4q=SYM
ze_CIxps<5RvU|6rlpI}7G;z>WcAGo6&8KiP2eER30xcYb<Y<-y3NL&#mR&IS%snFF
zAWBIGaR<E|^mdSN(9%Ii2b~<g7e#9aZ5_08kmDfNL7szagT=<dqQ<w`ZTLuDF2Z(n
zupm>&p{hef_7HKegZ2(OP~i~Kk$*JkAVv%k|6YpB86u4A+|CZVG1L-wanRKPnQTuy
z8R_nT8vgE;)5Aee2b+cnw&%-7`#8vV;5zUeBpoOYOb3<&)q%z-Lq&=iK1ApaC`>)q
zh6r}k4!Ecx1t=368rWbvaCi!a3T0@Zc^2tV;XBAU80=t(gT4;>N%ICux_+qW?_hw$
z{D%%S`>B?K9u1P5&RMw?vU7(zxG+>){VGiS?NC7jc(RxbBOHu$Fv>ya&5_X#$_^7p
zFNOzv6=q6|bNE^~IDqd<I$qM54kk!2QPN40PL_0vq?Dg3!8A$lm-GQiA9OHXf*F!h
za>L-*Lk?y!8y!6CU^#>1V2*>i4jy;#goAkw<~w-I2|h*th!gyh`J)c9hKYui#h1&%
zU5AOm!^Fvsu?37+1u=7&Sm@wMrb;QX#KBWch6-YlgT)Tkbc~Ii5q{bUz909DgJ&h+
z_rlnvp5?;?0cSnuV5ywGObU?0uYSDX;6(>-IC#^+3I{LAq1PE(2b|0A6RqM<UYx=&
zJHgkK*j{n?t{eQe)N7LS$*_RgA{nF1TMpiK@UFCNwS&XM#KmFa9S8J+Hc*CLdiS1#
za>Io$qHAQVKHwP{E<SXy*1<Xl>m6)%@HvMZeB|I02cJ6lm`5WPW!oSDzmwi&xad1v
zeCA*y6O~>M558YN`)2mE;eujXwcsl=UpUy}V7r4IbjQI~`t?&}8_gaZ<Ja5yMKFqe
zlpk{{i=AA0xS$zdIrw_GsDC2<>u^zQgxJF_E3=26JnVJ&Rv)8WjCS#jgZ&OpIQT`n
z@U4S`1^fP;O!xz``0%J6VjP^HW*(9J;|{*(C4kvjCFiJ=IVKAN4<HMB-4Q`W{ZUrA
zpB(%w0n?Q=iWzm%K|L3Dx;W+Fw1YDa&N?XWqJ)cI9sK6t7R#@Tj&tI_JNVPVUk?6Y
zF_{x*yMIpnoP+ZYuCh?@ys(~(5O>_nyTnp+Gw&j+=vxs2dxW^`;EDqRwlS5mt~<El
z;HHDWr3^W*l}NlM_!;A<b2D%8&Afkj%$bKb^Zt{RpvkaAVHbtx#f!Q4qGY0oi=r-`
z{X6f05rXa65dxCWp*vhWAR+`MU6gWB$wg%s18?M&c2SOg-O4NDf(w<E%#-{|_^mv4
z%e$!HqN0m8W<|)EJuE?H6&F?Az>C^axSEUV5|G2`H6*6ynl3n{mW%gC2zKkZ`0=4g
zT^CQ>%1htM+cQGcchSH_#zkKj4JquRwTm1Vja=OABFja#i^eYQanaO8GZ*(Z&1>Rf
z$MpCeBgNLU@iQYta~F{<k@`pCEvR9npa5G)N>V1wQHc{SqAp@`Zhn;nB{`jvaXDI|
za-yY+RxUWD)6OupwXBlJb<xH}9~b#9@>~cPU0rl@(bh#f7oA*m=3E!;=|Wx6!No^Q
z!)-?jQhw{Rql>o=#|cQMoQQXE!R0tKrE-GZ?k-LgPV{uq%S8`4kwe}{(VNOg245Ow
zmjV<{x=>uCT%=v7au$blm%ncxXrScf|Kc=&$_*E$3)h7w?Xg_gE*v>T&9{ZuoQPAW
zF9kS}N@zJ1_H+4Ei>Xx;OAo{bNX^r`CWdnpT?}$Dzfoc^Pr=Xep)Q8VE;-XiieWB_
z*Avf-6z%GY5iZt^6eC^GB(~YN;$vKlby40!1rOugp!h%RVvdXZT#R=y!No)u_cI|m
z<;SRMM!xwcZ<342JnaAEO_7vfssz&{-8nS&pd0+F+!-!rx|lBUhNk%Yc+*#h#U65T
z=2mF7i&-w%<-gP<E$tQ|bFPbdE;hN?OygZV;^HY6i(EWPwIfB@QDT7vkGc5skG#Jm
z=W(W}3*v<?D8Tk)aAYC`i(US39Nu#Awu@(Y&|Iu=@sf)rE}nC-+{N=Qnv4=lT`Z$_
zqeRD1!W$))j1upT5-+&;dX&Iu@uG|0Mu`Fa;@b~~|J@Z^>0*_O*BA;HFS{t+Fa8R>
z;O>kLgvDr)9xXcbi;o}8*X-gAssBwE?~E2-juyv9i(8|`YIYeA?t+VVUHmgY_P&cX
zF5YudYm8_;Mi^rRnIE|L&;?cfGB`ozePaT(kBt%QU2Jgi3Ac&aD5t+ZMttmI%NX&?
z7(se#jQG^WXD&9ns5w^9!cF_bt;Pytte7xXe9j8v;ujYuImN}7bkoIN=FeB5tvqoq
zcDlij(rn|<vha2{xT-!mR($0K-@@A^#mN7p5q7)S<AOtLDhkehcdXdQt#R>#i=!^~
zyZF|{K^KQyd?!`$n~7A#xd&vo^gp4)+=z<eh}5}btT;7RP~dwPH)bX<P8@S_oOxbR
zoM0hx@sqUVXKBW5RrSXSF-{ocMDfakww-cu+QoHFXLh+b>*9ioi>&|LK4uFugnr4j
z{&2ByoESe&P|q9V0^`rImgdF@&dXIMR1(pjV(eaW`4>rCmCP$H2LBkV@>6g%=Qk@!
zuSq^#pq`s9{$?@v_=P6?<KkaARM^9RjAtcL$OEmt#RFAJu)BA0_-rNdR0UDQ!xxRP
zU3vizcX%k_p`;gtuDBOOKDUy%ONN*0mhw>ALmA0GA<Zu9p_~_N92-NyMq?^^sN`XZ
z7o6hC9;$d~<)O8Qsvh$H4%PE;r-!L~V%0oU_fW$_O%Js^j9HmoNAhcX_;;M3KxR*j
zl>E9L>f9#?>U(J5A>m>2TcL&??(&f3A=^VE4|jWL;-RUBmiLLq9`5n*(0w9#pBN(B
ziu=R{37UCm?%|vJL<<ibI(MHS4#`;rVGj`xF%Q=G;OCo4ju(x`i>Q>mcYL5B&gwK?
zJT_jmls3FHAn`*glH(zl_InuXp^b+;54wkx2jQWuhn^mKd1&Y1UJso;bn(#M1F!fU
zJ#><wgQVSV<c&QOeQms$T}XUYSakK!%|mw&J>+QB-Z{C2g;`keE8DzbI63$KXm1Zm
z4~mCAQY_!Y?`6VNep^iSpwW!-;>^4Rm47~7aBkXz;bEwUVIE9+>Y=}f0Um4*j)%S;
z`f=$SdFg?Xvp4fx$`lr!2cKR%9M4Glc40wWy+*k2zj;IF#)$`d7{n-1$q2FJTCn=o
zx$(iWOF&7QG+bIZ!ox`JdyOzHp{JufjFx<MkBk@O&ls8*=ixqXpNCl<#(S7R0S^x_
z&928MdYHl_@i2+;_dp|qNY07Vq}mOFs7_-pH9&lRg8#DNK@Zct;1-Lan;}=BVKXIQ
zpstP=l_rSU9v=4an1=-(=6IOvVZMh)xRqz3oJjBH$&hm5XQiT#%4je?&W139^SFm6
zJUr!Lk%xsIzN!&@(gQbcz|aIo85UA{v{=r1#>3MdGIQc=R7>U0dZ12%=RE$k9m_l{
z_wbR2k3Br^;RO$GczDypiyqeOif0W-yzF6xhnGC8l$=!__U($__$GG8Z?P5=M6Jtt
zuXuRX!)qQkoeaNDGls=K85)0bV4~&aydjsf-}3Obhxa*GPFyX;-eq8~<h{d8n;;^4
z;_t~>RCv9F_`t)59@g=Q4M+?*m$%k~S}#~}>6N@|a}(=%y192H#o!5o9D)rVKJl=}
z!`B`@rE4Cxc=%GTwb8@p5^VCYnen`y{oI}iRc$CCNWbv#!J+KJSMs)c*ydp;Bk6$x
z+db@HWUl00T^p%9Ao1{oK$xM}B~|VAKql9v0E4iXOb<sq(BE%7?3Xf!SjVKBWPT^*
zH=WBnAY~3pN<P(|xtw=cj&8V;_q~T7WO$EyIOgHFw1hr#iFYsOF;+C}XAdVhl);Y~
z{NmxHhs!>$_&DX^G_%OZTpwpVoMln+(b&hY9)4q4_5mNid-#L7=i!=%KRx{A;i892
z9?p3<?_t&O#03wpOc3?w$C=wadRr!l8UN;eQX}`53F5McTNA_;#;{bP_C&#KzwY4%
zD?IrgZZiHga{p%Wm*=bS{KUT!3_BD#QzFrNqBz(fQpm@!LZYY-b)qQjqlgct;{5pu
zQnz&C@6$mx-r=LTkMce$_(1_L;Rna6tdEjDO8F=)nPq%L=EnIb@!NlSBPR-C%9Qgl
zsdR#%qK`^G>icNmqq2`GKC1bs?xU)Ym3QYQiznW>nK!mX;*p7>hL79$wTXhDrjJ^Z
zLtI;eI+E7)QLli1rw^7C3N-X_mt;2b@x??zOr6wEdgGzUJwBTFaD2Evn)+zwL-=Ux
zqq&b3KH@$SK0<y_K*IFJ$Bz?5mXDgNva)>)9+tQ<QAB+(hA|&UCIn9XS1!hr`$4lv
zOCPQLU<=y#Xze4%N3QHrRq4_RMtkYd1dABEH7AKYA7x$%abi24pFDx;L-WzzM+YBW
zeRPxY@93kGkIszPvk^X*wVV{}EHj~tALPUR*W%rM^zhNsM=xn7wXu@Z<=#H}_(=Lt
z<XoDR&p5N#UW-!|=aRC~BwcP|+K1sIC6&<M&mIk%J}e)$%!eTl2Pt<UKStw8X^H3a
z<1rZTV}g&2kG?*J`xxP)pO5~Gl8+%i_{cfH#~|7;Neq<THuK_Sa#7|Ivu>zdZWvF*
zydVk5>~<-8q-2irG1>=xp}*vh@iETFeSYw`I+i<|6(yiC6rfWtl}t=zg87)?W2Vnf
zo?r@{^6`L=sXS$+6VrTfkGN$Ok}+-{uY+9iK_An(O%nx!#!xWrnd%Qw56eDtqjZ8|
zvv?}Ygl9|2{bi#)%=~#i-t_U7kNG|x@$smS$9ydJ@w|@(J|6e+jE`r1oZb?D!pBoS
z7Wr7{<4GUy)e@&_i7~YW0bd#|_VKijF6|TJ|HvLWNmNsEM%NLGYKbLs?ouD;8|Oa9
zRQx0Rkx611gU}cy-;Pagocn^07k#|!;}xlMg^wS)#aD8nTH+<9+&eKU=d4u>V;#}C
zW&BmCg!a7d<F$ensfwI8<XW8awvW|5_WSsj5%%$}j}1OPp?)7(HN|?KZXfUaSVIky
z#0Ne;^s&~*_DQ1djn=0oiCdFIy~$!7>%gVh*Z1Tu3&%fV1}+KLJRP66I`%OWd$PE{
zy7<(`XFk5<QDtJ+5F5G6JfuE0(QL|R<^5G%eAp!3uDYOxE!@hPv09Bm4V=D>%lY`)
z$6g;heC+hG%g1hM-hm6TuXv~@i{Iahkxrc~KB_79HO}3`oS7VeeLk*Djjg%f`WqkL
z*AQzai~W<u#n)or`S@e9_`%0f9|wFK^l?aX%1#kSd>rNhoE3ZKQtXZI!r%LN;`JC+
zkskB;Ng@2k#9+Gm_{qmFK2G}hnYCq#I3dmMIYrRHGBpH^KgIIZ7^j))JSJ1blxX~{
zl%c<L@K=cm=1viR`1q6i?&E@wzj(B#h;tl`#_jrvl~Y8M8iHaMeK0te<Z{%{SZ!S$
zBfUx=c@i@ik->FYjjLo(HN(#@;iiwjef+~hok8gg{^f~ak<XxL2Df~?J~~n;6HvBt
zr2|?xgG!@XZJr{Ci)DZe?#SSWDdP8PiQ-bSL<YnhC1ooqyH}=&G8vT3prY)S%b<J)
z6{I}1-4-S#ldVz)l_j9U+iI(2P(1^YLE8*!WKc7MW*IckpjHO8GiaO%9{TEJP&b3S
zGH4{b^)hHE!K~c)of*`ZxB=(Nr#Zfr<!=M>0ffIK$+>sSQF5wI758L<XOkuwG|dDr
za`|GDKVkaWkFgdRgffU{kjNk_gKRk^n!%();cy0#Oz{3Td#ZS+RG^s;HB`&Luy&s+
zD9|#4RvEO(fbUBw);fbhQ$<b&6yCKwoSOlE#E<Q^F?kuxnkxD^k#-r}n}LymnL+yu
zI%Lp0gFYE_%%BrBXV4>q&eF&(8FbAAk7=}=`nTuByGeV9`HV^0Q(D_gGFMIwUhsZ2
zRhX4Teg?W6N@k#B@NsUOLo`^;K$ET!ADk*u8Kg6Keo%}C^F{HawIfyrwwyRH11AGF
zgMJzG&%n#T&wv7bGssB4_)A<Br-{o`0|)6Wr*jFuWM(J^Wbl3k!I%%qU~ndQy*wm?
zVN&f-*(E15O?00Yyzw5H!Ke(DWbj-Dqca$j!9xB4yKT<c%>U!*JfNf~zAnBCTyhcw
z5dq0T9A;)`SAyFlB}x_yfK1PHm>iZYIp>^n5>SGG1pj~_K@cT~pooY_5D)}J$(ir=
zgZ|E`bI-3{y^38`JKIy;gDfxldeP4d-Y)LyMRzZHc+t&^Kp*SHu-ujxmG<=X;$tuR
zc+txXMj3i@IrMZ9vKO%4Q_4_wY_|Sh4Dj-J8%BCD(2GG{4CdwVS}&*^+DEa%1LsgL
zhH>K6P8-f)saczEm!<OUvWxmyZ+{)-#b__ac`=^j;Kf+Bs*kdzk8;QK)O0DlU(MUv
zNBUT|ssHJtOz?vDrFr*zk{6S`nBv7$FQ$7jgX1tbWttZ&&v@9doPDj1@Ir8E?XTqK
zR{*oUnB&C;FE)BHmzTzi<y=i(q&%oK--`uaEEF!=S6Sr6V$T1*$}%sO2z+8gt-i`q
zVFDeV@n>GF@M0}54Quyel^1I`N%|_QML!pf^;Jf*z`hFY1nL)3-Lvx73-9Qwoa(D=
z^5RP`e(>V37yt8OvlqL)_=Yphi>+RK%_RV(8<ek@S~_#P=r++wP~6Qj_)e^|y*xX-
z*y+WQ(wVzNi}mu5se8Qm&WrE8*vs9lm*-p2eWLgJDzxnP;sA%`Cnx>ChjNhFBQ;;@
zr;raZBNRq|q|u8LoG?(1dhwGNzep`i{h8|>$}un47)F~{$fQq?uAbwZoSb7_JrBBh
zsK0Ro^zx*lRRUXk%8PT-sfuMX89n30SugVYP{4<C{P52UtzwFb^Ilx=qMnNSDlU5Q
zmlp+96jE`CQ^Jc!+={*Un;W1Px4pRI#Z@n^dGW6o|8c6vlsEcW_x=9iZV*$hi;f@b
zx*>4Wi(6js?ip{#weP3I`ze$ADKFJeXO_EOJP@CI-28co`zZ(dDd+oHx9J{okFB5n
zw4YMEzw(5eKR0$2xm2X6NL7*SujEjX-e1Y4BD-qc7+hXZY1`k*%UZ_tSD@n4{>rZY
z3O#eH$g3isYTd`nqgpNey}y!Q#e@Eedw^0vwQd*|8=&wGVT%DuVHGc^sIKC56-87O
zRq?8dvMOFwQH&+fSw(RbFG)EiR0IYnyel|xfYp88oSZd4c}2DEH<nUST1CsNnQZ_1
z0ZJJatjp@)04rKfMR^sKRa8-NVSrLWMMV{rBqK{p8EB0U3t{0^Ra8^)=0N2&6&zCD
zy5ta*9H@La(CVo}MGY0TRMb}CRN+#Qrt%;w=+JGT;+96TU#vP^MTUwuRMb>4ZJ@Go
zpz`BD>sIF#HU0WPt5v)!%VyM3!5grdtWg@wX5<~DC@Si**g*;}B5Q9sNNK>Ps?b#!
ztU|@xD%z=dS4DV`(nv*970pyMRxxUj(nQ6RiSFftly3$p%~iZ3KCM*zIY>zvthC?|
zvHeFK<p(Rw`{rP!waQbkcz>{!N@H6UJp|gT=%AvbicTutQ*mQS4Ho_ZJ=um??n#4{
zjUReGR8i(s8mn8UrZd`Eg;#~D;v*GZI0rhrY5aV!a$vCHlV<o;o(%L{mhv@eEruu+
zhA1X4tBSrV`l$%22&ssvh%*a2J487)M4?7hMA?`jO79`c^dZXnAxeVNQbkV{y;NkW
z=&GW-3a0)eK7?*63J$gW8G5K-ITmxW4OKo?(MLt2p;l3$p~|qK$^zm3Dh8++u406W
zfhq>67%F8BR<T`*8X{3Tvn6c9FcrTJwVHQps4|j0QZZJ=I29~*w2CpDX2X>H!=AUH
z-Y{jniU}$vs+gqW!(mF#Vag;)Wl_w+FALbhshlt>zEQD<<)~OSOqs7@fr=R_X3A_?
zdL?s~YTbdKtzwRf?}sUKRm@Yt+xUMCQ>Hr77FYJ93|AJaSfpZ|iZ4_wR<VRDRK;g1
zKH;zoNk2FweVK}-oWozZ8D1H#Eaw{R?v52tt36y<q4Kmd)~IMbBz=|WYOZ<}?T0JO
zn<dIz<A<cjhorBSjI>W0uB=zFNyV3Rewwy{mz&pdNcy_r3QPW<ip?s%R<T0`Yu}<`
z8%I^eR*8NkO8bG~3LC)emxe1jM<}%HRIy9NZWU}~)mByuD~?baj!@XPy(+%t{;A?G
z75h|tr{XxT2**UleicVl9940EB}?IlRUDG`u#g`($BL)1{cLvU5z3D;CjCYzd9I}W
zBx7<+#g-8YEB#r;tPxiG+23DO{5C>)FhV&&P;pwt85Jz;q>5AAqed#fbHIlyo163Y
zn)?s2uzdFDtTf<HZu{I-hNPe4&M?v%NxEGS3mZdb#!D(La|x?>s^V`IS5(|laaYAv
z71vb!$Caq!9~B&#>ni@0yzNFR3~Vh!*OAKPk;+XKw^ZDgN}0s##WpyGq_gUKD(*{X
zA4%Q^q7PN9AE_{v4PXZ!%jIK7ejcg(Gg3+M0Y2pPA=SsD>B#Ow{!z+nqm&#za8Ki&
z&nZevE+2CHke5%Ij8tyzNvAQ7&zilBMp>JlI*Q-vz*XJDO|_s8g?!lW!vP-(`|yGf
zy?p5HLlGZ}`q12mcYJu!hhjdw;X_Ryiu>@A4;6f<=)<O=86|uu>BB2Nyev^#-dg7=
z<wI$SzUo7{-#uk~xVy!{ByyioN?9NNo!}_v13k+NGs@ITK2-Lhx(~1WP{oI;K2-Ce
zZBzFjH>^~KDWeqXYj#}@sUpn>k3bC{oOT;rKDdQh9kZk}def01mfwze$TUvdl3vS)
z+H8goZ~IWkhc|tw>q9+pW4-jr6jnr6j#BCiu*`-&G!S0&v*p%norkH7d}!=LQy-o+
z_?b45C@XCyec3lkVXs^G(9#FL51J3Hd}!@MCm%Zd(1t!fd?+Qi^Wj~A_eD7%tf;+c
z2hsO@V6ilQAR|d;$sHw$joCAp4=ms#AG|)O(z`C=Mt@!fpNt_d3f&mheK33o`4E=u
zrVnRj+~^$eA?O3$Dps*ZGU7wj$A=xz)rXi}VA6-UWTZoaL%Q(!_2Omi=0kTMdic;&
zTKmyD5678qZ0f^N%CnY#>_Z<Pmin;FhrT}a^I?h)Q+?>~!vG&f`7qjtfj$iKVVDoY
zeHhFcI9h2wS{cI0Gc?03Jd|^Fw8E+xPBl&&;loHD9;ar|lhJP3GRF8Y*2kC0WK8s7
zoDbv4jnnwt4YM-~-6n7ZMk|C#;x<{7O=Xs8K1}yvz7GpHkwz;sL}&XjQ-GFP0*w!Q
z=J+tzhk3T0rHvY`&|#qu%SS7Vd|1pLjaGJ#R@k;BKCoe*h%+0{?2In=;Zq+U2Ehg&
zKJ#IP51)$z{a11c3$s{ue6?`r1#XtV#)q{&tm9;p>b~%SRj@P$rf%ez`>=~fAHI~1
zZ};JAAO7dVW*@eQg`Qu@cy9Hf`~YhVw~3v=q8^P_cF1_{6y;>251aH2=Y|jaeE3cp
zvsbPTNB&!ha`ag2_fihq%>Hs_(sGbh^G9;!hushP@PiMBxqb07xetH(a73y&=EE;O
z9QENRnNb|HpQX$ORTM5jw(7VKzxr^3JJJ|ygum<JW_xJ=O{zO7`a4yC_CI_$Eqund
zoRz7_r1L&p@ZpjVmpLp|anXmrWR7tbv9;_4N8oR1%oQK5`j9q8VKZ1M?d%2HcAZ1V
z8LMG{hW~uH;X^?Ug*0s6n|6~+;9^=`KW<5{Z~JhE`=Jl_xWD<Wak%fp10TNG>M7vI
zLoU5+p1Z$0Qv7%%{8;pf=u=TTOdst?^&^`f+5O1j$LujmUO(VR`>h^^JbvW#BbP*5
zj!|;k_TU(WVbB;QpJd4|+PYC1vlsNEkROHpc)^d2W0W#}6cHf5<VR8A7e$NtQC#5g
z7=@{q$0#NIcv&nZMPCukKGsSt<p<qL`$0EGU-hG`ALaZgFFut;EBH}KfDRQ|@8xs?
z!!xMjM^!PFk^*1zqq-mKw>e(-qoyCV{BZbD!w;t)E<Z9PiK%Ws(uLDRJ+{5{8RucQ
ziw+EL_>s6`F^#qTpl13}N8nA-l}nv8?(5-FY-2q?>if~akA{Byz^?i6mLG5X(a4X+
zehmHBaWADtOSQ(u8IC5j%yw+{V~Zb6{b=S#b3fkkW0D_}{b=DwOFxo+WHI|jXDdHC
z`O(>r)_$}ROIy(nqV4>6SAd@F{a7){MR?D)yf5&9A0OJ5j((hI=%x?DM`8?#cJagO
zhbrt7HAMY>Xae-t{qR>wdzRPqBVgNuyn>%Pp4r1<jQ9~1h>6B+&x9X!t644VYFh^T
z(an$Ue)O;{ef{X^M=y!?_M?x$$9AfD(`xz2|2g{Emi__*L<fov@?*n$Rv(9O*!>u0
zdyWwp?#Bq*GE!ia=x9IQ7^^(%#aOY76CE!)L3E-Yf9|mwFvX9lek}9z2UDz$PxE7r
zIFP3c%<yBTZJ8x7n?74S&&r?c=hI%8@5ch$XNkZ<(M6(*MLFi52r%PPKPK$4s$1^I
zr+$1U_RsxT!|QJQtn_1*@M_Uxd~xMQ=UU<QqU%Iy{KAj3xoQwL*p`icY!d#`w){`v
z{S@ox#kcyg*N@%3-CuFKu61nlW4plDe(Vw0;m1xtcKMOA$+>E!lRmq}{*5T3*Z)b&
z|BYkGIVTJG){lK0JwJYIk<RG%Qu2P$1EL2-4~f#@z)HuDejM@Ri62k>SeV0g)Q^*X
z{O-q3e*EmmF)ov_%CCOZJMZ|#kK-)7NS$6|m8oNu4PzA=Px$d0SLImc%2<WkcboGR
z=dB-q`|*b#j53@SI3s%2k8`&DPe0Dve8G>4!hiX3NdPU~49tGTkE?#%_T!Ep*Zla0
zyE<3*6wh@({`KRAA2<Eha~yo0<v&08j10rh>z)GRl<!)m7rg4JG)@U$^o-k?e%FtC
z+~L`&+@4q-&wW20aP#NzUhp)^>nXW0y+=;Vo|@NsB;+wSx^W62MZ?0Oj^#rfXE(c2
zHDuF}T|*8HxisX~te<ypaoAn@h8r5FIYnEJQ}SqVA9feJ=`NrluP~$eH00NC>J4|r
zmg$U^?B(A5KSyB=FKB3?VS3Zoi)j3Uo`(nE)bOH);-%a#X;{0*QH-o%99(=B_1t#H
zqRH+O8eY~=Qo}16Dru;!p%kmuP)<X64P`V$$0-c2YJ8~2O(-jtVPaf7PN|@wqGp{Z
zq-E<kg@+R7cXU_LP*uZg8mjY8>M>6>4cal!)fY49^9zSU!>w_OgMEKhiDkOT)r)0}
z{>9^B?=&>htmos>G<Y<;sUcHCx`qx*oi#->MBfm7dys>6hFTJ>t?@;{mS_I)%BPE+
zif{u_8tV$w(@@{GlpE=2X!Bd_czx&F8ahWZ>D*Y_P<g!4g!b`DQw_}onv2r%jzGQf
zN^jI?siBpI)*9MqXsf}n%WS8ii}1Um?Vs80)b}*J&mrpPWcWbChc<U))i!q)_=s5=
zdg$iWpla~hC1?VE4GS*6#y0B`Wyi^;hJc2khLDDy8hS}mShTxngcngDCK?w_h%$Rp
zLzc~5HFOg$yud2Chi#uYF0HqQk2Unu&{snr4NM}?hheuTjShromVp`uX((u*kb%J(
zhVaVj$kZ`Z!!Qm1@<W$~;TlG0*stM$hLIXZX;`IUHP?lPF&dU@NIs}FmQz>5;-2YC
zG>q3ULBk9UGc`=qFiFE?4O2Li<rv#D<w>@w8m4hYXqZ|x^WE{*!8SspXeMD6+keP2
zp9832wuU*Hb@FYlhI!(gHC|zqS?Iq|JQuNQfzzAa%*X?BENAq1<r57{H7wIW%cYoW
z=XixJT*^r(ZDzASlUyq_tkiIFymEKEQfz|qxrQ|w^oq*YT$ma%vMF0M<U8zHr{N0?
z>osiPveNLShK;<G*_B@9;F_RJcGjT}!z%;R|EFQIW*M1EOU?D}ts1`4@Lo2BsoSK?
z?V_dDyXmk)!%hvmH0;)}SHrg&zL5rutf1`S3LWowIZus;6_vqt)Axz}I}P7+YpR>h
zM$*`9f<lMlm8`FU4r;il;V%t`H2lCSy15T)_({Xh8h+GpM6<r=JgQmWIWp<n{ppMz
z)9?$sui<wM$2I(_;WxHne>y{(&$E5DKmCN1qfJm=Eu<{nknNO)KQx@xa8AQ%PLJQy
zsb@5tmn?K+7Uunv77Z69FEcW*Mk-S;X}HWWf13G^hQBrIT-Fs0SNW;_^K3gCr4OE<
z@Ql_q4ef4a@=Vmy2?{;0i$8y#?uLe&8j9#Bs)LW`+|qDI!(EQp1m(7<&+EFUS)cz4
z=qRY;zJ>=HYV~qF)bLd7OnSr_CH%y;@CBYJx|J(cG@EF4(Hx@CkyA%5VY=lJ$Ss;@
zwEP6Hj(j@ui{<PDg@JB`bnt1W!a6oO>O7rbJ=sKfL832DR9@6kOt)@3yLA-T@sf@z
zI;yhSLzNObUeQrX$IB8esiXEpg@H+>nf*ggMIDuNl+p33j<Pz+iLru?^15|XIy_M+
zHZHy0M1?oB>CF4y!zL<ACMuQL!cof3iAs)>Y1MSpJ(=dvQA6N09o2QbuH*Pb<-dsv
zlL}2zc#qwwWA}Ndi%lJu&gk{BwHZz0;Oj`&k)flOjuw-wn`3Y2)~(>0I)1vE$*5zJ
z!f0(tts_b|ZIYs}IvrDVOx00OM|~YZ9U&RF20EJRXr_b5Ya8nLA)oS=j<<C*($QE4
zpT3!vPidlqzYxmDiv~=xek!!Nj(2qUbqqY1-a<!99UtiUP)92rt#!PsqrHwcgyKqD
z9Y-fA^Cl^qCn@dN**fX`b(>E4m0pEwchGs{2`6f&lmD5dyid-kO{R9#!GpfXE2VYO
z(TNjavUTpavyP9%PTt*8@p8~Ar7@@iK2d%Xs!6MK9fp9ZBf$2&;bBvGM7G@R%>Qm@
zhIK@Ae5|97j;M~9jxA>#J#@r*eU~}hD?CXZmz#JJI)1N~PD_@Kt~$Eu*s#*mov*-K
zVI6)TpKG2r_lAdgd+OFnn_i;5b$s@kr|M*-ua15?#&PI$^w%*!#~2--fA1WqV~~!)
zI)?CylvL_ZwnD`w={#aFRL3wK!*%Nv3Qu2*&@ocSC>^79@F)w7JnZrFOV$~Wk0x8k
zJa~3xtdzNbm4_uy&@oZRWN9Ir$9D2m$s|@iSs~1wtZbUBOw%!4=ToTIpkszifOtxc
z&veYxF-ym69dmT-$f=y1tjyIhPsb-ZyycNR>YT4*fsTbb3iM28bdhcu7wcG}W9(7q
z-X7_fd!$FN*J5hd4bG)HmT?Swq%Y?PU$6D4<f0n`jVpAl)Uis(&Vc8;%dWKotJx7=
z#6ylX68+&r*OY{3oenxMd?8R_fn%eNO*;P2aazZt$;y{HzS6NxNAq;||8#5?*dn@B
zl=kEj_su5m?JPmZ_d3322U&%rexqZLj$OjLMO)rXXO_L(1g0q8a&F&D_uNd+e?OhD
z&yMcbaX`lr&TSnBbsXZV(Q%kF>STKDDGEL7{AcC*QT#ucqU?V&gAMpe$Im)`({WPA
zF&)3?_?2^>mNJ(Aal5sZA7`>^T1vHcpI_r<Ie}~Gzw0=qqvHYxnN@5plYU0WSsk}^
z+|hAP$DcZ`=(wumyp9VxF0q5ZIWC<`?>5DHq~)THzxV;;X*!>jaaYK=EUA3J=WlL4
zB|UtO<{Gn{OQ*w49slUK&b_fh#=koL<5tP-@o74v6Q(GC_Q@zY!0r9lMbBH@dCFQJ
zaqsH5rz3{}7`V?Vbj<Te$73B2I3V(1&O;qdDp^nHJmGd-EaRz;6a$}4QOK!=^>|LT
z)QoHfzLD~?8(=N8P+3b(1NjWA<+%*xHjsy*tdiHTN~ZDT6onlm=Qpgz@Pl^&1Ix>1
zuFg}tuz?p0d~INdfg%Qq8W?3@w1F256f@AuKx+fV4ZLKas)1?-8a~M^VW5;@9r+`_
zY@qX#%#sFPG4R^G^nr(6)Y1mZ7<g5D=vL7{S>bY`<!yTf0pGREN(L$$sA5=$`uOM>
zb$6}|K0WuEf$9co8K`aGbps9q9=7M9qlN*eftx9cTcQL8msps}kVc+j8PmlfLzMP6
z1Zo<5e!<ODcE65+x(4bQAirrKQ-C9;2yme48)#slxnW&*UY&*p8X0J8;4K4h8`kw&
zQ!FFjRE4vpiGijvy!32lV0LMR^WoWK;Jeq}krG-MXeq!dn5E)WrHz5M209w(WT2ga
zAI@2Kv)?oDu3>$rz|dZxgMsnCyGJZ^z0c8*JKi5~kom=dM0sbjvw@Ec#0?}2bTQyH
z5ImC}F`ydo88}%vGibnXKr;|v=&EE+RdfS}0n@<$KWg#ORO^X}VN;b(U%L1h#iFT7
z$N)8L;K9920y9P>drWj7GLi<e4D>S4+pr#6=xU(5fv=`2-6Tp2&#d;~oP3(erz3kB
zcyiBue5%5usvjE|Xkd_mJ_a9GM?VhBQ#V6@0Xhs2m{iuX4>mBwzz72)ImrzSGcer1
zxKxE9+&zP*n*W`uQ27Mqp$C~X=ACApCLLp7ELV_$6?8VNPf*hh%rKB1^o%z!!N5er
zdbo^xX|3y?Nd_hxn8G>9DR<p7&9HV<dXlR*bMx7>nFi+N^UN_Y*T5_;;gDyxfx}S`
zA48+hJi~fCZHWPT&Nr}tqspN(uvl{CUf}p7r3M{XRPW0!!Y2lnit{qgnQ6+WT#p7$
zg*@LUJp4n$Cb6!S23AS4HyPGradcR1;By0Oqzim{ZoR--(RHF<u+m*_wu-46n9H!9
zwqwY+oc1M)GO$_PN~hG=DzHWLe9*&IeZ`A-*|kk{JBK1+8Fw1k#dT*Q-NbHgKD;Of
zE=#NS7&va=R|EB@DSHikYhWJ-jlHO-9O6u7?+olWz~}e#ZgU+lko}5_;h+IV35N~*
zXyBNET>U&pcv<&5SkBMfPo^nH4gPkC1(*7J3T|}{ZI|AAnlf#g@(V{`nnM2*27WVe
z#=uzvpYC&?G;o@`RyWV@texw{uucaJJ(0#F0`*LnY-Or=&hc8zceL;Bxya3v9qj5k
zFM5Hwx>-*Y)_1!9;<BpZVOUx&^Kb4*21=TE#l%$u*9_!0QNYAM2Cf@OF_CKGUjzRc
zm~+Q<&%h0CI|gnWxMN`1{~Wit7#BOIzn6_nppx&3GylIkI8C|FWhK#vqK`!%8DJ6%
zd?L}OQV6487jUzXY$kG<$ZaCKi5#X?K1}2^pJ!o4mP}(FNy;b6XkLM5Ni4shi9#ld
znt0K)T3*=13nq$~xHwH=o9U2!y23KqU=~=+#7mN$(c)rcIVEg(*|h$}W>P5=`7b)l
znJ90fv~U@=u(0b@6J<@*AMNUV%|(Y$yYvbsDw=Sa*4yyZ!JbMcs+y=~qOyr9Ci+&d
zQ@=@$_g}A5X-E2NCaRm(Y^h<Q(P;PU%wl5Sk@ONxa#V5DDekJnB&Ugws#+85e+8`9
z<+)A1sRo&EX0S#^Gfcc;Vu*>MCTg0fWg=oCYJ#spsBPj+dJ5MuQDM45qhg}2iT6yr
zZ=xQXZKAn}cT6-e(U5I0(bxoE5b>6YmdD(!^4EUb#M{#qBU=qBUn0RbFf=jI)C6Cx
z(2RYVt`NMUEtthb8xu<lx?7pniyinDh1LQyrYrjzDEk{KZB4Xe2OB8wn%F4D_7bI~
zgMe$f^8*tfn(&*@OmsBCs=X#u6P-+S=1_>`$aICj<l99!e~miyVKeyuosZLax{`l}
zQgw!+Gu7l<JFM4Dm?i?I^>T@z3BG8$;S7atY=F=7be^H~nxTYEOr4>y*qDj9iEbvk
zb4r-t^Y~pwlP35~JwuiN-)+JqzA~bRiJqqQE{nb#&+KVySel96ruE<P$0qs+9Gqdj
z%YxykqfS2){Y?xoG0?=jP1875gCzT4QD-&lJs1pxVJ3!~SYTqIX&nt3VPd?A2_{BL
zl$KE@Mw=KT(XpcAL@&-zc&LmH6HQFwLa6VaX#z8q$?T(vX`Gxhl_{cc%~TjV%~Ym~
z1MM?R&_ZYCnq^`(mye0LoXpid^Gxu}4-d0h=Y^!$KJ=fdEHbg!v_9AzHnGISCnh$V
z*urVR6=Y(KiM1w{bHbQdX=0U$&uE;ftY8DG*LkYB>Q%49>CHv4+QgsL>wIpaLydG!
zeolA>GB?9@Cf1wSVB!lCToiQXV%cb7lPs1mWd*(Rx@E62&Bf*OKQ_Qwhp^SeS0?tD
z*lS`N2gk%NjzIM~Uz^xLOOqTsIir}%QHPCTOITxfN7`-^-$<Ek-m~fm-<sHO;s9$j
z@tuk9r6nw?`sH-yqT4~qa>&FFoC($I)c(#rdr<m;u~rwj*nc!}#Kch(KUwPwr%e28
z;+TnFdEL3_c>dqSanpMAiBG|tYw0Te(0baD;WrZ}nQ^A|pd}xl;Ugz}!toE&dTNhj
zepcYLi8BIxoP_ps97)r9dgwftOuh_0yhBe$|1xpO#I-Q~3FESfzd0H~><;1zR}EVg
zz^MSPar5W83!qZ~*SYzds1!iu0RA&^gMS(VC>XFlX52J!&%}Kbw@fQ~+eE&Ct~=ad
z@1`-_75Hza^1#GH6OXv`#4XQN$N9RhZ71BWVU8zadCDpAi|d1Wu9N^$1IQM@hl-1D
z+n{C_Cgc!6067J6iRQLb^8}FB=6nMAMf2QrTDO1#crn0t)Sz$xF9cA8(OJr*5@|K3
zSZ~KIDt+<HQi=!gQUIj`C=<Y;At@ySC>g*j0sOtm^|I*LK8{iWOnd4~`Ph0_OzT<7
z2GiYVo6G3rc{PBt0sNTm>d@9zE`ag@yf!wyLIAN@%E713iV{6v&{eIIr%C`-185Q8
zYj#jgs&)sEMuz~ZOZ4>soB``o*3;sOBLHfR0LIQz2+L<Ft^gvZ9M$$YJOSh`o0=X#
zMgWUPSdRt0A=&E%Q0TU&rf@CM+M;x*Bk*PbnYKj<pssM?L)P1U>j!XQv8zD<eKt54
z8V2x|@Y|w|L>t?wO$3?-(9E_p58xf)A@$tM-YS6B0kjL?U8!Qu5bGXY8{xJAq&#%)
znq}RfYahV-0elcZhXCFSVEpN{ju%|~WO#O#GB)JtAN70~us+@K4gf#hbq?U80OkfT
zFMuuqcmo&`z|a8H0DJ-T4&dVe`~heIBm>CeATO!GDi$7e=m8jZugw4gHU|YlqG8d9
zXq4AZfZ5{#By2WYq0lFeTu+@{1Lzh&_W=Ir?&=Z1z(=lrkDN_9xO)mS+KW>q-9_jV
zK;HoR1#sZ66n^vyok(Mu`R;l82QYwhth=XWFVBb`o`C^S2L&)VfSbGA?h|Q@4hvv-
z0An}-m>R&y07eBcS{ie7x5HV)J$soo!*?xrKAELF9_ty$0hClaPY7U1LwCv9O1zJI
zVgS@hqJ+r-Oc9=HTc!z24`7CEnHj(=n`Z|w$L2EKJo5us5Wubgb_cL9fJFhU4`2i5
zVE{$1Syy?9wBcOX{Yd~z16ao8v&ONU!?@U4qlkz6sW79T1+c>Al>(~*SZ!NA7g!^@
zR&<@{7ozPxb!-e^lhm~{fG-2++1AC{zvB8D@A{wUX3;I8TLU;<IE_i$0@%)#7597{
z;OnZetv+8p;o+<!tUsQ%t!^53r*8t-6Tq<mehFZ20R3M|{V9N-0~l1y{cQmI0;p)X
zz7zdkl+pdX#5NxkI26DSw&gJQ2jL^O<!AtJ%vP9@ZB8#|X`6+v*juT`1Nc=sMa$1S
zoSmcY69N1dz==r?hLZtsCwX(3^AC21%Rh)Wf;bbv*#PbZa6f=^cHaL2_*3}2=mpV>
zqJN2A61^<?x9AnotD>y^S^)ppd_91Fg`1wXF7XY{(f}N%Q*Mdzb^x>guy&z4od5gz
zE-w`9<>0HfsSg5p$c;3JQb9Zl;4wF@Ao2w9L^7rZku7Nb`FP6F8|X?2S~}pWBYO}z
z#GZOK4MF4#;=)qr3lClYm2)32;m#FAbd+O8Q<tNUBX1D-#IvMm{vZkjQ9S55eB4>%
zXxjdWr(h7&LO~Q3ctNy?DD6cBUKA}RT3qxc(Go$tEb#7Zh0gKW%IMij=^)AkQCX^c
zHHfkTm4YZ2#Oju=ib3lS!T**!$_G(_Ny{A!pUhU++S7g9kAHD4T<fSJS=j5ULF6jx
zt`@{=0@X!nc|8b+a1BwXsLM`u3#0}43De5XkS<WVo~vdMwSwpuME@Xa2T>;oH3(l2
zZw8SWM6)282cZN}H;9HoycI;fAbMVR4z1}<JaN<yV#O3k1JNC`74p8N&hA%TZwJvR
zh{i!=t#IaR;pVTGHW6+rO5?}ntUrkF1o2@I9ohY_9W8>`+RxE4h`FoXt%O?#(MF)H
zC{x=7@vd-t(GH^T*{Safd?0#aw$dqxCPS?W#-By*9K=UKbYXYeS@jMX?Iw67dZfPF
zALNS;(1ZO7LJz{AXZh5k7p+Na%CHAH{q{HmoM3Yl0_~w7UoK}&!iarcq5`oX;<hCr
zkYtx_OV=Q}+1x#d?MiKy&?|`E9IlGl`byHrqNhuEI`((>31Y?;2jTv2uH{`k1A-VB
z#2gM$5QBmk9K@&~Mh7t@h@nA@q}@mz7DU1FRv(84!SgVi-gS=%S_epS?R89g-=%D`
z8b2n8u|doZVqJl3<D|MhXVPW~j2E3CIx&bz0+U6Vaf-lH(P^U7MQ4c43}WUi>r+9s
z+i7K2JCct*<at5N=M@R!s~{GL+bYg^frX-rf><m-=OsaWV)N1<mI*JnEuRMQneYnR
zvQl7sr_|2{s+gYnIjvoBjYQY7gSO`v0_#OLh;9sGlb!nIGZ5V@x<&NBTUHmg1+hb-
z+k@a8A%2PQHJ409H*W;(6#MWpX>ZJMeiOu=AWDYuN*H^C_%?`G2=Ng11@Rr%bqEzh
zya|T=LEH%9CU>nM4hC^Nh+l&^6vPi4pN6T&X!LosubhVkO1Aa<7{uXgX-9%M8bsG)
zPKKWZeirRf-~DTE*DqYH7o4*uI8FrdTM+*S`JzIc<O1L8xE91eLHr)XDNgUUu0Mjf
z9K_$kr$x_*o(<xhz@MV$MK6e66#Yw-C0q(3_gy!ETh<kJKc}0YSgy(rMhjQ^b#{ER
zwbSnV%fZ0&RDCzNT7B!P+}BaJn(I~&x4AiokSm1TS*dq|xEI9zAS%vL?gnwIfZO$p
z^Fa{f#=F%9?#hR)&)W}WkRJu{Sb&x%K|B>s30Z3}RWzF@quE2qVKYK#c*R=Cxy4dU
zv~wj_o)Gd1=d(TYhxq13t2Bm!ArulWEc$|I5z(Te^m#FaM}J!-7Z=M*w!K6MFWX#F
z;1$tQqNPJ9W2e3<P*${@X!#Jl_pKFLDTK-)bO_<S5PwqxRYS-OK?$K+2(N`uJA^vo
zUvG|5J%rao*qyU>!(|SK7@56>fHMS_ZE=Ud*Sj-`!Nd2w3uoAtH$tc>TuZdm9P48?
z!<!QQ;X+!Ozg_wPN8J$Wh0wYI>W46Cy`yT#$!AFE)*yucK5;Y*;VoX)nU1$ZXfM!6
zw6Q4dO$3^T&`h9t2=55A5N#vcQnZz5Yte4)UCi4ygmw}ozZ*iM)*eEjjHT~~@IeTj
zL-;6!5A7ax4563Zi%ua-o1;XIrFG%(h7b+Gzb$puRJR(!<}HrYudLnDN2BD`>=N`4
z3}Mr@1VRW3heX4+Jt9!&K#n^HT<MxC5kfMALm~VSLRJV}IaVP|4xw8J-9s1^!srls
zgwQjDvcA-jY-b2sU&rteUYP9Y9m2;URJiNrzYKi@dari%4WVBM1cv@046u1%2!m`M
z9KsOcp`ycVJ3sOApU@E@EX-A7!c7-XU%z}UZA=JbLzoc4#1M|V)5dYO-}VHbq*r(+
zV>~N;Cu33*>pzas6FfiO_3$5}DIrW{2_Y=vNQN*ygqb1C3ZZG((>myR|8&|6=2~Fg
z!=D|(oDk;AfXofy@iHerDm4DvF^^L*n}<>A0(;!Pn4>HXVMz$vLfFo!HO6u3oa+-w
zT^i!M?690;lD`JS7XqJ#@R`60+rBb{RW`2<;d7hUgs|4;bs_vw+ViZO^&xDq?Hfbb
zWb>D-)aK0sTST{p@Rh)xl`fX>wY2R(2!-#a?cgPzqcH3YVVCf3+wx5adxZDemT&o2
zz~=AxS3r2bZJCiwKN!OBtaOHBchU}r@M8#1LU<a&kr0lCa6W_!A^gPdpGrLz!Y|T{
zpScxWb@1~Wuhem|JTC6u^1bWV5U3|Y_)XxXC@sH-_%(`^^oQta(KB}HS%GsQ{ApVz
z-gCX!%Gxn5O5uNrGI}Y5%OU(N(JP|2MX!c%P2e9<dR`a!mz#sY4bhu+>a7spDrqgf
zJ7T$O+wTe758;7rdB~ks__1x7crrC5jMOlSgi$n%Y++;%qi`4-KTFLK2LG)t^g<0D
zimp1)fiS2!!^kB-&K*V`oAZW|PdLA50oz_spimgd%)u-#gspL?xYyx-&;4Q;#lm=4
zF!iM{>Rxvh@VJXhYJ*Cy{6D%&gz<71pI>*aZ0@Ra-`&4J?NVWs4x>*PeZwdd#;aj8
z2%}*bWy2^JhBFLT80EvLz#7A-7DmM|DoKG=!r1kvwG1nVG38g+s=u7q?s~4il0i%C
zm2A}4!Z`3Wg`Z=qi~s9kzTWov4qqdToA<1bF77bW!l)HS?JzuHT&$N`Q+(1zxrb+j
z5nJVYL$tf%;*VtIJnpCy#+zZ(3!{D*Jh780&UM3h*QF?7Y(MU9me+lIy}Nt|SMhHh
zSLP_wLe3eA>#Z=}4kHpqG>k@JG!CO<7@fjs5=OH}DJ{Zi8Rm|GW??jE%d5He=Be?)
zd^h18cKk~xfejv=r$#GYS=p0YhtWo=ZY#>vc5H*q?FBl7@t$pYKa3BAKNKB&(E2Re
zIgF3O(8AEe=wf?fuHp@2%RYxH>J#;g(wKJ3(e-qi5k@GC*<nxP`idDwfLBmXO$P-o
z?s8<TaEHU7uDj%pNy%AZbPXdOMk0)ZPtwZIRgz+VYp$~TNm{osx`)v_jE}?UA@+S!
z9KFKm$!j##G5qZ`YL~gn+K;RYw|%OkOkp><Ul{$v*c!%HycS^$4D(G&_#})$VGOpK
zhdE&k31es&qrw;+#xN;)xG3)?@ss}uUR=$^Fp@CYK^P;cGsBn_#@H|lWxB_Ot^YvB
zixMV;G12BpVNAApionz`rU^{9?K1>;+kxwjp8$u<RT6z1bHngANu3|Y0;z5u8@Vfu
zsqEcCCcWog9LAzB_={tUI6m^bV~xkAFAZZ^7%Re98OHK3K9#%|n^+T@?=hf$7RIBi
zY3==<Rm>}?TSPm)V=ax(!&oEHwW74F3*!r$*N3q|c%yCEB=F_4sOV<V{BK#4XYDBW
zHct33&W3R=jIYDk5yl_lu#?M^y$<6@7`r*KZ>M?QRK5x0>FKm@24$?dleUNd1+X!9
z(ipxK*cZlk0^i&A{Q?I#TWrgrFy9Mp<vJ|-ZD$Yp)9%)kU^p7aPg48OqQ^vO|3%=q
z=&zzD!uU<#q$quU7dXY;vWm5PoDSoRSW2Bsn*r;d=bvGm=N<kq{tn{;_X@7l(JA4-
zQ_8M#rWAK&)KCA5S<X8zh4JOkbix(MewDMjh*jX(qiOZ}TTA%5*e7npq>cDDjQ_&8
z!R?6K+GtcBjay;d4#Vt+KtJ3G<8By-yW_|1xEIF#F!CmmFNp`-V8eJVj_Pqd3ga<n
zP87qUc*5Zg^Nq^*B7&3%QX@!4kQG6;2(m}ui6A|K91$RbvJsSvAZG-*A~-fzDIT%r
zPj1md5#$k|C9gof2=WUQ5G`n@@<TO!3QP2b2#N?4wNqb=pqR~D<|;1<mx$oy2ueoq
zibP)(?OfFwpHdN&w*AXQFx35guU=6f<s+yN!L7N<!X-5-iqC5iR2QfuT3NJ81XTrC
zTD1s&)9rZ)uSZZr><-b2nU>ut?6Upc5u^zZmU=THcq4)~5wwk<W&~AS)*s?}0<|Kj
zEl@|4NpD7wDXfUrwe4r#^VE-^ffU<Nw5jM@5xgys>u*P+2pS8s{3a0;n)m!ai)Ilt
zkKmmMTG*+rB4{amrI)qz7+ObA{!i;aEQWRwcsYPMYP=gk`v^MNxjIJhp3Uz^@PY7$
zqPb)oIth2SeLjkyi}2m^R>^7vz6ktc(IYS-&}`3z^<fG}Y)e2OC>jzCN6_rN_5WH_
zqA}69XhM`pwQ|(x8bLQ+@d$=R&|T~o8r12}>3Y`PL!v!Jdx`cI{WyX?0(~Rs7eVg(
zDO+m07+Bx{u@B^gpQj8G9W2V|5P{(@yN5?GB7zwa%#2`U1jlQ;{(F>mW4B{e1fwPU
z7|}@)j1?FsI$m^w=tNOg$6~3IBbXwVsiM<Fr`tX(c~%6oBPg)e@wpi1aB9s{mPasG
zqVpn{AHf3QC87&O7l|$wWi8IfX`k4<G=gO|v)E6iK$iJg1S@P_DX=Pn)wbpMUh8tK
ziD0edec|`)jINJh1Gj=Gaz{~hf@5O@7bEy9f=v;8Nw)|#NAOz&CnMMr!PW@Awd?&#
zU}pr|Y|Hitz82mgx@n~~S9e9Qn-}-2#ovg1kLX^}?M}<SFM{tP_+BhWA~+i19cCPm
z=)nkn5TM&3&c<z)|6#HGXxo1cSu6A>UP{~Yv%s+kez7fWCb)hTJ|X(7ZNCfuDSAqj
z<@^!BX`9aooE1G6LGYpVnUmps1Q%?d<dc+35nPVo4!4~M{*K@Z*L5>DKf=-Ts<>Sj
zy(apP=p$Gi`8R_9BDle8B;Od`lqA}3MQ~fV+F5HQcD(4i7XkHY1oy@M!1jC?!6Ta=
zNAN_r;Q*^}`lm#Z8nrSqWE03Pnj;F>_MCFv>5wOiyiv4`qFogEqR1bGBZ?YP6o{f=
z)Y>*nMNvqgm?$lUqj<sQB2g3-eo=IYw4u20OQI!2UlwKFl2N>3b7G!SI*Kw;yc$K>
zD5{9PoM?H`o==|dbrqthD3(g1l|@<F_<2g%+bLC}sAgMUi=w*l>$atAe|PT%4rdf^
zL{U?Wt|;6BX||6iige)&+rk@<wW6pUMWZMhi?NPq{V3iP$h18bfx1!Dvn^i@_B61$
zp}<>Fye&|nvh|0Lp-B`i#L`r>nP_v-cSPw^eP(J)n_ETETDXnq*srZ?{caTPqsWS)
zYZM)#C_KsGi^3npd*btc6dwqD7{x~d%+fK6PQsl<pS7opuvb(S?O4~k^q-AzXi<ct
zAn2k5L%@t8U|WJwgly($M{JHp5fhHvmP8aun|W)fTNK@S>HE7^e&gsN_4bQm#db$e
z;a;L_MsI<Sqv#{h*S067y8Da&08wTfC@?6B!2&~UJHI>{9>s_#)EIm*jErJb6gQ%{
z8O7)*#ze6#itSO1jbcLH)HzYijbdCByN0{Qi%y7QVic2vX`C)FS#(MiQw65ksZ+1J
z=rcp2GozR#FxyVOv)0jVo_k&t{C9Xo6y*6)ED%^2#Ug>lqRT{=MDdBhQc?OZ9qyto
zm*}S)OxwPEp0YBERZ*;#@%bW(^-+8-yhe1bJ#OowSa-piKMWgawCx+Ce9-dwC#Wx@
zc&DD_v)Q(6iDIkpSGJ}6MaS1s?1*A_{?wCE>|`Gq<|&71v3<T1_(pV36nh1}72PMw
zD&D!3@_iKhxjX&ye7zr#q=TY|qWD3e_}u4h{xQlQYrxScezHqA9>veX$3%Y-?c3(L
z|F04~5yfu;tnqHq)Ze2x6~!M>oEGC1(KDhKM9)TXPJsS@3Y?GP+Z)eYcu_2WiC&80
zvcTV>^#8bw^|9n?6xVFaKLXdI_*dXR+kXBB=dCDiM^P?@@-f_r;%=1h?X;%Hy(o??
zbEL$O8p9}8+I>!1SK5Op9tu1XrRA}}lPI3rmXu4*Y%%LP<`&H^nnM(#IYo1c=CAX7
zN6HgJ-Wc-5kYDV~UMR*Nym&qz3dXQnc|M+nV|YRAr;1vZqA~Oz<$5uOVqz>VT1xb#
z7)l7dELu|Z6;WpVo%_GdWdvT0p{&5#SFKi6h@lmKz&(bH7%FmnE?P6TQVf-2s1oBZ
zYdmk;>jKq8UyGr-Ku7sD#1TV{7@W3eS`03m-7#Exu?`Dl@Q86@o76XAs2M}^7~YAY
zRt&Xcc-!``Bk*Pn*M?iY&Wu5cp{||UAclH2*N@?f+wy5BmbXNot(r!{jcv~+0!?FR
zW?Q%xn6X6+@5azRhL&P)Wv8}|p^b1`(RTlDUuJz4>JURGvAk#7-xv5Gh7Scg+IH?j
z^zR(QM`G#1IhN1*+~SQPm;43y$DqY<D8}C?fgXbq!|WL5h_e~PSb;zc!5Bg@gk$Ix
zLvJxgM6*PrF~kJoq6yKYDC=5K(rR<p7`oY(?lJTb?rB?&m#Fh`41Ho4E|$KweNc>V
zR(yW-`^PXqc%W?=Tt02E%|ir+#xTsb)cDyw!sd}&SvHT3VT{cm&2^3AMS0{JAHxJO
zPK;riz$Dveatu?1r;0voWnJ;<!ZU22nK8@~UU}WRtaD?S7sG}aHi~h6468V*hpoM0
zK@1CHSS0qvqRT~>h<*~oQh{Znmj9pD75r49pT)33V5OaUf1a{BhCM}GpNp;$T`NlC
zx){E&d3_9tb#59rN#5<EU)tsTPhfKlTLiX>er2a_i=oVMtMOmQup@?@V&5maOLVvB
zH==uD*c-#Q!q>dkSTWq(<@!!6<nLqHZ}Wi|4%&R?WB1`0evI+$i^v(rkr<A~@Gyo)
zG5i$6&*JuH495h1kKue_*DrS7<1zed^NARK6FzBM%IB;>=Tnm9j~Gr1&~irLYz*fF
zwv=<zcs_;;F<g|qSGftq@R#r<yR^$O{*I3|C$HF+o0Zc3`F|F;9>c%3<v)QNG2F|1
zeh1)I47d3wK<sy8xG!+e_TLnAKd`wm&%<<gJmwDe)cw<1*Lz#tPhy}x6-|jFHEu<-
zi4wBMk;7*1VOK8RM_TSE5y#7M<c=dx+-i2-I9?DS=M%^uM*)F?qJ=~Yi_)iESx*t+
zqM|R__F{1q7k<gMv?x`(WE^@aPkGz&N*twxON*AV?XL=yjq}%zp0Dn8LtLpjYgCA%
zB0H6{MkP@~Wq~SjR28UZ+i$IPy&i`njzS3(PM}5{&Nv3dF)$8S9PT*6aYW)si^CH~
zwp?lL;z*ApBaWVz9L?f*BaW8eIqSy3x0KWrt|dxiZGk$XZ;EEd`65TlpMlxy#Zh0H
z-5`#)1sdADc#G|S-C8LOjl|ekv`HLIZJ&ScrLd6Zal9jqA-51{8AmID*0#M(9Bpm>
zVu$nHINHb2f!8+<e;lFyj`yWZo^0$C#|L)#AI8zqX8m<nXO2t}_eY{#L>cwQq1x<=
zBj0u>jVw^(<&%;PQB#!mfI#qBG|nRyE*kR}aYy60y2;r$ju?mNxTAj28u2(1aU`Vy
zS)x5fyNY%b?Jn9wbjdhti|8fXTl8bmK5<+MTS@)m=pV<JGcG)F{<F{dH0&M}$KW_t
z#j!e$A#n_iV`3bW;usc3w;VNw$1x&~8;9J7_gVKtX18^ZjDxSE870Mz79AtX)Uk1l
z6CN)*!L}F8Oq(3Xi~SvoIYYQ!>bR!FF*S~9;xIjqxdJn6|Cs`_;+QQk$F>*BWle^8
zam=?Z3*uO4^CE%GYh0hiaW999r#|>Pou$IdM3;+xD*Bly-B!f0(&i!k9iPXsCXNen
zT#RFF9P8pZ9>=e7d=ba`xb*^`ALG~%$Hq8z#IaLq+!V)Ffo-=_z9a~<otxv>B7C!@
zwJN`|?c3tmZu8dy4<4lKieq;i2W<N{aqP2sPaJ!NzZHF1x31%NcIx+W>=&MR@%dke
zgAzR?`a>Lt1-`ib{1f<*IF5?tCs7vlv%s-9ei0a4%lZuYWq$XtbIucT>3<XZ$vA$G
z<CO4O(LY4#d|Kd49EGKA=Op^4=y}mkn_6xAi<2<Uv#&@=;Bp+5zH!`@)W74nB5+mo
zhUm38{t>t?%IyDgrP!Q%jWru@#&Jt5w?*%WLe7ZZ<F3-rabNU-=tEH&9|=5;<B4tQ
zvd)>Bz-N~nOnq;+BU=L56V@fmA(}S<2;>yaC7N3_k0?E}&$K?3<&$WB(E_3c6Ug1(
z>iY``6iHx10vi)3n!t+*bWEUA0>u(2o<NlZswSW}bib59i3DCwSO>J)9CI#y=qQ;$
z;Gv^@0_0Z`C?!x@w2bJhqD(EDKslRv(5r&owu%W<vbnOr-5ri<3A~oT+plJ8oj~;j
zUS}=W(wZdT;N~wrZ;Cn-$PjRex<%QYGyzWn=>m`1Sl=tXAzV|mmS}C!I-+ziv)q{p
zC=#tJ+EBEfX#E5l2<)`K(Rhn36iXw~#-c2T2iuxTgPV!6<;?}&5p5ybGJ#eCOWSzp
zFtmibO#*GDgm$9uCeU7>LjoV#CBG-|zUT)D++A&byyw_bJ16i_0(}zbn?RQYyqlb1
zUd^waUOTUvfG+`m0-9|J@|xOgBwz{$Y|D{h)|?4RwDeski;5%=O(2#)TuSaPN_!%K
zq|I5J8^YaeOJZsUeR?F&Q!Kqidy9T-`^?<r?3Y0Q1YUidvN(ZhO<V&K7?Hrp1O_Is
zrdS<@K?w{N9%5UDCNRwA;hY;C+;kh2z!y)Q6BC$}z-ZwyqBM>b7?;3!feE&qZ_r{-
zCnqp7fmzbuDWX$FrzJ35V1_6?dB%@ATcYzt=Oi#!V4mo%3D%lgAWT@8z#`$({Ve;E
z1U`}IQqh&7%Mw^F@Tur$qANtFb+&RbtV&>Y0-uX<jp+IW)(S9n9lK+5>mr^REv!y$
zO5n=`P9*RflM>jRz`+C#B~YiQV@m>C6Zncrf%JwsYHv$mdjj+7xz}xSeQlSsS71j1
zI|X*x_T35oaHO>b?XfMT=PTa|?-Tt_^n20$q6b8oC3n#MLjs2-`m5-VoR&XW9Xw+D
z98KUS;h#m1+4f%qj<cQO?>?5+_JaFl0>3A4C4sAwI{sMdsRaH=;556r%JC;Rfqa=P
z{EVcY6+I`~WpnEJ1UlSsUJxZ*6!<HFO9Gcg|F%=_J*aUlfqxQ6O(I(o*AsY{y>_cN
zmAeW2D+T^1%DQd{+)Ut>z-`excIxtDY4;MiFVP30k64tQTHs2`W8o*Z<*7hQ5=>&@
zd0p;|ADwp#)ySSij^y)C)DXxinoBgdXr3hEO)a1N%$~%HT~Vwn3MNq~30D@}Sty*u
z3rPf%2qjS@iK0ogPNEGxlPH!%S`wZliYM_>5@nMpm&A-0(n=)3cfqC3a<v)dc$v<l
z93@3x5iONOX@N4LOno(JoysGWPohH7dTMNWee0Q^ib+&YTBn#8DhX6hqKZIO+g>e+
z*PbQyb<pi~VTYYsL%=EOO2Td1c~Un$iMa<H^^&Nc<Vy;`W4do7QB%gGmZ&0HTeObo
zo1&RXOxpZ>#nlzdkfEvXH*hsbf={&Z9hKyUNxYTB+ewfci8dE)EZQWArUFcDmb4B%
z65g>bEd*L7(aN@L$d%SMiFQeJ;KjO<@@^9CH#>OnxP20<uRHl12Op~9nfCYSpR~?4
z^97F|B=KPq9h0~>&c)zMqLXlE+wxHoU4*@&s%=jx<njw^qPlH2k}z!!BoY4H&0@nz
zM3UH(#NH&LNyL&^k;F<iGKoYI!;%=DL{i4N{}X5bB(jp|DkIh{iQWR7c-@oeVRO$U
zdI=BS@qC0o=BSFLukF)MV0`=30RjU>2Z;_AWtl?+h9)sxRs=00l9-Uh#3V*a(kR<=
zw7?kAv7EO8<L%U*9M~i#CowOH`C^<RI#YD2=rq<Mz*=S`akbd<JFByjm~GqVa1d<%
zRGPFvqMvZ)3oH^{Z2K$`;I&?ATb2ndPvTR7&un}5ooPI$w2Ji(NZH2uAokCbSd+xs
zB-Sx1mM=uti?W@CYG&JD^Ts4L34du@xEAQMS)yB#*lOFq68QXqwaIK3{#tZL5<3NU
zi86I}65j})lhOD#iG4}j=Yf_azDwf!Bu*!BCW-w?97y6<4uaGAvh|>3Ihw>FyPO}A
zI4u05=n>I8IiAmrpCtOT=rPe>k~l7~>f`4=CzAM0EG++I62A+d68%H8>M+amY!c^^
zxR%5}V*Hc4kN}g;Cvm~%ivoX%UP|J!ZU3;D)&46Iy(){8(d!buVf*|m@Lv*!+&{l5
z(OaUoMem3*<6SN^n+xS}KTP5g_uecN&9WY8dCcWj(VaI7Pm*|=L`s&mdqb3vnuTn_
z*+p}Rw!LFrvYf)XM01PMm`9-F#gu#k`9%we78IpVA^sH*e!;ff4`sfXg<@H#CYIu&
zrL#~*;H4~-5O`U%r06T6r9@fgksQ{?k5?sHF^fNB{QU1!If3$`6|yi|o-C*&(aN?@
zl`K>hu3pBvcCS5S(bq*CqBTV6;LO7O3YKSD7Cc!zV2lx2NY6q>7CL32a~9snLd`6^
zlZ6&psFj7s(;c<5P$$be!_S`ydo#;=!|MKfuD1j-MU^bn6{sg#U$lW}Ls4eo>k;0T
zHZ&4#Y`3S0K+`NV6KHPR%T;!_%tEUye3*rf(hUAsGn?Hy3vIH{HVf^<v%ToMq7UtF
zyE<gyJ-eLu1wP0EpC4!T;XPelx43#gcFz6Y^-&hOWFee|NEW<VP_q!q!kB?BUlwlV
zbZzeGs5M{la~!6+7&HMr3x;hmvk(vt+LlFo9sFf&mcS<<qFLydh5lKHWg(u0gfye4
zXwq(5Ru;P2+)bc+7JAs0jQ`{5ETE*gx-QB92ZFm>a7#1YGlSE(LqZ@Bf=h6pcK62J
z-QE4e-QC?GcyPD;w+_62tzLWWciyd6UOm!Xbx}Ji?1^wNagr|8>z198psmr<75ZUY
z3_g|n6A@4zq=XU?rbNgqjkKu-C1P+Qjwa%m99Oc|iCCD3MTr=eh~bHtkcf$iXg)(8
z{B3ACOg|zKBNHJqiX2UjAtfA}h;j7sD)DaDCpYRR$&!DKoynO_CZ~{76ETe<i!oh}
zM*7xD+EUGu&3i^ao18;Rb8aH$DW9K+1<HHelV^)#Ng}o+Vyhe#WAsbOwd68#Ik|#d
znTS=C)#Msdrjk#{3)dxLJ(CS8-zW>Fd{ZJeE0@~{Y)-0QF+{&D5!<=&I}%Z*v|%58
zC%KE<P3}p=UP|Nn+IhF1#ZrGDQJzb#O(?HJl*8l^ZZ`>!C*njRUM1qS9Hl?&PbT6H
z$FWb;ol3;%M4U;)Stc^<wM3jt#Q8*AP|0P=#Y9}9WZ}_rg??4llr9%@UHJ{lP4ZSE
zZmaz2O8wnL+)KniiQ1P7WL{4bai9Kxd`LbbACpf=DIT9zd-wb|5zo|U&nYj+mx-8U
z(YDE(M7&KzauZ;}yF~3yn>R9)k(<W6PsE2rd}Q&bM0}={FRD%QB@szX+A$-qugt$C
z;y;QcEi=T#us5lyNk-|&x56iv<5HL~Kn`yceqx@A%s{3l(~xORNJmLe%E*hG>NC<a
zsU))rS?J67UY6a29417}h?<epgj^=<HDR9#xlPDpLJt#qn&fHk$Y(-L6Ka`|--H4t
z=uI$~@UsbD=9Ia%T35n^f^=yXGNCZNh)Rl@P>fz&CBtTD*T#}2lu}Do+Js-|I<kz)
zV@+7d;=MDBak6YPjFn7?rzDVN$#SIhmN%gSy`oAAXRlaUc@-0k^r~bvvN~CVlo8~i
zNVQF<V?t{a+L%z+grtXcw`LfdnNW{QRo{dLCN!k~rk1l2rLhUWQkv)2ev)jWdVe>e
zDc$qp$KOK#Frm5XZ9(~yY-z$@lvb)Y`AlP56UKgyEtalK7Zcji+mjtg>FQ`gCwgb{
zZ<Sv>sO!pcx{=-0m_y`4(I)gZVY&%3Oz2}mUlXDx3^bvi3H@d7e~WXlcmQcLA(3Jt
z&7_62l826HpHZ~aWpHsPUBqRA+XRmZUM81MBnwh}Cip1<Rp~vbogE<)!b~D6cmJ#3
za8`HseB947je|@WY{C!|hMF+<PyJ{U#!!ZtFq|@il&+B`j8ZONh>&Eg36q$NBgc~y
zRLw+6t$2e}PBvkR%BPwzjb7l9Hponq+)@v#O;}^XY!hCOiqD^2zu1I1CVYIYlh<4m
z<|&^~SwJo{VUfzK&(x0pC0xO!<T4YMQ&x~G$yKCO%4xM$eziXkw?ifCOjvKi1~xaE
zu;qJBZX!36B?H>UXY2P~`4+GV+v%-&eD0+0QoXxP*rWVh{)+oeIAB5<Gh)p+Xu=^A
zQkjw3jKd}zG2y)lA51uE!Z8zWn{da3O!?!En{bYDf;>r{B2SZ2bB1!(gsUE%G|!uG
zfyqS^u2C+j%F8BPp<h)=u55al<hltrnA{|9sowE}6Yg^PlPrsUOu0w?W5RvP1M(sH
zh?I@fVW#nk2~SOsss1(L6-E3R<vIDngqJG+;LyLOzfs9sc^6RrjQ{8T$VG}VV{H|~
zClfxKG?CXA6TZ^Fk^hlNSSGzKOX-uEf4oN|Gb6cjdHAI)X9_b?Qhrjo<zj3aGt!!o
z+l)MBtRJaMXGVbyvDxV9$qZ&>q)2ZjGcwb&kXcopd$9JCTXqhcL*50{__-*uzIn}P
zaxJ!2Awv-}^3kQ4U*<*snJlRCLS__JF1xrW2PtMoaWhKLOR4conjxF3yia@2Ep5gx
z%;g(0(mXL%J8t!67|bx6VKJlrm$*1H8k;eBrZL`(1hd>@9KZC^mb|7J<;*D0W(887
zds>kq1(nRGOqVB&N>g6$nZ~O0YAUHtsbNODm9bJ#i_1{kj5=o2RZH7|Qje@}#+*k#
zuH+4wG%{<qNs)#5)r{X{_09O*jKA5{)Qo17cH|%AUuHC?v>;`|Kh0>Vd|*#QD|&0P
zjmq1~rkJ6va(gBnRNj%&$&Ah_xn?qSF{7&)-OT82MnC2~RBvxePcwQ^I@Q*;b{~3Q
z(xcX{Kbr%{L^DhjDV||6v@NN(nqf1;ZbqBBdhd(afXT3yS2l+kPFA|iaGT*#Qw7ZM
z(tRrNoAG__GG>rr$c!+h9ltj*(2PN5WU?T$1%u6UA4se>V}lt(%@}6JNHa#sGIUND
zZpH{RPR}$JHpTyv7(cFWynMTDv>9W}SZ2m@4k%yp9c$L^F*VMN@n%dgW1<<eWmlRp
zNiEMb%4Bki8B-~JZ)y8_x~iE$nQ6u>l|1OB{S#`g8H-dhk20TJV8%j<d$;xmC$Gh9
zE+Lniv66qqm0Z4nyh0A19@=Ot*}IBdO|Fp(1!Wz%=Zf~8yHVVXD`s3ZW0M)1&Ddkc
zUNfrB)NL_iuq9q@sU*JDjBO0JlalN(V<&wVxm)F5Eb;ryXl2sw&UDO-{d8#_kaq#)
zhvZ#=euO-#@}#BWkDGCVi+9qD^ORHMX;K#Wj2UO?=Ty?ms;%z@GcGc@r1HyV6ltKH
zQ`gLL4^Qp(P^m1qVa81}KAQ2#j9aXHV#ZT5Zkut3&Aa3S@}3$0P-Kw%X5>nvZLx<;
z9?9;5b}BtK<LzGU_?Oqe?0QE&Gvm1#FX%7H*W@eGdo|e`%3D&VU0{xXulxfg&mP^8
z-MY{8q!x&OF>Cy4#y5)if0QH^#IT@}IbOnK7HzHNmD~a-Phmky`cEp!YSXq`YBtkY
zkd~58^`^HV13e@8j>lLQ3$j`eu^?(eHVd*_P}_n!7UZxXrv)V}D9Pen<j)qlPnWhN
zc}S7G7UWZ&-+}`4riLF&ThM|+ObV--A{G=?Ud)2x%Ad?MX39{elm$jv>lj06i##0_
zIt$9MAi;uIRjIe2NusuQ3@VAUAfA3_tCp9wpd6d!$x0Sfpj0HK;Av{DtTLNbEciZ^
zBvqMIv!J@FtU;-1K`qK7PFUB1dKNfm8GBn$-+~4fbhM!IEbZsFh8Fyxrfo!NY{9P<
z{6=qLK~u`_s^+iLG0o_EnrK_BxdkoQ{L_Lql$PXQq!hHWptbUpvy5%&?a20I2i046
zma&rsoh|sANe`8Gv7jrx8`)ju?xNbSCp|6b#iTV?r;i1FE$GL@Vu96y{`3K4A}Ldu
zEHKksau7*u7C2-RF|?D9vufMiMfa0#3p^Ar=_94)`>X?O2FZ{GVany|+D0B|!5|B!
zSTI$t{}v39)y!FGwL>@5f+a!y7z@&k)D2Uk4Yy!~@{yEL<Y)^n@SAjFSwD`H3CB|=
zSTK<?iJYu@i|Z4nSuov#{pFLdw_t_^zX!FSRVL3e&a_|_N1koL0t*&eFo(^#q}0r_
zV7~G`%e1Yr$b#h-tgv7)^Cjd`a+#`>@mJE<kgLemWcPI1AZzLC$dMd&g9RJ4rglW_
zuwbVJo9LU#E#y{G3bt9WU3remal0(oEhnHH&wccJRDOW6*MfbN{p9eAKmIdv(1Jru
z4wJXl_cxDPaEyt}<v8U8`A7el(-xeupqmrjoj7a3ISW?WvC59~vQy*?vZ1*R7cICX
z*Ci{WR$R8=iUl>SsA<Jj3$9u4*@7<?T$hW#?5Q$_M;4SGtt)Rc+~h27S#X<jhkRhc
zUCKRDmggVJeG9(-L?OvTCPx;<Jhs4}uFMk)o?7s)1<x#atEPHx!5jJumAtgz75%kJ
zWHHL{JDBfO@}Ba+f{&C>D(|1W(pTB|qjWi~$YsSh3;ttQ5-U<zk<yA7tF{M|k|N2h
zNKOaYH@mj|f1;<iB7+sFRAp*P8Zs@J&WiOsqh*qeR^(uqiOfu9u_CJ#+349xsZ73G
zJGLjb)_7)?F}D?YtlGv|@LHGGihNd-vZ6GL^OHraD4?eO*@}Y73t3TE`Q)sIqRNX=
zid#{FQc~sT1G-<V(6L#bEJMbVu~z6QvQ!2u;*>vVt52YpRY^H3mh<P>3RYBPSc$Ak
zRwk=hVWd1)+ou|v)k)cvwXCRZh208=6?LqrYeltpx~^6<%okVBiWXM<X+?c28nC`0
z*~E%Q6j{Q?R{To;jqEa2J7<5VH&r#wD1TVdoO0~0_HnY7^wA!Ddn^7@m94C3O>aZC
zCEKaq&W-gQtdL3M)zOMh^v>kpWEa&d50dL<MR!ivgX~52Bx~o4>1{<HEBdmTXobm&
ze)Rt20J3^VZC&IwtG6a*h88QV6iIB9wVmRfR<x|AcUj@KBAMQJCAq%F(>T*2?KbHi
zD>hgSUeZVU$p9H7Lso<-QkikKaiA50thi;xZ7T*_(Rq|^mleCM7-GdxD~4Gy+=^*d
zOqb(xws8bG-incwQKaOfDPzd7R*X}5(mMv}oxtWqD<)AUlT*m4q*n9ZFvE(ORxFdl
zjB7fJTwuj)${bR*!(7TdE9R@D&TQ?CY@rp4RI-?|#EPXVX;aj&!itqvY*)!DE7r-0
zY{hCOYgE2g7GsjO3pOy>Om6(%OK$q^a!~a%Y*D_|ifzgt_BHHKzEftw@6_zEVy_jK
ztdMQ8&x-w4lzb7JWxn<k@&PMOv;LqJhbV{1<5nC|;~b?Nv*JcQZP`w!{G=79=#er%
zj-NADoK?N&DCe!XK)I-L+1dr=`HxmyVRBXF*C^M?8&<i`vv$q=zBTSxan}mikiv#H
zHr+ido?7uQ3;rSRlMl#;R(URuHm$rKTk(Yc{kO1ZRy>#MvuuYXWnNe@H8K9ZTo7g(
zU(%)d%8J*@-%#F?@2u!J+b9K6{K1NkoJ#zY6`$!}$ge8je>3hswG2sY+QP(;No`0*
zktDed@;j_ZN*jK%p^Oc&Hl(s4wM~0mMKK%F*pSwSoHpdL$uo(x$}DQy^fqLmXCyPJ
zJhKh*i?CE?Ws*(h*(o{5CgZf7m7D%Ena75_lze1<Qfdm=AorOOkyk+*3aPxX4Mpfh
zRWhkxyexBZE_n$XN>U^#WkYHDFDlX5&@7E!y8QAdAR8*!P|*eh$B853)tCu3lvQ5N
zhVshOn6%%FD%nuShPpOXwxNm*M%7z`QkAS`Lv>2>x<8JGnrzmxp*H3F@A&oTzmhU?
zeM$ox8d4gOja9Ea5ac)IO>Fp`-jr;n@-efGEo}Hx_L^Pp8H<)S{AI&98^+tv%7)f9
zxNY#*Q1EQBHa2vzp{oreC+XU9@^&_~r*yEPqwLL`KhCU93_Fv5%aKz<Tcd6^bhknN
z6)ra$@4+rB+0%wzHuR<sAf>nur7zjfhW;wA)mopZ+(a?kU{OhEqqg^LHrSasNGItc
z7u?g9aP?a4M~kTkl6h^|;n4eR@Y@hzLC}UlHVn2Q#HN&mZHUmL<Up0L{Gbgo#D)>F
zL2MYxd>A>L9LZZTOO1nXSfdz@Cdb$?mLk3K2!jbWOtfLM4O<vavSGPw%*p!6HcYW$
zstwbaFO<WQGDl52!-ko3`A7CF8)nmUEc&q*=CV1@hWV5Q<o|EUMK&yEvV>epE+fCM
z;|earN>UbPl?|)uYiw9cS!csW)w|w?4a&988_+kY<l{!&RvWh2aM*?;Hf)#IMZ<2+
zOWOiA?4<8f$=n!i751>Xm)uA0x8VTgAbE(C$`7yfM{PJ}!#f+~rd!8tIAOyB8y?zl
z(uPwkyH1|A;gSuPZ8&4YSsTu&5iU^9+wf$uHtUOQ-fgV;75V`F^YkkH8X4iIL2lS^
zlg(S?T^nvw?vOJ1y?AYqdp7*T<i5)PmqB|ke#GW;8y-`hkWW?3zcxHmUUr%Og$*y+
zyw)=273DSghI~uPn6qs9_cna6;iC<o82)6(XG#(~V(j=r|4M!%|08AELrDxt?LV$R
zpd_;+Ii*7dZADVhQ<DDDT9S&Mnv`Z5N?JR<ABP$2$Y@7HI~v)M$&So+l(M6=9a-$i
zYDYmk3fYm(j_h`<KB>#cX>-_-o03zFnTrzTmx%M&kyquF_$jjdY!)DYCJjkq<YOwb
zFoo?H(Oi=vb`)h-F;bG^c9c+F(vCK*v~~H#4xJs<?Wkc#8Cmfy`igd(Olyd>LvM#c
z)t9Hl*%7aj1Ut$qFK35*kV8h3R|PvRrqxES#NNuPrV7PqM^%+nv!ge+a7{bpj>__R
zo2LB@wdl1;3G3KVmtIdL_3db&Ts}6?*p6TA7;48bJASjHi5(U@takivM^igG+R@35
zW_J9+nYOm0Ii(fZg8Y+|1#W4_U-a)=Mw0KBg*FV^+R={Ep6o!%dxVsAruVR;ryYOO
zCG0}!YDYJfbf+}rD)+LZzsh@4`q<Hz(vR$-?qW26%|ts)6f^ntptgml@6ySKA8dBm
z?Qq!fZ%Tuoy&_IKTuj`ghxC#@QflOi6tE*G8<SHFBxTqzC1OWZCGkhK)f{BUV3iC}
z$B*R0?U=y)X-@qJJ4V`ZxVc_lqwE+>A485M$C2YnsaY}GIMI$tc1*UT<YN6SJ7(K4
zg)YshlxgI2a)uo<Rd4?b+95Z`j)k22TymZr-`}U^+p&O2cK*drDi_(Y*p4N3EM>l&
zlzf?-7df=w@mDap5U*VgR@<@0j(!gGcVMj@>+E=E$9p^0+p)op`*u9AW24mDam9|S
zc5Jd^vmK}9Wd9Ji#g46V&bE&~!U4D0vB!?R^zC-+pzI`NM!W3TP4COUw@b2*&4c8A
zI}T8Kx7U8GlGh<N58JipS$t29+Hs8Gaq<Ltk~~G$;NRZQaM{k1=g9M<Ebs+6XO&;F
z<1)Q(IfHavv*WrQ_r~h}vEv3ulbLq-p#9i+(~eszxlOr4-X-smJ+mg2C7=34_t1_*
zvyG4Kc*4;hvA5%6-BURl?RX_aeJp!twlRArZ8e|S@tg%O$d{yVw06vAz7zYJ%{O+u
zr8v3WKG^Zm4tWH4RR=!F#ovx%4itCbiydF>Nb5j42UeVj{bmOo82(WIAE!;?_;KZr
zaUdx@nM#s7wEIiT98)k!sq&vFsmRn0q*3|p+%e5g#-?{5y8}5K$e{9!luQm}R!J60
zRtK`F#5z=$(}8GSLjea4pVo=wVl%e`c_?|we5CZ|ci>$bgNPLW>_9<IC0@vZ!t^3!
zQI&t0Z7g&o=I&7K_$lE)Ne4<fP}+fC94IGaX4Lkk&VhKfJY^h+rRzxp8K-)61N8~?
zvSh9~+S_`0j#GiGNXoF49H>mMqLRj$%2acpx&zG|_``ut;g}j6q=5s{Rg+%Jf!Y)q
zwvGdJ>Gf1npECW1wrd(X&`9Nt9r#uGZw@q}|4ueld7pO`<X$e#Wxft{cA$j=?o|3e
z+1t{AzZ__#D%(+7JJ5#Gmi+(y)t=1`4s@i*l6)8tBe#jjoHzb&2W~IbcTss)2f8`X
zoy{H&^rrMAdy!3f-xwL8j{|*~+~nOn1~`!Dz&8i}bHL<)*@4{->~X;2fYpH!4vcib
z=78OSVejLHJK&H_k(e;PRHcMDMyCTVSv8I(BL^MuDEB(xqx;E#%FDcu3po&GGeQoQ
zT}BzGY6dx=OQGE)Q(i+D4wbp9-t%wbM%;><^EPgj1EU>S<iKJF#yBum4#H)+<-_#j
zWb(v>sSZq|jCWuHMZ$>=OrlR#$rM?~TXE7Q^P0|C%q3@#Gs#)xY;ukRa<9wp%Qlb6
zd~$&U3n{O1X;=6q4lH$GvjbTx8|Af3uI=>Y<O-Fqq^xpawMy1F(C2;J_o>z~T<^dJ
z%0}{k<R((e>KxSxx3IaD+(vG9$nRg;+;@^9yJRjG^&)#6*yq4S2QE3V-+}pq4BLjs
zoNypA$Z)`cgIo()g+sDEl^=27DE%0DT;=8Z8cxdb(=g!_lhfoG@~o;k=fHXT1(p0U
z$9UO+D-Hy|=)O8|)q!gcJa(W^PVL4o*I9Pgfg7s+rUSQ>-*(^*{ri7L?y3AA%6$hO
zP#%(xRBz%O;}Zv-I`A)(R}Q?UJR_fzFC2JDxuyQ!@y3A<OyvJ5Z{<oze^1JC-shK&
zKeG9W{7imPD>8xCt0YduI8oGzVooG=BAFBEoJjA)e~3x$#J<A%v`)Z@=byBnF;X~@
z(y6^u{6vbRaw4_zG){cK!`SS+hI1oz8JyS>(B*UD>Umv8)?{)bGbIa|(}}EV+H92U
zWDY03-|H{e_uhrN+>|_IUb2!eM()p+--!Zj{!A7mWvL2L3OiAR^8F5e#hobOL}@2}
zaYAmGd@T+oohao*pGo@9!xHjs)o!7zbE1qBzdO;?iC8D}PRt7E>NsI=BF+i9O<y$*
z7*AFt6Uee;IVZ|fDv+`y@;C`$B{nNNQH5e8tE!qwTVrM9>Q2<)ENYUH)N-P>@_QAM
z*L9*EC#g?1A{#i-kdn2cc8QQzV>W*!e<PbXf85)!nG-W!#I|;#4doBAxf3lY()A~$
zrEDLSv~ohWvvjrPP@Tzkq|B>5r32ZK?Bv9;uG(9Yy#98gi>mBOnORWZ!-<}9n7NVM
zjb2XlcA|+3zq`=KiM~#}bK<=d{ha9U#6c$xIWfSAL?=Q{gq<)sVV31_!YSc``2Wo@
zTGaSfip>c-CI1EO2laII3?)zLT}-Nuig!C9^pIXBd=x(!AcLgToSCbOI1zPXffEaz
z80f^BPKK#YOmkw86N8-?;>1u6J6?`?ip*{lWw;X~C?m;i>QhXk*&O4<Sjsq3rqXpQ
zKSB9KCnhPM?8Fr1&X?LxCezuRE4zj=lbl7)Cg+fSdj8n{^VpnEuK79XA}1D$JF$t$
z5+_zWk#H|=DVxhknagq~R?t_Ht5iPVl3@+&*OD^fIw#gE-{8bX<!RUJ<Yvg5Wk)9~
zvr8@lPDpbrDY8w@Zu$<D>~x~FUN2p{If+cQhq70$Ka~CC0oB{~lK!w0N1WPy-Jd#f
zRF0Orap#;kFUKC2_P8V=oxDy^PC9W)C8wP@qx>vI?oEBciNIU!P4fojB6-P)%M|Il
zA{R0GHI-a<V%e~G>ALB}EhlcPt#sdsJM_CMx#z?`bnjVhzdTU+Lnj{5ACpg1e)Ed%
zUnf304bN2a+=&<Tm*gvzzjopc{jEyYE|2}-#78Hxxsct3Pue(0<w9x~zBn=Ae=$F~
zw0qslVtjStn_T2MVG@^iNl)fN3`IPtOFQ62k~4wIQ&3X6;NVYd7v>ndzlcl2Fs%!&
z^}1JlPmu}Jxga+ZPfuoWAtObSOfF=mXCbqy{L}Ne94_Q^p|A_6gIq4;cA=09kzxr4
z3mfvd(4@GwJo3uxLO!)T`6&fl_*o?dUAXz1wmOCH$I0PQ#D$_R6my}t3%a?+dM=c3
zp`;6yT&T=RO1V&$Qrd-IC_2(WmT@7Lq9<k8>VImN**G@i$pjbD&eeYMmsdF#$}_B>
z>MOdiy5W!Wu?oYQq>-%ZLN!%c-Gv&;KgVkCwzb%-P1bRtE+sRcSs=aj*=*oKLrNpE
zF)6*jQhsw`{#Nb4Zt6la7dE-D*@Zt`Xzs#z7bdvS!i7I&BfAiFp`{Cdx!`tbA6akZ
z!p7;kjxKbP9mJv9sFB-J+L7&D=s*b%{;`goUFhLLPZ$1H^<5}k$!=tKso}lTd%4it
zg#oIv52Xe_7T(t-k4^mXJ86GPvH>xPE|}<M((Zyq)mUAyDW6|oJ5(HOI_0obd8cPO
zj|;0(R+N{Q;v@Yo1Sml=M21PJJn=YgpbNQ*7`n|hj&h;iT;m`PIM{_Dl%Z<;VJ-}(
zk03{?JkrZB+Jz}qwS!~~!?7-mqdez!o9MzM7v{;%a$&Mmx}bf|-=*CpzUCF(R2LRy
zE;Ef3nNFEO&Ln5KFq<-ml$ts*6~BLxVSx(^U05mWB0Dsk@Zw3_$8B+oIP1kOEKy6i
z)P-frm%Ffn-j_RKwF|B8=nR=E{&!oqhWT1mxz2_4^bO?3@44!Y%r$OtVXF%VTsY{$
zHW#+Lu*ZeHF6?k&rwhAW*zLljQ@S~GjSKR|b!`+cH(QWfF346oKg`gJ{|npa!hRR_
zosC<$R{J^X@!t4DE*y5@9~bVsaD?+Z>cTM>ZZwMDG1qw9g%i?sEA~B4$&)Tza^bQI
zr_@rNcHs>DtPAH{IIr@HE?iK4ZLTqapKFylUSW8Xyh>hk;kv54K}p=F9sIXkxXtDr
z@~*16=fd}udf>uC7m~WQqx$)?xJNF$aN(s3k5%Op%2V=R@)`Nuh4_y@KI#3+h0hFM
zyYR+^w{#isJ>{JX$^X+f;0Kj|ly?E;zws7WUtIXAl5Z~jM^D0~k_ltn$Tm+qP@~VZ
z4GuR_xN+HyD{iE8<0m&FZbaQk<wj~Z8oJTQjWlkgbt9h}`Q3O}J|>+Ml#5C4#>Lb6
z!bkLd&l@thk&)wPawD@FS=798x{+0RHaD`<bEqUo8*MRixsjVm9x|`$ZILUkfEz!%
zksu4)!#HP_z973w{uEcpjl%RIZj^MRlp96aEJhY5OOVOF{@ALe*^G7L7mCbR=SCU&
z{_@(+)vMg#MjSm}CErFH%DPd`tvz$Ryc<=SS75UuS&6JnRw0d~)TdjmujWQ|H)?RI
zx@1i?axF@2H|nS){;alB>akg$Y#>8X8oTkU8(rP#CL+&{cjHetTDtLXMBju3zq`?t
z(v19rY);CUE!;@DUt80^R3gjP%8k};v{6Y%N?Wp>8|^6_RBzfY=tS?VlE2;PLVwP`
zBzJeC2ak;|>0^4z5C3ii-1u<W(A$kZZaCFceJN%)`ce9;e1IE?bdyTf>$Km;Eo@rd
zu&LbchC_K57+iEW=~21Y4IkaFk~!UtLFFMg!phediW%s}AUC$TvE7ZqZVYi_wi|QY
z80y9_+2#lJvsgUbjmeY|YTA*MQErTOV+?&PIl+x_s%AVTex7k6Ws=I}S@yDaQ{0%!
zWEwf0oI%bc)A29%ojT~{aGEO{9EN6_^~>Cle=g5+<4$_Rd~$&s3n`1p#pDulDJhk*
z$CtaY!VMW=r5hV4t4K*!yRk<3S~u1yU++fqc}6MN$mD-2-$dE$#umy}mA9?0-{Hni
zH;%b++>Kps>~`ab8%O1I?y8Nm$Bp_0;^i3L%OiOox!;Wgl!N3UQfdynv3|B*Bypax
zL$!DreA0XU2{~wo>rT3HN;dmEqxj_Q`bV!ToaX6phLrQ-EajXV=T&lna?y=TDv>3*
z>c%y>$as+5gX?bGaO1rkx3boI^fzVGxpCKxTW;KTLq4K#d!(^U+KMu}dv5&W#xt(9
z3?jw%S@3{-NJ{-9Hy$g0;>J_u|GH7+mQD&}gFNRTFUXf}yrR4&-;i&~ccj$k$`b$4
zjZbpL_TVQEKD+V7jjwKebEEHhgB&WdqkE>U_#e-{cSrPne${_{ZAjvQFvf$V6!Byp
zBv%d(QYgP~G^Fw%wFhZDNb7-pq(MfIE3ll8HM<(qc_0PyfBEzt<a}e0R|XF<(le2n
zRi4FztjdqnH0BWZpqU4Mc#zA3+#ZziAl8FC9_00)s0Zn*#{Fy5=ks8hUmxvm6wmKL
z0S`pv^)scQ2Zbnw$s*+Hd0O$7u&$T~#XY$8N?(F3NlLSn2c_x1kUEv0nrGB|VDO;6
z2Ms)sqbtsXN*>6;_H>>x-h%`WM9PxoNNJX*RPdl8MUH9-Ws=GsRPn&*K~;`Wi>yXU
zZ*>o9&}*vXeRpGRdL6PZSx@y&eO=+TC!wJ%TY-4PYkeaR<Q=my`70^S-zZHy_?^;J
z<x=0=gBBjN@}RW`e|pf;1GxnK<$)X<a{SaOQ%QEH@oR;)6OC<T8%FePJ!mJJrJHs(
z$uT1%$Vu1UgZ#^5JCGec=tSvE{!MlvrKYRw!Pa__9v<}cU{3^lBk1KpZx03sFeHFJ
z9`yAfn-AH2=;uLy5Au1D--`jVz8>81;I0QI56m7M@!+Tj77wf*tngr^2Lo;KHV;O5
z<ddkdd*JZE>4D3m{h&421Gfhr4?=8uNy&pA_~?Gw9W!+Sx;!UKy0BRLRW7V5Bb2Dj
zg)&Ixspf0f=OG>pWipH$PL3c)l3I;9evAiWJ(%x7Dx>zh$v6)ts^0OG3FNlyNhf(Q
z*@Gz_Ol2~goJLM3H(idKL77R)XtOB0&GB<6bIEz+_ir05@L(aEi^#<u?5(V==@K@V
zlG0p8Sx(CKS>?fM4|aL5TekUb-5Tbb=xfP!9;~NqAUBf#BZD21$|RdT@?q)tEu_d+
z$~F(St7Hddrw8Tt=%hd<Ic$pG<H3a^+Ai4Z!9LD(KPkxp%0UkfQ4Xs-zd8Px2gf})
z>A@+Fd}1^Hge-sdq_Ry~n&W3@Go1FI*nHz<4>G5U>#$pQh7+Fk;2h<=8s`G#q6e2K
z>HBIw5y^MHuE<5;a@<w&8hPD=8x+ZJdT>kmZOU9*{5=o;@!*>W|H%byhwi=yFFknW
z!2=H-da(R-+#?Ta&Nt>b75mtOG2h~zkRngzbfZ5bpOY_CZ=rK>9p@Wgd+^4Cw;lxM
z8_S-KD|}b?POeVN4YTJP#ov1%{NTYyiufnWXYz|&##Mf2No*1?V!X)YMP@IenaU*f
zqH;}RMlX_ivHgP~xtC{z7bz$yy+})u&GM5MspzT6G%A1050j^3GrboXDDA3i<Gib=
zEp4iMv01!wJ6!y=RM%pvb~<G9;>Bt0*Ou&F<Y0YHG8dVf%tPiSrE=?hV*#%`1OzL*
zSm{MUFA90l%ZuJ#6!xNs7j?X->qSv7ig{7niz^qjpPU=#HWc@wgcoxA-;!RG^P;>L
zrMxKZ#V-sEr1a{%C_|4W^(sHIG*)`!yogsxf){0#Pg$VNr2-ey=tV_JC9*PEh5UX;
z+^Sww^P)NvnW}~t_up$9p{7b|d9fw8b_B|;gEw8%)$^jh7w<nL`O}LAUdX!q#z`8g
z`bHAce<h_rrj;?9c=0<c#hZH3O!*&PG^e*viQGQArR*0@-pY#(l-6V$QU+}6MLT+X
z^8fF0+|i3pOgek<w-;SheRnUq(z~gocu(!GTRqt9DO(_mc9+pUUi9^1oEPK0=;uX$
zFNSzARIdMC{JSOABL`ASeIh3@sd3C+SiG=$VPoP{x!ntg@*_*Njo@O_E!)$hU0CGh
z^}^?cpLxKG2qj2{$S^6DXP;`nBu3dBNDlI1u<A{)8mbO34D&)}G>gwi81BUg_KqaS
zq=*?s8STXw%2-myl-p2G@M5AD)4Z52N9^j@qvhfzv3D{#g`BGDYxP5&Px={NG_@KQ
zc=73U>`X6aQN(9^F^4{voJY=Ay>GY2F64xZ$i<|Lv&4&~%9nYuoGvROU8}rU?Zsy=
zzId_5i?v={^5U`=>%3U+#YssTV*{6M54lk-=l{Ie<i%z-w|KEb<y*bjM&GUy<2LPl
z*~#WEFLtZ^>~6jGAb2@LC&upcV!sy$yg10FBuBkCr2H`Dh+GFU8>CBK$GkYs@Pw+7
z+Yvl<>rTm`H8|lkd4@de#W{-P=e@W<zo?S5gY{RuxGEdatKA~tnitpQI+;K2l@~X>
zxaq|cF6}L~%=f*xO~0d(yI$O*|D%%9@x}-AhvXyjvFiQ4S)R%PFLPul_b!m_^IR^E
zY`!G-Zs5C;n(B=gZ|Uz;@}Ba+i;pUi8!vpRVU(LEeD&g+tc4GmeYm_b_CGIvqKGH)
zAx3#pACf6g?gNyk@X3=tv<WSP6NIT$p4x{r^t5C;GCi4r%t*>4vPN>>hAcj9OJ?<H
zw{(cx9(Q%VQJOh?$mv5PKN|ay%ZJ=PEcaoB4|#mZ>%*@;{N_VGAM*R4_rc&p0Uv($
zVT>&%)(2-nLqQ*QZPAtRX>T-zd?-vQLP}E9hhp^N<fu&AHk4OMA4;j3(mwn`*O6t&
z4(d~L&yr~u=QtlK`%uM)cpnm2P?oIVLph4nl&5ritsUDHeW=7{?jhP7%O%$veW>lj
zao#?+st?uFRMjape5gsOMc!zjO;yK-x@^`X8~ae7B3%tA4Q0Dg&IGlK)sQaQR84&N
z-G{Ib5g(fR(9DM(KJ?^P`oo73)eIedXzoJ`PWYz}Z73~CnfxzGD<4{`<V&13Y+E1N
zF=<bBP`#-up%aIdkvmiVCcBVb$!<P$r$~+5rnQ$3y*ath2YI@BAG+CxzHCa;&xii>
z0V+wPn0%0@NK1h%kHrV84>nF~_rXPRkWTWK>_5IY>Soj9gO?)Hrn#*5(*tCX45{9o
zoAgm1vW(D=^kI}7`TKPPeHf&A2UCXlFqATk98QiPWqi5ws&KRqlYE%Wa11$?9OuJ$
z$^>#EDfNe*B$+~=<-=^sR3D~MrmLD6l$k!ftEe6D@|weB5jod~d8%?gWdXU+hrNGk
zZ-|T8T%u~0QkKb7yt(K~A6EJB*oP-RtoC7z4<~&%B}dV_Bx`+G=fip*?yrfh*GBu-
z(gq(IkI>7lYd6Xu9A}dcJABwl-|WK{AKdx0BWEj<Z9Z(LNRlU4+%6w>`*1`hdwe)R
z-%IXO`F<Zd7uPoCL6sb$9QNT`5AF8L@;b`o7<t@>6RJ|~XM37{g^PVg<!603r~JGR
z7nEP5T#`$cN^0(j-8sT=mCb8DT=(Gy{U&+Whg+1}<Q;M&AGLhXhks<IOk@ck`tX2m
z<z4z8(NppGeCor$KBV#^wI9!XcrF*Z4Ek>}qtE&mK78<Deh=-Zrk9-L75UnSH<Y*J
zJMulLRW{Og^hX~)`S6+H7azW=-kJR3cF%`Nrhkk5&xa&_?I?=zBdH(B=s%GXCiesM
z6l6-3znO20=ktlu_>tC+a(<NeBb^`V{V3qa&wkX|ugl;^c0Y2^Gy0K<B6(&%vMA3=
z$>v9fc{=IJ$?@}%xyamP9#WPkuODYOYloA(@-y7{BuPO(3i%PsW??_%nf3B2Nh#t-
zQA#ngI9Y;}n%`C!N+~Z*`Na<%rHsli^I6+^4sIah$ape=EbGUiMcN`&@S~z1|D`N*
zb-2C~yCkeZsq9A;l^7{i{isH%uJRieeNE-H{HQG($B(*98mPRUANA=ac>*@1Ur3^D
zlVAP#&5tX7T=k=gAHVxC#gD0eH1(sIA6@<E=Eom?H1|WkGt$wIV@dQa{AlOLU(NM$
zx6(iT+C58KN|VxxY)!Ty+mcc<p@;VF)}FKOAY1snHurNU^_`e>CjTb8kahkS)7_6A
zehl%;{X)^xk6wPfJE;%((c6zctnv8Kmtyk6OzB7VCkK#;ehlJ0F=TcYCJxf-hm9h+
z-H)C8kAstmOXY6aCj35{)OZ>CNIw}MgZ>}i0}8V#l@UtRkAW%~L>cVItvx@E!(o1m
z^+UehCiTPp7@;ah`Z0<=S|wvB<@oKDaej<va{@V$oJ7hvll|CQNjod2`7zy({eB$q
zV}>6yrNEC(e$4VC@v(lDA5Z7%XZtaS6V4@<lJoqS@5ciALO&K$WWYs~+9R}uUn1+v
zFV`$ny~`;p$d!I{;g*zHtoCCK=Ow;YP7USj{n$X?sFHCDwe7IkkL_|O?$=I=EwU~g
za2q+Ax0KvLm)@O}U4HDQ>>>B6-hGtfP2vyADdxv%KhDTW@l==Vf4VR4^@nAf3^5!b
zkIL~(k>t1^CzPM`<CJna&gCm<a--U_a%$Yvmh+q+=heI}P%ip$iE>%xp|LU7{J1Ws
zb^w(ExZ%f5Khgw{Hh^2Q0WZgW_T!5mxBa-|$6Y_}`SC^$)Qg6HIKpG8q1-1QkPpd6
za>1;r?TDvrioEdSU**sIcut>rPOEvT@>hPmR_@OhBQtu-*}e1QJw=iaetcB^$&c_Y
zgM>23S3lYt<7`&lH@Qr4kR$=52=Mw(CMA=R$w`nht=!&Lm@<H$RFaC4I)D#6PSORC
zK7jlI6bL|enS9+cLjV~A$i%W7WM(yOmH@KSvys`!@831cNzX;*CS|^P0?13xr;^|}
z{m%gu44_N^u>llfUPAR24xotgqLgA}@c>5e`f=u#44@Rl(&R6sj{N>z7(HF)UM>Iw
zJx(R@l!O4ve$T6DW0qIF6$0{Ha_y(_$^ldfAZLZ79Re^05N@RZHGtm&s2b4joGb;^
z0;nE9jR0zL+PZ3lS^?Ci*CD&{+Ep)r`T;ahHH`vjsJujyn8x()_bYC)Oy4AcmH{kU
zq5ECcG!3Ac@;@le1870{Q{`v)f7QR(Y!yIjN*l5**^X>a%JR#Ni#rC;DS*xa{2hQJ
z04KY;1kfvh-T`!Fvzw~#PU#UqPs;Z_-iO{Vfc^pWrOQ_xWpH^7VAB#nBE>{XZl?UZ
zCdNv!k#=$l@5|&0XxGLdDdMJhNN)f>mHR1y0Q{E?QWjEqIDiN}N)99ksosN=bVCCe
z7Qm_yR);V=fDy9CgD4xs$N)wKup@w-a-;<?CV<retdUb=hHh*C^8%P3z&JJ~86Uue
z044@7NhLD^n5=vXWoiJ^R5G2?_;Hn)Dw#!@P0k_b${Dx7D1$EuV4*Bw0CMNjBp2d3
zhZ7bBaPVoYycP$rguYZI%K}(VUqP-^x!l}!-`6;~@95e9<OZ;%Vc14lN3IWG14X(v
z%EqT}A~%y;$gQN*lv!YuJJ4>I<vbAAV1aR00K4V94kBL=dji-Sz&`=pm-FRX+`a%#
z2XH2U{Q(@{ZaqjIB@dB@$s++&IHMgZ@;Vm4afT<zljJF~Ury~e!LtFJV>7xyyPBP+
z-wxnH02c$e#HQre0=P`SqLQn!yR-i|Ca=r80P~yVEmiaP0^=R!cPaM*c-&I^Md?8R
z4+D54O_|qnU9qYObGQIc<cJC&CWxd#{2Rct06ufV=W_fkFuo;4UIg%x{z@gUDQ^O3
zTO&aV-l_aO<wF1;DW6nc_^<dc9QmtS!fyfmM^6&euKzvwS><FwBxf^Q5TK+cr62_*
zCHWJXDu@ubYMLO@29b_oCNe#lfy_wC2-msFnS;o}B&*6d{1u;_o`cM(@?4bMLF7@%
z;cIdEWnP^OC4(pxM1dfF4&t9Xv657|9#=33VWA)jQ;Lv9$zo)2vIHrW9~Kx(2k{|E
zeE#ck<*vnv{KBS=EJMbUdeT6~1rbk?dfAWVf+!!v?I7+1Q6Y$mL97fy?)_LPh{{2D
zg7C`hf-nZrJBU6(R1Kn95WfY{B#7!kc_duCyy^u}gI<%YMb;+kkabC^tWd-ttRF-J
zCJj~Ih|)NSUsW=tSN!imH07r2LN*KHuOM0l@dumD)mCjm`7?-?DydyUdv9vZW(TrO
z5N%a&yCB-ryUox}x{fOE6hvqG-zs^Qs2%)WgXqSjyUKe6(UaawCB@e1`UWv!w@zLb
z*&2Q0`vuXTGJupMF$fdgOkQc5R6?s7!A7x@jv$;A7wINtNwO?7`hxHWF)E1BK?H)h
z-ZS3bH~!*rT~H2YmW9b7WQ2?cF_1Ed98Ah+jz{{T^kFI)P8mUt3_@<iA!TEN7#qYK
zhT~M_v>?XI`m#AOh)F8H%dconW^)QTHHdR{v@=v*(}S3yDrZt=k+XyNz9r`dQD&iW
z9yvdV1wkyNFD0dGQ4oviOH|Tep>dh=<w2}a-hH8QRS>I#SQEtBAdUoaG>COUZ01hi
z62yAWdIPzU{2#fA-26R}KShp<*&4()Hn)>|gV;gYN$w(L?RLw%fbx@l;`aryUyj(&
zkI(5HVAnzNP!NYz<<DQVKLO?H8GkH@<3SYd8-Idb=Yu%O<|$J0)08tooTZ#o`N|&g
z7lOFRsV<S%$;;%GAg)rbkutCETi^zpH-orExy>DSH;8+3c8Aa;gn#5Z5X6@tz6SAt
zH4lS$6vPSn1H~%+;~?}Kw6pA05KrjRd@An(^k*u0PI(c;OO=EcYVTaHIpCWh-csI?
z@8!Bg`AB{yKgm_-qqd2*tk&MYzRC3=h-@Kb4`~P0!P$l+l$a2bQj&#`DumSZ<RO3}
zl_^3<N&iVD^K$6ZD9=bq8$vpjqz@s3@>)^tlk=I_%p5`%m1m`_C=-_>1bKpX`4B3E
zkTZl_A><ArPY6XrC>BCqRbMcKeDwS(DG<WX%CkMt{zzCTgu*H*LaA3drZ}Z^2)|HD
zgiun|l%m9UhmN8T!4N_jdMtV5nRW!m(aVzYWCAH&3%N(ih4B5E-4#Qq6hcGxRt}-W
z9DNP43Moxv2vzCT$m%M8zCc$~d94s?hfs&jx*^o3)Kk5>kfDL{*SqzN)RHu&{7Tx^
z>V6NQX$YYZ!XY#Z;g1kHhR`Xb9eB-IljN?Ug_`!y5L$-hbkmNCR%BbUbqH-JpKAWN
z3bhNNJ(CWk)F*vz=p4e|A-F<FUo5VRY>L;~vE7@}HH2=I?qm;A3VKp{g^=~2UYdPE
z=o>;mHKvKupBxZEBBg`z$1<2hu!LY`Xd@jV*eNn!ImMjHAIOJ!m3u<)D))uprw7QO
z%J(lcMnZ^&FfoKlAq))Ra7O*85MDLa)@V=&gIPI5)ej9}nEVP5!U!fK$+Ub<hwHR<
z#*J2$V<=<EaUqPSOdw;LXqA&gxbf03JA_{cCY*^TObJ0aHH2xD>7*nxLYPUPrIK_N
zjB`Sm8^SzJE0Zq?VZQPOAuLqBh_X0@Q!8SnY^lnZQI?0Wg0fQOH;?Jpgs?V*f5NyQ
z#<~#JhtMjF)?sW2VPgniLij4H5W=PqZijFugv}vr3E^xA=R(*T!Zxnpu@JV0up@*c
zZ0;oYle<V+{oNt#q3<R4sk}=e?Yus~=D`pSsr)eI;pv#8l<m2G{Cs|#%@ZM<q?{s8
zlV`}~N3_cGbbEsSS_l{D5?&19lJd(TT%lhjxADoFQh!}`lN@Xb`kUk}GTK=$$=wj{
z$+imNzU<%sV&z|xo-YRZGkfyWx($CA9)$2PghwGf4&g1we4^&{B7~>(f5~U$bJe@x
zx^@YADF>lSUQ^zX<M^$vcOkrI^Mk7S7{Vv|XO%o!r27`ae<73)L!Kp<B#f9a%7hUc
zM$#~ng^@FiTwx>+17TzfYv)>uFj9t*DU8fv{KO<JDP5^3sl!M^`TqYS$<wi!K8y^M
zjHKlEifDg>%ED&WFmCa$){=ae?96j;!6eMhX2CEDQSy*^$$VktrxYN6CS{Tvybc#;
zvt$@WC`HL)WO1?tDfRMi#8S#jQ+^3UrxN+kLScEXt4k;U1k^J$gb_!HS2YQgvShh1
z=4Q~2s|sOMWKt=NI$_kMS0<~3VGN@xy&73FjOvsc<o|DzT5Q%1<1?RvSC35@{Le7z
zhtVL6hD?47qY0%^7>y~vlCAh3sNd-_)gNIrr8iT_-Za{xHfOU1DbI0}q-7X?vANEz
z6|@PXt*loV^TKEsM*A@QVFbeH5Jtx^EMZh$5Zft?MCf~jwdY`VR^$Io=@Ld)N;k4Q
z`TconGI-B0dWF%OVV^JtP|hcb=}YMsMt_w^vAh!5G=*WNBs-}sVTV&XE1NdbPCCMH
zhT)>SNpBb)$`GFWGNCVwjK{SRf?<ThSl+A3lrX|!M8X&o#?39dDC?zQ7-e7>gH$s3
z`%qyFRf+s}RVs(GIU<aaDjyZbXnKml+U6b0k!A34l<{FqP|3tFCebIWB>Q09)G*G!
z(Ei&pEsW`E%o&uKVR^LNk9Wh_lsTl_@>CA&`C+V=OLQ0u!dNKlzCnL4y<Yx{y(o;u
zVJrz_shW0G7|ZC($rUPJN%^=cW;JCExmNYAqsWsqH;RODIE*7<d>o|v;xcUFQL#CU
zEv(r}?ha!cWjiTrv?Gk2^j#{6p4RW7?+s&L82eRzFpLBAhkk8;$?H%UYxw`iqcY!b
zhVx-u2;*27$60oQJWHM=Pm!m|Ghwt$rHylr&F^QNY_W@B+>ndLe(kbwDU8eXE96!3
z8hM?Rnyzi)g*W9orjpx~JLFyR9#0J^dl1G$dDD!bO$3j^cpQd40z(8(!gwlI*9bC4
z@NXE;!gwbqa;7qJKbhxY^n0iua3S^um-8hli~TB$*UH~e-pV9=mf!m@KFD4O;}i2V
z5qu8gOBg94KaP{Ha-FAtW5Iu95+*UKX60#Z3nybUISH~x#iS`IKar`()a3M5+V)IK
z7fDA+A3+96MpEuMBVAb{$Qr?#Y%xU`W|NJOS9?>)9zhN!ImrTKE;4rnc_PRgK|VI6
zIDZ6Vr~Nn*)|ZU=nR!975LuW^FeaB`xvfyq2#Q5eoMDLwbd-{0DN@QxNAQdC*)?Ly
zD37HaEmSEkg7^rkMNmD0gb2z;P)?RAPt1sh`a<`0t3Su4J!L2#fw+uTA%cpWu#y_5
zGNnocMoLwcTej<Z|Be>7lGKQxW(2h&sLifFBB(=Y9MSI7RF_^)O;taF2Fe>!8b$E_
zi#F?DS^pc^g#4XsO3F~pD2Fa<SC!_RwnYSgs?l0f{vunEQw=d~BWM@Fzz7CK&_053
zGj%=X1N;$mh@c~DiWZIQB;F;yGx;|u%`TL#5p+{Y_Xv6@|L}KwZyDrctXFpNB4Zy}
zjJ1Zo5%i0oe*^;}uygQ4QkK>f!7hvTo2;3Mg|w13RkI^eD{!#sBwZ1>DIQhxS^f$X
z!Hn0j{s<N}OpsTA5{w|El5hkOdQ>Hq78wUeFeHNMGHnEMqw=BTv<QaDCZ&%c$44-d
zGKw5cO8pqhSlNIok$am<KH+<loD{)i)jK7Esmh<#tJrpt(LB*GGlE$Wtd^4~0_P&5
zJo09C1al&ou*f(!f+Z0Qj@8d&Q<C`+ETAtW7m<rq@0o=<DP9`EGEODFoU$T<m6TN~
z&vi0(Z3OEgSi8t5k0_F5Ue5*F8o>t2Mzx&(i(nIdGr2|O@;o4!YFh-`RkDM!Q}!uk
zx5^U=>i0#kUrw$;$TtWFA~+a9l7WaBh(i$^j-YE4-J&=W!O;i`Mo}n=V-XyWAXya2
zqc{=4$p{|Hr8R<65uA=d9zA(Kf-~Iv^5n`Zl(P|>Q^&*k2rfi$k<CjH<WH~tx^Y?c
zwjHBgYOY3bErRO|Z;*E)xJkK1-X>e{AL~+om(6?RKXN5(tX+X0$c|fSc*yV(*)zR1
z_*1#~NAOP0vbDOV7xc5jx=rtO&mwp(8}q&9FCutJe?`6~-;i%fsX6$@Ad|o6ARi+5
zNRi}|ybDC|h0U+BC8OG0<n@ioe{vL^(V8*Lld9g6i;RdOMHH!{NE6lm&z>@hpQ1<=
z#g@GB^1oMklBs;jSDvl;cAG)|v7R=HbWx;_;^;(Oo&V`GMDcmQE;pHxlxC(VGSjn=
zS)<4nMRwJjGm0F_Th7(zqRVYvWx_o4yktHyKUskMnUu0>HBdN;B2hGrqFEG0qbL?d
zoha%?kujN}coeIr>C2KOq9_^F_DHEHN>hFz4N>SQ(p4skSh`*%RZD3HMjV^*Q6x}`
z)zro*kik$cit<rZh-weOtw>gjq7p@t%28CI8_B9F@6gy#U3rZtYAUZ4MQ!>-qxLx6
zZ>h@Ei)tS#_&tjHQ5=|SkXHjr!zdb28k4`0zmZKysVq58FOPp6^+Eqf6wRaP7)7V3
z+%eM7B8oqwXc@)rMX~a~>59Gd+ZOBpibD3OyjoFOlWn4COKC^8C#9wXrS3XI=P3S;
zYM<)q5{1R6|CYIuEO`^FUgjP!#C4CNM-=O$*bqg}D0)RPIf^M!^p2uW6y7L&QS^<X
zUljHz98nBuXpkHDJe{xWAH{$u61k~Oq$LV7MK*f|{&CnEg-s<-78yrR)~!lfQU4|0
z$<Rf*qwr7~71aI@=#L^GM};TJs3?L_6i-^_o2zW<#l}z+;V2@k97;yXfuu}0D2l<#
zheYv(AFGgjSQNumJ|c>dblVl}>~^iwjgCS%h8!EkIEp0WDHEcYNSUN^xqZ#lD5gcR
zD2l~V$aa`6=U@~wqqtzx6<utMd91I!*f=YSF~j1Q{m(Ev3gH}bZWQw<lFX+pAQwh)
zFnxlAOQKjBMeaE<>*VZc9zRyEFZ(WjSrp5o5Ruo4C|1%}sbqB&Ym~2z;-Vo=%95Qm
z6w74TC~F$U!zdm_u_=npas`g!q+BJU*eX}%D2~f<d&RIVidj9%@1t*zVh3d>xr>yV
z-IP61>{ZE*=W+X^Xwb|cuLG2W<RS8~ybGw_qZHXt4-V_z7fd)^)$sOC+`f6Sr<mW2
zLi}`8{+@=j^mF8uD9%$ZkQd2Iq|{%I;%fzMkgH6tk=Mx^<kF={rB`<GE$;5y<eez)
zQtpw``%e`2=?_$LHCBJ|nC`KhJ6yacvWufIwlplf8~3lAp8v!>BcGEm$d{yay^7*B
z{f$cUJ<`96;(ZkPhsA%0qSO_Ar^UvhpW{D9A^b#sCcnrUQ6&Es#ed4De~eE$5XlB&
z=s*k`h~xu-fv7eR)dwQQK%^XqVgpfpAbuK%R0EN1AhHic>VZfz5LpM}<yl?Yf%reB
z&H{Rh@_*Za+(>tWq=+EP)|X~MknWalq!EymP-?q-zkoE--JODTr+_rl-SPj-&F^{7
zd(NEeT+jV{W_EUVX0|5eCcGl$zE8?T&rD_^vyxJf&5G>Gb5M#b*0=v?8u?D2$BMjG
z6tzO`wJJB~tv6kl&x)}NEcr>10#+1M{uQMVS=fpqDj#uPSBz6APJT_6Amt{uGUacr
zC}oAtin3P7#Z^jM@tqZAtXS<c%cWfgPSur}oFrFY$<W52x58kB(Fzlvpj-#$_D$Wv
zn>v}>D%W&oD-sK|e_@iWC};iOcdPPNRIs9=6_uD&B`d4mDpnl0r@ehxm{e2wh6R=y
zGBZ|mwW6C9KUh)AidI&%wxYHbb*yN7-qg~Ha|<l57Fg<9wVTk%P>)idY+yx0D;m)o
zThWZtgltMmy_^WyoZdnuFGrZKjx^_3Xpx)WwXs5O75AeRa{IhOCCzf0YFjJXSt0kQ
zYfp9{JCdEq&SV!-%JL60cekR46(g+}Wkt`L#-3ITv|^AIz1aMT>`nF|`;t=GkJ8_Y
z0V>J7()inb)6Z6%jT_(JH;E6nVu%$YL&;yrVWfn^DI;VFyL8g*{lGNZiq09zI;{BB
z3Tcj!HH0#boMgp#igf)(`JJ3##YC0&*sPb{$!t!s!m4tc6?XbhLyS^zth+g553}0}
zkF3vDT(ZJzh0ltWR;;qZZ$-e0=~nz<MbL_n6=5s-cQKE6q{kIqnT3`s0i84>45L=W
zC~;EqgcZrkr&=*hxhbTZVZ}@<W?3;?*8fiCo1M+$?&@T+jTc(l1a)()sB&C4mz-zC
zd@KH>OSr^}1@wjFB66|nt=rWsHA~rCMlL5;$hvV)Cta(pSYyR8D~?;S){1pj?30DF
z&@y15WxW;K<+&fwF9_&1$fE>w8_7-NW^xO;)rxHtshLvCw1Z>qBxUqnl-=YWaxeLp
ztOK3QQXmhvpAY&sdBBQ;ltZNS9;O_z;wWW)XS0NICF&DaoV21}NGHjWyE>6mY@R01
z$ofW+{G1i%m0zG-v|>r>veI?giYrz;x8j8r|5|a?iicJ_vf`Q**R8l=#Z7soCY77f
z$lR;Cu}n!*-8#lwR#cm%Yf{B>TlSev%y&qU|E#!6zenCDAE@4qZsTLw`B?E(wpm$Y
zPnjk>GU;}hXD+nJiNNKK=}(k0&3UMQX~iom-dgcacGqKdujTbBZG2;eoX$D<ntog{
zV~cHu_f~wcB4c*rm{oc?<MN{wZjUjO4WFz?VM9tA<fOkZ$yDSQq=cy{up!N7`KXsr
zhO}&^vmw2z%s|O#)6VFWg3LB#u_3EXd!XE8Hd30|ZOB2-N#;^{uYG#y&0|AemE@!3
zx1oSadapMYvZ1gI&FyGmM-dx}+OXV)6*d&Jp}6EWw6Ni88%o$v&4%hWd}BjNn|35d
z6&nupH-Bq`(FPN}6j|Da?<mq+#s(d|EU70As#gw8DYwwLX{XU_!;=2yBzeR?bmd5q
z@{|f>MH?!qys{0BQD!NqYJ<fFxiw7v0ou)B(+@I#Z$k|m8r#sshMG3~V8gbBmRdHf
zn`{_%RsYvzQ=1dI+VT`G=q@j`)UiQW*M@o&@%oeoHZ-I(Qn`%P)P}kzjLmFFvB=VB
zzpnFH-Gw)%4o7t@ZD?h~AM#?^(AtJJHcYT#q76UV(AI{ZZ5V7rI~$Tq8+yxvvL>~+
z;m#*x2OBz4I@!>jB4KA6y3o6l-BiA;h^Ys?r%HO+@RM@+`@7yVeIFb8$`g5}m!Y2x
z{pkZ#GLSOJCYR>cNx_Y*hVs7|hS)IFhF@$5+&7%bX!_NLVf5kT2vWL6+AvD_Xd6y0
zH+-%iW5ZY*WW;ggcv70b+3>sa6Mf1}vdN`}5s@Xc$vDM^O|$hL(n?CxW`mvXP>GY`
zl2ueCtydVm%6$|+8L%Np36Wt^rr9oPjN0J6ZIZ)6Vm1ilHY6y?q$E>qn5KNX4bMtw
z#WQV~C99$hp<9O8Hmv-h&r#Jh$A(m2nksEGh|iU6t*U7rIp2mqDGSJj<RWr0DV5#d
z8<yIzOrHKOot##DVwY~#I{iu;R@so<jvRKZwqcD8cWt<5!&+HU<@XsI_SvxBhFW!#
z<Z1&OWUD`6dfBX!_(pkxvK3s{$*|dmEjDbGHC!dTDBEq=LD{MD!iy}smG7}(uX4FS
z!G0SmM2!F1aMgytWvjH|pbdv?IM4hrd6GOrO7T(3G4i+#CnzP0R+26mPT6pp$r<u2
zDfu~hH9zV^E~w<94gb(Dk(bFUs`u1!Q|5VwjuzuJ8=4-|%W$1?gS<)Jvf(!64*4G`
zl{Fff<pK!zZTMirM;jj4@X&^E<0Sbk{h+7ukt98hk8OBj!&7<P*?dhtCtr{+NvV7#
zOZb6a<PDRz<U8`csyW=#_(}E*b{yNL%VtMPJ95`CrL)6%!nEzQK9wC`*ddad1eu2X
zl9aBrcF4smMACCC88L$$8I@<EWVRy<C9BG1d6v#qsrPJiPCIhhQNfOi^3XCVJKB#k
zer-oyJM!6)-;M%y$VH^r&)4an8Ra_C-REmpY5wNCp`aaK*&!lBAv+4wi>Rci9mVLy
zRnp9BC?Re~Njtu^<66a}#UW!UJ2q_88SL1zRact+9VuZMiq4L*6urugqYYAQw8O-)
z%%mhqc9f%+SINtRhDvr+w&MpoYS~eRPvo})#<*8km2M%ck@6g?Q@$r_kTvbNH!YQP
z)wZLK9Zl_MX2;JVW1Bs?x^}Esq^n1Y)TcDCqamdc*_doXN=@22hJB5-#U(RVWt_34
z9j)v*XvZNtTHDdaj_G#%VaJblw6$Z59b@fiCohK`gXBT&=wL@jJ9^2ga#9!TZT#ng
zzLVr1b)CsBq%^zQ(T(1n>_PTay=TYkp7lxk$&RegO}*{tLlN&w>1RiOl?<?Bpz;&X
zOoQzhV#lv`R9$4rTh%huj_N7QGBx2Zb_`>4I5~nGNlNc1J4VxG-lW-nkp<Uv<LnqO
ztD+q)JASj{cRRWt(M^!)FS4ZVW6UwzoNb|bq8)XOrb%|~bJ}E5WQrYD<u*I)bcad?
zpV76>P}Ob6G+Cri_2M2oymt7cnW3tmjM@>PND{OoL=Te@mB$uYV#?!`gdNE$nJTYT
zu_PJ2?Gk<E5xN<6%(P>N9Xsu4Fw;28j>UE?u>)<*v+bB8Pp!3it{qz!S!9@J$9(#q
zDp^2TNG`HN4qTVArFJZ{W4#>%W*KFg@0aQ>#*E8lMY2O=CAo@}=4w0E(ASddRDS!h
zK}O%eiEJb{k(<da@`x0v*=EOf<>zneciFMqj(v9Qw`)gq@3CXA9e>%O&Bh{&%unK^
zP7V~$a!^;xVEo&T19sGCYnEL2Vv$8gIc&!fJ3iX+$&RD4#@g|~j)!&}x1(mNvghnL
zZ^sEcPTH|3u6yn_muhW3WyfhdL}WN)$65N=R$B9dJR{i>?YM8pKeCT{X+HVE*!79&
zk{y@rxFWlP59XVs$iI}UvWHR0bvte-PuiIzHMiKjZO0wTf8<?NGpLE-@NixCJ{6==
zE{Ofej>mR9mq(wglZ$UZvE!*7&+HIi)xtc-V3HpI%_WnD84NF2^OAf;z9!$0GWuIP
z-YI`?#|P!|n@<V{QaX^sft(Jca^MRGvN({{fg|}%sU3g=X&ji`(tLP;QMbqRr9-<?
zck^?`v<^s9hI9_3r)N+}Mh7w}&rI3y*p$tI=uKUA2lR_A*%w>#w9poBo|48~4&-*A
zm;=Qf$ioLM;y_Uc@;XrFtvR0qD{t!ZlLbg=7Ife%dLgo~%4^EcVvkMov*ef4%`J)>
z8eP*jTx|K;q5bG8KUB(tmUQ4-2Nur2q8TXVKxqfghjAf{@8q!@sNzFaA9N0sb>O)R
zFI><&U~s_hgu@A=115Q<PGoSx>_CzO%N$tlKsg7>JJ7{}t`1aiprQjc9H{9)B?oE;
z%jGC<Syj&<Qkl&vWL45aR&$^_MQXlx;L3BO$PW(fB;4k*#O51^p4Qir0tf0iAYRvj
zMwEJFeNyrUl!gv${M#VS#%wkro2r^-4)j@Uk=_=Za!UtVInbIe57eI0#(^IxZB^dR
z0of@@fealS=*Ya2>g`OC%kgz{pu1E$<i|!s4+nZWFj|(p1HBwro41k-Lml|Zf!=KP
zabO^&FWHamPfFzghxTLd=dlJc{Fxj~4sjsg1C#Xr!sakin!_n092lvRQ4UO6Y>}?f
z84Y6`u*ocCG>mm%oCD+O(wwu{@|y#{vpIpB?2ucqX_Ycea$rDav&a;cSRLBQbduN|
zaLAKYdC&nD-R*$K0k6va4)~NmPoqsUz~(@w<{<~dY(`W~)B$5gqjbd`NI0;+ez{}^
zW;wK97saPCnMO`0{~%|OGi5zIsg=!kU=Bx_OD=R^9z`ZHpYkWUzyZ0WvxG7%a$qsT
zC8~0%EU|Z5*9zIb9JuJfKMt&NV6_8V9N6l>yAI}icTH>L#Y%5nORgi=lN-p5q!etT
zY<8f)C!I8t8W^`Z@RtMo9N6x_uEmxe<W6!IxtrYcIazGk>%h&$da2ycIXvpXG0NZM
z0rH>&hbS`Jhbc#-tkM7Oi*cOE83#_Nnv;}M4xCm=tE7}?>F3DvD!)J}_g%`;Su4wR
zVlO#xS+-UO{&nDmL;G9dDho1?)ID_I8vVKhH)Nja|B*6Rw;Z^w{EoIx{_ieAcOAIr
zz<qW-AYc8GvgJeVx8g?*xi_m$hQ|&(QT~+jO!ibNS=Q0;(t%eFyyoa1$T#F$@*Vk}
zl*u09N%S9O9dICp6DgfY<pi8a<HQ$EZGB5kid^K$+T(dD>z54ElKG9=A6x01@K)58
za7HIGIZ@Av`c7naB8wAcoX|Ou)rsN}OK~T@sh2XF6WN{Ul*yFCiQEN^`JKqgW-c-}
znTM2`yiVk!ubgd=W&tM(I`I`pEJ79{Wjci^Njr4nMV%=2|24mMY9EbcC?PYTyd>pY
zvXm30RsNk59dugpvKzXxPE>H>>SBxD3Avq_!Kq!WPX;5!B<}($Nphl`^72mX>}-~@
zicVB=qOue38W?1#L8;<IRh3wrsHVI+<$EWFZZ%19O*VfZYmv3dI;0fTrL>!3Y~Vyg
zCw_5am=lehXzWBUCthvWHIWx3rt9Q{9Ch5(iDpieXku>e#E+B~q$DjVt(<7Bk~S2%
zz@7BArMDy7lO4#8QvXydkjqJRc0$;N?CL}}N_Vmc*^`tS`IPdLtXh|Ky`88yQf`i^
z>*GXUC;GA3pZwX00hEENW{?wm(wCLu!73R-8R|q+uUYcpPK<EkH<_h@M&k(c$HkVB
z@*);7j3PxwQ+{<~3}q}ijvP-)joboKu2}oKQ@d{M1acxd$%)C7DWvpTDK;l&9MVbC
z>4Zzxc^B%t;C8~}#9b%u$-;NS=foB#wmRXL)p&_z>I(gQO2CPr6CrxoiDW0HIuT)0
z%A%AQ87C7?eClJCE*YjdF-uiWr~E<AAZI!uUyGz{wyK%q#9aD3GUsEH^vb6CrxOdD
zSjeq-(dW(FiN#JVabl?x%bZyAIUJ^2PFdx|3YDyM;&4ChggzNoGpxv)9j|p_ovK+-
z8ylRsa>%fe$tIO=rsNx+a+?#|o%q{{15WI4;`&Kbt0k7S*$g{bu#4PH?r~zT6Mxaa
zO08Wda35V{zieWBItQINBn!N;`S}L@VJD8T;4*oXJWU>R;y6XdJ>kSj<)@tT8@~2*
z&M-Oa#5pI<tKN%FTu}ad0d0@>51W@{#XhC&pRdU1vZGKnH=Veq{5s_Z**Zzvsorwp
zw(7k@`A>T+?WB_XPCRg;unR?87+uQnP<F^JeBr_)C(7<KJa*!V6HjH0)fwND&&cOa
zyr8@!-^k`qc}-TWZjgEz-pU?>N&Rn3()>XGNPZ$yxU?zDkWxPPF1CoIc46UGT^<)I
ze=@;^G;Dt9LMDoIrF9{l^7NDpE@Y%UtZk5j%=9cSWOX4MJtvu+%t6Wxp`=oVTx{lc
zA^6fLO}U3fUKjGYv^!tOke^b(g@Tl?R9?uX{q-ybMO`Q+v+6<>7mB+eYr=OfteUC&
z+66gJUxpHtZ^)7^d`l^%dP}<yS)`SfaY5%oS&l2CC&|*F8%QH*QoUvuEDLl}CPO(F
z%B#GB3l)`Da$!OXgA`PiVwwNW=Grdp!Xt8cOf?s>FEv&tMZTxhAZxntgUV~k?q!cj
z3gpJ1bzJD5##q+{IlM}KJZa!ULl?X*_*`h@LSq*O%IjFf(8PtNE_9^JmoNDfs+kKS
z&0T0gY3V{6iiE9PXsujsvhyRoE!mE2uX;Pk+F05sqjYkivkP5Za*tZwPcEEzq!a1t
zLN_Mj-CgLRyeFlX3s+X?rK>mV`;dLfeq?`ACN;o?QYUpHgIxGoe4lQx3*%hc9ht?4
zxG<FAFD?voVK`m#(JqXjk0eK_Ts}BS@2@V5QOQ_&iPMymP`(<Bci}e|es^hKQYMgA
za-s{9D3VWhVT$q_)eMr@T(G;~VCa-Rzv^|lv@f|*AcMz+i><Y9F@BdEpM#aMKFGT5
zLdb<_E=+f6dxMJ2&0!b5t8ZNY(h!kxC46a+Ax4Rl2^W%8K2=`ROqHbI4@u;3qa~Jw
zlo{kqauzw8oa4e=7v|CD%O>N(0=ir~T}B_c#IoC~$s!ka&(h1Vn6iXi>cTS0a@D)S
zg*&$mQnuQKH7-1L;h8*f7uLD(j|;EUn%2vD;=*1R{&H!*u55H+J7p8OnUs8s3tN?M
zlPOd&O1Oi`PL=PX>?ZfPwBLcHMuvSZ9CqP|3;WsiH+g`R-h-4wE^PTGNt#Dhe#(Vo
z%8$!xru?K!`<?vrlux^G#)Y%&I_JU#RdZg}mT~`k^oz2gbvH}>B^NHs`YbOQzZc)3
z{7YVS;hGEAUAUooZ&7Z#V3?!(Tz}hzqARp7)H3|%!d(~cxo}_AKXT!L@`tid8=;N$
zSS3$nk95u?$xJzqW2vq{1??4l>B1|Sz6VARUc2x{)-*RlZoGBjo$Tw}DCNd`7e2^-
z*p2LNe01TH3(Gs1)4GwrxmorYDco3dS10#jPw7S~w{}DJFG!KpZh)SK{8Hs|pkO*T
zt_-)NCq*()GLo6x$gJ`#l&o&_ENGUpbkFoT+$iYAS8n8VW8o4@E>a}78+nxHrQ{>?
zlLg$E;4(^CAvcDm(msU9ts4u|rCG#{qV!@aDelJCZj@m28?vMu;j<<wmSbInrQP_>
zjV^9<b)$?MIyV}-(Zr3iZs^^p?Z&GtWesi^-KZv&^^G!^+^9%5lSwKsM=4KMa6=C1
zm*PsQw=$&)S(UW7v1^G%YO1T6?<qCNn&b~;EjN;&Rm#lN;Vjj4qaH<)`jiG_L$Z-u
z`#>dKP2I>;&G4feas#zyZd_bqX->8vTapsCa-+5KHg0V#l~6`$%MshT(Vo(Q>_~PZ
zrKYnRauR_^H#fSwwL>U}yCK*2?jehDs-eHU;%@E2p1nwspD4ZE=%bRplzuXn#V7>>
zIHHU@kTS@PpH(v0jUn<PviS=+%#A(S4N@$}aS2DbG184uZj6>`a%O%dr;uaZ80*G3
zy3FSU%6K<^Q_1gcyk26FE*U1eF-hf<-B>xmD4|s)HaF~ahf17oZ5R4^T(=t@m3t{Z
zH~cCIxN)bRNh-r`MBLcy#uhiCZp7S}?#3T(#ATM`wl8iZi=;6mjF#R#%3a&4eL$V+
z)^_{T$RARqT+-Mu!;J;9X~?TkzuZi67CD=oL(X+$9%Vi$m4CWXDMeWkx#i*_H{`EC
zne1XWmT<~T-B?RmMoQOm+2my*u(`^O)v~Xko91bshx76h<!e8tSogVJjkUpzjmkI4
zZfB{sr`qbqHaFhLu1WR@&yCyNIO4`pH+HzOQ?>}!%NkgzfN{6HxNPnv|0e&E6^|m5
z+AnjJN}GWLDmh3wL>_iSj>neXV{ROG<F0JZJB%mXXu8PQcbx8$8z<?f$kT3|apNpq
z3NE;DPWgF?{Lg-o@{h{jbvIm=r{IQ6?O!);QpB%Pu94Tt8*U_;YY%!$)!deKK>2@e
z?c&nXd(VygZak2k&r*vF&m>p=i1L_xLOylld_Cjm%I8d8kS}EqK#{K3Zmc?M5_u<+
zoosmT#s^uXTXlUJ7(cr4N%qekWbq({2V-yQzVx8MQcFs@G*fx-h4R!CkZC-SpG>77
zE$h>fGGcm41`jf-B$EdRR_diIs|VRU2=~>O@*ulMuBNMbaSw8OkjsNYZ008OlX=Lz
zq*UhfpzmIjNC74VRsNL+Pv2>|423-?qVl4YVjf%?rjxF(RbGPfjRz%F@~sDQp);u|
zt&;CND5G3QDNE`-+9?=PY4X7A!Pj1t@FK~BavqHK;8zdIdr-lH)*iI+prQwrJg6_r
z!Gp>k$Q91z6Z@@qRjYVVRhk~{1H24Bcu-Awbq~I$*HB4K57NHU%4DeJL2Z@Sq15%D
zo=SdNYH8?^%T^eBy*D-Y$d!1t`!+TvMVe5WlFdBWyIUt=3lF5YCE1FU{}Uzo(Sy}B
zOnqd5d(hT{b{@3%AopQ|4BaRl$c`R#Qh8?&x+w4J!L9u|Delgshst}(Ln!}=(%XX%
z7xYru&!g?ohIlYxsii+%ngcu-NFSt<pDBaMiRDral?B_${0k{E%!A>|M|dz&`6v%&
z^-hw4F|z7<u)~9$9*px~yayo<p5@j~+563dhKF>MJ=!UIzsqb;CX$m#$(z}AQ#`P;
z(&mAOB4gP-a42_DT%=pJk@q?&kipBu=YgLRASDlaw7(8T!X89Ch^lA0$b*;%aSswq
zW_d8%gJk+t52jJ3lQYOaJlgTPve0Ch$tU&M=XmfZ3+9sZNa>pILGQ`hueA%9EL8cL
z4k;IVu*8F<9xRiP`EqhKxq@6t%IK?P<>w7M)~IBytYgaabT@DCU?ZEGJlIOvta`V|
zw&~L5VVeir8CK`%*t?3Q+U3D+58it4&VxO&x_WTi1G)OHd_eunqkXYG?7=>Y_<j%m
zR(^nTkUZqU(N6{`I3nV~F^1<oxZuHY+2q+gNuD83k*7V78&=9#XW0}v=Yf1u6}iad
ziU<FC@DKfxs<|vXx2r~}xys}Qc}?|R_h3skll01Pli@87>bBPE<?HPo5B~Gut_Sx#
zxGyvINcX~n2b3qIBo8T%$j7po%bjZ;X~R=_tyRr)5ANLkU;dKeEAln@M!pfawTF8z
z%d@H>gBKaS_~5}u4?cOc-$`VESCbTEN-~ufUr;1Z?bZHQ5=q14OEN8)PSvFMqFsHH
z)N~%D%j89FFY<UHp4p2mUSy?b^CCM%eyWu&8FF}$lZkjPul6iH=Xt#-r1E@}{9Y8G
z6jb?F@+{_Q4<|!mhDE$6N-3slihEI|hCvFx@uH*`=e@Y##kXFR@?xMDgS;s1#dlt`
z@}jjDWxUXNwb!eW7iGQBdr{kqMnwz;Qlz>UMlVcWm}TcLQ)XU{tVotul@+`=_0A-t
z$WV!4WiK`~HA}N9n-*1BjUr!*r0aWn4KHe{-XAEnymH4eZBlhqUYAnOi~1^QKxybj
zjnqb|lxNYH&!vf1eka$SR5Mbfxfd;zx0K~j#3*5wb^124(7cc%mgO=&KYG#D3z2qY
zds3Pmyy&RBlNSRrRFbfZ7hPq+?$vekqBljnyB9s^J;`1w|H+HlOD$3$Lmw~tGViB)
z`%?yZkz$NN3S<}Yvljs`f?f>vVu%+*z4*los~0vehIujEi{HK4JIDxf3@Oc#UW}rT
zR>`kYZ_s{a9jlUYUW`}%n-~4AXrC1)sAQrSljxIGGR2E#qqIG(T_t`m99}rRaH+)O
zg<E;SciK5YUN(K+|J}zYin2SFT0&lgy;$hQA}=Dc8ecb_{#`fCizq!t#>oVkOiI~Q
zFAQh&BGbM2LtZQ|WW>3o$V|#CS;8ur<JAs+kS-bKc`={)pQ?8OrR5#NVlS3>vDb^g
zyjaQ^-sHt*FP3?+oXr(ptfQ<XS9!6TvW8si)&4h;Cp&ziwuH4o)^>J@Z<G~=pToB>
z*+Fhqz1zIluKYx4?Zf;|FYb>|vCE6yD&OOU9Oxol`@GoC@QfFKQx1D^#ES#;gXAGn
ziZ3j+994e8i(~ZTDv?ukPbxnp%YpuIr}p}uRrxte#)&B|dhw6!Kz#Vthf7{u_Toz)
z()w`4i+{aXaLe>bcB&IoT=n9K7f-#o=EZd{Zg_E1o{O5=Eie94ew%WK+%h`lUCKSx
zEB`^uY&>A|p%;%-{#bUTC$xVYp2?1Dto{ut@|^O*i<c^SMR_edwAMx`km0Qt?-;&U
zH6OhAs9X;8m1mK{r#+XHKBS_2L8c}_N^cq;x_{7$WmlihhipD%_aVJcd;7>hW+bJV
ziIUleEGo(BgWPUIx^npBMm$D&ODf_+P9Jjlkei8w1t@uZ$g7fkl>9#Jj9Mv>p`Z_6
zsop}A!anUUlF!pD>eJpyi}_HTBL1}xC6s^T!{M_g2}}7<+NbS0D*LoE6ThRIeJJCD
z+`&@@olH}?-UownBgG{AQ!iyQg(M%!adh$WK2%U%(T7UP4~$8f^R2c+u=r5Thw?#G
z2%@?V-}|uGk0pN8@S&y;$7Mc!_`!!-J|uid_Mx^9b!3_Q(8GtiKGgG}oe!4#hWb9B
zYtqQ9hUSz8J~X5>BBiS_r3u-TZ05u8r+Vp<9Y_lwTKcp-Pb;!DDa|%M{HVOGPdmj}
z!jC1*?R^k-@S!866WN*ULUtv)ky81bU-o<YFw}=%xDa}gKl#wxhdw^^Wpg0ekL*tl
zAm3-#&d(i07x|eo*oPr1nbE;KOrDMpPCnuYS&^1mWSHc`NFPSAIogNuD*x4oG4!!2
z8RtXA)MY=9^_vgBt9$}wq7U;PRQ%jKnaLE=O4>*}>F{ZH_m)bR4{jflmRUSLgeYFp
zM@sJZA)q|S*Fr)W!VDumL@6;ct}5lP_NhMfD`HsU!%`on`7qsw`X>x>WP&W2KYW-W
zFXb}JOdn=ZW|M#VFo!aioJUI8e99=46<<JKNG>85`{18tkgg*i^vh&R@!{t)hUGr2
z@L{D7t9%&O$o!X2&XmL&AGZ6j?6pCLwUkXhtfQ<~`3A~HdDWI#K38sLvW47AZu22l
z!SuOzhYvd$N^=)ww-0-K*h_Eo$}EF)$vo`ioa`t6CJ*><kRrW@<h9FCRpbcg|ELc|
zPnu*n=7UT@<fIR$e5m3_RX<MqaK?ueex&r{EZ44oWz(jd^Wi+@f?De?QvQ*50hL^)
zTp{J;`XWno*L-*)^IX+%-G>`KbU2{D>BBwQa<}Vlv3Z-6{EiR*DZfj3*f2@*`#wDQ
z+$0~Vn#c0$EVD?#Qy-r3A)b?OeRx56NxmXqlQJ7`d~&Hzoya?tyq67J`A5npnZg#M
z)THv`3%~Y-%j8FDKUOZY<nbe~AE2l4<4Zr%(lhyynUc<r^pp%_Mp8yx@KKkAo`cLv
zW>dY{{YWZklCqpC$wkTS$L)_=E*Hkn=SLC0_Rb=n->+RNzknYFDdJ!GQAl}VKjeIW
z35)ts%#Y%JeC>yh<CY+0BBlKJhF(%7-}-T6nMJxvGx<*CW&9ZXQhT40p{yTz<_6Vk
z^rPKityh+kS)K(KS2?mgS%H+^ij+!zRHm%YW|Gk2M>RjX`O)2v>VACh*WQEL`eDm#
zsNqL_zjm93nruq)gCDi%wN+AwQkSgfhumID${P65(2qtk@Eb=9KN{1UsH7>S8QI(~
z=YHy>vZd;6<wt9J8<qU%$E?oUH;#0-4ek7B&zbB%%G`GJqZ7R|*@f(?dP{E5_wb{q
zOu>)Ye)RI=CwX=J2>8+4uf6a8;>R#Q`q2B5{mA})44@43V=!fqA3swbhvdkcBpG*z
zA48@0wn<z<IRR?8A0zyj!bczJ$0*A0evGD!BY!1j&c{&3`f+!ew(}g%=5MOE$iLdf
z*(Ufgk;x>LPxfPHHton0t1Nbgc0b&z*FkZTF4<C+Yg3lN<A+z(`1~l!Jm^R4l`i2&
zvL7M3G{ck#8T}mk5m&v#vzlelRkp}5Ro3dtmTBa4KmMT1ASIva$Hvkok%7;2j*Ghb
z>-BT|m@6yQdi^|dKKUoPfLusQ!6H98o=y^3>c=u!!vkm^z;ZuU`0>$?PqJ<LvC5A_
zejJvy&W|;IZ1qDf{Ib@M$Jr|dvKr(9JL~+YGQ}vvdddcJBe{v(Om6W*4xyK_ZGO}~
zsjIr&vfYmzvXEtmyxg*j+(+&v_mF$Zzx>+Ya8kCPO_9I-IH3HXtQ+4aNqB@y{;VJ8
zC`bJ`MmbKNAmueW>BlMhX_cIjr~gs=E_2?m{oHibk86Hh@N2(<UL^k^rFqGZ%k(Sc
zzbdbC({SC78yx)!dDD-36q(>H*}o~jL-~)qD|@X?+RsGyRqq4JL-G;%ST@g)R`b-4
zXH1^^@rLq(d`Z3{rR=rrc9v<sU%h4WPUY|Y_&}Ev&!sm-04W37UdR+cssO$SprpZA
zJfQtdojRbMgO)b{1dt|xFBwXnDS))}bYyy!X9ysp@@zxQnFGiYKvpI>|6d+Jc6ts{
zPO+B>=2E@6DR~0uvfLthz5vE9x8x^93Q!6L@KpeX0w~O8QPo={fL^X7DU+dCK>OcZ
zM4s2z0h9>f8$QR9q>lWSEEPa$%6FvHmkA)5BbHT(J^%yVsFEUCQknxu3ZPs7Q$`q?
z%fgB2$_G#(fQkX_sDNq#R1csMU7D2xsG__o#S*~A<=S!e-?LdefI0!xpw}dSAf=#I
z06q5p@5q6=3>%a60;nHA1A0TUQ9wJ2Nk$nF(GD$W!ce4X0L|!ycblatSC45CK+Ax3
z8JSjOYf_qRC_j>I1E~2>EA9|L#{gCZusVQF0dx+)6M$D<qX4=F@OuCg<TbS#x&<&w
zUW-qL?lQvx^bBZU#0CT~kkTuFpD4Y_J^}Ql^dtKR;0kEJVank;!a)p0ehJ`b`e1Sh
zIaKwIt!EfUA5M-?`AAvvDay*|qd7k^OTSXad~TBC0vNA)e+y`L4wbTr0ldppw#Ip*
zD}YG>OqLgyiG((aHK6@#FHO739RWC%qqRZCb<6fb@ySFg808k^e^C4Z1Sr7(LX>a-
z35t|O<ONb5qr?M{OKM1$49QHUlG6g1t}5kN`WXSt_Zepf@MN!kRsgdDm=nO<0G2YD
zM=m6#V1599Dqld6n_(@YELQoF05Y7^N%1l!%T>ODvNC`}g$&ZWCV;g8JP6=n0PAGC
z2;j7=HUX?SYuFIL-?_@~pl>8Mk(<da<kkSTQKWu*KzoN3*(r-RfZYM?3E(IvBGcJR
zIY9nJ?j!dLDdlohmNFR*%Dgc-OiFTu(qotYm`aYzN<u%Wl2ZX(koS>X<<ABnS1!FN
zEBREzxd8I*(4CjA04~!1B_;ePfJ@3R2XKWh-zB9>hO2B|3*fq{xe?H=;VE4**;}0W
zZSqb4|4}5r8^Ar~_X8Mq(j?)d03HXBDTvHL$SLqoWd9t*?aijAf&cw(|4bx+7XiEs
z;1$D<<ZD?WRm~g9TX|~Bwa>cm+5Dh->%6S`iJl_(ziFln!W1$}<rjRc)Fj9><d;FD
zrKAfY14U*jz5JlDOD7^j#vs0asrje9rYu3UoT1ATgj{ttE18YVPUawUlDWv-L5$9+
zU7|K`5cz`0A4Gv5WIBc*3I_325T)3Zq!6W85QSAzgi<sJxh01b6qnfuqJ-)#N%<zI
zeIt`z8NQW=SYi3>rP=#k5M_eU(aVzhAWE*$Nllp{=FgQz=B6Ob6bX|k<$~Jz_|mKx
zM5Q41g|I(_%0W~KB4r4vLZ}*qB?xa2z96c}k3T{53!;Az-v?16i1spLGCxZ!HG^mn
zM8lw5V_EkDSt}@~l4(sD>QL&+`k<2fLCD2grK^#wCnk#wEh&wIXrhv)K{Qj|oYEqw
z9asOkz7><!WE=9wAlg#ek?A%VrSfRTvhu02V-Rv;U8f*A2hk;{eQc1S7o{uNjqDyo
z57pZ<C`VIhpQ(Og(wpo<_Ej~*vZs=R*#-nLE{Muc^#g+#6vWT+a<9`Tt+0#;VlaIO
zDdEr{exVOj$?zchjxc|&9~p#<HHsWf{u;y>isWO1uyr<wjF)8?gj_J{cS$G{NJ%CJ
zF^N8zoT758EY-sXDUiX=&=G`_;!-tkiYJJ6*R(Q!5P={r1#vluU=SgBy@FUCL^y~@
z5c7k0v&9q*LQbrXW;0Ev#Da)_mfpq$C7GN`P77+scS-#pLC7dG$eH9Ua&{1ND09hq
zK}?%vmder9EW$q}<dKI9C=1C&<l-QfsNSVP-2GMiEU_Ypl|k$XVyDdc62qz>Hp;@8
zoV1!vN!C!-lIzIzL2OXHO;=bpv3@hTh1^PRBV|(CKZniCyMjpZ(e!r^2ZGp5m*yVI
zUh*$;AGtq>a*GX8a4?8NL7ZhM&BH;QpdTTRlE+l<aoO(VL+?kE3?~_$3gWctJtO<E
zp5;FGo(tl<$}dnZlK%veYOzjgt_1O~B(j;`(7rid4dQVSPlC86FOaOjD=ar;8B%VN
zlH8IVCjE{|{tIGi*dSdp++%p3d=SJ#Rr81<r-3|`4J2>n{C49T+1t>i`8<dh%3lWY
zO8M)ccAU8syp<iP-6+GmAl@tg5X492pMtOl3{p^Jsa~!X@I?rzL#Q6Y_aPvJG$E7@
z;kyvN3?Xd@MM5YVLb{OL>LMv`2<0oA(ua^CgmKvn8OiJ+WTIpyvyfRysmT`7?iMYQ
zgGo*@7nxht<OxA;94R&VLU69I<R=S|1<9|-LZlQF4q@>Mi%8|#NyS3gy~5IKpP~M5
zy5b>x9fC*+@*A=w`7J43r9zmw(kN0U1o<zloIIltHqF!PLMTfS*N0%B8&zVWn8~CN
z8a~xYS%na;t+4dyn<SSkt4Nn-B}!$oio6S`+(M})i*Be{%4&pAGX#e`qY!=wp;ibZ
zLl_l8?GWmO&^v@aA=C|_UI=YM_)%s)q#a->L#q%P$PBRAh-?-@<IlaSrYWUUR;|7{
zy#?7aq}}oG^K@D>kt<0`vuz07*c5LULVJ3L5ITm?N#$KAokO@8*Cs1N*N}F6?`QAM
z-X3I6vKRSN2-eM7P2UjS$_oFVc`&6P*`FLh4h&%sMaq5-VMm6tB11xuQHGMgki$p`
zhlemid9IZfIbd>h2oq!(qOAC@A&ij)zEwAt97jrXyet9bzlYHJxK2X(@G~)lNumFJ
zBAQH@B6Ci$k#^N<UTJZK;11!>5EjTr5rQ{_!$)=UA=wu~i<OpXA?-j2e+YpPf=pth
zbcI3)(<5Y5<tg6j<Mf0|k||SV16ih*5vOySe}piDGLxJ`&LU@j=FJrH&~rnW$ENsv
zO1e+Rg&`~oVRJ|h$uKVtVem?e92dPNge7!oE~P9Zm&^7T!b<uoa&-uDAz3Lq-pnXm
zD^KLCX&t$q+(2$5rE612JN8Uu3m;J)bZZFP=-cJR4PhsJkLuk;*)0omrA3Nm*c-xM
zsyFz=^mhmcLZ}c%#V`(ra43XVA-t9)AHtCk{tMx52uDLW7Q&Sf{*~wTtM1xM{qYdw
zRuS^9aUz71A)E?n?;xkib0M6eoF%Kj)XL7&FOU~Q_$P!*bm_WGk?;Pso0_G$WToY*
zJd3yHp{32Gzc5}4;kxWLzc9*hgK{&3Ta?=>ze72)(sD0^`yspt;iYUN4UBSc;uTTd
zgAg9d#+BFfh<r>wA)k`ZNGW(8LUKE^$gFp|QM}n)?&_vDvhB!@I*ejrxl^I;T?p?(
z_z=?kL@)El5I%7Q&KX9EFse?|eHq5!{rZ&jROA<AYElY7NfXx2Jd$SGFw%vQo@2>~
zStuF8$Vkbg^2}j0s%VjdtW2`0JUb;v7=O1iNUv;hxx&aD*0#7jVdM=XAN?ybKUsj3
zf`VbJ>ZYCRSBObrl@|#kv{;)|@i4v)Ll;KbFz&6iOqyya5!MdykZX#56Gq7}M7||U
zk<u(JSAn3HQAw-3hV^NT`Y_V0vh1H_Fof~vEWMF5k!CW9EJsQ~`7pwxbRw0)s2qk<
zrWS@=zq(2oJ;UfF%P@?k4@{OYs)bQKjPJu}97dC{_WMZ<vThhPDL;_4Na?LjsT0Qi
zOqHZ5L%lHStKJ5bhGZkzC{mY|f~K+@R#{}|97eM+nupOMjFt@BhtZ1iBiUM2wvh!D
z(#a@oRnjgDImGnybUK95QRST|Q&X6wt4kPNRo*R(?#g>mPVO}P6h?1(#lsj9#@1$L
zxgFA(>XtrX?0Tl_E00JK?;pkh`ap7!%6|@P$BIkA&@giKvHTjwm@s~kr?b*Bj1(D8
z84<=v$|!QQ>XqH5tQcdts!R%F9A!ND8~Hmqft1RLVL5MCdn1rxau`#XTUD=(Vh_VX
z$(Kj_zU&Ue6UN~%j)dV2!xz@R94(XSgb|?s8Aec6(Xf2p(|#G-?$?FG5LOQxB4I@7
zviZj-lE*0tGFe+&3=+zS)54e@#vftK;B+LJ6UI#XES1a-LoNX-U2~btBj>B$8L73y
zX%=v<7Ltp|#pDulDY+w4s^wv<2xFyebYbk4&BtI|9mX2=ZY0-|a&qoEicEQZ7#ozI
zu8?X|7@Nb`qLS^h4$!x$<n>_fh?gB<>{Q9FFiuv{zBBIOBg%vBrTi7fzA*O7enaI4
zDF?{6o}@!6uf58$@(1(LFpf!5w9=THCTYsg-N(b)5Bn#`ljJG#bQotS(tDP2F09?E
zTbdWc_$Q2M$(WvuOJQ6Nqel!qW4IE=zhPvGB6Ad1Wit<BVg!>SxE{uhFv>)ri{NG$
zw`7MFLB0rX%UjhV-N!IKg>fg0|H8N%)=oTp6~^Q8mF~%=9mWGD5<U&%A^j2gSmjT`
z+L3HhAj30R{g}T{y)R|I$FmM)g0DH*H(|V`Nb)X>_sTznwfg}{C<{471Q{dR>Y9=i
zNk#c0g47Wpf;1{mNBNRW8^MZE+SmW|sy9Of_df6dFuDIr1eqhq5<yn>=2SJ=BFL^h
z2PI>9<f7yz^QhkJHIP37x$K+VJ-IlgKm-LT5`IM~6hUE15wfW2Ef#@kt4Ye%Trhnd
zfv^PmO#~$=-;$-s(xlXU7txMz5GfmhK7!^Ew1~hE!Kt@~N)c3!z!=ef%8<bnftj8}
zmLtoP6-cS6NRj)A%g&)n1V2Rn_j$4^#X?pitCQc8HOQI~xx<3CSE<Ej?Fi~n>PFCr
zQje5^`jiF{G^9Ko^1pws8?)IYf~KmnSp<ddYP~HZXcfVL2o8NTwT@ut6ocGss8a+z
zS6SMSKSt1&(vFn8eFPnpcZ^`dDvN}jBj^&r%BZ0$`BMblD3WxKpa;FDN_s``X_`^G
zdaI-lr7zi!>>ttY0x2~EId6j^_&I{X5&W^rG9rSJ5e%VAb7%y=(1)pHcm%oXR+6q!
zDj65SX!@_@7?qEu$nhBCDZi1wtKJC|N4m0;BbXAw(Fl%3V2!{guSf)&WjV`{|56jd
zj0j$RWpqT~jKCFvI|5Gx@d)1BHG0VqDNSDletJM9!3ahSG)k8YVTKVhO2#56mb%jC
z-UO3maw<8EoF2jURTin4DRY=)kguN$BA6A?PCT4Vip+^%uJU;i%vb)WY&DB4Qm`<B
zMG-8Pr#4S7!<q<|C|?@EvIv&5xq@6pu8d%V!}z&=bp-2{X(P(8mc8p_<E3mMCErMy
zcg?URf~^t!#jRWZCFxe(QhL2%TLi-G<PKRCDZ9wsr1b8g?3HD>N+(U(;p~&OQI7v7
z|Bm1Q<sd2fA<E$hj;Q3uc*FHomg5op7s1^KPDF50w(H5dQxOzcZMhnOoFIQXf-{t}
zve`y(o-X;N2rkess^p&t(i@D@by+1>DF4bDzRDu`HBMHhd_962^qVTVMY$cp9hE$6
zV!ju_eJ+;NQSA)t2NAr8Aa+&%P!`B_(<4&kaRg74Kcze)pGQ!AwM7bE$_g35YmWPo
zl!?5F;H~m^5xiIaLH2|OqZE8nNs1^^MzzOHMT&e8MbD}x5k!$<t^QPNbDAiGUy^Cb
zbWx<IWFRw=a*K8;%MwM_D2_*QB8qHLWRIdz6pf?E5k<}@3{e=P$Q9MzcS=UlakWKG
zu*x0P&JN2HMcyd#MUkIPNs3VlL{Tt`uc9c#W)am}m?B@Aq_SvK``1#Wxa$2niW17d
ziE3w0OK+_;x^JT>6@^G?@;kB&DWOh|)mE;L!h6Fcp(zS;6jh_J$hdVaNl|>7tFKYQ
zAYLwt@(e4G70F6uWm0OYMDayWqsYkBmTEF_S<b61)uWK64Bt~~$o#A12g=lgy4tL)
zL&_+1DfP(uWCOBcRNF?Rph*->qZk*(_$Zo1(VPppcN8t6Xc@(X%#}LICze0;t)l2a
z5pNwu8~TqbX&Xg5<?UseXEsUMf%*nvrW1xvQFM+%M20Suu2FQ0qC34u6une$&nV<R
zL7yvsl4mVvh@3F=iK4Hp4@C_9$Pr}!C<a6^kUl7ip%kh4If}u`hsZN}ryZLl!!J<`
zi{j^BwZoZ)N410DMMko6l&T+1`8A3$Dj6F^z3E!zZ&Can#iA${%QA^#qC8ozWwtEC
zZMsQ9%H$}fL}8`7NE>M<rP2|FQ~9gmW;flV5--Ik>-jmI6bGURG6_Wyk0L=2laVN*
z6e){Q4oyrFPp1DtP9>+2)8+Zj)22Ct&6(sZQo=>$wPTp)@EOe|=aKWH_>;1Ll$wPi
zuZ<#0qF5Tm-%+etZCMt@@~C#3sx87OZqC)qur4a^_5br#QLLt~QOQ~v_qk5W)-%~a
zZX`F6n@K6CQ{T8XifvJB=R@ov<*{}|v6H@w+^zD8{mpynf2m|&6#JFSAu$Iy&j(4F
z`9o10rXL}Xs{B|K@@KacoRoc(><3~n#Be%_Gf}*c;zJZ?qc|6Zr$x$VQJjzBLR34z
z^}i@CMzur4ugO@eEh7I!af!)gQj#l_f61%bzDp;e6kq2kH{^*^ZjqATrre1_Zq^`8
zd6c_R+~dRDkK#cT59yD{5pM0M*T-~`CzPjA?X-GnK96G52mK3q7S${=yrjH};x*-s
z%HLAnMIqN&lCqDo<BB4840&SM*2pZ^Do+tZ${13`@YH0?5<|hUhA(1B9Rrx8C#5S*
zOb&F>YSOAC9i`DFT?R@<GL!1f9K-QHEK)BM%o;;BPB}Z7gUm@vZ>|_Fq&A4;jiG|U
zl4RGtS)tDtLw=cu1-b%c2`Q$06+@vI3e$^`MM$YEN_nx{R9q!r#~`<!m#%M^l#Jn9
zN-45T45caGk%N9UN~H|C7|Jpcw+=TOV=%=~Er#kb4Be(P$B-05xfss%HD0-(D<8v~
zXF9pG{<`gk7g@_zh(TD9tQ13KN)=M_suW91yEL3M<%+N0#~>%X*NEZqYD>~XeNCC+
z7;44v`l+E|42@!_O_ye!80ymNk@Z#HAcm}KEK<-oh9)uXEwxJwO(`v7Xhms8HjkkN
zMQR#OMr-9AV`vk@k8HLj+mr3&S-1M%c|9Fs+WjwNL>W58&{>UJ;X#V7^loH#m7Dt*
zdd2Wl3=iXY6i4qE`pDGcs2)e(82ZW5i{X3>{bLvq!-5zV#xO93K`}&Qh{f=841;6%
zEr#D?7!t#9y+sbs7$wV}{tG#bl&;}1j8Hx@hD&<W=lanx?VyfdV;DmjOO7MQlhWJ&
zl5Ro_6Xi?&DvK|MNixH=4GwZLDa|PqYYaA(*eNr9*EuOJ(oK3u8Os}kag9YprtFU)
zz=sHul7uK>G7{5{fRZpCLn4L^Z}bNi>yu;Jn~@B&Vwg&wMow4xA2G~OK2v0t;dA|L
zhI7cdG0daPC#B#|S+>XYB8y^JEH6Yzw_je_7?#TZaDsV9OwPTsER*Gs*SIl;<!r7X
zSH`d^hShYbSr@|^<!dSOXYP8HY=}W_aV2FkolP-p<^;vJP`1jRM<v@SL&{rr#?Z}Y
z-bIS+rtBg2l7Er=_(Y^YF6jMt3<qL3D4XhaU9M5aLopnV;Ru^2$)n^k@;E7#Ct_H8
zQYRwADS6f^KSMbi)9zs>T^Hmj#E>D5jB)%UE0t{KF}#i8vi$hNl{{w^%fB)0<HYTl
zc2&cx^lPMq*C{t*xT%s`G0g65maaRj|1XBSlzTBek$oopehd#}{h>c1AIFe6S-WK7
z?Lr3OGlnn8=cI%$WG(WR6M3bQ*OU$a=-$Q9yr4;jFXCvp#_~R<@dNph{6waRBP9!@
zH&q<#ju=H!$Nx7jC~3$q$+U5#Q@!aai_aJ`#gRFVZ{ph0$P&k(HI_ng?NHLJab$}l
zdmLxel$9ZG969JYRg#O6JB~amkpqYFDbG(SKo%swio>_YB9ki2>B~bDp%jgy7^S$%
zzowLkLv9`+WhLYIHm+Shs8k%$JH~SK(s6tjN0~TuY)Y>&j<U-26hj<m4ro^mGO=k^
zy-5@~<gz>`Sb?la%JeJ6Q8|t(Y*r;LaZHtKI^8keIHDJRA4iQiJaKsAs2Rr(ag2&%
zbR4zfs2#^ZS%z`ciKA{Do#W^dN4+@e$F)8Dk8w1JYriQqCmY7mD6ZWaOcEIy$I*m&
zQ?eN;`TX13&)O~6Y#B!@mA9s}kr^naO`$CxLLQ}E9PQ~H;#j#xJD#>9o1Ij%tL)FO
zn&fI!z2oRcmuB}kdeD24y;S~F9C917&-H!ckg@ub{mB000J6^z?Kq9&Yb-zW;p8q+
zgX0(y*KR2_l>8-*VU*$IlcL5E6e$=PN1MTB5t-Xx<8Z~{j$=$5V>zjD<YaO@`CA;n
zQznoy)<nvrxOQHNG-a5=#2SZ9)!5^3(4FMJTsU&Eh>vS5a&bBNj_K1z$H_QO#Sw@j
z7{{DA=Ef0<<5d^))Hvh{TH(0%0ZfJnB}&HPh^st7NhbH4G|4E_;+W2H{~%|OlFy7|
zmh#zgeClVGa9$kq<Jc0%);RVyF#H+EvN)F07my3dMR6>qEFq<GsjP49jUp@J+S#Tu
ztfQ=qV-;n!%GXfV#^uCD^XJO-acoe%8{^odd~+NJ@93mvTO8ZDz8#8VM;ry#TK*zM
zc2ai5v753-<$L4E@LnecGVF_EzsmoP;{g32IWAKrDUcQTa2!X}x_vZ`WAx)HIU%bA
zwBJHc%SIj7PGq<#uk1y`**I=a)jb?k?wl;Ns+RL{T!`Z$U7G*OyMXdbaa>k@g;S7%
zt4ywu*H!NgS?A*h>6QNhZ^`4H(cLERkpGc)<G4qW-urPppvzg+(tI4plQ>Q%a3+DL
zvVqHLoWQsQp2zV*b_)sAOW>ufQL^7lpm+kW<9HKC{siP0T{%hct?bnkNR`koW&AF#
z@jdy0{3z=QMe-C0<Z5FU`67YT3CQ23Sx6+1o+3$_1in<BmXa=kQpXI^B|`=#8578)
zYBDGA@rYi!vL=v?VRkZi0y$JoPD-u><Ob89r;~?CUNT=oJ{)Qjm#0&JPpTmKRRV=5
zg~=kM)D%siQe(5o*9nwJXeTgEtZw`!fszUBEva$>-zK!59m*!4r<6*dH03+83@HV=
z1TJ3JuHj%{QjRo|CelnwK~e%Uc(sS}Oe&BSRd1yPuPIT)P$hw?30OEAGAA`D)e@+#
zlJ6-sIL}fb!w(76QoXe)brNXs*d$%`MH1+dK+gmk%3~$4X}!Kf0*w>e#S&Y|>ajsD
z(uB>XWHYjP0xc*lNvV-b8B1~N1ln+{AIY|4J5qYvC*&}Gt*m20`|nbQPL$4Mmjt>}
zx~bmo3CO|uQr2a)p_e@IOQwMd?W+Dik-f=2WZwk(QKYv&WdPR%X%3P_k$_zNX>bA~
zDB?pXLlgLgGEC*e6L_}JAO$jvWH>5;(Uf0R&6os++|_EvC-7SW>l4_J!0!o6NWhtZ
zD}jj#M7QXl^fAb)DEs_LQZr09Ie{q@D=CSMVkaF59N48@H^7~MCxHcAVqP*LQ%k@{
z_mcrKNQOvRq+v?w`?{D)W+xC&Ai-vG0)J4Zs@`do=?U$2t1|iwmCvNiN+8P|Etg?V
z0&^M8Bj>BiKNA?bQQP}1Okfei#R;rby-N~Us(e`j%ayN4Xg~gZp7JV&tI0J9tW`DZ
zWX>;YH5+9g^-;emfxt=Q`xUz7jg6aS!(40GlE7B3!`l-0TNYgc+Y{K4z)psHNm;{p
zC9s>mM<sy|2Fd?ob04`sfsK1i5*}pp7<q`4@Nfc0lpjr?<ywn`$5nD7fs@KlB~bId
zUV6_aa4vz)$>@@d^9fv#{b4e4C*vYt=ywUcmt~&7r35Y~a3z693CKzP|H^7s)F{I(
z*~cosmcVu8H)Ofd<?G4k%G(LtVe(%BcN4frf1v8`%L>`mER_$LTn*{O<$)f{E>7M8
zWIgBOO7e>GoP0sPls(K{tyqTFOx}=h6UaMT3qQ!~BHx>mktP`*6R0rE{D~Avk&Kkd
zS|UTLWPCwSt&$df&0i*?fX|#c884scMAEXEE*a@5l4M9mM&+53adnYF!Yr)MN@gQv
z^z4)zWX@#m2PFyfBqMJ!YA2&kGV&$k;XrfAWPD4>FOyA1!DM{JW-+o5DP@HzMUqie
zCGw+_<i(TmHIou5|0WsN78<3iR5D5@WB5u#rDW|Nhwn%;S%%b+|3}lAfX!6?Vc7PN
z$euPzJ88ae7CV!avL$OsC`*Nk79p~<p)A=-&A#t5r0i>DDaw+pA!SKLi$Ws)&w2dc
z>w2&Iy5Hyhoij6M&N<(FGiNFCpx6Vu+#xzW;B7-W$&Pi_?+6VPHWV9)3>!<Dc&zJ3
zvCBtk=0S50TIdnoVk_|;4_Zp@6<OI}kK;b$_e)xf-|n?v2p6~UpohmgS*EQA?L1)8
z-h<AP4&p;1^Nt=oEbk=pECz;M<Xy#XVt4Tokp&ZD?w(v|CGEXL%A=Cr9z14}K9atC
zvwAsL@Pr5bJ($g{W~+UG2LnBL-Getg805i|9*kJz9^nE1F?`B{=Opx}C4<Ew;!qEs
zF{96VaFg54vSCVwdoce+7rW1^`+^5An#z|vIO(@>=w**}_1cjhjFOBN$BD0qV>}ou
zVcDx5@W#88@k%C`e4^wvkM)HrN4ZNsy~V*Bqrd6FTYS(`u1OwDmP`?+i*I}Ij%2FH
zvS}VPd&xy%o1ySsai%!SgN9=q9GasgHkWViIy)ELd+NUL!92+a;)kL~WR2H@zen0A
z0S|&6-0sI6euO*-dvMT;@4bk45asIXg~N-O2XPO|d2xjo2@jGU?DAl@2PqHI9*le$
zn>@&HNpg!@>-f}zoCkRimUEH5<S1|^7hG(gaN)}rh##4Jq2yz(gzKD_D;FtQEG`k3
zip#il&$Y3Jvt6N?uk>J*WVN_PTr0BXep|B*lN)^I;XNfAd@imN*OL<F8$I~KgD=(P
zrQUexBSYS#W3vZqySTm*zZSQMTRqt3!FKsK;<w@s?hSbB;Vv$=ogS<{VEG>I{5?45
z!M`31tyr|rgP%S4g?|M+*v~_N-gX@D;IM>#(1Y*ghr}PmA4OiXhy_RFM@4pzNq!QK
zbBmZ|)$AVQ`jzkO(&AGdoZx#j#&uHsP5fQ_L*&q(9!yBsD6IdBQ)$A};u-O*$kBf!
zwlTKz9$vxNRoZKv4sd~c)Cso#M9M|UB@aq?t-PdIN@SM@&6d$roDg1=HO}kpm-pgI
zFK+YVb}#;!?yBHL4KE6d+!ejn(avmFNh*0!SyDx;DpnI&Q{9W1i`<l}HEm5VuJPhp
z`HkXr;`JhDeuEdajMw&BzvME!$s~2WxY_tEUfe2QwaCqyJG|DFoNJ^U#a`U$#fgPB
zt}S)F){R~2d2yGdzIeB26N|()RhqHv%l&qKSL5`;<;5f~CVSDqi-ukd@M54Bjl9+Y
z37x&@;zeUGns}{iAU9=MCHuYdW?nRxv=BM!_TnDnEhUft<80-{eO}zJ2|I|b#Rt52
z(2F+mb|UB8){D}|?G(25UIgy3t_AUs8SN-}SnTA*b+xR~u3qb+xV#5JZ!fxearG%%
zcaidlq=y$hCB01kD3^0J2MZqaVo(ovAF;34PkdZ_LS#XIFSZPIQwDkQq!){?agFoh
zDKCol+lFyR)Xw=d-~HYWw!xAi;!yD!FP=4{&w26H;bN8z_u_dkUhsmyvyT#A6kifY
zh%bvQ7|B(LcT>IH&Nf=%E8-Y&tQW6JcwGw?jQ3*SBKO+)wh3NL^n&u5_`3Lp_@>CA
zx4f8k+)kO|#oJzFz2G-~?|3nltHhm-h!?y;;WRHiUhIF&HQkFDUcBqI{(X2)oGH!{
zXNw$~Bbm$9ENT6@d0*XmX7mHehhmpACA^w5XYP~u#ef(TLt@x#{jS6^KC3AI3h3#@
zMJ5R^lJb<87Bgn_%p!Nri##_RFRCndf9b_0FXnr(z>AN(Sm?znFIIc4D_wu=#Zt*9
zB9ldu#o`h#?)KXlE>m~8xI$#Ok{iw$7lmz&7wb&E){9T&pPA%yFIsN3=EJsL;RY`@
zn$a(~iY~J5N3fZziWj@R;OR?Wd-3;G4z}%*EnaN(S_l6#*=B_PjTbvq@U5xeDcQyK
zf2y4Ydo(xBa4%O9`FAGSFFD}F7hW3+4teo|7cctok`F(6ahQ7;AL{yW#LKUetQFu&
zAC7tP6Zex|oZ|{J%Vt~bKJLZOUi{+4tPTxNZF2l6`BgmO#YxF;A`5=^;t%<zDUQqa
zr@Y`)fAKj>PK#$m=4ZKQC~2qgb`|^$?q9AF+<WwKT+nW+v=9HO%jBZul32orl0K`9
zt(4EYt~-UhwK6_y=LR3jO3H~$u8@@Xp?iDlDA@`=RP^C0A1e89lh1nLmBp*YDq>Z!
zn#h9cKGZN?zfsAW#;=iF>%(<ET<^mT>ee=+wS3mCKsY(uja=-9t>c8Z&9&9>;btEX
z_qE+3-YT+tn-8}ezr%+^-#Z!B^WiQZ9`>P=5A}Vx+XuG~_xND*p@^@v$XRo#?dSiB
zi+yP1!{(gb?gP6Hk>d2hC2wGohMZg8!J)>g=Oj%eO?_x)lID^YKHg!_!Ge}tF@`s6
zv)J9YP<*cst$etTt57R<Tk(FewfKPepvZzYKHT5iPHCs4y~#WH@R0G2^f^{dXCJ!w
ztl#*a;c6MSchzF-??X4faX#>b<wy8FN_vPr#a<#uAC>g>S@$Mmw~xvDO8SY9`|yOx
z&y2Lb3>o0VK=XbLl050dQ$9TH!(erXn$aPWk~^#m8}9qM^s`(<!(437Nrw3_T=Klh
zUy%H^v3P_JFZ+0xWSsC}qz|KfnD4^^A4dD|iVq3Rc8oa1hqry!*H&YFc-4n-K8#oQ
z4RM0V(TP61X8d)o5_ekH31oZIhqp{VNiv!5X<rwI-tl3o4<GpOAy<39ZJIdShv||T
z;=AHZku|d<^Y`27b9|U<^7njr-}pQq9(7v<TqYj9gs|xK!RLeDhk&|4ku~FoTFX47
z?t4z_So(-OD#paP`0?=)Nl8jfi>%N1kd^1eyblE*1}(OJ?x~)z_>m6_x#WHL%7>4A
z_{3*jh~RS{Zh6GM$cL4Z#Uhg>lBGT@lPov+3QjxJ#R9ff3RjD3d{`^_)Kq@vv;Mbb
z86Rbx9&5c18zdV==3n^mrF@gfBR3dUEARZ;hn+s`@`1iZ+$wJKVY}oTafkS=$jZ6{
z?BD$1*v<F%562N7_V}>ZhkfdPFMcQP7g=*aa?l5!Ou_CUlmEaC(D-4Wb%P|1vK{5d
zuKXu6dYros<G=WD<uDh^PWtd0-H!@>{O-daKK$v!DZZSFPR9ltuZ{4~1s6BNzkDd=
zN88S>zkN9E!x?RT7tA(z)`x%O=S=di<h&0J+ge-ke<r_3k(cmWyMmG;g>MsQURn=P
zMub?_k8+YLMAnq|qhmccW%=Ubihf+>=Z1i9Yufv+EavYWmHpO5W@`JbKL=IBs(w`S
zqq-k8)Mb9XA6NTPQ{8L)xX$F)`Z2$pb$SBZ>YGa4puCnD{i1fs8#VKr#5&^5A|LS<
zKW;UCn;$=&EoOM9A9ekR1rQIQo*#Gl@rxh7`cdD{k1H79$3Q=9eiZr9%8&c}=z7>$
z>_-#7wd=5}%f#V_)40oz2F4po8i|cL^SX8xH`TP9yqO=(<t<F&_TwITOOxE|x9*U|
z;`{x0b+Nm(9}j4Vhk`%3vG_qhc$9v3E~u~VZMg9LXeVzkb`m?VM$%Da<->l=TkNK=
zb@ro+@~&pIn;#!*l!t^p;ztiZdiv3e%T33U_4VUX<Gm%1iGBR&e9(Ehrk|3>{dmGu
z_V?rcG7gRo^5aQA(tc$8c#3apZO3pwp7&d4!#(ZCVEP^h+Ymp7%AXORHTiRrVSej~
zR+jZUWP8DniGIB1$BTZv<i`lU*gEzx;>+Slag@lR(UMpAepM@Cmu;+)SN#|#8E+~l
z_`xe+vw&;b>wZl0W4a%2Xia<5tZ#4mG0Bg~>Q3?F9h1N9$5!npIqg(GE|#~BkDB4f
zyMFln2=Mv)G0Tq+RX<yN-%LBlkGaO*;~V;{wHs%fr|<)@a#MIDUQ_9lJbIx-&?GT_
z3uHX(N5puP8{<dTr=z$Z3GPzrTYnmo8cms+$)l0=Bj?B0etbFHmG@hh2jsU0YyBv2
z1JoM0KwRv{N0NmiSJaOspNNb2o^G)ITrN>}sUOQE%f(fGtdOu^CAWp`RwdhNg=_ri
zKEV2W`l%nE`SH0QyXP0PZIrAN*ZZ+S@_l>z<<T$rgq3U(8E%$*#Z5TxW_JtU8b7xA
zQS}MyySM{>Y?pr{?hwEAV<%T#PUy!zKfd#0k8)13SF+_-+kbss>{3X!{eC>t&ys`O
zVEs766|$7;sQ82Uqj*^4&=EfdZMKdZVLPVqC-J!WvmYlGyE$~i&o47km%F9_e&f#H
zk5U1Y4&V=K7vwG(u+9|w(~nbr{H5eyPQJ64Lx1~mTFDua$yv!iew>r^x!un2yy`j0
z1<8NnMegt=B?8vm*zP@G-&5Pk)8)zpfB<R+a81D4-pdA1DPa9`R8CzcR|HUAex*q&
zNGgg~1+XMxV;Lu@tO=`#RRgFdVO~9e8pf{<SiclA<i8Tv2EfY+)(POcfc38j+w}q5
zV7yiUwdFUO<R;18|JiO1;EE+~wp%2(inj%DyUFj6+!?^x3pSSB6+ry}`Ufx|fV%^*
z1>g?go&eUDFM9V?M^V5!nYTCqdjO8W|9|&vEO7?lk~A=RLrJ3m+B{*c$!tvmXlh2A
z1<>4hivSv?t;=7x4B*}XI&pCYaOXK!s{nQc9c|_JiT8`G19(94px8!aJwGC{zFh$A
zH6gu201wGKn&jaCPAn?sP?rE2^>gtE)n1aW0d$je7atLOh%D<FK<=XRa{Z$L^ycCX
zpbxp#HfO7Km@8Y~0Qv>+xWXqy*4(kr8X6eDpa9+vU|s-E2Jln>Z|Sx3Ki{VV7#6_r
z00sxFe}vhFNQMURjO1C9KgY+l+gb2@055P|8eyBrRWyK?<YUDV0gRHoERGaexx7}X
z(Z*kqj0vFb66<p;+p9{(iQ~ly0c^j=+E2cwF6H$A-jKg(l1jgqn50)RIe;kvylvji
z8IpG{zrX;dnS6Qxy)xEn@NNJz1DIv<IRVTz&a-sq8h<Z<Q`@ay%=u^N13joOfDieG
z*0Fm;uefoxRZzEJ_XiN*iz?WIA|)gV2M{qyG=SDi+#E^-kPM()5LX0|3LqW8Vm?Fw
znE<j}x2M}3yX=v6jvRL~dgwf7(#}y3Df0tZVEm&17Ro<1$tMA{t>9o8&y3@uTN=Q!
z0KN@iX8_9sSP{U=09JARaXb2_+&tcZS0F!n(6%~&uFLEj0x09QuL)qS<Wuo8@pF-*
z>m=&~*4@z9-KYt_2;fV}CUL8{Ie@PuUyGdomH=M4(N1C8rf@qKxEb9c>A2IeD}dbr
z{1m|P0QPY0<%y8Xt@UAV0Q=PaE`T2-`^5ty%MJ$cz41fbw={7wWcyL!;Q)@9(W8=M
z0sI)U3VsgY7q0XDT$cjYC4GJk;2&;KqirVwILZCL!oS4d#Xm$={wX=d`OLGi%l5aD
z(*c|@HD|f}s}ymFGd!o+{u{t~36l!}{Ac_kpW$rl>-rKw>&cW9ONph$G9rf{DI0{h
zP|R-mAg&BzP!LZBQ6Y$mLEIk19YI_bwC);QGl=Y6C3$DhN<nn(<)|D)6$!nnq?%Y=
ztRY?<w0_rM!8JkrTG4)O5CfOEuM6UO$qiziAZkf!i#LiayD11yCl`h7W`(ziw~Ds~
zvC?S`-5EsPAg@P<?m^TG;;tY%1g)z&{F8Ll55gIQD+v1CqD?Fki$!}74#_)_20Vt1
z6E+B<MG)>F8frd`#KvNiAeu^=iOqx7aXXx3Y^kOs+dazf52B^yUa^(P(ffi}Gom4-
zwUP&dcrb`I@^+@CZP2>K_T{;?4<bI!y6(h78to`PEOrt*i(N#Pb>-4t;-)+jv@RLi
zH)!1#uSXC(VY8=5=_PqIh~6f7OwuQ4-SdtG+(7yTtv&PO;uB*3AO=VViq-U)^Qj=7
z4q`?S?*=hAh|29TB#5CwJiETZq&kjgC_zjLV)$*2=Ykl<=f=0AS`mMn8y>{VLF-4l
z=S9j3k{897#1TR3A~qai8yUo?AVvrAiiTblnU9f-4dS`xZg$6+e0&g(W^GI+>JeWP
zUl-pH-xT>|-U?#g5;tWsU&TLmwkeXg#dm_3YVv84=|Md8q=RKMgZN~Ln<xH<f|w<r
z9mE{TT+zd~K*F;3`6%)aO!8q6Tb8&v<TZ&;;uiyAFo+coST*4wPA+jr#Hbh(<06L=
zlBAdl!e7zBFdIZJh~f<F8RUZ~a4U<Wb{zAASirX?g6AUmD2RnYTnOR65I*LE260aa
zEkoA3zbJ_9L3|U$V!q=+EDd5=5T6C{dC<Cwc%`N8{3Y9Ru0_Y3E5wyStdcNUEm<S3
z6+hJughM<DXwGu`x}f#Bmu-Cz8{`{<_#%ie<zI`N#LXfrzY1c{;QwDCVT;18;<g}u
z`qH{P^Nt|C4Wd#Al|$GW#I7Lz4q|$D>skT3x%O_c9pxPO8uvN(2C*-Q@8pNX{o(=f
zpvbcCgVvcBlpmD*X!667BSCA&&e3Ch0-FEvAbykZv3?HX7vsMMal-h?AYz^EEco3d
ze+2QT{FF)l3W8spvWEY!oettm5NG*X_{(n)7bWM!e?{i!B^Sj1f@u7hb)f8}AWDQ#
zGGtA7g;*+t(jk<QmlZjL5I*W@9W%yOE`$RYn_TwtAzT?k1(j74uL|LLyEW(5DXYF{
zsk=%DcZD#ly}fD()k5GU;;V;neF!&%P($6T#hT(Z;<X|xuM1g6iBoEYP&<U^Z^gHX
zH;T80aFe8tc(cfwTSC^I*(q%N7)jn9!W|mDQ>-i2GxcwFbJY*w?vQmbhAm`$)Ndd!
z3ZYnH7dh$(!6|o{<Y)_fLrub|8c7<5&?JPWAv8023rX{k^&y;PY;G1zv_9|M8$zoP
zVj;vsxG#kJLzoc4#1LAC@IVMpg{;Gq9t@#P2vw`u`-RXpgmxkDn7T(p)`c9~htN&Z
zA%urQ=qT?ba`fSlb-$j=*L&=&uuBMC&1lD^)&;1$hwz9=dW6u^c&`u|RA|A1-g-Db
z;$tE7k@q!;eSwY7>hTbs(9`QL4iK3S3}KM*Cqp=~vY6r1dPRf9At4M6;h7Mg<-!bM
zq{8PyctJ8u94>MpJkQFd)=A=QFDiUV91+6i3HHnRC?#XX(ILDd;m{Zf56PgvDjz3~
z58-?@7sJ;=*5Ti?Lzol7>mj_M?wcVbTe+u(@Rquh#L1WWoqb9OZySF{a%;fG`e`9d
z*M#&LA-pS}X_8rd2P-%@G&cm^ql&v7UkLAoFpckpI8S8v1IdS?NA!lQt0!^jp{)*o
z2m!w1TODjcZX@!rNg|SH2%mMdiW7YF5H^PJMF=Ub(tDh%xwO03)7+?!+A<+zL&$}Y
z4`FEt<Hp$w;>Y5Aae?@e$byC3JWCZ(*gjFXNL(x~;hIz1!J%d9E*IHdAz3M|;?{Ah
znBf{d6F!->A$)55Gs)*6tdp!a`3Al_Z#!80WeA%>I2^(ezWX736~cF1APe1Jhpg*1
ze;cw6)Y&3ucWVgS<lDt>Oui$87r%G1fW<pC$*vG~OZJF+MUL(ZVN1k1R)-I<Uk`L3
zgo6?$-%AdK@PkQy<hoJ5h(r7?{b<PgYW-vg$0YQhB*(>{L-@tyze-M!L#;3Qe+%LF
z5dKhjM*LIc(5VpqlK(B9Hu=?>@T|K3i08zA#q(Tx<7}M#BD*1c8OEkCN`z4|jJLyh
zCyY{Iln%ok#yw$_2?Jr=7RK#ilnrBexVTanmBT0(#_<}>*schpyzwi;s35OslB>el
zz1_~TDq-vU<l17@FsezahjFc>hIqADQ)KZqe4u*PdCJ!*x!&YANNR<#^_cYy^Ns4>
zB-SxCH-~YH@mu*ES~g%M@05K<7)4?0|K&TwV7IPVPh|HlN&PVHHi<2a>>LM&io>vn
z;n1{=Mb5+-hD+W+Y-sXE%$r;PakDiEqp9*{Vslf|A`D*ij|IH;UCS`Khw%v8Ap5;x
zv<l<CFb-_6-!HZkTZ<2b@t~xQ$eOlc4EeE`(msq1VLW8=&S7+vKWvgtVGNpVV<lUc
zFuIz&TNtUOZibJYFYXb>lVLm+M$a&Mg~8;}Fdmom7MVOI=_B?P`-QF3m#m@l#ZM^d
zFAfM}poICLFluhFQJxNCa2R95c$LpQjG<w?9RB~OyJsZNi_eDfoXLkthKI3gj`hin
z?FA(-hVhcA84*U?^-d0rG|8wiM$2C@$rwJ*^~J3De5rd}7~~t`_%J3&CW^0#9DO}(
zowY%E(<E<&F-bnzBvbethPzlZHH>Lt#KTDNEuLYU9>)7&%nM^i*!oQMt~gViB{G~X
znIp~>-wUJadF%7i2V8Cg8g9DA8IpV$hDXBCEAfTlH%UMe4CBV#b{2%g_^Q8)Eh34E
zF)r}7c7_L*@;^Q-2;(EZ?_uzQ+i9)|OWheUE9OLo`7jE`=kt}8DPp*gZ`rBh!V%l@
zFh1r>{>%1>xJYDoaTrUCFAZav{IyAT4z1uK<vfqrR*9eU9g#3u6UJKkrzZI<jDxjZ
z9AaCiaJ{%e+$es*^>c?+u$eED`;!Q+i{NW+Tw(ki#xLAUgt0A*y<zKg%kA8RcRG1m
z2hT_NM$YbzFus-V6nB|?cNlw&FE3lPk8kS$`*&gNmmCleiwDE_UUEoe*$<K*xz7J<
z{ib|G-J{|$@h6c($0e_yvwrmXmFqwlr@8b-*iMKi#oxmCUBdj2F#eREGRa?Dyf0ak
z^CGur!Z?50RXSqL;cOWHgmF$~|B4sI^Wudt{*$nh_gp3~saqm~lA4@JsR-r`v*uhT
z0z^<YVqI;xVgy%3P)^S76_WB1TxpUD5$n1K9IB+Gy2&d?P(@zVB-J9gB4A@BTaAcy
zJ?*O_sA)#8iJ;Du1{}IRf*T@eA3=u*YDG{xf}R~3w2I)uQumFbD}tL?9Kp@%GQU%D
zO9Z!?<hBTIH-1ON`Yo7cY;_~37r|W-)HkC=5!`LuCgD%p#Sz%$4$&Dw>)&jgylbT*
zvVp>e5j2uC7F$HnM8blml4fG_2zp<1GGucrxhH~_rt;p1bu1Hyb~~K+MR0$_+IzGX
z9}piD+lXyN7PO04UzJcEilAcz{UUfgg5B3T9*&^X{^A}H9KYn~Bz6|NM9@{zP3$hR
z=8=f??LCDzDeD=r?g7^;f=4Cv-Vr=zypN<W->--59C{*xg-4ugPdf)i(4Q;Ab1t?4
z5e$^`Sa){0t9delry|xqhwbSI1{)s|!BFGRL@;fNRWK}q;SsElVnY<qNAN-f<)gSV
ziWj+vBKSUnLlKOK;N=JsoHl}y5sZppas*Q%nEkV3bOa@`#ea5ky%NC~C1WFaO~TPv
zBN!(iFHSJ|#0VZZVPnDTO5PCP6yGv6lOo^+A6WCYmOl?T`5=OKBACi&Zr+jElIao5
zki2X1nUY!DO)azjJD#KNT=6~eeUU@+B>Z=q^ZzgcPXyiwd|Y*Pe~qxjA3?w*!3aWf
zUaRDCO(cS-l9(7bl~XeIR0L@*+X!#&iHzCamqn0`AQwSi$;T!yL@?j@0)7i*d||}8
zz9{z(Y@bB1$mEMJO9V?z;_cyBE?*JB$_Q4O{8PzlagDf^8~Co$m*@Fe1fMHhCo)W&
zDZMd*FCqw^cJ7YgORncTtR2WU$)*T4OTH4n7Pp8j+sfrr%W=7Wdj#K@{mhOCzLoD3
zcbR<i`*v>ld$^u+o2uvDCw?dH7Y~RBMHcWF)E^@FF@iG@oQ>dc1V<t`$(_I`+YO)D
zc;T$0X3obXKZ(c1pT%FqU&RyLH=ebw%Klpf)yg@3kD$$eHnu+`e@1Xh@|XCx89mK>
zx>d#-w*C{rIc`C_>?IxU$1fEB8$pX@?(^KwaCdjY_MccfYWc+oE~!f|p`@f(DvJ5*
zYz)h&OF<N6jhB;L5w-q><WPkuDn`*RiuO@l6-A{eYDaNnl;<I$N)*92Y@u76H<xf#
zje<WbUmZoYDA;AI9z_i~*IRaLMsZCP*K+1d?AMFei9E@O$qn*aBD=ha{7q5RiK2DX
z`tW>n6vNXFwqnUGQQR8EZBg8=?p@*?rsmEl>Kd;X#iPsIoUp!0?vBD{yhy@Bvshq{
z!V!ft3YWqrQ8bk_h@zpSk;ux%QM{yiHdAu1$(u*fA_}*<_lPZ{cvqFYZU84_Yo+`?
z@%|_}#jWsz3eE?jcrXe|8?mj(F3)A_5XD1Wwo$wqMShvPV-!82=qZ1gbC7fvyNImm
zD(NP67axi8`gO$|;#u~+qIfQ9{q=b?ir!J{y!*$Z=pV%Zd7miyN|^VH;&J0oM8Rw3
zF&wC5usBG3QhZ8$T4Y(fa&~e^6hlq&Occ)=|M7F%Fg=Ii{1YH~K^!T*D83ZM2nnC+
z%UT;Lqm+ymUooR&qShTEI65wh@mzFKd>FMpDo=>w@Ver+qnH@QYf-!&MY3GODI(>K
zDBhI6Ws*sf$x&=v=4Js~^LX()QB2i*rbRJZGF{}HXGq=^XNt3;yc4&JLu_-Rn5*zT
z@qLl`Jjn+aiak;5(ggFPSP+Fb3SSidC<0NWm2)T<MNA$N!(v2?imc%cugSQ&2|j<5
zr?{S+b#W-8BrE2`ys0Tft-Hsvh8HdWD2k;~@T2BJt}rK^Y#&GQiF}bs7E6{y(dsD|
z3zkK(Jc<>XYOT0Z<V;pYvD)~WC{C{`X85T|K8xaW<Ljc>xyixNjZu6NMfVsUiQ&sA
zHu1SdQ6h%Td@G~a62;c2_35|Ir}q2mIlqn~zSGwHkaJrU+oL!h#m`ZE6U7eIRNd_O
zma~oG#I^PxqWFHJV^<XWCA&o?d!pEDe4pgIsCA!l4zV3ja`19N6o*VDYdFsz`3_3x
zN1`}t{FvmYsP$VXhyL7Q`z4A~QT!Ff56j%YiYLUA;&0;b;veFle96n*EdHCbirD`V
zPmAoHk(?E)<sD4U$^RA4ix<TI#EVhz=q8qxjG<Hvx5jW=45ecz69Zx>8^e~P&bN12
z$7b_XxN<RT@v>bV!xi%KF<dFBAXbT?qN%wmhDydO$MEKy|9@Jj8bdYZ)y-&)7_Obs
z;PRYn#&8Y08oExrF^20+<qa{^GG3ec^8X*vag)M2G2CoMZ{e%xYyJOndklBP&@6`L
zF%*5{yfcO_dmIP<vW;tMuNy<X819OpehhcV&@cvuHqjxnTNFdFaeEBEC9DaZN?ayy
z5CadNV9wSkhQ=muB5BIeSFE8HF}P#kS;G&-(5AoR9`S(~T1uGQD`^$OeI~hI(mICo
z|GHT4pvl`v+Q!h%B<&>~V%9;GtnA2_v)ui#*hyr!Ghe&Bt4X@W@R-fPp&l{xjA2a-
zYh&mY!=o|09>W_k^kzW}Lt}U*hHlH<RqHzY#PG_W&c0&57#^2AAwC&He+df)NCt|7
zVz_CfjUn4pF+8nsu&Eppv%Z4n(6cd2^V-J5@Y7M-bMj#^4CgD7zbw8Wz9_Qzr5HvS
z?|Nm?Nckvnw8>xLlV8p=vuvF0Sk3%Zaa;`JCCn$pFwyvHF?{$&1BP$L@Ky}($1pF3
zNij_3(irD(>~&6wSzqU}y&J>Z@^?%!RWePSF3yOd#z^bC+?l3kRt&R^&xv8K@%Lhw
zzTEn{_=A}Bzjii;9G^)H9(BDjgky-veKGhYEDOXCG#-lK!U-oswrC6~lgA`+F(D>n
zSTxxBgqc=1BeFYpn=P;B^GOUF#@Pzyxy_d>;5%iKg)w|=yyjze7BA8yi@5>DuvETG
zTq!P(VTFW0k+67`oU%HG^);-?KaJrtZeKC{9>eD`tczi147*}TFSjoGx1RMeY>c7$
z-?j^R+ZM?e{3{^YByJX2@Kp?7%NP4>>~7^^$y-xxlWdRS8_5one;dQB!7di;j$u#C
zx{AoxgB*QNIQPbQy$c+Rfxa(>?_$^=!vS@f{2)0fejmdjNyULK4zc|h!(mf-B!*`z
z6*2rNX8jQSt4KL6`8kGPBp<hOGCUzaDPGS1h~du|%EfU-9H%&|d3JuCbtz_Dw*4>h
z?-)+Ua3+Sc>M}ns`6q^RCiz#gX}q1I7h?F&<QKUn?65H`5x2f2V=E~sC6*S;h=`-C
zgf*KhIm^f4d(mE1yi%+nRur!iSx`w*IgTol3J<#&R+CpZH8mtx$5AtmYvQ<8-RsTh
zb#W9H7IP}L8x)?IZ@V#$o8tI5iBFQK6UWVQI1+Fsa7!Gw#u1Gp7RPOI+#bi1aXb~r
z9dX<lNBcNB#8EendU3RiTYt;$id#SbIpc7}Q9llz!oYU7#1==9Ns8mJ8+XL9@T_&R
zLxVUP#&I8qqP9ly|6e1kg`{yDO-#}>j%LQ2$8oHqgU1fBx#PG;c}wwLQ`3se;d86z
ze$BbH_<+a<dQj3vY#T>#aASu25t+Y_KNLsDIO6Mz`^B-5JO8+KpVl66@D5F#;^-`)
zcae0Bqno6=$sdXH${58g=ov?^miAuaqnEv<y>}ds$@`e3FBjcaMXcl_J|4#tdg%V*
z0Fn8?I0hM?wBGr29E0O{EsodY7!t?OI9`flL>$k=tzQ8;aeqGCMR_)k=akTg#W7s|
zy!e92U*uYG(ZPb3<JL(N<Kj5H+&wamM}D!75-Fo4uf#D%GS=j;a)tTN!GiH|lq_2`
zL8MHSOzhx#BaVy9-E-pB|J@fSJKl`rtvDvdF`4;f$8>Ru__oOK9m!O2S{wuGIT*6d
zh~r&_Gfm|z$?P~bAGKyaH;zw!wY?X|`*F;R<A?v8Y<|fHaeQbJ4>vvIzBryoQ<eox
z5{x5cJS>Tbyj)~Fjzk<M<M=I(WE`nDR>rX^j&vLuZb5w0SJ|?0oT=W7-xfM5I&$1p
zXWH^2r68FvE)YKw7sm13WE%@U(HuCFMUutbtRzdtW#V#ig~%IJv3PYHYxtJMaU_nl
zT(#=hzvZU1*Zyf7pQ-zK99tyo;#eQY206<%aov`GVUjQ7=)2Imk2%|BuJb1UI*uDw
zxEXF$vQ6ABeq(BO#I2i|vSw!-yW-fbeFAq22PAvMy>aZ5d}l`YbL;k7pF9sL`JPL)
zo^@iyA$5Ncf8;`5WYx4!IgZBBqNSZTwm8NKc@0mIay*WojsGI~RXoA>daiYy&)?&i
zb;5pi0yPu(BaT10|BvG@F0}FXG70=02XCWrK8~Kn?$h!!BEz$B{3AbSl7G1xjJ9r0
zeL?mAi5EpqekqO;36xA&vnnN)PJkDjVV6^pNT6)OdfakiW$}sx%1f?Hpn{}g0#`{`
zS-Yj3tdzjy-403><yFmSHA!``hB$Sg<C=uEPp*@&j(NUT&M%IxOMtvyydi;FlG-Bk
z8zna-aH^Zj`j&}*0us12flPNhKWX2Uz-{u|MTU1s?o6PrN$Mr61HCTS*H7T?g!K`f
z&6Yrsyx1i61Ue10X6s6zK>~LsQ8$T(2{htUO<-vPjT2~+z)J~?NT6xLI*91L1ny6u
znY_8!LUfDwh%H6yKp;u01X`|ev)ej>2ND>Vz#uJ(2NUSQw<du$3A9b1ox(0+`vf|0
zp~*Xm9Yrq8hb6sNxI3F<@}&}8<=w>YCVzy_e8vC&pX#NsZvu}>dW(;VeMHXLTd8C}
z`Qs*eB7y$K2PAkhi}n8(Zz%a>0?#IJag^(+1lVPJI)TCRAto7`z%%mGU9E!WRL@C<
zB{1Ch^9j6Q{KW)DHL$bb<pegCZaO}}f2c81J}Lnoo60sifme)=k&I2?RmnJ$^X8iq
z6L>9wZ~~D8UQgf+t$v;a-b~;vCM_Lv#YqWFl`xqsnUcWUCV3}e9p1*FX$eeMID;=o
z@~)|wnZO;JY^<4Wk~!Qu_Boiay_ew8T-L+Q6F)FDA972qQpDV=C&o>~mw;a$5QAdK
zjD9)T#rvy9*`01*kU%VfxI7_d6G%!pno1yTJi`rqtc_t#N#5iI$$YMRJnvw-o$aFp
z7ApMM)O?b_BIAqs@>jT7wv0<Sfh&`!ki-hEpD#4nlfd2tRwl42fz=7D;rjNQbGufU
zwF#_GV1xWq@v{UzH|x?m$;BBZH%h)T`4^He6WC;u%?aeS4u5TuEeUKjzAb^%KU!a9
ze4~fvqwnCdmG2aHnS3`_q!n%!48LgGm%#7b{j%NR`YwU}2^>h^U;^JK@QcDjB1exU
z@Pquv1P)7%ByiM>ZhNQ!YxtemPfCuP{AX^<T^$@^`&HoyZaZf5H_mg0n?u|o{F%Uo
z1pec`PCJUf#J~BX5;$Y_A?Fe}Yy6*tb)73t$o8+o^Bk>Q#O_6P%OwAQPSd3XO2|u!
zrNq)^bi&_G7%!VdIpbGI$|o`SL+fm&ib-6Rv<_*zF^LDCuvbc=W)koAbkHj+sgguh
z36p9`R5xBDiL2#fR~B>V8coFsua#UUUN7Dt))H$casE{s%dQ{cx+#g7ZJc$)o5fqi
zTa&m=a=XZyJCbN}n}bp>iMx_`Hi_qwsGr2$N%TtM(Ijk1>l0B?62(dDM25MSiuvm7
zN$VrZJxMr{a3<kOT7RdSij)TYD`32lq%j}GB;MwZX7c7@3(;*xr_?XmGKqVWXqCi$
zdX%n7+@C~ic}MX9u^ktYq>b2C<g=O=wLbi`SGR-sP|~_U97DE;m2?t2i(U9|m#oh`
zY~7S}7atLOB+*mC(G%?(_D<rntb1q@&m?hjkmIo=`XtdeiIsaD{gN0Yd0c!#>@N-w
zSu-$+V=LSgwkMN#O8L`fbg*Pd5*14qv7k{=3tlj=+)DSj%C2Ea3{PT85^pC_={iT#
zbI#|Jcp(X1<oU&<bqvWEPBqZ=QW7I1FN;h@CNWAr+9a<?CV%G`o5ZV{c3cu~NX92I
zK{8Q%Gl|zEod4?*mYo=D9bv-uRuYrU=w!ZMx7!)Mlf={{&NOw$l9-mn^d#n7babjx
zG=r;X5+5e5Pck#P?&%u-?@4Bfvso#bYesoZewMwj?mY1Wy^jn%nh$5?O~RLiU)?|w
zVM)-8hLTvf$~rqNVv?xD_Jk{*v@QzDi=QX>R+e=n#T3`@Br-{4)h&oQku~`w#;z!)
z%uiy0!jHs-N$Zn8^J^bzNG?iZaT149IFiDWB$g)8JB7zmSeC@{B>qd{BKQA%qm%e4
ziQ`GEN@8^qyST4N+1Dhk-<URX^Eu;MD`)pp$!AG?E?Fn8H=`RQUv9U3k;Ippa8nZ7
zB%I0SB)*b=Ep9RS)+A3xwy}V1yTWh89pbm*PCm~k8?#_{5_^&uv)j3sdykdwL-Kv%
zcjEpe4oD7)to%M{-M5ay`X9Ih(S-EFk|W|#ZVQrgE3LAhllUcxzxZ;J_?4^EN;l6O
z=cmvU@{{6kB8PsL{2~4+p5k)8=;TnRI~}K!I5Me0@0IQ|NwCXyR`QQ{PW+d9OEY>Q
zi66=pvFuV3B~oabLbDV~rcf${>r=QPh0-Z&1Fw+6-!p9^R=Uficn20x*vh6*PJV@0
z-sD%NtlxH7P%*`K7L`(X_+MuYky1H@D#oj(P|bLC3BRVe+9WkoxJG`hNv=y_-)}a~
zq*e;GQ*d%M<7IzRSkcXOdkUxiaZ+wdp^lQ9MJBhTaI5j#B$NBu??~ZJO;T61rBF|D
zmsnrq4DU|i;%pnGNJ+8D?Gi@{i9=3~@@csAWEzMK#YQPKmT<I*WI?Htr831!Bev!#
zv`F!+1a$t+_5feV9NRr|c3VpB6<einpX7eAwYc|bJIiLSbU&Cvn-tonKySxIBxx^p
z5Sc$D>6k)xrJLPOoI?s-6m}Q8n#yjHFIKuANufsyJ=N`%!lPW~dH0KLnsV~PYLq@H
z^iARQ6y8XoUkZ<>@JtHNrmUacpGcv93Imvrw(Y&ovF^&Euhv=DQW%)Rpp<oX{F5T(
zsT7`;4;F`*d}s=eQPv6a{1%$q;E>Wq&!sRdh1~DO!&7)Zg%?u)|AuW8Cy~Eok`XDq
zEFUR0D7g9U+2|BrQFlxV<0WIoS49?#OJQn1>w5JQOfpgOS_+#o))#bdrtnq@3sU$f
zg-KkiySqL};lmUrbNS!onv%lXDZImlP}VUsg;|`NoZV?DOqb6v$-61*XHyQb%}!yC
z$@!hwT={z@d0#S*OY)GlkG-(l;YlHtLX)y~Z_2u4y)OlS3ITak42m2Ir4TkA;X1t1
z%`j$?IM-X_NiI*=Im+3lHS>&^6?0-<ETk}B!pf=39Sc+VIE62{h*J3JlI@cet{Ch%
z`<8uC3X8e6r@+hauS#Kc3QOh7#N{G~R!COzy{_nBmu*c7>&)m{$*1CH;^!&Us$O)t
za=nrbDQuK5{33;~E)`R_rfp7PhuQAFO5tny7ICY%P24ViBXX)n?VaDIuv6V#DI7HU
z?iBW<uvguEDeRYgXGR~bTk?SMe7%z28$TrZA%!1Jl3Y^qXbQ(tNT-oW<EIpkr|>`;
z52o>R3cqkqm`3$9Ru((^RVey3g%c^9OyRebbs^0w)A&7wKe#teTc6VTm+{XO&Zh7W
z_d?t=>pZN#D8^5xaK<<<JA6)lQT$gtFJ2J;6Dzl{?(}g<ULyVfd6txvN~6LK>p{!t
z(IJ)<%ZYqSS4hgIF?Wjf`M*NidfIFiC0B`+#L8(@F{4$}*7wFNtC7alX}Hp8kVeh4
z^+~C2OGo`Qu1VwCG_FhIdWE-(H>6QV!m?Uv)Ry09lAF@_{$)3Z*ltea7Uj2^(c99P
z-u(Y}47?+aJC)ZJ>zSInBs^u~?lkx`*lcMO881%5ZrmYprmesDEc+;8Z<vN#lhYfe
zd5oOBvDhSyrjlkN^X8HkTw<Tt*u5vsLllbHTBdQYyp>7rOXGgyt<%<RqgmD_jkalw
zNn>mp?b2wUMz=J&r}6Lh;vtQi)*0vMz^B0lHO|pdd|2!xb{4ycEa;j>)rv(Fc-@br
z(Kn5LY247%*+cA^MlZ>uBJ<v9JZ8L48s0DM3?FA$$Np3rPp9#OyuZkBfMj4AgG};d
z8az>sLxYtJOY;v0hM3WzX*?r;)+EoRVf*y|-|IfF@Z~gKFrzP~@sjZoX*`#;=FB!y
z;V5x*8m~y6+3Doat7(i&qq55#N@IK)6VjM{V?&;Pb>k}c#55+SF(nQ9YvSu^ydim0
zd`sl$q%`<X3Wf7|TXUNuzLUn(G^WX?i!;R;;=3X*wKPjI?VxjZ8l75MGnuR8y)@pJ
z%uB;B`5=uC)9`Rnr{Pn=;=gM&*l^I<-_vmO4^DOi%7bZatypyI3mcPg+WIpZNn4+h
z*rJjcS0qV7Oq$UYx60yXEX$^mOXJTpPNk9OcACbXH1=}y++&-c#+PZ_Udh_WF5udm
z#=<l{PU92J<a2RR8q3pIk;Y;(=OvP*;<7X<ZnLhXuu|Q%;wq8hYRMYT^O#k`_GucQ
znbD0uTi>g%Q+K_%A&re@^oukaJ#2l<*raE;S^P@;TIAE-!iAH@wlubLXO+e-lkZ65
z+cb8jd7P?^WxP)r$;NMY$=xdB!EF1|_>ODKx7L*a_os0{es2@!!L;?y+Arew;vudW
zY5sy{<;O(I;WUmIKgwsj%FXa6CC5$vv*h%e;$I~v#FOH0;_u=gA}9Z2yYnyZqSL69
zLFEiCbatIi;|%u+3yW{KWP5mwZF4>Q*);x1qsJ=uIqn>|zfI$Uy5%$YPf{|2QW>k@
zVj7o}&`V@6w}G9)R$8NFGbkfrf(&>)2TD1UT#@0;rmf;Dl~fQbn$fE==#?wxXq61A
zW?;*pD1*E2byv%v;b_;58C1_;_9}M`k#cngH8Z#-gKL%CVDjrE*Jm)fgOg>oOkO*K
zjVFqk+>}9`jP=R$<_zwX+#=p8-X`8I-XXG*AMfkR>xp-X_08zr8O&d0U6q<|I#0v-
zVz}eB^)^QaPCmW)xOP5V88qOM%;91V4Krwz!RRbr$)a%vO)~g8gDn{}&7fHZV>5U)
zgXS5u$e>LIZ8LCZa8Cw22LY>WU$1iWSDuzEIBI|IQ`@~6w90_OcAw<_3|gDy0m*|I
zoXr)npj`&-Gk76`7c=OP!9yAJ<@3*=W5(L{yNi^EGrX{am2@^qmkhcZ?<RTUQ|o`3
zNBG96+mmlx29KJW$1><`JW<oy9{Z@<Vo}M*Gk79neQbDE?4QBY5+(yA1I0n&lj2ic
z@v_$Eioxm*5r>KlpOG|sw<P_!42GF}cm~hQOIEPXbXeHc)n=^i_%F7XG9X8YFN-5H
z7$spoI)hh?kICS%O~nkyWiUR2k1|-8!GsJZX7EX|Bb32we6x6{TL$lBtZ&a=&)^LS
z{Y}YR8B8+CWXY5ard_nLU@9eJ-C6a+4Bo2cm@dxAV20#fk@?IFX31xZ^;Q)#WSh%(
z*3`V8!93$1NE-j>^l0W@(I@h;{E~ne<Z~NrXBf^Pl0h_M9if!TSpS>E<m|>Ji42mG
zl*!W>{JhFK?kKDJoX83Dl7cv2T)=fHZv6{0y@KoG3|3~aDg*i_;v#XexI|o<!7>SJ
zmS?cSc$KqG{-c*!<y@VyZjiAigS8oWxaa2<EunuV`8<PllJzFvz_szHodsVg`BK~@
zZZ<VvWsqIsV9nMHwq<Zj7Pn@xJ%evD_%(wQ8SKd5TW*q96n&S$PHxEW*$O%P!nXEZ
z86557V%wd;9^-o@`@}M<-TNv1Tn92Z$eBOX;Cu0?cu4#qgC8Y_Mb;eQg6iy|98>a>
zc-)NsEcu1cxssDLCo}jhgDP26&Ej`$Xm_o4pUvQp46b_8@uzr7{7Yo`x8$^VCWBiy
z*%|(m!MP0n&EP!O)kN`?S&J7kfaJdnE-Jqymdf&c8LNP;WEP?IPD*K$l*xj(h`Kyl
zHj8q~uP~$Kv)1Rj%cB*tsHprZv65KXRGy#OAYP$Gr47z%Sya!WMi$o%aov!$u3}2L
zTHTuBHR83TgrnDIF}$yXQcLxmq_*V7EN+t2G5O7s1q<!BWpR5Jt+RL_i#xKoGmHDP
z*3mw7vpm?(&6B<xX02<J))Vi_qJ9>4%Wa}VEXtx-!b*GA`rJ-ob7tW(d4nthe_CN9
zKHIgn##uCxG|l23Ni&f{&9i7>+?}<~fMdwkGK+gn-b!*`*1FCohqgZJ;y*PHX3-{#
z!C4I9tIMKY7QM2(aE-Oqx6h)?c3T&D2l1gSI!ZYDa2B16ch2I=tc_t;O~R?VNxEn8
zh)H@#dS<O-m|4&}i*9Y5{j;dE+xeKhkI1mEq@Vb>_yphmPi!1w@c>OSFpEKwC$r$+
z(5K`aeL8Dh)sw<YE)30LScxJYe)CKgJ=WQt&GN&%CBwv*_`XY?7n#2xc`*zAX=ZnX
z$zPU?6h~$8;A%HV$7C@!i_ST8$>G&3#%1wc7W=appT&eMW@Ry(D?=8q9<}iZ+t;{k
z{kB1?-LGeno$7ici#M69cfOUyR0(}j7L(;u#J5fUP8JJKIax5xB-14`vUt}dGx=Dn
z-K?3z6)B7SF59{+-pk_sELLXG;Zw)FEI!C0!$;5JL)L7w1x1hO6&d;@eld_m>Y|Nd
zD2uR?NEQiG8O<VQJf5}A)?sDRBq>Rn?AU;L&g2Uvd9jeie8~bc`cW3q)o#|aeVoN7
zSuE1f;w+X)mYB+=TwO0Vxm>wi;fgGH>3b%t^m<o|Ys9tUr{ZTK7s%&XJiVisvObFq
zS!~Q&KmC+A=G>CS7jkyL<eDJgY?80C_}Vysl;4`gHtye!Ik$_u#BZ|LA^BG1=uWO4
zQ|y%8O7@6*#eJsczNxMQSsdh^B!|{He4oW3u3$%<x8?B0DccWO{Fk*pYyFtT;Vh1D
z$C$<0tTl8@{FR$k7C*@u9?#-u<G*Bakq4fgvYk}&m&t$QUx6(CQ1?&qRMxtRJ1f84
z?j-+Kcv?IoGAw=2M*fq<Ig|V=IWJz|4&)na+KX9S;!DfH+a6cutY=;_hf<Q#Ih2(!
zERzF_PrR;FIpbGI%I8q%V;$*HA%}`NT$Mwm9B#;=Rt}YOsFFjC9IjSnRk2zQ3ywSZ
za||b`o&)!96Gqr-YUo<=8j-tt7F?IZ^*J0F>{_+jeW|8(bV}_UZp`5p)!Za9yg7$D
z^44|#e_w!~9<W}{tvMX~)Ow)XbGRdiJ9DVZPwY7~%30r9*UO<;a+g?NWPW!JHseJ(
ztcw;iw41~sapvGMNdt*}S8-#BTWn%Rn@XDH(A*>~a^SydoG05oIkYtSy*acpeqYYI
z5g`j6$l<{p+T^Sgy?NuO`m=0z?6p@e?`WIDUw=D0&2Y8Lfov~!$l)Ogla728<DK}9
z+~Z)_HHU6F?95?Tj-OZYNDko~B02QPp=S;+=P)vdbNg()a#*$7@k9=fs@q#+{#Xuu
z<b6%jPx5#U=LgtX&_9O(ISka~Lvk3J!yx&S;#1<&BIiF?vVKy7XC%*y&zjNaB*Vnv
zIgFUnfRntS?u+6};s}vLJhqJ-mBWM_Cgw1jlCZJ8lEWC|WBFIW_&CY<91ibvvh1}S
zUe8&#O!aVE&RGY0yq&{4k~edBOEO8EEV5t<-<pBeVH<2ybC{XKtQ@9kbh<dhRKA<D
zuI<3G*-G9Q=ZJGn&3ifY{=Jwr^OSrberQI0=d4?rdUNpUNz(n2Kn_8ZgmSzro0~(?
z9Afkw7IC%7Vb3{N$<J(iR=X29By&jdT|VP1h-on+GR#VHVm^nH%ZnMZ&F402YCg(g
zq4AHooKeJr#r$8mziV|4YjS9I&ap&Xn!_^5a&d*YQe@4l96x8;C}nor*XFP>hc9xV
ze=2^K!{?H9BJ=f<4LO`z?PhnwK*yKdd*ndbBvLj@zRKZilWgGvoL|f#wrvWxi{FSl
z#BW*id;=Ej=Cb0#<U{1p?-Scz?Na{8VP6j4<*+}8`t2ON`sLvq4#?R(DEU5zLniq_
z@}rm>;X0DTQSM+1#mB^7#h=9EIs7c)=r4TeA=b=KnB-&*zZw5s(yFSHx54dmRnwVC
z+g~~S%@w%3qy2pAf^37YbeztCJR_bJ{}IoL|BC0u3*1YuakKbR4khxqvVaN&l+2@4
z9`QU9d6dqhOdb#B(IyY%Q8th3^SB|8a(P^lx4z`Bn#X&Ci?6%Q!J~=F=dELkt`sZe
zQBiW0$h?xIvREaL9d0|rYMKe>Q$3Fw@~cf!Q*w=Xt$1A?yEoccoLKItmB;OQ+>y7w
z?Wrx^n8!_$I^xaZE#j>rD{spq$}?3*+wRPxZr(b`|DHVRN$hzzBzKAR#k)mYo>vk7
z{}}<rdFzMB%V!5T^Jt>nB{mQnij72;HRc1YabK=)nnyF`&BYd`#+}Dc2W+fqna6E6
z+V2%xiR|7dxnFE8K9EO?V-60r&7)l&6Y`jtNBcZ>dfnaf=$=Q1Jhopfeu&{3H(N)^
z!+CU)bQZgq(XM&x^m&%~+)W?JTVLZ3%A-dfJ@a7Fi;GV3sK}%@Yvg@Q(l-zH_cjha
zuH*@^zc|3u49r`n)UoEtJf6zq={yGK@roX9NFGD;7$N7QKa<CB<Im>tobh3l(*OT%
z|M@&#Q2t^bFG<c#ww;;u|IwH87^!fS$a#*=TUW`Wj4{dBJYJQLGs$?qn;%$ncrB0D
z^O%#z+&tdM<IOyH9=+pn*Z3apw>X~@&S`l}%7fj>B4tV*Z_D2?$y7c=o>tJqJzbN`
z5Z@JNinBz{ZMKB#<d;`BdM}TGYux@k=<kd3#1F&|^YBQ#B5Qoy7%y292DnL9cLYUB
zD37o_B1TOf%j3sC?JP*<k;>z%Jig8&oku2*PxJUJk1SVjZt{KYYxBtGQ7!LYn#a%E
zY=u1jUErRd#{$Vmd3-EkxKP6HFzKJ<u}Iy;W^@T3<x(++mgTMMYAzQkEAm)rd{rK+
zjj!R}<`)|a26T6E$NS8E&d>8`-O@dAjeA`l@9ZpQTQAv=$3~NU!384UWRlHX@lH5d
zyd{sVd<XNmn8&J9wrzRr&GV231lG8>i{FSl^7vM=Q{?C_?rn_k$>YU7E{5Ob!Gm@V
zbH~`B0cC$42b9nc=JCD!kV$@!{Ful7hHe%d$>V4q$GEZQaf++ZkIv&F<s=uf{1@?8
zlb^_2cOYc}+i!XNuKW-2PjS&S7l;1J<8O6Oi|6t<BRMOw;2-YyR=Y3H=ifZeoBTrF
zy4wZwldm_plt&5f{0rcLj*}ZXc!#)B1@w&Af4x||Y>m5g0c4p1ASo-B6R!|CTE2jK
zbL^Cg1zc6YlLb6gK&1jI7tpeRdkd&iK-B{7DxiJ=)e3mJs&#{mn+vF3K#hX6=eb&}
zCDs(LDd1Ykbs}r7m)yYoyo+77+DdK|Zz`aUsjN|O_q@w~O9AaB*lsQ0Hp%TGlRFBy
zQ(o63^$KX-%Fdy?3)YSE8Wzx~fO7L}wgTQh<0=x1MSB4biBoimtZ7ideQ($(JV<;0
z8aJ<u+PHuw1?v*2O~qznbCF?-0^G*$Dd4?94u-8blLC74RTOZ4!MZQuLj`m!SpV?0
zF5rOz-hbczph#&WY0H-&X)ks#qvzMSc{|kQ6K%X6)WZdIDxmyYJ6mT-mjb#L(5-;(
zChu9mBgT6aFt)0b#l1}OsN~wU?mnFGb=ysDJ3lS=Euhv^J6k`=<Kh!y{{jX`28yg1
zRKTDCR`JsX3@%_v0ZR)QQozsxW*0E0fM*JLwqP9q@MZx#;`+G)Ugiq3#D21zV^{&?
z@B*Hfydb_Pz9e#VL;=mRHp<8XMinqx(~cK8lUE8DBOfciYVvUftR8J$SA=as0TY$K
zCcbWJ-rzGiUCe^F3Yb(tqMvJW0W%8Vcg6H6Tmcl)-;qo$V46v$bK0dg4zc*%0%mF|
z`Yh#?xqRyjSX{6U+I+u&d3vuGws3q<z|9LB!2&`Bd?;tvBk>mCllV;@C|GwcU_rQm
z2-mt%w*T>TCU7%V{~xz~w1_NGQA!jo^E@;2JSsAgQiv8yN!o}|%C3|s6%iF>_bU|&
zJ+tro*q4-KEm6rHBBa9qb3S$cuh)5fUhnfc-@BcA?wy%C=bqz}ekxs3hR@0{pSz^&
z7t)1NMt)vq-Yg(6Et0vo3~yF<|Lc4yr>qQK8~^+S_{9Nf(E6b=gvA`Rnae&l+x!NP
zmmyJxpUUua8Iom4m0?R6w({%`b)?JCH0SwRoGC-L3^{SW3@gg8vJ3@fmr9pOxzuvr
zPs*8R0!*vQuvY$RTe?P2^^x-H1YcQyJ#RRgmEfB)439WBNWYbClzu1OBxS(nGS2Sp
zCTuG+qgFnU^IUUD5eLxNUIyy-(jTNdq(7Enr+}rqSXVzd34D$57v4;`>AxMj%kXO%
z_LP~I)P5_&;WF$M@00GA9*`cCGVBmf{c;C^Uk{FyneVzMq({r}yWp7gxRj-T2tI$`
zand@c%J8T7v~~VsGZ<3B;D5?+rVMAxaE^CoF9zg1<-9m{<*gS=%S$VGQPGP^Viuj}
z1uR$gnpu8mo^PECyjZcxO^2z97Z+K-su$HPU+gt6WHF$Iw#bdv6x8zK66@3!)bW~1
zW5DHJ)b-*AKX&+0&x<R(c-n{FK3wTVeJ}QValnhKytvwncfEMeiw0g?!!>yEycZ3<
zXynD6UfkuywO*u$my~)<!@JIl#)2kZ6bY`E-XLYbje?t`4lgF<{(B#)*bAqPaS7bg
z60dnm!v&jqakCe<$n<z|yBD{Ln@O8XZ<8{(g%>qz{@0SfXk~V+rHWcf?~t~Zu02t%
zjTd)&@vs-&yk^+ad%Spn)$)sj+*VFIX?y9tUUcxHqnKTW?(^b)@#r-!zSO`)9@Mg2
zyptE5Eq4)gl|IDvzgWV6N4(&3xhK8mkqDu?7mvyz_weE|%a045@M30v^BnIfFM4{>
zOH1{YJ}vDn?IYz1pJ9vY>Lm1&(_i|mEq#tPf14?NsAI_sUcBkWTVDJ!xMZLggS;5*
z#SkxgoN>M6#YiuPikTfI7%m;*#f#RzJ?DJc@)*G@(otT#YW>k(r0#WbC9lbO-TGq%
zZ+H<r&&|?JvmE?`V;q}e#=|sT@V0b<7ZU~V*wRT}Ococ8oBtHv_hJgy<3-4esa|~G
z#ayrH*T<hQWj#wiWU${e&5Ls!F*x9v?!^r8OzX_@Vz%WuY~=f#4Evwf@R1iEdoj<8
zPn7-Ai%$hy`R87ICY~={AYEunTh%K1LcGX2i`iPl$25mgnf1M1_$>Pc0WV&;%k=u|
z<oATVSmwoY-3KCUw_e1&W|X|R7g<3<nv|xbEKLhC+{4z*m}Sbz$$L?-F-ryGr(=Z|
zD|y~8b#L}!l`cA7cVBz4TD(TOR=Q65m6S2-y|}S$Gr~94*}(l5Z?w*Lf=#@4y-~`@
zEnaNZwzf%sk#6_mdtM-3>`-=>^hYW8YNyxq!y)`+ou9pCTpc>Q<@{>>J%YW`eO_=3
zNyhLFaFBN-ABufA<i-4)=Ql47dvSz!xpU4_Ui|4r)x(aXyg&rUq;!sZ@rU??bxyJ+
zxZNx|?ZsbS)b^o{&)i}D_M(Ch6@B<eH<mNfv(j^3lv7N3>0>*}adcuXQc2mWQut8W
zhx5cNy3mL7EnncnsLD-gR<X`Sg3I-%Ks6sO_My5DHEd}uK}{d{>w`-%UE)J#levpt
z>ceF|)c4`4f7jqcUBNZinQkXc^?bNO&XrO+!>d%hT70dvf%UHuG?X^-;ez|k{q{N^
z8vD@1#@r~lUV4KM-<&crH~HX@Q*Ei)DBl@$`rz`Rn-7op;P&D32c7r%aK8^FK9u^<
z)Q6jW=0Bi&e7MDjd)GNUQo^l1G_%~?hubW-U~SZNGT?SOEq!R^!yUHtE+1N3zSD<w
zXWfi!W1YKw7#VcX;TGHa&`z5sw`YL3gLOLcd`&lDobzI7&Qs+`iwAso&<8>%DWS8V
zi?pi`4_W_VA9iVx?mj%~!{o!xb35Hv{_OZ<g|i1M^PKDYZ=8?$Kz-bYCj?JQpOW^J
zva}a>CRt4A<HIvPRPqCU^!1^i4_+U9KJ@qDSs&i>;e8*T^I?DwPq%iB^Wk|Pw!Y(f
z&1VK@d%=f+J`D09S*_VHABGDC`!K|Zp<-&FgNvmjlqI|(c+rQKtTR&ZvJZ;}mM~zH
zvaj0G(Sk8PGZGO?U-y|GBTQp`c*F9WKD;GfzSO*9HQs0DWq8{({vxIcf{D_1q?4qR
zrSJOiX|a=GQ+$}}!yF&ZHZI`|Yg-Gh#x<ND`0%06Oej1}N|-K~;loV9EbGtqnU7-z
z@Nwu|AO7dVM?QS)`>)^i0>M1#C)}doGg~^}haY_AIqE{TVIRJ*{$kdN<)5pYH81hu
zOY4;ROb;uXepa#%-<y?~Zbd;K*61<``4ILYq9bA_qNOx_h$$PFW_(Bpc*sdXN}A?Y
zYPx7LWqruW%-hI<fZtn|`TiSiX}J$8EU)xomF3lJ9z)CsOKW+t`0!WG^A&5Uuk$+}
z)+<ZrYhK-!H~8?a<&8c}aXJ~m_)R`+)`DB4bhi4i&GL3_j^+-Z`9jXY+xM^z4?2I8
z?&S3%_(}S+l%>D;u-o#lyt(B)H21Pfec*SA{XQJ!`o#yN2YLS&{3bmtW#kbb_8xT-
zj`_g90REH`jtl<q;e_C%^-uY5B;sViX&$K$fAhAlqH=zm5p4H*SbA1`&Mx)!LQi?W
zS$_p7p`srR7Mk@`_TxN1p7rB7KhF2#0zX>#;ql`_KdSh_p&m;7xX6#Heq6z<ADJEQ
zYJSxAn-MB5R+dh6KWd0;N^4pF62BQElmT@V&qXfv<1+E((z@2KCtzo-3OAJ0_v2bW
zuJhw6KbU2@TF}6cYXl9g-^h=hBV7#Oa50VjW~dp5A58@0>jgLXaieu^@}t+w|BW_Z
z<VUf5r!92}+<tJBW-eapN9Q}6HB}|tEM;xnBDhuB%#Y^Qzs--y@3|OoyB{t6=9ybh
zKU(pi{OIn-xzCDQ)9hE=&X4wf+$p|GO0$h0cZ=__PFufeiY#KfS7sMKItV&S@AKn+
z!2^DD5-{>Xzj?;;?^2!p;MnZ{a#saBBz@SAZZ`fAKT7jv))nsFqki<zev%*K*2Paq
zpS1o{exzD?7|_elzmlC#O9{ONef)UFI(_}<XSu&%#jT|S{CM7v&-|Fr{q$p?AFui`
z+HbzY^m?vjkl#EoWEw0O;>S=whWRmE*^$x_(if$Se2G;(;lK9?UY7Zabd(=$qGnZN
zSosqi@A~l`Yr~J%+4$wqd|U8_^i4nBvi>;1ct0Nb*}<?0%1)HNV`C->Cj0S6RTpF4
zXOr&cx@x~;u3(BEQ(41)e5fpoW(ubHG2J>d{NUiOEMl4^bGCF2FTJi#n*U?t-|zTH
zO8D51dE!s3^QoX+w0MCZ3;l@s5%=SBKQ6h=(<$%q`OWj9FQkk7SS+BkMDV2_W!CZX
zC}x_+M1D4;yjeEjN6>PJSA;lXov60Uu!J8;Ki2rMmaW2%2PQiQ=RHgPNQ*PltTZRh
zOBq(+8RzV=ieKgjms;+}3ITbgAFC{{_Jc#P(&X-~^K)hmeC@|qcF)~sO1=?qmTs{A
zw}Op+d}p0ayw`nhj&X~1whFfSvE4e~`>}g{F=Kw@Ers`)AQ}d-%a5P9GXV?<;AcO6
zVS5XpRRFvF_|=aa0=O}NJ$~%v9Wr1#rn1TH<9%3-aK9f11PA^2-H&5_98#7szX=Ze
zal|@DdHbFCUrRpj$Dh{!!;ce|PYO=)#>h!pb)}q^^Oqlg+n9e?OP`pQf0oy*ALRo7
zT~n0><pZc7s3@&uOA$bqf?4W3Ip<sdf&ebGTqS^q?=Ue{1E?0j#Q{_gpkaWI)EqSe
z=Ei$z0G9<&Q(Q|*^AbUAX`KN6S@hrBZI=g7UuIotJt^a_2;j<po#y5ae3kXD7BrAv
z6TsBGho#(fqX4eeK9H{qps~1#b*>NK-8IE5x+!3W3~d^~%>hmY<#I@iq{UKa04{-B
zS|Vj+X#oDbhp;;Dxg~)8dD91jo4z%GX4;wN(%Ymhq#o(*Qbw|O#~lH*4&a#p`UY@k
z0C%wo{pxr)U|ybW6F{nkr(*zjD@*4dL0f6N0NM-gwWS@{6k%qRzAs>IoA*lz4+tI%
zpi=;y#a*NiNxKHntJQzcyOI}|pMJ{GEr3S?=+2WH0JBU_33>$hFw;03Jm+!26VfMD
zlk|HkOXwwdI)L8R>BAMi;$ji^r=PaF;4gQ7!Lw5O&jm0*{JeEu2w<S)K>>I>ns<eU
z1~4pubpd=8!0-S@1TZ(i8KCfD051jbdH`d2JuY>uo#tq9);%&{CbWGyfL8>gq_0Xx
zOUFnV^I8Cv@@6tzPJH%;s`Q<JnP=_I0NxUelhPR<z}w;p)|nW<gIBm&#LAx(z+_fP
zfIVH!No1N4!29AUY@C7*q|>AyO4%!ek<$a%RM|<GDRY)|wv^@^?rLij_E7*I2M`M&
z9zeZkOXda4OXWV62JmSBp9S#IC&f&Q1oHz}AXq5<+?IY3z@g6^|3)sBxg>xuZE2an
zYu4;y4A<}1RssP81$07e#^Q)|qJnX!-H8B_0kr8-!g+gn%2ENWu;(!yKt`MmAQwR1
z`bz^SSYG~0`DOpl0i5gm-&50-0j!e0TDr!@tQCywi}eBXBjv{cb_Q@y_2yp(OwW^V
z0@(XUiwyyM%dGf2={DB3fTf!Q*kXBW0D&!Tn%k}OeE>gL-obV_-o?^g0sIue=>Yy>
zdkdh&90!LF{XKwR_z}QH*xU7M00#x+JzQM8Pr6@vK-$>rV89{qZ_>lkBT^O}4Pf(=
zE&|84Iu<a4TpgGGAw3~I8New4OaJ8kC*ve=bp5{r7=NJj!l3!Y|0iJdjPxvPHGpzK
zln<hUO3w?Tq5x7xRtlQ;J_t;egP1ed!1=cHf}ojQh)$ItE()S*5Y>XXJZLt@ba4=u
zh^tF$NNY-KNg1<nrK`5Mj`ULNUlug`&w#qtsTaf*L0qY9{UENk{#8Nb-!zd-4P<_D
zptMmC*9H*}A`!%OK{O8H#UNe^qDc_f2hk>oyMwqPhzoWXmjqE7#CZkJjX~TL1jkEp
z{Hsrv6bXuha9YO|gj?MAN;f0<bg^mBe6)FjxS1<2bKW8)+$v}mM04xh7DNlnmy|EL
zo!ryeQrb$&>>YyE(mSPhvHmBQu;`v3+6K`-XkNK$7exCY9%UsQaorm<_j&#V?jq<A
zL`T7W()*<k1o5DtleBY?bHtc;KRLGQzsq(FnjhK^NgocPn}E(EL3Fpw*Y|n^@t8LH
zxb$i16VfMxcuLSy${p(!M7hmw0#k39eS&z#mi86&W5ZkQV8F9FF7C{8K@14udF|&5
zK@1VlA1D|U#9-^Zc(B}1@i6Id=?Gg|XkR)qh?j$yAH)K-(jZ0!F(ZhXLA)9SCzW{f
za@Tu7j1FQ<5UndUdo74@0`lvEu|d2cc+>iC1+jQ<F$2cSd0RRmh>1bGV`C-@CIvBk
zpM#N1@A8Xc!bx~PXg=1NrU<46@qu+d6iky&=U)BcW|(7?V-_1*!813AC4SFrUVQ?x
zvqA~|{{``p0{H0WW5K*2J`sE>Wz1*XO2<+H>u@1kZ_Oef8&ARWc@QVRc774WBEe$m
z66u#xmX-zK6>neeVAik215&OhC<w9rTPGrjN@GE+TIgU{GKdtfju37MAss}9D-7aP
z5ZR!4&bBUyuLL=1URnrZsbE<U%LOZfSS?s7<$|l&y7m<lnAXT#%d<1p#q9bZ{+U;F
znD?kguCIgmCWs9|d>h1$Abt#@=@+hzL2MO#C*367EM@5yF0#=<VA>YMcKP2+f3Pv^
z{JB%SJBVNTD?t2{E&W;WOVIRh|93rm<Q$Oh4Pu{-+#kf@`%KJ1IftzO8=GqljxFHg
zAsh+fsE*}#=`kt&<AOh=C%B#gB{csG;&c!VLbxV`zjQ5J9MWF^tdk&~E_lxH4j)3L
zkm0j(&aozyEia{CA!K?y5+LV7>sJ<>Cp}+!K?p-WcQCSwvKL9KN@-RLnVw*T>LJt!
zp{Dla(hx2a)RJBjLTy1EDO>59j%J51SN2M2U1_}#uCOtWuPa~Q@>L;RZMkRj@(n|1
z6hcu5zic%Bty~+zbs>ZfI39V~JkoC*LK9`LmvVrS8w58>Z;~?D5klpRlfab}hv3xO
zTv9sj5K6?Q)@d5Tn>C79bZZFBLg*Yqmk^qVa9ap>h0rF179nty52nxByQrQJZnsX$
z5L$`vkhZq|ogoZsWrFVxq24W?_E(nN8^S#yd_2O@R@zS5UP`mD#M2=JhINz@?hE05
z%MXO`pyf^>?29`Y&^3gILU<;Gz9Bpu!kn>9p9rDW*DgXgWgiKlyMWH4A@mSGW}U}F
zILKb0W1Di3CqsBj%l4Gg=_PnNgx=Qa6T<dNP8RhG;m?JxVXr#}h0s4_`r9)-8^Uwq
z0n+ECFWAz7T+crah7D$u3t=cLCxo}zBqlnChcF_9H^eW7@RDGRbfk1t2rmm5{7MK_
zeWpLstJWFKi>0e^m|hFvb?c7}Vfc|^ns3T^OFGV$jt}ANdQ&>VIuk>9M?A?olS3F?
z@G$265T>w&e1*5Z!c?`@F=@P(<{O3hFobC#Ob=mj0z(p*5yH$6PDSx&6thB@9m1I~
z&W153gt;Ny9L6nS{4a!$Lf9X|0iOC0=7q2^gzrN5B!o{xh=-5};j<9tvoVLzt4@Ul
zAuQxo*4GmZ;q#Dr4RA>a{3C<#MF@-JkQawAX_uS8qAwLtCiO~vQol676WXLH!`NMu
zL;8n9_#;tTe}_B5Lkocr<IQJ7ae9KY|5QgZgj5Kn$IE>cGF|A?T!U&L!)l*b#FQ1}
zr1=mEf~B@}8PC^!%^0>KWZsEeDP1L9EnOpBD`mjC5PFU^Z?u^Yf)KtA{r7LqH-Zh)
zZ$l_P>Sn;E5H^RfHH2;2r7f)3g6IBgoX%@YrtWcWm$@^9T_JoQ!j>7X#{HZ>gh1UP
z{V{|Iqn*sMhdCc3{KU#HnAa12<_&g>^Oq2I3&_6;_Jpw4I{QMXHrK(TgCQK^1s=u~
zVf+@t;Shcg;TTVA!f_;Ide<D~=jJUgzVO9YGMiplbey#vLWNIIC5#i=!!y#)hdEEO
z<?s{_b29xYIL#9w_}lvbgv_5-3^>a+Q@!Y12<5^kA2wWBT0zQe#V{&aMi`MdoHWmq
zbH4NfTY6#GyhhE^i^68Yi>hH%3*+K2wiG<IrPZa()(E4f<ys6Dv%f2g>WD9uUM9U<
z%A&eqGioK_$}sAOaU)l*sa~!M<La>au;?-0e2;Aq#x-Fy44c<dZU|%INJk^_wbJXP
zjin4|BDg+`kD_MoAqH~@+?&F1gmJ^4?qJ4M6gK1O6-%8`mz1VkP!dL|b()6FYosi?
zHH>Cqd=|$1Fq(&PTNodPF)fT1VR*uLHjL-OxIK)PVLTc}4<1(-sq0Gb4WmOCcZAV8
zj5~QcsuVG`6WkR>8^PVyzemtEjAgsr|3<cFowRe2J92H`ySs$>$gB81F|+pz9*{m5
zMknic4x??>!GNxc=OPb<@vyj?^bzZK52JRqA_hDb#+cqE6X$w*h0W-)k4v8j<H<0d
z3Y+mgXfpMb-+Y<#=`fBLJWRa>eWcHX(O1yVmi7<BJGg{l19UbghVf1q&xi3s7?1y1
zGBAu$VZ0i~pfCo@8NzcXVChi7urP*OXGGYHn8YHcm%<on{g-);EdMdvvu9WF=rE{n
zO2>rpnt;yhVT`r>1~>hkn<mp+GRH~Bhw-+JnZRbS$i;w3VL1Ob-#YjdbaEI~mwMin
zz9(h&{V=A8r&{L&o`nrg7EKRhMi`%}24;p4uV3MlFpf5;&?)bk#j}?8%;u+nV6K$T
z|JZuPA6sW$*t|!^BJRW3H%u3cY6HqI2xDOw--q!-7@vpnMHn%zKa53TEM|khxO_B>
z&_ENsBy4^Le#uXnq^nFy@Ctlk_`?W<5ww0-5DJ@dV;II13FD8p21XRS7H@V=I#MnX
zMw0C<Y<?rN+XFX|4r6&3E5gWxao39urmP?*%}Wc?rEK8>#*A3xSQ*Avx97XC8KHMo
z7^{_CBmJ6ZT(D01m2|z7i}2P&{YKdh(r=|3!<cv4%_6RFQy81I<}Fe>Tf^99c{^)$
zkCWz(Fn$bUcNo8hu``TaVa%*&rqJCL^6(e^Pdu*L=3&UsVRYM5`b!v-_7?NC>peQB
z44Zj%vzwNB_OjW(Te2^V{b3vsALNM^9FqPfJuGG95yAWC+`kKsQCZKt`G@gm7^h{P
z44ZM)PKnR`<XE!W!C4XiqABMeX|8G!*XFA4u3yJVI2T5_2yTm_MHJ;Ds1QLRf~65u
zjG$5k?ILI&0V1dzLDL9sj^Mlq&X3@-2riG9v+0}WxF7;w#&KZ;RU+o0#6=O*6jYVc
zsTSe82BxUGb!tTTlibX6%~UIbORQfzf;yHjjo`}4CWc)K?_TPu8$rDYuAmvg^%2|<
zF*p4B5i}H#uM%7xK?A`x*8jn6A{!}tt@OGG8r#w)0{3~Y8zbg!$y6M{O_m*kq6m&p
zak9v%tV`;amPlDt8o_g?+=N>qxHV#WmERo!$M|Z-x{YAqac6U7>0I33#fz&&#9U&Y
z2yPd&l(vfCjtE+d?~*d+&WQOvOJHgf!JI0lpTj*7w8^>7Oe|>|LErWU?v0>Bgx#Al
zf-$E{ZhyC=V+8j_aDN03MEJbj)Z~Iz&Icpt7QrJCkUL2`OS?$BM(~h;r4Mt@|2B(s
zkKoY=`b6-IcBzN-Dd}SoJT7=b${l+$f(`$)AoR3OFTvB&-mKfX<{?#IWd}+7MbKaH
zYy{5>o|7_cK*aoZCcI#sfowVNHKjAyIzu8DYI#@$2hW)GzZk(w5quEAhY{2DcVq;w
zM=&;G#xQv~f>#9OQ4zc<9&Md5g4ZIL!g&?fIo^oi%?Kt%%om%tq=a`O7-xBW1aDiO
zAeb1zu@4*!`|z<6D%0c$-c`|i()XoPq%57vHowAzO^aZ91fhuO$ulE@nLH5@ER2AE
zUd)pIPdc0DS1?z4Q-2o&J`xi?j$oenlL$T)d?uYA!P84U40zx*C-r2~{W&)j0pSbj
zA}O<r1xut~MlfcnhbEJkm${Ac3j)$0&uM=b1GwAa2qL_obO<rlynuc@!j~xj>!Fm4
zASLEc1{N`8l+8+W5#$A&8HYv7B3RD)iQ>{IRz$Eeg5O!a5v+>fsl$#95q!(|H=U~^
zSR){>6|9TkE5Ul}e=YbXVn%pi*v1IH)3yJzbW;T13wW>C9KjaxR_knwV7uj(!SX+d
zcSwJ<{>}(?S^i1T`v=D_5$ulO*T{dPe;*X=k?xi5i(tPkJrDtBzTog~hph8k1c${(
ztaCJC9#%8vIPa6Z8%MEYV(F~=&FqaQcse3D#rx02Za(X)7&Y)`1g9hTD}uk}pOgM0
zJtJkzS>A;<xCrI62%)^70=1FxD@8RtNXJqLDoa0F>N!7(3!?aEVey4g{Jq?9vABx#
zB5BnqstL?|>kEq+Q$30r3a%-oQ!9!~EZ2^j!JKJc7RBXJIHD+u;?dd_>PFEpibhe?
zi{i-D&8~<dzSMK2lu$p4tHf7Zr-9&_C?@T6Gl1uG<5JJHQ4DzByfS%R)VyWcSlUE-
zeUz^n8I$Qo!A((|K5l}Gqi{yyiozYms;MqM|77RS<4ZjyQ8NY<XY%4h{?aIFE%Pun
zjpAm@x3Koa&8*Wris_Zz4D&>Bdla8X@kJCZqi7YypeP1MaYq!bqj)xo=c2eXio2rd
z95o+aZKQ;bQM@<LdAIbQDB23zN!v?Vdas~E6m>h6FneDVC)Yafmp&kUP)f6tpjV-|
zOB7wBcqob)lO2ym@pu#ui<#{f#Uqxx3m%pBh?@U^81O{&zhBn91y4rtly!PW(M$Za
zv|RYV=d^vIct%cNX+J4{hW8ho`pH?hIR->AkSB$`K%*%6tN4YenW(qUUro()z5kfm
zh=xQlG>U1gQdQ0{p6e(kM=?B#5mCGt#Y<7V#U`}O!!%MbM*6b!73rubUKKEAbkuZB
zA-rat*9Bvvc*8nx3fPx*oM625-;QE}<%v<eBOZ0Om}}!%dzY=TrHcdBy%)v%QB2{!
zedOutbA6yapBly4cU^5qIX<*!d85lLH6w~oqS(B~F_VvgqL>{;pK;DLXI)eNE}kQv
zEB&AJBPjzuj$+=w+}p+Mr&{M{QQWi4!!%#8K)NuBrX_Bgi=yn2g72gFA&MnYd>KV1
zifj~RQ7m6mF`+ehqwq!HkD~W7PmrfI>j{Y4taZ>~HY77Fjc^e`Ov=(Y+csx{$a-ot
zcP4p5m{*jNrlrFNxN=eCqgWHg+9=i!aTU1r#g1uT7BA&KTu`)3N?6WM0r5)dD(Pxl
z%098{qIhkYXMGf3^B&c&_$w*@cm5{IQM)}%-$k*(^0!fJ6!)K6{BP+dR=6$QBG@Y3
z7R7b}zf?1FM-)FsaUhC=QS6Lj7f<Ly&;BTWilSzPl3hpKy(g9aEdE8hTgswe1$&~{
zYn^>O(iNpFdj7QgnWOGQQT!Ig;V3whX~TO>k9zi7<M1^{q8Re9>(*}_N2B<iH<oW5
z$E3%l%>EI@3Cky==6wp9r=$3bmrop}as17y=E;qrEQT{|a=h)ta7PU1q9_-GD+YHA
z<zuK2!!<E9jG<x-m14LghT1XH!w@m^+VX<Ej><8d$KaYp=f_Y@K)xV`3oTcP;Uddb
zV^}iM{QGmUoa)xE5kpPOwPN5<b&MHthr3P;^<%gy2J)rS%VM}(P*++{dWDoRR|+_j
z@8z>xpDy<Bc71gW4Pxd_K4+Q9vH~0N5ct$0h9*%@a+&A47#hdS6iZEFC>D^fkKqRK
zjnbQ>4qI9j!=8e9vDayxfoDoeVknKFS<Kv@o5pZ+45^*YTVuE-hHc9{9XmQtF7puD
z<V<&kmK)v8W9Do5ZHi~hY!Nf<(<8lI+A?OwN~PI4hC5?;K86=!xGRP>G4za~SImqQ
zcX!M@1AHWgdtzuCLpz!DJH^mme6O^F^*hFJUkvxh@IVatAtg)?s_0+lf=r#|bcvy>
zUFxA29=6;qhU&{b4C}5<KPu%u^bkD8wjp>z`lKy=O3=7Z$<wpSKh2}4S)q5#ydTl+
zck@48pBSErq2uk%`tqbqcJz}H`U{?wJ{Q9P>$4}-z!(O_@NNw6#mt|!gV`EmruWeh
zwxZ>pp)tN@Yeu0Q9>Xhw5mGuY#_*DOq;+17VcNh_7BP*A;nf&Mt7uFNV+F6-$k$oJ
z-?|z0hIQVInLc%N#%b%^f$=fCEuLVVi7~t*o+O=Y{TD_$-j87lw;n_PVI>^Vg5Pha
z#?13%rVj)kO4-4W0n=lcp~#sr%!*;Q_+#lD>0Buz{};nY;vUXoW|`*2@JS4x#_(AT
z^J7>P!{Qhg#IP`i&tv#P!Q1=YIO*684F2$i8z#0Ys=DZ=j>|nu>^lElVf!jKd1LVL
zJ`hLkIQ%gLVmKPZ?=b{p2*t26hE*|yV~E7CA_hJ|jq+x)&E4g+J03$!%<N0`orxHd
zyhdVRQ9+uPW~5nZPRf8hFX6{Z2utPc7*et<hUH?unM<D=attb69mAR!HnY-VoTayT
ztuC(h;&m~6C7|E(1LxN<GbtF;H!*C8;ag=l#;{57oh=RaFJWTXR$j$1cq=s9C*2;y
z-WX<{Xz_gvKg6&@=Fd{b{3zHN!!GOm6vMKOZWjGwo!#6S%X@h7&ULV~`~fGGX@3j{
zZ0W%m4vBxW&fyr2Sg!Yd@v#_=$8d2RHGbmI{Wzhct`;{pqLaM0$8c88De0fm)6&0U
z_*=lpe+0evmAk58^K-mo$IY*^a&eT8qe2`sna&ebjH8kO)~_5#tJN+BoG<4B>4mnm
zis1DHo~l}BrHuKBH|uNX)5|^8xzF0qnsHq5ck$o~CAH$<FPg3!9Q;MYz3NrlRVR*1
z<G3u2%j0my;fkYf9QC-)IIfN(cC@%j%6WxWa%CKEF89=z5<XsTzBM(7BeUGYVfoF!
zMR7EYo4<`3Nw1CLx;Pq(Z;0c@IGTtVaD5!UCT5YFtWzX##5o(FhkmiLyzP@)&v&@B
z15GZi@ZDJRytHW?H^;Fvj$Luw634A^%!p%V9L?fr9!I}8`p0ow94D)|I>ga2juu+n
z!yRbpx;>7Taa`ZEq?PpUIPMU%meRjdaF?`A9HTmv&}6ztPTM%z3EE5P-y6q|%RPkq
z;<)F@l858y7RM$I6Bow=aWkOkgVIiM^LVPWl+Z=cRr*le3|C0=^m5PiQ_e@?=&l`p
zRN6C+9s(ZtV}i%yctY@`^`GJ?TVYN|FY7!VM{jW->pUaqORZrZl|LKDbF6J{I*tKx
zJRisCxar>ZLYyO<ct-H%Gr%=4j)k{*m<Gi$SUf~JR65L-4v*vAUtA1(QA@of9VvZT
z`ihh*92Li_miG;CjfrEznUdGyd{M%~#4qqSukf_HxBMGyV{yEt9qzcbcrsh&j^c4~
zj2FBur87Y=k#%UDNrG@^*Sm4N7suLT?)T%EB6x3tgIT7j%6<^Xhk|KR`qSg+yuw46
z6~}Cvajc7DP8@UNm><W2IQ|#MM{(?);rN)B)kQ_?e|7&fulP{FF;DyXN!-k(`>B-h
zS=@X9AoOy%7se51-Nx~`BEN`ZQ5=iorU!UXx<tzCmx8i5yu3iferbRWewvv-j!!13
zA(>%mL>iT{C>H0(bSWYEyCcc-+tRfv4nCkuNz=Sq<H(A0aV!(CG%qN`u~aa1KnYEz
z<#DXAF)Mla>l`$>&edA;8n&6rPR@e;RUF$tF25y?t=#SQ<=4mYwT`swvEpyypl*<U
zE8Qslj@O8QrJLjUu6qe#o0j5RRNHw8yuyKTN|&8+e;>yW^4Vy2@LCh6zN*OVPjURr
z%Q=Bo3H-uS6UQY9)K1{nIQFm^$8jQ#y>WKB!0&Mc9pwW{-TSrp@4vY@pW1;q4#v&I
zYKNqR-{LqdK4P7taWet{i;l(d#T3W!xcM5%H1uQiJy7u^D<_U}36wlkaw?8L<6!5C
z(^A4;g1@EzNY6;m#=)6@7{Knb<rDbgl$)c>RY;gGR237blmNsRCQwCCIf3&83^-qK
zK>`C;c$mFN+3M1&(rQu`U7X+~w&uGNQ;h^_TECWH{0dK<1TIbBh6HX*n7;0pC9w5O
z>GcU*o<Q9M>Lsw*;k-slxFUfoE!R)rD)H6UX^=pl<HZbPYACaj^jhh4(#Fyz3G*C-
zVLW}^_q%RNn2*uMSCzj#0f)FKf#L+5iT_4{yIJ5$z%3||mfF&$2~2D2G=sm%xz+m3
z5@?>lZOXQgdJ;JQZ5Jc^RxhG<tK+OY-gQR;trO^*K)(d;OyDloSOUEhXp_L*33N~3
zQSH(_3A}n=$$jFs(sl{77u+l5A#@OQlrBG5j`8;=@PHP4P}(Vh&VnupJS<>LSHVLG
zY%42fwwv`INg#6AO^0LM^VWLRZ>}D!^WR*LNgq$(2?3oa1y3c=(>lEp_;iJbMST)@
ztDoyc^`d7I`1>W(|G(j#<};#y0?%qcUr1o?nDXb`<)2GnfSl*0xfA9C;+p-gfe8#s
zU|bbv?at1EK3|3=FpNv3@V^v>Com#`LJ~`pcrk&OSSLx`o5aWjUQXax0>=}0C4o^1
ztV`f49$EsU6IhVI!UTR;;dyIT`7sH+rY*jnz`F^&m%vzM-$>w1?!1_LGEp!tf$`RP
zJAnz7Q*W8J^p3KV5}0iLY&$cf!TSmGN7(-on3BL$@dwhG34ADE>9ho<Tb_}?%DrZ;
zgjv>^%@%8UZUURem{O*X68Jd5?jmOWlb1O@5qv8B%*M}8n7Pgw(5#;8^8}VBu!7fn
z0*hF6(;SNv2qX{`FG=7_L79}LUV%^QXQh4Vpczs&kw7wmus9-RQB)9<#uHdF+r+1o
z%}di#ni)Y>n&T<RnMkIBoTUjYvyoFiF@LkJOyJB4&#DAsXH9>P)yl4s(qAiJM~?Lg
ze9bePz>WmINniv0#uYXvz`=aJO_**W4a${lRF=+nf=yC(8{lfU@czT5b+mY!bi0(<
z?-MAkRz&zQft?BLO5mpiZu!u~DS<e89{cNF{<YbwpZO7xz`pg)-Q4c{;)CK}6WAlz
zD`n|E!G7rhepqls==Dy<A4+iKRkI+|VZo6Ej#}q;-XyPdv*?cmPViooL`f1S6F8N?
zbxAZ%;?IQX2wEkHi;_5<z{obPzjzm2>G?Z>f4CBH<)m@WCU8#Ka!FK_Q(nrV3Q5#H
z?jlsO4g?(C=sdys*1te-VG{S(Z^rnlNmNUk8)^Nd`Qzi_B=|{JQ(RqIBZ(oEimu;X
zOutqVmvBQ#)KM6nx=CCrzRWt8^N1#uu!yOi%qyf<azi5=G_Oi>kjZ9OO9>5<xW;nB
zBpO-1Hi`MWiy6=)i5@e|S#~9HeG>O^mc5wgh9quGg1~fB5)N^ZwAlL2q!}xi0adoT
z`AD-giKaTzwn;Ou^vy}m+m7yi&9UE-G~K{%O`@5A++1*55-kKC>))QldCMIPXq80i
zN)OW=Nwl_nXA*ab+eq)W{yj-_YUpGzx799*)#uFNbV#Bj>o$p@JSd)yB%Vy-sU#jq
z;=v>y)2?<(qB9Rai92hUJ5?99oClhH5Gd}NM2D50holcnyGb9Bc9$~X(WDutk--0k
zioWzbp2QPLZ28L3PkYjItD|QUy^`pY#4}0r6=KkC*V9S#PNM6t=DKKo*fp)Yvu_gp
zlJM3l-#>{9oi4s&!)^(0tn_@k((`N*&m}<^ASFC6cp-^_f<e;3wzTJ1$FL-ZC-Gqt
z(~=m$n|~6oCowjOMcYhY-<Oi;d(1JCi*GJ|If-%AoUcd;qmp>l@@T;r>1#=}YFWYn
zF8)RmZzfUWeN(+WM{lVP$0aeIXFT9~Tl%haLJ|`N^xxsJTb|5w(cVRq>AfW0xBiqQ
zrds|W2|o5`!1N?$XcOKfW+pK!iRQb@Es!&thn&P$9b9vgX3`3#xq|;C@sV{tPGX+r
zPXy&Ry1B?_Z24N2FP}2IFp1ns57XyKd?8+BoyCGBNj@<7FQzPs9~JCN!mm9ENE1l}
zljgyGC~5i(Glc~amI`9lk8`hHG~J1lY@BmkOsOQ&;*52&+??fn68H2lVat+O&X$wH
zLn*9Cazb`AOmRY9tYU-bC7HyTB-SLcHi<(?{FcNz9wTGcIN#`8vYuB;ndgTjcCbaA
za(|t~H%V+r;#+06NH<DZ`ki2tbThBww1Xzo)+Dyc+-@VkPh$N+Q~G1lylU5dl<QZ)
zPU)^BeiHmF{YA>K-AN2vV_uzO{2tySM!EJ%_a(7ka6n4`pn#KN98Tg0?|Vt}f;oP1
z@C~V>N%Ii(_oVp&bxcY)p2Q#G6Vj8`KgHJdKlA(OG%vJej?g*hUrA8^mVWlV<18bS
zsGP!iDWoQsFPB2al=)aJpF)Kc`pk87x|ls$Oa9^gKZQ>oaxy^>?BY2;#c6Y$m#0uS
zg$q)+PzzrAPDzy%E=rj{1glDGrBF>k=VC#1X$@&jZo1ga*m#MuwWW2Wmr7Z5Sqi@%
zGXEQLPS|!Ay6UCOt(8C3uSkJ<rL=wuR|&3`(r+NRCdE06P4KlTT$jQvDcqVu;}n{t
z;7*}LtGYgA#@=+LaOo<~4Jq81!c8gjXIcNh+>R95dmTk8Vrj9!$+owxnAsiuN;o)h
zX$nnKxLK>>j`jJ{!-tK0-u2iacZCa@HcO#-3N2Fbq;MOz{t|L7v;Q1MZ2ob_?J2ZO
zp-l=u`pVaw<Z7jr+{G2H^4uY9ox+_0Zm~nck(_G!Ro>0rOJU|tXWJC+PvL<S+9^w?
zz2II}opm}2?n~jjt|bh3FlD|Ra<pV>Co!S3pi2t(Ry6Z!J)A<f6h@`+Y6_2}&^?9c
zQW%iJqbc-Yt4QIQ6du#Ac3kD@v&!?h_=%MHlZffb6rK|Il=iaz(}Lb9O!>gYu)Zm5
zE<wK(`ls;PDi4RreKv&!gIn;uDn4@G9&#?!TN}@(@Ind$wTY##lpB=7;1p^!uP|qo
zC%()*B!yur8kz#LODYvnJ4|&BXAMksj!5A}0r{mAMv7my&MPVN0tJgkr!Xdk@hSW;
z$@y9eucz>43U8$_R%?DEg~-@a{s$Ku?%+Vaw+t;Am%`zI^XTpPZIO#k@0PB&Q<%W^
zpTavS{ReSPg-KfW!xWBfa86E{H&B?~6}%^XpY<S^YD+&znekB>HZ8@0%1fB0r!Yf2
z(>k+Km~DAZ3VUl6G3+BA2pdV76ANM<FV7T*DaKz6OX0H=HnE;ln9sV^E)`N(n8N2N
zgi;90`67it3PJHAUii1W7N@X8@TIg&O5dA;&$6F)47Z2ohbadiiLiGE2k?n#CD{~m
zf@lgcHmY5vacM%zY?8~0)7HtP@KNUy7V)2^p+j68nIxaW;#0-%ep9?Og=JdX@)Xvk
z@Kp^LU;S8-GQUq(N>`<@TChgCR=RZ%hwdz%^{DHs6xRQ{Gn@!4g>Nix5PX}$MqV1?
zW9q<3-IBsqp5hdaa8)U6=Lt$-cM9LLg{1IP3O{q52OK+67(Ld(7m9!6@t$z+l<tx;
z%W<=Lna5U{?`Gev^8A{@9&P0}o;5bD+0GN|&D-mQeah}n;ede7LBSz@%;n6eJ3swh
zax<JqQ}{iF<GfVas8YCWa_Om4<^F6~!da?c_@?*-&vk1vJLjJ%oD`pu(wui)>A+RR
z^G=lfox(r7cG9Ss#+ei+hDMb%E=uEE3P)FY%B4|0ZEj76|18H}RTrP<te|W~X{9uf
zHs4VzOE+KSK2LDI^a3eMFBH6VL4~S(rDZm%Y1zbU<+$35)2N<CqkyONb1pvXsPd4r
zRvMS2aYY(eDy()Im#1-da``%3wqNn3(#xbA7l=;XH0mjm-@T_UF<;E;r*Typjx>tW
zxH^pnDs7y`HEA?Vqt0pb(4bz}!$I|U!)cVpwP|yYx=vbcwVB(I0Zr1lK8@cuI&P2>
zZcO7Q%R}e7iqp93PE#|bY4Aa=GYyy4;Fgw1xhlTl(qy$c-M6H1YZ_0b(KC%^X*5sc
zzBKMn<F+(fq|qjgyS1O5H10^FbsD!T+cJ#@H#=L2xst0}m@lq(a?@$Nu-P2QuXmUi
zbvM^CXZfBq+NIGxZQhw}t3~)T?fr43Gv^oIt89lf5}y<^bxh;v90%b6u0M@O(&(N>
zr!+dJIqxSPR&bXzc299EUR2yQjqkQO*}aN$)ONFba_Aw`P&oz{_0cqXr14l93pTm8
zj4S_m8c!(f$uycAFau39hF{}bt@b>%+S4nIr&an=8okr#BYrN8XVU1KM*lRPP2;m^
z<}mxE!FtYYFXp5+eEdHB%ktBG#vh<Xo@WgR21<uX2c<DsFht7Wp=s=^>-KFdKU~fT
z>5I}nng(d3_~kTS5sXUX)ig$P$L==O%YS3LEi&UzesGcV^)$w&v2&d{>2IX*W*Wm+
zV8jZ%mBzR<Rur(ZfbnU(orW_9R}K@>n8;?FMg1(^Nn;XEYX)~_FgcBP)0|fk2hw;i
zjrY?iOLJ0DPI!u`X-rFl{T8^1541lQjdpy<omu7CwXK*sJ&hTxqROtBX?)BZdm6Kp
zr88SFCylv+|5^VdLD9Ev#(X0FT>2^NSukI^K+2efX&i229{GMDXOVQVbcv1mGL60a
z%^dW;H2i67OJlqCHjqXxjl3?;U>YG_8sbPANdYg|s34X`+&T%?<c(&esg#_wG-FG%
zyhT)Wv9!R8_hj+vG}ffCRJ=?|b2;l@ywW<Wc;l*4#3H7(X>5?c&X#^9STFrr`VC{M
zH)rs-HfAH6y?9d^n+02>TY1RSoQxd3+C%-G_rR{syYudN12c~94{7Y+8BCkk5Ozv;
zr?E@$la&6?f?ue&mNNUR_4lw=E$>UCLtV4NgJ~Q}<Hihb%HX%O85Q<q8mD-URN-tV
zM+8TCYZ4rj9=D}`2u`H&k=Hb;Khrp!#`zgskilPUJgYtBGe(*IR`wt18R=Pm3J6$Q
zE`#ACoc~5v$e^N@s$`c%hVR4vx1RGd==6)5kr!rAC4>4IoLu9)C}aBG)Xbn(235t(
zR?FaGadqp|$e1x0S;TaS%*!*VZA<H9aH-|XGPvuo>4#ZYPCe-rw)9HDgtqRhGPpW}
z2HFSi#&v>gGH57hWc_P17&EAZ0gdG}kzQ|0Z^$6N+QU*u21OaP%$OlBSeeBcPLy1H
zOUAq{=#;uLa0^PL^h+~nD!y5I+Xe^CTeV;_X>;jqQm(Cqz$3jqgZ*(AO>VB0HhPD&
z>j2kX8MMh@c?K&ooXrsTWcWM{?`P09gLWAVU{hJ-YM;Rimz&Rpr!u%VgAN(<UP(u3
zXX$;?`!jez@Sv12oigBn;e;+3bj{!)`Hx8-&Y+v%5$U7S?$X)A9X$m6_RD1-7e66o
z_Q?#A-x;6#(=%gkp}jI3D%n8q4Ekj7jF{Q}8T7T>FJtC^q{;NG%;$ItG(Pt8Jh}`9
zW-us&p@*DrXTV>AgEM$BgO@TGqAZ=E84ME-x6X(RetoKhMI$qKIfFN>|B7Ht2BQS8
zT7Pr~kB)aSp6Rs=Ubp_(47RNH{Oi9d^Q{cV+0yYDG+J$znxNg|9!|{Q9q}aTWb411
zF?~W9FeQVj8KiZXA7t<$o9<&JYnM2uWiUMhZ-#HvU`EEgT=TySJ`&87&XUfS&dFe|
zfMI)=nSlyF&R~893o@8z{ZBHS`@^h<>9dS^!H}@fI*SFLXYhq}7G>~z7c)R2(~=Cn
zw0;?n_i-~GmtRiQ`T;>OgV4W@^&<kl2+2ia;&=uLLDI&gGB~`z1Y~R*$O>}OytE))
z%6b#9ZESuID>GP?!G&2=$zpW|Yj_E8RT-?!V4cE#$(T8bzRF;G28DIb^%;Df!8bBD
zNm;r<@NEVgt@B;R%!S0F&2qL#w@SC!nB|RJ-)o&eNOxrLV+K3LKTCH>xzV3^7HX6b
z4zDbxvZKrHj2QsxSLvP%_6q3i<F%i`0c8(L4`uLiZ8Ne{;|fL8BV3iwTo<P@I4b^K
zO7ocDcm{t6PFVjWZxmxo8SrNYr+M%F)bUpa<+28t{?6bZnP;SDrS#8bP-naeD6hy0
zSyU8MlAb4pv~m{To^&$ud}Rq2WbyC}<6M+ASNbJc46bdy!d1<p8e_7ko;6P%m}+KG
z!}1f~IBHq0G#RzC=4V|Ut%1v4n#E<}%cXUt^=#=CS)9=K?W?l5I*VCZ%+8`g7T09)
zY!=UD(J+ffS+vV?CM;Z=#dTS<%%W8mL#DYJXHlGmGi#o-G?8AP#SH>FH)e5@*kPR_
zwluzTy~@K*s;(?<&6@77CJ9QUr3@C_Y)fy+f)h3V8`(@|bLnkav=De~<n38B8Eqo(
z$bxf!uzw?axwp<@Sxx7i(z~S0w#njd@jcdQo5k{b+$_2`iw;@v)x!R)kWsFVS=>L&
z*(qy&^4v!jJRqg>pnyY<cFv+p7G3RGcvSF^^kHeYEFQ6?-Lv>>NC{73k1QVJ8sztq
zJ|TTFi>Cyfy}hS^!Mx)=oki~~`pD^P{bvN6(33I!viPB@dHPg+jfX$32W0Vl7H?+p
zRu(Vlj1SFX82597V_+781cP}hv*uq*noN8Da177l_0uK%O;qVw&xkBu%;F_Eqophw
znZ?VNU&&&W<yW)#sFRZcW8}Q{uP+^IW8M(->|8P~i}6{^U{z=Fwr!2CW{M|dF_GW@
zv)J3iIYmmCB$zCHH;ebI|9;kV-eAB~IUiX6L%}rZ^ejr(co_5jCdVDy-Iwila~hgC
zS<KC1T^3(uIgb@S;+6HSJDJ7DS<K7A&-SBT`h@Gxnn_`J9epb2vn=Kd7TA4Wn8oMf
z@FH`mF3N)4hZai-O9WqLQDz;lz?U_%=rVwN70lwbPR<9{ctX7BUUV{rvxtbJ(wH=E
zOA~^9<(w&2MaGfV)-zdT)e>^j6<Op31?f`hGAWzKasi)6ue8o8UYnNJ2-ar72iFW<
zpT*Z%oMxlV;v3dR7W=Z;&wH1)yFH7(Z<X?|-i=xFp7?iJY!Z++3${qNO1EWE?*<o(
zzGp+#;ya{2XYr$8r<B#Wi?w9=k4@!&5%0FnuYx_&y;;<qX`UDyQ1+PgU=}NWa4{Xq
z;y25Ovp6C?YMtM+=C?n?j%%quq$i|Y;mIsciT|`tkDtr^oy9*{T$;mWIh@Jjtcotq
z;T%tB4pnm)w8qo>A9wj2$5(NmC#@i@D6J%gv~tdj+RZSg^W|J1y--?3dQlGFE^sh_
ztF5M$b3};c3p~|xpw`Htrhr^aaEY|Gv`)_av&N#!bLP|JtqWaEa;Td_y&SH{p%zCA
zkzOgSFTF~7wUhx3a_raPA~clKNP4aGIvdkC$Bt4S#$2B>J@apn5^l`lCb2_WWc}hC
z+AVW4z@0-$4sYi1Rvx7}PGf{sIjqj%<{WO(4o}SC)*SBtq1?SWbjYDu4$X65C-&QN
zxRWdC<Z6+_mURv$kKpzkT3V-74tH2?oijZK8OBBK(t>SrxLa_Kw5_z=zuL*wJ_r6i
z#NduO+^0Pm%iYM~ft>k{`brKD=Fo{}Cx<>cbk3nm4o|S6Ho3b>3Ec$`NgvLkoAn>z
zVQz3U;88g}q>o7-w=w+g^rZMH>-5Z_m*uBf3Bw&+!!tSaax~NM9Qx+aPuc!CJfFi0
zIXtWEb2er`4&hQ0JkUBr1cRi5bC}fLlnzyPn2q7(Pjf^LFIwlN97bAxIcJ7}V!$X>
z(W}zYQZ}|RIrcv>t&Zt+LFlz|ZwTJZVfJe0ThejT@lu*^^C^(!pC7644tFev$vM2s
z1-0yZIlQ04k{mc5-IN@r=J0XOJm(yIhx3CRsIzkTP%uqOXL=4ZEYHkgz|Ah2v*pZ@
z&XxYp#(c#3oM~dX+IcyAlEbIk#Ai8tE|@P}AZ5%#0jG!fLa@mCi*q<xt%w1vfiJc5
zWjT0r@QMAbJpoGtIRq_FPgbH6&LLu*wtLKj-&hXu91=Mst-myflsGNT<d7BQSUEN(
zpEJMRxH!|eTIS<v8Sf0XbVUv;Eq8mp+!|gcIoz1XO?j-#;j0`@=QsrbE^knNeGYqb
z*q6iCIee4D2Huo%W*pa@Ij~3i#vHZ@$lnPzNjLKXwEk9}m#19}VA?M8d+86-9nv3p
zuGg3@?z^<|pK|zF@Qd_U>2B%6<(zv2+y{1*;c@NPf&8AsfgE-YEnzw+IF!S0);XNR
z5z9w&7=6giuwy(aYdlQHbNEAiLVD8rrv!iIkpIQau)lNoCx=V&sGY~&-R?6vT$IPO
zZO*g&2w*Mkc9)Z1Sz2CNA&-iJN>aukkLT}m5}3}Dd43)j*wPCHRk&2orVQZ9t7;R~
zq!;H=T|mD^9yKl3%A0?~Y1YY`>#m`6^%~EmdCrvp!sU6?&7+?9D(Mx{E2RvmpGT&(
zi@<bs9u2I2O&+^t@*#GkJg&`yaGkWVw2Ab3DT{94p0{)o9C;Mw@l+l?^C-^4na3S@
zw9cCg)|E%IJYsQ2WRAm~2epKs0s?YV!OeNxVx3#_rrRouDz5c3=la)rZp)*Efb7ZR
zc5zGVwBm*iyIAyy$H{8BGmpFSXp_g?d34UBOCAg6c<zyQl(v<&leW*}UIAk|2u4+H
zM!rvce;yAA9<(u?@~E@a#elAP^W*eUDdC|!9u{|#K4SgudDDlS0X?kqSRRjypRmr8
zd3-<0{NU}C$J2QX$z!NaXzx7OFOCC9^1)`GJf6v;Zyx>f<~b+R^Md|)JS%w4`UCQq
zTcwBrFUT1v9b`)f^IV*Evy{zdSRR|!xJKpCaII%}9wP)VN?(%FADPF?mS4$ZO*<#e
zS9yvjJ4Z_iWAb=S{JM3<3f{<L*hv=y#^o_SkKgh*oX6XFOvoe6=9kCBJl@ffF3MvP
zD{zK$avtyIQEsuhkutrP#~cN`pT`u|QjL<SyaWUvNa=hiXt%qVJUx#Y)}NWjEX%X=
z7<-G00et^)ZXW;3<D)!2<{{tVW|}XUm&Yf9Pp$tM>t~9S0Sn|TlzwhYzYuT+$;Ejr
z$(!F|Uveu|Tw!sU)GPH#{doigK`G-yY^8@B1b+R9@G$e{drnLmmol3WB&8`<*Suny
z**tQ*Z{)F$txNT@GmoF|au@Pg$}459XIUO=d1KFGxw0#y^j8X2@nW~mn!I`H!lJM8
zSf9tmf0k~Oex1j60y^L1u|fQ;bvCkP_Hwd_X%nwj`CDx1);u06IQ}i&F7taHvS5de
z`B8ALb+cW0{KTEl;}_m}*pPCLM#~+KuJuqi9WDM<4$VD0W$PS-bqVLPS<d}=9LVEf
z9=E+>ey{NlZuXix#I`Z8l(StN$>V4qy$k45!0&k+;~k@bmIWNo;}7n60d)&Fk;lnA
zDi=6>F;4NsadwzIPV-*f-pQW{f91{iJmm^Tnf}h>A30~FXQk()EalfcYWV^x*!YSC
zRI-c$*lCji=NFLsr{v-Snw2XeTu{J;a;iw_TqLL}tyaLOwH}%buC7ID6i`!8tAI-i
zs4c!!%9uLbdbuJ3(`5xTeZef)t&6iBw_d;v1zb@8vsV^SzksX6jifZM7BrAvQ$Rz(
zoScJ2OxG50osDcPXi`97c`1u-ESTH-Ed|r3i*QqcBkrO|W^n-}0{YGZT$bGh@Wn=&
zOr_jU>)%{JYMc2d>sGC;nY6i-E5EIP7M48)1kSi<wkqI`0=gF1*vyAu>jEAqm?yU!
zO76}A?kb>70e2V7NOVm13hpVOt)QK>y)CU=$1K%B*^UL=XZ`yNC|@vR({Z&A7SO4H
z4mFB8Yb#x(ycnw=Xz{RiVE_M09%cO${<}XvBIqvVpT)QQ?Cwzj^)cz=1w0|3^JD=}
z70^@JUec$z)B>{zf16OBDWGow(+ikUK)(X|7cjDbmkW5772e-7yL$;g{+=sfKmpIQ
zqV~9kN(nC%Fi<?mI)ep63V8a6n*qa=9WEUqeNoDymkMZbor}P_eWif01vI|DWK;pK
z7C15|#_-}A<hpLVgXuN4knN7wrJM+?`w`>6QNWu8yv0*+o9mqdCKWJFJYGuk?E)rP
z{y&<|0!oUbi^42$(cr<|b#`oV1`X~63xR~-5F|)&cY;fRAVGo$4<Q6+$K4lq4el=g
z>&su~)Vb%YTd%9Fx@V@Rx@vARd^Urak`~Zhnv8|2bWt)ED_)X}*R?DXwv5iN%3m%u
z^hqQBZ^>Adj019ZlCe4&Ym%`?E}TN<waNIMr|D0r*`r@a-ArAdj17d1)IX@3s1hkd
z8g5a%m9Q-t+X*|Ug}yUOm>i{@$=JnJ2=69r%$BfMnoWQ6KI(p|WdBOmo^uKuOooh>
z=^0%4xWtnsdnj3YL2JIG!-ON$qscg?e0<cONQNvZ>0~laDNZI>sWz%T88S$Mgt?O8
zPL_$`aKi>qGQ7z$kSQEi_>$q57%Tc&5lBW*?p;>Eicm7b+>58u8j}%C#_eR>NyfbE
zCK(e(z5>OPwHILH$w*0-@hWj98E5HSqn=B~C4$79PsRns7p3VA*82NhrgKI4SLIsn
zrTLPsC*ubFo2vAdTp<0bO3{~xb^l3oYHxUwjJwHLbkrj09^rm69w_HwG9D>@Ea!Kx
zPQpsJGJ9OQXUTXj_kY=!ySg-1Z0>J<Nq!|wD;aOdQuLAVmijIk@0I^SPGU)e1W5Xn
zj8s;w9!Uv=)YRp#O)^JP(n(!9E7Duh*or1rWUwNm6~(P6Vb$iq%4F4UR$o|=*{ThN
zDrvdblEsRwR%EjxJ4*{vb6Dj&rxu)(nv41+Rm|L0Ouwd0n<6PM&3x4S)B;u+%Sijr
zs1UP-sYR$osZvzTs*TeqP|~X1NNZWKr<=Ky6{W4(>y2fsFj!%<qAauJtSC>YK-Ezz
zQY%?;?6mf7qohPSdMi5L`Tu-6CM&Aalu|PxiCWo;Dun%B%jadQF<YHlgId#yBZIYS
zEmkbbZkAM=P{)e8gnCxgx1xb6ZAkda3g>g<=lDietnR3BQ!AQDomQEuELC&vuk7;I
zR#d;DZ$WKoMJqyUY8z@>s>HOD70opZguRybR)}`6q9dUbRh-U*Z>U|YnAO}Qro80R
z)rxMi!8di^Q3bvybhqLMD|*N#G22^}_Ohb+_ht!`)W@p54<gXtiUC$^wBipdezans
z74xlFV8tLS23s-8iqTdK;eN?<Z*rIT$*K*7J(Mai%!=XU5uY99kF;ttPD;QS*_emA
z8LVNfRr@Ps9Cf@E6QrGxr&1?TCsQSCifqGTtvjovY0@T@zwxH_Ok<`T2X(Y(6Xr;>
zC(Kp;JS)uov|efpt+@8Yu*izVR>;uYGNa|8$EFOgj7zLoYQ-`u<jbLq6}g)5s};)$
zE2t}}zfmP@72#xGv&65lVy#u1!b8&UgmqS|SI!2))%1y*<ep%~UMu!Vo9UhK*lXEh
z#a3?QHY;vdG+ue54KlOciXCdp|0L|RVi#ez^7mNfN2u0UYQGhKSz)7pz>3$`wTt4Y
zT!3=D`z!~k|4=1+i14o!hm~_guAPYnDN6ELj#+Ws3V{>UlT^u`A|zX3B^<475>r+!
zZ?!wEaLL};P~8T%6&|@KSn<{huiX5tcxJ_OEBtcv=jPq8A}BY1X=cR?*JKN88^czd
zx8l_dLxkBVHAanFks^09@>#0HpRr<0aif5wbJA>P8w4(}hKtlo)XP+<_6p&u75{D3
zNmj;ozRtDRx@gMx+;~&&pFbFH$&r^^tHdz-kb0LYrT473ulRvgd!tHBNsnkgw&IB@
zeJa;ZeXZ!kev1tJdsCnA!itx2aosSzk_9&#UsJaguOa--iuYFJupy@nAFTLj#V0FL
z*|eMF%%8PKZHG2$zfxQIED1KGwm}B?O=HtunaM;>ON9;T2<fRAs1lh`ps7V5GZ*=S
znuVH`nvE*8Ww&Yb9Sh{L;Y%B;+R!~;LT(%Ka7zp}<h8-MNngl@!Zze1=cg8+N>M?=
z^a0w<xrhy=Y$$C*QQQCLFDqt4adHW2Nvb^6k>E1qiqx{ya@6uv38+A*a@kagpi_P#
zL2uLEDV8uJH`PRyBWAWCNpWQxs*q<?(H>e({Y^WhHEgJ9!)zPo*ig#`iwy&97-U0j
z8|v8bwGHiU+E0(VT(CL0o(=U04Q%+zhK6K`X=+0wa%1H*k*XGJzd@SOkujNtU!OI$
zutBsXwH38BwT%sJ3GJv7(`L4=16SQ`zizS5($R)aHgvW@#$Nc&hVKdA*wBUWEww9E
z0=n5S)MpXsPN#<rJ#F}bEK@3^Sz+v@BKr|~%P~|=Uz_$cNtW$TXMpm5wBbZiqxgeu
z7-GXH8%A^UezIW%VW{o@|Gy6-45!L_D{`oRwqYb=9*s-YsHt%;ZyHm|8^_o%)`oF5
zjJIjuJ*H46P$fIjhDnMi6MXBmu&Fjovtc@&88&UWAu(sF$XPa=PM0W-toIii_S^86
z4RdXnXTy9O7H~6m*s##1J>Fj~ixU=67u&Feu#~!tDq+78M!(X@D6cDR_}zweHvDGO
z27Q&Zim+N#Ico{GKk3#JHd8mK(v3F!LEfaC2g8k0&lYC4+OSRe+ikGdGDy*&la@bi
z*eQ+bq(#y$8+I$+W5Zs>`v`sC=?+NnSl!<?9OV9<&S#X)qW{?B7ZCh59J0xK88~di
z5gQyftvjovql8m793vc8{t3cKS@5*hg*93ERvT=J?b2p)Buc51j*IH1dQ^<ph8FM5
z5)-f?Xu|~?zAJAEiH_E#PzAy^M95L)#0YUYCj8t#t^6~Dv($6c^Kyz4wBF+vC0pJk
z>5>hX$ycaXm48i+UMhnG+_d4A93MLl*>T&3J90C$W2hbf*>Kl}(sq=w<DL!oZOCdz
zHai~J@X!X>@y{`X-0>dq*uJviv9yO4W=T&7PpQvrcushsN?+PwjGH7({zZLl!y6mk
z+O&UE-%(T9@t*L3`jIN7p9pDsX>Tbe*tPi7cBCN)r?sPahD3pMcI{mQ>9CsKjtq9K
z`)fw3KqfmflfO_-7CW*pl76td?6NO1M6(?uEQTC*#C+NT%xOn1JHE6dw_Q6sk_r&=
z*pZizkD6bV%CjtqDadRgYGG;-yEbvQ6cyuIc3d$Rw?njq9VH2+sN%?{WLZ1P+0oXH
zc6OAvqk<i^?AlWf>0(;Z4znFec2u$>`I%0V&W=Q~UO5IkjEYTmbQ*4!Fd0<m`AA)5
zyEeLxq$+k)Rb0)E>f{>AscF|{l#?)v9fR)}YTHrAj-Ga1T|1f+>e*4>js|4$8{6>}
zxuJ3z*`e!Tl%ghdnkv7UU7NW>{1$XtQd?15tC%)~Q*X^*%PL}~u6A^@qrDxgow^Qo
zdCNoBkt)#1j?Rj|v7?LPZ{_G^t}X%J+3~$ydkdzY9bE?+yW8=D9q$Sn<u6Xj_8|A9
zirI_M+m1fU>1)S?-Ucb^&q}180fZl^1F3`L5UJ83a^&MC2^(g|a69JOF;AM49Y5PK
z*^Vi81Rt12+A+$G(RM6qtbJ1*V@K8!(!X8z$Y&XA$2dF2(-Cum9W(7F0Z9{O70Q=;
z+Bd_@Q|;Q<i5YfGv!m$WdTATe?HG31Brub0Y?fW?j3j9`VU8WYDCgx$<9s_7*s)Je
zv>gj&V`PJ?C2g}~F_&FWU1G;lJJy#lEu*fo<5z+>%k5Y}UP=8;`O6OIq;xg2YwTD{
z_+6E*BS=p$dC0cGj*Zd?uW1k5{vd3kZl-RrW2-8y)4cL_yY}cqrfJwA*OATeCv~SC
zy9m3f;_tCzFIhThN%k*04%qRx9S6BP-LjZ!Of?MQ#9N-crksAuob$SW?KmtKxC6Nz
zIAX_9JK}bv*m2A*gLEMvr_7EMcAT{1lw4DGTv<}N-hGpN52@t0R5@m8=GVUSTkTqJ
zMw=aWg0RC5C)s6(+YS%er%JtYz0|Qtm?Xa)@}i|c$d0fa@Q+682tz~~o>M2i5r*6_
zMeXP{$0#XAD3aZH+Kw}FXLBH<1840xCwFW+?npg8!+ATd$}Q1r5x!u@MVi8w2$!i>
zWPf*S0oUxvU&?r$dV?z2n|9nHON?ayv*WHEGKOj@2kzN%-;OtS^!8gGP@hpBQpJ2^
z$797$2v6;J71vAAbLGDvycAzKuL-Y5=-v|EDgQm;1N9^IlO1E8n54D@hqg(nscEQ^
zP3r*2>8R<IzcRC_)G|vZ2c|zumDz#NGF?Nv?hA)@w_iKQn8g9ntPW%&WT)n!il5Vg
zT;v&LlO&tRfxHfsa-g&W`B+1KYORjicj*ES8B$EER;C6PE#yF92QGfBCaDOaD76^1
zxC13rX-S7R*SUn1aiFXNogMhbfpQL%cc7I6tsSV~Kt%`YIZ)q$N)GM2rP+Zbf{vO<
z)l&@)7ztX(PT8c|+Q_BymAkS7H67a5_$t(@)N0h~R4J<Az>`0;KNo7zu~2JM>!_Hz
z4((k7iCO-yu7N}A8Q#nR;jgF-sg0<OsZFR&9f-6yOPF-bYwkb`ht`*`B~?HMXOIyd
z<e;_T0i4^@*w%q|4hVcr6=?532gMx;ogAo}D^ZHNIPk3lT^;D=K&mmuCYg=nS5=nI
z(o*4f4)k%LuN=%5rthiUsXsW-gV2*IrM(Ef9cUaeN>=(m^mAx`R1I;UzwE*mZKmA;
z4*W<SNFAj7!Ls(3Ith^YpBxy<1&2|^8ScOc#Xrj;U9`6*M>{aafo*PVcVnyr<K%?8
zq`NQ1J1{|7mlOG&nCQSH2Ye3r9hmIE6ds(v9GEJ#Ik4V=4Gyih!*mCh%Gu!wnn9iE
zz$^!5J1|F`wFM6RLY}Lfc@E4c_cCd}$QCMpkpqhrFOepCP5bROkvBS-`{q{%R{AZ=
z9auqFN&Stw%7N7mtResYxzul2>p-)YdRau$I%)H1s|##&$bd`O<iKXuFB9*|OlR^t
zWs5ZaCx+|?ExD>#wmP(*joYZ(9oXT(pX5E%ozz`a3ES<^M*9)itDJp={SL@Dx8fgg
z;BN;GI?#QS#U`izgEl15KMrK*XFTM<zl6i`5kNRfJ?X$P!f~oZo{$Z`W)P5c%7J9%
zTY3G8DecYffP<$=*y(_a>{gD)0k7hHk5dI42+Docf%|e_av<!$9aS2UtG;yVGY&)@
zh)MI7DZu2s*D>BZYZ6Xz;55y08?@&Jy}Y`!4xDq~yhFx`(mD=ZqY7LkT%ulf;EM9E
zN)1k(1W3A0^M(UARp~9lZR+;w=KmbH>p+foGJH_d=a(o?PsalX-Z}8zfrkz};%3XQ
zLfPxb<R{dp4m@+<xdSiMe!V0dY^>cUUpesFfj4yCQitV8c)wozNd4fzM+ee7wXlX+
zYEAh^|4GiE-;&CyO^_`qfsopXG=#KNsM2&!R9vK!unbOQbYf~(V<snZIN|qOgfr9m
zf||vNtOW715wbh+DSe`3B{-)OxwzDq)ZElOR4L8t#GyBOfdWnxbYhMZzc^9IiNa2N
z>qJ*4ia1f!iDphTccPdR#hobSL}@2VaKCClGAvl3li3(cI`LzDQ>u@qGEQw^ipow@
zaiXjf<(w!_M^BZa3bJ2{D><Q4oan^z7TS!W20BKniE36cNlr}KqD?ke)d~F>t$$Q)
zC#sPpTiuBo<eJo4%C|VRzE7Xy>o`%@iF!`0FIIgg8W9>$#rcZRkb3NIOJhP4Roc{v
zf7j|HOipOt@u^xk(b9=lPCW7II`U|=c4Ej>T^p)ETPNBn{+iI<i4Fwwah(K6J)NBB
z%w>hYA#`!#9`97$ocPX(nNG}d;(I5$%b9wm8|uUlPV{i%xlbDtRZ>qU(giF7xNI+K
zZ)zVW`V#t4C9=O0x%m)M;(v5vAQv1&9ZVfUmC~Q&T;wqbJbG&w=EQI(MmV)cRX<ZF
zJ2BFUQRLCo@zgQYvD9%+*k>lmB9bQ1nMj@Flz#?wpZzJ)R%uS7PNz!I3~3=|?RnSd
zN2ar-A@woKL6)B6bDfyy#8xM^IWgaf1x_q<Vi9+6;8N`iOqqaXu@g(2Xc(~k?!;0j
zmN~Wmf6Y^LzcOrv6R`~18C>o}_VL;xE9v}3m7-Nn`I)B0NLu5>TE&k!cJ4YS);r<6
zuirr3Nd1E<<|ZdLE8gNno9rerw>z=JiLmUrY)PAhKe-tvo!IHbE+-EBW7+M*-vr@3
zguT>#)cw@Is0W<#u9?gNprwO!{*hK8&60fBiDRF`WDIt~QL5H)=pV~*@(H=yc(uh(
zIgu=_tC-R1giTHsSq9{hk1&U9Prm9t*%5+^DvsL;k7BPAS!QUTcar=x1Js}sAr&)l
z4x)1O<ZFNn1zg(rS8*pEI`PPf6sO#}aYl~GBi$t@E<16SEZK8ToF`vU&P69=Bt0p*
zLgzo~RVS`Fab3mSBHW<fbZYaPNc?S8dWRrAK<*OmQSYnL2ZSC0%VW8g<@mUe)}=ji
zc`B<oru*Q;Gr8QHc)_eVZ=86k_?4Vfa+~wo6BtQvnSDonFZ&YL%#SMmlM|^}xtIxr
z)GlpKH_5_<bS~|~;!79O6TWaEiwhaZ8L6455|h~lXG!hDT2fY;Ib6u5O0yG2<V>AY
zIk^bUb|>T}<e}zOrTJWVJzQJ0q=GJ#bZLKX7II;0`pSi=MW~W3>OwKa#R(-`_@lp3
zidyY5mU5xA3uRmoF6%-iLOE)As`wRLsHj-qz^Ef9x}bN#KsKpTqYK*`7-bPjW*3^g
zsU=Xwg{rcrZe(|(nrx>FM_oAPLJb#cy3pGtZ}+2?3l<mJy3o#r+Ah>_X>(yT;m+2j
z%0LA5T>qa@r9Pp73ttf$QX8q##xBUzE%J%el$A(5&0J`%xP=QX6}NJsHMxy)WCkcX
zo?pB0tqWaUXwOx5P{+I@p_2=pmGg}YT@>$0O6cZ7xUTVs?+rONTLivi_Inq)fA*<8
zs6D9?)61p(3KQt-LO(frF6?ljzY7Cg7$;xLUD^YvA6>XO$~fEw8BAuN3xf#4g9$@i
z_=zx7`NLe=JERhj|D<k&3qQLcFp@foD%sJ5F)oZH$fu;3vhNdISnR?Q7bdzeN!p3t
zFqt~nCF2ocstePYo$kU6!v3B5nFNWPO_)VJ{4$j|b6og^+2-esl9e>ih52+AP#01c
zQKj^F3-eOBxLo|Y<-)I@p{a2-VL5e$3o8k~snS(0%sQ`qJ(IM?g|+m5cVQjjVWQ@*
zCvR}!;1^o<54G$j!e$q?C}%5Sn;gS>28mpk+W4mn2Y8mJ2P`{X*yV!2Zt5QDUg|#T
zeyRlg<-*ezNdkYX7IIL4d`LO}x^P(W5yI}73CCSH;lh0v9?&`If<tZ{E}U{9nNF1&
z+PFzp7i`khjV3!)M#vO)x!`so?m~(S9%;tK41O*m;B~=AN4QBL?GL7atbMaSNDWDY
zBt)oDYK$r|)jk?(ywUDmr&-$>7tXr0Pn>fuTyf#53+I`=K)p!4M3tD!a;KXA|F@^F
z(Y#H)PQBs6O%-`dc4VLyd56w_%D?NvJ@OVgnE9$dbm5WQW8KK;mLYoZL_Vinc;&*E
z)sy5)$Wys$Zt9v8H9vFVx!i(^nkBuE>+~1RY_y>AYZp?vk@U0i4Nvr2>O1Ot>IbTv
z`j3Q9F07homaIHTPjG7w<Wp1AxRI6sYC5WvrvGeS*4;j$eQC+$MrOA*Fx~x4y3_*<
zU$~LQt=+e?QUzqbupDmWbYqws!`;Z`#+PoHM*#KQ$n8cRH%hoslEHc1$md3WHw>9f
zgZEkrxZ(d<_fIy<gq^z1i;M-`DCCAfVQLX-QL325+$c`&**{6LrQ9g(M%y#SYIjnV
zaigpobzbU>Zj|GSq@Qh~8|BFrs1>P|sItvE!qtTd$FmsqvOR8XfUkltO)|xg$qlnx
zdjOS0twF8qMiqkiRpnDaadp{-TxKyP)udU=4GW<*wT_CE2?grA(Lj!^8{fO}l^YGY
z4Xxd1<VIt+Hqc^XTz`JNE^({&NTi8ddw9~6+RTmSgcj76R4Hxc#@7$EM=otxRa-aO
ziQ|T=Y2|OI0`1-CK<=oVPK3^G7;{vY07+fk_?Bi@YBv?Reh#|3@q?VEf!ep$9&T;m
z!2w)X^_J$IZix1x_I9HWp)a)`RZ9E2A;Z@T$ZJ_Yy0sU?22ux62fHzZ@Do)^hY}9x
zjU(Ln*^R|+EOBF`8>8Hq?#2u^M!PY_jX$etzeL7zOQyO}IIZ?~?Kn5ayS0m2(geap
z>LfQND}Ra`Cl+a6IH$R_?}6R#YA-2B$IF>+%yMHkD=fB4>nAzKjV=c5f#k`6<rg<Z
z=ThfMQz3}6fUuCdNDlsPEqJLL%iLJ!#(Fn?l{4jrjII5<TN{RMg)Cc48}4Z(SM(cI
zva8(k0-APBt)Z?}{_RGPu>#~Zr44TR(AUOg-6+i|U^)9v_lFyIKN&VjvtMSAwAqa<
z<gLoNG{Ue$4wM^*y!h9Poo?)M<6jRBd$8M$J#OedFnF-njeTyscH@m3``!4<4X+zM
zHx9@VbK{g7$=sNOvMk|@3;-f^y0y;R(oiLPSgvuu;Ry98RkFwAJSsjR$4Bv7r%}e(
zw7PLHgQ?~x-DG*JBxh%n#ZGlloznaWZmN`e<Q6o{EZ~>s<i<lc9=Q>8WAlS*x7^ye
zG$A*_aza0EAvH>kQRTqK-AGY<TJ93<w9kUGZk(fe-i^y{Tp?eOBdj7Xxsi3K*3zyj
z=eir$6c?z08;Wnb@v@KB*~Yp-f7=bwJJkQEcd7TN_o)wL`(GL*?6DgyF6!R5F?%N&
zp15)Kwecxc;F%lG6~B=B6~A(0?`eYsymjN98((;k#e?^5eBj2wqumo^c+ACf%^%%3
zyGZwmn#zL&kCshM6-eVjTE&MZq;duH={#7z+>oA{!GnwhaWWAyd$fD3WV3pt^HS=f
z9u)H+n+MrF$l-x>Fs{GJlFx&jWXb08;7f9DY98h1^+4tTm4N&n$Rd&ocu<gBNI8W)
zD56+ircPe0EAG)QkWJ0aC1i~UEhRlDMJVk-1%jAm2xUDer=0R0EY7Yy8kJO$W+kf5
zgG3c0{~a4WFnKV-BSX2u?2*^=@s$S+xyH)W?|({YUC&a*gQ^~Fn3`%HR43GsV?q$K
zCZU!G7Uk6T$Y^8QurreCdQgvkeO21Pqm7&_MU6aY>_Ha~zV)Dq2Quj5!^=sXJZS1c
zGY^{6X-jQEZAq1|R)p5nHXd#0U@_Y<`!%&awF6a(I(jfJk3pcbM;o={8>&Eunue|(
zbmN{5_uxB^)}y1h2Ym?Nd(fTm1GNXWCso3FN#z%`ejR=33{rkS5Be(}AfR}lw3eLO
z=wy-xdoYClPt>6*W|-`FvPA-#*iFsH7)E+9%7eKc%=2Kh2V*>##!Ve7yVJ)!)q~do
zi@-P!#?zTV6=$LclN3)TOz|LZK7$m=BG0BJO=mqb<nlRWnMs{RmF#T791ng`jzLC#
z_Q(sN*y_PHk2cW3LODC9jH{&OSPYA(i>XVfOFdZT!LQ`y)Roi~9{4`#Ws%>Q71(Pr
ztd{mXBT3R457v6{y9eu(^9NzQ2OE^L(Su!c3=+IaIhzSvJldby;+Nf|+wQ?W4_w=I
zJET!%*8bf2(}SIgcgd%K;yr}D9$fg=EMeuHy8Rw`f~xzAdVu=32L}oNP!CZhW`xar
z#Dk+A6!)Tp7sos}?m^gthzBP;I4OJTf!~8?BXG(Ck6id3Bzq8w>LghSHjhk3`G3bj
za8g}Vw?~_xS%SMXtS;}mu1jl>7p(HMLBNAbxlBP1q}%QBN2U<ZW5J;I3_R*VOqzrT
zZ#?qmpf+KBiU+4XxY59zIjTD&Ck~e0nT<E(*5|=F9=G!zTqRsk$MYiLl3c&ax#GcZ
z{VIPxN7raxmkYUmb#ZQbaElvo+k^WA*^E1c|EPC8xTpM?jS?Ps@X&)t9z6Eoh4P=s
zrYe3)cqY4WPWwrlhodIGr1?t4IPau->%lt@QhAZ!)qW_wm$iJ<pRH=F9<+S$;G^85
zf)+`i2=YZDwO1a*A+Hztyh!WSemY6YOn?{Z2<fRAs2QmelZham<i8+f@gl1i*~qz6
zOm;7FD9-8Cu8z<3f9XYT<>&EgpS<Gd_acKwdyS$1K?a`@F6c!e@BinLE=(xmMN#Dx
zlhX0pA|<^j<;7qxhImohi!xrAyfAxF)~kI$7`!kN%6U=Vi;O1?6{rFgy{JUiDJPMj
z_u^eMg9OMMTUUbmZyp&I?bi-_k{2z#Xyrv^R#?T0s$Nth*Y%>F7uCI}!E8-0>JVyC
zE!5gnsYm`v7cF5=s86R6wE^`jYD22TRL-i+g3;KECSEl4q8a@bs<gRRn=nfPB-Ou_
z(AtX;216$=I(yN^i^N?PNo@)3y!e{Xp4vf`b|j>Fr~ig^cK6~3LKo_{UUZdJtkQL3
z_B*Pq>wALSSbBJ|f3Ue9wI{U~Rm|RA^ikZ`ivhXJV)myqK>0s<F;MX!FE%<167!Q6
zL%sOji*;TM^J2IcGrX87yXMutpUXV;QwcwNG17}sUW{f|iY5@oP{&foQOA2RCZc_-
zmo(9fNi>Bg6Q+0}^E*g(nio>Jr0LR-QcMD~yqN99*a`;eLp8^XU%dEgv~C4;t{005
z;>`16zTyR5EL6P6i$CX@B|y>=noGS{M)+05ESIA+UyE6(oZq}yMP5x^qx`jAynbhp
z$n{=q@M4El&h7ks_BTo+e`ffDx{12ki!B84w|cQn@pdl;#f@U_^kSD63%VMPWYszh
z?Dpb-7y0=EXO9<q)w$kB*zd((%9(p4?ca<%NYxhcLPiG?IPAp{FB<#M#D}AD^Ot*z
z5BYpJ?!^f&9(wV}i<4fQ@*?O($ctpw`KTHkUVLXUS-r^9$Yk@vPLOHc=FQeQ8RL>4
zEc+~y+ysvoUV@M6SET{3HcO6#h2`XWam|bCUPM_#@ejs=`Asni@FK;leeb<M6*x^e
zBdVNpUYu9lIcSlXi(Xt(&SfvID85P<u*-PEi<@3NEnMx{cI~g^TVC9jJ-x2|%RDk@
zxkLVsD&}1;?vd{+=Yib!npc*h$8wvxnkthInSJu79-eyfjN2c6U+bNm@u|A!Uc4Z@
zq`snx|C;cI`c@8pib>4(UVQN4qZjSA>eBi&{X`Z>#cYBPsR`nw@j)h)6OaU&>8R;_
z$Uw;GgQRrhw16)-YHk*vya|FS*%LpdtDcR{mg^>&wm!R0dpj%#H77L}^-F4Qss!Zm
zL4I)y<oBU~4^@4r=0iar3i;$!5mfeJ(EfzNK3ES~%J?vEwXTQ{MG3;id?>EC1fe9g
z6t%R}FyAO)Wql~;(>@K$`=Ik_19}Tr@S!5jN>p*O)iNfsR8N&K1Hni&QO!Q>S(y~I
zav1Jq(x!o{;zQeF#$^?1OfjOm4>f(L<-@Xn5^DHla%b(%Z1HK&9~${kda(9mu(l6%
zeA;*Ex>SLBKGav-fbf+M4VAMbXpt*a=74MJLo*-#@L`h=&3$O$!$3JWKD6X9Z{<U4
zAA0S#tgoBUMmEWZF0x;8%2*l;n`V4v>R!+IwGZv(fY&oh>Okn|Lnq~Q_Td|{{Ldu;
zvb7g-8oIKEZnEP(d@rRw><U`?__P<D1SI`Hrw6sCYy(03-qL`hI)T2*=||}A!vN*{
zD0_5Vt7I_OGR23fJ`C~UCuWEGFvf=-oejf$xVc&<X*gko4?hz|Du0v@qsj00YGGsL
z!g*{QM->?F!vw_>eVC+pvYd;TItiHO!*n11?T6W)*V|1yQ!{*+>4P(9nMJL+SuZ??
z0l)Y#SK62l^L<$1!%80((3ho_`>@c5MLsO1vy8e#l`i$+!?XYYU-m1_Z&zqvQMR?l
zZz^UjVU-W7m9vJ>`%3EH3G1lqeb_+QNZnmOA^uwXQnA^GEwV2@9QI+W58LEW`><O!
zwWRjEZo3aV82_gaX>V%rJAEi?Fz(%Llm`ehB>Ns8UYoI(F*&-M_xZHp3%(B;_RHB1
z8vddlkS0wK=OE!9>LH)@^+U`fa`X2g<U`npW31|goU*BgUm~XCKJAsIk)L!YeK_Tl
zK|5vIWy6r`CO5%KwfSHtNRfl!q`Ktj4Ksg^_xRwIrgGinqYC)t3RN6ryqNOkFyceh
zC%w?|Re9r6k1_6p%&ak`gYmQvDcm-hz<qxmqz&uN_;6MZOIRoAoDb&}U-03g;!Cn^
zrHm4Ah09)*3&Dr$KHQLo>PJsMZu)S`2csV*KW_VQ$A<(zQv30r4|jcd=94ZHxF@$+
zA0GMeSSo3p@PJi4l;HZ7{i(E*A|v@PN8%G7p2`)MFX8s1|BowjD`<J)!%H9D`tZ(&
zS8}p^SX%{eeA*maH76JiskJd1(}pZEd%}AkW}VX-+Xp!;8}#emndG;_M<2@6)qkR<
z@@p*ryrl6Xtsmw5DDMaSNasf;KQjBZmYLoU!*pE+KZ=Gd@*-!UYo?5Tt>2x1lz!ny
z7C*B3(SK;tygP<$er>Yj9Dd~VBfB4#kVTTb2${=|Fa0R)*G8U^|N3+LQP8jb=`Sgd
zA9>07l#`!Oz>n}p{pXlMbPD@XgiusP7W3ov0fWSpV9io_Nk2*{E=?#yE$c^@kVOJ2
z_)*ahy&o+yB~<c5=SQL+k8Wv)SN_PBX}hI|o^&actR#aU)6SY+pER2NNb=(=KN|W`
z*^er+Ykt)Bqbd(kbw6tOQH`v#X@{kzAA^z-YS9@L(mn;`J?jYz&2{{!>qmV*8u;<U
z-BfvM<3Ra@dU9|IYA<HaT9I&Xfp(Ej%AL^2kH&tq@}spJQr07WmZb?z$<6#2m1Jn{
zN3Mvu1+^trvT08l+W65{>i1*JJzYCLcHhu-RyBO>M|(M;dvzVC9jTJ-M38B?zmWrI
z*GcL^_?Ft0+Ku|1AKw!srn@xqrCP9T+tXnQz5LRj86*7o*^fSc^z~z?9DG0eN%N2c
z!fhBpt(-IUKtFyYC;x1bf!(Brqsa+_{TSlM=p^kYPxm{ie)3~|RinIkHJp)K{z{Oc
zS<eQvkKK`S1pF9JU$UbKV`Y~K`3Go+aUA)uUgHVmiB!o>@?$c23U#XTr};5m@$^NQ
z<;QG4oLAwxiaCD#;>Y9DcybzZ{g@{WAc8s(%=cq~9|<9(4q>4mi~KSVApQ$ru^&sM
zg#=J7fTeyc^W%jdFa7vcE+0RR_;J*a6@KXgid}M!{P@j}Ret>8$0k2&b~7vvSz7ir
ztoCD#RCrsrmijw&9aYTrer!;@(T^E5EMji<<4-PoWq7T!&rDnV*y@MCHtKfj4yu@c
z5_ZZddt#969zXW_vCohFvLpFSYpNOgm$!)i<wx>clee6~9<o$jqB|h_wM6$f^&s^h
z>LEY=B^;(ojLfW*Go$I4AD8{O;>U46PRPw6qv@m{K|ex%oRXU9SgCHR%?~?4A{_*$
zA1>v{Yp~*bnDtV9RKFhq74vbFSz^M>p7A3>h*D!JCQeB4%Y1g)CP|WxUT4YYlyjbN
zfqId8$&dFVw92pgam_D%<Zxg1x{mR>AJ>POrGu{U4LUddxJ9^4y+i$vDlvBnht8TF
z$Srr9E_l!~XSiA5q1=w>2tW4YiQ=bzJR?6>PRmi|S8@ZCGZ;X*0N(iVR_?|DWDQ{C
z9o;+G>ttP8@_Ro%_%&0~N5Us+ssIugkeZr?DluPJbqJuhQ=cw?g?Du6sR9`S$f!6I
zA#(s<C}-S$eYOCy2k@kyp-4a*+aX5)c>;)?(B}-utGoJK)Gw)$%}tO2m+}U1ZGbT!
zH9u9d1qcNLC`2f%{KtFrQh!mdrC0#P2_>i{sZv^sP&$Az%9*)GS3ZCW0aOk^xMBdO
z_vn+j<?{5YQUJOD+8s9}QU&w`1Jy`1QOyBunlK5-Rm&7Os?V@nUnKx}_4UOGef0op
z1h6N7y#dq=pjH4q0_YilC4kxibPS+V0CfVW8$gGEHWgZ}jMYEH4fO)3FT1wb(16-3
zfUgJ*sp2;xG^REQpsDgBGmXs^w+NtR0IdROO{bmm+XT>7@$^~7ugUF|Q|7iY-7Vde
zrpCNAO`QYyMmBq(q0JP-)sUqNS+d^-&{c6a!gti~1L&^&9|D;2UMIo5q|F2{S+W82
z37~HPLjw3IfOBt5{Q}w-_#BtC56Aui?R&+50DdG04-8-sd9ZTiU(TVj>?M=T=`$vP
zVFBE7=_Cy&jG+E3&6O}pm5vVJW5^<5Qs>wJ#;MxI6D9;OkuZrG<nRtt1DF=T?*Xin
zmKL_0yJ(sozzk_50n7?uSpdHVFk98LfG~&pO8|2T^QiNwvfkS_wY4u~c9DDv5SCDv
zs+h`Q%W}ml2`i|5t7u2&w*Xc#yPCR&x|S-XIo2E3lebX^+LJZ}Ai6PtKM2B`2%7`g
zqMWS(c(0nIXuGOs2jNfZ&H#21c2f<dwa?#u0qhSTMXr<p{tDngK>qK>sQ~^C;Gl#t
zQpS3koZGl|m{DHtlcz3+0@|~ef2oH9I6@HTXaL6)9}nP!Vi_bbIRI+_z5x6*Cl51r
zEpM;|wDAM&R0q`=fQul$I{**as~j00uYZ5z?yd&;st^buDBGMaQBsHy4j@8^Qe)IO
zRbs|$wVVmyYyg)6km38z1#muq3jz5{9UW#To!?|>eL>%;g5h9ZbM%zq^=NIbF$udI
zz!k<{rCy_oe?5R3<eSu6)Z3~wM-kKA0Pe|cCx}Hs+z;S^+)sjN9>l`{9tBV!h=M^p
zmb+E}&jWZ7K;b%urvY5us(%)cf7=bG_8D7+EnnxcybRz~02zYF7}Wmvc`avfjv*EK
z4f$;V?+D_*Cw!2rgYZfD=2{jhO$Z`27feG<OBEkMq*I(;wl<$Z%uGRKmX$u!%M%;v
zSolQ{qPc>|LdZ%LCtDEN$vLPwl|M9Wk<u@j%^gG@<>w6|pW^&Ml<1&UUMPq`zZi-J
zQ7nkUK@<t1=S;)nty)+ASZi}}2@9fHQ2x<Ch5NdaL2MaioOZ=nDu~iSl%ZKE2wf0m
z$>pf!sTHUdKl6Q^OgffGHdFOf1Jy`1QDrS_vYC>|m8n&zRaI$`tfm@4)C_8~rAuFN
z8AG5}5DkLbU;-AZKy5;uAnGcoUJ&&aH$16LmHt%_4e2yee&ZmTkee#!U^Y{WAX)~|
zJBU6(v<jki5Hi4TyC9ZZ3~hqiRIP1;+DK^f)BaHf<D|33uY+hGL<fd-qjsdqQk{b6
ztoWNCx+wlOh^~seo-#<}cR_g$psh$!cft?U9@L&e^irkW(wq7Q(JzP}gBTb@|DZOD
z=!!pd1A@qL)hL7c7qu9w4={)h3Sy!hG>c(y5JQ6ai9CurlqyBTf*4L7p`4$C7^zqu
zMoG+QX2(#+QpW``Ud2oZB0~nFgiQ)!GR-N}*+EQIG1G#WPM)EhnL*4_Jn_D^&2yOj
zg*ulyk2*hy1q6v1^rvBQ5KDsiCx}BqEDd5=5W9oe6U47_f`Zr>#2<1hgIF1aalT<g
z5P$VC?tG;GP3{2sO_Ejxv6{Swx>otW2eD4^`XE}&H%M^xY=$SrjhlklEcJ9W?h0bk
zd&8C>dXzQEPg>!vL2RQbygi5=ivJ|+4B~l))KWCLqcL5gX>SlWN*VV{Rk97`O#7rY
z+I3s%8V&^UcMu1qy~T_@IvVBAh~D3twZC8Wrc3V({|0e5h<FewK^zI<Xb`R-+(8@*
zLY@p958{NJuV0OmG8)qsHPkC@I2pu-?+mA?$yCW&3AP~Y1P9frO0(y!;gP#U5NYlh
zVzQ9|y$oJ0OZgb!rv|9OAVP#NRbnE9sO)b>qhvi34V%{KP6u%&i0e|7+)Qri&IWNV
zi1R_n-0m_7PP?G~LJ+o0iS3(dd@%^oOF>*F2wx#w4dNQXUOTOrH-oqp#3Q+l%e7Y1
za65?oEsQcI&mCsP`Hyfnh<nPpAH)O252c;l&`FqV=coOaCqX<7Vn%k;vmo9Qo>N~?
z#eW&ZEAngV8|81BVUW^y%)Y072;w8*6E#&xt5(vEW`;B&qzxfg7+;2g5YmOPJA^$U
zqz@rO2yH`X7edAmGKEkzglZvV4&jTC_ELQ15VC|Y<bqxXM#vjN){yoECL2{CJ0V91
zISIK!_%ejt<UA^-@I1(W_Y#~hg!~~CpkF40vLO@<p->2gLnuPiJSL$ip(M2!wK%l|
zRVtAV0Hw&Ksq&t(nB_t!&#azWA%sLiMQSCggz040#%NnovW)iqN0Na>Mye?UGa*UE
zH$14nGE-MYjzDdL4EVqHvA%i;4MS)YLX8k=h9IT2LfV^RbHn^2AcWdnwoV9jL#U_f
zsUO0ttJ(vQ26VnszOQ#e;}CYXG>j>4XcE$fp_ai7B&=x&%~VWtLJMk3YO4@htI{?h
zZ7c#=<m(XHhww`XbLFgs&@qHgFHNIGL+BhrpAh<nw4NT{gkXJWmVbM@F#9dFYY5#!
z_>L?wJqX`ZyHkG%L6@$w6iMnCLNA)Vsp7nSU2A*T(k}$jpF-$Q5FQZ1kK}>M8AKQ?
z&51C1l}^Hjs?uSyFN#MHehy(IVU+T-zA%jmVXQQpclvSC*lJpawX8fogb5)`q$&P%
z!lV!;6Q)q7Qm0WRrt$nF(HSAkRL(5I>=5QCXHi%4Jhk56LzquqAdi4TSfu<FAuJ{@
zQO;7rvJieHELZ-IK7;J+$`F22&Z-brD_%obE6w<YNx~$p3t>IY4b+Vx{6W|xO4v-5
z$SomkC2vzslNY8PivJ|+3}KgYq?_5^5cY-O4Z#<}{t*5O;b;iQLO2k@-y!@P!r>4O
zN*j|l8N!QpW>?rE!@XV)TRw&@70wxCUS^M5zqonjBO$Hdn!9TCyf4kVQ@Z0JxI%DC
zYdNJm5yDBrDXKWh()JYFLa-}#gy2-X^s;U=60<Zm`Ue_4auqx_EioAUAp}Br6T(}$
zDIL%SWu+n92_Y0hID|+DQSt4jf)R^!t&D|mURJb0FDXt)3E?#1jPlPC&dEWzsde3y
zbRmR`AzY$=nR;EWZo*aSHL66mE}L{i@lC?5kk+AHivA1XZV1_4m|x4CEn;ceyQ*|5
zxEI3x5X$5*KA=7f;ZX>W$<L`zs86ZSs1htQx4uyPQtlq)lWomXB%>=xm%n!*yqCLo
z7#YGCInVqdgdXk9ALaDbG_JRsgg=FlDy*3aRDslCq*0t!J_X3>lv6cg$r#4X4Tel%
z?LP(ihgarC5y;H!7hz-}h?A9&jha1-9E6;zwCXE!?lAI%u{w-3VdM=XUl@bK7!pSQ
zFbagxDvZ`)6b#Fcanuc?UKoYLC=!<cZFTxEIz=opx_;3xiiJ@;j1pfaN-8IyxFn%e
z7^MkisAW~D`;$)M%QIUcjEaOxR2?;uDlr#}84Y0=xn5Hk)d{i<W<nCRGPOz=RSDIo
z5;LftMYKj3HR;q+z9o#><T}cc|4QnI(IAYk!e|)QCMIs~)3(r_GqI6my}C*TP4bUb
z#U|Ao%hooj-Xx5sgl1H6nupPX+)_C?yxN@0ZNlgh#<yX#4MRHCe!8k_C+9a)^{>Nd
zPY~`9Mn`fdYG>*<s#GeGuGC$_T8HZ1)NWyXM-b=xFuId}P)?69dXjr7XWkuCAH{tM
z{iyw^1E@bz2T})xr6amgD*q{rp<(<I#@sN5g|&Ww6T+An#_%vkgi$SRV!^7GpToGb
zT_+Pvj|^i}7y^<;6UKxwRypGc<HOotoDwi8jLBh42}5SiZNJm9_iw}Kh(%si>-DnM
z)G&J6EYqmdsWZZuNf3V)VRjgEl#~6rX<iu7b;kK&EMWcSxB7))EDB?B7)!!1@3Y86
zpXu*vJryI*OzBdYmxi^eKP4>-<5$JY!&pIHN&StwN|nl6Fl)p3J&Z~b=ptAb#(LRt
zDGg&o7#ro}hT#k2k1#fc@wZ%AbxfPXIJQu?i@Jrnl`7`8uzU(@r8}s9Dt~7f@+3$6
z-E{USe{UH36z>n?FU1E4@?hs6;h!)L5&jM1L>MQ@hp9)xI7&E1J^q;&>I#lCoFY4@
z$;!8eVI$j>(`$>)Np>m69fn77vpsr0IVFtKVFbc>`py&#|G#%@D2y;ULXA>m)HqeT
zw#ri@+3_=BTwy(DRn6zZIIs9Z7#9^^3gfck&&ytA_8Rp%^@iLk3Ad=Xsj`+kH*|Ny
zxEIE&FkXjoKa6oRk{*QdP|oJeq|#XokK`NpHe;_^rloTXGWGD|FhrkFpN8>_@SH0C
zi!fd)9+|oFn=synkvW1dA}E~B@GgvR>Y36+@Lq1A=?ovJ0w2Tpq&QUs2@Fn6mD0uc
z4XY{`(nf#?1SF-4AU!z)H6t~XDwWycvqVrkU1IJC@<fo8oQ*1Gc0!H_auRY;zf`5`
zrzc5F-Uy0BP&9&k%FiD`0dhfVA!=b&>dtN`MlPeA;t`ZkTrz@E<kHHKKZs>5Wg{p@
zr@ZnjL{L$2h8%{(2=ozDj-W~e_y5)#B9KS=rU;A?8NEs`<6DjzWH3jN6hV*o25p*>
zWZlSQUDXJxMYK61YDQ2!g1h_mt+OZAh~Ur#-LT!dZ0QYsdK+s+V2NN-=0xctHS~%>
zCc3Q~LA?kr$8aTv`VlmU;Fl=oM)6ey4I_w0kP<<ohzy>CiLzh>O(N1q0s|u$6hX5H
znn&<m1m8!{B7&9?bc<kd#B%4jxpGL~DuRQp%&jA66G2<DWIILBPVv`-_7QX-bX0!f
zwU*9`zlop=`CDpN<zH-J&fLoU-ziJ?2!4>`5JArfde<=ye`qSu(%iO?X<*jG%d?EV
zA~JNRSyFF8A8OwS`YFFZVL${wD(9yZ-QWm@L@++0z3cZ=1VbYj7QyfcW<1m%PM0{j
zx%u^0<A?|h7xg#q>pSn%|4f$b$OuM}M^nd8$5O{pC1!KxTGuirPLTHLG1hBgo*coH
z2=+y=KZ2<dOp9Ps1e+t6E~|@Rc?2sWm?_8Hp0szgZb1aI$g`<)sJ~DpU~UBS$n%x6
zbG2?^1hSx{McS$PKQD=3DR~+7SLOeETDMZ#*hSNt2r8}B{T;FV7J=w0>S}5OvvKua
z{n`jbf2XdCU_C*c4H0Zq{0AX>T(>2n{o%4Tf^88Tdt>^yf=S+0`8%rH9>M3i4|YWG
zr{bLv>>}@0&K}u3#T_HMzalsg!9UWlwe3Ou@}`5_TG`+$osGeW<$h52Zv=-Uuts2$
zD<YzkP6bCISb1JA=_uit?51)~5KcyLijb`QV_vh28FeUEb$bL39wKK1fe0Q(EOI<u
zbleem)Y0=2d=dDSbH-!|GF}!55yI36H5x%omC8Rgrz1Ec7hM#MqBtADIl1pekuHk!
z5nPZfG=eJ;T$EdiT_?k9Uy7i3J;T?BE%Hpvd0Tfif@^ZLI~vnOaXo??5j>0Fxg7S0
z4Ew3OPrXHz>}|pw>VI;hQ2sqa_mBDqgoo5es`N48Nd!-oBg4kNAit-+RQ{_7UMqeR
z!CS@e2=avR1K}g}lPXOWMM6~DT1lx1{;}GqVripzKh`J{J*1B!LlniMC=o@*C^AJ+
zEDBRGW9BHnh(fx&=A&kz=7=IIAsbanvlAYsG36xWqJBxuP0d4<$h?HLXH5B(Qy_|h
ziVH<im|R3TMG09>ndHf2`cL|jQIv|JR#bb5MpEf0lE`JEC>upNaw4_7im4DqMRFyo
zPWf^!qy{~+2C9*2qMD=VRL}5vEtTn1iJ~f@8nrsL235jpM$w_I7H?5bZ9<(W>JsWH
zzdoUXd<rN>W=w7zMUyCcM$s#ZrcpGD;=8C!U5(~Zw1`R{W?hFUiiUMEw{J_eRI4aj
zliMh#Z4~XuUsKyFf8cCgM^+;Bbc&+0;%^9DqWG53mD){}%Gk@@S;G%e^oZi=P=hp>
z%x4V~KI%91GwkbR=p99$D9Vh}jftXf6tZnUQ3d)%(O>ZZ!jDl5Bn(piV8RgjK$N~%
zpY%hOKP-yj<Pp@Ll|Pa&DvHsB6$dS{)YvF;&DRe5xG2U)F(HbHYOkjgCPgt>Ia8vT
zN}i^igq4OF<eAi2)Y+<Z4q@{R{k$mV%Xx{RSquxJSQv#T3U3sPqF5|fP(s3yD3(OA
zG>R=zY>ndM65X<>*8O;G6u(9>w3~T(6!PYUq!omfQT#?&rTo=|HBs2!RF*JV_IK8>
zj=G+@A&QNJKd2J3DT>XC({wX$i(-2e`{g#ZS-(STKe{R1%`&r(z@Jg<q_c}E&h9Ao
zkoQveDgVtm!(XgHDmg&-JBowK`6r4)ivNw`u;Rwu%}1j+7RB)>PDJ5~!X3rQC@{fL
zHG`r1Gt()uWRnS2s*P%o!a;CSB}O_p>E9dPZ`F%th+2G6_@j6c#Y@@QD1uSkl?(r8
zV@TrVrKhOY(<4llY=jV{#;9>>3iUMgOjPUiBEje6BOr<ghxHfeT#w=+vzMrssZx3+
zimQsR$t799DCP|=a+7+CDs|qD;tu&g<=ow^yBEcMZsY^m^4+>ayA86z52JWQ^D*@a
z^(j?KpGEOpvAlcrDvH-~pNyeU3~!>^cu;Snco#+DW=qMa<$V+%qR0|M)|mEK`=flc
z5rjWUyHcDGLuzuG7}Cb%m!{UgP7-363+=^_^f6?JAtPhTPu6<VWg=%*HGJ_oTTv^@
zM$S#mPR$WRPJ)!?is4K03kHjmCx*PLG+zw)$pw^i<8qq9F%*em)JIcN3`ObdV%qd2
z#bPKPLkSgGF@}=lQZbZ{p^Wm&6UtJ{#k3K4WTh3Dt;wOfDyhg?oW(woSv}PdgOOlT
zF=oPql!VGL3|g(L5<}G(s>M*9{#Vo*)H*TLB-El>sI{rG0rHfiF1a4HzVaKyFny!;
zXMv=KG#kaxn9xMUj7&*r9z%;5R>ZI}hL$n3ieX3$KgG~GhBh(ujG>pD^tHOSG5ioi
zj~Lp;@O2FBX^Q`C3>_4AjG+^`vvR(Pp^M_jYjj-|cZ=aW#ox!!UGb!esp>{8|2lOS
zDqGTA(#deUy;;;JhOSXd+D|4~W8WD1(d@658bJ7wI#3QKVX!K-eJ~A;VOR`5$1pO6
z;W6z2pwv7fhO^J~wbtllUL;xFs2E1aw0Sva$F%2EW4QS49mcUSjH5H2I+Z$sI*~dl
zhRK8}R9RMLQkzDePMtxWsY+)N%4A8L!`1ylog2eE!hGry`4k|?_AHEHk>bTMRD@AX
zNlR%ii{V$oaup-T?Y9_K#bAxW7Q^Zo*2u;9yXD^)*2eIA40~eO8^gL7ZeP^NbHc4L
ztdDX0H>zCt8)NuG@g~_?@)qSxh+4MAv<Hlmw#TqT@t=g9G3-*#Zo=|i`hNA3<jG-{
zhq`?+i0+T!FTw$;IDgB=lmAi9A=&b%MT$0mFddekw>R`hVmQhjk$pKvI3B|Z<(!P+
z6ggQrWu_(BV{pU}jUgr*AA>6fcMKk$*#}dT<QU4-pRx*hF6x!GF~}&%NASlGAOw{k
zk{bm%q8u5hQ>!6{OELMtvZV0%pQfIno~53no~K@*UZl#h@3JJCavM^jma8#blYLCV
z)f8Nh;f5T;ICjTzGlp9+)QZCr$L$zGJ<Mt2Kpb~s_%DXLG2Dycxm=<3jWTah&m;ON
zZOr#$5PcBCL&78KW9k#Cls=8&nc`{rjI#KP7+%KkidDUi;UnP<RZ8Cy-pL(LIUi#1
z{a}_NNuOw@iX$PeZHc7Raimc!lMbhgBYhkN;wTu$n01y6apWKfXN)5gIkR%Uh$9O*
zD>WN6yDGh!$0SSTWHuM|OKNUvo;dOn@=+x+e;gm97J)(pQyk_v3dd1|*`je&Bow0-
zkE28!CCO!}vTUh1N-HiyC>*ntBa~Nu1w!CWEs3v0*2R%X&{GXmBUNIyyfr1oAzh#)
zNss8timMQ+Qme&Lolt{XlPdAjce-{Qb>f&3$J99L#!)YhZgG4Um(K`G{WzM((ISop
z%!>0Bp<x`22#uBBB#x$vo5i*F%OtpJugdaTP0Ki1#nC#BMTLzWsRC`{Xsftg9A7JL
zPv{WG{=P;Dlhlb$XX-c9F4S-1=t_{71!2?oadeMkXj~hfMMmrTA&&mC%LR?XJ>uvY
zhd?iCZ)zWEUur+91hfw6>&y86ar_vEfTV$Oc_a1zJUEUaihm+3yl#}$4U1!V93$fR
znQIqk9ARV}qm(mRnh<%ca>n%4mK`6*1m#SOW720<j=YvWEsp7Ntc>HgIA+8#GmaG!
zHceNycy%eA702v2=ESkAWs;;tar{D_OP#0u`Ee{zypV7;Vv_j9<R#Rlp9A9f^)s|g
zT27DwPvl%k@G5Br*L8oyu_=z#<Tcc_R4MwMur7}E%Gp5JNWFVq?^~~v!8A5=`?tiA
zb+bXz);PA2w<~8y9DkB`D(75A)1El?#xX7h<5RFtnnxUIQ-Bow6~}=%9>wukw(3~g
zzvBqR5safk?&=5Q_$Q7-ar_&{Vc`)vH}weB7RS*zj**X3PsMS9aFQzV-^R2rJju*j
zWwV(T$4<vVb;jXR@e^8@J!G$Pd~x{68E0z!JwoKmaa@Tb97iOMsERyGh*9Hlq!3P1
z&roIYF}1brITx2PGqv5hK)t9+FA*jds$Bex;i}x#nH9b!%{vYONjC^L<G4k*t^CUk
zlKxZm+$G$L<38bm@*fgvJk>vm<7phJQ;;S_+l*&%yp{GDvpiRkFXDKq_*ERQ6~7_e
zxsdRV@v_MKI6f%;Nca>-suZoZ1ggM)A)QPjBP%KqGvz*`OP7N5DQJ>{rYXpff{ZE9
zr64f{nNpBB1*N%3Ur_U<Ab$$7q#$bwveEgHnw^@1nv<G~Dyxu7QZ#o8@+c>73OXIo
zem)eSQ&jl{Q&328;S>}h*NbbBl8P}~oLV9UB~@f8!m2%%GK8|!a;mg^3MweBn1V`*
zZ(Y&rQ(#EJftaN>O=AkG5lkw^Oh}?urdCNoRaIK=m99Fu2DK)&*8g}q4``{W_iF>P
zK{_HJC{mRsxs%LX%0-4MNRi$I=|#FA(xpj9=^!AzBOL(&k=~?truROAf>fn`@9f|I
zd~0Pr>&ZTEGBcSZ7oD7QNGmDtxm(H9!$q~YTHA&?Hq@opBR?fSv7tVt0V(wx8XL8m
zrM{iUHZ-xJhYdY#_{@f;w$wZ+9c^gF$~I(kvW42VC8d=Ottka+rA{YV+H$p>9C^y;
zWCv1O>ovd^^iC@2OzA>)wV@lOyK2pT*xJj6-dz1g&YWY~mo^OIY9FrlCHs;6$pPd*
zQtD;24SC(KY%=yj>KzVId;Z#nq4c7)|L>g-<LYo5MyQ&Rlu_hp8^)-7X*0_>8^+tD
zFFcOgFu{h2HmtBg#wh#FhDkR3wNhJX!(_@2<P>r$IgON>={C%u&m_NBdGo%OS@hZD
z9F@<tVIF-xxj^N+LfRtbKT;NxOUR|<Pc|&0EGOmF?+mo8v|*JEuM1mO+pxoioi?oD
z>RKDt*|452tv^#XkQ;5-MA@ub&-b-R%@(e1wP71&yJ}6_WZh+hyw-jjDsM4FcFSJ@
zCgOYKuK;}?`K!tYcr__LV8cOfCH|WYhv>hPhgB{!mmRa=xD6L<xG2YGu^~S?pO7yl
zPg=hI#!0z*^fykCr^z!moTdCho+G8^Jmu}B#w8mr+hDW7F4yd8Yp2cDD>huaWxYy@
zT(jZ2@*9+!Hr%4zR(Xrny2FNeCtcn~!xv@|rwuM9;%<t^1~0`&`c>;+x2z%g$G;6<
z+cDIRhz(J>%Is)kM@(vLc-M~i>`2&<v>~e<u;Wh~hAhxzc`gUghP(0=tK^Xlf79=&
z<UZve@&Wl!{v33+$mWk#%@fK~@?Y{l8=k4w;TKFV=r74v<ZCjM{r}!cW=a-2-cU)Q
zQ>JWoWVa)~9dFq&EqBJCD#n}k)Oc=H?wNAfA<St<E{b?=N**$=9r-9S@0B#k{Er3f
z7-KifPQ>4~qo6%CDWoigD22&)$RcD>J7l6#DJW*g`}WlTw5)AMk!l&m?I>YKNqef#
zX(qe5lpUq*sAk6>3$!wJd_XbC5AFDfB28r}<?JX=sX$g#t#Tx#rji|+O42AMJ9L#u
zw|c2DbJaqo+fiAyR<Wb1@)7q;8Op0uKDMI<#Y)yBYmu@~t(&Ee9d+&4vOue6M-#hr
z-?Mze*7~ZZ0p(M&p&gA>-q;Qq0Z(?)_b1~sJA_TiW_C2Ev>;oO(%Q<N8jW0}tsU*`
z=xRqdJKEdvxgDMC=xj#^J388NtFZos9WQohMcZ5c>1OD&(gSmiN87b7az5O)b~3EB
zZd*&;wu*PRqlX=X?D)!#o_75Dxn*KoOD{VbuQ58^w)VC|R%Q9pjy}r!+R=~RpBz9A
zRIOufTL;S<Xlof_N2y)bzni2#Xlp6hBBSsr;~P7M$>+7>lpVwE7-7c}JC@op(vDHm
z8`q9mc8s>8tW*EqjtcutW9;}=cJ)jjYsX|eTtQuY9Fy^OOrS_Ik@B4#lT^}Sn>K~@
zQ%Tuy8f7{;!;YCM|9P7B!FglWb#1mCt0!uU?T|zs1D<2YTsg4$jd`TVe98hl7E%_G
zKdRQc?^Kqp<RRgo>{w>U4m)<rCw-_bw_^i8i}(sVRx(^gt|ld4W5-(M>+D#syrWFN
zK2h5!XXfw5CUP_Rvz%!Z$+z0EjlNwar;lhdO8hQ64%+dX9hJ(PcgwNbr2S%-IqXs*
z%U;Sp`MN3lRepeCdT1Py?`4kW7^QD(po{#@)x+cw@~9ohD91^uIYFuG)KA-S#*T}2
zT(aY=T-vYn^LAv(ZvMlLb9U4otI3lXS%w=G^H;wh7t4dx0~i+*+GRVg$d_V=+m5St
zNZ-|Kc3hXc)-Fw+z9|2m<%YD{OpSUQH|;X)ze$!`l-s1u4m-s`I>}U79o=Jx*AAZ@
zemR}?n9{53A6GQG>^24D!{$npC1FR99#TnI{t76M%3lF`TqW|*NRs}iO77Tkm;M*|
zx61Fy&GzloOFXdSp&h$D_{D=qc09IYl?$s~cw)y>IYdrmIPtF?|JkwKfgKJ!v*WoP
zpE}UcffshXv?JYt$_~7;<Fy^-94PNVq^6$9fy@qMap17ikS=C#IFQwm>eN%x0XUG&
zfudZ^?!cQ4y!}64qUCTPukxIfTn^-><Wc$X)2UuU`M8>&e2XmLz@MWlOH)Cv79wS}
zumkVVi>T!8y3`)tb>Kaf6m#Hx<;5K+q5N<mLn=!-P+BEr9Qc6#Az4=CJ)CdI)I}8>
zFgsvzq^3iv=)gymN~A_gp5~A#T~Y<I=nfdlpP$i|-?q-#qyLrNnEcFC#eu30RCnNG
z2Y&2ps^&n31O7)wi}`xxZTdTD#<ZM94M%DOB&!289deV`W!jWl4uqCy>BY>CvgsnV
z9jL>kE?JM1{1XT2D{sIzAYmg18p{qH_`!iD4t(Z7KL`3d(A0ru4s>;(n*+_&R_!S*
z$d+U)2U=6wkZs9!r0iUV;un7IKnIm{bl?l+ogC;)@1hd<m<O9%24y$8%UL&5??Lt?
zWwn<Bz3E@7q>lrAmH%+a7~sJ9Hu^yMXpYoewA0=C#k}UP92oV|G|7R%4h(VNYdJX!
z8M2I|3?;vDU>IdMIf9g$um99XIWXFRF-*pj-;!g=aimmA=Q!a6u1<8|JC(~-Fqv;a
z-oq3JrYfICneM<0mCSVDQYKx>W;rn1f%y(BaA1xDa~-L%tmnxU)K-@PDy9FO3?V3e
zHph+A7s?AA*S0#a&4ER7!Z@(lfh7*CXTFq_f>o5C$Yl;Jr>r1Xl2Rkbe6{j54y>iG
zBj>HoECsS`aA2dV+2p`x<v%;HMY&9~-Y~-|mrvPrJ=Y6urvtkja5~^}V7CLmIB>#&
zlMd{0q^4ci=fJOWc6m&D<-W06lVraG2OK!=NDV(I9b*s5-KLIp*o<`X-y9GgB7Y|j
zJ8*<@lsraCjlWW=N9~RR#wiC*%X|Ayx6Aq9z!SeA%N5F5@(=PHd7ixBz(vX>@-it~
z<;ZUlUUlFalj|zKAup=@mIJrxHkHWS0S<=@P;VT#Z56s5@W`Fbi9Akt9q`F%??Bjr
zb54`rfq(-+`RW_%3-9SNN4)e7lg?tdZ(F7FS40ko1CJeuI#Qj*Vh+S93G#0;N&e};
z9m-u&ivOa#x?;LVxv%nn9C)Doq1?T%n56ho9%D~F%M%BlI`FTYPFW3EUQ_-fpOMeW
z7vxL%D?pLT7F+d9PGokbHq1h1cj66-Bw3vRJ)26N<TBo*=OA;Exm4@wTt;3e@;Oo3
zi84;)ccMZTy{J>V8=FMla-sl}x5<K}<b^1Oop^^*MCAph=`vH^yUx@Be9wtul=sQv
zWC^k)S&EcO>0|hT6CXN}=7h;9{}hDmM?x6~shkt?1<6vLQo)Iel#j?tq((~3yze#X
zd3V8=ntD=q!f-;wOj^ivQo_nkRH0W@iS#S1?!?DV1f2*uQNszV6U&`g;Y3X*YB|x&
ziRMn!c1q`5xq+KMaiab+ePbWgb)udV?N+48fD*sFG|4|RJ{)4yccOt4FKwnz$%bSj
zvN73&{ETc$O0hhf+QNyJPE3<eBnQWt`j=8aC;B_l+KDz!$jB9Ko#^C5XL>uby%V2P
zq_u++9qC`F<fGokvA%j2Cxktn=t}8Eb|-s~((25YxtH?ZlrNp=L+Pt>87^ahGxeaw
zcygc<gPiz^F5xiBU?+x9z9xr~-;h%CR&{+ieS{Muoft*`mK;rvA*E6t))kKB>NqDZ
z)=8~S;OazG^BrZ9Q^tBqy{joIpGuK`^(C(8Gn|;|#P?2l#M%^lYW~5Q8s20fzrI=Y
z+2kB@E-3}`oS3hC0Y#qvm7}!Ci64117L!ZVky+}*Ps*238jjOeI<d-$15O-tVzm=%
zoY?EcJ|`S`(^l`&);h7yDI*T)>z&v}*+5FNk+O;0?8MJ1-{Qnp<vW@iQn{V0JII|*
z>{6|}DZe<eM<o^V>c2X%--&S<x=a}QQ7x;y2l;3A7dbM1bK;N_9=TyU@w-$0VTmg*
zO*fr5;>1xoyAqllw{;=YF()p`dk&e7J8{B^lXO}A!--SMPgBk~aaJYrk721f=fruH
zT%cTZLgt8(CRr}aE2`G3lxt30r`%Ba-!G-}6y!;p+w$FIPP37AQdS*KIO#6Zt@3}f
z>P3#5d`|eC2sp91upxuY9Id3wr7E9G{>vilL_{up7izc=bt2|OK^F?S5SQa7_f=P_
z^J7wcoA##@cjTV-+%&{zId{)=*9qYx@-Oml@*a7g{D*wt#6ybI2mI#8PCRkqsY+f_
z{&nI%$}{pg`GS<Ket2pYzH;KVN;0`pub$b3EEI7W3NNb*a3Py3)qPSr1Ik;??!uc~
z%|YfPbCS7S$W4*rJTBx_{_v4mlKfnKi!4CC?ZUxPsXZ5V;T;z~av>Zr-yf1*#D!8W
zly;%0D>d4%3`O{^3-7s7lN!iUjPkw<#VIAolB%`GUSs`PYZ({1bTnkT7V!^U_|PTu
zqFT$6<w#jA??MH7MU|vIHCJ*$bD_^;v%74K3bWJGTrjyH{V{dYaKTKmxKNdnPF5zX
zkWwt4NLbB<43$*p`;pM<LQNNjy6}w)wOpv}LR%NwxlqT2x-K+v;WHOD-Zs^9!Q(RB
zzis`5tMy6A8@TW(y&>6%Y^++_o2+m2sN5}+MS4Xwb-_MfYvw|8N(-_jDS0awTGQL8
z<Sm=Ey(`r*s+$YlUHIIE@>Zh**^&H$l(3Tvot1ZSp{sIRO=}Mqdb%L}o0>i{_i~|C
z73%;}q&MYDIkuF(WIwV$DK*lIN;r_KgUGL37)%*LeoabEjW^SVxiH*??_K!8g%K`{
zbYY?k-?=c#mFid3<c&1x)is(ft7BaFmOfS`<0#|F334_*Gf9~oI*~~(7&hx<SE_TF
zEK?{`$!X+t7iLgql2Q};BwaR~<-)3m<{w>{%^l7mC7(-~N6vR)0c9b%h?E-X8n&3n
zUpkR3aizMFEp_21iuf`YmMdRDSt%E0Sd*qTF06H7t{d~*SSM$)3;()gSa@uZv%-Zd
zE?jkClM9<&IO)PE7k-xej|<yf*x|xf7i1L2Z7xVJU6IxyvrLSBaGkc(g<Wz%x$uje
zqV3XU@X5t(EYbmX^K;7{7hZ;qLoV!<8(Jha+vz^auP*FY$pN{p>A$I@xy|}JH#|(r
z9*$6sx^RqgoIIgg%f!s5T{z>y<5T88TsZ53bdUWkWZL<bQ9G*1=I2~E@4^LnhxZLB
zewDL^3_*F(g-b4oTqgZ4P5hb**Ifw7y+zJUIdm@g<<n)!xaES|q~CVI=7P1oaky-{
zU5<a2wE1<d*Y9ffOPa$4r(7MEG#4r2PF<C$#H$jY9N~A(k_21`y3pycQRkp({!K%A
z-A3eE4w;^~kf&Kj)Rp?JDkew6g@n9^(`H%jQIh1J<Q?)Z`IifSQ>3y)K|^@og@07?
zfbvjokCewMU)@T7D*s35lGd=bMZVByE<AUkksFQOcp=Bug)}!zZoG2gwF?E@c-xIk
zZVa?pWywLw>_!&K8)R113Q9INvQyqv`9CkrIhE(4<R<fwdELlI$xpsT%4@Y;VJ+xJ
zWSH^br1qg3h1@9Y#yd=klhRbgjiSomb>lsHG4g$tKi_06p}eFUrRb$qQik$@8;%wk
zvcs}&$h);?=;hoHmM1Ha72WuVB6%e@H061AX}TMR8<pLt;)dA`iyKcn>gjH@Yi!=y
zPw)M%@x9Gj__?{yeXXh+OMW%gcBck#6RF143^%G%B>C8l8p^G1)TGx^$@@=Db=+9A
z+K{EL8};a)ko8sGz>QDo4OKGEFq*jWnH!zl=<G&QH=4Q8%8ga;8V9DPH+Q3j8!g>v
z^g_RCGGs!iUd1du3mI!ln_IJ{4JpNKDecJiZhWrt4wQ~=e4&!cIn%nh(bbIs@@=}&
z&5cWk^zLr-aAR*Cz46aRPd8-x?4o%sC$m@X<woXgX}!rW$v$LXQkwcv`n$1vhAyjv
z-1y3k32sbuW3Vi{4OvFIF@*j#IaKA}P==Ai$q{Z$+GPFTR->4VCdat(Ek&Bfx-pJE
zUM13R@jEw$&(t5D&^OwwljxJ(nBvA%`uF5CaymJKluc&3v2eE`BFhhM%wj&9oTF;w
zn9O%$ft*(!q<OGVzB@TH-H5vJqZ^Ce_`{8JavHd$hZMHCvE7ZI+*syDd%s!ctX%F!
z?1Z+S6j|ZMO69BESgm{wWv%=bP)WX%#s>OEm27fjGyP|Bi^{iB)|@cp_vIaK?04gU
z8#~>pAH-$ZMcM7fFO)qh-%Hu&#;=qzt5U@W>Bm&fZ<Isi@8n@Oj!=%02a9I;->V#V
z;{=nF<SFtrd4@boO7WdvtQG#y&dXJ~#R$7`!HtV@63THKV7Vn1awFri8&?Nfu8>#B
zYvlF+B?B!t+_<ScxYT;v4Vzr@+*UUCQXFnLRpO$!-SDX7zkU{}^ts_@5>R=N5|Zn2
zuO<cY{+3;XEipIZZshPFrw9MMYe~5A(2YlKB;EK^&dj~~2T!z*o21{7KjLHcyYew9
zf0Osf`{X~Q)I5;8%2-|Gu^Uh1p6tP!9#rpcc`A8#%WLvqH~ynMBPD-Mc|pD;U%An7
ztS(KNxOrwW3n}3nl&l_rl1=56->yC(w{iV1z5hnzkz32<L2eK7d63_OswK>MJjm-o
zkx%s-d-bBr3`^hC`+UoT0v^2QK`~EiM)kKn_++ns#%3+ZRY?j_3VZO5N{V<;l>V+t
z-Zq;HR5jk0D`=bPL%u|D4@yu<lBGy_>CzsQp?{!~L5=jMRgAJ8l=DDDmhzMe9#o`!
zL{?I*A)D3Yf$l*Y588TQcwqM6Qx6(?VDTW`gE}76^`No`RXnKWL2VDDUusnk#%#5I
zpF1s+-CE6q3=c%AlOi8`P=jtIYpT4=Q%(A@-g&7Nvs*Ll)_QVqJgDzM0}om^)8`hc
z{A!W0GN66&#Ax=hRpxY-KDLcKXzW2VkNj^~H1WV$%>0=LO=X8oE%NM^wS}>>NxF72
zwYL@?wDh2r?8<|~W~=m{J%37nb;ES&mDwNBZ#=Em_JOIL2kku=@4*BQKKG!52LnAA
z<iQtLwZU7Ajv^j(@<6=VGjlHwI*S+0kfjTyE7{G1?vx&6Pf}{67pH91+k-FV4L>u>
z(udNQ?B_v$$^g|W-AKRkq(=B0=D~2;iJX3>^dTPX-EaMx6dCHlH}nhVG+C7%rXxJ5
zF0RAuDIe)c^*J5o!Dz}D@>_B&IgXT?Hg@Yo55Du@2M=a>aIAzeNp>4Eq))5(WF}KQ
zm`agkng`RB&!Eio;Cq!6erBHS!5j}(d9Yf(#A>?qdwq0Vo9n?m59WKYKwiaXUP>+`
zWpxqdM{=<TOH{t~i1{bw%RE?4UqP-^xqO5*9<231I^N27s_W#0?4`@H#e?<AH+Zm7
z`6drG(|=Zpyh*9w>cKW9+sPfOb*BfrlrOSd_sGHV;7=d!_^{7|Up=_##Vs%PdvL&m
z0bUIBN^f`k=D|l^RPy4G2fure-HSK9IPAd@4?-S<<={-zj(Tv-gX<oY9A_N!;J7C>
zDftNxPI_>PF01D}IIaAQ2WRPjs6>9Umzwh)T=3wc2bY*%Aup?%flKtO%3I9QZ+LJf
zN80bDb(g$z4~nnWZjrZ18!4fk;*iTqB|mP}+#ZZtrFlpZFU3dt<@i&As`YdkJt8Nh
z2Qm)W6Ea5rO~yS)P?Dt7{OQ3R`d#ubmCJ#W)_We@XYvpEK(#)UUxAfBrpOz6>cPMC
z|Hw>UJX1B#J$Rw~r3bH+zm^+XPhDO}mdsvc@uuGP8>C29FF?<xk~bUZIlRc}MPV=A
z@gkQOeV?0idy&VBkE14e5AvMDtvTA~D~-Hf<nuyAmi&~ryeOcOw<!g^D5Mg3s6aL^
z;zcPhN_$b%n>yz2k|OVUQB3*!l;U2LP)SKI?w&EEtc*7`PMVCvR(_850bN!<q?9Gg
zc~PEHfviYMP3RM|=0%#k8813`Ve-ld18Cz#TQ5$YNjJQxE+5bf8F<i4TD(Z7NK%<n
zg{(?e^CCmFX6>xk@WSd%&C&cBS<{R9lv<?ZwJCMHsH>8Clux|q@lullSsF0;)Qg6y
zrjZwol{fLG##EHDrc9ctytx-Gl((d`B3pY?gZ@c<J1?H>()QV{?Y*gC7|%4;vp+Fp
zM8u9>eBs5HUi9&zlN^f1dT(!PxW&$1$k_YxdrB8Cx_VP1I(8$wlRe0uWG_+*WY|Ob
ztxAqVUvAsai~e4CWiGRq+Eu$%hE<e74&_I*L0)|2#Xc{7^<uCW(zk1j7vEBbc=0u5
zDESRJj2upmAV-p;$kC+i<ZK~*tQX_FnD4~`xnHf&#(Ocri-}%H*P+oxGQRWTb={1a
z-c&EDNnT_stWPGVkW)zsr+G1*K0_t?FNSRLy%#@lTk%<x*<Q?1$y_hyDX)IdSm?zf
zFMjl5u@`^ZtunGxTbo%rSS^vGT_j@@xzvlFyjVtGLrT+f$_jF&7pqjhT5iIV)1^R`
zwG7vJv0k-q@M0tVc%HQX)ok|SXD_xe+)D29VjE>UDP=pn*r{B)iS4HULhe!dUat&F
zY)J8bFAjKdMQ$DEwS!*#=EZ3_MOSLl*YA)Qzk5@oS4l6eb?tPK!(JR=B7W41W6F<H
zPRO-JIi+%WPUZ~vCObSUhf(=C%6Ts?P%f(ck{6fh(nC--x$4C=FXnblzb+SbNW0<1
zuBOI<=O+D*Sq}ScFKk}a^WhU8>|QwJBlz%!4^A&!UL@rU^1?00s+8Fyrz@r62WFoa
zM$zhiF9LF1^f8P+dQk3!rHuAp8K3*~5IsyrNNI{vVqWR8m#R#tTsFBQH!isVy?E+H
zc89gXebZmE|3li}q{uzWeexgj0r`-8B;Nu>Dj!@jei>vuYp(z6#eZH*u9DFqr~b?f
z31xZi#S7&xDX+-aax(i;HJM3~v;XK>eSi-oeJJHaHXpM4@SYFFe2`(X-t-}d4>^4(
z>#$CktmX2dXTXr<ZAxx351E(DN9HHr@}U4l>T5f!1?h!UQke3N4@D?N$#+%ju$$)h
zeJJij2_NSCt*^Of?(DEeE~Glk$i!axZ<tH_P{xO<K2(!;7%_d|gXTk;4<B;1EGc<8
zN_nyZS&{t6he{Nwk&oFwcbfElIDOM>@<I2Z>E9+<42szY3niVbOjaSKW|YG!d&uyi
zx-T`&rR+*R?8kIjt>J@}UQ;Ete5g&YqmsHld>7WFxV{e!d|2bdS|2|3p`j0BeE8Of
zMm{w5p|cNNd}!js&+|1|+E6}|w?S#9^5&ElKD1OxD<4`bmtOg8>Frd~p7Oa59Vi{i
zFUU@$yq3%k)76J=KJ=5fWH-w=15uyW-G|F|vn)O2E2H-!dy`+1eaOC~R1WBB>F>h;
z?qneOjSqt;vfHmHgUKO2d`%guTH7tqhS7(sWCUfT52I8v+LwBMSa#Kap*B`d8y`f*
zk>h=sK$%ERC%^My5@j+e#Z!EkN}r|@d31J$@|iw-ulxs}{PRAwe_3YxAP)fl&*#e5
z>cf0CE%4zdRkM(?i2RXU?86euQc^Y__ouduzFZ|MC@aZT<Z3ww<S;JO*7>mBhZ{cJ
z^kIV!8|7NdVZP?WCLcEYaNGx()8uDzw_NFzEk10eY$LamQnrJ#(}!IusXWGzd=FQD
zBlnW~$Y06*J{+JNB&ELV3zP7W55KGAun$L+ANAoF{eF$q&Sg2_!$}`bF+A<V1yy;*
zhqLrQ$aCa*)hd&%T%=zjFRT2D4_B4TOfm8iuFF+0#<*}oyXC`eA5MH@N%&xso4-#U
z#InA3QX4+h;_#*Ba0$p?0Uxqdw8-M}!L8gw@sd6t{3_oy)Dq-|Au=@!3?)KFeTY%w
zsx^nzNXkw1q}J4F9`cRlt`C3t&^>@20sQU5Jvp!Z_`#3+KKvusz8?+!c;LfB9}4<W
z$d5-pJoX{8A6fjV|4sVDhu1!2qCfSel7Gqne0WBY<hc(o=r74vDxW+hz4=xn$4p)1
zqfOcyeq{CI>x#zPeq4NQz@Hk@ZGI6wn_r#^vu5|>O+Rwb^O6$g^dlENH<?G}$wPWR
z<@x=1i(Wt_GN0hRsp+r&H46LjjvpWSQOS=Y{?z|aE#*gPN>M-FrAYW5rI;V@tE9Le
zCFmtpBCnVwN99E`jB(l0%J{K&m;QktA5zMa<w(iP`%yu8Maq?ShUQ0_d|p3tZ_uh_
zm`#2hT4$>2hwe{JcxRAiQdTW~q|+;tRa8FmRSnsy8n?~xqdG;Bk0~`ss~=dEMZ#Ks
zTyR+Bf6mwTqmCaUbxDzWlu!JqPidg?rqj|J`O(;qZ~PeMM-x9j^UMD$#^-*lo?tZf
zqnRK1N~Fs?EJ^uloYv-kwD9BT3#}#Dij>vXls05rvYkIQdy6!+`Bv}XM?XLM`?0^6
z-qDXQ{OIIIXL*UXhAcfPUC6F}bfa`9dyrCdtC-$Pd2h;>WFJ5JQe69VDI2=XIJ3nV
z;D@}ZECVTn{P>D8Smi_HoTLv`N#g^S;eI?lrb&<W8GelLW27IWm`FI0GMXIY$G4QR
zs&$+n<LMJrvi7<5o$^V3OjbUHGL@W0PM6c8r$t`k>R;xWenh)l>`RSVe$1AyQZ5-k
z=J+vJzGXjt_hX(P^Zi)q$0|P-$XV*gB7bVO*%hx$J-^j@_0VNxryrR}xY&;+%9r}_
zlk#Ph<>U%KWWX^gUM+|HmFZ_cw)n9|j%W5XS=Lh4k?Z}~pz@7=Y*N0NGNPp}gL-ZC
zV~^Z4#%SB*0-UeOvfYmz^qnf%<;QONFDj9N&bE)y_WH5U50PKV{p0~s!h?SNrd&Sh
zVLy)eaa^vEYuZt{YZW!m+pHavb9Ias-C(+X-z2jJoRC}G*ZN66!gVuF`BQTroF>nZ
zvU*lNJN+DaUgi067?=FG>_@o($_G;WyyC~-e%zBw#*b@$T=(M!Un@r5^utBDMN0i`
zKWxhFemLk(l`Pt0k{Y)k9zVPceSU;gtKW}+@}M6wI-C^C680ma@+jrM=~|qUAd{-~
zPs$zgF8P<7&n<P?i416V-;e+Nc;-jXGul6Lh~yw_Fv;?e^2m?JDtRL3C;eZQbZBIL
z?#BzcKL?OI0DZmoQtoE!wXF14^w(sj05UU_)+_<Mq1?RC06m*ZvIp=cJqMXn<)cd(
zc>>7G)sg|^3m|_0?{W1lvM^bIlvjB>fP%^k1z^*331xYQVG*)u0Pm`r?%h)b#kl%@
z0L3XK$ee4kNK+|#X;N0pP(C0(B+CXMQ&dP(g#aoBP%D7i0elodr2w=5(gIl0+GsID
zOK#T2zDS*uCTX3oRSl#D{nJS!05ioxrjwP)Dx_4(+`-kjp=_HGKy~`ZWDS*DDK!I-
z*OIb20n`nkMF1@Ws251hIx54CRmrM<LYLM00W=8UQ?527KO-9j&{)+p3E<yZx)e8M
z(u{1bTF3sX%lLR1Ep-`7tyKW6185UK+dyh)HCet0pdG!vN<I&ugYu3P8QZOsN;*@z
z1khC_-6(_RYdr(#CEr>Q?*-92fG-0$9l)6Y`UKE7fCT|844_{C{R0>m!1zFFj_Cp9
zumA>929c6~MHw8x5X#r&Q1Tm6YF1Cygu??Ep^}jSjG~WL$r#GF0gP3NJmG)GX`T?k
z!~nhv;9@;X%{Ka^01l4OzL&E?lgWcpF3S|k)BvVYrjs+snWWS-e&6z27X60+W(6QJ
zo18<+>Riga0OqSiI(;k(;Ku-V1+Y7S#R1&3>PrGx8o;)6b5^VVljMuFd3&_A0W1q3
zY|&*|PFX>&Bv;A#Oj$!p&BWf8bpgnR>jT(8*+_0BH<6pkpUEu&?A)$P{Wh+OY!6_E
z@|~2?H?&^@*b~6-fmC0Zy#ah)OF#6brGDR3kDGmgR9~TA1K3XyKOl#N{u_Bn<#Yc{
z^`ki)z!C1}C@IM?%JBeBP)?GkRIAK_bT)uL0*D0=58zw?(x2jn9I*h-2XKM!|6(9D
z3sqI!Dziad3gB`8B3H<(q^w>G;JWfM+p^q}t2MJOi<fenw2}4z9IDkBfJ?bM0FQE+
z*2kyZA3%T}R7r>u4j`hEC`I~NB;=A0AWsl^gZMLmI{`cj;Bf$*PNcqtiU;(&a%(!E
z|0VwwKoP$ez<uTa1n_|VP$fGv=}!VEd{&d?RRB-v|ElCa$}{pg`9cn$YW3wydmTWg
zATkG2d&o|TWTCu4W(@+AY^pW=edA5#IfBSZ&qd}|c~-lgFNn^2v?4(i4WhwbBY#k4
zdXi`Itp!Mtw<!h5LS*3}-chaR78-@0n53In{kz(|$JL4j@qQ5FgP0IR@gPbB(I|+<
zL6i)lR1nr6Y6da!v88kn9|ch<h%#LLfRy~hAj&E)M=4KM2%@6OYdfvw4w|$eDog0n
z#nXZinn;~Af-qAgw*-++|74UVt5vvFRk9kHLCUVG2k|kzhDy3Qt+j%X2`p*{VOeLo
z+qiOpIhHy>?3!W7QkPOMh)*c>$p+-7WJ6LakH4@q3F5OLh6M3-5KV(<7DU$|x&_fZ
zh&*j9^59(iAWm#DwIExPt;p778?tQ>?I=<?=NGGN^|`D*vvdfeBjpRS6DfITN|zu8
zKTo}cOm*=~8%wLOxqA>jg6J89crUWQ{1u=`@+GBD5Pd2AR33k%N$UWv4h&+D%D<uv
zmM?d1YUe|P_$G+4L5!0<G&T<XZVYxA!&oz%96^pGM+GsOGKTz?l$}%!neB%8<33ft
z>|J$?(>gJT?}FG6#Ks^d1u;2@xk1d6v+J~ZN)WSym_wgRP9vuWF@rLbl*;de_<=r4
zB{F|>^K!<vK2^2HmR(4jAH;$nmIqUFpve3t3ximDE`9JMO?*)hKL%6NpvbbAvV>ep
z{uIPA)tcj)CY!I|PF4o7iXzEs${N`xWgWR*weERf-W0^<Abt<xa1cKSp}(;F62zV$
z-riu@5`?q0Wor=IDBH;$<W5prcTsi+A&)i6>fWF{v2U($O~+wlAN^NS!u^y3<U#T`
z@=y>{%BD-fks!AB$|C33QMpb(HUbMOiyxD7X_M(Vd4fC{#3{<@|Am`OXDDZbGI^6O
z#pi>#5JZPR(eY22%MzF5%Z;IR43~qr62y@(j)rkHh-*P?3Sn~y*MqnbMAZ<gg>W;7
zTR{{E;q4G^%ZCc$-yr@A!XAVph)57o`Mg2tCyubZ?T|^j9v2*^xr103(><h!m*NY;
zuaZCzL3&6f(uL>egeC*X$K)3J%Jejt>i7^3A`wKAiG=s%uYmG9LENSPrINpcxTjpY
zF#n_c0p(#3k5uxQ@+1i9h#|YZu+{YZnDto@&x6Qaz{nrMiy&SGku8MmA&k3deHDas
zSorXUF8(@*Obo>{hmb}28<eaeKqa!<H$$nRP~~%N{lk=lE~`01$VJbsk~|^grRP&g
zw>rjKA(#pn^7g9SFcl1;PzYs1C>KKE5Z(!)bO>caC=x=^5SmZXHjGOh@W)3??}pHD
zlrGDAlw#!jArx162}((_R0!W>O_SmeLaFXKvt}C~hEk*SS2}0<X``uHK6CjHDuhyl
z^H&O?VkmXEJ_@Dg|CNs>eNv<=N4b8w7D8GGA5_w%(~6AzZwjTx|JOq>C}vU;O9<)o
z$||W6N{#j}O&K9n51~s4T|@Xdgc>1y5<>kDta30vx6}@yP6#zas3o6wu{PkSd70C?
zuBD|%TT9&##=Fh+WD~FXa(j!6d*E@KE$u7~LTD61;}AZTj~T+?c9xzSt$UqTyVKev
zBu^TnvmDQMmZl*z3qiJebkb<fUCG|sh0ucDl5C~&)*-Z^w^hlb?V8lL58-nr9aP?t
z@<j-pRPs>=%h0MBGNePd5W0sjR?ZMP&LQ-a_ZGsC5PF5sJA^Mo`2Lh8v$(cit;uYy
zYj>Gsn3p~w^bO&odU`*yKRJMua9{|7=wGSiq0{<7Z~f~KhRT;4O3h9p<Gtj4Vcz&q
zlM!Hsg;Hb13=d%hWh6O@lzemuW9Z+iM8<U)AHswXmW8l9goz=17fL;zy&!~tds-&R
zxp6f8`w%8`bqXo@)DWgApH7((!c3JE=w(@YME@ZK;j9p5Q^e<lFjx7!5auf%*i>K0
z7hOdDNG>Lqkn(<(Qhp+*U3^34WM3iovBUaGIk5{FGC#ZcDkiJRH6g5}tRtm$eFz)q
z8&x86!T%h>mJk|*@o5-aL)aF=oe=JZuswtwA)F22j}Uf-uq%W;A?yvoG0WH;!Y^|4
zT-Nco%&tD^!VPY1UkC;A){w~>j)d?lT~_zYyH$QLgx{1O3gLJ9VU^TetI2qAM?;XQ
zB94V{oN|IZNuDB4lTver65VDx7sB}vu7q$kgbN{D4B=7;m-+T&*r*-tjgiZ&vuv8U
zcbBpKmHC>y;%vhif=dp99FP|J4N~ML<(B*vP>GFVmrtz{8UM{4Ldb4}<u>KkWL67L
z2;LAxWbsk_WFUkfC8SzAJ<%fEN;Zs!5TnP*1esK=e}+)WWtFnO<l>ckLKsEExEI2G
z`6CrZ!7%;_;elMmZtab5iVs70&ecccV^Z=bAv{(7ZwUX<pQ%KSiPXH{>Pzw!`I^kc
zJ!cLh3q>kR+%gHXhNY(ovW1bIc^>jjRg)u(oXT^Bkz2VuRVdr$4I`gQ@`v#jy?{zS
zby;O7vqE7M4&$9L<hjHq>nt+xTAJC~dbrlzWqmh{_rlP_Fv2Jn#`|HUg<%S(<{2p-
zhP*`CFiLP$l9FMRqL(JikROmAl2Rilvpi{8E{yVFh*Tg&Du(e9y^=~a%BZKQGfKGW
zws}xV!yJYsj2dBB!;sle<PD^U@!dUh>8u%*!>AI5h%8kp)xyY7N%b&3R{myRqh=T~
zZeh!)G2pgYq*fTUnbaXAsY|IxeiBA~mCJ?DFpNgB8pilA8i&y&i~(T`4CBpJ+Gk<3
z3!{A)O(pbd&BDlZ$l5%NI(xMiWJ|IYDPij{+9+=u#@Mec5`G>=hcJ4`Kc5C#vSdmV
z%F;26FPMmT3ZpZ<3)xlW-6-AV$P7(w(o^NV<lrm+GK@aT`-ahv-d`opeH8|U@l_b3
z!x$6B;Be~sa~Y#-lzd*7bx1h%y!Y4SQ1TmcSQx`8BS@(kNokc!Z`j|G^DE1TgDl_5
z*R)a_8-}-^rQHxqgKm1CP1XrvOblaN7~7>aj7edv4r5Iilf#%2#*bkvmcu(*m+^C^
zhA}OS>2kw7rO7fUj2ZNq<oDzc<ScSFDU}y1=yU1wR5G8kfLur}lCN)xF2zg2xVTko
zcUqg7BTZx}SAQaxg|VEnf?P?iBBfHEwOcEv^c-zn7#+tMGM>+{amIQ%<;EEsm`J#h
zvMG$sl%G|;Mc#w**DH)2VeAa!w=fQcu`8T<CiCz5`oS=E(`EISF!m_lOW8;MO70Ki
zfNGt7R)3s7O-5n*Jq$-bLk2`T97ga^>dC+xM|2rq=vWxX!!So-iQ+^UC&TzWf({X!
z3gdJb6(jg4f-_;94dYoD&%^j5jB{Z`<ieDDMHm<4h2*f@w93HL7v)eywVPpFqKID(
z;|l$%O0I=*oqj_lBb=I4-U{QkN^BH6=^&k9xF}0qsTYzb$2@Wtg;S4^`A9!0s{u-o
z43S|uZ#l$tER1*<_vJPoM)4dO-@I?g$n%LXlJegvyR|>bJEW}MmD8U7H+fIxXK$y*
zPWQg5_8^SA*)wE$7{(*zk10>cr(yg{`A@aVh~h88m}xV=mU}`(dhp>@82en-I)_tJ
z1Dso~WsV?A1aC)Ba+^t>VS6KzdJrxbnUzEY*(j1{r@R@FXKYesvgC}UMqC%k%_I+*
zm&`}zC*L9qkWzd(dq%+s3Pm8p#TO>ukKi4OBt;@9s{CEbdl3{<NhX`QcmyT5S~7wU
zRbGlxI)XBk4^-~jl^T@3Yy{<)lqV~w*1_krN)c!g)QjMg2+|@ljHlTYfgVYXFmFF^
zl^F*NenxWy@-U%{NN<TCok?Y~Mg&zTRmo~(23ehy<MVMOHR!sCl}SyqmTIjXK^=Ns
zmE0<Ctsg;y2wF$bCW22RXc$4u2wFv?OQUs7Rilx-ncHSr8dI7?@EN74%9~M|lPw~+
za3@tPgO+y)X+PDp$_VytBWM@Ft>PK&BdHPEE1j|~K5UYcR?6hT$c_<w5y7?ywnxw@
zg3b{Pir}jVx<t@5f&mfSaap@X&^>~`wi^8-7+qYKu|ax7u;ZTIlk7$ICMEom(ueFD
zK|hr@*sb5*sBM_450r!Op)QYu%9EmlBN!6F{0J6A@O1=3BltFgu@T7h+46YmHxabR
zZyrX943A)h@{yEL@_tk@hN4Z=$3>8c>oX&%!CS`DCy)|OjNrQnCPgrr$ux2bIaSs4
zJ*!PuK7$h6s_#Fhe;>gQ5s1h#i!z&>6Tw`{Jk=^6?NV{Qa4}<H1W#XRiz4`uvN(d3
z5v-ywA(uw*6Gh6FQI<!rLM6k$*CbyprwWrbDqkDHI_2vl*g$WV(=5fZY~t$X2!2*I
zTO!!1T(_BaL}bEo{2Rf45$uX!cLbgYyb=5o!JY_iL~t{Ly>g8lu>KywVamP;ex>Xu
zrRhKf2kF0&hg6<9Xg)$eEjM<`QSumhJc1LHljJE<_9o*S2+wl$68VRGeX8}moYl%N
zMv(t$s#uoG5nNIERmwHFYE&X~L(A|BdB0AVVGwRba9h4U8OP(P*+#KP;82M(0vFw_
z5_vx|Hi9pLd-68!nf$2>CnZ5SA1EPGk}xF_L6j0B<El01>~yI~a`jL04tZCuCROt{
zWoW0==n(hm|3vVB@{oK)O6z0F6ZtAtvi7n0Sp?4`sX-OWNAW^#`w`@gB40F>ypsDl
z<uwZ=$;8#nWES#`D6&#OO3gn{%);zZys45Ll$>O)C~{Nss8%`1`J;G?t0l<-WYH+z
zRy75qD5ShF<((*sP-GAWc{y3$<?4H6u_)fBNM1aO63X`tNtdJ)S4)#+qWD0yen=@B
zMLCt+UZzQXg(xbj<ReNYQi~#uVj^|YAZ4p!pBU*;RF2|t6i=e45=GT0=0!0-ifU10
zMA0XTzEM<<N{0xvilTKC?y*`8vVIg+N=>pBDXq0Bb;!D8J@S(%?$1b<0$Ca``IKx(
zHj1Kg6iw)#k<FuMN|E|zQJ9aIMOrXvsq%euv^Mn4QFMu-Exny;Z6C$w^bTZ4@(b14
zi6WzZb(IZgr0;*n^3tt~bmMAwvPTp>DU$b!qBs3ZmB_aJqFCHf|0arIQS_$|ASE0~
z8AN_X4km|0@ik>ADV0s!#&G)hC?-TPf<98Uj-rf?VhrV5a;$0{M_E$UEc=;ApAp4(
zlu6`datb+>l*(yQOjj=Rz0Rb6PyV3tSy9YZJ|~K~%Cotx3!+#U#f>O#MzJW0AEUSu
z#Z@VYVo4MSqBt1E(kQOw(bq(=Hk#^K{ZkanD9gze<VtcCxtf&9Goy`lQLK+*O96d1
zxgm<J6iGHxHj$g7`1yaiYAyJOE;ZY@x;=^=l%3=*RkQE4{tJB%xtH9hT7QjVzjAqw
zF3UaRw<yla4Pk>OtB2&1wljW@;&2p4=trYCNs;_m6vvgHkTdqVF5xLAr^z#_Rc48m
z9sUu;Iqvy9d4ar0O6#R4E-Rm(U%wVb;<a&I4#mAp^3<Qq?z-%%{-N7?D~j7u1fmE=
zv3+{FEegAQaEBq!^(7jb9nn+|dS?{!Jfw?slO9q+ZxlYdUnNC*>LIy5L~%Eodi+wJ
z-;-&1<w3+q6jAxQXQVt9MVy`>ljNVO^-dK2OS+W(6-8~gweKY3?<nrcon(?B%YDi}
z<bx<4QXZ*RnLGGt6#vQ{FNP0e_%DiQQ51;b?HHcR%|D9#vDEOMFQa%B#p)4y_89aj
z+VcXI8nyJ-QOGZ?nPSKsOGy^;4N_LK#sGRYmB_Ey@@w^*G05PJImnzb<f2HDJBB>;
zyei2@*=Ez<iecs`{qr`d@e&KhP$-5XF%*^E#_+#!KHrI<N$=Fi_7@jxiQja21mfLT
z>OqJyF}z0+FGhKvEKZh)p(LdgDK(`j?^R4apCF@jmW`oY3~4c#Vkj@ip{BWF3?Ic%
zfn`^7%flW<`=xrN7_=Cs+l}_?^bS_N;$2N18_;7gVyGWOgBZ*)SYoIVgS0Mrsx8T8
zmSH^8V-Qx3p$ercDM_^$GU(M+@-by^9kZ2tke$?|)FNxgP)Fr;W2mS66UvjT`lm58
zj3HV>Zz-)>^+xhmXX~MV^i3m;#&X<Z5c!N0X-a7pLvxk1;I`7#sH}NWKU13++Q!f{
zfo2J`i=llCE#qhv$LI2LF(hO7Glq^ad=bO<^7X~gDTdB5d>KQZ7`nvJHHIEB^o-%F
zW_q_6y2}fdGrGF1RUd2DYa18No8-sMUNPKgW9c1B{Z>0n*Bg9n?1`BB#?UW@@i9z@
zp??emVi+64xR}hvW*Qj7uowdO%<^;aAlY*aB7?~xq^y1&!%+G+DtY6kF`Qe;h9f8=
zV;H59(J_pnfBXLvw{?lz`u$7G`WKd0*RAsN=tMa!<zTvu?_x6Ufpt<0_C^`9Or}hU
zVX8`|NtyB)a&e8)q)hhk&J)Y57-q+?U-l5goEYZDuq=k<a^hu4n-|0U7@9RUa<8*K
z4w*$3#N@ZFRI-Q^`7wsY^d;m{mH#Bi_CJdhtcYP{48QVy&KhmVBL}NuSRKQf7}mzH
zVUA^I4C^RAlaj0#QNB@51Nvr_bkudJ*}~PWF>Ir3CwHit(GSd0vx}>{$zNjFL)lC2
zBc-NkUPE@+WuJC1hTmfF#NdtLkX+#FOc!Ig6vOXw-NkT($!YQ^DFw$U$747_IZ2*U
zt#U?5&6ya^GWml%N1i7ykW$mCjDA@T^$(T`6>GHGsa=WTY7EzyNNA&6CvT89W4J}R
zO-fD2nAuKusKgnAi|$s*NvqWtgI`W3IbC&qb3t?6s9Ao6fBCy5$RtFD$p{%Gr8p)h
zEj^)<8oGW*?tU@kkK?U4{)*x67+%MaDV`b@?_Lc5#PC3_xPW#)mKw!ce#d+m!z21j
zDgMJWX`Cj%cs`EdNi6l#rz}q?|H@whl{}Nb0`wOuk)JzX#ZYReNe0lC-&ixpktL2i
zapaBTjd<$U>a6k9@2B#cY1yk9=(3uPl0A+$Rgxo)ob+5|Zk1>H)s#;@QFUE@QSEcU
zaJa2MwKNLE@pc>^#!)tof^igzqhuVVWZ7vdEU&x7C_#URED}diinP8<c`uG)l=sQv
zsx|r2BrhQY50;LjOdKEZJ=7dxG@fhp8>iL0ZnP?3$bl*sNBKC?<ER`*g*Yn4VH%}d
z;uu%jkl&_d=)#ZU5LSvqqok3NnBvft8*!MG%j?Pzj>Z9Fe{Q2n9JS)89Y<Ap1C{hu
z8G5xigc)RY@?)|_99D|7){H~mwn&{gE><yrveVQkj=FSNt@pn$j`}KTK>0L|hAOF3
z$7mdfY$!{UI6hO}G>&HU=41<%hx!|><7gAd(KwF9(Ke2Dam<KgW*qJ1<{!sbaSV>5
zLmVCBsjf_2;`kztPH}XWv%;^*Bn~p+f^?_a)Wwp^VV=UiPF-2qjqDyrk2re9(Tl6H
zhklga<d<Y0vag(PS5m!}`g2ueKpX>=52BbHX6a})B#s~EYeVDsI*udpObf4S54u^t
zVK^*~;gk{NcX5oQj3P(JF^2MO9OEft$#JCYGvhzAZ~|8+#vzkC$m%53IysIh%BRLL
zP5JbAYPJQb{9ckcHpa0jj#+Wcj$=U_3A;Wgj=6Eni(`HqH7n@7TUfSaSbmtN*LtEA
z8)}ttQJS6A7sjzDjvrYso2;ZPj$?^Rmd5cDeVIy@$FV~BcWn*XY86*klWWMe<hnT4
zQ#O!NIdrqOIgX#>I2^~G7p5(7Y>nfo+qyT7ZE@V&tLM3E9+%G|vOSI+OvHCmc9FZ|
z_=U1ZwaO;@;;G?W#x~S{jYGIUjsui~q$Iyl4#n}iN@T#9Hsg&Way&~K`90R-ah#C*
zNdh?%I2p&OIJ|NA;y4}0nK-V;aU+fquT5v;xEjYb`MM8kf5dT4PP1}mS<c6Cfqs#^
zr1HygTv6Uso+|fPC%n*QPU<`I@JZIxbM-glxD`jfx6*FM@p?n5FNTe)lGx*LD0fm^
zakwcSmCHQl{x|}0JdEQ}9Kkq3aXgSy=)S4vNz-=e`nSUf#}SDm8b?e{<{ideQY21E
z#F13VpOiasT>i|E0$KiI^0ypn%6(P&4<&DDqgQEj`3c(NIG)5)&!}fl;AtH4boXmH
z8*A&*ujF6327BoLk<a3IPLbqA950o>qP#k&-(H|+N<f&I%#x69{;AchqzDqoro8YB
zZSR+cObVYffm{hxOyHvgawm`{k$RZCd;;>u@+R<30!8Tg639<^i!4CCO%^1jzEA>%
zm8W(xK`YADQslb{yr)`=QQjwulO@QK3HXNTvY{-c6DY$_{DTBOq?c7mIZCsfSt=w_
zbHrDvZkBJqQUY26)e^`^AT7a8967R7O~90ZJkK94kftXfG)Qv-7K$Y4l*$QIQHea#
zFK6r@ajkkHHRE}`1U^aNW4f%?NWe<3N!B83lXb|tq*Tg&>dOlq)a1E+=`7QL{wdjz
zY(zFDrL0K;pD8b%Pj8+;iv&s}Q8I~^3A9RJM*=$&Xq`Zt1jZ#WK7qFKkN*S)CGb@O
z?Gy5R8U`dVFo6yU$SCMNWN&?~GKhLdxjge*z92g#(3v7hmjt@fyOG^hzHpV+liSMX
zy(qmC_);Z(D1FI(3G}D9%w{RBUCXljGRo9T$zVC7=4hi67?Z$|1nlWXo;UQb<vj1G
z4^7}3iukYuhSNuoBgs*!b>uOlVF}B(iPTd)W97pxHuZw>msS5vZU_lXOkhC*3lsP*
zfk_EWO<-Cg)n$9KyjzcTN&+it8B^a%liu9&bN@7tb$S9b5|}CH_BB)G>*jM?wBP^H
zGT$_RpTOK}rXLbA6h=y9nVrBK<#Q?X5|~f%9J5Nnq6B_SU~K~H5?GwTk_6Ty(DH(H
z)+=pkA~pTxO(W$$$v$6c%Mw^lSwXHOSCOkpsX1t*CIFRA@!e}#*C((+c5b%HoRwQV
z){S&o-ITy)<v%B|MfuhQw$Zn%<f6yAD}mh!L=%W5@Jj-F61beel?3)CurGmw3H+8o
z)0!E-Ca^z&0}05WtUbe8xsxUt5Y<s5W9U)sPy)Zp5nf~*PC%OOd#p0R?4#w@BMBT$
z;8+4OOzT;>w5wW0jwf(}$w~4QDf#IH&M438wf@0++2mXT=jj(za#1d4<xBb)R};9F
z0K!@%f$Is}kjpcH(p$Bg2{ekB+;Y8pts=MNw#G!<CZ`$QK{`p7YLzisWnf!R0$%yx
zk5Yr&`Y3)fAU6$4NVPWgS_i+<_CGYQ?UOFs#uG>+@G^l{2_)sf)~UYUYkeqZrd)Jh
z>m9l7Y}UI8tbSpZ<*x+(R(_9ipZq6*2P&WDwLVJ7Kp)n}q{tIF?dkuL|B=sB>+=L&
zD3@1!oj|4}awU;FiOfm-R?#fOUS&z5!cFaj*DC%-62h!WfRc@rBs=BJByv!4s$BMv
zCy5q5bKWHKCE@p4|2HgE{v<v-r{%L)-%6rD5^pEb=ccJBDN-<rLiEDqJ7f{ns!!M7
zrN2iOBi|>Bld^~Zyw*}llup8)gd>SENqmsR+$82D@nI5WllW39lPH%&`DE%5i`McP
zlc<=)M@dvl!aZFpoz*y7EnOa*(2|g+AZjFGO(HD`6Ib;ls!$BlOiGz0iFA5pmDD`0
zOI|gJYD_Z7>g30&MkaWwnM5r)CQNFR4ahoVU9ui2d;27b`pO$LGCoz_Fo{O=#$*$f
z%iKw_RnsJzF=<Y=AX}2HNU4#BG1?^2Hi>pgv`?nynF^iKp8t^kc@n~|WCyZi5?@d{
zk)6pdq*TgCT*7WibXQ3aN>8#E**l4QEZcHK>zhRXBnBkWFPRz&Oorr=k(UN0F(`>?
z$<)|QUy&n{7)cqN#1M)!eVxQm<=-SRj6Pf?%XgYa(I=3j$uZ=&r0ijA662JQr`U@b
zl24?6m&7E>WK}aIiK%oM1Wd|gna<T2Nz7C=-&1}_VisjKIY+fFUt-KpVnGtyBuQdn
z5^|h>Ok!~oizHlV)YQzow`xn0SenF^B)0OL{3(gGNn|^!FXQTRas?@8?8+oo(O0Wv
z4W-v~Z5{W&p4>pn%Wb4=A~z@hA5UiiCB@Ob{Y4%ixVt-3GrKdh%c6s8aCdii_Ye|-
zh2S3CJ-B-a1QH04;4V8p(>~aD`@aAF&gt`<U)`$it}g5D>gp=&wCsl)IcbOv4RfL?
z%UYCl?n}Y`6r4)I=@cAD!K4b#6Vx(LUCy6)Fa?KF%<)BsSqXki!4c-8tj8?-aSl%b
z=)7ue7Zv#9+Z|_8a5e?EQgE9taH@-@eLF`L|C#4}3NEDJA~QLEXSkGt%a-Lz3a&C=
zvn*5#t~39^dV}?*<@;v}vNm_oq5h)k*~dv~MU#^KodSx(9ae(74F9Cy9>aas2bOQv
z366&;c$9+NUgYuOaSEQK;8O}dQ`vj&ewu=C3L+_ZMwgj_7i|2%`jYh(D}{W`@FoRs
zEz7$Uyl1ZV)=2?qOJS!s1wID96*9mOq*`NHXf{_`Ff^J1Da9P@N0Xf{zvv*4Q=qU#
zWhIN20^MSRA;$WV+WAZ7E?=kxpln_5$mvC#7ggfozwv_RDNV(knl%k8d8PFN%;_vk
zdWH;MEFG3e0Z21?X@(q6Cf3ZXSy;2OX7eIDLk?C7dFGZQmlthIyS@%L#|q~4BA*wP
zyr}F&elH4mQQC_#UfdXxSkQ|?UUT3d4cMdgRS61vQG_kTMZGA-T->sh@S>!}r5Nb=
zv}0K>%6U=Vi#~(RIOp%^qM?8lyvViPV`CLw*clwGZZF~)5?GzAE>_y*@bJV$<|NjN
zmOa^P4x6L^RlMlG-ciqs`d(D^qM8@gz2+>wJ%%UNEAJ%mu(O62H5qEL)@CK&It+Ea
zW`2>gffo(EXz9hBPt_Z-*OW5}w0>)2=5MXNnlLnFZN}Q%ix&Ui_nC)wZ{<a6K294}
zvb1Gr$J*YD4h$VF-~9s<yLi#niv}Sy456DB-Mu*I$00v@c+t~~3qD-*p_doEDW`lW
z>_Z<f`g(E7i_>28qjd0MtrvsGB@XanpcfOpnB>JEvUtteX(o6vgq#oEW4svi+BKAl
z!PvxMtOUco7-8{9hEZOOwk-XgdB%G2X>8&+R)X;ieQJ4j{O+O&SZF?($zF5Po7t>W
zyqL-`jg{=v8D@Af)3VI+;ya7CjY<68i#h*uda=-pMPB@9`Ofv?CyVEKG2h|^96dVt
z&um%Fx|sDBE6ftAJIu>0i*(V9?FuhevSk(PYSuMY7)q{nUaa?GgBQP2E_iXsi;Yx0
zcRFa>$*_ravlm+|`&KWuS-jng9TxvEK9Tm?#m?QVdsz2+vCj&#pW%QP6g>*;nvl5R
zq5Bcd0_4SSoYY6Glt0RF%!}g;Cs<EfzLXtjyg2Jc#EYmG=e#)Y#Xnx$qw?d$MXK_J
z-8a0T0bsP^5)F>J<i%w#2(GYRWhLh|hTmDQd+~>5w|{or<b%+0{`BIO#kZ+GTKqS|
z9oD;EG^^mD!1uj);Kh3{K6vpjrDqx^ZO<A0V|~c_i0%TG?-MVcGC#8{wBi-*^@5!*
zSzocfW_{zuTLudA&Wm0L%~PasG-&okT3(8x;q}7D7C$Rl0$v0y4l#tO=KhsHUXm9y
zo8lKQzIq{hp?J;FcQnLH^`dExc#V}nXE3~oS(cBK9n7CC%hy8g1Jj*xKIHHrrw^%o
zNbLhz(y(S^P3r>~$ezxJ^cH9E;Twx{WRB0ooY}HuVaUpwjWxTErrYw+L1<mATs|D6
zDfk{FjH%<v?L!_P2x!a8kdHOL4+R(sTE4?SIE(mD)Q15+4D_Lx55;|`=0kNKO88LH
zhq6AD^P!XvrF}GUjjN0gjXETaUGEw+$h9TGxq{YV9ONqR!=TB|Dn3;8p@I)KAB4~R
zfrvJ@4|a<kKEyL8usT^?mhY+!o<!y(%Tkdc*@sFDl`Z?@9EmM+Ry~)){HRUKQhR);
z;X`L1y7*Ajhgv=)f9vk#!(U&WwS8#p!?(<JSnK*wkAZya`_O>7A!{ScPIJpQvA8uu
zQ`Tmz&3$OW(2}(kD;@2n?rLLkTOZmnw`c9Z+R^gelq2yy;s@qT?CLXT_3!6He}-<X
z-F@i6(37<nYj4&*th7sCAC8}O5|pG_q_R6{ga!?t7(^N5!!jS1`>>mqiSc2g50iWt
z>ccP}W>5AECw<|fuio?(euNJrDX097QLLj`$M`VThjGjkSSi4G1{wh1cxQ&6?86iv
zzV~5{58XX(T9I=q72sU1X{^&(XRwlSrVq22zq2f}8M+m8(?ka}O~DU7^Fu#vKl(7&
zho9IvkM(EP`K$|kSja#j7cq32<66w{i)CNp!%~ZDKXR||VWkgSeAw#4Dj!z+u-S*{
z#jDW5plf{i@=ZJqNFZM8!#W=b*0U09@ZneHjjWq2d*$_>{kn7gGf%m#j%_~drwZu9
zcB&m)9klIW*vYz!b+-?D81}MKn0*YClEeoos_Z;u`5yM+H;a$>aFqEN>v7Be;D(d-
zJ;}~ftfyJe_;8lt9P4>j3c2<V=OrI5Q+@Qq?#C4$uKFO+75Q+@hu?j8;loQGuKVzZ
z5BGey@1ya|81T_?(}%x%CsuBi_-C)gKbgsS%ZJ+*|3zT&9frF;{KGKsegXxi?E#g;
znpK{&@n0YQv%)`Qc*Odc^$F`!)@M{r0&d#<#(Z-Us#iX|_95s)$OoEw>x~a@seu~m
zq&c<5UUCw=W9NI;53DJyULSl6epU(@U}!nZ8TKLKLzJGfMkO71={`+)D!IdFoS$|i
z(BFKD52_Ct{mA6UrQt5khjf0V_k*St)qVId%w_lxqqKVFq3xp&pM3aCC5kPn{r_kG
z%FZ}HQdt(-k;13(BQ0BC*=c^!xt%;2{P>1X@p`1|bFgxxlV{0VXJ$XL_>td_0)Axm
zBby)1?z>iPbWA>)aO7M<c0ZyS-8uXS2q$eh8FI1aX3gVAUWR<E6vi>IBCXw7(2oj!
zs>>+kH&+5J%v!{cq721YOS2aDqXYv5E9plmi`Q21kfn?tW!X}WwY=r)+u*6^a((}!
zYfHqn;J(x0N4y`c{b=Jyf*(#lzV)MtA1*)Ke$?=zrXMstLZTnl{qXpaMAtjnRnc$$
z8c$oYAC;IZvsSU}RT--Jacii#Hqhlw3ACmUP0m1rWJbJp*YcybA2g7F{>P_bFm?Q(
zdm}C4Q`c`U<x`Kfz8?)3$kNb{M$C;Z%e{xrrhan-PBTB6`$2<4dPdw+-nv`((bA7r
ze%y?@x9ss`Qxa*O3L33J%RII9qn#gf{rJg`_LQ4`Oz~r?A07SZ<i{vKM*Gp3kJ-Cz
z;vhe|_|cV}-B|muc4zJ3M^A=cti4$&GIwgY`ZD)p?Qhu!_%YDpNfGy8Kk_X|9KuR4
zlwla_a6d*^_K^%Ul?TPA?@b3ypfSdev2>h8iL{OLV?6T&)`^yVk{^>TmY#X0`OWp4
zru#92irM<abw=Wz_X!tYyFV(4Gb!1X#96H0vCj76dxklz<og4|k5s&$d&pVNNSx=#
zaz9r1G2f2`ek}B3Q`w~YZ4(WzYY{U!e`Z+B`U~q4KbA5qW2G>Q8@g%y%t}92`LUX+
z(&wbfM;!L&9x5$s{8;P9IzLW?-CI}*)-!CN0>H4*vTyQZv&B@#w)(M+o!kA`W7&83
zv6Fe1W!X(dJ*$fjyO%BdSogCYu)>r(;yCQbZ+_eh;C=u{{5a}I+W^`HaLkY6eq;<F
zQvfIYIO)fAKmPEWe?Og~mfVl4%%@q;u%7kf9K(553VDIyBDG@-mo0mTyPj8S!ZklF
zkmvZ_k7^$i=qH*}H(ZUMdu~v{_T!x&@BP@m-t#9lQ+{kY=egylIh-B0{TNo;^A{_@
z-wb#BxNBMdp=+_2{*8J-Wy6pEsInjN6e#U_&hXHWM+}cy$?J(9Pnn-t7WyxY!oQ%V
zptS3yAFmi*v%X;^`&$P3`RfB!&!8j44==To>m5IRcKiJBGp7!imVh6!9|~K7tRdDg
zYlIq728orzcl^VgXIo|GCsvJB_rqX_u~L|i4BroSeP;N=`qlD{3m_FofI{|r?jcPR
zKw8TJhI9d>XUJgLzhR&si!uk0B>-oDzOEr_0NDb_6+rF)vImeOfED`^at3hpA4gMf
zbvk&pR}Px}`{f=_o`Ct|SkVBA1wcQe<qaTT!2BmJKWhQjf~<vD$*V9!kpSlV+~gep
z)p7rZt9Sq<0x0szQ8IuE45e60vzB2k%UX`LJS&B#pSf%niva8vI|7JjPOvOgqTB%_
z22eAAS^*?cv0vx#1W+S@ip<HZl~~EEGD8*CssU7EsBZaE8MxNR_42d(>`~9`=blXM
zowWm~6F}Vnwl;DN^SSF;Dcm%G`pgY1OGAc60W`KO-v-cxdBVp8$~fAZ1<;%=Em&K!
zwqk9~+J==vZhG!%A3%oyHU#i%038G96u^`KrUuYCfGz<{2w-9WT?6PA!0>?iBSUwp
z^>dT@2QXeZdoY{h{{!g7+?%xzYhTuWtQ02u1IGY5!Zass0|OXj@!$Z4Fb}mX!zlfC
zI4IZ%vhcqTBLf)4Jle91VHnFgjv`~(=M;5M3V_xhryVC#ejQDq<;Zgsb<<xD(*l?t
zz?uNo1~4OlnF0Jlt=SsKEGqmj-L(A_z;_nUX81mUISfBo_8$Y7%iQ&4(*O3F$Ikhz
z3s@JjE(+jhhQ+KDxZ##~T10h8086O}9htO@bvf$_Rx+*(V3ozI8EDzlD=*yZ0$3j~
ze>Ear_`+R1e-&DybYlRU0ys;RB7n^SbI2AA)A}udEmV-q$_1P5&iN{VCWzk7yd!{}
z47&o@&#;?y4=V-U%dn3Q_}oKI+77VgU;u|04qG8#cT1#m9SN8N!;VtHW;o7zf|cwi
z12|>z=>X1HytPN-`2c7vS=_(w8v$Gh;9>xmD7kJV?4{4g&piZ}1GvJLtE|^pe`h7%
z>jC^>@e!}%W&nk|C;mwVse9rrDz`ThXuBPt=kx#LzZveZ-VNX%%l>AG<3Rxb1~4gz
z$wB-Vz{3E_1yMeTM^vH$_!z*a0G<T!Gyo%j?gtZS_Lye@ybs_*0M7&FWHK*UU$VYp
zCFAP=-dOyW;a$L-P>8(RUvi{Sb)zYL0wDGV;A0^6GXw$%GK5&emM;zOq`jiNuM~jH
zps=c}8mrDqA)8%KXpucWMs;nPgC_0y9Ke?Vat4trh_3;}1#xPs<C~y47Z9ynoGNHW
zCUp=raxx8TT2^u*h;$aG4<dubG}bXAA0!iNX4WjMSy}1$*@DQ<oWruvnhv>x$P+}_
zAZ8CtMT?T>4Vp`n7Y!mGLw;7W6ksUGS}2IZmc2+2^$#XcfMS-VI7126lB}gzO9xSg
zfdbQvOf(x34Wq3Pge{1+L9`1(1Yr-t8H6hcM-cHrBm~j4peuEHH-*fU)w%SYIf|7M
zGg#Z{4x&yFb%RI@;@s7Qq#!B=k<3ia>I{`wE3;N%t;$+0i18mB6wJd;f*L{8WUj?p
z+p^Qy>v0NGn5J~4L31Q6Z4H8G$lS=XG^St{H({Vt(5T&JK{OA7fVLJvw6wTY5Unk4
z6GXWKX5jWgbO@qP5PgH_7&HePcM76&5Hwiy<_B|hajmK5FxoCbbPa-_8!JI~h90av
zS$hT1+wzS*_w);*e-I;r7|GX8E2<CRYaGZrh;^`a)k7GD1~H6bxMja_-B~|ouGKz@
z%58Ob_4kg^L6D9KVk`skI66M_1lEa`oi1=n5L1JA62#LWrUfxQh!a7a3}QwQGlN(b
z#PT3!1@T=FT^2Z&Qh^MDh78ST{hpPaa~OVL{gHJp>rbrns5}hxP%zpS1hJ5fi&%eV
zUCjCm>k?K9DT=!8EO5+qdRm`!t_Wg#5IcfcNf~s~xr*|LVNDPl8OXRch;<gP4`PGG
zzcLi>=h<XgHV3hVd8=jFM#Wol(m`n38N@-h@3MS%2eF5FFY7+m{j3LAX|F7~s~loJ
z%=#Pa5!R!u$5@ZEn&A&RPX%#0h`)mPo2pEr>r4=5DNiZ=b5+Uy!t=;*pAVw(VAt<K
zTnK{3hg@VOxD>=?i?0N6mHC=wp;galsL6H8M4S5$)*GxhS^o^;7Q<~;3N!wxyX+&!
zognT8@lOzQE+&W<=FpS^KPAqNI_^=9M;-Trc)&pXFT;O9JhUv2f_Q8(Eot{Gi046k
zp(Zql7eTzFMj&JSC#o+&ybeMNnrn%^$?i<`W73--&1>O!8^k+?_pAZd53DJy-XMGo
zepcFr{>Tej910?AaU_VS#WW{Bok-@>DXc217KF}Vu*O&^<VPyuY0O>X%ep^Pt2M*?
z*DNlCR3YREA#Vt&Lr4=s<`Af#Hf;!Pqe<CLB+##g2!R%pr7c|u=`GH{@C|Fm5HeYI
z>RvvzIU!33SwrUJ`LtzY$j+LBH79E>*4!b`#Zs_*A><F4Dd`EJKnMky6GAA&K=$$>
z6b_+C2u0aa%CZ+@C>}xyhLV=OMIR^aRhpe;LMUt5%Z0En-c4S#RS3bxcEM_Abyy+e
z8R(xuCxa^lcL<4=Z)Jw0|2acQW~gNOZg}mW<5yv4)ex#NRJVNFdOS5Ot{Flti)%B~
zVXYfNJ%;+0FZG-^3ZZcb7bCb7!M7na31LDQ6T@g4LbDL=hwvbT<{`8QVNnP_htM*F
zRv`=vVR#6wL!h~Z+lJ6CgpXGpZ9=%V*){HpvppSTg`)>+hY-Hba&)BJ9P6O16GLa#
zE+KTa?A;i;Q^XS86l`eL#GWDa3ZZuhH*{wo)<LX&L+Hmq_WmIZU>?X?_l1Xyv<+tG
zkPwD4)NheU#t|Wm44FUcO$nL*0FI)vx6&~>ggN7#(K}A!F>Dzd!Z-%9jAxj@I+1k}
z>*NroO*40yN)W<yKI{*yGg#>?GZ|*Feiy=QhVNPDuu_;-51gbwhA@{cKe5iUeCLO-
zfO(;1p<nG5Q*8?2atK#KSQ5h05Dw7ggs?1x<$PV+Ls$_)AiepqV*~HFl66%GtF7a#
z31KbsI?J-2fo5i=e*RxWAl=BiiFI=bTNt*oZeyh|^j&~batEJxX9&9(cC+qb-OIX<
zl|t?hfs&fwPzZ<Vj6XR2`JKOoa3q8ZOP%yt<R}#_n$nq-;24z(i%&3|q&m)U+OpGM
znP-{Lv7Wc=7pPP-U$QJuC%CRs5e?x^2zNvHol5U1=k*Zg6>?S9ooD}bEu7%`BLvbL
ztT$QzWW5!_ZHB*C|7N9-1K&9R;mF?$;pL8m4)dL3+B%yxbCzu9{5OREs3i;|Zx|0l
zctn{JLNJ8KAv_7uZ;5yrf@e>{(-5A8@SIw_=820pIa?I1a;|A2O)NI{O5&>!UWech
zAry3z@eO5nzA7}w7xCK=-i1Iw+xrkcSe(M(W%Y&dYF7dU2$xJ6z0eg3Asj-^Fsgoa
zM<^pg=JaCUgdtJ=rM0@ka1Kb4DM~vXN(d^07Q!b6ot3-{h8Wd%%hKzGhwPt2_+nYU
zh7cDvk3*ZioO|B(gw$cA34<UlD_F^yjv;**87vD;TbD6xMl2I6L1u<5VPv%|*%-2i
zk;AgA-RsH~MsB)<wT_Yw*R&TNTCX-=82Ra9!>AU<ziwB7FiM9}CX9k%6bhqo*j%Hq
z<~+x|UmY|^phy^`MZ+k@KwLbG5*C*Xqm;$;xw&i@<>*{txWb?#+})f|K8*4QofX2g
zB(94#TNuJ(JA;EYK8ys*PG7FwVXU0%qy-ac3Yx?)Vh24*tQA?4Su3$tW~BgCX!nvX
zg6fpQVGIsqNEkIJ8ey~yqgB{kfw2~AqcCbSkfjboUDkSG)VJ&n!f0sm+}+N`7JnN?
z6XvF@%~+eWwqT`We%kG99Yz~=_GWDxMi+*5tnFDluu}MrVRW*%GsCBi9<p~0qZ>QB
zv-YsU^bDgH^B;E{6s(VB?;A!xi~BPS2xB0_Aj?kE<_ryESQx{@pm<g_TvI-{Xf~mN
z*BrDc<cKgvhCw4GXdA^ansrPVV;RP=j%TGX>qa{#g)x~5TLh&dm=ea+FrJ3-ER1Pk
zOb_F57{5{AFlL5nsZ(qSV^$d7g|Re@WnuiC<eVMGd<Nq08RoG5!1`kta~XbOr7-gt
z=r<zb1z{|-?28zFW?dY{FP42t7~Z2!3QWJcEDxid*ZJc%*9to6WXDQYf>mLxW?sX(
zmUW%wdo{)NYZx2DI21NlV4=UFHigZ9qjs@wX5GTNm315IcGewX>|~(uwCD!u?lAUP
zmc3!@vv@zlfiMnQ7W#{-+O`CW{E;w@hH)W`i(!m{^H><i!{)*(6d7_7oCxD2TZm6F
zoMt@}##x4Qtmj!N3@w~-DU8cuJPzYY7+0uD{^IyEj9Xz`rE+q|N!vAs-&wDR@dv{V
z)|;#pCjN<o683hOe#HX)HS^d1(%ee<I}CSO{|V!sW!E#fA8>fu<=-&=v-lyyBi4^|
z<9^?2{*^;Nkx^`)hw&neuVKVR@G^{7VYK)=K@Q_J6{q6~^jC-!#+xwcCy}>dybGI)
zB)$(Lz(D*Vj1*=stB=)h`L2862{MOR!<Ie55DlAuh?obN>)L+GrBK^QNAByQH4rr_
zTCWpyRsw?|7RE=0PnP|27+)-=KSxqUkUD}Q5fqIeO$4-@B5j!?NNX`7NM~{S2r@8#
z!<vybljTdduq+W|WoNbs@>=%n3^`bHvgTsV&6+1-UeW)~n~yE|BPhU7khKtNVO9#3
zdUryx2#QBgB7%AilVX1*&@VajO1sG3akpc{19#~N%23^pU}^+qBPbU^rwBSnP(FeR
z5qKh~5rHjY&c>V=K~lt=Gg(AnkKkE=I`<MB5yUemSQcjlE@ro7p{bi6uXKId=XmY(
zRE&T$nYB^`l^MuVg`sK$)htW(2=3|TE;Z=^exs`qpSo5AG-GpZdaB>%s>4c9m!Vz+
z^%)wlHne<c-^O%=2%1o?J$1iNakP%0DRVPcGB%H(1#?T*R+fEAUT2#K4Mld));5B6
z7PpU}19L~qQnp4?mk7E>FfwBPcy;21r&|R5BNz~&H9kDuS$jm#lYuO~BIs>#p9uOg
z_p>b9##SE~!MRb@2aK-%?+ec$W^xW@7{WR<f?<|@cmyLX&b7!nDuU4wjG?#<b?VfC
zaKt&5c^oSl$1_ZbU?RgL*2$J{nKJHa5loL@djvZom=VFu2&VOOu8Uw+1m8ulG=khO
zJ)P4zXGbufPPD?cd9maB2<AjUK-&)tKSnT@;V0I4mhadxt_8do?YNL(Q3O9*mc<Oe
zM6iURho=e!TgGQx&Pu0V!LX8bRRpUU*08Q+r7*#URn~K~H?aQ7N>{Nlf=$euEz1^$
ztr2XqEHsVw&IoozurGrBlmc1ecSo=%g1r$W|B*nW<C0!_>@=nJdUK@Qfe2{U?&Fkq
zQ~)YC4@Pi^;V>&%ev9CU#YZDJ#@v@C39sO!BhztCQp1?D>Zu55^c`)dBRFI6S;|)C
z^Q;#vyR%>7<p{1sa50KYQCyASS_JMW5~KJ%g6k2)MUg6sKO(ph!BeV<5!{U6&j|jF
z;6Dmk+;uC0+Yw~j;-J5MX}zt#nEz%a;~j>(tpBjyi{QTH`+$L(_lFTYir{esPa>eE
zK7T`J&YX#Kqnwl0Nh_4m@4d7<)AI;kP_>OfiJ;>J_sa-gQ5~o4in(;un+V=g&1z--
zar};o6R)xqV0a(F2Zj{O?v21_v7ef(PYD!0XjwuG;RqrOQC7+FeRn89rPjNEo7R5P
zB6yS4d9;m7kAReZTs7#5s=H#WA0zn0K$g!Dd}01-S!l=9QKX5YNEAh*NE-#BC=f-#
zDAGldJ_@>!>{0WlVETbN17*j1$2Y7QSu?R_X3fHyl{FhH1*WC7azt_Fxie?f{Oy{y
zTnxEc^RVWPA|FG3RtiHa%@v9w&qP<@sQC}|`v2TZ#<}P&JaMnHSk(N{*cmndu`SMA
zg0*B6rJ^X!OaW|BlwmH*TF$bUkD`Lb6}lt}i|q`KDB>+k0>g?%&IdOgt|;DLF&F1b
zilSl^?W5=rMRF9CqG%k&w^3A%qDmCiqwqvgHEOQooTsF-S`;);YH-0s;)DcejVNkH
zG5V#aQ4}*2XRRpaoObQbS+zDD?WKpdIt+EAsApN~N6~<}p=Ehm!Z~z|lMd1(il$Mt
zilTKC&7x=?MT;m}MiH*%YLRTNNloiPXKv+M)6Yq3RnzLyZKBk(2U-}q9iNwci|ujH
zh%d5G_>SZi#V=7TiK259U84A&f<@6aid*@r^oyc@)Lay`TNK@+<}#_Y^@yS;b1%!%
zo1sq>eJx9~@reVX=79eZtONrY22r*$46*D(qZr0K+_KP;tRtfs#m>=DOpIbu6k{yk
zu~Ce(cs#=dN{z`bI>ltmK7(OO6jK?du}-&qV`CC$GS9Ls-$kiU*o-Z01y_51h~h^&
z%jm?#R5ivV&W)nSMaPbR5{Q3_Vjdfb=QAvbVj;sK%l>l|KaEMG0JN8TT;kFwHa&7|
zk75TE-6)nvv4SmR+`zChidB|nbrfqXUdynKbv>!#rd@uud^i3NqS$O%wlHjsVw+`o
zrnoC8?wwKWiqevW?&5nL^gVia6nmoB8^u00o{C~W0|ht|#R2AnmgP_shnat~EEER{
zc{GY+mgP9Z3CeoQvP^ZKW<JAu*0P^tIL~?^ijmI}=}?!WxI%?oLPrT#qqs(Gf`t4M
zevjgM6rZRnQTrdojVK;Q@hD1T+wf-;AKtqEi(=5H#9L7$ee0spQ@5iug}D2#DE?-+
z!}?DYcNxs7rCz)5G2dr>!1^yMdC_3GoVOf>U%6={+v6ynMDa9=$-g<uMBN8cS9wM$
zle$VEisuyhC|<IYEbpUu#r&G}4eMLW_Z<VRK=i?~q%e3{eXM>e4{sfGs9+Q!wuGZl
z8ORu6h(;k<7MVebf(B?&0F9lx<!dm+qWH)_3r<m(FHwArBC~`n65=GJl8{kCCJCt}
zWIp0p_|o&Rk}C~!T2`=<S2~9DtQjO)bIlA-+rhW)wbfjiue$SIOxmBrMQPi(wTnh7
zW|fdlG6ykcXU)NylQkD>Zq_`kd08nijqxiWp`e875<C(LNhmBKL4s34t96M*B$Smf
z?mH*VyH!*|F^LMKyErRB2?-^cOR<(_Eo1raIqsqz%SkBDN2tI`78`?*U}tc!##_Fh
zU%Olq+>%+G5+zze$+P{oIg!`yRgM-HlaeHJL}*3UWY$U&Dl=4Jt;$-Bl|s^dRy8El
zl+ap28ws@})TZl_aOya%YUF8n!%;^vi&<R>^%&~2HeqeR+E79x1`5_#!nYRFP)4#e
zWoI)9%^6y-wzR^~C{X`PPns`@%W}BdN@ypcy#%@tno_LhJ9nDTE*dm==&hrZgw7IH
zNLVRhK)~IFc9$?kLRSghBy^Y1L&8J}lO*(%%puSNB@B|#i<z9gCG=tLYgzh9=+8XB
zvW%<cqL72xIf`|NgrS!2Foxl*BP5Kp?CL6WuhA05uw|@eA17fv^90KhUFM(>-4yv3
z7d+`+d8SI3CgB$eOC-3iIi^eaQNmmaGuTO%nGCa7zhj-v`n`lX3_q|^$W6aGOTO~Z
z$KpLRoIgpJCxL*r`4Sc|FJxWB`ZMcdRthteR(_GNOu}-B769_lp*rPF?A60bN9*^y
zb8@q!RT5T9*eqd-gf$Y@O4va4Lc%%;>m|_KLFekY8g_M+Rvk6=x@cyhjS^@&9kOha
zaK_=JC)KLG63Mw$!Zryfsa#3ePBq={J|N*BHL9;XJ0yJR=GrM?7X$Hbik`)LCG4|!
zzl7`?Jrv+lqWh49|3*2p{OLL@ft<Ac#&AT!QOj~n!g1ykmZk7i=V^+Vgr$2D&Pu2{
z)p;(9>-<93gIvxEf4Y9{l6XPFMG5IYA;Ty7109zoy#0uGA8~~mf7;Q&Sp(Oo@t1JO
zKw7Vjw(Am(XgI3j4+%FU+?4RAgg3OKgj>{Z^o)N(l{Ce6oB1!+zu9t!^)Bl_toK;&
zvp$gUF9-fl!XvgkWao<8adgbbY$2v2)Am%tGqw;vm+*r5rDb^~;kCuI%R340>EH_f
zQ}97T3hgW7xeTuapM-%j2FdVC2uQHW5Hf-iLe#X%$RZ;wAwt<9;j4tG1WAG}!H^(J
zP$Z}lGzsOJicaZ7>f9nBkI*uT-fhMF{`S&EMNGm+37;f<rpBkYNa!kFY_;FcEiy%H
zvD6|%7cr=nh?9{@MmibkWu%soMn+m0kWr?)y=TaFs<#+9KujNGAN|U6rH#1l5E*2A
zBO{}XOfuFM6uY|G3x{pfW{9O5?QP17dx_#^RgqOjHW`Iw6p@i#Mh+QyW#p5QQ${Ws
zxn<;$aip_2^o_`Nvf8q8qKsyvSncj?FW=XmUq%5L1!WYHaphcml~JNp0kNsCeQP^W
zK4fbZw4IOGipnS^qclZQMsXP>WR#RqO2+v9cDksnX+-++l^S#tMdKYWFUHH;lgr8|
zC!@TK3NjwL98`od^bu1B+CSG5r|XNtX~ob{!Y;!h<69X`WW>uzkWpQRM}|{|OGdJc
zN;2Fs5@jUGs7RM4#I$~*W}L`1L<qOYbt(Rr^YN=CTV)wlWK@+=jgBx(T+1LfM{V6&
z2)}0gEZIDTMb~knhK!mr>dB}tqn3=?GU~{vE8|`@QOe<<U2Y8)wG~^@Q6gssF<r7X
zkkL>^BN>flsQtvp5u)fsku6}m?Gm#)i;tbeykYjHGR;YX&N8~lXfC6LjJ7h`$!IB~
zm5kOh+Q{hMTlDqX=2s9yPE}skRh+LYetP9uus^=Nj1Dq7%IG9xUSpB7nV1-|%_=V@
z%C<>6lb^4)?`$i&%IGGew~Rh?92q@i^pw#{M*mzQ_hdoYwEwfM-8lQeeBxF^L7CfE
zMnCeEF+j$<Od{({ak7t?Qcle2F1Eh%&~-K6mONO-5E+|fY?d)p#xNOkWc(mwxQr1p
zCd-&2W2B5xGR9Hn$`~zUjEu1|ZWk3xg*f)rb~wfM`BePCHe#<36J$)J-M`u<$yi=O
zj47T#0cI5zw7sh>rplNmW0s8XWK5SaL&i)QdwST<yz<b#rR`!@J9|QI^TKD#_^nLb
z=Dy;48C|EF@ho>Sd3k>Eql~#SmdaQr<0nce8H;56EMvZm1u_=O&_>w5W;L_y+!Rr7
zycm~NIO~YTGJcWKpomyPMQC~Qti8$8%80U+MW=1{UP)rPj1^RmWUQ01QpPG7t7WXA
z$~8h1{A|mj+2|6gxkT5-;_&Hsy4dwHHpuu@#zu;~&sO+&{F^MIjb^(n#MxS6_QCkB
zGsG4dTV-67aY@ED8QbY{sJhA6A!DbEeKPjT*d=2(9YMxknbx}U^k^qqWEU%&i~a|a
zMOJY(tFVo;ACPfS#vvJpWzbnVXB8>g#h{wvuim0bYT;U$oYc;KRK_tGr)8Xxaa_g;
z87F0&q73aT#`mzlO)uKj5LvzvolA<ry6r_raaP7T8RunOpn60Lya-2;abnpFk!hOf
zlSw4z7i&+&U#5yL<Bp8GGOo(FCgY}zKV|$b<GPGLWZa;uD=p@njlVoY-0UP4e6k%*
zD{7V!mD-D2R5oP%CF5_ZUz0?Sm~BDGW=u4FOBEK^OPHtlhbkIfH8lk??#p-}<6mmi
z?4nn3k^Mw+spg_Z39-A38LLM!9?N(l<Ef13{`l8lY!u0d`OTA3UgUC!>IK9L884~c
zDd?i$m5kTaA}J`L;Ejy8)S@a#qu`xPGuc9xp~(0kBZXRc86j%_W%#J&ml2?*Y@nG$
z&9jINee4wTYh}cjEP}2pEF(f^mmyJ@E~3m#k^6i+T}A0yf=Yh(u<gQdp;FnC@kz#K
z8M+KZMoh*>f{9{u#J04$pz3h2qoAa2Qq^qnzR370BThjo#XKfmZ^JI;^->CqSE@x`
zdFZfd6+l5w1-TTYQ;=RkW(8RkWKi&pf{Y3>Dag~u-c+?w+B#DUN@qGkhSwfS^Q;Q8
zDafuMhk{k<%&Vw2MLgYTr)vzi5wBB=MqyiS+Fe0G1%(vkRgh0Xegy>-P$Dc1+9(3$
zx7yQp6O_eSdx~%`dtn7d6cklZOaUcP;hN$@LqWl)wWnxPB~4dTlvGekK}`j<6qKe*
zQ{YyRsGzKZatiDU916-SsGz{6Kq!zW3(D?Fk}WZ2dwslG7l*hx**smmf&>Ll1ug}T
z2AL^i>mV}r7x@we-C{J=c5bjeNkK&gRTWfIkgTARg31c2DA+yRP6_f$7vVe~Kfx`w
zO%-*si63)`>I$gLcofu7K&9yYG&4bt<`TtTdkPP+*H%zRK??;f71UKwPeEe^-zuoD
zpn-yh3K}W+JF~c3U-Zi&sF^xcN=!W$PwnmgRHBK3rV5%VXinj6qTj{%yAfMgo5*4l
z%cq&;geprb1+5iyP;hLEy^Vsl3fd`XPf;o;ie(W68i+Ny%pCl$oq7CDC#rQ+(237D
zw57N<T}+4Qs-T;K)e6=q=&qoLf+-57D(I=8mx5smhAZezm!@EVf`JP9D%jLHuAhSb
z3Mkt3a|>#jALSM2Y-VZ<qKsBBM8Qx6WXYG?tWcCtC;N)C<IMmIqqY$WMk*MmV7!7+
z3Pvj!qhKu6rc&bSAd$PQI6G2QdhMw=Rjh?*TwF|0Fj2uI1(OxzPA_)l6lv;-TTR8k
zr;;Df6n~ZyJ*$an3Z^TVuV8^fJ#VyNH0CJyLBT8q-zk`_;Cm{KZjpI}{bEirv#4ko
zwMnuqYdY~RX8TdWTm?TVn5Ur4V3Gfmt&_`<kW*Y<ZNENDJR4}w+Egr5ut>pD1<Mrt
ztYEQ%Ulc5%D)Yq_t|>Ofo5yKgMciMNyvJ)>*+VQ>utLE~swN83hHVt#;;Za!nu?`O
z#IW?@2Z!TH6R}poIt3>coKmo!3crFq3ic}aRl!CD+Z1f4q*kz5!4?Hu6~vV`AEgGa
zPVQI6j3iycrJCYrx7eXzr-EHnL@DsH<g=IJQx_3bsHhB-y%6sW*$&PW`xNX~@SB1o
z3JxeZsNfJ45(UvhqIOx)s+gebUH!$@v8*`JO3)4HD3vG$#}%C5;%z@1U&*kYnj{`{
zw-+uh7Rk1Q!^CL?XB7OQ;D&;;l-&w0E4ZTIyn+h~E-JW0)h&-$Tv2?NR`lVrJrHKB
z%1skj6<kyByMpT!nJS`0C9&y9Jmn)L)S_zUt#-d^yQ$z$1$U^JDY&KJwt~N?=u(02
zXTRLl-n)*7l@S!-oE1g8L4vaE9|iXm+*j~`%ReR8{ito?#$+vMOD-dh4i;&W#6zn1
zbW#<6sCca42~`#q9aKD3@Qhk56@^qhSMWl?Ck3AsyrjloK}bPZ!E0*#6{INeDtJr9
zRl$3D?59#898|7CW5tuo38e$J)St|oI~4<;0>6TQf*>`Ug~X(db}G+F@s6D>%twfy
zvWpKnM1-<Hfu=xLAW_4mKvAGlt)D77#fy?tgsY!0A3q#o=Yiy^xy)xCLqSZTUmDT!
zwTEg)2fOe*t~&opGClo%QSg=8a}`-s#HmQ7BAtr#DpIRRqav*e5P!0rUY+b{EEbIv
zd1PCg4))gh1Qp{9D!x&XQAH*d6xG>P#1A9HrP1P44Kr;Ay!KFzXH}6+MQ#;&RAg6?
zLq$#%xm0}YZ7+4Qn%-Ve94MpdW=FYvVqbDz75P-;S5ZL4fuf>se$$J>P%CG6ZJ9^g
zCwI0NR#8Mn6%|!g6jf17g<XY1MR64+RFqXwPDM!-rBswwQAR}|(LoWeU=!Pho8^ik
zMps1d4&_x;P+?Oc=-Nw*V`J^~RQ6$nSePvC6f>W2=q)2&MS_YX6%|!DRk&2RRV1qT
zT2`!YEq-|IDWlkq=(dCmB2vkGnMzhsNySKan#wAzZ|I>?N>}QvCz>XSES>GuR8&{d
zSjD$0JSu9asHdX7ikd2Fsi>o(u8P_!=o+VZZQoQ9#g8QuH>fD6Kn|WM4j)NwprWCQ
zU`5f0)G1znve7dnB~hnJ;>}ol6BSKWv{KPpMKcx6RkTpiQpLL0p3^lFmVdS_EhDzn
z6Zxi#aM<>>q$nD*wNcSlMLQK_Pxxfp)JJq0ApV_d){%}XI;mK!;ujU2Rdi7?kuq9E
zR~6k<3|28jMRyfFRP<HRPeo4^y;Ss8(MQF@p`z?M`;pfk{apOH7J^Pq=c0Ree@Ye=
z162&7gAWjQCJ2fKotnaT>Ln<8SIdi`Du$^TtzwLd;VMQ@da4+uf+`3_dsr>;Uj;Gx
zlP&eww6nL`>1l1Oig7B&tC*nTeqC`nkGQZuzV;eB-AAV67lrDG)5XPP6;o7vuVRjh
zsVb(an5klxis>q55TvA`z<<8>&<zM_MWnMmxq<jj#U-C@wu;xUJ@rS5*&VqZR`H{X
z`6?Eum`i1>u=q*EJSrqP&3o}EpZS(S&HHa_?F&^bQt>k-T@NwcDd@33TEcucnd}iK
zRwge|u~fxwx+oRPR4iAqLB+2sR;XC1VvUNmRLJv+RVr?Gv9D(KZLqg;ig1G1zS6#q
z5~s0PuVT|AF@KUErl+rs<W#Xu#dZ$AnetS{Ru%OAdo+_c(ohuaF2>}Gzmi|<pyH8N
z>{PLf>bTeTM<4s(o`PN>TaPvGxqDUYQ*lbgX%+ja8mc&=;;4#)Dh{bQtl~Gy@%H9x
ze(bg9UN4bRwcV{J!h`M3Uz3liIIiM^ij#EeZsPlyVsQ&Gak_a=|2ePdbtb+^8F5C%
zSxQ?KmsOloabCp*6&I;Eb+^B!XZRfAiEKM`GMVmu6!RrX;);r^D$c}gzpGf^&wfqC
z-}%IVfp%BaM$THN<L|_5H&ooD20=qL4S%Y*rQ)-SFO+&J{!;OZGLiODaYx0!D*jV(
zSH(Y+Yk9<dGRABvPRBhJ^hDaalgQLuP&6J;rRZ+IaXR^-ibvGit9V9*Hls+NUp!Xv
zgj1L@qIyr!wzGH<v^`hxLd8oJ@45?0lRAU#^z54bjb~O<@kYg4I=G4m`KoxY!mGkZ
zTR!nYMG7T#Z!tVhbUPA%J!C8Y#^a|Zi)y!ukP72?^4%Jud^ORewRqb~6u+E2tdST}
zK}1zZDl`?k3YkipY*SRI44wMeJypc)q4osXR(iNFRK%#gRq=^R`w%-li{2U~3XHP1
z&L|4y6b*h&-q6ARl^Q?|MKl!EkV->p4cRnWKn-a$q}A|^hKw4ZA)SWw8Zv0~bEs{8
zeQ`Hz^A!{IKG`x47tKqHUrLKi8Zv9hq9Ln>-v)?W-R$pej<)OU&D-1S3>UXQ**1o4
zIW*+dkWWK?4Y@Sr){sX-UJcbJh|%NhR6IPj#NjWtfhVi&ND$M$*a~PUsG*RC!W1lr
zI5|Pgre`hL)_Y^}<1&Jl2K{A(y_kmL8XOwpHI&d$QbRcn<u#PjP+CJ74P~j55P}+z
zCBwx1ZlamjMm<8^hnih06*Sm12n}`(-?cU)IU#0yRbK2UEp9{5mHLL*6ErwARMe2H
z!KJ~iAyGpTrP!L}S<}S+&B>Gwvr35`ZV|{PY7G&UG*s45MFTx-P=U$a!n}~3ImEy(
z=H0Wp29Jgb8YXI}p`oUR&KkOCsHLH{hNc>tX{e*2u7-vh8fmDfp}vMTeMAEdR5CMX
zG&gr`@ohVMy}F`MJ<(Xhw;GyI9`zFaSJ_{-G|zaXrFcC`G}q8VLt72)G_=&vN<(Wp
zl!i0)M25}DN3xi2f|rvVtssVKwlyt9dkq~Z+8R1(_|V<{c13dP9`;nj?Y|7RQy0*U
zLH3#}lDlf?reTnV!5X@2=%JyHhQ1nlYUrh*w}wsg;;2w%xExO{e9wBKbj0kQ>ZhT<
zh5;G|YM^GneZ;n@q@doyWnLRS2xYf9D4mCB7^-2EhS3^^X&A0ygocrnJK02<;$lEQ
z;d$dZT-7Xco~`y=b;TGBV>OJ^FkZu=a+P|e7Izzn0(k_Llh49&ue3;;Q%uq@S;Gnq
zD>Y2fFjd1(8s=%3reV5<*&4prFhj#k4YQ~KP~vp3)8j$AH=Z;l%ywYJ1oM4?+U+?S
ze$eovhPfK(cAxJ^JU#SMcGE5CscJjWL*)Kyo3CMkhQ%6w(XdbhUG*XjKWiBC#zT)f
zeYPdjqYjmAddps-VX1~?8kUom6V&`tr%j75HhNQ|yqo{VlQ%)E(y&^?b`3i;tkJMm
z!$wM54eK<l*RX-AAyrSWjozoq%n;OnMQ?5IT;`hsJu`3CutmdG4cqAKE0XiK6OHqm
z?}<OA5nr|@Qz5CCUF_7bOT&H*2Q=)~ut&pQ4f`}u`FUb9Uk8Sc5=#mQRfv2|1QnHo
z8V+eVOjVmwub&9~YNvMr>YC`4Q#{!pPxlUbrai_{qF8M-a9pEVl5kSPDGk>&{7$Fi
zKJ(L5{4|`UdfhXgwyO;1G@Pewx*c~x!$l33G_&9Se|_wiIlvXx|5@lbwBvQ^_SbM)
z#~B?rG~A?Gqob~lKQ-K<wo6A^9k(_7MI~87iiW?b;AwcO;hBcJ8vfDnuZI6L+|zJh
z!vm@sRRnF<2bi4+_VngUqWz=op@v5q9&30)xsYBoX=6ULJoMW}^%7M3sB4Z|mFF5>
zXm~}{Q^Sz5f~sMOT;e5{6MCR}qv5TFcN*T)sYlyeXE5JZoJrzTFY}3ldJ?{0p6u1&
z)1YfGH25_HG(<H>8iE=^8p0YP8XhK#Ii2ijW42%4c)p|;_r{3-a*9)9g{(o*plZ;l
zf)BK39%JSRMT`OzN;dEKlpQe*A2oc|@P$%fqx}<At{mdb8_zL^=zlE!tA;oosdS{)
zL62&K4I32zdJ>~_phHy^=F1~=q|;GaM;RUIb!5<yS4Tb_-{{DwBb$!wIx^|VtRst#
ztU9Pi{lC6;>fTf{2<qO<K3GW9EnHaS(2-L|E*-gb%o=QVUljjhqpD4v#(5|LpKSCf
zPF$deJ-?0uI*RHjrlX*aLOKfTD58UICAoy-Wd#Sd-t;AcUdgHLdicguTt^8VC3Te2
zk(4Z64iMA=+}CXM-1TviP<se^)her_9Qo>~sH41&3OeF-B<S>OJcJIr4u_6z31;6f
zeKfgTKvbz<z7f;22X*v0b+~l6btLN8x5gfM<LR&>In}!4pNE?bJGF9j=StR5Nk?@Z
z9vzi+RMAmYM>QRze@&*_CDqN0wFKP+>2^T(L~06Z=%}fqmX6vwP3mGRI@C^$0KKGB
zUk&w))d<+=J-VKb`Z}iRn69INj)ppV>FBMak&ebX+UjVh<69j~bTrq|LdS2V<C^Md
zrsKy>anwjsX99Is(hFKk9j$b<*3pLcT4!%H(|knF)Y~p6nfF|G*mkUDLVFz@bac_t
zRYylUMcCF!M`s;W5(>7r)0<BAt;y9QwylLkH!|wzp`)jcAL2y1w;pQlsMURvB&d^|
zDh~Da_0iE+$4DKcboA5FU&jy~Lv;+$F;K@Kox1oy{j1c!NBs%3J9S|d7-{wu(399O
z9m92upaSsLLv734vG$9K+3C8rqsV(Ud9;o(Iwt6tsADXhqFS19I>u88Y%ZE4n_Uxh
zbD@l*j)F-#ChM4@V=5Ke%klIrz}C%9)#v;4VuZs{@vUcBXZs8tGj*)jv4P5@j_-8*
ztYfi`**d=0@so~uI_A)2Qj+SJtApZ6DMO{S*~w(mZQbmfy4#z*^~~3?K*vHIi*!(_
zqkfVBZ#`?%ihYue&NyO&o%&vW(Xm9wN*$|oEY-1$YMhQ0l)n@b!qeH_bWJjKoKjm#
z1)JWcSL;}#W37&L6tUmT9uMm6q&{J4Iv&q7U(@O(h+lPVq%uhn)3Hg%W*s|p?9{PE
z$5tKNbZpl_Z3Q(Q)CKgVin&+031+M&Ms2$&3v}$!v6mXp`hr>y>Kmu0M|vI`<q&kI
zqn6}=j)OXm>Nuw3kdDJt#&jH^OoUiGRJ`d~neu(<TMvEfp<6livmK|xtmCAPQ*?Ds
z(YmkM+f26}dNiUQ7-~gtrxj;)oTHj(prV2EIxgslGmy%_MID!PJk#-9$7LN?bllN#
zSI1Qy*L2*Z=3U3{I<D*ZgPMIE)P+LNw3Lt3kwu;1^udL?<*7}+MUB6XzjXXf6+DCR
zQ>!vf%+hU?dUU&_7MS{q|IujxHvZG`P^T4t@Ic4EIwHg4jvS1qBRuP7ztqj%W}5kM
z`$)%QI+u>86rTx#dim&!#;Y-QdS$+pQIuV4Pv~KPq2r~FfR3P!S2|wn_@E<2#~U4Q
zb-dH@o?;@~Hh;41dh3~);ApeSPDSxq32}CV-K)c=!>`k_FJ|ja50=#AQd69^ohWcI
zKBOb8<D-sG6g?f}71be8^%-nF6g?kis!aDguT5bkP<3d`I;+7NW2LX06oB-zjxRdC
z>SixARq(+b1@)XyNHTkUQyWNQps;}=^r_td3}iQu!$3L%=?!Eukl8>61K${C6OqxN
zG3_=2>NzAh;BaK~h%5%O8pviK{MJK#JD1;j9>4WWQEg+FB~$--P6N3N<TH@pKyCwh
z4CFOH-S5=#OZ|BC+OCunt^14W9#OzRK?8*hlqg|7iPh_Gr;hZmZu2F}*{gC<1H}wf
zFkmxKoWd9=ZJ>;Sk_MKIh@-dTQU-QsG{0p$R%|(Ih_VLCQ5nlA${QG5%Ip~^;}PUc
z|IR~?tipiZK!O3M0f%9}V$*ANyn&+cJoFArp94<Wh0B23z=im@L<9GG*r}nW=6ZfD
zAu2lPUXV;zVPL3%VFoH2sA8a<f%XQfQW6<xNXccOx&e=Y+6L+vs9~U{fm#ODCNlx4
ziE|V&TfzzsQGc|kYoMNi`UV<MGS)P6jXq4QTboRMQ_1f<{cctxOJf7y8famlrGX{}
zni^<aDNS<&%?!MaGk0n7&O@+tv^ZvS<VYo28E9>wje)iXsM~qq!Q@T9CDVsy>H(%O
z)Z6SjlH9>SM+1Ef^fl1QKxYHp40Jcph4Qqi*ik`rH89WS7-e(N7=uxp?L7?iG-!1~
z^fn+j5i|(l=2|;_i5|MfF1Hh-<3){DqMw2O1_l}!WMF`S1s(0vdfS7JxC`gwX^6tA
zVR3^E4538JA}C*ayz|ggYlbApa04R@{9xcm10xNLGBC-&WCNoqcMS70$^-*r4UFRf
zA>$3u_YSH)k<MaG6*04RG6m?EC?--#%VvHAnPOn7fmsH=Gce7-bOSRC%rxkOnvI@^
z>Dxrf(e^WA#1*fNJ}b}{kl6;lH!#Nl4XF6M+CC<mxHn$ZzZ6f;#`Kgp*T7E(mK#_>
zsbOHgfu9X5rc2|iSZH7oRg+D2>INUw-27~Ge}kRAZv0|kiGih5KB=6v6q7Rvirb|T
z_JwuLk1zDqW@;9((!eSM>kO<nu-d>Hy8K*XtpWNbLfs>Djr6IAI%=r5iayq~qqi*s
zzjA6U-DQ4FppF;H_e};iQ)%pI+rrv#Y0_3IflHIN8Q9K1yu-jwi+52?v3L)|UIY6q
z%YKFf1`b-5k8hF>TjOwkqXNu)ln$6;JH~pP^#nzmlIV6EJ+z-<%W2mCy$hV<z3PAb
zzwtchsb*32G;qnlWsdgU7_Jz&Y9KL&q!_Ll_?_~LikX4y2L3ScpMi&zqz&yi4BVjt
zVBjV@|1@xm;Wq1Eto{aZXc+gm0kuKg$wu~n*hu?6FmTV}`_$Yuj3Xm$|FUuC(zK5Z
zJT~Ap;4|>Vz*7US4ZJb%%)snM_Lr>BSzoYjSP@5d+FnsUGQVZ}djlUB-ciYEWY66t
zK82lUISg6KeT=8Q{A>&v2rz6r5f`L(vP=A~6>(t$5o!(2rlC_r*_ZYz-6dY3i=tLE
zhI}z-26VcL7}CXH7>H5oHL|CP;iG|12EG{hYT&bhtqtw8m0pu(_p&quaWT`9e(nD`
zQ^k;)Eo6LgtP*KjIzoduGfWH_V#sd!eiK9H7_zW4BWtD@N;I-d%hF_JXEt`yiD=(e
zv(u1Qju>*XSFRWaHHga-LvD6H<uG(blslCE`C}*(L)jP##85DXLNOGMp;!#XW1uvl
zgepRj>=Iuzh9jJSlqMx&D9OfBF>GHEM~OzkD7i|<aC=1@1tz5<my1EfV2`1E%*??G
ztOT|gcAiQ@0UR+bUYgcTr%SFJA45V6PAiPdI^A+UDFyqvL0rWcl4DpEL(?|#m13wI
zL!TJ>#!w}Osxh>Pp=Au!Vkp--z7Z=y^%y)c)L>`L7#djiS~1jSuEScFwVvhs|LFSi
zc$=y>?me96d(J-RTtX#9Dh=H0j;8Bo-$)tKh=e8;QIyP*S<)nhlBv+3K?+f%gfuA)
zl;+Za%f06DoU`|Nzxz3z-`o4g>$5-K&v!lRS<iabv!1o~c&^KpT-(j2h4u;lpSJGj
z>q<H%<cfrJ%IaLHq<>fYs;uPdgs{jaJg!Sf=Y(|0+UcsKXF|p<4_%*-Zd$xSv4>)J
z#c4a;Os6*{<feq&oZ$a#>(W{;&c#mm7A@YIkne|-QGS~?xm|HZZVRgQNywcEnaCI>
zq;Ep{C1g-S26Ofka(6-oB;=m|c-UVXW*oj(`9Q^t1NSLksl5+L$k2ogV|csSj66FU
zp0zU~AtP0Oe?rD<lTnJ)c|ghNgpA2b#wr=dCG%4$6?jZg$>yEzg9(|;WJt(U33*6`
zQxfv9l0SF4k0j*Lggl|e#}wI?GxE6dsfzuElu<Y>Tg!1x&+@00%ut-E7;n_#86~q6
z4-O96&Q8djgv?FIyo9Vu$U6y{pOEJg@>)V(PssBLS-@FPeJU?h@}lA*#TV2`R%HT6
z@^V5JXZ2rE@@h72OSJfALf%Tq8(E#DN*+>YmMLG(XlQYT7T;D}sYv^Ca$CHckktv<
z$PHYDYZTWd<h=wR<_8PmeZ?z>mVKb)q)zCE%2~T!$%cef-xZ|UCT{)-`8*+;6Y@z`
z=QAarD$>JD!hDgCFB9^$3OO}w%VSGIzRL0jyWDS-yZ08dYHLEaCFDD%ZbD*7i6>=y
zLVifdUkUj;5u90mOvrCa$bVAuv*Is`zb5z>s9aY4o{&EhvLhkf7XHlY|Db0a*8Y=_
zo!mbYl1j)f-AVQ)q%tA9l~-i<mOX6Vp)ohNs)X!I$O&%X3I2aca)9nlu@5KYplTjU
zNV6LYGW#3%H1Z?dWOlhcjw(6Evp`ltg@m@^nTR~Ib9xE!6Cz1LQql=AlEF4;CB;kz
zJ1Y4q-Q0L)v3Yh*27BovpOvzs39}2sNr@ySs!gcLlb4eWPIH@|F)}AUN^+7?Eh$Aw
zDNaiDq@0qJf~4^LTO%nolX78FE=o$RWN^l*os=_@a%xge)8g&*ODQ~EIk#5wI!QS*
zDQBtV$2oRgC6w1!Qcv;hq+He^IGyo0M<wSb<-DwB110At<$|oFZ#$!5Qs(OEELVk%
zlEQ7AC(696PGcqciadE0>UbFk4w(~LlH^~Yl~ze<l9Z-e)hsD3l2V$K<{AygDsx(I
znUpeB$OMNcBO0LvHz}7SrFBxuvyo&~8||)bGDtj5#HGm~ofzB8lEEqUDm{Dh>aJZ<
z+Ur$Q2gQy_xgsf@l5%BIzDmm1Nx3R1S0`mAn<wR(q+FYndy_ISDc2>Xb5eRIr4M7C
z&h3(vo0D=&Qo1JP`lNJIVfUo;P;!GJU&~Unr}CSU!iV8ECS_6oK)8Hi@KEU1q&(Cw
z@3y4yGlpKuS$z58;41X?q};(C>*Vp^=VW&#gNyb7ihYyPFDXBIxpyVy?xgfj3Lm<%
zNKIbE_P8o9IX`%ZdrwmM^%u!~Ng0%sN0P#Ktb>y>Bq`&PGCnColQN76c85JW8N84k
zo)o@4AEkUmQbsZq8=F&pe=_*Kh~xpaK<BRs<&B}Y>D;l3y>_|e6OuA9DLv21o1By?
z-qg3YC#gO=eNc%U&V48=nWE%j#c0FeTZ>1N@>sU^@uW;u{zO(XP05o<c`7TJu4D!?
zr+e`3_?e{4O3FJ)c{eG~CS`U~USK{XWe#(dNtKlON%?+}ea@M|7dVTn<vpjf|46;O
zg-Ll{`2s~gD`xN)(Shc9wR0@uOI*T9S;<^2v==Akm886x3_fXlH7QH`HGVBAuP0@F
z&&K@5dx=_Dsz@VmDB<%B@;==fzm=3_Drs|D-twdzIz5la3MFqV^3%RmN&c8Vc=OIC
ztCO-ODW4?e)1<tY6h5<Emy{2avNkF2YZ|0_1~1<~V6NUCko8H~z-XMz{aAb1$VBbi
z_@kuoTVhM{$Tz8^?%`a%lHm8x`LBjPOUf5iNXqB5so$(_)<KbP;cgSj+gmH|fn6@0
z;nxD+Xs5q%ebvePHYr<^vMnj!F%+ElQ1CGMd+z^9`GKx-fEB@a#WQxf#2@)fgfoJV
zLw-)mFG>E-$nLL6`B<ySY58}iai7M2BxOfZ{!GeWLAnOX%(?iRdEPv@v#WbD_qRyi
zuB7bdPMZqudMc8#Cn@`qvR}u$mzyLLkDK8PgS9+HHZU^B0aY-x)j=k91LKgU&0&>O
z^GH&TX8AEC#}!W~o=i$2TboppN{W}2_&f_Je|q5m?UXjHl-Sy1NKq7_IDeJFD=sG`
z(UeRuFwsCPCGnIDOv!z!kdu-NQ*u#Cs->iQN={K>t(2Uak_FWYYADuB1y5sGJS`=s
zr(|8Fc|j`JBKS!L<+W3M*cBA(q$Itm<jj<um6Ez@hYFWene|d~c1r4}<Q#2#SCMsY
zO3q6OeWUXY)cE-+p_~T|(mt)x6tQ7S8l~jkl(g+?=c>&-MLJUvvl=VUPf0;a3R6;)
zk~>vWoRX51+?0}^@6BtH5|p<nPst@pnx>?glIAICk&^Bm@=8-umXeE8(o&0*@bl@9
z_T;h^zlLp<3ciVT6?bWVw$?7Xrld_uE>+$(B^^_8MM^G9$>piw`3A?uqn*~aSL~pe
z8FHtTT$vK<P;U4B!3SekX%+RaPRTXOugyxXQ_?vlU9u8ymwSCmx~1d>daJ@4Q^B`t
zJ(PbL=9l*QJyXK(he>FY+w9F+b&KMyDe0Ax+fp*MPpEe)_$WPEJMZ?C+`$Z~oyUWp
z)AUg}U!SqIueR!!3O4P#6z^8-pOOJ7Ic>Llj}{*u66|$+uFD>|C<diua7vD(gS9h6
zEeuV`uvD-dDB&?&g<ZWsVFcwVxj!YNQu07beox6CDgLHj#-!xslq^okSmtNvf+th*
zR7%FBWIQuDB@<QncuFRv<iV6Yl9ESN(pT@fCM$nPaf;%@DQT4#+~e@bT!KE9k_x@%
zpQ;K^q-2_s%vE%UvG#NZHYIaYGEe0*Q}T35o>9(TW--r)md$3??RKAKdZ_%YrY+j+
zcIT+D^KN&3N}fx}qLjRl;(rt?{dT(xIrUu%7I0am<m=U?5A1fQ?{?XQSGg~yWV=<!
z%k`I3=e6A~HD5`|t10<3C7-3_HO@;)R;A>flq^Zf8!7$=sqTuDEKSLqDOski*6nt`
z-R)NFcHd%?+!o2*?s9dEqpn#I7<^mRRw_0gT=s5CR;T0xF3gnV3@KZa65bZAP04#)
z5fyH?3YP}oS0Uy1Rk$B=wWj2wlx#}LlnQr4N;anC#R_+3lNK!UE`YeE!u>cUpQPka
zlNRJ(R=7J<_<2e;b9JO-Yf8S*+OISSUn<|Cn5b~s>g$xyAdhd9oU+H=mXh!2>U%AI
zNy+yNls5cH@rRWBsN{k@!955=%D__dXU_N@m*iKDZnryTNZD^psv%{a_qaP!@@Gow
zd2+TVf2HJa?w?FWPyR{C&XgQY$+48|O3Ch&>`%!7=1EHSq-6S#vZ|EqRcka@spQT*
z?#Mmv)IIJ#Rd{KS`|O(1clNjk*~K3BFbAda-@M1A@Q4cQMw_$hI9G9nn@Wk7k`pO8
znd1Na<t8-L$rS&GuV5@?qY4>zpZjV`Oi#-9x`r1-l{fD<TwHkJ-XK<%C!gvq9#K4j
zCpA5(<w@9+h$q!OVNN=pL_Pj56*7IV8}lUY1q*7_UiVt<g}nD(cky1gnkURdW?;X2
z3s3Q+h9_(Gx;)t3sh*tX$r+y1@#JXdg3}e5PPM%tVK(m#o^PDVzPupocz1k5*WgZ{
zq%ON_)Z&l5ZhcSA@uamUZ9F;Glk+^u_oTp+2A-VnNkdN>dBM`SfW=DpB2P~2buXm<
zm2R_Er5E%Hu_~8E-a2(I$n%85r&r{S)svQ$ZlNbdo|Jmh(vxCON<3-mNi$DgZ_?uW
zZgvy(^P0-Q&*q-+U|3pckG(71QI#%>3}Bfjtr!GPF4n3iD}yCd?#aY8rRO$kafv4{
zSGwek*qTcBQcv1a&6BG<xy+NxJ!$7jd-dmlRd}pn3*I$ft4~@wc+$}m@+&;)q@K_$
zi`&&7@~b_$h6<i6UtLO1xDQ<CNoUoZ+$&UB>2~4FR=GSl<JWuAjS=vqyC+}x@})05
zJn6{<_C<WT(UY4zS?tLxp4{xoEuKvB<Uvnv^`w_4_jxkNliNJG-IIQv+~rBVD)$ag
z`gqb}MqzJam0PcO!8KLxou2fiLX|tN%6+=ZrQ~i;US(~SdykU-o(#xHdKXZBuO|a(
zt#`qODwn2+gFPAI$tX`A@MNeb!#E@R+>xFP_xNYq-OxUFgm${W$~}8uVD^4(-f3UZ
z-Dpq7crxCT3G|kl``odfjPvA?eJ(8%U*6|V)Z*9s+@1RZ$(nucWKSOQWR53uJ(=Rk
z!=60FoTr*6k1`tj-D#er_PLLFGL`wf-+f$*8@D#5@Ci@y_PZ2bw%;AT-+j{KpJR1d
zHN%sco;<6XPkXZD+s3mP+x_k{%2}iiHP`7e+mmhk-HQG0JWu9(ve1)7o;;^*tpo1!
zbZMnQW%31T|Fi?{3!cydkC!}okt^bW+x~z{PbhhrQ+XgDuX^&DCtrK=4fC1(da_<^
zzTwGIPu}t5T@Brv9{)1DEcfIs4J_wk$N_hSCvSW5`~i2BCo6SA8R16`xSUxkkP}yP
zrF-(edb09>`<^Fj)&AxKE+g}|;s>6rQw4_TLyv!;%;iCa4HSCvkyd@ey@>n9L3fiU
zA1fhmc+mZftNx(7nX90x^z&@ox*v2Iy)U%*CDZbtyG8j|oGh*S)|0KCRC-dysCx1p
z_i8S*{qFakZ1?0BPkv=0dAvCd=JaQE;3vlXU=ZF+0O=l!zj^YzCx5DO2J;VQpoVvc
zHlc(8Uvtpqy!_2mfOfG{vBHyGp6ph>^<a<~e;;)BXmPK{KNc5AIPd#B+0XsTlarnt
z@Z=!3phNC4Zq%L}_T&h6p#udc54x3O%Bmf5&p+fIRY|>Q3(AjknICe=`yFx<jH)MT
zPYhpDo_L;IxVeR|3S$nr&mMB$I^_Bz%04^fn!Z@R*uM0Bu=x%e{I+r8kW1cpWLeF_
zE_@05a<?!2eTn$|F^gR6ODkWZzQlZK<V&tEabI$LIm?&2zEtz2x-YeSIn|d_e5t{<
zhuxaK(Ba&}?j?uau7}+Thuv#OmC^obzMSq$ZC}V|9d^%9Qpe|S)m@I7Lb`FL&tG{5
zyq+&-`*NNy4ScEZ%Q?QB>j%Nvec1I5yX>Xb5jX!xFeo19`*M*l4Sl)5=dWws3l%qP
zYfRqbh}&&s**&V9#~yuY;!9Is@_i}rrP$}sFx^65s7#-We3^9QU!U2eL<e%<{xWl1
zSu<an`*QyB(v~W0;qxboZmCLE9C5dfF8kw%%TSl;a84X?U0=$5>E_D~zFgu<YhSML
zrIRmhe7V$@%YA7_Cw;lhm+nVh_Fm(t+wiDM`)!W~18nb02VXkU!pO2gN8PqVFQ$78
zBd7IBU#{}yI$t{ba<wnlsPotQGUcc{@2I={sQc+rmkuy7y7<ynN5sHh&+dj^%v9k3
zIU@{RcW(Z^+`&xnr6)IkUvBlKmoGQ@{N;;#voE*k7}+DcrVkX-vD<w9KE*xfn0q@<
z8OMVBk!7V@N0jyP<xcg4ef9OFpD%a$a@(>}cE{#}SC?{{I6#hcfG_v>GS8R!zTE4}
zKwloB^S<2Y%OGFw_hpnX%*nyN4E1H0FGGAOJr>OSwa45$kGaEr8R5%F_3fOkjUPDX
za!_=SLw>-Q(Y{RZWuh-*d>QM@IA6xIyCd$5V{YZ>vL(lY%$Yx|Y}=S1Z6^8hpf8-e
z$v(ePcYin*R54@eFh}&TFOT>#!<U)9JnGA1zC7W}G+)^8abLJtruzKk+l?M~&p95%
zlgE?3Jmt%D&5+XLE;Hn+<H4MAE}r%!G`4J(FVAXU&uB8UQ`XM*WsWa%>B)$)JGB)j
zkr7~cpY!E;Uq0|<oi7V~S?J4~OfX*-`SOAvoH1YV<wYeg`?A=Vmy}aJ_IPk6oq61S
z{kY51+^fF4rd6*iF7;(eR`U%d8;%EORW@Aa%W{>h^<{-GZ~OADFRN9uQgM~f4<-Xm
zo{`^C342+?Jk*oIdp^Hrbe$6}kvcryR~??IKlEk2FQ3uc33r1pzie&1$(N6P+33qh
zzFc_1z2t=3?S%VHs}}d1a6jSva>ys#M^3l{TD4&9soNTVb;A9e`-57baQ6v!i!Wa>
z8PalpTE6z>8}1TmIWH~WGMK)c@a3d0+kE+sUU9N~`QDf9zWnLSU%vd{%a3%!mtQ#|
zZks0phkxeGo(!%TSY!aVk1hMnmmN&GlkV?6zZ-Geopk@8k+EerpLD05bQho0)0{7R
zeE!)q`Nx-?zU=a4w=Wg6$x9AZ;F*z}2hZ=79P-x2`+V82q)L(JZl1X)=fRUp@5<6c
zz8vM+tSsem*q0+d-%z`UPP!S%F|9hTndT(igfB^M#c4SuEh%3-Zry2#rp4z5m2ksp
z8If>5eV{Dui;)f_mn2*>Emm4cc-TrpilPX`?g=-NmT8Hg)7KL2ri2?yOHP`v9^81E
zZ$n(VM9bAw!Xnjbq@`wB&Pq$&G~WxjwbF80T24>%Su|e?xNVXyg(S7pGPPBUGt$yM
z=?+S|b+mY<B5PSykNPLv`e}JI>7K1>OaMxFoTEajHQ-p%a$Q<Fr{x0b)919bPRm7U
zX_%I#X=#?0Mrp}SOF>!+(~_5#aXZRhNV@rHX{>z4*fL5wPHtXrS!q$4Pcq$P(ruEK
zElIaHEfcmiE=luQpG$eolzUOiZJw4EY5tjRxi~GQT6OTP(v}=@%4Jp)Tc_MsX>rq1
zo|ak<HK*jplshoxvJ2W|u}xYoO-qNgbWBUzv|N@JZlUcIFV`O57#a9;#n`e*DYrdi
zcz@ZflzT;5Mt|3s2Cqs>r?gy|=IuQ1paaX_EGxY_E!U`pYqe84Oq*2hl9sM%>6?~*
zX}LZv-O_SPT5e6t4UA`6dZy(@)$frOj)Ly7-(OPhO=)2?c-)-k&8%B@Y*~)yvPhe~
z(!Bq2Z%+%mzKuhe+?>Tb($YIEeHatZWwGl+&F@ss;tvy>-<6iT(=s?ML(<Y;o8Oz3
zfl3CXg~Pl@kqv48KJ{miN*IUhy<j>hADWio+UYPw?$395?g-^$y&w*w((*uB-bu^5
z3{+aiq-8-`7N%t^XE`lTFo)AJp5aZ)!y2fGinRQol1XWP7aepoIV*oCEmM^9YJ_qg
zk7)7Hv^<v8d7SC0e2KPwGA&P~<=M2%R^fETXVNl5$;`BT=($fT(i-_Jm1hPxC(UbA
zcV1fNt8i{wDm-`i<mS|TP9@K$c~R%`N`sObzPm_;uQ3hM@<Li(WX}8UOKDl0mRFR&
zoR*g+H^10-DQ6QNuX3gM?f@+=(dKWb<&Cr~RsLpLmMM8lalEQ6SI)L8(!!}ES*enl
zzPpMYsqxiZHEH=JtNC79K1s``X<3_=_tWx$%0EoYdL`==*ZS@TC7aUnaauMi|0vBJ
z``;lS@ZC^4aGR3P((*Zjla}w(vN<hZaGy`hH);7&TWv}6Kh%~w=^)d1FfxoA@!K@7
zMcr+*sYh`-5Yph~O15)2Y57?#{HXX7w~J+^J<>tGy*jZu2Y8P<@M~IrOUv)v>(a6(
zEql|lL-qej%T6x;wEUHp2h;A~>EPyWb~^B%#U*KXS6X(fCWY*mM}-#Y<cDduGA;Yl
zav&{LY1x;SZE3f7Y#B9~0|(P`NRxqyM+p}=+aA`o^zf)Y7v+=BW88?k=N?bXiL{(d
zOCl{vZVLujm13%JM>0^$K$mHGK2HREbZ_9{U-Qz;|6lVA1Ev-&MM`WXAw@9&CE;vs
z#DJr`-rhVa#|`8dsBYjC1H031HLaTaab9(!oW&a2>4XV+E2rf(GRo<|sRp+Fombny
z83s->&~{SZ=>}F#%<Fn0Z&us<ItI=(aJhkY2F@~2*T97aE;3Nhz}W`QGthv1LSB8v
za}AthVDlFSC7;x`i5Jeu`?ezYd;=HI=Cr&cTY_Spw)x}@Rnpu*3j>V|<QiaAo`C`b
zN3YFqti^oA)4Lh0Dx_~ld69u)10@EU7-*)oW2fgeRWf8oUafY`skts0^ipb|rGd8_
zmR@S0ObL0pfs2*5Qgjtdr{}TilB`Z^C2bT7Kg(;Y<g#on2i4xd-8=HGFwn_B2Ll}q
zY$$2L9_eSlX?Z=2@`Z2m7lq~2yvo4U2Cgx1t${uU?lf?n0lr=BVxX&m&Ib7B5m;<e
zmUq2@Zd!G#fg22TH^BE_HyY?+plK+tr-6rz@-0JxABrwc1iyK?$-vD9ZZYuj;oKL?
z3qKwo$mbg6y$sxD;C2Id80f9}wqQiwuWJkV88d$+m$x?fK(ViZeg;Mu7-`@xj>W)0
z1NYHdE4x2)rbga91_l`5SLMxH1wX;NSDoRnvG~FBAOo)qG=>@&W?-;^A?ov+M)^%Q
z<SpaNUjv^Q<-Z%{@4g@W>}B@Iy!#D|GBCyfKdNWf4;Y}qDT^A9HbCTu?i-urk2UaA
zOM9Gw@oJ5~N9HlVcHSfd4>CCod}m;?j%5myIS56tj(G5;!z0S)7?`W%QKnP(+{X;?
zD~`tvOf~R?@@WQUDS4888JNzaedA{g@LPfz24)(#aZ>Qr8NXh5+5kUJ2#9`Z@T}_a
zbGX?C4(V5m?025_^@4%<O4!$P9GBXpkp)T?DlSrM6w<2~4ZLLFWdn;DLj#|yKd%~i
z&A|HxKH%65EHSXmz;Xj`7+7lHQT2qM|GjD8Ed%@lf!xy1`L<tWuV79Zc-O#c19W($
zfmIxfHu2jxUe&(wI|eGVUk|P^@ScIS22%R9Ax-gH3x0V>-_{xU(7;9m9~oG0fZq-B
zph4mW1N<V9);4JupBnhgz{kp|@QK=|kwg03AV1RJ2ZWn-TwfUYQq{H?_=d~Vz*h#o
zR>`t<275m;$KI+%Hs>&}o*VSY*nY1eJ>A51C6xT2<VOQP8Ti@2F9v=!kmNuN{AS>H
z1A7eY)oA}=;7<d88Q7ske%UyzUGSyH-^^;2kpE-g*w(V0THIxzeY-*mc~lt4e0N%D
zpo&`%)l_Gnfdd8(8rYw;K(#|ze%JuNd&yWhqQl92IeA<aP8v92;JJ3js<Kk*Bvi=k
zBKHjV2BIcnCej8BGe}5LG!<<VmXbi;-UwwmKazoou!%@k;+QC#71-qGG(;Y86E(Cp
z$3!&~)s>%;)z7GX)y}ACqLvCzHF27fOaw9tjC^eqXPBsC;!G1~nP|z5Ow=`l#Z{<S
z&&1g#>YF&nM6QWE6X%*Z&%^~LE;NIjY+&MiGgxJu^q=`D*PP(%(~Go<ncPqbYa5wh
zkq3EW6Ztfoly-CN0##tfGMQ<OsZwO3*hGnmCMKF|E#*y>G*jF^({3=wW?wDTW@%Q3
z4qR-am5DoS^tR!eC^yl`!j%>-G11z@J0{*W(Z<B3X0V4$Gtt(>WhQQC6O~+U;z|=&
znP{iQ_6)@ggPI*obTq;5uCGuzC7qP~Hq*G;#5KxqF>$Su9*Wl~QnRy(E+)pk*0`(U
z^@`mTZ!pna$#J8c2X(05)5MM1_NJ_bo0TlsX54C`7iVE@;1ZA9Ow?2NdYkBDVz`MB
zChj!RSM`UO=%?f^6L*`qXuQqo?yr*jObk*oK=B?E_bQ>yfhIQMVv@mG$yrYa-EpME
zp(ci9<@0A4BTd|IVv31}O^h<}fL1+dVzh}dCMKGAQr#QNCGfN{PHRcVXDv)nlCeBV
z`G}du<ZSIjCN9_JkErBPCa@N(W*Co|csx6HdNoxQp3q)ceA2{IOm!18OuTGjv5A??
zWE0Psc;3V_s{E{p*(PQw=Kz1H$ep8no+6FRRr`6T7tB}5%r*bUe1R4hnOK<B%uK-x
zOhO&+OIi7PjoT|G-ZHVw#H%WQ&BW_UzMo+%G4Y1-rHXGdm^#3WLHe-V#7eDV7*{BH
zJDZTJw8$xV@jYX;i8Wlp7S6Qro{6<4s!Z%N@xJPOZQ>gfADCEY;zN~eHt~gt^(HoO
zu1$QT!p}|cRLf3zY%=k&iBRVP9-o-_G|N9T@$8SK6#h6Ph}f6fkoug#Em{6m*28br
z;C2%~nAmD!n~CqTGx)tK)ALMf{b=GR6Th1Hja!fgjW&N)onNwE{mzwcq9WVN4ikTx
z_)CkKCV!jwhe_VKfNhy$JC(DzOUZ6UemStm#DR+3z1pxcYmHgApK=qX1<S%g6Nj`a
zY2t8J=ZF$c%~2D_OdQY3PntNPJd>R4J)y-34UCi$&xFtYKda9m8x}bBbrt_c+qNJU
zU?F4$n-aU=h{DRF7Gf46${j^24Al_DwRnbw91GPfRA+O&UaF<!6bm)7lA0Etcs}@Y
z<J7F=Gz+IIudO(BP;eplZ`T&;s^!*-^(<Uup`nGdwOC*A97XD%tK>Yz28!n^USQ!u
zC2bd$Qmv8l=0pp*7XNlC8e73$%GoKfkgv7>%lSeJMI6zd++qtQN}5<`ri8+#N=ld8
zEtlIYmRe|Op`6>hg)$2lTX5;WE+Q_ORu-70bRe^haF!WZ?jDq6blPawmnyckaG8=o
zUr9T~_KF=8J1Smb1*?E+S6R5)LY0MmD!<0UL<^HFTx;Pv3!N==v2cfl-WIxAxL$R7
zS?Ffr1`9W9kw&^(=%JiWGBYXZsl^*D+@yqwL?J!D#lo%GRvgQ1R<Ix5o|SNe>SN(f
z3&Smpu+Y~+KMVI*xYr8K5uD$<EZnWi{Vfd8wwbVGBF}^*8JM+ppOQfq1}hn&I8<?%
zB3-IxmXB2afQ8XY?zb>XN%!{xpT}4jYyIC9Jx;6WIjhDipJ0JI35yR}m~3IAg^w&e
zWMPVhr54__@UVqPEKIjBL-ilEFjWbgJf`Gv3-i_B6V|`ynrS3j^;A}q<C<yVX$vo_
z<QWUIxB!(utGGaMwuLzs<|?1Zb)h>6&$;uJKd1P-PCcub01GWFvhafHXSVu`Cwpfa
zFR75H>BY=*<*!;;qU1Hj*A@S_W4vMgyZ63jVHx*u3u{$jxrG%<INr=Oy=`Hog;f^b
zQF%uAu7%YWnipGC<FUrV!by1~?_2ml)ix-uQ~Xe8q?jN7>n_wSyXSMgY_jk%myCs9
zEqr3(Qw!f{lh4$>uatkT>9kq-7Z$#>uthn$<C@AWF7mHc$N_$9VXK90TKs|2ZQ;AD
z{`VHPXF0PslNfCKlL~*%X3lR~{M*7m7JgU$hvE*!KNbH{WLu`wP7Av%>{ZEbMV<~A
zs0z)HJu0cEIa8^;D0?-v--2T!YU6;)4_Y{6;jnVk4tC}v%8yz&rsTMVl#&yQCl#rd
zu#i;#(Zmpoo^n51n^t0|!LHi1rQB8w*$^dA3@b(y4{i-sO3X&wMiU!NZRFUfW}|_P
z^KDeOaf*%8ZPZrf8j7bX*0fPeNoLbKO*u`?pJAM#{7f5X*{GA1XRg`m+NiIRdWvUf
zYZ=LNviw{n=P70`9xkwvYa>r37uvWetJzRVBm3X$)y6jRZIr06K#}_oT`E*wWCxFl
zSS;2eH$dhFcd%wQn%n4U<3`GDl-g)x<5JaWX`_`AwklI{u_DLf+9+3kiDGL-j)FG1
z0k*YqnT^gix~Tke8|`g$u+ffbpgv@x(b2{=su0`)*yv;j=dUXjuTo_3Y9$>Hw4e{y
z+QI4gI&ISNQJa#kHg3@3^@`mTxmU1?M|UmuP^51+DY-?FwKpr_Dd1Kcy_9orxlKuM
z3dq*>v2mx3wjo>=LSGyGRDRILT{iAk{;7@rHU`+3VPmF^du-fmW4w(CHU`?b&&F^Y
zBUE#cjUh?~D`s{ouA`wghS|YcHFKppQfo)qc)-T}%IPir9Ibqe{qLU45m7$Y#<;8w
zBR|o`BpXlIm}cWal|PcLoowSF<x><N&dM_<i$`rdmX$oNWU69jrk=Dh-44!-Pi1v@
zrOkbbK0IyX85?igSZQOHjc0AVX5)2Ln{DGc8_(OAV`DCZke!!#Hs)vT(87W&U#KLr
zjV!Y90#_n`6l~)q8!szo@f913mGg3iMINs*=NAQ>(O9AumfLv4#!~y=ix$e?RQX#r
zmSy|m(pZt@91C?;X>qNMcWk_CW3?6;c2=#?Bz!Ns&=}|UZG2#3o$72-{4kr_>$SMS
z#zq?-F(5yd@&w0=e4gMw)>)>(Pq;a#<<D$<uKJs8Y_sv5jW29`X=96xuT=i6jj!#0
zPw3yMgd0vKl3TS%YZ?E)x3Nbh+im=y<VPF7+W5@|&!j)8<YzjNZMELc|J}wPTHK|$
z!$$Ykg?}pNDeNyT{;l|rB5QXld3avw?yQ{(B^j6Y+NiWqWn*8q_JEE3$}`hSZ<$et
zY#g?6#KuwXt|8P8;h2r%Ho_r9LO5aLBv*O}5<<d8(uNfZ&J;XSHVoxn*1oSKt;jvi
z3<Wz(=1PhBwkk6|$XZ|y^E-J~IUz(<SW__;!YLut2qB);%u!NJv3dx+Xkja^Rw57P
zZLJVa4F&h$JlUO=ZN+IlBZN93GzszfGtLa*tPsu*;ertAs!sh7&IzGjR{!kK|6Ld7
zhJvMio>pb<-y0~W&lj2H?DWDAE(!&=ISoT-oVCzMNv>jE2>-kG$Pb|)t5c|?D1>4q
zC5rFs#aOctnrpEQF@(|(E)JoUN}8`VS}I}JWlA!aBChh*A(X50muNAQ02#M04gLF6
zfl<0Vgmxjk7sA>Q+K12~gqKynV+dD-@IVNoL+BL3mE2uJ=oi9OAzU584Iy+7;hGSx
zRpsjy8Jz2sbXKHSU6gcHWMAE~a=OtYgq|Vv3gNa8ZdCbAA>7Q!^8rf(<Cf6BXG6Mu
ztJaolgl|`Vr{W!q%vz(j@;-{0t&+<>a~8WRgn=R47sB0I+dqT>O702a-cYc2Wun2=
z#}nBgt>RSPAHv`ehJ-LQgkcPz%7-gv&exfhGBOnG7#Rzrw3hucyT*htHiTzFm=(gf
z5XOh_Xb6vmFd>AAAv~m-lR|h<3Fm9Fjx=M35zAauPtn?kLwH09JL0wL<I1Oo@Prcf
zHH`@w!c!qkR|(_KaB=K2LYP0ppv|XMK2tHX3o*RUhA=yX=R$ZsggII@H-vebnY2J3
zGATMgn<SJhP_;!NEL1`XL-7JrU5o7KC0*B))BfTRUJ2n<ty-Sde=UU9l`m0zBP(C3
z<W0r56qhOT!f%BV+I(BdO2t)*?<l?-!fGYdSrbC$T9N$y5RR+-gAmq*@L>q+L-;d<
zze3m$!p0E34`F)<AF0mgA#4s|QwSex@e{>QncnXOPkTNKAu~0M-WMT!8Nzp}z+Se5
z@KrWTsr)q;uP)ecDAe5GtZh}YO>tM##x%lA`yqrML-<|o{G|A6*5=Pje#v&qUVh^S
zrF+^RA?(QV|7FYHAykG?6~aFu?9{z(R|pj$><M9a)+SdIGm~T4o0Tw0_Jy!Ngd-sw
z<;3ZtV_yfe{T@<HromzEikcFc#5ksMTH`FA2;n66{}7TP<Or$>Qd(;XY<|(7?aL1#
ztx+;0I7gU@^Yuz2BoF}vVHGl?GTT=~i%~^KF>}6%DUU1C0a~jrI7M)VppKx1%4;gp
zTV9CPQqJg|DmYC!o18AFt-OowCue4K6f<L_PF+Dg3BrDMrdH#BuHZaDha7awK?A}0
zf|8uzdiVmtg@Q93oaNvmK|{eb!IOeUf?UDvf;$8sJztn7C=e718VmB-q;=u@n@V`h
zdOW{K709m@@VokAS{5`>-c)d@63Uwink#RSm6QrvDlf}QE>_Y?;3_FsyhO3JVjD$T
zt5eNttNgO8<Z?kf<?R(aD0Wo5La~z~+g>TSO8M1_*JS0f3Y&jE@j5|gm2^?;s(5`?
zr<;-+6uT?-5cE`Xqay9!q~vD7ElO@x?3Jy(O|a;V=2T<EdJ9Gh?iY~v(J<aA=quol
z4f_f15{w&~f488&V1No4ZO+9#f}w(8f_nu61@{RCsf8h`KUnQtUAKUmY|ar8uZT4s
zt~wb$LNzI*8>0k|3#JMl(1xRRayh?al#HdOlJQyj1SJy{Cn-LtI9c$Jk|~O`@UY;K
zEPqtVV~YG=VoNp#p?*RzIhK3Xx*(CB5=<Ao2do8V2xbcA3g&Utf@cKJ3TCVFEWt~i
zN;tGp2ODL^IEM>xUcs$Zjfk`}U$Aw6{oMfjIR?!v-*`su^MVC}g$z5F0MGz<LGYsB
zUBPNv6TGa^SSeU6ctx;Oi!{hyUKPA1cwOgic$K-n%48QyRN)Op`tYXUEx|Iua={A0
z+X4zXIwI$b-g1D;D{>im9;>v~JBr%|*lRds<@GplPLT4Nzz2eLf=d1XMew0uz2IZ5
z+924d<E5#OIA4NID(5`XTORD|6Tzo~&jg<fe$Uo!7JSRd2)<Csmx@~yY3eJ%*UG<9
zq_vE<+qC$T;Jd8m_e!=4eo*pbR-S3{vlf35{F;^jriA|gA=n}KQ;WM4|5E&0k=^|x
z*r}X}&Ejsw3dKE&6z)~RPWLG>5oqog9MIyy;LorHl0%Az6^|%VcvQ(T#pA)>><l!S
zr9>VHEhZIH!7sXkS{}ZVv?4$7p@dEN;Ge_>Lc#X`uVx&<Kgz?3k*wSSqFEkO!raJF
zQcbaXw)PYyH53PHkF|hPwRoE1>58=#&rqzR$WG4$&Qe}i@qhDjwifFvo&%h#gbRdC
z&Ic|4h5$o>3xSKY>T;kVz;tzia-b2A3*-Tffo4E+1m}W$pa>`i3V=d@NzU2ldSSws
z08Id{l%@#QDHjV5F3ijlXaSTWI7e`bTLNXk#Xu_r+g)ax`k+$@*EM~kP3}&Y0Bp#k
zEzp`iaNk~6(gwIxU8N^%bs50LPKQ}+2ebz|03FrO8-Xi;P6&2ac1ndSf$l&Lngy;_
zPgr%04&hqhI-oPq1-L=&cLlBo-mEgaF+QyeIXWt{M-GR(76(W_dn!`MT8@_z_Hq+&
zvpR5#*4_&A0&W9t2kueH9YAlOA8;4Y2e=dHt9=C?b_wj$8oQvuyMg||00g@|ePD1H
z8HSqUWhm|i1_Jj1KMk-40fVV&mX9;b=_i#LOezoKbO4V6j{zfqkpPWM)*;^yi~+_f
zAEo#JFj^;$4LO!^z<8P!JP1rcuvbq~|5-Ir)#z$wwbE7YMGt96xvfo6@~{TskxUS(
z8a)n71r`E}fG2=yz&x#@*(ZUSOatI4U^=I!Zov$#;y}pR-7|C#m<`MUp4F^i1h~^u
zfpMS$Q)n)?%}ymG#QDH;!1K&xZvI)Hxnncgm{$zo3-lj&8F(>U%dsq0{wnYq@QQM#
z=m_rrz!G37lL2@G;8}o!Wj1D}=`COxI|5b!%mjv)F8yzs=+E20N?;Z64)89pS}p(A
z&Ki}lEvN5&j)L<Q#$#cu13qLjhjB$1>wyhigJI-#EZ)e#0;enA1bhta0R99%;Zp5b
zyjAg2#m^K!2Q~v=0O>1AzE#PWToje&7AE1U;;&TlHKS2wexs@Wd8K*X$0g75|E%g*
zyiIGr1HK2kbt>7;fK-{3{{Z}`lAnNIRfn}dtK=8ODMi+AoYuPvsr)-ouT#k%+2UWo
z-@pmrB=C>6-KV%yahKw5#R|neihC6+6{{2%Hfu@a`;{M1JO~^D4lA;jqd21Sql(8A
zk249iA!`#VsjiVs0x7@)d>}_9X@1ceh8;#I43kq(GtUZxk9Ul_3YmUG&n}>lMG3<R
zBN_&@7%bs1s1wm*pCW5tk;Nj9m`dVd+@Ue7ro9ZT4B~l;@*0XY!>ASJCy0UZj3&ux
z+KQyM>YNcqoiNT+-XM(g!#GQMUB!BeXNOTgjB^yZ%Gk@f;b0Y?r?sr2<O0QF#S6o@
zD2#?-Gzz0YCAq{fcuM2yXskHp7o$e&!onsY;)6dnDyVK1hEWs-i+AsDM9H)&vqalA
zQKY<S7(=T}lICHwP+@5pZW!gtTPl_*UaZ(kaigZ+C1G5q#ny^#6zTS*O4^1oZn4ec
z<yvf)t!=NQL$<b)7Q19?uMFcV<yR|Sqj;_2b&8!8IWL^Ju3=msMz=6-2;;sm28GdG
zYuRb<FnWa1GYqbm>3i%O!?-Doo5Q#zjN4R)LuQWM8b&V-`(NAgpWM-iQM#Q|8ODLi
zU>oQDKvR9fxKo?-4dd=Gw(bfB)lVgNDRv)J&_9d;VcZkOy<rU0xnM%R+$xtbA9k$K
z;7%o9w8|YE#*i=`(k4U07#7BuFvf;4Jd6=x+#klMF#1-R^^2{dB5S0o(T4}Z7#+s$
z{Ltu1lQ#MPW>QG^#)UCHj7ecU7{-J!CUVw_t@#x;w>Y{@mze64!@-IxtZp?fvgiZd
zo}y+SR(vFk4~wj~(!r=74`XT=Ga{H7!4qLj3**-ng&iVzGK{B~y%E%nU^*4TsMNMI
z!+1K3&0%~I#xr5e3ggW%-U{PctzE1*JB&GD%nf5+7z<T0KaA(Xc%Ew~jN=tH5AIjo
z%DB<Rss|fdZgp!>7%znJVmR0jDSSDMmpH|pO6V%LsV=%UUr}qXhVfb$uZOWDjHN1h
zgOSt#-l=LF^4+?AmxZxBjE_}kh2lEJx5HQ&#;P#h31h8F-VI}Q7;D0K@Bi=N`>Odt
z7<7hS(a8^0vObIrVQdWJqcAq9gd_T&KO83YKT-Loik~TduE<bO`O7f2gz<|?zEa$-
z__g9UVSLN<3u9Xt--Yo#Gp*9(pNJu5mIL>nXEXc1>i?+tQy4#oK{eJgC8+sp7{7(_
zyVmYf{6ld^7=MQGR~UbX@lO~#|Nr)PtA2&zo-p?QzxJ!b*cZlrE}}3ZkzgM?sG4cT
zLtz{a<471s!|+scjG+$WWEcrXevi%F>_ixs@3EQWT%_E@x))hY{$v;_-O8BEwCQWx
zr**uB_F_h0MPNq|iXg0#rA3w~K?F>4S_`gcb~GBM7Muv85yVvCRK>VrP6X8=s2;&7
z5!8sFX5|0z>VN*!iXh|3Y1-=a2x>=gMg(;tI8!D6?LE_Dy$H^ZphX0w5!8?1oCpe3
z^V|r|i=a^ixoWdP1m{O^K_pnYlRWc)ZCn_^MG-XQdfd^7W9Pw5J2Un?Hi>}qo*xNL
zNt|E)l_4I(iY*EYBPfcXID(Q0nnci){T2u7i0gt^p<He>)hvSM>ISbdxLZ=vQi~*)
zMNk&O#SyfMz>T0hf=jd)p7@wcwBI^{HW6GJL0iUrUIATVkm(z{pfz@pF?hKeY^T^h
zg2#5{bIEgu=@`Kk5p;^+$_TECU~&WxMR0Wl*F<nz1h+?UZ3NdvaBBp;BIq1Jmk4f%
zpnC*eBY0<MezyotUuWeuHm}#>iA2Go%gl!t7#FrF?h!%H2yTpETC~Yu9gA*?;N}Q!
zVPDk?Zrz%H8vo1tiV~^~o7t?#%x2%uwrFkW=;FuB@;f5v9l@{&hO@7Q`F$ej7r|Z1
z?^Ns?!T1)!s=Fij<(I;H6-oLl84$reN>-m+MBzZ?_bCoi9IQBmv$igOsPg`=HlgN-
z2u4P*b6Mf|2=0$yR0LxqSbc8s0}+glU`zyu*B6CyiweKYA6`&$#ZQF`oMy8wDtYRZ
zqHz%{db{YHKJEl<P74#2Op4$^B}+!-506;94xbXiqYQo|xH5k@65O*qqO-<}+s7lA
z8VT+nrxOKFFw-KzO(I)Oiv-u<ta?fn*p`ckvp=0T1(~#oU~vS`D4(VHtRnMgwvss!
z%*{&XMKC|hpHuR@;sV8m980$L1tl-ijjZJ8rjl2bACBNi1g}PdyS&#Tcs+t85xfz>
zmI%IzU}*$zG9My%H-fjQW|l9DV7X?<2WB}ZdPM{)BluvG`?d<phc|n_MH3cRMbPZ)
zLXy>7@)7*{UDHn@c#pe^(`?tl!VM9uWm;CXdSCH_2-eZg*8C46Sg(Yfwc{H#A))?8
zhARS+O^P2Y4y)Ial20S}EP~G?*c`zZ5qufJAD=b7VQdrnw%sh>*SDDD#)SpMuOs*-
zf&*NkTS~r-U~2?FM(|Sv+qf3Wnrx5YwZ6^1<B;EM`h5homNq^4M$?04`47rNR{70K
zoBqrki(q#I6&w-Q%bQJiMDS+>zbXG}Y17}8{K4(ZDrfCqTHHx*Bluf6h5tnG!uBR4
z_YH1F%(co%_C&BZf~pAiajE`kRWkTXo071Kq>WX+pX<dcZ$G#hIVA^m6o(W~d|5Jk
zOUcm)jxhrrM4Vtx;HJTC;dlfmA~+dAB7!7W{eGKOsYq~>5_0guF56S?N05%daDr<C
z)8QNi77F*;JRRE(NS-XRDB)FvIDiAnY3kl8ljt~zIylY2>6AN&JIHZRO)X^F^0Z#v
z!6^=EIXG3@vUv?BaHgiJ(GCx0_zFF(ldzcSqP8lW;h>I#2Y1_an{L!~P|v~pF?<li
z*$(PEm>I>>QJmx8Tn8UJ_{70^PH?WA?O=|B1`ZaSn|r>43mja?hyM<`J3+QLbkNAb
zRSvFpkV}0ByT%v)aewgutGuy;A_v6|@||FBETCGif<nbV%qCC&QdHvL{%`Y}I%wvg
ziRw^ol2zW^K??_$I%w;l)Im!Ju7h&=(4(l#!Nm?*Iau^<(UGM^^=21UTwVNP&1S5+
z#6fEZZ5$jvRy3r%_<5^*bV<?BVa20o6|b?%FLQ9YgANWlI%ub+S~e?b@9?{|a_abp
zn|^-0=n4m&IQ9FAuH*}jX+^aL7VWdjiR|K@`X$#mc(P|x9zU45*E$HlU34Ae@1To=
zt`2TsFjp48>l9z_;Ia#gy3yf8@!bboMeTBGvTE&)q8<)<I=IonO%ArNFP`P#W(T)8
z8028EgIgW+a&V7>dmY^7;C2TCG$waA=<VQc2SeY_@8jT32Yns%bMW_;!uDQ1g(P=r
zElJV$g%{Z66!v%U**E#+`-_NNxjY9kwgc5*54-$6C9Umpd{r_;`C|?qrx6Fk9B{|*
zcLZyHxPuW6M$)(S`S(-qV1k2D4#wWy<N*iOHx!R%HV$txMschni{l)uzNDCBqJv3H
zIR}#+etJ}1(<ymrNE70e{!JfpFjXZ}98mJG;v<SIKFVMY4>YGbc*4O`4yHR;Vwa!s
zLz8I^zFyHJwyf!sSu(@HCcAv5gQu0uuV}*JGY-EkDJNko;t{+2SqHy9pZ`<+mUA7<
zbMTgfWe(;$c+SBa4wgE2o_SSa^Fo5Bp#@C5P9+OD*n^E0ag8(Vy0~6+@REa<9V~Y6
zs)N@YyyAd=4v|;0bBZh~^WN%pdQxRBVPaI7ygK527Vmwy=-zaKhnc*>;YAv6?kHLA
zV1<K~4puq1uF}4wP3Uc|tRjooncQ{;Rhc#UcmJx)cW7{6?z@bt6WoKWaqymlwYoOf
zIrxyVa`1uf3B1-~*X(z_gAEQoQk{&D-EGvZiKcjLVxCtE?j=8Eo-li(=pM!A4mQ)1
zC^|>+g|?*+S4Z)sgDnoeV!(CDH;UpL2j4oVaIlBF*1p264!&nfJCNV=w>kJuGm81c
ztoy;ij}F?8$lu}MC+1SW;@=#+{%iiv%<8&L>ONNV3+IK+<0X4@iijUaoBYoGC)(r>
z#b!>ypAP<FwyVt<zZtt7{NrF^-BvplNp>k&S+`Z*%lWs&3ii^sid=~XPtq$LR5{q^
zV84Tu%2{>5!7*l9sQh47a!AQx#UqMGIrYu*seC-EbHc&NEKev&a+|uSlsY^-2R>)V
zfe{UQ4=IwEQCL}SD_PLZIH<pD4M!1);_PU!H#$*7qc}Z^+EK)!h(}Q)ikeYyYs!h@
zlqk3hRf`6jUiBzm`Ma3p%2B}v#f__06sM}@X*BqG5lWlATc>DVog(kS{BM8AKO+hj
z&r*dtQJfjYg5Qd{L!NS0(e_Tob)%>k#kj8nQ}u3b+G$aK{b(>RJkE*YT;=B}Hc&iY
z@dCvQ6)#e3sL0u5!`vwHqG%jNeiZF!oIAf_nPOoSMNt$-Q4&Q9mGDBYNfb?^Xci4F
z>i7V;c@%^6Niy3~!VA1o)nu`y5<V}zSV^lW+$hSUxFm{8qi7oi-(_%>wT_|<2ivP)
zxjr)?UKYjWQ4G-+B~;)NAX1^d+UcO!QSpi>Iz@41G<c78RTMq-aVxJd**mX4uZdzr
zrOErCYooy(9G|FkiK1&1ODpYeQCuGdZ*zEX_uyp!Z$S9iguDmsMA0jX+oIro_l;59
z6vfR^^s6)vR@l4);<~<to$>|i9{W}$d{A?H6n9W3in|!zDEdV4L50m*syi9sj>Uad
zjXMc7S<GAm-yOw(XmBCjKN{>m+<a*Ho+$2(Vqg^aMKL8B_(R_YMKL-WT&wUHtYnDd
zP!1t0AFgCX6eE?~pOue_;(;uGt|E7g^0A8J6vr!0P^A5dN+w0|U{*3Yiiec5ITap`
z1~-zAC_bwAnBwD#Qx&Q3gpz4QB~NAL)0NCnq`_yRn8kG$gB`=OQOu6w4Ng!L6ZY7j
z?zZPJGm9*SdTtc+qQQ<jKZ@s+Jg>M|aX}Odl`PU|zo7V{N?ua_vLb`b;J>1rre2NW
zHRZ1>F3HNN_GT1sMd8yz6w7q(wsUe<6)%rsMHFvGu`<eiFPI(f)vLHLJC%IE%|QwI
zyHTvx+BJ&rseG;S_Z69zY`ae7A1ba_`3A*}D)~tHrvK=F62+%l^_k+=il0ZZS#`cp
z{8EKmlz;V~w)E;7?rAF7s<=%xzf=DGe>8vK!i?glD1PRi97UC?{i67{;;&KsrsQ{R
z^@rjPmHesvum4#4N9F8&XB4|szFV<E<$ILx{f|C1_i5EJ#r;tnP;yXp4k;d1$r0s8
z|I_xk%1<bsRCz)%sgjg(??3uHk24LpNR3$Vl-nfgvz<^35<_7OMKK_Ta17_faBd8d
zSTNB%N1ql8QqhSa8beHZTrnpWEM!(y(_(eSQ)0mmP(!h%N@^*m+NoM(lhf65?HJC8
zp-wEws|MABCoMeA)T*;$sH^gNif5~^zVb{iou?Ao%#Q_IN`n~ASL2jipyWcui(+V~
zy*E<KRbig;##yg2%cLL{Tu?FRi(@E>;o%q_iJ?ghO=IX0Lr;xZvluRop=}J!wRd{k
zf-Yrw%NWYk=Ebq#4OA<YyD^l<a7hfUV`!tbY{gpM3S|gmby*CT$8f4X+NJ;PVz@en
zYt+^DiXCF;sBN!M?4(G|D`U7S%QF*kt?FMN!*xnJYi$?Bt}4k4wwv-BRNg(KqkF}T
zG2Fxim{-t^Z+>IAC590i^IK!+rNbE*!)@8|_KV?m<#(t~Z^b?;xl?&x#mszhuy@69
zw@Uge4p7Z|l;8XRYTg&aAgvv&@*#Ai(j2OiVJe}u;VNY2jEv!a&Yjj$J|Tt&l#f=;
zF^XeVGEVt;#s7IVF@{Mhc~Eh(YCfcV%6~K;jp4Bv=Eg8DhR0)=ssWr6!xJ$~<4&%c
z>^)=l$rzqeJJS_sXzfhJr&aQd@>z<RCbN}iEHDXqa-6S;y*P$fVt6iF`@A+^5W_+x
zi&XxC;)^PIN%_l)nPv5A46o@FzpV<dYt@o$^xnv7E{)+$ReLK2zVTe9^5rU7p-4ZO
ztMqWC+F2FDJ4)VF&DDx)RPvtkwThY1@x!NeG5i?APqE-a;=>r$$FLz5TvKh-eA~)Q
z=5w<cHpPOgvX5i<B!*98_$-F6V*kF%|2&2-V)!zK%^DeA@NnTXSNU9yO}50qx8eNA
z;p<rNA;&i{e5)&(YP^)98sG14Q{&$$ejmejF7S8rxgY)z!wtP#kpCRRFEP9n$IEg2
z8pCffG>RiPj^AVWgPq24Q5-vB_%nuD@nCQKD~7+-87Gc^V%QnO@fc2M5Oyi<k72hG
zDp$m?M`N;Au~Ow#%J=;zRtHpmQ1Ot;4=Wx~$x-FU{-b|V<)-?>UJ_bN#*k7SPtjLl
zTDcJq_S?+7P~VEf*0v#)iy~AKRv!6}epKZ##ke9Z<it@e9_;zm6;Dxl4dtw@$zbZ<
za%vo>#c{gU)>oUgm7kHdQzwoyRen}HSnqYS@_KQct#VqUoOq5_ovV0W91XPge8me?
zm>FI9Ub|r&{VPqrP~h7xp7QeIXdK6NadeI&KaPSpTE*eUgLeUiaa^pVNG%jAj;XLq
z;%E{_(>R*N(L9b8>?Mx#YZ-h`dTB-Qz-o4t*^-G-WR=B(SJJ%V<+V4LFt2_Y6Q*c6
z<@#3ck~mtc**0->RKn($#?e;!W$ORs%G)VtZTmPnD9?=OifpS+aa^hLt29<utNa?3
zT>Bq=zV_`B$Mtb^i=%5Cr(Pc1-E%GQ+MZ9_=-Ul(bdRG)96jT>F^-4gm=ecLaoilo
zy>SeT<CZvRq<0*B;<z=AUJPK7#bI)Tx-A~u``;eN9dYo@3!fzLGMMjQ?u_GZ4ywxR
z8xJlU`o)89C+^aGxU0&f1O3&*0gCsi=Nug`0Pf>dR<}mPF)|*U(+9;dIF4s`*+b$O
z${}<rVHg?GVQ~!CR^+_Lxj!CUsXh?L=r~3x=ldG=J0^~?bS#bsRe7AcF)@zu>d6F6
zOJ*j6%v-R`;}QBcIgUCX=JRDJbLQbV9*JX49CPD%G>*sOm_>i$cs!1&aXcBvQ)=Xi
zIHu`%84dQ!I0O-1RXm-|tIQeH+!5phJDSOe>3lt-E>S`U=xzNXYqpM^BjTfvd2!5V
zDypB)#e>(}l=t-Wo{!_jF2Uyt4F1A67RB*`X6%cq$rto=fJo)Val8`e#~%pi;MF)@
zi{rC6K9A#d4eZ)D-j8F62ILK$1#SpSmAo0pTX8IlV|muYcj8!~Rc|Y<RHWytbRcZ_
zu1Z!bu2Fn1TgBP@KyzT7&I_Z;h9Aa3{~4(DoSGjSZHQxI95r&9e5A!qiXW@w6Xl;O
z^6H4nd^o&04lfR$MmQt8^1qB@OB`Rt@pT+~;@BI<H*tI$#~<9N<JcO<ws`Pn(A;Z(
z7w3~4Y}W|1kARP$`P}=XBI^hB`NueZisNVHzbXF0Q-B76$(hN|-&LMjiGRlN7c;-g
z?6KSCxab?tYk#Z$KXL5LMsHUfyW^<PJmJ_gGhP`-RU9YdNN{n*u|JLz%&4m1KQ1|-
zlfrB~sBvSI4#jaejw4z;8pp9Xjw|Pd+%<abO&#*!1b3`aGLH8u%@nt_3Y%HS)xqa=
z%nGiiw7SH6Gjf7OWahxi3ARK#C%E#Y{~?u&A|K8Nsh9&N2RS*YmV<T`b~FcZesa&3
z_&LEDgehI17Y5t;{67b$<bb3oCpazE$iX=|I5#I)_%#)4u@@z$DW0xaTk#CVI*Mm1
zo~2k<krwJHIa{&5;^mdWE79}lOb*V^!MX~Y{$G%T3+cT2&%NTJ95l>9qa6Gns?GyS
zilY7c3%gw6<e3hWi82Gb><%n2u(TjqK%#;OND`HtBp6UIAUP<gfFMDUqzHl}k)RSJ
zD1wrMfaEAaB>kVhWBa||IeqT=)vc#OS69`{>`wQLI&1!$L;e=pu^{3$yl^R>1j~kB
z-iAyY<O{47Z053(|HH~y$)%J{K;~x-&vDwteA1BITu_m>7*wL>QY+g~g&?_AZAe;N
zjZoc&JVFhsVdXw*Lrrom>SNT}R&E^|>XPeOPJKeOWZL64G_oPxgA5NE+t9>@UtQSi
z!V@+$wPA`26I$mqvzgkOD$tzJ!iJWFR+j%H;VB#T4bGIXHkSXi4Q*|B#)ft_w720G
zC-yke!G>pTXzV}}2Rho&NruIaq#d1Y=wibj>4ptmZFo-h85xi^@oqLeZ^PR*ydy(x
z!;3Zywc%wOy4%phh5<GVWLQsXZyS0M<W4R*`bdTHD`0f`QKiEE1i2+dn~^3r!n|bp
zgKQXV@erAHybnd<U!nPi4X;XDykX=u8-`htuM<-Db`7^-gbi=n@RpUEx{F+Hav5pE
zyEeQhlZ{!UY#43B7;;fHeXJEfo-mFo{hwg@6K$Ae!(^*h|MhK(4O4CSfMIew&xbaA
zWW!vUel|?AVLJU!Y?wiqY1Q^I>ydbQ9MCMQ&e_bJW5q}la%0h_GFxo_K85Bp8|E`N
zb>EPTjNJ6J(1t}eEVf~Z4XbQeZNnFgSx)^@E*6JzDU)AOmsu@-&7{<`g0RwtZwRUS
z*VwSuh8;HSv|*i9&lVfLwP8KOzO!K?C$rSB!S?UnOtN-1(cEmq_k<s);{PZMIl~ax
zYBO(U-)6&h8-B9-AlK->QT<X$mkYOxS-Yt}%j~rxC2X%ubxGRITRwl2ZAxAi?eZ@M
z?6={74L5AKX~RJq4%u*pr4GxIDVcW0hO;&tvEir<$80!m!yh)Bw0bUQal#rI;Zru8
zwwbr82}_HATCL0AoU`~M;XL(%RnH|W_cERR70g?1ui9{p{&nhKR*ckq%ZA&sb=%Fg
z_BZ{z)H_zpKUU56Y`Aa31Iy26$3q*^SWtSEI;0Zmvn-QzyLmfsh8+bMAU+7vVqrUq
z*pX>RmK{ZD>UQ|;C}xMv4!a!=JA8KY8aeH7F~DPon~+*)QkyjArITXC4%Pnen$_q_
zLy{G+BWOoSJ4&TYJEC^;-Y&UtVLKwy3h(Tb;No_q?xQRrMOe199cAo@*%7y!Pi2uQ
z@dzs^YqgtdLVf{G8cIF-puAPKf*sj*^C>8~c9h+fwn0hHVOYYBiUhgQuM#2ER%No>
zxGHBYwaM;O&5r7J%$MHUk!ME@JO2DKW0oC;9go`4&yN0f)U>0P9Z$+UwBs>5YTMDk
zj)r#BVQr~;>RMdSj{5&|zK_#yYKQbqA{#N;*p4Q4Ji)VgPBCYWoMSUPnlrZrwIx;j
zR(7mUm@#q+t?g)I#|zAQ+K#q%bR|DyM>{(@+R=&0_I7k2NGX{o&sr=s$i0VRcD9@@
z1ZhQP(Q|fmWAb?`SK?o^qr2VQ-h0sOV@FRyFFSf$Ga)s$egCJ_0P=7<M%XdXj+dAm
zM19$g!JM?xjUjY~Ql$^C*zu|zuQ4gPuM>t@t%&o675SzeZ`m=?j!AaBZO1!yjFpD?
zsxi`zQ4D*Rnp)bU$x_1@tG01;#xpsAEFF-5$#%SF$A@-&MDu++rV##n=EhVzKA<DP
zsUp*4-qM*)ok2}yNz6>SWNXt>3+fX)W;1t=9dqrNNB-1~&+O(+vZ<S|Q}D^^v;}r7
zl-25h&4ERBEVkp69jEPBV#gPD{A9-tJHE7IDJ%KWj<4)kX2&`^zNNF=j+J(NW5?G_
zN>5f;t7a9~;A%V8uy2yJmN9bg_J1cOu-=YMc5JreJDI%<NS(z-@<*J{-^<mso_g_v
zHMUZAiyd1TwvD=-4W;JEPCItl@w;r}cI>vgw9k&8?f8Ykd+hktF5lG6pNf~-_F7@T
zalcA!AO{$HM2608zH}b6;}D(0R4FCJk6HYO9mg#`K}cPollFgKI{&2kmmN0<XY4p@
z$2mLB+i^jrD^0mT7YUcCm;UE`uULGIS<?D-%eiUCEj#YoagSN4$1vWu<8LPKSn>Z@
z@%Qa`Ap5xkaF{#ZL$1Dj4x};p-_D$$$#e%Y2&p^kCBC2oMd%0@a-guqa=x-p7G+W{
zncV@0ume>ca5~^}AnZWI0k;Dl2mB5M9PnCYRf5j}g^+rxp+=UCRCoOQFa&8a=s?IS
zB~PnJ&8VmY#T_W;KzRpBFt?0Do;G8YB$slaG(mRb)E&f+ILyaHl%*M?O3iTx+GUu}
zh>#=Gfh>o7JT%8gUSd+3&18-P2|`6`t^<__64QT7dS#2HRFeFt<y3Q^x&wdlsXKWz
zYfufUj9yI#YLOqKHgKS}oP`5*nXFHhR_YN_vr8^kL(6}h(8%%cGrOK}ps53mooM1j
zGY6VG@Ph+CGPi{T?H%agKuZ>BMSW5(G+(x!BD8j(jpaP;KwFESkx{bvxzTCQ%A0=&
zCOhz+1Dzb`>_9&U`m@3=4)i2+b>KNdH|mQHJWqImDrb~hhTR?LK__);y~w>C=2Lz8
zI3U|&Un@QpFu;M=9eBfmfeyUnFke9iIWW|Lml-x#&eV!e)&GhEuUXEkj(^`946~e6
z%y1^hI55J2HywD(fwvtPMe`l%NGo3Y@Gd!Z@Be7amwLvM$2l<GfeDsBkszfeIUt9e
z^}r0{eFvsEu)u+Z4osyv-GLc|4;=WAAdw#trcqP<{Mdon4$Pr5lRAs~iL4Ipv2&S}
zvhy97NB)%hndPVI`J73aMT;C*?7#{KR?=DGz*kn}7lbbzSV~A0l$w`0u$<1<R-|No
zLtg8^ItNxc%y(!Kxtiu0YN~tRI<UckjSj4*`5pDYnl~}|y#t#GQbVegyv)h6-QvJ6
za=Dqc)q!meY-dA1Ik3}#T@LJUnD6IP%XT-zezxjKnNrEG4(ydp$qBa;`yBYqfg29o
zbl`Uf_B(LSf%7bKz=0zU9CeuQfe$)x$g1bCHO|tvV>C}Xa9sAZDQPDh_`{lAsh*#5
z;IspO%K7sB!&wK;SoIWnIx}@@5_!Ra%k*U#UUc9RIrT~;xmTnQ4qT&oUA7Uc1}UC8
zsap=*b|9Y<`JMRN%Dv~n9r8cayVO*R_Z@h^<U`r{o#ur6Z~PyuOG~Fy(1}7$WRNAG
z00CBTVM0+SiV=!9|9z#iG3lV%si~UfExMD*g=5n_PI#Tja-xD0J|`3>iaSxl36%i>
zs<fy%p_BcVlj?lXiI5XvCnEHtR&J^xi7DwsDVpV+DD5=oVOcAtj1!NLQ&mYTF(=}5
z<U^L!P~M45CR2ki9~rWp$Z?{wm`)`A|FRXCtVGSVvZ^|fB-e4GniJK@wVcQ!7*0G&
zs6mw$YZ7F7{O=p2$DF85KXqy9I#G|w`c5=-;&E~Vs?^ZPij<Q|o!1jiG<9N@6Q9Wb
z&)oL%M;j-aJJEv4mU2=pvYvLLl@m`o@sty-ooK_X|DIkVZ%9&a8l?|yop{EHcFunv
zrIm_#)`^ZzjB;YM6P=vs?8IOvhB(p1iLOrcaH6LZ&&eg`rX+u;>E^`qPP}0CwmacP
zxta_}UA|scZht3w^V;>H)7Oc9gjBHT044`I@e)CvA~lF0y-mdob>b~2-ge?;Cth*l
zRV#P66R$Zj%!$|Oyg~i1TA2nT=)6fy^{UJp>9Ww?k*TsSZ6y77sj0TcI5C#V=}wGu
zV!RVmoS5n~pENbWiOEj$v%^FuCNV~aRHl}wtn~Ms=4aCPWtGV<kn)q-2Tpus)%+nr
z0;H8`<kXwt8BX)5Ssyzw(~6W4p6$dOCpJ6ry%Te#X(v`Q_fsc6bK*-UmNGfti3Lt9
zl!0Y3wR<dbVzCoTocO{rQ@*q-yQLfgUpcXixhtJmPWal16}&*H04XAe@HbAZVnE7I
z=^7{2(p*QC3cqz?y%XOtxq-To10`9Tm`uI4O7aIMexf5Y_D3hSII)$<ZBA?_q-JSq
zPVR7GC(T_ls^{ao$ud4a6XZRrRQRhCdz~2L!otrg>~rEbS*I>kcj0#@_B#=9A?U&Z
zCl0bmeisfoaoCB!oVek{5hsp1afw+{)iEbdI&q50<4&9){6S4k`_oqBc_;p~_>2>0
zEj~v`O|uK+i&QCo*^0U1#8oG*F`1eJ*R5rB(}`R3(_H2@ew%z>UIhqusN(<Q#9fQ;
z$s*-AJfQQ?@>4bEV?8p@(_P4Lp@7TWC>$<0U4RP(UFg&@tB?ytTqx>7VHqe+kJRVN
zVk~QuV7}PdnM?(^TyVRfxS+b=alz|?kGcQtHUiR+sOEysM*XgTKewi`QuTybO3o-o
z2)ht*A?iYL7fQJBi1b;0|D9Q-TqrHAuzM0OP=>w)2$!|$Nd?4RDCa_X7cyPQlGa^F
zFrb3#|NRX)+x73K(Tc8rA9r8Xg-TXExrEB1mNR*0xg<F?uz4=jaG{?I{ar9zc+`c?
z%&qA{Ef<=((A<T`T&T@+Z_KPZF4S|OKDjQ3S_Ywk3k_X(+=WK}Gx&0Xk|hI`8YM|K
zk^cg?(3E9USz@+up`{D$UFK_ID;J)0;b|Azy6}_>tzBrtV3`{-L=r5J8k}e7x1*+>
z{G6IU9b9;pRdtkE!CYDFslUs~R?x+Tt}Z<1LN{jhcHwy!UT~oolT!bSgdWuH)|KkX
zWNO4DMz&>XtB(tP>8JWLz=eS>jHL6D3xiyE&4pncx4|yFOyBIk3q#2=EONYJ`L9~z
zCNZzOFv5j5U3h~tXE?i&I`Ov{|28$Xv%N!3o#VS!ZKGTmO-{XnjODH(8_PHs#*-&d
zCsHR_xswU+QQxP^m``=#0~bDY;UgE;x$vzE(?t1jk2Nk#cVUJLAG^$Z%H&_|^3OYg
znJ&z7;S(2T(_ccJL!C>VNBuOV@}FhGeCp@a1=NKuEFwsqiwWP_@_%7DUlNwO@D*Vh
zb-9)MwF@iAD=p_67gkxknvnWW=vtTgJs;`3e8XqG%lw|t&n|pN5Z*x8=)xw;*_;9w
zejxlv-D2f#bzvKMyXE}k!VZgf5_Y+;n=n4ZkS2a{VUNpv;F5g#N1kpWC%eyu-&}~f
z5qF#aCi~rmhc2YKv0o+$3m$ag2th8yA)d=&m-#&e`Pb@E7mm4bTxKBe<-E$U6VyMb
zCtWy2I8Buf{7E?Dl3zPAPyZbCJoN(gB2}_3xp0|$#d1pauPCE;jbnJ7`WN+v3pWXp
zdy8<J`nL;r2>)2QcU`zgzE6E%`E!S7NQ?R0DC0KgTYfjv-N<m87fXDf+njO*+~zj`
zAxaP~<VInOi?~tL;$m*tEVdIIR43I%b-UpqNIhP{wVN@;ZH|db70?K}8-B|P5Q5YY
zHS9)&5T#0~;%=0%xFn&J8>I=evMWl!BW{$HGp$)+1ivSrCXdK)qr4k!+<4lJOgFOJ
zsOv^OH!8T1%>k+CMvgTa3Ag;bSC$l)s$^J1E4j^Y_~g1#*=;^DMUE<jsuD@4My*cG
zqt>7r)JLf`sZzEU;W27$H|h|+$S@>J+N$qH12-D7S8~UJTp&@o+w^fa8oABK<20r=
zapUaKm?WQYqp2IsXo@4;+>I8@ZRtiUE9^<aQ`FW}iIn)ZZam}0LN^w10Nc6of*UV#
zDB8O*Wn*Rs`p>!{-_z^pMkhBq%k}D*C0X))ye@8Zb>lf+U-|xwj8Zo@o@YVf)L6+$
z$<dv2tcUc|jb3i_cB2o+d4?N(-RS2wzsvWo8~xdwJjLs6HwKUgvbmQyAcNc(?8Xo`
zhPpAFMP7E}6*pdW<25(by7?QzT>kPc)?t$CHlKa;1`EnSNuTA(Lh=<s`MSjjH{NvP
zEw}jur&l>i<cT-(eTjG2mMoBw?5z|T<;G|?#<(%ojZrYaYB<hqJ|S&9`zAMHJjdI9
zC%7@ujY;g%Wa<ah_o(kvr%<O-Q#XBlNdAaAjXK@Rl^OUk$7d#W7WEVAY&Yf*=2GWT
zKcz~k&)k?#{@ijFxKVOtrerO4V~HE*+&J&X7wo^B=^hy+H<r55?c>a^xN5#<AC|eX
zT+Y;u6>hAQF?3_S8{fFGO0J+YUCvsr?`k*JaB0Yc2W8J(>&7~co3tfYTmrsxV}l!;
zc?mYk^5NYylDml$MnKk=sLT^tZa=W~AE{fYTdCXJ*iMj`pWN6%-f20z+}KV2nfePg
z^_V_cJHNWI*NuIg&%e2Gh#>y&g#FY5)PvNrz0xK3F!>1eDD@cixEm)3e^4dzq#LI!
zKJCVz<TKQ>)Vfjg*<x~<7u>jAxPWYi!WZ4R#1Xhm74wQ4SIO6?*QtL|Z@6)jaLbMR
z1c|>*_?vpijeiJtt=xOOniBTFavl=WJmwCc&x8B~36o?258y#zFN%0k(1SuAjQ3!I
zI35)7pp^$tdQjAZVjd(ssOW*sgYfJMK@UP6*gbGC>GZ(kf!6~UlWuB}LAes?^FZ;y
zPe+of2bu@E2SZ0!l4QvqIiiklvqb}paXGSt!yZIDDC<GYgQ!)uB%!zmB`oLC#}!L?
zP@2gy)JHt>kXXa4VRnTwg_5Fi4=OOLoCoDS$h694d5~ODV{nC>2Aj-2WYf>Fa`W}d
zspLVf2akDB+k?uMU(JIm7FQ)CJ!o1tAvIL@AkTvuG#|BM439hy*6dGB4{Fg&FJLBD
z_Rp?k#XR9bT@UJcP~U?FG#h)+knp$%jR+f0noWF}Z4Ok)KTU2z-w~_Pl+etB<{q>l
zOKwXK{%M*WyK0Vu=u;lF_MpE913YNs!P5-uL2XOz?7=f0wDX`nlh0D6YzGf|H#4tP
zM-MvD{On}nrQYV1?czaKI?s9Vyaz9kyLs?eWiwZf7wL4THY#qK+bfw>_4J?@&E6jL
zA@rs8qb})To@2PDsRL!6c<{0ZFELA;L4?87A=GdGNW9{~s~)_~<ZILs)L|aH?!g;m
zDLY)Ibi17Duh$Ts(A(5Ene~>;@Ld&_PS1VEgOPOJ^<cCIW5}bV4;M1SPIHosr8AB?
z=0c(*FXcoJCV6nxgKHj4_TW7amV5BE2k(0@#e=yFo=TM(rg`uI`9o@s2OoLxeM$3V
zr+YBNgO5F!>A`H~&az5<B6I8|Gp5I&?Cwz$<}j=OYLn-A@Tmu%c`)CD&plY|!4eM^
zc(9N$i>PM`n9J(DfAT~(4lvLC3lF~ZV5ywuZF4%warc>uqF;Hi%p>16$(7^v0=X+Z
zSSf4DgI%oW8xPicu+D>3OiKJ}!Ws{Z0!G^c#<xsv@?f(E>pl36$qm$v)PV(z8CA`0
zfA7H$9&Gbqy9YlqYb$k&2i^Y8oKV2HT+tl!+wSb2=<lEoIGJ;6klD|B11s+K;Aanx
zdT@+czj*MQ2fur;$Ae!z*h^C)_YvB9bCgFD``*ah@4*2&hp7jthp6(^IEn9A*KGF)
zoi{a;k9%;^gHs-yp!o;2NH4P+a-3%Jq6dEx#5v=^S@JpRdFlmftNj0#y2RvV53YFR
z0j<X70*2^yno`5xvW_gi;lWMvE$VG*iJ#4-B*z_D>2&T=?|E?Fg9qe7UURR0NKW(O
z&$*TId6D0Xkwvr9y(mCOIKzuX!{q)@LLSyxkmkU=+%YXHNxT&A(XvueFN%4g_{`dD
zUf8{u;l;;ZIJ|Ir@u(Lyy>NNqW^<Lj@Oa_%qMR4yz3@pv`enUPz0kZU!=&zo-;2`Z
zfEPglFCt!in3KKbX6EiaIU%q74YT5?Lz#<S&yIRA`D&%&UR1nXNs_`PyeLVtlou2G
z<cK5t#<2p%nnx0kuukc!JONZR#$?=!w&l%BnaO0f7deD1Y6Y)6S@hpmjRc)a)QVo*
zs%tKmTqXtfI<u;HQPqp2<>V2nc~PAZC~VGcIchLzc=0++r<NCwdGUf5FM3hii#lFB
z<wa{R>UvSni)LOl_oBX4XG1R<keAgr%RcT!BPPEZmD$*fCUTjURd|9<u~<%1CWl_E
zIQ+?+7BpK?TT-QXtGhW*lApa-VcLbvHeNjKMQ1O%&}{2PN5V5!d^<1NdvWZqN*$=r
zQt$4_7N=9Hp3lt_l%p$?-Mo0tD*Jq-;`0`7IB2e>?p}=bVw@K}yy)pgFE4s~G1!YC
zUi4vPUoZN3F_q(1>`tZrUJRf=zKS{WatvhhB`*dM+WeC<qf_=!FJAUygcomm@roC(
zGV2X5R@^qP@@q1rv$BWD;Cs>Vg-V^<WIr)I`%b80H5kJgc{`EtmB@a}i?_Xaht6_G
zr9Y=;j`U&_lka-*)%^-`{B$;RG@UV2sr<kf6~=op!Ha2hCR+Z7UQ8lS_ToJ+UVFRZ
z-J`MhWsMBXokE>T{eUXw)Yazrd?ZT=+0{R-Fr8&n8~aQzW_fYniw9nO;>Bz)4ta6d
zi#cA*^<u3T>li%Gi!Z$R(u+^M_{@v>G#7fYNY;)Q(Qf8YERc~OV$Pz7BPZIZ;$p@u
zk$Kpn(%6#OqLQ`Li)CIcXVzEL){*S52`ju<DIK_Lc2$n`brausQEOJtDlf8*XRoHN
zkqx19jwA~o%l_7j^(?sGi|@SH;KeR4cGKDD#bz(Q_hJ*1H$KWdp_nf{KX~Ogo3gjl
z{875`e&!bHRxh>@#AyrTCkC`m%h}<@PIAwM=6U^0{)Jk2k9o?Xdt^qf&ivJjy)rWX
zynSB$M)=)}{xHND>(3LF-~(P9WLaTlRpt@$Y1sz7I4U!r$>Y?MUYzja57~COSM=y$
zwl2ph=8k=kdB%&g<m=RPUR))d_u_(FCK%g1ITyXSM03{PnSC7Dmt_?=vaiU6o{%GO
zjafTjjNY30mlrp@xG7tZ7kBC3_Cm7$@uG0kihs+XWmocqE8da)He7MauI#|t8ikz|
z?=dp}y$ap>ReVU69%gXsPV*rjAwO08bRTR_o3BR&e1H!H=@%2zheAFS_Mr$52`I{}
z>T}IgJ}X~uWYXn>+XsgaP9Fw@%#oMl;F201t9~z`QF@loa?);BP<_yt)O{#p`F<Y)
z76*L@3HuQ7A?iaZA4>aBoVk-8niHmk56?uiOHvCJG%}lHciCh%z4NB2k1(>VRa=Y@
zr<Ri<yUm%L<wFG@Ms&rSU6JiWjt_TK{G%e_Lq#7t`q0UTN<QRD(*=#zK2#<MH}#<k
zxhgeDtwya*m6$vqYLE>d9`&Inxseas9%f2zEhZnM)~43+p)R2wwLVoM8xR`$@Hk=4
zQ`urRW<63>6Cb`<nDc}Wo1!^89weGsrJDQDg51(_S`nV~;VH{mIW4n|#ZMF3%E%Df
zS$=y$2kNs_d3V&=hb}(sRIy7nf54@y4=?)A-DmQ1K6E2IPkn(Z4-%2A9zOK+VZLhq
z1FM%0y?xlN;AaJWeCX>#H3iibGpnBuXMH&5Lw}i0J`D8XB_F=`;RhcE`7l^&@Zocx
z`46BWKD_F~YviHSmwkAJ(4GI?7)BoJ!#E#a_u&m6hRfxqImU-K34KbYrGnq`;cYta
zP)AbVrH=BM&k`R^6>!zgNR=88FE`$Y4}JJZx*9Jx!H0>2Nz}<c$TJ__qYAw5!xZvV
z%lUv%u~+)+66L1(@UbL)5T5SC41%;J$yqY(v(rCePZsYnf5dz?c@A|hb)HPuWf`B6
zCEzo{+4|)c_^{B2?_|Wz#TQY(^kFGsu@6gR@{k?;udc+%@s$tDefXOGGOFBxBK`^=
z)-!qRn`$e4_=dcSx|+I%x|S;O>j>XcrT$bU8+=%GvC2m3CaNSi6U=}6%Cc$`-|fTC
zK5X$}E0f!NxKZ5vf36(c>HI|9Av2J$i+X*J8S{$|dwk~C$?7Dse)VCm4@Z1B>cc)C
ze)HiFvn2O-9}f6%kjeejr7e=b9WrmDnAtN!^stqsmrOh6!*L%@%T`dR>IonIkhNUU
z7+*Q-qz`hO@<CV*xx{h^{K?2OR4F3nc^@wL;8oyLa8ZVCVCHS=C7(QK*SJi*LY3rI
z!Zqr3>R;3wKHMZo%q_yHR@r~Eo;yC&@09b84|ipOEUIu%rr+AkVv5Q4={)e^At8;X
z`1us%SCFnC!*U8KC_o0apymH{Fh}AGGg(AIQOhs>d8SQ)T`}8oP@UBIvnz<>Qs8FN
zLltL0K|@iXDyYb1t|`zJWGSeiz^~xr1F;}gAfU)&bq#@#g0S>(QEo&*Ddt8MytN@u
zoZ<>bIO8RlTar3+VQy*0l%YOCElZ72<J5B0^3+VKG_(x`erTM?R*<70p<sSNV|77e
zb3tQgLF0U#Y9|UBl@#PEs4P8KP*p)vkw>{2)2=3OO62|I!-B@9E6IHik}?DH6x2{K
zUBL_mhJr^GysqF41vM4aQqWexGYTG4P+P&%iu^irypAHjQXOwat*fA(g8B*?C}>Vc
zvKlIAWbxw)lu{MMY^<P(f+sA$z`BGSO%*hgi?}W^r$ByD32VWCmNX^#q_o&S@f5W+
zRg!I(D^PAnuJos!f?fIIeHHXm&|X0Y1<xwzsGtY^P6|3Jcuqk#Cc99({*Ow#&olWV
zRjPV{^$SQ?cd7P7Ok#Q}=%t{yZ2k-z@MK1+5&`*ZWPb%W^2MiKj1}ygH9*0+Mu~w`
zftM5vvUsq9A*_5T^<}D5{)&QEEq+bGFpH)5aG5qTg%rH4pi-5Lq3aSI+Ge~d*9g^4
zwyXAzf{_ZQD)>MySw^*Y6^v3aTEX^w)h^_#*0W>Q7zKq38B-LDmC-9wZ5(wxbpmxF
zbrN+lRi?yy3f{L^O4({vORrV!L+MzvjE@vdQ{=}`s_kiCrD8_4N!6;Iu31fre5_!m
zg0%|PDVU|;69sb>%u_I1k>_|P=P2eL;wfYZ3zRQpd`f49%&ys4pOG6!v*#=LT)_eb
z!V49AO%Ps0Sgc@)<$R&wOY&0cSJY)z?s8cXvnxo!e7`1^F3eoXR(dR`^o@d5GBFlZ
zT1{O;mE@N9D}Jk(U#HxlV55TdiuuLe@2H{S<ywy|x5=DBSz8rslXE9a@_Pk8kn0vQ
zepIkUfq)#Bo14D{zg@vk3U(;iD!+C*KdWmYW2XY|qO4sqiwYS6LkbyU{vxd?$Wu{6
z#jgtXDk!GHredFh-xQowa7w}NvM3as;3&PN7LWlvKt4#7<RJxz$w#P1E&mwdxJ;o!
z=EG6{VDi9snZl<P{Hfp{1$PykQE*nlWd-t@a!$c{+4B`#V)BAq!9vF4y^{m(q)Tqg
z{>kevC94fi7JWH+MMg|PzP?G{faEnfP03R5mn;O?Cx;~ExUJx(f?EnU6*3Oa%lfsD
zak`N4w}LwixKqd|QrPepHts37FMGR+bQKR2JXDaTBA<%&i?Xz#$wRfO?b}@K#eT_Y
z-ID_bCCe8!GE@{$0Tl&B`y?lJPj(xa9MC-(Tas0?ce0R*Y9A;2_DvR6QAEYme#xTL
z%7qPKy9$Sj(kjZRaH?>r2=m>YTZKo3rb1WYRpC>is8CtefPTrUgOV)<Ca3pKemyuj
zuX{2wAn8{TP!UuSQn7eJR^!6P_ybix8k~G_aPm~2WN>iuT#sZ#MN~y`6(v-ZR8dNm
z=X@F^ha|6UPHF>_Eqf;0FUq>|xp|AzBPz<O$bP(hWfd_MabeY*HmfRTl~a+7mA|>C
zy!`4xc@>!|1hS|C6$tWrox}KqYW~VbMXEq06}c8mOcfPXr8YS!71epx>pso8@mbb@
zY_ktry;)DxtZb-wRK*)AhO4NlqLzx5Dq5*{Ohs)K%~-0Ain>y*ibg8xsi?1_fr^GI
zx-7{WQ7UWg+$_0p(a*Bx>?z+z$y)WWTw@hYR6L=gsf>n_b;XyJu4Ji7mQBf;(xCi8
zZ&ugBMswEOf+~*=D0emMNfl42=%=E;iq<l8D!Qxaq2g&3ZB;z4;sq727Of&b?(mF?
zF*UQ=spd~Vw5N8UO7dCNd_&uj+DS!cLKkXRs^mVWq8nM_CHbO?p)IpwkCw09AZt>~
zEN_Rbo+^5&=&hoUiVHQfmhY<~Z~O+9$?B_OOHNkr!bbI~Suf>ey*8uD0J$7eT*b>O
zUQ#hg#b6afRC#Epkz1?U^uk8DTGc)+Y!t6mZCtHtn+qGS$SJ6JO~o)(o(X9<%2Yg1
z*f?3(P-|7&ejxjGj>e_J=G`A7RJ^HT9-X(OLg_I19Tg*0j8!pC#k(p-sTeJzApz%;
zx268`$?r}l-;GwCcsO^=<z%C4vGFP<sF<PRV-*usycIA1@wlu?r;?LoGSA48W3r0(
z$nR69P^VHqpngdGh&qirohoHJ)vs9MOmgd@tbT`c(-vgSQt^q3*(&C!n9JUJ3dAp*
zNv0PuW-iR~zFfKNmE@=9Y|Q$MDt9vpf6mASDi*3(B#TSM_jH!1_(Jvs@|V<as7qCR
zrDB<Cz9(6sVx@}ZD!!JPb0Q|=CNJWm@+Lu4-ZhEJu}Z~i6>C(iRk2PrUu(XVtF|uD
zMZO>*KU}`5!p}=92z<x-S4~OVpkkwnO<ZD|RowAq$xbN$b}!eZ`VWlxk-9|!RBR(}
zSMd|OA@%H_GnC)=Q;L{ZQ$AYmrg@Q{Mt`RMLfs>;0xI^({?FtQ6-QP4M*f{DW%m;f
zP!CcMQ4doi*J8(1^VRAP6(?03C!e6o#{}_DG3+e$H1$vF8LE5^k|xfP&r>f@Wt7C1
z;}VmXRa_y6b5+GPi?0*@qTZn1RB_A7y{+PJi)F3dRdG+|e<KWQg!{7j%jQ!SHOu0m
ztX~Z$LpT*eJ`MRbJRL&Y5YjbdXc*|nOMVp401b_FG}cj2Lm>@|H7wCkSVIvF&uZwX
zp{Ryp8geyM)?m|M*AUSV)y$_&IyCq+C>k<@ai<2C2Db(elU}O$U4wDa^X(G0)9I>)
zfMz}b#CbKQX=sx_u50iU-igK~8PpKcP$Pd_Di0H~ix`qDuAzj6Yz;XYN@^&jA*SKP
zQ|2Q$N^5vTLxFI-j0UMz9LMQ&NtUJAXh&{bLpcrQH9TI#$YSfo4<<7;yihhnK;kRV
z40lX?cs#dz5hJ0YqJ|E|<L?wPDrwk%B__x9u=$XmDjI5QsH35(h9pOzng&BdzQSp%
zIwh)W$P+UfuR#^q+c)v3hMF>Z(ReMn1RWD^h2r-9iN|CZ`zIt>S3^AwEj6^#P+vm>
z4Nqujs-Yn}a64cQ-Q#kBG&Gih>Y8Yx;m0nCIYkUnIb@WYX=pC(7M34pkLOLzYay2)
z7?%zU3p}aeDGlv3wAavD##zHNye>~`kofgQjQvH77tiLl)gUZRi=GK-@w0QeN7^Jh
zXjpqCw){bUQP~GNX?R`+O*8j|&eSd%x)Q{Bj?j%N-}QP?MnJ<P4U;wW(9l!EAPs{x
z^wQ8<=AMR^H1yHXS3`dd1K8(VMT~w@T*G^jxb(b9r$nU(`31_vGd%GOffNtXFjT`B
z4P!ODtl<?6uWNWiW?ejEOUHy9uWEQr!!QkUMYN(ug`$QO9Ij!6hIggIMGZ0E)FAc0
zqnRJX-qP?kK_Vq7{zy$8QD{6~)M$JqHcG>228%zus4@R)zHu7H%Os3v4C|Cg^=g8K
zi9Ce?Q}ZgU$a_!2`x@qH_*BCb4O2DD(D1Q_4>WwJVLB(<N8~f<=1EP{ARxz#qK2<i
zV&>I+Gd0Z8Fjp@6mDnddwK-A=b7yN<L6Cxbiy9|7CL~5meWqc7EXGa=Ip(v-=NcsV
zN>O8><u8);Tg+_Y3k_dt_)fzH4NEnAC3R|8sma5!)0W99%b(V~LdJ3lJ{T*NKmN6b
zkr{D;Z)8X{tYiOWE&S3hv0B3#nIv2Y@~a<Wej>ji@=wOMbYv2)XYlCL=^Hg{(ojK1
zwvNpjzLzaUhfT*1GM_b^*Kk3@77bf99Mo_~!!`}uHT<GskA|N#?2rLG5ZkTc>sY*Y
zv9z5UcF`$Y%y_4&`I02Z&obFg=Pvm&_g4*jW!W-dpN8Kw{7#mbcszcnW;{JRUbC3_
zcLq5QFsp4b<FJM!8onuJoTYPA!=IWwZOJ&M;kZoQVn(k*@e@`(e-KV;I7K*39cR^f
zMtZ(7(Yt8;9DPqBLmIlM;gW{C8t!Shtl?HHeqF;~47j4<s)lQFn#JTbJy(KjtW4Zs
z%q<PKHRzS%H>EAs|F?!a8vbEHiTsDAJU?pwR|!epmzgZvk&gU29?E`bGf%TgZahtw
z=j50ixSmYck)Z>!;p^t8=HzD7uo(q(+&z_dXkem{j>0;M=qRe=*(GM3BfiNKm7`Xv
zxVk8@b!DDiheJnk9VK))b+~jWI#eBQ9hC+oJgl~r&1k#SJQuGHADz6y|6VCgM?gnV
zhfd#5ZFeFm!66;<io`#*84(>L3dh5`JV3^H*Jea@)SjDIWi#rp%qyv*>78U5T^{#g
zlwymebv#`<ZWJjXH9VrDtd5wDxQ<N5l+!VKd16l4czGS7=WRxY-H6(aYIY+_0?Nk4
z%+Zn1QA@{TIx0$?Iv&+gQ%5fQW>72ZsG_5)j--w}I@NTPt`M)Tqm|vbo@Jh0lN?iP
zFn4_Uf6sT#iDX~9@$-`09_8Y}FLG<^sH3Byj>qLf9Lue%%PssytwenC(nLKSW9&wK
z9Sw9y@!O|!WuA0gnfLr7rfw)6Z=&M~9nbkuQja&)(M(p8j_-9e*U>`96dhA_w3Pnn
z=%S;mjwf|IrK7EmXLPid+#|6O=VPL6WW=QP^RZXec<qb1OV%V#-pSuiM@JneeDU@=
zHXe%I@x?pH9MI*hTKrqPA=*htXB~Cx#S_Q!L?!Y$9o=-ispBmj&+B+W$3Pt~>3H=>
z>_r_tb@Y;}a3t1UuA`1u($b{$?&o9PL$TiU`{@wwqoXh3xeI1ie_j4N5U+G4Hh^X)
zHGchgY><wZr3M{?bqvulRF{VU7%!YNYrB3ZHv3HOt2$oO@w$#Tq#NgAqmVX?J(q6Z
zN7`^5*X@S1K0=2SDeN$$KazY~$2&U4$!O~s$u5nNiG3pWE_oDnG*!+*trs85TxqdD
z{<H})$CUW{(#eat6Lm~tyUWhUCewe9Dnl)umvNSu4|IH};|m>M^1MFM@rjPvI;QEE
z&R)%sX~VXphcdjPGwII~-&tUpv%nl3b9F3`b2${7r{hx{{V&Bnm-!=e=|XHiRiKQ+
z*nU1HJrPbijD@_Ki)3OrjK#X#2vcB*j<+Y}NhP97b$q2`jgGZCmg!ioW3{ZcL$R-Q
zY&aUrybxO@%^i=e(6N#r{Ec+`Os>Gb%VvO#uyl2uERFNAZ*{DfYwa*3>pRZ3O)Ry6
zETgeehs-pAx+`<@*Ny+6<44)7{7Cm>i;k^2&gwX)W1EicI`--KO~+3<cIeopV>i!t
zn8Vmfkjpp8Vf-vhSjVqCqsNcNdew>Vk#RU`p1usuUe4!fb>fozUB`YMr*xdwaX`mG
z$<px$2lJ4QqdJa}5A!-6kqzqoyyS`4*A7GGq!d3c<8wZ?7-=VYWtSsOrdfYQo(2>9
zQ+A9i<|X#a8^uGhGjbLg`DIwn>$srfwvNAbTx8`pbxb%EyQJf?jw>=yhhs8m*K}MZ
z=UbU8&UM*-56Aw}af3y6JB*RXV&dH52+Od)vNHFMj(>FA*YSWccXhO>8<(cbUCh0w
z%RR{E(s;;TrTNX(Bqt(0%tuZoGvv*`A4xx|`Q?W{QP7X5AI1GB<VRsYbU*xl6!D{|
z-&`*~KZ^Nb^TX{om$TguhaWD#IS*w_<Z3#lsuQuhYJ3_eUZJ%Kj~`yYIfhG)<;eib
zXefTU-Pln5Sa>KV6HN2Vt-(gUW3h89asz&Z{PLT3=`x-{DR?O6(c)o0B7SpH$(V~H
zP(t=SKjMCr^P`j>rTsXWmiCArWu)fIF=3gO(hcFVesiyr?!^ewdU@%&A31&`{E$|%
zSfm0~k`1(YHn~#4G$~%uk6b@0`>||AZY8QzTU)Zu$Erw|{8&&gE)!VlUzw3!-H$v!
zTKmz)j~ad$emvnvQ$HT{qoyBq{HQB6pEvto%a6zW=H!%pLx!=oAF`!LRrUO+FTNj*
zIHV2aGO2M{9VgXzL%-ZcZ3whg;*I@iBG>3dER~dXDodc5AI<&p_t^N8ezcI{$78K{
zjRaaUDV>zIKFr83F;DsB7ednnp7x`yAMHhz_%nXUjB4mKWDwf<&G~r}X)<~p{CL)n
zjxxxqIe)qkI#E0O(e0wyjjnRBF6PPr%1+YFkLUe(!H*aH=<P=zzxhG0yB|IL=t-8h
zk@5kpmml)hQL@e!N|QISef{z{j{N=o7$7rEK4|#O_y650WC*7|%@x0rZ;&5@{g@KO
z)F6iVG1QNW0aOa$W$C#euicGZ^vnC$_^W>G@Z*OU60i9&%#YXoc*BpC%o^^;2tQ`}
zF^kDJ<unOzQQxM%LmlbIyM$5Han#X%j3G!XW2K)?Lty;>I1|Z}sFSJhQQxOZ@D!Pc
zetf{>hki`A{Ez&Y=9in7%?d?l(Epg4GCv{Dx8i3L=J+w!a^?{}^~)Ds%t08(sy-(#
zpf03J)*?R^`>}+{FZ}pQCbl16TDeOJvsipN`D;<aivP*_MkX7RtNr+%AT_Tctfj7_
zeoI|X{f@f9kBtP0-$d9<9e6VN1K~&N7V1{&HtKe&l=?~L#>u3>PT4CeC3pF;TUH8L
zlE-CUk@xuVD`Br6hppUwe*EUg?|$sJoP&NGuvn@+M1HYf6{$*&BTOEp9-~UY3Bn)L
zlhjjGi9b#FlX`}FmU_;Q^MngjiCpS5e4poD^5e1}SNyo@$2Hkz11J`N_}BfWKJeo&
z!VT)P7n3(-F<wmG^5Zt0zo~bq|4{Ez?@{klC0?p}NKOkNAM4Lg&7h_Skcuq8qy)>a
zuotwr5TP)&NB}>w+Y)07z$<0|c4j%K;yVLyS?mtLLte=~C;_Me1Oo`s)TlbO%ICRK
z)=v%uAPq@UdLAZ}2_QlcGfF5PKnX%gYAI^z0Maj+CoB3$0A&M+1rQG)hq>hfC{M@^
zAd_&A=OSiS02O#hSuscTt0Evrf?+Z%aszM=s4^^o*8`{=Ko!|`b|$L^P%VJ!0VJ6e
z=d#lf%?qGS08i7b5r7fEqXE<mpcb7L)W-s7NT^M%L#<1d8tM`12hf1<%+92kkCPiw
z8wb!NfG5b!s7<L7)?jC{IXP8UoR&<s3gAh?Q`FYfRL|Q6@Js+b=(MADrApcM0dycg
zOYKPQMD0wKm@WaNPW(B`=@!8A<QJ$fQoB<nSc>!vpckQc0D}m9sFKw;fPUou)B)6i
zR_;rLd@f_K<qQd6DEVdTE7Vs5c#V*X7kwju;Q^ct;9LMB0(dikB>{X9z*_;l9l-1W
z<^=Fg0P_#TKATqM!vIDG@Gg_10+>h`O&voWOO@bpgz*7Pu$-cS_$2aV%XyFRegIPl
zQ>h<N>z+(XB_ENeQKwVIoDsms<eAi2mj4Oi)P>}@OSwfZ=St*UI`abf)Qb5m1=P<2
zSYY`J35x<)Ops+_p2DTvFQxxu6Nds=8o+}~xnBh!gRqRcJb<qQSV0zZYXB?B-vqEK
zfYp}2DS$NrtPNltoek7)16WV^E&w^CxHKoakt~ohHwW-NogZX-A#4di4hcvV*%rX|
z0DcN!2hDu}>?G`=?xOAv;AfVSCgk{qCn)v*%G|xwRGq((f2Z!J9thwdA=OVQept4k
z%ehCW0!ITlMm}yiCkTH~Pf|}&PgDO4;0!?~gA|vsJull)5V0UG1aL8cS(kDz1#l~X
z+vLjuTp@^mHGpdtUk~6fi*FEa29Ow%E@6KMa3_G@F6DZH_=g~z5yV}K@5!!CeqcEd
z14s*+MdZjw$R9*HL1seAFAxOi6tp4>1yMMNB1{$y!eRNvg0NX^4`S2BWS>e&Cmk2n
zO%*d$vzJL9RS7~3LJLA?GD`JRB{&d7(Be=K;UFSGd5(mUs;8XGD9+px)RNRvL6jzx
z3E~lg1pltZ<q(L|=^ivEdAT6U2jy3l(}gpG$O@X*q5`#f5ZOWG1d#}$Vh{~!Rth3F
zh#El{K~$!bq)MqOK~yDQC}>`hYL;I;h&+qsjl`ot)C{5?om$k|R_<ej7mp{UcpY-x
zAV!`{N-1&b2ho7$f3-c%WTPM&6Pg6&PGqzHO@nAgsNpgsDMt!g1ko~xR?K=bh_*pI
z6U0+Ywx+hBK22THwVD)cM}9VljzP31cc4lWlG`bW&Ovkw;`t!D(CHe)b5`pTkm`m6
zzYxTWL8MBFnF7%sLG)z7UeuR^=uMEaeF%Mn=odtP@&I|CPZ$`)OF;}G52nhPR2`Bo
zhZG!Y)h`Xb62z-PycWc;AjUCL0$wM)6~r5sGdw6i)n}g3o77Yf-wxs(8GkEgG~r$9
zC|S7$)8!b$<X9_4x-p(S!Ez=BF)4`2OuiSy`veJ-w&aiw%g>d5AhR@N-g*6D5FZ6G
zEr{u|?m{RS!i*q34&tXEb_6j~N(J$C5G#WCB#7BTEDT~%5Oac%AEPhxAoe+7ZV>Yb
zVtyLLXXN?R<}O3b1>{~X<4q<P2eFLKfInhO2wzaY6eUQJuL#2~B!!ntH(bU_IfD2m
zi0^}tf~y#?IfzE*ViL1Dh&5K(wLz>Se@k6Y{f@eUx{)fSHW7Yx8D}OYB>97^l>4zC
zgSf<gZV6&51GZW5+k;qg+H7uT5W9l79>iZk><;4RAkGDGK8Rm}*b~H|AP%Q$4r0Gm
zb}wNc^|v5?Cycyj)^>n=kXpoTj@S|M8R}8$G3s&Z3F;rzlhjkx(^M(`XAlbOIcqu6
z&;|042eE5GTqIwTDSgBo;mbi>p>vhm{fybG)WF`LlO8g!_)R&rQ?Xk?+@|?=5ch((
zPrf6s0))F%3I6C|?19B;EdG$m@@^v^lM<7kP{(a#giz&FtUw55{)oxZ%xx43p>PPn
z5JDjo3882RS_pawiF2`HAvi;Dg<xZGyOerh&PE5}m$NZ<2sKW}ln^FAh<O;}wOaIr
z<iP^w2+N_;?EElxii6+}A@@uyKy%7bb6CP5)Oj+iL<l7bkr1MUQ>Bx|LwMP32$Tw8
z&8^%r(zonnX|f~_$C6S|zBN%cgjfji5XyznCItCPVZ$Z~rAbEl5Hdr^3ZX&>RYMT7
z;nm#i5Gsc-ze(alw~-@f8iGJYsz4>_9(k$TkYp7`N^rkZ$z%xCSV{E|^5on@*y=XS
zI-4Yn5SoV2EQCixs2Rc^ZewVZM6D1W3!%20O9=HtXb?i(R3Dlo?yz9JkbHwBJyk=)
z5TwITFyQeJ8W9>>@l6QZ4rQETd~^9PKjFy`T7+=)P;Sc*T7~4kY_mUe|H>7;)Fkm#
z2%@c7RzQX&zbEaP5ZZ<Cb_nl;&^~1Ts`7x4`Ch#P`B|!%9SNPNokQqi`CUVJE`)AO
zJ|994%YQ+xxW(N=<|lWlq-O}dX!fS|3!x98uN7H(f3Ae}XHvdwBRnvKmqO-Wb>xHp
zAekgud~gUu2t%pjyi9n7`YQD`>M-i-)HkTZLl{AjQg0I8qQ*VO$PnHY4&kei`5|;v
z2(t*ILl{FC8^T1wIO=$r_MhiYAlLAiAL`|pB$J<x@Oy;!sZ*#^L->I3Ayr~NB1{Wm
zy5-CW;bV(uhUB*He{24P=IjvW5av?nQ9q@AMwL3}hwwRh0d*mD5p^+DVwQyPg~eYI
zx_OLcAuJDJeF)!$@O20)WC7~&wbYd%tR{Rzt)$0Sh49U(bb&Q=4xCI%@VXH0)r$*!
zOSAf=<c1J7hOj+^pF-Fa!e+VR^1bU2z9;-h{Xt$6>&2hHmQS(-w$R*4UFAv>vsZ4$
zju3XzIT6Axg7^nzy;%Hn2)~4|Cxl-uN6PNCcwY#=S^Rql`z<~ov$S6osp=4&!<K(U
z7LmorLO4!-#bZe1AC^DCW1J4*&k%A-AW;Hm<Sat?HiGpLoD1Q62;(9cAHjtXE`|^Y
zBN)b|5H7R0Cv5(c<w^)QLbxfLZGrez>a`HA6aJz$%Se-~TOr(*feqolyj7Ty)uC^d
zzeBha!l>sH|Aa8lV+h=pojflthwuYg_$SiS!^jBZgA&PyA*6*(M>t;?`DqG^Qy>h4
zQ8bKVVf2`iE=R#I3WXtCXyGu55M*DKq#ROY=iDqA0bAJo$MNP@D%ittgdre@li&)&
zO*qjfA*KX-!|;X8i>^=w)G!uaOlnj;3_n4fRURW0MmUU05#&Y?37hYfs)SKBjA$6e
z!zd9pzkE_5EVtC6WEiEGEKSV}qYOa;9wC&a#;9>>xiHETB&J8fye#r7V-k{-BZtY#
z)I=B+r5og2YMndzBxdh0GkDV9`I2E&3!_^Y&xcW6#<oCQj#^>lg;66c_Xo-?^TyWs
zd5?xM`+ml!_cLmSaehwT-Uk`|4&^?^_}bJuVbl$y9=R#CK2>UK5Jp3bA15>lqp{^Q
z3F8U!S&t#X&BAETWQ#D`gz<D3EtzZ;#*>7nsI93*7U$hyskTf?@s5ON!f0nX?ZfCm
zewNznWUhpDvT{2Ux`fd+jOWPz)&D{&CIW8+FNV>b$sS?69>yDC^bDgHo!(&#PDK`o
z_X(pfxu50q4`Tp%AoV5cAS*Y`Yo79uFos&r%Y;{`uTo#54hv&XMga*P9>$0;4$*uw
zjJF8iQQr<@hRo+M-U(x581IHLDvYVjl7gcN6R2aTW2xh)<HPvlvpfltV<MeNVN4F=
zJ@Wh1Db(vT^W;cHeh|ioG(Vz>IgK!#>f_nX4CB)<J_}=(74wPACGs5VT+5$FDDE}p
z6PAYYRT!U>7f=_5v52rZj4ue%;*u~j+0d7Cl4S9hF}XI3<zakHUJ=G>!pbnd31byG
zRYP5tTJt}S`0JSbmbyNSRQ(&m*hptn7`wvQEn7qw--q#oRdyTU$1t{7&ekx#dypX&
zZnvDD2s@}dsW)etL;5p$Ul_j-_E5$Dm9RIAeXK{E-{|~K-5<sQ!a-_tp3C7dj)ZYE
zjAJx2BIeRQ9>zu4y2Cgjmz(}c>X|T35hUhx7=K!P>VC#q@;T~x>IG_dwsJX)D`7mK
zBW16KaWjltOkNA)I^i!X_Xc6tQu9o2lkZah4&x5tA8KOyzq9KellT88>!EDpJdu1<
zsV6@nojS;C6o>%if)UsVg{Tr)m{5dTG=gH5KY=G=XVMXYli;#)-4VGV-CU%;2$TrQ
zTfQ1W39@E6I>8@7z;c2Sge(pdA`wI_r+5TU|7q?;a+Hjq6#dfFGFHqZ5tOw!Mu=0(
zQJ+XNH-t=b7PUeI*#z-(2#E+P5>i*Kas*W(crJo&5mb#JDSe2bZ3NXKs2)M%2%1EY
z7eS2(9*dxM1V#jpMo=??S`oD0ox9#^?Drb-Z%yI*k@%LKx%T4mIuX>3;PD8Gp2_Xd
zK2a}X{@=4f1ob137&&fx4f(=nL#eZUV%*8RMhr+*@<aqpBX}}`ry^(;L33&gwj}{_
zNI_|<WdyAv=C?-WYmJ*Darsi;gD#2I5wwZmM)cpXnP<(Lzn+PpofMBi8kMG3v`ch|
z;MoW|GE$N*pV5gu=^8<2nFhOaGkr#v2t<XYwn|+S&qwfryz^<47%Mw}1l=PT9>ItR
zdPLAOf>$GWO~x&MfnE^|h+rUxw|4}6tdZ{<K|gYTYGYm|xgswy`7(7-1cM1fsFFK0
zf~nKYng5FAEShU3rTDN2>iLY<sc%p_`V4X2jNmQyWE6|M9l^*5-i_cLsoZBw_8Fp|
zOwW7lVaDP`c?*2T=m^F{u+e8oL;HNjysz^v`V2YE2@y<;U}glfBA6uIxEPaTMg)`1
zD~0zXm=eJU5q!uj`J812kkyv)k0Q87XPT8e-2w^wm@FWrK8av<1Ybq4EP^=^%#GlS
z2)>M9UId>;Fh7FNWvyB9CtAe6f6BapPL2f;EQvsV-cBl6NLUoXVuIvef6@$_*(ZG|
z%l7u9J#?o@Wc5q2<#bj=urdNMzm_w~ix*amZz5PFEuKzaCl{2RUmd|3=}fbD>u!m)
zEG3V~`ze3Al#+J8i(o?p*Q59=ij5I$ir_>9e?+i3g6|_Z5W&F+eu&`52=>YqIS|_t
z!PW?NMzAY_Z4qpb;3uvQ$tt@$*Ze}bVhHbGu>9nx@NTkvVO74g{Ik4ijK+VV?xFrl
z9WW(tAHyEGn(sHl?-A@LNDaXvX@?>>95LT&=G&huA6||`a5RE5{S)FyQob#7EP~?^
z^IJ4>Oz2wWWCW+=MDoR#MsYfVKjorCF)xZUQb`2yD9S}~E`swB6pW%!6c-}6DC;PK
zn-N@!;IfQK1b@j&*W+@xh1_9xMP|PIh^kDd6R~Tu)hLEQ@}BvoR1W!r#w}TxGGWY}
z0e?quCj$9v(on@{)hy9OG5(3*u8f$ka%aW-hG&ll<sQfh=8H>NMDZ{p_dFVDQRIsv
ze-!CaWJKj2RYQ)i6+@gI<N{H-OU^X6?azH!I-_tDMWWE7@JoEjc+seN*R6+KEDBo`
z_9z@tIHM@AIN^?(->Z~wdp?njyP^nh%M;j8JT70b^hV)hS%s=ap+-?P8JF7bDaHy<
zJmNDs5XB==l#L=7MM!FhA`-=tQ+cJMh(=MRM7($uC8BVh$n~g3In|J_q{>%1OGeEv
zc9x2wj%o;OFB~ruHJ?nlXj!7YY7{IQFI6}mi$W9&bIV7O8O4w&hDMPUMTIDuM$s&a
z>?m@gs1?OyQ6!=mR6d>?#s5+D9Y9kQU9=zRNX|%xolUdT6L(;N50)ll0F{i20tU<|
z2#6R6VpdQQl_VfZa*!aP0t$$Tq9RHXBcOtah?v7WbNTnxdsS1XPT#(rZ{L}n>F#Y7
zLz5Vq#<0{?i+1E=)5CFrYR;O+(1tnG*2U6__wuT>kd`sDis7Yg`FsrL4-47AMKu+Z
zXm+@(c3JA8YN~CF2Rkc9bzp^KxHyI`F?5Qdv&b)sAw4C$AchNLsJJR*Dy~wdGC5QE
z<yF@hE@5tgx>T@?t)8u|Spg<tCA-JaBZfgS+z><07<$EUWsIj}pm&VhfAkg7mOjG!
z3SQ3fEvL4<5Hfc7qOir{+*L7L9mBvFu8E<43<F}Ie0y!Zc4>|k<Hc69CM@yV7_N)q
zdd};lV$rNB36*b*;ieewh+#+!H_JfW9>d|<`WE503bJ!<6Eavjii5@EKiAenW1zuw
zvD95L+)10vM+FUI9fXe%{G@#(WI-ci+@GRZ=smG$9raTz<?`^}819SV{uoBb@MH`V
zVi+S`%9=kK!`K2JM>~w+hsoi1kvu5)kl@3D!&ZfloD)`1kHx?xxa{-CrIVkamDbVh
za8{#T9Zgf27>j-gUs*>#9m6v*Orl*~63(V2#PDnklO_0^;PWwVbI^?C^+F6&VwfuO
zX@b*P;X>>Tk-QkgOd+!bnQF(`+`Kxv@0lF=91(KsdiYa``5aJIFNOs%yc~<xP;IKC
z7YbPv!{S)v6%W<XMrj(hTE^y=j{Z1xMJ#&EST4vUd|GJ#U&&Q5yb{CeSmX>piQ&^2
z*2J(jhIKK#8jEgldt+E1!-g0>jNzjgHcInfkKqj=uf=eBO8C(1a8nGMWB7nB<w$;u
z;5&kE3R3u13|k9)TMXNUzg>{*ptD*MQf;S5-lf4Tj)J?`^97yvh3uxGE{mcPOLO}T
zwI_y;V|Zjx$TuYVY%!57C9>wcCGCr0e+*wUVGIZ876yfrp35Ji-!7#Na-i#IlFw*M
zblO9ke;&i$u=oqft$JPkC4FY!kk?m2uIm#Xq4SU7CpI~TW6Xqpo^}<(&f~f7=>Mhv
zxoN1(pzyeGcJj$VA!AR*@M8?0Tpulg+f%maloWAmX~jIbV}&c?HipIAI`K;kXJZ&?
z;BEuIvU)M(4YW4!dklZj@fxUR;LjNTis3v1Wexnzp`>RpP};!1tkRI?B@CQDIDF=-
z{C_bxb#;+}<?rW6zU&>AG(hZBSC0;h%NV$(t{z@j^AI%dwCd6?BnG9T?M~$klsEAF
zfUtsr%0~2nI&5fI(cpS%UCF@0x|$35su(!7CP&j^Y;^-Q3^X;6Gf>k&Edz}VG-fpn
z)HYDhKz##s47^oWbHcJK_+(qxh@NjJUL7_tqGy1H2DsCNq{-lr`=`ib1`Gp%fvkbJ
zfrNqghBWs`8YxG1dnFB|BrQ{=g_wdF1C|g~h_!_{g08^@z|rHxledMw0rvmBhl(#5
z+B`Jy-M-v!b#?NJu!({92ZSWqGNqasXekMs8)#uf4yRaxxAu%S8L{mg+*U@k0gXf(
zXk(zSfy)iFHPFsLR|A)@TVkrcfsO_`8Cd;du7kn#w3-{uIvY4}EO)UHO<s}<BzU2L
zi-b_(Hc)T&54%Wk>($|<1}>A*d(#a5EZxmOcLO~PzW<Cyp{D`vw&Tx={GezvS1$uh
zOVY=Pw(0S@VrY1Ufh*Z+1GgFIXW%LWHyF6lz|{sfzJX1?*1!Pj*NeJnAZt=jlV4+C
z(uX;=asKV4IDFT!b)OYqZ(xw|zuD2ESI8l|Ne1y212-EO&vntqbHoc8D8>#paJzv!
z4Gfd|-(g^=fe-iPXoo`#TzIq;32pDv!6Aji4cx^>T@{Xy44E_KY@l(h$tVN&7<k9P
zP6PKExX-{;1JfkW`wcv5;4uTE4U91`*1)F+tZ@b&FhDaSA5S#{53}<dsE(7u1+r1@
zAqjGO7q?SALJJom`|xo#nU-(h2?I|WSkyn9VBl#3>y2Xai6VJQkRAI>p@$jExjdP3
zM<nFW30Xb3)C&cjDMHSiEis+FXJCziwFX`^Fw?*?PE`Z541SBjO9tj}hL%#?AbEW~
zeZf`XTm$nAEH%Jwdh>~#iL8KumksRsteDsALE-wCB3W!;iGh7(N^!E>S5MoY=Xf!S
zW6BH%pwtTK*j3VRD-C>HuILVK0i$t>q+8#RQ|#7qMe7W_YG9Lr%~8WK_PyL|9JPMo
z1~#ys-Y7_?K|Z5j__~2NXzfFrbGV6HXnqE^a=LvVJ;PJTx$~B^{grxpn}O{H-ZoJ8
z%J2k(_0{frdIvk<j^-rq8rWsvM+2ug>p2+>95Hazz-|K{7&v6$GggBZVqib7Q`R1-
z_NOw@J~ptI&al4bEcnC#@t5x+H`Tbl-e=&cfg#BO)=DNFf8p|HGKc%HfzJ(mLH8)~
zp8X>)U0h#(W#DUr>*zF_K*=}sNF}2mApCJbJZ9iq11H45IQ71xah5JculPO9yS_ed
zL>oV^8W7T%{6OANoizUU8=tX188~gALL3$2_}Rc21HaM98$A0cvfH!blWF<7aWrbb
zN&{0v!$0W!4g5v7FKXP@$EI=I{}KJNag>YW$@=<VX~lmAisF%PDIv%jmW-p6@X~^1
z1gQWa=Lw$KmE-o<@^Q?ouW_)rQA0(n6i4Ma>c`O_jw*3fjpO_{n)MB<#Zf&Ty;Z0c
zM~!&o=xW9zFGLAB8?s3T;<<xX?KtYhqj9MlN4+?<_X+7w=p3j+-Y||vaU5x&oOpB}
zZyb+q3h{X4xMFb_Ldf^mkNi?1jxQRkWE`sogsC_<m(y{WLdY{hEI}n`3(hYp#e&>8
zJSp9eBM?HzLOE}XP2y-8$73cQH<4rO;z*{EO7mw3TEsD8X!Ck$6vxprjxuQ=jaG5w
z<M=3rJt?$~L&x!ED*8;*CXTjoT%N=gNtB-+wqsTaG*6&?935DbI6B4gbR5sb(K(I_
z;uy}%<G3)6i)ab;^)+!^ETnrJJ>uvhobs+hE)l#mj>`)2ZgKEO2Nihr6yX(uy##y5
z(ML#MLF!x{$Ka{qIsGd|*e{N&gj^j*|2PH|GzSXlJ~jOP`AGlTIIfH1dJ*0sI4F)A
z;<!=xt%5fR-Yj^FAQSS3-fhAM3*KIkuO6Fc><|eK6}&T!VTD*G=Z~Pf;uuZaYoJHQ
zv8#r<TaaXwkbB~|w;;JMj{AkXFN9PW6UW#%#>Jx_u#X5na1N`g@j@OHd?=2G3-YRC
z@>G75HXxG6<9I^IlY$ckC(w+`M?YPkk|2rMKu?O}**N})<IgxI$MIYoAI75}3(v>-
z84erb*ciu@IHtz2ERN-Iyjn#~i(^(Cv*Va9!5M-t3Nm)4WKQx@9CJjtNN{c(3ko{(
zgv=Lwd`3v+mxV8+DK^jy@>(3nl7jwHAs>~G<ST@)5nL&_O7N99Rtup{(cv6%tpwK*
z3-a|seyyfni{o|Sy9D2e<E=Qh3g0BSIgTwtn9rL+Xn5O%yd${15c_r<I|}@6t#%gp
zyFysvdqUnX$alx_L4kKVugphr?1|&!IQG&r#POwc{wIP5<M>p_KEeHh9GU|{Cd>`V
z55@6WL4G)n&kOvn*YjV+@pT+0;`l*?-w1vyctr4M9LIz(pVt@VzANzWg&Y?gJ}*2O
z$B)9#3Z4@DIgX!%oEBsbr{{)eg#S{IRBjvn`297G-wKl7g_M~S{uRgHbiWDINZ_A1
z+PC#fCr~DVe}(@iSVXte*5_3sfszGYDuHFw!*g<ouwnw|2`MXBuAo^yfeHn_SF1_|
zURg+$1gaJ!)e<=SLX>CC1ZpMVi~RfqY74OvsFOh51d;{)dO~7?^%H22Ktth;5@=k|
z*)k)_kS}3~MgsAIJdubz7=<a3qy^1FY(~gFNvnk02{?sVHvzA}oti2To)ruQn+P@)
z%n7ofIaO4P1d0=QG=aww(JPCV30$2({{&hkkWZj>0y=?961X&hHlom3u&p5V+cB#G
z?;xaO0-c1+S(&541%=oP6S%0rFHWF~@UDUvjgIyL^SUg-zeA0x(M_<sU=KkGdkX25
zKyM-3L`-2{;g=V5t`Kr%0{se-tAso-Gpfu0;X@J_n7}m&TwBn&S;%#Q*9#6x;D$o%
zjS1XT;I|~ALT^dn)`H|Vj#`1=F60iud^<HXfjbizmcVe4j7wldLGxZAcO@{gAh|n%
zQ3ZZaBH9ejf_U90!ut~#U5Fi%z}NzRqP==R_;|qw1s@W8Snv@+=Ho99A5Y+k1YS;H
zVFG6o>d6G2OW=80=4CA>BruWV-atPk__W|Nf)q{?@@xW=g^XyRDSUxOvLrW4aEc&<
zQxlk0;M0Z7NZ>^wGYfLQ?4ssu3BHuToPvC=ka>dh6If7?v+|1)Se(GG3H+A8k_7l}
zme=kCmU7BVaCri25?CvIh2Y8rRtb4Ukov0=e2k3V>#j@S)dY4F<m(f7J%Kk8*ievc
z6!KaEhn9us%G#8`n+d#?z~+L^7CM3D|BKx!!tH|F1X*V$d|No%`;L&E3A`(0m*D$?
z?+NxAlRua6g9JY0=qIozfo~J|E`g5|*qgxN1U?tdPXrGn@Tm}%vQNl<!N=Bx2Mh8;
zLO$b=Es5&+g#^DT#D1B;R|Wnxd!|lwzQK`#<fxEiw3BvGL%x^bDZ%3fof8TCkiba^
z{wT;EqcSJvPeM*7@UxIJ3H&02vD7?U;OxNP6Zj*6ToTQaQQAKfD3L_TB>pPs{4L}k
z`hOw+734*t|3F-oN}_ZUsU*@#lo4UoB&sEWB+g5stVk*(QBg=aKD!EGS-qA<R#Yj8
z$|5<}|CCfoMlOh?dJ;8~Xp}_bBx)v6D~Wodd43YLlc-zBr;ZRJ8_ra`*q`;2Xplt1
z|37EG(~A{S#gi}!oVLVNi6oK*$z4lAQ+OblNx~AM1YJQ}&=KS?c|!c;|GIaPm~K{t
zVG>P*u#~1k=*OBT(ISb?NnDUbu?X7<wiIk7m`|d$5G~jyiE{(ZeA<d+;<B*45K1~E
z(Xqfg2{~sE7Ye^b@S-Fx7SctKsk#bbpI@59Wx~59(W?;KJ&7K|dln=U8bpTLJBdCb
z>06M~-(HzSza)NP4<vC_5?3cNH;H*k^iN_y5_cvsEQx{1=n3}zwrXe+*CcVR1g}ft
z79otfK8ZoXZxFn(AipVzn}rW*8a=w)T9DtC#NYzIUC13t3=y(%agLgE8|X8O!r@7b
zNMceF&n9tK5+g<7i6rhWq<t`nQAyk*!F!V!Tae$E#QnlY3yvwsUtAnL<BgNx1A^m|
zi2qiS!iNev4-0uDiARMzR**j~WJ`nSgUge`CkRdyd@6~jg*+oj9lK=7$pt<=iRTLZ
z`6ON_@F_y33QiOJ;kS}A3b8K=nVH0_f@F3QFA1L`SmE_N3!0zAf+W67;;STHPGVsa
zZ%gc=LaJAjSS)-=5=)a<R*=6UWO))Rgsc=?Rfyf!K(8+FHA$>3@O4S#=11MQK8X!U
zY%IvPB=K5-zb@pBBsLW!o0It9r6|>#B6+JI-<rg>0^crV|J(T;NxYN9&Vu|v67MFl
z>s(OqlO*0xVmI@Y;2yyb&ne{9NAzI3qMqUPaT0qA@-bV(PYZls68j6Bbvsz#hm!cL
zzz-+!x$rLp54Mgn{5r`6{Q3m_=NCDWZ<08YMA68Q*HIzI1iuyhPVjrd<AQ^Ggg;2y
zlY-3TM<J&Ke@f!Cke>^&XN0g%eof*xPR|tjr|^3cf6zOn&@_cV>GtV1Q)rmN-%0#K
zr=3Ej6#nHMp`qqgCKZwYSh^7M66Z(?rG%6gJpFQbP9J=6A(FD^)Eeq?DU>hp3Mtf+
zY%3QewS-g=teQeKA=L$I2-XyA@KTij`NC@pGFV4QUBP;S^;6(aCq^|&p>Yab_e9<x
zmiph<KvRg3LcAbJq>vPzDoD~P?06-zv`h+C3aTLYQ?Lu%5#kDZDg5)m|EwhtNmeiv
z<Zr_xO;j!gokE*b#G45=7i=L|EZ8!IRzmWEtp$0g6qB?SPSQJtb}6(^p@T>+O5x%Z
zItuSp(CM7Q1;Q^ZNSZX%U4(ZlNV*ESB!x?bTvm|pTN`#4-lHJtDWsQRtc~g;q;Dbi
z@)QqEiW+sLV84R=suX%PQIrozVPFbVQkdINUz5VMDGW<R-&?N}yjAdeK?(<@aD(t0
z1#c3(S@0G?>Ri-N6K|8?V8Po3??_=tL1(CtJ89~oJUoRFDcqI9$P^w=;R%VoJB86H
zj1fL6g?kEV?-g>N;QfN-?+RJs*c2X;;5b1_9uP7<g$E0gYU{&?g+C(rXhHs%kYQ4p
zCsUXt!3l-fi77l);7<#AMzCeisN83TPZoSm@Oi-(1Rrmxr=~D1h3P5GNMT6|OQow{
zOktjonS!$fIRvwXyp+P6bCQC5LqpBj`6(<A$;$=#!W0%2_+lYz$|-6tOJSn~m#45I
zg_Q-JwL(@2z9P6<a7_vyN)hWM_^RM~!3~1zDn{A9Cj50l2Hy~}NpQ2^7Qy-7<ldrD
zou{^@xJX`aOJRE|`iA~COW`n8P={U&ccjp4f9{<Wc1jdu-%Vjxfxjo@eZk#=AFw~G
zMQ3e&xiH5(KTct93SX!2O$wi+@M#LqS1bA|g?*{$l$e7l97;te`Ro@wkctkjVem5{
zUx*G5KRKMj=bW$`!%<)4@8}dAb@ip_^H`PdPFM^cN#SS;XIXR#Tor#Tg&$HlnZmaz
ze8;AVkn$5LlxU=nOR!!e&5ObxQ#h5vnG_hy;7=)>PT}ViLW!lMOCx<<BR#y4Cix}B
z!-}I+zi|Sd%>9|dU%U$l|AX%0WbO&c_HVi}deL;0;lC;TCppiNghe7Ok;b{;dJ&cq
zA(cy?BaQTVX_QUlWNF2(|9rb%E{%$5R7yu5R?4TN_wW^j^J7HiG^(V*k6ApYrD_`0
z(x{cj`Ds*7qedDx{#lyJ{E)|l_e=_Frg2f9kepvkYNt^*%|)}(+xt3cTy`{Cif}Gi
zKOHSFXplxjA&t^#Eacp``<QS;FkX-+gz(FLIt??8MQJQfBa?=e#?@)`PeY|)v-C7B
zPQyvVO`~ZVxiq|VWOBZs%0;L1@%KxR#@RM1n?@+4Ng8)84@Y!rNg)-QrO`HxcI*K|
zHBX}jKLMoC%~UPZ$fwbo9|CsfTcxpTXP&99C|`!DbQ*0$hso!S2#Xr)QRDM>bq_CS
zs@kW~A&rh{Y;2=CrE!7OWI{95IgP1b=jzIlh8K!(*4nU38eN6=P2&<FJp?ZmyiBm0
zV0S^D7RVBN3hyP@Tady&LcS4&%hR|*f>#z|`w6)!jmH;72lov~V<34NPo!~88rP<A
zXBxxOxK7k=61-k;P?~@8Rpy3t^fQn@qi#&2PGij_VK=97OB$1>g|`acp2lsWzieS{
za2h`@&IOJ29U>W$#!&V{V@(f0eU?5vjS*>#O=BDfB8`!vcE1#Hw+zs|!bhdCA*1f$
za5s(?zp(=MQD69INis&z=ox<UV~GcZKP<RlbvT|@E&L%tCV!@}zF}DSNE(ldWN~Bt
z80~6hRG%l)n7|p7#@sX}O6*f<JS{EV(pWzulILiUX-pE%^BA8^b0wjkoaW-asBSNC
zHpTSxG-jkRg#(?&_Ht$J*^!@?#@h>X$(U|BCwwuDnW8pZgtOAvR;h?O$6pF7%nq6S
zC6Py(G%6{GOK#?q%nm<YoLj)JQ8E2;8Vl3-Z+7^>{BY8Wa7h|VDL0Wfu`G?{X?&W-
zzBE>(u`-P}(|C(RTv@M5<Fzzi7yb%ocN%Nb(d~Y18n33YK8<y0t}D}nW1360Hn8hr
z(cOF_8xqqzPLl^1t`SL@S3_QJq_IhKHVbZ%Y~PD%o`1NNjY?y88Xrjgx2Lf)jd$5D
z3GNVN>)sKveqnfeW1he6cct;s<nTQavTxr{W3!xi`61<L%&MV2N#n{{;U1~;*%jf(
zbTv)Y`%Tqe`nM(#ao^3acpy5;az9;A8b{MOkjB9@m+t6)WBO1UpQUlQQ2Lh~JK<jx
zB!BFP(tef3*J*r155r?B<y6e4YN}(*gs#s-O%vax@qHTqr15VW$J02G#+fvJN#h5)
z)-<>@@iZ-;-qO&g()fu^$<WQGhW9Sak#KcfS3~pj)6aBh>%;2}eU{Bh<Ignyq7|j_
zdm4YFxjaCRGV~-vQ->LH%B=6va;KrcHuTX2;oqEei$hMX|I#QjQQkxa6D3TPGyxOm
znJ8tVw23k%>c%w_a*-i(D2nT*aor`Z%bHOohtyEzOl(}4qXL^bD6T7-sAQswiK-?}
zS6BDPHA|^%;<K6I^Ks3W^VLjLH}S>H9KS-Y9TwSVw{7`aCeAmJF=3ggZK95e1|}Lx
z5p_-6yCPTL#EQ7CXGRYB(~Wt4v)dWhjZ8E)kuZ@o5i{|_*t}sPZer<%{NuC29_7@R
zam~)*=g5?av<cG$g>3Tgaa}#3y@V!VhRTF(B5NX~&ic?{%~yt=3D?AhiOAKkA-;(~
zO6QTSgA$rw(3(hz%}g{m(UhNnO|UsP%#6C4q=kuM6D>{9GjP1dBs9xqFHKMA)d}6&
zgf?-ViR(?YG11n<RVJ=B(auDB6PKC1WuSwJjwZTFp<JZeiIpkv&a7csb%BW*&xe(!
zgcphYViR3VyqC~p$L4vlU6+XbQo+GXqpqem>u#dAi9YNKk@pnrW#Y=RWjH|8S-w2i
zmqC%YTO3|);tCU;mxmJ;g)3hU`-yyJx#$d4Uj0oB5D6cQzfS0Z!ue(A8WYzF--iEb
z4l;4KNNzCsLJv2YxY@*Ts=XQ>TO8hEVu-}vYT`B%gH7CSMjrbP>MRO*m%QVjVy@k-
zJv?f~P|>{8#4s~jQB28i30*xI9i2MD#0f{;Wx`47ktQ11>QhIJGI0;B$i#gn9+b5A
zn;3240ov-Ua12|Q)Z<M2Ix`$gLz*5HLF7fr=1uwWCI&LMq<$u;A2RW<iAQK=<MMoa
zLx=pR2_81fBu{Wse{Rh&F_)$AMqpxsiHRnjGV!#D87$YtGbSdPm~7%X6VIB_zu5dy
zu_)h4ah3Rat<>`-UNAAuj24YgF>z@tHB~qj$g_Wxq<p$a?iyKYaZ)qwOcO7eV31kO
zk_>0FPf9BWd9|!mG|$9*6F-_bWnzJemrd+8@qvkjCKhq#nt08`Voo&9FB2=xXd}Q<
zI)NHR%LGRrD@Dn2k#DbAw93RQ!Z(;$ZDNgybtYalqerr}CTjInFMe5yeEr!H>lxKu
zebHMndApv`CIXWEJ=N<b-Y~J%#5NO~B&#hZ-ZZh9?W$FDuk07#J_1%?R*f=m(QkBD
zZF{KgCf+u&%jCaH7jf^v4oP@pAN7t9=DgFyyP{0}UftDuQl<9=DfzEf(T65JVi6|3
zF|kKd9iqO8k4@|~@rj8~*%e96toCuH_f`i?_&0_7g)=y+hdL+{Do}n{a`;N{bHOi6
zOus4Q^(BWmuSlrLJ+{OnGz=5pi`r3om7hx-Gx060vAgP0BiaGM>$n;1p*TtFl{)_*
z$WEJIvuIc?(czS*xn@u~gP%>Dp|8%MWF{J~UrhXN;tvyNX~QPC1>-mNZHXf8A0Z#w
zP5o)&FB9CdQIrA4f*ts`iGNJokyrnUoIUv;o!I$Bv-_ylhjXQx7PIIFYZR5rpj-y!
zGbo)wnG95S#m+<q=VfqJUX{&&32UFUh}ZN~WAmy)25;RMl2^=txF8?Nt7K3$13LpJ
zgK8O6&mfUOGJ_f!)XboM1`RUkRHjU=OteF}ZU#(seg@38b_R9Mk(1W3RXJu=FB9!$
zrb0teBZ+0uNO<FdWKU94Zb&dLctj+r3^LMP>CFH3;FuY(z0A;JDLs`EWj2t>-3+`8
znrF}=13!ZxgPf$|7_n!vnW!_v44O!WZ<i=)DiRXPn~CO4y%m*<Gib@E4DuPiKi5BX
zSKJrF5#c_XbK~AR11*_wYEaTHgZ9*HfwL{pA%l(?{H^ehiX2O)3}#xGWubEh7i4f@
z1{Y;8z`{Ta7iZ9gf8}6Bo2t5Ia7hNkGZ>M<r5Rk7!Oa=ml0ml&x@T~82K_VWk%=~y
z^Ptzhtm<K_X9m48=$*lkYGwF~l~H{P3YTYaMJ775_DVq>_{mdV`!U1g)>WD4)KiiH
z84S$ehD>z+^EH|1TxgQ(GPqVaPc%IzxjutIG^CW~A<{q6W@yHTteYeie_2y<tMDO`
zIe&@Ymcif*ZqGz#w^EbW9sI9~-%B&Mp&5KHhXdc4!7yn8TS3WP8H~)}Xa>hJxI2SU
z8LZ7<T?Y4LaBl`vGMFmux-WzA89bQ5{Sst*M++GvI5vZE1^ELsfXYQw;Pp@jPl)_s
z!AArir9ldLoPAg=(kxdp!Y4DBkio<Zo|4$-1fLe1oWV00OcMUA;JJi9RgIdtvUJJk
zMM(YvXP@LYEraPa&J13bs2PGUW$>a97B@44Sp_~jgMLL(9p)4yb2+nw&o4-r?ZONe
zWw1&liv`bBg9(>purz~ZB3v%GQgB5EbH9kXf>)i&MX!i(wIC&HgfNp=GgzO&n{)*k
z-oddkgDn#ES_ZFYuvz#Uf|~@HmS@!x&z<+n4nNoGtr={~;FAnK6}9ad>?-KLoxu*_
z?-V3EGk90{xwbR6_cC}tgWVZ?P|(>U<iiZla*yo)Tqz$5-z#{o2ljDhRV%}@aKFr8
ze+CCKILPKms}E;zNHjnDfApEv=NWt<67oS}FkfZxbwTn?21kUSv!!n{_$~v>g5reD
z;5c2ng(?<Kh)$7(5*B{Q;A93rW^jrgK;%Ekd}02-XK=cZ^UoQa5&nzdS;1cmvA=PK
z9{=BX{gJ_+BLAxp%jW+h{9nQU1pluMl(cZ374=dn!P0_d1Sy2|KWi^rkd(7fzQ8M3
zs3^QrLGt+ds;Y%*78+V;WTCpq>sT08tqgOkVWFnQzk^Y=M1H<tZNdLrpSlvPCs<#w
zf#5xzBY)LccubJ4!{7o{3keA_Hf<p(JXMgK%ht4zDM;8GwgtyRYmvBuO)cascm*Bb
zLSRK+i+N@(gd%TJh~;7C%`7yRV6k8e>wok2Tvb~ZG+SB77dUI8g|`u8kbTn5LVE_S
z=rOXd6+Mh~w9tv3-@*kJx?AXB;X;Y+YT*(g7x6A&p^JrIPFa_gEBa-3Zs|emQVW+!
zY&Su!sV;+3T&>M)`4=8NIfxc|OB5wsD6Y#zYnA(mq;5)6|8fggSTKh*ztW1<*7mp1
z&x#gB^Sa8y)xs~AAY)IIExN|SwH6+*Fy6v-7OuB2%ECQX^prBl!YvkVwQz$K-G3>$
zQRFvSxLF7#t4^1=&B9;{cZ%fIyt-Y;5DRx$*wJ0_YTaE8E$Ht(8a<s3voKsFBLwfV
zFjC0f7G9|Nzx(X1KbN59y%xq=7-!)=3-?PkMq3yoJzS<&^o%;VRuLcG_^3%fSJFOc
z;UPBD!qXNWmTVul@Pv>@EIevqQxEl+AW0i}RD06GL{XR^MKCKq2`ugvJ<~p8VUmSu
z68o$mYxSIv$%5_p0L*Gzm?CM<J#R3FsS<44OHD7Nnjz%HLaNyoUb1k$LT!aP7Ut4W
zEu68U1Ci!gSZ(nyQE+RGqWKmUSa{iren&5~Q0ar>B^DN0SWN66?i$m)Nh;bdx>TZ;
zSy*mig@u(CUZF#n;ZdJ|^0i7h_k&Zy>$_4#Yb~s^u-n217GAZmUKH5g4Hh<v<!rI=
znvgdv^fB<da2gEFhSw$wn?*v-_0?}$c+0|83)?KbYhf2n=(M%n!rQa~3qua%8kZ<V
z$<IGo?^x*hN%2lmV6g6A))Qw-w!0;KPbBYKXnDrEu8V4u(jUsq{f0((%KAw79>I?V
zIjQ$r_{74e7WRqcpoK$1_6r^m?3dD?3Heg+uprZZZs7~z-||@gL)KRX`PT*E5er9Y
z!%Mtl94`x}g?}sf9q$4{7<*jE3Htwn<fMfkEu6A&drDJ*7s&&u=siE5-g$D)FBZ<S
zw-w4NzJ-hI_CE_n3cp$S-NGLh{<QFyg}<%n_XT59$8yBeJ=8y9_T>Ls;KM2(fL~1M
z5-Q4}>#<U$6iTXS+MY{QT17t=7%Zazk(2lCrMP9byh0U)stOgDL>_A^iUN5h$*poh
ze`1ZIY6{gAQa_idCCW8KfxF$ATTO)zB{>ta4s{gjD(qJ{piobtzQT5ew-p*FaEHMy
z3b!gWQfREuMxm`jOu<kH6`Cl-6%q=Tf}(O6l~hP8m@HR<SIb#R8HHk=R8vN&^AvUd
zI$6S2a1<^tU6fUDMblRZgm?<i@szkS(KV)Y(LH4p(~_6t!ONo1g1IT=6q-q}x!^OU
zi)x*xR-`mFTS{@Q6<R6e70-57Z>98ls9vRuv?%w3sx>)mr_f&E3WX~bIw*8h=%&D*
zT%8m;D|Auls_>}P{{n>znU7@4{4bVFcns9)_lg<3L}7!dT`KZX!Y>ofau=2^>Y>nE
zp${`Gqk1azlBj8Aqf?}&3-%Ss<$|8Hy`REW3Ii3cQDD=kd9}o{EBY%8P+$}0iu_uI
z>m=$X!RrMFap)7JnTpp9BDqoV!(!AqylxiBoL@`arZAXRq40vj?X)_DaS9J83{e=W
zaJRxJ(Y#Y(n8I*{-BRcX5$=-G?-I_QA4vl^Pm$cCa4&mOV((M9UlhhFjAs5&V<bqz
z<ZKH&g!Q2rj8}M2;W35BMd2ZZM}*v1w&-D!ROxdz@Tk}ZErew~q41Q#(+W>2Oi-Ap
z@UV2ITU3&HuK%^fGm^uzG_azQlZ3w}wQ5#hO=dm{ACytNKHFV9MPaJKDuq`RrYTHU
zn5!^PVTQts3NsaEN%C`znw}^<TY@hMno`^xh5yQ^e`W0ED=bi0#0~E3!_q~^plC%e
zD=ZX!j{8^1(n}PUN^qsZG6fpvav4)LQ>99;klaSSSIj)MOqtaRYZNvqY*tvSu#P6D
zuu&4eQ@ZF?$%=NezF>;4iR8_)MX$4CrCZ(*$+;fbqVT2!w<^3PR?QiAu7^7f;qFtl
zO@!>v9SZNzS15d>uv1}gXZ3*~$-4@>guf^FenGxl$o`amC0UwkdlZh<Q+ruZXGQX{
z!ts<Q;SuhiD11so9oC%JJ|XMADL$xhNa2LS4+@_t99H;7;RsuC!1`R_ONFl#zL4M*
za;%DZy2RIX9VMfuDc)|*{pA_|dhaO9Rros<eb(glEq~Wbs_!}F4;D8}>*Eq6IjQiY
z!XFBMDx9LbJ7t}vd#58+IIW@$wk+sp1#VU2b%sPZ<qUrEUhX%A-|0MM4_d=hC0G`B
zRuWm0zoZCP>h>?kl&+>J`ZYz7jS@B<^YOTkk~T`&c+tU32c>P4vGKT#Cv3pRc{aM)
z=x(E|jdC^`+I+<tJxi3gQN>18n_oP21sfG@w5g$ZRkBgJz-OE(u0|cL>e}Es6D~xl
zZli{cnl@^Qgu>cF&bQGstr=|pRdF2~w=d0IvOHH$qUsAa5M)-=X-saTvmO1Xm|-K%
zI@l<-k+6}p;oAsoq->;ZC>yp7(?-UI?jAO7t}G$W%3SMa>V!xf8?KEz($Pm)&j#hZ
zdajL>DWp!;MiZ80BeZe(k{r|Cwl>V!AX2lrBxxr2XqsOwHH9s0w6f9Oj=nVI86~l8
zShS>KLgvq$soB;>J5ggD7-XTu4mKFu(MBgBhr6|;@B$kb+PKKZ?6kf_^10Xs|G}+`
zjXRsE^=aKz^7(8@?o!E$8D1vsVxB$Ny*7s17-6FqyKZ^d-^RhYVQ(9KZ1iQjY<!Z|
zSF_XRg;%gji^HpITq&fVjR&{n`Hdj=QpnF_@8$VHP48WwA7EpkWOa>=K{jp>eyxqI
zZ{)ADalMU^>+;{v4u6~%-e}_{8@IB~Hg2}@b6P(&FRWl{D%>J!-4^EtbI@%JWm{Nh
zTH3;Jh#h^Yq~@E8LROfPtLKHoB>x-dhiOwYco&nidQ#83X$cF$aW<$w%Emo5?zORY
zamdP#=5Q<w@3V0~8@njS^>xHC91c^nU1M4Ff{+phAFwfA<O}D86h0)T{;&;x2YJNC
zqc-}l&+|X{9<#A?PV{kv%NL)tF~LSZ2Uj_mXyYjxb8XC%gimv@ggj$ol8vsz!e?zv
zW;NQXt6D1tpR@72jTdZ8p~9T-)0MfYG6XXPr?IxCrt)+fGeq*Dpw(7!m}UtlVNG7L
zqqT5z*u$pg)wf4D-^KzP`)usD@v@DDHokA8UbnHx#$p?5Y|JwC5<B{gOA}otWGQW<
zQuOI|xfs$4nQ;%BdZmq3Ha~*sR|HoJGKh8IS{v)c{J2HsRU7M>e@(T)#%t2*jS^fu
zJfv{(=KPn_!#8Yfva#9578~!d4>?#iHki>Dw;eX#viYe(Zx!4o$l!JxZ`&AMQIU@t
zoj+#kKiB2|BOjk%IyZdR#xAzq#``uH<n^(T-GU$3_^=@V$i|)mr&;c$!E;ix&)K*0
zqlDj#%d_nVI4{_I2lX5rvhkUX)3jI{hi!ar<69fw+4#c7mo|>bIDTbEOB27g@r{kY
zJGX58dVbWA{Hl>5am&1rV|UcXG0~)i!S8Jxx515LCv7w?RurC~*P0#vAV|V-WbBWk
zbIOj^$NpqT-<v2rW8)W23L8ZZ&T`0X{AuGa8^76DT~%?{;qNwTXQFSlf7sC`ME++b
z@oyXd*!b7xOJnV4^w`RZ8@2d-lOI*7T*5&~2NfMua!`uS-vJz)=YVQu1ewXTlB!!R
zRo02}FYln70|t5VvvP$3XH;cLGC8BG38^Aj)rqQie@0h#P{Tn@2UJ*+(ZpK9&lhB{
zwval7OzJym;Goz+O9u@dG;&}%$T(>1Am$+MAmPApusx&s*OOe}K|Gkz|1ORGiIP{+
zLCV27o~C9zQm`B-2TdL19M}#VCz_RkgRG@o_QRUc6aF*%N`jOyD(j$vr9&tBQ^+QQ
z6p|C0iGB+Q&4rv3QqF{}9ONBb>fka5tsQ6wogG}@pbcwo>7JJE=%B4|2HQDkFT6uR
z(#q1eS-O)0BL774LI)Q)xWoY$TF_8O9nD?rfI8zW-9<=O2Qw^9$-tH2MoV{d(A_~F
z2Yu<9zAEnFpqGQ*!h1T{V`&P%7v%FD$>k0PRaA5xS30;tIR9splKM(N(j)ppdNs$z
ziEjP<1-Y|zfD>(=9q8a12iMYUDyZum40Uj)gX<+~kb@f>-00vY2R#1ecEM0-@|%U<
z;^0;efzrHg6EfJrJ>&8W-XRLq93sS?84hzW+`-)rMmae8N;tydp-dR*L~HzRWS$k&
zKlIoY)RgJbB)Z4Jz0Utu2v2x1lH4c3`yGrHGNusA`^C6(Epjm4!GkQ$!7~mfIe6H?
zBMzQ$@T7xIlfy?@^tAAC;g1QP-JI`vB=?}w+yFR%2`i|lc^7cNAg`w!%%2sKOjG)G
zrJtpFJ6Qj9@iZq|iSe9+7aUA+@H~e@MJp2~yp{h+=}t4kCntwf9dL>7dA8=W&~%Qh
z!)Kewv2!eDIhai=^3c}9ODxMlGZ)QW%ylqN8dAx{d<P30{OsV2gO?pFbnumfuN^FM
zu$WWE!P^d&I9SU1IN0D|nS<ptS6i=hu)>M9rSp14$V$Ogf{)Zts~xP78NF5{+-ONn
zE_EQj>frFKD7ewVYYw(@a4V~xW!38r-f*zV!N*k;7qRrP^=1brxaU`Jivup9VUSMg
zEhgL$k~85p@dG3~IEx+ZcJP6N4=bph4&HabY~Ph2CA&D34o<BP|C|~!_(xU6<s2V!
zo;uj)U_XnV67FH?4)#i&Z#xn#2mQo}7Mgy_v9L7>FSdd^kq<cdj16&c(1|u;^ExDi
z?fTro7c^{JvzcpZDgJRSuP-G}l5ZRwaquH+LR_3X%GNp28kJ)XzIE`OgRrXF#Ii*H
zC0mmpXWeYgIv=q04-QUpu&OEAM#WX(Phw7|#SCay1DmuwW$QAI{)Nup!9Q#l*Z({C
z&B5Q18`Qtc@I{?KKe;vk2c6sMkd69FD#ILTV^nM9=zksj$0R+&BA2I-p|l&_!b-T&
zKIM`wU4$Ot=rS(gqP&X=E_RFz&x@=}mv!;Dqp4iZ1@|2%7ly>Uf6Y~NF?eAZ{WtN8
zA!94MsN$lk8*Sq%=jui-s=27{qK1o_F6y|b>w>rPS}x9av3Gm^bw_{f=tcY!VV0hV
zQq^-&-$g?=S_;DLmJM7Ge|GecRJ8k&Zk)Tc8oP+OFkHl4xGp>w2^UEh85fp|R1~XC
z7dcm_g>xYgC0v!n`Ka7z&}}zbmBh77m$}+;af7SJx%!c^%6Bot)lCEg!K~og8Y*<L
zU}K)KO{1K#&edb4hkTZ!q=k!O7q781U9@!3%Edh{?sbuO(b~mzF0OZ>U9@r0%|&+?
zZC$i;aj}aoF50{3;Nn6T7rE%jZf~zTx#%q9BUf{a86~_faKZI3B<14jgsa!Rnm^Ce
zU0qzlw9CTFTwLm+v8S7Rx|^qYTO^;gF1*>(JzVs3aixoXF2;Gfmy13w`m(p(Xld(o
zPtT64*wXNF7gxC8Za#AU<MSF%n<;gbi>qB+<KkKu%&NbP#T{?w_r%ozm)q*qK*5Vv
zL?gA!(?^#^H5?T6CkDH?oo3*IyM`P3`W6>A(ab#EJ+5wcQE5xQ$k(@WpnZLt;Gg`^
z@9P&$b%%?gF79+OgqDy|#lG(C>tVD97bkr^lCi!X!LIi8$G*OcX6b8Qb9~L%yG3V|
zAlr4Hi~C(nb1~h;XcuE#Jn3SBi?Qqq7Z194h}GkGEz3Q$G&i1RALv-1TLijCpdWVe
zh>OQu^j{u6>T*4gdL*ORy%V(}f850rE?8&o9lklx?30Nuo^mnS#dB`7<n?J6&j$J#
z78*o*kS8(dV!7}--CDjE=;vudujZ!+lDxpmEDZ;0MLyNVUpw<8Ggz+6qx`VU#Y`9P
z?99L9VvgiLOK`S}gYV=yHRigQ=i+6l?TBR|^Pf+1<&0aOXEit|tiwVVi#Y2uiY;Qb
z7rR(OJ4{BweJ#{-7b{$>cCp6AN*AkKe4A0PxHuYUP7^kqZRFo%vpBAHUh87Liw)5%
zh!#KddQ}KJ<S*)T;If)^AZNL6xY*?49~b|+*vx9XIPBtc7jL?F%f&7i@448@{%o&y
zu#GOZxzQHmx@onYU7A#HySO#3NOtm0=S6LKm;DpyFsm=hMppX1i`^~`aHcN}KVZ$*
z<@dPwSZe;Ei;sj1-<oGb_PY4VP@lTk#|gV7|B2W$Nr#ouUxBmG{Zcdsf|Wn$;*g8a
zXv|qXH>KE<Ec6Q(U%L2#2Ik@`7hkiNTzp4U$*6Bw5G%GUJVNWr>P=cP6}#)0^d#%a
z`S?9OVQqb!LzC53GHT-qy2P~Vl2AXoIOXCO&PrBNI+NpgTI#tutABREAg?oGiX<G?
zUtRn`BXpzv#lN}uogJIi4{Xm9*_OZPLqg5W|90`SNNBhJxhV3`$fK`72@fSbRPj*N
zLn#kNsL%6I)<bCzWxVKNkCPN0*H|iEoSWr5l&5k^RrXN9L#t3%@*-2O=y6q;>K<w$
zgFO6`g;K4Whw2_`d#K~#rcl@LP)kTn4`W1`!t+HkCDi0~J=F8iz{5|WuJ2(@7>)G@
zp{7xBI2w9U-_q5fiH@<h9<m-nR?kDiL&k&UA?YFI!SteAM%qKeCi?jHe5)p!gtr*}
z8f}_T%7aY>FS^%ojA-PJ2UptrZ22-jED1diM0!Fh1YTr{9QP(3nzG3r@*Z*?nt3Q@
z4vPL3-J9qZ9>z7%H#gDbG*P<BmL4XK2<g72HPLIE=++*1K7;lmzxRF<{dE)lPZQnF
zLwgTDdpIMdci<D9hdCZPdg$b#vxf^jjQ8-MhYOk9!>t}}^Kh|;E*`G%aHWT?>?@_a
zd*~tL5)YROsnb+n=AoN#DtJwGPbO@t`*`Rpq?d=@LT+fPDZjs|UUoQlxd*PKeW9u5
zlKWSh>V6&uco^v6Dh~`^E!f|~?xs=fk*4|@kzDU#kdSLVTqlIFe>T-Ma{2}d-pr2T
zC<}jXd2ZO0kP5dHG@Xt4!5(h+aJPq19`0bnp9^^n7cxX}sNkI*h81EDi_QoM-sNE=
z2Q;Ud>cX79$HToIM$^XFt7G!_u?bCDUe3kI65Kx}q;M?9%fkb-md*KrIsNPC{GqAg
z{+fzS<0Jh;9v=2E#lut&k9c_0!z2&SQopKt%)=8Np7hX!zXe!CPJdKcP2d1+%s(wS
z(Zf?TkNr7Hcti>D8IhB`kkgb;_V9L2zu@6H4=Z!}c|nq%o1!`#&gp3$rhAy>;hJXp
z_ne;LVWtPKnSRm3k6ZIKnrS}J@_FXsW||7KMeV+3daj3goQ59OdzjB^msRULeA!Gd
z@bI#Sg`OON>tU&fcgv|o9FghaVlR5^nN&?J^RV2*DvpSU6&?ncRVyWjDa|w&wDY|I
zA01aq4r@JZZ>Eh+`86KCUzS_dOrNNrDB-MUSsOfT^zenG<+OT@&cVZ*9$xqGhKEfu
zm4eav&78=A=6#2AlV1HT4_iI#_3(*@ZOq@pdmi4G-hSJ|PF7g>4o;0K>K);UBRQU8
z^k*}@%Zq+^^3Y)7ZVw-L*yDj~wi&f=W%x3G5irOem>T~2O^&Ow8TB#EH6D>qrJjd8
zeCA=F@cndF&GiA{?7)Lw^t?xMnAX)?f6n>XT$609tOhpM?7%NQeC6S558rtBjveCR
z2*<9LV%?5;I7;(qt|vE-meaF(-^xHQZLW_?Lw@vd%EJk|8V@I>M6NTZHL^Iq!}-a>
zX%>1gSFMHK)?6QKuK#YXpXwU^;^C}^o<4f{_|?O2ba6f!`S{(7p4|9Cri70_gfsXj
z``N?a9{v%@e;$f_{9A~nQ!-oVrSIl-3r*#cK1%s0?W2s3nm%gz0IyoAqK`^G&ht^$
zM>#*TtL~Lm1tH~q^llM7GqdL08o*x}mHlW3L{%SE{K!sdS|eKMY9j2tySTcL8a_B)
zRAV=u@1u^7x;|?A(GqtK(1PlU4;%G-H1MO&ukV99DfrWAQVUIdxrJ`*Bj)20KYA-@
z_=x*x;-jgLgpc!QglQk954x13&l4JT%16hyWXiPA86P&Id{{m<wb13a<`pHALvmiO
zkF3Z&AHI)3IOU(V&~!EDbV3nwXHCvWGapCGskVa6edL9-5G)pK$(nZ!OCHR%lHiXm
zbZa3@rG2y!zN&&^u$_<gK01ix!h%jmADw)3_M_jt)VZJ_ANWdmk&laga8Cr~yt+tK
zS05u@%QJYX^b9-aG9TRvyt|Jc1zx(CkJISm^C=p4`snN9avy{J$Q4}S<4Pab`xxY-
zpO3424Dd0KqsAd?t{WHY{z7UW%#m}S$TdDb-Il-B$8{XUxaJQ}{;(yXGH1aJK5q1J
zn~#T!^-Vr*_Hiriwph0+)>OO22a%dYN(L84zs@-Nw@Xd#5F8@<RN&|j^P>ln5kBq`
zGTg`X;%NWENFR6m_`X<=_c6-H3xT@V$9+D(pQ?L&tPvgZ`+bb@F_v}`s?kwzsEb_n
zhEn51^8p{bi=!P(eAV`#&kGNU{9zxD`gk>~9^q%QmU_CRVi6NP^@NWneay(>#VjWH
znCSD_9xDPo<>P7gVSqsao}m#+ZM^```k2f~;p1%|&-o~>tk(EA*-}5xI{TR7W2%pr
zeJu1b%?E#M&R{~e(dTD$UALuf+EQQIQqS};oBig4e3sx%BA?@9z8`J6nd@Vo%uOoL
z3lVuO@S{5y$s!+%eXR7c%EuBP<6G+GK2``>D!7b2Q!ZNJ!JQ^kTSlY9Tjwk6##+(w
z>8n|>mU?eX-FkDLlXtC;b?h7;>wRqYvBk#*9~*tV!D&LxVc}~&f1{ydtH>mxBgLvK
zzC}s3(z=!AyQV%>ly@}$rVrv)!M6l?Iv*w5g!A3n4j=FM_|eBHA3IqV{kD&NKHl}Q
z%g1{@_<rvrAA5wnFSuLq1I`^GRB&g6eB=GGk54!>h9=+Z<G_YI3Ew->nD;a2;|Qmc
zkAprA`S{YuS9BMv!_Rzt!3okzAC_RBR{C=xJV2hY+@H0xmin4*XMOmMw0c~tsA)G>
zRmXgM>*EKGGVO%IR{A>{Dm`9#wYrr)&ic2~Cj?38JfnL=tLUXYPrv_({*YcYK-B<0
z`#3|-9H2~qUwoYP@t=>P0KfY9&Bs4<=`yu{_wlEYKR75=6g|K{t@K}<up;D}e7>yU
z`F^|=*3E0aK)ZZOw0EgQz|-TSr#|wM0kU~b!dQA;1UN51#Q>E8lnqcWz>JFO!n|hG
z=CZ1M0Ad9}>XTOv(0qHI*G>6ozZFTf0M!E+0pbB_1gIIHUV!=mY6akZuy%m)dCgn-
z`9b78c!OrJ4!Ow5X|xRjBx@+%VqyUr3U3skaS;7k0Oh=Xmss8@5}bN9l^GyIHQ^~i
z-lo$+X6CiUgxm5efGvb?0@vlW6Yxc`<}Jw$z#uPf+VTSg?2Q0nfF1!ZZLOOGXd0kh
zfc627=5>xa1Sn?HDyU{bbTeumfUj_wXUW#OWdI#Sx4BjU@&Q^0IQvbW&h6c*iiDrB
z+DI%F+6K|b6p{`BItI8nK$ifW0(1^=QGfx@g%<?TlN-C@LiS|q==)Ch3egh+=O(9W
z*8rCUm|a$NV<m&=em#0a{;~iZ?iQ_evr39SxqE=pRn^DU6~EE+4A3h;?*M%Q^k@D7
z`UcT!?S28S3UGOVD`b?f4A6FWF)Mt1Yt4jLvoh79oLLj%eXS$=85n?3*9EvHz_md%
z-zT?@9s?M~*S5D;P&Wj)kwY2a!2mY}xH*U%`0xO?1lY1Me@B2v#^gzE4RD)C1`FOU
zNcmFcM#HPD$cF~FQ{=+}Y-_DQYpt1fL=c^_a#w(nLhcT5KbzAdI(KE1NbU)6Z-D!R
zpJ}ZtYHeseI^YW#j1}Ry01t2+weF_%4O%lH36U48`jAxkVb(LiqX8ZZFo|xQlO+H@
zGx3@z<cR=JMn)2Sdzv5;Zg6`lh~6_i%_?dAj35bL1xya`T!1+N<_35^;N1$-0!$Au
zMQna*fXQ0Z^68Z5TTZMCX9TdSt63akRz~<tYPQrA()eFux#iSSt!e*OHAOxz!2AG<
z0xV`JRn&q2F9%pi(~avLT60Xl)cWq>(T9>HoPz<D1<_rDPh7M>`bqkE@~v&v$^fg_
z<SZV~;*|ia1Du~l?JU-CpaXmz;2TaBnpuGD0p8}EZK~D>*hFs-U_*e70e%eCpIW~b
z;Pn8PHCJy0*w;*P4}0}C+HIq^ND}UCf0L%(M)z-{-wLpmgUcz<LjB%ajcTJwj&uum
z1bBy*7GQ6HodMnr@P2^Z0VcN5yJ$IU`Jx63+UVEX=)G<94{darw)%qr9|rg+K%=%g
z*H%;WwKZYSWw||^(QoESJ_+z?fWrYkXRQM44{$KRA<m$-`uet-l{~;n(Iz6^*Tv)8
zYS#0!AX=9)t*!ndz?YoS&D2)`*0j}q+Nk&1>TYl5xqp98b9IEyA;6yjf8gL)fNukw
zq9sUUzYB1rt^Ogv_W_Qx_nN2^BEO=&B4;W8wbdutZvkqz(?L7kxt%^8fWlt`{KmUL
zfHML9X{vq+aNY9US>gTL=>grtQSCJQ|MviYuydM5-}Iktr^n>f$u;5MRHGZuqHGrb
zGB?igCAl(L6lGB&i&9yX&SGUd{Z2d0H6$go*wrokN^<*Ca^OfYH)K&fE?=#^E|-mx
zSIVMt7Ui?3kcHV^pVwUJ_PSyg-@Tb9sgea(?^Mg8dKRZggjKUqU$Gl&WFsS~C0J9C
zK@JC7N>YcCEH2BUTNd@Qe0hjwSv1e0K^6_Ou(NQoXp}|cERtEIvWR72WWhd9WYMR+
z=E9qJ7SS@Ec6vyA{doH*&vX{7+e_`WVm-6SWMPSfLK@ibD{>^v;q~^~&BDuqX>(cl
zSp-=$VYV&Q*f;YFnyD-;|E)Z)PzZBwDzRLQL>*e`$L)0sc2O1`vgnva%PcB&Z+U{<
zl0~a5@>%e&Ksaz5j@H>|CDQt3xi(p}&Ekjlx*Z$RL4O=7+E{xIM+Z$|rz|>W!4uLh
zVH>l!FpDl(bj_ko2fpw`&6T<OZ{~Rv&&Ap3pdPk@HK!5w?VyKu(3f&pTPPaU&3_kn
z&!R^bL$kOui=J8Z%A$W31G4DNK5VA0VmGo0S@h+wW^siKO22G0bFa)|Nr%V?$)D_?
zH+Rqzx`$Uw7qKCOa%x}}*JSx#6gOt^cN2AO7T0HSu!FuX3)X?g!$DzikO)t8&^Kjq
za~6ZMxIK%F-NRc1Zxg(ggVIq`$m{cw;T=+qA$+KArq~tiZ4N8>Fy@@a{aK8bo*BW)
z$cW#S#YnoT_Bwx8*s!C%n|<C<lib7hcGOqb*7s&{Ult_1*mcZpOcvuM|FK!Vr;X;+
z5Yc>q<J(T_ChEZ~9?Ifj(Rozx5kXdiUCs8AJdwqdSxnC2Id&lXCyS@}Ti}2-k))%Z
zW~=2L_0uf3yn04(67#H}o)!N0i#dLcdS3LIgl|n>;AB}DP7$1%#k6d+27?m5rkKut
zn;M=tkeivstSmkau`k5zEMCf@N{Ff<=43H9i+x$_&thH{^Rw8T#g;7JFh?b>V{9k=
zauy4-Sd_)$ELL#Jb9}RSyQ41ONiWOd^NxCH7Qb}VJd1337N>fIiB5Xxx^NYpe->+L
z(w+2b=KNZI4Tr2p$Y767`u0wdK0ir6-bueIrL50l0~NA(jYim6*X^udr=#ekKkTGW
zbcz-dypaWQli-F<`b{>iNBB_|%RB40ve=r%wk)>O3uW;htCz+9A?rJ!r6|6q36BCv
zN>Y#<3_L-6vpc&x8)oy8GX@k41am?VR4{=7Odx{fAR;J;0f}b8h#)A65)=uFBGCY%
zf?rLI&Hw$*cg~zT)z$ajz8$9DzS)`Ck4o?fhqs5-rr`ZuCi$3q*D#B>Dy<ReRB-vq
zwRI)<tOV;za96<{AWJsN$SiJ<II-Y<p;k7^>&p^+rA{&6CN@-Xx6?B3Zsu|=!6D8<
z3AQrxDb_x&uD0&B5?)uwcO}?ff}fT1_a)d-f*(roV+oEHyta0hU>8sPw(f5Ajv_hr
zJv_l(@4Ne-xc{_uGZL?8>+UVV-WK>p(P+jV?JvRjw(bFrd0Us{peBN!TYfFUnzrsK
zme=v$I87z^qXb7d!WN1w94*10+}lg=ZwZc-;I9(=%~Mjn-rd%lCXW2^wyxX5Vxz~^
zeU5e+3uP^w(atSrdAAmD>N%(Wpp~?9D_DT#z0{5~UeQ7&3+>vuSG4n{fL-A7V9d(O
zr-}vYRV`GraA!NWy5)6>W>2+qxw>jtsA=J93)fhvWudl(^DVToP{+dQY}dkBmiNK<
z3=8!wG_X+DLc<T@ue5XPv1<$MGcAyBXy=|i%W7!x>j|&6k%h(<n#hql?+n@3&ZXW=
zwatYT{i?Gq6f?IM?e5d8b5wP%u%$%LMuY~fL|O}((ghYuEMzU@ELi-)!Qz)4a8`O(
z=Ykf(7H*qh@nf@XA!Ol!YQ?-tldoJHvB1mAj)kb@U2>c-(P9-z+(N>FYawYNZ6RY}
z<4TKH#)v5k7211b!6d7GdzY^upq{r-uyC=3ODweI;9KZwp__&F9M9Ut9W8XS(80pM
zI>jrt+0HbpGi_dv^Iz;POmdpFw`%dB>cza3;<TAocMCl&^s>Ak_Ud7I_gB!1`h^yL
zUm0idBJLqG{}X##xYWYsoKxj_8Rw<F+eeu*L-M{%sb(?xl@_iNA7G)Mh5oW+=Arg3
z&F08>pt?z8cJNvY*IAfuVTOh4E!<$?ZVUHVxY5E*76w}wqRel$Fvvocl~(um?kyH>
zl~{X{#ZKL3c^B*0Q}Wv_@Ftl%xa35JS{TN~6ZG!Gq0Vms?y}H#x;26w8Db3=|LjGZ
zKg2d}v2`zJp;qxI&YH-5!uu_Zw6GxU-M2G)g7u(<hb%l{VXTFREsVC%>{aVg3u7!i
zV&UHQ?)3I9$Md@OE{B?9_?U&qxeuRO%&{Fl(V{ZW!jl#zS(t2LyakTTQx+y@K;}*N
z-ZDXDqUG(+9G|D@yVCnizP!CV#llnz)0oU8?|l?sYHiS%W-~3!vasC33hw_Fp0V(f
zg_r4T;aLmMTX@03T#e5>j_MRET&MUs75V-m^7-OSk3+P;!iyR@@`WPY>lPV>S49$;
z;#Vww0q2eLs}>epc#Uf~Q_QQ5T;W{&T-B^vYVkf$j5}g8e->9-c-_K>7Cz!iV{<Fx
zZ(DfB!ke6_sn%N-c#iCE?_Cmq*TQ=iKH!*4v{qSIE%H8>MAc%p!r&xCHpF(Re{A6s
z3+pU=re(0k!lzm%yvWb>z{?$LEwF3k>n&`s_$yub%EISnPB)5tA!JO>)D5S2_p4Lq
zl>`>Qv9Q@f^&n0SVvB{X9G?Id1+dM+w_G6sqyqTP!gij30n`fMdkZ@(oUrh(g`F05
zS^UZphb`>3@Pp-j(A{t0N0FboC5r43{=~DXyF~*Yzi^M0NM5~z``z~r$pI+`joxUf
z^{a*7RQy}`JNJAGe~SNM;Rw$r$BWjygL_QkUz~*<UZ`vbw|58c6VyM_j|*>=QYL`1
z0aOm4N&w{o-oG|HDvFd3ph%>G(IHYLR9s2q6ycn3vF}wifK#PZ6IK_piXZz=6R#nx
ztNYSx2T&(~W&t!0;Pe2_2%u5G8?L%SlKLcupDFUw4yS=gL!<LC0a`Xzu}J_;MLOxe
z<rV>)6@V2$Ab_(2I46Mf0%#S$xyqr~<knIyOw#X5Yv~sV&o?%00w}X8?)R}oB5%tN
z24Dw}P_ae#Xea<D0FtmUVs!RB8bB<7c))vg8x1(Q#L*gjS7!V_B^^K}fWZL_2_PFl
zE`W;yxHy1W9o&2X9RlbWKtV++Z3Ad0-adf)b~;q}e-^P*0Nn!o4%+kT96%S5uELv!
zS`>ST_Y$($Q++4laiMP<_SVlO0bCV8zW{m%aA^RS$*gYxmy7fXfD=KpD^$EvxI*1w
z8r1s-Fd%^I1Gpi8fvTl=jmXsj?=v=w*Bbr00QfPR%8f?3Ie?qQ{UN#~fLj9?B!yEz
z%iB00JG}%rlD7vilmi>U)BuJBa7O^60~iy)odMj%!3prYcnqhq!{Kp{$cO;$4&aLp
zE)@nL-YcE|bc_^vz}Sz{@cO<F2JmAC_n`nDHnqn)xQ_(zXaM5_cq)L$jQ&Ibj~mX}
zA1gjCfZ83s7N1m+|4Wij2w;+m6OH}TBJ9^>qx|raJxzU|6~Jtf=>g0TVe&IYIPA}e
z%nM+C0CNI(Rz;3BZRQ5>oCrA|y&*myzyhPZ;1j!ep$In_8oU(1%K;n;;BWx11n_DA
zn*#VcfW-m47Qn{=d=kKtfcJ39n*qEPz*6yL!sWsh!j;0;g>MMy!lm+d0Ph6wVF2vi
zy8*lx!24YPJDgR*)k2;uRCpA3bcr8O6#0m2vZH%jM|buTYfS*32Jksg!%#8LskI#W
zQ1N=5fa`>xnbUAX0DN5H;g0Uij_wx$Yz*K__4g~a#jGX=i+P=d4Sf^9W~Ry&($U=#
zz}5hE1h6xJ#yzZU0c@8S`L|NO3xL}-i{A&lXK;94aKGIZ;6LNu$p6F+ije;((o(ob
zxT2%`v&dfIdacHN;`_Pb>~#2F|A7Dw2C%oI%cH21`)k0v>QX7_HTqiszX$L~07v9f
zE{LPb`L6)}7Wp%PV<POxm?akRp8)=4<RFe4{RIE6Ewow1gCkHj==GYHM2O{sC<>xN
z@V}G2Vh{+TK_{0}#%^99a!L@DgW!d-DnV2WdVf2(9aRl_(?K)-#c9{cJuQeDL4<>d
z1W_~S{a?&W4RwR46-2*IZtWoWTvDAN{3oqW58@0dBRYAHT-6KW%pmHs-5^>7aaIrw
zgWk2Bra|vdXCq<bAesbm^-hNh4~`F8Zx%#z)$(%F_)hNGL7WpraS-PPac<DNRLK31
zW-VpIYi{g9E9vJ8Y0x@|mpZv5JlX_tf%FogB@76ILfY6tgbZIe$9rnb38E0>g(<MD
zXb`a=;v5;a7(`aRNCuG#A}!8j$cZ%07{c!4f?yZ&QrK}`z2pcpc)K9l2YDM0ItFnO
zM<7|;DTvNNbPt04WoNqt(M?{A*;ORWC*aiI9vtl;dWkdh3)KW8vpE(S>S6`FMA%zc
z(JAf|MBgA@2xCDQmj`hLKOlv1S{PRbaa9njf>_N74Wd622;wQOiXbmrVMGvjb9REb
zCWyg73<=`eAg<$>aJ2++Jtwq6vH#TS4dOQn`PAoxqB6GxajS}hg5G1Zv@Gbk>Dwf-
zII5`3?S|heGBk)`LEItEXP+5oz8-_UOUiIz>+_243F2Pyu|eDy#Qi~x4q{BudoX-t
z5Dy0NkZMP9PU{yxz|8fm?!yw<Zrd{D_!MoYwaz0!JSy>tARZH$C(Fl!@E=LOu&B&N
zDfAjAgC~PHU45Al#6*r~5DS8MI*3U@%nst2ASMSfC5Y)9%t~dZ%4M3+f8dvK_>}Gp
zrOIq)ip&x+AJ)zZVlGF!v-iODvqA7F=?^=(&-u9pF<*qwp07ah^Fi-vZjyyTyeNHX
z5R16%#g_<Q4&pVDSA>lDYLGX8d9&u{!>4-5`CK`1ne^pBtPo+}R|fHV5O1jXrjSk3
zlCO7uOU1W?ct?cdyFt7s{+Vpv58{I$KDP0RjSqwPhy!I~p^cA&_#}vSHrm@*!*SM@
zlC!Zk$Sd9`W23Ci+tRQ;i2Xqv2x3DJp9iruh;7{5g4h_u*Fk&}#Fs(*HPPai>6?Q1
zN_<NvmkMu;C-Pg!%|Q&UUA%=s7T7HED;0hh^KB5{1+g=TT|sPT@2Y$EuIv!`J_vqs
z$s)h=BJK|2hamQ;>c=4V1ii0s_HyAhcYg|c-*WP6GMfD?1AbZdi;2cosI$3)K^$UC
zZtUvg;h^{3{jVI}3D(h0-dCc(N%=j9KX?qWsMPN4{u#tEp5T>=Pq0%W<bR9sA64>y
z#E%R49LK*R{62_P<!qF<QP)O28$~uM*r;yfR2!hu%;n7hm2FhC(RhYc$@U)HAUQ=v
z4p9{wRcU#u*F-fDeyh&nX*O!uIKxK1vs=^l?#8cU<8&LfY}8hfx68Kf>{91l3Pj#6
zLgc@|9H=vG)VC3~5wX$0MnfAx+xt(s5gWD9%0_EOu)V)2JkGY!RJ@t6xzStLILq+9
zoxK}H&QbAPVM}4Ljq^nK^(YO_w|NgCF0fHz<I&wVzm(^_{UkgrDZG!X&OPyfjcO8y
zc6MzWn^wm|w)eCSUtjFlh^lvK8!;Pk8wne(?L8O6ao`v3>|;^}Bumx(l!}wZGd8ju
zvD)5H@Jr;pa${lz8*L3=+u7}4qoWNzZNaKeHa~&jej6igbg|LZ#x*vswb6~E=M-OJ
zqqmLj;yrBiw9$)LshHDxvBV377und`*`+;?qAu>GHZHSqrH!jp+s8&<8<*Rd%L`mi
z@f8wD_$@iV`zGlpWuT3#ZS*&_18i{gSj&TJn+M5tHm<iZ$i{6pZZMX&+PKliO)B0j
z<hR%~zD1mO#0{ujfyKc#hS(TxV}$hEg~MzNwY^IvTu!vPL*ku67VomX8yiUOHp+cA
z?lJsc5l${wAZ<q3c)-T<ws*tTgEk(r@vx22HvS!KvEz-pxO}_p7zX5=o?1LbbNZ-_
z@wWF^6X*9aDUaKDLWIg#k#WK&ZG^gb&ka2#`w7B{Lb^X~W0K*MMY>iio@!&7+L~@-
zj>rt*Od)faWn;GC&v06I+Z3ObGS}$O*_bCj-zXK6#V=?rb?xGv6ffFXWaAARZ%TYg
zxY)+aX1%>)<5ltd^_}=@HkPQk)W&ifE5w%x`HIw)A`JUFcjkC8uP1Z+W|90Y8*kfq
z$Hv%?y|<^nYvVl`e`sSBSL`DDedD{@_P+U|%?C!gwu}3b_<>5^+hy0-_>>DfgiAwM
zYh#^_FF0u2|2Z8^y_++6g=f9(-JZ8Wvq_iF<vwq+^`(ukxW9#PY6zQbd~M?o8%Jz>
zV`DSV0`6}%w%FKeV~35MHnws4Y|LNiJ>K#ilW$Rc>09ybw)fx$$@eyhywROFs*AhJ
z#*a4k*w}4@#UE_%J^_-`S`_~z<!9m4E-pnL{HmS5;I_}k0UHNx{wrkfXAU34`6R+2
z8;5N?{*v{(jbFI{&Mp2;NYZYNXRxG;yQYiF2XKzs_>&uW2t^?rv+);Ktc@}ue%g1h
zTo&i?w~c>n?=JmaUEJd$C%DnQWKn5%c5&Gd%7s9)cNSVFy10CBm3Jvr2mv89SYlTZ
zRt(`3kxD}9bSG90c{iPs@TjV)Y9a3z_gFkFgc>2Q(F;SU8A7cP0wDxLs2xI`5L$%z
z{Uc5f;fxR(h0r*Jx*_mpR32xBP%nh$UA<dUS>yvy^;OkC*iabn>RC1kp_%b&8uFgr
z<)dWOn@jB3)jgXeg!4jZ6~eh8+|boM`ewXk$a~CWR9BY|I~0fb>%GMkTZb^atIOkj
zk>y?8HX&RPLW$9>5IEp8Sp1?zv_rV=zPKAgGK3I=gb<NJF%g0jLNtV!l(^A3VtjIe
z2Al<ADui?h?L+7gLPj<PVb<8^MDjuoBOg#|E8Z@Ip^GivT+JXIL+BDh*AO~|yeFMI
z8{c(Z-EJZL*wyXH36j`7gdQS%6pN00f{A#dtCtCbUlhW{AzTvj9tY#c2|g3u?cMlg
zA@m91tq|T0p>GJ6hwxws4~1|AR|^L-gd0P=K^^@<xH^PuLg*jDfDmRbum^^`Kh6B}
zbd%0~KF`Z9zt;DNUdseRxL&oX*;emoy}w_4gFU}vx+#R4Ll_j|yDTujVuf3{{1(`^
zawT;0_9z}D-Q2+;3<+UG2zQ4tJz0D^$03AaYO&Am_#GkdVR;^RiQFk{xXfBI&l(=`
zo}g#dJt1%t8!5aug!@Q11>Ic!G8A<l1G>4RLU=$1TW|N2Z7*04bCZb|Kf+}b@_s{V
zG*`krYfK2Ybh1Wta~})w;sag?VL=E_gfN!*gfJ_FaUt&y^!N~-3gJm{7O$RfO$cFP
z2-Dbw5S|WUQV5exEyL1=k6TVL%2XP3b1CweA#qVRx8w3Si?dan6T-70JR{ybT}*v$
z2+wg0rSQG?ROX5EpHuSZIb!MJHHx_~gcnt{RJbUFmqU0({3Ugn_OFJpI0VLA!iI)=
z5nc;n>N6hUcYHf}v(#LVFAHIL2rEKZ8S)+%eIo?^WZUZs#oE8Sxo?Ws>hAUB9c~L;
zoFVMt%HLtX7sAdEc7?Digw-LuAL4!E_#%XjA$%A@^_Q(rLRb?*>+bGHT;w6dlf@Ld
z+KHcXw~@`-5Y~n8nfL}FYuAU6?e3EF7Lv4hBmQLwUxlzGgst5Fx$Sg|ek1#@jTcXI
z-Wb0*ghyVp=&~(@Z$sD~;*%7(cDdK+ce3PzUF3sI<Q)?Ec;;@dlkV;h9D(j`rfQjI
zySuflqA$C9mo<J0;g=Bh5xZMIb8E`Ddqa35T+BO&_J?qQJ9Y>sLO7@s<WLBQxjE=3
zKYk72H}35r??S=vw6uzk3jYXsH%=U3%<kT6XLx1lPuW!H;T69=TJA3u{|@0F5sIw(
zH-s`_-WY>QVU!Jn*X4MW52Kvnykb@qMujjSg?9wepg|AMjK?WqRFPg;$lH@BRu!)n
zMyQ8dJ?vep>Dj~Og$2IYtwxv+O`u&EHN&VC_FgwvJB&JEoF4W*(r+5x=8Q1vhT(+0
zH*MAn<IFJ54&$+k-rI5OhtWcMgD@I~(MX(nry3O+i#IV!(=eKeH#f?}pIe?~`1O^`
zpCf*57%jsn7Po}w30sBHTIBpNE)Z!W?5+3vvBeS<$NkbW5JoTzTSe+&cDa;&MEr`%
z<yjRCBNj$nO4`^b!f?ftMoERi*QL^)M@C{+m=os1C>YBjJzTzhv3(fb!|1^ooPK_X
zFgl8mcM|C=>=Nc3cb-8vQ#*2<(=&`-VGIvrL>L!_aS^ZQG%da{jElp#B#i6B*u<Y&
z*xa&r7=6O%tKy}?%Y=<K*q4WKMHqhZN@IVW$W>wV6X|dC0U`s#xLV{I;k81x%Z3=x
zZ}A2b^QJIv=HdzC)-Y}lV`vyxZD~0ujLepngTuHjjJf@+2Y#}NREC5xriXh-%CIo*
zRP7yM(0~UW?;_val9p`l?lA5NV{91X!h9qL_l5Cr7^5`;_lGfxmSG&97#|tNGd=hN
zdBv~waM$&4>G&Wgv0?E;!oxk>F+5Eg7C*}M$yt*-ZK&{gTvhZUe?nCZ_+%L4!<ZSy
ztT3JmV?r2H!k8MyM7ck0f_!?Y?4&Rzs}%<HgG^KH427L8e5kUQ65|i+Z_Q?^>~a{-
zg+YBz7|)8ZmWeSS36FVUJTHB|B2Z!1*dvmKVcvs{onh?KS-B{T*TdY7@KP8rYuUUK
z#!``2%_>?P#%qQz5t&n=9GBU$FqW&hLb$S2)th0w6~_87HiYqZ81IDfK^Px~@p;8E
z?{a6TSG+2W_rmC3ub4;Wp6+V#_l0XJmZ4bY%wigU6voH0|0ImHBJ^Fuo`$idUNJe5
z#_PhER<HQ8FwQzrmc`G*_<{yuYz<>$7+)&vCgE4?`0;YI@mu*?;y1$0Lh1}lgKc4K
zm-4NU%6H12WZ~o1_uMK!wRfnBWOo=paIHo#ID#L;*uxzxg0mv{DU6@Ps1ZTU2=<2Y
zOBlz(_=~Heaq+$|4uo+qjQu<f54L=wQu)jKT8F|o9L7;@FFjrF<!@p97RK*kkXLV7
z{6`q)94gzer+b9E;^{8E$ccY)k8S3;{NAMa?=YX)LB$9vMQ}Wf6Jg#Kh@yxW;a{F#
zeXX)ga$>wp1WWr^^rccRg3tR{But<}1l`*dA>ySp?(d=&13jBlB3{DPBB&lg<p`>%
zmM<UXyJ4$FaPE4KoGKd{pC)2A@m^lXVyy^jM{s5Y^&_Yg!RZmOs-E(>x2XIX5wKAn
zbt7K>J$t(3G-wb(x5j9qPz@t!6hUJ-vV(os+w3fDnnutpg60w2(9<1RRGtcJ$<L1P
ze+qPrpc8Y8pd}+m5RRZYg7YG19l`kuRb`LeD#GWXir6&{W}65uh#(NbgFW578kyCN
zi%TM~q>xkR5meDOVk815f<y#v1W}2{8yCkTh($mb-#63Os!_*HMv#hl)5IjJuD7Yo
z=;@{-$V9+N<XmJmBe@9jB2)?@ZH4WG?S&nLoU+albcx`q2>M0Pl_M76b9uaf72Var
z9uf46;O*LO>pEVKdT|Bzu|7RfjyQf|oOp2rmqu_|1am68mk4`vsnmB_?87M=U|k-;
z6(W5jSk}{}!h^L}N+joe^^afxryznGB@T?>+6b<T;A(}sMj~U<n8*QS_pjIBa13vX
z;N}Q88iSayM(>u0H$Jz@z;|Kt&HpMI65+ixSQf$Z2!=*5EP@FUOpM@;2=0tvWCWuk
zxGRF;5!@ZYJrRu1%Hf*i3S_{~db;s}*1Zwj7s35%k*kH1&Z*})MSOs*NAP$APekxg
z1P^OfKf*@)dh7paZFh78V>E!|R326Q$2g~l$}$v}`q&6~vW$=5U{9B1Tm(-_;Y73e
zlnKRvPe(8*g4q!~6T##NrbIA3f*BepW->K`X$pQyFPD)y!p#5T#+VtwEWcAty%$0<
zhdB{E8^QAtyrAixE1Vy}b26jvJPjt_Ioax#aQVL0f(RBy@Ja-)M(|<;iz0X_f|ny;
z)z-RRrzjFx<o-ay6K!z>OSsq~cr5}BAdhCfT%I^wKX(_EkM(j_M6fb~EfH*u;PnXJ
zh~Tpb)<^JW1aC#KCW23u%-cH6-{tUDD*ukMs(IKOxA!7grL@Uci@YDf2S)i&<f8~a
zHp(X=Jc-tt705i-iC@y|zxBC+yIBNZ@XYFKacOOg;L8X&3*SWWRRo(N_*x5qi-C=D
zb@}HeEjKGMjyB^D?&WTa;0JEz5qulLcM)ul;QI)6MzD)(ub0cye1{@b80hU+Jex>%
zYXC_YWDht02o9_JKXc_ourGrB5&R+>|1@Os+|LhaT^-csz&IS$7kjyfI7eClzeey|
z1n>9qmH|22IugNAPGWm3ZjV1BIL1@n!Nm^#ir{blo`{2-gMYaBM|de1j)M~s{L3M7
zP~Slr2W1^pcW|nMt;dSWIjHEMl7sRNiX2pMuy1m>=WXGy>+&_MAhPK5Qyf%wP{qMT
zlf%zU3sbM^pqhigu<}LwoK^dr>nD5SX%1>QIKx3*2Yc%l*K|<ZLCLW43{p$JzwC4B
zI5^$GlF8xDt%?GZ!wgu@!Qx{@On_!QUaDB8frEw)&U4VpK_iDR&BNIa&T-Jh0pIL8
zyJ>L?2TdI`bG%o)Hkacqn_G@(RrJcXmUU*?XE`9U>RboS>lL?jyq{KCUALIE!Ft8T
z4v6Hf9h}ef99Rz8I2ikwMY9VyAm<m+t4fI%EkI)jBq0a39P2!9vsiw=;|B?=_Vz*H
zs0edQh{PPkjY50ZLDE4=t<Z*T@kpzfaj<E>&0=2m?HsgsP!Mmc%$W%jV~`FGx=A7L
zD1%N8I<vFS+g%)Vb+DpF8Co*_=p*I2JLut{r^9D&aiPPfeu_5ibT~>Jz>Q6cIX+De
z+Lt)!?chiXM^m`e!DSAnxR~mqkAuDr1~?e#;BqrB{T*Dv=2{hTj;?fYmGo{?!u^=l
zl(09U!^#t{c5sb@mt%M(hHD*MM;^s1QC#ovjy05zq9}?R<vY*8d<Qo<xY?gU2ah{=
z!ojU74svjtgTW4lIJnQj{SI!IeuslQMTQE8nUwBQ@gCuDA(I*5;BIl|>}P&2?X@6B
zIvC~PVF#mS@PP0^p>ObzBGYS(iSVe%BZ}Zhd(5=X_+uSRb@+I)w~WU*c+$am@uwU-
zZ6Zt%nJ8o{lSC$S*iBY`p3|j2Bcw7zWTtSIaJFf8j*8C;=L(+_`sqFI-~|WYI{41P
z0_h(M8FL|*go8y6Ug88fSkA@673JVn87vhp7QQC*11>4Wm-&2H`IQb{ckrHrRSw>8
z@TT;49lYh>Z3pj^a`AiT;jr>NI6<o&yszEhBL^SIlC>Y2$o@q5O@HEGje}1etmXM4
zgLTIKbBE7yd(*n!C>u<KFC1*-reXB2%((eEFoCZfe52aU4z_StG?v>;1iy9KZ|A-$
z@p}h59PAYT(ZL=EyNuUv2S50ZI!%6Z_=q|VIXEnFuY+IwTCKo+4)!}ZV0;fMH!mfv
z)n6U_=HRG<KV|T{@Q8yyWX7y$>5mWXkE!-={uL1UZ`{<%aVaN+|ME{j)LWlrqyL=+
z<y7?hSRo2T(a*tCQB;hgQWQO-=oQ5&QB;niQ5213TqTMcB8*d2q*@f!jdH5UX(oQn
zC~8Tm9Yx(J>P1n<Se_om8RCAnXBxeMNPR`{s~Q@!CQ&qvA{<2|ie^zXk0PL|7RLAd
zD9(!F>?qEO;#`U6MbXmK7Bi;i#UJ5TQM5LB`VF;-;({njWN#U-1$~Qrub>oL7!vwk
zP88873Q}TG#G^<>k&YrEg>AW}-K0@`$Bc?OVb<8>RXmwz+bG&a(LRa}QFM&*4FKpG
zMJL~;l%*fATNK@+=po(fqZR-|`Oz+n;-V;?h<bl~FOK4pC~k@3RvGt>qHh$JM{%j~
zy-cK!8J{bnxH5`?QCuzkDq(+NKVvgMMZc|U#BUT{8^v|p|HW_cZIqaw;Z0J=Z#Gqf
zqPQ)}$6fJ26oaD}62(1H+#AL1Q4Eb@xUnB5a%U8G7{zb;E)!>j(eF0OeMY(8<ji(Q
znvo}eFp5WH^H3BIM={#ik1-MaA$`>7k45pgsiON>qmPT?N%8TeYH2VbiiuG?Epbv5
zGozR#J~@ghB2%N77R7Y&8A5uUoWa>ro{M5$6wipyF*eVN%oWmpzQ_wvEQsQHW8){k
zFp5P|Ui6JM7cZT(X;t)U6pN#15JSTlUX#8nirri`;!C4g7RB-?Rz&f66kkNKGK$w#
z^=TAuh`b%eJ5jtT{+7_6ns>!lNAbSMd%{(v3_ghBqbNR>@}aLQy-&o~l$tfaFKeS%
z7sY2$te3%tQZBy1#wfmwVw-f1<X0k_HRGGeqxi;m;W@%TN!lE?NZD%iZ=?85e7kT*
z6yJ+@^P=2#n)UNT6hEr!SQLAV&971XWcbff>=pkdihUycg$IQPgp7G8io@!uH}7iV
zH&y*E{3D7ZB1erqGx^i-zoPg%ihrUw9>u9KoEF20DE?J#<(Rkgmx-ZBq-+f3M9RlX
z?TW+7SCEJpDvDH!;S>?Czoka0io~ihR1>Lw(nbl_Q1NtO%@}H#+S(#@*rLoB^Nbkk
z#!xSYGgVdJSkl0^X(S~dLm`I7F*J#xX$;L`h)8cPY#qb-F|>%`tQgLg(o%Si@LZvn
z|FH7KhMyNhD{;S-HbxJ|aDjM<Q7n;w&^NYY2$|Zj89gV4XbdswDPi2$Bw}z4Pl_;3
z+9(;3Yz#T0_^q^!VNeXW#n3K>_Azvbp<@hvW4K&qonp8!hKtyGjK3j^t`d8g2;E}n
zZaAa$6z?VU7x~5Fm&Uxm1(%5T7W%V%nRuU4$`vtO8N)UFNFT#hMjxQQ_lu#wQ5bxn
z_|-zcEylbqh8tqIF^20)SyI1A#am*yS;YTHbF1&G&xeC!7!t#{7@myb_85l7@IVX?
z#xN{~J7ji$40no*5Z)ymF7*3ycMSK$aIcj6g#Pe)wZqDfG?t@G)k8*kMC4)NXyF(k
zy&jF>G4aP^7%TFGU!@Ji@Adc?o{C{s46{`=A%@8@Oo?Hlicbrf!=zH@!qgaMNS`L0
zF7&gVY3x~iCWbjNJbzMAqtC`LH-_gV&WmCG$y&3my%56!P4_}oEfT(HRxdMo$z<|s
z42xrUJ&rfxc#SSx?Qw+T-tMt9hIKJ~#!fXYUKYdh7*@ovlEyK-AHxSRykXjXFNQZ`
zcq@jtrMzQwe{kMak$qVuvf32c1dk76SR>^lA(f9~_{4B}eJZ|I=#S6(7&gT4OAPxY
zejdZ-7`DXlg^C-6U&ioN44cHi_ECG<Hz)b9@>^rr7Q+uxzBT#|k?(}tWBA_ae$zW+
z*kzR68e#VFM=5)RT-86t@N*1%Rb;L2xIcyiF_ev?TpR~Ygx_O0WcXo`Ut{>qIC3cd
zh~Y>KM`QR?;_(=ciTo|3!Cxkae|#_Pv?omMzanKcn|>PQ<2Wsj8gUfGQ9(L{RpY1_
zN2NGUiKDWVD#puq^rw<7R*R#$s!lZq6l=y&D~?8SG?rL9j=FKwi=&Q;G&o)4j8ZOV
z#?e5<`o@M0H7v!O#L+a4v*S2NVl!cjIGT%`%;&85e}7-jjiY6pZ#VLmE|20kTJz1O
zahw-ND`P{Qt@yre;<$i%ss9nII0A756~Xpf(RlhJ5Q)Qy<E}V{#}QTSg>hUIM=Xwb
z9EmvGINHY1E{>#XbHbD`EoAGNII`j=+s&(3@I^J(o>>|D4smo8?_?Av(<P3sadeZ?
zQ`kL@9wH2TGIB4Yu-%K}7#PRZQZ9+3x5%Y&To&i=K6@i}MI2Yg(O3L(;mJ5x#nE3%
zKcP2<t%?SevbiRXYvUL!<vL??OB~mW-w?-*A~y+dHgj<@{;hEgGG4cduxg0N?Qskh
z8790_c!y@qcPEaB<L)@7#xX69d*a^TxJTo7ERK8QxKH-?$MK-ZNFnndCGvof<N1)t
z!*Ps`V~nwRM0t9vMU(P)98aifavWog&BQpyi9abEAIDR1Ofa?oWjL(-(?*#j;s>0f
zUND*Iam<M0`8Zxs?aVl4i_9`!jPpz!b5wj*I8QiN_?(b2=Nm%4AdZD9E{Wqs5jON{
z9E-$X622^a#nk#)E#_YVDJ*g%mx?coV|g4a#8;NG_dEDz9B(oC1QsOlb{y}-(I$Zl
z5_mU`_u}|Dj=gcLiet4Lcg69393RB-jfx)%H^lLI93RE;aU7qR_-o@>BmSw-Pj8+0
zXK}1IqZhZmOO#(2udm|RDE_7IWzOzREE*d>)Mgd8#IZGwZE<|7;`TVckK?=lwcMfN
zPOS&F#lw%VTlx=i{Ald=#PO53KQh0>v5(tq0!VnL*nU<06UPDm35erR9EamL630>L
zzY2ek<2OHoRvo?mFg^WKI+efTIOf}^cYhn5jUJEVL>&K0DW^thUnYUFhWnY9PoSuj
zQZa!_3Di%ZK?0{FP&t9xrnX7~)e@+#V%5ZdJMF0noF=7~utowkjXiT<6F#!(ItiSf
zz!|2tUIKN+{WNHBCS#g8YM4Od1e(a8k<pu~*dl?m5@;sg{C^{ytzydr&JkhEb4{Mb
z37jXfRRXOOINx_vbAF>tqa*<<fnf>Ukw74UU;^zDXfI1UfoKA;1VScqIDv?`V-!Y+
zi>DGuizI|@0?Cs$t%@?@d81?#$QkYrMM1^3rq}F6hXk%n;Hm^VCeVp`f^VqvR#Be>
zx+c&~ymtcK6X=n^g$Z0FrKhl$83Ece{>2h65&F&f$l6O2xJ<fd*{Z0o;g=_HMJapM
z_DkT}1g?|VKY;-W3@nxH)d^fv%KrKUZb;xZ6Ya(XZZZ6(1a3CmpM_gh9F)K~vl0d;
zFeHK7r4JRJoUc0*xGRB26L>6v;i|enfsqM}5NDouCvcDWy$RfBGCbMeQL1`4fd@n$
zG+qyx5gTokF$p{(?)yHTz!M3~OkkG8u?aktzy#)O?4L|vyy0}2C_XuXDG5An^hqWk
z<~cQi=|-PsTAv}sZ*g`4&m{1iub7dUlfbi5<{Dq$c%F*$h0hB)Vha;^F@eJg{F=a`
z1YSzuOI5v`z$*!SB+g7;P2lwe-bi3^0<R^oMEVL-yEK7i;>(5pM65Kme(P^?w@=``
z1l}_G+X=km+narCRRSMKSuK3uuQmPpu++$Wtg25ESd+k~39L<ET>_s={7kq($jsM^
zoLn1JzL2ufMEfd%O;i&2CV_pb+AO5yo&>feur+~g34AMYxA40JzE5CB0^3#egVTPe
zio48AQDNVIkVyWcX_5RVi9ZYX3V$h8yI;zI1P+SO{*a0JTLQl)(9=aP7k?yhgqx>}
zGhFYiKbpWl#{SO)j*0&z{9EYfc|3s=3H+Nt8J9oHh#D@+x+v$OvWqG%%DX61w2Ce&
zh(O5r|BYd*qDn4KasS)reX**ssqUhhI6Ka&Qw`_m1V*T-Vr^k9ze<x^htWjpx~S(O
z<s$9kOc(WCobRHIiv}(lx@h6zEEkPjG<Lx!(ipIbkff;}O`pWr7LVrcf8Qye?Sj8k
zSM1_E*_`X5r3h_K_NbMK)7p=tPspsL%>^z3E`riaTv!V0jmEI@wu_L9sEe43unZ!`
zod!IdQpLCnSH*<Tk3dZNHp9wiTx7+&y2!cULo=OJEVyXvqJwxlVSAyUydS5dubA_w
zvx;4e*iEFnkoG-{exZwtTnuw@hl`6{T;k#y7uTw`w~H%WT<PLc7nkw-U*p@?_ia^l
zxl#Nyu2OM;u%C<mCu^0`KozexYvwu?2Me!vaf6E+UEHMNAQv~gxJCR{GlPB~{cYqn
zEft?rA0o@!T?`fR^*deM<>Fx%qg@P_ey@xBL`Dejc5#o0ANhX6A9OL&#V8g1em&rG
ze*QN$Y+{V~I2TX4c*Mn{Dn91o36aN7T53s;HN75h^a&zQnKeJr=uf+t<YKb1_Y;_=
z+8Hipx|l9rUqd>}#cUOyP2m|6;hiMrxOmpZTo=!A7?a*PGS9_)p0G(&PU3kNFSz*1
z#U?(I<zk_W_g#G8;zbvW6y#kOFS&Tx#TzQV;^I}26)qOLcujnnaEXhhB5Y#gu_7KM
zJeIrsIl>|y<SS+Hx{wBMx_C?cZ5QwSf4=WYStVR8^n-lp;v*O9rF<-8<h3q7F?@}S
zPsP~;UDg@>GZ88qTzoG6g^MqJOJnnYnY;ML#X%Q`Tx@o+MFzWFY<02C#SRs}HD23A
zz7sOS_abbFoVo3EvCCAk_=AfdUF>o3lZ#(m>~rz6YFV|{h3`V{cXq#v1Er$*;$auR
za#UUX<Kj2td(_46;(rK_2v0`))5S3te@Q%<*l`uhCQ&Yl6XO30%V?eWzU9T450WSn
zuV54!R1~iy^zEyNw@BiwB&sG+Es5$<Y9>)DiBrW-6EbFv<p1@zb`o`xI9*kKs56pi
zkVL~I>LyVyi8GB?ePiRBF;1f-UwVM1Ni;S#tZHU>^Q5-|Y3AFXoy0jwT$sc~Nt~NR
z%Oo;MWRoaP;=Cj-NTMW(R>t@IBw8EpySGu1+)5&lL^O$562T;F>5(KtBH>bAe(OxY
zF`2}ZNF<RmHf|D0@spN5Nt^M>C6P~}n`{cg_DOU|qOEv4AycAPM{%~*If+i<eyA=<
zbTzH}L(yHeJ(B2YTIp5F{^BGqNn)Uh);o#5NnD=9rAE0-q>u5v!sz{yxYF>eOl^Oo
z3@{3FxH^ezlDJk?*Cla75;rDsy^1Htft|W3iJRp`(LZjL&7dT1OJZ;mLy~wpiAhP^
zp2Sd9J(<L?B<@IJR1yy)`OaS4CH;QkaN#{kj7Z{claD`o_a<>)DTPV$7+GrE9!z3%
z5@QtMA>qTSr8_MjN#gM&UqOsVlX#5FV{(`Y`#4s{v>7MjcZ9|9Mt>@a35HKJHj|T>
z!d*Iv7o<!T&P-yOlANBz3}eYqj5#Zb*-1Pj@!2Hia{n)7@SOO(B<71SXFqMf?+cPx
zn8X{ZVzd{Ncr}T|Ni0g@C5bO5@rrSzf#2e5Ni0cXMG`BMSgP7(Nh~*G=-c?MFg@Sv
zb(yjFrpQ~uw}rkX&E8Goy(CsiT%80`sF=e0NqmsRhe>>t#E(hrN#f%qK1pJI5*w0O
zBjdF~M)*{Ot*jII%oJJmc@keF@l6t&C2maOt0Xoh@uiA1@X{z{?<-r9*qX$SBzCH5
zTN2wvzD?pgvqDbx@p~yO?lLiV8=D`D!d8At@+X-2d?k)Z+?&J!kzbP7r!n*c?w3e@
zFo{FrhlRfhe--*e_j@URl)HKo|0eNg633+fmBc?H?9tyMjCs723-vN7luvn|6L^$O
zp`782Uu1ZN)PFl_r4&v{p>v9_$VTN9s-zG|A(%qd6spO%eu_T|iBrYTNa3^;YNSv{
z#hSv}Lbg@Q#3c87eY#QV%BEflXQuw|?*;Q|kV3;0-{y_RDV&?)JDt!Zg{CRANZ~AI
zGCAB#*j!#Lo;)AVmVS<qZSi1LaSG?9a6t+sDYQzVbqeRF(593xTcjn?Czh!?8NoJv
z$)ylVA)G=a1xI317)>EA5;K+zl}N!g{bDF~Kb1mS2ALGHA}1SVZ9av9#J0i?!gj*;
zCJxOyrqD?uIo-Ra&@F{KQ@AUI?kV(0;l>nhN}*>8y;8U;g?=eqn8HOVTw%N}PN6q%
z`&97~A=A4og+3|tP2qAgJAQmNLBfMJR~lm$`-@+l!ZjiTgad_ixmM(Q;dMf~@bc^p
zhBMmDDcq96Fr(a>!eGM(iQFb+v>_t5r!dqg{&+Ix9a2~vp2CO}#-=bX#h+ZqJt>Sz
z;Q`g&E4)92`$Xu)m?I7MLp_+n=oH4J@Q~3T7NO-MDLg9vxS55=RHUPSJYkAYrZ7H*
znJLUl;i(iRq%d7o6H|CPg{k6`Qka~=6me$aNAOc3@|b2?nPF_0!)$)|SJBVb$2p~x
zx#G_W=cO<|h38XvA%z7}4ha{gurh_$Q+QFuMJc?L!pkYVlEN}6ucokAWU25q;SwQp
z@RRhLUM_KkkUGUTQg}0k%_(e2;jI+jPGNlt8&Y^jHmg!tE%I&(?}_*U-%sI#6h28|
zO$r~T@R9odu`!^H-yF%O64$1%PV3XxKQm*+9C%|h@$(cm$?^+UrSPRV^{+}<dQBVs
z8xcm^n!>geen{cR6uwR2JL$WG+f&$K?7tWBliw-sXR_PG-(xKIrtp*a&!x<m$uBAF
zGdBB04hRpXP-cpE@r1`=DZi%ho3Z>og+Ijo=Kf6K7#CO`6Z80s1Hw}&hg);_CxzoF
z)XI7L{0Z5YOQU?6KP!MTX_QU>xBv4_dm8+HUQtmR71FpagX=Ru8Wq!6na1lftCU8U
zG`gm7N*a~ZsFFt2G>X$WFO6zxR8ONp8V%DpHI38KsB0qENTXI7wbQ66#s43+j;TFe
zgsq=Zs<xh~J<}J{@Vy$P(KwCfX|#~uB#maqvZ-&We~=mNEEUfco-I5_$SS|5Elsgi
z8m-fC(@3Uqej07k2&WNI?FDIAX#~VegiIrthAkd43dfBx{R|z6F=15bH%FVeiitFQ
z<5U`HDecq9q>&YGn?_EgAf#7b_9Tq&hiYe(4rz3hnXh+BqqFg%(k+edX^c)|Od37X
z=$Xb%Y22JfuQV=9<H|IyO5>t5E|yDQ;U#HYD$-j`_+c-T(#JIFck}Wzu8{60)-R3z
zTr)-)kj6FQ1Jk%#<Ye-Ud99gE`d**L4KldV_|o8(G;U4f?lkU6V^A8mrEy1^Kh1!_
zvbo(@4iTaKP(y~9B=3?kLO5LLr_C1qPTec<fi&(*<9=f>GL2Ct0_}a52UYt}8V`&3
z?vIF1OylV^9u<EqjmOh?Li|Y~+Zrn}PDsb`X*?y)$P)~q*`zckr}2CmFQhRgjj3ro
zr`l<0Oi$yPH0Go+L&~f)W~VXJ3?O6r`S|@}*k@%nS9r2^o{F@YZ}bIeEEHds#*1kz
zO5@cu7W=hn{u+q4C%i25BNG{%0bfgFNg7KvO1{D>zjnE?Utz}ZjWpimxt~Gp4BkrP
z?KFN&V^13I$nv8!K2GCZ@%PeLC9+!hK^pIi_>qYps>l{UNn?%pwlqFXV{IB6)A%xt
zbrRR7u_2AmjITd9pQrJKap!|bjOOcKQB32TG&UJ~#%Jy3G`1Lf7Pp#OdVQP5cPegA
zV`mz>()d1&9cl0Rrjw(w+t~jg;<x4FPig#}#y@HNOqVo%Nn>9czo+p>8vD~Ykj7!T
z95fLQnUOr1^RH?C&aXE+e!wH*$Am|Pf0nBKOWg0&adA3U&fo+$|1`>EP&VU*LI&kB
zC@)@=@pdPQzE=f_esdKwsHCEAaEjqoM5<;`EraSAoSH#R<8_)yjsJ~FcRrj|Cxg>7
zNN13d%^4Xq%b>Y<-3;nwaHe?u3>s(9B!dPSG|Zrp#L^l1c{VMjGusv!oSQ*QiDzYS
zwg~leMCekS!Fd^kG6+j)l|h>fE)Z{>!TBPbQ#MqRft5iZgJ9;rzd?SBwru=?@|8#i
zP6qJ|-;s`}YGcNRPYw8ENOUzCNmbD?rJ~<fHiKLS7iVxu2KfvM8T6D{+YH)?bjzT9
z1|7t^2s>ubS%i^0i7;n>e7YK)#qNgpFgCr6a$$zQp7Vbzig9{paFvuxGq_BoPX>LB
zJ#)T1gDWz)vebb1E%wWxzsv??aE-{o46Zh2zRk6z;@ptIjSQ8=m08@B!Oa<L%i!A#
zZpq-*44%ngj*JIoFd~Dy#c#`Ca0Wv%xLw6NghPeQe3)5jcV=*x#Nle4P4nO&-;=?;
z89bT6_zdpL;C|UWmchsjMv0FRK9Ipf89bc9gDU!&Grm93qa~6*qUIhgW%GCjPpCLn
zIL=u5zE7z*DTB!(6Ec`6!rG@r*wB;=ri#xJPRn41$aEns{bXjEQDqvl4SzO+xfy(z
z!ABW9m%+RYR%Y;e2J<s`K7*GtcqM}u6laleK?Vy&UKIMhWBiv?^mBeSgT*Q?7rrK3
zDqLblo0iL@_z_kZ{f!LXl)j4lzsS47w}te2$5_(wJ&A06waEJ!d?4b-Bz|nXHfHdN
z_?iqp&0uW?>oVAo!RKZiKFeTzsmN@|?+b%`Ve~IE_$q@<jFZ6@6ZxAAHXF`N{HC``
z@%eWdZ0CNG#W`7gpTUj{%4AVCi=7$l%HU82hcnon!4Dbi&EOX~{wVxOxTjR8pG_vr
zZC?flR7JkOl+8h7^J@mbW$;%9f2;O);h!1&A#x;xqsG!-9*lF$#Q8_$gz&h~AB}&F
z0gL6bD4#`*ENW)?`%|cpMYXK{GzcqYaY_~y#eH95<t(Zgg^gA%#j9s=s)`)6(?tBN
zYGqMd#pc2~S)7?g{VYz;;*2cnN@V1E#)a;5Y>-96EPo-(%coHmjk9P%FY`Iy&xb{x
z-OWq{7F!s8mWg(57A>=An?<`UiY2zr;(U?wvS?-O>DwlY3$jRL;bu{ig_T7l3nz;}
z7Qrk+S%kB&v;Xsll3qNRjNj9!i53@$2~XN2RZM4*$s%Q{=$p+Vmqk8{f)V{_zN63E
zXVD>xi?aN|DRj)DQx@H2+*#OF$WUEG=+e#PN!}xip3)hxR~8qVDnIi}RCSq&&^wDu
z4W~gL@xH>#g?>I)WzjE-kF)qBi~d;*$l}Q?#%D1wi>tF3p2dhPuF2xsEN;%?7CBy*
z#f>7&^ZG1qC>8A{qqD_Z#RnT@P!_j|``Hf3;`S_tW-%;_JB^KBb%%<6dUu&VvaP$b
zxIc@Ls=Y^eukb!CC*OWl7Gtt_B#Q@B^<Wkci9DReXc3zEt&lt_g^?c@dCau+L>6Ne
zbDVMUgFltUge(@(EQ^U*Je|etES||?QWlf5m?7gSCgwDesb;COmFXrL`OGY4sX0HH
zIaxfL#R3`l%G@lT%VJ&@^RswC`tu6q*D}J%j*u^u!HdTIWs#*>EX(2*@mI50oW*P6
zv|l1}GQ#pKR%G#R7Vl-TGK<$$`&Jfjh`edMXzz~$BfOo(JEm*CxGIbHv-lv3)urrd
z`Jsv*8DlE!!kR2T&7!KVX{^m+T^9SZIFQ9>S*(}+t}HfW@p%^CWU)DmFS6Ju{VO3O
zd}#;+ZpwNe;7PtVGq@#-tuok=#Ws=c!f&(qPMP>Q6TdGNXQw#hP~V-!4_W+}#hxsF
zkxucaEPiHNrsxOpd$g~V@4+k%W${lI$Fn$`#jjZ$Q|)iY=4ckbXYq%MM}+>g68|(d
zzVerfe+&63^h6f_idW2`Ob%spsGu=q4&`zvFYY@Q8J$Il`yXOySt*B8a;Tj9Zv(7S
z%B!03s-DBC;-?8~2y2>Jzlqv8)XCv=iD%@{Du>qMb%phEI5UU(IW$nQMGj}>&``XQ
zu(7a74oyXx37h9o(_AqlIa^{&Au~Tm<lG#5<6;%h6Z*>eIkd^4V-B5ixIlVXNZ*ni
zEW-mi1jTJ(NXVvX7RkZMA)4b)5PHR|FrGt7Bq5~k=8zO;yUa5!o)P+SXp_q!pF=@n
z+Z@{E(B5R;;eRcCm(Dp{n8QUmbWtrMbQS5AL-!nd<j~XTy-Xb1(D&jTF3Dj)4g+P-
zJBKSpE)`yuLm!d8Ib1H{kJT08C$qgOhkjD}m$JE9oUPm_a!n4`=5U?(^*P*NY8lXv
zNz0owAUBs%2IcTX9%J*kEr-E549Vg493pu*d2fV==CC@4_j4GQ!yP%?nZsQ<%*tVQ
z4#O4y{v1Y%jL6|`k$X(L_vUb);e30^s2m>1VVqGO%wdf9L&ArRK3XKt&;L0*D*hNV
zG_{YLTIM!ZoROc*VSElxsW>Tz$vI3ApP0kbIq$_OH0D7vC5Nf1nvugak?BI#vPIv9
zIFoBb#b<Julf!b^JS$wp6ElaoIXsucyd37|@S^nRO`HWeyddsJATIph;>$Vk6)tS$
zHR-S9@T&1$Y%G_EEH%YtrWY%6See7?(%%-oA!M{Sb9hVK@9#U}@8<BH=?iUE8G{dU
z{B25{oyR$Oe3Zk-Iqb?|w`xDhVPg(o=CCG*Pjgr+alLSz@G~K!v7rs(pBv>1)7Do~
zw&buihfRL1@Ec>fS%ibL%_!fCe4FEMWqJ#5yD=c=u_K3_#*$t?i2s$t-#Pr4!=4;|
zl5$Y^a}Ik&e#v3K$UY(C(Dy(oekg~-IsBT#ZxWB?_#2&G>pcF<;Scd6Mmd`EUUB0G
z@ogCGpB#?oa9SQU@;H&hzd2OViBm>cK98b2%8JvaT>ih+SRoJOaf<YcrnZs@W1eiH
zvazqKs%m*u&*RkpHRCMQ%%hgX26@yLIYU@S$Y`gFFml~I>WQD3M}1RE-Cr{e^JpZo
zaUM<cXeQo7NSo$)w8-NuQ=|)*vF}JcS9+T~F36*$c(L$2VJjgsX`RRU;=W^v(Jc|b
z?}0pmD%!%3FkH$YD$Zy<^N5MZ^GM|3=8?>!vy@aGX_5AMWJK~pdS&y-`HF_RAl_Ek
zu9V(EyrY?dPWk`#gf7w<r)wVF4DX&t55w8DUU^)Y$3=NuoX3rM+?2;9dGyZX8rfWG
zEHBUFGVwmbzD8$+EAqHf#jAt^^5|!3`<s-Q!$65wmr}0H<2s4g3vV!99NU}oxJAW>
zgtz8#XC8OuF-XPR@)(@QkUVbBW0(|wI);k-^TihLFyk;hj}du{RPEiu`-HT)N90~(
zdB4#aaFqB1!Uv7c;17$B7LLi|kvtwXwU6iVm^j`2G)Va69UB^#$CIiWpT|==8tXk*
zeAN{nn|(TuNqM~27OUEN#*?`?3n(dge2ToL<}odg>3Ph^V<u140xA?RE05WEtj%Lx
z9?#@4N0#s8`6IuWo5$-aGQx9tyqL$LJm%#wU*hw^7kFyx4KNGxSSV$TzR4xNl*h|?
zEHM#Y$z!qMuZqy|wNfri^H`S0@;p{ZTxo3l_&&ZN@l7GKdQ0SOAzOS`<h?vriLB1!
zLvHwaysskdKTx&|^|4Xb<nf8&e&(O5NSn{{Sf9twdF;(&Lmr>!@m(I<^Y|i<jd^S_
zUSE=ke<j=`^t1g&e6x_PQ`~C!Hj!`h@Ec|A_j&9#wL3(13U`?i{z1hbg?sY&Nrdix
zTfeAyB#)zc?8{?+9tWfx7Bc=pkwZed{F=va;=kwdhp}O_lllCa$3J--&*PY>{VR{Z
zjl19I3GVh<V2uB-s>-P72Ps!Tc~k4<SwO`C>J@Ni0hJ0krGVO|wz9~n1ynIg)dH#&
zP+di~<u`YlsjVSWQ&_9;UoCT}Bjt4A83oi8p-%Vu1vKC<KN+QA0Zj^MT0kSCG%ox%
z7tN%cEo@#u3z4&gjB|2)&XIC%0WC%RR?aiLRROKV&lk24p7b5UyFd#F6c8-HE}%yN
zJ!L?haYEu@VWa@3fM@}+0^(9S7myIi6p$5h3rH4_5>E>mhcCWks9XVgDIJ7`0@{hN
zs;#kXZwN&m9Si6r#gEX%*mo_Un|ODlu$5i~Tv))70*)4NQ2`eh@LU1&3b>?z-W<;Y
z9x33`0xm1yR(bU)ps&dF1zcXh6$M;vqFq@)fAOn~(oe)6lK}+`ELCKl*Qj`H0oNIO
zCVYeVjl%5Y@J$8WEPhMDdlMj)e<p<o6>wVtg9{i^z)0hJdjWS8a3_a!a(HL~!$j!9
z*6%7{cmekmaBl%4q|@f^0vMCT4@<mHq3&nj&2vT+M@f93fCmeBNc`afMzd)}W-t6E
z{E>gOfQcrb#|n5{{D}g_ii|5@yvUO#2L^enfC(lIf1sY0&7=Y*7cixOsodcUm|eg$
z=`#wLS-^C0zjYs(2FWwhpEb2}l&7EDT!}QBU%>MPzAO=674Sj<3kvw8fHkUJSip(`
zRu=GL0gDR!5q9rS&#N4Hk(Y(92>s?>D`2ULG+ScyWd$rR)h;{rx~kqT;GF{AF!pbX
zyk#ukE#N&V9~Q7m<bC04p+7Qg<pUM{);|*e*hKhLMcS+{V6FH%;b%toy*8-$c>!OD
zY!v$OH<1_ceE~ZP_(u9x;b!3$p&x{;Y%AbfDdgW3u-$Nm+F8J^0`?a0i^Sap{A6l>
z5c#oyJtBUzpT+$g_KE*0WaRw?94O$RiiZj~Y;-#MzP}me_y5P#bwEi`HQilyxn#*8
z85DsXz%Vl6E^8x*OzNKLI5SJmIp-ijvVtOrAVEPv#RP(gf{KVJD3U=16G~D^k_ANm
z+cjVRhjaSeb6>rB_3G8DR~^`8g<O_n!h!#^#<kXn1Q8A5dTZQhjfO!q3gX|^xG9?V
z1o2;M+-i-=^01K+L}m~rf+!h8p&+tESX3}O2neCs!a?^Kk`xh1+UH`ziwmZEO9gR<
zG|LB3I*2ksl)X)#!>LwIBxz2p5JbfwDh1t>#bz4s45CU9RYkK#5H*9SCcL^gmTI+v
zs4dOAgQ(-l@AB-V?br3>X|wf$sP9P{2+0xj38r-#2hmiT_X^$@#Qi}$Ae=Uv2=NE;
zppf*cDGvnkkVw)-9u6W`nt4IA2%=>W&4S1e;t>%x7vw1AHg6yGBK(;220fitK|CHr
zYiXvZ;}jujl7u~?2B8J9IEW=d#Da(iF+sX?!OlT+3Bm}%l%^F#Du{w0>>!*V5}uKy
z=R-Pr#5O^+3!;4xZAFI?PTC=ejzM%1=hN#Y{=aWsgXk7S?;!dF(LIPBo=xiT>KSxv
zZ!gapNA(S&Ul1dL7#T$WAO-|6IEW#hO9O)#Bo@-cId&-L6(hq%PRZ@Xd{hvlW$ZZ7
z856|VAf6D;xo*G4-{!-_Af60jQV^4acs7XH(lsTBX+ca6VyZMbmOjh~;wfp)3gT%Y
zGrit)aEQ-%5)OGTh&e&LC=zzf4PsspF9h+tr$ZsH`O;h<A>}AaI2UnY5R0TM-FzvC
zmxEZtg$J=z<ZlGAQpmC(UJ2sWAeINQ!i)K9(nUM3dlK@r{WpVn*Xw;Nh_^ld&TT%d
z65;9~-V>7c;eAi@;~>@v{~(C<L44@RHw5vK@bp9*g{Q}I_D_QNR3w{%`0Tc>%^v?E
zh^@k33*$>69Mv_1uY_+C+#bZ&L3|U$4xZ=`8iep|5Icjo5X8kGb_KCJh~I-a8pNKo
zg&=+iVz2OhLF^CWKoAF|na%$ZcSzIkg6@BJ%!zoV|GVQuK^zX^M^FA!5I>9l5y4+X
z{;P0~<&_@$TkwC@js<Z%h*LqF4&sFL{^{wQ6!OPyqyF+{p^-Dv`*#p$J^gdH^`7_m
zr64Y|Zii4ZgeyT@W$6wfJA{9NxE91s7J2dHdJs2Q{5`MID^26AATmP8451JQdO=_p
zdHSL=g+o9HMMEeSa@UnsD<Ygr{(njFkh^?JN`-Jo2zQ21C4|x;lnJ3i2o*ypD^rvU
zp?v6nvHJfR|9`GZVx+Plg)~?-glZww3E{2~s)tY`gqk7L^5#m<NThP@+k}+d9l|{#
zsVkV)taqDEP6)mb+K8lK2#rE`G=vr*G#1HyA>1Fry~5L;JP?9EgeD;bJpXC)L0J^Z
zLm@N`p;-v|GUVY9azn`Tdeaut8S+R7is&>KJM7}cuCz|e5FQI59)cc1s}LR!Au7t8
zqIC$N5W*n@Z}Td>u85~YJ8B482(jBF>3OMXgkXo@gkW;}ZZndeIw6vR5RxIJ#JB&?
z1dgRnTTy5iLVF<{Lg*}{qhKe&v?j5OG&!nU2;D>I5kk)pvckv?yW83;gcTvY7DDe3
z`h?Iognl8+3}IFX{bk_r5JrSBAcTR^93(h2guy~+VTh3Q(uR3EGBSiwAxsKkatNbC
z7!$(y5GIJ`*bv4EdBU@hUUeELhVZ0kgp%~dS*C<AJ%kxDWNHZ0g#3Rzp9<k=k)(~J
z<<E#@ZV1nZ@T~CJg0%LWkU8E&l*|iZK?pB~@Pc&B_cYU{7KX4SgqK2C<jEHcVeiXA
zUJ+ax!ZJ@zo9ulxgyo(j?c3`iyb;0|A#4p{We9JEus(zjLwHNnIBHD@Z-?+s2=9ty
zwcskRH|@`R(oFNU!rvEM7s3a(b<x^KA$%$l@(m$u^!Udid~%!SrVu_0VY5iK2!4KB
zZ+fCHS@uIX9>R$bwuP`ggdajU6vEdbd=tW+5cbND9fG@f7Z9>jkh637yFE^W`-C49
z+%I_Gw%+f^Wp~m+BOVUn#}Iz=bbboqSC9WJ<d@ra^N4ref0wSKp5`$j>E)aZ;Zg{f
zL--?vKSTH{gj3RcUhs4XXF@pZ**xc2_}i0kMYMCllV21<Kd*#vRroE|{}8T)@UN$H
zJ%k$`=U6HeZ;Ir<+vFK?Flj$Cj6%ZG4i^psVe|^4cNj&&C>ll}jEBM~7DjPVYZyj}
zFiM6|HH>N^DHTSUFv^B;hcrvyX04p?%3<6YM)@!*NV8%Xm4u}CD;@kQ-Y8a~^s1|e
zQA31xvyAXh0EAInn&h=aLN#7>M0l4csT;;UBB>{s6Gr_o8c1(C6ddA{uJn2vh0!?t
zzdO{uVcaKO_lNPIkOu_)f@wdS+{T-R@o*UJMUopvUKp*ycwCyz1e=GEFXWLh6d^Q{
zwnH}_4WmUEEyH+B9Qgk(lGb4a!*Ie#gb|W~;V>eepV2VXF!V5tFf>_OER49<OUty7
zUY#jptuSmMX<^y{@?;pPFxpC2fnXa!TKIoWl6E5Gs19Lt45O2$(=Ck7!n+7|6-*DL
zh3?Yq5k^lT=}G&9(N~&t!sr)9|1c&<b3hma!x%1nkRUA#4P&tIA%e7=&W&MSb3_;;
z!x$CD=rG2Ma7-9u!+0W$aS{#cr*CS+^zby&nTcUMDMKa+&J1I67*m8#4P$y3GlWm`
zwub&Z6~@ydOvfj^(pe&TCX8ppnC<mGCnUXO;@mKv4`W^!FNCp7y5@(mK*&pByy%Tu
zEM#FAi-e@@FY$WWd|CKX!L)ID@=6%5ie$MbU*ToK>ms4f8$wow@urZsJo(#Uyd(Tw
z!Bv8*1>Xz1e;lO#!luOc!&n!_z6kb5@Ie^s!^n*wFM<!l_$Z9CVVnzNLl_&w*b~Oy
zFg_0B6F$j@@l_a~hOsG(&%;=KF_V7*@Ut-fKAkhXr+;%8u`@Zp*vi0s-<GiZ#{oN@
z$@wCTt<14AF8?s!w=InAVeAOw+c0jG%ius>Ux)Ec81>4#%}eDoc8bAfXL7!(kGc82
zU199zDYkv=O;pI(7smcDehuSD7ze^Q7{+0)i}8_Bd&*}V;$p-2A<X|0(D#;%BKe|%
zYy77$eh%Xo){_gF^k-q+>_=^1(|lj$GdXnTw=jMW<Igbu3gf6);}VXCag6aXd~*$-
zRz8DEI1$E4@#hag`q|m?os#vouzY92I2{IsH!frnr<Tv4k-x(@&srKm=?E@_aghZ%
zf+7)I3gdDZ|Auihj4NW{Y8X2&WNs;xMQ?wweE)=Tjcc)dysitm!Qf|R(DHwx|3mqV
zLJ`~&Z!@@kr*kp|zrIw6&SXX0t;rTF%&BdK7bSG5XavP0C=qeDsaOOx3m0Y_N=mbo
z;27DC*YkaK%V(5{plk&7BWMsoxd_TfP%DDk5mXS(iV;+jDc-)ASvi6`Bd8&APE<wY
zRU`N+(~W;MX;v3pP$8qI;qGZoQD*$>L~vIGOrClXRJMF~i`oEjqpryBiJ-CRqXPG?
z@rBHs2z-=8a4#buxzsQMdfP|_((<$AGwzGv{s;mQJQM-f@<0Slq?g<;k_QDjiu%Lv
zFVr-GhZ(?pH!Ct4xWS?PNX3k15#&cOK7t7mJQ9HtLH7uHM9@5fM<XyIFe7LYLCXlj
z5kwf73K@?@&?<t*BX06vaD2ZyzE!5LUZJek5d<T6ws2vlbcku-xH}S!Ko!Sy(bpn~
z-L`xx#HHEG@%1a8F{y{&iolMbQv{tw?nF=!K^x(T2$EtXC72E%Ewq*1_7M!TeC;IW
zg(NvU2=C}gn#)P)5<yqd?-s$AA~|jOKFiGL89^`ZMFfMSw|4}6BIwIY0{ENhW5oJJ
z&|jj;cn*l*<$+lo$bb)yV2Etc*a(KwjR;1j)dV?kgb>H{b^A3y{VECHs0ex{e4`^E
zA0v2TO@NwD$kN7%51e{p1W!irZUn0$m=wX}2$n{$EP^Q!OpRb(1TRD|ErRI`yDXDc
zWrmEM6>*R1QxQBJaZAliLGBm%Gom?IcUSa?;hP=7bKH8vm(?V94%H$cd0vqE<ntp~
z5W(UImWXffJMO?2g)bCSiv+oMl)n@K_k{z=Uygu#$_;uYf>#-V2;Puv-+Uo+Igi`L
z%oP#5CX!_dU&Znntg$O2Zaq{gWxN>y>kLl>g>Nxu&g8r;_)Y|A&D9aS7s2NdY>8k^
z1ZyMw6S3I96g`pkzC>Vs1nYPU5MEtUv3y0hWPQlcNqTII;Nu8B6$Qp>*YPZt(@!F9
zb*2BCBKRzVQwiT@2^|S9uH_5a%54#Bk6>#AB`aloDUz=QmkrEfLHn9zB;U7NB;PO@
zPGo&z`*uX|Z3HB|c1Ezv<IIQediwW7uvhfiqyq;cI2b|eD1uRZ7s2-o*U+YSMe#!f
zhaxyfpDDc4cQ}F{Blt-;|2w9iBlt!5UlIH&<WIpPg1-s=F37P*BRJ;q<3dgdo{ZoR
zA?e@PrDkJCIVF<Qf@cKJGV-T$*-I=}#dkh}s!>#n;sRZ*;=3q#N$_$6SA<-RpjZ^e
zqxdI+YY|*$k#Q7WnNi#j{;%Lo!T$tr31&oHO`1*X7m{X{V76dkK?oKREGoz$C4{)c
zqbMo7l;9nLr3K3fmK99TMg8*9tRPrXu##Y9!8--32y(9KQFqn6YDZDS<28lUin@Q>
zE8Sa%e5K3pj-qbV{Xfa?iQ)kv<n^McFT8<Zjwkm;(NK6JPtrJwdp&-ikoyJe{E<aF
ze&G*B(Ikq1@Q0#Mgs``%kcS0xqsa5*&7#Qn_#;A|KbqUzlRPS<MHDSP$zwuVMe(?h
zJ~iCsgrW#X(JhMZQADEPU+>bQhzW^Cp+<4#W+sI_&u7M?(4%M@MY|}BD9ot)x4=?@
zf3)^lQP@#9QIIEPctVh4sYbLMr9dQYZj-l<f|k1oQl~={9i_LEVCUO3+1pj-BI!YW
zc1dq9!QO(yFT1YxiK1^5{Y27Vkiy=Bn-T{^G468a13mnML_Sz>h^I3&iebWs3y$#Q
zBcm84e6-*g!Lfo*2-0%Vqq!5Jm>5OXcJ5z-doqeiTuU6C;+P!86rL9i|7w^T#WdCg
z6^B$zk75Q7po;1$o{Hk>D87#3n<!>RF)NC<qj)EZXQFsEiX~CJ6vgZ)o{M5p6pN#n
z6UE#p?(5}$A&Tdt=;|nZ=$$8o4-C7HXYo03e$;);*wWL#Ac_~GAmO!8Nbv^X4R@>*
z)vA>;UXEgE6f2^5jfoL;pEUk0pV8Cwy%NQby02oB+*f%Dn&d8L*iE<jdK7O&u`-G`
zMZ&2m=WUT))F*#Sj5Ms2@op5WqF5irhf%DK;yo_#c-9AEc1;xTN3l*c*G4hIQPM_;
z<n)2pWSf6{92-PuTNE3k_&AC$WL=*`@hJnI@7o;3CXsL<Ts4>cnKU`}b5YnLNX;3J
zvQ@gijN+>(s748IuN=kO#CFEkQ8;`@6yHX1o`o@rol)$H;xHZNEPVKnVt*6|qSzC~
zUM?!%y|Hrn`=TJe?I;IX{JHPEkN5O*cfODEj~e(6amS<X{e?G2;<38!TggvR{2ayc
zC{9G(2jgF&_+1G3uR@MQ@tctJGtW`(ILCTA@d!@xtV#1!6n{#H{_=XcxwJF4e8%Z0
z&WP}A6r)WaEu51k-Ts>f%V$t{F^Wr36jlM%_2e?EeH7Pt@I~{gV3!M-?7Gf0mS%>E
ziSi^y;lEMb6ybk@w*>j_)57v)iorsv`!GPwEEU<R8?+n=co7vvRa8__NkuUg#Z{D1
zQC39>8Abg&RFo86N(CS1XfutaRrI}(NnTFHCP(?Ad`1No<%P4!f$Syns;uHp6;)KE
z-?^%a9m+?E^E6mPMNJh0R18#6OGRxJkE&>)qK=BYR6H!R->t&1d<|7JQc+iRH}oDA
z^;Fasd5(&o4EGVefeJnnQ<IlZx+vsaja59TqKS%oRotiIezEz0>h30cnR|ZWeD6z3
z`1%k~@sNsS4}VkDeVZ8hK|VP#S4Ex-Z>Az&#UnIZ(cNfXimb6Yt4am;#W20zmMR{j
zCn`)8tyDa&BC0}F(OQgfR7ge8<EG?HSVhE>tU2$7QIlp&uxN#hxYw%-`L%q8rNUOx
zSw$BWj*5hewkq1ue^E$3ji*!;sNfpgc*2sh1?^?+9aMBw-HOENnC*;1Cs8{qI$c$C
zQ_(|3PqENl#cMtMX|u#$DtfEvr=q_M;S*yYAvD#Oc_KDB7ayJ}`O#4ZsTi!{eHH6e
z3{f#u#S1Fts~DzYxQZuLOj0pI#Yh!Ts2Hc>wC>~BQ7T5O7$cUsim^gi>u8fN6x^fn
zJP|6$DVZR>|3CF)6;o8qV3AibRl24L)^L2>*6EyGc95Pwt->mw@vMs3qA*i%mWpSD
z(DFRnM+NFXr(zC6$GFLJ`=X2PH-zU^%o7PY^J;;L7gfBWVx@|ODi*0&s$!Xn#VXR@
zB9_S1S0u<U$rLZE$dQP>qT*G?S^VL=%T=t9;FAxnn2}!Q>&z?ezUaS6n=0NDBX4^v
zTBYJ0;qMBjU-4Fp4qslliL|yx#ab0RZC|>|eV}5!ift;kvrwq`NW~T=wu%iZHmdkU
z#iug-V`iG^`&c~Zn|0c&O^m;a%_=@;WDK`5^CJn7*Q1Vas|@^7#aG;MIW>H3=`Uoa
z<NI30H=?j#P8<#HQ1PuucB<GTWS0uQ>F*ZKnnRtvs(Xj!wNJ<&$FmMd??FK-d?)04
zLFU6@6+bfTGz``7lZu~JG}O>Y!!Ig+Wv$atO2ZM>C>8&xxF%cqyNW+l{HfxoieoBR
z_K&MLAqM#d#1}ojyPZ_ATKBQ}mx@y=W}3ds%v;rcojjxBtk`*}V#Ya+V$m>s7p3dG
ziVH%h#?Lq`(Il5dlK!f5#ml9uG95SQx{4dTO=u{>hZz+&d1f^?1OM~<xh1o|P(C9=
zb7#-g+#3oBKe=RyCY7@_6c#zVI8jjz#kBvufwH%_sJ&Lf{jg9%ILRFvN^7X0p{C{@
z7A8^|4P`Zy(@<VRB@LA|RM3z<<1B!*Tv4Xr!RK|S24YnWRYb^*ppj~td$i9wN_7oH
z4ymP~wubr|_+D8@!(Ez`dJQ~EcWcN<D0MaWF3-0`-oDvn9jK?dk5wcM#IYRBeI(;s
zr%!X=Lzx(jHQcKqs3F8I4fkt!M1!Kq_a6;SGz2vGrAg%nh43T8L!4T8Gr@<&c&-M%
zhEt8M=E*|JCX{?{EWd0t*YK!@mKq)tA-{OgR13}hYSFo;`=(zp>1(CoaT(iMJmf<W
zFB%MMh-fI#&_+X4gQ_8+A*n&r5Yu34ur%;<2Q}$HTysAI>KY6oH`WArr#n*LT@>ZE
z%;*SGlG5C7ed%v{4D6wVudRl58hTJcLwgM!WOe+Wz}sj?Mq5J{4V^TsP55~6hTijo
zd>+-V)c+u#4s;X$yYr;T;q9fNH}glsKn=xv`TJ<-PoD4VtD&E0(lWnV5Z50IFo4W4
z_A=WCacO6A25Z<VUkQeBb2WUd;S&ubG>p_RSHtrfMrjzWVS<K<8pepL;{?ab)<2=S
zmief|2#gmweWsI7YM7+qDGg7{UQE_7U4w1-rf4|Y!~c@$o2p@&1`=L+FaHb~%RQ=_
za32n5YM7<r8CeLIMxW{Avl?bI)h*w18veMDNis(iNcbsoo`x4RyrSV%n$oa9!%_|1
zZf3uzVW9?};d@ELA`OeVxhJxARLoc+Gg8jagPC#@p<^#=I9M@*Uzq8`G7WU5zLvdQ
z!wL=WYgnh@H7-ZPI~v~A@P>w!a?GhugKx?#Z*$eX{BH?=D521EPC<oL8r~D(YQZiy
zv#0S5h4nujGzktR4ABP~)@%4s<n=FPex!llDqpmG8#QbYH8w*DrA~zmDu1eB6QiNw
zPYs{(fY5&p-)Z=qyQ5(z&$5OuxWyW_YxtU*nD6_NJDczOie2*cW}7s5#xK=%AO71U
zlyBtV@6hnAT<I^>+~3`@5!Bf)d%8z(uZDd>-s|aS7vpw-5$Ne>nf;!pL&J|O^%@Sz
za`+)`bH$8phVQWEKJ9S%KePBVwvO+24Zmvc1LP46RCvE)#%RaK=5NwuMje%8KBnQg
zkQ2;=GdbVLlfy}oG%26)7Y{X$n}&-lZW_*L*vK;?Q=er*%ICg83FRE~#PN~Pf%8%}
zIpZY_mo;3`aFwOtL>7&6(wB~8@l^i9B^bVIG7I<Uy2Qaft!Hv>YWPpXni$r`aEnDU
zhUqcPh#@nELNVmW@JI|<F=WS3Bj$cvC@fe_5Q0TwC@Q2_4CRDSt+<d9f+Yn@3EmMy
zX(43<%L-2BkvWvZt9%R<L{d?Zl1f4<$8e`7sS-m~kFP(STU~f7`EF1%hFUSy_Iew}
zP)GP(f_Dqn^?L7#p`OR<3uzETju4;VZ1Jj5%>5eBSS0rf(yRM~+%Nb*41OUG3O0!$
zAmkyzT*0O>JS>D`f3JZ&k2i~9cKQFUU5TL}hBngGJcdVOXd%313@IUx3APe^T(ETv
zK_MYQJ%+H5h#=>R3Q=Rwgv2~~JO+MfqJkk3)00~<*uou8l87NGe7Qs;{UNBWNCpsv
zw2Ps54}bd@I!KddI|}I(L+2Q}2=5w0Zz0`0o$fL85Z=?1^on7<mkE7h=<CV*#n9j5
z>2FzsVwe&GzXA;w`4GXOg2M!d$1p<3NWrl&j1n?haEu`R9B@AKi5SL7b9@XFJ^2J7
z--t6$#xO~mlfB;W63SGWoff9W&~cET<f#~*j^TwE=EpEoG@q5sVZ>&UwDvtCID3|V
zwrA%#A#-Aw>q(v$GEa~L7sT))4`$u$cVbu=!=e~}R^Ru!;9|k@_h(bGB!-t_{84!y
z`O7gZl`isSLSBjCRUykg`HC1`6TYf!2G!mW&fgDRDdf!<s-4MwOYm($>hO9uJw$MI
z4DY3zV&VN5*2Pdaj(g(xfSVXY<v5l#$^9^fk7BqK!{rz@#IP}j{Tvm;$1#+s=KECe
z6G1lj*Y*)N#qgO(Hhc2VxwII*h+!*-*LKx*#PFr?uLQRVZWsJo@Ebu|PV0XwWT)UR
z!QFy;1osN=6QlzNWB4wH-(vVZhVMoAV+=pV@IwrTJWX0Y?D3z4{370RI@<YFBu50(
zJ{*nVSPW-kI2*(97*53SXAFPEaFQtz1AmRBbW$Pyk#O<fgmOxRrv)kb?@WL=^K9-p
zkz5e`JBIT@PMywW@7+n|qNjiCRPL1+uEtO{j`#TU|1n&Pp>Q0C<9ZA?M6FO9|Hg1r
zcxD{`vG~V8n;DcZXu3;m@{22tvrxE>iEmlbn=RNhsT7H$XdI>Dcp|A3izA#=oTO4B
zj^d*5mKfpEO2$F=dL@-R;wT+QnK<%vA1_YCi=@fU+;VXc%L`TztQbcnA(ZngH`D3P
zII2iqkynkQn(*p^HRA3Ot0_oQOGs_OI)Zlz-W|v6M%hiO`0B+`KaR)ZXcfmBhjJRk
zkuQWiM~F|bp<pA9n&odC$Gvgf7svf^JP^mjp1xm5AdUxxG!ZP>Fq@_x@^qRq0;94h
z$rVXn9L<DWD&h*$_(&W|9L?i+G>&J^1d5*xu&ae|He1r$QCTDuJ}yfR#nIZcAB>}A
zuDcLMCLBj3j%XaJsOfPSLbNzyLZ}l@lR7@rBMBjvpe^V~#Hh^RC*w#_SjSf&*d~s)
zLfQ$ok7Ht^Z1(a-*&&YOH#5mQ$I&H@OdEx4bd9519F29{tD}1yJ>qyLj(6ke8Aq=;
zro}OxbN!OjTX0|;ed6dVyk8vsg=GE^Xr9QX&Hx4^sgUsBcLv2VIF2E4_uqPk#xW|6
z(QyomV|W}RL`Zp{arVgD_?S4x#^FC3n98J$V_X~q&ju#PF+Pq7aXcBvB(6nfta>!}
zrKED9TVCgr0ZvCk2??81WE45=usI`+r{Z`aj`?vs9mh;gw=(d&;4Hz}^jQey&oYIo
zxeC0Vi(`(+i&w+kIBr&T<@1>H|7Q0-lKVm2w;+xe<5(d&3*%VC>KgYgk7IEhON74~
z$4f%yi2k|1b6<|*o49W&_a%;3;#i$jIOO~r?sT6Cr;rk!sn_Iiz0MShV`UtV{F_bT
zn{mA5@wd~*aAkn<RWudHUvZpbNr_`k93RK=N!<Mx(zS7{b8TY%(cJe1DO?}N_etfW
zIGWzf{xI&|wphf{_mK^8Y!nHbe<qbr<Jc6(jyS%J<Fhz^@@K#IQ_k0%<)@s@aeU57
zl2o?D@kJb4<8D3wDvoV&d>O|bDTO*&XL2b_kJ=u0Zz~kmJ{S0gCoZLs?2Ka<&BpO_
z9J}M#!&wGq9gbsf+<gRMi8~m_KACR6%zi*-q0Oc#<vXrInm@#GNJuE9u!~c0?2j_4
zO-kXUzr^t?Ge3?KaU6-`%D#MF$5<YZ=Kd!5dmKkapOU^Qg-9c>pU*uhz0~|84mST3
z9TN7Qj^m7+uW~xh#&Ir=EFIZ8{*L23vxPC?kF}?i3vpayVUOdYEcsF#m*e2V$EB1j
zLaxT~4=b2NgK}EFA#w`Y<n?bH#rEf?`G4ZTEis;<BU5*0;gCW)mPx?BI}<3Z;||@e
zHqcQ-2P+kYMRgP-*HJ>p$@|=DP*QixCNK7u;_x~?@>5d5O6w@2yH$=x%Ia8pCcxhE
zIx2`-MIBXjR1;oFu(FOjg;Wt_=1{-7jv6`|h$l65)Y5T}jz0%Ct*vAD;HG!!xLZdZ
z;Z(j)e$ub5j>UtUvX{+LLz>nT{rZATq`CKJ=ZH0*U_-%1I_M!S(AE2N+^^%Rj(>Ew
zUOk}WK^;wG3cpCkHp&j@cu2?BI=<1-RL8?QX6SfIN3PDh9(wBNrK6dSd>t_zaUGB7
zP;@-5qqUCaIv&+ArG~Gij&>dWEp)t^k+q?Q@2@&;^D!M&+W4m&%4ww|%XSHcK^<Wo
z5gjj9_k}q2P!9DQSNBDAsA7aV|6R@`YV`2?0Ew={(9xE?I!qmwj+Bl99qUtyt>eU=
zKte~&8a_vGb%X4r2q}N0kndP^-<s;aHgvm?Z*xr_vAvECI=V5`hjTmXpsSs9bQXm*
z4YHdx$nGL`y6SkdgMWWYp#y6=`j?%{>8_)Pc*wcf?5(4ZjuARW>gcPZpU#hg7^0)U
zj-4I-19S}3!KKwL<QpV}oTk#kp*n_f7j)3Q&pY^w--Smz`q|57w5@-Xj?p@v)G<lN
z7#(AEjMp(i#}nf7IPszR;auwTdhLW8BDy`1+teWYdrv-D$5b6>#Q!PMMYU-<rt5&{
zw3_Q@*q_!hQ^(sn-qA6O8LnfAj+b;i%d?<kzK#Vtp3^Z$#}DUno|pZatAp3S{ru+!
zHs$us;~}c$dqIa*+eZ?t?(3WFdy%PrE|WtRGC0}3MS>)YC0j^d<{@IX=vb~}MKxua
zSgw68^A#ah2S0;6qLy!kj@OyhI$o1xppYrCl3ODN-(qh68R+(R4h=qR`zvO-Q@^WY
zm5xtze5&&sHQp10AL>}6V=Z$=n(yoQt)G9Ljt^*gK$ek{{l=|AMI1jDMZ9!2lk573
zYyT_2YlDuB!cm}nEHjd9((##&Z92B=*sSAo9ba*?=K8ltptkDxl7&deueE&pb_Z$~
zDAjHMzMtGJyE53{u}~H@S6F^#<KlKM?$GhAj*B`jF?n?C;$nHmb?nx$hpy`QUB_M>
z`*eJ#<9nH6zbxdSjsrTll?==Lj{dKaMbCfGaY*MsqvI#Z<gyi&!yI)u_j)1Ug_^zz
z)qOwfIHIG|slYGvP?GaxM}L_ga~a;N$FjI<M_Ch+{$n!5-8Fr==Q5AW0Xf0SP}6r(
z$14r8xt6aQWdFs4U+6#2B7ZvPl+N$l?um{c&pN|f01L>uOy>VNarkdR8fPe|e1Qh#
zd(LGY)r)7$I+Dd5yduMcw+hk7H67P=j59Ib#0};f4~v2025##3kGpT6pMhICG7Q{j
z;C=&{1_~J{ZJ>;SDHn3G3=}p11K9@h3zTKk{KO&#oC2k|ff5D=7bryy6f-crKzXG=
zd26h{q=Ap3zO@BPDIw4OmP3Ar0b)1RSJpr|12qlQGEm;Y)v@`N3{*DIJmjljprV23
z`J7z^3h_<@RSZ-$P|d);{eco61-6BKe-tRUm<9%F7*K*f^0JzbQ~WbKzqWxo1{xU1
zF>sdwdUB6}dIs2gH)m|4)a3%(C~OAXC@1&kc4(v2H}L%!{~xpReFmOrqck?)JD*F^
zP@0Vl%x|Nxd9TRXwYH7&fC0aOkb$s)2Msi#8+6`4z`)tD{-y>VHt>)vr~Bocoo$p{
z19=7-wpAW6&`i8yaPkezI21V9M#*Talx?dp2(`}VJZhkYflu}aS{rCd(mL-k1FZ~P
zIGam8?s87cw#wrMY!1<Ul>9x$ALRD6RW^<FM;JE)Z4I<Dpc>Gq#yv6+GY~hh;kO*q
zfNtQYps#e$H~mtkK?m9@OWP`xSfW6kMaOaz1~#@;3Xk`v3?vN%_vIdLs}Ktev@y`9
zWZ@P&^4YuRMxpiwIvD6~pof7-slpu%48M}o#Xwdxuakk!1}?Q#indeO?8@cO$X_<z
z-;KeU=qKrEpckzf=s(_Hx1EyLPO;i4y$uliw^L|miId&mzyJep7+7gwpn*XKW*K;f
z`DS2<fr$p5B(_tA8W>?<q=8`u7PM2=kMa*Uu(}=pjHQ2+fzbxW85nQyhf96C)x0qV
z#u~_YJde$JO9M|Z!Hx#DwNu*NXx3iyO)&V68a`e_ZZw-@U@}vhQQ|2uFx9{`2D82L
zdpqSuJEdxSCD2|ecP-GPy>jM!4!34fd*vwuFSS>mHZYUPb~W(Pj{J4)m1hmiHn7mZ
zBIcoiIR;jB%zM$mw)V<g1M>{LVBmRaet0#&QS%K9{jVAM0wJ?iANlX?6^^>tURi8l
ziGf!Pyvjp#E%1_or3UWkpu8;29;b3C^j*$b#&o@$Q?G-v+`wx$o2_65#(a-<P@cIK
zc+EhmTg_@+%X!^E-Tk>FZ!#whY&Gzufwv93V_=<u4-CA^4Z4uiwuADXkX3@K1?TMx
ztYO$YC~FP8Z(zlAf3<75gFg+#FXyc1dOIi^4Sa0iL)MK^{*P$CgR-TAvcbS%@!=B#
zpBnhgz-C5ZX<!qpO-JRl>2Av94$9{|za5q49hEN(Y!S{T<3I`1{wv0cXV$<E2DTgc
zc~fAgfn5feT3;LZ#=s8dZAax>y3tX2v!g;jtfR8qz#i5R1N#m9HQsL>%q8xXY$Vy*
zQ8~c0AMZcNICNB)qE))&eJ9CJa)@pl_|?D>13w!0rK9pQkw=N?dNB8kiLNzXS2`-+
zUCQQ3`Hef$N$Jo@Icnf{mZMHe^$Gq~om@AvwggTXILVr3qMC_64E$-JsEJ}G{xWci
zHQB&_22L9|W8kuZD=aAn&KWq*B4A)lC#7L;KhNpka@I&LvPz8euiYA`bu*LX5_2__
z_u4rBzKc0m4O}yD-M~LA&X;o+c2ZcKKIo(z=%m~*@UMZ_f6F2Nc3t+tb=kLgC`?qj
zkpmN%CJLFzHr=98{Cv)tPD+-^4`ROT&Pr`Nk5MXYqE=^xz1dU!MW{K||3u~d;wDO%
zC}*O)iIOHtnJ8;wWS6|hcjr>`4ilxtAh)=TiPtv=cs1*+tect7-U=ovN^cbtl}uC?
z{?*?(>}oLD&lJ7WbnirLt~j4lsZ(Bc6E#e<GV!>HnsmlQLlcc;RBh9(LL61c#9b!t
zHsN$u>Y1o-qOOU1q{#x9SJc;hod0syyapz6OguN*Z=B0DujKkn4Ct)zqNK5jdrkcO
zeQvIa`%JeoJZR$8&dU8J9+0Nr#I(*zx?-gM2{bVgF!7M+JZz%y?EI#}8Fr4^*jZt@
zes`)rj}BkUX=Wl{$RmQ3C_<W>cvMIWPu|kRW5O%0%cfdu6G0OlOms96G7&bxb5~#@
zVj^lHZbCPqnz;C3Kr{IRlQ|?DMG}+d-p-0)!ZcAZ&A)A`-!fsFINe!Enqba2CK5u(
zcaF&?GUn_}i4L1>Otdx8j+@>^X>a1G>3+_><5+HX+*hNE(#b?;69Y{QVlv#w?P8*<
ziEbuXGXq_e?k0Me=xd^%$)80;FB82@^fAF4%h7zq-jTeUp9a!|c>Z!ue-p$3CjS}K
zN3!B6f2@l#*u)SMtGXy7O$;?LjFWazhSORkFaCXQ>*@aaQ~e`MjOn7x>!L8=qfGwz
z9LAU!YvNWH<q00W8UAm&D8!>(lsQxKSzRZXn8+Afh+25k#3U2POdK~cnTcoOeG}_U
zOyzc)SZ3lC6Vpx1F!8*Jc?<%RwyQGB#4|#kHu+N=u7uaPzjF?Z_djc5Hgn9xnMmF}
z`vY@K%r)H`A8W<^U6pk8P`fJZdcnj36E8AR_Xp-PbRt}6Vv&iLO)QmDu-L>#C;KH6
zOH54Ysx0iP@Mx@y=B@3j{1)-?gr*Jzh_9MhZsJW7Z!vlY11n6t#&gGbPV%$)hB&aJ
zt1@hWf2GM^_43glV}k!}a>mxgY7<{v%DvRrf3&OeE^};ifaH2t<vkM&=~@$Oc+$Hm
z4^Qwn?xviR6Ze6M^(MYH@r{WOO?+fxiyX;nTHXc|pP2a6M3YhejV3-e!IH&`2XGTl
z@$TF~<NTk|z29<LcT>nWo9NO_`J9O~&QJ1%iLEBSH1U;*?I!5wHg0G)rTNl8{=wWu
z-IPrm1FW%Yx+yzMe9K~G;s+BuP3$spz{EilyG`t2Vsrb(`)Ps7dnL#N59IFbrtIfl
zcT+ODD>b?+dEJ#_TLTQpcM=w>yK;!3nCSnBrNG2t;Xj)0b5y_X?&H%hCVn+>#N<yo
zVqACS#qLT_%PXJAUfW$^J^7t(bXSh@#9hf9cFC<UCrq4VrL|Di!XGC7<WaIv*uq~X
zPVxEN#J@aiOcfJW59O+fvnI~*IGea+;&0P^d^&I90(H78Tuad&%H2KO8x}FYhjN+c
zuBh({%f;pZ2`@(G9~0N4D)#H4TxSB@DD-p>_Yv!+iT_ybE&hm0-YsTJ59RwF%G3$|
zO+Azh%gsRE8GC*iC}bha!i?j&yw3DcV4;YG(iX~CC~Bd`#=zlT{t_07S#rM+35y2h
zB`uV)aEFELo(grE^;BvLDQlseg}@kpB@4-(N_iPr(Zb-KN(Bp3dn&K?RJwf^ppnWJ
zusv|6g}c5C&=Z#EY8I+nxYxpcoXB!Bp|*uO7HV49)KjTtVeS<Fm)ZHmyJ&E8pn-)P
z3wK+n%N1GpzNbR0XCd-MfW7raa;c|6?xVN8ltvaBTWCmm%vZ0MLP?8W%Jy(x+0EIJ
zVBY-}9<b2d!lM@a79O<Rnwe{%eJ`a6S7hNK3p{;;dMQmUJl)&>Ft>PrfTa3AIV8N<
z<ymNEA>YCy7I<=J^-?N)5a3e{FU8`IMfupY59GG6(8|K&7Mx4DEiJ6*r95W2DM!+p
z`(@#~UP{=)$GzNK4Ov(@+P`IcfJphpUW#f#v#`j*Vhb?~aSMGd^s}HdVivku=w`vR
zU|HyBp_2uh6Ir;CmEX=nf}6sw-b#T5){_(+?yZcD`bzdz>h@OJSZHhUN5_3Lo^@~B
z>z>JP&n=7Rbr2+(_jRCeZ>6(^r^;pU4&KGW`~PG%e>(pMz8PJ~?QWr`<-U$}oZ|06
zm);K~D&+UF(A#pKock~`mvbifR><rBklWwF01FdYkS#nj&Ogw?NDHGZ4C2m;WQc`T
zy_Mm@hYAj}u%x#_<q^{5zt)UTu%j)Eu`tfUc+0(;6u**FX0(5-g(tYzv;65>&jjw5
z911?(y!3g1r(=?Z$rk1?qby9}>MTs>DPY!(_49>sngy<Ia%NVmOF2(*tcBTJmxY-Y
zW?4AdTY1*P_TKKBW=_=ijD=wb0wgzkE9~NXZZzy(e3^aTa!cZT3kxjFvrwy#@=zb;
z1twA-Men1$XrYkmTWGm&(?zf5kY`TGCtt#FS@_z*Hx^#Du#`czu+G9V3$Ivs+rm2*
zUbV2CiD6-NAJ>f)7GAgThK1K8&ARk)pQS%leY|lz(MOrzM|o2;sr;4@PWLWjXkiWW
zaCh!%3){pFH=VD*?=hZ#=P&|mWjFhL6yOveSXj?hJeB{2g%9a-`drH`V1tFvENr&0
zkx6Ue6APd6z={G59_iygOy20DRO+h)F64a9VmRKv#lo?RIma&Kun>_v&{x?i!T*wx
zr!x#MYtH3dK3ws!inw}eK5>VIZ!Mg$aMr?33%e}*V&PW{yDjXoaKOSr3wxQv`vc`J
z=j`L@=<D928HD|;W><4oUC#NAXWzn)JZ=_$QqFx;JIqYztF)fwKg4s?SD|D{U-ylh
znZWz+&y0LurNPp`w|$i(JTlyUo_Y(vTR3XrxP^-S6m@|A7|rg<|F^I5dtbNqo?sbS
z8Yp})K>Sm7xm7>q6c^6I(ob0;ck|OM0{xUy=W^$a^`Eoww}q<~{;~KwBfj$%E?T%`
z;R1`{bUz;eh)k!;+?UHaR~VnLuU$W7=>7nk*Vue2|6e)C*LjHgDL1%l{oJzlyq0&<
z!haTSG1bTV-|nYm*dUT~b4jvnWZU?%Exu}t!Zu*zqqf-47Da3nwNc=pje}w~ire_v
z#xFKX*eGdZsEuJZO4+!>M#M(cMrj*mY}B(+-$q#*<!sclQQJm&8x?F+w^74JMH`iD
z+-akV?cS!p>Zcs(r&P9at)F|RW2~y$s7AB>l?&6|j|uhryK<(-WBuKb*0kN5V~76A
z=>7^Hy5{s(>e#r;#@)92Mo`!0FKgu8W24uT?sFG!9BcY34Q%9al#N^)J{t{f_-#CB
zqmhlqHh(qJeeAr~1|KQ;sC=!zvaP@JTYrVZ`=#pv+pQ<=qv_(N6$U8v1}IHz1Z+HH
zqbV0F5`LZ{>G6a=&qgyFEo`*3k#FM>+bx3%|B;j*#8~_XDCvXQobl0okJ|jPc~}0J
zjaD{-HbOQM1KcM);^TBlnnMOCY=&+3Igl6MXlRq4xl|jPjm|c@*ofJPbEj;yv7y^A
zY*;pIF7R5wv~kZgKVNXRkMi@ofkT@%k~UH{rVmhf=y)nijPdiKWzhilg{bAO{I)jQ
z+30Aala2N^I@s7bz&*Tc2PljxA7wWNeSOCGYpw|JQGwW%3$fAP#sC}LZS=6wPqw3{
z4en7d8@(B*f&TsD{5<k~Y-GrTM_(I!Fsl}FpO$ZJajWq_8*6#5ALu?L53(`X#vcRR
zSNkDCvIZ)JpY#v6F~Y_hHdfjgX=9X)*$lFc(Kg1|n8rof7;EDR8y^l-CfOKgW4w(g
z8Ktmqf{lqbKG_^tJWy#iP%#H8eFiEM2P%BhX76MhQ*2DN-LEJ=jrJcOsO%c3kk7F3
zl#N+T%R$Q1+{!@;pK2I{nbhBx&&L%$;yz>JStivW#TcZ_+8p5X_8c2?Z7i|zl8xtW
z%(Jn;#)~#y;34|2*?dZt21o|SeScifAzvsG-nJG=&QLPtpTJ@pr)Kyo$9yl_SZd={
z8_RiWY^>jt%bM_tjXr~v=jZzQ4l@5j4(DA#9}?Lg3{qa>N(U*g(}6(>FFpysY4djq
z_^Yz`lxN?@J2b)&*?8B+Du&(0`?mXJK76u&wT+FF{bioZf6vAmZe=_#yJ)^K(7&l%
z{^tYy?fd%IaX4qOv1^dR=0{$7d`u4~`!{en)247fuf8!K(}v%8H`(~i#%>#XY;3mi
zxs9)EY_qY&#>qkMlfYIRUockfmFt6)5`&d5Svs!euu0r*<7*pdGBS4B_{PQ#=JR0X
zTNa%2IeZ7?ot^K4Bd6r^MUVdP;!zr`knFXw&&EL;-`UvDOq-Q|eoFoU8&zlJleZo0
z-YyyB?`<5iaoENWwp;djYv7DOGWP~6QwA$PF+NlMY0hViUu_(*QQ5(r4t}%oyN$~>
zuGlzg<CsM6jE&<gbQAo4*!YvRNO-qN{*ywsbk6%r&c*cc{!=zy9_&`O)7*u@%HF}s
z`N7Ir8|Q5NEqQgp#zmgu>zU_SZ-*#j&gWcW1wNn6M=U;C7*FR@a@EE^Hvdlm6m@Wo
zMd?7`KO5m2ISq#>*KOQjtsA2JD|l0or*HAJ{98PL4l*70g}so2EXNHs7oP37W8t`!
zu&{8-850J1=8a~>C?BGfc2LGaaR((FlyuzBj}+eFpyLpwl!M4<KM5sF?6MB{Nwb3E
zep_b!Dd*tERDXE~qlYMShbR>tRC3VgO71&{18)yeSQ)A~sOq4JgMfo-4yrq-=b*lW
z8jkzMQQJWs2Q?k6`?uNVAxbUrndB}9cRRSp0fT&Kh*H;a?*b&8l*q?>${RSyad5wb
z2OL}+qWB!#E2N<VenaEc$U$S_C5I|(-Y31(tUJ`b;{^W6_S2Iea`g*24?5WWS1!LB
zKjfe(m*ybEP!#n&>>$rUGY7d`!YKbEL*4J3`3@d&@R)-ELlv$)F;r0;{?0WXb->Tp
zEd)t;uW9MHUr@=3twjHE!Pbsj4|&ZTs)QL{2et#pLDa#~j(NHR!-48RbMX35<<p@`
z%t7424@2Fr{rvoOZm7a9lYI7IrkT8h4^u3`dxj|q2T8}hHyNk1h$#o{XSlZ&rY^sq
zw{_6YLFu+A(-!R=bl{|IkZ6OB4mvUUlc<tJX9r!l#R+_r;4inLn}g{IymTn1yMrDM
z{&et{gI7!YdO8^AV7$X0oJMa4sd7H*^l>n$jIXbQevUh&zu-v00S*Q_8028EG}${$
z$PfoZJ;~(-{^7z$2$q?UPqk6PM|(PB9E=tIgeMuj$Un7&Z-RrD9V~S~KGDIG^u)nr
z2UA4yB2mb*4rV);#zjeUhTu#GPYHQikQSa^;@X@g&1W2J8K2K4ujfQE&%qo|bFPEu
zJ>GnnLY)_+IbU#r;Pn^$3xzBaq|Ra?OSl9fNg4QIY2PvjUpUz6@TbJ_s)OYYRyh0_
zb*y6=GZ`GL@>czZgSUjQ6ns-~YpD!IjMv-Je8<7NLMS=E+)rHX;60J7@#JeAeEq81
z^?^t>IQ%^2?%jIkfRK+oO&b5$<DWVB#N(d|*(5l!g_{POg?}!%MX>)$|CbKFa`3A(
zsk6<&PT|`HzZU$)>)qktTaVv--M@>+Q<{4me9wd6V6TIH4)%LG2ZbCEtg+r*&UXy#
zGM5|@;ZL6CVFy17Z}FDf%j;(czj(c4o^(_02=4-{q9QyhctY@);Bi)!l5U(&N|WRd
z2Z?%a&`vox&ElCr!vxMa{N*P8k0q}BoP)nvU4^rG-oZaC><%t?7A`ut<nhZwt~j{r
zNpjcuuX{Wrfg2wGSIAAl{{(LdURmYOOrVfVmz4m7WP7t07E+-?;UYqc3KsKve;np7
zkw8glmJ%$Vz#T$LdpczjC@Y*EmP^2vb6Uact(ZV1k5?9Qr{J(R{Z$jFCcL`f-GVg)
zYbH=jNNvG7f_Di{^>(VRH1A2Eo{;*24Fq!p8QTHFltu|OP9T{;DuL`@1NSEIPy$U8
zxKDKM_cR|!z%TqkPtrt4K=6|{0}l&nmB8Z(<O<JApqY?-!ABE#M2I5TTyW|zg>LX_
zA<dQvJSODw>i^|i>jcyUv;=}8r)Ee<IDv?es36lmZ6_v8OE4~|CtwIM1*x|C6~8Uq
z5ljfCtHHPVzJdh0B`{@kejAau738RPLfR+LA%TtwbdqKlueWmobGEt1p{qz1$-25H
z&?CX$YeTODMkO#hf!@+PAc28G`Uv(-pq~&9@1H;usW5{)$*=?ldwfU&LxtZ_{eN*A
zF3k}MjP!IKTkap@@d-l4Ch&xiaf0K$-bTy)6BBqcfk`5nDmYniir{)##Wdmc?TsRZ
zX9#~Pfv1JcOkiFDFC;L_(|IO=XNAued`@tV*E?6p^McC_|NI0N2+tbsF6YGr-b~=F
z1QsT+D1pV&wL)+SF@cwbQ}Y!eO9huDkk!~Nq`Y2DV7Un2lhX8>@Ye<35Twq^1oq3i
z-u5JGguEm8uHdQ!R(rkg38}s+uvW<Xo_t*b9|&JBcuH(;NMIxFCvYHvj}!PLfv*$z
zMif33{49Y@LMGnfYx!GXv+&Oa>D!hBzVP@~Azuo9mB2P3+r8fG7yLUC_%?yv3G7M0
zDV(uWx^^Y--CF^gdTW7uBKCUv`&b87_-hVV9+FTWq*?-}S$GrpK7k)Z?I*!Q2^>z~
zN8!BLRbJ)Vxl-20wEQ`NUqt?^;7P$F3H&DHcR?y2P2iZvk0)?K_}+Q0oj*MJp9%cs
z@ly#T#H+IjoJ*i+62+4EJAv~F+)Us<QM({GZMbqVflCQomgYa6g)0eM6+S@hToZm>
z@P?=JudItc@VX_!?4*0U$w(qo2zj9-vOG?g3VR$viX`!Q@xoLqF3n0wR8G2&a3zu`
znMA21?vN%W6_O||yo_L3!E#=2`6Pnt^Ql%*B%2!f$XlIscWsIIUp0wpw3b5Y6sjjt
zBZ<XHEJ>nf619?eIEmaOY9~=AiAG5@79)2hQ9p?WNt|8jzgyg^o5Vdr>Iu^LrWf5U
zIKI}!91;4GXn32>y`E-MA@>R1FZe(bejyJEHW3U6(%M5w>@Dt|!8S|%>xL_NNi<7h
zND@Pn$WP*tB(x-AqO1tE7Hlr~s9+1hmV%EZ(MkvnKAyynlF30&5=!z{Fx-ucc#>!m
zs>ctX&5S3ZCo%5@Ka07MgvqD$B)W)#l|(xswxE+lB8jB%0>P9ZjdwudHXd)AM45a3
zS7F+Vu!CU7Bs!&=aI>Oo65W#M?~Ur7L~r3e1bYhh@_NTyD#RgulISavexAHtvBCp9
zJ}`+v!UubjjR6cxVt5iyCGm6;Ba*mpzJG+A(2=4uDv8laj7ef_5>t}yqj-_#z9*8H
zm;?#0aYDu?F~O6xEa!Vt_$0x}p8WeQ`BTN_G{Nbf4>L%-XN;L5d_IX;LY@(PR*<Wk
zE#x`DIZ4bFvP&|2p70k0=L=GQfshx)frWyLlAwEZ`=umaPU4m*EEU|E#Ft4dOX8Iz
zUKPo@BtA%Dc@it6`C1ZhC-IK(*9G4YT$#k1Lf#VOynS<h?+Rb*NmdD2oy2=W)_C%(
z6Y}5p_=XzpJ!^dupL&uHllaKv8-#33;$u(pNfKK(xK9YYHYM?yC*LgOb8eO=`6B7o
zYN~ye#5RsX;qyssXKF2Ug@=>)I*D&Yd57ShB);{=?o48r@ZEwX+GTUd-X!)(bAOV*
zu;88@UI&smDEvE5GIG1?-VaF}@+4b}75*`apOW}FiC>a9%@fVHk|d6Z!XHWeCOLLo
zn!gJ_D#*k;#u`3cAvqzvCk4MP=AIN@e@gQ&!Bc|8in?8ASiz)uPVjF*Mu1%`k{6P=
zD3VKp6kbl^N)lI-_$P^LN&Xte|5kTBi5tRq-{VRS-Ra^@ulGM8;qmzyDP*QlDCPEM
z2^L@M202@J;S?aGh+ql9qJqUzC@v)Vn41PAg_ja!vrn<YWl|`cLbL#C0m`LNK82Mj
zyqQ9U6e^}LG=*U)R7#<83gHwYDcqTIH@$ue4N|C*LRD#26RaaxU9d(9HHA>QmXO*h
zu+Xu|>#h`kAH=o8t8NPSc)VT;&%Eghb5ii7ke|XMDKr#sA4tKULL<-f#zO8Dyif4{
z6h2z%#^gayr)dgJJRT78kYM@|`r#CErJ3jHG~?POpB0g`^5o5hJeooaAuT=mV<{At
zXJAhHxCmRP5EK&fbU4@Q)&6J-9aG><M@>OXfs$AX1w!H}=qVV&9YIr&I+hSSg(4#q
zHWSiJdcCO>_<}%r8&A?Ug?1iqFQkLSoI0IS=$t|q@v4_#SHW(cpWTJ@5bT*k?GbLa
z^iH9VNcyHQP)I+){(@8(kV5(s1o@y827B@$DNK69-HYKVj36)LTbjbi6h@`+Yzn8g
z=8qO36(*)IMmTlGrtpNv#|arPI3Wc-5>SEqPg0V?<P@gJTr&lyrZ7#&^c0@*e3-$E
zE&IQ_;nPecSrIMF5`||3dH0;1!gIpsq_9xPTtR9+pTfKpUXbQ|!50M=q;OiE5~*`A
zBa665<ckHD2)-ovGW{Iq7ArcxOxE&>;HxPt7qUX|H9_jUF650A_*Bg1TPeJq!d(Tp
zy8!Q`@NNpfrSN+StGKx-Y)fIg%<^6epQP|<3TskWE0Xtl7KE%5{6LUytQYbj?GJNz
zXM;313V!VAR7zr#$3IWuGmmfPyz*4Zfm=lQh2U1fF9pBi{;qK?f1ScNBKa<b9YQGF
z%WM?BQ*f8yZm)L_4~Xp1K9TJA<OfnX=yBGo?^F0enuk*O*^?g@@?#1=c@k>=BK%ju
zBcA-vB886%zn;R46pp2ET$(4irz!qM2~K*Nf28oI@V`9CsT4+!|KFYQtOzd)o=f3x
z9)uJwc$yc5+$B%%mr@w+<=z#MUlsgE@LCG9r1#$xZl+MC0A&l@BL80s*##(EfLo%L
zAwtSCg%lFZDuD5zdro;lBqa(^L`YFV%8LmpUVzJdI1$Z~A}J+!hhXUfw5aR$mMcK{
z0#p|vn-zrIS%8Y3q*4JYdz=xbP8DfZ6|5%62-om*Y8IfD$7>6zQ-Dp1J6B!K<<E|Y
z@SXzHD?t4MG?3=Q1;`O{pCFZeLK+G-`ah<w18QpG`+ki}RRlx<=^(g^6ax!>@EH&(
ziqh-uW_MGzX6Y!s_l_WfAcBB26)VMp1wpX@qNoUn^eR<EI{a_mXa47RPR>1d-n@A;
z^XAPYn@uKywFT?=vBLFjJwF~3q2fn<Ar1U!D1;V#oI&od??!$UQJgm9`q9{rCVsv{
zftI5AgscCg5Y>;SuB4eC`g=}nH+LmZ32DJL)cMc1t^8;$!lzxGXZ-lgZQ*YN)wX`L
z^JAeOulmv6j}Cq${Yd#SZ?V$Rk4}Dc@1&d){my=rZQ$)9cDnk}O-Oe?B5Z~qJ^b*C
zBp|2>1_e9HP0Nt*upc>toCq-_85J}IDYS%8KPDvZ$`gLnIg(2S+mE#0xvrb-ch>Np
zehl#Ac~R>n*xQdjZmGV0zIEb+E|2~~_#5E`KL+|S&X4ha403Zv_%Yb!L;M)(@?k=T
z`>}VS<L8mCe3X#UevEM?WBu5)-qD%hN~ZZS(dCnbO!i}nE1BxYuA={q(R2~c5S;19
zELZ16|9=;*?CBgoUK06S!IuT+3C<T})vpLy;70}V@FFI~OH~6{?8g#64*7A|kJtTJ
zDw^N;u}sL@eykO;T<{IXj~^@jSS3kXe$$WDE??tEafv$0-x6VoLIvIt@+qC*$Gd*K
zC&~By*eK)!KR)zho$w8UEW4gFG50?Y<X``M<j2Qu?k9dcvFX2+?K2T><~$Yhg{$+W
zko>Y=`LQKG>E?dz$9nm-wat%j{rJw0@BP>#xj(o%yZzYi#|}Ssx{{xS{3y7KGf_Or
z*8VJ#8gixmiyyyA@;5=|=C|Q@N$&MypC9{$|KZ1<uFe5JI=j{m`e6${;>S_8A<vr=
zz%f6L`*G2aOH$;7;9q{66mrV7b6Ut5!Ns!To%Q3Kn|of!1wnfFZ$B;zzwO6ALaqy5
z5oF8%_2a6`ulZ3}u2*k}<fbdXC4_yvBjm0t&j=thfUJQ01Q4W7V>#Ov2mk>T6yf~=
zln$U!0EGi6B9eOpC>}sj;l%{ml6wNk|67FoJ`t7_EFt(5e+ammj1B5MAjygWJQzTk
z0AGD|gymhGazY*opts!LuHec&GJ=%?s4S8yuAD8e7C`j?9uA;J082`F8w60(&8-u_
zBf>p`Ucp*|j|#Ht+5tSU$XNmEx{`VUJSJQbtnbQMmoI>Z0W=cHQvtLH;Bn!(0W=oU
zBmgylro!_Cp9r95O=sn7CduZ4Og<TKexZ=?_(3j*S_aT2fM-Ram0)YZrv;x0Apfr`
z>OU7i`v5uw&{neA2~wW_*HuSJb`GGEE9dWP=5~=J@2GSSpho~}0(dh3e*l311_v-C
zfM5Vx0I>k#0fYhwbM%WAu!uk8MWn0|fF8i<rd}RDc4|zUW&o3AMnpy7t%A;}JP|-L
zfW86r3m_GMO%DXnOB7y^zsAx5OuP5L>y6$b@58YZJG4v-{YChE051eEAb<~f%BZQX
zx!=he7{DOO{j$9J?S{PN105d@4PaORQ)xE97yU3IfN=qg4`8IUc60!=KZ>TdC?5?{
ze;%Zc31F;bof@Q8`8<!6PM{OM%9|L#qyX9#ERZo+^+~u+4q%E@*RqKBp}{IOr*q%}
zcs+on0n7|wRsgRCuqc2R1DGAaLaBvKYA{%xBUQX4I9KpxK^mDSWWL}lf(ruJUfHq#
zM}AaDrHkp70P2o)R@9?%hrh#M$8XC5SRTO209J8C8mVst;9H@rkRrDlsoG#QnWv6u
z<_uHIw(4q;SASi3D}c8HI2*vZ0M-WZP5|Eouq}Xh19&fhPXhQffcFFVAb<@4Y^2-S
zqt(830jy^SWzZXa?zCjsV0GId<s)hK$71}=O?lOedxtl4+O{cx&jQ#Sz*hl$9>5m?
zd>O##0?uEelLo6xYdK{X4^|hgP__iHHGr?h4s#<5m5W}-0*9&dG2gcVd>6pp0QNCZ
zpY(oD{{*l@s{0{;O@r0nWjJ;QuqS}u1Nc$0*yUXT{3JGi7NlgikY5CU4d6E+m!$ZY
zRlE#ux@$)b@BRS(2;fivhXXhu*8U9OppariRIhvX?65iShzO_8RgQAy8KTm+<i`Ra
z9uMGzkduOxoDy<c@Js-IxpEHo`2a2ia3_Gf0bC5=QUF&1_&0#RIekib`vmY$0G9*k
z|FObe@N{F#^tl?qwE%7eaFby$P~p0CUD`v}y|+raCH%I;{GNv1Cx)oL+KyK<g2?2v
zok0`|A}i?3;_M)Df_O#(o<Bbe1kq!NilDPrygx{JTXjkm4x&g9#e%peh@wGfAQ)hj
zbBu^Ia&OR?FXfjy$@QhYC4wj!#GD{r3ZhgH_XjaEh$ETa(m^~BMCTyiZ^eT_lnJ6i
z5WXPF22n1E8bQ<y;-MhQ2T?hQDnV2TI(In+Zp!=THKk$@m4djnOsV#ycil?mxv_aw
zCAWGIj2Ws`3xd(k%Ny!H9K^59y*-DhjLAoWs2xO|AUr{MgQ&h*sU-y;4T2p^+{mTz
z?Zs3&wr&trS1OMMQ7;JE@3BVVG*p79&n7KZ&MZ}a>*U;BZx}?QAX)^`GKkrm@*WSO
zY0$Y0$PJ=#5KV;V1u=1m`ps$|Z)lJ_5ri7Vk|8QN|6`?cvml-n&E|rXJQc*KEslNm
zrIoa>O%SbxJT3T)V5#L!XP;#YCD~T6BmFO=eGnaj=)T66?>Ay6kuxO7y9UuMh`~V&
zp$-Q+h`vGe3&KyGAbJJSae)#HLSynhUy{%N2r+}Of(X;kLCktf(Sta8Ebr55j*bz;
zrbks09?>A;qW{qlH5Np2V;+TxAUL^5f`=WQlqlFij9u(Y3-1}kt|5+vbtCe62l4GY
zzCJ-5AEKJ$@-}SD>mS5`Af9K0H1O_vU3r1Z>y$x3^l#`L$l^;BK7@04o>FR_!slm(
z1~Dv%aY2j^VmN~#h|%I(Ua9_hC^uBZJCc@HDx-op|EBMUSCuhL7WR&1WA5|vEIjKC
zrOTVjgdks<#uN@;5R-!7zf^aJsP_+5Yks6m70u~E@FAQlNAspJk_&k|p7PBQJMqOz
z&ttw>66Y^6Fof(Xmcg)ZmXk3zh?j#{6~yWwej8SI9_LpOi-VXS#4AB82x431#}@|i
z#KXDFC4W^o$s)<3d`S?0cyf6x58`#<6fPCDWrF#+Zv?S|Go?oEN<j+A*Kp1T@nI0_
zMEF(^pVZBLH;A`|P+_ge-w|XMkM|_&eZda|->8{ed#JiThz$(>p=wh}W~`~RF$f|h
z?CB>#XYZ6RgZPwz5rlog^BH{@1ozM*FMKnH<O}*O7u-OMTeWNs;w#Ced`l2pgU;?Q
z<e%2f*%rh<ncgD|HX+{%eiy{|LHxjB4Pr+S`{{=ue$Mso3}RW1cTW&MGD5`jKT#gU
z?jZK%c-b%>zli)dt_-dMh5KcINPZXLUcr4q1f@F%B+1-^LHsFvrRX0Le%Q@rUB{$(
zXM;G$U=V&Hh?AnQq)_%LuC&6>1o0Q2u0NE`*1kL_o0caw_MQ*oLJ)W9MhzE(xD>=?
zS_tC0)b)1|0|#ZF%kgFw@Lu8adr!u#AZ`coZxB~$YIokXAZ{|$hpN=M9>fi{A;-(3
z_fU0Pj+Y8%6YrfM@|t+*PacfPObuBY?$uCSL$-z-4TUun(NI8h%2KD05NIeU<hLe{
z!MRce$tod5C99Z*dxY$2?7gpQ?tL0cXeh1W0nMqgq=x%7uo<VCcuQ$$d`||2x0`s|
zHSw}l4{9i*p{$1Wg&bGZxSqw_7WZVZ0S{>?uc3m5iW;6W(853^4V7s&ga<>YqM@pW
zH#Dr!P)&2T(P*H-r=hy=hc(m?QaUH2rjSQ8cr<)6RP}18tD&BTS{feJ(6(Qr+8XL;
zxHVM$b*OrLsQSP#by5A?16kh3G}PBXq6l(x67Dv`<gM%sR@YENT0>6_jWj&2A(vg#
z&_zR64Ncf_4eg}fCp4%U+Gu!ILsJdSG_=srQp1xPUh1KwJ1fmKG#I9S-9sThMVp-+
zLZqaXhSsz*Onq9zGm=HlEMjt)I(nG8aG3g>#!DlGM_VE5hN<l}bkMMCnA(x#cV8zB
zr-!NBSA@K?ND2*CyJ_gIIde0vp@#;)hM)$G?j5e)4l3WB@dY&0JnbV1X$WgDHCP%V
z?ALHrXMejWBt%0vNo!5{rG9QyL;ushm<Dq0(=z&yv!_skLpIFuYEno_(AGdFQ`k$q
zG)co`4ZSt=(a={zKMf;9exQfaU&A1c(XI^8@H_{ihw_4k(c66kHJn)In-o)8)X!yd
zu!bQThH4nb9t~H^29%LXE{AEjhC=-s@u1E~4Wn3A!x#<YXkWuvF||J1`^Q6GD!g9N
zJAnfv1}8E+E_x`Z>zFk~!&DBLhPfK1(I-{BGd0Z8@R6ZR7o5RZx|7A^iyCHYxN;@)
z#o_844aI)+?JuLgFkB_6+C_a?!#oYIX;`drBMS_&lvgw?&=B$~H3u|WGhBVCl6Rqo
z-}q?aUeBxalJL#LRVJ5ccwNJCy0@s>u9vcuVVvz<rs0p_>NP2t7jrf#;%-YTHLTKb
zSbRt)tQN9eaE*pHHN2(aZ4GNRe9TFq;T?^eX<&nfjZ$67^4|9}yszN{4IgrDYA~|B
zZ%MeWqd!MDK}f7RLQS3WH5s9Dls{tIVhV?e!SJbuO&Y%8tk>|FhAJoOf1%+^4WA3|
zIzpwS-@e?<9O!+yTLr%o+#<*Ze=US#-E)NcEt_{M=UhzrUc+}>XJQJEF-09CKgdA5
zVLF>-?a;7O!;g%74L@o4ozp?X&y3q{%CGE{hC^MI-E<xMRo=_Jn7Ap^qM*WY96v(c
zL(hy*xg*m)4f`2m8vdkLIZPweWq;%nckS^J4|2^Jq2B4H9MW*1s7jy24*A&SBjVVj
z8jfi=F8nOp$@mn0l4ISc(J4+tAsa@hXT+a>3DSX`dMf8>kU_5D4%dGTmo!}0a6`l2
z8ZK-2SHo3?O*tp3{}G#47`L(laNb?x-1#H-F+(}wS4bY!l$#vfeV%cB8kH%kzA&KC
zEk;pyXHwtQkP*VYArudB=~FU8$O<7l<izmLBh;J_CKgfY*u-{UfsiwWAy`n5$wDC%
z7G6ZKs9-U{djxmx&!yUZA(RNAR0#KnP?C7YXV1?oZ763)s9b(ahyIIgMn2aNw!cgW
zWkaZ-qoR&-Av_eq8xgFCpge^kRF0rZ1QkQ56heV85JqJ#{vjL;IWK@z4WU{HuY|B5
zgz6zY974Acx`$9Bgqk6!qC>SuLQsTzT!~jmE&3sZ+QRFEz!zAkT-Vj9C*(1<;dUnF
z^+RY7f=`5xyE+YpG;+)4hR|3fO+t7=gn5$WD-1NAZ>On9nuYLW2+c!yD&*{q&?$r#
zA+(gN_JXZKcv?tnK{g;fNqHuOHu=dAx2bVj`<!4~S4ZoS!<{-P@8C*0hQNZ9@aQbU
zE+KSvb7{Os2>uXKA=n`VL~e#)2?>Uv2?@FSVIh$abRmW-=lhjWm*=}NCdqgR2_Z>0
z_v#oW9YW6#CNSPa*h}z*5PA#g6GGn*`U!ttu)p8{!NWNj`EE3BX0b;DLl_jo;1Gs{
zFf@cwA&eHaVS*z<7%qgGEHzSie)Gn-@^M1Ox+6%<@eIN%nfYpyLYOTI9Kp#UOc6dc
zglQp67d}gnrDlXMQ#jw6Ve&=c`9|gle<_5yLS7DGzL0r>m&QAzldrijgjYlOK7=1a
zSQO&>P|gs48p7fbmW1$@BwrU?D#+LOsIW}<a=|x3SP{ZX;j0B#3BGV8i;+O(H6gqy
zgag6k+aatC;T@5DAo#8zv)&8gec|d5NApAB>q1x`!Uk7|!@7}8z0rinM<IOd@=t_3
z^ox%LH-*49e-^^$QtFEkz6@crYhjy^uLQS*uvN&{ZtgcB=lygV`PP+uCxoN9UC3^(
zJR$6Gb9V~)QE->wPl7+wPEH2x{3=P3144caVUH{MJ%qh3-zQ{$2!Di-A8Cy*d;S#R
z3vHeD9HPMxj)>%r;L#9{g>XEC6Cqp{$w|TUf-G_>gwr9Mk>p<?oO9)8h4Aeg>aea0
zuKZ#Mmt6jL$a%Ag3jes0D<S+V{Avi-gj^TADR@JWrEUqiEy&_DayNvGFfzl)3gfG5
zo}91~?abnl9d_PzeKb3x!re?}QBp9B9%1;yC=^EFFp7jxG>mdA5=ODG6HfOElH3#i
zZ~Y`M9>#qlFA+w`FiHt8<7(b7q_p4zf)5JvMXIv@lPn)bg)n?!Gz_Dn$oXudS4btE
z1;VHjMpa4H6lA^C!l*9%VZj=LRVB_J`5y`USWA-i!gy2&-)yZdq>f<Su(MAT4f1#_
z3`K<G^}}f3a=zKxD2&I$cruLUVdRRuiC|+_#~SPy$qVBNk*Kb`X&B9f=g)fTJQYSK
zH@8I?EyHLf$=1X$o)iAG;4@*gk%Oi74_DfXu)SbA!Ter#5Z+OcYE<qlyo(@{UBl?+
z^6p{eM@S%yU>IA&_&N+Nj8GUagt-G4!eK<h=;i9`VI+kcf~KJ5=0=6Y!iWn=xbpnP
zDkVufjI@xRg8%P_-eL3+Nnb&>v!9Uuf&&Df=jh8Bc~BUG!&n){sxXFxF*J-BVayC;
zSQx{@m?+941ZiiikdcC;1V@K4#?38#&6xt@Bso5e39g*mzD;uZ<S?d$F*S^7u4K9p
zF8KK?|13!^4nx0^^<o&a!<gf0&KL5M;M_1?7BbJx<x8fogt0)93k4SmzADHUx7oJW
z!p^&>Buhm2dKgQ?SSFmpH^Nx%a_);o$qGqwYOi+X?}oWYt21ZcbR};Id0TL881D$l
zUk%<1<NYu`2;;*rz7YAkFxH3hnQ$7}5XQ&CH@cFK7%f+vlkz7b`BZR|Am44IoX6*3
z<V(I3`DVed1h)uMhYH_>u`P^yBDgo=H2B*v{tV+_7~h5QeHcH4u|15vqQ66McNo8f
zvD3BiqmW%;{Nzf04r8Ruf?q|F{>K^a--PcG{N2^e&)O%+{bBqe<baz?Cm#yqa2U5l
zawLqSVf^dn9t-147=MLvJd6`zoOI=<gycKtv~afPY#8Ul_{Y^b&$ZX(7s9yc^8B;*
z-(g%9NxqRQ!t=AP3cu#+Uk~Gk%Wt}Bx5Ky-#$8Dkhydc%48csntO&A&&@DOn@|&K5
zLW&3$a&rquka^P?N*+Z;SWJ-e;;v5F2<{VJB7%|;loDQOq_f*6kNYKAI)VpW{Rf4V
zi8$M><m;4+;2{x~cXcZ8SAg(Ju7usM8bP%Pq7lR*s2;(?5wwh;RRlF6s2PDTf`$=1
z5^?TVcp~r$*;~<DD}qNOs2f4O2x>>1dq>W3%15jd!Bzg`-{E^q<hv`QLB#p_rbx2B
zAomddpjY<(u+oSIBgl*336bYU&?MsA8E7m?TH9SXgUM|>d};(uBX}}`qS?-d&&?vv
zk07>cKtF}a<`Fy<LHokaZ6$7d+kytOyu4-6I)bMo=o&${2%d?c4Rs>u!0xlz<-JsH
z7r}E<S6jEndRZC$?q=P0(dkjg2s%g5C4x?p%e`b@v=rVmVcEBj=J8%Z_Xv7ORwM#{
z1c3;G5$;3{ZhLF~o7ud-Qp8e1(ir~UXOnn@CAoOJPmjRhPqUFKt(g%t9;sR!^ot%I
z|M0d_1c?a7(Rc*O2vQNe5W&C*><H5ISdO=U1U)0@6+vI=3%${s{R%oi<azXoIQw0b
z9J7>u?EXmASJ_Dph~Rl?Fn`;=f5F*ycu)jGBN!IJ;0X8|lQ(LHFs^zj69dZd2u4IO
zI)X8*Wu!XNP)17GQGzV1^;gESNtM04-NE}vB&iDC2@y<W?GY@9U{VB=BbXWCCX<*F
zakg}x8o{)Dhvazu`<(kr(;0YK-bXHE&S2L%E95UmFgt>I5zLQZP6RJS@Uqm%V0gZ)
z$|7?m*)yQ<VDgOSAamE<&0HA4tBkh@mWa-x2$)Ofye7$k{{Q^*dIU=&SQf$5k&Z#`
z<jfl>%OhA+R6X3y**SS-1gjz_%OBJ_R!6WV!VN8PFoHKDcq@XhIng3`JA$<ld=$aQ
z5$;xscO%#kL4^X|_ab;df)9m%Km~Xy{5B_pBwj6NT?FeRC{rzmLLSTh%_MGQSmtD`
z%*i1CB!bT(_&kD7#lj}Ru?4+-3Of2<M6g*TUq<kr7w;DI($rTGY>8mG6yGYjYeuS6
z-WI{P5$vJoBls?Y?<4qGa({?myO3RiJ0kc|$WFm8q%4aMsFvd`=>18Ab8|9wNAODo
zxdptxisU!JnzeGC+n!5h9(zUdM+EzXP_kdhsGJOzIv{-{ITXR+2yRDkCxRmpzKM@Z
zoH7v{i{N+!e?@RMf)f#(l(J_cIOSS99l;RkBP}NiWw32Sr0R2`a9%LqhZlrj<lN86
z;Bh&Ee?)Rs@Ja;#3Zb2eg)(YqWR<LzbIp}pkKl%II{c=PTY`zUId>z-&{0x%MmbZk
zkdDGSvUFtY$k9<igavg#2-S8=gLlF^zL4XDB07pn*1fvp$zp={FvcX8`V52OqHv#U
zp@fdwwVY@vrQ?1PmKJ<a#{>Dvf?lJ5w~TNO88si$osUTJU!?Lv`0>__&)24;l8(wc
zuITtzM-?4ab$q0QTlZJfQC-JC9fNc{tfPjG9y<IwYU<pV70q=#rNg5;e@oTU@u-e2
z9TcyQ9n0%j6;*zAq_&PGI`VYX(NR~&uOroZIv&%Z&?oJ^7e=bTXL?H&@Sc8Fsjs7f
z4xi4iIV%lyG}7_7?tIB&a^=T!rKyix$SuF9PGcP`^3;A0vEM`9Cv-HGN>v@3u6np}
z2eH8oPct3;4tt*D5R7tmBVqGe=y*m)8yzi0pSi7cwAS&oj+gs*D~zc%>di;FEx@xn
zo|Eo$*U?r-I~`lD=601HwHMw+M+Zr=j~#V%((%sKT=LF3Ub*0qDx*{u=_W~%0q1-T
zN2$N=su$1^)M4l_b>|y-nvSrJi0*vwE~JAWq$APUyUxycB*}S@SURFIeEoIAgd}t%
zg~SCJrQ_VlPwB8l$bn7^>8YcaklwDm59@MyKOqG+DFbvouj2(*-XkZ2QAZ<#bqvw*
znvTUf_s+#I9aD8o(=lAf2p!{fOwcisgIhOel#bDK-Gn@T(SuG{WaW*~F;)kMi~~AO
z$3G7{QE}v?Z=#M#IwsQz5@7tncqh~Q-SJ!w=*j*HkslVBu49Id**fOv_~k_QOdYdy
zyhz^4yED_fWmw(I&nnAT*I|6Vq+>2ekP)Ig*G{xwa8Vt`%zO@FEAK08;hEfaRT@)&
zfsTbbUgacx*4uWJx=2W$tPI9X&c)m%Yz*g`jx{=#>R6^@B^Angm+N>##|j-=>*lcD
z(ybeRbvE}x??!AVC+RBDVH{HPO&xFPc$Yz|<82*l85laOvQ8HJ#lA;Jsf=4nc)TxJ
z8+3digpv<+taJH#HhYwsueni#Wo9TJ>-a>+r;KwQf9N=%<1-zfb9DB4_UQOR$CnIC
z9XoYw*722&Zx~vVyG3v-V?&;7q5jt*DY8KMR>yZbwoCGR!5;*v)8awr5fnZT*68d1
zo;CeZ$Im);>)7S${G@}Aqfm{<FPz;X&ymLn`JnP|k~}*)?{`;!ua12#-!J4+A*cAC
zI?n1ir{kcGLpl!YIHKbuM^ML6SO2(<V=lkd%6TsCge2RyQ%}3{zjT}t-rIeCxUqEk
zypF#`e!<nesN<5$7mjjzdYK_AlKck+uj;tQCCEUof$KVM=qPKToPnD<ZgEvNkZs^L
z*TyX8KP(2YbLb%6)sbN!(?Gof&KD4NW@S^DW1xV6A_j^Y0Ewj(Hk`5r4dg2nGMut3
zLLvWnDrVpw1EoYr`MpB!Gf-T}|C=o#$&!K}j#BS8c%24bXz}9b0Rs;jd?rw7SynCA
zT`6NY*S#bU87ObyF$0Q$3I-|~sK%D?|6jwoR<CT}%fE72<1f<eDh8^Gai<Mcybl|w
zVc<~%wMAIdfY;4^#K0@PvOV-kCGY3=tF>HtmhN0u)iF@lmGIiQp73p>RGO_Xypdo7
zSH~xfX=q?a_J6+R->JN$Z)`v{(9}Q^11pi8XE=YeJ|W7Lb~-;Xc;tUFqnUvxC6@}#
zg$&KfZfT$u3z}GEqP2miIk+Yon|Q`R8w1Z9c)`H42A(sVb4MQoZ4I<D5H=7o(B41?
zkp~QPG|<U#cKGRTpzLzrf;L|2cb42P2Di(0iu33u<j+xR4<Y>V<rnhNncScdjg2|%
znZ42%GC-V`m7yCj3?%Z^_Bwk)ng%QbQ3Kq_F~;Uy^6cY2T9-W0){WyL<R2WYD=9@%
z?5Tk?$KAl2+_w6Xr?-J#!kJv%TbX|%m%_fH+)uE-;CF4j0}Pyg+RMd|)&?3FYG9aT
z4Kgs8j=G*XM3Srj&gB-P!wrluu!fcmj5ILHz)J?^8W?S03_T+wGS<L23GxYyuARPL
z`YOZE_{JN~pH>X=iH7q<l1ZXDS#XNrR6&m8Gy~IJKEuFFm(Mc5Uj$T`Es{9~_?w8P
z_|N0Z2Ih%yx!`;QuNqjy;Y0Q-1{R2Lq2Pfm=aVk4314F1bs>udJz36A#rtpOEM-$~
z=8!Kl@IG6<*Yk#f6*SmgS!sZO`K=bdN|2L|68^Ay%fQ<P_XEc{18WVuV_-YO*uc96
z-ZQYtz-P2(IE(g&2G$w)KzO;bj%2-o4F>-)#K$7sNKeZ1vDZgA&*d)rSoy@jr;^3J
zo@TCfo(AMgbDtad!oXGoUvu&r*enWL4Cj4AKDEfFv%X?8-f{K;U~<NC<r@Rr7`F|)
z-y8Ur>%imQ@1#hEyhTE_+YP)w7--$VTVk}cFz%!&4wivK26h?v$-rJI{<DGI27WWJ
z$G|V_Z*ynMre8Taqt)5(`ks`sJVDR`kKd(=zwhzxGqB&l9|jH>@Q+si6nVjq^Vl9f
zCq~V_ZPddCju<#@;DqEJHSn*;o4;emF$3M2di#!6`7Y;4My!D|22Rn*dEU)y6u!pD
z-DduhQhefckGvmx-oOPeh9=6GxM<*#fh-f*CjK^X*}x4h=?ozQS6GXIs|Fe^Q23@{
zt6~{!4_}VHW}yFE<+_2TTb=V@Ioaso78g1$RtD~J#<_1FlVq59@OdTElvC~7&H#<6
zqh7A=%`s8H#Jwhpn}CUeCW@FSYNC+o_~*j?-oirGzwHbYH?=5cI#1298TXhtS=kwd
zOY)Y@eI`nnxZgx+6D3XOo!n9;TFI;Wd|Gewhswm!>H{V?(0nkmN}&RLn(_6~YFQJB
zn%-(As+%Zh;vv)7ZK=G8iY6+Vn0DA#fz4Z{1d4GJd!@38DkiF$+>csW-qNXh<7l;4
zC*`Nn>cgzjL|qg0Ow=^-h>2Pz9yQ@HQG1c%WlO{rd~7fOG4k3bnm4OkhwVWDcIPpV
z_uZ;09r&0D#e~m9LmFJ7)EBh|CeDvmX~(ItxHqc@8krbb%=@_Mym5dr>b+}y9Ec_+
z^4R^=zNIFfFrk|0YoectrY4%1&N-B)i6?2$L{}5tOgv?xg^A}(v^AX*TuT#A3uz@t
zNo&)&wUSpj;~9~(G4ZS%%;JnDwlmS*1i#o-COf->iH;_^NRnBdOmr5`T%M|k7P1Q$
z%qHn>qKAo|9ITuSzlnf}u!)F?pwyzdwe!<dA<-FEID?wBshiGO&osFwze6Y_TA~wm
zOT|pYg(n1)f+;uG7LpcZ@m{XHw~0Q|*?gO4`egSvG0@~UCNRL{MVInCgQ~pu1qQ|#
zm4rCh#1Ip+OuT6Fa{w4-V!G+9+rv$a5Hf~iWP)q^C=;Vi43>4C$$2|`<XrH_iW+b4
zj5D2^JmXDF5HeAal1U~e3!fr5)s;^Z(yC;E8K!fOai$=@q((m5#2n5S6N~AkZ0}1Z
z7Mgg~#9R|Eo0w-}zErxv#4C*XEHB$Lv9fcWMr@00wto?`%6q%WT|p9_P?ng^*TG&l
zowErw>2tP?cl?$~urc12n|Q<JD}*!}qpmiw#>74g`z^d_;w=-8Sx_vzZDOs73=5eS
zzq8<64}4`}i-~tlyl3Kl6Caq){rs{M^FEZ^4W@H`UnhLMVAi!vmfFZrl>53L3HjK>
zC$8jE6PsNAnUK!~zYzS=#AYFF#yEF|x0?9c#37EdiEm77Gx3v&pG|zr72uL*2M2Dl
z@|}tAP3N-V2NT=b!ahoDjLKhUB-Gg{I#m17#4h0!GP#?v{h9AKE(qoFei8XSM&n<(
z$Xv-BK1SWcK{T<KF5-wtdwTqvHGGwCzllFg91t}cp{YOVy=xvGY;DE%-j`PSj+i)V
z;xb2s&M{GbneUu9?YM~(Top~6GVzy*jZ+n7oi=gCMApAq<jNHX>0X*W%cbT@)=Oj5
z^Cm8E{Wo!mv!F~KYgx9!`2+oL6PdPBX-_Ws74gO$Y3IKtu9~>U;GC-5G;zzsb>TMz
zDa^kNdv0@1-HpE6TovVVi$?Bpiq*{_$>LgIp|0hOevSnWXc-G-C0W1%EEKd*$U<QY
z#Vy=t@kasJq+*uix}p~DPdil@HynrDW8q$!+UPWR<ruYug`=B%rKn>$;Zf2;zFKKX
z7QK=6fCZLi)`L=tttDqO%31J810J$a-a-Wn6)jY^@URrDWTCQ!D%OAhG*uNN)hs7M
zXsu-3oX^In?N<3}SRi5O*0jK3qUA@}uZej)$hiX6vT(vy9u=E)EYz0die-*w{{LU~
zqzyF1Ce^plz(QY2Ech%mv=FhNTWBOYZ7sC3@VJFs3ym!_vCzswYYTZ|{0R%Hg<*Sg
zX|}0_W)_~Z&_c4Fw9uUGm*D5%=988dI?4qwi?CDVPg{7#!gJDP3fo9oHuzcT^`$Xt
zz9va~3mv3MVH&Z}$%5ZPz(QvWT`csl5EEB)W&8il>L$o4x{E<}ocq4kxt&QJ=i;Ah
z#YSJqf@Xn99{II!v;7}!rB+&@TMP@mq&jlbf@SejCWu*xTd*zgDxF8dLP~g2kPlJt
zi)_=bWHBr4N_ui=miuZ?Q+kV}k6^3wxn*nQ^tUj8E0u+{7M`aEEX?76S{P{Y$w`d0
zFwVkY3qvdnw=lv&wWYqH7M4s^hKZ4uQ<Rcz8nZ6eJJJGgq>Pf>{5vY6EsPPhCQE(P
z9B*NQg=rS1TbO8J5{GiBZ;FM<qC+DrHS%{Kg>3)S|8L}#tQi(&S$NUHOfk;dsm#M^
z%q7ok_U=j+OU<?LvbbxFg?Sd{TUg53WI4A4U$OA2g+*d>fra;f_bn8kFzYo7i)q%v
z>kP9gc_hSqo?i=-otOHSTUcpfmE^u*VTG8@Z{%tQz*67Uf3oOdl9N|*-n8(Rh3|g%
z6_bG&bJ_EbG;FJduPwZ5;XSs&!Uq;Uw(yCC52axnENm3A&cb?nX^PWLZHh9rwf7?n
zQ?BF`8mm%H;is(K!e$YEX5n)Yekn=ne<4Yd%43~vjalS;=bW!BY_YI&s=`Pheq&*q
zH0gH>-?FI|ezNehh3_r=Ks5_LijnOWc5vvY<V_ccvjH@?%K{IQOC<}emm%0K$=@vO
zvG9xVUj?Z%<w_QH8WqoKBxQe@qU@C{%Kxx%z{1tc?6Oh(Y2hG8?X2gXC=OXT%!M(E
zLQx#yDre!gg*z6GSvW3jzRAVJ!buBfEu6D(%ED<2v;WRL!|1w_#ZY|sYHr`XJ|2Hb
zT@;?TaKXYq7Oq&h$YtcR=aPlLx#(TZUDn#m<FW-F`JByW*?%RTuUTk6R=p}k_|y2h
z+pilI64E1@x+S@c-n$kuqL{QKgA<lUXe~2}tSGXhj=La8VNMhUqW{%3N{rMm=@cm(
zbxspS1m})b$%{&nVo_AAkwXjg&%IH{OU0wOFNzXTl#KHGL3l8VGEvOQ^A7Lmy*~<K
zX+e?)gd94a{cNcWe&(`bfda&GQ9Kky`6wzxajTWLAMHm`DT<C!bc&*K6jh>V7)7Hf
zszy;QiaJr$jiP!K4@cpRqE-|&qNo{#Ckp;=$cL_pk3`Wtr2MnfS0JX8iz-J#%A-+y
z5>@!Pb!}1OO(B0J@8VOwdQm(Ug%Wk{+jM<MeS54^yyT_K`cX89;@9oIt(3Ty4~$hG
zk0LjUHc>nqMdK)nKaN&Ww2q=l6nSjkygU|vLiAO!*;KHZAgg$i4HN#9U<<*PZtg#)
zd@Rmdo{r+5%HC(9V1s!$eW~nyE{e8Mw3AlNc{#6m6||Rv-FP3klD9(?>?uj-D7r)u
ziXt3ESFzJAita)R70Kukg+Gd*Sf)d!-^mJyksD*x65~|f3e)K4E)I!Ap+{jw5v8e+
zVu%GZ>fBGOGft)VNMam_m=YKK#!|==!by@sQi8T%I*Oh`dI|Oxq-LKe`ntU3IJJKi
z1EP37iWj1I`AY8aC<aEsN3wYgrjv8LgCzOoygW*V2p=jqEDCd+${Qmiq8Q1j-st>r
z;|=*yQRi=?(Sl<HOEjxHK8guZJhBa*ZJ5Yu62+7`m^ufONupRe2&)ERY82C=n9&<E
zdt*9D6t5<*D1n(#%wnv@a61NmGXBLVK8WJOC}uP4qmJaIC>9GLpUYmje4dc`g0Doe
zK*+)<#+~=QD!54SH9?l8oVY~PUKd<S&x})-MX@}JH=<Y}Lh8K5HoJUP6sujnCW<$O
zvlP{MydA|_k-QVdyHUI+{C!vd|CQH8v7QkgLlf!ahA1{g@tLS?6#Pi=W5G`ZKNXBb
z8-E_f7mU&<ev9JEC^kp2Q?gk5S3<T6ZV}uX#n*1`H&JYJ`L{y86Z}4kAB1c;n@c17
z?`%gDP5GMDpPnB%^z^Ve>L<7C&q8(!{=(X&)Sf6#l=D6mbMW^l_C~QUiv3aCiQ;Y)
ze?)O0ic3-a&GkQugHfE0;tbdSC=N&YDKVVj`Y#q({8$u6g_AHjX`D(t>E@pLA0ZX~
zlH_?e_iPmBT+SjFgkSt0$z@KoC~k=4ir{s@e;K9Y)T>d@CdoA+tT(?sHyMyo<hSAW
z|5#&gMhwMbxF?3p7_wr>jv*(8!r}+!7Kovca0nI@q<xyo?_Cj*6cx;u+$)@A%f?VV
zhWldwX_kngWDKPwx3sHszgzGDSMs2cGHxl_Dfd6Td<+$0s3<y>VyGQMofs;|P$h<{
zBJ>DW6J*)yF+421hG0#>M+6thxKPI%L#-H?r2NtU$*L<{iJ@K$kGTc&73#;(AO>Fy
z4P(favb4jjMlOFmhWuJ6C&`Q9i5U9C&^HD(hNdx?F<3F@^~Po~goHdP*j$kEr($Rk
zL(3RiiKIge9b;%6!_zT5<La~((nj!E!RKQ9x=J>Sw{vyc3&|ID65b<*&O*8fb`|U<
z*j=!0|3<Xn7akA{3TlG+I^h^1lGFv?9H+8~A$&@|MwKu4Zq090=xA;<hL<np#u!CM
zbK`;u!DI|6A+{iM(?WX2&?|=C!pB|8<-x3e;`~K|^k@GV2E_0@>k`RJf&*h16vJTQ
zQv`<y4iy|GI6TG=_F-fUqhc5z!-N<{i<~yc#xO?sXKqxC`=8`Q;gbaO)h5TVLo}y~
zaGKzB!5J~k6f!G@IYM3(oGr-%u6>fZB7a$Mp5S~zw&xWFlFJtgc~$VQv$?OuusDV#
zF}`DkUt{<!hNUqqi{U#_SRTV0F|3baLkufoSQ*1RB3~u=W(;o$SslX~A^CIm?U=J@
zu->)*Bjg-^H-`5_LjJyx4+K9HTqnp<`9?Oz@M#R2MEFq*AG^7q2%*krLcWY)a}1vg
z|H9SDxA0ZWS);bautnrs1;38r8)+VO^3_=5x1veH<NFwX5Y6p^I|M1;8N-h;?2@uS
z#jsoCKfAfC=$HTD)ZY`s;TVpH@OQzzG3<-soOouxNd6E!5W}CY{9p`+Tu#lSqVQLY
zpKHW1;l~9}2vXssD4&Yqv@1E|7H1pIiSSAc=krUI^InMIqVP+Cf4lO_G5q6lK7sJB
z@T-E?1g{I;5WFdPS2}VhhPzxd<ERoxM%;Nsp`2i599eN>3#YK4keoOQxDv$CxvR>o
zLU9xpVUalQadV5tQA{{byJb5#X780`al!ipO9++}EEUK7La13fjt5-+U>s$HmlfR8
z-Kp^*;pO9~5XU<uGAOC&>Q{>6gX%eyRE?wb5?`%29u-n8j_Pqd97hdFGRqT3P2rCS
z79X!t$ipkiMf_15N1ZrIC2)TNb>pZPN6$EV#qn4iN*tYBJN4sGg*R{|zBn4XyipvF
z3(pm7EZD@&&5Pp+;o0YMS#{Gmno07>IG%BJn#b{!%Ui_J(&ep$v=)3ij!JI(+lb`Z
zIGz*IR<NC5d%+HZ9R-)Z+KBab7TzU}u0p!Sp~Vr3qq`(~2vW^2BoIf?m2mx`JS@qW
zU?dJ*h~es(LaaEVLU>iiB5^l2AtV_`N{B6(c5@lYz2oQ;$ALKhjH7QH{o;5#j<s?0
zk7Ga_BSrIh!9jvA#4%9FwDY+<Sl3`l4iOwGNa3(Jh6^9zN|f>Hs5nMTa!ed^g^Z13
zoRINx%n~voj)`$h5>7kQ;+X96DRF*8k~`b0yoO{JkLhvDaC2u0;o~<i3YqQ7=LmTz
zj$?oQSL)?B=EX5Tj#pfrm2oVHV__Vxisbb;md3Ftj@RN?ERrRzW(x^}{9#=t!Z!q$
zvm@P{2wx$|J`J3@R=K5C$FU}kHzi4fZwbja^^Wk*<M<+ucjI_ZlJCc{Q3#EEAmqb1
z)(KfJxIr*~#6J>F&5wnA633@PHVJ;_<}!w<^JN_0#_?Son<e>`;1<EHg4Fq1$Tx!9
z;?8d<3cruzhd6!{;dVg^e-^SMj-9ULM<Kfee`18Yvt~CJ5E1?=IK5sDi}Tnc$=?O{
z#<5Sxe!)KksgoG59*pA<m%)V7g~M?ik*sTiM+Gl(e1#m3<Ajitar`BOMNSDhEqEpl
z1_Om>1<wgGc|MK{!t--4x$?i`xa{(O;<zIGU%{(_9R;t)aU+hK!n35Ew0TRCx8t}Y
z<gQ?b<Yu}$4C!o_=Oj=-I9y4=1PZyFQ@e=pqJqT)?-9ILu(%-Wy)S_h!b`dmr;!Of
zkiaVmjJWA}Fo80XHCV800@V_zF1%a<4+$wRNNW`msOa)aLMkUvMMzaw&QN?fff|zR
zlR(V`9!cQ21llIx5n*lujfHp<sFlE@3DlNk1Hn2x1qi8^fFk5EL0;Ul0X*tUGJkUU
zgf~o}kr3uSp1`D|&Wvl4Kwbi^UHKD2nkS$NX)4&v&3!U~w2a78uB1f*EnVJ92p5f~
zg*+qJM(|ldR>x`HE`jz5XbFT8=-|q`3F#=<DS^(eyo->o2`r5^X7TQ>yoV5f0s$dG
z!TdQAc6Cw-L=w;?X(SMH<)#ozFe=CZj=Q;u1d_rziC7~KTaxJndJ5^~YW7ZmlRaOj
zZ-QToc6fg`cYu)R6L>+$KvzB}0Z#M$QbQ6LGF}~;z_0{{Gt3egnZVQprit<>!3lz+
z1;+@EO<<f58W}Gn-#HUGrmlRlkST&(il+;i?dHx9GBbf$uH;1_?9Ln^FA2^Sd|7aw
z;C#W~WZmYZSdhR%nH{{QV)C^F7AN@kAF^yLN#OMa4kd9oiKPiFOQ1^<U6WXzz#9qd
zNML6ID-u|lz{UhVN?=t2s}uMzfprPzf9*91tWDsZ1l~+I_cq^3a1TS}Z9$R~eH-x^
zgZY2?-sPky@8w;`_Y!zN;oL#x@j=3Q0)d48{;wyGIFHQnKIDdkbHkJ5;{-mT^39y@
z6ZkZNO$lsG;OhiFOYocBXy<VrZ1{pRPE$4~9R4LoWW2idRt_cnfBdTiwj`WC$`_4y
z_Eq5Vji_xC;fC?fYYyKg@Lj_B@0-WZKl*;4-wb7Y;=la_c8^zoOkfw+jU>t^@lygn
zCvYu+>j~^m;FkoBByco=U#XwKp9vgH@I&GFJ%RlR{E@(3IxyS&%bl#TRdV+wK&)87
zOFXs5cYq5>WiPwWB%5(a8g@A0Jghjrg7fADh1><=SOUirIFrC%3BD2LZ0&L)fs+aD
zY^j{$vX<pNvd?o`lIO-dJ2{+9;2al<9Pjyr^X3a*J96AIFYf|FNLMb(kX;hw*!?Z!
zvfw`nToLlG;8nreSs7Hjk-$x^-bo;dTM67wAR~#)B<^s@E$?h!bC;pgSz%woS<W*C
zSxIybE1&Pn%}F9V>5L1H0a;%5{ZCUVm_(r@?oFb25``tVs9=#KKRT%#>6OhIsb4IK
zK?i;JB%Oy7xTVH@N$?Sfq7&4L52z$1k|>#Uw%K8&rIJn*-7i>L@PQ;A6he8KB+3de
zC&(%&tdK;-BpN00coLP8sGLO2Bpykk3Y7!SW+T;-=uy#IHR<eyva_7ZK2}fS;UsD#
zQB@vRVGH@}geM6vb&_~2iCRfKDjlhtbmoOuTvt1ZI!SQXoetd<3QrZvD6q>%n@SS(
zlW351hMRj<)a&L%zAuS>7cv{NF%wiCY(Q=jjgx4e#8XK$Ng^+aW=Tvxl>LNMG~k3!
z6$^aurm3`?659E?oAM+p?WS<wp%zKBOgcN;bV@qU#12Jvt0Y=W3%B=e#P_zIPU4v)
z7WGov2tF(LoFIj5g|riFFW5n_qhOzy^KMk<Bw9>R?OsZ^B)TWDCW$xcy(Iiej7(xw
z5`iRwN%TpgZxULPpS*{aL^SE_x)V-97bg#$qePN8neDs|W+Y)I@peCj`;8PP_ETa>
z#FI!RvG7I?M?XQgXJsU1K=}$4B@9%Xp(6e2DcCFN%#H#Tou^rPC!O6$NcttwKZ(If
z3`t@DTQb4fWM*K}St6cKIt$bbN$2^-HfMZ;*nXLVA5_86B!(ry*dD=x6I8x@$7480
zR(5*X6;xiD;H)I0lbDdi#3aTfF*b>DjPrht_z?2y)43$$B{^Kfq$DOM@hTmd#FQka
z%22+Nblwo0mc)!CW^%}?<W8rTx+x@VHn-*BF)N7|lOUNbI7g7lmy(z({AIy;g7XFY
zRdMteB(Z9O$_K6%Cc$84XJ6w|rYVbMo-&I8xkUKuf=dOL2`(3WLy(htg^-mr=t@>6
zarsInv)<y6CGk}fTas9t#5+lRoWv(dyqm;(NpLr$4N1J8#0S#f{2h=!Ok$llpCk3n
z1a-XxGe?A>%f4^qs3kFn8{>3UTFbkKpC<8n5?>^pQ^O{~&jf#)pl%K;MNj(p?ADhu
z)|<ILl=pH#w{jvd9+KFb#5YN7OX9~Qb|vvG2U@1g4@rE_X;sl%WTLwFpUg`V5?lnf
zOLXm^$Aoavn6u0GQxZQ*T>YAKP8qv7+yRAs`Gs?;ytjJ6Y(9(2zWgRSdj$Ck-o7OE
zGukET=u5zJk>Su(pQ!%Hg|wS;kQOd_s^oaLa7j<%DCcYnV^TPl#PKAQ6zZpNf)j)b
zZwgr{oJ!&}J<nz&aVCksII||I7n3-f#5s2Mgzr2%HBqg1#>fB5W*^SGkc3*vOF5sw
zza&HOw;<#8xeJ~vN&K6{wIr_7nx<S$g0C*}+{bq$sc<8Sn@LbDBZXUBIdz4;y~DXM
zQN7I=o~Z7KD0ju-D<(RR&(+%Q<8;eTAt!}$DLj-yffSHJu@vq}p<oJyQYe~o&I^T8
zSghnSCi$`<<GhF@IhUDLunNkCm3vbtnL?=)HcwQGr*K~iy9;HImq_swy$Z?wDU?p(
z+3mivDJP^K5VH@a@OD?{t;sSeytBi{NAma}+@K!L8e2Yv3Mo92f+vNFDO94J6so73
zEto2&oK4R-J7}$nNUDm2Sr4=7iyns4cfGP}2(Kyl)-E5L-MDauSL&^sLah`YO*!Y^
z+9_x2DppEfC*^pRgpR70!ec3r@ZbrtK?=SUdP?zzDKtu<4ZD-V<0<6QP6|)3B{><5
z=?B(+#@8gpcWE6{{8Lg*p=k=OQ+PUsW+^<Ga{kP1!G2Zn^1W1UVAVW@r)a;jmw(q1
zThi?(edMiDU{sKBZzWDQm5+c*19(~TTncSd=$=B4lyeExE`<&$bY$$U^R*WpK0?_k
zh0ZB-O`%%~O7Cpeb#S8EMH<GFK1+SrNo`WW%NX#d5J(}Fa^7ENvx6yw$Wv(YNRF0|
z5hapxPM3W7H<^OY+6{$=A;c841fwa$+}wBy3E@-AIQrKosw{4&_)of$PGQ#kJRYSc
zsl8I@okE`!`lg(H;YM+2E_(W<@Vs<{9q*sQfE3Of&TGh9yDBe;e4w<4O&XNK;FNPs
zJH(X?O<|bJho>;Y<s*ggnMrP+#T8&|3gc3EFNODMFog*z%u8W@3KLV9l)~9Q*)OFq
zIfW@H%w%g*n93lWm&ayI7avX&<Veksv8y)8c~pSo^<oOMQ_d-pO<H3)({m1|!+5oB
zQD@T4P2pt;l73~JP<bVV1u3ja;ms5lrtm7GF@>d!t1il-6qZO&IYD0Ij7veC<ZR`~
zRe}?QQ(#%jxvpC!I?GddBZU>hi&XNiWV~JUgt{sWKPK6d)g0nU&imTD5Pd6!wVZLB
zeJSVU&bo+vJ)AFGznkKQZwhx;BYu#=hnxZ_>`Y-D<tcoc!X~L=Lkb_I@UgUWqj;4@
z=0%hNlT@xVpQQLel)}dbK1<>A6uwR2yA-}i;Y*S;zHMA3xEdJBS1D}a3Rx&)&LowN
z+L{6%Iry61u$&d(8&0d3()>pspMSW-i>}IEzM0Nh|2^lLyp8@t3fo;yYd@y2i}N>y
zzqrDr@N)`(rf`s+PvMso_OOvD{Mx(GuhRbCIPR0w?<c9%<V_8Be{TwZ&>Jc2lf`7e
zAf0@Ak~;WeX1>E~^j8k0aG0}<<D0^f6pp5FT)IyW|8OUZcr1m+NApN{vYyacIhArQ
zT0ZIJylHh>IFr26IGe(`6mFz&lYyPWg%qx&@NWtiInaF?6|I54g<KNkq`oZ8rjdWx
z%{|W5<5eNoWci|mzc{W7=W0fsTcSVif`>1I+)m++EM<2^$T!V1Y-e@i`m<+WZnlja
z8wY#gP%jj)0UJ;BgxV7YZ4|QckBuuf3fm}R<1HI++bC+Im<`KD)W$tF?zPdthR;TE
z+L^4Dw()?C`-GPeENP>ZjS7?1>|35MPI&IO5j&XMV6yt4jWRZB*r;ivtc`LuD%+@H
z;~^X6ZCpL>sc56aWOe6ZPp`>p1smfht0a|d48G%8I$8bcl;`uwYE>K6Y*e?g_PA%?
zWc6Vi{cd^oAM+4-1de+ivEi{%$3|TnUK_P+JZhu1jZ}vB(q#3$yPnI(JegC}tUq%r
zPEofW@yxm7sb}Lc8;Xq+cRg%ItrMP=vz7Wbw#-(jU+9RZp^Zj1+S+Jm<8d3gHd@+f
zWuvi;CN`Scc+y7wDQcdL(sw;7{b}RdJDwp2bBR-CD@|=2JCIA#+{RNjzCY<Prl_CX
z_O!4;!b;muQP~$Nw6@X4#<Mn_w(*ROK~q%r=#?qzyknl{Y`i-~y);E-3%{A7?w_Kz
zr@J_;HbzWUJKE@EqX!3Qs@mB`7aQGdbhpvf#`;Vzh2E)ZxPwB@TG*p!r>bj@c>Fd3
zQsnvLo}djj!<ed`y6Fko2-}F*&~0?S<uRoS!^W(sPJ1{Itns7cP2QdA_%mi>l#S6g
z;x-aCl619==WV=T!?uyO(f@>}zm1+YdfDj9@nQ#0dwR3)cRYPK`nNnU9&wI>M?K#h
z$lZO*!2w4+17wK5o~l+l<{3y=*ci@c*f=m%9c*K$gvSsYe;xMFIcx@_Wta$QYQ>5F
z;$b9%d8*357-M6sjrlfSu`!NnHeR$b+r|VN6KzblF~i0r8<Xjf<4#BvpQcW+G1bO2
z2G2B=N!mYKT5UH?jZaf&+IZ=>CnwW8iyfb)u07_NKh23xj`AF4*_g`_KbSi)!~3$0
z_ou1zY;Yo&$2{L0^JE;#^_}!Au+cEX`?`&#HWu1=)y5(lui044+dgz-rk6v!EYnLJ
z)<Vl1waG_4%WN#SvBJhm8*j*zVXPjTrf!qk+09ip*05_wJb5>BSKDAmZcJ0(6bZ+%
z<aBkdjdyHZwn2~ac-O`^HnuUzcG~#B#)mdG+4#%`!(g3_4K_A1ggBd~t1YIh#qM}M
z5^JpY6C0d&A9I+FI1}(wt`#ReJm{Iv#r{?s1E;HB*!a@MW|8=(I|1{RTl*Fvbm`YJ
zedzfYr>o!E_>QZSjYFI%Hh!@2i;Z7xY-g{ht2?+>WO`5E@@$!|?zHivja?$4aJP-0
zT>dlLHeIEVZm)LR^P7!5l-T%#lW3~?yN!L)T26$$Hm*-sN!V;62ls%DKUvporT7e$
z4rFvynV}xGafHEU<1DAiY~?7|3L7Um$~KORGG_#bjNLzF<FpMfee{VsL*-DOktn_U
zXKuF{>Ny+dZCtc*$;JgvljEK{r#us9I3d(?hPq;g`nOoyBz%2_m+ty`hWanZ+QyDF
zcBXNS4dzmuMl6jRHg0n5N<&HGmW|u&ei{|hxMSlk=XDzQrje0GW*UXlD3V528rf;o
zxZ^39Mot=x&jM*6jq@{9u64P$94Bx-az(m#rdlWsF25x0CH#t}apAV7SQ;F9j#QbG
zp5kfTm*z_WD4j-$G+2E2Nl&RXN(yJP+$m4F3~#NO>H}#!m<IVnf-PsNWzr~{#^a|v
zp_%HCnQFN-h@AC|B}RM2G%BU>NE)6rDyLB;jjCx>OM~Oi`Q9}%gEO&u8q}}Jj!bqu
z|8N@fW~w#Vn7ba5^)pqj^Io<#4W2vdrqOe@@@N`$(#~pGTl#+Mu7^u8{m+$$%JtZW
zgSjO2(`b-J+cesx;Y*`o8qLypGL1%Ta2ie0$YZ6M-W@a5+%y`eadf7-D8t*~nCIq9
z^@%jNR#2h}VeguzQEHazndPh@&C_@)jn-*Aokoi^TGH$+m2F`AS#PVfvm~<nJheTO
zMw>LAO*>O~cL`^)4bD;r9>{$zja?buZ3lC?jI>XqLmJ)F=#fUpw5<GTbV)liw^JIl
zvp`N~JjZoSqwj6cpjm1+kyF8+Mj(wy8hRQ*7CGh7(g;aejx0|`jQ?=jIVm%Y8O$9H
z<{D{y@LXdn4KwXb`Khy<@uHmGi>HxD<JB}4rIAb{mBzULW9mAfq$r*@+#R2QBBG!m
zSya4JK^IOqz%gL}QBe>CL4sh~$um1)cjpup1q8`C2P0+_a~30rIiMg>k_ZM2fb##k
z*8RQzd-LjjT~poDU0qe()6+AP#@%V$mPVRdO(RSF)11;+F;NTCFw^*8Te+QvlZGXj
zNt(wchs#$s(A+c@Ow@RI0(_wvp@C4Unv;YmjWrWhJmF}POXK!5?noog{!N1;NOc<9
zYgCZ(EbB>d>gMuMlDw038>1@EcsQDtkj8WxPa5~8F(!@iX-r6CY#QUzYHZpzQN=w{
z;`^jK=n?m)F)@wFOr|kO%$TY^_+xp^NouT_%8Zk=Q>Ub+iL+evZ#nVUAIoR5Vq2A^
z%}T5A+i8+EJB>MMkV8K8Oy+zxFpcNacp;62X)H=(c^Z$=hSOM*#zSd5oCd?x(lj2B
zj2v;6$yLaFkluZ$yyqk}?|Ot*da#NbptW;2cr>jB%Hfl=$J2O%{m70GM|d)g+$8O3
z)<?RYhCz9n-{eVJt$)g&P2;&VR;IC(8Ml=)L_FC$ML=_XF^!kfcqffjX}p}qD`~uu
z#+$^Gv{%!3EsfXHpkXk{v566b+UD@b@c335Z_|DRb3S(AhN|4*@^{ntc9Ql!Eg_Bf
z1T)F#!D#$p8Xu*xIt^krfxW;+(M}jS*U}g0p*qgd@o5^LrE!?yPRHkIe8Kjn@lzUK
zrtwu8KculSjjz-ACJoy523~?d;@kHOlJ{%hF|=+{L5~N6A>-b9IZF#+Bw;-_rLj4U
zZE5^Sf2XzAte}2=outD1)->9#uj1rtJ9Q{s&mn_DJlnf7ja~GYt;)7JU~vw-hryOH
zJdM8@PSa|X`IY^c#y(o$*79G3_C8k4_kK@<bD=tuwLj9>pH@RHBNdBci2jqYak9n`
zbU=FTP#XUTILJsfS<T<>JyiZL!{cOa++;OTyl%2qQ%8x86Ld7zQL3X%M?D=!>!_sz
zI_l~;QU{xPgpS%e>Ii1IVB2{`9_+6NCu>LPU>#na%;2C#%=$Wx(Q&Mf<8)B?%gI^;
z9oMg~+BaF{I&zBEP*=9yNC#bjHgmirPn)7<N=<Z}sN+-}ZFMx&(M(4hU3CE+v$>9z
zI$G&yp{uz)yPK2&zqO8&C@k}QCV5jpFFRRB{VAzagmN??K21ltj<a-}t)oK6={nl!
zYNR+r$C)}fGdy>S#$&~XDu&Z_TU7LDud7=OW>4wpJ4N|R2VKqQ8Ra_aYBt4#A*GX!
z&N`}e+&@LLr)caQmcaPjMMqa1-E=jvrwfxwz#czO$N4&LH89udbb*cwbu84eh}zK6
zT~`rcfsTuHT%yC*k<oFfj>~k6&@oa+4;?*qT&H7zj>~oQ(s8YhembtuaixylI<D5S
zX>#f+U4>%mgeql$RLC_t`mhyL)Fh3*%pkz}a0*ligAY#8IQaJ0K~p4Pcps=^u#Ove
z_qV0|dL0xV#AfbL_d!E+43$n9PJ^jg!LAv`I!w@bocKc(JL^VW889z>la8BpSUPMS
zx3I}_bzR48qP?^fOC9oV=;bLIV~8OFrchcGrxQ+5&vZ|h{YA_CN6jDDaijqaOvh*)
z_pqmQ#5(TKF-k{PSMzF4jPp83b7C;8d7`6Q$L+cr`oEc?vA@`T+b5;iS$FEVOUK>1
z3dKzBnWE-+JXp@XEJVjt9n*A-)iI78tz)8&`*e&K8=j!!pD9|CsanUW8YfX4hG^Jq
z{v;h!bTw8IPiFILs2Tg;lT+mMnyO9LF-ym6cH&fRhR~TTe{zb+IilFPI_Bvxr)p!T
zYV&ELoNZ1{Et;xKlz`p(%2aK!jwKZ44ZDG*I+p49TE{mOW*6vqRmW>O9@6o!jukqd
z)$xc9`p9w}kLh@njUB6<yRH0-soLYZ+|}xMTE`PQp48RckDa)AyK=N=bTxUPIqjXQ
z#yghqoUX#xi#lG?u~NtLtZI#l7igkCR1xrCD_&;Mn5Oam;uXp?(Ao&5cf79S4ILlQ
zFLb=A<1JQ0$9wF)AFAG_3yjy^(bXye?<`hHceBT*Z>V}->OlQad*@Em`cKn7(y>~{
zCk*mB*3cknY17n{kG{NCJeo5c4(?3S#y->WMbVZ%7r<Cb{+BwwqS}8f=cJePTOI3k
z>|>zQ@tuzEb!^k|qmK1DHt5(YzWjrZjWm@p+GepUj$+U6DBnaS>`?V2e~ZKo0-8ax
zwR}5ku44~XN<*5a?bNYL$8L7kG<93e=DadZ1>~Q^zvyUtdBwxZ_Na5Z2Enh4kU9?P
zIHcou9s70s%{aNE{0~}}uI@Y9Y%Bl!-}1j$`7s(XmB1V118l-pwL(J4e;A?}>J7y?
ztfPj3nuZ!}>HgnL(`W#{P16=OP?EI&QbT#c8OLfcaD;(#40JM3+dv%yEey0YP}jhb
z22L>0*uYT+>KW=5uaSYH4b(SqtbyYU9Al`8HDIpk8Ub5Dcc$rb8rjeQmDX~)#=)9=
z_UZA4iZBFC44h~vD{5w_afi3MO?m0f>K2US3+<}8p)8Fq*2+L@1E(1%H^6cKBm<`y
z;C!qND==O=*--O&&Phm5HPF@o*Hw7-oaxHzD_8*o?F_UxaE5_14cy5}PS?KOTuyq^
zbTtV)i$3*F`Pl{*OxNgiY7{Wku+>2*K}Q3Xf;p|Cx;h)EGSJ6BUjtnXbT!b!Ku-hR
z44iA=LIW2W&<vbssQ7$=f%6UA)j*^EIVkX817Db~=JRBBXNwG6YN%=d#Rfi`u4ee0
z<j{DS_c8;V`4e1jpqGK()cKSY=O<SfY7o52-~&XJk#U%M*fm`__|+nFjiIK#lq9{@
zKtBUR3=B2U-@tVSt~W4<jh(2i*-$mWz(502dZ+5lP!m@Uf`g^-8w_w(#;ee_Sx(y-
z+Assd4U8~Uz-O%BMQMaLvJ-1mw9wU>$w&h?8MxU%_Zb=mZZWX_$8sKwtG5|Q8_*3H
z20k(HsR7e~Wni{}IR<P4j)8Fo?la&T@C@YHr!<CXnr|R75F5zQY{YUxLk+Uj5^b1Z
z_zW$}sv3BDhIYpcZO#mJJHP>@+Q9AXYii!W2RudFu2C^cFzZ84WWV2SV6=gI4BX2q
zap`756=zmI&d}&MY~2_GV+}Rip#k$aI78X?c<Rc)R09(X+;6DCWuk#e1|~~mkDsX&
zl@iKec-c&Cnt>SxW*V4osL_EHCZ$;po~g}ZlP9arrRmP4sT+9Cz)A!2*);~1)6onp
zG_c6PLk1q^wG1_3SZZLIfhFwUNhyZAXr^i}JC6SK0IxDrdr&B={fMDvQ;*VermCK$
zcM$L<^l<}E82D?Zw!*-ZER(7;@Qi^0|CDoFV>D(UV&zxN)IOT2ZJwz;Yp4;HO=IPs
zH}Haiw+*~w;6*wbPZ@Z_z{>_`Kd%^gRSb`zi6!uIuQ94@Q8(Ae&eCS@D1VbJYM}8p
z{4KiAA$4=gl2<VV8CY##jr8n$>>~mZcwcDyS!$^LNP+`9h^q?hh>yj&IFVQ@xq8mh
zhR@PC-K8~BA;B!|Gy0Bb><gh^3jInb1->@$O%Z=<U|kV^C*XUb>xFI*8(@}A1T`zV
znCNO^vw<xJwlWGaFq&v$;zu^zz+nS5OeMC%z&?gG13L}uGO*jgPwd}8sh=4+TUYEc
z)T1i`zFW#?9D5D*LM0!3kn=0!4134G-v)j+u%Bil!W82hpcMFnafXjb2B-L@D&G}7
zAbAf7^B_Z<ywo|qGrrzY`463aMz?=OfS{&{5);RmXke<VmzscyBTST;s!Fv?uryYK
z7piTdj)|j8)HBr!vvo}zX{r}X`9Grxv$W;2w6|tylxMD^P4%#nPyFjsW_u-{B^_(x
zI1`ObwGH6v_GNsvv!SV;pv@nV;zf@)RZCA0x_*}W^U;YWnwscfqNC`onTeJrT1gF?
zn`mKzFPXApb=Oq3HgS@P_9o7fvu#YY-B<Hu6V$`twUwus>Mhh$P4z^zt<ckiGFdL5
zLg?v2&k%a1&~`%EOjf3>sdl!B%-~c?X!AZAF)Pdttu%3tRQvZ?8b2l1$pmR<p;acP
z^;OJnCeAhCo9b0l&BS>ot}t<>iStcdVB%6!eWUL}*0ZGI5}_9fWwN_~i-mGy)j9oB
z<91eFW}=61&O~WX6PKHGJ@p~JUd3GGUuB}ViJMK_V&ZBO*O(Y+;(8N(sPh&TJo=gF
zOBG47@QbcdhfDgKxXuK@026%5Ofmk(i*%5Q!6t^97-r%I5nx{OnQ@3DiMjn_xQP+M
zztL11nRsw>$Vd}6nV3+kv>?N$b+<}AbrS~rt61l>0B*TqLrfF42}cUCq(GLy=k;!}
z9M4qy5JLH4Va7yYA~X@1xYxuO6S0Y`iE0zKo5-=wr4?@uPvxb2;)I-a<vhr|!&F}f
z;uS~H$oF#omb%l#T`b&GpMASW=-Yi#qfOky$MNz>XYNTDOC_|f;5H}z28&;c8)xD^
zDV&>L#+z#EOZDEG6HQDq@u`E)984yYmTaS=jj1#V6K`2~+ro4cGfY%iINicb6SKt5
z|1>e%#2gdLO+02|t}y4Bm@nY&<7zE1vCzcBl3ZkBv593S9uS2rF|kwtm2=g$(z8WB
z51Q&5i4O_C`Oj*DB6okW$&avB*QOq&qEc1d=kw>z%EwJSVPXSyV&X{?Pnmd=RW<Rn
ziDyi_Y~mFYD@;6VVx@`aO;~km@aZ|9xj)BfkW$w2f{7PtLM0V1nQHf1z1ivsH8%zE
zqTG>1`l^Z7r6#WlJ&jXk*=P8M^fF6(+r&F2zA*W47ONOT=r|=6pP6`1<lkrX7_F@;
zSD(52K=6k`$^1ybYN2ary#m%2&wj$bC}M8^VD`@`Q>O+U>MIjpn^<S!J5%j6_{PMy
zrrN$p%*vDUSvH;SdlT!W4m`zOL;U^~3)yI5lZo9Xeq!V|vBktT27FUJucunJ(zOqk
z@fkNi#J%0b4imeigeCHUK0b=wN!{*J|HWfb+#0vX#Lw)k78Uzx6(u$Hn%HOJ7n*Am
zjhiL7zm(si|JB5ACO&Ld@jEZNR_$XUCjCQ7<`Zq2@n0tXHnGtvJ-{$-p|*vCj4+H*
zv>8TqOLfHIVjD{>)UZ&~LWu=_RqQS!b<Oux+}gyQGv%`Prj`X*;3ivY<Mi2T>s=iS
zbuF~C(8|J*7LKxToP~xK>RD<l&e0a?Tk5Nxtnld@Dvz;ntX#2yrFM+);4THWksIe4
zSzwPhv2db=<1L(EscoFBTVv}#ujKC2rk2_Z)Z9V~0nIGcM>JPfgGI5im(Et3omyKs
z$wC`T+2o%Lh89k-ke#iSTYMi@?E<3BoMxe|g<-Qb<|6GrK<zd9^Jn!m{|pOf(jP6%
zu+Yvzdkdp2+{5ZwINQPy3qviWEOfANnS~w}I$Ef-aIu9;ESzJZlZ7r8y0QW-D(H8e
zE#*_|c2-si;A8i0)_>ccso`@iG)Jjc)W&%N&KG)tg$s-Piv)BR$}-t5w)axeBnxD+
zr-jQcTx+49g<ck}uyD17Yj`1%=}oN;N?j${sX(@o8lxKfSm<l1f#&7C<+OipX6C`O
z{ViN)VW5TUEewzn)|XUp&ni2JX9o#qu!S2eaNiO2$<8I^!9E&hVYmg)f^XqQ3nSS3
z7H+dJ(gMF)d6R{kr5e?1D{qlY(}N!Er*`j**jJvml&M=5Yzw*tLnKY1+{3^o^Hcnc
zCyrFWWt^O?&El8MnySE(VfhwfcC@Abn80#E3z4OM)yIuw+}OaH=Pcwc++ksqg~Y-y
z{ZqG#JurK<REEaDn$Q{Vw7|WBcUx*x%3XpfLk=l_m&t+tUJLhG7;j;Wr6zKp^-qnp
zFpjR#KgH~%WKOU!(ZVDP_fr-9QuG2+mOokQKb6H&GxBXW?w#X+K22K6@6OGXG8b7`
zERwS<%(gJc!dxo0q++2k=ZP?NGT-91kpH}i0~0IE{pw3BEVb~ch2<8OaeR@e@*wTA
zf9e4iE<yMq3lB?Ck60?i4J$93+gpLhEIe*urG@9|Wg_sj#V@MiNx@X(Qv!13Wh*Qc
z6#J}j;w!rF>~n&-RrLi6FIsq`ShtrfylmkW3lAMGVYOei@R~@z&I_%rWE|$cZt{6>
z*ZrFkWQd3Eu6)PBDh4GRCAL!ayNqC>pZ6@h&knNGSBO8du-d|h(wnS<`bZ%87B*Sf
zY+<d1Pb_?8;cE+@THrwQxrHxy3BgR#?7x)Ca9HP$N*PsH$Ty5&3_ccvC)Qc`P6Res
z_@3(Oqe9bq3-mr>S|HtufqlTvN^U}9LwNR?+1eHhTWMw%ezma8!jDqIcCk+iP|TCj
zXNQHIa*E7d0(J}i$-*81KMUO}lrsASl<cj^I{#+j4-0=<_+1Q`*0o>2jk_xUvhcTs
z1D5)kCVjKCuc{Se1zlrIUuB<%M2-Il{nx@_OAS>#YS;>V{&8igD7>9e%9q)wWdk;j
zuu<E_2{szrsAHq9jbm*!jvQ&@C>!-{9Al%Na9E$CZE>RhDS9Q74Q#d9`w5gz{y}X&
zBR<YXLtBmPjcnz)hIHcbEM%W@#wIpSv{7N>bQ`U<l{U4}+(rv2yqS%cI#jXC*38yg
z3a6Yh0+_e8jgxFJs_<xI<7C076gj8bXj{am382?dGmI5y*f>)PsX0d@haceGF<WEk
zqXycGD$WvmwvCh=)K$|tTBVJ1Y$P_S<!mRRR|@THqe=iv=whR*jc#nO4b4WUIa)6p
z=kbcoDlX)Nuw}*hwz}=QKq&tLL(F@Vi)?h4v%Jl@*v2Kcy5He(sg277_b76D3b<V8
z?PaA`*lJ5Hx7%?y^;N|>^tN%ejcaW5vC-E?+J<i9S{war++bsfjsDX7fi|wUah-Gu
zJ9mH$S~%mwAUVsP8f>eu!~OZ}CQb>4+8AbIq>Y<w47b4@_#>nfnfFFXaz;(uoI`+(
zTWs9QHri?rFm3Y0ZE6?XXSHi^CeU||8pI77rj3k^z=mbRX63h*Zv3~zk&Aj#2VUK!
zz#NUh7tYpZsxqOC$VN`C&bZ1>jBPMFWo@-9vM>eBi;;7}Pv2+1+-~D%8+&csVPlky
zJ8j%$;{_WpvRE6VZ9Ht_5gYf|xYx!U8*^=pu`$-hBpZ`$jFYR6w=sd1R#I`FjlU|C
z0h^Zk70&&(qC6&wofAx9Z`zni-)X5L4|kkSvoT$&$L!Se3|lc-=UFypOPSmZ$&rO4
z)I4d|VjD|r%(t<?#zGsvmn!F4WUEc=>?4knljmqlZ7j3#plFOLeZU5z6Lm%0oj-!H
z(X4Ok@j2QDbF@coEVuEjjpyiG%_|<W@uZEXXgtj;9=Gv?t?rixaqs1h%BO8SV`GJ_
zc4^W$xmS>TFS%sF*9VwfY2$etG&W)$D~wY9Er>EN*?8H;*Q|++S8Tj$<0BiZZM<gV
zb;{d#OAP)E8%Mk9wIgm8Z8JFaHY;r7Jsa=aSj8aItm0kq6uw18ymgM+v-*K#`OsDi
z3*Pi@yvHXXe~pcg*;5C~zOb>@2LH<RspS1cC<SgSEB%c68LoC&e=dcyAzxAh@?)K^
z#BsQk@vV(@w0s+zS%{7AZQS0hVm+;8nEFW*Z~eGxu|dit_(8x%q1;5h#l}_}J8bNv
zbG0wqMlYVi_vw`C*n|d+wCy%n2sgFvqBHhY3jE2&Zczmr^2GFRd+3t<Pee=gy2?Hq
zztD3XT;t$Z@#RJij(6}Id*8->8-FkwJE-g6Pez!LslROeZL5V8HuivxgN)k_-)8~e
zP&mXe?x>hU{11z=acGXl<FJ4lj!M>aP$Gc1R6v=7S_0UiWHy?s^k4IjnxuTQfb>WQ
zM>#mgK?6q_Ks^Wb9k3NgOOjniowS=PpG{-oLsJbM)oa}TeVn5@mmC@lx7nZIps|As
z9bDv~iGvdzq#Sf`(9}UQ2PZjb<Dj{N7E)|$M|D|C2dy0S5&=7!>f*82PCdf658Twr
zj@mYSii1-fWyX!4>qh0bb(H4Mc5oUi*%{>y7B#P^U<q?I9;XX9gDMixuE=jM;4Go+
z5thK{+L6UN=;q*DDgPV?RqUV^6`iC}Y*%LitP=aZi-WFGZDRgsN@I8Y*r8!#oF{;F
zzIm>8zJm*-cg()(x82<xT<qW~M@@b%ad4@FUJl=z!)1;db9+!f{ZkyC=+`}2F=28x
z#h26=OF7P7>EJb^^p3eIs8X!Aquyua^o+ERgT4-CI+*3)S_l0cBo3+_^mlNb1IvN!
zV1R>x4u&`w>fm|@gB;vIjcqICz&+SeLph^2ZxRVu0dAQd=3ux3)4||_Wj9J?c-;{W
z791*Lj2c<w+~nY9wxyZ6eZIxPt%7e8nlAEn2SyPyxG}78y~T0hI>?F+X=9$l?<OH|
z;5(Q!SL4AoKz2&#AeJtsl|~L8nyazXx$&M|mUHk?XXNQAYt(`vL)`5S?r?CQgYgbV
zIk=ORbTHZhH=ols?s8Q0prO7oSG&i-y$;4WYNVzuJ$bOq9jf|hEUmG*dOLEQ0G^s4
zHJr#=Ik;bXlVWu0$y9YyZJL~&LS?pAPBB%I1gze4!805j9;^bwYzK23Jn!HIhuZ@%
z&%vV(mOGeFl{#4F-~k5<X~uhNE)m^wQEQQ-RtXl9ma4ls9!nkYHKIpMHOM|lZ4`Tf
z_VBRaM}%?-h@;PA4jy;#&(_kFbY2HfI(Wvx3b7&%`cFA{n$}pS#;ZoD+8aMG^{k_&
z0hbR)yOJ8uNjdB+PKh~S@p3OZc*()r4&HI_vV&I~ydg5LO0L%(=o?F4bMW9!S%)bu
zBE2axEcPt{TrXPX;9Uld<`o}1cuySdBhl*n4nA=3A=lRCYW#&CUwWeJ5!1g`J5X;n
z31x^_EApR6<Y8YhLVoVx3mT7)(8re!zH%_b!%Pofvu+N4aq+8*Zyl_oJGdC&;yVZ5
zGmN-s>telw4GgC)>bUs9!A1vvvxINUH#yksV5fs!4z^HlM(H-XiG!_jb;ddx=XOV}
zLNhY&aMUYZtjw;t8k4&n{N&(g2Q}ttd+66A)E6n)WPW^-7DeV>mUCljp9uUS^jD$3
zIrv?`exZK|rTm`){t`-yJ>cM=gr-Ac(*HPWB%07fqnZ6ndvj30HC)tm{~N(eT$Bnf
z6I!dthl?Ww_vxjqw63e7(}^ycx;WBBgL&FfF6y})%~9V~VT$&7jPRQXr9cB0#}@H%
z0vZZ!<l^`u{{$C}1#>E;vdq&MwVJu=MYh&1PIA%QMGF@#T{V_*{lAr~9J7EK{E6GR
zIE7W(UU{;}(7!lIpwlrLoaUn3#pP1-3Kyrl=;WfatEO#dxH#KIidkH=bJ1R!aF(m=
zoOgVjH1bB9w1e;~U7RDJqpQ}Vcn85r-4WYLOXcmnDi>W`obTcS7hPR+bD_C7Pm1CT
zP3KBRPL+8VLuaI-=zu32EW6OfMJ_IL)x9cRqq~cXU0mX-yClwFDRZf0T+~7>RxsJa
zMNb!8NNLjQzvYx(F0OEKrHiXv^rOWNNv&_K2HD;&u6A*a^c}~VzApZ3sP$p<=V=UO
z*HV73dIyuI`b#cm<n04Hcc6<gF2=gJ-o+pngI(O<!g67|7~*26i<@2C;$oPK;Vy1;
zF~U_3bZB6g&C_-_uNdj7x7QhgN6ym-Zj$a`@>bTwMOu;^2l*lr-xsFY>n;pBS6|JP
zK7E)gjeRvnV8?~);!YQLx$s>0E&>-J@$_zd8?N3_T80()w32|qIdT!ZYS6!Zp4N9u
zH?}M5B1gk(R*@G<kO-(2db^7|1dI~;*1<9g@X-KUakq=nyh>l~9vAnz>SaJ0)nhFy
z2xwH}T-@j46&J6%81G_&iv=zgy11XMb}`GvY!{PUOqRCHa505|$2{eFtll&i)1{t#
z;f_gOl$6#x(^dX{prm5?JZ+APc`oKt?X4^3QroN5ESF-W=N~TN$g;@AV%mU<<t~=E
zSnA>-7Y|FZj7!TH&017E;Nn36ESyPRovy^ES}f!dSA{R~A9L}zizi$>DUzHUb87Tj
zW9=yyPm9@bG-O83UY>EW!o{<~WSyyG@}G0DQaH~GCFcbfFBb7j0$z5pN`zl?@w$s`
zE`D_JhKn~{d`;JoI=>|*v0CukF5Z#KtP=XJ(D#JCFO+ThK){DWKPonJjTG{+(6vH8
z5z6*{>f*B^{@leEg1;<sz7oJcx_(O^TwA%7@xNuoI_k5e;yYJ8?&R@3M*+bbiku$=
zY;>`y$k{Ali>vM$n1%0uZJ4KRcd^689v45m*eMO%?cygImEeb)XndT+`zg8)zo$V3
z@~AOi+v{SVRD<(m*1ySo?Kc;{)1E!#J?wY!2P2h-vpoFi;xC3r4{bdB?c#uox*m@7
zaL~me#&Zv49{yq6lNeIs;jpW2S{dAGcna`QT}@9d@-rN9HH?&Z(6u~uM}LHe+8$!N
z6TJVTIwKONa2);X2xrK@B}aLv=izt{CwMs8Lwyeo<<v2rTD|Ap_pzP|qzydvj(o@Y
z+HrE0i^E+LHAijaVcV`su3t6w(8NOv4=p_vlTY-}TqK)%XeOYr9?M|ccfQKl%2WUH
z;4HDV2W!5@ILVvkd&|__Jr_k!_Hc@aQ$4ix)L?OjhtoWid#Lc#kil`8l&?h>w0*j#
zhCe=-K2wA#-%bE$5iIR&58XVR>mlW#gNKeDDtWZ3sPb@*hfW?=tt;niyo?N;S^wth
z7Kwq5Ud%zKi-)eB`V0sUUPAM5o`<0xhIu&O!v!7&dbpmwIWTphhwfC7wDclRJwu_Y
zd0gUQ0IyE9d$>$=)x*Qp0(uI)Tqt$eOTZN#t`u;U(B8$fR4HYykz^mCeLY-TJljt|
ze-GCcIb7!AMfs*YRXxbVV5!)E!zEm%xIyp`PYr*3Xv>m^d$`eq?ZNRd!ox@pH+#6n
zQ=d<{NrZXVz~?@EEO;wb?ZNP1dg>1>X-_@w(b-uo)r6ndQnwf$W^JtGng){>dYx!I
zu88>_GE$l+7R9;+9@dvsL^M$kp{G`uX>VLk;pO<8C@aD&gnz<KJT+tCagTs%p|`Um
zN-OU0Fp5?6aF-<S7E1oW#u)8k%zX9v1ybg{mq`y}J&f~kpNB~vCVLp~VS<N=Vld0*
zYxh$FeAm8a1u<7PxFv(;#JBhvFsIP=JT;U|6H5Mc5vDv}Zk^>}wuj?<H1sjY!(0zL
zDdu6Ghxu%#hYcPUcv$G+Q>pwS4~sp#<l$uxOFS&~@TiC79+r7{z{7(c9`e9X8L;{6
zcitgB?5Sz|BSJZ?;wmwHpE@thLmu<+I33o*lOA3aZP%_SqY<)qp7QXt2R^fShK2V@
ztq@A^tcT|WuN3-xk^h1K_8KqEMekQUyz1dS5AU;sJiPAVZ4d8wc*Db+9(t6j-sc_b
zTl9B%1DDH&tko({J)3w}da&=|61DJ7PcN(Zz{7_gKK8KI!$&M+zQ$vXfYl<*CoJT!
zQJ;vBaE+1Gpp|kR@-xxf=ZqU7`6UHBeCuK5?=`>TU4Ss}>aWb6m0#y^zfI|P9vBj9
z%Bk;#9%Xl8=l<YftCY6U!zK@#dCb?g6nk^*HCjvFKsDC3Nss^NVY{dH2HZbbO?7ri
zv>{+QyFL8mVGq?(uI%$?4|_e-^>L(+eI9;ctfp<>qy6gPH^z1k2R!^P+5e!c4pr~n
z@25QsQs7Tkm}hrX(wulO+He|kkddGDl%RLW16Sv0e(FvC)>Sk}&SYx%sOh7`N2w3^
zIKoFKS*j}YRY>G)zm^YD-mT2<qt*67%9&Li0Suu`9wm~;_^ST(d=*`J9POjNU<Oqc
zX`5Fx@NumF-(9n+o5=U@(bLEAKL139#=>dh<3wNGuv4a~k7hpF`#8%-bLRDNnvZfH
zEq%1|(b~sJJ`QXx<%qz?Qk)6%QC%A!C;K?XS6{;@jA*C&DnzvPmFe=?4L=dXBu%2i
z#~D7(^l>_`+b_j~S;(i4R2?j9=c{+C=^$tONcp(PM|WQ>q;&An(MP4P9$ZrR9IDI5
zg}xdbJNxQWEd*5pXhmIw-&H92-F%!YSSxbQ6L7xJ3#fc~kaTdqR(P%ZVjq{vsY`?&
zzd)^fU*@a9lo5%P3cuWk=fn5W%f}TyuJm!0k6}KB`{?cCY9H767~ta?DWR{AYuTHu
z{{r=Y@T>Zy7-Q)v{e1AwqQ9>O9UdG;2l}{PE_8#BL6Uc{uLfmC1G*vG!khgeKF(iL
z$z!Mh`rVB_M)*kk(0z>bag(p&&uzY1gs1$?K5k)sT2$QXtC&x~a<(?BV6-7Hd|bY<
z()3~Zm?lpLY`Lx@luz*4Ypzs@H(Zow+cQ3R5b)qcI`R>-`2l(d$oj}pEg57o$ooiW
zNEtNGpxVdnKHm57fsZ?UjPmiYk4Jpm>EkX&T_1CKIUl2ajPr4y4_5CU+LDhkv@3a1
z%uA2;)x_p13pv?lGv3DpAG4*N_p|wB6%(Z^+3Ma4)U;%hXkfC?DRc?}(}YeJN|_lx
zW)|@*AN+h4nY<Pic<<qoc|I1hkLYwh7WgU@^Ar#M^O0t-*vC?uw~r-0YN3?NZu~*m
z13n(~@sMbY-+ADGNO{h<*xk(XsE_47p7XKN$74Pom&&hTyL>$9;~7a(o<jip_bDGw
z3y1SSGXIqwIL``)rEyEZ^FChi@v4v4e7s0+EvfO6kC%P*NS#j{c*n}c$yeC*CF+SA
zul~A^H+;P1<82@B^;Uc;?M)gm)R)AF-|?}^$Gg7TZ*WLYy(g`pov5et^2q)}h6o>j
z`uNMoYC5Kmbw0kM-}zYU<1-o_{Z}mZQ*m2PWof<iUxxZGxcKAaTdDt7?5{pb)n7A+
z$({8#(hHocm<yCI({8_K0P(Sx0a>za@Uh9qX4<fijf_Y#X0dR7Y>M(*eC+Y@GcAV=
zY@+elCg4XO+Xd_py0dt8mw??qeiA^xU>5cl`<;_3283UH{7TK#sj;6XDxLV7xD~DO
zcbf68N`B0WI{AZ+!wo!p%l~Fb^id~+x)~hwamYuF3~FZZk5rzYU*mp~e|;SG!B5rk
z<8{0WbzYKDK3JMTSw?++ikL^Oj0!ciGe8DMWR(50eDWEf7~B{qkIdkx435p<xD4uL
zaC8R8NICU0>eE=1;Q|E#H^wv&KJ!wa4KrvY$tD>bpHZ9Zcr+Gpg3xgbG=6@tP=^yU
zXez?oQNz+&WY97LH>141RR*myxGIC*8Jv_sn+!T<P{n#?a7qTJXK+Rar)JPLgYpdC
zk$LQC8Ss&P*N@fOH90&gSo02QAKIB2w96osK?k{9`wY$&aF!^6I~Le{YMcGiF@wqs
z&XKdURa!5ZJj+5lWz-5eL6;1=X3#x@i!<n!!MPb+DDqkc=ShJVu%2sFndfKJh8F6I
z<^1%073oDHS#a1(MD0B?=qb!gGq_B^9UCk6j7-rZ_<-;740>hMpI)zE-?6g>Xgrvt
z>#-(RXK+mhLo*nbL7xozW-w4n;1#bGFd&0|8T6M6aSIlY>oRIDR>2cXxG5-uK^e7~
zXK)5L2q5N+dPosda(D(eW{}Q6&tOCbBQv<Qc$J$nxH+Q+0*=ufBUq(dBqPCX8RWjJ
z;xI&PWMGPzoq?4BpZt<ZYvGra&OD;j$*94Xx@G9|r1xn6oIeK{gp&L%gD8VIgNG!U
zWyu1TG5%+eWH2#<NsRv)+)f+I;9ho0NyQx*+?l~$Qq@rz^>~!q>iA@qb46bL?hHm}
z<SSuoDj5*QWH44FC(zFKm5&ph-zOa2hf;ogMvZIqk^6<YUJPS$22(OvoWYU|re-ir
zPAw8TUFZy<h3=l2!7MS4*+S<CrF!QIn3utP0SkmK{NLFH%6<xy2M(QGKdD?QHQ{G}
zsHF!o;Bwr9LaDKbGk7F}M>ANS!M7Q#%iysL9?#%|3_i@@i4301;OPvWky^Fj`oDl@
z7pOf~D+Irq!D|^jD?a|5Q2O{v0nZD4A%ho-{Fem0oWUza4$FBxgEumGUrPH*Do^db
znZaAad0Qws?_{t_@Vi3a6G}r;UBjI%^R<tJ^Hm04Gu*YTSWP1l&c{O63Z>*H0zS>)
zvm)p748ADhF9qb+RI<Om$*8#^cgLw*UsryY!S@;boWWl5GuV((v%X!_tz_Y+2saAg
z_s}+F)Rzf23nkc+!PX+)#+XpV+Xd{%V5fkgt*a<Z)7qWEPZ{iCzw}EnNfmLM1p9Pf
z2EWK9c;if8;7?tDmE<iOOMlN`e+GY0tDM*bXc6GA4E|<74p1+^0S14OtQ+7EgFgd!
zfZ7xj?fomK4rkQoOle&;0=0LsW`Gg_r9#Vul3yzTikRE5Ie*S^Cx2;0odCSI;)h<T
zt0M#DFWez^bb$H+jtkH*z%hZE>@^6~Rk}-z4F;r+70FY~(nbM}56~pQi2+Us&{+7K
zy0Dyf_0@(k4ouWQ(?D%zYZfSP<<53$hI(ijpjCjg1Ed194scR{(*v9lVB8S23D7pc
zX#q|SaEg?9s?e8E%IL~TFUv0%PKD6%P1PtLU7I>HK)V2E36mUtS*v{!b0-z2G-P%N
z&@n(aRwh7YfO7(L32?Bsn$mO<;m(2jY9f<WOeWgQU6mXlnC!}C%GX3S5$h44XMpnp
z6|~P6&IN(`NY{lz2`&oIUGT+4&Lss9;4%S>R1~{h@?H_B*vRVj3P96kki1g(oPBXK
z%+&#|32=0X`XTxR=o?^LphnMY1M~}UPk?&^^k+{Ab98_K0R{%}0{8*04=^ae$N)D5
z7#!e+0K)^^7+{E$&->zG0fvfg@alUPsJ*qEO0kbd1ZpHAllaJmO2an?a3t3)LaCEm
z12qG=EkIg;E|eTYfEmCla%=&dtGJSvpATh$nE*k6BtUh5FhE2rI#`wyfjCg}mMqO+
zZ%vM^oWyd)GS32KnC9Tc>>c=-(*Sn_7)3K)TX|=IyJ#>A)wp?gfQuJu>__GzV5lG9
zs9W_h0mcS+H^6(ev;g-7crw6K0mcWI5MV)og#qpl)PDQf0p<jl7+{jrWHMc{Tus!c
zNOG#sX+oz9<*69~W)|@*+M&#o`J8<&jfBQrqBh(zNibj9$evvkV6ouGg)WioO9j(5
zmI-)3m=6klNa({tdBsNrJSuc~fX4)|`8-AaJR#Y+AoFy9XJ}UeUJ0-wz_S5X26&#m
zR#x$xP)<sTyB#chL7bEZ@REQRrG&ygI43Hv2I})}Z_%9tycXbfDk@O7QEbth0(jja
zG?nHR??_GPFRTVzy(&;ECj{>Y_#nX7JR9J{03QYTIKbKftK~uzUL%0Jtcl}=+9v@%
z4e)t@FKD#F{H!R+xht>xr6l>p?JLnRbI}04l}2q0uqnX00N(}pK2X~uHw5@0z<S1+
zCd#iHh+kLjt;zc%uAgrX)FL@c*h*9UxN=MI-}=DNIyJcL@MD1OY<_^93>OT@0d@u0
z9pH}ue+Kv|z@7lV2iQ+%9GUt#z%K!Q4b(%cy#e;o2ZyLFRa_6L%{l*$%HJ5qKT!{e
z542XN_~eeybhw(tkM8~zsAZGC1Ke3wO2Fd)OKzpsg8rd{2Ph3u7Al#RE)EB%!I;o1
z#pgSGAXPI|YuY73d6ilr5UK|sM~12<M}(*os@+q>wL^54EiQFK^%#zm3NADq6@t&;
zSaQ8kx#zF7YaA1zL5L9{MzVxZ#hk7ox`j9{M8gn`LL49Bln|$eI3Yyi5G_Kq4ACUS
zi6NSWXdYs^gpQ`6atCgzFYKM3UasD%-~)(OAzFuM6N1lDvxC%T#gmxi7oIn(>HWze
zuH#3i=PCbf8{)JO9YS;rQ68cqM7t2}L!2HeGiLBSL+bpSS-N7Oc4nxe2bpIHlXj8{
zakgLzb3uSx*}2ffHday(A*w>06RI24PNACRa<E|bE}@z*Q&@dw&{T$TE@eUt6Fr<4
z;`|U-hqxxh1tBh!!Y>bTQHbs#E|ny+TpZ$(P~GD3iktxaUaNG?LhZ5;J=nC8ik_i*
zYl$~&e2aw1ULmdsab>7ha;^$h#Mmoe8YJi)g10;beM0mNF)+mSA$rg3c5R4$A^HpE
zg3@(zT?Q7`e?YMge2HUFsKyu5!wn$@hboG0Tc~kjFeJoK(Up4EzptG4>Fna+p?cbK
zV~F8pr35#HxH-gF{xC7bEg^0VahGV|HflaZ93mS+4`EObT*wMx%5_-*n-?n9ft~0`
zi(KJweVCI0KSYK~mL80RABJk7iKnP5YVYtuEhqfjL);-CFT#o7YN`3KHI;>todID~
zh&!dFYzy1Vw%kqobW)>3+!Ny75PbN{{aRy$Nx<!Vl({d&q!5!sjF)!t^NbTh_2t$3
zLp;y#KhvHUX-rNDF*U@z5c5M!qhW`bBW^V#R8MJVhw5qLOu@5+lF5Ba-JH}zdTOqy
zluNrewJ%!`Vqu7-blbkEMWNblLM1O2kEU-DFQGLqQf{~`!~-Gtp;t0{FVeWu`*4Uy
z*d3#B%V<0rVtI&_Sv;S`V<8?7@mh@6V>}V!$q*YN{1D-(5Kq%WBJ_{&46hZUZiFKv
zJR9P<5Va%a(JR@^5Z{MbAL4}&FNSz0#45&(5HCxuUJvn#w3N>`Uk$-62dvv`)P}4Q
zQ!{Ubc$2=*RY!Ra{ubR?<lpJ5TJdg(_d<La;-e7nOMxFq%;71uA8&d$E|shn{@M_q
zFyJ)O)=1$WhicOZukvY#&*+$<LuP5;nLFH4)Z`cRg)J&}eHr2_IZOPtfNw&4D`1__
z?}}&jveFG9eqaZM_$|c75Sv1553z%lTvNF@1h<cF3$cYYbW&S|GNKamY2c4k+Mv{J
zi?p2~c7^yU#GVkl#Z<VjfO_D;MydE8VsD6jG&$MY^oz8PyHD9PhFOaJ9%4U(Gy7tD
z<sTvb6oV;?l>A>IN+R`=@86Q0oC5+53Oy9!9|8XgJuH+mH6(9Mp^V|&NK+cA4r2MN
zQmsgh7o+=VM?^TaqKwS!BCU?}J`I3PJ}N@J2$x6b72)Uz^&_;7a8iV0A~c9_LWIT<
zj*W0!q;@hiid1}P7^zQE7drHc#yCDwF2j<iEz+7qI59$V3h)y9YtkyH!={lMo0>&R
zhkRU4+%f{Uf3%9!epeb5F|)UcaB_rHgbtC~<#I}dwh>NawRzD-T2{uy@(2|X+C^v|
z;dH4C9qo)r?S<e6$%)U5)GlZ?nO9*YsfV*7oGp^XXIPy&vN91aj&MnYb0Tz#&^bbt
z)bQy=8f(Zss9hp-jnwWnW@#yJB6Gt=w+QD-Ib5vPBK3Xy^CFxt-~yrKTqxk82;Bux
zV`Q>29B?m<a9M;Nk$Q;JQ#yr!!!aAqvsXxuTp8gis_ql@%2IFP^cBi@a&?4jBDHbu
z^&czyM2eF6#Ukz62&CMVdR>G85uyljgn<#RkKjn&K|*g6I+&d(O&AhkXoO*r`fbFB
zW);JQIWodc5pImY)drgVh)B_Inrb&kxFy1^5hgpS{fpEt;tL%0kd*uPsB=~$9jP#=
z3pIqA5v&L{t!S~<cCp6K?NY#%I&e#d7hzIf^CM&;^<8exf`UlRg~CWp=6fvGvJrA3
z{A7fDge1ZflB|w!dxRwsmPWWE!l(%M(Cj1J8R4!7cSjg44cU97#wbCxbJHOA60>A(
z%or14Y=mhMrbigLSmSfFaS@hp>ULlB->&lU0wxH(U+6^EQ@~`Q4AE2QSw+0y*~%Fa
zW=5cGP$#_HtO&E|M|`(&M<pZM9Kmyik~uHJ{32cuVWHqfMb6?#Z8M<QvIq}|c|01S
zbTEIRo_a9CL&AAD!Xxy}z8ZUhm*eO_16v;9u?UZ|yPK+Ef@V*^`p|?JxSopeG~<7S
z6%js)u$u9oZW!T}2(L<+D<ixZf!i#fkJK)78srP~cWx4BUGWmldx#psUXD<`Se5x2
z4UdCM1wM#?byf6wD)tQtWp4_7i+(NO9ig=CRT175{GQPFg_a8aP{I^ljGNZhMEE$u
zmvrO^Ygr#!0;9o5)rtHLGo!?(G}m=%)c9O9@I?fESD$BpSzY;cgl{5zC#A8H-_mZU
zcUvc|C<GQJzb{^Ey#QL{#t54t7%|Kkn<H#tNQrS)jICm6KStOtV4KjHi?tmQcCy+r
zj*77>!tMyaN7x_XrwDr@{32%mv#69^urI>iNNp8h_c84A=hqBSze<%RZ0Yu!SSi6D
z40I6=MmQ9KuJo7iIWhQKlH?o^KoxP1+&>X&$11on`LD#Q!$NDsD!SGbS`wpF06Aqb
zY85dA93hnPwvLojS12{cGV8@SI!22aEo0P=aZHS+F`C6_5aZYwjba=h<G2`4E!G;w
zYCs{N4rwP>msOk)tMJ=6Mw1v*WmoNqF*p|Ne6|}cid{g=3DSczx;2m0@WF%It6Ifq
z9iwfG)1+2>qJ2_~HZk~-@RNDbW)-IjJ|$L@D>7FvRv%qw-trhv4@sRN)u@PZx|B&h
ztCHmu-`Z#=B~XlBaCVG-v6}6qVswaAOzRlqk{Flrx-rg)(J4mf7+qp?jlnI8g&J1H
z*uTFfLtHm0|Kb>n_~@!we=Wv&g3m8<E{Jhq5nmLeyI=-VmPYetIGS{@jIWPf7NbXu
zo-r<uag8*gSBxuSTot1??P^f!%2?fhZI=MW4~cx+T50=gktARVeFXOvdRATSS{iL#
z6%G2wxQ@DtF)+r67$ak>IZ$?ejA1c`#~2i2aEu#btn8x=6-qEfv_!z8))KX$^hPlW
zZd|0%GI>*sn|Yz))eA2Q-4d&**R4W1SD~e)WA%9rJy!Rsyc@M**fD0rm>I)~;l`LO
z`ezq-F?<TgYQn(Y3}S>aaxwBTq8KsF&jl?Z%j?cnzkOlwVbh3{7}YWEjB!_t+hg28
zZ4Xwlj>jW;Wf-FhHd9e{w*YR7ofu=Z;CqDLE0mIBVvH3$uE@DB#(2RKik$leaN&It
zyJoMNN0GArQ=}nN=@G+H(}YeJ`rMJ)tQfOn%oBlKR_UA=a|JV`Gb1Npbldqc7Q|Rc
zTVfZ)cs|DB7)xS26yss>0&Xi^D%$4ox-7;6F&<=Z%EnPrmcaTy65}~~&DzRGV=R|?
zwqBw=7Ncs3_P9`jCj>l6hb?lRj`57(6-Cao0$3m?4=j!MN-xBCNviQ88)7K+(*9|{
zFUNRA?D^HAg|ks_#CVgYmBo!&ycOeZnsF9aX7NspRWZ)b;({#RjqzTL6SK<u-jDHt
zD5OpnAIA77#&0y37^`WhF}{xRO^lCYtc~$mjL&0yLVGT$_%v2`tlVEj%rzz69)1zy
zO9mWq6F$b`&E^AUDc|6x*YJxC-^N%+>x!{G#&`7bedW9({+>FN*WQWO$Jjut`#~+P
z{vcpuj7<VI3*91gt5C{p6TsDp9dgB;bkZ2tF3}1PGPuu;*WE3reiFJT#?J!w3f(7^
zGQY(5wTQ1Q$Nm_9#HgKBkD_?|8RPF52V(ri*t<`C>YtRi!v|yhL#4$yBzf1%mO?Hm
zs5|H-+Tj>no~@BZ&8z}EN(7W<Q6`|4PzXIjD3`(tE4o}~t4mH6M`ckji=(rspT!IP
zQ-#8h<}<P^8f4Khi$+<T-n!!0EcnBz<FdHR>ck{5KQY05S;uE_LKcm)>YE|l1W4K>
ziz!Pq0&bWmZJI^1EShK0B8zjy5?W@_DvS16oRvlEEKbUzT~^&(@CDd5S><jgXVq+w
zk>nKWXLaSNLfZ;u^0X|<1y>X~rwceEi!%k#I4Q>2_2Wylv$NnYxM<0nhNe1X(UGm#
zTh9A}N&&<h50sIfBgsx#bQVxmJljP;SE1dq;LdFdYgzCni;i<%R_zX@gIp->>Lrw>
zei6&*o9dp$#aUdE#id!bHKJ!$EllyaEQ=njr!2XUUY=Et9eMm=lrrz%<z-h%IfJqo
zoJH?qnOA3VO%{E!=$pm0Sq#WxU>5zd=%2-P>=aob?azfW+0Vd2xY%`lRt+UQ3QW=)
zilq(BVu)a_LD92@3FaaaD=;F9ky%X7Vn!A>WpOimHj7bN+#)ie&|9ex0qLw-s&cZ>
zvoNyi7bGV615y^-*iZe7#1<w&Td$Lwg_nh&1wXt~wzp<R^75%!kX1W@du}V`W05F}
zSV~^Mw`MkrTo(B(k}RsT>N7RG)_A`0bgla9(Ct#r2TL@Tb|*EE#r;`KWRoTPXrXKl
z6;66j7F_kcHw*sAV@wufvly4feUcoX#RS@6nfk{Ex1@3nna>XRfNYYKz>gI$`((lV
zZ`YJ8re@W@y?9K^;&>xPFjLMh5IRff>@4O8m@9OCRxNGK6UvZ6=jBs|g;^}hVzCJD
z5|3rEB#Wig<iOOjEFPwfW%29Ynhyx)!NRq&>hD*)D0}Kr+JmkDkLB6_wz)o@#S>XP
znZ;9CJeyT_A`Dz?_|sWD!<x(Il6e2MB8x3cv{55c&xwrkmwn|gWbtAaU(-sd>MUN)
z;sXY1y6sD;SLm>NE8n2`xt(6k;<YT_IP1jY^(^XGr3A+|sd$s4Ko$gV3w=lEDxvQR
zeNX87LVxg7mX8E~DRgxfYqI!QFi(A&#ah9i6ghndmy!Qj7N65!yiWft(Z0xn|JEe<
zN@QS{QsCPx)-fLDP?F=DhMm5na26Z0_&%$?*1KNl2BGzrYUFInVsjRMW$`z4lEv06
z-v#URYZlwG_%VyUlHAS<Ww9%Z-RuRc^pMku$4)uL<WB-lTB_}lv&>HXbCJ1Ez`os8
zzX+&Ys{JP5ccB#CFW`?X{w#7XU8)_Ri8`JB$@1m9P6q`a656P;s{c}r%zx$7;Vf$8
zlnjpsR%vMtWjUOXL*pE3<$xTH%;BgUj>z$qs803VPCs|7y1?yJJBK>LsVkHmo~5qp
z<#4Q&MtpP*^+kcl2qmY10Cx9rIW!cp^ir)+@#@FtaEDZ^NlqC_iyT_!aH8O*Ldk5F
zLvz9JcC0F?tZJ1*>m2?ag~Ow8QVwl$_^KLTSL5UyPRSvgM=p<3b7-5xqd6?k;k2CU
z!CpCBkwbY76_PwXhjVi1B>0RR&J@s&?aJXS!OYSjhqDEzg!0G7Wb)`J$;uqgZJ;cn
zbFrnD=1`SGmmInZM-$pj=($4wF-xhC^Kv*phYNDJFo%nUPv%8AbT49FhzFUM6q!@E
zR9#j)+e1K4p_jAyy_LCMDOI{9hg);FDu>=VTrHeILa(9ra_B3V6}~QqYm2y_fc`o3
z=&#zsV?YiAg?W8ZX7W;Pu;3eV7?Q)#9EM5qrW}R~7$NjVq5K;=3mGYxfXSN$7j$@A
z4(S}03P;bu$l;zG?#;o>!4l@E9PAvN91=;oIe6?-!9JTTAYutiwIGL3lDA5=c`Yg}
zrUoQQ0djIV<VA)GWRgd<ByXqH2`Gr&DVS&P5^%TB(K!_*3c1GQFe!)0IgHI=oSeN+
z=meqTg|Z_ke18rTB}vShOvzzt4)b$Zki)bbrspt6&K6{5<S;XbSw;ET^qoCbJt|dI
z3v_M{^W<zHxv(g?NC4#*=ddJ)f^M0sAiOMx2Snh(qWnWSJY2+&h~-fDu^b-Hp+z1o
z^LQeMCv(`E!?qlr%Hio8z7Vlzgua}^D*{&J@N5px30^7m#T=f`;f10d(i98jzm!7(
zyqd#nIlP<0dm{h3(6@xXA@t20zfq?Ag2&rAydzAuca?M{neXTDK@Mwk_(V>9n8O+Y
zJoS-))j8}IfB9IF-GzQC^fRH9EV#+%MS(9FG;;Vlhi`KDp(yjM09IyQ4&UYQy(HJ?
zut7kfIV`78)W#e(<*>P!cZ-0+DN6pB!}c6%=TRq*9XagGp++7x^VlU~Kj*Ml!0sG=
z60k>Tp`QD4_$7w}IULO4*BpM!;V(JMF8e))KXUjphy6u){`>o)A})ZxC0W3Ss9XBi
zmj7h_&Ec>l=_!S(mgH6R;881&(jqPsFy*W=@*(&Lq0CZOK>a+9$>T`DlsPJodV-HG
zawyqA@CkV|&g0lTj?1HA@oXajlsR5NL9r~SNgmCFb7E1lY5qSeYF^Aju~vDs&f~f~
z1_<+{JkH4D%skrUadIA~2$N-&3piD1TcM{3Etp4z;M0XtxLqFY^XQ((#lkr&kIFpG
z$>VHEriAj+9rEZXm?4qLPJ++PL(8MH;Ho^j<k7V#-z~2^nvy(LN|y8F)CEG%&;Mun
z7fSLXp|pGoUy{eAdGyZXYGGcM$K`qS%A<!QdkQV|Ace1x<ds6{2(*){s0|qxt`X+7
zLMhoNkG@6BR`(O!UudBhn0H_vH|2429@pnFD38H;+#muY^B5vvxKNfhG>>8bFE2Sa
z<}pGz|En8)^A_PadANDpn#XN<r1Q}8u-Tl-DkG0V!%59NED>(Lz4U+DC;%^yKu+;0
zK0y%|E)?bw2`3g>XiGkiB#*BWe4U^=kK1V{3C>J#M;@c{SeM6ldEA-DU3o0cV_9C!
z-|o(1Tpsu3F<O%M2)$P*&yEo=R_I4dwefjO$YXjQGxE4!m{W?96Z3pdp$g=vI+@Mv
zuMtlb&a|QonKSd4CCLSO%r5fh<}pVwos_xe37#*^4NEmL7v`}jkHtlK3NI;Qo_!#X
z2lIG4k9YETD36Epcs7sc=tp@xn#WT`$>ogsf*%w5cpm@mspP>cK3SA0B%jXX8R6XO
zbXp;RU9d8b=ks_&k}u@(Vjiy*bG?+u%Xz#a$-PTe!(YvVOyWZFbxD%RQ*Rb?y_Hup
zWO7#J@opZU75VSw@v-3d^Y|c-5A*mak2S(s{r{+%S93{0N?4o6CwYAO|IQZX-k<03
zMIK)Y{~MuS3H@3qvon^Gek;j_Qq=c(AW`*PpT~wge#m1Z8<NMqJT~RAnUW0Yd2GpJ
zYaZJf>hqu`DZecbs_{p`R3j&f<QEiM5Fp;2$4`0eDQ5XO57wlhbISaZ$FF((oyUPZ
ze#_(cJpPo@SonT1hCd|9uIH@*nSbR$)1tBQVDcbi3riDxNKTP?IFA|$%A`e1)=W^6
zpfthO-KycY(nPoX2Wk~%>J9I5M1tB0>LjR};KT$?6C9b~s07C+I3Yp31V<-mP?Rrt
zM}0{iBeZmxc5H&<5;RQENI2i@t|GJjo~nYv3u<XxETKvApAK22W(is)Xq}+BoNbYy
zrGP?5lb)2Ijd02noSfj41Z|7uoSL9uAr&LKu&C3Dd?qUroGwWU6pCt>pnZZd3C0Tl
ztOR`$^i6Pff>eSI2|6a|p5WpHl?l#CaDj+*O3*n$w*==Vs1i<Bp}brd0TYk=&;GRp
z=LzThMEL@bg8dihh0+V`h>H?6eP#Ab5?q?#O38AWD5PhC%M<h{mQSVi5`2Zwf({Ga
zcU6Mk39e3XO;M99xnOmq*NXftyikIE3Hm3vF2R5VgA?2!rv?fgl;C;+1sxVVXh?#g
z35F-QQBDmLO2rmrMkE-S;3i?R3CvQ^E%D95Wc6-KkWLULh!W_+G!s|}48d$Zg>9j3
z0xy9hxM0%0;6NzFG6~+22uV!Gi4$ZK+|KZxAeSI7Vu{c~+vkWcR11f9C8HADncyBt
z-X-+z1fvB|@_!MP_+DZ1Ds1Ms1otI)Ai;ye9G_r%f*A=WNb>#!6BA4lJVoeaq0C$8
zrm2#gmf)^_$}naom?fOWLT4wKn_ymoImKM8#{42)m|%fm26@(>x>_X3LW`CNUYcN;
z0IHhN;GqN$CwM!-I|&|1@MwaU<?QkVk0p2}!3s$}p5RFVtkM(oYYBZ%C3w1s+3-Ra
zKbzqB1TQ3bF2PF4QV1P|EHBcwh55gJCwL{ntHOLO!J7hJ7s_kBk)Y-`YQ*93mM{x3
zZB>E~CHbz<_lolG3-}<xV)5vYXn4X|li<??pC$M>!CJOOI+|sE!sxMAm0zg*=Lx<L
zc_zP<h{TC82aazNd@KBM)mWF{JBE>JoLa3+@%scjcq+mA1RF%=2ccVpZWOvH!Da!C
zmZ?7Fu{FUq;ru9+ob3rlT&$wdt^~Uob*oWYjh_<iN$`7u{UY|W&|eblO|Y-%uxtxQ
zgkOv0{8nt;9|`_Ua9H?%CHOnR!32kjxoGeQM3Q+KWB(EUzlkcU;0r9aMm1_m8;J`V
zE2~DWY8+dQ<Envb98ry<t5LriwX0D_B<oe9ZZ(b+d{niv6Ke7lX?3B;3wmZVj}e&$
zLdh)f8&;!{a9T32fD^0Hv>GQ=qj5Ew6boc_S~&ZqnaB{d5YW6@`8$(^YqhH8w-#}d
zoNB|xpK296nU_c5a<r4S)i|vhS5>2THOfV@sv2FYQ6c#BYMfDxGpo_A8Xc=qS&jD9
zII9||YILanFFv0wk}R{+GBx36xGqHObE?s)8l8)03w%y*7}yJS=vs{nStSwZR*iG3
zp;hC&YMd{e3xu-5Hy7*7F6ds3i>uMI8kfu2OR8~cH7*lOUuLmAs!<3d#N_mnQ^Z#a
zxT5;Mp`RQE%&V($O*PWh_&=u30@{k|3*$(9(wzd55<?F>;KAb%3KorGfue{FNQ=tt
zn7ngULc06WodzZ<iedm30v4g5*y#V8eVzYuty$mtoqhH>b7G%!XXf7b=CKflgm6m;
z_k}Prgj+)x8p53++!exYK@E3=aC^YHt&jU2k6|I)9l|{!a7KoQ!0S)ujtJpiaVF<B
zAA0hnJnk3!L!zTZ9}s;o1a4WZ<lzt=3H^J0OG~cQ=n%$+@OTJg#F<9!=i@>cAHuW{
zLLp2DVPXhRgfLYcc#SbBgvlX)^tjPY3HcW=ydclj_GAc8i`!E{ZM-L9R_~Mf;SeGr
zBtuAr5DkGv;vpnLh>2&hbNM+>R>&-BTEGaw41q~j!c+6e<=P=QA-ExALf8?)&Ja9?
z(D+XCLs$?(meUc!vmrdk{)&Bi2s1)>K7`pJ%;ZEbQ?ta*B4i!}9yI0-@?3G4M?II%
z<iZdZiDi8Vi$ho<yjpZ=2rC4ZiPCww0Ixh(29{N9%t^nVH6g4OV_^vE1RfsepPI+r
z%hZMtHiob%gw2w*J%laNq^*)<JK1=8ZVO?YG&`5vCB~PyNJH2yyeEXcTt~t$itZO>
z*%t&34pmLY7Gv^22(O6coe*9Xcq4>2LwHS?ZF@a{g92}hvfx`G|9WZ0S-(^CITXUX
zA-pHK?}zX~2#1AJ!Pp)N;X|=dxiPX7C;gKUj)w4h1aCxeEQI5n%`kR`@o5O3alM2w
zG>p$f_#%WqxmSeoWe6v@frn8%jITmC8Nvk)qkOM%O5j`wr$hK!_?r;E7x*^t`A&f2
z%pzxm&x)=&n@`L65Pk?ee-z-8^NS(;6vEFTTngc@5H5@Tmk@pz_*L{bQ7*AuOa747
z=8}B>2#tSp!w>)4&VR(Yh$QJ#G>jaxk`iL95=PZ95XO~ZlnkR(7!`uDrNbx}a2bKJ
zqWo|vAJ}tW?o^ayr7$YXu_o?!xmp<2!)Opj!!T+D{#S=lGmKhcToqXAgi%{~jtmqF
z*8NYiUKsTynKL#Dqj4B5#Bxm-O$3^YHWh6abddGr+NOn(8?lz+&`LCCX%j}<FxrKo
zhtV^PUSYJCT$b$|Mu&j&!sr-qCjl<5{4lx*cMU@Yxdj5<M011CUARZsk6u>G<JvI#
zh0#BZ>%!<QxqZU8F^rppuMhhV@oo@45_I8aN%j@xsaeSY;lZLz4ip$9$|;~_i0Cb%
zx%S)^#v@@o8piEnyhHTPFzyOtSQx{@xG#*6VcZ?YJz?A{xw&v+Z6hSfLCXy(E%%4<
zKo}2-eUxY}t{!4f182JNp#8BhMu#ygjOW7`6UNvuO!0X<jB#N+9mX_Cjt^ssz=SX+
z3QUsNm@J$NlDc6$5yn)pJQ>DQ0z3<InUy<ZD2$YFIE+XbQQ>$P34xgC3f`*<ut+lO
zKN=;Z1B)R*2P+Ia3`de)7}+q~z$e4SBHwI26UMV*oFV#L7}EnE)|~U1DVE%cW(T=z
z!k81r+%V>aF<*?!!&nf;LgA%hED~58#*#2{v!5H}oGuIMVRA(nD<!!~bafE(>=bj?
zhEbSv4r5aoo5NTil-(e(QIvtVMPQrgR?*xjZ5L)pGr22_-3+7%9*ba47<;)wBWMu8
zzA*NO@ktm*!+0T#7sGfnjDumk#Kkqf(<`Ecmjw=pGMH(3HH_DS+}8!(5ap72D~z{=
zkBGh_`d%1^1l|?p+_4fKhb8%b7#|4SJ5ZzXLt(;4VSF4g3myyOco=_#@hA8HFg^?8
zn=rl=htIj&2cBQ>Qy}0IVgFN=Rh<mulo;8I(_wraMy@+K{Vt5}!?+m6Php%1<7^l|
ziu1WJ&I?=!;|BrS2|Jf5*2yCWIp?3l_?43w#-%WRks9ckEA_jS%`r>S|F1AEhfy(t
zN)h}W#y{N5BPbd1hrLJy#Udyk!4(k{6$^X8gIOgcNkCv{`*T^PA}A9<S+SRn{A(;1
zLHP(O1f|}UO8#G@a$v6&L6r!qO0rr6H6o}PLG>W_9qDW?Nxdq9+7Z-=pl$^9#OG>p
z&S}n>Eo5gKM$jmNZV{*m8b@$V1ntGYNl>#U&@_T(fu(um-w|sOK}#{VilA+f+ghNF
zC_fq7MW73_Rk`MMh#)V5j$+IgWlK6m&^ciCy-UDdBPbANRdnkfL5~PVL~t*S5%h{+
za0Eld;o1mpjNqmSu8W{|1bxJKeFQfMu;V;fL#_=s3-^nle*}GnbE82W5W&C*2K}cL
zhbvd=mI!VY`*6{r5!@cZ9TD92pUUr)tYM<8?Jma2IltvRSjpXi{hr9b(M$V%5j-IF
zkwNbL0;7Tmq0fU6JS4`4BX~q07tfr*(GiS^U`Yf^BN!XO;}Jw7h_TM`oyLhiB|1KW
z2@y<;V3H)C5S=Va&nW_n=XRPZ@MK`;Ucua_B{@wr6hS!1jWBM{<<lV^K_Y_ZBbXgQ
zGJ=#iWJJ>uSOSKqDas=M#FZVeBjAd1+wlal5j+#Yv%=FOm?7|71YayuEY4%5SY}1Q
zW;4mVp`3kA1Pdf<t|*Q31m=t8db%)zMUq?`_|VSZax9BrgTV3#Rz$E;c#SA?S4FT|
zn2ls|t#F~}I??r_95m)`j9^m)n<Ll~!G5uC72OfR&Iq;%Zx^jDzvb8^yjOI$=$^>G
zKkeYn3oG0gIKMy;ekp=i1ep7B1P6q9E5{^{S0i{W$mLH&-i+X21c#z{H;T6+csqjW
zQNPRY&=^6ND7rE$g7>(sMNuN^e|8^^;7kN(BX~c84<a}c!H0~=2)>HoqX<5Z;L`{`
zi{KLmm3%{YEP|t4di+xOjQ<_nak2BVmi)Q!mx1RO0(9e-)Z~*9oQmL^2)-5j=?K0S
zU=}OPITKjVcM*IaWHHICa}k`6;I{~V=e{Ia7b3XG^(9<+tpCmUPr^S(a7loZ_=~`=
zqI95z2jPzh{uKBpg1>^?%Mref%dh9}z(VIDQCt!A?M0)0*<vzcOy)ch#g$PsilT88
zC8H=6MfE6ZL{VDYs)&|}qHGl9qA1UL#KKclh@xT?l_bf>HN2^z@ke=hLf{}&m8@!_
zOy-8VW)yXzs4K==qE|&xTY#mCE>~9zHwY~C1nNg|Nb09g!>B*h1RmE!(I$$vQ8bC7
zX%x+(XdXo?DWZwC5dHtJ4q8f*ccZOkC~||)E(%@jouX(jz?$;}I*8J(V*t7Hc8(%n
zEV&sk5Pmp{N22H!g^Hqk6g{H2J&HRdt7jB9L~&yjy`s2QEZ2$liK2HD{p71mZVT6o
zk*9ccsk$kOo1+*U#gHia(kF_6L2iG60ixxXD_)bZ$RJ6wAo-RkZjItLu?!WZk(D#I
z!E!~Q^PN%L6~(<#+!w{Lz~}BLh6l_a9^4bf2ubFOu#%Bc+%J{~q!L<qj0*U{C?1M}
z&NTkpo+uuRA{IqFiqTPwiDGgTQ^aAc=!7U9k7Ar~ZaT&X%t|JbB}r!P6T(kL@wC8H
z(I;gp>A+)J6cI6oq6i1}+<IYdG_WM1NQzrlG$rark&eQM!jz;f%2Jj9H!CNA+_^GQ
zc!3YIo(cF_f#*b7c19F4qnIT-*v2R}Me%$Tv!j?3#oQ<sMX^}2=0&kUfE(R>f!rp!
z@ISmncuf>bqgWQj@+elYM`Bzlx=NIv<E$iax&I@;Dzam*jiNA$b&|V5l=k%!5A<PF
zkO`Zk*crtx;Vq(Dqu3_E-0e~95WZe&-W|oBC|--=^(gj6u`i03C3k<||AN538+#Nl
zNs_V3st!c)%71cS70!LQyum$Rl5~4h;2_Tud^)@x#XJ8g_+Au;qxdF@Z)LRK7yUAd
z4+J<(N22&p_@gL3j^Yz;9Z`H1<Q|LSQ{m%*W!Z#IIsRNMUx?Dks!jwxUkRKPJtcZN
zim!v*<UL*J{9P132bS-nI3s*k^js9@qxeDiqUevJEOjC3KRYG-Bo;o<BlEZ<$zP)Q
zHSqi`ir=I7BZ@x*%U=SyW?W`?OEZeZa77Fy<0utJ(HM%wFf)c(F%*xXL<}QixIYHO
zaAgcbV*Z*f8AGWUy2Q{mhSD*V5o7fj$_i8#EhkFn@&Xk^D~eX)DdaaWRRW)?0@Y$@
zDb1@9L(Ld!#c)*&&12AFs4Wf+VrUpcofzuIaJ5+K2Q}1-q1%iCp6-t2{%AB3`!z8%
z5ojz*A7(WbZ5Bf=nbQ_Lbqwue=n%sr%T=ow+QiT{hSuUt3k&jSCrLf9(?W+lF_JsS
z&{4QkV96EC|Brt`4E-gyTMSB|dknn-{~j^)446T6Z4B2*vUdzO#BgH_eS+NU1v<Qw
zf0Mw?G4zcgXY41I9J5tN`e@VvF$@&@Ako31w6m$V1bk}@LxpdP;r1Brh~dr{?ulVU
z40p+}43B~S!vcTy{qBHizgK)%=Y3+Ng$I2`#qdB3sTk5?e^7Lc=tD6)EWlEa2s|qK
znCNJ!fmvf?cw8*ws4+~AVZ0<Kh)xux8<*si7@mkBE|#gHPscD#;K>-C5@4(791;!3
z5DAP?ftV;Aa&BxtIT1thKXxNvF9tJUOTdo75pYE_K`x(}WQCszEYAu&7sGUc8KS(@
z<msM|VRj5hV>lMWoEYZDu%}J&_hXnB!~7UtjNzpi7R0bHhD|YSj$u&@i(^<VH7pTb
zF1l27nJBB}dS4On${1D&=eo(<H8HG>p)iJZV&4$MMuGJ)<n}lEaD@NQTVmKP4qIc`
zCa_&}R}4D@=)Y5-UZ8sf_6E88V%RVIf+&NTMP3ea-w`+<`brG13cMD>>oL3$!<#X@
z9e5s$;jMtVvGB5u^*FMV91{DxLGF7o92VvWE`2@->_-GX6#XcMj|Dynatq~mkH=#;
z8N;a<J`L=j#qhcC7ouMV_7gFD6)>A|TKI~%f5xwczlq`77`}_)drAHs!<iV)#_&@N
zKa1sD3_l8-kKu=4U2~LjLv%s1E{Z<ATwRLc7vVo+_%(*#g#U=)cLARC`WWa&$c^(~
zVrTKoQeiIZpBRcr3v=UERJfQZ3l@)~gfIfjl>&^Y(s7iD<C8d!#!)toa&g=d$DMJM
zkNZz2n#R#AjtX&9jQc<4uM|g30dnOyssvm$j%vcyMQe!iJAJy<622;q+Hus0qpl>c
ziQ{SkIy8)<UL5r$+2B8VXI_4zz^5^rl$THECjW709)}jk4RPEk#ujn35Byuk(Mq^=
z9BtxgE3AvMs&)aeLY}ch9C>kc6k`weI*v}lo#V(C=n_Xk9NmPw#^EgITUR=%ILO__
z$YjpQq3#vOwPNfodbESz?CUtZ0^~k%TrXMlWRk~C0=L9*vq0ZC`U&(G9Tdj^fq|m*
z=O0ZB4tPi$Oy=sjHIAWTzfJUZ(Ojv!;usdklW{y1$MB%+0|Ix)agV@=z<#g5eWD}d
zxId0jasP=Z&$3AR{$LyrN$$gOjEiG@9FN5Ds8}A0W30gFIK~K2IV>#uxFiX=S)L%t
zDRE2;?33b{958=Q_C&x_gQ}j6V_F>R<JcfsA+{=x>2ZYPh{O?%BNj(CC>4(*6-PRb
zL|{o0gpD}NIBZU(B(1>i4`Uo|9GN&g$;w&$F${d35&N@2F0*C`FN|YR95dsXCCTSS
z=f*KR@SG#Suwk9^;+QY6AjsuIiN$d&k>tuamI^Ena+k%y5b_%{zSD|0{vSE3#JD<+
zHF2yJE{tQH0H68f{0SSyvLlY2acmOaEV@N>t0<kf32YbTuLO6+u{(~p<9H{IJ%P_F
zaqNv_UmW`b%S&;*5b%oveEh}QUKTze%CLErff~o_f#<<E-iYH(NirUIu*h3MZexK%
zaeOH7uIPJl92R(A^aIgcz#NH#0mB+T6643B{*;aHbS#eJaV$$<c><rt@mU<b6X=t`
z=W%=yN7V$XCGce&C*nW?S0?;Fw)!fLAL95ij+1emisN(~U&nEVF~eUA@RvUV--~`5
z$9Do8<XrCB;l<Aep63M4bAg=AXYPeKE{f%f1b&L+=Q#e1<1evXisQGS)Gq?Rin7|@
z1^x(fxs)yo{}WjLjw6>_L>kZb<jNM6WU&N_3$Ott1bFK~E-74Iw3KLR(K4cC6DTLJ
zak-*%1z|!(fl3Kf4lGp!*um-oS^_N+sF6U;1Zs)p>ICWuT$Mm=fjXjfMOo)da*Fzr
zye5GL2{cTgkt8{EbZ9KhFZan!5@?!0v!HCwp?Si8>dV}gV$VyUV*;&&TPM&)plt%}
zgHr7T^aKvesadc?VCj@V=LC94GC%MyNT5r=T@%O+BTID?qY_JZ;a_E<dkXhT;M$<n
zbqW95UKY7Nfg2LA#eQP~Hzja?0;3YRIf1@n94^`~fm;(8nn3>q1|%?0j6*~Ri4GQJ
zh1@r&w@5NK7q=yFrzCF=eC`Nllb&~paoB$>cPDU90wWT*H}JoYJjxHMk%5Il^*{m-
zCJ;&>oWMf~Je<Jz1STZ#i1>^VeN^<ZpwwsqK2aH)z~fRU8^B|n*!jyG^27wDB=Ce-
zCW%fK&4u(-;inRKQXn_-PYbi`G>)VMb0n}N5{L#IOCTOF+n*FpaUv2h0=p@Yiy}*y
z7cEW#u5c!S=MtDM?1^R*ct+q^(f{{lMgp@Fm?OrS3Ct3BKJa1vbA=a)&P!mvz=8x8
z20nEKsEY&3k_46t=N8C{1XglcB~dGhRSB%-4wk?d39LzAt+*XZpfG`T3G7ecg#^|o
zutDs*MK>m}O<<EKTfRAgEy7y^OKx7aC$J;1>`Y*n@c;LpJqhd$a`z?v-TheGi(-6L
z^d-@k6F3lfzLM~N=|{KM5_mlU2I?CL98BP?1l|;%+!WB^ZAre9K+ckD(z{}Oj|(<|
z_k}-B;1hul5;!98VFDi|a4J~Qgrf-@ldMk@I4(d3o`MIRKMOc#{4#+{VmXn(R|%YC
zRg(N6fzt_mEqpeCZxZ-6f$t^xooH_2SZ5B-BtXdVIrc(){-67!Brhazksks7*-3up
zdc3a--F`{n*93k`;P(WO#Fa_>k-(n`6ixaq|4WMhEqYn>lJxhV1d1g6QRU8mg?REd
zivB!`B~e@~<Pu5$lZY2`C6g$XM1>?ON>*vnvPqN?n3ez!`j?Yr`K14w7A~|(NmNdv
zx)_;TMWCuE7iKj9dh+Y78p63x#;cO3Ey)2%)JdXl5*?H1l*H9Z)JvjS63r#IzGx%S
z2BHl`xe@VPjfJlfZ6exKG`Fd0N$8SnkwnWRS_!jMn<QEXtS8V`xLsh$eW0{YqJvm?
zqP*n49cS6jNpwx3Ac=g*?GlvAErf1KT$e;|F{&iGC(%Q=XA;*2p1qRDeH{Ehw)-S;
zV-hzdaed%(g8-NL%>w;I`v$qWDC!^h3`}B>@L<tlNemIVC5c-Fh9+@G5_byUCVIOl
zXPiB{OE`CJz$Oh(;%>3rBRVpP5d!qQSKvO;&*JL-z&<L82Ldj!LOq<sBT2lQ!h0z^
zn#5yCOiW@@5~GtClf<G9`QwxRKb_#8+>TA+t1Gm}lbCt7`8d&kDi<M7Ncw+}OHW?a
zOip47{ZmM$@I(?*lPFALT@p_w@l+CXl9-#s(@8X{rR_LX%oLa=8cHH8z^q6T(STz~
z#Dx>0$-tgUA}wr4U{_k9Sg=Da%}T;f!jUXDiDv`<jDVL!Hn2RC#JG~hSc=DUNla%5
z3D02H#AjCE`MkjFz<*v~UnnqNbb;un=kr+GBH_iNOGK9@u}pxu%LP`5t`uD*x|;t5
zRDeEf1+I}!t>+Y{a8C*wlGvEUrd(FaAH&T_Y)N8k65AN1N&J??_9S+Q!?#K7Ok$Vt
zTcW#@cu9Z-_XzAwVqaj{pTr9RznH{Z(h+*ToWy}7UXiR<Mc)v8Es59v<Nv1cLD8Wy
zs&6OpP7;U2@<9?u7-Pcki5?bxUzBIz89z+oqa?ma;!81poW$`U_Y;AmNgNY+m=Bg~
zX`c#z7WjM~WSs~srx>onCq;9uIvwPGE$|IbI@FJx?*jYxNt_Wro5Z;!&L{Ch5<iRO
z$H3=e5*GqywLb~x>StA#lK3SF_K2J_{>}|k=If6n{uKLPNt8$dV!SMtzmxbUi6UaT
zLbO;4MFn#86c^4_cx4JDC0SLpR0`z;N{iCJObTU%bImB9LIp`yOrcT=m4mEYF8!;d
z{%vrz6so6CLmX;}GPkBc?$lQa*A}fK$}c{y7N{p$UzDX92sF$kMH`Fe>S-d}RJ2(N
z%~Q})Xput86ndo4Glf<uw3ghiDYOyjkV2k7+Z5Uf@GN=??E~h|;5!D~IfYIE(;;8D
zi|GIT3nbYs1trk^Ke@e9xK@(4rEs0V4Jq6x&|9=m3fBwdYP%_gn^PE^!Vod`O<|xw
zzZCil3`ik&u#s%`pum_bev2fBrf{pk|6547J%u|`xHE;jf+8$FEQR6!N#^`Vh-F*~
z;|1;&y-##x3ik_)5`94QK~dKBPzn#H@Q5TI6&;hpV?pj{j-+fvV*|_M0y*P^6rK$1
z69p!TP8OXa`h@6I(Y`CxQz;xhna}e+ox(IRhD5`nv`12i3dcm_ft@v^Qb?z;D}^$(
zHAC#%Q~3HS%@np$uv2h^7pJf!1y?wef+vtoVO9#y3qO;>vjWeF^1RapW~4APunb?J
zW(zMAog+F|be`yZQI=hh^8f1yfybg0_^FiRr75fvpJjpPa)A{otPCuxQdphB8cD7d
zE&Px2ml&*SJ@<bxZWP@lO8aJkEuvdRx1}&v=8MC!BZZwZK2NPsOzxI(+mpiH6!xXC
zKZV!D@&co)L;i~?yd+8T%PAa4;nfsglPo&CBET$;e9oU1@*63<nZm&o-b&$}6b^~o
z+v1;d%azS3{ST+`KCd)9Jm%qp6po}&JcAM$e3-&VDU`4Q8y~0eNeZ7E_`<-^6pp3v
zcpBr<IG)0%+$hp$k;Z3q;J%ke`82*r;mZ^*rSMA%CsOz-g>xyKPvOdZ?IgRO!Z#_L
zN}+J6ep-x|SLpMW>))pEog~ks@Vx;2=P%N!^rW5@<1fv%A5v(tOy_Yig&*0TrTPU?
zcd34?n@0Oj9Ikx@Kc`S-sqU^&@ilqBrf@lhcNgoeR_ec{@Ouh>a8FyQ|0%kBh5Ac?
zme@-D?-c$?p-386q){e~hAVU)Mbm!q(rFY6EXC6(A&kIsr9es1Qfa)fLgmUn87&}`
zO(O^2Ez;+8*D9n@F^x)TR8FII8g<gBl19}uYNgR&h+Zv?XE*3I(&$=WRZnB;&Vtcv
z@|vyDH^d5Rra`{6L8rr2;zncLH2N*k>!-0KU%OfwK&Y37ccpsr^#XDO8YQ=pXk$^@
zuMub>+Elbz8qEc!#QcIS(`c2(?P=VRM(Z@%q|qmh>(l7DMsJ%&cP7{C?b6W2(msv6
z#d^myI!KZ}d1<(-bwZ~!ICq@`dwv>S0`8hdLBQPvl<1Kasz=%no1SU(N`paiZ5r35
z(VO!kfpKnyqLB_%&hiauaBOdpnYuBJn`9hrPNQ!cFRj-5Npj2zo!mc-0b(Q%6d07o
z;J`9O04vq4JZX1r=wy9p8V@elZ%gx~FnY_S`jaSeXBs2YxHpZvWCVsuJBO$JsJ=Um
zd(vpUN@rlRg|yt41|#{QG#*Z4WEyPh{b`I6cz`uC09L9Vi~Qi^(SN!A2&Z+4A0(sG
zcr=Z=OZ3OYvVMKug{Ar!Y1P;?7!Pa@V}5)Z6VkZaKs^H!)0mXT`)PcT#^f}na4OSS
zn#L21qBOE;Ji|C-Ts2qI(g>yT6xZ^Jyr(&XE7h;3^L95^;WQ#?q|-3cu*<7x8cBhe
zXgrMshjgW47LR97=cUB{h*-=tEUDZ{gSAChsvYe#JB_&lZW@_1Hmy{i_|SpP*f&`{
zo5pie$$~Vdr!j*aq-RTw0W&j==hK*-#w>}Sxt)FE9O1WCs<{GZG>vDceLnm9MnQ?)
zI?FChV-Z(tD{Zl~q|z#NdZqenrCOH8@-%j(u{(_wX{=0Ry)<SOr?R!yVwEaPV|5y9
z(pbwe->9>X^P2l3Lte+e*H^6k#=2^Qv~VN4lg4JLfem1H*s3jQY)yl(O?12H4pAC+
z3iMf}_N1{ljn~t7Lwd1KDtRG|{W27Htx{*&YA-Sr(|B33UKKr%#=sW-iC&T9<W*{R
zef65~bFH*D(>N#{c{eviG6L_gsjJl6(j7K(^(u8p{GZsUzbDRzMcMsEx^^Uu54rUj
zC~DxNG(Jw_bQ)i$p=sJDX?)79K8>Sk99X3qHCM;@DIgPiY?b0%f6ic@qMt~ES%fbn
z`6XBS5S_`d(l{wCImP*Hu9}rq7gi}Y?3*;cP2<NjE^z&(@jXNFTJ2mKrB<smX`B^c
ze|zd0J4k=#o=@Wkabv5PWQ<)*<Bv4{Oyj3Ceoo^OyPw8yX)udZPdze7{hCJo)jt28
zM)j5&=akIif5~Y4EyI49yZUau^J?{v7<t|zh94M&Vg`yEsA8b1ff5E_pq$|k%asP^
z?9e%|r3?&Mtx6jH;^IV?Hc-a!!+=?34L_Dx^VHLM9Gvn7Dj29};ME%H>K0lh1IK%4
z53W{~#f@CeKy?Fk4Se6uKXnZQR~e{npr+wZC5NJx;g2C}t79OtTFqXqIGc=ic8USX
zBJ~Y4Fpw~iG|<pMBLl+>3^&l&z%>Sxf$j#H7--5C4%G7vG&9iLfNr2YJ7u7Sfp)a?
z&}wziS{i6;fY8c7YXiGa<aZpbm~3O9aJ3Jwiay^#t3OEZU?9)Ho~?Rk(T<{>M7wp=
zX#ae*${BgyE^_v+q6G%J8Mxd*d-p^>vw9flX<)E{AqILGxYj^F1N{wLXP~!%8>Kyc
zL~jtiUX+dbMH*9njk+nY+$_*nl=ahRfbc+ezig3@e=SPOAOp+W`+aP(M%`lI4g(LZ
z%e$3Bv_=gTCEO-(yTKO{DJHwFQFn5bUMjfDz%6V1ak$&SJqE@bm|$Rp0e0j;)??sa
z1NRviY2e{C>V5+prNkPwaE&62GVlPyX|T`Ceb~Sw2F4or?aTZ}Wi*y_(#9BgOqj;e
z0$X_MvTE3g{Kv&}oG5c|=&RWAi3Xl9Fx9{$158d9B~0PuuFoSpDVAvlLIO{TK5gKG
zHGXj(VX;IRS_U|+$xa%LF)_wPIhC}e45SUbWZ-23h5?gfXkdi_%YbcQHrIs#$AHVI
zHt?K*Z`Y`d0Z;miwW{={Ja#-Q$!A1I^w6eD)G_d83e1q1VsaK+!jN98$eq`!0c+J<
z1B7@FwMbx|f%yg&7~sgz&gobvcD8@9fh7h;tyN29^p*)fz1AOd#=}Yjs|@Tgu+zY5
z18WRyG_Xn9v(~^m0k*SHqLi@Szy>k0ER#IZW&>LcY-3aNG&b+?h+p$ondrz%1vGA#
zto41>E-oK#ARF^ukhbkHuwUkGuOzuN_DO%)eg?zLwdzGlp4T;Y>VSb)418i>^kkh?
zy=vec1BVQ}W`N1p4ZLCCO#=rFye$?QZ`rC3=%l^Hh0{YZ$)j+sde^{v20j#@!-3}q
z2Hp?&%E5m9M<mIWNdCyc$C6}cnLJA8o7FMyS_VEfz)1c~;)LsBY!lV`t9-7(FAbb9
zaKDLBCcZLolB?T<GI7elX|5v^O-+1l;2UnFCayH`t%2_h{BGb6Zh8jJ7`R~IqJgsp
zb~V$^8~B0ijvZX9<`?Q;a%384{eCNYT@Cdkm)j=&>{|UN13w%1l`}ZePhK)WpI;38
zvR)^Ay~a1v^Ea`R|1|IyKjuu3d5X&h{x<Lr55`!rqV)^)A||ddaaExr*IK8u+867o
zV&Y%iL<#1u^(`!Z@>D@d6QxYlHc`h!X%l5kR5nq?L|GH7*XiX=R4`G_#K5N7%maGG
z##%+OS2EGHFmK^@eL^>l?Hs=`ud0b^CTg0fWum(2ccF#}`ah^CYP&+!Kv!2uJr73;
zSeve?m2367CayNo*aRKwnW!(7H!{({1nX>Qg3cY@EZ~WFuudjvzefCNVX0;&nw#is
zqJO^DZk?`~Xv<t4>+}{TTAFAj+}cDN6E_yB*sBGT*6E`P6`6-_BF{v)P_-Ag4kltd
z3V0%B(XFG2P9};s@{?~x3i5@!h|<_qpg^=(Gp)Oc9wr8x7-Hi6hFVW{mW>G&^fGa+
ziOf3vIuqBMxWUAL-}8H$=p!(>o?^1%HQJ3PZZ^@^#7$C)#`#S(+WWC<^fd8&q1sre
zSRtE7VD2FCq=gPV<1HqJoA`Ba!L26VEL1~H+-Bl-;pUCCy9Dkqai;(sCiU(@9cH3x
ze;@8PF=?{8$HWK@X=CkP6C)YwO*Ha-Vwt#FKUt_){{to-G||vPBMT34j!bMevBktA
zCLT2rH<2*$7^k(AHo?S16QfOx;UcP|#+rDjoHoux@6y`i^f{IHcol8DiFswUYN3L;
zjnpI)lT8epu0PE)R??=J=v7&pYU2I|>IoC|s%c(T?MX4x{*=J(^4c^LAx@%+qTN))
z1bqgT(N3?>qryW<YB7Nxhw_sqQaqiB`6kjPrp?qd%raq^FgbB0HOqt}z&6+>-)64=
zRb9DaVJ_Rbrk={0m|<e33Gy>0o)vh`#B>wMGQI<k<CU~oCjKZ?b4<)N!EQcpVzvOe
z@;cRgo!U}SyHHXav%g>g2V|XEVq&SlLeWJg77Kj3KxghU6U$AkH?hIQ3XXO~ZH?$k
z(N!Gz^4f*U+G-O&b@OZHvDQSPiQgKkb>fpdU7OO{MiZMj$m`VT3fl46`upXyiR;u>
z6WdJuVB$v;+fD2+amd8GCU%<G#egw!(8O*NdrZ7y;#CuSP3+@hsi?hVVqF8pPVG1G
zf{9xX<%f3Y?9_`U-Yetx?qw6-t;=)QsRInoQYBdAH50F!c*6weh;5#+t6=SBedRj!
z$}Ii-fr7WBwVdC#W!Q@}R4upY??}x<D`@YTILzIcWf}7(K42Vf(mykCMBrl+pP2Yi
z_=5`CM_hx|G&=A&D#l}?jF96dJ{4|RRU2H&_xW6sgfC2dY2pO;f3egmP$vamSf@B~
zbQr%&|C*gL@jZjQg7%G^<y#YTKFwnb&oG3h>t{`z<H)SaJHm<Xs?JN0v*6+u>Zf(;
zf{Ba#_^?pY!cQiCHo-_JYT=TsnqN6<()V9D+PexkhQBkGOcb%8)~i3chwLu6EK2xG
zpwxQB;QU)=<R7+ny<*lCmcOz%JJezpid(pKy((b=Jkdm*!O4)`Rz(|CO)F)gw1sLG
zs#_>yp{#|bJM~Hy8duTES<owL<yloL#r9W_<YVhqMFFny$`-0vV8@MottyL@(s<N3
zT~Nb9etE5yg{v$-PHI~I`r>rgw*0{0akW4l(YhA?nxB`m*Aq*93k?F#5sg)23)fg!
zW?{L7CTyOC2P`~jp_zr|7J6B@)`DiC1y5?Bi-ndJT3Kjsp@W6i7N$2-#q(7g3yJk=
z(R$UEqmi%Li4t@R<xb@hLS?l)3!Rx<sBc@ZI$C&Zz3OCP+XS6i4C66nw5}EkEDZWK
zue*hA7S{CDSL`lO7EZ2L?A_({{-`pyhlQTvMt-Y`cAbUZ7VfZcr-eQi&Xm#mTIgrt
zdJ8vLxY0uG4eBNf12_1CoVP*UY~h2-8k3y6{uTyUxW&RF8`MDQ%V1G<YLMmcqJ$xA
zRVi&-q0e0Mw{k`-+-Bi+%ijU4g*uhH6ZI|&!z_%jaIXcne7J>sXqm3xEy-5>RCt48
zozps~`z-uYNxR>|C<`MQGbamXZ%|vLg@v8e%?;Jt8`MJ<9<~s%5M}c$JZfR0g-L9c
zh0zwqSr{*~KgPmXscl7NttK~rVOD;6gX-N+P2e<j@jJdHQoxCrY+;IpkVG$s?g`F9
z741pUsiF+0rv#q1@PyK)33KrO-k`#bRM^6^m9(ois+fhig{*~VEPo41STHP@7Lt;r
zC1oKk%t2=I{5$!U1>1sS;aDf7Z&WvIRJkq7wUCjH@YJ5b@QrHXM)j<P*%s!o*BjMy
zoD>T)EX<T7EwcpJqvtu`oArYgH5%u#Ut(WkVZOj((FGP3T394Zx9{pI?urBs7nR3S
zM)elovckej3r8$`XknFw)fV<y*w0XusMum*tA(`|3N5U&u-?LE3!E%&dK)bN!*L_W
zc85;bB+1@Y{ZG{$W!1AARmXDLHVeBf5O{32up{7|0{pO`eYfx)3wwjy!j0+$3olxD
z!@`>uUSd;s7jR>L#lp)L4oJhe^;PPuUfZZ%<tXhccun+mZX+Ajmm3u=2RV-x4qK?-
zO1&-df5^hS7T&S&=SKC>D+TG2+T~K(dt6FYHEyab$mIL<wERz4ZsYu{y!w@bk1Tv_
z;YSM>EPP_&sD*DVe9JktFtvgD%);ja$1Qv+KqK4#g@rFIoU(A*!U<UmUx{*EbD5mv
z_PEL4L&%(w!`t<*E!4|boKxy|7QVM|o=a(yI$T;i!=3g}{#kBEo7A<N6#1Nms{MTU
z!9u6m`kxE(P))nY&7b?8h0C%x{%qlQflFK+oZ`-kyUnj+;g<57K<T+U`40|AU~hV$
z;BO26Sh#}UdQ|YIlBJ5+C{sn_XCJkw*o%oaXsL?Ze$Di}(nd)eA2>MTpp=c$HYzx%
z=%9>^vNq<}m}{e)jq)}I*%-`R8x?J|v!UClWTUc;t8LV?QN>188?|g)W&6**s@bSv
zBidH0E=gLZZ1SJ{)U@GkQhe0Ir)srre6pvYuI)czt7H2Qaxd2KA2%)Er0Ux!u|vPc
zMiU!JO>1DIp^Zj18rwM2QrovlQNPRgwW*C}Hd@+fW#j!#s<{n~K6IF<zHg(o$nhrC
zqpW|@)~rO=+S<sp*4o&(VzVMF)igd7ZEvH4jq7amwvlI}qm8b%|IEL3E3K1_Rc{pJ
z+vv<rZC33zt3(^Eix{upte90`qnkJ@8$E6Gve8|VJ#0*<>-VT<O<%9I@j`3uVry;0
zW<S}-#`V&j{<i<5_XZm`*|^!pjW*aMJ}aKQS@pI3XKT#uCvduj_UvZ0db1iJ1=;<9
zgo&!Kl{Uo2EjFguc*4f5Hip_5W#a)Gx7oOz6W2z&$Hvjt+8s9TvN4S9tf}r~d!!}9
zZQO06c3X|(zivYw&)Bh@R-%PA!p6NaU-#J<Y2$v@uvu~Xrsx`<K=$3CU)Zc3wDFLQ
zu{IvJ@vwA|ll~~r(pr1O#+6%Coh|AyiG<OjV?^o0C$8gcjJGjKPR%KpU}K_<8(R9)
z!7g{$qBstdIVM{aW8nR^+Eg1)+AwUGHlDKaG-I!Y7PB$UMo0=qZG>g?BBCrlt!$A8
zw<u$aVg$}V+B|L}!HBZ)QA>YP(gG<N2U>Vu#*Agdw(*ROXKgq(TpN>HYMxB!!Yyh=
zd6lujiFj{aUg^nt*2dN?{!`iKY)rSYzoquPjkmX`8Pb4RHfAz5+GspD@9YJiwbEy{
zc(!b;=GmCf)o0^~jRiIq+IY#v%QhC-SZrgxjSV)Iuqp<djny`m*_hQ<TW(_oSKm&Z
z(aQ+rW7w54#Y}Rd*Vx$HMq4Wp!sJ(5RH2P^3<=F|gFmo4^o=$)+1O=cH=S*4vHi#L
z+u0Wzzi(07q_Z3iMrp;Z{u<d~V<*SFmA_cZ^X;NFRHqi&9*&!h7j5jdv5!5Hwz0@Q
zU1KBZ*?g<&A;tG;+5sD{*my^V<y9N6*+_3yZ`gR96S_q`UfzG^eCt*<W~+MB#z7lz
z*|?^S#)bAad8Hy(`#GPLAChQ!*T#F&$ip1Bt?GSgKerdQjm`d$(`w@f8$a^<Uv4rs
zPT2U0(aUyf+NU-?lNEPN;^(*+w{KPaR_JpZU)uiHLtlvUp){Gtp{?qqjZ-$hwecNS
z_fGw^jc;sl9KPm6tWr0&(%3?tnqy_vRo~m7p5+t>(2d*9IpOmx)mp1HP|@K6*+vlu
zS2*~|#?Ksl8-LiiBmv2p`qc)P_AjzpIYGa1g6gZ0?fgJ$GFksqT7KEaUpCHdRhxF`
zT)BVS_(xVcd&))1)mqd+F$ZNGFm#JMD8YT+0i&1OY-wGCgDV|>sGGO;S42q%><hsU
zZwLG;p^P}wVN97K<s3h>$~)i}XWSnuIjHPlvV$oOsyL|X;5rAr9sHK3N^Vot98`Bu
z!$D049USC2sO8`)2Q3`5bWqzt9S4mZG<Hze0WWe|H&XQ+T<w5Q0K#*1YJCR{95i&$
zzOHJ%O?|e|_u&WMH4Z-7UBIK6gC-7|N|KkgydI#jxg<MP(=-A5R9-6wy!7SmnC_sp
zgEkJ@I(TuO-p;|w**fnr$!%unqZ%n*dA4`>FH8%1Y*QT_baK$sK`)MjgVj~F0tek3
z<O_Fk(ADuTwrS_pGF7qW8G3gIdRhO5y61s{;ia`64ye3b<ZaQl4tT-9cFwJ)-MUTn
zad5qZhYHj<2RCro9o*vJRtGmZ{w-2J2mKw4pRV7`YD;T<9sImde`K2);9#JXs@Xve
z5{Fi^bl%Gh79QgGw~8#qPye9~ZgcP;ogLin;0_0OJGe)Bcc+899RDKlU@48`Oc>^X
z7iPm9@HUgl5e}AA&_+7A-@(1YOy1`pT}2~2wJL9vgXg!Yfv*&hA7J|nRBW4iSc*U9
zV6?y^qK`V*vQ4qtF%HH$_+p#l%_i?9-`u9IETcW{_)kmz>ZHa?r#KoD987eurl&S3
zurM~Ba4^-uES}WClMbG8V6#(|HQu&!#-DaD%|XaPm=o>r^|dPEfKP<t4iYjcQ3o-{
zzYXU!{kcsg9i$xpUOUYemeDwC3#TYfjlr^-;^>(irR|CiygO!-90#t0jGXaV2hRz3
z4zdEzh_W$dH|eeB>C@$mGbJ`=a8%1_oK5zz?RM3ByPC~VcTnhH4&&UxJO}d~EOoHV
z!2$;h9Sqy97CGPq@hX@1FKjbmF{i-6r0weCje3WMYPs}o72}YLT9}<(DZtrT!_HRJ
z9%!X<fme%9ejKcK@W%Fn!wxn$*y!LT2QNF=#O3T@r-NObBL`a@|C!_t@!aNMJ5Sn7
zTe30F*JfIm*9sn6kayRKyao-m-IBFOJTGq1nY-7)J_q|9ydYW0!hcJ>==jeh>2QFN
z$+cfYz2)Fl2d_DJoy8sS>2#$Nd9ej~$9~O!lk2^q<~7#XRKh{d=5|GR+rc|h_7KN&
zyLwOfT?a+#DOSkC+L*^8?>qQ-o=*6X3!fq3BIM#@2cK|@aM8@gQ3uBy{O;fn2ge<h
zE~WkGVCDk-QwN_p_?*G%;A;opIQY`>A3X9nDR4scE74us744@SoDO_Ax!*eY&cQhc
z=N)|S;EaQ_ve4e$u72(7-^4Lc`51%&&)FPuDv!n=98fvM7aUyV{?7&O;L&nw<P!Z7
z_oYpGtd#aEv&w0|I4D_OV>`E&(tdMrw4}DZtoEmazqsqVsOo~FcbVI`i;^z>cJL2J
z#>Evbs_jrET->uxFY2P0i{dW6*{&{cSN?#@r1UzG2PuB+jRID(th83jMOhc+T(sDs
zO1miI;;PO1uG0P)%e$!Hf<Bd8R1{zfY3IR)(O%gFnZ{}^s=KJgvaFm>fm|?)P*apX
z>;ijQ+eIB0bzQJHlUKW_=c2KTw+s9LsPFP$0T(oI(PM}D^k4zGp^HXhB=hO_H7>qt
zuZHbVO<dF**k#-f)!c>V;(iyS*nSr+UG#O)&qXU2tz9VBk7qt}ZsVeZi#!)?U4NCe
zbD_Kb2T*(0-xAACRmKi~YwGBtlZ&n{3S3;Qtvb8dIk*e=2Xekxx`>u&sb;Lt+cimF
zv_o}sLFJ0;&Styl>7tj5J}$0zajlGVZx?^IRo4j*YvhOb?j4G)y1~UQg?Tr-I9yKM
z=;9{n(Wjw;%k3q1tv*eu{w@Z%80KQQbY!55TU`uwG04SWsc;A@alu7u@k!|bMQE|3
z;5IsQ32)51OW<}FcL>}mda%D@)(1Njzwfx4-6^Nt>*7AfjPM9iqnzS=C0;BT$pG7_
zrbi3TbIh0N54d>H#S^Z7m-LW}hh6{TYP^d_Ts-RHaTnv*7}vjb8tr0?3to!znvj=0
zw>4E`UGPeq*D&>Ws?IwVFBf^=!OOe}E+)E|<buB*nJhK)Du};uW6e{fe!5L{ku6i?
zNf%Fv1Fx(G?o>|;6T&VcF1};^E}|S37h4!$F5)f{E;5{A7fD848)dq%T%;HSl4Oh-
z0%LY6=B9Tl+l9m2ojxyWsJX)PcB)b}Ro2BbE|zi?xOmpZb1vq(n8%oJu1$9_%f<7;
zGel>Ka%-K<#kEzR!!|V5N;TB#w^e;7==?rqzKaDe7Q48+j{nWno}KFBooXRtiB&bx
z{w~zh&9sMKELg&+X`=CKn&mE5xLD_6Jr{K&Z6ycU^}lQ5ac-yo-QsFVt`S`;S}4k|
z;WlvAnra(e)ZgWQC0Bfx+T?=Y!R=_OZI-=)u#F4Z#c>y(y4b<6ck!N!$&IyLE_S<k
z*~I}Dd)P-^?RW8li@m~3?i2W_k=CV|#?7bmF7={|ms}8dMBAxXT)fH!?&2L6ueo@g
zv$kG8=;93l@|!LO?otFETo-SNeaHaca%F43Yti=V5W{JwdY56gOA!uB+t|GKU3?&X
zMD)YJ{*l1PqMz_nAg~`}RP0hL_?Zi~na2qipS!SoX<vxthIRUvjG}gm-;;jD>Aprg
z>Ee`&(=NgjboTdK7hj9#H$e@HcPTF9T1~VwF3!5(E$82iw?h4#iy~9>pM=l5_`$`G
zE-py&qUfGoif%l13{XFd^Ck9O;8z!aaNlt8n~UFFe7H-U-=&K0R!e)Uzg%2)`9*-b
zZLt2sV7=yUMQyWNjo7XJaX~GT@%4&~f2UkDgJK!~@}4&!%UWv4;K~d(XRsxMk{OiB
zATRUpFO5qJRL`JHU@0q5PPDve1<{J4l`^O-(1^eP&!DPswZOu^prpM<1~oINCB~~V
zXc^?z7O0a!T{cp<UItAC>WenWprJsc46eyREv>P@z2EqMBhy5<+A5!$Wzbxbn&^?Q
zi?zsL<<aKMY9*G|qHRRmiZZKR2D)(jz|w&|k{@7q%%D>SoioVKz{?<;L6;1=W^iW)
zcV%$tVqQT8Ju~Q)K{rXR?5C>?x@XWMgC)m{-}Fl!eV*E_uFc>&4t@qVWpL!)f>HhT
z-WjyMnD=U5y-x<z>od4PVB+~Jm}EUSXK))E-%r1>pWaup`ib_>U_b@~GZ-Yv!J_nG
zsUgC*h%$L=21AAWT=GvupWCIvJ2L2VG4Jc+1;a8Jp23qDJe9%S8Qhb>;~9)&%w%wH
z29E{x+?T<FoP~k<$PDfm<ERWW7xRjZDtI99VYBJ*PzDc+=Od!DJj&VpIgh{wjLu+;
z_>avX*G+cer_1@{Gnkyglnf?F^10n=Vg?&`t4SQ{kp*;kLhMgm%A1-&n|``)xs><%
zZuN8q(=te9kd}UhGKgpJ`EC`?Ad*2egQY+D9dGqx9w8>l>YwH%GH?dyJd$D|7}Bb1
z_oz$;W(HOUb_Rd#R!#=4K(#&UXoD`Ss>?vV<sNnC9yMW)dM1NsGgy_u>I|OCV0s2O
zk1AN4!3^p9q73%!QO+JUGlN+fEZd`aJfFerfaeIz6`dzKKZ6AV3q}1RH5G^M_~ra1
zY-$E`f61@gUtg91<A=v`ffb@F8D0JKkM<}!tjS<q2J16en?Yd)3xCc_-rt3}XZNTL
z8O%Rkd}9X1_bOVbO@7MTltG=nio7+0Z5h<_P~XG$40dF2A%lw<?95<S2JdBXID_38
z?8*3l$M<#yd)dbf4rK6(SoVv)DEb1UNM1Zm&zCZIS&UzA^<Rnps_+}4uZhz5dd7dH
zJ741bW(Ef{cuVX|mOIv*Z*p(>WAk@7r*qYz4Bq7qQ@qGK#kAqK`!9BXKZ6f4_%eeN
zTv`0_e+I`gIG({roSh}=lc4^OGuU6#fAjcJv0Qb(U-r`sKI062m%n-fJ{S8J84S7G
z&uUw=2$lR*1}8H(lfl^xPGxXf+`h@+>kN)wtsN+;Wk>4uPZuM9o56P(e9va+`2(cy
zY%uwp6ge--I^VlXXTN^P;Kz*r)^9Rj@cmN;KW9+ELq!jlGWdlP<e`LzU!~Na48jb4
z6aGEpzc89_SO0_iHvbc5J&jGhoIw%KAHatu;cs#KN0jfsuKH*3D?Bv&Jin-DF;RNL
z!<8ONdMM@LOvxgAQ~3jJinBeXJ%4h`dDvA~E90T8bfm0@u64DJdsTT4e7X6zC5!N_
z(3Qv@YI>;U;c`8#iifHms(Iklu(s-+|N3vfYMd`vXN5I9<i_MG4}8h>;bHzu(rbID
z<Kg1fTG0`DT{-X7qV%V+fro}3x_jv1p%H8I(8fbsITy=b<DrR%rtFS~79Lu9Xzt;y
zAFtrc;;(C;&o*ct&c2(+B;Re_%Jbjt&Uc81^!(Nys9g``wez5R=)$gfXz!teht3`r
ze4EFYq33z%B<=6$;fX_j&>m@@U*c+wFW}Di{CBc9x>e_p^4;aF<Enr?^87bw-+Y&@
zr2Xwm6l0N|9(sAW!^52(uJv#oN5I2C54}C~kumS<;d&1@c(}<!dX(O;zP723cBA+2
zyWs2Jp>7sCCxyAKD-`YLp?@$wJoO+CgFW0T?Ht0!-=g2bF*#Ad!5_R=vA<uW)KJOg
zMBK*k5N6Anyi4l2$HNE@snTkghv6Q^Kc<uK7R%)s1?<AT9`5%r%EL!To8QO3vME_)
zqyzwG@Bt4GN+l0@{=40|3fO?1!~EcRSnQ8*Fn_#)Gd0@77!SWagWsRQSPzeTc=;I|
zcn0HmMh}Oxct48?9wu@UvuKsYBoC84ywB5ln8NY*u*Sn$4^urn>0yS4nI4|<@U(|G
zPvl`5C)7jKLyU1!ylB|-ANNIgqP>a_&78gd(>Xp8abGT=@=N?AJLn<f!Q=3HFc??s
zb;t7`2$&vh0kY+R-y{-vG&+^%irb)u+M2zp_jEn$;aN_)2R`$8#zXD0{&S@19v)br
z^X8Gi59hg9aF&PXJuLCC)Wd8Kb2uiR|BIKo++*kJ-K%KxJ<RjKuk62Ws`vz{Tw&gC
zGyNaAE%dO+`}eATu|V6k`Z5p8J*@Ju+Vg*2GJ3Y|@rMWO2rn4e{fgS7rL@zfw5qdo
zJ{9C|6$(A9^RUOmUJvU%Z1Awd!%hzyJ#6yu8aI3o)92`$J#6t1i4;^^pl_P#A0JIt
z+xQW{F2@Qcuhl=_>)(g&;yg}Ne8jZd^M4Y?I~Sg%aRqIkhy5O2_wa^?7uZw}uXuRX
z!%LiK4+lIXck0)?P{6w$-rBe8pz(?8nF`va?wY$^e~oj^`q%6Hq1~I@Nv7y;a|7{k
zkZYN{-(J;iyME<l|4Uxp93ArTu7~$Hp3Sr>G5<G#mG`N`o_`a>8(3a=AMx;^hhkY2
z&*CEwAA30I;S?7XCu@m*oD<3}tk93LNsIJj+&A{Ae-`PyHT%rN=Umqw%5Tu$EYy$l
z%HP9RT(<lCn~oD6YOL4m4d`<BJ~e5dI?e8T_=U~$@QsIWJzU@>=HWXJ-+MUk;RnWH
zPwfo%AI|$eW$#n9uhj_WB*{V8yH7RmrhT$c{m6p*RP}hlPab||_d94)=jiMUzx`x?
zFM0kgA#dk@^YFWezqs{zz<!18`X3(t<OV)iAJxH+?MD06-=6;rp=j0*gMU0MtfKKK
zlEoES_zzko$=_Y@d0L4qkVUO5u3}aeC9^1>MTIO%Wl=io$5pwkf1{e2q?gHpKUgix
zI%RlkOw<|qjOvP6RLY`S7S%b_GxQI3=?uKeSyah_P*rrqsyy;jGj#s-P>n1YjWx4a
zG+qB>tzSd!Eb3&@IE!ntsGG&rS=7s-eilE^_y6)}-U^+6CdL43kVV5R8gYNvq<1N=
zy6^Y@SYW}LJpN%zlPsEM(JYJRS^p26_;*Hp5b@$N{oR$imPL!Kf4_G7e#K<zUK+V|
z7HzVyvaqvgn?<`U?#g0V7J3%#v$#Hs8?xw-MP3$Nvna@-V-}sV=#usS1gtX~FkgRu
zu0DN+&h?d_^&b=yIF-G6wCR?G%A#i$y|U=eF)XF6oul`e;g401ET5>WbIbKPFBV*z
zMV~Bgsjsff`Z3>Iv}tEWW<4MF(r(P+rYr_#F(`|hv;M7dzbv>+7~Xw3&W*G>Tl4y7
z@l#K20K<D@-pT%|a}zZ<iy>Lup2Z!kJd0bi7@EaxS*)9(PpzTuspS92ipPcL^(r%U
zE_SY+(S`b*S!|tFP<*qV+OLLZad#Hu*~cvI$zntn4`%UD7WZaxUlt>?xIYW-46J0_
zJin4r5@Twa|CezOWbxi2od^Fs@Zl^TVSlq2n+5+6jFa+c7LPH6*7$!TS!c06nt`__
zkMKAreThC!$`am`V@bX?k(+-Oku0JdoGhkf@pKl`vUnoPo9Mh73)PcZOy%^23O>9>
z>(W$vilMtf=OZj?D2oz>dZ&h3IO{*h<|-aqsM9l+MLdgC7U?XWo24hRSn<5Ra=xBq
zon^E^v-SG3_4af0uPXkJr|W={qG-3f?CvE?20@S<W)RSZ0Tz~)B$6cyB1#aDjFLpM
zU{;)-p3sxKhagErkSLOK1~DKgL6DpU1ySGaZ~uPh)Vb%@t*>&Jo|&p@_q~wvffpZo
zakHeoag_K8d*6%2UM%rqt{0zqk?<nvh1Uzsi?A0FFMLeai=Y=FnP`450vu@^_M6n(
zE9@nj<HYb{Mmse-s&EzJjNlCAe(Wd<yjJ0qU$;q(v6Z~I+ST@6Sne^su%s9ZyhwR*
zGNg=K?D;gV%=3cVBcF>Y^QG`4+_JTh#cSdI+>1q=wqGe73%S`@OTAd;#bz(IaMUeV
zzVKodd)$lVUVQ0Azxm1v+Rs;3dhwOl{>7E<#(cXYcvNuPo}ATQe8aev-Q;V$Ag=Xd
zosji{R5myU8@>3JL#2j$6X#1!H$NJ<#hu=*wDe-17yG@~&XRkv%ZuF{uKC;pg33;>
z{TB>dfa8k8a*vF$y<9_r%B=}1|HisDGl$E?0WS`7oOp523;z8<cSuP6@=e&1){dOx
zs{KFpcU~Ol*wFB{hVMB$xNc~us^Ld3e)8gh7Z1HS;l<BhT=e1+huIg(NiWWM@tYT?
zy!ge7Upf89DQ8%W>h9BQ((y`cXAY4cQfIk1ELG-yrJVQTf)~Gg!FAwTTeUz~$^AQw
zALSfEm%X^cN_laIUFpR&uYDNyrWZUN$>X=zy|}T+p6NG4Az}O9l3pOc>qWa_?msx+
zWqk63^}h6bVMF=Li$A&2#*`zQ?1u^tgV?m3zrA?G?$%IP!#`g9%bBGiuZI7;NYju<
zLxu*P@k!Tkag)jeFMI_0w4pmwLzV`fao{lHK@2_sP<(f_l21c^4Fxn5)WBK5g^S~s
zd$*Q^lzuVge!^bfAJb4oLpcpkXei2Oxn-W>8cJv=rs3aB>ea85{nK(vYAB_lG~Fs?
zN5p;*N?WBYPbg(HJg%XvX8(&?VzbIMhg*-x%WJ5hp^}Em8qP$OCs~H5z09(j6*V;c
z$wN{*p&ZD_!wJPtnQ9uUYiO^bgN7O!YHDbp!J~m^sB3Act>GyRE)8xCFKx`>T;r#3
zR!XVEDr<N~gQB6HhK~xk`C;@@($3{+&EAGeLZv>_iP&}LB;v}@P(vdP%`~VQ8f(bb
z@L@A|6XxPq_>9NDVmBFfD>c=SqhW0k`|m&Q>3UW}a}8}YJg=dJ2Cg$(<4S7{ErrwD
zN=VJkDj$KK)9e+AxpRVZQEIE%`xyCj)Q*`NO5SJP9W`{)Fi^uF4V^W-prMzB7d3Rz
z&{ab>4c#@YI_hDUv5&r4uk_Hs)rPaCr)ED=a#>(S=<Uq{G_UuvhJG6QuyHi>Wom`p
z%{HsECMo<EoBS0f)l^MvR{LvsRYQ->>hR6#?9J-x&FTOR$2Y6|Q~NaygZbR9;Y|%g
zGz`@+Lc>T6uWSEXLxu_AehCiv;Tm|jn_VzU!)QMFYZ$BHv+X(jla342waqF&O}L3}
ze^e<tBWIk3@fs$vk=G~_G)&aMA6*M>QTgjPC*bpIayTpBVt0>Ink`c{FIA>!n5toc
zhJ_sGmS>uV=^AFR<!@vkoaa&ga?NB%Yxr2hEDi5yn5|)s#!X_%hZ^41@E#Y3E$aIk
zTJ_AN$P|blh)BX9I+9N`e5xU)A+BLA3$MY)F4N%EaLw{)f=#!mZ{K#&n{hwWuOXlz
zq`_d<h|bU;7p2=SlCaoQkBE|)@{mV`lO!}GHCP%_9B-X6>BgS$m>Tac$YJz(Y`qhn
z`AoLGo8Geb@)U0C9<fFJT*D#_D>Qt?$)(}^UDt9Ae-ukwq9JX*hi<8cWx~G@oVeRV
zn=d&Re)C*>lulg9erIcI*vg5s(epJ2vxapXKN{9Zf)vS#>osg(o6q-b(y-@H&NrO<
z3q0Ry*vKh7RHYkoFoz1sv@PmpiEC_8s};_wzR<J&tc!$~KJC!3Q^PLJz5t4MJ?&;v
zEU;$3CU~!geHwn}lBHok2a<+gSbYr#H5}s9_`L4V8V+;93ja~Vu<goGj!Z82!jEbA
zP6+iQX&J;<PI`zxh)9Jg{G@^62}yy3%1O@Clb%z8W_reHE<_rB69a~x6>?4kgXpCt
z@w^jyfo+>^XLL!FD~^6y2%}tOj|;ypcw55_4L60eJdAsb)k({s<sB&i`CTD)n!md4
zNweJ7@TX?qixvAL5AmUfzd4e9sO!TcF8*AWeJJX~zg+yey!!wj7Us)H^C82B>zVF!
zpWW2EGu?T7Xi+Vbgx*XM7Zpm&>q9;t3j6Sw5BbIZk97B@Nf`x%7ZfZc*eo-RsWEh5
zQ`?aj^P#v8Pxw$?QY#@?R<NWGrGzlA(ms?C&M1#dQp>ieEJisWQkm}NnQ0Xyw2BW^
zeRxthbE)V9v65hAA0|%9pqHst^P#3hB(Ls64JVgvThv-UxLEf>X-wSh1F^Q?Q-bvJ
zweVM}tMz<n;KPw~*-!g$e2e;w4~h>%SLf9C+1HVs9iv<xs*K5Tdwgi<Ln9v=Gj}#`
zx;xv4CO*9ELq8vy`jF#82Om26(98$bhc-Su&(IH*XW7m^wDjTf7PYw#1@323oORdL
z%7^ECSUL!;C5Xz`-(?dS+SUj1^sQ=pAKD40e*0b~XFA1BK6Lh>n-5f8V1sW}yZG?s
z-+4%O-Ez^gs}Dpb+ug@)w65SCR}UY03hyOI@kJrM1^WoT<U?O4H0?q9D?YsH!|Of_
z^P#^F^;4dKJ`D0<fDg}%R_HqBNqbH7!9ENT^5u`&mz7M{U00KjbB40<g$(y$&K=iC
zA4d7`)B?{4A1dB<O}Lk5v=3u^80W)yAI3_7k6g?ycPsl1;Vl1~PQ}}A@=WmI^k3Oe
zAI)Z(^iJ~OEg#m7uQS<)X+qu>q%uXwR3AKdT=ddS7iESIGaZ{*KD;A*wxi7P;a%bH
zIm-J&KJa11DLb8yefY$O9Sg8?0Y3F%F8ef!mQj4>gO}qZj8GVw4?b2igwY}BKKSVk
zKo1~510Ra{QQVJ^4~7ptboA5__94PSuA`ccs1Gq8Hv6!}hqw<3A6BvYJ|ulGeVFgV
z0=Dp0)#7})?W*{|MV{hd+p5m<VfY=}yU>TveOTth7d|ZVVX+Sz+cY^gHK*Zlb;wqA
z2}c?e>5gKZ+%vYSzOCwVjv3CTt?Ej~+N$1q;9B9sS3d0As{XQ7CDv`zq|i2%_SLqj
zt9{tu!#6&xVYB#<=RwnTtYFf!b+pppEoHqA&u&vmI^1?W7^U{vrf&4%TQ=zoW&AdE
z69?56Py6kjtv+n?;YS~S@?kq0(}%;HcRs#+MA_-X9v}Alu#4^az_nYD<o#{xigr!*
z`EbC8gFfu{q4#l*DdLs;*@qanqkCl^_3I8z=zZ;h>nNu%3)9wpj6n}v-!YxDE)wG4
zd#>+&_(4K9Y*T4-!iS%IxWw7#!$}`b`EZ`&>W|D{eE8Levs_8IP`s<0_Th{Vwf}ID
z_jykt=G=1)xtjeOCqfU-L09nyo;`0V7kv2Lhl`TqKf_edyEzO0wDY~<!&NS-I`Zqd
z#_r?N!G+?si|z*7--mlX+;o&%LT(G*@!_tJwF8^b_`dK5f`1DBCCH$AgKUF`;{BVS
z0*?NV4_)52JLNx7(sVoDbiq7=8G@fqQ!;gA>GsnC1WED=X*yIbprfFU>fd=P=qM!i
z#dVa>QCRq6f=srEj-tYgIm)IDo{|nPtD}_g(vDI_$K%3R&ag{JS5C(hPH1@@$F`{y
zpVav>Wu>C%l>{q0HdUllw5hJ6hK`0h8tJ&PO|7Y;o{n0Rm0CJnI-38J?$(iayINaE
zted?SJ*A_Lj&40r=YglLj>_BBvICoBZ&#nz@r;gH9hz*It|&U{>tMIC2ODs<ZdW}z
zMr~K=`gL+Qmh@ZbXsIJxM-v_IZ&#b@$kEYEM{>K$#~W4W3lo)Rb#%R%O|o{o`r~%B
zIYl9@bhOsdo^{djoMigEj#fL=HZ1B6m9Cm#TOI90IrY4|$zZjkj!rt5csCs{?@&AI
zXxhC=7acE%cjRD|VpkEVPdV%Au7jORH))63OUH{kbRB*jy>;}_F+;~p9WUwVt7C+Y
zkxWEKKOKW~yr$z79k1#b$izD|=`WcM(BYk|F!#@PsQGtzGRCM2cc@!;sDpJ3VbEFE
z>pD*CP>1U1{xE&Qeb*m5)WSQ}VLFEESUE`L3{^(jI7-K89g}sutz(Riu{tK|n55(9
zyzV!2ys2ZH&i7U;Okuo^2|B)ikj@~pa}%y7HFv7SNpo^q>{Q><?T?aC-9R4h<es8q
znv}E8PIW3**G_JJ8nU$0rFmEGu%9_+=_t)HpyM5}d||pWTgUUqvL`WF9q+Lpb$lS5
zJC{v8RryfIM>;;%@#IwH$G4ThPW2Nusd%Z->zS&Me8%eQ&{&=aE+1Ps=^+{QU(>@K
zn=IR@26O~<?9{PKM@WaE<8vL0bj;r63G0aKNa%?0BS4CDZlQ-A7t_&rgJ(dOCP^Kp
zj<Y+}g*q$_p2-SJJ5MZAI#!>_VWmE}kUd|=0;a!H<;<m*;)9*)VjW9#d`&YQOJzDQ
z*YTy0Wvs$(&lmLW_OP9c?NV2;k67_t>Q_3-baq#GOW_RSa<_`b>)3?VS)*gEj&F5r
zl40<1p0sr=h7NU?x<ShGjbM-C*~=DsHtHaroT_Zru|>z+UFvoYxn1g39X%f9*~V_Y
z?>c?c({Z%&<}P&y(>#(xM{zeN9jmG1wvN3z_ObVM{GemMZhx8_)Nx410UZ~9@X$4$
zsT|f(eui?C%LOAo%5y}=;$140tXax;I(F<*kLwu!s!A^tA2vq$QO8egPaWqtRypK!
z{Ho)$tRyF??@~|6g2UyG?iU?@?NUjK?pDp|${9|IQ7SX7y<45}gXcFL$EPdjxhzaq
z+U!;@==fd7(B0}q9XB~^rYq!^bX*qkiXfG%Laqs37rY_Jr08bvR`2Mzt0Rve8Gihs
z<DQPcbv)wC<#`7kf3iqiVRoxE#wcrds}FQM)Ny3D%Gz<gy}Vl`|3}BaI@0{8yGK2=
z)swbIrTb4u**$7>jGFF8%ROqxK`K`p#>(^~uOIpRcxjKC<p=zz)T2q`845AK9|im<
z<VRsY&dgM}4j1%;?LhZnq`It~yW#-#F+Ym<c~O;G)DL>SdsK2x(h`1@^kaY@1N|uF
zM`=H*`BB}E3R&(l%)$>|@cXzQW&QY|QsZ)dJmE)qKX#?1jXB|(el@#-AH*jGegC?4
zop)9A<0|L!)$GcCRPo#YKUVcaAKQrEfXGQ|_)*i3o__T5qm~~oKbrcH<A>YNpJ?#3
zAJ6!)c#ry&A9dI=;~SB0pHh#cu6XPDv1yM=uOi;YelWDY9}WEQ_)%_rqlSVc$M>k$
z_Na~gya}PvWvx-3y=t}}P5dA^Kc`Xgy=pT*R6pAL(ZP>r{b=q-D?eKMd0%m(7HoV!
z7LLtWI=)e8RwLIN83n%fFr(-Ec;1h;epKD7wqcHY?XuCelVWWBw9%bFqcvkQI{JBM
zU85KL=;B8wKaO1VbQYxLH)AupN(sC9(Ot|ckIU%cN9VojxCt4P_Ns&Ss^l;F?JqSi
zvFR$hd;8JHj~W%wx@X;7eD_LrUq6riqMskHu-%e%zyCM8zaOvqK|;6t-|Sp*kRPx4
z@kRh|1~Ax<A?)q|N(C^~kJtU!=f{3OhWRnv53e7ZA0zx2>Bls7s2`&^-p;w`CiyYi
zk1^sM>&FBkZ}@r4!8RD@$9N9Q3$A4sZR5Fn)!bMUCG_7*uDAS{Ec|UhrV5!N$SAa&
zKf+FAh95Ki7<bO~t{<Q8RcHC}j$^q{Q)UaN*&IKPUb17o=g0dTlYV^Y$EOnUBf*dT
z{3Fax=VF?hNX}eH=88!28EbvfR(xz*KUT53FS`7G1pHX!$6_`+AO8J_OOA#gVLzh6
zBTjjkd%D-IW6UYl&b?~Fk0d9ZD4z>jf+@jyf{Zd>$O6HIQY4C1|FLVd#E+$Zd@15G
zDK<;~1xxsA_SwDaa#3pk?#ivs3Niai#FfHXsjvN5?Z+BF*81@+r-@W;ogW*8u$t?I
zY!LiL+JWLlukwUfCE4u9ZpU(qA6q%uAK87nO~mbjI|O%f1#m3aU1++;kG<k$$I+f8
zJmAMcKkoQ(*N;Pf9QNa!AHQ)5u>1V@RSL{*J;wFHj~_YFH03)#j&t<-(d>eYURH<r
zlOHGiI3)%@3sO8OwI-osUc_H=+f!3c`|;;q^^6}hJ}bGfqf72n&--z~kDFrlyC56<
zija$fm;AUaWV@y?=&B#r#Cu)vh9L9GwYeo;n%(B2G0GmjfB13F&wo^r6|lYc{rJa^
ze_0qm{u1K{f`1D><e>fC?s2+De)ziBIsWIQnJy`$3DS~5c>>4~FS+NU3jyQ}plGfl
zSRjCc0pxdVrtq^s_+ySzSO|Nwh>(d+Uc~|^9zclz{$F9-(gBnSASb}rIO6dD$_DUE
z07?Mm0(c^TssU7!M9K$H(Mi98kS7J1S0y2p1*-_M<g9Y_0BQtKJAkK1d`is#ToPJK
zkj=}%;|_o;2FE#vC6zh>du-GVppdK*^~C$MAoUkCrM|>%7(k-{8aR1*gs|%y2XIz8
zv<d5S(Ul#*D_s;O-qf+==akC&wy57dfF1!n8$fgMwg{lBkd}h21X~L}7eJc;o)^xD
z9Rq0V@OA;TcX$UOPwi7_(@A*e0A6rHy9A(05JS5K(8b|B$paW2K(7E^44`)aeF7Nf
z#Cl1{-~jpt@NxkC#5+Lnl>i1vBCm?Ke{Rq|bzlI4gumust{L+kBFa#~*PYPeLPiLV
z6dWa(o8TD9g(-{;fC-X}3t)TzvjdnDzyuDY06uyg(*l?jzzR#98bGH3%3Fey1?hcT
z$P|7a4N$swRAv=a$L&+62QVXmnG*EmEOnL;hQ7lgTHZ|?MtnDb_X4<c()C#Y?+f`@
z@Phz8WWK`JU3Yzd!}ZBNRrTf2@)Hq16`UKu(pGMYUh$G>0n}`5D}Mg?6Tmw`%nl+L
zK#1)h#EU@~0faeLgQyuqB!DPKQ4nQ=hy@T2;6wmF2apIL8NjXpb_ZYvU<K^Mi90wT
zOSw}4%nx8e0P|>n!bMjjsVofO_J*8A0W78^6HhAizOy5z&je*jz`pWj9Xox3vNV8Y
z0d5Asa`94GCFD!N6@p(0u4KuJx@kc7wJ56t;J;LBgs%<Y&@vB$)(5abit$YVn}lo>
z{5H32`|NYpn{)XI*OmabI(%CI+a3O}p~^c_cCz=I*<?=uyz}Qf3EeBWFM$049B}Lp
z2XN5ghXT0VL18XO9ObBxV}kZpJt5x<{vb%>9|QPFc-~lDdQS#$ic3}yC4=}SfL}TA
zPPmE%?T5hA0o)DXj{wdDP(D`oYyjtk{1(840Dc#KUU1-;3>sVv;JSD(2~xQnz!l+F
z9pzd8tM{o4x*^I<!CQj29h*Bs_Uu#d1#mwA1d%t0KSg{Lz&}F%3gCf|hk}0#R+`j^
zDgP@xPtYzi-G2e31(6=a;fZ!3>GscPl;MPC29YKF_&)XHPa5TO^g==8cX)vy3JQN?
zf}MV0;g30?MT8U$VphNoEgnS6Hx+JEB$f)Iehqh|v&u~rB&Ee$CWyBCa_B7=#1lbO
zVeMF|ASwi5R(7*To(!U5(Eg{aauByKXIBa$^Y`rYcU*M*se#{c=lz||C{-n5HNonF
zsjNJ;f^Y><H;8&cTq>cu1*gr=sU1Xtj>=O(oY|+=5u}&=>7YH2ngyW-@k|g((7t=Q
zeh}GgE=y?;geQm|3zc#66zUCwXcR=_AYSF>nQZrieJXb-ai>I+Aesh|6U4Q3IbX|$
zrFDyxXM<?Ysm)tDgJ{7v3F3KHJZNt<X%$54Af96`QTs45_eZq}!o6R;xh<#Ie)ZY&
zITvfW+Xc}+hz^XnUmfv+I#+df45D)oB%OkCgtM^9(?HycMx{&8zQ=&~vUUxkTM*q@
zW>I*B0<UObP*3sp-mmr!qEFENYhZE^F9p#zh%rHo4dUe>`UNpGh}VO7g%u3qr*!uq
z!7=;Q-{I~b!~pRQ6x^MjL4((X4;G|%h>*z#vg^Wq>QMHuAcnJBv)m(s7{z>hWsVf@
zAzh(3n$^#8(^04QjUdJaF+PYlgBVgZllnTisZR)EqQq(gcOYNdq#)i3qE7A1jt8>e
z&T`ur#1uAEUu7ysU=V5L+|$H6U2ulrOhMXkuQHK~#vB<i8-n<TJrcxwLA)Qt2SKEQ
zm>0x{L43sZSsLnN!MTE;2!0wwnMZlFJZS}PyFLrT8-y0b%>^EvEjd$}^0DFzf@76m
zvHd~(x6MN_AVERFkf0GnSjeS^E*eDn5x}7sM1o`fo{JsSf4wKkiE!Ix2JPSdx{k4b
z$FPF-?<Xz3^~?`qLD2py>gymD2Jv|iUk0%vh($px=IHV%Uj(s)U6$cq8U#1`a+~h#
zQ3}a2miBB8H|Q>B#otuuj*sO&PmJiUtO{b?0A;1{Vttk0QYyXNC%-y~H9<@|?ODr~
zFYjI##HzT5-y+wGcTg{7P6hYIAifQvR|qeLuqlYmY~B#^g|H=vt<uzcgV+|d|G3!|
z#BQ#xoE@Ib9W3)H*O_e@JA)|Ivk604@jdK|-kIcdE4pRx3u1o|2ZA^l#GRnM6X_7=
zX3)Mo|5gx3f;bwqKdsIOaV&`MWPY6s;y8!2UpX7Zr}LEWIrxM4kx>lgqnL7%of}hr
z3gU#=(Cp_RxTS&Q6h8ujXx7qA&i#kKiot0v7ecrpiaHbI$1!K|Z|teY_O^=5)1C`K
z{2s(bt~Ojig1E{h>$K+zi)Y&Va>*H&g}f#@H=<k*;)d{>f;4zzjdEKm#l0ofHs;(7
z;*TKi1#w@h{2$kUPOg&fhe7<!yi&?vf)50l^2httM?nz(5#-J~@_&P9kg^H4xTJ-U
z9s)_85Hdo@4B7iMvO@L+?|;wAp^lLKx&acaWLEwV3WV@n2yH?r7($^CTp_qaC>+9L
zAyf(31FuL3MTL|XEEYl;A;kr0P$GnqA(Rqt=@5p!l|hlNSo3<s$3rOVSe6Un35WB~
zT!vN%;Ym>{3RZGLD~IGHUAns}OD<yd5NZg?+NdyMO~<lU2$wR_sMHSOsSutOy^dg`
z5E_S2*RiY@!qdW^5mW^03pNn+2sRYVEj*LW7H^XfN@UpurfV8PP6*9H;A%-T)gkmY
z7h~GA2%)9$R)Vbs**FY(K7_U*bO@m%OI|{47s3ZhCV%7NjA&2s-5h@Qbqb+#$euDi
zL-tg9A%t2tv!5^P?h-=R5Y}w<bPJ(-$X?#*ZvCBZ?N@t*KvYZQxTZ8Ro^baLp-;$O
zlLvD!gwQvH{vixt`dMx+=`V-yR$88ZA-oc@*Z)^T80oC-sGm77gh3K_<9_uuiNbVB
zr{!_ybu;>q5Qc{Ex)@L&$sP~E$m<?1I3k22`_)64X;iN4S7|>cgs~yKZ{Pz1Z-nqB
zhm(O~2F8UjK7>>V^FsE6!35f{DMFYS!Xy?igvnAtJ_Ech<lT_{s4yjjsUb`YVR{I2
zXuR7q!)b@(57P4-P-liPOO$s6XFH)=|4hH0mbUP$i)QbMnDvqJVF(|E5Dp;{!p9+e
z5`q?jFN9A+sFXirZU~=+>~+}pSNfX2(!C-3@3Ynq()n{Si5`MKgkT7vkiBlR*Vq>U
zNtyNr^*__OsuQ)p(is#DAr?Y11T$o>_Hn6BLOAO+`yc!N6eeOx)->Q>8_Z~a2n*Px
zAsh{1VF;gxur-8jAuI}EF~>#->q1x(!cvZw5WbS$Toyvpj>;F(9qioYA$-Z{nb%Em
zTBl6nO6j{*A$-l2>|}o^uMVM3TAnqcGYUVc=}6XxuptCBuX~dOeG>vd?l*>T2=1Q_
zWPdASZ?`?nHVc2^fV#yY+lA~2VQ+|ASZ$k~A?)ICI*`pL4dQO$KfG#>z<nX?7aQ`&
z;XWYzpx_~?$YHKadF|(fWly+|h45Vn*Fv}+!toHk582=BPKD6wr0a(eeq<wrkiSUU
z?4oH@PK5Ati2G^r^Z}LM?|KwVd*_Plxx98z<14OTLikmppB6k5!r2hc3BM@#n;_Fa
zAHoIUzYD&9+C}k_@XL<P6(Lt0gBwz$M<M(p<YoxBxO5y)Z;SVi;Kfs}yF&g5aUZ5#
z1-kno{3-me5FUi^kW=Hd>u*t5FY*FK?DGE`!hc+=4Leqvfpi1;^Q7f7kjDU%ePx4^
zn_7l}OtGOi%K(JubrdF*-#`KJ7Bo=E(X-FG=w+109Hod57NEF+5(e5DXlK|PjY=9Q
zWuUZh?(HdK;Bf=b7*Gt9HBiog+dyptPZ%g~po)R21}Yf%=z@J<s*-^xY4f5|(ZGO%
zo|o%q6Du3`S2H>uAFF1dx`CPoY8e<m7U#>m`Gix$u!;X>y34Rn#^vg7xH8FkQ0plJ
zQ?GdH81|v9`=c`IinpHN(}FeYXVaj*fd&Se8)#v`W1yjdW(GRD(8#b)v1J=*BE@KI
zVB{IQs7(#<Y#oDggnXAjjSp1x@>rQ_;8_D({>}4VB{|P{#naNja|YV5#h7d!cWWtd
z`zxLfXFRlj-ayGK9!7t+yTapy?G1D=(4Q?}pre6K2D%&Q!NM4L!9Z67-3)Xw(DG*&
zT@80;$D6JS?#$2Sq!oDy;XMuXHqggFF9R<c|NH5K_B7znATJqs*+4(h`wDhHpuS>Y
z%mJ05OzKtP^fJmo1A`1qHt@EAPtIh#W?-m+*A4iNcm^97!mcl#Mb1NN!wd}Ps&3#-
z10xK)HyWc1uwJa)NU387WQ=CYjN4NgYk+nC^RkEh=gXdP>`((d{x(T)*+fh*Fwwvo
zS7!gKp0|ApgWi%(?Cr`VpTfQ~Fw4L@(l679129AQbioQY(`QQmvUAxHvkm-l)3qEK
zD$g?t=XiLRg_P_*KA<v}4>=CmQ(?3T<6~CVK#?$thViL^xdtv6_}#!~2D}FL8Q5<?
zV?_+CHL%WrZoqF~wPd~biYH(oX~2{L88i?QVhDzFd3kq4NYp?~NZipAY(p8nmVuNE
zzhwsINdvNuY)rcO1{R32P>{;!LKYcVEM$qJFBK9zXphw|3@n!f$-fk`g4K7Fl?GNh
z{A>0OGHCW_q_V~Uk+W&N)NW!$_f7*FjQ^cd{KmjWhkq+%lYz}bwg_$&+$OkPaEBlV
z%!c~eyA14RM^|+3k*Tpamm`D9x1%x+7&vI)N7@@WWZ*D|lY#H07)J~oHE>MqAGk6v
zT=9IzKDuHb)uc%BgP8s6%A~>*ojizo!obf4&dP|ra6aRt)azFRr(`_*!k+yv4@>p?
z5zlD@XAEQ=@v!1_9Ny;){3d1;={?UWa3+I67Y$r8aNEEg$?mdYpM<?41GN+EN8hW4
z{g`)6@VbE;La5v{a7*~{Jhs_g;eQ&qGA82>N$Q^9eL<dgW-b0Q@Ibr|xvGclWdD{}
zj|Be_{MW#L2GS&y2I)fBkK~W~BO{E=FtS7}APB*{g82k#nLli=s3ZkNDI{3f34M$y
z9Pu!;SQy2__Oa8ZVU!4?WEj=Ls2)bCFiMBPiB=_yGGRO(M!7Ja2xH8v_DWthjM$3`
z&*!p_%7^W)uMozQBJM#(MIn{Ks2m2pJQ7Q!<sdnRTr~_Xn{@oVs1ZiZFdBs638Pln
z9-?)^s2heW47YfV!yeA@+F?8uwikao?X;&}7*B`sj3^Uj?sGlK4OPOZFFMD-rIYpv
z?uKDr(~8Dn`1o!2gezNe=kRF4Le5cHaYp0<l@mrY);A0WwG5+G7|(_=;AdBJ!4`sB
z2P#y!y7EXY7uD8baM9*!{CpT~!}jN<9=4zG+l4Vbj6_;m`!G6$@y1C{$1q+9gHQXN
z!Wf&(q0*Tx^SMpBgwZvOZeer}V_+DA!sro3Pi7ake{MSeOeV2c7%z&qx8TYa4f}+#
z@PJD9l90ZFFAMe)d?k!m!{{%3;{lb9#{CCoFtyjh7#zm1FosKNL&A7n2!n=(!TsbU
z{PIE^5ynW?rI34?7>o+ztuR(zc8}&T2;+0B-dNTyj5otre!kA+V|9q*!g%koy6czK
z9Un&gR-Flg69p#;GL-t{Fy59lr-V_YUFOs<ZttwOe@UHV2UI4@9GT0EFlL4^D~xxz
zl8f<d!S@AOyg4Kee^1CS0sGti2f{xL<0BzFl0%X16MhPWF*l6QoLE{IUg7^uR{O5E
z<NCt(rFkUmO@9~x>DC(uRC<jt!kl_hWJM7PBN|522y!Bbv0h=^593dEdKk$twuP}h
z3^NRi%@xKfrWv;X!RPjgFT$7?#(eQE2xGAj1}$WJI($*s-e^H_iK8qPvdqyLv|N-g
zIo=$buQ+VFx#yNh`#Ox(VQdWJ+c0ijbFB&E8;+kL%38;AT^Q?yZxGB=!p>_!Ru*xS
zW3x4k&BC{EAYFI$?BOQnTJ8vAXBdaWI1<J#DboHh4ur8=?Dq)n72GGtWLX`?Jt*Eo
zg1=nIpq`uH(J)Sg@pBl*B<MTA<AUD{(((r(KZfy>kbe)T6j{5IVVnx%7pZB9Qfa?B
z_M1E6bQovEdzO=$16%kx!QZ$xI+hoN4DID+f|tU$Cf>_V=#?<8I(%l1`?~NOVcZmQ
zD~x+i=<P7>2*2wne}s`+K}KZae}(aYi)sXAB6t|a-(eJspm@aYqeo&{AcB9mK1=lf
z1hXPYi`XNFE?r0-!3@F72s&T4gXj=JUdJ+@ko=MVjiQ1P6cVLy1dlm3ELahT7mfU{
zoa^qTmvDGVDHu~O6~XS?>0fqnKORBZ2+BuLK_Zrm;0eb#JSKw)mMm!xq$eYIN(?GS
zP$`1S5sd8Nt{K4_UEEb7_7JTqq16Pd3o=%X2%eQLAg>jH%hBBt)OPrWQfYM}s4E4l
zC!!~Ur-eKts5qAOg)|W4P-*Dsjf6B7%#NUmqqFeMB2Zb#2;O8#B4{4L%MtX8phW~N
z#jKmOXR8Q0M9?vU))71>I%ifJC!Obow2h#hkoJPPbGega)7j}4*7OAtyF}1cNbYFq
z9zhQ_lw;pFf?mR3bd=r^^b!7&U~a5jd?ms^IPiJ|!y@P}p@SlLErJ2UPxo{Wl#U=7
zEDFmoG=d=x&rRe`4|{SAk6@Iek6<S{oc%aj_!vhS>(ppm1mh#v7QyxiCPXkXf<y$#
zi2aZ=DT0q8_&9>MBA6V(+Y$TsYU&?EFh%&(2&P3aUHA+^8u0Vl{vA7lSrHUDsM5V7
zWOf8|9Oc~z-gEf-LKy2q$+Yr8m05fe!KV@X=8#|nUr$lzM$qYvMp^`)iI<93NT-+K
zlOSD?Hhv)iF7gLedP5Ny5j<W{4Mz~=vL8W&^S8X4e@qj{1#=h_7v<An4!vds7QJQN
zt0PE7FfW3o5iDcLPq=th%lrry2wxb%;s};R@OcDBezYHb7l}S>y#4e=FQ0pfbYDck
zKS5STusnh<BUll^`UC%aRQ^i%z<={lq0K6>{5k@DFQ#`*1ZySDbrEo@-lhn;oyuMx
z!G;LF5zfRnMzE-?`mG=zv&kuLj$jL2W%pJ=`v-g;{)%8{1ZN^R8^JCv4iOxU;8+BE
zBG?<j^-;Lj2>T+~9|13oITFEv2o6SYNWAQYticL#dqwwQQE2n&Z#l~w+s5BTa6E#O
z5u9SmgOu-?^2^H45mXK4{1Cy9LVglFA;@$XL>rP{#F&Zns+YO+Y|gI{G>WLFMI<>F
z!EX`p+|cL}Y3C!j5WyoZwh{au!NmyfM({@jmm;{#@<(ukmTX~{{Tt>rAy--cba&yy
z*+lZ2T!JDzXNo%!<OUIGPe+ogFz&qw{*2%+uFSEz_ak6*8a&|QAHm-u(vo5>@)vI=
z{x7Ez7uBd8B`s=)k`U8H$xR_6YTM*y1nN;d5k>hZ@<r|QWu>AhEhK-G=WuPMU=)Rz
zlyG``9#n~sMNveQqJqVo(Be^)5MENSNf-N3aP<rBGEoqDR~zy1D9VbroZ!t{*~5)S
z6{2`D3MGpAQB;ibUKG@h;;ASqM^Pn;>QU5)qG}Y?qIgg!jZafNiB{u59+I1B8N`}V
zxT0`J?WgEkf=9$`+oX(K`#Mq7jp7*zsu#u6QS8cRN6a;#F%OsJDh;CWMA0;g95HSv
z*jTWUAfqs1wv?nv)IOm${Gk1S$LP(XP{rn1K^BsF^C<Wu7)h%rT1WBqJglCF=b~s6
z#Q_rsO*|h(+bA+jWSVFfMf)gvN6{yW4w48X_K2cm6rG~z9K{P!bP=8B?^tGrJ`6YN
z%F;HqpE<il(Op7+5N}W6y`p$A3Kk}}f+R0R(Km{JlXl@>j-p=_Z^bY<hF79^HHu%N
z_%(|DQ4EN}A4MRFfl&;K;+-gFNAX$|gUO4!XGJk2Y9FE>8pZ1@b8$D1`VNa?cobu!
zcq57ttYD72+tVs>q;Qf^LPiUYiQ4zO^3UrxqZk*(^eCn^w@+b@CokllBsf8Eq9Bi2
zza?a{;M;;z1Zh8&(S`H&0D5OgYBL4RMG8~qKU{&lS#zRzmuI-5@J8`o)LxxFjN&69
z??>^05MEzEorl&xj^fj(ePaESDDGBs^CUh`WY1-b6>#&;0bXLDG5v$8PjX?KtX`t%
zQB2&J!*2onHW7>>6vd_}Hb-GZ5suoo<F4iNe-u$B8^sb9rl30(1ur(SINGbY<ARAO
zk{qJT6)L7Ek%MX~ig{u=U-0uNZdP$Gh+?65c}WWsS;P}+XFVh<4ysF~oXev4f)$L}
zuZ><V9mh*8zGU2zZoUVNxWb<4%2!dW6meA)tQz&N#k-ni7Q)(5To=XqC^krU^QCDo
zt?+!qk?C=7jN;oUTD4cnPfk#F9aOhOu{DalQS6IiTNK-)*vT42v4hjUf%|-Y`;ww_
z2UYG_+AXDGrk(}Lo~V77EdOccr5wCZcz+Z}qBzRY62-wN4$)FB96rqT>QFWf+C^-$
zV^RA)C3e|ysp)r;V4qdC@_iIPMDZi1-bK$(QSiQ$6D(3^`$`|WpQAV##VP6ZHS)ec
z8k~;uA_Ax}JR8GV&LA#;F%*vBw<yj>@plxDm>p~3a$k?)MijqCaZ$XN1g{ESj^c_C
zn(-0|;x+N|Z2Qe9ZbfmAHI;mCa}9}tW1Ho<Bg);VePcGg{O-xOFa0Ui;W&91#b3hf
zl+1b%#lwSYu|xK|f!H<wa5_hU81^jp{1-)93>h&yO}^14J!W4;k|$<gSW)Yc%D(1X
z-WZfA23dkkA=zHd8^ecZv-8D}KZeoEJT1>=7l@%?47@vneac>YEQTU6-gbq$F%*rV
zSPV5|s1-x;7)r$OM2!26(BhC<GKS$*-H*pmO1!0G80K=95zgw<pwA(-Yz*aM;GHd_
z52?J~xkAjo(5Z3^RfIe#STTl5LO7%uS~X_hV#LPeogsW{WVINoi$bx65We}*6@xp5
z+A;gZg1qHv&LK5=NZr0Mhg0~en7wMTJ?lv|Jux(l;prHji9v~>ehdv_*fu?fm#eHg
zr1A}Je47tnB*cbl6hmW)n<JPVLlYsq8-cHyY8tceTiDAQRZ*M8z#AcWVLQ8~IqMt4
zpcr0@p=AuMV(1n__ZV8UY%#F4+jD@GaJPw}Z4B*b)4bmEG5ZF77Jw-f_{P4eY+@(1
zLkwA~m5woVVlysLt+UykrFUM4fv-mG60=`Q+f|hFhg9|&*VrC0yc9#<7<$I+6}Xom
z$%`@cj@j2z^%3R$ZuV6q+{N^A3<E^z7X!Vo2)@b&kvn<%$M||9+l<BoW2mr3nY=D%
za12A3OH!E-!%&GkB8HJdUS~Ol(0+IfC#u+G7{wCCFfN8A8*}I#6T=&h%~%eq6?Wou
zZ^rDKf=Kw%`SGH2SJgx|_*aTnO`R0Osl^I2eLIFJv`iwA#MBt3#n3d4oH(Y(Fe8Q|
zF&vFyW(>1p_&SEwoVm+9@6i5)>(dx!$1q3uyD^;Jm_w27JyG5l{6O$S!H;72SO{%C
ziP^XKlFW_avlzTFXfZ6~^x-Z2G3e~m7)&wt#}Ia61!4#a4>^h<<P~H^ghT~nPH0?6
zB8D4FJj}~-^o2rFg7adS@8}DJc>CaUA&UeT3oa34B1<_Rm)Iqz`$EL!F?{KSu883)
zhp!Z}ibK?I+pmdXZ48G+Tqg_2)IQiH>&f~UHi-UB3>$@fE4Wo~Qw*DhY!PHqiYIfM
z@a>MWL&(k;c-0RLcE`Y1Z|o6quVb?>hW!pd5W_)-A7a6Z*gFPyG_&I#i{U%2RB;rF
z<9H0;i`l&xeu(jP05}~(*BbaKhF43vi#M}l(Vd9lXD79j99ItiC5B%e-X?$68GZza
z_goB@h5Y7(o)>aK@b?%lI{KxU{q}HXaYdA?F<cXJJ%-ytZa9`Vh1`lEZJRv~?}+!V
z6Z!{R_*uKO_gU0=%AYa(B|#4a)8cq2<Zr=8g8v9I%D+PXlgUnRdK`J;$cWohfG)3)
z%s8?f1wwWdPRr*g`Gph^++QH8a2$`tQ8|t(aTJN8XdGqZ_^1zx#WAOnns(Uk1-jy5
zUqY~?V5vAt3n?Q=o5$mb)VAwYPLwAcy?h)M9R8$`ig8qOl-eFtjiXu|P2y;}$i4xl
zdK`6}&>BK&3f79l<>+o9wFRGw<8dixUGdh7<LNk_5$+LG1X-~9LK+CZQ6Q_KkVZ~u
zV<Fjb)OBjj7ko5}LuF|bsGPvFaWs#^iX#<A3o&jPN2@qE<(YWvIG&4R3LCJ2yG<O=
z$1zH5+Q!i?jy`d`B;NLM^bpb^j*db)#nDAbXF(?Qf{+4z&{aq`NADg7uMnpJT~85v
z#qpw$-i}SAWLDoeUXEj^qx2IpQ1F#FUUl^TLI%X``yO-C92CcEPUv7EL*i&Ft?{~e
zhY1cB93jYvBjb2oY(|SRCXTUjyy1jS6!NCvxH!f;`h+-UIPE+sj<-ag?1a7@hasU;
z<CrGm^f<h6Xp9xd%s6I=_--8U33*3ww%{B=cFOxgJ`wyNjt@Dog|o~bJ2vFsr)3a7
z6=kmAXL0+gLyB}hQDSlEarlJ?1jB;CI6^{bX|N?z_WBTUl&Fxk`R(Bm7oLbC>4cg>
zhBd^zIOfOkXB>aU?I)Q9aeO0$d|{l|Okq(Ri=9|2<5&{MQt>Vm{4$O&oY3V$atGv!
zIKFapDy!o7I*!$%taJ1=Le>hp2V%XD4NfRyZH(jFI5x$xIgX=o9E)R199!e|x0?fk
z+XQzDZjWP!ke!0G*~Ok!|Mx%3o;dc3zRwBWAIFNr_Df3-I?ACq4huixD11BTcU=7A
zI2*^gIKFqvb|Q`+g#YL$KM6Tp9Y4o$QuwJjPCKE$2>F#`HOHPoXB@p}R@!gEuf}mL
zj`ML`U_Uycm*TkSaDLKVcK8*RyzT#H;`KOg$8jf)8xnfcvAGq;E@y<_74cr2cVPZ+
zt<LSE`{LyYeBktW!Gt{q9>(#v1U-u5pE&*%o+p8f1pX7AmiS*f=|cFNz)EEb&znG&
z5I8o>E1$#j3n`GmuTr)`l3n2h9!sEzV^c1{J0Vd_yu}kJC8UI4Nymnxg*lc^piBaf
zi&$2WbupIOPdHCFmgN(uApA*3shB|P_4Z7ul0el2TuHc-sFpzW1P&x{Fo7Bg)J$Mh
z0;8$qxN9Yloj?;>Cg2vOw&2qVJSC)#U|qp_f{az=&pgjKTuGpQ0u99L5o{#bFo7TE
z|L+;KaRL`s+PrB3ISF)3pi=_Pq|7Z7XqABKl>gZTnhS5?DEx$NExfIxJSU`$;PZlP
znRY_j3$pqhgtY37&I!Dbz`z6siP9y3J_)>(K-UDiCD1*A9tphY#Oj$qFNY^yvU_2*
z^nPy<i{-Odo4yIW>e#%TKtG4SlE6Lb_x_GDKnT~a*BoV70)vGQ5gh91uO~3WvU`ng
zcmg9tAL)dS?u{`Cj7?xk!oF4YjRf9Iz(^pRz_<j)bC@MCJAny~{o6t&CNRlS-V!pI
z6;Il^Oi5sB0@FmC>DWvcG9!T!N9@@*%h4HYP6F>T>jdVC_+A1ZIic?h`9Sc)1fG_-
zAB*=B$0mQitj`=CNWd#xOTZ^Y7xX7kYq34HJ4p&b$37%v+W<rohzegI7)!u(Y~n%^
zf=R)A1?`@)5=e=6o*<R^3GmAi3Ejd3J{NtF6S`Q)(!5zq6IhnO7YQs+V0{7`68KVr
zRymd{gnX62N=M-+{aW~H!8Hl26+)ePt>gUKZ9lJmBjT0>wkEJq__u<a1Zl82fxP##
zNw$fyM{s)rI}+F_e3xT+u$MhPce8}%|7x^Xg7yjSPvDA-s6z=HPVkl7cr0n#A4%X&
z0(TQQn!vFHzDwYE0>342USfTpz=;HYPT&Xe{wVm9Ama{~Pur8?J)Ph!-*$q(IHA8L
z?Awp2(47(Stl+tXeK{e;3km$5zzq>E3SJdt(4_<}JN!xlKgr1^>emvu?&!I>-%Q|^
zD7PJ*&vJio>Lrja6=baY3H&Xge+vF3_`tD$D1^_bw0tD|AHjdQ{wI(oiSS8}q0BK)
z5*eaoCXr7_mXiyT$m?)g=6863BnmpbP!cQU`)?6PshmX7B#Mc*xM2AtN+eNIcqzfh
zlPE2OWhf)0q?D(u@N$ArB#|wxT|vB03evt}5|tcYr5CCQuPRv0(W@tU?9uK!x|%|2
zCBeJO>8+i_Q%MX-VrUX|lBk<Rha@_RO}!*q33)n+XM`w8G!jx@kkK0?;St`@QMfWU
zW>J%9l0;JxpA`(;%gzzfED3TtmF-qjC21~t3qhvYk}dz3{lwT>l;@IYBjkC(RWI5V
zX`4hl$G$y@EZv=w=$u3kRwQN*zZb-yt6&#FmaUr*hIVJIW##FaL@yCv6znh9JBdC?
zE}nK?eUs=X<YhrBR|nYoE8=}MX&;57cYqT*P{<&`*8~SAv3b+~enojbiP1@n5q+58
zaKRBtj1<D8MhTgAL>-&N8^R+=yqUzfB;HHn{UpXGF(HYWj{QU-Qv@d^@s^Ouf^Q2l
zP2Mg()#1~UnC|cyNqp$c;#o<&Bl>K?IgZV{Le#~c4``f(*U>*p;$w#w>}$8lC*u87
zaIWBIN&D<7gR~@kN$4Vm1S$GC7#to<;>fuFttUnjVMi~YWv{5wBx0g)T+y3M!c5}F
zBz{W5N+OlSCN^>s^OBgK#EK-oN@7703zPVQL#3Ge^CT7}u{3Gl_s*Xy7bmfVp}e!V
zm|H($Ul&}5uQgAiY*9Ou?><<bv>(g)Gvk*@`^Dvr<Mt28E0b8A#F`{lv7w6EkK$i5
z(|qnFN7S`R@Mn|tNo+`BorLl=th8Zj-z2dyiEoqkUnI<hSLM^b?z)^FOO!21Y)xWc
z68kw{zEZX&u`_9(%-Wu`PiE~%f<Nf-PFMcMxJ&fif_nrPu2S|U!8g&<{y-83lQ_ho
zm_+6EIjryE-8novd4!2~R{1-?G0x>ZIY-%0wcPwA`MV@2(j8CY`y_ry+D9gHm0d^F
z6G{A>#8s)qNx{=eoS{<0eJY7xB==uM=R4E+vcI!QoJ)c~#$HU~w<LI*_wP)9qJ6FR
zdGTHl<Xcc%$~$2@R8cQ+Agxy}Cvhcd|3uF_joDn+lDICdbc6Ou+>tD9ChdRCZb`?@
zs$+k_xhq}sC;ylea!-(l*X}35H_p?5?yn>sFy$ov=JHs_{t3Ew30r@Z1dH(xmxz$P
z741K+Y!C8uES#2RBHaZ4F3e-v|M$_gE}WKS0w(&Jc-cf=6ZuS3Hc`byeiH>ulrT}!
zwD<oMG*Q^ZV<rlj_9h?hHM)4j-rZ5ewD%p+pr{b?VnT|W_7)vqj=PkJ(k9BAs33Y7
z!N&!ePFWMK?(TAu1>-*95b`HYR5G!ur<=T@iPwADd!NSkvNNq}qMC_TCR&@QZlZ>X
z`X(BfsA-~>iKk4|F|qHO%VnarWaKu{yoZ}gw-RXsO4@~|t1CfI3)VC7)$MeO&xn^q
zG0|PB=`qpJL^BhriAECI)M<gn;>|Ygja5z9bS2ZqcX#KAxb$v%E6M0t@s2E!#@w5m
zXdwk_DM+P3iL~cTv@y}qL?^L)Ua*~swk95RvFl#vPI`M2OM18)<+wYr{Y$5jbT;vV
ziLNHPnOK<P?!vO=xVv^jnd`1cN7U{ndYI^C;zcQ2PZQjh#)vHE-5zeXWN*>?NUJg;
z^_R^5?N94x;uRA<6S|34P4qYMhKV;#4B*J2y@_Ea21%yeGd9%3YbFMpnDo274UZ)m
zBIReA%#k=fPsVT)qfCr8F+yUEWP;oSc2p(OevFAZvTtxKvy;M89A{#@i4RPCXkvni
zi6-7LF`K!Vc+12L6EjUrmW-yDm@4FLLHAL0npBO2nJ$DQGk4!qv#xG74hQ5c)-K0g
zuZO#NPxl;?@BYAhqOd&go7h=0ZF9OkLLR$okB5&W*|{b@Gx4$TPo(?|`jjnPGA%b9
zFK0@rG^WojY8v~fWEzRzM8L#i_MMFCpoy4?xQURYV+e*NDB_ekDkQ6iJ7FRz&Goqn
zQ^wl@dL@cwB4uJtS2x`}A@i9<ciYRR<DRRfo$M*O$V9o)X;db($5Io^Ol&amjimVn
zN4trYCYGD{(nQWtb%l%&l5Im3Mp<RzYZGfttP}gyk}sQ)L2FF>{*{M>S*$m~ZK5PM
zWT<a6@vVs+Y(o>9Ol&r>T_SD~q}ethTTQUhI8)fv><GH|OQvzI?UK;FCVm*I>^8AS
z2!{l{`<(XKFJxDG+94B%P0X_}-{JvV9OZ&wp}K`*CcZOq$HZL|$4z{1;-ZO5Ov=QM
zCeD~RE4ln+;)IExO_b?wHyTIFgrUlS?(UN&PMKgM(ETFhSHaU9ayf2_v^;0x0vka}
z@|)m!PD2_03uNQsq6-<U;AIn6Ox)zeDUo(n%y^CPbrbHc?rSV<FO>uG2FG4^_iO)T
zGTB=uZnGD<xtI1-OEt(Q`NPCL69p|4vT)zTpC-~Qq+9lCGr6bxFB1<;JT&pQ)aXCP
z?doP9v7H}@@{i!Zf?S%Yo7^aC*<&NqLY9yW!Af`1*$A+Z-$DV)UQhB0<`Z0-<Nk1{
zlDkSwD4kZ=!ebUnTPS0ph-J@ZiX|)*wNT7LaSNNexmi;p(_uuGwxpD~lpuG>a(+E-
zp`3*$ER?k{uVh-|tSpwQycj%bp`w(kg5U^Q9CGVb$wFnzp1f5ANvaBAOV+SZ(?WL(
zJuK9+;Ih!dLQ4y73$-mYw9v@HQx@u2@JKFoE!4A6-?G;n&Q{J`7T{?M&rt8-Rs{L^
zMc%+d)9WreUsrqUa<W8LV++|9nzLVOp@{_!n`fn{O)cbDXeOLRQZ2kNRAI8WySdLY
zsn=~zV>U=D3#~15rh$d$EVQxE)<Qdqchec#`=89`EpTh)++ObX7CKm9dv>z^w@!AH
z@*9#4k;AErC|w0ttj=LkIe5BR$gG7^UEMt`^s?}=g-<NJXrZ@-p%z}ZQ1xLZ_cZpg
z@REhT7GAdS8p}UesnSF3$7Zq6-@+>v=<RY;B@VE_x0?;LFo?#lVc1cX$Ny&@RT<@%
zcT~E;mc2J}h+xgz>BC4Y{{DlR7Dib1jdO2Xm||h1g;5qpTlQwoae`w6=^ZQN4GV8N
zO5Fh%FPsIKAY`J2NfzD`&QRt)S&Gf*sh2U;!gTTW7_3Z_Oj$5y-SV(!mgw(Tm@VaJ
zf^#gqYvDZ$?@MYlqhmTBNJR1vB}%UTk%;q-s-IezYr&+eY#V=OA!(t+`>K~i`ZY!4
zfE1!z@UzP<dH$&6rXFDLustigsnCTi7!n#5j0i>rV}fx(S|&Jjd)u*?MV<0)%R<Vs
zxAXBZEVudbJHi4^QZ`5mlT$oNfko`56zZk0*uoMEw=LYUu++jb3kNJ5wD5(6<rX$u
z*ka*Ji}xwv8_WK#LHCt~uPv;$uu_y&7S83*+J4mjUbDu+S`jy}Tk~hFv#{QY#V>ul
z7lk(a``hVkbo6hz6ga#|ciUjAc=uS?W?{R99Ts+qvP*E3{PM$JmUfG`Fkgjy!nId8
z$vzAFg`bl09J2U@6qhVq=K62psD)oF{3-^=EPQX_2jSmYIPRp7o8XTYPFVO^#Gfqt
zO;Sw!q+@f+vfqZocT7;^i^xw~IAh_0gq{`r&9OXZ**mFdMt5Gs+%JH?3%@8>WJAss
zAvXlC3SJXrtm_v3kh<J-lv_eN=gqpyATEO`R7&9<7k>+BDWs?HrwquyEj*Hm`Im(U
z79Prs<9Oz*B>uy}Y~epvt%u5~$_YZpDNHOjTg{U~Mhf{;D3C&C%C^s&LcSETQb5X%
zV$Tcy%-%!glwouZ{>c^!rcfxwmo%Z+F*}{YDSPskNZ~OdMFgo76;e#FxFF+FFPTEA
z6iTO1CWXgSDDT*pP1(gOmqOhEpyd<dr9v-P5=JC{GG*^`CaKKQrr=JYb_!Kfs3wK4
zl|uCtSX36cW(qZgyQGlk`YD{<jOa??10hePFt?vlN08*q!%QNBo=)MJ6b7U)Fa;&W
zyYA5=g`O#HdVwc}=Tc~sLc^4Oki1z6Y6^`~Xq-Z}C^;$oR>s{Vg)cTJEsm*8Qy^wu
zaZz-Y!?P(gPocF~e*dehMGC~TrQF1pDYOzV`P?(E{<?j!*z+m0P2q(Ux=56EDRfF<
z_!av&dHWPPq|h;izQ@#ZH(mL@QFscwa|*9tcF|?!Nn^5IQ|O*TNjbgVO~{z%+*OKY
zQR$V!izx()rM;R0Eqe>T%vzjv^-19+A$<jT1fF6)7Vo6%6~R(+qP%|!6OO6835_@?
zh1XITnZhVB7|cQn8Ir=#6dsgvzn;RSt1jlt)P|+dt1L)HaL8S8wZCdtXLJf<QW(!P
zQ+CkU6y8YT%@jU8rqVl3sy`KJv@GwpTZVOPS=v1@g-I!_T<u{MSUetSe>;UKDO^k8
zdJ0ohn3lro6xO6LJ%t%5gj0y5Ff)Z&?DP~q`#-AA14xSM>*7l~B>4*>ieyAZRuovl
zWf2CHAc!Q1l96O4DmjUm2nwR0qUcV}d4?!vRDzPDqJpAi6;PD$oj%Q@_^P^2{qA}9
z-G2Q#?1b$euB#BU3-J;U2_9EGq)S-O4e*^UGN%wPDjZoVrw@OGqD1a1g?N>lQz~b^
z{JGM3(jLWgxG=}o*9)<*5N~pN3$d+u&LZV3E(9M(@P>F+sT`;B*=32GrG@y)RN(5~
zEyOZju?rDU>wAS*UWgA0@xDU4?}y^TLO2UCxsLT@h8k6KU4`(KvPR-A#Kht`o<i{P
z8VtSkl~3+kJSQj)7a}4E@u(i1$BuP#ibe|&=ad#A#yzsZF<h0|E2+$$#dA^uK6%Nr
z)sZd4ib8DVW)@;)AyyUQ%R;O##Ogw<QQGH)SX+pX3h`+nJ}bmJnXL9PbIc5UA~Slc
z!y|_?#)L0q+78376mBZyKcV59LTpgzE1ttgRj_p<uO}sQFX$0cn+x%6A-*fb7Ul4n
zQGDpcr4qSZ-FBW|h4_(&dLeeIb&r%4b`@f`xRIVvv9}QW6z-S)ApKs-88{$VakdCM
z{wyZ^#uL8~hYInF98ZbdUkg!~i%Hs?!!o~o$id9t#YYOQQ61%RUe(%!6NNa*ON|qa
zoj6s9KX`$4qMQ?d7UHi$oG-)$PT-UVrwehGmwoXWDWCNF4<~kfK3o6exhC^pDV<eY
ztw#qp8eQxnUjw|9f2j~TPLv*BjK5=2#EGI#5K23(%Eg?36D6G}u8>X%Ck{=t%JQMa
zOe^I?XhQzxtq$sSHBiQhvQG4#kk93}t&aaWajg?IoT%wUc_%73QOSuLRR20Bu2)SK
zspv$`HpiSX#aMxr>D=f<6(_1Hv$7L6Ij!d*(_j2j{*C8~GL2l#iRwxqbM3X9sO`iZ
zPSkheW+&>X`0Y;I;>4{^+~x!ad8Pik7xU|yz7@AQ>M1!_%Evpi+MQ0^<wTxx8b}*T
zIZGU2Bh&Z7!hEisU79#?j}x7o=<Gzk)B3!WOG`mhCkmWs=ES`UTbS17f^p0990I;T
zvU|01;yyX|JJH&Sp8WACRcph$08HO@PCQ_^y`X~=4+=UO{~-ZC5$)ncS0`R_;$<hg
zIq|R)PdM?U)B2%@?oRX*kb7`lPW0mLGtMJU^buD*Q-le9uj2kr3{W^wI?Rbd0;Uai
zVu<)r=}_bM-Cvxo!<`r*XQcEo>EqHN{}ttPY@TxBX@#?-&p7d{6VEv@O5tef7%8ib
zbz+?1@lH(RL)-K_5w$K@1D>F!iB3#%VzPLO6VpxpROTCI{tWTVtDNV>v!yQ>e~uF`
z8on?9uQ>6l6APVK<iuR3^%x(ncfJ$zl*4d!4{M$mIPsdC*QNEgS-)HHh7*ewdYyRF
ziMO2iP$8R^2$ngqRPeU(-*MtyG3SbDT;6lyebc(!i4P2Oy@gIV6}or=>i2Y*?{>l?
z)840ad<y+e1e^%+bT$=YPK2F^I1x3@zZ3E*4+0-66gN&nkmS)gz}n1=6It$k7anzC
z1!sdNkqZr6SmnfOCyqFAl$&|1-Wr~0PJHgfS|>hoVx3HW%=@wP@_m1w@G4X>=Tlzv
zj@9FbqWmQ13n#vGV!spLJF(u0ubkN8#8#*EnKN^~cH$c+HaM-1)HbWvM(HLg6YLM`
zzIEa|Is6ok<~AN$4U6t}VviI29B;c5JDk=h6<l^YvCH(ellLmzr&Tb)F8G5J2Y4xP
z;%6s*RKi8`xiN>$Ej{SOFHX$vk$cFAeO+_8@J;%!P8@bxpW*Ps9O`dQ{H~D9%wtX*
z=XKJB8(cWy#7QSEax+=ni9a+^=bYB(w=Djr6MxA$?ZjCD%`<}CdgK4M6aOgWClc)P
zuM_|A9Dg|XJg+d@tWU_v7vzkql#}B^5f{q2@IM#$SyNFL;6h0kin*-4z>kuO3re`G
z4;AT@a#_2wtP8xyjZoT!GA`?L5^|?)j#J%ouVH?-+-}`-uXUlk3)d;1pLkSI7k=_X
z{<EvqrJ@VhyU>aga;)C&4!F^U$}ZGb{!K1aaiOjYx4Tf)g=#L`>_Q!lq`C_=U8p6l
zA?0zhriWF8OKlez68J&KEiT-uYIL~VCgzdDp<biUY3sR=>#`0Wd+*=jvJM0LGo?FS
z_)r_z(1k`WbakPd3wbWw?Lr$D+NxAz7n-_I;6f9H_ek@l_KoMwT)5YT`(2n)F{inP
zx~O7KD;HWQ$06llTDoB07k{5}IQTd9!D(yP<vXU^x$uAs9Zi0Fm-X$#gD!MXzI`rm
zR$1yH7dpADZ#T$XI=j$Cy&CHKk%!sQh5mASNFR~*l=gC=w+k~WS@Y9Jjy+dTSIX(@
zLO&M>yhEQKYcpYh5(aYD3+N0MoGO+xln0UvmE5?&jo~hgaAAuJTU{9G!ecH>=PF!y
z+=VAxc+Q0hF6%wulbm@M#=7tn*TUmOCjG@dtXpeGxiDG|AER-hU*3De^2V{+FzdeE
z@h<eN>Uh>=JxYa3{ZaW7U6|y;R2QbXuvyPbVTH-u1ui5XcJMQn`^V+e8MMu+%o{mp
zx-iRypbH@vo_Aq3x59-bF1(;MzAl~P0w1`<<wX}>GW;^9x>oKhF1#ur&vjv*c)oOj
z@n3VH$0#d#!Zyc37Z$nj2KU0)yv5QtrGM7QU9inTbEyjrOB7q?!h2fv+b+B#cvtGx
zu-|uKxeLw5<au5AfCnmPZ*M`N3pe%6`-~5U>Ym3te4Q@1crI*n<TM2xw+kMZ1=I5i
zsGK?<w{cHBzck?Dzh+uy*oBA-AG`30Ru^?4?m|KwQzmZ~PP&kCVXeY6FAFZL<{@3w
zdVp0{=1Q0KAgmSiPu8Q)va4M9X>cAt>H2M(V+}70r|LB<mirO6w5WCK@jB)2ubTTQ
zN9e-WJb-z4oUHe`^eY#>;D(3~4b59G;JbJxaOpMO+K(GF!c8ueJ=|m?53u6J9;unT
z*@bVpTgT*m$3tsyUb=r?pTT)Ww>!4Eu-%2zE}U^;hYLGh_|1jiUHs2I>{gv$UD%@`
z{p`X)7xuca&xQRieDA^m7k+esJL?A*E)B@*KPazeRR>|*n7l40n{+6a`;(@EaEPZs
zvD{6A@_sSEEoDeO%)gAo^2!%0c0{ZD!-ZD{;iwD8TsZEsZkqnCU*3mfEI6U?Bu{g}
zth)<n{^<fAiNoi~{KaFSxCLij_?uU3H;TLQj|=Bq$Z?~H+d8xU)hfpR-sC?Q&hs=;
zXg#q<z$Z1`@<`q#UeIb65V#A9s+V;(^~-yGsCDmr2{+(INjJYSv8K9|8>QVSue365
z@Ng>UwsuxoH?DDG&uQx}@+tcY(#3LV{!dNUy3wGimBXeAZd~WK4m>Uu-MC)Ne1<o=
zQQ3__ZVYzgCO4|M(awzr+^FhCH8+~LagQ6-wceZEsN+TrH)_%uWmT(FBe#|twdvQ$
zy=7AqDu;TD8};1Cb>sbwO>T8tkGj3h4L%>NuJm@d^{5|)%)G;mJKea;&0it3Chhc6
z>to@S)pHxT!CltK4RS-y!`_1At|obI-0enVH@NrdRN3w*%qhl%d^eh^dn-2z+-T;8
zL*c#JMm{&Jh1<FaG?(%LygUnvR?lt8RaeU$RxOvx6aPLp?pH4!SFPP>!)>hU;L=vW
z53Jg|(ZP+LZuD~FL1l8lT?8Ga53xQ6u-$RESZ-%Gx^H(pQ7gBr$?WFF!!+IK;kHhS
z531)<d5%zfyD_IS1}d|U8;`ir*NuJ(`)l^fT`Kz5h9)C7S`Ty@AfL&+gfblB#-nb8
z-H5m`)Qw?o%y45Sum5h0;ELQB=f+4k9&_Uv&Bo(|?G8TN>1iGzZam3dU)I5E#Zv-u
zr~cM%<<6}%ByW@(quth13%HDNqvc-fXc@0Mliir&#<Olbr*MKBlXwvJ&6}u@PZ;2}
zj^WmCoABWYQ)NzfTW8HQ=_}hE-tCSFL-S_2@w^+ax$(NTYqlFNy77|Rx{kfTX;DY6
zbmchIE}r|c8%O%*z3Rp*ZUkysOmnUq^LPXn&z<ka0yo+YvzW&`7di{wSj6Mdjpc5<
z;l^S&-nHlXyC!_r+?#H^<;D^>ZXJ{Nwsfg<-F62ZF7GJZwcWu7LoIXTJ?@UZ_3qQt
zqCRlrLpOqMgxn}}!*!{s*A1T=PO=+rxAp9`Y5J(v<G%d-Jsx;|9nt|ePHlHEY+gEN
z($OZItAL&b!8zx~M%{?H@sS(rG}O2o88@=xgwE@vG$l>*^trYuH+F^QYL(Jfs)^5k
zrq6?9wahirwNm~H!^Z-)e&)s}Vy^mAo)jgmXD4$0IlM33SkJPbV9qD_%8jo%S1Bw_
z;TtzLaPvbb3}GWrRSqwJ6#;B^<6Ac#@}ZLt-?_1c*Aow_c(B!tZEhUocI~gnWxE?Y
z_^X|d<&jGrEFkQ3W0xHAZowYuUg<vRe(Cpa{2(|W{Zaap^k?bgWAa(#kQ={fb-%iC
z){Vd2IP3<$8{!&&bK`e49dYBR8^_!@uJ8}(3GNyJGfxVd7g)o#`~K<1UouadoHGKu
z%Rg?E@Bkhw|C}5Ds_8%Jd6R#EQ!TzE%~5g@4~lwF%wvtPxExksO?%ZP<*?}*4@#NV
z(t<J`loi;S<vjSG2iKaMiXM~~SCC$JRVM3S??EM#d4mTx8m?^8s(Mh(gRx$G(72$w
z2Q@sn&5OET)bya12g5xW;X!Q=ZuTJGgQgxlJ0{;h1$8`lWla9NWAbnD;8vNpc~Dny
zy9bQ~^*sFG5_fn|--8Bn?v&mo?J~<M)n*E~G?deNisf+0^Wbg|8p~`Vy+_JSwlb~2
zgMVkEnaq#J<Z~qVdeGd179Kb}C^t5LkOwV2XyrjC4>~LDJ`Xww?)RXz2W`Zx_J9X%
z#qFe{8W-4OXs@u^sA3Es^q`}{hop4qck!UB!rszu(jL->rQJEP>dyS0a(Wr3j|Y!<
z&{rl~`wRM+)&a&JsBK}wU;(#lhzE~~hf0S@xfV8!^x!cMHhHkwgU3C1!UOJ|`^M%!
z>A_PTL_COk@U#cdc<`DBuX`}c)STeKXv1T8BzQ2+gYj~n_24-V>|t;fWS)0~i5^Vy
zV6q2OJecjl3re2q!AuWkc`!}kbPs0OWgl%;j>}l9BTee_9@wpOJa|#gJP%&-;AIb9
z^<XX!Etz(AZa%x)9c`WO!2%`NMQn2+x7UMZ9xPJR8y+n7;7##T>045+eTm?II~;Ed
z-Z7y)!uLEV^uX!C`|_7dKahSXWm=sb4wnaRg#oF@1D|R2dSGYzjbn#F4}Y1_+I%iy
z4_Jf{le5NywSu@b;X%^F+X|3YnDt<V2N|)wu`9)^JXo#0V@=ef&8S?M@R3?s{3{RE
zdGN8qPdxZs@TqD2OgoopU&#5=`0EAS(O(<q8xJ-Z-e`8~w;p`w!S!D2l-$CLKd(Yw
z>yX>#!FCT$dGLn^J9H4z{KbQv9_;d9w+DM<{^-G8)4E@<PdZ@=zW3k<F|RZ1dqDig
z!GfOzKYMUcFjcLG#Ji6cF!NUr4twyMoZme->cKG&jwsAi@^SGA4^DbO$2RZT;m8~-
z;Clb`;4cq~cu`avb=rgTIup-$aMpvrJ@`lAe;%AOXXw8Ij&q)_W}T*5vvI+Li}E*4
z!6iYC3fAdrwHEWDxEI&RDd9zjCIzjhqLdd9mz2*mCbOxu7iGLCE0bwl*i=s8|4in!
zUT^^PIRh2ExK4YaqLdYuO+h7P-r&WJUR3ttCNJu!mHAb?s3ERuoN9vV(w7bv)D+Z`
z)|TEZ-F(cN@LR;UO6{F>yBGDm;ALl&MwRQu!(Mdv;tsF%_oBWRcWN+qd2z27&BYD8
zXy`>Fah?~Ay=daa-FDOQ%U9!jyl5&XU&@Ugd(3JoP}oe`p|^uh3oqJu(bfxx%$8oX
z;&{aOOPRyJ9n{ud>yHSbo%~Lw^#L#1b6+TY(2IwR-_grgP}V94)Xv85;zd{SA-AKO
zfzqRj_3)ziaM(M&rx(2#dacvHj~4?3k4XDU`$_wI!L!dk0S9_9$cw>V4DsS|FP`w?
zQ7?viF;bbsq^veVFx-osy{zkreFb>Tv<}n-;Ylx^HqKLm>GGcuGl%<Yv=?JE_z`3C
z+wX9U^I|+hFP`(lyQf}jpQRJLSn9>wawd8)$&1NeOi?()i<w?b6*F_1V7hc&Rm}3@
zc`p`t@tPO2y?DWkmw7yB%uJr6v=>d^m%NyNyb1kRjWbukD-z9l;`!2kI~=bI-tc0v
zV4)X_1k5~AvKaMEFW!=4hf7Q=*YXaJTQ4?vvC)fVUcBc;My>BlebVK8T_pI>3y**`
z3%ziPU0%2aWll69v&n06T6Tfoi+~qFIT0_Sf{-*UJ$k%JOu&vwLEMYPRSEP{UZhPj
z!>ku86t47Qtrs78u}UGER(r8Vd{MJUXPv^&y!cq~iS$z`Tc6qC_}uUpUVO=8&&%i8
zT3hk8@pr1!H{4T#O<rvFBFBd!K78xNcU~Ow;ukNrc(GMo4oJ5#--})1?OyEgB5$I#
zFQ~h{*dzaYnR})Cq|1*t*{>#M9@W14L7~k*dhwIOpS?Kf1(WG>X<iM#dU4o`zq~l@
z#c#?v=EZR@e)r;t7e}vJyWNHLPk3?4i$BzKk~vzPt!(|%IA>JtA1}@c&U*2;z#ieh
z;`3fy5d0_QF1ToNE}2!^m5cgN%!g_|RQI8{4<&r4pwkLIl=R_$;!@JG($YSZ@m-!e
zuF;;uYkVlDRysW2sn;qjuS~A!Iv*<faJ>(ee5j(P8+^D?P}z5R-t6(;B=f^}ts-2i
zD&$F5!-twa<onRnhgv?=_Terc8u)Ot4|ROF-G_QU{%j3y^`Wl1u<vc+78M+1stvh5
z+~GrgAMRAzm1BT8WIJqVH~Db4ppn@M<}~)9$yFWc+~Y%=9}5Tt@*UD<K0b*8&BZOG
z_H5hrTl&yS=6%xpeb)7d6|U^-HuBs0&`$7xw7s;0^g$nZt>`Ewuy1D{y6_YTplASH
zedy*x(vOrM5Bt!aZ;Jia<05<b(9?&s4;deN`Ow>kSAE!3Ik%4wj|j&3&{r_bhv7c-
z^P#`O0n)+Jfzm-f>^oPS%MgW+N?B^Ce8LDhPf15gAM@dHAD$3DDLwI^wRT&dmh+5s
zlytNYV+3Q3_F9_H{P8|KE9W^MruZ<`hY1SVG*K`~I$3&i8*3HQIKw7qx(_pan5l3U
zkDoSpUR<XQxG?zzALht;QTj5cTEHf|+ABQdlu2i<5A%GO@52HgUi0C79?VL9-G?_#
zuZ2D=GW>>MG0(LEYh7>outd&M>AOC>?ZZ1_ChUB`%2}rHJ*n+{;KPSLgyk@yP!RCJ
z>4Qt`mim0~@Cfl)b?k-7el^*37zP!Fq+Dafhp0Hl<41#x`;aiBwR@$ms*v?z1+Nl*
zT<gb5`K<Yc539theOTkeTH}A>!$*eK`S7vf@#l(vD*ntkpZh?QrM~oGy$@gc@U;*B
z_;AjLZ+zI`!;e1v<ikcEHnEEjyM5Tqi@y)seAv#<e|*^D!;#9lTYacHp%{Us2$7OG
zWG*{6CuUtVxiDdm4|{$1-uU}`*l(B#?9QAYd^jNUO0S=NILLMRaMXuGKK$atZ%X)8
zde~H8ce}#x8j{`pm=DK&_|u2Kd^q95NhSZ`!zqD1DvtKbx=#CW#)q>${OyBn+BNM=
zdmH~%-(r3g_v1ew&MUki&GF-+50^9mCfmJ=_)*kvRik5@CH#ONW&GB$SJIDCg3^9#
zChZ&>sAc`QMy<9}&eSO{^Hx7@^P>W<JbqO4<9eCZ{iq~hshj+`!SIcO%2HOVVuQ4r
zG3~Y2@S~<5wfv~<$IX7+qSiXntG9y8I(7ZL-5xE~TF;MM!M%Rm;YWQx?pAoGw4oo3
z{J2ZpK-#Ikbp&!D<jF}b%_leZqlq8)$jSGksULP`ft+SiyVn(MF0+Ny!F)55t^Byp
zkNf>-?ME9^r>!6D{OI7vgUWwE+Foj}$kvW>9<qHEWZBMsbn&CBAKm<T){p0O*?(Bt
zU)tS|9)h0IUeexv^zq{nG5<{T^P{g}zNMlwbBAMq9|Qdu<i}t?Myqv*^a<&sehd{1
z^JAody@m@$NEhvJJZ9i=KNvFMNk5+Q<7q#h@ne+fRjQ-)r^?oxju<0<tZ5zR$9Ti#
zM;Dvm$3#Eg^<$aLNq)@n<3&Fv`!U6jsWN9tr%9(vXZSHw@Ts<rAFpwZ&&!$Z#|wf>
zm2+byb6)b}Wj_{jz<#_Uf4=lp>0IeNDJvw;7Az3ICVk!b14iY)AzmU~EPYe@mXseO
zu=`T++tPQWM>V|n{CHnsNV?n)x8MWmhf;Pg^uuY`#T?DBM~>GIpTO@&(BuUC7&9uL
z9SPL1G$M^kV^TK7{oo;y;H0T$9X@wjO-KF6_>uL4&I&(v`>}_A1^ig$$7(;;`0<S&
z8~j-7$4AQfT)NJWPX+Atu^*p^vxkZ?<nq~7;TL{<sc^j?U-|L1>9wl5wZ=UM3pV<(
z$&c-R?C@i=AKxlriyz-zmC0mw+-jU{oXj~^_niWp8SYX7!@Yt-(tXnXethr858|Js
z2c$nr*>~Xa0_x9x9F%jfLOQ=F{8f6`kKY8pOOHrbo@m0fV}2a><AfidRnGPNQSi6m
zr1X^Z59y!Mzx+5YI3qnPU9rQ#zW?~a?p)3Z{+0gc$9cg8=|$-!X->e(KfffOS}cI#
z0qc>@;Q&emfB^VF=CW0DO9oIX09OFh{;O9yfHDDe3ZQcU+iK;O4WL>8)y3BYP)_ha
z>9tbkln<an0M`XjF@Wm>s2spe0aOa$1|{4m<w4Gc$zShqP^$z$s4684Yuk*vM@=;X
zXcE9Z0n`kjRsgllT5b#AW^o<qEylk!fMUn3%5?*{J%D-v<OZ<4i#7N=0;nHA!vGou
zaA$xw)HoWb=`JZl<}j0CUI2HiVB>%lUY$T@T7Cfcnl&~R6a>&rux?Z_CNvMAMF5Tf
zS_aTgek<wy0kjU_K9hNIY`&e}MowGfv%&)bv=5+zoCgEw7yy&$KP1QY?Y>?3;-5P!
zfaw8r3*g}Zo($lr0J;azL&+lp=ovt-0EQ{-9Y7z!kN_SDps#pP0R049#ee|%Ypcne
zkb%bMwhtEDlfc$T6%IAY!%gOhtI{3|@HwT{q&;C;k7&<69l+QC#s%<<{86TLv|x<1
zeILho<4*|SS;Nl-uv`0dqH!h#Fxl`F!PEfG_qO&aml*-P7{E*NXG&)U@Vv>N9l#5Q
z=kSX~4UfHEmifB$l>lB1V6J#x0Ivz=OBYBlnqCYS2CyiAH{>q~V5wlS^iAno((XMS
zZwK&B0LugTAb@veE(`FHr=a%L0ZHZZz6n1JpfCWZGC4w~QQ69c;O04UvI!TDz#D*1
z;FkuZL1{?J%xiaA&u@?DIuH#YCZH1+BmzhpClx?ioG}j1(3JtK;^7xWw;)yruqJ>*
z0sIoc+5kQZpz)@H?d@{c1@JLXu>f}PI<UOSCjsldGavj;{xpEk0{C417t#&VFQx0H
zUrE1~eiOj{5qNe4HY(gCWu46dd~5i-0Ja$3D%d7nKY|}bG}#%zj|_cHxa<<_mhK5)
zukrVBE#mK`KN$aj;O3nU_Weoxv-F^J(6NGF131j<PY}g}d<?I3{k(2me$gO)58y}u
zM*}z(z`p_fS|#_m^o;a`l;%mnDd`^p{29Psy!!2QoR&l2!nCsr|CTcRM{q8H*}bgR
z|BQb=fD48%3NA@=g4O_v1o@92R(_3DdHhbiL=Xsqqdng)_q(49N(NCkh}(lG6-4PE
z=#&Yf0u#h#rPoNyN&hFkR$5-#ey4-IDh5$S;q}r=(i@~~y)lT&;+v%X)TOFvtrkS}
zAZjSA8AKi9*9xL`5Kk-lW|`z$1h<;-Hj}`$)C;1(^vxCAA+0aHGl;u_Xb?ohAQ}a6
zkI6jvb3vZ??jRZqngqdx1=&R9k{?7<Iqb`&SrGRI(OgakX^S8nf|k<OL9`OwC%s?F
zI;ULLT(t?Jt#R4~@qoC!l-~;3YkW{)#~>aObdq+Kc9GgM$zSDoIEZ(GcsGddLG%cs
zXAr%Dm>9&QAbJO_pY8aqUGDfG`tUGN*f)r$1pTD_gBTzf7{u@(Mg%b^h{1A(1o3DP
zLz&;vs>5YZb?e*MVL|J=KZYZNcubj31o61Q&S9F}<w=<~KP`TSDi|#tBONPc-*EzV
z=a`@6nbj`$Iq3vxzfA>`mGFW>=1);LRXR=P^dM#^Wa~`9tRS8@&TPSq&X^O#i$T0(
z>bx1m%W8T>`l|f7LCjM)KZr$w1wp(fcwM?Mh>?F3;fib}yb;7=HQCNvV){#hSSo(|
zs@7#eycfi!AaX)@Uw$}<ND#}#9|ZAX5QSooly#f}m((qtcBY8ewEBYZ8x8~!G#oOS
ztPl-iQxKbjhy@Xsp9tbhK{AL`5NYw6AkJPWk_jTKa77R+gIFbg=8qz5Dl;N)wL;dU
zvsV035bFdV2l1KU6O;3)3Nra~IbRr`rPhnTGS1gQd?Vf<-6-Yin91(nDm=ndAPAaU
zg4i0wHkm(2nX^5J9YO3=xJ$ZMx;uzHCdaO}FNpnezBfK!QXUB6M}<F0f06zyJt#dS
zwJZD@#9<ySS2@3%^W|s|$K)Rm;<SKcI}yZ5@hRi{5yYQjz8U|^HX9e55uBC&9mGFD
zoD=_NC+w;BFL&ax0v0@PoC`r*G|Z+VAruYaju7gHP%MPvA>0_kpwW3HLe{z5c0^ve
z5Fln)Qcx;{(#9zhLfH_mQ8?sGk>O{o$>;LF5Uve@-O1%cs1U++Ayf>Z%b6mTl+32<
z1$3BmgLv5=MJk7IlekI<w+gC;P)$%>T1#3(T2p#&XVebi<`C*AyhX~I^liOOPTdf0
z7t{+OS8yePaHpK7L;PI>+!aCtg$+Y!8A7WN8ikM-!rgW+Y2y%@2<{1?sUTm<HO}1W
zC=fT3KGpH^Rk69k7E(tD%xC6(A>1EA&k%aaZ!LXL+D6(|+Af3#1ns3Ar2ICGtLrF!
zNZKic&YWa1n;s6KtKn|kBgd^Hp?e5DWU~7(UWj%&dMg}eGW&$^h`4VE{X*y;!hjHl
z$QdXdWHP&Gh6gL;#}_RAXb3}1t8b@+&hQXM$QdbpO!~O=2`O`)6g(Az-DOk=qvb3L
zVN3{P#q&cL7sB`uW^mr*JR8DP!E@3H(upBV;;?sEtDY=pit*`inHIuylVGRK3h}x9
zcrk?Ml{s6=%ojqi&iBUFcD*F?W%ae|yb{8zCUb5G^Tb@c-MS!z*9^ZN!a~EZ^|A)`
zhQh_tH$!+!uq1?~g119>Pr%G~1n)|hg|JFfO8@;3mdpIWm~3)};Nqr5&_4oq2%ZpX
zMNm5eFDI6331dkZ{tyBoGz;V2FoGe3LRe8DXSGU&Lr4l(KO%^R5EI0Wp9q1kJ(!R(
zPFj$WW?9YnD>*R3n|C_ags?V*kK}wA!upW)S9_hpk3;xG@M#F2h48uf3n|COb=gYz
zDun&qDQfyUgl|IFAl@k58p0+4GdG9ut@u0RYzcvHuh_ILgzX{hF#hfkc8Yfy$6no@
z5cbO1Cq1Z{{~?3}A>0zS_VSM*{1n1}A)F84=MaBF0>79Fhcv6qvH!mR8p2_2ZwSAK
za5{uDN;?w5u@H`nkDB}wA)E~151FT=9E@G$%udIjA^a7>p`!(SyTLy|tbbNH|414B
zEnxmR0W<$qKAX5)2%%&crNX$V)=MGeXhVvGQ7nw&;-X>ecwlk~g^=0<ut!olj51-A
z52HdDWy6<W*jyuETDdU(XDYDBwT7<?qhc60g;6Dp>s9jxDRU~BA~zbRa@g8N9v)T0
zs20Y}#;+bm%`j@IW{t4*3X@+Da|2mqa0s=-;3bG18P+lDy)}&6)V*#P4F$J{QBRO7
zy;FLJw7%5d*t^1La8<~fjl#$a<L)pThtWh$O{MpQkuP8lr^ueYf~)#A52J;)ae+)n
z7=r|*b~#!KT7_|6825`?OM8aVCXBXWv{TqQj4ok35JvkjI>_O=9uhn#?Z}BrSbqyT
znUKt-YZwok{BB_|jb?XgkN=<9D~#S@^a<k;`TeC#?i)rwv3;qhGeF@$DGLr33<={=
z!O$>&@XK1uurP)TMuah1FfxqCxYxpXB8;cyJSk=JQ#`0f<ni?(7lwSv^bDI!E5kA3
zvBnt}#(1&);_A6DCMcXJeIblVVN4EVN*Gh+JTILlohh9j#--Vg8Da1r$+$)?v*g?1
zY%yEsgz+MC!gx81xnazc|BBQe>Z{_PtHbU-U!gs!*SH7u`sa0-3#E&AlnNG0-;_S9
zmq1Iycsp!;-FAHh?}YJg7~hBSgA$g7;SR$S#(N6imoArnAm#W!45QGnGYprQ|9NF^
zomb)KQXl^cgc0ENKa5ZqNz*GFMl6hY7!f&9X_Z}8g@nnmLpG(tNQaRLBOAs?VXWgB
z7skpkR)?`h$vj|InO+TcIr4R$vea6hFNQx3;}erZ^HVWj6nz%9UK%m^3prngv0m_1
z7~2G2hw)7q8^lcePOveIO@htF|5m^^p<9fzH4MHaW|!^8*%8K0@vbm-hq1@_`@+~O
zexm&4Ioz+X<u1nolXEtV9}WK$#?N6KRCp+iKLo#o@oN}|P0sN!ehcIGFpe1Ks9;J(
z$1%Z=)vd8{Iic`m7^h4oyZmYRuP{!F&lrcTe;fWMjC0(~F#ZeUJTLf>%QY|XA}_wk
zgI~!x5fn46MItC_xSMwRFlh;yh@hn1s+U8hBPbI=*$A$Qpo08z(*M~xd+M?5wT8<_
zz_;r5c3l@iMdLGvM|&md4bmH>m8CaHt3*&$P)%Arf*KK&KU`2#%I*xQH%F|mE%GAP
z{R@OT3U86#D!na&x&pS|9zi{Eu5s=V)Q{j!<J=`^5J5vhBje{)$h$jYeT>;Sf+i8%
z6G48&`k?gzY10Vq7tkpXG>hO~L33#f)9Q$zrMQ*!J}Lj4v14nK(?-x%+D^(3=-LZ9
zNFR)#V+0RH&?$o6aym!QMbJHht^yY9CU}Bh1Q>_hL)=r^OKN`z-$(q2lzsa~_{&h%
z1`dc|U<A=5Vo3~&U~mL85}28=CVWT)k45mfCjU|CQ0cG;h6_eWM@sqaIlDX&!IKeu
zAH@$*JQcyy5quWK=TSVvV}pJKKSZp5WF5`du@QJ87!$!*IpZRj6TyoSjAt0Za}i9C
zKQn@f5lj+KlTMaSjbMu4dfo3}D=SZzIm0x~63~A>g4yC1jKeogzmLg(DT22mSQ5d@
z5xf$?s}anN;I#-|kASW7BA6e+f(UM(W`$h1q8mmPBP>(`VQ~bD48IY<H@zHo=9>{P
z+2*AYEQ{bhrM=C+0w(|62v$wKT>1S7mUAX~=4xFZnw-K2TAQ^yWxAyNcANhW?TsK6
zK{^6o1pWvD5$oUAV^Ts;5Q-pdoCx=|n14Z-z$LCQ5kXR5w`L;9M))(7Sg&=hkbV-u
zN)A}OTKZ80YXobh)6F>7Dg2mQs;&E!hd~6N%S@W>{eq*Kis)4SaG^B=JEdQ90wdTU
z-W<WV5o{E1lG=0iop>vcWWkoJ=5Xy)Y>!~aRgT?dR|LD2yeERa5$qH1mo7Bp;Upi3
z;76WuQS^!8rwD$Ipjs5wqd2Hz=2!&BBRCYnFA@A|j-tbYZu~D$RudnI;HYWk#&Y4|
zcOrt5yrM?Ie|0_;!5<OiL{TJ)KO^`ng7Xo}=W;rNbK)}*oQ>db<Np(}UIW`XZ4Vaw
zYyAJTBHO<p^I`;(XW|l%qT>a;>=ccnSQKTVC>up_t-WLv^h-p6DBhZRdA)>EQIuA~
zgqh&Nn%5{KTq`IS<&QRA&Y!T$LBIS}6|Re-Viea$QOV@o7{v{SS+H^xHz_1niJ~fp
zF|66#6V@OJHKM2)#obXfj-po7nz37=xK&VFdUF(Y1Z;X{Hf|H&5k>td>PB&U^zuB{
zGdZ~ed-CrTH;m%0C>mVl+pUe{<VnAnVjYT2qG%C?BZ_;XR+t|}(<lm}Xr{1v)H-hI
z->Z<oW7s}JTSn0;iie`;6vcf}+^>WOqi8K?8$~-on<y5WqwWDY9i;7}czKs~^?01O
zq)kIdnG9LHa}-^o=qaab6y2ie5w%XPhok5oMWLx?pMdnaup^gVruC61`bIH3iWfNk
zG5P(ty-_?DMgJ%UL@_XmK~X#r#gl3s9L2CGhKq+p(S8OVjbf<6?PK!UeT4Wi=}0L}
zrcobPKH;e-o>tQs=`&G`7K}3aEtF3k8^t)8<D<xz$?k*++9}he-0u?wlcJa`m=eWQ
z!8GX#mxK2dFpbL$IWwiRq|Zk$-x<e$V4f4jdr`a}#fwqA6t(V;csYuBQOu9x6@{-#
z>CcT`zM*V^oJCQ*5yflb*P~b{;O!60<Q)x*6~4{=62+T5H54w9E{$T@F6&+ie#Sz5
zSLQOQ-JK@yk60eX2T>$=F!Su-j*G${MSutG*nDRc9)U|r#~sD`=~k21IKHU$*M|<5
zU=)!kqEUo6u~cQ+`7x6p7rdn=TT@Z2m6?tr6Gc|MDvH%ntcYTzLY}Q$?6uHbqZ65x
zc|X)gQLKyNW2Jo}U8dp<ju(8YknlwmUq-Q)r*l`VkK(JS^#_amwGzIQek0vrcNv?%
zF^WxwH%IZUc!w%)iDIk5ZPJ}lY&V%Z1nZ__mteQ?_i)!tx0Zc6FkTsxzn}YEcjz35
z;>Rck$1o&@pQ8AgC)e2g7BQ>!U=)|4$cb4;_@O9%iQ-p{{BRVfqc{`AZ#*}nI3kl<
z^hXp&qc|4D@hDD2aWaZiQ5?AHzA)xoxgG3J_4-R{-yp`;vr+tOs{I|sKZef<-kyU0
zjB`GU3*w8$3GH$eiJ@o=|BLY_R;?K>76W1^DJ~vE2?1}^;_X_c#HFRo<i4PmQCL=b
zO$_A(_Wf4n#ka*!H--u^To*&d7_N_@wtV)j6hoC5s>X0b3^&TG9K%g9Yh7F;6S#2v
z)M_!*Fuke^m{2o@S~1uO3~jhMhB`{PMLKf|ZWZtjtlMMO-;2B$?v9~e47oAfA*X?~
zzLW`f3ht6FbXqr6HH@LrRc2#xQ)v_FJ<@#X<Gji48SBp6f*6{~xmQZ3xq!#EBL?0Y
zOs8cGtzx(@hWle^9YgmRdc@F%&e;66F|^}W&$RdfIS<CrF^2Zy4pKJR2@l24C5Emt
zJH^o1wDMo7x{2+y8)o9+nDvPVJNA^{H->&O^fLLqW9TD(M9OVpW`FS@=>X|Ksa=x^
zEc<8-Lt_{e$KW`I#V|aE4KZwtVMGigV{pdcis7*s9*^O*7+#Ozi5Q;b_KwYeLHbk-
z6JnSc!_zT56T>K(Y#kfJXz>{1@bkTKF^uO-%6ZQC>vlP~u*;+vCd-@|!xX_ZlQUIt
z%WO<H&J4kpU5;5XJRies<9DBJjg75yVt7&JOEJ7Ec-iE<B4D+-f_X8_7cAh8P<K{1
zw9BzDhD9;FuckMo^q0i2*zlWzx1_aaV<`{m7~WC1%;dbwqr%jDk7tm0xoQ0%h7ZMs
zQhV+07(6ko<B=AFHwK@Y5;6EqudpBxL(n*(7`QncUPMk*8jB%LFl#3yV@Rnf9m5Ji
zMw*qfI|r~*yefv(F|3JUZ44jD;j1_%aN)ZW{*C+lSONKy7`{;Jr>4SZg3qPg*e?a^
zP3u=Nd~Nuf7&yr+vMGkmypF|jZ5-dm@LdciVmKMYmKe73I2@b*a}3)AyJFZa*e=}>
z!%hKn_&Rw{40{#+7{fl}e;>ns!+Z_=gZO}yrx-hO`AH#PwI1Y<V)!M7Ut>5X^RV=Y
z^f&46QodH_gd7#K0!tk?%sQuH{52UAkE28!f66}>!@n{76~pNm&X~-<1!tw~#XA3p
z`SSk17|zF#6SvF@F>vb$mtwf6gi3R)uZC^2h;oWbi%FSjzm-57WsFlYj#6>Fp|zBj
zdB*K1Yg(@nl#5$mnX!BMI4Z=^DvtZ&xGs*0aoin8<2bI5qf#8T<G5M*^Jn6QIBtxi
zavV3sQ9X_taa4(;Y8=&+z>VU<X=hDa2{qMJD}MPsh`kkc;<zP_+&J!t<JLHCQ_k(u
zy79~JlI*RkCzH&#PW9usGmZvvG&CkR{I0n5_J`0&W}cK`K)aj0n#j3VdQTkrf~Il)
zl94q|E(HQ++V9SqD{LWkNLxyo$?4+Dr2FG&7smr}wB}&O=C_e9nU1z`>qQ8i_HlHG
zqgNcg)%0K-o#N;$?kIgIe);tqle@(6a2(y^=o&}2xb<C0(P>r@zRu|pM^EMRbs!y|
zird^Lj=pN5|A>Gu2>Zp+KaK%$43x5oA6HVj@c0=L$D?tSOrTT(LwWI!!yAV$ZoU2)
z9>?@JW^gm(7#YW797Y`D<9JrBPsH(b9M6cKls+ZR(F^-g;<3`vaf}hLCg*CLNwYJb
zi(^t8lX)bVoQZMFQIRRenI@Pj<@<$))H*YcS#d0p`FtF+<9OZVzYxbOalFbpal9DE
zOU8d$P;~~XtHNC4FNkAa9P@ef%I7!<zfZ?&##tE0BAz%V|IIiS8|M3(x5NZ?TpGvQ
z3g3xic^n_a@opT;;&{*Gzi+mV$$YEzp?p^yZb6~c$uS=+U;-D99KPqWx7r^^AdZ7^
z9Eu~z1165I<M@U-aYW)s#gSHiG>*6+Cbj1?Ax=u|(PrYv#<4Drk7cfiV^tih<5;PX
zQ_WLmjhG|(NU&DQ|0<`$giqr5G>-K$KZ{#mE`J`!7Yez5|Cw&h370SB@GvHSWm-4H
zu~EEFx+#t=acmWDmVO(@cX2*O&%s`N<v`sQ$F4Yb$FV(*9cJ(Bj9WWvpwjlJBQy63
z=(o~-*&oOEar_|jC+UGWeiU$Q_WZEd&vENrFoDZ2EE~s>IDZ+(at=#>lQLwNqj4OI
z<KH;`i{p44C*n9A$C)@z#&Jq%fAY#{s{IiM@7!m{ztm*=JOIwd@sFIprB~K|?y8ZT
zS5uJ$F2r$Bd`X&<xIDug3}?G&0>u(2o<NBNkhr`R_E~1{2y*EJ$|T@Opk)GO6V?T!
zdIB{PxF&&e3H&dCYZIs>pH1Zxs3@)=y-vzYsD1UgJ^^0e$TuW#qnauwa8m+R#9P!f
zfPV-Q*2RZu)#Te3pPC6YOrTK$wGybEz|9HNNuXW=xyrdEf!hS^b!!6lC5~KI=Iv4*
zX?LjUE`|xzPvFk0GI`wEA(b8T61ZE?Jb}i7dlJY`poy3X9BtDC3KD20hi`aka<ShF
z-z$^c!sPRfaH|CFOQ2r@{S($Z$NQxnq^%QZlR(=9+9_-=eL%YN1uK~g;Xyea6L=_r
zP6>2QpnC#666lgZ^%u}Jfo=jOJ58^L)rFtu_e`Ky0(}yAB!S)u>+uoH>8R%(Fu!jC
zb{8s}_;CTv0SP>rz*7kfOkhv~gA*8%!0-e{sOF>6p*#%Cx`wGTJ8~JBz~f4IOgdz^
zwG~f@?fj<`ct+ub1V$w=I)U*DnKni+PC8b4Vm9mwY<*VFbH<;Tz$EeH1g0b~HGw=c
zo@w%@OYQE|SqbaD>5n-B2|S;`Y=tjKmn1Mpz=RhQcqxIG*;md&<G-4~+yv$&u&yfR
zC$K=i=be0pubG_J1?#I?D_SIeBZ0+&H%-o40`^*(z}pF&-Q{>k&btZgzIcYq5_m6x
z_ZcRTGQB<^@SsiLLpg=qYYDg#a3|oAV?T?4>*X!y_I>641OjS`ClE{^B#!cA7ces-
zxQ(~6>d6D_7)xB{gqo64`yTdm0+|G|39Lw9t^AeJ)zVc`*5sZ0)HMm%@R9M?aqsBy
z3!f(N8AqP9zRUYOfiDuclt7NcFB6veeFEzf_$q;~6Zj^9?K0_a5Nu6gV*;BJ*sSnd
zseOYabG}Ppi^=ERk=yK6bNA(r1a{i3(%lK{5$sK1UjqAiW|_<@_g(&wz<~sQRNCPL
zeiQs8{W*byf<w|@q`ykP)xFFd&+iEwPvC^iBb-|S{bPbx&J{-ixSUMjR04k_@Mi-5
zsp+o-P7BVOO!hh>X8zy2m?v;f;lIXY0-LB@&da=zz(oO9M6*Z|MU$AVsV<g8@g(j}
zqHz)>l0Xu*lejsFl1Y?OLbW7HCs8Je8x^v9*(53?aa|JEBvDT0|D@%m*RqJ#eq{_5
zlc=Po>!qx~rW>x}%7$-BqKdex)E;ehag8KuCQ-{|)_pslAxqUs;+7=t65lGVXL4>!
zqHYqmD`YYsS-||<B<@I}zR9^$U^m$X8zj-tv^EmtnZ8YuxF?D6GV_yYnnZ^r9#mK$
zZIeW^B<@Y3xx!XS+?Pa)BpgX3%#qOYD!yN7t&L;nw3XRT$^k!+M0>+b=$OPqNeoHi
z(Ih%0(OFFcljxE}*ChHR@raymNpw%5hxlQRS!?f^M6V=z%e*ok8*J^Xrv6Fv6WF~5
zh&d8FXOP0dQaVGE7?#8{3Wp~#B8ex(Bc+c^ACuY@*yRbcy-&%1T57LrR1%}rI!5L=
z=~$_~cIvYVpOa2VVqy}Ll9;S;RuWSL(~_7jm}<6thQgWBE8AkP^m&=A{DNRk5-%q4
zQW7sGu`G%AWWJKbq9oo(;?*SP%9)qMYl8Vw)?APTKjI*~E@z>XCY{AeyeW7)iMIqx
zrAwrCj;&07Cy95j^69*<@WUjQ3qFwAkEAFRJEd2iP2o<$BgdPxzO3is6Zn$|2!h5B
zB@q@!j5GU0lQ?%l5*L!Vm_#y(RMNWPWku4udDgyNH=RVr4yC-CmG|VXOk!0MtCjqD
z5?>_2dt}xmu~rT%d?Z*W{aE@5XH4*!6uYfkV7^RZeG;eSe3iu4g2U2plGw@Z5^qRi
zqhM1Ko0IsKoJ8f_jvX?$B(YV%g5`M^fOxx<IW%p5x5@b_i9O=IJlO^NllVdKy_7}R
z<$##*BhO0Rd_?|P=D{QmCGm^+*Ce>GiA#O0?zbd<mvcmVRC-K$TzVpjR?0l7ko<>$
z75)_bB|V+Q8Npf8`gaolh|eYQui(EV&YRZ9^^GBmTuLG*g;!IUn?jKkil+GM>frr%
z#ZoAq!jRpLTT<2?VI@+yK>%sV6iTH~T3jxL|D{ky%*?VWTqEYkK@6`IS1_&R1ykLQ
z>r$wg!u7_lltS0tRz4Trs&-=vl~cIMwAK_<NujE7stKy6P{Ve%HfP6LrnR=<<`n7}
zhyN{eYYMleP&b9!Q)nc=p7bthuJjIR{S@xJsxJrGKz>6hS7evXOW|%gjZ<in!ad@A
zlQX}!qp9IdvmMP+xK|U~JcSkl-uB3O=Hf`9WeTlQxG#nKQ|OmMe<id|;h_{drO-wp
zGux)n&hP_*_9=8o;X!f76u8(m$M1F!I;YUXI9)iyhPw$KPNBQtO0S*@d!^9ZWcCp}
zBJG=kU3NeU15=oi!qgN7r7$>!u}T<XdOelGqbUqcVOR>oQ+PuD2-EtQV5CONRX=Wg
z)_+obWjs$Sd?tlaDU42Gj0V6lFq1j<V8$tDy!6==o=agu3KLV9Bxkae`J4@Qv4K1-
zg%@N_m(rObm?@o=!t*K2Hfyna%~8{fCjTYD%PIb9{N>^-GLIX6upq{NMO&4}`{n2J
z3_9Fof%G-$>nSW0ERwz<WzJ&3n<>0yoH@H4Z>R813SX?jmuv8D3d`7c6&9_+dnvrn
zb0>>RSu9WC10Jh4<<8FF!<6+mrELbhueLA+X9_MkU-Kc!0(S}?0n@xG_)_qv5RjAN
zR-_P2A(TQmg-8kslNn7RCbs_)#Zx$O)nl5HCS=V_3TspND1~eaE7WDBbae`=Of|dj
z8dGpx3LlF<mwuAMXDRE?<)<crD`gk^59k*%zf57hfNT6p5ExK=Lkb(Y%hGrujZG<R
z=9M9hnrVES!gneBm%{lJwxqB%g~KWQmcll5+?~Q6!S)n(q_C5$kd^<tqc|4=m%S+*
zl)o>9{V9B(!Ve06O5uRuM=A5S=>?VD@n^2Zyt+G-!Y|7CRchD&J%uAFoR)Lc_$O01
zX85?^1jnzDoJ!%36#g`=e;MCi@0k?Nrtr5~&q@E0+GF_F^kVXb6fUMvK5ZQ>m*f{0
z=SXQ5Nu#K^m~mL7L>fq=WE!PpmP@0wpsciv)E?(GS23&oPvN!c%d=4-jqB2=DD#Fi
zZcO8PaV4oe+RAC%q_A2VRRpY4)g;(!p;O(|td&OXG`gnIEsdMgsFOwuCEt?9t!XqB
z-<C$*G#ZO<PorKMjl{XqJJYx;jXTn)pT0cXSJu)XjfTp(ducvRd*RyiY}4d7QFxCu
zUuthlfw-CU-ZYw<d{(d%9BH&nqg5LBDW^>uZ3XvBTT7YQE{zA$=$OVsX|$KwA&m#k
z3|y(k%uZ=^PNR!*Y@a3<dy5`Uqk9^Ur}2amdZh748hz8~sj!!{x9QtQz`p&`=%2=L
zg#)CIN(ZJfNHADBMB}kn#9l*X4wG^u^hX#TnZ{#cJDIIdDx8qUQ-Y_{cqWZeX^c+e
zSvh0U7@NkpG{#>whj#ZXYh<10%$!V2V^SKE)tCOvG^V66HH~R$OiyEme0IDtIRvK7
zGWpM&ggI%vn8uzo_NMWY%y-jRmd49zypqPNa$Za0^)%*+=Sf*=zF>jWF1|30w-hc)
z<Bc>Hi{F$opM$YCWJwxJWxk!pI|94Ao%3EA@23$>Bc`V1QePS$r14=Ig$mtLr_?32
zE3<+p4X>uiuIW!BkVa5BYz+%Srb|R%XU5a~VNGmEV`Cc0G*W4-PGe0P=`=EFtVn|=
zNcO6HdyOm8SY@i&<6oP`M`?T^lg_#{K2GBk4T%*#P2;mPJ~wr^YP$}BtzV|GK8>%^
z_&SYmt}4qqOt8nfDUHpnmd17^e4EA=v##&VvBCVU<|ty>9ZXOTE9^A>Zqthc*q6qB
zULP{nHS_y4e&A&=gVGrsNaM#e{z~I?8b77+a~j9g>!9@4G!Cb6Nc_uH)mY@WG>#bO
zcY(c`N6iS2r*T65N$DSHoHF^${8Mai?-_AXjqPk2f2Z+J8t2lukjBL{{^jOq*PJ(%
z*^8TOukKPBIT;jDU%T3snPgZjgW?&KP%C|8tX*t(EGd&*Mo=Szni-VM;F=7|W$?cY
zDraz02G?d#K7&fisgS{S8C1;R`iymrWvMG8xl;Cq3~p4by%r`^QQvA(j-hJi^52o_
z#$jeH!*vC<Gq^c}IvL!O!L1qGW?JnHq}s)AmtRksYjW6BKZ83nxGRGO8Qd$sVFryd
zXe!Q=HZl2k3mQx9`uAjze^po@ZYJgUS-*J(Ei!Oq&@zMjjo&JR`>yI`?}gT;wT)@w
zQ#jgX@IVIbGuDq*bjYA*2ED`&X3$YU|Dg;zi92V|C4;URbW_+}`fvt4Os4JdI}RJz
zw|54Qn$|uUJR<IEoPHVfH#|TvP&!CDID;Vq7G$ZR;$hO^(h(Vq%-}KcH0k3RJRx{8
zgHaib7C)82(*hQGCIfy?L>QC7*bF9SFe!s^YJE0?=LF+3*4K-CS8M<7#st%s-x0Ip
z<P4_DnIbK+y9rHud#B5pA)T3l-F;RD&u6SJ%9%!eA%i&?yqLjD8SABfnJiw;;FSzA
z8DukfHG{eG0~yQ{ESJvDV1eMZ43-Gk_w@`G8eSxLL%KMFH;w;R=JNZLrE=aj{yQ1G
zYj{}(?}^`+_SJik55ymuoI-(9>dL^Kfk*7kz?XqveC0inU4bJEW)M;nIV^}|5EaCX
zAI~5mPD)c$0gKpmR%Ea;gM%_zXO&<}2CFkzBVL=q`V79x;G+!I$@w^g&jg=HKb5jC
zM@apgJIFX+n)#vsbq1T{e`8uVWU$e&J($fId@JWWscmlMWrS~(<m@r|J2Kd5c$Z+e
zlw;VN!9MYR>5tOyGx$MpK+5sh#ed>~B*zX9W$=r_UwLISnTIp@ErZ`PIFiB94E~mX
zjHfVP<Y(|_2FEivA@ij4l#~VSntv%gBRws(*M8P8>u~uegLB6DSHSM)Gq{k!#SAWG
zfUGsWTynA~X1GWeMGdn^al<9Dmp@@BX`E77los2gVx6*CTqCEP$@!n)T4{M{1?hFt
zil*ibS?e>&A6DYPO5B)5<t%Q>qDmI?R$%@L>)$o2X3;K-2ePP^MfEIdWKlC~`Hn1V
zWl=keJF~bei<@OWU%xn;>SS??!dtVbC!l$opl%ko3+4=J#s}=@itjKv^#vDZp@DJo
z1P!H)qzj(M-B~owqKU$$(tD)&(gXUng@P=aWpS^Z=2^55?3)F9agEC-w3OLOdY|-u
zX=`a4DM#Km3wyiTXVHP1yu$jA{RcULS)@3bSv-_Qr!3ycVsRFov*?n=Q&~KnMb|94
zWv&07eN_5z7JagKBn$qpZ1*gBWYIH=UTW$srEmYwEupWR0a*;pqMw*e{neK+$T))q
z{LkAV2G}|@i(v|fOCOVt$YP{msMhkh_zCHgQvQ1e`#zJ!s4OOAF)@qL@@bCGVvOOj
zS&TDWr>iyKXB9pt<v&GF%3^XBa}`d>Vk&1Zi`iLBGreYHF<s1`)nNCT#-Ek7K5(G(
zf}EG7bFz3bi|5SDyd;yKRlZ_+y_&WDWra7<%*$ea77OIRE`3dE|DX0klfQ@?*w|Xj
zn_0XiGm^y;!G~ECX0cTKb{6jt#7uslGoQtKSxmCWEM3lXM`OF%bgGLt3zzBZ&cb7u
zd)AkQKZ}5zknw|N&xYl2hcYv2T4REE7761dv*@n5%4Ctv;!+klE3hJqm05g|#g|#E
zGMVcHtEFqQSS$F*v~qI(kE-*4lA`#!_^`WNa*`lOPQuQ@0wc?^ga##w<ea1A93%$?
zF`$5g2r5Vpf&l^D$)S5@dS(_x5R{yA&Il5|*LP??|L63%=U2C0y{fLRu5E@1ezWU<
z%s+iC6G79AuSq=<kxX1+Z8Q_HOdQU{kxXP|VmHkLnb<?vn~C2u@f%s*`z=!^$G%ML
z|6k{iOvu-oN!7tj{F#ZrSS!UtnfSL=d{&QU;#4M1XW|%Rj%VUT=8GR^k@%CD#`~-U
z&Sc_jCN5;+BE!yQ;ygi4Fuu$LF44Ix%bNoe6;qC@nYfmT>zTNbiHDi^I}<lEaVryd
zGjT5yx7kX%xRZ(ay(26a=sx`i)c7pL^-(4sXX2^Z>K{2%lO-S?^NfxpkyP32NU-B&
zyTOTeBoXr4k)4o>3aSL;Amp^an1S3Z<}qvY67t!NJ0gB76|keA9fj<8$&4vNC~U`I
z_FmNVi`lW_knu^w;&zm<;}!a4%-WKKQg)O!9r=hvS#mkksjwLp?5Jo*B|9qH@va?D
zWZUO%`KBGM?5JW#RXdXHu-cJsM_oHo?5JkPYj(&t;Z(OH)sC8W)Uu<7-T1tre0oc6
zRRP&=g@?|9joIQ(Z9CHJFFxTV0d>r(3_I%C@wy#vFl~K18rad$tX1r2L~d+4(sjHq
zNz%lQzu0ec);6U!vm4)rAz>}-Xlcic*~Vz&V|dGs)^_x=qqiMx7%WM;+0oXHc6PM4
zqk|ot?C5MaK6iFz7CJH}{u#6`W_(xHN<(7+{9tBxR`sx>C!r0^K6doAV~ibR?dWGm
ze^w2#V}Kn4$%Cnb?0B27oAVa`46I}p7;48bJBHgaf&ruKh{ud%QQrJ4w~|DTW>I*Y
z9pmkoV#icFCeWNrooL4-LOl69c5FLjd>SrZoMy*#J7zIJ%o&84R5`oESw^R`S)4<)
zy|2h8GTyUet{wB}NUM(s?^EYfKd|FNvo=0UAKS6ObUv{g%R?G2vSYCw%N(dRHt{po
zp0VSs9iQ8=#EzwQd|}6a`pfM2(vG!utg~Y|ot4xTR7v#};cMzQGHJ7o{Hs{}mb#iM
z<{E;0rf<C+8|?7f;iI!rma!e%?bu|;W;$E!_|A^4WckGFHaotTHEhR^cH{HKH`g1}
zC?G1Ikd5=tcI>dj#U?xL*d_bC*<1pCk(=EtW)kF<kvtAb$fD$lr*g-O)PH;Nvlz7_
zV24W9><HNrwj;=*tUbA2y4fnin_8wizH(xAWXUSBV~-vC%$VQo_?;~4VXxiz?IGz-
z4k^Z0i0~hF9I)e{)H3oo^)EXP*>Tv8BP<@X<0v7%{-ss?y2}TFPtZR}Jw=t;({{**
zjAY%Ov*WyMG7h9TaKVm?cKjp5=F{vY>TPL4kf*yVc3idNnjP2a+%)|gcHHKZq{Q5^
zqZ#=QYwy}|&yM?M<llq`)Q8mXYZ{NikI0Xu?OEgJsGiDpWJeJPiaLzv=jXE3JCNN0
z3yayP2~?>~bRag@2!jJT94JUXr&*iNfm{ycb|8=G<aHSD$CLQD3gl;10czYV<iJZT
z7B*YSr)Z0rT$b>%1H}m?9C*cnlH}56OeuoAcTw_}A;*98s+<Gm9jM?yMF%Q5P}PjD
z>_8QhUnR)zNKTw@j8l$e2jX1Kf$9#7c3_MHsSea|pos%b9jGaHu>*?3c&DO`T8Apd
z*9f&8NFx;HI}FnusLNu80}af`dJfbl8xM_qCuBnh;_*^!#Hz;B*By9+Ak!sP%^Ya%
zKpzMCI?%#_maOXPz?%-Va-f|9?HzcFrUbWfptZ@D=b^31lBxr_6Sbr1OH5}6x;XG~
z-ivpW%C+d`Kz9dvFs7Fo*^`i+C)k@@YrfH>p96y&c$-dtx%z~GRC#lz1Ppdyhyx?&
z45f-W%whblS^V^eI}nc?$=XrW_;|*W-*aHD1LGVR@4y7PSPslI^GtGJiUU(we8+*w
zrXNo@jm7Cy>2Ah<YG;vWJ21zAcTHc$BkMuh&U4^>nu{EmZ`Lkw-~;l9rt^^iSzdjT
zllp}Gsad;_Aa812O!$oYxdTfGOQ~Nt5Pu)<K~C(K4lH*VAG}(@RT^>ND+j)I;2Q^4
zI`E^zcqjHMs=yWpz9p}AV2uN7$r~Kl=)gJ$);nH&GCKY~@J+1UO#Szr;qs<&$@3k}
ztqyE+;Clz+@8=i)2f0uAp7Wm^*v^=r9dJ3|c3_7CJL&9l;8zDS$-hwLo&0tO9Au~I
z#6NKmf7iOl0j~ogR{5xY2Lf`Bv#-)~pgN$@moZ3DH0UtCBhDC-y#L<;owf0*sBBOU
zWSQ}QI<T9(hx(fXdkMcgu-}0{$or^r?gt15sWK<=x9)FekAKlT<iKGEj*yQ!aGW4x
zI7X1kiO<g|2TnWC-)X#6=8OYp9q8tSya(W%1LtK9ohU3-4qSBLZwDU9xj2kkIc^Xx
zQ?EF1)%33su2a2-l$(TG)Y}f+A>4J~KH(m9xa@>Z+XJ$|LqdV;8N!ccf981pao~vq
zPt6!O@yvnevhzEUjR8qcBsh`CLmKWoq=^0t*;yMmb2yQcO>$9lQ{~Am9-r5Vd~~Fk
z--!Yy7j&W!`8+chaiS=TZ#YrRiI>UgP84^dgcG$`e8q{9PNa}aIZ@h)N={gfqA`c%
zoG9-^S@I+1tl&gNC#pD6m8Jw&cH&htAopQK!bGL5e99x)tdg+!$fc?pxjL&-$u+1o
zoyG@4<cLSwoOq3XZE6~|4pjo=L0z=26B%^sQR_R=fY8v1#!kHMgu-GYYAKFNTFIr1
zU(+T|G-XvYCpr+Mwz(56oM`F9n{-+`(Z-2ZPRvS5c#DpJgvGV3*{U6(y)moC1?_11
zot)@wau-5ZrjnTMEcP&Kdpgm}<lclnG9iSYE+qDILR4A}aAKengPeHViAhep!<%BT
z6C(+7gA5@Ibz+$540mFL$whZzloO+!7(-`*>5p|{9C<ud-q4k88zzzkB<*DKOc}fr
zQ^-@PQZ<b*ojOC72j7=9+le`JK5^n*!aVAG)VWk?E5YwOF`vZ`s2@{5q<%z|=Mafp
z;6%LmDNS(}5*9hJnD803=3(P~ZcClUtDRpsvCL__04w|@ov)qv#);+R71Xb&CpRb(
zvr^vtBWv4*sxEx%#A+vUxscn1HBPLRd((wP7uGqk-U*BN^5WhE;~SPXII+=*O-^if
z;*=Aoo!H{UcTV`72sp7-dgN;(b|<zu@jZ(_II-P{pPl&8to_OP;uV7(PV98zSNglm
z+FuCqmk~rW|5J33oldw2ZYR71>D1#iKB_M-M99bdePl6JCo~2epaz|YI1wd>s9~yZ
z#>bq<a^iQIyQ#lXCDk68dGnQ@y)@;OmVJc%)IXdrUcQix>!1^VI`Nm;_P7&=oH*>n
z5z{$FI7*dIJ4$|e1@DAeds0>%`#R&qSto9o{yD;B>Urt~&g4ZWF0mMY9p(!8DpfLH
zbK*KV{@RE*H=VfU#BC?;IC0mB$4>m?#62hOGwg5b1L{NOkEfOCeMB>UX`YZJ+cPJg
z{>Oh#jyI7{DrIvSOXBkQ^duLuyO6_$oG#<nd*OQVTeMOoe*{HkfywufNE3N#%Hu*w
z7fQL1*Jb>JQ8MInAwN?|Z2_0@WL40GLN2`ILSYw*xKM(o_(ffKnOw|t<Q3iG<kA<7
zuTXf!^ySBeKbEHg7pn0SaAjP^XKdvw6w10#&SiX;f*j=u6<nxjI+a|gOn%jL<i1FD
z!Ro?WF0|$#C9RxJiez>f-?UKOWqe9H)rA@^)O4Yi3ynAin>mttF1%)PZ5Ps9sKa8q
z3mJsERJn6y{Bahj??MCm4XFxMeEIBiW9gU0H>fRLXhLY}LNgbdlUq>l&oCxanuyBr
zrVFj;%YdcW#)Y;nEOB9}3+-HJ&#DnFba0`g%lPIQnK8LKoj4V8r8>LN#f7e%gg!3x
zb)lOJ-CgKGrx&#+_20Xxx6CbHa_>i9vJG~jzY7Cc97rAHda+|j?b|Nn9*=*4*bvqZ
zbzzv<b~r&^E|9^GbYYYWqg@!|!dMq(xG>XYT=8)(OeTz{iZj85i6&2yb2M3=d8U{=
z)rD!~>D2f?US^R$aN$E2W|QZ*@U9E*xgbA|EMs`zg}E-wa~V(O@rQHyw}Vv8rz0S}
zf5e6hMF|V2pHM%gN{qaWxrn^jbUq_|PL*Fs`ND-|vcTM^={7Fhmo8+wV0U4;3oAG$
zU&-F?!dmjz@#&ITC9H}U<$nYSt6h*yOr~1$taD+j3)@^+&r83-g^h$wE^Hx4%x2e%
zR~5c9ohCDkF?{dB4mv-$@S_Vqk>zWzwiD#*>3$|ir0`A`cCq*i^;cN{?Tvqu%OOo1
zE;wCy>cTS@TrRj>*z3aYE_k><gk8{G@VelWbx7y(_;igBa6u&um!0Z*T96!~%IhlP
zNMwY?EEl4L7*+iEm$U75VGo_(sPS*R+ULT47tXtI!G%9uIN-t&7mhOEpbLl0$Uj~9
zi!5JHBnjm>>_R;4F&B=zaE7%fsHdnBb5j2J@^!z{bo^xT&&pjq3+HIYUp~4hGw;G3
z7cPnE!WFr2E?jrvh6~pi_Ay^@o5EN5Zn}`g*WzxORWh-X_O1)}=scp{r#_SkpNR)#
zd8zGhf&|B3c6%%vnhQ_N+PMGR1&bTS+<4iIY+Qu7+{o=lf*Xl$B+-$p2|{-2QEodq
z$T|Px<Z+`Ai+QQ}+{jNT;6_1$<Qc=CGLOHU^^zNf=@+3Ebwdt`3D-8h38c6irQImw
zHlAThxbX_1B()SZ{@o^J$tl!wZj^VUf*TdxsNzOdH!8VNnN_d4G2Z;15dS>mdq^a0
zGONV5nzjGNRCA*`Yb7kzZ9Mi1)N;e-#^-J%%g*mcZ8uuG(Z-E5H|n_2oP$rNHm25f
zBZE+n+R%;q1UbhBZZw@?oU9xQ%|_Jt{Jc(ngW81J)Qx6@_y#4dTCmvCjW-G6v~uGu
zljTLiw&am+jB=x$8|_)_;6^Vudb`n4&d!a_Zgg>@JFB`<yHO=u^BHKzR~mcJ>1q0V
zHYj~$LfjZ?I{n-j=*A#7`nxf}jnE9^oin*=Cdqdnz0H`xZVVyF|Cl$BZ~hsd9?v|C
z=5VSwBizRS7RgOF+Kn-8eCWnUZj5yso4*{h-54jA$&CqaOmt(K8`D`eNt(McS=Q3~
z#*0W(+?YyViqes6iPBbHaGT-AO!~9jFJ5aBU*hZYrKdS=yz9n$Zp>xOeCj;v`&9W1
zwH(q!jt^vI#+g;0QWsD^p~hdelgNcEE^=cr;WMiE+czpp+*s<y7j7(b8xJiz-T2at
z<!-EZV*@8-1$C_(U%BzMy#L>gm2_59SGn;mL9SH%HPyJTkxMYxIM%VY8()dt=*A{D
zzIWpXnw#DD&TPAd5WgH--Prb@qGbNjjqPUSPrR~X{!C{FHH)td?{ec8xpq7emm6+E
zrW<xQ9Au{(+Pg2F&E((3a=sq=0XMt^AJuqxBghV~5;SVitd*y3-HnJFb^XZjBkD#>
zs(c9eARl?ilJoLms}H-~*yF};ZtRt9&5Pn*{O-m+Hx_!Z$YZ>LbH5vZyYa}4KioLr
z#z8ma69m`YM%AC9ZX9ysup8&;9HC0pX*Z6#am<b5rgPGb6DG?if=`kE{jBjBH_p;I
z_rLxHH!iwyiRNWDt`a2w71>P8&lg`4=C94(Fl%qRam$U{Zrm}Q`)=GN-=oIkADFcd
z&1{d|_{WV#9yIpgi5pL4oAsa==i!;`@E&CM;5l1aXv#>k5fZ40)Od1ukjI0(9^^11
za}sh<bN?qYp9h7^nEW0TAQ${kfb{Ybi-oC0;#E@;U-qE52bDaiOs9kg<q5A)OL|bs
zgVJQlP?k`JDpOZ34xG0N<cj}sUiF}g2d{Zh+k>j~B|{All0C3`kV2<AwOYItuSKdE
zDfw%XYf)|g@zcl|9@O)ojtA*1N_<@tq$4@%v)CYRR!eH=f#NZ)xExX|GyJ*-Z+Otd
zgPtBVVc470rc{Y(MrclL;XzB&m$t3QZ+XyKa(d8~#jezL9(3@aBe}iQa(+5_(3wsb
z(=o<i4yGHc#Oclv3dqsRgV7$0@u0T{eLU#vK|c?Mcret1{)`{!!63o_v(?)yO4`9@
zFY(?b+b|DCn7s^Vyi|?!VAOvi<qM+6dN9s|86M2^V7vztJebB-6RGcbFxi7i@m{JW
zNrovVPmP0|5zluzi_)(YXL&H&gHP$q@!(w#=6mpg2k+6D=fV3N!(0#IzwaE^c%BbE
z_{f6=9(=;!k2&)A{QP?z<6!hPC2_Im#ZPH(V*F<wd`^(sB_1sG;0q6ydGMtNt36ob
z!Ez5)c<{9c-!SYev$@2}4_L4CU={susq%Z)a)|%$?_95?zrllb9;`Rp#(()*GHhh6
z6gPXYh5VfdVGnc<wtBG5gYP}~fxaqj2|GO4>A_EA$*`U9GgaQnyvu`MJaBp7_TX0!
zGU+?aT8X!NUc6h|Ni+TiX%AUyeFU%P#V2m0)-QMHiu8c&RL!jd8UunJgy>6;@eC0U
zq8=oAk>o|pgDelOcyQH&-5%`m;FJfaJ^0Ooy&n8289ex%dG^a-2>Z+)Wef-C95lx%
zj&yOzgTwTXdvL^qqaGY%K)m<=>In}{{wJG^@C+MDo{Juw_23+f=cyO|x0g$1<Yj`S
zz2?Dn5AJzzpUw^HZR$<xEi=O%7NwWF1nKvI2M@{5sDI0-WEwqq<iTUJRs8JY<9}*4
z6!W<U7B8}SjlX~iR7of-hd_2OK(nA1IS9F_Ilah5kc4u?o8<8#uNV2e$nP~SYXJsG
zo__-hdGQj>!d?_LYl{#hzL@Dqd<idJ@xtMS(~FW`lw#HAUX=Etj2B(K=;lRPFUonL
zc+rTp<-MrpMRhMKuvn2=$&1Q_SG}m}MY0!FSd0(YN|q6(5dIyfIH_LLqglg?nuJ<j
z)FIfsc#Tloi!?%fuHre<>D2Wi!~0_Wi!VogGqQmf4aw4-G;B<6>BXCb*QsxK(S*>{
zi)Mu8UbG;@`-*ETI_*sVEiYP=+n7#Ua}4dh=-@?1FFLWR3snZt*^HDC#y^PB-HRSx
z%<y8S7d=@!p4!Wc-d^+}5B6e+7k$0x=S6=y1E~Y3@$(ww#oJs4k~Titp<WDQz!)!v
z6T~0o#RxA(GEy4GkI`mrd`ic%IF2gL1j0lwCVBA=c`8-1P4;4n$?>++yqHcWKB`&d
z1=QJI%<<w~FW&Rw13Gi5?^EYdB}u&Dd=`a2Bz#2u*fgc<PspEA7gEJs<i%nyJ~PAO
zLt5g+QaWFFvBrzF<Ym+^y;$zW3NOB5@muQGUVKAX>BTC7WCp(+Mqu@SoONET_hP#j
zKYOu({x<4HFE$Z2d-0tazl9)qwwg}-%T>N-@dxUU)SqM%;P<!eVDT5~PU<ddd_1DR
zvY1J=QzfU%3%3`|eQ4o>#|y9AH9pkw!RLkFi;G@d@*?1c>cwF%j<A*HMZ}A!7eN+7
z)G$?g(dE+f-idjU<;6kzyS>;WtDXECb+0`96XL=9yx7m;zh4^?_YZhqd=tx`td;zK
zd2z^O2|jA_DKCzheB6r@<df8RPHB7Ei!*f2dU4K+^Je@7Gi*l=i-cYF;)-lvK4aIt
z>cutLIep0I!*wri$ZqUIf)6*nxaGwoFCO!JZ+mgii~C;O@!~F>CM(kA6y$i|#Y3LO
z-&FA>tqdt%`;Qk-=s)-3DI1Fa%slIVM{e=Gm{n<;=mUJn;X@KfC{A|PO6HtC<nkf6
z4|(WFDybFycQ69^eJJ2VQ6Gx2c|mGnY9Sw9BE%a?+ahN1Wx^{yl=PuExdc^WWRRuE
zWqc^>LusFJ$>JH}<Bw~3##Hd3BB7EGRv%J)sO-b5bgKAJ)rVvsWRTJ%evEByWUJ;w
zbsua#yyioy4>f$K=|ipmboB2z#?SZP@z-XIm~y1E7lm4vn&Cq|LVaojszf&Qq1lwg
z*ZBP3h-PCSUiaY*auaGZYSTEI!P2%Ron=0}=|d~>TR!yhp)a|$4{dyC>q9#q+WXMi
zhb}&J@S&p*o#f#6?j~j6&ldmBU47{0Lr))i`Ow{m9&+7zzf17Hk^jc`W)dm(^P#^F
zbA6cS!vG%!`Y^?ZsXh$y;cXvA`!L3b!9EP}VYm+?d>G2%$@qs6B!eW6cQMk3Q8c9(
z??|e~`Y_IiiL%UCHQt8_>{>GX8}kl_I@uhORK+t)W0M&^%=8&&I^FD1c$N?EvN+p^
zIjogd@$-F;*(64s_kEb}!{?0rz=scg_{4`#efWrdeeA=6|ICs!kwcO!^kI<?i+%Xa
z98&xorS{*+l;lf%Sjx=8UzmBm^kF&86+Wybd`115`i&1OeON_aP5qWSVT&<ZIo8Ph
zkk`>)Pu)P>=))!-Hj^cC3n3mXy3J?&I{bFIYf4zZC;vbd^G6?kBFlf7Nl^lRX4nqu
zPU<e|FFyQA$fVkRa1flb=lkIG!NsCmZpKZD9FpqR)eO<DITL-dV4BqvR(;Uq*7F;`
z!!B>q3;J+PwnQI7K7@VHea8Rw%W=|&h!0U8Vm@T~a8NEHt9Da=_hFA2`5R#`wV-?p
z1Yy5f`-i-CWOC!f%3mfQAsnI}_CXrP`#nnMm=DLz$P)zl3As}~oc7@iix;V9&6sn9
z^P+_KI}jw{B_A%+xnlZPeTcuGL4LXZhHSGk53AE|%0{|6?UoO>33udA1AQ^?`f!it
zeIFk9@X&|9eRxji5%nqcF;(LK@!<(sK2s@0IiC5jdWezV!kpQtpVmwgC(-OBiICk7
z5OPp+Qs1p+MCK;v@guJv`TWT5$E$P-P$i%gp`agy{CLTa!Ymf27BORr`ccf}m;FfJ
zph&|Krt=D+BsD(Z(te~>Pb%X_SwG6rFYiZ1Groc!-}1aF(Wz|u%ZH+h$yNPGCR<G>
zg;0%J-H%k$@6o(oO+RY+Ve=bb>hc=(a7vP}9JOU6bcE~3$jS1RSyHU$M}0r$2Jlh|
zYXd(T`Y|ei(E%uuc}v<Gel+o;5xFr{%-0F+4=YXm#_w&(G0u-><Yxz!=6<vwxAfyp
zKU$G{Q{VEVwI6N#XzNEeI_;<({pjRJd$MHf;D>K)VmxzaKf0KH-0Ui8`8!|T>G$xX
z=YQgRncRo9eX0HY=ua5n$6!B(kO%rP$d9+lk~yAJIvwiANSeaK{21;><wI#BsNx9A
zG0Kn8evI*BtRK%Nq{rKeFFf9l34ToUW0D`W14s+t9X}?^tHFN6n0AUEKl<?#d8!}N
z{Fv^?3_oW2@tGf=`!UOp*?zolj$w`;@0t8AVc=m!Ml#ord8RM_tvTP15B&JhkB?|B
z^5bJa7WlD{#ZRag_BW7y;8T+&i4;ZUSnP*~yu^>CeysOngCAe`vCNN^eysB2OFx$T
zvBHn9*!<<KD9WoK@U<V`(44@5Nj6FKt=ueIvD%L{tdd~qeXSqsSd{li%{{CvVf;ov
zHu<rY{${FV*dl9;`Gvou89k_M^W%FzelTO?^oyU!kbv!e{7lnJ-QkCwu+xm(<;O23
z|LR93Std=|%Hi<CY1X<3ZmLH{Yo3wM55FG)KU6a^Owg!7KSDfT$tK^XC92bpm}ZtA
zyZtC1K!pJI`0<+`|M>C5kG+2U?#CrRE;D|gA4mN-=Er_1`f<RIgY*yk@h9OB^)G6?
zqxjW4LPz?IFNx!Roc7}k%@cl{G;2>0<m=)k@+|oR^_(B){dk=}r58Wti{|RO;>T4#
z?)h=wk82E;E^ZL6Q{y>rl5cS(+$P`g<1Rt2wRHD@{K${Tgol3oO^_<-H=ZQUPvxGH
zEjoY#0X%0+QUKWlumq4TU~D+@-DRQ)<ix;>wqP+2H3v0k0J#XVesU9}mHZJG&C6mw
zs;tt20Tc?LcmO428#E(}5DEv3D=STkntn0D%T)QFJE?kwT!vbbS}K6j1gVv`UY9kw
z96>H$Mbk+Qpi%&pS$s7BE1`;6Ta}O;cyWKFuvjgC>V){f<hH88Voj>_SStV<`8Cs#
zo3u^<=>fC~;H?1anttN|GEA-)Kz(up(`hJw1x#)fFn(nqe!j2Md?SD+gr)&BBQy`7
zC7}g%xO{r0ob^qzfPBubbpUMw=p8_x0NR><XF|IG+M7-XLdO6)5oGYvyo*`eHGpm=
zcMqTkxn}^q2;bdEEAYN?QRL_wz~BIe1kjIF{iy?}Qag|^i28QGc)E+X8cJt4br@Av
z$OytnYW(cR1TZ#W{JiFz0LBrf$WoDSfe2ti08f^uPn4aXAUug6pWYIlOrF_Ik>IHT
zOk*qI>4X^p%p}Y*{n-ThF2r})i}d&&p=C+qs~YD8jQ?AduXOt$fDZ%648k77M*(~s
zz!(i<H7p3=lK`fxn4#j+02T(2pdwMlq5u{L;13`Wz-Iw`9>9hGHU_XHfTgnD0$3Tq
z7Xkdz+qOcQ)Wxy@z6@Y_03&WD_t~44CR^N|G~urTIPx|2^|pP@s)M`JRt4~F0BZtx
zmd%=@i*0oP?;lRy`7A+ra#`!z01n+uUKhZzlGgRI_!F!G+lOIO0Gk7_2jB=`O90==
zpHA7>1K1kCHW}d{+fM=PIIL*Bjcnfs@IwIOk7UU4V*tM$Rs>e&QHl<*{VZVt><r+>
z0NXFrUDQ!MZQ}eIz@@`VCdW`T(JJheMV`yz<49Z_vpax6U2OyBDISj88$g33t8^+y
z=dn-&&;qy_z^wp+a%trB12`H$H~>9>-Lk!l+0`cJ6$v03K%R?fu>kJfOqRJ4&Y~mZ
z{4IcerL6}8_%ndL0sPL{+b36(u%9#kerf9;GKSLDUC*->{YKgJWrKzZ*1rNc%yG)}
z9wPjfkSP38DeJKSjt6iyfO7$qDsD{Fi2zOpP_d6qIN^wLDuB}gbRUx_vvDQ>(Nag0
z^8s84;7R~j1Gp%gLucFbKDJ8%ymm8fPonj*Y{GpEXK7hu60QXxgTKL<xla9JjWO-7
zT9a-Ea3_F&WO;K`cd3u$+zIyscpw8SWqrum7+1zB{I_iEWvtT6;{eJhS>?D_&ia(`
zaz@!yO!-53CIetc7S%W-xmcnX6RmHTvL>m>uA-fa_9~zvhl&C!3aZGd8f!0?3YnRs
zeQm;W<W`N5=b`3Rk&hrwenO8U8HH55q@tk;MMYs1MO0W-q)4rbVk*k1D6isW6~$GQ
zR#8U9(sAh}RFqUvN=1z$$}804-EA6YyJq&p5<P8YRlMEH)^;((Kit#S>WET7#jQk3
zWfiZgsHmcnYTQt#y4d9MiB?gKyTf@bqpFIZOIfW67U5(SqO!>4#H*>Wsd!CAbrq@7
zql%g;YB9+h6Kpbpl2a1O(XNxNwu&^>SbG^N>ZryYm#*SuS!>5pwmW64b;*)5l$=yg
zMSXVNfbpHrHjq|NM%fyvs9PRysA$5pja6eqc%3@sWLi@d-4m=b;5St?lX)v^m7}?e
z7GzmSE#(9gtOBi6yv6*jscon=6D-oUt%|<ojU*j-)rP4UuA-xgPAqm-(Nje)au*d{
zRdkb1Rpc6P>!G6Zc$<J|_QAG7MU~zv`luMJVu*?hyVClq7^osT)+XFfMSm3o=np%h
zh_iCE;SZ7vq+;w~gGCD-&2W@91~Zf+>|Vw?Ld8fGlT^H;VwB8w_QY{2CN66*TE%Qz
zh8$z0xlBl+Rk-7^49PQI#RN{*M5+u=F2`hP-qTo$MXsbxp)WH(RW%mIG^%tuQ^hP5
z0TrqwS20J$5?N*{-sS0kA{)4h_f*W4AthNQ=RCP1RLp!uk+k#W7C4e2IX_UbCBgck
zijP!$Eb&K_@<%dy_p>cfAu3f1RiqEVXDU8t+C{vr7E^DIO_yNFCQDcJ3l+;$e5+!$
ziZ4~nUu)b}U#nQohAXJze5K;g!^r}2d?V+QU|p$Vm5NsPjq!-CQL&c6P8I7^tXJ`q
zitQ>ksMx6DI~7}1Y*MkUIJT%*GuS3~<z~*m>^V{_cq@6Egdy>J)%Zgod(nb^*wD%L
zgJkGr`%!MpB&)!~lGdM9>{PK!h42m)-yca9kWKy<x!1bbGFAM_405p~k2rP}4pto)
zXB1`pE){MS9?phWg<lr%o-`kevNnVp?@1HYR0QQV)KFVPNJUu1QMtc(j=C(81j}x6
zM3x_SfS8JEy=__4uZ}3fdt`S~@pPK8r^&Hb#qaE8pNjpwzVmWf4wY2?klDVHc0l%}
z1nWVWXM*upK<0;hn0kadakvq7T*V35vNXJ`;iQUFDsHQ|qvEuAy>6*Eqv9+#qH`*4
zsK{U5dR}e~IbT`uH<K@NeO_YxWwX^4!d2=u71s#|_@_t4f0IRNzOtKbOlM;z@5(N!
z8E1D-#eEeI<f6!Jt0A{$tfESTZGWqHq~bBpI-7>SE~QEEKP*0>K9!t==Txb+XvW+M
zNQMOFNz{-;$W8?{2UTKn5}ebOQtOOP^Kd+QHT0RU<YQHSY5{6Ns)QBN@RG^OKorr8
z9kr-tOpfeki*hCw*HA)3vIeV$S2UE=P)Rc$S4wFptzq}GgbEtUXvVCTqY9MO5FTVp
zou>$wrzypX8svFN9-Ks_d1Vb(dfQ&rP(?$Hx~R(HuSXOyWmGA0?wWCZt7)jNVgKH=
z+udvjjwq=TtQmhbWSf;R38=*|n}+jO(xjNCp^k<Q8air7*HBmTWKV3WAwx6%J~ohG
z4fS}w^)>vstU>v8$`9)l#hii08X9TX)6Zt?9%B+;*IsNsZ*W?gXvY06^V3X2a}6yt
zwA9d6GoEeU)X+*p8x5UW+q%pCuc5VE<pauu{>G*)AUk&CbOWiC3)+rp+f%FF%+^Um
zXAS){^ye^|l~B59=&E5rqP3fbo*H^-=&oVqYZ*N>G%KGWzUcmLMylSt%Cb)SXy~iq
z>bXRjgm$?s12hcO@V17*%sEJt@AOWS8H;a&Lo{Q19I9a$q0Io>a1EPpWgDqsl!hK<
zts^w!Z=d{`9xcnGl=b!zMfAJAwjSec<1~!d&@G7WK}^svQ7(su!x|=Oct^u~8s=)4
ztYM0V85(A?_o>ur8ve*>kuk_IUBmUk#ub!fmWJ6H<}l{KYsQBBu7*5EjeTBDuy`J2
zo}8nGEgHVlFkiz58oto5Ov8s7KGN{1hJ_l+<+gk{*qD%y<zE4^ME9h9!kH1L>9d4I
z8Wywoxn}&W{7i##)Of(Cbkz9cxJ1K-l8PKl3G(OWOAX64tk$qb!wL;wY4}FwUuNd0
z(qORdYYtVK%d^B=y=<fVVHJ~K>}>m1!|#8k$s_byxnB}28_hASlXKjgwqEi}!cx|;
z{S4hCbIt%+1G1#GPPVNYw#luhA)w)V4L`6WuPjszKWVUQaA?@B;b#pyHSFTb-@%nB
z&E=xYkTQp(L}ld{4Zms-mfK|Ks<ccE6=o^&m&K{UC2d!wdE~+!RW=MXF0oriHPE*3
zs3O7guLeot<EZ4}Q`Mkph-iq)ZCJ{<SaJk4+<lxBlG!+t5!Rsde%yT2$RE>?#WDXW
zJA>RuY;{0xJq>&1E|!g=v{nAH{LWRkk2jhWKk97UZc_CJ13vyhIjBLh$w{3aW&2A`
zaE&65aH7)t5!r%*C>6v}4aeku)Nn$>V-5ev{;%PbhHJ94G@RCOM#Du8CjRIpyV+R{
z=VYVMAb<KVXsCK3<I@D|k9*S8qsk=>m!;u5#v|MnxsN3IQAGmeiCsFqAx${Xk2KuU
za9hIzPSG6=_qmYn$()d-D9@btrM9$H4%z4)GV*V#+?x+?WRnf#?|+h>Xm~1nV-N*`
zc*b!`N4bN>_WN9eg^-OZPD0RlZcGd!iIANNs`xpA$Z2veLZM?y9!bmVl{bidCTDjW
zH(fy%UkV!cLLqAAXj|1I$%TU`5`;iesz9+IUM3f(mN5NS*oy>|4x&sD=|R*DqHGZ5
zf~Xcm^&rXzQ6UIx(0Ev?7(}HYRy;|n5`;YVf4e)aa?to&DI49ZL5PZ3HE8Te$yB)$
z<t9quxy!1M-8D6c8q&)E*d%9yMQ*y9(nXTB7W3SBoV2y8?X@6k9#iC~O-Ku(4#5Z(
zKf#g_#2Z0038G#Q^@C^-M8hB&1u=6^n!-FXBzZ0}o_rFljX6cHQ{|s;GHFd^s6n&~
zqCJC~OY;Qlo6<#sr9}`eY05n=Nm>Q*RuET9TjklHbr5ZW7&_IseeSPO+6E!IVU^N>
zndNz}a}XVa#$U8f%pjYOto+=AY+ZubJj&LU+Ul6nBZ!_sEDqwcAbJIHFPn8j5EEs(
zg6JdHB8YxLjG^B@h#|+6Guf;If)L%5*D^4OK|uubTBMa6ZwE1$k-|d=LxUJb7)~8Q
z9Z4NU9ZmI4Nt7mIgBTaYmb?~8em%)LK8PIktxxM)Ck63N5T6FIFo?;FpC@NTm=eTP
z!ZfNRnI6Op@=Vj26~t_l=Mdfv;yuD#(|^QM_`05Teh?o7@ge<z^{t=Ct3c$B&Bz5o
zOgpAXNA>bqBw!JzqSm7X8M7RD@>xC)Vo4C2WO{>G8pIbttPEmR5X*x2lEE@v%b88$
zzoN4uh((-OalQ`X8=Ar+Dr9^=B~ixqZ4j%2SQErrcD+#`2<d$tRbYJ(8^}A3DN<}u
z-x@xqYzgAKAhreZy|k@@$x{-y265Ap_$QP65X6r`><D5f2ji`0{V9m;5|Gy-lmD~K
zLp|%IW6I-W%B~>9`89|+H`9IzLd@K(5>qaaBM7G~^$=!-;0nSm0Vk3ZLhuCP4Psvq
z`-AYYi(n9;ApAiDq-si{O4ZEdGWkW@8>=WBL?nnPo9IDEUt-D;3u2GlT=fmkBJ2+0
zhx%4I-`|4R8^rJCY{;eglPl*BCb=BMl^_lTaZommApVlQB8bzR<U>ImkqtkH!{(g-
zp4YN2$$E^%6F~?cr#4QqoTMp^#GDD@Y!K&Vi({?Ktz55j4A|GpxH~SAFH!RySF&Zd
zHcGNw4dPl54}<ty&N_%2tbHJJF3Ur10TypjZ&UA3?^4UwGZvT}_gUPO)96uJJqqG6
zooCd4f_NH)o@9MOEq&a$VWoE&_Hz!^5;BIDjVd6cmFtxlLQ)9XLqG^QLTDO7vk-EI
zkSl~5A=C^ZcL;exC>=tX5b}nQFNESDln5bz2n9kY972&03Q9nBs~m+wsBTFRus_K5
zQV7-@)=f#4qO2_z!pnr3#}x_qEy=PO)<2Rg!mrRTNu5Tglq{+?Nm5ldgmNKN3888T
z<wK|t!l*A_^i`4ZuTm>fD~IqwP9vclMQ>yiO%5R?glaMp225n~X}dFu=CD=|VJ?iw
zR6=uDYlUD7p?(MrLU=8N+H8_RO{3PO)}f|{Ag8b*hmj$kwq6L5c^Rw?Lr_9^gJF$A
z$l!Pyv)DPwA`|ku45^}Vc5*b4R!J6#X&yq05C(<tb_gv)cr%1fA#@I*6&tn-p*`U(
zYHMnn5bBh)whiIX?hHxQA%s+(k<4mG1_U@8T|(#@LZ1-&((J||^$wvsi_)+Mp(nLh
z2va#rG9<Zt{b<H7ibVDgVE~<h)c7?T9KsM5$AvI7gkj_{Aq)>;1p68t!bqBuVH828
zPB_97-@-wT4Pi@?MJ8~32opk>$gpW4Ob=mF2=9b2na=4-#=K22vrP@*0#8}YE=iUd
zrY~1yb_jDq_%n>Z!gx1?_d@tEgpWelek^%z2=fWT^9b*Uj9)F3;s-1aw^-!(ID`eV
z;KRrt#wQ_s8p01D{20Q*5Eg~-bqL?EyT#NmsGo)Kc?e5FSjwUdNe0#@$ucyjWf`3>
zLs%ZdiV#|7w|+%O0<w}U-L1x|UKzqFnj5L#hOo|zSxs0&T}zeOlP2p!*bqXvwbE>y
zZ6TMzCOH?GOvZdCkkhg?g!ehga!t4KihNJ4X~j=+z99rcP(%1RgdHK+LvTpE{EtHj
zzl88>2)kJP^i-ml^6$hqyV^48XdChRBsgXB55X6Lyh!Vo%|8UM>=+l*I@Cy#hs+_=
z#HohkmsX{%MxN4EErg)#Ct-YfEjc9P55W?~rUq6$gov!?5DtgX{J0VgVUOHs<X8w<
zgxyrBomg7g8^ZY0X$L~`;X&p15cY+zKZFO#)<5JbY_|#2-l>$@sq{OpNWejc{Tad(
zoAod9%39VVAsm$^GEv8sV<8+5;Z_K@LpUMVy0vmHg!3Vs4B=D=gSRQCW%DFVJFZAk
zj<YQ8Z>3xa;bI8MjjcCBxD>+W5N?F<w3Tv&=2hz6(-{(QjeMOtt&t**9FP4CEN6_`
zJ0Tp~mUb_M#mAMq<jgedx^$})@5{RV#U}7Dgug?06vAU!<Z0F?A^49gBQvc3gmCb<
zk|W)E^SJUfglDq1G*WV$P@c=)enKgI!r*LST)mi)Kov*~W75aAq%g7*K+QqTNtN1M
zVdN&~q1HX2i244dG<hMSKo|wX@Py$Fqfi(xh0!dG=3x{LqevKU-A=9_Mp42mVU!G`
z82RNeiidIT6PpCoyq#Qv=JE>}rNa1Vfvt2HWx}|9KUuhJ80EsK&4BV$X_6X7g)l0z
zSSgHG!>B^8OzqIe=(lPZ$t*tjCz}+l<P>T(s+iRYr;{wgHOMu?s1=4SjMvPVJALru
zdLv<47<Ix(H~o5H)HOLHjL%LdOUzbw{m%V_2CQlrhC*mWZA^Wg`UX{+Gzp`r$?N-~
zMHnr^m=(tCFy0KKRTv$^=p+G*X&XknFj|w_P#;e*=CD1v166t#M~;&Bvvm%m3(b*X
zbR~%2kI*fQ?t~s;^bDhyS=%R!-sDav6bbHY`d2@)^(PMqV_+DA$ivLqx5F50@({vM
z>g<`u@P?B|gb_DKu{b)6F=31)OU%?T#+f`mj0s^(l*LA8is`>Ym>fobo@44$<H}B>
zIo*tz5ynh%-w$nNZzs=@%|DE9!dMx`dtuC#D;37)Va#L9LbKKTg!y57K=@GBVHh8i
zKcOz5N_W?Ii9cmA&Wp&4!-y}W2OH9s$hKz2FAd`h@-ox;>ZJzD$t(VK!uZ<ca!<3Z
z3gg=_ehnitjMZVR31eFrvJTfWW|JAYE{ydiZwO-}`M_*r!Z(}#mN32}Z>35Ssr{b(
zLl{32exmNAZV%&Uf`sh|%g1Jo_+6&+3t{vL#U6%(><UBfFIkFC7K2NS-rZ!G{C6HC
z`@*=8J^OEA><z;oMj#ATF2o5X5=Jx(EsS6osgu$}VdzqvQA0Q^8^zRg0V%FHp~UE~
zosqsfj4TF=ziC|J>9MvwtP;L;E%|r;DcKh`9&wLfOWPkt+s$czPz4SU4u;YGL4p+J
zkIo_40K>Qz#^ErIu<g+>PRT_K<M~ULV__Vpc_NH{*OO0D1sZp;o(bbDtIo-tcp*_z
zB^0)Zo|iLa*u^j|g)zRpRgRH`Etknx{^MK^<3<=39ocl;4C7W9e~0l%c06`1sqV_<
zW*5TyD=GKnUMOmj<35u-2;-rdtwv|-<1qdS<7pVr!g#_~V>q7Jwd7MpEzc#tIYP-c
zzpy1iN1~3GbQIQ+q~l&;OKu%`bY#~7F^gIxK8KE+I&$g8U*~Uz*<QY$e5tTyNdv1C
z^XkT_70{7SM}8fbZf6ry4w*D*SWrhH-RN=3FAYSC=qReAoR0E3is^V+$AC`O(mIMW
zMgm^ZQNm=ID|rAYsiTx`JPF7#w4=3*jwu%sh0E&r?t~&uD(I-FqcX?V^sdpnn3Z(n
zstLcULn~~l!knYNHpXw&ks@cBnj?E^j%qrp>qxkV#Cu59QA0=8N$fs}nmTIf=y?#m
z4#KA6H60E1py3|W){&;;?-(A%P)A3)#6-|5g1R~~bo`*>M;-Na)Ys8pPEA_rXsBaH
zdi~+gQxqMIbhOjaUPogcuj^<kGi<5$h7PGM+Bmg|j!xOC3EyV1nPO?Cqd99^P^GG+
zjyK7zsBckQQ`=D6QjP8uO9vglG)(QRqYFFgDEW0<R#GP@scRdicGb~MM_(P%-5g7`
z?s6_Vdg<t)<BX-+#OEn{o~QI?!@ZVjeRNz^ED{+HmJI#a(04)^sAG_hPjq~$<82*-
zbxhSUO~()&Lv@VRF;2%Y8I_KaI!5XE{e*JivQ>@|Iz&HjY8g!s9z$5%)FOxY<5`@j
zW0H;uW|jEw=$NcSV2X}-q;Nb{a-(X~b<EH)hw(G1v#C-wi}4aEt>XHwj`wuT)iIAT
z*&A0AUn1XUaX$3}9Ul@tqDsKWgau}{g*q1LSf%4zaddnpOHs#i8KI6P9H%r{$|he>
z<D(UG8H+O})mx!s!%s=#e8ZeyQNNZGZ)A)|j+JI#tJy@H%{tcTSgT{5j`h-9$3`78
z^7w>^ZZf+Tez#Gzb0?H7a?8-%s$-ju@BcHHzJrY3t2DFxq+`3>o)J`t;AdI7vS4&v
zk;_^vb*C&R9lz?>rQ_iV<wl28_mHGa9d;ca9bVZ78r5;=aO!Z8^PN=OI;xyhUd~@<
zXY=}vPbxi6Dn1>49mjQ?&=Js~>d<9+Pb!js!bwGAM?q?cDt?%N#YwA9DiIw~9Wl92
zb?l~pSjQg1K{Nh09eZV&>DXsF2MGJAe@N}?^(E~tb}H~E{l9b^BE;w)As?km%rU~*
zlgdfL<C9ADX7$HqPd}yOv>9_o$61rl={QfmK)q=CmvpqvkuC|Z>bRyOM+7+|xUS=d
zjz>Bk%l<Drm2AQ~?#r6*UH`U@J38*Nd9hQ*ELo|Q%O%SEKadL{+mVhj`RnXROmBM1
zxF{0S@09Y7jwd=S5oC*CDw{mj@l19_>8nF({Mt!mxq@{Tvo;}u#0YW}sM7-JALOf(
z6hZcganV5)*nCRK6+!L@(oZX;BFGa#-UtdrP%r}TDJ5S7`6I>x*savx&xF^X)hQG)
zrn(3-ycEIJQ_8jHbqY&Irwu55S}Dq^ViCMdC{8UweT7<*x}&Lay-G(=CW5jN_$=wU
z3)U$YF-}CTrc}-RvR=gqDn;;C1g#^e9Kov*q()F9f+a1g9cpf=5<%4nk|S8wvYH&#
zBCwKE7_dX`MEcd`tXo)wYetZC#o8=_<`LA2z!t%45!8;Legx<8rF>X8C5-{4uURFm
zj?4**!gV9aFu5M#>5!BLGFN@8H8g#N&?th&rt^9PZ<ySK&{U>+MKwv-B7&9?ycxmy
zpOfBtY;9H~MMgXIrqOS!c;u7pk;~RL5p<5AO9X8ra4f0Oj@mwg4iR*WpxtSu6CJ4<
zdRmb~pevhCJgtncmeP&fo!WzXVrd=eqIU#+r0WPSM9?>aeyoZ`&_99!5quWG=W_1d
ztpg*N7Qyrg21W3;T(SsetxO*l!EnNm2!;~Gd~aI)5fO}x;GGC2(;OAS=m^G;mz-84
z=3DC62*%MIPn|%O+KCZNir`7*bYamcrazUiy<z$eHjkcGW<>CQ1S!Q*g=a<}IxB+N
z1mQWdAWtjrM(`eCE>)a)vZ{C06_AGWWj&lxK8WB$=J|;FF?9j;6Y8hbh15mV#nj(6
zrAm?|5iE`1rwF!3@P(|p2sTHsC4w&_SRTQu2)>PAMFb_!C|^hLO$2`~tNWEK;FYNY
zwlj*rN}2iWb^9)|<iBE_^K;_r2-ZfhPL|@#8f&N$vp#|i5d>z{*cd^pGm10}Elia7
zO*DNu>PpNzU)23Bf^89eFI}glZj}pkMp<}9`9aopdg_l61kWhz*rNo?cz%vxM+Bh=
z!V&C@U{?elx!EK5C4yfgaLX-!#hMv`o#2e%+QLK!M}F^&vN5Udu``NVJJl6IuCoSI
zPO4k=tm2EnAAu%)$-p9Lbk;aQm4n>Zu1@ysbyux6PP5n5`r>yxtLSp~txJrui;-uQ
zh%BD7N{*a$7o1g^EU%jt!R`opX0Nt~`ey{c5%yBW|2=|z<o%}e2jKwqU<6}7u}Iio
z5gej(n0lIeB!Z&^2{;zPaq<c3Nz*?icSOEK2{>aqX9?%1lKf%>mt+QF$Q{FF-aZwg
zs2DZ2mn*X5WYT2+m#r*<rx84h;3i|F_CW-<$lI=1Z%1&)^zRbxQSV1kIHkG-%keOR
zzs;COgvZo><YqDbwP%&*<UCR2jlvQ|HjX4AiW~&VlPF+v_9$R-b&s(j<YX~d6uAj2
zf3=92FN*vumZlb<7Kx%Dp%7KVUW%eH`G>QL6pNaEu_#`SqBx83ge9VQg~gI)OsObp
z^fUHDIm*y1OD#t&ABD=Cm7=H|#il4WNAYSDRiYRe#h@svGAvb+5R#*?Mv)RlH5RK!
zapbJB@Q(HGb=C5JVVq{oC~8HaMA3)=wkR4#G2@E$*XP#PqNp83S`>9yCBf;0TW6KJ
zgbZpuv$lQ|4an+MWAJj!O-gAT#p_YLMgI+Ifs!e2M$v@alq!+UqG)b%izr%>tACdy
zRjo{aM8%ZWQM6&PZ4|u-?V@N;=s@inMMpv>YG<k>=^}9J#i+W`>>foAv$kgxH_}oh
zOpe}B^r7F^tnC*?f0GA9QKr2S`F0e8qnH=P`%w&uVrUfOq8Kk1w|L^PC_d}*;tCFr
zVg%ccG&77MjE-UqVXW!rN=;07Vx16$Cx6O&QB0&iDT;TZm~6((But57s_9INV!FvQ
z<k~eh#x~1zW)tR6-=$jYiE|0^r%)p2NAUrRpGEN@;iD)Xjx`2<_?q=&SzV8fIav_J
zC#?OHx{$hvx|k|44Sq`cJc=c<KCfDrMzMna7u03cFU`p1gdFFTucG*x{0((&6e|g<
zsFL$r!fNUoS-QiGF|T8BJ#_<B%#Bg`)kxzGm19d3u_&^l_%4dAQEZFi`zU--_@nrN
z@!O;LIf@_2KgohAVLWMklRf29^OPMlGpReNyQsfJ@hhR$(R$K_o$R1W(HVuyWVc*F
zlf6+at7(imU^-!f8pV5UQ?w|8rXP~!wBW_~b(#@sRPG(#1(IZU6c?ko6vZCdS4$ab
ze~V%-!+wuqUljYJ_#=uti!7&U9*E*F;UM)->R(i8dnk%ZTmwg<I2y$<(?3Z#9>obl
z^U_8~r_5TJ<TECpjpCfi=Lr|0I6K~mzZ}IC*->N0=3n@na+S6Bqqr8ub-CAAY&<fh
zNDd?TCX2VIx2bocxJ!`QdxRMetPf;mM)9}lKPNnj;xXYL>J#cys<eF;#prFuE+>a2
zhHM;90#%$u0h6;6+I&?fM+`Y*nBKw|n9NW5U2C2g^2YFW4Bs#&Ukrs}c!``ph5|91
z$eB`*x*}VOaN!t=#IPcUE>#kX#!xJVS~1vSm@p{i<rvDx@Ykf2Qg^JynV|&rl^9CK
zkp9RjN2wS}lgm)cntr($e05SJKn7MJhW<~j6=SHx=9Oc3l~5&yY6OX?N=S~uYC0(~
zc)J+qRo!$_W2j+rO&Rv9M(t}c)Q(|L3~$GfCNKWP&?AP<3oPj|)QzE042@&RU@Q51
zJ^O~Wo|&OOp+O7{35w~Ls*(753~#X5F@`3l-zJ8pF*J*zIh{96zeNl!O^)Bxtyp}E
z+B$}NZyDok%VIlfduj)&RLQN>DTZymQ#w<-P`gsQQKhPT41Efu2=t7h7aR5#hmdW|
zi`}~~i~XqmV;DdfNR?h>Y=dJM62tp+hQ=@~hIyi|qztDsE{5@h5iyK3TaAigG<l5a
zjE$jVhH*x6Oo(A>4AWwm$l6KNcc_!i_$e{`IPAp;r_-Dh!wkYq>MS#Ib_~JdFEYOy
z!+Z4Snzc)8i89n`=al&|d=SHj^cTgjnD9{y9}^Z(KcUJ9KaF7_ImiKjX8KEF_}t_s
z=ai-7FR06?Uz)YcWx~%H&qZI!?Nc)4?merh6j#Qe#-PQpDu!<vygG)ha=plFsB2?b
zM_5mlRvQQ#W7tI4Ox<GEeiy@<=0@`GWB4HkM+{Dxy%>IqVOI>l#4u_=we2zd9K((n
zu8yp>Ge^o!xdDr%OwW^2Xj+OurR&y?lTv<-Au|Sh49jMvJiKmPsfKT-jIpH5>zU$W
zUmm%+VsOWhx+_&`Cl9ISGsiF}Pl{jG`T9Bm>g02ZaFDejGp2OC#BdCH43QY3F&vBG
zcnq-^vSK(C!<Mm@-Es%<vFZSu?1|wwxk-zp$gwwu-^u$-XMYTTn7r_ua*$2_r2a+S
z!uglKdWT~;BIkbDdX(yGV*DvQ5yMG_-HhQB;T-ieRnG1V;Vf0|wevAth~Z)kmtweP
z#$1;9H2F#lOB=jchjQ0kr+>q&^_^30k#AG)Q14RjQKiTGF+4E&AtCFz^>GaU#L#Is
zI`77l7^-wk{U{3`XW?lK&tiBUgCz^~v(O+5S?82&SxC%6QWnmhQxdZ9_?%MYyplZ&
z$U^=s6v#r3Eac3>XCpFlXJNyp)LdEk=SgBS9#YJcg}kg4Cm#bOQUVHQp->iTXCW;M
zFG>C@)*@LbN+?XtIIk2Vl*vNbEWAuEPL<#igjcdql2D3Tnkr9{5>PG+<yovstw4R1
zS}_Zi2$iYr&l~qt6|%s0U8^ONtyxIPLN#(tv$lE`Qpq)_y`E&3CUVqb(UyhR%t+b2
z#jlfvx~7v(7<69AAk@n;o<=VJV-;<fg)Nt@?Xu853rZFmWuY-0F`H-Mb@Ch3CZ^vs
z3(eyG@+1k9qeT{4nze6cp;Z>%VzG4=+WhNJOKMBLR=K*PaCK?bAqzdT&?^fav(SlE
zowLv*3)9alQrjg9UCp-L2;He0f3rxyNj<%H7W&Ycl!d-o=tmwy?Vp9Wv+#dJeFu~j
z#rO5X!X@XNbK0JrMZw)=7rGQdkRXUeF%TpONRlK-4hk3uN>)HckfcOG5iyH1-IG%{
zpeQ-#9KPF+-+cdb>fCed)~l*luU^&8?9TKK@Sv|$`w4Q){vNcNoUeG{^ns$hE;vYV
zFqbgdSq=?|Lqr_v!7w3I-Vl=S+ida?!bf^AD%m<($eV(tCZ>$_V4U#r9!yT!Oz_~X
zB%df`k_T@m6{ADO6yZ}nnC8KB4`xVpjt4V^%uZU)5)yJ}(32Sx9B<zdh5pa;V7>>%
zyeRI)dmg;+!S5dY;lT$UeCWYf9&F@^@L(a2g9pLWX^T8q?7?ymR!H?D50-eaRQSgp
z<gC+ZGopLSGEufK)cngFWu*tJJXqtwS`R+)phrym)PvO=>bSn+xX$V$Li|ixKlgy;
z|2NTKod;janCt1e5Dxoet4vl&HhHkwgS{Sn=fM^awz97WJ3aW?gKs>jHeK89!MqOX
zWxA(q^PtW46n4otsC|%~!lqpw?DpVW5B7L)8|kMv<f9pN<G9}2&?fq|i#N6JJ=o{L
zuO9s7!4Dqn_uyw|)!L699Pr>L;RSAKE{|i(UQ7ILw*DeI38(ATES>m>{OQ3#56*dT
z-h;n*ad}{QV9P?h9{4=)3pYG4rHl+aBLpaV5cMGDLCAx!*hB<p#vB8hkr3G{?m@zX
z^||RCo^$3UIeuI}<iTMNPIz$AgCidN&3n>=V`BD?2S+{l*MpQ3`ev`Y;t8GhB<#r1
zIM;C|RZQb(#8cwH84pfN6Y-G)v^>kR{8)3&c)^2<9z5iLUR?6vGGogN*@G({T=n3(
z2RA&pCgssu9yxzghPveetBp_Sk7gvf>%l$V`5ruw86T~h9cf129xXYK7kRxX=tUtf
zQoYFMMSd^fbz(?=9)*ioKooYN$mJCFqDaz)N>SmD#_V`PFX2T=FWg>acu~rW(q7c{
zI-`{lEaydeFUkrZa6+eE!HbGs)DWeT7nQwWE>)Fk`R*w!RlH6%7XMzW=0$Zcy5;;Y
zD>nVA)%2p4Sl0HUj*tfj-Q8W;9Jbdrt)3V4MQq@OCZwSkjfA9mp*H2CS=%|zqFi32
zdok*=w&#fyo<u5*y?D%v)?Pg0#pBW?$BSGqnt0KaWpVZsUSx?r<%FK;1(Ch7y=dk|
z_r}>vPv~<uIU_gsqJ<YN#Zu>_UOef=qgn3E{J-g*V$fze_D_4!%F7R`IX*n{u#FdO
zz33z(P<&QM2QS(QX)pNOBByUh;m--OdU%o6S@`owr3>Q#CwkrJq!&>yVqWy{qNf+z
zyx8tVFE3v7VwM-Pz3A=5OJ0oj;!Q8UKB2$t#V{`>jdQ)?#i7$_uX@qPi@w4K3HB50
zFZh}u%?1b==*54fvRNIR)L$1eL~y7Vf1c3U`i6`@+=~%HMhcGdV*lfA&ij^;OC00H
zSTBx^Xg1S}G3(spyqMtShin}_-izkvGK)T&I*}c@BVJ7P;%#Xv@@(p4A#A11KPU8Q
zUQ8Edh8N?`Wm5b^kmTA4oiA*L^J~9eyyJELy0q4dcfFYF#bPGONxj%feZzyyd0x!-
zf`9FL&x;Sd_>jqVQh%RYd{QUjAHo)JAHB|>s1|yWSu&HQOzYg9C!N30edNW*UM%rq
zsTa$=;2*P=$xw4oI)C6h9?9jfE4*0g#p;tf|6I6AY(5dB@u$?2e2ox}`I#4=%OGEP
zasH(Kr5Ed%X(x4-;7NVGhy_mR8+e)uW_{(wMj@L7scaUq#fz;%z83r@*~-7x?eJo!
z7r%S)hZnoJWv9~$cgrH~_TpQq?&0Y;rGMweUa8hTrL*;W5uZJ!@AKjZ2J@88vfqmz
zy*MD%DWd%3#m~vsUxfTB_#5LR27ImcC)1c0<LR`6JVY^#<u5Nhyc6y?-0Ovr)J-8i
zLBAIPA;xCM?9S=5kQZSuNLV6X{QL4_Byleiym<_iHDGyRdvTF-$#jRjIN`-fFAg(j
z{&le&5%RYeL;7a@<Hb=9!X<m1CYJxC^_UmOh3q_~=iBc(<;7_k%{Zm|e{!8+lJCg6
z;Kf-l&UsOEV@|P+uJcTuK3Vs@E@Hcbyv1CXy}07VeJ>t((cwqeRT<%?7uUSF?#1MJ
z87EHZ*_&K9c#6#|R&RN6n@jWJE?@ccPHUZgalh->bIl)|(i@%D8y3%|^3aPE1BDC}
zHju}_G_Nba0T`IN(UsRgs*rqwYXaF6dw!5nz(B7}Ib2#n125;z?08yF@w<wMO$h@f
z4QEq|8YpI<xPdNS7uUj$15fKE+cqy{VCHGPw1JizU98e_-D$m?f$|0#7-%ScD+tyx
zP|-jo1C<T@bXu=!pqflkg(Git?J1TTRN2)HG&`GJ%RmhSJD$m|DIMARcQCuQG_m#2
zX?^-WS6%U^o*2{@{5F)`$UvHb9I0vsT%2x?>j?wt2HXZ7Gw?Va+nJSNpw>EPM?Tr*
zYHWbGszdW82C_rhhqt*#^vP;!;NP#aSni(IxuQ&_%^5w5213Z23E|e{%3QSRzt^Q3
zPzEjpa4~=<4Lrpr6PHc2H1IT+Y~W`Dtqim_u*Sez1J4*}W8eh?T@AD~@GN6%U}<G{
zI|JW!%Is+1IRoQnxZ4}(Amrk{99BCS=xm_f8U1;K{~aT>az|Ij8U3IADO3K<A>Z24
zy|Jvjn}O~I-ZC)JKo0{w4fHk8kGss6zvjLkboDXtqJiE9UgC}$c*Vf02Kt=Q$DPrq
z+;1`OjK1cK{@ocpbVmPSTlSeV`hSyh`Wtx7z%T=E7#Q_r#sC9@3=B3f(7=D=ayAED
z{ol&TcUFJhz)%Bq-pZ+bRv%)Z$yxpF3%S=DWpUEs21XbdV_+;7dsZLG9eLPdw1E<D
z<&2^mXZ20@TD&RMkHfBUXZ133GRGMhZ(xFm%bVono09Y4S$*AEecxGqlELrX;avlB
z4NNvLg?VUT7Bh<ah1}@|woJ&GW}x)d7XGt3XHSi|W*GQzX6E|wIkOE=X}>M|9RnxN
z>T{%e_pDy(oL>K&KF`2>10Ne$!t)Ywy~kb#78rQnzz6)0*g3uHIlaS1_k-~{3k@tX
zu<V@vk%7ijb7;KSz>stLlyf@q@Pr)BvXllg{wEC7q@3l#R~lGhAh0c)g*Gg!3~WB9
zA2_FfYGAd2=sEq&Ih|q5e_sELN2!bZ3&GC?KRnTb$~psI8dz^&gMq!Ge`R2!fvv*%
z$E-~pGs$6PZxQ|}KLymq{k3qCZwzb`zWsFCb{;yz`K`!KX6Y}fB)be0(Xw_M_*V2i
zg4Fq*mwmsJj^7*DC*%jg{eo=$QOE(oO6T=o4E$<fw~22}{AS>HX1<B8CjKz+r-2j`
zc}yHM@Rxy$26&l!40sJBcwJL`HP<i@G!Qai8t@sYcV71!sQ-l)Fz}hJU7Mo~^5*8r
zOb;7~FnXNmN3Fpj?azhU<Y&^!V+P_plIQi_=k;ml_2p|d+rS|MXAQoy(+(RrV&J%e
z6EgMR2L3T{RQR_(ZT&6nU&i^Cc8oh{VBWuuQZ754xbnPyl80!fMu$%s*mYhfVL5H!
zjC3a-9B`jAaGp1VC?);w1BN#9AII#Hfy)N2Far0qI|l9=xN6`UGene|Vt>Pc=e&OG
zyna^(zh&Tda^%hd_dW54Lp>C7U+_UvtaiciC$EWA6O~O=F_F(ieiKDZ6gAPvr@?gI
z0~QdjU(m@5nkXb9d0`==HfhC76gN@UL^%^BO!T^_l`{F#%Ux19s|`QZtf0HJi83ZW
z_+I;HmDb~e-g~W9-b4jkt4K7_v~}jRz1mN!v`Qw3ta4wfny6-?nTZ?|)lJkep_y=*
z`1nh$rir>H>IttUSlh&#7xX&9KfIvVH_^aEnu$^iw0;NOr7mZB^z?=%h>b)fIW|*k
zdMPvAgxf?D`d}i%#D)ucV-t^=XjjiYsCD|Bh1x4~w8z=1W$(M74cMX;eMfu3M3#wc
z6Ku_7W?s-qj$Y7TUZL?l1z+3enrLpKt%+w%v@oIbo;UHd31#9*6EwSXL4V2wM;^Uj
zW8W{9X_Z%KtxU8w@r;Q!CZ_Mu_HEO48t!rzoi`WlFK2S(^aYxE)!oiS2NNAlv^V(>
zIW7I7Gy9Y$)1NcZ*~IfEI+@_op1!E}|5EE>qW49e)ekP}V=wCD-Ar`nMws}}<SPgC
zG%?Y{ByN_87flQ{@jAPhc*(?TCI--3`e~xC$$ti_y(-v87XI`Ct-~s<-&fl7U0OdA
z{W<k=jUnp2#EC$?W!ktUTC97@Kof&ZaDnSD>V|kS#KdqDBTNi65&tx2n2Ehv>2HY7
zr^R3-&-*2PG&j`5DAPIbBfr+3mUA@5#5fb<O^g+tO*|~sFa7UiO%U-d!5>YH2j^`Q
z(-=(CIYg70X?|^r@Tn$v&?wF@G1J6+6H_j`XPKDIXc*dDF3`j~GS0iAwDoH|n@un2
z9WLpwUDD^7_~)d1^BH%^z8OarYVVnN-$dT|8V6Z4J#zuwo2h-oR5UU7lD^QyA`^>E
z)H<fI%F?872Fnr?D^092VXxAbG6VZ&EMuxz+H&D5OniPxzw@E?iHT3i8AH)m%Q$OI
ztdS~ngB?E;K40F?t~2qaiEm77GqIleEcRcU_{zkMi<w(YY&Ee__$EP$n}yIl{dbL3
zmVs@Zw~AwyX`b#W+j*2`Yr9PBFtJbk-)VwxFhiGg>hy3AchJOX(|M==9mBOVWxt6Z
zO?=PuJ6+pn;s+Dwxt5t4tBlNdi?stL{^DWeVK?zJLpMYF#RT;~P5jCq0c^da{m%QJ
zM{>TF@v+t+qLGaGT{}p#jamvXt{Iw_8$?e`95G?aAVCu$6Fw7u69q5p>{4!5N<an~
z_IMVnVG~gkF%uCJbwcj?m-W|=X>k(?6Nkji;&#YT!#kw2w79Gj7oB#dJGx2xoBM9!
z1W(Fw?WouvGjZI+zb5|U36dEn-qEUdO8+Y-on79ExW`}CmtNLSnmA=*;Gf!o%lg*`
zwKEc{v-IS$eopYb-~|)Ee576Ebr;oGTJFucV&bZaZhmz4<C=-<CLa2b;>QgWH<@)l
zeBi?^6SsM&edyuC9TRtXefjXX5BE&mH&Nb)3O+nwM-#<-DDHFKzBO8%FU5yE!t)9i
z^dVJ9KEeEgw1f`@gkQYuyr*L+B-O%#MFflba93JO`0#a6*NI}T0#_X4l0K9Y1M<>7
zlu7ckK9oyx4qMTON<O%K$nc@E4^^b8kq=dc^eW-1>q9l+)dgz^a?F}O)JpQ&Lh1-!
znV8GgdOp;bY6HQBg4An^Z)rYgqPUWJx)1y6yJ(PmMK`Lsx?Is4OVie3t|mS-_2C&G
z+W7E<h$`7D(}yhK***-vqO&v;lH)^eQfV%vg`n=kJ7UI(o|KMH3AXg%>ExKLgtQhc
zSKZathi83g=R<qCQNi(W?G=6YrrZub?2)x}^x>DS+2rktxSsQ&lXUDX_`D#ybn)SZ
zB=71&H{l`a-qVL(KD_C}7$08rp|=kMeHi4!OFq0TX0Q72ijd68u6eZ_2hKEf_3@!E
z<3BXLpENCRlht3yYl5^H!1cb8N-|iK^H=m?RGvzC-G?Ef<ZYZa)Cc0lA?Y-GgRRNF
zBYYT{<fDX)_Tj`+DKs1F!#E#i`!L6c@jiS}+Vz$X6MZOA$~A#eD&i{8(8VO2<ip!O
z{8Q4krk3mR8m`GQ$P~e;g3|;!;B+5m2%ni$X8BO?s*}Kd-f$dy$A@<rmeJ`9{#+mC
z`OxsCtoe+2`>gkTxLLyGD(}iI>)QWA_J=+!@ZonK{_tU;4~u;G%7=|UEcW3eA3pKn
zQy)I|VTli2uj(s&Sn5N~t9pkDE>5(}hvm$fvaYPFI*01GC3mF{L$B(qxYDconydPr
ztNLmm*7)!_SM9@EmMi*aKI9vcPBO2ID|A&Szj9Sy$5<6}t@nZaOCP=*>WCXST~Sw|
zYdUe051W1Xo(b>679Y0yu)~L)JiHRX+-v$aAHMNna#2^!Yx-{^(zi2tuIa<C>F-|C
zclofJiRZ&!AHMZrSR>bG*YqE*>3=_y_4wv&cKObS3)h@fj9+tN_=6Aox%~33pMChz
zheFqN{kr~>4|T8W2c&wno~ze&eav<J7axB0;Wx&iO&0ApT-S;3U)TTi;h+!y`tY9*
zfBE3?A>u>S2d@u?4*?$^-UX9aN_Cf?n{r+E`M_Q*;hHWkmj2&spLO`U9^$sva)o`k
zdR>3DpPM}9L(v=hAs-I=5ceTLuWsm;54Pw`OICAl=(Oo}LqFofQ6Gwxbp6e|l6+hJ
zbuRVMH*_wF`Y|7lb8tFY$92MolRjMZ;gS!heDGIwo$=wU52uB*%J`h~;XGsI!?J3w
zc{g-s*V-HU{u_GuhJNmbj+^>rNl1Nk`V}8)-_%>yaZN7ny5_@mA8s)5c=P*k+Xwxo
z{(eK()QKr~hNa)(Rm_{;hx<I#*LCg=Q;X!qoBGrWt_PA!OeczY{K)G^AwLTHk?MCo
zH~v@`cRoMHa<rRzem~#`l>&Yg6tdx_&g##CMf@mA(T~UdDCXybr*il!+}eH=_oIX#
zCH>BCiOUMcZ|bG|C@s8<Ae%ClrIhodyi_arQAJ3_WNRfMl?C5jo40CGujWT}KWa#|
zreH0>3pbr#ATPR+S;vpMe$*3D6RhvYvC`QMgwv*>kVb-Of<LxPrS9@0U8-(D$3r2F
z{h+I?Hu0mWD6RY`a7%x}j}}SGOd(l<*?u%j>N!Gk{b(*^T>o5-<GJnD{ZOJjnY4V$
zkCwup7Hl)mnX$DW&pfL7@thxBva;GH?Vt6dU6Qx=ql55{N#$odvs03H_TzcsT?Ahc
z?3!$?c}wr%cYb|0*pJu!=;_B({Zo4R@uG;m{pjaMe?MN5>dS(!2)-)Fj(vpm6+GHM
z^)(>_ldS{%m{BK%W-Nn}e25=I{b(G(V*w2F;|)Ll^26hIzDF?JkGK7p?8gW{M*8vb
zh_q3Dyvdh6wNge)mC6&hbXtxP`>}qE6GCOYkO_is`7u$*q-5)JD^sTUG1ZSR{8;D5
zG(V<G(+WR6o$8+9$Gd*a^<$<~X9><0Wa}Iu?+E6+?dDwbr0){J`F^}7<b6Lr5b~km
zV!;J|EEK|Ci@1;CJo!f=ek?d=YwA)V%aWGMg>cm@D}}G}<CA3Tr$SZ>t`S`8$7jjb
z&;9smjN{~&eysQ7XVDqA4Ssy($3{O|cgh$jZfugKt$u74vPE!U?G*O?+K+Gi*e1$u
zKfd*2yKpw`@MC9^@ABi!$Bz9TQGO8I>&JI~e4n(b^Ig`yB!4vceyRQ_c!1sti9Xqc
z<NV^suYOb*?H)bK-R8HH-=yhxKmHK%r{F=s`LYDBABG<l1E>^$>4(pc+kV{f!!I_6
z{5b4Kz>lCLPe{bLU|2BXM^s2m@cjKO`j8M#V)<bU=W<wO43GHnj~_?<_?rQFDl`93
zckt(2HvKCGm;LyUw~Zgi{W#&rMG;R5o)tVLcv|p`Ap0^V=Y*dZypYtne70Wl^C2(}
zVYwnrR|T*6ab3ubr2S1lZY6ovNcUYo?lBJIGAjfe=kN2@3ZP&B5BzxOM~aB4f^5wb
zK;9&0%2CM|Kz>n>)VV>00@ym%Nv)Cr6b_(>G!+#rE?6vp_Xg&p0ZWO1lLn7?sQ^kR
z$0;MEtYEnS$|rTkq1*^Jk#VjZK)rx->e;=D7*q|QS^(7psFAd<Bcx^kwS?48>P(Ef
z!nK;I>|Q^B1_3k-pz(Oe^A_TNqX5zZC^5w`(8Sm!m@eoJAVUaS>CfW<G~rqT_&$K9
z0Xz{v-vIgrkV%^W+6SC#ik8{Zr9}YEIM?v(oa6|(0W=q0MNSGW^#GJ8PX_Rmkd^_o
zP1-*#q?KUn0G>(eZ31|CgtLTalS;b)K9f_>A%KnnJQqNx0D4L5{#$zI0BU!0cMX92
zc?Mx_c9#HN5W-DlwOewW?g8{j@}5FMGVF`OdkelK_;LWR2%#IV2GA$T`)y6_AHZt?
zEDqqK00smwFo1UgcvlPtNkAqBFgSqMC0s)S7!|<i0ESAH0URde4Z-1pBLqhV@anK^
z8oZgDYis~xl6=Iw&JK<XV7w?3lKNY8K<=^e)3PUt_;vu3g-i)xY5>!cmNSJ+4`4=8
zVaHiXK0AOp!W+Jr$%*FDY`U`r9|SN@_<TW%?+JNdkk`V8(rZC-oP_}_N^)l1#{n#n
z>ZSme3RxAvCqkA9E*D%OxKfZu>C*sK3+LaJ=))S}>jPLT<g)-i7xIPRqocP@_?OI$
zmCjMxAl0t~Hws>mjouu<7O8F(+!4UnLcS5)Cb(Vjj@a)MzDtn9?hfGF<YC_vz}}?J
zNbU>ZhX9TS@GtW)fFA?+BY;08GY<stn~<LZ_?f9YDD$=HZf5K+0sJaD4=k%JzXwqA
zwoY;|fWHEW1P~3t6M#2>u-p<xaz;OY3M9ENfCY=4RR@wvFn~~!vx$G{U~5da>`+pV
z2arf|D*!vm`GGnbAC~G7!M_FnNnRuW@jjf8c~Zn<0UQtDgmCtn)7?oP?Y8r}<&=o0
z1<wec6+9<+J~`T@050>o3!z2`R|2>iz{DUX1#vBa>%5(UXdJ|i0B#0QHHd0K+zQ}!
z0Cxho%QGdP7*x0QZnyP&0o<o}FSUFS4+3}?0D>qG#9J@8Q-a77MBX6QRZQ*qOva1P
zWu^v^Pny^|KVL?E;RA2$tQHKSP!J`8C>ccIq)jm)MFfiqx@PB0xvduuV##eie?}HN
zmI|VD5M_eM3g)o-^=-Xu5aojSLxyFQQ&X=HM8zN~1)UF?vQ!B=pEa!<#NW4dR{7yl
zV)Y<u1fd1t3ZmGHuKQYg%^+$8Q9Fn_K{TTC@>$KgL0r167woUqODgq+G!SeUMEM-&
zqnl~TR(^{3+|9J~ATq9{@uU0hAXsJbtaLpV#N$D{8N`?%ngr1_i0(o32s&?Vo(Mt@
zLJ7|l%nBk~NHf74L0aYp(Oh_oq_TWrQ|eC!(Kd)@gLsNjy`#5GwmvPSm0;^2o=NI$
z=;0mbZBDx&+6n0#M0;sHQr+D_NXH<aOWJn|V(x-`w0~ZdE`l!zc1_xJ6T-I}JtZ0g
zf*2S?uOMCw{@?e8dI#}RGFC4Oc}4KmAo>XDn{4eDM1SG02~L0XWt{5TAgPWD!mO?h
z4&rqo<U@oE6&x1C8$yN)vhRo>S{K(w2668djeo4<mW`Hi`rhGRyYf8wg!3i1v7(F<
z93RAlAmVu(%eO=!-*7tZ?I22poX_7*4q{3WQ-hcm#Lggg1u;E{89}G%eP-_+eeoTA
zW)QQ2m@OjpIYDf_<9tx|uRHoXBEBm)S8$%-e8Kkwi#2dQbNhkt51GtCEDU0iRF?*^
zEQrOzKN6(n$3m6_aZ+ZXvRssPL97U3We}^9mTR~pN&cyj)j|Hx*;IC6Su4tCL3}Rc
z3m!lr9QMl~)(hVt_)QRB1+g)RO^?LWX<LMBW|StTJQ{6l5MPV9E8%<)mt|WJ+mrS?
zlC8T%`AzU!!99X|gZM6p?}fAPfgtuJ`42+&2l1njM?w2Z_|Hk3UxfS`#G}^Vc~^+?
zXAl7)2L=BU<oKQ-yuuAZGpYN8_yxJNU=X1o!a+oW{Np}u1Q87)7R0F_PBU$SNCfd;
zvac1y5#hGrA;H7R)<=&0E!BSnk8&@BJW2q1bxf+q1y2Z`6nxb84DTqZo)x71xggFb
z`2`^t1s~keFDLaYL0nDpYeM)r>YKd$gD4^yemjUeqUV?D-5^qgaQu6s-{(((ARZ?B
zKKd|r9<j-rv`h^lpYXzWoy<p4FCe6#V4)BSC-v3Ea*HN;F(JhTO9++>{Vy^cs&oit
zLMR(Txez+nNiQ!3-d))>Z|1PIf>bMpP)SH-LF!e6R28fi`d?<&453yCdqUV7LhTU$
zj)OHJtPP=V2=zkf#PLI@A3}o=nuhR12n|DM6hcM_jYE9KD6|lEKjw0Wur<@w;I8hH
zDwXsQN<5oEQn;~;$nuypJs!fzrmm;%>T}XvO+px!?izeo&kP|egf=0x4e_HvXcj`N
z5L$<j6GASXxvR7LmJC;O8R5wgS}?Hu^;#FV9)e2pBUTE{o(iF*m_42J<lVdaGa+2a
zaC~@2bCKj~u4hANCk7otxRK+^Zt7~E9B1EMy`wZm?&{Aa$@3v}31L(SqeFNhgsveB
z3Sn>v-9qRd!Yd)X8bXf{dWP^)2rq~D$@#3yclBN&6uGCrC{-%Gg%r$jt$e~YxS5L)
z8{foL_nzJ-g#IBs;(bHt$Kc=7-(8zcd@Y1$@96^s2MRjQ-_u_YVF;s_Tw@X2S^H4B
zbkB*^8zBr2VMGWc#bC=leZJ^yVi?~HVN3`ggz#YqV?!7h!t4;{&;i-R33M`qkd;FB
z7-5o$AxsM4?GU&k<DNcQ2#1;y0;^L6rwL9Mq&OplnMpn?gfsV?j_-u<ZU`xM%KHq<
zeVv1^UX?L7gmsNw^91J$z9&9YJlDi^ps{N~2n$149>R(c7KN}lgpWg562eEaU+dFd
zuKW5USC@+a&)?UVNfTE}KIFc>GK5u<b@Z8&ej=^2?(3flSuIGN`SV!_pNFtHge^?G
zZ1)#Dam!NHhp>G}#<~!`3}M&n?#4~BrZ&l1eP7=Y!dD@XY!uwYLv&yF-q(p+dALHj
ztul6p@J$HYc&3)RS>>;Mw^Lc-COL6m-x0#jkn?L{mR&;D?oFZDx6+s5cOiVwNQN;h
zjC~>e5JHtOs)n&YgdamV62jjh90=j35Mm+3L-;v_U$}Q%(V4VgL-;L(gCYDS)!#$-
zgXwX>`I&w@NBdKF%e!e*JY3-EG@qDxg&TsV;GXB5Z*2KP2#7&2gkDc;pVrrw!Feqa
z<}LIvEyDAAH7zRqdJm1t*86E}Wl2acD+F5zzle7zgu}cXs%R_)d$|4y;b;hX!pIxO
zzajh=!gU_W5H>YQKNiB-5YB~gJcJJC(u!P2JHdSn;Zz8xWwbMb{kl5e{2G$(e7pHP
zPkIQ~LP%t47dcdA&0k8pv(j~mNh`)zWKmZ`7*I@mp}*5{QUh(4d`<Xf2)9DG7s7qU
zKZH9W+?6gh@@8}PL)V<pF%-owrah2BIP${~@($2G>*-1fgVj%dO(CX+kuQu=VU!Ld
ze;5d(Xc)!9C_w#88o!lXFpS(n8pkOlO5jdf;V_6r!YKGaCz(A-D;`EkX)O^3UrVzb
z7_QZP;Cus%Q7scj`7kPkadNU&R?NzUQTMaVtOt6<Fe-(e2P{+$<CX8+?Yn55ALy+9
z`G&?-R12ee7<w2gj2dCo3?nOy>@aGDQ9FzVVKfYbai%>dsv{%U6|5IVeIe9;&Pi<)
zMjCr%X^)HeO;1e=!xaXjlrBnR;qEXpgk+S}*wm+I>SJNNE~{t~#_>E_Qw~x~dqQ}o
zAjP+TPiYoLP8iK)D87Bj4WnLRXS2u~>~^;honfc)WEf9{F*=Ml!)O`C)6&#8j8<W^
z4&#L|x{C5l7;VC68%D5|GtRSNv<stC7|V9JS=uuWSJOI#G2?;GYR531lcru-8mpZv
z3x=`tR@(DnbP1!H<|tfLw=lYg@lqJHd_Pm;;61|V$*N4+JB)Y<XSx@qdiTXtR+&OC
zhf%zb_KHmUs$d^M`tY#0)-R0y%!D4U*TNVS#^5jpNR`S!9+P`%B(H}tB#hzGYk47!
z!5JFHurQ8xc23_LVdqrxSq;PyGWFYoT_c%_x6?*Rb$%mljF3{bop*3!!x$IF_%J4L
zx)-z=(!{mA6~;u)Ud$P15|g=q>f2%Gu9z%1MUd60VN6T%=|Yx0(DOHOo~AN8j5%Rk
z4dYrE?}YJg7{7$^YZ!CGm>0$uVXO;dei-kC@ks@3c^L19@c}n+x$EOFD(BZa4a=9W
zwDw^b3+Pg5ZJ{8^A|Z>z_(;g_CtFbDx3-srv6RZ0v}F>RIVq0ktgZ-SWf-eCOBj>u
zX+;ZbYs2_7jMa3kt+pnN&nIcr`7jD1?LP~HUp)VuK9|vUKhVDnV?B32j9p=D2;-|T
zz6oPn7#n3S?%Eb1n*=utPHmDNexPp^{xuV(ycQ~>ZI|i}F0i&U3-6^-eI2qpjBk0v
zhw(!gdzjCCHC|tPh42g1--W@4B%FPqe;)?%(E}6qhjAc`pThW&`_d%6eO~SE2#wEO
z$@ftIS!Nk9$hGx;+HYa}&aB|o8pa=C{2AsyIYK;)gJJv?hL5+F7<;%Ec{P*Cd^yb<
zh9QLfjn}jzgIz6LT7U;fLPu{y%-)M>QKn*kEiBzBM#9)T&^eDU^l*^5lnCQ+7<~I_
zal7xP*>aDu>5z2cLp<1YB#ghqpr0%AY5#DK@@YmJ?Y}UNiOoe`2w|KE;|z~~Z|$VS
z;Zzu>WnXwIUm2}EKgub0T54y*I45`4`7pw7Y8QC@7Swo^v9Nk6jLVN!I?{Q!dnF9B
zw#LUVTo2<0@0kc%L~t{VTfB86C>6o&Fz)cYL{K1tyJ6f5BToc*BTj1F4<jXll4<D=
zc+BPN%n!r(=YsR2fyeOCHJeJy2=YgqA6wj=Di3v~YfT^OtJBg8Mw|z*6pNs^j8-Uu
z!Vz4X=%hiB2#ShG&Tlc7h&X4B7X?S)kCkKnT%{u@6G4**nnqAIf^rcwjG$2j<s+yN
zL0x)yB`v3nR*_RTNv{<_r3flVK&46q!OKol)d<=>)LE(tsV-O}f|^PF%Us8k+7Z-A
zdNQ}9#$oG4P+!JxAXuS<Bc_p;bsk~ym=I0SC72$8JK`Ll45>C2<U`&b**_j}?%RKQ
zYTNgwJP|>51kEDIq!_`f#~cTE5;v6Ba>R$+h?AV$N9xS*J`Z(00u{mY5p;>*$q1f`
z;92?~LCXl9W-!}pZ6X+xlUlt|s_#Xul?>9Fcqi={K^`s+)i#3Z^015cV(?r9ow#2S
ztht+?j}7U_2p7<b4%fK+0xxTwBhD)d_TnHfh<(=xx<#CWxv*Jk_Xv7KkWo(S6~TYK
zw4NL}&AC?@qCu53KH7r(r3hY*;5Qq;+ju2{S0mUJ!|oXRM9?>a^HE%gqF)64Be)pB
zr3hY&U_b=RBUll^zz7CKFo*GsU~mMlNAPw8lNqs+nJZQ1kO+oGFf4*MBF^vA#t06N
zU}OZNgpUwBI!I&d=m_rAaK9-E2@6G*v7(F<94|OQ@GZfK5lj+7%K<AgrbIB6sra&M
zRs@^6xTZxgGvYitjAeQRGlZWm;8gk8uEy<Lvn67Wp7-)DSI1xMMDSq*b0e4+LBXF~
zROUzc5uoPpMeshCdB8REq0TA^zZkM0f+Z0wjbI_?-RN2r!D5Exq5e?>A4l-+wj6$c
z<bdH=1|!+aBAA_Ub^at(-|HgT{!m}Zq>A7`1V2UaNd%upur-3OBUmkde$MRTrVC#y
z_?aM`4?onuDVMn}f-fUjAHk#Qh6uijV6)hqeW-5~vPrNPGT1ABirOMo5>~&7U|R&=
zMzDv+IfCjbYNrgfgQqw}vGly)=E%Du*d0Op6t&)yN!-iB+ahZp?}`Y%6aKv*$E4mb
zMXl}X+RqGZm-%A^A5_gKUENLmnK9(x5kw;RmB|*tloS;bv)>~KMEKx$_a6~_^mgW-
z;^9HTzXa*3Cjzf<L(oj>z6kunJ63Vij3p@5xjR$4c6KdGQPBuu5gd=;L<Di36cT^V
z-w{|s$PWv#nL<Lgr6`IlM<N)}+4YG3BTYvI|K&Ln!lq+F2Jg>48NsOt&LzD%9l_Zo
zKNEo`MRC~wQq;W^bzXE&2iFB&l6jn6xE#S19+@bnL~)f@1n<l!DnxNTf*TQ}Mv*Uy
zZ9Ow@Mi3gBd7oR>GxHXI3h=N9zsvjNi?n;fU3pZ?JZfkjH7k#L5W&L;QliKc#mwHB
zRPsi#d|+n#qS@rvMrZP`UHPLZ6h+}E$PvYB!`%g<C>X`3dDO?p(u$AGED}Z0C`v_9
zI*MXZygM_yWE6v@r4^5&gjCyh$?Q4GP5t)BZ0gmgr5Qca_U2J#q9_|hxhUQr<vx^0
zvFsU<Q89{2Q9Kt#rzk2%Q6-ADQ9K(()hMb(@kA7vQGOs6HKI5+JvS|ino-;<n%#&)
z<y9oLq*`0BP84;8P_HMXzF-5cMaZ>0P8W7e&#Sa3Tv0sMH8Wk1gS&-f2vToMBK+~B
z(j<ze!t+mX(;zE~>?m@hXdXqgC`N2fW67cadDZZ|YIa_=A+Kr?g&sxY+wL||{wG;=
za$>fM;-|cd<;f_XO7fOMo{plGkk*3F2>va`H}WcTLt48i+DFkkRW+HBePDiChbTHm
zLBg_TX<DgNrKPIQQ9K{TkSK;m(Itu(qUaUHi&4Cis=7uo_mi|9QFM!<J5wuFQQW&O
zZE33N8Fl`?Z;#B}lB#+~@sdP)kSvx_dYRp$c=%@KZ>j245&H=C6=W#-3F*&l5i&q<
zpy1`<*)$j&#p_X!_v@N@Dpe7OMe#-yZ$>dDis4as$7ZgW;vU5?Mlmvq??-3%p6Zlu
zrnpBl(`LA-6w0T@Mlmjmx1yLBMQE&>%J?WIaNqN(C#Cevr-tWKlcIP#inaOFyZIE6
zrB(OLsZmUeA|6E|is@0zh~nEQ_V6G?F^jts#aB_xj$%#}%XlcFc!$Xx#d}Ow#x06@
zQOxI7&TxO1PZ6V|vt8pd{rS|Xe2V;oC_ZGa=2t2CRr&miWPwx{3N8{{EclV&$AU`)
zmkK_YU#;Ld%I^&RNfaxiSjBUZUro!eX1|q9{nIE`NAX#HwP#ZH8s<iR#j;k&XHk4E
z<O{)df?o=*7i1S2Z;WD76kkX2O%$7X%tvN#;l4)^lcAzxoLO#&1KVV!JEGVb#dbz%
zQZ~IR0mrvpQS6ph@?vjgvvB!)qxde0U!(Yqdl$t%PRjI~?EWDN9+n^ZQemn)6KcOy
zUmoW^Ag#N{xxXBmo%w?MXC^KGGb%?O=a{keckXW#;VAxy;!o**Fp9tE{{%OOx;(<|
z5s}<0#E8Na;!Em&A%Q4@NoCKAnGx>$_-wiqm7!LS&dwN@9ZNc6MPc(mL7k1_P!xxw
zI1_a~$8sc!zj-2}I35M>z<;9nH;UfJ)21CuJIbUwp4R)cQ~slPI&B=(0;m&FoQ~q8
zlv85Ej(3iyeFeorzTiFQZ_tGYXP)C_J2-Pi@63x)T#E8>ALtpw<tVQ3s*It03|FJL
z#-`J0rDC`q#SP&FW4I~gVH7Db+!9Wk+d}Rz$)WBF-izYCkOzXp|8%kGJXD?-^2eOl
zCoFk|qzdK}EL1=thQ<X{0l^Lh6nUW-UM-*s$52E_(HKey`G((_jXB@dEiSmzbkVG2
z4C4;F_=yF2RXT<;F=q*71vw+4t_m?!j3FzA>=-J=P&tOjV`vgXl^CkVP(OwSF;t78
zdJI1lQ2qky!qd%b#85kiIx*CYfz`;9&1=O#e5ZhF_Pc9w#8o%OXRy2K#jv)3dSPo0
zv0)62Vn~m{9mCFeR$2^&dbwS~HNkTQRK9}hV#4+NKduZeHipMyAg7bn3M%^Cw4jPS
zlg+^cq3otHbSbEw5G2WrVOT-+Q9;!#hMX9lm(}IQ&^(6rF)Z8UY9YaVDu$LqbS`$2
zOU3v#c5EuB$oX~er(<Xp<G*rtJsU&o7~W~qyh9?ZO$^V(@UrbX@m>a%wlR><hpT_(
zwByF@&Z-p3uKSCtLkt~bcrJ!(JF_}5R-0TTJ9cDs7ET8WcwLjfc6Et?_(BX_g>;J{
zyw}mY$M8!*#g+Do;l&tM#IQ1k-Z8us!@Duer2{d%62s^i-sDE}#XsHPD{8^M46JhX
z7v4|sa6$E2%y}&TZ>v(+G%$uiq7N3!*JJpkm7}u^5oM^f4ikJsaCi(Ogp3p%CCC9e
z>6jSCGKMislfL6(m>9#P7{<piA%?eNSU$`BptY-ZOV^22DdcZU-zkEV1?xQJ`ma?A
zAGS{iIOg;iX2mc&h8ZzFk_Baca(t`vf}1!;rg%qi@RN?iEPPh~JQ-(k3?IcXKZf_j
z;C(Jx$OnS7<lqa0FO1>t@_dVudcM}qIFFX|aSTgDUz%)PCS<uFAKK5$VO7leEYoL<
zTMVDZusVh{F>Dy+Ud!Y!s7`E3<%gpR6;eCLyD5Gi!xu5Ei{Z-{w#4v8A;q8d>tp=Q
zt=hz`{3LCI;8!tB8Sma0Lk%(LQAll$fjDb~`^M_5tucHZ!#6Q(i(xwt!tC6Vv(k3(
zn8dKPkm67$*XQze9dU6X^=%A$m?{apoWR}~zGLRZ@lqV$$FMJk(=nXk$&F!u42NUR
zQx|@W;XurJDEDtM{KSQvPWzc>yo-BMwe;T#DUx5L`m5lgvn_s);g1;pj5)u=U<t)=
zFv<Ul!6V$8R16_z48Ek|k0FrcLB4h6A5&zUFmDXeqk^%dO<YJK21|%7cqrM*5st+0
zcMSh<IgCRLb6VtbQAcC=H-`UWI2OabLh6~q>Uazl3aiHptNw-6i5Q4)6;`L1Gldn)
z*M-&D7|t;cak%0*&#mO08AtIrF7oz>Iq!(`#c^54HD35JToF$Fst|7apoL9u#Be``
z2mC3(%b)kj#ta(V7K1y2cLnbWPFUo8(4D3GEf?{jh$(Srt~_z%6_P4Qg`Ww@FC0mw
zfRKWMh2kij)QboyD)>iXRYFMlWNXPdO2tt+jxuqiWoHHYInRM9E4*AB{0NrTC!1Iy
zj*4+ql3sNME5}hKj;hIVY6__)SY5D&Aio_@OGs@&4qivd=GLk8gwz*oAlOi_ksvM8
z9+AQ-Jr1|<E^%bU(KwErICA57OvJ|p$E?lEE-X!?+BA+Qgk%b431$n@rWwacarUCQ
zC{M@HN=S=1^rVdv@?;!O32B+se`@V)Q|ma|CzWU7Xp`h^<9Ig7+r`mSKH<|rl#YVW
zC0jcQ=^V%NLM|6p9G2yUIJ%0`Eos?ZNDslDar6@MqF}oPjx#UE@k$)=I1+KZ8b_Zv
zHpQ_yj=pj9i{pbhK8&M(9IwSOF^)-b42WZ39HZhG9mk+J2FLM69K)I03D@g!3>88?
zgjr;{NbVO_!$hoWxkki6o#Mzib|jou{_w3(M7<fu816_BMVqm4j1&Hr;CQj05Jv}T
zr42jMjO6V&CdV;5jyZ8miDPOU`--R;aRlDam=?#!Mbx}Q&X4%%^s|VXT13qh1KP|I
zvUEpIw1|2qj=6En6Z?1LIP+vSJI<Fb?}^Bc`}1V-)x!HCk}rs3VH_*sSQ*EqB5F|_
zOIdd0ERN$Nc8P=TQC}jYSW(rfM=q6RV!WK^!gAFs>a28C9G}FoE{-oLic4#g9<CO$
zMv&|MERN5aT}2h0{~`{K$w7J)RqMrJ`n*xd23h-8f)p8tQAO33IJU+S<Xu!ueI3U)
zar_d;uW@XPV|yIm@iOOL#KCp#ieq=2ub`Z8u}b__^gVIxjf2ZyT-13H#i@zh+<kHU
z5XVn({9aU@*qpULjvtvkMOB0MGibwdK&o6R-Tqm2oId}?XdiO@6^Dl%h5r%9pFE^n
zv#1}8gXL&ZXYagm7;*S`5G<ETul{wh+>+3d_(cy0(x6N+6=H<>WV1LTOxnY)nhP?b
z$@s*CFd$YOb{s_$D3-vXI1a~gfe9AJ5$U^pN7ku0{*L1x`VhyzaXeQ{oe=ylj$=aj
za*iU)ajEigG$)h#$YSa=CyL{295iD&7YECEsnU|YC|=^_AIIG|?!|E>j;nFpjN?6N
zx)#UvI67|6VwD|9Zb)B}TZ~xCY?j+X?ugFn{Wu=*hEE_hfu=3p591D|2tW5sHlLZ3
zCxPMJb4l_gkUxO}2^36#Zys1~A91x+&9@d)B!#3}B!NGQDJq4NgiTb6Cr~1RW)ywd
zB@-x>K%E5YCQv$oG6_^pph^NmKg=kbK!t>}cJguwlo#<)^++*QQJN|x@VeItPSpge
zi9yW-Qi`kU!nx`iQl$aKS|ZjK<d_e7xa%cQKY_*xJeEL%1R5rgp1`NwavKTqoez7l
znkH3EkV7#sh;FHJoDA`#LUHwY0!<R=S6pQ>VhK##mGy)mNz>x0V{t{2l|VMjCfAx)
z*+f39DJOy41ezz%B7yb^bVxwwJ1!<wo91m2crt;f5_md+RtdCZwEJXzRNUG3$;B1<
zmg1^)0-k?e&oDkuXR}IPp{JXD+a~a=4AL%v!JBgq9C3{}nAtIb=Mw16X!BO#gGLkR
zoWS!5C)L}`c6SlN$3wlCzzYc+EUs9(3h9<WcOgBJdQTy}68KNd?$fJQ&G`%{j{Hgj
zuW|_%p0v;>fxZcRn7{%?CV~D53}O5ecrAggZs*bB^PhANU@m234NRa`w_K7zbeP+k
zz_|{Y{KW6vgE<sax~A}{Zo?9IgBh5>hy-RNFf)OX35-ghO9?fmx_flOc?8_Tzp|$#
z_+6f?H>Elzfw2jUOJKZIX)rl~3Bun>Diaf!l;m#<sarx#5i&KY=af*>6MRH-cAoFE
zh_e#>Jv`n^;Qa*VB=8R7;LVP<%q$kldN+Z&3Cv4i&5`V(CDeTGLMV%cy{4B?B=q3}
zMz4hWw}e_+LTxXh7ACMLfkXmU0*e#)h`~wV>jXYdU`Ya>C-6lAOA}beluKZB0?QM)
zUqY=&U}Xa3N~*>s)v5&AmQ-&~%=jdMJ|)#hm)sN+p4>GFtmU?rRE0_@Hq9xiz9^|a
zOW+5#mQ?E!_%eZw32fqFT$Qz6EI05r<2Uz9IbFU=fcU7onb9_Lwj@xyl%i!;DaGnH
z32bBE1pZ85dxAfR@qGgO64)t&>=oRV!0rUTO@QuoDy8-$uw_FQIbY_{!`Dlx@3`GE
z%MXlp0>38kTLM2OaDeX=N~xa{m?F;5lb;w6;hg;!?s6%0PO3C}Jty;bj+2vFy0ki&
zz+VaY67chM@KBdlURhw9(rU(%ru|AQgZWTenT&90MG{CLn82OVDwaSffv~JPns8o-
z(p5$*!tE%n{w%Gi94)QlVoduIWt7b|^479Y#lqnPjwEo8yOY4*3H+15S*CFUM-%ur
zffEUw6rca&SuUfF@y08y8kJGK%BbU_keo{3bOL7*c(;t=M2ym3i<*uoqv+@Co0;bm
zxRAiL1g<Ce$_JOk!z;3u%Yu($ODE4Z%e=~CQbw&Vqi!T{Gl5&YlbJ{*oh5Kld&;Ot
z8FeRtyAotZl__EU;-*Uv5_p(E5er2vq*zW!Q!V7PkjHWyW-{cpaH))9%=24-g+dmd
zD60xsC}=sEL;L(?6+=y4t*k0+;kmLZ)GU*0DQ2O#g$fobS}0+mq=hmT%34lh(4|rw
z-vT{n>Jq7NQROVq)$(+s?Egd(<`Of98&^qMw>QhGYN48i#ugs4P~Ace3-v72w@}k^
zBFW6DZ8<w$%fgJZ&UxXCbu3<k&K9$Ed0Ev!rsfv7EHt#xh)o<&!o_{pgmY>tv`@F-
zwvb_gxx@(5TZ)fcXkwwc<)lheaV*n9mIUVsMyZtIin3*~&15c$w9FCC5pu=m(ehh}
zs0-5nr!2JOx@^?2@wA0j7S>w$%tC7m&sZ2`VYG!d7TQ{Td4paSwv|=STIgV*qlI=B
z+FSUmtU6j&QNL4GJ!helg>Du;D5pAGc-}%+3$AjiOgTmDV&Mf|-Q`pdDPzhha_ZeJ
zY$&G=P_*z*ImNy&TIg+|zlGN<yky~W+3Z&=ylUZgIrTF4x4fd#hZ|8|jVQ1BT4+&T
zbrs&v!kqGIWqCEg!axf{Eex|T$iiT5Tm|*Ig`MS9u)I1`UgfKxhKQI`L3OR5-k@;>
zwW_Xr1oyFm8g5~A1+}|^8fk$di?4!u)4~{Tx`nwG##$K1fLoZ%-M28o!k4$)lPu@g
z3&$#`w}ea-d{9AAWTC+n3sWu3vM`&8T2W2oToz_pm@bw%6;;=Yj`8q{>YKW5^7kvM
zITp-{>KzN~rRj1-Rj87hXJNjDk1Tv_;XMm=DyjDwa|?PUCx$OnQXg7aU|}KGUP*D`
zQ!A-O78Y9wRZ^c;QhO??)0I?eWwpe@QZCTKCl;15r7Noy78X@j%_^(q+{eo5?aGSc
zN^y_mQ%Qi;7S>QHt9DgZ7n|q)RaqUYtWv9}&n<kx9kg)N!a4@T!T}3E(R1!EBX41s
zg|94Zw6NX6`6_CYh0RP<W=Iuh)x<3pwo0{C74=dTHLi;KhBI3Dyo%aaMTM#;+U&59
zzp8RoRjsS4-4?#Ju+PE|JQNo8TKL|=`&HF<;xNbTRaLQ!uBtXvRn++fsQng*KU(-z
zs^ouHRX<z!#X^wrp>E+fX0-*6h2JgQtE&F6@F(w<YAUOmdZC&+$h+(Hj9Jyx;A)EG
zvues~!Dqp5!Qf_D*j-K4*qzIAq?)s?D>Qf~BVeIObycgn3R|Eaw~(+9u@JS;th!^?
zsk(}Z+XJgB%Yw}tkJrA1Y0|p9y4qD;9kDR+SkB)J+V0$7b#=44s#e44`>%!nEIg!R
zHjY_1ZsDqhYZgveIBDU6g^LzWSvbv8Z{Zw|d=1sJhWdMT#u*DEYAF7ih}^Rxdv*<V
zo_kkAC7S16VpDl_sD`@211Ox;{WTorat(Fe!VP+B;Vutmr;M8xZt-|pC|pz3uc=zq
zRIk)j6Kg6q-D5`8R4flH+_$i$rt;QQr$otHOXabV*G6d@Wo)F{$Y-O7jiNU4+klON
zHVWC!nJQqTLoL;$mZ~b)zm~J=!ZxT(6282aDrTdEjgmHs+t}DVcUvuG)KaBvoT{Z7
z)^_Y43Mp%&oQ+C0D%(z~l($jQMwi;Ef(-_NX3c9mr;lkfthTCRqpFQ+;=}CPYE^Bu
zTQFW*)wEH|MsFK0*{E%!j@b0HQP)O28&BD2X`{Z41~!`7c)~_Q8;xwZZDiO;vvH-i
z(rmaMt*(x<v~-SBM>VUXemj=SYGWH6>!`<UJZ?J?9#qE(W)l&=siUUUQA_HmOdDA?
zn%ih$BiqJ7cDIpZ<7gd~Qdd>1tCk+idAzR5weehCMWWl7l_!JcNgMs^DrIA0UG;HY
zwWY55qpo_|Mk^c7Ga5Ep+jz!Cdxo7+Ew9?xXlvtH+qsI5)>Z8|MP0?h{AVHQ$SG`e
zveDVb&ALvsOV)EPhlcf3r+R8YJ@r;S^@5F6^;Ec?>SjA9sH=_r^%Rv0^;CBo#2$hL
z>Z@L2@FF8zUv)l~LwuPZ{;@IN#(Rv0jXpNU+8Ae}uZ?~-UbiuX5vZ^F+ZbRw`SzOa
zWN+vC&d-8@HU`-kEc%rCYDIk~8wbhALv0MFrHx@WcGOpY)K_l^q5mUojI!~jjWIUt
z`f9Z7RFwvb{6>9efloAW@c9O6yp0JqrrMZh<1L2N#$+3N8#uE}vN5NDdYc|fm6NV+
zpnMI~6zVN<`QvQ5jTtuP+L&i!CU=LrjdyGuZ=ldn&1UX3RCJ6t#$ydt+lK0uhU#7J
zMMK4Fhd)r5u`CSc`!+tX@f9=Q#)mc**jQ`xv6EQHRohr$W2KG7a$Y{Rv4o*(s6Jws
zhEC$GYp9mmSY~6ntZ`pMXI+7Y>bSJ>%3WpSQyZ(L^%Ev-74@K@>h^Nh8XH6!Qz_HP
z`So&oBlWqBFKn!{@uiIoGGm8Eies+lt~F9)8>zXpY2-|?$;M_Idl)MlTWoB#v7Nz}
zS@twiU)%V`#x`cuv7Dp*+(e_1bFc2SvCGD88{aZYjnu<Ns$!ahERUr*!&3at#`iXU
zvhlNxeH^E*d%ukz<$(WSJHHigm!^0VGUf-EFlo;1$7^tEn)<~Cf6)KR-Aq$_J+L@U
z@x{O&HvZ&jhw<}a9JKM5jdu@Y?qPUrcx~v1otLJD4U?DEArw9YpAEl_|9BO1@bd0}
zjU$}eM$krxn_{}dHsUrC!Xq}KLSi;HrKxWZYsAuXG|R>zUW{{`r_9+r4x6><n>AJs
z+xYjmL;m5OUdXwhrueUQkJ>QO6u&F?FJsOKq^aXJPT06+<2o<ZF7A^y&e}M~%aEaa
z%vDxXr)`|ELE_19Woe4yc^-UCT@r%}HZBUGK2LXD=6z-3swla-YpB@s8zMJ&*lj$d
zdxvm~sjI2m+&&xp?h+^UugZ5<y0lMs-4i$N3qBB}!2p+wU+Up^i1PeDrp^OOilTe_
z3kwfH5y_GSCGYgk5_gx~g(ByiK_n|Ek|ak7lA~l01OX)|L6DqOP;yc*&P?~@)Pq?R
zRKBP0+W+r8r_OVJb?escN?kiU)4_$jE~}l%RDnGX#Vk{P7cMyzL<_i3P=FRT><Jg1
zbYZ&-@48ULg{NE??!pKcin{Q$3(vby#f4%n6nCM#3l&^Y6SWd9lw^Fqi0Xoq@5d?S
zvfkiRS}Zh{ap4)^vbLoh4<XmjS9IZ77b?5(@8?OpeErkkQ&NXJD!D-A3s%ndNq){{
zU4EQrfTOAl)m&)nLOU0#yHLZ01}>z#P}7d-bfK2bDK0o{))>v^L2@-|nhUjUOC5o_
zqV-&;FK|-cpv0DExX@TEnWD5bbRo;;Y!`Bb8;SD0PIOQ%G?8pm(UvYW6JSwuffjTa
zX<fS6O0um*+lb~~irn6X4lcat!T=Y))=ui^LU$K>h(jkAIt#FR7Z<t;ce5>1N?Tz^
zq^0&0OD`9CyU@ojeL<kF3;k?M?!5s0UEr%2S#hAtdX3}DF7ORdgT!aB?K#ASp*9Z_
zc*zC#_Wyoy``Op%6&GH0VZI9sTo@@16I__+!fSS|Q7()Y9wR!|g>f!Sx8Ga$x(nmQ
z{`~9z#hm2AOtDNBog&IcP8FCYI$d;zXtfcJSsX4Gyj<b2l-XjOBg*Vtfq5>xX<Itf
zcPw;akqhfx*x<rq7r&RrTDIy@N}Hcja$kA5)P-f@zubit0xMm3OJJ29XLhyZ)xv8;
z(+XNsz#!`+6t9<NcB2d1q;!+Zy8e8#UH5H)Euvdpc*nLcm6uu;nBmyr!cG_NyYQn6
zyIgqB1s8|ih4;ntlnbX_*v)gzg}q`q=)xfvc-{Lx7e26~edxk|;RCj%!mn1VK62rh
zZ8<D(MD$}9jtcxKBT3KWl06}MQj}-+8G*|#Tyf#73+G%oFP00Uto4ZtpW6JHJ=Yh-
z^10|2cIhP-hLw_wnPVweUAX4Lb?)|mTKAsZaN(v4--zce(YvCzUAW`2uBqmMn7(x3
zD?3{5h1vHc`?YAri%H)Kd?)(7C~N&7P+#8k?QtO_S=}x*xRz}83HU_=E(8U}xBaip
zVHYA|iHgQV<D#Z$LX=13HQPVA@Ush*+^FovFE0GbP1TKJZv5uL?=B>}k&lV*2zKF-
zUF!k=3fTOY3lD{JUljPa@ITx?U3hH!BuRv={jI^tBb-;Xn5Oaz(EfxQu(^O61#K?m
zMq%Lr_S<8hbfbt^p0a(4x{(`@af-XG+XpJTQNoRqZj=(AvZAGJ|1xeoBb?jja>C{9
z(hBbX&Pv94){Wu~90kido^#`Qama9^ia?4R4mYX_R}-x+$~M#xsOd&60p2G<Ba<fC
zI-;qfPSG?sY75XOw@G!~s3(^Cq76jTZJ!&jS`(e=Mnl_@C6Mh#j%{fqz`uRUjV5k1
zb)%UZFS+ru8_nHl;l_(@>mx)<e!@{{oy577Fte=%+PKkHpq*`RFVI1>qZ_G1GU?2g
zbe8H}-012?H{tGX^m3!Oa1S?n3efY3GS(XCBiVj#^c6U<&bt2p1vmOjmOi<b0d}o{
zZVa+{u)q*Eh6)T5Jv{rrcZ?2q;|(`vyD`FzSKN5jjgf9laATqyH8u5`8>8G9?Z*2P
zvKwh?jGNEV%^0nzac+zi=DP#>YU*`2#=EgnQ@b>EMpIvDYLXk1-IyjmziDcU8x>R4
zR5zc0n^7oLg*v9O)^s;!xG~cW)|$nkOH~YBH&qQtRTERy95?2=vC#eB!!G8zvB2)p
zn*#IQSek16rN~_Xxv+#rH{Nk$n;XkyzBY<37hS>gbXw9%H$JbBx=JjZ(6`)JExbl_
zt>`+@^`aX@=@}`Jx=DDm=-Z-OM7N64hjX#r=2HUiy0OEJo$RJ$_q%bxjrWA#7u_wo
zM|7{~KG6?y?a`DE-8kIedU(Y_u^hJThXg)y|92Pv5y^fmdQ|k7C@UU!<Am@@(Y8Nj
z(0E$-jOYt>($Bha&JDtO&Stf=PlTBr*gN%t8yDTU?!gTYK6m2_t|bqKd2q>%%WnMb
z#y|Z0@5WU(e&A<*nVoBH+_mTHx*Ip#xar0%H;N`w?zr)#8=o9--gaX{s^W`8c@GZn
z>xmR|e8ryf5|jdtds6pn(RX@l-?;Iu8{fIHu84!Th%$Zew(b>ey(iu6hR2Pl8!<O@
zHw-s|ZXBOr-74sn>VA%o-ICm;5^$sZ*oJfn+4is-5#gEREqmOy|0tnMo|v`L5~BCr
zC|xy;*`M6_nft$ZJ~N?V;XKyIo?rP_KrFx85&m%Ffz5xq@t5#J+ww@@;*^H}y7AZz
z&4W}Al03-cK`9SPdyv<IWDg2^@Px;@dNZE~1w0t<(eisR%h2G#UxzbzNulZ03VKk;
zgXy=lJ*O<DE<Bj=qz6xVP?U8&SpI`n>qrJ)nDVs8x`Of28LfoJx=gW{hc~}y#U(z0
z_L3gN?q%|DWjuJsgNhzJ>p@vg_Zf{r%CY*vj2gOD-h&Dr{Mj^f_@E^Hns#(XawQKc
z(`{*5iU-em@Vo~#Jk}4LRU~*d52_1P73IrZ7?7n07C2eGrU&drEe{GF(Q53|s19i}
zqa{AqoF1fk(A<L-9@O@rjtAKu<akimgL)pMdywJ5{!~@pgZ2Bg1|D2YRYm*oW(1Ad
zOz9wx)zAaJl!txvU)Qpv4PANtr$A#5l(@0iO{Awy#s1+vjhD!dKA6$W11hgFZRtTP
z4|;mg%Y)V)wDF*m2c11=D>Kr8UDmaB!tF&lO~npobQC*-vy@%y;z3srx_QuOYx2lL
z*1K%F%Rs$xLF?hMUTVWP5Lr4XqqhfrJ?Q5_9~li!D|_^U2mL)@?*@7B!#?dr4+cn^
z|J;(yLktuqu*>ur?7<LmW;2+5$%B_Y*yX`{9t`(jgva_PeVqrdc<`zRZ%X##_4P-3
zFu{X~9t>`f@tOytJm9Z*qos6==vYzK9VhU*=y(r)mPfYIK1nQ-Jy`tMIc#<PDYpMq
zfoY=CJ(%IaOyOA`%n^7)lo4hNO!><>*S5^_fLRvJ_h13nA%m;5x7XKS%`;_F{Y9dS
zMVEN6RA8Cta?ur{D@9j{vesJyEmqcNoHZV-^?)!vBb~|vt@mJq2OB+zr>adJY~w^b
z)n@v5u!ZNQQ*GsHbXvc=m369jIO7e|nSJzo`gRWQTlL@dV21}i8fEO{x#?7V7}QXw
ziVewpUwZT*7p=f<(LJJjJ=n)1W~F~1y4I=oIn@CV4oc}6>GEIO^B$7yM;;vJB23RX
z;=u`?J89};4~~lEm<QiE)o~BbI~5%^T+I5_sZM%uiYIBB@@W~FY3ejrSMf{&pPGAC
z0-mG40DJU_z^5L3=D`J?Q<D9HtBZdHY@eZ9@?G}eie#^f(!#{*OxL*o@c!Ir%1sY$
zdC*QrdmXnqCSPhk5Bwh7@!(4jzVhI%2OZNC_vd>aeC>hf*A%x0*3R$2u?g1J`YpTT
z!S`aM-NltJyw9{AWe}|3;J<AA+u`AWL{oGR43G7WSF+cGFA6%y0S|&6-1p!|?jh~8
zkOyH8-!z&z@8z_?X)5ADl>43sQ`1z!V_nq{7iQM<U}c&j&^YyK=1*MY9+c7XjE-MC
z_?3OsQB=oo9{ldXvYFZwI{xsW{bDVjj{G_vaFg_)VJ+=14<2(PU8p^j>?6@3Q?$Q5
z_(%9((NnjR7EjiabUZyn%Og5|mX=pXvM}RZoT}ZNtU*VU8CoG7Q`c$*L<{QH(U~o*
zTZdz5l}Xy8>DrUDPt=O&7&lELJguXcj>dJIr9{s!Pb#jXgpM+$oh5ZJOSmLTC~aHH
z>L{n9u8w*-%Im10qq@$$4i$AgtK)ecRdiI+@qU`BtmB_^4I8a+QqQKT=OkNuLS|JR
zG#)9J@5z<UYC5`$&*&A-nmTIfNY&vKV~P%kj#=j#-c3_C&NU=xI^GdTIo~i%M{OO1
zSI#wLoH{z9<?{79-;nX^>u8`uaaeSu>&VcN$#J0ngiIbcmZtL7R*aUVBZn=KLuBh{
zdfqw&eb`!tZ7jjrs-`-c>1e5=m5$s7H`mcZ$L>p3r`Rw?YptV=j<!137`CvFbeTbz
z*gIZ2+d;>RItJ+IsH2mP&N{lVVSQ41>FBCs?CZ{MTp=T!&X-fBO>+{ubC7GR9y)sJ
z){{#c)K<*)X7$>NsgFQk9sP8?AlzR^_Q{mpwbjttYEf-9P{$x0+jYFFW3Y}PI+p8L
zp<}3yVLHa^n4se&9WUz`spB;r!*z_%@n>yStd4p`$A#L8%#ZZ$+Uixw5=L=$>R1kA
zb&M8fb_|zL9o3|c8mFUo9rZec*HKIBsGW7xL>-fK%+)bZ$7CH-bWGDRUB`(!YO1*X
zTSwigqr!F63>`CdyrE;Z4j!~zT{VlVtFG!$R}HGG=ICIe=d`+t4dXk--jpDVbS%~}
zU&jI+YwN0oq6g|KCT5pNmf)|emfE~b#}z4kP*<(gv4#VfUt7f!v#xqev~)eST1Q$v
zMax<#T_?I;#|D9oI<^R~;wFL3qHpWq{m3+KmFzpV&o&+TiX_v1;a1WP9XoaG((!1B
zGrL~)dpt*U9A{s+mUQgVaX`mG9Z5%%+tgEgb?}86`*eK3G2yJ$Q;!Ba_j3U2sde=f
zAH2`!(jU_Ckq&n~bxg-$9qX%DFHrbc#}QVkr{-1Csz0qA)sd%p2JM&XsYE@c71K`Y
zIHlvFj?Z<R)^SG1IiA`&3fEW5N@-`=yur?D^;OgQ>JuHG>eibYKGV^^zB-?i#x&<y
z?SdGm)>mumtAq8`7dkF;VA=Tk>JoRDQrgw}%BZida;(xa9@bY{X^q(%I&ShjilS8%
zx48N1@C2X-a7V|N94;ST@Zl>RcXfR1#ZfQr>G)bl9WUy7@r{me*;E5(4Sc8Ld#+U-
zf618tpd+Xwq{GFb;3>Z(#iK*lVdyB?KrzeY)e+FqtAT3JK>2j|b^O#Rjfq*7PHmvV
zIwD*EY;Y-ORP-lys-!a}8W&~O)RD0HzQB(<j#f%$QTb_UKl87Ej(ABYv%gB|Z=%18
z{vo<%rR7|tg7YEAnP<0wUIzZ=#>m~qfWyGQIv(pNWuUZyBm;R2JYnET19=T38-RfV
z2J#uWS;vvzz~17HBPAW=?_P7PX`t4=;V5XJkb%Mm{_N#oDW4m_QtE5{97PN~WuTaW
z;s(<9CedEhz|#gk?q@lC*g(D5*-^qkNdvArNjY5{r=NCg>gV9&L@vDHC}ZFm1C<O^
zHc-|;IRh1?4J_s1${VP_c6R#jSoCM`XAQ7zIinoU8F=16bptgRytAW<fvN_o8TjRZ
zlZT))+sP*zu<<nwJX)7tOCqcF>CvYx<CNc0Gy|yyni*(rz-b`OK$d}Q1GNp*G0=eB
zF;Le)Jp=U({87*`@KtSZj$@i=vsbmX^-?noWEyB_pvA`Yj^~`A0giWvX)Gd)DC9Wb
z+>v9Tu>r-Sys9-a@bfV3%rLEq0hTs3K;H2ng++|aDlH7OG|<^V7Xz&fv^LPrKzjpi
z3><Sh+DaSPjH?Y4BePZq104-?;!sylrkzFxVXIg~W;?qY=q|_VmK))SllCk7l6n}(
zb?$ATkAbBImKo@4pr3*91|}GI!9afl!&%qBiv|W57;0dcfq@1F85nF}hyksEqwD>Y
zVX+jwf#M@*_#Nq6W=e^Xj*~+jFBw?kbiB+ev6QlWI?6al$5xJ447_S!jDfKRMjCj{
zz$gQw4ZOcMeN1ZV!)A_V@f0RH=Z0e4aa?sf^S#c|i>J`Y#Ap)@OfoRXz+3~94NNgG
z!@x{NPEDO^V48vH;{ULLqJPD6PFF1Df|)YQz#9f;8~7_`Jurs>^Eb7gpA#A5V4LR|
zc+<cF0}BnX7pyp+%W`xQfj)~2EM|{*Ui_T$oiwt*6e|Ktt!F41SYcq7f%gooG_cCR
zW&>|Cj)Bz%)*IMhU}sCm8Ut$$tYc9*$CoV~d<vGnNh_YNShUf=#aK$sbhXLA4X5Mm
zB**EN4!UhIaCeg99Ru48Y!#n#DVBY^fp-n;U|61#WgIh#I9^<v&S=fjReCE&r6P{z
zMIG-O*lpk=1BVUlVapBdH*mnfJ_9`Z2L?VgkUyVe{VR^6C9EUzp*^g{BE~;x;1Cy8
z5i2r3-?D8-m^E<RzzG9Kxt0thIw#SA$6^Z!taZ}BDFdgugo;|B*i=?zd_F|T%5uqZ
z+wmf=7oQmTl;;9ZRl|B0)n^9$1_A~yu#aN-+`ugZw}rnDy+jqD{}q9&qSp*u7r0@U
z-sI{{S9D{#BgXGVzclcbz+KUMqF;-CBl@i<YkkKRRndCM5z`OcwZ!fg^@!@ChNxH6
zCrW?5tTV{-`aNgZK*T^unAshJolyfZ$=){*=W<O~v(uHyc^vE{C%8D%)haRm$oWlI
zOg{<G;a7?OCs!|*`jgskqQ8s&A^LzTr=s?6TkECF55@Trr`{fizYYAuKLH%8boH3~
zzZc0VT8Nyk7_DrEO7<e37v;UE;6;8f;6+I<N_njpSQqeGzoZuyE+|?^v~Gra!iy)R
zw1^i^dC@*Y(KGFf%%Wm^+KZPnR58)wq9sJ9XDHe))p5R+p-OvE#tZU{!Wnxr)H7au
zmZ8dumJ|E2M;R5pc-D)WUi_V*DzSxEvMPJ=oYxvI4lL92UTeUsdr`%Us$Nv{;=2s1
zD3+m^a(!xe|C@_iUZi;8@Ivz<&5Jy}GU<@&MQWyMoT;2%6v?!zRLoR7Tx~gM?JHTl
zOue2L^SxN$MSU+Cc#-Z!h8H8ec*ToMFB*E$#fz?9WO<S8MGG%ldXdA=7z?#VUNmN!
zrtv=}<wX-Omd??dd-2A=q)9Wird~AjV%c;p&zn{%Hb>*JN>A2WdC{6f>O}`H+ITT#
zvDVIu6U(%=UL0Glr7W=AKAouT9+1@0i%wqrGF9`=vi|v^k=oe{{s%W=s@Bbm?q0m;
z#Q-+4me#|I-d^<aqSk<<o?i6gN1%n;<0V$KzFzAM@BO@ZL7?IBr2YalmRqdVl!guT
zVvrX@y%;848!R!0c=6LrE#L7Z9=F?63tnQ_iQ3EboTPQlRQxw{xLCH$(q8pqq!%;2
znB~Q5Qhkyalf4+_#b__acrn%s{x>?oi*a7OPUav_)xMpnc~@xjCu#hjck>Kw$YO2D
zG;N|6=ND=>XIR~w!ltrS3$>|UO!K1n3adwdzL>-*cwwzJ!;3}(lQ=|gaE>z7T&Xx)
zc#gDzMVx}cOSO4kyy*qu%Sl#tA<v6g%KKjI_F|D2i@jJPmepRY;XDd26J0J!=M`S8
zw0V^mZwcSuZv803wAPCaUTpMYo$a%p1CnX|%CJc+JH6QD#b)8RMYq_VTLs?nVw=Er
z(Rc0A9SpnKI>da5MtF}4wa0(Ie(n*sgI?U(>)b24PxJ%P4@LKj9uN(DqaE_%BQCjh
zNry%GyTcLtSTr8<;y9PO4>>-Z@Zuy-Odl%xaLS9*UU<CFc~*LH)@$7@{{4`Qa~yN7
zy8X^?xc__csTWthxaLKH=IPrq)n{H@@ZzEupYyEu;xdC|sxQ2#-Zy9XLMQodrn<tD
zF;g*HyP>KyDywuub=`{_UfktJdaiaaZh7$~=cu7--_UZq&5n5S{BzD>4Hc^})Shu!
zUwOfzT@6)}WzHYm*<X9XA|}@QmivaZ@Ov*@0zZhJX{gw2Cbwj7HB^QdUN4e-$m4^L
z-C2|!@*?cT)@~VoF9KfczrUat`;R-BjD{-WMU=)5oxgh#6Cg*6X2!kzM%uC`ym-)1
z5$@ZiKMMTh#m@r2*!EuqeiO~D@(1hMrGE<iCHl~dM*@F~{v*mm{44NSbpD6VygnrR
zaP9+VSs(KGkl%;mK9ukQJ{0g-SLzn^p&)&-tn0fnvQ#0Tbx|l&VIQ6lep0lE=u@H&
zaemroUGB>W#eC?Lr3fW`DCM)RsC>qU(mvjUpvw5LHA~IS;*B1Pa6C)h%u>H(sd7Fn
ze9y^Nm6x_Hf0+EN50!jy`jF<cp5Im3hiYtaEaf={9Hl+)LlqyY`Y`v1vuL&&Guc7l
zC&}vKL$?|NHGQZhkRs|3)kIT8>DjfCqqfib%DS!(^?Vp}E2)mp`dOCyNqrw`XRAyf
zhGnY;!s$M=%T_dINH!%qt)UOIvQ?H3E8fo_(9+0fefiMJht@tc7FMD(Hu0gU56vXo
zT(pJg`$Lmj3h)~qy0!74tq<LN=+49W(4OPzLuZamUFXJZ)xn33K78{|+JS7vZxJtN
zTi+sjPbGH|2Xa>d-aOUAhn_z4@u9C+din6=nIt-}sJG9$yDGOL>+;4c7WMbxMIZM1
zvCoeI9A_T}`!U3iK?EO)`0*68J`Clg`|yav;=@ZmEa2Sv@UoBhW8!rm#>>Et;B@=&
zst--7HsBzSv`2fCz-yx6!<j4^Ej-4Dv0PwflE;bCPNq)qVJ1hId(OI~i9Ss7VX_ZX
zWP)ahPL=A@e3;J0EJ>QP-TEP$b?MJZe8Y#?;=pFi5r3A>=dux=C;Fynu0Kl&i+ot@
z!%-iO`S^lwETsd7#fN1+Ecaop59>JHKAbF(x>D-?TQPNbN*WKhO0sYHuv%b^=%{Pf
za#}A;*degNhm8W8eAq1Twh!BFpDjF1gx|3(+k9x4?PPVPcg47>wspjv!n=HUPvCvq
zf44y1D%tyZ`uOmX4~Kp5XRF)@A4=(d9}d|52YomsJa<Yy`W*4$uWa?PXwe*1xPIES
zVB@Me>NqFDhwDDvVE4KC`|!C8FURe)z$ZSOu`Or0>TEvmL;6$J`TMDD`Apyf_Z-`j
z>+pqSFZpoUwqFsrDtb-y+==9yKHTyl=tIbd+g!{(eDA{#Qu?J2UkmVXUkTjx;ht@&
zzQy^C@VBDh+4kI{yCmxsb^GA4OLYN*Jvw16OP^%@c4@%2hkb~M@n;{R0twNWXk3)l
zO?x!%i{(e#{*!H|&o4gw>cek7{4S+`ivA(`!1ixZ*GbR6{>S*YY-Nvq_{WETxxFt*
z;x|$JrYI{%CHaxZkGy^)`|*SyNsUyu9F@-x_))+Q-o}{Uj}bX)UXI$HqYC;_$d6mX
zr*agbupiMJ)uLVIlYW$Ir0O(MZ5pYfemw0*bw6tOQOu9xew6p4f*&RPnE!^ev>#;z
zO8QYsAXYk^_Gh?_G*V^#nAS)UhPBNs=f|2xYEL6Yt?0+Iemw6-6+dn?$~^l<RwX|w
z`*FUJnm*5&I?wr>AKx}oyytY_Lubd{nS`o-+;60+v1{T`(~nwybn~OTA1Qt~{AlJ!
zbHBCxG|^Pi%_SU8KhpfDE!l>m^r<6I*N=L(rM@2xgwt(Hh98;2MSizFgJlV4+od@I
zjr?eATa-W(KbqQ>4(HOjU$yX~jUR3OXz52QKU({(hrTjk?sWycGO(Tax3_E2-ocN=
zK&_)~>EuUeo4feYRd`eBWd07`!;hYRyvT8Ata|y;+mC*J>u*yZKl=JH%*-s`Samy`
znS4*n-&m1fkWxDI7szO=1_%uF<JHEBX^_C2#%d_5`?1Q8xBPg?Z++xrTI|Qm!o#_c
z{CI`VeoXdb3a3M9BSpvh@tOcFqXb6#F~+uh&@yS9@av-EZTkd)iK3JI*w9$9`c$qT
zE-E?VbSYvRW(v$;!|dk{%@WHSe$4h`j__PR-V~T8%22sa;K_X)&;kj#P>L4$tw$Tt
zfx3hXvZ=Pzk7a%=m(mq1wIjruS<m^&_h}N3yV{Svjn!5zX$iGfbe$jT*>XQN`ti0{
zHu<qxVCc?lKFekH2TmsP7Td_~FwQ%EY?FZG?S8x~yhC)SZQtd`dp5uC$8O<0w#6)z
z`T^(Bk0k-?Kfe8b9Pr~0KOXpT(2qlYeC5YoKR)u~upgiJ@u?q2{P@_9b6ha_wWEF<
z^W*cz>a1js`*G5bQ^F_w$i8nqZ}T)yqITLD(UR^=TJ~qBH9nr9*UuoI7w01#t;ceH
z=Ens;uK97@kBbcJ$0a{5`|$-gkm?z^zj1gQD{@r)8Q}^)fz;2q%4Of!dQRpIiN;?^
zZu4aEBli%uIJV`SY|I@$z7&U1%afi|mj69JzV;)+?aPmExOMmu5Qp#l_}&k<A0DpB
zyjI(O5Ie!;$E5C-Mfbzt-Y9mj^o~Y8Q}h|7*k8Zc*#JJ;H0a0RZW>cajA6Sd=0{xk
zS3gX4!H-|W^S<a$e*7$@KZ^2$F5_E+sT5<98SpnLBL6PH;r-K(zqs)RP%L2WX%GE)
z<j3Ef-wvr?MpORr<6pn^&aVOiJmx-6p8)dHxl?+cfb}e<yaBXXX1$+_oJ>}VFi<H3
z_;}m&#|yH^EG-y7p#Ta8!1s0)3E(58o(SL#rI?-!V53s!7H84;Q~*V#ly#Xc9zclz
z`Umi003`z`6+r0#%21c4FW&9Us_XnV&G}3KWdo=aK-~b!1yDX<Jrb(O_^b*6R1Dzf
z*R!gN<yq0^1E?fGpUMF|XY<G&$yIEw8bCFhX{Tq60BVY*RsbpNwOyJfpoyji;1u|;
zN;hY1$#&_LTrYt70d!>B>Sr)og8;Gv$dS@?(G1Z{(S`wJ3DA>u8ws}*Z5)6KpowrZ
z+o!1j587Oyg`H*fR<=)T&Wmtc+tMz8_QD-(%d3uzPQsl<y9CfRfNsJ)1Lze%ciXdv
zKyEjC2k?Sz?<3GRfPMnQd&$sAF9rlKFo5v^ObB350D}W~Ie_5-3<+Rp0A8hr1#oL<
z1}Ajm(2Ofey%gZfMAXww6m>)Zuh6ZX^EHl4UFWL-j0|8+JLmMdY0cX>9ZgiLCTbL8
zHc>1c9l#iI8!Jl7xBy<ac|sF4F@Q+{%nRVn044`8g^MtN*#S%q@D5GP3}6<wHSsSw
zH*E%sBrM}RDwVmli3&Kf$w!(f9{NfXH79^T6E#=#AxoR6`2j2lU=atrsahBSyD)A^
zdhMpFOjD~ni#ZNW)s&`cV^g&>fMo$J4`4+A2Y6lt@W+#NR|fEQ09yiB6~J2o9BZmp
z2e5(7$jV$3z}f(x9*H|m)rHN;>jN;Gs<*Q;xplCVo*M($Bvr_p8Apov@q23k`vca$
zd+!9WEnw|V+c`)1wH?Cm1~BZAlg6C^><ZvLDWZiA?+X)l2e8NHy#o6J_(0%8+rFi+
zmaiFq*LEJ_`5VAzJpBVW9KewPzB-kBo{PVk`Z$1-0h|ipDBBspaWR^;>Yd<F%t<Ej
z|Ip~|jMH2v&pOYt%>rjcSKP=nwq@k{P}g6}{3L)+1AJtC22+7+nHK~2oW}~_ZUA2d
zaEU7_fZG9F4&X`vHv(Xls{vdK;JO6lA?h?!?V72f%@kY6EFErgR3-Qw@%fSi-b~GC
zW<5(}+wBbMy#T(Jq8~)R;oLP--v&_YM&|3MlfMh#d$A9>n)!J%<&ui70NgzN?`Cjt
z_TR}cxZnfm8Ah)#d;$0aXb?hr2!Q~C0rU={PY|I1!T}TvqEHZ#0HOi>7QpWT#CRe&
z)8cGo07XWm^39T5jR|(p+xSOWwD(0fjY{MH{y%Z|<HX6UDt`&!*MRlRG^X)YlK$Wt
zE9FcIB2N$x0{D}sTL2FO_$L5<T<22ZCv(E10REPhL(A{Y)W7@_5a18@szP(?Q+>VW
zDsK>No2!Alo%w@E4&vqJiYZ?Z^8{!|5Yz&q+^Y)*@k9_sgLpb<U3mGV=&|O!9$PCC
z#8W}*fuGwXTP%p;L1YAx8AOR7N(NCSh^j%93Zirnm4c`&b;|_tjKGcND%4z+6)qRV
zKh3QNZ<Y_Df><hw((<f8(rxXzp!MX^=S3gfupZ>abmf9pEr{wt9Br0UKZqJZ>!Mbt
zRH-RiOEg8)A<CGVK&oi&Gsn_`s4dw#qIE^<iSk9~tiselvgxAxPiqYYng`J$h%Di3
z(Hzl6qK!paR|zx`Z7SM~Bh$j_GE>VSIt0-%h*m+gmeMw&ZAG6Gw{}6amn{8Rx0CR?
zYg*SJItS4ui0^wkS@cCOOS{>g-Gk^M+*7odXu-kOTiW{u(JzQ^gZM7U2iu~55L<(I
zCx{n=7!brPjx*Ol5QBmk6~yQu220(SgBTvfkRXNzF)YZN-Lw(yb6(;pup*5yTeVQk
zjtJtFAYK#y!3Q-ymFQLWYrd0dq`<%ys>S{ctDV=iF+sc@#P}e_ivKuK7ENlQCItB;
zH_L5e5PWpivKDGm5R<u<ZfaA+?bGwxRLM>goh~{<bfzdhU0X6{b9o%n76!2>h&e&b
z<!YBz^rozq9WB)MAxRv!`9b`qYYT$bHP3{_LF<vQYvn*of><iBOmuY+%LUlB6+x`D
zc~uZ^37@oQb`96$KI@v~bwT{tB5i#TpSMs<8-mzq^QIs+3%@P8MU-8m+qNLK2XQ)x
zGeNu?#Eu~L2XP>XopO{9c%rpbyMlNxi1)>^TY99+(I2%?dxF?27M>LQg5cB;8njd&
z${`4B*ufwU1u>?js(wi8*HV2H#9;|_B!~}Ns*^!{ELnOU4dR&aanTc^OC-ptAo#?p
zi!D{#{o2_e&INHRh}%J&58@MXyCM2%5Ep{D7{q6iEqbOd!@57xK9}q@4!8h~mx8z~
zd`0xC==XB0>%zA$YA-HME8WX^lUrgdMYtpOyX?#1j4y-e{(jb1qGekta-CM{UJzdg
zLEx(RhG$SuC;9sze&7&=@Kgw{Al#fL#tCA=4ehrhnkNW7h?B=PBZx3J_8`1L)IY8H
zg760s2qG9nHXqm<#0H;M`Xg<VS0iMtO5@fPrNcLx8AL)(lUNXO0iH4}WziEKYxf!L
zmgX6jMEyC4UxN5Ih{r+v%9Fj7`YVWsT$4fk9t6*nKe+P;@uw`^QLU^;`1blRgUUFM
zg1Emw<DVdkoznj1I=_?2C;igG_S`+GC53S7xP}l4gpenMydflqz^x-+2#u#Fw|FUu
zoL?-2HLVmIQ!s==Aruaw)AVF!p9t~sbXKS*Ls<32e|zttR;p+SPlr%7glZua3!!)j
z<wD?f@+Cqj8A7QLN{8_FiZotwPyKdC67LQu6S6MLuRbH0{7eXCL)I+=T$Wc`sq!II
z2%%yK&xY`P2<H!Ll|t6N2_=qXJSW-8jDJg;#9Ib#X)LY6#vHad)=JS>Jp@MxS_m~l
z)}{3|L#P$9ZZYuO(Dt3sQbN|>FE%4J1ZN0!L!dD&Wc|IU9YP&xXBVG#ZD0m3u;(TH
z^sE;`{g8E=Lp2Y6Ij{ZlwU!Y=W(YqrR0s`2$O>Uk2zx`w4k0Im-XZh}p%F(lgcc#R
z4B@x;ohpRpA-tZVk(-3jRE*6;^R-qqF6xxLB1LNzLhBH^hR`j9HX*bPp+g8AL&&$=
z*-o@}Yt^13(^}DzT-w<wgwCAD($3~$Copvp3mv|{lHNUpo*@vJdI<1iXD{2*tF`JI
zLcb6ug)ljU7eeSC!fPRn3gJZ#V`=BnXOag9jBc$43JeNia0o*}7%JKG$CHN%(0PQw
zOCh{$TZRi<T;qJjw!9j`Na5x0B(VzrZyn8H;q0%oZX6pE!dNbbff?gOU-~eeJU)a8
zY}JF5%70o{VowZNS7P&i@F^io<#G*SeF)P+m>$A1PE!aoI8gGd>%0(V+B{3(jSyxF
z%n_YymoDOX#!}vt?EDZG2rLv`B)V9XK1&3aa>n;quV-Rf!Q~gi)duM+Z67`zg7&vU
zSS^+{wtcO@<!H)=5H@n3;S-8D8hO$-g|L|mFNB?~)rr>XR%^8-g!iO~rCSBw5#1KT
zcH920zz)%!A?&j4!Pe@nis`Jlo9kpt+DmWe<0r;_A$$<RjSy~z@L>r1L%1Mo??4C#
zLpT+}X~`Z6;YbJ{hw!kq`X~fdH~TOrqKzt0KbuSRXb8tcI3b?LMElmY>?e61wXxPP
z)A>5tXQb$S2%m&-HiTwv)H!kJ-$v1`QoZa?Ls+~Z-)A9^hb_oQWkqH$hVXd^U+`=V
z;c^JqBo2$N2wV+eBEO`ln>~6#zTD$p4`D?cwWp1`6#~EUU<!tCJA^yThVWGgKX8yk
zxXaGAQD2AfO~`s5$Gs5V7@JP`mRnF8^}UpSC(LZVwyIWJ)ugR*hu{gpAHuk{O6R%!
zVG7^G;SIsy+1*w#9V?XS3xUR3OEakf3A?$iqJJoaa0rnQq9Fv=X^9YG+|cGYnBv?F
zdnFM}DI(C}zO?^Q&m?x?=MaA3Ite3x7{9XPJeR{(?|!%Ym=wkz!Vg6MwC#ThJmeN_
zTmBaKCxm|m9^3Y#ZB?Ey@`mwEFYAa*SKBJ;uuiE6%g6gLiU<@4V^oiff?*UAAQukf
z3E|}{)0llKjG|#Q3!`}$Plr(~jM`z;3G?~GNyWo>HjGMPl%S=Xv!rOLFiH!Q5iK9a
zGXiBr=~ga`KwCwqU|TA(C1R-@#&cn$h4FhRiw@6+Q6-G3VLY`u?dn=*wJ@qnl_%P%
z8UhZ{nxeHtSt})smft23n6xlb#qJc%wf8NV&VY4!pmwT(*y{<`7adkGo%ZxFGQ!BT
zV>S|K7)F*rwrGxM#b726)L2-FHW6(qn${(mr7hT`u=U>6Zeg@*r&@*4I*cLhtU+K)
z+DHedw^MCdDz(~&(IJeE!u079Mkkv)=Q<3x-rw3)n9b-OMh^+Hww+?{YL?CD9Y!Cn
zt}uQJqi-1f!k7}q)G%HMqkk9!!x%*WSjvlG3<zUdlO*!NcGfjxU;WZ}FxwW!Yg_|i
z4BhV>Do1%KjA5LYFE##Zz+bUnw%ap2j1e}!62_}Gj}+hyGTbLehw*wC<HHyew*KcG
zEBagc)Nx^)?w&*7_ZY_p<(t5E${U>~vU%;aNnuR3EzC{}V|p03r0$F`W`^-m7>C1{
z6~-H3EDU2&7_-Be6UHl#9rMGOE0C6?%@e4wDv9<tg)h%eUm(!9v1MEw#*#30gt0S>
zrC}@!V^bKL#bJ3E*W0PJVXTlWomYmj%I3EOR)?|1w(uzH!dM^XbB3IBX4(+O#{VgO
zTbOP?KXz;p-WrCxoq9)jo9K4YcSRXt>B^*CHt!ANy)fPnW1e#E4x@{-pFVrUVf<sq
zK7kLyxZh5FD7;_vfapO{`X34-PkTi;62`}2d=|!qFph?CER2(3oC*U;+HsEmN^5+W
zPK0sev7^w!e5a-8Y#8UlIK#EnIEkJM8#~X35mC-hC4Toj+9zS;j%_hH%Ed4~m!cbC
zd?CP!SHrj@e3{!w9_@;#FG(X`<FHFnjrQvDF{=$c`b}wrYOijGafcgb7+-}E3?mfA
z-7xO)8=ElvVSLR^FANW7u)X>=j1T5JzYF90Fp6(YA~XFEhKmE(UUhA+Mz&XOhKgk0
zteSe^A59m3E>T04nKuk=dp5HH$*w(~NoHcLF#8+Ek7AF85ep+Be5Aeg%lp^uRa~-W
z7!TT55$;Qt@KbyB6F1lniatMw@e3Q=-r^b^)bHH(xvC>L9KnMy{tV;I2<AudR~Qeu
z14Pg{f=6Ne9Y(DPQX=>#jDNW~NAPsSIx!z}Y9c5QK~e;HB6zz=THXlqMUY=OIfAAg
z6pgzlXYqGH`cru>7mT1^2Q|8bb@NW42nt86-wm0bh~P=#BDUozfjPf6Di%TU2+BuL
zA%YSSa5pF?y0n8T89}KC-j!&j#lMW`Gooc9*1aJNet&Md=l4bxBRGF3vy#-M@!1Gp
z7;Tj@RgU1f2#$78&r8KBqO@0ypqg-X(HgeBW&{<7IqBetK#L$ff{X}KWmsxQP)EQi
znic^&eyfA38$qaps?RQTRD^mQ+YS~q5X)zGHQF;HXc)oXp-GJ+sMS$rMbIdMoQ|sM
z!$#SJ2r7T2@z>S7r?Y9~kg5opM9{6HHJDAMZOufRN6;dImUe5~N6<>RwP+jBwsvW|
z2u4Z-2I&w%N87%jqv|3&DuU4wbmf5}=pI3j2wsWc)d;GajeAC5&deGjJ?#}iZ%%zj
z)kl=jmvb%rf@uE;UKAJ*!64gbpwy-FVB5leG3HQ-JWTYZ2woN#E;>S#J_kFh3mug{
zG2h4tUW;JPq^u$H(wV-I?u?0GYy{&X_(`&_M=)NxGl`3~6Th5Huh>aV;AC}D6C-Hb
zNijQF9HvAtHG*lvbJ^xj*6>c3?2HIz3eYkuf;ViQEifm7$qyT`Xr9z!M_6}31PdeB
z7qPx^T@=CM2zExWD}p5vETu7mZ4oSsV0i><B3K*2TfI_;_e&kuNv()rWdy6})=9k;
z!D{xUlOpfxr1qzzlh;MCK7uV`-w?sZ2sU$t_fFj;7CMm6h<^7(>f2l@&!u}hsjU(G
z*-4S<P_|%tbamSH2&nIh5_Sj_?QA_5ux4lV9?zEuc1OU6v-Rk##&%YFg!hUz>TEr<
z?E?-nFEEQ>e*_02ILP(3EQ$Y&9EzavQ^{2}T9;1oCP986JQBgj5jdmP-{qqb9E%{%
z*^J<L1ScZ66v5>P9?o-|jNlym62YkmW?yxjj#!^p`N{SS&$~H}v)raSE5avY|BNTH
zz^4&3zwQY3NxLXn?<L0<5qus&+EPb@&Z$%e;YZ~w5nPSH9f2o;YY|+J;M)kki&&qc
zOUTF98xh>(;NNe2D}vh+>P`gr1ilpgO7yPij?UHxU8b)i_$JqfuLfXu8YF!m!4J}%
zohKYy(sI}@R|I`GII=f6^au=bj);22EiCMdz%LLGW#phhD1z<MJjOZGSuNh+h(-{T
zq90E<9{-%4h~Rz%C8H=6#gCj3o>>w6Ar3!B@SDIdqQ8ok`^L%OnOW8+_6J-QJTIcw
zIR7Q3k42e%$el{~Z`<;Zz`vrqdnF}FtvsT6MU$h*Cy+l12ry2k>tG@jjG|B!ndcpa
zqbLzYau-E@B8n%)NG=k^Q#Kck;%VVxwxxI!{?1mF9cLXo?>S3HQ6`FNQB;rOnJCIe
zQ7MYbQIwP8R*WL=T*uVIN#&!c5XGRLsZ3ls&qi_m3u`_6h1BQ7vx?~Rc54q_aa4_>
zd>6&kq>HK%Ma?K2QD{*#|FJPE7F*@06-7!EgrdhBE!JDny8W7-8pX|d4yFtBlhUH7
z9Yvie>PDfWXc9%esCA=Cb`&{L)E90bnl73lnkm{)l+IbX#v;j$I08kIX=xnAopRQF
zB?G%y_op<qJzGR^rL@*ew0RVhyQq9mSZ)_arM8ZuO%#iM!s4IMHi~vpG`){z_t8Fz
z4pEFxU_t^Nqv#aHy*R#(qjMBpqR5UTCyuUBbYrv_ro_-aiXKrsh~m#EdPdPJid9j(
z6-DnT`b6<^6vLzFD`z)P`9V?ii}E#g=+E^a-)szs;zi-yi!f;%C|O<`Iapwb=upvN
zqA!W&`j3d>l_=(m<yBEem=wjxC|-+VlvpN+jusswI#!gP<Dz(7c)aLpjt}4eE?lIB
z^%$1P!c(G{DljdI*-^}iV!C8!h|Uz9CCVyqM8V5o2y<=An^DXY&V7XeyT;N5Q7jbW
zBGF}0EEZTIN{6Kaxz5X@SRvV!b}75RI*K(>+~ovCu{MfzQS7$H8SBNz^;GsdQEagN
zHwtVL-7NaH=$0t93h;=P59b?ED|K5G+oK>by&J_2n|DUBOZYw8@_y8MDFfa1MzN1~
z$V!|KqWCb13sGE*Vm}?CI2pyMC=Nz3rbzZjQGT(8L&8rLPTki<9T8^Hi6}l6J}P?5
zwjUR0)WpHBPw93#iZfAsVwav3I48<&@Vvl<E{dL?M)6tH`XP_Zrv_2k$Iq=(16QP}
zUqo@q?tAVyUyb61ZMi0JU6hX!x@p^U7v62j-Vyy$^sA_KQ85p}^mP=`C}L536UDbu
z`dt+6C_GVoFWDbN>FE;S(RBeIx3VY<yVNU?8#WL{ShB$=uY$8qpWHUHH1a=L+T)V_
zMbwNU5ygG(|B_|tPXf6yfBql-Rrt3kei!&dH1{ZfMR{dDI>gX1hDTBS&0Q;o`Z4??
zKBZ$Q6T`nzJdPqMhCDGm8T;?-&KpDi7!X6UZOJE)+wua!g+vSfkG*gVPe_(W=dajB
zV*H{2Ma5D)h7vJ6ZI>1k==WL{JxdCgidolhGs~3Q$7f=w7DM$I%EnMGhVtU}Yz&oR
zs32TX^#A-T$MC#Zp0n+_0jtDN)wb|@>>4rDjN!RjsdZwgW!tqFQiL6%ZrM*#V{pch
zX8Y7;@9cF#s4GFXZ%Sq;wxK}`*)inAkZ${D2xP|4P#{b6{~|P!Z0i^r3owEbXc9wH
z+tN&+c?>OLXerz(_TSw@^ydvkZEVlBF|@O}y#V{(DTdDf)8;NQycEOBF?5ZgoA`8(
z;YGVvj~IFi_Y&<Lvp(1L5$+p9zZhPKA=*VT^%r9<vl#<o7#PDKF%A)>aj-p`L&Y*o
zG<Uj($1p-l$BFTk7)IH(UX5X-&94dME~nALV`3O9kUOof3y&A&5hn;t6rCi>KLk@_
zm=?py7*547J%$-#UmwHF7-q$=B!;Ciydg$L$mx<fJBB$i%(X2G1m=mp8N+;m|68RC
zCA%nw#R5DiC$~#CXY^R+vKW?&aYYPkVpto)O3AJg<+0w1VYST+xK5Y@{z@5ZuVb7I
zY<7v%jWKMBVRH;`$8aQukHu|E40{E(ioO%WHi7M;?}~Ew+abVcJ7d@t!+SBjAH!~*
z(OuOZDI%~mIU_9>_Qmjl*gq6K7{h*n1ETcoUpwtk3?JDud)T%gscii^bChSO1SB7e
z;kaFT!uCHM!x?TVaTJK-Yz*gOaK+$`;k>N0+cDgU;gc9Xm5QIma9!X+3>O7HkKv0L
zE=e>F)MY#V)flb_7cOcI9n&?*{#`irhQLkHTcRxGXs@W8`eh8%A4I<ry&J<lfv-hb
z`i;Q1qTh*rA49#aibYI4rL!Ihdp`!<j&H=^jlma#Uo4>*!Z8GdgQA6(T0d+tMI@Wx
zX(bR7jf=9>jNvtVJm+^+KgRHr6#Xok6vr<y{2Ie=w*Ox-{BH9f0uN&NQy}*<%tQVO
z_@DjxZ~hgK(tqt*k7Fp*-`dLZ#E~~{?Z(OR|G(qqiz9#B`s;A5ujNxPjzV!fA4ioq
z3X7e_()5qxNy!!wEfL34aTFDPI*wujdCL7aQ^h6A1C<nDgi`hq%f#`F7|X^{QJ|dd
zQ(mBg?fI;2uOv`e^trgTea-HdS~ZR<^)ge$SWURPD2+7)YKqnpz09{y#-WLGs%RZi
zr)XLnwPje?&Z;rgjia8}>x*WIHi#o#fIb;<WZK*?4lYO<nb_Y(aWsx&TpX{*`BrH(
ziKAT{?c?z5awIQyG>!A&2526~rN104<7g$&B932Mq>f$aXw6}~<7g8{+c@5x=a@4g
z=|R{@J4;6%aCC^HV;ueBcp;8X{O}*Qe!T9>Gj3=yFQ@4eN4IrJUE|jO_}xSa-35Ax
z_Kc&KZSNgNADdaL(V+~6>L168obkJvyg+C`90TJR5yvZW3=+?m<JQNv!EwBHH<M|I
zz|c5`3A|+68E3e7(m8lkdsXU=isQ^lZKQp~*95*DnoQ$pDH;>USOHqLcD1fc86U@z
zIF`mSA&!Z0Op0SN!^SZ?jwx}NceRhZs_AjO`MA;4IPSGdn<nae)QI*Oaop&tX2vlq
z4sTcWpsS+JiDPaY^*_p7z;WxQ_yyfORu@Z^ZmR6#M)TunD6lY&?%fpAqBv+@9LI3U
zE{kJ%9DC!~7srY?R>rX*j*W4w;xZoQTocDyu8^u}Z^f}Xj%A6=>D|=oZi+?g#9@6L
z8Eew^h-L8ftW9xzBD^PVeYv_hj<*HKTjJO%{7xL(;@B>{OY~jaXNSN}{u|iM`r?b}
zy*S>tOLxclFQoMy7t@d3)CaV4c)3*K*e{Ja7{{SFE}EGKB%8mx738Bh(z>gYag^__
z4oj#bq94a`)Q)^Cj^n~7L^tor$BL(<;%U*A-4%nJi{m_Jt-JbC+&&S#BKoQ5XK`E*
zxG4I$=og|4cqxv{!h@t?9K)+|T$2W07iG(D2;3CCC3;)*j`WBQE4r(%;<(Gn>aLg$
zkI()lj&He8O^h<}UEKPXqkxHmCccm3hd5kuxa0UOj^BB<#-Ya%i6a_^!BrGTAdX$#
z)w~CeqbsfC<Cv^;_&L$nt!yxkP#imMImzKTW;9RzWx1n??uf+^k0TMseJ<KKo}TYG
z+g+J+9sCBY@h!)XJQ29t^YoA7-)oMa<EVAe@g19e&x*4(GqpuSD}A-b@kbmF;>cqn
zugS}09e>90h}#Z(7jXO~`jAU;a2m6&J67F)7*L`;jw8vmn#v<G_`Vg^7a++d@|k%0
zZwE}|H?guyDjoV?cQn7@U^B?~GLj0JC~P9rL_-r#n0V5}vnDE;C}QF%6J<<1W1=X7
zm?&YQq={lC>aTSaH_?BE<6(Ej#%HZ`R9x#QB}eBdl{Qg+rDI69)FXd5m@R9foQd;Y
zQY(r>c@q^(u!wbk?QFG&P_l<Q+&s0iiRVmcCQ?m2FU~bg)HG4WL{$^jOuT;GQC;k*
zJrv`!U({MAFQjp%m}uKWF&aDW5Z(}W(&99c#s*8R+9v9l802#1ZJt_JYSojLu-1`g
zR%=<Mfr)f+&M?7-(ZbR;SDaZUvQ2b1(ZfWJiAE;cnP_jKu?c0OnTh5yUrpHH!%6HQ
zC#b1utr-H_*}_CC6Rl0Ol;Fd9sK!~TcblcQ;n?1Aw55MDYXNXT*vAegI-2NgqKj$G
zKF79`Od?w{qlaRvx|-<5L*KH7j>lqzojp`f6TM6fWCu<3Hqpn#3!Ebp93ociYoZ^6
zylJ)P^4Cu7y5mI?159w(8G$Y2uyEGsIha*Uykz2Ki9FQg9b`Bz$E~G12=p0lVuXoT
zO^h`0iu8yr;Q(Hi;kqe4T&0|s(I&>2_{7AgCdQf=XJVs?O`J*-<4w#qF~`IN6B9W{
z9dc%xm}FwIiD{Az_E0o3O_A(W+c;f-_8BG~_fXS2=FBoN{eTwTuf1V{n)iS<*Tg&%
zE4b!OylLXE);SAJEE1S+Vu3)Jo{ILxCYG33&M9b_vy=-pZ#s?3BunPoX`MY)uCe_A
zZI#LA2;p9noJ~!0c$C#9)|gmpVx5WgCJMZl)vBjrl>t4~3(a#jnAXc}C-qdcZ#MC^
zi4RPCXkv?rt<vB<Jl9&}(35`$-!ZK}=-Z^qb`$SPmX;j?J4JViz9;&=iQNM9Dc(G1
zuT*^0EN7pI$_KQiJ=J~_J9?^9CT{ms2TU9^vAB88Auf0mAM>PWmGcp2-^9tDigxNz
z6UU^=Nlv!}IU&ku>^MUa7=PFS?X<)^W8$odbHY5td4aL}vcf$Tv!9u`V4_q4r4#(?
zgU?NvCK4vTFmcJW-c@wZ#AOp#Ox)s$#tT$L34DVO^_q$6w&jMvP0@y*B(wCki93@0
zQuHfP+V2XqyO8{~iEm7ND_O&YSKvGD{{lalaG7umvzCYF@&zlbZd>y7Qa<6ZZSe~P
zM1v+m0_A&IO^w(-QGu9f+(Zp2y>H@2Zm<bFk+8b?lZn4g{A1#06Tg`FRh%E#5q>lA
zyUl;ttzxY|xm<1gLxD%4#TKRgYuocB@Yv=gIaZzo@(Lu2HkS4<T7JnQfdT@w6ci|w
zKsWJuGJzsuDVhM^tn`%dv|eg}9pP!Q6icAEKnYRCDJj6gER(=93A9L{WddarD3^ei
zK&q6MPvCjmzd`~P<q*$`rIKy0Ebts_$!qKwxk`esCPB3Xs@p!b5~v|uQ#5x5Q-mG1
z4_Av*I46Nd0%-}<7O0az-303WpJxK~g&WwG^aL`5Gi?i>dcl@tNj6(FcL6j`pt)p~
zXcJL-Hcg<JaBkaH%jmUApmhQ-CNLm@HVL#%;A$_`D}i<iv=`@|33L$XD%w%BlPF_$
zPN0kMVS6sRNw&La55|#|OwW&NTd$Gooj@PEZeM|Z3A|ui`U`k^seuU$5`Il|a00^x
zhKLRo9VW_{FA2PCA8UkUU$IMH6&RTSr;pA|qY@Zx^Oyw2+B`0S*M->tx=l=AQUc#4
z@O=W46PS{~M+qEGSXWU_O<-mMvl7@Fc1%lPdII-*DW(|$yypLn1o%v|ISI^7V0HqX
z-cGu(Kl$0&Df1F|Gl6#!*p|Tj1QsN)DS^!i?0%S1pto9>u>Kcbl)&NymL#y0JJq(d
z0aH?!ahWwqTO+z$bcN_j(N&^viLMr{KU|~#TH$q~>qR$+ZWPV+d|M8^_LVd?U`qm9
zxuh#t-z1d%#QMK-J6Gv~w09HOA+Wt++Rg-aC9pq%0|~sB!21d8;UF+b0zWQKXKLMB
zJ=<H=?X4oq()T6sK>{BpfEDTed#mxi)so(7S8x9AtPUn{ueV}ighPzkTiscf&g_u{
zKIRFSur46k^seJ*0-q%CX#&R*IG(_X1WqP!E`jq2#Cxk#JdyjT(;Uh2TE0H&Oaf<l
zHuX{M`ltnI8AJQ18GY31J}RxKwzrS^EP)FNe38H<PVqd)#RNX*$v($H&bpn&j~{qF
zY3V%2<pi#a!xf$g30(VsOnn8I6UYDl!5uH|?rxV{f*iTyjxxAgad&rjcXugL3PmbF
zu|jESixvtLEk#R<6~An<*-bW^-Q54PAHMs0{?9Yd`@HkcXFfAKmSlG`lZLe`9i;!(
zRS?;@!*QKcZ=~U$u0rW52ydm~Hq{~M%9GK3Ck=nnD%4HTyWe-yP_>(&@E4PNX}Hhi
zfvwX&nCPMZW2%N1rM&n%4Nu5z8vdnLrOzE|_B+m}G@{aQyqkEIhUaN`k%pIPct@8{
zbGe)NFAcBLtS5%AINH0LXj01gh7}UureS(F>j~iIZsJ24GW_XCOGD3#j_sEm%kDX5
zyl_Zq@TI|@2AS$MJ0+BcKpK=Z1i8fDyNRdWgwjo@RPKzF?A^tosVVe(ZP&ZHS{i<y
zl|rvr=xK<g!AOHiwe2nndJ&~%KMlFP*5<&AN4jFX$l%3)#be5M7ZlCtMXVQbUS#rO
zcz3b1yMPy&y~yfCHZQVpt|r|D<)zSQUut$%axh-ZnY3`Yi}ajc<YHycUzS-O=6Sss
zKf{%ed49$MjAZcBEfn&iuop#GIXyo40vA!#i(;%4XDq=;#+0SB7iGL~dr{4cvR-Q&
zfy#_T$}uVLMFlS^dJ)+gM`9%wKmL)w%128t;+Z%YonGr-{9AX#BzQ4VIEyrLx>zSd
z*{gez=tV77YB1LHV&0CJ3XQE)j~BJQNMSw6i)1FWGeEBf&Qvezcu|)Xvb@+RCZ%!A
zCthrCZ0#N(Sg*%Of9iK`N^R&xBQH)!I4PmA7fq-mBtSw_FPeGL&x`(EH20!~7oU33
zo}T}D@w&V93R!EfH6~km@%>b5f15TOCDN8jJ8Ir)9*TDGq9ZH4z3AjcXD_;W(cOzK
zEOxbx$&vzP>A?<r+NpFqi$bse&#VvgzP7;tF9v$))eCD89^}PfFUC>7dojd|#inZ%
zm6gdk)Qe$EhI?Ul7bBUEV5BGovKj5g7*@to7q@WIpZaMB03s7;aMHe=Ud(1P(Tho5
zO!i`m7nhS`X_1^4A3K$krZJN7bT4Mud?pjJoWo=Z<6Jv+o)`0NzJSR>#zl;axd?K&
z)V5jX#d78=Y-Obvt8Bj7wqNVTIxp6HvB8TiUVP@oMlUuIFXrm8DrPfZCS4lwtUUx>
z=F6OptzKO8;x{k0(NOVXhZmoFamb7Byx8f*7hZhp#mV&eU0&?=V!sz(dGRHeyT^;Y
zG$Y8*yLdXfOD^l!=e7PEK~dUNq^3LeYcIZG<#clg?Qr#JHEUCm16~}Y@xSMP&qHZ1
zk;62=#yNhlujPmrN0}dEJkI#NoqB>QV{=aramtGyz4*zC(=1ZCKYQ^DRla&c+y2g9
zsfj#}bDVUB`B}ytCu2xI&-w+%I)|<QQ(U5E^x`G0QC|G+#T73eb1EfWCE{`1^5U8o
ze|T}-iyPF}@8WNIk<o~6*+bB=fPX9Tv`etm*V@?swikE2_>;5WWxVIbUreYe$lyNn
z2aFVb=*1)Ebj}n-|7QM#@gK&287b*0lV^<2y?9~kU3!RDG()}6X(96BjTdh@DZu!S
zG0ltjw*3bta}HXMM7_)<MxPgc+eT*6IzCqMLiHl(MaT=yi!d#BLmhO`*u)-!&M8>k
zL(s8YdwYl@J%qtoGD!b>&TG=A04wRX&lm~$%UivlQ9`U_?UxltYYuIVQZe>Y4?*K6
zvt+Hh)g{!BkVQgP3E3oMXR)$`91?O$C@-Ocgj^DGODH0tsDyudh&&SVk#pvGsR9jz
z+Cvl|`<|kpghEUz_Y{TMfb7YjQBTpUrzj?&xP(%Y^>6nQ5~lSO>w5|^D9N0n#7j%~
zx~HH}hDlio<!psgD{|hrUZO-VajvJRB;kHf@u8=vBB82;cnJ;(!+HtYTcc(#;gsOw
zXq#RlL9%w1qm4e?lC|AOHI9-E@tP76C5)9YPC_jS9tmwFw4-*AkW7~|#o0_kZ3!vN
z>q|(LP=|Rv37;?_8zG^tgwji`?LF7mcM;O=D?iM(q75W^JqeBM)Fzyzv4n-a1f^1F
zD&b?6=A6_*LQ4s)n73hU%}AEpdWnyvd@7;6guW8`N$6mwc9+mmLMI8GZKW%dF4Q=y
ztXg%mbt<}tgq|GjC7}<K-gat<g2`0Y$7p{VIT8j-7+|Lk<l0i|5D7yijI{M(5{63{
zA%U8LvVTOnG~%NqjAk-M!bi8%I8=x65++DkE@6d)i4rDBm@i?01llNdGUId!Q<zMp
z5kjN!RtzOknBOU8hJ=}%G)ux933DaP<|w5e=_QEI<0x5@LYuNKlt5dsE|EY-W{|Q-
z!s7qWfW)N|mT@Za-)X;739BURk+4_7Y6)v3?2z!egtZdZN!UU|t8&tMx}5pWIt!ee
zBy5ndQL?t&A%()q#m*u>#B7$VV>q(Sc77&dtAuS5?k;fd`8jzz>nYPLPTReb{Z0wH
z*&FdMnCxP_+Dnk~rG$@Bx`c{zocko~m+%$M3kgRg9F_2mgl{DrlyHa!HdT1O^X>}g
zwYkn0y##T(qVFUemT-nQdZlANh(tK)7)|Ph&hI50m!Ncrq53;YBp2!}Xp7VzB%G2^
z--iZ1{3zik38sXogwqm!mheo%a|yrDe54tX?7C0RC7hLTk7`AK+>>x#!ZithNJ!`{
zE=af};j)B_5`Lpu^V&n-C0_CoIj`3y{x0E)gsU`FHzzjkE%LNUjjm4IvpVrw*mYgP
z4GFg;+@anP?wd3Ydy8Al<rw$$-lF$g&zj!iPij~Re^HlhNc<_u(|beWx4p&r-lFcN
zM5@e#-eOX9*8>R;X^d5OQFtWbvCaQx@`M&ETlrVQQ=8M4sxPS18+u+zcrD>2O@~4*
z3jaygM=+5$65dJ(Qw`t7zmxD@f-E5*!QWeakl>Xd(Yo44q|xZ@BS`$DkMKztL!6b)
zeFW*t`-mD76BG$S2_Xq8t;rJ;_V*EIIFNzH4#}7loy&?a8jSRNs?3j$bO|v&IDByW
ztgmDld?@BaaUU}J5bHyn51D+{&z8cB@FBYoIef_MLlz%S<Z{xs*o0Yq$i`9P^q?&#
z8^15?%*!MfV{RYvFd=XI>c<e~^C3Sg1#G>b4~3Z1ejQ{$@BA0>p{NfJ`Uv7AmhhpZ
z50!oYd%Ro9htfWj@mWt->1l6SAN+j;@eX`+T{$1hvt<Rwii}^sjjzOnz8+Wcp(^uu
z-~YZXQ|f`KF|@T&g3tQmDtvJH;P#=K57m7rSj_#24>f$K$-IsaiS!a?F?TH=JWOU5
za}OxyZhST-i5jY}ppeX@He(87DkJSWLf)F5jj7A7h?AdsTxiqf)*IIieQ3mWo99Dg
zADZ|u#)q*!H1(mG4_$reMkV^t!iSDNbn>C453PKt*jE(a<Y?_f8|tPdj!%8~e3b*6
z9BqAQ=fk|?j^2wM2iIE9ced|ywD+Nd4@BNPauBxcEA)B^oqgy+V_=)(<pRs>#S2$=
zAA0yO$Olq-`slb`$3Sw`SM=*EdiksY+}npfOo;dOp`XqBGa10xk6(DE7nKM5FvN$U
zKI`ah`jNhOgJYO&Kir2A%tzYFC?7^M@4+wSlK*i&O!Q%r594XjcCt3Jn!pC*4mc+J
zFopSCAEw$KX8SPB=F^$XV4Ug0EL*2HpXb=TqsEQXSInm#Z|_>bxX@?)1&^YOIJ%f|
zi4UjxT7Se_?!yY|pa7Z%u+oQBKB#^K{aEe88X78oB>J(|hjldm{mARbdLK6UaL|WC
zK5X=16E%eodwkgJ!xkUPRrGw}!)HEh^;!S3+u_4D>LVT)w6Wxu_hadtK?<M#85`B>
ze(u9gYRrNlPR6@9J9*g6GlE{#sFE#VuMgkS0B+&j=L1FeGk(SRH6w}N_)t6EP2^Tz
zalnT+eFc&4d^k)q-H$AO9P#0(4-u}$F&~cm@T(7JXx8u$J?X;_H2s;=49d_?G@lkn
zCrF-R<wslp$%oT6|JjFMY+ibK%vm4K`EcEb8!Vpp;Wr;H`K&W2FR*fvu~^&K%S^5^
z{?2%Xk;)}M*O>poNXE3%-t^&?4{1JleYnl~KR*0R-R;Al9KB1+iw_T(|K-CyAMVrm
zZyQSv3CSmsM?O4egOB3hK0L8)J{mmr;h7I_ZJXyl{AcqQOkOg6G=Am7YieX$`B>IF
z+y1=|A81+QatS3Ld_IIZ)o<H`e2{$z*k)8Kg+`qZK{g<V|5tO(uBUD%k+H%3Sh$}s
zeTXur1t;By7{9gXWnd(dkx8r{aZEDVI{a|=vyPw3>PI#|7WEUk{MIgBo%&h3b!BIs
zgE1%LsD6TMa{IBPpLGshKEL%rQ`(O*e&qL~fFA|@_%DOIupdSIDCEcSexktsB*LO>
zS)8#L<HtJyCHyGK(N(3~rEEez>8*gWepK^YpAO~xxY$pW_oIRz75%8>hr<u2AHKUu
zmHnvVM^!(rUQ2$|PsshmliNxDtI6@4g-DkEB7v@vjme3N^<%jO@s!-6I@P?tsKKSw
z>2KX~spW^qkIsH{@mu?5C;3s=55YXykJ{7-e*93_bMI2^R2Ipm4wFy(=+<9Qw4NXJ
z{b=b&D?b|e(a?`3el+!4TV6NvV|ahj*pC6nYk%AUTP+;d%=Xiq$+$0L$bSnzX7(3k
z)7p<VestiZwtlqp<5NGD9j{F`Vr*?H?vNf!X6^l;j1=wYM<*_8y&g+8WZ9J}=EojC
z_EPiu(Zi3O6nLkp-`~df^rM#_z5VFp$8tYb_|eyoerzz+kN&ph7^<_)2QnGNIM|ON
zehl?vn4LP3$#BLIjQd|FjIvWlGf^fdjAb&;*2nuX!R8bFn8bXttxREZ{#n8_Ce!_x
z!DJ@m0>)W>%w{r&kuGp9lX-s3x0S{p5=dW2<J?vjGg;!tQd?Q(N3p&xGFxdYoBUYC
ze6_8tVX~HS9eoPe`UXEXGGCm_^03*~w=nt4kFB<{jmdV#9gLqd=4}}F1(RKjyBWV^
z%w0Z)eC}gT<e4A){rHN8uAfe>u{!iV<F_>FY?}jq9JKi%KfYsrnDL0MANAvy&8hV7
z{W#&rNgCuVUh(4;lQWDz+Lk{tInDSp<1dWAGSZi>vrNu0p7-MdlZ$>_W<s_7jmafO
zdJs&??|yuY62I!lH9!9F<2oDMVZ6aesW<(&W%Jv9>!>>tDg4ReT|fS^Q}6k$y)h~2
z0V@w}{gEG!ZT`0(PniG1_%GvAJC(kyKKJ8=A1`esKueq-ul#t;%6nUX!{jaFJH|5H
zWgq-V<EWRBDkITy#N5v)+d8$s!hC-Dn4;xlLVjp|oRe{0M%WLX=Dv*fG9rE$v;fLT
zkYV}}^`o?mGBVQ1hTis(5ho)?#*qpxie`|JQMUAtkJK~CfQ(!+a?8jpBa4h|GP29~
zr=-X#<J<n?xBk{+xOM%-!~P<NjGaYAPR{P7=m1e^fXE{wuZ+Snipa<(BfpFSG77Ry
zlL4ad05M~LSeU_GNVd)eI50pEt{))i8E#P-#bgwht>?MF4G<+{l$245qwfcZOam>O
zPQ8){s}2-pWt5|<80L<bQJ$SwWu&@QU{X;=B_@>_tJtaZ=u-@|E`jno=(;*vf0_Iu
zr}h79myD66oo*S`WK@??L$=OLX&|GfjMXcgb!7+{i85-*)~|T_+3u0ikdI<XVkMce
zHe(87s*E~JK4Ba<P*6tYR!lwFIva(4P1lz(XOVR@3}HhVjbt>I(L_c&E}HbFGW?UA
z&1CC57m7CLC@C$Nw3N|`No&S7jBOdohU_Us<~uvc=qO{2jI}a4$=1i#NExGKbe7RY
z#_WNjtBf8pdNS|E*j>hkfr65H$>=R(kc`1H`pEctpy(%~zl^>zZe>Zm(zXua02xH6
z0SD6HxtU722uT?tW2lVbGDgTa%ie~`Sdk@_JQFU+l0cSZQ|>|BXc=Q<ES0fL##q_<
z&M=)?OvX4F<7GS;C??35Nd3~nNg*)MdRQ=t%_hs3!elDrG{$?EQpjK?+s~0PSH>(m
z?`$S@yIGqO&tpDc2HBHaQWnTq$Q~9klCoIF5}P+%?^;gv=Ul60tYn>T-LIm`uZYRK
zBaSdn6Ibp*)^5P-WUQC*4NVzpNf{eu#6L*dD`S(4%`!fdu~mk4G-Zp7MXTLou6QWW
zHip||Y?rZ1#%>uqWH<(iL%GBkGCrqDE^|}Z$%HaeuEgc;FR2Gty7$PaKS&TE`yPYD
z#6e;o7q_4BE5@%GDI=9~K*m8Cr)0crkbFqScQSsE@$(=-yXqa5aZJW>8Ep@y9FcKU
zM)CpY@#jv$<%2|vE6(p_oS@OT+I>>So<ZW+2`6zf$h_8l?YZ+u89&K5P2Ok}{p&m<
z;}=>+*1CU{@pOfooDeVckCXUW*8dqKNW389qKvyT{^FMWO~xH=+e?g>W&F<M3Jp0X
zS7ltIMJ%Uv0_GpA5V=mZVt$kHV=C#lZOcDd4-FDU2a9_$?$go~K!E@r$ap9tMBO3d
zk&MSO0x}dTl#Upd@l3{Z8L5NC6Iv@|{7V;-!%5MnET$H4b{Z^RP)o{?WcXzKC*zfj
z*PMMoF6U=-&!o6>^kD0r#v2)LS%1g)p78@?8l#ty%FV&|OcoCopAQy(88Qt3=ArMB
zRokXrKIe(SBFItthiRDBH(ICzR<$EC3|bolcsp3!94t&3QCdY0CGVE&QffMLiZ;mY
z%)mAo1DM(>DVBL0BW27K0BoL_NtOVzGRbD^bWu6DL~@%mV10Yc6+muV$rC_co97F_
z(ZIS9R4{--0n`hiJ|`6ppm+c!0w@wdQC5mEzRGF+2R5#LOvwOB1yDPHlmJQxP$mFR
z07(Iq4WJxb)?_RnuuevEFt5N^k+D($m6?#YDom;}#xss9>vVEP%A3H%6@Z&bHOA_8
zYK;KW2U}a;&?P4ZP>Zuu!;;%#Lqx+b;*!~tqMjilm3g3|bqRF>Xg5TB!bqfU0D?KC
zQgm-VXM+HiH*q%#fOtbjDxz@!Lphb&p;-XU0|*D82hbvbmI3St;PU`l1<*Qx!2t{j
zpiKa6131$pW_?p<y8u27fJol}+6T~q`G+Pk9Ruh@eH1{C06GV-pqaB9W0wHBlF!XC
zq)=G$DCYlo&j9+cO)tjY0c>KMoor0lFM$354B#RLQM2@LQMm&-8sy4+y&-OB0K-TL
zSocMT2QVUl#Q`h{SdXPf1~7%jUI3#47#+ZhdX6yxj1OP}^RWTz+19uKD(!F%>g=S{
ziL6f!pkyJ(qyXj*p>rP`^taR5-uP(&Os7f)@MMVC{YUbQ0A^Av-AvjxM6|kX9c?o!
zfY|{Y9U|rgtfxzJ8Rs$1XC(3R5V0_TMFA*7#F+-3jTc>XA985`%K}&(z#8f)sz3m%
zX!s2k1uDB%(gIT1^;uz8)}exs!Y4z;T59K^V%zD|a3&9hb<}s6JR^sS4FT(G!^VJh
zuW1wGW=4u`Ve%Q{)&RCK+0Iypw@BI<z!w3$2;gM^y8_r9z?A^52JmG7djj}6fNyBz
z1h6lF{Q-PMgR_9E?e=)uQEl|YsubuZ(vqQq#BT#Q5WwjGex@ET=%S>90UQe8J8G`%
zsiy+?F@VF&k1!r(JjO@{#{>AD`3YM&$>ay>-0Z1j(C?CG-%yeIyXU6>2r2ptSB9?f
z_W;fg6~8i`VLThaIVR^BFECzY{EhJv<7LLO!%`{xh^(H6L&dcK{s`c10DlE=J%Ael
z{7I{XA2(@uXL8bw0=l$Y0o)G2KUAFE>CQS#+@Ymom>^<3zbNFo7r^}h{te(Mt^WZ$
z4A6=2pw@U4u)bqlSm%07{u{b#4HJI{Kv4=$sH}#uM96?X=*jpQHG5V!-H2#6OgyJS
zK1_@n=l(BX-6nk%z-t=kR4(r_@rK1T#<z^`0(j4a3_dW~Gfa4yNVe`{;%Af@12i%N
zP?-k<(3p^i5R=2h1O<vlcyiJFiUwfV++_0ClmuFo(s}ucQIJ8gR<P5<toM=P6l7A+
zHh<=J`7=X7W(6735u1)I3bHDw6h`GRvMI=};JXkGhmb=-P6hW=+*grHL2d=h6|7K@
zM?qc%Qxr^9kWWE=1zi+$RZu`dLB(pEMhXfkD6F80f~pFNDAqlk@(L=Dw_&2F0^cxE
zjIp?a5==@ml3q$dX`7c}QdU7ZCUd*iA%lvFwV6^SMk4d_CJ<Jp%NZ_+#4B(psI6Gr
ze>oY6xD{(Bs{}?DW0~Qinw?smNe#xD3KE&rvQs@wk`yE}NgQtNmzBaim9Y*ZiJvH_
z%Um$lW312EfRSt(DrmwU8WT~_R6#QZt*DRq^ylUZS}@<#CAsTxL2r_@<S1>8*qTWj
z+p?{KcFaFzY;Wrw6m(?XiLtY-PpD?SUf4~+NCjhui|z_~DCntJ53u?vpyNn-Dd?@B
z4|9t4r5>!{CPINof7S;u4rCm}IGAw=<50$7jKdj6FjCi(lTivrD;PtiD;Td}f?|C-
z&>Ja)<Ct%xzx^uKn+c>$QqXx&TnTsVWKN=2R!E%2wVk#hhL)P?3T7ynsbH3Zg$foa
z)*XP^G&08|&tpD^TrpWTTu{<{PFlc7Hl!?8utdSm;o|7pl%)!i?xgH)<5_$sWf^lK
zq^wl1N<mQ-#Z;_Tutvds1rHRgRj`ich=Rik)+^Yc;0p!26l~<$QdPH7(F!&z*rMPw
znh|v!r-xgw?$BEt6h_r^Y*VmZLF%5k9ST0DYH-HwaSjS(_MK_H*t1)~mo#xWX^(=v
z3ch0Ac(!Aog8j_Tb#l@X*c5Viw=$;AaD1cSTLoqJ#T-y@P{AQK!wFZ}B+G!#*S<Ae
z98qvo!EXvKQIje-uHdwSpA~$s;Dmx7Im<}}KPWiGyn0K=_w5|?+R2*HjxXhSdL8R0
z1@+Z<dMAgj<rf9NDmbg)92*ZU>^Q@OihI-Bd0xQ<1v#=gE-Lt&8^O|<obktBrtzuZ
zmV(;~t|+*w;131Y>FQcIp4N`N#(wG)b<le+H<;hFJuB>i+}>g3PX%`sgdNu4xjWYR
z7p*g_zbxg58DX{jkfM%<3LYsi6+{(0rphRgXjM`0M8Q7_UMqN`;9mt#75qn?ax&(b
zg69feD0s;Ok35hc@<u+XTncpgq`V@BIUR9%9B&o8Q;?>>tKdDYjaOnmP{wjrm2!*_
z-dYa&szW?}U~HtjB~tKnC3OX|f`9@=fvP~G3sDfH5zaOhx&9%=dJ&GYR39N4kFef=
z`sg9T9t;|^fq43wl&&B~MGh4?Rb)_+QAHNjnrN|vDl(~niWyhX!^lJfhWt~_KUOBQ
ziW6y;&#Wr4aTYSj&ZIY2fRb{l$fqK|irgylsK~40>oG9{4p~!}&eSF>prRmWDWY2M
z8d0wmQc;+d_O%_<`?T7S86_20Q9{Ku71LFeR8dMra}_OAlvYtjMJ*K`6=hYFQ&Ck#
zyo&NFDyXQaqLPZ=U)7yBLVO<b6y2IwS;g8BVpqDWii$%iN%fLF1^!LmJ3=^AI8}7n
zlvqPWf(n<4uWop%srX@pxG_Tb@(Z_$i?=-kQ<AEy*qm3q7$G7fL`@ZmDw_09E-+HG
z_}fF4Nh*?6e4?VRirOktRHUk?qv99URc)kbHd4G#OzJgKj2$VKjuc;y6hcKk6^&Fh
zR&i#en71{tzKRCaBT?6#k)qmrPeT=NMhbdAp^1v7Dw<KXzfPjJ8aBE_%qTItwx{?g
zkvK}URMASsKx#%6tyQ#9(N#q^6>U|tQ_(?1M-`uv%_z}c#mZ5l-zYJK!Xr-^x9CKz
z^w`sxE?>p&QR37n>*3DLQKIYWMDO38?kaky=%b>qik>PKz4pY67QIxw9VM2pPAoQB
z^j1-0v}iS2^i$Da#Q+r>MvK9t#iEdB=4g>u^R#T8`XebShNu{+Vw8$oqs80NVyKE?
zDq_Z1y!aR~T*cD?t`Ss+O^HNCs~DqVqKZi>#;O>nVuFg<8xyOK5lzO3-ebgg6?1NT
zrj8Nx`p23v;+rvIvWh9x`^iZc$A~9m1mRTbwK3wv-<}yNX43Fe@r{aE<VVFC8VTe<
z#atDORV-04PsMx{3sfvrA&(J@ZloCN6Elw$m6AOr#|qC_v4{q9|KxUK#Znc^R4iAq
zLdE2<;`zG7%PF4KV+DnkwDMC6yz)G{;95n)a$719iq1|+TBl;YiqBQ-Bm)&2ReYvm
ztBOr3_Kp>ssaeK~Dyd1Q$BHe~ykkX%aiYjLkuXkdQ?Xse4jLHaM3-^meXG=Lk3G~x
zGz`8_u}j65D)vw-jT5_7d@)WKquiPQ_ADPK_Nv%Nb8x))O2w&h;`%tTpC-$;#24d)
zIZimo3##_FDh|-tQ*l<sK^k2&=E+#acPb96IIiM*6-QJYrFCGuI7S7nPW)kQV#D#G
z*Lbmhyr{h~@q~(#D*hcW{;cgeI9`weh0Ei`k1B58NI9+IXBENm;wKs#E|Ft`IFjO_
z%lt*fuPT!A3daON`i-@T=Tw|maaF}N6&I-ER9sSVnFjL&kuRV4jXqT$d1y>taVEWa
z=;{BT=XVuXXm&jG44NS3Ob|xc^@ob<)QnWFiW}6n6U4O%;wCK-DW2~qh^G_8!$+P2
zw>@`M+@<AWqWF_4HbKxB&M{GJtDW>0izySu0~HTxB?%!ughwhK(`pdJ*FpTP;)#ly
zK_mw84_&efp9;TfJvMzxHDN;h8I$LXFBo5{_|Hy#rQ$X79gSnjn8I5X?^t<n+k8-w
z#@uTw5|bh=V`UWqS|o!gLiM31zbXtBrV5n}g0_7~g=X`x3Y~d`vExK*f=5-Pb2MiV
zG3+W6V+O{IjIoSyjFhF|x;R1vk(re&ww^VJY|OJW=CJjyYc2a+LFBfTJVE4Tp3heD
zGbs>6K_-Q4edI(@G>Bpxbp}zKNku!g1e21Cr5H;ymI<OPlX8sZ87nYSO{Tx{RAOG)
zR;n<m8bmx3hpoF~+zHHGjBZ=67DRQM*I-g@ZCtG&JV6W(Vnh&0LCl*d8V1oQh-5aX
z9mK^Ai7AXkQkm3Y{DiSCqX?oNllqJe7|EVKp{VAKgS0P=r*jZZf@sQan+4IDNpr>)
zjAYp|h*lq!wbtlrW9w~$XlL_JnY3r@5JX2?@5H3$f1WN}T-PAF1<{>3mENC855}HB
z^s@EdO!@@Tmq|Zc-!f59t^ph!7{nkZgYDEIK@4R+%vNXt8L}>MWDs+Lm>a|>uFU8l
z#so2z`J^BwGa1J?o^b->M8;r?*eOhAFivHh#yFkP{h9S{6@{4`ofX7vCQEl`Byk>d
zB5SBhK`h|tLdNAm`rnW>-4-)0VO+{c;<6y_e3nRLg{`a%Vioh%j7?fveX%x(bsSwE
z#5N`y7%6FE5Sy59wv{bGd}i~lOr*83+k@D_{PQ68+NnE(_=5Q^TiG4NmqF{*$32Wh
zj!qQ&?9}~C5}L$*!$c1v62!Mb>t4r!APxp`D2VSUDTpUQ91h}05GRB9A&AB4@kfK!
zm&4=Ck1;+Q;`pA1eO?EBRXY*H_yHC<#b#%NI2Xi^!T<g5;3pPOGycr@3*)bhXBc0M
zjyuox7ijzk@r^S!*IdVML0sb0dyJQZ_=5@6<aZ`l7_SC#&DImXiMt-ejUaBaa)<Gj
zoqC(e?5p^b$z5CjD~J*))>m!{_k(y~>kor?#Qd?X<oG7;pCJAXLJGnc#M2<21@SV7
zt|J`JZJQUgDvoe28|b74Y24a!`yVI03gWeG^CpP5LA(p%y{)7%`4F^zP*4`HtzS-x
z^|M1ch@WRV=zv#B4UKUIf>3N5HHaYdkgaG;!i?n52*M1aQpg&~(IC=;$Q45F5Mn~e
z5JI*PvWJi{gxC-eLgo<SLRgqPnf8*+#N_HkLE*(jK?;#9A!H3fpD6NA63$5$<_Mwj
zB#|?O>61kNNtW@3N#ejHktc+_Ap|<QD}<0Qg!+3^V{&-Pg{)h1`9mlWLctIUu|Y8w
z$+B<=MOZ1yNXo@YqId`;*q~$xrI>s?@{;_N4xtPyWf@7CnkTkAU0M#$oa`RLitOj_
zNn&tz&u=mA${|z<fk?BU=SALRM+nXkmWHq_goF@WA@mPnK*)MW!W}|ACe=cy&ZI^N
z$xLd7kQhR(5Ii9yaUlEIjwA|1C|qyqAgmoi3fmJ;4WUj5pK!D;)tMjnlP;(u%3Cj+
z)eoUT2n}uf_8~N)Rt=$vt+WoIDf4C_G-uKxgqC(HIc&xJ|2($|p{<?TE`(2QPQ`U#
z-Z6wuA#}F&?o7Hcb`7DMt&@F^5PF8tD}>%5sFOtB5c=4uAB+2l{rFnwq6UUAC`9M8
zU=*7Trh(BbVR#5b_`-*>IE?YDWwh^QJf)7Hk=7!W$Y|ClhA=6FF(Hf%VO+?%D@b9y
z-BuG=IWgQp;^YvfkbllKmGx=NKej3vP~8Y;gfNr!Ss~00VNM8hIXaJ#wg9C-HJQ)R
z1&kD3$Yc@YV#Xyj%x+tCrbp+?Ls%Wcnh;imurg#lOkc&gWU%$N6}@D&HiUH{><wXG
z2<t=G5VCIjf5EshgwI0Q8nWIi*u=P*T6nf|3uA@Z&TTXfCp*_Iac-ySIoU~kM+l#j
z!zIq0jJYQZdK;gj<a1XDU8gvAhwvqn3X{d25C}=6)csVwNzMZyd`0aOqBB)vzFp+}
zCWLP(EOO@jA?E%h=gC#hgCP(e3gO%&Ck4tvOU)6QEFoM9;V56)u@H`j@IANl`H#Io
zL!yc6BqNa@n4Dt#F@&FN{WO!GL->WsueN?BgtN@g*~+SMt_#dB+6rx0aXEzFX$EQd
zM8lO3uF?e8kU_&WuGQZmJPF|sT9o*{!F8_KjSy~za4Uq{w4l+Sxft&-{>ez<-4On=
z`MnVCGk?IC-QFSX5l0`>`k+}GSE5zyu3WBvLijg?ry)EG;dKaaLU<m+)V7WS>GAFI
zJ6<rS=*tlPv-zu#^?^v@+YsJ`5DoqB9ftQId<Y?pmf|CE^gzMLl~jAO_1b_p1Stex
z2!6Jt2N_xjGV=hV!l*I^8AFVex5H#X_TiBAWJhO=gkUf+8I8iRl$0LAh{;0SNFmIq
zAyz{<4dpe&X~?9Zu!bTUpdqt{LK?PD7Fjgw1SksmHDuMWuSje*R<hfA4h=b(=dzXD
z8uBpDYb*IQc!R0rq=1Hk8Wv8r&J?CorAXQG#G2`OzDOymp}2+;8or+_ifQ;`vUoXJ
zl+>&iD?`<rVzo~xj+SQp^>PZ`123!L>*1-x*2h)QtbG)n8g&^eYN({4vW6-e;x&wz
zA}UQ0RW*FIC8hHeQFn@%aV^!MVg3}cb&5DKMYuHFnj&gzn39<4Cg&PjWbstjkf@=S
zh8h~)P7$Qkw26o9lNc}WNv6CMk~vC8!;q5{4XNync<fYBSA)<nTf-a;^)%Gi&|kv<
z4GlCj)X+vlTMdmgG}h2WLsJbUr&@=2Qh4@LY%>kbHS3XOE4CrhLbJ|SCDM|0GH%U;
zl%uC(+iCbzLl+HQHIPAj4IMeP1LLQUlBl3g%sbn;p5099rlGrrUK)C9=)nb15k1)h
zxurn4`e^8@p&#e^STu>0RF!KxP{SaOPS-G4!w?PQG>q3URKqY0qcn`>>l#kop<yI@
zrtBX*e8e#t#<ERuequ{SP@tp<biEoTQ+rZ$s-V<KOnOcg6rHMJn(gOf7HSY8Gc?S!
zt2)bWQt~!e!#wIK4Yz3kXjq`(OAUKyOlnx9VS|Q^8Ww9<qG6SW)f$#+Sf=4@E%%G5
zVmWnOb@vLY&s4FeR6@N<?p0I8N*Y&F#kr}XX}<(>s%T%vwMN5Q4eK;K>7OuiNWyvz
ztturHPjZhco4QHEW(}Wf*r{QQhR-x?)8IUnyp=9C(LJg{!a0Zgmvc$ejwf%|u!9<~
zbZYBj3CUFxh<u@8mxgemgi_PQ*OlG7HM}pMFjjWfFXwvs&bgQ7CS9+FGaB|&l{6gI
za706GGS={ohHo{TsFE<dylZ8G`+$b;s1Yi<4{A81;rOytDwOo)=aPt!epJIT4L@l(
zO{p{`HJsG&12t*EgcBNa6;7aP?97%x(Z{EfPtnxVa5Z-Vg@SRZq_mkPKFgXgt5U+x
zG!mwXE;&+vp;{eJCURE8IWneYT*G+{7c~5);S$w+cHHUnF&AmIkEBqT)w|AR>Y!<2
z%QW#j&GEPK9ZM%%(V)k>CscIP2lwG=;tvhisqX^Li_^r`0tq)X9IWo{fz+E+^YRI|
z`zGAc@TZ21VZ?@USHoW#-p~}*a8JX14No;Z)9^sULmJo)_rDq*(WRA0_?tRT!(+l}
zVqw2Jsijg6R&oDB&a1e$Io*W!oNn6swRxU|YXuUXYj{nKT*LiB!%Gd?H1VHCKNC`3
zX{cE-HESqkY&jQ2H$6@+I9<G>F4LfD2x|DCAx%SoCe(D{)gaMgbuwAjtQXF!O&2~5
zei|NG6K<4CZ8lvHQfk)|$y25aMFS0hsg>O!Do%r`Axfiy=1w_R)wfQa$Truy=^~=R
z&_K$VQVA4@q*H6S+~s$s#DwwfbU{2r7_HAGU0@y;My4?GhfyF5gpoOnoWy@j&Jsqx
za;|J)WDlcwp46;iJf=EK7dgT>_|BPghNv_{)OEP2gK~wDJB*^G67qzRH;hv!lk3kA
zU1o@UVbE)pYmO(Uo=7ejMxiiDkrGDXFec0p#mH?KMJQt!OJ|5(GsI6b#ITa7GzCh8
zt(jFsa+VCE;Q1s9H1NuVQ8tVUVQj4AE*Hk-!l^W<$}{=(RC2-JlO7&VrU_Lsj9w)Y
zin-iX!l)X?EgiRY(8&RgFkXf6It(YBA`r#~@)L$D40jkU!)O(@Mp`w-x?xmjLP`xL
zHN&7Sa1+C*#e}#gj3k>UGpWs(5=N@6*9qej=Janh$|BfRJ;wTBG+@$@u?1rz#>QbZ
zVbYYb86(xCc^J|itCCwUBoVd_qfHp2!WbP!+c4VERfnx_K9uxn7~R6wuRr4LIeQ1j
zj$w3S(wVUfBiVFi^860Ehe1n954y~4i4=M=q3684!{`%6U-nN$3=g9p^Ztwj7zZ*A
zVjRpkgmEY%<r>ChUZL0#Oh(!|-CGzF#@H}chp{G%aWsBvx+aA&IgIhlCooQATw2pb
zsZ+w38pixE7KCwUhV_X#Eo^-rO%G#67&DpAW}L-HN$=QfP8f4pnP=-{u+Zi!!dPVU
z#Y~nkE)8QDljU}5LbK$R%vUjfEM+aXIW>FPH`d*}bsSw!!^~yfiQN>&W*ReH<1d7<
zC5+GLa>DpAjICj8qxKKun=rQ1dNot*;qKVMoT8sI*~$0?<E}7vGx?H{Y>Lmc{-Uxs
zjD2>W?q~8<7(aBiUeNuP=4`Koqbwd^PSJy59J2X$VH~#k5t^7Y1sNO*(*cO7$HSn1
zdy$jx!#KenPTHmXz=Vu{V)6^4(mUZalb>n)aK(NNqhg-~s>vCy&)G1}F*(mzrMH!I
zF^u2BxJ1*L`ZSC`!}vXnD`ET*#`Q3o&lLS<imTMWGsT9P;#wF7nB3qdy%k3J`PSw$
zH_6FNYrmS?tdK~%+}sW0FY1dho`i8PjQe3c4C7H4?`Mh(i{dlQ5)Z;CF-z2*?W!?L
zJf=A^OH7<4h|`-?|4?Vm63@7lf5Z50mUv1<%o0T2&Jxe5eZqJd#+0nd|AkR<wjdHa
zTM%h5Tf7P5EiJP;+UR&k#f4ExN6bOThcMD;jn$D$x4z<f!;r%W(CiMw7slF|DLrQk
zf7se{iNdQ%DGKp0vgpV^M+9l6%oZ7RWYiG~WBF|B&xsnXSM6QlFmxsnMp6tWCS#N_
zoiRqomz*(H$GO=ePDf<6NZ6bFg2ha_<qeFP8R=letX#Tdj>yI&yN(=8s7ejyh}=3R
zzx9;RQBp@99eH)+qf{M*brjLDq`9*IRk($-ppI^H1Vsz!)=eQIghkn)7~@B=xQ^h?
zBno6eN7dK7om5IkX&q%aS9!+Hx~Hs;a?B}L@s5_O3LLGd<72e4jw(8;(&Dc}=%}Z|
zp~I=eqa#VTUad)BOw{3GLW-Mu#OBp?)L>qdG1Kyxk8k7DvZKj5YU`-0TdOYp)=SZ`
zCyygl$4_;wyQ6i8Omlp~m|WOFoXkFi;_K^Zpo3n^Y^I~3jz&6szr@nZlN6-Zv5j>!
zp|<Mb8b3!g)vdQKDUd;P<}GxzWb&X%Oe-B_n>i_bx*)c#j&?d`>X@bDQyuMfOw}<>
zM+Y4pb@bBFTSq4yoptokQD~UEi;n(XVx@wvZaN6NGWKPqyUoe0r_KB5=&NI>j$u0b
zk>@ALlxqN|_Wy`oVh8FN#Lfrn7{Y`+{O?VnVea8<Hd4nZ9oy%}j<9o)&1jv@;j(Hq
z#?CdC$vDRGj1w3qGESnw#)Ps^Srmv+<vVnVovves?U`yw*En0p92)J^H9F?%m`AOr
zW3!I=Iu__yp<|_vg*q0|@S}>&5ew&tl>I4v8i~a^2#5aSTuKffI+y8Ku3N{@J1#n(
zU2sm=m$FL7Y8@MOyqP1y|2Wr>pW{gzbgb2}PRDv3B+_g1e{kyea|9h=O=nd{m%3*y
zcW=@0nT}mLrq@s2%KkrRKlC2{HmZg-Jd$_lcy!!Jgx-^nohx?g_(BJfrcLS)rX5My
zO+DMiMTgYy)v=F;nU2#s_Up8H9ggTYs^e=N-{?3*qvEjhTPp5$@&OW`IFF^*rA@gH
zQYj*tNXduJ@7RX;VI8zxUh{+2QT4}kSbsy-aa_muI*QH}bfWsD&aM+W2v2e)iBz8}
zPSK#9D}JQ<%oUU8il24-qT?bBwuW`6>3-F5mev^^XQ;X6iW!%j2j>bpMEg9A|NGV%
z;>0iL7~Y@`?ZEaMIoENSrkIXvI{siMR~WC7&-!&}$5e8AZmzhl<A!c+PfF2kSCVN1
z(wjOS%(b>xCA_2KPaWF~Y&URM$6q?45u`_OPse>)Od==~!2=x+b!3kqM+A>_Jf@kb
z!>{9S9Zz(;rA1rEKRW)^@t=-YI-cs7xX<-W$8*ZnJT}-Y_604EyW?K6KKX;E-3QOo
z51z_(Jg;@UY!>^5GB%4P%N)&PC-sZ1^TG3;8cm0nm;F!6xM|5sV@~8jU+Z>|q{H|t
zhKQ^qpu?nU>rixS^Qf>6U5Cni$FS5Ot^YcRXpCe)JYuhh1{2?0F=|x|Iln`1e(J~?
zv0lQAVa&itfA-JFB$hFbF%u&q$jl@QBW0u`(g?FfK*z2vIOYfocg~2ljBg#~&J{uK
z2=YXbH-dr@6pCO?x-(w{73Yck5oDhyT(jH-A`tTg1xhL$L6Hc0&J)EVsNTw5G=jw6
zk~<7dAzpe^O7RFvL@;@tC>g<_d7@MV8|Mj%QYuBuMo=z-r4cNPpnL=sB4`>xGb$^B
zN)hYpah(V%M^Gh#YUDhEsu9FT;E2E(v2GLHpAvUzo*+D&n4A!SD*|_fcAiP0jFkFh
zo(RtqL~2A(GlJv@YE#`Js1<=Hf}{vi%3A*yqmX~Ts5W0Toi7H?7bK=cu&=Fq<9v}C
zLCLbIv*(MW^92#I{3L?9bnRTXdJ)uTa(TY>g{lGbhKv+#6hUK~H;Gs$Rgu^{f))|<
zji6ryEhA_ZL5B!BvRUg0+D6bWf;M)p+9gvzwRw9c+uOVLXSe)xilB1@T_fnmdY6ZB
zBzB>}U)kCzuDhM9PXs-f_hjs4>%Ey!yT$ajzEAd#U_b=ZBbX7vzz7CKFfM}e5e#Ot
zkyO>WaYL97WgNyx8HYzO!sZ#5TJ19`g3+vuvGuW$|NYXT)CmzxwDlMB#Uz_gW-=v$
zskSmLV(pMXS!S|w{$1)~CbJl4GtOb0%Q%m5egq4cP{xH3EMlH(uJx;S33Kv8e0c;b
zA~+Vo@d#E%u!@p6bu|t32)0JBErPWXtcze%1e+sR&#4<|=teLh&TY&WbdQDnP#AV0
zX$z+k|15&$$NzV3Y>@?GdjvZo_#%Q`Z16ebPR8HLxoRx1#tens5qxEP_>##U#=VUD
z822-_;4ItnBz(isZzDLs<RIfw#zPT&$Aml|j^GIMlf$jyL80>k@qGj*BDhZrW&|fW
z^>hS3NAN=gr#Si}<4=@&;(ymNa)J0If?p%J9>EPxJ;QjBT6=*w%lsVU`3NpBp|a=~
z=x-5Rir})XTxIe*;}yo0cW{l#AB>cXl$#OUir_Y_R4lqZR#Sh@*ZwCfbbb>lcbWgi
zc#o0tKBUDz0xu1@2p&i9cLXmuiR_<5@DKAW`K_l#|I*wEI-lC9&mwrvJnwYtk<-fv
z{)^xhEAJzilweJ(*Acw2?cXwa$9R(K_922aJC*v&7lA*5fUVFTH8S&KUMI~vB?6UK
zus=C(kds0YXtsSg0-bq;(Xe%sR?8Xx8#ytCwL-Qskino$^AKww&OmVkB@ART00a39
z<TsGnKo+*lX&@_;?2ME*8<W!g6LQ$f-BBsI4CFRwmv~SQl1*L%ixaKOcYCdMwE$Zd
zG*HL@9oY2Irm%sctQWEUd~?bgJjFPAZKbQEfl>yl8K`ccw1F}P;te<qlr>O}ZK^Pq
zH&DSqMFT7HC0s9M^>QWFCp}56%!F3aCiE%5d}sLt-C<SC$x#<$0%OK#ikk_gzFi<{
zFi$m5$3RWyiHx;u8;^k`=E;n;4WuxMS!gvi74(ULx~w#2JbVX&Nj=8;jAYrsKtr21
zGEkDUH({lztv55!+~zF|v}B&hmaPr6G0@gPI|GvqOfm4Of%XRa8R&1IgMp3)x*6zh
zpp!xG_B*>6n3|r_VWH@3ldkNoMY`2fJq+|TKm)I@fnElBlb`gIK8%z)luMk$NH(Ml
zFfh=-C<CJn3^Fj-z%T>D4LowVhtSAzx`!IryijaTwC3ZiL^tUp4A70}k&L9%cpz~M
z8;>_I!N6Dp<JbdbAp=UCXn^kKO=3K-P>@>^38xyEW?&81f4YGgH0lg2F)-7>ECcfl
z%%@Te%rS6rp_ogS=}z)FueJN@+o?|$3T2_lwMZ;5u+YFF1I|UF$s+M@IHlhro-DUh
zml{}RV8<e{%D{31KaNUSVPGXWWP>9sUF2=y5NpVtT_jc;co23HS!-aOf%OJ97@$)W
zKQpk=z$R)316x>mvemURE$P+y<bM~5&{kJ?k+^m~nQ*Itf)x`;-(lc$s+EaFCUzS5
z!hqL+WMCIx>F)-v7}#y#O9Oih?4^ns_{qRN1N#kpXW%fKeP!TV>Pq4UzA;c>v2{@i
zj0X)IqTw+;ZpdQsG;eBCJL!mlqXxb=aKgYb19KOP<D9W<-h^F?#c4J>Y2XL;f6Bne
zjFj|nv1rrM`jk9vSf{0*F>uzv&(xK@6Mix9s{whjxcWMk0+DkD&KvlREjw07C^RGP
z0(B7kq`YK9el8ifY#{p*QE`c=yF_$dBCZ;^X5g`bzYY9h;5ysiXS`wHHhE)y)4(kz
z<YfF3>yrO8@RzOJWwMm@d(8i>l<>e#eaPeyjpTo<I#76G;2EuH2LAbIY+F7x@S>R2
z?-X9J_};)vJM}*Uub984)s^2edc))`<2%M<9?u81Nn_l_Rq`3|8>nT%V?s6%paE~9
zxCzC8N{h3J%qD_tA2DDU2pQ0*7y74$iS$d=IjK%%&)~jR{Y?W=TIWq<G?7ldS;G@!
zg2G8o9Z|zt1}Vgvh%=GNv^-Fh%m|79vP5Jtk<~;#6ZuVKGm+gyE)%&;<RJcuHTZLy
zpu_Cuq`KPGaot-Y@^Cb-X?@KmJ#C4ITWWomE?}ad2{I^Rq7bJRHc@k_I8?_~VyPHf
z$E74D7qwlH+Y%;9ny6%=vWZeAN}JYaN_i7yOms+0rjNpMCJ4)#Xt7lETWWoor&21g
z8Cg~|F=MIK^;Jw%HQ_Sh=A?KNPTR)8WJ7lAk`tJB`jAwONe#y8jPWI`Uan~((FA=x
z+b1UxZeA*qOeC8aU}B(&+9pz{VkSD8NabAZ80#=n_D@XIHSzOOAxzXWQQt%ZPHJJI
zp>5NcNh3z;nkGz|GB#r*Kh2pmE}PJjNh@1#&7=)uTN8Kq+CSxJdlP9(MdoF^pwUkN
z6P;N<UdXzxE+)E~=w_lji~SjUn7B~N>fD|jCDO}8Z=3fq(U*BYTcO6k*W7BxK_&*X
zIMu`u6GKgmvTcT$7-93_Ov-bWMw%F2>3`pfN1GVKNn;tu+4kd2Okh5daT4QX#wm<c
zG(9z&X7lOP`!=6xVixn+jB^<0GR|Y9yz`kXpaDr|CeoXqCYG3}7De?amYP^*;-QI0
zCYGC6Vd4i9r%bFgvC71kCia+EZDNgyZ6>yxSZiXPiA^Rpn^;dBy-aK{v620E<?CIN
zKOtBtf%GjVKBI{cOxbFpeb&@*%fuSHk4W5M;&T&UnAl~4zFSfYQ^j^t%QsJ@aZb^X
z1AaGqprpMf_L=z3#9<TrO?+kITN4L9UZ9C@>?_^RMJ&sfaL~jd7HOKFUM8L!*2m(_
zW#Wj5qb81<_};`Z3Lej9muF3vgykiy{@v&HoS@Z%E}WxZbxEL9(tkAZlZo>*Y)qV{
zan2L`EaNYXznW-Q%bK=S`7<WwB__XFCeCrvNByFS-%Q*zam&Od6PHc=!PWcS#1#`)
zO<dz>#^qKA6=O_UE;=!}ZsG<lQzw!~Ef<THi~h%xZ_^Z@)rPbDY2vPlznE`l`y<Q6
zpi)+~$@spB2UIBQuNfbk_?y<lC^ALy#Kb=)d?x%R{x$K`#A_38OguC3+(ckV!ha@S
z(2|%fq1X!Xl5(vOy|=m&SBTfG+^=Y*^(ReU<|5^-iFY&&O?c@-&L_V&QDvL!19@xZ
zz8`hwHJ#*vq9nFkAtY+66@o;WiZBr|VbJ<-LZ$WDM3^rm$QUv~&q)VXvL^EI6+$;b
zp<Ahh>ocv<LP@5HC{-hh3{j+0^RiBaQt4qXVaBM%W22x)x<n|<T_F%f<|s-=Q7Vco
zQDluGe-s6x$QDKRC~`-UCrbZXLQW33qS(6Pe|g^xvTE}E3UQt4&w4)gPtoUWQ!t7`
zQ521$SQLdhdyyz8b#JFS<Rr90%y^fYbEPOAMTscL8;PWl0X-DXT+>}Tii%NGilR&u
zWuqt;MfoTyMDb<$R7$0yE3LF@LO-qvD@Rc!3P%*qD5^$LZ>5N5LP<luPodCtrAUav
z6@@zrBBW;wTKd?Pg2>91qDB-oqu3e67f~ceQ7eibQS^+$6Gc)Kb)yiRE15Bsu{L8$
z6l-8LZyk<)!bs6QD@DC1>POK!iZ(1Zh@yEEEuv@`MI%<utQ3uH`zBE|W!{YOV<lTM
zZ^hW9s+-PVe!^Ex{@X_JDeJ`BF$t~|?U{67>}aQUilQ^~E{t7my&IG6Q5-65t^d8E
z=pDtnDAq^OCyKsN%#UJ06#b&;&z2*i7+~ie$fU?Bs|yB2F_@!6?9`!A42xnoN9k*G
z8=in8qZq}?=qP3}856}=YIEBEGm0rp#xqV}Bz<BOlWaaY3i@_I;#5|qF-~WkVcX1%
z;!I_012L-AY%XF>6myx7GLIH{t}yY1EG}kT6veZO)+ky+9|2J;v+X;r63e4l5yeVY
z*4X+gCaW2nv%|H_X?fWY#YX1a7&k@n8I#RXY+*8XmGCaJTARXF^32({bJC6|K4-Fz
z#a~y6T~X|g;$jrP(XfwV52v1uVs8}tqBs%7$td<m@l_PxbJEvQd=tgDQ5=ZkIXf{K
z4{~ZpUdE~1Lmd4sio+jsy^TK-#Zj9dV{)7^Ij1$pbI?x!j{eGcijnjmqxgyWX<PX@
zieGF_okcchIGTU8IA`nUnOtBTu_f+O6qloT5yi_Wevjfx6n|31?%=9z{|A$6G`m;-
zZ{@ijMdQ`tMie(W=@#Q{#ygB}@>|uu%lxk>?nQAwiU%B}myjvxVHAIJ^bzA@M$+lS
z_X+cVY~|l5o-%)CE6<rYDy04w#j7avC?Zk3X3@*|hVd;U`FzLZJ>!Qc(rld$&X#QM
zi^9)bjv_$oGxM;WszwoH9<mjUrYg6_w2yawqA)orCf!=uqO|_omU(>EXFYu?4WrM6
zbQ~OPwM<+(GNq$!j?C?HWJWqNr(=DV%p0;~&XSI->3ECG?~plLI<lvu7%~?}<{atB
znU1}2nfJwI&Xtbb>3E+p^M{O?^Q0qhI*Mn=Tp~l}eCf!aj%qQPtH)$6kdA`s*qM$m
z(orZKh0{?h9iDXSU5Fx#CDZAARV!MIu{a||OE9TbG^SKKN~fbtI?A%*N=G>+Rcy=h
zOe!!|WURzknQ`iBQI$zNBYAeD!^u3sR&I^A&a!b+omr`F>ow9*lX;@8tX(Yzmy1bC
zN3(P^XE8Y)wbPN3j#Q2|WURyZ31i)Kh;-CrPNmdOhe;l~#y4Q)_ABev1qzKg+Bh9e
zm^8KRm9jA{($Vt&G4&NtQXJpcJ=S-6W_o0?;0|GD*$rgbU09%TNN{(8yA#|YxVyW%
zLvRQV0RjXI2^Jg@0t5+!%>VUW`uBb3^ttEOtyiyJd5?BP?H!SKZ`4W=wQ@x57*RV#
z)G9J?5w&?lZ4ptcMbzpn(m0~lh^RFqYJDbaS$^u0)Q+fiEXB3bthZi7l`4cZu=Iu`
zjUsBZmI*1bHKFoNL~Ux>G$YwK(fqna%ZS?6(pyE;*5qx7|EsGVlkFpF2NJUn+3L<r
zb|ZEnb|o(9WsXSqh}wh6Z;3sL;<HyoJ<Y27M$~>0b$mpf5K;RxS4s_yr~}9c5(g0n
zTe(9>?oBj?MbzODd3LZmg39QK{QAk9hogue=s$mLvj@gd5i*u!Ttt=P@_!K%Bl5PA
zS!6bGazvd*GKDymD7kk&CJIhxat3iGaTYOZlG%rI$md4Xc_j0RqA!T3`6n4#Byn*>
zT|zOPf~664nJiTWVz4}-u863=OGpuQWkg*?o1bOvN7OYDb$3MF6H(Vj)O8Vgh>RKP
zdgA7Yx+S7+Am2!otW6QMJcHS4DLW$SHuCMnCd?Jfo|BASRK6#sG;nW3-4{`hMAV}Z
zbwBmP!~;Yrb&%vxM4e*!`9WeMKgO(+5%m<wapDPUW}c3yXQ-Tys6UdNC5q3CnUr(n
zhw101h<bs^i^NM2^%nJ%sV?@HBkGlidNrb6i>TKl>TS!<FA?=Oi{BvmHKKl)WMrCb
zj?PW-L-C7Y=CqXSPDH&+B|q_gM12rZ-$m4aBI-jb&m-zz5%m%I<B0l1_DS*$BcuN$
zc@|OsAd!C~N%0xax?WKHoA@%Kz9JcX<<l<ln#niBw?ydyDgK_^q2NPA{g?bBF+%*0
zScU!-1vbtcDP<>VOWjHCBB~08Q4|}u0!@KOf!8V(Qs5)kEyb@OKpwP|IV>K<WGXoY
zNYW6~5;t4^KU0uiK?VgGsplhRB4$>QML|{t*_h0uAUlafl~X|ui~pEW$z}1}3Q{(6
zvB|68b4yRz;-VFVEhUB|zk*njI7@##GrFLHFBP0ra7sbEf<g*LC>W_Afi|TSluj{L
zkfflnf+9>B#AF3UNs1Al%`iu&xPm7Ua}$uOgo2XHI>jC+qo6F4ofVW*P+mb31>Y#B
zpx`U&)rnsdD=Vl-Qi&+uE>AY9D5%P$)bez)QH}ia$HW>6YAUG3WF5=CHi>gVk-7@%
zk=IwyP(dT|21M5sqmQ*eH>Q$(iqTX-GxD~?=EPRS77ALDm<^m_w6=H~39NroN~_yZ
zY)|Z<prd8eiKNyPql<#B3c4xiu3$LD9tyry&__XECVMLAWtHkW#prEu>DYb>`ZGD0
zShjD{0Fr^kK|~2-z!Y<#4N)+Z$}mfxMg2P_D`ZeckxW-GL&0bTW0)MPV6tUDj$}M>
z0&ya7l7c;aV%-!brLL(Y(}**MMb9KTK%Avuwt_hd<|<gJV3mS-)TPuS`Bzc$1(vdq
zM0T^q3YL&BB`%Xrn_{GFzssqtAa0&wtX8l_!Bz#^sMOl0tW~g%e7%BABvRJ~l8wZZ
zQ;f})zJ=uW6k|KdF5(X2PGU++zgMt3C8=N^iTK=0l5bqneoJ{b#W+ZQNWozRKPWh&
z;JB50l;jvu7RB{GpZ2;FRQA<LIIZA}f*T5cRq&%#>SqOKEq+eHd5iy~;DUmSOxEfh
z{q>0GOA3NhKkc!Xsb5iWmE;=nI`J2x#GgDe={E&86}(gMkAhnYZYy}n+&jc4#JdW9
zC%H#_M7&RYpx_}%=Zxm^e@rf<wyaPE&lLPY<uBr&3Z9eXV~{1L8ZVfv%j7HazlpDj
zZ-{S+;<GEw-Yan1%=>{43jS5_k-3TuHXHsUmmBGb>|->x(^8B<;vhPSE}}}DJvX{H
z%W5`wZ1CFPqn?JS6GKElF+dF3kaBky#iR^qDw5R1l&rMm>1_CnB)tt8NaQfh%^EY?
zki~{<c4W6Bs}LK;+c3d~>^9`Ep_No&LrxoV*^p#IVH<L@xU?v2LmrFgwc&H}e8gx=
zUozE*u_3<=v6d2VL!1p?Fj>Hcg3{93v2uw+xxTbv5Bp7cA=)Gel3bu(#D-)Wno=oh
zLopl5+faeY;x?2bk+KF!2^&gU$|Dvp&14y3Sz<Y2os7y?HhgVE4I66OP|=1;)T<IJ
z+fao>JkKBPa8CO)!>duOZbMcowQQ(uLwy?>*igrYy3#-C%{f`mDl5~hh*h>B#YV*9
zG;3@_6U*`&l3LS@W|q>Nq=gMFNuoM`>ajL9jHJ?**v^LbHgvF|qYb@m=uNQ`v6~H@
zZRkQSldUU>gx7VN(cOj~Hhe4NKFwG$&DcN9=*irLqa9+<hkT$7gKX$)Lq8h=gB<;B
z7(ji<f97d>ne7^!qS!FhhCitcv*Flab7a4>VK{SBZVyBmK|ey|8pW*9HjE(|OB_d(
zT=#Tiq79R5_|=BrY?y4r6dP9Bu*!z1w3$PkX2WzFW{}Ua%FZNt%^sd@!xpw^t_}03
z&nGUjVFAfPVyo`vE0M)EEMamfaT)Q^-00;bD~Ks=SxvsjhP^hdv0*Kf>ulI)!zLTn
zGbs)?$by<~&YaB>h7G%H_?}r?ZP;$vY$GW=-PmEnP8+JzzRfDLi;62q*&=q^aFu7@
zJ{$JiaLR_$EOo$!A8a^c!$Hg2A(F$yE_8L&h7(L4v*9?&2<r2u8$IPVOaf!_j1529
za78Mj%~|3_8_tnPFy~2rB3`iJJWGjwiOSD5TqgP7z0EZye<5BcKACRZAdyn88OBW;
zZrSk8hJPsDw&8)5dxzw%4ZmB;Jsa*@Ji`p*p$(60cx=NH8(v%bQ<4`pJhR~snT?iS
zdWP}b;(w9kpJ5KlOY&DX{B7mRRCz=Gme`PH@5wbgJa&Ar;a?j*%C>KV%Wj?s5v#17
zNrh;$qX)}6?B)nMDQea|s%i)9a8n#N!;nV?iyyBYJ}PPL&`DAeCChI|z~VtWLKcrA
zSv|u@Z7FH&xY0X0<!DQ1$7gn=w<G1e6F(X3$Y@6<J2Km`eTI?6DkW1otHn>wFml+D
z(~fp_w6`Od9l7m@x1$gZ^4JkalGn2ToFpGHniwX=5c3mb?MP+&bf@}-9R(;BBz{Sh
z*isg0f*rL|6g!gaC~QX&JE~bW$t30NC`wYyj^cJ0c9dYUEU}~=Wk^cdQJUoT45LHe
zPdjJI=2p&*lpC-Lc6?>W*EFk4lt?O)R3fGfTov-Fa#oU5CyHealA3nN0U^oScGR(>
zt{wI4Xl6%qJL+4O-`LTByrCV9>}X8h#L7*15&g%<#HN;#5@!o0TiMal(q$89P2R>*
z+L9dYn$W?Hj&}TH>7DH8Z^r;8JKNF4j;`e0h&_qji9PK2mPDHHj+3?*lfCWeL(<pE
z?ME_tc+x;S2HCOBj`em7wquALlkJ#d$51<l*)hhBv33l%<2%}qvSWlD)6y#=nM`@#
zX6+_(f0Ju8#Z)tmadwQiV-l01Pq1Sm`H%%pN#>jR>HHnv+BsFc*|FG;C3Z}=V}>1b
z?U-lBOxn-3V~!oOEI)x7=Ej~@L5Z1$+|19n^o4dTAa6v^i!A+HCYLg~nz)R(+>RA?
z$ZLU>cC4Z@W~Q;kifRp&wRY^LvcZmxb{w$dpdFj+*lfr5k|ndwj;(g=uwy6fx5+Xj
zsoK^I^1@8x5sS-x>@MmBti5HA9eb&y90&WzrO1Agn*)*#ksP<<gdK<N_`!}NvN{wT
zwJakujbr4QW|=*C(vDMhoU?LIlbj(Inq~Y*a@NXqlAM=K;9YTfJ$S*6i&QSz@v9xb
z+3_=zmx)*GxN65Wa;fM#N!3}#FP3t{j+8U>rls7o<Cev5ODB`xwUpmU<h?BMcHfQ%
zOg<z&vTPpP@x<b7XBmIk@u$o{2flOQxgCGm;dH>|Ft_U$cKk!jm&8}ZzlpDjZ-`>~
zmgJokttjuQe6ZtRl8=_<e<Ts2;((16*@;rh;ead|A*us#AjX0G%yK*6allKiIgrY3
z&H=f64rHOIJK%R9;6RYc3=V`y#3ro+QRJzJsflT<T<P9)<excED!r1Pd`K<Re@605
zmStuVf6s)hB-tFuPLhL|&w-o{<RZ`QKpv8PLqF~0c^&wiinwi@S&1eOTgua^(XkH1
zIq;1GO&$2cfdb5`=|DjegZQNb@g#+a$;1Rf2a?DOJMg4$bP)%Ja^5Z=N{vMwC`N<g
z#I3W8v$Kp64wRH8QxTgoB&8ilxt%NPKshSq9jM^ISLA=bEB>_u6&<L?WF?}MtwK_n
zxV2egRZD*`%cxFX!&02HjanA3O;X2!x+L`+s4v4e+i1XKV+R_NG$Q7h{b^5Y;xL!0
zRN9QXkiHHycc6s>Egfj(KnDjpGOIPQEwPOQ2e>zieLE`ciLyhA(#e7D4)k!KGeuFl
zIM9{6o2B%Z`+tk~BI)UX-0q5TZwLA~(1cT38Yqff{T%4;zyJpZ(s+nfb`Z&62a3{i
zsHG1h33p8z;lN0l3{HIE#3)$~4*cf8O$Wv}FxG*s4s4_4I0u%KjCWvy0}~yX#N+}8
zCOa_2f!PksabT(g(;S$^tm#CFZKeY=EPlRgbX_avl$)Qq4$O04z5^)->j1tq_}_ie
zLI)N(u-JhmmWQR%Z}hN?%4o~m3I|p?u!`bp;(Fp5;#vpRkw`oXXB!*HH#)G%fz6h_
z#ep64_9Jn-Bpo>7z)>3Pbl@P#E(gAMU^n?btLz?<y$;-C+5MJ&z=4mmjns3DLsSkE
zf3R|8OplSDa^N({aR*M2oFt}<@)-wyWb(2DXGx?L7acg~z<DNrB3>Y7o5LwF$GBu!
z{!CI~j&a3-tK`>+HypT5@(Zy=O2K;3zsf`+zeW9x18*I;?Z6!e?oyH3Upnx+G}eLp
z4m_av+<}KOMalngpfbs0%l-+;QwN?|${belrvt}Zn-lmiOMgMKo4K#Z|90Rt$s*2;
zcMkmHKw2l#In9OnUXBkZR3|<-@UQf?<wtSiKZ{2kXe{rB(Wi~2>_i9A>BL;FRyg6N
zl8UGieNK2tyhN!n<)a^+Nk1{*M9_&4`KPyloS4?pY?oZAsi$!w<&8d3K64@$#q>^O
zAj#-N7ALZjXCh`MKAU4?BgsLOve`-6^OLol<j%Q9ZYT1P=XE05vizJRA2HorBW&q0
zB>9Q4#PV_kkPLBRs1pUrzjPwri9${!IML9FMj|?q<U|!Gsyb2Fi6Tyvb)p=NlbtY}
zC_!G-iDD$hi3_;tN#rG+C{0CpDU$qijWQ%(%{5xiHOiA$vTQ0i@s-8DcA_GA|GDP$
zu1ubCZ!gJePSmk1tCQ3q)^wtlrPp?1D$CZjlzJrfooHYwDPz~zi8fBOb)tzA-#F3K
z%56o`%!%eCEiAny$;P=xYm)TVtZU~)PbYdg(cXy;PIPpllM~&X=uWdYk;KlHhb~TZ
zC2!H^(+S?giEpjk6Ab(Jxkhg)eVyp%L?0`+jeG=P@c|@vMwzp2pc8{EeXtXM@ndDt
zhf!SU#Be9Rb7BOOlZhkc2ykMw6Jwa1;KW!GDK(BH<ra6mM9U8jM4#w1UqnxGBElf2
zNGHq8cVfB|^H^jCahBz0Cdp^>jM<hlhh(l35BbT<d`n;8MEzEu?z<LITufX-TuNN#
zM9N!9E1g*7#Bmo+xUkxZHBMZ1;))Y%X|~6Sy-u7+Oj_r}dXf!JY;<B1x#-(THWRlv
zvDJx^^`b@J=ETzuNkVp5mODvyIq^NoZcCTX#P>O|U)DHll%6?2a?ttdj#`vMR1On=
zaN>w%dDMw&yvGom;}lOgangxXPMo%E&XJrU{^-P6OHb*d^GyCkyg<B2yhQw24)=NH
zs=4aKHQCKv@Vd;M^Ez`sIPr@UH^_f=;=U6P$bWO<rW3cExXq;4-*w`S#g7hi{!V_6
zn6hvllK)M7M11VT6X`?pzlhI>;_VNTKb?4PDe?ia=r5RjNqpsmR3zeSCf^X>65kOe
z>mQQ$PRL6$N&ai;A4&d`ndyYW_S#%<y5J(WyWk*^A}NQg%B0%`xXiaDE3wBUS975`
zxz7dNg%LFKyATlKLXrzXD(PLw;6jKzikOO+nkatKxR91S9q}__A9~J6p2LNlB$<er
ziCJ98N|KG3ohaVqbwn-~ax+<gn1>i9<|Tek%;!QhNy-?-kmo0gpIDMO7rwBRY4ePN
z<X>7!ybFcM6No8(3cFCmg%&QfbRpS=qApZ-p#}|#5lgyIoWvkXT_s31&ofH7P@24q
z3l&`WioC1~<w(jCt9)j@^Y%5lkjf+#iIs>cVN@Zn>OwUVu}qojHJNNctmQ&&7wWjo
zj{w9#uDaCgxlrFKmGZK;p$m;%XiTvQu^I6j7n)j@a#o6m<}R$gV7}~a<w9#0y13BQ
zg*LQlZ&|h_Y3KTXuLU}|(2-&%VrR?p)I6h`3*B89=)xcudQk6U<$g=jli16J-Xtl_
z?@Qi~*q<mN4UmwmPq7D698MfU97-G}J>SoK=j}TtQ%=&6E{t+vv<qWgSmDA-7sfJo
zwhMDy80W%xCMOW5xiFDr5>Z@Dc3}$nRN{5c?djw*h%<?^h+;2&K9_u<rOb0-zQq@~
z@RS}FQCV#1OGuUym$|Uq(ueg;SS6c3lY5D4T-e~kMj0u~W*y0TVr;+IO(ffin~7V9
zTZ!9<@?MRED%TDdc2e0z{N9D#BzuU`;bRt<X8T;&PvrpdunPxC4iQt{F%z>Nm^|Xb
zQ4&#(k;sdnlP;Wc;iC)xxp3NrGcNq?!fO|Pq`_}4+;rirRqC7z=Uw=T$qU4*E?jis
zk_$guHkYLq?u}QdxaNO)&3KK;>%?D(H(dCYB;{0<sBSU&(uLb3cU-vZ!tdk{U3lce
zJ@WfRv4234Wxny)g(ogNxAdnj{6YRqHk0&<`Q0Ig@u!F+e=+w3u_~2U<gPxS-XDJB
z!aEoKap5g>sjJWi^R3<YF8pgLA4n=6P8MB8B;taiBA_Cu!luHmLX)p_s^)+?RJc^A
zDx6HVVT~Yn6Bji8bnh{ti+M}tRiRTC?o+Y2!KYk5#qslv5J_qkX-J|}q#}`zlE3L_
zdPvLUXDZT>EN6}B$&Zp}Qju9jJ{8d_vZ%<aBA1HXDheJ-9<wSon+n0~#GCVt94d0E
z5F%m<=3!RRgUNa22?q0x&zY25-vT47B1WD{s$z<Y{3>EqG*;0>MVyK+RFqRuUPS?^
zNJUW<#Z-K$B3?y;#HON<iZ+Ae<XSZ$cF3cIeAD8SR1{WGL`AYVd7N<JQG(YNmu-O|
z|HLlIY8Mh-PKYh8!cb94MQIf!RQy~ixqhW&`9Eq*jxQ;Z$YX<|lFFzktK#X5_~r|Y
z=8F=ABrGs0E-)&n_)0}h6}41+t)ilesw%3fI5XB+NktVE@?@6ED&)V#K3p{aaBKjp
zuC8LolY|;7HqVWp)Wj$<KT#gTA-T0x)KO7iMFSPH7Z`O_)RTYsxR<bQfpK_&Ay55~
z=jLSIqcl{pyij5z71tLS&lecdUgtvN8x>7e^i<JHMKcx6RdiC(Sw#yKEmgEt(N0Ax
z8MTE*Yw0D)njK$daGd;cZu~-{;zFb4LSxWEqrHj_Dmtp@IwQVpGM{&loN%Fel5|BE
z74pE2?kajnu8M9<zEt9*C!fxam#4tU^G6=diT_r`xjFHTC&l+x(MQF1Dn_X2tD>KZ
zK`I8TSot8Kzls4W2Fg5toFK!r?Vs2^6XRFTil4R67@}gRieV~-OIJKhkb&5|(0sbh
zhM2@2x01xT%9Qw#Dn?1isu-tYw9Fj&H^fkq*p!<ZFQLjaYosT~tN3xDF;T@N6*3tn
zh|ihvqC8w^{?D6S9~T-^RZLTHP{kn?(^bq6OBJhC%v3Q;#R3%zWfWA*ktx?Id7g^7
zD$*`8Qn!qg2fl2+pHL$)alVQh)8b<m8Bdxgg<B*qQn6IUGFfpdmPmW2$9o?p$ir(&
zEi#tNJe(fCLYhw^&+cik$mqVv3}(zCV~vWnDz>TEF1@N^y^4)0HmQ)|#=GJhBp6!m
zTx48WWNcQkMa5PXk|muV_rQDr&C^BZl-{9Yr;0r)_Nv$=%Vc!i_bPS^pB$gJN^;xL
zaq&eG<%uvu?kDtFV&A9YfXs>~38L?(P1(l@KQuA=Jxw^Q;s;p>DlV%yqT;BEvofqI
zj;T1V;-rdGD*l`le?r>0(8#pdd_a$5v2j|ay>z>Z@l}$gT{5F`&W<m#*r>7CZ030t
zKdHE&;-ZS~Rg&dVP<tyS%QBJRW%5gZUXn@jAfe-8<BE!_vR$aSrQ(`&%ar(Eq@QKB
zOD|=K{cf=_Z?Um`u~DK@@~<j>Qz3ulcXF{IZLBso{<excD(<PcFJn<D`L2rJ*^Lr_
zO!D6s8%yseKTz>dcDyCVBWB6OliYWU4Y_1Dc&g%=iV46(;16l0Y;Hg{;JJ#wWJ3nL
zzzg%~>yRI<0C;6Sj1dZ8gQ>hW|C<x<%?GpKEp4jhROE^9@1(f==4)TU59U8N;6L*#
z{AiHq{3xsAqWOcG+VU>NlW6&m^ph@oKGiOzM3fJBopdX2`Abs#2+Acl{xbeT<gb|o
z-GBzuzj#Zr@c~)m^GEX!!*#$91b`s$x^YZ8@%bb=1mw)0U!L>j`Z9kMl~h1#63I<N
zk`~CH+5Ahi&sZ=$F#}QjWCSu<JTs8R;=^i$v%}o+Vu3gyhg1ZFml(N#yujx`xg|z!
zAP>-NiBUgoT)!noK0vxs{--Dgc=J9%{u)j&3`|>M2oXI$bN5$ud;t^yiUGxef`I&K
zWD-yq_!5W*3IV6jBqdOnEa8ddTLb3*PZj}^fugiI^;ME69m<<1*On!Q0h9n*18snk
zKq;U)Py;9plmWg1z6Qzy1FFZC1ImkDA@;-)qXKZFQmpVhON>)J<4#tLtq4>CssL4K
zb0A;xpoYnnfsNH-`;Ulo9#e`GjI9O?sb-dvvNeHPKoj5_pf*rPS_(7->H_ru@mU}6
zRE>SJ#Aq}+LG1lYjc2{$gfs%gRbvUYXPh`+Tsc;fO{G_X7C=kZ-W+ImLHReFTz^c0
zMBaZ`oS<B-015bFTyk460Qv#_Y2O~`3UmWH03Cr&KxdixG07#D8hMr)75c<=VK65u
z#Y#xsfgV6Fpf@A=7LZ_ivO|iEjB62-Tz9DvEMfGKiC4nt3uF%`??{s*L5}PhHvkw2
zi~vRggMh)naA5Ht>fI@hA;3^zn6x4$S-MCnP3b7X?-;f;UxJaOG;I_x8W;nN1;zp6
zCFZ3@xe~^RrG~_?V5uQJ^SY-Q%p_nkum#u(OyT^LDLRj2s?0QCx{Pw6#2FIRxgt-O
z8Z&`ez-(aeQbRVYIl#S{@nSF+xUkfaGfSQaG#^+X%TU&r{HH5jEs|C+dFH0Ngk&jk
z8F4vLj8~AX1XhvQml-0iv7%Z_vJO~pDH}*O5;p;xN%G8(l_qQhw#%$`qnH~zfSs~y
z0e=F!fbW5Gz<FRdum?B-9F^t(`+$SMAz;7MzRZwEKOX=D5l9fsv&@j|uq+%|q|1yS
zh(i9X9(zp2OHVisoS=R2WyVRFqQDv8M=G_K$wyR)r^zoqEPhtz&oX1#GGpJn*wM?3
zDoFfEdJnh>+yX8Fmw>ClHQ;9nW|?tWVr%WJ$S|$|?{5{Cc;-72uLHl(=daSV>ah~`
z4JKdBC?W=O{RaHNQnzJ>01tqNz+K>X88!M8o82XoFD^5lE;H`Sw`L+{OC_*Jz+>R4
z?3T;TesB<<$Rdg)NX()<lU-%GQE9pHTsBxB%8gWRyZ~MTiW@dJUIBm0Q4IVe8z4}B
zqVp}#ccQb^a^sCm?B&Lc<;JGvhW%Bt#QYxk7x)OI^Cx@&(o{$e6i@ySc-t`f=5iwf
z9A9pBpw#<Pin!r$!|R664W}C}Hy}Uwazk~ad#PkI+B?Pb7|BE0#c6JM+}L6y2pL=|
z!LFDd{3{II4Zj-!H-c{2krG=fiSzV?U)98eG!UDRxV0zdUSXtmBaIuMyOGb0v~Hwx
zBdZ(P-1y9m^loHyBa<5$+_)1;sJ_Bzx56m8!jR6-?8Yf0p;zPNEK=_Zvjb&%%v@n)
zcO!=zx!uU)Mou>deN3nxO33AwTld7(D~ytjk}vub^1AVZL|8L6u+q4`!g#a7kYg<D
zMgcbpx)I|>emBajG`?_~Gc%U)$B|EI8v9?F<d~I4qm{<eNWzzH#JiE`MiO%ixp6gX
zT!I^YR+=+*8nLh&t5+ID+(>rg&`P6~J2C7?Z2l@)daqT9<l=4^Zgg;?qZ=jMDCtIP
zx+>*HX*U|WvHxmf88^zhQO%9&Zj_UTxKYuKN^Vqe<1075mi`YWTw7_(GZJ<i$*)%$
zIc??;7|z7X61f{y-6&cn`FzP_-zp>fD&y}G=J3^Uqox~m-Kgh=G_aN%wcV&At2mU9
zu*zsRKe18C<V>ZLE3Go>yD`p|*uV{$B-`zY_w@uBO=(>tHyXRq#Eoy<XyHanH=4T9
z%#DGojOK1gN3~mJ$n+?4yZH1~#@bcJp;gAVa>=dOB59O(kTBY~(bkQ2?oaDoR(g9G
zIBpA_-01AaP&bCT(S?1IeYMfsjjnEVlSwE|vnPJ*Mo%}cuQGbLQ7B*r_Vjk~UNTWv
zoAaU8{KV(0j6QDkb)%mf{UtV;53*UUHfpUl#M=O=f@H7+@L$3ZX+lfq=+%bDWrnwG
zwHg0#H^wrg@7$2sMle)yKGKa*jA}G-3{iC1OvcfEJg30~OP}b*B#TcbnL^BXQl0L`
z3^yKVc&K5f8?&S$4IMPhc4Lk#0Sy^6%yna)8+Hv24fEYt;Kp4yes^P`8;ji7<;M4J
zEOujw8ynr&<i=8Ib<NlnGOJ~)abvj~M=B=lS#4ZeZ9H3Th`5qjtB9+KYus2%vW~c(
zxPd74@^p{Q<Xa45o2+-)AJ!OKiCNbe!jsk*+hrlFF?P7IlcXla-EQn*Ft^;;>&8Ah
zxkB9U#${>m>cj(X9HerHc*c#xBtH<3xN(%^m>VZajuTH1CAO|>%od$u^0ZrC9Tbt|
zk4&C*;~dF(H!hO=L==MyB+{-+mh!V3l9Vjzx=rJq@)VM*Zd|i+uao>jyg~ex_#5%2
ztR0q>;<sgIi%Yyiee@dRo*Vbwcq^mXDegpp*avRBc0<TRHy*k1n7U*=cjF29Q{ppA
z|AXXD77??*n0#U7z9f0&#^07Ap5=NY{a`8YNd6(dCw_3_Uy_eRar>Ve5sNDtY?>LZ
zT;jy3q1_4d@4V7!aA{CA^N!!GA(e(KYmIxe;xr9{K@A=fFVRQTiJR9LehmR~vFzU|
ze~A3d8Y4=>gEfY2t&y5a;k8B@4T5QjV*Htg7q4T>2NDG{YRIIahK8CNGE40ma%;$=
zA*%)n@7T6*4h`AJvlHbXMdUZyQ->zx)R0RGt~I)j3X54@4WDZ$siBmHd>W!P#A?`C
zASSHAStB;ThE_2#LSmR~yVe-C)(~aWS|d)w7a9s^D5&AgTEifINsK2J(vU!ssG%5r
zCJ_s3C_+71Ls63ZYYp)rm(*LFHYs`u=87)K(i+NWsH&lwhD8Nq%1ZOs8Lomc<(Mo_
z6up9muPpvGNkw8MVr30gtlY?2!}CQ<bq$5q8THp0XX0WcDKD~WX=tFKp@wejjM^IN
zXc)83sH<V|I^)PXqn?HvVy{8CkVYCBYiOpSxrRw)lqMR!k#00%9>_Bj%P39BkIh#^
z$x$k%g><Hd)*4z;H_9rn))`_ZxotGGm8qq{zuu5*eu<bHWt7<^V>)W+Bt0+B_0!N<
zLl+G*WMkCORfGJ&Y%dMHB~A@-r^4Me^w97vc~9x3^+wk9M&b2_WC`!1p|6IK8b)d8
zr=h=wAsU8i7$CdrdSjr5K^p$9p1<_)@L&z&)*GXL3%C6(EM(JqW0;2F8otvoLc_e{
z;e#K{>*RVP^Rw7H>y6v*!tcdidP#af!(<I(#e;^4GA)OO$7_h%U>v<2JAnb`+h9o8
z({Gv1cT5UT(I90XoDWaeFjYhTTE;ZuwTWTjB{vx2VHOL{*RViN0a<Y~!X;*f=g28Q
zF3EW^;(x~qStui`VT*>XGFTdxXjmmPUqhn}#!?N-G%T0nV{Z8AmhcJ<JvSID#lzb0
zxDCe1DdEK%4B=}utktky!v+oOG$ckR-R-7)vp;-(d-#2c{2N7I8Q!E}Gs*4^#<dN`
zk?CRa`KnC*Z5p;~*stM$h8;48HSCqX-5B1b;d>2fHyXP&B)<&jcoqBK217{FMq`f*
z(?&yzx7}#$({SxX?BI>YK@EpA9My14!(k0cyTd=oWYZ8+F~4+Ok)MhP5ga%@d|bmX
zW%A4a5}%N<+ZL{PJ)Gxtc=kr)l!nusGiNmXq~QYjkHoVY&XLHBI#057qj6EgB@K6(
z{8__g4cE!9Xqb>-zU^?8Nne+ko7uzHGzf|)*Dtabq@$ih|4M`3h&PG1h_{Jid57em
z&%?iy+#}w%a^>;pk2E~iu*QqEUOdt8R1SA9oL)TB@P~$J9!&S(PYusCgguDy;4hZ_
zpy6N5eEa2vhL@JNS0sOHcx@?fG`zL=JCc87;#tZ+<CKpY{$n!Qg9u3)57K&|cwqCu
z?t#OD+y(RdJ(#vA#_2KFqsxPVsl%)Pj8;AJQXFoI8c}jjZ8SU<_j=&7xbDG{7N2@A
z;6adj$jXiK;O0gnl?SOU<zzwgf%WM;$WG-m4@RX5rzg+gK}HWUk!Q2)GkcK5;#ob|
zf5LoX=BjL;YRut5PAfMTNp27FkmMzPZsq19dAZS0izha%=g99ttOwmZ=<Y$B2VZzl
z!Go_nC_uAh4~lwFko-$xJh2c_0!Z*6(c(!Yg^5KxSj(s07xSRF2jx9*Es7~NFr3^l
z#_%A0x0n)Esgfk6h^0L!LsFJljwrR%Y!N=vG$!-2=&wDf=s_J1>UvPggUTLM^Psv1
z+9sol2UR^-*C?F)HhOsBaMn%6_r7oq4{CZ)%Y)h;+-Vpd8yi0PJbH#6c5O`f{CRZA
z*U|5m#?<qmz6VV__{M_<9yIizkq3=EXj#te+m;7n52p?Hq4EA+VR_Pzh)q3c!`PY;
zn-g1D(YExU6?tn*X*E`9>p?pv+k4P~q)scRxavsWiP)Lgg(z8FJt(}%5YoegZz)dk
zpr;4DJQ(7^P!D>0(8q&89&F_k0Q-6{fM)$H5B;U#^dL?KQmmFCJec-UL>f3u3{I)T
zJ@}5f^D=~U^be2lV1nggq)bbTk0u%8!B|Tf=fQZ3kLVwsXz@uTlZo#ynScK{RiaG}
zPY8r(cra7ef(N%enB~E24>ozQ*@HPA%%%M*;ye!)da%fY#eYT5XTS@nr#fYNTP$nM
zgQZk9q%lXNe&z5oCWSBeV1>n3%8dHf>}R=FQ(Qw_D^rDJy=A$<gN@|(nkI?y7OB*O
zD;`|+V4DZqJ=o>J_cV~v9OVe_@L;EOjw3ABi8^KsyFEDWL54c!oyHyy_R@Ht<$u2i
z2Ru0F!68dI;=y5y{~!fjrjw(Va*Ra86CRxC7IV_lPkC_KgEJodNaef-KY4JL{G4U;
zp@HK9`OlVe(Su9mZ3ddPT()#C&^<PM&4XVo<+=wQIcIKA`PI^YlRYz6SXS}Mufw-x
z^OQYYHh&N9dhojk_dNJRws8;cbFdzI@W_J)|C?#-|HmFYlTGID=qHxXrzC&&a31I%
zUb!aWxuyRjr+~#@c<|DLS04OrDepXZP5#DG-g=Po1mUF82@=(N**ssGBmRK~{}MlX
z@E=Kps4#x9xp_*pdvQ1_{OiV8NxHmHy_m~f`5eOS#TQ-_@Iv##<3+3&%i9<Bdg1fp
zGcVG65xqKA_rmYRs^LY1*ZQtVfILVPF+>tYOhruXMH(wNtrzJmK75nWacGeYUgYvZ
zNZQm%8NJBlg%G(ilVtHCD@is>&+bJIi|6!W&L%^QbJIf}qPWWI#pmStEG62DFnNrn
z<R{s($!MI(8Rx}6;V-471-<yvixytA^dg>pQqqf3B!#?4u=+5OB*}}yUKAlu_M)hj
zD??Mv;>Eo%EMCHkowLowQrc1~c~OSEEU_H1Jh1{%jKA{YYl~O(Vn}ZD7_IC@6)&n%
zujNH;l4`{2#2Q}IBoX73sZz&_MpWurdOa`dlQ$qXwDk5l&7-z4lTC=<c+r%knPt=5
zi}N+imDS3N)?Re?q6f3u5Ze+n7jd+I7v0W__ExD5(&rZM<V9!lE|${Oi*Dp{@QLSd
zz3A!12rou@(aW+K;6-opKE%Gne#HL7l*UT&flLnaVlc@N;!xr+;&7r^en)b0lQD{9
zv=?K%$kNPgom^unP9=`>Vm!$N;zZ&k;$))OPazrEHav}FI&p@TJCkIV7qcy8jx;c0
zRy5Cx`CcsW;^rn}p%;rt<b$d=n~cR?^R9Trv#{JYFY#ij7iWs+U*<JmH_5f!ixuQ6
ziK{GqHHp62Sm!lA$a^feqh74{Vgr*!e~sBlvdN3hUTpDVs~10eaoLM)Uc_uR_Aqz5
z7w2xp?2w7N+1N>C7x8=IZlXBfUB(dH>%~4V_ES6{n~WDfkRSBokY(9=vvI_Wqh9>z
z#aS<oQ9o_v9{1ve#ZP*1iahH%^T9N7o$+GeX0sx>&Ux{ZWqF=t%x2>P$wf=QWO=w^
zDZhHLdQZ$%FRoe2buWG)zhNm->2K2cUQ{|5bIXf+)Nd2-5bs)+zk9Km@!Y5Kz|tRj
z@rZmkbDzr1zie4Pr1RkqFaDIF_rc|pk4$2od-2ALw_@zY3ptz)#=IoHV(pSt%P0Nq
z#cP?62V*3jK^K$W$!6t+UH-JKeA0W_y~`*4=S9Se4_^GsQXi#PHyb&JCWw9Er%8f}
z&uoj$hliUDGr7gczQsu1VmPRa2UUXcVdmPHC?DKDXg(ag5fk*m<3qNKNj@KRAG{Q|
z-HmD8AXajP_<axzSbB{uhUg)RLQ?tA_(qKQOij;ee2Bhcj^k%Or1v4G54n8E;4^1t
zr<FyrkYw~BlMk7FkP%<C&mmdzSfZ>xh(R_Vvip#OeDlskQRI?GHRbjpj}HZWDConB
z+Oc_k$R`!~@VO6dw;19_#IO&8wivNK#Q6~8Lw?pZV~a8CcFf5JvAeezU-%$TEV{DA
z(AUO@<(EFh`%uV-1Rr|Wi_Kp*Hru))#dpUf`jF&9nXN_@9}4^Mev46xu7nivA(={1
zVliTIqCpg!5<Zl)c<QZYU8TjF4`u13oDUU9$`hsSQ|_x@k$+9BNUUV#R`wxwtGN~$
zO^%b0s{2qwE<b9@<wGqWn(An#qqYxqe7NVseIM%jP|t_)K1}eTz7Gw2=;K3Q9~%11
zPrW<%(9wrRGHO0F@!=aETKUjg{P@sJdZV4u(ud|gwD6(!g2YRElbUQbYA;NbhZc2S
zka%NZV$Ow$V$;Tlb~I?~L&eewVkr-v7Hls)xz&82bN=D6oqXu(LpL8v3@Osthb|=J
zO2qDM=Ikz`Gd#8@v4;;L%JnVD<gJEe^%6hK72bb%Y(F3R`>_6E%n+aXR^b5Or}s+-
zGAYU+9|l`o9%?_-hhaVp_u)Gq#){jjaU*<KwbdBu!zh`?Tg}J!jP_xS558^2!K!gr
zx0?Sp`GP3M<5)zpCi={`l;`;{-)C;ZlYE%$!xZUKSIkr&W{^ztVY=9#RWejIpHe48
za3-^65oh}_hh#2M-Ut<g1wJhFVZV%s&-}u}A|JN+u$6qV4@-Pl>ccW0b`&<hNwuE(
zatVfHC2<u|a##DXhJ3B1tdqsE&HUy}$!*34iW`ZWeArAfdWl_fxB0N$hkaCb5DU(U
zZ@_{(ncU^W_awWCQe=-0d&!5~G@n2!mwbonpbv+9IOD^QJ{<Pp2Om!PuyUJm#D^Z+
zjH9%-|CS*9m~<5VANS#e<?|%T@SEysOX)T-{;Ut@n7r%5c}u_S!%r5!KyuNCOC&!N
zQ`&Wf{HhPve7H`2llTkq2GI=Ohu<uIV4HD^{5J6paZW{tnEh_qT;66pkgZkLlx_~$
zBOe~i{-YzGjwe1m^}(sbr9){K_soY^GDYPS@ZnF{b9|<FW^U38>7}_ze-Y<oF*fIl
zeJK+lw@F_6@P_<98KYdWZ+-Yj_7ET5F&Ri}+K7`6K8!4u{E_0nL@6#lB`YGe=&<Q#
z6>>R9>^jcpH4WtIlGRXkK*wh~((7>R&~yZJ1O?L?9@_hKcy)-ST;f^R&0zd&)U8Ev
zDKUg}q|uR9N0g3KI^N5pa~8$Pm0HI?X$&FhbgX<AD>bI*V{fP#bY#?#OE-hh#N4bp
zvgydIBa7u+jKwlLb93m(Ng`oL5%DJ1m>X(t9eJpyM3R?fw||ists|_Xn2zE)Vszx!
z(Y07|5_4l^bha4<b;L3Gg^t~MjXSxF0y@%p49WUZN4$<glDpkV&>>++T~ete6LnlK
znk<TRZ($upq}AKaBFQ>t-78X*?R}9t$<R?kM@1c#bd;nhAyv>(N=Io{T1H1%c9i%L
zd+DWeG%HUmmDLdCD;;0ct#rGXRn}2OM@=2IID%Dmd}oWR&Y`KML%KpDsUcNlHAEMm
zwRP0dA*3EhQ#{mVM+uQm{xHgHR0ACibu{Aal?mKL4vw0!jdk-=a&tL6j{Zi+opk29
zZmy$+jvHdBqoo+=n5JX8j@CNb=;*IwfR47h`8H+`9pCC`r=z`&4pc-eeKxtH#XFI7
zmdHuE>gcAUyOk?nS`&N0o>Y1hds(?L+xZvJI{ND9N3qab^=j7SgtzKI%Vva*K{^s&
zMGqzpAxd&6$uQz@={*upe4J#B)G<oOXqhSqPobYNI>zc4M@7W((#FR{g~&C5;zZ&k
z9g{7a3fqmTEGq{`ww%fg9W!+-5QV)uOUHa2&9@t~b<EN6%c+F9I_Bw+lTn`KHz7-0
zmvQDXF=)GSQZ|1bi*;<%v0aBed1Q$Wc|z+t9ZQ*9MqEz3_@T%O9fB)$tRh)WTtgIn
zEs1<^ww_MJ&juYE$u|)<6Sokz5^tVW#B7I-ojT6yIHzNmOhs?ZVI4n^d{5l1V-JaB
z?bWf*;`>Ps5D)4&Wa&qbDMxht*F5gHjuSehnMaAoq&L#UR9l?5$rn>FYs^WCl6#8e
zwCqA8KN4rLf6nXJwB7hg#|0htbHxb1D4WS5=OrCK(`=wW=CY2{+l|cWVy^1ALN3Yi
zX<|gVCi_gfnCnt6$%PE2_?wQKvJLu?!H-)yZp+%y@lxi$j=MS@>3A$1uH&98`E|~R
zvMYAae_uD>8Y-SP?tzX9<ziRqaWB1bXBx)J_phGF=2P17hmJobp472VbvzS4+l}SB
zi(tO<xsJbNc9n>opC-2R^?c{6IHbdSh7w=t_*=(2*#va+j^eeBH#*+x__*B=Gx5{E
zS4^56=6509%M#WR@*~QRf5kv1%nrlt$A7x~<4TOp54#@`a!D$FRJ@!#;c~LWkHj5@
z%a2{Ni^%2lqt*_i(+)$WF5m1-(MRntG(S9kT*wzQGkuJp*AE|)y5Af)QT$8>h(Y3^
z9p<x%Q~AxKFr6Q%{kXcrNJC6Zyz(^huN}r`en>0w+(;12=tm|$lKd#_M`k~Id>xb3
zk8C7a{Ae-VsqHlK?liLdk<*V{ek|&rki(DSJB>O!jog0hs1}pQkGy{5xt36?T8t#m
zR)`TNpZk%|k7z%_boC`s^ca%-#8^M#NSg07z91<;EGS)?C02~%nG{mUj|B2WOBuM+
zDB?%5AM(x5YJL>;qnIC+{pR;Yi~C{t@s%GZb{Zx8=H2zIokm$dN|H;m6iI1f89(a0
zGoNE#&X4kbOgWuY!H>;5jWwr}gm>T<O~010qj4poZ=WLea#iu8DwV8f%<r96mu}x_
z$n|@{*jj$n_M?3iIz*w4A9ej`9z=^E>iJRMk3ayy02=twP=->P;721r8cW~$vDl9$
zethG{C_hH~(bSJ-e)RIAx8J<SZth20KibK-Fe$(6Xz52Qzqte?x3x^6deLo|m2<Yz
zUZ&#v;$4~SK<r5D<VR<c%{2;lA(=c)k@d1_Oma6rx=RoH@h$b9MDZ-Q*<viDj~{*g
z80yC`Kl;fm@?!{V(evh)x(4_m&qo-@Qr>iqK@w^tJlJpErOSkr;`yBBV<U#Mi2QN-
zceEE}1dEK6RiDl&#$)^#%eGA8Oddy^wADG@j|qNEWO8bXNSsWZLX?WijaLMv2d2}>
z3_oU)%<^MC$!uEAA)iZ>ew!!bUZb$wI4$sF`Cerq^&;uaUjQxfW2qlIWo`PgOmh9^
z7eqI55f!+ruJB`}AFHGZeysIF8oq`r^wm!D9Fgm@oXR?O!g}HcHddP1<-D?qm2M_(
zA#U|!8;Ml0-Ll+4MH=<JAG`fH<i}x#w}*JpkG+2E^F#i$L`q4(`>7xBLpn_Y5Jj5y
zgC9p2z%f}VTOHC;nKnmdkJ@Q|?sJ@364eP3iS4u>XZ&yk;0)kLKhFB`iyt@qILG;R
zg?OI$6Y&D^BJq+RKg-Na8+%!{2r9l~N=l7anY`x5brPw%OHSoiKYsJ$J(Zg>4g7fE
z$3uFM_-{)Vd-9GSciFVx{pNj+T=)FA&s>>l()LI6@KolNACGAx{-5}fb*%Ze>L1cY
ze!TMIZ$F;X@&&#9MJ^GFjre@YdZou+Q-4Q%<HuWB?BAR30Lv_0{W$uc|F6^sIRgCn
zC=*-ugpQv+1Cr)P=wAt#3sbfTTfp3o?2=sSkX&))3YhC!3qTE+-|0_z`&V>#0BMVu
zb$J5t2F#xH1#tgzvY%Wh%1dt<U$F@V5Ea1b0L}!EDuC1hv<{$60BOWY0AB_0bpYuC
z_$+|<fPASB=>y2XdOr^!BS{WorT{Vr@GzbE2!kvEWTlubfbVB05<vEVxsauk<-5>1
z1IU$<n^VaxGlct3o&fTa*IQ<`E?)rA0fYmHp=Cj0e&QDa^R1`Y0OFXOlhz@grP2bd
zLdIJ7mjTq|o8bx4T>+F0K<-FIPYR%D0L20*%(9{s2_V_xhtfKV2h6!4dWirGOaGQj
zsbm190+>|IA-SakD8p!_MUpIMS(Xo=Lcly>MU((422d%0I<%}ztVygAK>qy+Qc=|a
zss+pqK{}y&05t;UHX?k*Wu+D^h1VvL=}|X;dI8jD*+v00mQ#RP4J`vPZW6#ZGQL!r
z5}OAgyP0G)3z(}(x=whD09vvx8J(1sCDXEP0PO;p5x`8DO96BUU}ylt0_eyI(=&ix
z0dxwWGm~8c=uXm=ZSTfGk%5!35bVLMZ&`)Z*qg~d0rZujA7_5iv>%m$0i=9Cxqkoy
z7_DSUO9urom<B_LqKGbWiu2(Cj0s?D0N-)AM{vAGvZ7I3DPl94SyDv!xBw=zhsRSC
zWkLWG1D_6yNda6-V}4L8`jh~s1~83glR7%52h4p#g74|atN>;Qus(nd0n7<tZUFKh
zxhn&h7r^`g7Dx=TUZ$D9`<Cm}$HYa9WC>A}#UyodDoX=cMlQxu>2fxC1%sC`#BvpL
zR}<F+u$CnAG-aK19sO?%U{e750@yF50@xD3UdAb*ZVg~J`L+PI%UDYv`psX3?4r1n
zm@?D8XN?lT9*QlvQe?)8lLPGVW5k2RLjfEP$T#ZESuNKQ66xEcj4j2L4C3(sPS9Sm
zPLiAoKn_!J`(prSWdjK!eGumYI3K|40Nw=fQveqNc*0J&7{H|f?y;b}arAQlHv;C3
z=;Z*e1aOu5wE(Wm0_<p>^1rb5j5AFCpHA%neq)iF0o-A`ZUt~#_N$zVtf}g9OvnR^
z1Nfab;z4>wzEUXS{Qw?Ne8`#nh%@;yyGU|d%y&LzgwF!_gXGTuUIg%x{JCs~RULoH
zHk;1e7NkpGQU9CMGQqFP`jVCPmZBOoe|GgQfPW;s06xg%55f_|zX5#Ytdm!r|8c_<
zKeiwu0VqLpdlV1S&$3-~uj(kc&YAL%XlKye{9QyLa<kzMLJOK3NUETG1>Gca`GfG1
z`-0F(zLkB$6_d9{tmFoQ2-1V_P!Li}RM4FEl1xqGG?t&VL8J?sd$?pt*$hEs45C~R
z<%7r+MCKrjAW8(0C5Ws+d>KT15ZQvr9z<-=e7%q(h@5m49YiiR>hmC8jdkP>A`kVv
zLG!**{7Yk{3hxXhU(npIq-io~!$HIZ@%s()Rx^Ll+%TnM;~0+=`GTYX{S>r<EEL3Z
zKHa!T5D7sf29XprcfZ0!sahtg{60>)SE@*+&!RyTV{FBVqRY-Hb(LhUw4ziHrOC?>
z%MzofDP_3BR0!g$pm~lr4C3n`D$+^aASwk>Ifz<8)DEIb5Yl@x_o|ar4Wb$YmSaU)
zE#FnH5j4LdUNdM8w-7m|rQSO1!;|tvEkEkft%O}ahz8`+V{&8AD2T=!$|gZH3!2B@
zH%yA3ra{Q&BioB`xzlbLM5`c{gs?P()<LupCn2~(Xd6VkAl3%4E{OI)bO>Tb5Ho}5
z7(}Na#s@JWh|WQD31WB<-v!Y%h;FQ+Ke4-vU=TgYdk`gfskB!ReS+v4L~lkbx5v`b
zehf)kAxT+5DS-_LVqg%1Saxs_LxY(9z`UIp5`;Ju<6%T0GWv3$kD#S|qj+QxqsT|o
zU|bMmI2p!LOc_ThGN^`QVi1$WEzP8tBx`aIQ%I)Ds0}yoW<{JPvp1)ba#qS5m=(nA
zAQnrf1u@5pVNnos$;EzN5c7jrz~n+{FMC_YMZC!++o0f5sf7m1h|7s9h%1R=vx;HM
zGGAjU-d)D}AT|VXDTtqg*cim7APxudgIET!Mb>N(yMx#o#5NgLxzjtQY$p-ElVpcX
z{(8~5XDGXvlp9p3Xb<`RAPxkvH)!s(BJLA!GZdLQ2ZJ~iG|!IL6O^NK9Vg|Jg`h){
zveu3SaUzJ5K^(PK-!YQoL>ci@mVS=pbP#8_On$WVv+Qj-&dvw%6SFQ5F9uP7yRNJ_
z&wR(_Ag;(35yam?Tn*w{5O-w<2;zDWzsQ1;zx!jmWd7VB`PJ%nITUVEkyhUdLSCQV
z4&sjN2I<WBWi;;vaX*MZMG4{oEuRn{vQHib@i=I{h?C+nQDtTdc^bsC;HM-04~~(D
ze_6Gp+hx4qc)hd~*+^v<eI3LH>cZay@s?Yw@OLEtq$F8HdiY=2I)eC5wtYDiLS}J=
zXb+j=6%~XngihQKB}<Moc{L$-5o!nsp<W2}LvV+ng-{@bf+2W9@P?2ngv=rMLeN7<
z6*5QJA2K%<ITM8k$b%vCg-Iv`Iq9NkBe%hln>vIvOs1t-2J&<vd=@gNnHZ!Oy`wYb
z^>W4#Qc7hBnVWO=5ORc&HDvB}vWaC2nR}YlE02=T8A2Y>L&y~}KmL;z<qny%PBy^L
zL&z6G&RvFdyZk0uS{+N9a0oFZ`Pm^dh*D4%onTxDUocB}*}LkOA;gDJJOqPb6bhj*
z{YXd&A@guaBqkAya`P_|LNaZnx}qTz3z>U@T(Wpegitbs>Y-03X{iv(g-||((w0(&
zq-+RvH<@Qv1uOWfA$%3W*CAA-K_zyb7)ZZWW@lC*N{5J2jW#mn#6YeZA=C_^RtU8j
zl_>I}Ua$_$>Qa<@fCeEn4B@*FMugBPgvKHC453#DO+xra=1B;hLukr+rHXbTGz+1*
z46zii5!;5f3u!4sNkw>TOKeN>^9A#F=<PYy9b_)0Gmp!TA;{Jw)2~a&JW0C|yAmZS
zQFRZYM+o1t^F_%!#QY{erfEuVDl!U#Lg+)@m)I|4zKjyRe+UEE^8-WXW+jR=c`%zS
z$KQ|;hK9_$h+#w_!%4<2cZ>{SR0y*}m=nV25XOWsIfN-8jAchnU=PU1jtgNt72%80
zs1vEn9G*lX%VGRQb!y1Gmzx#BG)6K#gc;U~o5@Jzg@6>7*xsd6=Q7U4^eG)Ok27;V
zaRG5*2#ZK0S9($oDLGJ<g|J+X+9;?|SP{a?5H5xAa|o-X#t=4yurXwwJ8ME%%NnJi
z9CNaE*2yHNQh1J2u1&&2_#uQNA#4d@YY2N8$u>s5JtRLHG^cT#oE;Zqc5;Be4`G+J
zQpBx{%Wmp>h;m@<W3>C(E-^R|!a>f2L&U>G`Tdb(9Swc@Q0a6C$7IPgRE~#mB7~Dx
zugbP?id=?L_?ZxXr1P^B&y$~{L+PBK7`cqa1?FC40CGB94&h1&FG6@3!qpJ2h43JR
zhcvz(!f!PDC4~GT+@Pypr6(__(q3ui%@A&daGN#~!|x<_h<Ax{dnx+85biT61tlr>
zgpWda7Q!E_<uQBaNeE9v<{v4@C7t#s>q@bI9zvBR=9>MBLnBN0RS17e>q7WIx37tB
zLa4CIysr?;w;{aa%$Mr^VQvrZLjSVHNC+QE{v%3P%ez}rP>C`po-GP?65);%5@o*U
zBQ}VFI||WJ2uDGSf+q^8qL4ZY-Y9c51*6QJ-$yP<oy1QJ5G96C6r!R&?cri9FTv78
zA#D`ob|Oa<(naAj)|fR4>7&ezRIW@U8HgF9@P2|KVrDBhi=||XLZjB^?vY*I&E}gh
zIirv($~+oQ@+D_(v6ROF6Z1yla}rVVML{NskeDdQ-%^y1LWL;AMj<W=g`-d;%G@`;
zh(f_Ad`Vt_*fXbj$1Z1?V0;t`QB06#lKdY}*8wF((RCLVxrzul)7{fOv8O=^GrKFg
z%&xmY0V<$^C;|cklEj24N)D29&dESf5kxT{Ip>^n&N(OuiYWZI-+uF-Q|F#ruU@^X
zdiAPicc!~4Tacf3WtO@Dkn2Ht51#XYKCIwzmkd9lxZ)}bS04AXvXWqB!776M9fxuT
z!}A`zAd;$r`~!pX7d?2%gSR|r>cPt%)bQX<aa~Qpx*qq_^A!(jdE5={RS#a5y5z5k
zq;@h(Nga{UW<3$U;c>qJtS_9Tfd>tRQ-N9fvyphUu?I~={=+tR4{w$iDwoT&@}PN=
zxA35)@V5nDspNhc^^OPcO7=Z*2*Zqto@wpDhl~U-9`m9Ni#+JUj(PC02W>s*Bvn2U
z>>&85wBAmzy&#Ryen%<&g<q1-ccZ#9T_NABcJrXS2M0Yk<iTei^zdM=2S0hx(}P}|
z2oGj?(A$GP9t`qeum^pqqhkHU8p-9{Sm4+6{vHev2`vxw{O>92As!4B;pZL<^WbK{
zeKd3|S4#W%aKRCRBRv=;WVB%LgZLN^rnihyZJbmeFF3*TzxNj=dN4^OlLe;;(lVdW
z{zCYdNy%3pOcg#&aJt|O55DI9pVXNt<XbL^Yp%nYHqA+yoh+Rr<a<H7>jw|!KPdB~
zVBtbB@}Jo&57v6H&Vye)m?xU^*+Y3w^*6~@x#yZ);K4!<7I7Q-x6En}f_KX-meM7H
zO9iR6jA54KD}<~RT*YYDTnDa^y0aU`X@UOFZXRFn!3GaDCTne%CN@cSvj<y}@~s|h
z6P`EkG_}Knot&DYv0Z|@1)1IB!QLd_CuG0i0meYK`*y}*4~}?n&x3!txzT2^*hvpg
ziSc6|9QR;ItN01Y<^|hn;kP{a(}Ob}ob})wW2sCm#~Yj7#(lK=yayLNxF~9uJh(1|
z^2<W52wwHzT2lVzv+ft{H$3<~Dfxo|mgKFDx?d{Zmh2tDuVixn^5AdD-c4%$BZQs&
z&x89OJmht^`UfJ+FFZw%!hBx$m4pI`SZY#IKuDDbWeR!$;SYQ9sE|hl3kkAro)c=;
zi52mps28t@yqFh{d-1$*j~8Aq(%FO;niskkF)!j$WOz|Zh|deti$ChcEiW7|ihJRg
zEF}Rig2F?B;iNp`g`MP4A>0SppAus5Nx>%s*~5}TSjzCI5R8>(AD)ht5v>293`3n$
zpXPO!cD`ka;4RnAQ(k0xQBEqB_2Ox-yF#B4RPE!<%E!XzD<r&lRur<lVD^jJv1}Tt
z9V;H>?BkJOELX6+U<JX7f=aNGU}eE7f~@kK7tLOZk-XqVRWGV}QQeE0(#nfoyyQje
zy9L>kmqk*;3(iqq%(GE)E+uw8?`whAyr}KPKpTT>yzWIEFWLvtA%MDG)bnDv4<med
z!;AV}G}X~eM*}Y!da>AxC0@MgMI$e!dNIw5#$Gh>Vz3uOym*VsUiTH?zU-$L&As3;
zN<F=3;YCX?KK7!m7jHAkc`5G+Y30Q`Ny)oj_vjUtKCW`#7vTqjt-bg#snf=bkA&A*
z;6Bg5^BF#oY-cY%_3|5)L_5j07wjNNwT?nM34XXhbxF#*3h5@;UGOu(9)dgsgZ=L%
zqv-8LA1^vDP)tqhW%To+zn3p0x_{ve6eRg^tb2;rAP)Sm1RwbuN{>C{{=+!Vi(z!B
z7bEyVcBnMdXfH+zAC;6aJ}DpL#n_~z((H`!UUc_mOz>j7nbFzIn8*&88IuGjdoe}G
z=c4n4@Gk|a^OXomrqk!sQx<X6EY6y~J3hmUuf6!ji*LP{>BVd>zNhg8YUKj;9Vf1J
zqF;~nSzh#gEpd>4!+Y@qL)wd9+1nW@KYB5j%XVP){0`}R+hmjcB-x+2z7{BE=Xvp)
z7d_9GIrc*;k9VH$MUjQ>-N#G|ydW;5e!T=q`?BuiD@(mt#>mkyM8k3~R(O%7Azi~t
zFIIVR%Zop~Snb6cFOJZ|Uaa+EofkX2*y+W3FE)6w)r)OjZ1m!dahY4Z7;`?c$&1Zi
zRH~87^W1pKT!%}Ee@ADQT&Pl~<>!HK+gY?wC5C6t%F5d1#cnV5dvU-Ep8wYRLSl~>
zd%f5vDeY2%XW2Da=$>d->9N#<UL5kmHzCs+<xcToFL+KM4~66TjmNw=?!{#<u6S{R
zro1@k#d$AId2!l{GxYyLHMe*=Pu{yQGLzQM(&xJpk3UG~fqrcFf)|&(=z1q{H!JHR
zBT8E2X?2ub_2QZrH@x_ryG>3OkA%9;6}M0=yqGv1PUpdr*N!Cq@ZzQycWSza-O+f<
znz^@`Wmh$r8vgR)Z|=+*3TwFQ#XnvY)Z7!+?r|Y6bWhAHpn+!z{>z;<H|swy?hAP!
zNJ)z3%JXT+FC<m)-q{3&Et;r@H1}}7r>-O(*6@giLK^l+=kpFH<mfIhR6MKjF%3mD
zJg&i`A#+q_QO#X4#RO9qDITcEfqU5v4Z6lRx!_-<o?fJQu;I&#6pwbK@}3KcgCjC6
z7HP0GL^byu#Q<$i$qZ|*$ATI{8h8jH&(fURBcs_O6%qSg7AZ$VaSbKeb5SUv;Ry{-
z3g;o5V-~5|i&XP-i9^HOZ<b1HD5D{!VN%W9-j@?=7Ab}hy&BiR0||LdWrl{QG&I%F
zjAPgEw1(;$Uexdmho+&DhRPbsX-H_u(U7YlOGCDXTZ`1QwEQ5Q$6X#>q)vR|K2Xip
z%WJ5hp(01L*gd$CMUO02oYtJhN=g53?@CnB@SMiKe^6C(&jjNb>n>K$Yp6CMljmVp
z(=cy*W}C%sl+qM?`;vy2HPqEmPs6~)s)mMI8eY{<Q^PA_lWT!tQ*LtRYnpp5Xl)Iz
zYiLs^ecEDGM+2v0;bO&B=tes84Gr}*G}Q2>=AN?HK*OWsGfCXuUMj;dXr!UBh9+Wp
z^4;|9i&d?Qi3^L>TOy&g<{DaP=%}HShL#%M*6@*rk2SQ?@Q#KLG_=<6t_F_!Jq_=3
zj2GO;)K84f%(p}l{Y%_n_>k^hqS|QSs${fGyq{ieiDFS(4WF>j8aRpE0orM3ub~4c
zqDF4>C2GsvbT0Fn&nE6p%}>&qlc=GOhQ1oQYUsuhY3QNxO?Grz;?BsZC5lIV(kz?k
zsi7CcOmjCD9_r}E$r818LM8*UANzbE(Vu~*fh&6T5;ai6{w0bY9;D&g5|tub1baAC
z!!Qju82}oFYZ#$ngT{yYFjB)P4L@l3QNw5rV>C?DFkQn~4dXOS(eSy3@fs#*n8;A1
zCu`=WE>-W0%A`#WiU*MTYvxXt=?guZ^@WBnHGHLED(7)xCS!nZA2ud4v{Yp+b&oCO
zCNo3B*BZXlFiXQX8op(0Ov^u0!@}m-EpxJ76XTpX?kY^PHGHpO4n5G$b&Kc0v&1h)
zX09ERIak9^8kTXp*6_22Uo_0uut3AFTw)8=JPp4w&ZoGs(X(bQPj=-ow&V*nEYh$<
z!%_{0*Q76&*r1pCkIQ71C#-T@OV1~+e5E+96&hA+Si?^N4XaqIMlKIiZM9U<{#p&|
z=+ZHn>ost1;gY<0DZ!IJJ5R{$u~co+uvx=#4JR~g(Xds+KF*7VZ5p;~*r{Qc2D)zY
zQpNpY2Uo<iiC>qh-Q2afKz1eevdU6*ZmHstdhB!Ocox^x0dAE`)e&}B!$A#)G<Vx%
zTa41f8h$^Y;KDhkp*9cK?UYK_wVIS!ZA|7#4X4;c4OcXr)^LV9+cI@g!&wdIG@NJH
za4TD)*cqO?%h};R#uj;^@1Tj9^!X(XY@J7&US&9Gd=lF|^7p!i8}$6`^xriw82ItQ
zD(%K(wj7-qU#6-qQ_YsCKQ-K@|8>N4+~MZ0p_q=xb^OiEUqb;M59#=aBhv6dLyC@n
zHT<XHKIe3DCby&UV>9m$cYDH#?msd;pN{-GQg!gKUj~1dWjs$TgGaNDS>{GXL7gYZ
zp^%P8bv&$NLiN-~bnL2^`tRNJb31Z)8Y&MbEUe?(WvYmdqWtTzM($%e3dqT~9P-j-
z?ncMW#G}KjBcj9Bq3O_dSUUVV3>`ilyO$|b#}J7kPDdqi6i-DC=m@f7I>NepH0xEd
z#z5ju&Jbc;F<_!P933TeJfWl3_{{Nd=jLCoitFyD4-Xb5TFcdwI!fy9iHoIlR9&u0
z>tHKSEmsYeyJL*&NYn8Gi*%&x$k36aBUi^$I?C!Orz4@`X&uk#cz1GUrj9e06IquN
z#E+J%to!Ml#4KqpTgS7yyS4J1+X2g62eK`m$6H=U1s#=jRMAmUhtg4rPH36ILt^>f
z3Vrq7_)LB<@#tVKljn3STCN806lfjaELTi4RZT~A9d&io<0y2z#F6TFRmaP8&a+uH
zb-bcu`*Kx72R}ebxEq{bu6R^3N5?>YO-F4VuXEI2sRzqd9o=1?)I2jflY1=x<ak3z
zeI0M=XhesvPz`i6lwtD2{izkI>I(M=%4RE6V;xO&yd^&5E=uF=Rwz1wq`8h3Ivz1l
z$UsXSZ|j(>V~UPeI^NOInNxhJ%)2_?)A5mxkC_I<-q-Pg$cL^_Q-;KN3{GnuA96&!
zVmV*L+UOWR+9hpue4?X+&L^YNKGiW}h5DyYtR15zC#~wzSbK(gpV(p%b`+gMD^w>P
z?eE2IuTWidbk)&KM|T|~b&UNy_L+_zI{NDvAWioa>?_zyM{gnQY9AqQ)N{Xb?5Csf
zO7}>gfg&8P<Nb>6F*SoEJD5F5)*32gnBd%cDI-Laqv*LPHcH269kaH_#^{){)qP!e
ztf-CC!IOEI9WU7lIwlI4BuIIUu`&KQ^0|&JI=1TgLdTanzS1#O$1hwII;QEEPRlxG
z(>Xf6=3>+_Q^(nE8P~>Tf5RAFsouPjTTSpg9YcjQU8&lyRNr&bujDfQz+MTTu~N-n
zseaTkSF%6p_&KSwb){n6(<{|H9lz;VsbiIn`8pQpSgvD*j)e?e9ZPg9l`3~vs-mmZ
zVjY>QRE<??8GAJ;yUQw-*Pj-v++JlA%w}DduGX<e$9f$bIH<|lYsDs&N3K%qSaFr2
z{+d;4qmE5FeqW^yt#UiFSvXcJO15zc=s2b0w2pyZHzs%J*s0^OJz4zrl4%!RO0!R=
z@6oYW$UYrMgzOhQAV`ISLJkQY77VXeN0X(;bR19e6GBc3=B`#}=yn}9b==Z%j*D)!
zx~Aj0j`JK>+4KuKF6y|%;9sryOUG3mm-YXhx^{(YQ-qYyU9E0#T%3Z{>JL_2typ*d
zy{wa~6%S|2w?_S`<F<|z!?k%w)c)e;FHNutg?Dw_6U*fP=opoy{A=76{}thXg7*a<
z2(syXVvVij7m{kAfRKj_w|ZiYDrlh28U+In8~AvQ+e+^>>QMuQ4XiV;-oRr9iWq2Z
z;6sCNhoP8(@&+mxc-(-;K)Qhp16~7~f#L>A7|;zE20{kH27Ctg_K8~thIWlF?;bZ<
zw_p5V_qg9cK!ia9Ejq+2b&FHs)4uVDfoDs{qf*N@(2q~Bbcwg_6Cczu?yyV!;>Ehf
zpD^&Gfj>sa%ZPGG1Emf3EAdidux*!khwgEsW4zgrICWwM;s(+Tocb(Yx@TM;7cbf)
z{*-~T2C`Y*z|#hvp@k+X>_DagYd}1~k#>udl#^_Bhj^9&_HA;v_<{EEmILBB>|U4n
z+RpJ@18s)I)s2Ev)~Jdcb;o!u1FsrT1}Yh-Y@mvPY6hwscuq=RFtD?0{CVN*-sHxr
zssR!TS@%T)FBzyQrOdu8q=td${w!vn5uH~I{IW)|A|<aGs4ZQ6+raCbL<4UcXk?(S
zfqDk&8)#r)Rr@&I`-TDfgq%|_xJ!I#pZLA5@rDN4c651TI$=PZZf|O!iEw7$62j7E
z2AUh_JT|^!K)i(*q@9*Rn$}HeC2H>&cvq~^`R^Hc-vE_4YxLCz{L~oW&Tkt79~t<<
zz?V|@V*`CTzpQ286S~(xI|H5Akb(9xt(=aIGNBy|Y+R!_3bsqL>{}NDJq+~Zq#NjF
zpt~4kU{K++WDnUo{m{!mZyNv1jUQU*Bb?bsJH-1N7+_$ufiVUK8W<!IGQz-M149f9
zlZfKXMh3=*3Lo0vog;?Xa1M5aOGdJ-(eWxB<D(2z>=A#WM|`Y-aRw$Cm~3D?7fX-$
z++g-Z0~5qJt5CU|o?WJYe2Rh3xn4TNeZAw&2f2=7Ixryqm4T_8VgtV#m}X$Qfgfcp
z%rNk^czCvfZ^Rno`8xyO8klK-O&9AKr)1>l_$*l(<m1M;3*mbMa}4}ofQyd);p}tL
z=Zejj2gQFfz$yM&RwdWzJOjTOST-cij?Fi)Kqg|ffrSPZQEp(lfyD-v$iiI8J)uwh
zez*9|&hA{(y>#*lgFgkjYkU>wu6=w~UpKC}f(G|-=Z<`hfwf|mouPaKC)Yr(59NK>
zWMDJ55g&9PwiwuI;DUjR9CerYHUs+%>^HF8zz!}V1G^0DG4NWpN~x1Vv%3xa-aT$f
zb9-gJh6l1)dVm9`yQD=9>X3mGTr9Oy4jVXP;HXSN<6iOfl3B-uQ|GvWEj?Wioa7eQ
z%bn<az2m11oDm~urJ=S>+(yqCI4?qSwtmULWdr$rNcG{0fvX1Y8u-V+H3QcT+%oW|
zfg1+su0Ny}E&nbnE1z`xCb!mZu8VFPxFZT5*G-}F=CQ8uF9UyzkXsP5_YC}N;DLb@
zpF8mX4BY21*C?9eQgtnNchxd)79{5LxtnU^QSkykJmlje87S;SK_AbLcIA)wQ0->H
zydB_SA2^9@l=4D8cT=6+FV4O3F&~QfP*n8k@M3JVNy_6sc!V_X<a(Z+XQN)}52xPn
zflH=@4^Q~u^TCw5mXGh>A?$-+N&`Lwg_P+Q-`77*eWr*HwhvJs?yXVGI-*cqkl7}^
z<DRvO`cI0%GCstFl=PvLkd`e~X&*ZEcZa}R3etQi=R?AWbRRN&c*ciJpF6Ej`B2t}
zr+xUZr|T}xIFXZHdaYt<@trBo&Xgy2reui|vT4}|N~n+{5{3}<7j%pd=@qZwLq#82
z`S6Yp%7;qyrw`SAs4SXQe0WaCmrYWh_n~{`bfy=4__SA?WMAd<sy<X%tH@vU;UypH
z`_RCLmwl+=!|OiO@!_W?DK%wiud%}e;;;BnOUSE&^M}PLtSt)c62pV@RhQrVi=>|D
zP~LE@`dNaOZfWSlTRt@P;Y}YJ(M7MPH1@e+*~Eu-YZaB5hObrBZ017?A6oj*+~)=-
zEpscT{B6lHLQ0HwmEZN@Js-~XjQ927eIGvXp|cMk_l&pp;X@xj;b47e<HJX6Wqu0h
zj#XItu@7y1_^z`1ZX?t3%IWQ7mfQQ#!H4`^<5cEcca&P4e3;qYRr{v5yJvP0mrm~!
z?<%Al9V_HB!5)G=1zDw+klsG@5%M@|b%?XK{e0-}!vG%!GVIy3&)twYp@V%GBE#Xr
zry3>1VIpCi@N<8p52JkOVWFpm(LRjvp`M91OpNtm9M_kL!Y0Q1Fu{kzJ{<93q7RdN
zSn9(vA13=S#fRT~nD4{qK78SG9~JnH=yRV~_*SxC`P@?irV5`XINgUCK71|w8$s5}
zd&q$g3(aKRJ~2x8D8(!vX8Z7cQfID^IX?W5l>Er)NZtVQlL&tn{6+9r!FhswSS9cG
z_w(to1tMAK!y+Mz1=->fA^a0`xeqHCz0bsU_^>irx=F|?!PSCmd|2zlI^pYm*eHZ{
zHuzB6gE}4;nPu86MOy^7`mjyNc0v9npQp2vv+!5JT|Vp<`5r+Q?e$@w5Bnv1z=wlE
z@*ePD=^^fBm&-7F)Q4j}T=U_&5669cvjbO?7Ebzb(T7VuKCtBW=d|D%!Lx$ATIHOO
z^FF@2<UZ9#wY>XQE_45vB1*nntC&dmkPngRh7Scym;dg=AEI{Chg(T~KK1mc54U}|
zBa(jv|4Nqr?ZaK+d}f0d?g{^wo0t#xg+E~AnBdUz+RA4lzll_7j>5dehtOF1kO)Z%
znn032EaVZvLZ<t03l$zSQN+Y+CK`p)i<<7+903zS6U9tCZlb_)_k^E$Yn8`@*Mw$5
zH?eK4GEDePoL{TRO%s+0zsQ-Ta-nsq_&PPIMxw$x6*3Vvk!hlwiHHf?L`f5+Ohirm
z^Fz90qPU6r>s0G?>a7kLl$0>>go(cE)RQKDS*NzGQ<1W{lh&!yCV0n8hKZ+4#7vxC
zr_xMZs-GJ-ald}<$_^RCbQ2R>WKmfE+w8I?o;LA}>0ZK8r)=(D>y%j|z1VtnxpZ#H
z_3q6e2@~Z_R4|ccBHP5XCKhMp@-CHJ6KcK6F;REDYCAa5X1#l9OGOGz)G$$#E_yk=
zl8Gv`Y@)J>f$LSj2Dx9XSI?X7H7Li{D-P!cc7DC8Do9dINOco03VBKJ<z(sl_39NF
z1v^&D#DNYOl)P%<PwDNW8&qu*{}xJnon5V8rjChE+PW{0)|D*p9IS7m0lQ&hkcoz-
z`|E8-!8bXlCK{V)V&Vf6txddTqA80^v@+4mL~|1@OtfUJ)GVIT|HKCOApOH*aw=|6
zycdAiBD`bbT@&w_xcF=af4b#u7j-wd_jJ5(V#>Pgt<j9O8`Os;+L-v%L_0>5iH}XR
zWe-hWfSy&Ya_-;_?hOm?jLZ3EgJL58I5n%ii4N2+;GW*k7H1YsEZgAzSlr3v@2BWu
zqN|BL8&r1_pPA?;oY_mF(?f>V%S2Bhti_+CdkgO)*w=LLSzziXq`%+*L3N?xU=u@3
zJTQ@BVW^2=oJ|v(Obj<M!o(aCKbRP4Vw8!mOiVQ~+Qb+W6Bt(v_#%n1CdP5|r{{T<
z+(xx%Oipm4%G{{typTJ|#ALdK181CUR4q2Dy<>A~<<H<P61>2o%SQDDhqh6DDM-mQ
z6Vpw6YhtE}84T&vEZzk1jft<>`bPELMzw6C+Ots|9i8)?iCLz5cS(s&?ma2985kSY
z_a=Bv1Mle=en0W>CiSC<xh9sFSZd-Y6F-}nZ(;!hjA|z4nLPB~4Gc~quNooA+N5f3
zQoPKC7pW{{3~W-1SjEnmccLQsVot#(Rcl<%=uK*wiREnF#2OPTOsq6{QAO4&?mV}0
zzuly~%`;YPQhPVKHrJY1XJUg1-ffYiav1>YO<bpijf%*NNTwFZ+H7KriF4dKOl;+j
zVd9X9!zQ+y*kNKf=i0<h7DY378Ar9vY8SVl&C0)7mEElNn%HMzKNkpHR4mc8SYqXW
z33~D%hqhUb+N_8iPS?%qh>4>nPMSDn;+To!CQfjQ?<e*bP1GKp^Xq1{=YC@AW_6m$
z#2IdPThv(-_h><$eBfmhJ*wtDwMAWE<eRufhtuHboJ%IInz&}-vN-dKiRxQalP#+K
z7Ij^^^t*{aObp$kZg3(BWYs8^I9?%_Yv-nkn+LME%4Td)w@uvP*2m^dUKdjFFBAW5
zQFl!&+@k)b6WHh$Wo%Wy^i2HAA`|f<iTl!A;YPXXTNSg_w<_MTlFveZ3po~YEu>l~
zU?F57Y~djb1ub|jXcl1MVGD&VJZ9k$3mqRM9<{)WUEbQN3R&o1B++H7n(}<^sI97q
zg`yT7x8SibYpYtlRTZ;vbgOEs5_h&LZJR2y&0YA63f+QXAuE5D-$IW{xjqYA1*TvW
zS(b&$+Y}Smb-+T<!kgP%ug*%z;yo-83$}$c3+Wc3790yDEtIlQ+(HQpPgr=8eJ+~d
zRWF}xbN7m2+tjz))aq^O*fv$#!p&_eW+85&49ECfZsF~U>x(_4{o%KA2c%|YSa{09
zGZr!}_YR=47Ou=tPYdS_GE{T6t8x|+?7xL<3k~H?maoR-aJzWq@x-&1yGB~&&m#Zj
z`P}jrDp+V@;VlalEhr1GS*UHH631xaMGG%ksAAzc3so&tqt154Zai<{1&;3d+|a3t
z%+}woKBauSs!o6MYMbq9%D9}DE!5z6cc@n_)U@!5g(5o?=Vc8?WP!Wo-R<g>jIL$n
zj0!u{>lW&;w{)h3x)$nLc*8=g9qP3mitc6Sd65kRroM#+mb>wOTG3s7p2oS2EcDx<
z8Z#>LXPrsS>NY-S<_^`=LNf~=T4-aTxrG)M-nH<ag_aiR&$nsWa`(FBJJkLi>KzM(
zb}H^pw<Y^NXK<(bz(Q;8pOtg7ce?AE7a=WboXe&6k%f;fbYP@eXlvmU3!hqON3%Os
zi=D3jyY5u&E%$mIR$0AMjohhb?^K;EbhgmVLU#)XcdDy9RTm3g>FUurDZ5nDPcyiY
zat~qrSi96`oTEy)N8iltWuZ5t+K)nh^s&&_!g9to$IHOBFwVkwO8744<uU^-45ah<
zV#tD=K^6vE?(IKAER3))Qut88VS>X2`SCZ(!jS`6B%>KoyVOg&)EEwDyBaIFvr-26
z1Pc=_d~ab6qq<M}Bs$;17c|=^eX`&b!Qnk~zO?X_g_#y!-mRuum}cP{3*XY`yVP_G
zGc0_~#iHdh+ijPcuuCo4r4H;;H+QLGyA_3LyVclU>N}}E%ff66O?NAr>b_g?cE2Ai
z%(d_n*W>K?kM!F(_lfkME&O6(Ar~gSv0Ft3<UHt~^Q(n<7JjoZ-vT8I1Uu}^CTIF_
zx1!Es3+HyLrBbxS0wo)FtCT%znQ*>zu+qXR3;F!mx<{?H;NPRRSlDV|4cG4;wbsHq
z&i<&_dclo?8w8Jyj%^aMS#an3*;LzRVY`LPT&fm!SlDUdq=i!!c3IfXb-|PTE$k7p
z&%%BSdxc+|n4OuGen2>N4hqTL<6e<=NO=8;*+)3(7LHjsZsF>%)D!fKC{X7EAzd=l
zPmA*Tq@6QD&e8*ns6C2Ch!-qe<Tfi+o}Qk1Np!y0qpn)GX5nuOce%re@TP@Z7H(Mh
zU9x{z_<4_Ff4U^xvxAuav~XLB*dJzzcP#uR61GLjKNjv;xG$1_1u6Vb$g5(6Lw=By
zr}$m}{P$3Hem_$Ecy)WCfFGy#sE7S{$d7`4oL`s&zk5#6gZ}&}D*d6sDYNG1@MNk-
z{V43mCO<a&@feNx@xC7)_)*l4Vt%~n$4h=Z?uW;Z;(nCyyAQy7{fPQumP%-T=pr!$
zgMvOmQ_vFh3kC#NUWtc<gasplv}p_ZzEcX#I)3+0+_tZ%C;WKQkMdGf(vMPpB!rhv
z)_Tg1GQwkmaX-@hNKckFddfWwCd1D&5YkA>iu~zh=`((03NM$GOnfBGDw&q$N47|w
zP0DkG<O<H~lv2Tuio%s2&kLy}$R;Wasp7|TNeM^vLXubYqnhyQNlEWc?m-_f`%&AE
z*Zru${{Nj*Q%Ya)<DW8a|7&qJMe>^9l{8maM|dMY8v9XKcs;>41nUbn5Ns&ODsKv@
z_jkNWQu3Z3Z~4(wvd#Q>TS#-k7D=6!LJo9v``JqPJA&^f<#|P|{rJ$234ToUqm3UQ
z`O(jh{(gKcY90LO=to=O*N-JW@#9nB?F8Eka^jfSN+&;h2<hxc7eBfR?=IL)kUH07
zW<R5g_PA$wGWC?AUViiz(kH3e*N>q+-Oe)&@MEwaL!@Y+AA^L<EbaP}X{cmJ2@dmP
zxR4QoEFI~Gw%2WIv`EGz<zxLAm*nGxRJ~Vll8|YBO!s4QvUG|cp9}v&@Jqq3lBH9*
zTD!XaoZ-jUe*EgkJSqCdk2ylV6`bkE$gA=1gwGP3E%?1)fd$#L!1RM3KZ<0oASFKu
z`Pq+Ol9Ir_+~53|@5fq^ED&7e$6_H11@qpHUm|>kA4`QS6Qs@MoT(@O=e?DFtV+sP
z`>{qiUnGApG@Y93{8*nX-5_M6AYHnJpB;Yq0x$#E=ErtFPs77mZenc<?C`sv)TjN}
z>BlbNy9JN<u}8>WLF(-DW4|8<{5Y7D9OA|`(tSsj>98MV_qx9(A5E4X6LQ>-6G_QQ
zKTZjMIZu<{uvJYx$8FP(zx?>yj|+ZW6oudYXdsV8(cmSKT=wINkgI~%1g{I;5Tqs_
zGbaAw$AU?jH$`~Mk3W;8xBa-2<e$HgdY6Ii$HM_U5^z0m&yV~<{!Qxq=f{2F50a9U
z0P=~>p_T44U`(k26c7pdLqZA)B7iF|xSlDLEPY(aqk@G4cuYu<WNA?$#RTW=aYx}1
z?hQZ_q6->=Yey8If)#*2fI56YJ%B&}!2q%X$POSBKsbP>0{^>;Iubx>sl_UG0MP)P
z0E&y`$)vnQ08b=&{TEV8CV43#97q`<F+tujOjAs0Lec}sNJ{eDQZ|66Me>YbX0o(g
z0Er}LE41)z0F?r$96(M|o-3q$02PvwiUBC$#YVcLt|Gj8051mcobcxbUl6P+SWS@1
zmp^u^yd>FLf-eV9BUxHAfLDaqmCjJ})c{^gmev;XI!8CreMh@q0B;1)Hh@n=UO#}h
z0%$6{K>!VfyeUZKMnW13HsMPI<=lJZn<Y!%5z;(>7D-7<A#V$|5~P3L74n|o`vH6q
zK<fZLl<Y@>Z3L?gcDu(;ek@sX4(HP(Z?RXk%TpWUKI7CefKCA%3*&egodf6+z*iwm
z4WVlQ-2(VHh_*p=58$%^N(NCXh#mp-4B$`zhXd#pK<@zN2Jlk=eFEqkz}EqM6F|QJ
z`UfyEfJp%i2w-3UqXX{uu>}UIK>>{70vV_Vi)2UuLjxEle0ae97@`_qvn3f3z(|pk
zQ<7JmI3|FxA|FRPm&=S7K0z?=+f?dI4q$2k(*l?x^3MgokWqgba9`v7N+cvq{EL0M
zWQz))A!aH3R)pULFe`wW0gNzWJVA@bXN#QVdoe}AG$()`lJXyg(DKg#{1U*X05%8k
zYXI{CSQfzY0DcpN`2j2l;Q0a-S$!crzgI04`6B56g^L4NB9gpu@d!Q&>5Ua4TpPej
zA*%#e3$76#av;=XS|`Hw0c;4M`xCK^g8XTQd`kdZrJ?=Y{{!wBTss2TDP%k2FcxD&
zyOP$(cZ(_7+#_VK;J%~>4g_#8fI@o;<_+PS?I}m-?Eq4PC=kRkY4<_^7Xvsh6;BAB
z6r{~l0h|utOaNy^axQ@Lf&cx6!XI3yz;|i$!r)Q>Hv;%QfXm!YMfs{=$46b~ToZm>
zkp8Fej{t55a7V^<Q-*UZfImfn7r3*^Ujh6r+5e=J^G-kC4d5RUveA11{F^k$EYp3-
zJ`hX^B3}^sga13kEYI@~1yL{vGYBi_UcUZt5L(cU|3`vu?0JIl22n_=u(?NrC>+FN
zLH7raB0&@jy5BI97nLe`uQop(<TDTM3;TSYjZM%9lP=Z_u|wlN$+E6Lh(Hh}f_Nf`
zV9;GtVZo3naCBTXOc4><K}4k?hck7#OmX2fo;T7bga11{iCGFu2i<caa)T%zL>Z|b
z3nCuGk{Rh~L7qpQo*hKGWGTrA;wj-}gLpcKI~B4id?tuY5tb872<8=K3AZa|kKC)C
z4I(E95>_D=|0BIZ5N`(2D2R$ds30l@QJH2V@i&5~62x;s)C^+pUe&#DeCl4smnfeP
z;)Nip2HnGTs|E405c29mUd+o1whO1%5VB;iqQWa;mX>P;@oJL47DVkNe_co&!MZ`z
z6Ee7J2CFdD526A0%sIIYlllYv@y0<k3F3pGd(Z4!K{O4bMG!56Xck0s5mwll%YW)i
z?9AnFH`IAMh(Go!p6S{uh{yN27q$}L5&o{=dxGx^^7_=)LH7`k4})kU<nk+t<%4oQ
z3W8W_pZX+-PlK2i#PlHA1<^i;(Ls!nFxwGK?GQxAAUbhxZ<y#S!p?#Wq%K0b3U=eC
zfRN9Ur9Fi76znC~JBU8X(x%-q`U&r!lne-BpzuM0g9V2O4iy|GI6R0ELPiELN(g)M
zcf$k|$=IZ1;YS(cl6-s+6M|UXAi*?|D@FL^pnLNm(-a|}2k}Kx@}-ck1g8q}eXAKk
zd>usb5K4sbO%UG(aWRNXLCj>F2eBcDjX@0Q6Pp#pydZuHVm2#sIRx=T5I+U+a}YlU
zQEQ)CIU#i}SN-1fD%CRH*{9}z7yBj1^IBuS3X%-or*6!Tk<1Tb0p}=)6+tWvVo?xF
zgIE^CV$Re)wIqnLGh!7hrY-0bTd_}(PiT;_Z=bsLb?i1<31U?cYl2wIu{X$A&3$9P
zt5al2?Ea6jbwR9WWbRkvccy1oNwaR}mfEi>?pK?F*c`;cAPxnwC5TV<tDQmY3Sw&z
z+h}J?Y<tjs*q9f0?vN}c<M*rGK~S<ch<zg56U6-eYTJIbpDx<34g~R_boRps6fgZG
zu}8-a2XQ2bQ$d^#;wU%&AWjDH`T=#Eb`Gc$LGYR0>;r1nlGvMR+2sAMq~AFbI}^m&
zAkGDGK8WqB+@cpQ#%S%U#jy(<%joP64k%`OkIH5bF9&fih<}5)62#RYt_5*Dh}+y`
zg1Esz9UHqD#4YZqTt|$$1MXwb(+()g3%!uW$EW|~!nqq;Ao9P0_&ex6Q~gg6e_cqQ
z)i`6v0d<!>IiNmR6Qlg-ud)9)cl2-wkB9Ieh?Ecz!owlt3n709sUZ{y;lI=A{~b`)
zLG@Bb`G-R8gUS^Ss)8YOubsx5OmEdnt94L45<;O6iiA)!ghxXt9KuIu<Bu`BEtc9R
zHhp{grXjI+4yqmpRo8K`{Jmq74!Sew3BemeAcSBD^A9R51U&>J1e$&2hnOz}GXyIH
ze+b`?jb+BNIoLf1-67vNsF?B%jD<o7hhT>g4WZq{SR~|LJW4n6Zqr8&sWR7N_94Y#
zIw25q4yh+Xcrt`G>|O{ZLnsx(%OTVVp>zmkLdXdrH-uOS@erN~Av1)u5Yj_<Dul8j
zWQ6e2tXQo>ZU_2iWX~BH<EnW&gj<OeN*aucy>m#F3n39gRtOUgsh)?_)+I3(t(%*Y
z9m2CAj2s%HoN37NSoshtgz$U_FNCo0kg6C$r4TBIaOjXy^!%V$v-h*B&;v~}o(my#
znBUXJ9vo69ucou8Y6#UrxL-Z(MVdXVs)tbh{cK)`N-w>7SiOH(y(Fc*538CXyb?mw
z5SoQhD}+}=s2@Uu5MB$Rb_jJss2g%0|Cn-Ez0N5(tZJ=@@q5%dH`D8d&~irXjS%)9
zR?qHA|C1e<5o;L2n;|p~p^5a6Gt!7td_+BQMDZTjx5N}LR(6N{Ypl`{)jWh2A-og9
zyBxv+)iQ*)Lukd>{50jyp{WDPX4OBUK0cy`98t!;^!GS-oQtus_e0>_vP?6MsMaBT
z7{Zbxs?RNV(vMI-gtj4!pff}GB!o{x=ovyU&VC5(L+HXk?-@e%QYOuabqJv&+wB$W
z6hddtd(E^n$K4kSn7W>c-7T2bjp02s_8B9YJsc5ZdSY*Ez`^t$AuRabCA~xF6T-j{
z28GZ!gnl9P4`BeEmXo&JmwIYnjB6@ojvH6Ek0|d^H8_MJAq-=c18OJ(>8Sejs2Y7K
zR^_N_bW{zOz#ei`x%dBuFgk?EAxx1TjtOBrV<v>LA#B(Z8yCW!F|jT?W8^J1rcaw2
zn;626N7bYdctP-{qsp@^_IU``j;b$0aE_^Mb7Bu4Q(1q-z6`m$+!u3V(?XcebrD81
zj2R((&G--D82A4Wz71h(2-`xK8NzoQDZ?*>Ss~00VIF5NlFsS-p36LhA2{kkvDSm!
z1@&VHzld@2xk7#l;b$S0j=Aqa{F*GSe@y+xroT;}FV;Rhrf72!J8-GY(h!z~uvj>=
zON8*hx#c0O2w`0a>$!I7msu&eT5y$M-*(w+LRc&O?*@s6UEN0%HiWP-ge~mYF||pG
zHVgJVrgnbfDoi}4E}k#L((NJapzAWyH@}s>GlX3s><wXG2=~sqUp{PR|7m<o<{rlU
z=*-L=IcJWk{ap3O)u9l`53nw`$79NWTrqoCidcGtyT@_W>bN={!if<6;0DOg<=XL+
zA)F22TnMK^Xt*frv>?fu5O4U6cRQ}mhj4+yhvHWRhaXoLL%76J$x==Q3Q4Yt<XQ;V
zL%1RQ_hc1*(@upM$JI@4K_UDZ!fnP<7=`Pm-{H*iB)2f~h21}W|B~$Af_FJ740~Sw
zDEP17e}eY~9|-cVaq7@W{xBY;&9G}QRj@!94~f}=f)IRI@Dag6g8y&fF{z~s773%M
zlok_wT+k!v71RX(zpfF6Pb8+GCFmCn2nGf7^usdth#;LXtZljzMsdb}7+;4`B8(@(
z=o3cYFrEyfWEii8@md(A!YD0$s~$#~Fk)e3hq3RtiieRFMi%Wa$W9L<BaCvQ#=Af0
zil@Th?HFZ6^0Xj@&xDbg<h`FrB*Iv7T>a@JSoFP<xIWdb_-q(CNu69F<-@2Tq+%FK
zNTo0;hfyVrhP!fEh3UC4s!GxGf|R@vMxMcHNeRC;e^K~LVO%|~_<P68lC2?FGmKY+
z)Dolx9y(MzjMu~H7)GZs>V#1@j22<E45MBcZ-`psFzSa99H<%zk~Cni!g!NWQ8<lR
zCi>yg6E306CSkmlwBIz0W=Y;W4F1ePh40E`ydB1SdB%$;T7}WLc;X$wcLf(XY41zv
z2ZF7`_)tijFxm;Bk&nXoILX@z`6P@_g*Yev_w9Xq$#$S89rx?v&XVmJMlT^<!nj=~
z(N%ai!R}#vCWOj8gnYQA;DP#S99?h8@+>tL^$VlFWT%8NAdG<$1{1<~ZgB3PFvf;4
zPD%%dF+|AFFsk3k`K3|XFv$)V91+GyA)^Foc61nHgy$st-{^!YrKgP#<EM$~3&U<V
zCQ4hA1Sf}ar*3%)KM&)JFun}qt1zZ<Do?1X?3j`E-TJHvrPG=;OMA?4>rR(iInBy{
z6UMi+8OG0HG=C#?W*D==m>tFqJ^eeurf;Mg?`3=+#*bl;%n>B{LCB!qsdI(AE^5Do
z@oN}6!`Q|74db^k7Bl8WVSX43g)9)WS9+(i3EEi{#@*a35~ii1up^9RLMT}t#)>dj
zhOs#}YgHH<g{&5&WQ~xug6jm=3vLKw!MEvDVA@292+6ky*&4>Sq-1*-PI*_2ZEc=X
zV0RdM!Z;YlA?f7aF!l@CCrBN-h}}LA2HnDRSmY!}#Ct3{DiRV3PlR!jDdK+8oeJZ0
z7)>I0D}pm&oaIguL3RY^!Z=S4gz--p7s9y66*nW54-#DB0#C`fPHSOY7JfzWY8WF<
zD5h&+XeYAgo>1#gsNcC@Z)g1x#*q{JNj>#u7`MXsQ-qZN#n?{rJDi>VsTBU5luVyi
z;GRTUu?QZIxE}=nhVh^5qU865JP0F2it-8O7fdBa@K6K=CHq(e5K>5xbsvu45#ihO
zxnIICJsLq_ksK6Bk)&qP2!?;<9>(Q~z#Bm%0y_dN0zHCY1k>;3{C+|i5p;TxV@2SL
zz>J{KN%y%0K9j&F6Z{eP&W@5NRUpE%$kHmERG|pA)y!fFN5Bg^(l6vjBXA-}OSV`%
zg1GP!Ny!rtJSn`SU@5`Uf@K8Ry;$UbCwhHQAlBrhdzfB&1R2TFry?ku<WCEECW1^M
z<&yFQhbH$aKN~?#1a%^)8*%@_$&H{^1g}O=K7tAnRE$7H@KOXXN6_x18h%n$ilB1D
z{miXGwc6>`gg+<vyx<EFR24#<hYuB~E^5?#F@j$I<&e}!mX2MJT{D7LBB=dk=G8~i
zh+m&nuhCH|&h$Fv5uE3j($A+5^GH29_MtdWma8AZ8xagGk>0yRdiUu$t4pOfh+xS{
z)i8oLBWM(HkGE|c!ScZ=Bux8Hs-_V%<NQW2B7)`-w1}W@1pOjt8Nu5Tbc>*S#C=%3
zRRnD#_#}dNB6v3fUZ(b51g#_ZFoO3b`+*>DKw}ZFCu<XNA8Y?ugdaut53>5>q&i+t
zvGh|ZDtStEqW2<bPuEq*?GQo72p&77c!L|WvAY$CypFAN1YIKNDt)MYO8w?n^-rnK
zBJM?R>{YJ_dPMMa3HR!>o)NxurYL0U9YG)JoKpR0@RaHw!RM#kqQMaih~S%u8W_PK
zMyajX5N~{28c;(xp=(lyN<-8fCRvh^5sZr9w+QA(Fgk)UjIjv5jNtWr@v#w%k6=Os
z<09@gG!-kR5GO`3DS{~xgh!@KW~fw5S#U}<lA`DH#|x&!Kc^cjrf+)?`znH|5zOSg
zOZ91j-*7=iFhjVinDVs{nr(V5LHss?zr_^!tO({r@IwTDJc!K}{62zGDxKLMBbXb(
z&k_8><)0G&iBn%O<&yygPN&3K@mI;t6J=&!6N7F)BUl*0_6T-x)*@IO!MX_6Gkzji
z8o{avR!6W*46@crMiHlMggfLFBHVmRy;?D4$b;CL2-Zrst86I9?2r*DM@}hrV?%N*
z+alN)!6ruIDaGoWBiJHEw=1S>6;dc)yi-26t499#&Iooz_>7k8;oZ{EUO^h%6G4@f
z_~v}^eGxR7nz}zJznc<27{Q?k4o7e#g5wdK;3glzF?xPL0ZvLGm9p?bta`<C+N6`&
zNoMJyQxTlz{vW~F2%fO<q>Xc2YZ0W{C}8741Q#R7XM;yGU5el`LnVTH5nM^G-0R%v
zlKdJ=!|pRDOgAF<Jt_Yqf}0WCir`O?{3UohS$aoEzSHXOq~tEgE{|Stf&Ux9e-Yf5
z#l9ty@qp{)wBr9S`Cg2Zq}Xnj*JJUYyZkmvomNK@X%E>b$V0<srblh}X-3$1*v2Em
z`3znm8;{yJ|5)6#QJB?jcx`AlDxY@m6>4-^6|qs&cE7kTW`mN)1xY+~NaYj~-Nwx>
zxjsQdklFU96>-REW!dmc^=Hg@K<WksLrFVf8xi65;S}5Esq%5!<k#Sijp8;+*ciMZ
zYxU-A;t#vBN^&f<5+B-V!_nC&ZKI5hn2qK(TG)u&NVCzzc7NSSw~=Av6&tl|JY}P-
zja(b$+2_k;p0@Ff=;WPynJK)Sjf9OX8`(B;MDna4P35T(^9UssY&>t{1sfG@C>xbT
zv$BmULiox?-dh{b*)CboE{(5m<VmX9s3tnqZM-bxMLH*0i}tBm!$wUTdCle3VvDcZ
zsLf;FMDsN<ONBa;eZzK-NUdw5p41}G>t}r_ZD6CJjW=yHve8&1c_X6bJWc+X^_GpM
zVw1vVqH||SS*k6cl+n`0J2u{BwAf&_mEaXEefDYfo{hRa67Spiz{ax&666!Jb6e9h
z`Txf${K&?~w)@9bFB@%bd}5=6jaNs<KDE)##(~rBg}-y^W!LPJp2|ysIemT7SD#i?
z=xC#pXm%FtBG^@srQK|FPx8-%^swD;jd}{_*HFEs(LREGZS=Fz-^KtsUw({kc`{z(
z^>lvC9&4IC*v1eWf0xAFk{D`Z7^kBIUM_**Hb&TZuQ(6R#Yh{Ys1wEAC`Q{D!?}p!
z^(e;L7-!=T#=MR3HYV8EWMi|9i8dzL_{ql4HYVGcV&hvIGi`is;|m+pxO>paHomgm
zzZRz2=yE-a<oDBx<gqiV<QX-?#@9B!5w+NjtY+7<o;&0Im&79CcQ$5mu5J9t^<v|D
z8*{`Ii>jY>AO4}8ivPF=*)h$vQD}(!{}k;Lf3fkajTJUl+L&kKHyev>EV22hKNi?n
zXk!sq&>7Y7j2d}H&CHjWb4G2DMo*qmOKsdfqn0rSY!o^BzyI2(#>6VCY^=7i&c=G%
zeJpT|jkQA9D6>o@59MrNpZT6msl-Mh>d6HE*DiHdZLzV{#&H`bY;3c!-Nt@~hm9RJ
zFDXvjZDWs(oi=t!);l%#>%wVI_femQvDd~v8~hit(peQNn%3Z~qW(b}hin|P@o6;e
zu#F=O1IC_oc*eS1CU$9@WS5*(2hOUKHcoL5v~j`4Y0l<ZRp^{LYvYWKKc7sz{%SUn
zl5^Zf%DLYRT(oh?##I~FY+R=IUN3(|&^f2dpL5+(_nf+J<AzMi?^3k?)$;5fOW9BM
z_7*MMh(_T=aoffnZoE+xiQ+GY8TY6t9%8WB_{YWr8!1uTv+=Ku|7_fMhn9Y%O%7Z6
z;GF6s&3$oBEj_35MUg*>)TldZmQv@*k8(IV@?o|c00pCXIEqK2Zqy-){pVEMn^}b<
z`)Cw}qqu%f6+Ev(=l?ge+2>W!D2heli^7cJ@hCh|_nAy13U3sbtXwS$J&G|-g2KPj
zT+fh<e<o4;vjTjC(u(3(^Rz$|K`xf_$}d^!grW#X5sAW%;=sIYK6-b$Tn05&p)}&<
zrfIF3lrJ7di6|;Yp`v&qiYKFZI*MnaC>cemDB@A1MNwLMUM7l|kjHChpFEYQd@?aS
zn)dYRM0yk%Q9Knz*(hE)onR@2Y&}oyiC43!nHfd7D6*q?R*WS0x&nt;JG=FH#VR*X
zB%0OA&WR#7it<rZh=TT6%0xTlG^mTsN>Nmf;-x5Fj-pBw&qeV<6jh}I)MR>IdPx0h
zQB;rO#V9E0FMjsk&0$+Jgx6p&94zok6t$vQ70ak8wMbr#;*-nq*En`FcWm-myZ4{W
zs1rrqC}u@5JBoTyyb(pGC^|<`Un;hUqGc2fgg1=hO(A?*uaS_(f=vY9ilV8IW`fP5
z-~+39J->F}y;tRJk-sC@iq3z`y~F6;DBcsv`|O^OCFj)#LRv@hp^!F$RQ^cF$AWDI
z`Q!lQpGMIxsncFahbTHGB?r!{F2aXJF+7T{QFM!<dlaA1dm`^4*fXi${>`*rN#0vX
zAHlv+^b^8AtJo;hfG7qgH3tb9EI34PXr81^&WI>RMlmCbucH{n%|D7sQB0Q7F;UFv
zTwrVzhYQPoB0^doFJyw?M23@m2Q?*%&qXp_Fw(3%HNO!4WfWftp=7F%X@X7G=brjK
zKC+zq4dgdb%uMQh8^x{j>P`<={vDU+1$RW>volc~jN(ufKSc3k6icF58pYfwev*m{
zqxf0KuTjk7+PR>9kt}zB-=dfw#RAEGdduBdm`X*`T3czAE~rH!Uo1%Z)B$Q)6w9O7
zB9awRtQ4||5gWy7;TxmwA7Eqkv^5M%>E7BX)=ANNLE72CRWR&-bMesywOQnSMR{u!
z+oIT>)Z81z4&ghKl3hY}3+@s8{DRsiWWV46!Mqqg9L13+ZiwV4x1cC4L~${S<58T5
z;!G50Is6OiWE7{OI32}q=>vP%$;d5SB=`CSb&h-HMfJo*b)Gw<lvci|SmhGe)J1hQ
zifd6^j^YXjn=hBOI$u<iE~<GK6-`~|k~DIuOoP8i@kbOlIelE_QQV1Qz`cUoE~-DH
zU?QOo@h^S~(36*QnV9{Dn|~C)IhgO@-zfg$GIvnl!Tl&6aFcZKgo6|Z`5YJyd=BzE
zNOka-gCY(JIC#jxBMu5VDChtV9(J%u9xyIk%8j3xlfL)j|Nc&R)Nwx-3Jb2?kj2Do
zQ3u5wMB*8mgU20s9C#&r_M&Pcp~502YU)yYPex%nupIQymlkoLT~dAr0S7?`8JASE
zfo_%<au626uR326x$Pk8z>$jY`g4mrAQmZ<)@emHO+D$Lq=QNhzZ^y>2c;ckIw<F$
zjDr|0J9vuLE~&VKGzaMpdR%h-`PC)0SjfIhs;ms{X$Q{;`R9D@jZ5mpT{qwhUseeR
zSq^d?ly{Kr;8_PO%3)iVRkh2iNIylLV|`V#%c_EdiVl>6IhWlgDC}}sjk>HhUREbA
zt11qjb5PU4D-ND_@PdOE9lYeAs)K3{D%>wv-N7BHIAf?=y~q_8nO>G&)o?H<LzXuG
z*t?=?Ie68<>kjHj>1%?u9qbI|{(dKinia38x+1JcC;Pz{E8e)GSdj)BIB4i#fP;Y!
z-gMB&!6yzrb<o&B69?}(c;CTW4w^b>>ELa8&p~qsEgTHKqCUQ&h%>LK)so1WS~+-!
zlj4BF5s?J(h{$hVQ6D&H?cgH^A3OL^`qM^`-6(q1?F^OMiiF6bk|J#9puL07I9U!l
zIOyo0i-WEXwwFljB+8u`uHLlgM7hyb)$Xe5Ci3nMPNt>}y{f25<2@bpa?sa7KZbpm
z0=*s7xS!KUu+{yXU+=q9+@EnJb&Ga!AF%)Ye$F6{)WH-7pF0@hV5q~tWH8pjFbBgO
zTxh69Ie4^Q`4J9Aa=C@l$XRiV=92HPs?qdDskC?2W{o3Rn>E3~MA08FxVE#aFv-DW
zhv%WC<yGge12p@EgD=?=2eTY}<zT9VuN{2jV48#JoEKm23<v9F$o#eF#ggs-*XO3w
z58pcO??*Eo<UEo)sbm@xg|i)e?_jQjpB$XIs^&QO!NHFX9$Zy{YpU!u*ZGuJyQY42
z@QZ_A9n9lgUvo=4T~m1*J{71>zQDmk2YPWB#j(i2Vh86OoOiIq!BPi%9PD+l%)xR8
z8y#$Nu)@Jg#skMFzU|W}Z55lSmOA%zV)Qk&*1<ZC#lZ##^=i6*HT`%^4ZRs(C%wwc
zZg#MRGwxuAgCo}zD{ghLO{{%>Hu0|feYMlUE|KhZ@W(Yp%cagF7MyYaoa>&R*ymtB
z>pD2<;J;z&fP;e$4vGG(`vnh+kecMgM833R4vsrG<=`~exP!9tF?5o9<8_tCi6yS9
zGY-x&uB6t;BJM1dzpgGgxXAssIPw+8B?p(emL2@%;EIE*4t{6%99-ixvC)GCZgAON
zcm3byx*8y4+I4l)!7T@WI=D?wig4b;u5qTk?EdTOZwGfB+~bDN_&Hpl9RD_Mn)VO(
zoTh0vuB-nXv|E^cpHs{&{f25kFPjP-o23ySDU_SPI8uw_vH#=gI-sm3-tQK6FTMAU
zc`q-?q`oY>%Tf{q>4MUG?;Qc@O#!6}(wl&^AA%xMM2aAw(p3-?L6N5P-s}I%hwp#R
zoO|xv`KEs}c_qn6$SEO{gd_=>C1jD1Eb+&F3AumIROY5v{$|jyDpxYHO2{UGT9sWw
z*DOZUo8ACUqEu>pF0z-9S3>zs={H7YYF^mLBjJc-5h=YXJ)ea9T<ohT*%XpcSVBb!
zl_WY(6GbIx5`=_e5{k2BSV9R2B_))R@S22D5_XNqRGN`$EZfDfrkMZhU`P^{<_Lx*
zB%$ohKp{T$rYB2?a5;(uRl>!a-m074Zf-DfU4lXO5>h3Y5-bU>gzS-2o6(UFl|Yl2
zFPBm5Sq2d*vu4@U6ba96dPGP`laMYUgZe8$;>WV`-}1^)jqCvWEw6%vHn+SWDW_5O
zmgh<ECA=l!Z3&enye^@ZgxV6SNEmX<dqYAs2{UeaRV93RE2yrzgc>wNx4oJY4&CxD
zu=xCzmv-B0c-z}M)~h3-t^^{7{we>agdVrO2~RWXQLq0FQt3aG`VyVkNdLg1wS<Ne
z8cAp>p_xP{<{;mD-q_n-6KYbkG;ufM!^RaB-1eGtw1tG05~{x!v|+<-@8{bA+5a%3
zjfA!mI!fpyVfx@q?Ig69(1Azz(rxd?y<q3uI?TiUjLs6eNFd%-0ws}7;fseE%kJv&
zcf1}FdP+Dc;SUMDB=nYWRKhWd-Y9~;5|&F?A)%jycO*=bFj=CzsWCvpSPA1KdV2}p
zl`u@gaI$HaIEehVX5tWu&PK$56=tMDs<SlHP#S>>sT7Le@kU4(DPfF6XDxw}Ug@LQ
zcr+DtEtPV;FX48LL`pL6c!U>gB#vi;4<$_CqCSwY=vwMkwxLQVl4D#;r9io+NSG>N
zu7r6KKB6CgBz#Ph$hoG+YP?V*k*cOJQ^G6>v$;B|*Sq6U64f||tE+#<n=fI3gij<a
z<`O7%Ayv)1^BwP1BbSi3bIG4dc$J+>IA0@i85c6_jz=Z0l(34HiG=THb|kEpuvx;_
z5<Zi#hP+F{dI@VKd@kV&36z&gprS53Nv6E(xH=jH62D@;f%{7aZ(R#2+Q=1clJFr9
z!WP>6CG234vTtRwUBb4QGO%6Z)H@!HHl=>cxRX`^kNj>4d&svX940rG@ICAMCHx@a
zM+y75gVd6xv3YsbDk|rIgoCuAYa|w|8MN~VxASLi=TFQ@Tz|*=h50L++*9LzmGGN{
z-^pj{o5!W#m&Owkszyz^JDm<|qpu+p=&tosGzIigO~PMf!`v7aq@I!RH!Xh&&n29d
za8AN4no0?~?|A1W(2s=wQiCPXeLG(?wl31xHn#qu&8=BFkxSH)`sQUuB3GDPWxOWg
zdQ88;<R)W{k%@OC+?DV|!cz(Nq~Omu3J+=F-0|*n^a11jJKiHEj~Pc63Cwcb^_rXJ
z+(M>u*Lxx1CAGvctAr32LVO4Xp!*>tgpe3Qu@H)fg5SC`g^(0Na_GMkln_GZ5NLaN
zb;wAT5OT0tR>o|M*<WR(!(}#mIYY?B(cFv$8S^ma4Iv+s{ESpr0VWlS1V{fAVqQ3e
zB20?LY!b4eL<l8AutRV{C>7JK5K4zoCWO~mQ5hx1P|POGL}rXIDulU%>L_R-2o{O!
zOpFlBn9^u}a?R5JSw>l;(_vgDDIt_)k{Ut=lQhP3#&V2QX0^Ls`53Rjq+$q_Vv5J)
z$29A^WW90-uZKXSPlI&Asv*1)LbVX8hfp&_uShj(Fw)%ZoDxUTSNP+UxH=)c8A6^2
z@<vcMgnA)d`b#Y(<E;?h4&hiBzlKpiga#qp4B=J?4MS)Y!mJQxhtN2LCLxRnVPptR
zX^KPW8$!QOaLi5f5L$=OCWICtv<zWDFFlK$*s+>u6~dG%;=8<}EqRNT*dc_D<Ue<`
zb|Lg!=d};vhs=UVrx4ba6rDrp62hU!8u6~NUUv)8c@x2?b`PNki_<EKo*}f_7`$eo
zR|vgX>=UzB8zsIILjMp3hcJX%62ia`es3fOh3FHY=-E%a8^W04g2KKsL9sdn-7`Nl
zgkjXR_WIzR=JW>|^=LRp55$X6A&jQq>O=S_L?`)*F(G_N#&rH~2=9k5HiU5@d=SF&
zR)SJL=@Q_0w(Ob|90x|xMg#Q;AxsQmQi%REM?KddaS9VUiK%{}z-C$q(?j?;gc%{!
zzw6B^EGD^v24~Xl)R`f4z3Uz5rf2jK{hn%bLYN!EE}H!i=7lgngw-K@7Q%uM7KX4m
zge5d7PqjrMd=f&HTw>JS;1-3K>x1E18bam!+VT)q@Nj)fPLfM3W1M~0TS=4hP-~Ye
zRx!yB@k=T3Keqg~kysPL+7P}8VQUDVhwy0+u`Yx!L--<uK~XUzuc+Kk{AP(gOZ4?2
z`X@rPX(_%6VFP(ZOR<rW$fgiBGygiKY@sfX42-wYV(+i-2;tihy;fap=Xw)Mi=83t
z5#qvDGv%6g^tN`Pq}WXg`DzHilH2DLdqem!gnc30zOQ{x9>rw-tW=8b58(i<*@cNe
zg>aA^^)R_X2-hBJhZxO8!FgNj?s`v?#i}RT&orv{wO<&IGEy|0RU8lDL<oO|@K*@G
z(L(5y=`^{45%|yVA)Mr<{=s;PF(Y2oZ5)*R<6ZAe2!GQ!K>QoR*$~c!a3O><L&f<J
z49_~#JduzB9iVoRbxQh&#=ol|aw&w%oc9WOMG<i$gsU9A#z<ver|y&#L?~SDAZ~|n
zhxXwxI)`yLgnJ=G!cfAvAHstWvWAf@jEA%ak0w72;aLc2kF`gPj~SoPuJTeN@p%X@
zXz1bv!YGz1Ueb2jSln+Sh{v%KA4UR`M8-^vl$sPqGIKf>jiNLHnZs!QOv}PJ=?#%R
zj2vMU38QE@*f(;9kvoh$#OsP&j7J=iH;jB?&_;Kuy7*r`kw1)rVGt?6NQ9P5p)d-E
z@z-6CqPH2Tu3}+?!U%^^oC~M&OE4)JMyZ%mI*c;Rm+0cPFr*kK<D|P<?F5nR2{{~G
z*RtL7)G)L#Duz)h3=xJNh7(4VO1S44Gy?gB&6Z{uRv6Fc1v6gyQE;Uw*H5@)kR;N=
zNDm{0dD$>hnY?X_gF^+SmJ4J0y3~v?%5ynI-Qf1x3SnS)Fmz)Uq|!d)h2e)$H;j5=
zR1V|yFlvNRGmI+XU~46_H^Qi$A*zOhYc7$uJW(wS!s=nX-9jf){+>sjCCgf2TyLY-
z4x<iN_a=4973Rnw=`Au2qeB=SY5xzS0hLBm#%2w}!FJa;j7A(C!q+%bnuO6bjAt8z
zMqYlZwFskSI9L?z*{oF<t;1*&4j#i?oj0hWZ5Zu1i8$>-@~&V<%JM>^EG?cTO~0nm
z5+J=x7+u4d6~^o^x`ol5Y7b+07(K%18AjhQ`i0RejNW1N;nLpA6cpY$pGcaOn!SI(
z-wC6C7(>Iz|56(eMum!EdLRAWFy3!228QwJ9gWDKFm_fE6b3UH!uaq;Fn6?Rj|gKV
z4KIy+4>2l?(Udogv0UI7#`hT0%|r@R%eXMsbdURhx*x`Pn&M{~ZQU1=#01i>Xcb3@
z$ze=nJ}HbJ?rQY*OVTIi6qGbIjE}<jq=`N)jG4p>3gXjQ`8bRjOggViC2`jmX3-Qe
zCycpaYzgC=Fy@6ZpB6<JtHW3j#=<Zbkv$EOA-X>bu43yYu{ew+VJr({c^FH%*|d?;
zX7VX>t(#8m|5g(#!icXfR)s-)B{!8wwi_CWpHVc7FTz+yo}46TnVd`&Ys2_F3?ft!
z;g`IQHuH?Ef3?=a*ub+-&7iQ6#Z8QJ+6Yp<W=<Eitzm2n<GV0+hp|139bxQxRZbT1
zZ8*5*)|;!Z&mwlx-1*{E0r9+QFw1+wXnfB*6vkmDd&Bsi#+LRCj_#)d?`!**li9sS
zg75%G4>C5RwUb*Mp}pd+_EQ*}vIS-SOio_N{Dtu-WAB&Rqo(3`7$?HG7{)*3c=x>D
z!Z;nqpW)!1z26y6hVcgzQcf}Xs&eXI><Lut*)Yy<kN##H9S)ZHIp##pGr15(5_|H$
zVO*lQkdYwcav1My&bUU~4t@A%ByyGZy~A-tu7`1hJoBD+GmIf|sV|w|3gb4DJ9G(P
zaxaW0Ovv&+lLw3s86Pn|rnT9?Bm)XhX;HKIobd%C>10Ed#>rT4&m)p3Ba<BDDk<Zu
zdtQ=^WEqf=^=#U{dtPQ4=kIxWWaO2RMGi7%Wy~fcyNn#nNzBD0C*!M5<&N=uOp3}_
zHlsXQ=I3Yu#)2{mF(JLMj3P1q?4DOF#*51+!F=gA!C2+LAGEo&j50D_lOf4iB4eqH
zkc=?(LPmQTvW$ofUq)paiVRgox{Pu%G#THGuq+w23?ak3@98oO8KcUYCe=PWy~><)
zd7(*BM@CdeoBLj>3|B^qjItc9cHbkB-nK;eW|~QuCgWWer{4E6*oMT4GRn(Xci*eP
z%0FAv_TKj@$?#-cVq-cKBmRN+x{N9^-j-2cMpYSa$fzx&j*MzDs>`S;2hW?-U@Y_?
zcsW(Vyx=WQwOAoid}jKaGCHnLtj9`SMuROW^(`uac>@^@Wi*%3LPjGQjb${E(Nsoj
zPNl|^F@<I_eyNvAWC-gmWwfG>Qy<Av#&j0z%nBN?=7F~%DZQ->!d(x%4%7x2@5>k~
zqmzuzGWyFHAft<nt}=Sc=q00@jNcx3-DUKk4sszkA9$%u=-`juGWy8qE2AGd-b1h0
z!=Oni550G&>Y3>@O|>6-)T&OY=0F;48N*}@moZ4j-gA`(%NQb~?L%+aLvJVz`!R3M
zL+^`+9+8eI<_H-hWsH_FhWe5@eH6{+%wUR%?|$e-&sEwrEB!qgzd!Wo<P^ejGR9M9
zWqd5-0~sI6m@4BV857uBCdrsAW1@^XWz8E8y`-e{q(?!<DROY|N=fF^C`+o@?2$*W
z?V^e*Kk{bCm`Q6*#zGmhWXzT^SH?UZ2YUO~JCD3MG6v2}pGc&vIiI|Dq1h)now6@~
z<Sml%2|Mj#8Dvajxc!m$_KCD#9(i<V%cr!aXke-RGM39&A>&&aJ7uhtv5M9*O^}TL
z$yhDpa~WTd?>+K9ld(ny4Sq1Q_r0~$@}%@;a{_;+!CWWfOBw6Avvg3)^GDv3#pNj!
ze(Y_Ou}Q{O8QW;dJoYxr_*%vm=Cr1&KK4kY@C_?;2F-REbX*H1QFnHb`#ttZ?EBc;
zMct8cNXB6qyJhT=@uQ4=-0QtEexNab?0wHs%1B*C=5!kB{WK1bgEk+KLG7WWgKYEl
zV~_X|89&K5CgWEbKa(5FILd=|__25KvDYLyJxf`WT0)LTc$_C_b&7dnR{9AUFCKf9
z=BA&N@rR6uG9Jk|CF8V=D>AOi_*2GTG(<8k$~Yq<{}b=5jB_#~PrSbwYdi@WaGtAc
z!+a;w|B>-8H}5ie=@ajxC*CC)*XE_Kc;Y3`O8@prFf7+(T&IbUaZARDC*BRVFE}Ti
z{GS~Dwv0QpgFW>gP&1x*cV)V{2=}RLk35P}cQQZqX#JLa>XH96ed;}?VWE9H0z~js
z#xof&WyD4BoI2Pc?FIS6Q*XdiZ`xCj);QH3A3;I{nIgfu-tpA?<EfVz33eL__nrnl
zN}}kqfMkv!O9a^>^xHVHMi6=C(J)qg7WgXh9Ap+ju1K)2((E*O7R=FrXI}0Iratp1
zPzm`W$R9!X2zo?NAcBGsycU5J3Er<*D1ssp6lGpGf)&p^61OuJW3hMy9c!kOSR#Uw
ztPn31L22e?V#?XAiJ=Gxy$JjW!V$>SR8CbQP$MXdpgJuA5yARx!4nxer=~L+jAjHD
z6FUNz37I)eqKqFMO-rGon5RaN#^jpn{>BYX{47&BRw!2nlk$ue7%N6lDV93?b+2*+
zuSd{0f+i7EiJ&Sc)rsH@Ce#rsq*~0rI+GfVH5qF$)}~3>9!HiG-lSiFSR`JL$y<zX
zM^K+h1IC7oWYdVryNA=8M$jyR)*PLEFui#Mcey()VwNqLw2IZ$hNEp`sqG?Y&%8rS
z>Byv01f7|5VeA@9?M4H*pgc98X9T^-1L-{L2zp1*CxUGeY>%LC1pOkI8^OE?-l0mL
zdt)MaFM|FN44`R!?hTA!XavI|csGJU5e$xC2o2-&;B8%%o_j?4KKCX(_l8F>B7#v=
z;B#+e1f)=))I~8ensZU~{RqZJ@KFTQBG~-g8yCTcWFNtJj()&+@VR&4xi^u#@r5}#
zg2FF6B9kI`@jM_?$lD``zVNEQ@Y=lyS~5L?k0Y2B!R!cTP-|a!GZ|;R@QAN@;q7|i
zop|9<bvIvlb0Q$bOK*Mz3nEw(!P*EGMzAP?r4f7@!6#H&$MW@Gdc9wIrC)lB$^Tz^
zOUMH`I`*ZvEP|C0{QS~ePKziK{Ib31rT6vApe3s!_+JF8Bl!2FS2WK5EP}*1pDZb)
z#QC2`@CA2jV+89W_%ed8xSi`Gs1@h0i1U9to!T+ZpA_eB;Boja&Oa6BZz3MS*Ad)`
z^S_B;EA0&N{uWws@ji_PRr-3oPl3n|n)e9)jNq>bcG6J1@D4<9FoIpQV??k!f;|zm
zi1&YtU@xbBPu+jv(L9nRksl(UAtgdK`y$xS#>A=nhaxx}!HEcdi{MBEKT(t7{a<Mi
zBKReOf${z^#tHHMQ5wT|pHdIR`<EGyN9ZS!fRp$;XZ(YvFTqbr@J~iSdhrDR6b)kp
zbrJ$Iic*1RBKSLkYY|+httNtVWEnw9$MS6x{PPj~!y|Sff{PK5LP*^w@-OR`7->kU
z7RquZf~&Lx#QVcJO5{caw<EYip1?XOw<4II5Deqp2);@1uO|3Z8j*YK%tsUa2fTb}
z1wCZ4w1ap;n|}nkHRRFoj5dGTW>th#yolgs1Z@<wRS>5jUO}3IbOi|t5)~9sP*4G#
z+MG#2b_F>UsGplj3X&Cod1eJ!nPg$4)PzIj2(xkYWrCkm33k`qglo)P%qf~T(a)nG
zFN^sUOnH(>srfmoCHllGB>IJ@<lL!;o6t?aD59XK61)v2s-VW?jA9CkbF_p4OM$JR
zq=Hh^+UXfB68+K&$|!h^4OB+TC@Bar4=a$F{C2ql=@I6Nf~4B16xCkYGwQE+LDOJj
zDj1UJlg+$De?y}0C^(VmQz*6Cqb9iuQWTU`a6i#cRbXWDNz9YUr)W6^84BtscvC@n
zCHVK;r$KJ2RZvh-K_w-4Y@dS1q|#4f$oC>&<G9KSURO{vlV3%_8w#o^sLIi{nS2uK
z4NI?1L!n?6M~4wAsHI?ACcn0V2P_i*HIr{Y3BHHcRZvgCTRi?v6f{-vHuL(7G$RcZ
zG>q{^3L3}wsFTUfn73x62Pm2=XrZ8`f;>sS!l9J{j|n|(vHC!II|c0(tXJ@rf({Bg
zDwv^Qrh-liI@1^`7^=`6FTo)}-5I+wc4N%mCO99bhk~98dMUv%LxULURF~dt(1)?F
zf__ZM_#FlPnGc951DU)_?M(8?U@({P^~m64pJ57ylfNmLs$c}0Js6}<P%x7DC<UXL
z%$}-`p-G&mA0Mp0r{H}BM8-0XV;s-;0V5@SsDO?tBQlW&pAPq7Br=%^9SlTOf20J*
z#L#hF)3`m;70}^UbYR@aN^o2qoqRM)!EAC51$0&s+0Rk1NWmux=Cb`fM$+dqS-`lE
zmgk_rc(DRH1#Gzz9B;RTIYpN$_>}oF#uhV!lfqW8%}T~q3eL^Yj||cWPtaE@p!0F4
zsLyEd-`CeDSgYW3uH_2_Us9A$cUs5Fng+oMJIjXY8x(9*a9P0>1)CIXR<KvW_X@sN
zu!S5(2@W3mhH4+E@1CLWP_UJ=Z&UEJmA9R-Z<0@(dO;(zQ^78-=sV81n`UsPPW95*
z?xDP^f-|k?xSt;s98>VCf*%#^Q?Osb0R@K@98qvk0i7>)h^J%ijNojww!?xBQonvu
z@UwznXjd7j-yEzH9;F6P368WQPDe5wrxmT>jDo+Z!3ut-ZSY<Fw1Sfg=-js{6ZAir
z(1Ax=ChMojizWm|u>GmvFC{nyiHymNMsjem^t0qVgY|!Ccom#ia6!RE8jTS_UnrH@
zL&wAUQ}lloT;ds|Bh|>B8hKU0H6Eg3Dy}QIq2Qr{M+$DTNP~G_!7b*usZu349`UY1
z_hSTSIo;zZDO3*i>wy9~+-<_!agQm>2t8g!f{G{1pDJiRQQtX6f2QEM0wOOMiM(VI
zrv^)pqKRs-PV=iMz$BB3Bqqr!z$7zcPR1-MvNFlWNEx#;$-$U^aBzH5E)}^snujqj
zBkB26yfP@rRTpL~#7F}>KFO!{6j4!>vh$gbgvC{qP*GA1j<GAP2IobVVouS;Nj^o(
zsCbQa;&kLwScR<Op^8T;A}SOW9aVHvp{meSysn~(3Zc>ynu(5zs0v*Lz1rGP@lBFX
z!Bk-}w;4x2NF&izkrFf#87ht>`8SgMEXjUZsyEqBRgtEmYLnCp{ZrFb5LQk0Y1=Qa
zqOyun$$sl(zk-U2D(v^nN@Uzr^B8?bik^9yOlGr_{i-V7P|;LHGZocTR98_)#hWT>
zsHmx;mWtZcq-6h>WS@TiTH4pT%sc^pG;=Ebb5vKwTPohB7M2wCRGe=nh|q7d^;I-d
zgFk2}G*Hoy`S_RGv7A9_V--zUIetewP(oxBGMiIV;dfBcLPhtgiKMht(Te(B$fVGk
zNgKwtD%vq=&q(h#B7;d&<7&e1tfGsGPgN|V!7pfbRWVS-yDGY=Xb*o3{O&4xs31b2
zCzD<(dNb)0)B7^%r{bNM(qF{@=1Vx^AQgjEOja>P#Sj%kRg6<Ho}5j^a22D;QpLCM
zN2oYjH+3X=^|?w*>!x0to;pg!wK~BkfpXI_-c#{DWp7}ffKNCh(Hg5_LfzCG@G12J
zPMV<NLnh}oXOIEmM2=2kOv>y}Rq>IEIV$F=m`2{EVy22&<hq%CddJ<zDrTrCo7u0O
z*{`}kgKC*gjj_`9OwL5SOr!E7&Qmd8#V0Bjt60FP3so%QTod+Zka614j1HOok&i1;
zE{c-4M8#4SYig%bA%x3StWa@`)`E(aDpsl3ui}7;|EXB5;!73lskNE?X_<ZcaPpao
zKelG9QL&Z`=%Gc%FBsP`l1OjD{EEuY?0=(TtBMV*Z;YjGVzODq*G#s=^xc{L6EBjt
zso16BMqK$#!riW7M=bSQCOcKUdQJ3q9No>hCuXyk$@h#usQ59a@1t^R1y4^LRB?#=
z@{@{ft&PLf7w*&%a@1$ZUDe?Bzn|HF`uhvbzKRE#{hV3+2eNTo#R(OEt2nFTHx<9D
zI75Yel0sRmEWSM=(@C!G55`j}PBZzF@h?WQ9P%`o>LqfH7MhBCDyW+jy`bWXimNIv
zs=@mT{$cxn880zjW_<Mu_iHMssW)gSm|SPv$4_ch&l1ehEjGT*c!%*WP4SW7K^Us;
zK6Q!~U>1LP7XMgW`NwRKRYNu{n9wIGo~n4p;&ZwvXh_uXLZ$cJp~lYi(QS=54d3la
zk7qnBTf{SIn3KiNtl?{}JxN2dhEnYfFcLW}r&3ZDHlSO_vunW<zBw2#%&~~)WS)yL
zJx3xbc{SwI&{Lq7Kz<DcG$aTl3KY~(NJDE4Z8Q|tP((v{4HYyL)lf`>t-;YyTtf*B
zvWAF;k{X(Hw?Z1i)EMTa>7g_YN3-~^Y3S6=T+!7eE-@!^C5xXa-TdczYWIaHiUyVH
z&FbqKG!0dbrwR?5x|u{yuP;wXyhf*VLxZV-h{aewJrJWBTnz^orle8Zvid0+%4$fZ
zrY=nBb3B!{yV4!g`*ku$t;|F`od$42`EnXEm{jXu-p=Y*)KE!7O%1g)RL|;r8hj0v
zHMGs@(+BC-sXZFr&`?c7RSl<VrLW79IyI|5IIB;*I<-W@Us?S}S^cVmz4K9XO;&$j
zR=>7}Iy49xnre7cLtPE^X`r(Cxw857G<u7U`IZLa^t&1THuW|&W_o!d4Ky^=(1;qJ
z&F_=VZ%iFIklrMl|LeW-xsRqb(~$COT5}ES4hACe78*Xt=AYi|wbal`1KG^nYZA8A
z&`v{tsz?j&qie6BgNBY8hHebrlGjNKUjERJu`^>A#;%N%)Qw4Z4LxE?PYu0dytjrv
z%=^ZaPqO*%FfY3~c!9$}4ex4LreV1jyuxCTh6x%bY8b3x)&A5WEbc#%I#k0j4Mc`(
z7@=XLhP)-sv8;^JFj_-{Txm^mr;TC#J#y)6J{iByQ6k5(`QtQ<r;=Nyf565cGEx$i
zGfBf_4f8cD&@e^AR1MQLe5~Ok4b#X^vimE>rS5o<bTgYjZ;+Rm-JhXhriQuX@Y(%Y
z<ki<Jmgs2C(J(v4NinngRkQn2eQzEOY<8av?jO|`YRJDTeW`{;8a~mmSi=$xJBMd{
zJ1C>$*woU;^eNf>W5Y8()$rTMj5}@2l~lEcm9#E29HRlDtw6&z4cj%W*6^8zt<>7S
z;)l_}Kcs8Ob8?8a8a~(X1x@7@Z6o74Mv8vPWW9#3m~4pYO9p15)J+;Tv+{LJ-=g80
z7+=&f@o@{WGrPY-qrai?lZKzE<>X`6wBg^HM>Oox(A6@&)395^o>;DZO!jK{KBoMj
z;l~)KKU??5_yHydH5_8{`<P6J$rGLifBFw>CFowMUuaR33%W_oATltg_*KJk4d*pn
z&~SoAOv5=1rx&Fj%kKZK;Uq1YQDW*njiP^OxYS2bI7J4`|BNYrF*(Edw}!J!Ze{n$
zxXby9w>)uCgV$U%Xre#T@Q;Rn$$(rvlenc}-V5zAbBbQka5cuSF}cooL&Hrbb4v;`
zqb#>M;~fomncQO}{XUZij1L))-qIeEmp0L#FcNvn<e7%&OkOa)jHSj2&}~6v_QuGd
z!I?zxgH=I+LQIkbk_8};S>V9ODcJ>b2#lVdl7%s=KsJGXQ&Y}$ET1KZpHtxZCte<b
zXOGQX%yTm~PERF0uRuOQFQGE?3ltD|oR&7hv&fPHk-`E+1bquDw<BAoq5{PP>Qk!(
ziVKtwa0H?PB?U?e$N~|8yy<DB1tftG^D>ODQ8b5NDM#>=BOTZj7HG@-$W~7gPz6i@
zOF$D4+&hC&7r`3>r{?en<?yr34qhq0B8N}qpX1*!ZGn_eyeTyjT_OTi1gZ*@6-X7R
zAW%^tjSDF!kU{Mi*p|aT#+9D$7yRy8Uf`QN-V;_T33vjP1^)Uacp+hloIyK%>iE2r
z)SUk7Tn;I>a(izGR1>HzP)DG;Kn;P;IsKY6ZgCbFP^g>JuNAYecr^7*fw}^3(H!wP
z3p?(c^<t@o+Iers_=uc-LxDyDU0G=?&_tk>Kx=`f0?h<w=JZ<#^loT27uaN^{oTQ&
z0i^D?Wc$@zX&V|<j&>1fC(xeSCa@%@*+JmDoPI}vP68u3m8Stbk<)L!!Ml~y&zH+@
z!!57zAob+LOx*;!3-q9V_4H^cj9mWOIE&1B3-l3~p<||wzT{T|Njj2syd%(GV7|Zt
zfdK*oMX*iLeNgWT3}QZAV6eatfe!^H2n-ci)JF{Cq!N3BH&ErOD27w31V##sBG(mo
zUtp}j7#e}z!L2**(SVl_)pGfC_XyqKM0}jU2d~5uV!S}kwt+~2cFT!e@+5)DOxon~
zrwB|Hm?nZ7t3D!E%pBa<NyV;crQa?r9xjR_{bTBy2<}vz$+_kV%o3O_KsUh5p^oJ8
zDT#P5KiIG42^`s;Iwe&sq`nCJEpS%g6M@A7KMDNIB`gtGA+S==Lp@@tz^4LB69w^Q
z0#D}Z%Nglj$5jIV6F5xsl0&Sf1t{>Nz&?RB0&4{}3w$l`xxg0!UkPjwpxY+b39P3E
zID*2LOsG4wY5!G5&`q!#1+o?rAw3A21n4fNYZcR|&09op)9(*Av~L8qatpT!d@Hb%
z`F4RFOz1Xp`pQZ6y9D;KLi{^{-7&t0NxQt_dnP}`^f6i@4Q5<OJQj)j$<?V}c?5-n
z0*7Ke+*MFFkI-W8A)59Ozi{4P1^vGn)OeIe>5g`cab9zAoYt=|P6+(QX1|kH3($6X
zlB0jb>OIBe)lEKs(&FXlnOG{_6MjzMJnf=-;FcEzF4Bx}>OTVi(ncph^LR<%vcNrB
zJ9KYhesM+M4(&zx#Z|^@j1;{ta3jWV3fzkE+q7l5f($6!WszEL_Sf$VJP>$DzNaL<
z`gZ?_=8@j%aZ7tb+Zt8cK|G^Pm_Bc}NxQN*@TeEGk(x%mGUDx0B2Gusm)Z<roa!BT
zU4o889d!94o=K;Jr$wi=snC&GM|~X)bY#(yRfnu2q9dD*>^dawbq*alb>!DkfTOu|
z<kpc#r!Q7Pu@v&^$fsj_NBy~G9NZS%C^$8jUyzLpGZtdBvkAI?yNDj#WLQ*3ifI(n
zQCvp}9qENcX+2n^B^gUG(v8HgR%IC-UoF*NW3jhIZ!aY0M3~E@x>oHr6&<RMdOF_H
z5!@rLBaO;r1D!EdhoQsNVd=q5v#$Q%;}5nDhYg~!(*8*fI+eoFvW#>WA1NQFiE=tJ
zSb0-Nc^wsWcshI?HwTD{IyS%5QmjPcl~~EWK(9=7>8P%whK_w*L=_!XIXiK>bM*~9
z*iWeBYAp81Eo$mmp3ARIou%(tH?>+iR+bN3q7Ex0((<oM9lx(_&E?Y`NO|AZ>DG>b
z9M9zwHq_BbM|T}PbTrn{giG$q*i;XeLmM5<bTrq|f(Ns8Ptl4=OPxMR3fdm&md@5X
z#&-$s?QF{#+v#Yp)9ve`1NlR7(Md-~9hK(?chA08Uvy@X^e#F&WD`WXaV|=|n#=F0
zqnD21G~+sY>*%9nkWLTUi#1oZzO?h}=&z$672Yto{gT81I_ReKFB^+*I_pFRa`at2
z_}KQWq!_GYh>oE&Zq$Hwf<6jTF4`0Fl?wPs9iw!7pyNXwqjij-Ug-FDO)A~~P2>EY
zj`wNGiUgb9SRGq#Y2&z^5Bunkm+NHKv!9rtBO$kca$V|2IwtCvq+>EG6-x@zr!b$&
zSg*ZK%FL`{nvUr@KGyN)&M0;Hx2>tkkF{AkW>X6dyl!BQj=4H+kW1*8r(?d3tva^p
zSfFE}jt$&~MLIsw@jo4_bu8Aggv#urFVoS@6H9f}>7vv9y7yAVr#gz{_DNh$?wv=h
z&`~zGPhlmKReErNXpr0gOvf4>KNk{T>R3w++iq61#5x_H>-d7a<$B<9Lo14=HAH1O
z@Ei*3skO5Bil!!WAa2yLNe?a%n{|9cj`2kMnj1q^Z(%|TZP%1>yN(??e$jDM$G19m
z>Nu$5kd9q6r#imZ@dI~ow~jqJR`4#g*%W)pXBMXB)(pZfBZ9kXsi+@mjj-{49S6uK
zTM62@rc@R0Hx-9jKf>!}jg=VO0?Nwsy5eVYp*ec975Xt9zv{TC;~!2suHz3Kr*xbk
z7owd?$4T1Udgyd7H{I^L@sZXuw@-WKX&N6LXLX#T1~&>^`Y#=4XkPm32Nwk4ZyoP;
z)@MD}Xn!UjJ5PP2hZ?vFGR{X1rsI+xJlAkp$J2Q6YFOy2$`u_~Y3k#}H67P=6eNSE
z8kwct4e*wZ+d4`aC~e@5j=R)01KAAR({W$NGab))gL<Ijk&eeY9+LMu#@r3T*7}6D
zg@NKJZCrPPxuZ)VMd{%k;xA}3H-d?K=eG8e9QBSCXCU4PZt16xz$DQ?CMHRY$+1)z
zIN4JKH~(`9v{%sW#MuqxFi_Y)5d%35<T8-oKmh}}4SbMK{M$N>HYFl?jNrkyyo~t_
zjLq#+v}D)7Zwnf9SrLVdz#+$X6;1TuYe-Q8#SJugs1+k@qVKz@5tcA8t)3{!CDXO3
z&I7HCf!7Q;2BOr+zPe-}WFTx{Lb@pWT$8Cf1HyoAKrzsxS)67BJEv;k?mdkHb%CP2
zmg|NQ+=_g>jcyvC=X92CG>KaVY=i#K4IX!*ZPqoAVxXddv<F&Q12?W}<qeD}DpE-?
zf{{!&KuwyL+b3R*GP0O6Sx}S;uRv|{1${THWPl3v7=6a|xqVWq7^rGso`LxW-Y`(j
zz&i%|8>nuehJiK)+8U^7pq3F_pqm@0Z3I_`ItJb}K$jkRZlbP%dIlO9Xw2Pwi-yiX
z?>ypd8jy~9eMY*EovscfHZ(xb;Cz=LF60nR3^X-R)-`C^lKYXLG$S9N8}A3|Ex5Xt
z6ipSanA0B$t;qrCn`vvk9h>zsf(Ml7H^L4EIvT;}%q|AHGU;TX^DB}gc>1ZIF1i`$
zX<+e7t-FECxdWw#fm;m(-L+m$6?75l&877*(3b}Mnl`wq=*J3uV53?F7#L_^l!4I(
z-Ze1Dz%Ng=h7;ok8^Mk}%)oFOgtHk#7>6>__LyEqj4&{g#<QmQwVj|S4fv!XVvK?J
zs8a?$GVnh4<pYBrc?cHBSQ?PQVjSam#)l8I32Z~V<=zHjBJ)WGCR0nwiYbir$Odup
z>S+e1)80-VqKJ>lZ_A1q24->=YEPLoF==n=z7}GZf!Qp!O9+-HZCrE7^Y3a!8|w=U
zETlz29W=1Wz$XTF8n~X@Uu<BBf$au%7+A`AKR56NIk16c29_IGVPFjfH#jD#c+X5L
z4Xh$>j2BlciT|<vYDP-^j4nXkgFTI=W~~uCyEnUU+&Tka8rVkO`%L>n5$g?XH0aA9
z+SL+Y8Q4H|DdLZAf^f4D{C2d(z}iuQ!q-gp=k~v$MWhDGRvyXI_k!{>@`-P`UV12!
zYNT19hr)J|{~OqCV2^<V1`Zl1m`Ch2@V$Yfl|*u$;1kOa27WZKkMr*5Myk<7@&qb#
z7!t_f5Y=K}Wi3J1*2C1!ugz#r@e?cim9&W+#Zd#t4E$r@Ujx4yI8OT*m$t(f%Z3HR
ze!{?S27Wita&ao{lhnKU+sr@M=9Gcc2L7b+q}%=tcmwsnn4h8PxE*}O`<tV5wWWvV
z&KWpQJ{c7k41AU~P%iQUrzaOKk+&OoYT%gxdM1%7y<*_1fon9U25!?PZ{Y8yV)Fp~
z2Ct5Bp~RcCF1QWk3}k=Tz}#eU-@pSV_ZSz?PJPHW^kM9Yfky^jJs9}d0BwM@rbs^|
zjOPYk(1e=E$m72xo7Y6ViCT^HIFtSp3BEJZ_W~)8PfDVRtL+2@n*C%GF!932OFwuc
zWo8puO=L5X#SEg~)<`1EZX$<?f@vs}hMXpHnW*T{BgV*WB9DoM78Y5^Ya$<2Wa6QT
z{3Z&Rm}X)+<uXyoL<bWcO%yg!#Dr(UH&N6?F%!asZlbt}5+)=QA+EG(9>1iCQuIbr
z6W^V-%CP9Z5wzqr=0ti8aKk2K6B;XRju{aqiivmg_+&sqWu<IFMdD50i!)4^)N&KV
zEfcnhbQ3F9#yf15#u#OE87Wr^ld>jKV@my24(Uq@1XzxSn)ULG6=F6O3dC26@ls_n
zDw}xSL`xF~pITK+R5ek<#D?zf8!?;eCaT5w4_Vz+KL&-@q`5OuoAtL$yv?Kz<C`Yx
zGO5Q%#viPYuOH)0Of+ELFs3vz(U|!H)g|Mm%$qSbkJ+?fQmc~Pib-q6HjHf<+c8r1
z_Dm*!7T?K4XBur2gG_WW(bYtM6KlsA-Ar^h@eZ4fdS>@9@q0=<W$bC97mJq{$5FJm
zi9RMOEj1|gHPJ7|`>nRRXE(`UfQgIOED8fnBwulf3^p-@OPFM0D3cFNd}v~riQy(j
zutFKfn;6M_6ys>dF|pM5OuQfCW0{O&EZj7H#_j~lerUZ-IKjk36GyjN#7lo}<vw9d
zj^&!dWGdrFCe9uTM)hM8GfW&Y@so*}CT5w~Mc&IcvrR0ZWnyAZtc1Bt<}uD^oSDa8
z6iZ!i;uGeJO)N37)WoMIzN96&%U;HMsn)@GE+_Bh=t{=5CRQ=|ALDAq&lt&g4J}(Y
zSO^q8XYmUY>td-DJ`0k%O)2}8iB31;Hn6^taTBfm>dt1yuNk*6e#5xc#5N||O?=B_
z2P0*9B&Y0*apS(b+r%Cdhq=tXjQbfM)lB-{#1G7WWTcktW0Jjm`~fBh8RN!OJY<4!
zJumRxrJbKm{9@v~i3>DSCXSgnW#Y6+$C?Fu*Gb0Xj1)b=<Tvt0CI|EQ^_Dq*Fu%kF
z{>l7|iN8(!#hh~O=#X+Y#?R5lm^av4Dy<E?V)jbsA}8H2@sEjrnO`DrtP;%5WfNCe
z8Me*3%H*1f>n6f^{nGml3SM6Srioj$iM?*$HgV6yeKxzpc$a*Bd@w0Q2)kYlmdqm)
zk4-eQ(A>fk6HiS<EGQP9nRsr}Z3alT0^=8)CDFo58ZHa*ERwEWk4s>FwtmpUOw7|C
z1SP{lW{!p|WU-LdLTL+SEM&8g-9kPK`7PwIkki7ZW5$yg>ABcAw}m_w-hFA@{4l=I
zN~`Viig_(;-E2`P5_0w~vyz7y1uPV_P>AiR0aRCE=0zAOT9ipK#^Q`6ER>9;ma;JV
z{S-2z@R|jQ^&V608!H24-s$)-D>8L<dP43R<w#U5XclT%sA)l1&@I>&9BTg!<IVeV
zh6U3?g$nVz?*=7U7P?;#)^F6p<kn6F3l%N67E&yfwUBC|UO}h4g;JM|Gz%GAS2|-k
z3$s7BC``H<ZN*-3H6cpnP^e_#4YnDS+x9H@%t^1z<aNd>j8&<3WrDe&P>q%9jDz#~
zwJg-OP?s8DVO!7O+E<5@h`edh(dYlw^_GSDtiR1jm(EcM!RFb(LPHCUSZr*eDa~CG
zr%9}YCy}61Qd(GOX<?X!;TBq1Xl<b<+qALJ)<S0sT{zm#LWfx1_7>t+2UXAl>}a7A
z>u2u=GfSZ>ji-ek7ViGxbhFSTbA?g=vzk`_ueCMaa(h|mZK02az7__>%Is%hK#ae`
zq(9@FyuQBE7)U-AOI@1RA8cU=M~5<IpOo^})nGl2urSiX#};N-7{y6bEKH>lwlK!R
zdluejak7Q6Og^-5er(X@aU30Q;R9+C{j%_`K{$a^$zY;|Nip93$H4wxmz0k<%XG$R
zjHK_(>(4!9ojV^lGp5WU&z}&C%<Pyl$HH9Z^BCvH^aU2?cL^rt6AOzi6tz*z#u5ul
zE&Ofatc6c4EVJ;fg`F0bTUcRXgN2P2R&ohnGOn`lKMSiZe8$mr7G|vv8oVY}%UUL%
zGk#&=<dH;5UAQ8!p|GCyuNY~AB4v|>Z)iocvf08P<mVQ)aP;@n|M~4U3)@+FE(OXC
z=0vt$w02qe&cZPZzgpOBVULCV77ke0YvFq~`;qYn+GpMg*5FwYl(5gj#Suw$u2dj?
zFjm?x77oSuVGBoM{3j}Quk|xyzFNTtr=!HH2J3~waf?n03%0})jK4AN$QNASPf~X*
zoMPoqMiNgmY0)fb#$U|OP~#sNbkR9SK0te^jRYIchjAAyT(WSPZ7y2)CsxA0O#WU}
z@rs437M{}P%*r(j_hL5JE!<#!(+Ym6pt^2x^fu!i#=92Q_6WLjpQ8^LA2O2o$iidh
zPh!g6&Ow`>)7rFy{!(~BTOz04y%mh)t1EA!jZ8Lj+sI=h$wsn`>^5?67P=RZ%(5|N
zX3WBvmGS<o3*Vn{IXRk(k?i}qLA}%J1(=t`f;RHmXm`WNAG0aIWNDA2LNTSVjUq8#
zFrQ!CMhP2xZ0xmB(ncv8@7Z|YMrj*mY`krwzKz#xNH)sZ$gmNL<+W{uZOAryBs&os
zhetY^4TYmBW0wwPwS2y?q1(uI%xH2g7*d0?n~WA?m3+QqBWed9IHNgT*T#*tR*H>F
zy_~YKx>A{>*+`Em2Xv>rjS4oZu~N}SC2IM~idAjAHOH><Z%~&<cUW?2WyaTId8;s?
zqTXOK<L_XXs2)qL!K9{*S}~=zjXE*@rj5GH>&29}Yz)$ZDQIA$p^ery+Sq7hqp^*n
zH;q;{n%HQ{#w~3$v(el}3yvNi7SxOWLEd)?21ub*KA&*eqNKJok5saa!8Y2neJ92a
zj2#)@C>30DJKN}Dqbn=D8N1o|<(ko*u?J&M#$Jp$+B@TmW%OaozKs1Csi=3D^k*Ev
zIFRvO8|Rh;pNNLo=o=R_br`iRpFh;b^9FX(8DqGO5jIBJ7-iET%hvAccJAZWXy#+c
z=Z{+-<@0mpjh0_#kF_z*#zGs5Y>c<@fsMH~=Gpkr#snL)?BEM2l}{f{C)$`~W3r7Y
zHm2E_Ze#a!V=A|&;GP8HAK57XxgC&v{>L_E*!Vo3U$A&N!kNsE<nxJBX|rw2p)M2%
zHlH%p;^%WA#MK?v0vrG4i@(WcpV(MT8Et$)`#)8E)n08Ql0ctvjioj|wXuvdF1N8F
zR>GG0fv2tH=qkql+4#AAu%lA=jFmMu)-t*HS0Jvl@uiI&Hoj$Xy^SqQzOu1_*4l`&
z8*TdI(%)=j6GwC8_euQtrt>xVWPZO(e*YV`r=qsn*cRj4nar&pzmq)hn6b;ocdQ&Z
zY4?)s-88)UgQ1|%|7P6xHh!>C$U$KTKib%5<ED*UHul>%VB=34f7v)_;}AIvxiQcF
zQC=p8xy&Orexh#Dy6*qq=R^81cFe}ZoyG|^_?7u_#`KUw`foOVw{enFsSU02mir^d
zPuVyf<6BFnoMC>^#y?E{W<1My&c=BrRKf)&6W$EG@n705V)`oX=4BgKY+SW*&Bk>b
zcV-$lY<!>JKbPOnRKV}t&uN{_Bz~KcY&^2@n6uwyyw7;g27RcY!YMpp<)MvkyiT9k
zc*;s12lN%=nT<pzaN6fKUa<a>F@eQ62k}hEVBMR6w;X&KU?vAi4w4;opsTop(gpl1
z4l;9;+DT$o7PB!@YIX<j9Jg{f$m!tQxlXQ_o||<t$m`&>#ZEp4`MJ6R4#szL3OdLr
z5cGn0(*k}G2Spv|4h#py929pTJBT<a!CA^s2@Xm!FU44zu`qweqe7nUN*PeVmz-ds
zg&c$({B$gZ{FBx@r78|IwkNJS^cKWG6fxy=3)ggDIY@C()`88s%jhuDz7chBDY+8;
zEkGHM(7Od$FX!O)F(Zw6I^$ICQ3mt!jAUPd$wN8bbKpDpB?U)QP}#xj4hp#_?4pW;
zst(FT@mdsbIH=}ew}U+nsynFRV6KCC4r)56<)Dj$t`2HDsN>*m2lXAi=^)>Tq?I}2
z-{M;8I;h7aSC(KZXWh5fH?bQyXy~9l>sA$~k%J}<nsT%;<7Wl@y#@Sc4n8^+e`cuD
z+yO-?v~bXpc`L@&F};n0whqR%x5=g*i{&fZ9k?i}w4;LpgPl$s?aWy4%lK{%x;q%|
zV1$Dn4thE`e>^(OK`%BK=-^!ky&d%7XkYRiCjA(X6%LkCf96C6(13LRZyy`P;!p>J
z9V~`9grglR1fTRq6$pN}N$nZr9qC|{gDJ5RMmrcw?dRwi2k$X?pB$rrf2M#>IG)Bo
zXE4_j9em)RLA78r`H;;fFn(wU#ZF>AnQ{4x^r<v}<ik0GdZ)2SWIB_N8D}ugbTEs_
zY(}z~<6z^HI3n{MEO4;g!3qZpId!pvCFJ~a{2~XRutFbbUrq5+2cJ^ozc(Ik4Mt-b
zr{>CI-a8(@(!nYRYaFa)v3f=@Apdi)nxmgF{@gHw#Lpdk;outwTOF)peG}uCjAXFh
z!B@;T#FUK=4)J${&94;3EwR*D(fDmKzJtkj2jq?AS6JW1^qow0Irxsrp>{$0_d59A
z!5s&89sEF>zk>@7E;=~y!rtfLn1f#(>}UG}4h~Wqm>*?4%y@+HCq^ppXIg8_Gr#`d
zwczRt>$rmxES_YfPjtV<?0<Lgg4gdKG3Atl)6D;5{EP8SEcI_DXBp2io_FvvIr!xB
z4@WOMxZ==j02BV@=p_d<HI#alqeQMdn4Dx^i|IFF`b`J7nBR^m={D{$f9W7Diu(>8
zIC$vb5xLyfpiByn+29G|tBRg7f5!Nn@dYC-sQ4%nqWsxDibN(!jF}jzwBsG)lcTs%
zHP}WFMdp~EC5o&u-tl!OdlWgM$Qi|V<LvxV6o?`hr{-qN6GdJo`AE+cw39v_-~BEq
zvtSg(qbR|tg`y}NMUg1zqFI!cV$uITQNOy3lD#MuUy_qbMM1v?mu5b2i&1>IEkzNE
zVq6sCqX<VKN6{gQj!{ISP@;G}iYig4QD{+Qa4r#r9)-!=poUd&R$Q<q9=E2gGH#b~
zEY_(;I|_$+Gzyp7Mq&ypWf@armTA=57%vwEeZ?Zn@~l*d;;j#Z*{K*sC04vBJ+g)7
zXM*)kp>h<(x&+I!DsBEzG>D>M6xE`r9!1?KCJqh8ss?AQ!&sBCRur|F+#DD9_M6Pp
z#eaTYk1Az_lHO)gKi2+6Q8cEJFZkc*hbB=pjiOofKhJE=#^gM0qi7LDOOCdRqIDE)
zVkJ<S<c);W2L%(_j&0i0IE$bcojBS*iUCn{j-pExyT>GTjiMLp-5ANNJChz!^knjC
zLnFO+6n&!TOH<5x<?F_*3C26j?SsMZ5(A@nH;PeFjAn5V<H#rmGa-W^Oom1=ET#-+
zGJ<hZJ*U#%|JKWxD8|NY-izY>7$03S81wKR<AW$ZjN)1p*QxI`7u1(1_Czr$ipf!|
ziDE5hnG(f<C>BOBHHwc|nHI&|C{BHCOplfMaTGI{-{|GeWHO6!b`*1BHZ9M^&0{{F
zk#;I-28BgYERCYz7UPqc<>DxoFkjFAe|^fS%NUn4u3%irxQg+AjH?-`sL!H^<~50Y
z9!2UbV@nj@MDaxw>$uo288^PFB8sn~*bogqSB$P14BfM9f$MJK)Xj`vN9pAfK~uNB
ziqc<%Otvv@XWYRUQi2k8MzM>d-!a}i8x*)VitnTNHHza={6LlRMd2VD{K&X3iv3K;
z_&{ubI26TU7LP>nODy##CO<R2^3|hJ9E+t6s~LYHir+Z;Zxp{XIUB{fC{9N42TfcQ
zr&&D1_-7P<G5P<!=vA42$J#*cIUmJ8G)-RygK&Y3FUC@bUAO7FL;9sCE_2cqMpCXa
zq0(+dag%wxi(5?Y@35XmaXX4T9K9RGLnf5#-YbJB9x!>;m`BVXGd^J?OKLEc^DK(z
zth``+$r$JU=Urrz;3Cn*+Mz}!7hyL(hl?Z^$!q`@S(#*J%)<Dp#%#=~mh5h@S5wI8
z(%(tQ?IMqh6Z`=wFWcmgS>|(t9iFlja8WSEUzJwGMNt<ITs(A9%tdh*om_NwQNl$@
z7qwi}c2UYjX&0$3(p;2r@tTV+nd40tl8X>mp_6_r*d@X)WET+@m00bqdRA0jtol5d
zBaKDDNKG<aEPmghuw72ET-Yugmo_dV>SE4h<H)~(f4Vd^)8bQHOxoj=jg?7Nq`N4`
z(dyL5*Mi<<xG3+ULd>R;i;6LR<6htio(tc_?PWnrD!X`{Q>!pmWqgCN8Y9`1Pf4iZ
zqNa;4PX{d-xYy1o=+|-ari(T%+PbLg(z}RJoj(b@MM~lL7O}i<yQt5+0b|3M-pEDc
z7;oaDX^b~x(%eOp*fpXhE3Ft?)2P;Sf6Ezkvz?0$EOsuJ)Sh~wMk_1~deqTH_tN(H
zMP?TlU0r<U(j6)2Mxu*(F6O)F;i9LD!7hfl=*1;au1vXu&)dCS+{qg4!`RnFKPIHS
z<Dx(F0WoEui+5vu5RJBGli5%g!(4piVw#KLE=IT*<KjJ<xT(fS7bAI}p;|_9rK8zz
zDN28N<XmLF?_w<L<6L+%?GIdx=jff6!I+csA?p)dOk_gJBo~vJPl+j0sm%p_N}BGX
z;hmH@E~XdsKXx(0#Y`@3)ac+EJ&QS!*)9g&w?1na^nEU^K_2r3E*832;bNtWMJ_&J
z<4+kEyIA64Da|Q+0_EDzS+aIdSjGky3i``k5GEAzSFy61ku3km<ou3c?k*Osu-3)r
zF3!04+r<|y*10(7;t=_mi}fykaPgyyuQ<zg#?D<6HZa-fViS|ij9)WudBq19-?-Sy
zd|ON@Rmi6rcewbLm7R>c7{80z>~^t-`QDiFJ+1Eh|NTR>&&B?je(-rP9S2;*75ML;
z>%%U7=hP!KfTe=o{lw9qUHszWsEcD9J(nJg{IAT9GoE1ljggYFBnEj;y7+^YQ;eq>
z|784&k!-3I^3S?BN7Gcuzs}-$7yr7rL?iFwB9$;S{vQ|ZxZ{JWrPP@b%<p9vS7Rky
zaWT5qf9=1<;_yQL4Hq}bS7SD}nb41Bl=qH{yD|M9llzRfjwC*E@tD?c3Yw+hiHoPS
z`J|vi3ZA)mP8(?oN~GY0i<d5nqy$C9r64{9xl@oZH9jE)i7Cj*IwfUFLFN=>;b;<L
zatgqNmJ=CJ_&^Q5HfCipTMDu>Atgr&er*)k<VwM?c!xZYFi#5dvO&HS6lRj2u|O<W
z!4wo?el>eA_!QiaZ2G^lD2v7ZkEyeOlHzE;{>~ydxVuBJklCHx9iQo$9>*bQf&~cf
z1b4Rt4IyZ73+^xOo*+Sk1h+u&073ITeV6*5@0>pO{OZ<I)!o(A)iT{Z)J1aUZ$&XH
zlB`IkQ{0L&R+J@|pq8|vPNS4k<WH?AP3XY;*yYHdSy6#do_evXw`U$>j-Oj$rjtND
zc}7blSf~<Uxn>+tQmn99VYkAn{O}Ev!-^^otyQ{O-BvisF6yx1R`G`>8Rx^A6+SC!
zu~eSF;{8^Ht%z8m%Pk-)`kb`}tq3tUZ#$dB%OtmsMWZyUS`i}@dmUGiP|1qQgeuhb
z6^)bCYUJuvN!B3LwBifpyjYi1n_S0=x>juX&r;8d`u~?($Y_c{JyQcK8d@>Mil3}#
zWJO~uI#|(>VNIybs9#f?TJiRP*_++y#?9$`V?_&sI4!McWyO$r39YFDZ3u0xXh&$T
z{QLL3ovi3=#Q-Y?TG7RduB@cL72jI1W}VR*J+0_Qv%9Ll2SN63$?auDZ{_zP^p#Gi
zoLf)gHgiuLWW``B##u35X3gATRt&ddDER_oMvzBSM^Z;oQ_oUlUSpX2j`}@ytgJOJ
zg(g@r(Td4d{3vU2CFOZOeUcTOt|k9q#XmF5GEK{rEIQ(v)!fxu{zdXsE2dd-z>0%b
zOt)f&6~9=q%!>K<;$~Vg*NS;o%;GF$zCT+rn>>eFIE&Hj^Q~B5#Zo#8sf(>xV#Ok|
z1f=%fd?yq0R5ALAOquiR%dJ>p#ZD`BF>Iw3n*^+QKgGO?&T8r!E7lUE)H*BHE8alZ
zNVW2ix|w`2UD6gS#_Y6gm3=dfMW$_p?bIDq`K^36gZEMQQ1?<(2X>j)ekS{kupYAF
zuod$7XzG$5u|h@$;iIzTIrU!|CduEdI7U8BJ)!)QgaR27PRr0F<Dm`jZ8&SiIV+Ca
zaKeW3R(S{w^KDpQ!v!lYTJgONV{N!(#bqn<+K|tNKdrc8MS2_L3zAo@xF)^&oavbr
z*VSC^S#iUPo3i8NcTFr}H1aJgZp+SfH}MYjE>#{L5a%zJx=(#T{ae-Z(27Uo$J8gv
ze`-a!h*9lx=|wbOP(M&#QeRo|FG0dy%TYk_TUl$x@2$9d+vouQDJRYblg-$D;;Ct<
zX{qU`k|j?qihg3l$fEHXZOCB5#=+JD_l!euCL1!_kVQrQ@1gO7a#kj@*^piNIc&&D
z&ZV5(ggiEMd|({k^V?9shQ>BDv7w+1g=}!x;IyHz4MiCF8MUa*cvh{f4aHPF#ce2|
zxTFoG$e&V6E5D2lyKWf+NI4dl8p;#oWVM0~`R(aGXQbJN1RD}<urO)2$$vK+Et9P3
zS==}&g=|%hjZn#Iy1}0vT{gJs)V9H6gV%;yOlmgxY^W(6?0KT!2Hl2AHr#2%@z#bg
zV}ewfUC4&d@*6!|ricwu`Y~!n6;pXkTxD_<YE^1AYISN2s?@ObgZT>^9#612KUmJq
zutivN9p=_mG4*VyPySLlUlAJE(2&qb`8_X~zqX;N4Sj6rYeO>|n%nTL4c!><4Yh*}
zEmV9<LMv)(Y8z@>8`=?M3ELAMKJs=XbfR{)p^FW%x<(Uqr4xU|Ja(qJJGohYy@w6`
zUK&kQw}quA&0aS2CZt|nzNld8XTx{0HAh+cOLwws1DHF|CLj97VDbp+5b99sFzRrs
zRDSW8aoiut<R}|P6UM0A8d*(J`M~`8I66Ps<crW4Po6-Xs3IrX@B?|Wa(*OCvEk9N
zv@(lnOwLfb(`7H<;}eoKljbby&(zsA%puIBO3Xajad=Z@p$&^{*g=1>4NGiTsbZEA
zR@m?hVHtI~$}J4zmi46;X;#^=n&uiC)~ehB=Zu|noek@4*g$hj31c|gNZynhM%`?~
z7Q)t4v%7hl4cp1@HXBE)ow769uv_IGChW0cFJT{bzsfy8I7mH2Eq^`k2;nGID*V-k
z-xMDsyuM^QX~XX}+_K@e4X124ZNo(w(wTck#(W#jXz9)}d5)TTg8hf=w&jc;ZZ6QA
z&Yk754WoWHU6rE%P077t!?dMF-;?PY&FeM{yKcH+!%ZfwwT;o{jtzHhctPi$D*Mca
zzihZ~!vi{-^Xo0z8lC)aCLdBC$qq|+LVZfj-rop&PX31~$rbHWUfS@=hJWe2rM{-V
zp|%-flv>Wd^udPzY&c-YK|A8?Fxj!vj#YLJ{&u9ZBfTAIm^>9QrM2T^RqOFF=|Cro
z9a-)8#EuM1X0#)d{o{dnZU$RsnsNs~=9P_{!;YMGWGDZ@X3S+rZaZ4r(Z-HEcI34q
zWJlPJe0CXu@tGYJ>?mMIK|6}uQNoVD;VMKeYDZx^b|2EjDMH7RBcT|f$p+&co04|K
zP9>GH<5NPVt6FJ0%GgoPj`DU~DP}2a$Bn0!URTXk*O;w6l0+9bw}}2(Jn3^g%yu~K
zaM_Vy$NFU{Hao`NOBP79!$L<miI8kZ3c;%UikXt^b{Si+Z(gF5l4-{?v)c}j9l9L>
zJG^#icKGe`s-{hzkM-G&r(}<}u!trdHjDo8-YWXIxJxw1Tu%o}#Ez)U{Xz0qvPO1P
zw4;_Cwe4s)FQJkhmF=h^ZBipik}_4bqq-e6?5M^7aavv0L~Gjdg>q`oF^f}ng4ws*
zQpb*ZcKHfWQe8VFDbp|GY?7=m8<hTc^R1F>AZ6`nWJkN+NzLpiwlT4>9Zi`0+K%QE
z%uUJi!+nWcW=S@;;~P6#FtVi`t?W3v$Rec*M3O~i>U=q|trW3iu5^PV$?fgvV8;kM
zM%po;LrO<GdfL&;j!t%Twxf$3UF|qD&D>r3!zRnO)Na)KF-xt+DPR3)6Tb(Yx*sgP
z?dW4if2qojc}*-A(^>{~H}|!ppB(~8y;6#$NggO{$LVWkabz0ItfTEygolua+A)kU
zoGSk2CyAr%7;Q(XS4lJN7-PqGc1*J42Rpu(ej=TDQ_=*xyx?!Zc<BZ!lX9#v3(GX{
zkpUC!#%aI6WIKMeW2zm~?3iN5Pj>uy!;-E{Qkt4cqB51OlQi9qZZFKjGwc{Y)$*Z!
z(t)uyNzSt4XFFzdF?t?Pl!ZBwWSL{fMETk4Rnk1R=X~k{>Owmf*|FG;C3dW^W6x}h
zH26|xeYrbX_!m2tF}a*7PN#g<>J?H1WEWm-$6oHaYp83f;;$pDr*4qGO4yW|OWkb8
z7Q$9LcBc9={@bzLj^`W%cF+{wMcA#9dsM(aI{T?I$1DZ(Lv|dNHnih~9Y^dqYR6@1
zIy-)~<2M<j?D*Y|W3s378YEM^aTGgl#|i1l`HexiYk5<v(xy|g-Bq1Ecbd*9K5NH0
z@_FhX%D-U8Me-$TmU2c_GF@Tvu^m_KxJJHi#{<F*s>IwR+_K{~;STjK^&a&vszlx=
zEQmM#O?asMM}+nbEl&tfmH&+JoVxi-%S$_6$%yShS_l5M<Fy^}4#<f8Mh1su_gg#O
ziTT{z<+1g>9l<-s>AJ~bjP@T`!+&xVU~=g8k9T#(^sxM1-n65qkxb`67I~%1f%Fc5
zVfC__J|Sdq;QgY+jO0wz%+%Dyma^HH%t_7eKn{ZVOUI<kr8qYsj{|zHgyqW;^E*($
zf!!YL@t~jsg&Zj8Mj<x}J5a=dpIn&gLQw~bInct1mQECRpoByIQw)b4DCs~c2Rb{@
z#eq*9DD6Omm6vg#tOF?y`TG)-bD+Ef;R5=Or*WS#H_-u$0~N@hQ)LOwgam5SNKz6Z
zM@~z!w1&JCT0s9ItFeRF9I!hOk_sKD+BM1Hz|nygH-nuHxExrzC`qQ51ucutC3@(4
z9nc6qs-LP;1Joc@D&JJf^l$T|TldUO3g~kNo1+fI9H{6(B?sy|@TCKl8Cl(d%??`?
zRjMkXngg4r8%KPZYS5`k{lbA-gxb_PREeqUKt09JJ*KZ5Xy8CcIt?8d_Qc$l+=$wk
z+Qfmc9cW6H8d^BejNF|1jq+3PqqbzS6}2_BjRSw2_}Jgt(P{5M2SV}lM%&8N$$?L{
zoBt_b>FU6@4vcZ&I|sTs(A|MP1wLLG^>Cn<!x-vEbhGtj@p8$g-h@8Xz7BZr80V<{
z9O&=B0Gb0G7(p0BmE6G&3~^v6lfxVsuKZ6PTOJhoxYv(#U=;n)D%UYJ{(A?;I<VG(
zbq<VkV7xTTY4bt`OmJYj12Y_$$mAsI57fyH{3zXWmT{MF3Z0**Q>oLalC|Jj+)VNU
z>MV!xT+`38^?$X>G+UD7xzu^oYUQ>0(($gFCE#LV<0N*G1B)G4BBlecf<~{XJJ|Az
z1It*a@Z~4wH_wumJFr5{cclZX6t8w*jp9R@P3vVeaG5qc@G?`<1_w4WYm=yok>g$M
zV#%`#7>%~YfvpZ~b6~pz^D`zLWXulgPU<e|ZU^=_u$R1_x{oR~Y;PTZ;QwQBs`rmO
zB0HJ`d7Q}W#IFwgCVk0)3l1D(<S7SE%K+%W2?tKnarQF*PM9;&RQiI^wPZR&=bQs)
z36Fc53r@A1CrhpzEG{~5$$=NLrVd<o;7<qcIq;VQS7fxgka*L9TMk?$OY$1wI`xM1
z1dnA^dCUHc3AY`%>wt_lcN~yp|6@s_@(N^*f|mP|_0;$U@E-?e7SJDX)_+qUI`AlU
zsi;q=PpQwSQtG+%VV|+5ynbS?awYDS4F1f@>XeVFVOz-Z-hmHv-Z=1<@J^MDJu{91
z|H=O4L<T3~oW|k6M2&YM4I!-)=9xxsk$>G0O-}{2X->lr<WG9F-dO&OG&4~%JCVhS
z^hJ%WUnz$vn-kgT=X@5I!zrI@gN%e*3+TC=IKJMTn^~#9ROWLczZ1F>0VfJLQP7EG
zCsLgFt%J9a6D6G}#o)qD6mg=c6TW*X#bo?<q6E3uy_7!+=$pbxsqiU-Wf{s7N>j@?
zQI=3n<>vc3<ufNLF!{L?i3GFCO(1NHSS(H?IkA}U#Cdp`W@T3C_9h>}=7gQ#pvrum
zPPm-t=`p#TSXSBMq3@+?DyH_cIKLDBawwC>`-4t|oT%+Y9Vfz0L>N}xi57P)QF3J`
zVuXs+N>rIwwuR}cI5D?MQdK(Ds2wXAS79~CHK|`v#jHh;14LaX9>-f6IML9FdNkY4
zH`jOKOBMN*6P^TPTQ_o|G0mn<G;!i<aza645O&=(`arINdNZ2MRoQO{4{MoPInmmQ
zco)*R(8h_jPV9DKj}z^jXz#>KCuTX(!HJGe40U3d6P=vs?8E>T?;>roBe4&;EA?Ay
zH>%9HJD~@)C$*Ooy;bg6%`_u>LSH8PIniJFo6j5fa|SXwh&q@$gql06X}A+3ocO_s
z$xe)PLb{g3f9J#~1_+NPjG;c;Y5LxYu}+Lrxf7fiuXx(XxQU7<IZ>I7_M;P1oS5N6
z#;~PY(}cz!l73>$RO&P*rb{bvC*A#zv8&3od`<k%PRw><6JzGc7I$K~6DypU=fr#`
zns2Zya$<qgxYU)YO;$q}GTFAEzSs#F2A5EmQh%W?qmC%3OYTawoa+dyoLH@#HL_z?
zNVit@P``21UQd4mbt6?y8;s>7|NO+f*@-PqY;|HAot@J76^x_sb|-ew5nj!A>vl0I
zH|zE~vCoOCPF!<hzY_<XIOD`wCk`@TenI_LCk{Db8f87KYB=J=QE~>pkoB7r$7Enp
zxxW)mP)|}*f4DhCKJ7G~KN07g6X)q%kqzxcp%LbbOkSYQ<gM&WPMoV_x=crw{7=Hp
zBvXaV7TJHVJ8?rsQI|1J-elH8CmuO*OU2(N+;QSA;U4ubm3!Zb2jsu0bI!9RyPF?7
z@!W}jXg;Anb>bO8W+V&$Lh-*&yp-A9Gy2IZ*`WNHSopOQZy57dMZR<5z2Xl}{HM5n
zDU*rIFQu~QbEkD7oeRzBq;~->xLk0%@QDi<XePUm(S=Md<aHq*oy;y|j!$TwDLD(1
z8;V%660%XVyO6^r-)l<B$)wCB7a=z_j|;hn7z>}@g#s>=ci}S^3Nq_c7Y6M}EJQBs
zLJ>Ltcj4v$vrNTYax=;zP+U1B2qmedRAgxv%CLA@7s?U-uYIHqE4c8v3rX~40n9EW
zDo${H>>(C95-b6y8dwgUPD*jX>Oz-u=1(7aZ7SYQa8RA9h=&kzA?$+J1<eH?ogh^z
z^b>R!0?J99Q5n9}9C4w#3pHGbx)5`rq6_Jr#z|u(7xop@g)6&Ig$1iptGPaIeOX62
zZ?EaX7cQJlNowLk_D4yzT&Sz&QkzhRDs!x-{Q871UHFR7fZCASh$?e$?2`XYGq%^)
zbed9|QDweT+cz$>aG|9Otz78iLSGkt>E&(hLI)Q*GOUdYZ3*qDQdN6`l<nj~XL1i}
z7wWgvuG9={nQkt0XHv?hZqS}C^ioc5g82Oi!(15dLVxlA7Y0hFA`hWT4TDv?4ONbm
z9YOxih3^R?siRyNEggfLI^R?s>%v4ACea_~!gv=ZkW;s2YRnIGesp0n;s2I=3X>8u
z&4uYM9CzV_3o~4p>B0^dcDgXjg`Ztm?7|WkX1g%Qg;8T{3s`Ed3-by2GMnbPux5dA
zcU^7>i^{Z+S&OKTCL29xsS7JySSeeCrZ~$8%VkEN7(INI3%5U**U?-}mgE}3S{I(T
zcS&+Rb2q3OHWD_aCSBM}*h1Y(-A3I`m05)1OuJmz&E#Ph_7L{FkovKOy-e<tG3QU?
z*mr=*gVaOR6NQcCJR;+XoK*a1@UQfLqaLHKePWb7>B8?Wym#S)3#VK-?ZRaj{$#)z
z7tRyTQqNJB^0x^o_=gJ@=m=jVT%s;}Zn@&ZRq|ghTyx>N3-?sy4H<b{xW(jsk2PVD
zu`Oh}?ZO?Jcd5VdDs0UdW6AHk@IwjH1NwhcoBc2Gp$m^(@(H6vnI03KxbW14XVU&I
z{NutKmHUG5%7vH8xv|6iuj1D(NKz_!OXnR`Oqu?3A<m7oZlrU=<Tj36GNmEJQ-{|y
z)tqcBVR|><Ms7FqxbX?IvQsm-k<pDzZe(^NiyM!Z8n67zOT;OQ6XeDJtZrm;qs)?o
zDHT7LEO8_^hZ{LrHWyW#+0Tv5l-G@XbpASMoS5Y&7oeWD8|Sfw-6-P5a5qM{QPhoM
zZhY-VQ#XpcQNoRY8$mZpx>3pvw;LWeK6RtC8x`F6oRySuqnsP%-6+eX+;abKVd6Tc
zadj-yXHuk>@q@KYW;YU2i_|gJU8Y1gEUBfa;v~C~LbfW$=7yc@P>z$}qJDqZY#C<r
zl65yU!jaQyd~W#3sc+e*{&E*`BkaZ(Zq#xk;zrbs>Wqm=(`87m?3O=;M@2faB$eD~
zW&60CRo$p21#cObgm+pdWpW#9SA&r?si|4D-H^{0bXl0D4$Y|*O?BO<=SF>1XSbuq
zqj6ul@fDp0)P^dz5uvdgO$c%WP=cGe(cF!}D&`wE+LBwi(NdO>+}e#cZj3);+Wx}W
z;++Z@i~VQ6xOU8KPwhYzzoQ$S+~~|?7dLt<zboNeH@YdOyBj^oJ>BR<ke@O?;bU5T
znCwgKN9|9Q`Uki%Q1KvHswu{X9ztg*b(qQ>aXx;e8>8IV<;HF|M!PY_ji23^?Z$U*
zeDB5-H-2(sEaNA-G0BZ_s_b|-CXk0t{5Tqab1m)%HzvFBBmIt(%>Qc}|JZ5t@TqiW
zQKwO-Q)f_Tx>2W}<yJvmRD%C0Z?xVVH?CANt#M;6W9GRr-;D)sEOcYJ8!Oyc<i=t*
zesN=&8$Iut<tf}HZY*^}K$3q|ND-A7(YQjo=t|ZjHLr4ie0*JawHxw7s=!(|)-hl`
zb+a2A+}P;G%0VA{;HK2#Zd7V#?Ce|I*eWfsLEGlWPQrFKb`azUBGbZl#-T(4_PDWE
z7TAN89_({tzZ;1jSUfo3#z8k8y79=3Lv9>)<Dwgv+&JRKQ8&)Hah`MhW>w0sZv5uP
zF(%JQulwBC3yw2+!i|$|{O-mnCinAM+0*2wb&bY6>&E3lX1CKOrT(BVro8rYfxLdB
z(Kjx;@h6ivq|M#9N?wuMSn+FaTxW9M;lwU?&HFiM+;rm>&D(C{U5R^c++kAU@4As%
z^IvrCEB^uEZ)(qmrpInPaU;J61w44_#xoggJ;>z2b2t8BOa_lJXulx;>&8ohIIm<R
zbQ%lx+Ko3f-?|a+K^hO<G5KCaesJSIavZCYA|?+`nv6D)NzPl+DnA_|Jr&eXsE(j%
zIve5O(ZtLiWTlyfDm6?GTCyq5PRK#c=|L{#=k_3v;=CT@BTwavW(7Sc<Us`wKKGz7
z{h}TeBNXwV_ZzdkSX$hJ4eh<<J^0Ln5~`k(gi;=SN+?Y&LoG{{Wh>`FwjxF+sk701
z_N1}O0%qpsDWpp>fh@lgMyH#TJV<78kSveOlHx&C52|@!^}yzV-2(@6op<A$5_#S1
zVbbNn;th#zI$}PplH{eYdEoQFPY!z!@jxdBs50xI2O-6U`N@<hlQGZ7J8}|J(Su4f
zE33#V9xTag>~|A7Y1KXW#)B5js^LLR55DlA7LyG;c=5(u+k-kx$~k9Uk8xcl1?$nN
z@4=UZuc$eX8-1yv2aP;vOh=Ocr8hMpf32LR9yC+joU1HhEj^fj%-mU8iA~yy0j*{2
zf|fSaw$ygi_8xQ~bfk8oN@V>p<}My|_263%x_Qt`&852siDfO1tj4zM;gMTyAJ1W`
zyfuz5y*=ndr!Tc1wLf(LRbmE8cXAj%6b|-ahzCPG80NuLS$#fOINXCV9(>2(5gv^6
zAnnMcQL5}{g6t#Tdob36Ngm_p>2WkCP{*st)HDByD*gxMPbU0Go#Mey%9r1cr+F})
z$r&EZmj2I|h-cE7<-yM?Qs%yAoMny&b3K?RO-+9ZbpdrDbrE$jRaSOo7t>PmFUna)
zSnk2wmd3VT<-uwXw$WVU!CDWtkk@&z-h)Az5<cuRZ}4EFnDjS!aR0ovby4Ee1Bs@U
z7U9hvwCt0vNpJJ97l~UL^J$V%vrOBW+(F$*-9?pC;=MBX%W$WoppN}A_<Qiii??1J
z^x%*Oqr4dH#bFPQcre&&Z0n;Q{3=_S{F?{IWF+w-uNTKXI3Z)E2hU_Q^Wb+6ZhCNw
zb2&x*!-LZVspO0YXBD6G;5@lxHe+cocyQ5!OLVTPn9CmgsrU+^Rw3g=>zW7Gm48DP
zo_C3F(|Mr$JA}K`dmj9y{QI&Ze;bwjt(=D*JR(1)KB1<@NZ4}^OkTu$@sI4w%z7!?
zj_`{5FI6I66W*x$#d+t!dzv4p|Eb70HsieBNol-D>y_7FjTTNv%}AAGdM}{(6E8B5
zQwvINCMGj`kwwL1^&&MlJDnWL&q>Hd&F%fT?)kjP??rPjzVV`f7X`hj=tU(j3VBi3
zi_g6<dr`!TqAXR`i(-UQRGE8mFG?sbNl2abr{vOJlu@~<emN$~d-0j_D-a|%!HYyM
ze9E_YVe`VyWD+&mixe-cTsw(Rtx%T1!CW`h>4h|=i=4XQJYM;x95k+PYAI2_7dm4C
z)Ce``MTiilmTmj-h#d7Irix3QmA$CKfJR<aC4AvUEibB(t5apEY7lCwb{3~Lo%&wX
zQ89JBs7Fp+moJt7l@|@XXvlSuIm#MIKx38Lgz&W&O$p7YsWr%4T6odkiw-nfQd@b^
zn$U(SF>P6MyZ^5ZJ2I;qwG*|o7hP0*S1-O*oI0cKUi45-PcM2Y?yc(V>qS2=`g<|J
zi$N-P89xd!kjdINjMD(~*)&6#9O}g|FNTwIwT=HDPZ38jIa2yIpO+rv#dlu(?8R&^
zzV~9R7gN2M=0&;Trg4n?!He;P2~??nq8F1CUoP*OtoTR56fb@v)aHRw;-`Bt(~DU&
zXHdU-7}rC6e@WiXnB&D<FYYpHo)`0F`+D)47w>Z=FA&p<&0Z|@Vv!gBE=gJ}yVCyT
zrCuyy(!5C%^B0ztc`fr|xfd(ESgD+KUaV5Q+KV;hwaUSE<5AW1Om6UEBVm)u9d;_s
z7V<VPwtKNv`D6AP?YzT_J+e7&n|IQ86|n8{Vz-J}*CJ`J?Bg$tBgH;1_R~K=JxD!7
zJxo19mB^zqKD;#ckz;iJ^rA*l*KsdScwxG4IqAjkUYuf<jMb+J%lao>CY<r&tQY6V
zD-RntAI_8ipkAO}q+X&v*qnCcfn+Iu#fz(Su6c2tkmiiBf->Fk;wGJ2RB>(-?s)OV
zL1Uc1=fz)M+^6}F`oN373FmqmHFRM&c;v-nFP_kUN`2|YGs1J~Khzi0$t?1U{4e!2
zby&<emc5gXA)DBTl|Fp%;y+nt4L3BzX)tN%sG*aFcnxVZG|<pcLs|{#G<<Ww?AMT9
z12h!WP)I{^_JmI~<kpZ!Lk11M{uh@~LnaLqRwQQDj6+6FY8DMy3E8OGsX3?;Gx0a0
zopWiJzUSk0ab68;3+V+k<YP>J6)ERV;yX{73u`E%!J;8amUf1vsD`qPDaNEY#Wj>5
zm!y`Weo8G(m6$RbYSgd_lw;ZQ)X%6DsGn2K)C8(5XCg}pB-4>^y81MvXs~LqsTijQ
zJ6TSo9fW7|jqT_nyQv-xUV=uI$Gs%rMmTxKYE9P=&=AxRVpdHJVGR)tzZKGBQu9!A
zRKt^<=D#;4_FZq5WJP94ZY2$s$yKOTsnw{}sWqq)>DiL>g$5ZzHk~rp;#_J|>rm@b
z>rv}dzm#BtEM)Get&xVt8d_**siD!llqMRQG52c?O*I_($2_%T(*1+ReGHkJOV81u
zEj3r*V|cAJwARp0Lwgo!qoJ)PpK3RD7I_A5piPsL*fK}W9W;3w!7yLcN?Bjp+F3&v
z4eK<l*U(kNx6)fQ%+SzHLw5~hHH>3zJv8*vAP)c=wTYv?q|uwXeKhpd(2v}oIz+<&
zg2WHhFi7!W4TEnP7Y;);45K-mI+{8{!$=i5im)i7cMRb><$tf?&1>TZ`*_(MG)&R(
zlZJ^JCTaLVW_r!I6&(MSah(;+XA3?`n#_VfY9D{E*}E%cDxGQ6JB9R3<&4&tsbQ9e
zr5b+G@H4aKX_&9!>P7Qx4Rh#7*j(-7+w==$Kjr5amJk+dSVUM%m8>WH`m1c6hhHTv
z)398_3JvdqrjEsIpA^<t%2vqgS|!_hVM@|X%W7%f8|F1?E^7($2>J#M8#SEN@Vkah
zVrtl`VH<OY{g!4kVGC83tz=>2f_l4#qjX}u%sVvfB=4f`rtZ<OSHnKC#2?bIpL{?$
z2Q~Qi8zaVHI!BZr*qQb_zx7w?>Kcwo*P=gZXG-w4(SRqIO!GeJl!nt9E@-%@$z%T?
zuNKd1IIH0tljBV(bDtPR{$MhsCH>gj=vS9C{HfuJj85}Smo<DjG3iA$>s9HE?CsYy
z_y<^0x$)kVn;LFuXzs%|KHS!DM@9)B>^|Jpa8CwOA3pKnFAeu);Pv6*Q0oH?Hy0&-
z(D0vzzcoCRLAa;+k%nv+wf7nx%Z{(%sfK4<q<0#gt0jM>;UDq~>PzLjFQ)mI{F?ek
z`ENBOE;l;icD~Hgen(2xGiHsOCeHV<HRR|P??dlb<}}Jl>q9zndgYXT9hbp}9&0Tn
zd^lb(IinAme8}vRH-L=YKR3g&_>k2HdEh#mDwW-b9Ex-LkW2Bet>g13&g(-y#rb_G
z;6p(l3ehP_Ev#~j_+XA2yHYXb6!+mPu1iTD&iS=cK78uKt9q78iI&nnl<}dg59NHY
zGQK=Df%+M>0`+sMnJSg{X`d#MY@sGmlT~htEW>W2H|82{jN}gbVILwsIDK$2>86IL
z9v{3uO#M4vW70>Jf_{Qd4N!wVbmezxEUk@O@ll$Ue5mY0%!lAR<Cc3xpYh#Jfhx?c
z;X_RyKHr&AmC0&8R41g~e3)83`3oOp$8X?6E&5WhHldCWb(K@khx&@Yl=dV?${5Qa
zQ$rsb(b=&!zA>SR4_~YJram-NyyhoU3m;ng(AS54KD46W&WHAd);_fHp{?|pUFOfm
zCKX&|p5HdUgAW~j_|}JR>{Oi?*@fJhD(_3mGIXV%{tx41ue%RDedr}!k>=TXDMR@^
zjov==p(8OH^Sg@hspkGZ43Nh6VH&dr`Y_UmQ9cavVX)5_{UmsZ4?}&Bfw$APw3a^;
zhcR+Eb%Yc@ZN!Xb@(1b|AHMS;C6{qVC)4*njHN%0D$aNxCMcfh!z9J>tH**ziIaW!
zk<Jt!O5HZg^b_GyrKIUT%<y5J5A%JP$(WygnC-(X@+CgJB=t9ZnP!gk?Qy2Ls^-+A
z%mN=4`mo4{I)!Y%>&9-f*oR+K%o4&<-^b&H<Sz4JInC7GvdV|mQr3^Ueys6ftq(7J
zc<IABAJ+SD(ud!D*x<uP9}f9&*oRG0)`wj_>}DmKec0~94j;BKxs|$&D)W+iRy)bx
z7K)co;9lqFgZB8a*N21jd+;}3iQMPIepTuKK^AY&Fq;gI-3seRd^qaEuQHaNG#Y<G
zVg1_7l;3<f#>nG7oKR(F9x~?~pCTjqDIZSDIPAkcW}Wfjnh)1~I4dKD59d|<Rl*<C
z3)G9$OVrCg{7JY%m06$7Vswmr?^15~aFgb3A8x5!=}UpliR<`x0C#9k-Iwy05B08_
z|B-$9PTYN(52$~uQV)H2<imqL=^iWR3E`;^&y@4rhqNb+@jRfXd|oW&l@I^=;PJ!j
z$7>(n$oT0;K|kL5j7z_GKhpT|&WHCb{z3N5_2&P`GB`*jaem_vVDf+L6>0rQ=SN0A
zGWn67S(2N<50F1mPK9}<UkdBlADc7#v3qw)UO%3HpOl5USyfCnLUuoL_>q&G%a7cI
zwUyH4321r90x}Dk@-dlTElD9Ji}+ELP}q+LSIv{J#1->HwrP1kKJ%lvA0_;_e##gk
zO8W8D0b^J$<;SNiQkq(ZT9#UlDlv%~D){j^lXj|^YV{-G|6&LhKavQ^)D)F#Ib$rd
zjmgyA$C1iZ7u8K&l_g&D!{<lDkEkDhzdTBZpdTSW*6mBaea;xu0*vgRDNUFl&TNaR
zc}C;6>6jlC{V?w_m*5Uk$&Xr$sZ5m*W>q0n^`jc0I<*E>ir4hx3&k@2)b?X0Tgf^%
zrJf)4{n+WpE<e7M){`thX8F;;kA{A9_M?j*{~@7~A5Hye=0{`J(?r$wwIBA-$74iu
zKU&cLhPsEB{4M=x#bj%0dq3I`+EQiN+7aZJ=nl&1Na!T9ZeZ+OU6~x=$4EcE^`n~~
z+26!<_hTsiiPOwI2tEDi<wtKn`Y<_=D#iQy(NA%I!T_pVwhST+rVgP>yxeaerg*p?
z(p+MWqBGHtNq&r0xnunJPVx7Iv3`srjHgaex$<-W59H1#6K4=6O9xiDQwTp%r}{CC
zFkR)!`S#s$HYxbCAG7^f<;QAf&GBQNAM^c~t0KqEFq&(Dw9+c`N}3D(Smejv!unz+
zmr$2df1xg;E~l=bN)6rk?SfguY-{{j>&Hevt`yc6R!&;y$BN=98~j-Bha_dXz1-O8
zWEkHhW&PO98s?R;ZXq0+Y3zwx$=m$cP7r4YVcouz-G1!xBTk1&$6i17$zJTo4L|n#
zalnt?{5a-Eh8igc{W#*sQE}#)56SjzophMGC`W=E^4!l7^Ut;XDlM}v@%aC=<7zJF
z{W#$_PTEiU@&5ai-|3&Co~E9mo~53n%CgCrAo>TB7pNDhm;AU)_>+2tdX*~i*9bED
z-Sp#@ACF}5e8zxw+mEdlWAC`5BJcWfPw`)V+$TSv{;m9nguSQJJoe)W`KcezWIw%|
zSYJJt^4yPq{CMHVOI7ME;T82?>TBv7YT^8*cZB!U57hstvUoE_$HnVNqa&w|T>PJ}
zwA5@m(h(#ky$<MDQ^@uSoeb2B)J)XO)GSnq&q{ceEg`!Ox#yFE$$xjH+~q}FZXJ1d
zB<H1>NB{WjSw1G)9*obg<I_II&{{}GVIAM;_+Cd59YuB2&{0!IF&)Kqr0B4+NC_Qf
zb(ABQ)G?q`aw#3%i^qRTr!=(;wPzYjc|wAYL>-^$sGy_wcw@(r>2n=s<_dRx5x0+@
z6BoA7Orj?1Nc|LsO^01aMIDuNICMC51a*WM<I>^Q;USmc#~Zym<b&S2F8{7;bTA*)
zPi=SK7-3`zFj=ycDXinecvIe&i7`46YE;MAZ;a(MH?v7rWgRE@H&4}cRAE3>9j{6o
z0bL3u$p`AI>v&PfNPeNCmX5|cnlP-kj;{!Hbkx<+6d%{U9?kmHFR5<|>kSAEsZv!V
zLct=&75&%J!b~>R(M(5k9pC6^tD~Kc7CLTqF}2pwM#rjK=9aSVI^Hd_IE(1jGbZP7
zTRPpdyj*Rrxy(4~wb#*+^>m<iUH9=mQYRgq=}1hM)GQs}>X7e~cT>Iu_t4Q(M=#lk
zI!4j&Lmj4K`s(OM?ysBygn>E+5e6%Nh>oG;eEmOek>N~^&@qxweX?=3KU&3)A+)ij
z8>?fSj@>%;=oqhKf{sNx7E8C+F-gbII%ezmfx*+MlXd*4V~VUxHq%s9+fRhl7X+q}
z^?aroDt9Jf7F9lZF-Q6Hb<CCR%PlgG=KGV@1uAzT;mX6rB|4Vs*v8~9)Kw~GnU3Y;
zJkFFAy1ZAFvQkHOlS^Q=idmy$t>Sfr_0$bIHY$IUfa1+MwkY1JV_H9>d&{()<__84
z3A?1j@J^}RCEKfGpN<PUF3Rt}Iu0=4q>h6+4oO#M^01C0I*yUueDXx<JgVbYI=@lH
z=~P5NuDEGSOU}kd5C2`qDVnFLXLMxa#nD+6d5&;i#~*|&{70=zIxaK$SjV3_uIPBE
z;;-s>K)xoU(4$0|uIso#zNwsBgxfmq5bi4fo{qoB_m$H+hw=R6->h)vkH&uSNH_lZ
zYu)PjCpw<W_!c(S;+gEQktCU(>-dNKLOCyG_b2~LeNBC%a^Di(QQu2<Euu>$aRHbD
zc-sW;njk)aGy%+OfcXuOHh^>ioT!YGm61LG1W+)9LLqz-K!yPF1(839i~)JE(c%ig
z9YCf4G6#?)fUE&n=x3wm3?Nqk*~vKqkZFWdlTx_@$P+*U{k&3P06%Rpmt-=30NppH
z6bYaJlLe`Ts8X;n;oE0PMHwcM#R4c!E}@(Qxh<sv_%wjh0h9@#Yyjn0N*;xkNh*2#
z#v(duh`D?KqMuPKP(KgAOpr*)N@T%bw;82mN(vyEP72jZ-Mlo>7J!}Xph~1OfSc{D
z0-gZ80SuQF4?qjR7eJE$z780N0Dl1C03reCOa`dp2LlKxmjBz01`rFNwsI;4P+4)M
zfbklgoUc|1plZN)P^22m)?z^Q0BR6w2Ji)8{G7NaQ;d;Ks+G$qfjR-yWmY|EeX96h
z621zc0ihwak;-jMkgA#n&@6y{0rU@`c>v!8&?SJb%xw`s$AIyF!7T$=e<!IG7p%3a
zp-lj7185gOdpaGI-}QR=RHqZmcBWRHWGwKvjOjzC8@YP`Jp#t{pnNo=C;eXZd#l>s
zW{sDEeVHW>s0a^W))4Bz00t2TQzchcT&AG`45O3URwJc91aK#Sy8(<2U`znx0vI2_
zcZ`wvv9cAOTfS%V-AeOv4#g9sCj_uIfOP>(3gCwTW(Dwb0FwjwQF^=d$@}JgMf52F
zEXkQrbe(Zn>HeQ_B|eq)OruT@V1}B@%m9iEGq&CA0OkbnO8~oSTGzcwnahBMvgZbH
zowJ@Fzyeij@<3zISj6OFnHOOxHT9`u$z2w}aylylSV>q#T`dcl&seZEOfH^a+)7#>
zz=i<M1aOw-#sCfwBx{p^;>`hU31BOe+XC3F{OtkkAn#PpE*UrW7%RSq&R*(1mAgM6
zcixN>>4S6*1#mckBLN%@;FOB_HGpG^e+yvBFyo>_rsFhEP)|~Sr;gocw8?3*#0#Gb
z;5^~m%gG}iCH@h>g#a$nk=z@EO95O~&Yy%U0bC_qQ~vb;0$+Zd`%Rj+0=P}cmfo1@
zy#W3Spu|0MnxJt%_I?13&Rd=Y41PfUJAj7-aUKQmm^@;2q9mUN@GOAm0emQ;zYgF{
z0RIGV<59|s0A3Pa1@LbG)}ng;qPqCiit55|Wk)NjzYkzrQT?3^M9i99RR2KdzX0Nb
zFa?cL@j*xt36rvt6i6FHx**aA(XNLjV-T5wINnjd?Tb%>AO901LlB4OYQdXU`TL&C
zL5OCdW}2IjHHbQIld>@>e)b@8kaH?07a=z_4>fNP9p5HNurySGAZiBjMbOwf1%oIQ
zMByNc1W_~ydk~HwiUm<Th{PZ)L6itWUOD_Uh|+|T)Kb)XXDpIcCI~Z=WvS(;<*A=h
zD^Ml!^PusBr$7Roar4Z=N#s&D%_%`7tH>9HELO5jIS-E*1s|=kID>En;SRzRL^Oz4
z5Z)lPAOb-IgYX664?+)O&_Bt|ze+h(RL^xPWkf}n@WZ0|#LLN{Ai_aJg6Le+Wqp()
z&gDzV)oZ$P*K}13qEZl5WlIH7nKe`qr<k6#m|nh^o_Al;2Zu}gut4=7YA~SO5p4w>
zX~|kaj1FQ<5VeC?GCQSC5Oss77exIaz73*V5MKuIRS@3<(ISWjK{O2F>mZs2(I|*k
z#q`EOoPK2%@Z{E-NLEYjZf0#nF}+pobPGj`>CJ*@oI`8QFv)ExrGn@nn>C2mL9~&M
zq-v0`3b|cvgV<M0zgA3_;P%XVS4{5|#9WuPa}ZtRG^4mNuPtt?R4%jbD(zofmt^-K
zddS)ZF*t~xT$0{F^a-MRalKa%?ThPDL*F1K6gQTte-JW@e$*w!^#MT)3__OtU~yd*
zL#iDT#87FF;`*>w+A!%<t+bI`-{C=wVCC0~>$0>TSlg%|))%!&wciEteGr#|xE#dT
zAjZkMuvN#)e1llmDP?I86N8u(#Ec+j2JwTe(MszSs=#EzkJ6=AS|#~Y5L1JgMl)rl
zb$Sq@;>#p3OZu2JOAzy<g;!Z;OYR!$vevdaLF8Ix{cer5N4k{xK`aPju`ELn3xmk>
ztu60r>mr%E&$eilRaoLBQhwn(xiEgn3hOUHEDK_J5G#V%CVSJpl$Em2ZndrsVoeaM
zq+lU$;S##|2_?L1Wv%I~3qq1INv>pVV8M++Y$AyBKf>l9wkT(-?7xGok|oo2nmdBn
zN!TSFqoQrMirhokE5i}zJD_CJ{vZwnaWIHOG8#10ey1L$9-$tkO4hH0->Ao^$AdUQ
zI7yY5Nj=P>r=+LRIiviugmcvM)IWl_K)6ViQgV*b(QElLhz~*h7sQnyu1b#z;=1&u
zAnpYre;0crh?_y&l3grALgiJaIwkbmL2TY)z7s_6+2)$#E#)^QO7gED?g#NOh(|$m
zFQGq>zEMK|I|!L<-IBx+eJlrvAf5;DPY_S(KclWFp-aG#68hZ|`U}~1CG?k6ac&*8
zz6xULQR}}!#Fx}xQ{PbEQpJ2nc+Vn|lrbSLgiIl14#5;M2HSY5KpH~Y5YiFSQ$hWN
znt>{j84070r_B<=@odJiAX^Ao$&VAQsZREgadgN*%^5<j5L#_Y$xRi=6GGk)M!rp2
za56bx2>F#?AcSvECQCr!5Q>Cwup$msM9~n6h0s!BLMR?Wi4amku!f9_k&@K%)KVdQ
z8baw1$}rizOo{}QB@2`b!CclW@R@Qd5Izr~b<-4c2nkFkQZ3XZsuW2ML0+X4u!ZE-
zH>!tFgISIcydh{IIGJ>XjGyw|WREHv$>Q}X4ur6wrsii-56K_cB}tvZ5JDm2TVdf4
zq9MeX8wug?<3!1=$Yd4q7bH|7%eRFq%eL!f5vWSP8dU<`y-2Rf7%AA8@I?r<lv6u|
zI*RKO>QU=czYO6kLIY|;Y9p#EE<q}6LjIcClqzPk5So*}p|()I6lonon-IE1(LIW`
zA+(b=4C8Sa?L+7gLb))?htV;FP9a<j;Zg{lL+BF1q!4}xp{sO*5c-EOKxzo#`c%uU
z2XWmA4}VUPR{(m1(3738m+F(fL+C^9OYNupB{xjf<|hmc;kyvN4`C4f!66JG3=Ltl
ziX2859>NI1Nac@`d5tyB@x~~p=S5T3`<AgG<L@LU(i|7Uc)|n~BOiwCILXo{vt@D!
zKT1yy;ZO)uLij0!UqV<G!c<1i4q*;q8g)8#MhG(rv#38)k8d~5C+CvqQ|D2|e9_Lx
zS`flQI*X`_Rqm1ymMY%Z%DSAqA%u;D6(Ot)VHJ6G2y0a2`z=PDYnfaZ!g}Rr;`i1z
zg|IKx2|<3X*c`$ZCbx#LBZQsgZ6Rz|rS=|--$mX--L3qZ{KD{FX-W0e%6?`Ypz5d6
z941t#?E0N>M8*@suT)vW-w4NK@FAQ~{>cyqFZ}om<Eao%EB{OgXUXTN=c#|F+zTQ6
z6*IQ=<q-Z1;Z+F#hHxc>t0CMD;f@SSBaCLb7Q*|PN!L}W8-$zGTU2>S;CvtRUGhWf
zJ?dW}+$TsS4?_4`aSCtCKMLWoa-M|nG=yg%JXg+3870Usl=InVrpx?;WA8t4uS3WZ
zM%FOigzz?m?gee{LWm2)6vlfM|AFuyRbIS}4;$mZOz8+|sA<E-LxW<b4+CL*qGD42
zA3Ot-8N<k={LEqFf4wDs|LMeRVaPv6XAeVIK4O_8jGPS1MJ*mi?lAI@^M+A~kdK<5
zT7W856%0dO@e?RarwFyE$}JW~zQ2thp-O~Nl4hweN~_#Y3GzSJWt3Bv(0OIbXJJ$b
zV}2M5!uUK4a~O@oXc9(37>Qvx8D<INJpYU!DU8eYO>1Tv*Cxqfq^R1gVc5v_FdSjL
zx)mqW@hm1$R~YUvJYjgl_<}K77(PNJs-GGTLnj2NL28I9^BTd=`9_$Gh7nVKMS}ds
zS2>I-VN_Lq%`mEwt5a(ze-bZ0%>&G}!l)fa9s2dd_%e*T<a#Rd_!Xl|%YT%MeicRo
z`VFa#RLtpbOi4wPzYb$U7!$*28b-4)n#*PiqfZ!p!)Osk%P_jC_*P+bAh)Krp|+*A
zqqe8Y934H(9Tj&9qqE{JVMNqFwtO2#H~QVFJ*Yjy=ta=Wn0gaNmvcY<!_tpDg4&-t
zAdG=w3<_g#7(>GtMzit;(~vNN8I5(nSHtMQ!^8OFnkheT0&jL&Mlx(v7^A}&6UKL8
zj16O47~c!OG}`LZt){+Pj9xmwic!gU#+%C-e~=;5q%h`$F_-2KVN4F=$1vpKfhl3k
zq$x2!g)x;pjXGWVGh{z{ZPYB&tT2A2KbtDg&8GVE!q_&z=$sSzi}}JZ7KL##jNikU
z67O0Z#>Ox<g|Q@zHrW%7E=yV(#xG$kV<nkao0bz+P*+k{g|Rw}HDRm`V*?$jd|epp
z!w}8l|2URDc4*mP*}2p7zc4m4>~I)c2-~S!RoQI>dAw&w7(2<ks0YH>P1r--OWjA6
zIqnZ5{<g7RG99FOh?>|g{)mb>O87O5-w4O3$Ehc%Qnp<~)2T2{hjA;6+hLpu<1DkT
zgmGho`CJ%(8jWvk_w%ydnROwIi-b$m%hZl7O)^PXFr(|j@uaIXC3!83>*O2Mo648Q
zm)yUGTJ9+4ZW#B-e<|la;XxRGE9YSt@`J1td=kb}Y1jz1MDR?8RyjwCpi>0@gz-X#
zy9i1}@KT1IFtSCEJ%WG3cpXNXh%u7OP1iT9@U5)f2j`~YmUpWD_k<5&{3k=lR&yNV
zrHCnlc(Uh)(co#7pN^0|0z~i$IYR`QRBpxy<P#GTpP5b;<!6nc7%wq$M36Ir!t~{(
z;9L>pQ!%+C$V1MnoI|-y`4tz4pdh)Ba&ncm6j5B1P%MJtgc8(aJB^o9K8>Js1l|a=
z2+BlImRX*N{Cfh*lO5F0sFnyS5TxMe1T!^(nn)ewMiL>JDv>D>Sjjf!*dvg~!X?Y8
z92dbI`FIRH!}lG05%?o$6+vs}>JfYqL9GY^5d<R$MG%glx~d@(LFEXlFd3!Bs1>P|
zBG|LoXnC2c(y2z3hr7gC@GhkWlQpRhzUU-=?Fhc4Q->-}T|&JG>Jyss!RfCeXb?fe
z2pZ9B9zkOj-z<VA<gb;}G=iOvjk~z19sV2oEvPM3%<e4lI{U-a^a*WfwvC{j%56{R
zKsC)v=^R0q2u4RRCW5XJd>cXk2nH~>TLh6Gj3@17>Q1Le1U(7j^dj`8_M!Hr_LJt#
zXOtQk!JvrouK}YX_$gh&;0Q9mP6;F%4`~dEU?_uyhY^NHFoG~r`SLTIJUApzo_rU<
z_Yo|JU?H={M)0(aWhQxC1mh!^5Wz%MYDxr?$UjggQ-4&s^LTXrDT1lWnHIrx@(gMd
zw%gkGiL)a3na*q#IfpQpI*&SE=EVvZshIT<ERJ9alS`?~Blv}|j5>(*uZUn}1buTF
z_xxAU7g$YL6Tw=-I;#AMjAY5QA%cx`Hc<^z+VGI^g3s0nw#jZ7MVTnJN3bJ;GZCDX
zeiFg12!4y;SOmKxNWaM#9#8RKmG`icy%Fpq?2q6;1P4{kM<O^xKCGP7Bk$1&epSx7
z(x&4PRQ%a|B7(NF(g|GV|1h3p!0*&k)YB2P;q&n4A~+wxD;Yc^_#=V~5qZ2S<xvC|
zRh@SUmm;`K_%nhlgsTzUBwV9jr^<@okUe^*u`k@Bb6fd$q_<=-4l(y4c*F<1|6<mC
z>I3TE)Q1t|<)a;snS3H$OU8flOX_p#KUAsk1z})bqkHe_7xy}XHxcBBB4-qVy(w=a
z$PzV<2=5|zAHjzR{$o67#zm1PinLLfqKKy>$LQ44dnuAGiu5#vQy<n9{X{t#2pOZu
zq@2uA%wu1Y_^dRuMUh?Q%5_aHazSct<>w*fjUpc*Ked3$UC5W_3NcxjS|p01Q51`!
zIFlu*C8#prLv7+qDgHDnSG&fpT{enxQADGNMNvMA&!VW*GRYN1qZf%47;Ghf9+fu>
z3{$3rC=$sQ<s?OstT-iVJj5$u_43<nQP|ZS9R#P$>zwf%%aH#ix})$!;ia!p^(cHQ
z-cOK!fe8?T)R4*z6CzPG+hWvKQ5HLjeI@l~vic5JW#+EWVyY5F)hMb(QC*fQiu&|x
zQ0qoflkf$#7FDXMO{in&$EP>@zli&iW`igiM)4JS_#k69m#Gnxjj6pxo0<^5rZ%NY
z%+$H2=HzdpXc0wA<+mrailQ~44Ye(`9aYN8UkZwLh@xW@oucSWziSlV61q^kZ8N8~
zYHG4a6g{KZ9mAd&dPUJY3V#fG41J>L8^z-&o<z|vivH4KQS6UmKokR6&&DVQMKM_V
zY83OM7(#P=6ceHt8pSXshet7%AWJnOijm||QH+jaOcdWm@x98GYo#(Lj4P&89jE-K
zozhK=ViJ=xqxd0;$x%#Y@<$ajMY<v{A7m~+MdcH|Nq1f)Pm5wY17=WXnN9O=Bt}dL
zIZm2p(fOG=JBm4kxm2m4S2@!H#Vev%7{#I}7Aq%pxLYE71f5@~%T(_2D6|j8hF+<h
zRZ*;tVoek`)gHYzignCguVOYx&);EO3v3c6ip}&(zqZJA+?FV|GP#YqTaE&R9Z~Fz
zLQcq~)Gj*agpX(VdzjoC#kEaF?tv%{MsX{O+ff{1*6&fAA{>t5NEAn-_?1Zs{*92m
znK1?)BOj-ppq`{2J!m>DjrN<dntw!bhUQtSIOn1`PfoqIx)8<1C@!hoD}>9`KV>oa
z{-%_=DoacAI`sxs{F~Cd)VnkGMJcPVnC~#_ZWQ;TXj9PiR}}Z7c%b5C?~_u0NAZx(
zBjwi|8uv7cXHgW6p-2qR>A#Y$Lii_&7b@~4L2lQ)j^d4s+c6-9w^7vM=dCuIj4P3M
zjCmi$2f}~UxEM?^#K%6~|4B<o6GQm9an+fQ$%+Mxt^A3K$sI$67&0=MDTW-%&rHY?
zLsmjIYIc=-e65yKaV|nJ9_I4IkXQNnV#rS}KrN{JLNUzblK@3yC>Db&1~;>c$MAU!
z<`_yaSu%!Fgim8AtIC#+p$u8xIg-ak$|=8m44;uJC`aB$OCTpJCy`*GCdF_zhcQga
zloErLrY#0L!4ZR#Ah~i9m3khf_cwymU5)cF%Nv76@KGP1G`-lB7>FSl!}J(t#1N8Z
zkD);f4P(Z;Er+I>BaDp35R0KASt_g>L!}rh$517Ps<Dr6FjZ5zUl6KOYs64f`Q8eq
zT8eAOP)D&G?&~S8Pxvy1uL!Ak{~E>6IEHaCjPCAj62sRq^p;^ZhBT%0rZIGkp;HXa
zVrb4H-%zX6jBgP`%NSZQ*_PUxD$C!7F!F0tJ3@QqcaRlNXFLeknNC+~ml$M{e~=OX
zTNT-j(4E?Y+Eb1Kgo443R|kD#7(_=3_9OJC4xkRC$_K0l$1o&@p)m}LVc;ZV<QdK^
zfiW?RAdgheD8guo9Bgb^nZAqRdzxcaOtvPb@#M6#wFxmyjA0U!KTxMpCsTi<PKn{C
z7^af@_Dz?v`r{L@E$+w7jA2#`>ta|R!_P6yj$v^OOJbPA;Ca%?gGRH=Wpdi6xcP(y
zRPh%Q7R8WyOL-}iU#tHy`6Y&BF)WW^g^K@QifJWzm2y_cutxFP7~VWE&ipsTurY?t
zht0R=S^ghU=K&=}(SCiFbdikYoHM&SvpY-Ng^{$=lS5BjKoFITB*{TRB?+P=35o>C
zND^KVkemexA~|QtNe~I&(|5Q2-#LBm`PHqbLRVMU%=Gm1tY_}?=H_1nWF<Lf^ap&x
z#s+5nO5K=_O$5o^O!$qug_=i?+n$ac>2TTLwqa*FcBLbi4Y_UDosK=}IGc`hjNF@!
zL+SV<9s8KvPdz}DntxBnL2|)QjN_OVZ>VgC({Y6U(R3Um{F#ow2*;@s^OO(bJCTl)
zbWTxEQ_rZFh2N!}PsfFH{3}C|j*IlKrQ>=!E|D)&uTZa2rRG<A;%>;U)oQ$GN&Lff
z+>}$BS%0VF4&gSnAOBnYt}1npaG&~sTJ>SJM{@L+#LM=W@Pzs_9sel*8R0p#a#gFe
z{vXR`vq5icdYO(_Op5<H9dF2W>KUUHXEWCS>{NjqHsmDBr4LDhT*-#YHtg7$n8${<
zY{*M9pAF>*`E4j*LqQt~F<FvYnEE!g2z7XZsVJcsRVpuTLkaTv`B|SUOEFoRTE>R5
zD$){;E3deM4HXsl8538<W_$scY=gyys`RVbP~C<a<o(N%Wm%|cLoFL>(@9We>k#VN
zP)|AWHZ)siy!Iv1F)80{LlXJS3L`hghWa+Nq|?9#`C)rAazk<>a${-}YAQ92D#e=;
z>>HD<gm<XTsV%4yllgYH6_c&0={DF18r4pfNC&}5z5jcf#|Ezr9c*~d2A>Un`WZF^
z2$x@Gi^_Z;uilavv>`+eQzO*OZx~}X<1N;;k?}W{CAXn34~lGSGp=>Cv*BGj(t3Lv
zUfeU@z;v|XeH&KWu*QZDZ1~WI&u#d^hKqNyb+Vxs<2&2Xh0xW89;$|JgznVLz3yql
zM=H1Si5$JjeQfA!Lq8inwqdXhLumH5VE~~Q-_HzGr3OhbpHn@Q&L_$rX2Wpu2<2><
z6Za{3Bz2VXKeHjnj;w3%qivXE!`C+C9~wW#hOsJU9AUf-Un*yU4HFfAWy3Fdj90X8
z=*+ZX7GW}V3U#Ut(+Jb468tS;h6JC@dX<@N!+aYS*zg^*zNgNi{y?2em9q1s^)^}W
zsDGrn%!Y+>cG$33#oS7bTS8u{oE{gAH#W;{SV89}>Pj0{5i&3P6kC;Rtqnihu-S&+
zY*=T5d{^Syo48)i#AzmZg5v+=^#9K2@GmxOV8LIh8>yS9o&INB1KA>{TR*dW*|gOL
z<40S4&D)qOS=$Las5_~<s4~I!+OW@tp&Ev1*e^5FhQ=D2X!zZRgElnKjFsw;4W;iU
zowDJy4ZX|O`NM|8HXO0xs4P=!%zxT&+=gQ|<9;VeCNwbrWy1+s%6b^LCyA4(C*?qQ
zHj-y-IBP=@4R32WXTy0Lp4jlzhSaLo3pQM_;i}ASCNJ4=S<Z;6)?pu~Si&X=`1OkE
znhp1CxNpOC8zgyyDsa<=TZ;d-;kM#Cgu7IKTk``s(QJ4mYg*WpKVtf*ty#*BZEJo^
zN6h<S(?2#mlNU-2(D2-be{IO7Ax?&<s`Ul?^U8*r15*B@zLce)tyz*YKTdgVgXkM-
zX3g0(<kTPy<<N}YN<&A(rd)J{#m}SRElFx9pdqhj>});_k|lLYuJmXAfRuuC3Tc>G
z)hb!iR$<|fQzT2YsD@%1gp)NC*HA)3RSnfNl+;j)4OP^P9+uYdS5<2{4P`WxWrb2i
zI<ujwwLG&Vw*o=xtfZkb%U03wn8Plek*2F_sG%WAdOI{x`c_jz9SyRlwKV*EJ-axy
znG~2+JGrg~(R$Q)4GDxqs`w^?S%dUJl6tlTsYkkG(U78{K3gwX&04dXb#nt_xoF6#
z*hs_0h}nBSDOE$7h7KCu)6i5yGYxhP*Qdo>HFPX)PS@Zb9RH4n<{DaPXsMx<hSnOa
z)vPgYeXChzn^4XAV>RoRYF3+uIiun=4Y8xyq~O_GbsQSHJJOsQTvC+=kA@5lZ8Uf_
z_%wtxgk@AU1T^Rxf*MvdOWLu}EPA?{^+`3WK<TedC!A>!4N(o^#Mr&M#mz;lTi4nf
znX6l0?l8C2&`u7zhV~i;tuRUdWfS-$m?o+hY<w@h(SgF|$N9}2HJlHa-q-Mfh7UD#
z(l9{7Kn<NWbdj!V=%E?ET<EIdcJ`!KKgV}tQn+%*y5bAS)|0s(QF~E)Q~PM>OOTj;
z8a`IsUxWOGoS1Evn?wg`7|iB`g9{Re$c`^Ca))aep`oiC-R$^8!>1Z<YPh9gq=r#4
zG8%r;u=rM;&ooTXFj2$jnmk3>^aXV^b&O0%4dcjPQpZ#CoHj|MZ0{~k{7S<l4c}?_
zUc=WKzR@sU!?$v1s#_;(n4)2-hMv`}dGeV5n{1xl(=<)PC%w%R3z@&HZk?gwO>OgR
znWcwJGo|M0)|0K$W@&PDI&DjJYxIpt{5cwa(D0+=YPi}Wd9H?ea$3n={Are-Zmn);
z{$*0y0u76DnNC-?KCNzDBs-;Hxtw&J(~8uvuJxoXk=f`?TPo&dbL|?|Wf~qlGeGW1
zYn0S@rG`}+_Q^7<VYP-e8g^>frD3h~O2cLizsYn;wXBnQuHhH*dRa6YSz6byZV=G0
zQNt#gDmAPfGR%&~mXVDuLuyzn^-hzR$u+E7G;C$59n@_awsVuPQ;jTA^Y~OlB`Iao
zpPF{d+%9RlkYe7WVXuaMx6A{Iru{M5bU+q=4JTx9G#u0r50h-iWID;5Z=UvthQo49
zYgh-k%#u7JXUDO`qf|-$so}T=c~Jjf8cr24{n5nI+-bUMNjjzBw4AvbE@?QU;jBz%
z4MoOhm+f_`<s3PwMA}vI1sVTTi};r{T+wh%P8<zl{**uMs>(W0!)htqNMhvH<r^AA
z%amyRx6E4&4m+H7+|h7XLtQ)S*>O+9eGL`usAR_j4G%Sxx1;3Pv`4bI$!kzBrGOpl
zMx{K_@JhpL4No=vqZ!UK4gV5^pUcD;n<nr=*2c5R|IvR*l^Vo<qrp5jEx+B+Y<9#E
zvfBZIm^tjoNzSF5+;%J-lO|bt=)6VEt8(+PSCT8+)f!gOf_4<Lqp%%C7*kS3zD+1<
zM=|9TCzP<`H494FQgljF%TUWw%h`?Hk$?(zoIa8)jfz&bqlz8X?5J)>RXd6gNG@H|
zD%z`WvS@>vR)HFJ)U@N|;xtK0ZY?`RYg6k`%k)c*w<E!hR6Ek_NVLObM-w}C{gP;=
zHl|84$&O^Qg_@%L`gSxRH&jj|!cXhcCZ;D#LD{5|rgrExtu{Lr*R(dXqi0R4mHG}<
zlFbP%>}W}7rTo@}bUVJPX_YW3uGwK{J=>Xd+2OXMjU8?6@Yvy%-Km@!wZmtJ+{hhQ
z%NnrbT1~58`d{6+wOh9%$gJ|UjNFhNVVMcFtPyHvk(k}M4_xZWU~P?RS=&jeTGsdN
z_`r^L$?fgvU`MYP4d0`7v?IsVG)XpbSOh+_qmvz7?C3f<amU)k4a*ZclO=g9U=~N9
zyB$63_`#03vX6FrWXBjg#!78=^tR(uJO0X^up?K~K6do8<6}E+#hLq3Q|03LXiI-P
z2HP>jjsbQIl+KT~^r>YXWXG4atkeEWU0TaJ)Q(|xj9}JqszgfI&RW)7uTup+kt4M*
zO@gJNk!)_19iI_Cr;7iD9i#t`3nq-SW4s-c?U-UmiK5mo<+#`}i9ErMiG=gDtdb?$
z*LFNo{Eh79?1W5zsvX}lQj*gM)9uJrJFC<T8GM?vsIyh%cZBb$b7b~1exBWU_q)`N
zWp>QBW8aeG1$Hbr6aOQ1p&g6tNI9Ii*p4MKCCVjDe=BwL@uY(L%@VU*4%v?69d_)r
zV}%_*F}c!?UkQ@6%8u1`tYLC3b-f)w%bBt(`MZnp>*x$VWvXsX{+}HUXD9z+$F_W_
z8)O`QikITDZM0*Ps%^6!zp?BVJGM%sG-OTQZpVq!W&sJ7YUNpZyX2fbZrNwYrCH`_
zr%b!;*dtS-TvETC$$MqqmP#2{E@{6V=QkxCu;X`z9kiqD?Bqkz+hvIY^=ey<halN;
z)DBkw?f{P2@uwZxyomGSxExJ8-gBX&3nyf8u;ac14;(lptBM`<9cbXd89UC}QQm<H
z4xE#=?06;1lpPoBxM;_}cD#^w?YL~mZCS?U1gvenV#jqJi>r2YuWh|X6{yfK<pzB@
zOgClrD*l@wPY4nJuJ|p?|H!L=%Dqo`V8=tkBkE)76RMPYDm$3n_{8^&#ifSlc1);k
z75I-aFR6{s8=uez9gR=gob*Np!GTf^W6s1;^HH-qki&tTWXW>ZOwC2kO$9X%^(|^%
zszjE!o-4lt1so_yr?B!15soIKh;rU`peVT*wK%ne$}Q<Y?gd%jNS1b>4E?gya@0IU
zjH^`@9jN3$q5~!eDm!q!nPFCQ;GY?$Dh^b2U{k(Evf0ZgS9hR>12tK;eetX-!?hf!
zEtL;9%T|X_ms-z(ctV28y|^>y!gk4K2a;KXw30;Vc0Zd%IVptfm694d(8z%=92o6D
zV+Wcz(8+<$4x~De=0L=OsKa>fSyKmEI?#%xnmJ%q^}ORibHyzjxYa%D>Sb#O78OhK
zIFPP#Z3K;KmqT_Xn}h6hz@=i`ggsB=y~^=9;8z@QKqm*OA?1f1@SQY1p~oD^aNq;w
zw;^n=Vq7I?>p(jPmesbtOKne;WCy}~4s=w``-G~c%pbD&p4!F*$u16bbzraqBR(^C
zQ}y?C$VV9TV6vwJA35ZK62>Q~<I{{o*2{t3Dzc9QWv?3}(@!}cJJ6pzfI3k5g9uk@
zTZa(j_t8Tg7)BmW9pS(y4t(msNG3m{t{rWhCZovm<>u#v&CiW78I#El{N}(|2gWfu
z-hn9&Om*N(2jnuigiUZ@BC~|QB204NYr;3mpX|UZKFejA%!C)l$@`N7)0z9N12Y_$
z>A)-pme85)z;}cN)bAabOPE9bfhsk`E@YcWp0AwlytMnH0}JUaQvPBGUQ{;jRa;7D
z8Fe{zg^GFE+V~n`r30%RSna?X`oB=us+gY%>l|3Goc}p6=cVx#fNUEa_?7-f>LwK<
zmwmQ4u+@Rf4qS0y8~x6Y;*UD8-GLoU?xYs3Yu@F+ZU^=-d5|hK?{#1wc|Y}l@_%>0
zd)&B&e8_=6Xdb2>p~_#|%O<(U9GHJ3ac$S+KOH#kz+cQgK|SZdNx~_r1fP~y0mWwt
zIqDeG_&oUn^&<6>yhhZ>I%lssaE)ep245%Npx&fP4YwTln|xb2cO1B@_?|3cR^waO
zhYmb)V678BJMq|oCvuKE;dbJwEO!o+ccOw5&t&d7P{@hGPW&qe*MT@EvOA6C{XYj@
zsyfq;nqQG$Q{PatF)VT<tLHhKXjsRZ(~0LDjj_tb+}u=2f{@3Fw+MNi$mc|UazPbS
zz=?-(#x+mbhSiEI;zXd1wXDj0n^4q=V#+D*L<z+u38kDUt(-E1;fLbODMvmyS9GG1
z^wWt(G%Gt%k5I*ls!mi>ku{vCPL>y-%>LALq86RnPShcMKR2!}Vdoj+<c%jMP!pXn
z5zN$NCz1#fcDbR&LQbL9r#4Wz*>V_z+1QD6Cu~kMaU#`;H0G|`VxC>r)Rf%J39A$D
zkejQrGFMxWTPmj&p|ukUy^Y0CbE3fKreXtA`fzI5op7i~rxVNg2PhsVyiR=W#5Yd(
zobWsGu@n8}Krr%snK0*!(?oY7=tRhgu&SXgAwrE(V@_lc+EAs`@JVs)6u;|4dvXWr
zd&=+VMC-q^u3djX^Ft>(InkNi#fgsyU8&uuxh}+accKSbTIuP;>u-!2deP}k?L+OW
zV){8TzMU~k2RKpopQN!)jAPb7>LBW1>JTS}Ix)<N;Y^NnViaM76Q2;Il22vCIHba#
zIq?Pk&sA>1xoo2qkCE}5VjPR{PJHQv{%_J(PFx<EoPUX_+1$hlPE2${;NFu&Q3;#m
z#CJ)?l$h+q6em_XF`$~U=1+BEniJEV`1WB#Ny_%E96`1+!-<(r%p%WoV!jizRqNjo
zzIS2{;Rof<b>e1^2ATCNaAKkIe<TF*$1Nf(rY@l_rAm=Ef5t6$qFXzYY%84jN%8Bj
zdH17is~EQ0iNz(-)==f&=+-&0-iabEyzRpOocP6we`H=cvB8O7ow(}6HI~}w#2zR1
zI<ZN$wVCjn6I%#do!I8Yc9px^i5=vf%Go9BN$#xmWaE>>eNOCm;w*CysF**U_+9Zq
z!XfG()Wc33apI^GxyNKb=0xwVan^EidkSW~&phtLU#jd0!b$2WCr&H>j1ynwHD;P@
z=bSiC{{r=*in%0nfP97O;E!molkcjS8-$xq+)~cpPTVHnp;ikTYyPlCrh87@cfxYg
z{DA&L>Lco7>J#cysuU?XG~07o{GG_-!dou9pbt4T?DKz4yi}2|<jiv74U^dzkllqi
z73myc$wAIZ&87U@guy3`5eVioCUagF^0|=Tg&(#VE2nG)Tqx+muf0+p_OpCzHVG7R
zp)d<(uE0fIDCUCSg@6miT`1u~GZ(BblyspK!|J=xyKQo5a%C6F5Txd^E|gPT-h~Q^
zD-tTXu>Dix?Mf9FhMi8U>OwUas=H8wxh5BC66#WGQEOA{P^Dm{<+<vS<EaVCPb9qJ
zAF7&NNMbUXYEdyME~MNt-t#n2PD2+OksDK+C_mMOG;&kr^qCv?jtkA1^to`SY)T8V
zlibpURs``|yO2({DMxd`uGm3XG&j+uYIYMmRIdw}Z-Jzfd7ov|T?o3+K}CjK2rE7~
zIDYS<_=vPMBtGgwjDCj7Z9`~FZRf(fg!WX^4r8GkRM|ZJsQG;tK5*fc8?W8?(1lJe
z<aPsYbatVO3u|5Y*@dnybaP>n3kU01JJrwCT@IWJ!(Hg%LQfYyVx3Z9KSD2RZx{Ly
z`cgALGJi~#$o_-@)PXJxQvP5UhA19NI6Ed~gbSazFw%ulE_~{O<FPS&<+msDaVe8O
zbKy%DCNTbU7rr2jR`rZ=$&+%8Giw}myz<{WV|;d)=)%BTrmtLB$ybwtPm|=*{nsvh
z!?4NJ?_8Kdn5xQ7BTRSUTjk6k%yeOva%Q_A5B--WzE{p1Is06g>%u(cEGEpSE};HM
zT}WNz!qpPS+t(#7EOlWSO-ZhFVL5q)a(<F(pJu(2Uqy2@b&U%<TN?g47uM6s?#BOI
z_{D`kTsZ8)23Y~<?{(qHr1*^z&!iOD<U*nO@tdi?xv+(>l`8%=Ig80VsGA&SF?YF)
zuZnidWIG(chr021v#`{*kJav{9-#hCJt##8Gx%50M_jmG$9md@Gc=F7aLk3u*^FKI
zlg@D${vw>9o}`|lN=(<zac5na+BW&V3lCg4=fZhrU2x%w45kYgnY={3Ol|aU*0^1B
z;cq(EsW+%Mskf+7e_P%Fd|S?6<=l1Qo?>~|Au$hK$R>j<&wq2_v5cw&7tj8JF;A)g
zP@hqsQziIcSu^?W=s!9ysjsN7Rm>Y1bNL@qxeCPk1(M{w%8SGtZbNgrk&7UltFASV
z8*jNW!i`Vd$m>QvH~P5I*Nyyc6mX-O8`a%tH#M=K8>QSR?M5Ltt`$rxtZFXe#@mXE
z5{glayHP^<CEb|N+IXEU<Hmmr)5^LL8xtq+dCR17DyF;}704B-m8g}eRj5+DsvC`W
z8gH>`xKUG9A^Nr4sO^Tw4KI^*s8%=Xx>3)KcsCO0G@&L^8@OR|!%R-1rcjfq7B^P5
zHF{g0NdXy8(S}Sml0GQEBVTP(nM`w|DWRFlmCxz#kej>F!i}Q;G;HaHolYw^S`(g4
zO-U!%sM3n&Mv)(kW9Ojbq`FkD+l}X1*6Xs5W|Zou2Hen9WYCQeIjo$B8&&HXtAuPZ
zH!|F4<3?NNcA&PSzDsRSmB@<ybG=9INPS=VA4vVZj8W<&F9B`@uO-TVB1^K18(rP#
z#<1@0|Nq&l2c4eOkKE{`>gi1=@+#@|E>k}@dXCB7lYfHnu^auFHGn!$#Se00FnI`d
zsPc!oF`R6gWpv|HH%7W~&yD+TjB?{MH#WJknE@qAWdGcaFWeaI#uzt#ra9J)ac(Sh
zW04!<-T2atZ`_#7tO?Xf)QQxuWK!9(t~!40Mhd6L6gQ^2@dE><QD;%7Q@^Fopi1{<
z$_&h&_0Ds)oQ(9pSGjZCc=X&@ZRXOMN1abypkjV>V;k3j#cnL2xyp^Dgk@Cu>RD=7
zuHsh^ev-MZoHIw`R+BsAN?Ai#tCH*7_;a!G(!V}4*o|KZ8#0sfLohcsD*pKo<0|)W
zZtQepmm6E?Z>4UdZl~^`W{#D_?{?!79pOE0>~&+G8~f>;bmNp82i*9b$%AejapNfY
zkQ;xfQitVC;b-S#bdFR1RJmsw$Ni=FguGF?8UIcZ^J(RrC7f}i)*)lIoMZAl^@57I
zC<~+d9nEDouDEekmOkd*q+VB%H{9sH(m0y8l=HV6x5;;ubJq<k&%Ot;`VBKbp)c@|
z$w$=3RC(yoQ#bx$z%w^q5}s54rAk9DWFaM=>S4TTKXSl$|M13*Y#wy-ptA>Y9%T2R
zng`WA$l)=TuYw*F^1ye^oRi619^@u~Dgk*s@?35sGA}hBH9xfgRkGGJi7V_u5hkm8
z@U{m<Jt*zLF8-It%OTl{F{?PWgeq0igHq%o4~-W-oHvzWvaAQ?R7`mfDv&EGr;-Pi
z6;~lN>S=tqlmBt9;XzFg-t(ZN2emw??U8>0gV%#P9@O=qg(_9g1B(YK9>mj0P=2BZ
zCbF5DL`_z?>mqS2@5R^mpt%R~l$!?h8&Vs2(3sGK+SG$oLK;>2_UX`E&B#{eyyL-R
zev*=^u60XpNxv1fH8tG>8$t8HO|Vm?HirjJvWt4HuyID`n{HgL_j%x_*>I=XI>Pvr
z6kt-PN;2p{$b+y45f7p?+j$UEx$?mwgWN_rZ9Ul9$(Y0MDyO{%9TaaXZ8ZA62OrSM
z`CF1aJL^O8yPVZsJm~7dVGoXY(9MJH9xU`=kq13I=;^^^52i5qBM*iXdU?>>gFa-b
zd0Sy)IqmB~KMy|kpuY!lEl!-l9t==113eg|c<DN0mxp*Tl+G|Jsv4afLH>mLDRra=
zqdfS`gU^|qNd3ZtaRezc+JiCVvC7$h&OBc6mmZwhl{i7pBfj(hivA>(`?Uw(D8AAw
zb*cx`nEa7C-GkW#xeoTN2Q$bssnYH&PuBNA)@I4ydGI~`In*DhbE)&F^Qls5ft*bZ
zjUWEVrgx27to&UbEb(Be2g^KIPIH3?D?Auk*Sea?pQtOTtEf`Lyt>vkiq{f;rmpi~
zeWp+SC6i@(G&lXKcq3tx2b&4Md9a1B)r0MXZB%KcvzBXz;+-D!;x)i6b*;NS*dr(D
zJmW&pUIy&*U_api^>^w)>LIE`{y{iX*LqZ1tZTjF!CeoIdGMzP$5qT353)^*`%8`;
zos-m4)YH^11&x(cwzD4G?w)+kgYzC-@ZchIuTv%W65+B3S3GD~&3sk)*E}enE$jN#
z4UgP3Ypk5I-SXgX#kXZ-elu3)dmiJz^8_Ava9`zqz0Ca3gGV0xTi5!S`qG0Zgs0Sh
zsL!Yp^E?x%FR1^?DK<AzvR<i}*B-o4+<dbsyB9gUIOM}0KIHTwmlrR*_|J>nUcieF
zz3Ajc9xvYVqLCMky~yh|_M(y(mA%O4MSd>|cu~-ciu5I`kQZgVxIZbSFr6aQw^eRY
zFN%?idr`uRlH}4Vx0K}8%X<HLV_;la<(KoKyy6N3`OS;8HM)MTDqd9e!sLaSel;%=
z2-T@Is1jL|P|J(j%Be%B>qR}~#1n$8Eb=VPL@z||FHTHSx!nsIhca0P;Y^~%ixe;F
zlN(SQdXZSqI&GY#S!zmpJ!=y$QoU&9MQbn8WS|}yy>015Q!ko%jUTGZ|7D9~W##X9
z(Ok9Cg7EgLT*vpDGw-QR_afkh?#0r)$u{O{Uf8{Gc+s(*wbQXgrz-0rxTzkhm+GVX
zz4(-48)ULQRr(MjguRG(5hcqdJK17hWH8x=+LqdmDy81_qFhqeQ*JuYe2?0Z`o0$*
zs7U$NptBcUy!ge74PJEhqMH{}yqGG`F1cN`?A^WS;YClcJopsjy;wBfShstz_-HSx
zkBjdu$HI%gUi70m*oz@ve5~s4@5KPc1HBkTjyqtyH65z_PrMjL9<H1b1o`IlQ^H6u
zMtSiW`EwN`E0R?5h0Hy!MZ#me7|Yyo)Fz2pXY`j$PVizP;VbGSZ`Lc+*Gzun#bm;|
z;l`>m&5I_t<G-aN$?1f%4YTLZo-o6UnO@BDVm8f{Uaa!sJ1@TXVh)`jRjD7mn5%f6
z7xNV_@M6VX<I}-HI*YtmOjzQ@a>7y-xy*|e8;!AAp`4%OY^t91x#Q+aqpPdESi{`4
z)Ss#AsOzc!%hZ1HJziOU^<twJ7reOW#U?K{Gix99H!t?ey1^?OTfEq+N^K)-_hJWO
zr}B4sv0L#TFK)gxzAG7W*Cc-$wcm>a%=+DngR*>ijhhN2_i8`$prP@9Fzc`vM+isd
zo*%+7>Yvn`{Fdr3FHSId(u=c%Q`FN`sql;!KQr<io%70{%U`-(^5U)+_vAn;{|ezM
z^_mygy|_WX>BSutbBpk|7q^wOfiq2R{J2l&x$++n9#S7sAA9kH@Ra%w^%+%qYaM3H
z*nee^M;R|AFTHr>h0h1S53d<h*oPuMyzwHN4{<(Y_U7^7Ekbr`4r)$nE+29eBn*V!
zH?!sSq2l@Ed_Lr-Q+B>F>;=e$d?={mFY(=A`}dRIrc=^~Qa%(V7xSSwp@a|ro{qm5
zGA3IAccaoil%ZeMhq6AD^Wo%$v?@O1k21^CuS~8$tw^opLy!9AqVtRzW^!@+>0GvI
zK2-Oih7UD;ST!pp-G^E})b=5bl}KbAAI#*s%Bkl=JUM}ysC<(T>(%Q~k`Ku~SeTVU
zZRA6JLIV}w(1(4zF4UM#6XmB8GA~Ru^`V&$Ryyza&|Jl2excdIhn93&DZjN3M^zte
zK4?DJeQ+>0^Sc!%*+q3zJyh9KuMdZA8#5u`gYLrs9|kfj=tJ0thz}tZ*>QSGl>ELA
z9}r?bWcU!MAJ@i*wshK2J5b;Cp*^8^qpUUXJs&#KxpgY*UDJm?bn&6951oAI%q(|J
z<I<exVSG0qy8F<drZ_!hI%Q9A4K(+p^AWX|550Y8*ARVt*vwCb64}>>eyY^RKHTTX
zRI6ZAJIIH@J}mTMkq<){^SKXS_%PImVLl9(S+^v9gb&~KO353a^&aCBA3jyJjr3s@
z`7>$_#*9|EU;8jd@mL?mk;hZNRQ?3QL?6CV&LkgN@cO_vK1`-Lg*uZu)rV<>={|f*
zNH!aTIm3qoJ&h?n%ZJ(0VP^e674v%^<|wY(#|WFt<UAkd6Bel4AARz3t*mQMi+xz(
z!%sde@j-rhv6L~(ROE8P9Nu2F(uczXOk3%!@?o_PYshPT*r4KnCaj~b7bW~cmHv!8
z9QP}EBXtvXv&#LAu!Z_XN#nq6BX9R%2VtiVyL{M9-cQ{_-Amm^l~T2q#~mR5PCcmn
z@-yQO`*6gEm>(H_9QEOtytDNqmmh!naNLInK0Nf{FCR|$aNUO+EO^p~^QwkZKAcv3
z#)q@ybIPeOH}Qhvi-b$m%hW4ATqRtizWu&&fNqinZV}|q#Q&DXt$fmLCht)1QtweE
z^1iH==Zy2{kq?h$#iswnho?R~^WnJ<|HvZwQS$u*{5&gHYp<DF+)2*a(DW}OU-&Sk
zOX7c2ftPa7$<}!5YgyCEnZ(TIN1Wf7Z>w&avlE1K_#u}d1akWUKWh3>%a1&MyyZtV
zKbBXF%j-uzKdLf5zaNDwH7ejoK_=yuy%3?es;w}g2=#4hQ9p_i4#m}xR!aC$lF3qj
zl=Y(=xiqzmAGSNjWkcD@)2ZY~1wVQ%FwBZ_aMf8{*^ep=5dU>tozqFC{UwvCE2oAZ
zJ$VtnwjXu;@cR+)qplzI{Alh+3x>s06R3?l8^fOHhlxqEA4!B{YN{U=LW&>t{b)dL
zOl?S&vW@&W=`}umH=*+xAIzIZZc1%NwNfSQ9Y6XUGhRkp`jNLjTG79eD<Si>wY4AV
zbZk^jm9i5YRHq*<Kip)GA6`Fv<o@y2t$B?VU^2%_ry24i>_^a#FOM5%-<&#e>sKd7
z{PO#5W5=V6Id;V8Pa8kl`mxZDMSisN<6S?d`Z3Lq_I`Bm;~Pdw*n55q_G5@29qGJJ
z{eb$RAD#T@>_-<rK34Hv{rE_ZBa_{z-TmmHa(nu*hP~~roPIJs<i5%&zymtvU2}is
z4De$hd60634UdyMc!x46w}47NhmnW-F~W~e$e&V2Q%CwSitrirbE=g3!jHbEjSEd<
z{21%UIOR|DV?6mw<xKG72z&k&ok`07TINz|<D8OhvW&yIY*YL=RNbg^x{8_a$G3jW
z@MESQXZ|wYy3h9GZoG9ClerVDa(~Eoethr8t`E#}RH+~Qn5%f6ALpMY&08P8Ksi53
zE5*$F$Hy=BV~Na3KTi3v)Q@F;9F#1EE%#%UAFKUX;m1$@tT*Q?nN=ylnmGg4__5KC
zO*Gfad^n!;GkKjK>j}oL5q|Mw1L0TYm%VF@{I9(JzuAx9=x_03s~_9Qd#Kx~JE%LU
zyQorjx8L}=fxuqn>?7>=<A8F0_oL|ljF>-^bJUN+ijVlwjCXAvla~OR*LbtsaX<c&
zgF83=go>0mRHtRY{iql)7RIxFobw|`067CVuVSvhHeFDB(T_`hT=wINA6NZ&?8g&X
zKbd>WkG~1msW<$%sY>0?Yph_m{kX53J94ZQ-;@1K$a;VBz>kN@e<Wug-&;QQ;~ziX
zDE}GZKk9Qo{#E`9S>AhQ-4*uIk5|fnEvLV#KU)BC+|%q->6LtUESf8T63WRP0LXa)
zc#DuXfWm})DkeXn0JUHMg$Q~0&+JlLkpSMNQ<PeaDt_?*<Wb}TvXu;=6#ddFw+x{y
zwH&p402Ng3gW_?O0;tSnl>q7m5FbEQm0K-<>f{>Kn$%h<w{`$^$aSg1?-?CP2p}<l
zW&vz1lrSK{Y6_qMbIqz$5+OMN3n7JCU*#U-8`OqOHVU9Ip$Ror#iRw$RPi?nRxA0P
z0GbETLisjA%K%ytS}Q+2fEj1A-dAe@*y%f{P8IV(u{civ-T+PqaV7{~0Dfj=3nCDJ
z9zY%)Z|MjI5DH*(0KWwg4j>XhzW_cCU`2v88bJF1I*?-lWCYNL+%|xB3GJu@TBIFJ
zur_PlDC%nTUH}~f#y=W#3*h|#J_w*o0OQZai}PUsodW0_z}*DvA4!c*E>DmmqNCn4
zlz^@Q%*obBpnCv40_YjQM=aPUfL^Rna(hdk6Rq-t4yjEpHwp9&;Kza{Db+uK0Rc=4
zV0r)p0~i#*=K*{Xz~BIe$Z>4kXk-9G1I9(F;Q@>YU|0av60K5D9N9hz;8W%bw^U7x
zVwXOnwo9~1L!$#26Trj(z6xM0<G*Al$BD8P*_T@KZw`$cO<*Z0BHfnWPU0?n6TsIj
zH8{~K{$!exJ4Fsh_T;H*H@}sG8^DqPmIg4B_5TpST;|RSV0HlCv8@@2*6%ZmQ1i7)
zld9$gFh76=GAse($1ieR#1vS_dKLw+n7-_|w3s>I(%WSLESIw{fc0`f1NbR`)d8$w
zk(F#~75RS4G$|$HCZn`g8l|~5(Kz%{p-hAS(b*8duL1nRJ(YMlWOCp(vYt%=`MU?B
zKgT$pTjcx-;I9Bq1h6fD?ExGP;KC`3{FB9w0QSnhoKJq7D`jT@y8_r9z=K3<n@g5G
z0Tj%ga;;3N<n9Y#e*gyp_&tC>SXSZ>25=|<0ok4vNRc7}uTNP{XG=a3z)|`AR{(zo
zkao!;S<>8bS>H|@Ai>ha$pB6Ta8J4_>)`;?=>RSVa3z2<0i0#i=Vbktw%AH$4=)CA
ziCI!-9+Or2CIw}?8o<rW-m<FeRPk>Rr0lH#{tn<adwWMtjR0zztWt?|Msj60CHWwL
zhXK3{;8g&RBr<@1SzL0T1n^G)&)CFMIXy2~#C*=A?6M@sollk;UdRAeP7(f(LnJY;
z19%fa4jnmlWYZC+8>1onE`7_c8^bO!nFG?wWX+``w{DEN`0tyn{|lu-hwP?6ULE;#
ze6M4Uj{LguV$oVhx{d-8ucMHT!aCx0B<Luj<82)kbyU((R7Wu#rF4|mQCvp}9WzYU
zk~(S^unad@I~1@;vQ+`g&nBxt8RnK}Zdo0}3RueN_`_tqWwKUamav3X)=@=bbkxyN
zRma`yrW&kSpqh^AbR<lYvend4ONTThO-NF-E~~01dup~yh0=P{Tul>om~=GK(O8FB
zN0N^EIvTJi$vP}Lq@dIznnD$j{);wb{nA_k?n@ILsXChJure%7M^haVDXnD2^e<w4
zhgq#yP-<w-eQZIqrS#uyR4c)<BQ_nHjzKyG>#*x^=x8tdqQj}fr6a5(qQkAjqr<Nw
zpu?-9h1u%Uaj|l${IP6%vvp!|Yb;k&UB?i!HK;?9Q_a@ORg*IonnO$$sFS+NY>n#3
z(9uRmOvmqL>yz54$7`obuvFDnM?3LzHI<s*m2Q-=O1$WMIy&n3NJlRgd0$6Y9o=+%
zpyNY2opf{|bf!wR(yr7g&|OClnmwi6g=R6OMd?Xq)4g@{VeZH5VP75nn3P5(K;k91
zKb-+oF$c;#Wbq+7hU%Ek<S-d|9b<Kj(=kHFCpt#z7{wN47e3`qWp?Q^9iQv?g1axB
zxoI{Uk`a(?w2m=4GFjRkuj5M{lXQH|dZg3@=_EO`Z(p&`(#dahOy=lGThg~FI;OE#
zQ*|K8a9a0hASyL~%i=S1%+xW9Jew^_g*B6`-^oEYTV?P?f6y_Pr`}B+^W@~!v0KL;
z9Sd~)sAHXu^*R>nSfpcxj-PZamafJugQg}fBP`LelyJC3iuiIlcR7>c^T{i9tkSVo
zNAEV4k*DKV%UGR`cV!qcYjl)vW7(czk*uF(ro}AQB&!tvpN?O3Y}E0Kjtw$NlB~UB
z7O84*l68}g%{sR0*rDS$sWWETN)_0`76oM6mT9)JND)cy)Uk`X(x_~+lB|1m?9*{V
z$4MRgbsUg0MaN<8#qV-nOier}C)%0p($$-eltWUsjYT?kgq0lCag6m#m;Pk%ap_Wq
z(Uw&Hmn=;eO|nV5r*xdwaY@Hz9cOf$WvL4?x7%6*Z7t_i&(9O2>_vi%gYXr_R|VP_
z&NU8^<X$J-ph~Z9>G)g5D#?0V$0Hq&b=;AaO3wE(N%v%O_BKDzai7V_)y)OxCp^^g
zSCaKfk~Mot>k}PMb@}}u>Lpv7l}Y+X#|v3x$|OCbKBxXG6Tp@xW|3s;e{^0_#gQgn
z>yQVD$bGzTWGRR<r})$2g2*03jv#UdF+7M7LF5V|cM!FLs2v1?$P+~6AVznyycI;=
zAj$@fuMzVFkw1u{K@<yO^8!-=YLOrc22n@~_O;lPtsf*?3kT7ruSMYPAm)E$>DSZJ
zX`8ut5PyCbUy53SD#?=4O75ltvXu^^4E;?XStKdVl?$Rg+ZC=rs2D^g<&^4UsUn<g
zts2DG?v`q7t9lSMf{><<^tC+t$Wk*12|IDcR40hK^4>TIe-QP8hz}wyh^9d#1d$j-
z!yp<3VG6<=#4pL#`avWGksL%y5R-By%t*F&e%4TY3v=bs1c6|RBpWa(uy=z+v~dtk
z=$uTpN~zQ!q@eg;R&LxZ2x}1OLD+(LCy3@jv<jki5dVADumziF$%0Rkt>Q?jCN+}_
zS&Xt$j~0YI2xkzkAf#!@t!=S7SV{uiL3o1js-8%}mKLM8?JY)FAP7B(_k!pcL@<a@
z5V0UKf(SD{%1WfFi1fT>veYJ(ON(uoE9SdFv<;#i+m+m*7OQlieGnZO(4b1Hl={|U
zeP0GVh~7c;3F1T6)-{N3L3C2R>KsHD@*0cvy@salL7ZemJ%i{$Uv^yTm!>}oq8A<6
z3vv1e(JzQWK@66mi<mxUR)6YIi}kL>Iv@zqf$X7x)F8Vf1&2_F1~H6~X?`NJC5Rt`
zSQx~}AVvl8m5e|TpGnNAq_IJa3*z%2zL04z9X^#bhJKIk4H|5Z7nPXtLG0_3{ACam
zWQKHa@K%a-Vh}6)Buns9Tgs?y=11Kcd>zC$LCg$dRuGeen8JW>gYr;<<f*d1-5X4o
zquIT|v>+~4O%;&hQffvJSNbI1EuSi_%x3FzgP0e@cR_p~#2hyF1FIT+EpdK<6lq-w
z$~HfU1wlv;7xgo`v8r2x#zReuf><2HA(<HOBrgeKsmwIlmmrn}u{?;M>E~=~Ss|x?
zTg&Poej*63B&<>aYl2uyXI-w8E*Tbi4#_$urP}p`luD@^g7`Ivok8rPvoVORL2L_R
zlPnH&5;81O^KaxWvdBy`Npd@rJ7j*=v`QsXp=<@Jr|hP`KZpZ_JwfaxNU41?EUfBx
zIud_S&d^G!Qd{j5t0ezmw+{z#L`GZf!igY`$*RI4(*NW1|DsB5QtD(7r-G0ysYhy)
zhRz1%!8@oLLA40Z2XP^YEg@_T;bIV%<U|hPoe(a|@siatgxVoo4dPl5uY-6a<J>R)
zI`tLxMi4iHxJCY(`aFo+LEItVr9PtGquvkV0pTH4YP-}JkI7GhcpAh%%9mTgpDA8!
zGTQx@$rnNVr~H?Mb&VSB>Sg@;yGVQET3NOb;zCAz_7IAPP$GmJOp22;gj^xy4gquu
zgitVqJSz9C5b`R{7eao;@?~owaxvu;4xxzRw+Tf<Xq}REbxVG6AZ?Wlp;QQ^Ln!}S
zQm2)PWf(S--&&Rpp&XOtL#U$asSrX%awTeI>W};uvMRY6wK}y1Ra&VTg8U7rK%Efk
zhLA@8b%*47Av7V!hmb%>456VaWeUNpIEj!Pf`yQx{Q86jAxv0n+(#i>BRY+#nfsV3
zqnF3HqApug`prU+M|?}Nc?c~+m=eO&5L$-NDugj1jFnLeAw7imL--&BTL@YR!4N_r
z*jZc(Izq;6djif74s0;Fl<y{Zs9vfs1V14Vf*!($Db|*yjZMn_mysL}p(Ar883`d8
zLM(&~I&GEThH(2xTsy+M%5NV+2gUCZmajGj;rY*|SI12shVW4cy+Y{3tj;R33!!TW
z-3Z;OJydQ_nU;-=fAi@bLZ1)@g|aS6_YGlS2wh(o*T(xX_+x5+>Hunu0tqJ@r)9<r
z4q*t*p&<+-45yBwj-Y-L!lwkOb7Tl9JB-RdQ_klhd_f+qoRKNkaUqPCxfH@TA$%zZ
zJ%mXrcVY-%k>w)1)FYeTFS!rD{rNt{Iyr<ZcZ~B+ZiIe)ENxl{(?eLv_-{j)LHISr
zdUIL)%n&XiZbb;QXwDAdyAZw)VGff^L--+txgjhJVG*5q)CD2Ds+oO$2#wz)UAvR`
zBTZ@U6Nl00VkVb_u<x-k>oWg#L0}pE<<ttiZTP2<aW}I3_G(oKt|!KTtPWuf1J+W1
z4q+W(eFz%}|I1W){wHB;cjKb&ujGv(Y$9w{F~5c2;k~KbLf9U{jj*u@><D3}jA|I)
zgt04x-ExM8(KL)bA?#(rCSmLgVSfn!gz!uzd<egXa4Lk;%soi`GlWB`l|Mo_Og^HV
zqahqqEWa$4MvpW37xe`7Bvo$IKNG@P@+0awS=&Rn7Q%TZFHkR1FHtX3rOqqT^Tk=$
zw6BM7hyD%fP3kS`-&BdeEvwmXV`aD-!o3jgEB|uw><`EfmD8_E+~W{r=1A}pnos4-
z`qjAMN4Dp3^d&che`U>Vm;8bO|50C3H&!*S9={18TNo9>s2E0E7}>+f7e;;_f*jPG
zVU*5id_9qiNrBv9AdEa=yhSIk^5s5u$rUX?r)U_(2nE9^L?}!xLY2t339Ggly)8~I
zO)U{dNkS>A<WA&Iddq}SmQFe4mk;A=XJax~3Zrru31K9LQH8lR!>AQTRTWt+jOyeX
z%2_bO_#Ucu7<K6U-!pdVhEb1Byowy19A{EoKMXTDNjb@3c_^zfd1Olo<Ndg-`zsoR
z(NOt~!f33x$GEs>NlB?p?kX79EDUQH{lfS-jCaCl9)>dv7js)s9bvRoWm|>OT5)<9
zHpN;PcExSaWjo2&Q+F61njORNhT$W>8^-d%@%}I(ObQ3+=wSp2;)KEoE6)41u{%))
z$EX?9Hq^G%c418U$5<BHGbzv^jQ12@Z65bN`GYV%By^&F6h>!4moT~#x`ok$(48vv
z$gP__70W#&y~w?l(<h9+iW|zkLtzXEV-lT#)L~%^4`Yyu8B7>L9ZHoS+K&k1lQ4dN
zX&FN&^H!x#$s@xUMUb9+7RKk~FO)M{&Wo|e;EZMQabZ+SO&L%Ak~)Dpkt+3nMUcl(
zdpKh!%b<lZJB;tbn94ez)wawGV_F!~!}ylY4AoXmzDzt$vCaxZ!sKZfqTh!xN7lwL
zc8Bo;BiDxUa~N~On8)ON>as8vsCs@3V<CAFbuo2`%3T`9r47bnBHMDBE5i6m<*p>G
z3S+f$)`St8ZH&M=I-A2d*E4RtEDlM=8;Spg@r#Pw5H{`~{xyt^bT%p9JJ~n~e+xr?
z>98e?t@O81w^MgecTy!%?#|sq-YbiLSpMY5=<WV64uo-C#r#gV5XQkU4u$bY7>DVc
z2;&IhFX~b1G3uXGsp@zb`+2X6u>9KPWEiKyI332Bu>9+5);Zp3VVZ0baE{J-<!An^
z{vwl?sF$f%WQ`(Rqe?-UtMXuKfhn_6ZiaCyjK9OU9mX9QhX`^<a5s#5VHB-zeHq66
zFrvNVhE7j;ATbHXXv@tx55ssA#^bPY#pX#E|Eijw68@n+3*))+%QcC6q4+<7*Pr%^
z@LHD5`qnq(Y!PE0<EYuGIjA|QlGUKUal8<L?P*dTnwRZKZ$*$df_zLCjTo;r`Bi)Y
zLP2UFYGG=T2;L@KDq)O6u?UJsP=bym%MwaPP>N7m`DF+)2g*fIK7tC$uR^F8K_%r>
zj-bgAV;ajQw}V!Xphg6Hqu3Wk%?N5m@Gyc$5!8;LP6VAJ=n_HQ2<k=9Jc1Sx#Iv3z
z5u`?t5J6%DCRKBa6e(>oN03A(nQEbWCmXM)^;Kj8Lc<6eDW@^vgU6|9gh`9yn?=wx
zB9FN?Uc%~yOx6g*l<l1ec0|kqEhA_ZK{$d)1g#@TXF-1ia_P?&fjxpvH!Q+h#P}`0
zJRex<aWKXifs5d#dZ=Eik1CNhzloc=Ej|#z^F1a#f*}16)m58!{;0_JB8WxMGGC62
z2!^gmY!gA-2--2Xy^47^Vw~ert!y1=?(!J#2Rf49kKhBshty8gZnungo?Rp87Qsf@
zmk7E?&?ACxBACp8o)LT$K`*lW*;#shYwrj~MlhjL<32R|M$nJ&aRdVi{iy?}?dux@
zGKf4lf+5m*@(AiMsss#=AY;GrA>|Y0d>X;(nOQ60s0cob;B#huLH#m<(JFEbVJvkV
zb-eVD?M_fJ6C?PFJV`lUM=-pranPqkFg1c-WIL5KErRJ0ERA4U1m8w5BZ7G<er5#U
zE1pG|9l>{mIc#f=%KagNxn#L1QR<(s`~`#`BUngSL|v?MmqcLM%4J_Us|YKoKSi*T
zka@@BYVsQDTI$bKX>J{1eP%L(!&8hpW!E-D@GJLGu0ct%b=kPh5!{I2W(2=QuqA@6
z5o}|r^AT(({6XD8-5J5I2zHYXP^H>Eaz>N)DQABKC%-aA^>^hQjNp)BS=$ejk5G?B
za4dp9$tR>>1josLQKgd1_nfDgJQKlb<;!o|&niAA3k&~ZRpKwuycoeH!e#0e>Q(AB
zszhFw+0LVOi_ZNB`tWDne@8I0pXE074)tyX_Xy(uUCS(C59Cb$CVoRR^WzAf$k`D^
zuPC0%+>SFBi=ucG|3vUi&gcmKl{GeMoR2Re_%DJJyL04Va>N~D$$iPDUq$dbf;Z%B
z%*{@Xqsooz@^~u=&KX6nC~`-ED2gyE4>ccE0^TCzjT+sMq-^==6rdK2qL7L#9EE&^
zkr}gyk6A0qtW))^C88)9g(nJc6s4jl9fc)|6y}zRqN=K)Y!u}bmye=?;)+pJB3D*U
z6{)1SaYJJ@S@vhARF9$tvuaXnQ)@*rXq@rstWFelqo}9Knh5bxBq%2_3R@lH^;b4?
z6iLcYj^YWAX6*s-`RgQgtZlB(tOijujG_^_aTHb+-z17uavHU%@|zJ}T}^x^isn(Y
zh@xc_4wc(VS|_(wPC8-DON*u)J7NFQL?^+ed^e$Z1FKIt9}@gg1ftNR2r}7@8lr}&
zktm{3#K>)^8B`eoc@$V%#qv5L&bv{xkD@~q?<xQ2MPqsI7{&X_`5=nPyzfr@PBc4H
zyF}4d#dM3JJGlq7r}C?n%GEoHK2gkwVkXVLQS^^uKotF=@OMl8n5KMhE0qt7V%;j!
zv?!*_@ufdlCMRKN6l0<o8^y3FhSM2A{Va-42%l0%Ql+X<G6JoPdv`xq&KHEyQM_H(
z*m2p$Me#Mw@lkw9m=MK8!mvX|f4(9MOp0c`Q~id{WaUqZVyfcx6LM7_mE5X^<y$(3
zE*SIE(!e?^iXWnw8^!D>zKi1fDCR^V&#sia7ot;AQU;r4lSp}1&%7vpmJwj_`B5y8
zQm5m8jACIFi=tRe|EDOHs21ggd#U1OQ7l)yLYnAo+%dS4&MM`vj$)1CwNZICm$8qs
zt&d{6^8ZKpg}Nb%U!&L<#U>`VsF=-B{HFLdA4;$_ifzj2cG9@)u!G5+QS2h@R=Ink
z2>)%o#_gwbGKy1C93cNLr`yuRgVaORKd6VPl68b|G>T({KdHx6?q5-yP#kDrJsrgv
zSvq2<8N=Bq&dG6)p=b=}qqq>oV>$h!xERGHnVeO!|1Ashjrhw^TxCy$ugEy>O%%9B
z=Q>roeS>f_id)K=TdVPav2nMVyc5M;!aeGJ>I3RS>LY6Avpb$f(Yn2{(B+BYANtRt
zcpk;SvVK}ET^m@l#qfeG$^W8wsrXeCuNA)`%svz!7en?Ka>Q^v*(}@W23FCWOy-Iq
zxAH-dpAx?nGhQR|Qu9&sQwvZFQVUTftZ)oP$UihN-kTMRp?C~c=#-$AjG<Hv@(j|<
zpR1RqStf=?iCO1bSvuunC{L(Btw^mztxT25n^ehOm0T@`>M`Ti7x})s`q22!FHE&!
zs2#)mF?<k1ofzuIkQ7654D}eFplXPZVMf>FH9eCPm1By*9D{Rre2xQYBXXr!=-Xn@
zVn~Uhehl&yi0%h14Pt00eO9H?VrWcmqMTI1CV2$3a+<|pjp3abn$u}TZJ}~o#;}Pa
z)>=8~vI`Tkt}EJO2+?<_TxSff7~D*HsJ<AyDp$UomGSY%5TK(gKNy32J1kkUh2<#3
z5M@@3+CGL171<_+w&Zrod6ys;Iy%Jg9=UM@9SQQ0C$r8EWB4S7Ph;p5LuY1niJ>Q<
zYYg3D=pIAGN5)CrG%-$~2b1w%m_A}mubA91VobI^F?>uA?i)ita?Ps78=L+y42WT%
z${iZRAo5`43?XdaWf?{ouKW=(G?UvG<+4AWu`!H`VHA1s-uTaA_?-NOiXTlFLoLz4
z7|-!Be5rCz@?cGfVPXtl#pGrie9f#`F?^$9rpGXuJViNEW0*!h-aqTee#_*H7-p&%
z?MU2g@^{MlK887pe~4ioFSgH*VL=Q}+Zn_4V+;#pxZDO;+F(%(i(}ZDfo&OB62sCM
z92szCU|9^yV|W$A>ljwV@KX%eVz?f|${1F~uq}q|F|1}Qo2hH4YgM~H$FPpPKGUK8
zLft_9mAa9-i8?f&@yfFAR{U=<Y>_U}{IpQqrb=mYtHX{McE)f{mRb6{V%QtQz8H2h
zxre&>fHCa*$$wHMd4TYH3<s5SD26}Chm~_AhNFs)$%&sc>v!wNWB5z?CkQ90r>Li6
zI72u~m9{=CWLyuqz~p6FVPttMZ&Y<jpoH<B;fjj9N~qd6`9=&k$<JfB6~o^#JW(;X
z2@hhp6T@Bdy%_GR+{i;?h2Jwh<$%ZhQ07Tp^P?CZ$1uI6>16|}BqjH$tpALECJVy$
zc-b;48KwTE`67n@2rsE&enNZ`L$(am$Uw~u#AP6R1`21ONCt9bAe7xW9dc#xBR~dP
zZqE8<A$JBqGY?f_-Xi49Kt4i#Y5|p7Faw1Y%Rg1Uoq?hmsGNZ+87P*4<ptwPWZ<*W
z=HiUm@_p8)gOW^^%0OvC8ERQ-Icj;Tv|b?t70H#TjgyQTs%D^C2CAzV=yJnq)+hRX
zO;IZYwPlYo&?*CU7$dXpoeb2?K)npaXCQ%Q|Bc4zC6XIbO&Kr~lBklKoB<0tMLG2e
z4XE;wtr4LywFy;9rDh<F+*CQuGGJBQ<xO3QX`X==%8{#Htuv6G0lRX}^^UWVqg`@o
z8L(}MZ$Hs^i7eI7>dJsS14A+}Gy|Rtcr(x@18p<#YkiY119}F68Stxm0vRaI>oB1V
zdH9|&M6nEnGmzBKcp->nHbK2m+nkYs{t3o1Tfc>+9nFt2&?^J)W}rQj9sVCrX8|QO
z(stpQK`!pjvbfV@Jp&9d(75a3?VeWLS=?Dz+}#$}g%5XK7I$}d7KdH_H+RT?PR>0~
z-FmB1Nh%fTbV79-;V{BUUiCt~3UC>*_05m>&v=aRGE02LC{J#v9n7ye0V9IskmiJq
z7&R%a#B`z4TZ(^4=xRhaCc8_MjPjg(LJ#RG57c8v#&U_hjQCPEvI!SKoIXbMWw5<m
zr2O;iS0e@(vB8LqMhrA!kP(xOm}10W#*8=OcO!-vF;u#x5yyBVahwsujkuUIX#`_N
zQl;imMvNwp(VVeH{6^0AR9$eH?(hfJ2}Vq$f4b6-v3(Mg#g3(#YQ!`n<{2^Hi0L%v
zQfE+SQsw&;vk0@PbBx&WMy*_?`aX55Eug=yPvSx&7LgZIS5ucr`}4;wr7kn#55jV)
z_$y=ul2>U?>|)&-7F<h}`qvTG8&PAmI@3)?{7L7(0STLp*do14nv@bu-D-r3>wlXO
z={~BXll0-8%-St`{n*%DWcf3lWXZ!edt^f}e!me1j0l+!HsPQVhm1&XLIx8K8*#*l
zuSR?`;;3vFBkmb---y4AIBvvcBd)N*zp0m~CyY2rI7K~8Jwuh5o+X?!;ymF3^&)j@
zg9;KL)4}gaB|64kHR6U5H)Tla7<bKx>qgA@93w1x%ZS@X+-0ddR4G;Eegtx=i#%QH
zfe(y$V#HGhJfuFNKBo5ixAHS1o*S|MV%$d~UPw=iie6FKAcNsc*>T#(%Jhoxn)=3w
zw}gMF@2C><p74QMx}-XGePaEeWp^OlZlMkl{~G1Xm5DGRoeBRL@!g0Ble!gBQ3WDR
zh|*Yw{nRF;ku!(8KhD6@GV8NXJ^0q}sRxB6cOo*HkjaE-6JkurY(f?j3Yzc}BeR;2
z$Ar8lWHTW<og60QG$EG>@+uf9p4)`Rd@0}deep7hGrH@KGsb+3&rdC2!udSvLdjH!
zPGRcL)PjT66<)-Iq9zohQ{03SCX_U(yKPFTQYKiE)%s;BZ9*A_m8F)WieH{k!33S=
z%<?D2nh<9~OA}hrjHgyHL2p8WN$m`YCR8$^vI!NL6leTj$)ZUn+}NtZfP4ngswPx3
zAz7=rz6sUIHK+#7uW3Rpa&2lI&97@hJ@S)4(x6q*4P=hx6B<$*Q6<@!(8PqMn$wKX
z+=Lc{qfg37*u5tazsTA!A@;nkHS26cZL7_zoeAy99W<w-2}ZJsYNjf=)sfk1f{jT#
z)oFr*AX)v7soTZHq}v3K=6eZ>2|j|K8lVQLQp%ktx|0c=O;~Tj29rETjjkq4G+~kn
z-Aw3iLO&DwGq?w}j|n|Z=tb^LmA^|!J%-50zDx>duaf+$bUYJ=m@w1?@dq+%%eKft
zTFhX=ksh(b2)|Q@n=rzJktU@4cX-<3NMnb{Q6`LL?ii}nKh}ibG#+P?FYu~+RxXZm
z6Ey!qzlg~uOfg}O33E-DYQmkf@za>w{;_V{g~;jT879mmG-;hUi!fV;#L9-dl?^@Z
z`gtbIH({CVn9N#W!XgtElNVB>k_;u14E@T)E@5&hwZR0n^UJi{gmrX;R}fZGS5a4+
zu!gXfT336Aq|~<2giR*wGhsio{uDJ~D|s_@3)S#2W}6AyP1s|?UK4hhP$gI7E@thd
zRzIOW(<RexCa=$r?Wi3w2bWg+%mMmGWRVHt93mVx$;W!sapR~7$LRcJ!euSyxCwuo
zaDvH`)OG{(r%X6aK0`fgLY*YFW1M61JoN%q%!?*mB0s68o=#lR{HxMcW+q-U;X0ig
z)SJ{>)Z5fM)ZJs$qyK#q9>|f)j3Z_|G~tm6znIb5jK?NCF`<+hrOkM1!ZR5v%_wBX
za}!?3*lR{Av)XN5n()?ye@uAAI>mWy!r(o+H`497TZ!||gzqLqF#f#>AGFAigij`X
zCVZiOrGBGI*?(pHC;t-sF+xW4QrCQ>`Nt!6sm(}ZMou$wnbGN}E-mMh%?uFIQPWd1
zP&1m<%Y;ni%+xGYsWYn?{_u}2p52Tbnr}}s<TfLZ83i;auNnC@&SyrOXmwkUxuo6<
zyj?D`pcyC9sbkL1W)x=F#nzEU2*tHhMG3{snBa@L|61J;CCn&Ev;1rI>Y$7nWzDE+
zMm3t{sL?3_)Cy+k2pcO$#ZA%0m=SBn*gR@W;>@VmMW6U0D&7n|V-l!|)QVIIt7JxH
zauT%)weKEvDU!{oZboxD)+w<y%xG*z6DAGRn$%im)F#xS)}>1EdS=uoH_)7hghpoc
zi2HH%)YOchrmC%#sTp%~%lNOww<NSO<7_cCri~eG&6sG$Bs1EX(cTP?8D29wFw92n
zXoitsGQ&bJQ>D1PtE$<VWGj=qVj}GXhZ#<Si|RI`5BE4(pHf6I!)HckvwY$Keg*{0
z2ud3m6QVQaPhE~_iD9x7>10+v)g;iB&M-5E6S|qvozTOKo@VsY;`<SL%X|raHNVzU
zb)ED#<5xNZG=HEOgUlFg#t=IBqSe!zq2%4asB2ZdFTwRW!i<shN13rDQ=EK4akN?e
zkm4BXSTlYjh%?TN@#NpB6Q~cLl#{H<W=t_-jTvjr@-Kc&Gh?M0qZUL=H)DnwD_H+b
zvwSEy%@Q+~nlZ}^dB<<6Z85XWm?PuEwwSrpdDQt-F&7XPnz4wmm^%DJv}7$a<L*TD
z^yv>)p0Xn>CvQHHyzH^Mo2+6|U^U^zXmwq!Gh?$XsTu3d*dV>4f5gZ!i5nTPNsIrJ
z(D`i4|IFBG#x65<o3V}NPU?2*4(eKNWvMx8m2Qt2d(AjVUz|_3^!v#B%{X9&3=U$-
zK}Ylu{bzmD6V9V%d94<zTTsJ-zsxu;1BeBAE%;jo2QxmI@!5=%W}GtPjTvvvIBmum
zGp?F(jg_1=<ANC%$>+>CPmpSx&rpBhyJW@{I+tZNo>13-Xv$0Kgs+=%%Z%G*+%ThV
zpK3Q{Pw7<cuOx%$9Wzpfsb{jPS;IZ*ed+`1L#ovCi165qCz|t=pc@+fobW>PUz+hs
z<JV?PuB09sWctU9kM!SBrSb0xAE@_|4EB=h-u=aluVzGA5XGB;-(*KN;y<%`%jI8L
zKwdIS*mpA`7*H+sk8vZF1vxFqWkG5S(pZqz0x%#G^=pzL9U(ncYRF(gM)IgD>VBG8
z^RrlxRpV@g>=xu8$gAunQl?q)>L$)j^Wfw7d=})lKxaX;1qCc9XhBH}N?GLLA{4Tq
zumy6(@v~N^@4nh~s~D;jv7o30#psuy7T03rLF=_^)#WO!IpqjtsAZ`sZxAhSK?Noo
zcdaJB#>Q9>YeA9)RV;|3pFoYL>ZK(w)yw&d5s`@&RJ5QHeQ_!i`g<a;?EZ0gv8n~h
zG^=Sba)~#!rn)r^7Syz0v;|`<sAWNI3yc<+EU05aT?<+<zMchgv$Tl?O_{83K?ALx
zhJ;2IG$z#KGYQSeEi5>g+t8ex@^;FW7Che>lQItfVnJ&Q+Avp|(cXf#8n=_xUPaye
zI%rNu!rjtwW(zD9bhn^~1y&1e76h4Px4>b6-y*N^#G*T~P76F1crD1#G}c9RQxmHg
z6bllMCWosSe1z6j3>i{YmoUj1E8H|zip#7+7KAP6#L7EUyI9cYggP?I)YXD+G=-N}
zG4!;cmj!(_C*@{BZ;98O+|MKWk^5Wls|5or7|7%x>ZZBsnNP|E`(QdlEEq}{MwQ&*
z7L3q%Bw-YFxU14w3x2a;s|DLE7-zwF3sy7hcMB$1u*`x#ESPA)Bn#$PFxP^~7EG~V
zmR8$T3#MBzLq@PSG1DyASH&Q3tBPT!1^;xab}U@&Qx!v+;c5$Kvq+ArhIv}qr54O5
zFOdDEs$n5@5p^+j33c$;xWj+N_$sPrdd~+$EN78b7Oc?fS!t2G%|F(ytnD=xthHdB
z1?w$nR@Jas_Q!p?4Gi97!A63d>~*`LZmB<+yu;^Mwxm=@?YuK#y9GO>>&ifF!A=Wy
z(LZRxZVUEUu-}3M7VJ$aA|L6fp$_l+q!(3H`<_fg`>KcC(NztHEI4ez5etq=!C1&&
zmBqikKXOh7b-z9?tImQ)tmlLUCkgj0IHlEm&w|qyJUgM*cE*CU^v_vvo^Zi}D;8WO
zU!-2L;4(qtUsX<XP2*b@T-W%91vkm5SE^0DO}?Y$-nHQA2Gw`${4t_Fu;3wc=X2>E
zTku3;EZDFk=9yM1x7-LK_j?fk!h)9;2*~uxg4Y_qA-tvjLwzUx>a$+LK4|rPBz&TN
zw&06YHCo+LqW@a(p9Mo)80x}z3nHxe=)fljBCUwB;(s=5wIP)isjXOU#R@CZSdrF>
z5mt<}0#>B6qNx?ltVnM~1}n;2QNfCgR%EiGpcOw^k=cqYQjgq=wjwJbhZQ-k$VL`F
zJE2!XY@I>6Tvp_^Vq7Y<TPC!N%%jERC2Xx~$WJKn|NgO<LRS22MJYOksl};9tSD+l
zzC`s5Q>J1xd(Dh3K@g{;6<1EGJ5g!PDPu)hEB<O2Ti+B{&Wh^U^uFP-IxC_X(7=iq
zD`KrkvZ9I=aaP1zk!VFlEA$LVuwt1(U90(v>EnyWE#ucrDlx0F1Q%83CDZaGwF6YO
zqAs(lQIoCmpHnrUx)n9(2pg=ZNv@?iwFz~sSp7{s%*j-bPJLO=e3Yx96^*QDti?C6
zB3MgZnUij+4Qp;i3oATUc&%t@MJp@JRt(RruA*P8Xv0#isiiCZSZ{5uXs6ZIp3uRH
zjs&CTn+Pu+MOdt`T4A%oPRB)cSmD$n!?PpbRsYfd-Le$Z;<6S}Z^0?D_>A#c;kP0n
z&9<VG6`g5@tOygbM#omqqc+U)ETRjYe$=kiZq)A79@L)HUew;yK2)ipFX3`kLw~}r
z)B)6iREZfx$ap()2w|ud!w6SeL=Ly2y<NXzmAWjWtQakuo>^n46R46k){5UW9!D5&
z#qR{g7yG`dVWJh2te9-Y6q*aDQ>~b8#SAN^S&?U}PPWD4f$EHAS}~6Sv#7JF;?J>S
zuEu^-<a~{@R#S(~g;p%GVzCuVWb2Po`^-`+?q`Y3Ix;de<HuFZA1qR!N}82ctdd@5
zLoFLtTd~H9yH?z@VyzXQe~#L0#TF~pS+Sn+8?4x*&1<9V)Z=0Yo78sxNmFhr{?Cf7
zR$P`H&5CVSY^Q(HiXB$$Bp;*hvf?OVw-tM=(6QNj=}2w+tk|#d0m4Bm4r$I|D~@QK
zb6-rWMv=}gv47DyPW_vDg4*lWkG<xU6{qQ(vEr;1=g2azi&mW1_yS@6-*J~TXGS4)
z=@P4`N2RMYuUT=OaD#f2dW(9SDv@^x!Bdg<t#}}VqzxHu>Uj9jiWgSAwBnH!$90j9
zwfHB5r_^WE=hUCxM7$z=wBi%twH0p&QrlZA{?YiI74OL(H0O3i<Yz0s$cW8ZOZ-<W
zzFF}v0}jVW{zph_!;AasGJdxrLW_(fL{U@OkXrN8*pRX_N^vQY&W7~NayiuGhZ&KX
zY{+awQ5%ZU&tgL!8}izamC0<>>{N-*LC8tXWkYVwzYw9;mQRjBHzEqykYDpx@a5_S
znf%FyLWG~S+`={#(fGi+$l_$Z4GA`sAeXeElntfHI%*keS*pyj9HBh50yQ%)Jfm%h
zVKSB)N0s<^8yd0SCeo>9Lo%VF4V4I$wa6qJs%Tu5F!y6bb%H_jYuGS-%a46COE|K&
z4RvhjVM9+F>e}S_F0{6xjScl}XkbHA8=A3TLmL`vH8djZsvX%xbN-h-zB##-=CmNR
zq*i;U?i#<?plnmSw@hv6yKHEu#kaSi1G%FOMjK3Io0e-PSg2O&lB$t*f`ck`Itk^<
zMY?V9ki9m935piuBlxKSYS4y|mfQG2#IS+7PE2;DcA<8qcB6Kut|=JV%ZA=IEVJPc
zI(=*yZ^Q34^tGX%4gGES)rP?~46$K=4R5=|X1o$RP<GENvBHCF_;fG!zpb&NLs@(@
zbr^kFmf<#xpfi#>iYk6ao7!W?*f3UeezRem#{HYbO|W4ilM8H^WW!_|8uD>RDK&-u
zG#jRLh?`2ToK@fKe(ZD`X4p{Sje3SKlm09lW)tR6#h*)<XT$uIfNej{-WN(&`7d^n
z4U4tNC4{9^x#_o@u!g$AhLy5q@2Z_)6`j>oNv1lbF4tNc*3nr{-9X()-9-J9Dv_HB
zTd1Qy>$cgj-G=*iJg{Sj4LfCjv7@mayKLAkd!-#E?bu_(UKxUHcxl5v7Cd3YNy2^`
z4iKc~gEkzp;V_d&sK;$MN;pRSi+a7F+F+UfmOU<m%BSdGvf(n}v<+tnXQ>i!&W7_E
zUm#qh_DLUkg>X+6fpFD^YXm8E-G&?Fo77vHf7^yT8sD{HGdqUFKd|8u{fE@2n`19s
zj(<#kqQyV8;hDzI337Cnvaf9TX2ZX9UQ^#l*CqTzm6&&g_cnYWe58J&ex`n*O5|4?
z3^jlJ2Kt{3Iqm9!>AMXPgh*;;JEH7JWk+fzGf~q}B{;1eAg80Ir)JP{GurVqPCfIK
zLvw|bky$i9s~y=i&TdBz@_=mWHp*p3ZaebODM-z$Mdl;qrxviI?$;kj^PlV}q{aMf
zM`3aiYEjKEMksE_SGPKsQg)QKBi;_Z9c8qbI6_%F%4tq{J1UTMniFkDjK;Bq{Bt6U
z@$@Xgjzl|Z+EL4nip;8PN0J?twD_aX)CO0vqZ%D=HA7Xxd)|0Ywxc?eHK+z^g_IM&
zTt9kpZJKpt*$MURs87gREv^AU>ThVrv*+rJn%L3Qj^FGUXGb$Tn%m*GBVb1hJ6bZh
zjUBBBzfjLK{4tl-cAVv@PFp+L+2ur6?G;w4KnFrcs*!4<n(eR<id9zYv5_x-i?G|_
zAdBg=!$o#eJyb7Mp-PO8;LjQzv?D|wX-C+OPIe5{VmcFg+tG#4mD)|q?QTa8a!+b6
z&A<9Zy*t;3$-Z{<)BOH+{7N1`9Y`HS9ZZ!{LkMGP#TTrLVRj7H{1Gy*t-6OBVn*4q
zkv~L^PKl(BwPR;5bqE@7$M1IhX~$+eCfG62j+J(-vSX4RlkJ#e$6Pz6u*g(9rV->N
z4^nVCd6pe#`srraF_Xz1{6>uA&SrAr%eZ+2-{XkIg!y(XAV|zYI~Hj?Z&l<H@>0!N
zX2%~IFDI;^%5{X4T}|F##~RrsdF8d1&N@5R+vNid>aIPvc;rT!o2ZM6{OCnn?AR_t
zy_od3%EFF_+(yp+UhSVd$;YX??AR^iKluoCFLj?C`|UVDK1`K@2MLE{&mHz-US|hK
z9My7<+3}agWrn8t+l~`<oV4SV9XIKpre4-!&PZ=3pQE1F{0oGO)Jt|88t~)1=!zXz
zwU}#mTqobqoK{8SZjo<O?`ZyA!aeHt@{teicx1;22Sz&Z*p4SMN;pv2fv2+b+EK!R
zk`6q#<Aog&ax2Dxmv+3e<Gmdp?0C&e-cjG!@s?1mROCN0?2Jv$vME+n*3x(03IAxv
ze+>9U75}pxU&vpn-!%VULZe!d-wEd*M4H~Kx9+1H$mT$HhdKzPav-$>X&e~DbKSHw
zK~3jCdO`*VGC7dhfs9Q4e}Bm0Kvp_Z&+KZ3$<5VmmqT+3Igpc_%YiMdJU5eh9LP(^
zN6k+yK$YSJ9r#J(WBX%&CKuM6A`TSQxEP_h18yEQN-<f+fwB&iCd+rFr9zp?F`3{%
zc?T+xbq?qq_;ruk;AlEA)K~}N2=P?O?eI|T*sDKAB+{v<`Rx*;k{qbwKx+ruI8asd
z>o`!2oJ_4wtwA+VYf@`brRLfMIR~ywsOLa^LIY|uYC{Ja5hT7bp$WCA19JOC%;rqC
z&|+FT(2D#EHQRPIrmX|*9Oy-7>IPkV2Lj{{R0-(lfYAYy17<o72b=^8)k?Kd?GBWx
zr4AG_xg1bvx~bxL9PnzKszsbnW4{B%SF0@vIuMeU)9*s<<UnWHI|it$TBb5J)D73w
zfo@va?t~uHp0XVatM&ADppOH69qPx&B{|T6eh&1P%_>W=I#xdZGQfc%TVjQ4Wk@<#
z%`k|?2Wxc>Aq=GsqYkH*E+09{fzb{eaNwW=V;mUkz#k4Qci=Y%#xZ7z1LFx39hl_6
z@8k(oX~_y6E+;!MRdc3De@hp6W0Y>11Jh~Fa9}=RrUSDam`$EXokN{VEx$os(h&)&
zE}$c@(1Atd#hN4iNBpJI?57dSq``f42fC{pXoUkC9N6f<N(WXsu$uAfsB5&cYaQ7C
zKizs>3$Lg7x|(5=1AjWO-GLo+HaoCYi{Fw04)~j>gVHw5Kk!9u!$<y+XQu<Z=<lZP
z(PH*GuutRt4y24Ehv=Mi;1uDo14jrGb4DL^;Ftsd@+kio&EpRIO^|t=Amq6paoT}1
z<mV2YCEU<r&N*<Ne1Uq=flCft)^e{qaD{wTbFL9qE>Xux*<?2zxTQ5foZAlEap0~4
z_q6!O4&2xH0pTI_5w-I3xF>|CRH@;a1BtwHc_D`Y2VObwTE@c#k(ED0ym8>IL%mu3
z&Vhd%>dk72m+O5wpBGc6_cT8+CVj5h&klTX;II=%ocQX%H|eWRjCJB)2mX^oj}u8w
ze0LziiJzP(<V2(sQBGuVBBK+joa*48j+&a9hMJZNsst=}rAx1|H8Coa6PcaJ=|nD?
zS)9nO<z^*hb7J{u^{6_gSY!?-X7VgIH?#6n^HB3jo0*l5$x+)A3lIuYrFis>h@YJ(
z>_llN$~aL(^NSOTQj2Molwh)?7E{UzDK3?ib)uXT@lNQORbG52V#pPo&=In7c(27b
zv*o_5i=`PSt7}w*d^JfbNpRxSf%rrx@-9;ML76HtrV>>i8>r$$RVOS?Se>ZmM6wgj
zooL}ibth^trhyX%Cmz*HQ-?{Zp{5hH$h9>mW3r*H6ZM?9r>GrIrut6cqY4e3Xyim=
zMmD83q3Sb7zL4+LYc)uNTRPFoi4IP5bmA8$T07BB%WXrDb1JE@Em@v&Y)@$WpK8iv
zWU`z*9ZWD&Z$FRNwmr4Y3A+=Wo#^6(gT9;Uq`IgFxXwLfuM>(BJ|}WysV0+D?sxup
zt}?)Ypc5e{!cKHzaz=J_u#%)`S0}nTF@oHk+RKUFPV^x6q)M3lBHxERjM|sl&x!o8
zvHhvPQU_26QU_5bU@&2b6GJtpd2{tTVmK>#zy%pe9z`83k^FV$Hzp@LF@-SBiSYy}
z`@0hp$P+bZk`rCm>ZIFDbz+(mtDIQv#B}D)bYd1^hO8)l3Q%g8O=pP{bDWs##5^YF
zJF$R}^0L8&PAq0}k*wY{YKMIOT$ghGv($-Y%=*KL6$Hs$?!+GD$B}v^&AIFYYn=Gg
ziOo)|bz+?p>zOsV#E)NyHaM}7&L-|+vLnbtiBj7ZCw4lqOR}8U>Xf&}#mbJh&57*{
z?r=JO2SFlb9qxAGLT&X%!~to86MLDp&x!q7jPzK^efUUyWbU97horaI;!>W&IqJkQ
z>A)_uap5l~j?1X!LPi(<cH)E+ubp_~#7WsPrBtriN7U0!oOL4gAJJ!+6u+r0`kWKz
zWiO~1E6EG=FKW4$oVe`76(+Az?>KQy%e_vx;lxeNxkb1wBc35fYLn?MoqN>#PCOty
zq)M(tK6c`X6Hn>9q(0MfpF8nF;|xvWCH|EYb=Imizm*lstkf=b>E6j0&g6S1J~$y^
zV#@T9@X3kKn)5}D0_1Phe>ML<Cq_@Iw(?q8DHY*DB&&_0ij&HPLTSpS)S1SGw5}hs
zfD7pulRl*xTh+E@av`$|4P0pGLKYXYx=_u9WEZkArj!e%UC8c24kmND@H0UQ<|5>#
z=Aq`L=A-6!p#Y&ERpNgl6cXPSEy==67SVExx=@T<TysjeP?G%jt0ajpLyp&S%eqj`
zh4M^Ra6zZ}X?Ch>KH7yC7h+wIWE@pYVTlybyO5y8ClV^UP)Tzt6OyP^T&PNrFP%xj
z&`h=R>U3&IPo5QLpw^^HvX%?A$#tl8sr9tn`YsIXURlB#v4$4Z#?&U%rc{|lGeUD}
zmpkfKZb@!M{l$e1|Ek-rtqbj3=<Grl7uqw+PVGSLNHtPTR5R5=mEu-{je0q<oWlht
z+2w-A1uxm{l3y;=?Iru5;zH1c5PhEuenNoy=8)PRC7T)<mJOF|=tPxqK)5So22;CH
zC9Jy(J;*&Zr<V)8$$hAOsr{(^slQSOPzO?_o<Xt(I;%ZIrccH7!(13HjqeVnJ4U!L
zQbw2nP6RN@h0!kP6(lGa<HA@MR(P<|gWp^j=fV^>rn)iSh2LGs<wkBdCb%%sg(EH;
zbzzbVlU<nS!hDHzVX6x=U8p}UVVVomrTFc5c?GLXGh8@$J6`@{UhqTwKkwpaxiH%W
zc^Bv$`g2|A`60e)vf+HUM0vNv0v8s#u+4?-E-Z3ku?w4A_|t_YE-aO{xv<iO{$c$x
z7yfWzxl8^EX-IG;WC-a+J0}}{OE#=>q3jXeMi)Bq1!${X>Y;Xx3u_7MsN$?AY@ild
zohEX>u3$i4e4cKz3%m12ZFOOb3zC%Se=f+I?gZp%v{o5ocet=qRx)!>c8IMU(C?C=
zX1{vW*v;DZxUg57%RU$OlMhf2YJTz6X%4#}FF=#&*Q?3LWbk+4jth5PI4+yUh4U_4
zaN&dtCtdhbwAwirqMqqaxp3BnH*YJS*6KM!khfm^k!%pZ_2>91X8lDMF1c_`Hc;O9
z%Pw^9A9vM-y61FbC+e=a)Gt%-G$iM^8zUe8z0Tq{wAyaEa7*Lcgj(g(+#|ej;iU`r
zU3lQaLpqPB`Sz+;M*ETtk6m~|=P6apXD&P^%e#mrDbp(^KTu!Gf)L(P|DnF4zNboj
z_lN3H^`i@)=zNw{;lfvPgd34=eA6QTb>TnqcdEXydVG&^Bb6Ij-D(F&O-<)UdN<OL
z(^4f1Zlt_QC<C3$)QnngCO4L}P}`qHbDFU7Y;I(ylSA`!y5;Ivjm+alUN>5}(bA24
zZsd2PoEzocD8R^{sRgM&xp6JoP{@tX$%axj<0d}W7k1;I{Q1j`qEdf#Loqil?TeS!
z>K12w398JZq#LC)F6~Acjmr|sS2t8}L+3^{H<I0mrWxl(yc;oY)U9r?RX4=C(WkmW
zSg)1M97;&gIFV4%jY@>dnx90dLai!;Lv@2Rrn(z7+-T}XGdB!w^(zbw-Du=SO@`H?
z)~42>)}_{?O7Z$`G|*UH{x;-%Tw_+!#0~jQguIApZFR%x>IV6;LvuG4&5RO|*Iz8|
z64%O&U)*rH;dZ078*SV$x?ysoty_Khe0!;c(9R8cTUX;A`i`<V`*rdLdwEU0yog@j
zNWbbytl15l8+JE@Ewa-5dMjBzFYAznYLF=4BuG<*Plog!H@t3y-RQ(-D{chc@;@E*
zyxQl6-;F2L4FP7QyhkpuOCNH}`v(#pnG!nFAL>Sq^zmKX=*na_YEL)1yVXxl$kc-%
zFB9&?tlrc<)V|byZuEEKS2qT@F_=#6h{%D`+Z&}B#AKC#`ci^9wG)RhDg4j=<Y8{e
zt93e_P9E;Y2scK$F-prF@5X42$G9<8<KGD5WYu+7`}XflPM}WIVkQwLQzL5_rnxa)
z_Dwhbbz_DbGo?$r<=c*!<;H9`{&Zur8*|*4>&9|7R=6?GjrndYb;Df4ut1ima_mAk
zmVJpYTtn?$0*jbj>_+t(h9%^V^VMNz8Rz&1_mnY{bSt&?ti2JjN><KO-D=qZ`9kJ3
zZmebQIxS{BVS^hRHD{CT8s~WOFAmL}ZfqrNbK{d!|6!K;pr*88yBj;`^z9J$YPotD
zyUUH;ZtP+3UYQri0rB^_v7e@79U#bi><_zf#EpO4c<07ZxB88+i?W-$ag6*IRm|gV
z{4M>8$&+rJ)%;U#oYwe^8wC?8Nw7@kXr6cD0%7Bma$;U~<BA(M-EbO`ugWf8!|?p4
zYS(4hkxf&>FtboK(Hk-<7OEz`@GUm-wi|ccxa-C}H(t}ZPkl;#;KoBY?hjJ$emtTh
z@L0M%`JaV9ertH<#&bF^s4uCnsMY1D$|J%XCf`!!wUh7N*iysrg~<<Ye3TK!tZzF>
z_laBcv#cVs{&Ee2Y}v1F_5GZZn|w?6pBvxZ@Oa?$Ai{%459)i+z=J3cQhAW<L3IyO
zdyvM1q8=3UAgu@R;Aaoy1yctGC8qPJXCqlXNbf-g4>Eex<3%RwDT{jHnVFo0DoK6S
z<ZK>fXEFyhp9eWT$mNj_*8I4x%<VxQX64mNE$pqXmi!(R(42xE{6sE9m6IO{kaMBJ
zY*-Nw4x9AS!r~s3@Svmzr93EdC;ri^n6)OoXla(JKrKTpOD#v0s>*v%jc+s7c@XVE
z4E+QT5(%*$#A%W71ic4O`OtDjCM#1brDRoAcQ=`mn5;srD)ke@AJ{y(h6e@@>dMMr
z9R0qAp{575Jg6<}<c@moCoMm8LqGOod>s!0H}t!D#>$e`W3I$E^q`RkCJ)RWH1?p0
z2W>rQ=Rs2sJacs|J!s`YGb#AAT61lVEj*}PLcMwZiwCVea;cus#-pAY=5i*C4d_dT
z^%oooqVitQto!5Id(c5PkTap92Pgb`qf~w?Ud|PTrAW6<dW#1R51bxYJ+OJu^;Z1%
zPHH7~=@KEmL`qo~XZ_u;cXLKr4Tf?CgW`eDgApE#^uRAIWK3@lf*yoC=;T3X55gYx
z0}b-W4f&qMo3zo5#w2!;S$NRP17oh}ZW8lIH*9L+GJa&Cy9YhAW$a1Vb~sg^=lToN
z68mU=Ul008M>-SV--BO07@+w>Js7C*AP)wUhiFa#J|;KJgW+_NU#fRYM#&oP5;xm}
zIUdOA)@Wvp@n9_BHxI^nFy4dTnVjaq1i~b$6rV_tZ8TYPrg$(_V|i1h#7y^K1|2yq
zpXtFYEqBYah`AojV{);~(W0L(J>LU4FI^xz@}+qBmPb8<VML~+MIOkTqUFSOi3dwP
zSjHlM$O@mVOUM#!GZ+MxOE>r&FR;pk)gHLL@OZJtgS8%fm)g8o=fQdpE_-mrgAE>R
z^x%L82U*o7nJJ-nzW7%Y66F@qW)HTABa44DW~+=O+2VFGU>kM22RjHUYjPJ^mUOoV
zd&qmK`!s*Q2ZLs)Bf}xtsc9bf;D`rDJ^0H5*|?G=cPWoaweMo`ztD?HS83Ti@^9&`
zj6dnYDG#LcNaUPp>S5?K{WH|F)N|DH)C(S5BwV6O{K^$Ea;|>WgNGhG@?g#AG}k<6
zaUtfq44W_FZ%7BO7<bcyTUz{W5AKlfQtwgkYq<|(HGWkGgvTB{@!($%KJL*yW$tIG
z>Z|U;3H>t<o_p}ZgO^&V_k>r}*RnW-x72^A@2FDkE}n9KkZLvO6QMv$y>my*7Z1M5
z-nt{^8#OpqCoHA@W6YQfF_B(Gc~Qd)gBPj1NbN<U7Ztro<3(C8a#c<K$qP%zICzo4
zi;P~RV^T(^^j>)<hJJ!c|0i!AN}ZX!$m~V*$M`H>Wc4Cpp*j*~^CG(!IlOB3mMJeG
zr_@Zyt@(Mp(AWGia^|C%--`lTZb2_D%u<UN^5SQjg}smqWO0gkQIt+GYFTP=Y6)sd
zYAI@IFUk-uuxvRm$}?Gk8cWs5A`oJzG7EX-W1PnE(oS-M=7ev@S0c~I7@y=tWwH#~
zQm~2_RlTU@g=8grQJo+oe6@T@=?g>^bth(dA77L4b-bwS#lwBNT3*zq6Y}X3pTyVm
zqP`ccy!ge723|Duq6u@i%~jV%BQF|zA!G8NjszLQWzcBKT*+!iXijZGZRy3u2I_&e
zYiE6HFWPz0-itO~wDn@RK|OnvD|dP8T?a2Zdf{RbX-~$k>K<og(&UAiVDZB0g^g^d
zE@KT6>F~lyM_!pLNtxuD-Rp(o#XT?Xd*SoK@5MYX=6ezFBIw0XFNS#$@*?a-A1}Vw
zPS|TObdu$gSv=Ks_NrIqUA*Y(#lL2~e9T>5ogH&IzPlGayy)pgFE1va()E`9nXDI(
zfU5?BfM{PY`mr(nr2#YJhIsKSlhUdIgn?cR(wxCw^>%?|$-8#tli9<)7~#bPFD801
z(u>upqsMqL){BFm6GwS5nx%@E^)m2A9*_CWi*a7{h0+mUW8}PRycaTef#1FOY%r{t
zq?;s-^kSM95|FQ^y0)d@6fdT-@we8;$g4i5OZV_1>2v%{Sw)j|v%Gk4QzyyUS_|h8
z=6Vsy_dPD~VxbrNyx8x>A}<zuvD>SjdoS@~sTa*_8a8>cOct<9+;T5gc=3mHfOvzv
zKVM!RzLLH)V--Oz5?5<;SwmP$T}NF{-9X()tyt6Wrx%-LYLM*X;%pJ$i>+R4W57=8
zcIpmlOa2FK7g^>jZ=~PD)|Q-@xYvtpkx9jG#vYK>>%|?fdcJzdi^E==^x~8kN4z-d
z#a~_=7bm2bE6rnG%>Job1HWD_GX-)kOa9x7B9HYaybzYDMJN4fFV4s!bB=Q=$DWme
zt8vmfFNB*+)(M}NQH7>(y07Y{zvRVbFRsYuW2sxzYg(JH6K+s%QhzTQb(`>%KU_+)
z?@G7Hl=Sb?m<O^uOJfw|Qt-%&$I^Sf_|J<cUOe^UgBNS3CqDDyxfgF`D3g65knqBb
z*U|~Sc**1|s(dO@vZQSzYZ~O^iSk9B@s*O_$v#^rzVB(>dl{22$KRT$TVmCJl=Uh7
z&5JM6L$2z#ment5k?>V!RMYTvdg3?fe#vn%g<B+imwu=qje@iaA{BLHmhYUVQV^v;
zzIH0#%S&-mE9wVcB?}7DDe8*Nt{}aF3<}yj(`8bSQ9+*1@zQ{!o#F&iUZ0*>K^E32
zm1I?rP2&q$<8vtLE6_*xR)-Xsaw{mUpo~<aAg_WBUG@1C%r+#KRFGdm0R<y^=nE=X
zkUQ=qzcTZaf<g*@R!~^0vk2jQH+85fN-n0LxRzT&fxI+ZvP#kE(N%wGUtC!Q<rKsy
zh*eNtK?McT3gmJ%{glKB`QmkqJjO0PcF&K?*f<683gi=nqe|*Cbxx4CWj?HFNK{Z!
z!Dk=7_)tkfWd-$osP99Pf+`BuDOj(ds)A|?0t$i(k`+`}U{~N!P(y)1*3$d<x(aGa
z4~f**R&Z>Uu9nRGU3{C{@p9TPhm1Oke8W_~R!;sE)K}1eZ5zakqlV;03K|odC@>P5
zDrlz2Jy^6*)Yt#EQ_zxrYicX1tdL(6?D?qv0^3G&+7h~&)J@Y~wuR<*RB*Pl+WllQ
z(KIWt5Ug5^O@Z96mH?*$mjXpPQZ0jAPq`I%6|6XuoOZQ*YD&Grk^^7kE(uw>B={KP
zSJYF8PZ^WsP##hcRxnt>5CxqSbXL$$L4QRZ3c4uhrl7lQf=lsTrNT)%8AV%ViSD7G
zr)<qKvBGj_=%t{yf<AP_?5jY=X91byPH&qBF~3UpQ!r4$tf#t@&veC>sNH6eqP|>R
zcGzxt<A*93reK_c@d}1>=|;<~e(8q_Mk<)7=tn8)yO*WZgRnj+BKloV-B<;`$<{9s
zH>-<Y-bdYC(aZhq-(|xon5$r(S_+dC$o0`=MIN3>kUQ<`c)2u%^-rZvQ!t${L%~eK
z;YaG#^epmhswC$ST6pCB%<4WXH`sMO(<~q_RIrG!Sk@2WZsmj}3YL;3c$tDfG+wTt
zXf1UgU#U5(6s#t%(VVr?V;QqS!A1q|6ug(7Fj}`s!BOd}vMdTVE9h9uutoMV1>2>d
zf~{f>i<8sx2D208?dvj&9a3t0Ov<miJ6ZWI1-l7*6zo;7k9?52pDLveNH5y><NV<e
z&BF?gXt@!2<Ns1{T*1p}QI8b-t>A=$8!{+uOmkAfDVd{!a|%u?SQBkHqd>lQFCVEd
z_byhTXD!2d1(Lj=VCeVC0%8hWWbzXAGWCjrtAuM*iMg&|axH_vO}69~^)~g6*0#HZ
zd(x>04>bRw?3iWMb^chv69rG{|D#|BFAbhC`CP#ZSttdsn0%w)E#WnF;7axNbT{rs
zhz`82s@(kipx~qIBR&-J!Bs2nlY(yw{*~RZR@`Um7X@DlmuAF$Tpj(Ng72&?lMfL-
zMEa1?r}m|H<@8ZLq#{ROh)MYwBDD``=%l4e7<@=aPOmu`eDbWLx<}-7=;bTDnSIFO
z!wa6B%AJ9%49n(2c0vvxauRa+kdKg?D#h~<^7?Rx|5eP-WC1O=piez8N!ZUm6!xJO
z{USaT^+E4Lf)B-H5Z<pV?n4PekNUA?&*@4sOy@%>LTPFls#H~$P|k<)np44tc~{hN
zEZT<{A7bgpQ{$-f#;JW$Zi$N~YNetS$fs{BGFgdQS&jmPDn3*d_*l7`4>jl{Q>#-~
za{rR53{2LPmKRgU<l0Qu@!@?ip{@`6YpKV5;RZf5^kJb7i+pJ0Lt`I;K7@Q|;zLsw
zvHQ@>hvwvtKD6+mr4Ma=Xy-#KnF9L6PWsk9{Nht@{>Z%=ac<NywDGAwuE}qL?R^+L
zSJ#1B(We)d>6oH7`e5?G?1M!b5Y(@2kjCnRT!6^cfz5~SVZ98DQ4!Gz?bSoA!-wJ@
zbx!GxY=$^)g2x9hL81DzT)z(ijrEquun(Q2c|QE=LuViEHH_`<!`Wf6U1THHj9c?u
z-_?h1KFGoP`B|Oh_VA&ntlNb#y?p57LtiNpNa*c@yi0k{^tcLB6Z`ql=8;YUB>Ab9
zVSo<<eVF0HOdkfxlKSLrQELAmqP1a^l%1A1)Q4e&;nWe-kyOd8#gT2a4`Z}aV}1Bd
z<8g%XKKxF|)L$LRCz2;oCsU_Tr&1+g8ezH*6`;Nbc9svbxh(T#*WMjJM|!3Y@|&0N
zTp!-GNX}8)P^xpn!94M@ybEM6xF0L`#}@mrL{^s%=X_Y|gY{d?dLK6Uu*`=)d|2+o
z3Ln<_@S&$(vQ{!+wGaLt`c*z$UY;yJcC4W(xoZh>Cwx~=eW+pLMjtl$aKMLyZ0Dao
zZ1!ObIl8vte^URoIGOhPu$8=xx}Ca%x|6z#x|_O(suo-rvrkrL<K#fI<o(jxUsO26
z%5ybMK1Dd}!x7og{E);^ACA%di+Wr({k_P)$tS3?0#C~NPg3{O(?0a;mT<<0#kXS{
z)iz}8mT;aimwmWGxIn$=!zCHJ-p9Y;naoumuK93RHh~Y<eYoMnCwt^ANiL1KDf`qU
zUHoKS)n__M_V_F2wv1Y`8Yjz3lk{@EcHal3w&9TsS&V$(!$Ue^4z6wJ!UxHoaHdbG
z&wO|;V<!0@sx<qh53k6tsc$s@txvtakN}z9$q+&R1N9^IlNPzpqW|i{Hy>X6@y3sT
zefUq-i60aE_%4ILANBoc;76n%QGOKmqlh1={7CIbPCs(_k;V`6^LY4?&X3rV`m{{S
z&%5dU$lyn2zq;3C^y6>4UVhP*J6f5@a)VTyEPkBkK_ROj*%&Fo+5O0&u^eKgNNzt0
z`tg$=a`egLM_w&ApC9?j1vIBrr!;azE9A$|e#kwmxEJvYzv|>(-0i)|Mg1t|M-@M+
z`ca(m<@_k`M+x$>!f_@2C`B%<)mDa3){iC9b>()VUw+C&&m2kDY8%WslA`^X8y8oR
zF)`FwKjH}SR4Jk-B>0g?*u{FpujEH%I!Rh&^=MS{tJmEII>~-i_p3kq*6>5Fh~?Tm
z<>%U(T6`@+ZE78AU1~k56lv&3BR{-;D1J2dqlq6bKiqya^`n^|7Qeh*P2b#)7JhW}
z!zkM>O5f5Cxj<{<M=Mq$?fk`$)*2rVRcfnoJ3rcM+=1}9w!tKw$D+?w$6)r$KM?i1
zZTjdsh6Z&ERtCt`sLc<%R?0zeQfD=T$FKfoCv(h_HqlwfAncR=)+DjNAHVwH_aop(
zP@3IX?b2acoXNV7U;SBgNF75bR?=CP$d9gmbYrp)wL7&pwFkAQAH4`t&yf}w&|N)J
z_w_?gg9Z9AE9I-H1N`{SkCD8l9!P(XAA|iE;>S=whWRm;=5VdHF@B8DcqCzzAEODU
ze){p2r;M%CL4Ii+!#LSA`{LxpY`h=)>lozhZlWKP{Mhct4nHRQF~yJhek|}~s$cz?
zdxl>=Hi27p4AcCWE@hV`f2(6S*jYbIc2Z-)Y(M63M%S-K&6Tb-S~t&+KU*ZrDX6eO
z!McWpek_tYJ75bV7fWC5rC%+5Te?|S{ZdKx)GuS!A5>}Qa>5EfRuWcGQ@-~qxoiAb
zOJ^Nbob`TeAaA73PZPI^@TVV}wHRfuF0roRe|~JGv(1lh-Ssln`WCa(k6nIT^5e1}
zyZsnHR`-`5$Nkvj$6i17$%^vhupdYKXx=H|fFFkl!UqX*fD@LVV2(-;uWOJm9rT!z
zD8Dislm6T@K|osgw_kp%LO>cI-*fDlAYaBg$!46Afk<oN89&aF&r#1)FKD?J30L;$
zu1MHu-3>o(${sW)@v0x!{J8E{A2oS7S-ql>Ulwl3nA2Px0H64ATQ+O$<U7*S{OWUw
z_gK$E@_j!Z5Dq*_C0UP{^_VIjA(i6&7wDe)@hrumzMx9hOFv#|oWrGm>&HLR!vp9Y
zz&k(Q%SaeN;ecAn2S5Ik-r~ncKR)^KSw`%6x}J`NuYP=yP8HS<lxHoR3F3T{9a#oC
zN5b}faaAA0Mg$NUK#l-%1`x%nQU{PGfK&mr9}*$ohLaP#v;iQ1k|BL|2BZrhQvmf0
z>W%vJ0c4;loROgLwHukqSpvwa<z^#n2<hb-Igc?mR{*&KC>X$keQ|jL$Qw|9Z7dK#
zz5vE|R)3VtA3y~|vb0l9N>eVYWfn616hPvNxIzK-R92R&NB~6xs2M=50Ez`rJb<bJ
z-2R+cLK+-Ef&>RpDuB`f$kSZW0rj{kKb(~bpe)-{E&#a+Ah!j|YwfH+&{0#~85I*i
zER%6sOnd-(a=B0HmBPB~u@wVI3P3=nN&!^Xctl-874py7;^s}(RSO_Ffa)w;BOosa
zQ%_Fhu0`E&B?FW5>KbY@w?zOg1E>=~U3uoPBkBcUnVsA`fVZFG>j%(4Ye~ZZ8j%}Q
zn`nMhLbCvNTh&=e+3j@=tpfNZfQ|te185yU8`;DG#9c@;74h=WNZSC~1=RbZBfrGI
zT&MSyP3{oDmAVEQmMcxtnWUf8Q}-;hbh&y4_1-CGVGY0*fIR?50A1)fsX?kM05`!y
z^#$N1NIgnGeO^nzuQ`DLDsdKKhG>QZ@=&7My=Cew4c2nI2GEUucP+OEp{MjBUODy&
zpl<*R16UM5zkqsIZD;_)0_u&X{?uQo0|FRG7(^W`z2bfR5VHLKF2Td4!vru+R`~n)
zk+LCVCEST08&H4B86AKwZK5Q{Fe#2a!1-GM@>phTlV0i>AHeScG%FT0fo+=^z(lRJ
zlL(Uon4&pT1DHmhPMx9o@`Kkb@@&nS6Tn=J=LIld;{}8}#iAAmuq1#Z0UQlrsdTCU
zb~5V^F2!2%a%#>Gl~)i}Qddz|2e5`9>pbNr?{!SB4`4$88_Amj*h2V|x|#a5k2(nd
zk1Vj2uq}Y?nzKXJ1_$R|nzNg*CxE>H>?7|F;E;5rD-j2nJV-5DL%r#7m@MGsA9Icc
z<cqyHPBRN{zgIM?M|t@n@?-#~0+`wv(>mjH0A~V7A4Y~S&IWK!S{}szf;b<*1({J0
zU4yt7z$F;~gUA)cW$E*>m4k>1;wmeD9>9wLu1T+8@&@%D^(OTe^)~fR0Cx#;xhjph
zPZoGUco@JV!ei<a>Qk!3Jd<9{9{w_bR{^}y{MWKqeu|I)nI_aT{9HNlEwlcSqd)-f
z1Ngw?H|j^N)F;B{0KRC>SHfD(;@<%N)BNuNM94Z}{eK%&NEJlZAhOX+9Yh*JS}L^2
zbU~yKA_J2dgUCY2q~&HNyc(sR5&g|MW)C6<&3pNOJoBTMLqHIDf`|`7A4J|D@&!>e
zh+;v=>tyo>Q80*~f_S?(zCaN22(EzCR*04S97LzK>d01@$s$xq$^(SOgD4Ti)J93=
zgD9!_<$@?hF0DCbf+$N4+0{nMH1vIZg&=e^ql2*Y)@_Y9#Axxcgt#C&a-qU<uOkSv
zgawfpM8zN~1yMPOi3eh91yOHcTv8BKSft>>I7wF3>ZwLZrdFrc2*RM{)(ql8S>FE%
zqD~NXrK%uW1@TJ|^@C^-{PCsThKz4YZA5KMZ9<i0sq2euMs7}Rq4_PP!(aIEKeE<A
zv<;$N5N(*7^2N{g<PKWAm>tPRs!8)7y@|4t!?Ga=wjk_5ILOW*{92@o;10q=@KO~m
z*B3-wS9P}y1QDbeqRL@tIX@!YS&KY+GN#_nSot}lTM*rY7#ze9X7!-<4WcKZ7qvIF
z54FOy#5e4L{g~_@#IFRI=>WpOAO;bl9;<&i8XCl~AXWykDv04hj0j>5b4La-itsyi
zbP(eSQe+HaEcG|)IO@EGYS)rS`sFL<6X;9~Vp0&3gP6kPbgINmB}@ydH$WsggUOlH
zS=8B7$;vLDfDB?@5c8!ojMgm*$|#qxfVm5`m{c`l7n7Gzmr|Ee|DZ}e%Y#^<ah`+f
zF1eb?KZAI7G1VIK+8{F3H>?X{Jz)cNBXtv1a$iS9Zw}(|I(12XkE6B*u}wBj2tz~I
z9>fkAQG>W5`>!^y-Gp5-bny4<JwfaZVxM&KjIl?9I2OcyE%E^2U=W8i=Wq~5G%jD?
z@E18gN3^wc<Z;dan{XnClR=yc;xv=zwcInZ(lkCN`&WHlEYP{A`In?W@cZ&tgSaL`
zQwRwmTo2+#5RoB7g>X~$&32KGgLonho*R3M1#bs&hj5pAk9wc_fclUsYw1xCwcP4f
zek!Xvh>y~r8>V^A-1k9z2;v3#We~3juVo!p`SDcD8#-@;_=oV0Do@x-Z9D2Fcd8LD
zKi)09p$?3nnDse`FNCi_e3SmHJstFK5dYEtPL=qG5Nuo<sX{0|H91QNSwl!2LYk0z
zL`X|@Wmm6#Ku#AzdO`+jMrtOi#AFU3+edY{&K5%U5PlA!a0od<=vUt`yo<WO=VWBA
z5ORl*M=MnzguLW@)cl&CadT8b@=uymC<HO39+`^JtPn!c5Q>qDQ_F@>f>4rLidvc~
zrOJdbgUefv&g)!}<wKB%lh@PKg%C|Yh8jzaqsCLE26-t#Vh9yOXcfXQG%JNrJA^tR
zdF_?HatKKw{LR{`giw_M)j~)Pp}JN>tq^LE4VqI^R#Z{-enQ!q>Y~XL1$CKqa&(${
zvPBl_>W9!EB<~PIqY#>Er5Y2OP($A$4rTdqL~9m8bDAxvEvZuN*$k1bLueC%RW^F)
z$KP+;YPsz~Xix4y?Wp<25KLsV=2${_$OV)-?ICp6s&a(j48g@PcL;th-V=hCtWbTL
z-{4+EAcSBDA<gL=LYUl1b23hk>Y{Pi5W11qom0=UWa<$@PddFq=uPND{WXNXgnm?s
z>@QvJiQ01p&>2V_q~#6{q0|ZWJa!nJT_NlaVR#55LKqpsC|TZpx^=SAE&9<R%nV^x
z2*$0kV?r1k!fz}xE`%nh;wFbMp2^>-6Q~oZlc+L_l&{=Q31KRoY1HXj?u-yB@hvp7
z=`7LwIU&r|cwPweHC{ki7{VgWSsX&jV}VQQEDPZe!txN-5>`-GQdd!>RjWf-qw%$)
z>ZyX9e69~+1I>-HS@$RJ3}F+Ke}=F*q<(@;!erVaCjG5cakj}(K;s=DL^M!Gs@u~O
zrII}%><!^^2v<Vb7sCD!j)ZVDgaaWQ4B`H#Sow8Hj)sRqIIPtm&o#-gFEt#ab6oZ>
z!e7+)U(`072;m}=6&C1DhH#2}ntFzMmU@nQo+_m-5E`_Py%bXaNpa|O@=py6S3|fK
z!ut?Duw!3m%!3ea$S`$GT{AaBxJC1}R?i*6UFtpR{SX#Msr%!)uKI@|JklZ`hwvnX
zry)GkoYx^d*Z4&UFUj&@xK|;_$K9j`ncjr(mi|9l<U3h)J=CK^64&j=5I!;MGc_`-
zj^1BF_^QQ!3*le#f7I{P2!=`IfEiIy8m9^)H8~A6t>%M}E{xK-)#b_<My4<(b;9IM
z$Q(wNFb;-sD2%LOWD8?R7(>Iz9!8EZnugIVjGSTQ3L`Fz_%Oo!_*d>Q@`RC>)fNdu
z9xIh<^M#Q=i~?a4q+f{o6E)@k??00ZQzc#=JT6Ku7Dn+fN`&Qc3w7CJsHLdorOgEK
z%Y;!@<8op3o|2dq=;)}?TJAnxu*8PdgT6d>p${V=jM~gil!a=LSTT%Bgu@NgBX8v}
zs%d4D2vw+6scDv}D=j&U>RL<<f`M9-T1(b^J@wvooiNr8P#ab^jCxvp{V*D6+%Swr
z<i?uQB#f>6i%s(|T7=;X%g1-nlDTbm#oNMY6~-@Nw5HP`jNP}A+mPE*+fmz7Wxn#z
zuV_amjZ{+@W`c!krAo}(IJLocCLLio2`(+yP4I-_B`BJo?^sko`h(o(52JG!L2^hs
zMi^}y82WOO+|RFda_hBA7+u5Y#<Kmi8oGzkgWNNWUc&rkt+$rjCyc%tXV{*)KlxYc
z0L>p5#vqLcOF!h>JcflaJd8iWSRTfRFh+(kJB&GDj0$6P7}LUXPZeXrn9Q9{o<$$a
z8h#679AP|lBK3FbgfKetE5ovuCP_h>Q>as^;!hkA`C&%fj4)<~A<t>Z<Zr1LXBLyS
zcf>3{oIE$I-ZosuBJ;wSPgtPUurQ28<i*q_n!l7V<aA`Qn-Maj6-;glL++NW)M8eJ
zv6{R_dR-Xn$Q!8ZwHW90sEryoEgSh~7@L{g62^fPU%Foy+sHeq+o?NJa^;<(+(5gS
z+)dp>-5bU}EoOfh1EYR?&uCKv!{IQFgrV<*gibgb#<4KIhVhNTe}!>8jK5`lp5ovi
z#>p@qh4DCyQ(-LaravFX1xB6@;|$>}^&E8)A8fuD#-%VaH&l--GF@iYE$S8ORqC}c
zt`lxhCGw`+Q%X6ag>i@G-7p>!?onSfFx(I0ffg^Lhm`8aS1&#Z<Nv673n(d$_xpPn
zySN1>xXbL$tl%34cXv(j014yP<BJCg8YD;{K=442FA^ldA-EGf!7aGM`}AGvcmD4=
zeeU_xeV(eW?yjz}p6(~ZFk-5{#=A_oHw^cO;Q{&KF#M-#JsO7I(?5M?e@s(~PYKVc
z&sF9N!b|F_VR)_lH!|-%)hE^W!|*|7U<>kD<eCkvESs)lV`Q}Gy^66Q)`DrgtR<ZV
z>1k%5O0;8VJtva|-aAIn%xpmxLRJg15wcs5OXcUVAgAIX{24B{1$mT{*8(5^keJ_s
z0yHa83tCXpf>Pu{78JIi2)U>Q#R<}f&n+mX_}dctMwR$~oYEFF-SFu>VHu{CwV)iK
zJhcL~B30^MHD#=<xC)^v)j*B2AYMg{7MK(#Smfbu`c$86K{X4$wP2V9)h(!DL46Av
zSWuIhbuFm1n|}eYpmU+*+BEA}kfPf8!h#Y!MrJzoEI9MVu<E&C;Xy+~3mRGEw=lG|
z;0`}2%jz0i^gl*5k!@stGir0yS_=zWDsE*#YjQ=7>UI{ix1g^D{VeF9a=H^bTF^;3
zoh|4>?n>>Z{Qg_@xxELAJ*mAc=&hn(TJV+PJ{DxSuW$08nxEdW^k--Qb)ZEanWPUS
zS-!SlFnNdtLkZtlAWK@bQ8Tl}0;>hXEf`^e%>p|^L8`-|Us@2bKrV!K(s5DU7I+9=
zs*kEsrCGnM{eeDU<Y#EnkOkYC>aT8LCPb)FYAQAFso0SgjI!vTkIo!4$YnXBEf~wt
z7;1|{`u9b$e8=KA>Uin|3nmgI`n?5{6i=38$G;;@vtYUfb*=jL{$Rlj3r@??w_v6P
zvn*I?!72-8OT}LdKUy$H-dr6uoNQ{GD?_Vz?0gG;VuSOj@|P}YWPzN0Sxk#8SSTl2
zP5qbjpBYVPsjp(O1xr*Pez9OFc^P#%bp^HY6@80VlYg~fjRg-AO|toGWrvqd*kQp=
z3x2cU(j4PD=1B5-!UhXAra2aDvS2g$cj}fjU%sHQAdcUwY*Ws5LL|TG4-5VzpR!<=
z1-G6V_OZB|x`!(3+DoX;xoE!y2P`;f!6BN*sDDupQ;$%k*3q<($$Xq}f_hR#C)d#T
zk6id6dRAsd3u3G|XTf<3E?Drl1@A0)Z^1?8KUK9ZS#a5cD;8X};2O>UEV!<s_bm9w
zf`4U}pmSUKHwm|7u6Ur&9<toA;I4{hovaVb`xZQ)^HBMZEXZHuQ~qO`PpG^2>FgQ#
zIrRngr3J4Duc>dS((+rGCr|006b_$F_#nG(oZbQ98@&@_tw?7@ZY%O|K&Gc=v?2pR
z($;oN%w&aJ9sTcZ1FXnwMHVZvGMaWhWHxekY7SK^rxm%#axIxOlGlpQtf+294J-0l
zk>830MhmF?DpnM<qL3AZttdjXq!mR~w1gF(lZ#P{E8kuzc0pJDAeOSCv=wFOS5VQi
zgmTpKR`lY0Sdqm_DyK3b$WT?X!HPISJk>}wQDsFrczIPKi%C`_E58~+-XqntVn);0
zCxuM4WRsuj-{;r1;>~OQ_|{=g3iS&szKGL%ZnmPH74@xXV1;Id--?D-G_s<f75$mn
z*ovD!7`j@~#EPc+4_isi=(nRbr?#-7B|#c&MQCkB8|Abmq<u7KZ$$?dJ5oEToX&(U
z(p5gSR@&)iMRyhLVMR~Hy$HRn_|l56$bGEnOSoPA)3;Br>ctMQ;$HT+K~{Wi#Xv?&
zu8NnNhFJ>N9BhT1j;v(}VJP(*E523!Fe@x%t8#2s+$~T|syOI4mG2_Bt?&@MRG*5j
zYZx1_B4|a#il`MK`h{}n{R~?%x0zWM`Mo=p{?=yZaaIghbw^k+l01q!nmUF$mMV>W
zXN7!!DA2)S8c%bARW4)DkE|@;TQP||nL33!RYj*+ae@PHh7~idm~6)sJ7!ri+X|Bn
z2{!y_#T+Y+%1@bAw3ud?YsIp%rqx!=vtqs#Ke3%(RBH<e3#mU-7g@1bMVDCd$5s9P
z|57^3l)v1Hyq9BESh14MD&>p$s}*akSZl>^R_w9LPp<kzw9bl6R;<gFwBCvhOx{R+
zAR9uc>eOFYW!Y@S7CKw0zf-qav7NBPia!aGxl{UP#k6CF!((DZcaDkK#n5gmge74w
z*S?RsU&hrpi3j8)U6mqTI%vfq@?X@$R0$oiqVu7Q0>@=1Tk%>3wiPF>IAz5RIiaNU
zP4)Tkv=wK#uCrELRQ)+;#d*aStoWOJjrUr=MBZ~H;WFWh6<1Z}H7l-@|Dpb?{InV4
zmK9HwbK8nL<h#^+R@^5%u;P)*c}U2f8uK6Fv7BPjnEL7B3N4I(s&bwYo?G!kIWGyX
zsHG32e{01%nNDpeYQuY)upzTeADkap{78+lA(m!3YI<r0YDQ`%s?_?fS;j0jWM#3i
z4cU~R(}wIe+;$mq&`G<OOD=M5Y91T%+VB~<5H%k)KUG>TU_(Lj***H}MdF-Kzk0m7
z68pIg#ccB2>R2NairY|`P=Z>LTFQpfHk2WkrOHpt(oQ+DKzTw18!9TN5+UuwV-*{!
zvS_ej`a+{DafEp4gpT^#T6r&&XhV_>&un;ZL$VFkY?x=md>g9UP{W3R4M8?i(*}zT
zRvT*BP}_z&H2c}m--Z+$zObP#ofbB<w83mcJsaxNX-sWEZAfiIm9?ABrE5ZNN^Pe6
z<~C$$u77%MMW?+D9c*Y#ZliMA+R#pMj~N*|+R({{UN-c$p)>vND%yq6)rM{ac|@$V
z+=JXx<t*k6A?0%DFX?<m?W3Z7Z79SKwo-8b&2MaS+XVes45EHb9ZVfU9ZHpiF*o#+
z{ac%SH~4A(loxlKVmHA~bx@r$Nw$P5jq4<P2-1R=;G=3b_?0ioAsfOrOtj&98{!HY
z<r(D>8=_1|rH-{>IAMe|o+m+;kv5DXk5<kY8@?HzBBAe8%j0YqPo6+sc|w0LJ&8P<
zI@yLPgsIe7)M+xhZ1};387$7E?&deEQr+1e@`Tya&CNg3pCbdTdGcKHNj}x|CmR;n
zu-S$!HY}vS*oGxG{A|M_7Ui~?SKI2ZO~0_X!iJTEr8X=hNNBl?Pp)wloi)l|EoU70
zJfB&!)`lDp^;!Kl8`i0u^@I)7jcF!zlMPie>aPM@S=?sBb{l?AOOU^xcZ=O&!%iDc
z+Hi{IAJhYKzU(&sX~QlScT@LJrK!DyeKzbT{NKBjgEkyeIe*!3Sn&}Xj@odH#p5=d
zAOvs56b!`3)g7YJ=4l)Lw&5Z}XKXl2I7dBi!v!1q@dK1(%E-Ay|1R}1^$PW>4cBbA
zPL|A@HvB{WS2;K2l;;^L(OWcc+i*uk<xd><$oFk{KzL}we}qRWM=mvdOnyRrs{B)J
z@xq3eHgvJ0s~xXwcx^)kJ1W}o#)h{{%VXD1rFS-DB)q5jLACJFh8X&i6H7>EM|$OC
zAjnS`ne2caLl){Yb7niT(9cTEZAUhhpWTie<eb!8%0Ig`L)u4Csh-!4&y=6fj{J5M
zu%n<Ih3qJ;{K9q=S6qZpl=`_H#guPO|An+xg2j^5QdCJOLnuovM=ej4{12T_$&Si)
zba)$MrdfqrmD;7b*<eSU9q}wCQl*xWV4^12(c_*zc#`Z$wxgOIoBlA?R+-i9s6nnt
zt)=`va{qsF3iS(WT@{sQG1Rl8z8wwdw5K+-qmdnr?Py|03p!2hXhvvm$B1^HX2@do
zW8d)sA}#IceLqo_R(7-|w^2@8LOVOcBTSOefsM!}bhM+B;?8#L&6@c5&)9BubhksZ
z!!KKEhoMAlA3OTmVQp^iX-6;S_ojZS>V8F#xw@Yn{q3-^I6y^*5e8BRQNOlhu!;_`
zV<`C><$P;L(q8=q*P<M&{nNEiV%ljss7|Vj>bAo}kQ}caKE>Ha#|G>O+A-3OQFh2J
zGD5N+<k(pfcMeLFTN_2}`Zdx~I~rCrrm9-Q2_x*7%V*w6o1^KBp-#N1&xB*i-%-a=
z$J;T1Akm40@2QihZO6t=wPTtczdNwaf$4VqAm@Su`5c&G$4on(+3{T7|JyMzIreuu
zw%IY;jvwuq!|L<wm@oaY<LjdQUU8T4Cp#9{u|amuD1EYB$h38K{A|Y}@?z==JC+b6
z=NH0KJC-SDIbm{h^GZ8bkyqRC8{t>G{$GYQDswI2VBMNxN>j3|r*rv2taM;wS~sYh
zsGF%<s9UL3Mw_<VvBQp=cHCm!oz$at{6Ua5|FmP59lPz=qnv#*GRfgu`k3Eu#{oMI
z+EJt>j?h0u{fl~-Drwy-=$BHQ=%{~YIcCRkJIpl_PS|nMj#GA=X4+Ld&JZrx@i*bD
z9p?z=sZw`%H{|43_ZR70qFz?fD|Y?AJd$>e&UNZP)PGgZ4LeqF{=aR<9h!G#u<^yT
z({58ozww^Ryia&w$3r_Fk>!7j()fRNJZA9;^(j^S<L&Xnj+Zh6JCNOhS9ZL%Bdg=n
z%<#sJscTH>9eB(9cdFKV!UyU{YK#N1td&mH&Fj!FlgQveM&)F30E#mcvN+JAkp9(~
ze4jsUgr1*+er^YHIuPAy$mKxZX|XkSn}!#zm4~5&1rzc*5Pq+JE0Ukimkxa8Kmi8|
zI#9@g!Vc7PpuPh|94P95nK_?3P|Sf6<c(F$avz4`4*a$uUie^hb4dqEIZ)bxGE7Kv
zpsWMs9EfAFJXKa#*?|h=ipr@(NW1S=6>?Rof%@l#^zj6v1J??tGm#Uh(psVe$KUB&
zk?cS<n$;bsL#Uy0YC2F$acu|WUICJyLgx!=T@~FEuOG7SQZhE6)6;=pro}dNppgTk
zUnewnp!RWtd|Yk9Xj2E8IndmJ7A$sjpe3O#wH38BRoZOhz}!Xp_-sd~z4ALa^gs8B
z-^qc_G`l#^O+~vBZnZ{t<@9jirg{(4%YohwWN2Y7(ZVd+$AP{MOmyIT2l_GJ?tsIA
z{;KW(2L?JY$bqlve53rqgdq+LRnDZz$={NPDaS&vI$%@I{95`OTBid+2SPMmR5#V*
zfLCSu9MH&qYC!o@#>Ivek8vPEjvtg5bwD(gI-EL!I+8j{js-z-<o~MDhp`TP$GYRF
z<5imz2xU8^Ombkd1FIZZ?Z6ZVraG{|fs_{JX-trt1<iDz<k^Jj4*WovLH(_IikORA
zr_6F-wrcZ72j-CHQs+_UtLRU1`tZLV3my2`q5n5w5ko5-@-rxw$Z%4b%Lz-V%c$iI
z`iI9AGK#k9JND5wU1j;zfi(`SmCnC1j^mSS(r&{4n*-|{cri;KRO=ns;K0VT#;IGW
zo2Z)|*pe2KZ?^eHdT2bhJFr70D<^U|_4gY)9k}SgB?ta+;7<p3sr>T}>~>&}1A86V
z=fGK0!bt~mO-PLYPam}V9XQ~?K?e@0{NoP%MLtYDLOrUY$7J}i;tA!*-xf|OKJCC6
z#b*iUq$dmFt6xvJz~Wf1@oz%67Us(iT#*^ofp>JS%6Z|yEr(3kN!J{>?!Z3|{3~bf
zw@Eh~c!(5%z27DYcv|TD`L+X(S@8~4oV$d3)ce#2)Q8kZ4*W-u%w<2vJ|RD)KBGRT
zzM#IOzM{USO072zOyjEGJMh7Q%ubAasK0&vD986VV~kUud2)Oa8|&1I>8Jwf2^pNo
zsGLkrK=Is<NqOEUWN{*^6WN?-($4hsfj(wjUnS>sB9{}%PE>Ouw-b4ssN_UtC-&Ud
zSDKfr`^<@aPULr@fD>gU`YPe&rFgl`OF>2@t&kIiohZU$QECY%K3CCVgyK#-Z1L%p
zt|XmO)Y49rQJM0m*K$sM@{~5qJ5fRT6$x@_SrsR$k`t*0YKvM)aRjLq?}SmYiI6}&
z-U3O=Z(AX@x)U{==;cIjCu-8K<3x%R$BHJ`k`6erx`nwAuXUF;zi^_F6OEZxmuhyR
z9-%(9ffEg#pUy`)D{IH=mz*_mqPy(aI|)slXy!z7Ct6636Rn)+oHJJLf_NhF)81(9
zL`SwG>uN)2>qI-{w0EL|;(aa5oyeW3U8r4Ew3{3q{@q^M>ET3A<;#ku&q)4~#s0Db
zbEf->+=trNiGC_G?L*%H76(%0?@@!D7~;ggKHTtOs1x5f(Zz$V9(?P>Fy>Tq!{UTh
z*6u<%7i>=0o%mJ8o)ZoyoKB2&;yWi?PPm=;uf1uc6CPF!Q@vE5jKJvzSu`j7<bZO5
zPWgB6r>M;25$4M_MhU4-3|Gzw!s6<&qm(n6FoxQDbiz0%#yc^~iP=s}aAKl#b+uup
z6W=?rB~#oC7AHw3)5Xa$*@-ENr#dl>Je~T3@})o0!iYCX`AkV&C+TmqgIhEFKFau`
z6LXxH>%=@K<~y;99hlhD_>&V$ocKjn-P5>$y3mQA35%$U)3~is5|+wo7&K+bZCvh@
z`?MREQU7USUg3n8E2*8H#Q*(|KF6-+Dyr@<taaiyCtf-6+KF{etasv^6X%`S;KW8J
zy7H}y<p0l!olgAW#3okUOx;4=N|l`73EQaKsXLtV%sBl5gFjh3<iuZ2>>`V~o3Mwv
zm%7i1{e%P5gH*|EJ}B|9;^R&nQGAqe%!vWKrs#z7Pdaf*@o6W{C_XFaPI3Je@PZS6
z%M2s_V#7rzF3Ab*G5lUJ_A)c?cQ)O0;)<$u)ro70uRHM%`CsY{<^L~5-^^Q1+@^C!
z`FEYTN4~F|2XX{?)u`k@l7S&Z{dxRjMxQuwqmEIQr-WxtJXg*O!b>MM|Cu5QZ=855
zv#1M2T=GY3yqEdbg(}VT5%s}|ye@sN_~=B83$bJ=!i97$q<0|$ofTC-y%WgjLMD~7
zBx=a)LKYUYx{#faO+{t0%0bRa%|*?vqIq0s{iFW2;WIk<lrN1JP+ZW3LW)<_LQ(R)
zIeJe%Cl{j@S2-nIC`m4*oYF3oQM}O>Ti%5VE_~<0I2S6qP|1Z}F7$SxGIQcwkmn^;
zk(Ew1-8o~ZN-((KxMrw#N`H?R?}E_<lM4yVZ$M3S;n}A6Bo~qi)m%s+h*_ObgIbeX
z%Z1u5)Nx_;zlJrbM$9nCg?wKyRF`U|)}z*!U9rqGWR*!?4I6S@ja+C<XyQU!g7m7X
z3(Z_;&SDGMtIBWbLMw9ntHzO6^kdz|1-WO=)f%zwTxicw2NycK(8Yz0s#Yh0d=oDD
zUCG^D=%%7_4}l)!p2``XHQ`GazH;GPI(?|J?L!HDUFb*XPn9+YxG<1Bi25~ku!;_m
zj`3zz-?(rzMnBMtdd3cO!Qz5dCVv-lj?_O|+U20IN|@?&!LM3yx!@*yl;d^5r&uF=
zY+(*4CrAiU<$0YES;gb{D2u5s3@41Bj-`%t$$bd*oimy$Fvf*;H$Hs_^59m?co!zP
zaLI+sE=+XcdzW05ja@EGQu%WUlc`gvQ(c&*qSIaYfjq;7nS@y`{HUU{2_H@Ro|!}b
zjdzNk=fZp!esW=f3kzM?!qCqgMax}SL0Cjx?7|X)9HU=cSgLp#VcadlO2R4`qJ+au
zjFS1Q3+r9j;KCZ3YpK6c*HK$*21%3U)@~g(N(bm~qHd;68>}bz9vHT|@H>0Bjk=w>
zgSwOY2UWH)u800ChTSe4bKyA6Jud83(S0uLcj15w2VHoWr1!IU-9*ttF8swc9;P0l
z9;NpAN$=hXmwvx!Y55f4B(+RR!f6-Iu<<XeC7+cw4m6#Uu6hjTsTW-Mn{bgT)5582
z2@<{H!d00D-N@?3H5abSwCUDI$UiRp%hq1IaD#Bqh5Lk?F5DtW+HDu^knd8@jM3j4
zKOoC2@kBPwg-0y@M}6!<)5-b(*fd*LS)R(KG4z}&&I`gz>MNIisaRU(8yDWHoOgux
zE_@(-bRou#SoU0!j~z9oQ*1dOn}M9sjo!Z-GLfO8nF+FrY;I(CBhHO@H*(M{L(S<%
zE;n+!k;jcfbn;SVE%^zbxsi{Mwq4>EaHF8gDO)SHu;L<a6m{csH;U1b6IPOoyHSG0
zl5UhznZC=hrOBVS)IVyKRem`)%DYj)jf%=KxKT-QWkMBdRX09N{IuU>&qyOis>zM$
zg185<2?;D#YiUk&BZ(|I$!<u81**GI!;PA5)N*6D8++WS?M59pzH?)o8!2vl;YL3<
z`nyrr4YM1q-Du-RJvZu$eramuMgz9lQnlQW(8!I(geKIcD%y<DoZ3QKTc!_;o|TLj
zuIVqbtINi=RhhlqXy=xjrRZDK!Hw>2TwJ3kcXXqZ%IWMz7jjo>H|6hZp0S7Go`fkC
z^h3~_{G}UT5&Ec{zJ!}SV+Xh~knE!lqT1c~+Ks_(>^yB4LT5>L{U_$3ZhXU{@V9OZ
zBU`9e<=foyZu8T>jT~+`mG5%HP4-Z|${+MUljeq>#Q-%*4N^nYup1GAtQXBQrjmy%
zXM`Ig$)l*Fsbf@htXu9|rC-)H-i--vEOg^%HzvCAJricSG0BY|3+mrLPjO>1%@>FC
zLnF&n7N=3CyYT~I234XPO{Q7WPEdb|nJtabpF^Fia^|@)pZpVbf%0QJ>O*mn8%y0-
zMsqQBi5tHV{_h`x%URs!#tJu9l2^I0fgmlccH>vYYY1!I_>Hhm`Riqq^QixSiRs2B
zH#Vzi;UTeG$XltuQ<M2b`0eB!)SXmW;~#GPN!~?$by1(L_qwsqjkj*Rb7Q|72i&;i
z#$`7Sx^c*j<8GXA<1aT3yK&TwWAe#yzu^dVLcLlarY1^J7J0nOvph8gPP%c*jdO0C
zcgr0DafX>^rDDfg%a_E<l9n&Y7u@)p(Tmj1EzO^8)|(n!H(B(G8&}<U<i>w8|GROW
zIk(*S$Blp8xZ%c4H&XZMYp+==@xD26a7(jrleol3OXF_4aYsg7OLJPnT{rHrx+L5u
zJfJ?LR_|K*u^Ug^a?3uvr1Mlpog2?(E$KgPovh+BxsrXq;guV&-FU+^DYi?A6P@1D
z{Hk1Hjk$5}*}Z%o<oDo%8z0?>@gUZt_cNCV={)+bg9n*Ckd006K?XV*shd~EW%8i$
zEPW4T@gS>5f1;moHV>A!G-qedqNXM>b9gZ3WPDCK(v;-n_UM;t=OO2%enyoSWr-H>
zprA+YScL=+3VBf2gG!7Rp_cWaoCifc_}qhHY^OAR`4z9Y^ye#M3CZ7QDCt2d`YYG!
zZI+=~c&FZ5S#^0<tUyzW6`3g@(aPj1R4G>Vz(9^uPP_+3vUi@IpXfo72VZzl*Mnp>
zo8o~qSj~eCg=$v!$cIGK<j#@y>v&Mh1NmoSZPl7|Qi^H4l6__Npx+)tM@H*;P~U?F
zbed8ntsz5=WJ~EZ@nGb=_($iAQmdH<%{^%0K}+Vela+eV+Jm;ttk6DAa%5@a!A~Vk
zoeaizB~4On&t!oP9*8NcF#c@lBuAWnotq|c=Kp2r=D}+Z-gwa6gB~9A^q`jq^Q9>d
zdVBDt2M!OM9(?6N9}k9l@QnxZ+{PXA;`++kJ?QVj01r~;$9?UAm;*f+<Uy8W3BtOW
zJMNE`=D{8eNz2I{SE^pED=p39n*#>XZ#@_${gGoaFV5<L%>%m!Z(Evkw$gL*7d6Y0
zwRA0)2W}4{9z;FxNSEft`8?1(@Uk<dTbZR<zXt+A4?-RU$kkh!#W{Fhf6!#ugP)Hj
zjIFH~#Z2{}Y}LfstUla>5wf?*qdb@{Ur)U?jh3<P!C0CtTbaN2;5+g->UgR&JHdmA
zilv{DImv^`a->?BWtrl^RPr?CNX`#zUsf^0gPG)6)W6=E#FSqB=)oM1{_;JSI*&Sj
zg8l-rz=MSzT=d|QY>o$uJlHO~-Gjv*Eb(Bi2fumniyV<w=H(u&@L;J2uX-CJt<1|5
ztn^@&2dh2!)q~ls%${*6|7&GF*~+}egZr(_L-HhUZEwud+ALh?Ui>-_Hp<#rcfAaI
z*=eoK=GNx!t<9S}*zCa;54N&<tMA53JJQ4bd29Xd!8Q-h7u1`Q_8n|(rw4y{@RtXN
zJ^0guT^{WAU=LR+nR5y!PHb)7>%l$`4tj9NgS!Jw``JTj^MD-maVfG$<I?Bltv{{k
zhzCbKIPJk1_CY#)%!A_|>}_p6;laIQCUO30Z9eJ2DVpNHYi&O3!8z%`(4-4&R@y($
z-b!-*Hu_foE%QJdvsCva883VAuLn0gxZ=T8*~49o*F31bIQ}0GuCpkw6k^IUPBYx}
z;FbpuJ$U57Z4d6q*2z@1+a$|f!abQr^65oc4mC&=eITu6OA+|bgU237@ri6cLzUkp
zNa(5Tgu8}kRDtInydb}%zEb`-%TnHY@XmviUYzpcy-fRZ#(D9D7au){@uGwmCB0a(
zDL&SVn(d6~y-4Rp-`7TQmfbUE@FJrZnY@4(IlRc}MP@H57Bgn`BAXXO^Ce_qF%8l<
zJN;H|%((~>%Hu_Drb)%YZOnO<|Cty0yvXlG0p%1S6r>iS7WP7#l}2PK>c!{eV#+D*
z#mF{h3H{v0T*`~GUX=4<d|Xm#FD}I=l<{KAER#TaFDiIZ&5P>N4KFHr5$8p`7dzUR
zD|=DZ3xgL`WIv2EU2J0>1*0|5nDMc(_jZ#wMlVcWTs$40>_vhXiC(;IV@~oy(ndE+
z7Ig-b3$`^2*Q~Brso{mZ)2Qu59oe5=)bhf$$zZ%@yi&;|BSC&EU;LoP@rg+Vsw9qn
zWT@*!doMb8VfLb)7xlep;6-yUT6odWi{;-L8hg>ii$-2-s-7&xrHf5Zvl*Lu(aei+
zQ%tjJm_*lylB;AlO0=aHZM}H7#@Nb>)?Un+WoYAtth&-{gK(bgM$72LcG7Zo<F2Pk
z9lhw}#au7udC}R6E?$Jah<NqsrK=18FZz+YQM*%nc+t~~US7E~lAiVz^-F5n&w_pa
zA5Qn&;J=ZOd%UT?7X!Q)=*1u}zV^b)9H~Co3#%74FNVm`q<N}-@;8KURn9OkEaV;!
z^#^m<mGAMw;YCa~{e87l_OSBZUZkI+zqMXpUw=<7i;p4A3qK)14XXT*7fEgPNu$Kb
z*r*p1z4+dXR4;~mF~SSaiukdzE3(!Z$^22&(bO@jg$lfe@H-aAQOA2Rf$*lnr%#a|
zit3-0CefVi#T3F+>NGE=d+`HVa%OumgFI6?v%Hv}L;ri%k96iJ|3x_6d@p|TVwsE+
zFBW*Q(2K=#B74!Mt@&p!7Ri~V8D){;z_#Yo4Rrp+i>34<ZOyw%7#n!&NOXl4E4>(8
z!gSn=RbH(2Vy_qb==>_HBS>_O7i-DCQP(Mdy%!r4Z}ehjTeBo@@?ta1Ene&-Y*jhG
z6SjG=T{%0vD4Z!lYRU447k|><Mcqx^qcW>rPTEgCCMS5tgahP*DtgF^zZ4%P9P#2P
zp=*A<S5hVBP|^uH!s49v;*2!q#br74myBn<IPb*;FV4x-v^ep{*yR7UHCNwiy52D1
zZ!gv?H;nFWyeN}E)bJ$1bj6FSa(<;tOg&^c(bjy;i+f(&_u{%2|9J7Q7dO1PEn2VE
zgp##xO0795w`5ufCQI>~Gbw3$$BVmOoPC!tW?y`cUkwlB{FQ;{gV%>gUi>HLz7LIk
zc<jX!nX-H^`tVeywR@%<KIHV_nHSH!c;UrMnW%lp<kL^gR~#g<KD_qgjm%eS%zW_T
zo#OX0U`pwq+CC~L#s_B+{j5pHM$%I=P{j<j2FTf|nU$Z#hpdXT5nh%`s$NDP`MG?^
z?L&DVD)^AchrB+NQkkFmP|$}$KIBtQejf@bj()D6FX<noE9^rNnnkI_efV7E6qClc
z>!*JS<&^ZHdu!d1rL+%a=$ECIQ#tKQ>Md7f(cnWRLS<?dYE`P_?B1O|PVuA^+<jqq
z!imD<LxK;93?=zc(}!9<B(qqJTAf;hD(!5~tnZ52KGg9c#fM`2J>?5V>rv~fOf#X_
z;B@r~4V2%|hc4OmtBjiX(A0;yL1RxJn)&3*Mnm1D@ptAWHus?glUw@G-iHo8v|_O}
zwGFi`RT^n0N8#M3?;kq)(3O5CYG;+x#fP-J1W0~2n%#Zqp`zXVF}-}~?ZcNod`0sc
zANmjms+_()^dtAD4p9Env*`zszorhR4pGseKK$}R|GfXL55s)0(08b)m0<J1uABiK
zW1VCd)vf$zm12E9Xg(b9;h+zG9|AtC@nJ0!f<BD$VKh19L)eE1IZ7SrLn=YKG2Dj{
zisctrdq(|Gj`3lv57T^@&d_(%@2TT_7*Ci$ok*1`U-9e2Ni0sLPN7bvdb7v=;KK|b
z7WlBxhnX~`)?6QEk!MqXRQ?>ojTQ0plr!IlpA<JAk?v<77WuGJIg1I)s7quID}SjE
z_j2i1?#Z&;hZV}-xH*G3t5{r3{gwJzFyn91&u>kS9wuylXjtdNdLK6Uu#wT-)c^VL
zyARuZ*u>&y>Xx*S{1HG7#|r)U%Cep2AJiSxozzOaW8R<SUFv+<!{T15)ZOR9e#N#6
z=?{_fR!n!nho0|i{Kev7ACCBNlzhyG(>|Q>;W&#Ys3)n?+9@CMzyCCE1nc4~{d3gw
zDyPb<*uQ<a=);sE$@vQCAGj|0aGB97D(5QUnh)2N^N&n@f9NgW^x>8dKl(ApkJ~=n
z@!_O~QyT8dA&~K@Vb{9&`#wDIp@xQ<8Xn5z??Z77B{cjelfRto8Zu~jB9p%luViAE
z*{_}XnGer>c;Q3Eeu;9!G102+%rAX7mu!|ro*44Rhqp3mY%_iIA?8gDxqrwzAKv@)
zhlw<Arzd<M4`^qO(GaU4od)4>JF~PVAPE^YWYUmRLoN-_^p>-0diBg2vS|8U&a!IQ
zem@}_O#ul>$8u<pp2(8vdP;5$c{CK#P*_7=4WDW9wgd$<y;pPFne%CS$7GR~MGI>9
zUpuq(Q&^f3EyA^YuA!)E^LRV+y>{ke8YE4iq=r%&;xx#!07`2pqoI<9%F^xj=E4sW
z%4#U5p}dC1{Sqq>#22op>5s5~cRxXjRW$w4oWkN%)nL#d56zUKuw=$-FlsPqNMKrZ
z4e#0}CTj9na8%QfBnPE$qAap@@kOOUsV)tQSxZB04PR>bN<$qDDH@t-Xs+Q44Rxje
z8d^U{FjHUFN~y1*o(6&M`|@E5wNfP7P(vf>hK42@me;LWvc0*f26@zifJDU+ZlR&2
zhRzzgXpnoww9?R4Lpy0!Lz{MqZ8XR|WYTUU)1C>E(@{eQE^>z%x$3)<25UL}J~MJt
zg{~U9Y3M0E;mv2dv&zBvlpd-b`P;aJdNH9l_lXqyXy~iq8x7xT`om27X&B5l`^$);
zGf>0V8oIVO57P8oH`Hlw7L`nKhA?v|RaPY37^Y!Oe2QIzLqqRuaTW<_u*rcamng^7
zWi|=O;?&^L;ML&L;MU;ZDvyFq=(jaKEzPGvlVj9Z&y-u9dfJ<X0~&%FLUQzFH_D*Z
z5YZ6TFiFE?4XGN2Yx;AGzSl59)Bo!#-z!cejMOlSFq$f%F@&+y@2KOb<26hm$fLm|
ztz@rs(ugcG+MB0nn5toghLswoX_&5IwuT=yR4Hu!LBmW9voy@mko%!&?MtKmlIcYC
z<a{TM&pmZ^mQR?YVXlV78kT67r$PMr8h+9s(StP-wPMD)D@+SCbR20|NEP^5!y>Y@
zFU4OpoIGG$s$rRiD>W0O@r{pbEGNGxViXo<m4?+CHp*$J;a52d8h+ETPS*0quvWwM
z^@d*xm<BI1g#3o}8g8yMZjb{MF$iSsZW<9b6nSIVq+zqn2^x0D5g%;yzA=cuMfPXd
zu$B5dbsJT_$=oT2BVt&5FJ5kmaQ1;=c7pMY!MIDq0ojKdc5B$9L7crB_Gxg+9e^{L
zMEBEt)ICu`vK-QIoX%ew4r`e5%yfjsqhv{w<ru5ae4yu_V03oJbf*PmitwYnA7^EL
zlUdG>%zoqx8Vr4s&uh4#;cpEWHQd&4N5iZ0rb`+w%TANodwWvEV-US6dq#%M2;()H
zSqCPH`HzN?XG}khHvB6ym>j9mhMUw|a^fs873h#uB-MCV!#x?gQxjwS=#@V4zJ^CK
z;Y(BU5};vz{Y3YFHP*H_FDg+>zD;^86{Q0*;m9ny+3=M5j4H+FgcsD}MUr0Y^LCQ>
zdp5<3zR~bjCN2%{RsKf}9~5U8o}9+9ex&mwy&rqpn=|^6$uG~cPs-qj^?IWGjPh6d
zMEAAC{yP#91}0_kqxEUSvq^@Weq{9{nAwz#nw^@1D(1X9m2>%#+mAec<n^PtA0_<w
z%#XQaO$GfZB>UNq{C-^fB|bXJSimpeRhpKzGiDi?v9KSF{%0)WM^Qhz%ryG48$V~X
zm|q^mY+TpPxM5BFkdj8>l75u(qco#g?i>DIZLBoaDD9N-<5?!7`~jh?AFkcT)Ul=t
zepK|MuOI#VsN_dwKU(<F(vK>BRP`g#k0d_~e*FVfJXIi0I@#59tZ7E0A0|H%=m+-b
z|La_-8D><{uaQgkqoyCV7^>z+bwUl*Lf$7awf(5$M?F94(_Hy7CPhWRAk?LrsWV5%
z%zYUn&C1fikA^fGQ5#d6P@7VlQJYiGY}VhMwvyxGM^`_(`EezvJ8k@E>qk50wD+R}
zVfV@Sjs!{Q;zuXNoe7WkrO$m@??87Jd->7Zj~?WnGElF_%s%kxf7xI9(MQ$&N{+(F
zPuIf?ZHWGU4De%u9~1o;=*J*GynguPEzs-4ul=Z9*<_btusdO}A460NLkZtdzoicI
z!$Po9rAszKd<q<XILR)m#}7A8+ww;Z()faU`X7I`ERNS09p{JNkF||5$}J@Wa>SdN
zf_{Yj2>TIX!YHa#iTaUB9!?#h{E>tM7X9tqXg|g%f2<$hDbCso<Nf%mn*N2-mG<WE
z{g~v(G(V>MF_}42sQ-6e-&C1)>c`5BE+zj5hGtS{_%WJ~l9_ZrW|kkbX-du*W9(c%
z=J_!=h#^7D_v0ry)&X=2V1XYC{m2kN#sGfyW04=H{W#;tVmUATSm(!jKYsCJsq6%{
zwv4)lx}3U#Dr;FuSVdh;{gvA1OTC{*Zs~*bH#)o88aMc{(T`1jZ1yAjdVS3Nk0F8V
zf5vZ-VV~Q$i_TU*e)r3LMa<i1?(kzfi&@4R#oS3#lK=4IPx4u-QHs*eZkdk!*z3nW
zwsY8zBYx~BAD|wj9-{t5m0DMd#~xLD!jEH$kIPV8^l6lyq<KnulHt=Q;<J9-@Z+W*
z=lnSD#|1zB_T!=-mzY^=e(dxk#zBGDd>!;dd|6I0`uA>|n!$LLe2seDkADb~_AepP
z9(zmP{QL33kC%Q#^CaK#<B?3Te%xikJ?eex1L{NSKl}BwxM~M;%MRwpa%8{Mi%%GO
zN_|Fs?ni^8`UkgHEWW2o@wMz^@>}J+lQC03Z{&j?L%AUz8Hx$$Q(tTV=?KE<3FA7L
zGX;PE;sY=SkeOz-0I~-#{p<KF)U4E9mtt}-nk#_Z0puh<yK3rQHa1THc>^dCK+ym`
zqc80jCgcksKcN7%po$hE3_Tlrs;+*~?B~j_5<sy4inCaPS}uT+gi<P}bO2?@WtAgW
z|CT3LP)@}FDv>KIC$?sWs)`K(#F3YC7nuS`2%uE}tpi95ASr+^7)@6BbpohHuCAOK
z0n}7nD}dUHW#=DznV1s5p(pywN8JF-4Al#uMF9J`y7~b$2%sVTMgcS>G*&G%A^0!F
zHd9V><+NlAH#?Z6oi+iq4WMtfgkMkUU-Svc(k_7Zs#XU=#{fDJIxD|R00GYA-2><m
zz{vnk1<*5qUIEMsV0Hk#1Nbt4Pypcoz6zjE0M-C(vaSI7$zI~qGyAi(!PEiNfvWvM
zgs-XJ@^&;s$U_78M&*1<7#4s<IcX1Zwg=!*j)UN&x~T2|cGcELi&y3N2pZK-4N!vt
znAlHAjs!3<fbRo{29PRq>086_0LCzFL;z2w8Ag&vQAbmymOPDaEcrX?IOUHIV1nYa
zd(%%+JSBk1<QnY~2l08YQ(2rwolgBBfEfg7e`WyfcyIO}1DF%QssL68FqhFq0W1z+
zUI6Y#@$&=v1B`y6zd+SpD6ayFf5@kQ=edN%Ujm;VIkZ$oml2i+u!69XI`5c1KgjZH
z0Gk8YLURpuZ2-R!B)Tqu_2do8*_Z|aY*Nmntooa!tpV%_V6Sw$HGXGkTL9Y$JE%KV
z{vU)t<v1#5cK{hW>hrBE`)D4PK~6ZJat;y>QU9V=dlY|!aFi-_j}eXsa6&oWAsJ5x
za3+AtK~xFqw|zbvz=HrDGT~eR=L5J9z~3tWRsa{tmjbvPz!l}+2;eID8udE$9~J#q
z_W4Bpd-a=i((YX>#oGbgp>tPd-Xq+Xsj{~|6+a5#Kbc5_$P>h48HbE!3hJS!0lW&}
zHJxVxJSV)MzNAXdpe-5SDE>fr8^Al|ybqx3as4QNR89<Aj-{rfrVk<mLDDh?v5dEy
zgK{zlk%gR9IoX29PR>EiNzJ9AU6#e?4dSyPO3{(0`{fIwOSbg+gOI09NwEO^f<Y7_
z6s8srqDT-$gZP}qV${@f`jAf35_C#Z<!<@nmnI9838E~y9JM^P0<|Kw5>+zS)<D&u
z4AI!uL9_|N5JX%M@r)XSFcC_1N=gVKF^DECCIyj9NTF7v)}mIY)}Yp;cHN`D!KfXS
zUw`z&Cx0dqmF0^d>IPw^SucnNK{O=S590rF8qsO2oHYOBDr3_inlaRz+JY)=whW?`
z;`xh>ZG&hRM4uq~2GKr<CyR}J^Co;1M28?cGOZJ}8?`gF3$-iNdp)*$5Ix8}gXm4@
zm8K0%d84sks<gB%x|SzSo^{fX=8&)T&FoJeKpjXOME#oTESqj<5Z?rmJA^zTd>h2D
zAQs8S24M-p8pM<!rZUqO#K<5<k?lb^(y9mH3c?+PM-J01{q@vKUmzTWF9?lAe-J@J
zfO?p}Pf1QF2zf&&AWMXyC^eNjJctnliQXy`J35FlL44ek(BnqTSQ#X?q)F1Ht4ZH6
zXB>6B%AXL#MDq7kxy`aPBFU4bVy0vPDHiW&o)*OPAbtqyPtIMy%o#z<B+Lq84nZ<!
z6MhWB&acPCnH$7B6`dc%Pvkt^^lg!c`YjAX^yeTB{$Y>{<d#VLL7WTXd=N|JL=Iw2
z5NlawIrY~dR;boi5>^GVn(%myeh`PajB?|?-{|ZLVs{Yhf>_Vuh9G_qVjFoQ^?%e&
zL2OPd$_KF^wknn%Pq&l*r0!7u&LI9EFX3k&S?P|CF?)j88^m8KXCL8cBmHdJAH)F`
z4^j`QoNMi44=X+r#L*y*v3Q(%I*1d5lhjjGX>HXbz0ET$o~2&;OyBSeLA(m$br63C
zaWRNXD*qPYGW81eD)k!mI`y9*{w3U?N^3WRsIFeiZU=FP{@oz%1#w^HJSIGlS&{IF
z`k#s(&L8_Eh^H(*qrME{IpKxMY4s}R@NE4P`kNr$29Y_0EFpbhybB_I2pP!lnfyV<
zv#J#nLM%g)nJ$EM@AVOzkq)StLby4=B+G*oeP3Nj&`&pc&~R2pvr)5C#m_;=8A2{X
zkZ(frhVWSkvqG31LcS34htMR1rXdtyPRS5Tg-|erLM(oNIi@h7NC-s<)+vV13DSPC
z5Q-}<K`6*oln$Y`^2>x!HiU8^ln<do2uaGX7=n>pDTK-)R3XQyXw?u5<ZbE>X7S3A
z^_mz;pe9nUOg1DFs!^*`Yfx)aYf+`HypyRzP6^>{bK@7}x*?cDsHbuo66#YMP|s$M
zZKR@&mD4PQ<{|h)2!zlggq9(EBa>$ct(ed`gf1bpR<+s?+J?|hIqeA@s2!=DsD`ig
zanhCChuV$WJ%k>Fp448{-qbItQtPV_HkZ+dge-k&_6wnZ2m{CiLl{CB6oR}=e@z}t
zm3(oADwa0`;tUJHMaL3C#hxZ>2z}S<qs~Ut9)g45q;}ys<tBTmUaF6(QTIR6e|Zds
z5DH;z2;YSerawA_F(E|AQL3b+hA^BwB7~8IQ6b#UroWYyMIJ07w`3Q{+f`Rt#)U8?
zgsIFNAHoE}M5;u;Crk=qGNF3sPqpL?)igTOsXtI>P-jxpZu9$N2y;T%9m1Xv=7umY
zgl!>g4`F@?KZWosGi5CcLRhG{<jRachp;Gw#dMY{e+l6i>Qd^mkbdoS+E%Qfvy!?h
zBoChW)K9td$(j(>hVYx5w(dlEaQy#5Sf`@v2^**zsq?#G6Jaw|8s8GaR`T!E0_v03
zj*#3H(DWzGogw_8^5uucJ}ooulEcJj)$OH!OAbK@`$E_s!hsMDhHypYA0nKk{uRRE
z5RQ<KhHygV93vd3HnwCuNjMe4=@8^&nso9EowGAPeLHlH#q-n)A^aV}#SkvBD9M)z
zA50l#N!xo@LvVLAU!#AW`cDY|s{9)=d6EnAk?42iEC}Ic2(Lo8r*iIxAYU;_YY#$r
z7{Vj^&qDaVqxnDbW0m=Y@RT||G4{FgUxXk<Y2mfB{KW7^=9v&YaVB9g-^m=fIwfNm
zZ*#=G58;EV^)ZB)@TX%P8%8>EdgWvYBmL!1BV>6;bLKFzgfS_7fywC$WDO%*7*#jq
zG;GM3J&YV-{GBt~#hlr4hLJ0bO<l5V?vf>U7<s}NIVAI_A(``r@mUykU&8zn`NGH_
z#;Kh+y%Pn(C>X}$1$eRmg~BKt#_S3BaRQ2jQ8bK8!*O{yJ`bZ<7~P}j5k>JZN`%or
zi~(Vk45L&SEy8FSM(HrhNc&-!!zdd@xiG4QQ9X?EVN?jCGPh`a>2wtdm8jEx)DNGS
zRamS_HBjTI@l?q%5=_(tY9ci$jAVl36ss3|cdemD7<K5>3`1_0ElVvzZED?r4Jlzv
zsc8CwInJB<oLMi7`YbjJqk-&}iH4>uHVmT?p>Y_UnkU`iKy4D%pN1(nzG%uvEjMRE
zXKUiy|LKRRRT%BUXdg!FFm{JCwh3cK^@O%z%#Y~N!OqwY%<m>UlhBdcN!EMW&^e6T
z{gb<d(Us<aoJr$vC&;fn)BBrxgdzW2?iog}FdFlo)xE<QI9qS?OD2C6Mjt|7YVX#u
z{lXBHgn?lUlIjtxjo|Ar28Yo$f_4!M31g@nuL#T$d=tjEVVn))To}W`u!ONRjAdb1
z!?1-hA&iM(*u!vy5eOp~*1yAdQoUig2yUwQ9zuC@ypJG7EsTTrWBn`+dJr3uAz_YB
z4P$s1om(V?S&W1cB}l@y`>`X!kcyHvhP6h9F^Y|dGg`q|CdeAU3u7F4JXO{u=J#@%
z$Zlsllj%<jW4auAva~amA<6tfj!_tM!kEj@Od0=S{20b8)tWRY`J!oE5@^{WZk~!t
z3qOUiAdH1!{LH@n62>BSd$C$YT9=kED*0)}<zcLlgC(bG7>W1NuMA^V7^~GzlQsSt
z#s(JGP}fp_3u7H&{r|r;X?CMp-R3a1gs~%xoy^=y-7e#nuuaa^4snt%n<M*QI`c;u
zf3mgXVeHb!E%t|TfXREPd#REywf0e^)<MEwVH^(Q5IJqrj<BhtVH{IEOxt^DTYZ9=
zC*>?7oDSoRsw?fM<(v=WLKv^Ycr9~U7#G918OE(JwiZab6vovsu7z<qjJ+Mr;#`pt
zTQKQbp``0!d=r;)r$Ev_l29nAT{NBWzhQ{pkh7yelE7^iAB6ExAdI^#-V5V%M(?vI
zY3m9mohXp>C=Ai?(xm_BKUUEvgs0SJ)aPNmAiSiGEU2&RjZF12B}Py-f_GuO4<kba
z86)@*#>X&XBS;rPOazxYnq^6Y0&f!1NARYj`NHdjsfL7toy@|SB0vQH9yUr^<_Juk
z^snP`N023=ziMQqW}{}O=Ah=JN<yv(h9A=3)a9X*H-gV1$QMC=7K>90L{LQK7bFy-
z7LFiz_S36R(Fi_QImIG~+oOMoE}@)~gi_Sf5iGr|&#UDkC?7$M2x>-9A%cn#$Oh(N
zs1h@Wb~0Cvph^T)SxlfBsBzSIs*x%Unj&b<%@<CLAW8Yjglg345!~m~h#rnksTDz;
z2vQ=b9f1_RsVSmgu=8U&nVr|-r=3la4XM!4R4;;3XAO-bSbxM=KY|7kEbL^KrC|h(
zWQL44U2!H3Tc6S-f~FBPlWs)Nc8uZq{g|xo<Q5ThjEQR<k-wrRx1_d;U`HqO#ZG4N
z+eA>Qt5HJjBj_MAa0G)RsQ#zn(z^JL5p;^6a|As~8b2bge*|43=o&#c85>E)o)Pql
z;AJOs_Xu)#Hus2NdRtSa&gMp)&Apk>H-axC=-=7=6}1mlit8HG3U@a5ll68s&**I4
z+SxoH0?~ogLDcL4!;lDuM&OOWC-Z*<-$vk&15_^M<(TAQ5m+L)*x8)(lp)uoWGmSg
zfnC=7E?#_DhHo)QvXfO@5x5EBcp@lWKILU+vlf9rg4q%L7(qY=l5FOJxCs%t-~?eA
zlM#%FAQC~8erg1T;u0mH{gR~Q*2%_Nb%aN%(AWq@$q|`g98G6Tn*J0cIp0N)mOL(k
z@$|(!oH^6P2)>VCl5!?Tu%>L1v@nIvRO&R@rGy`-GpREoh~1bZjmR>KjuhuaFgJoF
z5&ROtyokJ->)Y}(yYy28dAgVvuzfKXG9)nOr<g?%EN1s4K^8HWMzD+tt0Gt)fz(|Q
z!O95gFG`VU1?C7yS64^yD>KK{uhoeDZxO7E;BEx>WRym*A%e>hT!~<#4EqRPKQ$bU
zU{eH}BiJ3mo(Q(cfsWu0S;hZMzeg}5Ps(-~FkQ^DY?H%5*deE0+r*s_%<5v6C41Wx
z_c`OAax~8wcTxB6P1+m5z6cIQ@K*$7x*6vbHtvt$fSlw1ns#T6JE%a45}goA6!Wn3
zA#2<bs@B>hkDNFb!SM)AL~t^KQxTkx;DT&I7xQWA*$B=M#HrKMD9brHb9)-oihoCN
zx{LWDRsIV1tc&?l1fn^+>d99lxDmms_@rwQTtnP->OV4J%E4M?5T|`E<A@=qo6`A0
zCfT>QBDk%N(H)r?mg&d(egqF>f{LP26b~bK6u~Rmr4jrmr}+%y6WO2njE~9pt{8f}
zFg=wHMDRR<7ixJ)Sa;JTnX(AHiQsJn1*0ew#k&aJN02Luie1egBKR0VLP=AOC>rfC
zh!Yb<Y!rPfB&3TXyFh1C`Y19)k&$LLIugyqBBIDl5GM;EYZP~WF-TFG5)~GZ_H#z{
zwFu{qB2N@~x%Pb2SD6z&Bg`+R*UBG70p&|^%@2mcQT>m@C88)2MbRiek0PAOSUigL
z7ZL=Du_(Mc#yI48jgm|*MJ-J&LoFMH^^Bn$Sz0R}MFl!?CoU;gj-pBwt)gfhMb#(_
zQ8bPs>j7h26!B41kD^8tch4poqw<drBt_AntJx%56h-&`NpfYBs5p|49L0>f$*wg?
z)uQ-tE%C$8i8Z6B6@@v9dQ7fO{UVAwQKUri<LRUV*Au5#O_VFOq>;Mvp{A?(-6q4~
z`ib?UXc&cr8bq-qQ=%-g3Mn?CIW9H1Nfb?^Sof>3Srj?i8(T!tJPJowv#^*g*?-vt
zDYl8~ug>kIZ!ZmP$x>_=#jP0q6K;nnIz}<MtNF9CiJhY89ECuaD7r@RE6rw?l8$yY
zcZ)(moSsqilC4X{$5ix=;!9a+Dx9hKDvCZ*C5kmN5~AoA#ki<`7W9u|KonXO{wM}=
z?L$-_21W686!}Z18%(EEdDGX`O+%yjCW>!WPOtol!^jq@m1>K^PH;rwBFKg~qZqnf
zf30`Z@ld@~pUS!0)f|W-7{!<<#zqm6!4t*sC`LpPVNPlkPo5@3$)}GPs?<x)(oKJp
zGg30gn?^@*X>rOZsra|PqBPAN%~-yhdFQVN(eI*2gYi*Jh+<+C-$$`9il3vHBs)2Z
z*>cdMm?Hb<NaEBerpdtQW){x0(l9-WALJM@B*m&-Qf5XmD+*^fbB}K3F_#jjbTglF
zB+rRrZWIe--@1+S<Yc*!G(U=-*OFRXO<LQ{{8JPsyP1!7P7y~Ec0Ny76vbjWm%E!+
z%0P-@&!xm=Q7k9?62;P}-1;(k=%qyQr6((7SYAtdTF@-~UpMorD4u3au3$8;mh;7E
zj`bMVM)8}>6{%>Pigj`hil2&#sn`(3#wZ@hlqI_^icL{mlzqkBxH*blQS6Rl3yZbu
zr)(ws9>q4ocIpo5PO9wNKce`PT%o(Z|7F<|#gQnEMzL4r>?7=t;(&4vMsY~-Ur`)Z
ze6UaQF~#SiI3C3b7N1^CcT)MMqBu=HLp`hfLe(;!Ctpy`--LCeV=hN=C5o#o?%`+f
zwMF&Mxeo`Ku0=7ZU-I=R{$cdrC~gpLQg6%IN08*)ds6O@?^5q6|9%u5j_bqhQ5640
zkt-F!m4?SMK4lLqi_e&<pVUv~q^qp2@mUnlS@DIOn}nB9ydu1g;yvLF^)2-sRVu~|
z)_+2ke-DX%q#2WnST>%HDt`J@WKi6Uha*!ekctbw#LTJ4l8UU1W>-1c2#=2#au9MV
ze?WJ0?o{MS#rzj_@}{CVx9Bq!%}2<eiUO%9n2JKmFG?t!iXwzT>Q|x9Q&CLiq?sjB
zQBpaj2&Gd|hEP`d<x)|eoIR`$s!FM-oQi6xsGbT#lZ;hT@&7S(7SK*3ZyU!STo-qj
zrMK;EFK~ei!EJGOcXziosiaMlrbQQ6+!tRKSQdA8cXxLd_};vieCL18oag-JnRg~L
zlgaenO5)_wM=LC4$zhIRwYp$qu)E-3pz5(MZ06@_CUPA6b9NZ-FjsIP-i2x|RCl2w
z`;}a1Rz6{(xt=S#&_9(ufs3lRP}OWxU>Flh+Woboh6{%eTNWzD*{SJ5=flR1UB`vG
zwBNeW)rER4)Td@$XeV15xG<=`t&t0jUHHv~KTlZ4+HDP8#@#sxswK7Gx@>)y!QRA$
zrY;cdxozBif+{w5p#`_llC_l!tzBrt+%8dNOIwCDr!DOnI<R(R?Zis$batU-C0n_F
z6Sfw%cXOea3%y;qpDVVz3q2TmvTlvB&1xsmZ{+*X47f1BW&B>guM7Pci0MXQqyt?T
z?7|Qll<9|(I)*Y2Go4a<9280a)Q@ywlnXmt*y+M(7sj~oy9;w%80*3~7kn=GT^R2I
zeG7Vu3sYT~z&z1~NiIZhB_W^EWHxDrT`ss?@NkxV(FKW_0uqA>yv&JN*@XZHOmiXV
zg5rYaLfD0n*@9|TOgxIteuPXu*VIVjp{bO3x(hR0nCZeS7iOC+{Qsd7TbS#@JQvox
zuz{{77v{UL%!TDHEO22VS6Sl1BD3yd7yh?>YGJ9_pA{~wq^07*8W&cX@v9jUt0WF^
zEj#N>|NlF@k=8#Af&ESND!`D~!!6AJxUk)YtuAciY+`HF^1uHRnK<fQF6?&U9<2};
z_PDUug>x>PcVQnzx^T>e<J{*1E*zqZ!i9tX)4~yxkDB93JkSXjPP%Z$EIq|=`hRAF
zdUBS{#P|y?Ty)`v3pZW3<iceau5sxVvxTb+R4Xx_dVbw(?UosHn}GuExNw(CiKz;$
zs|PMTbm0s0BNraK@Y;npE<ADJsS7W;;xiYXGrahpqa?OKhokh0OR2%P3?E$hNSCt<
z@6Dbh&gUmC{cHv&nxtR(=>M@&_8Zrtz9n%ZsT(!jsO3g7x6#`iZscT0&YFTXr5mXj
zC;$wp-AKcbmNlIl>D|b{oRyU#GrEz<<jf3NSQ8)NmyP)sH?lJf<;RfaawE4J)!mp;
z)1JqTyl#|n<5znBpJS-af^OtDxd21W)=3L76lN{LT9maIYjIYpTf&W!%%xaMv%cc*
zL6tRQ$}?Eph%p_j8#ZP;Yb>k7EOj!(xlzt^PUcHmfjQoEDl$}ZqcTGRYZbG!Dudug
zHPh+yBzX-twzd-}4IXEy?M59pCc81kjk<2sbEC5xUEI*h+v>Z~nxTOk)0f&Q{l?Ic
zwUHZ*O}`04Q`Tmz&E05WmbP@G6*GOepBibyZMJ1?$J(B?11lZ3qZ^$}9_+Gob)%ab
zL){q0W_LGwyV1vu9-O7^x~Chxm=|BQP<2Xu-5B7;KsNii(Vu~Qx_ibTlZUu5n3>GP
zT9h5m&S=&VtRq<|V3gaqi&tXg7&pe6{y2v5ZcH$piEd0XnO=9My5VwTjvI5`aJwP8
z5q3j&BR+SW<i@eeW%{pjdZ;tUZC+L%tDjY74X_4TDNJDqxuG&>rhlcKa0!lx8#CR;
z%U{%uX>MH6j2HS}bjNgB_HGbRdf!f%<wn9y3qAXFHeDkX9KW-!?dX{2#vg9%c4Lnl
z^W9j$16k`vw)Vn8H<mCEFJf3sXJLkevXqv(vCJ%8?#2q{m2RwJSnb9dv-D2}>J`-@
zUdM-6@5Tm(jc#l*XK&kE>tD>9Y4y6Xg?R_-*8h)j;~$f^yYVk`K(;5Ishw`@GE4tH
zW!vk<J~xiLae~eLR5!K#5c2^y4w{j>3YR(T#t}D;a=<Z~kk1y1tcDo+%ZH$59p_0m
zuDWrJtDJJ<v>Rub&$@BZZ08)qdDaW8tru7>F<fT7Vw%+3661fa-V8nMH{H19#(#c%
z^W(M~cibr8K|v4hx^d5qw<6w&xbMaTH%f^pE#jdYkK9NtB8`a0ZakqKRRlylb>o>E
zAKduJm;ZCt*Q_txc**dJwP9mpe||%ayYY^l_P@luH(}lHKks?+iF)P6H}*ffvGPFj
zFK&G0EN<AS3N`ZGjg+F%8l@jxl!UWMMI<x*<P0fTb3b>a=kG1_oNP(k&_)lSkB+gV
z6_HLvaSli?B7=zBBJzmHC?b=HY$ARUky!-&3}^UsdsY!;+6!4kw7qC;wa+qln0;C`
z<KLX@B65llvc=@!cD`h{FQ019#m?;Z_I3|!c|}a0mXId1BcEuzfmZgjGrx!eA_`K=
z6D);96c*7ipPjgf2&zJnn@-z{GE=q~gQc8}?zdAy1ZhcDx(#C)5x<HUlQL$Yh_WIq
zBI=81AR<PDRm8;Ij=CajBD&PF@A(p2MTDK=)7vN;%cetwlOc|^94nQU7g0e(yoib-
z>a`atvtNmsO36uJhk&wGX`~{miKs4ON_(NU2!E@%8X`tau-6pPqrGscs!&S=DJA+<
zQ5};VuPWa?XQ?NGbaL5bztJR!=q94Oh(;nBi)byPjff^9nu_R9Hfc){%|tX8ab~Tf
z1yA+ho^i9<8~<fzIN>0(=Ec}nBBGBRxffd6ifBij6wy^gd#-Zlx}!6-!`zXTs&r!5
z)Lsa#bqrYRczfKaONp{QM4W0b^cK-aL{H{ktn`0P$2|@z>PsVC>KMRgKi2*tmSl-}
z-Cnr3Fouc-i5M(mU(MJ}Lj3hJwjngGcb1_dhKU$X^CM!Uh^@2+M2r$KTEzKNw#9Td
zMU17EMaUw?iJ*#8L`)Sio_PZ6MAk{H6fl{lu1gF7B^R5b2)9|fXtG5z*+VPGWS@wC
zdmB{(B7$tr7NLj;F;8PvMTE_GO~kBAmc*mzA|j?ArLzy?=+i}f`fLQu5HZs%oh2H7
z2qo6~UBny_b4ASK(gkMBA0p<P>|J45X!0Vu;ucw{?h+A8*<8lDLBw(qE0|ZZu3=pz
zVl@L*`BTL1K9vd9va`<g*Nf<M&S-O^h)rz%#hN&@&9tt}$St(v{q=La|A@FM;+lx<
zG-)DsaLhgt`$g<z-o?6`bq^~YVy}pV)y51T5OI)Jh=|i74w<FL7!Hd#Vme0|2E8?=
z>$r#$rhihzwDmuGaz?~O_RoqqM{CB6vA;KJT@Z2MixGLr^e;195$S_<Zb8Hiy1Jj)
zU$cKx#68;NnQw`>ZPvO&SEb2x-XG9Zh<Ii?j~E`aCZ6#p^eSMM(y^!m&skrHcxn2t
zXf0JUX5$TaVBabmb>qE=4<dR?=p*4HtsmNQC1jUiy`JQ=h;Jgk(?yiY_C>^35&zM)
z+(DR-I-v~f4-rWuWRfuah%>2#WD+1DwS?pnR>6@{!kOugnjM4`67C%^AeDs2(;c+i
z5T}ulRzd~|#OWkBqmF$&o#{E-u7g0FBG#yqQ3Bm7l^`=8g$|TOLROQrF{G&D7~Vn1
zA;CfINXRK6mxSCB@<=Exp^QY|Hi^s2T2ewja-5F*5(=<WkhQ3ULJWmji?C8HiY&%l
zoV5h&tb-0JqEw2r?VLvTR|zpRX%fn^Ip%=FB7utLTOG5kaW)Bd3G>s%4{H$XzT}K$
zZj#zTPMm~t66#B6Afdd33KFVGs4gL1LPZG)5|(9+sl-Z9nZZ@nPKmOVsz|8Hroc*{
zppjWsw$zYNmx^QyrJ4-2SZlM^k&xm^87itLftn&9{Y^qc39Tixk<ds&V+k!KZ0qG{
zB4J8TM{}yuKY>zH3C&CnbP%Yh1!tEsw~}x$dHlW(LR%WXgsu|0(b!Mg+e_#mp`(Or
z9R$jDl2ELnvx|g+9R-5U5<Yh@pnC?pp`7h0fwDcgI+@{bwqERzS-GRoS3*At7bIMi
z&|ks;2~i2tBn*@=NP=5}C}FUKAreMP7$sq-gkiK=B#e;ob-n#`oNZPr`<XKqf(er>
zX>Qu)y|9dyaCf4mdFJ@35?XZ>#;}fM9VcNt!vxletdm$Lvr_yN3F)dh2wW0E`)#Wx
z+ejtq<aWC(At1pc!7ITh!7t(4dE1<B_L_Eky5{!SjE<S-tU(Ei1YJUes!LF*w;ctI
zx+GbSB(-NqZX*q|Nq*y(6_BN3u%ob~qp-81FkQk7340{$l`vDnED38RtdlTX!tWAR
zO32Ykm?Po*YsWkZmpcjsb2+Ox6Nvwy1u0<xI}2GCvo2!&N=IQ>%1ZIe7?!iH;Ks>Z
zWtOgH_*23f23seA+F37Q11+{r!cGYrC2W$gUBbT-{*thnmYIZqB>XL5i-g}g34gzK
z&<7~HhuXJFAf@#BV}+i>Y;`j@=s;AuLqhLP0u7|eGRKd%j{Ki1?Bd3Ev(izhk$n>O
zOK36LeqO=>T9y*dNx0NWI3(f0dfRacCnU`6BpjyWb`p-z1~|fYl=T>00vl|UJxS9T
zpW+PHN>RdgibmnKo#yJ4JxjaIBP*rXv*O-#5;A_V(XlAt63sAep&sP$;EIH+68@vp
zO)Fo*bqOyeypnK3LbipDn-XqG#xo#V{A20g$hlyQo%l98cZ~CH6j8b-;XWOdvkxUa
zWq8E;*o=81Vf5?-3Vz1UbJKqz;qW^P`L89sk?@5s>NnQ6T>4(Z2MO<(AAXPhv$b)o
zgeLZn)VIz8@h7?r&32Bhw|%AkEq@&OP4mTmm+*sDy9en#Na8_-^R}B_ds>gt;iRm|
zSd)8@f*~bqDptDjC55GCB}n5zldDD#cl_(Hbrv#sK%Jp%CWee2>}lXgbTWI8#jKUp
zgKQ@M;(=wCgR128AeYDZTPU9gxjn}1TzXWuljdP2$jd-CjcJlOHopglPg_EB?1eli
z?7<5kUiwhPgQ6as^x~8k#XKnP!CVjKc~HV*d<q=)U_*73^q`anr9CL)f#iY5gI_%;
z>p@2kI#EwNi1DB?4ax&6-Q3fInjX~h!0tgTO_T@m9?-vs4iD(op9D@;`ZSri9CLYA
z%7&&{Dw<rygG$VmSrb@K<cXy)N>x3eyN(i6W3A3g*%|~7tpv3_5R=&&dhm9)jk0w(
zpsok?80xb&V5QREJQ!WuNkGAkXe`}r1WnmYSZ-<IF`iD<jI}u{9ik=IZDqF5+JiP8
zwB>9&RvKn|h7M-T=sT9e%PpNf80f(u54xCsSB7pLboZbKb5GX39`rI}dVA1^d3g<^
zpOpG>wm<6t5BjfgkU7{xAN^QvXN#Ror_Y0-Tsq8yaSX#*M|d!jVU!1B8K~lDhA|#w
zd}++^s_Vuf#<MxWgNY22JfMjp--zewn&QD!c3iA(R?&>1FI{*&@OcpQK=Huu!Q)E_
zvIhZ%os;b&_SmEf31pInJWxH*xOB&V7BVSiD(Ix5`ke*cgAuuG5f7psO!Hv62eW7e
z7IaXW!7!8cOkIHznX^6k-2>w8orO7EG_|wg|KY)W4<1nmJXqktLJ#(PaKM8_9xV1?
zlLvo!u*8F<9<1|Vy$54D+n3Rv)>&BX!Ez5^O;|x!M`wZ3N)J|<yrZ)~F@JL88rHQQ
zyknE9Z17+sH$^d&r9{nc_TX<1wt4W62V1ywD{U;2gNj;QvJg-(@pcdX^<W1V`Dfd9
zda%oby__A`JsE}VX5QmLVy!$~1Ty#0GGL&u!5sA9q6e2eI7FAf2S<GNBOV;}7|&Mg
zyxdCvGalnLL;i6OPS951!6^<q&w85mOkzc!{Vc;d4_w<FMpHif1rO?swh&yVfqQV%
zgIgY4HRG>)aE+P%+@cs-oHsa2N2ly<n(Ztxcc`^@R?5<4b=QM?9B|)k;Q_-#R{ILa
z6WZ?1S?NuHtzJC!;F$-{X)E)fs~6q8cuC`;UC2u}8pdl6-guC~i;P~prPDz>vll`a
z;XQ2~T?9%$Jov!;(SuJOd^Y|67{0K6rPcc&mV&>TrQbaW=dzKLgj*v>%8-mTxffK0
zOiC%eNW~^tQ+tudi?qz?St%x+7n4sKttB#PCNJ`Mk=KjNUS#niD@SHG<Fk433-iVd
zKWpXSY);l(thv3$#X?Qx<7_c6ihGgYivnI0WTy~o`!qjWD9qU+tVLPB@{mg~|H@j@
zi&6}wS*h_dUPRU!EtF-)!Wv_i(zxti#ClQ3i@IJo*ssXyWQ}7j$6B7X0xLBb&p^{s
z$&1QfByhGmYZWu5DuKz>y!fx7(UThN)MTw?me%&7{Whbt9y{$=>wD3_i{F@=c+u30
zhRlsv8?#cC#HnuPMJslin|=$1maH_@tr^;wrER_F@ySWm+nY`YFFKms$&1b=ck$xY
z2P3jORq<jjFNU68^zy>vh1ZMTUi9%|v=?K%=*zVRnRWYl(VuyM=?r9`nIG)M5HE&u
zb_DA%*5RylIO^d@=250YXLGC<<2XBomD-`m@m@^u;%H<0M9xlPC4VxFh!-vKR5o2+
zxEVw<M)G2zY|Q*k(K)({;Pb-oh0LWhSOZ=Jy-=7nFT!4gm{nG)NPW;vo<{4<<S2KE
z0;Zb|ovE27&+=k6^Y5lJhnC_>JH^lQ;twz8d$GWaHD0Wx9&*fb)<tIgVlS33FEyQI
zUeGA01xhQtSjqk>*41XrpI)R}V~lqlJDW^@y%!ry-pD}nNnw9^v6-`fvu-hCa(l7O
zYrKO>=^rn)GyluF!}NE0vCE6yUhHA#uop+X*z3hU&hGbOwPZQSe1Mg*ln$|<*z!>?
zj&l)ZkC~AabAn?i^0XIcyr5sE-()@OMcEIw3tn7aV?F1^d0MVTob;s#(u-bPBA>%3
z{u;v-FCNTyTxF*Fe_m&}Va8+{X1nFZZ7=S4ao3AuJ{<Sqo)`D&V)UVz4-dR}NSD74
z2|hgX;xTRGK4kKt<|gYCFFt$mh4z0ho_X=yYnX3YU$9d4C0$v}uTAHT7cHCGsEE=#
zHs5>kf#IVW^T~_udyIguw58B?&4;7xH!qT#{GEe;c#(viq^6(DhmF1LiS4KGAtn2%
zSYgJb_MzWz2^5pobkg~do;ic*oPKW0>_ZkG%KBjOAuId&S+n`@ix1h&$Xq_;V9v=}
z@U$iI=(#zY$A`RTWIi9Z-!#Tvz=wi96!M`k7nPyE|IL^ZJ``mxW;(@v^n4a$L?ziN
zW%{LkH2=o2er4x_=jW`(a5j$B%4%b^`w+`ORUAGzO)mS|Ue4t53>8@8eW+;qm3$bw
z!Z;&Ue5mR}Z6E6Ra9;m;M1jMq`B0sqhFPm7LoFXhJToHea&`xOpT~!KW=wsC2CTpN
z(2${#S=!i#BlV2BclTN8>$uH*XyL;eAJ+QN(uY<)s6J>uwDzG5_0Wf5KD6b!U3}=u
z(2lje4;>gfvUXynW;^?gZxItv>gGdFA9`_7ch(+0T-J=z-kcp^*6QO!U*>+M)8B{4
zUq9O!=))lP2b-lseCT}2C>_qu6d$HCj9?w<!zdp{Gml{%@55LIsxr=p!3&J;P4HnN
zo0EK)%#iik&m$7Jd~mbrXBAl!J1_a*;jEX{$J*%6pVx@&Lx7zitHMf$3;B?Hwh?np
zv4wq@=ffX9=w@leho}$Je3;J8Y}23N!%UNB(MFLahFYNXyAN|re=g1Wv7bku&*m~8
z7WlA`d65rG%*e%bqW2kNTxvSMA2qVeeOO^SD;ZX?u4es{*35UK{dJuEhb}rF)|(g6
z2HGFk-{iwz44Ya1W)1DLY+=~SN{wt|SpUQNuMazXIAHoaec0>6J|A|mvzv7f>;1*X
zkX`#N^s^Mw{j`T<vk@HR(nG9=St;xY!%<cm><J%E(yr^nLmy80aGI_%A1?TChIZo)
z&XZk)bF|XB2xom**F_+B-bF~;RY=j%dC`Yd(``+vIW92}U-sdO4_7&R&4=3z*Ui!!
z3^!SC`4H;pq$-r|_;8oaduHT)AE^Dr(nmf#@!=^KJ!Ykf&$w^Jx(d(Pp?(r4bQNCt
z@Y;t>e*ERf8z0{Kkl&92e!TPHJ?*!CWbosI58*HN&pv!%_~^qYA3kKUky+=x?W+&}
z`H;+yRb7QPU4?Hx)Hq^I;z!i!{O-dKABJ}ol&%8(yfmpF-p0<k+Z|Mt+>aDoC8Zzm
zBefr?ID4q8@VKjxh9lGZk&ex2lO5z!UDfWSqh$0WlOH+!$mvIBis>d~V<pJKkd@VY
zz(&q5eq{fjY%V`?`|<l4Yd$vfu;yi@T8R~@7F8+eM<G9|`BB}E!hRI-Bf)RnxQsrg
zFX~4zKZ^T}Z^(?AX({2SKj&-~KVsM^$y&;f(hOx-De_l_vaIw&!ZGWO&-$%?*x0fA
zQGp?rm5Lk;PS!X-%K1^AnLbRUL;>-ft>{N3KZfl!zVuR=9fAUWOBFxHp0QMA6<8^I
zajd0=A2t2x=0|rw<OT_~{HW_kJ?7ee+{+=<p_5)uAgJ$013x<Z(Z!D$O%i_dgNn#+
z$lAz{#(p&MqbX<G`q7M`1uKO$XP`UJv^1SoezZ2Z4FmlcjUwAIxA&t1Lq{{F6GQQC
zLasM9>Ofc1_ZO_#!;hYREc9cMAHDqOO#}DiH`(6Dk2!;Eqgng1QnsHT{rwog*?}}y
zra#D!!OTNUXDEZvO&D%EBN#^dG0Jpujkk~S8}HkX^<$hL<Jq6!$3#C`owL#5CiyX$
z&7dDs{Fv&8&#dcWkZ8d$h^9{;F?g80rn9wNyx(Nmj{q};QTvn>KSJ!NtciUHGwXgt
z=<4%h8m)77D1N#h_e&>DtUH6vnXI$?m~F-+HZq5^b6MxH{=qt*b%7r=In>T#&Mxy~
zxgSfI+jbL{`awFH16KI4+D~`W1$_@^CF?3aL6oIYtl=u_{8&q?sIY@h+^qb@xYo13
z!H<m$n?4&Rt=r9hZ1H2OAAkFCShP%kR+`Lhe*8n@^5cQu`1#UyQa=v(@h@k0u#&%%
zVV57f{n*32mvtX2{l1A}=*LZ@2kEr>anX-MbQCT<!g|J!qkbIo<G3Fu{5Z|#Nmi<L
ziXpLuM5Q**vU!g6yctRUB|k3H_jyd`3d40juA0s@28z64Iye2eWiqvY$K<<oIheuJ
zjfZ|b^5Z=_k6B-`K4GPRrwq^hc+T*`^b`C1inFijRlxM$(yIV-;uKK}A2|Dw^%Lu7
z)-SAIS*f+}e*ExbOaNm8NFpPtjEyoj$w($6xs04La>@Abs5OO*ObjVyq+$STdKsx1
z(#S|FBb|(X>nxP0%HARZK?W|RY(^PcH-R9tj4U#;%E%@o2bccBn%#_y{~WuPBPp0#
z$Sos}jA}Bf%g8GupA4%En~eN23ds20+J1ALwV;ebGFnu$m6cIgMiCjsWE7Y2@{6sg
zj8(O5+w$4>ytRxPZ7U(8q>R$khc1qi#clC-t+6-krDWr=3vKGemXYzR4DaXI6HhF;
zD#UMkYO%<8TGc@*h9R`ZVwVvsqeER=f((ZYr;JK6==oNsx(P3rTjOMulj*khLU|eS
z48#=}-gToJ-3t|I;N1<NDwSnSxNkfgtBQ;@OKnwI1y;%qtZb_xqo#~0GN#I?C8M^C
zt}?pGs3W7UjA@q=+RCUWqrQyhG<+EiWZG9T$tE<E5y~!P$lzRO7YHofg+?+O%V;8_
zDOK+-Oz18&lhM7qQABBaccG<>E!~AyGR}1uGL)%IwOY$aEN#Q^s=LrmMtd55h4`#J
z1ZxkWgN%+cI#FkO2t7D;=F%=Q-tJAHu<kN?$hgu&m@K2Gj9xTe858M1X&h5~2)!AI
z`^e}^D@R6u(-|sbfXM@83}PN^IzwbcEeTX{n2h0Uj*u~iVI=D)GjcQqaO7Ba#+m+j
zYN3ZfEv)MyOrle^BpG$`Ko5a*W$(E8>zpnbZW*ij%!)E38DSZ^3=b_2nf6HpW%y+L
z7?ChPO`I%a=I6?OS{3QyHhiu8qKA;Kr$D|U<IIc%mCl7s|Mka>|LDyBwQ_u#I86qX
zQgDR2LCNV{D5LDnglRH<moZ1ibQv?)pD7!^{wUE?pqN?g%w~tObLqUZ->;`IkBk0b
zrK0%^3s@sJEsGcy%Mdw!iHxP}EMukk<qRuWSJL%j`a6<V`IA<ojJ14Gte4UGtYw{y
zg*^p={+%2nk61Uz_<Y4S_NnDB8JlG!2_PwLCTA>v)7WVO*IT#9*eYY2jDKVtk#SVU
zb{YT5*e7GZjN7XccF5QxW8l-+cHd)n%Gf1iH!ZUq@mbQwQcB}??xngt1xlx{BpjeA
zI-77%#vy9<qGd)kXSQ+)dA23gm=JeZraR@v(G6{m$yi)H{v=IQHhXM#+i@8u=nU>p
z$X(1%El~U^87bx^oR)E^r|`a~aF*7*jPo)s(2gPFm5hs2B;$^ZyD~1*0;Yaamlnia
zWxd9lsh9B^YD(8Rdqc)ehFh$c7bQz9rLcQ4?#p;4<GG9nw6(&xc|Mgs<Vb=?43Al#
z&_2Vkd%5vjVBO+)K{Gim8MPA|V^n-C;|<NZjI*~LZ)Lob@m|IUTAUWg%|*$mpVY~Z
zGCna-mMRwGu1>T#zHrN5S*h{=WPCIEJHroFYA0C$$pf$l5F0>>08$1p=A)%l0I347
zoVS3Sn-==ZHhr1c)B&UkpiWnN+5oZy=($uDx)n^i0M=x&r)SN;nlXS(44GM}v{pBJ
z)&Q~v@Jj&M11K1vr!FE#0P($qz5A@oSK0`229PU&+yUcmMR@|q$EA4#nEc+>Y<GfX
zUu=GM3b4LiVN@v`z}`dFjr|<2##;%BaJFaw#TbgSl3yZ#lFW230?N|pN(WGehe`Zv
z0A)?KFvPH01F$i)Tx?XS^3duCpi%&psfPj7*k`4`=i>s#{~F~2D9=D#fgzr?VgU3d
zb21YGs1iWU0BQyBd1OM>0ICPDd`m)OdPg^aY5@?`kerR^Re=4d&rYSaX{rM#6|#(`
zsScoC04)P(6+ry}8U)ZVfJOoA&YsXTdqUe@!fyePj_4&&ws8Q>185NdaTC_20W@QX
zF0zqH`u`PM2hb*fVF3)M76NF;Vf_PW&(JlodiI140dzFEQvjV!?!rKgcMG6<06k2<
zR{%Xtejo3ogZAcZp8)zY^kc1--snH20Rap&;|B#Wn0W~6P}ao$kDw{-C5#MU6wO=u
zp97(RQ=&#_uFie2jSFBrZB0QW3t~b569c#(z=HrL(OL>%O8{E~m=eHLK1b^Ua0TEF
zU|Imv0}um{0$A5ehy>sX;Qg7hS^(hyyv#mUKL=2Z96*3M$f~f0SXI_TkIPUPH9|`5
z=xkCp%0LeJYo6Hd9dOPFU}gZb=qwa<%nx8e0J8)5owIXT=LImAfdW3(Payq+voGr=
zEDT^#0ILF69l+uMy4Fot#=3-@JNBi_WDaVYa=FPXxb8|iP?}gO`ZIvFL+on;pr_C8
z>m?A^SYlgCYpk)2ob>^02pA6--59`M0aPev-^AJLe^~Cy7RqjB^X~v|^b#n$Er5Rl
z*crgC0JaCv>#cRr<<gmY3puM*{5Js79RYly>%CgV-2v>OIUHx1l-ss9fPDd6F5tKj
z!2SRZ1aN}R$Z7lEEo}z_I8JRYj5!nlWhosF;0W_k)?=*Ndn342Nk`!wwv$}<6zk~#
z&M=$};5_YSSDoiL`|D?GsDhIY5vm$X$Gyl$zeLJ#g_ZoP4A%m<P6G_!W&pPWxWi`I
z-U0>OHX}dYwo&$O0JVDy_X3C{u~YV80FMIrL>GPlj{|rTz=r@n(#E*S_(tW^0KOG9
z9`pAsfaf#{`ZY1@OV(GcuUX%)Qo!2)-Z8&tZ9B>MMey=%j*r(Y+b`Q!_qTru;42sX
zM+;z_<^4|URj;MoG|M-d)rpqzTHN;le$X|d#U%+EO6g90XYwFY1o1}@^MgnkM5-X%
zL5M*hh}1z;w%M8nktT?=L6i-`5=6Qn(g#s0X!JQl5E&VM2_h3iX4d*If8N6<3um*k
zW@C+O=ExpIjv#Udkt>KIY*JIXgDAwD$8_=rk&ijQ=@bZ}pvkvR8b7}+9E5V)xc6z%
zAc_T1oJ&iZF(nuhZX1y~b~{T4(dls#;xg?28U%gwe9&%Z3}>qZQ8fr_5H`-*gNO~n
z5k$}4#&_nOK_m{ULJ)BrP>z*~$}>#uEyM>=F^Ec>O<=8T#vHz#kk}a^h-yL938HWE
znCd~gw}a82+Clm~zO@Di*9@YTS!;anlr+rt{1CmmY}TW0n57MZ_>H+CYa`aiW@(ck
z7IM#<1<^c+7D2QOqE`^TgJ=~*>ma%W(KU!RLF{qFwhN*?aaTuMS`341RX<od1ksVE
zD~QfP%>H20CfLZI+R{$Jq^s-MT1>K2Shpa01VK)BI_^f>vAb3Z>q#^D!7^-_h5SA=
zQreA!m>5LAAo>R}CWx^?44|`L$2KU4!9ffR;(7-=Wp{3|4Pl?=WLOYGnaNMS)i{I0
zgBZc18)=Sl6vOBsO3yK_1?uEDKJ<7V#ge}*7qZ!?^VHQzK}-o^aRsCElexp>PYuEq
z1cgy=sV;#OgeQo9lEusm;y_x5Hwb?aG9SgqTD*VKKoG$oB0)rH?FBJsp@ou0>m-jY
z6okq^oHJ?(2aOxbQPP75Jh2l@3u1cE_<XbNOWTKZ_8CFU3}SzMTZ^1_DWAPsaoa4K
zZCWA4ZNIZN*lnM~FgJ(~Yc1sWJZRn3Tey%cW<e0;6;x2LFo;D#WWMQm&|6qc!wF((
z5X<PoRFFx*@*q|OaU_VNL97g7RS?^Q_?P++G(LIUe8S$Nw*Ai_)&#LOh;?jk4PrgR
zCRPgDz_2lB{9u8yl>TC8Gwa{1TWC@FjnZwL{fCvZRAn?`cLcGMoelHsDT^B)PVEX}
zH?2K3_p%;f-N(8=i0=Fu(?QNs{2_+JtYaD_I~K(8Af5;DB8U?~oDAZQ8F`AX>mV)#
zahjborhk^<ToC6?=R(l<wFNa!=`x$wSg!<emBDw`D57+ovo~08262ml{M)o=elh~?
z262zg`>an{AFw`TeH6rF1`2)>q<1fW&g3&TCp1d-GKg0}eC6zG){ft-bbCpPe-p&p
zAl?P>-fZDBtq10hrt^s=bMntNzp$A&f&T^ZEr{>z{GjVXK}rQl6yxkCWlhFP+2joL
za}VNF3es{GW@&1MGzx^eKR>}t$4+|I3<|2IGd{P<tRRa5n*zIntO~LzD5N0!3ZrAc
zDCjxMl3hXFgSO*!Y&jI<<hr>O<YS<i+;kUElk+mXeQwFmP{8yHGPHeUr)CQ)D59V!
zJH=SbC@9WQf|c4Vsi2g}r4?)+^0WWHvRPJvg(1d_u`(=NWQ|qeP!OjeS&~?4CwU*i
zso+qynDo_cTMF3ADH!|Qa^$;h(HmR5f{F@y&;S*T`qfrRL1P6?6jWA_prDFkyjIqs
zfzvE8Q&vz=jk!8&4b!iwpcZp&(-||-xMyiS&eDBE>oYVkOMg?)khziRH0*6_s^HT#
zYa0b^6*ObNxmnsmK}+UVrqfzMx1z@FK`6CT&`CjO1?{=C18Yatg+XJF?PAvI&d`;$
zn}QRWjJxw4PG&q|wwHq53Pvj!qac50XCDRq6!cfnm$T%gP8K^r!9WGW6^u}@p}1`j
z!ASd11%nj~p*7P-C^WjVMYNTBSz(xhn?s#5D%&Ywqyl<sVX*?XQ4IOc+lc8Yhhr6t
zQ{YwLQ!rk^1O-zROjR&vm~A5KWCfEL=;jzB>Nv=^r?<NlP?nOUz^y=})0f5`p~g>G
z<NF9t9@sq!M!vKW_!Y<sbOjLw0R=$?nu4%`=6!^LeFTLL-A4#1Sky;QSqc8_BV6ty
ztZnCf+egUSSBNT@reJ+~+e`)1ImXggn4y45sS)BjeU0E*3cB_cCiNBOD444tei|xH
z!#o9lC@7=jR~_>eEKsma!*Y#oPlrVcBo!VNixn)PwXNV^1xqPF!Dc!&it&GF!*8+6
z6|7LOQo-)ug!MGx3RWpt&DlQ{tYuikN&z$a3hS6x^cA-D6^`~5$lR#lSzjSTKVg#s
z(!b~`>t|%QDA-C@P-zF<18UZ8+l!j^tAAUzDfmYLIV1KNzPD%W4h5&_lquM$U>7y6
zV2^^M3XUmw)F5uJf&&T;GVf#E&q`~FQu3?G4k<XyEA2;nC#54)y}ffvjkx2q@OV~F
zDj+{+#E3lF&UuQ1k9TlROOo`gf^!PetH_|@yn+jK215vja8bb}+B!lg7Q$r(R}_3!
z@P)30jrOYwt|_=qC%UMud_SQ{KjDUg2MQk2Qe^WM>upwwxuf7N^F7nK&p=I4=_3X6
z`w83o36B*#QSg+D-myMY@La(Qx-|L;ug$tI6}&Q8>L<K0`7NE+h6&W*dv-psel$xz
z(bc3IrC$~NryyepnL_xc;Jbo#7j0kq2?OICKWOI<A!!K2G^k`W4@GUMS(CF;HU&dU
z)>N!uz0glc!$2`<8PbK2-gGjAFs`F<bQ)&n5VC}jHDvTBSAT)j*<Z*O!Y>@0J%qew
ztsEibWX@$exf$|=j2WZWDCG+wKbr+u3x-gLp>POA7$|0EvAAHK$^^wjC=o)n5UPhz
zGDL5oAf97Nv)V((JX2Vi5PoH+EUSezhSkbSF}4tnW{)GF6w9U~1gBXV7eYDa@}^UP
zp=p0%Sbw2n2$f8~GD8Aul@O{j2&{>Vq(%reLueO5`w*1=Lah)Q@(H3-Ry%|`ArRCJ
zVM%|X9y4X@Gc;iRErj<Q>|{0yp)ohxgtaAWQ`Tmz%|mFxKqI2n(u%pY>9h%<t;sb1
z6w@JuK@1&3=)};OwND6L7`legjiEbh&k%YrBrcd<%+yZr5O()BroFG}^ke8B!T{45
z7{WD<863ip5Qc^@EQARmOyq#!A&h1i!8($46e~5GIP+sd7|YH$(;pwgl%zk;;3PKP
zAxvhNV#Z8maD@>45KB!_5<`$e@Py#yBEK2w3xPi7PK=Rh;CyK-A%sFW8N#U$)DSdU
zGa(!cAsm7p!j=%Wh7h5~L)gUaOk<rB!rTz1GtV&FpBcg|lV^wUJM(9rlX)Th!Pzye
z^Fvs{upoqm42wea%qioPEoLQH62dONB8Zo<xtuP*0mfNa$=OwA<Z6aLSrf00wIQtI
z?0Pe1LkJs9whj>f3Sn~ybfwd?0{`ZzpxLNDK-d<-KQw#&gd-fhopmqkzai`}Ti8i`
zGkG_|9<D`w+h_Xw84iSS&~y$l9A+IfK%gy!wl&&bsMhfiPH+pfX($5(>cHs`&V=wL
zgtsA_4blD8LEHFajycbJ%f11^1$qhK)-JK$rB{Ivt}tH>;U>d1*6XZvpc{O}5!_<u
zw&~yD*&v_NJvQ%$@POf=8S{u?)d1m12(<T7<kJwInWfJ|c)|RV^_A(rW}vJ49i5bm
zw)Y`?;7yEf75FiP8+<}js`wPbXX=|-D~XD)CjZCqErjn3KUk@$#NH-VkxVsKPI6X)
z6e<!I192)9U_Z54nuZ~*igcz!4Q5o0TX(il(NaYw6`56JQIS<eLluowWK;2ris~wA
zsK~A&hYE*kya44?kxRwL0YWS{m0Lv#6(v>VQIS_gJ{9@dFRG#dLm~5s1u2F{QP^~f
zFeDDDn2O?@O^hjJ##mI8W-i0}tLc|jjkS?D8!;-Z?Ay#zy9%wW@ye2Opt0VZD&n}P
zoQlc}<;}<nD&m<dvQ{#ET98ydK}8jIs<H}ZX*KodOA<{;O%=bX#!CRj*W!TMD(W!Q
zWv$0rpOs=7P-g}j!So7CM`<xoXw21{s%WAb8x$oP+TejgGZoF*p~!zy+FPk;t)jPz
zJ}TO%Xse=&imoc!sqnUUc2Log4lz(@uVTqSVb?%`v=bL~R&jZt@Rn2hK|(ibwxhGV
ziXJLlS1e@)2|ZQxQZZqWFk_G~cA7PR2WO2zLgzt3UlsjSj8rj7MSm3oR18-!LIuSP
zR54V=Fy=w5gIR~D$o)8$0@e=_jt&y;bDOR>A;n;U4m!A_bF_*vDyGt*DW0pezTwC}
zSQw{bJoSN{DXbG!Ok$X<f_g}8QldtvdjxJem4l5Aiwx94tHHw1!Gc$XkIsmOh8p}T
zWEEFcTvHLC$)TB1v6N<8MM%YL6~EIe&Er&6L{&_qHKQV|LRXF7%STx0jz+|k=nq=b
z=_+QjKZ7-0f{?10a~5;;L$QgGwsV#_D(0$~r{WJ4i|CJh74uarP*E*~V<Giqu+iXr
zR&o++B_8fmamO+h%T*juaZtqy6)RQzt73<WRVr4iSf^q=UFj;;sK!&j*Q%)7%SkQV
ztYZ9r|5j3?wGApZs`y96cGbA09u064_mGPIQn8u&Z`LiWTg}pKDpK*y0cNZ)+N73g
zP&-xZQn6db9u<k5Ow_$*t^KO;Z}L8~G;yL1sW`0Sw2Ct-j;J`Q;)IHmDvoijSFKYX
zSK-WO9A)cZfj*!kNSww~98h<+<*bTxv<q#uTvD-VN9=hO7gStSF?qR_g6Y?S;nc?M
zm=3RSTvl;~t|_}C_bv-PHJ(2DysqMgij*2sX}C#4=9?kBRB=niZ54M^+*R>F#X}YM
zINdkLLgS@GllDl(V>YQ*<UCRFK7U0zE~TgJKU49X;RS2@bH)%Ty;AX7#Tz!?@|^s~
z{Eqd#iVqAF`H|t1iq8yRO#drGv$Qeacw)bs{tp#NG-G8ZWhF?)keoGz2C70PG^Ey$
zS3^Gb(`ZPiA-!g7^=UQ4>@-$s1`QcCWY&;HLnbbw(nOf|p%TSp)sTm)XVdVDhU^-0
zXvobDRi_1zlbKF^F74;4AfK|Nr(+!XH5AZLTtf*B1vM1XP{gcD6He6&Yxp?F=xtFA
z#Wdr(ph>0=-^nSdp_GQQ8Y~)0Ybc{(a=MsbxqAMiM(1fUY!+?Q;TR284Rtis)nL<L
z*HB4AWeu?!92zQUh}Yocise}2SQ9&0o|#(Py4vVQ#s4Xy0O}!`32atjt*SxLjCEd(
zvJAx48EUXnty&CJu{O_1;)OtySx-a#|Cyx*+~CmLr5kCOBcQj2J{lTpXriGhx6oEY
zJBDT&nrmpGVf+V6OAS>PSX!}vB2V1tRo2!T==bbxX!wgA1lM*s+H2^lp__&d8ais|
zq@lBhE?gz~C=1;rE$)<+ei6LCta0H`>aL+Dm-b*KC$6`p7xS<x#_gy2YUrn7f`*B7
zEDZxR9KCP(mag(Z4TCh}4n>dtt1wu@5DmjMTyh9QX@S*^8^%moVoC%fOlKs+DAv&$
z#+d$ChH<RpH6*q$iI$LTsXatkL~B696b(}~xM<Qe%+=u5AZk!Fgt)^O1`85{ht<pK
zWA(GraAbx6Yf!_9`o^8ORL=gcA?u$BnuaiEbq%u^A{wF^rZH3SObyeSXP6GPLq63d
zoz1->cr{p{#?uZF=4n{KE&ri`vXtgClo%o`)NuE70yz}CSOX1{(h?0znU{Yz2EIbW
zN;;KcbP8jYhShW}hmk&vKQ*k;@L9tb4Qn;5)9_HkBMs{{Y|wB@!)Xm06MLv(i-t{R
zZ~tQ0%vy4r@gVZ8%zHF!WB7-4yM})?>|ox_x|4MmE7f{e%0Y=>uZDdZ_M83@h65T7
zn$95&hfVJE%yCr1G0q-mJ;D0rMUs;yP@88ooaO8d4d)mxvz}+AfD0NfGG8*Cu}zG#
za7DvacCN8rH%sA4a+CR%hT9BxG(0d%?`pWmeBX3>X-U^wjRq+_X7e@c6Ae!pp0Pe>
zeZfkRFBx9ZrdRIgv&P<Ncx#rvV|cIO1H(tt|HRO;mQm%ahU8)6xc`}@-x$7Y_`#5b
zOOvuDW2N9#hm)r;Ib|5Bm|;4p!$`xNmi0$l<K5s4VPp*Bw=f!pktvMKVc5fn4I@h!
zS*d7l%-QDlY+?KoMu9L2hLJst9ATV4?#Leo-9Rj77<s~&c*2n@jNA-!7u(41F+|84
z25~-Cf~iA<#G*oB6b|FpFv`+OPFbZ$7$w3e8O9$&grZ>-3uEgLfw(xs=^;X?FiMA^
zTyc~M<M9w7`B0%p1%a{@Q(&lI38UOlfs!qZm@ur=&!I*PMK&5L^cpG@ylHWSv2=^I
zd>9qNa5BfSl39*{o;DL7M#V5{hfybtN^B;CQH7y$7|Sk~rr@far7E?;5SXj6Qc-n=
z8e!CA5Vcq`DK&Uqx~>^hpP?S>)t=4<rr+-SuZ_ZJ97eM+nuig%U~NJpy<o|E(B3qR
z_nqxs5L4s3@nxhIVdFbXZNg~D&?<~~TMWN7XFoS}whg0Q80|T`XH^0fb)aS^+eS|}
zei_j@j4o6ZMmTJIPpoSgJ;LZ2Mz=7!(;8@Rn><vY`)<*TY_BkShcPLP$zk*fqi+~T
z`a6cQ_M`J2#=tQ8bJp42Ik>;$#ZU)5l#m`=JBa46i*0ZiLl_?Zu+U#(l!k>dJd6>v
zu5LR<hA}RTc|(O!VT`7pusN3cFy2CD#*H?DBkQfi<HMN1krP?Tq3Tn@m`dwmqg7&c
zvAW6JX(5x67{(dVmdKtkykYpl@N<~TN<}iwGjlM}G5t^&cmDm^4mGHU5eegA7>~k;
zhA}OS-C^trV|o}f!q^tZKVj79Yn@3eIgHg|%;N0qFn$kX4)cOA7SbiaOp)^#{s?0}
z!_J`snTwd0u`XsMa|taEldldHmYcjHjFl$Smrnm=-efv!!dT0^&UDr@YzSkc>CjgS
z|1x<qZ3WC*Sht!!1=E7r9>&hFaYLJbIlF^(atUL}?fM^QZy5W+xE{uhF!qOWAdHh?
zoC@RfP~jj|r&Xuh4uz3(n9yXnZTkTWr6XZDh6zW*IL2YeSt<TR7`ql&2u{;U4C7)L
zm%=z3#_KxH^Q`AsDcfwAaDkbCvgBW;WjRc^8paj&sg#PyxyC;6P1+L2TkeE$m*E!c
z?Jzb>DM$XjFyb@WDBY)lj4*)GgD`z*ymD}u@HmVoVHD9(RL9dWo`sQGM;aZ^!+1d#
zX&4{ExOLb5GK^Pr^e|F1j?a=Z_6=QD$840|Qm<MjtQjT{zhkpw<M@wZd<x@x7(ZzE
zVSHi#Ki03*eil1L9vmh-7$$sUGudz<?{K4qB)ZXTN*zgcB-24nQRB&V;}9uWsgyXC
z4(On6+<9!L)+j8kj&wTRt`^yKq}P!_M^+u#bY#?#NryIE$fBd%aAEI8XJ#Euh6}xi
z3*&|h<w`idR5uc35A<**P3y>^Bd3mhI`ZpSG+fA~Bae=g!v*5pIy%QV{-&;S5jj+=
zfR2a51qvvnqo58d4J3EecoJJ!$G73a(WegaNvx1ErkIZ4Vr!NW!eB>iaUJyF#S%J7
z>L{h-T)Nn&r|hM5T$>X|k)&mHSaf8LAWH->I;=Xj>e!~kro*nI%Jn3=j#wQI9d&io
z(?Q>4bLyz5qmqs|3Z82zr(-gG`A0_u9q~zGh~wEYAW2MR9SJ(<|7bx+p~IH4BLvba
zI*!(GRMm~Ut}VLhsHUSj$JEeKi^2H6n}J?iYwM^(gB@WZlhUU{vGsK{(9ujsb2@`M
zmOm~-rI}MW8tQ1Z$I?hgV;x^kTbt-;N(Xvm8FI+#S!=OOv@F<cT{_0rLPu{MeRQ;>
zcpa^Ew4vG7>H0!j9qn|SePr#VW8zL*dmSBUVd$9t+B&_Fed23t?GZxv*VekZZJ#O%
zq+NA%)6qjmPaUqZw(hK3A6Y4;^9W(g2!X0}C=}aENB7(|b%fAYM?abz9aD68a@zW{
zPSP<z$3W&mIz}-JW~G=R3`2DcV;FAwBXo>p#v==bjb<KWmX2i@r(-<B1lEaW>Ac5f
zs7mrVmZ{WX9f}UAx}(+-r(1_#hpa=S6S2f8v3gj&tYrFhd_HF(2+#`25Wj4M5Twf?
zLAYDZvF)ORvLPKRt%QmWO-EQa9xm2nXDn5b>=jFIwM2A8bxflv)v-axMjbPB%%rQP
zyzO_^S*){Zfh{q1NJ<2Abol-@UVP{3n8yLcf6%AEIu>wtp^lY0RxvNqu~^3v9ZNa8
z+>BqwaQn8=&I;z=3fWehrR#M3$-KsN)-u$L7uK6jVy(kVtebTFrDHSuTUh^QrDujx
z<CN$dt^erQPBRlh`Uw8ju|vlV9XECC)Uiv)5n7qNs&}*Qq09V<y}(xMUe4}grB%J3
z;Q(DJrgMnlFrBrV#%+Wt9b@MV>v7f-w2d&FVx^eV3>Wtrf2^LReSov)&C&}xE;3)z
zahc%?>opx$8A??9`E=mxI@Z-O-n+Y{<F<~wI_~KZsybxda<r7~j*jvp9CX#+*YQBd
zcO5@y%hK_Pc6c2xbmM0Qk7?&;AbvtI-4b4%h$Vie8_$a*c&X!+j!zu(n)P|+pT947
zqvNev_Z`D~)(<*9GCVtCG)3t%?EpGba)V!W{Kuu=SgDi_lq6zwCM9dq2$C@*k03>&
zpTkLywxj^+TdD{ULFx$7M39zC$v;yjffB)v5yJTqLdj+^FLTDw1E(@XjK@x8j35&O
zF@5nMYXsRM=n_HK2!4rR)HHjp2y#b|ojFGYIT`-@XiJjLL7FFmyb%<Opm+rNBFG=X
zvk^j(2x=6u)0-ir1tP}VDFs;zMNpU_v8X5qXB;V%94VBDpkxG9BB&ZcsR)FTLQDi!
zhSCv~iQre}vJqG~Q2_l!h4jReSX%`42;wN<Pvbj>u@PejcCa=qRnbZ9jI+`ECsbN4
zg7Ohm;G&){laLe7T#>aBE7h&ckie?uOe#cBErJFS{1!oV8d?N(BZ$^F{spc{6MoxT
zi!Pkc{H4$c>O}A+t+CphFEHK~sK=4@Bj`9%7(Y^&F;Zw4K_hOtc?69annv)WTznIn
z<TF<K3Xrd@GxgboW^^9UCTQWf77?_JpcO~9i5NGcZ}Y&}I)V)&1p+!mTP|uxr<<Vz
zYe&{jtesgYvfE&Ei=cZ1^CI{of*uj{j6kC^Vz>8-pmzj?uG>Np^ogKv1Y!hI#CZ3$
zUj!2(m>5C-2nIwjkj-Hc3}+a`IyhpyZVsWfk>5F#o%(s5RCfe95sYSMWCYLY?dTn`
zl*U9bE`sq9jO8M7R_1k5HnFtKq1Z_#yCa~cCPy$O0*ax4sa)iWK<C!dx{{IUp#!CG
z`Xi7d@G|>Y$)tC5r=@ff1lS3(Dy)6kr#J1@2uSH4nGJhm!_;yF5jt@ZOrtsR7~gnT
z7Fec7Fed^6N;4Q{Mlg$EHtX*Z<jNY8VVx~)P1{^{5-ZM+U;$lXQOt~DVFZh4g-203
zip3EuiQrrW=Ob7e!LkSrM{p#9<>vX?%CLe49>J;zR-69D2>vvA4a3?9)-kMS-IU+9
zf#FhqV<~Q8{wspb41cq3N#qfh`$9#E*%rY+>};o(0EQi`dn4FsM($$R9l;*cS=%V(
zz6kbn_QXhIvpv9kko6Gjo4m=6MsO^Gvk{c;nDjVZ=DTbZd4d)pV%phkCpqjCEBU7x
z&afsvKHL91_Cf>~Bghy<rYJ5&aG9>M2;S1=z+tz@(JWV)uSGz20=&*j{|MiR;3hNO
z^R30|gxe9^;jp``4<oq8K*zn$@F0R$bBvd&M-e<`=Lzd`)~Bq`BKUosvDHv|5y49~
ziC;0irfrR<f}D2|e2(A?Z96AYyywyn5qxC$#JXoHzxhMg*F#&HD8K&`!M6y$b7^vR
zelRCtPRg1ridA2eoPA*IIVqw@8Koz(8SSLvQUWlfW_@`hX<CMKtm#=PK0_2I2N;`J
z<|wj6ku8c}qBuUz_!x!EtWkWQX$&ws#}gEcB1aUdHd}JClPikc40%}dv*wK=9|Ogw
zy`7{0bNQ6UOL?IvN}aG2HcN{z6lE>OT0DvpW@*VNQjap0Q<*4!jiON$jiV?Vg(Zr(
zD9S}Kw1aKvizG2oSh<QVidY&&R$HZ~7JC$=?|M7wb0SBSZhQ^;+llV0N&n`TkD@{p
zb)tB4A!$5UtWM4&XT>P4t+P~Or*afk&ZSIXuEJWCRbZtqRb!~W-ciGJYBJPftsO-T
zm$CELjiUHxTfHcr?zGkCq6TLCZ&5TfxuwO{B#Nd{c%tw|(JYGQQEXXm9T`Q7C|X8Q
z&zW@oeoHHwhf%`7DCo!0t)pne)!RnVIf^dK?O5AK(ZOuFV-%fCo)xupW$tA<-J<Aj
zau0@{tW`@Ge?Ik&qE8fkqv*$Ge={=4_ap;MJ`yz|2SqWMogt<_G>Ty+504tZ;2y!*
zx}$_qQPl2=Op7d|qZkv#*eJ%)6}`wpX$mcm$(He)oxnPgbrS1j*2h%@ik!;qio(qx
zvXU=F>82}2Q}j2yFA9GYaum57Hu~;*fM)D$tQJL&Q9>{ZC5j>|EqTi)+&hvGib9Qo
zfD)~ra1_fHSZ6M`=ut$Xh|)!o)G>{<T>Sqrbrw)k9Bmgyb8&)8aJSi=+1bUy!XUvd
zf`s4_NYLQ!?tz^icLRc3aCdiy;3N<v5S+mO_J#V+e@>lyp1So`b$4}jO;1lxcY;Qc
z=aGu(NP$xh0V@hx;Yxv9c618<PJt%{-W2Rj!M+suQs7U)5;<B^5D;gNY3Wk^SP%%N
zAVeojjZmZ17*%2xrC_n*(uLxdreIkLwy-mor{MV-(^?r7^0M`C{E8HauB5J_u1>)k
zf;^l@isG&q)}=snJ@t1PV+3(F5;jpcQ;i|R)VHRsDcF{R+D*;dsRBC)JE^;5&nkZp
z;g{6rJtd9%Q*bT?=TmTi>v@oRh<Z2$M`VT}ODCKn9HSmj!3pJ`Ou>sX`V@4U&Kc@i
zReJAex(g||n1Vl3Adk1bB%|n|K|V+BrQot0#VNST$eSwuS_=M9d_4s>6z|BM`WE>%
z^$zu}DoxItCQX3^Y4$HJ<vvvwH|!6?!xTJ9!Lt<nn}WxTf0BZKQgEq>J_A3kqTiKW
zry8Eh4yta78=mxBHb-W~TIoNx;$;f%eTdIs)#v$Ftoxe!CIxR(@Gb@ar63(kCE$Gu
zQj<TZwMxZohnuO=5Ynp1>N8TMCx2!|o$BdjwPDpiTjlXk8LfCcT%X1>S&>=AXR#uy
z;%ruA{~vctor9c{nv0s7nunT~nva^FDlIqci7%`uWJM(_3|17jVjN$!S=5R&2Mt9S
zHlSVVVpbHlB1b`E2`e6CF;=u<?eEDYttdq(O)Wz$OO?`cR+J}KP)=Z_L4N<edp$nR
zinoo8@z8(8i?_mPg^3HQN=;DfX0{@coTQw}R#YL&tGA`@qp#!SHjgi@sA0u(8(!Fu
zY(-5g%4sOCp_UaED^^&s(u&&Bw^nquqMH?URcno`s7L;aTA$iLl{O^!wi_B-(Zq`5
z`{SEhF=mSSYjQIyniHzNH@2{%B{@fRqlA59#kW>`XN5c&Nm5%YT3ONBs?TO^cN<Ht
zH?*-LOL>zVCQ|x6!`fN#gNko&MF(<6YA0%EY8UGJS0<_0-HIMoOtWIT6+c?h(~AC9
z46ve?6+c-K9BS!j#fc%NpUDD}dRx)QioW#sxJ}cBS|n`CP|MYKhF`20XvK_O2~({Y
zWQDDK!dMvzRt&ach%D5KXO~Q34krwgU3SLMaGg<{5mt<3yznS1Mw7=V=Vl(`c<KCI
z<_T6zq$v;mm}G@~xF0K>IGG?7e<)_0A_HuZL122uq|+;mGh}_1#Lu!~Hesd}SB6@|
zkt^+U<o<j)K&+T+#XKwK%MSf1-bNMpm9W5yg~~~>!b;Yt@>N>G?5fm3aLT8Ea@+(D
zRo2r_h*1O7AT>k{Q>DR(6;Z`$uNfAR7gLu|e^aGP3CpZlPLLl3r1~l=R$Ea*)9>M5
zBgcysPo=A^SZBq0D~?)mOhzLI<Tfj|%U({Kyupf%bT(1taM(=PLfvXbo_%S>++me}
zny21Jb0>8dRf=|7u}AS<LZ0^6ubcx`98`RWaF}|8`f{k{xC|sK{<h+w6(_CoI0am{
z;)WHctvF-FxzhS)<yi(_wBnLD<nz=E)Kk~>qgc{qEB>H!g(}WfE3PTtlSgmrSTl^v
z8h4ZCJ?bs$ZR#B>?h+(&6i=uBwBj!-{(Dqaocl6ssnSI~Q$LbXeOv#(<kv$?kI9mK
zV#Pn?&6!M+{a1!robkC8FJz+-cVS85OTsHFURzOSjX_Ll`HdBMHRRLq){1wsI4<Rb
z6{$4+W8%H+!M6I!r`C{0!{;<5o0gD?nodJ{!e^=!8Zv0esNtI{djHf-rMDm{vxY2;
z$*Ll=X~<3vrO{(@C_g75mxkPgJj$<rJ5_!SIfq#mXNi+Dq5{e<sNoB8A!=de7a<g-
z7NZu|5I0Oex0lT?$>CaxTAEshT9!KcgRz2!iW=UJuzYJnB@G4*KWpeMEog|>&{;zl
z4Mq(n4fQm9r6ECsS;Lo_{#_tZLz0GSntoj<bWQJv${MO@ke8!LR?Mm_l1oEUR9(Zz
zD?(DS2CFA)s7a_rwNPtQC8mysx@7sXDcSlO8fa*#;cE>I={INNjZ}PNLKA9J4b2Gh
zSaPY`f{}^5ekE)5jfPe%{g&PJ9aa3aElm>KT0<L_3b)npy@qxgeo#&a4eiPDBz6gq
z)REavR5@|&s-c^Pp3FYDYAlmAuDb?-9$beXsUQ2H7h|M_p9u2M^*$Q<3fqv=hJG6Q
zYdECgu!aE|e$n98;L$Kp!ypY)G)&bnSi=wv!!?Z1VC!y{|N9TsFib<!VV0i5^e5PB
zPmCiqjM6Yh!&uqOR>sj9)~__Z-)#`B97-IgVcIau1Pv438OCb}4YNoZ5HuB**E?%y
zQ8H<ghRGTvn~>WqPw$_mVY&uQ7N=o`hM5}XYxq^eEZOh9jm5mCxf;&zFwE94hakLZ
zm___~GG^kF1<nn#EYPsHUV^+1V4()dN=ngSC0FwqWGQwH4h`}`0hb0RSNl+J{Xqxb
zB8l?cg9j7MQrD}&C)*;W8vGgp8e$q2F*qn2q9Lqd!IQ+N!z_7+TfWO}j%bKVfA%&S
zvd0zpLvLrXh9w%-XjrSEQnhN*0|f^df72kkl)8+%oVr58O2R6t#H<$RZ4{6dTgN_^
zo=m)AD%r`jLBmE3J2mXmut~#a4claMG|c_lxJAQO*>@97Mfw;eYaVX-*gsk48uCAk
z-yu6Rr{2PD4SO^k&~Q-0UKz~8Ei<1PE_E~SBTIHaciH^@rj&{1e~To_9+y`b9MN!8
z!z~TBH5}7$T*D;|mo=Qwa8kn=4QFM2hFMN&I4#4blm38+Uc>db5(rEfZaJsn0z2@$
zG(Oxi;&P&B*F&a@8eGFIvWP1hu4=e0Q-_9Yj66Nu@@Tk4s{f&(<nF}v!!4Oc=-Hbx
z01g<-lkaG_tKqqZ7aHzq_*27EuEt*)?rV6Y;jxC|+l)0@m>y^-y~<pFgynAy4>br#
zvip*om#y(cHvEtDG5~xl4FAZkU!ix`GY$XBHg+@j9bpm8dEN9<!z-ERxo)pDywM<4
zWUZuB-s!O5W&E@emUkNdlNnFL2MyV5$ZkU_8&ccQxPUp64I@5FNMl2xjfv@~X{nta
zn$i<KvmxJ?2_R>nN@PYGDmF+Gkd)bmapjY;uqdkyLw+-S^gp+udk#Hj&F9rcbJ>vF
zhN?DHvmuWSd2J|TLs@CuhWs`ZwV{{|H*JOjHhdvXkqg?8cARlU7Gq%>B>lU>Si}b3
zP-D?#qwq?XuElLAVM9q9w$x0J>ZN3%h0LXGSTw@2Je6@t<z%V;b1`E%8_L^Yup!Qd
z3O4*;FjcZae5qB@rhg_%Ytrn2*Qw%dFxp_YA(3J4d#5(pkYIxZw6W`7A^$jHl*W^6
zsBA+OHqyGgN!t0iN&?kw_|k?tHq^DDhMfF!Te`M2*0iCP4Si=CYujLvZqK4GT^igu
zNMA`Q60XPK#x^vu;VT>J+t9#<hLY+gHL_vDP(#zI$z7+K^1L=2){F%*#x=E}nGG#%
z_}Yf%HtZc?X<@_l5tfz7M%jE(YtZ<ObmNaE=|I^)S>mFJrtfTMWkYKl+SqV~%WZ4J
z_cpAuVYLnIWW#NkZNnTEwU?RMhW_LZHgvS1lMS7j?M{`|?qWk%ayRPGOP|gSdf4zI
zou1TQHvA+#W<#J%qNF}H^d>(#lK!L9m)TqOF~EjjWF1_Fv9nSSv|$jdPoxgEVJKk;
zwd`5_d{WXd8-~*vK^<wsC>uu0Xn$^&G|q-G<grwV|LBirc7ig+pJc;iwjex(Fx7@>
zgy}ZSuwkYR=Z_d9&9Y(2$<!Y?%S8QTV6F`g8=N-GvthmsFPFx(JRAQj>n@-!q^3}<
zRE=t*+NsjcfBjJ~DZyn!*oFvAH`QZ<SH<{j@RI}7AT^{)lV9rV6J_={8)C{|L|AOY
z62kv_Zz;3OsLO3wL68<!+VGA18}3{48XMNyaL|TBHmtK@y$#zw#!%}O{q)cA4a{z&
zZn9zX$C$x}EjDZ=cetbPEJ@p$-N9bkX~QlX8hxW*{o8HB9v1DT?xXIfO6dWa2P)`S
zm=D`<#D))uJ8P3?EE|v7a7N~Ve*6`{hU1JsK|QJJp0eRIx#&p!Tv39PgT`|*>|g4&
z&a>zO^`Z@z2$!i+Iy7_It2SJ-;SV{!Z1{)%4gF}v6Y?z^`pnX|>%I-Q=@?6!?-1@%
z?@|A>;V;6pOZvt>kZJIuzVyFoKBPXPK9)(KID55$el*2Jlb_OmCOtq9^T=m4U)u1>
zhT2ZlapJWNZ*0ioKvoCd+VIW>yB!WY{<Gn|9MpESx8s9M{&p0yqp%&R?MP!sb~`?|
zBds0d2O3`%GiI>k>xD__>_~6NXJoKQ%xM!0q8aUwFiDvRnW<Uqc=4|>D>)nWphw@X
z9Cm$L%WX$aLN4n0clx}Shn$xx*?e~7Cl{a=q<-<yG3rgpA2Ev9QPYlEb`-Uvm>tFK
zC}Bq#JIdNoZKS279i{9jZHH}5a@U-R9j_bOj<g7@xs_PXj`DUa%9T*TjzKi#4jIW-
zwBy~+RVvwGup`cncsm~LkFQG8Xos0#vLnF`X+$cTvL{M>BK;(4WvZA}2<KPCS0hxX
zeo3uCO{Pj@&OC{6B@!%l)VHI79kuPKV@LCern+`~Wyj)?mU?!~8)*@ESSvxa=vZ?@
zJ51jsHnyXQZ2MSqBZfU0mw0%Fxv3rB$jX;UXl4h-nwyhbP{nL1dyxFdZ<MU0Z|(Sw
zPAe7D+Kx8lw$$&H-%eIIy-BKcuw(MY@-yw2Wk*LlI@!_LjxKf#l+LuHs~z3!=w-)G
zc67I+hm4#L=Cg+q%;^$$kF@+~M^8J>j<nnxX}Os?@yOAHF~<^qwqt-D7xE<bwxf@1
z?2&}NcJ#C3{YXo#qY07~=r7%VTnD)o;TLH$Z(_|SRR`NK#EvQX5~thcLKcSEVX2t>
z_`Uhj2XmpkiNoy}A!ECSxk2j0k#>x-W3*)RCQhV|p-OhF9pe;_Crpq<cTJWeNt0w_
zX-=U|Rgu#OIV&c|rAnM(NAFCDUEAw7$IiAR#f~$dndjIsSGGll-%I1K9Je#`rI}C2
zpqUrQA~G0jyfrPfL-ceHqg1ilaeqysCRNx%=|@$?blTyv<Fq(-xb5)B@w?Wr)Q+qL
z%^QoG;+Gk`cKGb@+YzwibzO_3pdEQe=^!a&N0@$u8l}dli>QmKOQ;h6n_Yi5x4<%4
z=<n5*+p)rqm3FMM<Cq=tET+|V$YYTtZ6K_nuBEP{u9s~j)GV)u&6;oAXvZcyHruhq
zj;$;@V8=Fs1nib(74NWPCwUij)EeWfw|XOc?AWVf_7V1f3^ON4=|S=#>S5{;JB|{h
zR3>&=?c;Ww;QF7Wo}zZkVCq!Ic-D?{GGECwWyg6Lhj#pF$6t0_lnJE2VeP#dS7biC
znQ+OD%Y;|{ILV5C)sAa+2>e04PQ5|BNxemtfZKN5vEweY_vCnaXA)CV(kRP)J095a
zuO0O!n!g=oxvLrew&S54&!5(KWXBUb{;}h+9a1!Klx6lPi@;Mmo-tt2D2s&cqCRH}
z(#YC6Npj<#+>HH7_Ng6jWRgr{`cKB29dBilyp<@~cXqTWVYVJm{9s2a2UadIWO5+2
z12Zzl<)5DZ_ozW2jRR@v2&Z!(z2eUtfZ_}eWF*Tg+9fPAdG<-YdNv2LJFwS*eGYu?
zKn@2QIMC36oDSr2Akl#&2XZ@*$AJ=#q*QO?^E!~vfzl3?aUj0~1so{iKv4$@N^rI~
zNrfEvg4}6EvOI%SoWc(Dt!&DC+Hif8CI3Q0F$vzEEUCEOCQ35<YLrEsQVx_qZJ4?^
z`Oo`?vJMy>FgZ}p0m+u9R-j6@BB2u1;E?-R3~>&`t5V4(IP_=XZm}er2~y=wd-MJU
zhRP09ap)I>Cp|G#b)cF<zl*P)1Jwz_A8&{IQo3TarG^8^gqqY^R138>RbuK8>N>Cl
zM#+Aq+Nm%7c~-x(u8{+c9T?@nXa|}&&{WpPfzA#zbD+5c-#GBC11%i-2d-R-|Js4V
z;|(pDZT~#}r^N<SQkw4^ko)(9J2=qFfi|lQtsRIh*3VnoIM9~C-&5OBf1pZfdqTM>
zsUIyebaX&kcstI}#euF4{34y;KsN`vJJ4Tt;tWF%2jt04y{SJ^ds5G4i0dVF$v;ac
zUo}XW{Nm7uPG4$2s`#=XX=;FUtigD(r%~z-a$uMP!yOpxfMkbI1%}F+@74oGa3x1N
zQ15N3-VfsCr;U%BHpYRm4mcceIxx<G@ea(DzVaC+I55$H=`w~Lm?T?~WSZi@RKjEj
zvV@I>(Uuk=(=-R_6DHYBl9e>mfmzb#XiN9e7O6GcfjP4Iqb+uZi8Ie3f3r2rr~XQn
z>;l3<Y6{irfTl`q4%p@J*=;CL#yst^$>orn9t~j!A`bkPE6(kJM+PVP*$bnO;HL(t
zK?g#F!^tLz&wbh$l|Adg7HQvsMKWyKnm0JG(SgM>z$8-op_TbjlSFfC^HK+vIk23L
zm}?wZL0(B+rTo=$e9bpWfTXoF*HPC~e|O*viyTW0n;h6I2ld><^li<7NU|hHTk|%V
zQren#I<Skd-GLnhSuyc<J8-(Kd5_e(lF)s<p=&Giz$*#=E;a0T;DAgTPULmspaX{-
z_|Jj&4jgvihyzz0xF!R}fnyGwm%}Hg@i<lBgd82}dgDo&r>Li?XQ*eX=N!1%LB9|x
z=>naL)JxRM)GJhpl$bvpxa+_@@^uGp5X8SpxaGiY!X2voCM89Gk{>(p#DTxaV%~S)
z0r_w0L+T@HmHLSi@DEwwCE+Rc8TDTWo~zOqGM=saQeM${t^7CgEkN-*Id<6Q2M1C)
zk;RFuPNa4sjT0H1$mm2`C(=3bnG-)uH%UtGgrtvrVp+T}oDdL4G!r>9&5yolHYc*P
zN=_#}XHgDjKQ{HTwOmf*{(q*_%I8FWCu%tHW{|mn69uI-5NC4Y3nvOWQI6TdP84yX
zG`T2MVoEqsj9gqfCy(g2zm{aSloOJ@&s%59&?!q5r@RvtoT#X38Jws@mb(q5dYtm(
zoiLI=mL`zR)I@5M6P2B)LY9hEo#?_FZiTDStnS2@gi77@n`z}`$H`9Abbfk6bS)<=
z<XwgI7dO{+qMj35{MhQpS5DNIrTby>qk$6*otW>zuO2jVqOlXpTv+Zx6DOKF@y?0=
zoM`4mb0?NNvBHTKPPBAlrW3QIaVNfUVt^CBIPt9$-#PUux0e&GWLazDJ2=tNiPq#c
zR59B+@jba6^#>=~6Xbu*`d^#*6vR$+dN|RU(1qHS+Knn<-JN*;=F@Wse{`a!@~>ny
z{Y3s*IlT#esC}L2r~LkeCTo)iIx)zJDNc;7X&y{-n2H%f7)m`m%rM-E5l)O$rQ-;r
zoES|Qqx`W>T&$`;%5S_A6KKlMH<F#`#3W`XQ+x0^ic_7K=EQVWx4?PR48^kC*-p%H
z;x{LjIx&~N+lg~;4D)1{G5f0%DTD>oh1Av0^@l4;vNEeVVI$a`a1fkMxCjzc@Qp#<
zfhFK^!s~>Oenge}2?1)58ge2``0TY_OH$N{7@bAb#Z>W^$Vhmv$1HzjTqgUS`^((W
zlp~jMr4y^1I3QE56RVwABO}v^txgzj#;<i^16x=}T~Ga;+Pit0k4xO>#3nkD-Rwkn
z`rGL2kTLw7X}c4B&Ke}uPHoz$B6ksXJF$nbm%2}t?suZ(Lw!UYa^kQP=bgCV#1SbS
zZ#d(`S%w{T;uzsL^#t`K^%PaApO)(+3HnxlG1?@LBt576N)1dGow(%0O(z~D8s%0r
zIsLdS3mRa&!We<8PF$n&2lYBt{2NZ(_#<B6mJ_#~xZ}iKC!RR*4=diI{!RVUiN6T<
zsj?amWYFd{3rKoM^N|ye3FY|+%BL#wCE*$MUpc;%|3c>N^`DNlSF&~V->A~J1Vg#%
z@16J{$CnHJT}b6ZY8UFc@RbW`TuAFeDHlq+kj{l7e;Tv6kky6s5+IKNrGlD)nvt4`
zDgl{Ys1VXuKAQ{KT`1r}K^Hz(rMU<>T*#@MX^RcH$$6BM*M)qF^SjWePBm%m3*{7X
zp%A&Sa#}Pp7FAq~P~3$Q$|*_M={1&dL7tnM=t7bUWoedkp**323-N@C)JjwXRTdrh
z5yl&g1QRtum6~1pue}mh*@cy>3{~joc@$rIwV|pD)tIgBLM;{lr3*F4$;zqe(qBv_
zEl9GsP+R$RT&Sy94*B{nG;pD%3tzi%cd4-<i|RY{9o@)<#wxN2p((YQ3(b|^!iAk&
z#5XQ{E4}JMUlx7m!VfOAccGPvZ0$lDa$D;6%5Ud_r{|~j?BGH-7rML9k)@reovB?^
zd{-BWR?+vJq#iExbfNxXz50(X3{|7CmkU2J{%2LIw~U$dpPs(EIfH5KXv>LV#sMz;
zBE96oWETdyFvx|$E(~!&t^s~*e<vS7Jk*6<Hw+V980Nxo7e=tn(bSRDQEDmjt!E5*
zEOi`pyeggGg6u(Q`S9C#*{4%nnCilO7k-t4;<Y{%$l|8CFrD!;s57avT=F9Y=8${l
zGiLhEG?y$*&2!;wF8#QceZ7EY#D#?}q>!yHI9za&HLA@8J3*?19>%-Ke&x7jUy!}Z
z@k#uNPkSdoGw4D{m4;n1CwwZ6x)7tkh`N}%L`DAQ!cy{%H+m1OkWnq|xDj?^l?$s~
zc<;go7uLA2)`ep(9Cu-z3+r7t?7|Tjes}4A`rhoq78f?KosFvHO@w02(`;4F9v8ML
z-cHydqm-~q`MYIC;)8bgDrX;IzY7Nl2bF)wg)97w{yw`tevZ=j7BTItP~(IPCtY~v
z!oM!adCMsmF1c`-0jH^FWbY8pQO{E^P^GDhF3A511+KVoRgOLv?zwPHmELyY5At>D
z4eCu*ddmg5#3Xg^C`axl{geDqIe!uEyYPVUxAJ>W$0Nm$2~S-3M>$VjD8rVe@#ikQ
zaN*q6czIBB^TmdjjCn<UO?^XsOMOR`TK~yx1N{g}<wj~Z8o1HWt@mLXH_EtC){V4o
zq;n&^8=tvRz>R`#z>N%U{evKv8yN}NsN!UDBQrURa<aNn?AWJKm)(ue>E}?TIo+68
z@Kb4Snt9yFOUS2U^1E?*v_%@1^aai0)I!w4ZWJLDrAkaO!u6Ww63Qt_DCI_J<;X{T
zIk!9<9(CRN!^x-CG0jh9tl&mP22^sx<VFJ7;6@xFo@%7ZQe>own%$`4Mpc@LZX^*Z
ztC*h6(^MnZqE@GV=|&AgGPR~#KZBB{B#kMlpMqNG*LI^0L7dMkn(A>qzoN<t*C)tF
zKqEIAyD`j-;j-`Ij7{8V>&Ex2*wl??gywFvAhe`@=f>BBZ>ZA#w{8r{rH_GDbXqIF
zjT^tK`J|m2-QDQn#t&|^XFvyPXKF`kCpRYXbH59-U8&uu()d)K^8Lu{FK+a7qZj!n
zH~JEOruL>vd>=PLJeK>>>970&Zv85j1V|c4bC4T@2}4xOP&ec)LLXyBxG~+08E%Yp
zW0V`CRm?=f80uK+IO=#eCJ>UBej1sRn4L_W;>J{hG(OFZWyAECnRHUzu(~nJjoHl3
zabp2tE_EJtK2@sxO33drE>uqHE%BNgHa9$U?8=u<A_v(?bt&KN#))M8)5NPBpBsL1
zKsiA-@}1MyFycm3Mw$n49>m;O<i-oPJRl2;-B{wr1vlnhHU8$-r`bJj>~&+QY?>R(
z-B{tqHnz4>CVw|Js+L!~v5vfkx>otJch-}CSI!2)8>ev-VKa4$D&6YFWbWnd%Gu$@
zPVz40>~_PRL*I&h$~oo6em4#<dysmRddQ8#gd<d`B5wpZMm|nGq5P9>Jmjo$n$8*J
zpLOG$;`0Rg+I7*5OKx12iIGmGcBZRtTyx`3H~ymY2lcia*WI{5{y3@LbmJDYvL+wD
zLf&Eat{eB1FEhz~@?+`)<^L^fsQ8f^a=}v?c|zwOH=erjjQp>P`Plw*H;k+Fk^jn#
z*KT>z4zhb7&)=4He&dFmE52p?J2(Dw<GmXnWIp#Gg9oWR`h+Gaod>DOX_S-JgS?AB
zosXsW;4|gRev$Z$9%QAHN%@&Q$U<IY($`te7`OH`e(up<ZBUAS4i9pAkjsPI%od^M
zp%##35%N*<Q>Bpy&C(Q9{DlXF6c_d&zO23!Nku&<M!z_<go-KY!G@imVoG~Z#)GmR
zlw;|~PAjh>D|k>*aU~Dr<WriB_rNGCPv7K0f(I=;Xz793qkmbhML&_6M6K*W6+%@H
zz9dwmN>kN6`1lP@xCYH+4{EB?kMF;*cu?DeIv&&&U#{?Y(3k;Vc~D<P%EfkRp#ifE
zsRqujG9xunF-<*arntEWa!MdozV_f74~EeH)`RZ|Kgxy>e(<2Z2d&9%sBNj=Q>A)4
z4?H|4?4X=3gpSls9&}cIx#nrQD(*(;?m-XbG)!yi=|L|Ke)8aF4+bc|H=z&pS}49R
zp`R-4?}5BhK~_W3FEj^I2T=#h$Q+}eC&<a?(zK>w9t`(jga<{&Sf(>zqz9us7)>6Q
zXq@Q57_w9uOBm<Dc;!qW$e+cebdm>?nVmwNN}WcP()<mKGZfGCU>12cbq;l|DxK$%
zr`+o!YJmp}rSpAg<wJ@GR_O{ae)2-|z~;ea53YD%m&4YBl^(2Obtg6Kfy)E8>;-1!
zTXxdhL}}3Lfln>P??HeZR8Gi)rz`d4%5aT%5S5Pr7A^8%31P8{loQn76fgB)8F@K%
zh4STeWwi%uJUHpWDGz$*(N9{|da%xe^&b50!EO)s$Pvf*ZK~Er!Y1lw>J|^S5;E8P
zbgg5%2RrEOr0$|h<6$TEDn9JNKJtDK4iJ9M9(Ry%NX2~o_&(ynQRN)-;JD%wa_l$y
zbUu07gG;j7$MnuQ!+^8YbJX)5Tp(PeO3aMrX$tbiD_1?Z=E3J)<nZDT53bAn=|yU<
zJ|Euj;HC$+Jdjh$?_S2=X5GggJR#ii;I0Sv$bWk9H{mbpeX6wZK*q+pPiHs}J$R&i
z`7R)(|1kSj_NfQY$p3oqlJK1Rf+~^S`4#&Wv#&jPLy$j;N|B^@%>L)Wd%_2*_%a64
zc#)Rdl9`&$3wb-wy;P?3%zj1%RpK*vkx_9bul@x@%q+^u>P0qkcIC)L;GACM@}iX&
zt-Z+YMIJ8<Uc`Bk*Nc1%t3b`~MG-HGdQm{tElBu+TF8sS%D=?Rcg2`3O)X9>;YCRm
zQ%YLnyLHOYDN8M<O3QoYCUbolRHRc$`RO>X#(QD$qP7=CFHBw}cwuJ1m()aR6)%zq
zm8sH{T!pJjuBM#oUj6;=QY5K{7s>Q%s?u80_;Y<7>d<NEMI$fjs?vI1d_}IWoCaQu
z;3uq9X-u;@wTTx^3C&bw)8=X9FlpgMOFCbB@eScy>UUJxaUZ);T5ID)`CSQJ=(qLa
zdoS9NfAFF+p*>Y1J9yDiaVIb2y0MtDEYYs?yHUGSdr*I*_M}RfoH73FMQ<<8cyZQ?
zK3??oBH%^Pi+*18_hNw;3%wZN#V=k=_F{_kp%;U^kdMpTzZnO6F@#Nx^I|ArlxlgH
z7sJUTlrz$c(y8?xmNeRnG0Gq7MNV}dHJ;`KFD4QusTesbrPfqtXHlnlF`Y1jI+OZ@
z=j5}=bEtEvQg@yg^A-Q<g<M`1^L_)p$5Ood6=th^1bAU%jE8EcI;c*niz-#zUdZ(&
z0k3j=1V454C_~7Luou63vB8Uo7g74_sWC5p^J1wNi<p&07JIRTEEm8fD`^?CYh<4i
zR!~<`rF0cxwHGqQNp`LB*Ae7S02y-P%NL4`UhME<rx%-8v{^-N@nS1^8+E(#KaR;=
zUhJc@o4QAp?)B=|)um-g`@J~e#X&C)$-(QzNyZ$Z9;Y5vwT?+&@%;IOa^%GCWl!TN
zFHS2*u8*Db;=C81`;fzj3tn9G;`S?JS|2WXaoLN1B(jU%;a9x4>%~1Uu6l7z=6}_~
z4Z?LVK3?a!$?PraZ54Beu;(|uoj<*Jp!~lG_o>y^8UFU-p$rLC+Mk{InAs;@$b~+s
z{?v<SbpG|?Kf-er|H6xxUc6%VwHI%d|3-kDAl2W=+^Bvdc+Y?jUZnErElWyGNaI6=
zDf+6)ftJn(`P1*m($9R5zy4<MAtRkE%FpCOX2mkXB{-`O*_4yrhpL=`bNZ0WhZ;U4
z`;gm*JU&$NLH=Kz*N1#Q6!)P7tK_E^@u7ffp&;Q49||d_u<z3)Wm#5Hn#HKyxD_SI
z<$WkcC{2~fGCq`5T+RnOXVD7Esp!MU4wuL{ACl<Dt5PGu<b(WkTLR3=PxPS{e_yLi
zrwX+ywHmcLRjPdH(?3rIYRVbld*hqwhFU)T>Wy4dw)jxnhdMsg^`V&$&83PDU-{5j
z)vfPCLvjP<q%EH$O*Qi2BQ&Aklsa;werDBz{EdolN%)#7mutQy)Z~b2?L!+Mw)(Km
zhqgX^@54MF=KIjjhaY_C?n4hB+WXMKht589k=?h{*wKgQy-b~?$YGH0cl!>-7uAe%
zd9$kzE3O&3aRcT0)yz>QxghhS4?TSt<ilVedin5^4+DL;Gs-AuN<aJ1n`<I0FW2is
zmX+^I=qG!GFhKdg5SH&YO7-Sv4MTj8i`A2T`T;xChhZ!o?!#EZ2<k}cDC%gcv_D41
zFn>c79_Pb&<xlWoqT)$DluV@`1(K%tFqQr^AEx^-gFKr$lRAqkk<Xi@nWK0vp|cmi
z`mlh!!iR-23`QATKDgyufOPCqqgBOgKG+o7eQ=PS%1M^%A)^c)AHqIFeDKouQT-|=
z;6socQcfSa1f=*kA7bQ1)WynQLiqR_%~BthF}qxq%I~c!$*ZWVeON<SOa0x4b%gcQ
z|9xNB!0blqCLcBvq<^;fF!F+amb+c{oewX3c<IAVA9ne0#fPgh_!k>?`>@A{y*~Xn
z7s>9EgQ9cXejg6_@al0@;e$RL^5Lv%^RN#m$VaG0smG|tsj|4t@<Ram6!kRqj4GA)
zHcHGnX3tYEP%p}-fQq?Hs5ZuO&4)k8k9@c;gKfOwt`GO<-0<Nh;TH8a^$t}o#mFKg
z{mJa#KKw<vPklg@j{pgHNEVPUJC7AV@!=oEPknes{+Ie(`SRiW%7@o7Px?{Vk2gNN
zm2vJzCO@=>#&--$=f{79_tX!nZYsat1F8K;Ll92uN1@UB_)o8#&-?&6gL1-M(?3d^
zklByieyo0{Z(SBYva&RrAKCr*oGfp4mLf?xn9WJe<wwiupZq*@^7@gFke^zBT97Jr
zzwl#5Oz*=YeiZeioFC==_$y{;7BZOT7>oH)oRKA{C8?#TrKx48QoXDn-}8z=kCval
zfmZONB1<b#4b(VlJXLPsl!^&{nEhDb$3j06{YdhoiyvM6sO(1-Kbrf|!jGzcRP&>b
zA9elu9b(n}sO3kKpt-&L3Dl1oekA*`E0|c*kFz`DB|tdqM6-a!k9kYuYx_}fxqb&%
zJ-PWu?)mYfp&vJLCDiw0OjC2}fH~Xa1SxIgM`LN0i^y|TZ|7RRB>5L@Q##H3$T-3f
zZfp{5>BrZyy?(Uw;~PJ|_2ZW@mNtI;b}#-rKU(?GnpFzjOc?Q0Z#hHhg!86^wtloP
zZIqZXugpIP`_ah{`J>9tH|7;aV+TJvO6Q-@Z<C7)>npz@Xz0v#PVY(R=0|rwrpwOq
zqlX_q`Z3mzaenmlqn97U{21=XPk#N?1O5Ey@5j%6Tn{Gp_Cp?`C8>`eeaWL<>DlTZ
z5(daR`!UcD;dMLBg9yTd{dl$AEFftJ&7pq%@m!J};fLj-Va!hRC_hH}QR=$k(N6P%
zFOuE`&7=Kzav*t(EOfX@V7wodwi_n-F_|zy7VXFT6jQ;8`g;wg_>t|9X{v0ybYn1H
z{)QIGq5rG8)}nZM9E8A3Kj!!`*N<6T=Rs{uv;F9kEw0VI_-dOC^JH0R;+C~B3D1{-
zvDxseUw>4EK#Ct$KUT?6Bgdv6Ha`M>1pTnf02^a*O2ut@`wsRh8YH@8q-Cn%_QT_c
z*AJf`em`>kZr&4$FMHA`uW3lkodA#dRlqC{g$VhvM0T+sVLu{%Y%Fe!$|#*^h{+Hw
zQcXsY@FG7J)6^~+CEICH{8B%b)7fM(FOvmb*H=J_R`{_}metFcE2uZV#*e)h6My&P
zhl`18$&y{?$9l!jN+oSzsRV2!Y@%+KRl1lc<~BdJ%a90Qd;mNA*ePQvfC>TZ@?*Db
zxF7%cvB$69y?oY>bJDCI`<UJD$7#X=KMwZN|NM2(k3)VO_TvcsV^r~v66W$r3&;I9
zq5PA6oKjqJY5FsMoIh$<xzivjwa)wThYSn`T%ca0UZP(1;|k#_^%_-b6{@HIf$Ijd
z_x-p@xTQ*O`*BC{T|e%T|D^t<{K1XVKOq0DoQHlqQv8@uuTtu#GI(S_29P~~e`&sx
z$=r|U<QLSJR9T-_gxB&ZKzOVCtwW9P$r%EA4@>&sM=Hgs326dItDJNJq$hu-90Z`f
z(*L)WkxnLRW@;8{R;mQ#%bn))0CEISOgT9T1p>%L$gTW5guDUd3m|_0t+VO>bo-~@
zr!_3d(k}uiq~Z$)P(*Rj0CpeHpO{x%IVA!pNiIb#9Y7gES!%feZWPe}Pq&j=F@Q<|
z)D56s0EPhK7-I<_J^*6?$;?WyiST6r)xI_+1Yl-1k(w01*(dRpRb-U_s*<ZIr@FLO
zS05xbl(YRG{aMX51E@u(@2`ei*Ar@!>!_H%-HcxaP(Ofy0SpSDK>!U|)H8ra0W>DJ
z44{dMZyLbrG5Y@*o6%`bZJ|nMr#F60{)YN(09D#n_%47}(%WRob`79S0Br;KUO62D
zXcv$hanYVm2j!1TS51;s=@dX`RoaE6N5)vh??&#f;(G+}BY7!n$x8O(YWx(y&xGF8
zK2#~~8$dsDf8`7a;1|UO@|gw)FeHGH0gMXZ++o8|77Y(z7$IS={**jPBV=E*PlQLa
zXiNYd)W4F)(wSbax=d?Lt|v_h=zoWq7{H_eCI>Jjfa3x9CK;v%FfD*c08wVA2QV{$
zS>zc3{T>gAna!-5I)^$pfO!GTCrf}9z^{rI1h9~tq8w`gW2))x*yz})4ysedxB}=H
z(PKQy@qUB={Dc5CNDX}~nq&yesJ<C5wPFD*qIrzEIDkC?><u92QNxk|ehXk}0Lubc
z&eClGtdQOaU?a1usOzY!scWdx?Aibp{F5LcX}$EP@;3yKW`ClXT^<=W1+ba^7V1_N
zQ+=XwyW$;$o$@K5oZSIrXp$r?jM`=H`ygQ-{rv$P2;iWKIYgK_(j;Mr$wvY>`u|Mv
zfBnyRB7l<toT7gvfU5zVCQIoV!ddD$>iGaJ5H3<LQ6=(n09^;_3%W+<0rd}6dR<0Z
z05_SvMg22?+k`vRyHu%uFMzqr_3rwM&VA~YG<wT_lOL+cM*%!m{6vL4lgU3I59q^-
zHFzGt3z>_SAaMy^2JlMuR|K0PcpbnSnHfT88p7KE-pS`|5IckTFM#(l(t;Qp#D@S<
z1<^2wMnR+&XQ^q=WmC2w(ggJfkfx=kqo${d`56J!3_)a6ekMZZAhIYYYY?xW8Kg?~
zAU+QwM-VxKC>BKVAaVtfdyL`zsrVuSLF5Udim|#ld4mvBQobPalM7G_Qom58g@Sl7
z#!{Fn!A0rIpHgL*l?b9_5T%1C6GSN$FHpv!H(NG{azRuLq8gp@43OuuRS2SD5S4;3
z1YrsyA&9sj;)9sHJe@I!qoKGg;kfO0s{MJbymv`l?aN8#AZ9F2ml#BnblQVz&zdCM
zI%Bw*x<X~ykRU>Ds|~DBY4D7MREzb8zkS@I>Op)NM2#Ret&dL*q7Fg0CZQJ9Laj}e
z4XjJ3NBxRgpW1*b0aCqjP`+7Un4|^fra?3dqHPf02hlu;3}Y?dkF|UgL<@3D>eti~
zV=cADTD}e9WpeuOf@l>)>mV*yw1itGwh3b3Sj+semZf7YhsIjk1@S`=y@TizMEf8*
z1kp8!Zb94~Yx$#DV#gpl1<^SO;Vx8x#dpkA_azE+528m9J%i{K#E(H-uTy<Tb#vNr
z76B>EGtTl;5EUY6#Qa%y%DzNN!hM7Iwz_#h5WfV`FNpqZRvf8Pahye9U=TwXGl(kA
zV8Wy7X5pb^2_7EAh#*dFiXR!o!cu8Q$u5i2&m~3&bv@HgKXsJngpUhiS`gEN7$3xh
zASMQ3oniQAr1|7V^Ca?Qs+d!Pn5x)uUqAVo!KT&+F*Ar+<k>-JLD+(r!|dE3mh&8S
z9<%d<_?57Lx{#VemDa35oLH-$lh}iB1Q8A*5`>ebUaCt)x`Xg2uGc2DPq9CU06D0f
zP!L51>0275vz!`JrHg`COkSd#--1}Gc$plqL-l7)N?H-bO8To*>1x87Al4GrDL-c;
zRtaK*ayAk+Q8!b!1hJK{jVkSL4`N48{k&yY5W8iaLns=;o*?$hPCR8u6~ewC_6Kn$
zh_iBBS27=v0a>ToUCnqfh(kdf4&sRH>mbJLOE?<Du^>(c^@o8U4?_NUF0cRl@le7E
zIlv1iN~-COt8y?QRi)(9K@2^f(C%nL{lbaof;b<<E19x_xS-bRD&Zpak{lp}E2=b8
z8sjw?oHDS3xDmu-<=+hA0r^%Cw+Tb}AmuycyFuJjk$(p9m*V?D$XiIH2mYq>kot%^
zw~~G){6t0m6U0;UGwQ$8=hPQe34TeC2A9lEdJ{z5ah7*Myp{Di7M~+~oTxbe$?PW|
z0W2+Y$Jl9{Wz;xJ>JZX|kT!&LA>;~S+Utb$A$%4>h7dA_fRKLd%*pZTi7whWeV1hl
zVRirXSy+@=xQkh9YRbxNHmbyACwv}44nj`qDpt=OLY@%*Fq-p*P#}bYqV>|`3n709
zeKVT-8O@?!git7i!{aQ4sj>&flq%u~6bqqv2-QRQGK3N#lnfyuguS_qrKkcGLny7d
z454fY<p|}e6{s)9>$N0R3c)}pjw()k2u8)G5MHWCa|nsbPa;$fp$efYwHoz*@ijuI
zM<<yoE!QN}qFO?zt^7KKx*>dAtFM$_pU{BXklKjam@2`|LTDaBvoM;6(ISMFAzTUJ
zY6xG4@J$F)LYNxDw;`Ag805tw!$bHkgjON64xvp5zl1O_gtj4kA40bfx`)s%gvF1{
zMaNq@hHzt?<%ba36FN}E`7qAXNsiX>md;dxE`+Yss^cv^LijO+pF`*^D=^;DGlX6t
z{KV3J<1Ny{?D3Yx<8|#Ldpv}GA@mR7(0I$y_KDJ(w11Cb17u82uoRwP5gqiMaZm^q
z{x%E_!S$tS<3ZyPX2lsw7#7m!4ats>janQpX(VA3bu@KM2xAH3s1h@tFd>AA%9#|x
zWb(m0l_g+W2-8D|g|H}u86nIJ;nxrrgfMD;(#|XKvqG3Hyvsa?I*&S+`q}3A`GgIN
zl7$zBkP?C~1b+zD5VR1SvLUk9en_;1;2_wkH6~cZl+=2H#Z5=p8^VAI7LP1$f<=5u
z9TW7h00VALumnR0k;5TGLWs&vWIKCQYZC8EYhE0}@(@;puq1@v<k%T!UK+ybf8)!h
zH7*N5R1(ISSB9`Egv}vrk)u0=H6d)2qik{f+7Q--(Bwtc4I#w8sJfo|dkCYoB+0&?
zU=fwl$BW|gPqb{3qjI99b9eLB5VnPIR$91b+#ZrA8z<GQWjPSS(o^v}s5_~<sJrD;
zfFPxN<x_yXpDGo_JSam&2K+?J;Si*qV<8-o@ix&S&Qbbe3Lg*Q1hXfpr>Nqe4&jXA
zg8dWEg>XKE@e?f<xLvhUk}fiPiF%nTrLKvVYcgepP&bTvVO*DEA%sUEJeH|aUI!*U
zFF#LwFx--9XLbB->K*D`>OJb8)W4|rsSl`sQ>Eg=kbaUZ@I-nkguG$o3*%`B&tx_Z
zBV!o<hVWdL7zV<4A(K)F|H<^im)MF*dKJQJI>K)VZ>jG>`a3Vge9!C$6_YBA)Urja
zn<k93iqnOWUa`!*^7;%}oP<@7_l<_JwV>WqZU$ry%Rl8mwU9N8wG%Db!pN?i&%?+;
z&PmM`#<4B>Ihbf33Er0Q@ny~Od67SiN?{nnC=f=$Fun+*P#9&xpRNTJ4x<FQ2(>7+
z7_~T6T3FS^RFYguIi<t+?kD~Hsw|yy)bgsd0-<6UM<(hYYH?x2hfy<(T45N&FojW_
z0SVM9s+Kv7L~@dHDihXcNT{luYGHhQ2HKa(sX<7l8lLN?XBKkKFZ9)`9Y!5y=O^pi
z`xUu<7!ATWc{n*xu6nyMriNksHPMoBlBH1?jl*aX)?bJtsVN~xkp$tM(c~6kv<zcR
z7-PfuI*f0^=oQ9KVg1<@-%>kEpAcG6TT|Om+fu)$wxj+)ZBOk$m3BIY(TOZS#Y$FE
zmoU19(JhRD%MIPb_>s_qDvn${7wyUH{;P(c!{{BxfG~au>ofL&zD7xX!Vv9CrysRH
zwa5PWfrO!93?mE*V=!Te3Xn!54QF<wC_x+v7!}57W`(6eX>D8><HKkgL9+-ZgfTIU
zDiKtTU{V;9WzR<RRhkmUR5=zRNEgAhFs6sGFDwtk$BZy$hOs(~HDSyO%WLKk4I>st
z-VKKA8BKG-m>b4C>6tK6KE(UO_?4iAVGCmcS^R|pimhP`*<cXUPRFf$M;K1UF4>#!
z<0ZyJ$E$pwbogGquB1R1LHZ$TSj9wSUp&(T7KO2x?c53L*(D5EN&PL1rG#bF<y47T
z5!Nqn3ap|dFGCTY($%<Dj_#0QT^OlGm`)@b*R%BZFgAp-k-Uw%iMpA(g(}sz66WsF
zo7x`6jxctHv5V#&6|*~xaqo;0AZc$HU)I+7Ko|$ZxDv+IFb>Ii&Pc-r3Cm)VqQi3h
zhH+FTmN1U9kyhdO6NEF=lhjjGi9aplp}1c0ES+=8KQG5D7b;tKk=uAF3@t~(WqsGj
zuWDnw7RDb8mivUS6K;iZJB%Bug_{IflRIJD4dZPX@4~nj#-B1*tC+vScpSzPX77jb
zAdJ7s52=sBD8+rcrHQ_V|ImC!mF!bO|I_LJRnBvnAxC{0121X53gfjZeG|sz-#?Z9
zNAo>Z`cPW?Kur}v>WH3|lqQ0uBlY<75quUwxd_TffCw@~P&k4j5oC-&_IMsSE>0RU
zMUa^lvruzVvr@BBvq$hbK^n}#iXWGfD}vn0mjRrYt>vRiv-t@HBA7khP>}pZ1ceAw
z(itV7XavO~xRlOVHUiIu1o;)XxN5CL1SJ)hB9xAxjB=!})(tVq8C``4Dn?+4AdW?s
zXB%ZTD#@1aHOO1`;v+Cd@J-BMj=&Vb@TJB!4fH2U2_!K4dYb;^z{u~0B+eBwT~v<f
zbBjQ=2*%$qCPz>+g6a{hUmpLZtiU9Tq#A^h6)m--bdsfR1oa}YM9_AUWk)Mh?Fi~b
zARuY@B+FM3)MrsFw?%>*M9?UL#;n*df^A<Wh}k3pZIVUO%1IU}5@;SliwNdLFh7Ep
z5qup%&j@<SwnXr4ME_Xn5W#nZA0lX1N&n8?irLoGHnK#5_}>%SMUaqF|9;w@*+Y}`
zPsxrdrc(r+BM7`TbfI>Q;7%8Fw+If+GIXcYgZd*?!s5=x{}jQ`vS%Zh6G3mbGb)17
z5%h_mZ$y7dN<W&z$o;7UBKU<Mr2``v6v1F-=WR_8X9#&HReo|E&gvtmBdM~&pC8q~
zx{i?<o{s!3FgAj5s&u@33Xmr%XWuuNOr8?K$}8okQm0WRJ3WFK<eAEu6~Wuz4N}x_
ztNvS$q`49FYpQqeuMsSWAR5shY4WsSHF+SzLK$)qSY>}j;EKRJ*>ZW3#TLPTlPr!1
zgzeOMxy|_}Tb!~tbDO2eEkm7ti^&$L;*G$^y25_xUUHBcQhqps2s!?&Ny1_gERy4H
zjA3yED`d^dOCtD<ApX(_mMLCNc=K0<RfKiQUrksO!CK`=<a+Y&)D8d7-yFe~2+A%(
zxkcD2gH|>?25Su4Wt_`_6UE3Vc1Ex(g5)S_MiIT0usecl5&RLso(T3vurGrB5uA?T
zOauoa^4uz%h~T6Qum}!Ea5REr5y;y`k3^8gWcq2cMfl_tbM~AGl06>5%xUIcZ{n{G
zt8prVp~vF$k1|b}Y&lgW>Gc!C*$B?b93ovB!TAU-L~t>JHq*?Z$rcHdG$*@JTH8L^
zawUSRa#*!AUXa~U#<aVrQCRlu^$2c6kSVIa5cXySw<35S!G{QL%TW-)g9!eP;BEx>
zBItP0ct3*gR~i45(c8xKmmI}=%#t0RCE?2@=61IePaHR$$&m0cf)^3IjNnlOtr{mv
zdK|%%2qfko<vb-ki{M}7JeN7POOgb?is(P|zm|#UlIh$~!`mH+Z^&<{@2FDrA3<*L
zkVmbiiXv?k>7qy-#q)#7wYHekMD;b4I~>wS^%eds3J^9fGT*QnGeps6n>k|?lKmxf
zjp6Cz<W`W(QDliCYZTd{NQ$Cz6wbkk*`r8|!ZakYR6En>QRIjsXB5J@q9_nW!6<Sw
zD^8v$@+!_p$REXv$rdS+^o2N4l#ZfM6osQG!hqr`zGxK16#qRav4rB1giSjW%0y8%
z3L~@Ss0M2JC@K&tMp20%%gQ|@QIbHMa^eZCpBqes1m&9vci$Uj19MHWREeU=FG<y+
zs2)YtDC%yF|9N5j;P=LULlVD?qDB-&_nH2!Dq|+`$*B0wgA;2-VTqzc6dj|e9Yvie
z<QcZ#MDcL4v2Ij<bYuf^J?dA~`cbrRXpEa;X~=*^)W*~%RH@Z8ie`$NN6~`ZQaN8o
zvCeFguy3RIE{axBG@N2-D?2xe)=~7DVwp6>(k6=V6w9_LmUdA{_6J!g9f=eWN0M-`
zwXtL7xK2@Yj-pExU85Kh#kDDxZd7?CZjUH7SkrWm>XV*akNq)<o-FDW#Q?%jQT!Z5
zZ?aVEC*z9TS2^;sE%EzD@ezc7iDIBC9Yh!`<7A3OiiR>fEQ;Y#xvSPJjwE>@@2Dt7
zM`4e`5yhA&#!6RjHBO_Bi(-5f6Ua43CQXbYmeo8tiYc<0<eZffc4akJ>uy@P$vBl^
z8yrTdz9$wxJ&GAo2+WLPRur?zlATAG6UAKREYFiPpZqIz0d*lYg=(d0R2x;=Sspby
zxx`o$i=w!{Ezu=?b;Rh7!b3=@P~97akL;&PX&{OqIYbRBKSGE`;ksgwu*EXXZiwF?
zhj0{2qWCR}rF524mr*5P#<m2}6;Z5I&Z;O@D_%obD<g`qUirUAachi0DsGBma};G_
zC>z6;D7MP<B0DRJZBcBG;zSfDqu3F})#-)<QT^t_om7Ecgx%CV)V)#cQ>FV^MZyj$
z=TH=f6(5P>DEXLjjuRfGu69Z}H=;Nl#hED1(z#4Mr%KNgE<|xrIhSMt<X??sp;u(-
z^siC>P%+o#__gY{INp@ar+GVy$Amjk+>PQM`GJc6lkk`9S;FLB^gAv8CO=d$kEFER
zr@Ka<MDdUEpGNUa@xRimo%EQOQM`&GQw*77sQW(tbrf%+cq{v>f${xvJ>VUyq>bS}
zRrkHDv*J`Sq>kx(K~fsR)9d<8kLk$ish`CFLI$doW{knNR&P8@3|V8y7lUlb-Cf3P
z4EQ{T)mseNsb$!KIq2u4=87S=Y9|jNZ%lu}p|qAih5~d7Qj1Z)pcbMQrWT<Vjp>iC
zlv>4^6(|uyNpdOWl#XHHb$!#y#ZW$m&M|a}p+XE5V`#ycN--E>kdCUsY+MXUgm|iv
zD%DMdgc!`qNhCC`q5rk8atu|JUzJcThU&`sGR8|@YvYq+s7bRH^((3+hT4QW)Vfq@
zvtA4zCh9$0KZXW08&aFZ&`8BJCdi%DO$p7E-#mt=d`?K=>+vmP_&O$EXY^hCEww`o
z-w|5H(3;RDhIWLuREhjv*6NJjZ<2n9p*{W9H$L69+cAbtbmrRh(c3kKZZQmrVQ37)
zuE%$e;n56ZyX)~iV)!wJo-y=_p+Dn)qV}QwOzlmTMx>%>-x&JQxzGP-3?TnP9jGD)
z#V}a$gDr+(F$|AkLJSjQ7(xH9bB6JRkui)Sj8^euVi>D<96@HGuQDe{l}R#&>CB5^
z3SkCyDs>uF)^IwvQ9#nn7-rF*O`W4+=Eksph~6{v>HMnv1%!n>PNh_f!6thuhG#L@
zV{pW<BZi$ZIAd_dur`KuF}P#!#IPcUl`(kbpo?Ky?9&xdKVfkU0YZ=(qK2svYLqIc
ztg#ptDV~!p%@R52m~DAqe}TeMa^WfZcctaz_l5N<ldH(9WBMJonJnft%m!BJMUvLX
zu#wL1A9b){1EE+gY>HvC%>T@8jiF<?)HScBYWX8}Urn`5z6H>4l*zO?TeV#=?2h3^
z3^!x)!HT^xoQ~lP1NKo*N`J<1ASQPpq>_amq$zNSa5#n|$~h{>n&RVx6IAyBeH%~3
z5LZk8URLS<m^usSwvn%kH!0jQZ@F9MI<aG?m~7Q<ncFQhbGzMcnVC6d=2!+<mMzIH
zGcz+YGsE}vvihIzoH_UW=Ds(h(P*SN25FqJn->ysk)xLqah>6EBCaIjDqSeb3D;QD
zPZc5tl+RZ<j+`5bxJf-s6>cSB;8f#(;oEc>nJQ4B>b*qVPsHOy`f55JaBtePWXoGe
zJWRx+M9k)VYEoB<c*@b|iFm>Aj8<tKV>~YtQ7m8V>qNX^c$J9HgDvFrcxUW2m0hEf
zy-&o4M5J{hof97ujW>0FB_f#<pO`<hlKCYOUzxwLemDIe3_la0y)fRkjd0@62M#K!
zobXQ-BArO?L<*<z;-AcvP7HIzoSrHi+~a@~$L>3*q-IFt#M7w)RS!hk(>syF2?8n^
zoXBW$CWg$cSy;2OW^*Dt1Lgn5Kwq@T=|nE(+)m_mBA*j^%$!fxEg7c?`MFwv^>^C+
zQO4#9I_dFz#-^7FHqye(MOceEQH+87;tX+H?WLS3?Sw-_tcWsBlyzda6MLMnI1%N<
zzfKHxBH9V76HT0G>V(aS7$>UHEYVcti?XwpryiV$WiB&KD91q2YSV-Y%oSNHu~s&t
zaZbcD|G`>?RWPGfooGKzpiZb%ccPXPwK-ISwWbq;I9kVvMfswr+*=)0*NJ*g)Muxm
z={Im<#x#Kv8nM&Z^fycs{&J$36MdZM>qK)WS~$_!i7rmGbfT3LZJlUG$K7dMTiQ5r
zW}2{Zebk<50>P6q_V!MYnN&J(l>ClPbYi9is&;jvn-e{q=;cIr-fj<b>koKH-BVTS
z%?>3~S4n2qd{O<JpiJ8F{!R>Vf_kHF|EA?VO&G}fkGaJ`3=|#W#84-kPKead3F>5u
z6H}cS?!*Wl=SU|;IWd|?NF9!GVyqLBIg^sdIgx(4KtN?Yn-f?kIx)%2p@br4&NL?$
zJF&!x=`_7g%rtZ6G0bvew&~1an9EAd=bQclhJ{Wfn9d@Ga?^#SbhxJrYn@o<#4?_r
z<*X~5Sm{L45nN@?<Z36@nA~Q%aiG^bL9@Dn<~&uUq_we;6E?AKc47-dqS=a;hsz1K
z6I-2VG}%H6$>T)O3DpU&6B5rJ&6tm;T4wdLDy($u0t|E%XmgsAZha7?^BAZaa?+av
zhI2Wt5*31NPHd<5e|TFv%`H+6ZF-jz3o2D2*z3eTr}5L3pHA$jQ`LzpPF!{3pc99j
zIO)VGr}6RPVJD8##m9*wTqUPag5e+M>Iv3-37|q|lAflaI&qfH-@>-bW~*}y=bgB~
zaFO+r8GRp$retb<&57%Dm2=`5U5*lP!-@N}Xq~v}#4S#~O&6a8qi5RO9VhOZJ=|kB
zFb@x%c;v)mTGHG@(ts&HssE(vb0=PK^t%%;op{AV{l-cgeQoyn#)-Gg@0@t=#0Tb2
zPJE^l#LO{nVAW3e!qu;Iwc#o`&o^19D;g@5ALdAYIgw06gosEHxkTg^kz7Oy5t&3}
z7Lig!DiP^Kq!$4ZsYR50X}dPfl14=T=|Wo8>C=V8=>k>vP8TRd2^mCW<jfbHgflr}
z$)u7+L^cuGMPwC`<a}rso2Py3ZzA1g2suUE<mRbo2!&?|%icx{GlV=M@`@-d()SIF
zJNe`j@w<ouBJy*Uen(F?X)H*bHO3ujFC-fO>Abq0;&8U8<<+c3MHCZJR)j@FaS;<5
z+e?ZlC8C6gHZue&^Sane)5Tu|0lkm$vO&ecGXz(ait}d(Q6i#6SVh=G+|6zzdu9lO
zAI2P<A;gHVi=Zl*DSi_kFq9KfUc^ul!$efx99=;~QxSiOs3@WmIU?dj)X}3Gi-;HT
zhlqMyts+7YQBy=M5zXI5R~1p6fw-E8KTZBR$5Dfs?v75O+9Hywb=j;VV*9li@_)_{
zJ}0x+7tw(IhIA-r3XMeLKJ64Drkp0cT^b2-GfETDLqt#7&BK;^o1<HZXepwVhzqB!
zBQM3Y715fRs%=E9D^xnkZzqDH?O8jpc4X}&qB8?UyNKw@+>Nz6E8WDNLcK)L@7?-{
z=qu8*13*8fAb-@h=zb!;T(w@m9^GHWz=f8CQx@U@BK{UZFp%{h)<LZQvJPgYgdq&A
zuULkQ7$M@dh&Lh{U5_3~$2a94OGJzkF<QiOs}QsbV?>M<(a~-jCt`+(nIgv13K20;
z#3T{ZM5yO1vE8hdX9}c~=|w^}>lD_htdkB}rZbRFosiBFF^8QR1uD)K(Uu#MKbN*{
zX3iI}fI{D*7qXLJ`in#?HkqPJMJ%IniunG?x>Cd{h83*ar&?EwSR-P;hyx<l(m@fi
zN5ozc>qTr3;S?c?*eGH*qNr>ZvB_lmw2quDB0b{4h|;Hfq%P6;=|n(8P&7XHbJM~W
z;T0iq)yGN+NuSoqBK+)7RbimdUR8!|v<O9L%sOj`HOxx+TSd_4#Yz3pM<fJ0MC|0~
zF4o;<CT*HN$E4(a48-*DALSpUp^CV~X@^7{7I8$xQ4z=3IW6Ki1AQb)$tTR-PKr2X
za?<CjXSjNn^_+<FX7mDG^v?XZr<X<C5^-C^6*GF3;To+m)44&{E0d}19lB7^7=A@R
zWAmPfCua0M!vofbA|9FkV>%F9jV(T9hd#t7eoogn`egHr<%Nis%&$y`E-Y_Fyc0q1
zw-<Eby@(HViFP523m-*%67f^SFA<;VJfhVi;$T|)rGc?u8NP`~GuT15F`xgzLjDgn
z3C7d?KV67$A*0L4r?<*UBVC|3z>~X>!iD6Ittnlg$B>XuoQj?HKcZ8!lZG`dYdTg+
zOV5zOh1U<_s7fW13-q=;K~@*Cx$wIS!31k|m+?PKZdQWd7;>=YbRic5-R_J+RPt~&
zuM7DY$jNUe^sZX50C#BHYANJGVHb+HP}BvR3v;Jfin&mnA)2*>3ndvS6gkyGT8gWs
zS<ARkmZADQi^WB!htUHusg*gY8pAwxK=}{1tg$YXb77K<$ui2jP{D-_5;jVx=t3nI
zZg_FiOCQ`I&V{yKwDTg~g+E+S-O${q;)38pZa4C{QPqWNE^K#UhYNqYP~8RHg^&w1
zT&U@yC(Gbp7izgs+l78E^mn0-3w2%S=)!~b)_N|~r+oUXmbC%vU#tyT8@bS!p$ThK
zR?2_mHokq-jH}IEXu;6ZjJ9G}-@Ux?j{tL97uqqjH*-2LtgDVr44qx*!qC-)US>`=
z7rL9=!-bwEH<gV4WP5Y9j|+WGe_NM`5i^AWT#e($z5VUNK(78{=3FZjG1!G6E_htH
zT{U*73&UJk<}zM74tHUM3lr&}xG>U%QQTy#3!@pvuzqWA{LfB>9+{-uBgU~go^=B2
z$oKZiE=+M@whMDyn9AmKR%$hkA?Nex8KyJSg;~r?%NYN^&t*<voyR(#bpb0SEF}1B
z{9<ttJBv+!i3>}a^VD@vbh!&FxVqAX^|Z8@SGlm-%wOZeT9en&QmGnCtv0%_iA;Nh
z=)z_fwz!aJ=G2tzeTM({u91`0UX7R(&y5c;U7X-{Az3=(8B$&sBo};as;n}rpOx|z
zh5(&+rZcZigl6)?ArWEbZ7wvu7gK1zbt_jdr7|Xmeqg@Sg<W(_aN&guyIt7h!d*_-
z>%u-4F1c{oh5arh%oL8haKeQH96iWNJse^<?7|V#Im&R%g?hD(c{^$P7Z^^lo_67k
z3ul>WF`P4V&bzR#vGFd}MRw{jUty-@bcf+8>opgyGf?sk7jBw-ix#2DZBs_wts6rP
zDd!%W_gNpXK6K#`!(-Mbtd#kb;h78P%NgT;>B1`)Qn>*)Uc2zdg&$_-TZS*J@93`p
z!v{0^k$wfn{MmH&&o$oW`pVUBtl#M>m+`-M?S8uOi_K*2|5il=L!=wY8B&;jN;f{m
z7(aVC(9n_EjTWn-e&bLY*0ikY+(_?61~)RAt+Ke0$>huoe-B4ihHR#v-Hk(ajh?CG
za3iPb=VFL06p`1Bd~Wn|qqiIR-T2*&Kj`A=Mgcbpx)JL}IX4QqQP_=l4N{ijR`l4%
zB4$5D-6-ZpajuqNE#*c@hOaM;_tQ%MKQ7Bmrp1jYH=^CJnvTN_8*_~5*xeY#-zlYh
z8USf|)_B$mtQA=+xlx&ca^e_X&yTnfFs=XsUHsi>;6_6?s=4u}8?`y1I%}7cmb0HK
z)G*uDbfcEZ*DfWm<HqWAQFTqH9z%WBH(evL&b2pkqfU2Q6E_;W(d`(o$?9n8#$TM%
z%#D_Av~r`l8_O~~TA2O38IZCya|bs%y3xjswr;dDqwN`z-AYD<#@~sn-OOlbhAwV&
zHJxE4Bf6X1!;PLMdum7YaigyrbKIEgMn5<DyD^KS4YwGJc7Pjyb9JB_6WypGNB`r-
zAUFPXV=((;SckYVf?+7@FxKI$)JguT5hIyLv5q$VwUr{qnmmqSJnID3uV0f*a$~X^
zQ_P&{ZcH_Knj3fT{r67n3^!()et|E^W;4_2ua<Mnb7Q_6PB%n17O=m@jkRtpbYsmM
zOM)AV+*r*1GS(%mOIc~;8RLwr<#IPxu(OhNl^I>lP%*E~dn9_p7W+Ckj(v(=&*lc!
zjjWqksh`aZTUZm_*p=7#eYDFBw;KUA>G3P%c-(0H*yc4`NpAQ|mfi3(E2cBJurb0Q
z?an|eJ%B)WBjkq11Fr{RH@3P_--8AoY;$8fow*+T?!gW>cDixSjq@}HH+FMZd)+uK
z8|T9CAJKbgN0u0{&yD?V9N>h5bctYy{b;;mIqb#>t{!1M%6g3TI4k9(pP1|<^C{NT
ztY^&VSvUP&%s3q`xN*^qlpdt=80YULH?FyHozpJ6afRV3Ytpsih8s8Cc;m)fHgCCc
z-;D=u+~(>X*1N3tSgFs0AB?5)(2ZwqJa^-f=|6VkiOEkH8XS&(!SI^(CF?6z>fz|@
zi0!qFLB4b2y&K=$`0mCBj(%eOXl9oFnCvt27t{I5F#UpYyneV5!8=R*ll@<ABr~0T
z<BicqdXU_7Qh2bPA0bUXJjm!lCJ$1Z(KHNcS<|tm_aK8A&G^OWEi+ehvS#rhs~OG4
zkllmdOecp2BTHMijy4WWE)Q~hkcUHgJ;=vEyGEfTB`DxQArA_3sGtYW-$v67ql$P?
z)C0kTsvgjLLB%*4?Ll#d5+0OfD8*WawX_FWcy7yb)xsLZN?W0CNLoFxc@V=+1rI8E
zVE4em)mRTIpD;dDD#z9GW~<*vL{y>>SC3hYnU7<RXT8}e;tw;kiU*g|841<cspY|m
zueLwUXmy4f9@J#mv&zV%Qk$!FJgCc1k97*qPeTtHc`(O=xgIq3pos^4Jm~Ae%=A%B
zJ!s)UOAr3y{AR4pS*cI@o6?H8J!@;$HXgKPxG~C@{C3Q-FCsg5(2=<lYc~%%d(efs
z=EaoXo+j%`E2rmwuQa-|--ER$YcCIaGf<y5w;L}2`f+u*2lUdqKl1?Azdab}!9N}h
z^59<&hO#-Bb%+O3I~o&GDThFM)NLQeK5^5<mJ!S&Js8C>+JgxmOk^J8p&z^(XVW;=
z@vKy(*C&&hr<=}X52i3rHJxc5NSlm9KxGD-Gg)VOFx$*Y<F-E@L^pIYHnG8j`5x3>
zZCT*KLUs~ZS9-9>gT)>!F<UM7V5!N=JfK&SNn2Ur0ab}tv99)D4Z~Uw)|>h37?S?A
zA>PQ<O&*-|8<+acT;1Y9q6bdqWm6(V1{bTFl`_-(3&{f?oe^GS^+NW*@4;6OzHx%$
z!F~@8co6U)=z;2i=D|KX*FITvvxl7wA=WVKR@QB_9vEmVJ3NRhZ|vPJ4|aR-<7)IC
z4(;{eTn%GS5of#xsB<=kdOqmEArEePaEs1p4~}?nhLh*7w;rXrU2j!-+DMOiaGa|r
zSjjo*!6}nZdm!($ka?Ci;lX)xBv%+NcyN*766<9%dOUTitIXF}ue07Tqi3^3-u58P
z{piOYJYn+=>s{7+toK<Tus-zQ5d-bold$mz_o)YOJb26IGuG#<FIZoC@QQ&lUwaU;
z{dZTBcOHCZ|GgRg!0?gvlLt4t{dbl4;z6!*#!P;vt3jeYwbz(iDnB^$rw6|nl6euq
zp-3-a<|JoG;YCW*N#(_Z)5c%wfwlhYCk=<vvZiBA&zgZXqZgSNGP6>{6S*R?d6C_V
zs$Nv{;x{kq-;FNeMM*Dmc#+eKTwdh%qOcc5xJe!_3Nqwn&1d$L-;3Xw3z&}ecJe~Z
z0~#9t(o!kv#n>Fif5cRZc~RWVoW0MOoKjxc*(vQs886B*N3&YY%qRxAZiJP=X8JJ<
zT_z-RFvNOM&WrNQ@vIeCE3#H%t;|Z>jicnKID$V+r-~PX$+s8A{>j|HbgDDdV6Dko
zi?y~Fbr|Zh)?=k^>wA&>hq1I8dNFK?rI8nnIn>09<_t|)|6*;%O39bfN3>vW$=b?`
zyU8M2Gq*8wzEp{5??neM)_Sqdi;iA&@?yFdGrZ{RMHeq7crnq7u3mKWVgzk>x~01p
zJ-qnWi@{v&=|w*;`g_rftG!wKu=Zu8CJ*;m2ADjM;cqkHAJZS?1*K8)5Yrh-3wW>L
zP#MPNa4-JX=SX%&v5saP!#dWBaSSecFVqWCYEHl3oaDt++M^b>$sC=+N<KyDP48)5
zyttK;V5S$dyjbW(f)}&Bm_v(Jvn=ppt{2{!!hCK;KNp%uqxBoV8=_xPQ4jy?Z4sRa
z&uru@=FBCmOTAdeu-uE)3@cbyvaVuH8YJl&(_HVx1}~0!am<U2UTmU6=0%93o4s&)
zA$sAyXx-waACp=Vy{PcnO5h^X3yIS_9HJaAS1C$`HsRx{?1kS8g_+DCL%<7aMOBqm
zV@-1C=!Cu4>cuuMYId?F9jxtM?Dk?0r|n?f$-0Y`j_F<o>hPc!`<VBe&H*ndfkIRc
zF&y^di0M%1xEFK;PkHIlv^c?sl8)v{h83$UXS|?kw{Emt;@v#UdXAf)XT89Bkq#Wg
zWmekO6^5&<*SxsSkaT3}thwdID=%Jqk!+UzwikEktnuQW7x%q*=EZX_4$TxEcrmR`
z>=U|<&9XgYe&oetT41mav|I1Z6gup*J*A!-8SsMBUUC{msY#(X)`T&!Z@hR*D_laP
zgda17cU}~&6!D!;%=fGxy!dFIr=J);d-26|zA}7co%Gi7!;AF!tv^|Ru_luY=g+wo
z(&Q3SNU%tVl8{nDDhatIx+x_fA+>~VPaHWUWUJzsP|cA>LRtywxVj)@%Rrq-c>mOq
zca~6omXJ{bnVDD#GE2z9oYi!)Nyu*UZxXr;wNP443C(5+xwy}@pDnbZyb|(BC@i6f
zgxLN<e#!XLQ-I!P&uRT#!k}3~`ZhvA356ugnI$}|Ym}i;G45GHQ3>?5?UE9Ri?J4$
zP=eveEP>2Y5=u)bBjN5y>xBLBWhLC3B}C2^h`%?mMoX|tXe*(e1e=5y3GovCkYJbK
zpm+EsRHE@nC?}!3gbI{)$5C*$kTF$kmD$3Vy)mR!hFM?Ua=c3!OV!E}k~mJntWPmy
zR*@h`s3D=Igj-h}RV7rD@TY`3g^V63Vcr!-b#4_g%-VXkP)kB>33VmZW3vuTR6G06
zD~^{tqf=#%sxP7P?U){)<Jw4QAfX}8QX|&p5*jl!VQtDvbNClSGdkQOjlYsDOur>V
zD+#Slr%)i0dZt}#FQJ2kaT3N$=qRC+gdP%lO6W|7PeOMJrHuXOzO5^*6Iu+n9bZaS
zDmBN^>$Zb<LMa<*FA2RRjFK=~LLUhfqIv7bd)-&UCeG|HVE}LXZ`L6a2AU)JhhdO}
ze@$mF9hW=CyQV|g8OA!Cb%dESl3{*3`|#NUP4yTFi|#naN|;tWZfAyA(g_kK()y9;
z#$1>r(XF2_lMWL(7p+qyOqb}6PX<q=CJdWiI;cweI9)uIHreB6OCTjqm@Sm4WJHPQ
zNmwCarG)vk&Ly;bZd*uea<*`6woo;Fd;$$a!eTnP;vKdX)+G{d{1#8VRKhYgiI>xy
zymSy$P8YvQ!fFX?X!&KXn3VZ+w(uZZ{8|a?BxJ1QSkFpu<E3Mhgw3>5K1}jqi)7rC
z`+$Ul5)vgiC5RF}r;Z6o2ug6#86m+V!ONyBL1OT+QrhL-Hu~K$f!}l#2Kq!&mFTyP
z*e+oQ%`lr=Swj-&?_HQV_lp?H+{R3uq#9*ee$%m&_OVg?UJ1J-P<6M2Jq)Sl2!roL
z7n(!gCrP<a!hSj_He0A%SQ&pv!eI%SeaPa&5eY|WXMLzp)OJk5aS5j-oS|i3#{Rxm
zER_=yPSP1MM_4=Fa!LXzeSzVugmV(!N_Z#Xyo3u9u1Ut7f_9aOC#7;x!qf_}mn2+f
zpPVZat}^F4nw+ZF=@?14X-1#YnJeKotzOf4L>Ck0d#v|aAFw`TrB3L+Lyt{<!Yh+Z
zD$gW5Px8&^O9`(`el6jR$@GBo_jGa2>-Z+&yMzy>|B>MnO||KKVfaed$+rLP;|~eR
zea2o>`6=O-nVF2u2p=NNX!g{O6wE1oNaX`eKP^LQ)-*oQV5qBfKBQ--#T<c31|LYt
z&*a0He)g{Y?DU~+Rv)tY5bHxZAF})Kn-AUc*`s~P;X_Uze)pjOZ9PqFF4nw0<Yvg@
zqYuj*xw~3P^ZAfsn>9ZxL52AEbqC@L`cTFPrL?V(4~2cG{xz<M4@G?_=ELwg!irPY
zHTNvTd)bQ9Mx8b)B^XNjur67ADIa=Gb(Hp@_Pb~bmGxmSVl6&I`OtBSqs6bdaX;b`
z<_K0FY(B)$PIXRc_d%T$OQq0tJE?=K(j1{YtwtY)(P%$fEBa8$hk-u)<3nX1;(X{p
z9r_SY18W}thYwYJm^r~lEcj5>hk8EL_n{g`>#$PjPudrgYxwZZZ>#A;Ep}>~{>SCk
zx+b^V9NmDqnGekw8v4-4j5cOy;zLu@`OAk^b}MbD1v_m`za>K}*493>F@4H!$K0Nk
zUanBvPRs**_?w}#4_z3#vUX$b?n4iTo<8(p=*3FSd;9S6d^AB{ANsM`-v=t>P$@hn
z_ShVO_K_e-N7s!d9^}KnJ`DCDsXD}mp>*iS#8xbCWai3Zzn3*?xDTWwd>HA&D9YsO
zSk^JD6y4OzN;;0K<5?&8usu44%*j4X@nM{d>{k0!AEx>6*oP-RO!r|19bz9sbOe2v
z<-;Z)Hv2G}X5g@8u@6gpnB&7-ALg;Mh;_+c`+Of3FfU|HFnwx8<?$SWbg2(3d|2tj
zG9Q-Ha#|gg6wTAU(kdU?yQ5b7u!i=%PsR4h?G#$;!}}~1Q_MBmuJd6%_ql;}BkRnG
zM(106Nc6$ygY1LT2hoS#Rbst9xO{MPnuq%tUthqgsGV+Oqr2C~kxCp*Rom{T^?%RW
zyS{L5C=})ZYmilC)mZ8BPMKjJw)$|)hvPnMqbc=a51m;w!>glq`0#aO^e*msC+mSw
z^lk>)P1-1xeLn2>;Q*T_1BP>YC=U8?i2j_tHmZjij<Aw*)MrG=KjFhkhPytT^5L`(
zmwmY6Lt4>s#)q>UT3p|lu8D{2=eT;_hYJiBSue4Ub4F9nRptua95)%Rv0nG#1_LF~
zcSLV7-)6nTO8FGJ=fiy;9{BLkheu}q^->k7P?QQCwWmHjqwArJax$LN#gi_HGIGdx
z>BB3!-pWWV<FyZOxcL_!-g1ZU%t@dhYrkjy!1~dgjZd_4hFL!IoX{PFzS5<`haU&+
z-?^XUvcW%m_{ruk)?{o(B!v#zBW3zkU^Jzrkd0YQ$(o9lI;2~;q>+(UMmBcR$)IDD
zo|%$&t%=IOoKZ$5*|-l(X4=8U#x7@JKdYHZ|Da`OK0Db;(VQ}J$tWSCq>S9`7i7)D
znwK>nYkt<>SqrdI^W1ZVLd^6<qrx(ZFc)Pl##-ErQZgO=QZj5ZVq}zNUpwU}Bcm*{
zg*A#bn$^nM9RD3Vy9@_ANnK6cVC-Fa85Lx7l+j5>MH!W3w3RV$byQ^;aWZPks3qgl
zP-8yhW&9!IXoQX4Qm7*1uVD~mRFzRp20a6X9#~H~6#7#}b>2!1R&pp*TSgrjO{tZP
zx-#k)v^J4Z{EE?}9#tunHmZS)hTNo)jOIt8>2A!8X$%8wcXwEZudz@<x1I6LxD_3^
z=A21R3x<|5TFGe5{fygU>{lBZ{vXi=*Vu^L$!IU5gN%B7m7sZ;-_qE0XW6(PNM9NK
zWOR|yRW`m8PS=WVGL(IGy83mO(Sx}sYcCnSWsu*8m2#4*{do+-SqG5H7$~C{U*87H
z_=o*LtYrQxqtELKwDlqE5Db+u%#2cX1oOa)mXR_>F^^^)!%7KbssD?{K8~k@wLWTs
zY+PO@(y=%nO@)5CHATi$8LJemRxpi@j*P2*T=QdwjF~d}`q9siSu$qJSR-Stj5#tU
zZi!z?r_Vd<Tp9N>Tj$Xf$ygv`p^Q_}wk0x#DwYJA9~p~f%zYF?)$E6?6q+#0Mtmt(
zrTAZQ<Sdi1T*eBSZpI6$u3{yiwAIX!uWZz+1HH19q00!#STAEnny3vjHp;kF%C<>{
zPlhaGvy3eqN|dp`i1p2ZXeU=GS)`#dyIDP^?`4o=+?#2kG(T5cX1384Z<@oV$RG{K
z2r{Uw<Y+Qdu8b!L%h*aQ!H-T4Vz$ZHE+d~G`Tf`-W2cNSGQP^#C1baYyR-?Kx3Ts;
ztfyG_%GgIkWj?@qNX9`1%3NH-c9{7HokR@BSWmDXm+|Dejnb%`lrea;0jFi0;pkb`
z>oU&CIL~}R#$|?!te04+$uT|h3iDOdxh7-8Lq}52H)Pyo{}$_QGv|(sMp-ISPTOC$
z`!e3K|3Jn=8IPD>us)_iGVInPpE5j?k=V-ioSB+OYmqORU$MSsePc%7GSFb&GkjqE
z$oh%(GwUSPn1^pN3b(iZl99}h?{tNi@sn0&-WV$6+vW;1)CfN!{l-zq?niQl%&aN=
zNa;r^=5(x-1BTSBX;{<xk?`TanMu!120t<~WMaMW%os@)=B%t#&E_|DnSjb~e&k?3
zCu=S<C$}GYOwQ{!hE2)8vqQsf??(YY3i?sVkHUUb^`n{}Mf@nr36)rju}1q*oS}pt
zCH*MHT$Z&oD|K7OkEU}40*mQH`GJqdep&sn`4Pi@IaWKX!_18JgZ_e0W_i=8;73K~
zYjghF$I4ud^CRBO`GcVftKi4-=SB~In$ebiRA;W?M@>I!`BB@Czu2kcM_oS}`q7B1
z_55gHwyMu?^0|$si+XF!+LW~k>j2(I3Ki@UN!rYh=Ipm%C5KL*R?Mwg+pxA}ZO2ME
zbY^w%qa$4m=h!;2+1U>|B2<n1W~0N@)sJp|boZl&AHDsE=x?La(~n-v^!Nj+W}6sC
z+Q*My2V#yMwl*tj>+i<^KYV`3e*EpnKtIO&F~N_2{KowXhWoL8t}w`tfBhKj#}Ge`
zUa=1IquDnb!BDD-j)p-y>5RDoIV1cSN$WWrP5*n2@*CebrZU=(G0bCG$C-YINto!z
zB-$50=K8T>r){zyQ~j7m^L*Dj#g7bsSP7>4>Hg}`GwHHVe+B$_u-I1lLA3q5qxaqD
ze2r|g{TTY#5`69;oku;>uxXL|vA~b*bA^R|<E_gayNu7o6PO7W`LWoKC0t$V$0|Qo
zGcRLZ&bq>nl?;?G--%emyn%Hs>pIr;tdz5<U*tySO{|+u|Mf`YlP{+qq965RY$q~R
z8nnW;X@u3q32s&otCv+`mD|GahvG-Tk02fKxx$80jtxVFEQ1A=mc1W`{5VXReuVtk
z@5cc@!hW0%*wa_TRzLcGvkmY$w(-H*PWg&`2kTB&s_tUg?Z+O|+3UwX=E#7Z628n8
za?TSD`r(*oK;wDB5jxF3*^c>foVumtjMkMUV@OZ<>GN(}@Z+K%r)Ug*oTX9C6VCY2
zXP&TTo<KZdo{+s*rE`9q_v0KpWWJdvT=FB`eBm<ZlT%{8k$i=&D)WUd^M&hv-0-8F
zg7yk-`f<yTYznd~xa|i$V)B(Aul=~=$6Y_}(Pheyr+z%6<w0Bd7W2rD$8>>pTORsx
zWVMxG{CwdF?eD*FgQpriq*Ls3Kbm}ZB>&C+g5m60%S%6`c2+81T07qO@s_S&q9eV6
zcYeI5E4d#({P^I<M?coi7ryurTQKfZhS*OGpIOPF_lGI^m2<waxgurk`@<=I(uG|y
zno#-WM>3Nm6hty7XHCHxo-a^ZDg{uGnw>PP=jRKr<_l?=(<#WXz(^w}gMy3-GAYQc
zpklJ9EQ;}i8b_z7Qim+BS6Q+uSa;smw}XAwR@-k1aww=kX$o>G$fdw~-a<bx&#fSj
zf<g)kD`;IcCa;403Vv7c_IG<eR(ZOWUM3Y#P*B0~=T@px+O~vv;vx!)Du|}86uJc~
ziYq9opp=3mRRwWaT!{rj2?a?|T0t3R+aL!y)fNb46@1PuSXkRH5TX>2NsdiH3}=>S
z$F9JkVDSQ@!%?)?%)tdhIR&KT)3zReuP{WgRZ?*OXnZRLl@-J(h*$83f|?3yDX5}A
zpxzYxsi4a&o7^|Ps)CaXgr^IH<O>CI!fkEU71W@8Tqw{hNir$t>Cd>@3hFATr+}O~
zG<yq$CJTl73K}SAsGt!YqhE11d&l-!C`?=^G*&RFcWg`EL=)zwtbegKV{Oh#X)QR7
zfVM&dXsuvMEk_##C(_5YRj_uUFx+LgbdK$yprc}3%2q1qq@c5cu?ogfTLoPe{HtKF
zf^G`B)63>xj=vT3P|#CBKg#)FU6DD8-q`7-pf|0G6Y+f%yk01rUvAmHQ0S}R(n5it
zKW7eLt+6hiS`Ae2kAlEV#~=k;7TBL}w2nS$r8j?uaCNwX5emJo#xPoV2?C{AHrdK1
z2ssznqx;z>j<bzaFiHWzXx1^TRIQmHj8`y0!E6O{$fS8tFkQh69{FSiWoy`{(!NB*
zPNCgQ5T5)NJD_FkH0muu*per1rh+FCwq*&zEC#KUmAFXV__?%NGQ=)akf2~5Er|qS
zKAjx}Y*ZF7=qK%qXw4|tFx0++mij>Z5?U1rLbv|qmvVKPg5}h_znwz2h8y~EsGX8&
z&My|St)XK<Yde7A0jyK7UO}<|X4+#mDA=grpn^jRHYwPwU_nJ8<t@t=1&Inm3c?DU
zw2Wyc>2x?_aj|+8NDAD{9y%y%ZQs|$Q`E;y;OCG`TO6KpPGzgYRq~00%&O^V3_9!J
z9hR*Mwkg<aMz<^2#k_-cC#{nm7TO$jMP;{wJ?tm-zmIu8D@6||xR@Xi941G>L&dli
z>QM#96x^Xhe=_<wtx^S76kMf~NWm!u=M`K~a9Y6`1#4;u=M<!QWIap$ypG%YI<Cfm
z@^niFrF=YvNH5abQ}8N5xZ2T9Rl3Q;Wd(G%2Xd|{xK7u31yvUb)GFN~;RgK)P*7r#
zFy(dJEjmYD$5EkfsV%`>1@{!=#m0TsG>Y*frUwdERj_8e8U0AXV_Gc=o+|jJVAcZ5
zGX>A-ggR&Wtl))$mkK^`^%d#onD?}n5-hLTp`15#^)vY$?N@?@%x?RlDf45J|2gIp
zH{8%&_`=Rt)((pVa=t70q2Omy<~d833f5l=KCQC0SZG=BD*6thA_9mEAb9{O0!SG^
zx&YD#KzH{|6+mhRV$h>!iW^T~O%uR{VHPTB1L&H;Mvx(Zi~-~bAZGxX0>~Udwg6g9
zh#j>^$Pxf);v#`GEAxUyLfHwi*#r2EtJNmNZhID)D}dYq6bPVT0Li{Z=LsNh0QmxF
z^0UIpXBKku2hdN9|2=@}mtsDT680<-$Sf4V<y-NE11LfxZzd35?qsKjl-*n;6s7Te
zF`z^MB?Cwdz!^ZP07?fiI)E_&lnJ100L=qv5x|y_5taZP0mKFn6+m<V)_`%Lvjq^t
z(C4Y~9mwf5jjvSM*-1XsQjVcc0CfW>A3%iwDh5y~fZl`u`xaJZPKXPj>2;%dd;ot0
zP=!sZRu4chxoQB_nEy1L=&weT8UfT~rxt5%Gg_^J@nW)G0QCcCz-CSUu4%&n8gX@S
zapR)Vn7N7Bswu-?tj$<0c`CJ}BNaf$06GQGI)FCpw`XljGj_<*jwa-WF&MW!V&ZY*
zTU8x6y1rmU=K#6{&_93y?2KG)Oj_3fx^b1bJ425EdNTB4?akVUwJ$4W_G6%1K>r=U
zzyL;?KHV|qACm_K@UO{(8HTV9WgQm4a5FlBq3_eUQKqwFXZ+Xz#s#o2fP?_X2XL`>
z%1HrC=7b3WOf)lTi&IRVAHdWArUfwFbjqwZ4(<%P@Uk<DbvEl9*14>dGcN$O)qg8t
zK>#lg8jEKUN7n_gK7hq$=8^!GGB0CYZu%<%SjoJKb+zfQVOSf$_eBErNo51AVKcfh
zfK35x=4!l9hTiw1-`!Kr>iscd0ImSNM8}x`+yQt3*dM@w0K5T60R(Bl+{zb#Lg(^~
zWO4xh0G|6J7fm+S+x1?C2IvovVnF-5$+Q4=a}&DxsvbZnU_AIT%u28|fNdsk4`7GM
zI|JBd^3cuL6Tsd8_L<`^w8I!}wz{^1>>LZ=cmRh2ILy@}tVdaQ6)?W=_A(T4B7phF
zlb>XBUB;-p6&$CSDY`pT#MuDO1#mxr2LYUC|8f9V7%tE<2;dS;#Zlu(O_*-1^Q!?|
z<LC|6>#X8fV{MQ4ZY12K`FT?MRsgpd?r_3g)_bg!Gl?@F2Jj?+r!@F0(T@Un%+c&q
zjcq-niKR(khaMaHf>uZXuee&eYy^EVk8;`{GUoYB0B_l+Uz)sQAoD$~$qvSlJ_YcZ
z&Or?WG<*r*D_vxQs1n3CS{`%>4I+OKKWM#GtrQVNWYB=00sLZzI9bs6_8LL*AW{U8
zHHd6Mqzoce5cIT&bU`49)In5#9X*cj|G+>#Rnv09sVkPGYI+W32trsBpOH0F5SfF<
z?dz#z31W=LLZR$I{KgG)aJST!N>cwhgUH35&^G~c2azWTg1oE*(`LldFVTJv8ox&?
z6hwg_3Nq6}zNk>Oa1f*JlqwR$?XFQpgDA#OJct+uGD`$elDU-Wlx8TyT9(xkM3fng
z4#LW8Go3Y0O506#1QE+zE(r3e|MEdpV5cH$CDzKU6pafa-eelE5Jc4=&IfTJh-yLn
z8N|>ahSBZ^Q6q@@K{N<rbG?|FLDUN(=VGB&5SJrLpNuG7I|$M`taVwt<w!+4PSJ)z
zGzy|;5WRwE9K^o5wx&V+MLgZogf%!?Xck2CAX){{I*5LAtaKOU7D3}?*DYyxp2QTd
zX6@D6+9rs$LF`Qv+bxK3i!2K=TiXTEK8S`ZtsPiL%h4SfI<b=9nV}17S5|7(J&3mr
z>?QZwd(bi{Zm%@d(mRMgK@8-<^vr4P8^qtViSJe#VLvwevkstx>ovYJStVT*MgIw6
zP!PF`+WzI}5LyykCFffKqwUH?*5N^n2to|P6~st7=!=E1)H5v!W~z>67(+9hTj=vO
zW_%D6g7`ShvNDK?K}-r7PX}HR#N;4`f3i#oVk#Y)cJaj1*jd0z)#*XZFnK1!tRQBa
z&YU3T1~D&)`9Zp`yM+ohp^^j(IW2*85$j^sC9F&7@SToc7Q}L{5+}9IztO&m*2Z1S
zYFcS@?r^lpVu2nEO$qC`x}J3d>&759F>Iza#yMMpNMwidoxEQ&tHrp3@C0!vh{Hj6
zgOGyQ8pO6Bd_i=GkD(F_LT2`}Dna8*q=6v%FR<Q8jNUuUrqYs*w`xJ?L4?d!VM>^3
zrRL*$+LQX(9>k6yc5*_E=N2+|(dwf08N}`&oI|X8f=Kt>LWM&6gE(5=+P-Ma0fw2!
ztp{oC6^)@%r(*08GJ`l5M8Z$ou^^7q`sZ#>(5bh~n!#xeR5eE4{Im5`kRGgtlD(tP
z&{;g$vTC=5_-qi<GFrdYwI=Uo%UjxZF^Ee+bXCz!#pNKb1W{B)F%?&XxE90*S{}4(
z^jDAd9_x)D{+JhWGl*MUy&c4zAnuY`#!5<W6%vr%58?qQJfulupne`PJPzUs!&BC0
ztj}3ruu|sBAYL)QHl4aHW8X5rqv>5Nyr&7gX`i-O*qCVh6vXGC@m!<=D!v5ql`gO<
za;V10zXkD=_G`8Ar{p{R72qD$FE(B?{4#q^rXqrqBUL0<k%Bp$iu4RARit8|CQy-D
zMH;TArG#Qew^UBPvt}@JvM^*+k;!y2tLWL)$jr)4HrDKBG%1u*1?@;a6}e15H$xs3
zc}-{Zh=}|q|IV;rnxmlU6jD)`xrph!c$BQTiV`ZSsrXYxNfo73#B<ceKTo3}l~z$k
zMOij2D$1!i(A{`N5v3y9?8mCY#vH?HXLXp-SQS&s{WlNg*{r}?k+l+QWfgG@+j!>x
zV6MU{u+kQ*s<^UPpnFkPXQ#G`Ix1?I(V8l1G1D$na$ObmRCG|$k<I!lny6^1qJfHr
zDjLx-%548*x3#f~zpqE<PaeB2pY31;$6qR%sc2{R*_@$;imr1khYH5D<Z3H3+FC^$
z=C-EeyKMXjrM-%Lv;O;?Mb}Iboy=%whAyo1&rWw0JyhILahHz1ie4&Ks933@w~9V0
z5@^@<R_LpupNdf`Myu$r!qUk;Sj7+(1DLnfi2qx~Koy+?;UCsPtW^D1HU2dw7^>p)
zVu3z7AHgt8#c+nABV)-Qse%e^Xxql9F%08WjAs~Yh9;<($YY+v{v_tf%(SypxH^?}
z8tZh{8LTr|DQ%XD*~~588;gf@u8Mgo2&l|wSfFB|>116ZEaFWpR<VR(sfy(c%UEf^
zH0-3oui~B)RXA0wR<TCKT6Q+jDWhVYiZij+YqyfEr{#UfLT{o{!%ZqSb57I}<4oVe
zOh6$~g-gXj6^B%~Rd`f{Rcuw^rR^>eWEFlD?Ux9W3LhPdCBn=l!r3P=51+&+Dgr8k
zG=?QYl@l?l3Qfg}B?5hV?pq@4T_TX`)M|+kV!gCPD3#8!O~o!1yJ_0fI<~9Wp<*Xp
zWR?mS(>kaS?4c8UsjyGQeieI}=}wOImI@u03I|mDvs9S8RG5|C(ILI#u!<up&a1ef
z;;4#aJm51bj;lDK;*^R#ONF;-9M#e~PSRpqDp2t*6;88Hp({%T+OM-JhNW|yqq$1w
zcuvDmaY;qrw2qr}{ihR9#dW%JE)$9rbX-+&jrj);fJ_=j$z{R~6$HD|I&Se!-R9<h
zEHgHJPsM!|l{8e=@Ib{w6*)EJ(y)J|?U9OP8X`12R`Eo|Qx(rtyrv7zt7vPa{W*<l
znegaR4DkyUq%T#xVj%u&nec`)-?F|_@t)y>if;_m$ww8RO#aO9Ma5Usk&nky&UY0*
z*!gMtzZfVjQbTeL88l?nkU~RB4QVu_)sRX<!ZHCG=sS2j{uDgRgwz@iEfXFr6Miid
z@+=n|%Z2QjW726zuYrIH<uqF^RI3}GNke80Su|v&kcQth{B_Po{fuvF%cf!Aa)DsZ
za>2FS_?ll14W0|uqZh2XHRRDyPBT7Rq5mKAYAC9qn1*~BY7MjG*YLZB0vbK6+)_jX
zK3NJfQ?(F7Va@p75mkR=i=oFZ6xUEfLn#fV7u!egw3XCATFPptLQq;m84YDMSTsaw
zh}Lk?W`B^}o~CSUKfB$k(QQ&<?HU{mHr5!{Wr+?7mE7WprGvX%ATHfDwmgry0xJ!^
zA_IN=5vL)Z_FY3W4S&$w-m_HEj2o6N{}8wKW1OI&Dx#`tsHWjh=DMuaS!-yxv0SLh
zTuU=<Geya@X`Ejzbu?VaW*^_eR*$3gSsSo6WTnhT8X7Y<F`cFw=zAj+YEH)`V_X{z
zZ8fxDZpqq8Lu(CRmkY&DSsuQ3P)<7y?KO1Q(1Y4)=%}HyhAwnWR|ui_m`)lRRu(#!
zv5`it5NfXwx@zdAp%e3!<I$AUQ$sHey*2dFFlL3YY=x2UUm=`bA@tSIk2)-4TUf>V
zY=uCbP!E68@}Q--6`8i;A3C5KPUtwP<6jMfX(?*>q~X^D%McCAHLTDuRKqZu+fvry
z8s=!2ORKJ5`4JjMY8a*A(s9dZ&3G*|leVs5tcGzK#*=T0$<VOk1R8%`+f>$x8rB}S
zOk$nP&J@-<`(r3)nugj3Vy3e*L&Jhuc6x{g`E&uCrC~O2BGpQvz)E2ro$1pYOX*mj
zvCXGU4GY;x(6ETipK%mj%nrd4hS?8ehGn)c`4;CJWM8IXV}{s!gX}9ctkQ5z!*va-
zHLRf(zEV(WcpBDe7%|-z(6C;^1`RF^Zfd1rlLjZH-HE2MnIVyN3v1j;q2ObC&)Tsf
zR~z-RQ<_JESA)#srz#~#%sy6{H*);6m}|!>tOVq|+H47GAWe{M8f9t-X$aH8)^Jdx
zr(I*4hFuzVYuK(~{%C880oI)wcF=lmXWLXECf{i5`)ihFV{Lmh?4^^4%RV|s#@Z;k
z%16tD<~C9)R6V5Ou!fTwPH8xz;VAVSvYw!wtq^mJP71CjxT7hV9?3-guV@ju*B*0P
z!x;^iHC)kfR>L_B=joK8>)QY;^=YJiG&Xcm11W8e+FqjT%xL4eP86aZ$iGSp?4y-7
zw>w?b4W5u!8g6R1rQx=QJ(*+gX}GW94)a}BGU>6Q4>UZ~@KnRZ&z46T>|-5No-jOS
z?eW<{4n?17cus#N4q9Jmc&TBU?jT;Z({U$D)UE>d&Re5j^EK^_hPN8tX?V|7y2^c^
zc^2#hRI=A}e5N;lXl?5luj8wRZ*)D;QC-J(4L|4-s-w7$pLF8TX|5xij$}F_bfngi
zMn|NM<ht=ixKykuSW~k8y;4}1&p{z@b?QpvFMe7b>2ze&k%`UpIx;Y1I1)qA#VH;2
z$Hiu5CyNexcI3L1LXaEo%J0ao<2N1ob^NX)hmM>&@^WS_9l3SnVWv(z<6{4XvE3sp
z1)IGRK|US1QaNtYDW;<!rxjr>q@%FeYDnq$%Xy7fMcH{;A(ps=j*>dc>!_fkl#bFm
zqIFm~p$u!3j<Px|y7A)(${)>25Z5LpsZEDnheJop((y4mUh<B_np-T#P<xMsGE=P*
zD(a}jP8HV5I^xXCnVBQwX*OsdR~dVhv{Ted&{0)KH5%cOm>3StYa3rfM@=2=b#%~C
zi+gCQ<1Zbxb-JM_>guScqoIyQIu=HytgoX1=X4tvOH(wKj{^1Fn9U|S5=@7nnU3Z<
zTA8D2!O-&m>FFaet#z~^hs}1Z)SHv1rOqm$qmE8G2GIpsM`s;fboABHPe)fB-8i|I
zj_wRSbo69+cqAt0(U=?g9q+1C8rvnlw~jtK3YCthZmG0eWh|=xI{wx%P{#mnLbE~U
zKg<NZHW-;SGlO*uVRIzwP}bqB!&nEe5=Q8tl}7pW(9%(C5|7p~hUPQBgUVP2diLl9
z9TRnUba-`4(lMFlO2;A{Q)mYzdKesLFih1k>Z4_vj@3tP<Y&ohovCA%4gz{vLP}*e
zSLf)M%P^01KI;P3g{*O_jQqtqmgrccW37&*bRG?|F4M7`PS{!wimuSHl9TDlP^)yf
zZ&*s4v98wf;G&iIk~M~M*6CQU!>L2mu|da19b34c+rw>JHaIrXOkSkxp|Kb5dN}e-
zw7k1&OQf+$mdarp-4Dd2BV5QBwp%xD4?<<)F^i<br{kcGLpo#~ejU4Y?9rjnQ5Nj<
z7c<DC3h1D%xVOivIy4=+j*yQ2dt<^hC#!^sb7Ni0ER%D_Ze^4FZ92A_yhF!MX8LjN
zE{0a~ZF_l~ZCv&PG^&@DeLD8j3Z!Rax$Fz`#FOrBVn3|o2%S3<jsJ0u($sCDFKQa|
zChxTqAE&cph-L2m7}8TZPSX`8gx^CrqvI@H19kkMaSpbe({WkH73T9gE-+kVrRXI(
z^!bdZ-Cfn`v59!A<DHJ{9DStYv5p%$ZtA#2yHCf$Y;}j>9_w9Jag}i2j4oMcd|vR7
z4$%6j9jk;VI-YXqm5yf&FIb<O`E)~U%73XFcg7|lea-xa_2eqyy^aq$zHt6WI_dI7
zeP;c{`g(1$q%!h(@~>u}-x#i}P4<%^T?pwz_(gvLLWl?<G6aN-$w|&ikTQf6A>%7{
zyR3$v%JkFoBk5C9^Rf|X*i0M3xD*vBCj(bAvu0$aVPs;sy-J|H%MwCXu4ZG+&iWf`
z4p!<UX9&5NbDK_{5b`qTGo6;*$`=TsU<iQ_f*}+Np>PNbLr4grNC-tk7!bnWAruRt
zcnIrC+4_f2B7_XZVxvNc4xwZSr9$|)N+``*HiT@eg)&LJTCgxsw83h@8iFl^xDet)
zhzY?SLb(vihp@g{B}WLcA*{99i5qNlT(razR|uhE2ve>0Bh@NVsc_IyDTE}h%+UCt
z<Bt%kgz#4g%|Z}DsLGu*4WU{HYI1v>5bB2TCv$aHGHZlTlew1Z)aEfzh)O*+8--Ax
zp+N`@lVF>J21W^u%~nl9=($=Tr_ezMjkb9REkbA=LYok7SF6;^VsFWVr%)>f+O@Xa
zwo3?ILukj`p0$J7XU7mancO*qQQUtw)9DjJcawY2)|q>mPVW#Fa6S#GFPr`N5L311
zH_NG&u^ERMcfcDM!apGl3gKTGRS45U7#yMp=3?V&VG`@m5JrSBGK67VC4YDb+fUgE
zMzKTH2_cLQVGLItk7LHtqGhJE@tjOR3DjgFD<u$54q-|NNxW;dFg=7BA<PSbdYBmk
zIkQ8U6T++zXcLr4KDA29pKDg<({6GCg{V;Gq7W8`pwM^<8*dgZ3DFl^F{iF$X$Z?g
zSZ=QKbqp&)Sjn);^jC+lhIy^&?7e4MZ}J9)jjWqkH;1r6H9mJv4B^^p!O2P>GPpu;
zGZgk%Jq+FuBnBU=%u4zG5MIaI394PS<XUG}L(oEK9!85W^bkU{_`|3aMmU76bm<7;
zSP0ufC~(5QD};CTVhFZ}u!GL8)dH2B9O^j0PNChLu!nVT2>TfJvmRhQ$a;wNFe|k>
zLZ^8`EWz;*PJ~c43`-a%LpVj(t}s%DahfjvA>5+n9YT$Q70-rnE`;;U+13abs7W`w
zWsPt>gp15ny~J=igeweJP5&BQySmva;YJA5gvw2ZL+7k_%$#>2+zsJg2=_yHz~(E~
zhpf+7ABFIk;R!2s_%wu1Yb^xNP3Hx}OIC`$W_V*p-!jnn--qyl`6KI3)=wdPX86MT
zHH2>r-$VGpK##VkZBbda&e-TLHj{-B5jJKcl9eEN*qAYbSI+2EVPpy;GlvjHYBMKI
z7-^Z)nNIpJGMJo^fi{;V4C~C;d|~7dBWoDh!pP2{T&%yb=3u4G<qRWf2XmWF9)`SO
z)Z}6R&edY91<ag+428ldY&u04iiR<=wT-%^Qap?jY?d^0N`+C{<T4C&Afm#E4#N>f
zEDbx1T5AMb7%^dVU1QueV$vF6{Tjg@HommEjk)Y_OSv#AuycNmP@Yy`3mZXFLgg^%
z3id}BRl<0=Mu-a|o}u_8Yx=c<5JuH7nuLviyQ+opXBb6NR;<g_>Xf!Pl6)#P*r~}{
zD~#F<byz7{HHEz%GyTr7ei#jy8?rVsa~d;L@8)P4#$RE4+8Ei4oeJlTSICjDw+y3I
z7+=Ep8b<3d+Jueoq<x^AFxrK&H;jE@v=5_07^}iqP0=tqg|Rq{C1G@?eW!U2V-(F&
z7&p#Zdxg=Pp<5W;8OZFx&@&8r>L^vI^a*328SNWJKa=~1F~H=%!<bR`zx;o~7!=08
zVGK5-!@?M1^3bsH)(v$#+;m2S@p+D&oY7&7VKX6&v0;o0V-8oxhcSU+8tcR`CNWTx
zYLQW-lf#%|I#a3Pk$5txOlNZj>&!4_g)y5Zs+bWfe>aA7uGwl{81tDIn9jm5=y6w+
zv&eLkx?LJJ-lrm;%Caz)o6!|vtTdUXZVl}w&!H!bO>^z*!f?`olcU#j&IU7cBSlT#
z9L5%t6KVY%Fh)p4WYfj!W~HO!4MPgU7lusZWYZsp5=MxbKEh6F8{ld%43&XQjX@71
zY3jnJzm<V@c00ok)}5@oSa-8h4|~FxSj9Nj``Nh}#;q_8gmEy8Ltz{a<7yb!!Z;Gf
zQBJrR#<4Jt({(<KGwht8v(M};wzjdGr?^U^B0d|&1v7dsjPoYb`*=xQdaZCNjLW8f
zg`wRtW0$WdnXKeDDq)QCb{KcUcofFtFz%YIPUbPTdoPUp>^xw7$V%@PQiu-slQ7<}
z^OTj$XJOFbpL6vEo%;;0%;;;nc7=?#RNk`rE{ykPl$OUwK4Iyc{lxH@&hb@Ns(uUO
zJFURA!uHM9A7T6qBXTQ}Z^bV<ttt!2wi-&M@me8*x$9b^`hQHl1(Xz5*EP%xvT=gD
zB|$?^>yQjE&`5BXU<vL7_n^Tg5S-xd7W9Gks`hRO5;Rz_;2t0l<ll8B_5JT!ckQ*$
zKIckZYpcH1(~_LQflLm-fsE9R+PCFH8(A_tki~)V25Sxn7?ah3!b!>PmRPfincV??
zb56bdax1?@AGy~4i37R$6|M`PxRA$zy!<ZLiJ?y9b7+VDEp%X!1Nj{&;6OnK3OO*q
zfq^X3fg%ok;Xow^iaJotff5dsbfCBcV_n82`?SNUzRjIz%biG*oT-!pr5!l1&G4xM
zpE>Zk@bZFX1j`CCpqvnXeypG?6&>(?kw_QIF*wlBfkqA_Ibd|a#Fm`0m>sY<_&*&3
zxmA=@2dX<@6HYN%NM#4U6!Mi|iUU=IRAnDls#Z-n2@|t0)o`GW17AB}cc7+tYdKI`
z2)$og5{ak2(6BCBa>h{KfqLRi6R9*{jg~~3jU8wru6}||9cb=A3kRBsnMI0f=|C$n
zyF1X@fi@0w5|ibB<3Kx|w{>8FR7$<Q108g|qXXaS{5uDN304MlcA$%hT^;BqB(vmA
z!ycR!4)hYekDj-;5LVGwR~X#if$tqywKSRkz-1yC<iKDD<~lHst<9Y{#DO__{7?sm
zIWXLT5u%Lagmhq}1Ea(o?Z6L0#t1H#_KX$I2D2+B2%qf06d@BGm?Y#!J!aT?ZJ?)$
zIo*M2Lek2ap~uV=GRuM4x-vay(oYWU-k2((j6_b_pB>sgTJt3!ZcSVugbLfRnA3?%
zz=01AEOlU+12G5U4*cT4atHQvW;(FKft3zycVGwCMb*?*4y<uttplqan0`4m)-`!u
z_vCdB>{)By<iKVJ)(hVtSfH+Dqmbik?OPnko<3=t1B>rlx3a-ojU-*&=8oNxNp^B-
z^|n3kZQkp^E(hM8Fz#kXuKnFcMlvJGuMYGrk+RPLhPB&aARct!kOOW9JPsU|@|{xh
z{~S0X=21b1AnR)PyM?8>B!(ur*TDy%AS?<^#R0zq0S8pc!iG@{3TLj+{}Gv;t%^7h
z)$<N-WIN`-ac({i{KY<Z;DiI0B+E&`-yJw3<dg%ag-qCG=5?KQ;G6>&9JnagdtQ(M
z^s)gAAo)Z3jV3F-?7$TVt~zi{3b`)0_RqvW*&DrV3~p8;g<&^DzbWD^DUJPk$AP;J
zJa^!Q1NR)b&(7qU&7Sl?@S$LVrHNFS9_i*2DTMk{A<uXr{cNm@>2C-Aao~*uFCBO#
z-uz1wU+Wo<?lQBSx1#^67xGRB^BQwj`{+PAC+a)Vz=;GW5}o+WiO-!#@8lUfDBwgv
zCo(#b$%$M}eBuP0$m~RRCvrG>Cr@$~C$c(`%?Zv!nw%1xMdT!DUIyfJY7>THZYT0M
zK_$OnUMV4;U|M$OrI)FY6NQ~9A+91$6m^2Z#iX3Hx>#m$5t(s9Q)@{lN=ZhVrJeZH
ziN7Zp$P2hFY(^O;$~sZmi7%Zf=R|oYj82%GsNh6JC%$l^k~EU_vX-=#7@SCQq7heC
z_vDNp3@n7i?1Y6Gd)sVIScNc*CS48s*pi)~$t;Zj%83*wYB^Dxz4yUT#felQRh_6N
zS>ipC(=t|fqK3HaP7D{ZrUWooT1*`=>q^YmPEb78J-MEkte1r}WTj5DbE3UdTb_-b
zXe}Mp#EGU(G!wC<Aid3<Xd#><LbH{wQ>4<yiEo6^)mA#6levQv9i8Y!(}{1L;7-!n
zi7rlj=R_yz^R$6x*L8KGn-krg=;1`m>xsP5w08ECX0vnt-$nJ2as~*pz`jEIIniIp
z_fFhjYp0%RoqeDvg9HZ)PPL@cHH_Wm#8M}gIWfYCkxq<rV!RWhoEYuI4^Hq7|1nN{
zKgTdEV`}#b=2h9Ol`>Z!>%_a4mU8Rt)e5CdaAKkpKRGeiiAhfU=)`m<W^jNCrA&5W
zDyPRw%bto=rZ_=-_R2zYnuvFI8e05dp6SH8{N~wQHL78j6Q|x)dpyKC$B9|PtkhT9
zQ|CGHvlB}=jfYw1JF&otoek}a*nr{I7m9hI6FUZ5leVN17mJJDJ5P-B3}$}2{)-dK
zow(`5EhknuvC@hCP8@J*U%;+%VuKSKomed<l{HSR)%iLh>jkq{)ow-G#KLv&W+%4j
ze5(`Ngl`wzA(&F)zq{9VIk8)h+~dSv;lJw2J|XQ2Bph_&kP|1II4R0uCyqMdNDC7@
z!ufX2*tWIZ>4Zy^h@jgEe_GgZgU1Q4aG$OyPN>4~eXgAj9S|PWy&)lC!PS4Ki*n6!
zf{FS5vi3FFG2zDrY5vCPAzg7wSN?F~v=hHOafXA~+I-fDb51;JXR5W%e%=YD3r<`V
z<#85sr*(F^{$60tojvK26PKO1BISf`X?=B7FY}rcf9m|YkQ;&*3tDeG@t5#yF5GeA
zE_YWKGPrP$^IY_Q1Rn@KcH$wIyw~(dkfi;$rYGWJbx)mmrt{}cywLgILS72Ka^khF
z8yji2=e=>_ttkHrz7u>e_(6~{ABCiIX>%+=Fwuo(ceQh#Gm1%au(&Cca0q4=%%Xd<
zy0G_|_5(+DQF6G@>W2CKSyN6IF31y>bMwu=3!}Xl<3(N<^0|=LgM1$3ccFj_72Wv4
zje;%|a$&6t>s%=8LJ=3fb>TY~in>tDg(@yob)mQm+ZP&2x=>0;3BlEalPQ*Vp{xt#
zT==tewNG96%!OVn44;chr3}4e4J73y%U3QOZ)~n0yrK(VxKPOjgA0{KVQEP&Safa_
zViGjF;B0APfK~U}Tu9b=;SEV&>bw|ISVf9d#Qz_4j2WxB(7=U;E~L7Ud!4zu3pHG@
zyR=i9Szs+8HC;G7)s&{xmZItiel1v6u%2LjUf>e#!kHS0($R&+LYlbHlq2Xua~Il)
z!k88=e53Q093bJXb)}69nb&AVF}39=WHhJo_AYdgnC?N%#a}raRkw6<p|cA=yD;B{
zE-rL+VT=nuxX?`^2dBjg_7G&oo@}iPy~XS!_`M5#h4j;7`nzy0F)6Ly0WJ*G^+7J=
z+Njk&M3kX|!vu#5ju2$PNcN%5N4qe%iZ)VXMVZPe;n2)+VvZM_AUM&5NkV=UWXxn2
zrs%xFHq$g0rgI{Vwa;*2jtjRx7-ot&OK`Rzz5J)`PvV^`$gp`rs4tMx7P_!V$jEi}
z#X^?2u$0T;f!5p0I1d|`<F^g%o11^pYhUid3Z1VMvdV?kLe>cK5H03i@4^NbuDWo|
zg^ez3a^bXiH@mQfGu8!{3tL6`)rEa7Y)hMUF0{y&!t6W5wNr4H;BLV^T-QR1WYD_q
z$!NoVF%P&v{>gm9K`{>r9v1wc;1R*2g3Rb}Vb~#U1l=xpT;Ksj<V;={!Y)K4%qOV0
zpbGK3FeASuAUr6@_>c<;E-i0VloKwTbRi}@E_h7vxZrPs432%!jx9RnLSjD?mKk{0
z9L?WdIOD=uPB|COb8C{xf5K#cmCZZ=W||j7yy(IoLM{nXzwE*lo#&Zr{?mo)F8u4l
zI~Q)aaMOjiQtvGey$eryu`c{2${iP<d1_sJ($HzN;VxeST)5BWf6+iO=W4?P;SU8V
zK62r)@F%)b*k`y>N}DIorL-4<e+#}8d?m<$*Dm}c{Ee>k+n{wCUrmVbUHIriI=8lw
ze&B91#YU3gMhlOnw21uId7>NX-N+zjMmIWSte)SEOk%=~%x+|HBdZ&^-1x+eY@)M}
z973|YG3=!_xH-klJ><VVDz_VX^~gMK@JW=6Vai7_rZuksUjihckYF)43JWPB$bh15
z{C5ApT*cie;YLYu@sGevrQAq&-jY`4r*3>EuFnO_2$mHrCs<yP!4=%vBTz{yxnXeQ
zS2y;#k>rNajh1e-a>L|?*^QcR)N;e(hSiN!H>$f~b7R*u10Shb#f@Yst+HO`mqNZ0
zOcA`C$Hd60ZV;=v`Gi?5V+}W|JTcoPfHyF(4g7xZlVECXH|n_2%#G&a`r3^KZZveG
zuA9%eH`EiXFPP<pkqR@;U1ujYa-*?iX(C9ashfA^Xno6jXo+oWnp(J#W13c1Yd6}s
zF~p6bZhYfLTSmIk&5a3<wF28o3GMZAItb|~_^se~ZgdjTS&&(}xRLP-tr^`#>FGu<
zH+l%?jVOHarK`XZLvJ^p=dtt=y{}+DH~PEry>P}17BWC^px_|4c8UmHOxcE7hq-xf
z09LxO%8e0jjFgx~Zj2IgWw>F!8>8JA<Hiqej1_UV8{>pb6CBUWbYr3$|GZ6_EXpK7
zmj5FMH>mXw(-aY>x=|>PR{L}@X9&*J<7Wx^XREd_=Lr8vaIWAyH+~k9{;F2s0yhTV
zG1z7r7P_%ugke{Pq{ZT0BDhp=nIMCIabvmg6@q*bp}1Q2Zgpdg8?mc~9<|JC-B{<w
zdb-xxH@Lym2uU`INwUd}%{t%W#>=>wB8%FVR+Jk%gzOaDl_oAU>~>?1&i4x84NLpo
zIKcVi(YB6*ZX9ysBNv?qhu!#}8|U4);KmU*j&e;&7KdQejUva4PB&a)x&{4$9yh!~
ze1eJ~3s>EkR{g)V9B?D3>mfJ7I*+(fF~9cW#S{}U?#3}Uj&qmLV@|tqLikBtIVFS-
zjApLi-8iG`XNCN^!8S_z`Jx+taH6{L!i`IATz2CD*T{Oq6*sPOmpEkNH~iNm%k8v`
zg4YFa2;LNAEw|i&ymuo1%Z)pt-xa*4$K2=kqH0Zg=*A<d=&|5aH=YP#)wyyf5udry
zZ?~D`Z#{27M)Rc`uXN=#C${i6ZoGBlU*Yd{?>jd>T+`}e`ryW#A2gES(f%9?4>Eg@
zD4b?`4>EWVerROM=s_l(^YO&Y!beCGvv`ozgIC#-vU#*Wo@5tJv;SyQP7iX)RQbe%
zJVF?s+k^38!;jOo!@g+d_n-h34<<-JK@W;}P}GA$Vip$M^H^Jt#XKnPL1Pb^cu>NF
zk{&b=Zz&H-dr-@R+G2j{L9z#xg@5M3=R(SOP}YNT9+daMBuWKAgJ4C$F9capC0_L-
zt!+$69vJ_RZWeA4wCcLegSiK^{^XmAFFhbu@!%^DQarf&!Z6~9rWaKWRXunfGgp&<
zRKe;V91R<42xp94NKFr(TrkmOs^dXD59)jHpswv}4~_*)bv?K|(J;GaDi;)M9JJPu
z>9E#04LxY2w`Z;0+SG$)9(*rKa}QtH(cXg&9<*fkP%7hFiOY4-+}eY5=d^{^MwD+n
zXseggPDrKqhK@qI33B)NmPO4rd?(mRu(JnUgi!A)M44vl?m-U^dh!}~B^4N9=<7i*
z;k^a>2-aP0ptm2pYm|YhKYO5F^0jq#&cgv74D?`-RQhI}eXtO=bBG5+Js9S}a9tVW
z!3g0a1xE>v*1gxEZQVb3FjiN_3E|A2=)oip-h1%DgC9MZ?7`0-%=ci52U9(mEn(9<
znC`(W&Sd!j!iLT8U?xAeuD2KR7y?_hQJ_ei<H1jy3Bu=b8h@}{DqD>@?-wO9E%0EU
z2m3v+uD37rV37xlJy^o|+$CwbhsVvqk|$}Y2g`(fvB2<)5Z<o2(t}kVtn*;K2dg~@
z#f<a!8;DG6JXkAA|Bfb_8>IG~f*U>9<iTbSws^2rl%56tdksx{G2KQ{bhd4W5dJht
zzRQE%y1vJQy*mHZ1J^ZevK{c?pa-f4eh&_D^Y?(QJ?g=~iwysh;3Mp=p{D+wwBV+0
z4Crohc;M8_ae4R!oz`O>L9d`sP!Xhyy+;gqaKnR}9t3%f+<ZKUZ~}X9#e=8^F$q2=
z7#BP#cuerP2fqnnIVacy1+*1?N|e(c{4QikALAK4<}7E??EgmUyoeVBFM9BY9&^dV
zhj(i+{1?Dg4~W-2xF&@BPa#7RtmHh`=#~dZ+G#!T*n`_1{N=$NUif)4|H*#W10ug1
zxF>}CzK{nVJk*s(9<-@yqU(tVPo)9RJb10Q<hchgg#Ru0QrBMzX|mq_kFLD&;H}R8
z74l9nrI-C9*S;4GylCh}f)|Nil=7mq7wNso;ME4Gs23T%$mB(CFY<T+FEV@4riUqu
z7oDwUKGWyUA;ZA+_N-oH^J>dHyI>A4Qg@knk^q&QqU7@86CqSq{;JI}ei+OvRpb-Q
zFG#(B7X@`*$cw@{FXF|<iCWJW6QxZHQ*kd!urV!6OeKZzJvIYA_2M%xKKFtrY0xYq
z@kw47z2I<{^`e|8<@J&)2&pLeg<vH?gBRHkYBid~e2{3VEyV1F#S5z!HZPLBs4ik<
zK?Yax;!ELQ=}HPaFhQGpRYj?$>#6)6tf8jY5XCN7Q}@>L;#Zkzb-ei6i@IKnyl?z@
zm$9A@XI3-K`d+wun@CtlBQMSwOzpgA>_rnPq$zvAt3B{&)_Qw0FPeKn(n7GMU@O7a
zf^@YJ@{JcKN114rkWXjrz3AXYM=!qh;yWpJ_7<(W^mnzc?&QVNE#}T%bn&9A7u_Ua
zfEV3`^bzbK*i*2VU~fTY&(dBiq_3F$yy&m%-+S>Ws<{SwG02O-q7N4wA~;l!9Ogy-
zue5JJm`1Q?bbXW;CyG^}_=6W?Iaof}d>H4&crViVFz{l930_R}Vz(E2yqM(0kGv2s
zmU%JRiz!}A_hN<@Wo8?ua@IXFlWdw{o+e7?wdR>Z7J9Kr$Sf~r3t`wCAwPLBSI9iU
zpLOqiFBS;jd)36?#k#(PSJ6sSnBKQC{o=)PFE+4hj@lUW3NKcBvBrzVYt1XYSmi~d
zXXZQ=tceRvYdJI%4C}mDFOh62v$Ls8Bn;TZMZM6p!;8&cZ1IBPRxid)Fl-mTO*qAD
zt;`H#+9|c{l3Wz`auRwG_u`lr`@GoiMOfN=K(Zeaevo4E#OC$1N)LPSKQB(3%tyQk
zdJ&R<qh2_?aC+g=uh++UE8L?iUg>sTz9Nb$=-0ggFIwKU(0h8inH|D!m1#!A8x>bf
zE`;5}YdP-4Z(jWF#Tm{4i8&>g!|W%;WSCZz^ceYBE*vi|dhrJ@>a6L!7dOtDNG`}V
zY8U0PUGn0x7q2Dz6~X&nJn-Twd$o8XOS|U9pI%&NUh)1VcvJ9}AY*Pz`6PElxvT5<
zq$27MMR_XtNcTSW;)%|kh0V{rc<#juQC{l$-$Fi2u)WfiRo%@0cu}#VoyETK;;rca
z3ceG3FZe-_F(19CeMjq-1RoN8_$Dzmy$@M@$m&A|A2RxID?{p{8wTo`d^nTO1|PPq
zw`UeCl9-y!hwMHKPE0lWki&<ZK2-3bq7S)z_{4|LrNG=i<niHCA3l@Fygn2al25$(
zeJJ1qt6(7oMK2^+Sdd~7AJp}B61Jh355*;zyo3)WC8m@fSy~9cM}1ever>&-%_Aw}
zLs`*ZueVRGY%k|Sc^^oa=>0<4U=XY%VJtb%20Me3d@ydXH`rh|iMQJZyV(beaK?<=
zU{Cg;vJb!eFfm)wmp**u!vu04Qhcc5Lmwad`cTz}YCd%Ep`#C}K2-OixljA4<@tuB
z8a~*4sOdw$N!p<bwM1_$Slfp>K71{lu0}r86<$wQ>if_@ctc&8ctrcfXRaK}(8PzP
zqBqmMu}K+Q2ydw?t$b*$^ESLFowxO&ozC0)uyliVdce1${BB1#AHEabNwBjX*+ocK
zA70MXejV%XL#?jbAr(DD?<v^Jhu%WcV*2^e--n?-3={Et!GluW0B+P`4iX$J$kK-R
zz^)(}E_h0Uv(HQ&;loH#MhT7<93%LH;8?+Ng3Lai6LqrIyh%R%=)+zge&v+#VTun6
zIlFwAHpDj7hcLhP;lRa=(|qWZE$Ow_aDRh+h7U7+nB@ccY#(^r&jR6d1b^~ju8?_x
zKMOK)z7M6Im`Ua=G&9R$AC_<h`LLZm?87qFm1^6<-b=CZ>0rP3uw0ZZ8|~#b+E@6n
z(uY+(toDH>(*_^b2wy9>PS@8<E(UBAWs~6M|KlB=J$0)OM8@p!VW$tfeAq4Z9?zay
zd!wC?58LBIz5=OTHrgkONxsjA{XPVI2y)I$Fdy*2>4VFMgFYM*Wo2CZ8}DIuub4*!
zj|w^jf4y9R0dC<Wejy$~ub@v*;Yt_6dy*N(uMMq73?Wfy9_Q8h5b+_(h5uy=6=F>H
z#)TXcTz#>^Z$6yh^2}g5=>wm<nbyKnKAhI$SyA&BCa&CbKAiWV?Rm62j|)Cr^dawY
z<U5W(e7NL8*BH9RaM_0|K3oXmVh~q-xW*n+@k+&?K3wO{rs6XdH+;Cs8Lps@f?Gb^
z_Q9mUtl%#n?)Z>SL4tz2KHT%+l@G5uF=RGA^5L-$4_Hp3_4Q@LLlFl#v|}5e`0&h!
z=RO>{V0g+#9yZ>(tDUs-!iT^0nY_ZB@R9>DA$iaY>)|@)PFqd?`0(C`4?eu{;jIt<
zO5{5Z*@mQg?ak|E7|bsWr9CE3&=4wT<^PL6N`U1?x<m!(735b?KtTot85LwxkX=E)
zedbIGGAqcUpl+rF@B-%>iVQYgEon-O8d3s=tO}}h(l(zQ3UVsQqad%My;9^-@QI?W
zR;Hp8wdIyu%sbT*il<9@(MNOTQ^5N)ND3+_q`;scNn#2sD5{{Cf+7ljNw)Eq$NTFH
z#l`h?Wm^da<rk!mcy2uZgSDiBQVL2d_*Ac}ypYcXKUYvj*UKs>C!Bw&W{nkey`q9I
zgjdp)TGO?kvyBRJOtxNM!rzh2i4AQQ1y%(O6*N*{lgO$HswqfTP+7s33N943rm!m%
ze5K%c3zK7#VgD>!hw*0rGHpwo)F~lVL3IURvl|tDGi<4$pr(Ra3WiU#*%e&cZRIVU
z#M%n#DA-ofx_qPk&3IewnDM|ydp!m9*(deTK&qZQHr>pU|J}2}<~3H(M8UTTzGLA%
ztW6cPRM1L6GX>2>Ih9~(p=h_TGG%^kZmpn=f_4hpEBHnVyt%{JmIL?BbmeO+`9IGM
zUuR0Fyipsq4hr&ZHFs2SY>nadB*WIr#!d=4E9k-|tu|~cXPx(#p{s&!3c4%Ww_aHS
z#zmdAXG-=^&{GQUrQo-X_7TraTjrUbXSMX@q*8EJ!8rx}6@1SjR<K;b00jdTj8iaP
z!5{^L*)s}8C>Ww(sKWaLwNYal#+f<Rx@4At2WZe7sbG|Xv5NMu`OylBC#UwWZyqD{
z^5|9u{Gi~;MmxPZ<{H?U6T~$~!A}Y%Dww3;M+K8boTgw3r+T7x^9eTDrz)7sLq*b=
ziBzU5;8$BS6wFjGivzU7G+Pw@=s=w&W9BMY%x)QDcv?AS9!FUL$$SM16f9JbwT_AA
zA`xeF()io;1_m!tuvBs_6QsglmsTiPso<c3Lkd<YSgl|yD^;+D;(fy=1)CMD6;5-V
zkoAHa6l@eSpt6~+EgY%)hFVRu*+Rm@WVS2Vp<pi;>08sKafZ*1Sa&MerGQU>-OX9l
z+uSp3+@oO2aLr3(*sq*RmyP=r>=$xCkV@_nmc#5i1yKbth4(WUjwtXd@F_T|z@fmY
zXfKg#4w*d)T*BRg6uGxk=aJy?RI{QWtl&di^Nxllm1C`7+9#HPU{Ek5xWBQPI>RCg
zave5bS!;-M1L<l%so<25V}i#y--MhH{NH8+V@@mhotMl(IjW7+y{%SmEZ%RDYvizG
z*=#t^^~-%vMMf1D75u?5Qt*tcQo&^f*A)CoGn~Fu)Nn=7PO!f!_$fbvoiSfmaD#J<
zJ=QYeCO3Ztx4G@hj4HdyKC_(ZMK;qNcK8GnNA@0H1-KEVH=W*KBvQFAgZ@ClLm`j!
zIq;af-!UTt{NKqtMg=bv{Hx%dg1;5KRPc{f!E1RXSzhz1$0hTVHTx%bcGDXLoSAPG
zv~Fl(icK&r9&LE9;G=?cDn4+cjyAMEZzLwDNK~~d(hKtF2_~M^U;U1@{4=TGV-fSI
z$gd)^ic0m&xm0{2B#VlyDzd5Q(!-ivMNSn#J_uM$Dm-VBX6r+S+$!p9vgc9Z>5=en
z4(o5ZY!wb0^Qx$I(Zugj3rM9!R1_6bP(>jXg@q3slKgqlP_(e6n2O6UwOf)(sVJ^u
z*-r+VB~+9Yov#RK-qI>8rOXGf8$VZ3Mun=vuVPXgYgrZJRZLJ(PDObY6;xDIQAI^n
z6<_c|RE%zD{ZfTNMG{L;VO3#dYrip>RG4`=o9yE^*+&#lc{a`ZPZj%;@+O;jlT}n!
z(d;J^^+I)07{Dx9rr5ud0#gK6Y_hZPYARAybW_n?MRgT5RGvtNx_sE=0;^pGPqVM3
zqNa)q3#^AW*?kMFwb^4TNa*4@_EYkj7<pooy`GBtDjKM0$V=;)xb20xkqUZSs%WL6
zvG68>O$D0?GN8GT7Aly9W@}ylR!AEa-{?wP741~C7qf$4N0o<I+L?>(Au@fZqLa8f
z3w9Bt-c<z~Nzy|_Pr0tKDq3ex?xmu)m~`=qSWX`meO2_6jQs^is`y^W02KpO3{o*z
z%;ADV1cwUpDp<}i={=GWVv?lkqr@DoVvLX<bnmI2iR0w*`2+zrav~>&iXAF;s`ydG
zWEH=tSk7S1y#=P3DrO0ps$!ao>B47db19YHb%G?bRm@c}PX(1ZDt?l%w1A&=zEs70
z6$`{%D7aX~A{7T3rexY|PYYh6qO|a3dallGQdj7Fy^xhER;gGmb*)jcmPGWLo9%2>
zM?L!n6&qD-Qn6XZlC7!RBxZ}?Ruy9<jFr0Dq;40H8CPz$?^3Z_#Ss-pRqWx?+iX9e
zBKsK|$zBz|in32|zaVwXS1AWo98z&u#p%s<rvGt4)v~7Xr@vVoDx93dDjqLNR&H8c
zD!eL4+$zqEG<XC_#@@D2T=mAPsQ9OWdG%96xmC#l?j(Fit>UJNkczO1E2{S2iinCR
z=a`C<Dq<?)T>c%c?vbXX*Op@{j;pA*F^PO)HVesbVj70nPI1Y<w470KmQ5A@JEz|e
zTaD|MGsBY4QD0$Tx}@T~@C&+fQN<s^ufDV};IgVcv6|%Y3d2>Ek7hG6UE`+!;n!6#
znGdE?<OvnGxN1~%-e$b5;x83<R5V{^;&EgTRNNKL@2KyoxG$Usbi93&OfS!OeZ(H)
z@a0Z=qVk9y>vI)PdF`t9s|v*#+pYXTkopT1e@lQZpM}-EX76!{1u#B<H!9w8nD}xZ
zz`rWqv6uX~;>UY#`zq%6@sl4PRiyKym><RcNbn=kkL-Tr@FTq+8T`oXM;1Ra`n5tn
z%r<25<Njv*tDH&jgJy;;_D?gLua!*9>PI$-Vc7GEmfC%dd#7selydr!$B(>ze741&
z%a2d|$nD3z0o7=3K4+}H#m*PCe3G%KANhq85G<&dR>+US!ixy<%^r(on%T@$!jF=E
z*!)QLqm&<|{V3x{SwBAY<K|Sur+*o87cqJE8b9-c__^Tjbmnq?l=q{eA7A)!=U-z5
zKbB9i_1|jd%N$MKf>p^6gVZ%QukFcS#w6iJLDp*$VivRrS_SKb(pUE5OFtU>(Zr9h
zM6^BBUaC_3=(t7u@}!C%RsE>uN2+*h`BB@C>cVRX+65U|Q;6q`xsI;X_v35fb#<kl
z5WZt!d;{SP{b;0n`BK=_k7j<1^kZBwed29Xb3eX$XdK~33qM*)SSvri^P`g=t^H_2
zuZZpS659IFPUjW-CUg+qQCGed!p}sVg>?6$haX*ZZ&yFM>D*N?V^2SN`7ywcfqwKB
zy`NwoJ*KZ8{P@5N>8~r_`!Ph6L81&59IShX_%TYlbeOITXU~VUuJ}r|EtGB_<;Q40
z#z?>qeoXS?M?c1jIZklA-~>Ttoao29jM~QprpbOx7k!H0RKaO_BwNdv8G<wYm?dPk
z?&Z76xqi&^Bj`uSkDvXR@5g38w)nBY58q46dOtS!@w%#Mp&yI<m^#C}Sn@9MW2um3
zf~y37;rtY`LXh>Y6w<JT_Lgk5A8W*1E7+k_!a6_ZRMdKM_bls1KmNIB-o#O!XI{V7
z#Ph*uZe>^d;blww*zU&;KYrzs^ut`uw9}7AQ%!sQ*d^v}!99ZX^2=eKoP6`P`H$+B
z{eHNv7!UeEet<P*O(HoYZ8$9WKR=ELIV$K9bO<^Hhsn+JZs8vP|9@((B8uuq*16gR
z`uzy_5qV-9anv|*l5N>*Q<$b7r~EkWN7Rp)AIJPS?nhiQGRtr|Y5(awL-d-lYLfXk
zKTh~@^||4s1nj(LAm`5fyB}x#IPb>=KhFBmcA&ZREyFo(9es?xgQjkIwAwH70{w93
zwq5e$Vpa=3*Q*1y8PaFC8P|<h{kY~wi2zCl@TVWw{dnoeE5G&``3CnEKkoYZAM=Ep
ze%$iowjWjQ8HV07@T2r!eh~Qy;vTnCKc4vUl(pPSx9GO%fgcY!3T)COgVAVG+uI&<
zm$+(RN`J@j%#Y`Oyzt|1UeqSLyS}+n#7MlAJ-PByBU{*Nt>HBXo!e{xdAR@k@s@jd
z09gWfeu{7QO#gC{bB7$5{GJ=QpKp?_Lywv^KeB%GBV9n7)d_;>1rr6k7s!}FNJha-
zf)Hf<&S?6q0d1OP4<Lt-Yyot6XQuLHe^br?cHPs+67K&25I+$-IM|jqfP4WQ*kUgp
zK>h%hm9Z6NnY&E|0w@^3&8*f!0Td2s+d|PErkVF`MTB#WYa7LGQ?UT*%rlcTk|#Bk
z3ZQfVwF0Oez^4Ix7JwmuqyRn-piF>|veiEGmJOg>0ObRyz$!YX?#N?(k==arviXeD
zR55@r<cc`|??#Q4IHpe1#-i4Bjm*XXOaW95;L8AN+%=m6umoTgZW>}fG|9>xm@mY(
zfOdaQvS4{{YUHHxs{r`5L(KqE^uDShq^e-G08(|mI!n{JJpgXqY;CFO27dighh_kc
z185RJ-2mzZ&>(<@0qs9E^#i!}!gisod6vht=aiulFKV&jVm4F#(a9w1J~cNDpjiOl
z2Jl?~&6y>DR-6WNwf(JS0DBY6{LmM0Yxi&GPDpAU;OnxvO#t5rX)8#josjkcbkLQK
z0sMT|KvySGR^PF8=D6pvHT>C3&ab(;2GA{l?g8|Wiy9`_Gk^g?dI|OxWJ~%8=^H>l
zUFk36`v5NA(!P8fDCQvDJ2-$LIv*<JQe_O+l@UTl3XTe3w62c{;0K+L<z(xj&4&pA
zOyn2^F(Qab0sI(1Ab?;1lLMF%z?J~E2DDp}rUtN-S%gmuV0r*E0+<=VtN<2?I9qU`
z;2c5b`YC|9!siM8tn2fIED-Fs$jC^(gIcV6mk1e`!TgJ~mfm#%EDvBs02@nbZSI*Z
zVPycvx7b$&uv*9(!L@>}Y$<fDmqIoOZq!TO6u@Sk51(M&CgmR{2C$ur;+knk06V!_
z1K8Bi%(P#~Zoxf*djt4Y$UedGDJf}@2gE!Wz#$>6>e{Fu(R*77;HYp%08SzP+S>GX
z1>hFbqeprJ@CD%cLwn2AH@kL>m>Pgzym#-UV^@R%2y>kVQ7MQ>0MP(429YU<SU`Jn
z=rQ&H2W6Nw&Lz{p&cCkw7QhMaBmvwC;A8-&0yrl<a9Z$;-W$IQ`PeR%Rh(s+P0S?c
z1Go^tMR8pb{6p}P;AO$wziPLuF<s?K<V!#R*F~ptBY?;RYnqqjb^w3Lg}e#iP5^fU
zcpAX70Pacr1Ht=x-hVC|9|rJ9%*TRH1e<L(PgrbXna}@UWB@M$_*=}Ef}7SFUI}@v
z$7o;pT-6%+mLCD64ez)Xyq1pvyw`jFgOH&G6Ve4W7gK_eM8WhyWDqjZZKR9if}r+F
z@p%xLgUAv@)*!M4@ktQ5gUBu}dUFZMA(%6W<gwZtV5Y&jv}v3th|k28H;8;e<PV}i
z5GC}y1%oK8^Fl&uq}S>#BD`o2#dL4+AUNmKN-im4sUS)V`83V!nOe+J#gf}nU%u)u
zBVySg$_XhS)Slv6A&3n(j1`5`Y+S@_2qGznT0ztf!YGlfqOuTE5N073UAG2d6P_$s
zzN*$aOkW1^RS+pbR1y7dGwq#2RpHeHQ-i$8Tno<f$WTKFxjl%Q!t2k~zB#WG#MeRe
z5v6WWyREcY5Y2<A7v$kBXdp_HAU-zH{@c<ph+oT_8U@i<^lI%A((WK_D(2$$T1<-|
zIt0-%h?YTk=bBsT^|lt$CWvo@v=wY8*j|v0xxa-cO&P!CaBsEu2;#dSza+OXbqb=h
z&btKBRp;G;=&o~zV(BRvdkM0H-kbwl?IeAr{C+|74{FEPd>_P6Ap-;l3JwyacW@9x
zbRJ%5r7}!R`vud;AVvjon56|VI*2hrYz$%(r*05qgZMd!`9XdZ!uTL&2l1?X!h|3u
z2GL@Kc^3D7A?cTy`NUo-KL#;blqrH!1*uO9V!F;}1Tj<izUOATm>T9Z%?aYCAm#?~
z(rx_XoH4Peg$KLM6O&{?5DSA?6~yWw76q}GZL4Tn5yX-p_Vq9=3*yKg)6yX9;|xqZ
zbDQQbK`a+NDUX%r${_CkW;(Xt7~5e?gk?<->!tUGWk^~Z#5$>nRkI}rmM3orqRv)r
z-EC%{=QOpuYuFXU7G8C>q^*J^+k)6Ge23spU1t@$gV+<qUQQ}DFNpm?bYgF3NNPUM
zRDtDl3gt1gNe6>G!{2<`Q00)clS=%q;Ybiig9ru@;<5_D8H6tg+%>p@C~CENf*77^
za&vlYwV$nL+h?(jIc@L;vHPRpN1s6nLS;YaOyaGueon35wTBx9f=GxPNy6Ox+4GZ9
zr){-Ix%mfiDu~nU^HJt_5WjIzl(jG&3!+IA)A1mR|6<DW&~QQs`N<%x)l<$s|7yJ3
z^t%L~4dRTDe`jY*%X=<}^P(`G${#^o;>?L)d<2(+xDv$YVU!8uY7p0g+VM37!}v3Z
z>p|oUAy)`Dg18w3-@m;H;+Blg?I8XN^0y3a>tnhT#G@cGmeGEFxGMqo1n&p&K*&Qu
zdXLKk$R3ONMDQu6u8`+?%nKoZbLfM3CH!>|{|M=JDIF8bnbkJoZ4mzk@s15<Plk{f
z!e8<nmJeJVZ;T(g1oE3VZMCNhVfj@XmE`l*^dV#pAxj7uLdY1xp1rniwQZR~KnTri
z+x%PYR5lK?XAL1+2-yXxT-<7B7ztC35Lgb$Cn4kxp>POALiqhpL!J;GZMC=RS1m7F
zlFq`EPe^{j0wEL(@epjym4>`=w`d5(LZ}$R7a{GgyyAkTLMRc^ZfPqS0`H6>;eBYt
z(jk0G{jBM;5IzrSce|AdY4^_EC}%Fq0V-#vQZ9t@;;JC1#mqKT3c(P<x)9cfkQ9P3
zgdai}8-ghWa|j)oWt+WQJCh}ZS|QX9!5V^%*BFAmi#=7avf!5?d?h3$gsMWS2r{hj
z3{?9+oJ#c&YNRQ;UQ<ZE8K@J&*CDhOvu+6WLTI7K)ECkyga*3OPzb*rZ5%?A5Dv^h
zyqUSF?rp|V(|NXS_Ljn13AWbtHbTA$A%Bw;Hmselw-2F%a28Je+Yr7Bp;HK*Ll~gP
zbP1um&bx-tP3I{y&?AJNA@tIfenNT+_7UtGLe1AUmfT;=?*(aYoq>TN3<_az2tz^`
zq3gV~p~8ph%5Wj<vBfhmQuwG4M(f@&A&mM^jRlSiVSEVFLzof5wW+oVAxsP*$7@@y
zZT3ZbO_L=4N5RQ@-YG(+3QiMb6*D;*vY6(Fupoq4BF+|^BgjksDTKMgS?RnGe%3k9
z_FpJ`g{~~(%oM&vaA^q3Lik1aay^Fq!*bGarSMgPt3y~LWUU}$*tQKJYz*Nx7kCJp
zLfFii5W+zT*dn+;gsmZL6TV$=x8M%JogwTJ!qRw+#62PG)s<g`>=P_G1K(}4KYe98
z6vE*UPK0nWg#U$bBm}=6e^iJ^(7{D2#3kq!Wce(|E8Hij2&%fb?hFJ%2!;^Sm3RnY
zokv25>O972xy{Z3kBM?z@HgGdo*BK(&S`ckgwx!GLO8=YAl|cj%pW0~6MkOsg05fW
zY?t|YNtDZiS9I@HA!z}BhHzcX8-h3Wm|G#F=1OJTIP30kXA2{J7<WUs7sCAz9)$2p
zk9;WP8Fxq_j|HFT-lsyihdkGn7ef9H;iayy$5_$p5dI0_jfigrKZNkFkav3Idrmg#
zF~)xsF<lr5VJ&;XLfX)02qR-yyY}oNW(sSortwr8#LO(1MUcT+g=7nZ&7;YbBaED3
z<O<`HFmi{HSC7migyWtz)AH$h{xAyYoU^?U%^TLjf<?k88rGgcS&ZczHGCRIaWP8>
zQZFf_R2ZehIF`}MMDa5TUVmNVWy2^J#?mmBg;74t|EX#3y=#S0QAmp57hzNi<6e!5
zhA@(aBneV63NeLY7GlwLs}NflSe3*urpjS_DdJaxHEvbgxx!LK%4dyL!>Fe7R3X&`
zYY5uIsF`M-*WNAE4x>&OUx!gQjB#Q9X%6+ms2@hpFnWdYM+sYlFq(zYTzJDU8VPAE
z*d)wz@a&9fD(3Io>@C80w9VcnjILp{45L*TIkwwdhw)7qZNq3ICKbjoxLp{;j$yPH
z(m{}3ir)$+`Hpi#cxPQ<7_)biqFD9rN4D-^^bqr8It#N?>>b94Fh)wN`h?L}vh)k1
zzZCMl;LtDz2pOoCJSdF8Iv)~-qlAqOU>X+2a9wBNtYVZ@H&$?T7-NJ`{~?SfFKlcc
z^BT9?CxkIEj2U6f3}ccsW^x!)!l3I%G3#%)PnC+MNeSJyYZ+P2^e~V1)yS+cW{2@}
z81uuJ6UI+r%#~~5RkI~bB=aOMD`l|^SP;g-FcvZL(SI#j9L5r<l<_Q|ktDx_u{?~{
z5wwY5MHnl?Si|WZ#=27Gv$-q_@+PecV>L_5n>0SRiMTF|^<h+w;L8X$gt0M<f5LbZ
z#-=bfhoOey4`WLhTf;aM#$k?WQ2R8xO=cR&b|E{$*crwy;k(1wCuEP{Ucp}l8NYL?
zcB|fgPB2jp>iWBx*8d6b-qq#}<B0I1f(}8api7V?xWn-1yzKjGKH-YsuMPiuw;TxL
zL>MQ-+6m9WFhb%D>$xIAqG80sh;!lV`f(v^#u<Lo72hf2sW485af8Dr;_qQx<UogU
zMvplw<ecDn!3%=cPFiCwg>gm9%Ysxo49s{{_%&VmGmPuP)81X*PH(yu#)B{(hIu5W
z>2?@@3AvMIrZ?Rca!>Gn7-P5F8OD+yh4EZ3^KlqYgg+I0rt4!0YmWndA?Dv<ycF_E
z@U<S(^sVJ>82^TmErRS3l)Ynq$1OdAOcCU0V0s_M2QHss=8uBuA{tK+OcYEnm_d-P
zCEK-+lW#j~qmPKTe`XfU5<ylWRPGf>$Pq!#2#QBgB7$5IbX<_Uce{PzYvU&o<c=VZ
zL>AQJ^G1+Qcz(eGg24g*eTz~kg2JK{5iBamT8c%q!?#J8N=8sFg7OiR5^rfe=2Ib`
zMew<hGJ<7wZ?!Di7e^H$Fo{x8@C)5rNr*u(DFUOAr`5Etq0D-WB?7B(o311a8B`<T
zs|Zpes2@Rt2&zO-HG<j^)QO;4gm+<~dIU8hNR6OaX?tY5ooJ7sW&{c4?H{(=iM%cL
z_I7)%2#DVvFnk?BUDj2mT0O}^!Z7B#UCwSRZEqMsqX?Qr&{Sd?OAKpaSn=}qW)U=x
zpj8CasTA2^Z=n~`lI54PQzWvqZ}<uKQ**}%zKx)51nnZ)=l#v&4ecY^mn0qNP2rCV
zCi3qjvU3Do7$bc0cmwlxji6fugCiIcLH7uHM9?RKz7e$dnR-UhD}vq;ES_vVyxdUt
zg!UWdfRYv-w%;#;{t<j1!GH)ZTr*!dVg2WX^>HriK+cwv)@&!NgCtkea@Dd<v9hS4
z5e$o9bOd80es}~UA{Z&0-cD1jqhu6V6o1gC$r@Sa4-t&z47qDXaVuR_E14%mFp)zO
zL$w$tMet(;wkVRLm>j{B2s{yZBbXY&G%0NfhoEV~^awgvPN<$QvHBh3j0k3OG^g=F
zQN~#j%#L6V=lpWhPZ2DN;K-NB<a0%t7s1a$<_j(mq<0}NxtW=S!HXpe|1G;Tf@Kl>
z62bBac5vVf))f(~j9@)C_6Sx*usVV@5v*m;|7o~2+#HLT#_l(+6EpK3<Hjqg)At&v
zY>Z%cGxN3xUTinn^CoSIfVepVezCJ9f~{gwIT1E)mzbS9jEvkF!LA5Csb$?ALGlj!
zVQIjg2=+$sYXtkmWRngF*)Mn?f`dZ3PEMvPjsK6A!`-H*?WmxOb0Cw|5rH#;dVD9=
z(-!JsbBl{SpV8`zK#Aa71m`1ABk)HMjbPG-q<=oM2BiPP5d<R$ML^|bV;c|8X|h9G
z{*efZe3!seabgj~d36!I`o+w2CW7NS|1E+O5u6nBR0O~4`f0A3E=dd~A--#FJuBpB
zyTl6-T#O(~6j`JABZ5m2{1w3+e*Y7}l?Y1aGvA2d=Bd=H5&S8H{2HhC4m%0c^#~RY
zOlH{42yR9A1Zu-=$#q7t9=m0kw!?lmf_uD{2;M|+UtA9(cqEYzBG_`%GUl1(F?Z}i
z$xkDACgchA9d;`I9rouOvIv%DOo|OmzO_E-Z{aTmDZUc&nzQANmFC+B{*@};bIClj
zuvHhoG{1{r|8tAwz4b!`A0zl$^mI`qM3ETPE-<rTdch2W83i*5G5}Gq9FkXuQi<83
z$R0)cC@MseBZ{0+<c%U<RBJ=7C_afIxA3d;tPK8lj5$vfsRNTwtA<NE?D?Zw!wN=G
zD2f8YX*!%{VqvMSL=;7Y6csF{x1o3xY3(d2N-4q8QG6=oGr@9Ed@iJnAZsrh#cvI@
z(Mik8(Ww}PF^XI-tzSg7!D6Z;#2}ay1shD!6ookoOB5&8897GQDAt#?u^jT*@2!=i
zd}tT;M6oxDucAnaVp0@8Mo}e-s!{ZeqE{5vc-2ufjiOl;0}I-!M`4e`lwhk7#hgsG
zpFXql4=*%pMo}w@+ELUIFO|ANzK-J64m-_yQPgKY@6>n$aWxcdB-mJxt|n3N392N`
zqi7LD*C_w9Z)q7t!??wA!qO&+R#Dumn0oBErL~Cl5^Uc@(Kd>aCoJuv7#+8Cj-tJo
z9RxcHe)z%ut&r~oJ4I1ur=3~4NEYTQ9=EWfZc#W3*t$p2gB_JC#a_@x>>WiP_G(mn
z(m~%Ssz3c|P!xls=odx*D86SG6}C|vC}aS;tB{RKwVif~L!#V0Y{R1%A!KM2!-PDk
zYNb9hicy?AQLIUC>lw0)7SeR5J<Zf`r+sV`Y}>df#z!$Biv0<;jvur>Cz&Ybhi<8p
zqnHxKY>tRDa$-i?)F|9VY|{j%3(gRnDL9LL8@BMlc8vKcin&oNjbd38^CUYzhyKh~
z?X=I^X`jzdE?`?AxG>5Gv0<_B%{%Q&WIoWFv4D;EOBBl``-Ui1M3L!)g=t+BE4hfo
zT+OQ!;yh+K8`HdN#mt^NaeWj;KU%3=s%qUB#il5Z?zC@?;;)_d-BE0bVp^hYtKc@l
z?SeZ5>Dn2^E}fs<Y431c8_i#%*cU~K7)r*lKZ*lUoXc)G&*>D!p(svAwTC|*j^cl;
zD+&k4ZjMPUZaxyl-+N7rwDw6QIwhCNTt>4?xLeQ@g;xk;d{HRE-)Gb^GWnwjL=lW4
zB>FMIuwX<m%AU-j1;?U@i&DAie|e9K`5PCk5XPL0;*{`aJIplM?BAm}6Gi?$sb>XA
z&T;JKn@KKki{t(u#U-x0C|*Z#If^S$T#e!yH@9u(1AFBtx$KsahfRM*aa~I0vnTj#
z$c-p&MsX{O+af*{{40tFLhcB%0e86oh2Pf||Gd<PI)4<!W1T;V;%lGQW~OIRJQw|i
z;NN=8OE$8%*46(+@rF}9hHJU2yk%>TnG#}1jA^6xZxrt&{(Tf5gnW!5ow#<q(E6=h
zZVl7NkRgV=qGyaDQw*O7hhUZ%vc`~EID`4rA!4=|a*2{%Fo*8V8N<h^HU_-kX(uw}
zjv<fkJ({FdmoJ9=F%*cQU<`#~C??**dd!n)wjw$&Dx}6@Q|sqinU}9xd5yf4qErlq
z7)VMBek%Bx;OBy61j`DR6D-d+euI;lr9uo9WB5YEN-=mgq*CNhmPDqc7>wdF2~sh~
zU=ePO;YyoioA6}aTRDa=WB5wUlo+b$`o&(RUXj$@M@^|Ql$d2`97B^Bs>e_x273%O
zV`vz|p;qQvG1QKsP7GhiaCV`IM>^!4Ybv$NUYAR+tF>MXp~vPTqs#?n8tTWeCdt$w
zhFY*Nl6at(xls&f(rct?49#L_7eo6PnzL`c+ULraF|^Qmn$jwU)-kk+;hUKDnXAYC
z)OL?eZDXi!*FN*!dQqW63^`L0I>zwmPC91c%|-J{Cw$8b9A)?}h8*clonq)LguIIo
z{{5$W3_W5PeGFrcp=S)e*wu0T7)S3I`oyp<hV?P@WzWPgFor=f@Q9xNF?=7x0O6Zz
zrCiRDM3HIFq13@K42fZ03_r&(l)ZF3bwms!C308{!-eo!R16-)N@JKU%9t2_h+%3B
z(_$DK!*2%+<71c*!#GyG-N3{{(ufn;witdCkuh~sO#gXf+V9a*1Sf8?Qk)*c%ot|H
zFe3)$VlYK^_0)?M(#l~2=1A2)aok55=Ekt)j$v=WFh7O`F)WW^MGOliV5#7u7#7F0
zQ%aa|i6}SoBn?<#qPa}WUpVNE&28=&R*Fe|jgVC_K7CT_v{4@{nJ#GYYsKVw?;B#+
z$Q2alD;+k)u$dDkhA>+a!&Vt$R}9;PY>#1wkZa=-b_&@qxJz)iAm_jyA$tXXjbWdz
zEAsur0WlA9P=p*#^Tu!_hNHrrf|KfHbddC|#sW{A(59AKbWaRk_RK@=gFKT@L?s4Q
zh+i-uNN<oNLCYJ7AsWNKF}#Z*7DJr>%;idq;aCjEW4IW@9~>Pnt6lb!F`SCwL=2I8
zrlwz5)3EC<`{@{dkAWYM4|cQh*~e$N*0^5!SZf|IoQvVS@C$+z^L4i+)la?@LsIE#
zEQB$|M_aFQca7nG3=d+U_-72aVz|vwh~b7PH#rq|X%AVRog=w-v1)(Ca3_X)F}S<i
zC^E~UUG}>yvwrgKUG^14t35AY<snyD3@>AN6~p5gp2YA%;-kClPh)t-iJc>vx&GQ^
zXO`#Ogm-J?Z;AQ4n~f#2*w-;I<{$PzIjyyCVkooQ{#LN=ZaX=}_uSs&$QZ{5Zq6)c
zfHhql>EkHW&9=0gEg=qKVjM#jCz4P+u{beP9EfX;&l^YPII_f%GmczwWQ`+R9NFW@
z5!ae`s8}_|knoCF5fjNLaa<d1%@fx~A$J_B>nCp-ZSAq!&M+$Z;>aIIfjHO$h2j|5
zO}mPMalGATW(>{3A{L3Gs1Wu)#S(FpjH7uRE#fE@N9j1ej-zfIpT_Z79M(A2?Y4g&
zN0~S(#_>fQW#f49$iP%SjyoTX<>H8LHa>6}{`bgGA&#?|ljy1xharwhyY1$<wnZng
zx^$+^4~#}JO@a&?>Ni>9|9wNn^J#5yB*)>|ZLb_hN*q<<_)^TT1eag4(N#5$YH`$x
zqqc~taa51vkKOhL-z3vZQX>w#D5opgYqF^#=GkMXm#I!1m4qiOPp%i&o&wW2j`|#e
z)kzHmNg4`iM17B)W)lfxWK$u{1S?NAw2Y%w9K+)n5l8Dd+QiW#j-GLR6UXBwDNMJ!
zTHD6aE{<4@l=g9Si=(^n4uTy8zZLvWu#;eC!7hSbS^i%ZX3x3L+-r!r%N{$=;qS%G
zpEHV;PB1g|iR1e?2E@@fj(&0U7oEomrg>GKNbrMUU>t+u7|gL7tLgrnCL%eHD;z5E
z!vxd*)IafrX=EJtGF0b3k4DA$;RR#j`23QsNPpAVIDUxZOx<L4R%+p@CMx6N7#~OA
zM~zR2gE*0MCSuB@CQgoHN*up4K8~qzOp9Yn99w0$r^oSA9CPECp^yH|IA-a5b{unb
ze*RDMyf}Uqb7LIyh5Qo7av=-iSSVzX;9|igf=dOL3GxLuZC6|o$0|{1t`stHkA1a}
zHG*pe*Tu0rpLM<P4T6lXKTO*&H^s4;i+#3%cP*Cx*1Ro_?VSG{tT=W^<i0re3)v~S
zi$w|9Be*w?U*l-s^1nHMy;wr<Si*rg4$~XQ!8i^{*z@cOGgGzOJCBI@{!gvyqryoX
zLY#59xQ%cX=z1UyuW+BBBB<(KKevlL|9#UN6fq<i7L0IcZfm_1kK>pqr{g#t$8T|*
z6qBwKarmBSF>i8Nrp(t~Wlo7}?c;PiS8FXi8|U%AupWc$7|zFWA&y&d+>YZS*JB)4
z<LH!Xxg_`@OVX7%F30h3zoBzubH#^-a=oktcbcw=_fNs=aomXGCRdp$bzO051DJCE
zkjfJN;<gh<-ebsj40kzExn~|jj$^nV#{=$las10-<Ju2f&$tr`dBi0tgyNGpo(kuW
zN;F@@@i&`S!uC22{)E(jN+R)P9IqsXCS(4QfH#8tjmfdc{w|L95|Hf}K5)@ZNlZMZ
zW&fy`obDJ{e!?;Iex&_+#q!f1LxyA8Pk~Gsk0I0lN7Y$CNpZAae;2#B1$PS&VAz?R
zS$v^!5AN=+fso)5EWup^!2$$#cMan`Zny;rPLRO&^d<eB_kT{EdwzB6sp{(Ls-D@|
z7M)>5T5>wwNpD3Xi%G(y)(H8}uN6O}E-%ly%4$UxvScUUi4!NA71^y2=&{})n$wD0
zR(x$mNh@+&k;jUHRur<LL^*R_EAkVB^AV!E6yXBox4RU_n(~FM7&$UUQ7ejAAz4Y8
zcPqv8TEzv(KaNZx6-!xB+KO+iD5IM*=$EykoD~UH80j0R<*hJ<%~I>@-P%S?Y+oSJ
zisaqeriEMXR+41z-WrBlAuo%sU`0hMDp^t4isn|du%e0;RjsIH)vi#I=WA87YR}`U
zVbz{0mMm2!8mddM*(jxw6svaGQcclTMtOFVJbS9P6?LqrYehX7B0e9iu@&`oZa`>A
zZ6rr+xAwRvNloZ9rG86oMjhcb%H>Zjt!QsW2P;}x@np84wH0lw+B3V_TG5V<aItkJ
zDQdgX*wKnkRt&OYu#C@6LuV_xSkcvr8M_tfs%)#96}{QGaCa+ukbCM*FM>2ErG2dE
zE1jg%---c*2_~&b(m-aP&(N|;ZS7%SL+Hp>hFKx^{tTxIj3A7(;yc198O+_vX!7^e
zF;s~Zf2<YbtoXx<9WvTh?F=@LI>CyGgh^J+v|<){vK3RTm}<o|W+iyK6+h`*J{mWJ
zEFeX*t@xSQU#vLV>%Vj3!dUzqnsfD9e|(6WZ^Z&D7Fw~0=2j~f%eu2-r4_5JSZc*G
z>97?mthk&*J0q=~qP3rUgT``?M&)(dS!=ZwYxOqQSh0Om!nxgw_`h1^eV5wS*XyOf
zS+Rk<k-CYxnYxAgJ5{Pww#09<%IjCOf5&X6>7Ej|(~4bIJh$S7EK)1>SaH>gKdsnn
z#XgzFR-CY6zZD0pIATS04#oK!T89s^g+rox`vqsk9kt>Zvwec`VSh>qlXTLGi!@Kk
z)~z^W#aU)A$jm=rI7dED4II)2LE8B;GQyW+lvpHug-~m1+%+q#R)npHSYflmPTwaB
zmhkj^yxR(=6&c4HB)P2E%x)LFWl*i~$O-3`!Aos_)llDU@>>yL#o1f5tp}|LF)JLt
z9v8JD#_V5K`Dq0=thj5%Jvuk3cdU4|z;KIvn=03z$iClv9Cx4D2h>aTv|)cpZc<v?
z&?74zTajUA{O&CAPpsPWL!MIqwrbCCcxJ`ZJ;t{mwMT`#lugK4)TSNx*H*l-;)4|*
zt$54U-chCKAA%g6_qrqeublj?NNqzJR{tz#BtjfDo+@=S&P`59PG!@^O&mE2upuqY
zEH+%<t)wGovLQVo12rSHyVY{-ruGlh%*@`L6_=HejryfE(P{<abJ~#0hGPyKcObV7
zd2Co?$67n`+K|tN7dE`KA-@d;Z1}~7IW`oup^y!|Z0K#1mrA3E4J~YF$!3e%@U;yk
zZ79ZUacT)0s@Bwg{dl@Nz7(CRHdM2rH2E7F$`H!hU?#M^X(&f9*ifF3Ks8cL)I_SZ
z*)VOq#U^*78<Xf%(EW-wR3cZ_ohmkfvo4uV9UJP}P~C<a%qlj>CHm4}O=fH9wQB1D
zQdEy-Qyc2r(7=X<HZ-!Ku}v;kH&hvKy!*W=bj>6n*(Nk!g$>`@urVpV87nr|+kCfM
zX=Oue8#>w0nPwXs+7sI9G3{)4HO5$ax;8C4*wB%F#cuzd<+?E2o!ZrgZiGWmjHeeE
zdXS}7PeScaaeZv)Yr}Be?`Okc8;01>pUwaq1`@92)n>~eIlg<fjSki0ix1MW!)$Q3
z*I<P1kF?=C8%8lZ+J=N^+&CM)XLgJp^8?{W>R20+b7_}MjMqyi*f7zCNz6{RVY=>5
zAxyPl8sR71Ke8e94Dw9sEb45%^k+hv@`-b8m}kRj8_w7;pXPcSezReL4GV2pL}#^3
zavK)wb(av9+OSM_mfNs`ypp;~_vNR*wKholmCmu3+6_~Z*2yB;qkSA~kRvWdHXLEV
zCL8{+VTTQyZP-HRcN@0au#G&tCrZ~aZMWgw?s!R3U9P&{$s*x{gk3i5ChVc^rS7Bd
zr%L1jLghWmA%gt*Bj!=^3F<Mbn8$6%ykA?4Cw1qPtmUEFrq9}N&W69~pSR(H4IUf3
zHe9sf5>2NKmkBoN2y^@uS$brt{-+JsY_Q7A@1f1oM^Ch^NV41Du%YYf_~<Odrgxg-
zlDVYUQf<ijG~shnqR$4u4Nr7GU_-=)s0~5g2@%4w?uKZ+jWK(ldYyWMdXp*vw`{mg
zzC*pM`}YU~`4RuXhKJ1lrI$Xk;jzvG9%!GcPrt<f8~2Rxoa#TX_2HEbujQ;|hsBOJ
zHoUbVs~y?w_=hnm?f<RTcg()G;e!ny$^Y75t8e^l!zX5c%w@K;(;AGkBc8QV=ygZk
zk4t4oYG%_=)7t?;T539~nn$aifh>@bkjakBge<z>Wn+AHJHE1`upLG0$YDoLJ96oz
zOB%;tk817Y)}1`^DPYHxHl}>Klb=w4TF{O{x}UE~YN=S%j^cKdu%j6LRf)!&DdNAj
zqa?EiJ4z8s+wqMZeLdPNl~l%#a(X*u?U1iPU;M2v<I2-dpc?fU6CqKyQc3G=k{uQ7
z7-GjzJ1W{y$&OBTbY@ItJ6hS%nq0+>s(K66?8v=7KG}}ybZXe4*iqAtTFf@3*0!U8
z9S!ZM!)#q@J*sT9zFqEX*4BFyhv|8z_(r<ln9zhe^w;=r3C*a@sZyl{p(S<99;J=$
zw<ol<qn#ZOho_F?Wp5JS!H$l4%<uKlh1`qU)sAj<bSL+u_Mon)ppA?_k7;DK_}+H(
zq1l&u;aYq@f&}!pV}Q;B34^GE?P$W!nqhVfw_}tYqwN^MqLF(1U!}DL{+%6l?WqL5
zw_}VQ3+z~E#}9hUWIKM;d8{4d$m4Zqf*ljdlc-;o<P<xmGCR$V8HAsxvWe-0FQ=E8
z<XP0&a`;Nd|4jacI)^%!I?s;z1ZiRD-h@TuRl2j7u!Oply3CH{gcVe&wUW^IZro~u
ze4vZ@s~zj?cxA_HJJ#Frn;jSJxMar$#{6!_)-S<!Y$8aN&4ew~mRYpX+a}EHcB(jk
z*s+7Wle&w#o4SX(*N%OJ{dO$l3F-i|2dUD+A=zSQt%pZ+=cpaW$j5c(gdHczr*!8u
z;fx(;3FmbGyd4*GPO-~$ne389YR45juG;aZUTP&=vt#pNZBg5pwNuA`OmNuYB%3*}
zR69I&xtR_R?eNmSWyfthd}OKaw<Dl)(2kJKVLKu^M+q_Nb?Oc3O}o5QRJ%y>4zmLH
z?YK+c_`-P4j$2>HcllTQ;4Yjt{x3b|sU45VkL`G3M+W|SCNc8wlE3YECezZQjp}p8
zyr90MUOuUPae8CNTR96kFw}v6?09EKc?S|4cyGrCJJLFk&Y^uAd}NhW4*W|H=aU_u
z$#D#br>3B$q)N=fJxXeF8r=b5ZnpUJgk18~-GK}aWMnpz16lOQ%!GZzQfJkjY=rC%
ze5E@%2ss_d_F6ml=3!Po!HW>`Qu9&sJ5Yd7kXnc;RSG*Wq>nZ}Md=iCpg5s~1K$w7
zrk13ZqDpXS2X5umz7v+wow5#;bHKpt);-D(Ckz+&C`JcN4%Bg=F8xGmRjQe4aUe-{
zzlrvNQo(_WG%HcXsq8=%^3q4z-c=(f>!sBRHK>XMH3_x!(%OXIip1A*puPjG9BBO|
zfZc9DZb)t9Kx0A^YE$aB)MnJ?)E3m1RO!r~M{#Y)T^#7@KwEM<YI_Ir7T3-a9USPW
z$9E!hrsiD}f9H}m=G`3V?m!O*MsLwZpqB$Z$?{?vc|AdI2KS-%rAkac2l|r-PzO>6
z>7|1mm~&HG#lsvJ?!XcUmO3zkrPHV*9r(_HQF{DT!f1zFx%A(6o-u?U9QctiR`<s_
zFrGZYfr$=GB2T7%Ij>I9BOmy+eScj@n;t*WobJF3y>zAnvvi*Az|Ri+B7LT_NcZPD
zFi+?C4lE!qq~`Vi_uXSLvomU$mN~H8fz5jS3I~2AucY4EqpWgZwM^GN${MP`S_gWK
zGYG7c<u)^Zy#v2Fu)%?i4*1mg2losY`SZmlw(u{%Ey%uXVfJ?iwmPuQf$hxhp-Sl=
zgdNnK)LqowRQZV9OOVKY4(ul%pdO?i`cg_g@`dFO0S68$+Bxck11B9Q<VImPN~I`&
zO7_u-bxxdi;EV%j9XRJeCMPmGao&Lo4!9jq9k{5sbCqz3dYO7f_IIrI#ZS_o4qVeC
ztpu9`c7lWI)Jt82!p-764tV95elWe15p%%rK-m<PpE?k5An3qt2ktl!a^TOOEt0M~
z5Y{<Dh*D#6>f5VGzzqj(I`G2*Em*FpyXBCtg^2=^z3ae32mW$kr9JVU17-Fq_vI{Y
zOMF1B#_A0_CqHuFu>(&WXuenJyH}Zez#^B`N%g<w$gVU!qdup;aA47DqnM(v9C+=(
z8wcJx@X3MC(xwCN9H@6b`CsYJUgf<59~}7Tz~a5i&b^9g$7tfK#N-+|%@QNoI49zr
zNaF;YNZ~|ECsH|)+KFLT47R<>h`GsWN+dnnt4LE4pKhO$)`@gZWN;#*6D9X4>7Dp_
zMUu25EFe`DUNB1CY?X~!oXF}#Jtyir<#KLhmv|>iIq{VfIh-iyMBB;Q;mhenE+=w3
zwZ+?Nr#TNHuM_zQ@@zoy^OFlud$u;;=MxeNF<Y2ggj$p;@x`1dPA)<H+6g)0;=kpC
zWlB47|C!O^M1_;d-!PyIwX7562oh-^l&2<8jZT;diByR(JJF-B_B)<8Pl_aI&54RE
zs^mmXLS<?dYE`NPS92nnT%B4&_Z27Hb^m*!MJ*?4)32kK)^*~a>)I|faH63TL!21u
zL?b5}JJHdJPEKt6rb-hhzICFR6HR4!J6k??vNWo#G<Twf47C&OoM<V7f5UjIadK-X
zTCqyYjuxrd#tAX&>{CRYwUeY`dnW`sIB~9%)=ri>NyjTFot^08L|-SmIMLOKZmiYA
z38~nf{H2ke<X*bd+lfk@Eniyh#|8(;;fR_0J25s<k(LKKF~|wo%3%7UV#;=hIWgRc
zJGm6RHH>g#+K0r^PJB-o>BM&gF-OT%sajcJj1xaNG0}-hPOR>d^dohg6J?f~$2zev
zt$F5~O5<rt=>$1;`xJr6PD~Ng2`QZ_Z4!DeG5_SmxaH<qPRw><x(xD4vt(z`oaw}|
z!c`<IRepA20jvB%6=#kUbIJ2`XFegAU|#6NA}1!-NRqI{PAqX^DT`K6m+A4#ohYzE
zYkZ~dta9REdCifu#)-8~^f#C#1z=w9#BWX{xL|Z)gB(*Q9>{VYXV~P#W+$#X@uw48
zocP^|qtb0BwmPxRi33g?bYi;`e>kzziCuCYE@-i*vh0ve7qARSZP`8{Me6*PdTA`X
zo!H~VUMKd+H2bamey4Vk?W#&ik_38BN)q#s%u?Ch)x;x=8QCehS|Q8UONq6vB#x|<
zbliy(^e;Mb(uq^DEho;%NdB2v*pR&GO5)u#ma{T37&EJo<wSeSc_%JNuP!GFOZx&B
zFDG7Nz@mJX%T8P&_wSjUs)Oa46ILfwCp<K5PS~Ar$U?Z9D0Q7qxMZcIvbfp9mzNU*
z`7M(!CrUfAX|EGLC$2kj!wJ6=0k#m4!<5g`_s_(Ug)BiQLQaI8Xfi2jQ30(pnXV>A
zosb=$oz4=I^UUQ$ftwt+J5Jn{Y0v7n*_6aDO>Oz-N}|-gN9R6OMp%j-I`NkikDPey
zL{1lSxlnL0o;dMV7P}Kqo%ox}|Ctjn^z*=Tf@xy%OTsJaYrXW16N?Sn3G<y3@8!hq
zLJAi?IPp=|m#mI`%D;^Kq{qu^M`{nz{#ua~=hDu=@=}tNg!C?Ca3K|0{M3XrE`X3$
z_tOz7xwRIa&eWR9=t3sFG&3QK3t4q18zH+3U+GQ`7a|k1in(1{=gZO0qnG9-<Z~fE
zp@0k#p^ytDT=?3B!g^#8LQxlr=}vJMwA&K7cO_jYrTdHXE2VY*hERrD)`gsH|BE-!
zDeuCUVL87)!Q_J31&a%bE=V?gdXs393l&`0>%u-4D!Nd~h3{P$<3eQ@s<_a}h0ZQi
zb)lLIO<nlbg=811yHL-C`YzOPVeC<JEf;Fb%H5ctxU_2yYm#f8GuLrp={}`fEn{72
z@J7PjaYlIq+P)Kp1}-#oY45XZ?9%=Z*hn^g!XQ7oes|L#*(NSbo2lIv>U(c!=0bB9
z+Pcurg`KYrEnH|V!`{f$(k1_YH?*P($g{HL0o`p_^jCdjd+GBI?FEz_TxinC_|RwQ
z$fAAwl<2R<E-rL+VSoz*UFhaQcNhA*(B_k|hYLMjn10>V$Aw-l?OoEnUHI{dA@PG@
z>rL%t$H9Kaz6|I`l}OnI`6j$FU>M}WU>AnFFv5i)F39UX<-L$YUE0$^<kHIZJ59q}
zFqEz$ZH|;dduLqnt7()A-?<?BC^3(s#?dbPxx|#_k}1;2^n+~Ig(Wh2GQ2K~lL2wz
zCl|)cL0M*;=)xo!|CNRbF36wZXWl2=k26hXSEtHumNHI}&eW<bPiT?OZ)u!rx(hR0
z_}PVDT$t&?EEn?JG0m2v9B2Ico$>KwL#5e<24l_gBD^^+%ynU*3yb6^?=a4Dp~HK_
zeCg*w!<8Y%1<cAIh$&Z>Er>HN{A64#jpsII+-6+n!g4vLE^Ku{24sZ`t6f+lM{SI8
zrA(^XhE*=eCgh(}YhCzNW{3+LT}UWpT<5}XGB{qtdS=CW+s|m+oA7k2VG|FZGuga_
zuvvP(+9(H9+L5`mO(u`DFQe_ko1w-(xbLa|N!TIdbIsUwvi63)y~*a?F06f@u*U`Y
z#aOaa^BHsdjQd?U;KD-}{&L}<3x`~|<icfHFD@K$;j9biT#zT0A9dk`oJ002$6Rpi
zQ;y52qmS{~KBdwH(@7Ujxlrr2<+KZDT-cH_x%`%7c|V9G;qxwBkV*Sn!bP?tPKo`B
z6p2%PzjDQet8(aF@XJAW;hHq=g42bL`xUDTb_F&$nmdh`yC>Tv@~P4Om+@?Qi^~PK
z%qSN;Y}s%tL0Xgl+<9e2{gxmpO|KNA_bXxsTnM^w(}i0ugj@*A{CQ@$F5~db5OE<&
z5SFJLi^g22nbIh5Lsn&D<My8ovq~9nyKqO=MSkOb7w)={F-3Xt<uU&EWMySD<#=Qg
zeIR{ySmYccFFttW!ebZGyOF_-CoVj7;j^4}-1ystXD+;Q;kCe_gy$}Kk|$ouE+=be
z9(j1+-nYj5(+z3&8sEs=zMb%ooIs?V^rp9R#7CIU7dF0^6ZjL;2bok$3?~kl<XL|o
zWk@HOCH+hI<kB9PEZKNBQn-=E4Y*OjYfS0J!u?7rHwt|=t~_lNPVLq<A&}OM3HOci
zM(lKM?PU#e#rT1O#@A!2WppEx8@b%b?M7xd<b4O(-T2ClEN*0VBgYg&S9vi+dt)}Y
z_F7DNTTQ#xN)ER?566_#jXXt6nV%;V8d}Z$gCUPwd(BNgH}boY*Nt(djV%_LBF_v3
z+}cpf{gQHpxr}W=x4dxBC}Up4jiPR(^CG<$#oQ?F#(otCRFrVzYd4ChD5|2Q{K@IY
z6*sQBQQD1f+!!k@yHUoCveJ$lz1%40hQW<0Zd7%nyc-E_nBB0rQOj>Mx{>I{#r=xO
zjX(A)4Js##mMd(&zF$dlqk<a;)*CCkQPGV`GD-)O_6L+^tt{~e6!8ljP}27`3w(D#
zspf_vd*Md18`a&Y;l|<viad98P`_k>E**`v+_*U}xwcG$pNzX$REJ#Gje2g>ccXzD
zZQW=`vmvzwwUHZ*-DpB?>P9nyH1aLs(*l!lb2n;tGzzq&*^1g)k8I<HJSbR7+tcYn
z?Lh5F?L_TN9aKc?c2{yYYImxbJ!G8O^WJXsabt)ZL*2N2K<Vp7KR5cj;c1@y?*U~1
zVG#9X=_&&Wc@8R;gUVnxGM29*<}f#Ur%fE?#%MQ&yD`EI*UL&H-T2Op9^H(>GH3!4
z^Sv9b4=O(}ehhi|K}8%X`jMvac$v3utaf9K8xz^v$!<(>V-k67+REAcnWwrj&5hY^
z{Orb0Zd`g{nL(XSZP7njoSAOSa%0Xx<x5ud7q@l~(HuACvMK3R9yMW}8&dT9L2aPs
zyRkqPlpBi}u>4CHRZ5q*u~g?}gmwv4RuEQFSN%`vS~q@m<Fp%R+*rp!+v>(PH`dGH
zlSzKYw84#yZfuen-qdpTpb|SMZ@V*Xc4N#u(-sE2JE;6l$aP5BF7w%qoo?)MV~0%j
zKFLXkv<?f%!-03ZvB!<Rg%z3kV(xWgAA2GXWR~oHnf7iR)cbbKjYH(a)FZlo)UDl@
zB=M4tyK#d4Nxk%x8)?&OlT!xvtQ!|(mAP@w4LSPfsn7c-H#?-QxPFI}OEQHHDN_$A
zm)#H*^G`Rfxe>1-g$k=1Ha8x+@s}HRHymz6+=$AmETuTz@X1+4<`1)S<++=nQav(y
zhZL{uPEU&jA3vl7+z<`95hVBzX{Mwwvo8)QF*mNutajs$%+<rn4L5GdoXM0VHw)a9
zvquB%N_c<$q|%3#yKczE`BL;ipnlRlH|`UJ<wE^8Yqg92Yadn~x$%!1@7#DSBjeWY
zDR@eKD`&6==D*!|#_V&dl)jJ?Ecq4nweG(m$VK?gd3F7JH$KQ&n&wA02LE90epvZe
z2DX>w3k!T^X`Bk_iDad>DOIFWkxNBx6{%IEQSr?YC7TMUNUI`)ii|4KshDtBNv~qd
zVP)ZAW%y2uz>&jBCKdL>N){EDyq3%=?i^M!U$TfwHmiz%4l7xYC{i)Iimz1UP?1wb
zjU&q7Bg*6>O8X<qjw<FnD)Oqxo-VOxC8MN#DhjA5s3O0L^Qo(^KB9<ukXlGZVHMy1
zonW}HMY@kD#Z(kmF<HeFIsdEpTGjrdX)5P`6{S>ERZ&evY1thWCKZV)%BU!-B0+^w
z`c_3Lr^29WFLMztdfQT-{Pz(>9C^1(+M|lR+ogiM8b*ahMP(ILR3xd8H@{S5^$O%t
zM-_Shiv(AakDe5!FYk*HN0L-eR#9C=Z54H7$5kjQYDpvV2AN`J38<+;HnjRlHPPxR
zO!Cs1x+?0asIQ`diqqK@X-%9wQ<a7)8mVX^2V$D`av9O?%T0|{^vbKfiAJ(@k1F3v
z|5Y?s(L%*g6~k1tRMARBM-`n^ZI-rH(N0C<qSe}{XsbeQR1xlWRQUq!Rdisfm~z)f
zXBAyk$c-(7RCHA#x1|hJwc9khsp!tudQkgOdrD6Ty{WRTK7_v1@kbSL`jZE!_>vW8
z?NMbgP1)iQZdw-3a1|p|{HS6qdpJ_XC>5hse5YzFPP!@;zbB7T@q>!hbYw5&P8qqW
zM4B3>;#7kqNfTsSD#Vx0OTa`GlVpbI`zs4}stTvYxL(C?DyFIUNyT&(GgK^Au|&m8
z6|+>#Q!!t~Y}ulUk4KfcDt?hvqRJeZ&s)rqql)mI(n-fQnSGngBQ~2CsPI&<$OFR{
z%3OU~snA`c@FH1U#}v~sWvPl~D%Pl2t720*%W@SfWhJUup~Cyz+~}Ahx>`nHvpI3M
zx!enLfwGoXC93?YBD%}``k8s1Or)vir7z8U$0Q4EP_a?PA1Zc8YpVSDpD1aYip{c4
zRYdlgOxMi66Sh(h?K6wHoskvxn-e~ocB<H=VvmZwDt4>dLlPv(LlWd(5`moADsNA3
z-lsxT9v?9$weg^eLvnOH80*1d6-Q*Pc~HuOqbiQc_^9|-#c>t#lEKp|&Ja$hI7txm
zl#KH;gTPr8=Ty8@@k*AtiVJceRJc@JlrxEn%PP9nFv~5U{f=q3kxocc{)(#I&?@Pw
zia*KMs8*_tYNtw!Lp~tVB?-9ccw}q|svOo?Ci%wYlYoatxuy4!3cregilB;+io1FX
zVZsd=G(wab(@U?*V%+-Q{kb=3-jbD~m)=p)e};Cy>ODI5sSl_R^_aipH2bld#7KIq
z;)(7*Rq?mZ&*b!?^9vR0xks;6yixH^R-%eWnT&FS^IJI=F>HE4ZN!$pHAv(K8QyeB
zsg4`J+%ElzC&siMr1RjjiZ~DAJvdP$IfVx)J(zw>5gz!&oXUgL9;ET0a(RnnCBcK=
zr1Y4Qx^(iSlF8{k$lyVC55DrqtAgMhos`*wEFSHXG!wG|S(yzSQyz~_np)kM%>&`T
zk107k$mu~I5AxE<bX+NUT*>7@ZVv<`DaVz39_06+ga==HP=J1?<4Pe93VI-=k|emW
z2Sr#^lv<oxj4E6C(yXXd{E=GPgKs<-<-uqV%1HlvDh3bauQ`FT9+aMEC`XlSc@Gji
zGV@{bpq&TpJxKJx>_Kf0>Udz09o&;p#e=FIjM$ctM6E!r=s_id_?0~<l*K3@Z!rrW
zHdNF7WDlzAT!Wx^P*Znm38dC))s?N!HMVB9o(J_kXuz0n^~i=EG}5`T2TgQt>cQnr
z3DQC{-Dyr}L2XHGB@K=<NK6|&rY%9vfgL>PNFKtNP9F60;O?e`&U$1Q54w`OdC;BE
z!-L*>X-`5gkNke9wckhg`+6|plh&*Lx--CofjSQ&45l`prBxj2!7yfr>oFrd7^(Aj
z1i4x4dk;GQW*+0g57L<_=H1EKJEV#~(f&eDbI35xgYh0*^x%?g-Ghl9tn<kG`!LCa
z$sR25V4(+7JecaiY!80+Xuon#^WZ002;}8EEHgZq>4Cs3It!0$@4Aw(vT;>JfAL_B
z2lMrcb3K^nfvAK@>BS=n{~s24u-Jo@9;}jSv(2)^gJsezD=ziGRbG1@#R_Hx@^4BZ
z`o&x={XdfMs|Ra5Sj&Jmwak*_afs4Y+176!Z1CWi2gg0w=)oor_IR*Yjz}eCvj<x|
z_?_JRZKbUqZ1Z4;2Rl93dR*B~{|^t&9#<qdMBU{<NKtlE1zsK3e1RsdllI9fXq|M_
zgZ;9uJvivWAv#B7?zK)jOuc*5A}Q+$MT!I@zU&D_UMP9OgVP?I@yIg_6HZc3QRNO1
zan5>ho>}2@9^{*rByd4@dY?|b?7<Ze?s;(EgHzsw4~Gp`J^0guYjT2$E3bOs@xbbV
zO;%qClb!0KI%KI5KIcl7A_;c0O42ry*8`vIrUzjU{Bk1lAn3t>8c7cqoBJdty-#f}
zV=+s%{wj0CgQy30WP-`QBqqf?xamQ?6UuezVPcY`8-$le^DP<D<>uQ|f%$%ml-`xk
z#{{j-2Od21;9p4@s{Q4`gCP~)c(l*iM;<)(;E4xM<s^JkdCj7~J$UB9b2;aHrF?%v
zS$IO(eL{KR!AlQbd2scFB1u{hy>~(>a#G{B9{eNQl79hs@R9IdmTJ63(gzP3o>b(4
zC-Qsp*nr`a1iUqVmQn3$it}nJDV~smnv$A|n%avr1W+Y1EkSOd%-}^vFBW;R*o#bF
zWcH$t7j?bJ;>E?o=Ima4<waI6vU#<uZM{z8s8(gNXRek*vR-`cMM*Dmd6C<TLSFfH
zYRcn<|F$u|7w#&SymY$R%=x@>ow->`3wY7<q#{KH2~8_oB)BlE6!D@cp%}F|RZ2?`
zX4X_nc~RPnie6Om;u|l@c;$yvl=q^n7h|mEa#Vo_HH<&n%#%(k30?>%dSUj$=*60o
z%CVD*i4c^bu3@xzk>o{=tck*+k}5D;b)(ioWiP6FQO%1gUP!jXA12X(iKb*PYIvb|
zQJs4ywZwdLQmN@hZT6v-7vkhPrHINdk4j3c=S6)l22HU{_M(9o4ZRrb#SkwVc_F{f
zwf3S7p|KZDylCphw^CX-vE?b{RT@(>FA`5F&ApH}rOMwFEo8eXOf9LcsNzd%>qS=?
zWG~uz(cX&=UUW&BC{I!ALg+~CMC~j+Ii=)(VUbd)*xidB(qS(?>^1fDqL&x5PbmYu
z=<P)xFZy}W-;2I7$OVk2uA7=RQ&JmD(t)Ah8nf?Amd?MOZj?qu2YI!>yu>+J*O>iZ
z!%#0qdhwkX^6rUY)Zt!?AoN~h5L419FXrw~7)Nt7^?T|VFMc5WNR`O3UVO?^`Ae<w
zUQF;}q7><+{>CQxc~(lNcrn$BX<q!~#e6TMtJA&McuJY=#f`S+8Dz=MB+T;SRbHcH
ze`e_~R0*3Sy&})koh|cC3%uC8)4Y%>@bGKP5-*l|;qk)j#WF9Jd$HS#JzlJkL+Qou
zUTpPZl^3hM*d(>Q+KOJ|#X2w6d$Cpy9N$O$s~7X08oj@mB>S86%8M2o68^ZKu)zy?
zA)uJ2PAM<vo2OpZ?!A&XHE&_X&z<78vBB+L{6XiGFMbCd37eEb3*PC)E;{c=R-64K
zajzHqytwMcpE5+3Q||ZTtQY4PaKMX$UL5*T-HRh$9F^(1NxQ~L-o$5~uU$!X%!}g;
zIPoP+ZUG>iqMoLnp*DV{T_$&4P90wP4FMPQJ&jaKA-i*#F<00J36s?4@3?C;tzOu?
zD1KKn?F?|}VN%h_c3f09<5f8=oKhso0}Oq_a+>lZhrIvYi=Y?Jy?Eh8$crVP6Sgce
zKky>#MT8ZjUIccOm#sW0uf)8#?uCG4Z?N<x^%nKE7k3DEy||}Wm&p4xrPf0){_^6H
zOe9&Vr<5mNJSNXxWt6PwQ!oCO$=uB(*=Js4Kdptmlo(kHK8*C?wM>a=hP*!H^Wlvb
zZ@u`3PHG?0`0)0o@g1}8WqEq>(JObDYVnd%`0z>R&tAm&{`2E~sBJcViAhN_6;<9z
z0UyjqEK-!shqOMV^C7)nE0Yfy$QgA<UacsRnVHQ(&Fa(Mw<u<IX1~%Sa}aX+kc*I8
z_w)GRUY9KK`F$whLsuWV`B2b@LO#^@p#j4R`%vD81Rsj{P}GNFG)wC(6!)Qo&R-Ks
z`cR7CJE864H{>#UOj$xXs=){OZ<oXveK66fPEGWo5<!a0K3IH6Vzz=06?OmIB!eUg
zs7$Ad?pO7pn$F2mcl3YbT*C*&hng&^<wIRUZ6E3ovLH!P>K(><%nC@$4Si@N`|`}x
z*@wpTTl&z-hbCkRXiE6jhh~K4y5GWw=g+k5w$`2YKD5!fEuozcR|aTXk<`J5jx;;z
zF;dipo4(q{A|2@NLk|`W@}Z{>@_!tu)ys#Qs<xHhdaXW$zSMp`^d}6^O9%S!6Gv>Y
z5Arz5A@qk*hv_lH2?yR8zw=>~5089!?89guzW3pGAGZ21#)lt#m?lm6FlmPQM<1s6
z;IB|wx-r&=ae6!B2@`yns5_GglVvWQRwQ_;5383Lx1TqNPS<1B`7pzWnLf<&VYUxT
zd|2wk&wA;6AAZq!jt_Hno+n2nkSJ|RTHwP%`iu0^#d7Sz+9)lfvxd6dhZTgC)CX;}
zC9{gWT3TZd*D@>quReSUSg$+3`LKb!k-CYxSufq<!>V-J7PtAZ-G`75VHt2AcKC3?
zhl@V!^kEl+Pf~aLaKwkB<UKy@CG7KIzYhn<hp5uvK{*6nwbd%=upD3ZQ}`GIj{ERU
zVQsr7n5|bkmGCL@Y3doOm}h-Br}KF^nr!Ei50`1GGBXKwJ?1LmPwF)vth#TLPVUy`
zu)_x@O&8ToHEz`U`Ni?j@%rE+_^AP^!~~^!9j)gPpZ3Jpm<-4U!=O&as1Ks@uhQ#`
zyg|L`!z~|flke*--0|VA&iCY;ykA=&59mD9{l9!Tl+!H!6Ca++nc0WWEc)ArXR=^@
z7~e$e!wWtBwGS`Juc#~DX>Ce+!|Yoh{vo{c;k^$ZeE8_YzjP#~-OU6^qjQv(B-uE>
zcIJm4Y5j;NOE!fcDaom*si|r7(isCx>HPS)Kw>sJ>8Tm?(u{;meq<(O(fzE1iBAn>
z#wTR=W55Ira{7_WkNSQz@FTY$dHndsk1~Gb^&_7j#r!BP0k13N_oJ{MonwXq)PjB#
z@?*Ns<Qs44^~QL*UgaWw2p47W!Hq^Vu3W;8ul*Q*)zrO@Q7!{0>Bqv#N-4i~Nq|IF
zdSNN;hp5yo>qj|1s`^pQ4}%}&{jm7u<uyp~!{|q%A9DSGG-8r1UN%Z+WQ%fjftY4L
zgas=2AzQ4(K1@26P|*+R!_)eeE7Ot9Rq;bw5RjDYM|D4Hut>T$r@Yn&#gCeP2-NbU
z9-%h14#Vn_rL@~slc;Q~p&yO>Xzkaov}x=|6Tf!JUkg8)5}HxJ^<%;B2JxHRN@z~!
z^QHvJwv_IvhE{YWyKb^!S+cQ>A8mE#!$m^}KRWu6{1>YKg-$Z&e)PVLKDW`ukFL_C
z2>cOrlb!M-eE=B(=;23CKQ8-mMaD#e{g~s&TtE8w(btcWethRgKR^2WF~pCdew-<k
zVt`-!PCL+#9y{VoZZ-~LR-D1oNLSO8hNeOP#0{f4f;!xf)Yr8yhmwx0iXY|2Xg?<V
zF~yJX88Cr5hWdjaKN80JF^;f-_g_oh@&A*ZNS@@!@*&#y)v10=^JBKmZTj+ry`SWu
zljYr8Go-0Wilmu@S$?cJtsIs#%J2(gx@1h0uWFK==f`|Mj{9*!4uMQOKi2#48)Fvv
zvC5Ctek}H537t19jjq$mQa?nONlyqXsN$?798XbxjqLA|q_uwh>W3W1$ETG{XS7XA
zTE})uF}p!#S53<vKQ{WYiT<#*W=Wg<*y6|Uer)w)n;*OV`1X>qd%S78WGkC<6ifWW
zj~#MA<4rsL*hLVo)<qHBn%OMD_0A}TQ^)W1W1k=U*>Z!1RSw8plHvNtbVwXOj*$DD
zQBGPDGOS7(Y)v@o$1%S=KO{lYx(5j-{W#^vIX}+xxSy8AB}Zz!;S3v;eUbgDmtVWi
zxlwiP4~Gj9+01y6rI)DL`)j3F{rJ<5XMQ~Q<C-5<KU6<F49Hj|g^ggRI;c(=Mwyc%
zmF+ndw;vULNuF^=*>Fbj%4GKAwjX!=@G~+>4Nzr6K{*$#GKKsI6NDoiI)NBtuKRJr
zkLx+L)^7T7OJ;au)0s0$<cyNHnE5Va?(41HlXEPeNA$pthkpF!$0I+U>ZOkfPyFaK
z(eR^5+kL~@BuRhEd1<ZoPQb@av?cSxkC)mMP5H`?cYeHQt=E3M(c5`T_=j3?t=7&5
zIY9-qx*z@cm;NVed;mG>C4DBx1#r55#rM4{rU=LbUJNM%=yJDOssKKoQBqUWP$hf!
zscF?3Ls~YNj@sc#T*d%01@K!48$!q&K$ZZ02;#>evIdYXfIkA*5kU3;z6xM)07GQE
z0ptuIApm0lxdO-?KruEYoy-$J-T?ARz*%jE=hywBgaXup0Tj~x!h|B!?cd_pB&}9)
zW=jO{bpXv<CYNNkOaP?_rKuA3O#o6wpe&tox^D=eJbBl0ZRAY>BnHqZfW|cC!s}WA
z)DFNBKvDn|0;ot|p;n?M2T++H)vE+hRp)9lPz{yu>S>*<9zYG<_YT#%Q8R!?gEWv-
zM_Nd%(vSgl1E@!+Pi;WWRZ3e6Q|l+2&nis<Xc|Df0NS(tZv*)DtkO1sW{i}u<^i-I
zx1_eBw$@AA5N<DsA9Plk+%Q?%><~c50P@#W#F6Tq7|>Z}MF3p`=oUbq0Qv^dU2mZm
zp$D~R0BIAnT9SGP@SJa97VgK=0o48h6y&?=1_m&QPPgWeBw<4X7#6^+0A>d;oJAu7
z7#YBqSKfa|r^i#n%mDWMU>L>h=m5SCV2sSV0DcVMCz@la(%_^3#*xQUC+Pmf07{0m
zPD+{_z!dsZ_0nkpT#9K|Q%~2O8H6w9+(IdS4&avn)(22vyLLzC9G0#MU~T~O$nyhO
zPFN7Y!T=VLmr^BuaR5um#gA!=beZlKoF2b|yi#{k4v$|gJ2=F&Mt9Z*@GE&8wHa?!
z`z-*|OKo2^(A-Gf6u{;Hwvby5jsKmnmAZ|(ojP~6HkWn=uq%L!L1YSIw+wFp*8;FI
zU~d2i0ys$C7r_1iZZ%DwF0*BX>5!NK{K+C|<VXM)WMFHWjs|cnfaCN}QBUYGCkd|6
z+D1<Ya7Opf63$W2%M3iH-GX<K*-O;RR57mvaFzV4{`{qD0gFw}FttoKrEdY)18@Z3
z48RpYRIlX@z(-c89^LoKnc-cWG%LwZGe8YeLji;d5$YO6o24=Gb*f}<$e3iUB5*r^
zlxqwR0(eNc6Tn@<J*pJl55V8jB#`og<)=-izhub=@K|prE{G=qJPqLQ0G<W#PXO;^
z1+nyH0IvdgLGE(vzuvxP_H6)f2*CyNmR@Zywr!4oPv>I*{|4~k|JM4%?B@W!JiXyd
ze0&fof=C%esvr<VnjlgKwLKM(^aVsSolQ*3Y&xnq=?NKvIR9SjRpubF&>1A>{~)pj
zkr;$Ii0nbw^ChOplUSCeUj>mPh@9kHLF5S{ZxFeel}0+hHRKB-e-I_<6rdKR7Ni!U
z7N$yk5!p~t?Fod%bf<U_C3OBehzwu-cXw5(AWGB!hFXT&f=9oc9&aF&rzTL1L74Q?
zydzDPAd-S;7esrS6@q9G#JL^G6`8F>tsF!ZLe(H@1fh_t1(8gsPAyeO8(2v-nXMB<
zEkbST{Ce6ga&^h|sP(CXyxMuGAz7eN5RHRq!faD&%OJibG@~}BwxCM<jEHu_MXMlM
z(`iF(tCwy#t8@sWV-TxPrpmM4+)4L)5;{}61kshyjoO{sgDNebuamkLxpxqK2z{yj
zg4p;`yThVCvjeCDsbV&*i@`w*31Vmv!-CpdDn<uU>PW)yAV$d!7S&D#BN#j~i0|}T
zHO{5Dm0v6Ro>ipQm>|w>Ne~zt#5kGEA*2prd=L|YSR2HzK}-x{QV?^3n9D{c2k~<d
zp8eXGOrbM1h-rkM^sP(}Vg`9;5VHs!ugA?Mw9Ksi8vKhM*}Mhj1u;K}ML{eMVu9|r
zu9147&S%dmOXL8R(yrfLMsumGwLJgb7rZ=(6*N~;SLwA@6V^!Q4``>&bwR8TA`nE7
z{%=7X3*vYX8)T5_Y?1-d>uwHWOAx;Yv6aprLF^!G3t~H=F24myvpbpHL)}H)9mLbc
z+P9#+%nH12qfOfV%pM5hAmPxLQtA=v(J#&@LrQ*eJrTskATH57Nj(+BX~G#j@+{#T
z^*r?g_5FA8mkG^>Yn#3j#8qbhq`IirsMa8C1PQYT;n3MB$KtiN&?LEOs#Fiv8-!1f
z^al~<cb<?y5RZa*%%TYOE;Sm&wHJx8Ag=4RZUk|Ye2aRUdPgtKa7A0l_ky@D2V#Te
z0sV*6zo=!(X~*=547HrKE^6oSzv+Jp%JUDkK0gcMIh_|lybR)%oMThOzoYY-`iA<J
z`VUoV`G;#?E#5QxA&8HJfAvzixkDQN97J45+e$oDAVml%b$%BzqzM5b3=3g+2x&t|
z7edVtYK4$KgbX2k9g;6m$QVMV5Q>LT_+Ucj5VC}jFQgr*tW<#<glr*XCw!&*IS-n0
zl5^=!ZbF_A@)Gu(`tPXaXSM*fAhnQej!=YJlq%aQ7Q&m#+H#guA_RG9wLmGBR*+p=
zt}V3E;?pS;LfH_?g<uH5OsBlwjwyr$vQc*o<+Y{~L-^uY=qLS8OvMnU6w^-5l|rZ-
zLX{Azva~w28a0`E{wwW>*B~qZ<J1nJP6*vX=uWe42(3bB9YQ^3>xa;Q(2&|RghqtM
zRB5mY;gc!#x4P3TgyuT8Ahe`jS&lX#)ZdWYmD#q`c2sGneFz<N?ifNRojVh{Q03W)
zlH_*p9wAJA7B?h>TMLanL+BMkZwCBxR*`?L_6eacv;C+8sr^G3K&W;`8wW{)LKysi
zouSNT%UFIy2qQyS5W+&4ewz*7g)lLMNh}=|!f1lD@O=nlbpC<xBXulw9CbW(LJ03?
z{Wq^BhcG{+U7Rq5Mbgex!n6>63SoK(GnoBFFP%x4MV(FkS=L29?V!(Lb}n@uRm`Hl
zXgl~*mH0(+WRuNH=`SWrc8Ro~+bFNK>asIo8H<)vSA?*VuquSrgf&!oj+V5xHiTc9
zT^GW7LgT7<!v|(=3}KV>JdEjKYz|>d2zkQD8^-S;Yz^UI2!DmJErji?WvBiT!k!TJ
zl6Qo#GlX3se05Iy3$EKU<8GOa&y0_k8ux{;pE2h{I1oam2gZ}k3LFgK5S_!+BUJH^
zhH#90Tz5`{@aGnz6rBoT)hfejws3|jn>$N5N8OY+e(wE*3n5%&_7e4S2v<V5O0G~u
z8;U>40@p&Y>TC<4>o?jFafINc=?cLgLV)b1s#H%1UV@L>dEtMvF&M%PI-wB4Aw<a1
z;Fqts(GX&Eu2a7}uI;AGmaN)FZ-sE1{+$r+67Gf2qK4M;eP$m}CEKoe{G$*a%gHm0
z%wasC{}1(P2(t@oe^C6*>@(`~5MG4vGK5#mO6k1mhSxg33E{2I$M&RnCzD)`{tM%W
zki4xP-{npe{ushiyHVg1BR_`_7e;&-DZ)q-2Es@g{_h)UD#Fpvaj6M84{E2rv|*%U
zHUl+%7={$uewF8J$w+f|9&He^zD>*$M%FO$ztOV6Vkxq*G&}Vxs`xp=$f<L#FmjWB
zX{F7*d{Q@z@4^@rMu9L2hEYF^24NHm!yJoG6b++r7)8P;%37tuC`~9vElw>F#@7UC
zuw)pSs{MC-zoBUeqYR-ewH!6G=f7vwmS;903?o5WFooqu&i_g+VI+r9J&YulR?uTA
z5-NpJnNWpVm0FD|?Z_r-kn4nTdA&&?*QD0cV`~4;w(5paPxnjR({`a@7#+jt6h@=4
z{2LKX^wL&@reS<bXhv;LZ9$c~EyHNY<JFo@8){p<v>l;+7#(!SRoB!xj4ok}2qWJT
zQ`ay)m(cpqp8?&%=pIH7a!+cXFnSSsQ$MZKg8P#D{f{H&fG|wej03|MM1L@K2z4k`
zVulfhhp|1o_P4{xFz#DYtn893y&4_H_bi<t!`SY>c{_&A4`KXB7)zCk;|Sxa882#G
zni$5UFeZo5zo}`8H2YlpJL1-J<J2%#IgHc7xYo?HzfjVQFlL7FB8-<|%nD;RTd;=l
za~Qvbu{w-3Va%bqAdH1!%q7nYWB!+IZ88kzXfI-RNf=8Bi)AUzHp=^qs*H>8G|RM%
zro6Cec^E6m(wUWnRn&Lk__bmD8pcIt*M+e@jJ;v(V>avixZlFq5XMGkw^OBsP4X!~
z-a`GIx|O<(Dls{8X`}H+7(2q)Npn{id-T%XVaT)YCBT+W3)@fsbQovCI1t7`W)D$M
zh!Q01NEk=S$Ee43|C=uHCv`qWxOX>x*ADI6ayE=d4@~Fu(({B1)VT+>O<y8k4&#a}
zu7Sp@%>GHeMwOUVmr~lou!rFY!x_enFmAHQ6-FS8AlV&;s>gf6@REI0zwQt6$2awA
zUlc>S6AmMybCeJZ<GSu_J7T&OMvJoA_xwjRZ&UA3?}l-YaG&~s`jGk;Rca08zXl%5
zrvRO&y8m|=&&bcIxjSj!Y+r@(I*hRqjEmq+7;nR<6G7bw{t4rqoFOA99KriAKCnur
z2t3KDKZa4Wt|@f{|I++K{Y;IE{I_=EBS=9`sXM76_=&SO4INO^Qqxh>Q>9B8BFLz-
zEj~VT1X&`;8bP)Qa_N5d2)@!e7ry}KU^XW;E>1hjxg*HKY~Bd+5p2aZKYs)Tm@P;Z
zr?CY^A}AU`r3flVP%MJtEHXw=LXRmG!Pn%Hx+4$aFHQa?f-;1%)C6idsv&~%1lh{&
z!SOZtFl3YNBt~G?*%Co~MI<p>A%cp!f02LCAy<5r2&zUf>!~GGC2f*diy&E#sUATM
zos|e`l56QsZNj>9O1%i`N6;*S<`KL-ZD>HhNw?&NghqON;|QAQ+%$r3$wx0}AHFTf
zUFDy)5wwh;RRpc|$PN*-A-AQrqqe8^&Z-T2N3uXCLT7512yQ>se(UQVL5~Q2kVD@~
zJ4N)2px+0>s0eyR&^v-Y5%gvJFlxUD1`#B(e*^<`9!N+(0E2aB2w^Do{6uYX4kwSG
zj*Q?tg7`N~sjrnbj*j5_2u__-#;^m@hjVq5AK9zs-UNBC&G-l=M6fG@-4RTTU{VB|
zBDlIDesTm;B3KncL$`4%+ng1_><Fgm?f*oW9>EOVnHfPSPTN^YKTCtNOba9Ug{5;M
zm`j*Pogcxk`tN%S=wz9LMG-8Hp!8Jpk_eX5TuPPJmJz~SZYv^Ksr&!lHm#1}SQ_IR
zI%{?R*9g|>yq@q|1RHc`BcamT<jsUF5&Ry(+3Ciu5p1I)Y${;dPX2?sgSwMCHA(w4
z+!Mjx2(Cq7jbL8{`=tezO3{G`4n}Y&f&<O9Gm`hX<uHp*L~ulpIV#=O`8eV4I>{$>
z=Troz$!Dlv{!b+TP&g+mJ+aF92rfi$kwurNSE!e%**f4VK{owo1ir1>;<D+EHv&7^
z5rLE7qI#%qsv5xp{?kn=)*PbEG1-wo1i=XAT*ut&2t^Q<DHKDd7$OlwBX}9Xs|aEd
zT#w+d2p&anBZ8X|JY<8nWKl$LU&eV@e5T!oI}zNC;9dlSeaZ4AM^c+j36f+(4<gzv
zb$Rk?U+>!$)W%s-=DqQcBX|<QQ?~X@=JReX_-|(Af2_jKBY45=i`?4Ud@U#c2<k;q
zKZ>_<@|V+o6h)$V$C%F%#6|Hwf)5dVq$5@SCETi|RsTdTnava*MT#hz9=D{8B4re*
zqVl|YEt@)u>i5iD)0@)}I_|LuTT^O|+?<jwiu6%rh@$8vi=@0!?cSM;QDh=yjv`AG
zS;^w(h$0&~JM}Bw-_tR5PI4}4Zr#r#dvs2_gC<`T<<gt;>wbYK3hG>lAe|{1MX@L<
zMo}q>;!%`{B2oHwUimtTl2MeE7Gwu+SxQCmO%yGLnIx5t!gk9dP$r7!cM}ADu4Xhu
zQ9cS2odiZ2sb2z&#gZgUe90E|CYz(MNQ38<q$nyxv8jfo<7Y$N^NJM7-}05Eo$oDm
zqNox@)hMb(A!h9;))Y?^NS5)WQ-i8dYf@`b%NH<9*q30@x~$maywV_whEW`d;$Rew
zq8RHm%!p!U6pf>3B8M!BZ=;y!w)_}HodXHYqUaq(pD3EkUeIY7MK?mLC|VQRP&-D^
zmLRp-5!zEbMA0ChQOr)vcBXcrirF=a9zm0Ur0z6(P<uwviy(I;OHtn_`b9B9uhl<_
zf#d<YBfo@8*q|r|(;1@sL!%g`^YEy4o1TP?)Sd4LqoNqCJKsk!M&}=*2$a;eJ~oPR
zQH+mb0*gBSY?v5@+>9`ZS%JepBuUt0W~W3kl`xI^6IDv56XdOtv!a+S$2uyn5y8(<
z{1U~=C|1dO@tfyFv0R4hrg?4@a)a1B>ij4c5Ee$Uj37meqF78`qB~2Yxa~1W(VOYo
z&1EZOj-@icO;!29q@>ky=%cXLH2*3q;&bJUHIigoYopp*qy-ks`+wQUdg^acY|z`>
zNEmxw*%HO?QS6VRrZq9}*}UkyvNeirQku&m+u9z*A5rXJ@E+<;>MrVT>f&pO61kTw
zuumqTLvyZIPl`=f4n=V|3QrW?D2_yNG>UUkoR8vI6vv}D6UF58mhI=26H$5LMdGO_
z3Z%E3q@FsjbX%^Rmb&MaE*UIm8M%653W>iE#l<KtM{y;Jd*_u)QN&$P?mbKt7QHG5
zI)lY6D`lDTXB62lDCsg<u0<hgm32)Jwi6swC)GtQenC;A$iG~%Tu?;oJT>^D2t^T&
z!Y}(GKbSvC2t*N#;#Q-?omUg&C&x$>Q8_44yoe$e#p=?D?P?lt60TEkP^)fExD~}Z
zl)oLt9hq{U67EtTQSU`@pYVYCkSZ~M$)0XX5O_@I3H7O7`ZwWO6q$>eB<3Zv>0*$7
z^}dQiy74-SH!?S(_=iO)W7>A#Me&K*_tX#6k5noBHwyVA5|H#+#+Fs$sp6!F;rq{8
zQ7YX@O-K_12x)a+ww|6n$v~AZ$&O@>AxjKRVrUve))=zI@O2C&W7@!Gk0Eyqd1Ck~
zCO2y&=7^zHe<de17j<t&qd2m1SB)~{jUgXv<);>op#VYJDHuZ`a&M#7Y>^m>GFwcV
zjiCg2Vv)*{q*V0CSCvb}P&$UnF;t1+n;1@Hsa!4w^Bv=~)y6V0l#M|^F0l|b&@WF-
zpc-S^mmE_JiOiZ~7=GVSF$N2>^IjU02o++OpWb|6pGlgn6vLWjNdn93n5xF0#E^78
z@!EDnwHT6Ps2+oG=Cy_zF+9JRP=A_5v}O#oVyGQM8K<e94B!PtpiT^R=?trqxMqW)
zehdv_Xc$AI7#hbgC`Y2CJ%g)Bq<}p1sdPc(w=pz}VPg!NVrU*i3;6<*y7JT*TFMB=
z&^v}cG3__!)-k!H7F}X!6GPh=+Qra5h7K`w6rOD;en@*z*pahFc|MptMyyi|SH3DQ
z&ymx9td5~u483Bwn8MsWh8{5tyr2j#ACjW=F>~sYrk*i~3Ku_S7Qb%{{bCpu!{`|L
z$1os<VKRU*)W}eNU<`v}7!tz@lW|b&|1otIP*NP-+uy|=+}(rQ?9NQj0t+lO?h=Aa
zkU$6_!QI^@xVuAed2x4lXWZJR2Y2{x-%bC|cTSz>{OYOO)m7D1HM6rb-59pqYWG;2
z8{_-ZA-$}vE!KyX4QGH8^l+$wPCU#ZRM}^tutC)Kj@JC2jh|W!r30N9=frp?hC4CB
ziP1Daoft{i%VTNw&@#%2nWJp<U0GuKMetafgkLOElz6&x-J_H7TW`ltpo{XawbBsF
z{x!CY<?M8;y&}b{Ombqf6H{ocoS5dsVkee3F=MN3x)bxASU^|*l63~v%qID>7-qB1
zVVz6!!7TlUfxbvdM=f+>5sh14tGqkuV8}+_z?}chx|9aNi4{()r24;Er(6)5)Uq$9
zYp2>B*OFE_v6|*sZu<tO@zu>WbXjxRmoK-j<t)Xlb7DO+l|C6@oP{dc?8FvYH7*o#
zVXG6{oOnX()QRm*>~P|&6X%@R>BPTIx+S2oj_8}=7f0E4Ig$IboziZGm#sv1JKJ6-
z_BpYi!wxucis2yZAtw$q{LhJF$v~g~IC0eEUKLXxXFg#%C!Kib`|oe4(@vaWKU~6i
zCw!hyde4dbPF!HV=%g=V;WG1eCpKIVuP|R_rFLGU_H0igxWV<@WWB|DoAnMWReqPQ
z={)1Fl~WhQ2Q;0Wc*K=ZPoLP6o?j3j(^YsL|L0!IHmCiW6VILa<iuyXUXPPrIPua6
zrxPD9h%_cHV?6C)u9<!_<#r<9MbSg+SFm|meNOlp0<7c*od_{gQz<*<u|?v;WhWFT
zRA!C!of8o!bSI*meZ%^Sl^Xw=A;m50Thl=!<8!C?PJCeJqv_`xk1tMqb>h1dKb*)s
zDd`*cmrk8LXfZC{mRVz2sh$)rq;w&bi@tGfl%{hbJwqB7V8*0n=n^#kD#^f{nKdJ8
zCKu}SL!z^AHY+PdW@DhU=Wrn>b1s)L@>$(Uxy_h7F63p-$C}^t3%HC+LzNVEp@<6!
zE>v`(s0%;2P|k(&F5`!C#aK(Ya9}EmGutnUC0!`Re5#8`F{NE7!&&0849zZz6<n~m
z5buK3h2$_QjpI_pCs9>o+FT%q!0v*;;9w<ZO&76}3zc2y?ZTffB)U+=g_bV-;zCsy
zs<}YTXyHPV3)Nj{%GnyM<kw>mUFdUBtjS!9wKi)V7wR%lWNgNS`YtqZp`i<nTxiVx
zrQ9|u`YAq%w22EbQ-mij!=cp7h2}0$+oo~$XKpRU*K25N<pOoNoeS+<XwBVhWA>#j
zS4*Ah!2Yi;bYbY|LMMjKtTaB)cs#puwijzR7rHb2X2$ej=;^}m4Ai`W`4i~aKU`?_
z#6nf|ap5l)-8&R%f|kEs=<C8@7lyddkDdN53~(V`R-tNq(m)qBUlb_~Vi=d0L`)S9
zbzvA+J~8>EE{sZsF18U2BVBm!ve8MYQ=?rNW0sC(80W%xh6$|HDvF%MJeifUG^A5q
zn8r<-?!qh{B5Lpq7iO|aOsAl!vNADgt_$;Axa`6e7yfZ!z6%FkIOM_t7Z$p((uGwn
zEOHsoaHq7?g~cW>abZaV<B{%^mbtK;{S~bA&Wg;{bTv7<mvyZRn;6!)u%4mGUL$OS
z3nwp%8(BjaEStG#3oDgwW!T2LoplH6P8a@V*u_ebyIt60^4tqX&HG%~Z#oBP2~V)l
zj}Z>j3T5*w>k-xyE*v!@k1-r~K`)$ec$HDlNp?=TaGGKLUdtI5=xuY$tw!lNHqX0o
zfx%ZR@gj|9$a2XA;#%k8uexxJhSY<@9$a_f21UAY(T$rf+@jUzMin=1yKu*aZ!Uay
z;jRn!TzKKaOBz-F(BnSuDi2s6vOZ#cOxuwQPnn;y(uVVlAv=G~Z0beh168LBk_)m6
zE*IR?NEg&i#%DNQ7yaFBNoF4(<#!>#5HxEGF@&k_qm0dylH$TE7hbckvTCdm8Zicn
zi88#ai#N2nsg{qNeVc5uzGwZwT6~wWZ+~L`%u3lWE_`KfTh}Q4L3@RpZU~Q@Zp6Bg
z!i{upc+<tDbQ`6V(lVrSBem(IaRbb``MEO`GxUiyJs*{Ul@8D7MkbRpGh}fiD?>KZ
z&+bP1GByg%<wkBdD!5^BBaa(-x$+Wj<YOpAMW-$K&9fI^C`gg!_m>L0QN%1Q%J36w
zF*k~vev=t7B~32nMrr0Urc>69a?IsTr!_x%JI;-L8LQD_SmW8Zx?yv}?uOt-MKjXD
zkl+TT<Pp2E&svGOGHZq7!hvm;s%}(sW4jwW+(>exx*KEM80$t2H$*p{7PSAt!8P6Z
z#f?^O)Z%PyH|n@i*Nu8^G-angE1jsZ8x2fu=td*vR=xlG6tM|sGgUOc3fqjixf?AQ
zer9dSN~PtV86TOpcB30RZQN+<Mmy%ttnFDluy$mn_)ZK*j~Nf%`qhmtrr*^K`pPbu
z-A(5=h90av-T0lMmsvXYWUAh7{OLv?H~wOCxEp_)r32jPYjQt^{;a*q#SS$6K@5Z4
z7{V~r^oP0eVU5wX5$ud)9p%PoH$95?zyIA2Jrz67jqzMG+YNfC!~{1cxzS;jg?OSH
z8Jjo=CUd|PR;q9+!!$RhQ=5CIm|^-e-I&FE{etnHc8(i!-I&MDLN^vM{KGn*bph+=
z(y@!(SmMT3&eDNP-B`uE%ygE!v4VM}=_KAux!R32oL%e2Muv5)>&=)AZk(@eOn^=7
zY&QKZZfrUI-@EQ@ZoK6EXQvzgG9Px+pJp+;XqL9M9ppoHv+i+YFT+08{j3LAGoCiC
z_#v98-Hm^h9^EGV&y6E)9HoABu%30}oEyj7I8OV_ZsCL*XQ=41<s@fMv7UA#^w!dQ
zfP(^h)pt<oWi|dht#LJ;YP;7;=y=<5$&JfyH1?p02Upy<>c)Gz#BN-3<GLG9Xc4(_
zgEoIR9=h?!ja#&V6tdms7SfLyhrElw!%Qu_%W#kNz8eo1mQ9PvIy%<##@LM?vvb03
z{Ed*#AOFk^*$suw=We{9fpWviSqccb;c~<6hR1Y#4Bq6dE5>j70XKps&*5PYyCIp5
zbjg^OsvGav(M&(Wpt}*J?c%=u73*u(H>_m7btCg;E5ZIAwsT2IAKm!mMm7(!d+^zf
zFK(pr825IgKWV?Z@trH&aMSY5jr2{e1V3m2o-$t1VmyfTAcY5mCm6d~N{^uvelz|}
zkeZnwjR*9uB`s&ud63!k(|eGCIU{Q((|<oMMHc3)$^JxR?&a_xrw8;d$L2vU4|01@
z$b-Tj<l&h7ta(`}IG+a{m6(<Bu?0-0AcLoc(Xb*Ol;Uhr4}M}O##)@U0Kd$Y@Sr4T
zrwuozXldp$9+dT<oCoDOOYgTTFi-%!{~*<UF?Buvy*kHxKv^;=*}1f~2Z9F<4-z<A
z)q`pb6<I5JP?;f-wF;|I=bhLj=IX4soJJRFFpI1;S!=OU(fl+<KphY2nod22`m7CD
z8?rW{@gHn7yQv4wJQ(T0C=Z%@(87bR9PqOTDZd%rZ{<Nt5B(6#*0qh}7g|tXg%T%h
zttn=ftqn)EWo^gW-h&P_{>+_Nr(Q626-u2w_>~>vE*|{iHKtHEcDj4;n+L7$T6%DH
zpa(rY_}znE9{l0K-{w&hZp8LB`A-k}nEV$*zvr=ilfm@+doX}`lE)a9LCk|a7(&-#
zgy9TjXBg{n))A~!^kH7?Xb;ACu-Aiq9*p&1oCgcd((w#aJeXiQ6Fr#Z!DP<%SYcGI
z=1MWugHC;_P4i&72Q#>6F6&J5s96lNS?91m`D#p?c^>>@#?1F%fyuf3F}L?w7J0Ck
z=HYzH5)YPou*`$y9_;X7Cx@-@V66x1JXp!uRjjMc8rFE=-)X$kQCjc8CJ#1yuz^cA
zvP#p8##7qj!8Ufbn#Y!(6}#Q!XZ%CLe?7Q1_P_XDT(p~Y4{O~oG5Z+~B<o>ghop3n
zv#+n&{^!9F>Ovix%Y&mH9P{9w2lqWVPWz7s2W8834^Db;%7cp@T=L+w2WRNr`wq)F
z56;r`xNCjz*;+YZqaUQV&1yUEp<C`)E_guSAAX<T+F*FXWe@1*5?5)Px*k6;r*OrC
zRRxS2(dVt4c#UT1wfG79lWur$(}P<c-1gw*Me&XY{TEo0^4R}P6*ucw;V!L+xz<E?
zJbl(mEq~y_6OVCMVd96}i$}C=ezQFGpv1fQc?tHX9^}|0JfoI)@b$56Yfk$M4@h5n
zP~*16$x1JL#8tQ0+#Yy5@Ot2*i$eYK;)WLi4}vuRz4+aWkOyH8N_$bp3&{i7gWU%$
z`Mgj(P(AqO!FLZdZpIrA-ZDgJ=V720Mm>1N{F>F7+1N|pF@Iux&-#J&BP#`@R%1SU
zK>CH9uclA`YyROujMvySvU?HhrGJkitrzLMNXcdz)>N!UJq%P27zT9~$xLsSX7(Zj
zb4Jt2<VD7r#`MU-PF63nF;ER;CU+r+7dhF?<wb6WJYM8wpqM>tjH#GA9FyOR0&Es!
z{mF|$424;Xuoh*d_%%mki!m2xEx}sSEG@-AjW6p(IWKB^QOAq&UQ}Q|$qNfZCDu4E
z;u)-7I2fpYn-_MI1uwn~F;-s!I~7eox#g9;NHm=)UQ{)?8pDT+Vs+E0!635MWUa+Y
z_0;vEo)<rR(b9|hY|`nPFf?Fo=tU!j#%5{q*f#Z|89U8cTbQNEm+u!Zy0FuVwY3**
zylCr1JI;3UqCG<gRyyP2vc|RO=tZu1#_xbSoBpp}%;@*u{?pZqZl>Sei{DJ{;iVfW
z881D(y!gY5y<Y6|qPG`+dNI$7f4u19#a|pe!;8NeMtU*Ii@sj;^P<05&me{YUJNuH
znj3??7~;iHc7~h&FfX!SGUg|x5p;c-M|0_9)-hg;^<tbEKY?L9>&Z2-6HR}T7Z+z6
z{hh+jRMVfvFr9i)-dKY(IXjDWwiz?Wi@7Fe@?yRh3%pq8#d<Fmda;O$R<kZ<UGBva
zhNY~_SgCSq1L+DcR+`Q#FOsM68q-<JKwl}@;KfES{x$tgUTkCD%({hjt655;x1D(h
z>rT_BYrV_l-Cpc5+5ON)*LuGf2iU1|N!-vS>7W;fyf{pb7iZ1LBMc|KILdI$^pAUS
zf;knx;iP_@^5V2vdWL~!)HyHCGhguHGQ&mIORRKM@*Z-<i>sz{%?p)(dwbK1TVB-l
zp`H)7y}08=Y9G@0aMz1_931lEz84R?@No8_S%cGyM_xSU>=V}KUOY8RpLvmdA?WNc
z*nG)Kt#vWD%}5$mugN|JKWo5?py_w?B1|s<UdXihd-2KiRWG8<8f%1AH%n<Zc;&@w
zFWz|Z){76O|Bm53tA~FWNb~KZSxN)`nYJk}zOwVfix?liF@HB>sLj-`SRYdQjLDXQ
zl_0sxsW?k#hYx9e5PbhF=X5^g@gc7d>3zt+F&TZx;zL&EOg?00xcj@Y_9<oaAtyV;
z*%@-MzKEpA#gN-9B`2Q``8gZsLjfNO`cR6qg?uRNLvb^*2*Xc46g3@qQOsnzI&`iQ
zK9n>a>S<{o%J@*0oeHew%+m5c)H!T4m6C-`8p(LG)XHFEwfjIPN{)2+kl;f_A1ZNC
zRUfJ`RQAymbBvfOtOQg)X_5~$7^<88?9QU-Lrot&5y=RsWBRpyXe<7=yVA9&??VG0
zTKmw(hlX^qL~HX`mKGe`$cM%ZO<0?<He+qhO4ZUUKIzXsv^1Sx7+TTTa$nl|K(CCy
z`HZ(E6xq&)_C9prn2xMnSUa(H_Tg6sicB7guAJ@0+MSi=3{^!7^LHP5`EW0Y`$7ES
zLvJ7c2%vWWfBMkJhd=%3<Huh<{Ov<-Kl1p|*N1*S?Db)v5B+@@;KL#x7W*)eTIj<J
zA7=V6*gX4Wx+~EoaflCreD<L}<EgmAd>HP-2<DNj<5@@fFq&Zu>sTN5OXVnjoDZ+}
z+6X93;G&5>OkyDC%rVOp8uN3OQJ2K2K1^e#>~w}DamMtX<-=?r=Fp^FWMt=Z+vc%e
zNo{;Cmt~9fA0Ot^0@-3+z`Bri;0rrB6tKjH<vy(7LzeomjG-;Bot4b%eb~UTibmi|
zxz)^Td|2zlf_?&}bv}IEWg)1z*s{@wkq0b0Xj(3|Y+~Kax`lPC58D{Fvr<g`VV0d-
zA+_XRA9k6%n_&+%j9)|d`*6TV|F^|^9}fC($cH<$wfb<_hq;R_Y3Ifsr+8XK5zFhl
z)+0U~_2KeT%Q4m^-{Of+_;AvPQ$Fk&Wj*7=S%%ZJf?7DpIp@QRs@6+BRDa|sP{n?p
z)_xWH1=fqKS5qWj_TdT#T=n550|j4WxXyaRhjBY9ka>%<x6PPhB`e<Z;l2+NP54@|
zifn)2!$TiBm9*}5I4JwbM|U1JvQK<?=EIs4R^q4Z+(<1vr?#>A(gz=dlhwsa!EPTs
z%wE%(v)<x2IlvI~A!IsXnqZ^L(}A)NiVvDto@OJd%B=YiNd~dJ&JgwC6~k-RH)iQu
zhJ1DHAAI;oyRIKu{P^U<XIeP2^@k5%Xl7QmQu;<S#ALC7^*ePxZCu8baikO(<2T}C
z{Yb%(k~NhdsTtC+relR4X&Ls6t4xQaXC}ztM@Ew~`Kd7$GPC;s+b0JMiVMDVWaDgh
z)*P%k{m5m;6seS$*N=RD)byj4ANl<#;KxsX6!YV>6$Sk$;zv<G3UPd4Kc1JWM)wpY
zrFnaNVr+`57J8gSaX(7<QJQ12zcyalQYBeS`ccYH4^XqdEgRc6u38yC%5p$CKixDn
zUSKZIT7lK#M;rqk9`A>h*=9O+hW*oH9DdYKDJ0N<S1Dfs<tzF@TFH;f42gbJ@uMnp
zb=GRENvsrEwXuV=24_V--Cor~+1h^mQ_0%OkJf(F@uRLE_1I}i0rRZ&nH#V+WNqX}
zV}>Sv7>^pPWNpgXW~`KL&d`GOXFrx{7BZ=-U%0}3mqg0u+HPs%M_WJIaaemlIxy6!
zY*g6Mk6xVZ#M;@9Um3dikxh*6;YU|Ly0O!pmCWBvpu;Kk<bdD(NcR8WQu2E<(6N8{
z@wXpO{CG<HzaRblxZuY{Kl;;*@?*9ibNm?S#~?pu(%`#dwyaJX?8i915X3|LARX$*
zFb3k`3?uv)$uNp_H0u~viW%$2<fml`=qiu*V}c(Oxxz`TGgv3HPVr+Z14T~rV>+{1
z)_DI<DP{LqnuoLem{C<6ktojfW1b(8EtcHpZU6W&pM&@NvA~aoer)zbENlE(vB-~A
zT(sD%d5IrOnU|T)az9ouuQZ)C{fq^*+K)A+v(}Gw%<D~O1H(qvO@93Ru_7I^h0nW{
zb(<gC{n)|0o0Xch(~o~m-o^0ggnbXgUe<lAzW%o4_8;K-5BhP)kHdbXqI;G2ang@d
zejM@Rs2|77_Ux*Xc%1nJYxn8a*01AF`*GkzJf$;!4F6zB=CgjBWB<G#Z~k!5_qE9H
z8nDw;x#Y)Xo-J4WxaP-oKd$<bGGt8V`ZoKh*_IoA+~I(mthfBQ%}{NXg%X9`<t)KH
zKkhR>U>!2U`p}O@%#Tfn!k*C%<42_cDhKewkC%R=4<JJTPCs0JqzM24xVc9kX$SDb
z<A>J|pV@1P!S6?aA!zy`Kf)$Y&|+ji6wa!&K~b;$(EOMZiI4c9vp+I#?Ch#ZQ9oYM
zp77neG>!3D>-9_GTR+~eu)OD(cdUU+;s@H$IvDRL3g%5%F;e)<e(C^-zxeUhk8gf_
zr%5$Zh-LE!Gi74}^b;66K??R$vZhLoxg?TLb@u5MdxL&T6R-?uWKSDFx&W#SGW>M^
zrp_2ZrU2ptum+GhfGh$06hN^6vJ$j*6b|6%xuj)Z<Ff^jJzz}W90BAEAQy8U*4(T+
zM%(CK(|H5P$JzX>1z8IOP$Fc^WJ-ksXz<PW^#oO0gexx^K!M9*#N{X+Ku5YY{Va!t
zp+o=+awV1wpcDgf=>W<wmt`$y`sEoa1dxAN9EDL0aRJcR#R<9<ve*K!b2E15N_bk?
zE(G8RAc2C%+De{|C#@L3a@BJ8RJ`M|m`EcNK<j{U|8Qz#)d1>KgZc1ktVyiZS!=M0
ztTkC{vDRj-!&;ZMUI1+_|M$s8!vI>c*@(4q0Kx=I6XtV8ZA}Ac761XI<_s-Ze`Xzc
zS^R|~sco$o==0S!0kjRET>$Ob=}diR=)^kXl(l1k?(J`_on#9vGbY%t>=Sfh=o&z`
z0H$;Ex(DzZn>|>2vi{CW@x21r!eM^~&?kU$L6i^TuK@lI;NJjt1<*HuegQ0_@eH7U
z00RP;5Wqw}d|&{B0vOCZIvO)1fT7Ie0vJXyS<8(LV4lxLFr2d^SVsmhih=ym3}XVA
z`Nc}vNF5u+Q>(^vJ?qoQPGXqMdisbppvDjX7C$9`sR10>7C(*pNaMgfpLHfH70qIp
z%{qs5F6%tje*(tS3Mgy=X9*V4^e}mG0830>8o<`|M&t@^!^!|w(cel-jX&R3v$KJ9
zO#o{d)&;PhVMd&>vNG}y4>z*2DS#nIESs6BXbaVB@-~L;0qkJd$+|-=M`61I*b~5;
z0Nw_$H-LQs+zjAWfW8ozus?tk0h|or0B6ZL$Z#lt!wmmpJz|y~WjMxqJb>zDt#rt#
z08R&RA%OW+j3s;~fb#)#DP=utw(T6v(#xXkaL|LsE}S&h`^5k*1#mflD;$%tyY*TC
zSD8K2jrVxh10eGTYcsEv_;vty0#E~}`P6ndfbc-PpqWEYbET<u$9kWY-~q!!)<>+5
z19-yll=T@aMLuVkKh5!y&+DWHoUyy;B_IG#0D3Uq8-Oo>8^^3GuUh>9+|w=L03?P0
zYmhZWqqoRHrIh3V6gKzwveDDGXU(^~t!&k}%@J0emAVjRc*XiUfW`gFk@+rw_W=|Q
z;@VT|2X0lGAP~ey=1&29W@vNY`2X@3dgZz-ehuJT0N(@n5kO23se?$YBE$xfB8b<u
zte>*jQwEVLi0b97ZI@UpWk{@9Frj!^>+OP7NW0~=r48arukut|UWRn6>4V6?kdc)F
zG6j)2h%B7V8bnTpY^>SMm>dLpISQtfi_P4ud4ixny2&isS;!Ye{vakSv=(437(^k4
z!a?H+S!45Aiv%%#Q_}2}7Sf-BC>F$wba5Sv8XHvcAW8&LGH7herGhBS(5jPAnxRY(
zi#!f0qLkxPwF*I4g6J1S{~+Rmh!3J=5WfVC1!WDQRuHv=xSTT47Bt?p*n<#)a0D?h
zt~{9uK~&_@N~|?lE7QO-P(YO+s+wFah$NG%2l4L|3k6UTgQ&@Vs|!}j(s}Cy(IAM1
zLDUT*!rw}&7esw-5|zGd;b;^z9#}@)G>FEg-z12F{NGsen+5UXve-O`7G~+sLF`{^
ztd~|nv<{*VHS&tsCWyjU#O^`RpG$3-+tG~LV*PR@zI_m+9fIh{(213t&J4e@b_t@Z
z>30i)ZtG0}36lM{AV_<#_GJB?wHJK~#6YFJ8U75yy&$2%JL8SbUqSqBwze<BOK;2o
z8tNcc2eBrIK|u@-Vp0&3xpYVn6B&jEF^pk2>x3Xi1Tiv*QJfveO7)KpVvNaS8H!|1
zF+PYb?W#~}RxmEbS7Q&Plskv9J5Ax3=|N0om_|LlXt}b|Qt3^(89`$Qn;FF0Bk{9>
zm`&H~vULubK`fv?9=6S;nbuC27sNlDB`4cnOS6^Mg*5kqSR4d#moiq;CCsZ>m$EKn
zUCz3KbtPSeyonS{srifewU<+_4dP%Bhk{ra#QGpM1o38;ZBr1NgV@Ne{T^q$J<IXF
z@)nwDL3(_Zm3V6q+kzn2&bohwV+X@d`hd<OkiUy2e-`U*R)ReYds+9<{4xCl41e~l
zaG1^&#Q7jD1aTyYqd}bHvuibt3wkVw<3XGVqDaX2^1u&UY`ZJQdze!}oTdev#duvi
z!|`WX`(F{y(ONhXKlh4A-w3_P=A9reF;MVj+9iVMvMv59>or!&UJv31^G()Uthde5
zq-~bFT*I?;_S@eq4}y3|;~7S$FdhZ*IEWP?tPJ5v5Kn_>6+-I}o(1tdi1Z<32;oH#
zFN5&W7zW`qTe9tyv6Ngid)e_&a2>0cm4F@(6bK?n7lmdB2ZVx9%wxk06001<&%=!`
z@T;8F%$Nv+9z@i1UNO85VkeK`;O55Yy)#SSGkl=^KZsAvpM!`E8JpM_&VFV6#`>N0
z2Wt$+P*|JJ#?G07vng3qg^)UgG$DYqX+uaCLPowvHy!mylUPc0NX8H{g<uQ89zy02
zvV>3|gn}Vt4IvvJm@kCGr;G`ZowGSubF$`Q&CN;yc|yo*a*O)5{LGJ98D}ZPTsTB?
z$>>z%uJO*TXb7dLk<34ZP>hR;vr=h^5K5X{iXr)D*JYT?hEUEdEzeMa)xsLb8Xtm{
zfoh`<v<2o`A=D1R5kdlIE3#G#p^_O{IfO*!DyCDFq2kM!B-5!LLJelobZUk`7ne>%
zsZI#>Luf!P%xA4jL!H@LFN77PY_GH18=CQrLuh1jPQ})QxhZQi*5+nuix7S`xn&5y
znEbRwY?~0;hA=LK@gcMep?wIw=yV*=f%P}mj;x(nJBRQq1GTeD2whF?7D9KEmshj*
zV78vN_GI{-wb5y7Z-#*(3}W~*ggy*Z+g}WShtQXyA8UWJbO1wSuXS(;Lzw3@vJN#%
zM}*M%yKPtq!x<hrZIq=tM}{!Uj2X=^CWNsJ$x~uN2opn?&(5R}CNs<pVG6^{5N3ri
zm6>Xr7Q%Gq8LaIG7&Ei9)iIlVt9{Q{>)J2&IU$gePiY>9{S(5#zQzZY3pl%wbrI`g
zRw`P;u#|Nf>vD5GtO{Xu2%kgv62cm)JcPR;+zVk{2<t=mH-udrf5{)aA%qWnXO)fY
zY+~Kax`lOX2-`x~&b%XpoeV}(>&JSMjK1t<=XeMwLf8|+Ue4~Lb^R*-5cB>J4lo>K
z?a23zKFn;?6T%VZqpZhR6Z!cIC(W1(45wI6vz}o+%X%(^^9<mQP@NY;xWvw7)+?;!
zUuC!!!u1etgm9Cyw^?tQF}(}L-eFGN$>`nv5FUgehoFS;ko`aiS}5ib^JDX<Cm}p#
zenywIwDmdjix6Ih;51`AA-I^`rZZ!UaSCq;z7YIuo_EAv;5)yO9}FSHW|(%xj8;lg
z2n`z>K&2`dy=B!{BdmG|QHEEnuUX%)(ovlg@y_J;bm>k07{Vv!a@~z4eGTCoZB}7a
z4C8wUKWNVkqf8hvVPm(+6-MqbV#7$m*_5p5SW|_Ont{U7gaPKXrqg^tZ2B-Va5f`r
zwlFf8rI{JBgpt*BQgpLsXU<_dIm387#CYw?6UNB0v4z7Z5=LGw&BvObwE$~DRthe}
zko=F!qG6Qc>`$!4Sc|ikV5RtyVOSa&<3MS5LTujrv1P-sh5vgYD;Gw2j;z3HVU1&r
zXSK4@u}8P3-uETO9)@5#4u&g5g-T(%Bcd^wzl4#<(1NuJEBRH!sAh5!L-jCfFo<E)
z45L;UwK>}~j5-YU!)OpjU1qAG9z%-}#-7$Nj7DKJPA<A49?xf(O~Rl=K+jZdW**g?
zVbD0E`#&?cWNq>~rd1fNncIZXj)7v@GUS;W+n%8VE8Y4a=Y4DEFn$eVNEk!I=n_WP
zF#ZbT?=ZTB(VfG7XZ<ZqzwdB-jEU<JM)B0uDfJA44ku_?$=WN7KRB$<1Y7Sg{$xHH
zXYE6sePeuF);ElPVe}7UKp1HU#QMfqVpdt-wKU$!($A|0EwK#@qf)VIgTfe0Q{|K;
z#ZC+9urP*)(Nn_j5=PKm3gcQB*SYdhVT=xA487CicTHo%7#GHtFt&y<o&y$!u_%lQ
zVN48T63xJzwkcsu4P$Z``%5NJDqX6|ol1`F--Kx#Kb@7@Gb4<dVay6+Haq{Y&S9Nv
z#>}HD)zf&#JKuB`Fwnh#7KgDUj8$Q*4r6H;2`z=?VZ6Q~5-ba2!yJKtvMbnJ8Agt)
zB4yWvu{Mm&VXQ0dSQp0nFgAv<iI(tL$A&O2%@Qho5QuG8#gxUxW>>}DSH)>p#Z6bm
zWhZRg!q^_h@i0z=u_KI~)WI+g(0G0j{taVK7<W2~yTW*XD2dYUF#4W#5bWg!?=#!q
zt3Zl_VVsJsel(1yS4DzDoIOlEt&;S=FphBc6c-%}Bbby#^}oF;o+Lkv^I=>F<21*d
z3!~RH@k|(J!^m<?EPG9?cTJ>zk-5-ixk%j!<4PDeTMCn}i6fsTUFL4Cza~-#uhJo|
zBnl?JK{2#DNk}W<Rv5R#ctwLo-3jAv7*ZH=827@sPrFSRPr`T*#zP8-8n4l(u8B{t
ziI2E<1S!7@Ps3PNCv|{Y&gQc)o`>-wjF+5su{v3+@NLQ6%pO)RD^=@b@Q3m3nsN0*
zVSE{33x|>Kx_H)SCngwq&_ef*Qo_)}h=f6>R>N3ewN|<=>a;emi&Z9CsdrIY5!c0;
z*Tq{y#5ZBQrM+6BXV&8#U8yiWQ_W#~;H&nLCdPGf#mD%hz6qar;?dk|KPurXt)|Vw
zUt5H4+^WTsgzsVe;8Vm%m{QJh<+}K|VIrL|rG!)xnr?`TxgpMLW=$<2jf6e@5^`=9
zsx@@@uZzCBN$Dh{mk=+(Dj|b}j1qE4$SEO{gv=7MO2{UGPC<uI$FoQ%cEcEf>=Kf0
zh=Z8vL~U<~xg_M4P)b5+33(*sl~6!JK?(UNvTs6u2{&$t^KXdTZ;0V<0y%{w5R_yk
zD9liVwJ7UPbS{SCtQ1p%LAoKPyeV34ie)5}m5hO{AfcRu^E-^oU0y<@Zvru;Ek3(N
zLYxGe33EJ24Q`4(Zi+Sub_tCnG?pMpa8UCkRF~-U4OEm+Rf6}XSV=-<uBVEG2{%PL
z#oC)<qJ*<I4M?i&pcBzqs!3RqC86#sdkqPqgt`*yNvJ8ImW0|g2)9H!mYV(TrYM(6
zu-_8vNN90OBq;h_s4t;`goZpg{cnjhAT)s~p1RhAE}4Yp6fB{cgqgQQ8h={3e-9Li
zf0ocvLPrUmBv7YlfBS_ip&DAzXh_DyYr{&=Rzf?I+e_$RGR;-Gh_o4QyCrs(j8~ao
zS-Y@ymC%i$J1dp`CZUJPcW;TkB>W-aq=ZuvdQ13ILO%)pCG_E#AEk_`Lg_Eg{w<-e
zgtxbhX_Mu)I6%Tc2}>m`lQ4(_rb(DCVX%ZDGy^{hL)jcA;Z;ZD3J#~200|={jFK>w
zi>RK_3=>$#u#RONCt*B;ajw}$za~nU#Li^aDQ0Q6`^IZ1=?ofS2@51FlrW1H!fkPm
zgt-!C^YGH;+p<HPC*dD%+k6REuUZ=179am`^tmlgyDcVp;up~Zk#L~B?eT^<D%yNo
zY&lR|A{kpcg)Nt`Lc&1_ha{|&uu8&q2|FaLmav9nF5ec{N+4Y)VZCH*p<6x+8zj(T
zp@|oBNA%qmH%izffq>Fx30q9wDq)++G!u48_*cR{T8U>Jv{&qsu$$I9XOr8uR|2&;
zUl|9rGyffNKNnH(0m;~E2oBTu(CoS+9+Pl{XG`TfVq%trqs$$GcA8XFdR)Q@4jXaD
z*aS{XI3q!opwSwUa8ANw2~TKAO1MCKxP;phE=ss08TZP&N#k%wye#3mgnM_yD>S6E
zc3#=9NjQ8*+-G+X(-OPEr4&GmmyR0NIH7mSIPH#jN5WlRclRXRm+*kLth?ggh7Q_k
zA4+&cv*nJMpErsl-{YyZPbEB~EM4Nh3G~YKT!Kr2Tfz(O`%4K<3FYsKR5`sy(<`ip
zb^r-Mu7TF6Pl8`UfU|`iNwnS@-W7kpD^9#CX6%;`lCbrzv3Mm3GHsiig&TgmLUYMw
znfXni7tn|VT|#~t1!P2NN=ryBBaMvLJP+T{x?rGX_>NZb4e<wO-%I!);Un{fyQ1r^
zv35Rj_Opa94CH*3@QwMq=}><wmv_X-#>|gpO~IN{Mk<D{Toq){IA@WORYqDF>13pr
z;a?v|-KUq849po>$;`x%nRP`aM>ZMRW#pA{IIW!qEr*PpGICJ|?};7yCeY-scu&kN
zBae)h_l*Dh(3lhKt(BBdrZ0)v``;4_$|xiwK}JOxg=G|xQAS2t8AWCMB%_p!t9C~*
z8O3FkkWo@LHndsy#O?QtalUa+qyeXqr&&>&BWXJd-V@8oC@&*khE+xd85S9|+sDbq
z4w>q{Sm?g-azNLPs;Y8dw8^l`5M=tvVf?bv3AD*j%?=p^&bb09jb0@gRb}JBCB&6w
zP)`$ORFTo+x`kfuE4Y%X$)MFudlbE8sv$#^F))fjQPh-CiyEV%f{NNQ>d1H@<E4zc
zGU~}#En|(0`qVrbvt-Pc(NIPs8GU5@C8M#7CNetEgBoQtmC;N_D;ce2G^deSh?X*H
z7qhjH@iS+M$t<`KbvlW^m=2k3WVDkFpSUd_LSe-1O|z4X&N6yZ+d7HA%IG5FHxBD6
zqnnKG|KA~W6xBnAQ)CbJldJt*MlTtEa1Fg>{AnISVae@D*1u)?9vTL6X<r%r82Ym&
z*E~qZU>TETOp!4}#!wmKWQ><FjB6gwN_A2LMsNp-N6Hu_V>B0ykulbcSvU_D=Navs
zAY-D8NoHr08%&zqi>VwxUB(P<#xzzcoym}VuK(-x91fn(MRR4$<1Cf_V~+L$84H;g
zu`cDv#WI$dkyP_C8Ou4lLdHrNtC;_<J;|_E#yT07Wn7W5Ud9F)hiHAt*eGKY*SSx|
zW}2TecFWi!V=J3GWbBl&O~!VvlR8L=nn&qhc6OPA@P9s?ZZ988F=XzSae%W2%^E0x
z2H}4)j>tGE;}n;Yc~r(RjyW#l1e^a?XEL0YabCs+8E0sjbHKU(FN|uq$XTkK_!4t+
z8%VFpxFO@FjBD&uz;zza<eG2Ecp&4UjN3Bq$hd3PbD!ZJ_c6Izs_GG~N*PaOJTv?L
zgqux8R4rBb+>B2?#3{oi<Gz9i3fwY0G`kdxR^XN4qg_IQpujI9KwF%G+zNs+LNb2H
zh*1!hA<1|}o4E{G#{9H`B15IcyFRY{eNmGUk)hMJPZN8&a4L<k$}Z$MY9XcoO2?K7
zZ)Cic@kz#K8SiAgm+?WyM;hv7f_UFZ^G7&Rr!{mwAN57XR~g@Ae5Xs3#;B*&{r_tF
z!y*tryD!8lNTDF3f=mihDoCXuor3fVQY%QK01DD7nEUv@qX_!nH}1?igO!Sso0mbs
zZ#H46Eg`dlEQ-;i915~3$fls2L&(mhX_pw4B<rJ14&s~&s2K!#6y#M<NI_u*`4r?=
zP(VRJ#kl9;P>(RFaAN%x!naF;<$sR5al(VgLJ<W;sb&S`75t>2n1WIYN-HR?poD^w
zoYry+sq#+=38XuDK*}hfs>&*OWH-z+Hi4jm0t>g<svwSmisBVeDM8YM|N3sDu>Tp&
zb|^?t&{{zo1r-%kQcz7nl7h+#5*1WYP*uU9)I#p`!VimZ=)PDZb0Xb0^+g3?=){ET
z3Th~5sGyMoQ9(@wbrjU)lh$Ibt$-%ODZWg}7qK3-SwRB@G#@T=ryf}nDDAN(G*-|=
zK??;xD`={q88zd9(46a`(!N{?IW#3&D)>b~D+N(&0%hqGl&CL5M>!Uaa<o;@PC*w1
zUFqx!I#3M?Iw@FOL7;nD){Gb0-xYRM5IWNZ>XFnuAS~VP_?6ExIHk}{L3agzE9gsC
zSwRoFrV4s1=*j7K1-&@3y2BX8>5m+g2q^ujppSyTxHLAsaH+UZc$Z_;YNKKO6!cdx
zgl3n50SX2x7^Gk@N7h*=1k(u}b~(00D<{`OcZeOPV7P)23Pvi%4P$AR`f3VI${MM-
z#YpX{3S$(ERj^UPCI#aZj92iFg82$2D43{Vrh-`tCMlS#U<RLP3a#<S!ZeC6Qe{Cv
zm`aUVDC|Dqn9ilG`0O-3)P~s#=Fl2ZFpnCUQkYUpIFwSTyV)T<aumNW)VnLRTP!S4
zu#m2xg4GHZ(ZDKLqF||lUGx>5IN=|g@bbR+i$$pOBXOC6<qB5t!g-ihSV;|Y2(*ZL
z9Cr*$FRY=_Xl!4rU>#k`o{k+`;^`|KrM5dVgoX7AHYoH@Vd4FKG0OvSvw|%OPAE93
zV5@>{3ic~FpkTX#9dup=yA=dd3Of}%@9CH%2>)`wIyEqQM3;l^06cY<V~>Kp3ic^<
z4+lq?2V$KEBHcUjAWd%tM-&{Tp^H!W<P{Fn;CO`paShvfX&+NS|A3y9%Gkk<vp;jQ
zaotZTIIZB4g3GkN6r5FXPQiJaGY=eNDhPdQ33Sv2nt_*u?E!%r*6x9LQNgEOjy?~>
zD+;bExU1lvf@=z{Qx_hHw-ww_a8to8KFfp$;>ric#HOacu5PSxnyz;gbRL*MATJPT
z(9S&&!ycoX^B&+KZ3PM*D|n(HRz(UGPZc~<5K*Ah$S8P0qeR=df|m-M3Ouyc8!9w|
zK>sm!(W?NTm&Tteq%P1&Y1;VcRe%$jLTVvIo4*1@fl70%aAKwd4!UX*?N_N2W$Il*
z!l2!b6fkNSx6Pr^iMR_<1+S=7!Dj`p6}(aKPQiNxZ)tpfB+@-&U!@g3Y)nB%eW1m%
z*OA*R?5dvdk=yg;fk@N-i-NBTzR|Uy4K_}oNsEUfZB0LnWiAN29JIkc)rA=9wQig}
zrHWK4a;eCz(hrA`Mx{FtBC`spNUI`)ii|3TJr>fb=;RS<%l7oDvDMR6CY>zXX>0>o
z6UQSli;Ao&vZ=_f8e=8J3AAsQtR>V<FXT}1aYDirTNP?>PSt2O-R(Ayio7a{t0<u&
zpNjk{3aKcpg04Q*TtGGMsax=&SdiW%KNM>{6lqcwQBhRIPb!LSGDe`7YTPw9!zJwA
zV^l~^Nfo73lu=PuMQJ`M?Oi>V3KY=#p*ZrAqZ~K>ZMMYZd23M-ry_j>86t>RVO0@Q
z5msSSVOP;Y#m_1P6%N(-TdBT^1QivTYq3^ht;t$hMWTu-%!O*kR%M{0s;Nj~uFhJ6
zRb>5I`M>{Abk;1j*{Q=yN7ZGh$C~wKYy*adtc_S3t7xL4DKo_<KkmF4XPc|2)W&Eq
zrIspwQ_(}kFI?10MQaspn15w$%Sw^$7}~4oU^*QcI<a<UZS&6fhkh3oT{+v0wL2^M
zXV0YWsp5APn^kO4(M!c2Di*3(q@uTqKUIuVF<wO<6@Sr;QZbyeU9Eqs7^GsbioPoP
zsTi1G`}?8TpQg|eE0qr5n1L!LEVog12xkd~s-Uno6Ri|a*%2y6s;JS+Hua(S*kK!`
zVnz$=Xm<1*;uy}3<x0q>11G4MsA8^)c`7EUm`njGW~!LN^-ooC^r5)^p}1hB(S~U%
z9z7JNC$}WQMrWDDHP2SDB-Z-sp-9dgb_!Rt{X@e$(MpY9z%ZYd&m*Iq$tHbqXt9cQ
zs__jXN=sBMHF=pz-&;fK6ZRFX1S=U<v94CJ#`M=Ryw6i@y^0Nd_(s-E6eE?RYU!rL
zq+3;NQ*mF#0~Om<>`-w`#c>roRs5@BkBYr2cF`*98|!ZxyIaMrHn!_atnIRiIWJqU
zIIxfQ2bXm}&76>Zjn8sGg;?2s(7e`%7!H#%9AQ1mN;9E$Oza62CskZlafMc##rAfO
z^^}U!<opqThDLIewRAS?S&lzv9(7*D1(PqTxMcFRF0oftT%)E^V^YO-UTGar&iLoo
zbrm<vn41i@RNQ8`!+O^&rS>$rWQlj#9@3>$@lu6TMfY~r$J9p^&s032(O79+lV6~x
z|4_}(RlMM1Et`xJ(U=Hh9WE7a6#<&qX=6PqyefPu{3<pH#-IN*L=;B-O26J(_K}!*
ztFiimTuG56tE56!(OJW<8Wa_(imGdq8fnl}L}&xlP*Q`gB1(Iah71~Bsd%m8yNVww
z-q6LRtxUxyT2QW-cPc*6hB+X`dvaPQR1XVJZVTZ|cDiHXXBA&md{yy{&%0o;%@MX2
z4GVu4u}889lzKHth|v(MA&mxTNTDI6hT&I`N;9?#s;6oNTfN)DU$d>LHG24njk0Mq
zq|;EVq|wJk6OF3qTvTU94Vg6L){sX-W(`?1<j{~)LskvhG;BSL>>5to7D8W)fACQw
zZ%s7XNsZip7`Zgi{~}SyaPn%%r=g&RLK^aGD4>DNOaoHTSu)%f;@c$9frT{`(NIi7
zaSha|q8g|HKWU)$C|vEZut160Cf2lntRj}uP+Ehiq3mT#8Bz@n4G9{`X(+EDUV~Kw
zb*+L1>a0ZrjSMw1jw|<#vr)BFn@xkDVdxcOWb8Zw?ax?g!0FTk6*VMksG^~g2Fh0E
z02(D~c2yqI>Kba$AQuv<X-LwLev&|m0_bq6pGKH^SCfvS{<>_nHPq2imznxokGoc1
zLj&$9)lX*mbT(>dLvC%!tU|l6rLjg&&Mn(SLsJdSG&HA6rlF07wi<rcK=(gsso@t5
zpG5Jm?MbcJp}w@%=v|Y=QOPjtKN8zf`!#gZK-__gI%@dskw`J5WM=Csl)Z1E+PY}y
zs^PkZ8ydQ4=uQ=Cn62UPWb1Dl`f0}FR!2P&duSl-$@)8MFV;U;d$az@+K2To4SzGx
zQGGS6cq9_^*DyfCKn;U5Ow%x3!(a_VSf}!d)@6<xs$m!nwT268<Hu>3nmKL+^GMcF
ztfN`Su#RQD{nSG7<2il;>qOQ`tdm)%B>NjIROhib@zk#wd{WYx3`ZY{S94V)e~yN^
z8un>exi@|u6%lAyrC~nJB@Ih8`tcoZKN1(x41X*xrpu~9dL*WNERspi5)Bm}i!C0D
zeIAQbAB+1Qi_2*QG*I^bV^M!BuGX+d!xmal8rIT@9*gTWY+zW&N?{u{Y|_x>iMW}j
z*%R?yr-b59#5xRQZqqROiTE!EZ`ZIx!%k}06Y&Pe5bS><?$WSZ!yeiedM40;DV~aZ
zIVSkTXxn}b2Q(bia7e=y4Oi)k({`cZ>k-Q(4M#K_WtJZc<Rrk*V;YXLc|yZUhEuHP
zG@NEQ!%C57HPGM41eDIx1v34M8d_CPNcJz&w(wM}@KhYOK)9x%_ET|XRiWy32fZ!4
zseyi3=GEY%ZR9uWEe-$b@wYYH(QsG8Jq`ES@lcp-rJ@I%eaK4LM;ac}qT}pS4KEp<
znWfLEZ6<rS$5XshgUfW>H20b~$edHLJgHwpK*J9WF%bkcglM1FplS%yu4ol9^>oM#
z5^K}b_RXgqQ>zLZEoTkiXr5RTbPZ7rBW%L`Wdi+)_e#TC4e#iZZHa%a;SEDst5Nix
zww))A3`t^#ry{`z&VHno&Opv*4PQ+DN=tQ-K<0N^Q%}W35FVrvVk1ZqLFx$7M2!6{
zWdx}h9+r-!L{2gwf^-qA;b-8cjo{%h%fma?<baG3WQw4fj^;WtN023gni15BAZrBK
zA}A9<*$A>nkRyWp5fq3ZC)b~cmFmwGL2hRHviFD+#*0f{&gP4tSj+$3yB3U~IGcr7
z3$s#WkqC-1|3twN9J+7OCOSyz`2{5+D9J^oBACnHdoRt|@3H@V$Gcnv6(gt=L3#Eo
zuv%D${hl(8AwB{tgN@bBO6L_KaG0FHko;r+$`K@SHZg)K5maTa#+rSv@lB_G#bYY9
zD_5PJ8WD&QL>I?U^GK<*c7%RGkINBUiJ)!-^&%J<!Keu8N6;XG?h*VJLBj|d(P&4|
zJc8I|*2WPma#(X8u{4R`+P-+pNJ~??1RE{%V1gDA{2W2M2--)`GJ;<sXp$wdZ3L_O
zT3bcn&n>ozpfzX7`8LxgG)p3L=~MA$Mr(%%I!4ebg3b|o(1~T+5Xa0L)&&iPUnA(k
z&Z85yt<P;;BiQ#;B<L0aX`g0Eq&*^7yCHrMYtIONkDwPbnSVv_hsnJo_>;L0>#8QH
zDB$l1`bN;tj2XbtpLI0{45S7#Q1IXghH%kPGkzGuaMlqKBp)(5f-w<XxF5eHg0T^d
zi{PIKJ`}Z%k6=QCp3a6D5lp0+S;9)@RE9~clOyzFOiY_#`CQzZTsn>Y@dK?hxdw`#
zO`{P3IW7AbhhJT7ox|C=tn*mOpKr!5U|7hyh;=b5)vz>zWf3foU_}H+s0))Ulc(8M
zMzDu@6?KOeATejRMX-*6!Zt^+K7tLL-59|p(_iX|r$hmiwy?R?EZxr89jrT9|7E4f
zT@1S;^dD+#^09l_*%!fnh685gL54#S95$W*Meu%@ak`_Xb1Z`6%qJo^8NsOtPILAG
zb@ma?FrTA-J;K=tX5Y00cUaD|xuJ4mrnyE{7dd;0R&f>^Wv|jak3gq|6T$TeZcz5A
z)fK_b2sYla-;dxy1h*o%O+{a9cOtk;f6=dtBW@!J_n22pLb^NlhY>uA;8_IEBX}Ia
z6Pl=pg{KkBykjT0{!}ETL`RXn;L?{gAFdf$Cucnz<Bq@+fj2@A#X~59Fs-ZzmK+u+
z1sMXYV-Fh6p)WQm0y%;RH=A0nM4(0R`Kd^(vPqFG4hxk1`<kJzB6uA^jE-2Ho}Vth
zp%JDD6Tw^BRG*2I-Z4<8sE;2b_!_~t2tHArJOW?n>g+d)DACzTztg^VK=?uX`5il*
zg1GQOA%%{VIvVO|q$8D%)H>pISaqb)0UgD36xWef$KHcN9vyjgq|=dJM+O~t4hXq)
z3_c`e)R9R?jeU;HI$G~>P~};4WYv+4g74TV<zUFp8vjfrCnxjR!$NKyxAqIsL&kOa
z-vNQHV?G`EbrjGsV4veB9aF#9C>3NVq@%EoBFsgp{zC#4Q5Q&CeX%LG?Im=SWWV_V
zf%;xbN9BV;d1~7pM``9VI?C$CAe7UM!J(A@fKY*pDAK|;$8nZ?8#l75jz9iNLFcmb
zA%YHvjs&ViM<pGJ*MtVoM7jjYwN)m^thtH~nkVE_^Q!4c(otPUvx7nn9kq1S)^Xse
zRpc6K>gaVqpf=ahL077tj`}+4(yQtL<5()9nMq2ifsV@u4WQ}KSVvRcSOS!q=>JWm
z;C_Kl+Cs<Ay7BM1uR2=l_=UQlqqmM$bb;u~j<R&rAr2AS=;)vuud{7+q=0?jxA=BC
z+Up=_FvddKwWoD{qS#4CXC2NrmS1&r(b1K8Q?1x;I=buVspEGYzv<|qV}Ao{q^_0j
z<w!rrJ66#4V6G+WKb8(-Y^9!Bd+BI%!E&Lv^-mprbo$g0&vg8y<8K`gX#V6E`s(PX
z<0>_{P(ptlipw%Y$55IEItEfZF9`Aj#~>Xax7r5lm_JLPRMl%4renB{Z8Wy)EhA`7
z?v0<RV-^j|blXTBqjZecF^03`Owloxd7O^%IwmkrGD|1Y71?H?FiMkkdOViFQ_a$8
z4AWU>(AA%4lzzXPR4jesY#noS%+)bZ#|jSk$2@8=HI;b*>q66Cq~q+C_~dgfVRNaD
zWoGGenz4-&sC1={RXSF)zn*ms>sm8%9gX}2J4J5Lv60P9I<}aln`yD+HA*RM)v@+}
z#u>Nk*g?J1=}j`|rYLHr#9cae>o}?76d$-p$3cd@W<C4p%9?yY$Gh`Jorh?i)8sMz
zV+==FkLt*H&={ZNX6XqX^;!$$oHm^c3}<K@7|xmgdAe#T5-IW`ZAvYTmS5tc%dA(Z
z=1)dF*L3`}&2n8g9`{DK1HD0;(rwF4)?2K%S?{pk)#+!sMgXPz4D?g$hdO*=>m%03
zw5+~aDLtXVNwEL=Ozif*_~$x8I>I`LU+8$r;AC~Nx>-G}URH|q>F}Ez&=F)FwLhMU
zBptGj_c}h%^rji;v8p;WUVtgz#`H~V?efAJ(UIk?@w)(>{iu#tI$rB|!&&m*>e#gW
zzfX+cv6<<XZOYOVA9Z}9O@N(XS)+z#`-LyG-Y?kh#yiG56Tj*BuH%P}m?&~bktd4S
zDE{be%@sxcIBSY1Qbv&~iquhLiXw9qX`=XFHf!1_($P0nVr_`xNOpVtc1!vwGDNX%
zmn~xy@ujUhQwW7?2u-`jO&(yKmC}|aisAb#*`vr2Mb;>?Md^+})@j=<S%+KcNlepr
zTEBgE<c#9%8f*Vz)jssHCQ8<XFOIxX<clI9ii%O>kD@>nMWgsBiVM%J1*0ew#iJXx
zwa>((&&0yaMWTr5WF3*GN>sEJi=ucG<)f$&MTsa%Mo}h;vQd<Z;=RLmxU02v6g!()
zr+&5)lS5TKcqVSlE0l|3n!~0)6D?81MPZA=PCbg^PlqktbI}^bL(TSQejzl)Mu%s)
zY!RYxaGfRUSf>}Y?hP4QDT>NbG>xKJ6p2wR$nW?)zwz;S751yr7}AITQ6xn{e)TA7
zGZ5Ec5Ls(RQOoqHwmMPNjiMeqjZD8jLxU(9GL(BRQYDSe(k6U5a)#`*G>@Vu`BAip
z;^!y^T(Go^f*u=0@Jke}qG-)#7gjRcMA0^ic2Tr9olXoLqUgx*|EM|-XeX*S+9wqE
z&^t=+QbQ&;x%3NzfP#o1O#zW2AVn0VNbe{`K&2zSDN+?gq=R$>LAvzbA(`|{%G>kt
zpSRvy>#V(gXP<A*oH;E6H<`KpRvN=P3x6b9@Fy3YuEO0!neFby#}@Yxc(1MJ6ECi;
z%IG6mLT?W7Tql9?eZA;s#eXW$pZ#-1`^<~aEq?$(c*Z^RjDx%w?8PTKdg~bC#aCW9
ze5mfjP%nmYQh9N}i{W03;QaJrxz~K8(nv4HdNEFTl;~*DF<u;7=4QZnFD7^~$BVgM
zOq3#;Uwbjh;ybII-w03kVv4|2(V1RM6Zlq?M@{!)hQ)jk&3D4zTh0#xvqWc$e)6|t
zo>jU~V7?a%ENAE6F4p;@7mLJMZ23zBmhu8Oo6omd;l)ZXws^5s{8e78w<1@2u}1hO
z(Vs1Utrx#oyiQ>DP{#%@HVSX@;y0^wv%s&Sd^cSEw&r7<ewXYv&TWAY&Zcb_*e%L{
zKfTx?ywi(a0?TT;m{`QLN1VN)`$Tzf{}&g#7cac<dT~h1>t5XO;;<J-yg16i^5UWw
zm%KRc#R&;G?Zw{$tn-w>N$wT5%|7`@vV3_Q`HU6wuNP;9&xxM5{0jnnmKuXEdvR5=
z|A}7V#!}mC^Gm(P`BuZs-t^*@7mp<7w&*=k7Txip;3&skQD*Op|G<me7hMlUX_6m%
z@x+U#Qd+oNI?ZRo&qeu6Gdeymf2shx51D-CO!jm0@ggh%0ns3*eSZ&&m?GjNM5A8B
z1Psx*C}Vc)PfH4?EXO7_^I?FQeaPZNQ6GwllT|dk53dNo2Sp$oms?Y_wM>K@V&?QA
zmyf>_G#klO(1$$2c`YZOKz<(zSPn0+kZ@tqS4Cg*@e#!4g%^?ROD^t1Ss%)YQ$n<)
zXel2`3oyQn4?k@%4`eFuLuJdaAn>{m6$L7Za;h_|if~oYYNG5M`c5BIAFlau-3ONs
zX+DhfVU!PUA3Q$v_Mwjt=|0r(A?eEcu@5zUsO5v^Lqi{G`%uScZuk>tIkuKi>-v!4
zLwz6W`M@kwkJ*j}KKvS1$1ia3VIWJYra6bJZ}`w@va68~jpf*`SF|QRyveTcp~(ry
zTcS5_q_y&)sc<u1_<9G6-u9unIOKPHXd(Qr<+KzSSK0NR<+S#pjm2$!XeZp>a^Cmh
z1B;KoaCQ{#WH}!SboSvRfi9NcRiK+_cOT-xG&ZJ(^huzKyQdGm*e!RQpNJANomcz%
z(9ee<KJ+cEe(FPiAHMM6OCNY6@tO3%=RQ=hyZAE7kyo?<;@EWCK!JWAse{-LL(?0)
z?i%dFoGaR?5-Rm8DIMy=xP9hd+=lru+=mgItKqbV>r97Fh#Kv~7$1K3VVe(Q8R^4f
zAC~wq-iHZ3eCxw>AO4D&{}(sWhe<wsO=r1d^lWvC58wDOna6f@wNFo*Sj>I;AJ0@D
zrm_ELI|3WkYCb0$Hp7RRoU8lNcyIYmQP+1q%<`E(+`co>@x2cho4bDS!Mn}LA9U}`
z?waibb&d~n1?Hb~&U*<yED%^I`lBc#7YXpu_e*{JOPPBOC%g~Kd|1viu2)yc<*)RC
zZx&#7m1LXeslJ*EXPblYvkz;1*y2NjsQQZ!-G@0g`ml-9c$9mc50`VO>qR$+n(sR<
z<KFDUduN=#vW5=o_+sjoE81^93|!};xz&f2xm@4gaxB=d{^7%RANKojz=uD5$oED1
zZXfnY19tdu>#1$054(JLf4MmdH&=M}a-Yeou05pglbBmIG95mo@>yYj`EbyO)??KF
zd^qI8VP1<5nIEeB5$+Kmj{9)Jhm#M~qdpuHAaB3q_?ycxuHI>AKSfh23~zC!U3WEK
z;b6C)=6d|t#dOApe}&Il&N+eeK3ovED0;~%z09>g+ra}b&Uanm*v)rc6&<x(z2U=6
zwo^wN9oM!vZ~0J4M`<13{o=aq!yO;)`f$&O`#xmXkweD=A0GOUU^{(y<ileh!ahU@
zBiv88W-DZDD4X%rhi5)K_u=#v%_mBD!Pz3rzgaWOq)XN>8t@?~5E5l+vvaPf4>2DM
zE<+zSK2;yfQ3;3V_pzRX<ude=wQ*HT`C!wLMMqX0Wv*&=9hr1w*5O&EGID(R3<48t
zdqoFyC_1v~I9?_r?+tgot7bD;^Mcni*m4Hv)R9X^VI8mPXm?f1ts|e#=gA<Cj=VYs
zT-EMYbT4b|VQ>MSqC&>ESG9sHy5Xi%NC&e7>T5cFx~dh^QCvq69YuAs{j8sQ;HpL_
zp@a3X86|ZvdsWObI?C#3q@%HpayrWEsHY=CM+F_P^K?4WbyU<*Nk^3$o-XO0*3~?f
zb^f2Zr>YKe6&=y58ljq)^c@1#bvP|Y6>y2B>2M1?Sm$PN4IMRg6uhR@k@^X>bo6QI
zsV#bIo=UE(V_i3mMK!Kz-<GLUpO;*wPD33H1jw3>H@m8YH*}o+!rfNFn$Xmds;0Kk
z@s@6WpfuIdOyHB&=0E-3)-mHf^&Oq>N!Oa|==qwv(Ps0H*Ym%&y{n_8j{f!3?8nU1
zO2>OT2ve_V)T}og80l`y!P3!Q$NReZw}4(c)?Cv*U_Cr<3AKZcjygK&_)y13I=bk5
zm$%kg=bOH@C)YG8v-ayIch%8NM|T|`bI7jqh2t8vhj7#DntI*LMz)&&RW&`kn#Y~d
zM@L^Be+IE5h<-Zw%D*pl4Ak+daDP#np9y>}IzY!40z-4ArN%i1=@`te^JBUnLv(zl
z<A#o#I)>^PrsEg(wvORCR_%0uqhqp;5jsZd7{$~?Wg4erG)JeX76__ibWq3g0<W9d
z@j50**hC$ZbbKwPi;uY&JnXvGb)Re3Ep>{HsXBhtu}H@>HiMHv#~dBgIUL*pbbQYx
zbJsCb$4ZZD&UNiWt#)vy=La2IuWPe7C$-wcwc7Nl45QA~F<-|59rM_1DdmA@B!IyS
ztwR>;SfXP!hlw-iuA{|u=Ta^Q9m{pTYumY!!+qVkLYUdr*PW|$obH_Qq;m%KCms5A
zjcKip+&8qJMVVziKmO%huVaIbqdJap#p&3jV~38NIyUS0RmXOn?^o4+)3HUz?>e^W
z(As5e<>d&l=w+75^oM2s$w_-dyQ<cq?$WVa$9^3LbnMY_;b#xiUT&TZ(qHfC>73cU
zkIk!}KE1m8FC7PU9M;Y6@*R=@#vJCKk}taH91)+uuRb2vae~dBqMqg6HCFvw$0;5E
z=s2n4%ZZLNO<cwMs;71QTu(it<6mCIPPN5fu0x|-gs;n{$Ev5D({Y}S;o=?TU_A#H
zs?>{8=Oxk0qW|f*BEZtC-0dyCF7W62>bG><<~-36)KS}3y<|oA9WE&Dt9*W-jyEo=
zkA&}wJ`jB<+T(`ym|IZx>QC77?L1F)Jk#-99Iq&gUI_fS(dn}sU5DS|@i(-Pj<AmU
zel+kS!mUh4Nk2;Y5z}GlDB;KRlg_w~gpOi<d>E*;@T4=zO)^mH6+cosm}Rp0VfX)!
zGYMoC%_5rBk20lHhQSX-oNS_b{KziAq8xtY6wW1@TXfV~^C+gge&q8bzaItsDCoy)
zQd&r~uqb1A$g9H5s=8htRm6{?;w-zNy>yC8mRG@xqEng;6Q`zJW?4Vne!etQE9Xaf
zKPvd~x?J*kIlQ7D4hgO#T3M8pR1v7^M>WgYaYL&v>=ac+U7~5C4B&wtITuft?ne!a
zPn~wv@}ssNbtJN`AC+!uId7Wr^@KD0e7B?4dyq<B^P{031N|7}#~Xe$@}rd>?=gVw
z@91jc$D0CQ>aMr^*tOTuQk2kCpqU?UTTXL<cSKwG@vcDopo76L_NP%>`_aaa0a9UG
zKkg@0p5jA4+KJO%l+ODCABc7k?dV4*0p8RxptBzzNw$k0J^kqAM_0*q6J<bmKR&j&
zhaa5>m`5>v;>V}r_ZICV+SiKg=f{jp?w67M{rF7$&#ltZYs?P$Lb6}_aX7mfIhdQj
zA7lL(=f_um4E1A#A0v6}V9zko;i7AgJI@XBEFO^lbf9OHA7lLZB9CjdAIyd(YSgYb
zHG9Z0-j4}>eC@|KeoW-p4f1$LI4AkBV?g?{ylLZVrHz#f85ne29FRWQ59$=@#;L;7
z{QQ9S(467NOh38=(KU$g{P>>pDhNjqKlm}rkA3^xOZ-^(i*vRg3wRbk=J+w!k9lI=
z-|v|3M{uu`0o1oQIS4=cu~<qMiM}kNGP~4|WqvI8V}&0V0=O8!N<UWlQ8s{b0j&08
zjUQe=e181o$IpJ8@#9}V*81^_AA9`R%L@Hi@5k?cw8-t+Ao{E5M$t{8EZWR-^{z?y
zO`I*3zg2*5#oETp_hY+ccZ&XL#q987QryjBcUjJEPEIwA&OSf(`|-E<2Sg8x{$)iT
z^y855xyvf!j|d<2<Cws4KTcSY8}qrC7{heZk5iWakHG1d@dw;z{WvH5(2w)%G(Z2I
zg&Q0}EB-$}E(u?@9JZEqUJ<?O$F-M!PqR0eZu)W8io7LoTl9_}Kh`w^?n(B(74v|7
z{)g#566dk#6Va!BJQH{>`hsgGm)T29ujg~=e)zc`2F%6;I7zto29P6wkRM?`YysE<
zh{%C)(Wq!ll!q98+*@w;VM3gw<);MBv~p#VnqLuRSZ0ANqFDpjvD0h@B&%34*#ekU
z(L<jpX8`#E$S*~?0?2K}<Ov|J#q}SVkp(3CY5)ZV3R$Iv1^B8p#=I6l5y`&n{9?kz
zMN5d56fG4%X#sY1nE*VOTtjbaJiL4W6#|$Xz?1-951?WI9RuhTK&1dG2hc2lw*#mW
zK-B>11&|>%RO8_RqzB*#pt?BD09*m21)xfn)#mDMw(aO)k6WC%_sr3$AzWLurWIK$
zfP3Q|EM=-AX59crwl!A)Q~dzm2%wSp4Mep78d}Gyxm}Gdep8@H0IZM)z9rgJw30N2
zW^>853*a4r76H5)K+6DH1<>ZDliT%P0H?;QttC50y6AkBw6+1fWEQcW_EP$O0E>q?
zJ_sOK$JHUgZP2`m4+H2Nz@PvI2k=n<T>|JAz^4Ipl|y=nb`$L`%0oU5fRl>QGk{)V
zeiA?*tF(6jJ!EzCwH#*q3lFfI&jR>d_~jb^LikIobfCb1V&*A^1TZ{+5dnN9=1?nU
zSO71l_s9T71u#+k(W2w5m@xs24PZ;2^i@BbRgD*af>rvWn`@Hr*Ov25!2AOuBc}#1
zjq4(SodJ9s!1MrCaQh8lMgTJdm><9bIpjOh*`nWz{vbLlfObdzw|3@;GdF;F0<3&j
z9oItPC89ryF0x7&2h2ATGHj_h%PfC+0LPCx>96AEAHc={HU+RoN`DdkN%Utcel2&5
zspinHvz+w-Y!H4^MrX6-Zx#48fZr@<O90L5m~Hr7oNWR8A+TNaPf@<xce6~kU6MTz
zz+VEpMfZsA72PMgpOY$gI_o?bz#(x?1#np4xabklqoNEu#yKyaEGNYI+wxBa@M|}-
zZU2aKTJ%f+{|0b2fO7$y518+8WI(J(%@a4ZalLE)Uf0D-z7)V^2`&}{o&Pw00<Z;f
zC4j2|TnpfO08avV8o&+fT=xUGY4NQ9ZU=BjvUf%A1+YwZPM(YKz>0hrz$4+%naqy^
zn7hjyg=Yag=YAeQIDi*Y>KFBj`a~I~bK{cHAqT_^it<w<A`lmiipE44X$Um<RZUn<
zQh<GE4<b|0{KxYBn_A`|vIJ2eXzn&lSp{+i@k$T~LXm7XtF(jEkUfYT;*8#7&ON4F
zLF5)EPY`(p@&&QKj3>YFZ|j|WL-)(bf<Y7tqOka{iWUjtH30^^T=+#L%d7h>;VK?P
zi6BafQ%bZ#5Tymmh?W&CC(0Vi2XR&ITV4;MVh|@~R#dV|D+^Q+ts2DOU(Hrk55gJb
zi*&V{FVfT?TtR3-Gz=mw2zL;*gQydPCx|zWrX_2oQ`3bBH3Vt~QOj~N-O~Pe#ZxzE
z{zR^z;;9$J<E$R0j3BDPQ(v+Tg82Ms8qGI?XcR=-Ale1dIEW@ev<l)qo~yX$%^=<p
zcq@peK|C+!X(ri2htpX4b`Z^Zds);|u!M(MrWR8Au4v03datNHCaY&xaSu<_I*2ww
ztUi`DvZ!a&;j~M|JcVy*g+9(`ALQGRwf99o5beOB`8cDaaHk;OajY@mL&<g){V0fW
zkJ4y%3!-}v8-myv#K%GO2x3SOUj@-Kh+aYb_nrHTAU<I;g7`Fu{y`M{!QCf_U`MTA
z5PgH#n=hSC-&-0ZC*9KKO~7YC3<zT9cka(6nC8-3+RK11gBU2K3?9TGlX_Uh#0rN7
zF)WC=LCoX5_dDssgBTyggdj!)F*1lzL5yb0Z);6&YddafV}g9qs+M1PEU$(CA9YJR
zf6FYI7{sI?rUx-2h_8eACWt9PEV->s4)W!d+Og*8JZj=?jXYI+7EKG{TjA}uHD=G=
z)(&*?%w#iypz}QkC<s<g=Hb*?;?EYHBl`5VHb003K`>x_5DSC&F^Hu>EaSSnqb&+z
zF{k1kt=t`r*(E`~oz1L@x}38@uHvU4Rs^w<Ygx{9{EoJUV{u1Y9pu}`w2gN(UN7P2
zAl3$P_l}mlqx~X4UMEoWu9oWLVYPhg?xrBN1hIRFdo!nK!Sr86f8#>9tG%&XrL&by
zz2W>lh;2dqA<XRdAo#3!!biIt)SW@>VzWbN7{cx#_5^X1k(><8vd-D>VA{)L`3Pvy
z{XrZM_=^`i%yBS?L$WU&4&n$8JnZ4E5pP6id0l;a)jS@=i6AnEkR^n_gXY`Z?gnv>
zYdnZkLHrZMX?8*o7lIht#dRi#e}gzHT<!+a4ry>^oRjRkhcpIU4B}D{H-oqp#N{AZ
zbR&rBH}D@f{~&CW+@Tw;t3gn&iC!0F_Hbd>k}hTqtn;>1n8%fNhf`~h#x!N2dOwH<
zL8LejM|mCw@hAvy5I*iOceTesJPqPm5KkoA_pUbSu0}nX&qa97)p1vQ5yY1h%&Z;+
z-;I(G^|SsUX7_OhMd^nG!lDt;sAx>o5M_Kki1xp^2s|VyRjs(Iv0=6l>>;y-nM4V5
z)@WHncqN3ikog*AgrJ0wFNFLdl&O-DErc8)<P3q^NcIrwFRI?_c-pKJX}Lnk6GD16
z&rQ2KcL=$Tr9CU^*;~SsH)QTwgaRQH454fY<w7VF!j{FZkLRVA4xw-euZGY$f9==A
z+&C}2hyVkM3KSD99zqGrFDXzeg#C9lhB1{1VNQMRo0?kr5GsV=l7QDks3@R@V9ZNr
zSfvo(?4wl{vx+FqsshzQa0pbld}jy&tN!hk-Hc=-`3GWm2p(Q(2sJ{e8G`%0+6_Xe
z6+-P0>V=TOYrm(}5x;H-mG5aImSiv{=WO+dbq@OVLm)8Q_?||8eU|h$LTD7inGpUB
zp>YUJLYNW4%n;rT;jIvchcF@p{#2xC2p@&eC4^=nyd6UG5Z)0#x5M2cWd0{=JITH)
z+)|WgD}nbyXf4pj^4ki$-7za`ZZ8MEAHoL$9YpDO6zC-Sp=f6wRW+SOT|?*=Lcb6`
z4WWAoABXTs2n+9NJwoUi!lEK>Ty{~r-P6Y0(|UzKWwv(+eM0CP;!8u!Y<N*R0|@;?
z_$-9MAq)xObE)Tx5WeK}6J`Kw9vDLPW*LJ*cyUj=cuyl|yRVTSEHO{CqnP@Y1Pl#<
zJd8tsUn7hRnO}1q6~gEcb~dd2_^~>M!@Au$K4d<Gf2=UG<G4rd$(Z^^+Jq1$hA``Z
z=jHSECrQ}XqThrtSzwCjRMBao4E|PNdI%q?PG-Lg;ro!eza8Lkv%(P8O>=JvVKygf
z$o!hb<`Djwtj-mkCwkwgH$Q|0yyOsmOV(Q)!V>X+6kQ}H4`Es=&YBRG3D8*{!V2M)
zma|G=b;$fX8Uua`;pY(6hVTnV$BJ1O!Y1MMq8luKV+hGZ=21)x{#6>xHvbmF);;ET
zB({do;4Afajw7!z#MfkK`$PEZmS?;0pBw^#ouYd}*d@TQ-2yyzufRUhb~n>lw4jp~
z$x-{S5Dv1bbKQqRI1<9q5Dv@4E9OY=sko1YP-Tw$?+{Lga6E()TrVGL1v+VW)7<<?
z)Tt2ss{0>K$k}fCo$qU>L*S!h_{<YJ2l)tS?qgx(593@2=R>#<!o?7-hj4>wqUTZw
zi&v?aIas;WWo6U;lk62y`d0<6iR!1^H$%7;LMVhV7eX)hZT4!Ow0oSx_q99X+~tVd
zGg!oQUz`UaJPhGc2#+O8-y6aci=PTS<8Em=FSrTZ*Iw4(6H^!UbJAKdL5{D)M8rWD
zO4w{qG=v!U6Gt6G{5bnTAQ?g?2}nuSCTthwQ9NU2;VhzAE&mk(UrYDpPcnF!*}}*k
z#_{_aIY$^d!^mYtHgeR-Eu2R*ujMncKo|wXs1-)-FbaiHIE*S`R1M?RFkTCzd>9Y!
zYem8+8pbPg)zV=U6DScz$uNow)9=&C)3&0PrL%`zDvVYQ-2|pGVU!J{oP=GN3?`b-
zx@r}|cs-1YVZIGPs}x4%Fld&1pfPJNSBJbbi&`y=^e_mHFuyJWr?4tYlV1v=y241a
z9Jhc+bn)fNEUgjdb9BubCUsY-b;76{#=xu@^~0zqkP!wGomE5K>7Tm^t^De|u-Y(;
zH^T6wDd}lSqc9qW5z4KEb1O~4cr%PrNt90FtuUH~@qH9OMA0max5MZWLC*-9hw)Ar
z3&Z#^j22;Yt6};fjCaFmDcM$Gj1YJ)jMnV)vTB<!x`fd+jJ9F43nSK2ZO^lJ$mk&a
zei$DJ(D|vXyJHxg!uT+Z^9@{`!}y5J^Ez99>R}=<)q0?H3!{4&eZ%M%#^E|?d_`cc
zX6namVHiC*E1Idj!ssnP{zRZ|nY2D(T#GyCw0od^8b<#xhDha~h4Fb9U$UdZ7(mUh
z@+@D3;To)xcV|muc2F2EVXz$X;U?4H)>!>2%$EsbSQx|EhqW?ZEo27MAN)Y0j+A~F
z6~^c=#)L68jG3HQ6<kc?!k84s*ODC{#)L2?hVk74ZEL|gYaeI~_$G|WVSF3L^f0D`
zF*S^7VI&oG{{!t>OO*j<d#W23o4_=rf@?+?R~~2#2t3ffv(EB8ud#xwMTd-8VayIA
zQ=v?A!k8Pzyf7T2998nxnIFait_XRXd5&r-%^?RIO^2$B!dT4d6hXa+ImAmi&B9m~
z#^X9!m|Y&miZF6VkSBtbVXWd{g>fN_)nTj&^J`}KEsUSS_&JP?(gSNnH;D4^U&2^t
z@p^&x>YG1Q?7qvst+=`=jLl;5OY$_ggt1k!C&TzXjBUb)sR9hxE3jSk&oFif?6gXE
zao~jaSkC^e_I>}C!#EJeUtt`yoLmnz)_I6?M&L*oN5eQKr6)v>Tai5K@BfES3I7wu
z=`hY%{@F18wYY)Deoi=DUVwfvj7!{n!gv(M<uLvW<EzH@`x0<P^r~p4VrkbnwaS=X
zab27nVcZm;b1RJ7!goaPTK+xmZ%xggwKksVc)%Gu({Zwr>#>yj!q5eth(6`kB=B7H
zg{W7Qhxdq@UrY0c5e_3FW<WH^CRs5j=9;gZj&gQIkU4^w_(mA<FcQLTa++TqNeZV#
zZ8E9sqAdDPv1bv^DVkOE6;X&PqS-{Vi}I)(5$uyMcad|6`F?t)yb<J!plk%?BFG;>
zfe1=Pu)M5VPy$|yphyITA}Ace{kP;T0OF6((mo2CJzSJq+!1HV2#SecT$Fx^2&%th
zUd4Eic~ohsvrGhavZ?%qAnPw5K?TM{;AByr>aRyoH3IGu6(gt=LFEXlM6k4)8ZF_D
zJ@71h;n=fC{oz#?1FA*fkjT?D)26I+sS&s$s1ZTU2+|^a(SWvMpz4Xh&C2_EdKPt2
z(<7ky&yVQ?%DIN@_B42?oqDX+ilBA`9Uf|RMB5B>kuxHwFPG3>v_S-Ka|4g?>w>Bl
zLBj}k9d^7CK_hV*NAMQSa%oLO32zGI_(yFjaJ`tTSp>|o=$!~!MEIsxtZ$*d8$rv6
z`O~f8Rn%P9J%b)<{6S@_2!<{(e_8qOO0{(aZ6cWdP-`nnXcytzNnC{YBlv&~w)**_
z2s%d4DT4oQsT)GB4<oqwwWD(cNAkOw*46TKiJ)r)$NRauMbJHh{(m{v{pfnJG~;7o
zW{Zwjdr56`BbXP#ClU0HpicyS#hevEzX(2!U_t~FBY16}vws8wBN!CHJD1Wvi{NvC
z0is`s(*Kg(c*fPEnmRawtp^-qa#a5+f*~?hI9uM%tqzS~SOgz!b`FnVv;cX8z{m(j
z33P4fqB$mlu@Q`uG~SA=xXHny%=286BKSIjAEc?@aK!VwzvZ;qsJ>NAogBfG2v(1B
zOcj5c=$>k7j@{1b5%UkYGeik9Blu4Ed(o^(^AEdEe|MfrI6I86&yHYD1kaB+D-3Y)
zjPoN{5P=?nUrxF(f*ld;jNr!z7Dcc)f+Z3B7Qq%aBZ8kFYRftIB3Kr|frnawxXOpL
ztc>tU_1eY=HbwAecXd?+mrA6qruK2IiQp%JpGDV-{vyiKbpq=n*kC!g8>bo5JexUi
zJDr1@nfz-6)awh?tr0$XUi%}0?d;Fm>hBS3<4kDiVoLRO{TadSzOH9GoOP?Xs%>_X
zcSW!}f};@}i(n6jI7{{YY%|yXBW*AD4Njh~T}+%*Me3@5MQ|{JL);wds(-XoL;2L-
zG}oK{w8NZuoL5WKV|~?LMO?=tIKi12!IcR9j^HHMbu;x`1g9eShf8&n%7uTL6X2Qa
zU(Sc0GD;tFoM9gxaJmY+&T<Ml(wK&1R?kOpA%ezL(=Kai7kTXwT;>X@;bP+NdbX5L
z<1dV^MsO{HhY>uA;Cci%BDlwGE#$fx!7W}a$6|$RMCP>THPiS%LheV}9dT&h6{xY&
z)2p?5KY|Al5a!yeQy)k0ghL;}iwK@Z@J%V#GwxasoJQ6(a+Y7+(+haK5&XNxQEY_j
z;{w0oTIp1?>{po$a4tpAC5o<5gdzxY?MKl%ibw>}2uem#DvB5fD}vln<cT64K_Y@&
z(f{2aCS`VIi6SLnvwXWiCeh5IEu6?|mA)c?C=|=d7Daa99HKcbe@|(1a~@tPBd<8<
zsTPbPUljQz+vk#5S|Exg@-a#-6h&d{*jJ-?O}L2V6pf;oaB<NRmcO>Ky>t|1qG-jc
z-msUAqMQ`H8AW-4N>NmfqJkCwx<JJ!G8|?Dszgy$oElM7vtm2~4$<mSI4xflaEYcx
z;kNuQADfSaN|!9}Qffv~OSpEFU$KT3MI9@$ZWQ%|GeqlK{_;P}#_-sNmh(mwjf5ME
zHnIFE@?rN@6ixY0fGFO!{C5SKNAZq83sK$<v0A2<*7fqE;e({DO%!dTct45{q|@lM
zi=w?S1K5pB9ir$MMW-k}{QrFhbQXs(AIVubv1xXTqI(o0qZk#%$5Hf%Vn7sMMA4Hy
zP@sD6DEdUvD~b~h)lWq0J#b|2qxNNdZMA<C3syV1-}Z}Q`$qLsQ97SR@j2&n7B%Cd
zqj-Vp_rqylMzLe8<Eto!MlmpoK~W5jV%?i+ppT0$^Cb+4@+AlwVOSKyqvjjfi%xd6
zQPkd#v=LG49pn0JoZ4}TV{{Z_qL>!Nw^59ZVq6qoNAXP*<D<A##62;J?+>b6o)g%^
z9XwpByj7dT(JbVqA202i97W=cV`>yrxU5RMp4E4m<|B<iC!8L|j3^rZ<@qj(nNdD+
zUn{xDq5Y&1_C3=0Qrfm7)LBu?X6GB|U|>!ZbEDXF&~Yt>c~Q)dqIwL@7#2jaFp4lQ
zKZ+ltSQN$GDDFkEn4KTR?kM&|u{4ThQLKt$HN$S2udruY9>oe7mzBK6?dt8g>+&OQ
zjqtDHGv+6OpQBhS@Jkf_M;g<*DArrNL13fkrYJTG<bG_1{T9WRD7MP6+eLpD-6m=_
zL!i)kb6xx?yhC(n6uYdL+~+dyjbdLE|3q<G%>AMVL@Pfw@A?0V;$ReqqBv|Fbwc2X
z=+P*S2^<&Y3y*ln-@+$FPl>)_GZ)tx;Y*^-{wr`cigT88K8gz#UlhpM-F{i%Kg+)o
z#nmXTN%ndaH!c5$K(6}sTLQPExWfTj>iDOLy7;hT%x>qz+s^w@JmZ9vfCr)vqj)6n
zSoDb~+x9eyl9|mmFRb*xF?}IL-Y9$mx~N|?AQ}|qAtBC8ulWyzC^!EoO2kky2180S
z#gI9MxNw3Kez=+xPKnxL|Jy6<0_EzO4agEhPRVAqN?#Fxs1idqf$X9=M2j9a@5XZp
z6LQCpCx*O|%@;$V7z)RbU$O<Pn1TX)D<b1x6)qaXYgTEI7+w~!w3wL1MR#|xmx`hF
zGk3)p)N>9(=@`nyP&S5gF+M+ED<4DdyB-3yf<(R^gFANy)30MZL&J_rF;tH6{|X#c
zVwio}L8vO(YNC!9zT9Y<Y7DLz8piNO3~8((hMtA1*N(vxLwXD~W2hAaU*FL6u{QRx
zRwIV)-<hy|rnZ!)9<1?8dUawL@{gl#4E18>U)VEZs2@YcdNugREM^G}V$j5SX*Oc}
zV^|x*FEKQU;msJnjiGjt^tWPY8bc2@AjT)FYt493F|>){?HHQJ@J<YiYN_wVuqKw)
zB8K8kHKuoCXc@zy(;4JeF<k7Aa!WJHHOgRQ+Zfu#@KFq1Vrb6``N7eNUDqh%eW`~5
zAH>kX;*M73Jnx4wbe2d4pMR`%jiFl%AIo`tk2RjFJ1?+-)~9ktSj%8zcu21pK4B-s
z@D<P4yms#x`oz#zt|DtyjpynY!x!xE7(SH~^^buULjN<-&qW7FwKQ2Ft7RG(!yq~D
zU<shZ(xI%pa>no&M#L~I1|CK8@e>DQM#eBkvUElXjE>>uv2@19FfNAiF-(x6udT?5
z0+U2}>TfK6atu=}o+>a+lovQXh8ZzFN?n`DT|I{RF?<)p_ndD}v>#%a#rYQF)4Vli
zndZbWm&5u*%NKL=wH-|41u-m?_@$yhvSxPI6K(txZK)i!IEE!s#2WYp7QW|enVfNX
z3@a>urNF8fRtu~V{mCl*nS;XjZ9UP}#jrkxt{!c_tgH<&Y>8oO3>#zEB+lj-eiiWh
z%+>u{45R+T=Bt&z&1(J&{r4Dl#IQ4lZH$RwJKM>zE@f^Yw?=6r8=KoQVOI>hrINid
z>=D@XiTU3Y1N`dwC)z%7n0@+0I}qcK?{JXwHipwNoQdIZ3`e-iVmKMYQSM_;wNIaF
zCt^4j!*Ndar&_J2TI;9U+eNk8&)qCyn)XyX#p(1^Tm4k~hijy$_OO4=e`7eyRS?4^
zDLNO!`4}z;f4@uH_f$K$OuHtB^T5k7{1?L&DJ{KQYg9nH8UvL@;ip=`XPWbwc0Gn0
zG2D#dRt&efC=8T0a3_YlY@~rK2JXdhKZZaI!5ALI@GyoKF?eHm6vN{fp2hg;t9nmj
z;2Zr?*D@E1I-YXLKhv1XE_FTUZu3Z+ImOKwzTwWtyMhv`KL$MpX1y6{RJDk^`!g*R
zLzsJe3<-ABSyzNBx4RY<zSG+o<3|7oC3p1?9+|(2Wl@r=FY2%vup3ClkfoN&+b8}|
zF=y4Z3R4~4P0maPx;An1Q7u^wykg*01Fso?0mVQr1Gx=kGmzat4g(i*rqy^?y->#W
zZaq_Tij&By8r{`A2J#vxV4$FwBcEvu&L^DTz?Mxav;WmlA1CY87^4<4%)ho2=1tLD
z7yTjziW(?spp=2OmmI|m6mRJ&Vc?6fv$!a4?XER(Z^>Jyw1NKFtCulwX{frPpUS(<
z9%~$B4N&Wjat)rHUco?yf%*nsH&D?)B?EiQYYqd|4OBKz#Xwbq4`$S=894P!`}LVN
zu)Ici^h|r@x#l$BF_3Pc%yUgO;4;9{j^(v918xHZrh3n{8U|__sAHh6fm#OIKi3#v
zn+<zzma-nLyf%$2^{f_?2QD>S4Gg?vpoIa=Ktls>7-(eREdxyr^WjmA=|6HeVGkTP
z9~<?i0Y2A=4ztY+ylvpXCHJN0T63OAo{Yo__deJ7q@Z^Vv^2~IL%naHm4WvRv@^h;
zU-6+*tqru{m~L~IIPT^Xu?TGqK155)`9f<iF`a&Qm%D5}4~h>;>S&-7OXKjx@u7jv
z1{`rzkK-c)T?}k9@CWCKfo=wt8CY)csiA6j1H%oBFz_*lz(7v}y$pP2;By0?7&yDx
z)lamyfj$QM3cu6^D>arfeQI8g8OcO*0EgQEVF)YS<N4CyW1X}?!UGL7Z|$MUG+6wX
z{FQ;B28KxtgIN##kp@Od3uhS^ZD5RnsRpJQ;7=XL8kk^Uq5=NYah!qi2F|~p@$x5-
zlO*691CtFte(HZejhsAHWdOq%GsQ6fuF3;>oAE7|#$C@$1Jea&80P&6??B3obbn{y
zdyf7{_YVeM`Y&%zX7ir_9BZC&rDLIi9|h(am@hzcfxzBU?nRt(qdiR<r7z*2Y*!a^
zk~B&uEaloftnSI8GI)i7l?K)u*kE9lfz<}q8u-P)8UxQ~sUr%xe>U)waHjh%W^)xX
zwOw@&e}=hEI;T%-4+n9hflUS<KL!5abhCk7r89n&v#@kT)jGckZ{hSC=Xia)Ybz^s
zyWYC$xU|Z}((MNRG!W)oGO)wIPPU&*o|PEbZQziB!v^-SH|DGFbjjGy#b{vZYL(AP
z-e+JyRnLm$u7-Kl0|x%$9N3`Nexe@aQ9WJUjyC2||IVWxF>uttF$2d9{A1uWn{h-v
zVc;ZNTcpn41|RrlIt-?s5~hDfO3!kz@~F)ID_Qb6abB7ixrZ2d%vEOKvVs2$+%RyH
z6L^&8ih-*Jt{Hqcih8xRhuZKp*L4Fm%DB({<~gvz(PEV6mVvw6@VT5vd2aK(8yt5;
zn}pT-TsW&-4-NF&?|dN4?6Y^&NBoTV+7%q@(SGyPf8c!ex%;VsX9jZKcRuI3GvG6j
zeCB>3+Ge>+H{j=(9#TUF0&LzkM^LhK$V}{?Wd7=esDYS)d~xKDgQI3}pEqC=j&td?
z_9R#*uc&+m2e(O?jQekC_BdXN191%5sb&(*97h&`tfKUXt#T-FJX!3@5l7BAvI%Dw
z-Puj0Z!6}?6-S;p&dgECx#d7YUdv%61>)GeLoF3Y={O3;Q7DeKa~*}_C>lqxI9`q8
zHE|Yf%S69O9P00`E?%{G93|o?DMj>WZOg=fmx<Xjag>dtQXG}zC>KZJf^MeQ<0vm&
zL3Cy9^p}3cIMQ2r);{z+YnWCg4r<jn9&XD-s1^qk;aVBDlc$bjbR1*iaK(`p#|LqA
zi1UHA@WjzLjwW%8%bJ$XQ!jNji1SHqS`Be(#xZiVqgEWX<ESId57xR;R8KTRl*iVW
zQi8_*Y2s=;$=#6kaKHW9)kt*MIp?yhX|vX=i8kt+al92r(>R*N(IyV(2FKeH(>%_v
zK%=%>t<m4r^M%$T&gZactwi4yZ5hYJ7aGm?B->iFP#cv_+c=+W>1ik0K92X}U?p_+
zG)bH2b9IcH|0?`2j?QtgC7t59@}B42@ve{J=n}`LarBR)YaHF;coD4CJC0dv)b6ZY
zfNlObjvnOoD*Yn?S1;jDEQfv{Igrpdj((QUsy>V3^EmiB&B1YOoudxmS&pe+ihd!^
z$`{%|$qo`_>GZzpkT|}IW2hWBGLBL^Rn{;}vcuyTAwb7fPaP$EZl}tau^fvy{)}Ts
z9OL7d5XXWz7P80U{K*ntbEZv?<Lfxz9$RnJbjQ><sNcll9pjlSIz^P-GEIPC-%2n8
zX2dZwj_;(BS#ivc<9p$0f4P2$gUZT3dp~_n9P^lcKb<_+0`mMgsC!#^evD&L9P8uQ
z5Xa&;mayCFscYg`8ppCYR<qjC9;W4StcYVJ*Z5g;CNptLuafL!xES!#|0#~2rG~X}
ztP}V}wB%83`$`9ECTx@y`fD7&#j#143wCpy&u7zutvuu{Vr~=N8prQ(&}U-6AHv(E
zh^vfy!p=B$#c?r?OL6RuV^17^$8j=_y>aY|<0zNX4A=fR?qsjdd)>cejvWwP|HyTa
zBNfMCPW!THN8-5oYF6V9&svFG_@EvSJSK-9kK=?u{p~8vQ*rzg$G>r$jq_m_p3`yE
z?~#c|onbb6b*39Hw7@FYxj4?pL1_5YL%m=zhxl?F|8Y-<;}KiJ>G8yKHO}uUn4|yp
z`{~!?xDm&_IDhNyxfw^Oefn*-pUb3bom(6!-4lJG74T~7tJS$1M}w+$oL-GF_a%Pq
zJjVkzW1b`TSkIPk9gjJI<F2RNLgRRIx?}aZOl!-#o^c<W;o_A(7kFW1^*H>T;Ry^&
zAi#d+&XYj71VV9y<0z6q(F7uKM7gOZP&k2D97Y_O63CoDoKxE8N{H4PppJOraa49E
z<DjPEuq8~eixTQ(t9@pVCrbiK0@)HEXHDQ0fi>@^BY~;>N%bC2_5^YyP(b{g39u+%
z0$-fT$R*5dZh<@r<Q1O|OL<^^so`a|pfLSydpuv9S6@xwdK>jM(OunL&AnPLuU0H!
zZbW4gD9&>=artw)N+eJ+0Ya$+ZftOrPGIygm5KX6i9h+a0`p&{<r8R`K&u2QB=C9y
z6%(kGK%E5YCQvznDhap~SiRj{HG#789MuzWCNOD-R*jvI;Df?6GF6orhNUIo68`27
z4?jQ;pUp(mlR$a`H4><qK<xxrMDx(uOoUnqEc9wGv($PCWF*iyfhGymPndUxyaQ~Q
zK!b#N)2NBQG?{%Pffp;aMxr#|OyI2q-btWE0!`)Ew-acdz<*~mHIoBtO?1Dkp>CaY
zn(vCqdU(UhEQ{XbQ3-TU;Nt|^B+xd2P6-_R$=NPpuG|jNdxZ9qeLsN@1h||xt}%PH
zV*-~ZI0*H2svjoMIROIGM*>|$yNY&`YFX4Hfu0F`l0feSI3m3gm^;Jue3?pRwod|m
z6Bw94kw468`z7#M0-sAWJ{9dRgUceO0h~Ny@{@wuFNHbi<UvxyV9_C>Ux~8XU*<T5
zCom#`qX`^KU}OTL*oFk=@$dx3$c&oJflio@1?aF-os_^h4%tG-rH-!g2}}^4D5WpW
zuQ|R6Oio}*0^cR@J?Cu#oNv<;m?1Dt^xK5_nMHr506(gj<tG&N2MHk0N`Pl%5t*N8
zggKl=e>nJbg82z7NMN5dZ(#yICir)J{_F*d5?GwT&pdD4bT)WN0?QLvA<bKwz_JAR
zNx_!$zH6nJKS}!;xk|FDxe^8FFp|pPwF&%^z`6w1vxobtn-bU{_49f+Cd~UT#xSvH
zvt;=pMRN<UD}kK}{MAYgPH_CrYB^gbIQV(GP2i6NhF3^q_D{*~_G&w<0Dk`NN?><_
z&m!>bVVe_R7)^c<|B~OmUwZ5SYfhM-_y?tz4kvI(fc;66=|}>Dcqg_~J)Xdc1ftyN
z68JlTliUgtxXJbPfPY)Z`2;Q`@J|A#xoPlRrQH0d$~mt3(Vl-Ldp2SI6NdkWViEuS
za*^FzC!L=cjkdckC2*PRD}ia*t6xv>D{bk7E0Vn`dQF095~#NlxSfDk+IfeqnyWre
z;7I~^6SybY`w70d9DnRqA4rw~k*(?@?#yG<wiy|l$E!~h<_9;o!RHC{{_~k+3EVAT
z$mWRze9~_^mj?HL8Ie!|VfL*IABTyf6A`}X)tF@>7~K35$dg3gBoeYb8I~!Dq%b#u
zR06i7xf|G%=DNOCHl3U~i7ZKEP2!cLIk>r!KoUw4%?@bU#mQzV$Cm*)q$sB-W9a0T
z00JZ1+;;IkHeV9?lPHh`ca_r3-Nlk9m_(r@3MavPkJpmsjm@jVKCgK<QbZh@Ma3lW
z2EKR_CB!e8#M3z{R}HmH5@nNElto#bMJbm=`6QZWQr^j=R7m3WBqAw9Q>d6kr6h8v
zkSB%8NmNPV_awF@Q8kHbNpwr1d(!-raU@Zf{g6cUB%DcnmdB$exg;IwNw_3SCoKuL
zut)TT(?hd{gfX&a619YDi`EgnoIQ<28A;Sn;%zoBi3Ukjoa$+mMB^m1BnCP?4U=5y
z4yHGfn19Dp*z0JL#FSm0^NrG)3cSfn$nAMcn6M>}r&*G3rq05Ecamt4gkH(hA&GaB
zXqiM?$##C=X(jMp66EZUv$W=L2zT1!y!FCCvmMVn#nV2C_mlWQf~Vy6&}S+Aj!AS%
z;zM@PNC#8rB;Wg-<w$N1`J*Jdh|lwO6=3|wN%Tl!OcG<0=$S;XB>E-sDchOb<I3Y1
zm2iBLMDHZ}$R+oc)A35#6*)&b`m;Zi7?Q+S9FC3Z=b{6X7$ES4DE%)5dYyC(vYf#J
zIepsDB!(q1if!KGJhIC(Jc;2-b?4elBLqf@vXL}LOANyX{GMrC664wD9H}HGBr!3G
z8A;4cVp0+Z@_Qz;!;|<riEom)QqJA}h{i;iD%o$7m@Y6a$p;3SMLdMe_?P@$60@b~
zd#R13KM2eceHk++iMdJ46Ni<MsSA_%F^Qj(Sj)wj*Rv>z6-n^xYKxOtlEl&^mL>VN
z-z<wCcv$Ms=UJWvm1)-l&&niLC9yim-!*%jCmm~&;3TPZ%0d2#6Z@pYf70<w66^TA
z;sN!3OJcnMd9%O<(T$u`K5dimmKUyHtr(h&+>*pr*8jrAER}2Lk0j0}agM7si9eIr
zk;Lw%t^-N@mBh{@c1d=368i*7-*@d1*vo65;;Hq}O#8WZ9(s7x!6XhPaq{IMO<jkR
zIF`imB#tC;RAP7tYv8dAJ|X(I_^jc`woEinS;zj9#A%DqB=Il5O?}_R08Y8{NnA)G
zz?~|Ii%DEc;$aexlE^mIb6NDJ=zkpFB(5fLO|mycuZuGB&>!yUZ+nXU>?Ge3^L7$<
zlDM11J;^>0y)XJQjFHSf7Ki*Ii6<666?i84oSpE8n*mJTBz#tkF5nksg`p(EN!U}!
zltLtlCb>OK$t0o{$C5CF<Dv=C?)lBIl&~#j9`(}CEDX^sDKIRnFausmnZr#`#K~s)
z*;B|NoKrNH=*oO%{drT!m%_vpCZ&)+g#syfQb<psU<!p&`0RzFdJ2V8c$LYoR!-ry
z6h?kguVf0PQaHTPQAD(83dK?=o<fNf-r4100E?K&rBf)A!U%iy*IDf$XW0}wTy&O8
z;o)G%i%0d!r%)k<Z(FD(N2~el)mbz@ucu-PUao}{KNi*OUe~8Stx5`2Qy^3mB{)*}
z&ZiNaDNHMqMo^{5C7PDP2Y<TUDXjBpkGiDSNTFs5T~p|mLah{Pr|?D!jZ&zSLfsVj
z#g&FB)Jq{Fg$5~TDexO{{K{hel=;=xdF3+I_}AI1r|YZ!D!&jo^Pz*KgvRW{6y8gr
zbqa5$@Ky@VdF?5F<<G%Leh0ECvzOAErSP@@x$rM4OIxIH{1@kdqfYX>DYTSB&h2%!
z64=nv)h30uDRfGKXK9x*zjAZBu=|4)+6y!LKI_b_5;~;t>s}{Q#}snrcM(2Jp>ql!
zrTE}Y)tTSbMWD<^XR*O9X1k~GaS8)d7?eT}UR?^Gr!XLeUMcVty;J!2fP)SDL>k;@
zl%r1yeN*7&^h=>Xn>x|Fv`=}+Q73`f&*Z#>OII?!V29YNf0;t!g4sX(QV?U>A8-s#
zfmMx7VF;^Aft}eTrVf>J4NGCTzzETiqM!WX8YM7Vlua5Vz%Ck>!igGb<qtZ?v$lth
z38MUq($^_`lfr=%{z_qT3RBpVDXdLlD(6ND3pqu7+P5i8Phn$2^?Y8>j1*=v;J$;O
z-QT6~eF}3^n8*3Q%kx7Dvjp@kY0S<Ro+HZanJFIX{1g_5b0MFZWn%D;DX`{6DJ)K5
zNeW9PyE=ts0xVjQ!g68n6c4j2Eq|3jqw9_}mh%%Q=XD2Te&Ga8;m;Iyq_94P4Jm9*
znS0|#_M1}uuR*R~Q`nTkX32&hWuZy^jf*soXA3Vj;Nhp|$}`TU2VB2%CLC~W6a7PU
zyJ%=oy`8Mt>DjJS-<QHJVP<!yu*c%P0?+e$_H*cWd3dMvz^5Hd;ZO><Q@F$KP2ori
zms9vJg`+7P<9MZTmh(J?-T}|wDV!8Ik>Z=Xv-BHSkLgqj)H5mkBXC-jpZhc!!=uj0
zAs0o@i_*LxVZ8IXBn~5)uB32PdW^fxwG?;{qviEn=VDQ+v#W1#Md$V06ul+NyFog4
zQ@EGHvlO0l2T0*T3XfRlAlE}K5T}P9J;n<Mf%;f{7CjMonle9~nSH@oSE}}%0rmVT
z^RCaEf-eO<1^ae)R$b#jaJB?e2-2+NIhDr~N||?$;gosnNT9}2Fj9PCzw(A%iE}Yt
zNGoVp3fYxJ3ds~wDcEevUpD2SO|jdQOg5#eO{r#6GTW3aHl>P9IoU;J%4$;z*_6UI
z<rSL(o02c5>d&DnHpP>>dN!Mq-KONQDdtE2AV*%ClGEZ`HYK;kd2Gtk=jPXYnDW__
z{Nfj|N(<VQkUYxrRh#mfO(||uCT_}9#HRGD<vKRe(c9-B6tyYE#38SrWY$x{rj)cP
zrEE%RtDXurrHsX8ZAv+d%iEON-OX<!yly!a1uBVFwkcz_nx)>t?jeg+hfS$&Q@Yrc
zt~SMKQ&gK$&!%M9l&QmAE}N2OQ`|PC=`cr!4^@v%Sy0Qo=cz08q>I+DDK!OZiPjcn
zOdXr@O-=JG^L@4EK2Yo1lswy9noVhFQ?edX8`u=S0D|y_O<CO4tn)pa(#WPXwkb_)
z%9}Rj9jWIn(WauE<cb*C%%;3;ou#==DO=S%OAE_+*QT_zxRp)$zelyUDQ#>@TPbQM
z+QFu@7kJ-_|G=hHy8pjX>&Rnm%7-?kvy^^h#pJGSp6*MRy_-$xZd2CUlwWMh$5J}U
zrhIKvdT`WiN-uFfwJH4tJ`wG0Q~C(>6=gmBY|8NUW`#_j*_44cWf13Kcl+lOFu<mK
zVMTsvQ&!1q=?2@BAvR@{O&M)dzLL`6qC>67VOE_ZEN7%mS=hil%NTLSi;lHQ$62Kl
zEN7xkIg!td|Hh_Fwkbc_ltngW3a5lknPbIFvnk(M{H;xyE<8hYrscQMZQon`gH4%b
z@obxN$z#?(*K+0w%;yBNoP{<eF7t<Bi*3sM5%!ffWr<a~RA8A+S#CKiY|4en=Gd(g
zXSL`W(Vs+r7G;2~mObBQ$2yyGz^1%9+p*rJY_KUCrSvzOvPEE%P1$V4|H>75Uge`9
zwpz|^oASF&*~YBp?64`@E&kJ{aC-1WOgqKgC3@2^o43cN?3L_3D}F!s4VhFg?B+gm
z$fg{&DT-amW>=2bl%qD~u1&dTQ;yk`<2L1{O_}kp`HGDb+`DqBXKl*gESl&zDYcyv
z{YUh)=o!&}MR`=V4ras7*_89*T(Bt@ITlvwRhx2I_&>|JV$C`pb<L(+xBMH{oMB^b
zNt14i-Vx=-!Y1A4zG_#p*v;MJflYa6QzjgCJhCZ|ZORjy^3<k8ZA#3hJhLg!rP`oP
zd12MB+Z3<GKAZBg*?!9jaG~k{Tc;tL61Mz^wXd?ZhD}L{9~VtnF-a@NW;ge6yC@-(
zUAZKCa<NH{tab%<CF*s&VmEhY0?n83-UVlNyOP_k^dINg@x3dDU7?fHuH+JEJyT^i
zk6p=YSMu4FiWSuSc4f*Q^D~7r?fGW4fL%HK4PNf&h2_-M?8>Wl<u$uf#I6*zE3fk?
zyHd=qB#UR1v?~KMr4x!vwuI>9^691QN@=@Nh97G7^c~%@mJ=u|x^cQz-mX-T11C?(
zh)>CIP06suYE`l;mF-FuyE445neBMly}EeD^gL=+yK<&P#<Z~cGd+i0scu(#yy0@%
z71ge|>`Izlsc%<0e5$(HIc;4`wFEqNC0(F~XiclMbvajU;X0yqMeB)Xh_Z&`Bh>~{
zC#%&2&NfvW*_Fn2<(OSLZdaPvl{f9ma=Ws^uDr#`V^@Z;*><IwU3uHCd~R0;*p=q&
zu_ATa+m-hj)+OT|yV61&n(qp<6m7*p5oj&iMzpOcBiq@PZ>FXbK43HKN>9u0DA3ie
zbg}|I6sNQ3M|P!)0DsTOV{e{!b(3s&(T~}I0xV)!FN;61D=mGF-dqlQ()tMZ740Yb
zsc3(@@|nP)Z_^q4g<TolJ!6nv2^OpOCCBb)+CWi4*<)#g?aC0la<Fj5SDZ7tHq@@P
ztB{qE<QauCM%a~+c7-opT5MNFu^ziJ-LA~AD`V`+SYDJ}nam#Bn>Nm_bX?$`U{}UV
zmX0#lJ<+aAvMUXAjZYQ$n$!4Q4`Zmw`R*yK4en{2hx6T2MZa^ozm*uiuyt&M^qF?$
zJG(N^uFSV9-%Fj3=DKIul^^U1pH6Ubj(hrCH=WsbWsY4TFwM2X_A2fLY+i%(AMMIQ
zyRzPuPQKuBFA_6S!JVyII<IJnU0EuZM*crcodvWLSKEcjWG311WD?wqOKy@YxCDwr
z3$(ZtD^8IXDNca`#ic+6cWZHqYk?Mb3N7vwcjtd+-_F0jyJqe6oPFLSbLPyM*qxb0
zn4K{;*MfN#Y_wp-lJI;B7Fh6$1;1LbP-b0He6a;f2#YMJ_b4uoY-<me7F}wAz%r^N
zn;j1?m*aapyk4pzth8ViVKsG~1#1WrvzG99m0kEZa)(J_;SCm)_&qAH$%4%mY_VXg
z94QNSTd>W7?J~*FM0dynvM(v}mvMXWV@DE2cUmC7PunH!t}%Y7Ce9uU<iUu4Fn+HE
z+4*e5vi}-c8!{&Ex8RHgXDv8j!9fcS$x79|*ij3PSx`D_vBMU0=vnXxbxfCHogc-I
zTQK@j{1o+s%(O@GlNKy~6c;#6^DnCWB2>cuw%{LGg%o5_aL$7B7FZRi3NBc1(Sm0d
zJh$MI1(z+jYQZ%NuE_b@B%W!!{pvX5t`yG2$=79|wkF<_;JNl2Wbtn@?3M+$3I9^>
zQ14QM^X!K<hwsZkWlerS=OI<fJ|aA(K9Q4xkQ)C&)@mlxD0oFUaXRTWAth$q4dV^@
zt;|@0IPVFQ#@Q_j6a^AC0ZFOBnu4#_N1O^=3T$LM6;uaR0%W?n6?hc*6$BKdooDwd
z#vu3<eAcn7fb4#*y@|SlpyVn@ry#@t$&$S@0tUxN*^?z~&!c#H1sTlTjD$?oBaKUE
zRgg_VOhKZ8><V%yxbi3-VQx+ZxfJA9@Bx#hjz*-~JmkCzWbbybH=KNmaiz;oUy=m~
z1r-z`6gK@ZA%S|{mrx)nDXKtJo*<v3AX!0NK{**K#W<J$T%1%?K@qcQ89m##_F@X2
zW-U=%K?w!YbV;f}DMD##83koce|kB!yn+weVpY-9tx3G1f+{=0($#~7OIKoUWpM}x
zIKiqZ_>myDTKY)A$1*Z1a;T`Opq7G<toYc9+6q2VuvNh}1)nOYqhP3lZxz&4P)|V{
z1#K17SI|H~V+BnVoZcPzv4Qa&dP5FZBkIF9iA@#A=R(aDw2&i9vl&$)pFfIscNA}_
z;By56t*CphhtnR5q-&JiT8{YR_zo@FP7dGWcn1X?6|`6Iu0)D#wT32jQt*X>ZxlQ`
zm)KcGvU5uBUC9F#bWxDCi}AfoR|VY^e97j%QqbFMw>zPSf}W<+i}1DV&UNF(p=^EV
z^riMw(BF(4punBc*v&!GnW8BfuSJR`Ck|F1_sSkZov<q^H-8?cV7Lsjf}a$OQ1G3C
zu?ohql938V%dBe@8)eoxDQD?13a&m4OF^l5yn+b|?wyECQ7}=#syE5sE0`=3QqHM@
zDd+De=P#Htpi)Y!O2y?7X%at`!4m%ip+v``KP#A~V6lQF3Z^TVp<s@Jxe8_~m?d9w
zJ&uo@8J?}+Y+Ivv&Xy@vwuMu99=o)FI-gpkS@J^Jg^kIJr~(}x$CoNtra*3gy-C3@
z3Vv0vQNe=8@#PAtWho`FUcm~oBv;BVkXKXJP}fq|Q6=U#!idN5qv7}l1)@^Pj>m>>
zmXUcJmu-vq+oA&773`3eO2KOdI~D9wa81E=1;5LAAv>kuZv}f4>{W15!6^lQDEL#x
z;c?`!f_)0~w8?p%#19bmE3iI^r#c7ayT2##L!8M1Blbp)NQ(-N$&7lND9IM9BF7b+
zkeR$HlA1g%W3o5$mlU~Jx-5&FA>X_nezY_EkDOTr;ujTMlB<A%d2;OJ5}=^jlei4~
zz~SM<cgdG!Ig%4?WYY5j$?{J|jY_7-Z;h@hxcFOg-zV`KvSQp$x~bq6kJ{I-Vz(8P
zAC~k&!Cw_i|Eu7Rg1d6i72KyUS<0h`sNC34^nrqh^dFhIj}<&I`Kg>ZCO?<cxp;~c
zdC8ik@+=i%Zxp;$P}+(zR=iX2UKU|1(p!<n3X9bkM!yw`6;>-WD{NM%R^0d_sc(<C
z*Ol03ZA92^1*~ve;jv=!leoi*8U4aeE98r?ulmG=U36AGiF>U$_#~btZPaIlJVSFz
zq3GR0(It~o0@9EbK{h8XhOChPvXl=w(^@fNQpzJ|qL>-1$Y@0YD+*eX$qIR(Nfs-z
zT9KJ7$?+}Y*{sNJh5VOgeyg#V|1mc?2O%d_oDZzXMb1slL(OaE=Ch)3J>#su|0FJz
z6q2MBF)I?S2wRb0#l@G&5i6We<9VLOD?E)idm5KJ1V*hG?uzz*8c(t!*@}`@$U#rB
zqKFkGtmyYkq^K36<|Y@TFL147iUbt5V#?FFfNfr~G`i|(yp$CO9z?hM63SW;w_;3=
z64hj1tT-%fSy7Qt-ii;cc%8ZUwGGJ+pT_0p^KxVPN;3G*;+3hRPe!W{s#=Y;Mf~bk
z$o=YTSaB{>RGu&;TGNVJR-Cfpw5<PDd}75{R&=-GQ!DClDB4+3*NS>pw6fxJI`ydy
ztVmlu`p%!!kjc^46B}94*a`vJnpn})<j)ArsLiP@s4b=4oG}U3J~aMgs5R>mXk$fN
zviz7?lI^YNz+^`&zObUR6`jn;E<WP`b+MuwovzfDhhp`ICx1!qKHm86p&nNBv|_PL
zGb?&o@wFARnA_WmK2{92VhEFcW&RX2T9mDy75!-rpo%k)FvyB;2>G8GXY^1jzLj}S
zXBc%Hb+{FG?M782toV-3Na`r+XzCcM#Ei9~$ywv=q-^79PM}VtPO{>AGqUQl_!KLq
zGWmlQ(+EFOf1>_Om3k%?F?M`9lQXC@W%d>^KFXMF#>}x|uF3PPm~Zj|D;AO$nU3u2
zQY)5Oafr?@)Qwhbvf@`OmRphS56cP}<R0O*%vwoZMO{r@LoJ%evW_6#_>Hihy1|Oa
zabpf_wqlDFf6&}Y-9_C--A>&>-AS!h%-Eyf$-AkN++)RFlTY&|Hh(g?&x-wo17_|)
zD;DssK8NWXG5w>2W7OkToFJSub7cbjWyKjQ-dOS0inFq~S#i^fTMYQeimQZkX8d_8
zE|4!$FPZ*j!WEg2A!9GD$tqDi@w%+2R;(-*+tfvVW^a6AbK8o48TrzRJA`Lu4R__d
zCf~Q>>E_r2(|<^KM14$sLVZe&rLjCGyr3rLF<O5`?wix{TGoM6ky}eG@902<L&bY5
zN>w$&(x`INA1EpwmN$~JSyf|oRjHZ^8^KN$U&5R!Tuk~^xCtH=UKR3`F$wUgxOym(
z=U7zkYNBUJs#DCEw*eKpiXekSDl(e2rB#v6<n)9LD&!+mDUylF%w}#D6<NvIs0Fq}
zBqk@hsfy23d>}soVluaiL={OY@~FtGBA<%<DhjIzt0<t#3*e|c7_Oj-3hrpt>d`_f
zBq^IbhjG&3aDs{mE0KpVO8xuF7LTfE`#Kz>xpihVSw)J9(o7anQB*~76^m*|i^*&6
zD$z?9BD3?CX#Hb2?P6mjOQ<NxNa0c{`n@dm!FSOzD$1&et8y(fmWWy^>i=vhr=q-y
zIj!t>?u0*-zNx6Fq7utir&c!WsiLAPxti$|hNXtdAF245T+?*cx3JV!@rjJ8ig&-p
ze(jsmL`5C4B<m9DNgqt70ihwak&4EIKj%jzSRVQ3?G|mOqPdE1R18+pLdDZUmToG(
zRMApJD;0a6hCf%)T16WbJ%0#GQl2>0Rz(LD9aRXoQ&GKJa(nWeb>WdGBWrGl+jNU{
zQt^d~&MLad(R3xWeHQPkB2(=o;lo)<$R~0#R$r;;Eps)OrMn!{&Cwnz{yme}lPb`Q
z@U;qgn5-oGsOYOA+ww?14#gl9gPz6vQwLB7s<_caZUJf>=m!N-hREDdF;>Mm#(zuo
zEr{mvCl8ak<WC+>9iieo6(i*+$gh1=jFGX`W22dr7%}r64vRBh#e&OeCaRdkdM3zu
zbj6s}-!qxFTx_aLoB6THD%$M{Pf_u*eUgCqKggsl7yFU=6ZL1ReROz+?3#)vZaj5k
zmWtUj>`r{;#2giKReY~uvW9so=F8w{D4=11iiIi;syHNVsaUMyR~5_UOzfDlM8#4S
zKV?qbSTHL4xQr~xUkLK}zZEK0s@SGtyNXpZ;S=KPq~|K;J&Uhau|`gI6+52AC3)^y
z{Kd0)!=<tHDz>N)*q~ygicPA#rY(bg(akCb9*GJ_GHbKst&Fj5OqR$UDt4;)@Ih?Q
z$HjN4_+7=HD)y<^t>SbnvCQo7Ucw#~MFxk(`9p=6vh5j=Ms&ZN(d!~jK1e>G;(?MN
z+k(O2!zzxbc&6gHilZuy$#SIPnu_BpPN+Di;=GEJDo&|5qvEX8F9)<_JoG#sejXS2
zONDUn;zsgs6}4t1{3A=p^LXXwapA_#<2|0oFQ~Yr;xZ#IviR`l@hd7MOEv+iM?mzt
ziu=+xnQ1C+%2FePUm#hwTPkjw@&Bs0L%wS|_vApcs)wxVu^e>5BboojjcT8&5Ke7z
z6&rdXQ%FTXgRbF~iq~?QXs~K{BZu#K{5^N!E$e?r=g;SH@zZFqXhy(==kdqS<L(!6
zRfDF%p~0!a#w=+C1iNOmF2S;Ese4gudV)(c_FBMA@M!Q7d{oKu6LP+Y2Q`E=<kgTz
zLs|{#G-T9}Nke+g7_JOdiI>3_O?eT|tRV}7o4zm{8GPBYYRIM;2PHc-2Q?@41FB@@
zBIMRk{e@9V%1ZtDG-J4A6E3KskcRpi8fYl2A*|tJ&A8+xP%CSwq9LLosv$;4ZXlbi
zA(1R$3-`uSOfI9Lh{;7Y6f?Ovp#-(0hEk?qS~ETpluF8)PFzDdlgn%PkX*rZDiSJb
z2x<kTR8<Yt=+w~AD>+(SL;j)0Ra^cgzhPCQ+K<GaZG3D}QwBjpZL^*_8a^@kQ$o)c
z#`7ZUYN%)Wb>~GIYG|b4<dNuT4UIK4(a=*W)X-GJXBygSXs4l>EHZzGTWDy>g3X!y
zsChyw4GB3*wU%A@E&e%Kl4<Klf682{4Nc+p8ainBLPOcvkw84sQ9~yU0@9QHHH{U1
zyqeHiLl+HQ8S^F8)=KF{aQ~C$D?)dfRNSPVz18EQU(4jwFib<vm+?Lt`fB(_!(a{l
zH1yXnP{Xws@c|mXdLeg6i|>08ANL|IJcz#XGQMDq+^#KNe|BVuhM^k1mC9EeNoi5)
z7ap!*1e^X&!zc~nk7Tm>mE_b8NW16uB#zNAR>L?A<27{85FL0pI!VI>8O)8*iPXN|
zCJV3Hq-1OrouXl?%zqm)*zkjfALYEW!D+)!8h+OBw}yW-Ow%x3!*&fjG|bR2Q^Rr%
zD>Tf~Fk8c74NEl4kr-FPLJhxXC_Y!i`)RRx)cMo})cs4s;!D6H34RdSe>wK_LUgHy
zWg32=bN+F7@{+Iw{3;VNkm&M8MOVs+uVIsh%^FtA)YY&-!^7Q?>b;|DHLTYlrPgV<
zyes^h26^1!?_0vc&#RRdmd6@y)Z_;bkp}0ZTQqEy(|=)19&0E+_g$nF7u_bORja7n
zTW_a^T^jaj*e|=FVYgIREcs6jdo;)wOwz<&4O2FRCGro6SrYzjfnf^lb|f6oa8Sbu
znY0=XaRiQNI7&E7m4;@%POSHP_?U*{8tzq$8ove{8-BJwdP>7-4S#7kqe1@bDqbln
z!2{1HpOtfGY_#4HRT^49CfsFO>2tED5+lp0h6@@lN<A9xYq%s`)o@e8E!oqj(JL~Y
zG+dYU?NRuu9G5lGlGh?Pq<gQT#vav8&ObK1zd-c1hHk%yCHIbo;uj<T%A6^dyr)?5
zT^2F=urKyN##zHt4bK?-NW&8iJ0FK7_c4cE`X(cwT#h~0@IuynIl-L?a`;|qkYBRN
zeG)2i<mDz^PyGpRrNbOF#fEn>ADEQ=N@Ih?hOd`L<)?IVS4latRvT2C(LK!uo6Q()
zVHsz;%{bP=u;KAI10*T^aoOOu!DEB{eI#JRhwmbXJ0*E-5cS#MCkStR9MNrfKRFV#
zA#yGpB1<wYA)O6Ro5duV(S}Smqy^FenQh2o!)+V>wIQnw*=!hP!)P0_+mOSCN;Xus
z8H;vKY1D=aHhf@1E*o;&P)24*_i&84d2GmQLp~ewGbw&y8w!vMQVW@WPJY@PwjqH|
z#Pp+t67LfeZSwg(l9?=S=B5yeP>WKFQOj*rOW07-hElQ%vyA?fwV^b#%236*SkPFy
z<Ein~@-{T6|KH~o-OgHjEsa#Pq3oha!z}SCHdM7?IK!&hP~C<aHhg5mvM1roj)Z5I
zA_M0c>-onvd~QQ)8*186%ZA!Ed}2d0mip9&I)nx?r0b2l2iIj%pq>r&O+M+dG$c2&
zp|K53$W5su`WmlbW&2F_>!tCsS+?djv|w&aYAdSvc~=?l``Xyh(}rF)w6&p~4ef2{
zAhXMcFKy_^$j;PG)Gy4kCpV~FOzuipDl0$X{AS}a*WJwRk!tp^d~HK-@?dHo>Hr)1
z68cg5Q>FOez1D#y4<dX+O;gmkbPlm$D3jk(hf&2(d)8VvW6B5{zO!MZ4Z@E{#pF`>
ztXFu94P$Ni#fD#P7-z$H8z$NCy$xSvO_^ZBi-j?HaF{%`ZK4!h5V@Z%C2gSiWT~NA
z@>Cn9$hJA!az|1(SE(Ot7&amHqg(=P_?hj_wqcG9(`4@P4#3lGm_dK0*{fMLRNG`6
zdfDdETtuB`!+gR5GjbuJ$?T-XgeBCaX6`Z@=2bW9ac>JRXLDz4SYbmbbIM8^R@tzc
zksEB-Xu}$_)LI+Xr80HB>F@2EW)t~$8+O~U*@i7lZl&(9VVfDbozSMbG4eafyKHFM
z-k3alY}jkV0UHk5Foehb53|&tHtZwsr{3IZ^!$*lHcXzR9<kvVL9&h#_MfyLH=PrN
zKW8PKBAhn;zX<O#rkpjMzis%(hI6t2n$A@lE|`4LhD+qjrgO!HsY{G|xLvcM6L;h~
zvu;ptQg7Mdy>HCqJ2u?4p`TrTRDgRn+?O-Uj?#8Ku;HN%4m+Ik0Cs8GS;}HJmb=F`
zEZCOxL>5dNo|!GaCOns!MtEuZuLy@u8e{v$hPS5wPF7uV8rCVfUoMF#CR+)r9U9@R
zqm<1KI~iuozKa%@$sgF^CVTAg+TpXqZ%0NmH(*CvlXXJSj*#gzAF8A?IlUbjOqL@h
zy~<=qW;?Rb%u3B+M>aDiyB(ulr6eq;>Fm3dCYK$#napEHA|bCG`RvF~4pR$I3sMVF
zrINygd9|Vmga|ci=EevoJ}^GuO0px_jubjY>?lqsN-ai}m;xuPCCDXBr*;lwN|&*t
zrX98H`1826EVJTvl(VBe`9o?|Y6Uwg5-L$E+fl`iAqT8dNvaA|v!gn5YfwL;ivO`4
zO?Mh+L~T1hv183j<x4w0wWAILTH8_Aj(T>;TDp3Xv2N6---O!0j)sIr)W%eakt5R7
zj?b8EW=Bgxb7~7SW=nge75Q`1kyE&h9c}GsN9POEZ%^o8M@K>@({H}qxF&YCqYIs`
z)NW?(q7CX-^1tcZle*i{!;S{#HK?Z@z08=e?dVPJV>*59xc-N6RUKf*Ksy%NvB-`=
z%pGUPcsma7QNFQbFr6WG47KB1@<_9WVRj5BkDz{M`bYCAqsXJFW2j@z+(JKEu53~#
zFgdM7wAi$yiFQn~<9j-j?fA)zoMOjRlYg+|N0YN=v;1twG&`o-F~g3z^k-6MQ)iix
z&-W;E$dk?+*XViV`DX3{JC<ZOzLj1qV8;bJF50owj%9Z2vtz#<T~CF7kvVC{$x*Ri
z?O1Nd3YOhy$0j>g+Odks)uMzo)U{NpcAXsJIsaXQ*4wec^mnc_=KN+mw%f78jxF@J
zQn#5g^){$GP2O$CE>6qeO(%VOWsk{w34h3fkipm&>1wX$;ZW9;1Jd(ZNtccp?;;P{
zaYzm*Bag`L*m25^qf8z%>p5=63G%>2Mv>Fxzo~yw&rl`nEI}^x{}9fZ{&|ADRJ&w1
zK99O>$G>)5wnMJqQtAqGuTrnc+#}qe-lR&*Ej#Wu{O^^XOyfI}WY#_77Rz{L$9=g3
z(0NFGN_|9qOnqWUE506k#-!Bw+>RF}SKFk%CToBVctd_`{3EY%5qWQi0t4hXwxY6G
zfCDf(FJJbiI`XN{&TYmqwZr)H0A6M}sBWqgaGCLwf3wWr&d>jWlI;}T^!<bYb;6A_
z_UTDMAY|q)->RkuG62OLDB(axAQLbN_+DQB16hD3KvN(qkPWB_)B>^tIe=<Fbs#6}
zi2zaH10WZWn@&Nq{yad@T$a2{<^%GZegT5-OXJ(dLO@|A!_)*bX4(Nu3`k_MG>~Na
zB?-wu3Q$DqXR<i8m>JXUW||Tv-{);zOED=gyvqP(fjE=p&6sk828+TU0u{&=fy#tR
zW=xy$mMSJ!l`(M}$EyY%S;jvGJ|fG4CjNsDlI3-2ZQv6?_m=t;=>0NYYie}GiR537
zM8v5>zb>^NwLY~0(2&rG+L$VDK%~fLKr>(@TWJoo0J;HR0>L>+ErIb%Vy(yvb{a2i
zJ_lL@ZGg6n?*x27Xh&^N?ErKnNPL6wvCbx2Iw)P_;Qk)%YC0_nTAcBuubAu(^uJhI
zl0AT)bb0~(#00)J<9ieOQ2WYEo@2~R*#-cEfg!*^W(}f#LzP^4Um!Y^$>G4agkff`
z%+(R(?@XuMwKVxoCXWI}(-}h@OC3iYPn|%WNR|4x!ZI0{BE1530aJk=fF;0EU{Lj>
z9~t&DP(FRiPcp)pQ>x}PIzJ7V4$NTgOkloQ+bm!<c@A~1>CXcuo7cw$G#3Jk2#d{_
zfkTyLz%O!gty0#(xUl~DBz$s5<X2!hV^&aCQddz|Q`b<XS8EA}cP0G>tS4^(%GF33
zH!W!+unE{~Ms5eTkhfB|nf|ADlpW+mi?Q1L4(tZ*0C#~sz+T`8a1{6hIJh=iG-Kkb
zm+?P=eZYQ}Iz&BS)^-pGw=k{_vK^+GF>E;o90yLHjUDBHoB+-Oe*-5OaEf}G`WN*K
zRci2VRsR9bF?k(0Z~B)B7pND3OQt{LE92G66(+AzuTeAKRc@FuHwm|>w}F2NQ*8-S
z@E&kqR#XSv4*at{Y4oh5+b5DA01tsjz+*<f1KtBqfTv78qrRd(2VM}Qs+WY4yOLfL
z-kAPdSyl2Gr)L_6u}WwT*c`BsC8-dsR8{&g=f68q%Mxm*395rC@lHa4yvZI1ybcs|
zVCUvUp96jeayXFFfq)sAnV>rmbRgtFS|-ywkimg;X3Up1WF%)Yotf#3@m$7N5m_9_
zYWmq6$ZoQ{U;Ds;Tn>aCNN^yx=@%g6q2{ILb0EK&D=!<Q=7LNXa-cBb=PkykBC<u8
zOr}O1h!GO0lAGkff|kaGBZW>8YEd({_DPF2#8_raI#9}iEe>pTptJ*J9GKw1L<h<`
z5O<)C19crJCr)OgCskRzyaOK+Do`s@D^V*`t579=#a6W%xjMCm10NASrhY=L=|C+)
zZK{+?{lw{0Cgp8iJqLzfu-12=fdjwPkI7eT64TIuP7ZwGKqChlGqMS_g#%3qpHU^U
znFGyD9=$<r=|C$7KBv=`+M3$NjFIbLJ92vmIuJTKP;IF35>ZwR(asKZabTbWgB<9}
zfS%ND)Gw)DQM*&6NDl{YKQ!jEY`q-#+JW8<^f7b$IndYS3;C4(CJ%66X547;8wUo{
z98Q&YD`F0jVPW!H>M*MKa_t`Bz;{fJbYKi&6m_&2Gj_8&mORdM#!Hb!#w)!^4t(#x
z1_w4eFxi1Aa?0FKJlIZ|vNLI_1M?aGg9ASjexlBF;Ag@#>U8Q1s#N%Ns4|N@n>vR&
z*UX(qxGP_6IIz%xMGh=>U=7VBX3TQJQtC391B74A+>2RKR*+XxSDF55={(<EN*~tJ
zTqjCcZ^nEqZye-sJU2dA*zACOL}@>neEeSG5@*sj2e!+3>O>wVcF2n1z+(rVIIzos
z-yJyZz+VpRcEDaad5;5o9ayz1X?31txe@vw4jg9v!hbp-y3c|A1mOdOgVaL~G~Ase
z<`KppHG6f8aNL0t4xA*Pa>%<0W04uPElJ+OoT2$I^{fMb%Nj_&LOn-4Prcy4MF%dC
zFH@xwm7jUa+sUgATyy;QDXaL`9k}7ZO$Tl<^0pa&wSw^}$J9H@9XfX%xJRhlPPuQ!
zJaFJ4`H|_!M_x}IcqXkMi};;*PCx(7qz9kGUO4d5fmaT^rfG8;^Z5<g;>26RJL-F?
z<fdVaT=az%vegNdpi#4*FtY4UzzGK(57kL^Q6<1lkVn0H2|m*=`7%wwiFu1+x)VVs
zLQbS*R(2=SnK79N>7B?x$Y}cVenD!^>_iqiSxrBi6Vrwm%VrMK$w~Ntnv0sFj6JUt
z`JAZdM13dnJ5j)iiqiTyV|NNVAumyiIZ=qgg{fgD5(p6|5}inLBFbcpDy5WuX_CoB
zs41pju&|}5$?}%JxDzFuC`l(yEk!L&Eki9!l{(MyO<XxA%G3FfTEWcS+*YaN#5XgO
zDmzhyW>so6s&kLEI-!OW9}zxw;!{FRCu$LDQ$KOyhmVaFuWF<JKDVz!zb-YfIH`dX
z4V`H0L=z{%m10v1BsOwlR)LtjStyz-y7XMQDI>c%@tG6NoM_IZRM?i#!ikoIR!)5G
zL~C*zGiGWP;}nz6DB3yEo@NIpz94j@b}}R7Ep2CV7t`tLgmh1e%Ss}zPP@w?s~Q{O
z#CJ~gaH6LZy`1>kiEo`4=7c=ny0`4<T}vN1FYZ|-+1H7@@rV@Z=R|)e21w*x%Rncx
zR!>}T*D^@PmZb(eF@zvRF4}BE$r35aS>6QshFV~_6AN!zC3mC~qnxPYLR}X|J2A$I
zr%pU`VysLmCvLKb<DHn`#7-x6F*(tRnKGVEOp=<NnC!$9>8BGvI+1aESh^?MRQduP
z?pWHbGn}7T_Gg*xgy~fAXUM+C6oJ|D;~yus(w{45nG>s=SnWiy>WTB6SnR|S@&f8Y
zCl(QU-L*)7Y)hH^mAcG{Ut}=vTK+$Gxf3g#Sn0&@sFE6=nzhD>b#io^Sj%=LS9&4=
z>sikx>IUk@|EX{@oh_y#$7q`q+gU@6PZM?!#Qfcf-A){J;+PYAX#U~EpHA#G1Eek4
zWQaufvCjQY9B|?w`<a@1i2h*~IYO3B%8(v+LiC&yC!9Fx#3?5Ka^j2=r^%8lHJ@d{
zzn%C;4j=bUe1TLw?}Wr$aN?p9msskG6IThBsS=qQe2w*7r{18Z)+U|2<-~0#{&nJx
z6L+0>!rXftoYe8WPv-$u;vYKki2Rr;2O@P(hn^`Q@SJ9T7hX8=(ur42yrz@Wg*US7
zJCWIiEH1or;=L2P3qcpsxX^2$-Q|MY1&a%c3s#qLrr2DtyP%Ras)UIzAM`j_BsJ-D
z8K<G}zB?Al^|;_=uCUJqKXU`r)ZHn6%PNs_?npq$g>){YXXR<lCNj7n0hw4NqiIU8
zn5ivhbs?MCsQB5*IZP*YG(K=47wgH*8uBnVFF9W-v%&%{6qKY3g<UA;LU|X$ES2m+
ziVF!YL>L@(A(0@J$GCR_NsN?UrM6hag%U25bfKsjS&UHJ91RI8<w9u}%CMj$%d$Ul
zGhV7nt?fe>D!5S1h3YO;G;=GvP>JzUFg2`-3ssq$IxIC@_=w3*UHI6Anr2olv$@))
z^9eyJk<pXdq<B3S>bvlP8@b$Q;6g(edP=ulXyig;7h1T`(uF20CGnpTn!1eDRg%q^
zY;NYtQYmID7dp7mk>=+vv?jEnwsjdxZaWv+yRbT{2&b;VQmPXJI#a)J8SAr{U6|}j
zm1H*;zBKtO7rML9!v$G4q%*QIONC#%(A$OmE*x;7j|+WWSnR?Q7y7x---Yj8nC!v;
z7Y4fUoeLvf805k?E@L(L)`h_?<209Ts0%~bO6oe$f$Q)vh7G5Vpr-nx$YWg?CszTp
z)EJsl)p$Co=lcZmMCzpf@u#>j)rAEt@`DRMx-ip)Sq%8eB|qsgy7#jS)BdN3R5*jl
z)U{|fV}$3rFo&Glw|U$n@#p`KxzL40W?2ba>cTP?HoLIJg<o9w)rEBoUhcvQ!Uh*s
zy0FTH-<VwOLa|<9*`(Svbk?#+YAG>Ov(__9Oi6BZVUt<v{qDrA%#z4IT-fHqb{BTI
zurqb=UD$ZrdhUj`K~yOmRepD2w+nmN+r2C$9hPa3x_45;pEAA8+QdBQ!XX#l$`a?o
zVHb|LaMy)<E*y2?m<#7!xZuKZ)^^&3zobjm6HmBs()Hh^?GznZsbrI^GcKHEmb56_
z-z@l#3+MhP?4k>oT)5%FO`4Zoxaz_+@)c_8weq^0P`uhoJyQ8C7jCmQG5;mpF_Y46
zYRr8X9>_WtRbI26hb}yE;i(IcTzJfr=)0R%i4=Y2!gCj1vIaSuw%xLdzTg=oEA1<p
zT0E8H?2!03W>4PB;_rsT4W}CxHx#!q2(n3x)oqN7jjFn#5mI|)Cxa@Tmw1;OZZ|Tz
zk;!db3p{SQN03q6OZB<ocmKEVsUx7f5p*NuMp`%0u}Esosk!OdjSMU+l}kP1XLchy
zoh(!_vl6ngW+^UC4mvqmT#~un$m2#&32-B?8~K=9(~bOY6mTQ%MmaYMO6zX<*JUKT
zQP_>JM8+es9wrc?)ChIo9b<Ws+?X4QbcDrBaia)#p^O_v3B}wf?lvxA(yJ0~lysvs
z{nVO8OR>1Lk{TmUS?MINt>xYLkinJRcwa5Cf*TcCm2hf&C9^YC+^FhCH8-l8wbd|N
z`Phw*$p2rzl&$4PZ8tt~<5M?UyV1stIvkLuZhYoOT{r5vQQsW8CUO<vz&2z|BR3kG
zS*b@Pb&{kW8qsEMG<Tzg8!g>v^*@m^0-v)6IfBA%-Dt<%`O=N{ZggN)7dJW*I=S%$
z8~y)k1v+y_q<B|1x-snkr^Huoba$f%i=>*V1;2Kqw;OBSSm#C`H~P9U*Nu5@^mC)X
z8>8JA<Hi6t21-9!`5-sGabt)ZLs|b|v&GceC^dgeUy{QJvLnJH$lp<=-H~pLGFfuR
zx-rg;>2Az$W4s#^-1yOrpWK+}#w2qezi0eZHYYVqW^#%-dOw)8Ne6y5W2Vs*C$(=<
zYNi`=m^;ginavuclc{0z-B{qpN)}w`#v(VCxiOj7%Ec_Qg!<bJ>r%JzrY3bs`NfT2
z-B|86-bSsE8txh|*n~x8VQGHTx{6t=-B{x`uI8zwesg2J8|U4);Kl~Fc-W02Zfta8
zlN+1e*y6_TZtQkrD;t#_?sQ`tBe&C$ZtwV?{_i5o&hBB1?C*Xz_PX&0lYg3HCH_7$
zQuu%y2N`gPbxLum_NW`j-1y6lGj1Gr<AfWh8FP|)%4|J#U`12mtl7lh43iE^{r`~9
zna)KwF1c~jjav-9O#hl2R|wMdRkIsX_PQH4%z~12+l_yj`@oGmoET!>bK@>!Bwkv)
z&w$jXAG-0#Og?5zYFD4R@m$tY5B|MieE#{u4XX#L2QS@t<u*R~c}=x=@P_b~D*ijd
zds!J=(KH@Z$R8CDU-1~Frhj96>Y|ZdRGSBOf_x1uS+Y4iaGIPc$>R3F!=%>(zXt&i
zTHj3Lqf>@Yc+@>e%Vdxm^5FWrXackD{bMwj-h&JtWb`1D2Q$5x<u(5IFtY~@ylCh}
z77wy|kj;ba9!&M%2M=<1kkf<C9(3{G0}pa}P|1VJ9_02Qj|W9PDCR+45Au0%uyQoN
z2dBG6o0X5c%SR8siWTsnpa+Fy$Jaz+)WXy-Rm=nrA|^*Y@;y<4n2B_fsL9k6Gp2~Z
zps>WaBhlhCKctqRmh_;M2c^knsAWBn|EOB|T{zBUIjR&d@4>>wMm>36Mk{zQ=$Cj!
z*`1fsX4C9dJgDlyXN;^yZ7MsJH!8u^J*eTqM;?6aK}}{g@Sql<4z)J*6RO02N?58S
z)g{z3{rVnM_ZfRCTSE^TnSNsrnvgsGYh<N1+RTIIG+R*HdeG90Z{@+~<kr+SroVfJ
zU5dB!pgo-qrr*(nP9}fh!Hu=X2z2$Jn+GF380Ep2%<bzzKMx#t!(VyO-Hh)+=;=W(
z!q?Q^W^Nx3?kzHElWowNNPiCocrZ`~mI1@5-*_<8j34a55VH4GJhjxfOb+Ax5oZLG
z-<k1so=18X)<%0U#)GjQEI%LaHN`k0HG<J`X3TiP1P>;f&Lj`MCr>t=DIToX6Q$sf
z9{l9N0}md0@UsWgJlN^ME)S-AFvEjY9;}wL!vmRS%RKnSgIONT_F#@#&qBgn59Sf(
zoBje1>Q6HUe-WL<)FsrVW{m7(r}D)!tu%(~SDMSID?C_9xc0MA!x}ja3&#Z3d9aq8
zcquH-Z?X#>Y+&Rz>PG4&s>E+5Y@u$I(Kv4m)OIs>hX=*OhV#1zyFEDL!C4RX$f4gA
zJ!r=4CHx`h4q+d4KlK1ripvo{<iTMkk5Erhk5Z3$aGW5KC*-^~d1$5L;+$skFY2Cs
zk-t6ohkW0I@X7F*Vu|NGI8Wz-2Uk6~=D|fKrR*ibWe=_pnwtJ~!fome4{j1}nYp>9
z8$<dplXpD0Yx?&*7@pRc5BDm>WOyHW@YsVSuiSeRPds=k3#?au)PZLn%pDkZdhxJs
z^tlHwWaanZm0SY6#>)1ZwWT3T@{I>?&HCRF-pkrz|L=Uac%hh)Rxjpown!<Brp*gG
zL4E@yrfd!`O5Qc5fs2lt>Y;kg7@rq@lW&i<7Y;^)UWB|z>&3A0F-c1Cbh5U4k=2Xz
zW@H9JMlUiEGMj$?nZ{UU^CCZ;>|W#`<fP{D;sZi1szm1Y;>G=90(t4=GySvE?FGCj
z$mDN#!-c#k>_wQ#C^f;1jChT;S89lvPNElURvCMp;zbcJ>d6iUjl)#bi*k%9MlDV)
zAw%RvDROD5L@u+&%8<*NPTVX1hHuna-ir^#q+iX8>RwbdV=8%3nOwzms(SI`E8|qH
zL8mtLBkIT0np6p><wb*C#$J3v=TmAOGq<i6UGFDL?&?^yK6fW)p=cv78hbIti>Y2T
z@uI00ZM<mf#b;h@tC!Nki<Vx<V+Wgg;hY_9PL(ToE3fg|VC(L1YcD=0=c{RaZh!c<
z=&|!@<cS;Yy!gV4&R(?lqJtOLMnyY%ArCR^<VF1-qVhZrsZE}RDt;F)zVzZN>6;hb
zqyw8HZC->WMuOj`)w+ApLtY+u;TaQ_EZN3sWqNtBxlH2MUi4<ueY_az#kXGc^`al0
z{$6}TkS-1IVxY-`2-39pgULg@^1sr?7Z$_381BVbnj@&AsFL-a7bD4ChZ&Kh$z!PH
zY8%ctFUB)DfjY^Hi3G_iGsW^fc{24Y{x<aoFXpw1{^Z5aa%8=bM=QR35tjWGnC8U{
zFJxear!y<x4!ew!1k9FG)r$jO9Q0zY)F5-oi(kB$@5Qt&G3`otkrxZd3#oOMl@|X=
zmDplgNvgz_P?u6idQyJ%V!0Pvq%AL2c(Kxp^<Hf7;`r(KDlb;c<o9A>>y#Ufk`rIW
z*Loqk&Wn#;#RYz2QnK2=if?3?z$Q7?ui{cfbhDiGjNB&8^$hQkldeNjhaS=GG8uYA
zcX+Xru!}0r?_TUSSxJ*{cvXC_7k_wB{z|eG{F7Pxyx31T^o3E?AukTg5zms`FH`an
zFOGU~Ri>GoR_!Cly!hLTe`H_0I3cr_X4!&Tt%925o?`Me^)KofFU}I=n=c7CM;16w
zkb)Pykg^w<ykzEH_Tmcp*Q-XU>t5Vo@`)EW3AensO^_NS;9oE9Gbwz>i@W4|rjy!%
z2eQ1=dE~`o!t}}Z)GR6W)Qi-rUU>1+i&N=wIz3)_@!E?=K|BuPjTdj_7zOZg0Pnnb
z??u#)m>+3;u=sGyhvPmdK3IL|>O(glR39`S5`2jGVDrK5L&%4;KEMZu4_+U9J~(}F
z`QY*W_g-Lba?I^RG$kfmnVaERG8yEi&}OdgL%`%d1&mW8=)=b)jhJ*k?7m<v;6p(l
z()*CXhm4HOWyWVBWTs~EAuAypH9Iv2H78Xn{J@9x2aT_HbJNLV`gwiGN6t?zUHZS@
z`8+JD7NS#_8m3C|6`hQJMtvybLs=hUJ|y~(WagG2B>Rv;C}R3W3B{<zsb7^e>M7|%
zDJDx(&y6*{xsLl#&WBb$eC|Ve`qg~$^4l2F4}GXW5U%J$C6g-?s!*#^tIrA7@ZlqJ
zQyEo)lxpBZO&@A8S({pi`iT#p5^|R?I#!n~P|t_@CQq#pZAflJZEX5Ye2_*z4_Q8=
z(~R2O%x&RAOLEEfM$NLd_MrovHq^FeWIG?)lPmNwB0G{hQNJ)_I{VPY<Z-nuU;6Ns
z58wGP(ueM*KhTFBKJ;X=mk(bP8r(CM@!sS<)V|byRLSa37$92tzkUvqd7dr$jSqvF
zHN=b@O8AyKj5?e;!iVhgb4U5bh!3NE*x<uPAIA7F)`#Ujtngu+591lR)Q1T^O!Q&4
z4|9B&<iqzqOc%Zso$SLD!jC>o_2Jaon5}-S>%`a(G&ekriu044k`rSBKl?C^F;YaF
z89vOEcK64m9*LYK{SO(u@l|}T5A%Ik;KMxWm8`?B;!>@sR3c>;`ml(;1TXes30blv
z;KZx=G9P|n>%aOSbxMqsUCABkoh`bau!_3chc$$?)OFO~QdRC#^s_})zekC&O+IX<
zxzC3!gxzM$Rv)&Jx0}um!cHG{na=NopBfuKo!Ud*OZ|iTrw`et{&xiT(>dV7LBb*G
zVIN*SiX9;zrAkt&I^n}fS;72p`EkmJ(>^@*;Ryr&qF(jkj1Omh_?yXps8aB1a^g83
z&iin|bdCg#4qRmN67{kVR|tL2{nxi^K3tb2^tdrCZ}@Q2hg&|}Hfy*?_}7O!rgN7t
zHm6biz7G$Wd}!uABDBjKed@zAS*!iVa`D{EeeJ^wA6`l+uE4M8r{zyl-;m#$k?#oa
zscBe=#SevGr5>(mbXX(XsCKHDAUOQ^{=9LTyZ!L^k;9Liet7-xF*my(e!^YeO*-I*
z?njVLMrw$fmYR+#Ri!6n@Iy{{Ny?UqPG&!{m@!%X$Y%0Bj#52~5&VH4dFkgeb94LU
zo-M}soT~F*ZTbAjPp5z%Ge+_EpG+3=qc9;%O`t}oQoMbkq(ncG{8;bD20xPhNb#eK
zA6@+@;zv<G>iJRMk79ll_oJ#G)%+;oM@bg1=tn8Dp7MT_Hn|L;EH&;&In)1pq|vJn
z{it9%Pd6o3BF`w4SlN#%<QjdV+w&SfdaUk84L?5e<If+Aef*fYpA9wUc};RHYHjK#
zRLT03P{)tDrql78<OY5;WU{><jZFV@KN^#pP@7Ue^P?G|IkgqFg&!>mpMLw_Xs3UX
zrnMh!Xtt%c^P^Cv|8hOAjTZnN=y&v^6G5CW2%Y`tHqMxV-Te5{kFhc(=zrzMAV0qG
zqdSv5{OIY&*&@+ie)OjEHIw4xKd$tl)0Zk$_4A`Yd4TB*B&;ZEG&I<cVSWtvV+hTm
z)NiSuZ8gSo1X<ua!ko`7BTZ)%VKj9NHQ(#_ct0liG0TtHbSC=ovmev^m?S3-opCvg
zi^ya@rZ6cy)sG*@Kbp=@gw=a2m-EG@`!Un>XUH7uSX7Ek;u8es_%WARE2;DRSZGGh
z_hSLs`!I5szouKn<YGUT5SCJxQGcQSN|nl&6IS?<k5}qdOs=M`p{}J$<hoR#*34?z
z=*K2mU;}Umu-T6-e%$fnt{+<&u-A`2{MhElb|!boy74gbyB|AKE9oBIMd%YRzFYR|
zQS@Z5@E*VX=siI`!u`{aeayY+$9^;ZB;f${AoY+Rht1q0grn4B)Z^3>)TdL8pC6y{
z<1~}PfBA97<g<jossB*VQP2BvfgthoUc@euFPqL4!d2=uKdzhp4Z=<8EkAA({-qxI
z(Kzw%`Ej2~djJmzTEJMr9{TafkH>T*`NoeYCO;)S^W(Ycydb=!zM{UC6ZWd{8T(r^
z=ADcuISuQ#P!+0`s#0xf{yST30hBbKH2`Kgs7~sS@kCDm-T(>)P$&Q&&HPk9H4uPK
z2vT!XLjj}>ARRe9HCq4~2pOrFsF|r*sIm)L2^I1h=WKRzjsS8JKA`5JN^U2<_Rhm(
zUTQuW)r`g-6)<B`ucw6rC>=nV0Kx$z1Q0QEO9T)#ITk=7If<G~O`#T{7Nr)WN)yEc
z*f`EOrm~d`pp@yiC}b=qWdo>SI`M$qZpApt<*7$gq8}16AX?FksT4qEausS-)2~LT
zPOT9@6)vhZ1E>|ir#kBB*d2=24q##clLGie%mC^HP&a^Y0~i)Sy#VS5&@F&3185LH
z!vNX_&@O<fZ)1%DXc0im02&9-B!H$g4-8Ij7Qkm@iD~mXF4~;QZ(he+1rW=X(k6he
zuZn$6mSk(fq_inrk3~iui?k15Yn#%Y#9W*t(1FR00sQbfF3B$f=p4W=HB!28k0d7D
z+2pQt%Jzy*yqx@10JD20=U!F1djLHG@?)OFo&kIvK<@y0Nmu)%q|24E=5@SJ0DS}a
zCV;^K^b4SW0E1*Vk0;AEK)QD<;^~<@FaT?z5}ocB6H}n(vB-kYwIKlvWq_CxCZ_1{
z07kGs;{w=lF`Voy{apaLbCez#K$5-mDDr5km}3ZIWsozKlH_<6Jo-95f$$(t>F)!W
zEGLT&pN=UqbOD?Q;G~Q|06zw>CV;g8{1m{?0d#2^TN%K#0Hz19B!Hy>%#aneL3Ezv
z7D#&VIzBUiEk%=N$(Tq_@|2QoP5^UF{!&Sr&&UN-DY7ttMdZb%BTc-29bYCR96**g
zajE=BkCb&iQhp6UbUAf})Y;20C3sZ;1sX(G%Uoi?B5&gPBujQJfb}vs0sJ1o{rXX7
z&y<a_kGbQu>qj@qB|!Qq2ReWqaw6o4%eF0m?c`HtGS%N1z%KgD=<g0-PXK!Z_=D!r
z0RAK#4B!x9UqGJGg98CbJ*h<meq!0f3^)>i_+m<oG;u6|;{@q|Bu@o!n#U!Lj=usp
z6Tn>=|4(CQ1Nb`tWn%Pp0RIGVj(kyus9#jf^Gpg{kl-G%N;?vTFVValz!kz(Gv*rM
zdH^>}=Vk!6$nG(vrQpBhJ8}*#4A(Db)PGOLP*y7Xuc!~HkEjyxIDjYQr_^WE=VtB;
z!pi`zuZ&3WYtw&2cuRdpeNQdWEo#yK`(>B>*REBEszcLZ)8Wzac1_r>%fEoarQ=Hf
z@YV}4hmN{O!v*_AoH`_V<Vv!rTgS{fk@%UgsC<_#rTjVqI!fp$sYBNh)R9F;Rvl+X
zMngK%>v+<-Xj&a*-p11DSot8fYFR`y1AWQLsN>T&@k}~0(<yT+CT2Dr*>x1w5!R8r
za8eE(c?mgne4ry2dC-@NWEq=|Jal@~$)_W~jskQF>L^6`@=biyn|NycoHy|V9TECP
zbVPN;bR_GL;)$ujaz+t0yon!RsT3xq_|-RY2`ehYsG~T|R}2WgjhE6<DQmRznF8er
zrDd0Ol+_W}QBL;dZCr9?6A)A2Lmd@#R20_nv5uNL($!C?Os%e?iY~XE#HRz2E5D74
zUoAD4Ttml4GL8EiS)#6%@me}+>vDHW2+NJ93ZJm2n!<9qsjH)(j{Z98>8P)xfsTec
zy6WgA{%&g{9iQoFrlYZrzPvM16UqA6-c%0jTjQ-qbKSURb=G08Uc7~lmO5JL_?%|*
zxAE3G+UV%0qmyh0B5ieakQs6_(vC@S+7rT8(oDY<8FnDj`d~y%(Jyp}({oU?i;gCj
zjTbHX>cqa(@s*CAI(q5ou47hVOAj_AH>?ZaOw;&6n(zZ7@@pBfcWHX-n98T2^<j+o
zeRYie-gvP+K*vBiph5HrVvvq+bSObsgBYx1h>jgPcIp_a<69jIbu7{`Ovi9prKLh0
zBXoSHW1^11Pa?97lsZiwrDL?oV|2(rSxdk;(;2U0f(+)FsN9`W{7LjB`MsP+)siRc
z#v=ooJP-e%<3}CynER8Cp9!<5)2P#RJUgwVwmw4!lcpqpniif-o<p5W6*Dz*K9dV{
zr230>EYan=W^B;0RL3$Mt8}cEll_;-FFKa%SV8_($H;{dF{5ph`&?40w@O*5V_%CD
zfi*hT%GuF2d7Tc&CVSgfDWa0~n=Bgd!m@S$JY}PfO*+0PS$dl^v@Et+M~zF$RvlY(
z<jYxHf^D<nZfk->ZfBU3lHgrBe%EnP$0d2)qGOMaV>*uO*sJ3Y9s6}0(DA3)=sxzL
zeYWD#fi9O6>CZtOhjkp$aY%=l(u&l7)a+H|O?C;M)hgwLj+3$q={U=<Q`FNs?zN4{
zj{Kz~w8_5z^AxG!BX`2zI{wjdPR=ZMLfR?Hc@Dw_7LgcfA~o!?tc^Mz>3A$hQ^z$O
zw{`rh<GPL;I&R5`wMmxZQi*IgSzD1UrBmy?qvNiQ`#K&-9~dbkCc#qVS;gdsbVMas
zl43s5@l?kfS(#-%=y<N<``bycbiB~z7X1l3H`-saNT_Xc<;;n45C<%ay*9Jnv5EIm
zuwrt$DT-8^CJ1TE5;PpCT$)yc(1K_ZMAIN_LD+-HA4Gwm{BSOYAc8@Jf^Y=kq~i+0
z6NH!S4&wXD(RsxZeL?wF6oDZ0AfEgk-kFq`p>lM5zi28*J>S%gr41ro5ZQys5k&eR
zG6az^h)h99mIO=Ww)N4>tT0;;YUilboF#~?bcBOrqEhou&!Rbl_#lWpLF8pyxq`?Y
zgcOlnDJ6QYNi1Iwbq2&Fxa_m={NIfJ6bzzJ5Q#y^ttbiy5e}lu>_{vK>3jm4i;$%T
zDH07rRQe+^Qb}?UDN<n&b%Q7pMA0CM2T>vj*}-L1qs4*{m3E~_$skH`@5GT!nl2qg
z8L2IZco0>C#`-B+xgaW%%bU)JgbH$K_$hrQ)2|#v6_b(6QZ0z;OxB>*q<$2{#{>zG
z%4-Eto5@e8pHijT)Z9k>qV<Ak5JbZu>T}1X+p?STI;T-kZjBpl95h~*{I)tOELoog
z(JY8=VzQp*GHyXk3LBS$7D2S6*(!+739YH^scnL2OOVKRgnQMKI}kbs(TVUy5S`7K
zOkGOLCc$0J`n&co{Z$a%gXqbaZ{HdpAIa8($&B9_%X=^K*Fh|1Zr>pK1u;B`5kd41
zVn7g|l};QgbCobCh$VHR1tvws{DwT3I)vK2bX0OB>stm7qh3jheiy{ZAZ7$HGl)?^
zj1C&l7n>Bs{(;dkL3}YGI#FiAs_<CqIO_NyCZxiuu!N1B8lK!P@;wVqrcR+sJyQuk
z1o2}KKaqb9Vme_Ob=k^@gvll_D~Q=a{2s*aAm#)yH;9cvY?65!#QY%E$xsBbAc%!Q
z{Jbl&CWt@Y#uo*#ROTn0#j=|O$xVC``GuV3T|Cpf_^;&U)D_f~REb<gSRKUmw{c0z
zwpLEtckv?c;_HL><Xv304MB)0RS8SL<{-8Nu_K6W?1Qwmm6b?xJ3)#|Sm$@~olNff
zA9GI-<<ExC2Jtsxuhc;Jle$laJ%|J3V?i7z91P+RK?)uw9HAbS^F3`;OxaEZang+0
ze=U59e46@~>7S8dyjx6y{|Vw;5VwQ)SEk?l#PdO12;w5S(UQ_5-o-BkvG-m47M;sM
zTp>v0)gZ2suTyWB{!KY3@8S|5WpBQV-wEPw5D%DpPv+{oxbuDdeh`u+od3NMDci#!
zs*#@r@id5pw1}j|vml<!u@2$45MBiFG6+`)Zb{0`|ATlN#JeC~%U8fWFIvBk7fSl?
zeh%;H*g{AXLavT6O9-_qB`G0TLl~NvsD?28eOzGB`?wZ@JZ@OP9y0FQBQ-myPU;Lk
zGN8e`G@cN=A@m8MZwS5+{2??8p?L^_5cCl8gpil<!4PtUkTZl(2x&t|7sA|REo%tb
zn43O?3<PN<V+fhZnW<S){rARMpPgK-xAAld*`()}3Rym&nJa_~{f%`mcL)U@7+(a(
z+D7w*kUxYHA(Rv|gn}U?gb)d#P->m>%*PN4n|v~pv62k=%%~(9LM(*D5RS3kq!5xr
zSa-z8N-^V$hERmOkzW~0R<RI@o4LnIB$o=IG?NuWC}aBaY@M<p#F;D?!iOR3-W4v-
zWctoV{T0l}oBZgtQV5kps6w-92=(PCrzux0gz9u^$l){NKO%e_LQO&~(;t3I`NZT;
zL#RWpYdZA^58lV6+6EysWc|X82#u*tLTGCGpM{V)cT@segwQgCP9b~|LaPwuX0tPw
zhdYGiYhttxp-l)fL)w|Gv<=~GnZ*9BqwVP|*%hAuI4sY0?-;_xP?8kv972~6dW6t3
zgsvfUlO0S`?kj0xSghvb*q0$V{7G`J_(EyQb!V33PJAA@jOg}aiM>Md&<*rh8txs!
zs7xg?&y77F6qaPa5c-F(B!s0Q3<zOh2xCGR8-m4S8N_Z3rhY>m=t>w8LUxy>W&6m`
z5WWpz#U;xyX30SrP8bowccwE^+A?{xoK2j2<3j&O(^-H?ZM<RpgyUY^Zj+TH>q~*#
zyWPtkaKOPWP~06_w73^{cW8^dQ{45BySqy%#T|-!f&Z5e=6UkG&u`xOW-^&fCfVI=
zg0XS<GY$*mFphKSm7sItFg^|wI5{y6GZ`j{vXdF6#9=DKG}h^?GgxWuQc+{T&*J24
z*8Y5x(%d-A<K%qS1*{Z#_=fSBDD|FyQ5+VtxrBPvnS3%XxRko|aj;RO@ywYOaahT@
z>*BB~4)mPlYjs0w7*?}Z?HXJg2Rg=g9!Si8HgP@g<qcvj8yOnW%gN(#Gd6*i!*SRW
zhplng#?C(0?W{Xkce3tc-Oaiu4tHt<XxU50+OQx2)w7=t3eF`y$Z&`zmREjC9*M)z
zI2?<^@i;t=!;?5{zaBV2N8;JUdvQ1!hf{GlO%qofuEybSsxuDf;&3?*SK@F!4i{)}
zMubQF8=~c694^Iy;HWoPd2P_SCqPU<`WLN*P10*|_=m&puz8)@!$4s-MDbg3xE+VV
z5n+n|Rtdpf&ZV{7=jKrhAH?Ay^CRITz4Skg!@qIJXhJ3vp2gugjU^KzO?VN9mo&G>
z;RB7I=b=||coT=WaZt8|UemPMHqd@x;2p(0Ps~3s;M^IAZ5TX1(_bzW{1}J-;_x{R
zUqeZs;y})9Ewoh&eThTGSD~+QSP~JY;sJ|JMWRf&RXQoX39%+bn~=_g7!!VN5On_;
z>bfHFNJRKwdS99e-4lYy6PTARfgl4XkI(jJHlgjsREr5#6SA0$*IH#YAsd_7O~`RI
zhH`1iVWM}98IieI3E~(`CP)mj@XaRBYu6~iW`bgZ#{{nl12TqG@-u{7CTJ%5Ltm(S
zrjVW5kSXLa!O0MtG1Rn(ZqFQYo9I>1;g1nvp9yU;hVqz@*M!{6l>C9AUcab&50mnl
z=&1`KzX|asP?DBf8ABN|hp7I52|*JA5`q$4IY6gPGvRj=LM9}e@Usc^O~`LT0TU{l
zP{o9TCZw29%7oG;6fzkn%2X4IG88tU2*Ve?VW5}^e{R!%WQW4iOb81u&QOB2qzQGe
z8jlB|cc##T)61Apmi<bs<xD7VLIo49tujtn&8PeSx6ogav*<}6-<+-K6RNUPgS8rK
zbyf<fpDnVc;94fs7F>s+t_k%Reqt?9&NwSIFrlFdgG}^Vz{o}>G&Z3ljS~)N!rI=1
zUrcCfLNiWMkv1kYr(KpVxrK0An$U{5wQx2}3bbWz$9njQex4r8xX|B$k_-K3=O=bz
zzb7j_H?^|~U6`r<t_<B+yR-H%VQERDwY@mm+k`$Q^kpWqzX|<}jV+WjGE7R&0L~gn
zW8kyjIxk|d2}4X6YQiuRM$$;m8CC3(Q5!wbZ#YMeVBOB&IE`W+ZNeCabsG~4--!6b
zgt2r$nQ+^LaVCs6VH4$=Fu{b0)O9ATHDQtolTBD`!V(i2eMy{R!gLd6m@t*=q18=e
zXq7Q(Cc|74=9w^yc{b}DR*K9$$e8Enb8-O<QN9C;oIg!iC}I|w=*`z*GMAcQJ8cZA
zNk0acnXsG#R+z9_M6NVp6|?rU5k||j1;$0!Iukaqzutr$I|H;|cE1d4G=bjYUHNok
z)l4ayP1s_>2@_75u+@ZZCLA!~AQ#zgqSrGe?PcC!!cI#5V|3{*6Lzz?hn1Xr6Jqx<
z?-!2g-^8_Vj14?wLK#cou<(zVaFqEN>v7?ih=@F8!f6w3vU7%&j*c59oHgMbC(oO3
zMZ{k);Ue=T;ap}Y$NHBES55evjxw5aOt?<KPivu@La9kBX7~?1Nu1cjpCfa?H~_o&
zOGk$9(Bxx+EWs?{o(cC&NG~B)!UGd(T?;;=>F#afL$3Uh36B|`u-@wz`IO;b)?57B
z>vK8<(7eZ`s9=PIS0=nR;f-+K)29Fv-f^<#%S2iz?1Kp(P58v-7ZLd%!)MlK3;kb(
zPfny{v?_{~AX-8?!7&W!>Knhe(nI;PO2{T5gJjHa8CeN3NyscX3&X4&k-pyk>{M3x
zIV9v{&Lx~U2`0g#QjKeyGD^TA!73qM0{!S;>s_=>f>VM^g2It1tHx><WgQazr_UHp
zZgz6BdPJ^Qf{(euApMuf@DI#+So5;xW2NG2pGEkY6NHl}Vczb<qL!2-3AzMTh9)B<
zAz8vg35z7;mry`LCkdS;6qJx6p_YW&5(-HuETNQy(h`bDNR^N#AuOS&gh7eP!wTz}
zizOG6@YB46a5|l|xCCv6UQ)u35=xMtkgUh(r1cK!HS5I;sGoc{S}!A^tc0o(s!6C(
zG`XCFiV`YGC@-Ocgf&xidQ<t5Gde+KuDJ^9@o1y|+!+k5P6Z{<tH$CE>8sX<$f+se
zR&o7c)3m{n;W`rPN@yvem4td!RzhP5O(gs*;lIuP^#Q$sg!)|PW4}?np@c>f;u7`S
z=l!Hq+b<ICPt}`AXfA<Xao&{rBuUTcDb#{`X0qOf*O+sfKJ&KTT0$EM?IoN~ucrm{
zw$xW=^nTCuc3l7NXGU!uDEE@yQNpj(hMW4UVudoLroGOQ(nUg731es#61qv~E@2?`
zs)QaAdP?Xkp`V0a5_(IhGfCIulM@dbwe^ueefT)NPMz7=pPD(MP>tsW`%4(WYg`){
zrq{j?mM}!ZPzl2%e3@XBDm`7NO&d-JT|gfxVOj}&ghW?BIt5eiC<&t_q%UJcHl1SV
z?-KryFqI-DjFm7>!gvW2sI~+>%lZ&CzT&pfL<##3>62-@uB6dB<tI^7xh%DC3OABk
zIGuJAjXeqTB|My<&y+BSHZ4}4C1JLNiM>OadxqvUNTxN;l~D3)3M~gC!;5-`sM$2Y
z7D)J$y7#u;H92|keSNWnB@)g`I45DLgk=(TN!Tr6xr7xG)=F3>VWoss5?0edqOhq(
zM>&)AWs4H)JW5I_q?fs=8)HDi1_@gvY^BD;>x0wj8zpR_gN6HWvxFVvjZQcj){EZL
zAC1?yN!U&`Z}x{1^&K3ulhu9B2wOhQ&^;3NN;o3nsDypgGZGF;IK*M}BJZZVk`7RR
z>Uzy2{bkYQ!|ZRpq`$pylszWlxP%iDPEywuOMc!gL@QcZG@06eiVl`ap~6c;rzM<`
z=pFIl?8Wt0tmkQNk?=&qQwbMo>X2|l!c7U6>1d7C|CVr#;%OT%>3>PMDj{NuPW8}&
zsPK%!`ahI=NWYdZ`8plrOG9547`eA3+?Mc2!ea?{XeV+zAJF{IaG%v06{a>*^GF}^
zkf!lKgRtA6<h&t$ZlX@r{wv{`g!d9YNO&&cg@o4<-blz8)L+s}awc*0h0rUmtwfzP
zs%LWs{pRO_6aA@gCA^ccF-GsXE3|M|=%a*B5;DoiEW>)qIMQkPj|+aL(J0|7ZI^7!
zKeW*Emm`^@gcHp$FIx)b#xSR6jg<k046Kx!k%88mg&|Ici6N_uY%+FCH+EBYc5<-h
zWX&Zbz`a4a5<3d3%xY$}uv%GdG6o$os-mUR`H)?PLq<m#zshjRaLFhyqk;^#43CTg
zG78G@%J9iZkdY`Ow~REJ31s+X{2(KbjJ#a!0#hiTjM@QXj}Vj6n5XWlt?NUR^ni?@
z44o!?>c(WfKrlH+rBIR#Iw&Y|W3*ngxH0u5Q%hEc^0U%Q-cw{0lJTRAQZfq5C?ca6
ztzAaZkX|+_TrZ@j%Ak6Ra+3&X*Pkt|hh=)$FG|S99xN$?7TSr#)V2{9Lk(l}(lT;w
z@t2V?WvS6lT6<X;<#;P-4k4$aj7l;Z$!IL2vWzOUT{7y(s4AnHjOsFKkfZCZ@99mV
z!gNH}l#RK%*TK*)v3mcga4oKipstL1GV04{Kn~R~NjF*>(tqZFMbq_}QDJ(`{pW)^
znGLDIydRs$_(eub8LebAmC;N_a~UmU>|P#9H#nK5j)e(&Gw1_XglPBCd9AgKHZt1E
zXeVPyP|p!arU^Ewd8kZ`-kuu#OsAh~X<u}p4S`-iKDm>O&N7x#=ga6KqpOTDGJccM
zO-6Sa17r-8(L+X08NFomrj31G@XFJIm12#<s*jAmvT>g3csHt_jOmYK`}4NMAJ(b!
z&-rzl$_B|8EMtg_p)z8o8goeZOFB(E!(@6BoIXOvNLu6W&~Vl{0euwLFq-=3d>YM=
z)c=Q~!dIihzsvYT#xz=sjIlDt$(Sf(6784q`goaMP#C7#rmPQ5py8Uw*lRS&xMNc4
z1oX+YXJt&4@u$5|ndTu<%AFx&ri^(q=F6DHYosZ6j*QvN$LR`z=6_~t8}R}ebE5Ty
zG8R!i?04Yv@?se$9>*?Whr((nq{c)WbJ21cD`f1Eu~)`Q8LMP$k+D_AY8h)}te3Gt
z##+kS?2o-*%r@(|25Rj=x4u!vCQi}?#{Y=7g{UhwGdzA?kb>zXyG_P+8M|m0(6%=-
zM%q?;p&c^4)H}SB%O*yLZ-<RRxOGr6ZNfeo`(+%b*2*{_<DiT~G7iglkxtiFh6di#
zsjH9BVG<p#w<bhaP)B7Pqp+r-I?>@<F?yTm@JSh`WSo_8PR3~&nSzB5eJ)7rJ)J>6
zBcsn<qsJ(Dp0+MvT!&oXX6$d8N(a<s8CPf+YiO$BFBw;9u2Ydg#oscn(EzYulm-9D
zxK5p8##%FO$hb-Kk{N@|xFzE@9ph#cGvkhoyE0@m%x2u9qfEwo86RXkknvE)I~nV$
z>5pVQrtOmPQpOV*pWf&{zDW94##0$~bJD=*@R@8W&uAKXk@TFEU`}*+-JPUYRQyiT
zTNxGqih3>M4K=c0Qlq;`q~y!Fg9UCSWhou}NOj7{YDP9Q{-XxpO{)C6{#C|j8k5WQ
zJM$90Fw{Pt7GXB7<Ri@(;tNHY5p6~~b~3QWu%>6FuvoM4q<#WgwklB>nKQ9w7Je26
z%FS*@4l`!F*Ps09pK#ru(~LN(|BIf>3`){+<5VIgO>9c6MZV}3GpuIhGb7%NPak!g
znV!xH)r`<(;|3wkO#K6o8D29SW;o4on^Em{5-r)9MY#lr_JqDUJ~PIaHgfZrk=u+P
z%=kQ7pIk#Hr|}<#=H&olzZnT;q?l32j6}Ng(u`y?sO3R3YP{7;E=kqR=<t?)$u^P^
z_map7nL)ZWI-K8(T8)DR%qU0$U~S;u@*ph)_h0+#1p<XBtcSnA8-EcqQq3sWEbX_O
zspq1@X=a4YsBK0aGm4v0!i@4}R4`+~TV19#n(-s8agb3%DKko&Y4rNbu$D8UEJNTw
zoy^tCqDZN!6?sL~%&5dIugqG7wJPiVcZn2Moi@RYn%v>z&ILPO4%RZ$E2qN`KI^nQ
z>Y7o{jE-jfYQ|4y{A|WAW;8WpZthThGa8u@`6$r9j65}TS{gDeRni)>--ML{Xb?6t
zqq!M0>e}#Dv@oL;1Ld~lu#8JmY3o|ENnGYYQd=`f+nLdxp#ycxzd>@S_d1!;*$jPt
zVn5!HE@t$k3jfo)n$gXS?lfrcCehM^8a!I>RX&9lO7=3NH+NJY(PPw6ea-Oi@e}kn
zV}KbnsBA5w&!hzhlD{`dFogEeuE0#%{CURL<3r6DX2x(cMwqd`S!lEwW6T(7#wa?n
zrs-MIg(pYi;bi?cGk!N?oEbwOCsw-P|AWSr8IPlqh-16~(peu9$J59+gJ7Z=Re#M#
z<|H#Fn=yrU*#-Y})~T$NoW^kLZQ=|DN)pd9W40M{sBfDESD0}uf6`nt=9%fQ!HM(f
z`0DGYpHYYxnDHl@3t1PjlE2uDCCp2Ovy5T6*?6TR1*|k<l^LteI8ik~FF*|bFL-81
z@M*pPy&Yzq8CfmJX2E(hHkh%|j7?^IG2<&8?`CW^<C+=&n6br-t#t7AkGyKeHZ!)H
z(K2h`f*Ct#x4sG<GGnn6+-b%xGw6k(yUl3PBG9k5e-9`3vXZ}#VL$5u)`Mo_sUVbf
zn3G4$ILdI0^^6(E87SZc!$~tv3FkCTM7aW#b(WoT!aq-==&4aBEf>wWM5ATB5q8;(
zD;)C|>!1Th%-_s39yY0wl)O&6!;IT(-eA3H#?=+6ly%39yL3RA@r>qwGm6{`deVjO
zbIdn>V8%l;9?|fisVrTXmZuC)=(O@K@Xa}v8hp-0sKPfi%e4=@;N(lzS7y9sD4NG;
z@E_L#Z#nsn^}QJ%7(TL6z$Y53%%53%N;;Vl7EId}NN+)`#n=~-7DO>bThL{JKi%xq
zbexQ_z<tcvE?VgAEEz1w$Udz)6GOo-fh-neW~L1sUL^I~R%f>$hXsW!C`@B!R&q`Y
z6bn=fa#;{(L8W#{CJXK;c`ckPvC6Dw3yP)-QxPi%*jUq+B~q})1??6%EU23<OqDn-
zFxiv*79?2UqNZBlvEW{ZWUmE23)-FtU0oTKn}Ikl!w(kZVHk2Ik<5G+#B(K`(}k%Z
z)s|?%>*Jwh3-VhKupnqb`wXc`7J7Gfc>jsem~>&?f{+CSv@|*%I+iY6zyg943kq65
z$%pB}`&?=LkB6dS!bL1dwV=BNJ!rcuC}u%@3mRCEW<l73$`(|yptuDkEGTWEZ#ZF(
z3753sM+^Fy<J;tnS8~ReqL##j->oWGF(zErf^ru6=T3Y@3(8y2JSJShLhp(V_lpVd
zaKx{V37?J$SF%8A=dU2gH<9D3T2Re`pDoy%7E#@T8Wz;HpbqT|Yy9Jwa7_zpSrDB*
zY)c<bP9Lt4K3vyAZ)ptIv!HL*_yOs|6!wz^hacvp<(?W}E>ryG6A=w*V=ZV$-C{vw
z3z|?73tCz5iv>-oNfvDP#fRkhW)^yRU-(w~@YM9-)#<}6xY-}lhns9D)|zIL*l=5p
zY{N`RDs}Ev(b}%~4i<EzL1;l&3x2gAUu<}AiDI3omtw>9V#A#&m&)4XUo<GzH*<V9
z>X1zFBVxld6APS4P3&ng9wsovf}s}lV(!h_hn2GWQpZ}*-+}=a47AWwaP`5|a(@&7
z=^%Cp-mtUkj-QGQ6J>`pjNlmZN7ERvV2urHZTQWC-!0f<#a=7^uwbkO9jxeR#W)Mb
z8@&zHiU}4>wBW1-=Pa0H!DI`j9E)B`YQa<sW?C?ddbMqV9Bm6sW0=l5gO&VNSCZz&
zhG$!_!1DbXY!1U*)_JV+S)Z1PInqi0lX;;9ix?KO(hRnQAw$-vWfm;AV1<Rg{V?v}
zI%>g68srwNrj6p5offRMU>);j*7c+e8(2588ndDWEw&n8;eOLC!r#iUjdrwfb}-Z|
zmA1=*-OPJf53=rM-Dkmmh6Air?SOr$hXfzC;0SYXukqKdW5Pdf!3n`98BVdDW<A52
zvqS9s;=%J4T(#hD3ofu(x08O6;S%d*)+?-ku~wN7d5tdqE%fr`pw()0{&fo;S@76`
z8?=8r89%q(wBQy8-=_JB;V$b#)_WG*XQ0Rj7L4p{6iHN!_cuMU;Hd>)X;4}5FUP#K
z;2py=*5|A*SYKN3ie@L~H>|Hl$4qHq{H2JN_w0PJ-~+=)3qCRY$GS5%{F#9w`(8EP
zb2P9|OeAkktkrn!7CBL@(N?5mAScF(^n$5W2IfpwWVRwB^S;8ye$Qe>R!*8&vssao
zAv-Gt<Y1s0axuiQE|ZKsNQ=Zt*$OiQITkDa>T2{7^|{T8hegxcl}*;Huv<~Yic~A|
zWC=N}@LJ)s!fA!eilQ+^-Bw(R4HwLt=CR`Gy+D>MAu{*H6#d`3g1N2ufl67C*Gey&
zE?SsZl+TLIdYW!UyjZWFA;F47;RG0htVvdUiZy;m3vodzo6L}(wE$~DD^eH=u~JNv
zf&p6N7-ylPw4$bZniXLy-p%nBqbZ`Nv5m#8C}Bl2E1FwTk`_za&%C-Htte$hX)DTb
zvX&KPtte+jMJp<?Q{IXS3`;5-dm*X9_uuR)vsr_+3Tss>sxeSlbt~dvY(-6WzMM1e
z3aiarhqW$iJ=ULCDWGKS$of|FoMQwxV6&kWjYMu^h9*}0BAlkw&dbIvSS_rWSuoJr
ziZ)iXWTs>*hD9Hf+FH?$dLu2hJv*a6#wH?6O>&n=jV+P-s}-HBm}SLmD>_@z#fqU;
z46~xE6?euPBd4zw-K^+tMGxxC@%}EJsHNlmJ-H3NL`!-z^kF^J*65;sR`eIS1FRUx
zJV-c$8HTXBqEm)jF~W+ewC#`mBdr)^#Uv{xQ=6|Pj<#Zq6~A$0q5AsoH2GUGo~C*$
zPCoXJwW8+T#I{RQ$8oYe!emagBGWm4wX6xsV}HZdsqsrwLs=7=^6r>og`>WHxmemX
zE2dkqWSoD76@4H1XL3F78tPPp%C`9AuhB%GW5rx6=2<b{iZxcOwPJy2|G+BxpH?j7
z<RaE)zZq{3TTFFYv6P)<R;*%J&boq?VpdvF)oL7-tJ#U;cXF+>qU~t^Po0gfTQ4Fv
zSh3NHO_XG3JL_hVyTyvF%-e)>>7X&^?BL{1D|T6Nx`NTF-RxBE9J|ko{WSP(_|b*~
zRvfhAixpq3IAq0P+TB*%wc>~sN9h>1;xd;yX2n@6&RJ1!X7X_>PS9?pP8MrC#c<k+
zGYr2SHb&#Da;fL7xImSRO|IM_wEA4&Mf!w`R@|E$xEPUgg{B=VZdh^CimO)qZN+sf
z4%|<?Ms1Ul{-I`13DPQZmPn%{-KDT*Ml$8zvf?%!n4^-5%}c!fM9+~D$d?lMDK6n2
zT>y0TKcMN$iu+bH4jR9rmYJOV$co1_eyn&;1>1z4(9BOzHbDH89a_tT5~<I)+0R*D
zSn-m9YIw!)n)MCqTN(yDgep~v-NEpI{g14lSpT!)GXvFdWNd7N4Usn3Y*1{7vLV`r
zTsC^wGt$|N6G0{$%$-6p%#=*e5Nk7D%1B9CGB9McVSYa2_JGVbWU-<4qr|K>WV0c=
z4ObA((>df!Uo?jeq&aOE-o{A2X=~`H@~I{pBpYNK7FAC*zYLgZjV}Wh8?3ZU3{t@U
z>Zw`Ercv(VtHE^jL#how*pSBt%?7&-4jcBH(wsK9sO7JUOjwcTw!z&=_t@aIp<ipg
z&z7_tr*)qVWm@aGZS*9`WJ(fKWL_J7trJWrk#;1Umd}QG-WES=Vb%m25^V_B5ac9n
zV19-q8+3+{@RMzr9&hwO0pS$1Aw_T@8*)xI{smmbhEz7k)iDmDqRho?NMi`I7H6g0
z5;o(xtOTWOC~d<~8-~$V*ihDn7B;k``Xds`QE%H&$A<DYRIs6<4JTUb)oiHFl~l5!
zGD8(nXH^?|mo<JRuVF(?8*16`xUIfrmVd`Dq2D{|-u8NEx1Y3cTfMFgKiTlJ4fSlG
z<k$B4(^>xdHcV@+H{{wH*wC#>C{!o7tfO)AYQ$z^)+RRmBG%Z{hGxvog_C7sY%3dD
z+t7z<wxNv;ZEeW9AfcBH?Kq~V4a=&hwYSlaXlWg6=t#Rsl<i_eCmT9bKQuEs@KbF=
zyNcXy4Bc($A)KpcBPV!+l}e@dwjsG%>h=O@FA(m>xj8a~b2iocGY?=L$U2C1FzXOj
zTE!nJ`fwXY*s$1!C2WqgVWthUXheya(Kd{sj{uzf-G)iR|AS$y4da9}-i8T+C(_6{
zX>=ehli8fYI+ePbVLIy!R*Jc_DRDOKySs^VY?#aD><NB4<;}BUfenAskw`r@-f%`Y
z&|6RNFQm~`(73Q)M14NN-}PuB=~5dGjrT9NVTBE&$N87paHPKexxP+Sy{H;Vr_Pl&
ztg>M>9cbtLbS9!wAJWp+*|46*o`RMNHrTMyhEF#9XTv6Hh7G4}IAg<R8@AYRlGfE#
z-)h4)DpE3%o}0eih8;E>r1jeHYG3M38}{0;k9imCZq_}lbaB4lW?WGpupz^rskXiT
zsJuEY1-j@{i=`drtv+JI)n>5;GlY+do;ha2alt2Oi~1PXLVG&vr)(gtcRKZ~4d-ll
zL}T8D^EO<t;V+t|N+#FL5WZ-`WuEIUQQu|=x62TI*&%d=9hv}Fekgd=hQH|;ESYr8
zhKDxff0p<Uuj{%EH*C1cd|#~nmJPR=?+E8E!#&oW4fO{MJz5(r{M<k%=ZOtZZ3wUT
z9}lMeYr``eKF|P5pFAu>__+=A!RNgVFGOuGsh5~vv%V4jTN~a9u5L9-O^QwWNX_dO
z*yT+dTs8Hx4PR_1prD|FuQo&|$fF>yf=C5X3Y-dD3ZfOHQy?jj6=dq9$0)}8cQYtR
zuVCOTKP|BeJ+3W@pjJmcBjwKan<!F2W(8Rk<GhfKH7hG6t2B?z&YVLyIT>;(h!f7b
z_Bz$Gp-ITBz(S3QNKh466&!7&+Y~4Yy%#T>k!Gh~Lh)&-m0Rjh%cN0^rohg@)J}(j
z?(K9ksUA01`-1|H0xxZ8d)=pC(jI?q1yr`t+*Dd@ZS+aAjQ-E3AYMU!1@BuJhoN6V
zK(s1BK_WAi+I!VFLW2sD*wI--A~Ko5y&{GxxwprkqM(q1dJ2A0P*_0`1yvPPQ;@2l
zsDcU#Dk@miKrf~s%mq_EB&8`>{dXYZQd0SbdT|9M6qMww9~G1qYbm8bZ)41OWrR~!
zK{@8~!f9V2wi2!SSz;B1e&zHNR8|mds1s~YOD)|<rz=TXOLdN~!CF&+I^JK4xwfdM
zj)J<(yD}J`5zenq{aHan1&tKcS1{p}zk!0i<NS2_P0enspoxNJ3feR<`tYcnbm4u{
zFA7MTvSvA{H&<}uLo&@U3B%G_DQK-=qk>ITL_u2x!xfC+)wNU5QNgbYemv%H&)R`C
zG%vN2g3byCDHyDvi-N8S`f!nM3a)1epY0gxO=Eza9<0=oo(g&~UvwE)vnBHcZ(L96
zD{}iW^k*HwI*|3orpO^Q#Z^h&RVnpzhVW2Y<JW@26s$~0o0gbXGBItWf>D%Iuu8#b
z1!EM<RWMJ%Zwh|r8YV0FL%~aaIL|l*W0@)WrcCm94w%3?k(C-YiF%1YK~G_4s_>^V
zOjj^NI5QQ@5<Ht>4mE~91kG2lfSu(E{-i@VV|bB*#q2DkAyFcgE~1twSgK$d`B#mL
zt2UL4i!RbTe0{Y-!IQ*bFk`q<#;~hoq`6?qY6WW)tmR5>FHGE^U>);%*70%@4c(?i
zVq&9H{-<EGg2z;Yf-MTRDmbp-gaZGoBHI+~Q?Osbb_F{W>{LM4V7nCTrd^*g++tDc
zu#DlIWs>*MrezH8rGPTY8CRx}9^ixGsDdlDA_sYmhgc7@9%1dnS60Uq;{xw`$u!cF
z3QkdfDxlAg>eS@Zw1X<9o>LH-pKwOOSvvIW!Oa=N9V@23zLR!d!MTj#R~f?>6<ktq
znUWo2>wXQ~P_U$H=nAjmFV?FH{${ww`VZ@MR@#F~;mDiJw}f+>;STFv1@{!(SMY$7
zk3`HvhSaYCl^;{{RKdUO#He_t;JJeT6ns|jg3VV7UQ^d)3csW&E0b|l{*h6Cqu{NA
zcQkE2)hSuvsZJkf&TdV7&qY44epK*@A$Kif_Lw@?|Amge&Y^UwF<pOE5WzqksUnIw
zS~x3t!l~3Il%Abf6}mlY)P+R)_?b~fCKb7(5=yJctRjmFj|#7ftSYjpkW|QABs*)I
zO3w)|l0(I@Pl-8I<YFMECwtR+O)8d+^0yo4H*>I6g-wM;rKd?GRCWcbUNk<kDJq;Q
zJ`DG(Dl`>#6<wYL94dC%b()Sw_RtB+WD2^dhNpfvE5W#Z0UtF|MNmZ&SN?;Fyejgk
z$ivB-^Ag`kh2oiMEeR?Ly-f78w(k|ZRWd121!+J<`mMn_{{(auAr%Exq^L;dQnt5A
z`Bj|m9+;gFsPL#r0TrZUX7~%KD9iz6GKGtX`b(-v6<kzBF~Mmn!YWor28*+nV5Q`P
zcEKN2{Fyso8|p8`!Fhj(ETf{VigGH-tH`J!lZFZ^DylfA;=GDVDk`g3JX=4iqKb;D
zDq5*%P5bC@QZ*F?jwDrQj#EQ5RMcdrmWsM6>Zz#BNs6hX!aXR8fR>-wY@R9nGedn9
z4Hz1-HdWDxfg&3-G-3Tk#oJ|R-)d;4qB)x_L}W{bHu0&$pZVLUAnnZBmbD#gdlelR
zI<o%CN|Bvt^K*s>x~S-?q8t0;RE%fnuA+yEo+^5&=&fR;DAh;BKox^H*;hqB75!BV
zpvdh>v`}rde1pL%hEW(t4pA{w#hSnKP%h~RQQP6Tgm303c1EihqvAK_KU6GvnD=*P
z3j0>`SWc2ZLB&KBOKHHXn8fBx*2%0CJVnJ+71KCbFD8CE!wiw6fLSVLb8?P~`3z*v
zWthi0_V45cG-gyR<m59`!eSL<E@GwNCBi3O&b&^=dKD{}SE^XWuv*1h1`1olKwCkZ
zK*<esIMbo0Vz-J-B4#^{PZgUvxkbe`hOKlc$wnuTeuEwC(>Cs;Ar})*o3=;AUKNMg
z-^WVv2UP4=VRR#9#U)VuL5@Gf`ut(uBOFOU!N*h_S8+ncNm_5F@M)E<TGRSw3X`5v
z>D6flT+S3eqvEVeZ~iipZ!(21sJN)&F%A0}X_v@Xai8X~n3O9j{!(#6#Z47g>E<65
z*QwgRfw*Aknu>pDt2-s9TcJ}j|3aO(Se7J9r(nrJddXM%Efu#_+);6troqhNYLonP
zvLuu*6QboF9ka)R)^ec-DjurF-DqV`CDH00@k;5oD7uB<iHfHx{-ya}#d8&3RD4zO
zLd8oJ?`if^@rn-2Li#^VLvK{Prmk2M%AP-&l$^IJ-cgYRBR4r#zuGJ`@237y#U~a2
z(U2~zk2@JnH!FUo7M}OhLidS9Xo%DhtI_LRb-K|yN(0?qm0mM$x{lV6PQ&|w$;2`2
z<jEYSQeB#+LNjj1%AnzJ#Skq6iY8~)kVQig4XGOFc`R8q*flsb<F8)XG-TJ1Lqkpt
zxir``R4*Tl(_qpdYcOj_EFTy;CLn28_*<~t%|Ke_Fo8vbRin3eg}XOMt(Q4GK699|
z6b;KWhgA)lh9jB7<WoTkc4}B%F_>3FJ`D?Yrn)q^HFz}4IF~x>x!<dSbVq@pk0Cef
z4;u0?9G>B)+;|Os4apkvYv?vBkf0%;A;_Gl;TKns%p?uX3I?A`y3T&i&;F1`H|XlL
z^!+PM9qlim;pelVg0!Wd{iR+MBu-(ckcPqx<h))LD5{~DhKd?0X-Lx$)=)-6Sq(08
zq2e0oX2l;hl+f_Mnt^URLM3TkJ3{ql`^hiGxurEMnrhtBIP+EPn_Y?Js85z9mS-)u
z+FwBfDLIujRMGGgtye=;4b?Q%rkzWjub~F*xZ%mQG?e^Uq^5?BNTwt)X}b~0>pvH%
ztI=DH!u2#f`cQ-x@;_z{6V%smrFgKhhN8Dp8!$K2Ff?7D5%pV4fU?rQCN`mwuqIGf
z(kZ5yhUOZbys$7gT4-pgVVfJ<-DstuwMKsu#P1HYp+Q2MZ$~*h+G%L7VV;Kh8ahzJ
zGz`=*NHcE1`c*?$>Iw~=sAu@wlFkfWSVxu%Zdef6T|*yE_7E{WHS`kPo8hc(Tmtpg
z&`+Z`J{TVg`m;Yk!?)i}25T6iVVs8Xv}v3*T*C;4VH)1<H-7lo%Wo_q7^z_tXN{(&
z?)HzNjneQtJ7Zb@V5P{7ZDQ|MjeXYISo;JTnHpwlm?&~5F-+DlML1J6OcOkv_Iq~Y
zJDgd<nZq!f^~RLsxx!yvUtd5SuHm|d8+1U?P|>hk!yXNbH7udSM8g^lOGW&04a+oa
zU6}aO&cvO+7Fi+ul^RwFZqqq-t%h|J#?E>Tt<r+kH%4xttB(H#&#nt@6p@<<1aD^8
zqCu)>e7#T0HVxa^+`+n&br)-<;l_88do_ArcH{{SCpGNTuwTOg&ZVp)3<otFVmK`P
z&yS5ig&pPOF%8FspC@A^w)=BtF)or%v3Xj<84YKd&(Y8ok>?pMXt*exOByZ<uI`Qe
zi}|W>{?>4f`5)oT2*lpha7%;54yzrvHQb>iPDzsOxJw6kbkPqQK5Dq9;l73k8Xj`N
z7j$sZ=8X5>x~7vpW`4r@l$FeXH9Qmioc7?nL^5BB^}b?wt>KMu-ZH#nea||nzVUhd
zlZO8^e5MgT!PpUBG<>D0*lrw05v<X6q+^J*BZ`5t+?8Tu>`2ea9CpMqWM+kk$zVrD
z!I|u!5B^jz3p-g^vx(g7c6wUi_wPA#vU#L?Oq|Fy*&zvT;E8g-^P4%Dm?dnpL$RZ@
z9j{LtpA=L(^4gKl4$Tg`9S-XAQz0)0J6T<#9yf!>j+#6SsH~5j+;;pRV)EFrbB@s`
z@$4kA`dJf1OrjkDJA$0NWs3SXR&`E>>`1mFza0ha2(wdAlq$lI!di&6Fzd>YG3TV(
zQIwO#SkqX^e=){ioVf&RN!A}(OR-W+baUf}{xY=QXNgB<1<Kn|!H&mvJh7vq9hK~u
zV#icFD%(-Tj#hTGwxcSSZD>a$hH7?Hx1$F2jHt5*cTp`nYTHrAj=JpE6S?ggNB+e8
zGi!a}H(;2SKG;||>ec8bcKpK0rgr*dnpEsVpqa>RZbu8|maOxBF#dSk#*Vgj47Fnz
z&Hr|^x1*1Ur}?>q9UblXm4@E|e-HLMiQLY1bP?Ruj&6dx+cATG<DklW+R=;s-mIs~
z8`Cc>eL30Bj{c(50EU5f3=+;@h9Ru3ZIQ$67-2`L4l$GL7|G@s)&sqRqwE;XOf@%8
ziTREBcRT)I7;DD_kvooIyq(?xW=u`AOcc&!5fhy;Wttt+?bvR|4%!wwX4<iwc4b;{
zmWY|dFq?Jw$mF?p%(G)YC;t>N3+RaBcj_%<XA$dS)+MY<S(mX=OJ47fUO@vxGEQ(S
z?O4VBYCG20u~x+V&yID>>+RS;V{DW0o7YB>yNTfm-+r)}d5axe8McX-=cdS7&m(r)
z>0>)~^G3DXpZF=OG5_!3n7wxFW7u!UVLOi4aX^$k$Z&|2PS!^m&f9Upj$_Qn?Kok_
zN#--GRP8A{P79`o1d?;sj&s6!SuOUW9hdC5!_H+puGn!)<o?C*j~!PT{ucf<yYaIl
zRdt=68^XV72fd+&{M+oDtQ(+jx9-|;&;I@D;y(KiSRaZ~kL>uk#5ky*+VQU)i4FuD
zcxK0Q4uAvKZUkP~@m|EgWOzkWq8*d(M7$CHTZVV6PfSrCg#XcQ{4)N@j{ofV%;p!?
zXa|4)V@Cu-Bx@8aHRb^C$8-+Fu#=uOR^*1RL}zdyqXU`PskJUBIgr_b+VcZh*vaZZ
zHiqo1->$oIIFOT*RDUi9;sl!<sL0QglpQd$X<_}r0jmQx2NVZX2iziFbHK%HXLYbT
zSx=5P#u6=SJ&_)EysSRf+^m#4haakz$AP@;<Z~e20Y7tsi0O99sAt+|f6##>+B661
zIG{Taa-g&WWjHL^fj@@_3p$XWllJmy1sot<ktLiW>M7(vVZlWlNOhp71I5@WA^bE4
z!py~4AKW)qU6T1n5mU;6&b^G$MN3%+$~#bjv&ym3cgyvT8^35&bfA(0iSyI)IZ`T%
zvQ-$WvQ~4TIztWCnygf?mILj*M*VdisOLZ*2l_hjlLJ4~dL49=RZ@Ki8aU97<Ig<M
zQ?L6QGB<Ldu>(z*TZr0zaiA%4GuGz9ch-q*$=r&yHESD@+m`z3v9W=)w0EEb`yE+-
zWu?o8P7ctIk`&OzVcfVy(A9x%oZFqX2P^qK9q7f}TR26k#`bfdKPN}C4salH@Aowh
zbYPGJgV`VAz%YiPtW?_<)i`$#cVGlNBUwj@T&i;nGhL8V*dGpzrBUHR0T;$OFy4Xs
zPBd_0f&&vBc;~=-2PQc%*?~*6ISx#5V5$R)9a!SPGzX?TFq><Os$pC|&tRS@)-{U;
zWQABdrsfD|F2g+5`K$|QWHKydrAihttPVvkbzqqTyB*l$z;cnh+JO}gtaM<NaI}KP
zhGdc=*Eq12&2_9>Sl2tSfng&nMQ$PxyxBqTZTx<Y+v>nJ;cs_f2lGzh?4k}CWLz22
zx7K?dIL7`yk-MMa0M*8DNce{xI3oBc&6cmf9~Z|RIN`ua&N}7584+`u##O@inc=Jh
z=Y)UWfeV5!G8CI_OvP6mxZ%J}cK&kUs)+fUW@EwsFkE-wp?K=oEp{HV-e$eSde?z_
z3{>-d2ObCxH89ro$brWWJaOPD`>#drzYNb<pR>Mj;HAiYMJ?nWe#6dN)-Kh)U*UXk
z;0Gu2IPuYePY(RYxiL<pcjB`HqxuKFIPjIt2qz+)-#=5+h>Bv47EU?_x?C}})?=A9
zC%}-wiHuHUaw4-67Iw0*(iY`l$m&EkhU~)scqTHZ6S+7U=Y+&y61g!YVr1qL^a=nc
zzCJZZzLgyttHP?XQr7$Hk#;8>oOC+rp|ZwSxLDmH#>3!s!Y7=}O^r#CwluF3`J5=_
zL}@4Do$x!6#xWnVgcF=7%$(>%fEt`N9CXslBEumkk~m3@&M@n1D48Skvld{b`U^Ud
zBDjzf<+2*bLJ``if&NtXi;CQ0PLybGG>Mk56UCiKSJ3#RQ^JXoBIZYiC$A$~W(}8d
z;wL8-PmC-})jCn0v+A-|V6EsxC5FmQ)L@|6sxVY_qMC53JF&U+_jeQ2bfOmfwOQ+k
zm>g9@^#s#|^E2~6-j;?=G;(606N{W^>_ihM20Jl?1AcL$uM_vS8ynTsiDphTccO(8
zEjhQF6Rkv@9i3<`xD7*FC)zQzXYC+z-;GHAmAMmZXVxyPU0G>erP><@cy}jyu+x*Z
z7i(|UKCBdTvtDdJC;B@vfSo~3yg6wci36QD!6*Hb>;03KrVZuXVNMKpV#m!03ZP|#
z6XTp1@5D$a-J%mUO4K>pi7|qIWBA>PKN!XeKRIhu$qoJqoSfyvL?<TExcV!w|2Jbt
zOm<?5h@8qWjdeQf3@2ua+*17VxY<t3VP~%J=P}H8VgbXS!tZk~a<LOjXf|--lM_pw
zSmwk5Ck{HX+=&%V>~vxm2d{Kun<%x)iPcW5;pAE;HVJ<n!+O>YtQ%<n{Q7<7`5!x*
zS+_W`mErTk#IF^NfbE>z;RM}iL`nMPuI--4-A>HjWqj_~!?}A|_c^hjfqeQ-;E)p!
z9{KOGbJ&T=?~{%=any-pP8@gQA1AKUzH{Ov2b^a;<-|Er!)YhZ2tLcueZMh22c3?*
z;KW5Ia##bG*#FCk%OdiM6Qjz0KQ^yA@wf1=(Xn~S_^#syJKrvDZ!+Ivz0G=umBQ!_
z;d@Tpr%e#f6NZPZk60hG{&y?lsT2P?@r;viSgD5R3@@B`$?!_}ubsFpzE^q6<~!E+
ztRGnEo1Fh>+IJ$(1(VD87U&Dj%r4_Tv9C@<xQuBtk`*pQF+{VHpN=8Mh4c)u!oS6P
zGXp0xvSxB2GeZ{EtgKYSnBQZv3(moilQowM-JTgg>`I)>=R&*-vI}NTT3DSfSY4ny
zX>F_o3WMr`CLFs94raRBmI7QZxVfx{H4m%T1s_9h)*o1@t7+|dnF+pq{p+WyrbH#X
zkRbd-hJXt};UqEWE`)>=?>7c>jSoo$T}W}^Zx^n)P{@VCF8uDoA1)MeA=QNjE;MwZ
zs0+nhsOCa-E}q6(l{M@_afT8ulyu=oW~#Zo3#9~?cA*S&S>cp(A#Rc}HC14zqVOxZ
zP?@<3>(S-LRn`d@ySs*niGAm<$y|%Iw(#q?P*-q07k*;?Svd7wn8Rm*MlLjFv!4r1
zT=YW;+PKh`ou)1{bD=r2sg~YCl<jfbIIXvIp%pu=h5uX5sCF*2r%r2WTxNH0A=m%(
z?wq^gOHxM{eszJM6DvVy7rHQa6;3x7qR%H$Ru55UPljGD^k(S8+E?VxzY*Ktg#j)M
zbYYMS8R`ah<uooM2fI*XsDHQ%LpX9M>oC^N&7)hI(vJ`|jC5fX^JvyFtiOrejh`aM
z(#1bD&xMsPjCWyz3$t99%>nuOqH!YgB-Y6;OktSHI*oNY>kQVJtklB!4<hCWUd}Mr
zg?S9~U0C44pCWgu3k#VS31_hjO9Xdr7rTu4W+7v8jy`1!<5e!KcHw{v2VGd>!de%0
z89f~MEjneL3tMTwbCLBfY+%?ZYTM*O%p#+P&BED2@yy$Vv)zRq%sYiM?o=$jC}g(_
zd#Gm;0(;rt$GTs{&;|A(7Y@5{#)Y$Nt}hsQMC2ZI;h5m#E}Rg2(uGsZr-d{9PQ*FE
zS6w(S_<{=;nJ)?FGQ$-Y{t`~58IkmEdfK{wT)6H+K{ry|xZ%Q07o2Xm+_>e!ZJH<D
zh;`%C+29=){&nG*3wK2g_guKo{6IJl86L4dW_`l?)J1QpGY*sIoP6<3BNK+)GA7KI
zF1&K#wF_@tc*|LlZsVYS=fZ!SB!18E!G({)`9$5@=lkc}&n|pn|EtK2;2N&*K^?^$
z&6>`Q7zV0yY9V@Jys;u$Obi)VGrEz9A+sA<7_z#Noq-~=F$@@+mV+TDYc7!+=f;Os
z#zxU1xgon@<}3@V!woBg%?-s3mD$ce+iA>H%Fd9cM1DI9yWQ}xlb@CDTBjJV8+W<{
zeeC3B{lSeqZsc_%pBwS)B)j2fp!gs|f*Xm#3Al~lvMGy}BsX;7hur8XdiC4Kzyfak
zI@P$GE96FD%5|fcn_e@7R5z-+QH={0b)&Q!W!xwx>Pd4W%v_wc1ZzpwA6ZMWQnkm5
zMV57=u{W{;JLQC5-i>cP5cfD((Tz&%S7xokdOz7XHmft&bfcD=9?l$DgOlgeCDmqV
z=td)kI&Rcupd$4cesbey;na7df#CZ?A{x8V#Eq`P`Gujq8%-ISxzU`Vg&VCITC!5j
ztr%`fk!^(2mZ6;+?|CRvOb2#4Qm-;}V(rXIxm_4?|CZcMINcd~u&Nzmd%Mxcjn!_f
zaigyr{oEMs#u&~u{bl?YslOXz=LH71G0=@c><?xg$vT8}s2jr=hO<(s5pI~)ejg8`
zsJFvL-~Q&t?`}+XV~QJpxbfT-s+r07cjs79YMdM6nJ2JL6#gWJsy$<;3TKfU)7+TO
z$r-G3-I&QRi*+_DRX&GdV;!Rb^W2y(`~?huy0MU9%)IYM*<wyEabu|)%iLJb$yKaW
z!wNT63ck=jmhKKEbFFaJxiR37(P``1*}%F{<Zf~!SGMr~+}O;{7S^pIH&g4V9d7J&
z<GdFayx8T&ZZ~FlFw=uQZtQg<$phVkeQxY`Bc}(sJUHOSK{xKZ@qjBi<i>F~PPlPc
z)Om#ADC;p+Is{JA^vit5jnfR&;J@8CLkEZ(=Y(^SS|a#@o9?tRt~xFW=dv4DnEztE
zD*T!Uqpval!+M?d2J21MTdcQPsY1C=#9cS;xzVmnQb)J(8FSOA&_g#Kxe?((qzBFg
zfydOVQNd?!xXVXA;et=y_?O|^5&hha7jC?C;}snj?7wDx$NGl#E$g=_=vygT*9SK~
zvQPYp;XgM%Gkg*LS2v0eGp-DyJc#xf)B9k4D{eXuvT!oSgV^=PyqBJnu^xbdoD3dh
z6r9Opyk9c22PrfL=-K-<Q?qhbHV?8h<Pec_@<zsaVDiA{!Hr;y<bmvg;(_V`{nx|H
zVOEcE-@b*F{-8t^+B~S?F*>kLwy@^GhQEy~7P|)yj(2*{r<^hCx;$`uzW>_d5o`2%
z@a<=*+#dYkK^_nCdXOM;^LgmS;^6~)XGlDoepc$nL=hA4AjtgfV?xM-WDk0J(947T
z9u)B4XAkOoP>?p?gGKlK<vl3G@tbodmGhvm2Sq%_Q=6!TsU8&NtYWOCJV;{*vr<5D
z4@xkX6wZ$f1FIPaV`&e{2)``D*8e5$duM!>q5i4BPDR#A9#r<AiU(CWS&OwAYjxHd
ztW>ZjLt201qi${HIv&(zs3&56qD{_a{9@aHorWGX^3Yq(!}Kd{V-K2mFuF$!{g?a~
z51M+=!Gn$*){M2C2hBx2Ej(x`xRnR3ncE1btp_W3{LqTpd%mC1h=1jP)11|b_Lm1;
zJm@M)b!X_tTCJOL;nainOCh7Td(*(6c6u<@gEjXe`g+jcg8>}b&jb27l458X=)oWl
z2DAU|zMymV$RQpK^<bC>_hXEw0FC0@;U0`&AZMfpzw!TJM+;{RIf8$ubuBR((}ll7
z80W!w4<>jp(SxZR(^*cM<iTWW-qFNHkNmHjq|x^wQ>bI}r;$Sir+F}4)b_4LV3r57
z>A>+q@?wq$b3Hij!3huMdGKpYV5JAEICwtm0@go0SV#lXgT<nrWeiI^Sjv!8#OQ(L
z%qv7pAU#%7Z9nUq$YFDh2TQ)tZ)(Q;u+D?^3>#R<+35NH9r$K;4zX_WU@OBm*1aBV
zXQ22U9_(b^C7j)K77$F|uIv-MpW%Q92N~*JGxq6W<|C{}S;;)+p*N}<GtWs6PSKwA
z;00}C!L*Z;qfUEphQ^Wy=R7zs;#&`lp}!_k`~?p#dT_~u%N~p?7<<oyD<b9w!(Xgd
zS^xIn8pA)VRQ$S!?qV%UK+8=JZn1xx^$zP@5!vuWy8FxzsJp1O!hg*0?dF6h9z5mb
zzasaU2a|%v$I_SV#CVb3i&q|8tr_{+gEt<$^<YMdaVhe=W9Xd+?>X!PYlIgcJ^19o
zf1J!%*Vx|A%wJe3`PBnY`4oak@Aqr_C@-SD=p7kMC!BTsZBMKh@FIg3j`GI&BBK{4
zrl)4|BC{9we-0E|Ve~*2FS2u~tgP8s?fib~9A4ws;he0wSmRhTW)G7udtvrsoEPK0
zuy|qhqPQ0&ys&wpcu~ZQR4-I7-cAeT<~p@+HM2TcY3)ugT!P(Rc$mGy@p*Bhr*Q`P
z!HYa>=Jlc=Lq0F!z3?;ZB0hm3(Te~>Q20p<y?!*R3VD$%{QL|BSo6<`Oc8z|hQh2g
zT@>}Am>17-rG>rpo`{t6DN!vWQqnlL=|rOs$tmf@k6!%b#m`=p@}e~7R%0#WMOlW)
znlT%fV=m81$qEb=Su1%_nW2ivt?EViiqY)q?9^bbDROHu)Ml;2T9>t+7t8Y+vqXI_
zynXy_*__oP(7=m^%#_v0OCL$l#EW0pX~Ei5<Tmr7x!`4$Vp}q|Vr?z_HdMLQIJ(<;
z>1Swk@S>v^qr4dH#jjp;q5<he9}e#9MNd(x3qx1dZeDa3eh;c`oN+zSi=A2ghigjq
z^<ofpyBGb~?=Rv9crj3L@qEU4aEKQp*cr+?jCHt(DNrkRq~Js60%HXK!SEaF@2n$7
z8mH#5%-w6nPVi!)7n>;Q#Uw8#Q{Qsd6fcG^49@qW@Ll69Kb6gCUQG95h8HuvnB~P>
zHfOU^%p5N+r#JSC?Vh2u%%kIlc>xW}he>~m$b}4xyjU!pB@9cwSSFkUiLooZSn0(o
zFIIc8(TfdUT)mjI#*5EG{JFD-*Ltyzo%O7Z($Xk^lwyjOGqhy(@MbTzc(L7!9bRk|
zHE*N+D85A>`a|SSy7>3v80YTxVh_U+uW|R_2(K}*?Db+FoBLT0upab&zo<Lp#bI_R
zvftQ9dTz#1PF`PQoH38nq{PXStfyE{vz}o+%X*HL;_F|Fxah?tFRuCUj}Mo<xI%sI
z!wet(qRsT8h7UD;_?rT}$l*gy3iIN+7awS9rTK*GdF;g#FK&8qi<7rmAF<wHy~}!!
z=1B%x?*oR1UgY<F-*+|k2A+!Cw+#Q%EWz-c^@YfNN%KGRYvH`{;_o-#Ki|D$^F1qF
z!G7}MKQFTQQ1)!#7cKbNi?3cp_~;p@!7p^cW)Bl2912AGjLAQP4^a%!tm#-|SSdHX
z53z#bL#y1zOp;MJnHVy&nvbWWtgOu0e8?_hs6DxSi1VSK4=FyFe2{!__~7IK*$2Cb
zG&5Lyurk<$uP~@SXu>)0AR_u7{~x!5E_QPJ@PiL-dJ2#a9(KH}KGtt1**rdaWp*&g
zPF~i0tnsXV)&$l>R@#<;59%%B5K9t{?n8(<nKeIa0g*eRw6R+Y`H<#A*oVUG7xAI{
zaXnSU6lEyp1Knm!!NrCDqYpPO1WRzTqz_%{8E5TMK9pvsj1QF<%8K}M4CQ^Oz)(^6
z|0@<*nYoH^s`^lkxw>#tw8&aM)b^o`4{d#@<3nA}YU;!OClMdp88cx$AAa&-%YR8f
z`%vF!yxgb5=cEQ4){wOkYhzZ5Z$hI>@WJjz4b3>&+=mtnEk$lChSoleOfa^woe%AO
znBc=iA3FHZk#h&I{>s|lhfWL>+?jgDhpwFL=0h)r?yNmnd$Lkw&ZS28_V%F<JAGOE
ziQGO@lK1~>T%`~6VUQ1lee@Juj1##-8AkgsjA1zI2-cCTqgbhUk*<+r1pns4@63M)
zXDmaz3C5QU<C*DLn8Yx}hp9eH7LiMrM{dvbeNLF>gR6b=|8gYF^kEhaS|4_D*lgAn
zKFsl9E;BtMb)FCY{YmqESm48(YQ{uL%bz|h6g4mMVKMU(;VkuGnGef3IXX+!zkL7L
zN*`9yk^YZy8d^<N4US#o!&)EKiBg+<SkJtHb))d<KMw!%VKXPU_^?g*Tfc?zKS{R>
z-sQt?=0iU0Vc17Qj$toN2>cI=1DqT`IN~790}W$~=SiZEW<5?sANJvh4@Wuo95rTE
z@E9{S_&CD})|0HKSWmN_VLi*bAS!Z5_V9V;{}Xi<&{kCM`{!QbK6H13aB|K$6DKbh
z?xnjM1f;u5x&#GL1O%iz1(fiMf|4R32$CYHl!SzI{@-~n`~O>O*0VnQ+3()7XV0EE
zb0$ue#c6`na7K;-<UgqAsDG;5^JU@XEoYZxBNcW)bKpu@{3Si+037(cEUuQt?XtL2
z7S~j%f6C%|S=?aqrtC@h!NgNX>~(ZY#SEz#cUL;?rS`HcUX{ha%D+drUltF_;$d0*
zr~Kz-@ksIGvUoy%s+?zKA-CsA{V(Xqfl|2AZ2dKpX{61^wKrvLeM`+S+zyU&*hhhQ
zYFcVKYI<r0YWz!kx1Z60tPW&zAd|y>>OZr?e%VeI2K?Q@4v;Ck1B>rz1s%xYKu!m8
zF<1No4&-)V;zlhGoxIe1DmTBwe#w%A$%Y_W$brHR6k+ar4kW&`4|7EwC`P9^wFI>!
zwG_29RU&(Y(w9+Omf)Z|sV)cH1P^td-=3q-0lzGi13euGIH1e3OAd5(z;M8Hpt1v1
z7;HHZbRgt_T<J>4t%qrrbJ$N6MI3nYTOdkDDvS{lsi~Kbk{l?naw`y$sVNRrBvewl
za#wa$2dX(x$AP*IEZu7FPUT8hb%%YutA+zL3AL!Tsf%)?NLD=u>a&ve4m5C}p#v=(
zXz9RTi<9I%42@L%jR{StO{vWsXs&WgEw^Xa%7NB&QX9W&z4ktnZ5(JzXh;2kD)DO%
z#&sZfR8A*CX9u?OcZ9_3$dTe}Wp$(9-GQrz>>seb9O&)9=MGGBppOH69r)0JVGi_T
z*idSJ2TtrT2au)6KnDgX9_+vn#VNP!jcY~ggyGUBG`r`r_q`)!Bh6ZFq64#g>7yJN
zO&CKROC3iYPn|%O$d4Ro(n}YR8YVgLF)RFpI+;3!`YClPRU$ugAhj7^h*LjdZjty!
z%$n}N#T+R!$TJ=I(t%mz+0?J7bExv<h14^bJdZlxfdvHd7dkMfp51SY=`5ixm42(1
zuuR3sDqHEmD%s*R<k7I&fi(_{cVmJZYaLi8z3s#_C%$%Iy^L@tOeZ!tu+f1uPQ*F!
zjRW60u*-qn4s3GZM#i}BSo3BFw#eF)71XQT=^4rPjwMHm=>M3zP0js#!VlE#)E(3x
zsXtM7Iv~4ZS&BUl>~-KDn)@91*?~)B$=dJ0X$RyT+P}~_;J`r#4yoK@4jfkeE8&O(
zN0sxN45!xbj)un__+9xY95|`?lx)|ocYCcf4xCl~AB1xb{7E>k{0p)M71tePpFCWa
zJ*sm4BK%Fg>cBO^b?ObO#NU*0yUyN8-g4l!19z1F)PcL?f2sEzxKDUMeMp_qz&=^}
z&w)owKBkKE#DRi2Qv_ss=D>61zaYG%zH;ET^4}2NI<RP`T_oO#v`%~f@1>@5qU1%b
zpcCnx$lyc*P07tkfD;)BnViV%L>97r0w9-w$l0ip%<e=Ea=Rw>8AZMqMlL6EtK2+J
z<W-!Hkl%>{%8~o@3OP}j$s$e^SAJ0^ijh<INb<(K64F{HO3^IsRM-EVDC0y~RVqiE
zeVNPQgwqL^6K?t*l`Ah2@jr=3fJVpXgx`sA&+U;DP%%1TP=`3niJ%j`oapUD$ceBM
zO`K@zM8t`x6Uk1bI1zKo&82Y_RM|vAIcgHMJT>+7{_7I<j4INp<wTvKdL<`nE!8SJ
zQH7@DRwYz(qB@}lwWiAL!P}c_OIatL-`DCYzaF8!6AcIrsf|=_V}f>0Z{|dEC%QW^
zb6)xuPPBC5&z$DX4CPxfpsN$zoM`RD`%biRqAkrX)OJp^CrArFAUtkuUwG+2?&w4(
zLT44Tr&PS0`bxmRqwFnCo}Q3DjCwfnbf?ynF><e<nKPx26MdPS<U~Iw`a3a}$pKCb
zB#d<8JwC)Cl?-xXFwG&<q0|qlk~@qr+=&s&8CcKW;f!)(v~tD}9^Q^CxJw&H9`D2i
zmHUws6BVc1ZV%&+nf%0w$%H8?_fsdPD*nugJY($x=od~*cVe9jU%N0vdf18lE);O#
zODASIaodSIPRw><juX3`*yF@kPRx}`q<QIs^PHG3W8kp%o$QdW*ylwHoLK0@BF<&C
z6KkAU?8Fi$ma6$KBcyH`%gHO8SgCSXInnu<{jao4YiWK%T_;BY6|-KB0*W`vh*Eo%
zZ=Kkr{LM~mQM}cOq9J<#_u<Q$wkiL6Cw_2ZJCms^eFynR>QB_2PV6E`@uS@m_Byf8
ziStfeaN=jD{l?Ko#p6#nv0ugf;=}<b4l;R&`kNDnRqn5ZBTgJuPB%9G7?a1H_+9zG
z@?pS}PMmV$G)-yY8NylWA1d;kYzvA#htuZd@9~RHT%vi|iK|XrbK(k<f2qj7WhrLc
zrySRv@XFgh=?mOo@}?925ae7}Ou3vWk$0W=*NNARyywJy!b>MgoG~6a@le$)uU-02
z@gpZ5D}Evy5&4;No;&e^T$9hFydsa?WS=v<apEnLX<SI_LOK`XT=vdirg%c?`bzIY
zMi(-<kb!1`ih&CQ`G8nv7dG<^u325!_dJ-zg$Xk>ak4Qoy9+s7$Vtva%|*>km3dXp
zY~N0hm&troxnfYzg+eZLbD_Hng<UA(g5^Tcg-8Rls0+niD8a~LF6`cAZ(j#yCzNy{
zO9ykoa(mk><w9u}-gBXhnv2hcvWgupI9+hL;HKkMzQ=`6?%LazOqvVBx4*ld=4U{_
z1)X51cvJeMq5Z#1$c3;A?Oo^~Ep#F3LQNNHxe!y4DTG89$`O*N<yCG4LNYa1jr0`>
zm0b8MVpVpbiVIcg)Sy<QR;S9W|65`&{+Zo+Z5O_;ptq!7hgz3f&xQJg2GqvXhAuQB
zNZIUt6Pmct)P-hrnk#=R-&D}Tg*t=ZojbK+R%`0}F0^r>tqbi`{BK3deV|zC?C7#D
zAl&P1kLphJJ5#$*yQ)aJ?9;=Ao-TYWo$o?Qw}f6UWbKwP$%Wo7^l_oD3;kRe?ZOxr
z`n!<mFbBxMBgkKSQhDkq9pu7b);Yw5p)P!=>L204FvY`Nn8aPdNIIja-(9x{%vcrk
zkqhI<<Eay<^2%<BnW$p^Iv2mOznP;(aI$ii5T>~BsS8udpSduP@VN`qT=+so&T?To
zd4_Uk%27bEyv%&I;yEsSMV?E2<g)kJ^HuHw7Z#EiQ5RE(@LRo0$;+rxWVs6~$SbL<
zsH>@Ks1mc*1&3jG=6V-4$hPK2(2b2QeB;7R7yfbKTNgIDaGmj+UD)EnRTr+gu$9gM
z7aq*CkNDq7(uHj@6zT7DVV4U(khfEJP=BOK{7){ttz?g`-E{U-_fYpz_faL_XBS!z
zuurpP`h}+c#DCC*L*&CQ93}kfdUxV?#D!cZ?L+);E*x{=ICIar@TUvEyKsWZlP;Vg
zoT5tbX%|*;gq&5*A1>UJk5F^I=V@N1UU1=}in%0v8(u5BLgz2)-zryInEc2{mN(hT
zt7!M+Op&*k-jKFsG~^X?w_LdG!b=xkxp2pYyDak9g}HTkb|kZ=6NtCF=sx)Y^&#~?
z7akEL_j1mZ7X#v+F!_}F%!TJF_XR<=l-Dl2aRF{*bmJ|}xLhd-ZXBu*P2;wA{&CcJ
zH_{TsNk>Re%|QL-W}1gHwV&qbncVnnZ2E$36r!KmjVx|tbt4;-QZ|np*~vMmIhCKw
zjogasR!PoF&ZnIGZWK@~ulOtMMiC}8YEi1ojbeo2Zj>ODbmMrfgfecFVp8T_+Ku<f
z8@k#ZSeEQixlT9w^ToxI<)-POdZjlm=#I(uVDr)OyAe>Obb>)O-H;c4N?6E^up7<X
zXzoVDji?)q-Du)QOqHrkNOYqdA&DxdXXV|fKu&f;embR)D^jJ}N`&iAjVgqy)M{>2
zC)9AGE}<s17F9~scB78ssx$0?RL_n2%4y(6L&c5U=+?qsOnKI+sT*I7w?3|FFHYyv
z_J-5KjaF{7W^hYcvme;!>hHVJ#*IES+q%)tEzhdQ%jK^R=yavFr%G@KLPs|`DW|g=
zT@+U@pU_P@Fjq=<Y7c5ps+hgp=uMXQg-TLt>+428S!HevP&JHnV<35u8-v{#LLR1a
zhr02hV!6XjY8cMs2=}`?!NeIwXS5q*2xF<^sFEwCK5}EC8(({{-h)YQeC)<cH(t5%
zi5rvM*y+YDH>SApsa#8O%U|S}DqDmbOWj!J#^-KKbE8L<<Rxx=!8%hPsGsgep8C-l
zZp?J!OEs@~gjv+t)H$+7RPJ2D`aAY8p6|v2CKpl{shGuXRAfi}k5`rB4{FQZSk2rO
zDrTh{s}#%LV2$EC3DK|JSkL4R>W0)T>PG4})NkF`MA%G~_H2=%Oa4wd+w{0?<kq=T
zzLz1CE9D0_wi6zOk|p^gbANK<UJ0x0iooO|#%?$ExN**nKbf`HjT3I1bYq_zKfCeU
z6MO9KcjFi49&qE*ciP0e=0PS8Q4hQEs~bni5`2tsRLUwR-@f?c<lmJew|<>c{0HGQ
z^^6;53Fn^Mf83}36CrTkjf*mC*%sn`7u@z!R29$J$D_+`{42}i#uYdIa^r7R=Pfs`
zD!%5%b;UObH>v-)F}#nxk;-&iMkdX>DspOzg!{6&^)R2&c|d(g{ZGX_a^tb$CvH4d
zTzs&-EkAeTg>vluzZ-Ad80o<%58k?w#)D)JQap(B*c*t`1D6N!9;Edkod@YXaMsof
zdys*-d8i2<fRK@z-GfX7DV~{-#e=NM$>u@3f%YCI2c4YMT-4kuCQmw^|1+77n%{#0
zgo4yURH;P1+Ec`XqD&U^po|CCj-)NFa!U|OQcHPITKVsJP^E%Be#+8uC_nX0Ty75%
zJt#-hL-l%~dEoQF&t%kNe?2GQf$o7pCqy-=7F8+_deE0&^9j?5DF5}|^fAS5-U5;2
zL3s}<c+jP~eaiHzvVGn)zJM;@jHu|r@LVZ%JgCbem8g}eRj5@xs79zxtwF6xtwoip
zYJ0Hkg8loho(J`5_Vb{D2Mx*HsEs^m<*{GlEn$s4XhO3owHdWJwFOmTS`rTTHd}k}
zz6WiT-@${n<aWyWz=QUROYq>>k;zUTbS89Bxm^jfxy$NK?m_M8fy}6v2fdl>LzOo4
zB|MrH-`|4)9t`wgRpsbVnuAo#V8Rfpd_3Yq<qsna_h5u_<ckucJs9J`#~ys*!B`K*
z$sXQ=9L?;m8}Gpc4^D2ef4moLnjnAZe8hqiJt&yp9!vjgnk12O!Emw%Gd!5-!4w93
z>cLbGJT>%1EfPMXv+Q!<a}TDGzo1I-=^lK;1^-exi#>Q67dOj;*~*#Y!B^zD9?bJ#
zK6&91`_L@Y0uL6d$VG%K1??X)OUO&9%RE@_!3y$957rS@QCCyfP^Hvb>GRZMhupSZ
zBmD*sHhNIfi&9>E<H5Hc-0<M02b(<D?7?Xd&amJX4|aL5+k>qheCI(6BX(ymo9Dp}
zzp;%m-+S-_VLNpP^+)PYRGIru4?ayFc)Q$RalE#N=C2;?^<bX|+0CSGZz4ad$o+(0
zs0TbaNH|12OqJSZo=rI7!HZvXnT~q!8~GUZxblA|oS>fc;FR+3)<{0fdj9g@Zx8+;
zpQHY%>OW7o;K4=ZTq0cd;EHk%HBY$ev2Q)Cde~km*T~nY*K(zZ|BnZ^Jb1<U+aBEU
z;6D!@d2pAGr-d1x+dk*{*Mobi&ijN1)Q41g5!qux#yi>*+3S82IC3w|Q##M6&#5n{
zFR4<e-=FZ>gEvgRl~P`0^CFEGab67HpFGX98yxRNS})Rhk=|<`7cx^bc#%MW*FISl
zKO>WwsFEzcHN9N2$l}Gz4|RDAA-fkjyeR0k-&By(i%Ho6`52i?#pm`SkK(*uEZb=B
z3Cm2@@_Qj#K*rt=0f9n{DNHRwElMp$El!n!B?#r3#+CNsJuhZ?F<a{KqO2F=ycq9=
zg8_yYrWZ~xTui#X`0%9vM8qDq9xuGAHq8s4V!syw#kv;*uG+zt7eO!Dd(pv*HnpN5
zFDiJE%&@Q*5kiz2qb5?zQIn`rNqIu;8Cr@LMNis$o*Hy2dQpi`Sw&VMRP~}7p}O+r
z8(}rQsO3d%FY0*F%!}sCs_R8V6;qE;pW48Sd;IiOBPJVDn^2olr42dDC$~`ChS1WB
zR)p4GyieG`4~@-#W}hInrPGf3fftYVa3>&de(<7~7rng*PuDtm(U}2Vs8Xscp&PY3
zwFkAQ7yoXwPjqGK<3&F&`qS@AO}*MPz>7g%45l;Ci=XS+18)eEBdAh#sH|D?FzRsS
zH_M!MBzY8dG<A#@V+lP*B}fCL_yjLL^5P3GrZYLwizBVA&t&8`Hz(2g*o#lRIC$Qe
zOf8x_WeVX_FQyVCORH#~{Cv*%Y2J62CS;#5gU**;>?=`jCV6bVxU9Xb4YPxDy!gtC
zb6))El`jfmp3KpU?_^mD#?SX+ffoxIU-D|2MP4lSqR#<s3!Np@_0*-ZHF>ezixo_+
zp-M|u%Em}utsJ>aZ7q2n^=sv48xy~QobpuLNchH!ZwZ^Io2gRg(qZWfjnm3;fAv2v
zwt4Zr>^hPHrGE(g;Kg=^{qDsM6~Et$AHDdA$(>&8@nWwRyS&)#g}hubb&_gj+9zw4
zVa0hBQ5?zrh0X!#VJ{Amk5Ug)f2AIwO8lUeales|Dd)J196q6Z^|E!si<9(Esoc|E
zoKbw%i$79x^V{S3ycZX|c;&@wFD`m<NyfPskG;6en185OWD#U<aM^CWOn-ZEmHsvA
zb*lI`ytt`Y-a>YZeA|mVgu7lmB>YRgN4-ydK$RLgPqUl!ACnaxB|jlNrH=SrZ^3o(
z%!}tL{srNs+Hb#MGM$F>8s4gyG#cVGd*sU$uOTgY`>1!@at0<dQxh~mMP}5Hi7cxo
zwQLq9vuemj$WF~cm4KWYaw)DqE=^ty`J}c0G6s-eLjesPedr`#7}iio!#5hf)lgVN
z5e-8%e5j$QhGH5%(9m8(aSbKJIhj<26_%vNG?da%n*1Ksr=g67vSbHU)8HhysBWr<
zDlPPCsM^Io63Mi-k-h!;nHA8W6ATR|!O{>`rGkWzH252P-xX1QR2s9_t|U=IIhsit
zdSuY^-?1;}mZwueLoy+ST9I0bDlwHcj7;6Q<o{pI{$6A?4b?T&&`?uDErzwzP+P?}
z(@;l4T@Cf<G@{m5xeYWlR4i3BCO1(|Qw<9^ujX`GXlO}jrQv--YZWQi<=T+jDo4I(
znYwdcF+e_{YY(K(8iYGiJ86(>=928ftgfn5Hx1pTLzwJI?XRJi%I&S854o>$`e`_`
z+y2=yfX+bbAnIThGepBSF2yhn!!@kdutviO=|&BoYnaBcQ5q&`_?SGJI!41-Rl_(9
z<H-}KA1QyLEX7y$7V(LO=GX1jI$6V$l7aF++h<KvG<>QerxHHX(1HJveW77GomCoU
z5N2tZtzjnlORCf$9eC!5Hb;Z}7?d|Tf2CnAv*uBkQs+|_P#0=gq+zjaIECz1Eukrp
zbC^8{mod3q`k$~;<$jwt?)hE&z`a((^(1}0^4DqjTCsdGRRT81@+xQcpGliEY}W8v
z!y64-G;GyyNyB9g-${&yUo;$$o@e|I8n$crUPG|8S){W4i)n|3A2l2*6~CVWKT&tm
zk=$KO?xyac?xpUd{!EoHxs#_tA>%E7w;t5+tA-;|gUUTDI|u&Xn(w)Bl;&^L)YlFl
z({NnF?{rR3|Dc}KaEc)HpC+8qaF)<dy;tWPlYdgrYq&s=_=_@hSK0p#T+#5ChX0iR
zw}z|aP9NLrCFPWLO}bj;-XPr6@Q;RD8g489Uk!H@-<9tA-oAzYo`(B0A5b4sJ0vB@
zB)N~6l-trC6P{3?QlC+uQ(sVDYIsGEf>SOhywxBd%c|x>bsyq<i1*pstl>jiAJUN>
zKBV^{gAaLq$mc`FGl2vj8q80+U&(+E8GXpau<X>#RH-2gA*&DBlrtz_Tn=(hYA$MS
zm7B+hff?=Fa`O9dCTed-#eFEi+=A3X)WXyv)S^_0Eat<hO7H%$E#X5+<(KlIH2FPh
z8ERRTEA9VvvF2pb<%3)K9v{3uXg>IqQ?5vypB$j-%0H1i#q`1QA?QQMhf2y16B4Nr
zYLpuDy?Z*coDWI9ch9tzXO=8Q1s{^hDb$L}pIXme#g&<?;zL!!eeT(6_)wF{#y->{
z^fd$bDks$@*P%+;x<1q+*QYk1Hl#M9O3dg2aZP+^>chlAW-}jJ`yd~}Zmx1$5L!}O
zQRVZI?-SZk+xpPXhY!e7TL&N7EAG7|srGhz{CD=Di&X1JOFz2$(9MVMefYtL?mqPJ
zVU7=9`OwpcUOo)>VT2F8S;GJs7(Vn-we=<RqxPrDoxKZmeUJ~c*86wzmWILfhxjm*
z@F7(iFigg3o)m$RK8*5VvJX?3HQI+sDrO8}tPkUqGv0>@<d3KmmA^igkY<GbF_WM8
z-ksG;<)8ZSg%8txn5rT_BYaMsMwMq(vbVO+E@r5hnS?K8DG0Nv^4?&Hnd`$mA6EIW
z+K2f*EMV43>OyLIespyac`<c~4@(Kls8Y#tA66*7mB(Hk)2_sC<NfDrd|1n@b=1v1
ze61qa`>;XrM#4ALZ>gK8Ju=#Rj4kA?K72<I=YKwIBg?gYNpAOHhwN4SNax3oKK$gv
zMISCPV5blJeE6BXO9nu3W4G*%ng{k!_saH|Cq<G{$$lS>GVB-X0qQ}j<R0?jF!@*N
z5#`HcHNTOMQIE@}M>yfbSrv0q_95ic$~hxLdbz!h{-AS?`lk=)2^V~b^|iZkPlA2@
z_OcIGe0b%<Yajmd;cp-As(P;aaP_8k-G^&*<o~|Z6QmnV-jscUio8X*?ZX}A%&_AA
zCExSmKH&lN5%r-D{}H4CBR{f_^^bjc;=@xPp3#3neXe4hXX0Ke&KQY*Lzah3rJzi2
znM~tHoZnud@l=5tIpfm%k-?9UA7PsEP3}B?<RwGm_h=dY$mB<6KeDJ&+5O1sx9?ra
zM(1GvcfaLxFqzYjT!h>z{%-a3`TWT5$9sO1@uPt93lR!Z<s~EoswNlqqlh0x{V1kl
ziW743q2?0glGIXulqQVn^lt9*sk^d%d2PFWBZtEerynjq+<ticFc|5jO0J)vQGNdZ
zyJ8%mqbtW$@s=M!#gjjei}(>`vNkp5M`c2yALR&1epDjJyvqAgft*ZDp;n}p<So7u
zlX@3l6+f!d7pEGbx*s(NHL0~!uH3^Qw_ny_vaTQX{HX6o1C`r|&`_3|=cQ6xV>(Uz
zXi8|NBAZLW6ub9Y`O#WTKeqYtz8`J;_|%W7ezf(YogWkZ_N$mb@T0vSANnzj#XI;h
zrk_68kB)wH@}o1&KGZH$skSSjn;+f%=;23CKjgXKUNq%S2?^+}BIVP-lI-h8KRW%D
zKfsTH<U!PWDfTuygtHz>m0K*N8N-=7N@kJX9^NCE9I1L>G?U_w@nbA`9CbW(0`()R
z#58G{(7+ov$&Zg^EYY0ohkRl~z6dY5Q|L&?e&)yLeys9iwI9>`_=5gQ>U8QnKV}f5
z)J&;?Jc~M;I*0ldRbu8!-<G$RPNw;OEbwC?vljWW#E+%q#nhY+(n!oQKbHHkLN-i(
zS4DoCUt8`^<<vVCBxVicH%Ye>#92r9n!294fx6L;ZwM0etsf(=+q2kAXA5;J^*a?K
zpD6v_k01QF>c=&j+x@uY$7S*kISTmklOH?%kQ)z9(A?$6Zo(cve(~dgAA6bHNBx<)
zpIS!U*?3Tj(~-s;^5d}LU;Q|uxD_7&|ILqM$~jK>-H$?j>>oHMnLOpkX+O@Wm_G?;
z{rH1$PWeOS8C&uN>P6-I_^6uOX&<Mq$gWTMf6F$TC#8L!6nXdlbw8f?@zjqSe%xfh
zKYsj6xFzRB^MkilsXK(ber&j7_wzj_?^7SBn1_D+M}DN7$9`<#bt)<HjOKG{nuZB4
z{CG)zMNJp5w}RK?H-5ZL4WlW3TmbQk(*}_GGf@2W0c4<`Ks}R?BI7($0GR_QrlYuy
zED{{RngG@YkS&1h0aOj3S^zl$$Qghq0B-=f0>~YJOVyu;P?VZCfPBi&Pbfew7(gNA
z7Y?9^;(PpIRgB5v0hCaFNkS=V=>XmfpbWVz)k$>(a4@(1o3z@O_I}1qQ(!bt5w!sH
z0E_^90r&$5NQZQ_&%;wy-Zn2EOELop1`rCsl0~bbS8W$~R@w{)5DC~fM5VC8XaI|M
z>kB$qF;#zJ0Ob@X5z135P?H15+w<Mgsv@0A)XLN<0sQ}OmsAg+QvjU<s1ZQT0BQwL
zJAhUU>+;yBBVC;>z6q0csr9J!186{yWoZ~dBXVQqRBM@VbDh>S0MTXvG$*v6wxr6T
zQ?jIN>j3utYrfBdZK!Rj?E?6K(4N|XD)Aiy=u^S|jn*ZAt^o{rFEBZPZUJ-;U@T*L
z$f6BTGl1Na+KbwoDh2xx`UcRC&|mqV@s{a<Ob!ZQuvAVSN*zJ{kUA`Y;RLBoZZQ=d
z8Netyqm@4<fH@ohk~=Pd9zCq_0ZdT29}y-7FiANd6F#BJtBj`v@M!>3WdH>5Ve$A`
z0n|U`|2%;EWz89knMVC0fawI8%YYH~@SDlxmjPVwXgBQI2j*-#a{~A(fVt#(0W6Z?
z6u^8Y7f=^crHH&iYYBOUa+U_LO!0EILBdwjS*85d(*O0%hwaUE0emg%G=O~ptPfyA
zz<&GCPXTOX<Tn9)8^9->!*}ECXKyzJuqA-4%-S5lck{KZ?e%^)?LF0Zs^<R@wgvD#
z;Rot=mAixRBQ<$i+|B@Y1+ZJj!wjuIUq`=(S@KnSsq^Om_6P7hfENM$62JjwU6bvX
za5RA52#2VL1Nc=|Ty^~jwbL&FVX5R8b1w&QJb>Q=I1#|f04~s!+*5?J)YH^6)X@|4
zKM3cje^Sp=rBr<8v=<d$A|xKM?_;?Vz+VCUP3J20UcZFYZ+2e~;0B$W)PJe}1aOOR
zn<_QjA>0k%(GdH9a*xUT0XzucVF3RH@Qlu*03HYMB!H((re1#k|A%`?3a6Sc19%lc
zoQ`-MuLF3)_)U3IHpWM*ChBjQlo_Sb?c;)cH72c&bmTnL^g1#hNME?To<T=~4$zdy
zY&tTMGf^`uKZ}m6isjvR*~vMSlT$}7a&F~ZX_b&yaXvzR9R&ylsfDP8sWRUpgrd|7
zEvyncO6r)T<6|AAbd=W7QAZ~o@98L`qpps6I?C#B=%}q@1aGx+>d<u<tih$jt!nn@
z@G91H_{e^0K>4q`#G5)SCd=z6+{X+`KP2gL@4d7wq$8{&!rZ8iBvmR#NYqhIIS;O+
z*_)VNCMi{cX0nbH9TmxybW~H3m334hS5;2xJ^$5p)Sy#S`L%TPxn^IDtfQR#kL^~~
z*U?-@3z`jdG*r2b2#s|#AvC2nqaIaz!kby`U3W_zt>_E4*73gLHiWi1+7UjWwpY0w
zbQENJI_v17W1x;fI=brUrlY%#9t@Lb1O_)wmTG;KlY8puO|uvE&X@1rDAh+tUpoD$
z{iy?}^0kYug#&|iyy%?%Lmk6(43X8%KcI&);6&G?;j-R!Ow@5VPs&J|sV|5dMV48Q
z)-gtg<zN1>)N$1D)Cp9{`iSs`pIPreSN}xEWF5zK{H|jP>-k*AG##Jnn5yG5-M&mM
zHJ7iDEZ-29pEF<Rn6Ben9h(?DL&tm_3v|qsvC3bsU+S2}tl88#RH@-B!dxBml#{M%
z`h|+W)^R@=Sfpbyoh3S!>R3izO<hi1L0w6eI#<c2@t%F{LZ&r3*3w_6a=TQpk4o!x
zY*5Zd9p8}m?z6M9<kC0m_)*7CI=0Z?O8rh$#(zOOMotd5>G+<$B!AGcoxDRi{dkM}
zP9_iN*rj7Pd5?~t342xKKH19D+l}_q{6&9v|B2LmP{$#fhpE3(k5DD|sE*$hAJgT9
zX7&%s6FN@n$YUU{fm1q8>-bN{BOPZLc~!?X9cOj?!Q?sWB^`gNdd?Fr=(wny$!mBa
zh{-F|zjXXfxOM(rKVR4JfKJWH!5cbm>i9>;EjrSqJA~UhaxT^uc1XC(<iFH=)caJ4
ztbaUC4onYq<Ui<_cilhM@kB=&1967E_kOD5EhC?)_~)`|kY7??DgU*OH;UWcOq2eS
zcH@i@&r15Hk7hBDmYj~7o+|ZcFpxlofsBMq1~RK$`C%wKd<l~&tAT9vv#Z=326B>f
zQFAN5dU9Moa&ZGC2>A^ZAQUuE$UtFo5d%dDbLz!ib=hM~rebtDG}KEH#PJv?W!Nud
z5H2l1zYMjkig6flDs~xgllOIcx2C)X&V>RRO&`@y4H(b~QnNuYsZHe@PX@yBmq=~+
zYa?PHYT#fc9IAvE17aa0%4DFNfg}Uv4P3VDl~ut&vVkEchMGt*P|?6K1IG=>zblmu
z3^nkffhvamFkM3fjSN&ZP^+z3%|LYnH4GfRrPVX=_X>Ya@eRnXskVW-(uePx!gUP$
zV;KVev&O_K$wk_j^$j#&yu7SK{t;_zpoxJ_209y%wcpf0I|EmzYt0Nar_+Mk+CWQ!
z#I)jE1m369hT7J!ANmus?Fmhae_)`!Ea3B?oX&MHup>FCqk(G|wE~f77Xw`l^fA!a
zKsN*34fNt1r?fG980cxB<EEt2y~Djida)dO+UZ(v=E@?-Yr*;%=x<=4fk6f~g_8~}
zP8uLXbh;)FLe9Od4VDf0nX$5sIYbufnqOExY$3^E28J70X<(Is5e7yYm}B581EUO#
zHZaY=7Y4={7;9jnfl0CvT`|T<hZDw2UtKl^KQS`rP5Fq<l&41H)@Gfj#>WPx82Hq{
zCk7@Pcw8YlPn?<UvEiC(O*QbDfzJ(yQ?5W%-iRo5%3CyFwlYsWF%GWNrn9Oq4a^`&
z?o0#wTbnta8cWV;vkc5O@ZgCdzp$1(Hs%^=(^6k(V3C1&1|;TuD|5b#kWKyt2DE;b
zG*242*ns%U3@kD5>anp@R{c6nYN)(Au-w4-$3~vSq!k9fo)VB6RvTDjV7q}87tFN=
z)*09$-ICdmmV9ksqk(S>td{}2PLtpb2I4CwPrYn>%UNt<o27Zu50bmtK(%E)Ekkgt
zf$wCfbE&15zGv_@181uw{odF5!N7rge(4`sq8$c)H1Lywoic0;{A^&CH2a(;9ks{6
zZW;Nj1Jd%;e%mVn7fh*ezky#2{A%Ec4DYYC0|pKegbx~!#t0myGpny9T;!$ysDa<O
zjAinsNKzI-`s#NBCkzxcQOLwe88b3~O?yi`ZQzWoM*~l!%?AFERUo^d{?<7Ie@bVP
z&l~nn!pjD(7`R~Iq70ZG)+NJ!Dy?25+U%BJl7G>>Dg#~y4_QokPEGW>fg8%%P%BxS
zPG<5ytofFK+Xn6!xXa{y1Fiv<%w48`>D;4s*{w?h#C*u)f3mK7S&!JNPkLHe<jtQ3
zo-r%l#B&+d-sHEkDtlQk47`+J*?m3ni}}XDYqBJ_4zT2PL!xO+J5uV8Gx6i{z?r`T
zX-!DA=}c73n<Bo1WiXLo0wyw=$ZJB{lgUJ86FE&R>tkhML8(6*Au9vg{b<iIyNMj8
z-5!~wDhbZTBDqcEA&7HwfhHB^W7+&B3YZw!+mcC^x3GyKCTg0fWumBwVkROcq9%%)
zC}GOGn4p;`X+o~`l`&D)L@9D<>U-2Sc~d0UVL~3|bD5YUfBu^G%OQv6O)0&`FG)8|
zkF+x`DoG!cQp7ajHxV$QOFwiprHEl7X^meB1||pPp+Cz+(1cVHG7&bBdtvhQyeU$H
zOd|^;W+Kr<MH7`wl#_NYOqQ}0qz2X|T;4>5nZairOo>mHqksuvc?X4<l})tkXjWtU
z1*$MvmD+Ve`sxH(oEj$NE_7*FZ4-4&v^UYgL|qg0Otj@v)Hl(<L<<uwnQUmHiHW8r
z8Zp_JYA^D<U^5eaKQx<j0VTOUZ;B*kNi(kTw_<m_Z=$sc$&zKy)zN%1H`s>7g{6je
zCO%+N+Akf_(L^T`15Et;$S<$Q>};Z!iQY0QOmsET&4idesNJcu;NtWo%lZ=bF4p?6
zqxw<%vU2zAp!oewG?Sj38I+zGXkrlCJXi+9Vom1$OWu?ZO$;;9*g_Kv!=;N%yfN|C
z#7GmPOzbkT+r(%SV@#|w@wE(26XT?Q6JMDaZ(@RJzl>tKiH}T7lnueeWD}E2%)euF
z?x%k&#gmeKr~Jap>zh+dynn}#>2t!TCZ?MB%!It%E7d>N-kioPdCKDpLWk{sseguv
znViv=CT5wC+Qgh~+HX7%kjqDNnY+xyauf4p?j{z{SxjAMVv&g@FSUYq4T+a4IigEU
z$n2IfKwyQ5jurJaver)d1y-6^MQ8FU|7wDiT`L=1eN(PGNdwlK_~WJat%*%0HZVZU
zjV8V^?T71yWiImU=Vs1jyNN9(wwm}(_M#@fH}QiEp)z)WL~i2}ecs-DRo`xy%w1py
z3;sy`i7FNDG?Bl(DXraOVy}rOGVAu{J`+DnV@#Ygv7asZ)x;4Q9wrW$I7sIZRce-H
zIjmTE@2H92m^?#0Mm=TXIN^5_Crq4~qo0&9aL171vZh2&GgsD;u(bayyF!v(UTS}u
zxNhQxiSs5dn7Amz_@(w2^%7P3^D^OzX}>o>a{p#h>bYv-8d=OqFSVN{{xR_%=XJ}(
zZP`F%zhvSL*SmC4sJ(fY@zN?;miz3b2UO`I8Bwyz9-5FaNj_pd(%{D?#20wVHT6sm
z0VZBB_a%p%w?(`Jydp~_uL)Ag`nyIN3#Bc*XCcl)yoIzD(pe~Ip^#+{p7a*7TgYJ{
zgM|bOu#nM0Hp?ERnJh^0%v1qc*esSkAhRl`aeGse?KULmWV|#uFCiB-w`FfQc`U50
z5S7|w<H~0tzlGoK8U-wSa}cv?2UC)TEfi&)(w-ugJ;GOaPhZSJaSJkw60EHx17ws+
zsZy3bTxArMu~61R6$@1@I4n3V1TBOtdqZ|v@LJHgjBX1a7MHC+8th|*Qjc!IPYzIJ
z?TBfRO{zte>!{*~EkrCNSt!psqZSgGD_JoMvg)Oa%CYg%ep#*xT>Oeu>4#)O3Y#HG
znJUq#Ozqyltj2|{PpxjDhJ~8sI@DTJ>5bY1*#_$>r=A5_Ba$Uk142U!jR-PUr7PqV
zsHug|EPQUEnT6&ST3BdlVU#8N!{k;LT3hIAp`WzGLK_R6WbIg(md@AKLI+t`3+*iI
zO<(>43tgW^WNI(V?l4nX{xOlsYLd`Ja-~Bo^s?-a_I9(-gCN|UGZK(e?IVFrR&sA<
z^|2sHX@gWQW`CN4Eex?Rz`{T#?^?<4H%S=8IZC8VLoIx0VVH%=R<aaNo%?XMP3jq8
zVI*hwzo!vNj<zty!dMIAEKKG?jc2aZGs(gP3m<VV&6^}lWNxh{3G)2T$Bg;J!scFK
zi4>h;;d0)TPuUMsStMMl+`Mhc(=2>p;aaw&A1zF`FvG%f3o9(hb73>35({%Jd}$%`
z0Be?o*-evYTbN_vP2Lm<&@-ioFECFwD;Ak=VS$B(78Y4pOy`bYuURQsV)E2UDwkWA
z$I6yk5ObM@0{QIXbu*=`w6My;CTXpO)fU!R*vPVLsb9;Gv#?Ipwz*PFDwhgn+Q24-
z@}+!3=UcW@e3|1G&gFYLTP=LY+5L}U+bsL(w$vH~exSMC!VU%xsuYt}HO!atlZBlY
zc3IeM;izo&GBAo8do28HVZVji|0VCW@PotHM_=F<%YGH=ugsF%0~QWi7=0{oNJeJ9
z6oJD`{vHlW@DU4B@}+bwY8<n0+`=Cg&RO`~!peLpCoP<^aN~e^LWWSrXy8HeX$xm8
zoVAemcmKmo#;$xRYi9&6=1Y;M<0UzJtN%}CU9fPTMRMh}<ZD(JEnKo7{Or6xx;5$5
z>%bNMuK&xz-xjXQN|(J^2n9m8F0+&25yX`sZd&+9DhXmx5VtJcwh#^?62u(~cP-=&
zB2N(ivL4wg(*|+R!hH)5EIg$7+QNSp9$D}1-*~JdpIdmM_^E|wieL9hctL(ieWiSP
z2k9H~TWXr1{X0mexFF&c=W7_3E{OC&WT2Bhh#WyA1c4wjs+eqqOw`OlWKn+BAcB3~
z{hQf_ufWR5EO*PeT!htpfGBSe`GR;ah%!Os528R2Z}O!`GYSS#D2Sp#6bst75)}@<
zyJxZplX7)YVv5sD<r4HuvgT6M(o_j6Ga$Zf5RM@HbevQl)kSqvJyePJ2B9gg-sRmb
zTjB?T(3NilVUjIsQ2C)CYF)PPD~JXW3ql4`jUW<(D93;lY7#ZC$G+TDo?Ib_WWpML
zNu(mV616f_BC7;Zm0XQlUHS4A&YCjQAZiCuCx|vdv<;$e5cPr>{@j1=N}zra4T5OF
z_=c)f;~*N5i{!U^y9v1|wV8@(PLS7?NI=UVS~1z0`o4;he<Ioi@d1;4gJ>T_hah?e
z(JP3KG&=>+IS6@vM_z>0MV0CrguJg$F2Z-C(_Q&Jf>=<~zHlc~?;!fnuX)VA)|aXR
z{etMv^*(^P7TZ5Kh#^6IAH)wq3=QJLAeIKPi~+-fm=nZT(i=gH2x6p~*Ox(z3Sx8+
zV}ck<b7~Odf*4PpOr1cT6vRganfpXS=`?|lmGcQ<F7K9~62zy<ulXj;XF+_<<TUDx
zAihw!(+Rs8m@}2rk5AIg3Szc$I`CHZxj{6{pCXrJ=h2@}T|iw(T|`|>l@>0MJ;qIY
zl`WU8DH2^ze+Bi$d*;fZd=1206~w^&DXW86!{l1(I;!M;EzQoKBCsKdjV$;L^*idf
zL2M#yrf#8brOHfi^B?*D1+h&z+i#@lkeswVi2bse|E%qx|6|a;&ht|cJ7pW8le!g4
z4ZE4#L){z1K7#l^2Vo4dm+O}x4$wRpMD_0G;UEq%nOeiIK^zI<D4ml*oC@MM@-eCu
zKQ4nu@d@bxj-S&(oS}K1dNznZRE+Uu@;TWlok;pqIdh+-xuE!B5SJ7;DulmeV9VYz
zgoF^T(tjAle?eR$U#H$s@iz(o$Wb7O+vGd4?g)3O|5ByR_FEvx50tYykno6{CiHH<
z{g}xoK|BrO8Tq-aP!<1dK>C;DSJc<kH!AmS5K}YS+g+%Q85cslsxxf}>B#AolluQM
zn9M`XNX-;N%VSBIL&y?BRyx^2|M%sl>>=c!nUk7}DznQS!lSG9e}8#Hc<Qq9(U11F
z<kE4$5DJB$(J354kr2wLQbj|U_E?jcV#+B_C=o(Q<&+AcwBq*&BafP8Ly%wVGCM~I
zPL=Bl!5xB!Nv~?Nj3qhfNTe?Wzlscmper^)Fcn)N1Vach8K%nL?h!(idZD3xw34Zu
z^il||XeLq1hfpDe<PcJrtV^v(trSA#5UPYwHH12Jq=srC)FfA@)}Zd@7_LRG9l}Ju
z{9$TMOP(KDUKsW0*QZJi4G0ZGXhdjCZ9;8IZANWQmG~ARWXu-d?~gRCLwG-g5#=$m
zJlcfNHiXUPu%(>bD}oQ?3@3^kQM3=CLkJhcxD-am5ITiWG>l?lbPl15#Ds7ogsvfU
z3t?{v`$Fg*LXQx>3E|ridWO&|gjFGIJQ3&}LZ6U*bKuGl`i9Uigi#@k4xv9+&``E*
zfNJ5u5C)M4D`!Xu*=E?|N~RBK4hvy8VT6hqDO)J}ZA=JbS?!z<#)U9GgwJJwg)kw6
zj~G0KIx&Qg36oR}v)3kkqIhx$m;YxEm`~|URsLrotk`A`Ihno)VJ7|Q)EO!!cRu?b
zfG<OsrJUIzq%B|{m%j>OZV2<}FH*VlLs+1Ap>*A7d%lZ9SQ5fg`pZ@BvJi^19tl_x
zvVVivFu=^*-(1a@HPp3K8Sv{u_*#`+AHoL38$<T%E2ZovS?M9P>t*c;VGDD&%YZbK
zx02=N_U}@QP`8EfJ>iE`Q(m$+!d}uHO#T?cPlTN+cUK6z6>qqZCi>iXxX13dpJ^Tp
z+5b}Q58)Rk4^UHYr#}?JVJ3eK;Uqyy9U&a0{zg4UJud5-ATcLGD7^jM`NpXbPSZaV
z!r2i1AfFH60^uC>Ppa&DFNSbQ#t)O1segs=H{nXizGfno%XF=Cf=o6rOW=AlJ9#sN
zmm$2O`49CLm+p25cS5)u!oM`1QSXItpYTBTmISHcVF>>zZZ$jpG5Lvdo`w)r>-{;+
z7cvg{o*60oI)pbNyrn;~r<o><xG-{u?c+#1HI$N^HvI1QMY=H3hmj$SgfKFPk%a*W
zBV!nu!e~;+E;XDliWHD!)-bX$CKoj|AUion7&!?N+3Z+cYE~XPdBey@kR5M+LIG+)
zs>Bx}6s8slL;gb-vv?RK!sr@Cw=hbEQA*kqM$<4#hcV~5KRJw)Fy3R4GGUYr!x4s)
z$ygXJf<KG^!A<pq;U#EPnT0Qm1r6*yiB2a-HK=A71$HG_DspEhd(DQz2-AruKN^Ny
z{*o-25^0tTBT40!52J$OT!YhBR9rudN@2+VR+Yo3qSi&#Fsg-7UB%QU)S%W3qn7e}
z*G{NIu1l?_e0h_91H}yqji`;OvO1a(o@~@wNIztYZyv_5t^PG7dH)ZyT7}U%jQ7K6
z!=x-xr!d+oZWqP}<o027Aao2vJ}<tin%y%wGpBS`kzHi14YBuH-NWb+#^x}#gwZpM
zUSWI|#^+)5X5`2))*SNpA@>cVUl{$#LsUHj!q~JZ%|Ipxg)vz9|1%PXD*jNGLh*3I
zh%hd6v-ioPm>eC(7{b^vCWbMIJT8p!gbCD-s8XaZUwiT~lb?q1iSj2Cri3B86bX}Q
zDjm6};(4vOX<;l3V-cM%!k8Y$j4)=Z)%sN!UovYJbvAVlRqE;KjhjoJN1d<y1%&7P
zD&J!AD(VvI(lC}0mQz<yS5l?UP%Zl>)oLc!gt0b^b>y$9-%!_wv4J3w8^hRt-Cn3~
z>1<NIyt`m)7~h5QYZynwr2lA}e{UGu$lp`tGlD;au|13(VfpCNyZ+e~#!uv(%JGdz
z*sXXE;TP^L_l5DZ^7p6uVH{A-LBgRh4l74)LXf5&W%76!zY&h9T-n3?uJ}Y4C&M@u
z#%bl83*(I9vtj(9SYEC9C;7Z`F37f^+1+?Kj4NUM62XB8{tDyoFd9YBID)HTT$8Ob
zg4z*W595aH{UXQ}!ObxK31iAIEo}sKujsc};gc|K6Yhj@m+)^G57oTx5$=caKsn_{
zC;X@QQ5cUE|F3z%(=eW?q4k{pi!fe>@k+(KCA<#fjdDIMfiw|&y~I%k;v;A=%HC_G
zqmw>@41@$~mI$CCGe(e!oLM=kV=^m~*&@hJ$f0syG)%}HL7oT#5$F-*mA-mUFBw6p
z2=Xx|Kea#v1tTb=N)?Nsu;L;S6eY{WI%#2XatW22N1ptR;Jpa^bjn0fmY_x8Ah=Yd
zGlGr0Lgl98p?X#Bno;&%%g1EuBQr8`j0j9R)g!PX2u4tm$&f0Q96>mO2$NB2xd>t^
zH<2J$z>)~%m0v+hanPnHC-oINl_IFDoGKAiC0A2U2f6<<f|?Qgca}Y>`9^(dbDaoU
zejJy25>l7J^{DkDXrRhAjNnxhdjXq7&@_TCBbXIIvk00;FfM}evi7Bt2--d~dYrZI
zYHk%lPnK;R!TS-kA$L%<wT+-1`2%Wu<zHx?&@qBe5p-5gw+OnByDF#ar8H81cP4v8
zu$LcX?-fDs2>L|Om;Q(d`l<Lq5%ebypbk`iivlTwBN!6FP&&hu|6v3gSLJZ!bnj|!
zwj(1LMMs|TA05FMl{+?qOT6=ZLIf+b1xFM}k)I(SF?V7FlOp&yf=?p&T*Xf&Oo_a^
zo+dSaN@r>WpQ)Hfd*h~&zo1U1&QQ5CBY3*nJ`0uq5NAsd(4P~*R}svOU|s}UBG?+i
zeEO>*SWQ?E!NLd@MX;F3WmKtTNd!w3-zpckoV-FgE2Z%*-<|Qwm{}9S+6dOkjw@nq
zR54!@)<>{`pck-D+P@)xOWi~jb8`f1GTC=jewXS*ur2cLyzzTFKT&^B@!JVIBKT1`
z^015)-x<L!I=iWRRIUt$eKPPe2Y#j_4c@Ot`@skfMUWIl`6wdke21kEBX}0UuMr%H
z;Aq4?fsvZ;M(|q%$09f`1zE|R2u?(BGJ+dSo{Hdf1Q%tcGkJ#kX9Q;ne^8~Kb294q
z1)1}7E+{{H>G;cvuSRf%{Fie6j@Y+RNpYF3$x(p*#!_~}ZmO7nBDh7qO?CIQw@R60
zVMYIq;9dmxnI#+e1Hwb9<o-u^6v1QVJdy2pzr9y{9>EKmMieh2*xWKuD2l>Syo%s;
z1aBgE8$p&RvPO|6YVY}Fb{V4fFo=sHo=#e-WTlHDJ-J_N`<yL-43(QPicE?#M=^`P
zJF?Nq9Yr2O_9$|wn4D4MQe5M>y(Q*lvLH2I6!{4SRE*r4Dlr@T#TAL7XcSKR#i(Ue
zOmRX9YRM={DZg|S?~&z7xKvV>?4YK8Ku1hh6mB{msy7NP3LiN@^;0EM&YyL~S@PH`
z(PYw!A{a#|`hVBE!t^6iL<uo!B2`M2iz2hz{{2!RisUHfMDbM=DN$66;sd#a5=Esb
zW**aOsrbrKREeT0lhvZAq5SFud0&}SRg)~QL8~1_9dg|$8b{G2ih4}emsP`|)qu%{
zQ8Xe**$sR*a?>bU(`iO+PHjPLNtMV}gs;=uKX2bBx1qL;qMeG7E5IG1=orQ5D8@w5
zN%_5^=uGYsMOQ+%=({JLx-;2>+LJ2v%dhO-QS^zTFP*{Ee$@Wd0n~w1i60b2+l}^~
zZ3vyAQG7@k7R3k^Gn^nFq8+K6QBiE-h#mP_8ym%V<&PtzZi5q|_$Z2rbS6bHC5lg@
z_?XF0sFSHOYdMxpC4Ujcbi!v*e6Dh*MNxX8y=l*gV(bEKmhxv3zLXy0hCf^RvTvLl
zmG63EVHAs^kc%PnqqslZzaWYu1ybb3*INZrHjmL4Gk$Fp>j+DtSQ^DLvb29WVMP=x
zqgX}m8Gg5iSsle1I?^OLCVm~o`Y4XeFpgqF6dR-18O5$BzELsX5x%8viefWii^|;^
zh1|6(RsAoDZ8X1+Vh7;|>UI?=&&o;Ik5T-joZO|bo4i*!dkC_}+ZV;pQS6W67g=hR
zdmxI#<b%pN6ouSvE7kt0oJm8|A0_`rJ*NDYRqU`6QT!3bxhPI5|5OyG$!Dl%m0#6o
zch{d$T&8oLdO_u0jN+2wOZ^kBkpH6ot^BKmYf+3lY4^{~DE^UsP9i*sxE00iD3-*q
zG=@7-+>N4m3?*XtH;O^+g0G@@&9e8X_o)wLBt-FF6pxsEL6vGB6P`rzl<-XX&t=2+
z*w2y4^pd9Z>YFIuMo}P!f-$6tAufg-G5aVGAG2?2l{e#MWHK!^9W^~Q12rKA5Tr=S
z<_Vc%$joGx7_t$vQv2}{4~fYh!+CycNA79K$*f#4<R;{y=A}wxz8LZ=uI5XSpK^s_
z7~CUVIA))fNwSC}Bc@D63B_V)Q&yK`$rwt-&@P4#VkjMx&qAR>49PK+iJ>ej48`Dx
zAuH^w8GeG3>Y}=-9;!D6jUd6k81}~p1p=y7dJKkQlVHUVR8H{;aW(fOg_(@R5LJGR
zkVq{TLz42#$B?dIiZm%DhKeyXQ+_2vO={&Bswlr|4Am4@kD-QQ+3VJdp*E9ss12!g
zW2mQM>c`MP@r}9(jmV9uO{h&(uG}*qO==!P3py>St*EW3?^D}QC9<u|rM~@Zv3(33
zV)!(MsWEhnp;HW_Vpvi%Ht@R9IfifNCds{3U1I3Ug56^19Ydd(eb&)Eh8{F~QhTYI
zv(`@N8$-VshSBM-{J}8{AP-c|pcr29O<Y6h3|0PzF%)MH52rJNI#T84o|7;-hA~Wz
zjbV!N$Hg!{h6yozMCW7bM3p-!hHd<#^AkFgm7lp`T<Wi|&tmvICT|0dTg<F!)GuTB
zf-s#rgF2HcU01$f%B&b>GdYJkFNUvF?p%W0+dp493kVBiSfm`e&!PB!U7med7Q^xw
zp2zSah7~cajN!60CWciptd3!04Bx~c7h7beYhsvjJs@vOTN}f=7`~RV&C^cFTF+`X
zP*3$v7(XxYZ43uvI26OC7&g=262p!devDyj4Bw?TLwbggTF>|7AE?_?1LSo;H|#UI
zpJLcYXD4-+%H2)aL)|OmitFxYCihc+p&p=0Jw+1Z4wFyBa59Epm4AeAG=|>@$Ee3u
z?(eeAHvGTeL8oFk9mAOz&NAR)41W+VP|s2Sq@JhBd~5ekn8mMvT~dxbxAj*Hf5-4B
zW<P}DdTj4%uEx-<V9K=^uE%hLkvC)bhy5&FbW4@JN4PCV0m5DCzbbbTAAh^g<bxO*
zbuafYhW}J<<EjadV|Wt7o~71jU)uZmr!hQZZt7?h=Vc5T6OkzquVQ!|!<!fq(%Q$t
zw=oP%3Pf+)2Z%I@h)YC#qJ1DpoA`etAswCciO4`mph^r9QS_;OUM*ARL=;FwL1tx1
zl)XV9Ya+5GB0HTN)Le<ksmjW-=T@ADke8Z|nm-Zax!wyUqHrQg(kzmQg(I{QiFV%>
zr6cn#Mkt<$ATNX(KPUhAx!s;p^h+n=Jr!AoP&N?`f|Ke}x$?R#Zz8lrJW9mlMEDZn
zPsG$je3pnnBJ@ObNJK~JlSG(_sG5jsiLeqeKOC3D8j8)=f`kw?OpPQWnrQzhh%uQ+
zm9~{j#LD9KnLtTTpnM`K&`+kOB%)#>Dv|&Hx~rUsDyr;~a_P5h(yJ$;Mj~n^;>9k1
z#T8mD<~B_He@vYRloUn#^>;~o$&!(r^X$&-4slZV<V+BdAXyQKl0h<(m5c;Ql7nQC
z7bRy9BuEk@M<pXDAnAMhF7=)NIeqT=)vc$htE;Q4XL@?N@c|*qeHXJKu1eLlp&q%u
za^$Stklfscj|h#Zjj10}o7m8lAWdy%GhRX=(1MQazVrjUC6leFt!-$d;@jFVKd<p^
z@e>=`+wi#!-EBB9#Uy`*{gg2ssGq6$jy7~s+?mkDhOWx#W<!g`Mr}Q8=xM`9`n_!E
zP3UJcekSN+gS<7eZ#pNKh2`r&e;dAF%m5pPs@ewHFo-;uIz;(pdnFAc52t=f9ieiY
zT}~K99<7`)HjE{Yqkg6QuL*g3W|(NhBpWtK(uT=4Op$$EBz36`QyH*`I*s~`4burT
zZ1|QS8#|LQiz+X4m`#{t!(75V>UYx51c`rH1`8A~lp|uFacnNO;X58mOKip+8qJ3%
zEVE%b!&caEagO<C=B~8idmC2KUv0yB!WvcES{v3W4#kr;kbj_VRQ``PBz<ihdYf(d
zNp{UIDYtC+*@i6)IAcSJhUTn`9b0YKX2W)xzu0ith8;HSv|*R3XP*tb$$ONumyrG*
z>isf`m^`R*56OBtmC34)&^%$ouPXN_;g}7_m2-yQmw&V2B%M>#(<(Oyf5kg%!|yhn
zv*Em&2Cvxg2V*W!FH$e5QkQMUok-GvtID}XxK6!6y=lXZOz+M(w{7^7=3mr1HryrL
zv*8gzs=9B(1M)-VOp7NzCjU)+qWq%e@UIQeWNNa*YR7XMUf7V?jx2Wk$C#HkoZ()!
zoiM#prC!_chWwVAVCVIJY6faXs<b4N9S>OCQ7E-Y{j?-IV8@_d)@@TwS?xIcA|;z0
z*%_R}j$(Ecx6A9bk;{(UH1pY!pYR?vj~#glQnP#`E<k=?IR)(~q`0sho$eS9NiIUC
zsPg5iatS+1GFh2g%8v4c(kiBm9c2}lllH7NMy4zkXjZhNlFBV|IAaw%sxn!PnnE?%
zk*s3$21#bJMLDT<)Xi<oNY(AAA?>uIvmG_<sAWe3J3g=@^BYrbJL=hywTSWYzK$I>
zJM4Bi>~PxQw!_1!Tz2THPEFc*^xeH8wdyB%=?Coy+2JGmsR0!)Gg6owQ%=N=sNxnE
z6XN8$%8|Efo_&>CUv}B6)I6_K8`{x`S?%p;tYSX4<3l@|*wK_uE9Ez{qdEB_Y76DJ
zwBu)=@yTD7)^@a^-<H}=#mwi|z)zTzliH_t+<Iet-soV*XEZyi$ib5myV%jyj%9W%
zx1*aKpW89bj&JPfZbuJ>jj*Gq9lh)r#$<0h`q(jq+*j2zfY8s5{)8`-U!`l(K*fXX
z7_9ha-K3$4j|Yt_(!-hjlBy*pj<jQx9i#0SLuaxbV+rG_<EURzzotqJ5BP<50+SP|
zlcW#%V~6BUp)-{#FPEHd#|%5ZV{#@{VrJVhOYye^d8dZ>bL^PQ<UEx--!9KjFq*x9
z&O+)U>SF2=>QbtNHA+fcVaK{%#$H<~!}Xda`$^OHcHDf=vdWIt3|nJ=cRh10lk2GK
zsT-(L_J>cBezaqg91Bik_V}M2o9)=*z*Yx-l7V4IH3v)%Y_Vgj>~uSB+p*1#?RM<9
z<AB}xlX#EIsXJKPPF3eFJ9aDHW5-_dKIN1xq93&5kTg{}zsPvD<99m_(>X%@)sCZf
z98)nT3CF1?WV@7a>zQ;)@o78GD3*EY9C_me(^bNG>L1h#)QfgpBFKhcmTe)odX?gS
zWt?`eF?pSOgPMN9c~pVKKkfL-jyHC^wd0N*ckP&bFYUP<_oU5tj6L$yj{7X~fclX7
zi29iNH}wfs;(K&V{D=Ina-I=vDaKd47jhPm11fLwOO^YI@Y;?7d|POO1BnjgaUidQ
zmw>46Q8PN^Jr2lB&O*&jO>zK)tki5&Sy%e+q&b+(NzLUzZk1cFebVK1DRPlBADzMu
zyzekRC*)_cfCB|pWFZIobu`AaEJbKmbfBmM#mL1SD5D}vI8c&YidtIvd0QIWUe<wf
zbjnjJs9gE(R!MPXLKSLNs$4EeCVcF`Ck~`IV0OUbKq}4F4x~9?B}b^$9jNKRS$^EA
z;dpn{)N-J<19cp*F~;YBogl5!9dIai5?oZxfj({D&HrvX9tXTCvPrkhesX{sRDOsM
zcAymBM7*=JHR?djfw%*8nbpvNMud6})OQ%K=8-luaNq+~L(;2+#)_L0KBP9GHl;R`
zZCPe~ddXH4A34y1W=pD=tsL;>GR}swv~i%V^4m$L@p?jg2R?ORngicB(7}Pv92n`q
zC<i(^(8+;8D!wzJj{{vC=;}Z>2R^4GmB=-s?lM}K>_P2G?M40n_kPIpG5XSxmh^L=
zKluyg3~*qeVtJ3)U<XPsH`+YJfuZz=QHN8%q>i9U%)(j5FFvE0{Mvyr${$M@=fGEl
zdE<?7J6`2ZaA2b1Ne)aVPoYj#{#0I&pYFh12j)32L-{ium_`0pIkO#@Lw?M6>dA`c
zJFuM2chm(AEF`3N`yvMxGr5Gil)8*6Wzz;Ht#Dwa1K-nG>%cmW-c=5)rn5#x-nna9
zPp;cDX_EsR$UjgwQh%gMo#`**{vVT@<t#w>S>?(Y-sZq|IhLI$=EM#Mb~<p|fj=Gc
ze`;g$Ipx4<!fprlIIx$z&w;YnO^zb^eg_UXaFFIv>LKbc)Wg&xRH^D$Lc!V9j}eYj
zPf&lOO3X<aV7H9{aK`cOrp<G5Ad`Qm%1spadGY+b1Anm81y%N<1D71Q%;XgZZV;|g
zuc?^pGXG3__nH5uLteFDY-9SBioYDV<G>pS-qO75z(WTfIdG53`?90?ugnK(K9Pct
z9eClue+>AW`h@zF`VaMA>NDzdhw+|4Dfp7f*ACo2WPU{!Q$~m+Z9iKRoJe#c7ti1s
z($C}av`;58I$`0<&@(yT&1n;7WXR$~5@SHkO3kK9Wp^Tn;+#&j<98xiS8gZXb7JH6
zlsr!4Wk5bB<OO*JoXF3lu!I#<WeYh`nEbwSia7BLKduyaqJ$H*ov7nPNheA<QNf9d
zPLy^cYg2O>#(!KZRh}9l6_#bPoD=0$J@Wapk`tAkFw54_tm1@;P}K=}>WGx8#-#L*
zJo_}6oZ@^pj~&_Y?s``${WK@6PE=?A)Sx5v*Cf=U%HK<+LYotICp=DgozP?q^Hv{+
z6HX_F)iN#;x)`iEp%cV$6Xf%rPfDFljWg+|22@Ot5Tb^u5o*+l7(wch>qU9`+nW^8
z>(Qz2L<1*2aH63Tz3DV^qOlVlo#^DmhfXwcBH{hSkDX}hL^CJaFs8Yxtrg)TY71&h
zYBuh^)@13owuE-n^gSyr`NWC#GR*iS=TDvJz}(NMk}C&AXL5IH7v*<#qMPE+rMGh!
zHzV~>PESHFs;svUp)a*YD{DWeJTuuC|6foCP;c9fkI;ji7$Sp5H*$x{UT`9xX7F&v
z{Ncm}C%$xI1d}73nC!$9Cq^+jnkvC#2xFZXr<|_{Upp~gITM_isCbeSU+~M|R41l6
zvCoP9PJH9UbSD-%u}DVsi_{sijSG|0?_HV6g0r0X)`{8VIn=pMtmbW~(uR3*9MSxa
zD$W8YcGfUX@$y5!Vw$U*SVCAzU8W+JJF!CXN+-To{E)x?taf6J6KkDV=frv^es*Gu
z6B|^_Cc+PLP!oPse%*2z{-=1e6F(`I@3Vz?%fwbEwmGp~`MU@^q|M5CS;E*6yPeph
zoV`xtAy;A^aN?j7XPh`I%jeZs985VR(}EN7sq(N9Y(4G75hs3i;;1Tnl5mWA+=&x}
z-&F3JImXHQ6q6^6?`zgpRkhGe%kNH{mz8$1o@3UF^Je+$fh6S{(?usPIZ@MvS}t66
z;tB(*xsa>7^{Nxkop|BIHR)I$<JX<I;lxcRZaHzAk$+SFbmEQ^cgcUr{#Cz|-lOx#
ziTea;+XE*aDwgY$j}=Guq&!jll<<!e{}P^25AfaY|2gr}i83yfbs4?-%8BeQ<Z$6N
zW8OINR*rXONp5Br63H1{STr|tM&)O6Aym@%@FPnWnn_f+kX6NGb72O@c1}9Em7j|s
z$L4!3<RRyEp^yuOUC75|erf?~L8`1}^xK5@$t9>os6|z7F&B!H^YA`Bi7)9wDLSR8
zcPALfxO~8q#~tJtVk$?oJhg%g6$uhh$%V?~D%7gV-*Mj9SQC@UE~L0%cEO@@(_C1w
z*^)}Vkk`15VRfOp%B|sg_hiD_F4S>hqa<ChxnOspoeLkk;Bdj|GM<O_0gJe(UKcb~
zgYJS`v4>FnTVr#4F8G-YxDX_SsBss<ga|cCmH3zogZ;)`MzYj(p&tGEDz||P>$$%q
zw;|0&)W$A+=t2`0nljmv+Kk$qD)Ao?T2PO&l2$IXX0nZnY3srrW_{v9dzU=l!x(;_
zy3oOeNiIxw;WHOHy6`3aPSk!b^mn1N3te33N~b5a8})N)cdAs?!-a!<8M<&U7kbn0
zqjLMYP?awdlH4z74x$dA4x|>lYZ^=#LLEvSMwL>-UFg*6-FLAOE{t?x6thOV@RbW+
zlgCiUx-d?alKX$sf3+E}oCz*WR4nh~p5lVMcX*Bqb6uF~!Za7YVeYro=_+!D3p2^H
zlry<o(rm?JqDk{ynD0XRY4<z&OQ;K|3#p5!i>b0j^5!hjr7kQ}&T<*Uifz0p@p~6m
z(OE5R>t|X+T}xd@T~FOWm4F|lwgo8yo1~Nr$6Pq>!e$qKa^ZmNAXfE#TH?<x$mw_s
zlUu3VsM}rGLD=cS9)h%R7h$)|IlMV=FO&OJ?tU3dD~xl&A!&SGbMZ08PsuHFn15lw
zVHb|5$X^LZsn(sQ$NN%F$c*j66&HS^d6IgHdfJ6EgtOE?sJ~Osxp1B!E6QFH7hL$e
zLDEG!my|EpS|#_YjE%{rdoEm4{&g2_$idF!Ef;PRWNMY*KgoYl?@-0OOL$r(?Y;{S
zTzKfhBNsAg$f)75te3g3U3fxxu1Y;6{NuvE%6aC(ys5^4FUt#>|GDr|<-U>wjjyYa
z+&47ex{$!nKjI{6Xv%lP31_02m71BFMMIK`1YzTaq-=!j8gdYFYIsk@<kFCvjH0?!
zn1`H~+B9bT0G(e$0SyH;6w<I%!!l+S*3d{pV-4?XD59aLhGH6OYpBEA;u@@k5*kWs
zD5aq^lgS#&Xeg_}#AG>YC2D!9tgeEFii*?sT4fDYlv9;ZP3mE5UtKeHYYI&>)uJL(
zHKdV)$;RZIx-GT3h8iljCZU#w{auXjH8u@)4VFG>^)xt`<)u2QE~<oS8g#{O4Iahv
zqz<13Ka&9sQ4KK-L6sZQ5GF^IGwML*xZ=9fhuMwK%(BSq1L`ZkfrbwhH`LyJyZKN<
z6Aj;Jm@Z>LLo*FSHPnAotGR}cGz`)pPxx%XQlDz*KxiqZhSuaZ)b<+M5@e0-2p>~F
zkxgK)itp)a90H$da3&{pXKqJoCk>r7bRlOSkk*yZjVke<Yj}3S*pMC?deZErp})%Q
zt)UOOuX6ekYRs(u1z~{l2NLqh|9Ml)gEb6ca@iji%QVw44Z}5zev$em&9A5<s3SFu
zB8;X=Gsb8bt9YD-r)kFTAYaoNuVDgVB6Sk=hmx2~m_nUOl_JwLjC*aIYi4Me#GA|)
zX_%=&9z``v#eAz_wuU)O&ehPVyfK;2V{*QR?+6PtEF_%#+!%GT2rSmneuwGw^y*7A
z<260<EZOCZIZ9ojVWo!eHLTLGM#EYS!!|fpOM60@uk-ZUjdzBu)39B`4i;IjVFN+x
z|ADYk!;cy^2{XBcx>>_d>CiaoXM$Xrlp<R-Y}1Upr_yhr65Xjm{w3Ek#ppd*c4^qH
zVGoP!)o@6|FB<kSxu1G~Dv<{X(%{3&k<XdpAJOoua%8SPrs24T6B>TgkX=U(9Va!M
z(r{11eGR7>x$8p8UmDJ6ILl+<cbZqI=QNxr{Gs83hKm|5X}C<MTqtw;lHPK8kJVKT
z*EC#b?k(yK>P@PINxbN74Sy;}O3B*qXb`=tA>Y5X1RgN=9}WL%c&H*D$yq@0-x{8f
zpDL&7;f&A7nfR^txrP_gm|E8VG`yw%lKP7Jnkp@Mqd}gGn%@2d9f>TPfhuN39iMeK
z_F85-S(Klo1LUmA$)>|v)7XRZh`F3PD)OdTd2(+q9l3S9$FMxqqB`;t^6AL0qX4;(
zj>0+$lBE(EenwR~iYQ0^4=zrxQ08KEic?EaORAVRjgm_1D5ImSj&eF$y3xvw@;WN$
z*rsE<v`R-M9i4P^)=^nU6&($9e8A#Wb=Y*+byQ>0L`~L_qQgwCPPI@|scBRzRoW)^
ztBclPvL>~bj@l}>j%-VP;~00)3F~OH)$CNcE*+W<U5A^FU-=$_m+GV5er$X<3Frti
z8KR0Kf3uB{qtqBRPOVF=N0rF>1o>A*LmiEz&tDjij%-Y`jgGd24|OylG}X~eM|1K=
zRH>myDYQ`BQb#Mrt##Dl`%>G{`Bca9$)=CVpXkO=l%+kB@?f+MGPHEm|K0NTs;Q%n
zW%*NOX>`KWMMqa1Gjz<9Jy_KE?^QP)pX=zZqlb<$EZ&paTSp&4FRFa-?n{ss4%N|5
zM}Hk(&>2D<KpjXOM3u<FI?`^uyF2<-v!r1<hBNC+Hh467gpQGfQL2<ozZ-bJnba^=
z$2c8dG3#sUWa@b81nNW`lL!)DoDT$;!sJvP(+J<F-08aUd}9flrQ=&2Kk4{c$843m
ziZDmVTpjat%-8Xqj-@mgsF;O1P82cD4zetwxmd>%mD|2<(lW)%b*vz-RL=K0EWO|T
zj<Z_F8Xar(cb^T`F=oAv4LW`xZ&IZ;>iALdRJr~`-mDzCw}0Q##1kWoOHx~OY}GM3
zyIGclpP6^)*r}tq8ztP>rDL~_|8%_6u}AjZUDItHf9lw)W1o)wIu5YH->C<69My45
z$04<rUvwNMAEExL{6gK0qw=_p)5<wP_>Fp!dWt&ZS<)GT#GfT}n_B&xj`KSH(2Wb=
z*LB>We?iAZ9hY=mX7Vca3RTLkJ(qM%aYf!Fe3N787R^7iXKch@93=8DnUpT3{!Ram
zj=Kaoh27I}pZtLOkot%!r5?+%xzgCVvOLl8l)jYuhimy)$1@fAobW=&h%Lr+`bx)Z
z9U0xo<i;BvZ{-*%swcROYip@fO>#v-Akl4@8K?qTUYIkx-;Je0Ze$@RxdAt_x{W@`
z<$gCjvN0>W8#xF$RjGme0V1~>@41o3jlA>=Q1hvn{BF$PC&Pluk^7D16|{xjc;9Wj
zi?%@%OA$AUk|kNpjSnxU3Y2uClpD3(sN+UyH_EVhvKt$U>Sf6l+$iV9lR}y-<=w`I
zD*@?>if&YL%gZ1vl~wzzFutlA)d(i4M9P~xQpjeiMdG>Pk|j$TO{*K#-KgP4O;zgI
zD&tR)wbGMKl5B3+-Eg|$avM)Bom@q8xKXln9eJ|4glTT*jI8H|Th-uo8;{fUQ00-B
zJ~#Ys1l$NRAnrzp5L5ACLWCNnKCNSXF_9+`)m1U_aJl+!G;resHwv{%YeZk5A(Jv!
zH<pg2*+jZpm6F+B>S^XibLD(QXhB_-DY>;9ZQMxkAkl-iZnSgbdpB0O<p(u<;>J+7
z@qqO94DRDbUpGE=ql4_Dv#FoC(TRRXs;osuRA)E3xY3nPPii-n`#GUIwTBxwiWwW&
z%Z=VLfiyH`t@QV!^>d@Y8$%ej!K8iRHXbiOSavt}xP%R4)*z}}LV5BuRUXd&{JL=#
z80N-sH@<XZ1as%RF_IuZ*-Uq1lpCYn7(-_=Rf>!yjC12FH@<dbJd+bu?gYY?t;Xy(
ziQI3$WeQ=cikardH;S)bGd6058#CRQ<;J(lpGTPO#vH<2<;zPIC4Lbvt$!z5>NYM4
zEoAN@>S8yRxUp2luW)0T;^lHkRxn23O65q|)o!eD<CYt@-B|0!IyVlwambDJvdi4q
z>c%z(|3KYHJz7-%QPr?XfV`Rd6ZL1RtZ0k0-(y^p+^(E`ZtNh-XM>$?<3qwOH+HMs
zJ#Oq(oGS(U-Kf{Vae&&vqX|n@zcAo;>R~sIxbdqSM_HBRo+KP&?r}Fx5PqXduDsFj
zl;YEFoFSj3w&&zo(X5?w<2;=|+_=EnE;4!5jZ1{f)GJh}GhZ28Q+!=Usp6Y5`&~1x
zTos>U`qPcS<)dj4<9%v>G2jmMF7+Puz8en+52=r+Qv9(ScQY7QPM)~&RJQa7Q~xg3
zf86-jjUuxg&tz_Ar0{b(FR1^y@sjY0`kE>+nR)-iTNaT=L1yqEqX%DjFu;RM9%Pmy
z+Jkl;Wbq)$gESAU9%H=0gS;N(^FSUXmDPi60v_aGR?aiV)rOp8fn0>#9=xZVJRaQU
z@51>#DByv`gNc_C3VKk;gEAhJ^}IWw6lVPU)FK`fB^2|Zq^hSlp@au*?i=@r%2LXM
z(jKHcLq?m*c~G7))u<IbsG`bN^q>;CvT`zipHx-xvrAT!;$#m}$YyHg9lY8@PXDr5
z-Gdq)L_COkP}7529=JX5cu-qj{^CLRCYIL!(`^4I-cFX*ItWe=TpnoT0sJq#E}g(P
zCVOe#_{aF0fW-Se@Y4xU#R+;4QXKYR@}75}V`CmPq90eebqV#T^*v}n_(0`0^q><T
z8Q0i@4{0{>poPk9N@(UmbHYc;mv;`fRNTsg*5o$IStO7BS!Dg#gHJuMT}l1KgU4Bt
z+f)5_O!9-BJdVDDj08Cgut-N~g9n{G=;A?F4|=P5x_Qup{5iF|@&`9DKG*g1pqFxT
zFV5VD+?U!<`Tb=FwKTqY4fJ4;2P-^S>A_$R?$0$X@L-__Lp&Jj!7#>;^<bO_!^vN&
z8b%OCdN7JGTKQu<kk@2L&0l%&wFloRf4m1%J(%Xf1m#R5Op<-1oGILPDf^9b=6EpO
zgBeWD^x#{<ES0<ZP~vRGrMG3COP)uauYCDmm7GAO&P5*NhrZZ@H(e41<gUW@-&9}X
z!BQ2ujIf+qrf$;r={|K#Y5OX|Y7f?Uu-1ch>AAg3KYFm9yg@lXc(76N%gM$!(@mat
z_lhLEOxf(gPagd2!4?&>+k>q#pKM9lM%_-`LETA}tX;BCZ>0+CQKj~Ju#dc-dO-OH
zWv}sZj)y%s;z2NoP!PX*aMXjnKJ4@1m<Pu__}z<hUYwAIc@Xd-=*3A7PI-{qi}$=Z
z?ZFuj9(eFj_ND}TaFg|)Q){{C!Fdn<VDbX>>{!eE3dTHe$%D%tT%mbQ#b1>@%TKe{
z>D*BM!ybuA#q?W}>%pHM{6+u1%DqFlOT9-;OE6Y3;J1vA<f!rBtp^ES{O!RL=Duc=
zo_g?#Ns0W2@Gte52hRyFRPKL-mmZWWrc1CaxrSzVBb~-%{oa;DFEV&>K9f18*O=im
zdNF^8DKj~f7w(6~=Y%Xw3M3KWMONixBV?!MpvwOWa}nMYHwH!?FY<bk>_v(f`Mk)_
ztdi6MUKI1<pHT@CR*+61YGLa8)FNIKCCDa7SaEU*>Y|%QN0suTv=<+llgfBe){Amp
z40-zQx>ked#;33H46Z<}=tU(jDwC^tVIoLORYEl{TC-bf4mFM@S<GH|q=nav3N2ow
zGAzvtt5=@vnz_0cI-MF`)FjlRy1b}OkWzIBHZSbTad_b*Prp|=eJvW3TiaSv8&-Eq
z%|BVA4Xb;-*wWbOd>?cD)B(lxkQZSurg|~Wi-;FdFS>Zq)r*)HacRF7ZM>-KMLjQ?
zc+u30`YhPkix0hM;Kc`CG^EprD)omSC-mn(=!IvTHMZKj&G_2bi~-Y&>CL5ky(lu+
z(!z^Ygjx4YExizxmq3ZGuAbJ`i*{ag@ZvL;`k4Bu7oQN?Q$MMeI>T$eKh|W;Ywjq`
z7+~(?HJ;aZqo8)^a!O}%xn`CN&6B!$@wpe1yqL^_-M#4JMPDy^c(JMl=YKDHF-zLn
zn;>oO=S6=n#(D9T7hkB{!Gr-`3{=h_!rr~c$CV-Ep<WCl45xnS#R$SkFUAl?QRPnx
zqh%H9$QtX#^ESo^{F=G7c;m4o$9pk>j_^dnoZOBn1lKX6d(&^v{>F>xUaa?GgBLSo
z+r9YCiv<jum0pVatrxQiQgBM?#BGlg<}x{tI^PQ)QqK&uF7)DM#@b6{+v{kHyjUy)
z;90Hp9Lx*P7^8Qo7t2&V%LyyISV{Pvx{A7*D)DQ)SgUv)q4};lKX|dxi``!Aq4T4t
z7n{A<q$2BT)}P2bW&h67ekO0BZdEbcyx6XIhs->Cj2*g*PWtUnd&wuf_|1!bUhMbc
z0G)$W^Ic=QkmZmUztA~M73YW-zbZcJ#WBUly{P!$-4T6KW`6posB@ngwVffKRq?O(
z);aIRA2RHHXyL;JFD}Xq=0l1Pm%O;_MQ$J7^WlmYSG{=P#X~Qyd2!u~KUu>K>MiO`
zRp*UnNw*be8fE#*i#tp<&fvJ~#Xa(U>g2-4pqkaM`XetMd-2ALw=(}T>xman335lh
z#B}LgQ}iD?|9bI^@SH0C3org7zofpRzNQZQ?p+@y_>jYA%&Un$R9$LZ^vK{tMj!6F
z(lXJ{>_ZkGlE@OaBeA*+IDxFxY}D-3p_%H4pOY+*%ZKvgjNO#ShrB)%_ThaW^7)Y8
zhXN{QYbi%5)sliV3rP=uVD3`ZT*QZ>K2-9dvJb_4II+X{xK-YV;y#q{p`;H-9+}Jd
zP}YZ1K9rVZG2Qu->F_P<pT+cYK4dDcS2~uK8me8qxW2Zcz0fpM1s^K<ARx=I%9bjs
z4b^1B6(8<q%zGvu<VY7V`(W|G??XV2F(1-=sOdv323vjjg*Q$}Samuzs8^pP)b^o{
z4>lP#r;U9i^Ht$mS{44VZfA^x>ZH1;nh!d`O_fp}AG~BA^}+v)s)9a*d}!iBQy;=U
zM0{w#+(XW!s1NmJPZc+ILCl9Z{kqh8RPnPvPuelW*sc$JXh^dWwXsw<NV65!KU9(3
zZ&;d<7hg5TNptdqWyWXemOixd;X5A|_|V#iHa-mXVVDnX8PnZ|9zL}5;bR|WHc0%$
zhc5Kn`|zm`=U==#FL$8%8MUJiod{BSXF}O?X<e1mjqte->-YyKiRtM>UmyDU&`Y*r
zuemn^`l$Ge9~&Fk--pTPjMmEXg%1OK7<V?~K*kKB4p#9)q_!$Xk>Ngk>BB4^zV%@Q
zbHDLnx(_3L80EugI$x_&V+doVTEbV#4>U5W8t=mdIun&Yi7?rRDTJxYpXQVI4j7-2
ziZ9MQLwbz9Oy=S=Ev}2sR*`cFbEp?`TE^P6c|Oed$)BN&<KlyrnHT!7NP5YK^*${2
zVTliG(rc@XKE?H=(jlyHnGE0>Y0G_B;loNFzV~5Saeb8!t9=;wk9~5DG|@*j(o8ke
z_Q`=GQ(SR9{Z5+=KKvjR`mouDjXwOy$~RFL-ZU<5$Q}{>eO2;LKKWxHw)?QdhuI;c
zL$>&^)rV~ikfi;x5ueY8oyytm!!Gj8KN9=QNp6u(+v9`$C?jF}eK_F56F;8%anOfD
zGV1(j<Hs*P9F{4?k0O2?@!?mQvV6Gb!%_M0@532Y^Krr{nLr4;pO}90;UxJ=Y2)g_
zX%)GndD2;*ytWeOWT5(RRkm?u;`8GA9}Fn_QPKq;F3RlWL%|YyDb0Mvhs$J1?r5Q<
z(v%9XG5)#_HwZUX{kI6WefU#3e-Z9b^JmI<--ic2yz$|!4-b8KBy++ZV<bHG;cv#g
z7TB3O=uOHKRl`#s{vrRXoM(jRKD<!Qe?Gh<zoJ?i7#FCuTgEO(@N?$(BLku7uEdOl
zoPOjYWbz|3AqzE$Dh1(3R>j!}*{M0Gfgg<>mz!Le`W`ipA9)Fqn~#v+j{?dm=tm*N
zJN`<jTf!LsMg1t|husf{AI1GB;fL7|iytNZD8=AUOX#KjDC0*tKg#>j_qe4jec4}9
zyio7V6`0JkF=bbt<cj1<RLQOEM-|0Y3Dx{C5t6AX)JYwUYi_B2q%mpp!%En>H>r*v
z)%~d9$M_O@O+RYMP<)&sysU&?+mG~*ySup|buT0=%4ykfFN2e1>r!2QXnyE^<owO-
z@xx2gO+A|<(MOO~#|eHv0)(LQLw<zG5o(kgQ@MR}8;72pUhDZ$-;a~GjG4TFA0IHF
zp&yM2ji~9}^`Rd-<{87Ii62c>J<SNs{rHH`LisKIXr=h^p4x5wXy?ZPIY|BZShn4d
z)qbq;qrD%W`mxB5#eQ^Pd^bNnCwxZj=tn12PiI0GYF9txu`1G-?tb*}W2hg)==bzv
z2%#5M0($$=huoLiPx<}*_`;6?ehj2DNcjyeBn&3+iyG&n4YiCJ_)-adxF28pA@C)2
z1a%};%u$5VevDDhSi(3zz9Kv<kSt-cjQ3-LikaxgBtItmF@??yKW6$dRpm}2d_$e?
zH}0sE;<Nntmd<y6%=TjrdA=WW88DAY36o%1q?E8^El~bKg7~sgOQ<XSSn9{R3kl0q
z4=g9V;K*F*$M=4$qI2R?qbpMFiEEks!H<nnP!7E-#&ogXj}7#HE@BL=AN|<m$1Xp1
zi|NPa^ejJqB1piT8rEyPl(B`*R^@M#qh^4%ow`Hjgb}8le!R?+Eao0R_WH5Uj~CrF
zsUcrUT~0{?vg~K^m$?!T$>i_H6+f=}ahT>gKhDdcC-ayu@mD{N(wy<kI5Qq2ANS(~
z;Ww)IC;d1@KCPTHgtLD9PRLl$I1ps{!;cGoT$E|2q%k91Vy>L>F8gt7{<}}nr7tF2
z^W(Z7fBA8T0XHO9X3=xTcg&k~Oi%2$3F7?ehkV75Qg{8h=f?y3mHAmqa_{?5cd}*u
z$L5DJ`{i`>|IPHskH@O)-?A3F(f|MW@vk491LzXKGe4fo92h|P0ABd<pC9i9kSBnb
zvLZi{0zkkR53l`r>qkNWZ&Ym!|FkADD-%^>G7vHb5P57|Jdp_@Go35}6wYh(NmeFv
z1dx-EEr9F<`3xz!xyY5&w&Z4VZ4u-RAfMC_!21F8|J0H{fQm1S-YdWWIUf}apb$Cv
zH{+-*5<pQVi&KjQkp4J6$*Ob6R3ZS`(Io>Y6+r0#>Xy{Y1R!VOP9^oxC5_W@*#P8>
zEKosK6hJJ1cmS0Gs2o6@0BiwN37~2K@_C?k0M)n(dFn&W08Hs^pvt;Z2xh8<ni@bF
z!Ah-8twF8T$2e2eBBy_omE_eXb?gB+0tf^U44`ka#Th{KpvfD6D*!D3ou>Gn0Neo_
z&9BSbNhCQZ<Ph~SI8XQLe!{%N#^Df>vY#1WRb&avo(f<^Nqu-Vb2I?aV%_X@1E?3k
z%6L+X0P3?nO#)~dKm+Nn&E^m2G^9!mjR=hc_>l0ny)n9EIluwmEP&?pua?w53P4n{
zS_aT6fLR-i$kqWY%$?XKfVK>47eFV1WPKdKC*=0jPnF*xfX~Pssc%`Q#1}24cMYIh
z0Lubc9>C`TbPr&108;|!5kSuX#s)AhfL;Og4qzn9_6guzd-H$*1~S=~+K<{lfG-H?
zm$Rh)K>-Y*BRrTOmp6wJhEa!8zobgc2!cE(M0ivHqm@5~AP2}-0el_6BqqlPkhzJm
zcP279As~NCH2P=LCx%(8l+kZf1DF=TOzAqtd=tP7!gQ(x{A1Ii@_JJ_1q3iVfcXJ@
z$E-Qjxm1}GBywH=tNR-DFHmI{%Z?zoE}XbX_H`*ePZ4v^IhG{>EDfMmIZNgW#u2?j
z21Wq41Nbw5?*mvB!0*zBQd<CP0yrW^Rsd@QSQo(lfc)T?x;}sngrBKD1hA1HS@Nt}
z(H{fYq@4c+u$lZ5^|xoWBw!19tBTncz;-!W1K6pYeF5xJyqmCxx>vgQjj;+@@~?3m
z2;g7<hg9U@0De(yZJm7hZzJp|o#O$V2;dm`^*2ThzXfoT$+L2lWvYEDfYSk-p|fd@
zsoU|C^tJrBE+yAoBmTT}+U68lt_Sc(02czd7{DbN|H{7{z!h@I$Cc9~6ILW&qcb$A
zcDi#TfSYt~sZzxsTmK5+P5>2xs2IfE0Pe}K2_j1n_XBt!vv&ah1<<T(^@jmGk$n-e
zK9c=%H^buq{-(eE7j0(6>N&bqmzbvk{1d>xa>SL=#e637OxNnNJeSq2)C67z@G5`|
zL8HRgEH01`#G3%#1~BYbt;)XCk)?Do6B*O0TlIxZW(?wwm0Bj6qxPjH1%V)P1(7?5
ztTZJzdl1=FDXAex5ILC?Qx*w$FNi!rydOl7Ao4P+AXS3%5%LF7fWfj+V#-n|h{7sH
zT2eHKVnLJ%qAX2mWbq(M1W_^wX{y9a;{{4FS(-7DEEh!iAf!XKUeD0GYxUJ#t4lY^
zDk=rpKS4Nys2oI<AgTsYEeLB6)q^kvksL&75D&T<HAtzHpu8rax|uwsYjq3j6sLT*
z>S@f9%4-BsGl<&q^Ha#`=~lfK+aSKgpMI2DCkR^*_8`QOUACo^F4anL*)^^pJS-)w
zv0-`;ZfVuN)bpiu*)`rEd`wEsentueq&JRe0&*aSgE$z%p%5ZLM1#ipJr=~AAm#=U
z529`m^@6A$#L!0XK0!4IBKV_uau6Q`(J+WcK{O8H;~+i>;=>@C1kpN(HbFF%O^|Lc
zt+xo`St)(#MXkB)!Asgl)U2g-;g$?&MU|ukx0QY<t+$gJO6yW8R$A{@+9=yTh)-qn
zgXklw886rF5X5IeXcx`$a-5Db6#4S;PC;}I8t;AX5=7S^x&`rh5WVP#DZ$+p_aO8P
zqGk4E$&zJ!X}xdI_-(Pr>6C#%^b11X+$~H0Aif|E2pTWumS^mXDe;4X7#ze9>6svg
z1@RRt98Mig{gOI@I+7}-MoD|*S*G1BW9W>fj{85kUz5ixXF?DY6;BG{2scyue@YNj
zgP0b?H$hAfVpb5}a=*-wy>{9(lbU~!Ng~sAb`ZlC8cA6M<^?f7h=L&$3gNpT76frE
zi0eTt3}R6b$AUN>#Nr^9$oLFmT@XuySSBr*o4iW6w7xuul}ySt$rW;})zSvlHp}vT
z5SvQt5+=)P2CShTEv>H)VnYyng4i3x4?%1UVoMNPgZNR31aYX5HOD~H|D+kUtUm`4
z>2KZ~#Go}PKLzpfp-Dbpi5^~QvfWIP|6y$lLU@O4!cf!pAf%wg?+juW{i~(*-Gm0&
zlFx2R*%!oqsXvHcg1Gd=bbwh0WuRU%zbviquVtN3%X&D7&Eri+f;jb`S!$EYJxk2L
z293{kN7=Ty*^^HM@mmntkEUD=;-o|dvAwbRk04G5afW<8h_f>I7i*<{w){><SYpn}
zh%J?x&b^D*z7WL4ARZ=~Z$D1C6vX8qN@uWKk%MA}`SHlKx?h_m8ExfQliPeFh?_wm
zgsdUll8vpQJq)5_DRaRx`t2b84C1dK?#SdH#H()R`$60z2wThO5+fk`fTqBsARe>$
z-$6VH;;9Vj|5BtjS^f#)Z4mREssGBM8pLykiT^5y7v%qx^O8`sisiL(-bk<JPL^OP
zo)9uBNem$aAtN;tH8WLmvxJaD?$pmHk}YJslr4J*IYOxZZ<=t<5URl`OWqK2g-|q0
z?cCJ&Lde6cFDg1Dw{96dAD#Rvz5v4{t8fVKhcGOJ;UN?eGlZHU)C!?k2wfk_A1F{h
zgo63B;?xq<lGIYv(jk-~l%-1KnR&^xr<p5+P*v6yLd6g&h0vvpUO9w==TaJm%~hBb
z=aX6%QwVx_^TliCyray?A*9HvpIXcz#40<|m}Q}+Ql*HMS&~~lgc{^&mrRnZ9YUQD
z>V{A+1X~F95WFFDYMJH;!6_TwI!zD36+*@qX=3(ym?EGtDL3M}8Q=*a;cTibNAH?^
zEbFI^%27KI!k998FoX~xOcf^*LX;c};mQC_oH&zm<5~R>8idd$gtj4k5JJNcnugFU
zghnAW4&lQPnuJiGjCn~J{djN7o-%rB8FQU-X5oB`EzLvtD1_D_NU}u;6Z%+Mg>b2i
z-ZBKqeg7A$X#0!SiFwUpF0X5TT}E#g!Y3iL58-2$YWpZf%6=L`hY)&(&?|(`LMYkC
z(owc3gu-QYx6LX`XL5Jh9kQ=O$kfNujruuN;w4hd9t>-AC`FRJL+Hb*28Ga<@I?p%
zLg*Jl@;~POAuQ`-v6a=O>_D<WBPOLD;lVVAu;9=TdUQ3+Lx)UX%DfuFf)GZ8FfxQu
zAv|1Snij%0A&izT4Pk6Z{v?I3Lik$Rw#6*DvJA?SJYM=IgsC!0|8U46zovB<Wt}J+
zKFT_YI+;2pgr66ti1~gyvxH3#VMYkELijd>nIY`xRsG1%=HoeyY7f7)%no7N7|VR>
z9NFnZOmn4IbDGbTw#-vdFm5ClhOj7vEg@_TVQ~mcLRcQciV)-tyh~+E3FW({73iDx
zenm~pl_7jD$5%ydGqYAve+*$YVGVUHRf5+M)>Ai7f1qv*;rHbZ3D^|E|3dh@XPU6A
zLf|Kr{8>7rYnrU6o}SjVtiDZ-3q5VSbX^PU4)TN+)}0~jlHO}!m1TDbdlc^_><eK(
z;Q&>NOV}?V91h`T7`MVW5|U3}SQ*CmVH^$Nm~>Pa;V_Pea3X};A^aJ_Z_*nk%h?dZ
zR!a?=`J^1PHuI?vPKU5|fcXsd%8(4gzlU%xg!3W%5kjRZ)hE<9*X(4z5W>|Eu7z+>
z#(xNxrRzGGZ{)LHk&*D&n(via7AY%yU0Ri%OBG)tZ!v7+35)PwA>5H+9LD=$+zsKL
z9P(i#HnQFi;Xw#bL-;3zf%&Zu+2F_IM^t&#aJaGg?+~7Z&_7G6u;{<C;SH?_BWoDX
zLU_*Pix3jShW{Uv0xt=#sIRGSsBdMeVWh--zQ`(?fys<vWFlmyW}zlgB}R&53nP0N
zxx*M=R?iVePC~9Q=B!T>79H2nDk{0Mycb5_*A{`iVPrUJ&PNr<Pbd&ZK|&#_Y?Ndb
z38QEjwZo_rMzJu8haq<rriM`>Y;1ekFv^8dGK^ATqpwPbQAYN7W3zOTBs(-V%f2oj
zMujjc)2~Ra#IosKCt(s(g??446t5PBiJYvQ6oNSni*lr3S{PR8in4ljwyI_rHJChD
zRu{8Y7}Ar{T2WgV_AtC$uOkd+*cgPmY{eXtD-4ZEVKF5s>SmUQDoM%mv8<mOpa!Y3
z6%r5$BO1oUFhBf<5f9_DFgk`&H;j5=v<c(b|IGEnXb?t|Fq($(K^PUMnHy0XQYC3R
zm7y{DL*?XMVv(z|&BFL7j22-mxu4dYy7qq=S`u1^(dwSHRTxS4tmW@nB|ucTZ5Zt&
zU~}5XT=l16d?H;mBCUNG-wsHVrTjxpn$&^0H_Pgs!sr~v;4p@S(IqTDD5v!bqjwlx
z!{{d6D91%Py+;@!Z)yv#rMoo7YZ0d>9p7E6_!;k-`-Cw-I&*`yZy5b#Pu))KAI2A9
zNR})M7g#QDG701}rw(M;pfKhyw*0%mGJS$&C>u5=jA3C6mtBx8`O7dyhA}FP5nO_0
zQYVg06Lo%^L3DH&q7pVXjB#OnC8M;Q{<RE#*~|+m3;vhk!FT2fG)09acTyOW!x()m
zWl9(`!k8JxR3^ol7REQ^>B?DA&N54y#N?tdX3L=@JNLP1@=Wu~a*nxSd?)*;l4G81
zLKxx*%Tm3ZF1jF$h0GORQPsLwc0?E(Z`+rK@kf2@3i7frmJ`Iko-J9H-LH~Xg|Rw}
zGhv(!V@()qIh+oLu`Z1DVQgb^Lm1LsEhbq0NBDudF^nI>@)kdR6O%p5=@PS9cGCpQ
zPt>2OlH3x;R>ceNSht6<BaEGLg#MBu%Pzv=cIMq-><MG9bWu5dO*wsk82iZS$phqr
z<#b6NVyk`$<FL&CVO%e#ACn26@T;5!2$?H6#6J<nZyb}Shg#*0$tS}&E!#E3dW!nG
zoG!d#T$<?bVVn!&Vi=dgI3Grjzl^J(7o_*XXjaW4OOfH`j_WO!Cx(AHj4NSW4P(<f
z%hM{=uSvhPFlR29me-~UT$dSXu<1q^tGZbPZin$_81o{SAHiQ?+zF#m1dSuO%dL13
z#(#u+VceHtBZpNh%fm2AZ#O>;<53uo!`QMgS<Jr)PpE%CN)huPhW#s(KjC>8i#uhI
zg0h^NV|p3Jt1v1>P&tCvVY~^Wa0Ks1@HUKu2y#V`JAzhEwZsSzLDmQ|M39kArU)_<
zB=_}0YZh|<J=UZM+7+)OrYzYa$f07gM<BT+%j=SxlcvCX5#))W0F!wcAf@s}AeE%o
zke{_xXljwN1tTa#U%0_$Ymo@XZnl<;pi~4!Baj|0MlBvei3q;YQ^l!WUhlEnS~`O7
zPFc!R1<DZ0Mo^BBZ=6NU3gn6rNOHq&Yw(G^N(5CSs2M@62&zS3;;O4NEIESI2>vWq
zCnW+i9gDP~rCI7(zR;*``LE`*2&{||jxMvvjW;zSn6%R@+f_S)IuS%7h(=(Gz#f4&
z0$&7EcUv71=mcSB1TM0s94RioI|7e#8kN`m5d<O#MG%f4_<!PM)Jbr<lU^_uK|F#F
z7*jWbdJ!}r*H^WruPD8s)YkC-)b?QnO(MogWMBkMBWM;uC+Xy+nw%Y)NAN{{OWO!O
zil9XVKYVSvIX10j1Q&~2T2Wh5+fZe06u(`>nEF1B;FAd2NAM|=pUJ4Jl}UVAIz%vJ
zs8ygNK_*Gz&JlEpplbxJUs<|G&?ACw<j<*MCf~Bl+IvROH-dg_Nv{Zc6Z%l)2Sf?*
zk2m#~Hb*cZf+eRiNK&+M+YF*IyAFzAu&gwKp%G)YpDF|Fu6bAlBO@3UL5<RB!=(=w
zSiX$lpP|+f(hs{*1V%?NCW7%1Opsw2L9g=qR}m~LuUBbf87F>uz2qJ1*L39fk;)m9
zPZUU-7{O#25?uC`*RPe=UzgYA1UE%C$CoC_Y0|?HOpjm&8$Tz4nQYRxqH-3X%Be?q
zHhqC_Z`<dxGv(wWUH4rC3nKVCf+rCyj9^g&2O>Ba!D89)2!7%YT`H}T9!s`VeUY+U
z>WN@u1V`qXWLX)(+6Z3cPW@gvs|c$jSR)fcWwT^S*t!VTN3bD+4wFoxKQQZE4Ox?a
zRAo2G>d2dwBgH5BEk8%FC4#LHY>Qxf1iK^H6TyxMc1Ex(g6Dsm1mr(EZ%r1_bQahv
zqs3&|AHlu|E<H$jmYOP&vPjmU2!4s+d<1_)a9GwA!HEdY?lf|xg>O$~_%(u~a-i+8
z9;0?|X*nK&s5lb#TLdQ~I2FNZminD~hI%&LDPBjy&XJ}4zZb7_LB_Tm%gL6zvI!qm
zzZAjc2(Cno57>{kTdqcMO{M~w*dw?e!Ho!RMQ}TUViok8WJwA;xcq-plH%WCmYBj)
z|Gfw-1ugew7f0|gf=5g~j-Y1+y?F&)vikgF6@Ds%GlGIq6pG^C2%bfdEsE?>JeN}I
z(=tSHYmxOu1pmp<I%|3<<8WQt+X!AU`I`EMnq{$70urJ|fGmkoeD#4<AY;_1CsP!e
zqsS7)!9~`rj1fqRLT;)ARgw}c$+VKz98u(n;&?);m^q`!#ZtLdsrQ(a$h?e^uzXSE
zS6m>92^DlP3rF#O6cuHqi><N=MWQGkMTsbiMvZ@t7h|hRG_=Yp)~`zwC>cd5)?7M@
za)dI}vTAj*73IlNq(T%|@|y)JMNyfnsKTtORH?8U*CGKXI?`ry6qYEQZQ*Jw|4l<$
z6x$lh#Y0%5s2;_rx)@y-HKM2)#h@q#M^P(^+EIKMMUyD%L}7~}7)2-wdlZf+JW@lR
z#P<d!I-|x+t4HA?2y28+`BUA5-&-VUnT?;?y-|FBA;Cw}A4P!hcOm0fKUu<2)QzHE
z6cPGSs`#-e;!$)yWBf`uu})Hb`VFZKs2@-Re&g3bSsF3fShlVm?>vm6SrlEP=oUru
zC{7+tY!gLW#(We-3xbqtNoYlF9hJwh8@HaeWAc+I+DGv*d36PSa(Q#N6_!t<_$-Q!
zG&@j_AGUUiBI%lOlTY)k=FT*`s4OvM`8<j~bXrzQ>@NGon$#nTo^;A&tKBOK(caV=
z!;Sd9QS@VOf2ufNL@_||z$o+*#w{*Gq8J)QwKz<142xoT6f<I&8N-)RjEEv%4EbXi
zDZ4m|2QunpU_>z{ioH?ni(+gP<D&RBirI3!MDcYL-$XGzit${_)F`G!G4XiH1STg^
zC&_^j#gr)S?9VI%KpN2dV#3J>sn#3Dtq${Z>5-syMijGDJ7>zsS)6uxVcNK2M!=jX
z=0>qDiuH1IyhwO;B%|D2FfWSvQG6H00+w19#quZ?k{3}IQ<qSslBH4HJ!$-qEz1g;
z-$${MFp|$(6Mq$xtEp?KYpLIQlQu;019@u{8wqFnm?o_>hR}~uY@%aS9>r$zPt>24
zza@%xTaDkLw$a&6&GNf>2Vp05R}{Mm61FFb(r1m<mfmaLFZ(@;L(Do5MFGAi`j;pU
z%i&os=_dUnQCyY-Tn@D5reC8t8pSc0UYK<{iZfB1Apb^{YEMRSN^$RPnZ!BE<R3DU
z3FoNiRZN4m#$LM+#YH-olt1I1F`TYSZAcxsE~UvN%QZRtCt0pXaf2Xy^Ipm=6@Q!X
zXB2-C?ojVi?@{klrOp&b(xWII%Ul{m?il`#;z<;VF=UA0X%zp+Y|lt}$X=trQ~r%&
z*mcu^3i`7sM9;LgykKtRi0Qv5UXou?UsK;u-%=A|#&jghb&GK%W@IvF44DX-saay^
zzQMTRBq;{a$x6*e%}$lv9MaUv#<Wu+i_u;0#jtZs!kv=U^DtmU52J>><kN*S6o{c<
z3}3`BAcjIQ6pkSjLpX-_V<-|sr5GwRa(dm&MPn!yL-80&&?y<i)x33Do;PkcdNkHr
zie_nQ8EU=>=CU!ABbTR2WCcRS7_L{)C0QkgsxdfYaK#XLVX79B_lOz&V2a_&!_;JQ
zN(|;0EUJdFvBXqz8r7<Ntyp4>7^)>ExB4-qW(>7r5Rj#I40ROSVz84P%GrO*=<|#f
zjmBuKN{_)!@WkMa;q$G=Y%Gf}2ESTYAci2h;0|NpMPi7?@M#PkVu-~Mm&#*k9Yft1
z>M`uY807Yb`s7B`2GkFz4XMriiH!+TVJ$w(s0ouz({p2JPWXu0f+~?M3CBhzwuzx_
z41L}tG(DTrPUU_=_*i;_6-s=2#h=B{k-43z*E(hHl*Q61hFedK?d=jnSNh#z=pU1h
z;*QT{?8VT7W<RQg^^Bnxxi__s^83bc{)}<6qAbovMuk&vng_-(D2A~yjEiBgiu^K$
zA>^UdVbtN&hiRE*Uyq2P#Rj9Eku*oeFgk`Y<n)b7tet7fgIZt3@J$TU>3<!=c*2Aj
zlHPMnBu}DBJ(FXYqIhZy(-g0rn%K3XF_?eg(|~8i@NEn~$FL=a*^F7PBIm>~HwO6w
z-8|*YCwwPcUBkS9x{$hvx;Ta<gr!u8Sw{F`Ny>^CR>tr>i$8x~`!R-9F|1~CO-!C~
zga*e_)-t&+hV_K>t(Knofys?jX}0*AVn}Ok9Qgl>VYBjoGWy(@2e!trErug8{2Ie{
z8KN~4cgL`YVLN1sAna15`sC5}k~1VEA0X_DVLxGeZ{rMdkbH>x3sua+YF$TTI2J>e
zIFjNx9>a+k?n#fu@LLQgW4I8*#TZVpl-zzP1y8FQ&ctw5@$WI5BcG@Kp?v?dgiA48
zj^QqyE6TqiGZOh4^*S~4Qe)e1l5bIOQ~#v?MU{X%gtj(g?mb(<{2+#hGQ-F4PYjP@
z2)s!+`P3NC^GaAAGxBfh6YBE1ng5NUM(4ygF+3h@tnL~8=P|q>{6`i4CE-;Jua#4U
ze|ve$WJ27S`V!;FK*&hVL=``C9IKuheT6u(#*s6QT+GTAM-D=E>Ti6i=kx4FGjhlA
zUL2L<@(S+^dE&?$N3|h|<r$VQj-qiCBj=B!06~frjH3{_F!g=q7m4F8|NK=vjuJHG
z@e3s@>Luftwj;G);Z)I5<kHkK)Uwoa)QQ>BD#X#Lxp6;mMb=P>YT;jRs>D$>j$JQI
zgUY7<sHG;ykrKzgIQGY3j>8his5nN)ks3!@93RHfBo1pF)#C`q(O{XW2CLHI(Br5X
zN3A$&OOZlmJN-IT8&%exemFSdaK_=HDaTIwVI{flIQ%p{RIe)Ki@!ULBqk6?Q28PH
zQanN@8b^!}kE6b{EsnZO)}yAcT59+pjz)AEQpJ%P8vmb|rg1cjqh}nw;%FYnN3s*+
z=pIK4#(YX`8As%wG+A23(OPkvINFliQ9q`BqH^2EG2CU5BC^H~tmLyeIugX`6h~)r
z7iw2(H<ep|zj3nb!DL##3?Dr+<=UR9cN~4<7#zotIQquXkGTWmSa-@gzk#`b9AAi;
zIl24GDg&4`JH;58gUFAz8xy-MLzx^#ZE+w&ps#5-`Ag~u>d5%J=i-i$4v%AE9Fyo@
zy_Ya9j<4eQnn|fG<vom-VLZ*Kc>>Lu-=s{AV@e!Ln4BtY-exUVE$tg7r@bp^ogT-G
zIA+E%|7Ggj+s0{Y7PG#MV>V%qWW5VE&5dIodDiQ9Tk%~S3+ODQE>e+;<9L{2)V4H^
zWpONzV+FJJ#O2;#d>_Z|v5u{DR>iSVm0C?$6USP@I_i4r|6}Scprkn7@9!OKFK)q|
z;4rM>5Lhhej=K-;5+FDP5AH6(-Q|nBdvJFP?k?}scd7UPJEza*+`9EtwN=%0_q41d
zrNZ^nhJWzjpU$QvpWIAtA-5*^@(7r0Iv&sLNW{_WF*_4cBWu}RWTVD4c1s6LM3qu8
zV(v{uuXRx(_N%g~w#FPv#Nk8~Frc6TN2G>Cq%|O&0ml+?JQ4pT;&CD-=wnYL;#wlE
zC*ouxPO<oD@-q1^d4@cjh;tMdFY3=H;zE)pW$i9WU*>_?73Ex|kWO?X5jPX@fXQ3Z
z%NTY$5pVa#bS$25ClOsY>t(u|h<nuO2S?wREjdWP@PGP;iFm|<-@e4vo29RCA@)fk
zp3?c6h-Zm-o`^S0$}+s|tACM*mx)Lj)b`*j`mf1Z%e5biw<_`-#e4Dt`7sfnC_a;4
zNGVdlultsW?}@0-_rm>1M1+AOzX32{WbuS#1|+AGf{ZjEB}FPyYPh<rTGDtW!Kqm!
zjR85Y#n#DLBfX0G#efV3WHcZXoxR7S2M*F!A+rHl=wwxq^3sxQ24rV4hXHvExGMLO
zb<yWEAQ#QtDl%!Nd6~>-Kz`-7F0LzNKw$$K7|@XBuLi^$P|koN1{5`*7|l{DzPJG;
zB=TKcNjj^FYXgf+rI{>afZl-d(a|!MH6V&Qnv79?tO0RKU-}eR-hjKa%GNTVwgD9k
zsAxbXR#n-6Dh3>$p<lrkQk7;61FBK{Mph?f?n&cYf&n$@+?%A0RCQEtJ&L*p{AG^*
zUFMQ2wtB;I^=a<NQO^EUJ3MG)fXM)}0gVkvG{C^z{X6tViVEAbu6nkK&SHSofOZD7
zr*AVLL?O9$0~`i8nRFQtq;RWTj{#n#eFpfI4j8Z{leTkZlHL(EposxZRc;#tnkn7f
zfELs(mD9?A)=K9ntZS>Z?CTB&bTr^k1G*c~iGJb6HM$rew?uYk@(%-CIe$I@(ba%%
zs%-N<n%RTNJ_hup=tcHcF;f5g^ZLF__9OetwpF<U3>Zi~NI8QIc*b{^4Kv_xY1kHI
zvS7FYBMiu9LUt2I8ZgR$F-D9vVzdZpdq%BWjWuALbSNWI7%|>}3DO>9_%dLk0h0{a
zXuu`|CL1utfQ1Gu;_Rl9{}?chVmdj4lnQ4WFpGLNIY;^Jn(5|J&m-p>w7W4EQ1^${
zmSkFSCi!9&zr=v01}rmRxpLM}tT13D#VT^O%C*hbt)*T^t|vFBTscP7W?{fVI-8|Q
z7_d1@?B+euTMcMCLcfjNPD*lz0Xq%Y#pG@S_9=f4#a`JI5A_lz(|$S!NHGtw{uSS&
zSKrVdmBHVD{|tCc^SA*g3^+;srJw%o=BQH!oHpQJ85yiGv4vvJ7;x5r+tT+lmOaNX
zS>~%0=MA_(agn@4UM3~xinM2SrSzHs*XiFNZ<4oE<iz_Cca*+ManFGJ6c5OUD)*5A
z>8EKs<%t1L4R~e1YiaG(@l5KU9ewa<)N^UlZM1hgykL=+WU`3ZeJf+~^p1IBz}Eiy
zw+6g3;61axk{`&Aq?G+c@!5bc%Gvvi))>AS@SV;NGJ<VYM<z2u{+*YYLzDC=>7+3t
ztr4k=$T(jgX~c|UdeBczN~HAq%VYKFm@HsKdLuGOu*%I#k;#b6Mr1MmzvI}fM*Lz#
zHs)q0bCEfW$VnkJpBkqvZEhp-D5u$@h<r-tr;xc9q$s5P!bbe6wB!~wqL>lIjVNJ6
zf)O>1C}~6~Bgz^P#jw&w=qbvO!TYgiUTULd;H*wQZxL;jYmA6B;>_Tm{V2|e3Pw~k
zB3{j<9M`M7nCe<bC1xGw$Y0rrDoj>Y@zsp@jk-EnL-`k@V`~{v+lX#P{AolTBkCH_
z+K4tr{4RUpc0>as8X8g0h%NiI%fj`I^1s8+d;1%)k|stpHX_jogAqnLej`j2HY4mt
zn5iwKm6Uqgb=NtR_88%$b}7eg#C@)am(E6~&S%7br}f8LBnzmRpb;VJuyT&wj%Z5V
zjBHM}AX}2HNSXU~9^1ENvMbrni1rj6R7^)BI#G8f{~)`l+}hQ(D-XB7#C12K2hGt&
z^faQE5u=RwW1GIWY|py!Bcy4it=h+kzKrQ-#9&oJf1|ul4E?5+8=#zl6obeU1+*7e
z4l!aVlfzWZ-$o3l)|E(*0GURrHgMjnEz+Bd$uHKgG)@M8BTg7`lED*<m}JCcBPKFg
zKA}dQ5(!g`m}<mk*|SDWGh#ZkR!es?VkY%MBP@@iXBqJile5V=q|8X#xp1y@UOMy1
z1u9oRL$}C?#YQZlvr_p>DV7<rTsbSG|91TOPQ_KKx2`c_tr6=Ovr$E^H(~>I(yTWr
z|9{Gq`>wZA?>Ax_#dhgL6|^n6gUOxTR=bSY&7}ByjMz)PPdSzH>kb%k(1=6IIZAQZ
zh$9p-cj<J;sE?CLeejeKr;Ug-0Vez_^EKkV5g&{=Ys5JtZX0pO2;0Hr=Z&~%#3fnN
z3$YhiT;7$D;h@&JWV&p`6`EJcYvgrOa&J)FG~$+W3iOV+Ys5Vx9!UqGd7pepJ|Hij
zOfF{@a#{Yd5l@VGLv#12_}t%PpHe>~pOY`hm*gw*H7Rp1aXZ;tBdTW8rT!7~&WPT9
z^&ju*KN|5#Mvs>fpTAf9tRj<}u;XLQ7bCvX`9^+MJNJhX5hk7jkjY4?-}W#fg$ZBh
zmVMSVCMC^O<bg*KsZB^@LKYMDw%5kVHuW^7H6a}X(vulX$Y}aG+GnDZne5%5+?FHS
zb(pLs{6eSdMy=`QFd?T2ea+}+MlO@QFdwr_m~BEH6Y`qS#)P&e<TD|^3Dr#a%>@1K
zxB?~=HKCXZ1x+Z#s_ye~$igQ4%A{0Vgu>GxWpNWqB+ZVDs2W+)gi_R{O{hR2@nxiD
z6Us6fWkMW9G#Nw2k`g&}Xhb}9IkLR+Z*w%OXhJ3BRHmpxjvEp8<fgu(TUXtL8YVO`
zp(*_Y6O1O9OsHu>EfZ>+<dIUX5!N%I4g>0v;{0yH|NmrheG?kcZ%8&G8<UBo#2YB&
zF-)@w783$YT2=1*KlL^f>?Szqcu6PeBHg6a<1yjOV;<&p(fern$+us$qlKUeAtu8r
zJ~%dIGwPNmv@)T&2?O3nwV-qNY;5M@+S;`?Va$%$S-14X&&Pio5!cRy_9hH5VW<fm
zOz3DrPsYn1+2b$kJDJeggg;EU)H3={6E>dJdT19Dx~e&LqbL)pWpy{92V)+5h?Qh7
z6M9Q~i_uzI9}`C3i|MOM^<yjT&*Wd^022mM3{o+Jr6s)7W;aZNW!IQ6&V=DAcLYUT
ziG<5-lZ~VvC9_buV<=>p8gD|j*ZPSjOrkS^EL9_RvWlE(!W5;aQcUBrO{bn=!qR+N
zN0Z51B4LgR|Co@{j8taKHDR6!2TV9<!h91Jn6TJ{C9=6z=@*(%vY57mL@zSo>fP8o
zzL=$~u+_n2>rGf@!g40PQ?;5`P_HCcnXsB-4Y`(FM@nSz-VqyQ3!AWsGukN)c#77q
z|7XHx#%xiMTTR$Ty<IswWN<iDLxOkF*=^EZ{JV#GFS$=e?w3xwMmwQ9WWr$+F3R3F
z;fM)2=IK%vEO*j`ql`SpWstDrCY&%~!VRsV3QsZjw5si2X;g0A879w~aE{_Uc|pZo
z2<a}HaK(gACVZAHX2Lb;W!vKVAJYDezHY(|6K-+=B-y4!!YvbSn{Y?Qs1gaLys>vp
zxW}sAnsA@uu?bHo9+>cu;t}~D*>r(+{PvVu#7l~2COlWp3lp{<*LKY-<-9iG4fW8a
zTG@BXe^2qjgpbPEHAg3l{YARfwiGGM_-cY&-jpKWO!%&1ewYwp=J-!0Gb1@g+d7fC
z`AMCIO|+lvNHbtYbu((1k=l$jW)wE#S4O5aBfS|J%$TtzDjm7xyFMecq+mfaGMSOt
zj4aB@Wky!&U&w4^b}|PkrE;3FudvoaWXf$u9y99S)DEcfnvst&`Bh{AGp?1>vIf4^
z7cygS!I(o&ql%bO)QosD%9&A2MMj%ZoVtV=B`HdgQDkYd45=r}k}Kl0K|}g)43nZ`
zDdNb%pCZhslb1K6f*I)s#gEETc5J?w+uvd<no&u`SEi^!Rwb*EzmX>!M<$q2(+rmx
zZZm3`QQM3}GYn?bVL)9ooJX|nka?lDn!lS-kA8hpoCanzRJxHFjj6Mo(wb}S=X#?V
z8)yH#PGVw~nY55r(ni`z2kDeiC4=@Z3y&FII^E6iQFJh)qZxiP0!#+YXktcF>W~>>
zijh&;^+}nUG1=OT<`gZ+mZapiqUg*I2DPDXYeqYj+n%DtCT-#Cx7LQfPD%0PA7mFZ
zx|%VhL_#+v|0E^yVpL=gGkVHelt}1hMyY?a;=P&MN5#m2Vt=z-Qp0UJ1I!p`#u_u$
zn&n29_(5j;ZN_jj1~Yev8J@oSp=LZ@RAXm}gkfgf|GP$)ziW(O?i91U><%N%7-hz2
zGsc)PQO#v6#dva@)X4*NS(piQl9H3mn5^Q(nP$dxGnUhtK`tU^nla0a*(!3*|EcXC
znsdo{X3VEppduH_S{%?C&tfx{&|FF`GygneO*&>?L31U!%8b<%l9jZO>twT-ang)a
zW^9l~WyV1>4w<n@!Wg-i+)VB?V++MrQf9r)jO|MAFyqEM?Eqkx8M|rjA(IwEX17m8
z?l<Fr(n*VP*o-4)9Hp6Oj@CDi$&Oa{FC91I1hbBoiIMozX8dc$b+h&+t~2zn%5Y)E
zS?Zbt<Ib6Jp85hQwOushl61!25tq$)(OrK<`57wd{;|eb3d9y3qRmt)ykW*o)-3uK
zMYf*Ncg(nJ#yx2sG9+5GarJ>256wtsL2?ToneiVh)LHP@j3;KiW%8+-%QG|fFOPn{
zME{)53+2Bw;}!L5<-9SY#0qUm-bt4aYWE7hXVwQZKAQ2#jL$0an;BoIzbfZzq*m}d
zlRwA^3(i*6#@qeJw5${sq_p5laZRV<T8LQ6|BEA;1ew}`G!$u7OganFQ&012Wo6oU
zDn(`svRLq|4Ml9oYQZlS6t?15E3#RT-GT)cEVLkp1vxGF(}M06<gy^Q1<fpIZb2Rk
z@>)>af;txDvmn0(l`W`ZL6_^v3s_Lb0zGF}(1Jn~g=Iz*MJy;mQIsr37AIw?rnS^Y
zm6A-BB1>D)>5+EWP?kym<>(3)L|G8cWDJ?qK4UG2V=|tUBIPV7ue51qTt%fTQ9S6X
zZHlTEyxSL>s&iyDmHQh-b+U#92^2L|ZY>JujflDwUJHB{{BFU_9okS<&w~0EG_atd
z1&u7QGo~?VCM71(0)x^<3KKc`zP4X17Fe0IshEgE$sE*9<+v!^7I-L3`?Vv<2IW)w
zEeOiS-=)<Pu*f$bwc`*;hD6hELN+DE-?ye(3kzDxUbA4sx)`~Yu9XF?EofswfpbxM
zUdxg#BbBtZpq=c>CHnT9V+XP$*@={x&KCTkv>XR^rS7Jj6K!L9P!F|Wm<2s8=*47j
z3kIr~J{I(~pdXX{$-gYP%e!g^sF=v!af6f|Y{3xfq*3K>x%h9vI19$p9AUvI6**Fx
z=;5C&f3yW-lt0$;bL5|3!9)vYTQG-NlPs8O!88jdtH>#gl$JJ~&P;L!DFd1;fNX(T
z7F6fe$U!>YKNieYWu??SrRS?TF0x>;1rb*0tXN{fQVVWcaLa;a7A&{mk_DG7SYg3R
z3l3Ot(1KN}hV2%tre0&gS_{@G|9=*&r`|wrBsZztR~dDiskbO+s|DMXp1oYRgL)^q
zi`;F|eunl??<Mz<vZniGA(Q>Q!g+}1X$uak+#?i6EjY#+B>p&^6XZ$ql(d$OT0{Mp
zNfBpctW)}&1?Q<RkQbG|t*`Ei3?O`2?hTq($!iu|S2428sWxe+Jhv^lW6=iT@6w7a
zxF=(~1y7_`mW#b_0dmLwNBw|&NIoJ*@7HI`BcHj|ehQyj@K)9QjN-WkFDPD0n@Pkg
zmHXO)H%cch;X4c7)A?Y*M+-iw+|Lx>_`2*b7JN-gs@yNlbU&yIwAZ>`GAoi>k;<z5
zX33Poir>b>)j6i=lvZ5g70yVN3oBA9oyLl^R;05cOE4zA6~D;9Zbb$wGFnmOd9;|B
ztdKX>X0}59l*wX6r=?L@t*EjvN|NI?>$6*t!-|4d6tW^GWAa*2uV-8?>fB@=QsT!{
zipyuk`w|KH$pU2OJ=MgK+*{6=?3?vb?<*FuqNo*Htk`NrF)NB&F~^F3tSDhcNh`uu
zG_j(T6{W3+x1yXCWvtM1b)rbQwpNy+_~xh&pQ56zh+#6;iav+*IZGzUHi@(T?9t_|
zsKDG>RvgGuwxX;WlM+*jqOuj1cM*ASM^v?92Va0(O|~tws;kHv6bV+;R8HVlgy&0C
zZ7b?nQP+y!Wt&(LDy6eqQJ*mevH{tUY(zFD6Um!XwR1NkwTU#77Sd{kjiM6Q=;6y~
zhZRmbE-QQ#Zqh?~NvSYxX`P=sKn9f`vTASklYpjHG_#_!6@OUKoVhJkObaWzHcR$q
zjMk}J(QIu+8;Z7MJF-35ft1LO(rl=2uGWrHx=1Bf^ta+KE0P`2ceA3e6?3=hH$0C0
zlVRP-9#-_E=tcG>`;d{9v;%-^YxMnC@aU7+0agsOVulrKHb&3iS#1!*##=GiiXm1E
zWpX4b1&2}mZN+ek5z1fkcgj&pkER$yj<sT(^7FsbPq1R56_b=Rono>TQz)jA(^RhP
z%AP%cp25wuVix_`D)-YH{ah>NS&?^P)GDhSDe2~0vFe_Fp%n|P7&TWfcb+uqp<U8n
z#3GByB~~n@SVk_lVg<$Unc9!nN-HW?)LPDJnrlc&uC-#F((A3*K)q2pn?xwRnIiYW
zl-sP>ZUt;eZNm;Lc3N@8imO)avLe@``2Esl7`a=Pe{<v>>b>MX)xQo}amb1jR-Clr
zFtcPyj#C`5;wZ&2QU+wnx*Mw<49j%NinCUnv*I*!|0TsgqiPm?UiSX#s7uVcV8zA%
zQ;+zUC31Vbh-+3{x8j8rFRi#?#Z4;=Q_DTG;?6$3yvRuExn;#|mc3)eT`TTUm)sQf
z(2D!i4@ileH&!qHBN>P`Mg3>RV+zqvtaz%l+_oY0KewX6YE4L~S5~}}vCay)v;DOd
zZ&=$~Ri{+`fjYSjBmFTSmH)|#&$6hzA@hqBU#<9N#dqfFY}z>gLq$f|FnPVUA~Gej
zq1GU+8KhuLN>Y-kY>1>j!uzzvNn=A^8}iXiYePC4(%X>1hKx33SEVvhWVInPMHVt?
zPe~2GFqzHv|IUkZ*pQQEE;2VMk$ET{Zq(<up#XIhZ{ICQU5IR#KUrZ4i7z!GzNihw
zY#49D1RILmP=Z-QZ769&DI40_(9VX^Hk7f!V1v;Hy$xk;sAofc8=`D*mQ1K*LuHnV
zCSz=frHCVCF7XuQ$ns<b8!D>YE+rGH*ie;8xtLasqJ|9#6u;R}ouW!h?H;7QiE&$b
zAYD_oKYcN4+fawPF8RCi<!HHq4GnE*Y=h-#vhE-B1LtWYY9kx|*rJ{3Co=L|*4Wjv
z;!HM}Z3xq`*kHB6XTv&<`8Jwf(oQ;L#cgoeFpdFImD>gnvzm_9nqq^O+Tn`d2Jmxl
z0cHiskPRnUYE-X?CN?ys*^F#XwjiZ=ONv%xYqE_Ey|^9P+t9&=zib#_Lq}$Hx1om(
zoowhVYiGk3-a*=hqW67$R~yEx(C&ch#^66yTk6SVFB^K>(CD1LK@MFXI`a6H<DnMc
z*M@#{`jdyxYh&y{>OrI=^Q4U%OkFcaxgoNI_hVlsD?3bPVZ(40Gmc^eInstv6r;&8
z<XAH4^2ONW+I6{!HcYa?W{2I5$u>-};gb!YZJ27qG#f71aM6b8Hq5YLjSXvUm}$c-
z8&=q`l2y&NVG)Hq*)fOWA9Ah@^C)B%^KDq5^g<hYX3^T%V&yEcVJY=8ayj{s`)<sJ
zYO8EmEn9U%HJPGk=v!^oXS<}04C@$n#D?`YY@psKv|+Oio0v>m$1OH&wPCjndu-VD
zfBfy#JII~nE>dcir-b$@z0Zd2FSRpqnfBXofc`=9kcv5MLyFm2J3nf}F`CD1$n!%#
zc5d_uCQp*5$kR6bYr`4pbL3f4inp4X^1RXm8%AET;j#@cZFptF6&tQH>p$`ud7Hd$
z!wrg?<SkMTijtQ3jtzI|Nb;Ty_mzG?@z91x$|-R!<zpM#B*v$Iu76^~Q~J+rcuw&`
zhK_7nomYEkoY+`9`+jZ18ykM`yIOB$D7&Y%<admJZ^H*w^G6vLY+9)=Hhh&)%Z@lZ
zzS;0ywvwGAzYP&~q_-mjlR7*8{GwHr%#M6_^vUf=K|iG(kra}Z%8p-i>LPk;2Y8^F
z+Kx07X;n-*JJ$2iE~6cp?8t4`4$m^%arsSDPHFAm^;uM8Ry%&7&PHY@bEw>ml~PJ@
zE;~lni5HRd(&N0cY<A>l%&&G7v7>+;7kKYSL7Ii^D6DFz)Vzkg$F={0YDMiRW=C;5
zN-!(Nj*=>-v>m0WOPBk3d{xE{J)N>-l!}bD%lB%vaZe^`<neZtv!j+Bwe2WxM+G}-
z*pXmIMLYhrR%^;FFOij4ys{ltR6SMgs7C#pa;n?q+W}hNtZ7H<JJC4@{%l2AMrqr*
zjvWo{xIaT**N)2PlmD(t)uX6SHn79S4?H!p<Jo}t#&*bIZ6dP_q>(h)QSe2Knc6~1
z{Z`pQr4mFq>~PA~mW8pyWrv#q1MTqG;kBccESnuZI}VrCHbN6S{Hlh49YN|4874b5
z(AsKK>Sknf`_G^F7EHDz7j>@M#*Vgjbg`qW9qsIBPyY{DSw74nm2|M9BTdnrC_0lP
zN9YQ3$s487b+e;~9X+KDtH|yY#Ro+6lGX7<_OYWco!+vKc$C;rMfRu2_#omhiUFj*
zwYC=q*)f>OA$AO>5Ob&<!>IpOjvRfBuw&I-t@~_hS#7i(W9(RH$09q%GG>wt@^*}~
zW4s*`=v>RA)jyGX^c1~oaLg1trZV}D9n++3M`0F|5;onA8Pqe$d$;1pPu5TV7B!p6
zIkI2&Xtm8%@$>AMuk->t_TP$~+%bMJot3hj6idjZ<T7$Oxq{S}k6vxZ8tN@}tfi1y
zY@k>teVn4~rJw)uY_wyOI5eeqY^M0iEBsrjrR+94wkvHJtlMSBZaX%3vC)e?cI>s|
zH#e%gu}>CQh7Kn(J8{5{gVO#TXym{lX?u3ulfJ-8j@WU`j^lP5mFMwSM?HI}{a&1~
z<0Nx0+HuN`({=<tMO~0CDZ@hJ8fRp<%N<v}RDx&;KFi2+cAQsBmGtAaK4bhP8Lw#G
zT^4mk<zAI;CEYx0S(&a=+#qj~x5(Re+_7s9FWj}uQ<*g+Ql4mdV8=rlC>*Hcz#}{U
zlM&2;0uDU3<B5!c4rFuSsq|bszS!~Aj^}n*TSvc^`JRpz@xqRmbVR?h<H*7&5wiSm
z?0Bn|?VTO(sXve(mH&z2v$T+vTH}=I8=VM;_7m`(`UjaaQKzGs%z@+%q;Mdm0~zRa
zF-NANNaH{x1xTqOwF8%@X>Bj9a?&}FUg^bmbQ!5Lk(tRXDmSYGxj$=*l-+@EpW}1U
z&q3xSllp0H6`zM9FPYDQqZ75^v7iHm=)^kUJ{euufsziCl2tIq{OUjvRko-D#gr~i
zQG#4@IjXb+|CWu`Gg-!gYYk$euFD&rw93mm5T!~*I}oFE?|Zs92jZD5=RkD_0yVWg
zQr>|I4pej?>3d0)RD5Lzs!&%Yt116C2Zj&*d2O=>%>=S0S&O`7)HZKj2kJBVJ6Vqu
zUv3y~ptO8yt+4}%4!m;UwF3qRj1Ek4V6p=y2h0w%b)cOC76+^j*d1^<(7)u*x!W9=
zH%ikrF6*5RgjuJHbdw$jybk!Nle&qYT8ac52vUcXBR4&Y--OAg4m5M1Zj~6Bnp3oJ
zpe02svNhR;l$ecGV%j^<!GXVJ<2WGq-*#j@103k&KxYU3P;-%QRCS^5>OeP&KON{p
z(Vgt!Ku-sHQTHZgsk)Sllov0Ekf|@tezF}@?qAY=c&q0?2L?GXSouR87@~BCv)UdR
zCOcZ)>pQ{$IVqUvz({F$2jb+<i%|}YR`Fvf#**X6@#F*t<Uuy6O3KPD$5R}b>cD0P
zwm2}&f$0uxaA2bYGZ?(gf$wLcW;!s7$=T#$2j)2N5A|Gf9+|XY^Bq{gq|9QW1B;Zd
zvNOdJrI*Tf=Ks;lm9xTumDH=q)#Ms-ExC@AI@e1(iPpM_Oq*nVdCSfJm|LoReDQyy
zw>q%Rf#(jS`@P0?2X;7cP=;}7Mf}y?$;e%*w%rcwQF<@MK5{>Kz=3{gwMKQ=fg^PO
zlM%pyV-7rYApeNC<227WaF*hP11Bk@$SI1`(#@44PwkzfzU;siit`R!ptwk0BBg9Y
zo-|!`;HCq&XkK&Ry2`!bKyNP9Z94bJJLFvzBd2@!sUIk(TWf8nKXO1GoEIU}V+Wq7
z+@}saqdv(`2fm<wN$#s0Eq7SGap0{C&Q7FqYGe322fjG))q(enkyp-sp!n#(Ckl!A
zOwoY+=0F4sivOL?57Jp(8^Lr=BvZM`DN>NqNFpiHIU$!u;Y4aDmhoi~X;ge#imM}|
z(^F(1Gm@1|(QSw6vpA8}35yF>7k+Ufn-is6+A3ssB8L;JoLKEdPA76X5p*KtL~bYY
zI8oJ!YEI;JBA*i_oG9r;e%4u>EI>*n1)V5FU6}lpEJ79~C8n4YF`2b{T4a**$5Qm;
zoEUysUz)lMsVB>lQDih3LrU3LiXW*e#Z#1XqP!CoRPLh&+NnfECM%JZ$tq3^=CfwM
zIZ@pSs}nXSYB(`)nAQyHFebr?nocC0NY<iLTLsj0qR5e$-<_yOzdo7hL<5S3WFxXM
zDRr7nTFnM0jC4$-S>;+NhM$Q&lC8YmiGcDQ6iz2x6mHT(dP%9%=Y*fS!(leyyHPz$
zC4`-5;=~XqhBB+E6P=y-!--~2G<TwfD%*jgr4y~3kbg5<E5D5sZK>NSr@a&D60{Mf
zBb`pl-&|hX!d;x0zPeg(r*`LdS7vo1|0KJUJ)G!C(TkK)@;S>s)P0@kM^Rv~u0O?J
z<N#742RboG>A@6oZZ%A1=fpow%%wA2mcfbSH}oT%7)fW86JwniM?IPxBm3I>^LKW<
z6H{qQ{SzoAIx$H(lbx8NbiX6o#f@pw{&@vp*S+W&PRwNPEONGroI^3bR6^0(x_Q(K
zrIS)DAd^P;MbwMQC8X59lwz3^%PCeUf29+ZUu#E<Yn)i?#A_$sII-ikew`DSoVe`7
zdM7q8c%vMpJ8{s7O-W^)*zCj>RnI;rwmPxRiS5eSCG}A6RL;GgDR)!vQO;f`&gK8v
zPxsSoenD%=hnzU$#92Croj5{q)QMwG99LyeIdOveq;i(??y}QN{!4mGBs=HSzH4)V
zNfGCnO#V=7%om+FUoqv>t5H{+xa!1X$#UYFtXC)PWaqXM*IDWYDb7ubTQWd#JeTjt
z+@W*ViF*|H$p_>^@)0Rz|8wF&2kn~bQzxED6Z)>NGC^BYdALUS+=&+|@+HM9C)V)S
z^Q{x_oJi?HDi==DdGEvrCq6py$%*Itv`WVA)PHv3n-l#9YA54gocOA0Yj7;tccp(&
zL~tn9xsZ$^IVq)5xbX6ccFG^=0$j-LLLQfV)kqt+GmvS>v?@LwMS9Y*Q=gF{lM9($
z$U>cs%u4=3hDK{Eo1I!j4i|D#=Tgpt?OK1&>q1d+I!5MmVPutR`N;xgL9!58nEaKL
zup%yb5;k6h)KJWY;;POP6eV3~HX{DRy@=8-lyO1tLRlATGb_r4XcumDu3F877&_%#
zDDQ%9Z)7Z!ab!FxU95r&6<t`IJ*Mn|_)0Woj)p<{$}Uu4az`p%Rf=TG^+Q_4{6<~f
zg?6`NYN+@Gikf6CS(2(h&#&vaP}hauU8u*bL|G{p>Qgsxp&>;hvN74ROH9JVpJk17
zOk~ogHdFV@sk6CYcj1NXViz1PI9*uf!fF>>F1THo?ZO-vJT7=$XyZa#7ksiGvuMW&
zEnLWZI?~U20xkrTDksA(G;yH?FH1^fQ`y4wo0H<0^CWAjbSsM1WTRV=?ObT@!cZ56
z(P>|{Y6llOy3omm&Mxd372VH;KbX~nl-jzu(3QHI3v+X5UFlC3x~tsxysX#Lg<f=e
zlYPj(DyB{mtugm^;V(J^ls}MS5INX|ArzesX<g}W7w)7kn|E2%1e(KL7(p@8g;6ey
zrXE8|u>2Jw9P7e3I^&fuPkc|Lp5(%07pAzdZlBiCX1OqxT9VT!rjs+snJ%okADa|e
z_(sG(veqsvbzzwc^IVwkLWaTG;pGC>yo6k+=D3Jru?y$ZYvY4EI$E9zS*~(dQmk;{
z)V|o27xd$9XfbPCSnI+y7p}|PU0CnJJ{R`8@KLS>xv-T*@(zgD=)#euahu5hk(*uE
zLLvWZN!B(-ZYOt;JIP(-Zc=8q$A!JrGx$=q11=nN;kXMYT#%<`4!LklHt!^DxH!zP
zBQ6|OWnIrAPUeo4``b^_Ipe}vic>C}rudiKoLSpG=cvz<l3ZL(>ns;sxJc&`d6~RI
zUL_^w*pG-CF5GnCo(uO~xaGoaX5De&`9W=%x_v@BPr2*D!%_({HM$<PCvDXmd22ji
z*h3c<W-j|k)%G97V_7?jr{pu0``iV2)>3MF<-%(hBHe%+Z(MlGfbTB6Q<0x3-jg3>
z?@)YFxpF@EMd`0De4|b}D)`|-gc~}y)&-K2B9c)!|I>PU3hI<(D)-N`#nf)3aU;r&
zXgAWjk<N`03>a3Ta(XwiQ)eJEl2T75ip*pdGOHWEP-G(|re96ua3iN1xs+3gBDWiP
zDDsl|$oymhvLGonJg==CE*56;SF#9M)Qw^k#Yu^Ils0)uH%hsYk@u;VR(=^b^wedQ
zbMn4!;f1IeH)7q0bEA?zT9WZ@%<UFmjxiTL>zizdD(^<|0=f#SR7HwPZd6uI6^g2E
zR8vm11Cce{NRY{cnliaj%Z-6<3}QfSH^Oc-aifkKb=~;gje2f)-0(8Dz8mtPc_VcL
zvLV@sY)mGS1~MJrUTAW|%%sH)s~b!Iinh7oq+@5&L5eT0ba1)hc4Kg5?WeQm<>){7
zwmP310ml2u5pUz?-H8fP7iy#nxl!<lzSt>!Q#YEq(bJ7yZZv1ERMO6k7St`>XywMd
zTw2?1t#aE?v~~ZyuF~F(4sLl`M{Aifb*1P;b|(LDql?N-UOGWyy1DVEa=N?GgF305
z_jaR?8-Ka+c#t+4_jRM6imZ29Yv=uC3%~w(U1$Ka<er(qZVYi_yBj;)80y9_H&(f^
zT6%#S!x^*8jnk)MMz}GP$&qf1a$~frd4d~blpael&W-WP>9$i_{fSIYa$~X^Q>dqs
zV_PMgrXr`iF+=GQ>9yf&mK(F_%yHu%in(qqP%-l;=98W0=oTt}5yfIRmQXBJev!J7
z%avY1v6Ad`wcHwtjc#mmV=eVMay_}htzDqYJwSi+ivEAHuitBXYO5QYnJapWbeZDu
z`MGzt(foERVy7Fs+_>S!O*eMCvB!;n-8jSCy>4{cuRkUK0=ThXTEe6F1N4tlA0!Wv
zhsh(dBW^`Y*fEA3Cr^+v_mdQzTI=MaV5i;kfQGighg_@H=bQel8|OH$^Ne|tz1#&=
z>Y^K$l)g-H#f_^J*U0NC_r{xuTha~P_|=0V9^7%`t{a&=$n3#AH}1Rf!i|@*oNu&t
zbtzu=fCV3tkKFi=;xYMzd`dnerO0zPTotrKf>&<5b|ccG^@TUg{YJiZ;~m9&H$JLT
zAKXa#H~$lz&*T^KE7{(plj*w~KbVa0AQ@}ckur;H^R+IY+=CQ!QYt?c1tz5|bVCmh
zQZt!`OiQLC(~}v<jHJ|7t8ck19%S_(mj}5$kek-3_lYiBFXb-`$mT(I6`6w~C)vHZ
zcDR+tgOjUx3gChKr7KQ8=H@30kOe&`L?O9_DIzB8ih5AYgR)G{I+^mruyVzzOL$Py
zgHqIqpSACbN~zLJmLc^XRAQrz@*vuS7@AG%maF7JtOqV;#nFr>%Xv`VgM~%4)BFk^
zRHP|-;HAjQN>}lqDs?sTH?lfegOvF2_2jiYsO`Za4-R`!$Ah{abn&1o1Ah0w;epeG
zdLGpGpaIQQPa_(6(9nZv1LM1uPLKyY8>`w9Jupxkm1FY2Ol={pq)p}8J=*)(WHDSG
zxIJj*L30m0DmUnX*8`siQ%Wb~&Q@(*=>)$A0ofqgt6hH{FO-5I28YQeWK)m&+n31>
zq(rv#pp^%$nQY@hJLR{fNV<aEUbdvV#@^9`PAaCe2Y*n@*e+8y5B~IEod@eZ=<Y!e
z59WCAj|V+H=p{?*!Bh`=Gk%N*V?F3Y-PePD6#YH;OIDovLhHzZ9t@%$<-uTzze!o<
zAs!5+9;O_5SZ27=BRm+X^p6<bXr&JrQjYUr(c6fLbjB-x0)?#LB;`z|kTtryFltot
zO4FE}?!gQXW_qyaNz^Ql_Fh2|^7b29p4n>KzFrd}4<63-V4er_Jy^hkYotL^Ec0Nw
zEC98XTI|6RrI&heyO1_2KIpDdrWGEnRJp4>SWPW|cuAJLc4jS;mDlPwB*l2JnPMZk
z$%E2&f7Y`_maTjAP7k&wMauub9&A^7hg$Mo9_*&Mhulx@CHKkJ&ib>q19T3OvVD$t
za8x#n7c;#$=D~3}cJiW@7bj$(kWtHvlwO?j;Is!XJb3BBzrv>_?|E?FgEJnS_23+<
zl9jqfao&Rq9__?Rri&h2qP|RCA+M@jx!>$Mi`-B(+@!cg-j-hh<=>SZkxM%v&Am$h
zfaYTv`c~;5dhm$iKT@1YpK3f&rJhneBcGF>`4HAC556<`+JpDJIrEJNZ#{S?N%~(%
zncWA9k21zmd{(}^kL9b<-#n;wRJ*>HzI^--4<fwsuF-g%7bi<6BqNiPl6+h`A(a=A
zUi|7s5ij8Vc|4ZGi_~7E@j`z66E;Vs^&*`Y=~eD86dAn8NRf%mOlBcv)>$Qfmo{j~
zl+BCm^c{7y6S16L<dT}DcxUa{EHAV2cz=!t`BV-0y(pk`L5f0N6jn~sb}Q;dlo!!n
z6r-POW=wI45?+*4k)<d~dr?L?dWy1MIVJyj<u=BP$|^UOB94srqD@@2a@6I?3bLFO
zvgDP#NPMfUpiEV0R`sG9#cyPFvIdzzO60Jvk+r?3<3&F&`g>8=i{HIy?nMhP>UmM0
zVIeOXc+t>{>%Ai6-l|4kH1@*JtVAy!e%B5g%oGOF=!J>mRhM|lwRq*CH10f2X7j?O
z=4<!DLG4tIJT@-%xV`Yu@sd83JM$Oq*E!%tP&qA1>B34k@uDepGx9SVt;DzVqO%u&
zc+pBlwx(#~MO%t?%5U#Q2kMT>>Ewm;thQ=hyy)u1jmV#^v6~ltRLq|g-M#2R(Np=o
zyy&fTrgX{sQYZbs{6#&|i&0(-pdLsLA_tR0NSXCeieX;-O)*^gBV_aPG40V_jPYVx
z&Kk1o$9gf&i=?L5J~4W{7ZX+d1h4k@hm2;E=uB4r6pE=*1I2XZ%lj5)c`@6IC0;D`
zVh;Vq<UcBAt{3x^p6|s1r5Ad!i27nWZA7hT(t6o4IxAJoa*7pRtoWcEudZTpwaQ)N
z#agA;d9j{)(MheIO`^SM6hPwuHhZx}T8kfEKel?YO_srjg+6TeVuu%}z4+HF-%r6V
zFAjTg#Eac>^AD@q@5Nq<p%t_x+(#{9PMz2TN*|;+L=G4mca$ROL)gc>IL_qAjVVva
z*hO8ny6%*8;jd8}`@}6?sXybzSugZHl=b197w5f5=96!*;(`|!y?E`#8!s+-aoLNT
zUflBH3M-KV&Z`t{55&uDc-N%IF?oZ0mrHAbx2gY=jsGqFju&^mxaY-vX%AjJ@@f~X
z9>~0o=$rS6FP{(>Stg-#+PJ;9^)Gux$$8UbmX%7Lc=43_8Tp)iLB1p<=9L%8(`f&U
zyp^FZD)OBdl^Vy%P49Bc<$EvkXOI5C$dBYF^0OCTy!fhW_~FGj>hH?QbtN*w_p=}A
zC~R4hrSKu84|#mZ>q9CZB7Ml<Lq;D;B*wreA2Lgsj*+R!G(MzNHOSvpFV|N~??b*^
z+KH-6nS99VLqeGZ(V2b7!pI^_{-R1{qsUI?Aajzr$lN|8y}4Iv$S2F-LrMDieJDUt
z(1$`k6sDFAC1Jl(7a@z1#Yo92?!&|D+JcqxA=7z%86U2!t|p>1lk!ql$!eESEy{;z
zAB;Yje2DQO)`u5k%GLBC&ZnKc49;A(nh)~k*mzc3&WG|8708NYB~ogu>_Zjms>;a_
ztNrl(#$<ILYEUGQLmgV5s^vp%AL{rZx1t$*a4yl;W$y2!1l04Pz7GwUZ0JKGMI)8l
zn4;)OU4Yy9?pAGfW*;m*^z@;Z4^|&+KD6|qm8@OnN_NHvNQcah!sUaT!b6Ulu5DN^
zwU6|ZZOZC`KJAq|As<R*NC=Zn$fjg7vN<UMEhywqnbtnE@u3GRk(%53(9x$o!_|&X
zd*yeakW<c1K6Ix3gOoSNcA@A>b|e2JrMB)Ab;fH4U~*e{Zy);jFwTeZKJ@jWd8L&7
zefWzp{m7(dGr))8s)m6SgM1iFF+}-8eHf<n-#%pjto<I1pfi#jrE*96Fh=RI6csn8
zTvH)>f)Bl4M$D%((T7PsO!i?4le1L(RElXnOsANk{Fy$;Ka4U*nP&SihyFh*cdiff
zlz#F}FHZ-o>8@Yo!(tie{7B))5+9cO@YshZJ}mQLxeuFt*y6(q9}e!1S?|LJ7GFuO
z^2rAce~t`md{|4pj+BckvH%-Z?*Dw)L_M~{&pU$t_dQ~(58HgW=EHSnZTI204=1R1
z_^{K5T|VsgVUG_-d^qaEUSXM-Lp~h#VIQ^3Vn5>#$l_6mQ|b3e!?h@hlotgHkNF@s
zD9Z1+>_NHTQXGjnDSeair+hf=!@sQUj1OmNN~DCH^WnS<{?afC$4Iil|Kh@}qGTh?
z+n^nDUh?5GgRiLhUZq$#MR&u8n?BrA{w*JF`_O2cF7@G``{fR^?vm|7+J?GM{Xj+@
zibp>DC%t=E^wrBT@;O2gPkngiLo&a%wV%sS<HI*bzVzW0#U~$LQ%Jx&iZ?#IRZiZ!
z5$}EYz+_TO{^<L8wES6qf1hawv0s?`m6Xl(o#F=>!TIV)iA*{u+M7w2(vMVr==~_m
ztVlny`H|fZ_>tPL{S}yoemXL3Qt`RfK7T5go;rhHuC8lqB#V?u;;FMFg~{>1AHOKw
zpSR@Y@S{(egu*m)`jLwwH<^dbOG<_L{K&6#0Y3^VUC58se2VR2Ozf|I6!D`dvx<><
zD%U8kB1=$|^rI9-X|jyUeZD<KlpoQ4H1;ErW{e;4ew3q*CFA_~ySes)*7B-UEk7#w
zQPGb|epL1&L2CG_ZTTt;_>HVeRwLyf!0Hq=$aM~_snn!S+6A?#>yUN*_+2XJ^^kgW
z>XQw~hGZjBDv?)v8K~uxSSIQC%k)MjFOG>c%R=6XwJ>S*!{&#b+DS@T2SwXfIv0hT
zly6Q+md_8rANTyY??=FopdYRLXw86-A7MY5Q0FZh+0>6_ezas#3O4s+L0#<%UJE)i
z%Oq?llaO?oy^SAjCD)IIezfzWy&seOnCwRfKRWtxrcA<MzkIn5o&D(NM}I&5@S}?#
zy;aR!DSD9I$Upt)PH}a$Hb~0UlgVDBG{rs?;`ddKJe@7czmz|KVxS*`{8;-gqUb(-
z)l$(z{1{4qm|y$nWu)wV6+fI}gkKxJp4W*UrTozpWBeFPF;4m8DJGB;{dmIPXjy<M
zbmsUmmEz=qm}wN#$r*mkq?koY{A@qg-_=gRWctUCxyqmC$9!t}ERkd_@?)_dTjYRT
z#((-N{aEG4Qa|K<!V<8|kLC1Ns2Zf1t@dM$ADhIHjX+;MG9tn2sMo8=4SsB-P8#SW
zU^9~=&i@=nw)wH$FMk)tocCh~v-U|p;yVL(`mu}7ZgLN~mz%L!8LhSK_v3&cy6sU1
z{Wv1NABPwtS%>|Y#zEtlAIJSTM}G(pQBJ6slYX3{KJCZ9(w3;ts@$b~MU}h*A*oMY
z@Z+K%msIXmipzdnp-76krgE=S+#qlIaZCBP{kWs_T?%=J^8-H~`jI?<6ahT)<3B&1
z`SIM3#|(Hv9$%|%TbZ6R*^iHhyzt|_A0Pa9N%Ix?nv}>le!Nxs9Yxu6+Nr@uKfd_!
zmCh&fGnrPOAi3YDbpdTy{_e*QCPhckk=~JvV*X<7XEbF1sRGCrK=y!qkND@2K$ZXy
zK!-MQsg;u^fV9-<0+4U_q$e|w83QO9Q)Arr8kv~POqS%5WMz?G0(g5~TlX9R<P0D>
zfS3Ss1&}*{dwb%G1&}9zyi!R3TeioAw`-Rp@~Qde51;^bL9!58nEaJ2LQ0X6=aS2>
z)q<<q7A_t@iGX})Bd(;%Ek#i}fHKO_2T+zeN;yZ)CXWpuE`Z+xs2)H({c-^udmSqu
z4UuYPDo?XQ02NiKN)(mJDrD6Fs;OLgpR<%2GeO(bH3CSWUsL7Q3ZS;qbpohM{d)lQ
z0;o^jK;^D?MK)AAcjLIk01UF%g2*0(F#uBl9|HIofH?pQ!`=p94Zs$_vH+F`U=P3%
zz>olj2H*_96+pWH+B4D}K!d*{ng-wrz)Qy`75383Q2a~=$RHUa!(<au!jj(J)+~VL
zbXo+^QnpWYWUByL2hfJ5U+(;*SfJi7`eK-_LjWBE=oLWk01h72M!8M_bPnL+A^qDD
zaSOgz{3C!a0d$oXrRJ4%<nt$!-N_yS^i;X$Z)v-!50fQY>-tjklcsBr?oa+j4j>1T
zgGdP&9Dv;JD`Hpxe+RH2fQ7OFFT@THU_<~TS=Gs=(W3$w9l#9Par%TYG>g}aoe;oS
z>T#qj!*~jL5AZ~3>P2EEk(0?O<WzDRDFM@EhZ^EVNZFYI%wqA`vT>e8&ml$p6Tn>R
zdCHkD%lW;cWUZ_mSu|_1S7-H$0$9wlOJpItX)Sgsld|1b1h6uIGXb2H#_%v|75z1`
z*2UshQzK=$wE?V?y?;MueE{2ON(~zV*hsx8$&pJy6kEv4$C7WQ*p`$lL&~-kI|A4l
zz^(vx2XKo19+i8PVs8NZ0@xqG0p%a2I7l8M?Txh~t0MuqB}r?I$7miWPmm``$*Q+b
z+wZ5D{8yUyGp*B|3*dYJPXc&K|AMru01_kd{kKSY3D~6oE(dT$)o_R6DtRq{>l8Os
z?#%#hQQs!7q}E=waaV>fChwD7o9G@;JR~2H680a(V;NZHY3B~ln3T8fya?bqwH!do
z{X&xUQhIU5vabSoP5%uk{*-#!;Q20q_sThwO!p~(&jF+hY9sa+`qy*l(gyK0fNueO
z4?x~IDOst5_%J8#M*tCw)RD=^<fO!;2+G%IevbU9f{3IBnX7?zq9juqCbO(bx%R&H
zFiVPx(dmQ8Kr<tmiOft&d=`qV<S#)q@1iYCjv#Ud;R(STLarck2T?bO--E~#MBX4u
z2T>-7d_m-AsiI_oAPQ1UexP*?nF<9_n9i@HI7Na#|9>o|oZ=KEf+(q+Qb8R1rnL%v
z5M_fnvq)b#h$xj?jv_jU7>Zajj*KUhh8-zhK8Ol*L|3G!6qFZk=;YbbDnZoft*=V6
zS`fccR1cyig&a552x>=<2}#K|(X}XQ2T>=8bECC)jQp4xb7OjRy&&obF(-(Bf@ly#
z!ytMG(I<#TL3#ZYS_jc4h(wlk%f<}CAU^>?jA3Un1rc0O%^ZX!2rFY;q>Z$bvgD2+
zoJtpu#)w(kwIgp3KANE|Dg6||AVL%YQbx0I5c0awCP6f%sDDN~wrs{+*+k7LT9D$m
z45F3NajR3d4MN7!c0shK*@Q<39fIf{M2{dk263>DwtqV@w=?+%*@f&HL^leF`7;Rl
zCc6lkdg~LW>l1o1s~0I(jrs=BFNlFb3<{!u5J_(~7!br?K_op{An%%%vh8^Rb8rw-
zSa3)XLn(%lW29YC3@1mBBS|ScDu~h49nWib1Ijd($#LZPASS5Di9t-Fo=jetu3fO2
z8pJdvrw6g6l(rdVni0fIRcaQ+Y_jVS{oEkt1rZT~E`<3(EC}LZ5RZab$be-*EDvH)
z5Xp~eyK-?5OM+O+tfa$Q;ff$u25~^PvoyK!<yHl;kpU9FI*2vYYsq!wdU69PG4iF_
zO`>H32DK}A;_Q?qr<UYaifut`SI&;0_986F+Qk}nlkOKWdxF>-#J(Uz@0T&;V5|sv
z`K?guJQT$7AWks&a1ci*q}Lpk{!5+VoHpx|L7WQWDxK4$m=}Whm->uy&PvZx`g{=Y
zn$?gnnJ&`2L|!JZkaAP~wIHrj-w5I^g~Z>axD~{0<=m0&kX1Vrzendj`9S4%jL`iT
z#N!}d1@StFCqd}aMoagR_@|6{7Q}Ok7i#Q!smgx67x5;Dw@iMKWtQDKM%ywU>AWXD
zkkM=OpC}~vv$Th;KhH0|%7{e&yUP7Rk@Iw9vJjGoP$-1LA*2W)We7P!I39{i71GB4
zT(hF@{}mBQjSx~(q#?6}kd`7{2<bz}KrKZwQDh|7-PQ*A%+zvMOje3t$ZTYGQex7_
zYmqsb%oRdziu>R7c|s884Iv+e==>A~$bw{@0+oIZp-2d^A;g7HG=w(gQ_68#R0zdF
zD9)-%giw~EBq{SM6+&t1GNfMla$G98@-Rp=oftBy%f!p<?nG4!;WwJ)$nqgnppa4(
zDJqeb$tq;kkoGDJ36QCJ2*1;O{Ux?W2nivGs7cl$Ym;?I$*LRDjzUG$3!#1pbJyq_
zgkTK86hcEL8<FBS4k1x#LkRLhY%yhy<`C?hqlL7RHd1osX-5aOlXNNH9l{n4$UZuA
zLii^He+YpPf+2)L=o&&dW`#p&7ef0GnuO3agl04oT2>uDDW<uqtp!C(vK85yY!gCT
z3R#k@@>F9#eTNYK2%*{v?J%PwvpR*)nL_r0{HAmX;aWevJbXR)Nz|VqOplEo9>Rza
zx`)t%VLi!yA@ri?9YP-pDchIg;@EOBfb^&SD}(_d45XGh4x<=E4h~@m#ZZ+i-@}ra
zznPS$limelMuspdgwY}Rc*B30rg3AW)zyqX^Flv1gmEE^XYhm&CQ`^MOj5N?p_okO
z>Zh9;(hdfuF*!Yi86nK1o<+)hH&)SF=Ijt^SJMuI=Y}vZgr^}qlkq=<1+vFOILzRM
zA#4a?V+e~vSRBHVkai=z6j>g^QU)wjbtX0J6(OvobL6dl6~*ch)=;b^*O5}gdWxL?
zi;*+yO`=2CEbExNoP4fba<?!yVXwA$TSM3u!uAk$sIq%Q*s1g`irwTMQf>m-N3oxj
z8V-bTP-%JN>k-*LA^dqqe~#uj-o1ZJ8?2DxN9+ljCsq6@iqj$dtDG|-oK-sM9Q=F;
z7ecrw+oxyDr4Vj~a9jGRw3b`dWV#Z<RqAWXxlVC|ycvQ#Ng-i(RGkkf?uKxW;yzjK
zdqr81hbrb#2>($(R?d?Ul0Gs2JcJh^WDg@p7%xM3B|~u-sls^8$R9FT&DDJ<6#piK
zw;{X>;k~NiE5!%$V+fxpK9gTaS%9Q3-G5{9JJ}>}vWT$OoOGm!WML$yPNAGBe6>+z
z7#V6r{t^blNF7F+u=d4=42(&uBGXZ%C*PLTWeg(|b!IY47?pSpN9K~1&h>1_Mj=k>
z9{QYN<dPUVxx>g4MpPKlOy(tvhLKOj=MSR*bwRR_@(YLYYZyhClow`7&6~?=D_AUy
z;$f7aUy>|UM$0V~Mrl>H427O7OU~un#*XoE>=-(+VZ>3yljX?rWCgM!DK+OVqpM6^
zg{-RlY82ArYEb+hMm>rIvL;!JtWDM->ynrB3H8HhAlttM(zZauFdBt1wJD}GMdL6M
zW#2VHiY73~-U(xC7~8@yg<%e(cNl%bu!La^qe~cF!?1;652Ixmt-^4G;S3`jMib7(
zMfym07#<2)BQJ$4xnDT}ieMNa<%}$>opCn}qwJyR7GX4_-(2O&*jsL2Y)QTxrZvqD
zVYH!Wt76)P(Vkj@r7D>^hS7;mXYvmfDNE8Vj6a#|MY`Li?5=Wqgwa#!cl-&<JSe(v
z82!Rn8OEwG`iJpX7~{ei&#(dH$S?+mF({0|s_frk3{iS0#V~28{10@v@<&i4E$}Gn
z(P50C7)#2jN7A}X2;-kH=7upbj7iLzOwJ5ritI}2Y2@_q&wqTR;0!ufPo|hfF`Jwd
z#y;pa&X1nANk5N{L@uS6AI1WTg<&iTV==WX-jXnu9*&ZyIpilM&-dtM^p}$>NU1@>
zR#UgDrEUK;)N57lx-iyLZy-04o04*qC_Rp13)$yE#P%?Dgz-3xCt>UiV^<j0!??lR
z-C-OK;|TR0axb}$+)o}L4~B7wLKZ3MiQuDQoT76~`NzY!up{b37$@n-ibxAN9mc<5
zoS}13MV_TNN1m5b6!LKgsr(Z4Wm0Om64ri>uZD4r&dPUMgS;8WtuX$hBgxxg+*SGx
zMb^UFm~$_T`^tYn@sNB(o=B(tR&LIz&Gcy)uVj!9;~BG_lP}1Z<ghnd*qbokhVeO!
zFEpDT)xV>7Pktajk`nxh!jV(=RXMsQn3p#C8<XF|_(2iTL|asuWLqUuy5#MMlueMT
z3CcA^`KE|$0yM$dCOFpwshc286ZB|;o=uRp3DPw|^(Ls%1nK`jrp^LNisOy;ut4@E
zxVyW|?#LnwEbQQ#;0_^-yEYnv2Dji4+=2xsf85>O-66PJ;C+3Ue(#-A=bm5P@2l$S
z>gt}|nVudCGFgz@f;{Xbvjtf!$V$#sU0q1oEXc)bc4`i)_&Eu+64U*_CyL~?AfE*Z
zvS|zQTTsA)@)lIEprA#4kdfTj&|rb75StXXpoj%UwSG!jP)y_E7L?Gqqzr7KI@P7=
zl%bZ@qUB`dab}6?|267lL%an@s&Pz+r|PK&s?h=yL2`!GPhCml$`)MWxBtYiVnHJP
zs#>%fp}GZ0gc_PJ-%mGNP|E_R1uhF}TTn-?-WD{opsoe=EHJ!M4~-N<A!B{5RRcmp
zY9k986Pi$)Qh%gMs|s=E<`%TDpo0Y+EoiCv6_3Za(zrFD4Ye(`odxZ+=<NMzI%(XM
z(3#rBf}aWPhNnsy;V-OqqgpJm5+r1^z^<{wf*!m*_0IJ)^0;g_eUBFPTHqu5EeH^T
zRD~L{AWVo*rRS&xLo$DR-fws5nSM_#D(`dlvEWw=7F)2yg1#2~X2Bm8jJKel1?`sV
z23auJg8s}OKpjYxvtByCR#<;MU5(#m6Esr|NE%9z&@c;zTQI_ck#xpt{wTs|3&v>9
z;YI1jksohS|L>b%!9-SPS}=)lDs$>1v()1|*@7urtEq%()aleeEtsK2x4L3xSuh||
z;%p1%Sn%?YVf?4~xs1-E&et**5Efdni13%@H;OYawP2Z?7sjOHGSvrk%PsiZf)z}#
z$C+1JaIt`KyOzJog4N_T)U_6@BdoVzgO>A83Rp0U&pFv>!6pkfTd>7~ZCXxfO}ecb
zSLZUQHYD8+3wBzti~d0^y4!+18t*0SvtYmG9FPkRpZ_WIc8KO->JbZ$5{_w^Men3K
zVZliYPFYZGgn9{WUc?|!K7;<O1?Ma%WJO^s&RcNsRjO+iT({tY?7N)H7F?D?A7_^L
zw58P*3$C)y?z|`5_@8Nzx#A5AZd#Deitnu0DmQ;xaL0nXa`{@JyKPY)1|_%0OWS*L
zj4XI%!F~4dz=DT_N7R(X_OAtxEqG$VQ<~E1xdqQO?pHPTg~r=ce*E2nY`67ktaxL=
zTZZ0Q@E_ql^@EoGk?@K7*@C5e)PKspSn!ojDl58QQdhf_)K<h;zr7ZG*^)LbSzZ(*
z6l(>n$VcaUD}EsKOE#sqB7+snuIjSW$!JBV3;L89%VbqwH#5`ELd|MLHiC4R@}Ec!
zD{^X1E-P|toX3j1Wcg=DlJk=bXwib!Z|~|Cv7#tVlNH6RC~ifZ74cTwC{R%z;wlYG
zSW!}IRmzIe8ke!6tj6W6C{M1SIXWw{@_Vm(Iz85^cOytK$oP-yj8?c88)`0&Pwa#Q
zD^^WbM_Ad4D&kw=u_Doms#Y|&qJ<UJ*h5__>RD0Uiga6bNmPLvgql_)6U>@li%{E&
zI)w7W^pY%_sL!tU)KoXuz>0=el)0x~cpF*KSUQ;-*M!=X`Xg1$p9syYxV2R$)t2nU
zVujU;R^--Jw6UTsxdT=DY-dG#@{>C1G<GB}9-`}Hg=l9hUd-2ZvEpY|#pz1;#fom4
zBVW3-v6cKGVJDQRU~*XDw8F*eDYLpG3*yx0F?y}=S<#oi-->{&Nh^A=8nhxp2+8uR
zsJ<B<wqiS9uZ5#lC|0C89V;bIw}hU|>|=#+FLH0{i^l5Pq`#6M^XVwRS<%mm{&a?0
zF~W)gRt&Ua5S<}ZX)>7bJ9S+#b-+Wd7^X$#%pIxmAB0g>jJ9G7c`S9D6{!=|`xZRs
z)#l@^m_UCbb+Q$c2q_nVDgPf&x8hGLj@xj;h8b4Ov|_pqf7&q1irKQ3Y)G<Ujumrd
zwOeu1s{Y#JJS+Z@9;}#e#R9n^y*DhhVk!GvME#4pSeEE!-4d$YDc4}Vei?lk-g3g<
zR;;jMC3zKf9d$KzjTLJNlArR`hV@pAyQ6+azrl))R-Crtj1`-#*es{yJ>yX;w#Z<t
zI3P>$rE!}aJ}Y|FNUBmkVTabwe!@;Gc4^LT!X7L3YR*16O!L0o?<5zcgYtJNp9OKq
zio?t~qGigp>zKyJ2`A+A)W@DApQ6fB;AFsOt+>YOIjT742^Xxms5zIcxJ<sHIadkt
zNwGX};<{X^^!i>ejkm10ZN)Pyo-<m)m->zscV%Yy_S8MC?R_gAkRMVXY5u>2$5uQc
zJk@-85XTEEURsgahAcL`q7R#TR=&2X_x!)1^VW)Yg!fkbXT=xt2P-}jK2bkYrQt{p
z>8llK*-t8JYHAEsa?;pviDy|lI^R)awP=Pq>WjknHvFJD>21iMaYh?5ky9RHmDPr9
zHk7cTB+cwLSpU)GA?Kjxv>_Kk`pj*^6aK=Qa9$ho(a%pUU_(J03XzLa3sZ|wCI2&T
zASq@;an0$>2g8=KA&yRI%`ZbJOD#t&Z$kxwj{1L}&KGZk-UfpWM*5YhCTaq;BDE4#
z#*p$mR#jL{q*k?|nigGlB~=X@YTD4(hTm*Rw!v&eM;kiXP|JqeHZ-!KF_Y`qP+x0R
z*M@rJl-J@0<l;%jh6K5EG_hgGN?mg;zo`vB+K}=I>`yeC+5X=<2`y}BNwbxf-`a*Y
z<hImy)b?7mgAHqje>?9w+YquLY(p0tezu{j4ZqmnvB7IYHybQAIBamr@wLHbgPlFd
znB~s^Q7JN1QI}2q!$8=rCCI#`TmXG^0yg+L;1n}RGo=&BjIi3vhNw+`O6J>N0^Mo$
zu%V~6rzvfF)0b9#2)}C4em3;CVU#T3cc}*0FwlmfDc$Pyg9v*!s4p3V$-h&F*pRc6
zy6lIsDlnWdf;v(g$!HtK*f7?Har7tJzJ15`4_3!hrR@Yl$dr1L4Y64&PG)rqb*h##
z&4!rU>Sbz%4Kr<6ZNu${sb<+Q+lGbAnPWr0m#MC<jbC8HT&>kS8|G{LlBe+YbjC$C
zyqg#Mmko;<T0;HXhNW8OG8>kYPZw8Tr=+Z4b)^lfv>chzH8!lZVV&lzx8eN0G_CXD
zA8~BhV8ccmcH6MWhD|nXwqdIce`inLV#Ap;@nf?m_t(c}IUAoj-Yn)ehPK<VgCNdM
z8+MV)F=4L_`)oKUtHp+6*^~Fns*5+r=SV)lsyKDx&4+C`B11Z55dXJ$^HE{uY#nMk
zX2Z02vzRAsI3>l7(^6z4vSRJ<+Hux~b2jMgh_mCo4Hs-EW=C;5F3P3PhW~8%V#8${
zuGsLe4UcWOYQr@-n%sB!x%RI&b@Ceo*KN2#M;5kB+AZ>J>Kz;I67Jb>pOA9n%>%L|
zKeXYI#&ZA66Y?ACQ_X)ycusv`!%NM7Wy5QYPt;a7{Z<Y!o%hra)Q?)uCmTL%T)i{C
z+K|eQjCN$Qt1l&~?fAhCc^0B@j2&rcrlpFLj_{owv6=(I_ja6!H%mf#Rx@bPlv6LW
z9YyJ6u_LQp{jyayJ962P+pgaBmfemV1mT>7aZ3$(n4e$kCodr%Ri4Nv8!BK&K~@V<
z3sc1}V#j1Y<5~_%lU2GY=XE9QC~Zd>CX}?Jl$QB#hPZ93bY<=8=cncD$hRq}$|;?2
zc{&yB=$X?j)p$GfcGS0{fgJ`rjCRzpqoy4uI}+?jvg6=a^&F{aM-@9p2h&wz|CP0^
zqzR^$XLlspQI$?LyLvNTbuB7i|2eoe_IbQ{_S@>ocGRP9wxjV8T`fCmOP~7KI(F2h
zU!R}diz636+2Xr@Q#G`sktEyE#IAnv%FrS~?mDYnDXA&*TiU;U#`mKgKiScYW^+4Q
z5Tu8cg(}+0j@EXxq2JYxU+idWM>{*(YndGh9jK%DxYthP&eSf{pQ-YHeK&&iZz0GU
zuo7%`*a=;ysH@9ihm%zoRUEe+8T9HZ^4a0HW4RrF+kt|q19tRbPEgAX*%8(_Vn>v$
zP`gumXwja8Uew-p-0iO3`tqwCeeL+oj(+qf+R<M&_gX!UqwE+!bD$lA2!rhyO8A{B
zIYS7=+o&&v!^p$!7(p1R<;dTJqse2aV>N#q;ScI~J0@tpJnM3jEL}UM$Vt~-w}Ads
z@-*snJN_ihuwxEkCUq87n#{JVe+CQ8r87_S=gZn2sQL@pr!1aDcJ*cVFFO{~SwdZE
z$1=jE<7rYp4qIWzN_Mi_j#VikJ2u;~+Kx4L$V2C3_t)ChJE#TL$qKZi(@4`l)c;YX
zy1|Z(<Z)AVQr*IScG(fEs=f`o)sAg+wo`Xd#ouYip55yI+9`itHoL6bW5=R-3486>
zXUBe~9iSej9+W*IG`XdIBTO0|VfCmT#|X!%C#WZ>l2c@Px-)X|x8t=PZ)l#g<APlF
z$>*sHed*qnRS)zfJ1*0?V#fnJ9@=r$j%#$TQ}5bw!;YKeTh!aKDsrnIf!$$suT34;
zJ@S2O2j1=fNX}C`Ueb9?eP+jV!V^255>hUt()<OhW%cHillK*?;t#Ey{ML?lc6_ws
zlO6BvSkj~V2S)D%)zeMN!2M}H+wmXG?;PsY{tG#^17Gb(<xs!JD&~diRpo~gVwjMI
znwBb|bPg1Gsvh@P2i|N=2M4})sK2UkduE*c^DaNBkU`6w<UmFTGC7dhfh-Pmcc6y@
zSslpcKph9_I*{Fg91bKnP|<;$4&-v6r~}2=JhuaR9mq${<3N5s3nIS*1!U_E_4guW
z0E78|M?vNka-c9FWlkiTZ+C13{$yuy2TC|l(t%P;&^u6?prcA=83)QbP|kt!bY$_Q
zbW*{ATe-fIggE-~)Rd!O(ApXuFlju?qQ3H0a-cSy%G4^<L@lSP4Bmkunc}2WCnPyg
zLvw06knDh&)gIHnt3}B4B3_b9dekFW&w=_5babGT0}UK#=s;@++Bnci>tF7iZ0x{^
zT&5<P)6{_<9cZySNy<-zX4K{>Cbgvltx~G1llm>vwbj~oaG;&W?FlD0ng)GR-+1Zl
zKo<vG4!9lonIWqKuU@O6uB`szz_rYA-N+W|fg7o84%i)VIOMSpCi&Rc=|Jk6M%{N6
zg>zI(diTA$j~)lS%=b~l4)`4iI1pqtM3uCZ10for6QwFzRE}UzS<+ck_jTYmhx`&H
zddu-`Xz1g>uQFpz)R$@Lq#j>u`Z>_wfsqc3a$tZ11K9~~#13*`umi(bm3uaRmuWAl
zm#2LWkrn%;%24VgXMD=-9K)G5f_n2*{Aj`-4vcqT40$Y7Had>*i{3mzb0*467F75B
z!*iXfYtm!~rZ_OwfoTqGa$>U+(;fKJfzD2Jabkvi*556;XS%p{PRw**mIJdLnB%}f
z2M#$f*MWHsY<FOX1M?kN;J_9KhChpKJ6E^RfkomkHr)8rB=5@pCHcb)iyc_vz)}a6
zIk47&bq*}2FQHY0zo{#zD;<zumy^(HR@YFaD*dn5c%uXVkpHJS8ypy$r=p}u+2p`x
z&6ieN9eCSAx6OeJ>vS6r>L1NfZyMjpggp-Ia;QJ1u%x(QH$i?p`pT8~y$<YiKw!VD
zy?OBmWVIhRv@KLooWpFG#)-5}9C6^NTtEiuj>*-DzVLBLrYYR8Xu>H6PBV1IfqM?z
zci^l8=j0mbzy$|x%IWXGMJC9|uQ+f?<I6IJoe5%Il|@eTI`xJF(`TsjQ~a)~QshVX
zZZmX8YkODbFoRJ-4;*;tzzYXnI`Bw~K6T(<@?*_;BIBQFO6l#H%!B5yeHQ!5f!7Xv
za^SOEis`?nzSVNx$&yZAUD|%ooR4z0E{<0RMkke1T?1dV=vP_cbJcC7rY{iVMCF-!
zfpl~#IH7Z5+#20?PQ*F^C%$*$2Pbkmk&6lGoybDSK+Q<aM3qi5Oa3c$>sje!qh{Bl
zIh^?I@wa))?L=ND@;Q-5i^_?X--!ZFl+m1mP84yXs1t=Wr?3<8j&E~S%!v|Clw_#5
z6SD_>>$w!2(oXrdh`L|7-m2q~Qr3xbT0iBT=y5_d<vX)+PPBC5&sFj9PUxL5IAL_6
zmJ_v|FfqT16NyeFkSkIvY5i1oV$m-3SXZS}gIbMRUCT*wVl0nuO*+Y%Z+2qU8Fh`-
zaiXphKhm#9ZA7h4Z9tW@hH^w^tNY%VP7}><>O_Y<s{a$6X4K|dw1w<NBXu5HaUbQ$
zB&`W;sBN97vrZ@b-rk99)Ab#k=;*|N(gtBEooEi(8~?KtU7h&D3ArfAjQ!$-%L%s=
z1NG)^RErZ<Cv0T96AmYwlJLYN2{(%+-7lRaAil>5uM_=c6Hd(1n|;)NRKF7eCxT9d
zSnWxboUjuSa+Io2yHk5mC1;!7EZU3J-cIx({HjI!%BmyZXIk)@G1g!n=)@p7F7yXG
z@jGD*b>5z2DMOqX%IYwx^grB*5#*7YGs=n4<RS)j08(lY#?kDX-8|lj2~HfCpD<Az
zS)wv6<8+gpm`o6!;>1)ZIvdQ>sMD!Z{Zn2A$TKykufaUWiMdX!b7H;B(jMJB>R(RG
zcd8%LEMQgqg|a5er55U?DrK<~OPpBh#4;^s1z|b$Z|e23hLu`$l@qHqUL)rbS)K|j
zUH#)ks%7y48=d%{oEJCZrEG8_#;q3+-_T3H#fhzQG+hX~An#UfbK<%aH=Nk+#11ER
zI<d=%eNOC`b8xbLw-duo$M1Dwk2JYhR$d}S#mUz-Zl=L}Kwbe2=Bw0$)I&}jmW#g=
zN1d2rt}5j;;g}Q0HRlB3q!Xt!M>;t}KI_CeC(djBCBg;jMcE^RSvtI|MXzv+;z;vr
zWJ$Q`#4RVfxnObOwi9=p_|J(iPTY0ko)b@;c<RJ`CmzUa`qB7*op?wPendEGFbm(K
zK6awh>nc)x=EQR+-a7G)IWL@e$xtezS@I?4m0T)~=GRWVaiXG8b)+f{-#hV{O+HXt
z8O<M^_(YaykJnXvO#3QF&4o@blz3ewwF@yWba1J|OXEUX7fdcBxRB0;?_4NLUqZ1i
zWON}DtDt^Q{lSIwgbdW->_4*$SzIXWLJ=3Tx{%F<{ETL&=5!&K3pvOIU&Tu2xygB{
zd8lH}H=6U29fS2!EkG_vEku>Ui(iy1P?AuLT0AAeg`FIaL`%^r?LrxXI7NC?FGns<
zt>A)=5J%Nh<6SUvga%fP)C*mbrFlgcD!CA6GPif3vI|vQsO>@>7ZRBx2{l}(s&O?J
zs*{tbm$gyVWHp&;cA*wQ+V)+duj@iRR$IAH--QM)G<D%e7aG!ROl?F>#}PImOWTy{
zPcF2e(~R1j`i9$WNzTMpt;y1=4WTWy9W|@ToZ&{Y>|jS$Q<i9F7rMCcbfUh}t615K
zpIs2`>cTHFFq1jcN4?c#wz^<*!Rx|llewSCY?tOHv&#jC3r-j69y7EqZho6pFCn)J
z8%$;oP4UI?x!`v}phUF<ai&yD2)Ph;VYUl%T!^?3bz#W{!z33J7rMLfy9+~H=;1<7
z7y7#Jn+v^Mm~cL}k4%1o`H9KgTb6Nxxp0Dc^t9w(U1*nJ-aj?Dp9}q67~sM{=`+E+
zwRZB|smX;}>06#QL^7M-PSX#PP7=(6U08lrpC_wns0+hf7~{fN7lymAI>9``g^?~C
zN-#f2FpqK}RYkLu(Jn|eUq!R{l`ERZx$uVz6I}?=X;INUUb=P32ia!%H$-v-Bs8v~
zd9n*rTsU&nIMsz2glSZ9rW5{jp<AaUsY;pY!YrDrDw?G_*M)g9|88`1W4;RuWD&Yi
z*NufPERv(+!W9?(a$&JFap9=Uo(nrZ#&2?AvkOb*f_zH9Om@?Szg<|t>U!!*7uFJ1
zQCCwXd5sILzvu<lY0mCF@lySV)&I!>)%=ZeTw;w9lHbMHkj=Qog{=&2b77AQdtKPh
z>JI8o>Mp7@*)2<biB3SuJ{JyZ{(iy%s&p&SLoOU<b<j{X`IrmGU1*YBe`l)h1pPbj
z^_N^Y>B1>iPgBoP&rr`&Q-*rpg$t}+q)Laf7iw?s^;ccE=0Zg`Ry@^Tcj1OyA>H`S
zjhimqa^bxTALRP)!W}s~*!Hg0!z02y7w!`tX#PV&hH~l@{p-SGR-b6m=YwOPk)ONp
zg7A|1#)Vf}&TE<B$?9H9c}w%13v23sb3W2Z<;Ew%XX<~{FH~vum9TD&A+=jw2{F_(
z)U;GFWqM=XfE)SUDB#BT^fSAW#f=}dob-eY)Qr?jZmcz^Bgx8YE~-?s5wcTrP;<KR
zXtjE*b89(y+;V@lIvy$c+-TBKg@SGra-+N(72GK7MiDoPGpDGQS<H>YpVXx&CB-b^
zMoBkHxlx)qWwp#QZj4K%rb#I$NAUW$Ryrmasc~+^Yx#PD!HtxIC9O<!5~#Lmy0W{B
zmE5SzY85vU-Ka{I%$kI1)aq^|X?_hiq@g4vyX6rF>Hy3P)uPsRqhVMbUOhMJyJ1dk
zcvME;Kuov%JSbYb(Z~%sry9%TxH0ysUbrb67Wqf-TB7@r{1deqwK=r~Rl05IMy@65
z>C=WzCv8I7y3tO{Y41h{jXS!L^Xa!)>g+}r&HtIumHI<dy~T}=bK_iY$lE(s*+Dn#
zbR2Ft38pE@U%DkdK4feglOUOHH#}~5-SD~5-;Duo<VbDuyAg0B=ti|0#>Sz95PR!I
z4Z9H`MBO;>EMB&vu-cv4gW8iSp*sId>P_xL{gv96`Wv+$RWhfhHx6`TkQ;+#*W_U}
zuZ^Q`7)QP{?tW^j*vV9Xe%w$uhPm<MBmDFT!`&F+#-(|<JP#w?80ALop{O$yqum%I
zE2KLzcE?zmPdEAn(Labk+!*i1OFv%uF~N<Aa%J{nkr$KPm@GT)h2M)QZcLT6?N#5N
zo#w`LH>!J(<iVeA%y8qG8_(UC>BcNK{&C}fZp;>q>i(8%ksEW!bE##<=;q0*fEx=~
zT}WN##v;OB)Wy^#ROw`?oXF$UH}j<|m!rU6#1LM|gkMh?R%w~5-B?3jt2yfk>tzSu
zs_$}daATvKO>W$BW0M=3-8kmPaW_78O1;I6oo?)MW2@G7n;Y9T-a&AjSKl_@?Z$r1
z-{Zz!jrX|`J4{WGa)9PRHx3aFQ;$%OQY9x)GxZ7byGk(^2`8zi+&E1*Lp@8C{Bv%c
z*Z6`PXRh-7e>#^n|B9@0jjs`|yKzHv-ZYB6O@8Rc`giJt+>xv0p7^_N+|zRI6CSux
zkKZ4WoJVf_t3@BX@kHaNg!J!YU&!K-7a9*@J?cS!<;HtAJ}~;4`o@j7gm+ZQxjV`5
zk(`Q6#QDVPXE*-Sa=y6nm3$|vz7Lt2nK9Hf)U?!eR7ubePYn;gXEnitA3R9!!PGIj
z(jH{ca`JhQ(SuALWY(OVge)FpC1lh5>>lLMcoA<v&BbbN5AtY!UJq_&Q&(nw4+?lt
zQ1gou3VBdibBcISlw3@6_CVdK5+0P)oKl1(2i3z`#)Gn&U(SQ_9#rr^N5`o7aUR5z
z^_pYwU~&od11u>f53c1`53!Vr9vGX%R$^LZY84L>wN_OL)jZf;(JaX|JgDixY7f?U
zknDlkgMmz_<w0!^{2qC>66(<D>cKA_)b*gA2lYK@;6Zz>&xRf}@t`TIji`;O1GdHd
z=)q6qwjMMiw5H0Yn|siL+){H|c~CKbRSC7BbDblUYCBegd(<85;6X<%zZ0Re2VDq1
zYyPw8sk@P#R14LrMQsGT2M)p~ZpEcV-5z)}_IlvcIBhw7&V8wa9`vCT@*wO%M2q$y
zM5&4g-3g8OX@ZQorw6_0^rnh)Y`nT2er2^U^*3ri5Bd`ZP$j4Fyo5m>4EEr64~BR!
z*MoT;4E11`9DNU_Fm1R8e-K7!tws_?c`#aY#t_DOFivw4+N&Q!kN02#or#)1NzRuy
z-`3Ss4`yoqG{SW1pB~I0<gKKxA}O;xn5|{bA>^BzYCd5(b%6&935z^fLimfim?}M#
z{hDeid70+);g6O4&FTsdR%-q#g51ix)`N8(-1Fc*o%Pf$vYzki{}E<&16BIpNZ3T(
z>_Ps8>LJ+b!8Q-Jd$7ZU%N|_uV5bMWJUGL&-5%^A9P?l=;gAQ13Hv<QPdGq5NR<v(
z`_yiacyN@?E#5J;{)_r~rIh0|Pk3;WaEf}GD$yl6we49C&e1tfy`V)edT>c&dCuom
z@-6B$>h=E{CEWDj(A96(gxhrPQ14RHUr+tOgNGhu@ggf<=pT9T#e=UN{OiGE<~)(L
zu`A&%`KbrbJb3QG3szrJWwdg+enoyweWUp;^Txc>_`L@oH2z5V<iTgn`A;q;uhi!h
zN!gawl!}8%?L`bBjThg0@dG)n7wHJ!QDdo~O52&w)k#jzYDQ`X@3&8i#m_`1GxbhI
zb)K_%k%!gn)Ev~D)Lc}_$xVpz$D#6ik<W|#UKH@6pcf^yoI-@6UKA!2q3*G(n~+kB
z)#6?>-}B8WNv9OGG_{NuWeJjB&WqxW)DyFU7dkKEyomRrofqxB(0gI<qKOwxy)b%V
z@}ia(wY^C2qM{ecUYNb8#D3!1s@tlp^;yM>L~>PXHEMM)k_a`ts7a6}wNt4LMSs7d
zPG<Ol`XrD#UexuXffo(EsK?CuRP$r?!`6+v)X_Gg)0ldoq59mIvnF-z{YXckr58VW
z(M;xnP7CUY`f5(~^y;f>D=%7m(T09oYG9M<7cHJF+QEyCG_78A@}jdBzp&cHi=PQy
zy_mO79sJfiJlE>0+>Id%bzVbtTQ)E3UO2pPdg1oM<AsaS9mCXC?Z&J7;-xb`M(ttu
zD%A;i5%gk!7X!Trc@g&F?_~9lA1M(peq(;r3x&|#i(X#z_M!)?&4%fEdNH|ye#{;<
zzmFG(R~Y(w@v9tYzrIQ(v*^#Kb!~Vd?dL`R1^WJ896F#E7{nfCQU`nSyB9;e80y6z
zUX1r*m>0tt8so(XFGi9_%L=&_e{8Mp#=L}4UIcC%``k6=tD0`*9^E~gVXPP9ym*{7
zb+4j^C)d+W@M5B@jrF>z^7p?S-^TjMvTMiU6K}`A%x3IUMnA=iE?aa0)4Z7O#Vz?P
z#)}zjGVhSCXnB3U)w-NZbhEhW*<Q@?Vy+jtcgAENQE`DB5&E*%^S!vfDt_c2I(goR
zg#MDFnaa4%i}hYCCNJ?~sTa$<SS~ww*&xxsy;$MJ8ZZ9x8~SC8Tj|AWpW%Kd{VFdW
z+|jL;>%%f#-a`qZYnih$wLvofkuA!O_|V9Q4PI>Y;(!+iz1ZZ%W-qpQvDJ$V{$%-(
zNS=hB*{&|F-j&STyx8u=4lj0kQF4TCpBMj~)$j6Rj~9ErxRWb+w^x3lDOn(e^Ssmx
z?AJmPJtT)!&JmybdGYLd@khM4=Ec`Z@keD<pVS?r3LN+1gcm1SJ>|t|FV2u>Ow&p9
ztQQwpJ*VZLC&<517YUa%|1#l<7gq`SN9m>cbuVssaZ?VH7g>DB>ced>&Mwry_u_*L
z)r-4c-1Fi-%@@=MUi?dVNR{MAUhLbe7kI2WPY6$`&%Ag}NSj5?k@Aw&S6;j(i1Wsa
zw;I2bYZrS<^RGVFZwa!bKYH=Wi_bE{UVLHN4?cB}U&*oLR6eBkA;yO^tV%Q;A*~Oi
zGk@FecM|<qWia%;mTBg|()*BsPDW}bEt*-TrB<S}%H~6MAIkYq-iHMieGVT=Fej%E
zxqQg2<rgI6@gXlEpXTTHp#WL-NO~*eLt$2nP>WHE`Y@@IS)#>R6_BYYsc|VnX=)iC
z%KDHpa+&-JKInY7l+IA!hd3YNeW=Scy$=RLH6LVRjXqRnReClN5`3trIhA~nd%Yx7
zMRO8;sH(9<tCN#_s6nVnt>r_qmSZN=U!ZnU+lM-=ZriJqYCW>-ps=h28EWo{x~5&@
z8vD@1hxsz4J~Z{=M<4tb%MS73Cm)*m@QV-Kd}uC*Ae+7&RiFi-r4OwLt*LFaXj?+{
z89K>q??VU8??~w6LubwD;=|8AboHTB#yClq-_aJe_+a(ncjnl9u=^18LGi&s$4_<o
z;3Bwv@De;!X+Hjcu|D$QyXpV}<RCRf4O1i3ClU4GGu_F3s6D7XsS@f%=q(HTpxWE7
zKJ@kBH!V7l(9ehdgaK6f;9D}K4Dw+x9T}2T<yrcoLwy+L!*Cx)_%OzYu|ACSVU(OB
zKD51V?9?enR7$g+rZtt!qT_t9Y>xlahZ#Qn;lp@VC-^X#Fp(+=lVpBA=>(?uFx7`?
zGKaMcd7l`?na-Tg%}l~Gedv-tE_^nAjt{eZm@SjPBDuj<gLkD#bgmB)nkNf&yKZMv
za_!CW3w>DR!|9fWD?a??!(w3{&iJszhowH8^r^przRZW^KI|s<xUT!#hZW>gmCO=d
z>BB0Yyb7q9Qa1RohAcmsx7LSs<n`2lw4DF>P(;3@&-{%(+&pF6<ilnkw)n7>IXkG^
zwEXSNNy*>o!!G*IPpX@fvWL~ZKJ4>hzYhnrR>yoeNIs-FhY3fhM}3grc}(fyIGqzR
zh8MaN=aiiLcfO7AtPdA_xF{?6wC)`Byv)BTIVJOw50|z6JwKbuy;p~H)rV_7T=(II
z4=wy?>BmhUZuwBsk5Ycz_Ti2Xnf=J($6X)p`S3<g<aP1)sn4hns1K<UdL)}5Kc+tM
z;VGe1a=a8tkn-Gz7c^f|Ur}FECAz#@y0>!NeR%J~2Oqxot6Ti&!zUlolBN3Dhg9VM
z*y@Yc_N!b-J10v*YDQzU{4|6MA$>Z+chp!d3O{mf&`GNw=%lA+pk~x^GWl^QlU{NL
zv^He*BO87BE9hb^gP7U<$l*s$nz{VQ??(Z0Za?x6@=_%;pC9#Gt4#{hsXHvTs2_#2
zXkkJTKQ50_w^dB@i~CW6T>PEdwzMB*{HW?jH9yMwQO=LqM+`<WYZ{(cGD|{vCRd>9
z{D>pOQ}tBIG5AsAzi&sx<VS+$S0q&OqcWk2<|q1*_M|#X)%{5FqoE(w?-^?NQB&5&
zf_Pg;lZ2A}sHf$d{isE*o#JSIUD=ntYCrYqG|+s@uJ}fNG-kC4wJCMbu-G59oSz8I
zsLiRe7p?qg?Z;+6w)oM;kG6h{^WzUc+WB#`x6a{*(~tIkbnv4in^>tbfKGmN_M;1{
zKU2H;(N&B7LO9e=Z_%9o-O@=b8>@Ee&Dc1XA8zvRet7)w`l0yIosQ3sFu_j^P=i$I
zC*((_%Id+2Xin6RN9)z&E~SSbzxvUap`O%U)ZTvd(ekhNRu{u>ehi?~kJ?|0%JGuu
zKtBd)&R{vI`=~QNgw9Yuh7pGQF<Q$R;m1ggM-f_N){h~K)qI)r@$%-sAItn$?#Dzw
zCiyYXkNHfP?8gkk6fJ)$VH$P1AAf4Tj=MjT)mhZpe$3ILbN$Hr>Dz29pt;D8g<7;m
zS^ZxcFZN>zd8y`<9~S$!#;g5UL0(B+MfF+Kp4a%X){k{s=0Ak>)Rd+EKR-6Gx>3v7
zBnP*-+IFiS+x)oa$9+Gx`?151eSYkh+1_c~$>d#rylAcO)<!)>yZzXs^{|)lWrO|z
z;glbz{W$1HfUE0}ABX)oB1>1xKjFtQjgR|b;SrQRPtvSQJ>$nExoG%tmeq4w{&_zx
zXnavtCa-eR_6p6Leq7a}*9h0CH{=Xz`)%fL$*Ta(J6h&l+3VHn65X*$_du?D#f-ua
zW$7~EUq7B|nUDQ=qOo;Y>@)In>I-VUuIg4^`|-w)x<S+n;;kR=<m3%td;stL_~1v2
z09pp{(T}Bl;y?NES!Q@lqVRuye37eP0ObPs>PM;ovILMdfcllqsRM`&00G3XDoz?g
zT57rgz6-!!*(|<$PxAKxRNrLENEP^jkUoG6gn^aKVoJ%xYUTinvzje{>;V)Gphy7I
z9vOFUGUW&$X8^4>nQ~F{2auZ}PM!er2GDdwQa;U@S=lUp0agnJ(0@cyA*z@~1K3s}
zp;Q3RDx23=HWv#(w0Hm|2qmc}7%I)2j8)8K0w`O>EcxXFIPt(xHGpaXR0u#9KwJRv
z0XRn_RSw`qZ<9WN1cHHTq>67M)U9H!s5zAakg9~FZIu8L*$KL(lWO$<l4N%Rm^54`
zb66vQbfpXp0;m~4ascK4YDwDw>T$Mf2T+IbOQK$qW#&btbgiP6`T@ux5Re`k2GEFI
zHKvNwB!E5){m4=Mq>Zf^p*c0v(BxJDv<{$e0KWy$CV;j91Okxn-?a;%eE^*U=pyF*
z_znT}$sQd8>i6y&Z8mk1Jz5msx=}*+3;Le}=qgJh07n471kf#jTw9G+c47%&&BJoi
zn-l>X&0{*Fd~-^wlIaY<6~K%$M!9j?&8UYe`CfvL>Zi(0?7;v+0fYmH1kf{pUI9b{
zkT(;av^R7QKp{&t*JWLg0K}9srHWY^_731z*^#-rK2(9UkIJP~`^n-7;P(KA1TY|=
zKCngJppYN*soz64P$s;GZV+{F01s!Go^R6)m5t`BI5L1y0SpVM_o5Hi#yo-`J&z8k
zzlT1CDqk6p@kn*7MCnL^R3``rupoei0rl;yNde3wOs0x6g)o&mEr98o|EJ6tc_wuh
zbvAVlbuLwUxYiQ#%;fp3_9&BjQ2>9*`5r*3AQlI(B!GV;6u?qBxB;vUpg<SX@&Nvp
zqZYu;NjlSS2`d6v8Ne!uRx$5)#vgpByO}j^wH)sEy1(NSCYG;SqI^}!e5E(7laot2
zJflm5sY8NkLjW5Ccoe|D0c;9jvrJR~R|D7*z}5f`1aMGJ)d02!urq*Na*k9r{cfn*
za!JAtx&E9tos2V0saf&V!sOinq)$rT6M*nu>OSgzs+gy8B^(OiZ~$YE7%$U2LOmM5
z=_=+@OA?L+a9mDpnir@iMG2<^I74`T%&2y?F!^i%=jfcLinG0ZlITTNFHuh(F&4^~
z(Br)6S^(DrxEH{ExrQ7y-eB~uOkDsKV@=ZPRsgqY-l2*kJ>0Eg?wKp0Rh|UNc_535
z`zs-JD^IFCmUSDzJGp=d@Kml*0lW&}bpX%hgcZ(fYHTyTl=-)r8vbA?T1qX#Qr^&f
z8-O^2Zm6c{2f6sm<P@v=AN5lJp9$jZUK=l3cE3*ai(D(V#AoelN*zQ@5EX*Z1(7C*
zv_TXKqHqxDf_N~)lqHC)gzu=aL4fc*^#^KtY6faXsx-_LL}ra24%F8=V9XXoo*)FW
zQ*%&rQgcxylskw^2_}KOnv;)^KZpW^f|@UBMS{3(HkAybR1igj82rdMse-APKy6d;
zAW9H~v(z%ZOPg3ah}vn)WrFCpIAK7|s$<TZ$_7y`2!Zlc=}I^*h>XAM<y{m*5b;42
z>1&Xp4<da`qJS|7QxFM3R1Bhe5J~d-Tg6-{h$=xOk}FfQB$~yq8bmc#b%|ziq<BhI
zuMtGeAk4BCK}a<@h$c*yd;w`LMG|TUA^CNv5~?4>;|02(f@nr)5JW?Qn2myHOm3n%
zO$k2+(Yv5t5}F6mB8Xpt=tjR~5N(2JOKwGNO|AA-*Di?mL39qH3!M%@{1&J7(2><n
z)U4~`#Yw%vB>Hm@#R***Iv><qg0Kb=3L+eYEeLxMUWOb&ID>GJH@8V%_^;YYt_cP=
z9br!pt=8)Vd_hF6svGq)6rcvFf0*@=AfiG18dNWyN)X-Y_ons;V#RKKuOND|hyOk%
zr1Z0AnZ6Gbq|Yg(jeXhnH)`g~>L(Nff*2S?rU)`eFi6&n9NaJ}h4Fh3LxOk_#LFOt
z1~Dv%zhx6a3=cw{VLl;<i9w7ALcVe?os0}(6#En&Ez5~KR&&P5T|ngVn$!Pzs!8N&
zK};u14q}QHol1B-LH%~&pX8-M%m`v;5VKfaK%GsULzT?ALCn*5KA}KO^($`+gIJ{b
ze-Rc3u|#v^OQ4doEQkizQ!ST?;zm~nu_}l?LF^4;br5TU*e>@nHA-45d)?mf4|QD-
zAI}-qQ%$*y!V>x)LmQ|Yshfh>OxQx*O5H}?K29f1<nx*xLF^1-m+atk-No&?-7<kA
zbyMpni|z|ze-LMbI2TmkhB`n!LOmG7A%Z*6d^m_V`Sk)vgE$t%t6sX}L7WQWbPy+k
zI4O(&zi;pVG~1DMhOMNxIXzUfpFH*_hzmhn3*veZbu(7K$b`$(OF^u=^zHqqD|D{P
zWv8=A8cMkl#4V`?ag(9MRB<W(ognT8aqs^#?~@-;t3Fh>`!I+{(s@DsztqRnC)B4@
z2|WwqxyCj2>R$!%I*1HmWDMhtTw7!xLpUA6yCB}nA#0wvGlUN^EsOLqA*2c6V-TN$
z_#DK4val1)1Lx_!$kqO={%a7*2;I4uxD6L{sY3Xnjy`n=Qk5c{HiUE`ObKCX2;YSe
z8$v<|6(wP<VOF9UA$%`QLP#G%?hx{XkRb%|vrscqGf~CNOt@RmB%GC;Erje^G)D+I
zHO>`6@<Fx#yo7=w6e8pcAwQu2RdU?<s}|N;l?<T>xhS<5wK%l|RXSW=&r~Xe(jk;#
z4+d)45Xyy6K7<Oa#)qH_VQZpUh8h=wXs&vuTJ=rFdM4STK7@x^4FX0cn?mSZyy}#u
zF_KUzgvueb3!!}oRYFJ%p$WHJHH2z}2Gr^y)FLENWmGjns7X$ynl=A=o<xb(X0=WT
zbqV#fXnjKA;#DQ5VF-;_ZA?vR*p&QZ2tS3;j4YY0LTFBIL2aq|a&RTun%aiiHUv2k
zVs@Yk3=g4W2%T8%975L+ehHxqt3Ok(B$_3y8`&CyjbNe5jM+nQgwQ*LJ|Q?maD@;K
zArgW+gwgd(z7YH&ctY?BaFNJf$jk>q2!;>}L5`iIi6av(D$!4g=4c2?2t7jR8G>X=
zNH)}+JxFpdnd<s#z8p0fn6&yeguWpR3}H|RztQY3yIIfFkNrzqIk-{=&|LA+FqmVL
zPKJi?dk915%aV{x>3^8kZSJb(5h09Zbrkgv>gW*05XMr+QDr1D+vCX-s1vD^wCH56
zI!T)r!t@Z9gs?P(KSPl5$foCq(4wkwMhG)g@<T{jFtb^mL!C>V$8%Qtk)bXKVPQ&s
zqIppWe}%A^)szJz2X2|nKnPNmiT#_ik<xHQ2rENarL~o#xjKY3JVDlm@V^i?gs_h1
z!g|j3KV&&sWL7uQ*&@k=O(AS%RK_n8D6_ha)g2*h=T6D#ER!#*PC~mv*d4;25cbNN
zxo6lqR<|#N$sP13WHIoYYx@ZYs0Twhr1^&lM?yHNImbdcPByMINZXU-=l`f*Njnq5
z*$^Iw@I>}S?)(hln#=(Cd<Yi^7pa%1l5;tPD;i%VSp2DPgz$8w>23)32scBxMYt{J
zepT}ws-vn|_`Y0c3Y(<-OL!pH6T+hqEI%hpNr?`sYJM8RGr4q!kv5FyA-o9Ty<E~m
zcp1X05Z=hh%O}<UYI+^QgyTkG`41@D5f$Fbt3U_^s+)u-lu!B?!lw{YhfzOG!sihF
z3*k!$U!|2qj~kbiPx^e=n2J$*dh@~~Mk(eaMoEqd<GbU=?J)`I2(e*6fc&hQNkZR;
zvFocz{vndCejwLLm5@G+hR2QKX9^>882Q5}5XR@j@ma#iP7ux-MmBQtodl`o2qR}0
zxwL3rLhdl~gfXM4S&H0jAZhu+IBGR)tZFV8MxijuhEa~0g{j4<MZzdbC`Of5x&`_Y
zVU%Qb`1f(8!YCcasb<L%Dx>AJ*`HiqV<VwL7`iax!uaW2QhXSCniu{TFRjEegt7Lq
zPQVmaKT%Df3gkbYR5^?)VO$C0Y8Z)OR1M?Lu)4IWg;AXl4I?Rx8su;oHN!{_qg@#7
z!!U<YD~uLlv<#y*6P7pCHw~i>Svsjps3!+Ya~jBOlN(VRYkm_#wQ{@>NcKYWn-Q8*
zcfV8rs%%B>wn)A0uyq)1w9K{yxzld|@80PUM#nHZh0!^Td;1KYFuG`&-3UL2(UtHE
zwR1`J4ke40V-3Sbwrh?f3@6z|b!-0nEAd{kPjmc)Ko~*I2@$4sNRANN@g6@VjP7Cd
z2%~2hlfsxBMz1h>Ghtj9eYCbi!}v9fzO4R6{XL9+TC{%{12i5;7(^W`>y1CtIfPaD
zH8<J2VdUY|5mYfp5=MnFnlOesR*TkcqBi`4)$w6W(EN#EROD~ZdB*5(@>e#dgfW%T
zY1HY|&OZIpAM`WAm>I^bFlNh17sl=|=7cdfjOAhc9mYKQoA7~pcg?ae=7+H$jD>8w
zn7W86(Z9lI%HKN{UJ}Mq`fqqI`q=^Bz6G!%j2-k>hOvsUnz}ZOH7R~XJ~dO5*Ri@j
zjDHB?{4b0RVQdUzljdv<W3$Fv2uoe+s@oREcFnitGwdV}8k@RiLh3zX>}B<282bqO
zsUyy*(|CX^a4?KR<ipe>ntwEmW8~wSb3&YJYTHwEPHX;|FwT<CQT0<&pC?=h<09b_
z^)gkOziXKKS{T=5cscaxBDg_#NEPQM;Z_*8HRlfDF7+PuKJ`HuZ~MnelSg6v8^&Xr
zuflj8#uKuHo`&&^{9JQhgz=L6j&0wNKT+SN_*7~8p70@zk10O$Ka>9p<4YJ{$uSXi
zN2H{RAT>E<RB6a*wP?!bzKb9>0z~kA1oD4G@SN^URrMc=A0kLkM>s<S8Oic~tW>i^
zkTn8V6z(XpMUXv$l@Y9pAV&l_Bk)AvjUZP9xg#(~P%DBw5#)`aas=lWnes)DKZ5cR
zRES{T8GV5WN<>gHf`Y6TilDHhrLIwg)uItpsgNLP#aJy)mFk<SX3<g+l%rERf-(^-
zZjxAhXpHz}X-X%;(vL2JP-&AP0)5C3N0w^5RLPnCGVLpEGDcvEAVJ2wDY;Svy?P{7
zBuh1S$nbKJsYF78w5k$8Vgywqs20J33JEo+0@Wi(B9ASt_EwXe9KpIQaf?fvB%yW$
zbt38uN7o4Ia;I8F&^m&85!8>MK?DsW_$h*B5j2XRaRfhd5}GixDK%x6Q+6s^)+{^Q
zoH;EbXvzH*N9IaqAY~F{7;Pfx5JATX+DbxcQ#)#VnJ5k^TQ#%fcVg#VBIwNCq^+1g
z(-e@|`z3;I5fr+sw?yC|2wMp@sy%|gD<_I6#VM<Trd!L5t7i5^;E!N>1b;>lh#(k2
z-w1w-AVW-?{39HSARIv?g3)tzhm#CFBCzGtN2!X0a+tbP=Zw<#jG#bseXj_5N6<$m
zEua2ZnbMvW<=@`ddG!r?Ry@|%)Gvbm5lo6;!d?9US+Nm}jbNO-{}aJ~R}8}<7#_jk
z2!3aENCZO(5}KI7C`DjI1S2CD6+uchB|%iGqazqY5bm~4FUfz%hP2G_>`KklKzK4o
zG9{wkNMCKQVQK`^BG~o8uy4BI&2{~Z2xdmGD1yJ_+!>&oCC7b$?#F88*%8c%VACIl
zxib0d^gpgQh(9la`Ak@lk~ToMP?misHMBSa>qOmhIS>&niJ(S|LCVqymdR8cPpH1n
zAi5#~djZ3=iMmrgb=fi)iapn_j$lm$KSYr}inX#<BRCwvkqFjvq5dy|4H5h!n<!Ut
z<opEDjk5dlYZYGob{Sg)n<MyoCdRxwVM_#C<xJn5uuXO(IjyohUU*J&+8q(>l%0)W
zcLe(*I3UYlP>eL+BiEk@e1l@7x=&8Sye27)Q<=xTF&vEGbkF3@t4*`AS3MNLtU?I_
zM<Y1KA>EU8vO|A7f-@1Ejo?HCF*y=WQpa`HpOORJS$|r3u4WehoUG>vu0^0M(_NsJ
z9;>@dxJbREnO7o^&{e9K!q?>`AcC7rxD&zM2yT&YQ?q~8OP`V^D&=w`+>hWv1P>#4
zB!@nNFA@A3!Q%*CMesU;ClNf2pj3OqbLu~<49_B{G(SNgRdLgc2wuunrKDM^pXVh=
z+M5X8M(`<u&&+=pfuy~cW3kF0(GP@=G{u*Ok}#%fjDU3YRs1N@Mv*Rx)KPV#F;TUl
z6iG`%M>Z|KINwDP8wH~3)}@CA<8)$vujL45h$3SY<|t}K)oWL#DB_}sk0NsvS)#})
z7yl@hWsfTt#oicG_9${jkt>QEQT4-LaYj@#=Z+#z6nUe_CqpV_kdKTD-iWVW&Xkgn
zKZ*iTyc093e)L>Cijk?}3Pn+vruapoC`x`fBB@vuHy$L2St5#(%r6y1S;E3<=F(C1
zv*R+{^ps@7&T8tX)#an85QQ#^uCZ}fs+rr|l%G^K>=>pK&__`zipo)lV~D~SRqru2
zQ3VnR6{)qq#8-)8%@&>PY2h@+#3-spQBAf>GdYSRf+W<8q6XR2EnVG^e(8ev6jQWz
z6m_C##%Yvyrz>qV&6^)zH;Q^u)Q_Tp3}&OLVHAxBjpxTVj-taxla!`WG|@P(tNM@R
zpQzGALd~OS5k*Vc@hG}P@pBZdqi7RVKeO%}MO%V!dqO+vhic{yn%|MoDT?gX&5|ZX
za=OYjp^r(5mGDax-89F-V=W;Y9Xr*bMV$n>2f!1BS7u&8oC04I{wP*Pu_}r{6u~Ga
zMlmUhP!!=PM#w>rA`(S3ir=FcA~^?iH~)%PqUg@)>Ot)jMbD`E>9E`Z*o)9RitjcV
z`c2gR8pW%M$$g{P(%6t`rtY^WMEl8lAP5hLVjy{t<_wPF^@ex}4Q1!Usj|X{$>Pr#
z_jQ17<MO!HcjHIVpFkZ=l^bZsL@`#5{tVr?D13jaPdWP|s@|+Vo~D3&tSq;cPL5(q
z6mz1O%Z5{<_%n(bQA}fXI(1D)^<TD`WP#a)S+a_*s^6iQT3P+eR?5667De$Fqw}L!
z5XHhME)+EOiAj`QkiW+kN3lfC#3+`_=DO&Y%2~5mx3PjzSU&##JBo6Tbt`0bwK6=3
zH3%Q~ntXrg(p}fBmgOoJe>pd=>l$t|{kk!ET@>=O)Ni)Oub1nFx<zb=;zJZ4qu3b5
zrYNq<X&A+3ne8aHMX_DF-IcUec&b5uRd#93#OOWajwp6UaY7bzH`A^t3{Q-EqUvwX
z?k4N1o5k51#l9%^(?61;znBh0aZuw!gu`qiZI5dHF~V^zdNPVrQJmJI7YS#gIIB75
zqByVd1zCjgNz$8?OEfP>afNVI%ef|(tQ~63%_wd~@idBOQQVH=4in_|-Ma+29e0vR
z-Kl#~+>hb`&4<({)JN2RsgLE*KQ^Xp_ryfq^C(`(6eT5#^O6ZNA#Vw<WMvZGP$fY^
z@1l6md64;RdLT)hPf>i1qP(IGAa^&@e{vaD@V$aBa><G!l>)i7I97oqr&gdO8)6i^
zooYx!POBiDBEMm068}2|vPS~RSM@2K|DYhff*cBRvhxfIvJ)~=WpkMnWY#!~f~*>6
zQ{Z@_?qkaC=TeYcK~V+86y#w}A!=SNKc9m98W$iGRB)(fqV!N$^NSD;jns)*TtQjQ
zFF`0tEv2Be=9f{>Pn+j*3S_FKVFfLEqMIpRfnLER1(OvR6c`nF6nGVw6eK8UqoA#V
ziV7+zsI8!m0^LqsWzjvxBn4Gi6(^BURY5gEbp_|T>%_nRF23?DV+{p06(lP#E7;N8
zB&C*u56w-Ds+)7aHI;m6tgE1&f(h4kEfmyO&_F?B1x*xW*lV2AGiFxLn1%`(v0D0r
zNlYnC6*N=OoaT=Tej=pg&+HkKk|S+fDv%%k_+pJ|rJ%J8<DOB<wK1l43fe2MDX=S$
zFEMpc&_%(|GO9<0jtV*{kjMGXe{1SYM;;TmW_f&91;^*aTNM1FK&n!@5$0?*h;LPp
z*egb0(QTtc!JFMir-J*hb+zsqWd>XdPS!BE75ud~om71a{Bm3r^j8p25L6&$9|a+q
z{OabO3bKtcg%v~;L>08SZB!I=SJ1LojPQRWO+6I!9c!vF)+9QvzA<pe*h@ig1+_++
zPP{YK9uo67W8$we&c#W6WyyUu{U!%g+7{OjP%u!z2n8b*3{o)rfAOgw>4y>qE9wL8
zepfI=CbP6bLax2WVX_A97-gfwIgFor#f(xgTEQ4OS!5S>CXA|XmU%dHQ7_{kr(mLj
z{lyJ`C>YQEt$8VCf=u!olN9}>n0dF15}l%8s)B6_wkw#XV7h|E3YIANQ^5=_o;eB%
z=P=CV5}K{x!UxkV1?!i_T>fb4^};9<`|DlZTm|zK%vZ2LfZZ<Src(y6NamSU*_=d|
zDp;mqgMy8+cYBS?6|9pE75uGWg@TpLT%%wuVU>c_1lfu-m(?Q6M%ItOnwQ3Z6bx=@
z+VCZQ;yT^`6zp3XvvH5{sG{4XpwLLuRt1|Clscr_B8PRL?uW%mS3aA58EaZF#<WAh
zP6aO&yi%}B!EOcD6kJ!ZN5Nj1D+Q;dH`%U&qcX!clMX2O^u}~Z!C?glWq0J&f1q9*
zfg`L=Ze<cjI+x{rOjah>x$p@^eoiPx;Ix7>3N9+RB!}aL@vO|J<d7YgVlEKG7Z&Z%
zxZ;{S#>)z>D7Y#Y#@vu9su%@&_KXpjxyN`z!CeLS6bRo`aEox8dWS0hPydIh?|^cm
z`oE{Gd+EIiNCy$Jo3`|Y4ZR~B6htWkBGQx0B$*_WCLN>*3P|rrM|$sF1QA6#C`b{d
zD9!(!&wl5Be&@V%&;8u@d7t;@wasQGZzei^8;#$&lZ<yflsR)}H0}$zI~sp*Sv9xc
z8;u<&EF?_4iU*QQPVrBEI-2NsB*oWvbmUo({+LT?G_typ&5fs{@r>KJtj&L9aeZ^b
zGNzU7UrwHX98AyIX`B`HUF2K>uXy=YoK?4^zUF?oCH242$l^8#Q_GIF>~7?6gKGzF
zW4;|bYV1@=ZoJ_(hB#S}q)#VDPB*xyJsZ+<xxrTDc7vQ%<Z~mx8<jOw(NMsRf^NhW
zBoq{Kqp%w_J*eeD5jTpuG1?8c8^zox?naZI86UY(!i|z{<3ETdZoKJ6DK{Fr(I8}e
zn_XITyBlSMyd_xHjdE_3ccX$Ek^Z)K+^EQaJMC`^RuZIHSx6PZs%{*p@2WW?m3lQ%
zDz9^}Y;`wkNDy+1kQBjGL8}`!A#dbOp#$6FaKkBWNE56nNWGSj+HTYlQdh8^8};2t
zH+>qo@uU3ub-iG(SE(6pxZEIVB-mJxX8eG0>UC2o*i5jwU<)@|y3tB_Yd5+IX(QNH
zu$>$2-FR1cC&3Pa9R)LMXXMUqbP<J|jp-)5yI>DD-gD!9;U5V06znBfH}f~Yqb$AM
z_)ru^Xn!e7A2<5C(a(+Pm#hN@SU+{6zZ)OBF+h}oZVYl851Nt?>GO%`x9YnFyFsKf
z#Es851Kk)VVMhuMcVmQE%i_uoCRWEZit{02d<N!&Z5}tgZYXY$k4w#_y5ZxL<7D%|
z??%9l>>lLsKy$;o&~nL*U)>105ppB!hVI5sZd~LLbB4Qd){P(Bh;iz=@vR$c+(@|b
zxf^5M7{_U!Eq#pO)a#aVzdLA-cVmJZv)!2E#@D6mPZXTWQ-Fj_7Mvo;+%JUeYLPaL
z*Did98?(&ZFWs1F@@B&wUuAMrSvA<f2y@+7=*A*9z7c(%;C$0(fg5dGq|t4$sVrw}
zg)cRgW$fN;>GWA4%1Sp@3E5P-KE>5;yykXMy8c=>*12&)vevt?LC9V=HVPTu-L}Jx
zO>S)F(1@~4aEl;|Zxu42bp7q7!nRT0>BcT0yG?x$hd`>{$Kez4fZ!1~4hlJBdL9;X
zs;be>qi!5C_2XOxaz)fnx^YVM(`N1&H@-JH+rZ90$2nQL{srOZxgLd3XJqya`{8Fd
zesQC8x~oIFi^#AA&p2wOyDqzN#f?|&A~&wOQSW=pbvJIfagB5D4-3uLUs!Isaekcb
zvE)*@<;HC{eiQR|!3TnO+_-D{{2}C?8~076Z$|n<lmF?)Ba{E-#^1uDQ;q7Fp75`L
zD9;4{5&T#1x!?;ydcJhy@E89p^`9GAJx2Spc)*{wk)-})U^Wr?1I#23d|6Z8@F3ZP
z@1r(yc#zYBw(mRhdyq>=9ziO(g$z!2k>?ej&x3@R1x%lULJA2U2xk=apqK|~9!#!f
z+z%@5L0J#Vd5rzPga;*syeT*@-Bn6RX~8mrZ+URRWjL1?^KHQjf)p!yP|4(#g;epN
zs;L~wRfj&+c;OyY_n?O8HZ#{EBt<aQ1FNb3I@@X&?l2XnkR_jF<t2<yvex#Xjt4uv
z*yTlCcB2Q^J-FdPeGk$-Smxo|8PLFkhSYo6CU}tHfy;yTX0%2g+&Yum&V$CHG!bkn
z*v!L+($T{7Z0$iylehA~TjYP=0JLG>iau_tp)lGTtCQdLpo54VJ?QPhhaPnDptA?x
zWU13d^!GgIYDVkkL3fk)@SxwI|3!XZ#GZn^Jov!$p~FWW^x;^0pp?$qmqk2qo4Nfx
z_{@W$9(?S<01pP5`Vb+51V8a$u&ICQ!Oy*oo0v?uTVx$3`baZ(xCbLlKB}YfmB=U$
zM*knh!>(X6JWxFdd!S2}k9)olzv&qe@>d6I&{RS~QuY~DM?8p$88vh1A2)fX=jURM
z@nEcwaf0JB`6;8vCVDW*V|=P9KQ(!>2iwzKQ#|;>gQ*@&^I$GJ--88t>P+`whUAi8
zNOwI-cYW!>Ob<wA34SGRUkj%=+k-hKXUut$yV!%{Lu$>JI20Fnu+W2TO*6<BnPiFh
zEESW^tZoGxvodwB2m3r&>A@-wR(tTR2U|SY%I4KbTjRkd52{%mYdu)!L4SK1AJJdW
zu^#JW+Tg)P;X|!yG&hUqm`aZCNE{Azrem8ZEWV2k^I(SuccwbN&f(Z8`n*&Jvvv#L
z<H37}9L{NuK@HRPOCKI%YdtvN!9fpx`^0g`gCn9J_8?CKSBK^Qd*ky_5r++{bHamD
z{j3)RNls=G4^9g?Blx|Ud)9*=Ony$tc@KUxmFrJae=_++&PL(C2woEWRq(Rl6+zZ`
zRme5&C-ZDHZ*n1X^Yp^+#jA~$+nfnrH1*;)4}NDqcyN~s--||G{NcepZW`P!ytwbd
z0}q^Dq<QhsgFiiZ;lWD|w+DZDc!Y8-esAzMJLFj^)4v`(7XHLko_g?1_&=t?|F)hB
z=V9+G^2&qP9+dW?j2HiTKoMT#^dgJb;7nP)$mT_MF>?sMA(-SfUb~R#lk5dw%0Qk=
zvhsUTz>D0%^9be@q(eS0#{Xz|7WAT!7sb3N?nUEUPAY{>pCUqvda<}*3U#IuUc71M
zmNauqnaZ_z@>{~odr?71Sue_&xhrxxDtb}Li_1IgHN2=SdNnh*ijb;;Z+nezVp-ig
zVpcbOcy$)xDPE)su?pG+ZC>!TznSfHc;Q)T@S2iUTd)?z>lP+n&XbOgw5N`GUeuSY
zhF+w5@zX0O{}FEB#gX~eY&~oR%RBi3?hJAGr;2mDV(V#3Z|p@<cSqF*E=O0##apS(
zylBpPPg`8cDJ{Hc>BVR-S~PIA@}jjDpL#LGi&iJo+lcsy7j3<0=S6!l-}Rz{7auin
z(Z8b?oxJ$Ki{6se*^3@Rx(Id^q+2&3-35J8@IB%03-%Q3<weR(2c16@lcYau5#C3z
zuV6njce=#+Sj+)}0|f_p@vUSHW`{IzG3Fl)T%UO{lw;S>HPVY^m+ffi8s<f<s;=R3
znIi-ToUrhcM|r{2q@jz>ZuY#y^m?HRQ3NwDA@gzqUi?_YIo^v2UT9tfy$E@YPd=Y}
zF~*Cqa9xmM#EYoOV_w8fo)BW6YRUY_L>%kII1%~TiRMHvCV4U2i#c9QW~yan`clXg
z!7l`-3QiN8?!^otd}%VBX9}Ms_>~~VuZ7TUt{2~UvCxY}Ud&?$ewkLk9yZLek<9mE
zfhc!!q?DPNcKFM*#q2{bmV2?p3z|y>f2p2PZI)$@&9=gem0sf$)bs`!{~We5$SN^c
zGl-BiUaa+EofqrH-0H;!A)5tRaHEh-UVPlpMbk)LY!R{MOyf+dZLGSiZM*5egAwK!
z|32^bVh{Vji=&f*y<Y6|;;|P`yx8x>0WYq2p*M6L^x}{gXT7}Di^H5DUYzjaq!+hm
zSdI!dzmjpxi|hMsbUyCI{Dv-)OV+xlL_F=q>W2264P9rv_+FIiS29?(<P_^UFV1^G
z&r6&VUR;o9KXbp@m(1LsyqLZ;o#dhyKR0x3n`Qe&99WhSe&zNeCPg->&KSp4FRn4Z
z7dO1P%Pn0Z-{fweS%tOkEiPeJE#~uvuHQ}lju$kUbx#8R$>KAU?+d5+z>A{gtPiCu
z$s;fR5{JLpQGeB^XD46Awp*!By?EwD6$Mol{Nu&H+>jL%RPfx37hdF0kfh)x{|s@@
z=T@&k`7W8~?lQgh!dcolgEy;!Qj4->Q;=Q3m#dtGGh7sjOcm=o-cXDaeW4(yf@Dej
z-5iy>)}&ktax2KgDvCMpziEWx(Y{Q1rAR)({0h3AF#HQCD6HU3)}^3`f}#qFD=49$
z#&^l_bIDV-XB1<!^b8W3B}HczO*W~tf-(v!D5$95Ed^y2lv7Y%F@7n=$V`2v8ALy9
zAU|4ElBz2!*griRvub3x_~S%oy{({{!f&KeSHU|9sw;3PaI!8176mpbl_E%I_DSt?
z&Qt|fQ<-!w*>3XQDGtU@Q&3Am+ug<m)>Oc%Not!u)axmzub`EJ)(X-UG*Hk;L1P6C
z6=aB;OEA4*+R%PR2R6=dv3r{+XsTdLjkIQx+i{7LJ;U7Q3R)=WKHae?$<g3PXG;eB
z(K&INqYc}j;9UhB6l~mOZ>OL=Bh1KPC}n_c;DQv3qkczGei@rQuRu0F<y+>sy|aQY
zim?W}D)1<H@Q$?`gDdEv;5`LzKd|-SOi<8M!3YH-74%Xt^j7Ks1p^g)prE&c59yrY
zqIjo4#z(?w_EFGRct64Zrv9;l;TbME3{pV<PeiA};uHrf{5IZ*Hbn3<v(!)p!%RM0
z8bF^>qPPV|i^w3~?y)nA#LG#pKvj%`#WV#$1(!QneG2>v&c<y4l0LS1Np>DM7E%ya
z5Mw867F{qZ7!h3f$o8&c+q*Y|xpcl>)%H0DMZqCI4*M}y!8irYR5VvHUcm$fn-zSg
zV4{Lait)*Rje^MvrYKmdV3~q1M4YAID+N;(Oj9sj!3?fA1v6Q2l;zj!Sy*c7q~zcw
zgB+YBKmJlMTfqVa3l+>!Fqd;o;?Ru_-!RmqWIFGfX`ioviE;RU`XU936)X`?D)eN^
zEJCteG5)XrRxy6&yh6cB1*^n!wHfUT@y`rJpS23sDOfM1Sdi5*ZQx8(ut^G1WTLr6
z!BzzYR1{RPO~H1Bzr(^~1v?b%RB%MWQ3bmc?B<@&;eKY{{FUX>`;I*fHOx8xiT&jh
zdx2;6eO$H-^32|FmE{0e$|}o2!9xlT3!(Dc!_;F6u3oW!&oNbST)_ziCl#Dha7MwS
zr}ng&*_bTDou|1-g|LdI$1Oi7IB?Z|PQiJO`&B0o_x@4A1qHuzPAd3G!9@kv72M$7
zqTm+=k>{zGx!bI=TvG5W_lo)H!2yo(87?A^4Zp%RD7YqWdCyws|7<z-kAXK8q&%}9
znQFVGU~N__gWOi|n}TAmYnQubZ?eova#z9WrRfh9{Hfp%;Z>a0dkXFge;`PQ_G{B0
zDQKB&?YY;=_Om5_u`@5&NS-KosvxV1Y$~2{^XJ@{m+iHJe>t)XQ=W65S)a;oWG|7t
z5c8$rD^A^KhR8<#$1!?r&!QSbz?j)p<WP}YMYRdeBo+T%vGX#a;tkd4u4L7?uEoDP
z$T@sDRpe5Qab)7L?Riv8?&-*@BA<%<DtLl=CX$?gYA>Xsu!<TgEGmkqD5|2giZUvS
zsVJ`EO%<h7W8g}tC`pH`jzc{iY!V4Y_fvbxo{r8v9c=bnDtx6;K}AIsWmV%E%L%fs
z@+w#nt7Ee(si>kFV_jLUqW>S+C{|VRw)j+2@s5h>(nyYJz9;rfPLiS`RYh$TbyQeY
zuxh7@G!-+3Ic;+Jc0q?A`{C>`XH6BgRO9`IbY`<Nn^9K<r*}OS^;H~QY2j6*t7xF2
zp^6L@yq3!c)6@3bIi@ZZocWD-6%vGp&o@!QI89Z2_t?%$AXndXk+)FMQpF}8Hv7;@
zMQasfRE%ZY+SuBt7^LD86>U|tQ(>ECX|JNAicTut6_ZK_A^cXkvx+V%`m6X@MOP8K
z3GxTIr*>GnbGSEK=-)%c_f)*EqNng)Dn1gz+z(XrR`GX<4Dt^}B<~}nuW9x(9R`Rp
zP_XSnBRCVAJ(%-Hg`z@LF+{~@Dn_aprDCY*KU~Ey;lC}hvd9SGBs|-bI9kQN?<^h;
zlZrp<XD}c|Ca<`y|H$D};a3sm>=h-TBB&yyLNnuhb=n9UR-vnii1^+qL)kRicDK1f
z;-+Up2rK$r$P%6hHO(@Pn?EPE4@G>Kpkktmvnqa2F^OwI#SRraRZLOwg^HCbR;ie(
zVw#GtRD8|B<p*!U863D0#t(JBR56o1P%kat!Q^bklV%C0K3l~c6^m3XRxww_H!2pW
zSg2wi9d2YvoKBsu;>CBy!RF+|zQv7b%q1>Su~fw}70Xr7Ei+LkSs@YV#!@W4TE(}V
zv@E4!jg(!lVuOmc!q;U+%P>CYZxl|lNku=YYhbG!G`E=gHWgb<-nW?1nC&V)5VA|f
zZpk{SVvmZwTpgz8J|Txx>=$xC#X(+mKI8v|JGYJViVvHfM^yZN)VR`Pq8t}Iky%Pw
z$gERho>p;2#rMLClt>ySZ8*nGK*eJfPgMLUS=UrtS8+kbPbw~|_*ukXRs14^(JrZY
zE@k_)$}zG;(q$D_RE!p7XtAWLG#_T9+^&B^#Z46trPM7Iw^iI#@rR1v*kBRwaHOPE
zW;8}7xhGloRXi|r_xxq;AyXpL?N9EFD*oc=Y)k$7{~(JqJyns#hpaw4Q}K_Af7w(C
z_=?elycGOP>g_Hg^_sh)irFi&W)7UAL{c^%vip$7hrB-I@FB@(OrD%Ryx~K#4*_XR
zjp9l0fyk`uW<Tfh@gYFNnJJ6QmCxh_eaP=a0UtP6AC^qweCCi9VyFogcdHysMSUpd
zLw_GW_Mx~BC45Ntp@9!2eR$Ico5U&QLuntX`S6YpWqf$chl)N_@}aB`<$NgbLj@mC
zDKXN>l1Z7E*%I=~J|5nMsy@6eq3EzYS4yVa|M#iR%aL5G4;CRQKBNkHR4l27Tq&KO
zmM|70iQNZ>4^DBY=|e3cX+Aub{;BOl9UtoYP|pVzr#}}mG2M()pPhNnxxA9Cp${28
zwB$DK!-rDV<wGNh*4T&ULYnx{R0w;IL7E9K*2!4rErfGGTl>()hweV~@S&{_?R@Cy
zLnj~FGwe&-yFPRf&ru_@ah4L9sCV|Eiw|9W=q7HNS;SptJ6{%0de4XVedtXGA1)M6
z>M5Qd_|QuNe)U^@#-Yx}eB?tPA5YmrKOZt9uoh+!nVT7WfDZ$Gi24xoVUQ1>NRW^Z
zgMIkahmk&v@?nS%pNT$PaH!xg!OSI7QaWmcD49buTDac_w-ApYEA{%I2v-Gtrp_J<
z_@Ma^^kJ?H(E74jxA=`NWeSU%?n6Wfrx3-s4+$S;`!L6c&wUu<!wet3^kJ+I<9wLp
z!(<=Ei~j^4CJI?lB8e5<$d$sakL2TGNmG3I!iTAxtK%&+r};3Qy;>}(f^^`&9h^+8
zYo-(@`AWzvu4uVrDqowC=lbxC56gU5?!!DE=KHYFhehTpSRjP{oac+B$PyoxvWI2z
zXD*P;Rj|T`l|HQXVVw`F*#9H5t@hzt8Ntk9UE{;BVo6Ml*7A1!^<2v(k~a9TkxM{Y
zb>otae|<9l0Db4f79Z~UaNmcmK5XOF`S26#O-kSH!%_CkG{+7fb~3&XuRn4e7Thhk
zN08!PA^QaP`*1+WLBT_U^m*Dm2k{7ZiTievV?G@B;RI*Y1LyZXob}<P52wUDEqF%o
zEtiW9Tbif+zy<Qac}~Q){b>}>`|zU=^<A#+E*Fu?MIV0l;kpkuxPy(b{^G-BAI>G?
zl9>E<_gC&z2Oa6lELS*@mZe@5B)P^-EO&jr`1qy|w|w|R^xHoC=EEHsi|KnUyILgu
zo~hq7M*Obmo$DGmK-Hft{M_}xhlf6-_>t<zpWH^c8TwJmkH0t>LY7zJ|2KPktL3o|
zPdJEEZP%L^Ke~KM2gxP>N65c|&wY3y<fWOLeOlJnKK$oH7C+{%G5(Au`;DodRWO?$
z*@ff~q@Lu*8^V8CVVunlKXQth%a6Q%<ntr9n0W-Z_A~B(<riK=kY)it3JNbISlHB+
zNm+{uFD6)Au!Nag(vOM{jh@+lI&0&J#tJPhS!Miq%a5|c%L!KUqr8wkRkBrJDdF`0
z<&^QUq_Q7X{HW^3+oHc?=2jE(`*+3%jOxN`_+c?~PnXPU^~2^z%#XMqc0U|`yzfU(
zKb(G~`O(&oc7D|Kqm~~n{AlS%Z9j&(T;)5bXZR5sZmT0$SFoNR^@UJR_oIREhNiM`
zxQ)8Yk4C1_SV$AWrhYUt_2xpxyIie=wD#i{murd3wa4XZ<Hs|Xt7sz^k<r@w(ZP?7
zeyH!--u0t>Ntd;ep?C6QP$O5gk*l*r=pxuvu$y3aL3;KO@}3{9q+l;UKJX*phvr9b
zKR%S)QGy@&!GJ8n)W?s$e)JQ)zaO9YG1!lf#T+0wP;ihS{TDZKeQNSyehd-*ncz@U
zuhO_KJ%{@-LX?rFzQ2)cv>!L6YPTOAQ}+r{1XVwLLi}d#@h0g(azDa;=ze5t>?+^b
z=#XI7jCVVxlhkkQitviK5ZcsX>fYFu@Z)nozV%~`A7l9Cj~`$9G1HHcja}pX7~j}6
zo#@8|8IECX(<hpBO%gI$aEc#anEF&drkT8NO5GWLl&R@h+Ss+Pv1^teUrE*~Kfd;3
zw(v!M@M3Q@cFhrUu37dQA@jJ9g)9(UXy#^ZVhqY+F_#D~^<$Zk<$@~&R|?W|N1OE3
zepG1Us@KF-rD^(FKh|+M__4*0^?q#dW1}CN{OH`oHLQtitOVce$5J8JZFQ&E>ymHv
zW1Alb{5U9Kx3lG3DOu8Yn6>QmW0%Qy3)v&M*N=TdPRMZYZQ^1nb_@H5!C&Qc9r5F+
z9~T40W_8Su<9>_|z#YH|KTi5lGJrP&IOWG_KXL_-JAgBOeDB9|KVJB8){h_f#ofKs
z`+l7B<GdfY{J8DMkA7^9I4}EgMaTs|eiCv~kXb)-Ood-Em0vj%Hl;J`svp<5A`V+_
zO4h+bDcAkD!AX)_hq+A5nz1^S<TozupDlj~lKk$+9pQKV__dskO75;!l6xX9zF+%+
z9}lIqfBNyaACLWbBqrPcmminbT1c3li1<wKDL0}Y?G*npJ^vNLAF90c;}tjUfYH>~
zA|?fluK3T7EJCsdkV8l|!R&%8NFRnJz9CAoAOtC9R`=+*rFxRBLXng_0ptyUW<IH?
zXaM;GC?HC~0164|6LHd^uyB$hLb?~TvSGynC@uv{2vT8BmI|PB0JQ_C6F`{&-U^^v
z0Ph4)Ho%kFU~TGpJAm>5R0yDA0RJ>`@k^Coo47Jbr2s06SS5g}LQcL@w^&mb6CGHV
z&ea1b@=tvddjK^8umnJ!!pH&G0!R&j(N?!fBhrmU+Dj=%08YtD3t*@yHN~tYNQM4&
z1E?23?*Kjwpnd@90dxtVYXA)bSn-K9BLG(b4TaM@`G&nw0F48@Q<K&yfF=QqZR+Y6
z0QIKAn+4EZNQ(g43ZX;G09uJpYr!^x)LE*X__P;%SFnR1v*^IIxT%YEb(R_rHFb3h
zpnCv4rAa-^IPVL2Pkb^9vPdt9)2gWRg8;5ENK@BG0sOMs(Jz4h0rU}0vu^;q&e=#l
z4q!k4Ljw4W%d?qlU;v*4FgSogV%BbE{05Uc3Gq`AJ2i6+4d9J3b%zHqf`eG5?l3|6
zj0|9ua5~drgcKz41mF!|RsdfGpah@>FeQL50`LXE$K=KZFg^f3=T!ijC={bYf&qkt
zgiT!+5)n*VW{C-jo4JVqJ~#OoA!7r^4KfCtAm&8D5)++96;myf#GEV`j98`$nI_2G
zMiI+&;WGrkH1(MQlt^*V;p+fq2XHok9|D*Yz}x`V1+YGVZvvPXz|sJg1u#E=1pzGL
zWcWGt#O!QKrdYq8oo!(NOTy0NYIcf?$t9O&&}yTyJb;w}tP*hrD}7{$tHmT)6Tr8^
z8G+_nQ%{7Q8v@uEz<~e`2CylB%>nEUU>|qgA&&0?*ulXaZDraLz*duQ6S7^9Zp_`u
zxnbt+4q(s!ao8{X_Fl`5Qif-{>W)L)ZA3g1z!4!o)yg;-z)|7!ITpZilb;a6x=sZ^
zH>T5UZBc`KZ~Dy6?O6VW<s2RO2jaBtd;m0m6ePJIq|ps$?oaD8_h-)M04{M|2arue
zb`6&UxDvpF03HT#l}jLi-vhW4z|&a9^#E?uE!jbSLzJ6>w*sir-${{KzXfpPoP|$P
z@z(0y0Pb_c>F4|-fWliX_XMk^I>=jm?CiJO{wKG`0G@I03Si7G`(NBcZabcc+us2^
z4&duvX-xJM$5YO2i{sTH2Oa+9W_!Z^GJscH0;QeL19-u0^Q4`eM+3bMpjjE`e*t9C
z&|r4T!`F@+J)FF0_}@``Rt?pvr_V3r%%LGkLlF%{HN2rAM<gw`hCG_l$Yc!=(xs6j
zr-ob_vJ`hRHNI=lt6`wUXncMR74)=x8pbwr(JY{$poSGoQVX%5kRN6`Xs)fE##@=i
zG!)nHmWHw#N@yslVO}#=88!fp9A~n9VR5{vp_GO~z0*nylDMxqm`2TTH0kFor=h%t
zyL#Gp*9?<=TR}5=xT1zi8vg9>TvWEMD~F@1hPO4O>u8{(nud2Y><nU85Y;u*&~Q}4
zF%1^Y_*^kq!>1ZjG^A><YOrbOprNA%y9S4bmg3{okfx!LhQ?ynWMp=x@LC#b3#lVm
zSFoNSgV)!<ktJ!UAwz?UagvQk*~=etGLdkUscb)&y@`fq8k%dEb~Q^=4V$tXca~4$
zjTRh;bA~5x853J+2=_{Et)Y#Ewi?=LXs_X2sg51x$YFRg@oq1Xoz_W1XUXj+*hRy8
z8t;A@7v5E{n}+ThdI<k~UKS>1_0-Ty!-pC^((r+X-jdr_T22SHiask3Wbc!y%QYU{
zl6oS^xU~KnJ{Em|hO1c}gM<$hto)$%Cqn4Pd-Ovze5T=mhJzZ0Y8a+rhK4US4A(G1
z!x&B{4I?#-(h%ZRYZ$G;twGh`)39!Ls)zo&ZHjQOpl^NZu7jx*7dmZz4M7gsE?Ypu
z*|QcVO~Z?IHj<88t<-f58$z~-hA789;3SW+ZOvQ{E?W~CjyJQ#1%GJf`dq`CwX974
z-FJ@DFkZtH4PR*Zr=vBcxOIYtiEQm?>m&`6HFPR#@6jiNCdq?&)~Os&4gBtuXDRbN
zKAU$ryM(OMHPl;e{q#%gObxTRKs2n>@Rf$IH7wS!M8j+ib2Kc}ut>vP4c};(&t)>n
zQnQ|Y9@pA8wmddlyVaI^&0NF<nsM9#N%*B@^<Znk>(*_#ZCPep$K^`t@X)!GORTVC
znTF*We%Ni}lSOrASyyRTtzkWTfc5UOeXAL7<66U2P}~}+X<e&f$71U`!GObNFX!0E
z38`T>w~NiGn>FMt;9y<F>)F2(PIHTft-`mN%61kPzSC58X=u19mCk!K?A5T319Z&R
zeU5EE9lAOhdB#@Dh0-?vEl2(DQx9o4tRZ)E7dg`r4MaZOaa_X*_COF7gE*<-6!(oF
z-U#BfhBF%OYk0tM+35IQ!_OLi5q_2zuHl^U^PEnb96xFJQOpb6?lwEV+u$Hx)UbA=
zBjcij#V=|2Rl{u!zj6Q95PxC2&UN&{c7>O)#(7o4H4Q_KIkJ9l|M!@qa&s56ZivH8
z4Yye2C&#7rHj2M<pSftgCv%?U4mU1Qu3gOdL#iWb(A>Dg@{oI%hX1&`2934(NW<p!
zjwe#^FTuYB9}8}{Xno4xTdi|G)4<yQk(ey?ujD@GJQwAq;48t`g1fEBY(~}~vIUVN
z2z;82CdKSQqn*6W3TNy!H#lyucO)}6h+;t$4<cufFYC;fFNpj><O<^OMn~<9j@&}>
z1d&$=#m>!L1%fCT#F5R8)Sn!Mf*=+aT)fFpiUd(Kh}aq@Ia9lhjuKKYt9~nplEU8<
zEEPoQAj$-B;)RVPa%{Qt&rJ^UvXWa)@XQ8B`5;EEGp?vo5S4@I8$`b#ssvFrhz3D?
zkk$Ei5Y>XH5rl<}{KE215Inh#gsFNEzrU<ak`hGQ(zZH5)MZnHNNQ`d3fctif(}7u
zIfF<OUQ@7^U~Mz^+ndJTTQ7+DPqNexBDrt!n(Edf0ZV!i6I{kycN@y!W(461qLJ`6
ztX)WBwoOP=!DfQZ1zQNRc*`JKnY?un>pC0zZMz`ai`YGgcZGBd;=oelTfPorb_}AE
zkj{c#1iK0v#oHy(xv)G5-y?|kM1Mbso<e%D8--lEYW!X3E&M~lj|3_931W!M;r>B<
zEaI{t1_UvXR~^K}pz-lzP!J<ISV4Re#NZ&}wbMQgVptG-cx+ITb4U=M1wq0zR7j07
zPG$`khY>;JQw`10L0rq@3I_3Tv4zPUgh#m7RFoi8lly}33lErz7R1~eM!`@J;UL`W
zEuBkPb%{wa5=4}fQ=H?1<AO+-Wj_yMjLF9enK8r4QsaXtusNNiYEH)_wlj#SoPIeS
zlY^Kdgq)wXrUfybwFmJ{5Ho`KGKjB(m>tASRvNR;3gW9Eid=P!Ywr4XSo*5wuF1pF
zJ%!Wfh)9Rq&0XDwryptVn#ZXX#F8MEatXI^EeK*!5Q`<qLc!$1>5Ri5#PTg%M1~?N
z1=E)Yu_B0-L97a5OAx)XJAUiwTph&vAT|W?Z4hgMsMo@^Hi*$JT<e7QXyKaH!bRK|
z#HJwV|DE857B2G5+<{F8np=a|76d;AY!}=S1kcY8COP@3fa2~T_5@KUgt{T@4Psvq
z*Mqnb#D31zAkGHy14{*QC}=#%Q0;{6Ft-umM>&zq8}ZEI9sgsZ9~V3!cru7nLQV_P
z?Mx8go4jMLlykx_2Jv$c=Y{_$ctP+dL6+j1s(#@BwXwOS#!Er`8pLHY_i7MVOkQi0
zgZ|ezw}%_#W)Qc6$QnYn5N@-Jf_M?cOYSg1+zH}Q5Pt=6S1yFX9|ZA75ch({GYL%h
zC1#P)PR3#GLoxs4l#mA%{uc8eY1QK(o{0H0h-X4h-L><bfJByM`ZtK@qLWi(zr7Ok
zHD|l}zi#|bLS+eI;awXYvWJi(gkm8S4<RXpH$uo8LcWkO3dtel3K_kD5ORug%xC>R
zhiw?27ZN>>h~<$&XS(GNp->2gLnt6R#ezck_(x`c77?>(2+3uPP9v6(IONU{N`~-e
z2&F>C;~%9%C?n2g-IljPC>uhJ5Ll3&<)q~#<;AQJLd6g&g^cG?nBESdvhXT`RRuqk
zhf=DEKYiW_p}NWY$v|7gOc6{C!78O}nK;d255e(&;_yn-q}eq?s1-tOHrr#X^wi>i
zX*`QkFNFFbEDd2<2p|8QnjXTtA#@1wN6ly$LPiL#5coQVHX&T!X=xNfvk;nxjQ6KB
z4xtJAe}=WGpmNqi&eTH8R)Q@<*jm`oTZ>5&%l%HV!WnHt7*)m5E`;_R%EB4scUrhQ
zhR`X5cnFCQI)~6DgkB+h5JK0Gajbfe5Z()+n{b-lNnZc&9eMAE(9_g!UA8biT4?DV
z!iOOYJY<Q4@KFeTSYrsIL*SuFEY8$7gnl7Bds@FgFFb?+65-PjhOm_IL4uzM4i;po
z3(bwjd=|n`Q@LK$N@Z9G!$lck>LWwoPZXKO<PO0fLLh{`!>t~1@Cqt|Y6w2FRH@v?
zvF%z2bLDM-K~oP235TGYO8YaZQQ<MchGUJoJ`Z6`2-8BC9>UlV#)UA&^dBF>gb*f%
zkbj}!IZ5=%X70zU)7x}1PKN&?gsCFlyJxul_}nrhgfBywAHo9BXNJ&tXX?BVW|?Kb
z3gPPzW{Ww8RXi{{WNwJZ@1U>6cuQkumLcx5EflxKf{V-uuclj;n7qqf>+%p*gz#4w
ze}}O$gjFHj3*&wmt3&uUgdSnM7si?p)^Z03<Bc%ZaYBZ0E`;+T{)>c-Ash_h5SM_}
zzKPQ&VA~nOW--4L+#<MDaGM}Kw+q?975&;ulWCVIyE$h}pS>aM6TaV64uo)^qTzoy
zgd-v2aJ;i29Oc^ClzLozNRF|`CR#}7c0$CHA)FF&TJVe@bHC@}+TtMjAq2kR_x3Y8
zPX_)mgbN}37Q*i#{1n1PuEY>-gz&SJy3Dyf$cX$)2$w|pRq%WPC&eq0ONXl=Tr>HV
zYPOq<HrmqdGh5;M_FKYf-sWaF(MocM)%CPK;!ZW#b~l8Pw=I7N-V?kp_(1TXARYb`
z!XM%O#o9x79Kw?j{*#ul8Bc}05PT;1PYC~-xz9s5n<b5IOfN%tCHiYKmpz<?Gr?-l
zDws`>W_BSt!bacHOb!EKIKxN_BWD=7!YB|%!7!S?vg8gUe;6-YxblceC9jZtVazUN
zrCGA2%h}RZD2&2kR1Bk1m}eNG!XBeN#e@_Mqx~ZbmEvKP2&1IghPQ;g8Ad4~rA@s|
z7$;&j7H29OMmf>To4FOjm^0~rbF6Y0Rl=w$S%-hHzHR!X2&opvJ3^|PdJQ3#Fp`7D
zJV_PPYUbL)u$$Zw2H)A8*@l{7G-5|dR;@5<Gb@a`VrB@|6Ra<oF4#bj#T$mvCeQz_
z#U*04gwf$m!srsl506uuhS7}uDOv3WTZGXvj8<lZ)?rxYX0S*bQQDe%yD)z&V1#;C
zln$oeQAj7j&SC60WcUP{TDyip>=s7(gr&RiXYX0x52I%oTf^8EMz1hF2qPXwB8=W)
zd>F>aFh+&(Q5b!~$k<^SA*0zhjQ$e5SZQ0oFb02M<;Z><#(*#eiatb;l@1Ey6XAnR
z<<qe777u29CdyF3VP@{|FkW{v`sz+i`*X!QIt+IhI-8oejwcLn7(VfA*V5(T7eQf=
zsDe4}+m08o`6V|Xs0juI888$^*yNL=mPi;;348pBGbV&R$y(_7c^C`ASQy3_@gEz;
zxG=_tF+t4PVN4V<)r>YNjLE{Mn93LI()`BMofgLQFlLzgEFoWpG1FAu8*BMW_}8W~
zYq!xkbHbQwD&K@L&*bxkY@TI#`lfYJ7)!%g7RKT*XfiF4RY|fuj6#PpR&etd!b@Al
z%|DDSW}I(@Y!F-%##&QfCuDsXKfh(Pf1{Y21UH*L--XdF%m3!{F~4;?Cs-I4StN{|
zVeAUybQovC#@TU>KP|h>QhUPK8^%5{_X{2qJP^jgFb)Yn9L5nLteRUc4@W)9b$Zd5
zy~jmAA$ZdCImO*Zc6&O^oM`!;JI_(0VQ0nRhcM2Wp6A2(QTPQ@`6-NH<&8b_7f~*U
zaV3mPVI0_L`Bjj_JJ+cCYM6J2Ex(J~wJ@#=xgmH{@Rs0hLHhqDq|rs|+7*^N+%{iX
z?@EL}xH?+87^>?5OJccYP1N!rjE7+!QJBK?r;ta2pSN^9=3rg2<kwL^#}kfk7|+7^
zCycB*zFCmU^e=mOLF$Vzo(q}NCI`)z!bx6n9SQ%>RI*6H*==%U(~(_x4js9LBniHu
zBUuM@<kYeCs%6nH7MdhXxpdGZ$s?YOpI1jdle6lAItuBq>u~5OtfPpIN;)d*D5~Sr
zC5|#W-qKM_M{yk`bj)t)+S1ZxKb28Z$Noxn-xMq*SXz+c@xSb4rECQq6?K%;QC`RS
zmaZo)UFVxS8533NZd>H2x7u-Yeo7S`Rdu|rJ5qH#YVLen$2&Tz>o`-(S&fano6)IK
z-5NS9I;Q7wr0AH`&RVWYTFu1{I(HnAF+Jj7S*s441YtmCRZFkqq%we~CK|s+Ow;jZ
zE7zzrdo3Ncb)>a&)zMK;M~7A}^19+lQePB`Zx3-c)RDnbQIv|prK6FKK@ofsL1P_F
zbd1w6UPn_M&2)UAqqmOcI$E&D3K+k9Z>gh|j?Ox|=xEK0I+)r<M_cx}$HK2q+v#Yp
z<MeHtQqB4<Yvlco&8htomX12MSFm>CgxO#l+rmzMWRR7-tB!6udgyph$D!KJ?rh9O
zYZZPgxZU>4dCU0kE&t87z0Yf(XyGTlo;rHbGhkca!b<#5$45HcIy^f1=;*6sATLBm
z-sKtnbnJR*+4h#RznD}$7BWDv%i-itbYzJ+l6%{R>ln<@)G<WIXF87v!!X@A-IwP8
z^MK#XV}8jq&HKwTM(7}p6dWZunjPY_QS|CibWF`+OX$dU%Bt${>F^7u7|@|{f~|8z
zbp&-xsOVzSg@km3g-mOmk*^gZ!s+RGWus3_N8I$M__=O;CHvNF%NQMFIeTYY26nX)
zC+L`{qih7_BABFOvW{PLT+%T`#}_)bvH#gN9n*9y*Rg{0O~(u!b2$lhe5qq5Cr>li
z9M+XTWtNVYb**EzIKR?S=YWOjYqs3vC)YaY$@7!v>6owM=#|u^I(8;3%PqDAx^a#%
zPwrhPWRZ@=LY4?J>)-tLWm4qVrVbWdsbiInjXE~zSj{2WZ&{;bt&VSX{PUM(Uc$or
z?CW%lY~@<7<H$niymPkm6D*gC+BfKM4Y5ur?Cg^_WivZOH||HAm}~iZf@O=2t3|9^
zb@ZHTd$`U)zJtxvaYDyQ&I%p7In#6;*0D!NEvJ1iSLh_mikvBYzHuMdxQ-iJoYP%)
z20WnSphO-x*+TP(j#Jkyb-uA2=Ou8^yIPNNrL=OfmR^gT7xq||w{o50<k#_|jtgAl
zI=<I&j+GX*pVjeSFYAz3&L8No&)K!AqvC!i%|C8C&+GVYt%FnaCmk0#hbLQp7A4D8
zr+=62)lN&&xl~^GuR1PsSBxM}1Xp;CIv(hFsN<TB>pFhdaYr{E(Y&GKrjA=Of;`2#
z@mj}iX+SVx`Ar8+Cie4PF0^%ydz`?WDno65a4pZW(P!BL8+(32)%x@Er~Jv)&1Din
z)(HO6jW^)DU|1o43qBTnBKTDBnczP<{uRO^&l&l?ljN0-*PL}Od($OWDtrgoe=<gw
zA38Zw*&@guL2?9$VC5Z4jtCC4awSDz`<r(yEjL!Az7a7RK$0_pToGfMvDxL08spM&
zi*rRMXWj_%MNm2dPObbA6o{Z`1jQmK7(t;33P(^xO7Tb$_IAZ$jv<AenY>PQSMdl+
zM8I);GlG&4{5jEb_+KXv@!nCmZr^5gN=4ALOx=caZS0)OWvykTink)T-rQb#t8t67
zd<1nOs2f3r2r5QUDT2xoREyx92&%BsRjF@t$XXdormC1t@}?;Jom>mmBd8&*suclE
zO9VFtrlv5|9ZQ)<&eRAlKS*V=3b6^=1s#IU2-1Ymr)C7t>~@mc67b6l7KW-9LH!6i
zN6;mL^avV6&^&?`5j2b-BVrux-6R6-zRks*pBMgtjaSqtVyrAq5-xvE^^gC|Xc|GY
z2ugim<-A?f%i1!6RuQy`plt*bJ6OM}mc}7y9RZjB!7awbZWlqv2uPUPNARxj4yMB6
zyQy~)lO5hQf^HG?ji6ry-6QA`!3Poaj^OL!j`t$Q!tBXEOzUj#M~oen-7<KotyjcY
zhI5t}o5_a}d=!DPI+{AzY%c#k5iC1tc(S7Y5qum0S5VsN)H7M^Bm*KC7y*Z#snY`E
z$=ksZtl*T3;8W@mp8bxY5riYqBN!IJ*=|-P0+sEl<`^Eq2q7aQ7{yK&?iF+kwrXJY
za29p5(wT|;c`KKX)7708h~Vd14!<BxCM|-XWQ7E&<mqmWL=cT&Yy{&tf4W;4Fc!hi
zT8_9NNg{&Jg^w|n!05E`5@Bit(;}F_L5YCkB#AJlmu<3`Qv|<|Qq2AD1wUFCO`R3t
zL)57xGa~p>6!Muu*dAv$>sMS3FEYN4V0Hv^BA6>?Wp~=52)+?MPjJ5A0>OoXEVX%b
z8gX$1OGH^}>dS;I7cA7;wJL(u5!{O4Hm7Jc>$eeDK1w?u!I}uxMzAh|^$~nGKV5m|
z*bu?S2u?=8w~#Y!60$qOM<@;Dy9l;KuvPdD!EJ)u1wWZ;6k*yK!7foAjdIf5BYbZJ
z`y$vc{IDRi4hT6I!68#=Y_}dU`OyfD2|sQsCnEUgh4F^;Q=;4(={z0588i2LA!h}D
z5IiTyhW!}9g$RD4^ADCAT$rt07lr>U_>15rK|1^@<TAGuAy);jnYq`66nJc>=gkN_
zD=ahHr~ekg@0{Bgs}+snP6T&3Gb4Br!5<Oa<K7;@-x1u8-~mS@Vmwa9#2Y0{55?@&
z+Vw~X4?`H)+VwbsC%jT_SrI%n{htZhzro4dD=gm0VmvXzl)>{KxCS{zqsSe_YjMjG
zMb@Yh;Xg6yoGpr(=aREWkt1p};0KE%DGI)knS4@f*Bc@x3qmlbAan0taO4r5UodYJ
z`J!MEX7LdwB2$4V3Yz|fq9|<gB0|{mo=;MXMR~W#Ry>M@e_2aJ@#b?&Nx^aLZKb0q
z6GiJd+Qjiz6lJ6MH)ebWD;GuiD86LNqo@$Yh(yLaQB)UFQLvI=Wx*;@R24$Ex1*>g
zyxFp3nl+e}-Rg`YO^79mlqgb#TcdCYp@S_7yYR27*l02pC}ph~MXe|XL@_Xm+ELVr
z;=?FDilT1RILbTUI$NtK>P5jbrRztL&dyn9YY;^fA><8(WC*&VXk_Y*qu?3obZ9C{
zGr{J9Euv^CWW@PYCi=7%vrQCjqi7dJdokaO;$0zK1nJg6NXIBTnM&s<eA|r(T}A08
z*xk(S5j9T9W-inFQS=nOm*5AcPw%L4Y&#wLMDg;TovB|GeWPgB*FnzU#QsryZ01rQ
z6vZb|Xbc|3;3z(28#pa_VE8)Q5GhFVSrkL1ieXW>&ANsQ86h|_iczLMI%*tm&QeSs
z5xr3;LR8a-?WB)CihvLvKF_n(Ls5jI7#qd7DD)^IQH+sMb9c^&%C*O$7*x<Wg+3ld
zf@M!R*dd=w)}q!f9_`K=d4a_7QqiO+CYUu&6!Q2TqhXU}0!)eG3r>%3GpJ0BVwyNi
zH~nWsjRV-3H7km*I0Iuyjp1vyCyMh?{20ZYDCRN_S7j96L@_Ul4N+{2qWedV`B5}{
zYFQD*0x_v9jAD`S#ez#reW{RTg3AR9pSE?@Y%8N!6*blr)9NU`HTjw-)(T%|D(gA7
zKQf*)*c8QP5%;i5Z=`<5e`dE^c1N*A#I1tc%u?H<*kSUWLUu)weXH?U0&8bMlD$#v
zi(-Ei2gKo+>3>kjA;H6fM+A?uAKo`w!gQQ%5Rv?36sJsnn*H3|_zlryzx8a?IP&gX
z6hBCVTa~d>T$L{?yY501KXFTpAzKU=qxd<BKcjdQ#opE~7XO9(Pury^evRU?M85CO
zxF5xpD6U3vEsE>h)kVKy)_YsX%_we}%99FNe-r+@sZ`IC^{&bPh~l2fYgNzsAPQFT
zP>|&EDC=KQ{2j%AQIz&u3%;;E=F}aZ%$7fqQcne+aZBgkXvTRN#dF~=OeI@I<HuRA
z#C*-k^O<2XV3ruz6(re(6px`q%ox)gF(k!|sr5z-$uS^?oU-v263iu-FNWMg@(AV?
zWY{Awv*Z_Ez*Gvx{#PS&3yWApuxJd$OrN!dvX+ctRZDB-7=F%S<qUZ<hEkGSTChwE
zZwV<YSRsaTLdpv=^6#s&Ruo>zRCv`@VyJ)HR#lX@1*-|Z6T`x^tks3r5M%^P44fMz
z));Itw27f@4E7itF{H=PAO>d)X))uM0(D}jDTKUM3|CsaUbJ@AHkD#+jGq|PjiDZE
z=QWBMiDgi17(+%3&0=UCgUj@9BBW6ajfJojJ(-#cVdNGuv=rW2VrJ&HiWxtAU~Z;=
zyBONXuqKAJF}xc?hZv^B@I?$GXWKf)&@YDmF-&M>?Iai5IfgDVbd8~#nD58XGluTM
zdziiPo{)uQv-L8Sk7D>hcyCkrP)PFvb^Dk~Urw82#_URdYWp|_ZwyKd17a8$!yxhb
z%=G*uhQY!=HI*STlrCkI9U8;17>0{J+RPonYccsKA&bvj+(JC2{tb^s5grrt#o&)2
zAUrIn2?hmOQ7DGR@*YNVUBrlBRM4SjjmMA>{<+|U7{&-0D>zP&Wyi;GZH2MhFinhM
zlIWAo++%H%rp7Rh(>sRyD~$hrrd_s7k6}g(U&b&~+?K^KD~7LxFXsL)WS-z`!8w8~
zJ2!@Jgg-58JWIwjKZXTn?m{7p1S7ePx|YPS)XW{(D1Eu`6{fP1{gc-?6u0B))YUN%
zzm4JB?+tTZ4C`ZfCT-rpB^<*qF<gpaQw*D9;7y8?3=+c@?iew=Tw&cB!?qX>nvu81
zu*c*(gzOaD6~k^JX>DAY?cW>2KGSo*kON#G1^#z+hhjKv<{pXRXbi{1JkC;ijM>68
zBZsZRZ429QDu&ZBoDqlfG5i?A_h#9%LVk$hoRCH4N#={M8v}Pi#Gm+A!1Vu_WiyQU
z!JM{V*%fVUx3~slpm{}*<f@QsF<cjNL-3|xr{Aq~;BeoL;kOumkKvB=B$dBnxEsSC
zG29d7VWw{8K8PVlFDu=c{*2*~sb`&K{oCY^g*=Jz*9XRoVro+`<wYsmKU~-Ktd6kd
zc?>T&C^5W>p-LQ8<9Hpze=!t@qhK6a;>a3D?l`V&w$$J&<Ksx;XYAhT<k{oM5eG^5
zZ9DOeIFjSo?y3WE$Q4IUA>l%H`ZJL%KWNPpN8UK{#qs1t^6Nq=`Qtc|-^$?Rh2kh2
zN9j1q#8D&;%OYFxI7-A(G>&3%Gz;3OFp-oL<;^%sNiG#8x-pmdRvcyHs3=8Puv{GF
zg=hLy_&>aoS-f%_v-79Z;q5r8#nGUPvvC~n#8Ewtv^Z+=G8sG$M;!OtSX1Jt^M{qm
z7DuXZtEspOSm|JoV?;T}!TvU<=v3%jD~{T6WJnj)iKA{D>8vP@dW=8cMyxMc<el2M
zG8J|v#fG8}ZQ~+$#nDJS=`f*<t4SQb#~Dp|MR7D2PP3(u7IAc{m`;<aRUGTuxJcT@
z(Jqb!aV(6ZeH`z`;g2K0!98K^5Xbv*^o--f8_te#;|DLD1UtvkMF^FyLb?fd7wi$o
zdqPHi=A=WfI6e^58%J-35<Wukqd58qp<AsA^@)AO>=#FWAs@#vK*+#2h6ouX_=(_P
zL6-Vd$bDx9`Den13Jwz-E;#U6?U8Yeieq#fkE_*p$Keq@*`7hOd`08eJw!!BmE9$T
zhq^QUS1etNBN)f@IA+8ViX$Ay_&6rSp~n%4BO%U=5ET;VOfFSF#-7}2G>M7i^Ek#x
z?pVQbaZGNTmYI9BjcZ~Ylj4{n1t-VBvdm(fdR2{vG1?bwc>%{%ahMjzjW({=Inuur
zx3A*(I*#+z>dzE&Rva6xM!mD+m=ni55oyj9@{J&?pu!h*&F2iPWFw)uD2~NkZV41g
zU`ZTH<G32fwK$eBNG;pWICimA94pv4_pSf_ZCM!yaaA0vxw5udzZG*^9BblO%h@F+
z9lncWz3>f!8wEF+xtm$({n~WfBFa|57j0ZrwhP~3dh(rUyW`j+<_~e~6>^+=MI8Ht
z?~mg^90!FT7G#h^LR!qRkRK6#G>&6tE-N}|@-uOq5`NlL_!JpSeJ|!&K^8nG<a``I
z#&IEzpW?VA%0<D<vOmZ1OB|Wkl3CZUaa<OMD{=h)E6R4%a-BoT{WF0#61W-1tvH^>
z@hpzpar_p?-<+#){2s@hIR4@&tj?IS(s4JAd)#y4_=6K>rGu$tTNiI%K8WKXH|MCM
zW?L6;P?G#9=A*cA!<4s2i!64$+t#&gv15JZv?p=n=BA-f%J_#3<IbGs<o#3L0DT_E
ze=L~5i#TX9y^Q0P@L_FTujA-e+exv=5=YhqvL%q66K1i4Wv56p7&Ax0sBxX$nVc|c
z$&*0d1du>Z(Q_q`TlAIUKX+0FeexwRWJE^(1PUaOe?SI{Gq)fkFLCgy54Uv{N`N@j
z;Vha!F&0mtS^~urD3QSVGuBE8luQ`!SS&60W&)qBOD!cxk-UuPZwXQ<n?N~}mlsk&
zuwnu{%8U+-Sy>`i5v(exx6SrW0-xAz)&y(`R8OFWm=?j*1X6?qw^-?u$?XX^DBjF)
zpGqAOu{jgSNWhgqS^_l_{9f8tOLA)qZ?GhzP6F+2W-!%Fpq}vhg6XE-KuE&`roLs(
z^lX$suT!b4g2|WD+BAV?3A{H0@6SN<1X?8Ud?H><M9TzPB~WJ^>W)L}1llBE9Shr7
zv}M2q)G_dlLHh*WO`z)-bQ^;X33TL0jX|C<=#)U`1dsd1@z2qP4hdXM;93IR66l`5
z!~`ZK(1VpGFf@T-2~?PsmKdA%egZv(_e!950v{&uftbCkSn2Rl0)1G;>C{m>Eqz6&
zI4FUBChwoX$HE7g%D@En#*DH|pNKeE@KeDdf}e4+Ic#(o&Mr;BpFkji`&sQ&MkX*S
zflKo(Bj;Oaj!wWWMLdF3ya_16Ra5aL@KY5dnkGs-0lq1iW-x(}C}Go6Paq;ZYAUe=
z_}~ql6Q=Tc0%J@*Hi2;_A1`D=0(aUObxlrSN&+hrSe3vR9B5XW!2ATJC5)FB=X;bo
zGl7%8S*IsZaAWEW;a?`OAeW6Ii_c2nD+&0u8Gm*HbA-<|m2bFkS{Z%9v><_n3FOLU
zV=sOBuhD=-;<i|DiQv)%mI+xdNS_t#)uTprs}uM(fkRxL39OL;;)lsy39L<Eoj9)-
z+#<LkfsJN_O$lr^`F9EM6ECANZ544_0^7~p9YS_;s}Uc@-_1o-*}8|-aV8f`VcI8T
ze*y<g<)DxnuPjFr#>emDGTBIuawdz?Wub%S33eb?{r_X?E1;~Z{_kOk*&vN{DoVe3
z_r(AMGcb=9q&uWkM3fW|X$71Y_tkwlq;!{rlt>7Qq?FR#EhQ!YeLwTP|MgqztiATx
zpU?T6KJU$&8yPs1fm2e^VWZyTLjKIa5g|tn{a6M@y7eV=LX^J*|2C{AGxRH*X+3Qy
zXEJbB_&Gy4PjXH7xs-v+8E`w{apFn_u4cgMgw2U-8MvN-qE5W+#0@Tt4CHj`+luK{
z1|DYM9|?6^@Q&c!4BQiPUyz;;GH^fPf1~;+1OJKsI0H|FJmtw?cs>*Iui$fzZ4SNE
zOUb@6d|qduWms=B)0+%rGuo5gi3Ee^aOw+*4!NAj?L?yJ`3)<C<Pps4#9M}*&k4Rc
zIxBJk5eqs|NJwGBr-&1M%IU2t=0tHPzFMZ&Qo@OnPSg;eQi2tnsOUs#qf{9u$_g)M
zDCM1eP^TW}9Z@Q0>4KFEpZA=2UwFwPNm;F`;zU(ZstHyXeEaDC#<r#tCQ*_E&4P*`
zi(8y{<<mXwP9!_=sT2L3sO3a$C)zmC)`>de>2RW<kQ68C8fEJVNp&L4iTc7D2&Oyn
zY^|9wx31I2fvJ%b9~h+?3uz+Q)QM(>-rR{^TlH~nAxcX_|Imq625;@eS&7`viT2{(
zqKwi(tlgaGE~Fzr1q}brLb?ccb>c+A|3<8bD18Kb3Vy_BLV62U>h{0U>nquQPJAqc
z&HKa&zIK-6Gbi|4#|S4zifMoop9>l2#1}%obYiHGL4tz?S#XFGGb94}Feio^`d3bD
zk@d;_`(r`dC?~!a(`Y9qI5E+QZw${dPK*^k&QQiX(covjRg*-SD)_D7cY>1z=`h8~
z8^izCyYEHJ5Og}>5;C}jZdIM|I^lD|@5J6IdgM`)bUoli(22E9taCzhBE%Emy0TIV
zhMoAqi8;a}PDGuE36BfT5X^L9nh=JX?!+piB{Q9vW$3eo{C?0p*H9J<ndiiOLs=kX
zq2MAehC}*#TO!$|hR-r5mK%J96TEeiK1{1bT<ydf!}=r7w^k0C){FA96S-tCH#qT=
z;j__+O$Oi0nKJlR83C5v=EN@|ZWr7mxI=KK6T5``DoE$uP880kug2d*`CV|Y;L}y6
zH?17|ojBmcc_%J7anOlFPW<V_5ho6FRI6AwSFzT}rwsEelP)UxujM?-ec{C5+o?>)
zoH#E0gy3I-e+!-zq|YfQP8<A;6Y)WM!E;W2L9&sQZtb|}#3d)Pxsct3%N!gh9y#&Y
ziL1XP@(JWuIT0C_Yl7E#9Jx(5oVe-4E#dbBZwuZLyemkzYI_pz3x6Q^(9r)8(*C%@
z$Cy76{*ps6+wznriQ)6FkmpXkFqHDkEw2pz+KK;!zcG}3<q{HH$l*dRm)^q3(sGiV
zF7Ot065bD<+l53I|30-a3m5W;CwX2W<`t&=E);N~t_$^CDCj~V7s|R&&V|A*6mg-r
z3ng4A>cZPDd~?j)vzk)Og}>)pKFMV{RZHPB3CW{>TI}yAyqCPB3%m0qm2#o95b`oY
zcxhsJ7b>`5alz_BMHk+2!R&(K!n-c;CinN)7#AwJaJ#B?R(s3CyB1!lTiJywF8$iw
z7N1*qm;I@WN>vxCxe#xe!c<*I4Hs$(F&TQ26rqEuVA9e=W%wqAXmg?WY)c&%-}?Z&
z3&}2&JYlKj!ng^h+U)-MbY`zSN@sR?D`i<7d%f`%K3*Wzg)|phy6~Y3^<8M-LPHlC
zxiE9Mh1VsfyYy@Ac>BD=g-;fm$Q!%RgkRTlSw3)~sSAU@Rhn_|FPeFU5BY*ersggX
zzaOKtaOsy>lB-GjBMVyb+rA6!U1-fe0bHon+R>@Cqe~%6TNm=zR|daSI<S$itesp)
zFPhZRg~~at+j1&IK1rbc4Qp2yy16jgrT-tWy9+(o9v4348aQI|FE{se;UgEGw6gc&
zynJUG*4oiqvV8>m3icEH?y>n}7l?H3@4{y;eC5(#xHG_o&qW{P0*eoH;Y<F7a@~CE
z2h$fW4BBZuTUWXHzWs|Ow!z{yM38ZY3K{0Ya6`E;*Uo?=B<x5RMhOXzHht{^kyh7E
z>o@dYY1+HQHqM3dE*z77O>kkN3v*qV=fWgW0xkqy_?D5`&O7GGE;wB{d)qukvQu67
zUPy)uOmtu>-7wkZg4+d;3#tn%_L_Yzc!k*Sn48qHQ(1L6+xl8|ze|5O5{c$Q$c0Q7
zrg4cbFoj)+xDa*WOf~!5g|@lX>@hAp7q0EHYo*f;oG=}IZ2M!GZMrD4T)5fHmS=%!
z2G@+y7`9<Hx8VX)(UrCzI9bbVa|Hje*ynS3xUkxVH7+cazOXxsgs?jLFLq&x3rk&C
z=E8CbxRQ<M_FQRWVkoV(gQR!qv{f$bFP)ZWne9gx)=FdcyRgoM^)Bq<2I1P^7;+Ix
z-`VSpE^HCLNpQ2Fb2Mn(>cY>4!XEu1e7oQd!JRJrepnw~I{#2P*KQYnqvFCI*1pt6
zor6!)UN)eX{SPU^$ZYC9Y5cxt<^wJqbm5Q-hg~@8!lf40KV_7TxUjgoZB^+sz7%go
zYX@s#Ope}h7f!hF7tbOWUc2z03nyJT<-!e)IoC-w`)L<0G7e{o1IT*6PdMko1sAqf
zv!CZse4ju<w@S-wG%+m6Wfx36ELU8($`KQOu8`w88`j!Ey?=8%@fOc07anuJ$f(|t
z#@uI-!{)m#+!Mk+GW$SGZ0bWH{|G)Zmc&yRxLP=^FI;%WlSI~AQ%CZ1sh4#XawNZ$
z;p$W-?G<Npm%YcmI&XMdx>44Ra&BaIBf*WrZWM7NhZ{NFDBwn~M>eKhZorK^ZsZmv
z(a`fhtV3&F$>tM$OK_n*Ex+M&x3z;l1>Gnl%KtB0RI()n-xe(9MsXn}1hay(Y$-QN
zi&93AO8z#E@@`acqhYe$<VHm|-f^R{8&%wR*Nwjw`+IIwZQ~%R<c7Poo#cH{)>NrW
zy{d5PHQcBsoMLq;m{qE#a5|J4Zb@>3Xm%s*kAyXib6VZ7xpCQzD{k1`NOmLBjcIPw
za-+5zpSv;8jkB{&b=+v`Ml&~3+^FkDJz6~`rUpV%8O>1YyYWFwg{E{vaj;(oZ{$W}
z;Y|#Mw}doj5jVQJ(ant(ZvFPIHg0%Mm`Pf?@u4W>t%S4|yx%3QtsCv!XzxY`H###y
z8%IYsItd{@IAW)=ZbCA#i-;r?yGwUI;>f$vgTr#j*3*qgZz*N_B@lbN(Z`K06Kwqj
z`?~S58=tuOazI^V+E7f#Pu*Y|TrQoQ_?cJ-h>|6K;l`J4sBU=O7)0HT@or3TV~86=
zIj4v1W8D}=vfVn;jZtn47ygyt2*E+$>UR!)Eiu0_svGS_RxQLaVq$w3Z5)dnw!6nz
z+y_h(-T2;(3^yjZ@vR%*alsrgF->t}vT(LJOPMO!%sLhpbaF?mQP_AFMGn3MAAZ=r
z>ye%Q!Gq==Z!A7H!tBT$JGq~u_r?+s3<_$3AveCcraLf2+=#ldri3LX7#9a-X`1fF
z3^#ssW33xA-I(RZ_QG`+yD{61^N;NF-FUW5`9b&`H*P$!Q=IF@JW+NuwKBWFjsM)H
z)NGc8+~ccFizGtIA^Q?Hmb$Ubjpc6Mk7-)NMRLO2-mlQKf~)tCeWl<k!PRas0>yso
zlyE-lI=B7};TYSNX<F~b24>yZ=*Av5esg1!8}$<`Tiy8Cjm>VfdDpf@Fm;cGe4AKz
zapzvP|H8%?CKlP@#!j(D4%wM4wKCyXH+G9Bohkk<)<bR_c4My_f4H$vtPFcl$bL5t
z82+q|L1-fW>BbQ$OHR+DMy37RIF7q<!i~SU!ey2(2%dD~v>RuHpAzI6I4gup;=CK@
zgzHN})=bt4x#-3v(P^b})s1UBT0O|&!RTkE>u%g~<F;GpHw16eEvM4Oq1@qIEHpnC
zyz9n2H|`6k_>?<T_(MbahuhHLkA*yOBXA)bou5heUqQY~n+nqlH(rYJN|4HHeM#sw
zGQAO!&4cV7UCD}*(}P?dWLsXNpa;1<Nc13|2l+jK2YEaQ-?B}4YR+im$m_vd9+3AN
zWx9FVmf2O;k36y#5V7a+G-mJqlvc=t!X6aypr{AcJgDx$+a472;5`rC_n^23B|IqY
zLEwzFqz8A)r<W3Lzh|Su)UTVZj3{LVsg(1eyum97sVMl42k#20WLW36anQfA2USI>
zBFHKzX6u+htl>dTkG`0#9+*5x@<5Snud4cg{LO6MQ~eUPNfxU`IJ2vx`jrMYakG1n
zEQCre50831R2@TkFIRFs4^ln&R7HOkX&%(~;2#ejdC<UvbPqoApqB>@4;p&Vm7`Qb
zue6Z|t&9kbJ!oR^rXDmicykXvFnA087r@{j3gOeb7^k%dZ9HfzN;?nQ3yEa6tUj2%
zgYb@modi1zvQ!rjR?gR((M^=@f;|L#dT`^4sZ?eCio4z(^zmSa2Rl9J>p?#btOr34
zJ{Hfx9t`o|6L#E#{vLeh!RH>_vsp6EnFn}qY`Px*tS_0_fgXI}!SQ*fFU4VyU|YAs
zRC%Lis0YJ5nCQVI4~9$R(H?x`!B@f=WP}GJg^v>a+R&#A%2ju)UdtF!#v1xKA>%!m
zU??wJXaClN?>ulD%482*2A?8ist4Z-$q;l3daB!6$V2=2tR#;ptWFi;^}r{@Z|J=m
zWY;_hdGMnsVZk3fm?I?OLDYko2XV>H5M;DW52gv9ZYag>WSc2`mf&nb<+lDTrn$lw
z3o<)T$b1hL2w5n&NbpiNePot!zk9Gu6lPa>u-xD)gsc?2b|-N)Pk@+djUd-Q`C1Rw
zd9dDteNknL2U|VZKxblOWuph1JlHI}@dI<uRSI!(d0UBM*0)Y7KYQ>C2cd~&y<OSH
z)8nK<GNr6-y9asqDivGWc6sot2NylK<iTza_IPksnlZO|;%^=t6#ly)+q_rEAA<Wl
z*e~RO;0k#@)gj@BJ^0guBf?J#9u+($cwF#=AY=X|<Zr>t-(^2#=%+n6WAJm6vY+$d
zyayL}rrpg}8v1y)-=?HAOS~*T*9EV5aMgor9`FZ;w(n$r>x1m(M;6{tdBcO7+#Q9o
z-}2yr5%abOcZA;+yeD|yur3{x>!I-S>-G1EJoexT4;CINDxP}qjOUw*YAXKq;5koM
z6$MXQUU=}*gNzjkxm3)ZXMW|u8;?$23;rj_?3hh9Vm1}oRV1j$A<j8f(1E5bq(g2M
zi7KF?`zBjn6>ka2BUt-F&U``&sVJ->zls7XYHhO7v!LiC6tl31ic+7aG8Gj<w_++<
z&NCNRQ9?yYiYm6Zaa2@MT1Z(osai4}%BYw;&rDuUl=6biRxljiQSq)6sidN^koQ!)
zFIEO@a?(t!B0A%ca~P|$ovMCfA6jFop`xY=lM3=A83d~eGl#dbg-KCi5kB)XC3GpL
zO&mBZb`{COohQxAmf2*hE!jFMQdBU@R98qnPD(i|v-MRpP|-_8Zx!h(94cC=Xssf2
z!JNK9xp~6WP(>pZUtcgcR?$Sok6TSmIYcTxRMAYu()ng8%~gD0@D@VOw{g(aV1({K
zY@@=v+16IYpPOuLnpiI;*xIRRucCvBT$L?dRsBu4Bpp?B5~Z_X7ZqdcIGSZ7(A14n
zrlN;<()lAHJq7D!Brs9r(Dji4{6w&?ihe>q7Ibyd_XT^@Co$<W6$98)A6onHxr%}8
zpckXP_(H{(DlVzGtYVOg!77%iSgvA-ilHhzDpVE2R18;nwKKj`@s)}ZD#ojrpkkzo
z*h<S-6_0aU_%rV)W~*4gRxw)0H-ckSJa6OJ<x^-HC!TcX&$bge_?j|_)iuyfgW6a^
zCM)&HDyFD#aw{FO^@&-gs`y?-hKf(FD}Cmtmuu^&-PZBp2<6k7R+kF5=<VA&GCC%Y
zZ0qo<@Tr)tVulL8)E>{D5>XLQ5meEqiA7TpR&k}GEhO2YjZ!F%ysxlHQTnsXjZ)$&
zrm0}TOvzH=<(+rCDpY2wn5AN#iuo#LtNj19-m1AO<_M|xbt<z}N2mJRI@+{N=g2Hj
zu~5Zg6-(HKmX>FuQ#lTcxa1lu%i21Yvc{E`k>yetnS|r8Ld8lh7!^lUtWvRB#ZDEw
zRIK45RIyRTCYA56!8$4UlZy4y&JB`f?To{5V5l>%lqX-OZdS2H#mqj+&nh@v)Q1mF
z-Kt{q=v4A;Dt_UNx3pB;t*kqjzMXXil^ue2j@p0aEPSK<u41o>-75Al)K-0pe<N?}
znAArv@&{Mc3-dv4ST>-svQI^}!KwRI91y}g^qFn*j*W4c4y)V|in*zkBY9NCUn>4q
zaZKflN>j%#QI2y}%e-)EJ|3NVQpG71=Tw|maazS06|C{BiVJNWO0uQRJj=a5Er0u!
zPP<I`<|`LeTvYM!c>3%nR+>njw{=`mah2QLi*zrpskqLA$cxHe+)#0o$B2q&DsHK`
zt>T`F`zr3J(C%9rd}g`JC7NL)XB8a>r#@h06^|&Y_=od2M0pccB2|^wjZ&=Nr9Y8|
zm5wPNmr`ij)>#>SRQXrMJ6_$B{JDx3+zv;TmnvSVc+FFtXRH^cym-S=@*<xX`Mt>Q
zMS>T3y?D!u9Nd*h6$s|^B9|Arg%cBngg-aaVO@F(l{{W#Wj)tT6f39eCZ+;j6!qe5
zFA7SLLS7V>I7P&tr50AOvS2Z>7B}KkXUq~3mO)C3UO}*oU|GR(UX&M4Ix`4MRTTZ#
z*?R52=1qFni%MSo|2yxo-YLp2Mbay7wp8(=suy-IlD(+rMRhL}FDzaRsG`*H!o&t&
zQC1zb*Yu)zJBQNF!EBO<X2BNi99A!EURlW_Q;*D3?tPi|-fmN^acQ-@sO{BvVyYK)
zyh!n)-ewCc<>|p?fAogAE)|)P<f1mtOPUw;z4|Vge>?Ty+m6=N(j8tjWMnV;d(p^?
z#$L4cqKy|#ylCo0OD{h3qL~-Xz4*Y37G8YT&cWLKzgr5XTWWUZy&GwL@1|NNq|sF8
zYZF&yD=*e|SFTL9wDqE$7rngb?L~VpI(X69i!NSt^nwK!7Dy}qz8;~I7i<X$cNw<~
zmvL7wx_R|Y$JE`69>RMHeq`wB{nGn*^-s@_*?kfF3icB`I4YF^xzjhkYaRW<@)?Jk
zr@a?nO8Yr7Ecm&XH;ktZ^kQl|z4k$zH7|yGG0Y3@${`%gbfwLHGdKPRH7vu~{R8?G
zkKo|!H-E)>|2nnV6lJ6rkDlwRZWQ&Ph2$GA#&}W0$H#49tQX_h9xt{srWX^uSmDJ=
zFD801$%{-crg`zL7vFgim%dCE^mw6qF-7=PLALgLFEYHC-Ok}O6qgrn;UAsVzkz!V
zJuJj0=obul5fq{c(mCXXIZgjA7crEmkeJ}sc8<KQ<o&;1%;11zw=MQ!rkLg!{<GK^
z;XfEk%E0V%y_hH2`P^lOzJRAt1^u&lkrxkUn68EN$V<e!)Qf=^)0YWfE;x6;{=%<S
zM%ndVtQKxBkhDg~k6c|s))_vb_YyLeDH}M#uT4LBvC+^s3E9j=TR{JV^k*-&d2!f_
zKfU<Hi|w3<d&+Jvc6hN<Jbx7|Wzw6vOSt!zvT1qJv>6IL_jvJ}6e0gz$X+l05VB8j
zzhOPV^=$A%LfW*kAMxU-7w5gWAd!!G^*3go6Mo!_6G95iH2uXjIn(sF;7P$#f~N(~
z2%hCiYh$Nd;n&uIN3vh^;*uB7y?EipWiPI9kiBpmvAa4aU*(xEk=dhbLauZB%WAnP
z*;`)R_TrA=^P&9ga96VTytpr<K}?@7riWhqBg!Me$AV7;p9<3FnHT>WoQ<UNk_Wp_
z->0v<crB*?yvQcX8^e<`NQdk`B>0fShn!-CU@k#gbNk>=&6ViG;-KD`Jcgdv$458l
zQ^u6fhx|TVTdoukEGSq=u&^LaAH6oe?L#pi8u*azLvbHU`0&0Dl^Mr}QWCbD52by)
zO-XNmSs%&>zx32RbgQmxoR+=34;94o6I-sUo9q>ZzvIKZMyo3M@SgA;@|R#0AD>_&
zKhF42O^DT}zxcSi@EU?O1x<oUf~?CdL=m(IepyrRtj!0z;gc++mJhWJg_WiVuWKmv
zgrxeAW+?T2$ZDIzhlaeW(}xy5bYGz~@}Y?jO?_xASt^bD>f5K86l^ZI`@DXB@*Rk$
z{!Kl2JzGl=KlFiPyX#aAn%el#)`wX>%=V$35AA($`{41RgAW}!wv&^``q0UT&OQwB
zVW<yXeCWz=<~|Jcp&RS<;bR{@VKdt1<Qu?y`1E&$^WoS%S%pu3bapSn-hzDu`wI3G
zWGVW5>O+4YKJ#IK4+ZmB7$GvioJEM_RKD=xOCJVtJrqj%aYx-B3MAcYm&DgM1h$z5
z`@qk1UWjtzT(x075Wn_exDQ|XFv5qCKK&`FqkMRM%6x35>BZz4ks;OfAUCUz_TkBq
zn&0>^#;1QnpiYq{b-R6>59589;KM{8Ciy@m!-sEu_|Au^lBF`)hbaa>-p+BoorB`{
ztTC4@p}nJeJsY!5ad7#Nl~uW@)+Km-@cHnxuoA0h_xlj=A?8Eehk19+d-B?XK4?CK
ze0aRk9QEmk3`tnB5g#1K%(u6i_7qd7XZkSB2Ns#`<9keOyj<t(Mq53H^678N3?F8S
ziO+<j!w){p@nMAzD}9*DihQWq);9M@&G|ko@L{=6e=`3<9~QCk*OcigX^Va6+dOR<
zBNVrgEa74(qAcYHWqU`1yb4A7Fn#-hWt9)n=E`~>HptRi?ZX-lxDRV3%LTSh$ocX5
zUI;$Q_LC1Axt@L4$x2<yCLezGVVe(|eb~a;-)P<{`uYJD@~P!)MZQS>#fSS-?TZqV
zxBJi|kCN(9au&4i;-vd<)Q4j}>}I8{><4_Xws$b?;nFhr??Uzp{vo(eaKB*p)%Jrv
zJX~czB-z7)jPR$BBZBli?!yTmF8grBhrfLI+lMpUgY6v;ui8$E&zL>-Q;c)fc3P0+
z%jF4YIfm^W=Zu)=eYha}q7RpZWZ}uXby(w79(q1p_hGbj;f4=4xj2oow}d<tyzRps
zL%-|8J>mBa<$(}3;2$B64E?bXzDkC5Jr(}Uhkp(0b0O^MD{d1Xs)SHAg#Uba<HHL-
zUiy*EkL-R-@MEGM34Y}8qnIDX{mAJ@E<XzUQN)kjeq2mUdf_zX^JCx&OQIj}Baa_>
zMNiyqddrV#GfecUa@ce!rjz_)D&R+*<4Qr{g#`QF)2(mjn~6n5dE1Xrdk3>6{3z*1
zYd_lfQOb|fex&-5=0_Pn%KA~ukJ^5e^P{{UmHc?mj|zTN^y3{r-u3IJI&Y}qgRg5&
z%)b0c4iYAk_x;G?$$nJ!WA6fU6+iwOs!*)zM>RjHi$e`TMX;tHCLu|J^fdcXv#4Ig
zB8pYeW?1ch{Cioqu59mMGwQI}*DNVw<#SXDKgq_Mi|hJP&kxHXiylO<z8}r~_`r__
zex&>1kW#cZV_g%oH<TVV@}sekCV~v!R7iuj^xmNqTKLgYDtcT}@8*Z(MysxsMBQ<E
ztJ+HBu6}g$qn#h^{peu$bQaRl4-Ql(;ltn7$FPfVM(FNG4?hO^^-w)Il{1sRlxQCb
z?<Lq<u#X>o{pctBGeJ6k?8hg<KNak6=(lEP8({Fyg$xw@LXcMWlw&wpnlZ$Wp?(bW
zW4L6;`|*{Kkunr)?Fh+!x7$QM%8#!lJ6iA?!7+kk1?e-+kCOr2d4GFH*Jjp9etheP
z#ziOrzw^WIN5GHClAR(rRq%U3wk<=5Q_v;o_QNAY74!<y(<g*q^1J`1e^@gG{kYQJ
zF)Kw0`w{Wucdki4qJG5uSn0<qKjMC5`uQL=%;A<?Xqx87EG~~hN>R6Ex*s$Ae6THw
z*H1Y&O`(<7!VP$7o$bft>d7lFo9Fs5&yU4^Eb(K$9}E1b@!Y(~kA;48+H0OY(K2qY
zrFa8t@3fRpe>2b7U|#CSGCx+(zf!_-zy9dIiTRV}nU$vw%jB2VZrhbVCnvA=V~rm_
z`?1ZBAN^SC$3~tQTP*9?;LGOqer({{9&brHVd8abr4E@>+gN^Lzj|5z`PaV5kImw|
z#gFg&rme!C6iVX5>-dnXU;Nna$FF|u=9VmL*}*tTmR)}Alq{8FFBBplW4Ol;dr<j}
zZP;zT>`FMY(8S>6fB3P_kINiVKlb}^z>m{@obltJABX%n=EreA4(o$yI^xGsA%FT&
zaG-?>pFWzJCnXTI)E=u$xn$;3+D@=uKOPQH{uVsN^I?Peq~PI}Db#rp-C3Sam69*;
z;9|4$B%Sl)ybyAZ=OsUOy=yDm#=@cg&}|{V>c=%d?)&k;kL!Ni@Z*kOzn1SN&$LbU
z+kT8sQEvIs^aIP*vt}xvzOwSUaG`6;T|e$|O<q%&w#-d>=*K^PJoV$5ACK70aV9=o
z>#-l4NAgM~El>RDKFc)lyd`0o>0hqiTFP@jTC6hj@<Kk5jM-Oyyyi|1Vnq=D`SFHF
zM*trNu)=K57C@~4Y6p-#fP?_1E>Fr4K;8h}3Ls|yxdO-?K;t^fkR_H_$&|zZ5I~*)
z-n4fxQD@rmU!8mb<PYGT0NxFtKmY{;C=ozOrVfrm0Td13?Ene~P$Yn=pC{Mq;ONxB
zF|30l(7{nGfZ_qvbK05B{UWuZmOh}ItyBP|11J|j`2flUu=<O%+^<s03ZX-#H>sO?
zSSkciF@Vl*QoH<^$Set?(XCPd?*(8AASr<N1E?H8wE(KKYzGJ3s;~h8{L#U&|Bg~}
zspb5)mb5piHQ3IjmYM<hu3Ptd(#iXIEam`|0Bix+1F*0zEj?RDhc$pJ9ULseP=AHe
z*cW;xv&)sOY$Q8XCxE+YN@@UU0i*=*te(PDmmL)T<VVYkBy0Tu8gNM2!H$mf06LYj
zHVW_sQg#xDWE%=LU2B;(&6M2M-b6g<+%$k@!kY_zVCXFZ7*Rf%4y^)c9l%#Xj0mDl
z0Br*pAHakF+6B-)fZ;R+&>?`10rU-^A8X+N2GBErj{^E<XqN!G2GA{l%X#WE+dY6D
z0W|NT|G_mlPuj%&_SY4-s?&RkbMFB91aP9L{)fqVMgNcRH%Cl-k-^6Sd=kLt0sU29
zpVDV#`j#(q4G5sW@XrMKh#Ttte=*ftp#N`upalFv@Jqo#0Sp#0M36p1g$xtycRJgM
z07i0|%`=S+U{nBW?^s3$_zYG3v*T+vdrlISZvq%2rp}sv_L@@k59o0cp>OZ(69bqO
zfF}SofNujR)<KyZz?1;KGiq${U$&_Md>=s88_=@;FwbB%fFmCyx&m;sFO}1~G)!xK
z)Z8J}zHhqX<r3mV2k>tI{s00291h@5uEQTq!2sq3Fh2k-fDl*FzY0Ic!vRDBhz1bj
zdRS+kDHs?0bfSq$W&qP9OFlh-83u1zFlm<X*@8a^&M~ZWS?|~SGtd@@(lpbwD}aRo
zEDB(8080Ycz&-}BRIJN+2nbmgz|WuQrI=QV@}uA??j0f2*9iG%wPmf4b%wq^fcRLw
z!Au(&$Iv$guvz#PL)pqTS;<PbZKC`Vz;+=!0@x|U)H)$6PPv(hzXq^7fIUXpeL{W<
z;CDmW%e`#yDbo`78~i{32MvBm$S2bhj|6ZufRhI;Hv)LQ&U7q*<6OW2{CD2WEGzvh
zfHMJ{4d8F1>`5V~0yr%sKFgBTwsVrb9Kd-Y7X)d#DCCmhx6>1;ToHaXfNMgo3sSGx
zI)PJsGk{y7+z#N5kh_A91@8&o58y!n4~72|z#}32GoL{=9Ms$MM3kq3p&5Fm&jWbD
zQ!5B-5HACG#gjRRcY|1U&h$Efd_m;rrvT4zDUvOS+(CW$Wfvq#5RxN^oQ9Gsh_kc)
zw>A<*gkT=Qyn=59F>9#qQ$VtB2T?4Dg2E{l5>hybB0`E9db!z&#e*mjL^(q#DWr4|
zr3|HvSMO9A$(9xTbF8VnVXYvfVo?8jPq#`zycdLGH2D1>YKlW;!74_nszFo}Ufob?
z1W_USzdo9RND|#_STjaj7{6vS%cXTDTM(^zzy|rX1j#|v3Zixp=|MPxs3ZRMj8Z8=
z>IN~ySk<XPq={JH@M$3Ay;+G34W*foMnpqt5=2vjPoJibMsvx25JZb0S_Z*ZQT)*G
zX%)n>d-~dF8$`PxJ_+K}Ale7fK^#5`qNCy2Er?DA?<}N?U{}HUQdf83J%Z>dg#YPg
zWTsw0^cID@PY`{D_cN4_xd4{@?@Z_)#K0iF2;wutIv|M8g<qFYjPPX;Lk;VoAO;(J
z$p3L07Q}EvA3Hs9WDui*m=eU)AiQhMUk5Q(2>ECs-vlwnQ1~yZal*$7P7s_ZI7#qZ
z!S4ho3-WV>p}r65kNBPy#Oxq4f^Y`m3c?*kIEY9Po*>j9{6Pd*B*?o$Y@0JJz97yh
zb^mUjGOu|`-Hwi65E>Vx*&32i^r7D2E6b!#X(Z7gVnJjEF^%iwaSqlM529;F#|Ree
z=%Cy5AZ7$nqnKs$Rr87l)|o-vYnHOQql5TE5Oada^}ezsh`B+`3u0jqi-K6*)HXke
z1&rJ(VP8i_@uoH^>3c1UgSc7P@^gw~$S}08YrWr5|4dvO)ITwo1+nLG9cEYZpa^20
zhW#2=2eF2o(ok2!k3p;r;x&(sAl3!3K8PzpTn%DF5I+TRAc%uOYz$&k5WfboJBZCe
zYzg9*AhrjwH3<Gxz9~i77R1lO=bcTXlE0IK;tsa_Y}(Esb_uCaN*7I?9BpWQW!)3R
zUn$C$C(`x>@mmnTOYypk()O~h6ou&zt}cnQUzE>=r-obD4h3;Ih*LqFrufSGXAnn&
zI2ObaPE*CYOe}JobJxl7mmtZBAXp0t)89dy<P^8Ck+X_3oW39~O8j#{oDbpxchj7-
zb~DmCr`Kg#+R4Fs8TOL+ToyD-m#+nJJ%}ekJPqOo$3KXF$TO8&LEI+aX}ZUGe{F4Y
z*ph#h=}r)Lc|NZ)F}?pd{l38;2zkiSOG}}N#UBOnm}gz5H1csRlArMieP(8Q8N|Oq
zJZGi9+j34zd%<ITS{n78ogBnhS#H(S-*AgPx0cXQQbRTk*)=3+$e|&>h5{P+80wrF
z5;Z_WE)BUg@bS*}UKS!vc{JqJ@Ro*r8aAx4Rhn;i?6UJo!ozy$kNal!*cw|w4Z+p6
zA{vTnD5RmV23oJpvwzXS{{EBnw>1>gz-)01^v`%px$xYcJAab(gA@iVrJ=NjDjKS4
zD5IgQ#vg5x-_uY|LwOCK)Um#+;oCaa3L3wb;~fosM%c4IHT_V?`qdLtg*}$-wJeo1
z92;TJGr~S?g#CRf&Qg^%+}~lPb2SasMYL(Cp`oS*vj&Cj`A;#4PM;*n`VwpuEgG&o
zF)_GR1LHI7=Ap?Xb`8nWo?03@KQS>5YpJcFjs_MaXYKVgq-yv^!x#-|8tQB4p`oXS
z1{$wFK`RZdH8?ah)X+pjQw@zYeQh)r<ot4G$9Bj?rJ0828d`D?o|(TIlfG`7`2$U#
z*}FBA7DA|hDAwfN=Cj;8GKn2EbkfjPLpu%aWkxvW9oWvM$($Wd7H5h|XAPW}ZW_91
z=&FI!ku{Z^>+WLGeX7_#($Gu8XPlI6=H7z+G<?kQ*Ywv|^wlu1ytVuj`^Y}Y#g3Ri
z(eSB;5qVO`KTbe@E~ks;aYrn!?r8%wd`@RZ)-X!L*BZXmFi68li9?68GnB!c>nHXh
zTqj4&Lj{Kk4j24NkfsqrT6DAjd&XS6yZt~rWwcT0LZ8AoV>OJ^uu#Jy4dXRT&=A%T
z;oxYPq`|Gh!?mR0JFd4!)(j1kHB8Yk{HW!7_Un=LStmz{`{t>_N$5lI#&wfZgG)qa
zr`AoQu4?dW2x#zf_BEU=;K(XY42q|wAtWTTt3q+^m2@IQMK#1U%+N4XLtL6MO~Z5z
znc_?bwt-c!Y*xWp8fI&lqhYQFHj)l(^AA#xp3KhEFkiz0Zr-D5Yz7r}hnztcYkXJ`
zHfz|zc2=yrRMXGK)f$#*Sk9H7qO9QR?d({|W1+L-$_NYjDh)h`N!IWqK*L%M>$vMR
z{KS!LVOuY8+I^M!@RfeNZ`AOnR?0F)?&Ns6Fm02DtB$%<wrcoU>iSK?HVwaM_*JT7
z?b|i%l2ALufu(kGH>KC5i7|^g(%7oq8uo}kIgi}mHSE>!N0wWP^6pwQ&tBGkK*K=|
zk2E~iaEL7&VLGGXtcJrH{?u?p!%@zQhEqHoG#qC@@uAzU1KCd)yvmH^zYV@)yZzSt
z`aedQPK)?US?f6s=Xp42xUS)XhKm|5X}HXQhn2oRnEIbG-<hi%*kd_a)_Ur>^$JHo
z!+|H}*3*^FogFtc+|+Pa!#ytkUdl0_>6V1Ot>KQ4<KNmA-!O3t-`DU!!$S@KaF$2e
zEaz>dSDMB>RroZ;8wVBNnzW?j<|jNQxaC87PoHV{mq&L91w(kQ;RTQM5E4Ro$vvgv
zKhBGW*Bb8!H2F-H?&FlT8`6e#c4P}-^$rtXm>cTsu(wU;&2c$G$Qk1ApZdRb8vm4*
zD})`nl!LcSuM=#!Lm(!G03mq<^9sHtm`^ajAU)mn9ECzC973@Wic2Glgithuw?pW?
zLm$!?&y$yrF+I+2$@QPPL<l8AC>=r>`nZ#yEl(;H!nlS?&6%b%ozwYCCfi&#gzi_B
zmd)+IwXl{Cp+X21LwF~I_e0=lFyQEPyc<HL5K?2N_d>YvRqFE2j?~Szh|5%28qlzr
z{!2x*5UPi;B#fnD)Ci$w2z5iKCl00%%poWYDA|j1%s>BYv4mg^p|&Wt5bPoJ+OLmK
zj)_W1C^6NP973%SuirB<4f)+vM?C3}5<<Rlrh{9}sUf6=U<xBCjQSyr8foefLdOsq
zgpeMBBZP(=qVD$AA?)ewXcR)XzsyaAHxA)JBWn}k?~gMz6BDh?L-;^=3&ECx9}2b-
z%=4?6Zf!#NC$E(;+lJ6if{?f8Aa670hqY4(okN%#!n_c=gwQpFk3;x`#W~I)l=GN+
zhtNa%Lf$ik1HF|pgR<8eZ~KTN5JK+k`prkJ*IOq3Z0-|6-w<Z*G4URver)r43(2P;
z^ba93glQps7Q%oKA|XUW_;F<V=OK7Q`dwWEL--<uFQt|-A&d=SPzZxV7$V9j!Rl4B
z4-H{h2*V}&mEgz_MhM|OI2`Jy?e!V?T9na(%zhKXFLGtVxDdv3RfjMogb9YVlUXk^
zF@#Bm@@)v;3Foc-G%-yL!DU##4<SRi(@=Otw_CW!P*jfOYW>9Ug}`C)hxErm1Pp61
z1WkCzP{LdTf9cJLaZ;w5`cE^(xxcns4_~%3%i9TQnjXTe5N3xkgFCv9vOmE(GlXrk
zO&omsOrMzWLkM|SCp0)}pTlTJ?d~GU^Fvq=!uk+4gs?D#MIo#VVO0o=x$L?8W-7}h
z)Z>-PQfVP?E&Q>!vOI(pAryISVl7N0Osl0MYdA_5m5ZGnKZdY2gp?0c=4>~w<Ak0}
z9G6{T*`Gq#7{V*={SY>VkZZTHD}-M|*etWmdlI*VuvL2fv*0$tUj(-cvZp(Q>=fi%
z%($F(bJc}#kV{v@-we;+*=*r|2<|iV{UKbGm2fD8!y%jv;hdQM6#Pr@NC-!T91}b)
z$l6bYkfV@(mi}!hCxx5};k1x5hMq&!r|f(PS3|fa;sw?#<dWfYIfN?)@B2>n>ml6W
zW(?txh&MyHYgliEa9j8tLkZr~f62TT!hKO582Ur*tRwpGv5!Uh*U+B`c`EqKSW(Xn
z>kEDg2ygn1-t7Nmk(3UjOc-xM$QDNSu-@zZVH5}>L3oZZatg^Mm?w<fLJ|cb$Ra!q
z@(O=TFrT51;L)93UqAFI7)GHm3Wrfdti=V33cf8^Ofch5y=^6gmlR~S6dO56*C+2W
zl@;-Q!E%D-1uKM6Q3&1M5%O*rl?>&*FkX+-_j2X1etTmT(W?qp6Rd7{)(E4f@O2+$
zzZ}hO4nql}OBh|le9JJbVKfY*Q5d!`>|vyakrqaBn706@)eG}Rep9V5YKKvWrp>mx
zf+>PUx7er@9HQ&b&X{;9e*G{OZ?-iEgISVin{7ij+tS0x*2Upqf4ew%U47#)nuO6T
zjOJ1Wm8N0D(k*K@+1?s!<AweFY-Pa@!e|lZqnz+z7_Gu!UG2hPy_GiGT8D9KlZ{Fn
zA#KB`)x|-jeHb0W=qS#e1nEOlXDQXbi-Xy2VRR3}A4VXI9%1whV@w!h!}utSUSWJ5
z#=tOohxPji`h?L}y2-xu3*+N3*ueo|e8S#swhijy;K-AF8b*InJ`?0E1{A-m?eJtv
z`XY=k!x$dMS78haW7lTeF!32I%^o5+RFI8lExet9WjWv@!uTc(Mi?pMKT7ax!O?<r
zrrYiW{q_fr?YJ-|hcQLQdA#6+FeVC_BuJlcg?uN-iI^%~bA{m!<9p$p#EdYU2Ip{j
z!cZma3&SgfbItLmCozi$!_dNrb1FHlbsU_*P#6!#*f@Y;HdRKFJjy9HIQv-Srkz2i
zg)v<QWJVYZr8rG9!<Z!^`Rp)$F!&rHbHkV?WWJ#<km~5n+80TX#a!4U^foLDV>zpc
z=+}6x2xBD=fd~pluquqzVO$L3QW$H(_%V#%!uUOmwPCCaV@DV}!&o2225y-!+B!`Z
zuk!LI6Up%hW~Pl{Yzkv@7+b{pvmmWoS?Z|nw#`s}31ho(nyBvz<JT}wm=tpUo4#Um
zWp@~R!Z^|@rT7y43W}*K6347H?G58kieda=#Mu|de&GiU<zN_xgdaAPNh=Z=_NZh}
z2_6gMxR4Wqe+m9Acv3K{$Z6p$dnSyt20tg{yx@f}vOF(`aYdA;VO$O48prL9`Cb^;
z!?+Q~Uw`R+ca2u|%(al*6wh0Nx5Kz2g!)|}%U2}cH<SlL9t!>w#v>t*4eJwbRq5KZ
zF#ZkWx#+ng`gpzw<E3O@31%1ZwebIV{tL+_BAu7!wIvA8A(&Gzmta=!5`{xBk6>Ow
zmVHY|KEeEg?eiuTilA@=Uq&z}f+7(VjldFtRjhAEP$`1<A}AI?@d!$Y$T($%loTu#
zL1`gn1XoBO=~FI(@}g7_q*5`0cMSe+1d|`=<NSUEl_O9@=d(bmFjbLk)d;EysUATM
zAvGgN5@HhM!p`zHNAyLW#ot^s*&?t<&@zG#BS;p{x)IcipqB93f^@DEL5lDh(&kh{
zZyG^b1ob0mU?`0vNRPk~K|@iphOW{7;Z1~R?T%)`n+vj*4}`Q3e93EIB4{nVmtdO+
zI!4e*c-sit3286bAxo6~$T*!N=q5@RL+>htm39}>!_a#Q`6z;{_VkXRPXv8M{M7L2
zC*<P@J`utV%PRT{|IF|i5W(jLA1LID2ztxOFgSuC5qL!$8o{s#rWl^XBN!dQH<JA-
zf)PSS8rD$}d~I+}*%*UQ6f!n~aYDvNFhNMx)MVkL2$ruge;dJfVwx<-X0!2ABlupj
z8G>WG+Ne7ta7Eybz$2n6n6(G9R*NqJf0ig15ey1yf}se)LKuxZofwsDOfVinrjTiZ
zSxb6G1T!O;6~Sz-y(nr$@k0c2A~+GjUlGiWU|s|VBRCYn{0J6A^e=V43N92}FSsaz
z#X@LZ62Ve~FXISAutKscBUl~58h#2$w%WyP7awK&F@m)btTPlAXQIwTvLP#u;Km3x
zMX*`;FIoBs(-y87ga0gKn_yCx?AwLx5Zo!qfV;T&KhnSZG3}0EkLbS%{w}!J@ccu_
zKEeGF91v1hp6Y)%0$vhxlt;}~)1ShbJtE|rht^}F9~T_;w?d!4BRI)3DhmE}b1H(<
z5j>0F-w4h`a5jQ_5!{d9_yXlz1lJ?D!Gmjp{d@!$M5KOE$fXD_3%MeA)v#XU#Lc(R
zjp_ASOV{1X%?NHqK*Dr8f;$Gk8{utPCW`cY5W&h@%F_rQasU@7{}|C8Mex|*Pa=rD
z(VdxmyOrk=yojJc6a}MbQpEZ)f>#l|jv!|t<)Lc&&nT5Us`urMWV1z)U9t&+)N@3U
z)8M(HSXodHo+t_oJ&%yQQM@H2pP}cE;-kj@>uI4VibPQ~ioy(7Na<VBLVP=lV&Ys`
zu()7_C`v?8Qg|uB@`9xW%S2ID2%AwZir*?)Nfxaz5i5%Rj^Mk3l?2}tq{I7BOfRDQ
zR}rOZ6xE`rF5Dc2BBX|3%_vMl=$sTq|M7MbCSI(5>7h=zFsxD7WQEuTr*1b><SMNl
zg(Hf`0aKkQ?&YzhL{T@2dQqfC(IATSDAGi)PoJQrW)UlWvIzN-yE%LPkj`wwC>ll4
zm=hO8N8(RPQ$GATir=$Y+C<SjiZzXFEu;7_iVvb_Az4=!$NVmieT{5Pt)gfh1xdfR
ztSrJbZmOlN6en*NMSFvH5W;Ak#J_VCU4(QM>=wliiTQiT!e~7?p;3&VfeACvD~jGx
zzN-`;W};6NeWN%Q!|@pUMe%VIV`3N^!zWRE8pVw$ZgLEx_$-RixspytF(8W1qxe3G
zj3@?1@kJD)qWC(BFQXU~#fT^p5^d$;%HSx5MY$c6AyKqhoi>zV2d1?fVj&+MMU@H3
z7uqUcaRe$`FLZIR$jB%jd}=2d9mO|MOp4-L7KvhP6ceJD7{!y_)?K;kj$;>S%~_Yf
z(cP?J3)Zd6M9wsCPSST#5Sb=R5t1oUOpSt8mL)zZSJxRu=4;cjC{o%ft|;75c%o3F
zIKufgTf9;DqS(sXXPW#`1fuvUij7eOqtLiiqL>>+D2i|tv&APOI8Bg6qC#R(#0@1g
zitlQr(==U_8G<tn>#Qi&^|RB;^g|T?@$Z+Jrg>sr8pX0G=0~wWvNSC;N-YwySa1oK
zVzXqHS{}uUC^m?=((wE-idDi_8_Jp}EL-#%*NU>v(AP&%;ed@gQ^B1U;wB^7X7Sl#
zcvkz(^m7#3qWHy7_6gZ8xFd?4LUu**tB~E?>0GG7_pr62^eXm7K~D0AAjN6J{#X0{
zC=Q57>p>xh1P@2?r=geZXW#yr?PwIGx;paAPdgsPi74tnQ2yfL?CLlf#otlbyE>?}
z5<C^f<gSjnT^)%tlFmeNHj1PXwa-OyUdV+gE=F-FioENRsb7xb3bWtWzAnm=-|H_N
zn&WDemk?mrSaX-JYZIADjIDhuirZ0?iJ@!^ccQo(1z*CLCkDqY+dUov?^<3)ai0sD
zy{>6{C@cIaBj>XHBlt-0vEY*^*5|O%^i16Tjp8}`n`C>zU9iVaQvs9h=dO-dQM~3l
ziQ>&3OZFHNVtB)O&t}OM(~%-EM+`Y*$Q?uLi|JW<F2j19BM<{5OHStpT^)I2`b#a}
ziXmSN`C}*$L(v%Cj-ep4-5gAXW2oBAQ7DGS-5idh$?txdRwRbZYN;f}VkjO%$rwt-
zkX|jdL=4xzNOLAy{`e-Dgi4=oj&_Nb(lLx%toX+ymy4l%40U6u7ej>@D#l=nAt{D;
zV)`9P)nodjhDqLyp^_-%@5S(bOn*TkQ{@<{7`$o>)eK&LmZ^r6ttrSy%Jb36<`{q3
zN39rY$Mo+}mKba?*kiCtme)%(8Kxu)U*@Pg;;40OH~qJcIx#FNYfllqkEVZnX+6fo
z|DL3BSk9W7#L!eonqd7H8nENS9WgYFp^@;qYfN<JOWzvDaHfTYyl54rSq#l%=n_NM
z7(R%hMGS3XXd6Sz7~<U=`?@*)n3Vn@6^D(f6{n9ga#QC&atuZ97(*u^?PKT=!<BB1
zoZTJ7irpP_>ntYnDdp3<#n3&5UNQ8JfsuQ}@DWG5yQ8Q0P+^VCuF0qLiJ@-{17rAt
zlhWPMFNOm>?VY+iJ{HeU1V0sI75!uQ%-{oJ_+0p;xk)rJJsObyWeh}y9mGWy!;lz;
z#xN{~Q89cS1NGs8bpA@n2*Htpv<{XgwR(|0+EBg`vah>+Tugry_JSA|#xOpH2{BBJ
zVNwj!VwfJow=wMaFx?%4hYLXXWWgzdG);}+dxK{PamL^h;_mLCgDQM)cZXkyHwK@O
z8Db3xr&~~n7DFh8a10Scj|+*$5Hl2pqJO5L%n<#nrs@0vWTx<0g0l_(A7Yqe@VP?f
z#V}vUSqZf$hQ%>#iD7FDOJZ0W!v?O>7?#DboHO{O&X3&JF|6bs>2F&d!zwO-H0y~!
z6yn--iDwU{tq~Kgg>qPCk5bmgu#VB{TMy1v*2h5fd~E4o)w(f;ohK}tW7rhK=-2wg
zvM6@(D1(B^&oOL^;nx^;$M8#x&zDGl-cs4lU7s&4<FvB5ma-#;c_%D81$PNjEY?!l
z6GNVjmIE=2{8jlahTmh@8^a$lJlSg57sLJ-Ubavoa}{S$S?jQ7o>!{hF&&KIPz;Bq
z7k|buxutS9(ZaqQVZBk)QBh9qHc>wj!(TC!iKA>Bf5&h#hFo#vj^k7er(?Ju!vk)^
z7y`AGYl3HEI49(M43~t^bV0~P?#*AV%wFdHis7n=<xAVCFp*pr<%Zx*!CQi~-WGBv
zhP#GxPY55A`%uVpL;r`{B!<TvpGB4@F+3BU{HZ7m^{?T1x}9G23yzN{uVQ!|!+(Y~
zXB=;YXN&8-%PyE8m_v}_nNw!sgwxi<I1op{I0}g=PaOFSpS*FrCH&hddN=b6FCch(
zQ5u!PaTJN8xZz(kj<*fY>+9YgZz@J*yy?n=#1e*HQb;Mm(s8u9r#GWq9OdKK7sviM
zD#TGSj<4ew9mhLyyc<W?IJ(7ADUOyqEc|-bF^>1*cs~waWL`NATO4-bRRpWXQ7w+@
zanz73eN1uGG`Mz7p^_AbSrkRkVpy$l4A^a^L$aZK7)Px*YR6G0j_0e*_2Xy|M~ZM}
z>(b5OsY24&^7AH|(j`JuL5C5oVH}NwH#U?eag=FMbEY?`nJCQ#KQOE<*kyzNZBA-s
z@YZp(5#Cm?onU*z+JU{OreA^I-fim?=hH!Lo#TAurmc(ccgESe$I&B>5pi5xWbPTq
zM{z8<Y8w(queknY<8#5@ar6<w8)N$l=_g2skA-|9_^Dw3I6gD112}8)&17I4U&Qfc
z9D5tq9TZ22_BmO0+A90tIOa60%XGiHW2jV}(8Dn-jtdRz4v*t2QD!SPHfdyB|9~DP
znDx}YZ-l$!@CX?b$JjW=#W6mP32{t`qgW3I)5JKwjpMsGCK<}8zP8E2vyfT3O^xIG
z|KpP(4$e4SMycc;4mA#M9N{=3arol;XMKQE)+C+8ABTgRdR%%?6iqNBNQXwfm1rEX
zICj6S{2oU<j?6eV$FU`jX>m-CV=;Rg#|$?9y0UA7<p&`%<CrCc;%v@HsdSP#am<Zl
zUL15=5Z51u!~cBE=Q<pm+OdaYNDs$CF3Uz~i{kp9pY&N8$FUdb>*M;1MV7^}JdPD{
ztQ2uw9IJ%TA-K$PG0D0*jx~nzqmZ?6)UA_D2PQrci9t3<sGs84D1^$UIMf~vl2Ip3
zTN!^#+8!>yH>RKC*v3g*W+^-_{g*hl$9WT_X@}rWL1uTw@hgW#vM-8R?%gm`{Eg!?
z*}kZUqre_3M{I8#f5_00Z!BUx5XV6tQ<=z<i9>N5W?62xIR50k@bC9HF2`{sj-zZp
zx9Wci)A=}#$8jQ#J6p|v3FcU9CjUE*laf6pcv_J9nK;fG{G1Tp`E`MNL;}*`dtSr2
z)qEw6t8x6p@myuU7RU8C?#6L1jvH~@jN^7(zc;zfRokyU9A|nsZgIh^w3FNsou<b<
z94z?JO8b3@@F0$v!;&Ayk*lX8u+m<lr{fVPF%I`?`;$1Hap5&gB!9{c+qiDco_g8z
zo{mMuEidAD9mjuhkiU%Mm5}|p>ofa?D<o5Yz6v7B&T^LQnaGt1l7vj;$i&cgDLExe
z(xs<^I#cdUBpM>Kc{A}=rhesc<xKs0l^^b#@?|1_CJJPtU?$3EqCzHG{E}8E6Gbvn
zRCwV`R8i7T)=Gan6U8!7G83gTQ9Kh=m`Y?~cuxljOA$+FqD&^rW@1rK2TM7+r4zk9
z9pyx!NIs%ldc{n>Oa~<INE{NnRT72dJ*n~iOwg*EGEp@X)iO~%6OK$Y%tVb$)Xan>
z6V^<aGI4)_iAl*s-UgN=$(l29Vqo%3r?R7`qw{8qEff1UD|H3!nMlsW%YI7LIZCZe
zDC?Elg3B}PbvU*hoXv_JZN0)G^)itvrKqH3;#^Nh{Y*3vC0&p{vr1bQ=S^;ui7lbD
zCYflQsXt$l{vnsrG!xA-(Of*)lEW*^^#4GzEi&=;Z+aE2GWC-%mWg;KT4$n7Cfa7A
zUFQE|>N}vMD88>*;w4FzC<ua*W_M<K23TZa8xRo$6;LGSoRefhlq{eUXQn52_XL81
z$WIXz5Ku$`$*5!zBnwJX@qhbaf9E@=&ONtoy-KfM)x_?`3eh|G(9wqhJ`D7slMk=@
z(3K<f;WZ!rj%L2jMf9PwSdKc7HU4FsDv|lHHO>xg$ToTHLwA1L<3k@Gdic=Ohu;fk
zb}O41s_N?Hv#$Ff>C2^e=k)g>BkDR^Dzl$7^<w@Eej!O^kPm}>nC8QDABOla)CX>y
zNj_fY?-=I8=9!L>J`DGPcSmFzA>{gV&Qa3HXu&ap9L!iD<G7$gCJ4SEI8l%`|1Qp`
z^O$q84^z0@k2yC_b4;cG>pJf>biL`rxgM^WKD_0_46b|0O!J7lZ;>Xmr0!B5mih3u
z5AXOe+lM(m%=ck|5BCzTzHd9``jDLBVwxu;JF0wN&AZTtn_oCyJnVSa2WFWT30dsJ
z5?guChxcv%fe+WWTNR7dbx*$LXprBz+=pHV9Ai>h^@>}c8GSzZ>45+i1rYG@9?PiV
z$5Va;>1rPi`f$jHun!R**7@)uJ?XO^%8>M7pTiyVS&wF5iu<4oHv~<=gk5_3M^}n|
zD4fZZ_F=W~HMX)=$hbXuKk{L{4?BI><--Oa3Lba<kB7ir$H&5%-6-S}A2!*_-!bJ=
zA3o!nisctRd@1B}!7YMY1z%q2+$Mw#?hvxwhwarp%rbo?iu15zw-1wwxxZsb|KT9{
z+J|pM*(3O^Am_W6r&ePp4Zf!z#CShREzb`OZ|)aSZclcQP(19z5g+pUk<X8#J{;qU
zaI^bxoM#B<?!$Q>exy>>+hCUCq>!Hke-`9@OHTQ~qSJyTXM~&;<Rd435%QZ4mwmWk
z+x+UoMVns|a^<vRMy_(jhYsniYd&0MK;|k7VxE4gmxS%y<VKT7d+5V0A8zvynCQ6g
z!yi8IF&TG!nApnmC&MpqCZCbPMwq?JSQVX|?bH5&)cQ;CZ^3^AJ4YSt;$NP+>l}If
z$naZa@t(ZI{C*Vhqmmz${V3?SJpY&<CHyGl2mC1PM-e}Y`?0okHWR&CRCqB#di#+`
zEa^unKgx?<+K)0q%Gq_xN|udtE{_Xmm5*zAD)>>+4>rq=sL-H_A5Zu(qMEmQ(oxlK
zxr=LE&2M>wj(XB>ZBNd(x{y;_+%^5E<wv^!+6VBoAJ6#V3cww(jz=@*sqIG{KkE8X
z&yRh69Gjxl_ru}GyM8S4Bh!y8Klqi;GLMJo^y4KzUS<n^xcyN4pq?w}5%l`eKuAMB
za)dPUBU?ygKc4lYiSQ~tR3_FP*C&_QR78?ye)y*-B&r|HMQp)&`O#W<OFy2oEnE5V
z$xO?V=><Pt6upgI+Ez$|9%?&VY41myHJ1G=^q3#L{pjOIM=5>PkJp5B5^V8pR%g3b
zH$Pq%-bJvhtv{MYcggnfqo=L+^5gp%Rxf@1=;y~2(fj)`z>hJED9H}=V~8I^g%1)O
z><6dATEhfMM))z@=4^AMAEP8Y+7BiglyzAXXBy|n8={OCoFGV@wI&LmWGj<paalCg
zk7<5P_v1||n&-z1A+!8=+mD&H{aXytXI->^N0d3XKHHDwGDjB874d_sS>*HmSYX>M
z6v8`hE%sxH9~^CDd)9k?yzj?0_UrY0AO=Z4QhqEYXPbVk@FV0$Sc+B(2K-nhgzfu;
z`2Ap0%ra@B1pVMpA1M(bx?t3gn61Ydw=ezYF+)VtkAz+N%XUxNkJWyBF3K8iG$ES=
z*ZHwQ$cKU-39`HOeoVb*jpSodHro0pT<F^W_4PkLKDG7F{Mc;s%}&o2n{O5Jg&$wq
z3gd9Q@Ev}9<;PCpd+gF(LU#M{wXJ;PM}CRzZ*66-knb3cLi)>|+V95!KYsAzAZI$=
zSv-J4vNTuxxa!AYKaPm;Q9pk2<7Y;T-P&<KP6+?eR@m%GKTb*Z7e7u5Ib)X|%V<is
zoR#c3!SjB!t?s3G!H-`>x#-7lLM{oi$RXsiAY=8KAJ=&f2aq>_8-CpM<E|9_?gw`$
z?QcnTG|xsMe+d35$kIC!W+eCgxbMdU(f_ea|MKH+o6{8!h5u_Sc><Wcz&e-m1^$aG
z2+1#4K(L@-p#T_=v}7tQN|6AH3MnQ?o%4DufD!?e44_oNIv<<?ln$T_Ph+tuD_Ajr
zN<zvBJ{~}MA#9;S0DGUbyjMAZDgo3G{RzQpf>mux4(3UlR~N#-cuGi3Tdx&B%`Gmr
z_Dle^1E?dq!!E5GKs}q+4_I+ROQuW_vjn+1Tmnu+3BVJ;w+~&d1MtcV%4<E;=Y%v6
zY#2bJ0J4QQ4j?ChrU5)FS-$!-5mKQ+fo8VSQb=w9s*vV_E$q^DU*((E%DNvTUj$nP
ztdGgh2f!Y8z3Xk#-T6WQV|%D=sP}ZX4dBH97WYui9_scU>PrE<9KiGd-VETC06GLP
zF@Q+{bPS+V0DS}K7r?7*Du8YQbPwP=S8g}cwYXev=Kvi2a$gVN=N@X80J;Wnr-w?V
zbWfF~Jp$+*K)aqQpHbd3fL>BDv!}}H6#GaK?fY{i<#NXd@R2KbKmY>+7!<(Z0LBHZ
zC$_KXms`AUlObY5v!OzU1u#5-5dn;}_0a*0viYkE3XQS(ShgmEVN>jPg6Qn%jQ}{3
zoBeVp2QVeTC#dF36E{u`fHy~_51F=4&uP1@(9k&<Gx*Q{02T(&e7I|70B;2_D}c8d
zY5B6}2JnuMIh^1<_iVcHvSa6cZ{vK~OZPjd%nM+C01G%HpKI=Y_r}W(k|8&ntXZ3v
ztt}2<2`g&ot>L`@-VdO-hQ~B~5Wvy^pM8KMjHm#X2e2-H4+B^cz{&uk0mL|lua#8+
z_&9O-RhrM^@Cy&viY6o&KuAbfFd|rYT9)-gw(xWSs{_!5FM3lk0x*Rq1e1a(LFY$>
z9`&^*fVHCBtEEt>G~U9G0$3lw9tL~>8v^(^fE{A9F@R43_)_?$0QP<CVB$Uf{ujWf
zB9ec`s4J4WnH!2nL1EXH0JhpiGuz~RVRQCEvuy!v7c=TK{z^)BGKN<=cM0Du_;rAP
zv~zqT$cnWV=k68#hX4*T6on7H+30%?DFBlFf(HZ}_4iO=twVej5X)ITRc4P0KOev^
zLXHJ+T*!$4ehgr<k@XW7NGyLA!f&ci25>5X(*c|bSYKS96Z^9q!wv`kMaCZlnb`7$
z0Dfg?#WVA2xER2t03HPJR{*~Sa5;c$Qj2f4X-V&03E--Dvi8J6%wCt$8-h0le;2$J
zz-?|K;dcdD{ZAox1oM4mE!@2T?o0N&3SMUawk>Oo$o@z8L&1Lq^JxFYTZWKmPc@%r
z4LiSJ0l|WTg#;l;gTg|JXeeqc#WeKVk<FqK8cJ$ttl?P=r8Jb*P)ozp8p>!WtD&-n
zDjLdZcw9q84TpQG<u&W8qzW2dJFFysP{>KP_Eam0&aD5S@`Q$}8meokp`n_FCpF~s
zQeW$(UhS!t>7~}|rT(^5c}l~SUh0NkYE2D`d#PdJ>klf=XsE3rQ$v=9J-yU(z0^7y
z>T0N`p}utC(D2=1<x!_Z_V~>{k5hw7gQCHs;chR*O<qb}lRxvxWA5IU9bOGQ5E^jG
zha6^4rS3g9Nka{dL?O@Cu<tb&NfQoL!|NKBtL~;6nrUdKp}mG&4XTD0G!*QuHrLQX
zLn{qU9qyJI&b4&6xaoRM!#6{m<Y&&in0;PDw1%^_AhYCcG_=*w@N?IT8vfN>Z{%|>
zeB8zCOB!CLGc|P9@QQ{G8eZkx&pDfBx<}l0ENkcLsG*Yv5~dr4+^oo=+KU~$;}#Q1
z7Y(~U^>n3kG~6ra?yjMShSs;6^n0RlzgF4Ao*IapQ6CL`dBjz8^_=PGr(y05$3P8(
zH1yZ->i`!&!Vl0ue6qJXSVPP1x%`=axP~DbhH}a^Tve79s=l<)Fq@CiFp_boVYG%x
z8YXLK(pw#)VS<J?G>qkVdaL6!jAsB$&Dm8pcYJS^WNB}8q9`og&|BT#TP2yIVXB5{
zQiV3Oq{zeuXK0wI;Z_v4qj*chEDf7N_+JQbYj}qp1u-#**&60>R6+38MsqdH({M(^
zSq<|wEYR>j4WDXQsNr1=0S%glmm0Vh(WP8v#-4^HJpVQ8YVHphCqmvAY%<;ZTW@tv
znZ|sY*vxwF6&hA**dOq&((rwW#zp$5cWbzw?xXrd^b7ve!_%yf8q^Td5YrIX5T-+x
zJG1_FMmgZg&WMJteN^5$o)?TC&hOSW7#cQc_*jFfA;En&%ax)(7v&~dv5)$GAC<g)
z6DRewl&;pWMhKO)Le>d>sNo|a>+RCpMZB?^-i=(`GTu!ZKH-pRde2RFrTe-1XLwu9
zaDAp>Gj|iGqv3N6TNp?hc5B$G;R_AhDQ<Cn*hl@65ta0GneL^Fwo!afp}s@IS7NYJ
z!>|p?cYRcf4GU)PT;Tdz!?zmtaz`+<GQ4{<T<D{goTCuuypl2FPiNtSF3a0DT>CT}
z(y*;kll>YFXx2><KKVZ92WhrIU-ckQkG?9&VGTz#9My14!_OK{ay-Lxj%)Z)!%xgs
zS5C;(C|2w5%I&KXIa8)n^mZAGFr5|~mY&maUc*yC)C^k3=`ZvTkA0p74YDr?ItqF(
zY4}aU-x~hWa9P6@o+{j28m?;K4fp=kaH+U;=e=thu8Tr`L&!}HzYDn~c-t=hgB$9)
zgJw*3_}{#@6_WcJ9%%SW;}<6GdR3hJW+|cl%KcZpwMr@rW3GqRL4oo?R0twZ5Iy^<
zj|EYJLEcx*5X>u>PcVNF1%fCjyigEDf+!jUBuo3k%<glOFclNAxFGdMr6q$X6-3z}
z%1KA1gSfHLQ%3lEebom0+|1U`>xuSN9}i;EUiWw3yNMNps1!uiAgTpXIfxg!=Wviu
z1d%txQzeKE8J<u2s^9iiPxV!A^i`h>qIwW_OXe-wPu<czr-n36`|ADFT0!fgY$XT}
zTO00tI*4b2s4cvXV7(yf3c221p+SA&4#7;pEJ3HBOOR&nAcn@Qdj@)g)-|3?O@nA4
zykU^{$walo&NZ_g)U$(VEc&xSG!c>$#N3|FN42>9n+1^@gc`*BFPwcRJDRhdermL*
z^I>Nfwm4b_@mvtCf_OfNA?!4W)<JyHOL-xPHnhBvb^LTr+aO*HqH_?h2hlEw_CdT7
zM28@TU(J0<@Z})7_EVYN8Ofc{Pwhx=EXjRUiaG^x?z+OF5BjOEiE?Q~!*%`CF02wn
zzaaVt(JhGXLG%iucM#wAQ};Y5)Po*o7guwuT+O9IY;-lZPY``Yztm5CBog!XR|f<!
zFo;3YQI-Dco-MggZp~$ngE{{GDvgJ6*u67H1kq=*XLVj>c+h(OPQgu%k=#T<>>a6$
z4q{9YV}p39zuIrOGET_&ASMJcZj?fiWYjQ)DPxCY5(6)Y>kP9XrUWrHh%bZK7R0n5
zrU$W+b6n_nlM4~V${<z+(eiTcOgcY^1wsCw5VKe@p8GaW{vhTsuBIvPh|SRc>RbKQ
zxk2k67xM&XJe^asdJc^j2JvnXOM-Y$^d$?FML{eMLhG-duc^-7ocsB1=jQ(E`#~%X
zVp$L$1Y!Ko)8U$OsK2^AX#L>6g3er^uw}M3Z-J9ld_nkwh_OLB|6@lWh)@t=wi!e)
zh&96$b%fHjM_v|1xN~>7NWR?ci3(?S>UM|DUV=!|_(ql)L?Vb}5GlzfqFKD7K6Tz(
zn>WYirv`GS)hrc*wSrXE1#vv1?uUXO39jevlTzv*i$b$cg4h(q|AP25h%G@}Y32DW
zXuWT*RmHoR6VV)e$4>rv5C>a%NNBKC%)XFPX152iBZxym91f!5Hpf?7@l@9CAa({(
z?*&)O+Rj};>=~@I8l!w2#5d$Yd>h0*h6=Zj!?l-@8N}ODa=sHJxjflR{Jp<=fIb<Z
z{=gV$m7_Gxrnvr`=b)Ie;*lVZ2Ju@EmxDOQDU5eq5Ii2l2_ZiUo(|$CAwLV!>|_w9
zgm?B@*Lt6^^|M0G1##Y1ehFgm8S9GOUq!iS>z5vp=QCDj;z|(LBzyG{zG+=gVKtj4
z<7N=Q^8^Ut`4DaeaXW~|LMRc!A3^*X#Qh*11aXJ4UBh*kv)GXJ^nM3<c%Abe4Yp=c
z`HQ95&hIv46%1MAZ^`}>#6uzf3g(d_mSzaa8$v!?$uFdU;42ecY^P8NM1)XS2zikZ
zirT!Gkm7>phPq0IcpEq8(;++)La7i+hfpSjvLQSXLe&t;h46R?6=)OU_lk|mhp_5i
zqt^EtO}gJG`@V&hLZ}h~NoB#2RdUGJUT@U(w1cEt2sJ{W_+$vxL!eHP)sLCVQz5tq
zs5M2TUQ60<J3y@+LY)w@LuedAUDoaCafFZ=LcI_UH*wVup>wV?vr;ZGD+Ff<pXRuO
zZ#rBd^a|xrBzK1};jmK?B=LmcwRr;}4MS*TE92i(o(-W%2)QAsA>@S6RJv#u0-O4D
ziF3#R)!}wmdYJoSJ6H1%JeRUshVY!&v=E#<K%IXrt9OaUj`zGQZ5_gn+m2U5crAn%
zgtrlFEBK;dJ3*SY58)-@FAKh6>m7u26zs%_KXB5xa|o}8pmAU!bP4fxvRD|xyCHN7
zp?e5pLl_rAj}Ur>FgS!EmP1gyg?IAutbe<CdWU#TR#qRu_quxehR{!Vf58DE477{J
zboC4pPBK(TXn;C%jEmKWg)m%{5rQKHM+uG=q|KNRSdnCW2%im5Cxq~Z6#a2FcVY<D
z+IbHSP+2;OVhB^X=poFp>rNB$79&~6n}Rd!(wQN&+>pz<OtbhYK=gO)(%B&t8)=o!
zwUv1x%oo1ER%R|Kv?zqdAuJDJMF>kmxH>?6FN8t^)mc9}I`;6;UGInRK?qL`RF?`a
z6J&Pf$Xwd24533;Pk_6COMgmXcfJt((*A%Yg_u<bs$B=Fp%B6$tPWvK2;&E;kq}}b
z#HDUDgrx)3wF6Z>1cOR>mF<`z?3Rk`f{i3XNJ^V2d*ta5ejRA}ZLKIA>V^>3h47(d
zKMG;Jki8>w^9@p~3{p9aj~O8Y)h9;fZe;uqQa=fy;~=%ksN7GvE+Om><3Jdjxn~Px
zW{1%@jL$>Z62jIHz6hZ}7zM-lGK6g*Tngd05VkWELpU13u@JrrVJA<I5WWv#7e^k#
z&mD5U4dLq$z6oKEWKVdrGm2(UeL9y#Ol=!`_J%-Z{2-OMj{}hGkq{1q@IwfP7~~vb
z6Az6KN)gQ-Wr?g#oeIs4hj1c<Ga;N6vme=Ah_}A98vjYUe$?qHF7zPvbO^k-W^=Yx
zom~^ph44!V7eYAC)e(iI9Qm&yu=+&?<kPuVO62giu{6FM!j%yI3gK^tN(k3@s)z8W
z^m09fn<4xj!VSr?ceZm&rf@riZwINPXE^DEg)*Z%VskfydooUX>AuXDT|5wl6Xa-r
z9i;vf!b48bo6Sbp=D#822_u6^oS8RlIXQpWGRP+)^*n<umsTFE^7_O=VN?vGQWyxM
za2Q3xC>ln&Fdh%1(<hE%VU!A^wD96#JQhX?;UyoH)^*dS%OzKX!D^W>+<!UBhEa9C
zBlsZedeXsc`;?=6*t$7CA2e{JxwAqT+a6?%JL#+(MwKw?g;76@C&Jc4G3th~_LsaQ
zRl}$z3i*>^R1c#@7*B~(Td<~JE!*blFrE?4=O?lXQ=KqwPPLxR!PKFIGf%pZ>ra;>
zjLb0FPw-@gtvky(rAo^j#U)v{Aax}Sk8rPG16ywxMkC?;nuuo4hS7u`2;<c-a>9r{
zmfb3h=fh}9XI^tR3nMoSHH_wA__jM+hS4Gn;&YN!3uRJd;`b`$u4fTjhw(xf?ZTM2
zI_tQSd#SCrO&BC?1z!|owrQK(_F=pf#>-*sU+QFfC5)dOO&;+MVRV$lEXCKt*m}&>
zCyc&fbPnV7FuH`%HH=<i>nf)k$DMV$Da3AJ5W5TZ5bQ~t0}hJ4!)UeL{qbuqV!tr@
zhY<)v3u8bS1H)Jx#*#1wg)umcSz){##*nb}UTb(5BZLeU92Ul?#|yM?lYb;h7*oTT
z7RH)ep3z}U5d-ouVT=u9oao~P-w0!Zkj!73(12-T7?VVqEV!<ei(<d>)^8}&!+0}{
z8DY$n2Fq3`(7Qr`!sQEm+{hZw?(zlR3Zuhd>pG5i!k8^Kue8ZON65S|=7%x&(MZnZ
zxl^IQf-n|Jc2OAb3R%4;pZ{VLR`0UXky+8|k?FlKR!Zsnf**vjRLC;H<$`Q&g%H~R
ze9F3A$tnhbD1KX?F%`iuLOe^u*b+uKj7S(Cg|VJN6-F$KyA=wg!-$8Whmnw4hM+0<
zMw|SP#xuQwHLzqDDZAxCt+Q9tSKL;jtP|Wg#rh}GvGN5zl<eri>V_~r4&zh1)<z+l
z1V0f3oott`Ig{rzn{N)|@5lf1##SCOVSE$j{fqD=_jnlF#cY@0jxfFo^PxZBiac5r
z;yBxryTceSgXh5Zi2ZkAd@E$HAayRm_rmuH2F3n|Fb?v3h@eKqx>)HD*YSqqei(<t
zI1<KD9y?)N3gb6!AD(_;oDbudFn;8g3FAx{XT!J^%ltWvQ(>GIeo}DpV3m*Xn>RBj
zHCW|y0Lkw*^AOK*39dA0bkK1@%zhQ5!Nx8M+quYnvC73-m&3Rc#vft)8OBvke6Y%N
zQ^>V2uG`8DP9($4qTfZiC3xE|WzijuYOs2jp}Rog=h+MMl?Q{>dyJFaPAU(=)|CI^
z5`^(j7!SiJA3=o({tY8f1O*}}7(qq^c_SD<&6O{LDm@jFZMnIpJLKjU@#xJa%od6O
z5j-wRVL_TbCZvd9(Fls!dT}Ago8{7`gz%CPloC=}u#8|?LE4lP61v%hyy6hGVg!{U
zs2V}F2<AQGtSqHZ2v!mN_1mmQLsS|+DOnDcoYmRmQxVjR;H@ZTMNun)rz1EN!Qlv=
ziJ*1_??$jFf;th@ji6%$og%0gLH!6`j-c>qr#8~*h@e>nB$<L)5jZ1o38$DHfm^r|
zfhPj5@P>j7Y?}*pG8)-@>ij~i)i{D@ZKa8joCul<=`=*8L9TE$g62Y6M9?~d7lgNr
z;5i{QYZbxsHh)K2ZX?;31ltO}7(qMRrhNom`sT9YLNR_t=GZ~-z$xd^EiO*^)d>1W
zFhHujCfGTG*M)S6plbx(?ACfk(B0-eg!GKyQOmt0+efgkZPPCTU$%?A4~$??1QSIc
zEcn(lu2B&T5k6FKnBZ{15rV8ZQpls3j*eiAWXB4Q6C5u%LGTSh*5bT~lOmWL!4wgv
zG9DtBC45>0(}lb#I75*3Gb4CZk^F5D=SA?2klBKBY|FV^&A1gR^F>)8xX>=;XctGU
zt7+bg;Qa`e2<JmNseBN@(g@Z^upxqmHJU6F3`MX!f)&D7GMI;`UlnM&O0u-^3GoXC
z*oCbJ86mGbX%LQJ@ZCm{2%-_h?9w$6#3RrpYY3(yFoh&+n`8v+h%KZ=S#9fVnc`Z(
zbrF1M>mNn%!4Q>2to3mO8zcBcikRIL!T%!IYg>LQ<V(TNBG@eCbGvklkgbAW(38(7
zY;#)#+auUv+w2zdRRlY2WtWggWBWRSZzQ|NF8x-Vz;>9v6Y+b&eG%*zazOA0LE0P?
z!mf{S(IfaJf(sEGi{N+!XCgQo!5cdqCwNFU$~_gqj}h?UFFy&A{2aka;bYF$VfHjn
znEm{AE0b4<)Bc>)+EiVoc%BRWTV0Z0Be+Nxjd#2m#ia;-<B<}DD~ihzTwz!?&3-zH
zs}Wpd-6*Ei&biLGt)25{1b2koh~TCWioXlF6~S#=`6Ghz^K)3lbT@)RQ6P$Y5!{d9
zK?Hw^S-vR#j^H2R8PdhW2=WN|*KUW6JmPspXKRnL`J*UcD+PI|HqB;H;V6nkQO4Gb
zMp44%#iA%~^T&kDli`&VUP`dE;JP7dSs~>F9~Wff<)f%H*-KK9B#O$mUR_9)D4wvD
zs!>$4`IAxH&9TN-LzJg%y{3>_Q9K&VGf~uzqD~YX73V@^svAW;QR)j)aR|wbBFk3T
zvO5YT3U3q*MD$3HkDPzMX?DY?wGbS`xF{M$ksU?jD4vaCNEAb(Xc9$E6y0SoO`~WQ
z#miB=5=CwlY80)bcp-}BQM8DnWfaee8U4=@asaKQBewi}6oZ>)QzR$0iK1;3?V@NO
z#fxG?gGWU~4w%`OL?NerhbZq@j@P2-EcO&TMe(Zi^{6^~<P=_yqDvHAWja*4$z&h-
zfu(d#k0^RZ(JPAHQ4Eyo6#GQcFN*$A^c97R%k~G@b?G-|IjTXNg1C`cE*T?=WLOlV
zgbWuPAxM2>6bx^Y(V~p8^|7`-UX%%fZ$vRs$Rxq3QA`#x<q=AE(}Yj||CAX~Yh#{h
z?wT3J?EKE}hp2By@lF(9MX{4g6mz0TM3IbQF6R=(`%!!l#e9yuwQ_Nl@@^D2hNugo
zSSW=2i$ltyC>BR~$&a!miuZ(6fo04@gQZa{i$aSc7{&4^);aT<*D_W`v4Z-LtgTlw
zRx-ldx=ZC|`J(VgF~OCW*#JZI1s5%eA&&4`MkI=86k#r9$4uUrVD_~PR*6Mnh$VSE
z3Ox!I^}CiqWHQ;Kw2)#@J>l69#m7;kqgWlqK_j<+70;R|8t!q=Y2;li$~wUh1wV>n
zy`(mkJv81J#V1j0k77p@o5Wy?VErdN{}b}5;Ac^67V^2^z)Du#%LP1JdHNObd?EN{
z6x)PQ8S}k+a4eHH(|5axyQ0_~wQiQX<h<+aD87l}SNb!GJ&gH!3e%w|z7<~TfU;M}
zcY@yw?i1WEctG$6!Glqld2?9(a1=*GIU2>t;@(rjk414@2n|jM`BCsE!Jh?BM)4r&
zdNhX9qMQ*tD|k-uyx=c_7kDfWRcSwIO>VHYm*i3u$Da58#)*r;6+!A(qqrvgy5J4L
zn|A5%QSjy!H2WipKcg5O!<ZQEaF6p)ilJc)_oBET#p5xQkKsWSe??I$W<~hl66Yj{
z;h!iTO7>sDf-&R~n+!qP<c%Sp@cgz?K**6i)<?oZF?3A-_i3)M=tTsJ#-NsR6%$@O
zhR1}^zJ!pHf}i%uC~fOygp`e;oRBehtY1AU#85E?rzn+Ts4S$8V3io2iDAVv88@HL
zctVt_g4G0{6s#^-BZjAh)D)~G$i|-*vj6>z+P0ENIqJqxFNSVc^0atp-NUE86gfD@
z8X1`}WJz{eTWjJ>t{B{+D0T}TAzr~Ur?MKwkR3x;HW)+W7@ifqeGE;6v=z*Wp=k`w
zV#wv(-T!$~m7+F+%>`QswiJ9WhE_tJ7vxA<$MAyi6Y{WZD$TyP9uobci0uS_D(!wr
z$jdRj5<>^}`;Rrpjzai6S@KR|@M;XN3F$2Ox*$ut#89cRHNx&O^bm2NU{Ar`G4!%6
zpWBzekMO=R^b^uwa6k;B=ULwSqp5|1Z2Q4NhQ#<wx)q<p1c%$DBZQ2MVU(?OH42T5
zVO$LU7y>bjk6}U#i(*(D!yC5EJ3=PLFv(UX3z-tbR3X!BeY%i01!oA(6nsl?Rt#^)
z&~BAA;5y&AX2&omhPhHiWr2`+G0YcIbMt?(u`q^rMQM7<isU6RyvJ}A<$Xbl%Y=Lo
z!%|zR(znoZ;f<sJJ>z?2468)(3HG>PeW9eq5R~lR7(znQF|3Xu979C1(HIONF$Ps$
zYe?}JbWzAVR?aYENW_qgAr-^2F0PLTH6fN*m+>fm*2J(jhA+f^T?`)z`CRZL!S!4V
zJ61P{@^K6sW9afmlTReeUN(`~{L>gdv-##2TJHPLOIt+T8beii&^c>;8N)Uaw+rsD
zYkehTXAHY+Ww(&8WB5kM9$WvG(R<Rm2l#iQd>`Y@D6F8`AHzW*2Lyi*oOdYeuf`dN
zgwy7*kRvf1jp0}f$N!%`FXM#p8|SUn{5gh`F$~*{;k$7vhSM?3TaWqcaVCbdF%(bX
zu@uh5aGuMQKq!G<Vz>}PBNN#sevRQ`3@voD)Nv_>-(vVAj!kh~j^RoSljE2Y$JH3F
z#ZWMgLUCM=;YJL9$1o)3xEaImG2G{I)Yf&(>AuB5I^B0-xGm%lK`MX7z{{FQnC|jb
zfJgBTg=yGU<$=`wi>F*Mr{;4I|B2yY4FB?w9IEDxW9-~ql00!_#4Y97p(>GLzBuwr
zDR}`Q9fqoiqi`Hg#!)?vB5~_;ZqYc337I%lEgr{XaXcPJ`8c1=hmvuWj-yN*fuU-t
zIDQ(c7B1%bXsG(tP_=9vzYkUG4O7d-QDB%_VVEVB-kDn=j*4+qjidPL+)8m&j$_y`
z)mg+-C5~pp)CDVYpNOMPG0!9Z`Y^Rx9B&O%nU)VzYjFH=yg-9EYQ|A34rd&$IG&E<
znK<gw&qh}5I8uu9OgHC`4V)x(;xLD)B=zFh_Ldbw_2X9LIO50@LY@@|?@~g-^g_1R
z9fuN!M@r3~oXz9##?c^-hPHi99F1(AEu^vFvvD-B^;d3Ke+g*HN!dzn9IDOt$@Aq~
z#L?1Lo{OWE&7Y5>war&w%hNWF7vp#(jt+6Oi=%xUFURqX;_Ot}^->&jc4cv<J==Km
zl*_5U-N|36h#ljY6i2UR&Q5W>8pmsKbdIB69Q~!)*W>6Zq>ErzyRU9>bhmkrID7>y
zclENB-f{F1-q%*9@3+2i9>5ihV|W|`;}{gj$&uDMFj#Dc2oAOFhuyO_+K4#D+seo|
zM#V8Yjxn|}PRLlUa<-SoOr!4QnIPgDf)j1a0rNAs%3Rs0aZHON5=S(S>2bUn$85SK
zju~;xWbB=Gyc0*qX4xm3W)t5MJ}Zv5g{*3uy>pmK8~%%IZXEMC>p1*z%#ULMV?K`e
z<5<Y}ADR2aaCK1}?{b2})G^&XcZaEq<5<E*2B{5(TR)5vKj0b-SC_@HJdUNpX_<N}
zcZJlNKU`fYWW;cF6}uR&GV#apKpa{e;kfk+dyvkNA8OfSNVq;+rNS(KMCQ$VlkZz!
zG{xeG$DzkzFudbf8^^jh5^N!nlZqo5w{D3^{BWG>MmQ%egnV@zYb25LVZI-VzCMl(
zaeNfV$C)nbL@O~=OvgqMyB2glD*9g>pVFT?3hMYQj?Hl#j^jui)t+knc^qHF@nsxa
z;@C>k*+Y>jl&x;#2;tok$5%qO$8n&7lgiFGcEzzbj_=~w9mm&kd>hBUD~@mCxHmPo
z&LPJh9ufPLen)eesPF;}mYzGQd>_XTaU7&^94qd*_s2o;fFQ}1;VS<!cczqjD2`Lh
za@(bHh)3f%#?v^CD{&l;;{;EtX^!9G_>qJwLQBTa635SROjvE<n4J!i({Y>;PNi89
z=UGm6kz>KnS?45sUXc1PLM{mY8plOjzZA!~ZB82GyXfd#*LgLLYdmM-c)$SDoY&*H
z$rDoe4ME;rflu<iB|YAY<F=4L1pgGgBY0Pk7s+yvOnhw0U((S(aXb|AHxK0IuEiHz
z|B7WE{lDqZI77!9^_+P{$tRd!@Q0F(Sz1U3bj%yCICK=&QA9^=9sdqji|Qz*ql%6v
zbQIU|n2ypq%ILWDwNgUIiLaGX!b|FC-CAMx=x}x9d8Mq5aylyOxH4R&{<w}xIzIAv
z%ZphBLFyHCJgT^8h4RmCg-V5$N>v>XmnyY%>>S|vX{Az4$CEmmI=$7URt>xEQ$lJA
zb~)<ld))K1j#5tVGdeHHQ5G*#>gcGeqn?fxo0R&31ve?=Ob<@vX6ne&t($o|bu<*R
z;g;Ja#4V`k@Cfk=HV~x!?24{NI$pi(%;p?Ns7#G@JS)73V2)r@yR?~*Tpg;8=EB>>
zGRsVIu;Oz%TJddzf#(c7&xz>xM#ml<FX(8)wa_tNM_U~)>KLwLgpPJP+Uw}1qq~lm
zbiAzNH65LGyrQE6hotkOU8SRrP8@k_rLIRgS<idhsYDMeD_vf?bn-FJ>pHsV=t|Fc
zlq#zfmXffDBy)t?gDvRjuVa9YUOIZ~=%b@ABf+P<I6^(R!djr6Un~7&fx2aSk2<`>
zfjS217^-6!!^5Kt)-goKHkUGBggSkMx@?5XerZX>3Z?HdWu%T#I^NVVL&s=FppJ<;
zCg~W<2wb6z(=lGwk$eIpR>!02?0S8M`f!ys?8!Q&=$NWwn$9b!l?(Zlts|^3D-y8g
z!Yezb>-ZANu^!&%S1L1gyshIM9dGHFrQ>)Zg)M(l-%FgWV~&ow(l6tO3RBx<3Pq9y
zIu`2Cbr?F{)v-v2Uq?X4VjW9#EN4XNc#pxR;{zQ_>8Rr#HqJ<X)vYX(uw)~@NK{i<
zsbiJ6-N%`>b??jc(!Qz3>X9SYbOd!ob;NXpc*c&;8`crw{u-gufNMm@j`Aq1!ta`h
zT@-JeyAsOv5vr*pp<|Pd|LI8TNO7a-Sg#|kW3`U8I@XD0r$fpb9r;G8<wvS)p^l<h
zL9$%=kQ?o5i)_&Gu?+hY9UFDf;N%gjBlgZ(o%iMCI6vj#uj4CL(Xm;_=kznzT54_4
zu~o+xI;y*@88MMCZTBgidV06hfh&|9Vrlx7r(_A(#V#GYb$rdRRJ>!CD^%Fs_!SoU
zR>xj0gn_~azSHr&j;lJZ>DZ@ZzmAhSPU$$H;|CqbxU4!3>Nuq1u#O|r8asV<q{`Nc
z)NFi|yJMtEcQHi|DLkM~==f2`PvRNc{H)^_w{oq%mj)*;T4twpoYC>Cj*B|Z>Nuz4
zJZ&TzY0sE^SMgrp8f96=%reE#DVKOo*7yFV<FZ&XT%B1~<TGfma4!dx5hK;>I&SEA
zpyMwcH+B53<BpEmZYzv$>A1~vMhAJj<5ruj{wE!)co|xB>0KT7bllfb)#IH%(u#Q+
zFhc&;@edDemy+MWLmd>a6jbsW_*X|B!x|E2#{kGMaI2n|B%cAU%j!bP-#(>)fr18N
zBh>+JZz01v#v8enGRu`B28tSR7|1kG%s_Di)eJmo;4uRw43sxe!9Ym^r3{ocP|g4y
zQrbWn!wLZQ!T}G?vXF^hdfWgH8FtF3;~`MdKqUi}4a<R4s&J47sv6eBS-r^s4=qXP
zH}0V725K0nZJ>^Urwr6I@QhTfW$>PUN<Wtsy-ypUC1*q>xxylK4b(GG-vG1!>*0M=
z#JSgTDx7SV0jGh61{xV~iHj5i9x5)c+d%1F-cLrVUIXpEbT=?CvzeDyZqhT1aMsN>
z(AYpT1Gxt8K8Gd-att(OQ*P@^;Q3j~HHVjG91klp>{SEJIoZQX3!d|Sg^ptB`>T|F
zBh^Z7Z!3xhzA^ZKW3)E#f`R!478qz_psj)721Xcoks~qix`8eR+8cPuKnDXIIW?Ek
zmFLNF<z)k}$P!!_ss1xk?PTCp1FsqAEMj_@wFG%qTIW1nLI3Y@db=9vW?+DUfd;x8
z=wYC@fj$Ok(9^J9N_vS)y{i=R(xcSA2KpK3Z}6#V3RCg?>d{>mVN`c-tqd|S*uYQ&
z!#JIl$`Av5LGQCl*-=O_cPj;84S-oTHPXN+1JevlH!#}37y}axOfoRmz&HaF47?%z
zRt+d+zgEVJ-{?ttj7o!1DqEW@T}&}B)xcy}0pQQ{^2DJ1ja|x{24)y|+rT?qIEj<D
z49sHOa@#`bFiNE{2g6;=cMG!(%rP)m8l=HI11x11G+?J}c_AHWV6}lY1{N7uY#?MH
zY+#9j_YABwu*$&u20k#b)W9+WoGHgJbd+`4ESF|i5d8}GBinrayrR_i`q+zsfB}u;
z9Hp`fcMAIrauw=(=bpFD6N>#k-iU#y0mFdF9cmzMKxaoDFJE41NuRhfy?iy%MyUw~
zgJHb}r5V^+Ud?T7ffPqxNV!@_**Z$4xYocr16vJzVc<gpA91Y>d}?65fei*W8u)}E
z7f?Rt7WP^P%b`&!S9a2Fg}dO!D0LHO>QmZhc|S9F*(`5Xk6Bq>9$cR@Y$jVTO!Oy*
z&B1fae`#Qwft?0+@u)H2%kr|39R}~pqLANSu6$)6W3;;RqQYq5&f;tLZUbM-USswA
z4)3=H_R_{gUK8IL_};)}16K^}GqB&lNdu=095C>MfujbF8T^d{hh)Bo4eM2&uBbFx
z<@6b%N2FOU=y3xl4E$u^XS#Hi@}nF$j7hqhZ&65iJ~Luj>$HJ0EH&_}fwKl$WqQxE
z(|X=>26$$Y@Fe-gKsK!R64L_8McV9EE*bbu2pyO|)5~L!{^2=x)xb3acMRM$aNXct
z$Z(72A$QYC<)-YE-x>dH-HZ_KnwO#cA#uBKx$-BsgU^Z_dXI~K&%k{SfK?1Ukb`%}
zO64yDM7~%PIVq-xJoydeF|A*zb}QCP36E0-AqSJsM1B+1Ogw3#fQf=89yd|mL?ILW
zsP>qN5+(|pC}N_hiDIS|KXm5m0iL2qJsd!B(>fB_5sx@!v|7?cDHCN(lr`lw>q|FZ
zYf76Ku2^S6IU#(D$e^No>EsF~D$1y;n5bl0uQhD5vS}T#3>$KiCrnf|`Oqun-u}Ft
z3zh07YM7{NqMnJTOw^PXYMZDf75P&2v}vs-uMTGK&#>9iR@~Mx(WQA~j<)1^rM?M=
z3B`oRv|>2Z1V4q6FlEt9@shYqaC<V0-KO=<itiu1ruFjFz(hka=1AIqtqgZ7d^vXP
z&%0|$p~fb36NZUrO*Ao)W1^{vZYH{$Xl5eU#7ib#Hldo<mrkusykMfai58M=X`+>h
z=Y>CKBKce0RX^qo`qlc9<gJK>Ol_pJonTuNFAAYPV6@s^I4xQ671O$q=XDcr^i@h7
z&FWyHqlr!?#t(D8YT`8$olU&g*_r=x-FHsZnK)XVx+ROei;0_0D_sSP^;7O&cJ(mP
zlP)#!mNeeW#26D}P4t#*9}|5|^s~n>(&V=U7$Dh!CWhMjAQOXy53!YR4rC3p`EU~>
zgj3{1M%nskA&ZJC<LI=%98(3yo0uTv4HFYhOya5yD8SOmCNc*UxSc2GQFe;hyf<29
z(KO-H1>Y2$VdB6?SuC1m;%yT?6Mhr#n3!#1nTh2l=9rkv^)>MUOSd}<=W#xD%`wl!
ze8$YVtObG#1>Y51B)C{`i6G716OtaShBBSmE1W+}bu2YO<bCsIZp`YpF>8g1mF%m$
zvuIOg73Z?v!Q?pN2$;|~&ga}=6I%y4gC-i4P-5{c@(@F-Zj%E!O2kBzW4r9;Q{jj)
z6LHge&={Y=%B*Q3Vd9jD(~Ke$DHC6r*l8lo&1+)4i4Ba0OU^YWe)^x|LlbLF+`aB#
zS|?<B!ORVRW_?7nKeL|y$MLa=jV88mFed(Os(iwAF){sN)+WjFU*Z%$HSw8=&FpBc
zi`maj<a^omh*zHG`oiR0xtzrgxVD-2l9riHW~<hB4K0zmodM%>>@czSuPkPFnb=J)
znK)?TYZJo?y7rmaZ{iyhd$>TQGQXuI5C4C&PF>4l_B-LselH~On(NRR$J9HH1Kf1q
zX00udLp)^SFi)^+juR%1P=C_Nblk*I6UTU}Om>#M?Pzq*$=f(LU81n)NA8;A&Yu{-
zYh6Dxymw@s<fulgldHRkXH1+m`NbNhByf&_y~%aO#8ngLP5i>6?3()m&mtkenix37
zMTL0D#BZF=bGZvII_|7;T{c0ae$B*n6A$T06SHQxZcyhEa08n7-NY>ssoyqnZnR4B
zhpqg{y*8pDm3y}GkBR#x9+>#c#NQ%T8Dmw+X`aiJcZ}LZvUw87NT5>!uO^T;fqV%x
zPT<)D@+VLrfl3Md4y9lMg(x;xYVks<>y3~=i3Ca}P&ff*iwKewO`w?Y;<oY_TOOmb
zs8j-_6R40t#RS}$N|^+VOsloBVp-0%e>{QmHh-9@%)6rWndPnJYRsd%aspKncp`zS
zV&D+0Moi%81fG;^b-@~fPYJS%nh9(^_TR{#5wX5t?F8!BHgyxI_ed;gS@QiqF*AWI
z5uFKmg}4OWf{Gx`JP8byIX1ABh6yyXd3FM~ntEy0B!Qd+o=>240!<TWmOz=$9Mu0P
zm3{uOMRF5R?OM$fXd%3%tvr`NE8&lfY5zh3FN)Geu&rQL1MmC-*5KPow!Pp>f-fiV
zijWS1wCR|@cVhfn0-X~Wl0ea%T<WiLkOh?933N%IYXaTGzK30_yR0D1dM3~-f#L<S
z$(cBjK2ni&`zFv&cz;_NkibCUgKTB6G)Uv22@FeMxMasCFrlC_!tQINkWqr86BuLb
zV}*=MV7A2M1Y3VY$V9<O3AF6*;lQRQFfD<F3A~%Y^aS2a;O=ba>;z^cFq08m(Yg2+
z*INn9O5h#IzMa5|!p?0)Gv_(oKSv$PTMpW^sqCDSz}y7pB@ip(nlFvaDC{cO+POfu
zYnkKfeitu>U6imMVd+a?al*RxmT8HQ_Y!#DRz65zsm+%OS<X&{tQ1@&$QN!__b05!
zTm};0gDjaeZpkSY2`3O?L?zKWi6}>vz|RSsOz;Y2=o~`=JGsjeFca2Wi!Fi)!4DHi
z3Zb4#AT9jQ)fuaWtVv+4UAj(4jXR!?5?C*MLjs@Kr5_8~DENusrbk5yd@7{lE$dy%
zX5pU;&KRRoVcII$F9g37+$OkPaEG8)QQ0Mg_Inf9ZS${%e3QT)TlqF&-Aa0Ij_W&7
zz8Bn=!2Sdd2tOwHgWy3yws|Ol!!|#Xz)_n&`=Ry5<9GrmY~@EGKM5{9ljl?drxQRD
zg_AfV;>83mC3u^3oJ+tjb3AX?{YA(H!CwWNcX9rfz~uz~O5kr%t|V|Rf$PGr3eLKh
z=SBiI6Zj*6KNI}D$@O~zw-e|;-*qd2y^UNqUUm`RE|LApQ77-#!dt|goanm4P)zVn
znASh0?kDhop%QoOo#7l@#6?o-to4K4Khl1Ir1hwjhY9>ES?YO`R-9xA<`vABM1CRW
zWB>hjUoeS6qR{e}%I+db6iuQ*5)G3mCVHtPN((72_*fDplHhxWk!_qMMVXg&mPw+l
za7Pm5gj5iGT(G?0m;e6v{<dNgl|*5Wm6NEF#1oROn#41<UM-0ylc+A)8cEa=@|0a#
zQ;6|_>uFp0yH`eS;dN}KZW8r`*B9hdr`cU*5?PXU3VH%gmk_rg4U|W^pf`z}5|#rS
z*`-Z|WD7P<;@Kp8P25aPXepd`-u`HrwIa=u$hB*!Ni?^4izHeKe@?KKtv_g(@j?=9
zl30_(+9cX0@nRB-l31KXyCm8t(JzVqNxUTXFDLPekd!N<LlPZ@_Yv$Q*h}!$BwiEJ
zS&*Z8J&7*Dy9#y_>@L_tkTyM&(E3_a=xr+<&$;^Ayhc4MYz8DTEQ#Ss3`}B>6b(*d
zND@Pn2wk`Qyl##2{<^H<Eu8J*juCd<$w`c~`KTmD3m+rc;f!-^62x(W;{_)OzLCU4
zAuOGg1m9edOp#hs1*Zv4PvXraW(c1nI8*Q~!C8WD3vzhx2$`Kkiy_vrz%*Bsc}dI{
zvcR@nn8drn*W0Ju63IrBcu&atNqit=DHm&cMktA8l3gyiLXhpROk$OApP*kbAgBq_
zCYZzl=_PT=8BT)#Lx?2t#iw~mVoAi4(8V$-Xb74~^myn>2$D>?X#L$Nl|))fS2LV?
zSW33yT$jX$NnA_fdJ-Qcv7Rj_@nsSl#PU<Yj|De!d#-eTB1p1H$p4ZUvp0)bw)UBr
zZBF9zB;Kj4Y~ca2(Yf<Rqpgx%R?NLEiS0@3N@8~sqlW+Y52zhUTppu-CAd?t?J~#L
zNqi%%9ZO<Q65k3xn#5iq-wCqEVr8wU`(Cp91osObNa6<}2L)+!NXX$Nj@U~6v1*N{
zGFtf@$CEfA;*UxEBIGB*pLupo@}3ktC0L<!=4rkP2tS)dsY=e9o3hR&ab6S}^Z8Be
z>p~L0N(&bSsaz8B8)qlvir`hdG*6?98%f+uqCg4-Q`W)qdlGk~^p@al!E;BPe<bmz
z@Tz02*Vem9+~dMsw9e1_qCZIDFCl;POz`IYM|hDU)~Fr||5q?i3K`N7^}H$M6Q18z
zo_sZ<kZ`0>SV*_|8Aa^U?XBFbRWyZSDLmKARr^L>Vu=(=rVv_<@M@Gwp>zrp(s(0{
zGAWczp??YkQYe?g<0&*w;n@_*r%)jUR|@VFDyC2=g*qwJO`&oMRZ^&y!jmaHk%Dne
zsY-Eya(20c4`<|4CP}KNP$PxfDGcf0Ia|;3R0_3Hc)xz*nkjx0>wNBthc-{AaABd7
z=^6HN-$6pLa@18Xh59LMnQLVoDP*SbVUFwmJx5jwRG6GXGHbYZ@3L%^6g(+3;%Ij}
zy(x^mY&G66g$60atMSKi*Kyq%l7Fg_ox;j@trqTe@-~r1UQXea6mn8%nnJS_a#LuL
zg0oa6ZPXN6&9s_oZujfip4F26q%Q3|{cRRodtNw6>l9wFd7Bj4+Wf^7+6iwj_>y4j
z7G75AAT4)F;nfs6rtso!NBO!QB0GI8g<hg`mU+FNLYEY}3g<L?q|i-xcfsUEH^rVQ
z=>42b9qV~`xBuQL^hrT^)6<u|@aF%5Ib&7wfhi11;eHAaQW(rNN+Fs;EQO&d3`=2F
z3U8<IPOI$UDc<!3V^bKB!j%%<ks?wbmBMJ@pKf<9e91K~h4Cp&Oj(zTPoNJsIo}Xo
z|9RKF8;$OrcT#7Xl)_}u$)}_+)#lTLOc#7pa7GF<g}f#BO_@wqc_)S0DFjl`Qkav%
z+!R*OlPSzgVSWmWQ&^J1f)o}qc%FB?D;58m;du6%>tx8ei1R&}zgKf7i{3Aj`5r?t
zg%47g^uWRE+4q<5E=^&XRN>vr_pWd)7yiG2P1rBTzbXa4D4#ZR`cmMmNw(K*@_F9O
zX7`=U(kv(jA%?e*2zSlhMkNY)?^JQ~*X?);8&dd~3&j1B!pV6KGlf(N=@b$vY`>C~
zOyS`=mwGshMXOU-lfp-0ww5!U<oZyMWStORjL#ldO?9kK;gekViG42C+DM+l?i9XG
zVH3}R6dy0^*vZjyFHdvT9+I^~$Y+9^1wR+ulEPLYH2Xrxmx9{_x2LQJwXo=`6lR=o
zEnevuHpzOJ*Dkhv*TF8nNnuY4zi=<7@NEivQ`n!vffPRf-SJ%t->0yTN6J^OwNYp1
zvFaa}Jr{p==gpt_11EmSeJF*)DI84k>C%o3os~Dnsx$s@A4y@_Gwwz8JV)ut6pp8G
zBE@TRT`XeyF@@6{$sg{Y1b-GhDR@edMe5JW8R2II&k3HlOF5EXQ@EJI%@lr5;Zh2}
zrEoQcYboqJp<GU3{aE!1hke<xe5_iso9lbQ4W~WVQ@D{r&AM)izl~M%jZ<%>a65%R
zQ@F$ZJKOsQSNXK3{<>Tuvv<Wfdz^Yt^e4ut4S!TRjZ^<h;cuQfX*5maAFeyi(x{cj
zzbWKNqkI|_(#S|7ZyJTtKpOed$e%{RG;aOnJ~GqMXLDA|C5{4VoEYvQDR(eyRasZz
zG>W8AE{(_2=vv=ZG>wtt)Us(5lPs0uX*_205<*I*QA$W@TQ8GFsH%s?EfzaieQGG@
zK!&sI*_<KM9e4IRE2dF7jVfupJ5H^XMq-@$%XnAyOO7YfsFuc)X;e*P*Esdr7u=KA
zIxCHKR!^hBUQdlQww%mj_9@Axr@1IToyIe1c&VgOJB<lzva-@}rco!2x@kU#$Xky?
z3OVZ216euYlOBg;sbmWIa)!&5wr;R_behMLhMP_8&w9L~q6o>qUb(=*=eirF(I|~)
z)0leJ-G8nlJB`MyHPy*9ew-_{)zK{ED!bXyBn{%L^E}Pc$W5bP8vWBy(`cT?t7*KJ
zwqEO7a25JyyqreMG@cWsm0;U6o)<!!)<RwoY$N#mvl%Z6X(!lTkd`kA$va+s#a23`
zc?AcGZ?|5xJEigaS?k?G=QMg3vfev&5wq6?`N%vfUDN0$+3tcp(&(8+FX6q@=#xg1
za#qE@qWt({K60k{^YaWyV_@34pY|84T!YdWoW`g$_@D}w@;WBs5UDa$aG2n5!4ZNZ
z1t0yJeRLXn8`qdL#)>#jkS&ZCaxPECL?Pd%u{VuLX-rOIiYW8an9oH?V_F*1(|D5u
zNaO7^W~4Eb0VcN|eRK~}-k9_)`n-ECZ$|o#6j7g(#%vL3$s(q?Y3rV)OP3T{kjBC^
zHnA5*X&Q^tNT;znjm2p!NyDE;AdUCZct4F59Q<6@2WcEU=vbP@vNSq0bmq~Vt8Qg&
zyzg9fIBR(t#99j+D@nw7^5HBWTbSee{QsCb4=5>$_Up3?%U&c$$w6|Mo$j4k^1==|
z38DfLB`85eLGqG8f(nQj2!bd`+R4+Cd&xPeAUR2rAV>z0_}zZ6|KEE~pL>3F>#6Fh
z>Z+QZ*_rNADs>r`>K)5+E*XIbnz|wjBYS78%R-TwwjYI={3#17O<pDNa~4*c&Kj;G
zllfbg_56Ems^XriP+eJYXW@xo^=HA8h0_nLwP&k*HTP!0$92)ZLEY~x6-PPf2eP1L
z8Q=ab2_={X{t0^NUPg%9#TYx=9L++EYbpzyvJlS#mrQmRHgLE3+pcp+YpBnTDDx^P
zAI?o1S}~*UFqL0U&R08ia~8I+Up>>eW??(mweYqqlqzbYxs&VSu(F3^Yfs%J%;au1
z<FJ*t2Icph>F>|N0j@qL8awez7JlUlaw3-#zh&WI7Vc%?J_kPwzh~i67XHk_;Vc}<
z;?4Y(b23SeX5pB?;}S_fZc&f(^36$ju_N_F7EX$PO7yho8PT(%e~5A(HZOzoCSMS^
z$l-l%tgOpfxRQmxvv4yDSF><Ua<6lL*k`Pi{6mue;u^VcUD~+84ausSo<aYXS=*f~
z+%`G!f#t5r|Ga4MK=|J*JQjE;`j6-%?lT1&u%0Jbc$$SAP9!)np{=n_pJm}WuZV;(
zS^w`G&-0|zucCf-)YuRboyHdAv>A~}PULo?oD=1pNOl5F6yhKAPULao6({mJ`7M3q
zysDh%&6A`Qi+t88xqxs%)7g_VA*rh3I+U}B6Gg==DO${l;!c!s;@bws88_cmUKKy>
zb>nT|n|YN|PLy_{j1#T)DP^7LyfO7*HI>ZUMYhRl>>d>)UU8zL6P28JyL`fHPSkP2
z;zavTlPWt=MFM8rwp4YZniB*b)dgxeQPXs4IZ<19R)G`-u;zP>5^|SUQk<|#4Yf-v
zeak7TFmqF#u$gRkB2BoiXg$-f??eOPhNkn|xg6<EG;!iRC*F6WsS_D&rxP8Va5&LS
z!rD5~+=&)W%p9Y%7N@0XD<{t0H0BZyUc@#|Y&(-<#SF`o;tA~}VD@?=>vbnOI?>gM
zZccP^;teO>lw4+&zMrGBa0|Jw3!S$(Vor1sv)Ec=Jd1hK-*KY56TQt+Jp_7+-r1G2
zm%t_Y*s6~i^R7T&(SD-+ofsgnV81cL2Rbpxi78G@bz-m+LnLdW6CXG+)QOKI`Jw1A
zQ5IQM(U^XhPbYuu#Be7@I5EAcnkl)2Pn`U`*KkIOjusswI#zU?=y*|vRm-qWaN=Gg
z_2@ocS#^>VlbtA8*0^&cj|NkfX^iANbmBWs11COp;xi{c=T&fGmJ@U2ybVejzc`p}
zws2i@`{(&mYX6jw^@{BaG3WA{p37NiqS5ks;>>sAODA3q!UA!=a$=#t*P@L4#)(?;
zbB~lGITtyx*oh@h98*)Zc4<qU_+G-6iT?Fzj`s4)GL~8{&dCZ5estm|CwBU<%ZHUt
ztl}VhFwKLXomkDog*7~!SnGu1g6cw6We1D%YdPzjSnouZ6HX^wTxBklb;0d~hkK?I
z2c5X$wDEC8UMGA`_?^b{K0;1}od`IMM<Z!Y<Dniwr}1DKK0b*~#EGaATb$VHL`>p!
zQ5K8~@VPnJPHYh76HMrD6yD^-W;3!QAO2$UZh`Gi>@c03PV6$d)l%$nVy_eXOlQBq
z%SRC%;H!Y?|0*!9V%i~r8&3S~#P7m~ojBseQ4Y8yFF0{r;G`&9c*2Q>ql{-ZopR!|
z6K72S53Wa(`Rp48oRj2vC$7p<iY`j>k`sSAaas7P6W5GUHG+BYc_M!aUpF20h(4b*
z#OI9MbmF-aFPymL#BB+<<HUU@9thtRz32Szc`gqn`B;=S{NuzU;eSns=c4~al21jS
ziB|m{Ib29^LC>^lQ*4PY<aD913q@Rfwhoe9$mcQ&<`yO75lD6cro*fMif~@j;getT
zn_NJkpbLcr2Fvq$iki8v3KVmpxIhWhe|ITLnq10-(k8RD<y<K5LLC<@E>v)#q6@WL
zIC|SQ*O^?&h1XoD?84%si7lqvs<2?QwCXO9s|r^WT~^mlzlMu{!`KKlUD(ml&Y1dj
z?6uj>xhiYp!K@UCu}Tf}8I$Tlq_EQ3g*GnOT(G;4=0aT;n!1qTLOmDiyU@sm#x7j`
z(YB_y+Q5YYL+pbtSsS`=rC%C(byZus3r$?OKggahXG+SURKlPEX$}{fxeyv?Z|OpF
z7upX<qu;`XLj&y(TiUb7ruFQfR_2tol?&vzM>*QM_+T$gaA6{YUFhIK9~a(b^Y{|r
z!dou9E!@$CP6G7b5a=xWrs%@lP3U)Vp}Qoz@^rV2SAlLWydw^okv&|vE&mbgDP}Lx
z-lD^YB=mKmp9>>h80Er-3#t9ZA1pe+h4%zl&-(%cT^J-Ve3Y>Z4RPTENe&hLNc2M&
zh6ym>`gr4~#~-^e+=UThenReHY_LB#{`>vcXz_!8rH&C8D>_b;VdDidMVGC%Ombne
z3kzKM%7rOn&T?V43sZ%siL%smff+7*YC1Co9<MMy)1D(dPxLbvJ~v~&aAB^=mwOqF
zobSSy;`Co*bY!6mUvmduZ25sxTKpxV-->=Gx=574i#c60jZ#a+`QG%G2`qQPYc>8%
zT4DM>y6}_mO3_uO|Fa7@Y8yW`T<gL*7tXnH-i`Ha24|WZE!=Rr;Bw(F7p`;vmr^@j
z*yVzUr*OgNg5QNL;s-d@*BS5K;*!){2nvK;2n$49hzk5s-FR({y);KzK3J#fCTDY=
zxUf-@n?yH@R-b76d9$cZ!d6Lc6Q#3VV29}W8##6h>~&$E3wzk3=a#iaQW&=1g##{}
zmE2!kIOVqe?!sY7{wn&L=s`|$0T!8-m3+kH69PwFI3{phlmQImagr5^b6WI_DE(3`
zQ~xmeoD1h&xFE@kF8s+&K=_jAk1dR<t_WWfy~=ZC8aMjm@vJ9qxbU|NMcpXo#!VM)
zx$xM9CtP|G{6LhEcLeUbaL;t^vqy!E(cZYh_E5}!TzDk#ujtFE_|%Ng>o#_YXD&P!
z=LM&SI0<g#7DyD$DVj@^@kwsHt{St5N3t6bKaZLFiW~dZ8hy#UZ_6iUem4r3xdjCZ
zxlvf4i0Nl+PcAN8!i`tm=z7FhG9}$8<;FYPloU5!>7kZ(ql_D6-FSbBWqN6)oEzn(
zNNqPNxKYuKYG!Tk*D)4LB{yC(oyu-hF}bQ6lPVkUZg^A|vxXZr1!|cwYcCiLs3S>>
z8%_Soabih=)eXfBRm?Ou>I$Ta+C=ScOnmU)U*`2#O3eChG;ky37vl%84aFfea-*@y
z>2B02YP`$i(bSC$@g1Vg%$UaabF_4$l^dVC@r4_$-Du;+7&pdBKwCF@xN&Nha(<E0
zj$@l?Ywtz}UM9)yDEhW&CpX>@;JG>ryeaw?tCfA2eiw1Nigx4p3v?G{?z&Nqo^JGV
zqqjKyO}~%8yKeLq=x6$0EKeWc#(TVKrZe1)fo=?PW3V_MiVhL|z>FEnnBB%xx`v7K
zk?DWz#?=ePK#ee+PXtD~G0JpCyD{XDaec?RG2V^IZcK3_(~Swd?q<wHH+F8Z$JW`r
zNyd(me_Z;ZmJO!5F^zM^VO)A1A74yu`@TBejTvry>PA{6!=Gu^Fw2eECeLx>Gm~f5
zNSN!!JU2pagx#3$#+Tez-KcRmX@SJ76#dGLg>HQ9#y4*KV3z$>V5#VLqKn*EZ00WE
zDu^4i=zG&y=EibiK2L`ay=B%4N&YDMlbO3pl0Un#+Kn~BYegA9=A_Z7b$k^toh*TQ
z=hIzoxZUu$QE#-xCnmwmxtF34SjsPEKvZ)hD3E<y=D!<JH-2~Hup2Qq;%@Bcbp6ay
zBV8@9TG3xdy0JlEqv%dIHo39cjV*3$bz{4jubJ<0wn_5XNp%M|hghyPTmM_XyWH3<
zS$jnHitZC-3nxM4=K}}a_(hywMSnAM4+<O--7(5>MBt>EdsN_<8^=xO#7ie%!YP5%
zrhmqbv%-IfzWUf0feUV2bfc*U86I46<4-pdJV^B5vKv>ptGjWFGue%k<?VmDaovq;
z!WTw4@~_Xhy)QXl-v0Nxj2mv=O(NrOH~;^hG2*m(n<H7?{*N1v1n!95b>p7EeK#I(
ztEugHC`lG!S;qe>#h*+4G#^Xy39rt&jHhBg6KCGv_7`$GmdfEV&S+h$=JX(!2bDZ{
z&4VNla(ht3!^hJjSpo`s&~aBXJZQ5%gSF-H;1v(@dXUd!RL-N2Kz<Jjm`*_fmg2zx
z>-r3yx0uvc#$${|abcdlga@yBjP92dr<CcJ7HDTz%St>uSk7Y%OL@@>q7^-0%`_`}
zP{o7l9@Oxls<gA32P1YR^F$1wX8LV4J*XvhHu0dg2X#D1mquDVNb#Vau+?n8>VYCW
zO4`pZq<UZz$1a*?M%MKh*Mb4{#c5#r4LxXNa$^Bj#qJml_84t;c+kv)!5$3ppt*FX
zl?SaoXd#Vk=|R6;$%Fp3v+->_XzRfn9(0y4`ZU{l&|XHSgP5;-;Qrg*Q5@!W^5EGh
z2jNY*c3nN_CT)0&*KU9E+a7e0B$+MeRiM7(L3a;&c+m4@h4<_<dwI~`>_u;ZJ|4U)
z(AV_)3B=1A@dG?~Pm=G84m4v1dBDCf-~$hadN9_5aUOi=!7yGX51&AdkL09m$#4%o
z7Utz+otzl#??`b*OKqcsht5c3E;~3z<^aQZjQ3!QSx=@16C{43*@j61lVw2I63$H4
zFx`V09t1qlJjR0yKlNa-2TMGd>A@@yW{dfm2cLT|NBE8T3d6qeV6F#Wd+?11^E{aE
zF&;Vel?PvXu)u@h#?;|QE!0DwDm(}a#pHHD{?>!<JXj<}UWTzOed^U#iAz2B-h;Is
ztn*-*2g^Me{fX^#rKBI2Ty9z6!H*tP9_=9i<iSc0R<rwM8<(n{F>I`D6(`bY$IqMz
zN$IOc+Fl=PW7ZlE-XHClIoh#ym%82qj|Y!O+Oj-wdhppun~SS2DShNc)h$Un-9NE;
zCB`S}7iE!QRT~FA2zij;MWPpB4<a6%_TY>MQ4eCAx4klsbMQUTJ=p8PJ`b`z*x<o#
z5B7MlQ35uJGBUMD3U#vwTg2Hax=nPu=nhfF?DSxlaOu8A5gr8>B>(WR5n;av2Rt|`
zxxbk4zYF~8!EYWM6yAEh7K0B7^A|4U!yJ4`?if;g*N8fFj`1u4<P%&(l1o0tuDOi!
zp7r1l5C4H~bn~19pZDMbx5}CS{fFqHWL*}$B>JZ)e-OkXS3I~X$!i|`C2-w?+aBBz
zz9IUz=uHo93B2qz%ii_ip*Z(M?~6VVWiG@1@!*jp|MlRB=|48d?WyTJ6L>j{FFeTM
zHTuGXeaz`aE-x;4anXw;FLHY^(2GG{Bzplb8hX*li#%Su;zd<2s(F#ui+o-b_hQ#V
z<1d8#UNrsIc$-|nYrN4Y=tUtf3JWt?)Qcj*b;=okgcLJ<CQEqnsu#S4+Ty}S@seJY
z@}jgCWz3ig0%g4@Cs5w>KbITFRg`2U(bv4F>_rtX^i-p&ADS5NO&(;cYu!c*t9wzy
zi<(~4GHX!0s4ZMa)FPT9Y87Rv9la7%FH*g*iBs3~?Ovn_Us!E?c*3Ke7xl$yV8)~_
zFgn}Vi%wp=;YGR^O*l$kWO&iui<uj24l}Zq7tMs5n@$UXmZJGK8TGdoZX?>(i*^D(
zj&?AsgD~NBfsS4*E@ZrGtLV0N_M)2??|AX18S|DGZwq%3?P~hh8Ygr&xvv*JgnOD!
zFE4rv_Yr;9^yBhzdOt7vi!;FV-xGM>i*pN&PizKzF~p027n&CzcrnzA1zvpR#fM%D
z^J2VN>LV{koBXjC!-Yq9@rl4lFGiWUe3CM&eW_!_94k6bH1TLsrWX^0Cwej6iy2-_
zk|aw__F{_3Q@xmGGCz?2l-EU)bG?{l`m+V@9m_e#bUyRqb1%M-<U)Vq*&{|{c+3-L
zz87Dbk&d!y3xyYZu|(i&FTN4@R`fg3MWVZ{$vl>N@x3J1i!SqGr2y++?!^yYtnlJT
zaefkA>@q%Nc&V$z`B`+eD6`fGtQB3yQI+@X^s~Hhdf^h^E$S8Zh&r|z)%t|}q9bn@
zp8^HFIO4@oFG73?pf6eUH+c~?Ip#&&WZjEw;SHv<(F;DEfkifZvBit6UTl-B172(w
z*keZS@M5R%F4NiV#k*<7+}>+C`@Gn1GCy7U#fx7h`J3or(Su$bGGl&cdzAm)Q}Cmh
zW8(KNn6Rv9!g1jfUYzvel<;Y@)Rtw&T0SGmvtIlmaL&v<&n+v>sPmE+e{#F<!REtd
zFRpk|(T7StT=n7_cQzlU6~kX%T=ycU54n7}!L^xXDOE*%<i+1o+fC71UVi$DJ6_!N
z;+_}xxofpb;%tBUsm=p0I_^w*=*2%?s7F#e{bs#=&^UYLi^e46@vj$;y?ElqQ!k!L
zg)h8#ZnpM_d~j6iWO5Flu~#RE5)uWf_>z)*$n8UZ)8D!?G1+AJkjIBtB$-z<pAUKE
zn<Ou_fDZ-5FXTfBfx@CiM0u8?0>wm&`-~gb(d6-}I3-1|?aWzPfPNW)vObhEo$@|Z
zFnL>xq}P0??8A2fRTZ;}4|UAksy@88&r;2Y>f+Qe{h9)`L~Dz#&7Wv7b5jJYJ}3fg
z44dKErtlPYAJTkS;lqzU)b*jB58Zv};X{2N8u-xBhfY$Yp=etl8u`%JhjbsB_|QVk
zrlQS7GejMtJVi5s6Y}+dR!5UsO0tz`Ytc5MjO?DC+)lW?Xa~{P&0KCiZ}@n>h;;tz
zp_>n#P5(_F-V%P>bh`M^)#O!a#wPZT4@U)h`q0aVxjxMEp|=lxe3&7T@A}Z!hoL@v
zD9L_43>N6`!vK!9S=;*pTm6Xx1qPYEJ&-uW<PQY;ewsMUhmV9O`S7t1!+jVp$q}NX
zML!W`3rG4eO1R_E|7QCbAI6%w<9vAb{eQ2>nPN`xVWOEkxnuHV;VGh1O@EreboQm%
zf1h@K>cdPkcb33x(K$YR=ELX0U!6_(LSUGDMls)qFMU`d4%@kabMj@F4+{mp_Td{d
zchhLcw<aGuW?3Y>SoCrQW2;#z{Jj~oOklYWKbX#xC22qLD!-{_`QYS#fw|ADGX`Xp
z4?j!HYSA^KYem<IGG@I17pzOb??XVqE$R{V`rs2_yuU?~X7VN<f<A<N2#b?#`VoPs
z4>5tb>FWa1pBn?a!H12ee`Z3C%_eX0VXMj8eAq6$L-f-&#>>!dANKfg%7@cF?Db)v
zWc@C>-^br^8~fM+AAaH4A1mkM>aPqwVySjQiI-ImO70<1hW*gY7~aE@Ji^)TGwyzN
zOq6h3;Diq+xooqoyd&ILt9r(Vvs}V{H1*>TAI|ykj}MQ0IPb#+AO7|sd68xIDdm1{
z<)ROleE5@_KWo@wxymv0sN<el`R&##Ttw-q`?o9CeE3WFI`@B8`?eC>qcE$dMg5?n
za?^)fKHT;pXH(_NN6I}P?nv-mQHEW(qul3Adt~H35P0ZAN^O<Ne|>oDL#iJ(Kc4vT
z)Q3g?D3$$q=EHLziuh5~58i9#1sm)K{KicTa`=(p2k*DQBT*oyAGu5?Ng%f$ypawA
z^7!$JAGb$4^7+xtW@~!UxI0H)KhBJH5b~R)3iwe_xRB`-_9Ooo2Wu$ihjGI(-oVFi
z+!mv_1e6ec)sK>9d?`Ol3zspSk1c8C{3!271>S$vYI{wJR}`+q2B#W#*WsOBczY1u
z?;`n<rHUWas-o3ItNT$yfPPK($dB5RtmB7Oz+&d62s~St$VkNx)%3r<n{4;<w|mwG
ze$44^w;r&hvFrg$T|WkoQtSCqUw~Y6zViE9YC}I7`9Wwb`s*Pz-H#g~D<Q)Vhu@gA
zGyG`gM{_^g`O)5w@UO-)`7&y4;YUmM(T}QQ9IZv$inig%`z?=`D$jzJ=7rKa`0=_Q
zL;U!_kB)wvPD}5~%kjK^CsD#1esmUo({$eQ<870>2=u#Y>E_2f!res&_|e0Uo__R_
zWM9$VqO7xzAMcvH{aI>1ll%KoEq@9F-V^72(;w)^AmPELbNhPgP(MEOW2~QdJTS&#
zm>;9rktS&$`Hem8V?VCsPUSINV1(!=q9a8|iQe30{6#v(kBL={cNydT$n;~fAJbg+
zTLJq7fl18uW1D7Q_Fj6D%g(G3EgDYogWsd$F_kgG(?uCWli!g4)Q_2dY<^gO;#2D^
zzwz9<+0xD<)e}DV;|o8E=qRdVt{?OKSR2B+5a#>wr5~RJF*1k+etgB162P4R7W(nE
zAAkFC(~ocb_|^}nA1*(>^J9@8EB)Y~e{B3>ssBemmIy2r{a%#0%LJDD@q@q$)91Hs
ze-hq)z?eC!gnt%YZN{t-SSz|tbiE&00yn-kc2~C_9zQntvC$8&A3i^VeuN~zFB%Z7
z-^bWFH9uNZF#hux7LyPs_!0GU?@f;Raj1mRk~SMu-rPW!m~1n0?~II1992K&KDV6o
zV~hA(d3AV4<=n=%7PtGc!;hnW9P?wRAG=r^*Nz{%IlXf<_|1=l0((UF`ms-dS^NDs
zVDc{lzxu)N^)c&%1`hqK`pd+$Wu=tEesnL_pimj*2$xI)$M)(fdCpyhaNLjOPnD5P
z)DwO%$zxd=<rLQxC#@f6{rJ<5%iRCjRO+I{i`*FoC!gn5P}O#UOL&Z<&ltzJF^(6_
zZQqV@T;ec}aU2-qxZ=mPF^+3~{N)F;u5vRO>!>)^2)piw{={-aG~aML<1@xOZgJW$
zCIE2q_;Huh(vL@6o?{*N{1`vh@z9U^=6F63=+G>c_YWC-Cda>$e8xRi;4xnX1fGh1
zH`c)sUh}^CLXt@V<Ora{@zjI>5(B8R-I`N0mng${(99h$mS@rP7CxmSPXMn3Fd=}6
z0ptxJUjP{aI0DEYK!E`40i*>`Fn~e<ln<bS6f7J-u>gt(P(+eORRQC9e}od^loEZ_
z%q<zf{JX~dDIGu=G0O%putZWh;fGz*)-^O%dc^=L1z-svC4kogs2o6z0BW-30aOj3
zx&&8a(vpz)Y7%w*9ivV@N{^?m6+rEP@tC<ff&ZQ{_kRzYBUl4yTDu{G)c_Q!hozWI
z6(-mM7%va|Bi9wPp=dqP`l1a2|NqH%jl^jjKzaa8gwtP5>RT$QsW2Z1-YkIT0rU)@
zSAfr=HO|#GfOY}26mBKjI)F9-tTdm3_wreO?E`otfX=*#0lY3@9Ys3@z{laS9v(ln
zO?Weaw*q)avfdW$D$3k00#6DX{}}BSFn(nBvQ+l~dPo)roKEim`UEg6fR6%rH-NqY
z3<_Yd1oR8wJ+rp{0s{j0yQ%SR^nG49aY~g;>dr?5uC@%3<WMvI1A&*12>dXB$?~Ma
zj{_Jk{@4IU1n@}!qs{n{0gU2wDwXu|8H*2P7L74;@03UyXY%*}GKD!?T-Ve|tULgJ
z0D%Ce1TZy##Q`h{U|Imv1DMAt7r+dOpB2DtflmXNDZocVo-dI!N0^=ZB7n~V_?#1d
zhp}_6Ft5nm0Cp}gcEv9xa-kW&K;SD;UbU|S_$GjF1AM!RMPj}z#e)6Y<>EXiEDhj$
z$yzVEEPxdO{20J;NiyIESrLSvI3)sDEB>kgeim3G%I7dLV70I|)-gb8UMETV9IGr&
zk^o%dctzc!9y5jy#PpebzGRXXKrn!l0h|gT6hJtDeE~iY9FYK`0c;6iYXGqT;!<Q&
z0J=bS02>0>k!j3o9vj8%QzGf0>_v1oo4dib0Jcl+9>xpo5@pOzfeUx+yG>_gqqM!k
z$E05e0{A6>qh{`}0UQe8_W*tq=b&hdYsT{wc<`~3hXXhwYoGjb?H@DC9uMGz$+^B$
zPX}-&fU5yq3*c-3e@ND)0M3~)7X;4#PaiLGRL|vLA9=1n1GpT(l>lBohqP*`q^o=Q
zaCT!f{uaG1dP9^G`(+Dn25?IpCO7|>a5sQ^oNqxC4B~zO54a*UjM4BgfPVt0rJ=Tl
zM*;jBKnV@6YIq#LlK}E)cttZ#^psoTrwK0t@b*@o1@N3p`v(ho-2o+shTApMcqC{@
z6wYZnxilmR=N3&ieQ3B^wjqn;)sRoa{L7Z28uDw#&8u@btwl84oo6Yap`eCB!nejc
z3JdJZvdpO4pw}R^|Cg3GH!8(66xXmNM@rL>m48c@)KE%8Wers{l-5v2LwOBdu3O4#
z_&9Dml$=^lL&qbQ@PahnQ!DwZC8MdWf`*D3n%}UID`}v<CR%TyrK*N%8fs|#s<4II
zPE(g9c%^Z54L#>thK#V+6yV4-->cNoVA1fFhPO4OXs~K%r=h(DMT4rLo`(7wQZ?fv
z$7n(W>y1Pk16;QG2{yZiG<HA1;JO_48&*OC4GlH$OJA*6!w9vJX8e@6Ij_PaYh%%L
z4NU~-G-Yc|b_g`n<SqOoYYQpZQuO5ybz5u3rplv@KwAyJ`&1@7Xn0-28yY&ZzrECs
z8k%mfbka~bpTgv%D+=#aQ~rhWriOt_E#tmdT{A6HzOi)C&{abp_De%I4et<sw_I9i
z>8_!NhKsAMy*1;Pi9JPoiDuMKUBA$XAuy}2hJG48&@fa(e>R>^%2=VSTB~x?7@*-j
zacI6TFi>=m=wQ(y+JCnl_)x>qfwmE14%0BPi^Ah0UUYV9ygFQ*M<pB5{6u0#YWQoT
zeUxZ!mxVl5!#Gx=;h2W;8ZtHbH25`4U|9_-csVpo(lA-WcN!LHn4)2-R5hIor>&Z_
z&N5BI<`3;f*Q8he#5O~+KGiT&!z|&sqO(QWqd5YfiGHr(3xU$3jMvS1oDUkl6z6ME
znhONJ(y&lqSzaUZ8#DJ?fm$CWFV?U`!<847?={#rTbf<8f1i=QR73X1_BJ2bmPy!h
z4TH9*KZu4#+Q~m@SgB#XhAa)MH2f@KbGId}=Gu9#@HsD+s;Fx;6#Z4Ld{$YjVV!Wt
zW)0{JshRH7;L&iih3eA4<cUFwTOfB>@ru8%hQi!{290w-!><}|?`aM4EE=L3LXr$?
z=sj6!nUM12mL*0<!v+l-*?@zVrxjIQgJY<gElPN>$+}4z+0JWik&(KYJAfp&itg6<
zHtoMxitQS9n7mWNF5$f6jK5%c?9tHun02p)ed6yoBM)e3ecA~4O~XMAhsD3%%3jfF
zJ;c2wTjc|qf7h_Hx~<ts%MlHyYucBr%E&*@a$Lg+4Y#<<X*j9j6t4w0ItFMsqu~M<
zg=Rbj;H-vo8s>hH@P{PnJi2Q+&p9^RQmwnnUwU3*--{c6{9M*BY@6jzW*t_imTUM=
z%rdKB$~Deg4a1LGZ)&)%;Re^ThGNq!%Wqo(9n{^wSpRuVeQk4U>RENv<mA3B)jQld
zHQqV{2;!cG`x^e`_O7AkIL8BCsS);j`BW~AhZ_FjUYAql@kro!5A}(Lry8DVc&@>@
zKyBCAe(|&#)s?rmD)omeFU%3k5kx}J81qEYoT9lzlSG-7JBU^?@_B-IC1~8|Dqj$J
zgWzoj=L}2y?W#(LTzXq_{vh6y$U;FB4x&jAO@k;B<PZF<mLO7sC>lhuAc_Z3B8WOc
z6v}1eoy}eiqEZmNacD_uX*-WnL6kPRj6hk@azT_As32NVl<|KwNqa4b%0W~Sr-tcQ
z4WgRK)!F9s3<lRUomxTEHo46}`@9qzbNM@ZYY=wnyAs5K!m1iXDtl4ZW(z_&YMs|e
zA&=T%NeiNG5cPtnAH*k(?Ty*BR_Vi+r#A?qVGx&^+ZqMYuCJO=IDP6k2b1YRyiwS;
zWSm1A=g8no`2tIiAXZGZID%*vMDrlt>}78iMC%}01kqBG`^P!{9OrmG&e0}_wn4le
zM8_ar9q(utM0>WpZw8s#L71S9cXZ-eg6JN^J3({~qQiK{d*dAml^gPSlh?X(!?#4=
z7VQ#5R{{FnqzHlaP$x^xJ%i|$L+uqrZyBgQK@2rV?A;*x3ik`5e-HzB>4O*?#1Jvx
z4`L99rDys;GyWx0AA6EH&OAN{;w67*#takqNc7_%h6{`kEmqDbGAfACLDUMNb_iqS
z8chmfau8$9xjHV0@g`>qOc0$YTJjV7lpv-Cu`7t(K}-u`dJyp-^dM#g@o5l?gXpDM
zW(F}Uh%bVe8^r7&ejj1uF-O4OCz1SF5T8qO*?0$&^MaTk#MeQ*eI_G1-tlD+UrFwQ
zAQ(WCx-f{ldo2uR0G)3n_}d`96If(MGN9mAbqQD82-{LNpi;x{nH9wHAbybKx**nb
z+6ezB%9x*mSQ*5sAbu8Sjp?rza166CX03FMz#~iiP!P@_T*B@k{AMXn5MGmg?90=}
zED{h$GyPx?j*pCLd4xH(;zvbe{}YoP#D*Z&M6KI{*eI|$h%G^E60ZAIGP9^#xvPlt
zGI^mjXznnbodPsZjCbq_B2NfQo>}$=u`h`IT%kc+3F0cp#H0KY#OWZ;1o11U)<NrU
za?uY4aY*2I(PN^AMUMn=l*>xK$o*5;_$=|b_$Ne9ik=E$l00jVuYJe7*0Y>2tF3>C
z63zv2UigCOMbp0&#GfW#=B0lnmBH77;8~so@id6Pgs%s2gVURlQ!V#`7<1KfQ<%wH
z0=Gr)h~DMQFVv7(_a*Xy=tI$eL|Ob%5dX68++*)rcrG3^*{^3@<{@LBcV=0i2k}C>
zmP4H1dl>Izc_d0QX9&3jl0@m}7DyI_Xy|#4S3<}eLcS34hfpGfS3~$`yrVz}MM5YV
zLctIUF*nmuIE3^}$D5fBa>YzXu@FuqIEsfbCDXAh(J>^`K`0c>C>cVj5UPeyErdI{
zY^6ge7ee_E7G^rigs?W#Q8t84nGV9SOh<(ftP>oQA{iA!{4s^2QV6ewP&tGfnT~g&
z8FZ?I@FLSubb=9FJ%kz|^qJtO8A7WGMh!e8Z?8><O{x=uC4}A#2qA^lhR`~MHX$e>
zs3By8;0Pf##Cv(8VF-;v7+O5l9zydbwz?stNwWA&YsrX8r(Ov4C5zlZfbUZ>k6Rjt
z&@==>x~S{9(nMhCbtAXIHKkby?VF@d$*nXG@d0+qQH#R6>9*jw<xpC(%>wyqr83zz
zgmxjk5klt>&fc|bi>9{^p+g9R3#H6xuO#eHUuW(dOUDp8g|HxpGI@f9${R1d8A8{P
z@!x^B*rUOX-xlp6%G(ap8S}#0jXUZK>pP;|L+ByUQ?!>Tb9v|6cSGnK!t@YkgwQX9
z{viwxVMGW6Lj2s=GKh@{;k^*v=hggI8M5AT;5~I<$oNQ~Z!7p`SkW8mkPtrL(1oyb
zsk-F2<--uRPO<R6b;Cm7oj`be6vD^C*{Ld%pM=0akj8V+LYTJMGBSi6Rn$=-jApBZ
z$BK><t#Htiw}Z-n&5x}ULYT~%76N&q=p;_sCN?H{Gv{S1EmJwcHm6SGm0fM+t&C4B
zuzVWAOb%TLUxhF$gxMj?4PhSVc1HS~5H38l@;`m&&s#nV;qwq;%Pn7szPrUjuC>a_
zM~1P5^F#PjnwnK1jmd><{~%>i2#Z7bI)raR_%?(b<JHT4>*%QEyAW3HwJ_;DYgrP)
z-_z~9JJ8P|EDhoN5SDQQEV1zTQDC{~4<W1wp-xd{=U(f}+@Hi>8Nw=oNB<f{tksp(
zoXO{vHKGeXx2z8#D}<v_9E-vkf{P;`!L|t8A$WM|Fm8t7<#h~ULKqXn@P`oK;tHd3
z7+MIy5RR~T2%!+dynG?-;%*Q^lxvg2%b^ItTP$tK5nG%+EuL1fy-g1xJA@75*Djux
zw|LrgP2I>1{D_T_TiAdQwoCHhw#02AQ0X&_y2A`(a(4)OxU1Y(vX0yLhOmz-C4^sj
zbt)_SL%4R_et-+PY8sQ|O$lkgv8oWpU9kVonVCE7PzaaK*(;p4XHIZ1d04WVZBQ6+
zEQI4Bln$dz7$-tF8A9<eN`!HW>xDa5*w{1A$foyi2#>k$Lii(ub0M4$;hy*xL@$SM
zC4`H@EOJTUPfnq0i9G0B<p#w;7XO;)Um;vK<2zn3zOr~TgxjWbOJL(F<9{x9LbxkQ
z+f(Cn?E7ZSgAg7H|6@9jIHf22_b%y)m<iH_ry)F(<a5y%qB$gs752HFBQcDeVdN4A
zqDi8;MUzDtxnY9Qo;+c^B2M1_@$-jKH%Yz%8b(3WFBC>$;Uc0%O}|(e{rVZfbH}T%
zhEXz%QehN&YOk@|o_|yNh)Eg#w{4ZX+RKJfE{uv{RH9z6zj#9_&&uyB6~g%Co^s%V
z{r+>i5>lC^ZB$oQNvje@)i7Fw(K3u`VN?&JUKsVms1ZiZFzSS1;l%bSwZf<!#$V&p
zSoYT5#N>U6ftG4Y7}hXS!?1<HBuym@HH?g!jn7oFIf|xH?UI!yIwx7BSyy;;W*Un$
z2%{n6!$=#cHVUJ07)`=x8pb9qapYb*kMuC8`F2`2i$m44#LxHG9br(Li8dGQ*-B{@
zM(Z%%4Wn-uZNg|9#v5UD4x?Qd?ZfC8MyD`3u<~y9&aG^(Gpm)2eEcKjrNgWZ!9?nt
zVZ0T_)h_lfVZ0s2XG;~n>0pxZQoG7U=@!O2VRRSnA=*>)YH8#BY%k&7qJ2bfeU;cR
zjQ(NX{2W8VaC2paasP?^{V<Nbu)i0^;%t>LFpNQA?3v)WIKi>unf<TYjt{~Z8pgOV
z#&f8j+CL2AqcE0kR9ii>4-128KdpWo#_%vk$ccFNF=2dS@<@SEVT?AN!~2Z&HI~=3
zwejByE~U&c_V-qXJ+qU)Icc91#^f-vIUr$731ey)KZg027^a0WJ&c86d>zJ&Fh1p^
z`oq2;jG1A~3gb&j&JH8TM8{`u*m=9HIWJlCb5Uk}Auu<Lc>?oAx391=tL#L_oSA8?
z^DADyu4%Ee_HV-YHjHI5L%s`RQ5fIzT$u`wD#66XVJzWLi1Sk0R#0E&5|(p)?Xmt4
z#tJFEbFZDp!b%w{!&t?=n)5J>pTk(qInzAV8OFtkZA}<!!&n!_SKF0!4N}*K@x^vE
zD~y+Lue{2m;VG+&moE%Y7(2JCm4~Wcj#6{wa!ti2PN4-h`n+e37Dj_})-b2jTS_o&
z+(jo8=55~`gh&|CFk)PKiaj2NF3@F_E!P;8PXAfz_R7je&ebpuhjAo~&0%a|<zeg!
zBYzWRYZ%*kR948_I1ht~t9Rw<R!H3uM$s*agx#D%yc}Wt8pdAsw2iW#P8a(=;m`7<
zu;76(dQ4JZPU+vmI2cB)QtF{F4%ATDo!nK@*bBn%VH`?Sy6;era-xQDE{yYG9OvfG
z9)<ZfN;%21{HdG@<8&CkCOR@tE8o;qmgZ5<a3$_dWDPyWDu0AQ^H7eo$+c21$betr
z662VMaY>SYhS6tB;$>luB*&0?O$L^&y3Wl<F3`)Y8`4xVvu=fPo24S?8^N70?sCi{
zXc)mgE-r3;5fqBxK^PA?%_2yMVCxg*pD_Ln<8c_j=T#qZCahJ)pRzv*<0-enq}1nO
zB;-pQHOulW3~J*}Dw8jGxi4CIG^?7L7{Q-?)T9V<N02jORFW%#$LACt`T8r#5m56)
z@QMH;;PRxCmq~F7M9^o3jlucNQZEDO6po-s1g}L<If9}Q6pNr#1f?TJtBObPYQ$Le
zJW2@AEE&PNow*3Zc&D`p%0y5ug7OkyR+Rl>e1!-qM!*2B@!>1gN@hLeDiKtTpmqdx
zBB&NY^$2P***fj+_FU{&jR?Ldkk%+?+L{7sG;6Wr->PFKIxG>SM35SREdpx<Wjm=#
z1Zo7GpW4Yh>E1dji*xAg5u`;>UxvMI1c$GvY$~;$Fb9@QWwnhWXdJ;CtR#Z;2%1FD
zntdOtG>ssGjl5!Q9>MM{iH-=8PT8A9Q1Y>z$%5I5Oft6x`x`;42)0jCrj>25aH4}|
zn+V!Q&@O`Z5p;;)^$7ZBq{j2Abf~u7N=IJ4n59z$&l1vRw^7M&Jh#6Y!3s6C2U}7g
z^{oirj)3>K?-D`36Y4v{T_flw(BPt#S-k0ecPVnWNGk8I-ZO$c*Q~uF#=X{iM=<!Y
z(nqw-lZ<|BKm?yKD}n(LycfX-5e$vseW{%BL)fo&sRJVz6v2k4O6@tyU|zV&YKPmF
zTZzg$H;se0+5a$tVG(>3f#syi+w2dQGkzSw#8kzasXU#pjF3_+J}QFI5quTFLJsDB
z>zD{W=QWLBYy{&Xh?Y{irlpQ&8$MRp=FA8tu#$-JC)}h6rVC6KogzwqY6R0vz9_ft
zni0XL5zLHWmiTi-XPYs_uO)u=KfJV1%G?O%%iwT8=5a-oQhsZpei^}n2=wL(|J%YY
zY?!Nj9l<vdtc+k)1m8yR9VcxB-*epZtBWF79KjN<zA}xw6|~LEPMn!bd3r}}x;@vj
z2$o0iV+21%@B_!Ei<+mHvLb?T?zB23ZTt%=@r=UYPEYJDG=qPRV08q}2wV}YiC}F6
z>m$gD;6~ZTcZb#+P_FU12xk9jZC$SM!J+j!d|1ynv>t!e<&MA;fj@#k1YVACYo+jq
z^%(CHW|FM&8u9mEqD9I!CWqLJmqQUjwmBwIftYAqRFB|VDdXU1Z-`){n43g5i_+i1
zJ*|!L+Pyu39o#6QC?3Vm2zEvIDuzp3DG}_6;CKWlBG?<jz6cI-C$u)aP(t0$ZsxcB
z62XB8>RwO}KesRSDTOul*9d-NcgCkNmuefFen^V^&ZQc`kqDm0)0Y)Y<#9BEV-XOV
z9aE?$BYYqZ{@@tivVNbCcA8gegzXG3Rzh0xMf=$ZGE1j^+uKGx7r})Mmh++)I5J;Z
z>;+P4%(wg*!DViS5j=_DN(5KA-g_vwISvv06)`^Iz9k*M&g;UY@RfMNP4=;nvhu3&
zkNfI{l^b2v$`%`g??iByyX7tGy$Jqc&08!*duH6{h;hfxwBKB6dl&)LInnV*a{rBB
z3UBXLMcp>h@s#7)PEnrP5XCcgS&}az_%LsS#3*t^4d9UwMUM@ZN*gRWqsSFSQWUwP
zNRGnVDwRHKpssYM6Bxt)73PT=|1o?eio62(MDvRl5G^QLNVKqM5z(TeEZcCqQX-01
zqxd|EFQO<JMX4x;MDalsrK2blMVBbLMo~73a#2)|qDB<uqo@!?l_(Cav{n>-O_a$>
z0u_EsuWSNM9#vW7xAbaa{xQ)}Gm2VKT)1g#9!2da>O|2fipJttqOe6_kK)NhM@kfl
z?>Vf(N))O<swi_=JS~d4QmWo0BUvvB<~9_kzGwq>N3xhpU~TD9WKD83jiN~uZ%%T2
zJjpSCl7mi$_>L%=MR{|0!`VK`!Qw5VXc<MTC|XBxdXj@jM}an?ZAIIOwioRX#p?oP
z-!p<c3BMuQS@ca&X1yiwwkW&Pjbl6C(mRSiQM?mH_o(r7upUwLjG|YR4->I6x#)$G
zxX03ZsfGM*6n&%UAH{$u`bAN3U|PY+js^qM9<td3(|EiW1@(PaEB-+CVzPq|8Xgn{
zbudpP$<NlQL!%hU({U0;F)WIYqOhE{4;TG7ih;K?n52%G>=+TnCoi3DhBG>fF;Ps3
zVrmp)qZk)OW)u^m7$3#L$qsVngv5;Njj!agGnsh3F^`E+OyXq~o-FW7E;~Ofn-<0N
zC}wbCOtdl?Et2|a6rV+n|5(k8Vivo(!!kQ+e5y9qu8`+2E6D(=aSP}u=0$l2er$^3
z%M$jj-i-N#C>BKVRg|B5V=bE$#n(|R;jqB=4Nvr~@mSJtqc~}|JxR5FC(a_%UmV5Z
zuZ@7EQGCx;kZM~N#m{WyF5B{`@uburL<uXR_)+*L(UqpZitWj5JkXOxR!hO~VavKG
z)<@xq!W%U<kSx)dJDKc^;(i;|CF&M!)mQOF;g6!`E=xFyfB-otpovafZlMzrW+jm*
zqP)<3l~@#)2HObnD0FdFO?G4p(A>a5$dN+W%oVgq*~SSL#k3B|TcX&?`F6qB`ZgC#
z*ul*|ihWV+k78F8yQA0}#r4G0Uo^`e?qfj<f$G1jzBCVT^7l;{dfobqK>5!szee#J
zo3usYXOhf1$Q?kke&_HCOinTGCwYXs+*KpscoZk1$cV!c$H^#8MR6d8Ut%~N#To8S
zF_enoY!rWRkU2zAoQvXo6n{r?lj}W-i&E!b?7P6_D6R<nDH{I8xHrYsD6UD8AI&w*
zo5F+Ub#Vwc1Zdt8xGQ>F^o}TFSnx<u8{t6|52MH#L#`P9iQ-Wd$Nx}YMDcGFk2yY~
zPokJyFr5dpo(gZA>>xkq^bnxth#3VFL=#1a?#O6lO;3s;cMOGMC>%pdrN+rI<cZ;x
z7?zf44AJ7<l)RFaFNXXvRJ>|qSOIYgik^(y=`^U3K`kN<p=b;&#jIj66p!KUxV?mA
zy(-Mg=`gHx3}s@d9YdWM%EnM~v$b3d<ppMWEfsjW7^=ijl?|Tks1!rx7>Z4C{4?3{
zS`77j*(<!BR-%K$GR09XhUzh_s@brn1RSW<uttna+g9vR;|?_&){?9?QyjBvHngxA
zF-(bJY7EvGlo&e4@Ma8Z45=}^9z(|%Y>Yprw1}Z)4DU^G*keeGp>7P{zM<9=O&6^%
z+8~C80*yo)i!!oDQMHM1(-<<OLYfY7nwc@p1*T1Lw2Gm141`3xl6Rz?k&%>!ZDME}
z1EHNLp?wS;gc-)<vMG*EF)Zqu!GdoH(3#degU(wq^oikJj&=-PB+GB-Emn+RR^Cm{
z`%Vnq1$vn6=@~;WlY7TdZgCoe`^L~Oh5;N3j$7A^{xO86I9Sipl!l|5H{|Kw7yq9w
z83SV&B*h2E@KFpO3l9<fAcmm=ABwWtVKJ~51Rld<7#+iy7)D6$C!!-oN15>xM%u>;
zPY@j^I$ktWl=ZZf-c6L`q!=cfe&!qMv>2vy=wgV*Fe8RfV^|!+5*f^y682pTvt)c`
z$1sPJ$1J-bhR<X8B8Iu9^JNV4gy)+MFEP)~D?<HBc%kUmqTf&jm|L=h<9Tt%q8NUA
zIfgNOFC3B?QnPEuGHKHC7=DOhg_O#Q!5PDkG5i$6N^#bRt`hxObhRk!=e%7jyiRnz
z>GNVSm+f?k<Bq`-gV)Rr#NZS5o6gI5qQwvthl9`JY;!n<8`APv4DlE?$FL;^J%;QU
zHpH+oh9eJCIZ4_z&nVP2gV%SHtRR*p)7%=vwitGr=63EdDGhgUXX}!|Yez2oOxYE~
z?ilvOz{yO1UkrOCo=Gl7I{RbDH`Rb&Idn19h@)m42V*!C!@n^+j`4jl4#)6E4Ci9F
zmy~vdL&^{KV>l{sO!T-Y{SyKwV>rc^0O1;gjDM15g_6#4)%UjlQs%$U*w3>zcKM{`
zLJSur@=^?c$8a--Kh4@M$8g2us{+?V|BB(d>E95z%I_=k7SO^c>*Kb-9nrg@%sm`T
zyf6H~bRKf7gdd42`;9wCJ&EBd_r^G?#PKYK=iGARC=tgCiOCb^4W^6{$Pq_^069@0
zXB@c%l0<WhCW|r#apdcfLEw=$jzVz^eAGCf<mMMGU`7^<<JK@^&<cxF#Po{_6pLf-
zYsSa6ubO_zIQWe|I;G+$9Y>iss!w%PFmubsQBJtL>Ey{ss%UbhI9?O(*3#${kE(He
zG48+b(^g|ulAC_sKIlPetvG5+vR)hoZRvG{t)iAVQUqE~{qOoJaj4?3&eS+;Cffzl
zMC)=)>i&1G`r<SYZ7A9(j>ZD%qD@3uTT_9uO_Q1lyb(v|IGPK$5N#>iN|f=f1=@(V
zjia6Ew~wQP$*&7^jH8pl@FT{r01lV6y~)vzV_qC@#rd*}E^%~?V`v;7#?dW~cj9<2
zj`!o}9ygvg*dvafoHO#+!CvC@5$!F?fPPaQ@0#2<j(%|r7{xx?`inV0bkbBu-U+sW
zaSV=QNZfcv?I7w@2fr#t|ARQFe7G&OaV^`hI6jJFQXG@x{JJlO$1yIB3m+K2iW(8e
zSn10rq9a8|iH;U!%$PX8*lFBBE_aSP#U@!;aJ&@H6rCVCQMBt;%ak~#a&Ac3X>t5m
zR;}c*eip}cv$h#=d}{Jcfmx!n<CtUmlaz$dO|IlLCi#h1Qs>9<WgP#+@hFZ3aeT%7
zCyqmLER5spIF`rpLmc14G5VeKZ{zqbj+`H<k2@)|9xIDDGI1=8qk_}2IF8U%$MW(G
zzL(^(IEuff)Vyt7SS9sW@mH|TacqtAYk2r6j+Jpl<A}wvN+O+cxZ?O(c(v#n(Y2!M
zMAwV5+N?Nw=TZr8L0S8njo^;MW9E9}@WtVeBOp#lR5NpfapUQPED{zcV)`^&+_uK!
z$Yz(zH<<l{qO+0R(+L~m*civAI5x+zC5|go9X#shRj5S<8Onm&IeFsPAIE_>I21eM
z*b~RzICjOcn}aq}WmwK>MyY*f{S~Jf1$nMt;^0{bzsAvYnlXmINerRKG{^689FF5s
z9Dl}fB#xtToR>Bqi{m(Vp4--Qah%{E|8bmU1LPE^;y5EQr#T6w!mp<}*k%7T2Lt|)
zu!r^2c|osFb6k)sdohmnZz(*&Efhvxmf~09uy;>CQ%SiR$2D>Oilgdu$E`T7$8jSL
zcHx!jj=u$N#=$AEvtcSt)^IzHjOmU$QtECT_XO^XJ`iQh!#FsR2>%k|D6AX5M}88=
zQ|{#aiDHuSEY1(Rkf>wATWXW?=`Z5QAsp4zCh||!1RWVC?99!nBWr-lf3xm8ZcoyY
zn^oyJ`)XPtQ37=25q?E9uV_9qH@`pu(SkaD{7PjJ9(;4X{A{}YrnQ)k;yUtgLV-;v
zq2pB@%{HL<29(rMO2-@7=$wtxI?Ct>>xk$mtD~Hb_jL@^QC>#{9S#=JQBg-FoeyV0
zeI2jqsI23M21=@qDmtp_sHLN}jze25&yHHF={R}RT3xh;=nAi;ra)qHYM*nKIy$U6
z2o_O7iolbJ7P2C&idH<M*mUE|Hg?f8Q6}r^#uv8;4RkbQZR3;-9gTF19j5T1HcfRj
zX2a?zJkoVEF*)ZVb@*=U>PZ&9scCXhZLXt*j<<Dm(a};zD;;fhv?D)O_ztMGjy5_N
zfBaN>nIz@CI!b#T9dvZod7B!`>pJokQCZ27&gz2=){Z);oj9HXJQ0&`N+g5d66jD`
z?W$w%Zl$M=UOKwzct=Nf4qc&!MH{EqETHtz@hF#aZ@t1FEca&jb>sVW{dK&nqc5-E
z)r@}9K@Reyed#O`+-iB}s)b!1z&;LF-(&H5YU3-GK^!F=OLcs&V~CCqbd1w6UdK=!
zAL{s+ozjs~#Mb|*GEB!uy7Bwy%v#C-uchuG>j)j6=oqbI-&G60&o)vAyT9(LrTtyY
zC>>M|^%&jwP92Z20+(M`GdZ_)EY$I}j)^)Z>6oMAGaZw4OwsYF&f9}nr;5%HWpbLp
zbRBu?C`=NlGeu{aF|(x^^f}a@>-bW}{0pux9rJ|g&lh-qm$ma~mB|H?{L0MbXmbvH
zqvJari#Vh{>$f^K?y#~WQ}U*844J!FuFeu2pPy5Bv6ksruEVXv!x=6uS*c?cuZ0f&
zh=!$pWUo2f-&adyDb$~3`i<FY$r4ztV~vir!e3rBhHIUUzXI0vGGm!^61G}gqQ5+|
zlKs!Dd;#^!@cMN4b=(<jG&`U})4{pKOU$2L2X#<GI$C#D2~iy}9nW>V&=J?6>o~{-
zs3Tj)1|54i({yw?ZQZDYcU0J=W0Q`}I<~OFE0%hbm2F((Pc2)S`*S*ByN(??cIx<T
zj(tpRh00@aTgPrrIjdTFj+%1Ra&wJkpAJ4kbUzz5$KI`$azMu~I(}s-Uh7#Zt8M>t
za)pqU&s}=#Re#rUSjV3_F6%g=<EW0)I?m`g#$6?3J+31--}3B~!eGJ)NuCrvB`v3U
zRvO9n|DofA$I6zU({Y~Tu*Pyh$0dP_qIB3<9(BL7-k4yyqT_G+a-yp`uJIB`Pp@;f
z3#6>Iu;V-kw{+ar@sITMj*h!r!a5%6xToX3j)WB!>V>Hafd_%lBw{Ic;g34XBMyj;
z$2y+qc&g)>4vtl!qZT&x|6peMRC11NBxIvRHeSs}Vm5MS1KG%vja=DC$~Jn$5zd`$
zj7-yzmGzIBV^7Wo`@)e7G*(~9Mxkuug65SNhULpfe&GV5j4zlCDzg|?Sb~d)7R^R6
z0s6(Wjgcgj%tonf*s@{g{-2F9*{G3?n%O9ujdIy|EgO}yQJ!sHVL3HPsl-!cqhdB5
zjWfo9OwG(_$ZoQCRkBev8`ZM;>>De6>dRhK&*t|qt+(gcYh|N$HmuoD*xBdSIy_yH
z!q);zHn@qUh!WhLR5jaJo)52P@P!~X8`BD<g!8FfcWK$En+-=cnq{M2HtJ`iaW?N3
zf(CMmhS_M8jhCle-(2Nja@;sYd8L|UgO32qy&|z`HaKH5WT+XydD1)^Ewa%*8y)1N
zEwj-k8>`N%Y(Oh<T8p;xT4=VFtacpprs+(^CtCVVcf8IEnx*jQDDeN7x(+BOs`tw-
zEPIh69i$iOWOveN?!pE{nxG;es1yaIN-xrTuSydI=|!4!3u%)~l1T#uqzTeQK{_ak
zwEvxt-<<P5=bd}*yYGA7>o1eZ<josyY$;}Aw7nZ|yOD4s=|%@uz>PU>%ypv^>)^%+
zH%7YA*^Mr4^mL<_8}GXDo*O;fxboD(@V=04Zge%3NmE?ZySwq6d?5OVX6k6S?ISln
zc4LqmgWc%uMjtl@xbcY_eck9MX8k$kN@mbW7<HbP^7+>p10|LCTv@-?Fc{*-FjE=o
zMze_xDGnFqJ5QtMmZRL5;KoEZK6PWXB#m)noRG0*-t5&G<4u0yK>bM^O^MEQV~UVz
zZqR@AJ@uvv((`mTX1GzvVkduI8IoCIJX^5(=8So6%y+}j(SMe;z>S4&>~v$>6xSj*
zo>a~H#*M9ReCEdIZY=9xf3X`&+*m67M9e~EnHyhAlzh3HPfQtR3@hCDQutS<vQo$@
zaZ7{MZme-*t(m&PjdjA;o65W?u8qPsnaXC)2a``7keg1nxv^aoRLFW>?hZG;9cm~4
z){R|m>~>?182sSIULj2FlH;PmJ~#H8-VO-)&W-O)<&yzMD}Hq2pc|1XF1H&|aqAHS
zub|Hq`Rz${BjEnuH}{|$n(&ZdSTN#-E+i@#7mNw=r&1DzLv9>)qnHQ9JvidVPj39_
z#&tK2x-o6B<+vL^3pwV-odp&u3@12_B9fnU;}o|eH_n*KZ*KhJ##uMciSnzdPaTi*
z!Y>G3H1$hvTo!(2gq;p2PBn`7U6emeo2x>u2`(Cs{_Pw$+<3;#%7dHS4cxfR>bdcs
z7~B>7Tad2q3Ar!$mmADZk>P<T{|Npo_)w7b*Dlx|34bj3MDVGZ%DgEayy(HDDXvtH
z;VriZc|3T%lET01rg@OpgLDs$4t5lhR1$d5;eC5P5nm9@FIYgZpa<Jp=g^Er(_3Nj
zTttvX6cy4Tcf%4Ml=Q&ifzyLhy!aRAH9dIAgEGRadr(#govbLY5X*T`UX%(RRP>;d
znfkmFDtk~xl&YrwvIo_Khl2kb>lzZ}Gv2j4eBQ}k+XMdftd3w^L5pC9V5XoVXceTf
z%>%pe$5UL4vR3sx{J-u0Mxnk34TLu|l|~-CV)85xvQ6ID!{c8vnLWo;Ttb#Vu)OL)
za}R2JQOAqdJZQn0?7>eSwDh2r2ctb0<3Vc=+IZ02gB~0y588V8+dZZ?w*B>6PCF0Y
z@}Rv3Z+O7yn}S77XZ~!rzU@KLsjdzlbo9V7)kWS(NM{eac<_#-Qe+atb7SIr9=y-8
zvK!KWS1F~N;IveQ$_E~-e407XgFzmA=s`~pdU^1X2Yo!~>%roa=~s%S^6wrWd(hj1
z_{1D?Vm}Y~Q(fh%IiHZQTed3)R$2ylKrA#w`6^`pIzt)k!4MBdcrem~&Mj<1+3j8J
z!#M6UEPUi<xI~Zd&7M`o_1&k=Q7o~n!e{S4^`LP`X<1GQ?#&$Q!8i{lc`(_7@gCz(
zi+mh?(OQM~uO@gf(PP}{;%zJ96b}#F&iu@S&pnvR{_K%4O>ny43_*%Bh0O9`wvag<
z%oP&(!ZJ_Dd=C}~Stz*31HS)`8Tk$i;+dZI#U3p4V7UiNJYbYzsRvcNTbJEYzVKiL
z*A6F!2VZ*d6^Eu>>M9Q+%avF6Wv*lm_hs%FrTnqq^0fz@&RH2<?ZFxk)_Sl`Qa1^%
z7u+DYQIM9`SEp|_`4$hpG5J;xuAQ(Lo;}#<fyV={2j6<Qky>_%4a(SxshPWl@9|)-
z2m8#tKX|a;<Oe+X&g9>F@O@LG&I~__c+dm4naUD<9{4?oilPbz%v2t`6cny;bcBRG
z(1k=yn`Tcl>EyZpn2@*!2~$Z5Ipo1%Q<=3n{ip}WJb38Ae;yq7VBqOm7r7C6@H6i`
zJk31e!ATEJNmrcV5ERRB6|tW7fG<0~ep6xe7Z1*gPJYgVUxlAHl?!6Yq{|-s=HVMX
zGRxW>S3LNg{x>SOIEUvde|T_%b0ef&mFP9WKLxJ~@(trObG+@i$)34pnReeX?uz9$
zC-4=^9l^UE+!I3OzL38>{ElxJFg)<!ACvzpB<G6dkq3`GDB(p(FP?B;{m+uiixe+j
z4q2YEH)dL%c??dH>c#ywwlpvDdXZar9>F$KUDVUPfJE~P=JVnOAw49O2BU-&5V4>a
zg@n8)SXi)#U{S$hg3MLii}PnJB!B#6Ddh!Uu~fy2(q6peMHw&3dQs7fa$YQ)>LPYa
zag_Js(KQ>R6}(uM;>aDhF<ME)%3f@p>Y^B)>Z-~HdQr`bBKcgkxP|tzSNEcZ7ll(A
z*7V}`mdqwgoaEGt_Ojny;;ie1#fvpwto0(pi%c&DdNIfg#S5z!?|9MK3!4{qFJAW=
z*C!4yoI+e))DuE6+l%_b8wfTu^+rNo5zO);HJ5SBPGgBS5zG;!crs}GtD>nyn+d+^
zMROsq3APYyDM-s!UbHrO8zEnn%W5m6ovFX!#hb$45^OK{wwc;NNJlR^nM&1dDP6pH
z*NZdzlx<Ix_q=%Dix0i%=|xu#ffv0WS-N}CV`ol*p7z8C_OS;udwB8j5bFnC#F{i5
z`JvtOroERJA9;EEC366in8k~}Ui9-~WCtTxA1|`n=gfR$As>-r?S0dB@(XK!FNj@l
z*qG}RFMgfsqVZrahIldDixFN7^<tO=zK7bsPwBQ%c}_-pG0KZcUQG7lQ+{I3QpO9C
zjP_!T$;WyzPWY4G^Dv2Ff)^7-89u_w=oBxedhxjzi$$E~#Y`_|c`;q0GiZE7;ghJu
z*<Q@?V!js(yqN37wRTp9d93FMD-9Tm4N~~f>_SeeGuB0396e>pHO=*zME`AUqqxM2
zrCxl^>2$}k%!}n-tnl(FXruCFrn$cGqQNv*r)jS7<D6f4u~Iy<2>NH~tIQI|EjP+t
z&4n3L=zpCT>%BPc#m`=B@M5DEelJunHhHnxi``!A@nVY?-*~aziyd4nUhq%uvnn|H
ztjkFIE`6I9&!V=EW452mII2W#JH7apt6-XoHVnJGnDAlt>l2-Oy?m(we(>T)&i1Hn
z{rJ@VUL4@$5rg$z(!LkBlgc`L<sCDpxsrJuzejBcy>NTsVd+a#y<Ye@0V+6ND{uVE
z{_`>p{-^tSDFH7+UWB~}dZCG*ik9r54V<USIwD@^Uc|jfctM|0qHd$-7_&rdXCt<q
z5nIxWLz3&L7l*w#;>Axw=)6?S#_+t9!f8fv$HcPZ^{f+|cwYSN#RD%+d2yO^kDC%J
zS>AERi(cg%=e$@w&Gm~HXSs_ubnc(#BGN;j53?_LanZ}8NO0YYOI}>|;&(6p@ZvWw
zu89A6x~+8{NB#<qrn+rIy5lNGyqr<`HA&T_d)L;@zTw49FYb78*Na<{#QwQ$bhRzv
zwXqJ&a*una^xI$Dl<bYzoPTv2yMjp{g>C<M@h|rlA9DMQnm^=T%3V=<$s?y3Jm&a%
zk;{iCUObf|Hc5xDpf!b4Q+&J;kxf^O67%?w=0kp;F+=kDaId^0-3R#4H_h?Kk#tUy
zd_E9g@Zo;Mm@^C;qqf?*t$+`sze{htGUG)b3j6S<it8$h_)ye`oql}lM=>9Y`%u}B
zDt?sU&3_+qd~o?t%7@ZERAQ13FZoc$hjKoY_u-qO%6qw$vOb(Gs(e}2Ml7FKslako
zg-^+nSM(uq!yr{y&$pCnK2-N1-)yBSv*%S_7P019<1c14d~o=T-Mgj_wS1^8oY71l
z>X^K)5Q`5PLN*>Wew$W=TTL6A4|bDZ`Ni0=oj%m_p}r3dOg&3TL%~KqykhDNuI9=X
z-q=){_|X5V@zY^bADa0P^g;9CRUexBFy4m=KD;KD?{X}BXyHRkA6og0oAB*S53PM@
zBm8y2wt~M6Flx^5h7WK0@RkqlMSn+-`rAS}_|Q>ECsUu^$7oS!AG(-ItY6CeK6GV0
zeHh?FH&gHFLwDgl1V1qK4~0~^m8+Mje8kxzytk?J;an2l&s3^vDW8~pgph$g3^J9$
zJ`6GWP$9#77;Y*V)l)_aA7v_^avqv|jF7QDj5C!>LsKUDFv*8CKCJa&vJdIAQfK<`
z)mxat&b()tDwfks`{_Q+FuB$=WtI=Kea1iQ=lJj$r-~dvJ=ceMVl&^gT;Rh(;fqXV
zRLzvneON5fB|dz~5`9=|rY`egx$rMcWrYt9&Ko~}uQZi^I;5;J`PZBVCNEt+Wt|V}
zCHkWe8+_O(e76sqglsh}Hw)Rqm1Qc{lg3op=EHVV*&$@758n#eW$I_%Fy_V{ANKmN
zPsIH`d@tm{a~r`}0pl6|AO4@h=s_RcqIjO`JOz$BmC5}=R38GS(z|6!$cHe8#t--r
z@j>_DiVwg05cMJE!)dXM3;raSF!LsTI3)bAsT>iqb~KI(IcDm|efU}U3Bi+sr_5CM
zKe^8M@QXyx3SRW#oRD8loAW|02o{@T4AvzdE}N;pafqdR{}AP-54U`{D*T#h^QRBj
zh2IdYBgd=W7XGi`9Uty;9}`ahe+#)U_?O`Ea>@g)aV_N^)8_u|Tn~NtPoj@}cqZhr
z;1j{8g8Z3-4jFR!k>WS@##BFY3!y<CA!&k4%Ii0NPa(<Y#|wTG=LRlG`TZzp+7u9y
zvso!*Dlhs`Sa=b^qJqWDRQ|)Rq{&P9k#C7H!Akq_k{@MEy}XdJev}i!{$xul2(Ktu
zNpRO}BX3ndUiRZXKi>DFnjh8usOLw0KWg~-yN}X0$Ex^I(~nwy)b^u!;~a}0MW(w*
z>iALDk8{%u{$QFb!;k$fvy1TE;eJ@AySlf|w$g3XZu7$~q{VcX!w;t)BweSwhD>)c
zwcsHuKQSBl(eN#$p&yO>c*Tz_KRWo)(GMP*mhH!ze!S&JV?T;s%536Cjvp>bdX@DN
z(p0dSAH0>pEDW!S(nhd_U`xSPezX=sn@{RliLd+7)>PUFd4r9WQ{CE2bo6!0+brmq
zCG(W+dNP|?I{A_Rm}TVc%y(GHE16#}wse-FyNLa}rZ-lG-P_gAqY|*#k8XZE+mPAa
zj~*mTGe7WSq92p|_|T7@Y|-&dJ_FCt%a4!z_}Gu$e)REUm><LaeA7oxU%`QX^b^uw
zaDX6FKk;MGb%kV*sSNgGh{=ZvS$rXLgsF@XGSZJxLOwP1(L(<2Zl$ZSevFgocr$f^
z-?&G?r1BRsC;KtQkEzlYMyH9*9=BzYkm-KR5HeG6mLIeIm?M0?;9Nnvn&-!j8x|6V
z1%50PebICmqo4VC7u~|JW4W@#kEMQm<Hw_rWtkt#{n+5gMnAsrV}&1U{8;P9mwtT3
z>!qEJRer4WWAF|~U_&Y~HQmnRslS#a`wquyW@(z<a))D`p9k_gXipoG^%CVV*PGbP
ze0GXk{OG#VvDuFu(_PP%l#J|aBOF`(*yabxc0rOIoVT~~knHkfH>azL_A2)Hv6qFa
zD6V23SBD=7KazeN;Og@u?8nGl%J+W!;D_H2)sG+jSoL3~mlLvw@re6DA#OiBrovx{
ze8N9XGYl94erTcuO&cbKO#a(8g+)aC(EW%?aWOyQLijHLCgnX~;2}Q_a}-$fE0!aE
z{N%@ZKQ8!j)Q@9+{KECS!*Se?pZz%P#~D9PNdKG^WVdM2Ij2m0nDi&RksW(hM&X<v
zzp@TH988*gJck{7(T_`h{Ncw{KQ6Ng(_L4@lH@muo}KQZ+3zBj^BV(nP57UF+?(#2
zvBPm)qSQIWH~qNf$8A6E_>osdx{A9r<IMCUmx}v-{N=|3KmPG!{t0Dxf$VpSXaCJb
zn&lvQn&tSHJKJO1^oEXy9O(Sn|M@}jk>F!NMxT(Fyt1lLNl}qoMIIHYDhf4nFkH=_
z&9EeYcAAP;@@J1K+>jzv<Wr4uUsS==7gXd|Q9wAwGT9E+hk8L#3JG@1pIw+=0aP69
zn@xkFD%Lh~Y`EnhmQYbr1)pAMqN0?Floif0D$1%Tt@8a2mX`!c>etIIr=q-y3>BFw
zDyXQaqK1l^Dk`a1I@MlTMHLkTHrcrmRaNn_ib;Rw<elLfWOr0kQJr;mI>>2Ie51W#
zb?4D)jcTc=t)h;KAsg)t>Nviy)~K!uiwY73X0JHI)nJB8QDIflKt)3pZ_RMoR5(@C
z<65ZZw5xCksX4{YD67$bhO52`I;YS1GhB_>Zz_In;mB6;-^-1%m~o?h+YA>2tHIEi
zO_*XI^vIs0!lk0Aihn98tyQ#9(M-jwDw?Z!O+`!5-3xM<+Cn&qKEu^Y#pM~UNkf&H
zlP#}{-cGQsAVr$JA^c6j=qe@uVdZTV9aMayVylXdDmtm?tD>LEe~w$;QSmPOv$=Is
zBc-#7E-FYEVyBh&R6LvEdS69XmH%fqcy|>&ROBja{j`{~Yx!&{FU@p)AW0vp=qZF^
zFBKmN|5&iMsrO;qpE+pIp99A>?pLO%_(a7(6{A&bw>k%@7_4H1ijf>66+=}FSMi`w
z#_IgmW%(51Fcr@UIrUL0J~eHgn?1K5Bi_aejuRX&$RZ{PnaJ59WU{GG5i(V<t<N@H
z#S9fQRm@VcLB&QDvsKJdv2CVny^6Ui=BZf6$<xkJXSsd8iiIi`saU{iGt)(}%S>0l
z5{}Q<$t4`iReUaFvEUNHrGiXdCQeAcP_aVAm!|%;im!yPG?i6ssko)_Y7y56u2u2g
z7zag`yJ)5>IMa1<rfZXm%__FARx@3<XS&j7xkxI{a$Q?&Uthwpjm=bXOvP~(J5=oC
z5>W928}*gtTNS%h>{e0Yl!eh_)@&lf9u<4VV4onB{X!0?_)bWvBbgL`<dRpRsR*fX
ztMI5$RRp+HCs@3KJ}&CJjv<=GFVSIsg-LZEI?|43Hk{=Oa?#ClJ?m<mQW92iM8!`k
zBC2sxqAnO!5mONten^l>2^C4<+g>v=G8~rZbMYukJZR-_n$&k~we+lIJ$WGWXU@9Q
zwVrq^CsdqNaZ1H$mAA?*S5;h7aYn^2+=xV>cv;9f6~78OFL*)lqTnTNEO%|RY;?^+
z{7uCb(SH}D@`sSwPaCu=m%-@Uvs}a*DsHN<X|QX!rQ$aI2XH=sJKX$LObK9W0Qb20
zt9U(twgLR5;&0BD05Sr2z}3wyF@Q<|{L6*RkBk5iz<(+paWk)O%NszyV)n-@SH)99
z$?7uOxF7ON#hQH1g6$2SD}a=Mas7X=l#&`iZsB<ZDW(MsOOj4-9)70e3*dzS$^=k0
zfcyarnB}5gEPw*0eL*3G1YZ;^96%8>wP*m-%Nyt4vKqw$AeIm;DOf6i(n4MmWNO`D
zo{y{BNXiAUIo(-au!7*DzD_EY1E>-}%>ZfzP?dEns8kD}I!hVud^vzw=}wZPos}AN
zxXhY*O`)sV{hYM}*jZSq6F}Vn-b{B=Y*{;tc^l?){*jiE8GsT%;{cijU=6?)K*InU
z1z-=r5y0qK)&^3LlYJgm>IE=!mTOo4Y-X$<z$deuXD?gWu?I^xdL@90`JC*cEFr8$
zb^uS(jc#Yna{_$v8CnL=DuAW|Gz;L>0Gf;cb+cUOCtKO=uLZ#FZ4m%{vLRFZ8r9oV
z+sd}I4uHIkbQDvI)U+{6y8zw@;G+OOX1fA-D}eU{=o&zKP8FB+od7xq@OA(l0_e!9
z-nVoTefW4QQ~8=C;v4s^T>^MFfcMz;(F&uze^RP9Oy&71JN$}!i_$HC4+8iwfIvZe
z_W*hXFsQiGH_OFSnD`fao~G3^V4Tauzr*wj7!MMY^bVj;0HXr<G=RRGkO2%1U`PP{
zIe%D<00st()0XaTQFtB~k5uC6Og!J|v*OM{0Z_CCtwRGC##yx2I)Ve8;(Ry5R)2zZ
zcmO>8smuiHNJ-)!|3}|ZMh7q^fbjuL2w-dgBQtCi7mjg~jFV`nLiWS}CUH&Gu}zj%
z@VGGM<vC7e8`{XHaq<M<3BVh`3=VDp>jGHMxfH<c09FL>WdL&mm>a<70W1z+UI2Vj
zdSL*I0+=7b0;v`2-!^DvbISEoJ`12|T^k!hkv+2{V4PmHEP&+!EEUeW(cp`KadrVY
zyF#hrJT=SpRRC=+IKB>GbpXyvSt|us1>mcm#b}|t&NW<j7aUDSDcepv)&@XibVC3e
z1K1njlWf?;l@h=X&h`Md1n><fTVCh;7adz^9Kd#o&a9qwrA!ueA_Jq}2C$3UOCoho
z0J}LSm7G2o92YA)Q${KGXSqH|bDn<Lxj%pd0sI)it@DnwXrAwc{1CwR+)PF({FlwY
z)w7sur!V!9o_R0;H^<16`s}=I)J2Cc0Dk~6_M0?K4ImUiSlSW@ASi?l(Ktzdvywyt
z(76~#DGvj-XaKjb+R2+-v{l+}AxW^q1ANjO#{zi$YAVlvI~2fSj!RYLh~Q6xRkYOI
zYMv2Sl;Z*XEXpqdoCtu*DZ!H>zWSF!h2gY_XE@wj6egVw;GF4)sdRNAfQxKb5S}0|
z1#p?0a1fP)_$`1d0Td3RND#kskp_@Ai1Z+?25^njvZOOLh(BdNObH@dzv1-&Zb<ZI
z0Qb4QvnS2n^0tsWf_FJ%h0JJY{Lkob)8>(o2ZH|y{u{tUGxb02sB4T(p5ZY!AJLzh
zsm}t)6_h(a5#vm`al0~W)y^X34)TPw%shf=Qb|U66dQu5myuO4h<rit&^Cq_gya`2
zAXurSvrrHy)bPb1!rN0%baH%A(pfZ!VnLJ&qI3|&gE-l$A*$JU$XkgZzEu=DFB!!1
zqF)N4Oc3Rzpq*hyS!P+IEZMD;3nDe*pfY%kQb8(K(acK^Rf4F>EJ4%{;^iQ!1<_Np
zWd>0_h#EoE4x&yFHG?QP+l4e|(WHg0Y6bD*GslpKgDt8nHP4VjEzfbbt8ky(<;FUd
zAgn>yq|U6iLx`QOeA%zhb~#O*(FQ>@4C138J`SQ$5U&JrZ=L1cAhLqU4x)<`;nGqY
z2hk*moFLdO2Rj+v?vf#RU9f2o&4PGUc=I4y3VBVig&^&_y@gi7TboLoAlU6pY8ynm
zAl?wYgPHnf5N`=@Zz^vGaj1@q_6!|^=p_0(W@=}4rc`YA_EZjW-`TGBf_UFd?HWY4
zAi4+9!&G_+`5=f7O{HfLbn@K)+=yf5Y!@B&4x&#GeS_#Hqw}>G^bca1kO4s+mX3iz
z43g;RAO;H=E;vMRsNgU`I?o8Cju1XlaFnTkDx}H_4aW!>%h@7iyx^oDCJ3R2i9xV>
zB$I=fBI5c=#{KZAoU8MUtCZ<M%n*HM5c7jr5X3Br&K8^_I9HIy^MZIjpbLXo6vPTs
z|15~5!ao;WZ0bvb*fiT1g=L~FH}x-quxQ4A*}fFzE5Vg!>MEJHOkEwsnjqGSzLRSq
zh;>1%4`PET-w19L+$6YJkQujd%X(t8daEeg1h<>1J2+isF70}*nELJ@_6Xk_#J(W*
z3qN3{vM1?~GvRw7KM4LPcu<h3EzhNRgYX5BOGAnVe-LUAM}s&fOCu13&aEbhU=Ui+
zxVi`hapj^T90U*c<awU_M^Z!-9@xmkh+;t;=A5aP6%Qgon;?EFpB0?#T3^t~aEQ_V
z^+||F$b%T&B!}k<5swG)Gk4=4t_5*|omtIxnVU8jveffb5T}Kl5j-dOi{ROyapn>m
z@~cG83tkYsD9EHsLbl$>)vsdK6;AbvS%2_TKnVHy*)DS8pFvy?;${%H*y?M_l2D!-
zL9{NHHK(AnZA<6vAowiD-5|Uzop*$<YUw1W<-H*8OA&ts@wbo%f{%juN65c|4+UAD
z|AL@T5{Ab?JTdjBLY@VUvmKa}sv)<AG8)Qi$fF@m!;2aUYsjl1T{EgtPy;mN)9~LG
zYkm!^58b{XgcZ(c>7-sjGs+?<q=Dio5sPRjs-d`s5|WpCF%8WsrM0P)cCv+&p`>Os
zwv-0i->ccEw1$^7>@Syf`Q<FSrNeR>%4=wxVS8Ca1q~H7RMucgS30j$_*|%NS1M_U
zRkL;|>Z~GqRl&!zU9_pDp}J<w%o=pN-=b)!sX-4rYKcg_wuU;w-HohunNfI#nVPAg
z))C{=)2d-sE9Jl=2c0-HI5oTwLjDlyX{fK^YYnS4G|<pc!w?NaH8j%jiiXY_x@gGa
zRKI9_n|<}nk<Er^XrduU<4-pD{F1|^p{a)RryZ#s(wmv(w$|{f$(sv#O+yPIEls_Z
zkdnpiZA|5LA#F9Z6Y_?szsY{fG3G#fDUpTlACTQaLq`prG`zz$rZ_A1vd)vsKVHmV
zN^$b4^<51;G<=}pJq_<`=&GR`8#}?;oo<7vyiT6)NoC-rEWZ?dsPO|A{WT2G&`ZNd
z8hUH!qv2!CII@-3^Td<YY`m=PD+-rzKhBmcCC6gr8oxB&xaR*v!ywJLY#XS7SLvnZ
zxLC0!sxp{8rt&pC)?pfkYnY~Cx`q)NMrs(VVVs6h8a~zdravp6t{Kg8|5JE=-5AX{
z3yw#z@!+))zgfm}j3!xbHCHBUn4n>zhNB+i+s!0a^(TeLSJs>3n!+#O%@u~JLOQRq
z&d@MZ!$J*<H~}=w)-YcKozIct=CX8~^51CVw6}R&9oI5>-rYfub%ACa0Y{zBseY#M
z6$94A8kVs0HGJ4NlhICdTuV8`3oXkvd?93+AP<vVp@FAOuGH{tJ1fbT68%ar-&N}>
z@kS51#wu$xtksaza7e>C4eK@R<HFIfLBmF7*RV^&CJmc8;qA(H4O>{}Q07(*+cf-G
zPx*!|y5-Q*m96Ot^@=MM-VHu_)UtyE-P*ZRL;LzlhqBh)nsFB59u0eWgW|D+N3-tV
zrSPmsy_>Z|ar*&I1`Vo)fOO;c8r&K@!hc{XLJkT(OLg7|S-ryj8rbtb;q(8<%&ME!
zM!snVHE0^58m2yTY>7ES8V@5yghlU7-IL4KA?9elBX#V<Or4$fFtg=5j+lnHhJ?&&
zX5rV3{pGVcy$@?RqTzyuiyD67Kx;U|?WKcp7UKM~)?*ruYxr5i;HuVX=NzXroX~KR
zyHk}cD$X|*B8^W=meuDRzp(47WS!M;PLy8-&$Eb^Z8S?OXq#Wvc}c@%4S#C5uHiQg
zSGak$a$eQIGxUDf@P|al49HE9f#ezobU^Os$_))SHSq5ec|*9R;Wj5y`K-HUmVt9z
zcSPaAefK!+TPXK6{H5V<b9Fz`@PI{EG<LavH2f?2Lo@Y1*`k^BSi=(yPfa~FglEEY
zh5mP)mLi15nCBLf$JEn8u(mRGkMs}_GFrr{GUN*xbzU^bRUm|dG!EhW5Z{Q07emMj
zAv=V^G-loqY#|g4p;(B|nxa|=#X~3&0(brjA(RZERLJ<SC>KKM5MBzQObBH|aF;bc
z3VZW`M)@4+{zJ~df=-?e#85tDoI%86g(`+nDP(*S@nfQL2*fHO<HMApY6!F^8DBoD
zdI+^cs1rhs5Nd`{D+Kl=F9T-X&q)pDA+H-UdNm`2%n&TnKz`m$DVN2(JTj3N6-o%?
zBs`v-KJ6hm*xvsv&JgN{&_H;-5MQHaJN%+^Vw$sZ#q5S5Gzu99p>yZ|c8=?n5Gax~
z4xvd1OG8)|LQV*-5T=DNJ%pwqG-I7Z7!<;*Av9+PUUUoy!8_CXS_p51@MZ`tLTDL6
zD;bw|f~^HPG;Kn7U3gnl8L`RuLHv(=DQ}6=Rj_>sZ->x9cxS<mf}I545oE4rmveOy
z{;uGArv82i(K*KTYPS%&htR{+dx!8r2p_UzMfpgumznxXBG1SFk28B8iS`xjC)l4J
z(u_IA+ZvyQjI&vI-=o<f``{2h4PkT$Lqf<S7o|f(7$#YU3o^?HAtMDx31;q1J(J5$
zS7So>=k4^dB97xA3YieXBq0+8>460iCx<Xal&Pl9n$HMfW{8h%V_^uhLYN)G+z{r4
zFo(601L}FZ;I}!hXLDQ}-}#)4&m0_aYgH$25iAOUpIM)U@HxlVV|;!s=EUA&+~8Ug
z;u%Ux>Lmwn^^~9MS{}j|A#4fZn-ErTdWWz!gms*>C7fS{u##>=@R!M|Tp_zxigCXE
z*CDK?a?zTnV)hy#{Oo3QeFz&u*c>wU&mJY5tj5L=HgS4iQF7+GjHy`MsMzAA%GMCJ
zg|Ih-eIaZQVF%}G2)iUBZ+E;m*R@k}u{pbi(BZWb&OO3M&vnts{t$MSaB7vZSRa}l
zkR<1ujvqq!k!vlCnqeGdd$|vUQ6vlxCvynDgm5+lAL|^#&mo)$K@A}gLM()M2tn=!
zGo8H2!-M)cBAN_DNH82iM2IdJ6{O9PeW{5My3EVrZKC7sy&IOK;Gqx>3ppZ4{ihI)
zn*3PExUoj@^JNxhJju=QyzNv7r@1^wDO7lqszNjm@l42gYXI+YoeSaD5DJ9Rq=fx^
z2p6OR7X>-fID2^kb18(&v={M42scBx62k8i{o}c1Ph(YH4dI$Z{}iNhos+7nah-W9
zgxeuJ4&e#+6G{Cmgug?$EBu~mf1guPPWX9XDi1l;h5u_RZOWwlC;XAAtX-G#RCw+%
z@`R0T|5*sRgro>kNe!b|A!Cg*q=}d>jJ!h9O&f&qawX&Y=?kLdH}#^`QVNDqC~TZ-
z{bCqDM~$Pld7?G3DBXrpE{yVF6c3|B7%zoUCXA9{lnNUMGM5(e{8;Aa`23V+>Wr2Z
z8(w%+2%};cRat>BDuq#*PWmf6mYGK%R|y*jAh(udkeBlO<S;H4a#jx;M<qMXJ5oA2
zcuq2HYK2idjJLz+!2g|wjl-XnFsxzJ4TJwgrH2f`%>U<&9&BOQ8FZz67>+QUVZ6!a
zykV`!ymPGe!^TP4gOUn)gD@I~(TLR!qj{JwxHtMaD~uc=*@BG)n+P)X`MV)pVKg<B
zW?{T)avloZLip=~Ed^T%wicv^HeurgX_B_0v=e;8OuZjZeJgAnlzp*M7LU&65!uat
zadZr$QyAUC=pM#9Veqo*U)}Lu7@foDBGJ)%Q{N3^*DnrUXx;h6F=?pv{V=+Q5so_a
zaaO*Yphp-VgwZpMUSWI~#uvq{Jer=DZG80rUpnwn7$1wDK4H+qkiDtBO>gwsSCaY(
zvgo&>j!(iE7)J06v@;kK#^5l99Kp~d7!t<NFv=!TE{S1b3=hK<L(>>WgfTLVg*q1L
z7!}5+VSE$8)(A$2F(%C4W$=*B!x+b1C=7QP<HMK`#>Ox<g)uRVNnv~z#^+&74r59f
z3+Rfyal<|}jA>y^r^5l(Vy&%wpUaFeW^ytkV?fh}e8zyCJS&XZ(zkQW9-b>?UKsOD
z<>7-|-D@gi+{z+me`cI%`FRP~;xLwku`Z1DVJr<J^^$c>7=eM-b1Ri)VJw%tUzi?N
zgz;q<UrBUj7+(unWu`8!leXIA<EH0o|3b#vFcx=rl5F4te4M!~B_rrJYRlKHZVvNI
zb(}3|J-}WHV`~_@!`KtXwlKDbjra2G3S&n!a|g}FSa%Bla;&}b7R$Hnu_75HSFMgE
zb6tFs>E1BB$E_EOWbEVmT54g~9|qq~>Mxk_`jOn<ag987d>_USVJsSC{gKo1cxH`-
zmNg449%f`6!Z;U(FARSe(J*3M$b9^SlPZjeG$+70z@>fBrU`}wD;`v+uq}ERYsVN1
zs^r^_-E&=W&gw8ugmE&Ae<oRW^jDH$K4zvI3ga*v7;qfnz_G+iR-PyS6G!cP$I&p3
zabc#}7>)~hVXB=5%yo)$=0zJ{Sb3T~(BIgNgH`NjSf48PUj)zmWdAjc^I`nPeIpEI
z6fT5uDU8eP3aR|e+s3w8CT^U##iKTob6vlO@drozPshD5uCh<+H@q3fEg{zg{}j9~
zcq5D(J2Gk0b%FIZeHO{!pxg=LF4x@x>$t*=%KxB{+!u#`vBz55{tjb9T?fMhA^!+&
zsbT*wj7OaR5sZuAaTrgy=|xZ{f~R3T<0c$Ig$Qy*kP_idb>xoVfJ{+N#TCfN6G2)8
zB_il^&yqKSZ&R#$W;=>RjBZbl07CLb@Pd&1f`uX|Af%umEvGI_dC}yBg?v*SMI)dq
zhGG#+9&RljF}{))bvsImK`Ft~f-eagof$z{;pI%F_2`s}5#zsX`~z3j2r5PRZf+Yx
zWg%4}`1#KqMqiE?|NLU87D094H6o}P;d!=(9yz8wPbH}vfhB?uBKR<Zj0iF#=oUfu
z2$Tq{5j2Y6l?c}EvhZEW_wHocBK#FR(;k6C2)Q$Ydcx}qHZb*uLPl)Q%!***OiQ~6
z-iRPOg2oXvk+!rnTa*)lD}tsGG&7agB6!v0%_I24WqjH)v=H&4n%YW8Yr!^xuM5(q
zt&r5ajyEHCshjn!2->r^A6v-ZHf_2@(81&#g>({pN3gTtqT|ZDLf#X6Uy%O0vOnh=
zmobfxr?p&V=@9|(t(I1<@tzU%ieOX(pK`LbvVIi7@l}>#5#zMsk0a>K85Kca@iS1c
zpJ0E}^8mKg<hMUcA7t{u5ezZ;P$84YrP1^72-?-Lj}ROwIP|=2bObk7S;lY#Rm<!F
z4(o$V65{v>CPeUsWS<zpqzFEX;B)p&gy$+_W(2b&X=()1BbX7vv<SB4Zg~5ajTmif
zJo)VF<m5Y`?>);ko6en%c@gw)X`K_{F9-%<;5Ilvf(0DAeHO0Mg%K=@;LYVq!728N
z*DORjSscNV2$n{SKOGNN)A_zsip#j-s#})}k~DANS`opQ5quTFO3u9q)<v+2opaHe
znW=mo!M?=`SLJHX)l7w94cB-jBZ;ooN3bzsynpr^k7a{oX_?=;NtDfkTLfvqm(p&F
zV0#1&bu`kkBZ8d~=n+J@<RjP>!NCaJ5$u+3*%!fnF5U?CM$qw^F%{=^v;I8aa)7B~
z@IwUOM{sI`HKU5{rRFx03ohr6tXP_rfuA5AmK%Y_hDYFwz#l;%!e?5ne1$R3f~G^2
z!!gv(X>)h3D;R-igL3E-dsv)D1i!7LR6lGvSKXL<u?XVaf^_89k%%A}!EanaGjbh@
z;BW+IBRI!Zx!#dl+;Jp=pCZ_@&U!S0Gi=T-`!R_g7yMc9gdlBB3ON<QX(85<R*HuM
zj$b19^R$Je;5^r_5uBHm#gjnR%(PtK7IDo||Ag&g1eYQpVYtlBd|x5C!pSd{|09B`
z|5zSHa8;t$=upUY!8;M$5OP!Smf&qcHkR$W8^Jwxmni=T{w4UgY4ae0VITbOOwNBJ
zcxdYXMbPD$@zMEMlqdWMh~Sy<G~L+J8FC3p(UB@7x2fk5Qe%mdSH~^+5jkB4M9gQ}
z?5UViKu19xRvk7Sg><~AqnwWNItuG3qNBK2rfspb?`$oqV_nCb>U%B4biSP3;_q!Q
zp@WN*sU>xk(lN8YgQ2vLmjufQmKEewIjLHY4@;|{gLx~8=Sn&%3#p=`hK`!Ts|voX
zqneQFf^6xNU|KDcTXfVGUPrL5sqYzTEXfQVnW8ABUTVAXv%6h~Q%5}=4juL9TE3lT
z(NAaA*YU7|jc?g&ax&%B0!jlmynsUTijFKD@9XHQBU?vf9j$b<*3m>q#wKG+Z>}Rp
zhf7Dte6FTCn(25|$Gt(0+VfmR^VztY)f(oY<!d@x=-AgSots8WmUY$f&sj^+YmPQL
zUf1!qjt)B7>bRe@bmvh^I@;;R2P^%LFYI_zH(ryyWrpP~9qo0HFchg^>!_oX&adQ_
z_oRWmmZ%=fd`HK`Nsi7OomgfU9q$UMvfT3L$?S>_W8HPr(Ot)A9b<I#(D8wePjn2_
z@u7~MI{N77E8cqPc!rFRb$mo)i!$>Y%l(@c{-?gTjtP9(aS>}j9sPCuzD((K(K0}X
zy`+tsUXSz)k||}BK{}7Q!$=*k&2uHbwhYlRf&~?G@Y8lE`~Ps}Fdf5%kQb4+=5eu)
z(($R3&d%qR-sP>CV|9$vF-6Bz9f4O;#<O)gCb16EC+wD;e>r;1bFp0vlO=D}Y}+(0
zgrAieoN_v*>xdV&j+kR<);Dt&=c<l5EZSqanPS^lUO83W>JD2b&vVVyL7XQzU&jI=
zRA~8`j?Z;`7RBdLEY`7vTUHbWqFAb9nT}s{oYk>h#}^z69X=f^bbQI0==fg8S2|X5
z$>><GW0j7tb*$A<Yly-(xv$o7{hadFT+12`cUbv)o{PAsw2i47bZpeIQ^%FU)=iut
z#f;r`yO7O-TLixm+^S=n5Wb1>3#+n2$H957-sdt04sa|QrF^Sn7r$YRQg#cH>=Ck;
zvr))?Q$HZ2{3Oc{I)4ST{764K_!-fBlj3G`Ix4(A_i*|p4Z`avUTOPvs5%bmILy(}
z@!pIST}M<#A*e&+M^aI1NH8oI5qxK$l{&|c7ppNb<|L1E3a!je2qtw5dcs#GWFOIy
zXS@BSq1MiS8Xw<3iSbb#$8;Rm@v}s!pAa%cK8R21I3>~3f@e&dzQOc!I)2shkB)zJ
zoY!$d#~(Vb>bS@cpcXlobX;azc4qTRqpEBazp?*y>>uW6dfCCf?sslk0}OIa$DcZG
zaz_>C*L4gnZok1zAh%NCnQ}V6GO>a6wvIbG9*DunrPjOL*>WrQxFVKXH(pY>=iJxv
zmxzB0ZkVpnfNd#O$^KBsf1JQk<c{L!d9Ft~p6Gb0<1uIQR!hD)j@_SF@5`KjrXyDr
zv$7q02%mXVqPSn)wy1|QPZViUAc}lZ;{&4G<y?8A#-d|LkD~ZyE64YRsIeaBwKevH
zyah9OIZ-f*LQ#AW#fMS67)9YI8b{G2iXu@IjiP20wW27->{0MrOtmO@Nl=0{oaCst
z)KYPWy<`-nq9`pTz7$27D9T3hcUi-KIT0%fmKUU0A&QD7_svSFEWC<fRa1XCiZ2!8
zu1NJLW`5_WA$a^>3pr0WsvU(Ag*A#gQRA>9hPpy5f*Da{n);<zZJckmDBL5`>}*j5
z8z-SdN^wT{K0f{z{(qmO*-<nQ-cYcS;45ZoRur4N81-S`7p|NrTv4=)qE!@4qi7bz
zr{5|qqF9z&`Leq8)hL=r@sC$|Eee1BjIDDl<kJ^AOMIHvwpMm>qP=w#-NbVn)-wt!
zZKHTYly*^^9Al@#g5HecEfL#C(b=rY+fj5ddB-R^nfx6gGc-pRA@7>{dqUn9>>A|)
zH(Igq2c>%yJ)*{kNbZrAR+Sw+qv#dIh$u!z@lg~XbCN_cFlxLkyLS|Qqxd&hMxQ8x
z7jo?@-iXg&Hw&ip<Amv(*<Wx#6nkHEFj|0r0gGa26vLtz9L28{l_7MyJu~#ZgUF&$
zH*Gkx6wG)f!^-a|qu6y(%#C7R6r-aU6UF2x4h%^d8#Uf1$fG#NM{#tMWn2_lwH1;H
zGKd_<iBU|7av|G4TxcBpIE8byPs-G&u~Mc<W2Xzw5S%GEOK`RzYceN_?B9(6oiBa9
zAc}>OR6|Wq38a_io-9$44>wvCN3kS|U!pk6{htHP>O~QXVtEu_M6n@?jZv%+KP#hH
zB^ker;wvG`=Na?%*xS~xqgc1dvL=evqL-TQ+TP!KDQH>CPWalgPEywk@}P`OoN`g@
z7RxPBtY4SDHHvLfe8bh9ZDm+L$id5u?OfpBSig<(E)ePux9^M^muL0oyGjpr?2@EE
z`q^o)hXcgnUajnl!pCXJp`7I0&#o5#-#y3SmhYqZfrB2!K~wQ??U;PapSipyk2S=d
ziN^1?Dk~gO7y?3qEc8ImH+LQ3D4uN0OmKQf5s5;NBFa8=IJm3F*inj&JkFI;&#~>C
zh2nt~mP1jTU{Vx^qc{=;-!b=-6n8X=DeEl!G`AGUI2Pq;56W@wKSIcx%rOS>R1~M9
zU?+F{$@2J#a>lGDPmDardB{yEhH^2SkKzJ1$r$p+a50KYQT!Rj^(e-5RND7(U5?_n
zD7F^0U!hrjV+Z>^iqy{)Dt|<ARg$g=wz}USp(!__xJiQ;a>sBd+h)x&cJf=SIj8GE
z<xUiLqqt|*<S}>YDE{K!D9XQr4+Q@)ZMs)Vd1&(gqIe|y{0^gm3{RqXD#|m{CRfbZ
zzEWanKi{|($|KSAs;Tw58<p=m(cYnvk{-j0F%*vRyb<J!;e{AV-N-CNvR272yg&?`
z;S2@Yiqs4eCY5RGEF#{D#ZX*G(HMAf`}Y7x)v72FL+O}ti@=?<l%$gwNEmkZvA-mG
z89{y}q)qu4D#TDHhPvXXVhmMcs2W41n6W>wo|R+ZUyu2xl9ywsMw^aG^_cNjj-rQi
zkKL2$u4!Do*N9<(#afdFyY01@@t&o&;I~~BOAHw?IAU<dkQoEN>|0~7#h^%Wx9=Hy
zDT7_2gXX(7pUq_JI92#fyj~3TMQ;#;=eJyaWs`3hLn9HH>lGncg4u$NV`w5IN02tJ
z=GdCW@G3_kj<@4z9>Z%f96oJ%awfAy3@u~0+|xQKhE_4Oj$v#Je=V}KiQ)AaddAQz
zhPE-Zi=k5t@5Jy%3~$EJfk{=YnQau}mrYXMqURWH?Na6xb-o?Lgj*Jpj%;ijB`svw
zbdI4*4BcaV!zu2Rw7(m}`!RHl;XR2`S#Z?RjpgoClHHYucPx1(St&Anz@g_*7R{iO
zqE9Tu=rjwD1o<e2J~8x-@w5=`Y_{Hlr{8gq_lu!_41;4B62pKPK8axv%PN*LP;k+F
z7dZo8o4b9!i_xJmzBC!5V)#@HhV%Y^3?pM;D$OQ8$~pb3gQWa0mp<P$nyd1(eM}6O
z=DVopFXUj9-8D`+Z9Lm9WW^H8L{7_N3d!Ucro=EchG|@eapZ|(dJHpS*d4>37-q&W
zD~3fee8yR~!Z|yJxiQR(VNML+S65brEw833^JD1dwlFM=VM7gN0f(uq;;Lqx2t@Jo
z7#7E{C5CU<CuNN{S}uuUX$;F^Sk9u?S!UHxz7XfDV)#0S6~ez1{7R7Jt`u@-CRPhs
zFSy1`T^r*|<c;bv6qtn#!Z!+T65MR2mj2GVH3q(wavM7^hCDZ|tkMoi<rzd57h86k
zmfyy(%jA5vYHtktVmK4SFEQ+o;Xn*=cJ*QlOZ-kIfJcnKkKu<HeiVLC&>b`0H%c=W
zMD&X2i@_g*Dx6|iNI)<cgJ$ZXm~o&V4I-lGf>ARy7Q^jN4bOaMXhOtf42QUIVmM;j
z{4C_B7>)`#X6nZ|siamXOyy(@r%ZmD6QGclp3lZ`j^gi@r`#*J`NwcIhHGMWLGYsB
zyK{_cToQg+@V6MQ2>D%*secHW-`Z%-pE2Au_3JU*5Pnnemf&qO^-c^OUoo=Wi{U<}
zuBks1^0(lF82&N!e`DAxMKH^MB0h@Yv6=cr$Ys{{cgwRFa>b3Nr3jLw3Mo<`BQ1`+
zanz2ZP8{iRAdXUTsM8hN<cp(3-1x%s0<oG=vHWoqh@&9$u5cELqnMBv1q%xn5oBu7
zIDhVUkQ5i?=2oMJOU8}axMrU5g__aQaeO;Lc`1%Eag>dtTpZ=&sA+nrAf&2b#W*UN
zdgbRt@Iij-%cfo}j_M|_!F65O#v*E&$}GiJHx5f2);Mf&?EKA=A&pYvC|s&hW*o5z
z3h(e36~1m|CGBxEjT>{Gi`pShoN?5PqkbF>B$_SQP_U68^S&Y^D-PZ?V6?HRHxZJ<
z5{2-TOQx>6V`&!0tENr!I9?OpB94}Ew2Gs39B+uy#<XcG<n=h1mmV0}#gXGS_?xE9
zTkOw-(U1;tbd2Lx9Jk}>6vsPptd3(%9G&Cn634PQmdEjK9Ph=kFpfoW4AL#{$1yC9
z;c;}0qgx!^<LD8`07=?ky5as~mJft~7)Q@Idd0za^HJ;<N3{hx9|?XONAEb!JhahU
zpE&x8{qra-`<q!lG08w02p=5BkT_^VpF>3%`OM%W;usmn4DmB6j!)y5Bz&|WOG#be
z8Y6tH;5fnYaZKQ3i(}Mlj-_W6nhic-A(<?xQv|09P7|Ci$X7kma%LQ};+P%B-Sw85
zqtdC&5k6ONUL5n|e7Ch_fkc_wexl+3vp7EI2g-t+r$;jxT^z?!PO6kf<V(c)*5Vn@
z36(G6SSjKP$?|0!U$LsYjIzSt8n{YQzZSea(oojMu`Z6Yah!`|eH<I&*b~RzI5x(y
zDUNM%Y!~CraeO0$S+;OWEO3#W%4)PV4x)c;7Na{j|GD(yc)G`kGVF?Dx0#DWKxN1;
zPU4}I+WSP`AIE_>zKi4gIO1_6MErp(VyR`~mdqdHI4Fuc4qqI8;T}P+AZ=7`2yr;;
zr-kAO#-VX3^;ejkr4U_x>hlMba2%01I8s>yt&>`3>v2RSdra{9dBb@1y3C}Mdn}Hv
zFW3)>{b5m##PL(y_#x(K99b(Zqb?ct$K&`pjuUa5jN^11baG0JS!nU478+AI6UQ%c
zaQRbVpz>=R=edV0aH;RRE^r@+<4@-0lKG_mr8xew=lmYWWs+K1<Nme%7RMEKuRVv+
zT8^AQ;<zf&`U_lFesEl4d(#?|+=$~QtGB?_Z-J}gYdN&%(Zs|%oJeuF6YwN(FOK^h
z!34G@@K+pv$MHb|A13f1j(_6(ryepB_&1J++@%vJoxp$G(0;V!N+2bHM{zuk8{e`o
z`4!D$dBRTiSf0l5ObGel>6ZJ7Ej58+2^3EtcLI45NJ}7Zf-f7j6-*#q2>IBQ3<%F>
zDla6EKY;=gUH!<$K(j&;eNnKmX<0-_(FDFfYZUiQWm}`o+59D|M8fzzt7HNdR$EA3
zN^qM(?F8y1P&R>b3FB7wH@_QM$|q1O0e;o3Ag(G3R!X390#$@p6Res5|Ex;;mnHh^
zeM|KOY6!2H00W<qU@FmD#7=MgHqGz*brWd5CfkxQzWc9V;36ssSQB_Jf%g-zC16jW
zZ368Qa3tVl-JU9q5~!Epqgj~^5@?t}eRkd7j;o(oM~}1A=&Stbva)EBR}#odAX_TX
zEP+=OXe_*mV2+?mkhN;c;cjUqX`aAq3A8cw7D7sUEiHw#GWFIpYh~EKZW@qttlvoB
zEw+@Cq;KY%37pN9L2~1;^=&choItY$mJWg)1v?48Bj{b=qLVHOyla*+{v)Mp0^Jhm
zo<I)~cVAKZx*Cq&oSl9#bJ#K~fBs0FVd<GbuLRa5us(s068M+{k-(e;dMD5)fiVe;
zW%J+9d2Onb*f)WG3G`23KmwnLK0JYeLIw#k7tI(3Con|#P*WL}z@|G5m^8vvMhY1v
z_-O*8g`}Uf(`I&>eOv;Q6R7@?gVFH`Opw%xf>b6YF!OK2+Z0iz3QjXqrwf@OI8$&|
z0_U1EqJ4woj=2fUlj3^$Y*glp!GZ)9Ca_5OvILe3`AqQh1QrWfBFHRDh43u#FHB{X
zkQIVoCh(Q1uS}q4y3rzruSHy)z#1WIO`DE|8g5A7_gdMT1UGW%7q}QDZWd*WAeC8L
zm2C-Z=lYsz*_*(Q1a@-ZZly23n7Mg}<=X_7_Q~9nz%H)1y9$pg+RdFLWT7#mqn26r
zC9pq%0||VWz_cs5eq^uSuza5|9v7MHw~+t91=Ti%<X{3z`erg?_tG|R0zU3ebd`WV
z0X2d130z1ZkU%hjBMJPJfR;cgfn)-Q5(p;{VRT`7f*H#@ww5(UP){Igwl^juE;#hP
z>|BfOFZnHp6JV&8`oH<}V1ess0>={gg}sr$@dSQO;DlrunCE}}$s<8{-sVXWPYIqD
zJR`_*&n1wWiV9^Mzb5!NnURa%*%`ga{^6dSz~2d6PT;o$ZYOX@a$OPpoo%U`y}xeu
zAKap=*{_OtO^{ChOyIik8>Vto$Sv+RGNWj7m-{~#9XJ274px%=K#^o(n&W{O|3lBx
zOYErHi_(cSc*uR#Yvb{%j}v&p9{b7iViHdic$PrEBwk1&R}$}?cH~YXPZBA@8BI;1
z=t7rep(`zkyh&_c=u#KDS}b&>CxIlo3(pyr?W>kEcA@K7%k2C~6ik9q@&ZZF_{X8y
zg_2mA*GXey;iOS?5y7H@#RQ8BGO0uoC54v~EG_twnOa83=CzsSlc<oyghQBk2p7{c
zDkiZtiET+#N}_TSRg$Qh#F!+;Ch>9-)spCy#79Zg8*i_kL}n6-@ES?f<dcNwthJIn
zhb^<Vh;;;MSyzZ9i3}mU-9gcsge{2%Ni<Btp2Ybv)>k%WI+FP0Gt2fd7H1NSGSo|=
z=U7Yqr155OMjKI2qC*lLlW?C`vIJWujhi;v!W$>iB#9j1t|XcXp=Hw~cE6*LFuW>a
zbHUe=Xd&coWh;|f32&W58zHX?wij%hL^~mG2-5gXHdZ)GXY_4Te=*D2Nq7%w#XG`J
zSd`8}x+L)~XGIe4oAzCkxP8i~ST|9+oBE6Sj6V4wi4Vn3Pr>IM^>GrtlNg@Fh$Q+X
z(U<*}#K0uqik{goi2*|T3sT|fd6!xkNrOZg%+5^WxiVCgVS+S!ZagWyA<4)jJ~cgz
z67t;PXb$3M=`<LZ#P}qpB{4l|T#QXf;y`8BM0#H6Vw8MR5`3^^auQRLn3}}ZUu%sj
zmqDdxxr`Y}%uHf=5?>@SD~Z`jEJ$Ku5_6K6%g$MwF+YiU5~__hq73gk>_l5BEK1_D
zB$gzxG>Ol}c(GVAb)huYX|>brdB$Z)cv=`4S0wRe5*w1(n8a6HM@g(n{vT840VPGz
zetlTNUUCo+2?7!XVRn1MlH7%9vM7RNNrL1cNCpX_AW@K<b4JNYa#TQId-C*T34(x<
zM6$ql`{C{X`Oc|x&#!JhRb5qGT{}CW8*8NcicGA`#46#j%j`@$s~Yzr{&8dKTK4LI
zq3Z-_GV%HE8+i$5@>5rA;bk%!L;p&qUvhmC^}iofCc@TCY~$6fA(w{jnb^VIK*PLz
z%1$oDOawEbXJU6I_GIF8=KntD+M9_}!uv8&XtwdD@&4CEq6b6|X5x^*VXhN_qnS7%
z!1!YV$3?SUO=UWn32M3PS^D;>!GK@5JdW9a&BU2ZoRzS1+zJG$-?5z+@QO0{LMAQ>
zXPS;C;1YF<dbk3c8XpAv%ox8wAQS0DjW@bOnFwd%?@Zjz#MRs>kxX2ZfT$TC6NqOb
zA@IBDUlO=1dWCgO|Bp=Yjv{RNy6ODM)n)R{Ox!a0uS^u#X}m#whdazR%fn1OlA^nr
zxF>MmjQmI70e2FCXN`<6t1vy5Y!(eq%*dy&14N&T{+Edt0xv~hiL!3JvRVCd-_axu
z*)(L=@Mxe?ynrKFLk<mHI#_$Gx98MA<v0Dx@3%b2qvY0*M}t*^O+#J{`7{*M@TP`A
z1(f_63Tt>PS4sg5A3n7d6eSeWpv+c>y=8ktN{fgxtf+<!2kZp?(zdvUXD3oWnXSI1
zp@fE#8cJ!X!sJ#;Yj|5jWnpG*FYIN6%W5bm@Q#Lx0_8<3h%%BVy^_iAvW0UFnoJ$8
z+uqYqRf=x^VmrApwVDR1MMH`}s;DCR?p_Ov>>3;z`fBK>Ax*>8{*L!Gq-z*3Tdl64
zh6X;tu%?FTv(;K+o+zf)HX%bp9SzMie5|3a2B(Hb8X9X@KU-Bb)Ys5J!&gI{^)%cb
zoVGnBqoHJ3`rB;PHPm@vw%SC)2b@d|A8Dvw$=+h9v#EwF_3TUP+gW;Pw(3;)F1N~}
z<{DaPXs_W@wtUO>iH4RMT4`7})LC+FGAp*$&`txJZNtc+PC{FD&tkOsVyF{y)D9Xt
z@{DWfsiBjG&O9&m?A^H-1iFfT#*==<PM_7gNo(ZKrKo<`Nghz&-pXPG^wQ8<Lm!^d
zIqDPDKIxW?V4tJ*=j3phTtD9_UuYPpVTgvI8oIAbYB)z_8l>S%4TIU4H7WODY>#}M
zJdD{n>Ie-ZHT?FOI$XoBImSLVO2gDS>Szt!MmyGtLufqOar%ILj0Wmh4dXOp2TT3W
z_`qm_hHo^y<3f2CzSS^M!;cz%(lANGcN*GEwrtTbS;G_!OEoOxQrwU_Rl^(&b2Uuk
zS!VF#)EOFPY51>pt?xC=)UbDss?AaVnxk%+X#GKa|BSTRjQ>83F*)a|^E52fut>vv
zF&Buk^udfYR#~iJiH7oX)uuDjCXH6=&Q;sbRhMg6!D~cA!@AaCbJdj^)@WexDmL|0
zVOp)>hq>z9yVkW_T65KP8n(?<*K2q%+kSqoO5G@RH%Tp4+$_-i`?Syx3WvFs@tjEw
z=ehrD*ugF}wH}d)+Nog=2c=;bTb55qcZ;8IZ0bG@`!yVpEGP3#wf4`#9abAZb~vcv
zkcPwJyw(b<jW3xT)o@J1aSbOl1V%W1;l;&MFgfcf`fZi(COQ9|Vm~dlzG|Qh*{%Gl
z;SA$jTUnIXYCWsroQ6V~sZ0klQ!i+^sNpGBPPj^@28~N%t&($|>eArW@P~$L8ax`j
z8p0YP8hjf3Jg$ZyH@btVr}ih$9;=*PoUCgg)O}<LX^3~S5>DA|d1q!sHN-UhuHh1g
z|Hu;8kkD{+e=>Q)&z9nimDb~}mw63xE06#-vh<N+v~0KCn5#1Ex`sbB+|zJh!wn5L
zHT=yBT!L@OLI2|D4k&CY`#|OEyw*D!?(&NJ-sl(`-}-^V0}=k=+0^h@D*mhCA-8BQ
ziJvX=8ykl!HCEvfS!I1q+Y^ZyvdKbzrr|jkp@tXSY+Wef!b=UWxWl`U!-Xs^G&`5k
zah{sQOJJUw)dlNqTb+4oHW#SF=cz2s=|Zv#bLOdUx&ZNM=5nF>=XM6?b|H^6lGlYo
z0xZoZkl%#@0tHP!c{mE2{DuofOfKp|F_RlOoIF->7p`@)XD{k3=|U+fD&s<F7uZ!E
z^lcY*&QsX|_VD67wX6%}q=*iW{@>rW3NBQ1VTKFeyZE{e@4E1*3msfo^1@Qt1&52@
zWkQ7`)+#Q%=R#GNachxk9J|Z7v!z9{bW#LT#Z+9lIZvf&ldPR{GGE>Nb_O-AWkz)u
zmX}m&xln^?n7yVbq4FJTZ5Q5mA>D-x7h1W{+J*B|t#w>zDo|I{>4NG)Jz<tMaG}1*
z&HA9Ba3j&iqD{=w4+JiiPW#Y>P8F4p*vVp!W}+X9HWzIn`iUq5S_<&3)HYJRy~}v#
zv#ksBt}E@tDe<j^-C&~MXjWQB7e05PI}hPPkNuX;E_89>GZ$t(P`bHL#$zFLb%Fmi
z5Gw9Y-Fi2*2ba?|+dvlvxzN*vUM_53l-66cuM2$y=oGGE?`Lv<7X}D_@qf-YjxSvp
z?7}z~#=9`Yg`qBtaABki!(8Akc^@yvaF=moWZsE)`wmC@Z0ab+Y<GO+!Wgco9gfjl
z6%A_t*gLKKe08h~ye0DTZ4UC6L(;x>VS)>jT=>pq+!Z;5oZs+IfQz3pIC)dw>hsl!
zE_^s&B}{gq=#aE(I~-G`@hPG`=d06Pczc^;x(nHp>M*U|>6pnmap89tF7ZN}Z~eiA
zMJ_CM;nZ5kY+gYw%;hAzj0fl}5GBlKH@;N~ObfYe-bp7cabc+oM_f4S!ZI!`7j|&L
zyD)mby26E@T-fTuN|*6hY?bJ0(KVuLIZPMU3vUu-*ajCin%uj3j?KbbOy@@z7R)zZ
zz#sd?ctd0DFV1aJwB5yfN;vn<S9iIv+l50eY);trxbR1&azJ#iD6{)q*f0FE>A2>r
z2ZjHhuQK4U)MfRf7wpG)S-Ei9g<m+jfa3(`hbt<#z3W{2NuIAYDO;}D%bju1`PGFp
zE<{~uI38ztjilO{_GPo5bKy5GRB=3}e?j1)Xr>FA>AM8nTt(H4>RuOoF8IX^iw4Zd
zpbNUmA%SgDB_hmQL&v0h>|tCWA^J+UUv}Y&3)fxv(}k;Cs~_7Z-m~!0e*KTx{@~0j
z8P~W2#BGEdy!2cs=|(9xZt=Qv;hqckUHIFD+b-O7;f;fqRoU!!xU@<*nB_~Ine*(g
z&3{~Y;6gq(^1Jb`3lF*Q+(y_V7g!~$8<$_yeC)y#7oLhk^OXzFOn&ade<r^Wc<I8g
z2T~c9#SJDx?B;t((hi%-CeZ$tEr;9aRZa;=7G)#^a*5`4Bai9lb)#<nS`4_?(@{Vw
z7I)*b9QJ~46f$E9(-$scIz`<mCj91WKh@3_-jeD(bP0irIqao5UN^eA@wppi+$ift
zD>quZQO=Eb+^Frw`))Y8Sj&r6b)$knMbS#4?}}Cyts?rKC~K9fq*imo;zo+;I0RDN
zPz0=^HnY?&u)2{gO`y7H4bhsSY_padSfCQpO{c*_XNDVfI7_C}%nhd-svGr8=L0wD
zyV1anhNjb4pphH1>e|>EQxiAz6PDN9R7yV-{fJW`NBmf_%|%;?GWZjLmOPfkv~i=Y
z8=c(f>_$5`x-L*VxY1Fdz38WI_;=aqf3-km&pDO_3)C)dP(NdU8@r?(woHfmc56p>
zH+s0y&yD_W^fZs#+l^krZ0*7VwT~Np-N>k9G|Oo}lc@}FV|=5ufo=?vurGLlR8n6L
z<V!c$;cFlAO#p?580y9_H_qxfr(?JqBRCd6>iaR$jZtn?^r4auquuz*jW%Ai^<s=0
zW8K)}#$GqZ@hEPrabvBU5A(tVH)gvr$Bl2?#_!iAx$&JF2hUo*b>mWd>qK_)Wz7w@
zYfg4!{mYuuM5l=U_R2DqrH3px7O2zRnBm6v;?ER)s9705OZW%THHR#8=DIP@jpc5v
za2p>%&Ua&x8;gY(h%OZU^onJP^e6uc%ThOA=2`boQpn5L=kZwxD|wB$QT~u}Y^SBc
z9m~k)sjE2&5lgOx>de9^>p1o!%4Rnjt+uRpV}lz%w{UKBV-x3Lv$8B}+ItICrsS)R
zEpGhi#!qf+bz>(_r5nEuOyB0lb~kpo@ohDQS*F@G(;6&Pdk;$A?MC;}>GX40tX&tX
z-z-%3xv}4kAeSPK;>H1<7dOsv4&7*8-Fk?nrHp^Fy4sY(ZX9u=Xux{ZjbjXc{XM!q
z8OKdN;l@dmPq}g0<X;4Sb>ocboM~jV`I}@fvh!u_=Y=nDC684<vKephWV)e==@M-{
zMsaha7^8SZy`nx*zi2>oS?%PI8)2R@4>ouZaU;qT;lT$U#N3Fxk<)`@4-#(t&hz5N
zBd!x^pGUmG-BS39=vCAIL*Sa|bvOPr{nx+LyUD)-Zu}+Y-=g<LZ@Y0v;I8OBQ68mj
zQ`<kn4@Cd{|4JXb`Pf9uOKyV|jQM%u##1SMCQ9eI8~>U7!i|!3jQ5)O`Q0mS{vHsr
ziV~6pvU!kQAcyIf`@;eca(VEU2PHgM^|dv(2gN+-u+oypW1Q2xqWL_???C}!nuP@l
zdQeE<=rH5BZwMC=Eh<Wr4N~9qpt$LL(JgC952~%URPo?F4@!AZT8iHGpn^ad(XyiD
zMA^bS9+WpZ*B0Zu;uR%Z$%A)Izp}u!Pm-&$eGk$+sP2J9%v8}7Gjd+OtcuB24{XAA
zQHSZ@=&#feuH`{(4{Dlzem&`Z;kq6;JxDkG3=irEuc&C;YEl($V3yYNpuX^*1B~}1
z8=8J24;q{NV-s6b4?gr@ln0|d_{f819`y3?K4$1JR%zeO{;>zmJ!s*<Cm!4{VgJm7
zmL9Z{>YsYh+H9x22W^DgincTTy#uobYW(jBVjaZn=s_oe&Sp#(fp(1*w%=8b(#?a<
z1?Y75poefz)8T)zeYlo9SX9Hdev`AG+0K^&{Y3|O@P+9Q6d2^eJbCQYVACJs!BCTj
zc`#gfga;!9mMm16IB#EZyzZ=1J(wo`7}2pFjPqc;@Yfzp5||*$D&Giv>%m0RajC|e
zx8Hd%*>t9OuymlYhTm?jOlRLbnD4<155AXxnI6nFBWDTxAUa!gj%d*jv*yfVoY@7E
zC9LsaA*aQI#ip~ugC)XCMVFcWa-P%1#$~e7bXIw=+GMu8*5q{_{Q8CQ&hSPLHhJ*O
zgXbP>_F#(#w>`My!H*vNB*8upwtBG5gR_#|?!gX$lcGCC4|}l7gWVqNku012Szxc|
zJ`eVreuKKk<R9?hpg4z2fA2!|h{;DiIA-#3ffF7ufE7<k_Ox00i@>iQoDq1hsWJ0R
z=REvK(b#j&dvL*ni)OrAAX8Kmb#dpZY0Mat#{;h!iTB|b4tNmsK=&Zz!Jp!Ux%mrR
z@gQo(|IWVx!g0}r>0cdW{EG9EWG{2|zVW}mZdX0{L(FTU*Uk7HTa16QZg_B0oLi!Q
ziT-WI)KQHe*WC5s9<Lpqrb!vvLiHahEs(6-d0~AZ{I41RP~eg1W6>v~Pd#|YFTect
z;Dra}ym-fpmma+G0AA$sqD;MvzFu3Q!b%pe(e12WBne~_rIX!@9Ktz8lTH5zcWQ3o
z!d_(duof<3&*Md2F9`WW3HiM!U~)l$LSFp3#Rz`Giy~67sAx$qiV3_aT3qxk(GsFO
zM8-=CwUlH_d-1kF8PT$4%%BR^@?KQ%qJb9;rF#{<uy~Q;MI|rhyil0l6{ze*6@m9m
zzp6krFUB@8!u}dyPxYd@7d5<4ykOQUO0WsoMIEAPUN}xzSi~8t=|vqmbS-nPY74wC
zn(jr0>0A2Q>k2zfM-`~&MSasb-PdmItu*rDV{tlXw>I{I+C=mN(WYK}C_w)sFPfR`
z_%x%r*-i^DJ`rwdI;{j+i*EWkYdbI6dy&P5tUi3|MF%god9hteJF-D9x(Ijj;)YzO
z7YC$&=0!IzKKG(>X{9Td)2QVBMQq)@=;6geFBW<6_*Jc*UVQDv1TSu;*n4@=+lxM4
z^!1{j*Z5C=xEK8ez7!oGO8*Nl2AVvGXY*ApnuEm|B05xbm>I)>5nhax>?qMOUW^v_
z%8X$<Y-Fq#<4k9~7k76XPdjD$M$AE}#^(#)dNI+9N#cCx#dLwmX00h+Of`9$jFDAl
zc=5d#GrgE4Mf1G)L12y<Ia}amiqZaDFY-8R6PV_Uzrc&rdyJke_F{<_%e`3P#ZoVp
zy>DOUMYcui%oKZ*9Cr4WY|U3|r5CHbSYM|0Pn#XguJ&S$7i*=d&7$i>+2DFFHkiCo
zV3QX=l{Ds)X^R&>iuscnvz6;vJ|N!V#ZE7N_u`TlyS&)##R)G?da=igy<Qyh;;<KI
za@$uIwC(fqQH&PyesO*lJ>bPbfgz_A7X9(ia>R?H;xOBAuwfpP>~Sxj3u#n8CD~uN
zMQ}FE$U`S>XS_Ho*&weAn{v*JKabijdhwfN>6{n1Ao}w#2b;>2c+Cr!7j7>+W@`a2
zye9hu{9e3~NM#j1;GW8)dl52Y!d^s#qoOg<xLKOuDjjYd?y?tGyvCE_|MlXk7k_wh
z+lxD1T=U|(7q>X2?6Vgo(rh1fRBj5~5WU|<c}utEDO2ljFUsy$ri`-Ad8wRumRhNv
za@UJ{jCp2x;Kh9}{_)~KVO#mzmWof64-2F`xvF&9s+2rvpBhem=*1(hLoc3iZ};Mr
z7f-!-=EZX_N{+SG%Uvt&nPo;c>(SoIf8x9lwWKI4Ei+DGABOI;6kVhy`H;<r{5}-$
zA-fM7r&{_SbMmppIef_JL$VL>;mhgvyguaeA-4~oEK)n&R`Q5RzvXnhZIMdI=L5N9
z1(n*lgsq^DPhqwe@u83ppXad^7A3qP5InCG^`V##Z~9Q&hf+S2_F+L~W$+^PErAj~
zl;ja7I-7s5%w44JTBN@1Lm405@u9rW_`s;F59NGd7`b&vm30}(>daQ~;o>6ouSM#j
zbnCl5RQ4g$2hGRlA>utBCi*bRhpIkQ^P#&BJ$$hEkmAD!J~Z_q)d$6gIzH6(!Rmv}
zhjbtAD^|M?4j*d!@V<}Fw6&y())cMo<73)vHGJ4|E|o=0wK(cLD&gx%R?A8!A2dI9
zVOsn9N`?<_*EH^RIjykW=|g=V8u;+!bF1n@Js*DV;@mmkde&!c=tG+c%C;i*#y&Li
zq1_B+!~}&}`DJPoA1?b0_|S)seCXgqM<1H`@G*NbJ?&E;n)}eghch1~zjfRG2}f$P
zwGt(?6xcXSA-CosOusD;A>3Xx`(l*=Z!cEahfY3p_Mt1!dy=yFwxzgTDZ0hdg|ig5
zeC7kMab~;uz=w`8ea;D-o<``&&Tx77FxZFFlP$e@)|R9V@S%?neL2iwmVQ3WE}pf&
z5B+S`!!3>eq%T&#kg$P1aIk~;_h?C4x5es^L)IZurN^wap|4>{+Atr6GmHytZ^qZ;
z?pX;VeHbOqXi+*}`7lO!tmrt?A1^RwvAS@vI>86(H=^H)X0)?@=fh+lw)?PyLz9Cp
z@?o(LQ-!DbFkN5<7b>gx@V#Vbip~=KL3Fk#$2-S|xx({&m@m-dSOyb|IM`hil_lvm
z&Nj14d|2VbN*|W`u*`>T6O=ci%5t+EE}K<8tmaDd;YT0VuvZIG*NGC=`mk%Un!S=j
zUN7bb(T$>;eAq0&-=;C(Cm*)@&}EW!n;fO*3FnB43j5HijExI&C!6x&h!017*zLm}
zRxDsY;KN=yFZ-oG`+U4HY3-9k6|Pv;`q>9U_G7k#5`4&qH(IKPxd56gtozjl<(Lo0
zjToF`MISC4wlrR9`9<KQ=qUyZG;6M~^jG0CKIHq^5$>h5?62^e`pt(`3(_vg^>v<?
z@WM2j7tQ&pT1#>H;O27mBaa^*AG|*N<-^}T_<ZpDaLKrQ5bz<$?PZJ-<Ib>H)qM!F
z*(|j}Y}W3i^VecEB2JDaYLr86pq5>tGCnS~5~9ERaBn~jnpe1(YbaNJ_=9UQO(9<s
z=T9GQ&~(_YbBQic`jxQX6#tee!&sEDL?ztz;f@dg@p@UJ-et4A9;Y~-a@*m?;=^NR
zm#D|5raj>1Gu83XhkrSfQ~BJbH2QQNNx(*=F+JgR-AbjO=$rP;2kLWCy?E^xKD^}o
zuTOo&eco>XQx-q6nw%t%&5z8+%Ine`;^Y)f7KI<V1bE-P%3oXZ`jO9%GJcfxBflR7
z{CL|BehygBk3xRD<wprWnypPKEc&J&Z}?HfkD`(-Cd$(GRn&&}Z5yxJii@+bKw8E{
zXGuT5Ht#Iu$BZTFj;YqK_F78&jbDE=oxEz}Ay$;nTF%dZb1?s=!{NuqC2Dy;>a=lG
z6Rsdy(T_@gyz570$+n*1Jhnt-WEDT&6Q`;u9abEB(_!%=#g9~JNAaV_O^4Nwk~5q?
zm3ESCeyn<8vHQVBm}QkTKdSq|iZ%SGDYa@*1=y?F(zo|H>bj0};S5oJmReV0oT6+;
z^&=>KXy8XfKh_1XK7dAkH1_k8ApGG+6F)xiV~QVB{b=gPhklIr<7+=Y@+06@2Kq6G
zQ|HIWel#b$Q#<?7#g7(#eE-tI^obuWg<F|UYd_lf(bkW4;&d?m_5z>!@wh+=D|R&f
zPMn7`8FW7LqpKf_H(UDp(M?KwnK7RWbQkR*+S8AId5w0Mdi&AGjI4jx*3XZnJB$YV
z`!PWLFU-<4N9|wwG1!mMethM}5FT-V@=!m9`7yVy;$7+-?#Bo}?k!PA@%?{}`h6!;
zx2jfZgZ&ozyOuh~_)+W)<3H|ke&a9BSjMLs?=$eBmIW%=C;0IV7ua}v-J_OoITfyK
zlQ`QWEff8yl_iB~)|dA0#F;F5Yqf=?)BKq3$00usb6K*toCiOa_%YLuS$^d0W}WZH
z4}S3Dzqx)CpXHb>JV$g$%tn76&-hm3^TFw(?F*y|Yb_L5<j1uusd<;GOZ`~p$1Xp1
z`?1_u0G4%rtoLJuA1nRvZg8&hV>K7&aa*n0_Mb1?*Z9HD$kvMT6F2e(u4+Ga__32K
zww|5l?{(5P`LS7QvEmkiA4PxS1#9}-1h)IZpJ_0x$z}UHe#gyGY1azY+T+JwKMqI$
zyR?t9D*Wg>=YBt^{N#>R`q#4`^n;%sF52Q)mfe2DkE4D>xHym7j`?xik6-;b<Hrd<
z-tS!_=UU|yPjMmZNk6u|VP*ETAD{NF!J=OzfJJBhIOm7U54Rt``Eg$SOg~=rs&Ros
zmMrTI$e+fFjMv0r3p72PE<eJ&V3Vvqslr-8Km5WB2*}}R>Sk$3fbG0)pWTj1=VPLA
zKN14;e;2qUdfAUF0#)pG7G3k>x*rt+s2ISXe%$aQO8{8|xar3&Kc4#WjOS&8@|Pd~
z`0;=XwUy&<@&@I$A9wt?%WG|ol>t>|TJHHlz3)f&^+xtz?hl1+^$%EikAjDsb}mJ=
z)?+`O_`#cmkXdU?4coU*EYJPmJv6F5R{ry&;!-u1u)px*r5~58I$Di)yz=8n*^G(j
zE!3m{vIS5efPw+UOIx!CkSl=P0ptiEX8_3o@CLZWDrPL+rnJ0m|7U{z&Ma%+mX16D
zESzP{7r+OLt$BsVd}HUW!<fw<Fm4%FE{m;D0EGi65kScR-Uy%w+X>*!fbj*<q5<O`
zrxmK!KJ%-xrGmA107K7NpFXj?6);A`+XQ`6$5HDqrBnc=19&@tG6CaOGj*1#!)GW<
zCOB@D%jnwBUN(So0lX8y)ai;^P`O;q*5jC?e8Bi`g-|JgcLS&uK<xl32e4(X#lk!J
z3RDT;J%OqLR13(j%;sA7$PdP(2A~8`J%DygRcipY02~1vnXE9`17Mn$&*0aZW@c+h
zd`;0RR_myx>iYqt2QWB*Apv9rP$z&+0b?U#svE$E0elpIGXRxyKGb;os2-<1!&*Op
z1_3lQBby2|3ZSv+G~t8`?`dGXlgw26LbhfBd@N?W0RA0eX&yi;GrmOtp9r@!os(}R
zwKlnpKwDAXACIlI7yeYVLjWBGN>(s>-Z_9S0emJ-j{tfG&{epb=;xx{MW0mq-$;7}
z&`%sz?;SuN;l82+s{OD3{a<HAzX)KUz@Pwjbhdvf%(|x(qrss8%nIO#0EPuHJb)1a
zj0|960Fwe3Wk!w-V6^a8rZXmh=tsu;;o|}rFXq<)d?PTyjJZ1~`CF5}ypjB!@O0Ce
zEHH)3%ygy&@bd5f-4$d;0N;y0(=25RJlt$v6ynS={kdE%!t+HJh|U;gO#33?#Q`i4
zSSq?&beZUK(G>x#6j&w7iod2B$66D>TGQDwK6yg`8w2<{hzUV#3ScvrRuH*^*b=~x
z0h|xuLI6Jnur+|40qhE3TL6C@SC}sBvuqdMAzC0gjpptE_5^SufRh324WRWt%YGg!
zfPKtfPJQdSqw|Z@0|6Xlm{mC%z#;A%S*;VNC`WiL3p2~dXDrxdsa(f?EP&(O0d(uU
zr7GW`$a%(kDuB}g)TnMd8-O?2#z$%J`5M3Q5YH^X25?4zrOdMET)=qN#&4qR-o*ei
z1GvTB2A~Dt3Lp`{?*X`Z?YFj8D{hYqc-XSck1qg!0D%C40mQ^{oJit>y>#J_XjnAD
zWh1aAzp+qvpU=)mfDw}7O1Pf&66dXY+T{SQ1h9Rn%28Ym;Ew>NJ+<5n;93A}`q#KF
zx~6h%GSi;{+z^NVL^Ip(R1ydEcL29}lxLP#+%p5X8^E&wo^x~o+z;R>m)r+RkAi9c
zaPsFS-<P}jJ>WGi9eXIsE<Fn1vG5bq`8{XWEF-PyMU?-z3l&jbaIm}q_;UxFT6fF(
zQnJMlTC)U^HE7IdQV`jL$Pq*~$<krp`V~mI*DF0|&=_^HC;<YTv^+uN4dSC9ngx+B
zi2Om=g0KfsAc%rNyd6ZDAObnl3I*{-5JiIE*)JT#$(72$Guev<jg?a@h&O|{Rax<5
zwG|KI#WM%rkt-d<TR~VV*DetRS0l}mL6nkG^2}_t20pNIy_F53ToCUCQ8kEnf+!zE
z#ULsLaih7l0*`(}`Qs;rtFD$sc{hm4Z0dPxl_1(pvy^FJtjwe=Hok*VR#U3+SV3d)
zr?A5<tnrn~J6jdrH8C{^wxEcztJWa+wi_MGyXlS~Y6ej&h_oO$MKr4idFxlBk=5I*
z9ANDr-VdUF5DkJz4<aK7XAo)-b%GeuJH2iY9B=N{R<dz@6-cWW#Hp_>Y^Tu$g%6P#
z^~};Rh~mqXCP924&`7j#5F9xDrko<(%FcfnG~VbV^9@E8eH=vdAo>K+H;5KNd=kWG
zL39lo7eY&pJ&5)}v<mXc(b-#zNxw}H|J}E?4We5&h1pMo=nzDgAb8<0bqwO$64uU=
z?IcP*{>;H5`pus^x&`rhke~M@^$MbU5Ius3JahEq{2xp`Sum~eoA$$=q{;GWa^KA4
z-crgn+%Jg!K@1IISP%n(_#(((_hYb3&On~fA<7_jvXq_k!?nQ+ic5mm7sop!h)IoV
z`7T+82QeauuYwrEqO8`DL5$`)?3zLz6-4Z*h0r9MaiVvxw2qb2G>&z@w(yPC@tl^*
z%DjD+o?lzO;Q)j9P{&6)CNdz1vO3D?_%4XaycTq1*D)oCsX=50p#?E5i0MK65X5Yz
zEXoX?%1PFlLAc_|_gpHAEhCpGKle(X6~wsmHm-*`LCg)}Y!K&ym>0x+&Xrsg3xZh4
zojHijK`b(_tTjO_4q}O9mj<y?V3}FEJct#-`_qkoYE}uaHcQ*AH1?>qL97#Jz32wB
zbR&CMz<Aeji#XeZ*dg#E7j0bmDTu9--Dbvr@Hh*DcS?3&5W56+i|#RF_VN-QYxHFQ
zYe)2eSz5Jx)<eRFMUMn=G>BuuC%M|WiiA&yvXNGDv&Yjx{AxPCa49}Fx^c#IUT0fB
zPW>$iD${v^3qf2ISoe=Y(<Rp|FU+SwxOswt@CM-v;tBmHil6h(<=0WU<4}S@=-e@a
zxEVw!h_D>!vS>s!5kyoVCd$slxtqm}7hS)LbIJ5M-YY>|<srnmZu-}_1MD|W&7Y<-
z>r~P$PJ0mliu1SVJ<;2ucSKp`t}GP-)BPa+5&wbce$Dt?`=J^6NZ_$3d$P!D<=T7x
zwdI*O&qe>^7AnAsF9lu&kwrK5_N=0WBmr*PIdtUIQCP<tI+ArjM}8dzbmY>JTgTqr
z)_gkh=-}R!R|mI5?#cYqe|@WxTriD)%d&AltZpl)V{0}mv)tthv3jymR76Kn9VK*>
z)Qx?qm~QMaZwbGtqqxA&w=FD6Ig-SpQaVcOcw0vqDXMlVd-r_Cj>P9_@(*#H7pc^D
zbd=YTp`(tD3OXvXOFB|?EUBkdVs9^}R%Ttva*yRUUPZ@y9LsJCx0<TDu^U$tCGby7
zst!drwuo9ftO5>EIyN14ley*6Nz+kXoEp0E2ZE`lWC^v+$oF-mn|!dEt*#EIj(R%k
z>$td7tzS=3**AG1#GSl>j)poK>1fR1yh!C9%l*0Q%T#LLU$QsR!SQnJALwYRgReuF
zZZB1v>G)X3JRS3OG}qCB-;mTXLdPdMTI%Sbqo<BmI$G=K$bRZ*qk}IGKGo4dpskK}
z0_}CUx2Cd)FA}(u@BG4eN1CrCI_v17qpJ??-k<5lYm#v{lgM|rrgE!iSU1i?W94%l
z-37>eb<s;lZyf`54ARj@M_(QNbqvtaPdEM?bHQ*)RBLSYjdgyZ<Mm&5zWmFvRasfb
z{-ut=I)>;Ns)G&}^M!@hwkMJpz>`QFrh|VdJ3UNg3nR%oM(bE?F(SXxF-A95;4~d9
z9joJO9TSAd=@>7-NEYpL+Q!yXxJtj_I+Vpf(YzKW@vnf%llfP`<f%H2*D+rCv-)%$
zGo*XpOX*BAW|qJYI%W&ZG5xvHE7o10V<A_jj(to{+aevyb*#|A9c(cdgN~&-mPyOY
zJxMe<UcNF3)KgaKI8amBu49#s)jHNl4CiO94hA$itE@ARwO+>t9UCRPNykqDo6XWK
z0zZnf)>hNsrejhA;~$D0I(F*VrDL~_J#ry4jI+(7@NfinV?S%@IHBVtd!^%`j-xt`
z$tVu#;KUvgJuD8h7d%OPVaZV(mu~Y9I!8zUl$`xvbo{F0v~Ii{9V@SmIq)+QIWpPC
zBl7jYZ#vHFP{XJf#sywJyi7u95<;d9P3MhnQZqtuaSe073ZXy<9vxmC4|M#i!>7Zq
zBf+JT*T$P32Xs8yWR2?x>bP^#u8W3vO$kJJ8CG)8k4lyh;|a=>LSWs$_oe>Mt6)OL
zB^_B0TQ7@V(Q#GBA3Cl{_P!3il=ZrfyORA=#|<5aCRlDt_O^~&bV}I%5@jQQi%;i{
z0G%%$SnhG#+@HF;iNZV5{3CvJiiJfFxqI|YeWBx}z#|=x1)hjL6=lFPf#;(CiEdnw
zO#hWILdX&_+Q}+PND3jF$=O55VRBA^WYNKwt1vQG2)WJDJOX(|^Mw$}Z?su3ghC;d
z3ZZleg+r*v2P%b7B!s$I?9KkQ6%C<Tomy=gI!cC6EQB{hC?4W>b!;px5yH{lj<-T+
zT+&u_pY>hEie;)Lo^kR~`r9Ft386{|?}bn{gmNKN3Sq=ZW#K`~J0W8-D@wL}2o)r;
zh~_7IlL+rh5utJjuN^+<t!fCVAt)hK3xN-wv#<{W(MsvBv(^x7A=C(gcd6ww<Ln{h
z$#H2R@K-}dHg2afRp*b0wps`^L#P!(ZBB(|e?Nru5FY1CEBM$3#hG=aLZ)AblMpi2
zs*}?qKvqMT(%eC)A3}qW@!TbHLn*DSSsI1-+h+@%4?<|lfrK!U9SGs05Izl|LkQz)
zDa}I0{U!dmVfi>@{7q+SF3^JG6=*5iO0>0T8_~9+?L=9teTcW6H=beCF@#Pb^bMh3
z2z=YEa|oaLEWJYL62h?Y_Rm7-8bUYW?jf}8tb8t9d6~-69wGD$p;sv@`AA+zIIp93
z2#a1ReMB!7Q1<1uciLkqaMsd4gaILZ5dwcT!<2GK85qJKPT(^2%MgYL4CbPmZSTHJ
zrO7l@%wZvXyG$J(!XKL)G)ILnI)q<CI1|EGA&d!OQwW<w7|Y4w>DzBzAHw($z7An#
z2(v<1woIK6!sHMxhMeE9sSqZHFe!xZLhvqAY2MYH2L)bdr-U#yglQp64`D_K--mEL
z<b2pEt%dG<4Y@;3rrjYY9}M?H2#Z5l5;7hPH(PX02y;W27s7nWE)rcJx=@sn?+;M;
zJUhZtc27(`W|t3uTOPtHGiF5yD}^sSv@()ubqH(3S!>3u6JS#tc#axcnKlZ1KH9?X
z`)vu~QW51~2tV=)Ev)>+nHSh5x`%ZIShPc6X9&9lcANgfCdyuu_X+Ih;t@C?`teuB
zfewXmm}hos+7VvSAspk0PEPxCO4{)dPK5CL@QhPjV0qG3=Sn-txlK+Z-(IGk4&j#&
z{>rOlK2OiJTqT?h;amuz5W*n@Z#jMw^@MOfgbT*$LuLqWF<Clcz2Yfq*Z5a}n}1RJ
zkg|4axi$_Kc|-6?n4c;TFl#wl83B3-?=Dvfkr1NXl)@+;Ml6JQ2wB5O3M0X8hj7g}
z^|-{v8A!bx!j%x-x@{YCIJHZj6lYu^Ulr$%5MFk(GfVT&5MG2Z+-bcL!p#tFaeyH_
z525?vRF?i7!ov^<Ot(Y06XK0laL;regmB;Fe>g5_kdgn2nRB>N@e%hK$vzQ%YQ{e^
z5Ah$b&FeNEZhZ^;OX<lg(JW!3SH~7xsoBEF9!Bmk@`R0{<p?7=jOl^YoMCWimri6n
zK5k(o!pIc{f$3z1GjG@!X2CEDg^^E~+5BM?F!}rpOJQlSXc)x=-ViMkMw8_#55(kZ
zpY+4$c7icuVU!P}LKr2?7D@_~5-lAz#{0H#8PT#~loNPIboR_7Ho}os3_}US8b+ls
z-VLL27*)bZmFg^gFN~Bh);zb6tA>peQ7w!f^{f_YgjuFugRPu2{wmWJhCPf7DRPLi
z=V=0u8fULAZPpNF-)aif60IG^`=*~B27jK+0CumA)UC@R0XjTT{V=}@nEHDdm%?Ze
zM#C@~h0!>S6=AI8T!rxgdl*K~Fq($(VVJjX!uEX`ABE8@j8DVHp8v6Ea|VBHyrq1;
zwDFH;3o$<lqon|yRsyX>+laOmZ5Kv+fo{uHhB0-JEdM9!6gK{qW9rPsApDtVSJ7^w
zpNlf4yMPL7uP}OtF(r(tVe|>3Zy3Y4-ooe?M*lDda~Xs&AdD}<{0Tn>@$77IM&5Qb
z+2Y)G+wo->w>LX`-*&t<4{djTe>Rz=Lpi!FPMVAv5yr?c#)dJDYjT})R2ZYf_==}{
zopbSt<g*!$F=0Hc<ruYGWht|@ie`)#r$mNhM$wF~C31r3H(`7$Fj15(ObX*W;mM+F
zYCC97<D8$c%?@J@FO4u}gz<eCGsBq0{$ERF8thc5eMcMFAH@7@H0FkJvyO8?7z+jF
zg)v`>XughLB-y2+i^EuAmcDLtSs2U3VU|U!!dT62gt3DQn6o#>va5&kQy6Q*SQp0n
zFgAp-C5-xutQ*7laZ?gulVnGKk-pi4dCS!!<CA_2gTR2!&1-E9gSt&L>)hnJ|2TJs
zag<kj7`wv8gK>9<u_uhZVeAXzU>JwO*iVN`C5!`MJjqjwT&+rNZMm8)VQ*GQ?e!%6
za2Q9VDDi6sOBus<j)!p~%zK-|9mdHpPK9wc%-d|@bQr&IVXsingz?vMHRlR-=H-lE
zIr#$27CY(qEsXPFj3|(%@%4Wg7rD|_sH~F7MYTeuKWBwXm~`H$zjDy`gy9V%97cq&
zLiL5=4<itUzBVP}aw;Q(Vcc7xR^M*X!wAW7SN-K=brwar`LmN9o%vU)Oz|+-hlFV5
zmBvxn{^c;P@XE@avM7S9Vf?|JB!V6hTnpoR7!@O^6v3Zi+~D3ALH-DC$^~^ljDNy>
zrWpR>{1;98JB+(wOkSzp4&x3l`ITx<Nd%hrIQicg@F0wTxhF@!mz@K4*dKE12;-GB
z_$Z9W0#8JF<vta7Ci-0TKhYOFP}y__3|nF4LtP13BFGvsc8{b8UiLR2n`E;`kVAk@
zPO}IR<cc771pn>G$P+<ukn{Y&w8Gmm@(OQQsnRJBLBR-$NAOkzg(4^{jl3Db8xa(V
zpjZT%Ic=v_s!RV&FB$=%;WR6m=8yf973-BwRg^0$)e;euj^OPGN=9)1T52iL>FEl&
zOax^k(3+-|kD#0!_Z`s(Pwn58Rr3^fws~%^z~gSqxHrhj{=6GO<p?q&s1w1OLiQ>V
zyca=L>D7#^bvU|e5u`?-L|};^C4z@798;pk<kY;OSj`!DKLQ(PJ_3h0Syx%+Pc?q2
zkrqL9acYRxG~;Ut)Q;eFSh*_c=@H{xzgVf(jldbfsEgT~MW9Cb`%PT+WTdT9>qpQa
zf{$p<cjhXak)^7mq1jp^fyNOu5%|FLn+kj=+NHg5?uxHcKaQYz1T7-?B!Z3+bg5$F
zKGRZST1CJOhuPMWZ6n%Nly%!h(B9-v1v*49x4*GSI!U&(S=uFn&xE_0PPYg?H~AAs
za?c2QMKB?PZzAX&K_4DBf*}#~ji6ry8!p-gM$kXP8=BeXRn2Jp%03{1FCwtMvfp`S
zcU-Wk7j1*s`86qDM!-baz1J}`f?*MikKpSFhDR_Wg0CVN6TwJMW(1=pG4lL$2NPk0
z%SIh5)d}MSoK-W($E#)>zG(Zdhhv;(yZgTV+XyB`@IwT%BbXGycM;5ppjt|f$q`J6
zU}^+cvO3sRR-F6N_!|GT2&PAH{JgEMm>sehrQb&|GlE%ilntFSN~If-b2xz!EQnws
zuclY_c^qc<jM5iu^CP_1r7f*xTH|aEc7yHPvpe3j*IpdKk_eVYuq=WfBlszT<q@oi
zU_B=-f>x{4l@a7^udIt;m1OCx7FZL(T7gInJIxWR)N#YpHb!u_ow7NCEj$Z#luf*H
zN2Jkj+1dK{@H7_9U8Qd2l5VH$iePsH+obXB5$uRyX9SEqbXB?EB>6S$iC}L82O~HX
z!M+Ig4^R6!f@z(t`x(DV)mEuDR;dTfHPCjsmHj*%!AWV8d?bRSCLiPM37;?>9*8lg
zBJj3T*vVfbIK%kMICdFlBRI#+<ad<#9lu3zK7tZ)l#Js-1Q)rf#!w)JOl}Af<clJI
z6s`!|yrv@fgOkh#Be-Pt$`^qy>=zA)1|xXN-`b3{Q$yl}BWTtnEg~Eh<s}e{ATFFR
zo!<rcdVp_%Ugjc^>`?jT-8D|&gDm$W_(#m^{3~GAx*>2=^p@yfqJKwlTi}i;k9aqN
zdnP*-Jc!_5ZoCn^5c6RK-<C3Va;8V(JdWUrz*Es@qR&P9{BC@b@=`cw6!{hz9|paO
zAWPKPG?=nRktCeWbg~QN5cM`S-tbJ00+P*T#^jD7k8obmJ|7q_I}1cnFp4ju7#u~R
zC<;e0w_my~iZ`Mt5=Baszw)s0){8}>#{C%I6)h(EW)#H*-io4xK*=b|2{5u$6s3jV
zHk~q2log)0)wpl=JEmVgiV7xI6sQzMw$;Y{9xF?>is*ZyRYj|bT14M?kj}`|D3mCy
zQ3U>}*+REYe3r`esF&Ryg(HfzD5^)%E{gV1@U!M_cP!ZwmKssijG`8Gq@{M$c<xn`
zDBhQBdK4J~b)u**z?iyGI61)8s%kp*=&V**)WCEaM$yRR#!-AOr5{M+O{4fQijRbw
zMe%VIV^*s?XmfE|iM9~^M3hA>qc~pGNoXxj8`EzaMeVCr`kzKI=Z>|fC<oOc3TnqF
zItg@+qKm+1QS=b#8U?@C!I*CBn>gg|QR7?LhIz*_MRihpMbTSI`-t`x?I+qliU9(J
zw^<qaMHB-iOCA(O&YX1!L!uZO#gQnEMlmdk;Zgh;#ZOU;h+<?E6QcMgicwMH&kDaA
z`E?Ydqo|T;`zmUDRg!6pz}P6p35*xz9~u^QP;&5hF5gBmF^YvzEQ*5r@T4fFZ*VM#
z^5&nm@1mGYkSbH7m=(nj!qXTdFhlfv(V3!bmfyFe&X%mLmt&5=T+w-=^F<lMn^f~Y
zCxpdOe$ZyrS`tP1+V<paj-^p7i(+{cE274CI49IeW9iB$)=S-0W(%tY)<m&ZV4dkF
z7p%2Gc%$eh)88D$7Lzv(b8d}dTNJyZ*d4`oo=whe@3fs!;}?9qz0yD5snnzs4(gsL
zI_z}pi(-EidwGFxb1<0ta})=-kfJyo#X+8nt&Y^{Y4n+R_oTj8k_a?;3#MaSeo<VG
z;z|@JqBt4F?@?Te;#3r;qloi_4!8Wm{ej(!!WYH(vbE@B$zwkg#n~v%Me$n{=c915
zh|emC8h4gv=`%|b;UWhzP05Txi-IPTi@n-!1bD<@X~~qNz`azq>F1PYvj?IGMxpbn
zk0KgHEQ+v1MnriC)}=DNKEy+D64FmL!tRl&Ozig6DE^4z73;=~fn1B?-zXkRz;)3-
zqqq^p%_wd~@mCagqqrvr`a6o-QQVP1jY=^NT3mE=O49u({)ys&guOQZuaup6BooCx
z@aT`FS5KmN8pSgvOVaZw{*#Jq^L4W?qIfAsc|9&_))<mv$QDEP82)cuY>oZTAr9~0
zoihgByD3=)1yPpfiXpdf9?`s_`9yzNWz2BF7z)KOGlp3)6prDI7<$CeGln8D6pf)?
z4E19u7Q>q{REVKs%=q#~@fb?S@OBJu#ZV%Kl48;?6*InyGb%?46QN8DWn(B8!#gqj
zdIG0U7<G@IKzYf&W`+?e#qe$nju_I|U?a713{_*OCR`<k_hQIdx;7JwEHR|SV2!~R
z!;o>P*+@-|L6OLc5<};8mZkQX5x`p2W2h0s`!S@`iJ?{uwWWy4($`GjA;=jq)QO?4
z6tO9%w698)#jB0h7Myla8^rMNcxuBK8VT%3D2-!i5<|-vTE*}|3{5#LF?<}ufR0H`
zd)uiW#!$(je8i&Oc0%(QS_pp<!@kuj9k(b;|5~lKj-gEqgbp#ZjiFr(?PK^<97eJ=
zDpRlD?K#${3@f)r?I^8vis44#jLtE15%^5Bt7tb-mVPeKJ%%OioXn0b;iyo}-YbUQ
zG4zR{Zw#Yi7#%~u82ZPIr_~JSC<Mp@WB4M5J@YMm4i2+}cy``azLe6zX3UTnh6)c8
zU6semNTv}nj5K3(-SSloV`7*hPQjAOSb=Y27-z<ekKt>RCkT8aT4aXt{GExylVbQz
zVDkSLFg1p0oPi_8K_8V+rpGWtN}2s$;Ny3dA7Ypt!=V@s$1o>`xiKtfQ4I4q$w{_F
zF)WT@zVHIkg`zC-du-Gtl3gacly%oyXfjnAV_6x)su*^}urr3$F|3i8t)eR@7>%!u
zVVz{j>tom;ywP+v#jx4rEdoD^{=}2w{ohfxiL+g_{8h`Y7<R|-vt;*(vgLgOdt-1P
z`(Lg7;(W6^gQW+A5As4wuFC8Y?jCev_&bJUF&vK}9780A6EU2O;UZtUvz_9~DPFuW
zoQdJIWPcH*Kk!b{*%;2na6X0$G5p46PiNoz*fH-}dYN2lb=Rn$PE-EyD^JcSf96Qh
zVsORak0HS7F?eF|#^8&Ak=^^Gby=e_?D&Z!Mt-```b*!mAV>F}RgWPQL%x>E=rt-M
zlWr<En%MZML^OsN*K-W~QB|DV*AvH8ZbaM_WB5IWj)#;>F<jw7aw+7?;xLBk-Xq5~
ziT{)9Icv&wZfM;Vrk%Hw3LmwelwWDxjA2u9+AUtH*ON}<PP-k$ofuxm@G6G8G2Dyc
zSq#r(xF5qm+y`QK6ob+2Y03lk!LR(wYj&YE=d*O`V_yEJur`nKG=?WJOh25o=&{2w
zHLWeuIGhT7tUTy{GK#u~lo#BB4k?S)s9EC38VBOY73Wt<kS&hbRZEUI-h1NU*s0m$
zMr+$nB;|}FISvl$$d#nMGKab2$P?%Hpim@^ym91<<KuLtP#pQ=C=f?M$v$~gDfY4Q
zX4!NWCFM#Z6y||)r7=q`8b`4>ipTL*9B;~@+1o;uZH+cs?sc@1`|xp@Ia0P4R7%BB
zI*uv{yqCb+ag>Q;RUE71C>uw)IQqviAdYw9C?7|SIBLeBI_(u0FvnUwj*4+qisRil
zD#u}q<JKCr3I`a6C60a%oK@rK?#!qb2Z7leZ`NWWq)0YZlvyPXYaA@{u2Gp~Blb8P
zajprYL7FTgOwONj<*21r9JS-<9p}U2Qr?gA)_;h5m2Pol#8D@XmXfV2+9Zw-1f1-1
z9QB0ji#Cj-fk5wr$*kT;xG|eOm|QO@<>!OR{0E__nBPjkhr%C;Hsj<AG#70l%0@on
ziC(J`TE)>?%r<d!7HBJa>8`C^9PNca6=iS-fsS!>GM&HITe`&YnPj_Cr33uC%wVR^
zIi*t6!;J44M=#;G6eFNd94kM`=qpO-Cjd_Hp42bm7#YW?I0nXz53&cvF?dVrm!gEh
zaSRb2Dmu*chsQBO;u*sSb&ZbW`*O9%#W6mPuj2UUyoG5@9AkwKj8=Vv?O(?+fs3|c
z+Ojyl;mTR7lD~`N+c+l1@o2eoQXI`zIO%VG*U2KL$r3*$j;V1>i(`5mGvZh%!HoYt
zjyb|JMQ4frV3y97x(u5u&OFnfAIAcdd5A^Ai$#~1{!#&k)mf`9k7EU=i|1&q%GT%*
z*2J+kj&K~2IM&6nJ`OF;FQZ~Z92?^}8ONzOHpQ_yj-TT=5XY7{evD&#96RFpi5G8S
z>w_)IR>EmZg=)&SIDcZ3N~h@#%T6xx;Z~--aqKdAcN}|omAzEx?|PBCPyGF6X;D5<
zwP5XoY=kGhr}Yr8wSu(|ixQ5+anxiU>v$Zw`zj1O!FO_QSO}-%_=OzD-cuGf^=lmG
zB<4&U%nr?-a#rBOe=NUA`{zZ6tW{aJ`wq)R$!5m!+IPp{i6an4Fb;1V*B{%OjI;2u
z4zK!IeR231JcVCBQ$~KF=u*mnE;~~h6XMR6ZsSp++?TjRCXg$EcpQm1?!<97j^E?B
z6zBJ5@i+IP?aJji{^b4;$CWs)a!VX%;jFSte@K6>iC*W}Z8n<iZ&)Vpu-uGe$%fQh
zqJ$Z1)u#ECZ^v1fZcAr4*n4r@kK;ugFS&H%c)*nq$KyDhV=dO7t^6j^zj1IHAF@}f
zl5LUoNgUPAr55{9$?-DvsW7w8;&^WIe*!6m?XNf?rz}YcT&Qk)SWC&0K-PrOA10pt
zY~r&hyFiWvawd>0oF~7+?>@08cLI45D9sHyfxHPc%xZigs%QfF63Cwb2UsA1f(bB~
zMTf>(3MEiD!MkmM&%<IWk^tigd=?nBm}K7+EuO$z36u~nDO#wu!eFLS37kJ?aG3<k
zCX5qWDS;>1m2wGGkjQr=dv8Z-`2@IzSyWN{4u_4yagDv3KxGc(hJ|V5VN^|^S^{4s
zFeZVmYgJ1E9TMo6KuQ9s2`C&|d&QoBBZ2kZ6>9>v1b(||xzyH9O-rD90*xf5Mglbx
zsGES3!R-{jxym;)Yb8)Sf%g+g7c)bYrF?s{j_|sXY0Rn#yn61emq2}i%T1DLHsF*d
z(6o+{zk-wRqo$X4k{c(`B!Lg;C(xcfbk_JVfsYbsA+0q_;Ir~hz8Onp`Z$5+;*fd7
zL7lCiB+ycNOKz1w>jVgGMB9qC6J-nZKb1B)3U;P&{`5|)IM&iPfzAnZVY3NzO`t~t
zJ$YL5r*{+WF8aCXcX{5U|C)P=(?_(o=-IXE>ms(<FM<9E3`pRM1O_HBB4NB6IVgcI
z6Bv@fP=Uc*S06aTYt=<1)yHeqVF?URU{eFNb&{QCv2}*efRPD|O2EEO9k|1>bFY1L
z0@P;f)UgSSOW<SzrxF;?HJQN51Xd+5A%SlaSegJ|EPb26#02IhFfV~g34F&R)=!(w
zm7GAYb?VdvrX?^%c=UqQ4!zXr3Cu`<JS%|)yPXr(sozE{-zPwwnZV#q4#LWH>JJID
z>g*uQkzlsT?EC~4B(RtZW03R6I#unZvYmwqL^u!$Bd}-*``J_dcb&RSdbnJ4g=p5K
z4EA|`sg&UdQ&%UjCV{mHtYe?otNXcD6WGA9OP0<?p0f4orUa_2SL?4=$(zO5BKl(j
zKMBy^n!q;U?WVIsVC;HzR|2~e*pt9sarSZc)~2w^g7xY?Y16e{{W*aH2^>t|Py)3!
zsK*n?{3z{k0@*gGr8lTYBunRL0>@0gwO&1u08<-@Ii0{S3H+JhBY5y@0%sDq#x;4)
zayEf;3FrxgIH(f#-&j2XP5A#Y^%YQ39N*V0dU2QFBoK6VY!?dy+qegJmjny$5-dOn
zL4ySku8T{6Ku92h1cC%fV5Y~thd^-oZa;qgKi@fZ?zwgA)vH&ps(WU8r@Jo-UV4Db
zLOekW4X!=_$xW_uHOsXJXsud<e^~yc+dnMVAK-=%@}&i=G`J;Ze+km^E*FAl`v-U+
z4*!0Df5Zdb7Cd0?buVpa(Bu^VZb1&@dH_{8yR+&sbgv=$dA8h?oc)@O7<z#41LSZb
zrxOvLogU!D1H62I*aO5L;4zP^aGJ&)GTWYbfQL+bh1410v^x#$|8k|~Dr2@OSDK|f
zVk#Qim+rCu_W(~G;Hj9M+-iT$6QFSRqKAdsl-=8uR}b*|0d{V)!-+S{@HXY`17vVw
zacj$iZAztC_9WpMognvCN~NAjl*~?j^en=&I+0BXTc2%HvP)B;ZFU;uaw4}A`JBk_
z)Ze3&$BB;*+w(f{*-I;{JO+scq^X!7s|AG=a-y)1B7zSGS&9moblS#4m}VuMDCtC+
z3PnXJCrUff(}i9xlyRc06HlFZ=0rIs-gjb;6MLQbz=`rsC{F!R{}t%U37ZpkC-|{m
z(TQqKm^eo#Dmzg{#Hvozn`U7v@&8D&Q~w0FIAIn-efA~0)d?bXVu}-~PB@&X>qK=Y
zYB*8biI1G9DQ;^y(J)<im{u^Ep5OJNt2*L=Red=ACu_TsCNWT_LeG2L8R|RHfZd&F
z<irdoW;)T>i6%}=bE0$DTx@hoQ)YnnPP87H(#(nGPPA~Mr4#dqrLc5%q7|E%e?w_6
zq>U484W*qE{81B)I~YnwA)TC<H&l1hMXFr|y9ss|WK$0()aNxx=ErQk>Bosr*%Y(&
zaiXsi{e<^t!nZ2}gkP*zi>(8lSTSB98RW!ZC#G;-ZR|q~pW~bu>clYa7EwkS`fw*k
z7<{CVmfMxlhBC&9vBE#uuITX$OBpZK34#*^Ckak=;undTgHDy9%eG7V+==NWYwJbG
zfReRmadn*dl3kqm!ihP|hLodYQkeO<+*+9(B%B(<n7&>4%83O|{IOlx?Zm3$%GXXT
za$?PPWg(qZu(RaqZ(r=h5{Y4{6KkDVCw!R`-#D>c_zEXh3t1`1S*&v6+Hw=gw}!HY
zVN}=Gi)Fot+nm_o#6~AJNp*{1`JEG+g<tDur}0)p$Eu91ZkOr~!JUG;oH!!cWBlt%
z*52ntx)c96ao>skP8@LJs1wI{n1`yYj8;BAKiffaCl0fhQ~xsX4tdpx{J0Y*oVe`7
z6(_!T;-nK7n06;lIr;KCoN?l;6XEU34?J4WS(?>KJvG?DYQ`PPk4}`@p-jkEi$BLY
z$AiL=@{{1tg6A1YK?lWOo%l`qUUFjROzZE$FFLU`p3=9wl|HExznkPB{=pnN@uw(P
zc`8WHM)A56H=MZR#9f|s3#8t3;+7K~hGinBlgv3Ce>p+CEy&CL_oVyZP8`3Y`>(M>
z@zzN>S>5u$2`49e$`WR_eP)-SpT~t0ZYL&p$<lg<;t|oyBXNg98=sINJCuOvK`!VH
zW#K)0h;!MYOy0;BZ6NAI%!#;@Kex6#azf)m45~r?(20bI<U<$PiT^rL&|@QEdF;f0
zM(Y!!3%@=+cOt6`*<AWpsTZ6ApZ_fQO7OMd8z<fh$slG)f*A#ApGin&7qS>i9>4zY
zV@S2J3)zL_a3QCVTrL!Lp@<8)rJ6@DuV6mG{DSmQKuAFs3K>e`&!nO*6my}H3zc1X
z&xP;zCYO`e;({dvOB(j2gp}r|fT5HXGOM2TeIXwRmN!}}2>H;3iiVQueugS8RCS@I
z3$<LRCb~_~B$#YinuS<guo}wIE=hLbDTb0Nq`C_=423qeg{KLABv{92bqJ~JLOmfg
zW>JLKH*6XRY3M>DLm65-sfodxy3ovp=2C6pLI)u&1zQQW7W`O{Id3DRtqbi8rM-|k
zRqP#wbQ0_=*hP@Nx(ey$LU%*yA%y=>>+M1x7yfbKz6*U_=;y*l7dE-j--Q7#{bfvJ
zI9872fi4W==k;C7CoX*I;tdq2HX!B40X4oYmO?UEszY2DDujxqcAd}I-Gvb@jC7%X
zE*tOD8RbItS*FL$YHi<~LNeN=zfpx`tPA5@IRAlVybBXunB>9)sg9|cLUFPSQy6V0
z$5)InOX}`&sZ(8;=EBcA6jncXVY&+xXSgs|3}#Aomf&o`F9hcZ(vl9HJCu1Yd@1&H
zGT((4;%$KoU%Rl7hrmvy`A%hn3yXv=c43JNONF!PTNjoI|Hg&oLRJW_5?m>mud`#d
z5Zaq}Dr<zV6<lZN>s=Vw*+GLrJC#{GmG4~G>_WN=`(4=LLc=5G^>-`pbz!S;R=2sZ
zUHA^corb=PQxm>Nu-r})jrX~5Bv7aELKE?T3kO~J!G$v}9CG0>^ZCT`y$gZ!rXw!2
zTxdBi{HX9_%)lwfvzL|=9D0z2mNYmiT}}y}7UQX}%+x!7XFBV`A1+*V;YSzFaZO#I
z$Z~;eWbpGY6dYuk_1H}P7ZHCI{LO{mg<KT8BuJafE?hA<Ut@I5g+E=m$&Inc+}~v#
zoo<@=)O6j2HS0__TzH-^jag^C<-%Vs+!h;}-4$|2kPhz&`P*o%teGBg8@S-_oGn>}
z%LSF^F%^YXxLxqLkfb7`3a<-3?hTrqGx<4d7aqFsFHbcYl7oVA7eX$Cg+~NqE~E^y
zM}^na?4PVRy?X+c=0ZZm1v@iRdBjteX8+HHCqf>(5Fcfy^3;WAoDuio&WtQn=<Qw8
zvJv)|F1!-^cTKNdc;mub7c!{2xBYI@JIikdX33-?vx=N5a;eCoBC8l=SCLHxR9H`?
zH11=``;(Q=C1ywR94adRs&}t2+@4!S9u);d$*Urtii<<-`Be-*nX-1LLM(hLg;6o)
zg5tKb(?%ynR1{^>{;+gbEX7p3r=p^YN-B!0D50W^in1zr!M3D|y+iG#R9?7Fo65_W
zla$h`j#bjq%Bgr?MR^q!R4h578+@Q*-6Vyjo6qv0s$T&nr!kwzE2}tA+QL#zMHLmp
zc3Y~7k~fd_oo-TL%4RwJzSXS4!da`Zsk|~^`ACIbMGAvg!OPvLg4I>j5K^~X#u?rW
z@BTwgQcFc`75}HO_3B+y9hJX%HaS$(RZ&m)q6H=viuF}AP%%@*EENq^G*a=2iceKE
zR?$R7E0ur4qN$2z{4LxvQwvr9Om9xh8K&1qOr^)zxe80inOcf|e5Z15j^$$&{Z$N5
z(MCmE73~=0UQ0Koak8ns@D73<1v?3L7Nl7h6<vkzKW}1{UAjxh9x8eY=_S}(u#X^Z
z`l{$BoV{2bsPe@MHoi8(aoa>vvUKVo6@yiL&amA{LsSe^F<!+4E`fwSO2udupS_#H
zSkrJ7BMd&0$Jdv3zUPj!o>(4ZL?0{IAJ%c4DXeUrsA7_eB2Uae%`{DBqPFVx(^O1R
z!ROqvOjUWLTS=&QtD7|4@IOPvrF_<YUs`6X_(H{Y6+2YSQ88D=8Wn3*%v15Diq$Hf
zd}y7o;w$b472l{>ARZQ};3CrJ*D4&FEej<czRqv4w02&bv_!@A`Ie<BuKa5zq2+S^
zNqf`0lIM^bNh`R)9_e4MR;hRtGfi-rzj2wrRdH>CZb^fjg_U(G_zAdG#d;MRRP4KB
z-N>UdQ?2iWZxVbtFJ-fgcyeUw78QT*)bHR3dQIEd`muF-?&O^+c5!x3GX32;+in$m
zR2(~NImIP=mxsfa1GE&L{!Za7z$%`KpW}xu2UQ$WaaiTu^kDUbitmLSr5_>31-Vje
z)r*Rgs{WcqaxM^qIjzFkFpcD_iXWLkFP3|8PQ_2$<Q_Ej;Aa)*RdjQsyBil&{K7MX
z8=2hrRmE>AUZ{Af;&+}{RK!%oxoRA7tm!W<tBT7^uZllJxz3XYk1ydgxF+OJ73n|g
zcQvxy6y=tR{jIEZZ)Q1iTz?Ad9UgJ{lRZ3vtGKJ;p4j{?s7lj6D(<UzAc|8k_@&h)
zB=3Lv3c7_)F7Us1XZTbER0LJ{MQ^=NPXbHPVM!rT!aU>c(w8YB)hI2a`kmLBimlVK
zJmk5HC(<RRgo>%7>a-naeWYTH-}How!u=rpKW_MLDHMm4wso6k-S@=m8dK+)isvfs
zyk~!z+fIC?V)}N|TNQ6tm`Pr%cq2-eZ!N55aO--K8ztUYa&0k_XLcit8<pG`@s};D
z8`<0_?M4|l;MRZkP{57zKbXqSHDz}rhZ{NF7*xWN%MB`g4PrOHCAS-SM5LbAjiSp<
z`P|4aO37Y!iUq|(A;H3eMFi=#s2jzEzh@}Lg_IC1DOk#lY3XJ?1~=yU%oW{yO0%t;
z@b?8Ne&9xV;S~(!LpMGfR)bB??^$Y}w^VkciW^nk$R0DbaHFLg)!Z<-k?hug71rF%
zCwZor-LSZkFSFgs-FU)W-wm4^b~hUKNK0{}wvbf8>Vnj32&w5tEg^h;8^w>@sN;r1
z6h*MEU_C(^q`CEnC6e%oi$spqfK4)JBf-Xk)SC!t>P9mmIUTz3z7r-!+sX~=E~Tv-
z?c8YXM%T~NJ{BZtBc%B*rM(*+-00-S_q!D8Lv|@0-S}dc!j2nvDV-UH8#meH#=~6-
zN#+)5#fm6B-011X4mWmk1Gv%KjW6Ap??xXt`nvIn8=tztci!={ub&(J-5B7;?fKSf
zGg1aJt20vGT(G1^EnB`!9puJf9@^g}&vj#n8$;cg;KoEZhH+`!80*G3?lDW+aKSO$
zer}9(<I!VV{@uzb5l6fAFYS-Ar1I-GEsMOV$s1wDb5ZWw(|g#d%$}1r$&Ja<YmVqs
z+?XnTX_KVdrn$jhpSy8|x0mL!Om}03n_rJ@<TFK_#km-*UkG6UjV_tkeI7&VWM{GL
zRw}i#e&xmjH@<e`r{gA87rL>?jSbvCZY*|Vi5n~3SjDy2tqj_&EETfMjc<f3cVmSc
z&HGqq?p9pgEkyFwZhY&;Ix%3cHEvK}D^-%6qa42%aI6<GYvxq;+T_M}ZftcUx<&t_
z*i1f5Kl7}fn_-I^Ps&;N?kzTL;{?U#SRcK*i#c>7!6kNMj~jcr;%?k>>nGBEZk*$E
z+(>t0zbFUXIO)bI;Rgi|xpCNyBW@g(Dtk>Vst<aMRZ&hD`uB`nesj*&(;~jAq2G=8
zgYYwMoE7q;VCTGg)6YD>-MHw+C2nugDgGkFl_BX@A-@U!ZnRRrEc}L{ToLkz;8i!S
z3Hj4#y)I<^r+UU-R80Ddd)1AA8$r?UxN+Z&2g2{VaZkwKg0%nVolRCfS57xPhVBxg
z3c3Y*?6rD@_ylS17jkKP7GFMnrtL=~BuZE?A{cceCL}IMGtG_4$-4c&+|q6o_MnJI
zAN{c#89Yex;6KCii5pMdc;?1)LwP0Sh2TrUu5u0MwHt2?o44FT6LkL>J;>xiuS!XI
zJjg6V<QB~0K~@j43FlvkIfcN3>_XTvhX?ET=$~0Exja~z-Ez6KrO%Qq)$(M_YuM!T
zAiu#2czFFvp8`uEAs??wD(XQo4@@2;dvMC3yyroA4=Q+2+=CJxl;jY*l^45}G9Hxj
zptJ|?wNg&(*2`a_m-T?H<ve)bgTi|h8h_wH`|`CZTJ|WfhuS~%prQvY_9&G+sNz9Y
z50;*=R`y`v9)%Bcp1w!<q)BQu4`{i)OX?S0Qq3M%Jp4U8KJviofz5+ID%Pptfw@&S
zy9Y}irlp86r;zGFbq~JXqYQhP#zIn4jA>uXqu-rDQpW>_2aQCpYqX|$P|x7BR6M9J
z)du_)G*w}*hW}q{<NuF0^Po9BdokOK79O;e9JcnNl?Sao_|t>y%;9D0#~!rtpe>j6
zr_6)rSlTfm9&GVos|OuC=;*;J4_157$%D=wEas#<=;A?F52jH6!P3ox?jC&R!B54l
zJp}y@>rfARa+7$_+k-wL4)&n05Sk72pr7#mf&&bl9ohPcR6q4#kfER0qYM$w;b=g!
zVIB~#?@@+}KEi{M9*hz`-sm-2$QTdC8p=2!9pAIj$pqmOJ(y&)PUdo#)&rO-$}|r?
z_h7owI>&<<2A|2S3ZE_bg`qRNxx(jp@TCXy4gG5mz7oE`P)hGLbD)JDEE1*l4ZXV5
zgJm8p_h1FL!RwkeA6viScil2}&Xh3^%$U5AyZxRXy#0n*+oQ1QTMw{T+2Fw%57v6H
zPF94LG-EL9x&I5=i<M2==)oorb~;kN<0^~i&0<M2`xeJG54L----81l?4X$kdp+3g
z!7i@;dp43iJYM!H42e|^%0jYF^mGsE>{Uj#twlWO!66TR_u!%jho$vbncWc&jtV)(
zU9?wWV8=Z;;lcMFoTSce%zY>ZX9Q0R{vh~nZ=4nWqade$PFA1fyeLBq{elO-2>-tw
z^_xr~y25cu=6i)lhX<D>tIQH7!eE%ms~%kA7TT-4OU}Z*$_)>0dQi@b_q`}R-*j!C
z`IZNNd2ri<J08A8)SA_cyB^&0Am%~bgTFnf8!)qYJ^XDX4y-h>-1p#t!JR@}9;iax
zhVJ2k`Hh9f?Caya3_k%OK@UQP680cs@F-)DE(g|HG!LG6@Z5tk4okv=heG}pr1Hpv
z#|HmT$P*8q3VBw?L4z0KlaGmJ053gwCDqr08NB+W-UxpynEjDC$%`HP^k_4Bkx2|P
z3sTAA#oL*BQ#LQ)MRqT8c=>2JQ!z2f=|w>=)E#=3a(R*4=#|Hdyu$Md<~Q^LUQBLe
zr7=q(FA9rZM6jsf%()gey(dF(l;U2L5MENSlwfJWGJ>=z>&5D>7LpIVDDOp@7m61Z
zy!g<IYF?PUsOZ(dc2@DCsu$6Vwn|=97P5bG#=e(qoinC1yK39DSK(c#$zGVfsN;ph
z3yT+4hLosTQ_v=uB53zwc+nI#v7~xYT}1L4LQd^f$ZH9&?Zrnzu83GyBB{sN2I@Dc
zHc8TvFI*<p_o6vZ>0UJOqM;X!ylCu&d#_TaTb2TsZB4u&HuWMoLkdYVsg}HIBX7x*
zzZZPH)N+&KP0iF}nN$9GW6yfk_OTajy!uCNTQ4SfG0}^5UbOe3gBKmW80$r-rnQq7
zoxK?3#k0K%OBXMCdeO^^u3pUi(bUb$tIFo?!ue0J9$x+GO6ruf-eP}ow|Rh&K7xG(
z`w8|J<exLN8R*3)UXXk$SZJR@K3EKf2oCjPm=~W3XAEOxl;K{C5M`v`D8bQ!bo(ya
z-6iz<ug7_juW#yj!OaUTleodWsCCqYr`9Q6{b9oU{xf~<)t{?2)yseETBmvW$XN@?
zbT7uYwagHlDah(4H?3KmrY|IKU(w!+xn9ikf+CA!r;cArb-v(F{q%2=3%vMRx-9f!
zk&wk+9Q$7XW>s~cvV<FNpR&}8W!#zjlrH-eR#$kj(u=79ObcKYH?S8keR$==w_dFA
z;;I+dy!sQO)_U=s7n_Bz6I}1b1|b`{a5=1-gb&-N(0Gd%TbX3;t~B#DFSdJez>9-C
zw7vLYo{43jke!0Nyx1*dkKkTG+RWXj5Ywf)pU2Lq+N=&vvmWx|tQS9eaoCF^Oza`+
zQ9(8x6LMVegy8pHob=+9a9VzL-b_4ApN4XVD=s2ko%4cD&U^8b(fYG7#061)F^qqe
z>Th2BE~JZixa7sG&8EwOR|NkM+@7dO{ZCqY@tY67`*6dHn_m3w#Xme8vLxT~LTl={
z<HcW6y)DQ~scfQt*Nb~%aH)Zv)%#vN@S>#;t$g@so7w3_*oz2{?rmn5pepG0!Xt#b
z*9)I;zhFQxXtaieY~QCuy@+wie5mL{oFjTs%7@Lp9rTdkDNcsl5UTRfi+{a%#MKW~
zdF;h&A^&;tM95RY7d$|O(B`?2^ZS&SLS6~}vrl2u8=lgon!$%mKHVWpk`EaT{%=k*
zmCRDjBG@fUwJfJ?*?fQx*?q|2LrxzG`9P5+mympdxqZlE=y`ouGf_9lFG>Nyf`a@n
z74^bC6!D>`VP9NGF~RqIc$`#)HYKE5(y)26Phn<COIphKP*w<)az4B-`~$)AhF(F)
z+q(8jK2-L>Ce<o}r%iTtWU1;yHBn50RFZ|5eX#goy=9|f_36)KduMO=A;pJOAFBIM
zL-Nzahnhar@}a&|YYWyDWF|inQpX2}kcJ(T-{riXRMP|%A4&}UpWeWSh9c6ek&woM
zma#RP3TbAvHus^0!D-XlhmU>u(ueszwDF;>4+DMp#D{i1wD+Nd4;>ljY-_sL6x(h6
zXO5*vNoyw`diwtN7g=W?x(M$o*iEpzU=Kl_&^8y=Piwt==<P!vANm@)eR5JigZCFQ
zK(J*S-TqS_hWe27MV3K6{j&35L6RXtTAZ^E^WihGAMV2hA13<v{2V>1k%FUq7%gOs
z595T46{NulYtndw?{y?i@?o-6XA4ddoGv(3aGDRF3t`{iSL?CO@L{GXvkcukGU*G0
z&+%cd!RHCNST5-+9~Ss9>s!+=K78#1lex`@?LI8@VUgG@7F;2?#D}FqIMy;BzA^Z6
zA709X<yZQ!%7@iF`AgF#!8L;GeON1Gogh81%Ld^a4J9^5pT&1PX^67L(6<V)=CT$`
zS9UPZQr+ppE+2MF%m)M+{2m|n8hoFSbRYH$Y4Td%DhG|$Lp~ff_z@qD3Ln41N}J=t
zPx$b?4=076H7rm0aN6KM_;5z}^z3@CAAL9{)t>|}`0%q~dEN(mx<Z?_IcpIomA3rq
zL;hUJ9PXkImwbrQ(ud1FT=C&AA8z~b2XlDN@~02ieYh(8nh*W!+F7XI@ZqKpV?VU>
ztw6VU<|&xQvZ#4B;)6<QcYN>{gNvSDn(y*F-zS;no)3Q;{2w9reRv?mY3P3yw5ZaH
z9o;^7gnNDP3Gw?7GFk&df?R?N78>ukVGH{Z@qvU2G46xL^PUg?`H<j}l~eexqDMj=
z`tYxicIgUr{ycI-y7I(_r#|E}*M2Ve%!fB89jva)YwL?zBrkmU?o(ZP%_bk}_~G#5
ztq&ResOi^_uOvS*`ccu3N`7P#g<^g`G8;ULA6fm#<_9*I;K$0>=6rr+_hU{z8<iY>
z<n-f%4W?XTkXta%JL3(eyng+`8Z_exXUY>(0Y3`*QAj)&^JCC2rozG}MNCEfAQlx2
zhE4BDYjMF6ew6g<U*Jm#ejr#{u#6vNg|M}pkoWzV(b&prd8t+q{7~?(g8G|JIlIb!
zB>Q2Op{w}u*9%is!D@b(givYQ-C;2@U}b)8>;E~jiDLI7#gA0xEn;G+A*8zCny~5S
zVF$(Q`7_oM<Jy8B39dMRx_;F2qgMdE14#2j@#BggfA~?~j|P6s^kbGE4gF~3$6!B(
zNUz2W-j5!BH1VUUD9!v>R@~7^cym8m_|ejjR#Ih<9sFqR$H#u&SNOlPdV3*l1=|V!
z-8AK9ef<F-EFJxz!Tr7HY}j}4qpR?4f+L&!@A_U(sSXtECD_}KK0@fHuaJIz^cOO~
z(9?5g{6zSthB8RVl2X>8ehl+t&jS0|bxChOw14Kua6d-)(Ql^y-!ztyVmU!@lpmuF
z4`YOk^<$i&j2Ck9YNm-oCiyX0$P_=O37INLpTD$A`ds*Q!5M~LwqCZ`ethA_5kHP{
zdyBrzk8k{#D}0_GUkaJ;$Jau>5~R-sem*=(&(cCeStMk!A4`NRHS|({XIk#Z3aReq
z(IjNO(Ynfy)dv68k2QX*mFhY_7&ehZG%J^~!H<o8Y%(mj3Hi>C&3<g*iu{_9Wvhr!
zOX{n<-LTx@$4=q93?+U#GY$4gb+6z)Khpi!@5cc@4*GG(kHezR9hnpyk`%x2KV+31
zkFm**lYX4?!`<9=g8TVNhI#j_-%E8}p%jXz{m5NC<wrlxiJu?*IK%h{)nGa6N8quk
zUApNfX`;i+LVot+ydM`hYpGr|T7MPtn;*X$%7cgcR=FhAUNiL9dDvc>uKID!k9+~-
z58zKfuKSVj<Dnln#O#hAcm25O$1NW0qVOk1w|N5WXI+$TD!AF6X}rGo?)mW#j|(yQ
z+m8uOlPTT)zz?S%F%eyYwDb#6Ib|UpL-z{t3D&->KNu(AM^LIE!zS!U#Nbh$2e#_}
ziH;kJ=EvSY^>?`c>&GLeF@QV)JT_XN`|+Q_p9py>_)PFZZGC}W`0>(@SAM+q;|<U7
z0b~y7yXdVSNkTFR@))1CJ6lHKBs9n(JX-(=AggeSE!t$v9zc!&at4q~L@E;|W@BM%
z-x1l4+x0<TyE1rk*k`9Jc?0~{s(C}hYy|=+7(n>|Dg;m{fWiS33*fx~5*d?=1W;65
zIq&Id@69Ln+brA_#YKESfD*>&C54m{EG<|jfU-i$39|d@c^N)1c(YSkJ`A8@0F47^
z5<sN@vdzk13BVcvUmsan%&G)XRY)~KlhHRh0JFh6b=SXC*rZyI6X})B9zaR}sR2|s
zY(5fFBY>JhY6;dhTC*Or)Di9wtZV4IFJ($IxDr5pgEt7Eq3}kAQgTI7Q{lV>(ItRp
z0W=Swg($59_?US%EL#bwI8{F`+6Zqi*jBJz0ME|;@2yoG0_Z4WC&A8w>@}s4zM5SF
z=w>M0h4cuZr;ro%bb~$t^bO$C00srnF91*HTASO~`Yv4|=^wxVQOE}h`6PhVooc<e
zy4K(Th6E5jWSaQeJT!n|0gMe`TmYX1Fg$?K;(vrO?ntgw%QXJNd{lt<p<7sfNLPqs
z0yv!2Htn@(d;k*ym@M`ajb4)i*rb`Z<WD)a&;0LCrYWMYDz1O@e;&YeZru=ahcF|6
znE`whM4cdJ1u#2+B0&@l;)?+01h6%LZ2|0TYndCsR{<;#J}-bTg;1X#z|cl%Bwq)x
zFo1y-YHti+k&x8^d>g>x0DiZnED4~)hp9^g`W-zi%L4eu;LG2U09G2xDw15f*_r@a
zS4mkHz?9kcwbGjR(=^_C!#i}=2e3gD-qAzLO##e*V*gIYWel4G@Xxkyk?QSqWqSZS
znDAW5VTK*Rt^ksbqy+-l9l)LdZU%5GfW6FZ0Dmx(D^2OoEa?IK5WtxL_6KkvfP(?t
zyI?vlcu4TD;1R*2f;2eBy>ZAy!g4~y?*lj~<dk7^I-p-DromZJymc*YmRf$~5=-@`
z0DcYNw*Y=N?9T^q!Qj6H;C^U%=l^#RuLxcgyd-#;lijBWz`GKNbbeLzYy1=tLh-tg
z8!}l|{|ex?D1N~^0dQMVzx&QUfWHIy=N-RbQia?P;DHdQp}PWj*<6p!Es96bE9f(9
z7}BV)<?FSkU;r=Dl@L#W`xX0sg&5)C5I`(|cmSD#$Q*>m6C=&&Hh|9im51Do`<4HM
z{~N#~egp(CYQMrJmaq0JKkiqa1n@Kfl4pV>&jYwCO|JrY9l%>de<OOH14^~@v`1o)
zA*hd%6hy|L?tz8XEJ0)qB6kpZg1Vn<(gd;O(Ak5?AxcicT!K{&D70j2-XQV?^$1zb
zA4J0gN<sQLp!7bV6bOQYk{1%UB!#7E(gCGd5Mxf6DhE*|i1&gh9>lE)rV>Gv45CyJ
z?jt5vO9xRVh=-Z&7uu!q0a;D9WGoxh|1>BU#Mn&s_l2|iK@jB)UO~u*f)#_PWatZ%
z?fltB)gWpG^$)~qL70L_4r2KM#TJA;2y+k?sagepKcE~qps+P1h}0lz1o3vIg;k2x
z#b7~^+O(<3<vWo^!lv3m{SIi}@lA9DQ8$QPLF^8qUJz+PObB9P5K0hjzBKg>qF)g8
zgJ{5XiP9>F)<HB1qHz#SL}?~S<EB9zTdwzNE=mi*mPRX^J|+*MD-+ei+E(;VMr%7E
z?Stqbq@y5zt50t%ou%4^>%Kzw-;KEnqKAmA_7c)Fh;{q2y|eEfL?5G-V*elp1ToT3
z1_~K0_(>3-8u}n1`}SoUVkkp{7$*EPLm4h)gy7K|rcpvh3yu+F0Aq!W6C5u%XJ58S
zK}-%}X%NdqnG(d@Am#-zRjSj1_*}?zp7Vv!&kP|m1>a3=w(u{4m}A&b|1yZAoO+@b
z1~K2zzY1c3@UIPpDP1Idv7syxa(X$w;XVmsa}ZmCSRvx-AifP^rD3@$h$WKSHKME+
zTr0Tl9ZKs4;f!RXkWGT$1(88kjr!K0{=+sBmTl6yJ%}AfubsyF?g?UV5ch+45X8P9
z(u4Rlh~I+PAH)G3(LtOG;$RSmg7_hbGdvvDnhpnXirtIb`{lG93F0XCZB84@F&;z)
zKOy9M!IK>KJ2MT~<+OBkA5f-StbOlVv*oay<vAyNYM@~9%|)i4g1CImbRmeJgE%jT
zWcxAJq=O2N&0m5jJJ7-M&pq?+L0k;t&mgV`c_TkA2hppW^%@gf*>WWa8e9$H52@yE
zV4+B#9R0xjq||HX8$sL*;_n~=2kdzsnr{X1mk~3ow+()WrzV5n6Vl$|D6z%*Pf-6i
z(1<)XXAmwPTtWOBgvwJ>5V0WQL3o1j1`!M*6ofAbe-H}~n*%{qUuAimuD@`Q82GGC
z|4DVi;x-aQG>DDkEsT)<$Cb5p{M}qNi|uZ@Sqq|Py7~GKmP8ONOu}a$TOS4SIEa@)
zyb9tQ{$e?&?Y|(N1o1S8n%8xM=R%$d212G6JPCWPEU7=+UI+1p*$(OJ#r)I$Z4fuw
zTQh`oWJwY-H{HSjGKKWD$Q(izAz1~p2~tN0*$ti}geF#7&Jb2*ufwK1A><9=;}F_}
zkS~P%Ayf>ZQV0b?C>TOVlckT(_Tux@LLn3j;k^*Z3x`l7gm#N9MWssR*wvKcA(TF-
z+`pAlE`+8{?Il7e8A2(FQtg&vr^r%9s%1l%x>m2!{{0X>2%&t4znZXD2;svJwy&|z
zw%d<ZOJ(cm7PiVE{mNdg5GHK4R0*MK2-QL`g@DYq>Kx*{H93S7A?6S)Ay`8gy2yfq
z7B<<0vuY2a_$uC!XGs-HHr=0@TEpNqL&%t?HpSW@d=x^R5F8;i451O@JYcCC(jUlN
zKZJTAq=j(1f-TKtRYKU%*irHGRPx!A9SuSt+7Bv?ncfgOr`TF>rXe&7p}APHSDS+h
zjoXf}nua*|RMNZym6n`Z2(3e?+{AHphvTA}a(btwEpy9JLbww``w%*WusMV+T#FDo
zh46U@)9F8iE+GsI;S<j5Y{sr3bPMTQZb={g>OptmBt1gtDZEz*y@m7<?8_v#(*L~e
zC)NIf0|Y64p(cGA!k`ewgfKRQ!J?nJZ=2~c4Pib*7-m?G3gNR5hD&us2qO*sQU_(`
zW&Q8U(S{PZoNZhPa|i1`sGe0l%XrZz2u>87WLQoPVT$mnhB7ULwvF|_fM$d+llw&U
zS%R}e_#%W!d=7c`<T)XfxuFlbB7_r2o*Tlv5WW<%`5`P8@|EBML0Wz-WTD`q5a#F6
z|2@6LXk8k@GU4AC%JL8f<kM|fR`LiEeYMg0t&lY#tQ9ggu1|Ko@C}B|Mj@L*_|8!H
z<MXY;_l1xi!Zt2V2s=X9DdOG`b{Uq7hw4kVJA^%=tdKV?Qt3Y>!^jLt`$ISx!YOGw
zAagkw;=RE7t~eaRkr0j=evS({76N~H&Q_KaqI}QobVaY84&et;{uDeD!p}n3bXLfZ
zg6Bf`NyxkTvh{oj7ee?&#9sw33;rhfdk7bWToR;x^Yo-E!v7GwDtOIkZ9F{by6_u@
zax;Wm2LDUQ?F;6+A>8AsDU9M_{2jtSJeI@A6vq7!9)u7MAtII!v=pb&*A;>qf;$9{
zD1JlthTt>!hZFU^6bK<`C?O$y!d{fix8M9Egr}m!LWmnSnvg^Y4@3A@_^hqEpGP4)
zmg;|o<(#&7Cj7ObJQwmp@MQ?Egxr$-_D1+y!3<%2O<9t{7$HjLFtUVEAdG_2lvOaF
zU^YR7kzELT<p?9E@LYnq1@joKdBZqVN8h)v4w&+Xk!ONVPV97iw$V~ZYziBeMZzd*
z@M2*!HtEwW5k|={%7yWM7&RS^p$C;xVSJjmR_QR>WJ@h0ylfcWxhWLyj!pd_jPhZm
zg`tE|A&d{hs2)a*Fz#ixR1Cu!hAoUrVN?#Iiip&wWlJVj4WpVUCc$K*)hxsk#+oM<
zn%Toh2_rR(MwhKy7dk#JV4rhP*>q4j@S^5V2bG#()C!|+81<f*YKQSr7>+PrN-OQ1
z2bDU~k>uiS%ZisZ>v49Y9d-9wmld-7QOH_93}VYL8VG49NTrdG#$hxO(p0dSU~@s*
zv<QRW97tM)(YI6<l3MfaZNg|9hB;4mOP=iQ!e}4n6MgaQEjrLRj3bY6^f5Yx`D6)P
zd5AwA@*V_qW%d$K66h92_b}8L+%fbBqh}b8Bls_ZUSafRt|Bl+_@EN>l_m3p(Jzet
zVH^$PSQrDs7#POFFcyXJ3D+o$iD66%V^A2~HabRx@#cnOa2P|v7|P-5*@N{RpM^0@
zc#UNyD#OG0YMCj2-L%hZT1JL3DvZ(6iyg-a86!BB2|T1w952-gVSLcQ!74|Y9LAI|
zW`r?QTulvQdKh!FD|9<8jL${vSuc&%y7khi&kAF981usTGK??8a_&3KuFMgl7O`!A
zVPiZrp3m;wSIbNnt~pp;5XRS1Wh+Hi7l*MVjICj83u9>*%ea5SSR2MSVO*+Yq1j5Y
zUoHt*!FXy~*45PYRbi}_D*3lUQV%KXB!G=!Yzkw&5!D7E9IjW3THl4SnUnq5!Cnk<
zi*#gGnZWH~><A-0jQuj@onh<|!inz+W4G|Zl^v|I><wd|C~Xeui8>(BGMPt&927hh
z#^EsT)OK(ppWHEXM2>Pij1ytp3iIV$_&$u2Vf+@x?_r#h37!e#Y#677)7uYW6oSIY
zf0PyfDU6>b_;WJ!2pRgk%<e)MoKDMcOic1GVf<>${b`!xqImlwjH`?)jLS0RE8J!q
z9bC|LhZGKUO#)`$8$$jRye^guo>REV{dvbs|F=0K3C0!1U76iK63jh*1ccG*j+st4
zC{ubrj0a&jrIj8y5oUk}s&sdU5#Mh=b4V$5)8P%n7luEK06#t=$Q(g1j8GU)co>Ee
z4kIGdc^F1iHiJfy|4dwFiqVNEJP`7KnkB&z59y<GW3&7l#v>k#VQ}wp=>H@VPKWFD
zER5%2WQgc{?1gxEBS@bw!+0f}X0L^CEKcfe7z~wrn|mNBqVL0uJjPqp;?P+l$QnWE
zh#pn82oOPG@yuS?Bghp&?udRs<%l4s5PD!Wk8qOw5#)^^pH#VsjDaFcfd~p3HiaVK
zyeJllps0w&A}A3-$q3$yptvXui3Yz`c5r)_is%RUycaeu1gm8tC>ue!2;PtAo4*oU
zBPbt1#R%RVt(+`VQ9;7~kom9g;AH86t+cNkK^5s(Rge)<Opd@D!ORF|Mf8tFO9X8r
zXcvJs0$T+32vQ<Qi$ICMvCEtqL9GaCM^HV2)tgK;BB&X`v;Ouq)zWt4S3cNfUR=xm
zQ3Q2p9KqC;sjm+yG^;Cp>qT(rT<t2WQmbt;rH)9cA3=i%T13z?f`$<^ilCX8HIBgY
zRcez6nnv(uW?JI`_75IdOdHY)tW3?m%iKJI<h7|Rblzuxy%kT(8`3`JyjG>QmhRN4
zw4uYYwMg1W(1GXe2>M3QF@jDJ^o(HSBztEWrCS8uBj_T$t00GdvL=-=_mC<B)^?gF
z7FObq&AlS%Eq!|xRygH;5%iB>Tm<7I7!bigHc3vpFHQX<f*}zMjo?%IUz*A?NXTG8
zMl~z~y5%S%BKS=Ba6yU%2G}_-jyOuZ(Pp%eF%kTF!!lNQ=UsZ=2@y;&Y$ghs6v1Re
zdAiXwHG*kU{hZ5f=+lKTll0KRj@c1>5y9CAevDuaw_gO?BG?|mya>LGU`+&TBbXn-
zR}n0YU|9qemZmO<V6iwM|5}uVf{O$h<m9f_C9-zp-*CfkG_8zaRRqh0uMp(2QeVvt
zyvxk}@U3L~9nYU#-!tnX*cibk8EC!W1|Bkp6>dVdeiy-(2-uN)a|G`u#eK4s`}VNH
zgzt!8X9Nei<z$EKieRs753b|x2=>UPW&GwRHR*6)1nJVcUyw_1KnVRGmPs9t;6wyR
zgdY`T-(y19z1jf#_Ys_m;B*A+ds6yx77XKu2+nZ(4Y1RG?H5)?$mE=h;HL<j5x64w
zIfC;MT#Mk(2rfkMO9VV*F3D#2HG+#Waqf!WMEN}eE*z^2tkM}=7Gv69iQo@|UzHdr
zUXS30*#9E|+>GEaE?h19E%Dj%u)-y{9l;$D?+V`InXs@zn}^F&|CX&zeqWqCkjZj^
zxHHuV+!4e?_ZZm-3h_qZGZcRW0pZL!r_U0SYB++35T+%{MU>>kIl%}LGR=QwWtrHA
za$M8wQ3Q;ZbLZ$!xPLg=DBeWzEQ04e)}k01#fu1DMo=S)no+!>K?FsjC`z*kF88%(
ziXwAVCvPLjAcQ<Aij2b3``KB|5=GW1az&9lifmClu43oA5wk}D;VZgiq{3H8=7{QV
zip&|+U!=%480Lv0Zxnsf(+WkAFN)d4tOW$~3+}F0iwaA@C~mLT3A+@If_{2NZN;K^
zFN$hWn4*{-wH1$|Toms|Q6h?xQShl&rJ^Vu)!$aha&5VZSSE_HQQUp0^H*)`A4E|;
zii%NGilPGN+t1EOK8(WGSDz8zEJozGl_lCL;)>%|je^M5f0vt*B{05WGewA5&=Q4J
z2+eF!bm(WdN3n208eRR+#-18Q^{D>hNLHDIT2a)FqOT<3qbTY`(ISeLQ8=Qg8%4t?
z8bwi0vQa+@zE6`$NRz4}$cb>222l)KVB(DEvvCy7xQJ0(6N!OJQ)XkiiG*=B7fWWK
zRTQnG=pw80aTIMNq)t(^jiQ}QuwxYM#h9ToPWtZ<)nDsL!YUsM$00h4l6=eDHHvOg
zbdRD3CnDqW^`=j2J80RHHj=>Jf_mS>O4fF1bk#44{xa@>C_a@8?Bny_WSXCF3T^D`
zqP9VzbJm03%`vL~ykS@ro1@qg#b;3rk77g=Bcu2-iuqBD;s%Riauidd7{d+O-#$@r
zESHZS_UkYD94|vm5M)Z39KK6*QdECaDh;MaF^##6;tPrG^C)JChv`ww5M`!d@wRqO
zfyv=c;2TRx=5QY#R^~-9_uZuGTj`v;owN8ViUm=uh+<_FU&}y?qFBsbVeBPNa7h$P
zqgWQjH?n+;oFd~{F4a5-b<UiB+}6G-iq%o9i(<WW|5hflhEqOezIDaULD!1H>1@!=
zZ2C?UvQco8<bgUJay7R`u`P;QQT!Ff_9%8laW0CVqSzV5t|(4LaXO0KQS6E0NEAoq
z_~n%MMzN0vV9b^-$vGUw{wNNJaxjWRLfEPgv0s0uEz?fI<Lg)y$D=qQM-xvSd|mAK
z9MO?>l9{Pji&cuW{DFJ&mieqWKO?;8h%8iojADZwTrb-EEK~kHii=U47k)wT7iMOw
z<yRSkIr&XQrsWdPS5f@Q&Bpz_-+o1Q)F0B?xWE0XRIdp#El*ZkuZ!gk!JA^njyy};
zj^a)ffhdBq(08M7N8yR$UKD>v@lO=@qfliDI10z*-gqExonr42T;Dd0P4k>tyyDp>
zGi9E6;$rd36i7l*grj&uZ&5^|h(_@+ihrYsNmPj_c=R!<codo_<lH&*%%LCg=#Jt)
zIZ<%ia8g~`r7<&H4xRy?$>w<>_*`(2T|cwE6i)I=2!nqcMTQtg#4s|3q!=>B&^Cs4
zF=UD%a}3pDFvXB1hO99Zi*ZXJTMURHcMN%AnBCTqT`*@1XDg)Ti1977DI~;PF%(#=
zkmQXaUkrs~C=x?{iZK+7p->Ea?xwJNQN94WLfVa{jz{HFsgSUhIy)8>4;v0E#bYQD
zL%A5<m!^_2l!;+o*3?oll#W3iZ=o>@d$E*_;rqi1U40Nk`4}q2P&tMQV*g<b6(vsg
zr6tGW=p<Dn?5Z&^{+s-cBw-MfV=%{1FNU-jEHPMPNR6R-3^uV(5wyoZKkU_eu|ogs
zRU?L)F?<w5ofv8vbEz$aQOz8!Pt75gbw%ti!DxpSMxw+}KZa&8G>@Tyq^nU3jm4}X
z!#ko}xSMjfd}@;zn#RD4y-PI%;EY<t&@zUP#d9l}Z)*nsbz0v>`ZSp(2H8e3#$N2(
zK86l4{AEk)&-@g(b&R1K`^M0Tc{`$Xj-iX_Ge%jv#z3sDq)kb(_K2Zp3?zM}Z?72o
zh*@tDQ`<QlZ!I*YLBANtTQ_#FIv|FDF`TfaeG<c9MpfMQsbI#UX@j`sil)^+q6~>)
zXbi(-EE;?!{>!(hHC!yazO_&s6~kz*Zwx167!$+T7`}}0p`#cV!=MIflNp1M@q!a#
zm?(rzlNfe^S|t5frB01uW(>1pAfFb)=R&3nQkfxSe1Td$jwrKZn8Ouco%%%#DVvkG
zwn-_qI(4on^90#+>POR8F)WB-Qw-n5@O2CeW1!jE7#78_IELjhtcYQ~)w)D*nc&hG
zUam@|_>ELgRJN0^q-EW-l@9Bg7*@rwI)-m!{5q6Eaq6m6BF)N_tF7L(uVb$mHt;|w
zSNrgKD}TH}vQetzjwqXB*b>9u81}Jy4BKMZEu(CYfqr%hlI&oFM-&p4U0j_UI^QF$
zdyXhc_w4C0?3a$mVmJ`vtx{<$hhsP>oNtahB!s<=#Bfyjyc)U<Lp@H1mF@I@f=l+f
z9{H&lPRH<D48Kc;e~^LB#c(Eu^i`>6W$vHUQ+|}paMnM?@N*33C7HiSYoEGl7dT4Q
zG(NF}L;M<pvzd+LVhoqKTVl8!!((sS<rqKfaV>@`Ql;{T5Pe3gQvZzMI*(Zylw+~=
zW(>C^cn-=%`E^w)*ZNKjcVl=U<8tTR<N4}{@{d&ij^Wv_mXWO-RPM_Hk<i8&1J}YO
z3f+2Q@WxP7Lop4$82m9Panz3^5YsOv<cTA196{ls7{W0`Vu;4@B8Da1Quqw;SPWVW
zi5OaSPl@yV+%sjZEp2!^N0|rqhhjth-x!}-llDmPvEYA#Phxl~gssnnJm=Bfs1~a)
zV|XRqUkhf9>%+Z?;jL6NNR>)b92tdYGL+0hvIrhqW6Eaeh$Fl39D+Foa~Z9<<9OF4
zUmW@4_%M!&aTJK7U>xP**!8EQ)l*xcIG>egD;CE;-R*_rC?ce291V{<M)$B2-;1Mo
z93|o?8OQ3JwlZR0O0dKeTWKM|JtjI~DI3Siktx6LF}*MTKZwILDy8I0bNM(bh?4wN
zH>(s!<v6OxQ6r9edrej1u*Uh+K3ml|7Cg08W3M=p<2Zjrv50@Oa8}FiH8tF6dF!;<
z#NIB*jwwP?1)FS1t{F$IIO>YG+HtfPl~N}Thg3g`W4W5bscqx)YM$7d{%7+XQR>C@
zhufq{_pF7IO<7YLFavS?7RT>#G>W4!=N`wmaWsjeX&fWs7#T;iIGV@#PDb?O5OK7O
zqhlPM;%F5|>p0rP(Ke1;u9S}r<bVGss44B@XwP-|F{9U&!bteIn+|b4do3mFQH92x
z<LDAc_c(gQ(KU{4()Z<WX110)s?dx!EIs4;V{>{*>pQWx@IEp-8uX82KpaEk7#7FC
zI6jH<S%@iv<M>p{pg8D(3j3CsVPP0UMBzaDQth9KtKotSfR-%uIVz6Pam<V3%Q(iw
zF*c6LaZHh>ahyUN6XSeNV9NM7pLnTzeiuADPLinTd}<ui;+Pr7tT;ZGSx=8+h7iU;
zO9sP^Ow?>i(HC*diQ`%`$GcqdmF06~IMZ}JSM%feDvo7we8ZKE<LfvU#j!Z9zx|wU
z7skO6X~skmm&hnfr8|S<E72(~m+A^`T8W3fOyP_SdzB=|muja?-J{ByI5xzwF^;ud
zoukS+nhmj2U(Y>uR55Q(+Z4xlaU751L>!yr*b>LyIQB6Qar7Tz-yX*fZi%Y)Z4A|I
zO5X0+Df+HBc5`DFPRoDIPTUj6-4b<Zf2L_FZPMe|AIIT1j)=_xCarqfA>jw(Sf4{-
z7rtw?Y*6oeG>&7O!Vvpcxl_NnkeLomkLr9M$H_Q;jN@D!rzC);L+oecI333i5(zt=
z;YJ-{-xIPBS>^10isR=vF2wOm95iN^^U{~2b5PFWSEfC8Dl?GWG?iU0#&Ic*hj9!U
zXTQvC8Am9N-senz#Bnu_dvW~D6^!Fg?&s0=zv8$qg#4zE8*vQ!(Zp(j?6zABY`mS-
z+tPGL@UCIc_d|VO&-xEH#!izrj{9*u;Mpv@%^64Zn8Oo?OR8!d7tfhk+)`be=J1@c
z(Z4SazbF9-H5kX4arQeq9V2|^-mlEzI3n~Tk<+IZM~q8Z-x?R}JjTw^6VjbAkpIgw
zMjVgh_%Dvk8nS43BCRjucooM}Zo)X8i$ZTN;xG?LW5-r^_1AyD7CnQ8cgmYM-bzRu
zrO<eLlIU#8s3Fa4%_LPul2t=C4Y@Sr)&NbPcn-nrf)B1_p^{TL39ETD<ki3t3v2pB
z@(C8ukY5NDniUjYNW<Onb}H8K_98N9#wzx?<LvKgD6Zj04d*nJ&`?rCcMUx>l+sXI
zLtPE^G?dX$R)blCMbke)%4w*mp^~P5ro6A=0}bUhRM2p1jp;)Tg+6k0equZRSpNv%
zxwkU=s<vvPSJA+xs-p0NiO&!-i4z(mYsmAT-o>inH_gn}8bWM>cEJ=4sY3ESwN>Yc
zg%w)X)KE*@*49u*(?8KZ()3Tgda7-q%jOV;pJ=H)>}fJqLk*2IG&p2d1nY~~KsY}y
z8f$2xp|ysOH8j=q&#4wvwj|TOnULlhTDVf0EKFfjOASXxrnJ&fd11<h`}Q`RW0Jjt
zn6>4&J1y-rwAV1YRqEaamf<cN{dCmONyC98OJ@yTG<21ujc=JsV}5ATrkiA#q^E{n
z3_!!z8hUH!qhYd!DH{4}=%?W`4Z}6`*DyfCP=*mU4b*Vuw(V05gJ^l%_KAiuMQwa!
z<zObKsBMU*-#xcCb8@F;rp95@f~BTmntlV|kZ(-qpQnz{FjA@$G>l@v8sAB08%GZs
ziuSgTIjW3hoX>2u<gJ1Q+~&m>&Eqv>>S^bQ6E%DkF-_vp;WVx2X=lf&8m4KOt>Fs|
zpKF+|VU{@T@Z2^-!%Pj;d)aAuv8at<5A9`7$&*ayueX`!X!w!_haBW{H4x_sZtrEE
zuVL;khwFLjS4?jo`{^{tLJf;F?BrT&SggUj%=E2>H5!&^SgK)}hHo@@wwYIISS~(`
z)vUEb1Lym?r@eGO{h<@9G_2O}hX0}KX{RMKvva9wt%eO6HcCp@X;{z9@PEF`)5cvi
zZ<0~AXxOUZJK>uJIW!-%xQz$SMe}wIJGjK6P$!{hCTh2aJsQr4x4jznX*kRwH2e`Z
zrOQ|cr2Bp`U^WhFI3yY7QnEXPJgVWChLajjX*jOo1kV^eT6@_UGpEB$_TKN{L>L3@
zPs@7!pn+kt%9L{AXT>?E!>E4J@Uw=e8lGu5uc2E5#}x*n;ev)$Z5({L&o3H&)sHp(
zO+dd3UJ|^>{npw+d+L`(q5V}2*EIait*aq(&y+tkv{CH0G+dYJ4GlLn4DOz?@Tfxl
zPRDG2X}B#-cbJEc*>)UN?n;$??{TBHOeMLm;em(`H8?f6G(<E+HK^j;!^~@NYsk9N
zl3KP-a`zOU2ET@&hLDDzjw-_|rUeY29Fz{j8fZp)@&`win6zq!O<YLVmZ`@&W=jY^
z+cDd}8XgIMEcit5KOTA&(>N$6LRb5{r5wy<d9LAwhL;*%@!Xg|r37AcYiTH$K%oTQ
zYRHg4_5^Yykd#2i1hOQMHGxbC{pw2Q1ggp<1zxz|bp~F1cz1auTLLdi=$99e&@XyC
zJ*wnPAXfr;6UZk@?ga8A&_wz+S*%~&;N_qXc}*jM0tx*J&$-14uR^>dg%c=}K*<D3
zN#CLgyq7@n1d2(O*DHAC<a)a-B@+5oqsdd0e8&`CHYuGznFQWX;DZFpCQy!3kl}c(
zgPs{Jo%5mxr&B(G3JH8D-YD`~4Pz!&PM}Hx_5@Nm%>=3?U{1i20G*o>NEUnYcWxQH
zH39bGL>LA=*b@4+CX&<yswePK0(BCoAwkwmpjHB=W4a{+7%@=4x>cJAIi{zglwAID
zB=|rfJr(s5`h_VH+H<)22{cIPe<XH(h=vI?N?>CGn-XZu?g`9IU|s@E6KIyeX9)~X
z;Ocd2bB3Bgj|5sI&@zEm3H<qmwQU0J5@?-37r&`a70bs7v|)r*EO~O;i0y@U5@fYQ
z0v!$hU#Bdcg?AC`D%dT7LI0XqX#8&uTh9arBrq_6Ud%}XeG({f#!S6$0;hho2K}af
z39#BffxgEST|cILlHe_zrops7Y9{$qs)G`6b;`mj#UTj{l~(d$LMC;}G9rPI2~194
zN&=%2xWCRaK7n&tEThT0ri>9~YyxAm*BU3B2C=G^2@);MCMGaR?9X+|vVD<-kH&TQ
zO;Zz?c1)R;z~@4y3(gXpk--1s=_;U{xZZEF$lk%FxI>{p$z~>#1r~N8gSWU8Emlff
zym+BlvEmNJr4)CHySo&Z;uMM%Hkl-o%uJI1Hy^+J&w1yb`|kUmfA1xk%)I&KW9l9y
z>8NX5oR4QRfxP0Vi}FrN#{*l^Z#+$t(=mk_Il(bC9W&B#K7%xkqth8lPrT=tnT}cM
zn4OMQ15+<{PM(*JIpmYM+!W?AA$@*2C}{!X$~_A4lY^v%=~zULl*hd|9TZ(cF89H)
zG@V|TjJ`SD%Q@=F<^JGw*WV|vO2_Z%c$bd<(y=-nf289awI>~G(y^ACdORKLXvuUG
zx2I!AI@YISLpnC5WBMqW#4Y5yoH~7kyqUxi^4x%%^sVXG#x|sk+b!)($DipqObchG
zxGNpIX~t=gU%K~D71SPb#hBEiu%}WU*SfaSzH|^Lg$xcbCy~M-<|KBz?>NFm9Zkov
zbliF?kwPVp8kKy4x}1*WyzbKJ;wdJl$!F4W)>`%Ao;GQeM0kNlEFE{#aW5U0(s4N*
zH_~x49aqTte{nok-8Cy_x|)u^Xi=~-FPn>W3fHN|JqnRFHt7~^j9*JcDBMoRopcbn
zdqi9|7x&ZgcRK#15ojqMJ|gNq=>ZwgTT0XMC>@WPQ}h{ma-2V9LR}#Jc{=`y>o3xg
zI9h&5+r=D-lBmE}T<mMcH|apY`8FLRGD>t7{rhx$pq<T&QeLE|!%I7}7n!~Ar9-9W
zwelG0_-2>rXACh07=w%&<HCy)*@T(vaowbkfOJG@^QQr+t|WMoa@8FfA&*RR*}SlO
zt#PA31C_yxj9x6;o$ztcC@Im4)n(*QyvXMTybw5=#f$7-<nSUZN68=?6KRGgrx&@r
z$m2zVA#E5T=l0_Nk(9iwe@r^E!jaz#!Xk_XyeP<|5MyCRO5ImZEE?y<yeQ7R1mnXu
z31m>(i!xrMc~QfQPrWGX#phmB;!e?%1<mJ3<-8#L%!~3&Dlk@LJU2?FB!?GCUPPxj
zQg~#XUL<=_*$dGN$qSbkvKMYnqH!CyOC(I+Ev=a&5us4Ui>jRZ5lNvW@~&!L<lgS6
z?#0T|QYvGyLMb)9@OaVCi&Ik^3N`6#sd!AR??o-{QSEq7>oBRySdTI19;pF2#%_ti
z7hZfxLlG0H`!u0cR3k4MbD2#Tn=&?IY|cYLHZ8np>BX_!)mpJm%2!NUGj?67wDqE$
z*ZL%C@5NGb11~yw@ii-ztGhaS(aDR>UUc!|M=$zQQnJ|9iyyq`;l(#zbo1iz9_3pv
zzVjlqN9oR(cdwGPSNWce$)5DPGsT`>^!B2U7rnf&jh7A;kx8VyluDs5i~Sh0B#Q&Q
z80f_mFQ$4i$cw>VO!VScFNSzA)Qd4*{Nlw=Uc5Wxq^IrZxcl-&<Y8V6r?D*}S32kX
z*^3d(M>39Lq@>a0B-@=t#&X{J%_X`6yn01xoEPK0*m&0B6XIkN+f4RaXW7w<Q0V{`
zsz^BJoaV)JFBW;R*ozrn>lJvvd9l!onQT9caW*40Z;lspna^XK&$u9-N_i>t80jF(
z{khx}-t2VJ>sFU|tuy?oYs<Y@;l)-jws}EsOkT<OhZn1u{LZ+VF_T)64AywD){Awl
zP;`?Q>uE7^bR+dEuCK^meRG^|VX|3DCj0GP?DJy37dzsqJH7bRi(OvqW@QgK29tHV
zRb9iq%ATbTA`}jgM|pADi-TSq^5Ss3gcD4TcyW};vABMmiT{aol8I|f%ExlfaP)!~
zXT3PboD9x0Ap<hI$ovu`HGq_>Ui`%#`<oxvytwW~eIFY5aKnq6UexqiLwC!I+qAEG
zp|a&2FaBZjbI-)PUfg4TpYd--S`iPJJY;;t_?YpD7f+dx%`-2aGoP`-dI0|g^OubO
z#%*4C@jA}mFnP=P&Wr!z`g<=vFi&Un#`PceDt_jM7bcT{7eOW(tu^ZDP{*h3rLY&5
zVoseFOD~Z^?SG{RZEm!I`>dtirLGjCZ9L9xK9FMfA%O|;3_f(s=E}&Ji7~SeiA+cb
z6SIyhiw}JZCS>JuvN2|7%)v+%<z$k}hum=`j}Lj7H=14f6CbYqRfR}?9}4(T(1$`k
z)bQcVX|b>mMSQ5@LscJ&`cTXV(MK<%cNX{Ie3g{)KG2cuC44B!(NaEq%A_=78ODuS
zWU{1CmZRkuKl5Shdy&KnKI_<-iawP7&G9)SkxEP)j7f}6pY{GbN|LyCYJkfJInLca
zBr~tfNS0)f67Q-0-d4?ru<D>t-G@}>X^eFCEQvXm%Ts=LlPh|BP}nDl*YcruoY!Ge
zm$4q>zP92QK78rJ4=Q@7Xy`*DAJ+M>-iO9M99bxR<3l$en)uMvhh{!B_hJ7X$A>kJ
z7CyA};cFip<Hc4!eC31QRBZ2qyIopqAKLiPmfDcudfwMf%F;B~(>!uJ9|*~;gAb%s
z`&1;}(T7ex{4!qbOs?WXS064m5es-7pUjaD^hzK-=T7-sAG(u%(7C{e?|k^)hv`1d
zpf>x^!-ugxjPs$V550W2-`O+5hu%K)@nMh;gIVe8!;e1nXWoz6KQWQaC=6g_Ao<?o
z|0%W!@(>?}`Y@c6$cBu6Vm^$qa2G2hg`YX<XFihoD8|u@W2i?=`sJ@i#;xu;#``eU
zhiN_#pTIcLhhKe|#Qg2@G}0$CpW=i6h?QmXV)3WW($j#|wyt}fGkusv<FnUEVWce0
z_F;|>b6IKeL?m%uJas;krFrq24~yE$3kiK#?86cterIJV<8mKX_^^yQnf>^gveE~w
zhI^F{_1no!J#Kp5bM#*2-V5hyAO7%R4f%k_y_Rjrp7^6$ZnE6q!$u!+s>r2clMkE8
zbGjs{K5U_-;lpm4->ga7Xhvo`e%|T)(}(TMcQEc`q@;1jUAuhfP*Oaw#z~Lp?jfJ|
zVIO<`ejg6_tY1v@BAbIg9P;6=5BGdHO#Vq;;lm}L^%kCyWn4#nIOfA~pY_hNGmIw~
zDSDF0DIZS9l}xiOv$GsM$9SIc0^{=~iI<t&U?j^cK3rw~S6sQq<T~Sm?6}F~Ry_4K
zwTgMCn@-Ap--o|_c;mxcA0E(xx@El_?KzW&jE{VH%;X8<Q^seE@4ip{X#bB7FSyK?
z@ml_6@`~}b4;SuARBU2hX>V?k$U7hY<D~a-`wu>(Gxx?7pAVVsRxZB}0Uv@izcj*~
zr7SAiB-9A`5c9#NB1{XMTxhTIZnbRqVEPd8A;UIz-_`Qn)pC^i$EaOJf{M&45>;eS
zkx@k^6$iGuOVySMkFS;sB-Ef>TlOkYK~aIswz-e(RY)X4N>&xwRI3fyRpekoynS&u
z1tPgs<WW&yMFSO`Z#eR*D5avbiceJJQ*mRjl3zuIY)S#uI>4dnw`m1c6jD)G#g9_8
zk}3{XOe><IsET4LR@9P3ySuoGju~W1Ex|T(3cHD4zUiPtA<C%uR7J9i$||lOaF$i^
z8582=m@K*IC{NX?)?2hHs*sp`&RB_&bcc%Z^-_{J>SPpE_^XPP<cizKD%{M;lJqJn
zs;a1|!lNREM&PQPrlN+5YRoBGT}7&jivc(BJ#{4d`>gjgu}=xtocWTXqLzv}D(b4J
zO_TUa&U#h;yr?+zl}x;z3NrI3t{SgoA_oskU#R#}MOzi^RO~w9YN(<Gb#0BOk&4DD
znlPtmQzrivb~j_voN;%hG)ij8yp@WtR9rgZB85V07Td(l+N<cGA~Za)n`*uL=4+Ze
z6<uiLRdiA@XGIc;#S6RX1vFh%e4`?LuR_Yy%x=PCf4Hw*a(%0!yNd5P`}d4wU-o^~
z)OVHXi$PBny;PL*<1;^cQy*1qRk2M)UlsjSELE|LCRas&l^(#XxLCyi6$4d_RWXkI
zM8#kgqg0GmF+{~s6+fvMrXu@3rG${Y7RlFtNFJ`@XB8t^Bz=U63pJBl-Ij@eB!pwg
zJ@zTx_9?&6`0rCFX(C6*tC*l-mWtU_`+es`6;o79Rq-oFCo!(tr%Yy&_{Kpt(^Smh
zDDmk`zG&|uK2t^YTGpurb5zV#v4E52#VzNP!`!p7QyA<_`%T3{6^l6a=sqPa>ge{I
zQ(sqHLgMR+O@=#`(<)H0M#WkckM=1mRjj6&ipr~0{I24QuhTAFc9p;6A|&w-PNKuW
zYn^kgBhPFuHa_SkzMfp}oNEK)M#fEyn^kOKLa8)I+g0pP5l|6Su~WsLDvr?(phDZH
z>{78;#Xc3gIl70DvQSd?{mOn?wki(M;O|!ssBqqr%I#MUQ)l-pM>%>#g*@IvB4G)i
zv&DbT6Dm%sc%kB@ic{n*D(<WJTg4gbLKmgOe&rsMv$T%7DCbn1rwL_#QN>>>t}(x)
z;xdyfj8_@SzU0qo*O}j9yuo-go;qTwRpxDu-eJ6}g0he}WWPeSKOi?-YK4c~hO1o^
zN_xbWk5xR0m-Cd#GZoL7{1exye0uEYUlm>zJ{9x!E3arbyP5V{#TzDX8Q(Gf$4IH~
znS7v?#boDx>zOiD#r#AU5kHsnRXq=J7*#b|s<h4ek=IXOIH9Ys`C<3t-Dt&75m7Bd
z!DMo2zY<mP?|vnwVt6wt;eb-?fRf-x20ya+k=2jn14>3eGW(I}M<%~@cm;(f2NZCW
zh~P)B0}7duPMFP)?0)3(Bex$p{K&~AP|^gl$t(Yl98iw57U!22mmg3*@gtufpZZY=
zHS+s$s=K?OABC6{@Z<FYIsY@cu-|&kRuM*b1M4kXMVS*R=0|bnCH&S~x=P0NQht<<
z^D<19RF}(gEmTpF%qivlsNhF?KRWnPyN9!)A62LX=AV<9AM}%9&jH2ZM-p=<BZ(pt
ziP7bU%*4%@%t$ts{np#4iKO^(daqpFk5oUZ`9WWz8jQ5QN~QTx!;iMqu=kE7XB{>D
zXh9ABB+284;>VKh&RTw)x#jwj+T+I;t))7Qbs6h1)@P)o1|JEH!zhuW4LKv_ZRAJe
zIB&wFDPuD~nlsrmUL>=YezfwV-#N!uezf7LThpu^cT9WbYOu`lBI>w%KxyZvdkCwx
z%d5P(=lI%>j?@u9M)<8$(>wXm-H-45=<KKW|B780yE1;m*p2a9#?S$UY`*tn>vJcC
zAN}~jj~;&Xj4Qw0MK9*P8T-WbzSP1vA9l#qKh6g*8OS(@aj+jlm<(m4T7L3lSey^1
z$DGF{lQ`0kQGU$zTc@3j_G646Q~a3f$1i@2^<y$Q?Qm(F-@0jGk{<(~OY~OF@if8%
z<q3=v{rHs$DJwEb>jqi(DhPwzbU%ahp+jyUP4lBxmJ|xpnap6E>BlT4vl-_wl1<fj
z)`=_g{Fu+}S-?pD>5#b4k41hgrg<UP@>{>wmogGr$z&Pha>f-jO%JW>468W$yC18W
z{6RVsO7hmSuk~XcN7wtYfk~tC*7NoBk|sh5oBY_!`WD8mjLW+vZey~YHiv+FhacNM
z7k82m5BL1(xBg7YHc8w=27X)&;Zg|u{Mb)BKoB{DIN--YKMDj;Fn~jT93}?~AXflK
z{5a~zTiTlZIOfN3Kc4&X57%;n@rfTNX)B;bL>}wM6+f=}ah8*)otOML=f`<JF8Fb$
zca@8*=R2ruS|UjYl`jt}m*bXOb?L7-e?(V-m|v%H_Ty$;|J#pSaekW$WPX?NUR=NL
zhc9HE(eZ%%nKspI)`=+H4=RL@*(O&?T9V*;>c=xbme;bkjoK(|ZY;j=<0Tus@x!S~
z|N8ODPuDcu#2XitUNfg?*8@(<MWy}6##sW$8o+x$KKPODhu4qk4<sP~pP%j(w45PI
z+gDl1@5i`<O2Ci*?{Cl#&5sb<g#9p?=!^y<<^4UoJ;I#YPv;%Q{ICUJ4_L)gpf`;Y
zCIo1%EhQskCdSN+iHu+*gR5Qa(_eY0dD-Gh_5e1`m1^Cy-iVPS02+jkUCSN7Cv204
zF>iog^D3=4sMt<B^97KfMY3%0lSr3p3k6U(fEfYI44_B=MFZ#-z_$Su3!r!a?E+{Y
zK#2fK22dk_nw+;(0F?r81W=lzRC}2KK4qRIi&U0Lxd1+kr<P|@A%KcZK4)xm*g6h{
zLQ(+90aOma$$G_i4lw|UIi<Ro$N{+H%E^beDsi61q-p>uaiv-S)#E&sN#?<ctN7G+
z4@a9bDgo3Apf>X_8L6&10n}w)kFh>ugLvu}0jwWuovqO@t~6rOn6U|CQ^sZiWXx%O
zqiey@mW-_!zhZ37*oLt!BN;!l**h@r%=mR&?-)R*IR6%|E^*#9fN$dbc8^Tm1Ne@k
zlLPoZfFGETWbDB>IDno^dNERsy~!~G=o>)4xH5prkBt2pY2z9gPaQ-)z`Gyi9m3*J
z#-9Qh#$-6-&x~X<f=S_OnMN@g9oNS&`Gs+80OR8N_y8s_pUC)YT%SZ;du8pMQ&^eG
zI4zz!ok^*_nPvqrJAlgpTnS)K0CQPCz&I~}MFA`hU_M6|F#gj!;kN)5GQWAnI-zJu
z082T#Gk|4G{$O0rNCqncSQ+Q50{A`7S2NM8*w+NGHh^{HDy(b?U;~qO3#0?TTkl8S
z$k9!-TH{$rq_8!BZLDl(BxOf{E+JZ<H5C42aaRDlne6#!!?^DwALQ5{05yP&53+J7
zfWx%^$5W3pIm&p9G3}kTZ=49=Bu7sLaGJ@P04_11)UyGcV}73TLR`Pdq}&Osy1Y+q
zR|EJffF}VwW&IlCL&oa?++cE(k?d~;aGUv^xN<jud(7`M{>}Ixo_hOI#z)K_2au1C
zJ1+U1v}sVLX92to;9UUEIrX2o{fhuz#`(Viykh>E@eQLZ)oM0{{{jdF5T^Z~^$(1s
zrw8DTa~~6x(a#uQ3^HnrTilj&>a@29kr1>tb0YwglZZ!{L<5M$6&u^E-sYjy3_)b#
zDDjLz+?M~hD`pNNk##T%j9D17GG=3>T-k%jm~8bZR}i^_=o7LUkSB<|L3Gj3Rl_Gi
z<O^a)5IckPJ}DFkqDK%tgD4n8p&(iY(JF|-K@<rhIf%+Z6b+(S5EX)`7)0?PN(50l
z2<1;l$)NR$`4@eyl~Rg1Mf>%V%LMUh5M|kh%*rvb9Y`boSrFOwddjo1a*yZpAnKGC
zT|t!l(;ELu)P}Z_gFBKGgp-NLD8+jh%b!NZauDty_8(ME{OzD<l_088nL*SFA|(i$
z;jA7+-5b{3jMb=Xa~(UYq!pXvNDU&5%c;RwlhMPtmG`mQ)Se)k2GNYN2d%p(_tf+>
zVNx#$M;Ez%5Dl0R|00MlnKxu?6xSOEG30}j432p`%j<fY(-c&eS_E;orpF>VlH651
zbid+PL9`Cyw8P#dNH@WvZ4e!(B@2?<(U>>1rmuYv8#g#_u6GXk)SAJY2bHgb=twRx
z2c3fG9K`Rv-R+kqCr)$xFx1^Oh;M>OKd5vIVp^$c-!cC-i0({CA9+RoK8QxWt8DL8
z<%b|pJhjI?SFa#?2Qf2<S=7iN`UWu}h>1b;3*yHhehOk(5bZxW`%{mC82QFAAc%oM
z3<`p7*QDs+Ak@opi;gl~f}`kAwxO==dg~a@qdF#tUxN5KXx)HHT^PaQNXAi&qZxZw
zvX2d7964BdaXfk24acux*L{zN?(-z&MJJga0QohDDM3ts>>@rX2*SyX^bpEa)~7K}
z4`N0TvA)(jFH$n4{I|?8JBT?n@9)KxLCg&zxXiOKhyjmX^Qad=EC?dcA!TkK`8P`K
zBPSnHS{_o!R~H58$SEwL_AhfR3u1W?OQ|D=oP7@|ly?Pt?A6}#hu4|xCmeTY%ByHP
zf><5IA3?k;nz|{7H9_n7j<rFo3u4hb2R&1;o}B-Qdjm~t5T{O9ob->+DbS-6n`yZX
zrx%E0E0-`y^=xCZosr5EilzQZt{B8;8p><f9mF1Tbq#h6dxO{)#6Lm2phZDn{)5(G
z6i<SfdPq4K#FZef25~5e!$BMg;%JcG5nvr1b1aDCL0k%2Cn=rai8#x6lJOMdX-1m6
zGt{G+|J#es1#v#EUtn^PF;BllI?RVkqZ4fC+!(^Yg1E+YRjKEpbAhOw>p|QI;wIbQ
z3gSMK+l-WYhn7j4-(ymv68?@W4}y3Y=Z}~?W}H>f^^|<9o%D=5PJMsQgpT8Q8N|P|
z1cLAe@hXVdLHrlQ`yiq&yb0oMkX}70Zak#;`ngy4bH5{x8me?T>{NfS&R6f%%l#pU
zbBB}@bv!<Db*?KCgg=M?^DONwvtZErd*TZ3U>fV8Ai_*^MzS%2Fys7$Xg!P>4PtkL
zv>16^S&5<v8Zv0esv(<(${(B=H8dP7gLx(mM>@-yH6&`t*vfOHi+uNSnxNrO)|6e%
z(z0l1m0<0_*)`<QP+UU^4LLQ?aX|EhX<iMvnCE89!$@cTQ0ga|^{i+<4f!<`AQu|s
zxV%uI=SB-Mr)VK2g&B)57G*4^S?wo-k{U{B)?L}<G?dopcoxUbJFZVPl+i#dmu}>y
zTZ_wT$dYEQVv5pj#<Zv_XsD>6x`tE@pKGY3fsTEsqQRjdNyCBkRJR5vbtIQ0X>e%}
zHE0i=bW1ti^GtV!&%5I~G20<?y&L8@k~vFdM%rxY{^!~UomDlYXdqIJksi1vo~EIO
zhK<f@t*QMQJQ}{FLDryXsHLH<hI(YIp^ir9s#$lT=k6j?T}4Z$KChNipV~Ij(?G))
zG)Ffa#GfBhsN-a_JUz9MhQ`#RYmTopG|{Xrv8je;RCs5ZiXxllG)J7Vg$9aJXsLl3
zPsDb|RgL#j%HBppTMg}ac**5DYG|*agND`prRJ4WtOtQ9H73#{Yn?QZb9Sbo>*szN
zuDX4Q@{NXW<UAo{58+!4-8F2{uvNo%8osBg(Xd3r4>bE4e%3HTLr*G!u(|w`hTa<b
zX!ub>e+_*#>nR?(2-8o)^?NS5#zKLfPZ^+DS7ruj7|diKBN+^<>7lJ@QL)q^8VH9n
z+72sJ@-QxcI3pcTQBILYYM7y6riM`(Mr#<O!J9dWPUxM^e)S9ESPkPejAuSU!(=8C
z8GmJ*#8{!bwe+SipUOzlX-vAeOFWg|_1#g&EDf_Y%+)ZDR>2p^D-)GD8us0DJs%+F
z?p<X*jmA9}9c;Cb$pXgT7z-U%7HOa)3Uq;YDT#cz)_M)gG%VM!Lc>Z8e`vT`v>F|*
zwTjl}inP@<CK~9PFez{7%&ryIIah0FEohJqD@}S?Gqp~`q_Q&YFtq({&_IVXY}Bxc
z$!5l1D@!D9)39B`D-EwT?9i}N!vzf&HT=mfIi%sRhF$a#pkWVnS;KxxEicl#-p37~
zqsgcZUmR9QJiti@sfD$zBjb)}II39>{+!j&e7JN>!wC&1HB=cSAJ?$?sEcO*l!nt9
z&S;>?-8s@j_;>fjR|QgNe!Cr3&S{`eBAWE`Y(U~A4VN|C&~Q`3FS6$fEwoHE{$hTW
zTv7Irc#YhN+AMlT9aionDiyN3Z)v!#;jxA%8t!Pg%On4Q*7X4So`(Ax{?_QFsM5IO
zQja0>`2jK!`u6gWJozxaDOGwzesWwQ;_D(m)$mNibHaym<^G<3G`!I8YcKapS`k0G
zX-lWUr!oJRMbZ!dA->V@Rzp~WPT~t^336i%|IxPKl-|>_qE)QngJwN+mQG$u>ta_L
zCDB5l>)2O|rusDmX<yP1pjG2h=$fQCNT#8nu_6rdDxgnrLxZUSAqXMV&F+q9h-t8e
z5ao@X_W1*KJ@yb1LdX<C=8(0-GK7#Z1n*RZE^^YNVU34cCDY?<i6QGzJ92Vr39UPN
zawkg&bcRW^t6Z|9oHYbe=n0w}A><4pHH5Sfa)ppPgu)>d3E_4rDNhLbLl~Ft$Q#0x
zhH0NL63NG;@H}ZmOe_#W!4QZP3gO-?2NA-(Ydl3mC>cVj5N6orVj=6TF~vhD!Q_tQ
zqG;(5%7joML=OsK?M&%Y#&V2h8S9?(kp5W+<vF_VutL$#L#Px&<q)cb;0Pfp1Std;
zRdih3ds%XZAcpAJ87W6)@y20gL#kU2!5zX68<k|XDV{NT^=)Zru9TL!Qkra3s#1Fn
zE7d~Q9|0*LBpy*H>ANmc^$^M)QKG5tCy8Q>5Nd|dJcJe@ctTJ@bU>4|I9F1w5Ne0;
zeO|Fi2z6+(LTDJm<yta@dQ9pwMxR<rgAl%mr+!I2%4~^^SZN&Br;bgg(wc_QjEjAf
zzcNKzhR`a6zmiishwv3mN1NoDN0bgBv<{&SN82*Cr=M(F#CFt%u!C&sM?8dIhcH&F
z+L5tS2wA!+&9thd+@B?P388BU--OVOHh(IrQ3~A-MA-AGr+Wx1o_fCH-+<&i-_z*D
zc@HK%L+BM(dNVniJGpNN{X+OLg#ICH3t>C!140-R!Y|ARhA=3E!66I@VJJCFyo8@Z
zn2?@2oTI}SXFIEPJfi$eHb;~|k<^hi;6ojwIB9e|*N3KwW63i^m`tu1!g$tyWlL)F
zgb*gOvh0XL(Mj=K6Embu4PjacOG8)|!gRJ@NaZXMXE2}1IE!&MBUL?z$y~;HA<U2K
z3z+=INc+s95O%B+si?&vETPUWlYVU=J=r2Hr|~2Q3*khm)Rk0qA@TPRc8yA2#hjv7
z!l|oS8Qw%9eGOZ#Wn9O&o^kIHWkU!XX|WHHs*g}Mkyjj1Hixi<Q>pN+A$&NZ5ZOK7
zzJtVguXl#<CzT(<?htx675B5ghxuMwfI}T5?&E0IrO5~4xekVKD1=Q3u3$FT;Si35
zK;&o$jY^8gLO31*jw+;3sFCD4$+=F2a5{uD%+G~zK7_OJ(mp+^&`1_4BVJ%-b6@NF
z{N)g?gz%+_h9<63cS86tjQ3$&3*mYQ9mD7p#*GkehM<RFgy{J}+z#P6mvARu^1~38
zw~+2K-V5PA6H@*T;Q{mLC^tnP(JDTwJPx72Z23tDPiae;Ek6r^0uc(IJKX<-@FIkl
zA<%;luR?eo!oSSvv534o65oXAWwI&nX^=yB%bcR`sLkXOb*+2m3DapG4nbpuqP`FU
z%+<K!XF?e%H5j5h-cvvF5bI$^dYZ!wAwpY981=%4h7hBzGK^2du!Ug{BWD=7!bk|?
zv)V2SLKqpCXJpL8m^q%B7zUVseN-XiEMa5~BO5C@;x^gi(Qdn(WRp9LJYkGm?JO2X
z-Y`ha&-e*rK1ThU1kwwHQIMmB7>hC%W-Jm0l}|PwEsKXyB8-w@lnSH$ez`Pbl_wdq
zPs2wfv1}OS!l=Aou1xI-qv2}j=V4R|qdfBpjMS=%Vf?$xNvRH2h)7J5!f-MX<Cc^}
z!4-xahC7V9_ngUL%-!UqLMTwQN*GncNC~4_7@jbcFsg@<8b(cSUK%%snn!J;R@LBW
z`yQzj&CAWM6-I3qDM|))!YIV4)N69@`e8H<qe&QzI*1Lz_#%uisbOI(y6eyvizGH;
z9(pd4(lm@_VYH+E)|Z-x(ISkm!e|{v%P?}^cD4#5ZL>)C;L)qrUNx2IhPR;$#I>8m
zHeq~UK%~%?$<z!|`!FUJ5Lb_ObO@txvg>QY9gepT#m-@L31e3nyTj-j#y4S1AWNE{
zFuo0ANEk!I=pM#*Ve|^4H;sucsq0F|_hI}HMvt)dTaOO@(l#g2cl(}{aj-mifJ}d#
zdmf5?!qzcyeHr^P{>VsTe<lMM2Zk{yt`BDNd5ZW`7{kISGe902#_%wH4r5dpqr;$!
zFeAd&Q@SH*f<BeX_K^eMTHoG1RbBKuYfRXBYL&t-Ve9_18CBB8aSM|gO5>Rn*qrIt
zFeZhuER5x0Ob%Pm)lLgzdKgo}STR3&DpyLsIF1EeGs2h|#u6I9<I=1!Tyq_@PB>@N
z#Fe%#$<7I*&mehj7$j1d$7DX^0><AM7cwqlTpY&KSt1!P4THWnZf)oxTtQ>I%&{em
ztzoPTV^tWxhjHwCc{S_w4Ukg*U`}LB7;BlYV_YBCH-xb<&NqdznfbgPPRc@4vyE2z
za!2%?ygdv$nS{cQFm}fIpG>|Fxc1Nxh4B|{v*hp@#C>5L3FBxO`@^6YsUHaAU>G$j
zi23#8zQd(MVGte;Bi7S8ctJfb9Sh@h7-zyb9>$3<PKI%T2a3*WJH;i?krXt2hl-@0
zrKB(}hOGyy&oQ2-?P9KjqL*lIZ!cY8ByyRi=8204g{w5VhV%Mb$93BL!*~|P^Du6P
zaVv~_VcZX6>4N0jVcexPk|XI3M@cz(&PhM{N%@-=(E#~j7?0Q!9*_ecvn~`rCdck%
z{W5(TrbpGPJt42??WTj;$fMSsmHr9iMHsKcctb1topq>Si7E*%X`i9;-?=EfqHS}4
zbrvFBw_KS|dK<>rzwGbA$RBp~Tjl(4SNsr0I*pZqeg?c@_`=wyW4{hH3_mS=9SwB^
z!U)nfuA{6DEsPNDkUDbe2#2AEkx55p9R@888g1I@bwp@hnz^I2Z0C!CagMv=9QzK6
zN_*)|i8Q;83_3FESlcE!fl40d(34#GKao49i_?3G3;bfD4(P~ENzL3VPbLaFvg+8n
zR?MQK^a`o=AC8vKq-<0|E^*jVh0vB?+|^Fbr6aeFLOKfT$U_bAxo;j6^XbS-;e_WC
z9g7z`QV&{<$*-f!d9i?wf;z<Al23C`)pIwCMRfXE=P040q>iG@DOyZNapvnvdMH|o
z+Q88+b>%0`#4<XlUyBZkZ;Pc7DW~Hz9WEWRj`BJx=%}Q_p<_*-1nq!aQOBY;u9FAk
z&vjheFJ~$zMH1vB8qWi=q{B&#VS}zIV$-^=9KU+zPj>kCIo&#vb)@O2p`)^nDmto8
zc2w7K=7O`Tjuai$DDOi@=f9+{qT<1Xq&j09jmuX{)$y-QqF0oj%bQeFhet<U-Fo$K
zJKdq^sHLN}j=zSAw`z$+_REg))#^|?pE+soEiyu?r=vb)-|c9i;|m>BZ1>R)BbSTt
zUR75k9gTGi(J@p<6CF);bkp&z&fBbxmO5JLXs%;QEmxb#jutu^WRU0$n_uZ@t)ruk
zPCDA?XshFE9cLF(dvJ{2{6+m5>>$$bt=NGqpE}x}6bYB<&g+xK&Q#YEC%qH%8=5#B
zU3EIf&{4o})LZ0uKUsWlPoXu^UB`Die$D6lQOEb>vHa=TN5>C3dg$n>qZf_&dPi>^
zvH8yKiyR9jkvd39<}=dotDSv0OFtdO#yBW%e;osK4Ae15N51z?DwaAvm|8yBG5oIM
zMyiLRKj|2zW0{WSI)>}`S;r(DlXZ;HF;d4k9piP3(lJ`cFFMG(#^@mTu5(@_Kbev$
z<}Z^>;#eK)M@mE{=y*%tx^+ll2PqRNV_R`fi8PAVSgcIZF;&Mxat|HTs2tr|R`Ybs
z&@od-iG$)?9or9xUp9Boq7qU?3bS?0Vcu$igQ8^Pec_~B^EvMV9ltRlh1%2Sm1{A3
z@)8|IM!Q=lq%Eb6w-g-}<YvR96*^Yx*r;QZj#WCYi_#zD(mH-;zM8RNx`*_CRJt65
z4x=3Fb*!T*jw;zccOCjhq6dOD(AF`<L4320Ejo7U_>&g3j&0n?9W;hzUDT58yf(`&
zbetY3(XyqM@6xebM~hdky_DssvWKgS+!E=F@#Uk+v)N*&Y~leO2WdMpkjua!9fx&1
z*6~Eg5gkX#o)#>*nU3SMYRKz&&pE;Mp3-rW$ALBn8vjw}#nY6fnY-Cu$2r;uy0|at
zxUA#6jte^OwwGvXF6y97jO;7#b-X^RT%mPDL$}(IXT0Mo?L6Zhlg6Y`^coG?9qDC#
z&rKb-bo{O3fwcf}N2dqm<$JVn>bhuw*R87Dr4n9Ai^eFV-{;hR2V~k49_sK8mmle%
zXqICNal)rMo>BXC1a&;u@sEyII$qQ2JLfsMPp)`Od7<MaEnXcpOInSjEtH!5hP+G1
z2Oa6$yLYsL=8OOFP}AtSa>(zgs8R0KUWv9%FYPB=9I6f<4NfzWcIJm|lKnKoUB%qZ
z-6b2!nvRf8e>=i%Agn{zF|VBzqkSo-Z0Im)?<GfFBsQw$B8;+L=a@3gA(8>%xGf0@
z1~M2(Gynq`4RkrCWH#{LEoL&TZKr0|B>E=#Xtgu{21ziGd5<Hjfoul0?{H)>kfXmi
zseCnhmLa=g{Sz^Mv?GTB!6s73(?!Z{Adi7015N{Z4SZstxPcM|@);N~-jUxx0mJ$z
zq5Z$0fkFm0=8=mS_)l>are>TMY0Ah6D;1VWFKSqOS}_CH=8Jt&#gYa}8K`LBbHnoF
z(gw;H_|yP>^tg{Z%Ni(WV8t4-f`QKrG(IVnH?aDHhn$4!?b{~VRzxy0Nn}vTz~e2}
zr=i2JhIf2XnHDAuvS>gu=xAA3Gh#qCP~SiU18xJ!25K0nX`r$J?ExK+AXlMJ>f!Ql
z9;vE<6a!BaWOAo!21ub$ok=QV8e{mC+hag6P}@Kq&RfgC=wnLi0hyeToQ+DWYgj(n
z^OT2pJ+`6f7Y4pG(A+=^0}Tz(2Uas`!vVPw^^xt%9FUtB_)tY@%1DGh<H%!|RZ&_R
zXl0<Cf%XQzGH^OU{<*5s+OWKR{Q)`C0lAF<!nOvM98-vNFz_`ioek@QvZH~bQ`1@<
zkcoHVUJ#)V#4ZN98u-RQHv<%<Kx6VP^X_rwI|F-;DU`HvzT*c2J!qomJ9--EWuUhK
z`Zm&sCT_m937=Z$oZ2S2ZB21j74b)!aRd7d^e1mIFwnpt0}H5X1A`3=F)-f11Or12
z{A5@c6UG@BW?;Bsy(?ifWt=GgY+wXse;{SLCKXMQM;cfoD5DG<yd+T&J`u-I_m3%W
zk14+x7;AtC1y^w;bGkFrab==`UkyxW$J2_WO)@Z*I#NfPY*<$?rZ5sIdt8}jAl>i?
z$sX$C3<EO_%rY?Bz&sjoN-ZPKF)-Hvks2Hw-879jCCz7po{y!4G{^?l8d%!d`u}~g
zft3awtBxf+hD!;9RhKazbX-|(VEt3a3Il)qBvbTvZsE-1%4#O`H`5=6_3oiHw9tmh
z%a1Etjw|aZi-BW>Q#a6xGvLbY+Gt>tfz1ZaA6IZfId;mug*ioE9#^)p&348ej5`@A
z<DWEHalV@dgn6f*9F(-*zyWeC17~QE4Q$!xI7SP$oP5Z@VFO1Dq+WAUI7(}6e!@rI
z^QC;;K$}&Ln(Lh>Xj!dyo-}ZZ3GvTPC}$0vGf>b(Art2fTrlv$z)J%c4O}vC%fM{|
z^-d_4sZ}SG>jthExJnMz((@NpO`b_f3zfeWWy}d>@d@is#v2B18h9pElbfVXsiRyu
zq1-X>(7+=DuTLm<Y5m4h?-{tyg!tb~9xx`JR3006LfH*Gr~Suo9ez8$mh#lFj?AUg
zYu_K1sALNN(2SRr%A8dGHSmhIL=#y|yf*NLHd_-JO}sVmj+QXFtATa3mH!NwG(IPl
z_q1{?cd`nkpwZfA?u#obxq*QIxgRULNBqx{Iuc?f%&0ROj2|t3tfRC(sl*J}Oq@BX
zB$%K>O$VG*>?Wq4RA`_!Q}0eH=1C=!X?5*nEhV#wHMNw@Ih8~c6fJT}feFIf>&2`l
zvYE(jB9Dperq$V;CMus&a+pZ1t<b>I;lR}XTqa7jN^5#b>3K@YYa+jiOQ)1SYghZk
zL_QNUPbn0(oU-PnfQf%kDT$|*!c>I`hlwN;MNJelQPxB`6U9xG;4Gz0(3qE`>J(2Y
z6J<^-X{W6c+MZU*nE2Gh0E(Vac3rV%=QGn9pYkRuFqw8*p&nH<@wtggAC=n58qQ8;
zRIJm4XriVGj|s_y%S1I3)lJAI+$NH#QWJZVs?pOEMd&|YSG6i8&Yo7jYif-ok*X%1
zpH@;#*w0u|8rULdlvJ*Wydup+4HGRIr*-?$P1PwTYMH2GqOOVBY;z*F(*KN-c1CG)
zMyY3_zG<Cs^@RztZ@@@@e-oc^Mk!WV-f%{F``FRQ#OMgdM9|no6BA8MG&6C-#7z^;
zsV<sa6EjS-G;#WjGQ`AC6Rk{qWumo-HYUC^@x6(*Cfb?kY@&;a_9oJYB-c2rd~KqG
ziKk~2oK?!5RY>Vbsb`f=jKf&zO06>St%><(m2XV!KC5h7p<Fww{C8Fn&MDn#;?60{
zha~@CqKApTCi<D^X@ZpACi+nCOep6R3RhNGW*yEc!_FxS&M7~d=x<`6i9s}*T-~m7
z%GGlU)!uYya-N3Dt8+@id1Wxo{&~f7UirzyFw^>jX*~7rXK^@<35}<TpG}M~F_Ojm
zyTnmUzJ28Gd|nxOUU^pE^$ROwP3x9&%1B`xb?1?r$OID;O)NOC{K`1R#3Ux9Og6FO
zyh3DZT$#q?`gvuhiCHFAnfTqrY!h=#EHbg!#Fwq4x#T~(W4?)b<ladlDGUE|EHJUO
zjEnT&ICY_k>y1+=x`amllI*!GFE?@dZ+WSSWvr0sqb^^TSD08yUV2&1alwkNHt~mv
zE7aw3o;4=cn%HMzzln7w)|=RBVjHcR+VTbyn@ntGzL9a(R(I1Ea{g`ZE!6U@?jN_f
zD_u~wQwL4#q6syz(}a4{L(hBuNnUzEnQ=#Mb3q}?W&M*W;~o>IIw*S?%Q$4>2TUBK
z9fsD0i9;q1n>cRbgoz{6jBW0t<f1R+tgqx2wPhm5OceN9AyRpsa*_(6YxwgN;-pad
zr^#n7C`8WD=FiQ$#Mv*HxM*VR1ts5rWU6t&1!e06<ua|!c~-*+uktwj#dwYJIxT@z
zHx16Q3(74Mx5*W6yE;X1$HZOQSRyDH!95fAX=gU^&cxp)9*|i!*S{tn(mL&)_JpHE
z9+{w{Djw7BG*y&;NPEh9&Ew)TTKmi?*FQ{Nn0U$L?geGf56Q3SBY^gndE%XGBH6s5
z6?)qu|CxACgG|M;@dp#$csc1zI%E)iCZ6S&$e3OrOBgVrn=niSO=u=UY!)`H3pn(%
zXkB)hezF-C6w^e6{B4qzF=`@4i|&>r?iP#R5vfdD1oj9LBFGRyjtFu_to~+<Kwy%I
zF*76Si4lPL1E1Aq3Rxn^8c)p@L3ZXeCX|#bg4_`ljG#~idEz$tBFM}9lelvHd}4m)
z1>(xZ^NEzba0Er-N+gq2U{Q`1i=a3Y?=%OAr6MRDLF)*bK5&+a;L`}|N6;XGq6L()
z5qKg{A}ANZ)?=>EA}Ak0g$OEgG$n%1nNX6%q*4S9CP|FWc&f;Rj%+1MR|IlgcSn#M
zL1m6siJ)rSjBaBf%ku9f!fGs5k06yv8e<JcO0CJnUei-6g4)dMML>tO)?r>ZV%-rz
zNR}VVq)vSi!Iu%Vir}jV@?BIKaw?HVOvtiv1WlMXWo#DLn=@$<K}#l73mH?_s9%GJ
zfkK-I+D6bWg7y(iy+~gYJRKtVn#R^Ib&Np&Qc1q3G`*-0>2pybv2z3|g_65O&^3Z@
zBIp*ukO+oG@NER$sn`g9jNrQnzK@`11id2oA%Z`@lYUgi1^LAu5nTJ(L7cERS*l`R
z#y$}wzH;Q9E)rJgAm5rJ_K(n+z|w#S2C@N_Fr>LSh~{p#V{innQqm(sBu?Uqu=G;|
zKa(?0bPyj#85c{#BN*|oL}Ww+BO@5qx5}spHe6K5rc^$8`UdHj2*y%7qxe3GaS@D<
zpi~s4qnHrE#0XAPArbr<!K4UQMeutBlOvcC!Tbo0^>&{fBTkKAW(2b$m=?iw8Y|uQ
zgWonIVjVkqtERNj=bRm}ezeY^k=!PZ*oDdM?Q<iT7lE&gt3h4ycz^4^OS+`LAcEf_
z))oGRjEfj4x|qol#-)tQ7?($|f(hBIjL=IwokUhg@J9suBG@0nnh4fLusZ^?k9!@r
zVM7EPnXG60B{7Yv-o$(tc^VT^wvc<o`L+nQ$N7#3cE<UiOg@|K>DWg+by3+v-#uDL
zbjtKz)`=Wo<!}T?A~?u>KNNxcl)Y5u8dSwm8a*DOQxP1GfC@Pg!AT|$n_5o+6wI%L
zzOxR-q;T$j!r2JUMG%T09KrbrE<}(Xfj5GS5nPJkaRg5yxE#S1+Px#V&(&Qe-rN0G
z1T+gY^4B<eo$&@ErQW2}IKR#04&z<gC>lv*@OK0cB6t|VBkot-E7IDI);$0hs>(kX
z6)8OK?|vG=vk3l+;62+skKmsO=!vk=vURxV3+5Dk8Nt7C{))+K#y5;_8Q(FIS8QD-
zX7A(v5JBeerGf*jL7+-~5%?nr&`$D&UFEu{{2*tc!KXfIEEc>i;e)70U__8DitJIC
z5kzRTqsSCR`9AJw1hy#bQGE4VLM(zsDb~atUzm^(wH!4=6unBx&mivMdNW6n7)917
zJ~WdMg%CxSC>Doo4=yULhDx#8vbVcPhsHeb<@T+!Y;r`AGYYzwHGdSjqSh4Ti6U<l
zxudwB-%b_LeYsT2CtP4Y#&6b(7pqEVvxsy{VF9YWm%CsTg_sa8%%n&ZMdL~_CdH#D
z!K7qdr@zL^MDb}9N))xCC>uq&D4bD<QG6D)UTs+^3I~lq6cwVV7`1MMqw>i;sM()K
zL2V$i?6or~YE2(4ZEB}<%qd0TilSx|o+#+<VwsB~Gj|lpQB<Z)qe>zTI2l)o(h=Dr
zg{n+a7^^W>XH1PEjS1P*h~jNA%b1!$NO!5x(x@FpohTYoMN!m^qFxjYqWB^Ts*ajk
zL6Yk89JQI7K*p_qOZYO1YJx~kl69cFaTHCW=oCd~9+0L{kmr0IMYAZHN6~_s+S}cM
zy4K6xl6fme62FR~HS;!cr7e?oQM6~Wu)c@PXhp<&xjXWd(QwgNb%~;D6y3Q=-$X%9
zyQ+}Xjia#z33(!pZ<(7H6-uJ<`5}rPQCy&*j-n?uGKxV_45p$=rqsIc=pDuHt;If3
z<iBJsvA$9C<Lo~&_Gcu00F!}?z39#FQ4Ebjx}@xm;-@HvMX@}J6;TY2;%By58pVhx
zMn*9`iWxL_QH*AN662UC#xtRke_=9~aa<Iy23Y?QPl%^ZWb$hiFXvkN<hVYC$yCN^
zj3d&mhoojkF)wa2D~j37=fst{Q9P*nzq{GzN3nqQ-=bI;#UkcQ;+Bh<NW0Qv-&xCZ
zSzPb@qWVhaTNzi;=+U}kzJc)%#x;zTacvaqqF7JfmB;!g`XdtA$OfAjH%GCB$;Z@f
z%(pY{U?lsUO#Wot6~(M>R;%`WOpRh+6#Jt%z|qrD9Q>#cavY1|5c9)v<wz7q<NRZF
z$2od}@g(CZa+syoD4pTxSw@PUV{)GH#pMi_qPR>`9K)y>u0(M)iZ5em7_%DoR}|Nx
z)}Q{w9bJ>JM{y&Hrn!=CMv*awOflSw;&v2wqPQEydvZnEvS_D@;$JrVoAD{*gD4&{
zc@)JHCREO2@}Fl;B9*UO_$;nJkK!NZFXGBeCU>@3X0M`n&CxfEn>IS%GI<xpe@w_`
z>_|s?6y7NGYffW?!^e6kiZBzE(H})1ZXb+7i*q_ckV?=w8jHeUVlqbJHqj{dWRu9u
z7PAJ#&X~YR(F{!J)Pl@0B*u^wgEI!iAjD8CMrTeU3mX(-%o;<s7_!HZBZdO3<Yc6B
z^2U&hdG5H9hlwX|5~Y5^JYNj?KN6qSYzhTA`f*?j$54c$MHwlTMq_9nu|y0dV<;5^
z@v<kajHTJ2JY$&{K8@R#Wm1muvlu>BP4*R7smS;_V<kpM3>9*SWFW>M#ZV=NsxfpB
zQU+$U+UANuW;5b$Cdn~WW<v8wB88L~YO_);hUzh-#_ek`Nn;EgwTx>r_b@6k)M7$9
z6;&tB>oTbqLwzO<;`$d%Y`dL}VrU%0_c8nsLlY8X_&SD;)YHpyvlv>$(2{v`#(NWz
zTgC8I3~gg{Ge26#KuVh!=8sRNu)K0g-HFMoW_T!&*q%BbLx#F3AC*_*lRL%GIfidz
zSaC_|5<}M*dR<b!iDCaEck@dMg{l*hyU~=bmabQGPrRg%S@#&eWBWrK?GZ!I7zV{K
znDWNZo80EI(m#eiG4zdra{U;?tE_26+__Tv#c=zQ;=QDNj1J%~3?y&7tdLFO?6e^<
ze0f<J8pBU9kUe$zo6E|u7=Dgn#ASu}@E8b>|Kp+Ph!_?SURFlOFeZk}v|YsTOAKRU
z*hjwf$T2R4@zm59R>rWoq&$K5kQp&dWI}t$uS_PzFqz4exIQ(8Y0Rg`mB5EYx_mT~
z^5(8KD~8!I%!y$xr!I=2f0M*{%;z&MVEm1dYFQXVC(-)Kx0sbBj7u4p#ch_y(8y(N
zYpY`ToyF}jtd8LiTCKaJ3iIq|PDyKGxaM@Pk6~@hx*)cWcF2k@+X!h-QE>xj*%&Wv
z6O+v`Y+<rBu5XKhu9#6RJ7U-w!;I@zt9D#g{$zt)G3<_8?)gY!`0KLu@x4EW12G(o
zr(TNTPz>q$W#47xa12LcI2yw-PCXOD*%*#9Kf!pC@f0H!b(*G$>-E^JzeOmV<D~O3
zTwroBZaFA}Wl(=v@>OaEwLFHuX#~ir$jRB}MhrKZ+@YPH$ycYO+cCIKd-`ln8`@r^
zXhIk9F0GngR<E-pSok1@hcUd4;SFbb#Q2KwG2@dM{a;{x+&p6>@;rur;`{}ZmyG|$
zuq0<SGWh;Z!nR?_Z&`dF!-p8&#qIxN-+SV=4w^`hAwWCu-864J)fa=x+|O85%9L|V
zVvud7B}-%(jzOnh3&M3lFk&!itz{AhXA&YYL}@4zgc}J$EC!oRxMUM9+XTB!NU#ZC
z*@V_MA%jiGXcOw$g!(oilTFBM6C|79vI&Vc0XCtOO`s+THX#d>{5B!0O~{=yiNxHj
zWU~p`ndD$3Jtvb~HlgP)|9f&gk4^ZlZE{|l@QF>xXA{D=B#P#`q7W8{=PJmgkWDDe
zq)1#ZY7>r*wimMr#aSuASTdeEaJ0R&O(<g%K4s-I#<Gm%;x;WCT1%!pM=RKbigEpO
zCY2Z+j7f}6M$smC##-%{ZGxMXx;7!1NvcgqV^W#1icP4>gp5;cLN(^q;|iTTKza>o
zKRaqo);)|0V=czojCB~v{%TQszk8NrH?Rp`*o0Pb{Y#tBgn7fb(#R$>W}bA#T7wjt
z+Jt8D)aFcDFt)S_Z7yUagTwq+V;h^$)+Q{o3CnFlJDbqnCJeO+Ke1&8oAA9&_<{M?
zHlZUE%GilXXPeL^u5@Mc4P!UPZyCGOj5E2;rw8;PXRrwaSfO%yG3jd)dNb)`xtTRb
zAIGYnP599!Y@a7l=x-A~o1VPmpkp9g4q_b4IK(E5Z<|bkyl9wB7;Y10*@W3P;b%^r
z$w+06un8CINh58-D4Q_aCXC@IDZko;Uzm?&9A^`b-FLL8B96BS6KJ9nk|)}P=OZ1)
z4ynQPWU`-R6DG&=PO%A7<9r&E>5MZNfB8(BdgXt+)*PEKFW!>5HlcJ*OP_BO7TAQ}
zY{EjDu$WU99kITj2MfrHYyu(iB{tz*%@hhtne>_>t*{9zZNgTYu+1i{vI)Q2ge{zR
zwN3cLCah;ZqlvX6QCMRW*2e2y$E4C_=LVawkvY8uV3SSQ%>4FRyTG1#<E7>8+ik)Q
zn{XzccPEpBjDIrjvI)E6se6c!bAD-UnEPzP{<waCiG7iHD6Sl~2}f+g1x-8}SB}|)
z<IGRQm6J?PF`lN?*U0M2S(|W<mGd^?#9T|cz|o706s?m@ykZlsQm_kuQLqWuY(fpY
zP}444w+T0FLJqr-(=Ob!3Ab#5&nBog;kHe<V-p_Qghw{vu1&aS6YkrDzimRLEOLic
zNi8?Hv)QUWph9lD*DjU`D^|Dk$2Q@KO?YJ!UfYDHHsP5~cwrM>l9Sj3O8tkC4yz=-
z;-H&w@7qMee_5ZNWa)2g!dsj0-X?sYIc5DnMt|-UO0CZ}>8yBZ^*Q9Pt|+7vsr^j$
z+k^n^+jb$rE(C3YM(t0Lqc$N#+o?@3DRrK#b6$gyGA1vS-z8f0Mp(%_+-g<KCghQ2
zo84-2*M(MU2D^~aE@ZI_S?xk5yRdeloY^iU+J#Pw<xkGaU`v6q=M|;QJf+}p_u+m@
zMYmjhiTrnYIh$R`&Z+C%^4WQEF1wK1E_`Me%G-rJb|J4_C~Oys*abS_?Gw9@-!2re
z3;FCq6)Ab=7WdlrneLsHzjY@Uv<p;Mwq&`GT_}|-|9V9!Y8Q&xg)(;GQ@b!@o?M)C
zyHMILl&}jW?ZT!jN+!rh8HrObL}xPL>$&ocD@s|r(A<?=j$1XkukuVvu3#4`+J$7h
zP}wegZWk)q1<5YB?1IBCB-w@Al1yXbWP6dZ@ljX7-{cCiH9l0k%;NP0vfD1)O_V1l
zC1+V8)A(1h3svnxid~>C+*l}AqoNkesZ{J<H}$u=U6?xGDj|)t2e_RcyP(*GxprZm
zU8rRjYID*QyHLk2)U^vE?ZPO#P|q&Zw+r2<Si8``E_`7Z+S-M7Z26^KXvw6ZU1-Fl
zv0Z4&qzNNccXgnrS)4a#(t?rB;cUg^E5_E0Z5Zd@w0yNab0Qs>&|Mr~$CZvu{*S4z
zfR^HTzGlbo&N}WEoOvs=OOW^AElzNP1d`wccb7nLC%C%>cL?qp+&#Dx+!6x(Ybw9_
z&Ua3qdu~@(_q0^i$j(mJcc1~2hK!9E8#7WZ&mfJknFBvL(42+zvIj|8Fz?9NlChNo
zt(j118wc7lZ^zi)mUp1V%5BYFCtK3lfi4bo<!m>`9*o@`Sj4_V$~{@q%YoiZNYcjv
z`T!;oO8p!d%JN?v=+9(;1N+igFQp9R>>#_=U?xKx7~!*qFwB+@XObmq8QVw)Mp5-i
z!e}y42Y$76NHW&u<Cu(RELPH-<iKPHHaf7$fhjCpM#k*GR0pOxFr6iH9GJ^w2IEY|
zSq{u*LW}s{SmtrhC!Nvev)s8fx`4cRX>=juB64IVzcG@0i33ZS7dK4Gu5e(b0~@&R
zD#rDU)c9%#)-YddOV&AXd4V+#|1IcoO(Fif1DhQ<;J`r#wm7iWft?QQa)7@0y3GN4
z$!CWH+wB$}C72}17czG{u*ZSDET=3@e#$L|MI6}gz>Y=MO0`~Y;UU)fgYn=3;jjZo
zn71r$P5w~_j&b(511Fe}@NLlap0uLDX$t-hR1r{>E`2HZJMhJU6avnZhdS_=1J4||
zNWSdA4F_)0=p4A>z;y@ybl@sQh6MANXy%lQT;rBKPc1uqc*|^}nx84c+%j)DaNB{0
z6xJx*Rf*nl;GP5bDco%_?mBSmleI>@4o1uL)gCxdY-v=HO~S_x)Oc<_p+5ABW#@iA
zB_lr>KVLmw^<@0H11}tSOX1ytmkzvg;I#v99B4S+T**Vuq?zY6vs$w#oe>(y=6eS|
zIPi}HAGs0g*xzK3yQ5V&=J%OlHa!`q4*%=GCkH<By7XTW6*oi|W-aOvAPC4Q;41;5
z07*bf0jUJY0u%vG0lENHfF__wQIkUS8Fpj{s1-5$oQ&5zYtD?A)Q(GlTYyKf&L*^o
zUIDF_T5Ct#$3j12fN|Q%cxnObPsS;w6Hu*GG>rh#Ov_kqx;4q^Su=xxj7&(9NkC?s
zXAzK<c{W-~&CG7ga|k%f^O;LPZUIFF6cdm~Kwg0^<hXAF@(ZBhHyRKtAfRCyEi53y
zMFj;IOcEG_j3Gukda9N2&PI|cAj`^VlyPE7b)u1U?_|7?fUjAtFwGK^MaLpkrP~W@
z^%Dgov9O|m;!KhS#08XK?kZu~Fr|{5Ei0fD6Oxo>QbxdE9C=7mjwR(8D=>aT^OM#J
zwv;LfsLVp*-ENuH1XLH$TR<NHH3WPs;3omi1=OUq6Hs430|B)K)DiH5fFA|?QatvZ
zfO>*uIduil+Z5D}g#!LL8K*>9=TnsoX?NIcR?uuHppk&a0-6X2C&bDuioR$Tr87mn
zFGX^ki#8>DI2CVZ_a_-<3jr+!bP>>1Kr1p20qq2|CzBg!&A@}HW*Y%*S%1TQ%K-k}
zY;+LNi7fD;*^%WfS6CL+SpdDDQg5a8no2hT-39a%(2MMLi*X?m>p^P~wi=v2$)xLt
z#v`IlcSX{!i2f{~uYhp^#tZ02gB37Bz(}$L0RsdK6flTvZ;OF~G4j@&Ma?{?;)BUG
zc1MQ_7(y<vGMcQI@4ploCSW*C&bj0xC5sZ)Drrts%~1k=6);x7_JihV0b>LtpNiKz
z9@(?R>TnUw8V+5MOb{?pz(xU^1WXbzS-=7T3k6IOFqH>5OTaX0#PPo?Nvbtnzzi;$
z$#|efG6`o3m?L1WfW_mjmK&{0p2wxc=QE)%-!7t3=4%D~CSVD5`wX9y3tCmkmzN4y
z#tO^rx+?^%WWLIltQN3_`MC*JElTTXt=&b|3)sN&seHBYyMWCC_6pc1U<=E)F>Ym~
zS}o35^RS(>I~aE|?qb}{xQDU9Da*|E3pgm?kbna$B#BYQYT+<vk24+-@P}P`RKPLj
zH~8Fig850i^pt?pHYbI1g7qBZrGQryI+$NzyeQz3fXn15Wut!zxFO(*fU8`z;7N*W
zOsL{@0r&W8T{l_s#FpO@a9couzk_!eiQHv!kMTa^1ICApj~E|Q&u1H?{FK~Wz%#qG
z=S*%5OYwrN#TBOX>`?HvfHwkmir6LMt$=p|s)(p6;=O<m6yikW6Y)2BtAI2j(u(*f
z;9m;kB2*Ed1PnVA%s4MBi1<wMPoXaYQi#}nI!L?txwVKxMCvmZ5k+)66(>!Ji7evg
z?@^LyA|RqrgJ^0I6HdjQBK#tnmW}BmTp|wr9d$E$MR=G*DinEgKT2|+h)I*;L;@mG
zis+sYK9MS(O2n;vG7-wsm+h(9bRtR)F*AzDBqBZY3?dxwjLvTj!YT)nGmFS2B2B$$
z77<xRWD}8H#Jys%uS7`Wgd8Gris+m>{!g~VqxYlRG8ZLIrM)J_bMw&ha9yfS!^|(D
zfQUp9Ng@i0FhqnzghhN8j9$whOAtZB57O`(N9n6^>rcfaB1{oqizqB&sVgBWV)jup
zMzeiAsld&ov!~*PM7%x~CsIU2{IU6bPh{(!2$7;9im_zHXDeG=L<tdPMU*4?)@b|D
z@nkyI=TMx+E20$hGK{4eeW&BSyC$!`6(OAw$3x{stjS}&woySuy<_G#A}W$495gD4
zs4U`o_eA3Fdn8g3@oFNfix??ll!zK4z7^3*L~9W>$u^#uKZ$5AqLzr-BI?k<Mf|uh
zx}aRRF10M8fry48z8A4Df9wY;qA5BZCtjZ=MEVUi0>zS}^}~%swEYxqEaLfEGsmPj
zHA18b83s$5F_MHHv0m&DYaybgh-c@5=ek7ie-2eF8=G1+sSULtVwi~GBHD>)FQT`I
zJ|a4ZNYOU26Rjzej<krqLL@2BGqDRT4H=S%uC$Il6Z0h%p&^f$W9;jm*h555o}6A}
zV5g0;r{gmwhN$#s5q(7r6>)8Nte=QqL<|rykSr~Ai1vt_Tp-k6MCSKF+DdYeh`}NP
zsiQ+!d3GOzc;@`cl&CK4YZ=*LeST_$h|-Uf?|G8O2<FqW@zEm2h*&0KxrkpyOz#q%
zMkr#eh;bsulgo&hEaFn;q7y|3HKUV6Y$_XD?1_!Z9dCR(-r!C06f)))(V=>1Diy6Y
zQ*4P|&1udMae7y1iHMmZW|7s2m?L5Vt%3;J@^Y?-c_Mn9j#K}8I}+xLpj|a7O*$Q4
zBx13MO23C`MAuIT(;W!@#`eE#LTuIP_)?m;q2VFxOu`i+R*KjzVuuJ?qgCwG>zJ=*
zT*J7Q{JmqWV#nBe5gSBoq)xKt77@Rb{rnT&Om@C6N&(?`y7<k%qge{awu;!s22ej^
zoaAo`B@fDA_E{N>O%})(c8k~}Vv&T!684JNM?NSaEMdQh10o)actXRWNFw4YErf`}
zB94eSBjT)xKSUfAaYDpNLT~h#h~s1@!D#C)iR1HzX<N(&4Py7-L{Evh?2MeI2_I?<
z-ySXXr?IO-_?(FIB<CX9i}L~v+#kJ2F1gtZ_@kF7u-p%~coW?li0&vKzCx?%jhZiv
z>mvRXahKMJR(XVRgRD!$ZHh>jjhiAyXN^2t6QVsF-x~2vC!=>nqzfdh9%S4nuUsE|
zAmX8jW<6pfdWHK<H14JhyLTr)5>aJic*JqzDJ><1RtZiC&uF?t{7d1Q++k<v1$noK
zcOqU=Y@cqtq97x}SvvGaM86%uQw?JkDuyWgUc?8A_B7k2LiM*Be{<<SBC-q#Kl&;{
z`wtG7ZxGJi6ZtISiwIGIBq4<ahlJ~M3_-Gb+pKU{+itjogjy$~#~*}fw@q1sB0-fv
zym*$-_6=eBctzjbAx#1eq|oD_F2N-sql8Qn+!8zzQcFl9!7Ewa3rI-G#K-7oq&Z0?
zVeR`+bx&l7US#Ku@ZE<-TIvAxWPLCLAB%P;q;98|K-)4d%oCzbMF%<~w2fnC3Hc=C
zmykt5R_eoXBb$W06594RvU8RsIV9v{{uN^`#@u#k9_|CFeXbMUI5AW}LO}@$5`q$F
z`%(IOM&iM+K^FMDFpanNkD)hD!nCjDyxqYFDM;ubp`(PTgqVcyB-E8qNW#|=N=qms
zp|FG^5|Shom#}rKP*g&qgoCS$ViJaCEi!p{v;tey()&gU34uVgqy#dsWC?LndzqYP
zMD&Iy`pg$CC4qK*Ex$E*zEp&4yR3u?626fvJ1-}pJQLdfb=8|_MG2K8)RItJ!n#ie
z8E|FtpzYBrj8z#aTa8I|2{o8}Ys+g&_~Uw*6dJDzweFl)M*{W-kDrcL?37qf!lm?P
zBMFTqd@tb#>fwFkM+v$57!8@%XKcXO=~ein+kBll(nLa23C$(6kkCxR!>$HhX8a`K
zx4O|23zB>GF}gO4wUp3GLK|8&39TiZ9&UNr>*GdVPxQs`XgdisYF8hly@VAFV$-yQ
z&S}Hsq@5&mmM~JnC<$F8bd@kr!XOFVBy^Y1N5an%dWNDs2qpAlPRAm5UKxz`mM~;h
zXr3opu0!I76bXGL{34-0SpwPTm=HyVG%t*$9TIbHHk)~(10<YH8K>h8rdkq)kugWY
zw4uX4528aQ^tcl(f83z88!ln~hEOLdHbTO&D&YzDLZc;&kuXKVR0+RI7|RtW(gd~)
zj*~E6!UQ^QhtT8G@%oEG8TT7&?}f764^5(;YzR|RlgYXU8;27j(<DrnFh{~%2{R<j
zq@it!&z3NY=4w#5a+U~fl$_;llsHXz-HX9_)DsB{BrKGyi#pounAT`i<q$0&ovI%H
z8=R23=x-91(BjH)%2+C4nS{F%?nziqlPuu~nSq3r5>`prC1JOO)f9-<gw~Q#Nm#?Y
zNTnhqSubIOgl!VGOV}u3lY}koeZP|to{UmVDBsf{vYE5w#pIY<$$Be>h|n3coKS?^
ze}{yfbcjJlVu~=~iowRd^}#)K3ZMvZAbB78&baVF@<GlXV5D$FMTfZPFeB|$OKL}H
z@+Dj(Tc!CqXdEYp+8H`S4#L@!jHeh+Gg8<gwX+h=k>dv<%9(i1Gx75jG0wy<Fw&2|
zmnB@0a8tr930Eatlklg68xm;W-s?1VBMb@)#9gaHWnUJiaW%;i?)XE9enz=XvzjqN
zd%4ao5V=EjM_Zd3-<R-!9GqU=CwJiB_C&%{CXdKXGDjXWb~+XPi@fYi^d+r+s-m<-
z@-wpG`_bo&FBn_b3{!NXDz7EHk?>Z+I|}16WEt-ze2^f>5M{b42nSr@i<^RfOZZ2^
zw220V;*Vq-5<YSC`%EEgq$T{q*%Y!Bt0_5Ttodk>P16k89pG-AaDfb=JA({Gh9)Ce
zF{ES(sWQr(i8q~S{QQ6}M-5$uOGZ%{#bmf;cw}UikxhnIhEGOn8EItrWlZ~IP)fxl
zAR{Fc3UTe88|}Q-cGziUq?0Y@$|Pf4Ae>%C1{oP;D?GYhCO7J1kg$v=N?Uu=89cLW
zo#?a3RtTjk*=6LAkw86^kyFN3GV;jCD<hYT=fP-h>cb0Ty*FAnZ<HK-xF<@nC7%qs
z3@9L@(V2LD*@`o-qzLI0lwnY_+pTT2Ng*U7ETfQY#WBAlAtHlzzKF`8O&(1dea?g%
z`-_q@#$*gW6Q>)8uVoaLQA9>VM*{8TLC#1d_pjkZ8A&o~$*3)(xQr4qzL8N;MzV~!
zjB+%+yCdW{C8;Najj}RI$tX?pEQ5rU=rZ8QAdBQ^7d!ekTAt+vT%igyOUHtKSEv%r
zz^UlydB(RgD$A(C*{X~+7^^W>XRJ^)PM-xMSFK5Avol2LQE{mb4NXQX8Lee(N^RDa
zQC~&_TG=MydNK;W41O=;2ibDu9~p^QyDDD@Hk3gZGmT`>e#Eqma%0Ytq=}5C%$wPg
zpJX&=-olo&q<Qm2NV$!SwlX^KxZ25RPZpBRq|23x6OEMR!*o5f<KIw68J%R%#@5u~
z&NPiexZA7{xn4IJ-DUi1{aXb+Wb~BrwTi+jddcW5W1xaT3i`<SnRMtC2pN6J+GXsQ
zaX`i|GWwG#%9t)=04d8@yF55b#vmCtdxQtm@YBV1r;pW67aJmDsElDUnw>L7QupSY
z!<mm@B;ki$CJ7sDl19rIBV%i_`77fD#<678Oh`VS$?n}I@rleQF-~Tj!Z?*NzSo=~
zV<tsx8Ovz?=b5u)%#|@u#%vjj_eLnqk<qT5Kt=OqEReDAs^Q&hE|k&jQs_5whkM2%
z=8G9gxZWFco-~%wiQuGhDr0OpnVgKe2h5!^R>~0ShPTPsP8L4TTqR>Q&GS5i(i$df
zWvr92p7{nDo0)91bvDWP-R6Vm2dUN;&Th5kbi^XtjLG*RJ80V52@AKGyJYNUojo!h
z(BEFkE9aPdSwe);mUhBH8HZ$Cka1B)rE|t%8AoLtlW|1GA7nF`B29~hZ>5an$dr7X
z9O|+`M>#9w1oM-OBs?YKH1jjG&_@lDRKFBH$CGfLktT#@qu1roB^ftp^<`X^aYe>e
z8P{aYnI9DQnb&13xfb^CHs5ED&YNTYNrp5qMv_}HZd0fs7ohOF&%8rpp@>07E@SwT
z@I4v#ndC|~Df{yt^O20lGM>u#i{kB0bKFkz37N-Evtm1e@R<x!_%BPPz26xxWxS%O
zPToqMxYK+s;|)dEohGG(7SWZBVsFWG=bQ9+f$)Qjk6ik<jDKixKS!ua^ZDky9af?$
zpJjX@?^e)2K?(&91wI9S1%d)m!POxlO+kh1QJM<vN=Q;5E2z5ER21YnA5|5sOcyJb
zCDv@W8Gmm;fm4C5;KnYq{6f>ESpGuEt-!<F%Xl#qAz?s4N(FHRB^CTS(@dqH2$d>G
ztssqpv<lL(ys(1wOhSwq6l7Gahjp10WLJ<wL1xa9B#VNq%(F3$ZE3wVkyF7}3JTgf
zxtQc-%uPdJQhST_-b+5_`57r&K*8cO|9fY~P>{g#AY*6N4|9Jaj3#50k;W2ZQb@tq
zw#3~myr{iEMGt8HcNxVLBq~T!=vQVlS;5Rkq2kO-Fm@FpBq!ltb;G3;lvYqf!M6&^
zC?LbWnK@QoL0RVSZUxIJcv3b>gaT9r1>YzbyDVIhu@YltMiN$`g=1cgu{z_vGjS@a
zsi2l(c~e~l)#nFmE7)?=$hyzWx5KQX;5!9GD0Nz8kWM|;{GRa#1wSgF2t)GB3(STJ
z8YyV2pq+xo3YsWr!)i?xG^6#}AEFTV6HA&a7_-Wt;fM#!77AKY2lT{N3R=^&R0|WQ
zz*Xvbg!o9drS=LsDCn=yQxv14f=&v0D_AkpjAx3~%oyvepo@a83hrG9Q8&6PSaUAg
zO+g(kk*1L(J;+WLm^~Fx=<dZx*;Hx5eH1LL7W!F1Una!+Dfq?a^Lm5_kUKoLrebBC
z@L&Z)6r5LZLBUW3!xStcBT+D1!3YK86--b-ZZcBApJ(Eu6ijIw4$Uw|(@4n-{%doa
z>C71&%l#b3_##kbX!htt1(Os^RWMD#AIpPpi-srDLS%~U-DOT87poJdQ^|A%GZZYK
zcF159%u+B<vBJV^T7tc1$`+x5??Q7F%%xs!kC69~N!-2|rid}0jgT}+I0cEcz8Pnl
zzbROvV6TFG3YIEZreK=_nh;W0PP3<AEln>C;hnLPag~DAOuSiRBy6!bxOaYZ9l3*o
z%?j2l*q~se0{W`MCUWHTF<J<ke9BVL7_i+W<BZNVw~$>eF}ITGP6<)=d86=l1v?b%
zRIp3IZeIEm8DdoQB1e>P4~2+c29f;=4k$RP;FyAw`^<wh{F}xf3Jxhatl$Wxx#qJB
zF*-?&+h%M%B#`lp(i4v>IHBMyImI?JX_k3X!6^m*o{3Y?qp6@Orxl!0Kp&JKUT~Xv
zjt2fRLOrCZyQtt2ExiiAipvVFD0r*j9mPWh*AzTZ@KC{ZT4)8g72KhUJIxyk`Ykk1
z3<%w%rAZsRMK-zL9M8kKtDw-ch&(W4lnvkGc_#b3uYgRKX6ccF#|mC4cuiBW!+fG(
z^5xKTn$JDvQw4u1c*gT~ZjVWQBjF3`$*mxzmkRz{=nSij$8(K0igk7-IZf<)1s^CH
ztI$>at>7OD>?#BmA9?CNv(M&j9R8Ob>XQQEspf>VUFH`Bgeg=D^X@V!aEU4i6%`T_
znK5aJ;rTtNGS?VM2TTH<L<(`FP%>@IrGn6{!lUBP?GdkvU(>~w<_r@CRHRg4s8%pf
zr6RS8uT<nxkw&#FKck9Fl+77Ut0J9htstfJDl#yq3n9v`JQd8W;_S0X4i#BcP?l0w
z71@~6Wk7b-at#vZR55>ah&0J;sBgJdYu*|=6EkIq<x!EBj+G%sDIb&kD%NC-6;RQC
zj#-c;)n}RsDuSvNekm}9RD@N~LQmOeM#wyhhD{Yw6)_dB8pbFUVj&TCp(vFWQBjm;
zPlK$Xn2JOdQ&mh;k))!yiY6+Wswkl%Sw#&M->OzPjjO0YBc<6>QHm56nsn$-yUo%n
z%BU!-f_OO<<~O18D&BQBh>(Q*x}u6oDky+dSCRQ_ys`?qtg5D>ii)bU&8jNOg(DsH
z#4FDXk~g}NM5l7PQmv_?7R?nOy0(fsD(b4Jr{X&mdv-_Z3hmGg^ZR#UI#aaSX;Npt
zr_LWRe^4=buSu!p8nwQP26U`yq1RW!4OKKEe$_fzG$zez;nFvS@5Y9ksrX4n9~D2V
zXihyT9B!qewTc$J&@E}*XPPy)85HZ<sA#J~on>}c(N0Bs6<t)&p*yJPsG>9TPBxNX
z&=9DU(x2I*U0L4kztU9(30pLZ^-$51ZUIzOY!vHF*7!Vfh1TJGlxCx^ihe2vsu)BH
zmqQdt$uNGQ)u)*}XADqrY;A}V1q~YVU@~A8V^s`MF_b4^n2M21hBK1R2qt7{#7C(Z
z%~?9}jZv|8dxV7Jc*!V8(q+<k6%$lUq&t+eaf%^RR7@iC+i6Z_BvSu!h>$J?r>mHu
zVuy;IDrTyfrDCm$bt-17n4@Bmip47ClBpC6FJwcV$3{*UY4cSqAV(`3rbVPI`4pXq
ze^ar9+(ZSr!%}j+n+93J3Kh$kFQ?XuhDb=GphVM4SJA6@-d0n`R1}$K(p5@*cOp#@
z-6E}5u|dV70U>g$jVd-#$FfC#SFJmgtt!rs3~yFZ^K5(z9d4&dA#R(B>#M`t8HrrZ
z6xpR>w~CkKL1c0?Q7XMkhs!GVsn}1xrsAZE11i=pG5%0-RK-D_!$XXR8OaNdsJNyl
z5;?}RM<J2AK_|ZBs&)TD(|C$z`$hPyiu;Gdr}^k-7(2Z&DCC}_uBvb*n-^4Eq%o$C
z(In7mjuM@wuc)}H;(>~XDsalUrs9T*o6N6MaO3pHUXzL_-BNLni*7TL<c^BFHotu}
ze4lxi7GJM5A`~GXk(<vk|5EXo113qHFnLO5w$!BTGm0VUV$T_0FjAI6{c9C(=<Ayl
z*vac@9#rd2^8<B$o8fL8e*esPPw}m>we+-Je^U@xYF(=ROY6JKI?bh^+hlgz&x~If
zt6eq7k*U<7StlAnv*Mnpfj-A%UHNNJHT2ccPlKib8j4a_)8N#gYsf@fF=%jUaBB!?
zNU5RZ3B#jVcMue`Z>5iUHTbB(^f5|)4R4PmRjnHB=rB`hNT(sahSZuh<TRRfz94y8
z4TNJR85!shCyj-)D0?FrHR~#uA`D>`4Oumq8loDqX~?d@(2$@Zhh|v|xpN*3IhlXO
zNWxqi%H@gV*6@UW$z5XP)sRm^ehmdQE65bouw}b><c&coRpuC3FI|BIHFVo&hBZVq
zgf#1nOebPOy1YC;&!nEvB?QF{y3C*u6r(ZjGz)3?S_9qJQ!31)h-SGPWfL_dX=qJ{
z(@<PP2@MT3G}1u9GnwXD!*?3uG<6zEX(+9MB5*AYWi*u4tV>)9-Q_eZuvcLuQl4g*
z`8T$tqJ~N~ugoNUsz_BP)flTY)?oaWu_hzks#AlMYIBxOC3Q92oMBxu{h)!a59?|8
zUPJq{ahe&r5&luLPNtOVYiPi{c7_;b8*4bb-TaBF>@(&4p(YxdYUq_OLTA-xOvGho
zb1rSc*iu6)vZZt}I{Q<VQD@_AHMG;vlaw{<F-v<5oi*zQpX{N7hF_gUI%?>|<hQf&
zJ<h}~TuKUEX|b4hXQZIlgAUO)Oht4~>8)8l(nqtdtLfJ1XU@{P96cNVMMHlL+coUa
zFhIjV4a+sG&@f2DU=0&BOwv$qrZGgrNDZUNP&qq{aX2HDj$lHTNf+d!$xvz0-&q&u
zV>Iiz!LN)obtD<5VLX>kuytBjiB6`jYM8HKfritw%&8h?Xqc&Cnr1z1n4%<1*YNOc
zoX9K<H3nF&I!D874RqB<*{$2cB$=yW9xY$B5Z%HMF4R!>vhf?WpkWbn$}T2yz$9Xw
z0yHaPkjIe)E@N9=vecv}8!I)e*04sy<8#qfET?OXwHnrGIFv7$g2Q?Z8^~X%|2xeZ
znPVF@E9U>MVH3rKEHOH%)t+T;)<D=Ueat!?uqHiu*hXPwzj<+oxl_X~4c9bWr}j1c
zcY}OU!yXNLHSD89&ovHfI6|(yKeV6m0OLUl5!s`M7^&zF4M*9KE@-$hG<;06E+fxr
zIL_IQ8Dl4yoMb#jbIarmBk7-IlKoPsLcQekd{C-RY2jgko(^5otVc<gsm=MpD~wm!
zY)JSgRisFw;VHQZMK)R;4UaU0?}Tn^xUX4{5btQ#8TPJ5@3}=N-P1s)P9hIzZg*O@
z)r7Q6bSLtd0>V6l!Zn?+=sNH(4YUgHDB#fgYIvdHrG__}^&E*FBE6!B!JN*~B&k_6
zL=T|evgCcH7#aC{YnvDRO@VrsN$DT*+;##H;avP93yFNT{=$oCz;qx5-~jRh`2fLs
zwFeo2Ox6$4kO4Q~0Th7FUCG;xk6APd|5Lt%XrcEFFaS7#oLfUW-~vWhh|uogNAFp`
z@^s2(dI2Ah7Dxy9f$bfve}$w50zgV2+d1n=%lXN%Q~=@ksS?uAaX$uomvJorD@Ebf
zW_n=P=1|SP;S6+$*;bp!$|Yw8j2hNoX0pJ#i6~pk`fE&9YK^nm8FP?6;8h%70l9%Z
zKrUeNr{LgjA^O7P#{<T)nxPM)!WD8y@&g5cmOv|@Ahir60mXp?AjnM>1wud=h{7_(
z2yo<0)C4Lt3$OhYEPXEiWxn+{B}y@%5b!nEDomrE?<fNNT*+E!N^~wO1~ix$>N6#l
z$fW+ccnO+Ppc+se^y6<h4wR>sxrLHIDWEhk^lJF|rcfCcmZec7ScfYI)URSq!rm20
z-vE`lv?8t4ETa-YLQ07<tzK2(qN>1&rlFg&l4=0U_M5eU+OUGdw?IuMbkj=b#5$}@
zA8h{#_>SZ>A+5}Mz>hSpBx|w02YvwP^Boz4q@L&E^=YCOCp7?Ch)E3@8!<L!Y{E!i
zEpE!B8RN-y$<6sFEg0#mmDFr&pbgL;7yz^d+5ugFu0VUB1J!zEbfV*~2#1<Sg(F5s
z(upS#A$eymrB^$;0o{SVw3PFW9zd0)^xb=-H_#L41q{9sj@&YSKNX6%NbCbp(a(%T
z+CK^Pqj`H7Ot;hcg)DQu_97M<2n+(o1DnnmgMlHy2w)`8$A}LF4ju>%V_w;nFr2fE
z0}=1y(9?CsC}0fmD|KeFF`5TRyC;u(8hSoB`Z{g$SYR9r$NpfJUSj#e1YjaCiI$b+
zQ-G;V{3RTp%ZB>b3b*-H6So9s05eGrYzAflvw?N2HV2r?WI0*dm85yVZ=6lFN1YEW
zV7?Go1bmugEM{E#B$RJLh`P6g%vB0eT1qBi^J8DEJtkHFE6M&#g;z1IW?aKqsC#%V
zt<D1DVcXDpZlClw02|4ViiC<7p-p5_8;!UlyoF2mGj0X$^5*8-fH|v;?Z6HuI~jKY
zy8(Kw@#LZ49y07TK}vg>>|@NnDtLg~x&1P95I6)JCO4!3_A`#L{14zLP-m@CWTQbJ
zC_a^B8P##Jc`iN4c#83ZZh6gF;2aIvjj!D}4_p8)>bRuiB5;WUoeoXMW#9^p)QPT6
zTm`NHUpbM>iR-|h6f>Q0IB^5G3A_YeQR9n@TflAL4n>>vGG*yNcln@CfqTGx-~nez
z{=@AQ51Bt=e9ZX7E*<|Q#a}jm20XX<3kt~3tbgRaX30C?J(D+#Z-LLP|My?N4=niv
z{LO@_{KMoU@UJb&(p>#)^DkuZtE@>AoDiMxIN^0#(N%KdhxJK1bJ+=n3CUF^8Y7(m
zNaA#2^=0deC@v@7F0>}u&2r*CC;U!ib|MQ)sFMLEq?3|KD#p}Kq_O2`ok+(#J!1yO
zjCN@zCKvuNveMF=kf@y;PGqx7vok50+3G`1Cn}V&dX?LWJWf<`qN)>loyg}z5hsc|
zk>7~|PDGqAxmH0Z$|hL)lnj<6I1#j44lxNcUT9>sA9bSRLu*B1woV}@zGhySF-=wL
zufD~cNTi-P@eK=;7)v-&oXNOuR#VAN#GNSVgml^{!}3y$r5Q=#R#B^CWjR}pvAh$1
z-L>jgbfOYVDl^jCStOitF8=AN6=bS8QQe7eov7(V4OSpwiHlanAF@SiIZ>O1Eg9=D
z)^*}LCc`yLt)3I#bM^-(nlSm1u|8u1MpA3&L?h;n83+Do)oseW8RJikBy8?P3+87`
zYf!D2w|1fpleUZ<ooL6TJ)>Mk?!e^ZV{5`YInkMVB_~k2y3*|CM0Y37IdR^J9!~Uh
zVwMxLo#^F6Zzq0nqCeN|<3wL3)WXjsUl`gcSyR-{iBgL!GQf#}PE2N<K~7k^&UG<H
zJ2BXaAuJr~#4skWc3UrhQX1~W2$qawB*`cy<i%s0bi;xiSJbgAnZ!8GiSf4P1Scli
zyiQHW7QP~y;>1)IPIF>VTI=^LO4FT~!NQrgzSzMr$BDU=bz-v<^PHIP#8M}gvBCl;
z7CEt)`9kX9R?7|xo)Q0R?KdZuaM6;E*5CG*Gbggai4{&1TNtEGB33%Fik#Ys3+Li%
zoLI+%_*y5uxEm+3o+a{>MB*Fm7B(??<PRTP>)7JNA5I)~VyhF|oY+p2pWd3}-A?SV
z^>;e4i}~df|LfZxC-$;rALD+;15VIZUk8~}3x}8-W;{aE<+gU3IL6sCjK>*IFjCP;
zCr&Xx&A9R(%Y@F_r8pnI;KW5Io;&fviA%KZPTY3l4l7)7;ue#uw*ECH*BSq0yuo;r
zv2KUZ?0J^uQ@YENhfdsc;=U8@??w_9T4DA9$;(+fkDPc+R;pR6@WgUYi##R2rseyq
z@H4KSd9bCqvy%DJiGQ5<=)@~0Uem;G3%+56cg){1<~SdJ@5Bd+x5KP4Qu>>9=%(pk
zCq6Mxq2n`o%A(L0C+aS@V#UoAjsb6iCC)}2It1N{=b{dU32{k>%>3Fn;rGq06>N})
z{u>OZj_NvU=+JezbR_90uEVXvqa%-wygFL=61+On=t!%>r^Bx!pyTUF;cCN-R60^p
zv$;aEi<@*SN|Mw%2(OI}rPGmKM|K@KbmUtS%Ag~oj!Zh};w0ynU}hazbQryiY&!Nl
z31-zXFK^Kiy~Dp=4^j3;uW->u=AtLTi9L+i(r`{{XHEDk9jzZH=F*W{2MKAXc-qn^
zpN{-GB05YR1#}eDL655F6Ut9^g$x~pVI2uNf;#BlhO+co(Mm6@(kW-cr;jEPiR#$*
zP56lrDXinc`(TW*5Did=<8g>KIqkp8D59gNj&5I!VmcCa{CGZ|bUsd5BJ^F~5;~G~
zRM7DakNxVXP+Uhz9i?=f-xIvIFj!j0xOj+o86A`@tD~Hb@;W|z4AqHSyFvBL9wtun
zR*_q%##35JM`b2ebQ~`is>+<UN}<`Nof^u|GQQPOQ^zPBqjmZP7PWPB*U>{q9Ub54
z_(?}|9d&io)A7BIA9U-P{KJw-UmY;$it9%mzb*^X4$IAS)Yq}TZirF?9SxZ`Vr<OV
zgs~|j=^R;Z?aM5GHd^RtsaxjVj#jX~*-A$n9kjm~@z!K!r!2CrT&OK|Pb@<6_BuM~
z@GdYq>gcMYRR)uICmo$xNW6=Vw&M&U-E{n1B-Hj+n6RggUOEQo7^quUzrA(zBeUEa
z-<BiPhtzZsq10DLX?FsVUv&J@+U!qjrza#W4MskO#PJ4Q$_~;oSVt2ryz)eF2wC_%
z<L5)hP#wdlkweCC#u1FY^2bLqse9WPL$jn~nU3W;#?m6{n5|=uj>YFAbdNTk$OB`7
zj)^)ZF`uF1Rmad|=2I9+VXBTBTa9TnOn<_379Ls{B(<43X0d*Xo?*()B@<m6TujS1
z&-ig=aGs9&Iu_`-vo2{N&9jaTeUepQZ2$6*dz!I15c!R!<!56F<5EV-UQ3a%LdQxS
zd&#PGtfC?JHa6(ksADzrH9FSnSVya=gZ5)pzXXN!kr_vgG@Fe%YQlFlLz{GL(Xo|Q
zkgTX?h|*>qcl%l-{qWc}9Xn_p9~fV58QaOhhsRzYGIp|rgu9sRCVQ|Yw2AP39etk~
zr*)jsae(<j9fx!rX0A>#PSEVN2p%CT9cBEX<0up2$Cw;v?0Lo@&68xqQ;btO&YcVq
zsZb-_B}44&e=al3ILG9?jtjPg+~l&3D>@px(8PtSI{n0e6fQVixUS<*9nW>VpaA$j
z#SI;|I5ys-sXlL%Ol_U7Z&R>Z7aY_oe1~R02a$V>MDA0RVE&Ntku85rL5BHL#=mU&
zGxE*P5vur-R$Rwx9dGz>hnrg`g>}PHyyfgajPDrVGk#$Fn~`qMN%^CWe>wX}#}_7_
z8L!siE8b7mPHln<q6?-AQ5Pf^WEV2Ikl6*r1=R(Q3tksS(_?Ix^|*)jRj+W;I%_*!
zXp>FTU6w~sa=GAk;l)g2$KMgXcF5;~-vxTpKCR0-vjkj7<-+vu!*d22DP4G#)*47^
z7m7-;G^{XYib3n1K2s!}3xw%i$iQUPT_d9lg#8fC!kW2U$n8Q_7qYpK-Gzrct#fNm
zF3Q2UK(HGB%4I!`AwnsS3m+<k^U|6QHI6Q`B>7y(&&tFLFe%7rxRAgk$QWV_Ge#Im
z-(OFSxlqW3YA#fF;cFKPyO88UaTkiP&W2z(kx5aS*e$_gE_A(R-J^LoTQ}MzTu64I
z*7R@{7ve6QPPRH(iS<h|mSQZ;SjL62Oh~63lk$ueT=>S8S9GDzYHO`4We8VhA-x<<
z*{UwOLHOSc)NtWD7wWq3{$1j?WZtWdn$!muYSWU%LgB5(Z}Wn6SYF1FP>&n=-i3U3
zg9i+&g&$b*BV&CR8n|$zQoNxHz0b!RG18-<Dd*#qZR$cZ7k0X^%Y~m@Xzs!k7pA(<
z!iAPDjCEn03$0ve%}os?6LO&~^`ETBg?28qccCM-pEuNjRyjF1es`qDiV%@)+pQ~>
zPA+ujid`6KBeSlg772A@?9SMOv8M~Ym{4hN7v^lRc0HpO`noWH>k{wB<QEr$^OO6#
ztOr~)DB5ECL|e<E2Dz|xQ*bcj5XPY{3}Z5!kxECnFw*9u$VZruu_eE{Kyi=M!V``0
ze5?sBT<Q^89d%5!`!I>gWU_>;Rt%X&KH|bkGI$qexG>X&-(1#DMYCMUJ5ZkE!dw?-
zbCrWmtCN)Gxv;>64d>&;=ezK+nYCUES+dB5#V*i}X|9qX>&tNG<4d^iQpUt|MV7gc
z=3Q{P3oDrP-)-FQ7h3JY8kcp7-{_)KXRy|*;93{fah3IqV=_4CbBG(r>_3NsJwlsY
zsL<B&I~Q$sVGG;FRu{JO#BO8rpt(JFKE8t`&(Ftc!gsr{$Aw2OJa%EP3;SFc;TJB`
zSe^y<yKu&Zvo0KP;h+nLxaDjsj8<Jk9}<%elP@PG9dY3gCd7}raE$qJ#uJPu8BZ~i
z&S@8(FEWUnbK$%TyTkHD7cP)7%(wm?Md9TyN2E%zc$<;NB^O=cSQq41DBN|4rhJ`v
z)rD(x3UJ|17jC%lzy%WCWW3|TT^DXKzs*>sfJvp4?zwQECF+Ive-a`OSwdMVdg8)U
zim`5}Zv5rKGYY(Jz6d|*cutG%!W$Q8W4jkT{Fg4IGefV)FrI~4KMB5d;T^3t7d_n=
zd{5OE8~;#)8-pKQ_?yCb{t!KLo24h5`zN%mzxgj~(x5(3Ot$$K7gF#MN$zk%u({}l
zWb>0L97TtxShg^zxvgIXbT?dX6!_h;F{c~!h<jLb>mJkXhR2P9ZWwNOxo)lMq3mw>
znEUP40!&i6k;;~&b|Z}&Y28TYMtV20usnks8QsX_MrO|L=9`+fJ*<N^zG~gzRHXRt
zMm8?3aqWMS9B$A-b21Y7%8gvibK8<UO!B&s&z9t8QoxP-YlBoJ!Hpod8FeG%My1<9
z+7dCsB+Qs}EZKB}gp}NQLoqk@pAFIvA6pI?h21FP#%?$ExKY%NVs4CdW0V_-ZX~(U
z$c@Hs6nCS98x`F6#*Jh?5RIjz8*%12+E@cD<)%whl(9?8yHVEW<=hy{PmN+6)hkk$
z+^9)IV1>$zH5jY7QI$zG#x;3E)!iU0SIdf`-?DIGMeA_2nKy8w4inl|@;f)`GN;md
zZhUX^AKduS=JlCK5vzrU%wK&iG;yP;8{OUL!IEZ-ofv;|qd61OZ{bEu=B?al;<ozJ
znzL=(Xv?IXt=XPQ2RAy}k}7dWXXagONmn<zF<<i9GJ~FO^m1dcUD}&Te>eIt`Pq%W
zWHyZ){oMG4CEvEUhR}Vzg_H)kG0?6%h{^k0jv-8jx-pE&$|u%=hPyGs)};IB(Qb@!
zV}=_u-T0N|6YbKmZj7_}cqS7Vi}ndka$~X^Q#d=#)|u)?1OA9K9c8*3hxu@`+?egg
zM%I~QYc6FnmmDW&Xr3GM-B{qpLKZGzOq<rR$c@FUkmo}DHzs8+#8XUjn1vk6SZ6uo
z3O81|vC56rZmeSo?QFZojT4jO(La*bx<T0;;mG0CMR%4AuP1xH5Z^$WjZDgJVtwlE
z?@Ttkv4zQ2#%+w-8A)e{8#`^ji^;C)>RvbYx$(t~6dvq%<A59Y$R)Y-pc_Zr_=B8|
zvxgZErLxxRs2j)JxZ=iD79M9jLw#mK3Ma`yN=8mGo@Pw%HP5<njup<kahb^l#*1z|
zUTa(;EEifKhKW-Ped$YTC#_>$W1Z`ae=?Hr29uj^++uQ@@ebo%M(KTu?|JziP=t5m
znHvvT{)q80;}gcGjO5oXms-bt&e>0lFWh+P#w+HlJ|t7=Yvym<c*}$&@7#EA^AB$P
z&HNw6kBtA?r8T~Be71QC&EfDs@F0r^Sv`E}@xbpvzyrwx*#pG`)dMdV(NQ!HJk060
zVan2z0jCGL2Si*RxIKstGY&m4W_}Kmg!Y1bf8M&>^?5+s!V*czwbC)BVkBW|CTSSc
zG7c{%r)QFZF(YFp#>|YTKU>Xa^B}tic|6F=!W<qfEo`k+PR<hf%7a`s&+Wk<6+*o}
z7S6|#0yN(ImU4a%E^V?1rGi{!c#y#4zjzY%AmTyg5UPY=(f~bZoE1&7BIZFM4{B#X
zoecQegTgdvX^}E5ig-}egQo%f6+kf$5<QsZ!)zatJSgtLVlRI4qJ#&@9^Ccdo(FLc
zN_z0C2V*@b<w0o=2Jq3#cu>}Z=|_^fc~H)S@*dRi;9C!hw2NkFpjMzMonU<-_8Si>
zvVJ8-l2rDf3iGOr)ogin54Lr)zTdlMMy#d>4LoS*K`pzqwg+`Q_>Qx6J*a2Pn@kbD
zXZ{1@kG8zN2d&Fkrbwv~3)|7mc+kXyrnXK?Ce1wfiAi(D7Ix{l_WTn7wZoD&jBV}G
z=w<5$v%Lo$Sklp!cVg1ngD$qDE0bMQ!iAm(yEE^>*psoB2faP$!~ACt`ZJ-H`+Cri
z`7gG_=xg<-ZYy;lO9pu`n92F$<`56=*HLFJ3=Q>Qm<PjIPCsFcU^0@C>W=bYH1jdG
zq`*;eoCo7QSVT+jf%Bj^!Gi@{x^#{<(Su3MCwnl3$y5*KGMPq8&twMUOtO|=tg9?a
zvsf~laSqLP4(q;h9%tt>Qg&{#Bh_!=g&vg1@W0;?e)HhC2PZsOLT=*0G7pxMM|kK$
z$TEo)RFUhh^k5Z})r=cGSi@v3<2uImj8tob2OC0`4Qyh`q<mISHZ$Mi!B(<2=DR)E
z<H2_3I~YlArw6;3Csq8P747BhK@avZ*>7teAjgrdU1KO6^5C#7KjOhOKKfCX9JA%r
zrIQ|<^5D7$e|qpzNjS|#S3Eew<gBfEj>&lsE-<-h%P)CwnR(Br)*aSW3Nla4Yb^Qi
zcPsVJ&<&cI8L>MwrR$BGTy)EW+f0V@FNwV_#NAV3_dR&vK{YR`d-2eNM-;5Q$mhjl
z58mWA-+1trt32`GRakz?{4a8CCeInE1234oWPIhpYg=Bmv--}1_ngh@#pRF22M;oM
zt;qa0$#)t5c<|AKe?9obIsq>}d+>!qx)&O&rC^l2a4?~Yf)}~l%c2(p(^(g0lw>ay
zyYyz5{@iP|@AAU!h0~VnUbvcB?&D#J&z5_=xZjkYGSM>=uQkU1+Dz$1Dlbxdk%l$X
z+4^a{cu?hk`suw`Rn6j^`#3Usk%@IOGiI^%b3aHy3fa8K&ci33!;73;`W0g?#@vi~
z7)hr<J}ti&1t<=WFuw7kpe;}G!ti3sg?NG&K`%lq|Jp7Mdl6wyuQyR6QClAKqL9tk
zU5FR9c@ZW>y(q>c(U#BZpQ5<UOE5|HBF?0w7p1%?&AgngQ-(=d#vL`Z@=Pk&r8Dws
z6>VOLNo6mpFsaITy}C7rHN5!Ni+*1G;zdm_YI)Jfi^g8i6Ytur)_}2&7vC|VDs{c6
zXY=ow{J{7lV|~Wm2dyaG&<mfV$h+y*`KXB(ZM|scMN==DdGQmgbuX1vQ!tx*k?whl
z7AzsnmR_`C-kPzEEx&eNZSO?~FR0drYDvcvtoYE;i{lsKoxJGGYF)hO#iT1^H^%Oa
zJs7D<PcQ!By1iM_$Cm%>MPHkrzoz#0Vt^M5y!df}HqeVfUX1r*f)|6m7~)03^%Mm?
z!cZ^$(cXF>FxHD<UJU2z|Am4P%tv}LipglkF^r`DD>a+)fAMV`3nP`R<(TNjBrhg=
zaqEb6?Qx}0Xo?qeSYfJNcbXT|Z9c<`napQ-F`G$aK6?_*<?Oh^>O3#z+xnDU$b86w
z;3A4P7vj|aC0;D`BC`)!e3k((^J0S+8@*W0nkyJrlGAyyn)w<=dcUZ~Q)>uoy;#SR
z^^AAYTW6L{#Jzau#d|L{d$EO!{`6w27u%ShXWZ_^A6^{wVuu$yDV|)6CzmjHanWus
z_AuG&#X%<f822+CV59@ptgRkmewguyEuZ-z#W9;7_o8LKqywjtPS}!@OinSL_Tmha
zvv%n@FG!ghFHj+TfrS?tFEL(byux_Zi)&0s`8ty}1+^Pq+@uxc>|cyG)&y^RamS0h
zoV`aep9$5vPm#^$4GSedV*Z%%3FA|{^m8rCLY{H<IpYg2UfQLvym-z0jV*c0WZH<N
z4_^FDLDh#eKI`Ysf4r#nldAjh(Tjh*_+;x#K76+M7cWw<G0+hmOavc9Te7pf6|Q9;
z6qcyAT=QA)cT$nlmZVG60*JVLaI?hYL$-@?FQbpq&lq4#$w&&Re5hB&B$C#LbUtM8
zAtN2@h85D&b30eATMx16Je$b}+B=VUt$RVrW~CN<=<mY-AF}(9!-rBnl=dN~4`2CE
zjO*s|AvY89-#k9#WnP#uA7j*q{5}-$p&(}?j0PheD1k}Phmb7^`>^uw!c;`bWZ}qG
z>egf}=0hP{=W8bGI;pf>R}mkI`ap!zg~>u9-2!ka^=H+-P;nnha5kAS&PXknWRkmt
zT*im8J~a2ykLlJ_m-C^L50#mh_n`ulZx|~w_CIXR52Y$T)b^o{4`u$LU2Lqn)qJSV
zgm?`m-}+F~meleg%1=(H^gACK`Ow&hy0kQ`KvC{{Tk{7Weq>&sv4Jgb=);Rr)=D+8
zB|rJllzB78oJm&cf1$6X53PLY%ktKYof%1?jSp>Y-i}Fo#tuGoWYWnl{g^|WvN70&
zvt51Y=0kVpJ$(4t*6Ha(FXp{%Ngq;cYu$%tyl+L_GN;1*XqHZefALx0QX?|Zhe19}
z_F;;TzD<E4K1}psk`F`e7Do6m%!lEez0oykM-A)Zc_e2?`K&ipC_CDRF}D7%K8$5P
z&X$b#VFL5yi*Zt>^t88i-aMNWs%|)@a?wm5nq&!2^I<w?XK<Dz;atg=YFoi!jt_Hv
z_{ER@e$4Y>KAE~7dHh)5!$Ke4`0&<;MLsO{;j#}`xRKv{SmwiWAC~yAltz8jczH}-
zRaq^yF1UgW+lNi8wu<r8hX36)toC6IOX#3$nXL0+J(CT#d?Pv0Pgbvf_hB;&xA?G|
z$yUZ~jN2J^Fz#gB#Yh$DaC>~%>%%@D_WN+chm%}%fbkE;gN%n54>KMiuU}_92RO=E
zBFB6<Zu3Gh%N<T}_M8u=DGc(@oo9SFYwOhGH_FcYaDgQkZTTf1M!vT!_NoupSa`#S
z>vn1AN#su-=*yOr3g(I2^x>8dw|%(73Xd4?GUixj+_P)lXYzpYA-TZqP}Qli$9Cxx
zCQr!@nLP91Ir)@b`pSowHlI{Pd;S0McRsxLLHEPu#|Iz&_92Dea(PPs`0$BBJu83o
z;a^(fg2^Mt8Q=dAEZj2wg%-<9?we0Lyv4F%haUo06#cl7;eU}tVu{SCFsgoNOz5@#
z|BmAH<Dbr!H@W@r_>t3(yqxv=k=~CCeq>*%`dHb|7+_4vn97gTOwur>Wu&Ik`SEKN
z_ESHOWwK0>UINU-rI~G=EPiCQc{VzV&2#v1hJXB}T3`8*%a5N*SdNypVsc(T^7&EI
zk6Nsp-;balAwLRmwxA#SS!>=5KN47yJ%wchVLu{%l<}jiAEqDS24>8ULViS<H@Fxl
z38{U}RZ21zW-Q`IQ6|M06a7eHQk*fFv4kH7u2=(%bC!r)L@VV7Z4+PGmQVyP=SO+J
zb!YUg9~EqQB_`kaQISd0+m;WeZev#VqlzC@{itSZ)?iZIk4KjsUFunC6pHh`jih>F
z-Qv~e(l&n7@#8x`>e{s$`RT>2cs)P9XUPwKjBgwL(GS|Nl2Uy?8nA?f4gKhIF;0Y9
zYwSl8)^F-ZGbaCq{hydOXKdj|OD3%tsa9)0rf@uL>qk2lw)dl_AHDqO;73Q6bn@ec
zKeGRsb(GG2bg}DpWzx-$?o4{v@`3p*v)psu8e?zjp&wt>O8S{g`!e>kHHVec2KX_M
z4jn-I00#Ln*pDxMqzGV$A46&8$-o{O!~7WT$6-H?`0>{)V}u_Q{Fum%jAR_eIGS+`
z<FAZk{TRn&JR|kTUrL+g$7Da2`LUdZQyAwnPGy|t$8;t${Fv#-Ear0=XERbebNsm2
z#F~(Kw&Y1wYke1Rb|K>;KNd6jjd2Mh=`1DhXlI%33i69X#=X|&7C%<{v5FN|Gj3p9
z<HuUN);d4d+q_>kD^P4Cb1fX*^q<g=&35UY^uks@wsCg5AA6bX@MEVRyO^J@Xmxcr
z^F54|Jzq!NXY>6`4)}4<mK^e9HSID?JHPmGlum!UjC&L!{5bB%Wk0U4+6jsPTZ3nq
zpJY76c$%>?Tg6%C=NQlXae)and(n?eHh<Jny=wD6{kTTW4mb9viCp(%ew!$9(!b%y
zP1d=^c$@JK<6TD5xjtUKPfJ-a`T5vb&pAmC$qi`^FUB9U!V@x~T~?f-%fhED`OA-I
zemu9V9WN=mvT#<!@rubiKVCDTDsTLFYx7C7tZVi6bQWOA-~UfuMEhv-f0=yp<FhTf
z{+;RwKnNgT0Qmz}NEaD%2OtF?2cU2^bpUCYsEl;2Pk-fdGS?Y>j4noZ03Ie@MrxDZ
zAtdw%=!<REAyP7?vP<bs(43l-Hh?4X<SZ;q$C#cmLjW0>WMa(BNR2e*lT_9KvauvP
zV-CACX8>Q>JXZkK*8T5VD^CD<16W+&{O_q$fdG955Z?t*mz9kG3I|XmfP?@lUycM>
z7-9_5?M(nC^C%<r;k%d?V_t~yYg-<epph9D4WMiQ<>*&{01^X8vP(+@P~7Ho>Z-{$
zk25J5Kq)4rZFw0c-P@YwnQSQ$t`<NA=HCQx^G1YH#Q-WXugqA*mRAj6({zIrss~Ub
zK(E*S?_KL}xq3~;S^?B%QiqYoMg6bGyb0s?jI$bsehA=4=JgpHFp_>lCXE7UY)i^F
zw_Lj^XPX7^Qvl6r0{PKL3tOjU0Iis}W^7~2+XhhJw)McFLjWBE*b>0j06GQGIe>lv
z{1QMHTeC+1T?6RG+0neMZTEonp(?7|)7I$~KyRD(3E*eueQimN)sFrF3<%)20G0$W
zkb-}}x|f+2z+ejgtTr)#p|<|;0ERLD@8J&}XhZ-b0~p1^(E*GJ;MV|ha1hRt%Q^v3
z8XKUm8d{b=-fm|?0A=`eNy141Ot$4ym`r6n-$a<sWJUlp1DIv&EDT^a^Er%j8Rs$1
zXQVb41TdwV<#d!5v2bw!Z}wZOzchelELk1E@&Hx@(6DWERRFm=L{}0o_kT>i1(X!W
z_dU)ovRpLmNOzC5VF8Bencf8!Sl9uAySpX0dx8WA0YdQLB)BHH26qb<+!uFu5By(0
zKK=dw&Z%?Hty{0EtE*mB_w;mErOfVNZRbrQh2wltUdi^W;;}j&YvQr?%TXBDF|KEP
z#>N|%4@<R<zBwLS;;}Ct`{S{d^&RoJv(Bp3HjZv*yz#AdjoulL(?yJ3@z~Ac9>%?l
zlv=!D+yR;*;_)w?$my8;3xfyaaX21F;&I5fnS9fFSVzX?`UQ{D(CZhJrRcGE9A|?Q
z@wgC=i_A~P;}jh(9%ndu&Mx6B`5t@ec~<`Kef~=vy~UUskIV76LPN~Xb(6_8#_RF8
zVe1=;#PsGirz+iM@lHJM+Nt;Aai94ETNzzD=5aip&^bDB%!#M*covWI4qR~Hc|2aw
zH03};2VTbG74??`c^r5hk2mqi?!Z?Lyp6{@E-KD}_wo2Z6SxCAid!S`BkTW><+=aO
zgrDN^nZ+~?%QIsbiNrEV>p(hNX?{0N2Al7^5y{A$zT+ih3YnN>X3WBvl`$LR+|kwz
zMh*u&4tO1icfi5AlTmWO#l+1hFp7+nYeT_|7vimXz-KGDs43n>{0;<Ikr@?6)wa=?
z=nmwxm5OyUe#ak+<#pg|2a+5p>Oj`Yarqo5$Ts;MD8OXOX6u`>paZqPvwo6O^+FC9
zoD^n^IAAhKU@XL#$VkSNr7&X=Myh-<2Z}pT(t#8Qk{yWYT(|@$5!u$vY;(#Qk94mR
zWwDF{r5yNYoYh~Y9XQ=Pp}^$CZyYGgspT9v*3zuxKzWXmO$8<u87s@Nl^v+Uyeie7
zNj1jmj5Qc*GE&}JOoo35*0Ghk4%A~_-&W|qo<<HdcHl1umN@7+Hkvvx%7M`iG;^T2
z14G%eg##@e=;1(52flUSI|n+m-imQx&tPi@XajD#y==ouTgG+{w0EEbbE;3}-qzhq
zM+Z9DO4c)0<8<L@R|mS;dUqytJ4C6y92j8hy_xi3{GRa##=Z{pW740Iay4<r(93>5
zIxvuxL5zbLe_|ZM_%kEfOM_yE*?c&YUmO_0<X6U#cIv&3F=HGU>%d}GKJrg3Dq)-h
z;~n^o#R-fv9hm6ABnKwjdH--=ip{4ondZQBTlt+_(H^-oSft5(7L(Zy%yD3@ZMn#S
zdCceA$^r)#+I*7~6|-7R_oPhnpDe1WX_h*$jQLRqmOHS*fz1wVVP&NQs~lL({Fibu
zYnV{>ws~UL(p+@QSZ6EizYqsDFxkks$xfx`!<1{Q1KS+f?f@N>qB|Vco8&|eu-Q(=
zT@LJKvd7N5m&rZ{_S=egoi)k-<G?{y4ly2PJi<uZaFD^jG-Mn&PQ#&}agy~D%qd#o
zT=bL!!at$YtdsE>2hK7-$5=O;)k+r~xI`}PL@Ot>DZx|+GCBb#E<13A=Hb&ZR~;z!
zA#}?@Yvx$P|2pFhMvC5afNt=J+;-rO19u&`$4PIgk-MAs9eBXe!n=Zzj)fmO@Q9<2
z8DB6yVSMVqGbU8ja|fdNt-<n=l~;_f8Q<78(~HKwqf3AT9~`LE%bI~>ocPH6KgLgt
zl=RtwG)~Kg!mFmSu}<qO(lQcB=R|s&XJ8WN#Pbe?DJhc^nVl%>L^;;8IN@iK)ro9Q
zWM}TBtJr1ZE9N<zh-czpl$>xn;c{YtVYRcHMS)RdB=O4|ARdm=uQnf(<_RhNw?zX^
z$WACus7{n{VrB)aK{O{$oCt=T(4EN1#<`rxN1_>*o1=Lc$uh4KU)#LHTgw&mJ5hj@
zpsg2VQsHeH!-=pH5nC_fglY2xCuj`|%3jD;3Omu(9;Znx7ImT+lj62bvJ?BNTmDI*
zq!TH&9(AG=^U}6b#))rio-=>O@=jE6q9rR8omh9oy2WZi-RDG(1<942sNzIbC#pHo
zh;6Df)^*Ybh~XMe)TFcEdmGACi<4?QQHKdBmrlggb6P*->$B2;v7w!Mva99BjXB!H
ziKa}NF^;{QrnwWb4}wzNxG&Rqi!H{toOJR~Olv3FII+x$<<v4xv~!|Ab-EMn*`R|H
z9jT87TQ1tkiOx>+b)t2*@X&M7E>3iFqPr7aouKHz|B4fmng2ua9!{ifZQU{U<U)Em
z(VIyh#_t(_U?iIi$71?%nKNHRsN^4=7|2O883!>=aAL3%KRGdk$abq=er5e<I<ynR
zm=AYi1QSaAg&N#r(06&6hg;q|lJ!xHqZ!B8mSde5$9%jKzcG1mHbjAPO>|<C6O&n-
zK0Qc(9Zq3Bm5~glIcX_)%e#JO{KM8~IB{Uh|NLi`6EBLz%;uyyPRwO8k2`uk^94>U
zbYc<nzZe%YQn7zJtqp^SEU}fPOy-`8u5e-{^X*QoVzR}FtxQ%svBrtDPUNa;_1ZcX
ziL57L^9@WkGHznr%y_e}HBP6MwHj?3xg}r3iSKZNJ`&u?HoKhI&4lzlPVA+@;>3Pd
z4ly3EQ~z<|pv~!zjKj>2FdnsadOPAc%>Yj9abd3uC!ILuL}eGMxNzEuGfw1oA&(1Z
zojB*j6T0PgqT#IM9ob{fJ8{8@i%wkPqUg6+D*0;1xZ5<*ol2&U)Gj-5#XibaC$2HS
z&UnMtZ!)>%#KetOf8F8eT_^52ao@Ii<irD;KV&lez4bWgF>@#V1fVIGW=j`bF1&E!
zCF>3sUQrkHPX8ZAUsFR}iM(M>dEYwm&gSo(_`v+5tsJZ$_sNORPNZ>J-WA74B*ukU
zo2O-x&V}^0lEH;VSFDO<bOA18Vm+QQvkO_6WOX4slWdG+oUe1-S2oY#!ftzR98@9Z
z%RRuFPKDbiWOTEQ;KJYnDfAdwbkVL%@UZB0{cqOtx!`vpz@o+|GtyBM7gXlU?RUv^
z7joLExm?yGYck90!q+Z*<HFR;)`{eEA<2cJE{tiCkl%#@wmmIWM5zT`2)SS|54(`y
zLL$|~1=EE+e_8)c?8#K{aKI=;2O1Sq*o7jbXDZk%w?U~EW-9o_te6YgUPZRFi7jrI
zpUk8LV@bvo7oto`F;d~BT`0qxzJ;M^S?1+jICmwPLU|V|xKPoBN-oqbpF)bWOv)Eh
z)rD#<jCEn03)Nky;X)VATa&S|3r(2Ra-lX8D!dLA;zB(a>a)_&)*HBR*M45qh()?7
zYU;wB&!O*Zn`TU!yU@Z`S~B^TvBI^OR!myE(1uA{7f#&INS{cz<7j)v4vZZcJ26tN
zIx|W3M7z4s&4nI9q`M2>yYK^Xa{lXSdb-ey8{`T*Rd2TM<HAgSF{ZBz{V26$${5!B
zyYMTM0WSRL!a(LfxiG|qLCgm;;*Qm`6n-Y3VTJfmCc|79ZYwnk#Eh`{x#pH@jpXPk
z#?g#TQq!z1Y+azoyYQO}8(5s+!bBJCuz<AZqmx{i?7~_X9?lO=A)jP}<&4v4tTCC+
z_`3^#xG;nHOhziUUxk=iF3fge4lDB*=h~?>?&iC&fTL}%q*=&hKu4>p6c%&zPsYC(
zm$<N$$udT=>0dbG`SRfvF08bbRZLbhu3>!H(t6akjybIlY!y!RSs5HrEp8)=n;1X+
z7TnBa3*%N7wvij~0wCL6*uf&@-RZ(Enj$!wxk5~)mDWxEJ{R_rf4Wi6jRP+HLu1el
z(`}8=gDzZi;kpZlILl!djxae&h1+HR%jB2~$C)hW-yJ7iIK|P^j29Wt&{crRImYvh
z7Z~YSndOXELK!b{G}VR6Os+6qwQZUfjl1E(O`40`(A@a1P{vy>ymjH73%6<15bg}#
zb>Su3-*e%<3lFIGU3hMn@QBG{#-@YQKe6?vE<CgOs$Z>Z=nIbOOVhuy_18?^(3$eT
zDrEDX6@lC8g9{&B_|Jt;EXKK!(T&e8q;VsL4ahznlUO&>+DfOZY0@*#U@Hr1(2~u_
z<VFrwGBakgQ?s~{)#l@ptY3WD-S~<X`ooK&@ys1=T6-KW=5E`5Z^*jCq_e*BIVieO
zwz(m>;c>(3hL3F&Mn7YKQD*#->lmN4vskk3MlLsUyOGn4En4hnzGjh49yZR$n3wTu
z#xH)DpLqc{f=p;ZI=U04Tp^AcZiJbT@>$QA;6|Q55-Ye-(Tzkm3b|3(jUsN8WSb;6
zin@`^Jao>w&`>DG(c*5<wD3hK;l`J#BgGBneDu!QNR(|#xlx))8OCoI%QBW@r0nIH
zJm;CGk{h)+TG@>%?*IL=uF6U^+rGLRHEdqfjoNpuQ=?Fu#X4?0pJ+wvyV1an)o!eD
zqoEs(+!*1;uWZxUjn;0oVcvwXDPuD?ZJ=xoMhY$5Xle6r-T01qD_il`i)-sfJ2yJJ
z(S`h^Q$l+hBejeU%#+SrH%J}XxRd*TlLIMT-S}g2;y~8BxzXK?9&Yrs%lv^!FUH<(
z^kMS7o%+-j)7R$x-007IfUW#U?ZyYCqYQFmFzY|LF@(v_jK8=sl*us0;f!S8KfmS7
z^kZryD^uN==Ef*DM!PY_jj=3_qqA#bW=b{**WM3~xAXqy#sr&BbYl|p$&6EMoxZ7`
z?#AylcD9*?&qV%kV}=`@&PP|dt?yE2x-pL}XW90%nap9F%P8(hp6|v2Hx_bq2_w~c
zksFJd|H=55t*6b7rEV-EpXB$8$Z|O+t#D(dZ4=+#8lm&6n`_-z=f+1mK{wV@sv8I0
zIK*Zf82@o&qZ^x;Z)V)ZxW$dFOsJe~Ot!nRgUL=?PsdM+c5`%(8+)1TW8BYpfRRer
z%Rgpm*{;KG9AWW^8%LR(apNq_QQgdc-8ja|amEvjCmE@PQ%p`X3QN<UV{(h}yc-wX
zxXAn}BiUbKlFE3Q@d}NXFRLifI$bnruy}*<CL`sdwE}K4zr%Q!@gC!S#s_XZWb%md
zF->}1tSj}(oz}2=%HlIdiauxZ!i|?qUb*p_$s5LZZoFkemeZ@oy|?)X@|@qTyOG9g
zqo3T?(wxLUyOBl!eampEeO!!yiw8opCMCvlQd$A&n2=d|0U2x_$0Q@;=PGfT1Y~BO
zg)xVKtO730v8tVomF$dP3IF?7W!fpL4o(3s0hvT(7U32k2>40B5CNh9NkAh3jRklF
z+SVL}1QZtF6W|vR5?}}j2nfC?E(=fuq|INHN>c@VS1O!eKmk6MCO~IGNjaJ1V$98$
zM?hXX^=l^i7=Ni8_wS=fP(VQe*;a*#haW|%97z7FWKvi__npb7Hb)Z#L<D4?K)cji
zt#_k{H3=jNI9w^t$Ys8s8ZJT~e+j58po)N^0*VPJC!oB5;sVky4i<Y5{6;{sfD!^q
z3K-GDT(m!2T0jc(C?kobnDj`WT!va;SCIZSC9|>uax^zz95MaB1uF=ki&{mh%!DAl
zrAEAxfW_m3na@R<-w#$5F!Fq~u7G+1s<B>OKn(#k1=JF($E~#m?0J`%kgXv70Wsm<
zU>z3Id<anzU3u&CsnHTr4Ft5GVBOI*WMyc%geC%-3g{)Ew}55>nhWSGpo@SO0$TD3
zwioa%^@V_qGlD6pMk@iSJ<PTOPR$6e>}0eSXz%q%8-X6p8S6hJkl0Q@_;qOOe4_((
z_m6SIdYK&sbmGHFk0JvfM!E{tZNQ3?26YFKZqyO15bwdHr-1M885He9gfk8j@PmN9
z0_wLg6L&}Y3Ft3?-i2=1-{^TeLMsIg5J08<$VgxM4-~Mqy4mJYWUv5dZ?pW?Fo{14
z7)sqL;D|uW6JfZ3r2>`-_=UPgz)S(N1pG?vEMTmFaRT0m)@U8Y6&TG((J@Tgyo!t$
z=oOLZ1c5&2PN1h8zX`Z<K7n4on#jr|#>tFR7|Cp^fN9L9+sf|({;>HB8fE=MWcJKs
z&K59Vzyg7`AOS@^UCp@y<_TDMK1w{Ht+|lAv3bEiseSqzi^w0y6S5WTdf9x<uXg`M
z<LGRJ!V&>LPY4oOE?|X#f0~&41gsRWirPoOHUX;ztP!wY!00t0YS^^`)(J3E%>z$D
z3sTLMF$VF!1#Ie?NMQq$jbEYyHrx6Zng@~$GFa8g+%8}zjqaZ24mwIFlLC3~E&=55
zyU9g4X)krt`ebqpGAs2lw4W;ZA>ja3PryOu6g@<9!p6{~PR8S<A&MTQECOB#cq!nR
zfa3yg3%DcTgn*L*F3>C|;L}6%6m?u<^DOhzjAzJlvO!7Icjvh8&NEiJnsA9cnL1Ix
zH363eT23lbJ7@TcfZ6R+j!aL!*v3q=Dfv3J|I=`ZuZ>#*ZZN;eIIEHA-AsQj7-Bi&
zu7G<2o(Om<;J$zdG}UxV*zqdzkcLdj@Qa<{qsy)7@sWVXG%IFErluf#MlO9SYQ&np
zrsi{+Z@ZiHJ7Py0^Ob<tH10%X5UuIxje!5?L<GF0kvlkj_0yqu0^SRl{=k}zKL{ZI
z|HycDXZSO@&`~p1L|PGRyC$R&>G@bnj7V=so6Fmp>A1iq4<q*$S$XdikBJklSuUdp
z;f(bIxl0F=R(2*%fp$pGA|k7ZOA=BgWD}8HL{5p8Ld91ia)=l$VvLA*5e^YmMN|{v
z6yXw4LPV2lNp31fL`Z}oLKGoUUJ<!Octm(bC?Zr5J`sKq0THr@o#&%h&PP9;k6tTp
z1};P?`o3he2osG{brIt~hpS(R2AxGIDYu9`BJztUAR@1buSK*CMe>R0$OgkMM2S$K
zGJ_%tinx3sS}qV?d?C8)LNsQSK}lf|5fRxgMvIFuMI?wQETV{rL@F&gsgQ_LL(JC~
zqCFEM6wNinOcH5Xdr-6(Ck=m4oJ6vrRO0zAMw7WTA|*wnh&YlO8x>JnL>aOdX*<P)
zwa3F3cZI$YQC36+5fw$06H%U<>u#Nd@5>s4swSC=aja@mB@vZHR1rbq57m+gDNw6c
zx)`leA*s5E8X~%h=q{qBh+1^kA~r{pYKy2NqM3;1BJGfcdLkN$Xe^>WHS#T^fry48
z+Fy(gzZj+H-_K3L-g%0idTushgQkoW9r)BrY9XSfh<21k#J3{86VXaUYY`id1}Sy^
z#psTU(bLQ++J@Snvwta;3L%kr2hKZ3OztG2Ggq>Uh%S|*T^Xs)#fD`h>_H7HVz7vx
zMD!BTTf~nd_NJP<nkDxU@q>uI)D$A-HcLKzIXt3^(N9Ew5d%bY7$4p{DskxDP}<)T
z$@uEUXp5=Qft+^`<Eb8rRL<DW2}8(FIwgz{@w14bB8HJqc1$3BIO{!&CK3OI8n$AT
z$geDt{YWOG7)c*1Vw{MpBCe4)iug^$HWAxJOb{_q#6l5^L`)JfS;Q<6vqel1F;&Fx
zBK{EZx^nU~5z|FHE|+w!eA4a7K_c%jMv2c5X^slc6tU@6hzMCy(i}Qp5%WbX5YhEz
zT2kh5-uPA~aSCKiI@vE4@u!GYB36s|OT-cpE7&ssA!DhC<upvLq)e%syo?Enl(FSk
z(Un}R?@~1BQgjVX7a}%L=ZctDK8bABiC9n5g$PQmeJM&M5TUAC*}3p7)SFb`A%jw>
zGF$B<65l}sR>Vn~Te2IwMC=xEP{bh~#d}2T6S1H9UJ*1NX`~<ED3O176w?5wNnrNW
zFb&efB94mqmko~4cnMhIF%ic_oDe|+d29J3vZt|6*(n#1QzA}_I3wb$hzlYvia00Y
zQ+z?H%y}N6U-<jc372RR%Whm2aYY10Q>l0QnM4RlU)#^zwcofd;)aM=327zV6mg6C
zQKTCK+!k?%PFchg5qCx0BWIWten^g*H~GGZ2Q(^6CUv_My`4Fc^j|MUca}(cM7c62
ziY1eta_VytFGM_}{=F34eJM)zWb;zQD-o$BlKx&8B&5)zWYSv^$0{X#5b;sOJI?!_
z@uw0=S2^Q<BGS+-T_Wj|h|iqV{#}p?beBkqk?{Falq~7E=_I6=AWD!VWRMWe5y>PW
zvxHiulj0;~lmHf|R!Vwv&7jmQ9DQ3XDVv0>5@@X<N+RRzbP14<!&b7d55-F$bTB#@
zU5su<fw95fFxhw{cqPaZ6bU{)G!+}*1NrU46@HbLj-qmus-a1s<C2*!q4Ni8$s-bT
zOUNT(vV<uT@=Ewx!nYE>laNnBehKv?)R#~|LQp~ql_Q~`1h-n8b|6TQ5Rzcf$yQ7W
zq(;LMp2S6H`i(G|SS6e&p^${45{gMEETM>m*k%byl&g5s<)+C+Qln}pnF5tYp*WpF
zYP1BWCUco&T#}DPq*H3Nl!Vd}DoLm;p^SuYBvg<vG&M@4m6b5OPf9rnR2mtV=O`(?
zZX4x&(TWo0r$$MyBB82;8WL)9vDGA0=L5AZmQ;3cI;sQN)RIt}N_Ir*N}%i{){#Ib
zMRl`~MH(6nBs7-LM6#x!hLUx~Y$PFZltHAaWL-L&OK2gX8S}VGNu&(?Cb=aw>6Mi6
zNh#?=w55AeD+#S7^p?;^LK`ZCIz>Vk3GF28NsV@p(4$27YHGB-1phSSLu#~d)o@1%
zoyhAhN6Yq1iCm86U1@YBGYLH<+Ach?n}kOdle$Z|m#*M1Llb*Rpz|`zB~i0b<ttr|
zelOt%2}fRqCQ0Zkp`U~y5`LD@U%~(hGZqF1OSBL%`X7l7lrV@(t8qBG`bxsaNul@k
z5{djoCq6SwmIacMhDsPFVZ4Oj$cIZM4VN&M`sG1FaDMm~a+vwy5fXl7LVP5XQ4&Vm
z$`}bWGf>hv60;lgez0Z<icX;O{mPigX0xJ6SJnqfq&oMW6rL(!8Vwc+TO>@Un!it2
zDq)#~-zEG(^_MVH!eVO4Vo9?k%%*;qut35b33DaPlaOU!h{C02$!#x3DQ}^J3B(sl
z7<@Uph*Q6aG`Qxq3(vY7{ZqnU5|(^%_<JdI=Wy;ycsVt-g!K~smatNyEn~uK8CNl`
zmavA&ux80^nk8>eO(27HtfXs@o`%~737cpjw6J<)BfHj?%TbD+y&T;tVVi_w5{^sQ
zE@6j+y%P3G*eQWpW|xHB5?=`R8+#<$dpCUTu=(d+W9g*`@%?1!NH`$j9|<F$SvN=r
zX&zgUe3-gh!Xf5lPs&m9pYg`Ol69e^>sPT$#>>l5;wL1WlyF+Y840IoC~Y&I+z!>v
zV~%~2Q2fW>Sw4kj9gOo#&M{6$_=1EtgMt^?E68%RBjK`yD-t3em>yh}XlE<Dm+*m_
zi(dYrgG#s~;RZ)<GR9wt-l7KK?^y4W>q>Yg;kktS5+2a_qRB+Uh(+OtjE@+fb}XE)
zPy&hcIpLIEDNnf^DnD{1`hxiznsZi!UNV2h_?oeiVmuxbe#@z3@J@nR#PsJ&*|anK
zkqvTt@SlWFG}TK;<DqR3t!l@35X;2jL0Tr6J*eJ1IUV!#j2Rf?7&9_bMli|bL53UF
zGwm!K&B~aKF*_qAedVF|C9Gq`GkSP^c&DA}^1$sul`Bz!QDmg3<bj8|*H%uOVZWU#
z;DO9sVN@A4J5~1}C-Yp4p=9gPWga^<uLob-JRg(%j0G5jj0G7(jD`oa6%Ca@;qB;*
z2_7VRP|1VJ9u%U*e>^DVL1_<)c#y<q#Xa;#RiUEH+g`DrY!_p`ZBI(F2PK%7WQ=-{
zk~1;IgX3APpMDg6nVqJL2XAj!yu1hBFfYqk&V%7sqD!ts>BBurt>8gLE`)dsXVEGi
zRP~^?t?auJ{XHhB8g-=y*RDisFxF(O^@VpZ=qTi4bv$^vA+%{hh{~z&!6iRZ{b=Ap
zLk}8x(Ab0JUaat<i3d$d^rDd$%{*xC!6^?;d(gszmLAOUV6F$>dhi`r;1>^CdC=N}
zUY`H$;M2x~Zk$B#g0}Ub9rN}cJmvQ3;6X>b=AD>yX6)iYS0>+XwyJlyh1uPM9v(Pm
zru4M!mvxHk?Li-oe$V(L;}48|J?O`zKjQ$#U3;y6Kn5}&<iTJMeqv5yjw#mPjzc*5
zGviPXhS{mZsi(GEKY>Sh@T&(SJs8DF(>)kXPPIQc)q`nF#&|H+gK-{=_uw}VCb2ky
zk<3=#%Qw;H8#fo8%r>M?@xYr<m`I^{X6|VCO=@Uzz1XZnjo&@UH9qkV4`$dknd!kS
zo6q*p7G{>4&GTTs2Wvc7>%jsK7P7%A4;Fc_nE6T%{`BB4=JXCm@@M13li(7&oTW^b
zQI9iO!FXk2LY|t|+834c#t^RdVB@%ym_EijPTlFjE)Uid_h17h(GcjIKo4`i7p;H3
zHnGiS#x0Cn87XO-2itAF!-GuitPx6Kw+F{O_*f=okLQ1XmhJUmp9lLrIKcJ??OgwO
z@MTF@%5}(t!>k`+JZjtg>p{qA4Hhc!xCbY=Wa1}1_)1A4a>j$R9{9ZocyZ2y^B#O4
z8xJmcaFJ$s8Ywg)xU^IcE_*;9a6Rd0RrS-_<RjUOUh#l%$kX6;wz=WKO(yhm%iP21
zZ+Y;DqqiCFFjC&T9^7MopYZ|XLp!y!H{)aGPZ*zi=*gZn`8@aFjcxOS$x9Dj*~)7s
z^i=1qt-SN#z0Ft8P5++<^hbPJFVcDOiS^GOr12ugi#xUAs6%7Dpod*VN*^_s=PR1t
zYaKL$7ja%|y$<3OGP0P%Yi$+wMaje@vlm&IWM$08n4OW#zVad^t+j$vJSz?_oJ?F^
zc$v5v1x7Lxy^w6~@giT||Gkyr^Fpm}HNNbH;)Ur&0-LE`6kwv+xpXgbGSB5jZtws9
z-eVpw^0NLlV?M_Gj8tsLoiX%9d61(88AFVQ7h&5b;>B5B^d`}3EjCiviy~eW@*>mK
zC_O<Xg~~}{;|7dHy(q?{xEIM@l<=Y?wX+wMsZCff!x&|xyrr0w_R?0o)*t=fcv04i
za&~G3FUs5eVjXKdR`lWvsls{<FKT*G)wZeTMRl9gHv(i|i=%ZJYctmIVn6R?L#g#x
zsZV2pSBQPND<=NCl*Tmqd-0POL%e88lfM_;yy)&lb1zzW(ZP$3UL4+JwDjUzFTV3)
z@?>M&kKtBcwDzJcwUQSTR)*Vnk@kU+u5Aq6?$X9s?fF3K9$I$}^sDR8WTTT8Gj9Yt
zdqJr=uSQF|(|7Trs~10HF;+cJvohHra&1zuhZp_57~n-uFM4^=+lxM&rJonylM~Jl
z{@_JlFXo$(lgo^|?~Ctm8=~?j%{8dl^a(L^h#$Qe<OS7`l!0Dcdl<KHaFA*^*o(m<
z!{_FQfA(Ui7h}oBi(y_2=lYNFV#=VHU%VJe?)1UPyTusc#ncAIuU?#JWj!>el1F(l
zn$K$&U%t&B6R5)Dz4*<G1zs$qa=e&G<xoa1{{7pSMBcc?nCwN?(LpkPxx%2TPNOPK
z3O-yGn(xJQFMjvp4=yuLHM64MoZ+P})(cXY>BTIY&t@{mi@CNk&kJ#%L1wo`T4QIC
z7mK~LK!lN)so<Yp{KcogjH)y^xP<#|Dc6BonEH|Isc{Hbda=rj(_WnMVzn1*yjbVO
zdM|c$i<w+GOkpkcb>%Qc|Mp^o7ssh7yx8c)Cbl{9r760_Y-X~BajO^Gm~8iAFOwaN
zI~iYyDZ9M%xFcn^7kg}FXQ8-#%=de7fXP2z9ArY3+*&A(><@9S!!&9NS@Q$c>L|6a
z7suFa(Jjl(s^^LMQuC8uoU+e?6bfg_;k`KO!@oY9_u_&Vt$b+h!$mJH(Ol$%$A?re
zE_?CXi#J^66)$en%<08dj$UKD&Pd0)!Q`eFxBgFQWc^)O_hIO+7x!4a@5K`)4;UZX
zmXDY`X3Y3^@>5%X#^gEU3&xj>uNY&`q<`zhJ1?^PaQ1BQy%!(6$mT=k@xk?3!XIg#
z_x*3i{*UcHdGVP^8rG9S)?^avLs}ow*_N~!B#G&L$iO6yF{7P&wwjeC6Gt;MX7M4b
zojT=>)e)X_##gqIgGoH2!v`l57o(d|V5D544|7^sUm19P@cB@|hl)Ow>l5_*P|$~v
z4*?$@x3OGQ_CfJM^+B`q=Ji3hc}^d4G0$x)d3^ZpiFIf4H7ofT^V_Kfm;`-D@>+!(
z98L0}s1IS=CgOu>^8_Y|J`}Q*!afvXzG0^|j*9uPdbV}lEagLS+a}qE5<ZmlA%&Hw
zt%n|3^K<WQR;!lwp$zNaFqXA#%K1><=J^W5RIM1U<U>^-s!=Oli>d5G6(4@PY)}YZ
z4^?N&x{NjKTs4{0Vyw+rhjC1vjP-o9l&ewShX$-P^r5j2O_(=g?7uRmDU)v*n=v+L
zq&l}?($a@NdF>QZzVo5o0P8B&#)q~(O!HwnDL%CKVU!P}edxeh2Kex!4;_8z<U?m4
zo*lJXtUD)l@zEB*|MS~!)cZ57#-Y%|hn_z4;-uTXVtV_~hxyc{ao;of!H2#+^kd$i
zk#Y^)pRo?Fk~HxD6dwjLA8ac>`7p%hKQmb~)|%djF(2;3FHA<*Hoy8XlKD5!EWhg8
zIBt6h%YKXxW4ZUo`9OOTkusjT#)k<MwewD8GKq1r4^wQtXQDNB+*>2R`|t;~rw@Pm
zFvEwLY%rT~7IjVbnAv-SA0I}_9x~>Tn8ToLdgl5tj}7KCQaKBJSZMP_Ocpc#SuAFW
z4|o5wYP-pYr9Le4A#cs_a!y_2!wMf(GQal9nm<=DU+u$t-ivT8N7pe@>UttJ-{8YW
zn=d^Rv)P9&K5S)WpRI56VY?4IeAsC#dwtl&d^h7BTR%9;>hyfC)9h#EfDivLImmd}
zheNg{RqV+B!;krJ+=tqJ)bZnl4<~6F_rvSQDIZSz@WO|eKAfT1(ue1q>zoe{QjLey
z;Fr>z_u&G~|EynQykwW0>ceH`R~WC_`q4u%*O}k&;ieC_nBTKgZ~Jh^=6C5r6Sn4u
z`>Z^$_1=xFGkwI-$38r<^`}gp`4D&2atsR79kH)`c+GltzcoPK`0&Yx&py0m@tvLb
zJ(CZNAAR`G)@h&Ov3blieq`kAR6>j&vCPxjN;)R#{m5V|aekb9X*mpRB@>g(eq>>i
zl`)&0I=g!8SAOK+Xgs6D=wNg*x)|Ml2uwsqI>fZ{apkW@iTM2R`%%_!?XDH@LuLch
z4~0oyKe}Fxs(v)Q7}8kL8FMn`V$98$hmi`LT_)~p=K1`{&!m7KVLLU*q#$F+4}(cf
zuQfSSi1^XEsx_xkNbn<(Qw#Y~*pDK9B>53#g;I<9k!<r~Op5za;6P~cT`O-1KT5Jl
z8ykNqt%+_Oq7+9<`%%W$zhUyMXu5KKl=q{8tyg7I(T_^DQkh8=KNj;150zGpmFj-f
zux)BGspZE%C#?@`>-tg8kKg_H!;kv(*vF4ve)Ois^rI15cJPBX)kT(=#?<mcq=_F*
z{b<HX-}%vsNpr>)j4l1R-X#1jBbEPUm(13j)P}JwBPF%-qrJ^*?6c0jqaU4YrL!Mh
zsAv7?W-C4X=+6AhDClYH8y^Sz`0+hQf2I2K8@50A(U;C5kM)LFKR^0&>Ht4}@?(e}
zKl(Ayk3n_`gQ*RxTNUW>(0a;5;b%@7;m1%W!x)D%{=!H$)4sO`<AnLak$#NwV>Iil
zUxf-dj4^(U<>)v+CNmk&_#5K{#)*tn!X!VwY+Orx3X4-2r!h`v%(X1z3_oW2vD=S5
ztjzLbBa_*F%<*F`^FRIgi^)93`F<>5vXF5R<6=fS)`Jb!*X~O=y2g*Cek}82IkgP$
zH@e!76`Zt^ah08G>nf|EjMUItTUp0sJt30~w*Gokx=l9U?8g?HZ)LL0kL^r$Fz&Qd
zclmL(zIFFSVXq%YZG9h;{fr05dzl<$Jj8gI@dzX3{c}|Mf0-Zi<2cR#%+L98p2<nN
z3NSg%NcLx#oMpV*KIQ_Gi;Q2cck4b`7s1PZT%jQlK(hd@`f-is&j1j>bw6(SktTqc
z0B-tm%a131JoV$YA9wt?=f{0N2Aqt!>$i3!EOyJN_NTcjOYu4DLw9qeJn-Wo8LtmL
z^5d}|v@5-LXmIzM5Rtb%gU|eU?#FvSKKQXF8hPQzxYa@0UhSnHul#sTe$G#B-}&)|
zIYr;nY@9xPV?a>zSQnH|#gaez@gJYdck6>=u0}u6(3=qa%sBjAWbo=_@9CJ>fHe`t
z1(24>(61ut0!SaAg%Bed7>T_9*6RJACnaVIAaej_00{y7u`nh}07?LA06Q;*vIdYX
zfb0Q$#pT2Y@Zp4!gZa+U=8)x4M*z+MTmdY*8kGX@1kg3ba5D-4h)hUnFv*~=ESrB5
z_6Fb!z|ZCEzZ#VT2r#cR$e@x*N%ttM1)v8|AOLF{`s8p<K3tvvas@z93b_NQ8)LS<
zW?gpka_ZLs<O^7zbyLV6z_qK<@Vg-GE?+Q!Pyj7!o8bUT9!nr%1n_Ei<iD#?ibevM
z@ia(>P7I(>0N(^qHh{tbtehMy9zb#cMFL0)plHC_c<$M#;D9?uF+Lm}cc3e#@W^0^
z0G197mZn@IgC!YL0*D4siahFOn8fVs!#5R^Y|5}@lL2YUaS2res1`tZ<`o!eAKQun
zR0>!d+E!*HQiVy%vQTyVxV4$oV5}KHEefq-7kd(pv^VQevji|cUrN0I&W=lL7(jiF
zlG1<)^>w3wweKX=zcHQc7NZGc|KAgTY8-AJpp`1|T>vctpeTiw0niI?L|O&VI)Kjs
zq><4kfVKf_3Se^p?E+{|-4wv+06GNFF@PTf7#KjO06GWIGk{(J>}i$QC4g=Lq(oAP
zcV#7enZ)h^$d^qbJ;=ezBohDJD4}-%{W#hufbRpia4nWZO8S9~`!bS3_Wh}4N+%9r
z<yh&&K>-X7;MV{SJT!j_U`PPN1NbF?pV?qnql97P_RNV;fm9R1zLAu+$KnV_1VA>Y
zYR8S_5~zKSWXv!ofNgb+$pK6WU~B;6s0{=7w@1pn9x1;u$$ZzG5WvI$CUKOKZbZ%c
z;iA>nSbs@O4PbTvbGWCb1u&h-?~IiC2a_3$GXt1q>z78Ga|4(cz#3bbAHbi?7cefg
z^+f?JX5M$H^*G|M0G5!C*{LgONHSk;D=Pw6pYea+u&fGTHS1e>=f1Vf*9DOH+FWnj
z|IK7W02^&(W;Ah209&cY)uL~xaRS&*o)*Bl03J6mcLeZH0FACicT!{0xV{$M9l+iI
z_HpVSR;DctlD?lBIe-$^qK_*jP)1S+57Ouk;BWv(Xd2lcIupQAYSjQvQYY3=JQl$5
z0N&J0Hur~4&}6kgl)5iO*z;PHaNM($QvsX~VDhyn@o7t<R1JD-?mW3r08eOiUyo9m
z7XwHQ;4;nXI}<LE4;u-au0^lVP$jP$V&0~Cg9hM|=#2ngT#H^O-yWMn;q0~OO;$*}
z6@cS<l*k><Lb>h+aF6+Y#s`cK?bJt19y3zLrvW?*;5j+!GIPoG=qoBVfR_Q(xE}3&
zJv#n+l*sD<a_<W@-xoS?J^GeT`BLy*0Ph!v-&5Vx;vWL|$mBo9PmBf2CsNYQ>(Lk)
zm!Ah?Wu%qSyO*^CV>%h>Wi*k|R7M6FaWcX(A~G_{fDE4uzl=;WGRw#zBVI-p8MS{5
zXO)pn#x66G+Bm%6@8IjB8Pjz(vdj2N1`!Hf=7bzFoH9fik_?xOr4<af41o<Oqp!bF
z@^z42)h67tK8~Uu8D1Iv))-VEiJ#*N24u)Ga?8jgLy@7%&}8T`POOjnX;d5?rSYh^
z>938PGRE~ca><~BQr#%~ge9T8GQO4(lu=MdJ~qfNqX1Wfj42n@d~lsGWg+_z8@#+2
zr0j-_s-=>Mm@*P%G?p=YSvXNfAsKaKtnL>qETf2w)DuQ!8A&pV%BVz*<1nVq3>TA8
zTt>1C;+YzT$)<#iQZh=jeM!a?nfCs(vQH~z5SC$Hf$<y0vW(>z$)LOp`pHj(LPZ(7
z_k@U8hYK22Y@4bwsxhz5Sc9=9V=YF?QkzM$Qbt`aq#j4>Gd8eo8Zv1_Jzm8+94+2O
zd*jj{l>I#k&15u}ak76(?ovhzn^5#S8Lg<D^P*s0w5G{l#(5nVbhMSxPR1q`n^m-z
z(Lu&21)~*ol+j7XXBlY}bfzwou|>vK8C_*`qh63PUPgBrJ!A}*@r#U}GJ44vBx5jn
ztc*S~&K?Q&m+?JSwVl~l#=CarmLtI*s8#uWW)l0!Sis`99nAqUexx0II+_#)%BaBP
zCmH{AF+aPL*R(f>$oN^tP-^6ECWT>4nsqiQ{P9C{gp7YXn)Dj>C>g)fX|^}%a3kq-
zQiF7$(X#a_^%xnsI+>q4n`6lz(kBuBO~wQnf6Dkv#zYyDWc(px2G#kV@t~tQS;iDT
z%2XOw-OcGTrjcVekEO#c?O+}2cNuruTV$q;Suz&VAgUjpO=j)Qxs>!dIEPB^Y8L5W
z(&6T@GM{k)BN@=n*NbG(o#$d1bdE$~b_JJ^^HWsDS{ch^Yf;mcGFEgkm(%t}_aZA8
z3$-&7b_7XWMdz5#SWQE+i@9-kGJSTjP6kzeJ=MIq@%&(rn&oe9oDDKIGCA77*d${!
z^S5nGGT0_#JNbi*3o>@d*ePSbi~}@pkOxxJ$=FLB(cP@kH%u@5Z|!Y1+Zo&^BQ~E&
z>oHz!8cVOl|0Cm|jMFmCkUO1^9Fma|3LlekSjG_<o}B5!=Oahyh%!F*G_PhzBCOZL
zJWf-DY%S_|QpPD6+j^OaeZy4vFh0bYgTc;glj(40Wt?NPsm)?(S)PkBF3Gr0r%A3w
z^Q4ShGH%PbBI7DG9ew+7Gc;~d@ESQ`f>C8&@H)Bcq9BDEGHx;-+R|8BCzduAyhE<i
zH+WCRT^Z|Yg)7&I4UaZ%><M-08+=GDFXOe0H!>b`u}@??C7-Von|EOFnT+Q$UXrUU
zHCok<y}!<QK~-93^j~KXzGD62-@(uGL%Vw#Z)Lof;TUZ#PV$aM$LG-A+OZ$Vsm>c8
zWotpa{}?|p($1=+#3+bWP)<R41!)zeQ=luzsUW?A3<~@T0t(_3WK`%MbL3C}1(_5W
z^MY9w^sZshR@9jl>#Vad()kk4rhuxHU9sv+gm7|sBc7w80*3;MIvI($6u1?uF$GqL
zkVx-5ND2r&j9vvkKIqGFK@yK87_tIIfvRBt)(Ewsrl8k`V6$UEsuJ}D?Ixc~L2d=b
z6cksGM?qc%Au2(^*9!6})+X1~U&W$EezJ)gLB;|K=GKm-Xh8*3CKW<FtRSMGu!15A
zOlpUjL0W1fQ9<K1!30K{B9hV+ETmZ9che{HHS33ySl4F;-EGaH3dr+mf}+VGSwV_o
zt<-U|tyx0Bhs$4=RIDkBqEQ8<6qHs_=1Z9hXu-5^6dY|5OS_X3KU^;5kH)c-rGkQr
z3OdnLsi2aA%4DygiGnH$sw$|Xpe~)ugJ3lUB`RdBt)RMs8VYDFf|?2nmPx6_{PXqb
zK_Nn)C)1u;X`7h!6x3JHKtV$VHJg~H-$u$cHwV^>ZKR-Cz1T5@lRGpu=>xR5`ms$(
zQP4_3YX!}z@{PkS6trYg{C1cET}i*CTKyY7c-Ht%!PGUzH;2P*6tq>)fu?#o`o~Z^
z>Xh4Iy5hH|Ztb2-fow<_m?a#$JiL8_(M3U51qVk4e^Ss*L3aiH6%3$`%WL!?uT#)R
zK~Dv>-$i;c63JIDmQLh*N_`Td%G2UVKPc#{SgRya=*Q&ww&XS+f<G!4s9=zSew#y|
zTA0foMGCbv2P@WhVSm?;O|2h0M8VGrhAJ4QV1$A{9!3h(NExm`XlYWFexa^uVUp5%
zP4ri;<cLR+kqYRWwW^OIV-$=fuEL{YoPzNR4l6jK;5P*m6#S{+F9j17Oj0mk!2)u4
z1yiV%6ig$}Tx@J95$Sf{pda|t75uJXmV((-0R=OtdRf8?`-JzWO`56TOBmG3r05(4
z4_620(!hKe+|?)C>s4r;g2$_k(S5>%3l&tz6kbe~FBo2=V0txk%DiCakHNx5@~z^=
z5*l|3HYnJrV3~sD3jS8`&5rO21uLniXy7}-8{Pz0QHy0Tt}UXiH;l>?j5P{~ucZo4
zFxD}yXQb$|5k_jC@blxwCIy>mY$`aQV2gsS3U({lqu}%4;5G%@6?}Iv`2ByOZ-*H>
z6zn7yJ!6~*7Tu+QkSg#68zdWh75p?JOkp1rYuk4k>90Zu6&#`-Y?XXrZ?N86BX7G9
z@fjn+N2#F{JW=pe!7&BLsk5ks*M&|fI7yR|f=dccDLAd*tb%ij^%&#~o$1*KEnr2T
zX%jiGfL6$-Awb?D7D>85jrJf&-&&?BxJ+*OTkxiW6-`VU5myvkrKV7DUBL|nckc%)
zH8Tmx{Rk<L&HQH8H{iDw+#v%6_o(ms2OlZceiQep<CqYCz=Y~agph0=E0}jYbh&Q&
zX9}KEyD3Pc;ssSZA^cjw8#?09;7bLs$c46tb7U{LI#=vlnt^`~Qux5+9UH%AJh?qg
z`bP!-**2e;oM>posEAb&ry`?@XD5ScRisl9btfJDHIDXhPp{(RoPrq`-))Hm+y+!+
zQsGkRJ$YnSQSxLY2P2UzDzd7`rXstF1+?+d-q2T^M1)fPH==~`tT<FS*~ZEh4GS!a
ztWcE1FN#-%PsI-^`l|4&2#}eI6cw@xMMZuU1yraiG!=PN<W+HakD;reKgDvAL91kP
zj9heTQ-b6hxmC+sirk2PP1zqB`BWSlXnd$>B%ZZA{MD9lP(?u%2`Um*gjCRG^br-N
ziY{jiLq(XxHs-<GDde1G*M!N9iBS24R1{WerG3+1(pX%>D59dMief5~xP02_{`!<)
zl`2MY6|}Q<vI^pjf??t%Sov>KFsh=Iie@UBt0=9a43(y$hKg@glvPndMMY}-a~bJx
zzH%zctJW@W&6lUpJT|;g__>*}l8VYI==Dg_vwUk-p+;z7QmCq;ckPsF93{P`idrff
zs%WI5wu(BOT3<z76>~lWY3i#-N8cPGPW!%5^z77d0~LhzYo;_-F}`97RiHOdfK60u
zW^Ss2K8_~RLPbjzT~&0WYN+^5MOzi^sOEbUTB&HGqSrsc)*OAgBS_+%Tfx7!M%t_B
zUM{JlicU;AP$zy2(Su(KomJ}za2M*1%aJ>&LDI>Ra&@OVQ+NDn+4NA+lS-z>Ig-3~
za+Cs*KAcJh->WEeB~qq{(N9Hx6@RFhp<;lFA65LKVuXr;DlJ@K{H!9)o6sQY2o*o6
zxL?ntP_BVFM8(ge6DTye5gkgdUe_F^VqJZ6INOs>xqekKQpH3SlT>=Lfg&e@V;M)Q
zxO6enepJF38X&vFM8>f`p7A$EGM+%roEjlg@ojLjifPnt>n%QohF*PhD&x#LCW+HI
z>32qTMe<A)vs5fov7G#z`cB0n6^m8ORdK^eo;5OI0h4(u=BxNrIO*lCFja%9v`|II
z%trP@!9S_L>X?5~)6EWdzY(SLTEcuOBZ=3xB&<-el24qXt5mF}qQ-{Tt60N@(@E`G
z5T?VerDkE}%c1{fvkfXXQnPFfQ5FjSjtOs3u~o%B4f{20Q?Z>!nTA9SJ5=mc@j%5x
z6}wdIrlwPos$!3dy(<1yag4fnLvWvpBPx!n*iU{-Ywn#l4$#bV-uQ?7kjWtxgX)G4
zGbcUcn=svA%g2Ks{tglzC%36#oK|s0h5jadLd8iMp;6;w-|#8by6w!4aLVV<S=HJB
z`~r={W5IKb=T*ENW$d3Hx=1J9I!t%hUEdeEtl|n;s<@dmOn0GIRa{eXo%(u1u+itx
z4bo|h&kH8iFm6%OoDkVio#|FT-SJ@D-ryY-cWFl28@$JLxKAG2H%PUj`aDwcScRZL
z)X=14$`cy(D*jXPl%{1B&uQ|f`j<|AOa5HMc**#h@f8g>Peu|cyrC9*A4lY!iuWo$
zP}0}Q#n*)BwN+Yl>zX_ANyTRs(2z+(8VxZT(rHMq;dJ&$tcIdZOq1@TI7-Us8&TR4
zC4**NAL*hNry(QT(5>Ln2f;6k24vQdLqoiVEE=+E$flu9b2C|pTs#xW&ipG4w5%41
z6VFB*8k`#38g48I(LI|>L-Ujr`tIA<9imUp>2i54Z&cFY(U3<&Ud_5g^J-8us2a+C
zYx*?!nFJU~ku|(oT9Al9zn3-W8ggoA92+_1GoP%np68Tn9L}X7w}y)T2tAi3{93ba
zacPPRX~?I6o(oYlzlH)D5(=jT>2#W#bZP}P>ncy&&=A%T(X9JJQ?qUWXr`s(-l-Q$
z3-}b$P*}rH8ir^nq9I8`Qw`0il{6I7P+da}4aGGiYxsuhOm(Z0P(s7tzeA-o>^%`F
zsUbx}l=<p5VNy<plS{L~svFTV8oJ~RlTwZ|R@6|5NqG$wI180VMO9{d;#D<}aTT_q
zqN-^)awAFx#A|A(rJ<gN`Wiki3)a@G$)PUuI-2!WBZ<>a25DS3KAn8BzS%%SL+Xfe
z;YN&&HLPu5ee>8v!`&Ovj5nkI9ZP7gp@oJH8airdso`7dZVhcU&;#4=G_<BRpB-*R
zol@UCTPyZ$8k3?sYQ?srhB^_n=0?q$1L=swX%_0Fp|gfw8hX=NQ<<5KtPRW_)Zom!
zY3NR;Q_s{s1?g)VO1)aw?5Tl}%Iu@zd-4_y{WX-yYy6<0YJQWJp%^?P*q0h-Mo?;J
zM%M%fXc(wr5LLCk`J;v(+ne<CrbicZum*a};%O2~ymdG8XAMI&%+fGh!!QlQHH_6T
zPQx!6Mriowk}*cZuQW(Kk-f!@ks9cNPWRZvM`;*M{Zia`w?0TnH_wzbUc+x1=t4h@
zoXzq>^K=Gds)mWoCoxWDq@*cKX7#py0?>^I<(jVHch3F?;|#_?w#ZD)x;ZC<IU43_
zSgB!^hItz1YgnXVv4#a27HYWF*d#ZmUq&<@hn9)ZD7*Pv@J|hYX;`9J8y?Y5LZykh
zR0G-2T`uuu8kW<bYhtcor2AOnt2L~l*;~VQ@&pa*G;GkYktT|_R+;OmYtBZro6)~D
z5YkQWCLU#U=&e+l@xjfETQt18U{G|`bnDid?zeYn*sWm?O-IS*P7S-rotm2Tt~epR
zO}*lhK{L``DvE!!9-zi2m($Tw$3YE;G}`qZ9vz42=o%htc%tDbjZ+P&8ZK)%rs24T
zGaAlncyT8E2^t+5EgWI}-I@MM@Dw)=wZLg6r`9CX${6P~T-0z$!+EOJyTl6`W=;qa
zA*A2b^n01?>F4AXay*&=Xe?;BMzv~UK7Sjb+FsYJg>Y~1gn5&ZevRH@a+_yPnn<a|
z?or13!ABac=^eSRq3_wq1IC9m`4>r|C>`QLGxMp2XBsl-h|}?$PJza(hR+&aYIsF6
z=kk<~8eUVF8h)c$cYPb{$I|LdZ^^wkhbX*b@}6d-%mqKt@HuUXG^75fS-)iSH;7H6
zBi!4(($jq1+awaBBbJr4jOiHDGg2x&E6b<@Ivl#Sb8#jenRV1|Y39(8MMqZMDl@wd
zx+%@qH;&et$fjGzRcfYurGwT~p#`bvmX&@=$8)Y@6N9-L#5#4jbhvfv6a*bqc{&A=
zqeN($_3H5HD5K*W9ey1F9ffri(IM+lbcA#mI#eB+j=Va))~%Ue*Fg^ua_QC+hMZ(m
z+Ip~%o5ehglzR9^s9rfEpN>L(!t|d)ejOAoz!+pK$VehRtZ4Wq9M+MbBT)w};t|n7
z{|=aJKz|u*9~~}4-dMq)D^Ah=MvWiLBpnqCMoZ}^ZH9~LC`L75rG$=>I;usJlXX-*
zVq`ayQ&^AcAce9}5(P>sO{ZMM$S^vk(&1oP9p&h}bewA!F0Z2kwVsYTWUr%=j+#1s
zlWtblQH4s@QJtezZEU&Fpw#MPj9shJ6V}jC>byau7LA~V2AL7or4!N7P{-=>Mt#oM
z;Qz_~rKm=n+HgR)$xj)Z(COTajwzDRR7W!%=>~+G>lk=2Oo2WC|5nF$I%evarK6RO
z);fCX=%u3#J^a@(yHBvQZq0=4bZe4qPpQe)6ORr$28AOX8MhuZI_aoi+i<@Qb<sgT
z&ARH?)Y|N(qq~kC9NsmI9r8Z(y0uAqZykMf{GwxojwW%D@2N6Wj*cI6^wrT%N2al1
z3IlZXw|TvrQBr>7=<R_<p4R3+wT;0#e$p{S2l1gghUxg3+H<@?QNrP@f59)}uR2ER
zn51K}j!`;B>lm-&H*(#74SGpqjE=G7nYqKSx?~(jqvl1(_&F#i8xwTUkH?9O^aLi@
zK6%V)V@TiRDLOvBF{bI5PQIONOl2(ID3<u|%x5tE!AM1YNt&%=j*fqI9MdsZ$2=Wt
zb*!UtL@ughiH@aIU_N7^ZhhCVNXM?j#*18$#XA1fL1eHu@)vpO(1d<N69|oU#xfl%
zb*v%>IBYD}v3_Rk3i7nYVdvuT-$N7Xeiz;>7G15=4uHlQ9iQHYiLBT0H<heoH+7bd
zjXJjI*h*cdBW8HQUoQ;8!CGW9x$Z}U$Tl5aR)%-zI59MVlD4zi<PXJn>d195Iqw`J
z^ftJM+=CjNhLw(eIu>t8-mlZMsmR=Y#@+G}%5{L6{X=mg6b|V)qGRGO;gS=L!_=oG
zEpn7fSeRVxTjTEM@Nqg8d(>$iC)uOuaT#4Y6PFmLbd;!VJewD!M+9fcX?q)Ixd+dY
zQ%w%`y&1iz<C2cFxsfh6QgvL`ks%l2a^Z@Ot2%n;M4z0vrsF!zGdW@8#0?!cX)?@-
zY&lWyO5~P~`#K)zxJ{?i*1V%zk9>*T)vc$#_jK!zs?Tjr`YY$5j;A`F>3Bq4*3D8L
z>v*DLOjnE3-!9Lo%P2ef2~EE`Ug_2{Xz!@Dx^**CzP<UD$s0!c2WrIk*1ZiSz1Q*o
zG4&;2H&x&Nyps1r<{>hLd**xQdo$#Xn+!#n=XuO5vkXnfh=fEFC6r_=l_3-=Ntub1
zc_t}JhX3cR_j~`(?|JsKp3h!;?Ro8e&e?nIeJXKBi7#x_hdyDB7;?sNrxNaR{PqtQ
z<ZvFmRh@jgj2LpqBAHx5?-5EbWk~OhAy1l<83P386`D`zed*9W1H*zb6pBHKMf**K
zV<-|s=@`n0K+zcZPmmIVi^Wh}087Fw$iF{^k};HuaUUmg<YZIsOqG=;eJ~a+yqAli
zd<-WCgn9c%u1ouj3bE*QuA<ONLg|ggqU|{XH3m(h>oJ(I=oQh3MVp5F?=u(YE#Z(E
zr@UY%7M)rpht!WDh@ox_^<oHPNW@Sh#zVW{yJAw(CwM4^$}#@sBw|)$tz)>{FRU8l
zRrX=LW)_*%sVe=VS53Ms5ql(t&rYW3O~s=9yGNyX1k90pYPDF57@BYkKqx_-80yr_
zB6vK8Ct~OrL#G(($IyTgV`#+|{@Q*rhNc3Z5=u@(0gYm49K*caeiL@_hc+F9nx$o$
z3uqDJWx_uBtz&5Oa~9tU+Oe9h-$rO#>h@Owui<JR1A{sUZ8jvNWak)q4-I?7@U(y~
zF?1C`W;X%dW8mFZ^!ALQSBzgYcqSI@#PyCvuOEG5*nKGI!$uw&?bG!WW`Cg!P2|oR
z7>n-88xq5zVIjdF@ea<WC;YL8f}yc!JC8eqBVu@#IEIZejErGa3?IhuQ4FJF7!$+m
zG0cu(-A8$zi(x_x6RBM>ybuFd3HXuzB5~XBr5O0-PB%7&D+j%C;vFyamE7JWW*Wn^
z7@D8=CdaVjuFFM$sWD6u{EARAo2>J>@8-71cr}LUF>sgdHLA@ddxk_jKhmBl-dRG)
z=MuylG0cf!5u0w5J(mT$<-HxlJ5;2U_omRdsE{{&u2j6sevIM$7#0YBehlx$P<yMr
zbg@lJ0WM;E5W_-oU0V3rO!5haYzh{~Fev45{b5NAAII=%4D0LrOJn#XhUGEDw%W7q
zx=Tme%VOYNc~3OYU@WevtcYPHhyPZ4mC)5f`yiv=YxZX`tcl_C7`|YiF0j|fqLrC1
zV_3_&FSetlm_)Q8xQ+?7$jIhwh=F{{Y>HuX42NSl62sRqd=ta=7=DOhOAK3M_@3=q
zJcA26KaRAwah6yd?bdxOwf;_0$gWZT&B2ZsevIL#7=DgLOFi8F+Zn^a+#ajeMGJOG
zk;a$u_fyki*b~Fv81}`$%gtC+rk@Q+55z#RgVZzuzx*G{b);WoI2yyBRAwrF48O;4
zA%=@Fv>p^5i{Ug!aV*-WKF*OM3V%{4HUCr$++QZ({xXHniuasQ^3My{P$Bmvk-r)P
zReJ1Z|1!a5|BBE*IB<rA^bS7ZbKv|H!{404W4If`^%!o%aFc2r!#}a;rFZYi6kmgP
zulD|p;gO|2H{iIZc8k+yM!@~G+iZl@9+{*$lxQ(Imx6l~<W!<vEq)zjDAB4*m#!iI
zHpS4~3iPhwi;Y69bw;KFDELspM+)*P$fuyQf-VZ~Q;=VQt-w)GKtVwTWfhcDP)I?)
zUSUxM#S|2#{GhOi63yOi+Gmi@=U{OqGDUbmK?w!-D=4W%PsvhB^jIXI!3J$A2uds9
z<E#v`kPmj^@(LbQqI)LeO7x7VpnzMbx`K)dDk+EwlYCWxqCj13(@Uo*k&y#|p}<to
zXhb+;Kxiq^<CvK;M*_~kt^!X%Z3T4{_zD6A)f7CeAXJc0z^4W$>ZF2)6jYHiw`iBa
zE!xU#L)ok46$ebGss!=*UR{d8_kk=WvY?<91o0yZYAC3wAf@0@C3;(UOlU2k*^f3d
z2}tWIsHdQng4PNiSMY>_CJLG=k&#Ay1q}rdH&F1TU@mt&#p3k}$!sK?#%UP_aXq9N
zd$51lQbBViS{`X3lz>-dzR^D{$49^^uZ@EC3OXog%ZdyLX{pjqiR@K~S^bU*-p&`E
z?3mF>0K19at_r#-n4;hn1>F_&P%uova0O2*(Zi*Wg1&rr8WQ$Y&`UvY1@DViQ@0ln
z3HvGNuV5(Mpm2bKXA}%pFocP8%owO(5IbUc_~h`AbSkp?4G$SaKE1>x4h6&`6g<m{
zD0oT1NG1Bk60c4jLw#mOLqlG%IGUPvDByjPd|o`KL{E+9g}xw^V{@#6aZ=QY%>Bgw
z2JCnR6WH>DLW+^H{FA7V3MMO<AznTN`DC1`V48xr*czmI@T!7Y3SL(*UBRT!?JI4<
z*C?+<mJf6@S<NqO0tQ6}4+`E;INpOf3f`m+-*xBQa_6%38hZyy`m`S5>M_@l-%;?c
zf_Vx!Me`xWN78%+3)tGZBm5q#DVR?*evN)0cwstpk%Gl(%(-!if{zvaqTn!7Q}Bs`
zEef_OSjKi!uuj2x1uGP+RPdRCHA?h~GJmtrSEf};^y0Ky!KVUf;Xr-no6_f^<Q&~!
za9}d-S${1P{4JpN(sGIKfi#@pVE?C5xPh&$V51Vfux%pcvX2by&743MWffhN^^F7(
zP#|m(Zd0&R!A}alRq!2Ek@`R1->%>X0o-EPA>g5wVbyvye-uoCt0z-0G!K7Pu%G2r
zuuB2ALUt?IqhPOseG2|;9?of+k?&NBfR5lG74<)R8RtEj7&#5{5@2qJ9pU_-;Jkth
z3XW2N6&&aMHaJ=m`CZhN?;ga*sEvmraDvkjrve41*=|&o!68+VZ!&zj;*Gdx6}a7M
z79Sd(<HRyFB)F*H#GvpROUT)YL-<f|S+w_xf<HJ?4h2_PT9Kh;6o1sEo=Q>vZw1#y
z?6#=o4NkMe!v6&S!zon2O`%j;mg*KOC96GrZM&o3u7VsYsJ9(&xfv>Qsvw_^9J)#!
zGjglAS4Bk)l{Dm0k*VS>6>qD6io6t7(OgA775Ay|RQM`xwDIz*ctAyI6$MljR8dGp
zVHL$ylu%KGlAZmcD!8c2HQQ<X@)T3S4x;0#^8G5N9|_1WC7`6x@%5^5X}9jFR2daz
zRj4X773EZvR}oV&>QwNciZg%N6;;%08deazYN<<3CE?ucR+;=B-770BOpnS0x(Y*u
zt%7ULrW!41Tar=FQz_zjI#ZU!QE_-lmaC%s5u4j^q=AZ1#bYXJt4OFws(3_24HXZu
z4OL|12_9BaMMYH=@fB|4q5j`hy$&nfmABn$Dz2Zcxv0BeT}74(9{$Q-BWve+m$ase
zl!`}H)Kc;ExCFn5_gC=wk-oEq&ktLEy>6Y5sH37TGrDf`@m){F<IHZ9*I32wMfMXa
zo>cLaihVEG^;I+wQ0ga_-m+W#hAJAVXgbfXm(TaQhm_Cw*lxmBYUeS9rUI<#b_*3P
zRg6&atcq4DTC3=-qK}F;D%z^(!Gfu1r=q=z&MLa7=%8Z5OuM5REnt@D9CGWV!1r05
z*g-Sw*V~6(RdiD$>!WgoeEwvaE4|%ClFPZ2@5%Q0H|RyR*(0_Vm9w~T$~%Yqs_3U;
zuo~^r^yi26&dh--zRK?pP(dT2XN2;Ng)cLMvia}1rPtX*R19T1toDYfJkc3)uV*+5
zPxGq%SzL%4Nexl)vWm$nMynX3Vw?)Dr)@hLJV(W2;~Wj>o>$RgxBb<x!HX(hQZbhD
zr&4qT486QNYrF_dP%)9pFeNcb61nlVH=tD2@tfT#Dqc}BL&Z!LQ&mi3bNy$(MqD99
zzzw5UsZ=b<I+wEwIow|7j`=K#T?*b%F^5%~V!uw!X&la0qa7}Sxf04HR?a+cs^C4?
zj79p6ig#5URB=efJQed*Y*MjV#d|8=SFu9HN)-##XvJ)iip45EP_d8-;AL@bjm8XI
z^x)dmhboq+_*lh9YGlLH!3aJtnDuxb@5z1sQWc-5SjHZF*<Y@Lu69qKCOS281*EG~
ztY+dWzGPl+d7n~eZo8kW_>9F~?XO`gRj&H?DxXG5Tu+;Lz+bCkoeJ6-tyl5g%xE8k
zD=OsEB4PtOkyRLLZxl+vwZ5-ae52w=6+2aIQL$CU4=Q%3*rwuJ6%`KHvwFGTG3zYv
zdp4SiVr?>L`Lp<w$cTs>y6QE&!pD4CWsoy^y#JGmT~rShKTA=W0t>cB@BxnB1O8r)
z7d5i(*iX<VW7$&g!&50z8d-hSBkLE=04n}b@vn*_)JYW=R9sYXRK;&9PO>DkZMG_f
ze`iaImvy{nt#_P@MQgniRG0$Znu5V86{k7Y*pG*z&~u!=3i@Y-zBs`n=e$S~TvBma
zjrMf@RB=TG*F{Ix_FGPg68S^YyegFTSJy<0l7FfATWWM&#h&h2H-r*Qoa)_F@gJvL
z4f!?PQgNFzyoL-7W$j?b4fhV!pk8p7YVe|$L&LYHQvcly$jPPQ9u4<$!q-54{%Lk@
z4Zr;A(w%tT&(tFMyg~^efDwPc8RXMIx~5jLfQEt^ifSmPp^%2c8n`V|M8nSW(e4TD
zqc~%56QsoqySRoD8p>%Xui<_TCAG+$j~hmmETy50M0r3cw^T}NsJ6vp5M5d3^>31Z
z^9<(`Ci|ck?JHFf%9LXo6b;{L_+EpmLDMi&!zc~9217$@jmJV^YOpjss-c#KxCUE8
zbq!e>91X69hcr~y;A!wRB)7T=4S|L~^9D4{3bn{~>zhq3DT5-aq4Sy)f!#CN;@g^4
zn3U;NWr10#t?r3aDbj~EFzCSp?ju@c05;q5YHA>@p`l3e1VKszwzvdL^DzyzH8j-F
zNQ<VyIvO6=@PvlC;;qNx4flsEuwUA0*Viy;vCZ8FiZu}Yq);-S(s;40PtaHcFClNr
z=GE{)m7s|h&5#7mCAF4X^kK*ikrrBXc7uF=LblSd>60viwrsJJZVwGlQ%pm94IMOe
z)bPN7tnL~*vEmvI23cJ-bkQ(meb&XF?2=ciaORwKAd40|-87KiK9w3%G&Se2+fzd?
z4MQ~y)6iQ(9}Rsq^wYo{Np8vUe+1lH@2_D1o34F$KfSDSr*MeSfkOEl8KhybU<RE!
z8kyLU4%aY3!?R3wrp<JyFt<BIl=^0O3P)=gqv3rG3$)1k^f?U^HB8d*yoMJvyeQ0<
zG>nz@VQY+&mYJY|dqb2TuVKn`k9bTTXI5SBWet-xyrE$Z`5Io)@S27hY>KnFr)rp{
z;ljIFGvBrIxLL0Xo-UNkdr#YMRn3~I;dKoJv$W_!*ZWVW>Xiv+3+LYsS>(^vz>U#&
zs3!v6WRQTjh0-*Up_NakI9TRsk=e$44(b^;-FsT}U?uoK!$J*TYFMjbk%q;LsNpjW
zA9BEISjHi#VF`PovByQ8k2M_q&&$S3Id~V?p9p<wq+R$wZv}_&f8Ht$D>eSs+?nSF
zrAq~?1rvOJ-J@Hhf!5|Ur(x*l8otob^mK}$qi?yi!&#?cy@m}`o>SGC3yrtG((sLj
zEgCjb%`|M5l6=iJ9O_emG#fC@ts1s*cG57ec?KOrDV8n2UBeHYqjcodu|va;8ctK$
zI9+J?iBpz_!y10puuH>!4g?Oai*|`^_HK^o{odgA-X0Bm*?Jl(Huw5{9B~K^YS9)I
z1rBMrVn)`sbe!jpFt6vm-#G1P_?4wy<8i;>D4V@T1dd6p6V$-l?s1Nn4?S9|R+;0S
z)Q~6>oT9q6_bzo0naf!X=Qu}cxT)bhwL-&H&MF!%O5Ds${|e`pbPAU>FdgMk78Ch{
zQ%aKz0`6N~({O`BhUb5&KL_l;g%VsBz<g=t_z$PM?peoES^r7dcE0c3<x@avaa$;#
z9d|g%7maGixTmUn89H+5D59gN9#!NX9ng_iM{Ye5yI05guM&Cms97?FUi`#cTPDn>
z<31gQ^{9RLe5XAm?H2OuD4>HSDX626fE_u!*;(G+LJkd&`L<9@M{ymMbi{O&&~d+x
z(mKlMD9P;D9j|#q|8`3Wen7{f5gs3c<a6J!tRA&V1wGnBEGM+Qjt2$s^@hxfdbC&Q
zAI_wsjfA2@)uFKpZ`d762BbO@9PXPs3>{O}`fMdqnn_za+OM+Xto0X>*VW<aSYzRH
z3%(v5i+;wyKm&n}P)9;XQpYwO-|BcsM`azebiB@*>Zq#YX&pUvRMYXWjz&5f>!_|H
zOOH&R8t9Qt(IYw@)lo}F4IO+>t|>t&p)^aN7!9Hx)A6_t{-33`4w@Fw)zMK`kH&kw
zG>6t%Pw4piHM_n@_CKBaZhjV{KdIv>NsYLnjytJLf+jke>S&>(rH*DgnzOa5ROM93
ziI?+ak>f5W(pEZJ>*%0ICiKj@jgEFYcm<`g$8M{GHc@0UyY@Q9oR6%(I_l`8qqE2}
zN_PQWgmx9$O~-{Fvl!GPEz>PC)k{Zj9piN{>pnXA>KLSBupUi%{d5e_@r;iCI%q@E
zs$~ZMQ^Of=AltKj$U>HCmBG)7Av%Uqb2^7FFj*bL_2^u{!cO4`$z_xz#Y~^odCPiK
z7dpOjF#XXwUfu4F(ea$fJTH__9|pZh<v;GeBy_CMae8F-M&?tGXHL*DQO6`5FH4k}
zRJjh}WT^tDT>iRuijG%w5YSE4F)fW>6);`LYiZ650ereqlD0Rqb-clhbgb4fN5@<p
z@9S8g<4soTqWzYRw{`I4oT~edj(6Ge8$7<o&l8>J;N_s3FPO^zo(`J96MUd!p^jx#
zHVIm!<0BnQbS&1vS?EKdoRK&$O+4&<EZ(I$XsFzBj`s=GwMoW*MWXp?g&vvfb5JwQ
zmF%)%UYC3U>8CnA)3KSl$1%dup<|QIUkUqP=-^)Jda4|pFF6u*tfS0+zu{1CPwR}g
zyN4aJf(?3feF5E9IyR>9h26PWLB0=vqhpJXt?BuMR#mhRV3qkoOM&lne9sYTAg_V#
zl+kgSa}no%9Y5+gt>cW2ojQKfafId3@w1Ly95OogQ_ZH>yE!&51$#JPN9MWJDBR0F
zeaO%LygI;xiUWOqpdHq6kh<3>JS6lNJu*$9mtsueRG4{`$<DG*=s3xK)bYEB9h2zC
zbud{9Gbw)YF>xLY;VSwm7U@zz&RHGjbX*i+{%Pnum9tsR3!Fo`gf})uKUSmn5>HL;
zb9t78+5N%xWC1t^b=)lO|Ec3I9e?Y%#uQ5VH=3vZSnoagv^Tz57QNcF;2$0TvdcJB
z4cyf6pGe+esW``8ac^_fT=mYLvE8pd%Ab7GXT(v*f}9324BTrVj{zo_%K($gZGe*Z
z2<^llXP5E|eeHexa~9*if3jw#f#t`7*N+AH4BTg+rh$}!{00gbsAM2!prC<521*(z
zWuUNuA_j^ZD8Y=b_(cu0&E*v{K-+_!6B0v8diR&~3aG*TMr4!FU|fQjyZH|oC~cse
zf$|2*7&uwTqfG)AM#>uar+OB>?@dTNXyD31yTnu8Z{rdb3{*5CyM=+KPe-5_Pz@vu
zBv~T^x&ha~J)1qlK%;pcuLO@9;M$03z!E^rwGrEZW8m*Ut5e{wSWQyTfX{X~X&<=P
zAr1_L;w9(#{La>I?1v0IVxWeB$_D7IVxX#kY6hwcnBB&ESh8klmVt%WYywi|$Yq)L
zr`r<``;Qu^WuU!*4h9}GP}@Lb15FInF;LgQ69(!V;M0NAPQQozdPej;^|%q8Od)7s
zL=P9f1~)SBq!F3?(LH6Lp%J|h67v%&*)oH!sext&+DLTT`|)Aa+&~M7Lc2I7($YXH
zNv$>cGopvlae1b+6=pjFL$^nqjs`jz=xLyrfzC!WlXo@H%|I7MZ<)dDn(~NE!RTv_
z({*<PJq!>$EtKG~13_=9!FIPFm1L&Pm-aqJ^y=Q%h@JvdUbFjC!H#%z1B~b)NHEC2
zU<2Jv^e{1m#W3&}yUD;X1H;+K2DTX(Vc=QH8<=Haq=8WeUNJD$z-R+wsFT(GNd}%X
z@VtR>2F4qBfh9LE)&LjSUt&^?J-%CJzkKqQm~XIr^_^gV#{ee^CE#u*DfbOuX0q2k
zuF_9t3Y&u|2G+a5_LY%!`ZP99i;NitUS<0q@}^TC3VN>zC3s~}O};1dT<7ZsX0t&I
zEH?0lfjR6=18*78W&usj=W-lvjgBaCZ<_RNNov3C@qFbwEPNO5T?6w35YIR8UK+nI
zV1a=T(wv0?zCB}qXy79QD-5iZ)VS5V#K6Y}mQur~dY>3rCV+<P%Q^b01)J8|1ld~;
zs|>6*u-3pj_K^{NGJI)(<^0UR8UdfP7EL1~`BzS-zM$StNf1+vl!s*38~B<t%vO7Y
zfv*hg`@`h{(v1eVgG{i=z-GbxIw0p8k)-ezBRXf=4;kMY_|Cv#_JV=$Ir$qnVBnyE
z9}Mg;u%G>2!KWcTH@I1mAEg#M4g4g4oSy~kGO$~~o-}_iOOnQ{HQTxCDEp9sUktFh
zxI4pL8@AGzJ1#r!SJv9V1p^m3&lvcfqsG8#1IMJNX#an7h{rBF&XFRVlR~GAw8`Xt
z4U2JxD%Zk4%R#!pK4*X@XU_|5Ff}?w%dWq~8Q8#81DC18cU^w$Tw%+|_YsxzPtK4=
zWFbH`palX?6SHlv8@R#w&4g~^9|QmL;b<bCiJJ!gW8ay`ZQ_=J+njsN=nrLg416}!
z&tZb*@plb8wav4e`~2!B$Z5hkVh?MTk;{x^qBVqV-n}OBn0UB;BGbeJ!+m}ZlQI;N
z0vBC(-Er?Tk>5l~6QxWP5PlI8MNJemqw8T~*X=?k3Y#FPkm=NI?iVvr+(eNhHj|=b
zrlciI+;3v;>=fOw&fx<lN=v>Kr7#pOW1_4iSk45kE?EX9US2p43aua|B(oCpGNGi!
zM)Zv&RTI@W1q6l((?oL<ElgM@;^dpiGGUuIIM7R&NU|MFxCBM3c_soAp$Xr_&$nE1
zNV5U?WIn{YUks|6QA<{q6snj=Z1d<c`&6%H@(=96!$OCzs7btWy8VcW+9v9ls9~a}
z87+FJ*m`xnS|)hq#iJ%R_yNoOm<duQLR!~EJrj#2*^Ny+&M3^zL_-sua{Bd!j&G4c
z+`z<>CRW~ci94?L8c9$#ASIJ2G?8?g3T-BI*Cnr|iB=}so9MuHXzsT*(bkL>i`tlY
z?Y8&Tqkiv&J{zZ<iS@R}v%PCBc^%E@kZ)IJA(9mCET9XM>KxKbnQkT+k+pu>L{Ij(
zg`yUEk;y(avBpFn6MapLH!;CPKNI~;j50CW!~iooSv-Wep2vKjF)`4@AQNm2Htb+&
zVKz&tH~pa|hDjkQNlV?~CP+sJeOBm5Guj;>bBt8>MQX)#`#A=U_MSI!r@jAzi50p>
zwPZEf6fcRuSQFz+&|Cak#GGhil8JXs%ro(_iOD9WGgA{&OuS-Znu%9M?WdZ!HpAn{
z`sE&vI?PdXr)TxikNKl-`7=z+H1URsIVNVAc%2%X))Q8Z^_txxgEeC9sMvEw^WQdU
zy%~+fw}dhs;&<34Oz^RYIbZZ`k%`47-ZSyOi3QSPR7f`32PPIWi|tt}Pp5XAPSx2|
z^FtFKnOM&HO2j2*v>Ns?_3*mgv{lAZ@qQw7nNa>Rk^)o!cJxYeL?Kt3_>?34O`oNm
zP&*)CnLju2g^5!pPMi4B#99+OO#EnK9TmpJCKH=k+RZ+#*EX2A+dHKDitWrHb}nd=
z&*S|PUz_;G#5NP(n%H7STg+S8V*Nr|BhY-2aqsDral23Wor&#cw5`mo;qN(!21a&+
z++6;Fl{)LwaBioGpG+Jz@f!y$dyq9Xamd7O6FdsE*Tg=Kz8(G^6Wk=?=Fxuf9uUes
zChj+pPZJt8$S<tU>C|Bp#Ju~3_=s?R70NDVg1?(M!5Zap81Wd(cECF>Nzo3R2jNdj
z+rHT%<BW;3ChoD2+rl{$=Q&rK_}9b*6BkYVZAKeFmrPtX@dsyV>XI34B=Hk~Uk#J@
zMMnF7a-c1%dCjElee^BE6P;vod)ls^BL6yDY>rQGLjd_VP5fsfrxkroFsWNqb(Yh_
zZ8JJB#gm?-Pkfy<g~y65@FY8pe@OY=kzs+KExCkl&Z>E@g*=i-AuIaLZl;C%tf*`d
zZ(gC~=d&XFe*)U==eNKz7qC!J05OC3hw;Kzw3)>%tzs66TNq+tsD%=YXyI`SPgp2v
zp_B!~f@$Fa3#F~d!bi0tqo6Vt%2_CHp{(`4i&p+xn|RPd1*SQ~t|ZKg7U(VyjI4%s
z-KrjwAVuf{u_!5xMf%#;EpE#5PL?QH%R*ezuVF<OJJ_tL1y?W)9y~7oSa{e%bqj%o
z&_cpOwv7-ef0VhH7eQE&sSLdjS*R?b#8oU*6<kfI-#&xPEDMiV7$q0cWJf1u8ERTc
zS$Nb!Eeo|R)RFR(RHBMJCe@(~U0sP@PeSWG>NAwN*SFBXLR$;%EIeuP&=Xond06;{
z7MfW2v~SqRLSrks&4xy{q_q3xkZEc~w3&tG0(jL7y)@8jX`z)B*~hjPO3+4HgP^^I
z4i>st=xRj+v!jL1R%BSk>nS=}Aido#gQK;@GhsK0`?Q6g7Lo(P?o==V#7w7`h29pP
zu`tkz{?OgW!jxWNKMQ@uOU|hEZh!WEpKySMoM%!5zl{h7S)k*ej0RgcHYbaKj$oLD
z;TB%ExS4_x7M`WvQtK>?WK&ysj=gVzrQ$rpt2stnARQxgZu^WEEWF5qoeRcEtG;Am
ztQ8qGv27c)%V3*#YL_uy1Sm7X!bHK7(wq%nWw9NmSa{9C3=6MVm}+5~g;%LyckSsG
zXdKl)heM5}F&Mjy-Th<laHfRLqNXj%;<VPVXLQBT8y4nJRV*yB@YgVVu7!EhhHqMU
zi*4RMBiqjTZ7Z_cdPnHHLTMhxa?ZE#o`v@<EU@r_1u8#tCt$t|Wp${ci!Cg(u-w9j
z7CsUsS;DSoqn+~@`mu1F`aaz!!X)5eVMSJ0SZQIEh1C{56K(m_!h!Y~EH>4qI8BlJ
zhxF2Y!2xUGxQ!Dw)>>Fct%&1?IM!R(V4-FlsW`r}u#w#wM@Af*ENo_PGKz(-Eqr5v
z|2Sx0*xO=ZtA)K5_F33w;adwoSlD6VJ2qO|jO|vmRQtV9uGSLMZD^D6qlKNUyM^5r
zezKwkfAW9k2wLT3%MdVnHr|sK*w4CHIKsA)1P@X-Ec{}D5t$|vIV}8a+<v{wM2-sQ
zcMHEs;^f42tZ$RSOi!@W*@G7Tws4Ai&L477&(C|O+36O}O2i8mF7hcLn1wkn;Gb7~
z7Ad<_mn3TjU7=bwi%y{YA>gWoKLs>;&AUczc{2*S&N;KJ&!xhDE!?oc3l07e8J<=7
zYJ_)_91FKNv22Q#5bsD9w>ffqgyh`i-2R50BOXyYuJYxI<DNJw#8EMh+;Q9+N1-?h
zQy?C#{?%?6-WNxvV0s}SZyfp3p=9QdqvuJlKpZp%ph-Z%cw`<xz-9a*@#s`VsW^(p
zQ7n$)@n|u#L>%|WF||nsF)7{L-@KA>kaF4ofjCOXQ6`R7HN5h1RPF7RjiX!~+@|No
zJ(-1a`45tFCPhs7N^!*E2;vCiP~uSIu;Xwfx+c_$Ll=1?4l^D#9V5~)LDG0UvIn3s
z0E^+qqlHQ`y*Rjl$(2%{?NBu9`wLzoj$|AU$5A~Fw#h?rRACjGMFprF#{*nrpW;=G
zV{Cno%xY}U12#eT-CmZY&!&Ea5ii;`q?M+v^0@!<XdJcJK5>kQ<1vQD(Ke2DY`r+@
z#-l66n#EBsj>qHR$$}>F=uF2GY^C1elkw;PNc}jTUX;}!j+~!(40=j}7}`)kqc|Ef
zu3U6RCT|IA%5EJP9S>>F4t>{d!Ay0pWjvZHTg9VkwzbeUY{vc}9Xaje=nzN0I5@-e
zU8|$y+bxbxadeKOOFVi3qjf7^#<~iomxh1c<LJS%Q7hu;BZcf02VL)YWd7&1^|H<U
zNc&PT#N@BqnN<Hc20arFh~t?!2F77M?hlPevl+o4@eUR`Bo5jWk~xe`*Doy5*5i4K
zXX6+d$A@uz6vwDIMzbH|c#X=&9OIZ2$IEd%AIA&qpg6`+LwbiV3VkU`E%LIp%h1YK
ziJtZ2;}M+@$3$vf&ye#u9XV`-$#G1H<CS=HsD~HL@qF>rICz8HtMTaI#x$X1atdXe
z&xm7Y9B;+(Hgg|h&tg-@qbuELb^N+iZ8qo0A8o$6F!wpq<8$M9Qvf;aDH;;L6UX~;
zEQsUXIOfGMUy9A3_e3Aq^*jgEXh8TuJUWL$Jz2!U$D^C#c#MeuC?|6<d*L3BoF#F5
z9LG9lDp@RzV`Utx;`oHs6wY!<oDH%<dWuTLVyu=RK1bG28+(VJip*z{JJs)V={0uT
z7XrSNtk()=VK#8`k7HXL-^Q^~lxI^Mn<ep`ax~^^CeA7kjLyh>6Gy=g(Q$0Ltx}yw
zo=gz)&=a4V-%0fE<DmYq);r?(k?L*Z2^%}(_$dz9$ZO;0ICjNxHI6^y*d527I8L+8
z<JcR=zBrD?@moAHO57jEFL4|ed?1d4aU7yd^XMiJQVRUrB5cny$Y)YVsEub*zjCmj
zNzwazJh~Qxwx%cIIL0U?Ji6l?u%}W4<e!Y=R2)mrq*fowYUgL2<)qglycox&IL-;C
z_q>1$EZ8}lULKRbESx=Gx>u->Il@0ULQkf)pGjRfle!kiUvb=u<2I*`IIhQWgEDb&
zca<k1`xXefb<3^cf2o;k{nlCD_R8K(>Sr7TbR%zgcc`Lq<gk&`j%H)V;zNoP-Lii?
zKHV~G<g#&(jodaeZTz%2>s}jq?8vx_b5yu8MM~Fhv&SIPe7qRm#)CF0*vN0AfQ?f8
zEu@WtHfsE2fBd;$(ncX0g>CG*Xcw_j%*MPOcFvxai!zI|sjJPx;=&=bgpF0-1ow;g
z;s^G9*K#+w6_&P9M&ds9slE4*SJsXUK55n2e{-Uojq)tp?{@jKso7tL6>U_qk+6}p
z5woG#aBR4w`&`wA$?p{#ns{}g<Qq14xeY<wj=sP6g+jW$MpfI6uKXh4<zO_)^XzC_
z$F~vK2nAEDRMQLw@k*SBY*e=Kn2p*@#70#ckFf3{#+3OzRgG<ODR@|DbsJeW_*KP=
z!pMBHf1a8)9<{-Y_&Jucqic5fX;#aQKDF9k3}`f1$3|Tn_3Y^DkDp!qM&oV~&w77y
zDIl(IqXA>tm|^2d8&BEjZ)1RshBg}6=x(Ejjm9>b*l1((ngTSn(agsCTWYqnq5cxt
zJvL|O+9+`|n7`7eZRBHTQw(io<C&vDYwEzp$lK0FdmAl}xm|3~u%`nHV@LLo#2tyx
zrbdjgJKG?oqirN5yRr%rrR0zddY`s&bGhG3XiuT5s{6&(+P!W3Gs5d*qpyvA?9la@
zIp^8gl>BFG474%E#&b6Q9pn$PF^o!UW3Y{OhR1(U6zuKCd;3G#KDPpLM%bXY+;VrM
zjb{auNtsc0WG>4+m(ezswe#Mn96WF11sjuXOtJBzjhAdpvO)V;Zp3hhXsnHKHpbhS
z?fBd(;!X|01UuTenJ7%|6V*TLzidaAw`9IzV?r<gRsIuWi$7H`z0;(S1k7$ayMwlf
zi|m<fKpWrK*ka>#CdIz6vB1U~Hs(<4Y`kM*t{oj<e~Xpv98TSo^(M<)yxLheYgOlv
zt4Z&2fY_LC<2@1JiV)X=xZ=dMCSoqJaw+u#7S+ZY8=u=)WMi=%9Sd4Y9T@F#QQ|`z
zAK6$UO!7Y#kbO*^%ukrz{|Q|#p(|{x6tGI@YN3q#sg2Llm~p?b@g?8<ZLH%++~#p*
zn5$}BCgRfQda6AK@*Q^rHTEa}E1?@%$V=WPp=1(see!FTd6M0^zqi%KHcmmD#%+9S
z<2xHa+R@q<my5r*v4g|>y1kv8TM_36D*0lYfJ=E?D<<7(N49g6*=0vdn)_`Wpc>fN
zV`HyyxJ0(k#>lfNhEgnAG_!HY#!(x;@ljGX_{GLyJ6h7YpR0DA!y`6+Wxl6VTv8+D
zs@m_IvTnIF7~@j;G0Bc*$>f~0amvOu2Y)#@%_)l->tKk3vo_9gYI2}DIB(+uXIclj
z9e!ls5;dIT!p3DASM2C~$5lHzKxecKxqa}5U>ZdIDd3uozij-?Hk=x51n__%!FBQ8
z;D8c9&a71~cQO96qZ^HKIJiZHY3$u*yYYIot@a%OcZDuGW9M}6&cPtVL4nm?E(e!$
z1+6v(%kKF1I>_Uogv0v-k?8;q3OOk3L>pUqh2|%9aG!&IUA=S7GkD66;GfK(fCJKk
z4lM%%f+7xzI??vWynDQ24tVitaiKGtXS~!rgY;M)r=){Y4h}EPs^EYXf51UmCn{}e
zC)y2}xX>@dX1o|(D7w0ZU(Nw(d7%$F(TN*+D>~7!no2C{4WBM1fEPn)4s-{N95iOi
z4on9RIjHQwau9c<wJZ3%zR7mrI|v*&4qOMGgRAxZ5zR7I=Lz<<30vmyF5GcLC%UpJ
z=|q>fCY<OHC^yJ>GLc(dRUA}xP}e~{2h|)r?4Xu|#~f65kmaC;gPIPew~Q{HdaH&1
zh!bt15%92Q%E6;fbn27UT)ri`%9YB@tZO@{<3tBhYc$KCmyX4F+==#po^Vj#i4Je_
zv||GYPdaEQ2|nduZ?1qTcdHn%yNL<tZQ`J*gPsm(u-D8%a|dl5w3AF*IB3Nb7T7J>
zm_7VCJ$$xsYbQD=+J@cN!lxsqE^#xiy%VWZ2T})Y5H?OH0iA_*5lVhn0o{al7uv(Y
z(*oX-mh9!Aw}U<o`m#M)k>5PJehyfDZl@CWcX;)s&rREB*l3IGf$XN{(E-vyPIQ)*
zV5oy(EU<%59SnCc!r^p{Hyk|cV5Ea_4#qne<zO^bVo>;;6P=^sfnr`PJjRJm%J3x4
z^HfOYI4FEk=t~YRbjaX!!DGeC>wkINW`cu>Y@9>EYYrv}Aak07mmN%YFvS6nmA&F%
zsuLYCd;d|Nw+i$8CXd_DOUYMRcu9@NcIcfUg_%ixcJR6bo_Zst<IzqYg`4AGu7gh;
zEOYQCRocM<2Ol_in`6_7j-I{G1{@r|%YpM%FyFyE4r;mFc-Gm}d%|oh$FzCWh?QFC
zV3C85q|A${?L)$@HM4lr3+w(NyYH4e@z30>*Afx<Sm;ur%xJlQa$3j(sysutg0&kK
zu9R}F68!F=;4=qn9PFXKQK=k!;b5DCZ`mLY);ieCCVIkOn78_~SA%uzUkAh+IM<a<
zZWR0#yD5M5zrW8SXOr+BS?_<%9{D@ezHq;Bu*CtvR-pt3cG%xJ_};;f4t6@&?%+<|
z>YEq2e9!zrFw@`Rp!n^OfI&YAbGPL6vx8j%m>om2@jeIp9h~8`?BIZdgB(5%esgfh
z!I7SokBIy)lE`79Ofx(2Upea2IsVROcW_d?#~d8z^u>AaR!GU$_V|f|{`__RDQfaM
z|FnZ=O87jWbk0HfV*VeTTlf^9%CYVaE^(MUSaCIAE|(po_9d7C9la~od-Ohf*=I}s
z$<{vPUHd2e=yv$GgX^4yT&!_%gPF3+Ts-CCUk5iGlygzu#edWgPU$WRy130kI=IJ0
zZWni*$hIv9nH@sf(b14TryJdrn<11Smw;0p!h2ohagpDRtV(E1lIceGMDffH+{m_s
zE^jt)ai0Jh?2(ymj#9`)VHYJ_-0z}@8{M2%)I~8DJTb%+dd~G}!^~uhOT_#wGiduk
z<B*arO1XGIn59{@U)=(&GAKra!!j<)3WpYn^gig)f*O@wRB=(!MI{%G3)e-=h2lo`
zB(@8hII1ozH!>{IT<9(g7iSIxHLC;+GFiNT13F>~#9h=mZ<py1(lC#0;<-^PJ>-HH
zL-{TO7oi&+QlLPBO($2_5hq=cG9rW6o>g5`b5YO5<1QYS6l%Iixv1_&CNXqbE*=qF
zBh6u9Xl(PSi^rta1KWqSTpau@>!B-dZQ;}rN^76GZgg7|TlfhV^<6Y@!MH3cJB6`m
zc*Cj@H+0d+#j7r+yJ*bvyBO_ajEkl$zl;7Z2DoVMqJ@hdE}nML(nTv59bCTBM~SzV
z?Ai)#!-~(0I=Y>B+Y4o9kwf8*5~Y)i&H}m!?JBgJP|9={5Nnmu(~WM*>cy@R!26}C
zX?@(tG^oGezApNS;x+9MUEutTi-9hNxELz^$R^??W`kS|cCqYi>W$B{Cfrwbn2X_V
zWGu>xkD%CZS#%>^JS&)YZDn&tiI<m*J?G+i$#I&C7hJsPV!Vq9qSfr>mqbg)3Z=S^
z6F@tqiK0J~*`XIAW6??CeOV|QXNntHE4?C=V5%EkhDN{yc`W5M7c*QeU?Hii&v`Sc
zrHk!3Y!er+yO<r7-=8%pae0ybh6}ojqik~Kx_HyYTQ1&qG2g{|F5YqRu8Vmtb``4j
zQ7!+wvnf*IY;WOm!TS<a|ARc_(7TY;WRYB~aIx4$j*ne3m$>+lI$7QSND9O95P$4q
zDTivg;1d^g%LMP)?9q`qWKx1(YWGd@Rx%=o`6O?(P=Zed1RH|SU3|ew#zP?wU%FW9
z;)IKnF4nm;i^47!yIpKx7r6M=#dj_?y4d96YZu?Rn7hy|T+Q3;V%%}}=Mv$z&513n
zY(8h33$2&8mGj#&xAsl%a>}bY+U_yY``*QNwy=wxY>nmi51i2Mxbv2I#5;t;1b<?y
z_Va$GO0S60Bqku;<6^IiUtApK+&J1c3su|aV!w;CJG}!gE`RGD<YaQkV}itog!9?D
z%p)#(7IJ=Pck=)*d!ef56bX;I_>EmzB&6d{{f@b4IL@w}(>X3F5S(&x+Qm&~#0iI4
zFf|ufBoRuUb8()HP$H!*w=YO(S-gt^F1a|~+o$&r7gt^UBf0!3LCom7fNL)PO2_)!
z#gcEM+A;J7HNW~j1U!HGuM5_lO?Qiv73c68S$RF&;pERUOtbIxki$bx54k+t<KgfJ
zSyViJq-S`r!mJZ#Q@Poj`)x9*u2h3s75zLOGCjaU`On<08?zWC=eZOG798{QdB{3o
z-{*lizlQ?iC8tBhnuR?S@t}B6Jrwm&%tKiZ<vbMkz{{jdGMDN0{R}<i@iH;qLUwhl
zOHhiX8sk6Up|poG9zI`WUwJ2k^!Y_LX?YJ1dN9_w6(k}rAM5#FFyM$wPDSBY5*qWc
z70%viw&p?iko52n`5sIUzK4J{<tB!Q+f@>-WVfY~XM6a#j<;fo?RaRu%jTtLo`)xT
z`4`^KVB-5;3}=67haR?UuoE8ERrFq8V(-1_RrXNDLmdxwJyi9;JJxD>m|w=Hd^HcG
z4|}LCAWJAYk9eq&#x(_`ggz>i$v)<x^~ZK?4|D|Nta~x6CrvTqy8pQ3{)87@=~iDT
zi`{@7RL3KyA<N)ld2Otyjm93DczC=jo~X*xplIg73E_rl?x6*{Ai(_rT6$>Z;erqT
zUZJ&zHf$wYc=>4Sp`C|49`<@@@1cW-H$2So(9uID55ql-@KCFl+u1`;54}8e5idDi
zJ#-V?U1*Oq|7ihv4rcaFa|U|olg51o^b^|O!+<pZ885QOW3q#UGg#;lp+kjoGm4?V
z6v!lf*272-uLy_UQ664Q<Iw`fcz7<&d0xN^9%kQmDg2U$u^z?=^JSsqg-#Gkfr$bp
z2|e?IKUu((bm+oMRVXvn!!+T%>S4Nv*96Z>%ghiklkI8drZC;>!kI19HFMAP@FqLg
z!+H;Id3f8yY6*JB!@E>Y4@<>6&%;6i^Mx{<_XNBzbb-(hgjVY4FA_kR#R5L`@R5Ke
z*<K?nyCk1@SS6fgLYE6=&<YPL1!tGJOf@T8{!<U1rDfJoGt>ABJ_Q7?O>=ky-Ubg}
zdH6v%8`J!)9yX=%W&vLd{YK~(57|}NCf;v_ekb&Mp)AIB0W8=K0Y3`enGXHQ!_R5F
zOTccSGtAUJ5BoWr`N-?zfQN$~E_=A*;gE-4MCJ@<MFGczGOr^7e)VuP&G}8h??M}y
zxsRv$Cp?@Kd@9X3Er9)dHqANb;k@7rY0gCtmjwTR-T1@9f9cSx0{--H&BI?F{ub{)
zLa(P~Zu}p;`d64YJ(@E9Pt$I3uHz%X!`-y}J$^KBa`?z8AVX*_q1+e9?&aJ*?)8yJ
zn8O-okeTWKPkZzExX(u^2_iqgfMP-m_$Vl#P&%}*fFeSR3eB!&aUUhpGWYu^DL6Z$
z2Yi$kZyBMLgq9UrPH1@_4+^Ltlx3(Wz;2m{r8$ZZHH|eNdK$A?EFW<n<9$r<Vf%1=
zwDi%+hwH=hQQJoyAHI*k$HP9V`v`p`d{ptVaAV@L++k8cWgidupqDP2U+ex%f~r2M
zrTM!yCb9(A@KMvpBZ8lmL{frl`FKpgqmm|rvSqSUt}8($@`jCk)bsJUk0*T87iL2r
z4SYN)_$eP1&ZV-8QRQ4}x};AplWOdviI1ji>bxOca{<kS9;g;^TKJ%sxV4WqKKlCT
zC!w!wO0@OSjy>+9gO6@Ly89rrqmQlvh&u`B?4wJX^VGQ%`7ck)B<<m&XPW=C0Q2Fn
zmw?`BejfpkyzTV&F~G;OK1TX@>We(j_@J$Eg>8v}J_fOx>k@-m(_G;YVSaQfBqkl^
zW4I3n5swhcC{?y4M)?@+<9VO=i(-uMDexTA`63S^7He`(cJvn|XspneBz;C7Ctk`h
zuZcb;`S{YuS|2a_nC#<2hWePoV*7Z@$J<i2sXk`;cwO)`AFukD?&CG_vg9*;%t&Jv
zBOA~5@rE$xl1iyqq&brHj8h?Fy(xJ9;N&|#-u1CSiZ{>4d;#xEET;CJG#9JPD6N)e
z(0xEf^1<pXqDn8#SS;ye*SE{L)Dj;b`&cE3EEW2Rk7WW_Una8L$4c?C7gqS_|8UgQ
zbWCcsB=spn1+4MGC|~&aTsnn`XNd4`PbSv+Snp%6k9|I^n(>v7?|gjkW228vKDPSU
z=3}$u@{NxzKE9R&N1scvMog2{A!VkupUWiYTfyuaro7$94?ceOvCGE}A3yro>GP-R
zkucSu)BAZS#=c`Lg7!-@$looYd#K4vGng!MVS@Xq^FDs}am>d-ABUs>zxwz^>T+0;
zV%3-qGd&_LLqP9QAHSvf%;LC@6XHGV<D`hO4Nv<xB{;jU&!qY6XpXpZGQQ3W9lj|s
zc3k43k4ru-`?%uc4<CgBkV$vd$KO7#`}otxHNK=VXiXMrb|^8y4Ig)W+!f|OKK>P%
zo8tXX=q;hQg=R+~%@IUNAwbRm83A&MH;+*A?+K7Qjqeq}=$UCwb}{k>$QOY8`vT;b
zpaSA$^n&Rq#DxPC2~box#iU+jG8SoZk!KZnzNut@&H=gvC>7v=0Hp(z2~asel>lV}
zlnY=5hzBSi;K2aR&)Hgl$w%A@LKUGE15^qS3vjEN$DsepN0e9%KukcV2QWm~6gvC+
z)L-Qi6te>a67f$x%Lzd02Ji$B`vPX3ONA0EAv7tp?A63W0hXOh5mXIOEx?ljo(k}A
zfa(G2i44=v3h-!vS^*wOb7}<q#cfoDR5~5vY8|}Cm`De&woqnGTt{$SDc<&TsmIwM
zR}*wk1gM|J4J471=TeNqbQ%U|6rgc{CIMOpXd|U+8lZ(VMKd;_L}WA4-949TDg0JK
z*;dT7ZGd(GItZmqdnrS<Jk#$eUW#=R(C?JrH9)rji{A}z2IwB32U{$_wE#~C=o#Rr
z06z!l6`*&3MHCCrCqUmII$r%ofPMl>KIp#|pnre?0iFpkP?*=J`hx^a6goJ-kN`si
z3=8mLfR_Rc7yc-rBZM-|X9J8(<G+@9qXUcy@LZbnf`I3#RQ;<{xS|#PDVuJ1nVe%K
zXq?dTY555OX55#`mYEdbW#LZ_FeSh%f?pLnH7!3az`NG}{+v6VI#4r8e@1|r0a(Y9
znHi+B1iv0&wgCS6nas%}{W$^V2KauQ{U*Q8X4!8^nr{bqN5H#6-xoSBz<dEr{5=5`
z3+G%Q-~*ux)1iHH<@_+fM@%-r_5e!)e9R$v+y0EY(asCXWiAcy{05htPgvS#?PUR$
z3s@m^rBL!$1z4TNp9;9V!dt^ZI>r7xz!w3&lpNOuSRY`m;JRz0x^EEtb%1XId?k3J
zPzG%ZusMyJmCLzB@YXb^%Nc*0;BV8M?^x77qrb8L5a3Eq??-8+9URne+Ret>tU`@F
ziJj7b{E_-Dso;qKCj;ybuqVLY0Q&;`65w!v{Q(XHpn6o?6u9+0HpQ@ayn_J_QGu)Y
zrE_GGGL-2Y3Gi!xqZ~3*Y`WhA{3e*i%jO&laGVW0ISOTJrvjV~a4En;W5P25&IULi
z;6eZf{riV~F2IeiyxX;^vb0S6-kg~irJO87u|3{p4&;&kl>mPPxXRgbo89D9uTEKy
zp)3rK9{d&H?*P|X3!XH|;mtT2(Hk5QIlO;_68tOR-)r`NoHRJcvTQY~W`;nBI|1$n
z$PprEh<ihf`8~@jpEDyw?l2mRxrE*m;>k|Vq&=>^&$i1)J(x%Ml&n}KXWkI`LcF!Y
zjfJ=`ME(%>hbVJCRUkyQoLNN$7YtD-MBy;HNUDhN88rM(by9MQg(x1PgiuDz=I6hW
zC>f$uhz*my2bf5RvLQ-K+^Y>kGRuW1AL79f6(kFCvLh1k9C5`E?e0{kt0aIyN(eQC
zCMDNH7y|NC&uxZW=87sC7h3A`XzaHyQqvaie+{ZGJ6+QY;fLs38T~3F2oZ)@mc;TT
z5+RbzJ&CeOJQSjGh_=iw#D$EYiqI!QRAre%JS^TvLevORU2v9AehyQ3Z|?+Y%@8SJ
zJ{qE4h{r>WJ7m-n&SOGrho~cf!gWLR_#}(qT93pp2ne(aRqKan5aQY0_LCtRisVyi
z`F(XW8--{r-d59n$~OsdY<JL9XfvVBL$nakQfMoot%bG`O8HtR?Dio#gfJ7Z66hGB
zQ;5AG_J!yiq6^C$Vtk0MA-b`}Li7t!ac;7Eh@PdrJ}k3%pBCCvXfL6?g+5oxqcGjI
z>t6p5148_<#(iFbo(Zw8mN!K3K%s+#4i-B04|}Kp#vLYLc!&`Ko((ZF#3;dI(lVo|
z?dATL*K;BMED~hr`$C8pMdl@;V}%x(l*!NuAtr{{8RDl9lR~^4qRCJ0S0N^cm=a=9
zh{YjZ2{ARq+z@X{#AzXB33xTcp^2H(1v9DFLd;0xnIYC}j7su)nln4Z8-nMgIe%==
zd@GIL3-NXuzZ2qJ!Sm9b`5`vtbF%C5euxFa|3K)%w9JNynIDGuD8#A|t3xai{_=F_
z$03%c@h8;tG~PNXb441j6i{WX&x}3|@uhe_6S^iX^LdCb(s;cz;9B;eaMq{!8#uZr
zMs2$>M4QR>rVyJY=<5*Q3HT;0xh2F_!Q0ZDZ$m6R{=XjlUYOfM{2*XQTINR%)fa81
z|LYL@XAZr|_MQ;CLeRTgXrAjn@w4T;9}D~YLmUWkGsJ%(4zj;OTn=$1#4nQCi4Z3R
z92R;+=&vD;3iwSZGy0vwB#n=AEM!C_JQd<J7g|SpmqMILhn@>@R&Xn69EzP6?**Y3
zh1M(M#maeeXW4T%dVg>P<*52^hz~UHs)YV2^qSDWLi{b@x=^NeBg8*~(K;%_Kbvck
z-U@M>Gi?I*CvYdkUFtvsKYs%I7TTM~d(9vAawL#5fs8~nW^)P6OyC{?xrN><G>_0I
z+3lGSoL6W*q4%Xj7f;G8kicw21t^$6p)|j+fFeSRCQvNRFP=b=36XHg1YSAo<vQ!>
z3CzpqmrCG)1WG4RCM{V}K-mP!2`Df0!E|Va1j1!0rc+5cF`<f3H7%nh(B*cd8%6@l
zcG>0kdbgH%@dWGy<|goF0!{*M0*w-AoPZ~>Y9^2p;3p8I(+LwuB#;#ELkT=Apt8^^
zX_=}CR1^I6+$cx7>Iq~C=aIBbjYRZtXV9Yw)JkCD<Rn{w-p3OBZF<;1#A+u{M?hVn
z_0n-4Pv8l`_0yb*Yy2nE_$dJmg*Jb|Ymz|I1bQaWD}iPSG*6&KB2t5@KP8x5F&Qtj
zj&j)ytrBRRK$`^GO5839v=h)#XnUa@gfil#CDClqNxYqf-hDFag06zQ3GFVlhtQ`J
zIJwiMK<@<J>)?$@;MoNFu!R+`Zvy=i=r3Y}gi>sPfM<jb6frXC1`B71(4h$o6F~lO
zYPh67GJ#PEP`zJIU~~dw5|}13&j}rumVZ8h7X-g3^rbX^Yy#KwMO7Q0zyx7VOki?4
zbW#E@r}5`9l}!=vD?+C-?(+Zj_^ZO1F7&koW(Z)iGZUC4c>B>va(0^kMgnuvxaT(e
ztpwgq;8X&q6L=?qcN6$Bfwj^O^Af00D{FBAo0i-2*_aaR{dC*~0zOD!VVbi@07ve`
z4&H|ee3ZbF1U?q#>a@(#1U})o5byE?Rti{=4rSa`Y0P$Ju|G}VvovQ-0-vYx7u4hq
zks7Z{V0{8R68JHJ4btOZCD8YJmBRNq*$=FZEI+$RB7U8~w*tONr?Vx2t!ccCsv^(s
z@6w#_1#B1kgHUGLps=$ufdX&ZM-%udfuDuHE5YC9;-KK&3G5NT;_c-eD0qLG!^R~4
zPy)ZCImLd69#w}EI3k>1(|kVJe@o-v6F4ULxX=?qPo_hAiiVuwjG9F5B+e#qj&sX?
z_k033MCL+T@?rv)61bee72#Y<^Z!WTY8wBUfF4Gg`Im71PV=uPz`B$Fk8u7?;HH58
zgx*cymVnzr?+B&vZxb_fB%`j(DKtYUy}1M&2z)Bxy-8#yfn=m<d6M9SISO9hB=RLu
zDv3HPy!+CziVDatw1CipNfZ)LSSV92l8m0n1jU3?Jk2kW#QkYpQovqmw+E6aE#B;R
zhH^=iPoiEDk0<e95*3nglkg~zj9%trNhnD?uq&vPL@KAx?-w-*EeV^BUorb^Jqa@j
zD+wdbnS0QVOI$|hrw!xo8*V$oAtuvLB1qy97CVWMFaHE*t3RAXk}v;)t0qxd0Qpst
znEFKG{0W!1*+HAMngsQHJVjhRiLA8bhKW&V%_M3ICzZsbNmM=O)k@;Aw9JnU{BC8!
zqH}yo)=8qS@avWi=zSuI`boT)#7jvuNMhHHU`P@}lXz0_Q$iai(I|<=Ni<2KdlEg8
zXe#{nLVK*N*({0XNwi3!rEvBQso6S-R;*_AkO@{jpK2rgwn?;0;_$=a<HA33C+v_!
zM{2^3pi>g`c1xmj5?zw0X=O1YUDqVmw~KItuv-1|si%`*;(e3omqbstf7h&DN%R(G
zAEAs$feThv|0EW+%Ni)mj^|SY1U!?(_-+Xb3=;2Pp&$JakTWca;YmEt4*H|Yh$O0X
zOK=lmOcI06r=Cq>qyXYkNsJc!>iHDClzEO(-gfGgO}y~`m^u$&DT=lW6TSD41O)|D
zvP#;!InV4)Zvqhk5hM#pl8j_bAW0C(SpkuZ<S0Qw1SDsWAUR6TIsIo|zNz}Fx=uZP
z`t6>c?w;YYyVK*vg%4H1OrANHR39(;dNIX|sXU?={k<6C#ZWK4^J0J(gS_~GL$Soh
zM|1}Yd@srk@M$tFIBn`+ulZIBK6N|Hi{W1U<i!N9xuL-bFGhPY#*2|sYn0b~a-3DD
zd}4R37vsby^I5zCZQSFz5=uLM6qB&Cj$@)1lX=m#bdx8E|1(=|;$fD@{l#m(w1_ax
zYd#~-cII#}y_g}9GrgGQ#cW|dwf(Ea@O2M-tgP#&9=`g4@pHYH$3->KY=jTiE%aiM
z7rA`M?Zbwj?TdL)c(H<K=fzTn{b^g~1>bZ@ST0%LXp>iZvC4~MUL5ygHJ5=G+@x!-
z7k_xM#*5AD!&duR-b}n$@5Kf$)_HN_bI;mKil2KB{_^7XLr0TBj_$c#8@>43i%ncw
zv&^jNY_n5mZ?kXlVyhROUsv0_*vV<i;@<AX_;n6CJG{6Pa6BsI?)=QL%gcA8xOa>0
z5j}iK?ek(kmyj3#c#)-{=Li?`B>f;)W;l3=mrOW#=aQm-Se#s!P5zhbT(YGvtN3Mg
z!i$q$T=n9b7pJ)Rf3silV$Lz!Y2h=XXGPC>abDnp=q29&1ulxRV$VJ{>gE4uHn^;=
zdvSxk_2RJ?H>Kz{PfFmHXu%9Ox9?`fyOJf`^Wwhn1JQ?~FOKrWipk=`Q{iWp^W2L}
zK1_Tyoh@YcnI}Td>O+l?Bb#Kii_(8dAkBw#0a$(xA94ym%WyL+j}I^V(9(xiKIHWw
zpAQKil0LlR!>c~L<wFr43gpem@5Adp6eLUbHPO+Z*$WhNu(Xg5Z-`S^ln!_QroJgz
z-qnvR(~J60(uYz$6!W3D4=skIHy@Jz*^u-S>;Rl>>TMt1@xkyx`H-rX?Oh)nJ~(|S
z?L&obwlcD$%Zip0EiY;l%@DPVGMI~h(+Hc(hoIDT`@pP6)GO)}^@|2Xc|^v9q=m4k
zCaQ}@M5CfFjuMkoi~I0%FB^}@ll?yCBByvnAFBKCkq;Gpc+Y2kC|A{oN<O?#mh7E^
z=`<?~mu%-CR}m)gxgKgY9~ko?YrW-SwuTQieQ4rCQy)I|p%$mlhfjStUogG44>KQU
zn!7hE!|F&Qb$zHOP~U2^fe)VuH?*8aKFl!8<7QoHuk*-OzGr4`jWW*WXy!w6PK|`6
zJ-5@J>dpL_4+I8tyOq{HwDF;#A6pMQ+WOGWhxtA%@S(jA9efz!!$==K_o1T?y?prA
zhfY3p_Ti<6j<4y@ws+yoj<@aZ=IAQfZld(N`_M!93(+qv|0^zr%uWV;<3mq2yWY{}
zfNkzG$B!;YZ;2T$+DEjnXg?qN`?yi0c{rvY1O|u>^x=EUALPSs-OYf(mNUeMp%xGG
z;i1dH(ru6JJlrTBM*A?GgC+rEL??3DOtX&_9_Pb&tL~3J{ABS2AF2(ov7Jfc{46@z
zD*eTWDHcx^m?ruevUEL`K9e)P(Ke4GQ`|YrhuK!-uRhEXo@+TL^12wwqb&4c5w9jc
z^7^sZhb2B-^x={ZOMO`8!+wch?!&!yj=DP?8-4iAhZR1o^kJ0`e@W?T(Lbz~f9GJn
zZjJ-f8Xwk*|EE>D&c}T-%%b&{vq2z7UFY8%9O2DA>=f8y#ccIqoA7qa*}*%{t1h;)
zOPt-JdqnqIG5dTt+`{b10U!SH;h+zPd^l&79`@mc@Db5}E&r$w$1FbX!-I$BC^4P%
z;gtBNt<p0-oE5&j);!92%fBG-pAS4K`j>sU!U258k=c){QuN4&#{$<xulsPrhnvE;
zMDO`<TY%N?_;A<a!vWWQ;RlxU&<Fc5vxiT7*ipg3^o;j^i;I_YJQvR7|6l3*FK2K}
zviOnJ|G(9q&5!JUyd>E)(VU{`e!z;!;m6r={~L!~e&n|NJbpY~YWn&7c*Tzo{NPs!
zulkYSk0O2)_2YTOUBHju3%cKuDzEwRx<Emzg+hK57JkEW-t=SPBD2jNPV<^A=0|Zq
zbgQ(4A9g<+ew6g1l$dY(QC8p`(RZ!L(gJ1t{GEw8JLM!>UespAWcbl_pm{8(<@ot6
zfUsNCBkHwEeSY-2Y%T_-fFD825BU+cSo0&-Z1ac_KcZq9exwAH6%+F#E}XEOq#uc1
zW=|^kQIVr9^ZTBZR<dH=7pUyV@}1_os^UjgKdSlhp&xamXyz{au}S8ktNZbhRjY;{
zH7)*Fpq6NDKUSxk?bMZQJ<<B2G#dzfB04F<(a4X+etgPrNgg|!`q4~o=1oK&EOj^c
zqlF)>CHt8lH6A<nx6abij{;Ae3zxcCrIl11zr@}6kemMswDY6A9}NR&6hH?a!jEfy
zT=%1+AD#Rd?#Bo}I{VSZkKLD*t&F>?AI@CPZhmwZ_~AcS4?n)}qc5k!Z|;xxr61q;
z(bJEwxHzx4zGkF6k;(^Dd-?ILAHBH@E-OZE{nFebk1>6Cpr;N#f_mTQ?C-~Sehl-Q
z`}+;>W1t^D_%Yaz@BJ86$2rJvZg5xVb?3Ot>hwQ4ce*1F@nfj?tj?_hmt0nVI9&{5
z3nN*}j}?Bb^kcLiWBi!m$4o!Q`Z3OrixFe0ALIS_(T@p!Oyo>GO`p%lF#mM@#8d8(
z&g>*Ve)i)RKc<MoqRAGpy5ng&voskwO&X**U7%r)^jRF+bM`rY%=Kfogt7EjF<EOK
z9Y2=(u}qu=ek|f`Uw9#VbvT`MnU?rb{mB2AZPHop$8VgY%ZkTk2j;GImA>X&#U<p&
zK0o&J8u#N5Ki2v27w5gBca0xwd7y<J@~iVbgg?da(9yfzj}5#X`LWZFjeh*?hkKr9
zv*@^3T8DX_O~Q-kdA4vx38!6A+XU*)^K9n@GS9;*ySO~2W!dA$UIJ%%u7_2qG}#E#
zU(>Q2@Z%ppPWy4jkAr?3^5du<$NV_Vq3EZW{`KRC#cy3vWa@E0PWZuNo$`ZyU{mba
zNe+}8msy%;{W!-l_v4Zu=ecg@n_c?Pj|;*Z`YAeD7kF+i@LZOPS9tU1;7rTXf1ao1
z=`8Fg6XAv*H+jccYs(0rMGMC*KW_VRhZj@}M{s%CT|e&e4jI530o?cFfgd>o$Q8gt
zKVGe8AYkevKOXz>L>y)_i}_Tt&v*wG$Rs99XN+@GvjmV;oNS`mt<skQNV7Oy;DfcU
z9F|k~peOeWwwycyF9(p<a`FkhB08^6T7H27qOXba=&uL3FTL6GLZYpol_N8~89>nh
ziUshN_(iOE`xV8~;sKNlpi}@Q#DDBEPvq?Y-U*<50JZ?$6@TwP9{Q!Nx@82)ik1tY
zW?GP?OsxK*S$hDE0Gt810{Ae1>H)X|@B|PI@Tn_!1Mmfq|7%+$0Dr)I1VaxXG2hNd
zR{{Z?zwZhL5E2LnP$rK<6Q*A&kAuNimf5fTZtuUqrlgTn02Kn*zStfMARa)slqV5D
z={MY6|Fb0n;CsXf6(xXAvQ!D+J<j!d8&f5L_XDVGIUfkTz1~(efV+R#s|C<AXGWz3
zHcuDlM*-9bpmqRtc)kIA902=JOLXh6b|z+-YX4`e8$i7P8U*kOhjEu}=rvb;2_rCI
z<~|pJi7hk^;L`x62QVXmCIK`JU|ay>18C<6H5uz|7C>{Z-T*!eU{C-*1kf^o$OZcs
zqOC+*2hb*fw!$3)<{PXS&`z@LMLURo9>7>B>Lf9pMZ1WyN>>h=aCgh;A;7nOd>O!3
z0el_6H_}cY4v4_mms~thFX3-Rne8pWWAzp2C)!{1y8s3V3=H6V0lrki-0P{8gB1q{
zFtnE=XgG!k@ctDwgjs=MqMLd-XpRsbDa!1q07eUsv7E62&9A84nH_wH_{V_xKck;S
z2@?XC7{Icv?n$CQ2QWE+UxaB+<uY65o+8<9PXlzO34gQPJu`q=0lXQ+TR}8AVw)Yn
z;Q)?s(FQOlfVlz83t(pe^^e=;2e2T3<pKN_z{dQ>Lax04CS6hFzE>1saR5uW4ja3d
ziY^mnwoBji6#=XaU>ltPR`D7+=GYv-mH<`@{~o{}Tz+5bYXVr$Rq?r#0c)k`&j8j5
z(D{qw_Nkk&;)>cJ=0?%KMK_7=m7X;E*VxJ_cBfyOVXzAKY~h|N#R?cZc%vv_T)m=p
z$r<sab_?tYV6Wxu3t+$S0n7O(fP=z^MC-UhtoSc4rM0$W0UQtDXaI#9W$**x_udVk
z2;gJ@4|uZ;;8Xyo1GpBz^#C4COFI)VA6GxeYhk19EU&U@=KcV5&IfQoipc*3a8dY@
z<y;oH62Mi<Dcsv}BY>N{gaf!2z^#D!H#r~D=N8$7+mgM*n-U+5pKa%+3io+&Wp^y9
zW$sVTr{=@c?T-R@DTuTn9tZFwz^9z>EP&?$@XbElXMivIp>nGMLZ%=x2hCUiWDzA~
z704DucFW<j|LH*>h|<OIY7jYs`~u6tZ;*2e@KsZ6HW&H1J-28cRurI<H;8-|zaqdB
z;WiQZgD4O*_Y-(cl<>Mh!5|7*PGNyJf_QteodNuXe~}>kK?H&*8bq-minEct8MYuY
z1WE)^GKf-)muwkP2D}r*yB3!g=-1R=)^f@Tlot)}vDq!(8-zpHDe4k+Tcw^LZY^}O
zaVB37D>|4E3?dYS5rhhwvmXvZ4`SLwn-;{Aw%NFZ_`wdd5iz5p&*nRMH;4tnyGJT$
z-aX=?i6D{!M{j8~=YHa;AlZtd=8YwY%0XxbbORp*Q6-2r8ro{88bq}q{tMw^2p<Mf
zJ&5ih^a$ajAZi5hYY=nTw;(<aqHPfEf~XZl?H~$ox3@c7rcMxbgJ>4S!0hgNobjuw
zNf1{Hd+G<#Ac*}3-G{FRnEgb|hCwtEpwn33Q_)pLLrpEe**SM};TD$jSr9FSTZy)|
z{5AqNnt9p>(IJT5L9Ab5Z@=00c@Q0g=oAFG#dcd~fv-gAbP?zpL^px%mfu6*iy*$V
zoN3h@Ut9c55IrsKCGagra)ONw_6eddSN<$pzaS<AF)@h#e0uJlov&^EE{FjfnIOIo
zVo=b03G5irAA%SzKxc3eLxhJ~&M*Pq&qoNf?d%@OtH3H99Ryzv&WcQ9#T*yJc&qeB
zfuBT6|E5n8m>I;ZAbz%DCJX!`Iz@CU*OkC@QMNpTbKTiI1UIRm@=dR^xfnXTE4-!6
z4Pssp6+?J0WbQ3IKZu1vEDGY4zP1HH)XA+MddImqh$TTh4B}A`OM_Sz#PJ|b1hG7b
z--6g2#1^jqAhr&0GW{X2GKf`{vpR_1Ek0ezwI+zQLHrrSIx+b)7Hj<##0JT(7cG<7
zG&ctEw`4a3!N=?9P-`j2RxXc+?!!{FEr{&`JA&B9B^t!eAa;qfTXatl!`?DG#<W+Q
zy*_n7;GpO~qE&a>8E{Cr<}H(t2owGd;;6;P1ey-<(m%<oOtPmq6ccQ8P6u%&h_hmz
z6Xl|!e_r^4tTARUO7>C^mxH(>d_(kV5T^?`7;r6!cXDT3=e$fbtKa0UMgne&-VNf8
zfH@QcocDwY_k(y~@z%|@$Gqq8Zh6{e51CW*G>F_G<O$(f5YL0i6hh_@(nCN9StNil
zFNKg*I9mwW1vt)3EMiKN_!rC_IS4r<CT9q_1djGkqj}KjdRelCLdY9Jz7SrKthb_z
zrLPL-51~K^uL<*5^j{Yx6b#|sGM!L3#P?9(%@E!S;q4IK389D;Q!<3278eVlxWy$x
zs5<0-y)6~OXO+xuziXA27bq=SMzpMGIS$1ob0nE;Arx{rGDMkmgv>qboD$#)!7cHg
z5JDk@L-0!0C+Zhvl|TqVVU7c{ns73NR0w(q5y?hFP$9&G4N;zTT!2;D_cq5i5yFP4
z<~n4m5W<U5x^UlgDuwWV2n|B`B!tQ#e8BsB2-QQ_ojIe5Xf=+5z`>LH&CD6OcG@Oh
z@O%_9za_8F>Aq{L5yCIa?abB`^WzX|3Dg#)UnhjR7S|J4{<--x;C)vzH4LFq2pvNB
zJcP#Vb3s>=5SoVYsU&7AzZs-93!z;I?L**ujhjnY3(klDOIwD}O1QOX8_RDS!kq;U
z1~4r+r1KkaLdOt}zT)T{LKg|^BwFOEI?+Y%8bUW7{Z020s}>`_2;s{R{tRJV2w#Qp
zbqGI&Fd>9*Lg*R7$Ph+_&?|&*L-;O)0Sqe?>>Wbi5T+Fh2Ck|;A$(sbNV8uE%rf;C
zphJIP2tz^`%9s!aNhAY)kh+6KE0*=Lonavi4`GB<WUZRg&WmOlKbq@*wr!l~7}2q!
zd;2)(j~D(?v~N!vorxh#3gO%{+q(Md=MW}`FgJvGoWu~OgfKINSs_g2(L<OK!j2(n
z{#M3@Hio^8F+GHit&L72bUH^{8(prd*_@G9#vBgjRrM=J<EkPscwK8_eh3RfSQf(a
z5Eh28D1;>;ER`1O)iD-_KxN9`#^~3|jHfO<==d#!6(Rf{!XF{jXlqPvWvmQgdTV2q
z=xR}B=Ur9o$(j(>hA_CbvH7a1H%PHp7q6;0zuNx_VLcZ-|4NzXKCs)dF@(R_!%^O&
zA#4g^a|nAv*c-wYPJIZoyJ<T@*d{>UF3{?c>)qi7vpXfbi|b!t#v>Qa2E&bgykv$O
zhe9|U!u}8rNU3{qTDEKIAGWNFgS^#TQ$J2K{MXbGUY^5^e?uTwyQav`$2g9Ka6E()
zAq;HgJr%;~5KaouNcYk?6T;aLE^yv+de3o=;62ajNcVF6liLpP&dT9!drgrqg>ac?
z7e?1Gu7q$kgtRcy!?+g0^$=bPbJu+b{}{Uw!d>1BL%10Nzh1v3dYc!Bd53Y+VY&j_
z{SY36@H~V}VN^b5e;C5k5Ek#YJqqD*h)+V9CKH|J8S0at-Onti-!+vvj9;#)wGE8y
zVPpyO{g}?IVPp%V*9XRs25LefcgLa*mh%6$+y#{1X(EgqVWh&S5QZb9<qV@l7$w8V
z6-Mqb@`Ukn7;l8}W*B+H$QQ<IVZ0v3*o5PiFbahE(rTB=>UcE_YJSnP`|M?RJG%zl
z1;Z%BTGyO~!{~W4z#qYmx!_3O>e#o%!R%XM6ba+iiq7I;6b*w##lm0_oiXK{{PDo*
zYl<8Wx=V%eb{L^B!eP7<#=BvZ4WnEb^?u3dA9j}xqf8k8HuKax@1`?wjjMbZwlM4x
zkih}$?VX<Celk>*=<Ovl(!pT~!xe^GVmzX*470jd*eB{24T!QR80NN|W{ehw&NB@o
z7DgnDXc$Hq-}ZIft!v~T;a;21dt{iKi9j<RMw18Wi7;B7GMG(<QLA$Bz%}*rDWhT-
z?}gElX^O2<81IMi3CBEpuyPn5aOJdh^W$889$O`hkHh9Cy;Z~JN6P$Ewpth;hRu(K
znW~5Jk#G&msVTsZmum^sw){E*b$L3LQ$LIb7BilQZWu<Ru=(pFrp94>YH^b=nuhVx
zE>|<lX)e$r%wJiU@rg_xYO63N-mtY6Z6nHT+b|a0ceLXv2#`C3@wvqv!{{U<z(MFN
zQ0khaTNvGWI1OnUdW7*s7>B|*9LASnd=)ldI{!}?Ux)Ec7%RhA#nr{-9mWq~3=V^P
zeS8}>zjp5(MvpQMLZ2}DhS5*V>(><b_n_H7jPJx5AWCOo7~fkwi166_zJ5p;L&;%G
zmZF^370qE`4Ci79V<cy-hhw}HjS?L#I!1J?DC5V4QA#S3e+=U%@h6B*v|=XllqcC3
z@Jkp|#9R@^)G(%TpsbkbVa&03Mi?`NXNk_X{9m~;vpLz$Tyf@!&KF%^#Vq9L&9^gV
zvE?igSQ^GMf#sI}TNne8!N>t)vr|`x@w*hUtAB*SHyy7DV{I5KR@%r6_)|)EhOtiI
zuQ1k!vB7F>i@?S({ubC|`I|YXC(ZtB6=$31cB^zp7_}#wXS7S4-J*L$_loWl-7m_p
z17UE_8NxwXDqJo6|IQKKBEmQu#<?(#hH;G7*8=zHFphJ6`>0dAr7SXj?W0bFK|LA9
z_8l%ly=QLzb}oKhossy)*VXwjF7OT?#?>(X<4y7vC(|W?i@Z$@F<v;AdE5CYgM2NF
z>tWmt<6amy*s(BfhjHp@;9`dR7B9X1>3Orc&+NA`dxtmSKHgVX+VUpd_rrJ)#-^nE
zSr`w)h-Xy|N4n4D4L%BEV|n*uah`~>=&8Wl*8<O_N+!*$m|2vNMIft&Yy#OW|C{S7
zT>~_HprML}92#<J@M!RA$fY5-hT<AZXvm}SMSFNlLlF&mHS@2{H#EGdA)jV$GR*8N
z8eSEjoL@r$;ny_0uA!iCVXL%|hK6;V411?}I`wj{jMg;`Ci0Vow)V4~$7&cwHOxPr
zR!qaF>x$Wu8cJz!X*j#X@y3a?jEx=!zby^Eqv2hv<<c6;Xeg_poH%yNFR#I7aR%Ew
zsI$659H-^KTq(O-+W&a3E#GmMPs6SOj-ZB+hI_}|e)i{zBcS2nKqvjM22DdkLsG+%
z>q^&PXiyp=8lvK?3A<|dF?L*6F%5*chNBa_7q6?K`P~F+N<#$=bSi0JwxWjjG<+R(
zXS<;a_BBf0P;B9S4V5+g+s9xPHlp89RW)?@$5u~6OT$@B!-pEGYxqb*EgnTf4GlFl
zxO;j(*6{HSwRDZ^hs`c#PiA&g>u9Jez8P>sv51LKUqb^8H+0u08X9S6%-PY<`905}
zmQI?VY8ZRU-bzDj4XdWxn`me%KyId?xy3C6K4ZrOxUUp{2*G!}zC6skC40t}0={+{
z+H-IsFe2!n;d2cWbxhLHQ9~yUYc#CoK{a&IFpop6p{s^&8v1GIuc5n!;09Yy4ZZlU
zfbbU@z7+UM!#4t7i=O$_&d9WePQrvjj&C*e(O^D(c0={%!j8LEWr_3^hi0*jj_))K
z&@e*7NDTuuT%BbM)^LQ+jPoptcn0yT`(*h+xRS?7X9y=t!!V66ob`;_ltyQ`loICA
z(J)%WY!2qOv@ue5oQAjOr;p`zG}|~*#KZQ-Yxq&aPcM#j)iZ_H-EGeV$xhTTNq}KL
zYnW{DFC2s$%Iw=!&r}W6X`<6L%n+C<N`IEdCr6xwUpb6dJ##cvoNde%C9s7B8Ww6e
zG&f@vXR5NXNc1<28^@X1C8A43nO&w~xy8I*=&X?JO405s>}+SXwD!B`AENpCsXsY=
zU2K~*Y|+5?2d&famxlEk9Q$pvhTAr1*r<W<H*Y}#<QmIt{EDBjRl_z7U+MT-$94@n
zG}O~kU&l^fkGv!4$gLw;EVx_4U0#?P_Gs9vVV{Qm8p=0yU(;|v!#~0od9?~0)o@JU
zkmzAfu>j-$71*@TaoloFYd9f%(sE8|xH-zpV5T#?MQAuDMdvkK(D0uy18kEF1~hoj
zRHjSfU)FHNYUiqktSi%)u3OFxwrue&f!iAH2$Y;{XCwD{`oqmbr|En>E*?tJBMr|r
zWYW#^eXQY$m`_FNJk#)WMH(Tq1Y{G<BAQin+6~20rtFe^i7huVvrOsYKs1MFPSH13
zrsdJ`GI_Gi(2-Y1KC%v*j#qTNs-u{W;yUt6aA8rlRzSyV7QZe~P_&SaYj@1EV|qiJ
zH+8%vP(+k|(HAh;MlK=zu4qZoQlf9`ct?OSPgbOrwz!NyS<!N$c~+VOlA*(E#n^Q?
zgq@-;QMXm<(Q$p2*+ZW=ejNcFL90~P5fTntj;4c4i186|qL$B<qjapfp<+7XIucyE
zI%-I1O0=qI1sxT2yl2&_tfP{}@9TV5h`FLZ5T}ahVVS{d!XJuO7iHK-I>yPM)fDGr
z(ONoc3)B&<E6SD`Pi>&%6CE9Ne9jrv91V3e*72#1Mmox5@-or9bwf4L(L%>(I+}7N
z+*HkU&?GdMY}uQNVJ&sEXFw)zE78_E)}@=(+vsR34vX3m{>VaL+Fj7mQAZ~oopp5K
z;7B96GkF`|RA1jzU3GNV(L+Z!9b=`4`UUR*nY>?$F21SA+eQEC?)*l_P#wc`^wiNy
z2c2(42kYo9K&Ow6zQX-P`|J2lV1Vc#(SbU?7vP&Cc31YW)(_%r`ZW6x@#)YXu44p8
zo1HIijMOno=i554rMN*Dtz*_!&)nk1g`4X6O*K}0Zzm_6@tjZ{g>I>zbW9NcNK~~r
z>hauC^-F6%>zJ(LfR2B3{GwxujwL#l>X<mqF;&ML9febBnvUr@X6UGLOU>3XGrvKY
z$s_7$c}w-ZrDoN0{HlZL&zeq_&ebtbD$W;OsAGYSm);6>{5qYjb^bbik&eYuRQ9Op
zEYq=E#|9nkKKK5nW8(_@DjlnJ-0NqoknBoP{xAD?9e)U~<02Pe@Si%?@}98LMqW3|
zL*;*{|B}-6qSK0o%u*eH^QzIYnNv33v!6quW2=r`lHI1msITbnl<amLI|SYzWttOi
zsRkXrgxzB95#1}gPjt~OGmJ3@bsW-hR>wIVhj}}C)i}YaJYYYf<6j*|b!dN^e~2Cv
zh|Y1|D^vD3&$LY0TwmEv>X`PO^OTO+BWz5k1<r`_{}ktST+op<f@~4|r{f|o2U!~r
zma9uTu5tyIbCECe?z&uE5q&3{>l$w?!Z&o>6xec0W&CC)hTYb2N5@@uK*v*SrQO$Y
z=9c1;V|t+Dq4<wPAB#Q_EyP!Cc6UA#COj9&6fv)Y%%WK$=$|Kp+3XR#6oDrKZv<%(
zq(@LDg0c}Hf*cXN9l<*h<cwh2JtJ>~``a6YToL3Jhny#Zmo08JMCFU%l?YyqAb$i!
z#V=r$78ZCdg4YEKT7IDjp5Ibz>J4$;6n)DoEn*#%0mZ~D9zh9#l2%Nq2)E)iTX@$B
zE-giG+%`@2nW>yO?g+|9V2dCl0=qaasluZ;1b7Ng0ncs4Mp%(WY{VCVU$R;R0fAry
zp$J~YP{U%r$UfjfBZyel*#dnPK`eqUQFM(W9zlXjC5r4(BqK;g(4Kz=M^GVxiX8A=
zwubv`??q54f(8+M62bcsRF0r}1Rq84K?F0Co~k_M2wLuSRf(YZc2D=c`iE@4jWgS2
zH?`Iuo*$B)8WGeKvvvd@3)G5$MU^+{)b>fw2e(z72<k@gdpB<=>0#Y^5!7eLF1wl9
z-d2ok7(ufLnn%zmg2oYi8o@6uJWV2KDzygPRwd+!1h&v3g3lsoE5~BvEhAtz+K9Fi
zZ7n+WwqhsQ=TVp3?INJE1D{9GF@j4GT#leq1f3(85Wz%_SOi@o7|#(~YVQ_7ch3Hw
zu3?hxb;{8rf-fTYGJ>xn7$_#gzK)=e#oq|@jG&k0d>cV;i%T_f^cC(W+F$fLt8_rb
z+|-2)GJP-RAkiNp7%VWviX6%X|E-N-!y~w!#W6zskyh!b2u2H!v7E62<09tX6s+}Q
z1V4%MYb6JF5}-3Ff}c4x-`loEFqvZ>!O{qpMKC3TsSzx++L;!?9E+z%FvH@R0<$8R
zZ8^V2aHo*j@?6WACoo@hfhga|xyUMA9Kn+RSF}8W-y$gT+-!kqg%tfEx>9tN=xVMC
z0XD_3H4&_p?4J>A6rj0I;I9bQTh0c76SqBo3v9Cd%@J%7KK8RYw%a1u&YM!gu_J=h
zGITp5*cHL<2=+v9)T*^t;GpQf2=)scuuA`l;Oh(jJBvdR92WnGRr)X6&*9{;n2w2g
zJc1JfC#{%MT$VS?{xF>p^K1m?1kQ_I5dBY-F&E7{t=Z<42u>bw-i_d11Xm-t#tUtY
z>+p8_^$2coVefMkEEL+)+<B9y)7*JW^tR|7UKD>Sn)i7__{qWN?6O4hAcBVxteRqf
z#F!%9-}-qTOP0=)2%ZW@M>(GH?kb!qY6df9j^bnwC*f2sl{Jd0O&t8D>7^)|mgiQ*
z$PvZBS<bX5E}yWai}HE5oKXZbWfYB~SQNRU++rGeqIfxqf>9KTB5xG=qR1abfhc<4
z54;k^t5N)MTYd4fv(-#RIC@*X7RBpPII0>`&e{LT=ep@|GBH~?iZ`NoD~h^@-PexW
z>AV@moWt(Bw^iOdsz?-N?kE<~DIP_MC>liZNfafcC>2F0if|Nb#yQ`PA|ncW6irs!
z--(((IeS;Mv}l<q$_kVdEicL#TNH&qbQ9RZi(jcZqHs#7D++fM9^rtf*Q(`<!f$c&
zis?b&Y1Pbjv?%l_Dn;>r)O>X^-}V);BBN0lQ7FmAqDTqEMH5y`QebNBEENPQioR!=
zY`?N_oha_FwK4la6jj8j8b!4zJ`}DgT3z%bQAXC_bVv`$A4gHk@@q%Umz2?DgLR{*
zCoR{HqT>Pki$gSwq7kR~s;g5Jjb(U0rAE=Gpp!A5<jiQw_0YuKF^Xm{+T@8x@tJU2
z(UzjEL|cpUaBZS!v%nm&cH*=b?O>ID&K1bFp2@uM<!GH{iusbYCv835qUavQO9s*m
z^oZh%D6U0uJ&G@*_$rF+QS6BFLo<96#qT`jD0)WGD~d5ujE!Q{m!5B<_#ukHT%|mP
zDEf*?e}F(g(f(0<XZg=Yx(8bPeH4R)X|l?YD0X`_rjbz$6&@x!Ty#VfOe|$Eb(HYv
zC|+d8MKL~#`B5y0;>Rd{lF}JbOo(El@Kn)BQT!tCa}<*W*uslur%0A9)0t-RbgOh`
z6tkk3E&iM+<_i2O%J_K}usRbPTo}b7F@F<XEV?|3B?3!D8M#bgbj9*7YORp$N~?5L
z6sv`QondFdnkd#r@plxP*iKvjpHZxjVguJ(6n}{mzoY1n%da*{mcT4i{X2?9o1@qk
z#mGBqOB6lssI8)e7h!~*QS6H1OcZB%&?xpqaV(1CQS6OkAE&#p`X`G09N|0a#~ErH
z<7cP?Q7r4^S=dz_lneh*lrI@nOos)IMDee{QPH%!X3@KM&59?YxY$*lWS8!!r8Cs2
zD5$4Jb9L~Xi{d;3qPP_02jK4PuX!#+Q6Z~`kGlWIQ`qLJyTf%kiYrlE<==an`(jx=
zdRGnI?y8X4)A%*d;S7Dy7q%NwWHPX^vg;<7*%!83QQVH=P84^!W}<i=McRZ6`uC#f
zm$U4BPTA2i4@4h|J`$z*IEp70KNZMl*!evIAAw)^VUR6kHju?YR>S<gF;g~yb_+ap
zcDu40n7Z3VNH@%%yT5IK-_FB84g)z2<T6mez-tC_8z_?I&L^5jl-ZXJ<h8igUG<8A
zSJ{X-%+58u-!AbGUN=zCKv4t53=}d@*uYy>tv3w3X@HTf&b!&*r6nG!nGDQZVSCX?
zaRVhKzJ!5p2i*fpxf#!xQc|(&NcTGi-ZfB~N6B!PH_)VrlTgM$S#io4xc@vjHtMBm
zlhO=PyC{Pl2Al?5l68v)L_G$)0zOej`VF+bs|ZX%10l-~8(<O5h=HhqnsIy_hhab&
zn65BGA!Z<Mz^&j>NEk>O_}joH11SR)3=B3f#NZy1c+bE<1MQo7uHSN3Vmk&tHt@cI
zn>%flS#(!@U|`*RH&YdXss^eFd}#UA1wJxRLx2?-T+2XhHfx}RfjS0`b#u03-~Mvf
zCGU0cX_EQ^4GerH@QHzj1{w)B6=hgsflo!77`U~^L6fPOf#z0B3j<dc+g|uB4YU%!
zwN=_ipsiuPd6_ZY=Ga#jcYJP@_A=1XKxCt%lQ^9XbTQD?D*cjEZ*g}{cUDIa$$r6c
z>+WT1UrF|B(QmBCo}Bt6_80y6R?Oa_eGK%qV)_~AFZ`Y53@~u|rg>_2@&&&)a6Dgd
zkbxfzyd85hZO`r=%2P1-Of+U17;a#M0d7?{mA}!wW*=#wMZS!Q21ZGCv?%>C2F41H
z6CE%5qgDEofeFHMIK|iOlMMXKD{G@Z*}yAj9F7(q@-GIah}kMv2D3ckG&$~c16%GY
zW@j0gZD6f|KMnk9V2**M29}xE2<91BXkZb~E5B>LfdvMh-BskXcU8VO9qqemgvGot
z@2U4LILJ#3ob-4J%MJWyV6_2;G0|LMV5MYN@nSz~2GeK7-wpg>U=7#s1;>j<sC3ww
zb-a!kuwDISV7-A2lHJI2+^(2d#B_7J+RPJ?n@<sitp>Ikcxd2}f$au%7&yhw8|dE9
zxl?qHfn5f6^N0<NDjSV7yME<B+Fk?uq;$W5!v>D9H3R<`ILK3LWN^clLk2SSbF&d<
zzdeyg|6c<q43Lj<_N6WZ*x+#kEBdFg3WHBd0O5>*v%DC&_<4ODvYj(<nG4>)dC6Yj
z&7nz_|Aa4!UJ_;G$Vs-V2Cf;nAx^s{S=jh>tCY3qP;X23?uy<KWoOv2d&2h(FzkWl
zlOG#+!dXzL$oDS{wLLZPoTUn%Z?HWxOy%27shP#ep^!y@PF8_z3fTo-vivlGbWtcA
zd?|y$Ijz!M3b}>zh`ubE*DB4Y@QTF?Iyu>;{0ar6Z{*h$UKcJXT1d38=o_Mpc~jvn
zi*xfWFbc&K;?L~G6-p|UQYfL!Z=C7WyPWB5g?AKe3K<ITDwI~{!Yix5<;?|IMw!ax
zN-d{QUV#ghtCVY=j$N`&iJ|Whc;fN81l}9wrs-AiDYR2)ui#e*C=6a=Z=w)X2q}E1
z%x_@B3YtP?g%1?|&f%VY&8;g$6ru`-LM4TNJ7-Y}nfNZYgRb}ZuYkpI{wrW{QXr*J
z!E!1pRJo^ECHGGEp8wqME8Oawh5UX)cNGO5g@aH{q0kgtRT&Wdl=(gQ=D}&z6+Tj^
zp}?0rFnyv>Q{iLD)>5c%`LzY=DAcu_dI~qE+E}H5<vgpH-cY!a<uq3KRQPelbVfE+
zXr^##ko#!Z(OjX0!e<IC6}D`#?d)Q-Qm8k_-eRlKT4Ce~+bEBx4NLE-wu;Y{cv@!7
zpmyMDQ5eAh#g|c{lR|HWJ_?-`x+r|9@RdSW{_EMz*>S$DyFxdGne%MrD>(U2PY;DJ
zILL=>FG@SraOC>l_O(J!1p?DI3hP^Y2)&f~zwfle&TkdIe_#S10qCo+Y@cngXg|^Z
z3f~C~P#CDtBbVcQg&%m(F}6XXOX@htk2l(=C*SlAk>H^U<NJ7qi4GTKv!fLDRdh^N
z_(fr~!Wf0I3gZ+eC`?pnv^;IR!cUyyu#s49`%$6l^}zVuPBI;)NfPrjdwY)`V=8_=
z(72ql??~Ge1^#elngV&MLYwYxLfdZc0q;6yD$G()F~nk+t?(-^jTqjIVUEIF-b)p>
zDdc&{J5S*+4(Wu9`3egZ7Ah=KSgWw{uxGKt5{2iLT+0=f^3)i4Per>qz9_8RVZBg&
zcfXS!mi{I&D->1=tP-WaTHtrlKNQwje$Sk)SW^E}p>a}Q$Mv7o2^}uj)+=n_3MuB;
zDEhake$BB-U^7>dzzxk9GS;?TVTZzNF}xnbPK8|xM-`4K>{i&La6sW7g~K(x$L^`U
z3J>n7eG2;p3fxyT=^W(HDIDSTsNlG-4l8Ur;{No$dhfp4yTbVTzWT6)HtxP!bYC6k
zwVcQKpTb3j6I?k8wQD))oD!dKTHp+CAOhz^&x>9VWy~*k(k>}n=G`x5wsuAFAseK}
zfEcbRT<75MN{`_NFFJ*LQtOsz-*-IQdmF5BTj7p4cda%j-buSJ{6O@f!Xt&p!cVQ3
zCj!gD&S#dhb&EZ742y1<r;tTDb9JJdoHd4QlFcqk=cO3ZEN+n7l|#7td>c8ZaIP3~
z$B@U0c_oIIEzTQ5K4HH3olP;l8bf|@Uihn<nSQ~T`L^GZF>phzLNRkYl)}Pqh`uSx
zqPGN!#86bAnB^B2C=tUy+iVPDDi!0OWM*qje5EY+oGBfHEryI3%EVAMhOPHijV~SL
zVtg#o!Bjp5$2uore@NM5h{U*2t<4dGGlrSD-L4qiF?eG5YoOjbX$+Wb?m*7ujhU|r
z_Ql}m8Lf2%L<zwdLNU}H?dJdP!!c-<ugAd0r5Rvu0T+WIM_F(-o!NK{i5MQo@Fa$0
z45=78#?XnYVy?YH3>{+Tzit&{crS)ZF}xo`{TLcBtXej18C03=bI?ZEs>Dz;X6|uR
zRkGDYKNPJl`jKc2(HHv^eH=44_^KsZTeOa7UD0}?cG<1ylNg!}NpBcKBRK^3S!&FQ
zhLeYD8N;X2W)sn-qRm8`i?$H`Oq3Pb)mFl-McatB6>TTlUi3vgPyF*3E>>_Kj;D2w
zp-T+oWB4(Kt}%3rp>GWRV(1=24`x4beiOqN0$+*J`BI?sMd#NsQ0a`dg?h%&D~4Jz
z{o5FN$IwS&%H<F43VRq(UH3e=<>(*7cQK5JVPp&gVi*|1&=`irFgfU9JKx7Jh?7;+
z_<_qT?4fz_z8W0Evtq^&@!4AT2Wrj|gAESn^3J92%&C7fOdl1)=orRuDpRh)gR+c`
zVO$J6;>wVjXcl>(2tUOzA%>GNoQh#$43lEm7sLJ-_!s`qG0cx)0eiyh_o@At7^cK9
zRf=YCxyCR}n32<C82gDL%;L>o%(*fADlkVh+oiHBEt4%oWtt~uo=au<uI+_foH4B7
zA!1k@!;%=5#;_uWl@haz3sQi!mJ57-s?3X)S6Tk=F|4+@ZuatwWOl7Me{+6g_%nue
zlKqRzOklkgKkK5|v5h?U!)4gX%`t3|qMf2!W7rnM_849qdWSIM`HSoGQgK%dyJOfR
z!Fzdm)-KB;Dq~*gff!C$$NDFRgE1V6;jlPIMURO7E6Td8cubgZoa5j&o$v#5Y){8<
zCWhNF+==0A4ClC3W0-Z;c|L}(#yT&=@E>R76)%~o&~ZgwKg4k<hRYImg)4cY<K!{L
zDp$q1CVE};hUiVvTf8AeoD91wE#HsfK@279IPP(&6f)lq@M?R<LoUlT>5pP~W2j^2
zSKhWoT?}~2Wf?=>IP%5uQ5W0u7_!8XHI7ViTq>?_`plj=ZvHQo@Y8yGwm1++jyTBK
z`C-Ka^->&Zaiqs_{;84su|cQ$Gb32Yn=@|Slyb+BD~=v5%x}p@{ix@O<K;MVR|#^^
znE1uzD{;IUN0m7EU~>LA3dFg4E%=K0*W!3Rj$&~XkK>2)u7Ytiec&k)M<ISZ(#R+*
zN_ZoVH-+C4E&5#=O{Su8j9lQ@R@GS|j*@Xi;!yWJrDqxSRyj(=@pc^V#PP0F3B*x4
zjxuq$tv1UFWQdlFqr8C4DlPO~nqAl->a=`U9FOKJ9@-<0SJWr!w_-+pmlm`*#8Vd5
zM0LwQ{CC>e`yTTwWE_-eOf()xLLeDOMF9>}Dvk=m{0NTO_k=5nzAsu?^aD`_<cc|}
z#!)Sf4>>_^X}^@zs>ktJNiCzK$sff*tsxGf7Hh?ECxN>O)QO`mXE}}wany^WejJPA
zSQ1BrI6mPV#W6UJhH*5CqiY=9;%FSlr*X86qg@<LIDKq0j+Sw3nPY1fM~gU))^j)K
z6rXZw_guy1+P?hTIPjybl{opsdTY+?V|(UPE{3(?iT|d5QrFo&jt+5jiX*wr_IVsk
z9pm`mzH3}gGmK4Dyz63>&T^D4aj-!)+np;gjx+si1LF9CwH~NmaeT}38m7LC<EuEn
zj$`u&o^M2Z#?kMAVzzN_FLm8icW<u$IQqsx=JqTvoPLt+&$AQrJIRs<avA($`#z3w
z4;0fNft7hOhQz_&(~e~}j-hc3i(|MrWp0<D&on}^BjXqqH+RGuElL;@$KH!&3FG7V
zF^=ymy5{og<J`@#@g1g<1t!EXQGn*8IDWQx6`ul#n?Jl~ni9v<IHtuhU7R_hGpy2?
zam=!Kb{xM7^TnpD$e-v_=fyE!%ms1qU8}3!b<tcH$0AnjZ@%i3x-^bu977I%9Lw1U
zjtP(WuZ?e)SP{p{I974`LJnqE$MJg{YvbmtG5(07)&+a+47G;m)xb-K&n_|hr<Cqq
zXuc8SuQ<3x-ugH;#IZ4sgB=_t`Z@m=cyK)1rZ|{odfwaI)o^PZJLA~JDqI_lGPaBE
z5M@@~ExS98J#ie1<2c7Qj(uz=jzg?+*tVZ*CXRpN=Kg`zb7X9~V&_x3eAbe1IF2K6
z{L6J4N0u!%{%ylIK6DyuJ6_Z=Y>kb-k!B=YI1$IGI8MiLGLFgLnT^mtBYZZFb8+)o
z@@$i$Y>;|ny?KcL;<y+`odoJ8aEWIf$J}e$%{Z>ap-*&Q=W21fuf`GIYG=B}dAw%A
zjX27kFeXg2)lAELD~{V-&vD$1<2i5L3A`Ou_u}SH>mPD>PucIs@j!sg-@`wO<8d5M
z;&>XzGYMm4rJ4p4fdP{jIWs4aC4oc&$%NTL)&vSAP&k2X31m;;r3BIvxVJ%Pe0l;%
z;MIhA!_Of~$Rm(bG?!>@(L%k_UKU_X-URYl{EEPxKW+Ifr$7R)3BN8{(DIi&P;Vsg
zW&-@By(fXU5-5^DhE-aW=WcPa1d0on5G`r>r4ry%1MC3PI|;m-K<Na^NNIV|vZCdz
z_<uK;4;R=HU`2x6@*M)s1Y81c%db!<i#GwEWc{L%1OirRFo944VaaNuy6DRsnO<ox
zdKDGNNI(h15{Pr~<#~q}no6KT0v{$&J%NfG#^bI-F8#d({@CW`sa29%?~Ag*$^suG
zP(`4s<yT8!=L5xnkJxy7{o@22<=kEJXVgf5S~CHjIHB)Qy;cI}$LO^axb{G$Jyi7)
zsGq=w1U4qnAc0R3SjW2iZ4DD>l)$P4RwvLnfdXGRIwbIU0-q+p&x)HQkh{CqRJ56B
z^8{K5e3n2PftI4JL>b&Vfw65gLR-seC(vHBS2d$~HG@a#m_VllI=?Uz_?G<_?kdXa
z-4f`YK#v5z5a(;rFGatyVvas>d?VabG*esixV;nTlfWEt`X<m%;Ku~|C-7YY!x9*t
zzyL9S5FIG`y(p^>N}$+7MHnp35X&FR>hC-0GmS`KjOC9M7$rJd29N<`B|FZF8J|Ga
zY6ktE5||+7!~}jxU`hg$B>S@!IXQtEubW4iYB{qKn3lkF$<7d+nZV<{4#q@xd#JOm
z$X^rSfY4!@o4`Er=O?frfrSYy;u5kV7bmbZfn^CSk;HgDeaU8-mRm7wd_@8)B}<c$
z4EsF+{h`XW$@OOf)IUVmB(PTCMbVt>9v030!uD4J>k}aGqkzs+ZGR`QiC1v~R}$Eq
zz?KA#C2%}}tqE*PV1EJ!64;)=js$imu!rkBfx+XAt8Uf)q59~d+QmD@PPMk2G4P?<
zo4~#V?D>tU57myfYRyBn^?>7_1P&%}gqJ`99mX3+9;!nL98Tc=Lsc-JJ4aEiz$0aU
zq>l0)Xw#ZLQWYPmk>iYSAE^@woJ!y{=i-q%$)n#4tbU|;=rfEQ?>H;^$9L{?yr6i9
zN2*tK=Y<6ROW@8Ub&>afrj(PBkFI%ohdksxUdL6g5WWDNC*pNnOQ2O3$MpnmBw+k*
zt3TaNW$7)6xh*>L7yCVSm3PP_Y9;X?frkl{NTOsCj}qn&U_NZ`e9C!G;0Z@{iM?lM
z8xw(F;66*>IqwFQJeiWnoJ5u+vL=x~i2_WI75!{UWKZIyB);+L9<IYA(vl!Br6&Q4
zb0m?|;#}-T%*%j0;=C-HS2UmKE20c|HHjkU9E8`Bh|X~{y_Ll4Nfb<?kmbCQ#K>v3
z!lEx?-b^Cf6$iOU5=E0JCXvOh_!mX&e5oYfrkRA1G|&1S9yAHB@ViNr7APai(y~dE
zv$%W`HsOpU>;jG?Tvn-5fPWD&xs#x>x-SWT5_%GmBmzkUlhBeFyx9>-;<uWPu&D2`
zA~XF^Nv(NeBk<*J&C0tf9kG9$MX&RXp_2F@Y3>~tV<X*caZy4-ASs$kqJlt0&dXH?
zOW%`hCDHejs4PJLUQTC~B&sG+jW2&sn!9OzltlF;s5O%2PoenRp3di8^r<z)sdClK
z)=r{M5*?EGJc+tV^EF2C!$#92>LpR1BU8)MK(uiZp9nM*Z6uoKsD}ZcCUN6m6Pk!g
zZk9A(64yM57D@9b;-4kaDv8#@Et7D+VgB&DO%iRBXqQBL@waDn^C3t26;HX3H}x<(
zc%-{y5}mjblIWg2qjM5nk{FQ0z$CgR(JhJIN%LnsOx=_CGKsH}=poJ*qIpkeVbRxI
z$&&q6v}Y2t_L#ress32?O5%q-ZbG-mie?|4dlLO5tiR~U$BL2P2@{z8K8Zm|4C4jz
zrR|3#I)CLHb<j1GQ=h~TcI;y>9i~P;gMQK4S%ypG2vKgj#Xk;5B{4dQF-eR~VtNuY
zk{Fl7_#}Q#Vsa8ca@>-bl*InWYSCjgA&H4e5SXfb>ttFoz;o-d%JoG3lEjoGrY13s
zi}s1C^h7mzqFj00y`HG}G+Uk%1|z96lbD^vuRQA{m}PoC-8m<Txzg;sBx(-uuyG!)
z=p_%U%uk|hW9O-&YEcr4li2VfHhzdDNi5~cuZYzZu`G$@NzAN(SrzbG5-XB8m%{lJ
zRx%)oHYsz{kJU;1&f8H6rBe7Ki8V>=Nn$Tg?TK2O#JVKn4IQH^1^-Oqoup3qi<cOW
z#buDhmL#?&@!C}NcM|)asLjHgc%Ub$>IQZ7iK3bIRBcOQ2gk66S$%sFC7zl^JCoRz
z#BTBV4*^S!r>5@XcqWma0@$Uc>Oc}_+3h6$N#bA<hmts)M3t2OFNbJq#>lswN0KP-
zHpp)mcCm${>|4ThO!RmXCj?H4o)SGR%9t~}Cp>o$&L?ppiCanBPU62L_}uPQUQqI>
z$VGumqL-7nBJgZ<7M5O1;$}AYbu03Qz)jKjR;Kwn8Fz%ACvi84dr91v>|;?@e~`pO
ziysNZ4MqQn@Y5uo35>{W_9Rp4fBnfUkR^qz0@*A-dkQaEoR&i8tmd8uIa0`(!iek6
zx=&TE6q@z4y^_MKDNOBY%bh}=6kbkY-$`3uacrmU`BLT<=zKHgqz(@LA(}shH&S>r
zg#szOmcr{Pj9F>^AF9M$M?v92qJ>329pz@}TPdtx<t~!K=tZ{AKGmOZaTOJ2wwOS1
z(Gn^2o?@f<b_(yLP$Pw!DZHCP=@c^WaaB*DObTUF=Fgm}rch3xata@$P+r(3nvsG%
z1#VF6NI^?MPr;djD+M<jeC+h5;Nue7?ee7X8{eh3+kCIBKZQUF!4!H~4mV&7Nmy8v
zF<qXjND9#uDyI0sFATP`#GT*~XM3WHJSv5lIB|*RUXHB7J||O1rO;xjyFv=w*YPM{
z+P&LFt&~DlITri*zEpX<+}uL>glH9>=`u50P0on$VG4dJVw)eyXq3yB<>M4;rO=%1
zr%*eEIw^dTLPM!imy<5ge0mmEXR4n<195oP%r+8kl0wrI8mI6n7r-{tk1p^q;6-Pc
zZ6;wnL5|F4!YyT#O6+#Av{eeN#U#HzJxkjZ+NIDwg$^l9;o?c*^AtL!FeHVcDRkoU
zOQC-X-=)wcg{~>|WK$fL6uPJIMG9Z0FzBg@<?!@i-KT2xQ?>7@`ie0*Jnw&#<rX|&
z3x6X@lfQramJ23@2TxVM6si>V^bzgLxgKjUJ35Ew+*37ijFJDDqBDT)OWg)zjDab9
z&t*K;NRBZhe@G!R&KS(j<n$EH<zeH)QW(xP$u%rh7&9V;ktvMg)a3M3%;{l&o{lx<
z<?xJ6VO$D7r!YB%@f?sGo}W^fAWi+40t0yH^XrX?T*lATq!cdZ@G#3nU?bWy#q<l8
z@iXPg<(Zbk^c0q+uq=fcDa=fPF$+@se91K{g(lC`Z0R=p`D+SuQka_p2a1EnL6|2z
zUzBF|XKJBTXFnIEusDS!DGYw5raV)Fa(PORGnVrbNMT0`J5yM}n|}%$QrO6KlGC#)
zh2MGGXHTA~)hTRwrf9B7VQmWQQur%{v*OVFljASEK81YGRjKD{|9XSUqQ6tvl)`3K
z=k@hm{gcC!b*w>?x;2GuDQxFIG&wv~o+~;nC4jmsh21F}N#WlV_VC0RlfuCi(sFqA
zrLaGR1H#`tS9C@_S4?xCt2c9a4si-{dJeOD&sFW#ro-&f6pp2EDuvT298cjy3eTRa
zlWa#ix$n6;^IXySajbEMCzV3pOfk+iE3ySDm&*LJwhLUn70iDV|Ks$f_{Tpk^TMfs
zW)*NHg{vu)tbkG#a4m)FDP*aDtQBx0g`2#xUh_QW9e9^((hk?H6mF+*Cxt?pJ(ae(
z?xk>7cyVSAo%=k~=?2pSfrtOc)OP?&QG8#Md54^HMl$=-?gJjMusa|-dGjow1VJSl
zND>u9MNvUT5hREpIVmVADoPR+L_so=lOQURBnbMQx%~F4e^uA1)3<M@+qZjqdS++4
z;I<IHP)gyr8ooR1S54ntwm+@;pO69}H)FvNYSnTzi-hp-*STdvC>ui25Z-Lzr?8ml
z6b~Uo2qh3wB7~AcN(q)ur}9nLav_utp;8EyL#Pl!y#h+{1K!Uk=2aA(yaEafsS?7}
zke8&62&)QK3!%D@8iGu%DWsNQ?GVN<b=z4tomx*weZdBTrS|$7h0r(zCxlc8(`xvd
zg!qsWxgj(Sx!<2@md@K;NQ)3!3h|`nnIU8e&rVBnf6DcS;0qxXf*L}e$m<^PvN5ef
zXf4q;A#@0#V+i@_Ty2H43!%Lbe_FnKVjjB?kf;(uP>A}d+pkV(oz5ZLFT6`y!dG^+
z5Oj&QQ(U_l!efG_pcR5GBrF&aq-HdPIuE-;$q)}Ak(MVz$bQakOxKY6{JK{Ny+i26
zP2EXv_Yg`fbDQ))2oH*W55b;-CH-zu4+-xRLf;TR^tt8y@Kr8HKU_fJ9_GKn!AC>*
zvTXk2A@mEOe+UCu@^H@}!GVH|UZ3C_9KvG~tx?F&4aWMFnNLW@Ck2OuFjUAR1(Y!b
zl&r$R;USC&;i(WthA_qTB8&=QbO<kmFe!vFA&jM;gfM~bS1xm$;M0O*re-`NWb2YF
ze(QBZzwBp2crJwJLzpOX>gV0|JU%sp)+V2Op)mh%h~&i(UJ7Ay2rq~5N(irpz`q>o
zDG$W?IGc~f|9|wg5MB>qP6%^Dc!Ta2!rLLtkiy>-d`s}psQba#=^-pW+3Zx0oLa3g
zGlW^`HoPO`^;Gt3A%8rdU1m+ryCKXAxgR1vf2`SioSOxd1tGj2!hGS3x?h(KVG+yZ
z><eT?_GNXro5R0P;_r;6Khga5b1jyIusnpdA$%0ViV#-Ph6S=eq|wS`t`htpgw>pY
z8$FZ|8Q!f?bd9K`=6k68aR}=|XriL2icdIXAsi0jmk@@%oB3G?--NI&g!LhO9>NzK
zvXJ|8+RY(s2;r*`z7Am{>n)%ZZ5EiJ7bh~cp_W11B$||L34wg8M7I@CnDlK3-_d!>
zW$p{%`w+H=@I#3IT7n&-!_ug8ufQKe_=yvoJ}LU#R4~`Bkh}LI*%QK%0t(6A5Uv$a
z?);OJbti|>{i1vzgoE^-?OsX_iDX7+H}wc-#5C`@5Pl8eXb2bH_Abiw9t+`k2q!`~
zNz0t{o(iFu>RnUBTdtr&ayo=FA{jfwdsav?*L$9Mxe}`Uh#7th;bI8aL-?EPe+Yks
za3zGRT>nG3#FamU%UqF``L|ciW!U?XzwU9*;-20{1(m_e{G%^=ZXC_J7DAWbJpQV=
zkG0CV5yDMgGE@{%aVvz|A^aP{e_T}xD*uFVH-uZf0Vt^438C%Q?8uEaFZ|V>k^(AL
z7Rfx=+snJuf+|{{3wF>0g@l~jo>f$3k5EoUc@+yv<ri1cYDl20ihrvFGgLrG2|-Fq
zswgGAbXrnI#r==BX3~QN6=vkmW~;Ty=kKHM_ViX#QCUSD6?IiqQSngGys9dy(Iz#5
zMaJY+S5ZSnEs@t`kH+LtfrLn2TL}5cf=WFV^;O)bB5P^zje<%86`wkO5{8B<CN2%G
zEU0{2P-&#1v5JKc_)Zp7h|N?qSMi35X)0Q%XsO~c6_2a%sK`{&MnyggRFSQM&wBDy
z<fzD1;Z@;dnF~CXmblNJh<tiQ<UI?KhZU_vzqRU~axi0C741}*Dz;3{Yp=quBB(-9
z(Lu$Xg38?9*&S6l6SJ!qQYQ4y4hU~mNa>`avx<-kmDW>1`Ly4QcTqt#Do>7NPudsI
zROl+^?+X}`i`mPU&5RaOO6?B}Dx_E{Y!%Dj%nPe{;?2B>@OQ^~q7sd%h^t7bNUG>f
zOR@xM;RAvx!LEYc1ljoRDkc|FNEjYe(IYMIsiK$gwbugoQu|1BfM8!0536`Y#iJ7K
zFG#h1(u{lh<Rk-C3=%T<|LUmj2iZPbnl(YilPZR&7^>pIgW020j8-vB#c+v^Q1O(I
zVhghOe;1&_NQwS^JcE3U@Mlzv6++246;G%6k^Zg6r+MG4xzBQNRXnHSdG=T3<5#?(
zViL#Q@xI8jj;`JXg_J>G<rd8GzocUOuffj?DTPmGy`th(6;oBbMhBki>yz|Okt~a|
z{d=oqzb^cAwm;a_`)})f7WJlzw>Wm3P%1c`uf6V>&N=u3&vh|F#Y`0k3n{Zz{9Q;P
zc}K-86%|h8kQ3*qn5*JlT1LgiiQe}_nS{zjDiGgS-Fx{@I4Qo&S*T(WYhjnm`If3!
zMmrbFSt8Lr@tm4pWi1!}k%|>67-d)~WR>7*!4CvK6kMZXtq^L?UYhl>ioZJLu2VtI
zQ2FPqPubeS$_sY`pQ%{SiBnkVe>O<`QpE-pADdWb;wu$j)3!P$>DZ`Z6XhD#Y1qus
z=dfxRp<yd05tkhe6*O#9@hw*dc3H)DD!x~7Sj8_K0xlp4-!2uqRqRmlgNmIhepGR3
zjrS)N=W7K=X66L9_;wi?FMboC@Mo3p-0~JO=b(zcD)y-`y5t?84_^zsSTcJ*O>sTI
z@Y}e&FKV}C-m1U1Kg0!ap^xN<ilZt{t2o0MU06BBnXclbiartlaSq&pAk~VM&TQ#q
zk64*?N(J%mnXCbYm9r{-RdMcp-^)j`&e1qkav$!JcU~kH1ex^4hu+^+{GsBuihor6
z$u4k-xSM^Q=H)v1vuoHZDlV&dwy-iB`Fc0sRTbB`a(4Im&v^#c$)&>4IoW@!xS`@E
z*MG^yp}Bd)&3klr)*TghRTS5dq2XT@|EVafp@@dsH?j(7D5#;3#+Medur(|1n=CFJ
za|<gKD*N7UkzG^+v6zOtw{n@}d>gn@A{QD;Xn3J8%4#U7p_GQw8p>#{GZd(tO@*Aw
zKI(s2SYeq*Cg=5dCcB)J|57(!MGciSw9$~Sp|XZ58X9W2PeWA=)z}^lbu?7h@Y3hL
ztA&-CLTU*9Qdn8^xv!RnUh4y;izsz9)YCBVYM_CJ`a=5EY9A`1G%KR~JU?h@dA*7#
zjWjgYkf|X{LlX^6H9Y-SR!a>ND(5uQ&|E_c4cal^%t&Bd5oPSHteHiWbww19C{VM)
zQD3%(91T7Vc_Pf!F!NTHmlz3r_=~Sh%J<GOUn>p7)`HB=q8Kgqi@&Xgb{e{B=%%5)
z2EPVNgRNovGua(91T`ocI%)`r<fkG^i_z_w)Ja2U4fl(1)a@Kf7`BXT-$es4Byvhr
zwp_R_Xr$$)s8Jy-lBkB5hKPpi+dM}{wkO6lP^bG3UPlxX8j|U}BY*HRV@jguizwYS
zJfNYkhKDsgsG$cfPm7IiPqqJQ=2Ek#l(YF8UvCW$Nm3ulOPv*wAn_3mk80?zVSvc{
zX_)<1w$moB|LrU`V4#MV=XnN;4%;?Jq9=EI*!{;eJT6(D5PVW_h~Q8`);>%FjYjg6
zhLIXxq?2eErD3#&=QQ{JVhp|F&8+bpI1OVpjFafo8lDl7Gs4GI29jqv$|HOeHJtl5
zd*0WcGuJ&NbDzv(A<xT*zaRxp5~KrAK3T(Zj(FGXmo>bi;Z+UguH{bAFja_NCit2t
zQ}cEDX94%;7;k8pCc-xb-_h`vkm-VN3(gRnDab5yPZXL(qiL8Ul0|}ZHN2}~URq~?
zhWFBZzQ%V#+#h<pFOr36IfaYUe2IpoX}*kezo<g}6`YbqGFNI?rC~MaU{U2m4Qn)f
zKnFPOd3vRXNa0#Z`bfhQ(>>I`C;Wt^(baXd*YTN#^%^d5DbVn_hA%Xn))1ZJ|5C#S
z4L@kuso^UPUvq`m@C{qrDu1JfgOU6#8kQ8#*~F`WhWC&98JKkct{e)tY4}#d_Z)W)
zTrx=I?=;k0;-6Bl?d3bU?TRXOs|R;zxU$*9Br5z!$I!4(!+tJnyg+E!t>I@jBjIb>
zJa3N(_j1Acy*(v`+vl|_oHr=$JD`E<@DUA1*&YptG#utkDXi4})%VF7@5Zv3zi95a
z^+=9sIIh7ds+`i0tL2~l%SSvR{3M%t%Z&~%s_?RMM#EV;m4;t6{4RDlPai0%u#vxM
zxS)aUr*S?ks$A4?W_Zr}JGpB;fj>l(@;|vk2K@)_<X&d)xGL&=R*S0|u4#ad5<0GH
z_?siBqmYgp8g6oJr%5&3(r{bDKN{|6*i}>+u)|CI>1Y3?qRLlW19!P-7gJgmQ;1!P
zDJ@R;DJ-Ca_-d2jyV=3QI*RHjrh_^~bUai{;VVYPb$l~6=hw5I3?0PdJG`-;+0U>L
z9i?=X*HJ-7X&rADQ_AZ2sF+el2NhUa<{2+}ISOwEGdcz<>ZqinijJyM<4?tu--{`g
zbx`w_mHv$4ZfhGASE^A$(lJ<5M=c#qbu`maTZj3br;d)gI&K~HQ?s6q`a15@(MU%F
z9i56R>}f-`xw!IBhv4Yq3JW1&--(TNG?B*hZ6bD|xsDb(a&>rh3_qFGQb(qaEFB&l
zdAt2jR}9u%=g*etsbjf0(*D1X=2A#Q`KY6#wT?DAC~U<VI|P}F_`pw|d>w6dJX0;e
zLiX$m(r(431l}yJ_;qy9@vx3Zbad1apow(Ebp&-NIy4<RyP%^p+j%uNq@(xM-1~KO
z(Xpnu!lmZUlB^ra;7`Sss+Y1<(Rrb*pPGgaONXuFTye#eTqI!~5gk!cV=m^Ua>gD%
z^EQ|qNa#rFcu+?V9ggUvbad50g?FZ9bdwsp>v({kkfAUyYhQ3CaQ;^h6<A|W_E$$A
z9lcl`eJ>fLkc}jHZdwM_sNYu#q5h+yFi6K>9sP8$oc=ln=omX9aHvdhphyb$&a0Q9
zJf`Du9piMoe%<qgjwf|IrDLRyAvzyM=MUpB>3Hj;Z>SFb+9+>JZo3n?BXkfuW++1+
z^pcFyF<K;JMQ4m~<~`IZz${dlaw7L>4vmiSIwt6NPRH{)p4GASMD9dElI|JGm<)wv
z+k@WSj-R>uH*5Q%j+fXl18*3Ztm9?6y@ApOUeWQYj&F5*r(=qasXA8ZSgGSRD(iSp
z$9x@c=$NMC9UZfDyvZ(bn&_B8lA&}g;C*B(A6#M$yMHlvXNEHCT5h~Z=1h7>0WYs9
zvxUs%bfBvj@XpcEs<pqta?gbfWgZ=AtG@_;(Y46KTnlu(uVb-}B^<R)!G(0HMV>`E
z8uH^(E3<ySn#<}aS*l~1j^$G9u05Ur+<I9fQ&;I&%{5%ddL17~_K$RYEaXGBP{&#w
zycV!wu~z=>P}b@AL<dX$R7d630d`>&l+9<dNLbP5I=;}cS;rO~UrGnR(($#94N~CS
zP+0q?P&Vq=M71+n>|NguJ{Eom%2uv6I<`q8=P&Xzby&*ly`2^4?!5u!dmY=k`f=*%
z*rDSG9mjQ?(6Lj;k2?10*stR!9lO{z9edce63TAfy^v*J%N<-Yo6(p44YVqu?A4Jf
zp|IGYB@|lqfQ~~t4(m85M!qMEHxHEfFYt?wBb@9-GLPywCgiOW3ZqT3bBHH(oYL`!
zjz4vr)^SG1c^wyIbk1^Ca?Q~(u(h9^9e*`<t<<=ugwlPv|2G{Mb^Okypu3k9(YAk;
zP)e6n7`-I5T;YPR<1ZbTWgK(%`<Y6-#<i=YtI2YhkzKf<<EGAE=b?b%ddMvuw{`qO
zn`F41Wxwu7d;ZmNmkV`Cg>J)^(0`a(&_E#rMGX{_yoC)EVSrn{T2kp>Qi-R$#SLT_
zfPoSQ*o*K)9|wgMar8@aB9v6vcuHuEG6u>TNEzsApqzp7267DK8mM5PqJdflY8$A;
zii}`21Jw;wHc*B7C6ua$>jw9l#A4a08U{aVq0}^7uVY7;N>ax_T?0)GG&4}oKz##^
z3^X>-z(7L-_fa`NpQC(Fd0t6(m}sRY2G*BUSO_bke{#MwH_*aBrhzQOohdB^JqBnN
z4h<`!x9ltFx<|HwYb6yn$@LZkJ_Gj~=wcwx?FIY>Iv8keplT_lt$}t1+8D@ZuS>aE
z`02B7DYxbASzSqYzLOI>8VImP1Dy=83R*HKHlYq1!wKG5qRjh*WDglo4MYvZ3}^;)
z1C{~XfMI~`G{tmuRJMVO1|@82Sdt=aPm#=hv;CA)7&nmMxLnJ1q~4?fx&)g<H(+O{
zmU73jn}P0<Yn*`x3_NJyF$0eq=wYCzfrkw|A|ukvKyL#N8Mrq<eGJg-eL0}518e}x
zVWl6HQXVzX&%gi!0}b?-s@Xd(Am9EQ*jq{&#1Smu9V|$~&T_r_gS|HJq=AtJMj03)
z?lH{3a05f>fu-F+<a#y2z*7e1A9n|fqeg65+I8udJNk&D#U^9K2xFP+zW^IUeA>V>
z^kD-N=v@XT8F-eqEv-B+Iui{%CyhMVKA&zwSEuzj<6boI5?6ZzuS(x1%LI8@tTZCa
zPc<q}F)-D@YaF=N{=TIZE;zI*rv|OT_DnPICOcxHtBJP^OgB)*L|GGW8<=5Wg@Kg@
zW*T^hg%t8GGce1*Z1&E;0t0gl%#~KnGw`l~ohdJ;C*5XZX@&efaa}qUn?cLGZ(xyu
z#Re8~q_+BLWOtP)l1Xn|VqhtUqkJYCMr#w7OLcpP`&j8J1FH>eFz}Uu4-9;0;8O#i
z(Y@Du)^G${=Y7oCA<>TnDd!e?L1|?jEfe>BB51Y=tY;ymmCp@)Vc<Y%W&DdCZnnQP
zuw!~~Tj?M*8U5P8Mg#i{>}M^*J)1aK2DTVzzux`g`c?zq7}(1xQ^);1(KdEj)V>v@
z<U0f33*Rod!@v(h7E~$9Km~>$Me>t@T|#yX{w&DUJzOrPyLGXOexC#m7&s_Ng-jfx
zw_ovHFz}m!!v=maa72<$3mz3bCU{)%gn^SncCXDiC4|K;TI{y`j6}~GI49&+!SiVy
zvuyrF;dj!K-wpg>;7<dWL~_l*bpwA1zii-&kgk{ApPgQ1w6uHg_O}Rc3EmK-@TP&1
zW!zMT+amnOKueL_P3!z?;J-94V7jAFP;h14f`x@pQp7}26U9svH<4iiY5AZ(-8PKr
z;l9LP!bC}tmrAFWHla&h<xG?}(b9y+L<JKSP1H0|%S0s;l}+&c<dHH8Ph+Z>sBXH)
zGF44fGeIFwSA55Pyw|Q_x<@XQ{IS<x+e94`_nBy9qOR#)6zZF3VB+~QN<GuvFU>FG
zUbDK^2of8ziq-)N8=GiiqL~TKf~KZ>U0a*-l5_fShBi0R!gLo0YI3G?Hf5T~G7&Hl
zG?8s0$3(t~w$iFx6Fw7pCfGbL&GL)iJ^wM$+C&=>vJ3Zm^ktd<9R#&A(cZ+qGD-&%
zYRc!A?(m?A=S%Dnvv)Mz<D;jZ2`VN!nXpZSO>{PKKlM#$Cd};IE+)7`4hepDD)<3^
zNHsI4n=qJa!V-DkX?fJVR7PPc<)z9h++ascL`@`2B&D2~iMSAIwkWGGsAUy$W}&iU
zV({ev%jssKJKM>InRvj&gC?FaG2TQE6Fp5lX<~?pUM6~*=x_3C@Oa2X9}^GLL?&j8
z2#kF%*w+M+frURRHL}6|Ot2zWI-smlZg+5?3HIeNNgc$hCGX2+-S#u%<05||-CA~M
zsEJ`FMwuARAuFp4H}RCDvQr}@@B32hNE0*y%NcX84YdDEw>@mhIGVJq^0bNCz4O>k
zN+y_i*2L>3-Vo)9CSEcz*~D{nDibf5m}KI`d*zG>uu^7WY0P`CBQKkH#l)*7SUv}6
ziixSxlGmg<O4tk<mL_GEX(D`+i$4n-5#U|bbRlm`UMf>KLnN$)e3psXbSe{TOw2Jc
z*Thm2%S^m$VxEZwCf+yk9%tnq|9pD*)m+|o5gFx;*g_MFOe`_oTS5xIE~_jSoqM-$
zysxCrauX{|tQI-%3Wx5=S!rUG33A@YQGqS|fIiSQn|F>JueGB25zW%pPX$&-ow|Dp
ze!^ML2_8mf7@wI~&$YrvhK<ind_mu{khJini47*MoA{gO|0cdRam>VV6B|uzGVwF#
zrislaw#e+*VPdPyrfnv^HTmf?cR@H(R^c4^PA1FuCbpZP#B;>Qsl@5SaJ{VZgNdCc
zel+ouiCrdka|I~prau0Tzg0PR0paxIniDIh?B$f?YBt>Wi;4Xv4sgvkF>APw$AG<u
z`wr48+T<4e+tX>d?=XF1OEw9Q1dmYj$vlRmCVn608~$(h2@}eJ?28<QjGU7uPMJ7u
zf>)EXw7iKkCO*l?&;K~^L^<VGdg-~q1rxuSI4_*5F(t2^3lN8{&;D5r{BGh8cJ}A&
zKTZ5);<AY;<&;aNd!1TZPGJ>SOk6c_ja|Firb0h2!#CxW)#m~vH%#1Qe=St8+=^~-
zp|eob!fg}(NC|gL{A=Pr&en|lyCzCk&M%kMwt(ffys!oGg2EXsBt*^kvv6J<i&-dc
zp)7SMw*U*JER?oT!os^zKSN0ir^+cLh043g)|Ro{s}JqKaJ_MEc?%URw-*&z!Xy4#
z<(2m3mAw&vB@124D=)V9v%ys@RI{L1=wzX~g&G!eEaY0KX`z;dIu`0m-Vx=M+7{j_
zuiPpfWKpcHo`t3snpvoC;pvQgh6X|!3f?E!NU*VmCPHX!sx_A;Jy$lL4QnC1rJzSJ
zQ;<nnLb3%pj$R8s3mq(U6iJ>~+i#(j1*WzZBxxfg-$L88q@9rVg0uj=V!-~K@F#(Q
zm@#N!O?icb!cJ{3uXMI>zlDf}sD&<4k!nE`3xsI=%5Ix=3-lSof@y(+MSEHnJ_`F8
zY-(oY+~Z*jXUi+(G0D!h(b{q0tSe`m$FY#Iu+qXR4u^$q7M{28f`#rD9<cB@8*Jf0
z3q33hkYamU=w;y%3y)f^fA+S}$3kBV4@r~~IwWgvaLWI1T0)oZXQ97^!WEQy6<jBw
zWPU#v2U-{;9U06rf6ji)0v(2VSpw(IlNN?p7-M0qg`pOPS$N9g=N;VM(KD$(oc5QD
zr3d)=`33fLl!ejsrF8+;#a$eAXsdA?cMIb!{-vFpclWEFXVSTt`mFGY7T7k<4qBCS
z^Erufc2BbKqJ^0j-m&nKg~=9PxA2CAm!+sz*+&aorutv8+|6qH3d&Tv@qz5u=)hOA
zSr<#A&DrH?7T&b*wiL^X-r_h8@K2|aE4Z_4Tm^-5obnl>KpW1oFx$d>3kxjFu`t)d
zJgJd=tSwc%EA~A1g`YirPfT5VkpF!P3oR_MuvBywSy+6pr<L>RY^;$LEwiv(Qdd}@
zsaYvYU{kpk(T1xnd|=^-g`*Zeq+43}-okbZYw2AUHdy$|!p9cYS@_JtdJCV3e|{>y
zH@kvDd%EjS>EP#5_!lxk=xI+z^C|z*!WR`>5B%D~Mhjald?VR6S=dZ7$}HH&#ysNZ
z0zzbI4BISxYw?HMuAfuL?`d$D*mCOZu<(P0Jr?#_*lFQMvEFVe^Ct_tq)gVxxyFo_
zD=2h~pCy$g>=Vlzuy9a(X1~bqIm{sohb78|f}_bc{36{UIcDLwg-aIxvT(w}NedUm
zn5Qh9w(u(_LPq`>nbhZKpYQ!=)9WPd|InjeHiO=EUWDw(Zx$|E_}#)EBKec+YDL$E
z929yEhr?~Qg)3aiE&L-DUA6GHg&P*Gak7XHu!U3}_Hp2*1=^VnxMiVHMTHen&PwlC
zxNG4*3k7U<(V+gnQdEbE3J1NQjY2kx+9+nb_XveauC?h}Q7Ix(>QhLwuvjA73>zhE
zykg^38zpU&vhje82W@`s0cC9XY~<M}YonZv`ZgNaC~u>JjT$y;+6eyUt!Sf?jmkDI
zUht0UlUKz?RU6f9oO{n(jXQ_Z?T1!W4)^o%51PrRR#XzhgH)@<()#4pwNcwf9Vv%N
zERFwYxwN8E&qh|6_KY^Pai0y3jZ7PjY<EgFv(el}V;fCuG__s#V=uN=R5-HaoM<iB
zO)(2s-~pxbH#BWaH_Ng?og5pvw!5%r+wSUg@9M@8@!H@TP6>_E%0_D&oosZr(Z)u;
zjnfqs#YS5j?QC?g(a}bG$<BqHOZV&wir)s2bA;Igk`$Bzxp;CW(#}-l7~OB9iw)C;
zWg}!mwV~M<Rx41Uo%=pRfl3OWG%>1+(4b{1x%b+(?LO*?*@)W+3y%m!?_t6>Gwe^;
zNZLr*=xT#6KR7meEc6|_<jb$5Fj}vD-txFFQAz1$gV<e=Z$$L4(bLBBHeRsN%SLY-
zLu?GS@sN!^HXf&;Z1lD9u<gD|F^K)L@u-ddHU`-EWK~u_x>>?Etdc^`TIQ_r&ad5e
zAP1#+9>35?9L#}mvZq#39<xED0^g~4lC|{Ap_~ut*vMfvhT9lxW1J02M%Wl7#Xe<Y
zq>Z<)2dekXIomGphrhB%+ZbcxNOSjf4w|J)zrfQrp0P2(#<MnV9P{zji?!DS<83gN
z<isuCM7ng(oag9`XR{VpQpoqN@lK-swLETvU!nsK^1f(;ZyIdh<UZq=Y|A5H8{8^$
z$3BJ4wsFYDVH>a6c-_Vt8*6R6VY@fib8O5NGR?-DLV7mwzhz^(@V5nL2+kCIM{t%P
zv(LUKtlj=y8}n>@VB<p@@7b7d<D1n*dG|`41vXZs_20L#(8eN(E*9k7`Vt{a(>lv+
zEEmorM`mYODbZDes|5#LD8Ry51ylPrE%cF%k8ONs<9i$HIIK3lvhg)FZG6VbWxJ2<
z_!Mltkk4)0JsYH?+NCyp==P<J4fK`{!A+GEJ{CM)$$eV4(Z&|eH5;4gCp)~GZTEp1
za}mF>v5hug=dW5>xl_q~qQ?h$--?7~Znv?+#%|7B8$a0CDRu3#@uLksu=~kIPG$GO
zC3EqComJU=6v$TbncyB9`)usDv6n7XSz&0I8RXMRKCe8$72|}T;h+sZmn8XxF2vO=
zjB;TdwQ<bGWgAy)9Jg`8#swR{**M7>ZJgx_#;H+RIZdxP<~zgDsr<it6W*%)Dngzc
zoVU^H9Y4=BzOL-Pb8?Xt*|@|h^H&yg{bA!z(PTNiTj9$j7dr(1qJ^a>Mz7kq#<e<(
zVqx%*p*dgekYV~;@P>_>LT(BEXXCbze*`&#cW9+F|5wN_m6ZZv*FPBwhEYg(;k2Yk
z7=KrG&yjfd6#d>;T;v&H_pF9Ogi%5yCDZz)gp>}WOj@$CbHVaqR0yL^7<I#_7)GTq
zs)tb{>`tr7VfTHWs$uYLpDJN29Nd~hhH8?^DCb(uFlvXfu2%b6VfTd}3Yq1gnnzwQ
zjQU|T38N_osEX1cjQhf96h=dd@^v5z8;9KqOJ%-OMAEE^!tBk$Xc0!sFq((KqWH>?
zQbl1Zt0t!;E6l$nz|;s{iy$YA+%OP9i3q%5_`(<-#)vTT!e|vnJd8vbt;1*&Mwc)`
zVdRI=HVlO&NAlZ+QT}djhcG&Z(LM}+7^Oe(RC9ujt_Ao41E2T@!U%@3u}U!OZthFp
zW>I)k$>|hE=P(L454?Aumv}#|aW|LmLa1TzjLQha3_}Y;52HsFg^$KKe|e&{XI_pK
zMmUT}*gYJxMVV(@eAp2UBgU#rx=#oAbc1;0a8^>r=z%aE48sW{MWbEI?HWdR$<A5d
zjk#L+nVkpV9PX<v-GAZi5k^mrS{S{<cqoiMH2Af^xGIV#8RSa~eZycE9+8sSork4s
zB#&|w!sws&ipRqkAbg<UAi=@u)W=xn1$RMXcp{7^MLr~*I#kFoDVYjSg)uUWGhv(!
zV^kQU!}uVK55pJ}##qsOFN|^Q5l1tO*TQ&4gs+D2&#?C6g-;0M*)S#wXMryYc`l6S
zg}fj*DV;i4Oz~0}lST4!TK-BHPuz9?-gJsc=3aGQ6M8+21K(u5BPL?>jWDK3>YHJ_
zC8X1aq72i8za7R5A=I21c3+zznI)3hY5ANm<_dpTa9&zoai)6`J3ovCVXR)8^**PP
zBrOVKxsb(zO9Yn+E)!&~sZHErT_Mqxf~#0aI+gDftqEhTM0bXHgXyjnpQKYi<^(+E
zSr>--x`*V`wEVL$)`#(V7+-Li65%&tY!I?3t@D+TuQ`rs$*d~wQnOj2Tf*3ymh+uS
z%D08_Z5ZE$@qJppL&$bPHRAsvEw4T|`^PZOe^KbCFm{EpJB*(>XWQqU7KJ@w91^lu
zaG&6Q!2^N^1z96M@_aaqU&1(&mYm>KK=`q=<hYQJrR67upAxLoDT6ictQI^M#;;)%
zji6Wr=OwAs=G_0nxDdu~VO$i+t+0E_^m`b8Nc2yxhhba`<B~+#lE1>ZEc{AZ^6(=C
zD?RwXZ^&HdqWWO*za{BL7&p^8dZ&!r^z$$(i{_oQ{H~CHxr~f--xgyi5JABRo*wQi
z6miG5uwW6vdwGjTkP&h39eAI}+kstGlnYhd`-_qhl!~BR1l=Pj9YL80nn%zgg0c~m
zi=cJ{bt3K#vwQ@VBd8+0LIf3sP+lp*pN{5{RE?logg;}+sTo1_i2LSMjR?lA%9?S&
z)3JRXpEQwkUs@~TK8?z#s??33UIdLIXdFTP2)L8v%fR;uX%Im}AryK)^Z9z_<bD%q
z5<$}lnz21?@)}fCSZ2Gb%AWO}#a9E|YPO8P6G1QnC4$TdvLa|5L7ND&x%f*{^CIpp
zF*m}`U*Pm-KCeV6VHJJ5<a2k*EqAMkyQ^d~@*`*)ad)j9BkmrxT?Bq1?FG4!rm%x>
z_MQAp)nI@n_smIDRXRn`nca`Tis1eTxGB{l&?Ef9r^`cvs^D9OyJh|EeIL7EM8Lkp
zKJyK&s@Remjvx|o-%{&3%^wwOFo~~2v%xWm#v@3it&|kv2&N+FDkSJ>Pvr+9c#wUG
zU}ywABIp@G{|E*|&`SoQPXv7<=*<SVaU1hc1k=y?XxoP)?gPO`1s@S)bnP7<u^;nZ
z3y=&H`Cw+59^}Xlinz}TTl;b!i{SAHo``@qBTq)~&>!uYk%fO>z<qQ$EP~+?Oo-sw
z2u4KkR0Lz`ClQRKiE0M<w%(WsMhPD+NFm?r<FiXXlzckk-e0hgXE?sTT$1tWw!KnS
znHa%y5xf+^<OrUp>6&<7h+vW!mcz87s`8>ZBwLmG%YBoO!k3vnf>-IWXR|o&ydA66
zI5<TdW=fOx7ti@#kKhg3If`Ty(;|2?g6|^uJ_24u-ilyu1n&x;9>LoY%!u&4V!T7=
zS>m4)!7TdW-CS-AW^-mGgUrIs0I#j3e)PPhd*?;)UIbr6@FfQ;f&~$L7{Qu|`zZhY
z2o^=KID&=r=S3bq*5|`t%9lv$Qb9g~U&d(y_i6ibAu9w|3a%1dE%-qMEP-lkBlswS
zPq-#T@G&jP$G+SV{TJZ-CwvUOwW|C4{WCV^xc_smBr84Zh4UQ%N{&}mn*JBq5W!aw
zY>nWXi2I2A>j*ZnF%jIZs%)ek_-0P)0QVb2X5S(b?mf0~({<Z@WrEMLzh%k!`PHi_
z`PG!|9GZDKb)%>k#f}Jmh+t;~KSppdg5M+ftb%LgpCZ^Li`Z_#BV56RaEaR!!CrPP
zg8d>nBzPd5dN9Jj5qB?(heh&BT3&TX@uLwOljw0yv<OZ{FuJX)c}j%83Z72upAm94
zf^$OnQY$sj3%?-vo8S=JUCIB5;7_iTQB;ZIQUrgo@ZIj>d^v(E5&Rp$f1-Rff}29F
z30@bZ+TUD%(mdR@5GA*0+qC4L2=1i$-3XR+a$8a$`oEoji6{z2Q7DSSX-Tmtillkb
zDF4FXf7hDgQDmg$h`Mi*vz(GqloDZS!SYd*5mGj-SuTpM)!d7F1(8%t%PU23V^n*}
z8LCFnzku7SYLZ$#ty4otO~G1G)K1ImL{WaUo40-x4WeipMY|{(MsZ&hEuv@{MWZMh
zN6{pTrco4cmV2_NuSn6%VbzpoRBM)drKPVq`&cxS|K0iC;jB!}?-6-c6xmT^Mlq$D
z!qi6(XHj`+H6<sC+$i`*4wURm1-w!CM4zd7QM3}?TCh!8o*%_OhurM#qwq&@e-vG!
z=nzH6D3mBVMZq=%qNo`42PF%u+gMGZKEu&!N@o$W*^GvwP@@P(5s5;JLXW~`#_Dbh
z4Jn6eH>)XT6huoTBowlWXcVKi<;0?hN5P&_$iTme&#kT;I2&-HNU^g~Oyw9w(JhJ*
zQ9Q+wje-YFy`y+2iU*>2Fp3^g^o(L)b)^@T8wa_TMye~+=~*-Q%KPp{qK^#C@F@BU
zc{qwkqIfhtUXMl5Pk4X90fGYs2MMx-!R%(l-S;v)9>o(Pe^PLW;84L~g4C&9+x@8B
zd)0#@*~ciJkGdD!(NXv6Gd7BGQJnPTjA6?cx|bd<$WKQ>oGAE=;CR6aQB10?Jj-rY
z2=eDb)OjxIUZ;Mz<9mTgQM?#+ufLO{csYufqV924uV#5o{%Fsa!(WNw)hKS2&FytP
zaIkh;9xL&Re63CPYf-!&#T!v9+n&Yfw5WUdIXj9uQM?(&TTx7p;_WEj5&5hEz8O(0
zs;<n8y62pX@>H|(8b7nlqP69ylRcd)9e-D_P?JLQIG|C?k77X-8%6lO;PNO|2w5n&
zD2l~GmIy8tWNFLjEsA?1zcPwdBK%BnHNW#C<O9JE1=k2td2JNDZzcIyB<ln}A+jZd
z++(6172Nf3y~sb0;tL^PM)8%94TAU7zE1NwVK?KZC^m~^|AmY#(f_Th+oJe3ih~J$
zz#rd5@jb^VjvjGr=dw>@#xOUAAEMYvkB#Ah7=Dc6rzncXP%MUBQS9bih~jD#KS!}A
zinCFii(+pS`{)}{oQh(96bGU>62(#a`2_Dl!NXA;iehk|LX=cG8u&$o%1Hm3dU?l$
zpAcl~an9wDev(lWyu^>1`c6l2CdzN7`5NZ=4vg`trM+WsX8p?f&QE#@o{!=}6u$}o
zUGSpddz;*^edcfV{Sn2lE4<{FIKG>*82*alvgmBCu26n0itAC_<zy-C?X$@9cNDjy
zU@hb~IHpmY&+#$b5@E;ExlH;e3Z~wnSLgYD>|8`&>HRl~|Dq@ma|<aLLt!C>Vqg-(
z%eJqG@ct{kr>ZN(W5|dhFNRhzAchh#)Q_P-3?*svKigD@p<)cBVkjL$nHc`7u25J`
zlFAC!tl>(^3s2VcSBjx>3^ih?8ABBjGPRnJsxeT3(dtaCq1?+@D~8%J)J>OMCx+Iw
zTpeoqYAE&6RU~UD!)quFWAMa~83Xx!F*J&yaSTl)N=dUAnx^^2Ro>>pTL`v{;XqA4
zbzZBXWW}(3g*P{bulD9JWJ@$hqNhuEy)pP=xG_0{NmTn~mA7>aZDQyg!~HSj$Iv#0
zJ=eT}7}^OrulYK}&|bJdEulik|04+sR|Gr7z(9qwyRy2(5Q-rZLzDv)gBF7w;|u4x
zdJL@B6eKZ(92%Nur3r=M7!RVe@1@3Kh~G1H(advOe2Ey=weoe1fjlYb#E_yw(adQz
z{1h^^o9Hn6gE91oVN48TW9S(}uNa<;xjTp6F+3DQ{}|?cmDMMPeLs5o#gO}fm!z*m
zACBP>A(T8CbN`r(WI`(+^#@3<fiVn<VX$xt9~bgi3>TMs8D)4vB+F_johN#S#4t35
zVH~U&rY`Y5zuG%82I2_8r`WcM-fcCMQ5=YgUWU;zoRo|^Ze)#%Vfu64=VEx8j;H&c
z5hNKO!vx{arX>?&xLZSE((^IA5W}PxUSxH&B#rQN_DeCm9K$PgmBrr4f|YA3e*}H6
z#xO;q)XA!;L~1Hjcs+(UVtAXQIX*B=Qs0W<<8qnQc{7IWAvq-5ns}$ju&||%WQJ%`
zd1egn2%jZ5J1rkrQ+YRrc`=lWqkJ6i#V|jH-)OEF7R2y=3>)a8EG>pbF{}~OEskOD
z74PyGRtQ-V!%`s>E{kEtW$&j~yemcWL0Y~lhSkECFL6_;`C$y?Bx_^%h+SX<Ud{P5
zhR^6B!WsQU$iF`SdbV)2_lp>I-fZ)^a7NYYeugh&C|ljn=+`l9jNxZGIlUr=%`xm?
zAGc?1;q=++Bl#|dtucHP!#0s~J^YrPlBAE?1gXIAJ!hq)l5=7Ffi-gdPnWPOhM!{Y
zLi$2Ycg@_L)}&-FeUiQr!zl{K2RIP>IXW>MjNuTcPYg$5I2=Q)rEdWTv1#6-nhN=u
zmENQ5V{6|%ek=w`j>m99NbNlTqfXvwa#kv1&0^2S+^<}+it=N;=VBOD!%uQvQt2KS
zgwO|mkKvCPip1SH^=Ay1V)%z`({uUt%fINK&AeA>>Vo-~W4J<dZO(muVGh56c`b(P
zG5pQE_vcgRCRZd;X09hzc`3OS!)=j}Kg-3Rj?LA3k>_7o2MWer{$I@fPmKb?Z(qzR
z6vvTfK8C_V3UBoljiXo`(XGDXag>asR2;wgd>Mj>ql6GjsIZ`!@94#>(s8%tW#agt
zhQDl_zq89?l#67AI4Z_r#bL)$DUQl<<i*h{jw;lNqgfoy<7l_sTP==Sanz2ZdK{h3
z`WR}&QB(K}Avbz*Ms}Sz8pP2sj=FKIU+S$F2Zi+o87(_B`@T3D#rdTprD+_E<7g7c
zrYYHsKAIUMc3b1}*U$JEZ4n1CGmdj-eAkwGTgH*I%<GARe1y-J6-PEDapcC~i(^<S
z$19p7)Msm3o%1m;+B%LlaReoMejM92`562{+Ol6l+6x}9soYELAkmI-1cXq?B!xYd
zLORD0ibEBCe;i$e^ql8q^FDngN0X=#hc4u9O@(q(I0+3Ej^js9?gQdckvMwt<8N`q
z;)n}pv}+uRG*8Ci2%ovslM*s(j;C8XwY!j0$SgkB`_?E=&p3K<bP}kMK<_vnieq*h
zbK>X|N8dPJmKq<9;}M!Gj^P~H#y*zzXdFWpdHcoDKaQpoy#wNSTnPEVI5+LCkYTW>
zJtoNL6C!_7aEM^5Mc$$JqKmvE;&>{K332@Om52ZTH8PITag2$>{Vy=V6AOG}<EX#X
zGhVDgGESmT3qBJ^;pJWmAKRSUYiSnU=Gi!i6XSR;j_2ceL86pQ7BVT07t@lLgs|Rw
z<Q3`lt8q+;W2*T7>v6mh$7^x-O3lD|QLC21tLn5k-i+fdnQqhLcsmYGx~r2jX2dZw
z&Ob!+z9U$1wU>OF9VE_*;~tqC$GdTS&#iA9^SJoa`Q!LJjz#4&*^&8iEMV2hd_Rtr
zajX))kg0Jj7QQ5oWkRU4H12+%pJcg6*pU@!vYIoOE#Hv4E{^d5?}wZMdp#e;u_lf!
z6FqAMCvVOrr~G4X#W#CNsQ(F#AQ?Xsq=e;v5y!=j-c4~7obL?=ykByT1iTvrzl!5)
zAsYpY9n5AD{~%y<-2Iz?EpcoWLjDaWi13?Ba=sPvT^!_0+7ZVO<Z;}JV<$&Bjx%wb
zjpL^{cExcxj$h)~9mkAjxqIT+8^_Po-{oN_{YVal`?#i6%s&vvej${v+Ld)sIOT`p
zFuZ;ee(B{%94EM5P4^rXBsnJJIB}wf(UGS-Cq;59j?-zKL!*P|;@EM<_j??F#PMq!
z=i|5_lGe49i$Z>jW9(8dqgYy;nt#S|DUK^~T%}`+!ezm3wUnFd3f(&EBU1UA2><5t
zJ1KBoIE6Q)sFAf4s@;y`pEznv^psCv*QCH5dV2yzgx`(h-#Gq@qku#UC9q~vfI0;e
zxcIw|gexTRjao|41WF`OGJ#?V6i*-{0SdWbB2D^*e3X<*xC>^P1j-62ElBx2eI}I?
zeUd@TycH54Rurt1KxH9S1gi>G6QmBOUd;q*CGboF;}fWz;1@s8ErIR{)J>pX0xc3~
znLzynf}dp-&-FD<pn-5k8w$Bku#w;gwG`e8HA$dp0z;en$eSh5Jk2TbB#@avrvy4D
zkd;7o0__v<C)^EfP6ECJ^2ig|QA;^rOYsURSX*hu#?)5YB#@s#YvJ6ia<fEX+XULB
zC5$rU*H$_t&@qAOSG_&2dbw)~B;2i(!WIhQ_K8sj?xyZfpi6=;^B|T$C;?S+nF(k@
zSb`x$XM?YL86_cFf_7RboIoVayVX{x5Kq7nNkWjhk}SNspGhf^bWQ7XpY}ik4<_7g
z$*2T+B+xT~0SOFDpcjqf^*u@}4aw=9z(Wc25&m!j+{gA6&ZOU)v|ZZ7`v@-<*V=R6
zOG!UT>Yu>d%e{;aN?>pT!x9*tz+(v<D;IoHkmT_Mo)A8ww!$dG5RnWO;p?@PAyon+
z67KGZ<f#PrZ#g3cNmkcZxa%05aQ8N25*VA{|McZ?w=*t*r-d^*+3TB-z_SS~NZ|bh
zCMNJ4JI;nB@H{)XH0zZFUKR3!;3UBp6L?9;WWkr&@qm}g#3^)}PrYv>!0X*q+Uig?
z!)pn=E<7cdQLehv5_mI#il2HJ-b%RF#}l>lcxjly*>~JCC&6zO`e!D<OU66W{#glk
zpEf(;UP{=Vxe469mB;X|ka>dd3C>So<Z%y^7ACMLfvpLAlfdExmL%|50_zi4nn0sP
zp4AEWE^k=^%h~s4z7+|4JgLyC1RAdJt`ww@Vcn!cA0+T07YEV*Sa7Z2M}pkiv7B|n
zNj?$ssUY`$pC|A|0=$9Un823__g?ku1a|KCY)IfMi5f9j+;0!fqmUcUP3-0h_l9?K
z0$U^_Id4L@vEvDx`y%TA&wmp5o=a8&yA#;Xv0LQ%F@c|i>`34TAr$TueG)_UjU6B0
zewa6a+&2H5fRg9mn{c<#dlLMTlCSU_&pwt=TiGv3pPvj;p+n=g+-x6aBkBAOdN?@3
z;b4=JIG4n+1dem(lf*+woJim#EtbT6Nt{aHbOQe+P#}pjR8HWp1TM2B3H(Y^aFd_F
z`2;T2RxZ#)6TBp4>nOhoXY?YMwR(A@>gD~Bz@MUjNs!B0k(FL%zrw|;jzaQJ0#~`f
zO7waHHxjrh{BN!dbrk9_+@e2-ker7(OuCo%P6BtOSeEmz5EfoAi9$(~O`=>9m2!NA
zlPI1<MiRq4IYp8vDnjyNX+j+&QA(mb;3|<sN#Q%kdk1dym6nXuDU)<hoJh(i-9x8J
zNmNdvf(X}5@KzKuGtXBgiK<D|PNGf{)sm>yBUtMm_6Sx_qK5FANep`^z`#^~*oxS{
zj#4*?XX_~SlVGLwlAz?Z9A5(wJ~PJ4q((_JPNGv1os(#iMAM`@3LTPYmPGR;+9utT
zt`<qOOv0B$UJ{-p*qy8-vXjV6_kzc0IU>(Z!Yg%Aht`-^M<L<C8nKmhzl~t)BqnY3
zJv_!sdA?+1^H@>4B-%@je!&Y90~B_YCb3lkAwfYUiRwdhD7-(3E=fd^h$azALQTSw
zyf3cwYDt)sl=hPANf=3x?5*l2(ywTC7H%gI7Jc$UyqOh)r;_NJL|k}6kjhCRj^Mph
z#BNFSOs94i@_^ujf;|Lj8RqRJoF|HXlIWYnk|dTU@o*B4&<<=>5|1X)FNqOJJjF3e
zVgO6#Ne(TUbdPQxOXBe)28obIH-kmEt&Z|U5>E=J@;xC5HHW5!!#F@`?j8gs-2;lT
zNsJRRD(N12j80;VL=TVlKDosEbP~@b@tjDQI-af~YRou+)yetBM3J1Rqfp`bq<cK_
zg6K1q{3ZI*MDMgD-b`Y05-+p-YhG>-UP<EBB&H<Yy}@fqetb+JnJUpcb(GhWcq0jJ
z73$Sh0(F({b(Oc0n4ZMkB;HNp?Ih~1^3D>RAvjZz!grGHi5bakk<1bNZe$@!<_Uja
z@I65a=L=at?``d4bYWV)NXTMAHh39(l*D&Qe4oUMBvvN*M-})iiOWBF*t=CiRwwa6
z5+5e9CW%?E<b0IG>?_`PMiyF|#M76(PuEq5A4?Kb*9rL~33LlEx}N<C=50vgt0X=b
z9$Di3B8e~4oT)qm{5pwkNsw%0H<Q?$#FiwsCh?63XV+D}sH-rQgvh|?w`@jTg@MZ3
zY2GA$N#aNnKP0g;iT#{zN&F}++?~YFN&IxLwU@oSq=nlSdD-ke9AfDX`@+^zvM){C
zqsz-)^@{gk5{Edyu6Pd%uK&?P2jGz-ec&iB0ZGKBdydl?u6j@MDnRAB3NzB?r;<3G
zbdN*NNNRkQdyKj6n)g?FMG_4hG<0wwiQkea@1TN%i%I;RL@@`&9d{@2M-o?)xR%79
zNnA?eFOCHlfx3BDlJ3124>782$R&BKZXRz{t|w9WDbMXB{z>9*;Wq>+yeZ@sm$JPc
zM(-qXmmcW2H%+|Z<?Y+Q^xg$NhW~^VaNJD=qlFw4cHFHCa}{wg@mf|<L6VVOd>M{=
zV>mm{&+`^IDB-v_*CiePFyB|sK`95N9h7lUcW+i%2k|aGHnQ0z_ipQA*?gXsFc)`{
z6&+M|P{lzd2U81rw{-HcuBr~2x6R=}N^J+#9OT~TWvK3;hVYtcNi7F&AIfGDHS0L;
zflOTo^@NbucW||?va?kC`y4cK++AzLL1Q5;9e5lxp>pHAS*?9dX>H-DHooQ#S~wtK
z;1O{q``E-Abf7rMa**vHhqXJ%chFXnybkglv~u8+D3!UnZSCL@+2yuz+_PLt7)aVV
zXfKkEqU;ym!2x&0%*d@Wks;vV#%Px?OD6|i9E2Qnc5uJw2Zm+b*p@+59cT_L2et#<
zaZi#>Q80vaN6i9>l!v7Xa%Q|IjEWs%92d4^c~*j5cF@(q$Q4;hN>*k$j(cyuc!96?
zSzkBDJ$x%&PwDP}2W1ZkzEsOk-qS%Z2Ulon2fZCU<ls36&pYVjps$1RQp>}%hJ(i)
zJmG-5g6ZSE+`m1_GPh^-bI{+x00%2`d;=W}b}*=(LOzHCR8O&mKjvU^J@;z<q=O-j
zdr{t2PZ=sbdWsF^a0?$UI6{ziTTxFL<zTdfXE<s@a>h6q>tJsyANe>jK6RcJLvd*C
znVLttRG1)bewHTvJTOu4{#L$)HT^F*nB?Fm2fG}+=-?%`*}*Ed&B4p8)WMou-zyGY
zbuh!hOb7FR3rwM*9K7M+Ts>tfD`iic`zU9WWSWDwMDnI66t1rnZR4YSx(MGEe8UR9
z<6ss`bMT&&Ia_e9;2g=w0-5XGbm8Rl9lS3J<O|pUD@dJ%4i<4b*H;)_>|lw5TJ@C`
zR<K=tg=Cq7<(y4r^O(io#<zmb&@4!@+QA17zH;z2jlanIAuZ-$orC=gy=w&5I{1iQ
zt@*ys^*QyGrHj0uI9TuCbDB}I6!7{!bMSMcwx2a>%g0Y&ILPQ+WCN{XXMZVJwqIao
zqrA0^@-{jcRbScSV5@^ooSu!_GP+rWv+FD0IN0W3yMrALzI8zT?*v&+iOxlc-#Zv5
z<^15_yB&ca*}VG7PT`DxTwftlvYU-@aMZyu2YYD1Ek52^?5A(ASUq>2!%x)u7=E3c
zalpYr$GufKL}ag9`3?)dHaUa*i12RmP>dOmJ2=n9+`$P4Cmoz}aGG}8n{(E2@2bu?
zI6gUpw^aA;q<Zn0nuA|CcWU@~n?wAKi$66Nd;fIsyW>7H<zYM9#>bj}IPOE$s(cVY
zfBQb`FHz&&)@29I?^z_*99(yhOu<RvZ!R4U>ZDLNg_{m;am`G*OW$n=|8O-<p==6w
z9NeWRq);S<e_5BTqFe+Dq);%0LMa@`&gB8!i_5$R4(I$;D3ej%(iTne_hmk$P$Gq5
zDHKn+H?}+~%t+yyme0V|n`fsbQz(@}=@ee8o5v{EXI`gxJ3RJpPq`Gzr`(HFm6Ur*
zRw0E-DLMS1@`hYyzdG7IMXa2H{)Lz4)m25gS_;)u$T^+OleeVq;}KR(W}ogJveinV
zb_y(+74i1DUJ5IYdfKJXK85-zG)SRg3iqXu&Fm?#BaH-`3pN&PBG^>0nIL=A;vOlK
z*;0rng-jt?X*n;5xhZ%h+D6bP*h(-jg~7jgSY2y2W2sBby)Ndb&{h=KJ4XE}bVwnQ
za<9A{QwXG>vEwOBo$d*y!1F_PR!O0gNIItw5^}#FyWEA6ksd0mA|c^HH?P`8%Dr|+
z1kDsIA+{h-1HvhMJKIYIhNuW*Da3_vFF_%X^eg?Dn@XXpxXp|dx~0&aJxbxR6dp*q
zXG)Kz&@Y7tQ|OUGm7al~f_+oyl|paf4>8NFHhqLo@%hQA_OL`B5gb%ENJ)S8ZhT-6
zy=9bt07uR1V|1Vh`G}KCG3Ae^@I(qPq%bLkCsP=b!srynq%bta%RO!`3O+@jm#JN`
zfigUW5h;+|-5DT`<hVCbMhQ~WXrPQuVO$E&vO9~tPp9xq3Uz$`34)I_Pzvu1jHk=(
z3{ZG4O0|h8JSY0(&kJeL#`j_hFQuT~Z1ZLclR1JZyq>}vDZG-xt8`{w#8a4Zk2LX4
z6~e19<<B-yh`a_(6Ctlb_b&9@0I<JrrQBXmPvLDL<OOQ_XQuED=Nk3x?1d>TN?~>i
zb5c0dG;glpdns^feK&=9LMZ2AJ3oa5DYV>_!KC*^jon|+Kv|r^61I7<cWnwwQ&^V5
z2Pu3l7F(XeDzV;*6jr9qcrR(S=p1gK(5eg{O6nR~UNU}^!pAABlVU%Wx;_zJzM;a3
zcwJzVK2PBb4n%f|-0Tuxrm!J}8yj(RBfetEDej*UpN@?wY~malfp#OXIfX4L6zGG3
zeXuo!Z&J9}3%~cmHaajDjR!FJ0eqLj_Z+Y8DAFC<Q`nKhhh4FzD}G4vn@Gs*3U62Z
zn8HsfT;jY-VOI*fQ#hN#Ij(YdvVKlsUkdwE*dx)sf&))w|57*S08Q6WIhw+;6b`2F
z$*jCXf`<iv5j-LoYN#-^Uqj{pG4&l#QWVesaKsNtmMl4ky_?;;1wjt(PRS?+!iEXE
zJ3BkGC?W!)2ofacoU@7`h@gl_6jYJ|q9`JWfG9`~q6iAV&lKPNzyEvv>V3Mpy1Kf$
zx~IEmZtoXPiaL2`gr4e&(*nrpx>Wf!h0ikfgws#U>3ZFBt|!j-1i=%#bDHeV`J*RD
zFR-TqE(yIXl>93Kygzua_r#5!C?7zD0B&;a<r>}-_vx1Jlv_Q~E}nUZ<3jgxiT*I-
zc2E4nn4j%unmoZ%rg$#FUHX%+QO;%jE8xGLxL!E@*GrlC0>~dgi2zCl+$w1S6bYbc
z00jalD4aq<+st&e6%L^B92ZpE?n3~@19&KaVgX#A?PvOUr1#x2xdUeU*Q|FNDiuKK
z0LlcgZh`;#wmD5&C`|W;=adbgoalU5im0vLG(YuM44_f~^#Z6LK;;0c1W-MI8Ud6#
zlrtmh9oQ?kY5@DvT09a!H37uuruj>B%RDvRUo(K?zxuw|<E<3{Y3%^&2q3P@9vNPO
z1_3k-plJY}0Dk^fX%qmfe{{*ynC<@PZ6dVAcV6Q306wbX`?XPy5<o@(1J)~Te^OZG
z+vOfFHD60>JkgsKfIomC0lX1FvjCb0@KgX@1L!-~|7ZZ&0kjUFg=EQT8Ng$L$Itb*
z3V@W%HUZ=W(1Bh$oXg*b$raExfV==658#Oa$Yh#2&A+%#-sht|?E)C-^R*XB&iLAy
z{2`i-Z0NqXQvjU>5O)dSNx_t1_UQng37}U1&j;{q0M7-W1)vAeEr3DqD1iWi0=fs#
zLqJcVTk7PoG$d`U=&ytY@Yiqnvpi}5G>N~WV+0ThARd4vr4N|V0AjS9{VJ9BfWyCv
zrSXXX>;RmA`@1*nR5Ac2TF77QVMhpF2%vWW0|R(9fENSqFZT2e;N<}N2>!WF-b);{
zI(d|2Q9r@`scmU4vjZecJ+FvPijnymOX=#`nY3h30Ibfsg9D&3WU}?40SpUZe!$%+
z4G-YQ+RB6gCel|v?}z~26fiP?Q2~q&U`zmG188$yd1tPF)m?>vbewP~KRyK}1u!{)
z=>g0LfYCCAz6xL(-Cj1m(PY0?!pA^jIQ{mAGBbd!if>i`vn3iChjRj$8vw=TQOWvj
z#xvzVe#}e!!`_?)0qic8xiEl5>_`Ah0$3Yx|FQMb0G0)?T1uA(P<W&A7JGEr^UXkI
z(2t(C1vC4OfE7aD4Pd2!RjJbV9`KiCu!%JRyf50y^z}3Q0f%^=|4yAeBk28*^CEyi
z5Wyfe1o#gTP$Y<=L2P7oPQU<8u(Ja^n*!J#zz)vt_Bo$Y=A^P&=oWTaz&4@ex0&Yu
zEP$N>917r@09NhI*cHH+Y@Ndtz~8g{T)VyqVE7IX@ty$oa^eTDpS~UE89B?JnC0h!
zQ=x9&SDZBq{Rg=`*3J8xYs*s4fdG!I%wYEDPT$d~{=*!gY5wm6_<?l;_>TH#_{;tE
z=#9^OM>sXw=CJfAV}Sg<8OH+PGL?B&;qtiiL<Tkg6hPFgZ22?e=KxLyaD$6*0KWuq
zDu5})GA~N&rvvycfZqc+6ToYiGJg%=tN<Foy0qb30OzS^spk*Q!Hzl9%uaD_yg(0}
z$QW8QH~WfmDS*oXwA-qD(ci;`^a>ZBnf|LnuL->_lnd;i0o)4U-vIvOl&R$VOI&(e
zoc1^IM9-XSY5#D!o9(|N^sZ3M^pkUChW}mw`GUwF#Qgxim&XKG?6e>X1W`B$iqQ`R
zgD4clU-SL6|AX%og6lK=Kg{%(oaILl#e!%QMB^Ze2k}r4m4m1fbiG$X=)*yj45CyJ
zrGxJ9ajeS)T_2VSx}7a6l!Hq?2cmos6{M8y4qo7|7zAmhAlN8D)gT@TVrlc7`ax6+
zqIwW@f~cSCtsxDu#mbj6YYMKF;?x$<VS&GH5XW|S>IK0^PqAtKUpp!dq<8di!=M{Q
z>`s#)ng-E2h&DlZf=Ca7&VMwBj3AUCD9|hjFU?!(@dc3?bi<N^%W=<=QpSlt=w=y9
zq*p5EHkU55xzIv?iy&GC@t8E)Du`?WjL*6={j{OMLVr#Wxj}RaqH_>=K|CHr`ye_5
zL2Vq7CxX~kG?%HZfObMTO*%@8%Zs{CTRu96j`Vg3;z{Zm?|(Lkr$p>&@lw|y_*|wo
zKC)@jGeInw<tKP9h;BiYS?cK?M2{din^<>Kxm<#tlBI>AAi_bs9mG39s6l8!yvd><
z^dO8N>>!*VBJ@lUR?yvD#DXw`;P!*NjyT0GWwMVQX8Ab;44wv;G7~{CEEx|JNCxpr
z5Ceng6~yyFx5^7a^a<i6!M%fcQNY6!+&xTR!36z-cv)~i84->knFCU#-)_!$Rl;US
z5N`zW8sln#pMx?eh}Xqq#Djxi{1XffVwiYr1jj1~_Lm;uqCvosBIf9f3Sx8+GlG~Y
z(K1FFnnJueV{8!Pf*3E6Hi1L7z&}~=#2_X~05dY#I;TIwcxn*Sf|xF$#ikh;bOP6|
zSq$mzz6C)n3}QB&6U1DaeJS&y0OoOYxcc??9G~T%&slabgQ^w<v6yp#!P(TeaJD-W
zmq@=@g=&`xpGC`qcq@fF%=WJc;@u#=3F2@ND}z`S#3w;)qMaXQycfh;dMt?Yk7lk8
zVoeb52T@{<pR<yVWf#`T#N5CrlAu~I^ur)N62Qph!o}#?7(~8`zUG%RIXmczPbJQ`
z2eBiF%|UlTE7L;R62w-S$eh&M#6?`VKI2jl#O@&W1hFgVE_Yvu=Fde^FQ3csrsgk2
zfANL>z2cvJLF^aT(T(i;S3w*Sg~VS6aX|1vk)-p<WQ$yZzYXHMAZ`ZnXAnn%_&$g;
zLHx>D%sy^)mztl0I2y!{63krdj>$y$iEde+!E`)`6DiDXHswzS@r$%|N+_Qcrv*^k
z*&z6Mx){WzAbtzt_aM%3KwG#A`yWA^m&jyzPzgB~BrrG}bok{U_@KGUC>2#Sn=;pg
zd0i-5xgkXqyT$c6h&w^t6`L6ne+#%R^dEL-s-N;)c>fKeMgupT@`qgTUl8|%LwuhW
zmiFco{*0Oaw2&JZR8DIPg-|$zg&`~op-2ctL+Bd9(;*;)Vj-l5kP$-h5FQGlQV5kp
zxOv%AB82iG{$m={+^Cccq0UB6sSrvFATAR^S;6ImKAhseGS^cnQ>ix0Q&Bjq%iT+r
z5UPgIAcU7cR~`wWS_pf4D|M)Um8Uve%vA0dO|KzYa%zT9OK|NJ=lP2nb)`x@q4h%;
zT~Vp{gF+)4hR}%p9ilW2!BsLuVQM0rrXhF)kn`>;j}n46gmxjc55X4#Ip^;4N66jQ
zGegJ<!7mz`Nq-*`+Fa<PA+!jgrQl{}E-h!LT7|%$O>ZsCHbSqg^pH<Uf?R1gPZZLs
z$3u8RWGK*90F`tQ8MfX@Z0H!m8|ljTMbqi7&Z4AC2v3H<Zax)4^>H3LfqTMdLU=ZW
zmqO?p!gC>X3n36fFof<Q^bl82A@%f>rU|HxUJ8W}4#ANYRT+hS?_|UTXhL<NMhFoB
zQK1~HRTDg>sEUh`RBj1K2(?4__Q@7xCdE#+)hmSOMgD~lddo1e`!A;a&_@8r?&T2r
zg)k<Bu_5#iVL%8&Ll_pqE7H?JDPIi?;nfs=O~3<(zaGM1$qo_vMoNZbM8^)7c1Mea
zBZR&g!bkz5goX|(w3&&%9T&p*5T=GOO^WE}2_bjaJu#(oQV5e%cuEKyJ~lC3{KKxz
zk?f2RW=hv)37svJ$|=A!SF-bj&JSUM0Q!eTi$hovLjEw)!tUW^X$adx*b&0A5SEAV
zRtRtNZlqVMk3*O>)&EWi?}e~h@CpX7fR#d52|eO?DYhnr_e1zlDy|KI%nw4?IMq*Z
z;A$Gdx)9b2=eb_3nEgoV5^vyi>(z=HD7leN5dNkRJ`LgZss7DEw}r4pz*eE&x_K;O
zEz-|I*crmb5H5wVD}>KOI2yu_A$-BMTIC!J;ZO))hOj$?Jt5p%>mAuw*-!5YW_Di)
z6E7+c_+N3n`YK<Ca6ka@m2paapYlxzpN;h#3E{ASJD+8I8v^NfLify3zURal=L-M8
zX;L?j;8+MhiRRxzI3B_YE`3#eY-rF<<>wI2i2TVAehJ}1LobU?i2(6w0S9hm{3<eM
zQ<`ZEZTOuwtn{1<;rCt2`4IjPa6u?J7cVQ9DIdb^5dM*hS3}4>l5s7BJ{Mi{=#cB;
zmK$7YL-;d<Tax`tC`;*wzr}1~HgqS1yHa#t976m56~F!Wz<WaJK-QvszOW0}N`Wv6
zhS4&N$HFKSM&U4Ogi$k$B4HE_qjVT$!ax|s!gwf*5@B52>Y4a<MsWeGe(6RAeOoe&
zWqp;}qr9brf5EHNE0SI|jB;UA3Zt@=J{)#Op;N0IN|qN+1)&v%Qf;HY3I(XMN*Gnc
z{~M!6!l)*=dKfqIT(=xwnOiH2+F>*bqp=j#38QWp^+Z2Q>$6By(Tp3XJPpEV7{;bN
zg^AhsN_m@vp@iWTQ=3xND6c1sbOFQ}VRzIBd|_mU-LPa8a<al`E=9zC0nNmR%rZS1
zMvGJ_2c=aQ*<m~##xv4N>oD4e(JqWOVdR9tD9sIH@*JgYaUXGB7>^6{38CaL#@e$=
zaUVV3ML-9k9ffuh+F9tmwcaPCzl_zV!XWJ$#<5vBW?$vmFrEt|5=K<`-NFcmp@z{t
zj2>b1<oH(cF$Dz#!ftFcl0yRe)y-p;PM|_2jqWXyu7_cSkz2+~Ob^GxZeS<F=q11u
z8W(B_O@v{GL7fzHgv0P=bxsYABh~f}<Ha!gXn09OpD<nuW2}mCD*A@;av1qlq^al^
zMt_b1m%cCtgz-uk)5Dk{JsKFs;4p@S@v02dYeG3*gTi<{g*j#32xDj%W2iigVXR&^
zkDebD#&D4t5yqPWIBKjrGVHD}1dNu^47pRD2f;H=WG06(USerNDxxMzzb4VoMbcS?
z6{m>g)G($A-~f?1GmKe`^Dvf&v1hJlb{Gq#BJrFs<_eQ|o`Csby#0@7f#6wNJ@nq9
zFcypa5~1WQ6&ZrJ2*P+TjMZVh6LyzA#?LAND}=r)bY-fDJ>sCRk#YGTjCBIu4`Xc@
zj2R}53n$}xnUx=f@u5T)rxlqSg!!>hP6|%sO<{Z*#;Gt)hp{<~EsVV|ehOo27~8`5
zhBHDOzCDaxVSFxl2Q3l6f!N8}aakc?`hxux{+B{`r(|f-Ucvi>?ic!%(65Ca5PDGP
zA)(a9Fk_5;8+M-&KZNmJYCSm;#`h^)#HTPF4dX`{Xv)($?h3;gcst{lFiwc%&q7b8
zYVmPH848>U<JT}QlP^otS(&_lgz+24NaB;z=N!ZPqH<mo60jCMd4av=TG~+QciM9)
zjN;>6K%G~^_)8?Og>juaQ!CP+VNl?vsG?5dTU@0J_z3<E<8~PTh-5z1HT#a>yJ7q*
ztJ8m^vMw<WS@*s$8IZ&jreOtC6jae%#iJ?;sVJ<XrixmsdtF&XMHv-kRTNbL6=Qd2
z7gO<&iV{*<Tm>&GdA(UuMJW|;uFWm2VvpT??=tt!lQ*2a&m^;)%AYDi6%|!g{wfhF
zsHmu-l8X0uJ8{;R-P0SN?61t3Udg@xWG&u^lK+T`YAUL$sG(x^++6ZMsGH|rr7lxg
zWr@?A+1e`VsPL#rS5a3*Jr(s;G*Izj+)Ei=+Ea{GsJWqv(D96!WxS14{*<)0vCt+e
znhH2JULi9>g`%RF^yP5fymI6HUKKtS<=)QZt!$=>EY*EA;1^YV4Z-&XG?;2>Z3`7G
zRhTN`DjrkOO2v~Zo>GymqP2>4D%z`PqasJe<0_s|@$XS@t_t>rZ#t+vPesgWPKR8r
zn@3C9N|wg6sDp}*Dmtm?EIudai%EW(LGw63T~zRfnK#B1?yBNx+NL6`;u#gss_3aA
zpyD|d-Bk2YQTbY0cNH&2y=<NGeDT58AAC{5MuVc9onmKc5~-?!?^!ezI)}Sn9@{ch
zL}-}sqpEvxO?d_Yg^8(zz*3P=@tTT3Dr^;wikG;Ut4ONorQ&%NFHl>zOuph_V6dUy
zv`0lB)qO$JxLzI`Vj`1Sw*Enz%$K?TtLU$S2D9P-2^)?qyYPw(2VF5x#jAoDd(6JB
zVz7$QD#oZ7qT&q|BN&{bVW^7X93#1zAEtuCN4N9dzTUMoc5tM0Y81V9)<>6eAn0U{
z5ij!@((L1S6%$nat>QK(nu<v(K31_&#bnjpmd{tQK*balQ&mi(x5xQsFuGJsr_6l6
z*)(UuB>yZ1vx=)z{QSMLm3uvND7HwMOH*&8F*}b&-tfG+*+b?+6^m4qJmOic;+MJp
z#VVGoc#8s}jS82lSSG5dt#pSLZ;P0#R>iEQ-gi{25b&;0a#l_9uaf2{^PT`Uw?@VL
zD%MIvAFA8~=X@ZT?XFX?K7~8q^du+wKT@$lTA@8p)XV!s#U_rFijyinRk2ycw<^9<
zv4yduVxNlrDz>TEu7XW}sbYtU&s2P_B0ArnsF$}>1=B7DOuamE=Kt&?_=01{`)3i@
zEfx0&rG~u%PV~t6is3ZL|BcYEg&q)kP$++r?hu!+ldi#s#jyl*?-3Q>tH?LldrTbi
zgHU#po;j+b$raC!9NbBM0?PcP;<yN(5IVA69zFaEBVWZIDlVuvEq?e-#qTQ4NRQ}~
zUsaqHKApoX)8q5~=fs%vDdlYCqKZo@Zm75^MVD1v6F{4<2)N1^8|!C0Tu<?7Kech-
znEsTpyCw85p>NmA`$xqcu2dQx*6?Ik<*thS8qzfUt0MPcMy)ZP|5V(gw?FXS7h3x-
zZ$1sAuP*R@w#-vNLvalcX(*_HS*Ai73a4-p0Yx=HL(x26F%4UHdp3IAiX}7*pO|}R
zszO@omQqqfDdChBN@f`iWmEX)5}D;SRM5~~LkA5NHB{1&p+V75Swj^K)iu=6@a*$S
zRSnJ*e)Es9wK56FsivV=n!;>N4Yf2h(9lpgwKdeyP*>ykAqoZRX*g1@Wql3%7Af=R
z`Iq-ocGb%xhoy})G}YkI&{#tgZa5!v<-f0zNt!OzDg4X~e}w^VD_#vg4LKTeHDqeY
z((ssuRvP>onrV1$m#?LU=2EML2G*kfM<vU4nWfGyQ{2|Gr8~5rxV45h8VEL3$=tKr
z%ck=r`?!WDG*qqY%Cwa(6ENE@Rd@Y?+>RPLY3Qb*yN1r<oGu(_4Ri~A^^}ILG((h(
z8SZ&n1lS8&<$8|>i?7)6{|<Y|>7k*ghKPo!hJc2kRMa%EF0Bf&BY!Gk4XVhqFRVqr
zE@Fm=Q8O)!X)rasAU4M}SQ>h1cwWP_MM^?LQtT(Th2w}eW~q=488yXEUr`BZZw)Vs
zaO-PnH2YW`UtbL`(=9sM>gcDTzlPHq&S)5*;S~)_G%VFHP{XSlMrjzW;WZ6|G`y~1
zFa_!<G_PQN<#x<FM8g{zhA{#)3}u|~iMGj`f1ZEz*BRD<j7LU#r`1zNXgI1X%`RlT
z$-%vlF;c_aSs4UlBs)vPY<5t?I1S@96yOVb4b(6}!$dO6W=_&DS%W^(TYSEsSr$zZ
z8`#z~ktAojh8coqrZ|+G!|7IESs-=i3TAemfcZk7tKnNHrBuF1!(vXB<I22NKAN|T
zk)vS?XQEj9mWI_D)@XQJ!#f&QNGlyC`QPQBe3tXdFok#}CmkOF8r~B?Ol{QszJ`x9
zY|yY)!v`AH(Vt&utmlx`QwVx|S>Qv#pH*o|&c_-yYM>2&Z}fh`xT@hA^QnMMLdR_M
zQgXA{&!TM_wrluS!*?2Xa2e6CN5ftX^!!c@yEJ?*7E<AF6a8NhAISJp12OATW;X+V
zm_i5cld=0o1ILtB?H41z((tv00~!ue?RPH!knrCh=8h(_hee)d&*J*8;d>1~X*jNd
z##8?f8a~l;n2rkgQNu9-G=|I*f`8#q4pV*>d{QWj$YB(n5^Eoy=l@m1S*~(A%IWw`
z!|xjY)No6~ISuDILFV`$ZPwxs4U4?qn{@Re?*$DPHCz(TRSnk!T-I<!0L6Bm%^|(6
z;Rc7YhPT>WKRE=0=lH2@O!J(-*ae27j)FR7wa&TCb)J(;l>Z}2?r6BHK`YyWRY*5A
z%G}Y!)p<`!?+eYRBfsuiMa^lt+t362+V!+TItuGxl_ENd>v%|TQ5_IaOejk`&GD0#
z&{0xH*7Ed5^E}KFl+saJIAw&A(`>H)VIAdlG}h5X=l6uDD3-6@kjr)}>3Bp(H64}3
z405XIsH(g6GqLaNV|5*MrAiH<HHFsFQCmPAp|j@rDak6N^>ozN(LneObu<#d4zh?t
zK-yG?M@LH?kLgI)kwH^+_;o0{yWQd!Vm=+DULB)ur13*CrcB-aqKw&QI+~}%vcJ!L
zRChll<L04-?r!aVnC~ZZ&^>P}9cwpua&%<tm{dbq+S%J$$6Hl1+X(%+UY>8cCs%jB
z4a=i*ruZKhda`6@J00zHlrm7-KnEQib&RALIy&j-ti#sf=;)&3Ngamno@<_>5*<Bs
z^wjaRj%Rc{r=y$hei_Am?6W$SO!wcfpLu7A(p?8nQvB3}=Ll}yxvdT82<iyyP^pSO
zFX1DT0^I!)bN8$1?n#hYU3U)xY>p?0h>j@LI?ZD`CZmO=!(?f<%(zej9tYTZf-_>7
z!fcYx)G?gG>$9KN@q&(5bPUwdTgQuB;dS)a(MQKi^i@yq%es5c;t_!D_SI2D4jQzd
zMKpVWwENXGKR4t&*=1ZydsW8}9dGD(O~)V|w4eOfbqv<sFTVKM7<<a<Jf5)cR6A71
zFdZM%&0}Ke2;Du7y(txkJI#4I7_DQBj#WC|(=k@ZI34^XZ<&tqIwt6tqhqf0Ya)l0
zJ<{D%FioXBQ*=z%F+-d%RmU^|bOk*yld(}ZZ?^6pZDt9kugGDRbe@j+oQygaivX=%
zpktx#o@8k@CF%bqI+lumZjJNvaKwsim)0(4IO%v>cfX-xdY5A{-Tw~f;NjdAoNlGu
zZ?0BKmLF&_yIRK@Mz4-jI^Ji9>iAU0W;#U2IvpSD?v8Q2?(P*o;yishhg-xCb^P~|
zm;Agg-VHiP`NiW#o$Dw5u9sJ#e%{mE)o{*2*+1BQ{klcRejQ&ia&&Cdv7IZ1j&DaQ
zyJ-Ivg)iJmKhv?3O9wx$=%_H8zQF%EBbK2!&HtrPg53i4aA*YVOY!-N^J^UkbR5y~
zy^e!A4slgk;Qv;~H#)8@@XuZ9eok{(FtdDX%-71_>3HyRncq+Tp!1>czHqO&FN0Zv
zA9WlP4)IR{j_Wuf;O7+oq=53By{C1Y(eW3%uj5x8XW6@Po*Rq`9lz_isN)i2PY1sh
zIj^JpIS)UIpj(>qTOb`5xLhpt+>`8ODjDzR2RYYuToKIdRhpf`tjO2Fd=Gw8$DcZG
zF{&5%`Np5_dg+|o$J;vo;Sz12gn>I;qE}_y=KwAA-(^&bwbL$T^3DE#4AcppdqVkA
zIG=(12GR@^Fi^;FKMiH#r(C23C0mvse;S}0iwG?$6hg@?W}tWq^F=v7l__bspB3?|
z0Dcz2uT#nxC~IJ{fhh*c8F<)$VIX3lynzY^G7V%IsA!;)fw~6j8TirgRyI(@Kve^6
z`zm}#@Q8tG25K6pWq{ZC)rHm&%3E=A_*#~<ws7hg?kyj)w+!!|0ZM(teT~w{Kw|?9
z4EIL#;8ssV`scF@)@@>-seudwiUE(|UhwjYl~;2F=>~WoNWl9sugLoh9P+x?p}Y^L
z9>0NR209w(WT3f$M-4ndgAMn4zZM1_W0%)wx459Rq;D(vIC(iqTN%hU+*!}m+CZBW
z&Y_VhoM+(i6y}22j!iF7SiOURc9Z?>4e-u~OBpqDt>|o^i-Bj^sNsHd_@sfS40JWz
zYYk>8_OyX#40qw>YR0QAuBBYbyBX+iAYdTKfjE}UmAr?6o}z&Q-*(HSOvpgkfNDT9
z+%=6?G*rmtl=m%d4tbRNdAi}Q`M+%RL=D6YylUVz116g`@PdKf1}p;!0}nOwCOL3T
z6x(pW5a0`6zU+1wFqb`K_7Z{T4fyYP_>z}z*k3fzxqcpBr~bFW(?{@2LdooF;AO%6
zg!WJI2N-xo@W2#@uc`+bc%6}8V3dKu^iK`nPy@pZ3}Mr=GVB_eZy4^jmfLL7;fA{l
zebaEayCZ}y(sQ_V{PP=Sw1F`O#v7PmU@S-cLI(G=<LJO)3ip|T4;5y)OPnZbCvhsx
z^YdeGHpd70R5rnwG4PFn=>}#P_{hKp12YZGGO)<NV#D1e%r-EG)oE?LJbsHlk3O8|
zpKoA+;hz0@1+>t>fQQqQd$M_bF?62)iSxNj3@kOU(!eSM%M2_xu);u}1Ik-c<!uA+
zFzWuzAcxg?lf$|M?{Xkcde|awPTn)H+Q2%-f1SKF2HrRDf#KdwS@m5Tcv-PlRM8S9
zUW}|a@SzCsR*Gf}Z0h}(Sp&Nad~V<q1DgzNF|d`9d@$ov1Dgf#a)1vDJ~&8uqTI#_
zXkaH@I^45e=nkRX>ng+Q=kaLC1K|DL-Y*P%Y2a&0p2*m3;P=@I7qNW?_88d9(Olr?
zD$Qk_pQH2JmHnJ(6FgsW)?CW0b5dcI0|pLCU5YV#n1OBJoPo7-{NEWk!pUXeB(obl
z-y8Tzzz;%?3MKzX1IJRB$B^R;uzCsy^aLl@bx+z6<rnV94(FaWaE6}mubkpK`Gmr+
zi}@k(ubeWAl;60H)mF|5MW-C%-v#r7VeV<qQ~4bKA6%~(QFGmG`I=I>mknIu9FL-X
z6ju#gGtf7Jmm|2&b%`GC@97Z1O#^>&wTZadTL%8(+7*Ek!QTdMb2*K`GsN=`R}4<8
z2ug_9kyhTj2L3hhpD1C)0>Zy%z&k*>Zy=v!^9yBZnt*3+y8q#~U<8FC?td38EX*Q8
ziwcF%VnQidT!2<Lf5`~0l*)WKf}+X%rG!~JB~wN~*$B!Bn0m|o?b+^!J>@0adTjoR
z5mXXfIfAMYJQ6__$@Z?`{+xBS2&zZWNH{ejs2M>+!7Mudfv1+>+CuB3_;n+wC%C@Q
z1}XmME%LLL`l+XJ1fhZMUnMt*plPbq6G6J*^e(O#lQ)9Q2(lvZMR5Cu=dGGb@6%p?
z1n+h5Evlb)=Wqu5(kz17m0B*Yp7m%1Eh1<c!DA8rUq$5!QPnDf))BN3oE^bid)!|+
z&XMey%lUF6405+2ro0Fqk6>WK{9m2-a5URSkoIua_JvBj2--(LaOa$x?HEC)2s(>~
z=OXA9K^MVKMnD^$653Vh(?ZF7CW2>ExKriK?h*8eARd9my72Xkz=+^l2PMFs2D6!h
zbWQ}}2-FAye;3gr(50wZab<T)->2+&SH)YoC96cFVl;x705bv>k^lE2-UOXiThR)7
zpO3&6Oz$}nB<X~jN-v?K?<mA<@r4L_r&@n8f<6%}4`zQ~KkuaoNZSn0?H57+2!4p*
zXaoZyc!dJgARQkV!B_#WM(|n$g9MKf`g#O|1q>1T2B*oB?w}8qEWt1V!y_0W;7y?;
zh0c4`{pTZ0qazq29IdolcU%PHB|9O4NfAtrV4`GMl<4n<%@oPbieRdMX{plb0%k-o
zQ$U;V3Q%}<1al-iH-cp;$$0|iN3cM^!W4gzfW;9kNpY6aZ$;eMR7<qI9l<*hd=|mZ
z2v$V!ZUn0tiXyyH=&A_jedrqbUP{9NnGx?tur7l25v)z|KM=69hVMfGpQiX9MX(`)
z>`SgIJ{IQ22SpKVO3AD&P;|54Eh)~{2)3p0b^$vgpcs|xlI&MPKab#x2)>M9cLe)|
zvnPU|7b|-?^nWV%y{_f^g#XxRcW7=FSKb@%`8t9F5gd%*5Tiv(S@ey7BM}^C46IbX
zjo`ZoPW8<F?R3`4A>Og#v}QH)D;M46?#Bp@abby~Run%)a6E$lBDfd92~l!7f-^Kj
z@W}{%5pYT<#wn#={NMkb|22ZE5xi6?|5+)b+TS?4Q}|p2=TrEP2rdY|DD;xh%c;^U
z5j=CzbuZI3J_RDU!S!ECZ>MDbjNq2wzl8oRbh!BQAHjEoQo~&V{|fEWF#r7s@<mZT
ziV9KpQIbE3hXfF(2`CUnK>>xL*j`X6oGL9MplB3Gaf%5j9!36L|N9>SC88)9MJeHz
zj$%%(>zOi=Ei1H~(1(Sx$k)mp(27x15{|E)8xNIJrB$M+D)<qh)l&TG0%}C@+zof^
zYD>0Z6pf;&lai?$MLogwQ=A3@nw0l97LXZ5RuoNArA-BRgr*D45UNDs72p#}2eL(f
z6wRV&6Ge_Nn@7<iik4A4D%pFN-T#d6SQM?IXdT7-L-Q~1;`$+5N{eK;>wjx*ik$qp
z!g*Y1p3v;<|Bd?-QM47#+15%<y`mkW=om#pIIP}DKq!jNQFMvo$ta$RqFWT*qv#sN
z(@~t+=9!tycqWQx>7`UQc_oAC(>3XV<7rFM(|WLCyENjSQIO9nOo1qZsVtdnD;$Ly
zg(fZPLSs=F0wO}ALd`?2XP8XM#-p$VkaMJ8Av+3(YNO~C#aB^$9mVreyb#5tC?<<o
z?<fXF@oJPWrqL&gmxS3bivCgbjpAj=wmY4#MN2o*21xc5q0Ev`+95svYf%h}Vq_Gf
zqIg|Ohek0hiosC~k?b3E$O%`NY3%!+;lg|~rDsGGWIiZ;AT~ORaZ!wqVvNX)6<Tm{
zHa#;z@WfQzz1`i=U3($llqjY~u{?^mqL>!N^eE;<F<-=HL@_Ih*-^}t>;q%w2%ekL
z^PpW?LTwA8SRBQYC>Ba~kx-72^JT_T!OMhF^8C4cKa9=S^+dk6qj)EZ&!hMviWO42
zPUyQS$&~_D34Je$)dJR}O5Yc-Hi{1fWMsSEULVDWQG6tvEkZX4Wzok1Hj<_|n*@9s
z#byByG;9^TP3U%^JA{5Fbf?f=LbnWYTl`Y+o+$PT*e#UZ-zQ+dP>Qj?r0n~FC=Lqq
zW)z1~r6;2JCWQ}2@of|n&UwBQdPL~=LVpl?ROpXFj|u%r=y9R^lMvSZIf|2_@E4(f
zL~%;MX`yF?(w<)hoE7?86u%2NmnuEawJz|#nQ|eDi^9K@D!nY=iqNZ3ToZ6TReB?e
zAFsGw{xik76~$jE{C5<$1^<)c+!1hB=)Y0?C*WSH^gid{`)<&t#ZVxId@msX3n&;v
zA!cn9v{5*QA~85|B;zO=17h%+@R=wUL-80sj=3TFPz)tvcqWEtV<;IzsTeY1P+}+@
zLzx(A#85MavN4p4p>hmWVi;05{q<2<56AHJW~IDPf(imE#!!iW0A5ykwq_=o4Yw*k
z)bdu1;gJ}ctnjQH;qCaZQZ0t+F$}NmW6~XOtr%*@@Zaj3^cd>IP&bAKF*J;!UJSeI
z@Rm=hPfi)7=a?+w8T`<<mbVeL#n3c{#xXoOI;&YH-`$upbF9}x5B%!A)WiGrCFMr-
zOtwC}s?QsPFNWM0@?yx0VOnXWc?^%n@XOaqRt)nSEB+W>-K;c=q0>q)vn^uyaer=h
z46S2m8N*{SbgQJy{@uI!Lr<$1{Ke7<=z;gseQjcRb7WRd4E-x9$$Z%rD=Cl1@C5b5
zFuF|3wlOT9>S-TChZx$$ux*Ox{8`V!U|L7Y_w%-H1S7k}_4;`mmSlI1p$j|0hF({m
zilJ)^Pq!{eOxh_!>GVnF(=ojKOCf^iC=<gldM}3VG4zPx`56Dt1$xF1h(U`%k0BVt
z!5-f9JxWNNOs9p}LC34caIa)0(}}Xm{6mTnLnMZ13^O(>+!DuI`RL?W3`NT*W(@Qv
zdmWFV!c&SRG!cU>fE*`=WD56+;pR?-%-%7)7{hBZ42q#o3@@>pF$|zLGL*j3wU-4y
z)4E_k$v)`XE5dx09h~nS$RK2wKgm3tkwr?e*JBtgX1~E778sK?B!-VZP}rB@i_<vD
z?8{Kb(jD(x6_pVjix?KhuqcL+F^porVwf4@Ps(^lOT><iVGM`+kP<GSJk?4W7sL1%
z&Uf%lh+)KZ{?3edqGTrtC4X`ZQ&M=UfN3#IPjMK!+5%-(46|dH6T{=9vgpIP(%d|@
z62rHnvJPc<XVvm9E0ei^?#h>4vO!*#ky-pFu#01OJBD{+c;$`UB{3|GVHrb(LEa#b
z=`C7&Erb7|mH)Yw|F(5S4DZJ9&&%F*F|3SX6)WEKycgqlK1!4F-Z{;E1gm3MBmDQt
z7eE;nk$xcAf;*M<qU1xN9|>LZbH;`kNU3}y*MS%|#c*T4_fQPq#PDehn`77#!&Xki
z81}?)=C6!xF?<%o&KUMC@N8$OjPve@VZ#L<vy(<-ZCvPiw`}^Z7(S=XWz(6yh~di=
z-ha_YfxR*8kKx2R5Ai<s=$@xeg%)423Df(vP=W)Z`JiNLuFg12XOd$ACccZ|2#t^7
zP7L4E+c6yFY!!Q2Ep&BmYwkT3!%s16U+1|V!*Ky;V)#|S386m=Jt_1Tp{InN<`VIf
zhZWCC_M%W`e-rR~4Chju^D+D(_<~S+hGLgerI!U<5qeeVwHO{qQtSrji!lEbdQ0eE
zLjM*@ncFG(-9tQgWB8ZLqxkCQdyn2@c3FB6({=uR!OZ3}U1ok0X#$7~m?)USg#;89
zy6p#Fm(8BpTQiE8C~l&viAPL4WTJ$Lk|s)-C~(Hd>f>{>AIkNXHu1re-m(<P^)}p*
zU54`aJ>*Qkn^DdL>BA<<3#cHpqR>i0D+{e6l#&(4WLGm$-9#f3jZN$;=PkL&Q$w1o
zX`+^i+9nQvmCe+<eQq5SjEcHK>j`DHzKI5c8wxEsB8$u>CXU_A@R&$9(bUALMcIs~
zWj>#;h&RJTpn{^9V7AIVH_@?~CbCSNG4ZPjzlmlh7MoaNqPdAjO$;&dhKUv?TAB!%
z2%C7!L@N^=OmsAnZKAb_ToZXF+L+*)Q{0og>uV)PFc(!WL|hg&FVA?~#1kgknn=|5
z@p;kC1Roz<4cfC&d3=y|GSS&YR})X0=whPu=&UE%i~7E+qq4X_aS?vXM9r~T--f+A
zmU*9H-^(c7va_Ex`R|aF)4iHMXQG=40;cW)dI;^wUJD2c9a!2GR!wLo`kNSFLN{@H
zgVH1JeaQr$n1+dniKvN~30laMG-0N2+=L}KA=FOs9RcND^-#W-iRV-N7X<V+@uGk}
zLT8jvD8?51njn4IL_Yysa+&4h_!Secnt08`Z<TxlP4|(?r~HNt?;sPeo4ERphnS{z
zHI>08b`|l{t3yo;Gcno36cfWuj4(0Q#5fZpM`yihVzlW#!AH98RqoyPjxsSZe>O*I
z49BrS-oZL99naYQF`I2oGBJT`3qJxk-Nylyvx&5;?oduOG0nt06Z09yCb*c-BsDRE
zu~ER4=Qd-u>27T1n3!wghlhL*2AV@pK*|R(_b2s^XD=|Z(8MAW#N|I${#ls)Ou5XZ
z3{Dd}OnhcyIirXsnOJAyZ4>X9SZ$(0yUZ0P-ZkBa<0|&6Ov}Z)yu>RRwB5bT62B*<
zzZFo{n8?}ZeP1ZSS^)*yXRbH#p@~mT@M-dq={|Hen)t-T1`{813h=*~7jz#qq|B1u
zDwVfMgjuxN#1<1<8GiC?+Ad(5P_scE6ZtziC|sFM95LPJ)aNGlnAmIL3lm?O_;!V7
zHzQ=S^5y5AwAG%c>ti36rk%>yCJva`Z{jNk=h_TD#hAEXI$AjWAj8JQHzs=h;w5KD
zgS^A0`@B=E%x^^%wN?AV`#l|Q;<$+uoC~ijM@?|gaEwDQS$89mq5LGyd9an@^gJ^r
z>t_=uB`|*Bav|dwTb#x?In7#?+-=N%g_N@lMGk8mP2>38#5wMk<0u}-c@uw_xMt$I
zi3_6nrwz(w6Bh+@EH0TK=cU6Q;w!?uYJ%A>S9x#HKaVJBaTJK-rinjI+!En?ChnW~
zON=jYEcb6tPp*o`a{m!Za7VyhuHGrmf1-*-RGTl3{M30Ym+`<DAcw6KjH6K8ZMUeD
zl2bVD1`Ihx1hhP!0RgN+4G+a#+sejKPC$t`N(vyeR2-#KxQqbmc{q;pany;UZX6Zj
zs2E2TDWWP?VX72IWx>=>`Kl@YBLb=ktsX~>6u)L1wFK8raoAQp!42YQ7)O1vma6F9
zMscv4OdB6j8mBND^2CuI$J22<6GuiIN*pcYcq|UD=<&zFx#Nq2wK9bgWW~|N=Ov%1
znFutG<52<Rv=H$8rp#7xWDD*TM{B8@8%LgS+QgBQlBdGQ<9H&D_QGi!hjBt7vt0_X
zEruff(;<$IqUZAkZZA61j5wZ*<Ec2h#@!7wb+X<6cM4#wXXAJ-jz}EQIJ(8ro$|J#
z#kr!QXB?q8+7wfo7gYjr9Nwz1C>Tfhbnf|co{Cp9!cs~BHI7C1a|p=S8PDfDMjSJy
z7bS?rajPNBIO3v#?~HCXbOl)5;t*fWNC>rsQh6_07{@9L?^$>uj^1%RVxgLa7vty?
z$MHB$FaqP~OPM&{i{s@u`o%FOj<Ip{k7Ga_gX0(y$1AjLrZO;&R~f5v#CuIRWDXKA
zW~rC>b=DQ|hA@Z6F+#x5IEKaDr|QY;UJ5KPuDlt?s5nN)F;Wtb31l+y$k1%4Lgu(Q
z#>X)$j@fZch+|?LQ{$Kx$D}wW$8l<L+LSnI%K3uA4=Pg0bUG@InQ{KuqkF)lHYS!5
zQ+Q4sbK`hBj(0?09s_So*77*m;`}%k2y>y(MJWx71uPM|ROm9HtoT+O^Q-y@NSRi|
z@opR!ODNRFMpuejHqGqnIM&4RF=Hu?_vz2V>Fen2o66ca_~`#Y6tYJ&lG*ifeuIRM
z;@BXP6y^hqltrJ!u_=y2aeTu`eJc0UI6i0JcPpFY?m68VowX$n(yc<b3EeJqhtSW2
z?u=uX0N-7O!e4N1ijv(z4+`BQbZ;E{1h9$yaeS4+Ukf-8M~59A7P0AG<uVV)@hyY7
zfO1Sqzl-DhIDX)y=6pZmUEUzCb8FvsA1FuT_%RMrp5=Lve^}1)d^G>WtB<4ZQSs+E
zPI4Ky@Q{UHIM8wY6UUu6PRDU3jtlf~9KUkmTAuzJm;E@-#@#(0_jTv*v^vK{yPl6b
zvGbfDk7T;Ot>pV74s!ODRxZVHIgYDwT#JKzo&@=nzd~yp<PluwQg%H1W*mRUaf3_K
zZ4V9R9^h6Sf5mY-4rc!r88V5vPoVq*vAc2n8%LUj0v7(`z};8a<$M<IaUm+4eqT6q
zMr9GtSm(`eflaquoL10s2dj{U!WQU2;vyD`S}10rSqmReyRh7AklKy-33LwcRXFdc
zq=bc%7Rp(8*m5sbN?CaSM=y`Gr7g@^nZvD484G1CchAGC6;f{M%3G*J4ljQ!aNk?e
za>Jf!+u}4{k5sl$g-X(W+|5?C+)*H|ZlQ*S-drdw)U;5`LVF7xEY!A8$3lh$#X?;R
zyklu<!DFGGh5DkTfrUnvd)3fTvQ)*rabpWjIGSH8<bU&Dt50irYZp#GT-~3}{+3ZV
zF`2j(^jh#)$h6#TAvcp*7W@`+EacK57PvEHYEGw(@De;qN44>`5K7RJof6zC#mN@X
z+Cm!vT%9PEXMuN3i>r7aCx51U@AL$f4^`R<C1@vr)3&39P8NDt=xL#|g)SDJw%o1b
zlNO$$lG?tmmOFVli~FqecDR{A4mYLGSa{ZQ4-~vZd(LvF15-Bv-Gv&5lz@ex1;awb
zaxXeUmV51^F>(qiVar`WRH4jzM`!7lyIc@3qN0ow%biUz3#Ns*1xvECXDbbtDb)(Q
zVVR({t$nsohodQgob+8etoXcSU$DR!W|ck`Ua~OO!Z-_kExc@D7`tYnpN0Ok%ED_F
z23UB7J++WuqL+uMlJ$MONHIobF}eoHunyr!6-%eU>moK-=$0ATZ%7<6N{3qRb7AGC
z>=72;wA{nOXbX$h6&Wc#WlWB;+;dIa#c8BtEYPLA7385{yoCuC7E;*4L<^HF@S<jx
z<sKO(b9PvmZefarKgxP}3Y%)V2LuN2mP##W$lR$>%11oY0z-~qHs^?ixuRsAPzDko
zN%IA}S3m;J-}f%Iu*7oLjdv_8CDX!Nl3mWOjd72DJQnS!gS~a|Hlw1Jx1XGqXw?b}
z?^^E3Wu+KN&X+5)S6f&^XC^Qxf%h$}<>Hn=i3C2du#O$K@QsD_7CyAFlW}h0ul>qL
z7B*V=#KH#2ek^obgFF^7ZL+Y%!d78^%1JGN{Np09O|m;IY!`4VRqHd!ey}b3^OXD^
z3ttHSQt0j!pH=o+*eBWj97GET7@s%2Us<>`E1Te;1twy0m?b!D;adxrEnKniorNO|
z3=5|$d{6&~%n1t=W;)6VZsC}PpDY}gqH+!MsDx=<`xb|1WmDVF7EVeLTY1pLX$xm8
z9Nz9dZ{b%9CvGUjzgsvfVyycco!Pzx!8sALt7lT+4+|G0dy&=(Ad^Km2WJsnwQ$YC
zeGB;#xGtqPE&OTWMoRL5s$2Afg}?1=RynamA^4jHB(iS{^B)U$1dxB%!oPz56M8Sj
z&uW;LKY_FakU&PGY-S52P$+@I2^37=n4SIk<ZLP|l5o{BTU5lJZJ5WzY_SAbrMQ%m
zLtHX}QVBefK-&aLCr~DVOv)rsHi2>pR7;?G0uLupo>i78RT8L>K*a<qB~V$w0~@I7
za<)=2oXzxiHE&fBru-uUZr@O9Bv6x<NUd54)J~vj0-glwBtUrz)D=nMdI^59qtq8l
z&_F;#p^Xw~oZ>eT5cor3yR5~w(uK3PgHK7on*afsJ{l<|k@^#$J<St%G=XL*!w&uB
zefd+RMFOo7$WEYT0*@s?PW3ez5A1K9K$`>}7gKYj3G(v<<fgI@3?QZcb_ujkphp5d
zrHKv+bV{Ie0v%H({hsaZlE9M*JS(<69#Wo4;Az2K6JU2L{pqFg&j^QR6O%rdKsVuZ
z7fKm20|^8Zh$Ubq5K17NKqP_Q-+R>rv;+*%rgN}FxO7HKDyPSo<?uyC&!Bw;n2jf3
zCGc^km&R;Zsw5I1brP@zq>svBHkm-L1fEae1z~2smEBuFKcN(OQ9z#rUP^KL(vvBC
zZ>pCv{UtjffmZ|!OqIS$4@=XpConjHeF^MOU`PUQB=BAWs}mTSz_0{nCNL|3;R%dL
zU{V5;6L>R$kqL}VV4P?emB1JQqlIpM(?hkBr+Qy#m^Yrjs*pL6wWfL}B=Bx-_ME>J
zmiAtg&FMCUtLVcmh^Gmd%CNMv$(b%$R+*6kv+3bA*$Wa_n82I_<|Z&tbdotg0g6$W
z71_|D1QsXojyQHnioZ<sEKOi^!#s*Dm+V_YnSEOT=M=|c1&x%t#48h6l|a0ZmzZ=7
z7yksdCa^7mwJDiT_!LNBT>|S9s25T`qHj6f%4L2ilpLmy6WA!F#4KWBJW%H*QSzzK
z%|f@Nn%kbhjs(6);7f+nNaZu(?-IIGI1f~Po<M`oyvrNrF`RZ&LjrrGbow9Oy^?)k
z$yW({oxp_zE+%jwfrAPBlEA414vFyL1inq+8!@1!m7Qm0e<zq-{$2!*Bv7)ok1hTn
z29SSLz>h+YCGeAg<3djerOeL)PKpL*PbY9DfpZBQzWL~{LeC0i5jnpJCiq=|vLfTW
zfIm`M@-I<U0)HlOD}gJ-*~(3>kWTj1)SSJ>r$7QXWa>SbbX**whQc}c7egz7)04CB
zarF>zM+W^Lp?vbP=x!<={uS__Q1b65kk57lHNWl7moytcBr<EC$!6?v5DW3;uZ^D^
z9CuK}Mo}A=ZCtSd8^vtAYU4E<#ce!fBgaNA_1GwBqqdDYHcHtjZKJY{Dz^KEw2TeD
zPpn|0tc`NQ;VJ21+ud1l6H?xGw<X-$RJ7gwIgbOC1dvnJ#v?Xr*zTn+HE>fjrLnh~
z?H;15+y6VEv#6%+9$IVJ?y=>)I;d--o{bC}ijDd<8rW!R!(*eNjYc+_(3o90+<7*(
z!Mo)VE3%2>mU}(R?Nhom{l{2^n?@e5xE=M{@Y%?=(b`6)jVv22ZFi&Sm*$$=?kmn_
zOg8u)ncz_yEgmpC`B=nT!N+XyWgl<mTd^YF^es?$;vk=$ZDYGzalZM@;}F;|Y(#84
zVWX{$?lyYZXlJ9nji+rqW21u&z5!(2CvEH=lhx5iCjrErS(L)|$SmGtKV`f7?XGl%
z90tjJmaZt{Zu_5;BJP&EamebsuhDzj2-xnsZyxI?6Qor(R2w1j#?<F>dFaz@@Q9>~
ztGR0>esD(}wGp$Cw9(6UPlcw9xDCs8Pk+qz*z8T%=yoHEz^2D+@Ct&%$HeOq9!Q_J
z(Z|M1HeO(098!AQ?x~sSMH@Uj6Ywb1*LDwyuh@9mMn4<<X;nSn0HJm7wBp@96Tv{S
zw%y`1p6mwMc-_Vp8(VD*wlT!UJ2qC>c*Dj}8)IyYwK0swFp6x95>+D@51SS4qTjSZ
z4IGs14f96ZsA_}v`8@g3Q9LG(v)zvkCfJy0W4!Gi3Ag0Sro$)Mm~3N?jk&b;k}`$i
zeP5YoW2$6>xjr6yr?Uwg3~UZP(@Yz)#OB#T$)RKCNnE|f5igfH-^K#^p-YQ(W0i$A
zPBzS2B$QyWfF(kg+E|w2FSqe;!#oPSZM(-k_vlwH^IaP&W%NI?v5F&TW37!3Y^=83
zqatJSeeu8=p>*%Sd#xDx>ujv&WN+hs)xZw&)j9k1A*T{Q)wrZ=u<@~tjqE}#FYkOd
z+4#hE&mc@ZfP89$FDW()C8&N>*=A!qR~Q>dZS1h|nT@aL85=uo?6R@f#y(N?IbF2Q
z`=yO9Y;Xve81wAKZkxX+<GPMMB&7@&1k(K?&qLV(8wYJ1=Gf8mGDCUBci*0rP`<Iz
z^*t}a(vex;(F0}O&lQf?VD@{V1UpA&{b+N?i(hS=<+>-9pOiI<Z()ve6sW(4_h+Fz
zrxX7orKfD1<_hzw=ZwrIQes}4{KgqQD(iO}=R}P6QJe+mZTw;5f`mG+dUy)E$RMok
zqp8G~D0yEYxN75?jlK?Ec5vOs4X!*6vK-vB@u!V44$3;XW#cb?qT`^D!`%gbsnp^w
zhu+3*F39`5CyeZWY}}#QMt1o|d3TKL|7_foq5=-?3&`)dlKF%Z@NH3=V7~NW_5m);
z#os}32M;;!`;nrK`>q7e|GqFOCfNt~%>TZdady79goBa}{%eR*j(fvg+QF>TzAAe%
zNaqC<E(qluRB=$%!NU%park6ZRt3kM_!S-SQ2ga+cYUkmpt9rMH4&3O;-H%2p0ArY
zs7^5l^&K>DP}4yz2X!5=7MHc!4(d4WRDJLwhM;oEOcvF1z!i-5R1F>XHmR}WhIAtb
zcgJM$NX`>FFNb;M($s;+LAvA4y9@`41HPdnrUtJx;o}fA%47D;eA&;h&-K$ncHcpF
z2hANkO8+?M?4X5%mUN?oT*rMw`k3S1leCiFaUNwmXzk$a=&W}Zr!lJA&|NY~^Bi}!
za*=H7;Ph?p<Bq!;KjGl3`(EBQv~$qjaqk8@(D<3z9Ub>IE^iLG3_jf`uM1sGvmHF^
z;3)=4J@+jzXDIFL>VWiV2P^tz6Fld*uQ++XI_;ACFlAqQIOyph>7bW`fP<g|-GSjC
z<hWN83`JgnhS{&yKGkvOohFokr4a{FnoU1ErNqQ<WX2ts(iggJ#+_D{=;6x7=LN-V
z5q2E+smClYqj;b8yn`2L_D-e1P^Gu?zenVY4*EEF$#Gw8_i2>JM9|Mce@23X<qifo
zc*VhZ2NN6&ba+*TVGf2nc+J5ej?0a#!H)abeVt+-dI;DTGKV;LgYoRiWjHaqhC1Li
zCcy{?v}BZn(GK!=^u6hT%f(0sTsnB)HAei#OEv~DpG0FFcfT>t!Q*Azd$x%VCOMex
zV2*>y4yHJm;kYlO72aiSb>Bo!budlzPZvrKo0v(-#$K)!vm9AH#$?TvzAtpJh<#t@
zo#%kn=L=onfY*}DUbwF;cCb_gh?lT*nR{K#U|_Jl<=|}xI~;uG;2jRSgAW~i<ltQg
zD;Ymx@G2TFK4Gs{a~keZ-gmIp!5YD{8s(A0xl<=KoA@$)orCr4)H*M>ZA1CRj)RXK
zY;~~B!A7xU&6uoDIhRF0eX>bF`E$O_j_cbkGJP0+?%Wxf#fwC)z}p@7%9o`(9qgi?
z*+B=NJNUwJAF2Drm@ggdalmKaZV3Yhz?j8pjH|s4_DPKK^FPj-uN*L>zjkoI!9fS~
z6&-a*hTwtINWT@eM;v_bxDT)I9C*dHA7py|=%8;i-%$=CU%M|(BRwXid<D<!2?swr
zc(E7y^ukH<8D>e0Na7Tyssn!#&5}6d;8)J&BuXW5mQ8d1CXqjh-yNKDaNEH@oH!2t
zaB#`NWd|1+#&-5a2TTt@&y1D?cYZ5+MVMFrzoKg*bDgtZ0L5-P_%nrX3HXao0Rg<I
zarJOsXSBS>Zr)VxI`~(L{^QD=s>Ra#v}B}0U~$BgD3C<4Bu<~oEto{1B<k!}kVN4m
ziX`0wU{Rqwi17gUAdz{yQp-D`Y*s0rM5Cg<hmu%WF{gx3@=GUCCW#tJ)J&pm66KPp
zltg8bd^m}U(iZEMPojcgEu`?o$D<!rF;x-CYEo2H=p(|R=ISZH=4vHTo7p59)8-`V
zN>TkJD0Zv9tEZmSeNd}G5)G5Meay=&511@%l0<qE8DewOBs@v?;K@V*B?&L}tj*05
z4L&K&6oIiyHu(=Esib)lk0#MQi5^L`NTOvDY6qoD5|1U(N^plHvXf|?MB60j?KVl|
zh@QvA+T0}alAyI~8s)J^1l0V52v9jOZElwYIqgNP#fBUz>6pZ@fu2sHuyfMAj$ro5
zB%Vs5YZ6Z<@vJmWOP)#Mxg@%!I22>`!xKF$VlC31Nd%I3If;JMlSC+qWD>oS2ul-I
z5(%mjtO=zCU4S7pl0-Dck0oIWj;A=Qhbp#M;s~V~587qmJ)gu2Vt*g8jcR*KDb0H^
z3EqW1F!d#o>6@z9U%;RwUQc2`60b;hU=pvU>OPQsO$_*|Q68HcoW#&1I@HJ<lEfQH
z&^9vZG&VF$_{{Q(;LYU!G4&qcP88q!xT2I7X;PG;Qbeh_H|^3d+#3}TM6oMiMbzwW
zvYXvavYQ|%y$I3;Q9(fwQ9!|lNKwRsm1Y5{HWUTvipcMsb3gh1|IahedEPm5X6DSy
znaNHKM#XU;j^E-K9mkkB-iu>R9Ao1c7su>4=7{k4IG%`ON*oj7m?)gb+4_yblLXIx
zFGxH&jwSo65irxKam<KgW*pN*fXwN%hclfRMB!O+JXuJDoc9}tB3p`|ieqjZ3*&f!
zmKn!0am*K)XW716iYYKpy!Q+#WeNw{#F*xDaXcT#0!f*Ca!6l{V^JJ$iSSEtERN%q
zI9?U+%hXWRrdZXsv4+jcDl}gj$Few<$H834WGJ;_YOlrdy2ul+h-0PTH-x@f;J>`T
z+S_rw6UQpaVzp34e^&q#WL&1XHjZ_1Y>8uQ9P8tFKaNdtd=|$CacmIDkA;3H$$k{a
z#zH!*Hx`hIe8O^-mwqaA<;+sz&*S)lsWlCMEzB>4()*PF3OxOA>1G;sjm~5)omEP(
zuvTbW9NXjgCXR18p0k_B@m(C>$MHiPzx)~8!Lg-ntVi3}P66HPDLkNUY?p-Y7D_QP
z_r<ZFUW)B2{gFMrUhF3h{&Bc%V<Wqi(~(a{@T<r$7QMg6aWIaK8aiqCBaS~gDr#t`
z;ZPihIe2QQtKqLWj>J(z!%go5kH&E<j<a!`qbc={$8jQ#lZ6CN31Ak?^l!n;;-5H9
z7x2FV&ItWa=+c#CliSA5)lf;pd73KhqPDT~1rT4Lp)#>(UPVLI0<NY31zcU@P3khr
zs1mh})znZ+Lv0OpG%%^;ktp?10&QcIsi&#mjs{Ye`hqKdP-r0+Y0BOR8fj>(p|yrK
z8k%UhL<199^I++v8gl)jHJ1mQYHGFWGNI&fv}~rKxu(YL78<z9M|Zh~mV&P+aIU0)
zU=IEi;J!v%4FL^Bnp!<;r-7XI8a|DwpkfU{4PmOJflTgekQvgjGSGzrQ4J-+?4aSE
z9uaa#*SC#vjhDEyhAtZJ)G$CpR}I}X^wn^khEfgPHT2TZTSE^GWz=88)f&nrk(dUS
zkt=UZp&~(gnKg5~Mng{l%!S@-MZS+H%p4i9Li2vY@2}xT4cAMd7<7Y_hy}b!!_69Q
z6YnjB65T3snH|%i%<ZBB^Swg^2nK2xq+zgz2dKdO;9VNHk#V2kyP2JUdxbLew>8oG
zHMMTZz82aT7^2}p4G(LGYj}vI?p(^P3euQtb7&fLVJ3tc8cw#2F_dm++t`v7WdxRn
zl!hyHw9;W~a5Q|Q;ad%^hO~y+8s=!oXvk_9r(wJXPlK;vgocqc6%Ba}Lp402;q314
z(PQC2m6BcyiiWX88g_n^4Y8mokctkc4Wy#oPK0|+iati8JsIA1EIdlXXbodDjFq^V
z6X7N&!VD@p8D4rKeAVm4dv=E>Xqc#Bx`r7V9@j8Q!&D87yV8nI*6;-F>SVZiuG+Q}
zD%KS7E*%t^M#~u#d1!W}(%F?}YM7<rNe%V8mUi6}-Z&_-{M_I}$HTV_id2e~J*8nT
zTSvnN4Nq%$M#C!_Ue)ldhItxZ*04mwd=1U^h8JttY(-hX=QNN$FLZ&1g#yTVLBNYb
z7YTid{XJI3pxb9x>M*+!m1K$Dd@8_tSgK)}hWFX&_9)JBDzGQ~j)vDXoVz#ty3iFu
z>0K${4WVxeeM{)uLO(uKeD{FRDh;IX3SF(?JppTklD}5Nx&mI$HoYKB=D){P)*ouv
zs9`H>Rl`TDrP-A}q4jELG$``1276GX$?Qs-G(7)ifUU!bpGhTuF7ykbUkd$7=+{Eo
z7MnF}5&Xgr5qjC0%&XZef$dV#DT5;4Y4~2lDGh&X*r8#kh65UY)9?d7{;9@C!Jk;V
zvC-Wc_GxNym8&;<G_{7aS5pUoxz59h*nSN^Qa3r@#Uog+%?kc3aeoo|E9-NXTG;$u
z!$IL3qZ$9#?GKLp8V+mtQ@rGG?Tho`zcd`t)O?(i=phvoYVi^u=d5IT=!B*gpHFJ)
z3@X>ON&nGsn&YsJIy(N<aE2qfjw(9-qe*M(5aane&e3tMj!L>((m6*?4Dv`YPe`7p
zt7DBkeCWPc%439`A3#-I?E`WuQC&whUCk*Vw0^r72jmNM)X-5=SK~7WaQ56<g1JdY
z&V@Sa>S(B=k&b#g>g#Br<H1IuWqZSiR|iLTDgEH>$VECX)=~U^keq5;N_kwcv5qD>
zn(1h+;}Tt+Iv(3J)Ktf%Ixf?}>n*(G5^Wdj-!7JF7u!6qw1ti*9tkzs6un$m_g@B2
zE^Vpf3LWuyDB3*u)z(td);ikgSfOL3j<!15F<Bj19qn}lblj%nb{$1jLq~TVJ#++F
zMqOENS61UmHGps^2<y1IO(>$P&K?z7BD8~!jsnQ<B%rg<E<)MIYjK>>`NT?~R9Bs=
z`lM)?j&fZML^tbdSfK62bX>)(_lB<)$(wXsBi^1A6VO{nKLM1vR!5%#?#m_<%#O?;
zy6bh^Ae{aMnHvSPk<LX0Zqf1Ai7+$0RmbR5l;92>ck0k}7&->%7|3R#0-FLH0odIJ
z>9|YBuS)_PzU~(Fn8-akSde>#-Y4{a9fJjs|A3Am1<Zm!B&jjMhXurSXgZ$zK0rri
zg4LqK)sfa=N=DT`30gWhC~>6XxSHax0Nc)rIyz1dj1ataEKJ=VYZIcEBd4ds*D*oI
zM4F$DypB;UnvS6~2_3^}HaaNGvP?V~9;Wl@l}a1{SqU6JOFjrcMrDqNN9Y(SfSAL=
z7#(AEjMvrBI!*_xm!mZ0+vTd&Iv(b@O$8p;F-gbMI-b!nnRcjSs*Y(ic($onPLEdt
z{4Jp4fWtJW>wFhFGJ}TkRDf=#j#&l#q>kBw=M*?k>6lx<I|oLd)iF=UVx9jvUTMB)
zMg95PLG_-~@w{+|7YJCW;{^dP3SCqPeM!ef|8=6+%Tk|9bi6V#sGN>h3wWuHWd*!k
z$7==rI=jh<FooZs4e0nm$1WXj>3CbmhdMUuct^)79qV+g*YU2djuWrpFZj`Lo%e&Q
zb-X7Wc5{vZYjr&QR%HB5rKCJm{60sj*4RJ`e<=8Y4h{=kQf93D-tb2{KGv~W#}*xZ
zcZ5FC@wtvKbbP8~la9~WzO7<occ|0;JoEqPiLx(se8r4dAyWc$6;}g>T%ZJa^8c4X
z!L2$-zh%Yh*skLnD*r)%_bYFnr*0V#f2ZSn9XoXFqyg**F$G?<Tu>Z*yj_f0?4~8K
z`{+2rhS0H3$3Y!`=-990N1CpV13G@v@v{yl_zSD<&Pu$bu+t8ay3Nb@*bDReO;;Bg
znC$OVpi0qz`XN#V{i&n(1t9{uLplzNBR+nl+fg0ISW7z2=r}H7W8$H|nbEAk2@Z_Q
zicjh|C4jiyl)yi_y7+Kf$DlSrN|OGkt4kJVSz|+j957iS+a6VS{VEwa&%izl`z@Sr
zpt6C7l6W|YDh8?=IAP$VfocX|Kr^5lsBYi_17QOZ12qiPG;oQ5OAXXAP}@KQ0~Z;n
zW8gvq{C^cLfb*0ccbd5HUYBuugz5>cZ{W^Z>UcI6Q7<;o&`^6xbo?=GWT?$by2b{Y
zP?=FtMyK~O15FJC4eU;rHZ#!NKpO*X4YV-SPw*86t~7ADq0Sz+G|+XqN{YCZgc7$l
z)E!I$x}SLlyG6L2fq<bFdx_giMDmLawHnX6#>EnGQPq-=p>DtO$`A968YnSvgMt1A
zIvD6^;3@-G8|n~dCj*@gbP>!1yBg?bpqyfT!aP@8YM_UKG6UTWby=9Fj!DVqspB`F
ztwhXK@tA>@&sO4T%xes_lHbQbUqhW4?kTjFf!+ehxmLjRNo5qf&H#5R`Ef$r&%pJD
zx>L;W2htl2++^Th1NRxY*}yFZctY|H1CN)M-b&3!M{hIKZBs5*6W?xtSF;ZetbC_|
z0j$7r(SZi;Ho)DJK?d#;4l%cbN$)X0CIQ9nmqZ3rB?0_s8AAQnt9`?VSeb_Uda2kx
zAm?F2Z9~L`a(BZpkT9^qz)Ay21Ezs-2F4q(45SQ<Ffh_k8}7D&AL|6OhWg5KSU>}5
z0~tf@iqchVl9GA`d;>W)&|uZ3!&oB0LmBa`(%}&S+-PIyaB1I1E6hV$pUhD#!obiN
zLv1;6({r?eQ{750ZKF1i#<CY&7$kp!0q$u&ZQvOL6WOdYf{z=RWMHzynqpw8fG4D$
zxz#ew05=VJj(3KD=@PwyGn3{qJUGk1lLBT7C1;L+rwq(3aDJ&=^sIq-29_9j#ZX(f
z^9?LC@B;Iq@&*<dYO{&_8Vdu=l$iSqFH)I0!Nmp^8F-2Pw_b!yI+{26FEiiK(dX)x
z9at57m3G@awA{c_1N1I4)IDyRF7G?PCPBP#_qw5O;Zf`j18=gT3~Vv*mVvhoyl>zG
zHnf3N2G%jtgFzbPy9VAflx40KO2Dt*H3htuHQyx6qXO#<wJcA^y4_&lLjzwj!Owyl
zMR~RDV&EeK9~=0j!1+`R>_9EGDYHqKlqddN@E1ZE`jw>fHLa^S^zACO@3YmwHUoPM
z?3Fg!PV;y<v{UNy8w1}8_)h5eLU$BumG$|9p$@cgzj7CcAR6tmAh$Etx+VJz>^Jbc
zfrEy+0`Mbk%uw5ZKN<L$?Q(JO7wN4$z)#GpWCtYlH|gUP<2mX-4E$-Rz3HR0c0=t%
z{AH+ZzQe*K;GtiJ9x?D@yBNL1#|#|js9Qw^k#owx-?WDWUP#~{ww-}n6Sysbe+``B
zsFJ`H3H)c^EQja>>LhSZLan5om%#Z6oSOhY-RZ5A02k{B=&hVU)dZ>~P(?y3_(-67
z0yPq9xrXi{4HqO(v2sXnP2txngfg8A6R4ZOr3qY?K)nR&C(t;7CJ8i1;GzT?O3KWO
zQMe*{u~4SdNcf$Og(@`RW&~FcE=hpX4RV?$)Hz#nnkUdK0RpZ|kkYjf@8t>HGgB=%
zT$w<t1Ue<qIf2#*v`L^ifuP8=6&gsOout-YXhpI`62$2AhJ+tUAS%po0u`Yp!tank
z#{?Lc!dy}0fvanecH-(smjt>dP?kV>0^Jho2q;~5mQHZH%hWN^9tnIO4p(qu!ta?t
zuLQ0Ve02iXhyaD@D9JVI-U-~4z|9F<n?Rq0T3xJIdFz`{%XHTz&`-eiLT?aCet!Ws
zCa}JplD{RPmelB2t8`pfygh+C5*U-f*aYrOU_b&|0(t@i6Bv|GCpqs=;4b3c!Fv+8
zH-WoZ8?9qpL}k!@2{rHIIXy1y5O5WJZ~_k`Fhn9gn7~5`wRWUEh=-}(woqL7+;<@6
znaNw;4;l$167ZQ06%*aKzUL)i7WA|Pq*yHi9HFkzv{05MlR&nB?+$d~`9Q8{@wi|<
zf#C@}n!wNm9!Y>rGb{lv{IV=O&&iqWV+o8%U}OTL*g@n>BUPosY@pH7UYA@LBW4qf
zOJIBga}szefe8srOki39(-U}{MmVH&QUa3`xREE5hm_Ji!74ovoRR?dSy)oq?NqiJ
zZR2QghFH#%33ZlurdUoaj#)I+bs_Hl(7b0S)S4s<H8+8$6KY{_ege-3h&){SY(gz^
zl1V&Ix(SyJpG&C2dt^Q@Vha-Zp{0^}F@Z(wut{8y#7hY*PT<D`eoElw1ePT5c>-S~
z@Ja%&Ch#63CXgRex-^013A~oTvV_{2tk^MpU8?R~Y04FBFRlh`46I~R3Vu`QTS6K1
zwt#npt`f@PuVy97N;p@`*RpahjJ==02MMf8fQGbQip;Z!Jk!W3V%aw&@S$`B*8fJS
zv5$m)ER-Gd69Jzlut~sY1%6QiUncMsd&)b(ZLI$UHYcz(0i&Nfpu0s1!ULIXDH<(X
zmg^PU6Zj^9Z)H5(Aqs!TuE#-RWf?amX$;(kW4U&+Rwa~pmw?>~>=Ce6=suzQg;It#
z_HzQiByffUZvww2a3Fyr2^>w}H;zTs!heV|zss=p+`QmH0W^|76F4NTd^mx>1ng=T
zW7DwR&uJe!mcVh2@KSFl5;&Q_-(m)*Bux%M98S4GN#!X|Q#>s-!&3aq;kR9k;4BCK
zBq}A<xXp8<=O$IV->-rFg>lbI;{2qly~;^cO)5RBBtiA)*yz=gKoWOI&2YPR{TpR9
zlBk(P$0Rx>)#CuQlDHy?E0d_5M4coqOrmZQ^^)o%gdc(YuI4uwKLhF~(IBZl(k@Ek
zG6BRFC(*Eg8wqGEv`G?|2)I<}b)8Bn+*EM0q&hT3*IYo0BrY#-S_<H)s#ZyLfUr#x
zZIkMLV(X;(AmKrUc1d|IU{YE8r1~o6DS|)}MM+#Ohj5CM>JSc3-~^N4XKF}jSZE}P
zr~vXylIT#t6z-fvmn6!PC{LnmQXOI}O`>}eJR{L9sm?s`)4fMheH-(ugFoV&P*9mz
z5?3WLAc=v@J&9|Q2n|91q`Ju2Gl^aTh^H?L_7;4t&^`rz-z2UR+)wEBLT@O9^04KN
zY@-(gbT=h&a{=EX;MOE=6L5Qhe}{lOlj`%2QFv@-P*N=|-bH#u9mcy`yyV=I#JvT4
zUlR8V9$er&AYe!m4;DC=Obo`8&{!KLUNxa7VbDBG)H9JtBALV|Nqm}wnS_<Zvq{WL
zB9(-l#DpX!CgCLECXu7LCXr4ea${$IQE8TKSK2v~!~-t|2)rcxq<S}ivv|&M8+}<k
zG>J!&7?s56B!(q1Jc&n>cuZtC3vSmy&4MX5BFW2xk&$eyxuHwj$2i$%YGWv0vxqAI
zV?~|`j!R-Z)o?;&I<pjgJc&t3%u3?PBqk@-OHI>~n9lySB=AHMQ)v0Zq?e9L&Pb|R
zIl;`NT4CVY1s4IB@@x@%Dv7yC%n>!HNrmLoNj$?+w2F1i2RUJ<O4MyWdu0-DCGmC=
z&nK}UiN#60oWw#&hXRX|cp(WE?M0ykUE0TH6@^|B1?XMEhDhS|BvvHB6^U1w&XmBi
zq`at*RErX1E*B>GuL+o4KeRH5H<D`2f%?2jt%d}dCbf#^RH4X!Cy8}Qtf#dn@oo|f
zT1}ObSR*OWyOuVvJH!PU%8!$JrZVp*u|X93K*TD7K1^a`5+8{?qkPP^J5feJ_xhsJ
zP3+f6oJiti5}zmWMG`+Gv5UPviLa9QHi_?&_?itz9g^5CI&Vp0D;ujQ#QIT17!sr!
zeCdb@e#3EZeUOgT%M}<J!1rt*sTsD;PSK6RY?0kb>>)pi14-;nVqa2LY^25aOXdG4
zc`@0aBo@<TtY1W||2*|h#cxUcp2QK_OvmuSB>qU^&m<0s0yJILJmXRUn#bWJ{t{!@
zBu`jSv7-{}n9$=wnFwQ@O5*P%&T`Z;@eez%=tF~HN&l7JF>64OwS9(zRT34|PI|71
zN+zn9sA_`miLu(xGjYDD%!c*D$22ONs%KIEY9?T!riognT3)MeDjT@KRL0CUC9YwD
zi&V#2men><$HaxEGAb^41=}c#VxcI;Mf>_D8kjKH<xN~<;$jo!CSoQUGE);F6JZmL
zO*Ao8S88M85)+r2Xkp@V6PKA_XJL-bOf(h6?7V8h=As7qtm>8~t}xNc1S^nL&DOlq
z#69g}M^1+u^y*AzYYAdHZB4W@(cVPBR4aAGCODoHnQFz4mB!x6S`C^?c{<j7#6;9Y
zsi{^AOGG`c>~%EJK`>Kb0Xv!KZ2oV>kFmO#=qf36E7V4Xb#*t<!$g^>Is#Yf7?%r!
zSDCol#4RRnHF1rJo~Byuyval_6TMAbZ{h|M*P7@ft<zVEPs?0>XC>Ax-E}7VnX22;
zvFcbG{Y~6xg2NOWf>pt>i$!CaH=C+gvJ|(OxSi^mxZA`Xrg|LgPEm;k9~!^_69Ywg
zHZBt!WP)p$T&TRq#JwgSHW4>*AMIyJV2FtaP24Y--oXMMFqL`J%jgf8V1i6`^ZX#a
zR7T_Y&z9W~;({c-3?e^i!Zb0_#N#F`6Dbpqnt05F%~G&+Oyo?sCepNoWyPL}j8p=n
zXHE5Uz*Zw>O)`{&dEQi`Hw!hKxtn;z#4zEo6s!;ikuqQQf)OT0ni#{Tmu4Ep7W}$0
zt7x<ogvnBvAEo0=^<_TZ1iyUfogm(dZ`VmCCYzXNV!nwdOiVHHl!@&tLQ{p#Ffr4_
zq@Iy!;+-z|m7bAV%&2FCZZ_+xfRn<RW1<4^F!o#%Pn&qg#Iq)D>JqM?1U%RM9F;M#
zn61{N3$t6mKE-E$Oe~a)4qO;|!2~I@Ab*jGmqdWV^uEkr-sjc9?<EEPQWMK)W)}Ke
zSZ?Aq6O}DgvGBTy6()XSmpAd;nCMCqpPJZY;tdmTnt02^+w2r3Hkx?H1ovXrn|R;E
zDh3@3)4gkAbpgL8V2z2j1<pDF+}7bvG&feb!}5U%(hWknHS-aBXe!F>k6Bif;A8QA
z!alMoK<{TJJ~#25iSJE(!9Mj#=u4rjJ)VC5%EZ^=Jx30=Z#J<-yjz8C6Ur#t1$-m)
zTcMO^rR|{2b8Pu1^nb1MgNa>*mf9_Cw1;LOV4u+aLYe!I0vPcZ8kLE|9AMcNCVn%)
z^SWF!{9W4O520*@g96w<f0|(K<QytA))5m&O`JCIuZd$EW=)(j@i)zEP~-%Q|5Pb=
z!)LVZa?%9p@b)q83UPnuA5$HESpH3r`&?&C{Ac1^3zaOjc*291ypnvD154A$IhI;`
zsaR>@iO}=71z@Qq0!{%cPFPj7P|ZTnLdXIvRJYK?!X*|iuu#K7T?_Rr)U;5`Qg^QF
zSnB90ldVnpje+(u`?%0jYapdEp{sA9frW;aS~KC~g85!#sTudhmbw#4z$>DSEOh{t
zuCb+NB2@TN3zu1FWudi&rWTr6>Y<yKmU@<lkNGsW(1KY!rC#_Uz1%|W_Y}Co!j+bK
z;D|5$w0!`iZ7j64P-H1PVGXyl&|WY*0=rc}aD}N*pqN$BE5eQzwh*z<jTL1f$_l)v
zlqz+wR2!98c&2@fpreIO7CKw%;9?i+f2SN%JOyg0yOykBo_y<Wp@*e<P#<Pwq1;mY
zP(3ZgSmDRcyV}Av7Ot}JR{Pk@MWq$vBq;|;{`&N?(A!eKi5%#zwO}1P@A95OeuMS3
zaGj-QQvED76}sL6r#$r15!}cMv@qJj7z;OBxW$5F!L@L!h1)DVXyGBYmxVhl+-2cz
zOFb~c`3T=+xRbTCH8jA&Kmmh<ZfzeU^B%zz8*JfT!DQYi;C`XJ*!6&gA#4;mUEf^j
z!xrKe3=0WME%s`bdKiR9&53p4@L~}k?nqkd(T0=-(^6hb=%My8t`ggVyU8=EX%QRB
zh^vB>&xkiG)D!9p%~{AxEJml;BNm2PY8EzJB95@|sDQ_W$%kk8X2nRsqb#+8O$E3!
zGS<R43#(cA7RFncU}3R^mn}@R@VJG?CWc<LFv-GX3r|^?YvBn=bGFbaLaF3b3)2Ko
zFK}j9m??Nxf%7CY9UG<a9LfFn+Fhv9)9iY01n0L1zd%b9{H)M<6?~!338mQc0u~5e
zD3pmXF3UoDSR{7xl2F>l5(}?zY`3t&Qd3>7jlXKCDg06k%PckLU2fqu;V_h5``Jni
zU1@>yP`Y<4wM730&HIwbn?m1W(4?}rEqpXTMCR^M(N!!+!{EC@>0M)Ct%a=?wn-xE
zEFNA`8w!+J&(zphqoW^K*kGx}^ACl7W?`d%kA!|Kl%bzk__TmG3E<`z`JW5^Lg<$k
zz7p`Y&<Zi`(`{j^wFpzm?H0bVu!B9?QrFGCweX##t}gNh0q-VoLEw81HRIIE0Pl?a
zz%l2g&|XX3Gu_2XTNd0cbdOMO3b04iJQ@Ab!cQD49F#ivnH}6hRU6f8{A%F<yIu<E
z6n?YtJBOweTBUH%!XF$+Q>dB3pB4_WEmAl)g~J^2zEN-e{cGVb3r9Gxh;G~);wC9~
zRF7FWZm9=MP6#D9Dd3cazYCmyESwh1T~`WlBlQeh*1}m@qwIuM&`K$Fi>Go*P4mx7
z{cnf#{FIX6dxlj~sG35x6u2*0oszuh+9!;Z+~VmIzCdE}nhfLCN}+ZNjZ<inLY)*Y
zOyMFCtD8~}$Z%7sUP^5((KhM};0i+nNsvsghg_Uedoc}DXe5A`8C{Z6=5$3${b*jA
z!euEm6-^j)c?!)0Q?ceLv?yTi=eCp*4d+Y6U#jd_@YX4`N#VK_`lZk|g?1@KQz%KH
zeTrWfYI!Q00v}^3N}*W1yqnA|zhDZXlzM%L_Q1VAa(GWIl2Vq>+l3uc=$PXFl%Zz|
zol@wWLbnu3Q|e$C_ldfs)TOP9t`Bw<WeB>b)Scq86v|WRA(-PW_j+O}wU2XE3Rg4t
zQvpV=cs7TW7kqj#!J5I|DYZSvlViMzb8QNJQtBm4a_IW9#-1-?Kf0dvmcpPE?n<G5
z3OA-yhq^PRZam$T!p*7wJvB@(cYAM1;noyxOJUB#CG@KO-xTg(9m*Cky#v^GDcED9
zEGciWa$LHbp(#9=!b2(C%Ua@|9a}Sn`%);ow~XWY{V5Dise!%1%dve(O1+Fkz+2T1
zGqseukQGlUyVa=Y+#sDUzz~{9At}HtgjxbpLV30A+5G`0rFOn(51ACQG>jBJO~FgS
zPhmz1GgHX1;3+(w!lV?2rtnCL{|d)rP8gQL@DxU-_#a87E!PDfO<_a|1dj<Ns2+&X
z5m12N17oOX3KLW6t9zW#2|~vU<u?Px=>G4UoWInQ*_0bXPo&i3mtcx`r?M*v;EaBH
z3Veu?L41gE7V9d7<te<D!t9hf*!FY^&j^?!^eLfpsa_z)gKf{IFfWBy*<`z-6rP{L
z^C>J~+`o&TV=)gGlTWu$@GB|2P+-0&Q5Fe(N$BDfUKX%K=#8JKh@%_Cl5<Lz3Wwfh
z6`JgdGUeA(ct=uOk-|z5cq4_k1TgeXmSTrW;cemUtgW<N#SWFi>J;8%7iLG(LTggk
zabbjDZ3=5HjPOv(I^mPEo_(r-KM=4Xg%1myjgmFRK2GsoMu?8lH>L1d3VT!7m%`^M
ze38O8DSXQ=SuOY_`&S^gMetWbzh<=y;2VY%VCYtn*~V@~P(7IbE7<dB_&dS${*b~i
z&j!Ay!UA@(@3ah)PbMXIrLdbewl{odAhw4?`d>i??N8xHT4o9-Qurx_pHujQLpleL
zje%cM>S>zaX%!szQsA}-_e6e6sap(myu!dOiGwM1OqvV$yq0o^<9`Z&NnCC$9%09k
zJ;Y-vwP|=Xg^F#diZAMuDV$2--xSWI)RmUMB^Gy=I9L6LKP$_Fr-gD$V&LO}|M=r#
zqmr$(I-9~d0vJT^dA7Pn#E;eUZT0!hDL`dgeY?_C5y062Y*e=~#l}<{7ucv_<7OMT
z*r;ivmW_@!I@zdgqmGRhOvJ{8HtO1FY@>;-wqWYnXkg<aTj^Qf20xE^$A>pEF1FFo
zR^QAA7nIUV&`7-emcGQsr8b&Ll*??jYu40O`;Xkg;cFPIL%Qa+dZLFxw?2rLHm<M{
zwh^&$rHxj$+QAG+#MU<2*l25`;-#8)wz>hw2}pZMoSJY$gdgffHi{)EXsZ?p+2Bqk
zD}k8D)Cr=JW(jpZre3+BwjCq|X4Kh67aKio^s>>_MmHNhY?MjumD=DT`R+EHK#V(U
zY*t=gD7V!-h>2WnBPIg8Rd<yQ(tg`Q*N6fYdvLvNTx;V78~ttcvC-E?KT+d4X)Go}
z%b7eS#2ueu)xy_H?cEZ`jcl6womo*V=}op;z98U^+pRWkvth9bY}{_+4(e~?K^lOK
z0XFWlaleg$lJY%L6@zTtW#evUx-G=5M(%GCR493`@Q)9u#F^S)M&x|~Tg@>!m8;l5
ze8^T`6mc7xtuE0&EME2Fetl4<Rj@34f`gv~9|aROlD0YveZ3rEGHvh|oF8U3E6v78
z8>4KvwmJ@!9v{rwNZa76ycwYcJl5jb@W~$^%-MKUK;Fhs8;=Mkf4Gfd1<bE~a?~q%
z!WmKE^Q_2d8)IxturZOA%mZvT_`AbT=yBpDXS@K$<(B||(fGyqxQ$6RCe!?Ols;jr
zpC=y7VA1#^KF!8-RzCH#F~i188}HdzV`COg%f`z#mWcdpTRqJ9g00Sh%(3y5jk$uK
zwy{tE`Oi?30-h&ezK!PuJYV21sPMLmQJ%TKXscK9_~^kR8!y@FzC7JxTirt^c*Vx6
zHdfM>Y%I0a8P{btmfKh{zfzk?QQk**&Bp8WvR~(_(eWT_1?6%LpLl(f79NPLvhfx_
zaev`ou>{^0@D97)Q6<2WobTG|Jm+emj|XCFZLG7g*~S(d>utQxvfKESo$lY@2R1g^
z_{heKQzIK}Fv^G2s!fnVJT?06uF{WLdwat?J^oLF5D%AbqD9&G(#B`DI&1p5P#!KN
z{)*TJW1YOUoKbkZ{JUD}N!zU=v(3hK8?RgkdrRmW8{gX4VS^`5zY`_D7v(E-=85$4
zZ|J<!#t$}j37@I4Xe`KXR+kL|ItuS+m9o1zsO8`%_G=qwZ2ZUJu4m*I8%Jy$WzE<)
zVB@Erk>6|_WY4nkJ3D@_2pyLP|FqTD$X`Oa$Z&}I+v;1T;u!}9y%dNYlh9K(Pjce8
zjT1Ib+Uom+v_e3Ay$C)n{EF1b{FhZNpEqZ1oZ~31syjH>K_v%O98`61o`drpwdr5k
z`TuSTbMUFSr%cL)ooWu?{O{T_CCR*ih3y$(`ZXM-2|;ZKbsV&J5O8pzgSrkbcF<77
z>N%+Ipn;<lrUEP%KerTiR783kIcV(Q3I|s@YW=N=qZV5zaEXIU9bD$9MbXop%Nf*E
z1PGc5Xzrjzfpa-iE8rgju~rURJ7_0av?=i0N>W@hWeQA?S@3(W$U(7#sDlzmHA>Jy
zSkw*`)MIn7un`HR!j$RYptFN6qGv}bS0@K-CYFl@>?(XlA?C_ncLzNj-0b2O7iA90
z9enR#2UBx!m4hc7OmT3vgKHdU4s-`S9rU8SgIgT*c5tnO8zez4NcM5?Ugz@b9Q1Y6
z`XrU7o%D0Cv1f$tdI=?9*8LsaD6!O+s-wi5PouXwxXr=64(@YsyMsF%HB%Vqs56##
zI^fY+PKAgE&>qG_2?ja1%fa1_8a;T6{~iZ?_lEfE(`9@%hX*F_ckqCNArAP^&0t5Z
z@YLmtqmG&^b8hvpgNIng(b4Z*HP_%Dn#3J-NR@wUVmL@R@EzpXA`VRQ9i$y~zR_}!
zqVdQ(Fr4_<1?+HgU0eNQ4s+o`1UJ(&l4Dk=CpvJ#l6NrF!59Z)9X#S-n4{*NqZ~Dz
z9PVJG==P|19}_x4C_}l3LA9wc2mH|vD&BY}XPkqH4jy+fUNo8D;OwX<-3#&tEPo()
z!eNqw$r8Hc+|oh+b(`v7nu9eC);gH(U<Pf&!D0t99n5m@w1a0HbsOkOi87bPUmlw6
zU=F*$j#4#?6u=)5&OKS)XC2IQ@Pfk!J=E{fd<V}vSRnX02k-9>@Mr|r2l%$qLRQ79
zAXmDs9Uh=0-|?VZ<oxfAl$RYWaqyOdx7i&Wyy~c9jjz*?XinY3{MA@4U>Q4I74^Qv
zYtH|E&gfm?V5NgMIBpyYz3HflGap(Z=3z_Tcw$?;<6spBmMTSDP~z|YyAD=6>S<*z
zp1kKM%GZ@i*Ev}4U=#JE<_<n!<<lnRr1S=wv7-)D(<VQ3{`aIq(Ut1WUJ86HVxKtp
zRKUN1*pjD0pF8-%!4?Nw9el~k9H{ORZg%jMqrNJ?rfD6C^5H&Ge!Y<LGie*OVv%Q+
zZg<qjFu$M}^sR&M9QD#EQ#ePyjdwcufrFBZCN6e4*v+xg!G8|+IN0mpPX~t_>~pZ+
z!LKwhvA`c4c?jB3$DTPy{+Ug`N<G-}i&P`m1b%bW8Dm=S9~?_Lw(KdVJ1Br_JA9gk
zUlfNO{6$STsM4OLfsTp+^Qj^>D9_9vb8uYvO~yu9pQj}2zuCbZ^|{4f#-kd1-;8E+
z+QGkKV7ySqkE^o|&T#=3)m@zHqLPcME~>dW&sE))3no=uobRgT-^#9fbBrmltFo2Z
z=sbkawx$fzzraNe7Z<vy>#C*N2Y)-ari)rGYP-su_^J{IiaNw!suQzZAgaggsuW%1
z;$j!|1ve1NCwa+l=%Nw5*Q$S#TG}kkZ#h1uL~x0VOI;MZ2)ek;MN=2eU9@o3c-72R
zeVHF%?AP>O?xLlOwl3PaxWZLSG^~MEF0ORd%>u5gtiK$sUA0_Eqiy3tt!W$#ws%!m
z;&KF6tphBzs}BG3@t+DBauIfMm5ZxgL|jB&baK(zRR?=YT=n`&M~04$b`Z)DgAK>j
zy13}-s=i$Aq8n@YP^i>Z!yTVhVKwr8Uw0QhTs4T531uY{Go6@=aZMux*SP5EqL+)_
zu6k{TkDsj3&*LHwSDUYOalMNhT=a3#mkq@FY#8h(^#2-*gAbRE`@3qn=_VI9vi9Bx
zRxBfv!{XoS;x-q%UF>mjyNf$q%y;n|>%_$X7sFf(cQMe#AQy&<gp0de-0k8a7Z1Dm
zs%G#WSG`(uzpE}O-0R{#VG=WFFl*Sw5L&{OVK(1`0!S%O4oxD?nrRcGiE1u%SG}_|
zv{2hgu?N>hnldgdS6OmOn2rluyfr(iOP53Wq;2b1##Jj|zO-q!kcB6JS+k*Yv=a#(
zD)bRoEl`tBvw4)Mxp>0G6c;00jC3)Pc2%WllvMawNqMx?D!a@WX(qPdI2Yqxq*Cgg
zBDx7K*fd<);?L0IE+$pvQl)6JtA4+hj|fh6F^yH-C;TL{7Mq+wYh*`Tr5@<!B#72R
z<DccKpAwd6wu?FJGA`!QEG6R8LYcxdE)I7KPuN~cOgc~aW9}*C0QkI%1uj;*c+bT`
z7caPY)x}bgf6>KamPqg-7cWVym*YVuLQ3xvhQ@=h2>;@u81XU}%U!k1^0tfDT)ggL
zg^QK0`g;!Usd2lF*G1oO)iqMOw<-Xe^6f|k=b8ubjzs5$qg6EEf5Y$6klF+Z*0@;f
zVzY}aF4nnN@2Y=1`JC0_;sf@(MxjqxpYI1ZuwT3Qn7#h};D;_sieeju@}?L+yg3*6
zgz|4kCbcQ!G=Z@;N!-s|H3gve3m0F~AVo1M%s>91Vqc4wH(Oai*4S1T+gxZZg4>1e
z5c-XaZv~M59d#2-d3tvW{-F@Mi~ag%#oy~<AIHEn>ZY;Z#gFXlX`GkFPcD9TaoWYd
zE`D+GtBXHf9CC3$H2=-T?=0QFLEd%ceYb<cWYPX`!8s0>r?^PP0v=}na&gSXUoQBH
z8U>EH;N0iqedWhpoN)1v3tpi;>Ee`&ziByl1UZFy{>L&p;sJdWhYMExFOM^{<U_^(
z(abpVR99lm_nb7&O{+>HhZChGUzM^x&rd6Jt)5m^Q8|q&X;e+CDIUd;R%>h3(rRYM
z=uDikE)Yoy*GQvg0oO{Sb^+H(<BBVkvGLC$>!r~&jb>@oPpezK4br$Mjf>N0n8qb(
zT$)CsH25cXjnk+%J48U4CTZ{jZ@a64(dI!O9~!hs{n^lEY4!I*Tw`pWMvFB6%N}7-
z`|>o}q|r8wmdsQ*S5jL6*Oqs#=t`}{%ih#3jrM62rx8r!mqW$87Rsxgfwa2wUL<se
zTn^=(P2NJ~g>m-2NE#g|KP1B9MAIlKl#vDOm_{e+|79^xymS`*xmU{@%H7f^rFR7C
zk3e_UWE$opupU8K8s%wh&SOg+u{5qqV}^&B9<EN~nl$VzoGf~#(JPI&(s(<K-f3K$
zhL?t)Mt(|3pEMpwV@Mi()3`2;era5v#-KEADT>{Y#-G;&Z%ZS!Au#lpP=5h8rg4*i
zn}ssy76G>k?VKxXJvnf@;5&rgnZ^JClpL7Gz=oX(?n>kCG`=(<_oQ)O8lRYvvkyn^
zP4k(W$k+dNyI(kD4o>6g3nBz%Ljw<{@#GuD$uu5H<KZ;oX^?s9{2(cvCSE-aLjXAm
zR@XNw$V|hc0;~#F)Xkx68V+$$ES<*VMKM?CqM{fvT_%l>iekHqVt*IK2y(2VG)AW}
zhUS#UBWa9cHM)UeX$()}(KKG!eBSGQ)qk*7(8nZ{-Vtex6#Vlr6*^~qaQl13W78Oy
z#=<mMMdQ<$kj9iWrlxW5`QSA-L?)*3!{#8}<7rG1JXz=y1^(nG1Jlx&P7A*~^1RR)
zY0MH(uQ)bS!0NJ6hCZ3b>@?=2@l+bqdbNLAD8XEjA)tFkn9rs$Pr&?w%yVoSFR=Mg
zV1WqlUS8}D4ZV=Yi)k!M<E1ou&JV0eV=*n3#ZTkaH0EB^c?pB+M3$Z^+j6X!-dX1b
z)4x?(D#Dasmd0|yuN6423!rd^X`z+ugX|8|LT?Hss5(6IP8zGysGLQWEZ$9HHM?O3
zS7z|yp75BZ!S~Wwlg8RK)}?VMjl*fIPvd=7R2sX|_<)@*jqlR<p5u&G_F)<uslYeE
zU~w$2l|6oW@S`+7rj4cXX&Reo0G9{1rtz78uY{8GxqvT(ewoI*l|y8HT?pNr#+CxU
zt~j<$@OGi!6!_l?*q<vIt(7tQjx=^sPrdAKy^M57acp-Qd(t?N#&2ot6%CoxuM%q?
ze+2~mSV-+B0Y3}<g+-oJmHJTrk>c3zG$GoIUN*@nn_C=X%73KQQv-hrCFpxL`d1o9
z(m0mJ@ih8BQFXOec9iy69AgS!Nwu7ya0VA<a59ZkY5ZOsV`_h=@lP73CDU^=sFcCK
z1%1w>@t@$cLeI&lYNVUez8mRz;;oj!`2s2ntx}Mwnn8ZLY6v=HP(6bSB&bFPwFJ~G
zNNzC7Y75>j4M&Bm24i(I_(v<NmqC3AYLG$W44MeONa)2GG!($}8)eY`2~}5@6gbTU
zT$;gU0-6^1iOE%)7jO#!mkVtvlnS@XpmhevGdPh!n+)1!urh-;GHAyvGSD+HG6-Z)
zl)?2G+>k+W2Ehz^W^gqZf`xX-pre4W(1_4z1|<SI-x#E1C&Aq-I6}J!Wl+})x)pG#
zfYv=iJu)cEpj^DMLTJx>gI5*s)frqPczBHv6QS#sL2uz)E3{8Rvaf*ag!apzYq`>=
ze+D;Za90L*XK+&n_NM5q8Qdn|<_vBTKxWa-0EKVQV1PuwqmbsE0{V|rp#w7*RN&v(
zAWY6Z;*ATvH-q~!xIcrz;vFLN0il!}a8fD%pm-k=`Y?rWQ%p^~k+)SAi42k%%*x=&
z49pCy3`S%yGJ}-J<b~Q9I0D=ZG6K><138rfT~@qa2EG7tav6NKUj+@#;E@c575I+|
z7|y)zuguWL#CvLNRpL>C$7e7hgV6=~F#^VBFiya&3sssEX<!*l7tSQ1(}Xf;at2Qb
zo>JgU&0u1gY8Sd!4i(QR@MmVw@`TcVb_R2Vxlrg+LZ8WCZb9<t45p=3y**pt%*$ZD
z;O7dQ=LIat;3LuS1rEF!EGmS)EZ`-fi-p$i7Fv?QD}rCmV7Y*$LYE0;b`@3hS_ZEd
zI4d$(`%jcXZ)WgT20v%;O9pRe@J<GsSm7eJip&>-pJwoG2CFl8FM~D0|5)f+p&K$-
zCt$r$CiuR94>G9v+5c?*!wfbG^P_^y72{MheL}UR?MAK-5B@Olc?Mr(u#1)Xp{mR;
zGuV>BR*CYJ(62MtEZ~h~H44ye%ivq#Y!~{CQ1UCf&vzMoU*PP>U}pjUz~OX}YRBCL
z&K?1KGuS6!e}Vs_fS)orI!(#{n!$k#PE}Lg=Qmd1l)&MF<nI|AEZ{!`{3-NM2ImD!
zDgT#vj|e>~^q5cvofs25$z(I&DCD*{_iv7|8Jx}FoGear*ry#%h@27HvUw>nng9L&
zyys?7>&NJMS)8ARH6c<di<>4y$hkZiD-Fh)4~^Uzj8)B|S{8a1Mi$7TdKTZl9~zRy
z1zFU{;+8CK&7vmL$>ORkuFj%%7Im`dlEtUH0vBdcm&}#LS7cEyi~3nyCf)`@$#0m&
zMFo6u7Ed?&Umt0dMPuPNDTH1k;8K1VFZrKsG!;%Wq0O^sQINb`KufChmul!MvuKq?
z>nz%25zZnap>4A$7SK*;d!YfLj8c?EXBjtw!U<)uy;2b!gXp4JbSOxcWHEe(GP#Zg
zPAA4K;Fr6jYZiAN3U(7tX@TEeK#wfS3Y>BQu`H%cP^n#$#iM(J*Hd71pl22%+lPCJ
zK<|S5wORBj;J#U0SHS%Q^!=;b4OyIM9PBUN8-?B^^k$(uE2%pCv0msls+R@jZ_nZm
z30gBRaDDag`hCFxSq!8VO%Dvp;w~D%-9h5}FHsG2w@BV2^j@L&3B5my!2&4rKo&i|
zQlrF!Sv-_QE*N__i}lq?;#tfJ#uC*_H1U#i@MtiRMKTMMMwrC|?Sr|t!3V~N_8vbc
zmBlmPwYhkFY5Nr+@`>Fn(pj9z;=e31S!A==%5(;mds+Bdyqv`n=9NW0i)MF4{#y_k
zn#ChoOwQtoEQV#VaBOG<>yxb}_{5yxqggyAm_hBvhGxtQjS}w!p`)`HQwSX^V4TqL
zS*+<AW|WDA(8sfwB>0|rA@ZlNn5VnFn8hLiQ?r<s#q=yz1Y<L@m`P?<y(C8OlfryP
z=xm{Lgfi%<Ean#Q(*i1@Je$S5EaqqNoG=#(eZC;MAd9bqF-E6*Aq!?l@KRR&gTrFM
ze4?M6&ZoPP4r~^DC5sQT*pS7mSuD+BakksCELLanUKY!<crA<Hg0a^bF^iR1R1U@H
zeItvGf0n-^l;F)Q-YVd?vxrSCyF3(IC7gGK(o3;5S*(@x-_K%Q77u<~%)HiTQT3|Q
ze%}`JfA9u{V%boP%n!5Jn8laWnLQ#D`-p={7MnPREDU{|#U}!OZyDTBE%=$>T`kJL
z$l~)X2q?oSU!_B}KMD*P9w^^h{Qlm+*I8`NVhh`SWMJQ2%J>sggWK4zv-pMsS{6TX
zH2WZMc46^%S?tW>hb)M{7rH~}wRNMrve=!)ej0gMX~$M&dj#xb0b7;r&7x(Wsss#L
z9Ew>^<VWGt`*Rk*Wbtbj2eSA*i-TG8-&XvaP<vZ3U5&w!KeG6fM*D8@Nw&ft;X`bQ
z`y;hp3(+0sIQClTuPlxTI4bm*(BncGdV(Y8!7#xo;ruQ1pF-$q0sl&llsTKlIUXMH
zFvP>T9x8c=dMNR5o`>^2T<oEthsqwRc&Oo_riZE?s(HA;LuO`(4g#usoJ6;$_t^t&
zD=7K3n9hmv3q8~oP}{>_pOx3~Fz>T+0tVIdP~SrX30+sFgf9}jK`_M{d1&mRoyX;3
zH1Y7}*1(k>T6ws{!=)ZR2*qB0v3PuO<T4LUJrK|}6VO~}3lEojShFS4vJiTO0LI!G
zinaF8#zR|j+Ls&+#o7cT1EP@{;aJOXEa0Kv+HlCjj3Ln?4+G{zx`t!Ltc2c?pwR2W
zv9N~-D=i#*ZfoS6>5-RaMLKxs=%JT~-X1!6xM62;xrdmC($&SCJ#-P!RVX>#DuB@L
zLVI{96QKXsjsn~31+Vh(X^-$VTm|w#FWoJ}LOneUt`?$8@2z&Nhdv(e@NlPxrR&0d
zJ@of*qlfFLzlZDDpgqdyhJ|CVtPS7bf#8VV@g@&9d$`rZZ62Nt$8Hfy0XhmZo!dRk
z`L0^)KSSwW!84b48{lD}hkHES>tT?Ghg${PRS(_m;ha&SyF6@|5ZZcvxPrNPLGV5i
zSUfUxzXy8h1`F7*Blw_)hdkIG9Lji@JTpL-^bjv#&4XURhKGdUcU~!?m?_xukfH@X
ztvJMVL(c|X50878<RMK{^pN%7dFZgYcp{siPLb~+=OORm!6Bh`JxYgqctrTaJggcT
z_~+~5qVD1L%ZrD5c+|sV62w>&1dQ-7Qotw=qXmrdFiyZ&p;uTT3Xd23+L>bFG0Os^
z&3*`;>KK~r!JHYGSstD$;0X^?JS^vbsk{-~achYDX&!D`5S`9aFAB}y8k*(dNe|6(
zXr9AtHUX{IM@t`1d6?^Ar-vUrJni8b4=X&Z^l;_k=(8T4W1~D5;qufx5A!{>u2s8p
zrJK(`_jwNsJS_C^f``{Uyzb#e4~q)!B@ZK>5714yJ-FDz%i>)^4Q~%t@L%!psxX%p
zB$rWn!Qr|^l=;7;808K2O<L5#;vH1L!`mL#dRXV-9k$4@a=Q0e+XeitfYlxXJEIk$
zYlQRNhUj_^FO^0=^stegh|gaO{eU(mfE@13e&m7AVt?%66Ayeag!oern>>6k{Legm
z?y08?_-@P>!lA%c0bdIJO6b=@Hw)cTkyqmoCAYDo3G*AF-wGxFI}f+VN(rv-Ryy^a
z(6T9NJ#d$Y-5%=rxX{NQ4|_eF^l-|<J`ejn{NdqG4?lWX->CC19)9)kli;6)PV1uh
z2RKmtQU1G!>F0z9ek%Za4|=HZz8#Jo;%FR+9idhGp~D`wgkygR{XHBz>fsm%!$|D7
zhZ7<;sbP%5og#|<?cpB}@KN2zX%GK;ILmJ9<Doap&UpCG!+kZQ%YW^*V{G7#NNjTL
z(78S;`Kaonnh%#L_^9H80_Xdf7Kv3BN|0z8UUwu&{^8Ov={uW(OCqrgeAMvq{<yNL
zyMj!xrjJ@aYWrwfyY%aeN|qblNH<1eq;-AN^U=h|@!i2m&AQb0agmQypQy3Dw1JNs
zpDrb6v7-259}RsF&@~d!*vI<HL3%IoajB2Xe7t@|Npl}FYebs*9F8K*h(|^`wTqIH
z*}})Fg^}`BC0F>k(#Lx~*7#`UqqUFz%*e-vGvPKq+WQFjXzQb$k3YLa7XK7!FuZJc
zzi5$<VjoxgxW-4&N61G<ADw*o7nX*7M0`XAj~X2;VRh9l?ZCRKQ%dixdm@#3mlJgM
z(Zxr(kC=}sR%urs-F%e#_;Nb0)s*gz#7;+I-F-BQ#(D@X6H0F=8oSB|)A{?+5@z>n
z-O~DdB0YWd^3m7Fbv`YvTW=rN`sm|h=fA-#M+Q%C4#q|XZ-~aaX1n!c{WR!uy-)%p
z8Y8{I$Jo9hf}4EY%yRu1cx80p7Utq(41;{!=HqrBhL41gJAB;fW3Z10e2m&xHbCe-
zJ_h<2<l`>!-Yt}&<D#)`d&>yu?)7n>k7MG!-^cuDjLacEmK?A8u#dQp#y^%l=;O!z
zWe*7^(AZ4T*!F0Qm_V0Mf}{`A$1oqmeOR;*A88*MAGVLf(HOIEL^8gwtX4_Pl}woe
zHOczO`N;bq_Si-Oh>J>MOZS%z_3=o7)4L=VFHy=r>f<p<ZM2UO0!9j@+AIQ-9VK2W
zSpmlR81Lf+A20ft;A5hXXM8;C<8dF8d`$N-!^dPFPe?{n+4=&Q&WMs2Yk)a2-)X{R
znlpXO;yCYPu8${uP(upLmK+J_=13J0JS{;4Q}>s#1_<W)_@r;ib3UGz+Me&DY=0Sb
zX3zp33kz8=;xkgxMLu3)$MLbk$6_BZi@<U=kdIe<yef%MPo~KxU^-j&l`R#SWfD};
z)~^ZY&5{@uUg_g4A8-43Llk~fsH(AjDv@_Yy{}4QDnY^T3SBLfsjc;~&d1+A{$cOt
z0OI4I4{dt!2kf3czV-2)j}Lup^s(8;79St^_}ItS?6%9I3%-eb;)C>TN$gV}s}FbD
zB=j?(p9>}P3--7I{z|~_C9y4m$g2w?TUihv+kJe)%3lykFOSlFyCA|eXFXK%;JWDT
zmAZfLV~3A@KK8S(`S^jOy^p;<c5yH%j#zfdZb_4X@}zW3oRmrZNYk}T4*2-Z$4@?f
z_VEkNczN_!;jda6o!d1+S`mvS`d#=-KP@Nc4-Q8@4zUl$LdS$27W$Xau^mE3d>j=_
zfj#R=j~DO>0VjQ&q5<@eoLn2Az-b@<`nV*A^Y4nD@$sLJ3v#HD!&#0YHKOO|P&tQl
zayU1K%?HBE-l$qBhw}tam{ms3#T{Z*a;TcatJR~(p<RdA;Qz`OoGGuC13|2Ml>F*B
zG<mX&pk@xWa=0jmi*r0DjL4H^^>V16Lmk2NUMQe$4mFpQ(c6G|Jy~`~huHqJ<yUox
zov9v8bci*~p-~Qva~RekHnl^nNe*{i5M9_Iw)Tgr1gHKhzch#b<&n#THkEQ!x~`<k
ztYC{AF3%yDM<|b$Ib4y$@f=R%aAgjya!BQ1=g>NbHaT3EL%$r_=5V+}q*D%^S*{$~
z=Mc!DD2HecB{>u`sT@K%eA^-RUWZt%juC<i8fGbSINBlBt7C*5x(*`NF^8A71}R2Y
zyJM_N4qbCx>nrV*L$@4CbGSN(YjWtG!xyc(l;uz^v3iIMqr_Nyk{U5%T_p;TLrevF
zQoW8!0n*+%T$@9m9LVo0i7-LNs?#w_ov+W~h8*t8;eJ+84maj7h;^95O*!10!yP%?
znZqqP+?s>=NAc}Be1AvDuRVet{wTgJhrV}|5IoelGdTlt7??xd#+@HN+lic$jg+f@
ztaw!8&UfcPdXETD=H47A5NO<)bZ`!T_l`cCLp+BEau|}sgTi@;Z5k_~o4hEperaUX
z!jP7Oo<kysWDeWD2pA%8^@s=s_LP^HtgaD}ejQ^&I>rbr@iNHC!Oh{GJ45eQDoW>&
z$zgI1PvnrLC5*2&HivO+`UwFq2S0~LI>vH2<b^X-=woCGpv<rwh6{eQz<Kl1N+Sw*
zq<~REM++T8E7}%hM7p_SLgR%QXcL(rV4~2+bC@K6GS$ado07xS9M<RXeh$-en4ZJi
zIh@%RoRLGNX~D%gyqv?#9A-(BCv%vW!+gQBbC@IGsT}6!@N^-~X9YaN3a=cl&}7M_
zl?a~8;e~?C^8yy+u&}_Hy0$81Ud&;Ua9%3#53H@4@<UvzT9U&n?Bl{;Q3zcsU>RF^
zSYWx}*K&AW0N2Nu;L3vJ8v@=G`c@93CA)VDp{sIuSMX|~?+INabgfV(wT@kHU`K)v
za@ZiuV>x`7!$!e-bNDESk7*}4Y|r77LaZ-y_*C#Fp`Qu;yb$^Y$FZQ&lkTe=zAo@L
z=dh)Kx3Z7)QZnBNXQ$9_3!&e!cNFjr0hFik4?=ed-7R#FP`1Us9QNn%V-7#%a7dVx
z|2c=>1pgxRSD^<Ap|m>6{GP)>;rvnH|C!@s0?OVF3+FGPM}!_N$h;_V_q7V0<S>%M
z1$orS<L?~)$)Ra!uu2}MbNH9TY#!FW$eA1;V~L&RfS<>IIXrbv$un!p$vHQV=eI{H
zpA(|DQXZtkC5TbZ&!e)$&FqcPyYxiWs(Dn)<I8bDItZwq$I~aO()-eZwl(v(B#%q;
zsFg?UJnH0eVICLdad94X^Qf0c0}jroiYF~D?%t!UejcPNI>tWl80)s8_+ZBvgBqLB
zhIur~qj4UatCp^9QJJ)fV1l95N-xW!X&$ZeXq`v1Jeudx?$YoTd9=vma&ay5sM<*_
zeUNfBgO1aXEAuE_TujLponmeBXqyLTD@A!V&1siM`#b`Y4w-+KmT_vsY0-i?rNtsf
zOnx|zNFE#W_$ZHP9wm9K%;SwbI^@wYkHvYsoJXfTI_EJsj|cMjZCa#D9yk5d>ApO=
z=FyD`<gu+<<oZ0<T_fG|=#fWR9_1q0o9BN7FxFLh{C>ETz9LF|bspCUzh@z|7gOsL
zV-Vf7dGrx}-$LkhdGr&Ut*!)a$fLh_Z_Hz0LFT4BZvKBfT?dpDMb~AQv=>lv5Jf;h
zRG6Kf*&ShF7j{=rKtx56AVCln5S6SrGd-budZxRFoRc7e5+nzaBuGY4vY?2lWRZ-B
z3jDVp-~8v)x#!mF*Hy1xy{hi2?&<OKA0N;mCFvyO6~T^v3@zcD%hXvUUBv8rlCFMq
zOP$r-j~*%hnve`+^^zvD)&3dzZ}{=1AEqCcH2Ez*2KzC@k3N3%^`oC3tJh`smlH|e
zmMqPFCspRVLf&Ke2^pA@4-)^-o=%Mmhx+lnIBJ+5@B8tA=mh;x{TQCo|4@kEk3dSo
z5_oz@Q1>G&B$7HB^+QYXaxJrB!VSTAN}k|AE7F98P~o0uY(J8IjPPTmAEP*+M02#@
zL_a3^F-G`U!Eu7)1$p`eY5To$CW~-}A5(-(6`UqGUC>v=>HUv{&lH>`_^}`l@p;E5
zDL%)Kxhejskk16?Nsmx@p&v&|W-az(i65T}XLgYg?uC*srDjULOvrLS?kU{UY>-e^
z`|%a;yT-e|;B@hei)oFJFa206WS!vp)X@!oY!p8H4@a3Vm2L7nFRE=8{915};8wwH
ze&+*IRG{)sKlb{u&yQVx?B<m6pYn|#mrlFC6a1C~O?B<zNPN0r)#JYJMaZKKeoi0V
zNV&VsyP=WCb;xy)A<e-X!0G@F`|$(EW&q6sIO4}q&Qt+Z4B$tOeV*>eWj~Jj@v|T2
z{LVg`vjrsNS3iCca>9>@p&ZClc1&{pmeToM$Vop=r6i~QI3xUQN)joWah}2K#|1yu
z`-}X^A-UDV@>_n9_FF&CML&N3y-52Co-2M__2aG|MFP0y$8|aVrXM%_m}fZlv~J-g
z{^fUmZ+^IOG4j7f=a%3<g8%yQpAa6sE#!_Lf40bAHZ6ek0PYLm{(#fKq5+f$pkx5W
zBwJi?P~*Zem3%c$xF7W@838m2C=e_aK<NOVgnC9cF6`A-DI>z%)1I<&7E3E9<oFd&
z`IO|FiAtpaDhKdb0FR5XN&r;@s3!b<GwlH(4+l^)fa(D}7;xTC<7;UTrAnv~z`^C&
zEWDOT&i$NTH-Op!)c8_)M6izF%XJGVsTaVbG}26~&vIrvJ9rBl7ZRV4bF%`-4xm8*
zzn}6n6p1TUOQsOFpb~&5CHD$x_Hz-RkYm~DEbYkv8U@fefOZjAj^hNpIMy>nE!k9b
z25(Yw*~U*Co5_jI1AGS(;Q%6{P!K?e0A3MZ7{F5jv=H7hfHna<8^F^6JQD!7(_0Tr
zYZXB20QNTWwtYBjWh1BS+lq3#0Lquiv_Et`7Xb0lW%u&|%q;C;dV%%`Z=aI96u`?V
zK4+$@V*s537#P5y06GWIC4gQ5yiQB>wB3yhUk#vZ0Nn!U9zc%(UJKyU--=91OY41q
zM$WY&pBMG?44{8u&dS41IH8ErTkLt8!T{b7{-)qtg4F3Fq_1GV!2ja#odDhqphC^8
z_X7ClN&X2}+K59=>ebghfB{q885)BF7!tsT0r&$L8bGX^)BFzt7#2X`vaAQXd)^Pg
z+T(bbX?TEdXnQ92boR*u0jN@4P;gQ~aSB7iyOnjKA{u}u*^dLzS#kj5Bx?xTg7E+n
zbjx2#%M9<W)h?5D1wg{FPh=s<07i)BNWoEpqXowZQfI7?9`)143z-nW!~iA*u(q_P
z|1GDDlLO$r$CLoPm9nOae3~E?rUx)1#Xn;A37?gcOx@_2&2s~o6TsX6R<hIUWqc~N
z^edM(KY-6tHp~;!@}{yt$U?!-1s8FcL>)602e3pW<V%Gt3t)LlvLfL8CWVLoJX3`D
zMF498C>KQeAiktM0qhCjJ5gR2z_tLk2e3YM?gk+n1NchFCc({uUkh##WU*Trkm*kE
z>=4N}Df!L-b_rk5M%f)epY5(qOC0}y8{qw?)3e`mfH1BCxF~A-0{AI_V*%_B-~eZj
z01k2H58ww1`GNQCt}<?A&1U5YuL6H6M>+X(v~KZg!R)W!^?cboZGADvhM%RVUjz6p
zfa57kehJ`2iVvvgsQn(m$&{p5C*@R%pAO)R@Utn&xd6@!|05;2AY^u{k}T&EXZrxI
z2XHxc^hy9%Q+)e7#cu@gR{*yIxD&w50REOkuT^twxD~*^?4VN0KO#IWGv0r~;~yzS
zatiMXPYWVFh$6xNUDv+sQ@m&p#e%pqGOcV7#e--OcHJMu@*D0F!kH}@M22t(mI`9<
zDpzU2GJ^LBQW&4_^vI!%%r%9MNfm;q7(_u3g+WvbqH>V`3ImT+T_uQzgj5x*7Q_QV
z+;w@XOSaF@v{2mjAkX^Dqw(*1f_ONHnnBbG;*lWgh)(SwHa}bN)d<hpYfd!Q72y+t
z%+?FyQQ`Fk9}|3Ba9&Yo%3^9D*@i*5gk%a*?hbNe*0G<-8$`2|JS&Lo6!!^vQm|1F
zjf2PuqDks#u8^jJ`fJEb$?si!oAXxyBB|fg>4gcKT~7t^ToCQ(-XL1ap{E7g2tE@;
zD<Q1~AIfpAWlYaXwyogq^-iOn58~Azx(4xr2q}3{NPEGT1YZuKgOFDQI|_CZ>@3(t
zkmoM(m+U6|b;0gI^a$d$AV$_s>ls9^AO?9HFCBF`*lnhRy;JAD5yYFq-xBPTlJ^zT
zFNn8OlKw*83F6(9<XRceKo%avkT8aZF_<KXmqK_sgrPwU3*vPZy;Zy)#0Np#X6Obn
zJctj2*u;<s!q4stVsa2uf(TOighvk|7K9o^D2Q+n(@*447!9J_es3g*zh21s=2)J_
zF1YBfUpuGuey<TkoXrgK-{p`90w>+cAVvr=gRq29XbY+HyDQ_1JQnrdVej*M-J>}l
zR!}Ac@!nqd7~#y04Pso1j}PMVJ}-q6MTcsWNba~urUo%Bhy_6`q>(|)2;#FK<^}Ol
z5Ho|A8^otU%nG9PrQDB$m@R|`Gg0!vk-SgnkRy3>1Szb1#PuV;syo3Io|8wzrg-vd
zFZIk1f(>N$^B@)lv4&H35E~D<7YDI4h-K`xV|hzx!+!58cU;S9*aX+QE3TD6tO(-d
z?mVTGQ{bu~C|oT_@<k9?8y&T^bnl$J^+9Z4X{(fVf{l9nHcAy=NeO-Tdwu)7J*(v}
z-RSx{h%G_<62yrhwg#~+h{Hkr5XAN%b_DTl5PPJ+ok8r9qG%^OZntoj{|yISP9e#6
zL3|&?0g->Y*0VQ=KYM%j2eFSHTkBzB*U%MR^E?No(+>slPSd>44mf@|BDVb$#IYcb
z261qox7H%}k3l4-x!B&HgE%f8dv~8V?SPlPd||zt4*WHU--5Uj#MK~vXS<|nJdw>m
z6~wt9&Wq)z1<wR=R!Cug4;5JQA3<D_y2vj`U4I5~Q3xena|$oZ(dBP>Xb(@hCc*Px
z5Z8ma!H5mwW)S}b(RN4P--2}YE%v*3gAS*M>6U-RA!Bk1f8Foh)7x{G)4qyK6>b%2
zD$-TdR8dPsQ5D5hR8Ub-MR64$d-I@z?kb_8q-1GEh6>*iCy<DxRFqb+ZNImSibBnG
zzlyH>i(VCPF3KY*D?-Z4sTjS{RbH}u`KpqN$|_Ed_dKYgit4!c0iJR!ud0fEWisi~
zYN`{Nj4pOlb(Wduxqq(mP^z>VDjpU-erg^IudU*i+gnFPT@{b0PWVOmV*|}K{<-XW
zDjrwCAxZwIiu$TE%$Xij(P@FJ$yN6ga+C@UR5TRsN=ewuiVBa4mMWfB;bqCHGmvvt
zWOL5(=J`}S$yV&n<D|i$YD9SjB}YYLsvUL$jMzjJnhH{L=v8-~ie@UBt4>%lND5Wt
ztKfJnpo>=J70$^cr~D~)$0BzNL0a;RidHH*tLQ?{sA!|2y^5Dquq#>7vntxEcuoc9
zE{5@oVrM(S=T*EQr2XbR8c(+{)L*9ZMR!MWGAF<eDqa!EQ`7R8T{P6yNp%KA%>{WJ
z`waD0*##=Psc1C8(@S-x2$Jq9dWeMlHPx9~drJ1V`R*5Y=TYYk_Nj`sD%PoZOGO_Q
zBUFr3(U-lfVu*^NDyaOnivFxlB8Nr&e!%;#>deEO6&VcgsTiPQpo&2fhwQb%(sz;H
zUF5Uo<PBp0AMpBB1b7ut@qy}0(f4|JxQY)M+Y8(bux{J)gDO-Nmh?r4&DoxxP@ORz
z7PBKNqAIjhiwq&UU`$2RgL$+qF4?c!WRsgJ?hQ!}PiOvT7)!si)7kb>>`fJOReY*q
zjEb=;rm2{&Vw{TcDkiJ^?UieS)J{_;shB97EuuZ_(|eIWg#or9Z>oxRB|IDc_RQc}
zIfXM-%u?|YN6--$<@CnK60t0Yoy$m`E!j^5=LlN+y`M=3Em5&l#XJ@BRdD{N*$Y%G
zRKXT~u7XuCcowNx%#l(%hf@b}Pfp=7wp7Jx6<?@WA(2nbm8vtnvpVusqEAA}8gars
z{-x-!3F}!nEeQc3Y*g`;it{S|P_aqHW)+83{6HI2Y*FzoLt4fCyFFV~G#TdF$+?C0
zJe$2;kYooZsJmX0T`GP$=-thjXM`Mfkw1LbOAMaK`%cAP75h}wx#{{|MTe_y&mnKH
zZPtDjZ#4JR*_uUuKn3xjibJ;Nknlx^T}NoZEZ0vej;T1R@)xzPn`JY9RPoe7@2I`*
zpH&=JaZ1H$6~CxBq2hNA$pOl*3}fo#d9F9lYtcOKRQ&=b@{_Fk9ezYt8FR;bMyfc=
zMlE!)-ui{!b1E+76h7keaL`@gY@p&F75}QJ*DmX#iW?jPR8VnQ#T6C%+htu-aa~2v
z6M0uvjCwAMlHtwr*jTo))mN^o&t-MK>%A%E|E(hDxvX1)^cDGkDsFQ=58?C)_Z<~?
z>BA6uU-Gh$A|a%QoMKsKnvhaW3YjgM64Iqx4|q$2!17sR$q?uh?@z8$A(Rf`i4You
zP$q=?LU=fYnjzdDLfH_ihEOepav_utp$g>-oSUKwA!h=q9CD(oB9HF(RuZhb*UeDm
z?Ft7DHJ!^r2oHsv3rh8nGqF4va)OhIW0_~w2ssmM+G7Q^La5Esn4REyB!oJQu0!re
zL*N`zHw0ek>V@!FlS0mloJp8vMVw0?3prP`#|3#YB5xRiD}-l4Xca<c2<{MaL-?#h
zrV@fDgq#qXgq+V-cm*2?W`&R~gmRydCqww5S`%jZ)r-a<zP;cf=U-3q!xv3M&bL$U
zeRLu(gk~W$4<SE<79q3@p@40ynNt|TQz2Z_vdNi9Dn6OFe7lGEbO`qnIpw@Yv<^A<
zR4;_kCWL20&K+7?!RG~^3!$A5$~n*Tf<p3Q$hnO2UaNh`nL0>1gzyS$4B>hR9Yg38
z!pV@c2I(9^mk?%#Fe`*tc~%I)5Y!O5h0r~OAt7*j?-9alA@mR79mYury+U|1gtyqt
zik{a)Sn+aRZ^i?1iX8U7Az4aVHYqH6+|?(9ej&`==I%=;9Pn1H?Vu}~{WiNGn!V_*
z^SQ8h*`Xl}U=&?)^9S++Ll_hSf6qQR<ouYOzjG(&58Lnk=6z@g!=%UG58=ZQcwP7)
zgy9lbygg=6F{0ST{*ZIY3xu2-eh$)52;mTtA&lTDAw(Hqqg-)1;eb~QL6-u_c?ph*
zs|`WkV)1S&5rP?V{#wEc!4@*}XE*;#f)f6f!^jXug)og3i4CJe7#G6$5XMM$tRU|M
z7{(Jqh?UP|nk;0Z;3TQ~o_vZ(rV3VC?3}`D;tUR=-oEBR<s&*Us4((BrgK8r62ev*
z6T+Mjmec3r|G6Q|XC#F1DdSljKKm7A9!F&$zu^!MeZDY+&qG)gLXCrYXAAQ_{l{D9
zsXTI$#UU(Vt3zlyGmkIlFAF)Z=x6-fn7A^8RUxdW(?VEH2indjEY>l2ID8Iz)(Czn
z$n07n{Eo3!B#&Pf+8DxDA?K4FU(?7X$|h!q_((Pj;YVZmom(E|hi$iouswuBR1RTB
z2s;^{yYmh(#zNQ~!gnG3{dyMDfZ<sUduM$U0`XhHJ&dJ~^3Sg+`F#j`L)gce;kd%I
zpFuS|>mDazY#gL3Dk!|{{t&{E5Pk{aL<mPYGlY=Q$HR-oPa%|2JU_ETKlhLvlkD`5
zvq+8$r~H$B?q5UrjU7k-?{mBQ`2K95bUN+AR`*8%XKj8;hSh1oGlFMBI49)1;2(k)
z1pgGgD0oSbC0q{Sitwu`$*$dbH-uLRqhi<@wtsPEP96O_gj*r}BiVm>*%gKVQb%ux
za7Xyv5Q>D6CP#}4vYd1wMZ+kTl6;b$Rzi45!3@Ej?f<tcQYwtnDa|rM?hE7ol%%YX
za$%HDN#@qcs1!!!FuJ8ARl;~U>|Ca~MyMKgRtnX^ctA*X!3PB&3ZsT3DlpxtpH(xA
zT4B@<<B>34mD1{jQ8$d-F!Cf@FAN`bPGmfqs;hn&kA?BLWUB^>JRzh(7!AX4g^?MC
zH>K$gLlGW4U4)wSj7PGsHz~|Y>12n&EDt>yMk5h64&%%^Z%!CZPCBPF38Se<2Bl|F
z&TO+VnupOQjAz5hms6e!bDz!W!GbUfg|t6b<f$T#ds|AjRTxi)@r-a?s$;fw7;~R?
zbTn_twqZOM#@@EsFN;pQFxpL1o@cRB9fcRdcrlFjk|=*E?0jLKgo%U-9ptQ6!ssZ3
zl1^cC7T!g$(mrQHlBsJL^ae@ylxB}GUK8Fkj9&DH@V5nf3%()9Q{EKvmS7*jzJmP(
z_nS_!{e{01#=Al&c`u9s!UqZtO34R@apArkDhvzbeflSYXCn9@jNxG%3*+Z7J`BSj
z#=<Z@4<kUc<;3}6s6wnT>@Y&Y!-5gPsGugO3&sRlkr75*cp@b+h0Kg)B!!F-91+II
zFkY_e8ATh~c}SQ>hcSJ&i)3sV<H8s(nll7h@&q9h1t$qk4r7Xtse;s*#u9{&ZS=o!
z_mO00hA}IQkA=?;V~&td1bNo&7HM;Ze=7Ky;Jnn)IcJJeXF(V{UvSD?6vpB(z7Atc
z7)wNFqu|momI+xN#)j0nE5cZr;;X_~o#J1Fu_nd86tY%uT^Q?A@{c5j*9d+k!cBsk
zIR;myeQ?RMRkC}-*e7IL7~6%=$Q?p<3holzE%;3s-wL759wFa_@qJ3t?URiCVH^nK
zXc#|=@L(7}2sxC}IUL4_n#u=fN*)o(%3I2~1<pR|p|g&2eiC7sN@>T1{1wK{Fn$T+
zL>Rw@@mm;wFd)PDJ&cna@2N63Tq$yj!+gE#v`7ZUogimA8^$?~m)owz{1<q}Rd<E_
zPtmy)#^o?Brb?)}%6Xh|C5-DLSy#$)HH>RvkTCHFsyuq*Ug0}De}{34mxBl@Met7;
z|AtW_f|3#Z7shSQ=MiU;xsxinNCbCN{LmL^1s98?MUWoBtMxoT*Y*~TU{77eGgK)q
zXYs@-R~_T?TV!OUB#59?ikFU{Op4zZ!TrL^rX=MeC@;K1O48PsRyl$y5oAS>9YNIy
zszp#Yf_kFxKm>J!R2O_u@FBq(f)5MU6s#p!TaXq$BIL6oPGcXb*5pyidIakWK1Tl>
zP|BodJ|4jnBB5pjAq@px5o8K+3o3%t>9xb<P4O4+cb+`@BFKxNSp-i;&`1t7j$qzd
zSCa^GBH({U@B?4`R)5n7Ha1k|23@%+(wzOW!u6D#k{>}q1cedouID^=E8QS1U3C?-
zba)F<Xer1i%dH}49l_iPK8>JF1kXnBP6Y2p&^ChSBIp!B=LjD_I}L9y_`D#qFGTR7
z@JmhqH+#G!*_Q=72)+_Q#|V0iSC|6Rokx3JBIp`HH#zz$Yn<hr+g-AK1$zj-CfHN3
zmmt+%kDzyozaiw!2;LIXCndjGF|D8Qw^Ne-5u9k^9jz(vMKB<Ocm#<E21YO_f@lO<
z?X<xuO;yN{2)>@~8!CKQ1n;Mgeh|U%6#p;+zwm%yFeMMyP7D1%k06rbt;=R;!gaxz
z;L?BH1}`zUU0e~G5m*t-61g2gGJ+`)OqJ{i!I6T0Uv)<MDB+_8#|VxU949zla6$wV
zg-jCUS(Akfo1sh-G9!YIgiIG4Q_tz0nGu{{rHuZ}HQ}b`@LNvTd>p~-2tJ9x)yB!r
z5#_s;9sU`^GJ@|T*c-w82o^-JCW2P^X$wWC?pWXQ2tKEuD`hQ;pwIov;s};R@WX2N
zrF3N}l{+a+%OcKI?2YP9?JFW!STS>D1gj!gO(#6()bfRtmixRDx?e`HHiC5#tQX-o
zf*T^(DP*JI)+<H660%8fGka6W7C{!WRmipowhP&jk{@VNShu0Fi;;iCyIX`L-?GLr
z{731Mdm{Lb9?Mbq>pvE<FM|D?4<q<jG!L*{5gZYIQ1DO$hlMD*(~6_Qe~sWbAwLTK
zBzR2l=Ln7q`9<)A;QLQF=l&kS$p|h)@Mpw%D{0U<*Qp3jM{p*BK$>zsf(o}?XN5C+
zjx*j3H_4tJ${!Id@1b<8+~lH^_ICugSc34&f-L+>1XqP$6TF_1--zHZ;Wtx~W@lYz
z|8u76eSTNXC({0l;5Ms{@;mtjcOuyFo>DxD5>ecZphy&HQAd&<MNuK1E3OUyDaE4B
z*ALn}s9gI?VU`QGl2IUvQc+xAtYnb1P`>=PNa-lbL~(x<Wuwlt6P@EY;XdIL(=y8m
zp`^T!&SyPcKUYrqm5x5=oter}RAHqyirJ_dMYSlh3}hR4Ad2cyzIlQcIv$MTp(uWi
z;&>D_qIfup(NT<vqGlAeqIfBam!qg1#UoKPilT88b)r~2$=7d*Co_t=JapVuFN#N_
zSUuHOKZ=G?TpHzjEQ-gYctV5?1bOt2CWSmi@_^}cMUi)?ph&>ujzWoIRH-bFpf`%1
z>y<0xeavQwBwNrY_@v;H14>R5O`>=@if5wO`HphtuDfXzxh#`DU#&0|@GEdB-dsq2
z6uaiSd8jZYe@aM;C|a_cGBSrvcJXNCa+$57XcxuvQM8VtO%%^Y@$S%Urstw)D}4P|
zF8+>Y%ogRc-~B=q^LM*FL$lipd65penjRdIjUm}(zV>#A;*}`gi(&vBGR4&~itbVL
zU?CYwrzko{(Itvk+0p4rH<~v?>B{g}=t<Phda$m-?CL?vYjjAI|Lual?5`o&jjyKn
zisJPsdPng_6mN<>Uku5vx!uDW@7ej52un0A>?h=%C{EsR@zC2*^p9fg0N;hd*#paZ
z-eoUuQAl>&a1D%NP!!=PBBDGviua@VAc`R@VW5wv4;A?^!CB?J!=v~x3N^}40%kY6
zn(mJxAa%_c;A5FV;q8WI55D0F(bUFXI)rYCGJdY6C!-h<g%*V#MJx&<3M&d*{1%Ub
zr?7;C*v9sn(rQZB!0n~7$`ABSmBx<bnEJ~#D#~woX48HeNvp<2F)oTFQ7nyOd=wL+
z_#}!sQB353+N(^9qC;4jB)rpdWpWh6DJ(%Gk4*7VXSxVyMDdZ3nSvijF-u74sXm@E
zTQ~``bEEi_9kD5&C4Uy>TRm75Ru&7+kK%I<pPF7u7DTa7gv}=?%q|kX>}vYGqdED?
zvM83b>lw^ZtcYS|6kkiRGrH%misDQ58pqmL-)g}xqFBQ*t9x#)_E0!1tgNH*9(T7j
z9`f~3Y>0wnqaevwQEU>vIVGXy7V>(^)+n|`!G`ek?Hu@;VtniVt{Zkmu{(-GQ5=rq
z8%`|U^W&>M--_m`q;F3Y-$n5~`>39>FN*z9>=piZFApULq?{{Le4DB_VSxuFOBXTw
zgQ)!!#gQmz!%@K>1@9T(UH2RlBWcesQJi2uYW(FXevRTcj&}{uX!xB$7)5yv6*QcR
z;&c?ZqWC9@Gf|x7<P*i^D9$kw#{14k@dp+7UrytF7eqpGQOKWB6kbVZmZ{`&_mwEF
za_$}PyAj1T#sfoig}Z#|g1|&ydO6RUdG7tD>n{fREZ5B_{$?+X_tl^7(<k^S`8SIH
zqA0GRgod|U=HHH@h=w!`cQ~s=(R_^0eI@<oOjmgnq-%I}jE||9hN8kNO!PIJ<=TAA
z-JE7<*s{~zYMQT%h71kRP)c)JadnfISX#qhQ+-U`TIb)V;eHKeMgN0p-f|iO(|nv2
z$v1RHMGciSJfWe1hRPbMXsE5>5e-!}l+RHf(wxb*ns8<x5K>*keUp3-Y6$5b3TtS1
zSVK*^x)W+?_+hiR$}}JG9+^JTS4YF6Jla~RtD&BTMVHezWE8Zqe0MHn)z|QthQ~F~
zY$p1x{)MbH6$=__aA|0wp{a&U4GkyyJQ}<j+!_>VCf!n{ZXxxvG-PYY(ZH6nMLrG0
zMuJZY4!@AqSO~4+A!g~8Tn%{|T58yK#@$RqbB&KS@RWv&<9zuV3N#Ej<7)J0R>RT-
zbmpmYp2F$A78>YzX4hSJ++J^tj{(q1Lu*#8p}U4Q8lKhARm0W;?zS49)9{jpmuYRQ
z{0$YAb{d}7aQ>+41q~msb-gIOPSe8gdMoWURJ`tb>swa`TGh0$la%lZ^(Xt7I?@Bj
zy`xs<bryLSL00i9yLCIC1i80WQdoWu4X?3hH3T*E)X+;qe+}<wc%AwqeZ4ij!De1j
z22S?9so^aR{TP1i+)7z}G=wjue>l@K?^UI*hFgam@>A(dO870EpDf?I8s5_|M8i<J
zMZ-Yp_rWY}yszgh*C2-Og)DXl!+xagA{nOPeGM}w_&%iD*=2t<-mfde8DKd|CEM4s
zR?d})KEKBQDa+zu;pJOpff|09>>EQ%G(<F5j7i%U)u3sJYe;C|C0>`<BVme(#GnKP
z%o0cCWSJslmi=pMNNS)xBQ#D^pq(QnJ4yp%hVpkiJ4ZX5agEh*<Pl|@U_Y;ie4>U)
zv`51U4U;uY(Xc|pN)1yrOw;g*hB+EO^5suw8->ge{7CT4<^_G8%Acj-s|NWWGq9()
zs5x7*l+V@hsfOFNyq|0MOlq9ZzNk~U{Yv^gM$rs~wKKaw!$OfiKg-E3(y&;=61t^q
zq4h}CG7U@Fs4>1)WeX>l&C<Qz<r+V%n!m+xt<tbs!$A#)G<>09jfNc>c53)i!&*kK
zhOafO)3BcQXn69xdjl&vkTE6KyOH6s$IW@W*rN)k)=ipoMW6zOi&wg~aOll;ZKD}0
zU0VgWC4I#<dbexv9QM3D#<NRvCcwQ6)M>um8opsCe&r%(`c}gp4Xq~lz7r(*Uc;Lc
zd?fp1ZrRV#J<G+96&zql40Q-2;dV{WVa_BBye#h#wr;fVCk;m#54P{8UY;K{Fg_Wm
zlpm9$KMNigtlTg6R}H^$O4LzG$L|_WYWyexsvcH2*iUIV$Dt>oa$3U~4WBP_4;}A2
z%kUoW`*fs_UGRs7OBya~xS-)r&IuZ3H_l;fa2$Q`w9`jdIA3Y_n}dZTcTUzdPPQ6u
zI@cH1bqzP@qVgWT(_Zwpr|kFn-CB4SpI2Tw<Nb$y@v(B7<3+>2^jKM?R|W5X5)b#i
zoaLX)Pb6jCWtY9xNWYfd<tKNVj&vPGbv!UbDWRjJ4ts>Jm|$@o4KBKv-MYgwbeTfK
zGIVE{)3(w&%J8U;hC1%kalej-b=1^RR!2D<)mWPDG?`<hyp9SwD(cR(R#}jwk`P{)
z$gAkiz^N({5?&dr>wH6?$b-6bojN?;x8s2FkPdf4Zw<kv&*azAoy%e!9d&io)}1RL
zJNFS9Gt0%NJoQBKn2z$ZT#xFg&vYS+`c%uis8IO09C||V?$C7hmrI9F$CJ7<QD?Fi
zA>@h>j}EVnD<v{1$<mRXI!Z|+;Z1ZjmC_pP$dT$;BQM0cx)Y+!*bp6g^zCvtvkZWI
zF||N<uDsnV7tm&sLfv^>Mbc8o(>hATP%?&RbhOejLdQrQt#!1~@s5snbv&!{-x=__
zj@~++)6q^x2OY2I&dmS34$k&32q$?_$Jezy?RB*0l|pwe3NH(i@N&>mM<*R!E_u2O
zcGl5N$BpkiT_j8St2(+0cZ8Rm#L{}`cyFhR=`|reb@WO}SmPV?NhRei9es4XDRS1u
zvs(A_^wrT{2d^Xjq)ZCm7KLGVUCt@ry57?<Ku4H<(=kviAEaY2V=S|P3PW@Z)e$#+
z2OrBDrsI7bK^=R(cQJjS<3l!ic0T!V5oXTKW7aRiK<W^Wsygo|oU^Dvj52z+dlNcL
z9hweZDrH?U9jwJ*bvkZNSBShyl2~G}ts|*}2KT+wxa?*ZudsAx%dx&uI!5a_qT{HJ
zF*?TTSfyjNj&VAg-Ste-F;&NS9TRj+6bWZqPOy`7kWgVV$6amjM|BFP>6or#o{srC
zX6X1x$7~&+==imJ_DuHgn1We6y4v%$<>}b8@M9ed>L~H!ZuZd}9iQs>OvhX?&;O^w
zwj8U{gkzS|3op$JbSz|PjdPaJ&PSBbsX5uVNVxkqXWCgz!(3io!I$b-#(0>aEZ4z#
zX@y{w+PN!*P)^|&I@ajet>YUVU+Ngtv~Z)2uXL;x&g?oJ>xFMfNoF=wHgT}ijpKYf
z1iz;9(+jr=-y*nGaKSj=b|FP7E4OcXslQXQyL4<Zeav!!JZOvZEqjwb(Va#2A>COu
zlYFmZuSoU@QnFvj0d}j9i}PF*9u|F`@&kLMi*qi2==7tG3p)QF5I^ZSrsHQF$90@#
zudR3eqGQKo*Y7$`>Np|%SHa%|FPaLEW>ohc=z>!^PU|>B`B3GbO>RmC|LRK4aqqe6
zK1YMEy3aFWH!FYK<BxeR>bRuiKOMJq+*$0otm7XY|8m;VaaG4P9sB0F=G=1K)Nx(-
z4M7V35^}Q({?<VSrdwhv2@O6vA)j?^O1SROlBkC%J;wi=z|}&fNbG--G$B9DD<~R6
z@(-n$WQz;dE1AhtGGagsY7C(mO2tq*hITPLA48cK?u$W*!4t#%F_ewrp%`k!P%eh@
zF;tJ?!5AvUFd$!HsuDv*;gwR7$}zOg_3%*Dl%!e=4+!TW$`@72%I&H!@k0D?3>S{L
z>c#MA3^ik@CE40BytBwvCx%BPOEqSxRyXF1j^-y_l+=&mi5MEhoU8d`f{(}0hnM)$
znGNMEo{}l$xMH|>3QKT{gf|A>7_wq0jPb8tu=|cHJBG$F<Oui0@T3&jNRS0CNcx%x
zFNk5>NmtVtawVG=L%x_qon|6wE=VJJ3WfB;A6wkK@n|6@wvqB%#_%*R0Wq`^Z?qQk
zXf02nVJ!byQRdBa+Zdh`XO3xF$fGaB@L~*oW9Sz{uz6Pd7+#5?V+=3F@Ulp1f8zMI
zLkvf&W>JA9bc&%{4Be%`&a}<)b&28C7`n!A@vNKfB6h5)^oZfL7~Y8C&6qP64Lk4d
zDTT1KUNI0~7wj!a{kNo<ec1fsnM<yvv$}gteme%*Ff4}mW9Uy;i?`pE?id`ydu*?G
zU|<Y`Xn9TLU}-O#ykn({oV_z7hM_UAmnorbG~)xdD~8Xnr4NsR*$)Lt{4oTCuWPR`
zOPl}L>j}pYiQ$JBj>Hg+L5pE-44=lJ#}JEQQVf%0;B;!lFe--8<S`^-Fk`SpJ|YHN
z2r<c~b<d+R)3T<8#F27nXN4wfNBPFY@OOJ<d<<iyy=?Nh7%Cs~1ZVgr$f1dX)cK}q
zA#XLOh}w)8rp7=!nWn`sUHAu63z+>VhM6(UVl2I?%#Ps`As<sX%0~&woEX+!OJ};b
zy!wm^F?<!nrWoeOupovNF|3T?h54R^F)WK=x$w`~Uok9>VTojU^yYLQacK-aPvw)a
zBWND&T(Q@)O2T6;t=i&VEu7Kvg^)Edu&2IcMT~08w=RbDF>HuoXQeErjWPUl!%cFw
zX(4fQ3}45viybW?)M~VEOAK3M*e31W!Lwr6p7KNG=kwX3drf0wzlq`781~0-Acj3s
z>Gv`0jo~}dr!swY&)|Kj+B0$s55|x^O*t$&hlCHQoPRWu&Ddbmj>hm~3`GqTGw@Rk
z$71}WA6$-sOVpoZIKhCIVR&2y+Al0*i<?W=-(vVZhO;r8i{T_263IRt!<iUP31{|H
z@f;S;DyYw~cAh83@Td5*R&F5|8W-rgULGc9FUHVY#tx(UN(@&S9@LECS`61?xDmr&
z?BDjvy{6F*w9Sc=E$*8lC;2Cae`829oZ<N&W83yI-HqY4@H;69hjS6bnWNZWoYpur
z(hXb^Ufe(l?#3IaZlI)r41@o3gz^Sppp=3845!S}hU1npbd=>|qiDmiYw7Gk9=hK^
zS;LvDnK&WP@(Knj8K`VHW1*tq3>l7;Dh8?=PEc`rr<^fXO|tADmh+&2hYZv)P}e{W
z0}mUhZQv29lv8C*X&pyXEyD?|XJ+^~?&ubBVm$+o8pt%@Hc;QdV+I-+XlOVy;p2i&
z(Cl6wX3t$JAhP)`!--q^obw5ZVt{?&G2j(Vb`X1w>0VFy3_NLIOafyQXk?(VftTax
z5J!%ICI*ff_}M^H1Gxqa191a+2AUb@X`q*Z<_7W&Ja6Cy0|f>O4YV@Qn$`~VJ!POJ
zHIuFuhO>b@j1LQvuBTbi7Udbk*)8YRJ>_i-JZs=N1KfOWEAlE=)4BOS<c>m}b_Sl>
zz`tC{W`Qpn&c^jC209vOFI7<Z60J?~4)^LElHJKbXDO<iftg>qx)|tcpwrd#SEZKM
zhGcJg(!+gkK40i=poal&db5hx3~-m5=@LJ~ZlJe;p$3K-c*DS(2KpO#$G}^L^PGa)
z`~3|59VGfnf!v>`wJi2+gAb3gN2X_8Z>+p);5{l2^bHoB0R{#!X3Awo8hZyyqee?z
ze7Z423}Ex?cJaJ#-~$GvcxgDpgZ*njHQ*Q94i3p)yV*+z1`N=9tTe<hmPZm1!};u3
zm@&WE%V#AtGHN&v4(L7Izz_1sAST7qq=W&}z;XjC3|IzigFnE>d`7Z?5e6n0m}p?6
zfl&rV8{iJr&I?&RJ<5gsE|M{Zv+FpP_8d^g363|wMIW=oNd_hx{GUzCHt_U%Wr~4m
z2Bxz+#`~r+_{aMW&U4R@>?{WJbl*q9XA1Ht)wsjSl_t;q#K30;xM4U)ikd6<sR1hR
zD0e$)Sn2QFT*EG4Oy(AbG71(N_}suE1NSzKml)1cda(f>qRl*OsexrwzNpX)9$IN&
zm4RIbb{kmDbC<a{8u*HxD1429FNLf%uwKYIL2h?YlWBuwxdh(CfiT{;UCh{Q;A_L#
zE_=Fn)@S7lwiwuIU{<62ZGt2;dxrsTsB+=FlLL8{i+<zA={KB|a+CuGzBN#hyMJrl
zdklQXqSm^<7u-vQ(gn=!V^$>G?qil^9yD;sz+rYY=bX;YhSE<`@(}|^4P3nL{!y~5
z>-WDhn5DJH4gA8{FOK`;IKlbH;1|4+9>;G6em8K1z0470;FJ^6u0IX%VcBT|=M3<{
z*%<?WU02T1nb#G{`;79OH}D6i({$yN+F2JwnMZl(A_LOEWlnb;ve(Xa6PdzulxqgA
z)8}KAI|gpBGz0(0={GsF-&Sr3vb4Vqbf~LP!b<r#?_UG|iCTD&a$9O&KQf;-aLIX>
zV`NrAkvKjnTgdfh(Kw35otyvn{!og?!L<P5&LV}RL>wjK&QfJ?-NKAGxFR4g6$h6&
zrQ^Ku_Ha>ChUd<4^W3s=l#8Qj9Jz6nkE22y?l_b<D#lSMjtAp-D2~c;ES=`78b`G_
zxJ6$j?(EOpiR4qrSf$S&h@(1B&rw=U^sUl8HR7PhYO}659*(1C9JS(3tC`qj9-`ma
z*gA34rFn6*9p!s*oRc19$#Lhg=B|@23Lg{B?Bj7fA-q9K(ol#?FjJ5ZIz4f;`_<!(
zJF@}Tr{r02WXIu)qhoI2lW}ME;{?S=evRVJ)X|s*ba5u79F{ONyNP7^C^IjPW^sPR
z!}D|;&Ev?Aqaco*>kDcIl`BaXSKR%Ux|l5#;Zt$65JE{yAwzNtpNXSY9IfMM6UPg2
zycoyN3D>i6JVy)TxNz0omSrAvvq!#Ol25XxP<dXuk83yfOM5x`QruaA>H`(73R@0T
zUSTWZI3LF!ade8Ka~vz<SQST?I9`qOO;L=EqiY=9;usRg&^Wrs(IbvG<9Lhxdm!Vr
zIC{p>i=Le1D^k_VrxmZqoxS%r;^-X*AA<1V#Sf!>j}~}dt(4g(j=uCs9Ph=^FYY}4
zcsq{%ac34Hk6ljZWXOJhC+>`HK7JYy$3R*ecb+Z{V%w+rIQ)62`vf<qCJH%;4U6Ob
zILtV#I6jDDcpO?BIs-KhKMfx53&#<NJCkZikR-?&FDfb<JKmWRx&6plF(S%QL7uhi
za(XNdBaV0+H2$dzS&TzIm+5{XD-m~|E-~?8lP&SdXE!4xdXwxLu9&9#M#eEJj?r;!
z>x|OV9nUP7@2<MbJuZ&%am<Q4`+*bUm>9<lI%<k<QXG@xn8vY?rA&!CQ^!=Et~qbo
zjGUyTP2uLJhi?c>kK?oXuFCUWAIVv}uBOkV!Id)aUQPcvj@eS|Cvkip$0Ff#;+QMs
zQ^C&!=LyaiTp&ne7K(dG7RRxK9-HP{PIvXr$~vhmWh>6OmkDm=8<+=_6>;zi!dCOq
z;c8kN$F~f#IM&4RrHq<waja!8c)jc5SkHJUTbMh!U;`Ui!FzC&@2faA#?iP|0iQH+
z$8S>{o8$PJGwMOtmN>RDy6P2jTmIQ=E=u0pqon`m-p)}bV`pa^-^7s?@$8c9Zo$#H
zg&bDgpWo00-^KBL97p0f8pqx^_OUIKeB2${&v+P`&nfPJ%yr}k<2V!tC5Jh*;~3D%
zNz5|!?Svnty{F<h&1q1&^%#enkmE9Ob?EH$^)Dhh5y!7WeiQs%@T4Gh4qQy<0}IA2
z1LjN|XX7{*2YEmegYZHee{$+bz?;CuI4;q>36x3TavWFKzy#6~xEjZ`IR51jF7M%l
zd_9i8Wum^pk*njcI9?y9Fx`~#PI60*{v*iwyweutKRK7D-xhKwj=MtsSnr~cvq5?S
zB@@U<plHI`<6<f%q_|*-1h{=fAtYNW;anzoE#TG@6X%@!61YEshZ3lfK-mP|UFNQo
zaI7UMmq2-uR1mBvNI46voB$1|l0el2s)_!CB6&b~b>S@Jyhq^`hveY|YKkR~QQ@Gw
zmSAm~UEO=?0q-M{t&>3A1nLQ|FG$Tt>BB;WgsG%gc|3t95@;Yr(TvOl8VYx%B=^j7
zC!nMxJS!`K>;yhcz@LCGfhQAamOyjf|0mEmfpV>K=IwOlu<9|+6WhE5nk3LPf!u_1
zr^lNX-anA^&&nXq-|5b$Z3#S|zzYc!Ch$}O&m_<)fffn0Okmlbf~OPCZNp1nd&{&`
zsytdaqLjina9StOCV{_dE6*jI*K(dspkIY1ZH14S;oMj78rLoXD)X{Pd@+Ic3Gk^9
z9{|0Sz{?2?N?>pT9THfWTUct0@0Emeqs6h`F@a7AXY%PR*i*2J;HwFAO`x0b?g{h|
zLd|yVoSz1~Mzg2+NO~pkdIG)W=vxW&N#G6PZ>ID&Z7<rF1~ULe^0xS@zi_i&2A%d!
zN|TRS-%DVCWScygk(X6+Ap5Ad^D!UJJVO%rAmKdK<=w*21coJ?XDIIrdXIa^`Mh;_
z!nvR1xC_u5E8Kblu>^t%s0oA;2(w#1c4^FZcbagz2O<eX*_&6K4Q+0QbNXuE7DfW`
z1cr3Q6G=}Z0W$%ck<TXlrd0X1KwImw5_rF%hhzlDMYH@-34B`9Gcw^!JFidjZ9bV#
zGCBd0ZWVIIB``jLyC#ZQn2^9k_JWC5OiW5(a)Mu}LKzcN5}2CcCl;|cfoTa$PheF7
zs}q=!z()yup1`66X0ppzQ39VO@NojOIViS!<_dn2z?_8h-WOLiT<j2ebHbxse0j%a
zkjzUst4OB#LKZOahGZ|~g!8rco_uivOX=G!$`V1oBE_}RvILeVutFp&r6MlYcp?{K
zT#bH_z?uZMC9pk#FB4eH_9pmQc&tk}>#VOBZ#P`5dcBYhf*TV!eMg~uQv&yvmc%Wh
zzm*;s;=G_md$<ne+f&3H34D{lw=8^sZzrQ&2>EUyyuaGRdGaq8?fH(qGtN!kqd`8)
z+{ZBBT$;d@1P&x{FoE9^_&tF`2^>z~M8a8J{*b_t1db(mLxrOW{Fp#nS$=Y<_>*{s
z#*_1=j>t-xjwkR-s%mDrVEk1Y(x<3%qj)mm;CaDQY-s{#gr7~|oRE7+9j<);NZ>-k
zxsCiYflETjFA8BlQYSpXcQt`)2^2ArW;zC6PvB+(e<yH*Q|mw<{qq;2;wu-Ix?D%!
zO5k<^cM|v~0cQUd{7;YzVM_SU+ug+f-Uht)P9X18(@m5#kzt~!iDD*LAWJK5I>nYS
z!NmR|rz>Ehl<D04@^+U#;nJ8}0r#1>--OS^lP1cVC}-jU6V*+WH&MZKT36L{!oV{&
zqoRpQY=!9rEfdRRM^`bOu%vs5)ufFz$7Vce;vo}Hm}p?4hKYwwJZ3tvQPV^%)499m
z>9wVtM+F}-QAY@aljYPEUe5%Jy;oO#sfGPZ$38ChFkl!Y4NYX3&L)7%M5YP13B~-M
zf7%Vrrn?-=O?XX^GgTUzoh_X54pY(_nP_a{In#N0Ajd=#6D>@%<S?)5ZEB*KiRLD9
zP2`D$%NgEG@`-l7i7zJl3QQE5;1&Vj4|$4ipX%I{cD|O*EQL>-c*aC))4AhnWjgnb
zob>L!@8rDKWa3#9T$Q&q!2+qn`%*p`Z)f6p6E|xqFPLa=f~!mN7fo;hc<&v~m)L{p
z%FCv+6y+tRqlr!?OcR!g&L+B;7-(XUiC0Z@HPO>VFIpb(@Gh>KiS8zPn7FTAp{FZe
zGcm5G=fxg4bxxT%*7v&UJWPDcL?08qP0asSd4p}gqA<N_I!_PzxR6t8UlVVe=ue3p
zrG$sxVTYP{&%^)|Mkhy^N1a1*;=L?CCpFl_a1$T0PfdPLHFGFyv0Y5VOuV1sADB=x
zm7ZOkRjr>+GZ8hxS5^XoK^`>`GV$pUg+it<!)C0*H4{3$-4zKFcgFg*j_|$P(-WgT
zw5_KnF1V_xhkQx%th|mM+eFgD1```ij4(0M#K$IPo6buDqv#nE<4tD`GFotqiLpW`
z`Q~!^1QQcY=N@tz=YO_kqHl`eWI<;6!V+;RM^KJJGTp=sIi2TzlqzSYiCMz;<QB5n
zPfW})vB<<?x{eK`Lric{#{2otOy{nC9s@P?ZXV@K3q)a|;O8dzsvd=0>D-*)TVi4<
zBgDjV6KhQ8U5m<%vsQ3yHqKftxKePH>1+W}$n=F6L-Hk^Fy6P8PT)Iig6riFvs_Gl
zWnz<wpG+JxvDw7eCJr!+Iscq>Z85RO#CImPn%HJyy9g=&M#v716d}7(^4%sLb>&lm
z>01#p`@O^=_e}Pg*em?rOEug=*-z)3S4b{v${_}`?m5D-W8w!B`{yge!V2FM<%_12
zA2so#D3DYBvx(!JB1~L1@r#KQCeE2SZ{k-Izj0PEamvJtC%s+Qd-l(E{m#;6yI!i0
zdD_Go6WZc}vz$`K`A#qN@U<M?OYmKqWj#HAa7fNk{xqGH(FN0aS&J|5P;yZuB-|Oe
zV&bZa|2S84&*zN_Uv|C5PJG{WU6AC4kiP_Pn)qADEx~^Tsq?St{B;+}ZC*j9_~LvY
z(gbnOId__cbPMAwjJHtKLNN<3TKo%06t|pP!G|o=uu#H6NedYkV4;$Qzjr95ER?oT
z&O&+1S*@3`oSWYJg!4xCe#uf&RtRr*c|TUcLPeh2+QS`71`MaNJROxSRIyOi!VHgx
zFR(pefv>Jrvz*(f^SOnTRJZV;<-FTAa%BPWVGA`a_$)kWp_YZ(78<Zp3y)Y%5Z1Tw
zn1wo)Gx657oItH7$X9M2wVcV5lE-QDEEiX@Pq6A~&ii|`lN*UH%URcZ1v4$UnHqW(
z$$Bhs;m@}RDOq$Oi~EFG7P2j8!;q(Zy29PaLSqZhSZHM-$3hbeg%+N&(9}Y%h31ws
zy7R;pe3z-21-|6T(MrzE2V%a30t+K{x@&Co68ZX53kxkRJk2iP#iDcp@6vfI%ejK@
zlyZ2sw(zWlwwAMsY-2g^pnl&O&spG@ZD-+mk+W$pSk9IjkMadtZkX`R$(Jm=Y#}T?
z+rh#s7J6HF!$L<3oh<aQ@S26r7P?sIM*BCox!Luq<*YThg6?X8?`)jBzsY^ovv{bx
z<y?pdTutw3Iq!_szn0E*I!Q0dzHT{p#mv5G;VpJkhitx+_Vp4^9}90==+6%7hQ1d1
zS)lNdzdW}Gc;2z_E}JmZ^}dBR4ZZJK&KtknZJ0dEHNXOKpx_`2gM|zcq<pB5VT|6q
zLT0&^`M|<(%URSgeQ3ciJRlepR8vPoLJqDgh**eP&@AY*YN^Y%5Mwu;Qw)p4gmLTR
zSWd6zU2(ycuwYu4IJuzZj|wk>mgQUupQu-uWDi;xY4Pt?ok!1O*@MkJquGi}>0_K$
zdsf>%KC0uRB|a|XL$L`g#KJBMyDdy&6D%yUu-L*B_D<j285TaWoV}f?77q6DOtYK^
z2h-W18#B0yoXO?GXx}Fm=Fol%A4`YMW=lsqt1u_^&7I4EQ&*X1VZM-01wXUEMIu*-
zJhXseSv_l^$Zzj+eJ+G|1w6Eb2LIvy(!yE`OD!z3oL6FakzH<K1*d|uu9X%T5?=^k
zWnr}t%DG8J`5M~ur*l!}dxPsNd}U#ih4l=BPm~RU8!dEbSHQO{DA~*yu&~p@hjSIa
zzqG}|HVfM=XOm|uLnZ0Usj0NFeRLrGxr5%YeLTcl5x$lBjfHP5{9@sRg*_I&vvAbH
zj~2eSu-C$V3kNLhV@H(sRvY8tJ_Gl$xmj_L4Hw}N4#|?4hdKJndq|jmu$=7(ZWQp{
z8@@Bc6Mqs-mPUTe0?YYX@OY}&UoHG*;fjT;oGUDxwD6}KI%VNBOS7Df*)tZ-S~$|f
zbIt<Oc`1Q}rBTR4av_za{31&`;kqQJT$a+PLzAvqxX$cA<*tPr9GG-$!u1bFjcDGI
zlK++(odU1AX){avSJeKqoEM623zFOs!aW?8R>Ve{4ZiZkUE*}x+03V~xQ!Av){e)z
z@hE8{!-h2)_GrLHDI4(-NQ^*f8)a-LNqCaD&&K^WHrUu`qpXc`HXjf}w^80k1sfe~
zykeuGjZV{*mu&oVg0E+zvW+VI@t2Ki8A?;4jR$NrwBi0xscy^F$3_hs4+`&8MSf#A
z#Pu*u6$#_Krj1&{Ytw8Sb%fXb|D&sl*GqBMOa1zieayz=DftsN8VLX9Y3J91E*qIN
zAa&FyL=p4|dIhrtvuRsbr&y*ZZ8Q=gd1D(nDc;0J`-{$J7IJOmiLjZC);8MMXl^54
zBn38F2`RMkl#muSo)*$lkf%5OJ?)tk*I!CIn(27sSsQI_v=jMrf=~YZzu%aXJTH<L
zQfIwLOH#b-fV2_EJTKcgP}*~KYq5^(7aPNDyl<nkjV?9@+8AWxRW_uoGo^GD^21%H
zA>C|rx6#AKYc_gHf&FdtN|pSUjn`AWw~aT1zbW`|p7X7YKEnG7_7kM=Z5xm6bP9h*
zB<~8oCpaLble?%Sf15nm#?*Pr5Jq5Y-;Yl!{NIY9BFV`s{J_R=8>)?vjo#&b9}=JT
z`E9&&JG<JpV&nlEEsJ}Df~UHB!Z!H()-t!Uqc)Cx?20g$A5hc>6z?8ocnNRJhGF9)
z8#7s#jf9QSHpbYPw>#V9Sg>K+n6$Ilh3`E{8zXGK;g3-^R;)<hv?6`*?rh@AyR$2G
zE`BdN*2Xv+6M2e_zjtPjw=scc^zyuNu1L7DXYTjTt=(igVQJPBHpd2q&o4@!W@EaI
z88*)KR+t(d&t9JInZGOB+Lb-?pX^ySKDM#Y#^)Sjdt9?^%(d~UjZZkfE_vtJ7{5$m
zYIe>O?Be;%=0XVzSlZVa^Ek9CWrm9TUN7M*zaf3*==>JDltnfc)73WC*jQp?sg2cC
zzMH+w#&R1gZEX70<Ei6Y!A>vkdpWO={F!>bRgBp0vaS{P5l>h2QU6O$8aCG3SXJCt
zxIxK3nmzWn>~$=prDs51;n}a!Yw~AbEX~F#8>ek_{WW{Djqh#jwejqU?5}NXv9Z<0
zHXGY*?6R?&4k_;2VPmI|VjucO<P}m<_e0+|Homp7$L3!?`6ywHB*gDTLVmEgZ=a3*
zHjdi(k&#)#cfiIE?5U&K2W@`*4QxgCUBw>G_Z_xD9F^}oLgl)?I^U*K`6ruSl=b{#
z;{+qb#?O*Hx3w6B$2meP`xfRE4$JiZ%CVE_Jt_E`jo*d*vdBeYmrU=bA6;i`oVD?v
zjoa)>8|Q6YwQ<eHA2yP8luI@)+qhukPa79)_^&I&EBh!v-antAzTimq6?RQ!-?v-R
zJDyKxX~!S*TxS>4^K+FOHvY14lS8|XhuOb{#7B8<*`V47OB5pI|B5oRcWm6XQ8I~)
zB#I<a=auZVB+`>u_e%D64GM}T`Db>X;z>N2nOjVF-QvDm=RL1)^_ECtdtM<)ttvhw
zQ9Fr8M4?m?rIXHFU51x{B<@e5Y!X$Hs49h*OJeQa><USg7oF?>I%AxvViJ`^Qdy9a
z1qIGO7gS5)p(JXE@BzW<f)5HNw`9=ZhoVIumMrya3aKSHWJy|`B<d!iR`I!#{Er(S
zt3HueSTBi3MWKG`tjB~rp5&&kV|jy=ykQa*7CBb|j;2iVJubK4TmNKxlgMJbMxg2l
zWGCTEVrde~=%^$bCGl($ZIfu6L{1U~Nfaj0B#EYM_1291Byy9;OX9g!zA{@gnk6x#
zm9M#Et^0g)`ZrqtVD7v3`Is_m=N3Pj{!|iAC-F=YEkviK;OWovcb-$K>@3zQ36eHR
zv`*sn8o6~J&V9T_E+zlW^E{VCyCk|M(JhJRlXxMCmy_s_#EVI^r>WbD?R&cs(@X67
zEyecL$X)t&qxdQJ=!Y^Wd?g7=IwsL6iOxyfXytn~3Dn4ar+=d^k|nvFS4c_sBzh#_
zPa=@Ss&~^i_|slXqGuAlk|_FMZg2K`v%=SfcPyJl$s0+$nZ#R3^hsin__=S&+wThL
zm&Dsb`lsaY2=P^H@}7_Zf&)`W{}`DzSon}6h6)*$#Bd?+r*!_0s_%euqWZsQmtEk}
zd+%K!>?E5|cVRblL<9wFprRtx0tiSG0R_~}B$G*-l$D|af)pu&Qlv>QqDb#ZZ=%x6
z|ITNf-}(N}dFP({?)$vY>o1d;m&u1hUVof6&Qhk_&o@yj9Lhmh#E)_?DF+|tU~&$o
za3+g5RdBlCCxV{}P7~zB_~nrKu{$FNpNaChrGJrw_4m!W?a6^EqF2x_=*xj-S*|~n
zqzeyNN-zfv9<*TINDd70UiL=&lcPC^<)BH$^zU*I=bXvGJh9KUa($J9FNM#{!K@t2
z7Cy&HecaEiC-G}hz7d>jrM`C4yhxZY(Qk9GK*&NXmAMv4(JXzjkmR|__c>UWgY!AK
zkb~vy$sGKggAF-Y$y_;DlY_N6Sd|0MeEW~wOmeWA`@mYo)y92gX;u{W*~=ATkITvH
z#HLpp_xc>{7;5LAI~1tvdOKO!n1fARj}_7n=3sLUw&dVuKG*M3rTzI_2e#XP$-!1m
z{v2$#>bXbAjvVY1vP*EcmD;Jk*#moXuuqg<1@~L2zp)|1l=fcRfgJq7(b=r9w%7B!
zh=+1;I0uWn+bObcM{;mfavihs9?!vv9GuL-DN)V{p0-lAbxb-d{9F$H6!Ld<d;N>%
z=ljJRT*|={ZoD2`&cT%&oGaJrv9$DR4j$%!Exne5rbX=6b8v%t4*tr)1IzQR9Nf-x
zDEN=yzgFt)rb%~%-xa)P>GyNM-ec(nXP9qYc*O0ok%Rru;V8M>{_}Dr$%AAMN_$Yo
zgZv((cu>lN{mDwI2klf_!Nazq)szArbDu2eK_MX!EapLBAw>j>3ev3fprqo$O9+;<
z^cN;31)fq;n`F>!Sr5h?Q#ktNJYW&O?@7;JF1?}$l|1O~!LuGz_MnOf%{*xCK~)c`
zd0_LPsRz|PsNq3F51#U%rU$h=;74|S4{Cc*$Ah{a)Dz`gTl1rQL>o6l-p4wzff(#)
z>mqL?W+aX2Gt0%iO@zEM&h<+5%rp=9IqUSmB}DPS?!iBgoesftK}J&!JF6KAFC8a1
z6kJMc;Xz9eI(X30gH|52_Moi?Ssr9~uwl5Jp^XQb7VptCg9?9(m+gU@UF`wiFBGrB
zv#h4K`(u^%Y_*}>D(x71G_8{dOGjjP_26j_I(y)2<L<(4nUMWi4=3@r!r3!Eb#?RL
z`;*Qy7ah-7Nj*I1>A@HeKJ?%@51wZc9=z#6FAsWq_-``yS3T(C!3!SqGMM$R*wyi(
zhd(^A_4D8*4;X#fgD>q4l2;_!SMaT~%AotojyuY09=z^Be-Hn~)r|5zAtkFQbzV~5
z@?d}m?|U%ZgNLe8=(_T@2LmPVAP=5-PZ`XPI%~dLhO=deOpl?0!#sG$nl0~o@SepN
z6igc7!AKAOt)h(f;8J%x|90vF4@Oa3U}w2yub9Zb;w#t2dXT%!KHh@~oMXaA{i#ry
z=)p%G^Ez#c2SragCwcHOC)gSLf;R5@+f$lUPM^#<P&s|V5@o6fpLnokMWIhUm?mU#
zS=aV9?kUUcjmx<{^Wbw2-cm6@<!>aB!*9VVimLE<pn9;!gS}F1uLph)bm2ZhO^{#Q
z0v-fCSkI~DLC6Dsi(!a+u+?u1dl2zp?s&W5G2g`$6^scE8D+kjDIxZ`92XB}dN9j_
zHKNS+V2%fiJXq|(R~~%r!MCD+BRF4ht_Smk{Ie>JfrWPJZznDgaiIs_3F$8H2F$C~
z5)YPpu!7T1lD_v~nUJiyE(Y4Hl;~=~A3RtkWNJ)dVCs(^{3Hrre#k&&twh%edWxh|
z+2FxO54L%*-Gfb>mL$zv{=#ne;MQ#0!7eQiJ#rGsx3az4ocuaN+`%27QN}L8oq~+6
zsqZB2W<$njlkD^0R}b!Za90-He(t&+T=C#Hu9VKo?;afR;13TDdT>UD=8)jgykQdL
z{5&EgmSlblKIXx3OF!YkN#Um~<+KOq+L+&P&sxek5B{|Hc@HiKzi26!ge13hU-jUc
z2Y+){@!&caqX#!V_=}rus*6{iJGVL;K5{;_Px)f2vq<TzTil#)+IfBcFLSL)zU=|~
zhh`aD&0d<YB<&v8BX?%i{C4nw8_U;90Tl&RJmk{$;IRig&)6AKRXmXj<WtSPJxMTG
zFu!1mAd@B)hP#{jC8CgO<|TP?eKJ(=+XTO8Q2Dd4a;TTRn2O>m(o`raN~kC)+3Trj
zwmq$sigGH-3oosrj1cN&g(w5kE2yZbqPmJ2Dk`a{tfCs%)GujORP@~L<QHCkp{}aJ
zyTi%v)I=s_t}OIdA7@P!byQRtuY5ehUQ0!7m5(^>uXHq{byZwwZ2vx=gIHh1_TJ70
zf+P)9Jf)(MipDCI6>w0gyWQSIxJ{5^Qz5A-cDo9PiVi9|vKyD#(p9un(Mp9=g^TqU
zv3N73xr$f2x&}9}w@@*aYbx3C^JIJ345hV-OciZZWT@Elw^I9JGO?|SEY<voSu;<`
zR^jGgsc6r}zGu&}*&BT1s(HrQ<Di|W)OIDGaduMCS;ccIo>$RDMOPKis_3EO(jn*5
zD!Q?%>+ENeT#Pb2BYJlgwc5HF<zClQ#nJj1Nn?~jr=0xa-%CYr6@69oQ*o!Y(nrOM
zDqa%)f{O9a+sEEi7+x0T6+w#S>$o!7x(k(Yy{h7M75!C^za}`dYWf>O-V~%>^Xc^Z
zWn3h0s~D(ajf%A@2B{dVBCH~!Vu*^NDki9ysA8CkcT{|!Vw8$^RlKKSxN3gkol)1k
zpTMpAebwC3`Bi;{ijmAUPhl#TB$dl!U86Y_RsPqu$;Sw3axr<VigCi%ZAhU$UihuX
zj*nDKQZY@%bawk%<zp37RP!#!WEC?C+WDEjZd3A96`!ccshsht3YPMEIkTX*l3X)X
ze5OKE;aBlFH-Gkgn%k#B=eKo1u4Rvk7uvd2K@zWudh63j_>G>oL39-X6+smt_VYgq
zof}teD~4rGed6TD5TmS#p(3iH?HJ`dmaZbM;wu$jvy$weKb6^aT{GDmD!x?t_qeW+
zZQbk{>a$eLW~l4p4Tm`@7)TiXhO6eVbIW1pJQZ_QymHuCVY;jKuH^YDzE#cpAq%*I
zb|u@q*$X8aFJRsjTBKsJiX|$Rs#wW|tm1o_Ld#V=*p|k*w2Vpz`@M~h6&%)6&Z<Mq
zskP{A+A0-4s`yC-Z?COZapQuW<de$jU)0Xv-;>q5khV_6de+U0SG@RH#Re7k=~Kl<
z6`NF?P;pY_y9KaC#V!@Q*+vyxxolPJV5j|RpRmrpO~w1O?F<#~JF7lx&uQ!C9lV`1
zXkzCr%{?mis`#CKxX!*$#jh&%tN4xe3EJnib#Hss-tC@q{9I*DMSG>z%Ee-i11kOy
zhnw5F84jvA#0s=^9~L|!cvSG1Ad`-(xYW*0a!SQ%dRB2>#TgZ>3=2Ig-X085&QWaZ
zrgHv>^MZ<t%%!4cu03Ct`{q;^??cY%WWOw%<Q2iIDy|8+uHu%E8-h0l{}SYGJZ5E~
zzg7IB;$Knj3f{I-?+9U`_blbB<;f3KJW>HK3VZqAUU;ISfENY5$md0p7x}$N@uKoj
zrCOFd*$Z|H`-;f0yPZANi#M_ytSy^Nx9yHP3wgnAOe*T)5VXp27h#r!(#wmYUKI19
zxECe7c*=`LUh`w6q!(4asOCi}FG_n+M#Kt&OfBn0IpO6k#kC=+qQxr-sVrE<YyLqV
zvoKT_rH&UhgwzzQC0JXKHngv6@p@j=7v8{98nU);m=~Xoy=dY^mY1(|fz6AiV$j@+
zG$HAhy&}Z!g~L+5xRmS^?h<Tf>3k7l3olxF(aKUXy=W~w!&0j5O=%;%t))D<l<fAR
zofloa=qh4+FFIJM+kdckw0I{kI$QkKib78d?_nw3ym&@<cT0KJi{~3><n>!m5uc-C
zrDmMZ*V~IeUfB5p0WV(inzzkglqgU8P-Jx1O{K3F{W!Qj6!+m(FJAM)>xIvY*S+ZP
z#RpmL98MB1-t=OI7oX9I`0v%yG1`j(Uc4>QfnE&r;vM0GyclfNVTh2Sf}<8By(?sd
zmHM6+?+YJpDT}qFk-|R^9A)X<cP5YV;zNm!_2MHhCJ7%WINpm1LM95bLpEn5eJuPF
zOPTD&6pK&w^1mbhdy?|0h|>h8=i%~XKEV2%J$A(Th1c9$dX-J*(ta_^{e!oV$7?>`
zQoZIb!6l=4(et5G_aflMu6~MNa&fB+dJ*zs@oR;yc@g#^;>AWUHi>`3%U|+hrWYTt
zPmX#K6EQBB5M=#xh1A$+eyN}3#ZoW6_hPmebG-P<i?6*{;Kf2OzOn4*c`?`G*P18K
zxA?cLkNhVo{d~vzh`z{5ZBZa;iNzaul9mZy&BZ8Wxfd(ESV=C?Rf6=B*L5xWC;en8
z>%CYbe66Ld<A%`bzo*qdi?~5Ba4C7S7hAkI=*1x~e(_=}`^}5pUQEAaHkM(VSZ){G
z;l)lN)M>Cs_<l>->%~6dzgo(fpOSyG`0rjEu=pQb-DS<w#fQB(;>CH<k6Ni`yg25?
zaW77Ya!T-|m0Esp%4v&p2RJMIoZz39?wg-<LHI?%OI}>|;)?LAmJR15E3mde(sgc7
z_nbGpxaq}TUfkj??L&$WS5_4I+lxD1-1Xug$@Q<`ZOg-*A%*U7`bqSO-~;aYLLOQ+
zkGx1O``>-|qdz6*^U3wUAWKj7!PCIpF;XoBJ`@mMP_U4t=Z$h<ABu=l)Y7>(mhhpZ
z59541kbqJ?l=h*O53PMD<3m{=n)}eg2QGoj6I|tdDDOiBA1eCrln;%3sAT!6?n7na
zRRpUFR<lw$)-`;n=|e41>Iv2stYg{K^_kB%*%pTSJ~XiOhC)Uro71nc4~j&a2-*aj
z3Z@CthGp4(aQJX@hdDs$qB{j$mQ6FZwA6p|xg}fCT3I?*Nj+*_6lM63=|lQM=Z8MD
z@u95`sk!zsK4kfj?ZXfshWg<4p`8ye`0%1QZ0|!CAG-R`L82Y4QaTCg?1P_M4WIw|
z&`p${g3tKytdQ=4G~gKZu=vWtNzeK4ybrxZ>Fq-wA=8(e%WB15^Z5(c_)9*#?8DoV
z^okFCedzDQ8xrm3!)rob6{J0PW8&))<;;Im2&XPZhPQkeU|I6oY@o#l2^lQNJ%5-F
z?+72^!@ENAR{DFw>F0ePhFd)Ln_1#WA3hLel;CJ9mAgmxGs-)A)11fbW2Miz15fZ_
zq7RdOnBv1nKG;e$ZQRNAvCq6joa6(i0WT~ozpwBbb*c}a_~1P0{LF_XS?(1}luvz_
z=EHQKxur93ODE2dyd)fA4r>mVj1PzXIO2!ugO~F}!(SSFK4?Bn&@fSh-v^!3UPDU_
z0UuBApqz&C8bUsVeR$}@BOf9@7(N`LEBf~#=EF+1%ZIqM?oemfTptoX<Vy5Q!C5}c
z6v95~S~X*~#pn3&mBqgn@{Qn*EcZMg=KJuimAb@-1;Q5!ekZudN?q&&v(P!iQW3uw
zTqd|&a0Mr7RddH!#p-o-?epPRA6EPDqYpp%utsct@nNlyje;~@CuF_g&w?A+>MEw6
zO%mNKxJ8iSLPye8AGS$!yWnotO~_8mW*6sAF>?*>5oNEX-``Y-;(iX|JUhGbH%tFr
z$N?Yz5OUDc-xyHvh!017_*;}?lJSc0<35}aa#HY5A5IB5EqF%otRPD~=fgnhne&!%
z!H0_$zvRPZ;j9vkuljIJqSpm)3f>T8{r?g|vs*&=F!3KD{|ep~yd!v5@Sfm(LFRfO
zgpd3l`|!kvLK>hUpN3e~jQko>gd}N57DCZo-p!|qsT%m?aZiH`@&cOq1hb%qA693P
zP${foU1wJjK|abXs-c*M;u=b582+N&d?MM|RZ_!>su?7u#B*tJQbv$sSs`~1C0EdR
z6bf}T)YVW)LuC!sG*s76MZ<<43RR_E-F((Ls*`eVW6FS0*)=rO)KE)9Z4ER2&YG|~
zYs1L&l3iTy)XU&=OtzO|Jq`6WI5n`<4Ky%G(O}omP!!rcrJ)g<BXhg4kS2mQ!KQ*~
z%s8w$Z5$dFk4S$sBAwB6*6@RLhP0{~E)A?zGY#ZSYA*JyLn{rfHN38&zlIDAnHrwe
z&_hETjjyxA(;B*IV5eni=&IrBrb5{o+!}5*Y{jR*)Z1xb54YFQK}bizPJ+}s3+bYv
zsSE_|IS`NPWU!6TNPYMKx4VW?!<w@uJvBV1;Ux_(Yj|G6#vg3GHS`hEi~g%*P<cVf
ziy|&*sN{)dYdc;MrLTs5LTE7TC;O|yUlUH_9pe>xctgXR8s5|JzJ|9n4A3xG!w?N`
zYZ$0ukcQiL3XK|(o--x8W!;R@Rn1}IxD3_6r_XR@4b#kr&Sn!d@ToKn-qk?7HMIF~
z4I?y+(eR;$ks3bGFj_i!6q{csqsLbBS$5Yt8H4I%a02iN^;r6>W=@rHLfX?{X!G$J
zPG%`2A8DARVJkaO!^avXYgoyF)-XlGR1J$b${Ie=@TrE+I6xfMamqB#Mnjpw(ihmL
zYkbhD#49P4ccp#W#_@%Sd>Zl{CvaCsjs}kgRfCtCzXn4?RD&iHiBl-ZPXU%5F!xfO
zp8}R%c3M)%;$a~X!39gq&*hkguQYtEA+8}Idaj0<8fFRqQUm|6fMyJ{HOvu_eB5&L
zQ<C_NrOekbSNJ?jK?~FWw-Q~TVWFj;%W}VX-F&J=T%uvAhVQLrF4NF{xw3-G_B~~}
z28OOx%*QV3IXj=`tkSSr!!H^N6>s^YhMzS2%=N2b4VQKwCl8ja6S9^gyW6(*k#oIf
zo;Kl8CEn29sF`O@7AwkT4V#2-AD?aeEIWCta|>PdaW4AB$#WgUw>r0L*rDOLh7%fg
zYS^XWHx0kD(0Y#D9C6LOAHGKe@0RZsB-y8#XF{59PUe}A{Tk?yZVzbqL&H(dggt4$
zbyf~)IHJM4m962h23I);MTVCOD-`>zPd=uZkIC3x_RL8Qr!-vDa7n{y4QDijAKAP0
zauN9q?yN+~&(Wdq^MV&Fy>25%nd7$0T=*KUX}F?+(G^*y$T@bMo5o@L4e9C%TT}RO
zjl*<H!{6LS{AlCHKU^%_68)&>$88OFxaIm$(vQ0u?rA9CM?pXCYj~g`$&X||9<sY?
zrStaYV-3p6LXWsbjB_#igdYKZWS4PW7@A3>!n?uw{orY_6u)^N_+=HTe)ELVtWC+=
zu4NbU1AY|un>USl>#wjMMg1t|M-eKUl6MzXczo;B=9JRAlAq?yu0zhGi^+6V%8$~1
zRQ98a-@H{=#*gxTR1jX)k8(n&^QI!Pq92t+;UhUl8BVWHCRX*Mx*s(pshS^osWttm
z<p*n0=YO))7S77#dFFl8`hGO=!{$c=KN|Y+l;6C!%p0wZ{N^2C65iTv?8oG_$>dG_
zNb{qGA1(b*{IL7s@}q9eOot!o?98@qryu5x+@N_zi??2R^Oo4m58l6J_U7U|Dcjx3
zZ=RQH?KdAdZkBUg8LWS{`<u!c#I}B9v7UYmX8-%m=j;qUSs!vg+WXPLkFI_^?MFvH
zqDz#{e#|YF&fC15*p0UxBwhS?udIvrs~bLXcJt#IKc4lYhacU=l8*!U9D!NdZcsiv
z<9yOXX}3Lv2g#oE<9R=N`SI3rdtX2L`O({tK7PC)3dI-w7*N?hq_*;sC@=d#PW=^$
zGU-)6Uh|{BA8+`Pxh|O}7I;kJb<UaX**sV9Ce8d9=r<qk5Afq{PRr%?^G_*_D%pS8
zY$ulVrO#{W=sO{Mh#y1!7)wh(_>;R~e!TC;a6jJhn``i0wvI|2`@zkHh<xP42Qef3
z_`r`*evI_vdIx3yS|uafy=18}+K(}QygbovAFGTWqkQN$pYG8omGOS8KH;3e>Ivc6
z{K$_<e*EOe8b3bfp!@N~X8S5XruZ?{kFS~9&RlMv_~G@#=f|ghO!J!;3DX6?@MDG$
zDxdlBxy23D+;4OI@Q9*Xx^rlfX7M;@jvu-o0a3z&LBWt^v*_)lh#v+AU6h!m^GpT(
z=V8K+TtB|_W2U6e7Mx{So*R}t$Kqdcu#TC{`G&K?k9mH~_hXqKNn6Y>#ouzSisb^q
zg@WH%dEa|AX|eDnf=ey^dp|gQ%)VTd6@n}CQZ1W-ZIf2}@uN(GrpxU-0K-mRD-&h|
zm({+Mb)1AnT@34m{Orez*=|NTmp1yb$&bx`Y!Poe{n#bs7eAkmn**^;aJwL*J2-(q
zH|w+8k3D`Iu=Krt>=(YzQhpUO`Rk<Lg#2#liN>ja2tO!z$kOfWlaKmw%#Yu6{I27;
zA162ib&S$+(vMTzNpv*QaoUeFew5HrQpZ_8&iQf6kH0yM{W$N(Wk0U?alwy^oEr@?
zE(tE(o<jcP_7n!*U%l$bH9u}j(siz&Qmz|*Oy8YMo5c+>i1TfB;$LDg=8>IWU~fL<
z_{WcbS+~`;+uZrN4RRCaf-2zPm)R!wocFm>vfY~}D-ZnU_gV6Xems(<J@z9-N2+di
z<`Yr!2~QGC){$QbAFt4Wp@2jS3l<bCqys{jTE&YZ7B8x!n8l0h=-S7ed!=-g)=^DI
zbsc4Nl+{s5M`a!5bd=Xok^R=iWysYaub(UE=Jhr&-U?OE;C0}fVlG}+SJC0ic30KS
zZvi~+NUWiwrj9yPbn^m|myWe`)E0v-ayF7S^>ozNF>YA?hB_uz%iy&o%^K+D<t0m`
zf0oi%M-v_GbhOuD)6rB%3mq+Wr0M*z9$Y$_>99)?4jt*1f2TO42l}DscB8U+*~u%_
z<~k3kWU$T!cciq^(OSpg8ul!~48b-!GKH-FuppBd+Hzi{I_h*(vUM!XcIVsabc<4{
zfTM$sjyhh_@v@FNgYBJkbk@;D|L=i#R~=95=%u5#j<=6HuatLn)3GDlJ#C!wjE?R)
zE@itJp4HLA;yr~tC-}S$TGF78j@zY_7j(Qx=f|D--EO+7+uB*f?IymWqc6v?iZVh+
zKOIx|r3_$kI$q^Kw^3fR#`<+3{RQ6;d{f6;R_d(6NdtBKSk*pA=aXL>Gji)5tn)|u
z<_sJvI9$gtA@2yjE6CLMbi8lzwTsMUKIEQl^w8!bIapQGC%Bc-I>zXj%`VdMp^mXS
zKGX3z$6d#G9g}rT(ZR2WjVdV<IBGgRV$`iLe5_-Vj=d#Z$8(j1`R%C-l^^cgD)Qip
zj!$%a%9$BcN)&YQx!5$$867h?X@@Ffk2?98%QHeeGgjAwFLdPSFmyz9cyy>b0y=^^
zyqvKzvGXRg#_APw`Ds}#<6?!DSF2{|oC$6>38zhn-J)Z`mXxkMn=12jY}>5NZ7G~f
zF&%e5R}wmM85SnT1xa}Q{H1OlhMA>frjY7eomI!Xh_lxwf2HGV9qV+g*YS;xxjL5X
zSfOK{j`=#4>R8jt{w+(?u}H^a$-Ynr&zXFuqxpCj-IDW~oPmVVB|3iI=48_MV!X^M
zkx45#Iy!!$PaS_Y$l{mNRXSG7LSWN=l!kM4u=%`=kayo;t!{qLy}Ui;XB``)++8|&
zuzaJA%{sQw&lKAx-8{cNthnnJ9a~w?Uz|I1Y}3u_c82XNv5!e!cDqS->frYR+vZFv
zyLIg0uyS0++V^qgvY*SlmM%;#x~b599Xx-|C<BkRAJFlKj!pq|4&b1ULpmO@P#uSL
z9MN%A$2A>CbsW=iQAhCtuH!mRaG<MXoag?pn>U)yaKqPeO2@%YF5bgAO(&gQym|6y
zXgZa1YzSv*XETXk>Z!lBI_rWM^DfyX@p)Ot6*l>>(^WHr7tj1*#dRHgO8yT!P{$47
zHw7vF#eTE+-<+S<(kR}RmGwXeuYB(4c>Z~X;jWH*!rz!?zi$z)yN8?@TT@7$=*Sm9
z(Ey4Cu)Co>DS$!&@Ni~w0Qmz*5wU<^Y5)w`L+vyxm}k7j<TQq4DI7o%Aw1$sv3LL_
z0%#pTMgS!PC>20@0L}nP2h7E;1Yi%KjPSAnloL`ufLa064xmB+6$7XwVl_c#sVt<5
zVATL@FPNW7)g@ZPvZ)y`_b%!TbpmJ*KtoBYD_Adp`j+M0X6AL&Qxa_wK%)RYe~_>7
z|DS4;Xj8$ofcbkLX5l%azE3IR@1;2c;LmVANZ4HgGz*}404)OML8HL3<ixUMl9mC`
zn4y*EB$G}!sb>bzhV}nSX&>N=fWSjaZgG{x?hPRCM?Lh+pZ4%KKJ8es?N0vWr$Ydn
zf3$a$C>0uX37~5L9|kZsfTsiKMpps!4PZmA@=O3d19&cg?g8|Bl*S$GS$1hm=@Edw
z!bYXQFZSmHm~%_%6Tp~)j$W)!gN)t*@bysK179EsU}wnwQUEUpz>SgnByoR1N8f+b
z`UUW60B;8HRsc)SIA05xPd|BA|MdX+2f(iwZ?Ih(ly5hrkdJn|2L#MVJcFeh-wt44
z0E0v^wx>|%^AVnx7$T`d1&0Z~6TrJd-V5LZA?*D30~juRgr$rO;9|G`p6rYYV6^CC
ztW;i;j0<3V0I>k#0Za&BVgTL%d;xqE;2jvu2;j2-J`P}V08<0_Bmg#K3g=#Hg@l3R
zQ;CvHlhj8^F7oM;h2--9zMvk!t-DU1h2WnaK3Z8QCxG8C*fqDCrwddriX+ZNN1R#!
z%o_+G7=T|mqk4cZJ;+Sori20r2VgMzz<gR1;qqCNOu|6&!8BWx{V>f&|A_!{IU6}u
z0{Ak3nE`wqz&8QR3c&H$$tukWV0OT~AT0IRN&G5+Q}>+w)f<2QR&$SXpn&WALS=4%
zcXSnAJ$@U&0#4KbmIbgdfbRlW!fI4g7IBo<*%t@UtF%j>=prYnJ<+v)zilZ;`I>WE
zx_Pj3c>pT{SQ#)6um0Ff`9a940Dr@q_F$=<zqK6L(zQB(mWD!QO#o{Hs2oI<Al3!2
zK7gA6z8wNTbJDWH>@+q%fK37HlM&o3xGjL~LbeG062Mj=oDVhR&lYzCu-8&{2Cz%`
z?f}j#x9t%;Fvdns`-O8&{5636Vl&5S-uOBY;44$`rzi&nryMMJGJxgPltTd=7UhU6
zoTC983*hcO+i`aO7q%0^xn5RnP`Ip4i6tGLW>31^X9UmkH?vRD&T*1tDHP9hD-g4b
z0bCVwDS*oXT;Wn`VNT<}PUjo-mwB~(jg$FF+Vud|JZ--bK<}Q)n_FxvoXRc9buWPX
z0sJleAHjbGZwGKk$cbv{ce!#O+NL&ZdFw|02O{PVA|;52!XF7f=1>aB7sQDVlx2PF
zNkLQ|W3PMLmK;RMnVIdEDXBqo$1WU15g`Qx3kFdrh;42+1B6`WY?q``g3MA(Nbw*_
z1W_Q#UNVT)O&rrIDBb7VN(WIUh_XR*j2J2eQBHVyL9}zH9k*2!UMYy$Ytqi$Pt#AO
zRSlwA5Y8Z6K~xW-Mi33GvT6oVS9mSK+Jbeg)X7is)e~M{@SnlvpD8!AQlAQ<Q4ozK
z+9U{D5EGu5L*Uq1uxSu!K`5d)f*3Z#W@phQly@}S<#D$3ApZO+ZBudO<38rtH4_gV
zgJ>?KMG!56XeIpa1Ep;ct%YX@W(sahceDwjs3)`P1SKno>>%7hv<sp`5Tko4asF^=
zjl#U`*<BvxZ0V-=rrXYLPU{rpe;c8Tcwo8D3h5fe(?N7&#wTgd1o8a&?BVm%x=WM_
zbJ4PgSoRcb*v{Q6h~8|}V!X2$eS&x)h^+~1OW?&IUJ7Dd1mh!kIfz$+Sn-?fYzTdW
z=odt#5Gsf8Y7nml@kbB`#oOya3=U#Q5d9_kMi6fbc`Jy4L31gw^Z`Ns2a`FMf^XTc
zWE30}#L^cOzPXe*l+_4gS`gENcqfQ=gZLnbQ9;bFV{bbz?LEo$zTj}qfjQ|Tf+)T&
zWhA>gq0pd9E$8SU#&DQ|m?&l+vi?EL_L$|46=m_j<a$}@<5}%_X(d*rY-*)^6vW3t
zOct|AK~SOblpv-C`2u9DzHTcrw&0ywPKL*YGd>liU?TmS1CAL%d=|u_AQlJlc@SR&
zVFVEkA}0t>5WXNZG0y(eJUFBV;pKp~bN9VtBl?5<H%40^h#+fqGM_G`Q(*`N5#cf%
zl|&v6;`^Dl{T-b*lbinig`FW5#4H*I5f35}#0HO&8^pYJ&M$-fBQuw~f@@|FoyORF
zvy{wvwmCt3#Z-2nwEb%q8pK>yGH%N{Y|FnX{oiMt>_&FQx9qnCY2R@H9?5^DqjNzJ
z3xjy|u)@$Itgr%X!V->D5Zi;;!CD2eEQmEhtmUwBVgzx&LDG9ylUD}uY*hI%h@V)Z
za7I_Lx7)c_2k~K{3`QBo9ahw!S%-B&tPf&K5WjH4nPU4nh$+L8KilZoz~*G7Zw#VY
z(6%XvM`awFg)>_4j&1OXd|SCBuO@F}uhww=eZ=lv>*zT<ZD$bSdd^>i*dN5MAa>K+
zKWTe{*c-$?>4E%P(x0mDyt&S{x|ZUon@;23q}<<w7+=qMcxV0tGBMa8>=`!sP!NZM
zIKstVz`RgA8pJX2Qy_%n93w9LAkGJIGHCv#?Aah+!sa?9oag0EbK|l&|3LPfq>|9)
zLJ$`j4dSkdmx8zv#LXZs2XQ5ct5U=@K^n7MhU?rAK5{YoR}i<jCwFf7k6;O(YuB^*
zn+vUp`I|E8|B8N_tDv2m(R&=4Ao7RI759MKeh~RWND7&$k61)I_mdzVvyCrjF+|$A
z`JNV5a<J#Wa+4(^{iKAzvQk6lpXJfjZ|%%u00l$fYYz*BfDj6Yz`sr_5<<xkN`+7~
zgkm8S7lWeh-6cY}!4hlOSuRf!GFRyk%7#!bgxQarWu!h0+q?Ph*76}#2%(}Ve61o=
zJGOW8OeuMl5UPgoMF=?|R12Yc2*ag%HA1KvLfa6sLZ}r&?GPG<@KgwOLVSTtdc6?1
zGt?E%I#a1HN`sKOZ{V8qLAj(xAv6x5MF`txrZ*9tSsX%aAv6_|Cde#`WVeTSot(~S
zdI-*txdvS!Gz;PP0);psR}{-=vfkD_WbQL3);Q?4r8sXT*gAv^A=EQNXe0dcZ5yN6
zA-F?$BZN0YXct2J5MB!5<q$fA&@qJT8`ArP&?$t@A#@Aj8P+5Ou9v5oTEoTcT|=Os
z+hc6pxNQAh-9vabg#4pzy+Y^_!V9x(+!me}(ldnTgmB$azdP4HVv()46ftyuItzM%
z4Gftp$h$C&TS{$YydtG=#l6N)fe`v}{|_O2+qR^NYw@YHJVN`|L+BsE(Vv|sYB`Cg
zKD58ZxlzV3G=u>myd46SfgubEVQ>h!gOi!1{8|U=JR}6JZW7|K5Z;ko?}kwNNdEUY
z{YEI4rYP@+z<U1qhe8|?!pIOl2w_wR(>V#p^3SHzM|0+cFfoKN>>s<6;X@%~Ll`Gy
zyrt9lqYx&Au)jmgU0>N&CAIuGgp{kwCm~D@fl-DjAxyP6lRgb$nnXA7j{~|m^D@rh
z5Xe0IT#$1t=d*mC5Y!NMg|IsWZwS5+7KN}l1T6%A2s1;N6~fx)c0B|mgzui%0xUW=
zGZ;ch^l%6fPW414ZRqfe)Rs(Th=vdg@kLKaaOh8FGGlHC`N}IKFaMPJrMM!Q9m1Rt
zz73)EgS4+ioEO5qHIA=^)A*YZ=32bQCEI*Sr9QG{D$N#1bRiAI0~PvN62h$=_U}Vj
zCgM^-D$7Gy5yH<QY!HK$9H6z1ABF$GzLF@-Rtwqu$nleqHG;HU8^Ss(X}u6Oc4G*e
zLU?l8wk<CygkK~|`z;~R$sfOEGHeZjNV6N=3vK5nupn)R;7-l~TlU}H^gSW$4dDo9
zV+i}WV>Ge<CS$a!y8YJ>Y)zH@6fbfUu>Bt5Te<K@2n&+a4~B5CzS8{9l%i?M3nArD
z2!Hif4s-ZU*hr3vhZ7;R+N3<&ML8bAg%viElOZ@B*ceU;IUT|oA&WLC6wih5XNdps
zYwp9bFydic2;pJ~m#jGx4&!nNS3<ZN!ZmK5VH6MJx|NzQj2j``WKGzyAw013zlGch
z;U6LYTKa9yiVX8jws$S%UI_Oso|p8H>r0f!f=>kVl9Iwm4x3fYFIY%0MKD#cKo|vu
z?7V7zdxG%7f<*)=77ZgWwL};t!{`&n3t^NBqjVV6!l)ib8OySwkg|g1!YD7Kf|Z)*
zq>@A{hfzgH)&EJYA-ql)b%oRnqn4Fg+p0soFzScVCXBXWGzg<%80ld+!+0vpm({}-
zMpLn5S&hSJ68^9E7-ff~g`tFD55r;EuystzOU>i1Fq(zYTFPx6MvE|7hSAEh|3BkA
zLd*ywQ%afjp`ArAWQCC(M)xqD4Z|HqyD&P3(It%bVRQ(iV;G&Rwy?y!VWOWr-ZhM;
z!{`>qGgi&>beiRr$Y_r+dWO+kYWQ3j&xgUHdkN-wBmN(u{fl9|B*vjIUJm1xFeZmF
zC5*md^b6y?Fy0U2)i7QQ<E=0Th~?{oZ-mibNM7~cw5rYM+hGh0V@Mc7#b8hvgN3lT
zJmWkZ7REbayek>=n(%)H!^0R6#<(!XhcQy}jtXOR7$5wPpE1He3}fv7wC?}>Pmt7)
z1SbmSB~1$B<Nv8DOPm_UCt-XMMot)?iY3JvLZ%5$|DWFeO!(*j<Iod^E>SfMZx}w|
zS{VNSvH8E&1w^F(;Q#nskZxXfM#3<x)Tj{bO-h83%LyMry$HSxn{TxKJ&Xfk%w&_p
zSU*Ua9mc#c<_n)A_*EER3;9NHuHb|9nKb@3j0KE_@pBjp!}yM4dL?TGSI3pCMVxq7
zvX+FgIE>A|W|6PHlC@OC?*#|$$XX_3Imf-dn+7XcNiL%M>8rw66UJKMt2ueDWc?`o
zr!c;}l0}2AH*9-GWv!DWrqch0FgAv<EsX79Y?2CW3F8+QEj9xNX0eEQ_Y1O=t(;3c
zvRK2lXB;~?aAE8TV{aI{Bo_^KODWs8+gK2zwA>fQ{xE(E<5y`5i(?XNLc&z?Kf*W|
z#y>t=g^2n4>qFd=!?+U0;V_PbQMkQwG;HdZgdY<;9>xhFCk1J9DvZ-%oC)KsrJNUX
zE{s2g4635g?1J!%g8TM5snGMOla8xlOlt4G#?7Bw);Z_+$>}%3xEV%~2#QAV7dtRv
zyC24bFm7>|F6;bTlz#;O6{NxKFz#6VZW#B3m*1^0>0ua;!Wh2URw!b+npL7H`QtF2
zaN<Rf6fu+X3z8&9_}g|DNs6VU3Mn91FoI6|?M#J43k$w7%Jfhyf+LGFON(;ycxG`S
zB?L=GP)Z2RmaWVz6G8u|Swz_g%86dyO09Lm#<8dvL8XW}D3t|CszgxL;?;yykD!K-
znwDNmNbLyf2zj!_!Ho4IXb`~*5xf{d!w8;=pj8B|BWM&s;|QD)xY#EV;G|-Yz!8Bh
zf~FB<u1QOaVErU}?@Kl%f)3ZRp1bHErnFG5cFazXVAkTaH>=yX7I77cx+)*DH;aIz
zxnK*ymV&W8cIp{)7(v$vo{peR1Z^W|&yh{F_vmELiXeMWT03F{j54@|3?FOn^oert
zRfT39BIqdg<eh|c7VHv1->=gsc8kDhX@5R~UJ*PKLH7v%qZYNlwD*kQxd=YFk<~+R
zzhXZ$*uDi#3;byR@_~atrJU8?{C#5Yh<Osek04LZyu_P75xg70dl9_CA|iM@f`JkA
zi{Mr1lQ$!HErMOSw%6G+E7KNzWZ(Ufy+234jbqXd`x_Ck2<mIwyWfgnKm;TmyV!|?
zB3M?k)vySv{bU~;!4URC#a2UU;I(a>Y$N~S8{0b(+&*dNyK0H=N6@T$_6HG+is0--
z+wcf3EJ+_BI5L9MK^vo^+0W10eV^FI@U~TsjlAH~EkBH4thk-t**q*UA%ck!<c}jI
zj*lXk6v3b<21oI61e3`P3^p(&f~gTajNlRbDuPd$J%V-YfmuzbMW9Czh+ujIGa~pb
zg3lxHMsWQ}`WF$D-sMmuD6rQ-k`sZ4UDP-;dzTrd!TFsIpIB;wenGD!1v&k8I^q!|
zB7B=D!VyHoTU3zQ4bJ(!4tk44aN}`06@8~8mz#eC3nEy^m6+c-Gs0J7;~P%M2xf~i
zhxjD@E9$!(XLdXK<#(n&NuL`5Im7%2=COu599{N0ZtgLaZzI_FB%Nm8MX-ni6v6Tc
z7K^K;5!lBkvy>&`lQ!hvb0*|>(!+`fRz~n+1V2UaLj<cLSS_V6i3apc|9OPD)<jV8
z<y4ZNb~%Xa*`<3Odn4Ev!OszFh~U><j*Ss)i(q>Mn<CiESrh?1P~RHCFSKu*$$Apm
zE_$H8BZA#xvoiuVXP59pPtuu-9knNdlP{&39wOKu!NmwJMeth$zjNlWo)H{~;ExE7
zMsSQBlI%PvcsPPX$<9N9N87uPa5e35RL}3ENSoskoS<6~X*0TMD#cThk!G|xD;X)C
z7xA1}{wbW^s9&)1UXI`jE6nX(I_)YahLCI0^Xy5s@rEFKl3jXB_-(QIoBNwgi35!@
z|E2yU-R#mGjyn<Djo_ZxJP`Z)!s&qqoCYM1BY46s$Uv5Xd<NeIjdBLc8%Q>g-#{?~
z#SNqwNHtK@!0_FU0tOE3aKJ!e0|gCpo--6O%%S0gEMlNSdaH*!&0*pgae&xH4p0f^
zYMjYX+CWJI^BZTD5``7u2vRR&pseUjqF6yv>l<ibprV0F1}aNxH3QX!R54Ih2#uMg
zhD7P7j)*k{YZ<65q)ogj&FYHJdR9%SG&J}gX}AnDGtkIDV*_ah6a!5Rb9FQ|%s%Ig
zwMpx!uwyxq?4qX|a2jwJ=0s&zQzvqDG##Hz%jRO!%0O!aEre5SDI~8l83x)&G}C}>
zd@@U+2QCVhm~FsqnET922HF{D&l=`;_A<~x+VZr4ZU#CsuS7dbbGiz4G0cU`PGDK=
zOp<2|^c2!v@L56XJtQv)!*e1&Z=lw5E=E~aZv%a#Q1TZHyeOQ5$mq+gn1Q|qSlibO
zye_1lfmaQ4-{V^5X!bYo2KC070|eg`e2ZPZ+re#+`eR!v@omuu3Q`|pV5os}2L3cK
z%)mRWp@DA=yldb+10NfhY~X#vT-W0beBC#5xPcJ{MjH4)#IXiO2^k|en)6|=xu+37
zv^Z-x?tfD0WP-SwXy79uR3-^w#wiA-8ptu=ks5wt;By0C82Hq{G*PA-_)N$QLAHpw
zh<VZfL)C!SK(2u=4fqUb27(4c2K>xrARsf1<HgBFWUmsF$0vskL<~d?#6;)f<;WT`
zzMO>I4dS9FI1OYE%*!~_z%07m>G;~fYy)!)d}V-nY0t&Z$w}u7%=L|dxd!GL;B@7b
zt0EgdSMCA>3k~cru+zYI1{N9EXke3p#RitJA-fzu8dz%Jdjl&C{9s_2h${q_3vwH$
zS?h7h+;~Y=iMU#@UenY(o1YA<F|gLaIs-o&*uZufpgnUj3pW{Jo+XhYKk_!yrg7$0
z16yRz`9<a%cOJ7(8fR`Zuw4i_H=<nzb{qJ^z(E6hWW+f%zZ%#pe4nLkeJORnf!_@L
zZq14VLa1{GW0pe(4vTV1@Q8t92966qD#&SeLdZ!$W?^0ilGCD`F+dwe&q}pP&KtO3
zpkWkGMRC!<CGLAsl#AlBfhz_c8hB*js)1_;ZX38`;5x@BpYx`HzhwKpAyF<RinoOS
zW8m-q5&t#7(PSUehU6|MfGGFG?7mp?B81tQI%r(-V*^jPlSfe~ihNNdMUg*>6jpCs
zGI#IfsJVwX8JC>dG?k?3xa8C*3W(UOX{vKvG8IHoIEs={l#24A7e%8e7De$Wm@6*}
zU6qJ}9yrA0Tq7J`CY6>_%0xjY4D?2kbt@l5&8XRF6{4sZMWrYzM^Qa$wu`HvN))uI
z8Z}o0FEgr1lpg^UX;4GV-W``*D~j6Uq)rs|gwz$x8)7=IFVO~q9PUO@G>)QU6rEV}
zsClu}DvH)o*jT+N(xRBZ*I|#sA%yQPqyg7ddKAtmnnlrE6c@Yk<y0oom_?AZh@z!r
z$rCv_nUula5c_sfw27j9K4-QdN!uv+dPEwN^BRwYFXl^Wn#!mdB&mZaOzO<aN6{yW
z7oy-6+BJ%2qUbLCX~AxS^z&>KJ)~!zkD{lL=Ol?8#c;xw%C74rdT-G=MpRym;-x6w
zh~mvCUXJ3GC|-@?wJ7>ZHTp@r*g)1K4@q7Zv40d)*wQ?t{#F!kizWF0NoCT&|H(Tf
zilH3k7;3~YEQ)ucI2y&VDBg|YJ<hk6Qa4BOeiXx_$ce(kTJ_Bw5yhA&K8&JjM*2um
zK8RwJM5&DCU~&J?NMEtrF*b@RQA~|uTomJ@pfVwfkD{0qMS6;Jq98?vkE56@27TVl
zWD*0(CzkTLkWU4tMKN8-3_<4oOh{gqFQUkcs!@2^6;XT}g)a&%idj+2j=~>>9z`^Y
zSQLRMf>DH`2uE?Vy?ePWl_9HfW+VzDivBwtj1s93X%LShA^J?tmd2U6QG6-Ur?~sI
zcQeq8d5LqP_$rET#Ej9eh0M35F0`f6U~UxjJdew;aVAB&S`fv;D1L}yRTSSvvA<E~
zk|>r6StPiaGhw&mwY`q-qgW=&3VwC6rP7jNxhN?e-2H5+E2F5k)A3WI%+*o+$ki%I
zwE2nCHQBkA6>F5aMmQa=lOZU*+o2>mY4dXw8^nHN6q{J*WK-<A(?Q%4#V=88jbd9A
zd!yJF#h)#*w@0yC#{KadnLDD`DSTHHsTt`P-pDN7ICGCRD_EspqoBxefJIpRHzB`E
zecmpT&D1}lI2gsDC=OdToC!yS=NTN2;siI$7?NW+$z5nc)?ZS}sVGiI`HMEk85(nw
zkAgKnE1u7>wnEqg=egWExS4cGl<R_*t<)<*u10aqQrKPec|*M26lA~MlGMMW_$P{g
zqx`QZvu_^@-ihLYkh_A^??rK6I16R;q3}mmDm$6t6MhQBOeYNacRKRN%tgd&(eg2*
z#E=>@*Ij`a3dc|+hJrD3=`j=%f*5jlJ7`}thGJq_M)cw_l(Z~M2+3QRrG%Fjq+9wa
zE4-ZKrA>tx4=duqCCAkr4%WF+%<Rd^f>mfKgi5uT+1n&FW2hB_9z!68+A-9jpBUbZ
z;nTOAbz^87Lsks+VyGX(#66A%F{H=fjG<u+PsMO1$=N6dTa5qVg2pj4iQ(I+*`t%3
zw4`TZS`11I_87X@QW<3uSAj!ZG0N<&7@Eb<T3k^v#w9nmQd`8(Qg|!D@5OCK44E-Z
zvZXT0&_<Hj?b$K7V|Xrx=VNFWGZ#^(82?TY?S(ViA%>2^!?sjLy9n<Z!_z`$+ETj-
z=^n$gLY|3%GnSS;*inr$dvY8z(i!DiBfgsC>=i?A>7`d==)=($-ZzF9g}f~Ik|5U?
zJM$IcYx<g;p`S$Qll(Q|ugB0|2nUfONARr}-izV=7zVI1QmcV63=uL&aIhfj!$u9|
zM}S1x7Ao(=@UE50-F0{jBVtfvsIbE^GKLRgm=eQOnR}yR7#G9%7)DEUObj2&1Rl$Q
z>)>W(7&t{Ii1-mZpM5TzdZi@i$6`O(%0f$a5tBY)TVnV;hA+hJv>0ZH&2)*<jQ&3p
zPGe@tv5KQBMm-WG@k*UpZJ!V=2EUM;Z4QdT7(y}ZjbWcOHXOs!7`~4o5`z&#G=^9V
z-^4IChIkB#7-q*XhlR%QWehW8n8oScIFlPY1GoCTPY^2H=ZRm%@U<9_Gl{!BZRW)=
zKZfsOSj5>L!-6~yg3OiYClC2Cv{>{dg7m--9lGKcu`Gu5G5j3E@)%acurh`pV)!wJ
zpJe5(iea^o>gx(|8ZhLMH6pJ4pQLrd>2N~~8)MkcdAQ55DTd84{3861lF3vQTk00}
zsx6g#tLWPVsf^?;AmKY>*cAh#yTy`Zk3>o6guB_VF&v8Fa18rn=Dz)#tc%|T4+wIZ
z{1L-J;heyX9*N;-41dS)PYlOmI3B}=7%s+eg4;-n^Gpn9`6<9wH_AK}!)X!8xhR;*
za88sz1#f?wMdf@9B(%8{!{r#R#c(}_cizmT<&_xn?5~PK8`|HHynn@TQ%d3HpXcY6
z*wEl#I*j2_43A^DBgXX>WZjS9uGrJbJs~XOfuuf^jEvHZsZXrR=Zl-IU}{p_tYLE8
zyj~(njiW%E&kJBnpkN$@;&>`yJ|IRMh2t0&$2)QUw>65!(Lati;wTnJ@i=<K(KC(`
zag>asQ5=oqW|mTM)Q+Q09HrwZ6GvGQsaK7oTpZPhDdjDtf{==FR1#8Iu!`WxO!M?6
zLp6z37px&zQ?Qm`xytrp7qjXLZy3j=M``uqs4r3GZNO@`lb-;HQhJSf=&MN_wm90y
z(IJkeaiqo3&azkHXc<Q<iQ40E2uZh6opHD<-Ykyh!dnO)RppJ}qin4uniWSz9GSw~
zbTcc^CXTieC7-x5J39`yL>r#UHz~z5VBkM9cC>7sjiXbXf6#0`|LrVdmpHl#d0McW
z;4^~V1!>8*<$T&IlO6J09M5x%E@mB_ZtEqfFIhId<LG1Y7vlVb9&^YTDr`u8IgXPR
zTh915-zy^ajiaBH`l^uE;&@$1=MLuaus7p)D~`c&42fgmGs*x-dOMC>_kS%KD9Ru~
ziZ4Dkk4g@;qU7(!@g8SI0_78UKaSyXOp4=UF&GiYhjCmVoHR0y58@aV$EG_4N5?TH
z&TApl|CT%E`3LlI4rq}%R<bZUjtwuGG(L_AmNJn~0W5xgf-*UdDRFq?@WnAz^qy@}
zo5~n{633^atZc7Li(`5mGvfG6l+OkGORK*So+IcHR0Uc3!yEauIQ(&Z8OO{x^f&^N
zWC#Z1sJPA+i6bP@u;A>XW?P;cZGXdSd$~<&RK!>uaUo1fus?-&8)B}AS#iu}R}@Mr
zk-(fdzKY{c9CyXw>o~T>u|1A&;+Px9yg25I{&O7P#<744U!n`+_>M&QqBs@{Ssup{
zA>RwKprt}4c5p8f^5n%#iYtV#6pTr4tP;Lj@W(tZ`WoTPvNn!&!q*EvE@Ym+W!MnM
zMm9vm&4Rzgu|>$c^0y0Hg|ka(yd#dCah#9iLL9r|*d52AI1b0LM{Ir*+$*?G@K?e8
zf(NBOzY9Mg_(z^DxKZA>z#@*saf0(dj-#R<6Fe?hXY+sa`IJP@#&KH68Nr>`%o?5(
z{-<EmDW?5J;eQEU61*J86(LszZ^Us;$aTRxQqP;h@5`QWOE_KqE#x20d?B|5%XBo?
z;62MGDS`XKA6Ux6I38L2aU4&C=aXGMQN1PeCMS?TffP{+3#JMd5G*KINDzXJr9@^d
zBGIA=6cbWhaC4#mdZ}arr9`1+=>*CMFKa2=Yh_hPpke~m6R45E<~mBH1ga%4c%rRx
z0#y>=Q^l$Y)IY4ecPx#ZzX0U{hLI^v|6Q9_lX?OT5|}d4Rx5$pLdfd~sVi7d@cbP|
z?-}N9|1jOrFoEsYmFGv=8%Z4+TQzB_plJeW39L(CeF91X_5{93U~U4A1kw{2p1_C%
zoC&xR=$61U2{cRaOexwXkR?vIb+kzEE$FtE3A9R}wTShH7HT6TBY{k-EN&yGOSfWu
zxQS(p_|hxp_T?7dPOyCf9W48f33L+PS+I*>S1a}D1iHvrbWh+}c3lEP5~%QQQo#XA
zj|6%q@SIpapFpn!mTu2xLA?{`BjVeFF9^OY_+kPt385MP?eP`ieFgg^@M;3D34c@Y
zb;16Ew0|Rk>^cq-hPOl<kih(t|ILJfq6`x3(k6*d*oP)Crmiw9ftvl3_Kh-+KE5NV
z?<Vk`5GwBrIn_LAWC9-uFB7qkN?>#XUnVe<4Q!J-hVvwWk0tfP1jZ&XE`jk9ohV2@
z6ND(?q>qGDo|TUu4b&$m;7>s3JQ00r0-q%Csqh@ZX@b)QX+J~AXM&$6cxdy#Ps}$u
zx;?_<s}xm;SI{S@36`#r6c9o`;RJ%hLxK%o|Ibe(0Yj9iU`#MB$Xtm8axMPsv3#=<
zn4Q4a3G@ynv0LUO@Rg)KsAV=S<+iyOG5j;o{IHmpz@h{eb3_vOmW%Fka-)*1(n{MG
zB(QgD+Cui&_i5kpl5e7oWC^EAUO@?bpTJ*R(v~MssFZz~@UktPPmfhrh(d8?0(U=D
zCU<nNN?>&Y4|XX(CNSuS^tHl&N?=XG{H1xUqnr47?Q|ynEY3Fzu5u@BNMNII9!}UK
zB=53ei|}7KCx2GTr#rSMup@!Ovr%L=b|$bZfoLvbx!9e+o&^3*;2*Xnfqe;_OW@B0
zewFNO`%xkL1%FH6cOeI?)ISn9Xz@cr4htTk+XLppWH=_u@dQpJa58~Y+z^t|&nD1t
zV>-_&pH7%3md^;r`zsV5&Q3p{z=Z^^Se`Em>0l&X64GsJ=4I|ATQgV6;=L;3HNoo%
z+(_UiyIP_w{T4U6d**1K?P%8LU-oALEpyQ-7kAkC36#x6xm?`iw$DMy1#*%4y0hGn
z^alw%OyE%hj}usXi{IrCZ=pO%;J`j5S$Mu&BnhF;f1B-S*z)I^sVTYU599|-vN2bI
zTr+P$!5tqdJ!aSn=b~6HNEnLbqNv52EJ-V#ixRmgnai&y_R_hSTi(u4N{DgaRz}FF
zvgs7d=b}O`Y`JKfi;B6Zl#6<~sGp0<x%f0isgY|QwI!*Ni>kR;embq1V0A&;nKUXj
zb5V=+Uz1il7j<&c{$pEibvvVVb1`tBQhOm^#h>0F7Y%dKgy9qCQ@Q4e-&fbz9`8?U
zBz(;@rExAytZsj<U;4ruX=&0HdoCQgXg0;Bu#*?q=6+}Ue@uM`loZAHHM^v}<SaR7
z7`A(7hPVs61Cn!;AW1}`prVoy6p121L=Y!+Pwtr|Cnaae29g9pktha~DDd5W{Q5ip
zbNbwK>%Ldj)m5*md!|F#-B61*8GAdeu^SHIPC5w5$yI>aXsuo9W|c^v;v<x1Zltps
zZj5jv!;R){w0EO}8!g;e=T=+0(Z-EThVH+qS%M@kH(CmBCHS(XSN=_jU9`ncD{b9q
z#{!2q-+z)?cWUa44{aUY=;THZH+s6!nVoXi)`j(V<MCV@-;vp0Lh0tlnPaxjakaY}
zOmaJSFSVE3d^_M3H~PBy^qSJ!4ZZ@?$Bi#K+xcctm9VX!8^hcf_<^mz8w1>URd}ln
zwoZc^40L0V8~u(ev<?=1h~QAc*92*L`q)8y-HqXHE~joAv%p3i>BcBG#<?+`oi))m
z+KsW&+BdGHjdA0ZQp%<RD);^-yESZEz03BN8*jVufg3a3c*l(iZcKJ#3IlA9{apsk
z8TEZP-g9H|ROO%6F5*NHsZVl)Z<$qWVV_y3$y7I{xe;Ds<2tsD=h>z++MlIzo8iWy
zd&<=N$}Be;Ra54=G0%+;-6-0|71@^YksHL>ZhS0+d=3LuO!M8iq@{k!{kpNhjfHM_
zmOFhl9iQ+>hu9Yht}C5IzBsC8bXAwQF=K*lsUXQRA)g5@cjI$QU%~blzS2@^)WB*t
zzH;NC7mvJfb4PA$^k9<*UN?M<Ob?oQ;CDlFBc}(sJkZ?;aGbia!;K)v8iU*o!wq*?
zH7w)$^F+$=-fDy+ZnGM7gFLN@+Ip}OcO%=4HEtx_P=2s+yKo_u`028|Yt4w|cP;X+
z=g<=?{a^TOl;kEiHVfHe<=rY|o8Z?RUzYxT5A!U)ll!`)>|-T=Pu=B4ax`_f8++W?
z%OkpJJGsN=$e&&)pzL?!fEx$hION71H-2~Hup8g9XW9O49C72MGyS9+r`&uXO}I1t
z7>`K!3Be)jGU@Z3@E_ecE#!N_9|XT{firHLb>k;Vo)bJT$c)QdU}+1p<O}~tVe+yY
zzqs+M8$XMFMeyqX@mchl{hAv$8DO8;x&0>Oy5J4LXUpujgxq%Hg+jc`vAi?wAHhEa
z{}iP7mm7au{2l{rnVsUlZrtbm&+u^LxmX`rKL2qB5dK84LVYLwxjkiGQ98D9F`2_-
z?lDO)S&&H<p4)>w9+dE)qz8kS+G}$yFb`7b@E{Ey9FEzFc#zM7{2mnWpr8kZMEr4;
zt@4#LZc`3q78d1;{Ao#7(u#U;p}(DaF%OE1PLV#PJQ#o4R@H-Q9=zm1X%EVHP}YMg
zEOTOdIS<MU*)}n~f(IkoxIXBbSy9MGZCsT+V3J#9Atfg(bQ|6^v$_X0JlOo8aU&0E
zdQi&)n+FXzF50+i3)U5^<H6oGu8VD4^(0wekUsylaiw~ocwqOy!OFCCQRJq2kS0D3
zOL0oF;r|g?U}Fy!=W5VIu+^C~@^lX}JZSGh2M?Ni(87aah0<Gjkm<pYyS6<ORo6Ks
zOSnsrVoMLdWTlYM^JNcOd(d^h(ngS^tp{fdHEHKTsTvtw+qyckQ#_dG!F&%od(eeV
z>cLxd_Mn>wuX-@hgYKLe+SvPg(9Z*-wY`T2Jw52<!JBPerCQs2d(g*&Crz@Le1+w-
zbq%}ZAa}K~_vc<(+XLe;zyl^{Udm$jK@16YSsVLU4?byaAHriftPb_y^m>)n*E|>|
z%IhAC5i*<=XqxthaC(mLV5IO-f};h4ZCx}mdtgZl%Y4&=Ypw0$Si{zKR^V+9-tl0v
z2UBE^6Fhj&gZDjnSMsuO*6m2otQDP-Cwfq+TGL6Ak$FegOrI(~vpx9OgK5IKqv=9s
zFmj|psLb?WmSz1=$VVP*Z<6(*R&zX<>%kvAvsfk-?vYhp;K4!<?zU1j*2;rL9(?Y>
z3J*RdUP-N#p)6+@2xoE$_ob#S^<d>?Wtj(`d2nQgLjL|`Tkw6A4qwp3sJm!?cFwWN
zgD*YsaFX|6wFh5$pk1=NJ$P6%eOFu8Pi<X~+qy`IJ`w#KK8JJBN)vSw-GhJ!K@UP6
z#63uO5cVMAL5#=i!SeP^+9WxNQ988BI(9m%bURnUcA07ITs@QR*&eL%V66x17*~~=
zc53G$(s{iH8@QwSS;O18&iS*L(cLD4e6t5z7-?P%^kS<A+c=87DC@=79(==r@4-d3
zqz5}V@ICm}gPk7m&AvU1+X4-C3EwT)e~UtWujtbab)N_OJs>$CNODlfAwlLH+E_Wl
zk;1_9;HU@3I4<m&$2~a7`q(pRJ>dcI+E&M?MOmlVQ1`RG^Wb|Aeh@yUmvdG-*Glm`
z!@M4xW7KVRFw1$#NV4%*2Jt5k-oBhha>;|soa?+O?8VO>T=DRQQ#|zGst3P#@V5ua
zInsV*As*cF;I;?9i9+#)kn7yVfg~om-4x~D$2Rgi3@u6iE=ZrdoPyS-()6b&e|eCV
zr2hY0_eA_h@L$3E9(3%l(BY8>k3GoiMT!?sJowLp=N{zn;;9GE*#4(%o%5yrdOWpj
zR9SdKVKT{!WG|G{sX4u-HP@>Od8axVxkRLr+Y5?$yr_}0IZcpc0ddafMSe-X$jD*~
zdeP&Ca*;0|MHPPEtcVvyy(s3zck;!v;$HAeN2LV0>U0S&N_z3f;>?0eGO2TWNlc|h
zoSfn+=S6uh>UdGtiwa&;^kPoLR?Uk_Ui`Q_bzNl#-*_dd>_rt($g6tIWwlAFv%)N=
zpS`9RwY<pFAT4c~+MM6OX^>W1lH~QgsP9Fl7g=6@8qsF+!tRB`iw2TRWeW)Lw{xjN
zzKAPnUgVu>Cu!Ei?)0Lm7tOqA=tUzh8hg>ZiT&u9^d?@cX>6}HHhp_L*8#gL-HXd_
zIcir>T6mG+MRPAkcFCO6K|RyXwX0^@y>_ne4=XM&T6)pdi*8=D;vsl>uTbgaMQb4)
z1=|QxZ|g-n;q3)G2yR%W(8SHRQtd1XNf$3)IaDcjXTNyyiWhyo=;=i-R#ouqWwlUy
z7dQLO%syU_)U}fRyy!0qP1Falac*W-NzEV*@?x+TSG>6D#SkyzsgC!&c;AbmUcBbT
zFfU%`F?unIof1%n3%=n+sp$?TxsBlP37TZI7h}A5%Zs-;T?Ey!UcBkWI4`Q^Zs6{&
zj;HBCYMb^hBCW)C*woF^9JSR6?3(kbbffq#k401TIqF0&CV7#~#`j{f7gM|lcoFns
zsu$C|Sn0(oFQ$7j!;9r!eD1}89~~cfQ8@{pc`?(ASzdhT#Ydtq6P)eEA|W3$@Py12
zT;Rn#AuM6OkS)vX3oYdnwn=*zO`nRg*wUA<Q-n_x>rz3Zy=#Aa*9tGrw0C{s1^E-v
zD`z$(|I&*B9b9fNJYKB!;wwp3>R=Xb@8I%!;q$`p#r<hnZ9BLIi~ddrmnMoXIIDw;
z){qxrFAN@a2UkQeD!8VDi^{PMu9z2hGMkXcMJGvkaZ9Xgz5FBvj(c&!i}hY?@M5PI
zyS&)wMZG2pHztXjyx43hTX+@_zD@9JFTN47orC3+?M1E~qP$2hxNh4m$vuK}*z3hU
zi|=Qnd2!H-L#)Z^Mn^<HEc{zR`cpqD`Y}N!DW3G=lozMjww!;w_}+_XN7w$2u3Q~m
zRXVzUU|4#Q-qH0+N7saou1`C<&N7}my3Tv?lX#vJq;kQFiyXq7@I|@A`Jt2P|G1;8
zL?;&=SS+_Tom{_o@hjWSi`!mY^Wrzg2^!?plsV^BF5t-RI>)0I`A*p8yV7oYG2pCH
zu(on1p87|?c84>-xlC@q3%Sd=OUR#sBcIp%i(~3}y}!M<C*&W&e+BOgJ`kkOf?3YT
zoctO2K1}oBKTiIPb04bs@QmHW&whH5!)KCK_sk`4l6)xQLs1`+efTAxJ*N-3e8}xX
z9v|}gkl%;AKD5qqrueYq2lc_c6#Br2-gi<DolN~HZl|e$4~4`^hl1ivoxHFQB=qdN
zRw?E~2_H)OP}~P5Pkx-KM(m}0IC|1Hp@XBG4=)KXEm%g7rm{X9j@U`c`#`q}f)xcT
z2~u29C#|Xv)mW?#{d}nILk%BV`q0XUnm*L>p|KB5eCB6TYWvKO2{aI1N3gCB^@P+H
zv<cF4;saZ%4~qD!J~R}<ylF!0J~%AJDTH55p|z0@S5~HwH1&ZWJZbJTKL^oFc)B3P
z3?JI|F|9PU@F7!tvIJd%{9*%5FS8ka=<GumR>^06ETw}F9huh$e$S+x5AA*Cw;D>c
zb_9wx7`rEpe>T2<)%?y$Cm+UEa`Lk$UB#iN<fUgfNp=_P!8*@Nq1a2TEWEdme+QX+
zdBsxJ&E~Tc7$9*n&WBfhVEOz{=J6xvK-SZT!J<$c;lmIghWhZDr3@D`%!k)4h5t3t
z^9@N(xo;ck!zkgSSzF6zjL-aX#XygFAa9EJ`O%!?eRzwtWf#n{P4ppkv;7_6OimE;
zt`F}CdEe6c@tk<ECX>W@vfvaS>Qr*RzRNz{hZ#O>XRP}0fe$l%Smnc)Y!e?o^x+fs
zkq<xn9Uu8H*N1odsQfI(Y#;c|kdJ+s<HM5jE^bA7nn63yhiE0|d><D0u=rQULP1)G
za&jQ|VY&1;kBGg=GMD(U)Q4q0eC7jNfXz6&jiXuA{!&%P=T<DO@Zk&L43CvQ^OHf0
zrPV%s<%8ivoEd94+&*}H@Ua2?sU9D0RdVv9JuKhv13%mml=^Fex?n&s_lF9tA@K<d
zMg*gRF%F!0DRfBq%rB^H@L{75*<zx&#)q{QUngX}51YQTG0P?&=KCF6e5l)0WgKqy
zfuGqS*(wUfZ9={l{6?%4clxl)ha7%$3fk?%9@dZp$A`T>?DOGAA5QzQUjp?IhrbU8
zeBkFwxE=K2P!E%T%f4Q2J1%%c@TlN1LAE)qCww^R!zodi{6WZfg5L`=%sj(WXbSor
z1@@$#@!_lw=cKtfd@lNMUieRf7X;bPw=df+F`Q~TxLp>KFVlXNGp7&#`fy*W{VV&$
zhuc0}ljLuL*9C99;Lp--`pge5aSYDr<htX-9~{>V&Q7l1eYnfuFYj8`+QB3v>MtMu
z_TionDLu^yWZ3-UL&3_f6L%ckR_->(%LC5y5;+g8(e%iN$HJdj3Y+Dr6=~0Wcy94U
zhm(_}FIvsAC;O4p4-#&<{K)M`9zXK>k>UqL-}<L%DqJAzh0m3;t^$4(^rM%K-Z~2T
zQP_{yGz`<s&Mo4{Cw?sQqo^On{3z~62|ot;G1!liew6Yf(~m4aUh<=~9~n}IGJcfx
zqrUKRev}td*N+N9SY}lr75%6rq_U+~5ppAcPWn_6UfquxLTU=u5~Q`ZA9XDL^2nrm
z7XKrhY7^eTQd0d;{7@yC=0_tTc0q@rQ?Q{ROYT-bsj=`TmeSOZX2R1gCC4PSIS*&6
z(n6HI%goO!x%_D9M;AZ3vXMpa=tn0%UiPE4A8pux%`>^R6|&}y^mdlgUPuQ&R(EpI
zp|j*2*2r8F<k-;v-F5Be$H-txPqu1iMt47Yh|hu_&0AW%{FvP;t+yaaA3t6Z-dC`n
zV1LUxz>imj4-{OxDuY>u_%YOvF@B6?ze~v@{3zEnZI~Yw8zsLk%CX6|;eHU`V6UCB
zk#N@|{hYxtS{#}l&HbI-ysP!5A0H=_`67<<bEQ|jC47e9+kX7`o_Q1h9Z62`<6S@A
z6aK#76h9^knIt$_kpBPmGYg;U$23u<Tl(ShDIfUp*(F<_<?2j7X8G}<A0Js(R%y2I
zj|Jxl&b6%b{9HsJlf^FZgBL>0t|<%s_-&cFqfh-X)}{vi2>G$tk0pLA^<$YIU$UFH
zJ3p55&@S0m`ti9R!(8g3@%9ydyb;Vu+GG2I<7K>k>sPk?Z`)_qQCIoRe}qWB^26<i
z&ksL);ZEAfb7{^2b`LA_PnuWowK}Tiht6`I*j9gKyZ+o3@T2eB_U$_|_}|5dUAC|v
z5ypT9n}(<#F+cwB<4;!AkGLNv{5a`H!jEh}cKfl%k2QYtCABt5j`e=5^<$kRzYAn?
z<GV104mdXWvC)rBeo)!$$IS-zN@wg_{MahWHnxwDuLbE-^L58|;X4F(3huJ3vt9PR
z!jJh;t*Lz<gQ`IWbL|)LfFB2i9J2fm`|+*tBZ5aQeROHZamJO)&b$Y5*-ugT<ANU-
z{iykBqwoFr$&VqkoIfy@{5Z`S>7YID8T(%;_A^!qXN8>e<GhfKom?#HB<%HaG`%Fs
zuYO$f<FcQZ3g!!;v~s&5rmKR#NQ+VAgW|vW(Y};}{5mJYx*0db;ilj%!P|m#xZ}s~
z!tYuN9~A$~kH0w&YsjPFo*)1C@xYIVRLYqTV=qau|LeznzxfO&OZezk+Re}HkNkMz
z$A41DW5I!|>`(o8Cj7Y{GjFE#u-Tiecc=xM<j~CSOA;hW7Lrp#E+IcBna!A2LyCqH
z8cJ$_hI|?dYbc^2zlIeNM*;C%(Zbp9s=c6w@mKBK3JLikkDYo^4aGDR*RXAtlcl8%
zcjU=!AGR}XLQZ=r4KHb^s-c>O(i+NWD9`dEjw??ax4mNLR#pSCoCfw0Nd?Uevx-)2
zD+#GASVfR|t81vC;pKp%o`&SS_L>^r&10{nA^S&%Ua2W7P+L6fXs9cMN~>Xx2hW=@
zq#I~R)sU$ni{!GZXmDt73Rg9xX*hRT;bzzP*)D|+4Ml09p{bBY8XC)quR;;i+Dt>b
z=q)q^w%9X-H`hRG88o27i_%D38d_@TsG*aFR;;{+nP1u3X=trsi8rH-BsYDYayFb1
z`aZR-278TkI&ivZuc3p6qn%t#5<9aQH><rg{w0Dg8oFxereSqCrKccCcMUx(PS4Ic
zno#Vc;S~+9Y8a@YuZDgaCTBJopy7HaSAPx5FJ&^B+}Xus8NopsXdSF!i1^Uz?CjDU
zDz~AM_td4#*EI~+%=en>>v%&mzvi(`!`B){Xc(zsl!nn77HC+gVT^{cJU|VzG`y){
zoQ4VPG7Ux7*v4z%KU8lC9?D93o4flf^&Jg^lGVO3mH3{9_cct>FjWIj-xIla4Sn8J
zTYsZWV(WdQP`nZ{f2dB=Fn_W-T{G9<CRse+wy#v$3=JP>cy`CmjmZx+e57HHhPj%#
z0{d)El`aRrwDYl4VCrmh1@l&arc$|Z$v#iR7QbyigY9}MZ&`k#VUY%}2A_scH7sVk
zF-SC2S)(q|uvEh`&HVbxZ#PnyYx^AAXBsv<QXKg*{?cqKG<>1qVg+@jW}Zrh=1=3N
z>PS{G{PJadsbS}0+iJnD1l@uZJ?!GnE)u^6jRk7hs6l72G1@h((fElfWyAy}sDVcp
zVo01!4GTsDqk<G;LJSRYAqh(#us);IPqr_@HvZmOt6`mnYnN=?)(hEi+qQ|(uA$r>
z+ZGM&&!>KpPgzkbt#F$9-GjzkHSj<_y{LSnVY`N(HC)lKLqoVu#vu)d8R~-@?9{MJ
z!)^_GH0;%I`myZ*t13SGIn}JQtyh&L&y+lyY-`rq4vGUmy!_&i?r%AGHGHq(2;-kq
z#~Jk)$9s;nlfsV+o?t)bZ$Q&2HqMpQd_C0+L-|3&kL=l6=@-TSG&`3AlVO=tJ)@!5
zGo_bJIj@-?e7+zx`AIl$_fz2)<SKk%W8O;|)@Il*Yj|g)jo*&Ds^J$_SVuk`zp`;O
z{LSfF!*7gODdet{e?!A<4R<(+N%EGU^NEAIKJp}$E%UoL4{NQG|Dl10|EGqUE~QjN
z{fq5C#ikWh|IzR-gI2?H4fi!XkfV6QN;2SA+8$}R>o6CyU{gHSu=1>p+o;a2|HSRR
zdA6q<cR$)rO|j+Bk)$KHjyyV8ezK07Og=O}xy;8lNODQ?{m+%Wx_Ph*I=fPIbST__
z{M)lCE16$M0o`o#o?Fb_6%<}iu#jM39Yur`)lp1Gap4toRMb&IM@jBi$E$Jkz{}`(
zNvtfVv=EAAEv1~0@~rA6^BzYf9hF6?t)q&NsyeFanBKs&R@YHOM@=g)OJh;gYl*V^
zws}{D4s~?YwS2Y|OXH`fsoQik(2=S`(a}oB%Q{pYX*wF~XrjZegI`o`sH2e%-idGs
zI&~atqcGWLp6!EpCUPjPhA2&SG}EzAPi?6qT?apZ-CRct9T_b4T6)qK3ZKTw)RDz%
zZ?d^`%s8SPD&F9WlS*m3LZ#Om>7jk8=iX3S>*mj>wmRDBXrsd$SA(5h>)I&o*%3NA
z>FBIu!mhNAI{4HRAILd<#KsSXchS*RM^7Cqcbnf2@1~=Nj!REW-dzVDclq*&?XM~-
zzcEgS<!fzybiATtbOd7}=&Pfjjx#}=4Whq}0c?r@)Bs-9F;K^kI!@~tq+_s-bvoAT
z7@}jSj>$Tv=y*-XFdbubjMeeFj^RA;{i&lk|Ld^jRYnSq5G?hFgUSm&TF2r>imjpf
zVfi<8<S&*vUdLOkL%Sy9bQIi~LGreacXYh3V<L}NHy84FSI2ugxO!l}zs&^%sc^{;
z65=E=(aL1yQqHM5rs?po^%x<#xz6A$9Ulsrq2mJ~6ldx<)Y(PCl>|RxU>tOOrDHZb
zsJG)|cC?PUI_BwEqGPFa%6!331s4b|6#PWTA|dQJ7P8plES%diNq(W@Ga<_bKev2V
z=;m4{%(zmNRf1ny*44VXwBn0m-E5+Rj&08!J{^AM(s6lHil#%?5!W$ugBs8g)UgWY
z%4^ILVjo>lxD;1dN{d)!Ms>t2Zs^ES(frMrV~WCD**ezfAmO?myEZ6mbsX)izE{Ax
zLB~cNdv$XawoS~d<CBxQ$hYX&s$;v39Xht@_*%y|lAQ~~ajCdFn^Fd~OyfdetQA*<
z<8mQ8b?hQvY~L;Q+@mAAvr1DkS3Q8bPse^{*Kv^JOUH2?hkH2=5p{gaaNUs1bxe+k
zcvLr+HJSfJX*SJ#IGp+k9Va<Do}~St;}pa1l=7Vpn)u}_^3~_m?{ygYog~al|1&zy
zvL*o(4d9%P^E@;if9Uv0#|0fXbllW&kt2x1pVK>=nla;7f7WqD$G=4y@RgIR9FLQf
zX4g_T9n3|A<op%onvUPt6y;U&tBrG!TxX1pRL+!FZ*gkPrIO#~Y_mw2w@M+uqvLmR
z7<<q5?|Su59e=S$0!RwrZyon^JYv8z{=ZWH;eK`87oH=Y{6NRULym`%B$-o5r4Pvy
z9slWg&I#~a$5S@uw+@nLjOq&}x!T#~d`H#SC)1Q1K+XX21dum?Tmj?`U{#R@T<epI
zU2gwR;VP(Hm@*{*1W+J=f&t_U{BJc(`s5d9`d>&^xl$@u$t)B=;Q+RjQRWwOHu)v>
zW@mL~Ewxwxl>(?7K=A-d1W+=7jZUR>0A&Iw6+r2t_B>mYUlMZPmOgd0QZ|6{0c5?b
zmJ48I9(7nlbBf^C#wr9*sG(9ZfaLbhL7ypA0;n1=*P*ZlP%VH{PNil5wF0OfK({{}
zyJo620yxrIUDHUZ9YCD`>Pcx6ra9|!POF~AqPWNfll24WJI%?Bt6emZ0$FA%>$5bO
zBrO1Yfd8UkR1l5;oB`Yj;AQ{~18Bs<58%rH8VArMfHwme7eLd1Id6{)U{nCj0!R-a
zgH@`S-XUNvbW2n709pi)DQ;PUtpjigX(`xBke)BI!m_9_d7A**ir&t$whx#K9MjY>
zfKCB)4xkGUB!GSabY%+!z-7*8?JoYk1bbL{dkWzS%e{s43E&kWEP+|5_Yd$Bb0#0g
zwh}T}aG>BIL0VI}VyW<<mhu`qLTW|p>j4ZG{SC`HB7lce%(sWQjSgT;0E_2majC4F
z-{xZDj18D;z;WHT@d3OQz=r{R6u{eZAhQDCQooxkq`wou1S(SCdjU)p^1k3i!AXLX
z1-X|g0dT!Gl4+JQJ%Aa)KL}u^kbAAnKh1b7-?g`MWw+T<4c6p~06q?wixJNWU~T~O
z#CfUUe8B|)EDYci;fn<q34SWbGIv)?Ut;l_Wz4-SljLWD%LDk_vaSf=cj@bu5+@zU
zG~!Cus{{BdfDIfk0k{M31h6(>F1_s)3<nSiz!v})netoZXhQS=0z!g<A<N3O)UO}T
z#TB@?NOv@VnCOOJTreS+Ex1OIb-q<8g^OOT3t)Y~T<D6cSrIqU8o-_a_Hw)jz(u}x
zvyaNBZxtWr+9uh*7W_tVyWkGNor1eKd}N*US>@BY-2A=(_KW^=00$V=ZJk^on=6YQ
z4B$`zhsAUvfRjSL6+9BaQ6a|!x!>b#Kv_-xRDl0)m@)iQ0N-2IGXeZy@gD;?Eu4#X
z(e148bC&fyn_cR5L6nPvmn`dL#@<%*KR~YYbtQnSqW@x9e-&~qfZv2%w{))Oek*|6
z0Xz-hSpav~=>h!13J367L6xg%-{tHYz@GtdacwGp2k;jgd9#hHZxgB93xG?s(0V_B
z2LU_@fKRiGeByW*z@q>ji!-y-FKwqjs#5ykXQ?Fr1@Mcj3CZ&Sas=^e5Celq3L-g(
z{6Q25B4-e}g2)p@-k^Cp%N+z?7v)=5<d^Q*Qi4Db`GVjQcmu9FxCqqod&-veYK|^0
zDg}cm6g1n}9yBN6!a-CHqDl}&f+!k9F)@`Dq)+i6N(50dh*F}I7JSLFmQ776WATCy
zbCk1q`5-C?uV^Wig7|M<77MIuDfNX^3!-`uHG-%q$vT3y1ZxX2OQ(l9>I$!CDJeD0
zv1yZJgCJ6cD1xfxlNLm!F6Mi7jv$;tGz_9q5N(2J8$@IAX)f5r@^2bMGvVo$k`V;Y
zN-Uv85Sc+_iQY=kCD_vPWDQ>y-r7>;oygTLi1tBr4WgTf9RxeFwHKIWc9LXg!7hRn
z?;kQR>bgs^ZxB6#=ov&W%i1T1-WK0`-t>G$lCz7X^b^wGvJMDxO>@&>P!NNIcrA!w
zjFUpnAv~f(=6Za)-%^JLF>+p3m&cCRgXSWAZv-(y$nYRadzI6@9TW@iO}S?zQyCq^
zm>|4C_<|T4#G66P2;zev{_5=*7sP}h-W5JRh_`}xn~fY#=4xoPz7sT;MeEku{vNZm
zR3-&6IcQ#~zAwp%g4IT=Q-YW(`gB%xDW(NM6R$AoN$W40?S&7d%nV{y5X*!3Jctj2
z_$X*DwY(&V*+G2F3S3h@WuP8So+J8PMr>6lV}731Ci8_X2x6g-PXrfP)`v%OEtW!9
zPSY-~r9mu{ay|>9^Ty<3R~^kKn~ONF2;z$%z6@eDTR4bYlbqj#l~qCP*qy8XjpUi1
zfCKHTAlyMv=i<(dZzOwy=+ng&+mlkPej2U*AhaNMvLk}fg9rq%K8OuL1i8DQc`cV6
zL^y~)TPm?23?Y#qqC(Ce&P9hf2iHpTQXwTdZPip~g1M$Te?P3Ok?eF>8^k(`x2UOZ
zWRDzFx3P1B*c1dW6gLZ!Yzbm3Td$Bx&Z|LQI({RCbEWw0K`_Z}2Pd2|rfGK&dxAI-
z#K|D`vRi{V6vSb6#6`z`_8l9cvU0Yk8QTYgcz!@-lFPDx8^n<yjs?NBp}AmmxN17z
zIy@@5NREqsdS8mOt8$7la9tfg+xDZ7?*zXW{6UbbA#?TZ(~R5Q$y|W=ToC8^<2QtJ
zA^gN6VyK5OB!r7WTneI22z5ia9K_G8Ob|IjxDv$GAbt<xZV<l&@oNw_*@KMdF^#ST
zaXp9|oHi?@{}u#S!zAI#o?H!+XLc?`dz-P*MxlO(ljN92T&$L+gR`>!V7~-$KZpm6
z|Dd^K?cYJ%3!+SQbHPw9C(2bs{|Vw>*7-gAdtF@n-?y{mhe13Ff)3AucpStN&W%zH
zmbtWxYh4!?eORlfBJwh0&E^#DJt>4_9;{29R@k01gj^xy3n709xkJbkLf#Olql9wW
zrhI+W>;)!MLV)PoYNRn)AcTS;6c3?9$UF@_-J;g&sTK;Ma0tx8t%#7KAr!Ne<dD**
zu)S)z^pc{K3gM*?N{7tTN5v2-2`LjoSs~>F%L~$>LI^L*nVr0H2-QQ_J|(G&SgTq-
z)k5$UGG{7oHA1K<dM(RZI|S~Xrg|aN521Ys9YU~$&>)0nA*6?p8iEo+;}DvJzzYvG
z1bYY$;c0BEa_Q4Y*_|OY41r5|HVT2)QC!lLp1dmK#tR8vDK!n53xo2HdNwkfI)jZ9
zLMv82gcc!WhR`yELi<v9c~ibhCa=e`LU2h@%*6s9oK600f3DUcv<aD)TkT|D1@@)z
z605DaeN!%-dfELc9Yg38LT?^a2%SUd5<-s<dWO(7gl-}8lB|2kTx2<C)!YmK{suYy
zo>>S(h`imQT)jeIMA6}u5c-DDKZF4x^Xk1{$o#3oEL^6R!AbsV2!q)5719Tai8@6_
zGDB`?2(N{pg`kHpEQHq?9wAH*VR#5{gfJn5cS9Hv!bmpS;ncT67!|_k5XOe^W(Z?K
z=3>O$s&7c<a+#;PxW-w^_z-^YVlHaj_JX5bCAHV#)VEpM;na5o@0?KI3z;X2$sw%!
z&+&c;6GP^YTq-;JI3|TatZqx6BG##bn_4^RIU|G*LYN=I0`91Zb7ly$NkW(v!iOO&
zwks5e)JywFtW3@kLUCRQbA=x-p2_43hnE_-7BUDAtL_j!31LwPpR#io+459(@?5i+
z%^Skf5SB^!tqkEaA(10lFXD4~2%n3x!ivu?ILVYT$6ET1<W(VjY3Zwld?lz(OY(%^
z4VnM&_;}R&RDTFOsd0~mw=0~-0wDxL*d4;25JDk@Ls-ie2q6+eG=z8v3CR@`<X<$u
z)lm#~S=}@qNV$EsY&On5bxjCAE;L6a4~M&0AHoI>&w^>+gs?G$O(ARzVOz+2<J);8
zd2<L`gma4K7O&>yy#2Lh&6ljy%vQFCu!GS!!MQVpU7TvVx-P9!noZ5(s<jR0XYCDP
zUkE1|ejJ0tmHi<c3E?Pf7{Wm|X+Sx|F3wiI6@EB`OXXCGee)?by1I@r)I;F8pnEly
zJ}1PJg>a+KcOiTq0{_`N%>zH+_#tHeH+c4`gZxKMLA}kTgn4~(hWj#-Yw;&PC;t#G
zgmE#93!MDf=3#6J;}R!-c4!z&!}yt#e+c8lcq@#nA^gHQB#Z`O{K{&CkRyzwF!HXq
z{l*x!dhoiC8-h1OxMk_Lh1?N*vsBXE5dH|^Pf7k8!hHt0<@t9A_k{mrDJP33J+Sx_
zArC`%B;>KB^NO0C_+JQ5MR_Lp+_GNil3DmAB{__j!YCa^&M<O?kvnYmd;TyA2+6}^
z5t1SZK|16M^L5()z3*R8#A1Sl!YC}Hh~-%{Y%VIwEX74BAz0F~mI`CETosoQrAio8
z!zdd@IZ19GWY)iY7!@R0(aKdRjLO23r<+qfw`!8C9Y%G_r$!hxh1ar_aSwCUv3T7u
z>ItuJDeA=>slo?^F*pn*3^k0jFzjJ;52HsIjxd~Iv<aha7!AW{6h_N1_7zTPEV-J6
zksd}9;Z3bFyPwFFAv{yCxuv(@F$T?%o@FVnFf!Ylt<*}Cmjzo})^-nbv=iRRQrd^n
zL3l??`KU)yXNz|UqiY!5Bw3?s61Nwv)H95JBK8s-St_ZwkUn9&B7|;z!{8i9(qEJT
zg0Bh=w0s&~%)#F>L&6vl#z+x|3ce;dOz`zEh6{N^kOdyEpTs3%o5~+VquB4FkFl&{
z!+2BpI7_+sX42bXyc0H8E?yMI1kvY&F*l4uQ`L9FcrT3iMVuJM%rIt!F)576VN9_~
zm>$Md;nOT-$GE&RgnwWug*GI8C_J;a`A-qIkHVNO%Ey+^v(J*|g)u*jg^bK83YUal
z5C-wUVaHgHnf!#+tCGpB%->m`GS_3<;xM>?@{47Zmxb|J7>O{l!&n~1=V5#i#>y~;
z9<<H<TUil?M@<`YPUXe+^fJn-uz7(U597-)R)_Ib7;ZZ6RK7Z428>6lq=(_P>gE&T
zXDeCCxN~NA2f_%35fU*RMpQ_|@(IdiQY;KZl)X*N9_OFByl!6;23HDR7e@UyYT>-j
zwURt?DtWye(FQ>t+D0Lp*upMzspzd?YzyN^7)QhSI?Nv|*d4|m_ECeh?P2q$&CW1(
zgfa1|qw`XX-<PsWME=a7X)nXFLE3>Z4vM%hjQyN-*Q?z4Z^NN54u|or`1q?keT$%3
z8*?2C<9HZ9hH*NK6Kt#XD!1>1oD@72#<JxK#cBQ2@6C8neh|z&=lJls<4hRD>XkFj
z3OOfuUhpS&SxG0Y%St*gg>jklWCW!n_&JO#Vf-D&J<k7O{1V2Uu=&`)uVGvZ<G13@
z+r%)g^LXc|H#tUrcHE%b&g4lYo#a<`CO_Jfb}I~Gx60`UCOdf)zlSlSzUyw74>RD;
zF#4Z!{1wLC%MSXpkUWO1(iO))Vf@Q!If8-_+z;bH7%35OHEk}d{gAU+8z)zPUK>&#
zg?U|yCt>_2J)0CU=kuplzdsZ5Trh{2(tpd596?UuxdcBdYhEPh7M@2iFYgbYH}6j&
z!l!hQUy@XsuTLgwZPY>$6po;H1SKNiwN{Y`ibc$8v!ar0)zw8lRj$NJM$CmEOGUud
zA<yhd9(pU8Ns=-Vl#L)Q0(%7Icw7<Gh@fT!6(Xn@G1uv?7D1&5Do0Qyf~p5n+HX!7
znwhpOze+-^8o~0P9N*_Rm+-DG{x@5ywIZk;LH!795!8v8H_>=guU^EwwO3bg`%}l8
z4bqt`cFfiw0wn@o8>B`+k<LUlf;S#J4rI8<9T7Mq7#P8z2pUGvh-KDI?;k<q2==9C
z@kZn;5j2UQX#~w8NROb4G+jmnQ`e-nh#)h9=Av*HY)Nie5xg8h>j+$;w-jt8NNalB
ze5A0ABs&PU6>KNip1U|`meWy^odlWe96{U1X7_cCpqq%@Bj^!9&j_Mfxu|pFq4km@
z?JW*{th_V!ru3C&=_mNwzBIPX06EN8BbfEf!Q=hgmoYekArXv-n72`eM(`S&C<3kp
z!&P#IMeuqA!zIZD!MRZ<()8I9^M1<D{gsgsjACmzl<-WIIF_v)!4v~i4UCImd<30i
z=n}(Q5xgD2Pf=Wm;++U4Fz}+tAH};7ycgl)XZRw5_am4X!TbmoL@+6W$q~$CJtOAb
z=P5k=KO8gI_>!C^I9>3y?kXLIK2koQb+t0;UFE|FKB6hYoBR9@p3=RMGMizxTX`H&
zS?BTf(&t9Zm1yQg@VKE8u`7{u2a~*ZS{T8n5iDl#zodL3xF`Z17n9e%RF*`*_0t2@
z)0ajtxT|Yf1Py*xnlw^AW1KWnmPhcp5U!cd<jM$EMc|IW69ISeWdy5fU8(Rq`{YEf
z54yU(is1X!S^Mrfyb<^!d^-l;awtWhMX)`B9ny(48Y_APfe3;TggEpV`FWKv3ydH;
zf;Ef*aZA-wVisXM7!ky+7)S`|cqN4=Uz*lRa-HCM%V$Fb8-*|K^}k5oEXgf`TO-(J
zd44VA8^Nm;(_dMsoKTdVlH3)+ZXtUj*eitL^ddg@NpgP#2ZS6Hr0Gxuccz%vNJk<#
z8o|8?{)wRb&q{&Qna3hH9>IwSPKxv82u=w(Z{_`ttrx)$5&S618Nt(*^}Q3h&RYB&
zXZZgA`!?NA5nK@cqTnUVr_#pUKSyvyl2;?R&5AKXBKTF5YZ2VAJbx2%J%aXcn4|Kh
zrQhPIq^PNI`(4C8Be*N%56kE6Qb~VV{BMq|d1jCN8$p5IYD&~x1nPbS4<dLdK2I&r
zM~qV8PXzz7bp9LsEQ03|<cOMQgj|9oNkWnZb4JZkLov4`^H@H4qvl;#>JVkhMYARa
zq9_=}^eARTQ7DSSQ8=P-Mo}b+qEXa{qGlAuq9`6kNy$|ridFqpPgmC=yLmsCja({<
zm!c>gMVTm;O>=UrQ7<dbm7*voq`Y7S!HR<1bwf{5Ws6r4QdO{;VD%`xwakm9T2a)F
zg2Op2irwX!)QN)kqjNn?ts6zXDC&!|O>nXtQ3K(rf{LIj$f8C+%)xT(QGD3YoF5uS
z(I|?Hs2M7aqu~8$ZcU?TBAkP6av-&trKd;De;eq~Jc<@kWJ;O+*@IDJMd6B~WfZNV
z=oCfgC|(w8JHgi0-rGdcRyZ%AS(*02I|z2Pe0creMR<=WdJ5^v-n6XUh48LQFCni8
z_7?0T$YN>jE4-hj46d2<Y7_%G1B)^!iosF5Dg3XJNkgJ|J&NIy92&)ILWT*lG<{Ig
z8x|iO#R%aeqZlQGzl`X^u|GzVV=d2P^OD91A20Zp;M<mU*25eVcnXN(JxiG!#rwi1
z3Qn^0KFLW_gijTmX6Zb}4;Thf7*WKdn8gl_Vty10qWFk)dsmq&QA#pfk{?GgCu-i<
z;)G9eWd&uPbZa!PvM`EIqF5Bgr&05)!IK5uI4T!Qa!C|Rqu_~eD`$S$`%0D^#b?5o
zTlM)oiWS1Yu$0j~%r5?tF&u?2iq)cjWm(-qJc67b=;@ClBuPzB7Yqo}8jNCLS@U;I
zSd@rh)Uw7{!*k|%PehR&#n(}M6UCY+)<&@|iuF-UZSU-QGnr>JKB>hsCWq&SsCiP`
zC?#yN%GoSri{MtlZBe{9gKUpt2OE&NqS(ptGEU)1kOO2FhopG!iQ=FTR%34z`-JZo
zJYebilB7dX9G2v_g2$scBIKy$b1aH^@0#=W2}?Q2K9$B~*Ko`Rx1@eArXK`<6g(|>
zCW^B{nEjlP^HJz`&6c?s#U;*TF%*yCGV343!zdm_aV3hYQT!go-6(#E;#aobOUkV%
zu0`=%6xSsgOmVi@rkv~QDz;s{5yedo@O0(jOXfy$n?=2(g!4J?L_wT0H|vim{$#T!
zHTWlrzoPg%ihFFdUCCu$Qz(8j%K2odLjK0C<bR{6K0>`8#RJ(9`OxDk@o^MSqR10N
z-WdLi;wk6t7;?t&EQ;rxLw-xn*psrZt{Teg?EATzBZj0HmmOER<$0W*D~8-L?8@gX
zT04!(_1q0+SFn?(#DEwI#88mV^OSrsFnhj&O8yx5*@lNk2C+~Kg<~iZLs2P^yI@|H
z@S+f6iLhEChLSO;F{H&%Du$P0s1)N;&L|y2nHb8&uxgD`B3&uVYUEJsolYk2v^}|e
z3>9Li7{fnZT})06Dit%GZ#Q>UiJ@u?bz`U(LlZcw#ZWtj6{%|V7;1=8Y(hrO7@p>J
z))FLX9kiV+t<;HuxL}U6ehju4lo(b%bTo*8&0FkZ3j2jEnHs|%4;&;km6_|b$KZ&e
zRSYl3;EbVR49#LlkD*Zvjbk`-A*E>ylYCiCUbN>tWe=PsySdakPLhlmn#YhCLzcA6
zj^C48#IU4b+NTxMd#5;EF|>?f-Y92ij@cunqw3=VS=3v{&?biVF?5KbEnBsATDusM
zZz`4Gq_tkqHhY5E1s%EHxoW4F8CPuKWslR@>|JB%#>O#F%|Q1Udc^Prk1>XxG4zVz
zgBWJU&^v}cF$|62wU~J`>y;S##n3-yK6ubKX5RYYBLo9tc$HmWLKz&xz!>;A0k=U6
zCne(rzaCU*9U?v>XDh?RXCzU`>oKgUtqhOh4eqP3o!bb;<X<YuXxR}5*O(ZXG5Ml0
zHfCOvycxqdHubLL@x1<z;cXGe6-#+X2p!&!VS>fqjp03u-(Hk7kxe1V$%4~jm||I{
zvYQT?*8|fnWrh%bU~pCpAI313T@b@ZvH#t-`dG+p!JK<?@lMtp9<`A9F)WB-F?%qE
zg)w|0$G(U&!xpu|o?JY%6`NDoAfL){v2m8huq=k<F?=qK@R=YFnVz&V3;7Bugvr+y
zVpR-Z#;_-by)mqg;VTZY7<@7FJ{@nmadXGukq+A1UgcvU{us0vA~8f`&|?V15RT!U
z57b}`ycx%a4GCd(wVR7igHYtHx>yW`cy1MIJcdLJ*}@xsm%K&}e6#cskA1Bq*Tt}2
z2$c;nY_#|$sXWCk;?MZm`Pjj|Y>Sy6a{QXZN{XejUC0i>ot$SZeYbehVP6dUV>lYa
zu^0}-aF7G%Y3hr+kcXrNz7^##2f{^#5y+h$k!lP`sK;YC5yOQTE^>6oa4LrHV)$O_
z#wrauW~UFo1H%UVLF&m8evIL?6m>?B%31D3_<2kDNh(RxC3Z1OGmy`~&oNwKB*(z^
zWUu|1o_RHfUt;)Gg6b}(ju@`RxZ;2r(${0SZAIM;AvXnY#ju0ljGSP*Bgx+_pBJ|;
z|KxNR!@n{7CHmij_bi|2K=Yr0`!PJSlm|i{#>`uyG(DE&6U#dAc8;e!1;p^&QgRu{
zVVKq9mLw!uFsI-~`RSKicpkyL22zC3KYAxee#4v=${HvqVgUmM4HPm^Sdyg#ix?;>
zq?mycLYTL>0cIyDX(=4JOul5Gv?ygP{n@KYUAwv1ceIu_P{GnG3aMnEvXCm4USd;9
zbptgFylkMgftm(t8E_hCXrQ(MKBi?O3aMkDu8?|yG}RaKn~|An;GJZrVn8+U$91)L
zEqj^)yMe()(~4eIt`u@Q3_Ka7{Qb~DYjKy_h}J_&3j>)3k_tE*8)#ynsexvaoba(N
z-2joM3<E!0SGhG8LM6-KjX7mO)%2DI#y)kp4BWhtOw!80#x=^f_07Na+8Aidy&D)}
zV7o27oq<jUIveJX`u2hy40IGig^$*EG0@dOKLh;@bTe?WmC9#vw=Yz>8|Y!cpHJog
z%xuq|26|cT*4scI;jdUqUm>MOCk-(0%3XyYcN%2iRRaSV19z3xe%s{EDxc^eA3aVP
zYTz{kZ?oMD3^VY$fzbxW7#MEg4FjVL9KY<?ddV?@_3Y^!X`o$iXZfjF<YT+J$Vt{+
zb{zU7Ypj7c`TviB@dn<KT-57*lR0;`=}<qBx#Foh!N9u)-ZwDOz<UM`9WbB#|7@)?
z@S&YI@?JcKG|4a@;GZnWdwkTV8T^tMHpj6gju{3%Fi<{@3USOdFw4L%27Wd0p@EMK
zoM4L?m~G%=178?eX&~GrZH|FO20yTXxd!GLm~WVm(=QMc?~|_2>0BuM6UP5TmHr2k
zor?`DG4Ppz<!raz$x96^Gf<#{lJ}hLhvW8~CGA8eKR590Xmy1F>J*7gt}^hYfx|Qz
zSZ&}d0|yQBNhh}fk0DR>8}J(N8CY*%1N+o~CjFHV)CD7g0RurHAwl+g*x=e^=A09?
zl$Zg-K%AX*CYkqnc>|hOZrS3nh9N3so#p?{4s#ufjgtJ@z@`_v;1<EHFBCriDTFou
zhM{X<ha~q1?iAc5$kKKj=vl!0Z(*+}`z(FGkZNC=?*%NoX1<tkNScC#FD4u@u(W{l
zn1Kb|Tt^u;`_vQHl;a}uCOA!}418zctbua|zUQDbaGC-6$kwNb+T`a{K8^4rd-+jn
zgMXDX24b7-trW+ugSpNd_{qQ}1D6f+0e(J>f5E^-c0C&KS^ZK~(uurR{xj#0GU`<W
zR}An)2Hrzwt+?N>FFLLn_{~7BIC95v-M|e4k2z^@bhDDx)PD^8Yv7h)-a5a{D(y?T
zW8il=(z}9xaE5%@oD%<(<X?h+3*Hl?DbMp9_jzbN)dvP18s@!kJ~YLR_q&_bP#<yr
zsiAUT{~377i73whpOt3@T-%lB99j1iKIgXUyp0#zIpSvWc~^xF$-;ArGjF@(i6d_u
z#o{O)M@k%sqfi`$;}~$okx#Hd9QlRtRt3d^aq|mrfo`r2KRb%V@##4SZ(bCQo3};g
zZLynoF?J@Km-lg$isPj?O2*9_LpRSlh^6Bw6GvH5_>fzjBqwiq6w2dFzUn9!N9C)I
zZsXL7aa4+<M;tw=#8D-V^f)r&s2WGLIBan=h@*NOHR9m?6h3rUGmctu^C`aianz2Z
zP8@aPs29iXZZ0}p?&f;b%@u3zD$(5}R2EiK2JOw28i&FIiKAg0Y8+{j#UW+d<6tf#
zv(TSK5gWzPIF6=q<QbDOx4Ls!lCudLFsvM{ltE<MHj`GRwK<z2jy7>V%81N3vP6G5
z4p$s4<L1+Sh5u2ytjSomKZRY>Dvsz`2TAKVmR@ymt5PYWT^#M>=o&}2I6B19F^<2A
zD_!FF_lVjljtd3Vid$3rm*D$lD7{rBS<%pWVxMhT5hqRE#bL()HNAw=D~{f*WE|7t
z=o7~)aSV!Ma2#LQl)iEFkK@gIYQH#sbSY0}*m&c0K%8&tnIieXIL5e|@Ks7*?WRNG
z7#hdKI7St2u=%9IcP;tZ=hxy`w$U~$j@RSnOfo!<H{uu($4E&|5FEwQ;usglXi1I{
zr1Mw?+wN47@uIvf_?BhuQ7-8ni|?pq4v=>lFrvI~>1nQ{NpVc(5!F_*FWIKV`Ke(W
zxAjfb>74xISQW>YajbMHA4s)l#=%!Od9QO;93RH9F*B{nP30pgZFU?V$1x|4xp6EP
zWuCQ{MMCBaE{J2HrGLUmYi|Cd`)M4DMO-4dOmJx&^=FvX{><`kvBgY&9>)q%z7Sk#
zS@U;JSslk$aRlNB#^H{`6NfJjf1ED^n)hdUbM{snrQ43Q_w%N)cS?V$XmRshS8h57
z)ESi|6vyqIW>ZAs2n+9UAQzQr9I-gBR}~gw$R6W@3AR`qYlLqQTr0RvkhNVO$BB#P
zCD}$%Hd%UwPm{LBu`P~y3CvI6Ylbw(Q34GU*dE6Y)+d3o3GCzmd`r!jK>h@Fk#qPA
zN!k;~&v9IdV{aV$;@HoTCB>eL<6s<z;`lC(@8dXZ?dy0P-&*`g97ipFEN<R;WZk%(
z5b<Ojr!4E7o5{B~nvZ#N`$5DX<2WtkjOBBdJKAbGoEPOM!3%;H1uqHG;c^_4elq_Z
zy2|OuZJtse#PJK8G>&WHb4&0y%m2EN8-h3ENK7}o{&pO9MERW^%Hb^huHYYn)fbzC
z=x^cw#Bomum7ZIZ{<Zl1ICyuJ;zLV$6vyK@p2YEA98crOnLw@to{2R_!YuH)<(a)C
zDM=KH$q8_g1(MvNqzLA*ta%gQ1u(6!l;0aA7f7IB0>u(2o<N}l3ezWH-jBYvTz#74
zEW#cit#JE&nzQV9rSny#L;@wb7wY2`-m#^^t7sPcQUax={PBME)>P-`r_^#RCxKcC
z)J~v60u>Xenn1M#DkV@kVZH=<t6tW&+iH~r+(z=XSvGDT)pYQkP~Ra(^#p1pP%~j(
zA5y2oM@BMvodoJ8Fs-+vK?3y>sGoq1^?z#mc#LE|6~@Rs`b{#o)C80S{M(Z&9(1S)
zEI8=kmL|k5=t$sry)2525@?)2rvy4D&?JGT3A9S!<pg-?&R+-35=c)VBVk^$@=7%;
zVZPbgJOSQUZ6TPMFmEn1=}MRmEd|#a$>gmQXp=y@1llLiHesIP`3N*0dwX?fGEeRu
z5;$^I?U=x$1z4St#^<7G;!|*466l&h{{#jk&@F-P3G)i}l>~TY(j$Rh3G_~&X9B!@
z;?{X*a-W3x;2&QdEjZmta(iuNU&+!hVZAikB<<A%1|~2ofe#br@039aWY<a`%%W=9
zkAIUqMB-s64<~_P3A~=bI|)okU^ovgfj1Kvm%s?|87(+caFig!>Hf{+F~Y}MO5;4{
z(CGG`Ik?6r@RsOrTh@i0l5B+=yvyoY%6n{H;S()o68lc>uun-~s)*AP_&~^X%V$Qy
z{7uJQ%(RpTosvFEV0Hp?5}2Fd$B1xfpvrymaRQRF$*xLc6+VQ}pu3BmyMR5Fz<~q~
zCh$oDixP+=5KZ9I1QsW-DuFNA<_RoKV0i+cOOq~RvnRj{MLxHgKgmh*;;q;fj3{1s
z3l86%OumvOCp-BoV|4;w@mLbj66TX6Zb5GX9w9SwJ9(|;OMp18MH*4J^l$<J;Xy%K
zLp+?F$t>j7&Sa8U0!9K`64;tRoZ-q5QPR1IJ)6Lq1lA?6o)OOV5yA>D8rQNK&mA)h
zWo;0*je_)V*WE=d)zz_Cloks!zuB0wjgx-@yA#-xz&D)ySpiP_3FJAFyzXT+?~&xJ
z;!bY6I8yp%P5M(Au~$tg?%c~D`Po5-{cN}Cj(rJG<a0rt_NwJaDTfj`oIr9ma%SUO
zMt%Zk6F8T^(FBeq@O=V5u(k=DNZ?e$yiI>HVcsF-yPxd`t0cT5L-9K?4eRduF@e(w
z^R^uyOE{ANk#ErOwhjrO3OJv@Pn<0|O;uAbBycf-$Mi|yQUaF~=4%v>m^Xnd3GjFE
z-x54m6S$th4dK5~w<78qyW8SR+M7{*GlAblxg~g8@Q&rPPVR`^P2dkv{<QSJIHqFe
zDTaHz$JtMI{jcDC!3To0J`^&kqQW;jSXDkz_Fn?TrwJ4(XC|xlHSu`@IkL@1&XTgt
zcXivBQ#y@P=$|VaxwA1e8?R*}Pd3UOag@wPschuUHlMXF^Q|K#8^}h!Y~;`W-|xgC
z*(e~qpkN`v!j|>zR!K!IUMw5Mg_p3D0Si*<wNzfpMy+hr&PM5M@cm^TW|?f1<=(SV
zUOcO0qiQxP2(M`6t(1+*7Uu(a%vDX2p2v>rLTU)sw0!Dca@5I2-E4GW{cYyyvR*ba
zve7&n^|N8iMuTjmW}~V2E7?%9(MWijpwlYHo(+faHFEZEXz6_yr!*Gc#8R%kp43cu
zy5JwJ%>Za&S=(hJGaFfwbP2wkjh2?RRW|Cpo16ZvMQLN{ZG~tT9PNd45bP+}Nsw7O
zXJcs<^UcJr+31#y4@#=tvoS!dJ+jd=8%C?7UXtvajow1~Sb1L&!rKb{g!H%cpnM$Q
zRY?xa#vmbsE$fhM+?EBr__KOgHil>8jcmksDX(XPPj}zhuk!io5mcsRjmk#NrO6|+
z@!=r{#ji#-8lBCLT-j{H8@-v0aoJe88LKv9d^X<7#{G?Wun})(<DG1bT947|F(Di8
zX5-*m99oO_vhjX4Tx-yB&Hv-+D!`?v-Z%GB_azmikrGgZWoLGFk-B*ADq*5@8Yn0R
zAt_P<N=bKzsDR@3?!?BWK|va6L6q(^0RQiN{PzDm=Xsy^yyrV-PJHK^nT;9#G8~`!
zaDm<MVVDn}`LNoDH9idYVT2E}eVF6JNFPS|Fu{idlhx5ae9k`j@a$@5+d+;#eKN<;
zD|R`a>Y=WBP4OqSaXx(E!<Ss^<=T}(HjWn_S+7m>VUiD%efY|U8FZeM<EfN3g$|t3
zruvYT(nh!OPV-?pXP#t}wxhg<MKgUcR%^3-U<*uaaIO#YeE2Y-E%RYM2kyfn9~SaQ
zn|baHE8Poyd<nJV<^7IgDaT^b*|#M^miq8m$wstX?!yWnR{GF9Pg_wVXO$0M3+HgC
zeB;Bn+;J<l?|c}zIdfe{l}S17T<gR4K5S<or6+Jve6W0o`|zU=J}#&awQ@AS4*_=7
zhsABYK_5cg^}8L9_RS1aceqOR%_LI!X@f?L`ap$T_o3A)&EOIoRz|GXOlfM>i)zA$
zqz@b7u1%b!4O)r^TB2?AAy2YY)(hDn$oCe_D^&jonr@aVthI$Jp61(xEIH};*@qoI
z9P;5X_vsR4rw@C4*z3bDoYjxjUG$#}Z8zPcoafXcm3$xfT4fJg9#_t@pFZHjK~X6F
z>chm<>bmltbBi^SBR(AU;fxPweK_XBaUV|m@cZip?&oPId^pLmBs5z7=0lm|&O1XK
zr&!8f^-$hhsohFwk0iA}7*F!FKdJw!@>NjeT{dYKmOIWdrY+XaGu#z#`o&7;ux*)_
ze7Nkxqkfd~<BAVg8EO5<^5Yugtq*_u@Q)9_rL-G9-1Xrv;Wq_u`EXkZOYaEDUZSnf
zb62_Tc+t{&?sxp_!#yAJ`H|trFJqMZ^nr?=2R<}htevRt{?CWGf4Y2|Gdp!u`NA?j
z9rWl6YNj9g{UBi~;736}c1Dy!Y2}ULP5IuXT&}nuMf@o0N8o#BaX-4=QH%NUSXp(I
zrA<z0d?0EGKboy@l=S0jHTNTepKaDk)5ec_emMLn<40LP8d;7f{V3;0c|V_&g&KZT
z@S~#N-X>N2sO0ApY&7!6{iy86{`DHuU;otSd{V5+DM~u3`N8b2jT)PJ!jGDMumkhZ
zlq+7#kHd}C?9CcGR@;wn8!KCnJGj}O@}rL5-t|xWaV$?GsViB!!PZ4ueLv1-HErmJ
z(+|ZDh62?OO}a|%@?%97Rt#0$et7(7;Kwu4$uDQ9A0_QRu*1Ygel+%@^Jc9H=fRI?
z8!u<0sUI5(BHPdRUuZl8#b^D<k<wg2`UA!1{b=sTCO<a&(ZY|Gehl_wh##%|c)^eN
z{pjt-i+;T1$6J29?Z?Z0yy8c9Ki=RJHEQ&#A8q_->ql$Jz9vZhbs>Y??sk5(XW#tj
z;ztKR?ps<%KRU@=?P=pJb6+D;ywb*N-EP>`k8XZYVfLX;q%*(C_1dI-a?8OL&&$&~
zl=t-TgO2eoJ6YZRj^B=!e6n#*PN1drV*4G{_x!fM{qVp={sG-=qt>6LM;#yf@ezld
zr+v)19jf;AqYtw^)OEX^`TJ(}6EPeuup^*+;>Q3#PCoA8OSK02!CgFv>#{;48KM^$
z>c^*k%;8b|80N=kethA_mwtZiiN988qq$N`lo4{o1M8h5{TL;SzJ0mv9)*`^pZh@^
zBRH0g3!!^cJXP8?-j8X1J5W#XW1=6E=w^OQ_2ZGZJzoh<5#*cHs4zVwESk<uG*+46
z$4ozF37;)UalDpI?6F>(=La8hzSNIpe$40E4RS0HTqw9maIqkZmI!(7s%trChC9U%
z(~p&YeC>zNZwHE1e!gZ@`&Jf+q2L=1Kc)S7P~m!gC*o>9)(BZENd0?1eh|J+@JGS9
z->NL~OPc|~pkPRl2MP;`2u1~Ce&|B}_B&}{u_v3glplG1#DymWDJI$N9F62+3-@|I
zHnK}ks2lwFRdKamqY)WYw-?41Ken>}e*EpnHqMeC$Nf0r$4`Fz?8gD}>TXWm4n~!f
zV>g2pV@sa)3&UMS&o1tfl^RQld&FR`;66dx?-xQpJjmnvambIJ<vcu19OYhMxY*!2
zBFcjb9_q(<jd9i0zGzdPK!2kXGD`Syj!UpiJLSitdD>||+Ew!WE|brThd<~)2i)8m
zfBJDomW)T_@}2kNf*;rYxZ%e|KQ1xm%cyzb!O+UFU-pAz@4sAoZkcwK2VJIJqw7|1
zk=&$*taN_(s{0PdK3Tox$8A4$WHlXM!9%@rdCy(O$?~3&n=}6r2QCpn$pHTK;~uxU
z9}oN}6hPqs{-Xm|c4Y*R8L%BDUjRH=P$_ZMl|O)j0gx03;L$Z&>!liz*<po|#kxy0
zo|=mV0O8CQ381KOj*i*l0gU<CL9gS3;vZoP0lXQ&TLF{`pmYHB18@fLSilbZ<pZb?
zK$!r_22d^lo-}!}`s4vOPoU@5XIBiMQUEmrs1?A9gvQk@-qu?=fX4&>yW^-5K-Dy_
zCZu`*HPXrx0T{mjJz=JH08fg3=XYhrO6@7(b<&nk2T)gdy|m&G^5VEmB>**mmjZY>
z09U$n{}%h3FD(Ff0G<FE1n^7%xdC_sXec(>f{g?l3pNpCt)>C+`i-PnT6tDTj^M-v
z1)odnEdzKy&6@|%BF%TcZy&vtWM2?`krSA-e?obGXyI1^=oUct0A3BCbpYQKY1(G3
z{XzO`0lXeSn*iEMm9B#A0%#vV2jQIrY1vW8-7T4&(@K{Bv=#P!1k-7&z-^vSmuU6c
zdfy1xR}_3e{o4Wb2w-LavjTW0fOi8J62MS;Q~<pK=p*gCmu{^`k*4pbd2b;f1n^;6
z`6z&o(|na_52|kf{Y2?6_=(^E!GVH<1Zg=qfVqe58^BKkXxUKxoPHR<umGQ9?EXw_
zhNmq@2pJi`C?TWM`uW0HmpiMxbRQeQxB$Kg;L8B+oU*U(*z9;Q`$}*^029--CIv7#
z%{z&2Op)wV!D#_ZPnXUJAm^~%)a(G}aCHLsmVFLjUH}WZY8y0eAD%1c2e5#Cb;iw$
z>X~nQ>NZgqNehbuSQ5Ze;a{iQTqb0>;EDiNruAOa?c2;%blsEoPei^8V08doyHo({
ztGm~TnI6E}0KO0KQPuXI3Iq@gU|qU}9|Q0S_otPlyv{o$*{~oTFCrwGwuuQTw#|M9
zyAgny)-54%!GvH^@WgwWc>(n9Wk0}by(k+3*eHa`CLx;zw+Qb4wD9%-ehMHIL^z0_
z1K7ba2JuP|JL!-C6bYhe5W51{9l&1!{2joa0QLrOGJsRWq3XT>ehuJI0Q&>DTity?
z@Sq^GG&oHEQSC^0Gyr{tcH|*maU2Wac))(|>IrVHrP^;|cEo<ys>b^izUa12Li;^{
z(*gVuz@GtJ2;gD>X9D(>%sEc%Zs%E9WiGV2-g#aWl2&cKmjbvP0AuFW0ImekF{|mG
z+8VRGEO|(-N$K?fZU|w~O$JQiw*~K{^}9lNdHD}R?r9}o5E(&!w1uUsG^Tq2+!y{p
z@V~U4*;&1?-_3gyo@FwF$R9+3APNRiD2S|}eJOsq5DEveqMV1ESKvg5PC~I*5XFOd
zGKi;wC=o=-ASwm%L^;nRK|C77V?pqiq*TzJw9-Kg%5+@}Ie5EqW}C{}QWlj7qHGZ5
zf+#PRR4N2<t%kdGl|~gs;jJ9S%0WCHL=`qzR(&Ffnn6?*UQLi<^&n~l!Rs7y;<=<&
zD~Q_C6#1{bDO==Vvvq=aItWh?4T7i}v@bigpnVrpF9=5v^@DH*p$7Th6OAW*q9WYR
z=4q}Vh)m2fu(*SEcwytu1ko^v=Yn`Xh(?_A#ah!KvV-=0cjF+M2q8aiY0ZLoHfX=R
zEH{XolhqtSUcr)2E7Hg-MXR=E(x5pTyy|KZL`zO%p2iyo-d48?;)Nhy3?le<4zn)>
zapScdCSK$esNiX0sIPLKgZLtdFN1h3h}VPoAczlxXcI)+AUX%pC5U!hqYYZ8AQCIJ
z_QHAh-64p*E!-W0SQ6Km<q=m_cX#F3gZONN_D&GIrR^TXn?lIn2!d1k*tSfbQr`;V
z?I3#4Lsn{ISK2qfyvTo-a}~tVFO^<A^sCDILFC?byeFK5dhZ|#Z^&lRM?riXv?J}9
zAo>K+Hwf=9j!%N<7euG&YNDKnCmP;h_7B>(nN$V@F_4ZF#NePkC!>P)W!?}jU*7*N
z_J#)Wsffb_S^Alf;esOsM@nlf8ZC{mozI2vbC0n>j1xy)@~MMf%DEjM#DpML2eBrI
zi9t*XVrdY|f|wk{S3%4UVonfKf|we_j39Wk@Y{HG8eL+sHgJ;`+^9_tVi^BOyHT4d
zrL$zPyc4J8+#u!!?GK%br5y8v{BG3V^^1ip5L_6<A|Wi|1v5*R1o@Cv?OLfu%Q@je
ztPJAopnWgK+b&*%@#bh1^%^;2;@UTKo`&jC`6%hzAik5M^Ia#L>a{_9PcI7Em(4!}
zu`UQkfFFbQOOUy#>8mTJC_WMWf&oF=`1jjElG7ClBFYdE;v)_a3qlX#P!NY17J@K?
z_=Q23j+fA^AhrbUtMoYiEr?_gjmvwOHUyE9{^W6w%Y?WebMaZzoRf`Wvq^As+MfE>
zAht2c^ia3UTK^oxPm<+_U>Bd&c1X<OXDmDE<eN0!%kK_i54YQD=Rt19&D!1|_Hi?!
zDSdnV0oQ)UkdqD$=Kw=QsYZ>nn*Pd-e_EmC+_-XtuFGBpaW{x#K^za_55^Wc<Z|tV
z%<3ub%Ifalf;cHI&FlO+R~>gNdwvh%G+pJG%GGC2&d3a34&q7>XM;E=UU8n28N|gP
zdT-8TB+;|br-B`7E=j22^~P0pDTrG^`_sScjIM3HOgFjNgLp^yLu8iIa+_OkXMUc5
z{tDvnAnpZmUp6(@=pP1ub|9(wvzqdjnIDEc2;#pW@`aEQvWGuAtLbZfGx>oDFR*E!
z8AARL6zN8Rki@_|tzgIwdb|nB3IQQJ8$wP9MM5YVLbVX8hfpkp;vqZ|!lSIa$U*Na
z5#meG93?~G^iKWJ!82p25K4zI_>fXA1b#BZ&u3`)SO{f8_9u<ymuqE1_-<b=KXfV|
zLWK}2hU`y!9%rrhl}aI0=BK`!>{Aa<H~gffN(fa$AmN7$6bD>!)d=AUHWfl`=>zqe
zA^SFp;f1mE$q=3jp<W1%ko_S5ud<9)YMl`H2Fa&Gs2k!#4;)tyE5!OCJEW)~xI%U$
zbP6hhL)<Pc1m2-Em9Dx&XjsX^<O!icnm<D#yir<dEToCx@)>Hj)a6K<h3r!yNp1+<
z5V~@<LwGKP=R;^4LOUvV)aD_)5W<Tgw2)r44Dpo{+O)-5E6)59o4mx1opih$!Yd)r
z{XTx&^D1X%qxO0TI!~Y>yvB7&Y7EOv_1|~5VdI1Bo6z06)b=5C2%#g#PG?xG@neuZ
zOZYw!CvR`*RQ)S?I)~6DWPduu4}3mv>+K%G8zJ-v;hhlPqyy}7ycNRR^o{+F4O;fb
z#tJ{C=K2<H>3)}D2=9l`n`>R#)r-@fr@a>fKcl<WM(w{?<KbF9Y2W5^b!H^Bk3#r3
zgkxbG52H^AeM4}E;R&N(2>nBN5W;^Ud=kQd5O##Hlb*n-3t?dhi|A1y3<+UU2$Mq?
z8p5X`d>+D>5Qc^DSqP&-C>3{S=vvupj^QCRFX3hy5yHqc4_#G9a}LkCx5nKc4s1F$
zgqu4Z<GIR{-2a?)j|+kL1wBp3fO0Cc6F8`=j#+PdCWb)VTEhKR2vfK;CEW7_r&150
zO8=(QLYOYfj1XoDp-3|(D&(^T=Y%j<2z83{#gcqM2oKE`vxgysLI{WWSOY8zVND2Y
zLs-sXX4U^XgjFG|5WX@5=bB6=>feO$Z3wGF;Lw=96T+hBPB@sod%ghi`w)H*JrKgW
z5Pl57$2}VYOPL<F^Z!UfF_>;A5<)bD4Iyk~{HMQ#kO(0ef)Ro#or#O3C0$~F9=1cm
zMp9ys7sC2<YYz<`+H4A8a|qi)*e+&U1h)!4>==7a`=3PlIjuh&)Gu_i5dI9|ObEL}
z*h4=YsGbzu8^W(4913BdWcLdm5TwmPAzb~#;seJ7nLQH1;<nzSQtI64pmJP_PH>sh
zHq_a|sSth_v(p^1SpLD4dR%>bxZ`XH=je*1+;>Ab&)68kl@P8nkUrwRNO$_L@Wz2E
z)1?sllyqMX@fQUS<En$oHBRq9^_Jju!5ciN5L&W`E!<|H6NOnW?q7^`CER}tlKdm&
zU%`9a&fF=t+)OOW7e+=Hj<9|Aml;O>Fsg-7J&Xcj6bz$u7>|WfD2&2klnA3_7+EYm
z?JgQd(=BRhQWnA}5=OI3HPY5grC1onrRbMQSrn-d9}$B`!=OF0rNZ``J4l!<6GquE
zDu;2at+!kl<-@2D#_$4augdD)p$;ZbX?I0YDuuyxpskmskFyW?)GC4`RoT5!8cB^X
zo(Q8}7&W>pV~e<IhVe%w*Hi3vJ8vz)+JaApQMa9!B1`LpasHC}G!=%OsX0u{vU=D5
z)YXq@^`!-87>W>8&?Tq|vISZ;2;-SBriL*sjD}$}3Zr9~4<|?CFq(w%To})DPQv(a
zrJBvYoplVnqV{;SaWmn}J}V?gFjvqkc;TLN&|9A7VYCh7gDS2TVYCdRRTwXX(K?LR
z*yhv9i($Mh<R!r_*Rm+SBAn#awAjh%F0<G9dKkkZ&NgA(DB^0~&P!}3Ew>l!5JvVH
zN8t_yd92Q1bP3~2@rtftbPJ;|Lva}0!+3+nVX*&ihVfPy1JUTcFy0pOZWujTB%Jy?
zLXIz1n0kdV=vvl8&LXDw!=TtZjLUUxgAc>_D2$KUR6B3JGD;sI|J73l?{btV>gpfH
zCt-{TV<h`9QW+4&&@et_`)oE0+7G7Zlu?EV(twHCVPZ@^T*zl(9GmE2mS)6JVT=|s
zF3d;e+X~azFjzV!jJb6cHp?m$zYydh$j66q@4hl2j0v6H69p#;P8R%1kVR93Og-b6
z9>$C?B4I?sm>I^bFhVk`v%?r$&$S|qm0`@`;lh{~#(Yj`b9J#4EeK<gkcDBW=bh9a
zBD3U61eXdf3&S_gu{>?|br`F{SR2OoVZ6kbHiWTSb`bfuLcSB7`)Ex%Oa4O`>%s^~
z5iNfV!=E<urK^)X<iRi=HWKFk<->@sIYwS_1nw%aFt&!VEet&jBMdVPD~yd{Xiir=
zj6@iDVZ_5Kp9Y^~Gzf#FNRj_#sjL@;;s(0nNR36Cr0!;hh}RW1vPH7w+r#)Nj8eta
zJz;E`<Y+TZ`8kXoVeAZp`|-O@>Muez#4^cu3EwRkD5vfXV;>_@6=i=I2gCSP_yNYi
z0@!r5;h``NhjCQIBZ436nO*Z|+`Ev;D(~txo(SVN?t%zDjNoJ#r^2WiL9GaW592f=
zWCV!dk1+lW<0d0p7-z!Ra>g;IqU%B!XN8{=JTJ(ilN}0P4C7K5{}$IShjAs0tMrPB
zE@rRM4OTmQcXr<h<GS!jD_f~@+x=o^_w6vaukVF%Ka4xVnY|mvUt#<m#y_I`o7S&A
z=VGG415q*~$RELfX|sG0yQz%G|7sPGER{kL6cqljH7bSES)MYAL{K(@auF1bAhVLI
zSOmo*C?UL51f?S=Dg2QL9*rRTwwpFg56NR}C&E7gsVse{lW^~pkDzh{j|;C5LB$9v
zMKG&OW5%l``MsR3DiKs=&sVB7BB&O@$EVclf+U<MY;q2(=z2m7>NZqgsp6^~!IKfR
zj^MQjo{FGO1f9+}o{xY<Pe<U4KoMRyf_g%zJA~9147{tT5x63FHiGp96)ggH1dSqS
z9Dyf-0t>Sn3X(Js@=OFH+j*HKb}pSu(j<bW9DW1?&Nv<xHH%<jJ1;qr2ImGja-?o<
z1l|btj8mDO6T*wtU3=B$5wwV)WdyAvVD^OwUKBF3VS$$-c$xi-@L|HXo3V68!ve(r
zC(LrCUXR$P__rcx6G7Vuc69c%<2*#rIfC|*rP3jSj>4nuyv#CniJ*JBv}*+2gfsX*
zEPW$_HzhGk@$CqDMC|bRP6Y4YaJ)<3=;CG!>={8XQQi~J=}j)#+Z_thj7z_#L&1-@
zf)V&52t?2)g1!+<j^L{ZYFtzLMKCymArZ_Osr2WsfP`@G4~W<iU?3Z>tPT=nc4!1s
z%euxy@XKEJrxBj-@L2>0E~-o;BY5YCV|WB3glN+gW~q-7gVBPYM?jt8*a*h)M@LEJ
z3$9&0bwUJRa&q#i;{^{TmE<zVL@AmS!R~h6`9G^Po5G_<@J$5Yvgdc)(;}G7-bOH;
z+v<ioLvW_xEJ2DRFJ#VTe`=@;BUr>f+-^8eaDD^}B8XngqEfGvYu_#B;s};Uup)vb
z5irZNG=gOj@IqzjEhllM=u4(4?;Ur39l@#yuD0{qW|<00N7hz2QQy%%f+Fp`Yq(fp
zWnBavx+`l1zmMPtnMRgU+<n^pV+1}na@x&QZiE($AQZtV2D%8s5k$nJHb=l~t!M;!
zGGy{t1bPGp_kKIC89_XPgm6m`owBJXxh2COPl-r{mt>r=_0q@&!Ht5OxMADdMOz}+
z8o{;*wnuO<f?p%}DFO~{H@8UyKhrZMyOaBZ6-Q|-`bCt7{Q36Yy_}y2_KWzih&By-
zWF8QOJU5zoD1yTg9E;$%h(`pEN`tJzMEesWo)rF@h-XLIhhuf(X$F6pnJe61Z+ZTV
zKz-DGAp$d3JtO>V1m}e8>a3n;Z;5YuE{bv~g2jEFxh%%4#VS`LxW>7f<X(Q&ah)^y
zsQZQ>$;}9ErTJ}kyNHY8UlIJxa2iAY82*XiU!I|&I2Fac2<}I4G-?Nd2aJsotchZ6
z6#1gah+;q#1Ea`{B7YR6qj)Te$;~nfL{T`3EU8jZuuv2m?-s7M#r|FiQ9L4I5kV?N
zqbQc<#f6j*EE&bKZoA5(Jj5>w-<?+~ih}*@e`l15qHGl2D4vU=9L<)hPe)NVit<vi
zLKGFFIDaU+l4Pq2R*vFvAyov~NbXx%)zZ9r6g8rJot8b!no&F{q*l7LwvYl1GM*Ar
zC#|n-ol!3eM-;iD)KBY;qHsnLo~0;Js3N+eaHmVPC=R}7kIN%UgS7sPkcNT_-^*ys
zQCD&`k!;hnO?DK`gg+~olh&KPY&Y1(mGOKO&7*iZidUqlMHD}Ls1`qGe+k=ClvaW-
z2)-!zQWTe8va7!uMe8Wuj-rR?`?hAh7RBpPw2^FQ!M1|!1X-oMkPd<!qv({@tzH>j
zqUah$H&Jdn?Qash3x6YR^QMru1Pf2FzngwX`1?_O-$Hpeik@l9UP9huXPVi+Xl3dh
z#r=cM4+KAq;v*qcK8~VKls`&W`bN<&ivFU1k}h4>TBS|>Qre&>21hX`in&n?iDGCJ
z<D&RNj?%en;ZLI&Cj7G~-npZ6GaSRC_@}ipB8rhwjFO_y1=*9)QQVOK1dT~6W7Eo)
zQEa|jcw!Wjq8Ohpogn1B;`W437XDRw{;5ofVrmpzuW4!f=|W~iF;mDa!P)83lDQf4
zqL?q)@1j@`#X{lVM6oD}#ln|Iu|&w7))`&S*k5xmjbfQ794xadqF5=}ucL^n>Y3rn
zD#@OF#_lB3x7^XPK;)~XXsI{jd%9K>c~Pv7VqFwJQs>M^;ful_MTkyVO$kKpSAiU@
zs`0H=!6=qiSH5rP-dV`SqHq)uu_2E}vFnUVVnks^(WS1EjKYc{9>w$19M}HKd855|
zSbOixyUs)u=RQ;hC*01PYDz4xl+-pbyhO1(iak+m;+#jZEsE_?OnFY-5=GHn3JKFz
z+AnpGRJ!5*iAUV4?u_E+C|2)O?rl_eMA2}QO7cq-)qZtWdZ6qQvZ7Msy;1Co;t;D3
zQTFp#Upfv(@oN+Zg!ihTQsL_)&i?D{`CrcIe(GVdr16oc{bvml&f77Wx8s5*qI}^R
zIEO#Hq7Z+N;&c=br05U9i&0z>@+Vt};w<}VInHsy#r}L07oy;kt0}f#uDsG(xg5on
zC~ie@JBq7OT#I7t2=|RBu1E3pg6t1m>Kcc7E1ARhj@@LGdsAg6f9R{;iQ=vt<z5tj
zMZqEe&2ZYvMZ!zsf1;Sx-utg86hrO3_oGN|b}lKVe(7`k$5TMej+S@Z*-nxXgDYYG
z7p8!SV`CT>L%|pd#ZWkgEdCxlhW;@ih9WU^jG<EuMPn!yL+u!zjG=f8C1R)&Lsh9>
zQm{e{j|gG2kH%0+cxl1M(t4Q~$_g(hSU#=)G9aU3npYB1S@7|gy(QUTwHT^Psu@F#
zwB>I33HlR~E&gmav$ceme>~%<80y5(G=^+Zo{m9@K^0zCuwD!fA#A*U49+xPT8mG(
z2Ag^&hK3x`21OHe$KXlZG!TUqndqFvMpD!`h9*MV&;8#{Y!<@{F}xVVvoYkvkQ;+H
zh88h=TqxtYbZgCHcs|V^hNjV}%$8}Tl@Qv$6vNBH+s5!py7V<6uL`yn?C8mSJzd&H
z$jHTLmsZ-x&_VdaGg{{uy2S7i`x8Ug7`nyqUJOSYW*6?MbQiNX1nc~n@68zAis5aU
znI19ptZ4tVsTXV)dMAc=sfcCUVi~=JQ0G6?-jAWTWIu@E!?b>NNG?l<RLtxXL*JPF
zT@SYjQ>O>{xVcz#z?<=j7!MHqw2m?`2F8#<F&sJW92~=t7>361X$+%985YB5LPo|g
zoCm6|jELdie_V__<EksHva7w9I4XuUpDSf+<dT0L!x*t#+sef(5Bfz6)8uep3XT_~
zJ|TvQF-(2dHA!%?;8!tB5z@1~HdV-?avE)DKRt#SG0c?evjpeIFgu1hG0csj@f*s#
z82;<7@CmvX+j~E5l1uKYrp=2gi(*(DgO-9jg(Wd8jUi+qY++dp%VYS~z;^~##IQ03
zQ-`JF>ljwW@P>{zb$mmE7)tASOviUItd8MC48L)_F|3Ut9z!C=#~t7Ywi!d1bN)an
z!?(c1@M8?V7`7DA{M;Rb+|Lbk_v!Bm2oDNU+<My)VN*XjV=?G4L`84EAd|_6;g8!6
zi@q_?ZN~6i!rAOA$LM~Z0k<8jm5d=3!;Tns#*i1o`WUvxur0=yTcOV&_a<)b7&bDh
zY;e8X(DlJA=bZ_t*+t#L(*7RyknL=b;injWj)BL@xZ_|y*(}M!qyG}at{8re;Sk+2
z2I~7_*dN0l;d=!s@>mCW=-ZBif>$QkoWtSJ*!jaTa4L?;K#tJ)g$(_}KHPCBn$F+q
ztaqJ^;ZzLwVz?i}?=hT?;Zh8jX&l3!F<g{6Jj12msPz64XQd*Cz<D?q1FN4Gyueu6
z)XOZ7SZ!w3!h!B9F<g(~hD`5OsdX)V(3>&bq8m$pZZi}QbkqKB44mORg3L1g6~o`W
z1>m1(2D&*vL>_|2rP%{|S_}nr6x5MVM}}_qB)<-`pNAdD)a~B>+Rwvzpz-yA?m{{W
z>nN_HgpOq?N0t~A(E;6_u_gUHuMTn-6_FK->Gs00I;Xd!jz@LeYN$LSrCdr{ve{C)
z?HH_BMn_p44RtiqQBFsB9kq1S)=@!6MIBXj&;csxU~5&R1x|itA&={zPqO9uH!|6!
zYC5XxwtH0FqSoMu?l_(hB&jKcmQU(<N{6CD)iF0)UH6z)N5|7Tx}0>@)lpwZ?tUkE
zJy9HjSruJQj&Y1S<fQYfi;7FfPY)cw&G&eCtSm*-5&cAQ>$tzi!R*nhY6Bh5=%B&f
z2_9l&9Zht+s-v}zraH29w9wH~M>8GI>hN+1I{sXt<nYi!wyjWFO!X9Rr|n(onDw^W
z{D|_rj^;WB1(efua;R+Ds#+a#VskyMbiAPBMIA5cctywf&mDZT#>+Y?)wExeRJene
z{dr}57WLP3yso38j!rt-$W(BR+Q~Y$)$RSx*=x_K-lBF8<Qj3#J9GFtx`{%Yt}@%3
zCfH_lq3*JL)aiR~>3Cbm98Rf@9y;F9@i8Yy$0r;4VJS-NcYLIyr;c7apR?_KPxRh8
z4rJATU$?J1__pE?be#Rq`CnH34|O=6YW(MC${S^JpO~ri)zMGKC>^79^ykbESBB^q
z$`*8dJ5U+G&U0pjGdozfFXu>@#<^U%9lW3F7_MX7P4_Sz`=@#OcgX!rNAD?~e8bgA
z+Z-cwjMPEGG^JGi&vlH^@s*A#I>xdV5BiBRS;rT$&=YmU`Q1>K@+GHQlnH`VwtlZp
z(h<0&yi!6V-mRv5G0iho$Dta^G#%4*oOu&j<1j<VOdZZ?o>@F-4Q>2D<(-)x_LItN
z`o{cRl6gAj>sYO0jgAF67BZ6S$h_x#Jn34bV~LKXI#P9W7RxG=Y(DE;reg&se4V54
z31vC=ayeJoMV^&1v4bzzC$E|_J*#*Y(9ykAqdCoTz7_Hv*Q;61`ag2k>iC|<I&>XB
z=vc>r=m>HWLe6PLv>$a4eLDQ~+qm-A7}Q(t*uUDj{F$7Pj(T%FKLng%9T9T=Xz;QY
z<%G}m&{F$DiCuPV`&i*B8#=hMT;I5k1UI08ItG#)h>klt?&`?XQD=c;w~jqJ*6Y~7
z{c=j(sN-iHpI*{7>DVmF79HDlBo`}NC41^b);30@iW-e6{v_f%9lSeq?4++=(%4D%
z>K7fmq<byi)vnxf?$xo6D?)#xOV9~*9My45#|M7L{c5g*oQFEvuUtDFhv`>U)gw9@
z%=c`a=OJfNkDa;4ITceqzv(!sW5Sl~6Lg!I9`4GMGd-tt{J~w!qM4rG1y2k9vrOsp
zw)*-XuI!E~`PO~PIUVP9T+qQzGJ8?SB}QN!*K}OgaYd$a??lJ5vpsLe6{d}|Jl7eZ
z7I|*4hpU|<J9x?0A9LR1j2&~{(s5e|`P9h{#-hI%nGF;%@VAbCbo{I1o{szm3K*DD
zM7ht=<+$=0c)*3`lLQ3wEmg=f3@qy4%@i!wTp_1e(6HlMA*oBHu#nNUy;%l~4&EU(
zm7)fU8GOzRDi|nkpoAEdHBi#PBL+%KcI5zt2mPQ_<3|mYk_Hb{)Yv%FV+P6?&?{<t
zpSQE+47+=~7I|n~(Lf~w)eY2;Mk*VqB6S~^EL&hVs)|z00JG26brD(p2?I4{6zn;(
zwG7lY@Fe@$Tp@B4Oyo}+sB7R$1LF<UGvF}L%|Lep^$j=;G&At50mXo7pow9h#asp$
z9vd0<wGD}8z-_=IVgmyWg*;=}XJnSf2D&c|unAA8jSZ}tU|%UUHSCbf>e+^Ul4b18
zF_3HE6$7st@EUl|Kq~_;7<k@5b1`nqSk%wME2z&Kx>^_@wiI0ch>K^^7Y+MN`jTOv
zyLp9BO2^9vcw(i<lV)oJ9Sn3d@S1_w4YVO|>TPe>XKj+U2HJ`8FiT|LIvMuav$KIN
z9QYtN$3nfU^p<V%pzQV=2HrII&Qpxw(G9$9pf|^Epof9@7RP%AKAfb!Bb?cH4fIU&
zUP7|Gt|nhP-lvD$wqMNjp@EMKe8v`B>YVAGk2z`sgA9=O5$tQApMn0uw_VNrM92U^
z+I%+MGdRsZ6*9!Y(6qAueY?$J27daWDapX=nM+jljdAKo17i#{xZrGC)iufhakSv)
zbcU$PY=PR!SOep@YicWB2tE`i7?^0-XRbL0CUNcfNBgbHECZ7bd_}i3Fx9|J&hYmt
z&koZJOy|@|mgj{wA1XYp@EkGiN?{Tzp-Yb028d&S%$;jso`Jh_JoCAN29^q6U|^w;
zMS?6{Y#`d%Hd|)k(W1Ew6ki)yE_{XHN<q8Gbk>^TS!LiGZo0Xi`O6)|)dtqEeG^Mf
ztTpgGo!mr@i60ECGjPGcMFT$?@NpX&IAXwWAYfplflUU2?5cqT1Gs^(fe5{hLk>B)
zyQAE~bmPh@w_A*x;x&6O8wR+MnHGMbSqA=Gtj1-xQrW&lNija`$z5+?gMmEZ%zn1q
zPOVCMr_b>8>V(Y(wiwuH;1|vzyE@zRlYyVPTbDbw8Q9KEoy=-ptr3UGq8*%~WsZJl
z9gOzWcNy4i*b(wq1A7eYWr#3v(BM;juxyU!F#q|*Emo}&&kNfwY0R=s|02(fOIn$R
z+97)Q^~_dtJyebw7<R~U+`tJs_C@D0!#<<&?8Z~iZw5{?8gM`IH@5~(8Tg&9JKN)L
znL}ih-r!UJ<aGI*=Q!|w>KOxPIbNSSbdgGIecf^10I|$8&m{ww4P=>si7N)K(w-sO
zz%>KcIW7Z#87R9W_lAKxLdb72C<(tUc)zMjam^I_%Cqz&56?J%8~BGiPI3LqA;14j
z+fw!K(LV#(O!T+^474Au6f*5=q<kg@*HV}=gk+k?pH>P8DQKe56b}t(T-ZeQ_HL3Q
zCW@MP%0wL##Y_}8QPD&t6GditN|-2Zf@?uu(!?Vs9yRUr^14e}DKV(k**1I3M3=>$
zGJ<6V-?*fe6H;EVf{9V%RN7QF@wkavrtQg9OjI@Tgo&Cas?l`=PF{7;;Yq4Xwua!Q
zfexM!yT6db#5JvL;z<*C7J4e~adE}37pniXiMl2{CK{NiXTo7(@m!C~#C5Kn38x9g
z#IMsmS64e9ZKSA^Fm8@VHPQ94`Xs#I(Zt?u;=|@SGX~lI^NfimCYqXPXrhq`UdOTz
zwR6?RCJxT_u#s#IVTNbjwanqm9nDM}nCoF$v(1@n!fRr@i3yw~6VIFY#KZs-%}um0
z(V0_WqNRyeCR&?#&BO~P9vkF-$+Tnji>7^Mso&poMlR-GHt~vySLsLt-MrgkV)k_t
zZN#{fU|SPYGqsMw+nH!Dqyq;&(9H&UisAhrFZFrS*+0<T)kHTFy-j>zqPtkWY2q!8
z&IFIh+X3F_y=~g(wRcRsE2M`B-mO#VX@Vy~ruR(r63%<HkH*;I`y8p9B6*(r&_rL;
zzV|2p$i&B-cHTb<lJLyi&qROIKF9Ht#9r~B15FGv@i`k==oxHch>6ck3^%bovk~u`
zc*iu<#HS{Pafv&j{2{e{H!zJbF_Io-Vzh~~Gd#S6OV0H0#){<Nww&O*>hZnG7}MTp
zV+BdZ3Hidrmucllmz;^FeJMW2#9R}TOiVWMm5C`PW}09yoJw9q>DNS=#;NQ6KR%t?
zp@}j>kXJi2n<ZwmO&os0Mf>@4obya<-KWl{V|4Hi9<3}evCzaK`uR-Hk~ea`+~Fiy
zY+~;kC1ZhSnTh2lp0-fe!U`VOL_rIMEPQQZ6>UuHGx3dyZ%u?ugiU<MfoJ8e<9?sx
zSxukebS-zR<xZiG#g*^5Lzg>VoaDi5`x-v*C4Ll38v9K6(>!2;o*!hNQw|nIOhip2
zOe9UjOz0*oE=tN_nE2}jl^fiY&CW<W?ph|R#Oao^ZU5(iQYP|DY~zxdSZ`v3$+tOU
zvpoaKM$-=UL(98nFY=gkJX<8oEylgGRX9s|I{QhCe=)Jk#LuGhu4IRao!riIJzcyx
zL{`~t;>fj3HcP%os*vpGB%8Ql;wJYdJ<Y^L`lpFQ9GZy}CVpcrE>OtHEAV3`jtalf
z*;cr(k4s$Q<~?cRl!^1w?C&Oct<JE|Lo@!LHt`3&bhhVDL6S4{I^pNiN~<{@#)k{+
zNuKN38J^1$^sY&3)UTNKsp_hTbsH(y8GK|0h__7KHu0at*gGcfn)uhmJrmO}X4RbS
z;f>p0CjK_<JGg%YNj#nHMPXeo(0y5^2VAwec9wxUpM?wynHKU}s5KT0lDxqzeWzgo
z3q*FWu!SrOH7)zH4Hk-6C~w*KxkW7$vrvj=7K&T;#mplX9<@-y!p}22JlB-8__(lK
z5}trcuhQ1e@XVc`JBks^LRkytEJT{9WmvbCchV%hJJrKeRsB_3m!r-K7Ajh(WTCQ!
zDi*5B;dn#+ID0bAzFh1--&4&(bqh5tJRzl<uV;QU-@{%VE8F;?LDNpCMVk|j+7_O)
z@RVhLKEt3<$HK7*9^PM*k2M|jEI2HDZefgt`WBoPI$G#tL9w7(Xl)^pmFu#gS!iLQ
zr3JSIkA-I~<XC86;Ta2!Ei|#fRcmP3^W2D2#87`pqr%foQxT~&6OwJ=^a~2jSVWR*
z!ONqk9M4<e707cI>J`oXcB+T&#4IPjxn+9@@BUiJA;@2{@PhCcdGyN~o8qxvw(yE&
ze-7}f;I#25y4X{0yYn>*uZwXT%ig)|rEhI5@aXNNC+t`U=>X4<6gyk!V&OvzABlZe
z3q35nW1*X5yUP&Xu<)jZx1>7T<ca%j#-c_FhtvM7<6W_Q-$HK-J%!VzmxcF))0kPN
z4=m8liqEsJ$9SIQ`S)WBLoIx2p^t^W(&v5_23Qzqp}%B55#+405e|Hi9CV0<!7>k2
zuFSGq<7{xt4-;{?h0kOH7f!UNafF4D7Die21<7b>jrQz0CxKTHV=ath6t(!w3VdPV
zOA9kC%%XqJ^NhFb?LS5M1Pc>|OcI<d$P2%(EbtQ>8c($_&9b-ubPK#npCQO@^Qw|-
zI@`h=3rp!jvpsVy%#+du78n@WZKnC6kg)DT3yUPXSa6921|{l5uJtkt%SETMLdZ(X
zzCmF28w=lB2v`VO_|C$b$&T+y);LI3Gs}6XuaK`z6BhkoVV&6gDCiUPa|2Fv)OO_1
zfS>7c2N5eQQ6d(ioT4PgClRxtbG8#`n1ErywD5Esb>pxs#4X&iaGRURLX!K=!f^{J
z3waiPv9ODwqm}x4Y4>^y8|bK|-5V`zxA2pNO>_?nTP$p~@P140HYxRg)O2BO+y38K
z4kFXf7IxC}Tj%T$q;i|jF>9SevfIKQ3kNOyYT0*fdo3Igvd_YPMxK3+eg_@bzjlnh
z=HL@qzx|-#Aq#gpc$tpUQH38#D<wO6U;QqZMJE_T`2EXR$FU>MlNL^KlCL$qY2kP7
z1q&A~T(a<og;u@XXDytw@TY|{+)%%3JMwG31MbuN9gP}m=Pg{I{eH(21sl~d9R1YB
ztqN+FEnKm1-NL&m*HsJG7_T~dtGt_iqnT%PGtU=Zt+e5|A*HeXS+wbN!No)OU*o)E
z0dW+G<1Y86g}*KQ!+0J?W*q-oxJPGu-}#@#Kk|ShWqQCsx6&p|EMm$Rw{4isA4h>W
z3dgbd<pNX+#!*O$+7zijbg6@X4x*S9x1T{lLL6i`M-*>VG>&3%6py1s9980|8b`@E
z9*Nt}e6AG7qjCNR$Hvm4c+cd-4`&e{lWdtd5_bwSTQ&}2xj4!TsUTQUkUFbZ7W>Bq
zvpaf+oN`x-qk0^*;;0=*jX0i=rg+erQtQO#Z1V0My~HQucq)CMI?@8g=;5r;;#{^<
zkHh@Tp~m6j&<d)KI7XDy>c`=X<K3n%MX>uL3b_`CJC4`mSa9FriK77z6vuOM`(w;s
z*Q?LO(J+oiaWsxYdn-FTjtVOsP2y-OWJE{r+>T!A{*K;e?1P9oaU{#QbH$#<Of>UN
zP`fC~^Kmqf^YRQWnT9xCjiXf@FYusq952VgKXAReH~))qDEl2R3DSm~rLV-XbA@d-
zX{Eb0r)ag~wYdE-li5QZZQ^JfN4q%M$8jc(vvG8YqhlO_ID&C>ilcKJ)8d#ON0&Id
z#xa~z5l6Q;y2sHsj(&0eox%AACnS!Zal9#6DsROZl<cA&Y2}@`{nigEz2bOJ#E;{6
zKV8~e$l*R&AEcEJ<M=4et7p~kBmC824z|!gtq+Og6X65W%D^}V2_KwRek{{?sPIn(
zhY5a`F74Z+AR8PR$0Sik#W7mQ=Yrz|$HXx<j$woC;p{l={34Do;}|bRR3^mHrldWt
ziD_lkgu;{4{Hr*o2%nl(7A#O^#4$6DRcU2b9Lt5z=FW;^ZdzX?WL_Ne)5-!N3*$K6
zK;;n^r}ZUqEKT!ebj1aBe^!XHGOd3tgr(nb>4kq6$B#l*3$BS{t&qvX9N!CJBR|Bk
zF3lShP<+DuY30N~B@{<Ej{R{Q5HTXSGmdB+u{d<eCgVuOVWexBJPQbqr<Ft;dmcD>
zIHtTfwurty&PT%`TFCQI-x$ZHwEgBdCQrA=xK)&Gacqy{C*eENHb2Mlsl&Em`fGe)
z;xAIPOK>-jC}eNiexHyJ2IE3RIT*+3IQkb<evRXh=!fGtk+wV%$5G+O1dpfn))VZb
z{1(SaQBDc|o-U2_$ztgrlKqphQH;;Uah|8e1nMPlA&!fT&vD!no4q0BQXDVOa9ob#
ziYQm(xGm&b9M^^1h~t)!n}Te=Ccnr|^E-_H!v7NdJFWl2z}Uy0nfq}(U?@(YbOQgS
zON%CKKhKvyMgp0_^CwVPNCClug0v|lWLe?*S!o4AiX_nEWxM@ik}WP+La?OZBZ4$|
zG=T{*dq+Pe%9Da+5-2OATmqF7cwBgS!3qgf6v8T%5_s~Gi=>JuRTHQt<koaY^|VdR
z1Zt%D6A289|IZ(4iC8;<H~T!p7M_x99l@ss$I9wB5~!cR=CAB!btdrI1P7CnK-OKA
zL>0xA*0luOY3@m&L7LY+S+G$8jT0!9MCl}&B+xX0U;?28`W&v4oj`{KIwsI8foBuQ
zNgy|Ywyge~+neAoB{1ri>veW1f#$+rOQ1ypEfd($(VMeVYb9dq1WFvwrsWHgeKCQT
zguE>Hir}k)wCT}VD^lEB`W;W%jq3f~?lx)NyDIx^M{m0X9!$(>&!sO=zvR!3P6^Cz
zsmw`WZUUVX=#oI!1iB?KDS^oebWh-o1l~#D-Gu#a>o>XXLdf3|^0wglG9D(1Jrn4a
zz(h&!CGdU%LlY>_$;;F`fxc<}L4r>Su=S4wKThj?5@0*j`-##&flm?`kS-mZz`!&g
zBqZKN9g<d9_ftAR0-vRo(L#nNFha=4v_6V1CtdnHfiVe;P3vDKFfPr%5YnWRcYIoz
zAcSLN_gMWaX=Hi=GZL60oZ{33rU~Z^(5!tY?@Uf(Cod;$RszgYoGqkJC-1xj<|pt&
z0_zf3kifzOzDeNQ1QsQ*IDuseEKgub0;@WCk9P7d6|$j|_f98oiO${?j3=GFs}kth
z*}GDBi_YG!={cRf)G3bY?EQ|_JA2n8ur`52XYXo3D&Hq?q_dalCR^xa6XK5v1mqCD
z1csE(@h4ESi+!M{yV!{&oIr%D!yuMGG=W$GyA#-xfX<75?w|y=Bw!|BC2;RM=cWYW
zJRE0cad!9ou4IC*YjhMk;~=J3SAH*-m%#co-yme8;H<g@S>@J`O0}NZE#K0%CUEhx
zvMqtuyPewwe-ivzaEBm^b|&ykn(yL3jyfprO<-RFrxN%*f&B>_Nbu<;__($G^4Ycn
z)RtYm2k9`kwC)AeLmb5%=V7{cQP&Z{qk_i-DIOPcB7xt8oJ{L?b}9VI?{orxaw8=0
z2V+#v?D`+NyZ`7so4`5Fz(IxC7mqj#7g3fxr;O;STuk5+_aFmu0+$oGlE7aH{GGtn
z1g<gS-E`ef;Ccc#xEbpzH)TF~DbBk5Apw<JqHnnApyeI0zst^lVpsepfo+W&oxSe7
zm%zW=xn0z!8>>Y2|30_yPY!pH>^h2;FNp$46igx`iE6by{8l|PiTp|X>vg6#{LVs2
z6i$McC6o5Eva?u}M8C{zwu2;!BvCYpCtGU++9_0uB{48tVU`9Zl6YdNgXEDU9!-MX
zKJ=SPf0*~A>#-!tB$1s&vm~EghH^>XHKR%r(I1`sGb5WSpG1WuNSG=nQ7MVal6||2
zcXn?l#j5OW63!$F_4F`RPoh>5wUelkR-Q;=co%O?$<FKIeNsqW!KXMJAx|gq(10!Y
zyLjs*;gDMOlQ`GK`*RmBb)u4lnuIF}O=>kx!Y!l$`_R?v5l+j3UA@mF(J+ZdoX@Uy
z-S%C*k%FE^UA;}jrfCvvnL2Adn?z0$N9U>UCXt(jH;I>$csYsZlDM+d*;4R%!RCS#
zTX3!hDkMy;l6XP%7t^K6K;@MrUQMEF65Wz$oy2QNv`wO260avQqPcSGw$g?R*VWs*
zVh;aRM5TQa9g?8lIf;%*bV}m8uHL;+N9Cy{OQ=)2dRf#ZiMR4p{#WSJ6FJ?Jcq56o
zljxDen_Q7R_ghKm(DJ%^yZGIid2Zr6NqF+y&ITTq23~QK_e`Q!67MDPeiEN1F)WGR
zNqmq*|0F(1;=?57ZqH@vBjlqbJ{EGYtCwQmbZNgNu8Tr(fQUosX-Rx_FKduw2PYAb
zc7{l{bT_;Dw-d98pCvI;#NmQeMhJ0q^NtcSTJUqhF@j?SX*n*5FN9}}^DsLhiHS+1
zlE_P9QWBH-xd-2wF8Eav^OBgK#FQkaCNWLK%D=m23Ynh73?a1d);^2+tR!Y9F(-*q
zQ#EGiCSk^$J#TBonU|akl30|);v_ac=U$k^>S5~BMX@A_rAe%jc9tcvoa@ES*i&7R
z#7YjoSkqNWd@ZDU4-d0UjR!lv5#?L@z{?sHK2vKo`N?cPZ;B7$Su3r5pYEH!Fk_wY
zACvGU;TLWS29gLS5lSM=0TyT$OX9_D-UwZ~Vop>z39}Tx|2<dd5_j_&NlfTwKQ`7%
zBA!GdiGTj~c>Zy0T&E_5GyB~N=lUczBvChIPv*uXHqoV%xGD$ToW$NF_6gsT#MUIL
zKBjJ5o3o96`<1p`@TVkx7D8o55<7+el2&#lu{+K82$?fh+b<2COyX1$2ZSFK{8jLf
z;9<cdg6!DQB#trQWEVc3#0e39OM;0-yZz3t)s)|bUlKem_=n)1f;2lL<Sb*0kn^0+
z3Hc6A$af)$i=r?~v&+JJ7PWu#e2s3;0GmRw6mBGOlYvEM>6X}Jr1*`G^S1Cif_DY~
z68u|`jr^0uze(In;=U;VrS%7l60O}FQ9fytgeg<nWV88Gm{~ukKnhuL2T7q6hMsm8
zW;TVdCgwv5MN$}i*wJc<qvcrlh^>xI`<%s7oN7m<6e_1sB88GEJd(nrDU?rP^IliM
z2aZxHJeES46iTP?O0oJ|);M3{b!iIz3mQ|o6sTNzPi@r5d!)I$g4C**LjAoiCbsZ+
z3VnAwtEW&Sg(||Ua%OVXYJ&Cn2jpD!i4<z4_zZT`N#XTsYONG%r|@J7_`{jG*7?jF
z^}=aq-#LzI>zv-Pj;B)y^vb`$Q}E7fjd~rk9~N3K1&7SWH<ugMPr;c2$&d#wB?VQu
zD~0R(91lg0Shh%^WeN?1Ka)bk6dDO<YtIU4oI(>JO$D<Bn+ek9gN%%vG|x@Jo9536
zc|L{aX@&p6Y?Z<b>;Ro1g%?wJDTQ$<e38P-oX-?KNZ~^<el>-5DYQ?abqcSgu=c9$
zS4^)<X`2+<3eoo2zY^?_LdO((rSM(~ol@v5McoCv2zC?f${9HC+`2tuo2K-u+w_eT
z-b~>wDLVFYBewIl@E(H9z9Zz_6nY97_tyWe^xo$oEc>rCy+yZ*sC?_hM=5+P+0iNV
z5ki9@Li(oAPe}i?{)vzQf&)_+BxJB)v*Z68=}^gjDmW~K&x8yY93ePTkVhGn!oylK
z8)SZ-!kDx^HiaF7Gv0hW<I5Drr;tn`mBNG+CZ_O13hPpsl;UH?F*k*IQst`@rV5#o
zZlTC_Wt#BmX=R3xnJLUlE3;FWljfi2&zdiMWeQ)Xupotnl3kR-av_Tam(aa?+Y7f;
zvddC9xxtPVD<n(uuyj=l-=(mcPAmGif=i#a|BSFEg*`P~YegwM&(V8e#`nU*%k6df
zF$Ev9qWA?VhJ*wJgWMOBvnba7$r(-|lET3D?x<k-Eeg4wf+3b`uI4jSuu}FP9EK;=
zxQGeCoLY7ZOnE8nO<`XO>r>buMH^H2nUgPkli+5-ErMGGw+U_+{E7bmlsyAGQ}~5L
z6Ok`58SYYcF(PqIC#pC0D9blH`t?<x+^#HK=-8jaffP=q@OugeQ}|V?{3duPg=0bv
zr*MR&`7+Lp$~a2<naUp}l={aU$5S{#pOL?6_P_l<e><7Ns55pSPD|Z0DV$B=58;0b
zvS?*D`)woVQhX5`E{S+Pg$wCYtDt&0g)1psOYx;(>e3DB)f9%GRa>sfAZNvr<&+~0
zl$$BsN})v_TIS()3U?T3^H4GmcT;@CH!|~(KM#MW@Q*aRcDvoBe}&&q;hqq8W2MtM
zd*&ac@SiC8^047^M@Alh)8#xpPCHf4RUi)q^N^MIzdc(>NMXS-O$zeQM6Aw)JQT@8
z(L5B(v)?zzKM5Ak!<E&JUr(yu!%B-j8IR=g!Ih|$huV24m50*OLKVTs1k2^2Odbx6
zb(GCRZY|sWj!VnsrL=-z#XM9J!qUolcwG3%nfB0_s^+0uy0m&8YUJUGJdDb$|JqF@
zRK-&>56<6I@+Z?a-aI^&hdOz9IuCX8&@>O_HoC6(m3n!+kVUnZG;&8C>T@7|#VM$;
z!Gx1pH4iR!fM1zSaxm-8<Fzgt<l&h-G|oelJotZA7Oqwr=HaJrl}3VG)>JnyL&5UO
z+A$&7c{tt2-7F8!=3&qrrP%9g4#%E{oh2Jj{YV+sSt+^IF`;V4bJF4G^Z0mDWPa~B
zT;czi`U)_q>i2tgiRDnz9U`I<vvVgFSYToHf)dgoBHbNQilUT~(w!pGAfR9%IX!pc
zPJl?abQrXN{LZ|5@BjHf&*wSMdC&WPI(ByEM&09i(wjQb%!v(7Y;>Zz6Yo0lp%WvW
zXyHUlC%QY)!--Z-w07bHCptUPMhfX9*wz?<c0$@a(ZNvObE2d0_YLK75!<jC|9gYp
zS8DQh-7ezl>O?mqrs``cJ%tYx>}BY^o#?|6%afeVzD_<l@PDhQzmNffJaPvK8Eklm
zI5AZCFu~!1BLttEPR{ixCq_Fl#fdMR7$bV6{mMj+q419c8TPS|aZY@~rluv2yHA}M
zFXCr{p9@Y9q<3%Qlt~7kEM#zr<k9q{@WoC{HN4ZDnC`?3F=q<S5uD}3S4PZiAuo@k
zxlYV8^!Y*-2rd*{#7#Fmc@N_fCzgt`%!zNg7e*?}ome5tO2Mz4SS4h&;2J?@eEDZ<
ztrOpfvQF@2)vf%>daeY&VtUWA$%)NQM7Y45*y6-iCk{Aq(1~plzuSpDLbeNj=j8i(
zlJm7wkYtyT@16L;P=3lt&g_q3?&qQ5#Lwhn{_4csWyxK+SInZ_QfThujvHitUedx9
zp1C9CkQ0ZU@H-K3!s+Cbfs@sF1l`W$iMMT#l07_y$?JsAiR-PC)A9JS@>-P?&558y
zhFHS4mR!e`>BlYUH7sEf8FpoSj;IqcC(b)@LBzNd$DRCH*_LqPh!aP7;FL`H&52`9
zy!_kOXS}JP%eu6r@;fJ@q_Wm*Jt6VTa?*)YPMmh~6(Kn5#5r!OrTppH7P+m|nyCCy
zIGOIblB03ai5pJblo~GyUUuRSC$2bgCoOq;GhKD!n$gbdJf><TSM@C?ZaeX}lUF9-
zj(G3#+&Gtv|L;yJAH?ye6MylXDQ4$$nTYo!W@K~geIXrFQpg`T@sK5KRCd0iG}&Nz
z;>5pBe4LVRTuQ#DPCVn>UBT`vc<#i1TrEei?g(Buk;8>NL8Jwd;zFtmg?xC$hnz0t
zav|(S#Eskxa3SJ??n0Uid0lwJg*RP*3;A5A;zHxDj{L6w?d}pn3b;_vPzt&5iopvD
zDdIv=Ln$VtxC@n^C&#Cxp_g)@v<qcez8pJrm35(<;Vth%1%p>~p_1@d1uGl+YeIO#
z#p}{SHnJ)kztc?emJ8KfSm?qc7pl8Z!-at^4055S3nmv@xzO5$bQjDn)ODer3yKRC
z7cyL^<$~3P7ROU<F4$eX&C|x0K2LsTsyR4`Y-DX0>bQ_8Ra2ptFN5wqE!j1`PP)De
zSuQkm!QsMte6Qc3)CMjvjGU3#E~qZ#FPYNF5P3)Hxs^&|DeY~+cLbZb&{Rk>Hbw}`
zZ|=go1|L#4xu{yY@RGD~p{<K=9!GZ<+PTo)h4)?PBwgshmblQ-g`BsP@Y3WOzPioC
z+hYsPHGSYhXBWD-&{c}<uGk0uV(VH>NgPmS1?_BhvE`N?F7$Mvj|+WW=;cCh7e1bm
zI$}oZv_Y2t3S^uvVq+NZlJ4h1e-{RDga=!A<3GpbkChhI!j2DiVRtXva2H0fwZdr*
z6*5flNmunl7e=};-i6Ox80Erf*5blA7sj|S)`gE;$sg;PngntkC|7^;7~6^p^_y3z
z|GY~5Ph9wvW7XI3^+_vTOc$!u|J;QMoI4lhx-ij&NgTtWwP$k7UAX7TVmY_V*Pr47
z3;9Bj<VzQ(3ZEueqMJJ1g&78C0IQhg!dFrk`D`hQWS%JVU07fg&NjSkExn6fSmMG~
z7q+>u)P-d(eB;787i<Hwmb<V@2>A*ZRtoRY&_;8$3u|2Xn!V;wEHhDQ)LA*xKkI3W
zO!9ACSnt9{7dE+)H`HuiZDHEr0+CndCruZ&NFwL0F}&!MWV;LBx$wOUKe({Ng(hcA
zOv`2`ai^HO1P}R4yIt7h!a)}fx$vWl?=QnX7xugGGZzVKbm3PQ_+qBn=d2?%6F+PZ
z{mMj>{J~-K0T=%BDRkXfm3PZIYp$Es54+%WA>e}Mf{SZFGx-Hc+%9+w?iJz_yn3TL
zy?oU*G3Y{w$CT)N+Ax)6Wz!4&ki2Rl>Ozcb#*NS1h`W&BzH`Ij#t|2e@<g&_)pqm2
z!h8Tbs=HCcjo)23?!sjk{&3-h3nyJT?ZO!sX8+^JJHbIb#nrphaW7x?Sx(tMj&p+b
zyQy@Y7k)wTqTnS#x)^!Ig{wSy+<+T@J+xnQ;kpYqI246!w+bjXUAV;q){XH~?YBj|
z=fZs<cU-tD<WIrB1pgLf-hW)!bs~%8fuTHg;i2$HhVod*6Bqs!(z}zw_-8IWrzuLR
zJK2mE!gC0xnZnViY$3@hN-jgs?Z*02$r92GrEhr~%gpCS88^zhkze!zZWMH*kP%bd
z&4<h<Ybh)^@3B%uNKrS631K1hGL;asq#LD#P$?~hVddP&wO^^`#<+o&@@`ZRy`o?h
z!AgR!x=~pO^S&m89e>?Ws=D!p@HY+REjP{-P4<YzzTZu)>Bhs#ip`z8mzKmNX1W_@
zAygDMEC#m<Io2uL?nZ_iyqRU`VGCnw3Fp&1j&;qd<3^?%b=~Ot&{WS2Dp_vS7qauF
zLUY_BQv)$;O)+J=p}Nt|jrMMA>TYY~MsqhF^m8;8^KCcYaifXwrfz)I-BvJaV^}lc
zG>i1Kz3WB`H(E+AW^C<7E8(NMsWh3|h}l+9shHWpjrZIb=EiV0I=b<`8;8~^L)`HG
zZ6E11b#mhaH#)n~#f?)9tbN@Wc}$@`EMIz8H(yf%a;EM=dI<J(qnDxg7SczsrX!1y
z{e<@y9N@-4HwL-Uux{qdat4e3xy>?E2-`z_ggg1UVvHckheAdQjuIU0#>UL#=jX9v
zek4fqV<F=NKN0*?@c44e=Wa}J<9j!LaATqyliZl&##}chyAil;zH-|<MaY-sY+tzX
zC1-P^d8!-J+!!!GnRiw>|Gk+w-HjP;94Kv@>BdJnlv!?+xNH8(%}2gxk<1oz#R=0q
zH|D$XwHs^QSm4G&?uGTHm8{g0)nckbT;#@LF_#D~bz_+u%Z0BH48N5OV|wJsS|!<8
z!fH3x7`)wP(>I*=v*zt?gtnPmKC-TJ<6AC+N7nV+HCf6A4w0Cf+}O&VE;H@Pwr&<>
ziyPa2R~WfXOp->s&EL7P!;PIDCF?t7Cl~)&(=IpqO*HYH^1C0Hce}C2jlFLC>c)?5
z{N%>Z99XX5JQ=*eEX`+Hbu{bYF4LG9_C5`4o<hn#H}<>XcEjUF_mj%h^OmC*Ob0jx
zLFJ&}A;H6Lq+GN*-EfIX?^lnkZ~vlr-FRNis&R3yGx^-`b86i9u&#3SK=Q>0X^%`n
z_L^Jfn)R2sLX38_=x#*a=-}l?EW~*D^VId=Zx0eY{N4D@gB>0m<>Bwf9XIZ><!)Ty
zwZ~lKJokjtJnqH`gXef^KFz-!JIv?YIL{M<qgq%w%Pr8@GN+sB4k#Dgxah`JH?DC}
zbyF|#V{<q44}NksSuP7c|IBu^n|j5KeA8_due))>joZx9P5rN%$}BhCxW!{+M1685
z#xs(I{K>|%zaEVAU~9hgzumac&FjYLla_x3@3~RByGrw+8;{&Dd64eGV>h0-QP_hb
z9{lUZQ?|i_JRUsbI;mz$^(65*&p<a`xRJwy6c6rXr&260m>M*ZSISP!=|L_Do|c{3
zuT3%_&4aui6ciDH6!Qzo=fSFKwk2m2Dg{J&Q%x;o#JnPe<rnp!m<JU-d^&xy8O1#)
z>EU-TNnXN(dfBPl-cD9j+JmwlloP#-Alp;kgE6gg#ifyqso+8G^QIj6ZLdl|6%Sq)
zQd#gdBUe=q-teHNm~RT!5M&8&38^Mn-Gi6iXGL_K5Hx$Bc+lR14jx!MuzJwQgT@}%
zJg|FE--9g4o8dui59)YOi*0C>$`ZVdt(hLw6>mLH@>lO^h0;?SB}-;vMGZV?=m8s_
z?SVtW6g8E3U$#LNg^_5K`nCt}c+k>=Rvt9*ps5G%((6GpBc{0rsnu=#=bG`X`eplH
zmP4hr2W>oPE5Q`o8Mzu|r!otJ-}9iO2famq--AvbboHQ{2OoIQ*@G@dJo9#JnQD<?
zd0BXO4|;mg%Yz;g!@j)K$EnF~lK1hTFGq}v$AjS>jPRhp2ZN=B13Vb$!62Gk+ZU@1
zHEJ0mgbLFzaj_^aBqGaaYe#u7+JhM$%;aM5V5|pIJov(ck39I;ll<mwk_WS^D4(0v
zaUOg#*zt*&p9+o_r1!IzF@h63m}uy;%hsoNvIopwtGn8JkL61b;%0T42UDeR>NHu)
zbTL`}EDyf&U@hxnAs);b>R98!*IW;S9dkUG>%lw^<{RZN@$ioCWb+mp$|50)JvcWv
zjXKj(QI>hI+=CS!tQ2#V5g!|y%)XlaeP|_lGQ`1(*q-ZSvCe~UJy`F-1`iGlc4&99
ze;=Imx`sH~urWg%8$H-$l(SjL7M?0Xwi)_%A<EpeogVD+;G_qq*i#RF;KHtH8}QV$
z+k-tGXdVPT_|b!(JaBs8^5AC=e(_+R2m86OADZ@h@T&)tXQy?TU}>dh@^Z4@iz!Eb
zPCMYiK@Sdjk{6hr?P?jd*);z%<uLcx1k1{Y%7!{tw+9~fx?`$eM6Z<Qqw-K;%;CLC
zuHj0+!)He%vr`Fq5at~5co#9^f$l+6c*SCQbN*_MdHCD|Gn>T1NsjRF_u!ZZzw>Y#
zuCN(wz;99u8^bW>J?_B?4;F1VZ~Vo?#Ehr8<!ffR$60Q9aK?kPoG%Z~dvMi*YaZNM
zkbS{}OCDSnevylFb_PYJKRmc1B9+$NRi>Bvb&0ttc*6tg3}7O!GtF{a@Q&bJ5B?M~
zsGXgze?0sz6*;^}@#2Hy=KCJRPMZGp;DHAZJt$s7?ci1(alenX@H)fC9z5aJJ6VnC
z(qPL|&RWo<m&$zR!E+8&sm%WbUkL7PnMozp3*N6<$BRraa(a==i`-tct(95biyB_!
z@gmKOyk5YI*F<miP8PlSyvXkbc>yoViC$35LSDQgq_7vog%lBFWKl1Q8GOJ4YY8t(
zidjmqj2ER1@1m-fvIft3p_KQcf)^E~7FNxoDhYp8u(BWn=&B+}^12sQg})*Arr=wG
z)dXM0GqR=^>7tkfsZ{0jf4nGSb0~tW&f<ktxJ}S5m?2n8u(lwxFne7u>Uq(^i>(Ju
z^}WdQqPZ8}jHuthi-umj?Zuq#>hfXr9bTwjkYo!E?ygS1RlkvNij9Tvim7)v_*Zi^
z5woe`Z6*aW>|G(-8!9Znr59s{+go|j+KV>qix=%!waqbQl$|=$PowSaMcLF{rQXqt
z_q~|u#Vjv6acOzc(~EJr(>r^U?+xkUMfWMTE}Z3NIlFq%&5Hufa&~7G8`BSWSBV#{
zHn^6vI)DA?<wb8V`gqaTi^*P0@uHs>{Tb=SST6>6G0=<QUX1W!kQWJ_v0IcOTnQC3
z2YYd=yGlZ3s29Vy#(Jn#dZ@$?y(qg($tY$UMe>Pdq!$f(sGWMKj33Q*F0+t)<i*Ec
zeCow`HrtCsl`=o^Vq_2XP`TXXvwEoOd#Imz@wwDBk&WD<oT`*LK}=T4Na7?hS=tv~
z@RGS{Y|^r9mj5MZaEvmQ#r9B{Yq}S;mMJs5s1r8ddy*{YD=%hyamI_YoKP?3da>P$
z@4P7W&^FJD`CcsG_Q_QC-#0JxVv!dcz1ZZ%VlS3>`MMv|1}~O!r?@T4IHz7bT;q84
z8Q-sMS>eS>FPd%2VhnMW@YRBA1m78H``U}O!oTriose(6STAI}E18Rlge6qcZJVW*
z9>Z-coaPoTOE0#0!Ri>0J<K-xS^ZvjO*_2!$%~)8*y+VCFTVHU2To;8<#7)+IK2LD
z_OypO>#tmUyrB7`pr@>3%-#CGc(K=u!(KSO_|=PjUOakYKIp}MFD5=v4lweDsbo*J
zP`OO%?+>>ek^pk*E-&0(9P#4x@76=-vpgK_^I1VbuNOYftU0OpMG1JJaj2WyUy30S
z!-5e(M(RSMf-x`RLK24ec{kfpFMeZB^(+P-^TO2A_PZCyg`5yPEqGG!l;E+))|EF+
zj6CPXd9K52<_BI}@ZxBD%O74`@#3OznwNxJ<`H_cI?bz`^h?T3FCrC{v9nCqytwYg
z4KGf-VR^5fLTrCsxh3XpK`M8=xNGn~z4*)Ee+&7?i+hH0-<$lgfLR`LJiU1A#S<@b
z_>kg5<Az!P^6>1b{^!M0Z_>2iH9zy>xfk}HD(`kDzVKqwhO8ky)x1y4sr>TahrB+(
zhg?3s@isM&4^!*fwqCL2_Tg?_Tg(0SG#}d6wViKi|LLgX?R-gBJ|FV?KwiLyO%@dN
zp=7>fWM#koQ@_2i4@G?VDS)2?DC$Eodi^NnM{yrY_%OzYu~d90<wJ8H-u0oh4`qD#
zew!)Xhq6AD^WjbEx3kL&k_09x6?}Z9rc#l8T#->p^j8gUWglJ>ZxvBqH}tAP-e7ln
zsx0I!AFBDVwx?QM^qM}@@Zn%jb$oe+X!3!z%&(KImn|{-@bOZU;)6wq)d!mocH#8}
z>CF&Q%ZJ)R>KJ;akh(t96T&NF8Js1&fe#IRIOQ`rd}ty{whyY1Mn1gb!^O>J1~=x|
zin#kmb(-CZBugk)-O^OVW<K=qXG`isvs(Dj!H4&JXz2rgLvQ6nYaiP9u&}a&sl5+v
zeQ4)H(=+zPds6)&I|+4?jy}Ba!vG%!`q0V87uF}gc<I(U&F(Zsnm9U(*+r0gS0B0=
zyt@xQg!lBJmyq6qeSPR7q<-7v_cQ&3lk^udr*ifnA5QmFKjd`R$sBBWhX@%eI81Q3
z;0VE@=W;N3qz|Jc7x`!(wx6<9SZMl)L*c_MA8z|F&WBHY_>oJ_hfjSN@53q|R{QXo
z51;#z&y88)!vr6yY&B2wVY-lsf|CR%3r-RILhwt$se*j4%nYt)WG~>T`jTJ7&Gcaw
zC#$dRE5X@<H0KDJ>%%-D^9}uJPj!)$@ZV$y9~7|I2NKiQ4(dyNSmwiWX=K@6>I!ZI
zr>SsC=1L!UXLQZJHr~0v#)myyOj~@|>ciJQ6#mn+R*>WyZr(PQb%NgtuJ>Vs5b7Jb
zH-&G0iR;W1C)*s`eAwZ`PHu<M_U%4=$8j5Nr*7}1lI-G|e`wy#{piCF413o>7bEG~
zBaxN!G-%aJ{h1TwL)eFi4|{$1)dw#RpB(mmKJ4d7Vzs$^IKV0t8`B|fG)`6?Tc;(q
zqPC=RSX@r7y(LN0?L*&XHpQIb;j*;Z{`A>=KKQvume~S6Xg&me=xn#0US{iO%^2sm
zg(Q1fTSm*nR^5lF50^PUHL_wnRcv*S`*6aCxDN>*j)?M`;8DSi5i4Vk2`BkoGLoE3
zZcOZ(l5zB+?X(YPd^qRBc^{tMuy(Ite-^f$<vOgBLDFD#`UM||`y<wiLM{nX=@qvA
zAq8IHiNpm{-hR!8d=}eHAFhjeLy-EgKFRCw+1WcjT<T`|mlg56<-Ggwmk$q`X51$V
z`CITG9-B>+dp;~3QhUZd2Lm4Z@Wh8<Lu)_s;js_*_nIkwKcqGT@>Z-*{h1HXeMs{o
zub)4};03$9C^feqIsD1Zp5jNUkO95aoI-{zO3mfR*(S*gmY8PrQeP}h&ErSC)2ZRk
zcKDIckD`7Q^CQ0>1^jr$kHUV;>X%W_k3xP-Ic3_|>wkF}Kd6hH7roCoYbzqI!@bnv
zew6TI+@j=lL}z-bmrkYn=A<!KX+O&NvCfZg{V3~4IX{~D(cF*nepK+IrXMChD*D0O
zLV4r%TYf%~60fpT6C9QOsN%=#e*7>h`!!KUO>ppVc+yL)>c<<R@E4gkg)pAK=2Y{8
zg;W=;AxM+QY`Pz2KmOQkujhy2hsBRNeyrJIW7?L_X7z)}WD{Z+%n+>QM{UD<G@LWj
z;C1~te#*iu_5H~5qk$g{rTlmNa0pTTXvDNCJDcOPDw|a|_9OC+gNe%92B*%{M6xs$
z9D5?~yMDCrW3(S*{AkIM@uL@~X`{JUE_-V~+WFDmk2Zb`?48BbR>;kgwMIv*9sGFT
zkFnLW-edNNwWFY_S;;$z{()d;L56klqpR?4g53psusf^M>Fp_I!JxIbAAS7j>qkF7
zM*1<zk3mzF{(cPeBd0sp05*V%h(iSF9V{-Ap{!!3g<<<6mf?Pkkbn>UIKS6Ig)YWS
zc$yc*6{cR>G1iZdxCnnWao2pz<>bc_KbHFOi62#m+s6CxnUGJ}j1O%MTG~HnYg^hU
z_%V^I_hUzi-s&Vjf5fy*mM|*hQ~dbCk1r*1mLFgFF;)09!RdlC1X<Kf$w<O9Tf_x^
z%n>qIaGnu4Un+VTxlqJKek?Y;EN7V?%l-J;kB-vR6@IMrW0eF@S?x#3F3KA5z6_x9
zlC1TkbSKL<61l9MW4#|6xSa#Y8NfzAHu>>8m!BV-{n+BiVLzOHY~{-I<0n6U_G7yr
z-*MOYvD=Rwe(dz)dq0}yx0`#byQt)|x9_d0z119EhnC;ox3{{7W8Pb>mf!yPdG?Qf
z`~y49bNTJR_(A1YcGHi&!iVIur{%Mk&u8E7$07Evw@QA1dpV!|py2f0D#h)+RhJ)b
zE^<F~KRkYT{m{7gmpOcX*bCUZEp_<)c)rZhb3$rBbh-*|cLarp1jB-iq$}!2Oj@4s
zBhCT`XEVLM)N%EOwcicv5kFkZ97SGaAN7Oyn;(~7WFO<O^j2w}@Z+Q(SN*u=$0<Kf
z`*FdKi+)VXXFub|Ic~<Kj<eD#R@ADj{XCnR-+rvO%6492QQVbWg!$|!VE;Xz{kDt@
z2j>b`cpvqU$8p_{8-6_S<Dnln{kY}FU(&+cf_MD5>&MY|&|taaPflDuJByw3Uv|m-
z$<qGj?k;O@s9XQ>;~vit-O6-dNSQwBBaS)Gc0XSD@kAn@`teN2zg#N$?Ckq<o@{+o
z=4#YO-R5!J&u`BWKuQ2~m0a%V(nn>pNB2=VjJX2H9l+QCJ_;aD0BHd@0>};^ZvY6O
zYyjl~$QMBV0DkDB&e2i|1dOYI0w@^3+&*d{QC>0h!T}T!UR1D{p%)Ke@x|n$@=J<R
zO0cwG86)QXxAT?{ph5uE0;nE9MbTdmpsJ8cg0Biz4&XH*RRmdVw2%5m0Jr<7ZwBy|
zkn`&tOz5i;sn=jRot1_GWEHp648SBA(*v*@C76XMf|dZRLTrZjmyFbm0BVU@Td<yB
z9l^{1>IzA=<eTJ`IrYWN3ZQ|Ze_l1^*|>~SGqcnH8U@fZfL;MK4&dzoS_aT6fOpuK
z%1YA!nh9wVK%2D+73N}rysoBs0PhBp7uYbh5K^^o@{e!p0LERi_n@-J(k6hm0ko4!
z+XwK0kPb#0-V30k!QU6sDS%JUCoc->EM^zO+f_(6!R`V4eI<Dz`rliW`~TUij!ynH
z?;SuN@%9a1sE~ew{RJ5?K*+!V1{um=AwvXnE>4cpFyX@mM+ESpkdcD)juJ9ja7+LP
zYb87TF+0nJ7r?v#K4Ien_$q+e0gMmeGl`rTz~^kzE?f5k$^@>`sO{bC<f5G@-bsR!
z1*Zh?MF3w4pBlh)A&i_RWbTHP8HQ5#RNh&f%D(FLoArMUC$III6Tsj%lU-nP7qra}
zU_k)i2CzPWg#j!IU|9gmx#j~{5<tn~wxt2wT4UkW!i;Cb7EG{HJki;*LaJCPm{_8$
zGHP5cWK95H8_HTC-vqGEPzqE{*}%g;fR*1X-vyu^R5k^$nR_|i+R&xEc~IFRky{0~
z32ry?GKMYL5x`DE*(KzA?sP-hEo4ssKN?DTZ|W}rz6IE9*N~xMZvejrurGl9JTWvt
z!vRiH0Dp181aK&T!vXvjz_9?F0k{HuD~dTFMY#j;2T-Q5-4lQ}0AB!?y=JB^ebuRD
zESnt3Q955ZuNFWsfDos9i76bw>9%&>o<BcV`iT?fNB~4#Fe(@mjC1_!W+nnSA|_*w
z29T>vHp%Y+91q}b0Nc-+P6TjLT5=<RQ!F`v5?#~seVlS8fU^Ny2;gD>=h(2Sw&{J<
zwSCo^lQYf-Fs83c<q}&Pz%_2S$r)diu@nCY;EI?(_f^Av)vE!Vmn?K$58$5gn_K`q
zmjcNbT^)L6%F|CJxg+M>X~}<|{|unZx^#2flw)z_p8y^P@Q6bfSMCYk58#1}JeAS8
zv%CjQj|2EGfENKg3E<xV^t^eV2JkF^=RD~8sVpk9pSo{N`n&zqUj5V@8d5Z<A1M4X
zBvnIB4SBTW7bBnaQ*#N)t>O7m3za4Pk|HD1ME|~@nomQ14HY$1(okrRQb0pt4Ml_(
z6f7k8is1asrlJ~(X&AKCR8~WA4R>=|OK8c9B1md|l~qzpK7WI$l!ns6%Lwl2Z=qOD
zGL{#tAjonGt}wl-p|XZIG`y){Ls!dd8h&bTsVcmR;Om0CYlHgy!Zvdw%Uc>u8qzgX
z(@>p@v$#@2Ls|t}O$}XBt^Aysy3<0DO=8t%4T=Vf2CIe<pPFnMYUNg_7cFWV<FrnE
zrmPB^YH6sgVTFd38tQ1s)X+ymUk!CN)YI^eh9(;7Yw#9T92&AU#LSi~4GlCtk4WLQ
zmkqV#BUmpkF{v6FY2c-p=>g?j*X$N`vKY`<!`m8;Oi5|6NGXH#rW%@Qcuzw|4b3%t
zwA<8DLo1Cp;4ANH*m1(rLIX2$*|3(@8ro=R%a&J5o{+q<tDT1S8aimGP*~w*NQW!g
zSl!o`O-H}Cyf0PvmUedH_ym*>1Un0M5$r11O|ZLQ55b;-%+gB;o84@p>GccQ{WSE~
zFqZAqFhIjV4MQ{xl@VZH9@ozrq=8pZ57uBCki5lUn6%+T&bx-;8XtwHblhhd!5%GA
zYE-mXY$>BO<hG}b<{(Tok&Ka;4*%E><x)P@Fiyj44RbVnqTy2wpK17926;TYoRu7t
z4}z&2@Ch0wYKZnzXKI+FVX}rP8otobv{A;S4GQmIs$VcU)V2xsFFCM$1q>U^mn8|3
zOxG~O;Fp&14FdQ|#*-t-QEfL-nX6%*hJ_jyX^8AoI2vyjQRZuCnUT6cOTGcTUm^Qq
z4NGLGmupzc$T^Oj6P0Cb{4ch^K=ZLl_7c~u-@KMQidSh^t>LtWGaA-t_?oAyhF`e{
zHGHFCw}w3$)@k@w!xjx&HLT}?*RWB;CJy_@3SYrCw~l?^Bolvx;`0_Zb2GNGw0Wu!
zw`tg};d_q8V$*k8^7P)JVW);ti%o_8Hh-JX!l!}l;#NJX{Bhkx{6WL$b*8onbNOS+
zkIcBu)ct_z7w$L>4+^LMtR*jXcs*!&Yp#g}c6eglr(r+)sKLkcU&BFGp&_u)bV$Qt
z4K59C4L>|m&a5*zHQX<wR9K-DE~k9H(|o?PZSWJ*h((sci%eS=n*7Ygk<_4TI5Ehg
zX$Z2X2TkNVx0^<sF^4$Ib4_6l53?<NLs^uw!$=J$HN-U}xP3Gn)o>@p+Q6sesi>?h
zoc<ddFje`TZH}3bX{b?FX*w>0cwCfV!bJU)hG~T?eCS#IY}I?(QlzYMR>L_B_t;tu
z=QUi=a8<)K4Hr513rv?ZT-FdOW$h9&|DmDZxQr_rUhK|dA>_O=YTm21>l$uo_?u@!
zPuoomw|ER{_){8ln=RyAz|!DPg>5^w(KNid@|Ok<1slWP2>8S{mcZ{c{^23>#QNlv
z@_=1t6&lJ$%#SoY*6>V5=84SdQy!#?l5_E|m{ZCrrfG_Em#L%I^qdEX*YqEk_a;;3
z1#=GG0uaQSzs#vY<Pwrou+tg~XCb$6hHaT<${PfN_(aF2I`RdPKZtk;i4Y0|Q80)~
zA-ozwp&(uf!W@JWM14gm97NGz^0HF$B0;R*o<&kDh~hz%2%=;VZwB#J5T$}B9Yp0I
zUJLT+wdOLx<P+-32T?YNa>6MxQLG?JMG<LM67s4bANX7)h}VOt8pInC_W!bzFqmmk
zqb%}jLDUSw6ofxyt{y~<mz6q`0epikF<r8=Mh07gum;gThyg*^g0KhCCWy8{WCT$w
zh(<JLm}(1>G!RlpFf)j{Lh2db`axs~fA4x;1~WAj(;=80gla@i-I3Nfh_}UjCy3^T
z-Xw^o25%<hz~a2`8cGWxEd^Tz(K?7xJJOg~QM(}82hl@Z9R#Zdk_}*bFNlt!ydOj-
zAs+~K4WhFU#&i)fLYmzzi0+2Y+Ue~nX0IT63+ZEc`wHn7#13i0z#s+%@gRtYK@1LJ
zND%9S_%?{4K@1Dxiy*!XVmRAisryk79|tiah!2ApDGJ5WLPiCV-ncGJrZJ+7<>E=V
z(d5UQaa^B4d>TZan3d+`Y+Jsq_VGas{LRkvnUK!~CkRdyoFq7zi$n;&OlI)ZAf^Se
zGKf_{Ob=p45VM1r6U5)U>@$P-ZINx3a6a|oD=`l)v@N&USn1p#0(L$x0`r2&4{!4Y
zNfrdL(BO-LSZwem%$_Hik!e{F%ME=+5Ntoi)toz1l61>yTf@Q6XZzZSSu5ll!Fj)>
ztq)>D5dQ>mFNlpnYzpFJ5T}CJ9K@C&nEiMVTZ7mZM2wp^i0wu>S`goHnu6FF#I7I?
z2jLXg_k#O_e7pvB2eBuJAA|Tgh+l&EDTw#3+KMa5hJ9|bwMw(?4I;B1ehp%u<hp**
zHqc~i)6afGK6x_ifanK<I3$G1js_Vn;XXmPpvUlfgE-yK&M?2B1ca~+6oZ1HAi_c-
zg1R8R(I9*^|2L`$j<BI05pq--&oHKAJfIBki!bt?;K`Qdpw17^r-L{X#9u)?@28#(
zf@|qd_Wh#mToC6a%Y`7W1aUQpi(+09ye#;KAj>(}DVumr%v*xjgSa8&rV(SShugyM
z2;MdHBkNNW={7EJe$V+gXJ?Q7M!JoSNh_RLw7+_vn@F`?KWs0wCjC(m&)Ci&9tZIx
z2rB;u@l*(T)18iY!)YY{1@VGn2(N^YBZQO?@`R8U;+NjG)DUupkSm1w7TdJ+j4L^9
zGtIWcd2P8vm}1U&tG}8zgh>rE^7FtK0>ONOy%*b_T5TuNY|L9QgslE5N#PKRgit1w
z{NbZ$2*pAu5kkpO@+Tg8S!VGN#w@k{H8z{6R0u!+W-1-R=V>+)rfN1@*$~P}eEAS6
zgiw(!^xK&I=yF@F4BHlq?QEv4atN=5@KFdKhfpPi*F$(Wgcc!G4dIOtnzpgM9m1O-
zycL2i1bYb8LZ}{sDTMS8@9uH*=&#lYp=Jo1+Gn-)W|wT0MN+v#773F%1SJGZ2nSju
zO{+mB_E$4Ps1-up5bB9oJA_P<cDcRnv+9V#j4X;7>vKRv$qu1G2&?+54aH>b^g5&&
z<g8Q;p-~8pLwt#Rvbw$fRhB^hP6$odm(c&dXKNlpGvT>rq@2B^3~6ugFkWdHLaPwm
z-`YEc5Zr2O9YXsMW^S>x5wopeJ5lKUvQ$Qg5Z)8BBZuo%rR)^b`(oB!qcGP8A#@I*
zO9)*<7!bn15W0oXJ%rvN{H<7+dW6t3gx~tBx4LBw-ki<UOU!%y)jkr_SFoQE-#>)H
z15{=l6vE&TMuhO8xQ2u<G=yOx9K4rJFUv_EpibYMJzTuo&u5PeVN?jCxl}k8tsRW{
zy@-`$tW?KJ$qV1lX7+I*d=kQ(5a!C@d>X<;A>%{%jO&V{8p1qR_QU<wCIgcH6ESss
zoIOcmCUcR8@I?q;au7tB8p5;?riU<tcrN)(SNCrmFLTu!lQz3&)}N#7vn28>!P$Zg
zSU4zq9yd`4YeM)sgasii3}I;q%R*QbLd%}%OiP3;7UaW+-Cb-Hmov+u?D|(ND??Zj
z0?F0Vd5Nn+SS@Dkm1Nj=M{=$W;hPY)g|Iz@bs>B!<!lLIeFz)4>i9XNno?tw!r+bK
z+9bG{eNn7TMGB;E{r}4UE`%K+_(J?Rgq<Pm3c<@snU|MWLVnM!F)@YZ{2(Rl4q=aw
zA4AwD<R?J}{4C^`5cV3%uRJKKTj|;_$^lNXkV7H3gd8>^ogwg+0Y<tF#lz!bPEujw
zAOu3tLWs!-2PGyX?dRYyVAfhwID|+DBush;QG@fd^vn1oAsh|i-w2*Y@LLGS*yS*G
zhVgp{$GOPE=oZF_5Ki(83FGxJPK9uqr%f2S!e}(ee1;oykojf^XG1s_!g(>N{2}Cm
z;6=epf|mt%E=gm|72#JyxF+Pf;0;0ds}=?@-3sA$2zNxh8^Xg79tr<5gul2ELik6_
zdx9^EWv=^TKH%Q0o}1=lF-e|<@WkN%3V9mBk>)nKn4X95UkERF{!7<V1Yee!YVbDI
zbLS2tPZ-6*C>}<d=*;_yki22QQ1S`MA4UN~DHui}gY(lqa}^Gwh$ux3o!u{C@bW@R
zhEd8;N{3NKcv(X!C*(#+J4>q&Mny3z3BD>=S@1PMJ`j&#Rl|5AjPx+fA|6_s6yFTv
zEitPJRu`-xNN>$BOv07*$zUZ6OBjwYvPHBCW`<!i;_YE%2(KkrTd<Ddz3{EQuJC$>
zQeQ}xV1qCk3VAv5s_+(Jv?K|mv6yd%(M-rYf=vXQ3hr5uTw2YAle`<o%f7cVl=s7E
z9Y&il+KSRau$|#;FNCkQWZw6LcMRiYnVrP^K(Mo57s0<)C&#3F7(K$6AI5?(dWO*}
zjL*XOJdEC9^a*1`7$1hwcYxYAi~(T`45MEd69%aLMO;pOfI29Q!C?#yV^|ow2dJ%v
z*mpdsGbD^>!;)m-F#B+pe9%n7V3Ltxj0)r9Fvf-Pf|s@qv5yX844d>(_Si5!3WK>Q
z(j;LaOrL}?J`7g$sbrz@vZAh|?GwV77{;_PriU>pjLBh8{2~liM=~W0|C2fwpVVQS
zd6It_#?)}~Z!TMYbbvY|jG1A~31e;;9haptepVP?g)v(SVHM2CHnTBI^TN0_KxNhB
zbS(^HQ5dVkSQEzLFqVX|oLv~GM$g-qhOsP++ymA5bFzOuXJ@K1P+cM3m4d6nU>JiL
z^K}?&!`L29egJ-@zvJ|*v~R*#7ska|Y2@FEPS<)N8^YLVD4W9AEPRXLRzu&$#t%$>
zGyI(>{K!qdD~#_srxEmt;0I1q7&qA+u8=T(48zA!3gf3Reh%Yc7>77SVeI9Qp0@0l
z;o?t1zY5vMSstivxo06B5M}1T<iH*d!^zch#q0^g#qJDLXJzHS)+)`-k_W0+2dWL;
zsOyyg#*hcX(84$`B`|w1jBpr{FhYj1_|I&eqr{CfNR5Y)GD!XNkv+yuF-UcPolWFV
zW{EJ4gmE;C-;7+RgdF2v0U^f)PZ-{l+(D7#-+iXjVVp7avtgVwc(=^73mp6~wiZag
z6viJM%t7j99wWNr+gG!RSGcfuWnGo{Yl7DWZx|(fI!L`8#+@*~#zDCV?uPNFxbj4>
zc!uS#F#ZkWX&8Tp@o22=pD=#7WWQ(Ry)Wc};6uSjVLUdxPr@kqTJl%IhLf|OiI_Wr
z=V27xk^DOJKT%$Ukt6cIPn9V`QU!BHkjv2j8sR8EIQh#_S_F9`fT0(SB#X)yLH-Cr
z!!rtqSx~T$;46ZRDJ-N&1WN{~FKaI*g%lSoAy_hkQbI}#mJwt-*^BZKREVH<1a%^)
z7(t~7tP$8Ecr}7GHPtE-Nm4n2*F+)TGe~`1^s0hyMDV7Nw**as)dZ_YP(ujosu{tt
zLI3+?m>z-I&=nz;2p)>p9>Iwj*|j2QJHnE|hE1^09O$te*=3tmU&)N1ZUh}8ct3)A
z5!8?1?Fin9z<J8_$5+Xr&WfOc6xh%x-ytMhP!((>*f;`rh2#&5O~h<1NV91K&4f2M
zly@U&A-tubv=Xu)o}BA8!rKbAi=e%b4ubCqGNxF`+?|AT7k?1J=7Khg>`rG9y9jm_
z>=r?HAq?mdK~IDCilE5g<mmN{pkD;LBiIu`{|E+fQX=>|f`JhXir|X~zKmdS1VbWx
z)2?Mo1VbYj7Qx36jEi7+gui7c3mL(6RU%{UzxEG}@<&E6%HX3T7$bbFp?nm<%u02c
z@skKFRWcUOuuqQQQ}K=${LF~_T*!n7CK}452rk{P!@SJ(*qNNi*~3$=)vP}?g4q$w
ziC~&UP8XbE<eC}5Ea6`XzAMdUA#)?>yUDaT!Z%GT^Tahjf(1sdg%K<=_`WZaXUh^X
zmqxHm$a2HGB7&6$UnOL91nb_Y&n#;r_$GoK5$vQA!M72t&&)`#oys<^kKnrqMh;ds
zNS2L837dp$7TglSRw3IA?{>DT#Q&c7#HV2Gir{;3{lIaapUN7)Id17bERDZbuUq2y
zF@m2W*dM`x2!3W*1bZd;vHO3g<>)fGe~sYGD9gSGZZt^#)5IY?7{Q?kZbon`g2UVn
z5gg@5@d#WTuEDA=0zX%K1fB>c4_3WgDg`pntW`Kf^s<CN1QDr46ATK51nCV6Su<GG
zg+vWK7D3$L2_Z)!cp1#r9*f}j2##};o=QGt=!6k@UdTzoQ-Y@j&j_9sJSUiQaLNTC
z7X>dxa9PM7g4ZIrBIK$dtLQyC_jTbn429P`+>U?)^+b>{clcL8ynjaUR|J0xe`Lh}
z6Tv;<_XQsq`ojnsO-)`)^H`K2xsyHOuzw!4J>#(-LAnmJj{hQf5y2}u3hT(BCy%3?
zI&$eq(ecGk7N%4otzWa{){#d?ejNpLr0KZ)Vf`Uv>N^VC^9qMx)x!3CI_i$Bf3T^g
zppHU18qYKNS6XHkvbQ*3pI#}G?@1}5qo|H;l`>w_QA|g19c6Ts)p0A;T0%!?Z{E^6
zN{UHdO2_MW6}rfY<#d$S@v4qW5?MjV^B+wWbqsBmMlU&aB6(#Uot##ZLCw;tun-+p
zb-baYrjC!#o8HvHCoM45(D9b=YJ$}T`F!1%Uf!tAo7qh|9<;RcZ7GTli;mtp`p7_8
zb=1>QUx!VHU59UUcDs_+43?mywhr=(^DPwX=*VrhXL4BBa<iQ}6G@hi20B{nXruG;
zEjV<%t7Gr_<b@yEI-2Nc+s3ZyXv8tpLGf)J?+8h5y#fk%C6Vz>bu^RUmtoCyybNd|
zr7@tTkXAbO4_0Zm<=C#Vyr-ih$GNzzosRZ&^-?n0*gJ?q?}6Ty_jPpE(M89dnWj#H
zA8@ryuwQ!9^1Qv$RYy-9=h`de-8km$mF_xv=-72mVWLS_FA4a2nx(G{*H9h9boA4)
zG^f&EaDX7qfjR~me6Wxqf@cS-!*v{eWD4F@M(8NDz_w|D?L!?Sg^$v4>2cn1I!5al
zqhl<aF<52#NW3H;i&Az-Qe-6aj@R*-j&X5(636E{Cg}Juijh%F)G<lNpE~~1F<HkH
z9qV*_%ayO=OOD<a^HLp)?e>P(>rd4&O~-T{Gjz<-@s*C54DMI^&KleEI##|ol5eb=
z&2bCb=INNPV~%i|b9H16Q9BP&7l^W0aG{RjL)1mWbA@aSV_L!n3{md}ZFw8mm+4rp
zV}*`0)zy_cR_R#Hu_}<ceUD>}j_;0`ztNF6Wj$6@{aVLb9VAR!3agB#zFx-$9h#1y
zj*U9DT(f?sV~37SIyTePv6VYf$NAEkd_f+Oi6Spf-Y%G{iESt6RL4Obhje_e;|CqT
za=Cu2?AEbI$S*p6)Oqt1eioCic(de-mLBKNBrYD3eBIJsaqSqQ?h~?K#{nUHZBy&^
zS&Tfa!^s^aqKhT3&UWkYh{=~ju>@uzdN~wb9Q2a=bp%9Yu{1+E!W<<XXLUq$=sM;V
zw;j`QBxa3r2?>emhzkjybkzCLme4^wqGNsBO7fey7>~I1cOA!B&Jgv4j+0y%`K>IC
z<|!Sgb(H?n@y8JLP`#vhj-#jJ4;=;Xnz|Iryuhg}mU&6=qTqi+)Quf8F6;O}QF-g`
z6^Xnm$Sl`%To-;r@TTA`9k+$t5xgt7q-jkiX8BvkKRPN$@mdu3blm4bcQAK_C?4o|
z$n!ah0#Q8D@mMxp?kJw<_*X~H=>I;|KNY>g(;Ux)JQw7#|DTQ*!gEMuieRdd>v-#w
z9OrZ760_`3HII;aadVoGyn=`#pO6_%lGnTyjG|B!rK2bl#Vb)17FVe#iU`T*s}zmm
z*ZwsxJxqQ`C?;ZY!4grF6hghi)ReC~B>!@iHI(u~%0*H9a}!^Zc=l5AnX45=d~iEQ
zB_Xd0UOt#oC5qRhcsGg`QB;lMjVLTpSfh9|inpRjm#}J4RF9%;gS;j&$2Uu<5k*bm
zmA|)i{;nR&XKL|LZgUh$6y4?NvJB&$R<<bYQ8bg_48dAa)D}{}W2z&Bc^yJBqo^yS
zo?v~!EWrkXjBF^RX?jYw5dQ5`qiDol+*OzwNAb4scMPS8kfws4UsIY(u621*N;}Oh
zqi7XHrzk#%;=<tEt;N+*uuT+gg|ri_dC1m2iVp1cAsf?sLLN;ry&uKT4U?bN&TUTX
zERp>Ly9joT;*04@H{sm{dkFRvWUgL9dPmX6Q2Gj4v^b-`kO6{EeWrm?42tqT7t>(D
zA%a5%DGrNbxWPw6!8blo92LcAj%N(@Vi*&}*eL#t;;$$^isIuaeqzg`7#GDSQEZE1
zdla8WF+PeVQ7nz(vnW1~Vn!4*qnN<MKZ;6|98&}*MNwyxW3upElO5M4Ic86Ce8E|6
zsxo~k`qU_<i89^Lx8AkQisGv%7D#~J)jnIu90m+kSvb>NQRWHG=hO^U2M$#iMzKhg
z#e!6(4ONFvax9Btc@!I?*c8RC&UR*B5yi?VRz<No3Rd@R6l<dRTKG4Tm*QG6HxE_G
z*9j+KUgG*F+D&q7h{7k{ixVB2qhLF?MDb!`vUyvhU{C3#_#Fq3e+weYk5L4>*>*&+
zGm0q<ExQE27yLnx;%*^(*rW34G>?C3<5fMsM6ovtPZVD6@hJ91@yAg0a1{HaI1q(X
zOezPXph&`WNXY(@cJe1fRhO7<!&`Wm>Wji3#n~v%MG@eF@mWJr@HMg%N@i$mC#SMx
z22-`T5{@Dg#Wy~y9z~*o<yaIHqk^$0;zAOFM+E6T8pUtIyH-_bGW{OKal?Beij%@m
z8OrG>&Im6Rbujq6p+A0Nx***8+;&mOr6?}57s9VZanp#r8pSo?*A3+cm(c2DX}3hV
zEqKT9-i_kR_BML|<|me|=2v1U9K%2S6Tn012lIVykSLz<uRs(JdHzTL_q)<#@xC?D
z^u$p9jbi@6y!@5qIZwqd3R7AP{|SF#C^=$Ci6J$HoH68z@!ARGjwOSM%t$ihsF_F?
zF|Qy5Y37R|zwiPvWT#jP8hRli%vdCbqA{3aNROdd48>!p62t2;l!&2Z4CQ0Ux~r6m
zp>z!8V!RB=#Kb325X;0+R+R2b%r8a0Tb87Ph!q7Z#qg?-%7XO1CWKFut}5is7~YCu
z!5+sOV)AJ`jHwnwjTmZ*QeBW&xKZa7Zp4y@6>|(q47FmYEnbVDRq*tZ44V)}+GEHt
zc-n4r9fN1aka;=TW+uKsxjy?C!!I%HjiEsd4PzJ=!zVE~IAWaEoR%Rms4+B(p+gMs
z#n3p0w_|7;L$es(iJ??)+q2u&CNb~{hYy!qh>iA}i39Ffo5%2O41CsNn`7n{F^oE9
zZYg1{1X~NX5oCN@A?*a)$MC3b7RA-KtsP_NDdPJv&}8Z)<bxPG3+ZC$U4?Xup}UYC
zf?t$Q7Sbz*-ZAuvA=1lMwyllG)HjBHqLB9&GC**k;2^=lG2CsL$$+6T42z-dz^viy
zNDQN67!kvVqD;P$W2BH)N6idi8WRJRk75`b!}EI<|3CKEhpE&*j^TpMO7dw8<742>
zEPG=3EQZfxm>k2D7$$Hjp0Q7g;dBX=WTKGIa;YCp$foi|3}42uHimCvm>R=0uACSa
z#xR`|F-)Bi!%QJ}e#`1HOr6CBOvwIhnEF)=G-nIW5u7VHPmr$pF}%!j(raH7!(w)A
zZ(bJ2>`NqOsS&v>hULOn#IRDxDlRI+yIKe{vdpiAFB_(=i{V@LF_+r#aQ1rcvOjDa
z#KpqNH^#6@%*}#3V%Q>Nt02qS7Q=Rfe;30KQaJUUG3*lkd%+)!nB6h37YyLo{wO2-
zQw%=~q0;a{_OCJQi{Vxbw`15J!+{vi#&9l%gE1V6;dl%uVmKUwGse&A*znlmiXqCm
z8*fR(;Ev(OFx3--moeQOKEbe{KZbx1O)x0Pm{1IRCRs?BA|mQ6P)JNLZbZ(hq`cBB
zi(yA&_)V%l#zi&W@;lGfvYBkjlLa=KCu2Cp&MsCMNt4-6$8aWwx!tm<WI7Z^j=5?*
zAHz*9jEzZtfuBjPS}zJ-61*J4A3~^K5pp$#YeKFY`i&TN_O>yg*;`hYbB7y&M`awv
z;`lR$zjz48ktdG7*}NED#E>J7dpx3ts}Ev$7(*v}_I-}YatFyHDl3$OjU4|8c^tzN
zAr$|O;i>RvhVq=NrFjNjmF(G7hN~&@WL~CJA+wJqdCoX;#Zkaw`69IeF)fa~aTJcD
z>MRrD$VXQk1>?vcM~Q#4*#>55FkEFz3dNHxd_{2PlkBd;Rhq~D&1OK6IOeQyj2W&L
zXRbJ2i=#?B`A<s8I7-JcYl^9qm<!8gn18XA5l(N}ILZkxFIYjaqF^P#R|OeaIgXb7
zYLmRqcE-^+j(%~x5yzWxWW=%BkyiY!b<}-R*lT+$&QA!a9!HHhYD#un9HuzZ<1mZa
zW?=F=Po`zJlSC2G5{K2OtK+Y^sN3VH|3k71wc@B9N1Zq_<9IuccjBmPL^_1j6Ra<o
z6-NUh(PL>1g`6y(yx2QC4pq!Xf{g{K7tnGxiKD5QJ>qB<NAoy3#POae@5a$qNDFpf
zNGtaDPHG$Bt>f7HTJl@L8)K9IqqP&Uy&%mTwbMGr@qQd#4W&~YorQm3D69A7>LUD1
zC?~UY6W-nM-e{Y*r@?#0(OY;QLzy)oZ-3z*$N56lWFH5_F;J92aSRqRB+l3R;KMkE
ziaAVhxFF-J1(M@GGR~K4=Ncp8s5nL&-d7u>jTQcpq2%}^t?vfg=>4Wo;}{>uwgk2(
z@EO1S;aW|gKmrrum>5Sij#wO%;+P!A<~X**F(uAtAzG)$F(ZyI;>qvFz7&Px)HtRI
z@9~#Hb0*hn94q2j8OK*~%#LG8982REuqkU!9CPEC7f0If*`NHDtzNbh+l;Wyk7Gd`
z3*%T62hGKTBrm-TV_xF2IF`q;{f1&1Y&+lBv1GWqigVgCeU0F1!TqVpOJcqjzE<!X
z!F7V)3a%I2Ah=O*lVG16$-G-REOB__@UbqAQcC*HICjPHop72vg#7TfjpX|{_PsO(
zcXOcRI_f=f{3!e<L;0CgVDP;{e&tbiA$c|RelZV72{aGJaY&TIf=)q~AiZuO9>INY
zTK#bZ;s|q<W-H~&ST%006{b)eK^_ZbtW11p{}Pw!yH8ETNE|w+!)40-T~eI0$Lu;|
zj>nOR<47DwdA`N*D30IayoCxE;<y;c?{OTD<5V1{<H-lwpAbCBHQCorldoAHvekYj
zj<a0Aah&Ho=C$1^YiFWYubK7ZAuCDc>RFe#MB}&_$E`U2kV2^6h~r8ed_mY%L%Am8
zx*)%Hd+xU}jOn&0|8SYfO1>-RpMv!MCFE~TT)t%dJubW@Hm3VR9th@JWqTaQlQ>cn
z$eF;uaXgLVzc^mR@l3Km7hE(i?PZOT+{vO+Q}gCXASIDJ#HK&2!`@|BY`GH1oj_Uw
zc@xPoVHS#c63M>v5dpq=X%Ic1AXgN<%w8~oLJ15?U~mGjBv3ek+6mN2phyBm6L=$m
zHxnq9K=A}#O<?#F>z?6ii3Ca|P&$E<2`qn{9UHFR9Ilp0plkxKzn4{x9T}ls7@_oR
zqqfVFSw4~cJH?7BNNXz!R!U&b=;V!Zl@oZ4?YXa1k+9bjs4yb=vr*Lq>W)yEx{Oe3
zWM;gTK=lM_Bv37Z_9wF$@b?2p%>+yd*b=ZOke=Y{sx9UOlmy0%P{|8cvRD$>F+#N_
zuyBO>(;3?@QJXeG%}AhDBKg^at-35azjhAy$jD@kEIfe@Jb9XD)MKj>csqgmVrC`K
zKuE&`R3Q$*Y>q(l4935>V{ar1M}X!#2{cKdbpkI&s7*z0p1`{@KFvgAOp63sCeSK@
zUu*G$bhe|ngNdAt-#_0*-X?*z3B1(Xab!MJ*|kemEbk@IHGyskbo@V>&I3w{qKm??
z#7k0;97RBa%uZZjVHakaD3Vk}5m1tXl5@@(L9!@GqU4PJC?H8dM1<)HJ$ZTt5Cj1U
zlEZ)JVV_gyp094bs;;i8uGyW??Z*3Ve885oGQHoJI=aD9p6rKibmHj@RA@52fREhZ
z`Sx(*V>i0G(anwS?$m9*R(7>?7^qO2uFf7XQ0Xa+u$@mhlH)Qy7479lZvi@;H<<gl
z(btU`Zp?I}A6JDNQ)OBQxG~U;k#3A~gG*u%*H1UsP&Wp<F@)6@y5=o(^_`Q!qG4_f
zcVmPE%njMcKCm&8YAxy*&EaxmoEzjZqRalUk7rlinC!+BHzsmkq^mrONp7&`P_1;x
zJQ1D(nJZ+P8`ItVpwPNJGy8+V`Jc|V&T?b18%x}n?Z)3@GQMzQ4%eZqoG;y&M}MGF
zH*e;AUNUYha^vTL%6g7@e}%A+{TGM~RLsSlU%9c=ja6=Z%LU-Z+Nv2V-RPM!;~O`Y
zx%snD$8tBqEAp>!<LN*pTG?Kyr`7U}l>w6urM2(pT<ylihRQmrvW82ppL4And{i-E
zy&D_cV0_n(uCjxa@7&nPD{GLlNt6fLEKs?TvW?5zjT|a+s@UPiPB)IYag_0=th?O!
ziRb0UZa4ODwYzyscGLH6{NTnuH|`v@T8G>D%TuQRxv`%s(2a9Hq_TY2K{42Pe_HZE
zH--&Pfpvtv$}ra<j^{A@&!UGp>G$(9d(4gFZrpO?wi`A2Ieu~DH#g3>al(z0ZXEkK
z`;;5MN)dVO$JwWa>kd*F{JR@xIaXXMZv4SHooQiG*%RUOqHe?Q`iaG3u-6Tru-^^M
zjeu}cH0VZ1AS@bpBjQF>IOYb^oTd&Q<%R0vCk*ofCq<k~Zu}|0NdDINvhWpAW@*;x
z;<)C<p@8{@8+nVT|Lx{`r}pc@-D+mt<b^*-`Nxg&V_k$<?HncEwcK&zz8eIlyKekz
z@I3*33`hTg8xJM>$S8g6#uI~|3Oo~i&U29}X)1E5XsV)_irgyls3@bNtctuU@~L=9
z#mj2y6WjbM3aBV33>802wY>N!wvdX#DvGFhk>#hiOfR^on)>Xuq>551im7--MR64+
zB=V2FsgG{!EJ^8Vvz;H^5=u+stnMh1UQR`M6|btOtb(N#q^XK3SdooaG9p>)H5FA<
zm{nL*R8>(;O?|RV|8<F}F4e#Hqz=SXLq$zB^}%s1(KkeEi<(5!MHvwJtCm%TO+}`(
z!{geGqdQbgyJpT1ts}~8T^02V=8wzjt7xF6er3jkvTl}&Y!#QkH#JnzNQG17!+CAY
zHdf&hW|oiOrLrmdO{6J8a}_OAe4^r06>q9&sp2CQAFFsvMJpBWsCZXJYZYx&w3B}F
zaBZcZRNg<C*|&|U;fr;9MkbscRd`xh-c!**#rxuXpkjLtD~pa*Q%bkBkQwlygmqHU
zS)hw(sliSbbyYFpl&w4aFd>6~2zBFXDeqW4z}Z9PQ(|pQJvni;vdfoq^it7V#Vi%G
zIT0#8S1~}vKo#~Zdmna8ML+t3l;}POZ>6;@%`s+>(qF}*b15FAVz7##Du$^TqVj7e
zHkMMESbeyP5h`Y=n5kkU+uZJ$u43V!)E62@sTi$djEb>p>N|~0lT?fo9xpn<@F%L+
zEWa0H%w!c)41cP?G_KgR)US}X4^r4N?*qo;o*1OuN^^XnVvdR>D!x)NSH+i{h0$pX
zRm@Xyvw=M;;heAXkzNXUfeL1smgaCQQn8qRnq%`B8`F(J%2E|y^NJg+tW?2fzhP5b
zoy)i(4^{@9wJle%LYz@soxDLAi&m-lmMbC4&YsW=H?Xf&u}(#~Fv^FqUd09uh=y4j
zzEiQ0!5*ykU=vSM#V;zK$BJ!#S+}V8iQ}naE3@Kk7yX{E0xEW@*d^ILqKw}y;2&<<
zE3i*=b{hwan0}D#|5WT3pz|Y7d4-8^P{kn?$5kZqr8BLcVWs{o*~6koR2(%*kE!@4
zEfvO8^9S=u6{l3Z=0Oz?epPW=#dQ@ocy+5dqav&#qT+Yztc*X3yHpitx$Gr-PSnlg
z9x<OM=SVM8!osk^`E4FfYr|}>3ZDu;7ojWrWM_L&g~mxyQERYLrnCLXzqSF5Y>V&N
zLY%C7wg$Q_sv@T1PhP*gSWY<ODw3R_Jj$~6imrm1V9~F3!UX|-TjrvQOI#aoSibwx
z!lEl2|CX-5c#)P-CQe7rdnQK>>s4N`DhPjz5-$DdxXD4_s`H?P2e(w*<__$^%O2cO
zahLnE2YEdBSH(T<5B0O3tGKV?fr`f}o~YQeDB~e_+7gaOD)!uUHd*fsUv?1A-gQ!+
zs(8i~d)MhN>R@7U4i9pAkb7Bnng_W&sBqtW^@*9vaiiw-AfE>XJt*Wseh-=sR^Y+S
z-S&^lxt5hw3V1MZokK5fDb~Q5{g0#PV5P7J-L7X95hc8ul@aRYSpQ90Q4flFka)vU
z<f7vh4~DO_OdqUJOM0M8x0m&#{sAGBl5A<wG9KLUntNqtl=GlvN5}1Brt<8b2NgZ2
z<iV>RXisdFsVB^@?KOY<#5VJkx$sUCwW<fzJg|CTlV)ERt>Hm+0Uqea@tie1sO7;M
z;-q^}Z-l9~QEKww8;i5;BZpahi)dr3lQFDo_uz96`gq{*Aj5+?9@J&`Ja|j0*AsPl
zkSS2#XtRMpmIv7a4MiInrA`mV{h6cG*c^&DjSatvKvNHz2{adNVU)h<!GpP}&&ruv
zdGMYG9Xx0)rEQFuwgT-ucw68d(RYo~_5y6=eSxl`ABc7o{ZN$ccM|9<+C}su4?Y%H
zH#qfwRyScncYz)r^c46+^ivOd3H0{hGXb72gL%r-z8>`RV4(+#Jm~Mi01u`~42uQ|
zjPYQQz+l54A~4j0VFJTNM|dz&V3Y@=1=zx%Q;z8!Q=>FioN<OfUSNU;69p!TPBu!X
z2u$^WKNe$Mrs*Ec5ObyxGfQB$2VV%x5uNM7mjd%Vm@m-tS^g(yTnmH=Y-+IwOSr~7
zSmwc3;?rE}LFbLx=U&hF+Jgc&>M<RVfn6>ED@2bpNxg};(t}k-t$YP6Ydl!%!A37O
zd9lue^*kdlCV8>JgYP_O<wa{RHgfa#Al(bI7f;jdcM4fId$7fWtsZRi;13VZd9dAs
z24k(qJUH&b4i9!pc9#b~dhnA6yFJ+B!Co<c5Zx!rD&GrCI%4{t;q3Q-Sr#!J@ZgXK
zKTFX;QN|w@IAX+)d}?OoQOQo4Zu!OVPkV5};FAKU_$pvHZ09%OGors6{#gO`;k*ZK
zzHoR^)eF@Fj|Z1L_>)64G~4Sz#Dk~@J`ZNj%wX~hXrckppa&tNH0*)eI~5iaCleWC
z?mOZ}sV<Q4ASrOc@GpAcFJxn_O$9P8dr-!U_mOeMgTFku>cKS$%i~38u<|$ec@J)T
za9zwBMhiE&P98Y^@u22?$BTa6k)r1w+~rFE*QW>fJ$UTF6Y(E-@X&)t!mmuWvWmJi
z`|aV`bxT`#l&2m%lcKwWl~il_G71k#K@Kl+dXeT$4Mi?5atp8uv(+UauNV2m%<n}(
z0f;i7fB+9#$cw^W6!GFEFN%9n!i$%^DC$KqFJ6%t=MaS>&u5?QlXJN+G}W=>^|X>+
zl=7mqH+7Dk3uY7>nmyrZ*0g|Y<XmT2FUm>X@?N~=Mc;fG6^!Fn6sRQnsuz_FpCim(
zF|wK$uX|C;i#NQe?nMnRIAt}x;M~=^Q}4~*86AfxJR<vJ>XT913zMAqjh@cuL$m1*
z9imvguzJzN3%=cF^Wyl+_BvkF^}_DObj2F7SsY&M+HJ}ZEjQM>%x0<QMI$c=nO@ZQ
z!hguzz>91z?!9i!@?w8QD-+FzoOGMzMI#J$N)?wEiU6I)0;>jEc<83mfo5Jb_hMSl
z)O(LDym(Vga!Y}?L_gh^zl|4dz4(~3kY#<o-u&>6iBGR+=f&Gz5SZQ(c-M>e0`D1q
z2Z8s!_`r*fUVLcyUA*XIaA$$$BT{XC<OQ=#UA^e$MRzZHcrnb2;a>Fg;uA0Wdoh3u
zpl{tzz4+XVK3??l@;(fFzfRdaMEOjB{L2ufuY{HAkkOB8=FJSJ%f>r0@dmb31`PCK
z5LZZtjKN+E@q+OTU|4aNZ75fo%f_M+UX1i&^q=O^*UhmZ$|x_!dr@hqGMba_1)Z^8
z<QS?v``bKDvUJE3B!*#`LzT&1O!21v2w5pQ)r<LFED)Y1I$d-Imzfu{glBv4r2uPv
z;l&(-=X!CXb84fWXE>H3sULAHl<YDu78(9xfhAsiWjIT{_}bua1d8*CkcP8D;H^(n
zA9Ae{{#JCg7i)}|wR{y2UN5>q^gE-Jt!?&Vix>GdK*Lrqws9$X5%yxc7dzN<FHU-~
zlS`UaxMH~&hAO+g*yqLfUhpB*d%W1|#oGC%I;YLN72ywFym#8n{}#WUXu7l6((X&k
zk6!%b#ZfL5FAngPXrJ|<7l*uPH_6g}lBG)t`_En+=ANKfr}?eS*6m|C!j>O62)@(S
z<6blvXZ^(s@}f%?-qWl>U&|>ke)R%z%Xu$Od-0nWe|V9{Yd+(}@8qZE2~D%lGN6Nl
zX|`^;(bPiV(@4*Gai*q);O0w!7alLXJeC&$?id$MK3?FXEPk%`+SWt!OymZa%)DKa
z_e&FRa1`VqY%x`zXNq_c^}^+c;z!JjxEEjeFvkboi-Z@Wd>HLR(u)gR;Xd^C;i4Cp
zyr|+sRUiKJ;xb=zy?Exu6}F>VZhG;Lz+a+Qy|^aux9D|IhTZUD@?A6GmN@rCZ;ReB
zV(xnJufg{OeynVHU^ov29*I5{eZpB-YGIqtc{%t}ohj-=P9M^Q3yS6v%`2K)G><4B
z#FkGWzbNZMpnwnm{A^;DsgO8@MT_|Gk`ei`5By#|1B&_ZikQWHDC0v};SxTS6ewlH
zmu9b4*co5Wa4HFu_o0H}RP-TxWh#d0Rkm;VulcZ{X!;Aknh#BVXy(J~K2-Oih7UD;
zaQKknLoJCn8@1l>p|%euAJPqnyBr(g*;x$7Dqs_}`|$bN)a=ypp{@^3G3$wDiLxlu
zhx!IL@ZnC#`l46aJ~TA^Mm`MQkvfpea1?>YqD_3*)Y$Q&R&yWP`S7;*Eqr)WprsFQ
z3AFN|tw3v0R%zoyi}k7TdF6j8eaDA)edz2%7a!V7Oh?i8L_3JSFUsH#c-+zd_4Y#_
zIvGAE`Xk})q8}T6S0B0=%(-R@Jw$u@@QLAn%FfG(ea4~lVMNk2ko`Gm?X%h5$A`W?
z^pi!xbuz$*{#-nRQ@_RFB|!Duu>E1O4dPfyYePhbiVhPUE;>S#M<3}!xq|<#jWIs(
zEeo1seHiECk9|zzeV8VZ6GSJ9PV!;0z!cHRKjveVslt4!EP1*QGbB4xl+G+4W(&9c
zhi?v8=KAoZ4@Lbb=EpoA=KFBQhu?iz;KM?$NguxRVUfi18eH$gVjq_H@Rc|#M3;)P
zsjq$bMtGUwEawh`|5o)%A6ChveCxw%AJ$0BIwNu|FRRI^^JU`d<*|4}5AsGI_V}=u
zGwZ`<3Em>QOLVIb+XS|Y?hs|Ioj&Z8t8BO7aK-NP;d{xR@Zkr6!=nEa-7os14?p>E
zK=_a-TRSL_OQz#zPVuq-=IDs{M}0UZaNLOhMSzceJSlL>@PGB;wD50+!|^%m!yi6e
z_u+;Q=X^LX<8X;9ZL8VsgX)8a95*q`o_Ku-`VjKLXSCoK(0m9O4tL<N4-v_lUYMc@
zA7VyKoUa1H{f?#9KvMXEQF@VkW7>bS_NSPaeYhg<ml1Q-hieA^?E~KoXFE(ceYo$#
z11b8)hg$--Mem5-75!I~@%LC)=KY}$k9_<FLh3SPdd$64_=yqu)Q4xn&kZMsKlO_z
z2B#Uda`};4IFI4v^{1Z5$(a0pK+FPu6gEl=`ccT>YjIN%gJ1IFWnnH$*5#G>iXX50
zQQeQ?;+OEFq#vdHsjqpL7Kf0!-KEh&SwG78QQnUV;=JldWr2#KmHfE1E;VAWNw%se
zvsL`~cFKPvS<R0#6H-G_!;hMNWJ*jeBQnE}H~gsWhe;f}Xu7Cb)FNsXWg|A}DuK!2
z$CBRiDqxh>6{zP=eYyQbOnq@0_>m=$E!t4Dk*HIY!K~HTk0ySs^kbDDP5o%*M{hqq
z^P{;ROY_>^^`pHXE&O;>s<iZ@jlf$*3$6TUEgX9(wd&d$emg(jHuxO@cKba)I{4Ac
zkAp$$`~K7uXISN9KR)oIqr`kD+C{XJXlK!UOH-%z5$ifrbJ|tRZhmwZ=;23C0S*pJ
znLZKtRCMEZ6A$-viRp7c`uH)ykBNTt^&>dnG{Da%GN7LyKgRR)=ZUOwGVxZcgZvom
z$5=n&qpd@XHb)8!6&>csaKj(rM^$6wNBJ>Y{4qu;i^d6$7v+N_*gf(jKW6$dOU%iB
zOfll8`Y}y-x*szHUMMThmMm{z`;{MG_%TPabN!ev@TKTHBZfy=AWT>&u!yV3aFz&|
zMw^xjeC@|K0=&EIvKJt_LX<7=px^qj+7Hzaj~{FNSnJ0D&Z8eAnmN|_vEGjjepLMT
zzZJN>Smyb2*6;k-=*K2MHv6$fn)=?)rvU#qN4xykCcNEncKESVn9rBtL3a!9F-rIP
zvCm*`J3kowKR@;h|7bWr`H|~*YM<vHREOBZxaki+e)i+A1RN1PC3;l!nCNjoei1k!
zdQx=H>QqmD6(*ea<2QrP`0=~JXZ@*LLo=Y}P189s&x^W6`MXZ9A3p9Ie%$uM?}z3`
z*&U|Kegq`oPi_$hOhG?Fk`0R{L?cvzm}p#-2h#a}!NJtt$dnZGf*%(JE*UZ0+qe8;
z=Ut|+$RPYB{#DUyqJR5w-H#hDocMopchir5#3{s|KB<;F!gocP<qQ44e%$lpz8??7
z%&ny+^r7%`KOPy8kNtRJ@KZmY89cDOEr(ReDViqA7IF#j|AjmPc}4Sy@}-sm1vC`Y
z&`U#a4TUrm*3dvhmWCo4UeZuW!>bxz)=*SKNe!hm3>|ANCR$v>D+0W0dYgZ;=$FuN
z?2(O7T0<EP<uz2$P*%)mo@~aH<0n}iGRp69F=j(oJGG+5-x?_MB5Cw1Yj{nAS%XDG
z6%AE2yrH2s;jpWkhUyw>2*0i&vws%N5kr-l8d{XG)Dp*Jv(Z%RX3!aT*kTeh-3VqC
zs|K5fIvVP-S8ZH&4Gs-=24rpUo7Ee+Gc>#<4`gJv>8PxF(sHJTN24r^sV`X`f{kZu
zXsDr$hPE0SX>hVg!<#%24T^^58qPn>y1BvBm;<=q+(ZL^k8`xMtEq-&9EyAyG=HpY
zjoq^T-N8EIQP!ee)|MJtX>#*tfz}!(m9w!58{y-y+hkeVX?R;hHx1o2yrbb=4V^S}
z*3e$Vdm28__#jbq(6C^u{e8X_(Au?Riv6=%4#K=P7HaVg_C3`yKGaa}4aeCx9bFjN
z+ST={^J5JR`$z*#*6pg{Mf|?Hjvi9<iH2{lI=>pK^wh9ps8VviCB22?Q;j#UcCg}S
zJmstQp&Ev1_*_FD4SjhQ8%z^Nm?~~F6Z&cBFAjNthJgkT(lFTIAsR~GwK8D1hO0F!
zo8GpJ(J(^8NKSoo>nII*s##`?O#KTpnrm{9g<l#RtEFxaK2F1U4HGm><Zx-2%r*Qp
zKm8jGvj^U>H1A}eqG7s*85*W?Qaah0rfJyqv;E`^EAL1adu(ACdA5cxG)xO(dJuCo
z%w;x!IRSjh(cqE`pk@H`Ib!UdhHDxYYFMP<kcOW%EY`3@!)6UzG<>CDsfOhmR&Y8_
zSijbAW~j1E!#5g!O}8D0I%pP-IcTobuu8)^4eNQ_sOwt|Yc#CY`0H;}HfJ-TrE|sz
zC&8SRS+a8027dUfVUva{?>RQ|-JX`tDGf4PmPx^zuh`y=x*mR%y;b9*(j9v>?9;GK
z!*<S>hMgLAbEuCwc1bA%<{z<8UHvS3G+Z94kZ0|8JU#D-Zpi*#!w;Mk4P#GRf7I}k
zz<v$+hADh|r`j;(fQExy;lmXED4sDi35PWt(V%GvXgJE{EvIl+!*LD2@WeHo)^I|@
zNv__SS*Li2#@Rb+)i2*FlQ1DqMyPPcZ|rKV`pljY__=V#xV#y^YoM~qAM80VC=G56
zJ`H|eYvo<429E|W_lm4cj#BRi|0xHPBf}A6;>ZLwgfv{_5;9rC+`jIaW4stOM1;TS
zVU2RGdszD|uyh%w=-h4c*b+SMFy;O<OH#uHasEDJ;Zu5d?Y3Of@Fxe2eHiQDiC@vc
z!QnXkrGbO<%`k;G2l!jVbqyr~C>g*F4L3DB(D0A}Q|$j}xXs;0!!53pUe-Pftd*K(
z-sSbR!@j+4W`mNJi%#WV_SUJ~6TL60M_rFJJl613!!xeBfcc4rJ;Rjtzd7zFQd9X{
zLyiCn22dz~oB^Z-kS~Dz0ptoGcL3Y_Sn>prHQqFQtn2%l8PvQ1w5`Gi8C#1r&wvya
z2!O!Sb)~J0q_Ww<0lXYQ(E#3EYb_GMO93qU%f-YnreXmU58&)D<rTwc*yUlV<y4BT
zsn&7<ln<bE0M&Ne%dqh;t!0HPRdcO8W=^~1s1U%b0aOm4VgQu_IQfcW=NJp$He}KC
zdYP{=IDj9Qn8{TFpjPGS3|9!R2T(nL1C#6<eCGO19XaP%Y6b8{0G$Kq5<u+$YOJxe
z3gES)^-Te^Z)r&nz#M=j0BZow09*kaDUe|cz%Ed*U<R{HjsP;msUuofv|a$20`&vP
z7GPupfvf=b)Uq<$(C`}x^ek^z1e%C87Uc&M1B#_HxT$2D1<+ieg(&?u186Dymf^66
zd}p|I0Bty50kjK%H)-z_K%?`Hw*z>G^Af<!+m<``EIImRv8a6j?@3GtQ9ADj@PWY{
z1wQ0Z4_8=}|AvLXlKUutj|2E5fKLPH%K6%px>0;Lf#!8x<n94bdx-W7pl3ZBv%Lb?
zu{2{w0MWhX-T{0Tz~=$<31C7169ecQKtB%qaAkY|{kgh^D?8G&hX*h~c%bMYQ5Fpr
z7$Q1UbXWj624}Engk(pGjuNFgI)E_-j};gfK%F5@7V(H4lYLSElLMF*!0Gv}DFI9k
zaF4aK=u;`B$r$Q%@!7GNauz(1Spm!zzV+-4X6JJA=duaH62v@i{sH&{&;nQxz`_7_
zbLu%e_biJ7SRTNN03JNHEDm5v0AB^LREoY4^XmXsFVBAWPgkxb*^FNnNPW>=D{WmF
zz^VYg3-Enr)3;o)yX<S(C4toetPyb5$hue5vfz=`T{2^R0E7EmnKlGKlg`Ef?(cVP
z3ShGUe+$X9C4jBGSc;@?6WuP#><)pQ0qimyejEQ;fvn55Tzdo9$IDX|+bPi>r~&Nf
z)feDylUjsKKM9N)p89&gfdCE~{?J6~4gfy~a9Erp0UQ-L7Qk^Mre^N?zZiUiSGvK?
zF6H}`GZnyZ0W2<`{s-Y&>I3>S0sL;noaHsUF7>?vrgLJR55O&;2H+9!iuzbRXX>6&
zOoYd690Bf8L6it07(gh1Z~&125&<Lws9VMs4Imy!z1>ZYi9=@64f8?(7Xx@0z@q>z
z1@LD8R|B}lD`la5`!v_Qy!OihjQz`XMf5LjEDh|;esa?BcL3M9`SS{`Z$Iw0-(-WF
zwE*S~SD0=E(Bf0aod9l&!v*=mzZ<~6M$A=P#(m)jqKs$Ee#QPcfILCu4TAiHbEMdx
ziarbAxd5FULFAMGa#|3%g2)}j@tqE4?Ro6fd_m+70zniA;;dr7JKwc$xH7J`z429B
z!60fDaup7OTquY<`BP>QF<%mWS(GtFgD7V3D?t=D+iCI{xcrT9$skGvQ96h+LHw^n
z_8UQz4We8Sm4kRKi1I;H2%=&Tm4Y}uT<KrM)v;B^<>AV!K@eUYq0}Ftq_xV(HA1Np
zM28VdwIE&(qSMj(RfAwKt5gr71`i!XtsodbY=pw<tip<{^&(q4h)ZR&OhKdvVcz7L
zyva3hghH?eVdH^<_%H~25RM@9o3^)u$OxiN5N`(2GKjiC)C;0f5Y8YngP1unJ3ENm
zYt!oo(SSv&Dc1#aRuG?0%x2m;LSaC|Al!Yk3#_rYf>46+J}@=q7zS}>gwjNG+D7NV
znC(;%2b~);vYQ1#Z5~7m0i~OR*|&md6-3)0_|TBn9Q^*N_IWs_Hqs43yC83yna$2z
z9-*-3?*#e72eg;7crS?e1?YDW=<$o~1A*IXO*A_N(K(2LK@19_OAsIN6oTl(em*ll
zUy@26v+*V7u0eDYAa@t&5kyacPYnN4fnK7$ML$a|Im?T7`UcUDbC)oEa6IMomw*95
zoLXx6WP*u0IEW!Zd^0=sh5VrsIU<OW0>gqBF2L$+a8wYZgP6>H_#@|-AjSqUF^DVW
zm7EonaY0NF9xr;PyuujYEj#t-AnPPv1r<^b)07~lN(*Gxox#BjBF>QsVpb5dgE$<-
zks!X{AOAsY4`N3UbA$LYi0^{f$o)Tv`Rr{F%Ys<I{iI{guY*`xG<!%F=fWTs1+h4Y
z1D|ELFK1m6#8)f|VoN^D>`B%sbu5G;bu8OYo0~Xo%ejDOrk!~$C-1y^tG8uE5Y&~T
zt3<yQT`jssbgk$*(e<Jmf~Z>C!it-M{GMm7%{&%Y?<3QxI;jt-J6+4Ml^5Mm(>75;
z?ILMAgV+_sPaMXKwB14M;Y<bbV-S0T*e7A^&#H9G_d)!?tT;PY<y_D}*<U(!|B(5|
z>X$x|`c;nk<^0pqa~=rtJ;u}_4vGHE2DMaa|C^?%nXaQj91Fr9gvLE5h+nwF1o1}@
zD}K*?g4cTxzXfrUYkQ<}N~*KsuN>rG%m>TZXQijwITOV1LG*gXvgDkjbea0R!PL1R
z&hw%$;@v@b3|0jyM|1G|*j^rJZ|Zzkl+DRn0V5{D{Xd9M5MgmRRy^No<<ohrD7UG$
zmY68v;7L;=h-46(Lf9O_g&;0+hY6u_2)y;#CGMpm<PPD_ATDzQxnybchW$zqe+6+h
zh-*O<9+@>@MAqLyTo2+I*E}!nAo#c0zd_s!;-&=rBYI1e@wWx;h~5>Q&;->+Dl^`)
z-k0nH(TAdsL?4Sj3F4{1*e0ptZfSxXA><5UVmoJA2)@Ra5~D3k`)1V`nMEe#2_bI?
zWkM($LcS34hw$EdbIA}uzHfacgyI4PL<@#cNT9GN1BwW|B>J*w(GZFW+%9HgKnZDZ
zOpiQlw$R*cYAJCDr9*h=Yd|O$LirF1=gFL=*eis1KLlH)5bye8JF(wfF@%a`9ZR=5
zN+#{ib2(lMp-Kq+-_Rby^A*;rAyf;czPGb-lxbWQTjzxR^$@CyL$iiJ%@Aq{yb(g}
z5KO{0BPLzIENT(8hR}3@i`DyPrdoD{kP$+i5bB0f-*a9cLcI_&Ll_dm&=Bf}&>)2O
zL--(s(fsCr2u)Z$gp--b4&k?%)`lT85^##TL={n%HV$FlAsd08m^2HaWe9JD&^(m-
zD6@s=o1(k{3mt~Fl8Wz!&|08P2yF#E3t8F;ye-PeccdbLsXYf={0^e|>!&)_F@z5}
zR{PDaWA@QCZOe9McM73%2wg(>D1^Qe`LQU2dxX$cxSMEq!=H6CU(XOe3E@-2`Andf
zXzx(!({NV*+$il60zWpQ(=UYnVh#v_ou@NUvV)As!2+X$mSG_b4`F2pt3ntd=48>4
zA&laf3r`efBVz={ijET<&(&g-mM)mZm`NcxM=FFVAxsTnnv{MK!kiGM3(pXpDLPA(
z!Lvh{T_~L}SDYmwd=<i%oW2m|i?c{{f#^a}eg@5Wro|!9d68WzMax3?T7aeB2yjxC
z3#>5wA8+RSHiQ<uAI?l`_9oM6;WeT(*M_jp;LG>Tu7lYdLijEO0@Fr;TOQMv5VnR8
z3LzZAwh*?5aDt07gdHL53}Jr=KXMG4T6cx8FNE(y*d4+imgcY=Y-qc?)3P@N{&ULx
z@P|<9adQ6)flotYc23Uh!C9%7m185UKZS58gr7q=5aKP<a~%}jQYV{@_|};Yhj1)}
z<00M`7e_;>R|meO`To}y-m{MHUh?U0zl6X8@n7TWZSAK*_%*~E-$4!GG`lz4^l@q1
zSq?}DXF~WrgdQ*DTyIZxtm{bS-2W_pgm5l|^U}huYzvRRYkBIYqn;4FAuOqE4RFWf
zg%HB$uUfPa*7vZm?$B(D=V6YyRZ{(DOfZDTB~wqPi-Zsj;VPGC2(b|2JXvn_ywZQQ
z-mqIwjB@H+BssGaAzW;obNK5yFMVOT$UQ%V%OPBnQ_DLn^*YtbWW5qXzkJr!T|xdU
z1fB)`zq!4H@JblP!?+Q`%@9Uj&rvjte?qv$O*o8vVcbq#GRPf9o-nRA&bS)_ANf&b
zzx`in|6U091s;U(M1ajc6nGTEW5dC$98W`d#vM|eoZ<ieQ_CU1(zGyg8O#>wP)AuD
zjbo|F<q+i$qf)k|!qR*QgDZivQy>g#LD52C6c#8V`jY6&qKx5!;S=<Vg^}S(jc|!D
z0_&}%!zdF*$uQ>Jv6c$Mdf7IrkcE%K<N9F?C%P;T6to_wpQl0?6~j0j$B{THh4E?_
ze?)LDg34jM#<2?HRv1;ns2avsVJr=!S{SeM&|!QMM)fdiu<<Z#a&|StFdOGyD~vaU
zYa5P9Af2`9q-LMVBF>s`Eu;G6vWL+q3}+Y)o=6yV!r0z1U$jL2tT5^tEz}Dm)8P67
z4Mdg9JlO&bjnXGqQVYWs##>>udJz*wV}T~3O+}lDGP1cqi!k04XleKtN~MOhbr|o5
z@j)1E#BVFwPV{ZjcfxpApnVt}1X$}mfsO|(y$+|=Lr25^D2xvc?j+Dzw2SCK`Rnmx
z;jW_HM7xL4L*T{N6hGyvzG0gj#*{F6h0!~V&%*dTjDcYclA=Cg^b_bS`rxpg@%_UX
zAldKgTlk3~oxx!Y31fU16T}}H#xMaE@l!DBaLJAcW2E7a3S+dvV+6*Ej^hk2wy+A*
z#4sj_`Cy|pp_;=-95knfF)fU#i%g5cm@Y6^bcQJXnF6y!XN!IzI)}@6xrqT^N|rD$
zj0G;se5&Cr<WP*u&!TSsGcOKfNf@18wOqbwj$Jo@9mY3dYzkvDFZnB`Wnq+EY+V<|
z@-S9}u`-NRVXO{g4F_SQGHI`4%u46CVf=8wv0$Wf?Voyd)`meCQNT`JAI86j%^O6&
z6Wu6E^ShDCmN2%4p>nwLq;KOI=GDaEI&9k!#?CMfh4FJ3yTaHV#*f@^>N@s>v6ln&
zoqc~8`&hAB{U12XVSLZabEML}y`2s}2I5CZH747U;TR+z9{m)?0S2(*20KdwBNcw4
z^#1S8!(ki=<7618!Z;enqmjz;%lUr^<CySqQJTx@Ixg18I1vVGZK;uwGoJs~Fn(jt
zr@JOzb)F7mf3^BN+?g<5>gD`hd={OR!x7Gfai)glyr^50S!W}=Ck(IbW4<uLVMN04
zhoOa0d6W_e<G~zjkmEc$yJv^&P#D>x6s8YHDbX-uVO$R5N*M7l^e`@laf$12l#&P|
z8ODV$=8sb54Rv1hn6JE**=VbE>nP<<2}q7oo{Ul$`P(SvuQ0B%k+(9hOVKrMN~4v(
zxhA(-%Zyf7x8p4PjWBMC!z!%EqT6BI;WZn<`w`sbJaVIppjrg?!nn_M5<$5L9)#h_
zm;NY>$6@3cWqlY1ADYZ(O+E?ZDOXek`6GB1#&d4+5#)~G+HrFZ(X<G1Mlkufxz2U-
zfa~VAqZJl?Hd?8DA%C7oYES6>yk6c2rjAx>TCIqnKm<i2C>Ft^Ev|wQ6p7%a2nt0|
zIFkCTuuN-LuF49v!iD?{csYXoTU;f!x{g<^uO(csL{Kt<QV|r7phN_&`Oej&75YDq
zR$`--(h-!2z&b{GKpvwEPrBYty2?jTA%X$FnntOniV>_?kzOf+S0iXUMj_7{mfde=
zM&$?yOs@%4iC|_WJF~AxP(6Y-GA(T*;B#S44Y1URpk@TMXhu*!f(8-Pj_{sfuti{x
zq<+wv&JILUzhE^-V2OY~UoBq2v9P>@&e^<<h5XAuf{Y02@?;~ZBa!@fVADxkuhX`|
zr)^`)Ix;!D9UbGlr*02&u)HHHg6s&IMbJEgh7zwt&{&|6s562VM@=r_KsiSffu<bK
z)2Uz4QX8&FXX7m*__VC!%?Mg@^eQ+umQQu&tq31KXKNL~l}_2WD>(R5+}06%Skci&
z8tGZy(Jq3wBdP!0S{}^xP6Y2p@Z+}h_H-gxT_k<u8uOmNYPBp_o8|`*bc|pUR{{t8
zmgB<+x<v3%1f3$7ILO*rl+f;-?2jYp8o`hVhDPvZ31_zmdPUGXg6<LYh@fW#pG4rR
znRVoE=M}57`xvEi75k?w75FTI&)GMNbD%i<sa>B4`bO}()!8qC{sLtB)B%!ZFw-EZ
zHCVJ^o`%DuXk-MVA{ZV?{bX;1bf(jHRtArbU`zz#IiV4Z<tcn;Wn!)I7Uwt#Cf6+N
zxLY%e{h!DoE$f^-!8#>^uRB`4ieM>Mdj!)Wm>$852<AtyAc8r6+Ga-Z1%Yc!vUFw(
z@TtN4rO#a9d6Cqwe!di)I!0MgI`vH9g;GR+aRkgR;@EC-5|&8V>M=^ET$Zodu?Y6^
z1S41$!SV<;N3bP=6%nkAU~L5JICLc(hsG$YBKVe<^8(lE2sB;=T+a^s&GYu_V-#i?
zvp#~261+i_&UXT9Ja+OXVQq$MYXqUuj_ncbh+vyEm4B?lW_L!gD}vEul|2#cj-cXL
zrNdZ->Kv==8|hd$RyjVy^?d|CMDTM2hq*=Y8kaT?aCJrSlT?}Ev9kq6ZXK(v&CWO|
z0f$7{hx^`CPmV<JO9Uq(ILgbDQ?|^0oLiaAetfJ_Z-$H6lM$SX;I|0QMDS|_;jzlC
z?2OaW2$_+K$2jhcRetA&Fitre!L8i(yyFx)O~xtbBXD!vqF5J&%8f2=x)H(62s{yZ
zxjs4a5nL8u6TQHFY@LZ=0m%kAI0E5F>Py-Y(Wof1u?XVAy5S@u;8$Cdk<@oS8E{cr
zyCnLjD4)2>`xIS~Hvba6N)`A!g6jgj7})_P!aqD6Zb4C4qqrTxod^&`foN(&zAM{u
z&M5vBpmQ&R`+NzA;GsBA4gXODkA<Izjwqk{L-CnW`aFUh(jd(Zw{xT!oJ%0LXr3tY
z8h*Yg@(Ulio%+|HU=)R-C>KTfC<=>TT(pSjOQH;WIf|kN7ZZ3zw1G5ILb#-8sVGVd
zlo2f}>ef<yW~vZHRdL7_qo^eOs^L_Q;x&V-2poQ%>SVPjUXP-B6g9-GZN$_Rs3rPF
z6nOc+-_n}INsq!TP^dxb=(Z^AQ4EY?P!x_RGNO1Vig%-^6Gh!9-jv9CqRuE>QDh3&
z7iIMZQDjAt9YsTN8i{^cIo0wDB`8reHsU`Rm-^JKNfb>Dr<p+WC|U@dzmU4CTT9`$
zL|cir7HuQiHi~uvZ%1*n^?zrVJ>K3viua=EE=3(g*;MB!-Z%IIfsUddM$yUeb570E
z#o&(wK8~WR;dB#t?#<c5aC%1ZiSVaU^b+VDMSr98Gl9>e=p)eA@cTv4XjSUJzX9Ty
zYp4DT8yv-uC>BStB#NO?42xoN6jP!YE-_<`x+9_(DLhJawCEVoUkm)VipEKHyy%1|
zCJIav<$-3M%RM#9FW6vV6yGn-n9ilU+B7qYx#N^U<CGa(0OOQy2Q9Orm>tCzoYNbY
zk)>^o7Gx0SFie~;Md{3oV!rSK!)dWRW0ADXT5P|{bMseGe8a;Xu`P{)S*EX}@QpBi
z6EH1{VtEuRqF5QlDv4n!BXh56L}mI`%+;c6UIg5?u8(3v6o1EXJ%;b1*cipHF`SNJ
zQxuz{I8e&6IfgA!Y>nc06u(5Vje~j3d64XOZjWL|6g$QFfnyTIt|)d#(fpcoPZaya
z-y6lIHV#&)dCmE~IIPGl)BY%a6z7HilQ6>$2=w~Rc_@mXqc|J|O{OCP3m@epAC2Oe
z;j_ULQJjn-7DYUYQ#=KZNfiDlPDk-|LEDC?-7WB26qjE~KNH38QJfY2BZ~6^=R{e$
zCS+Q7GMk{X!GCQY!}oHfC2aJyC<0=3zm@Nc`?jF)>8&Ofg@nVR5z(k9E9y}sxc+14
z7DF<M3)~7~s29V<C@yj69+;}d@F#<#cpgQL7_LO|R}>GWh^1F~RYviTWUq0)1g;yU
zH=_99goR;Dx46%Xf7>X%6UAMFZ*Q>N6TWXa52Co<>c6^=#C#mZ6M?5j%rkD<Q|)X#
zXAEgE6p7)bSgOytV#pr@V#qDoJfigT3gnA{hhw&Y;rCc?DJWdXa0<up{X_?2m|l*d
zcnl?CC@Q7JL|-u?`y4fw6fPS>xfn_bmo`ev2$(Fk@-b8peoeHZ=&PcYVz@OYb)d?U
zCFHthsbX-|7@XV9FM9HN4AsT25kt)wYQ^wI47M2TG1L~{ENU|9rpGY%rPP^P496M+
zJ4}bCOm&E#VU*U1VQ03Ler62y#q1D61A*o-w1^=~I6H=hF*FixEXpcQ0apx);qauI
z2sbsHW-)lS|2L;^#?Z#_TgLE~a4W-U9Rq{eY+KQGqHl}76T`a#?PGXP;D9TWkxVb(
z{TM!op<@gmO6kX<EbS!FS+tAjM;yipsq^Jhp>~g<2S+T1FJq|uo}*_BV`Qm(62qr4
z^pcptqP=7IOyKhv`U~_C?JL?(lnr((ooakQ3<C{kPz=k9*=P=lVW^nHVi;+Z4v%4k
z!JLax29Flt)ihRMTnyu5m>@hghG_y5W0)i`S(JyE62sEx|Bd$a7-ow<Lv*GQGb;uc
z-};u(`$Eh)qFj^nVwleXS#Q}G!-5zVavzqWMKLTESR=ZGM~UI<7`~G1HooXfYv07M
zQk-R?%SBnVB8I`Qrmk70RWW=k{%WIi*a^#8gV)8dUU-Aya7<W>TgoOmHD1M&irKcr
zur-ElF>H_F#~6N!VMh!%n`G~fVGq|c_k`@sT^z2q*-R(KDSKns7sI+i*8RN3WB7q>
z#_-yB#oi|S(l{m0c%^Mcm*<I#4qr*L#w!P6I2gmx7>*HIWgm*+FjvTUrQ>+z=NN`a
zMP`r0uz9@l%XsBDU$dULPR97)A?24CPQ+05O}jo`VPdaNv5~sYG7}W)Z!wswTOu(;
zV>lDT?=hT>;g1;nF?@c*aW01QG5BJ*H{9-yL5;yH{7;sZ&fHuLJ(49b(P5TJiy;t0
zFouvc5@u^-^0T#6gJbeD5n?gKV|aWx`$`OY42c+Tf@itJ{huRq-|@dgmWwf5h+$D-
zOYyAKjSlEM?rvespAval^x=wZw(wUBS9z@WvRnObxfVm0wwci*)*BrE7@Ee>ERKJ;
zxy9g!BO{)AU-5PfIpW9}$DJ7N#_%ssA%+KKoKHpXi$0E_&IILw@WU7$@p_-2q?|HN
zrYA8}`8dVTc<D`0o{JWpY9Xh^kt>eZ<ES1-?l|(qQIT)6$B{RVd~uYDqjVhk<NOIW
zUW()8I4*W{6%Z{F$Gc1O7ZffeT39sqhb|@-QH#b=JdP4^6q6#>eI<_R6BGhVOU9v1
zP*zoRuAQJ9n4pxAn6hz{V^2PGvFNr$mN)8Fh@;5FRNYtOs2s;@aa55$u!R?gu4;6k
znzYPF`fRF395v&p6~`L_{0S-(e^^1S9fu_jb3FCCRFjmZ$H5{xF9NJ_*y6BD3>$e-
zmry5;x^dK)sML?+*YoCjah&gNA9u>sY==FQleojasg}J#99eN>$I&p3p_QGD<7gDe
zw#rVIWSyMfAy#HL{pL`FPgiy_OTUSPIc~d}$I&8=nQ_dD<IOl)#xXgLDRJz3Xn8A+
z-f?^uN2@qm$I*tT{K(Zkj>{9RPn+A?#?da0x8rz69GaauR&lr{D(&NVPs|RY9piZ4
zi1|R^>)YlJ1v(jir-=$%=pxyV;`msgt5Mob;Ma`~_Nqr5Jtg~zQTnMsFVSx@t)<6U
zKj-PkF)WTgV)hm7C(5Jrk7I!FK*Jdn$6$kp#Bs8n>%}<^=XAs|G7g?E9UgsDYN1*t
zN$}`6#t4ix>W+(Jyzm6WnHUF8mUUT+FqI?umvh^0bNh$3X>pV<l#%yO)ATrIh(BVY
z!qVAsd=XFmC%%Q(W*l?lSQf`}YE#RXam<TjzHpCGSqtJ=DExICi{e-?QTa-;i-nhn
z(%d}2vNR4V)2@liHxk3vm|YRa$~ZQ}@m(CN*wx|rzl~#c9J32&MAEX)OjNwZ9ZYND
zSQ`gnUFy72=6cC8U}GG|`CabvS)1Zu-9P%-H**!0&!U-YlCqV{EROAQ?1<z0IDUv@
zXB@kD3Nu`LMR&)sho|YbAGT%CG_`S5n3Q^dW*=AJNC&h3i(`KrKgDq%4*GQLlawFh
zAhbAdKN!a$F5pQ@=Sd2y&oX8FEX|Tx{b(G=*u4aPN#J-Kzr-;?$3z_`;;C;7N8^Zb
zuH!hxUQIRCTxR+;j?;1c7RMQ$NcAjV9KXkLHVzLLKp*=bah!|89Y>Czvd?~QKhH7W
z=3F*OnY7Y0X_7)y<yASz&a5|%#MjyR%DeVYQvAGX;t0eMj6<EI{L#_Em{1%Hi%5Jp
zj{28fyf3$-hl2s}ICNe<Iy&e`#F31ns*Y+pF2wPqb@t^ru5iaQ+b@b<68$rdYB%c9
z{EKV#ojiZXaXpT!ykMJUGhK`0+9YLSv+Nsj+>GN<9FMvG$I-Z|ExlRxtvFtJ$3?y^
z4&jc#UD1EzxF>L5^noa29<t|mYy_q!+|qUA)$!CQeJ1dn1Er^q!jw}-ns6?|$t}=t
zl_j5!{5neMD6IoxzARe6h%6{jNVKqyB8LBxjz=Y|Y`m!96w`TE@c)ijTt^9mOX_G;
z!1AIeWpupC!wq(pmC|ye<&DS+Iw~4mNyi$bI?v$BI$o1nRYd7DUuOE_s_Atd4cWMk
z>N;xZsHvlt4x0|Ujsq2)Z|E?wwaH5U$x3Y<tt&dKPFB)&m~{{=qK=AAmRfZXXgUPy
z>Zqq9Lq{E{PEFphGayq+>+5JBKAkLs8NigSBd3y&;MC!I*V<f13xcr1Dmt17Hxp$*
zQypC<D}<4vZ|Z2Nqpgm1I^NRJN=F+VyC1ulTC@McduKY@OtP+Qn)2V)@eW%!X>G6L
zU7pty7gM1pF7IR4qRGnb$F7!7T)fZ*`c3ca_&`TT9UtoGspAtJopf~8QLwqIn~uP?
z^e#F^wa)xV$Du3~o#y&jM^|xnOjei}z{u_r--C76q@T6fKh@Do$8a4ZboAEonT}#L
z9fNgzuJhqX=>v5P(s9^TzmI5N(SADm3k(oFGg)B(Q@xextV<Z8W2m&l7KU+xR;M%V
z@z)(G@ndw1Wv_IM<^-)wKeg7yDvTT_rQ;=@Sr*Y}#Ys9Qb9@r`D1j+Drs{YzftCqO
z(=lDgO&$N}n4u%jb9<5(xQ>}RX6cyC{&P%p1a-{OF;~Y=TuwT^)G<%TMje}U%-69%
z$0{A)>R6~_k&dN0zUGwGv@aI@O2-lbIzuz<)Jm?jZ*(lvu|mg69m}P(#%E^wypJm%
zgw&vM8pHP2wDZ==tGW1fY>=3>IvBG~$9f&*U1@pZCdShtGyd?K*6$>Y&So83bnMl!
zPsdgr+jQ*Iu}ey~>)0W{T5O*!EU#(L(Ja-%Zt>GjoA&7V*_KZDUdInQ_Urgj$1yny
z!~Q2nC%iZ=p=9f{gIq8=PU-lSbvX;t)Gs=Y=s2q5xMYuszKDmMBikIQq@6JQlRTD;
z&uJaM={T>$t>cW8p4IUOd+tj6U5?ICVmsGeY3HQ0zw}Mj;nCsM;p2438S(6@7qu|b
zuS1haI!g+r29^-g5!MmY5$A-?u^r!Qj_8Q$xY91|LW|s4N?N!@Zr0VMqVIgForI3T
z{8D*M`$Zj>bo`~G@O{Te_Z@%oLcZ^)^}unN)pgM6($zV%wB?_Bj;lJZ>G)g6bsaY(
zEb9x)!Ot_O1$U%?6>sUdt>eCq2RiQPuvD|()$uRQBepLtn<o5i<2P5Ib+g~oLH%`1
z{)gOhx#K1H)>i5oe9Rp?fdax$xc~DkDx_{^`%K4k9XS%nDMfii>8A<g63v~!=V_@%
znDQo&&xpyN!09DvGz%tBD1p}#sGdOK1d1fE+~;Wgf%7GaESEs}1YQ;{nm{puS42xC
zP+WkGlt`eYa7VNK#j#3DwoC$L1+MH!b-02NUpaw_2~?8otD^U(<YxfCoJoBxfhuBF
z6|E+ExnwGU=|pXNjRb0nSu25z1nMO4hGc7tnncqRFehM1;7{0X;#m2|i9gl79eW-2
z1RMzvhA*<0T$D2FN=%k$J<&{27S&Infx%7JrDYr3;ZoYtIVNWU)FuhI5>OIooB*F0
zO2@OyN|^GSsc8c7$x5>XnkUdgf)AXuFd+Rk8}+ROS|!lmQomgS2l7~3^H{pAt#BLB
zeFGguHduHUxC&oqyqy5`odn($XfOJnXa~{vML!VjDEgsjC(+KLY~j?>jE@uOn!w2W
zrnL!lOQ3rK0}~jOK#v42^fveA#7$9pvbPEICkcF-K(9pVyC_qW=BC}PG#^h^KI76#
zpicsQ+5ZGCt*{22HflfNI#U#82ME6~2PZHjfiDu6lfcjfh9xjAf$<3pPhdm>qZ1gD
zK(&|cBNG^v;2(0<SFhMBU(a{nnbCKSrSPD%u?f(*{MgK*9_Q>65}264^aN%kFe!n_
z2~6dN&y`T#!kf$SulgyR{V%f%p0h7pVtr8G892uqEL&zKFe`!C3I3uy=dRjTw*1Fr
zJ4@N}ceAqRCh%nfU!~3(^Aeb!z`_I;C9pvHQ+8q+5B>fXd%sGy#d09lU6M%s2eEjv
zokcHI&GU5v-z2ayfmI3I|2y9@UQG$CU^`2!nK{yxDRx$8=h?!y39L?FO#)X6+Zxoi
z(qYfp4)2)9KCeq)eF7U2_>Qf;=J+9jjR|bxicMf=0-Jg94z_Pi;O!~O7OuD9cBZF;
zQ@SmI?VQRf%9Nv4#_UR9cLMtoSj%@&K1!pxCxN{j^R^0uuXeP|o}zp&r5mRxzf4hh
ztpCXo_ly20`V-foz(LVNqCY2aIDsPx98Dl073aNgrE`osiDF|r13a!137kxz^#!!K
zfKv(lnt&|{dlIJ;_$`6ETu}*}N#J)5Zvw#t&L;3j0xFkxev8FxI+wtCPNLVuwC+ag
zE>dnTr^%+&?W82e%XRyY*_XhxDT-elO|(8Nw>oBr61@L|`7%d1fp7wm1ngBEQT8^0
zWCAf>l?jy2%+fi(Z8BO^b&$(URW2lOF@bAU99^a=Q>r>HaRcE+JykJHRTxvKTFU<`
zfvXAJOyD0zCa`sj`R@d-3$&`3|AxSdJNbCM<lkXt>8%8A^AD1praN2=ck&S!MrF~`
zJNfQ$sU(n=M6M(raQ#eiglCwZCQ`T0dYHf?fybgxL?1oO;8(AoCGec*HN%u6nbMp|
zEVL^-%PVB(ENAW{@+46qiHb?&O(I_s4cC}nP9lF2ybD#qBnl-{_Xnf7sD-mY5<|;o
zkP9c#wz#c`1oM_nb6>5$ca!O*B&hX#mZC`%OM<tjdqo1uixw9xkwi%WHc~2y(!ym#
z%Nl+;p5PWc1DM|HXRVaPt4UN(qDB%=KT#?tQ6-70NxYWCk*$tzbJ?lYlIXI-@w({H
zsmhv{GEF-i<~kWQlc>deX(dzlif4KwiP}k+k|;4agYitIwxx9QddIQ#Y33wY(UL^t
z^lYnW6R*>eL<XBp;-e($BvChs50ZGNKsr;sBw8oYCW*`>>WkSR3B@SQ637;9m_#E1
zr>IMmE!-@T-dMOv5>1n6Cfvd(Z7%TWuUd?JGl`axeak3qmBfppw&J`m+D`OsBj%kX
z-W6_dIPWFVLAYVMjm^%Os!*9aius{vrzAQX@gvHof1E_uBs@uYljxR2_as(xppxj3
zM9(B9Br!3GPm=gF$v4U{GMU=tdL_{(iN3<UllUx&&y(m~I`!FZwK6H~mqh<01|>0A
zVg_)61e%RWeRBPF%hUtchKMsXiD3dqR_82JI?u`ZX~Q{IrBaPt8JBt#(WoTGO2BB*
zF{1Q$m&`NH;PIR$X>(E%larX2#QY?tBr!FKSxL;6uxX+*M5l``mM?_Q6y_1X5Max5
z1^&;}cR)9Bd|zXO!Iu(x2{rUkWUah1V89@Y9tfc&gc2b15+L**dhfmW-fQTg*Fb22
z00|J#O4_2fT0!XWy?y-lJO6X$+;iv7o7p#S-i&2iyF1H+MeHppb391q+0Fmd(SyZI
z7I?7G>b3J~#w8vs^<aeuD?M1o`f}Pb)e;ABOlTY;t2|ik!5R<Ndhq}CPc~HDo;8VZ
zg9jTuIP1YV4>s{QJ3ZLt!Di-LJlM))n+MxH*g-4B;iB=$2f|LDC+zlMj|Ydz%!9qu
zS9Kg9PdwP?!F~@`?T91Av@Dcxh*rN)!mpM{oSMksC~a^Le)Hgz2gf})K~o-;c#_VR
z5^)q3DpW01FyRwFO<R>+qA^J)8)`c5!37Vld+>(`7rFI{Wpjx(xHIlDxirgmkyqiW
z2fur8jbhH#<s<+14TtS(6K`;@n;zU^a@&JD);Os=@%sf5?s@Q+2jwJ`mvG;M2Ohle
z;6D!@dhoXgiU%s4jUGJmz-#q=?7_btJoVs-rBLoYV=ggzJb0EXZaMw;lU^*vUJ>zm
z;OAD^>Q#4+8A;89kOyHF10DpKP)c{<ju8){9vB|ztdqmkg-VR8&n<D+Q}Zh>FX{02
z;4=w1CA_9Xz=Jpm@e<y8@XmveY)oeFnS5Y$RF4}o+cxy8Or<8qWspFGl#CKGNq~f`
z5)ve2mXJk4qJ*v-G%_G#6ij%&$@HJ9)GM2W>=No0OrYu~F^2?wtdj=MB_X$jq7sTp
z$Ri=IghCQNmyl0FehCF66qL-9;nSEzXf!IH2#r=)LJ>CjzfHwiDJh|pgc1_I;41YZ
z4?j6jT0$8KWmzZXllW=aFC|ovAWCpbsK^G%6s}jcN)jq_)h5BtgszzM$)Hezz{DY8
zP@#k~hLA<B>0M^qyv32idQAyw5~@h3%GGL&)frPIG|6Pfqy|@sq&nkjNvJKMfrN%E
zx+J(I)M1`3;mUzTa<#66dJ^ih_!-|vx!78Lnoc8Yw8j#?VqV$W%S|NoXUlISG@}T6
zQP7L#5?V-@C}EO>mJ(V?7$TwYQsG+(-%02wp_7EMp_;8Fd@rF5H)Z(XYAd0gWd674
z2ML|G3GF2exMr`iR9H93J@4z34ib(}a<6MF6uD;qkqjhslh9p47YTPKxg(R@U74(^
zoSx&Yiv}5<Be@5SAYq_{o_vX3jO0ddCVd!xV(iP<kFh`F&k|0RNG0RTckF{C45nNv
zo|<*Cdq78bxyk0>LnRE8FkHe238N&8rl?MKkEDrzaM3@%$n6gUoMR;XB4IoaIF^=d
zsW7uZ^>GvvHmG*Ze({=p0=EV_xG5l$B}|d<Crw1cR0-20?3A!e!gL8UB&?LMO2SMD
zvm`8(ut>sRd4<^$=1Q0+VUC2;M+H)fjuz%ic--ExfKsjmy~s%@)Ihi{+0Ti|{ny(U
zOIRvlnS>>@aO>^68VM`@6P7byK|8UZKq3u7L(Lm4td_8b{QuUmO~P6U>m+QFuvx--
z34do2Hb~e=du_Bi0^z1=$s|%o8gq+;t>k$llanVjEZNXF+a>Ja0g018yCv+Aa7Mye
z340~%qtudcRKk7<2P7Qk2_BSiNW!l?yH>wAXdJo_`Iff99K8LkESrzmj!|w%_>GoK
z!U-N<$eVal0vS{5C->-br+I>(LPU5@!g<Pn30Eah>jeoHC0t@o0ilj$bD3g0T4?G{
zrRwhzu1UBd;iiP^l)%}|Dg42f6k&?n^M7o&B;1y8hkc-!lfyK9@{{IE<J_Ye(e{_{
zhR%Np4<yJE6bTP0p0s2Vo^a3}-$=Z09{=#AAJOLh&z!=)5}rzsBzSr7dxx_;li=Yw
zehMae=;J0o<@{C~`9o_#O{A+5Gzn1&hJ=8GpoFl5h=dURrsGbf!D)erP#5x?yw&O0
zY+$AhDKQDpCA?xwQeH^-Pr^&~$_yzlH+3N=sY-KvE8!iT;a((q@m|6Q32|P;d+||1
z1}{2Hc9YLEEOjBrXk{~c&1xnu61-;mk>}Ku*^BUv#826H<e&gAvU-uri`-sh^CCN2
z=Jc9Ln8RzX)Mw0TMJV7@rI^#0<We3l@_BLRa2AR~Uaz^7r04gVA*Dj=Rmh9ay;$zW
z3NH$KQN)YxUi9#ys29b&sOd$T7sb6O;iZ>c!|ufwUV4Z(%6d`Gi&9>c_M(gzU%Asg
zj_TdNNh?<`tz@0_nU8IPJH5OYKi5sK;6+N4v@g9FH`$$bG2K@uy(0Cxm|lsLbLmtn
zdtqa~VX~X5f)@@ioYc#UWYPyXsEA%na;IOYn@U$XHQ8Ooi>h8!_o9Xu?nCJVFQ&gc
zpI*(2R4>|m6sYXWWBRkDWg7LpbUwWn&6mz(FIsrv@*<ra_M$QM^`ed!^=X*~x!$<N
zx?ar8DAw~rO%luBO0Q)TXAVed;6+0(JPBeWFLK^YUtUMtU0J+2$koJ)uW5}YyI-Y?
z)VJ9nS5q&(@uFL0u|*xR87;?Tce-87rid-QXyrv0FV1guee1<{UbOe(2QONC@x2#q
zy=dpfXErf&f;ns(=5)D7mBsieZhB@8kq%z`CyO1u=tLe)NTJL9NIzw!xT$pZV(5ev
zBGi{~;~-a8@_`m>ikk{O6{M#Zy}TId#V9X&d(nrIjn>7B>7!GBqE#N2+K+i(a&L4h
ziN_0NA{^kwKnhoZ<Y8V6@?x+Tf4#8{rC2Su4e?^xD0*#>n|R=~&}+Nx+%wy7FGf(R
z*qyD{+aJ_+UDzp%_F{1@*K{vtcrnI{U%ck0j<K|4-Lj0M2pmeMDwXl9Pw--*7h6i0
zpKvCzGTDnMOr|oDK8?w0hhyP)=`+0`oWnTFi`h&{l&roc#Wk1tJTK-mS>VMICJPxC
zF)n62xY`_w%2JvUD^shwsM=sd+Db2``Y_FhRi7^E#TqZxda;iD_o1c_>%G`OOYFrz
zUewznZ1iHM7rU5mqW#E(^etX&WxkDZyQS~&;^4P#GT80K9xpDjzSoO=UYudR--`oY
zoM3*C@d)D~#$Oq!`(ZDh6mbwa%E~cIKTfMzswU|tS^16el+}8g3B76VER%DL=NT_B
zQpby4G(8{^x$MOiFRrqFkMVaet}(gp#ZAlp4=-*|!t@cS3tjq_7q{uy@#0S}CeKZ|
z%VtEVwfz+LgI1=`f3bL<@qsnYLoZIwaZ&3dFCNno>H~au;>EvSM7=QB>?vcwi)XYk
znM+>COuURfMjFIVM`b<JC508$(lswuerLu%$V!MY%owq3blNX@s*_EOm3MSXc=6ne
z7ql5!dBgaU@f9N(zxLt{N1pgw7HOOhR%=EdK3Y734{<&-dEy!AO|QhMWa4T9V`d++
zFezO)otm=xkj;mRK2-7{yAL^hDB?p=A3kH7JU-<0At&=(jMODJlTVk(=R-kD&+kJ4
zi&JYM=AT<iVIM|KG2=s}7>lJCi!+vB{DQHh55vlsW~F^7!%A7kFMTM-q&y=Tj4S7^
zVDV4>RQ92YrPzE(^1;qk!3U9v!)i??4?8$%5T~W2`0#lnGbU83`cTc%Q+=pzak5GC
zp_UJ|eQ^2kCU^Cpz7c2~<Fq5)2e%KyeYj1Bqz`p{_`!z`pE~-`#D}kasL#~~)@Tix
zH1gpq9~v{Kap>wxIZ#b~Xz4>MAHLzHW{k}l$)<%5|8Q0l|CYrzK77ZdwPo|Y55MwI
zZCPn&>FwD`>e$hTPAm@e;YS}jGw<s|7bZOzyE1lTq%Pf=Ovzilrw_fD_x9l@CVi|X
zGNbaT+RumntpChN`T!=MoFC-FV6F~f9BSDN^C2-)G8vEXVI*Y^>*E<mGmc^Wg>ft+
z8INO9rmir7$wbCUjFTD3W{MBNji!6keVF0HY@hjmvDLb5rVoU(e3(*DAVMWD#XZM|
zxjuaOOq}Nfz58ji5A(UYz=wrCEMmUQhviHbGcNIADU<n0$<%QLb0TY*tYln8*J859
zYE3w2US%Eq6kufo<3_7>6XjJ;2N^udBWxj;j-_oSf4FtK4?BF=$$XDxzl+IkT7B+C
z9rv=bkCDWKJ{%&qUt`5<{OZGDA8JHVGm0ZV93>kSA5|Rl;kXZ5Wo(mi!iSSSy!PXb
zAHVr<%7<%yT=(O&4`+PH?MEIz&iZhUc7zXaeK_yK1s`tsaMOp2K3wu)e{10nA1?dQ
zH*3=Gj6|;Z@NAyrDjhrd9Yn7Apr<8Yr{L5P5~sQer`d&mftt4{U48KQAo*~|hb>3#
zRQ~bdPmAAWa*y#ZAMP`G!1$1n?Em)RdC>$Sk1XXelP8S-GCpN|MzK{ZlBL%NpARp6
zc*VNkhX@mykqi_jst=l_1egRFLyTd@yb0!jI`gOx1`|?Z<dwx=F!|5&^L9D0#Z%!m
zi<2H!AmevFy!RpA4|<~b-Y3EbA2Rsq%e?}Xk3QtNp5+sdqvc?p(T_}i%xjRG;72w;
zvip(Qk1VXjUv`q7=m-60G^-yAqRCXX?@S}i;m2ow<nm+8TrnpbcY7heZZ3u{B%9=K
z8`<RbBcC5OKa%{&??(YY3j0ySk4BA!f`0hV+FE>;RLGA#y96qq`|;mRlN9x%_6%Eb
zKT0qu#@J|bmM{D$$-I&urTi%EM+HABvQoy6a!krH((?>y1S;kI_>vXk2O0>34{tc=
zDLO<d`{@;IrcLhcqTLU{k7KnRyZvzZk?co5Kl;-@gZ*&&(U2VWBgJn%EvLR84g9F$
zM^!(nu~OSlfAqGcGOx}^W;Oh%$vn+cYLT}Q^Eogswx=%Xez+}Ohe=&O>RAds{5;o6
z8$F|dx(uBqe&t7FKe}0?jaV;|-o%fuS!wFWH-0o@-p-Hqel+)^1y@`8@ja7PetgU1
zJI2<2_=4u(6+=$KHY^fp>j(WehX|D)Sp3nC4oo^)Hl6%fJ;t=@%t{wa@9M{ntfph#
zS?R&p(`xO-q&H(9KYp_GzJ3(jX!iQqj{$znrCjo3Ah%AmYzFx;*pDH845j$^F`o6|
zR_kacBmDG6FmsJYSvrk8#^S#)8SBS5OQD-L$#?=~$nZoWR3`Z`*^eoHOtoyL`!S9A
zlPOuqU<UJ<jI$VLGg8wW+A=TA0q4^;@ne%8oBdemN1(Py|B+mol15p#$dAQ-Eb(Kh
zAItn$Z}nYH@wE5~+O`&7<;V0bW@M<WVR0?vIzP%!HJ@Cx!H<os&|`%Xs+)7C3lVPd
zqw;CfnXP_o^J6=$i#6shKX!7VR(du*Ax&)$oe#7_TMGO9I7vshAN&0{z{){C4l_B#
z_$%YTN2-(Y5#~o}<M?shkKU0ACs-jut)vj1qSb6IT=3&bMe#K4#HsExjAt3oF_L(m
z33dFsQ_@90F8R^!7u#h&t}wYu&NCsg?Nm1vB7gXC!w<txzq=*h^y8KvPyL`*e&41k
zHy7?Q-eLTck)FUqI+c5V{KX3K`%E7A@z7HK_TwLmKl0<T#h)<w*AIGM33WU^+V;#3
zj~|jBUfN2u-SRjhe$YG7{C+5YsD8*?t+&sfcHc&=8YKfO*U|;5j!6}QeuVr8Q}jmL
zs7jnr=b@s0XnV|FQ|KSTbV3fTIqHD@xgRh5AVTFoKVJIr%8v|1T%QyoZ~b^j`7EP?
zjQ4(gpz~Hn5g8xJOvYz2a>}6F`Qv0{l99kXo-w100!`DXDYJ|$GIGd}x;PSLKt?th
zgQmK(%AmiitQwn6ykx61;@MfJ>b$A$@ERA{=aP|IMt&Mf#-6F}%Utrv$SdRDsqTD?
zzcosw?ysi03zFqD_vbPS$>tp;@daJ<ZCLv>bEu*+ipeN0qXawfa6@|IY3?lV)4z~W
zQpV(I?y@rK+Fhk&cni2n%eYWCnW`nbrIeA;bDDczTj%;|?s789%OFCfCjI3{MkN_b
zWh|3XS%yu<6d6-xB+0PL=qIB;O;D!i5uu5UuVp055M}xfFlxwf$_V#OuPUROjJ8fO
zMMf2JZ>88_h1e`n3?!wb%9vnJp<D7NK5(9;%gLyplu}DZZ5e4Y{clmECPEioQ4*=C
zE*qrFa5EvL4wJu~V!claV*|#9jExw-VkG;<<Z4n1k)|@fk<nR37umcovYCuFGVc8B
ztar`UTt*8SM5wfs(Te%Emhv5w){NgX(*2KZnY3eU&q#fLVA6rHBV#8SKQf^%WYCp)
zH^zo9l1b?<<I6ol4_2t!Q${c5y&3yh`cE?YTD-z+XYh5#pJj}YF;d0=8T*>24wUg%
zi_{G*QwPZyEQ1J@Au@(CAI3PG@kURxiEhImC1bp7-oHPZaSS6>e~~fP;^Sy9XcbAM
zGJ(a3GA1#Z%t$Z4qoy349n)mYqrD&s$~5<MT1pu+Wz3TCZhg`m8F!1PzCM{eTgDuh
zbID0N@wqY{rKIJokT##3jMx{*Sp0)XWg(MAgqE^|$-<kq<uX>t*dm*IKmT^yN*QZp
ztd+5fHpq6{YQ`1SO}>uuS;oan$@GYl4Kg;$$XwL9S;i(A^b`@|vCGLdi#we~oh2)#
zQ8j<hv=(E9?J{<d=L%*j*ePQd?MDUq6zrx=D&ub%|H#-Y<J@@LDH*3J>@xPtI3SyU
zG&>^WmD_Pp#vvKn@GQU5?53yCtJUdE+=pq~9yDLTO=d@B9FuXJmhzV41m(s7`)@K%
za+M57q?dH}f1i9t##vfW8TaXOGS16*`r3Jy_AgCJ#vd|n$hbsXuTkn18CPYr&y#*x
z#{7L^!gTlVGSbgGuTx@la9m?f)#0v8#jB-Mn(n?S<Ccs+Wy~&Lb7evCHf;eJ&09I=
z<a2*nF{OSF*VJqRjq}xX_dPm8>LmVAD7|p~^ar#7r-;3#yBj}s&U;~dC?nqxlRT2~
zSVlyKF5?N!{ghpk5uoFX9G3A+hDSy;E=iF=^O9uqh3|eki?~XPkI8Rosr0gSSw@EZ
z0vV{>W%_h?_8T_(`c{yR6bk<9<dBTS-vv_U?{w@hoSvyzdQ^rX<1OWwjF^n)v;-8B
zU`=xJ1;r<;_)?}n$<kNBoo(x-5<agc40>UEE#r-h&C}i0`&4b+B$ej%o{Xov6BTnE
zKk#aPWX!-y9Ai8q8DwOVNkIaW%$A--LAE;P7v!KID{%$c6^x2Y%B7gI&Y@s+%$}3^
zX9|XNN+I#-bocalH`(M?kcW-W<#AFqzk&h^zEaRwK|uwD6o?9(3h0IPpDWn7)sdv2
zu!15AiYh3kV9)LJFBKG5P(nc&1!WZsM(P&|N--f`Qo$g<jR=*}EYj8QpK_H`@OYI_
zUV(f?oYuyC<vn2q1r-%kBA4<z-@i__F{!Me|H2efsC=GZuq*HuOcxj(3Wg;)YS&Cj
z=4!V>V#d44DGF+EWU43#7Oh!TF_)v70t|MhDyUAuIhVXHS90zFDXnX|YbuETmz<`c
zmV(-Zvuth!)JnvqAe|NB!9mUygPnDF*t!bpS&^^Lqyb|?1&x^0=jY!xQSdd*mjbS!
zse*45v{&$hf@TWNpRqSr(1OY1+xB8F?JX62Pw{+dZ>8W{1>f<+X}+x$P-H&M{lIe<
z8MIN*mMz;cQreT)K|x0aw5R$hD7`qX6Jr+zKQhUYFSWCRI}Kg83b?x}=te<)<;>GV
z?5@x|ZUiblnDkW8i%D<BK33~b3i>inc$H4Z{T2MIpnRz207{GwjzJ0rD)4V~o+ws*
z**9sl@vj$6A4=<@ph`#QbPmXH1=A=3Wm3X-?IUOj`cxgs`X~jXnT%olMZs7F<Cs%2
zPhv7&!30a0s9<&>^Cs5GtW2@=sS4sB*-7`+Na<3ndiEu0bm>`Stf0G!9xCQ2n5!U@
ziUbw&6wFufhk_dl7AROqXDp?$f<+1zD_BdbPdi1yQU$9N_%e#i6fCEuq?@dki7OO*
zSSV5vMmtwpd{wfzn!5K*_a=*L6#TV9>}gL~uV90M?X-NfYZPo!uvNh}1)FI)m&GlN
zL}o7$3Exh4cYfd;xLEw_q9`vDy_dwD3U(=&oNRs|IXyBx+ZB->s<T(YJ_Y9}Z4~TR
zaDct~Rlz}8P^VbZAs$ljTi^7?D@7WOZt^-z@lkM8!H7ihn1bVUZX}8o1o4D|GY-+&
zQ0%-&Byy6gzbQDygp|`nEPj^KY=)b}3kohOxUAp`t@{jj1yTI^f%6iDD_d&jk<P0M
zephgvs&<jCGHR(=t|_>?&?N6KiOVmGHx=Ac5TISD;5H?sf+q_8Rq!X7DR`*hZv`3e
zJMU2p72H>lx1FntLwuYnKH!<YO%@ZEnEwAmr_)Mt#}@k|1tfkinf$SWWui%*DtJae
zMi+|;JL92~f!0xhq~KLqalukE!hQwsmWxzmCNw)*2&$?SD~GtynW9l*I8!EyVn{()
z!D|I?6hsv0w1^JzKRPt%%v>ryr%m0^oS?zg7%v1>cP<xSD44TI?7CEZN!O)0E)(xG
z5R+{w^OuQlc{(2yd}Q)Y!Fwk3sg=?!cT;Bu72hU{@hXVNsr06DkqBj1MioEIa6iZ*
zW>%3!g+oQMibNGqQAow-Dzd7`M!i(zQITCm=_O)L6}eR8Q1O|H1}nsVl1TZP@3Q#k
zjdaRbS}FQ$eAbqdS2feJfQo!Hh%<#e$**GQa*@c08Sa9rng4$~#lk9zsGvlxtfHuj
zVk*k3_)<l270yNGz9^y67cj&-OT;f!bElMKBvOh=X%%Idlw~YuwZ^YS1r?MeSsh|U
z)m&VfV<i>zp`FrfJx|%DB1wf^#Xn0$L8X@=I@eY<KU$xh;TGxYDjKS2q#{K{6%{p9
z)TGEP5v!_ZLZ+&yrkX2DNl24AVi&8c(0?$07f4f4OGO<Obyd_>k;#^luEMQi_))uy
zLa|b$^d8taImIE;!WorPXcg+IpcJaFf)<y2qs`TTd|o6zu9Wf>5n4MH->GOqK~vG3
z;<H?As+v3W8x@%wif!E0DUw8*spf7a(n3W`6|GcI64HK8T_OfDi*)JMD!!)`SJ6QQ
zrD7Wu?RX&uFA>|S*tb-?Kf_Jy(w<g!sdze3?5N`Ga<P+&A62v##S7h>)Y@4^7jjhv
z8PMz~GXpc+-6*y*+_A+b@2R4f3RQ)sqPL1ZDo&DPDt=PYSH&b1lU4Ln(O<<ly66Pq
zXB7ifj8-v*GC{>46~ic8l%?C8gH;Tnw4u55N~b%H|2pYNoas&;<sd#n1yyIxpj+vM
zk<6(&O2xr(4kEu$NXI#d6ON^<9_1*@9anv@kEhI3&3C9#naD(M=a`~mDxKsi=Bt>d
zVsIPROck?KOlLlWvAp0SeKsBbD(136RciXw`iU=4>0L-Tq~cc<(fY1MDmGCJAK4c(
zE>W?R$ubpdm@H>p!MKuf6(e<7%|vP>tW9vNWxkGay^0M?HZtCsZX@H(D!MOD*`i`A
zi`!J}VM0yYRqSBClW`a0ZmYH0Fxy@g4^P|nv9jON4^SkT(=2EZGCQo|h}HV^b;?oZ
z$1LTziW3&UaSNv?JyiTnn@hzR(pB70aZ`nBru&?Viz+UuIIrRYrQ)dczq`7;M_fcM
ztGJ@#cNN!Eyv>!GePsGo%KVw`-ZR~VV~)5e{jSr_x@(d@ICZZIDYsPIR&ig&0~L2v
z{Hfv|<%5dg$n?oG-8YW7?o#W>^p(tW9W^hsXQunoO!woN?uWE(nIz6~cdO=jq~fWH
zXSDGf3y&F}F#gL(1|Ag>%_1R5R^e6QQ$epn@H3JaxaF8QGlh^usw#A#&2kf2Gc+YY
z#}QrYq!3gQQV~`WQSnm6D-tPHRJ<VnMVFx>M)}j(8FIRgimoPW6Fa$F&s7jsEmiYB
zwmF|rYs;JDI}zJ!iV}4%C%&Nxo=tAi%e<-Wor=!Y1S)M4YS9gAd$Xiw&=99#d;}9B
zh}V!&!*vaRXvn0|n^<l6H5Aa0pdqt{EE*Cu`W+b;-X}vtRwmgsZ2dF2byjy>!I4da
z?6cKbnpSm|I|sM^luaPxoEmaz$jwR~4SAW6KKNsDKITNIT2MnF4cR)oR%!TLLtza)
zHT2R@L_<-H-YkQ<8j5Ksu0hn`)KEgh7aANIk~Q<!nJ)L^2}^4D_JX67hSD0!uwGU}
zMJCi*j!AjOFBvN^W-Aa^Nke7kHVs>TGKWgys-00_B=MVBZff-mjO#qbv7>iliiRp0
zy~+^Y8F5uLB)!kzsUPRk%;$1f(~zp6x`rB7-{<`Bv6@^>(@={^ZL77yqPSRb$D#`6
zBg)+x?B|4BhaB}Z)Ys5XLwgMkG&I!ETEq7m8fo}SLt_n1C`w1f%|}I=b^8j!*BUwq
z&Qlj{d6zkwYWPM&Gi&@7Oq$aOgZ}p|;+CwmV*HlzJB{8sXwJQjW@aOmwoFR*anu!@
zH0BR9zJ@Lux@zdCp_7ImHFTy6#T?|uf|vH~<IP^B3RT~EMD*{lb<@zD!g9#bLjx(5
z>IiX1#qOUw$e`I;p|^%U8m4HNs^KRM@l$OBGz`?xS3^Jcr#~ejg|R@w+c(MEubN+|
zZa+G`#I*Q98U||^!fQ=q4yA0I7C%YDWbQRg!*C5FG>qgb^%~1$l!nnv##s6<OwOm8
zU(g-Ld_3a>#)*uBJH$D1I{VCWH{c*o(=c7bLJf;F%+N4X!#oZ1HO$g5Tf-a;b7{qY
z5@<Q77p)70?pf}nCo2S6+~Gf(7n*!OegP%S3di_&w#6EjXjn#J*RYf_u(u=itl4z?
zq(Hpq=C~ECuVhasK4a?$H+{lt4Qn)dy(ZRaIIZD~hV>dYXgI0C$dtHI!zK;K$<G=t
zDkama=X>eeOj%7^Rl_!l+e_D8N{n?$+nG~!2d$39cQM(mVGon(v)p7r#``qv=UxXi
z9At8cykbJFziK#a@wKzuM>QPdYMF#YYW;*KSfSB=<B?CXhvXh9XEmJDa9P6@7SGeM
zpy48$k-;SvizFmAer3++z)ROv4b+`FUeoZq2HQ&)m3_0^)LJ$n@rH(*)Fq4=VcgPi
zn@)@%oI%{t@TZ220c;B3u7-OW-fQ@v;V%vMHT<jLsfGs{9%^``;jxA<J3Hu2@qbfx
z-LyF*;U791*V($(aGcxV98oLniAEnnY~^p+;@dc$k@G9XwFTllEZ&$Pba*I8w8|QM
zymo#KK@B11vId0-C4;I#V;*3<dCA;;VGR)tuUOF;pEE`o4aOKF8NbaR_k#I<j4v&H
zU6;7m%-=A+WqfC~Ui>%1M-3SQXcWL#0mKCmA3&)9N(YcJfJ^~=5ik$c#M5Fz0J#Im
z!_~|IWC`H$s0@h#fR(HP<X}R^*_dQ!EZINHXO^BbfLzR1-8KJeRAiOd=r{8YoxB0$
z3m|_01p+9@1|<S0Wc4Z%z~{^hTguX4d{O4bETwn=y9=ezP*hSv@g*(&=45lDl?k9)
z0I31AU1cj9K)C?Q2k@n3lN_MO529iKwjWa}1z=~rvejw}Ac=X4V&?dQr8}6M=@Bnl
ziZg%|=2a}EDw8%B%{e|@DOTrdjR0x}kQP9#06j<1jBRbkI*cyHbVfHL8Kj;x?}Mlt
zKs{FKTY98cTtkbm=@s8NfF=R-4WM7Ze6#k~0W=NZ8|IBlI-eFxX%;~909ph<PqrUZ
zIlW~7tpey6KqnsLTgJ8le8;4<HS+gN+5{l>GIO#WSKBlGVA*tFGA~Qwj{$UM-ZOwM
zOu90@DQ_+Wm2O<^9zYK!=77gD^<v(eu@B=<R_l?VdC~p>j1SOrDbZqr?dJdn1Tc^d
z1_dxYfDz0GGY$!0D3f7~)OW~Z^QM@Q0sIocSQbYGFq+92%jVXH#BmnCa3SM=Gt9M~
z$jaOR<}sNRz~lg?FrOO0OeWJ9$#{AIGc0~8(VXlouFei%j-{Xb)4aQCegLakSrEX&
z02T#Mb+!4kepvvESzp4q)aph1ms*zxu!5D9jH|5HRz*x#*Kl<$<2uIm0c@~rN<GQ2
zIe;wz{1w3c0Ja9OEr81bTnS)1+noAMycEC=%YJ77yJ$lNuqS}MES?EqUjX|9I2yn)
zRt^Mk*s?#!<PhVp0nE*sN-mitfLH6y<Uej%{uaOq<|i%Xm*33XJ{7=eOS#lF@vOzq
z1#sTt7Xr9waXN%c6ihyRQKWAaTn*rQ0DlDN<&Rjg%9i<oa4mpk+icX7ufFpJciGz`
zeg(b%kqidgZZY0wyu<h><J|!6F(I4wJu*HB;9&rXK_F;u(zlwKMSs)Y3E&YOeE~cP
z;9~$8g7`OprvdyIz{>!h1>gxF!WWeS@G=Pm;A5gN`Wa<L8go=)qRL#els7%&_nyiW
z3?O7FVJ7LN<MaTc0T`D4g4{Tn91GyNrL4McX3P6*HD9svK7bDayk`D}@h#&!MzVC5
zj+>umzINo(QAs2&NDol5t=(Y$VKY96j6D5Jj0udSXAU9@^YS@rQZ;K3*@E~Yh>}5M
z4`R+@+vtlKKVyR&LA)&Kq=y6K<Z7-UatD#e8mC|oc`cqVi2Te8SW4F8nF<B*Iadoa
z7Go?DL{ZD;X)r^U)nf4=N?1yz6PZep+e6I^EW@NUBYj(@tYuR!i1I;v8AJtEY?fXz
zh)T>WTMEU8#z_jo9)u8tgY{&qm43QWYq?XIQi7-w#MdD-4WVif)q>a)#NHrMgQy<F
z%phh3QG)|Z_I-n>8AMtTwSuS}L?<526-0Uv-v!Y+2zL;5SZo$V-5}}((Kv`ELC_&j
z-Ko?MqCpT1gJ{HNUs?VXt898p!6*Eh#jKYyHf8dSWwVAqS~TZs3&xf~w6a>i4dVNC
z=AQkYm9~s+7@t-&2dC05i1w`fz}SJ2^o~K?Ja6{>F^JAVbg}fFL3Fivw;;MR?_nuV
zhQ#$^-kY%x<4;y=vrF;)g6JQ_&p`|bVyvYPWHKg*K|u^=J|u_{OolQJV;s&%E)DqG
zjLFC#MzJ#5(kJgUZxsE7t5;^ZiH{3nd=L|Ym}uEd4Pp}W$&6Dh{r+5Y^``|f-BM-*
zak8!%rP;I#f|wh`ydb_hVIFboDmZo?p;uWUHq*SDU;&fex6EC(Fo;D#EDmBx5KDvD
zY>l=oh*d$X4q`bgD;QT=tv_5glVJ^4*9Wnd$vUg`{G_-I7T?HZ6XUFGHMaz@HHd9i
z>&_syGv8q;GoPCC+7-lZOUaNmabFPogGdfR4B<c!2ZK<9(1JL`HrGknW~0wwzXoxb
zlpu}<aV&^S+<H8S6HLxge3;Pqr-S&7`6)}GkIiS8pS6^(P0V1P58?tV7yplb+2U7%
zxN7m=gSf`L_~-xoH26mlHz+NGxD~{0I;**r7Wz&Q_k(y4#GkC(WxU5oSNto8&yJW&
zL*-!*k68cPYW*jO9=xX1`k2KhjLrk`PlI?CgvYY<2O(M98>H{lnLkSCy~&?Ombt1h
z&fkv!laE1U2w`{Olwc5{Ai^w0f_M?cf6R5pXb=XI7$Xh%JcuACF!7f`yk-3r<7><2
z4aJ<#kaw)SXZ&EbHXo5CE`<1y>12@*GKP>Tgjv;vu@h4gLdYCKt`KsEkcAD%CVL2p
z7DotKEuM|Zgp*<pCZ93pv|6=MiFue8WX#K$&uYydLII1HerYSj{By>_mab+_EE+<w
z5Q>LTB81AUf5BLuv1ACPn3N8oEEDp!Ob8ix%amh<c(LMUc74g!3L#XqEGvajh|fT3
zwXv8Kg57ErLU1r|bjm#IoFSxyP$h(xYi)yCn_Ii%w*O^LRf^SWv04bJAynrsHA1Kv
zLRtv)A(Jd?vFHw=P6)M`yBO0M$)HCi)5E%4Z4^Si5bB4}fU6BHn@>NX?&XO4ij~He
z-h@f+GvYTPGz;Ok5Ke{AJcJe@3<+T<DVz!Pv%X~rt=RbLbKAEed>2CN5WWwgO$a?g
z=*dlO89Rp1j!ApQ9~jBQ4z&8S&BL=(2tS6<nf0!WT`ZfUN#;r0Erjlta^RM^zj|@C
zZwS4a^kMwTvZ2q?{X*y;!q2P>VjN(#4h*3N%-uBDQnqGJ92TNi=3#LNOF|gI`s5I%
zgdm;BG%|!ytc+$H6T&Ycy5HGM_z8^T7{@b`xbIY^iOeTi%A!f}Q<?ua%(f_mX(3GK
z>WmQPS~fG8%nD&PlR1_?uBUlo&*SR+5Ed|5Xtj2l6i<I%n7c|`8p1N#dI#b+hfr&W
z?fn@u&6cy-iV#+Yu!{NW5Y~r4zqzd8>RQHijAT!rS2tLEBa=;x0~6vJ|Cq8RgsmZL
z3t@W*J3=@Z!l4j$vcX=)U5vXK_b}3!*Y0K6$9zBI0ZXTS^sB{>g>cy7M?yHty!>(V
zCm@yMA)K&UPliAr-bg$h!kG}dgwZvOvmu<LQzZ<9ah@$7h47g63-gO1TngcG2v<V5
z6T+V%TxI<a#@`uDKSQ`~@jp*wy21P=<E;>GGocgyc^-2)?sD}3BUSHxYGu67_)F6)
z53Sa}L->bzjoxP8Cm{^0@6<zxhVU;<CxmB~Wgr9(rCbPJOOZqHG51?abv}-i5L8Ri
zLTD_SZ?&cpq)(Ei<3b^Xxiw<h(7|Pd5Tnd5o{}Yu=OMfZ;e*xsUkGoQzhr#H_}Xe6
zl_l{`edpT{-m&uD(&;zEkIXZK5f?^$*xV5bj2RiJnkkIUC(XaxWVV#s<>SeRg}Nha
z7}>)3CX8lbWDg@p7y|vxt!VORVdM;>NEk)K$Yu4)A4YEGc^LCD=CfMq(_jJS1udme
z7@u3ba2T)NncJaQ7{$Y=#Ci$F(qWVd;|t~`8A~yeao}jCvdq6^EXP>hYAsqQt^)Il
zmO{T~R%UKvOk%WKtyz1=JHki~Lkz<iMkCf!7}LV26-JdXs)kXGl^TqxjO0o6Fa}=`
zm)}jRX(_)y%TPNER~YqKNoTCf=(cR?gmI&=`FW<ErL=6G*noLMOX<#M%U4`&97Yo+
zUt6tB!#FX*Osd<f#pYpr7shA&m$w#d&@zlxmgTo$e80`KY)vGLHkRHYjJC|%F}7#?
z!D>ytld+@4JB9Hh^Uju1rhY=VFuI2^A&iM(^a!J87`?ca{`5h&sF+i$<EB59^$w#?
z7(a#4ms^L1F)WOJVe}8<XKS=UVGLkC&{D=uiXY5;h^5eq)0o4#I)-sX7$cdCvTR0E
zmUeWJ8I@nc7;EX{n2cu}_}n&$nkL0h31ey)lPOR|Qs_gwIzb4vaUA%<xqqj9S{N^L
zCJlWc%nV~z7?~r;62a^+=7e!7jMHJv4PzedoiMh9F+Yq2VJr`0MHmaipf9v94rAk3
z+r^`fMPYQQB^KE3SQ5t4Fi!p~EDPhwM*D+~jw^YSY#zJ(t8HZ%Yr<F?#?Ae<Rornk
zBR&0oT^Q?$hw0t)_6;<({r1u!+joy0M0UoDo9Jj=BP8q+eyJsH4P#pv`@+~C#_MEZ
zdl<XJ^n=p&W`(dLjGbZZ3WJ_%lJ~J~bq}FL)l_QQ!v=e4_r12!t!)RwILOyM7RDiR
zCZ|X*j5`{}uVEafxP{Setj%>;pj)#q{ca~-cbsk9A^UMkLYh|?G{^J<w%^F|me8Yz
zV7q6#HB2}|9)|HWjAvn-qr*Rp+hN=Z<3bo0!?+&CA7NYy<8m0khw)!OAy*|ws!gEK
zT?ylAn4Z~XFMZf{FLMeFevPX4Y}smwH^Sztb8gb+T5cP@-<J1@oqF90qxq@ijLjT>
zhH*EH2Vp!UvoKb_vA;iLyC241%#Y+2ND&)4J}$Nw-f#Px)`I4>-1bixkHRQ5*|D{N
z<1rm~6_csZ$eH6D|ArxFaD4a7<_SXz;|2LikqpBZMmUT}7=B9r9)cV;-&RoewLl&c
zQNmDJA+9kAgb`#CVmxrtMoko=h9gBijA$4}nEq_yD4dd9`?U~bPSxk6|11!BNy`+*
zyD;9<`jWR}ZEqRhFjhGxlJa_=o$x~#AH&ELK|%!kr`x8u9T_5KHpVf=Gg38U1e3<v
zh|~x<KGqVOZntIME+j^P2pUAtFoLWRWQ(9;1eGGl9zl)>3PtdF1fNBaGlIMk<Rc6^
za?yp#3VC?6+!1=FfumEFqz`)>zx5FEM^GSwf)U(G6TfIEJo?IUV3fHrha7ZK-WHCa
zNCc%LC=)^LY)M5UC>6n-@8gPbwK!vm2>Rqtrq(YaD9H+~GF5Z_<DiXDHiB~G!xMXj
z2+BwBWdsz}4tMQ$zD|8S%|=;$<c;lN4}lCSM_`MfMg%n@NQ#*INQ}VA#7@Y>!I;cQ
z2J~*G6q?#DfgU(eHG;Z_>{U2)wEIY@7NI8@+EN*-GxljGq(x9G0(S&;$g5|z+7!dD
zg>>dF#vES?)u!79Jr?RlaP+KDpQazO(P>aGf`blWQvK8uiH^oOlNv?vRRljo&>@1x
z5j2V5+X%jkVA`MduOs*-f@Xw`gr+p#Q8vAM&E^rbh?u*+RRqygN6QFW@3+yW`0F=2
zRm0N-YHCdb?zYoDY8S!x5wwY*Ee|sPgOERLZ;&LEI%#iDUgb$n+a=Iqb&Q}>1pOoU
zIf5S}=o~@M2zo`Zw63E|1YINO7J;jw@ZycFNjstXesd>wkDx~cM8ZyikOJ5{g1(d(
z^;3!WiQuOQh_w3Ewj-ybUj&pPlr78O*ak!}FoKa0jADa95e$jYcj+-Wg6Bu=$<J)$
zHZA(F2-X)ChVv>EdukuSRSGGIqazp-!7mYvrE*QkQc0k|zL{q0*-ID~LBIX>VatVJ
z&_>HTk^G6kr^Byfas*SzjR;OfFg0R+I$9XPB8qba(<7KcbB|B^eTy)cvO0pB2VAol
ziOh~*4)ZM;(}viq&x?S}`qmWY(|l_R3m8dR9KjOWgS1Q(w+NO+5Snh=LUW|cjd!jk
zv(f^Q6%njtWfkLU#vXfJYsj&B$z-sOW*Wf;w%^3!Mz*1*Dt#SfxtS&vbx?IH?I6Li
zErRV4?1*3|UvX~)yO`|e)@BVHWJ6^SSNkf-RQ5%%X{v+B!3Zuys-2`=Kh<$4f?uiB
z6An{iL~xAKySQ*9g2OkReUHW;Cx4E{pJ4lT8RL|W0=1H2RCYES;W!<^nFu@)ND-W+
zpPm(xsobNT62W<{UWnitlZ%X(ESt*_T(S67Ccl%CPo(bGBlshN8x;8n?sC%xpZyl)
z=e!hZz0JxU#y=U$%yyGroAEDJ?lV4!;9&%RGk+Grwsyil%pXPYn8}j}o-(2C|1xPf
zFNF$KYfW^Ky_ZsmqM@TUB~k=(1c^GJLy16*;7tT?BhVrUM9_Y=`z7rZzdcCF9Kj3b
zA;xe75hglgl+j>}F;cG|<qX+n`~9M+|3yGpmN||2ibsCUSSVzFN8875{}91PChr-?
z7ft;Tv}e$fpd+)6I34jiXoQTq>Cfod?o3>5(Lo@QE<_@cEIQ_$5vXHU9ocl0*YTx}
z>^gGj$dyUVrQ<Ul8ykpq+q-h=C~@B;d5_r|c6a91kw=GF)#<slrk+nnejNo^EUKfJ
zj)KgosgRD(nHOd(V(Dw$VsYlBETx2wFDzb?CNen-buZ0I8OE|!YdIa)Gn&_}prfLW
zDzw2J)n8^xt)#=LV^fLhmD$q9Sbt(lk`6m_fziR3%t(WXOiCYgrs$CF+Gr@ksyrs~
zYC2MNRM%0%E!NOcQ%BmTCbyX7zDNdCC|oWb={n}<n5)CBqmGWQI=a!wI_l|Ys^c3S
z^>r*AfukPRS2`N#^t>q-m4-SRS-g_R<&s>Dbu^)clT7|KljF}^&2%)^(N0Hu9W8Wo
zkZ*N-r=z8gRyvl=c9U|oaSCB;9S3H+zt_=5$E_51TZx|k=4z`$o9(6nZ_jp<*$+B0
z&T)6p(UHghWYdY3)#LhIa{Z`-Y&z@cqJx@>%`pejo$l^BdgvIZW4w-@I(q3Cu49Cb
z-a7i|_*usQ?)a0Ae&pL6cV7zK9P@IeCD*_??*2U5j5+RsItH=jFdbXwxX;dU57z0C
zm@XnibPx_@ot!6!$$+|#)G<cKFFJ^i(lJ^G4fqc?4VBD^lZRt<{5Qu<vAXxnHG$_f
zT?g@rIwsMQF`uGiDihKv_|up_f9Cqw&N+kKo2g@#j@iuf&;4KY=%Vv<%-3;D$8jAC
zbS$Ja)3I5{A{~p#c^zwYETQ$~j;m=!ct$j-6-<^hQVdrzS!K1-1Zl}=rt4@cvCkVg
zbQC3;5w+6PHgc@iyvVXe$5vWg9S3!6)3II0KEB)z9XmN7d%3!cakq{WRe0$o*B(}A
zEoe*{a6eZ+<-j2xoPu_kWBV)nKyDvlos5s_Ah(H}&~Z}7Z5?-X{HEiSj^A}$({WnI
z86B5&T;}-GCC=(N$Fn%kc!9^He4uiX6&j7o6`h{^Y|h>EN=MRM^D5VM{6TrkSErS|
zq2nf}F}Xx$RLH(zikUNi>bR@pv5qISh&uk_P4u^p`+PYH-2)~x&2>)qL*}&T|5$tN
z5fgIYUmZ_r<5N|~GoCDM0lI`o$26zAu-DuX<Qw59BGchdXJZsO=~)@{%^%&w_q4xs
z1at&-gmk=NG0dnlMi|Mm&FBnK<_2TT(w{SVK{2$HmpWcq{52DMT9&t#@=iy-1Lj|`
zKIr(!VumQPu}dVzF^Ol)$e4*SfiW{<7RE$IFlLS7%pLPD+f=egk%L9z51Ym1iXwLu
zm7}mlktd3txspmnQ96peQRIsve-s5+{G7316osPr{h@H9foVyEUiMKqiZYeOB2g5L
z;@ySnq!)|gY!g>;?n2cPOumSsq@`@BE|g(T<CKr0Y!rjmB#~t~7Q0=xQ}xRzD)7h^
zqo~BB!CW^LGE0iW9)%-{<S51r%R&kj!5UCxlEUaD|MR;3T9ZUrg_Wv|Q{FnNMG=2c
zOpT&CD>TBmgJN0~wW9F7fd2(*bCmWO*l)lUMS2wODC$J<je%wc>PAs7iZ2Y5G*CZ^
z22pf~qGJ>dqi7UG^C((G@l_O!qi9Bft>8>dNNf_t*HJW$qFe>%h$-<TenX>iEAgD=
z#Flg2MCfHGEu&~1#rILPisIWSzKeoHD)e1D!ftcjZK7x!Mf<4v6+8M`T{|Z91w1mK
zuh{(%1$~$AA!^ZA`#MGOV-#@);th0;qDvHd6wxTUM$s*bM^XHI#oj%N9#LG3;u3`-
zie6F7i()=aaG$+*6a%6d7)2kh{=`UnUnc#c=+ES5OK&(_7!<|eD8@xGp2Z<ijErIw
z^Py1;V=~;bA3>QmN1y>S{AwqpGMd)ZYW*dOu@(=f3lo@6jbd696PZt9oNU=li6VU2
z9Avts%#LCP^O=@1D~gJ_s*}weR_0oI?Pi%4M6oc6eXJ~sVlk8LQ7nmKDf5j{EVJxa
zMX{Xu3QJiTHJ=GUBd?BPO%!WcUvIUpi(+#1G-{=?f!5Sz`miaA%@p&)4&qzba;s&(
zjmfS%_8n2|WFGBl25J}c-BIkZEceoaa?}1O4n%Q~^^=T;qWCq6!<OYSN@<H9Wm5LM
z?YO0!pxu4Obnmw)PDOE=^>bG18760Gagj<k=PmsLljWQ3W9GUqNAXV-_xIYbL~)h%
z-=nx?SzcpuJ&He=+_3bUQLLEjrZI0vaVLsDS-;PCm+_uu`4^K}vmFnZJhb$`DW2!d
z$WIt!qpK5n9K{oE{WprIQ9O&n6Gh0fmzXF~c$xSZ{Z^|?JD2W&=9N;T&{z*xt-&ZB
z?lCVBwv<Q|O$wVUXhac<;w>G6Q9P$}vPR0wC|*VJB8vZ_I5yY)!+!D4x$bxK(}=u|
z;!PApsE9Eq8GqvMqxcX7DW7bJeB^2d1JswQ-B;K$8b~w%1DOmY7@)uMWj2t-K+Z;)
zsP)2HJ7LAq_N)f78OUuQkAdt4a*%<6>CK#<83@gFKb)MR-^Q`U_QZMaTn0+bbJv*X
zCd_LfpMgRKJ~vSLp*_EW0tN~i=w3UWs^japHZ^m8H_zQ~p1ZJtA_j^ZC}Cj6Ja<t8
zZ<nT=pXV-SVCy_LDgQP~{&$}H4U^7)q?a;K+JN1FV4w^Q_=m0T1o2A)Wto>V&?9$J
zdFJo7+NrhX388|4iUx>OVytZ7Zl+`^HUmi(zm{e`#nfS--@^(u4I~?&s%XGzAjLox
zu2yB-HPU=U0JT!7#!9Mz>u0i5XI_Jms%Zvl8K_OiKAr6b8c+Zq*?u1-q#JM>sAJ%#
z6OOLmI_es@u_QfTspNVFsG5Jio3NpQMh3n%K=xlzWQN)r8)#yncZr%M6O*WrawUKD
zTkq^m4ai%BC1YKrG&j(~z%K^I8s?{tmIgW*_>ufE@U20=eY?Ih(AGdZ1Fa2wPb<>Q
znY+2O4L23P;v$3g27WN;_j*T10~yB(#m5RA3|w0xP|0;TZRtyanmQZkVqk!Qfd(4C
zwskeoiySl1jbd)#U4o;Bfu4r>%4y=le7B|v^uF5dOKp7&^ri69#0^k2yiU-Rn*9y@
zY+!Rptn75W9^;&P(@syhpL<LgWMHs?VFrd97-FDfO9z#qOm1jGi}~(8U${mX7-?X%
zfiVU~8F-VFT;hb#s<+T;iET>A{J%rN`C@^5CK+d7yn!_a)*6^#V4`8(bhgsKBm<KT
z%r!92z!U>h4a_t!%fK`PE!R6{P$Z8C(+%uiX1@G)cG>h|xdiF4W3~a}1;gST%I$jM
z_M?t{Wz#y<6XzRPU|_L<CA8vW9SaTfEz*l9)E9;Kj~&_l_VjMTQi|Se+cE>o4a~VH
z5U1B4uQ2G_>CSrNMS7(*U2zrVaKqHq>}0!Xj$=u}Is@wsbjU93F|dIbce{b6*;6+f
z*hJAYu*JYO%H#viXC=}fKNWIr5w;qrmnXT=CSk}-f%F{)b{g1ap#2luZW`*P@b0{W
z9;&wcnDD}=Nh9y2e8?vfIbh%*h2;gNyucv?ztY~1Ax{j4>AD8q8~9-0C><A+cm@>8
z(oRXo>Cy)788~6!B%Knf_!}jafpZ2<88~gA*bmM#tk39{GH|||49*+4z&dd%7rFI1
z<0Zz+j8_=1(ner%jgjnWWWqma?^w!BCbt-G8@R*dPpg$)IQy4@yh8Fr1AiO1Pbb)X
z_X7iQ>m5WgO>z8V;E{pH2A<G|oX5#M-Oll~oIksq{~CB|z+*t7?zNqt^k=m0TLd!j
z8uX=W!DqnFq<=>zRiDsn11}2p+D?^rZazoGgXYH)%|O6Fkj_j4FAV%=AZ#FFAZoxc
zuyMY7V^7z^o-Un|u&3+Pe0R*ib4tRVuDxxYKlXAxobT@2)AfA5`=x<bl<IUy8hCAh
zx>Q`?CY#R~-_cM#T{J?+1?~n5+_qk>j|MWtkR^u17~*1xkKvDw!uN_TV~ie|m>ha3
zW}=n7<;s@Fb?~c{gcvf%Kx9cm65*mYj@1{EN1S&ehO99-&)BjJ6tl&UJ%$`Hd=|sl
z!M0=P)2{XuiR6qSR}7!{y0ebFG31M(T@3AG$R9%i>K;Q%3<YB-6hpZf%E$0|425GT
z8AGWUzF3o1B!=QKWGEmIFUm@>7;<M#rfLb+>7grMFp1w~zcI*>;jiS<F_ekX3vO&>
zV@T-aywt@(yvAEQJ*4H!nE8;FN-<Q3VfRNHm5NO6{qCq7gDr-n80;~u9BNCBL5RT-
z!`3`WSMxd^f2c+sV{^r!eH|hj&_i9wtV#@3V`vsb^BAhdkQ&2RF*J^$dJHvUs28JG
zaH3`mX)(BCs6$G>s<mRMO=0g>HTx77RYxswyD01n-06&+s<^1sjiG3%nj}{1l}^<L
zF%Yh)=W56!yeV0e`Zi*FBGl9*hOc928bh(DlWy)KB$3EBG4yX~R$Ii-GKLxT(p$&S
zDu#FU(%%hF+0k40_7ks{{#^_U7r03$o9|<2!^XthlELs4B0tbX{EluhbdRA!3>{;b
zx>M*B!~O;CE;0NVL+2QF-N{IA%A>vSFO>Mx+{CWjg-+TYG4zaK?sLq0j$SeJrqzFr
z0?*MWhM!_s9K(_r`o{400{5&Ky)47gkKCrUsGs(83<F{qND<2_JYV1*6vN;c#>Ft6
z&4$D<l7bM!P_7PR9L`9CjEI5W4N7D*EA%o@;$xWqV%dzP>#h+<r!s-XsWD7sGKq1r
zWjTcwI?=S8#>#ZY8CL5|O5^_KAhRuH4$YVOJjVHq3m6wNlJO#%__K5(OJi6T!=o4;
zQ#`9VmdCIuhRrdopiHBtoMQfkZqiqA>uUC7O$=+fx{jvFWCP<y9-NFL4bup>Py*9l
zj^RiQ+hW*G8##tUF`OOX+!4dx81}_5Br5Er<SdiCi*a`hdzg@7=j+lh7yB*c0I$oZ
z_p~-z=>C=V%iNSR>usbQjp0}fH)6OM!|@nS#BkyNG4&l#QWW3U-90nFeFRAo1SE-w
zFzn3st^%^SJ4jYQKoJxrh$Im(f)PPQ!2ptT6afQb;D_Xl3P=_KNs3uXJ30PuKb-G;
z=hV69)~i?f)$8h-p6+7oD#pfaf43^xRE*78$(Ca0&xRa<Z7SKGmG4l(KSJ(S@}1(I
zZ0a|3DOt|{9`04XFDu#4)S>^)=|L49E5;!uhZT=xHIEi!(9{5H?@`hBLotr4{KsOP
zpebrNrAP(72%3T9Ofgzz{J$0B_hOvoke2c>oa5>n<U6m?pNsK}k_*|?UyBia%u)NJ
z7~`e}{wl`b#rRV>qfgbh|0%}5T6KvaE*9ewS6net9GPNVVcu+OuNEVuyf`Zf7K0<t
zRxyN&5mEW1x{l4ql*hB0iDJyto-!$|LMw=j5+mrWI0iGwkLWph8C)uK2jR)4uA3St
z8APcd5QGHLu6Lk95T!M>oMM@*X4#-)T`c6ftfYL9pCWRKt(cWm3ZinBb7@x%qFNC5
z2GK3(SY!1dyg@V#;)Wn<sHA2P^@F%cc`d~ogQ%^9`gN4l4Wgcsd%E~2WM~jX!ypnJ
za&J~SzeG&oEkUG4I;2q$x2n9cA|*}OuQ^_loFLZv{dw9=Ul9Hva#dohCX=|bs$R+=
z$q(W-?a1vx6a>*Kh-MmXp6y+WAnwTWmP#g1$-gs*!XWO}Xi*S>AUY^-t=LxaE=3Mn
zo1o(XNZMs3?SuHRN()LDItI}xE9a2jqr9_Xm#n;N(D@3pQ$p`R_aI&i;`JbU1aV&w
z_Xp9Fxd!>_`F#%r(JP22gLq0a_6}k|5RV4&U=R-l(MN@S6(7!){74X=e)Hd2>lZ|S
zmD6dku7N>3rqK~W3{o;Qn`<zy0?H4XPTpZbJg(8<K|G;kde#mb7Uzys$tXoC(@LM_
zEClg#5U&LBY*zk!5YH(eot2CUVq!gK++I-0i&^<gN|x@<VbWNRLq(?zuc~ldR%g7D
zn|J5Dk(IoqWP;+G9Hk?E+U>+3CI#_!5MxI=g}fWYJ6V0MYhJ%7oD#(QL9`Cxt`MdM
zF)fIzK@<luJ%|}W$J-wZVkW0Jh|h!gLfg#C*6bkW1Ti;=d0ODdLCg<gf$|T7SeUJ4
zX%LH)FV0Gq1o<W$XZ)9`<b$kyc@Sl;3#`_GT@l1em9J9#NOAjW$3i|){;A?>#m^L(
zv?hoHy&N5m>X$)m2x4OpUvXV<LHS$!PjQ`M{f-4+D_O6|K2m`hHwE#XmbN*FElRcq
zu`^r#HYM8?cLd?;o6jr^yMovq#2%G@6U4V!{X^wjFi>G{5c^cPKZrw0zE?bu)jX&c
zPR+wAIg*thrGKd9SjZ3R`i=+jV-P2TI2pt*L0nL^Q$d_n@>4d~X(eZZ;Dv^H&t>K3
zgZNqbn5@_RHHbfh_>01<&hJ6|k>%Ia{?_QFApTMEZ#MO!+6K#KxE#cltem-mL4@f2
zc#=%FPjjlDTPfr$@JJBRAYxqXL6i)klqw{Gu#_aVgp^{M&R>b4Nv7hp?al8CoC}I8
z1h)!3ij<TH;bQg*0u`216vfgZlu=Svk@{@Ub;`?UB^5%bsJ!p{|9Onc8ogeziel9e
zs)bNp`3)h|2%)C();$UqPAXX|gd0OBuOq_?3hj!ktWF4ZL#P*WK0nbYgj++Xuly#(
z28uT;QlVi8w`4gR**JtIA>0<i?OKaBgj^*|Y8pb0a$i>B4*}Dhm1Sooc}nsX$I$bK
z&|G<uVhhDqA>5&)r6RKzgq&*}$(<@G{Qu+>1~f`X-6n*#A@m60z7X1l&_0B&A;(eE
zt8@sVQwVp5&@tp}k{QZ+^Ipq!uHF6G7u*v<=MYG`gq({$3FqQo&HKWlqHZB{SI+7F
z<%zueL+Ba8b0Lh@-aWuxzn4ECgkB-^4&gy<Oh3hk6#FPXtoVo`EA1O{F0v#H{Z+Vn
zr2o+n1}c9ngkd2(9>Sok{$M3TLKvEr(At@IcnD9b<O#(QiX*c+qm-<DlCL*(l%H07
zCY$<f2z`s4HgFuqgz!QLFNW}Z2#hjt1YXMW*FtzXgoe`sd{f6OA&gb|t0C-stdN@H
zG&(*6?w_yarMsID!kZy158=ZQ-U?wNJ$VSzLYNeCj?{8`;++uQ4mtlty=}Vpg$8;2
zE8@Ex)wX%>g)mtO{~$SqmNwn{zDD^mQ)ZkV!d%W#2s1*MsYTf_gKrO*6~b(m#;Na^
z$M4nhT#>^0AuLdx4?<X|b+LpcAuLkPsuzcxzd({uzBGhoAq2|gG7Mgx!|d0ebgc+s
zWe6KW*cig95I&;Q*qZaPlDdt342*sf!lxmu)}#{cee0Ec7Qz~qHZAbE;unfvDt@K7
zR`Gv|>lD9MWR|A4`&sPqbN)>s=MeQk2nR#h9Kx0mwuZ1Rgl|IlmR-2jw>^YiAv9j@
z-JwyEol4$B{%)1;QKbBbGPz%@_I<}$DC^r70>75NS9#NC^7n_pRF?L=DpP@XqlY+g
z9^c6j4u^0ggrgxG3*mSOKT?@4g}*8M;ruIsp^07iPzU#k5Tfy>YueZg-M(>4yr)9=
zDTLGX8zGzz;b#UkJsZL~PUtx2`@(<y?Ijs=*!xT9zb_772;r3#IZSGE#8LP?gg-(U
z5yi+T{tV%-5V}OrHG;oG_=j^5#z$fNO9#tk8%F;yE`@NJ9yN@zVa%RbaD}tL#kjcX
z)ewq92!;@13uz=13&M&d5w_=t+esLDbj^)r<u&IuO@xpPAr(TJUOfy?7?}`^Fy9-H
zYlZRgcxzPcJd>n$9>aUJ^IT!f8EJhu)X!*%FiM7jFeHqxk9#REr5VdS?WY1uD6R4}
z<1O+Q`|NUITo=Y|VcZ@@`7kPkQ9tagk&24d6e}rKR%FukN~(lWH7mLBrdd6V8^WlO
zmDCQSW|r4da$^_^1~`9OWT+EHT@}{L>ddTT-lV)i7&j|vsF)kZEnzeY<JPQZ6D5rm
zd+%{xkK+xasYY`YeTtO(mCX6usnJ%Rr<kvJR}-^Y7|oUU2%|+9cZAVaqb(H!iUo=+
zp_P(5!zj#3ia1=Qi<s0pE4fQa8^tA6&`wGFFgk?MF^o<c?W%Zp7@d_c`#oV?dE&p3
z=|Wq|@_WPRraIlTnt^%w_bI<WjGkdUkd;5Aq*oZdl{~1}V()*y^7ql`!(lw4q_5&*
zqwG1O>;bI$c+umukT4!q`M_(+W4(`sF-ZAf#UYAA6^ALFZQ%Uz?TIi(gfWX|AI8Wq
zMuqWe7~{ftGK{Cfcs`65!gxB2_a@q-!+a}LVYv%=&xG-8*m>#bbBZMC$^J1knAhw_
zrUhP}7U=e`{bHEUAQiqG2K8TJ`O^YlO$)q2p%y}ZM~nQC6YcR~yvD-Am>kCIVZ0H>
z#4sj>F(HgM!+480(f9hGf&<e6YygY8w6u`9-VWoPFgEP=y&J~dn+k?>%VW~jX@O?1
z*^Ac~P6^|EZP<)3HocTLHH>LtOy|0&SHQD<cEPF;C_g>G*3M*?*@hNHbzijSu&6MW
zhOsP+d11^CV__JJ!r1$S{pr?Rh6P~|8TC#NEDqzv>47CQjOl^?(*qPT`T-Y67$1hQ
zLUSz-<JcrWlSo!-naqAo`QtD?38P{Jl_K~wjMbcuFxG_;IN{qo%l}yzYr^=PU1(C2
zTOs%3H922|@nslasbsAplQ?(Dgr9^D|MLm_uftf+F$rU180W+InSBpCAEVh9#{Mui
zhn>&XY*E}A#x^C}6~75%M;JSm?^4{OxLdJ!n~xbQ=~r*Q4dXi%QnL4&<|6;JH~rs-
zaWITSVI1Ii{+|11xm+T34$~%U+9y@>h~iO>Nw$O^lpGJ^$E@T;7}b|FWyVvQ@h3%=
za9YWkFwQDDmz6KA>iZ>(3t?R3q6_2KFn-f6|H0_3e%}f|^Zw4+pB^9yuJ-+@75%07
zx8gsF|8mmxgFCGHau{X=H^%)}!VX>yqd1IU7$Mb6Duxv!iX4Zi66TF5i7O_UYqc|U
z3@J*oI+-wxh%*-q@olgoaB0*X0V0qHJQ^*bSTd_wDuQbhQCcO}W#wfeD4XTwB2KSa
zZ27FDLIf02(m0k=IRak<{s^v*ph^VBs|8gfxHW>t5mbwydIUE_P$Pnx5&Um@fMHFI
z!sF8ePyUo!OC>id){dY~1a+0)oYkxsL4D;nWhD(F*tDwPS~(3>cuNG0vZ+jJQrm74
zar{Hm2*|w=3?1wUb5uxqs9_*C0y~1eb@JOpkQYII1T7;dh~TyeBGUuSBWS^n%m~~b
zK{F-o1_c<sBZAx+fgv*jug?hF&?mq1j6ff^zf}ZxMnJ+-!FU&6q4FXQMLl0Yk)(A5
zcPWqd@G#mof_4$KkDvpqtLVEsf{qa^eKWsP1m=XipU&8e-^il_`7P1%o(Qhq*u4B%
zyK@A@ug2!x8$q`SN=H#9itZ8gh+tL(vm>}Kg8L(QF@l#O=o!HS5e$sru?Tua&^v;@
z5%i1T!3ZARl3VPvACBN5<$V+>{G?TW)1Kxd5v;G>f@{A&y~o$yN7?L$3K<3{agWcR
zR5I_@$t4FxFgSuIA{Y_D5Du@VJ|4lY_nhZ-8HTB3@r(eKheyC%`<oPuj9^p*&qwe=
z1W(cwmz5kH!I%i1Qst*3d_oD&Dt}Iq<?sRE>HA7uE0g;-5@xyZUdg~Wxs0~o=6yMW
zinje$1QR28h4UN1tD5(J=k4)I#woIcuVu@8UCA2}Ovp;!j9|lz01KZK!P^nMAHh^j
zdMASSBA6V(yBeKTB9HZ6Z<U%t+n!wV`eh}*+?=~;L?OF2ErOY<Gd+SCH2AIFHZuxq
z?agJG*T!T{1al+!K7s=g%!^=t1Rq84G5zykdqD(?BUlo_LX9p`q<q)9oTU*gi(q90
zXMIlJKZx*U^|>pwqUDMoDo%Z`<l0=D-vwBunj9JGf5LJiSQEkL5e!?I$Ly;k_>5h9
zujI8Rk@TMJyhQp778}7=5v+}1TLjy=l(g8dX$%ppi=fkFXIiPhLFJnw*c`z|<v8S6
z$QI>Wnel1wwZgCA4wZiw;iI9Ac514lz-X55iQt<o|2Atsdn4GV8TTu)URJ>Z4@Pi^
z>m`C{1cxIy62XrVoQU9P1YN$(J+8{fBKRSKe{aa6$uSqF=34fX5uA$PBAr+SKdI*V
z2!4*>wDL2GY}?rg&S`u8U!}i9(4e63FIBh@!LLewQ)KzS>v;a5S^iYK*73hp;UBg{
zJ9TYX21IZ<f-oiPa;~Vt)oeM%5d^b5#PM-E(`}WsIdQQF;t^!%RHH~lkc=QjubZvw
zT6I*u)?lI;g%w4KC`v}*iozX*CyGMb-sf@3WH@I!gpwt-o8LCaUn=U%AQVNBQI^9t
zmyM!f6t_fCE{f}-C?7?IC~8JgD~gIyREnZn6xE}s9K{TmkADfN62<jVeDkt>wm7fz
zt6oZ~MnODtsadr;{u`n=z0iBGZ~j*=*)^hA{hGJ^7;jD|-;Gh!jiUdTKJwa8)QN(m
z?UiQ4dMd9U#Z6JPH2e*sxS7?x>iyt-|E#@!W(kITjiP)hJsynWp(q+h(S)6iq9_V)
z6iuVJEsEQtcy+!vCklTQxl!b=^!uXtJ>zvXF8XYnmq~UMdF<eJKY2c@_`;hRY7?79
z(OmPkRBWMm2W#ozKRP2o9Tvqb1uAc)c&C<6VIYduQFM-?3x_m{Hk#TYindyHyC~X6
zoxNY9Jx&9*4zf!va4PK>MJLs~JBoXlcd*@Tm`#PIo&5ZmTGuG<jiP6^if;7(QS{LE
z)ZTBe8U9~;?$Z+PkAgqYGw%aY^ooL2^kz4=I@MJeWi#3*iie{Z7{y~zJQ77;%{3s3
zeoFdB!6s4p{So$w_Wsd-`p6&Eq$Z=BCJl<>aT-|TqQNR0qDc8rCBqcEmG%u+ohKBj
z-0YG)ie~UdPU#rR#PDPkPet)`6wgGlJ&GMsJR8MxQOt{CeiWml7!$?YQM?ny^HIDI
z#hXz~{n`6s6fZ^baulyb@m(`}+f0jiI#p_H)bT$(OS^6vp7$zC_|tib$G9lQtDO8b
zC9f;Kp*TVDhc}J4qL>)Puwi+VqL}++p1V)pwe0Uk@gB`PikUQwk$ID&c%N;EVhWeW
zl)?=O@8=DC)3lK3Y<6|~y(jWYUGg!B)y;}xwkFMq@=XFps~q#+Ud}xc)#gU=MWb9+
zv>=LwQLKsLbIw;3i=$W`#fMQWiDGFKA82-FS;q0Xt8maZ|I#|XThcj~W&|i)5yi?V
zK8fPfC{{)BQ545#SRY66PmZ6zPEujQ0tXL09B7&@wOWh%j7@6p=lD#2wrI~--xpDQ
z8O8c2Hbn7N6l+!I>uZ%pu`Y_YdYh$YI(1#@>Qv3>n+@!ZQEXD3ZBcBFVhgQH2WL?a
ze+&4y3z}~FZ`NF0i|hw-O6`ndR}>ecxD>_iDE35gCW^Ck6j6K|#la{JX=&d@u`i1K
zTo?2?!}C6!?|W#qFEqpYUQ-W5QFeG9hi>Tz=jE}7qc{@9(I}2Z!I6KrPu{LZr6vr^
zyJM#FJba_4@_x{s9@o4-MsY$3lTIo*rTCNLX~pI(N}h}2JeMb37Uzpo@Oa*@TInxQ
zT;O6HkvGsTJUZXo(JuUr>t(k|1rFw)QT!Ff-yC*r2Iq*4Jdi5Ip=kJwdGF8Wzmy-&
zn{_qkauiphNJo*0;%XGdQADGNsnrFe2uBf76ADF9-(7Ixai^QCkt0vSp@>J3(pDv+
zNU}$dJ7qHbGAyrdiB><C@)<FhF?eDq5d-B`47WX==Zb;NU<n*0cg$H7G|`eVl!`%O
zP9Hg6S7%y?fiuhQ&?X}_{q?$(EE_|)7@z&a-7zfNU|$zQ#TY8ZP(FqVDyjE-bIKdG
zysdH!*T+ydhI%nniGhDay&;CenSrXxt0_`go!JjKe^VWN#aknWnlU~=?yaRra-)*k
zG1O7ArH7xw`Z3%TLtYH|F*Jzb<``~`p)q?D!!7Jf>86ch*t^P0@^iDiGsWI3yK;6`
zYu+RVZw&qzKEB7dH0f;`Lrx6WQW^EduyCxmn=~D@)0@jeF6Z<*o@2)lI_qQh^HaUI
z#n3E<<}utJ;}^8O46{e)6I-yZ^8WPqId^2`En_H%p_NAORBXeJD=AV8D7IE)33qX7
zHsp}BRY^O=_Sw`9F?3Y^ZK#Mk_r%aShEa5qF~_ZSiJ?af_bKnHcyA2dl-&4nPWKpy
zRJ%Who+|7c!{Q0f@_#_1y%c*ZQuv^fhhpdx!^1J0yWcs!W_Toq+FcxL=@&!)7zSkZ
zN5=4I3<G0$j7IgdW01pQ7^JC#vpPd!7^?icz<=*Qc|3;U+0-YLj8LpO)W_ELnHhLW
zqi@IXP7F`S@JtNPs${I<bBe5MbPQv%{COoW#PDJaFU1fO(^sMC%PM?Dk<kn9ny)G!
zr^ph<$MBl+*A?H0VFC?4hIt=&C#vKv<<EayijqkxAz7W{?1K1-M&i3Myca`oyVLi{
zF-%b%^7mtyn&s1Cn4aY`VwkCXR#vh^52fdFPUCnoj(N1b7#7ePV@Sl1jA0R{EQT#H
zY~{k#Tq|N&8N<?S3ComxptxM|!x&C4@IA1@w<?B@Vpx~e{5Xa$m4A|zd>X^*EdNZ&
znixJ;@`d6buQ>D0@Rdf_5|vQ$?99N|%GYNl8)DcPbAE1M*c8KN<&WK;&*-)ow#V?7
zYVJ@xMh_6f&KP#Zusd7A_e%D}@Qsph6~9y5tH^ry#js!b_$AJZrw%ATsCX!b!!aCT
zGtT->{m*+e#{Yliv`Xa+*yYVE%Q+sykF@F-&c|>fTiTfzKgi`QC5BTm{6w8mK8DkD
zaR>YZ%KFb{Q}3!~{;d20Ju06He%kvBXLb)d>@4+b48N)HcP_?zeSgMKa+miH#izIC
z-g2jZ_^g8I+q{3r@J|f?az-xaT#O+c!y^a1mtwda!<86*{;aT=w#3yj#e0?Rbc%P{
z%)rpQ3)qE_3dsjPXh&jvSqEYq+Zd?Ov&eTxk&k#?g{CYm6+@cdCXS*wGTPc2any{%
zh{KG-io+F0g*Yn4;f_1KE~n^GED=Y+5?{$UO2wUr01-!-ILgK$8qI0#FRf(KWZyIG
z?U@a7Dd~2dGY;3qQ9h0ncbLH!olq%`4_A7t#=)=GRaSnzViiRu@eLc*G_|_o4T@AQ
zH_BHl&J!@)9!JCPOV*B~jyBAWqi!7a;%KVT`f;2s;h1GZjouVT10_F|_1_%F7c&Db
zEBkJVqfs2U#&M;RkD-Z@#&H~P=wqr^qcd;Ik5qG3aZVh*IQGvB_~Xcpqr_TYt+Cz?
zPx|;80jB1$oJo24aoiTi%(VqGs`y5Ee9g4R=5e%$;|}F5IeKxtvfOKKaJ)g)MNSJ_
z#c^jGz0c*WT9)(Fd2b+&)^YTUqkkNC#nC2?o|?C<VwX6&#?elzYad64I688&rg-m(
zJ6}`n6vy3he77ctV_tQF&-=W$a~yk?<xt_-OwPSp!hMR};`qFu{nyMu_c*>Riyj&!
zxnEP+sx9yMABdwD8<v&yiQ~aI9*X1j^0}QQ_qjYD&6t`G$MHzqd04%#YL=Yk?D_`8
z(du3Eu{Z{)@KMEqaRgfY_uYZPDjBLcB#z(oMaRrIERM%jNIpD{CzOwfV<bB`)^C02
zV@O`{KNZK*oYORJPUD$4o~1$(qmp<oj?rvP0`Da-CXVOhsG2~v1YU^aMVen6C*yc2
zj+f(n<qH;YF5(y)$NO<ijpNlg#>Mew9B;+(^*Qf&4s65R*W-ANHhH9|%S!v}y1qB!
zeC)(KfhM%VTe(*L-(Pso)Xke1$D}ykj^n-gcHScU9X22izTtcdC2=&bo<BJbzAm1D
zoPp%o9rmfU?rB=iv28iC;+U>{MjR~m>y7qIt%ziH9CPBB8^_ia{&|Y`uXPvI%;&4&
zC|MZCqBxGmaV(C-ap&dU2Wa_Q>?JyGOBI*J@j)ER*$Y;|=~m&2I6hUfQjw#*Dvpn`
z{Np%2$@1nKysNYPvpCi$|6Fl`zIf`ZIM%XZacrYd<r@^&DYE3R<5;hJit1CcQKOp_
zH!E&Y{Q0=EF1E+9n|7;`9dYbbvP+Sv*EGM;=w6OeR{ot5R<SQD*{|e#&ab{f>tGy*
z;y4_4UWc`;dOl~0FJ?ay2jAv*{G^|6elFT>|G?!R$6rVDevHH0*3WMx-(KIhYNvfF
zj-TSV7{{eJPRDU3j$h)qz@d)gTpaC}*+0i|o}RFKV0x^u(qNx!hrM{A&8ghc!uKo9
zJC1+iApboMzMuKUF?_qA{YM<Nci0SnvPR{9v)7FZ8`RIEkS+X|K4-3%Z*ja#UqoL`
z7oEV>IEv#4vDtA%x7d6kRghj{tKI1di)B7_F*ibM++ru<;9y4Mh{X|)<I!dIZ##Sp
z6IR+uuAQBBDvmUbt!>^@E4-ZI33c<#1gr$gBv3X1SHiJ#cLJV-^TFtL&HP`luuCLR
zDgh)wUNV6{HrphU!1<XzV(A1pq!coIwau<yHNRW}6%weJz;y{+I^jEVF}HledBYfa
zr36+~3NT!+q;djBn>Rl<%3npJnbvuXR!`uD1llIhE`b^e)J&jJ0=FhmD}iUM-1-UJ
zq~yi~zWXSrHrM;HygG_?*}{!>Jw*x|B)~Ux-CjMHOS08s@68Di8zyi|!g){KgJD0h
zF}s<-9SO8dz?(o*_9cP*1acDK`0#EeHvwP5c@>*K;e1NKT|K|k5}R^6fqla*5|-0w
zlRe>B?rjO&o&ZTR#pa5Pwoo!?Kz>02dw1GJ2?P?LX|+n=PL;TJ*@X%GzSADI$!?v%
zT?tgK;%~!=Sm}6`^K;c2=liDr<ZGWmhXkHv+Y;!=$=YFePoPHvof6=C$?i_z9vzv^
z3EZ1N^Tl?T1iB_1C&u>=zfx#(^j@o)-%XRq?@QqR1O_K?xnlF4oS+0AW0O|o^h!8h
zu1^A$p7)aU*64!?9NB0;l)#y)`4m2^sgEf3RqUtOUvYrqqlzqKU;^vv<&iYmU=K>*
za0!qMNnmIK!?bobU}OT1ConvLCsgw54?YSRMkLUzMn1`?#DBh&1M)PxnZWA_ypcfb
zh4!-vJWp4z{J8{1D;cB6)Vi|*FRFRGnsC0^QL<g$O9{N3!2EOGR}{Bz%pIG+TibIf
z8K*i_8=t^y3BK7Zm%PjtFMTz;Fd>0AxeyL|-=YaAxpDCA+xJ+L5_nsq?<iInVNr)k
zlM|SdKrDfH0`Dg<m2*m?O<-CA(-ZhIfv*ynk-*FZK1$%@1ZE{LJAvg1w5XOpCxN*M
zET-{qvgfg#N){?EQ0%bF;xk1|Wmu$=p1<diFG*mjMwcm4@&Qe5R)B=XeyD}7P+Y0F
zDuM9%9438|z^ANzd+rwrEbHo9oxmC{;qCTkH1#z;zFmLuXg??MbDdVoxvXe`rxx04
z6WEl%<^=wiK>M$J>$m_DSf6m*5x?C)^WKoaMvXqu)6XSC2epM&Y_NAEurq<JbQfFg
zvIG6wIK^tNd=oE?c2@#?rSmrl)Z1n6PGFCAhi#yceYyK|4&{5<wgi4k;B*4}6PUcp
ze<FdCT(AioNT5xB|G@-~aZY#HhZ6W}k@ql{Ptbcr@u=bp+igmINTC0CZ^3-~cmh9C
zf4<F7cc-t`Qu~vh{((omr?_f1c)8fmByg6qw%z_afpheM30z3vSB~2_@6Xy1x^D7c
zXi*F7ReP+NVK3eFZ*1N?`*+1Z6#rEGOEG!4h^hZ1@Gpnul=q@yn9h@HLHU&gf=aF`
z7IU>u_EWR<rQFYs=7l)^Rr48*XlgV83a=$45=bUcCyBaAq!LKeEhkYaiA(}U5~Y$r
z5@ym_+U_LYTH$B0RuZlxcuisW)8hy|NtDo3@{&rp(~u-eC!L977WT1B66KQ44urg{
z%6GKRqX)Y#>G-koiWL+&M|U6fR!%xTp?cEk@AZmRlBlYLl4?mj6m~}Yh9qhvQInM}
zuxlqB2Yzm}zg7~&8x_yh%ztRH%_{08Q9p^+N!*phO-VFJA}@*jByLWkVG{l%`fPXH
z=`HN<JiAE}jgsJXpW)Ud8Y|~BU5t8@XsS9niatf!0CSz@<$xJC*|s7VAo*=c=L<o1
zB+)X7+mmRP1h4YVH5bjMg+{r};1;ofJJrvf%|Kxi>{=`B?48Q*E8X(_8u>*@1d`4b
zbICit6D#aCNwiI(YZCV+(JqPhN!*>pJxR>uo3gg$bV#CO5`1-Vr=(+<_twlM=O=qO
zyfnYgN%T75c<(OkT`A|9-YtplN%TnKzNGWHA~t}U^riPF(KCr*Nj#oJVdbU|Fk=$E
zlQ_P~ZgtLDyu^Mmi2+HFJfuj{Cy9rZKcd(-EAOYIe-hOz=TdF)Ci_uJHrWFeA4_78
zlEI2Y6o)EO=Y?H1-S6<E<CaGx@zOT?i6r<saYpH%c|m+KiKjTfDcqI9(@8v&#Dye&
zP2yQ@{+TO@1xbufVoVb6a#)ghK8Y8Sc$1dHDPVy*#jhltOB?q>d?)J59M97^+_Q~M
z;#Jm_#P}rM(CK(BiKE+WuBq2G`q@SwEr-zwI%Qm0?p5B2H0Gf9?IhkwIy=cpNoT*r
z{W(hxeD9r!mgO$xPEKM<5;HhuNxYu~t!RCrJ(YG_E5Bm7mNeRFNla&Su1yPJA+wU0
zoy43Z_@YrdD{gOoPv_DLvBtSc%u9kV@<kWhQzw665{r`9n#48^U=mA`p#S_hiKT3z
z&hM%uKA<(uvsWa+uVAqK%ef-xR~6a2l{(aP6dYmhV?Row%L4n(jrJ!=e3}HCw>pV6
zNqkOMpiy22>9@Z~;!B$1GJBokS4sR&2_<Ve<|lmD2$A9IB-T?w&rdcau~GRZ#m!my
z7A4OPwYDd*BZ-4a97<v*m(qOSHyq(4c4@D7CsF>Am)+l^QC@dw>fh0WZLtp|u{Vi*
zN$gMJu`TxZDx{p;I$A`+kSK-2oS+T%k4c=MOPOaM;S?(&KbFJ~%AJYO>7ejr5~nzH
zN#~)dpOQFDFH|l63@a+tl9F@ZSo~VbSt@H_5(ATdR{dWT&xoV>TN1z1Ri;oTg+G$`
zlfE|zBZa?`_&bRNXJL$&bN5dYE9?6&bLx}0s1BJUz%AURB)-1r?UulmBslL^6-kPf
z1QkPy;UpqTqKedsB@tJiuAa|ml9vFk@e|&gIOAXW(lnLo`LsGS<t#cY1y{;3QSJ;m
zV(yf)1WKlyLGz?gBIRr&n{*HG(oA`&6rc*CNXg@y?XoG9qkanB6s}95d<r+DP$Pv#
zm%J5HxITp{Dfmw3R8*{_SUH8dKl*sZ<Yu613e{51QljNET0Mm~ruZ57Aa2bRYO$OY
zZcTwEdSeQ_$+|^(?G)-LsjFB|vA!ZTZ%Uy-mfxI0L*>uSDPR&y;9c8KrCV}I_MH`I
zoI>U4UOK?0DdeP3kaE1bF9j~Z=IqoKuRn#{l(T~D6!KHJjXc|T`Vh)*PobGATyqzc
zkT7G56z<RxS}Ibq=n0FrZ>`vv6be%qST(<h<FM1m8Rtv|QXul8)+U9vDJ)E3Q3~x+
zXrID}6h@}dA%%`9^hx326gs7FcM3gIcp!y)Qs|t*y(#o);iGTio~H{lHuE!dRbqGa
zbxWap3T!Hyckhy%9x2?%EK73kS0v%b3wot6bGW~E3J<1mzEUn{gcl3m@$rLV53#jJ
z9f$l#3Vl-;mcrvH^h=?C3WHM^l5#c@yb~Fa!lTqo;W5tgTrcm%IFGzV9h7qRgbW-p
z-kA>NICu458!ldqD7pT0PRWJ#@D!flARNx2klV0PDLk3NJ1M-I!c%nqDU3^Dd<xH`
z@N5dtr|?1w&#}#6F9&V34)UNS_LvkH^?mO6Ko-S2-xpKPt>R0HBrm7%it@3FuPXBD
zz@*nW!sS}NnR4#aUuW;O+5UyTH&S?Sr#(SUh~%vlMlG@#CbCmm{<ae5a-YKF6lSL|
zCxs~~XWud{h3P50pTbny;jz4H_sidJcDg)+R$4!g4s#}_yU>x$N;%(SBAJ_Vt_94#
zAcc9#=PS<Z=i77I%SBC_S)9TW`jZs?PGM;Z%Tm~p;&)o{K?=(`!t?F_rJOT?4^vo`
z!bd5rNP!-J1F}-5gO`AhQ_f{^bqb%+12Bua`cFC97jv0$4M+Y{?^m?3$^Orkf1&uL
zB9mxuYiUTOohuq~T?${Pzz=n;=Q6pNyETOkDe$X^8x=`5v6h25n>D(Hmb~4jkbT^i
z!uAyY=iwWza~R!~!fr0H6pp2^CxvgQugdq%v%gK@JDuPD(vk~#ZwmWTczsFE++Fs5
zn))`IgjnjN??4I%Q#holhiRWW7h4wEy!R(^kMu(d$7$yrq7;5)!>Z-~lybJ0CpdcB
zb5EvlDg~ao@ul|+Og*isXB4S+_8KA9%xCnM6g)ef!<OGtxWMtOk^igW#T)Y3?B96_
zNa4?vbN;}p*<d1@@ek*e7l<^<rg1TaODR}sxYD?s!j%+aDHNadUnT0)gi{D|mQQ(U
zMO?5XA)OkMh$=)CIf=D8<i=A-q>$taT9uPdf%_949;TGg8)TFiX-94<l2Fr~cHDBw
zG)kqN?_he;puLqy<CAr6F48Be=U?jQM;f`NEotZSR631Q9sImB@DDHL(zq^-8`7we
zM)@@UDbun_8dcNiz0<CsSW&T38kLn?pLU!%Q|YFvrJapO^|Z4=<p}^U98EUck&E7%
zY1B$P7x%hpXDP9#bj~-X(W|S!b{cikj<2r&tGDNk`Mh$~OQSwpzQyK#;3jse(Afzz
zWJl5nW)RAtQ5v^$s52;+LE|)<q_H}U&(iRw(KL;x(s(+JoHTrFUK$Uk;b%|NxGRk|
zEcT?&PUDWWa~F`8Mt&N%rEz;2Ez-{F;OR;;o=aP~&C?*~$PgL5HbE`ZDA1<1N+Y0z
z&AwAfVHyXy|5v1tp|#3ac+fVDc4^#`c2+0{pSy+jX>>@VV;Yr~*qszfp5A5g4&`o*
z_SoR<oJN;4x~6e&8uzEsGmUO6r(y1W9QIoIB;C{Kp%NC$C=axG=>34EF7NN_rG)$2
z?OSZhA4;Q78Ur~6?CgAB_s+hD)6ORFku>^JzSZuR#(*@sKjV1d{%ObYHak-Es7iR3
zNBN+%bFwrvjbUl$h-`2gLv$*i|Hk6Z|8WlWJnx7!c*Zq64W6()p%Q*ohu<t1sq#^Z
zPbyMvWX;@X(s(wF_tTh~#&c<mPUH17-biCi8fCV4UrytdG@e)fg5rycOnQm4!voJP
z-myAa<2f%p)vw}zmD7!u<7kkh{Um&m;A?5{yr{4QCZwIs(xf!rPUFqAvuArNjaO#{
zCenVo2RO@I3%nPmTYD#schh)}i>0T3isEF&YqyZZ4_9Lvd!Ylkh;3eyGb4=!X)H`*
zW*W27n4QL)G&n5t(vCBv0&RY7+Ho4>^V6Waqu*frx#xUpg_jpTUZ)nPu_W!>(JW14
zRT>|$!D)Pu#&Q)>zEa7DX{=!TX9XxBu2b@H+PO*pl$L)({wG`rTkW?O*+fSFKI>hR
z#^-6APvd7AVH#hiu``WbX?&H&+BCLu^!T;YG}h4-q_JM@md8gNE^Zz;`x{vAQ7?Co
z^wk^FAZ}9JOc%Gy-oozev?<)i?92RY#`ZLJr2ji1A968=I=j=@pT_re3u%0#7Wggg
zd7O8j^6wP)roj(1@T*k~3Z0G3ckA5TR3G4iO5;%4@#hSu(>R>Q5se;A<M^z=F-5xW
zACypXT*;4VoKSL7@s#3Eiqzrl?U`(uXRi@OewOH$G%lnONh6xZuW9_oR;BTmnmSL+
ze&<Nm$?I{X=#MlulmeaG<!=7J)3};OF<oUE|I+d9^j%Ejijqr;lw4NApPYEW(x*%=
zjh~-h;v5C(rpoz4X@r%Ko4c(T*L5?$m4PdRcp8Z`lDeFYjI;JrX{6K6nE<zHnKZcY
zuQ>!Rc2gA|NW-0R&PI@dWZ=o5L<S`@xH2nHDuaq6EFO4%w%sQ3kh65g*;+KNo5%em
zH+5w)&ZeEm5!Yo<K7&^>7@I)_=E~r~3?9m$606AI?hNk9;Q9=zWKhVuGN_tCwG3)z
zP%8uOGplEuOCGnHH)IgpWY@?b;c<>2IAV0OH_~rs&?JM}8Pv(3ZpQJw42_i3Q>>rC
zO<8#ZB{yf#P{}QdJkr0G>sF0&Bg(sMZ^m&%z6@W{pW8HpoQ!j#NHs?N8RTlJok0sF
zd5YA}&)_!Yw<|VNY_3T6MFoaCG}=<JK(SQ@cPe2jl>=<vL2ug(+9_$B!Ce{WcRe0_
zwNb)PYI41|&p0=v9XU!$CRBHBJUeB;&$;r%hC|djgDx5LV#yhF%{Y7ep6nn=2Hi5~
zp80PFeqRPXGR_ZVO{67fkmP>tHSe~#RB5a9^Y>NH=LssEIe(boC8<va4`(ncgC{e1
zB!j*g49;K(%W2{3mjQ312D09+{{A$Z1Kt4{@QVDX;*5>H$1;x3q_q#qI3~xRY3Of<
zW-u&+$1~1dA#3E__i#>Y_W*ZIPh>D6gOM5MY=k!myul>tQaSgj44%&5r3_xq;F%1b
z<#73P$7Gz%Ket2AWiVPhNZ-ho6Q9pu-C~<MFJ$my1}~JvsM0M<9&;{9Y$R_Dczg0{
z2IDgLJcBPX7@xsw9F`2GX7D<VIfIETFoOvhyqUpUI-b1xaDT#GD?JRi@y|EPeLI88
z_42rpo|176%-_l2-3;E#fD3kV#&NAQHZEaCd4jQRYu>aBrgK0tSdhUCcA=S{xn?r&
z>;NZs7MICj9~a>44Cd%coU1rbk#e4XEX+7N>Qxzhl))mcbaBQx)?iqY!BXYR6hBa0
zuK1zi3dNO*$I7;3mX9-h7nW1t>I^<*U%L6Z$K&OXef)imbBg{M6%OXC$>7mD{EU8?
z!B-g^$lzcGYcu#?2D>xZ!=cXL>kKw!oV)n-8LaW<Zp?t&i4Dpb<u4<=?(ibGIfE@3
zY|UVsHe;t|*{;}jgvIPTl=J6u@?D%bIPLs~gUNPkGx!Or?{tLsvu)M#_hzt<b#2e>
zu*oLUr1`@=hn?G-Lm3>-;4Ez^gCiLn&EUt3a}3K33|BY1b1Z`&wEM>uDdA9@P#vnB
z<m$`vpE5X|<!9K!pM6v~Pal}!^WpeIlelWQ)%k_1dqvI##a}b{O$jADx&2e;>z@q%
zWs_>=|HT!NaV|z&>BNil+dJ&biX@kmT-ak>QF2wWIGfsWgB{Kw!Vxg!Q$wN|#4;FQ
z$fJhD=`%C%8<J~CGJ_PoiXpcclFlGQ-)l$}LkvSqL&_Rb&JgZiEJIv|@T$%I#@cQH
z61O29m5`TEQj(tq%}QX1C@-Crlre<kPvw7Oh1VHEA5y^(9%GhQEQ)xW%nnpEgjmUt
z%1X%ZpB<=bNHs%lG^Dm6yw9p`2$xk2Lw?+2-Czg}rr%oU)}y8&wG81MF@F$bw2mQl
z4dIoGpSR<kW<5i0GNgeayg{h1$h%ScH=aP=YzVg^3`}Zd$gPGnX6=S>F-8{nXzKjB
zwAT>cebXwqr{V}SH6+In?znh^<}-vlE`F@aHYCrGwuZDbgl3j+NJ~Qs47rV+HKds#
zTsSQZq0em2=sd?1DdFM&9V+BePb<#O9sWBFDKvypdZ8nA@`y#8g-f{sLs}bh5-oWc
zdzVTmY{S`EX_K_)@EX#^kgkSwG=#pZlOcB-!eaz3t9uOLjVH&PE`q<gcQ)jy*#Vw}
z+-pcTL;4!RT^2vN)!mSX4dDXmVF;rP_Zf1(Aw3QGty(^#52(DCVsFI<6(3UUqsU+L
zsriT@JTJ<toJ*v0>&G$a@9S^K#N|1>aTsXGV}`tA$h(FNGGwqJuNX4ckRgT)W!nsS
zS_hn0s9}aYZpd(so*|<QIqu6Hp~Kr>ZzX6CBRQByia4rtl}{QHshLl2@QfkP8uF4M
zFSDWz_H(ouLtaomT5*ix+>ia+YvofRr&j)phLD%vY+tIA$I^IL%j1z(4H;+1n})n)
z$apr4KM>H&mfEi=f87w?kI<96VF=v?hlpPB^lCr9kvh?kNnCV`Z9X+beg0(gwjo3g
z&U;igWWFH_44GmGjmqlf=kEgV8#2|9X@*QUWS$|R7XBHA%rs<<Av|Q5Wk}U?7Txb`
zLyp$VqsyH=J3yRk2%nK);L{O2TpHFnZ=oTJ4EfNI6^8JbXt5z5=o01u<`P4e(z+@)
zU8YFFy}>A&A}1Y9@4K4A9r8-e^|2wVIQ7-?KcW*D=;s!WPjqmD$}9D1Lq6l=no`P?
zHHLg{$SFg9GUN+GzBFX7A^QyZ%8<2&Y&K+zA^+q0GURJR)~jjpr$eqF+Smp|cxmI0
zQ@lWLG=#IZ$q*iNGw|q)5516VHH3q?O>w*84#k~{OxmSnx8fc{zESdRHuXD0_+=}q
z?dM$Z=Kw<va+a6meb1$FI*0eFhYUGv$PctDhLe7t=pNyCj`kllgd6E&>YAu_>>m3^
zX6)~y4j&5QmtIe>cbn{!%*CD6Ci}D@XACJeBxuN4mSD&qhWyErm-)^ca>0;a*>{ar
zt(W%;SNB#s_jBh`c;;{s@i&^;M*DaAy(<1^OW-d<{x;;2A(svLhqkxEe~|`Uw&kfe
zeE+KN+Lz8{l$%eE-WA$>-8{DHD%Zt0FK=EL4H*)q12@Gog{Bpu2^qp4=%X~tEqsrN
z#0^Q%`5VI1Fgh{L2+f{Oj8R&C+K`MP6fzj5TvKqF;x?s(DPv-VGk4hhax`6&#}sm|
zQ=S9!$PuQ9DR-N4k13^1DPu~WDfy<9HKm*>bxo;f%5|ocH-(qrTBcMmg+FdqH=Q+A
z(UeN2R5s;$Q>vI!)f6rkIzVr~d>S6r7_FxI<oqR+S#B_;hUTrQ$OTK`ji&I*UfY!Q
z+j8nC@~TbF2G=*`7E>CTa+4_yOyMq+M=Lj*!YyAzMUt_doPEWurf|>3Mm9E`HQq$g
ztH@|mQ*xC16#ZFwt|@kw(^uSP%IzF~Q(BwS%#`M)v@qok(-~N2vsX8d2WTx#DKLct
z$W_qFlsio+G^JtLmJPSr+da;GJqMqMlSQVG^UB*~i}x;5I#B0WUK>-|n$nJ)+HSKz
zZaCYU;`|Uc*XAonI-0`MvrdXMAs(Z3=CGUcuqlt2(v_8((%X~=IW?P{i$XV!fGIt+
z{d_p8rz!U-=N|QbQ;0kk=8QjJN-vJ^b@>b&Kn^&k{vlKNyG$QN5<dRa*OY#y45U3A
z@b))_XLtNzWq>KX7Vx>UM@`|$IVC(Zf6SCYthYw~U{i*h!n5lkrVKS@bg7oZOnICo
z6x!rG^y7?>Ji)=Nk<W|o2vbHXAEo%DB9opn<!R;5C_bymLrW%&G39wvifT)sw!C1<
zi!7nMj4CfLnesA+ROA+sS4<geO2-n?sf4_0$~b26$O|4BZ^~<?{Nj=eE_vOQH%ysk
z$#hF5nDQp=(2|;#yv1oU<vUaMnlj0hw@q2Z@i*liQ{FXYo+<N9dC!!|rc9wFn=<6Q
z^SE!18_e~yokwJ+n(}9>!nvl9Pg9((I74x!DYKL?b+##UvV781vwNx(Gg98Wj=8{;
zg{B;8<6l4Cc{;tvek?I%DW}YoFHKqTTkbN=__-+`n6lgy<9P0ermQq&mGTveJ*(#a
zI6F|Rt@=pyKQ`r)Y>l5PS*`e);u=#{Kj1WAV8(e{&R3?aHD#A6yP0arl@-oY!COsP
zX9`~!`?Y3Sued>xsT-ASGG%jCvW1p8#~GGw?CfVw3ENHCp{YBwI`j6qDc@sC<2iwE
zIJ`|9{cpMI$9uQe@_+MX;XYILoAS3Q|CsW<DF;kBY04>6jz#hgnsR~}mwOLoOFOLO
zh$%;v98>%un|j=oAG18X&-w9s@vWtPGUYU_Lgi=o`I_!=+Ihy5vnn~4)jzM~XT?Vf
zJQtMws`#7Y?}~pYvV=cP`HRI~bO!TaS>L~=T;xKqq_pMO#wAsAS#p_UYsyuP#<F>f
zl>`+-ieXbCN}`G^p=lRS+>`{TBP%g2No9FjNrsl7)luL3hhb&8-!KE4d~S_;6iZlA
zQb{RAD6R{5_Ma?yHR3H}$qknLeaI|pNjXcdv*eM>&L~}PNqN;Iub`x&C6z3xtbF_v
z=B}6g@8(%mvN}~QsiwTTqS40up^mwwtMk{kT9({sNiR!!TT<JSI+pk?$yK$wmejMP
zzVfk8`fsx2@M^oMB{`N%u3<KyX8rt|HMOB7w<uwOjg;JKN#m@fi6vg;9n>c0?YFm{
z^giCCluw0kueNPV@+`6Y7PM7Kz9p?Jxzm!{ELlCq`CRYqDsN^<b0w6tu;h*`Z)r(E
zmJizJF0`b`lDjO&k^`13YMw_6Z*2)pIxw(+_~@KK8%s|2E@=9CA*1aqX>ZA)X}+qJ
z9hcI<l8%;i(gN?cq<gmHdz5rm?4sD!l6$kM-Pnb?&eZhCO72r~zhY0t2Nc`y!Go4O
zWC_1g{<<Z7EP2?HVU|43$+e^}8$2iQm?ixzSy`s(081WK(qHk_IRP12xTH=|a&^H#
zOTO=z&v%IrvShF&Lp0-1#SL=;clOUera0V^C$!%0E*c{&8EMJWmONw0C`&jCPg?Sn
z68@X4>pewR<^;;j4ZQP#eQ~w@tR<r@X)rhNoF$Ah3~Es{#**hPc|i+gXJ5AD#VmhG
zNjuY-uU9M?tI<~#$7OZKYk^dF!;-+<z`K^bJU1}Gk~iu9Et$wcSZz<TWd1VW*L(fT
zf5~N~Z(H(?B_9nA6vynoa|1t&D149RXUVinMN=#pm=kzkIm?-9N!jo1mG66rGc1{D
zNoSXIamg%8W?K@mBx=bVOXga#%aYxe%wt8Cd~V4X+Pnppd}7I`maN<0TgYLwWU(a+
z<_1O$b*6QRB}*+?X2}Pt{ITM4#Sbl6!P!y%ks|e1DOpv~`M1mJspf*1<Bler@~>O!
zU2Vx{w3hn*HI^`tFm#LhzqI5l8m%Q8ELqF!IvTw;_~@C}aV74<*KF#Lz`}SQk;09Z
zy!*Lt%FB71EZJVxCTA6!wcah9QzhFJw<|Jrhb23+{K9#24;KX|*OE&tp_cz!T9hRR
zRN*^I+AjC*Rld)X{Ysv{%lW^_L7ku<EjgjWLv#yDjwl{gJf`@A;&DZ0EVaixX~`)|
zez#=P+`vy+`8g%070+05Rteu#%Pb7%HTtvSFNzl|`Be#1f3u{N*Ex&$LnVJI{-yYL
zR_7l}{#9OYwR7ot(B->q$rVekQn=sFUszOZNsxRm=$y~Y4TNY0%Y9)>$ZM8s!LN(1
z*x`>^5~nwINe!1IEJ<1-E-CGDt|=+{aF>*FIr?e3&`x$nt210;s)D8HQl!3HiN_@+
zl&~%enF|_S)!5{>LKvlOmvKo274|47DC?4PE{V(yT&I%qip=<Xla>`-a%gj2C6!dp
z%CC1xl`OC7l4@CAT}hb+W=)sWa!E6nG<V63E~%~Ze8oC0$x%|*CH0ilcS$29tnnt7
zG*EuCOByP<#U+nUbetzclP{cqo!qMO#x7~1#H-j;k*U{|eH!(<BsVL!mE<YD)5G`V
zq{7==GBY>tc9&G07x?#J;eEg6v~WpFRk(v0=LPt>EnlisflFGs<W7~hbxAuVg^EQk
z2`FK`tzB|gmbY=qb>sf~|5SSwc2ex1*wH1o?*6YwcdO(cm!uaulCCbf*Cn61WQ|L@
zxum;G-gL=ZF6sNNuZK$>cF7~Ef1gX<_{hB9B|SCDj1MU3rP$jg4=Q;`v5z8kUgCFT
zT++|wTn(RR;i*#nUGlg~hO5E=j<ZV!y5yZpjz3{|Oyz?V2fJj5lA(%B9j0VXjoc@c
zJd>4=aLGuQjMC_nicc#(<r2P|iy66tB0j6a=M+b~WQ>w71)i3zopF1?B`>PvCB;`=
z^0Jaw6vryIy3ZN0amvRlzLp)>*Ev2anV?9u4ZX~XE}7(#MJ`$FlDFASm&|s_9GAT7
zlJ{IP#U<~%WU@=FzjB^j?<XOWPj$)u61mf~oT3W3<kOYUP@I`9f0hz@&bcm`rz5=3
zCC_!rpYIZ0Ru;JAmqP`-(D0JV=-u<2{V?ZriA$EcWSL9&ap6$cyboNmT+4ZTa>);s
z44oHPtz?DbO2t)*AGzdXC7&p=z)yJxRHuk!;ymX%`?*WLaLHbm>~qPNF8RtOn_aTS
zC2P5GzVI`wW5z76QZN5&m#lZm2A6Df$tF#rkZS#cJ|b@x7~SfUZ7v!8bKXvuY}a~s
zWNUwAyYrXuW%B~Po96Cv$!^+!UfuSn!Z$AYHmms^TcRVd-zDGE>Na@Jx#W+G|A0$=
zbjb;q9OSiim9x?hx#Y0sI-+>gCC8Nf;F9Cn(zs_nrdPm|T#TE1XH|Ym@u#fLX(eYk
zl_&pu%VLEu{O4WrVOjg<tWJ{~>|b5-n@c`-%NK6>olW8zbW3-){OOXv=(XJ9bIac@
z`Nt*VmeOwd*CiKS5_3u1B?AunF1aM=k`N2r<h!iJUUA7)CB=%nhdZ`SuM&1il$Q2(
zA>B)aHhH`AVnE(1zVyAFa7of7a66aX6xBvrX_sVJ(Q2Dp7sKtW9k-&X$f%{n<(53H
z#iP*@iX|0GDbm2G-2DfOC6{qaS+`VmOEvarzQ3GXu5(Lyx2(O<3?J}Sa7#taa=lwB
zx#f*IE$0snRCY_lu|?#k<^_mV-17X80H=HDhyEY$FUgHfb+_E$mKtuU>6Qj=xmio7
z<(8Y=A}5_cci*Uz+HR?%gp#^S>ba$UR#N+ElPhKVkihp1TTr24R(^|;MvAw(rLmGG
zie5!3H+4%$?aJ>K?l#-FrL9|X-C}cO+>-B>JKWOJE!>6P<`yoHW^UoW^mezjy1B(~
zg9FXo(n2#<njfHqNd-)DOKZ1y=Le{8r&|i$QluqtiBZDkNesAU_uv3)WVlO9W)<z+
z(q0>Ok6SvprK4LoN^B(e9-Z8Bw_8XUNTwVtAnB~iUDzbI-0PO#Iu<h2`LrbQok@i~
z+;X2=M!IE`TkdxYH+zFrzo%Osa7!<@^kz8^6b^99gKl}qEswaRuUq=KrOo^R<quOb
zKft2^MoId)rN3J!9IvUA9C)CR_^4Y3s+?J<`Iwf;q`_L(5Vs6<JDV#X?<w5!xLbzP
zPChAk!Yw1*vLj?)9#P1N<Mh$X@mAtVw>;&R8E%=W*`IbxryI=o-13ZDo^{J}Dm*_w
z@QzzXyJd_<pLfexx4f$S1;rN?UvkUKN?uXqFb>x(!8i_uO2#X`ruaH7R>|V|0R}2F
zyy=#=R7gHi$t1<M-Lge>*phcS`zw4Tynmd`zN^Cf*<4eVOjDfhmZM)<ENYfpX1nDh
zx9}ckj$7usWu;qwxa@2i=ecFETb9r!$9v~%t_6w<6&ERTr$o)AZdpMmv)<XNEpy8U
znzUSzk`HO^%bhMvUG1aJDz~IOjw{|@Isap~eBzc*Ir~j>KXc0(ZN_Rv-hYvd(t9zs
z?Mt_O#Rcw>3LaU@lG#(YTy@Jjw|woEgKjzGmi2Dg;FfRQ@|{~Ya-!X`(=EH)vYA8V
zmTmM%ZkhIG-d49nxB9OkqdT%fN*E~Ft+>Z6-*77Tf#I6|HNIDc-)kZJ+_GQEwIt>}
zpwZ0y0E;^8mLqOC@0OoA+PYqja}l}a7)My6*A@<=RXY1lxaFjd7<o_RpHlvlTTZ*>
zjPi4eXB9b^*KRj%y~+H=Ef?s?-Ez?_zjD&=Df*4hpX+6eb9Tr3?gtM#3-Aw4kmmg>
zTf*ON`A0dg@+|NYm)^lbl0R-Pby?->-*&uxv0H*}32*S1^hk)r?Oc2_Zi%p`Ttutw
zlv`qMiMyRENK&!xMsFfZC}f}lHPiIf$8)ZJZyO#lJx)26qT3@bCA?B|t||9;q=d)0
z8n$g$z-TFt(*SrxJW|>tWjs>OBM%J;aJ6zPSk@!F>*ty!UgwdCQ9lDyD|)1oNAC1U
zp+_ov<a&?P_sC5i8B)$)#UnhlsqK-f9;xP$>K?g4<+VJ{!3fViYIvlk$2kVM_ul3_
z32D&VccUsWZ;b_kIv(dLR@dX4I@a?z=ESMzq&M)$%^tbKBZD(}4Lx!T8~Lffxknm#
zq)wr;I&Sqi_o@u!jkS;_9`SmlsYh}&N_n0VpGW*ka<g*V<9J9a<Yy(fdF1viZ|0Hw
z1^@Yq79MBIN6nVnk^)6Gsg*}MF9?tnacn)(!z1^3q_s!x($VPVkv5vKok!Yxq%DW;
zrBV!4PL}H6k&Yg@huK-wf<Pya-0k5H1o`6@1b7CrSdq~#9_i|ldo_u|$dV$a5}Cx&
z?#^yLSGajW;C_$v^hke?4Dd+B=L#S2$b%dxkMz=LZ;vogUb1FUACEljk-i=&npQ}s
zM0~{Kc&CQb3d#E^KeZr0$)g?_=#gO_`9G$<14@eG`&t&J!=2DQ2?Rx=fiOFvXMqI<
zW(QF~P!Lg25hRI7P?C}}3L+UnB<Gw_M3P7ll$;a<$vH;@;k*6#&HsFR>fCed)~o93
zSFc|8^iF8)Knn*x;9@z@N|vl8=j=d-8aZ4$;^PMekDnN{NqeuekhX&D9QZh`e<Gy4
zU<U^}ru9zrm1Nyd9k{i_eva{(G<9*{$WHswad!uLh>}v!(}7+NXbN-%y&dS|z;*|I
zb)YXF{yQ+ifr$?EcVGZla94Pg0|On%-V_?dNOs_J;a@O5`$kx(f9b#w2ZoFOl_15T
zbmreG3Cl1s?leC%!hw+vurHffZS!+zv;$)t_}YOlZ^XY5BpK_#IN@bKiX7P(9`C?u
ze|&Mb$hSO~jbVzD9GL9DN+w<hrZ_Owf%y(B;91m-Pjg_V1G9urcVLDP>USokh_fA-
zn^xussT_z?pC>aM^kVix2lx$F%LGXlIj~sx62W7IB1;`0vWaE611m&tR3eMj?;WVv
zGxU=K8y#5Xzz^KHygFoOuW?|l13wC<C6#p!kgRuLLt5k<s8g&qJalSa_-6+;Ik1`I
z?}@Uh!-mKf2F!-YFAi)KLf*ukxlK3;tG{ulIB>>+vkvTZV3z}bIB?j3-HhZ((F2T3
z2ljA#eiYf8UZZ_N_B+6Z;4;ySt%n?N><|CWm@ggOIXhCOLWEPAGAwk&fj_xN+?hw|
zlZKJw!jB35C5mry>Vy!so)mIQT2Bk-a-VbHyaNw8&n5g&EiO86n+e>3OAcIS&^nM2
zh=(Vqt~hYbf$PjalT%j(hh2-`5W<PwOcRQ%4sRH#F*$YD0Xv-h@dpmvWA=04A5rcL
zvguz3^5(bxlWMOLS&te<@=cF(vAC3v9C$*pr<6-U9tCF_Mlz&Il3S{D0=YwhqCgde
zKB2-cP~cRMsUWPtrNFJ=DFytg*5yM&9tEa?#`mL!f-0+`nP)2=Eg1DG@G0;s2q-9^
zpjy#bP(fY=`4l`UX36~-k4t_9g?jRf^D>C+zF>4>Zt>{qCml~KD5&5W4*r)_Ou@EL
zypV$IU!sK-6jAWW=NZi=r}|A!6;<F_9VVwiaWQ*V@Hqv~3!(mkkP?C=6_iTrr4@vP
z^Y>M07E$agOGUw`f|!Djr^hV?pF1Pv6vP!|DJY|0!cvPmabRDqtb(tK<*-VdYz5`T
zn7o3JPyUQ16r4h4CBe#qN9yn$=ExDwCSQO1_N<D6A(OQi6;zd@Hyj#$Nx{nsNLZ@z
zTt-K#EBJb7)HgF)Q$Z~%8eY)ws)E-PBvs_7sI8!mg8d2(D0p2#T?PFW3{dcff_e&?
zDQK=RDW%@zuw0R+t+y0-AH?b_ICMYOK*8yb(PwWb-&XLB0+M$HC*O~ezo(!Pmsr8w
zzoP8;zJmAarO2CbEy9VW3f`TfTNje#Efjp9psj*-3R)^?@n>SvjnGF5KIELQhEx4Q
ztrRpp9yRyIsJB+oMgd86seY_rMvZ7E1)UYlIuQFrL3<$`1gUgX@I!Wj<WmKoDd?u4
zyMitXx;BV*Rq%IHi=<hDjJ>_|V#gxBW>ydWw^spqPX(o$S-k{FdMo@XuPhRF>8qfh
z^d*05Zg?OUPQh#ia}<1`V32~z3Z^I+tl&!pqZN$dO3^b%5??78s(}9=y!C9XU;p?p
z1*@lpha?ii6^u|2JQpidBgSV|BNdEN?1xu%{1)+R1!EPAQ}B&~PJ<$RQt?BP=-4^Q
zF-4-|6@1I+;vtGeiyzOKs6g{ZCJ9DA(aBFw${<cvFipX9`ii^YV&um3(0?@|RWFCs
zv7zT*v&d)CT?$qlj@5f7gE&{gJOvvR{KWCI6Y~`;QLt3O0`Bo}f@PtCMZy;gZpj;^
zxJ<!v1#7wDwX;_!`1Q}kDmq`tO2O|0zgMuaMx3pyrAo3!$dBxponW<H@hEW}H_qC`
z;JvZ+ybzxb54{@MsNiQN9|b!VY*MgU!FG03z#o3yqTm+=H}-|LDp<B9y1!q%X`yUZ
zw<&n8U;NJ{p%-3_&b(4?&##H!6ui_+r_C+}ySa!RL;Do)jWl~Wa<k}O?x4eo+52Kg
zYg$t#r@B;1r1E4RWVAECsZdq?uHX*^*Lf@jhh-O>;x16|d+qEa3jS1ZRKfep!p9UG
zm)1j@!+$aLEe^GN5IZ5tNx|3Z<!}dahG!I<Q*d6vSuVlE#Ff5rC2#fx1s4@uQE-*n
zOwZ<T$Zk0hyCf%gnH#fNgdH244Bgrqx~5=pt>}pdv626UZz{N@;DLgN3T`X7!?hR|
z`iEP)cc_{(dRM_cu3&?Vzqyweg-IS4+Wf2FKQSi1&s{$&M8fh&L57OlDz3hq{e+5K
zDl+DWYCoqF^QibD9C_tP^z7FmRvqakO@*%Fc@;0HfC{Gyzlwkgmx|#l6Wy*vJSyfC
zDeqS89X;e>$WURbn32kU`(ezhB62Clv-7F;Ir7J1f-3T=D5Bc?G@puQr6Yw@7;5B6
z75P;Z5QSnv6;Gx4(<(|ek5YW*|5FO9xO+aCcU~m-GL1tORZ&buaTU+1sJT3+*xc}Q
zD!7pwH?tmBOK_5Xqh(e6aVuPs1F9&kBE;#bh^oj`?YtKjym3E9&N8}&6;m<&Xd;Wl
z-cFKOQjH6KRk(Z^(U}_=3FTB|t0=Fcf{IFVl!_|8UK9RqLa0f<ctQn#kC;_DffJ}K
z2F03Zq*PQ<aY(hVI4`QGs$ztSkt$wN@iI?VMROI^R8&{-wu*OD)KKvXGrWpAJWUm~
zRJ^8wOYnt~?dcnj1tYJj;7=i6x)@`1>XOjwD(cb?D(b7aJ|Xl5S3$`1b&0K)!&Khn
z$om~6|J(|BCWabtKE3pH6Ekl0i!)l@RnbUAV=m3Ea6=XEsdnJ)ofRU!&ygpG7%dDH
zDos=no2qD6pgc(n6(6YhOhp$JEmeG|;$sz`sA#3)Bh`+7{-pBJ!qL_$+N#)dIKer$
zQBiVAw9ti6a$lmIih`$d)=f@%yC*lFiMChKf$P;V+L7-4FZ`*BPIA_r>D2@Fjw4c^
zxjEdGx{5w3`bv0AKN0P&qK5=nPZhl+eonTEx+^Dor-O<i)Q^$BH9SDYKozYICi<&z
z*URa1KlV9w6~h?kD!AN(h(ZPnQu$KI5J6s2sSH)|xXKY2LX0J*kx?o}tN2;PCKY2C
z6)KjiSfOI9ig64}6?0V-T^{~M#kVRZFdpv5#;0R)qRefwiYY=SJ+9u5O;s^X#Vn~#
z7vw3-5E6b6OTMPhRC$$*P@F9y1DJfCZ0bcS7OR*qoJ+Yt#mrlwg`7{>7|9aVP9{tO
z%Tz2C&g%KocJ?T^DY{a{cPbcKYZ$c525&|fIcv*CNmlWQqL8mv@uP~=;n0;1cGFrF
z>r|{~vR$3?lZu!c-5{LRIS)e{8J~G06j|-K-?3T6E)~1ExGJ`)_(jDw6%5WZ4@28I
z=WU_iWc8Wze`RDAkMd%{EwDqxohrWR7iV=31CpDlU!0qc)qN`XJKzj3^8E~BF+M0r
zg<XE<mQ-<A#Sx}Q4S6*Dsp6=LODZm_IHuw+73Wm!-xE8o;sm3scJ>)Y`<T#4CJhy*
z_Qg(bPn;4Zf*3DtRL+VS$+`pK^C~W=NIVP`nwJRv9=gaJxFovlgXk62zPQ{}af>-w
z#Wniye(bs|*$oEd(M0@2^rNE*60YEFrcD+9sJJ7U=dR#ALAE}=N&8pDLluui{Eugy
zZhatx$9h7uvl&Y+4Ua|g49%Vfi9>^;!KcBmfwyO>254|<(1_P6^7M5L*L&zByo+;b
z@MthJJYOW+t)cOZ1j%c=!}aHd=owRkSF>G2&kQ>i4QL2zD5RmVhP)c`X(*uKDGl|H
zMV97|J;@`^i1LR~@@pV&DIa@U!<HM7>Xq^oOgB9vO>B)fNEFfRgi}njuV0MJq8i%X
z&drNjo}VJcd4if9!_Ntlyd8*^&`?stOFCZGQA$H;4U07_(Gb#*siA|0jvB%mA{uIH
zsHGvQA*P|ch6<V;?Un{!vg4fXwh$vKOG6nAWhw4U>^<rzr-6B%*Lvo$Yz@WoW>?LX
zT~R|qLscG>z4AsXX~@y=>BHFZiHXV@k{n-+QfK^AOi5D}!52A)ixnxptf3mG+A&%~
z15-LvTy>cS6&`MCEcS{9juvjJzpCLi4IgM|siC%pIvN^icw58kn!N{kU3gPNUEyyC
zQmiM0N%$?U?3<DLoKG;);fDnA9nIb>jTsU`-W6;p_?}=R4F|SIY4hUMP!kQrrkvQ4
z@KcXM&7|5~@LJ*Q7DBkiKGe{P=d~n6XMUuiHP=hS@-^XUZ${eiEGDODllxeRd%2y4
zk2N?N$3M}~UTlUniqn$H!bhP_8aiwETEkfSit#Wx)l)++TCR<KrlH=!SQialHFVR^
zox6BaqK6;}n^;JCYv`k4q=qjq#rkUKr{N0?gEaKl>>JC0f&-`=jNRNGC4Mdn30vv6
z!5W5%>%P=5M95cyLp9KuG}!FRB(e+_eS{$AIZDIE1&PrbPRvh?;TD*ZVj&-=;TsKe
zG|bg7o^I4IO~Z5z6EsZJFoj#@La6#*iAfrGySt@_%_nOpRV|xjs<gI|OXmy?ZC=iq
z$#cIF>E9~Kb(|%9c6u$iOl+E`VZMe15~aCM#ujQ|0@nsbzug*Iq=9z@Oy<O;8kW($
z8vf%FXjq})2veell?-(ao4GeNe6L}ZhV>dYX!wCCqGj~(g6JB$_gZYVh97w@3!>y@
zr=-?u&^JWZ2{!mRvZ`|8$o|+*8a8qMsl-M`?=#sfKMOf?In1GoZL+p%_(j7W?sVpg
zTGloVziHrW!|fV=WrR;jQDosEc8I=HaF-y>b_@CJUTB|&Ygc2%?uGu)u%Dr;;h=^?
z8h+<090~D*6%8K6NQS)?r5QhMy5M2#Fi)yZMx&b6Q4Pm5++d>H9{r1fs^P4Lb6i9X
zCp9$PALF!7(G|6<(}E<oD<{rqIP-iCy}{~v4Hq<U8kd=EHYP4|FLP5rAIsVu{`g>M
z(JOKCD;lnHQ69#wY2ZPx3(w_9k>}nYyQ$%p2L4LzZ4LJ{^nBI2qv4sF7Ry~8XnvSY
ze@hn{|HH_ik{aqy-Di4dCe-nqj)xi^F;VL<bv&UXmky_n3%f%ZI&$mKbm%(r=-|@4
ze>|b+7<M)0(Cww+GO0Rx?N1D=Ww8nR|JIZ%dsvUr^Blw_L%9V#I!5Kors&mCGMF9I
zkynRLN451K7Qc{yj<NF+W2dC@>EO#To^=r&Px9yGD<_V<V&&ISKnDrSQ$n8BQ82AM
z!&#+yVI4)kwYwCR33JZHgcR4Yw?vH9=XJcGqpXf{ItKA0U^;pnPeeE|UIKKqniDOp
z!!yas6b$K@STxRRSep3hGa5v7#H4BoX6cCQ;P*rFlMzpqPtu@_4t|c6BwI&$9hJoi
zT=xn(MvqS<bX3&s*r39Apa&|^+byHN_SBO)a&)9*SayF==1@hD)1XpSn)or0YC5X(
zpd3d>4IQuO_=2aSqo$5pIzG_RQpc-0Zq~Bu>3CDeYr<>msH3C#E7t2e-Vmj(4t}cx
z6=J2kQQE(yqrQ%Jbu{GC>-M&No63SPFWKbp=;*mW7CjInzNh1lr(;cYG}UpYVooC+
zjfK1~NTqz|P%|CNri5D9m};(LwUWu|pcZ9$pnFE<hddoFw~nrIppSHXtm6}|*Y0p@
z9c^^9r8n|qw-fwxeS(G6x>sZEb^9q$XC34n1Uu^JB!o)#A$bs_<1;a<eI!KVZaTW_
z7@%XI4u15hhmPJ75<TUNcsjk(r`AVDU-1&1(@#f#9phfL7&(leoSJsP=h>ZTvNQC#
zjw<_O%u9oHe5qrGj+r`!==h4OtYeIhp*m>HZ!hFR57RMR#|Ryq%t+Z&oCBRXN(YDH
z2a$#x3^C@JxW48_;1P9v!};F}P0=x4|KGlz$c?6B0%NjAgxj1S#2}fZW3m{i8xzB)
zMrJxIPL+<+1UbTVA)Ll69kc21InkBeBl}}>xWP9>7U`I)W1f!rvIGlsEEF<<UpRKv
z-pheS3F2ZMOLQzv&t$ofWrF%^)`~RYtT_JJ<Kb00e$e?TGo0e0>-bT}9(r5H8XaqO
z?BwUdb*$5|UdOMDu5BS+hBoNfM2}sy`A<4F>h>)J%g?%fuSK$1#}+ZzD!5JX7Y?{G
z!Coxeb?_x5$#1&-DtiZg*e_0nxSJb9$*wjr#M=qpqRjSX?$fbf$M1|`9S8V(CTn5`
znFjMl*hGGavDY`wSCPE%9hPy9>Gu845uViD@SlPtM}_d!=wCXHGh0qd@F@-N_f9Z+
z<wf^t?gbtE2dM&_)p1V8bsaZksPj55bK?(+Uf?N|jb<g|7j<0HL6SQsPP{_ztxjC!
ztPaL_S--|CcOk@AD>r$X;vBx6^R~`Q0PfR`XF_-FA8Eut_BZj{7yY9T%dz~e^IbsE
z6^9f5>GmzCcV>bQ$4H3m@_<(X`>P#LY;}Ym;pP1a33Yz>pp+v@PS5jANpwEnYeVc;
zI>zTcy!{UXc>x{vpR0e|3pjy=KPFs&8`yp+##=ZKz<WQF?>RjdA~B>|_)rd;c-!U!
z{IDMc@pXCt_WZx<8>b)g0Z+nS@xnlU8T@I0555XK9tSveAjZObX^I7bXQZ`|;4j~X
zC>8;V0>yyhz|04+=U{uINK^e;A>=%FPJmbfC<zqs;3*GE0i}VL+<4iI5ReJ{?!+HX
zggHr?IZ?`qC=dgF1~vf}5C_Hq-vC)a8K4Q!6etUn1KtH10@*-$pia?><4b52fQmq8
zZ}J@=0rc%<zYnbv-@%kjW|m1-=Et6Z94-M+6Q~9I;ZGI8YV^F2s)8>Gvh`))w<-32
zmaB_WL-3V!Yq_ZXrl41W*MYjgYogZ{tdq9c?9ty4USF`D;G5~zw}7iMegje7PV4N&
z$-7Hdd=F>@G;33~G4S6kZD=sr@?N=~YjfV`38s=SjY<-m0nLG)z%*BO3*ZBw1JDs@
z3492Yh$q_vtz_hm-J?Z{+5fTq2xu)z8^N}M?F2s-q|GM`jDhz5+{XoS=!EaiMmVJk
z&s&}7VX^sC@H4?Kf?esxXs&L;y9=^=53X7{`walSfZjkKt_x6kUC!H%O8tQTz*x@n
zdc^^0`w_rE;B%>d0eqF#2MHN0_$4qz$kRpbx9bc|+YA#j95`p#Z!=&S35*hPwBQ)Q
zuLaq<!lMtkUXe#14}1%(09FDMfQi6-U;!`*m@LLq>EX3G|5QnGQKkSj3M4uIX%cMH
z#b8Ey%$Y)F0keh75uBTDod;BHTb74j2rL4Y084?z4C$g3Z<nZ8sYdc<6YHBu@|{`H
zWx#Uq{Q#Bdc_Iq~`#X*UtOM2qSI$OO0Y3n%#jIJm<d47_U~ai&33vRZHf7f`QA|yd
zuyABX&IaHonF*`xzEL<2SJfTg3~T`|02hI+z%SgJz#qUirW$_Y5ZKKG!tDU;l-ce8
zzN?(%zFS>2NfJ62X<Wu0bC2kZx&y#oU?2DUsN{hX6^G}^+)v)7?ASJC56a{ZF*v8D
z7?8xnz!BgiGY=niZ^`o~@E35Lxwk~cqcn5Jk4cx8r>0Jb&v~*uH3mOp@-%P;I1f~-
z7-NK=1&-d$ImftaQ}%qDvh2(1<EdT(E(3*}DD1=)Zav^{;2+=`aGl2j?(m>RD&7EY
z0=Hz}vC5NjyW{jfm!7`j(l?GL?*c|Vc@H2bVMr`*Q}$nOQs6$oeaeYF;JL(-zeSS|
z0s7|=zrVqWTux*-;c~+5L~f^@f>gmgf~-26P}00p1632QrxjiUXybH(t4ZQ<!Vu+2
zC(N`>zzJ`f`<(EnInyA!1f`l+FrU-TjTG}cQNW3(L@X%yv>==QeO-Mf%^AH#oG9wV
z^G>|rv~x=_C%$+?rI(63@vIZ0Zs$Dbw6`-!mD@SQ5>9YYUU)-Y5>2j%B)KT1od`M6
zfw~i!O#V((b>bx_B24~Hly{<n6EP<kFlC%5>x3mdE|?|wv!fDQ%Q?X?VAN$h?U?7%
zP^4QbI+1YVMJK3m?^NO-MJwhw!G)+Sn55I<_98MiQcgIw<f+1VI2++EAaar~J5kMv
zR!)56M0F=>IPsbjwYh2o?bYXKugI7+1#3C+su1ec>PPB`uW0sx6R$f_*NHcr;Fwe@
zIV#n2;!P*s5}SrjyeFi-U;`)K7V?fDJ^!u~7b5oRG)gN?g*0~JeIZTK`ZkZ=EX|uc
z(IU-x9cjr(o0|GiyuoSEC#{`eZfWC0Tc@4VxI5bM(2`-eO-MeL>L*UL7s4wP#ZFFi
zc4C1O3!V7XiO-zq!R}(vMZDVGiLOp`qw`ZqZd-bL&)Eo(C*I46-cAf~VxSX!oc49O
zFTGkI$?eIx_2UdnR%Cee7t&;EiUyxEuACU;w6_&!IM|6VIRS5Sf)hiW_=+*(j`OlI
z)QMqovf~*TLdFP=NPA$UkWo&IPAk{?+3(x@TB>867$@YLbSpjft?)Nmsl13xbYhYd
zlSSc#>AfjVOm$*f+J3f>=}ycLGBd5uqBo}g?>%XA7@wlgb7H=bcXs3%Q^I~*^&%%0
zJF&)zwN5N?VkujlSS8`KjA7%%O4;elMdA6<8{f%NGI|+o=Py?LLHxN|{K>4&9YLEP
zC8`<T>zr8c#8xN%EmDzp5nSI5PW&XBh`W*lZsaCvQ}$<>)g~u43*p4J2w@&$RR7|{
zHmPoR;#VQRIk7iwxx<N_!gr;W-9q*_@%S9~Np-*A0l|ZUhXi>nUWE@kafB=G!XOv^
zbmAy?y$f*{jyds{69rv(#)acfoM4u7!Rx|FCr&x>pA+|;IPJt4C$2Jh-0`zcoO9xm
z6PKMh?*x+r6AqIDk8(i{cTtd+q3`dNqXVySDP7sTtdE|W+TS#J&57%>Uv8x5cGHPl
z!f!iq$BDbb{}H^Gw)tBKx6;39g?amd6Azi{UC8aSGtVPQgHO1S<gDV!TrN8+TGuNQ
zxnJ_Q;BY~4+4p!1er^ZVW#@U#WnW5yQ<J(>A?Orz3DU;xf+x)l7j{X;@VVf3A-@X+
zTnM-jbm2*to$B+-1W59^@c80ISMa88NRjftwkgZWFm*rW0&lCHcG)SBrH4CS$c4f#
zJnzB_E);R0s0+`zz+S~%DDJXTN3OPIc^kk`p(me}CM7e;ivo9d2^UJb5OE>uLMazY
zOKblUT8MMLS1v5oOhHyTCJRZ-Wk)Onn70R<)uO4XEEmeS(9nhVTqx^8ITv1X;bj-H
zT`13!av_I<xKL51O^5Sk5+`5D1!keWJu}EF3ul$1rKFY9t17Eg#f2ALb{1mtA@Yd4
zlvHz}x(lzm@R|!XTo_Z;+B!8=%Vl4AUvYuKQ&W)D&I7ecRg<+{sN(|N$R&H-g}N^L
z?uBmQ;ogu1s^<bZC-7!^z20)6ewsHB^0o`_q?LDFc5rfu8@bTfh4wCVaN&Iynz-<x
z3$0xC4Oml`eHH$|g=Q`^C$=fegEH(}xa|8(u1iaoeR1ThcrE_Oh1M>#b)lWh&eClp
z2pMm@ry_pr0xzs|{wFScG&@Ys^QMI<x}yu7To}Mmtg3hBOv)rbb>TDd8<)O|tX)4j
zTvyKgUb${E|L!jIaG|I0-#q`j8}B96-hzDu`#xTJ{`jw)4zI8re;}7wE~cN$qHtpl
zcHv7GR?^0WAufF7!W_DHcxb2#!(6y9HTBjL(cvzPaN!#l#=9`mg;6f79uXZYt)sbo
zE`04m!QN3CvuM*&&rM6=b8DO!^!_z^{B-nN;cT7c!UPv4y72KkwlPc9X{pK5Iz@1*
z;55PMf-?kX3eFOoEy%u&rlsb}Y&qe1Lgu@$AgwH9R0v<3R+b1^D!9yr<w91ZTX!!B
zfA7L77mhMLy6^)}(}k@r{NlooF066kCl@xlu$JyxA6@Ul2J!PcE?mrh6~>Zxea2~j
z^u>(G&(ieW(~-?WHo36FDBopTY72v{S)^3~Yk!{DHW#)ttGKY6vF$?Nhw&1-BRjbI
z47}ZuE1P0FT1QECx^UT@O|tu*wMUwcxUg3U#eFX97k(hE9CYE3@ZZzQA52ifeM2pF
z`O}5)^;q{aA@aYN{F!sy{1z9SVDfk22{&@Namt0$F5IGLTsY&xSq4Vy<V_dO(GRVX
z;nvA(jFw`N^IQla7X>c~UKYIK!c`$fhp8+yUUDdMom-3_niFL8`*4bQ$A!C0N=(tr
zoG$#$@D8WSjLWFqDtWARa{RQ^KQ54y@X!NVCE4Y^3lCf%VR<OzkqbwjtH^4G8@b&m
z<VImPc-%a01l$O^?P)vQ_M8<rR5vu?x}aN-kA9p&T!OUhHdOVvVYp$6;uG|yTXW>3
z{B8^$YM)(R(F?lqjF5b8Jeju4FQkCrQ-V(m?%kAU{G13U#%ZsZmMY@L&S@!@;+(k~
z#oQ>{D!IPA-eF|o-&V<IrS-fRyx`^wH<WdwoEs(GDCLIbM%<0kZalqOjk@tosf>^t
zd<PxBTqx6xu-pEYA(n_6>q}*j#M~&bCpP-SFl|_}IPKMH8R;@+sjbi^+l}&WRCFUD
z1MdG(=in9GpaEOiy^<U6dNb;IGiYDgjieiq{h=H|l9Z4tZoDX@YFaN;Dx;bk)!mrl
z##A?Ixbcb`AG`618#UebrTKL?>bg<OjaS`xO_Vx<wFUc53-!;iw_C82;|(|JxzW&#
z_uP0>S{n$yCHQIaNPRcT`0bn0ihB0jZoDJ<yMmn`*^jUqxzX5-)}pv8*_JHtOSOq$
zQ#YCkq2An$7Q#OeY$^C*y0w*%kK9nE+jpmbf1In0C~e*7xHi;Ic=7Rx_HJ}=V}Kh2
zsf*Z6u#+2|-S|}aXM!B$quP!x!n+C{DP%ul>h4AlH+s79#mz`BH+u7l-{B~EpLDPO
zZuE7d9|NXf<kv)$zwF%7V|(oPc&^XWHea*58-t`e*o_fxjCA8msSZioeC5W_G#}>1
zaNz@<w7vA(Bl{kElqjR!Xf-=$j37yo>GrY4x-pJnBL?H$*fJnA(T%SPMZR@of)MqO
zXvY4?BsZFOiA)xQL-FXCd(mlbOn2jm8-Kbn!;P72a$~C-v)ue#svRCb3eIt3m5{k^
z%o8%-jYV!0zZzK})rD@%>5?4vRgy??u{14lW2um3g3ATjx<bfG!SC2Tt=E6q{=mx*
zZmf1Ab8WQv9s8H2*SN9PjdgOA^@6?JnbU^bk+Z>#pWN8<Vy=y%Q~BAAO~N;)m0`7W
z{o=+pH}<-*&yDSF{OZQ8bZd!>$Zx`Tq?MgQYSxPG7P2R;Z+%yr+uhpl#vxG-2p$w{
zHOpS3-`)7bjf|)M7uAQQX+cBvs2j(a>pXCI@Ru9MMZd%R@5V_tZn|;Hjkf0_r`$Lv
zO{cj8=ObqX&kAN9kNnB^|41tjbis{_vZj|rxt!LoxN%kZHNop?{RSuYo9#)K+irYz
z`-#Uqq(<(#anFsv)0Y3a@sIF--MDn`iBH!@e;;N?*L@Km2tIV<ksD8VkjrC-2aDoC
zhVa~ic?2El)-kzrslqiuT@dM3?a5qj4?I$x?6gya;X%NIpa-T0qn?R)1$}~k59;=d
zPIkqq=S`3BqzCzgj~Mtr&*%4`#X0+d_R}5|^x&Wehdg-3gF+sB>cM9o6!xHq2lYK@
z;6YIjig}RbLFWo~_u?LumeHQ|;5iSTPama(2QPSVbx`Eb)Bp2cN&Xig-CAa3G?eC<
zLc$*KUm6^cCF(&;xRqAo9`rH(H`_8El=YyT2ifV?${v&#UcrNk9wa#P=_!^<9)$Ww
z_=Ny0efmd|9^`nCO80upgDS#b^q{H-FM05?RA2X?nvhz8)dgz^a&E5(sVT_irt+!>
zuSvCb+NKWY*4qvPmbxCiA$q-Z>zf|5>13ZvQu6SY9_rg3emW1W#NZtd-u0lN@b^4;
z--9L|G)nhvETsPQRMWK5!h>cWH1}Y7JlZvx{aiA;y$t(-7_<~TJ6k*bajuU%sF{_k
zqX(@y0nyuf@JV`{b{>2zywT{$piYtY!aJl}myEX0v=bLy6!+iuns)J^s|PDR_|AiF
z9(4C$j0azP&_iqncreg|o*wj)YHttvrAO-{q^}2U3)(NwS^9ghbarIYg$(k~Js2zo
zU!?5^30ZnC@?}~X;=xzKho+Tb9t;;gBCU+%7D)5aLaH6r#|oM1!88xX3IE1}@g98Z
zL7C~+WJdlg(Fwv?ohW3I2l2WQR;P%4!AADy@uzz*!-It$Eb?Hc2eUkwE3Lo35#6{r
zI@^Q!_rh~TnO7{5t50;E2P3AZ<_j*M-;^k;H#^%yEf%vS9;|Krzo$k^Jy<3pTbB!2
zLEl!jm*9I3R(Y_&gP%P3!GqP(y4Hgqg{%==A_4GidwcM8qL8fT=DillKQ*yYlwUm9
z=E2XxH+f+732heKBDhs>=E=yin$hiI^P2}dg#7A3{$n{DaHmvBc6+cZ&6)G5?D1f)
zDErd-ejx`u*z~;}`M-Pc2UpO*Py>fOIKq8uAk)B~9vt=X@j9FajxqUraMy!-9vt`J
z1e1ve*E~4s!6^?edT_~u(_Df|S!X>s=fN2d-kF-YZF-7$-h(@%tqUIbe+aD^oT_v%
z{`7`;<B`^74_fYz{}RnQamji=E9(kZHY<zv*FCu5!A%ctae*}JdEJU;W;Io<+a7)k
zhjnavDqFMe$oNxU%Ax(=9{l4$9s>>o|9bGB2ah~>!m#_Y<9+sWSPwjSC|#2KEOz;0
ztCh<@h5^o`=>B+a!=7zx%WmosvQaUh8qf^r28xxpZkM*+K56xu6aQ?BRqcfJPG**w
z$8s5P8+eL?81NV{4EPNM444MI1_qSQ@EIsrI_u{2)WTJv5##J(wHc|PfxMjRC6(2D
z2A(wVyK2ufzk!#>S_KRYK4~3{T0K;&@y__otyVz;&lq^tz;iOmLIw&OC}JSI#WpKy
zp!>Jh>P)LR=V_os#2Qz*d}-Lny4O#8-oOh67Bq{Ol)lwk#7hWy*fm*nhP^bUq*~fQ
zC&lg(HV`q;(7<~Jq6T6HY8ZIMfMp<Vpt6Cafh+@M43src&cK#D)}Z26F-JB}Fxx<R
z13xd1Culz-Rlz_-1J!4wCP%C?yK<%uwhvc{hntb=I3snda`_wsDFZL@tPNB#@S*|N
z6XmnZTU8A#J`iW9(0)zGA}6V4*h}9sWK}niZ-K20o{_3)pq7C*4Ae95s)5%G)HYCu
z%Jp(wDdG*yVt{3hvtBnaeUw#KPBwq09b<1Ac*{To18*DPg0AkH#ZuqElD8cvQ&zpR
z);k93=g#Te+t%NuaUR=0jSMt4(2?#k@V<d220k*-+CWnS%?x~Kpp}8<29EAaeqi8Q
z)M~+n>!Q6Kw{8?GAJ}TOq+`ch(XCeXSK~)sum_wq&T3<zt$_{(Zbj^Av@<ZyvObZi
ze$2T!Y_s-Kogzy%ZH(3BP`tB&PYv{Em>Kv?T6@vBMZAk}cIj%MoAB;}J<@tl1HF6O
zvB%O|#6AZ4rd#{*L}uBo13B^xZ4jf;z~>At*%V(e3`X1Y`O?6q=JBt-wuX+jhH#sF
zZLtiGTEh$s=ZP4&&E02Uq=9t?)*BdQV6=f524)%<L!Y0tCK#A#;A;b8dA<g|F>rBt
zoNga4GwHe|{;h#CW;TySPMl<5GQ<0_I-OBBBQ=FFwlF?9w>8zkG%C&Fhi9Y~ZO{2*
zc9PM^b)RKmw!yD*#R>y+49qpKh;hYDy)Zt{;OB^~1qSAG;ihL4=x4`6-SXB#PWzpl
zTQgEi3@nvNj;)-v%s`%*sa6>}ZC-AlRbWMYrGf7ZtTC|G!1o4LagWbTtu|0~dIoKN
zFc7*JBO#tYVf|=;Sd^g^vFJlaTE9Hj1_M9IY3?(ykz2;Vb_2iCr3N;0mz~zOF|dD(
zb5CtCu$6mlX6hFM=j!APj96_e*#2iiYkM*Fo59CK*u$W@q@LOz`nH0#)4;$A)-D6P
z4O|LYOCDvj(Ei1DlY6<HTg0cHu=X1`VBlbS#s4sHNciu9Q;qCn1Coag9AW-vBy(Lv
ze}7r>uS!|@GZV)Q{3Xh911E%>G;mhPDZ$f%X9RiZ729mros;T$0~gZzU^C+q)62{h
zGsa~DS0r^@6{K>_z;)p_1aAs%UKM839Rqin3{5<5;+}!OnRrc@CjMdaXDFJ`P5fuz
zKGVC2+$J6vc*ql}T>jZ;`9}txFzr;I%fx##?TqyCLOZ(V&x!M_501C;m{3eKa##)%
z4HS#TzbLMn*muG@-8!{0w*?bU6CM*UHjBGVevg^OOjS2zxlQmY*5H!0En;6OT$QuD
zCVVEIF;U2b-$X!$eab}8L|z&{D96;4&%~1^@|!4NVq2;_$0u?=ukMczTo`}%gvIOW
zzH!#mCJM^52Zim`FKnWSiIQWiq9&;DdRl*s#Wz(IGqH8FRouk0CcfKm-P>=KJZJsg
zHU5H$5+)KRDzTS|QYPXivP_hwbGBG~(^961zY3Qxw$I|lF>E4gVsy87#IzGpqD89K
z`dG|_WupDe)E3L))rxcA(aV@9YoeTqhoh{QGPANxObJ`%O)%68d~9ErE10M#)Be9S
zUfD#_#9Op6kz*odqLztQO;n*jO;j^c-9%LrFPUIGzf9+3TJ-acJT~$g$7^m4(+=ZT
zOw^PGdNySpX&&b#hL?sR8{)5-sBPkP6Ln40G4aJE`|`xCG-PI~+>pc@ChD1ZyPN(d
zm*AxJaJp3~WbH^<9YTpoGgA%NWTKgg=A5&McTF@l@xF<MCR&}f-sAF_n7KZFp?Rvp
z-1scT>fAT0jczrO6ZBbDQxhY{+MZe8HAgR<)xyLF>}cX66D`H2{VTB#8JRJwz@a#A
zKN=j2w>HtnL|YT>xE9Hr6*E)J?QG(GNU5&zrco=GmDS!v2NQo5z|jKeXrhyePym?$
zbT;v+iNC%0$BWNQbTKj5i!Z(CYNDHo{U#2W=*};HHu05-p(du!$?R#O<Jnk06TM7a
zn;Gg&9G><5nn)iLeNF7`A7R;iF5KV5022dEe9q|Nu=JHb`Gw$_nW<efQ>=bzV*V30
z86x^){?E+RFcZUhEE6+KjG#kIOlDM=SbH)y%EUJ&#xt}`eu;E+S=Hzm6JHA-YhwA^
z5tea6+_O^c@@La#&yMJ~CMKAeXkuk{_9QX(6|(MbkFd%c*Mg3cQ%(C->P#guO-R0c
zxn`P}WrDv}v(LnA6LUDGi52v)CpFi^LKBNj%rkMNe`LPN5A{SBa1{<jSr(m5E;g~m
z#4<7VePGdMsaO^*nHsesS^HLm%1Ul76FW`p;t@@(Vi-41{Kj*9p*&lE5POo<CVmvY
zhD|2cnOJXPizpieHwpe^Vxy3sO|Y;d%br{1HcR#Yl&vOyVTurg?Sj7wmY$WWIxEF4
z&1R)`aN4s{BQHcZFHdr|yG`ujvYH@Y>P@ZsC2`?ax$kyG`Nigy9z+kCIK=JX#hYII
zZsHFUE-&0(95!*p#0?WS8FdVRhS8JUj2!2!$Wf^tW3CXg`c&k&3E~OC@tv|xo4jPB
zN2jdoCeE5TC;U8<K(XYvB`oT%H;j^8FhRU%;*yZdf>f>uxyrCiD|5Y?r+Cs;KXS{&
zZ6+(G8WVR++%@qpaaQV{iGH(EjowQBZQ|spD9Jx2rp-$II4gB{R%*r0$bTm8n=odl
zSR7Mx9+`N;3)Ra{lp~iHG|TNp$rlqDUX+-fsyaK>bapC_C=Nlzi=MMnH27wAO7~*v
ziwRcY#j@F{owHNtXQ!O>*k4x0oRr54!;3Orl=Z^&!t2GeUOeZ8&kMg7PkT|&i?`cm
z1-w|;HtR_*f?n*X9?vTx^?Y7DSxsBqE-Swm1-y7lbXJSZNwKv^HSL+SWnnK0dC{m{
z){%KhVkfqGQB+3bfW^FcaZakZR2$AoJ@3T}USxU^_TtcQ@e*E?=AjG4$V-Y+O0YrM
zSV(k|v+c4XUXai%=0!BksaRse_rJ0!%L`hvmAsr6*<MulqJ|gcy{O<t(u*7~Dl#3-
zNhQ3f<i*S#_Uqr#b5e`vq$+#y+nm&*JUJKVq*7i~@!};fUgpfb(C4PAdhv77BunwR
zDI%4@JK`kOyr?`k#VYwLUexsBH7{y=QOk>U+mo+~f0mufD7iUCKm1rYr;Zn|dqE$*
z;f1SRR$VW~J)gxUDkOb&Bp<%4buSQq%ZpxKl-nDs&okv9UcBSQ2VS)FV%nMTyIwT*
z;(ad~dhwnY%6o~+wUYJcrW$!cq(KuentIXPixysdIyW`GR<fCN{NUZJ&KJXD=B8>L
z3ojAN54~vR#V200_u?ZjT6^*N?3{L9v=RG@V#5L3N_EHF6rYWM%r3KYI8FyIIx^3D
z(S<IZ9PQ-gJ8<x+7mj(U?`tIs%}afLEX=+<R#z{&apYs+9(4OWdxlq!g}cj`ODouB
zJ*AZ=(wm+y8tvmnUoZN3(VwZ{;S*nYF~Ey~w4rZnWOV!}GJ9+ESV^m^qh$X-O0YV}
zi!&+B-8rt`3J>w(D=&VayFQ2v^<tP8^Sqev#c(fke(YdI<_Ir;s3LZ~TX>`wqr4dH
z1x1$WUX1bLYpISE9M9De@=e-i*@cqdruhUfCZ_o$FD9q?6d_Z2c0x8R4sq}q!e<K3
z5}YkKM{us->gVn0E#PMKVkP(Nm!U;o^w|(vA-GtO)g?lf3NG_vxe#9B*~Ic)mi`@c
zX7}*-jI@T)Re~f`Rx`JFvBrzFUR?EJb0D(Li}haY@nWwR8@%|*i(k15yx7QS_u>~X
zitP-)RyVPUQC&B&g<V9U*sFAEtB4KerP#DBt#237X<mvpJG|J*w9q?38&+9%N$YOu
zxN}0zK03`2-S5Q#A@?f94|3x(g#HR$X8!l$=-voRmuTb<CN!xY@glO6pEQsC$*L&F
zyf~G%{7cAj!4rZf83y_6K~6J5L^&&X!HaW3*mRyJKFPLWx#-0u(Pz!Kt5<}7b4MrN
zX~eI2aovj>Ui+<sHwEtq-tyu$1KUxFg-v(U{2s$^UW&@UUi`;A>_=HY?tAfod(DT|
zK76%2{E#W#hf+Q~^5O{}a`}+qLqQ*&@!|dN!*m5Pw+}xQiRAIY;e+CX>VxKk&j-H`
zx|q?%Ed+v2A6#jjA8PjaU`W;U!7HR!KYLg<5m(I#2Sj|zhoBFvvgGw4pYSKsN`4;-
zr1_zrV(j>|4-@<v2}>av;RV6MJ`@o`y{HexgcnaM&kA|Yhv$WGN{>e<A*4>>XlWlp
zJ~Z{AnUCMUgRl=(e0b4^h!0U8vV17xL(B*MdJ8|mz#mF8+D9xO_zRW%;ayg*uM3s+
zq5G3LEGZvOj|`QQYPJvMg;emNqL3|b+BON{l>{pbCIxeRc+k+I!5ja?h*f=f$%h6$
zET5Np)XK`b5PR8&YCdE?ky+h`SAGBcuS5+YulP_it<>^iV;{$^*4ArjrM3@se0W`|
zbp_w>;Z%P6u{KLRAKn!4t+ai8AO5IjKiB1<-}d1hnZvt+4F##c=R>13Z%j`LZ<1E{
z8hoH9bIOQlb07HG#uh&OGB34uUg85ETKYi3@}Uo{()`rCR2v`K`tXep<9%qyUW`>A
zhWb!E5c$N1t_;^PVfV9H?S1IrLq{Jv`Ow*i;YYR4e5f@s>7SVV)Q7thk~51ZY1W0Y
zI?*PjCnmemy*~8tp{Ea@`|yPiy?p5HLw_Fz_|S(-b|<H=5B+?YG~Bu$&w6+#hYAbH
zKxut!(C*WUB!fix(ucv^L^(Rq`*ehsLxj-aWFYo$RqMl=Nxr*g7-#6i2%r6_ijh8y
z@!@M9MoD$F4^6tI8b_1Fu|ACRfeNdS-<HgG#*%-_fTyt!*L;}B>G`n5hpj$L_F;+-
z^L&`^!{2?fqVDXeK1}mrx(_pan8U^0A7Yv5!z>0&d27<TSncNV*}?}z%g@ZT2BfUH
z4C%^Qe8ITDhlSi|-10sw@?o(LD;e;a))E<Knc&j&n0#`=k(bkNXRQ??K2sq69V5qw
zgT1nH@>ohWYyTl@wGTh~u)&9)eD-VnH9j0ZXszdROLgtb);b~k6^jqA_$+9n&we_+
zNs#1cF4nailFezQ`5EgMAGR@Ou9rLI!*(Bj_2G90Dh+(t;lpkp_VDxzmEY;ZF2+XR
ztZ@6RH!5ZE*#$Wt2krG?KZAK{=02bObclYdkg^Vla!`;>hnNrN+s{J|`*4ICuwT}3
z!9RUCCPY1C9c8HGvEI6q!`8pV1794=O@6|MlVZac#WXuDQ#~ViR**A4C*-`~1;LAg
zmjo{hUSa6|5TfyQA8z>Yv>yfixXFaWJnV<&$88_(`0$WBf&tIqUmyF|hb~d;9)rP$
ze?)n=n#Jeg>%X?x`kxQ?eYjaF%b{5he7Nwn#j>PS))Ri@@*}q&dHmq3@(e#3q{;{9
zr})CWT_me_<t&FEe_58|2On=X*X$=A6JnO`w?D+?_QT`HjdmGp$6HQ6Tz+(mXYn;V
zAKqRGWf^{OS)GaGQ$kEXyngun7#Xtsegyp}vQ-U86CcsjGOuuwe11Hc=K1|7kmjEr
zvZIdA8J_W@kRO?Tg#9S&$1y(A_oEaC6kb%Ym|$_iX9b@Vd|r@UUht!Y@QTmGSuO3i
zWA9MY#KTN0#Dn(BYS%1Ij0m^<hzp7O5%VK^d3;abtb=pn#Vcp=0aq5i*Ds3?&G@XW
z99#YP+K;h*l=q{8A6@+D>PJOC9=?_Hq90ZLNcd67k8+ozmHkNik>f|ZeYvvhL>?Wo
z_)IV5M-@N#FCJ5|3+MBaA20jSX=$XnAJzP*?#CN`)bpc;AFudP+mAYa)a3Y2X20e~
zk3_7NAFukc>bb~+?pE3PDe4r71@mXW?gvE@mb${(^rjzg`O(Oa#(vai0Qk|+kN5nT
zQZ)LuAMg0_t{|%{9B16G(Z?gOiG%~b??)3qn#q8yCXeLil$!cMOIA4(nziub1Kx^k
zi?#HlwI6N#_WzPT6l^8<kzk$qskVMQceVGU13lx%$DG(mi^iYOx8*GsI)~50JNnVt
zk5B#fv++)T{Ifqqk|$<cekLP~nU%qDy7|%FkN$oP@S|0y$lo_ZJ?On{;huh!*%t04
zoTRr@`v~^+qn{9(vFW*8p@Du7M+$x}_=Vsg!NGofDP)KsEx+P^5k5?Ccv>If$A4yw
z1}vjQ94$D;kCQcQeViZP_;J9GgMN(n<6A%0`?0~#dmc>mW40f2{FuZY;m0&Tru*^5
zzVH-3N-qgt&&VX7%3ZuD^td|1k6D~p*U(HqdUXuZfXG5+t{?OKSmDP?Kj!<fz>md#
zEb(KZltq59#C(|>cZIvIx8Lfv)Q@F;Ecb&-%lWC2-EEy@_EejE=g0Sctl^;#gje}7
z^}o<+j$b)D^Fa6q?$ZO|VNI+b{dnTva`~^s1|JBoWhxsT8a_X@&JW_f@`*Du!aw=3
z#g9uFv5kU13vLpmxS0_+HIrnkAHRsWO>mzd+lBm^w){=V4#Ay*y99R&?h)MU2Ty^c
zvFzt=trj6UM4uOl{_e*g445m)IrCG8{W!w37Jxf|5-T$PWS$HlPXI@mH<%UuIPS*<
zE~p<bEa5NS;;uJxo9oEf6XmqvMaHL)vx4UY&kM2_yR#R`B|k3vaYghS>DH@$Tubxo
zO#4rkr{zsiZl!gOa7XxE!Fy@_Z|(@;|E3jM-j~BYNGlKhc$DT(1duCWpGbz_<GDEk
z_Vn}sAVd*V1JH!9>BWW#dWIuAr56c1dIB&4crJkF#c!q<`vtuL_=L1L8fSOf2LcF+
zk~e^S0X!+=6b_(B0QrR%NYCe~0G<w@U;xjEQb@3U+bEC7LQ*ts`FI+|0=#du=fm=>
z5L@Sz0w^Wb5&!<LZ^;0Do}c1;N{ddCc_$JMAQHg3d|00k(E#{a<@P~z2*L^=9>9+Q
ztO+11fHDCL3E-;$$_7v_fTjU73m`jSKi2E_U+kw2R`~!b1W+-6L;#HfXdFPHK(tZ-
zbpm)jfXV^>PAhT(NYOJ36EF0&s))hM0aOd%Md7rs8o*0wes^V}y6{?QrA7d+2(Ot|
z>ReD?75<uF?X<3LQ|kuM_aEyWQQi<<Pmto90lX!=zF>p2{&oQ8&%|i(ZhD-C0lX*t
z@vOSsh`k>`6H)j;iPc2gEKd9Os&MlFKVWEm8bFHxSY`PjfR<_gVF0a!e<avCfHncN
z4WL~BokaOKfKP;U6#OuEw7rm?-9jA#Se1&D8WF0p)*iOA=p^epS)T>aC4jC0bPJ$=
z00RQ(9zc%(zUXN6<sqtP^$eg_0KJ8;Q*(UHlEWQ|HXW@#0fd_+JDiI46XQSUr`Tm+
z0G~_sO9m>H00spxn0-51Y-OQH&JoC+B^*N;(!G-31Ta2;VFA3VTEhbv5x|yJp^*W6
z9l+QCMoD#a0AqwySr9iCq`p01|2L%l#hl^`QsWp-3sSs&{WgFJ0Za{GS^yIRm=wSi
zj<7eHy)x9~&FGj}$;koy`d^r2=&i_@pF-0Em=VCj02T!>lc5-j%no3VkXa1EWGO0h
z1DF@U`~Vh+KL29LL6yUN%EZ@e^?H?|0Wqs^#l-=v2w-IZOBm{fD=rmWCb(R1^6(_}
z?*e@1Vb=Ft4iWDxReun|rqx3B4^Ps7)wSGE0bB~;ascZC*bu;<Os8D#UqU|xuv-ZE
zMj<~7ZVK>`k!`@TC4jAI{!0Mcgm35R2k@Klo$1ycbi%`Ok9+M3*k9f7nC}T-Z`x*G
z0Q&=|)j0Ej;6cGdg1-y0>5l*or}+_jZ$X42hdRbF12`o^{Uvx@@B|m=ZiUCkIvv2d
z^s&weIV<RXA#y%|3jthAx2`Ii#V*|+MXm&Jm8phFCJ0_DuQ53sjpPdAdH^>9xEa7t
ziRAqN9t3cUsd7W&w%{E>Hr?ey2>)B~A3>V^E9Ad`{hj};@)G=zyE2HYwX%<INIc@m
zO{_k(ttvl;S<MKd#V66+LF5VAM|T7f38GUnssyoaTvQE03qqHsKoG&8{gn{TAY7u*
z-VDMm+>=&}Ao4Y_*yK$sz99T*USne-ukh!Cc!8EdJjrtpqCgNuf+!lqQ_@;6h-ZR$
zI^8SstUX{MsTL06(6}h8uBNtFOvGo?mc@nejM(&C5Usxqk(3ZIBv?|glpvc*i|0u)
z(@Izf^=R5-)z(HQ_YTE_$PS`>5LrR6T1K#}Agkqs%=<Z1A&81}X%HU-kqDwv5bp%>
zZV;6@Y!J1Acr}QeAW}iR97MGsss!<35LJVCDQJHg`&TvMtG^3-p2{A+F7*2GNJXcW
ze?zEx5H*5$C5W0q{IDRCPnEws7b;dF(z9*ZzLlfg#UnnCzZOL8AnFD2W)O9Pcs+=^
zLA(*P?|fQ)7M)f-I%RNH?`NXzGpv^1Mf)|6z7<6MAQ}YmHc!)Oom?B@t)1gaq+zaz
ze^<1@q43~TtYHv`S0<VYz86HJAQ}hpeh^JW;f><hA)!U5Ll2*~cxU)rGTcn`=8x?^
z3%#-+)iQ_=gJ>H>yC7Nx@e!*FQf+uH(?Sz>*>A;fO(ztH?ChR3ZEu7M$;UwuKM^#a
zicEMaa_erSBV#g%zWLBEA36u|X%Nrn!wdQFSrA=<IGq<~@}g@H-RRrANaaQMAbJFG
zKZplG^bDd`5SxP797OLR`UJ5kh{YT&h<*(3d(k;T^bcY{5Tk+^9mGJc$cpfwAO;8V
zx$rLpDW2=B6Tb{%xF|yezY-jpwi(8e7o=#$GD5_Wg6(r6V}wiyVxo|*gBUAhToB&`
zF<v-()th1W{WgeW|3ye9rS<7TCI>M^$kenxjWKLkw44#dOc7@ZUi&>VJ8k2iqRvh8
zc|zt3E)ZN8M5tbrBd{z9;>RG?1hF)TWkD=Y_gW=nMGz~~%6CD0pXL)f>puuzE%=2v
zYOU~}1lI|!7u+DoV|8ib*eLwxw9>ALV@nWQgV@0U;DRo<J#cPQ=$9b2iOqJwU(@!#
z2{~{*yeo*^L7WfbLJ)gIJjg^LWN#4rgzOjOfCq%EOGSSdax93yg#5wK6>>!IPeIxr
z<v#i{PQr3r#4~~?1WyKWDs6c>h)1$~v^*QcInm82iN}2}262t)J%~%9UlzQQ?t3+e
z3N!6P+(;|;g19OCmf-EQekX{#X?|jA`0pV8k?OyK{|P=G>Wl9~4>=`f*Ssj2mtTB@
zTzO&Ug*PuU@?yj4P@cSYwC5Jyd0dG0j=WGrR0W-Rp$X9iY0R$#B6>%JTteJ}o^-1r
zr0p8rmlwr1hu&Hm`hQGa1(ej*_huK_-4D0POfpF(quA_ZWbuXF!6{m-Xt5$ii))eM
z#kEkRxVu|%DDGa|in|y1-&~sC`JeO7cfR|*`|k6%vzbZK+!@MgK`sk&TVUZ_l~J%j
zWYVR5yww65^9_%U8K)#!U}r^UBt@~HPU?TTj<3$c;#^dV1>sHpLKb)|@LI6N6B5%I
zZaxbNSm0;RJdAl6^I4Fe3Hhie{e+2ZMi>K(x&=WdAx82ETX1=!;Y=yXf`X==c~^*(
z!WI-^rKknPm=w35r0J8)qy*#F4yG`tQ7T2mf;kq<wV;dzWi4o9L0b#TSy0}BJpKGX
zvS$Sgs#s9ff{JW@!$|d3vY;~aEKXzpR<oeG1wXLztpzohd~ZQb3u;-=h|SuJ<Xn$Q
z9mek%>smmYg0kwf*?^JEh8FtegV9Y&uD6CmV+)#?xlJu-X7c7tX7K^of_Y2ERu;52
zeRB5*4o;_2*V<Xo-hxpUjJBYI1s&O8m<2ys(8+>+7W8MOGh<H+x|k8VGU;YPcT?$M
zLDI+nc4#jado%X2ps(rkvjuMp8jT-dDnpqJwBQ#egBS;!xkH!~>~0jHnHp~DBP{sU
z<Rh8H?emXeGSh-?)%CF!jAL^=<8KyBU^0<$660h>iaf=FeQu+QsjN(6{GD;S=`+KE
zWxf7ed$TO~gZ0^FZmVty^DLNe!6^$)Td=@_g%)h4jbOo#%Y%n1=!+~^{@TCTf+ZF#
zrBD`Z;Ihlj2y2+EU|eazDpOx=LE_&=y=zTnodxSnzNLLUWo=}06C+((*=oTy3l5t;
z+nMZT{L_LRroPjHUCeiz${sprcxml3mHieRF!^6h4l*91IgLxCswo|@;3$j77>_fa
zU_8l4KGcgd76?Q2sl(!~Sa8<V&oMb~!39&fXu&1smrdnwn#xbcVRDtWfCV%W#IKvV
zH<;YC;FhV_EVygIJvu@K#0mJvg8LS{x8Q>X4=i|S!E*~<Sn$Y##}+)b;F$$mmqn{|
zDE@>#z*Gs!Q}x<|QoD2w62D(1Sn_n_r3J5O-O}Rk8hmX*&JH^1Z!Gj?<PxVY_$xj0
ze|3Jx#i{H^3kDX@|Fz(g1+Kb!zZ3dr3%<~4FCeWz_oSz$5paL69wXq~vM8C?ucVSm
zDV>1y^x<lTE{)MiCqfu6AVGjEKoI}|83p7LkXt||0htA47m!0h76FIe>RAP36KG$g
zQl(!TNnM~8j#5L}Mh7Y76cE2!Ct?vG2(SqdsmSPHsVPCLfFDN0ukRbC+i+(5t4jjx
z0xG>sp;kR#79~QBndS|u0z3kKYggPMKogAKISB>0xdAjFG!%WN1n1>Q`us9NZSV@%
zT})qdE;X-!d;)3+s7ap~-}>_l2n&b^C?LQuAW^{H(jj^v9U-Lv^(&mB3&^@WdfSph
zN=U$>u8}uol9L1!q)^MFsRA};*9!?KDxjEv!UCp$4ius0z1Jxvl?)XZkSw4i1)1yL
zHA)}(P%k0C+uQ%{qy8m6F@<%?qEZwsDxegHC0<%U83AS4EGM8clk#S61tt{*d}At=
z1l(#9p@LORr7DwZG-bp6)tP@wSG2ksKD7kYrV$V@t8uiBfbRq}70^sTT><q3G!)QC
zKz#v2%A~9*l-xkTmz$~A*2FDLPMLT<^u1ub1&kie(S*jleWAtz=*?fGWSp3?h2H-~
zGbo^gfQ|xM2=sFZ{3xJ}fHP~8TL~zAKGa%3xpOIbPy64eq@?*6XiI%u9!)HrGPrbz
zNIN#$Q+t+2$^1z`Cjnh)H40cgExEIRE&}}rl#ua4C|%8zT%}VkTuY`@>!H8908%KO
z*qPc>KraEkX>cB;Qu>)mAL`~By)QNXbC5_s0WnjPX50_-7cfA;-!F=jCz*o;3>L7E
zCYri0VEt+TWC2qI3>7ep&Ed3n1mg+GBWRHe7|9~JjT116`Dn&5jAPAQx)AYZrJvj=
zO%PCiUU;H_NlfzA3a46wztNaa3QQC5yMU<zuIvwGPYDoC7chgSNx&ZhW>UXsk(4Y-
zKiF=#BJylw>TCgX1k4w(>{MW`fO*vGACigRw?xM*j}jTUA!PyQzRee1F*$j$fF%Mp
z)1syOyH5s|GFc&j_%Z>@nfyC7OeQ(36tIdNh_7a{M!;HAS;u5O;|4-g-$bLG$#}xX
z76H5RgtxN3jd8o_Q|hXJC*=z0Y(*C<b_>`;%f^ZpR_qn9Prx++*9GjSaTahPCf}+1
z`Lc$S{}OPL_DeXK(m^JN1RQ2^gz+fjF-Gz^F5m?7=0p8to-*~*v>FARrE||zE;BjL
zc!BYvfJ<gBeG^2*|7P=wfU8VmZw5)cA>byRU{;7$w44*ZCE&e)4+3rrxFg`MfO`U-
z33x8x=cdX32zVgiA)UGc`tA>9J{amRMIH%wEZ`~idVlE4!O(ay@`M)EU!h!bgpkY&
zQsjkzmjd1i*e*t133x5wjexi0CP&VSk;h_Wn>~{0uMkC`1(RNiOga#vvL6NfOJ}te
z8Ljvv;In`XR>WEHML-%WcF2)*R-;uhR>WEnu}5}G5ek^r3W{(=jx4lC(z8PWYKa_)
zw}M(r?IBNUc>-rqBQsf%*=lr0up)~US*^%vMJ_9{S&`ie^3P!febajPVCdz6P(3A5
zVtOLQ&uzux<xz_j>;4Q;S<0oxQ!SKhwHn_QhWjN+R@kjbwxWa;vK5LIZYw-is8%?v
z*hi1ZutKwfZtI{@<#+js>|Gvpu|k|~l<->Nqi9wXwqnAVxI9+mx1xX*d96s?Vceyj
z&uVN0$|8S1iL6s(5-9~ZSGOX_BxFUH28!bsWQBZ^xFuAa62&QEMNumfP9_v%2fF!=
zI(R+CcmzRlD}K6>m)uHPkzz$nD{5JhYDLtFDppjrq7?NmHomkKWvqBD8+U<~<=|Ad
zycOlRUaErPP>>27zarx|jFlKGo9+49!D?2}9W>P$iF|8C4U^OO)V89I6)VTYHM8P7
z9?XV3BNV@`74^8H`iu=2N&k0lTqEY+Gd5;y!q}9Ne4e+`37gZDi4h_#tvI&U-_DA%
zqmx=$LHCBVwqnvT{YOS3ZJ4yRVoS#)GTXB!-AvKJijK^GV(i2yHcq5CU9IS5#aR){
z=A?GFq6ba14S8(nX+<w9{;}e|6}_$WyDY4?Vgt>%9`4KIGm+M<75%KBYgYZO7|LV-
z<3L8zf3aea$p<qT!dQu32Glw*%!=V`jxc?GwPK_dqpTQhD&wpeWAd>)q*Rd7corwn
zDtcm=G_#Yem~6!qD}J+rE}hM`VvZG4t(a!T?^aYBr&F3~#dMR;pw(3|g~VB`{K0s2
zd6bm7+`$#J>2~Y$n9sLj0fl8wbuG1G5%a~Svczh<t%<Uhv9jFMr#FnJAS<m{#nFhb
zwqgzQwWhL;nw>X9SsSg`WW_lv&RemWCeezcW}K~7>>;;8p>0-dx8hGLy1oePB6Ng^
z?66`dE5vC)cC(&XC`h?`X&GCwpUb{o9{r2S0mcO>`avs5Jj8g|iX$}9s{*7@y0$8C
zjB7t`w&8>oCz+pOJk5B9@hl^CzxwI47p!m=j=4rB`N<HGi&k9X+{=uAGhQ+MuQGWy
z$++eGx)nFryvcZr@irsn-eGc=@tzfp@)-9TKd|DV6|*zMxNLZ2#bYb}r6bykC+t>d
zw*TS|<NSGQ#WO3Ov-pDXjTJAMykaDu*H*mJj2oOOy=Czo<9jPUF!^YDuKP9SGaddE
z^JGZ2A&u?7-w<YG5@SQG4QZLDvmwsRP0u8Q4PQGOZ$knr^rU9m4piw^ok%7dGTV^F
zhO9PZvq56F>^9`E(K{$1u$fvrhAt83WS)yLw+%OM8N*oYPT)pzdaDhumM7b6SX9I~
zpG6xYFO6I~JLkEch9W4`n3Exuk%+?v&E!rdTjmGc?C)Xp+K~H6AjgX6>`VT<HsrHm
zmx$dW^4n0rhV&vbi16ExXv5Do^s^yggKk3$8(P|oyIO)agl)#hDoP<6@+(2d56KZ5
zl58kwLm?X~*ig}i!c;akv4jmJZ79N=%%V(+*-+e6k~t=2QA)9)4C|?kQN~iHXKAkM
zt7lmo%CTPl|K)zeyp|2MX)c&owxNm*RhfTldRAjn-G-Bsk||mZHfx%>U&T5$)U%<!
z4d1a|*UY7!HelY^R2tgQ$mHMKurSq#*~EsXHZ)_sxtUAtr>q}ng>${FY-nvmTN~Qh
zKw*Ehp$$6_ADTs{mpjw&wzr{!4Sj8RVGYvA&z_}swBaXq>%`cdu`^>A8@e)~TDsXl
z6%nD-gGo;tdNJv3>V0hZ^fE{eT{Z{1R}S{KVSo)gX)$nn2HG&ehKV-(V#6SAbKh`q
zunj|O7|IbwnQ?|O8E(S}Ccm2cNE<GNLSNf3n#D0TjAb&;^cinM|L%VBnPkIc7Pm4^
zv0<hSvuyZ{&8epUG$y~>Fx^yU*sxnRdhv&;tg>OY4RdUmYr{Mnma{(Jh6PNPGA?9X
z%(#e_?oyp1EMb!fnah|D8)xX0R@ktT74o69+J-eYtTp{N+OW>#>zQnzVN{L2Z!-1G
zOt#o?C~B+_O51GM&f=e@&kh@C-YILh4SRTY9`i=qOXJUzvd@P7HXJbhPuuX94F}mg
zWW!M#j@fXS%_F7{jW7i~POF{C2~)3b!zq(ftIpVP)`oL7oTu~0Mn8wf1sg8faLx3&
zWW(P!Tw(JvBdt=3eAQHDmN5Ez-Soe~gv8rS?%HsV$sI;2^^XnrZFtBg6?|X=rLU3O
z^w5cr8A0;H=EiV6vEeBlWi~vgy+9+wrCyq4-_aq-{I#jPvEeQA@<sj|?e}bcVEkyq
zzosXx{LeOgq4Qt-Z@<Kfh%x!s=}60FI`O|!aU$YHY!T_PW_p51PtV5?5ko~}6p=~9
z&!VxNGmA#!yNkva%OWDHh-@OVi)bsNoroMFa*9Y6Q9?v65xGU=6_HPbMT8(i6X6tL
z6=4%0i}az<IAcW-k_bDU%qyauHtTdu`E~~BK%n?4H_ss&Tb|CA@3Kc}N09Ck;TGW)
z;o}~arhPF>_lVFJ1ZYU}(3vj>sizd2_9-1)`9%~EktCuZ)gmI1JVgXW1lWhl(q1EH
zDn+j%2vY~Sccgq>>Qpbaih>ssQCLJ#5u_C1;^a)lX{f2*Vl-}|vCgT5B$856M2d)7
zB5I3B6%iHb;lubwL@5!aMU)j$j*FM!>Vo_IR0UO3UPJ{RlbSr06pcdBYN;fmvWRL_
zg@`KLa%y2!(b#u1Zp5kTZ$;D)@x2W-MNq4#`&67pfP9G5p_YqiPU9(}u84Xf8j-Vz
z`XU;LXvlr1Hhi50>SOK6#&|Xs(L_X35zRzUGtN{?rbbeAbSEYeav<J9L`xBExI3*x
z<A`W2;zync3P_23C{atOQ+;e`Z?3~mOgf0@XevK3p*ihrDqTc$W!}wHDxVGZVBXVI
zdWq=GypO5$6+v@E&7*ng$D}{w01*S3{K7bhk=zC|q3ttF#BdSQMa&Q}f)^G2h5DUy
ze-$xO#3&J?*&Huo0+TU}V?~T(LeXgX5l$2_g~=qw$!0E{qLlj^n^PI5iKw(9N+L}n
zjS|&JyNt}4B4&yBgMDU;SR!Jnh&dwWvNDfxp@{iR$bSJfn}aVhmBk`FCSN9EwTLw$
zmb0>gaiy8NiV4+Dan>^5z_?DtdeevIj&e7$xruQzEt{38ByJV4O+>2|(e1RN67(I+
z|71?$PC8^N>xV8RXMP*0cRjF2!~xm}tpmjOir7c1@p@oC<ME4r;(v)aNNZcfFDs&y
zjxjkb;s}$YjDK*}aS<oj+%V05Qp70{r`bHixW7U8s~h1tI>a9NDV-N_!Q>Z3Tr&A(
z5tCX4$l<DpYqZ+0`2#Ahi?~6Jm+?u)O%b<5OqMW3!fg?EXe~*`r|Y{S?ujTQp|FI1
zMBJzSE5R<|0R^E$RYHP<M<O1J_(-8dJQ49!#48c6X$&{%&qTZs@sjy-#=!ibk|+G{
zcmsE=h`tf=R>TJp585S@|2q*RzGu&i_fv>pToJ9tp5BV#Pa@Jth>;AR&mz81jpKuF
zS44BHjK)exD<PdkSAL9o|EUnBlz(M3gM=I7gK-iXuZ$8YvohLiWi;=D6tG)X3E8O2
zE29}DWRj3s0u`B`C%krLG>e48E2DQ-Mzc%EAwiH}<svyH<dTqE0yXvX%BXdf(L9P^
z;oQ)wsEr1SYZoQFsuKIYN-UY=BTLv*G3b`yk)ZI{e)>JAN+>cT=#ZdEa7u7dkxhXL
zMUuW*70sSgCw{>j^h(GpA)f@Fga&W@gM_3!5=d`!QO_@-fP{#IBnh3;CHW-;B%Df<
z^y}VWqJ)lngFDyhx`bMLgOq|2LM9JOXtgTZNRKpa9VnWhR}6&;N+7(|K2k(NQ3)-{
zK|(PJ#U<30P)|a#gc1_Il~6-MNeL+u%19_HAyvZPIrMXxLZu`$w}+z=dbA2&>zZ7e
z&7pq;Nh~Mfz#qX1RE31{5*}vODUtFG`;bEwCY2;qX0oe6Dv4E@S7WTsnE6|sbV@Zj
zU>)iX>$Mr54vtXPcg!hx)=h!2{gUcSXe8l#3B(&nXedE?7)!iYzof<znn-BDSxp(6
zQCTMI2c`bNgglpV8ni09zfO8GTTA#+LQe_3B(#yxRzhb9T_n0sP;bZBfw8>=`Y)J7
zN*yKq#3J!dOx{e58?iBt%&u&9W9)AF^pH?$vXNV`VI)JY#NHD6Na!nJ-<9yNE8%`j
zewOgf^+<nf0xA6^43I#C{0V=NFi65+USp#rjA1fF!cZo|7>Couoi%Rd9wFgZRz@<C
zGK%6iF#gA<G?vA2j1!&($D2MAm`r4x#8{_h%x@B=(oo3gDr1_2-z6-SuuQ^qTH6)k
z=m`T0B+QU7lh*Th`YZ{T3Wet||3kuTCZwOb8%z3J&YdS=J`=<9QhcSW@e3u?Op~~X
zaj}FYlJVdIx>uKQxr7z8EM=t1SSeu@b=;1zcC41LMuOjtL_5|>SSR6)gtrpbOV}Xc
ztb}vaehHf-Y^G?m0`nB5Z$-D#CzBn<SEXAe?5D*hVVi{Q68@Bo?@V_y?qJ->xQmgp
zDr7OfN8Tf0FDv^@y;_#|zf68Y!a)g#=!9YAh^f<$SC2A3W-7-e{G9mTuS8DL)@J=Q
z;~CRu)5y5<bRbB$M<)-97bV<ba!JBv+MZ-qj=gUBUy*Q?`889SGuCMH4GA|{xn=6N
zCH(gIzi;aAvRG+W+<iLyCHh`T58W`b9!hv_`ahygu{r!$!V^}Wn))*dUrHFi>7w+4
z#g}x@nYpi-G|U|TPQrUSknMCsB0jK~(T+@Ze3bC7giox%ZjAqD3Me5B^K^Ekw<Csm
zEF(Fjwd2rdW85;Z63-ZC=F(gwn4CPx?PxiD(=PpDOFgq4zXkOycC=pX&&s^V2R|t}
z?8wQUnWB0wCJs9^J967$u|r@*Vx(wRJ8aBFQ+YQs&dywBR7_p9V@)}uolaB9!^Fkt
zX7n(68GUwqTKC_K<h3Ioi}@J~FjA;XGvWev=yo))qoEx^J3@BIzsJ?EL!GRL*)7#h
zUzZ@sj)G>X;&v2bUf5KMFez$BF(z7mqn*jjOPD?-nWQkjco849qZDyAD=<=#GEB<a
zQI1J@Qy(xruA&{^uvv+*njMvyR55+3+VQ%T@q3c$tbA+g&Bn#ow4;_CwOKjY+fR46
zlUp4&zhkUxM?EI>87X($thh#Yd~XLWY%&|$(Zr69cKl?gyOzR3m+DRJXvWUX8Gp3n
z2eWJoJ6bYtWh$-hIL^ORY{N=h#&(SDO`i^SC<To6Q|e?#e>(<nR%bi9*wNLFZgzBM
zrH>swnDjQw_GHq_j-wy`i{RWA=*!~IrcXcGAc6nRhk-1PVElz~kR5~V7{Yw09mAOn
zW2E+oNydoLND}_a;z-6(jH4Oz&Wsyp$9OyL*m2j633g1hV~ZVI?U-c8WINW|vB8ch
zv{R@hQGKx;Q|*{$hwHJwQhoh*4)TW`v+bD9oa&mvWTqXnOy%LMIMU~^xsY)#<2=Us
zj0@~|<Na?O7O_G%4lH4^)Q)9LmeXm^grcpmV<q!drgCg%+#2R<8P}QmylF=58|~O+
z$7b3uuY(_k`On5DI?C&D`SsMe#BFwLr!_+(nK}MXJ9gM{kd7BFzLRk;<1WVCjC;P~
zUSr<(G2d^;0VaPjHvD?7CWkZS3mvxO2+gt`$L#pqjw`gT>^Q-07Z^`6p0(o?6N-7-
zjx)^Zm?D$XIXljqxtA-)USxiW@v^CZEppY4TdZ7Tyv}&T^toxr{Cvf~#_TrT7#TYK
z?%DB=9l2!WmT}*X2X=hs>3+ziKGCFq@ISKSu^mtBcxuNxGuksdUNL`eDlhDKY4So<
zVk!P>npsnMOJQdimA+@?1LH@=e@!2nh28!9cY5nz>_{UcMmF|xoQ!xTu`<#!NykW8
z>1AXv`RnO%2`10V1Tr!*$;6o1%*`UxTa5qPS=nS{XFUgFPSdAd=6H(?TD_VKrwl=c
zRR;YL34Qe2*hiEh$*`OLGLy5JjUA^jS7kW<mpd!YCI9#5KEDh%>mD=L%fu%m50kv6
zo=?WOod5lPtbh!^j6}`~$cV^DlA*I1H2vxIlVOvqg^CoEQHagrjD;DC$i`l#Miw<a
zi^-V0>c8KCC(9^d>LtlDpK**tWt5W9TE>r*C8LatN-`?b?6``Sl~GQ{w+$l1x2=kn
zmr+4RMHy#TMKi9Be#7MHs%W0o(bB7<Rb*6^QA<W`8P&K{bwU|UR!1qqz}3+jGHS{o
zLTN(d6hhML$oNi1Lm7=^Tpt#fVX|JA+<Yn3Qp5EqPHMQmjC2hn4P>0F6-Oqe?`1Tl
z4~q37#2Zt5b|c=pe&k@SxMu9%obd<77K|+!TQRPx71u^aTW(}$8SP|x@G^dq(Md)J
z8Pius&##Vll(DLD%GTA<7ptR3dZcDq6D5-x{IxsO&TcZg%XC=}dt~&GQNCJuj*Pi7
zddlb}qqmGcGJcaWRYqT08!{G%#V5$<C!@cNp)!Wa7$9TDmk6a_Xjo*tuO20SxODO$
z)(0~VF@5H@Nl9E29WG;pj9=+f`XZf7^1q)uX(aoMGCfDj7-RCWOvW*em$AM;aVj!V
z#w1!59ApY3wXNKS)QW4O6!t_QI!(q*8M9>kPNPBRM(!kXC|Wf-gM0DAnrQzu(LXrm
zY|f3eNujW6YIL5A`7|{&bTVC)D!xF*A}+F!k(8u%DT`$+k+GDEk1bGqnGCIDlp402
zl@&6&y$MlugsWw&k+Dt2@($6p)Xs$9CK;P$tfP*|*gzw^NZ%+M*E(`$Ni86Tr>!ww
z#<6)#bPG8j3vZPX$dz(oP4olx>sXkAY?tw;Og}y`a(Bwu#gTKajZzjV<hEDFJ`VU+
z#(o(GWZaT*TgG294$8PdM+EKDwb4T|j>|Y9<FJe)w0C^LqcR%I4;+)Rsaz77ju(Y5
z71U44IK}!o_BqXXM#eX5qZH&Uo8%n*GkBie9`#P5QjM!cFUhzf<Eo6yGCn+sd^cVH
zo5@XAkZQTc&Npel$hbk+L8l;_t3|(7{ZbFzp*=NSe=OsPjJq=KvH1_<L&p1z4;ZQJ
zBkmLt3jS0^%eB!LGN>6up0W8{#-O!^Ney@@<CRQ55uu0WhQ7Av4Y!Bd`A){0srq|H
zA|GUYG<okD=|9W(A|qBsS`}#&#3&e}V61{z1!)!3R8UJnItA$!gcU>-WKa;Nz@|V{
z5U(IXK{f^172_4W85Qg=99gl{pNZnM3vL|{&Y~bQb24)kiI9?20bzkWp&SY}F7W46
zkW0bE8L?*vgcl9*=T;ynIK0G9+@gT6#*EnLMct~PUf<xF^17tJuE49nr$APqQ1Gom
zmxAZ}0;&Qh$8@l%F`oILQx;WJCtFb78gwi0D7e)$wrmB%%%dQ$0;-yV=TqpyK6C}`
zUiu3t@GA%?Ah(;PLx~F7PSJ@Il1YhpP(g^DT~GB3a%hV^n53Yff>H`fE9f#T@_t32
zkb=SriYO?mpoD^w3e@$1VhYxc_CM<Fzud=PTtTt|;-nL%C|FZGn5rO3W3nPZ;?4d#
zxy@V~t@?MM47Eo=6$Mollv7ZiCgpRWl7b2f?!FCGR8Z!FPGt3`z&FgvY@8bGoG!7l
zLeF9f4!Rkrrl2|%?CY<g;Qpt;)cJvL6}&E@zuq1oq=Gq%hiWURqoAXLpA>wjpss?3
z3L4S)E2vMyH7ZhWZerWFp$5cXhxRuJ)1_2WO05Zeub_p3mI@jxXrdU$#k!7>rZgIh
z^k$4ink)Fh<W!`Ug4PP!Q)>_Ve^k(h`ZYIk_Ulkv8gPo=E504Ax?;)2--Je85AD4k
z$`uptpwRmeLo42dIw|O^pud6vG};QfD(Fqi@_0br8|<c_yMi7HJ+ayU+#CJpw!fzW
zOUY0#1@wlIaP=Zj$`zSsP3WVbuY#WytZ1P3V@$V8*E%HJX`evE-yvb3g6(7c!xa3&
z1qUe@Oe-XB!Vs=#sDkqu5*w}ve4kw8UITr&f)NUSRWOnkaI=I_3i5PFm>bZ^hgvl(
zppRBCR1Nm^MaL-^uV9mc%?iB;0}~a@Q!rn_B*pkW@NWvHDws^GG)LkTiZ;w&ELEr5
zH>N50UBOJ+kJa^w5&hxkz;p!%?)kS}(`P97!x1!Y23a1QMVx)eZ8noR3g#;KYoVW%
zYg_ya6fC69Dp*PTi)z^$SkAauF>WH5l}=xxV5tHk%NYNPj~(1p_pAwIyr{2Iu$s32
zm%tj@dRcX<nr`9g`#G?dmb8NP3QoPzHz;Vf&tGMEaOGYj+D01W&jGsIXbWw8TBr){
zDcD8>OU?>TEBI5v4h2W3)b7Ae1-q!JG|o-+{<VX<73@*4mu9(kkZyL{N5>0wSut*W
zJCim<?IAs+8HorLIjG<emnD9f_-A8Gj?%ewQ9q{OIGtB-gC`W6WQBr|PRf)T!83FS
zD7d0vZSCMWnpW<3!#l+<a9^l97nx*oBwS*0+0_4LGIpW=s)B0@uG2Cb=BG+;(rDBO
z-k`AK^{f;0TeKMZ8TxGncT9eFb>JV`h6-LPc*Wua8ryyT7YZKInZS*Ftl+7FXUv}{
zpqp!`&6J)qr^Y|%<tL;Oo)wq)TEQCy?-aaO@K!<Px&Cv0y<2ttSj|}C9~62Gf&Pgb
zOynb*|0*~U(T%&nSpQ=7D~)PQVhke<W;)gQYo4Dmy^0Jf;+U%{94g|OC#dw^Vq{d2
zNrjb_%#6mz02NtGo|Q>971^2OF!el5gSnXJHWiBs!Q_{>q_Z&>O+{j2XOtNg#-$sB
z8k0PXRJ)UjONHB1JWRYQd`xofGJctymw7(ZC+1d60h9YxBr>N<vgAqM_2{bcjZcs<
zq$13Oln9d~6$Mq$vj_^QsI@0;VU^za8CygJ-BVwbu^3}<MiP^mlwd5$n8J8W$zMuE
zX%#iRsOd!+6=hX?bm3nY%Bd)?qNWqIoT#9pqKXR+Ty)?Y6_r%nQE^vAW!3nNWmOf`
zm{d{e>Pjpr)m40}Vl`Dkktv9ZJ}UZBQ&rSf@so;9D(a~Cj%Hs)a}{+})Kk$&#rG=e
zt7tmk-#~?}Q}E9-K|)Fm$-$D;qkp(DwJLMCsfs*RQ#<8}G@(#=BCVE%r|A)U!_*&C
zv{3P*iZ&{?_SIXe7_v9gT16|Gnr%UHXi+}W-kx0QP@t^}GTW(WPYvi5&Zk5>sG#^8
zlOoNYhdVMS^H`opXX=8K(p5z_6<wH<`C>r$s*>7W#jf3<UgWHTOiDeOM3a&S%?tKc
zkucvsVV?hI75!AqQ88CVe-#5%j8-v5#XuFms2HK*R~3U)Y*`x}qS675!OY40)m?OT
zDB|!Y4Wq#fMTV;wwm(@4M+mDOOBwMgOposvsp4|^$SB6)3&LYnj8id1#cwLctC*nT
z%EQ1!6*Q9cz@M^<!qoSj%fpjY9H<zYtRl8zgveAC(^Sk<F-yhov?(41W>8sgQ6kf6
zNu(wbxv(}$%JPGOKUB=7>XwHo@{xJ|`cDdfco>+cV!nz+Di*7t_%GK+7pS<uFuYKO
zx;#AjRXE$a=n@r6ReGUec%_PL&%?`9ET=X9BK-WA|KXBw|3Z-!G(LqQ<i9DV$SQ6d
zk+mw;(YoT@v0lXnS~;`*f03zTlZrhm_Nv%SBSw8xu|vh*e+Raz*sh}Y8$a=FtQ7Et
znxc63oBo|Dx|faYR*|$WI<bd;7nRj?{bA^J<;c#R;eE86R`@CFfQtPphVKpyJnUaE
zCz855-1ts}vJR>^q~b6w_$m4k6-Q3^kCM4JJbIG<m<oF2(dI>A$~vLqB$<EuPtib8
z15}(=aYn^i73WyLsNy`63ykD>d{4OVF5|h5msr_7Cqn!REhiP#*F|rsxW+xY&fOpQ
zDsY~z<*T?!!+Rz$KYQZFUxU=V+uShvlCkRI@I4j(P_6?G2kz63_?-Whiq|S0&;g?2
z5iPtjsaq#UpQ(6E>*{piz`Vc{9^|Jq3$ey;ET5}*LHlTO^rZ^=14QI=jzq^0{~Hx=
zRpfFYw*&9!E9s}9pQL=*9C)wd1Dzf!{-x8{f&B<m`lKSpfmk*_tN20#i*On<x81rZ
znQ7U~=s-GCPtPO+W1Iu=OcEHuNWTI88b1@8nHkrfiYGBE^I1Fm)<%)+4xD}!$ibMC
zF_TR%zh1XEP~xdhpC5*=iwX`{9k4m@Tn~y4NDkPU&t4bZzAh>|Kt75C=hj8fWe<@L
znVJJm2bMdq!U2~9Zin%7cY0dI;_-fu0|5tg2fPmW9LVFq_}}&XjCmQ!%*W)-x+w7i
z4)`5Nbl_?C)Y0vOl(Mgn1|0}F=o1%aI}mmt;y`@|8aU{oD4-2k)`4;k6m*~vn}r=H
z$)pG)ITUrE81v$c$);YyfhPwd<d9-2sSZR<Udn;eCNJZ_oq>Mx?06wa+nh*w2P!yF
zk<NbyDmhTc^sLO}TgEC5RAo}l%&kscTOXz3HCU->>a`rGZSvZW0^c#O%UF+*L@L$L
zfkqB=bD%p-kgk8vSw;3n8avR$fu;^LbD$%O%^BM;{@_3h2U;?3#Ymy7e}r3`{6`0>
zPY;vWmX&sl?akZ{G~+XkTuMJV(24cVj9pBht~Bp=jPdE=Ku-roJ1~Z`dO0xEfm>%o
zy&dSoN?*o-j6XZjj|mm*&t!lDb*lxx*7XZ3gBS-h4sqbSIz}!99L8aXJ1~L?DZerq
z$vBFZT$Uh-W4Ry|nd-nelaF^`0`rLuOmbi{^WV(eDGscPFHS}BG}Q^GnfmVzOlLmB
zRAw@n<p3S{<av8nWR3%biyWBCWFF&u8jy4)7C5kw&5G-zz7zh|>!XX=T*64DmeN?Q
zk1nG{wLVH_?ixD%cd(Kg<G^YM);Ms`fkO_gbzq$XTO8Qxz<LLErH`R!*KBYY9~Zy<
zQ{U+L?^!*Ym~5u9aZz&E=D>Cb_Byc7fj=Ge4M^f12j;9ZK3whKvO5`fIk1}v>EU!m
zbM^Jp<4WSPC+~OQFV+t*K3EeNveHj)QhwUQPrn;K?7)WU{-X|%{}I}x>y5XS9b?bq
zj3*dR(sVB=aEg)0X$Q_QKg)Q|)Xy`adM`O}nRdN~*&6<K;0i5%4c}|H>Y!JIK-QpW
zxK2IVpZd{(e;v5tz)hNc8czrQp+nvQdJgIx2ktT<-nwMcJ?2TlaLq<Z4;*+%CjcEa
z)V%f4<TK$%4m_q4FBE<mj9yqDeVCZ^jE+8<Ulw1G|N3b94biFej7{q1=`f{N4!kz`
z8wcJpe`hN1X<xA0z26MyPY!%`AhU)n8ooG?MneXTUjd^Tw{GQ%kJzP1tcJ82(rHLK
z6r%gWDoPO|={0mx3=*dyUPFQgaKTI(GHM7HH(vJ9=TiL8qaoXdXr0)|;O3F68ogyN
zkx~u~*_dZ%EL1S`RnMs*7c03LEsO%AmC?p1GD?h8(5@jk(N9Fx;LuQ0LoE%O2B(J7
z8p>#JX>e;u)DX~&$4Gh@^K0;G@G;M$Aup4pX9?txk2$^8WZa>&1vEVSA>!BIc~ZDz
zuqeIXgkH0vYY1uhkUkvLj0aJkObq7=gu@ylG(;NcHC6OttYjtyH56h};9^Q)4Mj8%
zp;S~uG3Lb?pT~zuETI_>sx7JEequO<F_kgOSc>sQu>{I3tD&5R>fFxq8Y*b0rWv<t
zR%GQH4V5(Gy<PMcDte@CWertmtmxUx#lolk23FOK$HNk#XYeN840}c<f2-l`mm)PZ
zeD@$kZ!)T_p$-L{?ypaZh8}4`_wonpX{bx%86T>0I?!Z`@l(%Y6+#WzjXWD_$hRR%
zq_Ku38b)durJ<>YW*Rzb_(?-^4L@jTOVhEzPpO55*34U)N-GVSViPIrM^kCTgw7li
z+c9sip#zh(b@dgu0-ZE;)-YH@{~y9#G<4O_kGO_zv|^hFca}}=rJ*~uUqgwu$=ep`
z)y@ZdYG{-<bmK;_w}w8n$Tj>-W3?fAwQTa67GWw<yHJs%HzU9FN*<u$#|_be8sy(}
zBEM)D#AV4Gmn$hL92%lwL4%Z`8ir{Yu7QgD%1C5{28u(3oFDW|8m(cBhLZH$ET=wJ
z!#E9emj13`JQLzmnM`1u$T&&EWF}J>e`6%iFDDbGnf%Skgy|Y)usKu1EK?_+uby)>
z%%!1lBApZSG|bm<QNtx_wuXhYEH!M^ut>vV8ixn|4H}kcSgK)_hSjvEdg{wGtk8_h
zs>^9(7Kz*}93kxRcVH#e)!%>hrGE`Ak0<(i4Mm#;`%Uz()v%6|tP`gPH+5bbwB|^x
zRZQQgVUvcV_w;X%2R3UU+?g?Pn}+Qg4rusG!=D;%XsNq2?AEYD!%mv7n!2xQn6O({
z{~kIndgwQ<1@>v!O9#{jfB6G?gJt@DS_!qI+0O+ElnWlza7e>>4Y#xDhc!Ih=6`YB
ze^kQ}=46hZq94=n=tY3iaSbO-ev-*44W~`zjE1w!&zTB!mcm}3b+yKyd4c~j9sU{~
zYj~pJ3Qc0Z)ayq3ag~<(UxDB#{Ti)FTad_2+K(FUY4}IO@t}TN!(AHBR(gp~fjb%|
zt_jcu7P<~oX_S8URp>sQDmVNOH9VkZe+krjpc9hvi1p)bia({ZNW;Gxc1=%yuHl7-
zfqnfSHN4d5RxiBMFgA_;ng-#q|E&hg;^5$G!8g>BYe5>irLo~d6N5881m4qt=S=)S
z`(m>G-5$Nv=fH=ZflnGf)A_F<jT5m>tomK2i;8qXDaMJTz5L_52LJ69Jf0~yWv)NH
z6B(RHa-yIUaZbcLVRgdhM1m7=BAXN0oyh3Kmj3?CPGoT+lM`Jlg!(P;S9R*NyJ=x$
zbsER@jA#DP)!@xPl5;qb(}`S85Z7bFxt+#6Sx+Lm#fdlV^(KkB;53?A^KF1obV72X
zfD?Wv3T+MAolu-mosgZNDlYWUM|{*zln!Q4bcYj~6HX^SPVl=J?Pqo3ZstThOuURf
z#ypI98S^pbcVd{&D3$0$z=@C(W3K2&vj^!_8aj<krC`vBCr@=E{$Bp#$MmoheWH5A
zi4{-u+wb&3P84>ctP|y&DB?s>CsLh=I_a6`#`-VjL~*C_`1)igN;px{iHgNjt_<^!
z-s`6)4$=BaaT=>AW2GQnur1|887G<rL#3(IbbsFi{__X?wYLQGWh+{qF8(-C$!R?J
zs3J|r&cMlki|4%Ir$zOR)3^ZmW{6(di7HNd)PIn!^j3AEniI4bs*^&!D5ulf2wd@R
zDy-LV;)khz`cJbqMWeZMA+rnLIZ@Y%=}ydW8lULuInmgOCd}(IHgKY$6Z8m+G226p
zDEJipdz!MP0s4o%DYe;&q3qV2f;%yQc?&06I?>aKUQV=fqBUi8(z`nGqZ4hM=;*{x
zPNZKHZp+w#u^nT3#@;W(LpMYhZitdkCnq{P(Zz|r&%>R%$EtF4u^25{Gl2-j?8cG1
zGxl&|&jv&6P1EGW+2`Tg8=`%k*nG_YGp!#dN)HSdsu&@p>l^*q{I+{6nFDF+SB5G5
z;=~{)j$hD;4|ZY*>rJ19KW&H(b7D9xk7a=ogiefQ{;LxsnUFrpiP6lf<_eKHj#fo?
ze_n6ocPGX>F~Nz6to+7ES(BJdW}M<QE_#qiX(}tz7)cZd`sv*qG%quq*x|%ZCuTY6
zG2NiSueT&T+le_&%%#Jhx=FjziTO?}pxL?UU+2U^Cl=9WXOoo0PAoI|5+{~2r%N=H
zMQJ&$YBP5wO}7^Ls;_opjj6A7V)Bu+q_1aX1LH=<O{R}+WAyr*2we|}W(sX}Vw)4&
zok+VR{IaLfkw2;ZDPg)wv&)IyPP}m9CCwVInR8B@cVe#-`<&SC!~rKxInmn_`OAri
zCBw&^h?yNeNDJGE!%pN?laA1KO9}f<>XBR_B1fG##tQMLO414Tr`(fH{4+gFWhvBY
z4tR#v1`|>S%nDy{;-V9`ow!3&ygPJ>PAZD;ja+u(Z#o7C`mZ=~!wI^ile95<mCnYE
z(Q8gzXF@!)!$=Q?q}*~MUs2=d<<$4PRB)32A>%!6)jy2)86PlGr>Loq*yk~wGfbX3
z@tg@2e@0`~BA&L}(b)-PzT#0z?=m*&YdSogcuSLb#sAKU_q=}E?GAl#f-X$OxIm-*
z(TRVZ_{0i{UzmJmoSP#)jmz+)M3>-VT}EpurDc+ik*Z$QE11Cry08|<7|)o%2p2Lk
zp(R=*At4L5s+9|^UC8P}HW#wHkb~m5P{@UxF643{5>3kQ!Z+n3xn0m)aJpb|(Q|Gi
zlmsSLMw<(wsY@={nahj{qsr)Dq_QQKhFvb$%7pT|a5Y<MLQlWj1&<3}7ksRzd!*-~
zgKl7$vWRbd7s%(rxpYO+PWMxj3b^2RA<+f8&UtrhAj~ZcxS+cbq)xpH&}C#Q7;=H|
zlNgP-&_8cDiIMzIybBa|p@<8WU8v$hQ5TB2P|Ahhk|M=jsJJXVF;66gNiyk&0wr7+
zu{>Oov0%g0R2Nb=1)?rIh(tWg!c?lX3uRm=OBesClndh@1?bv)c^4{BUpfV=Zj92k
zcOuD$Vkzqz7b>|hsb6?vB$BgOu&N8yT&V9t0~e~h@GYI~E}UNwo>w4J!-d)|OkQH}
znl99GVW}g!E?Xigi+tfaoJFKA`%{s6OxkRWHl%MN=7fKssT}BU<ihtZG<G4w1)Wk;
zCQWE^%SM`}gh^?}N^?U=BC~}HEqN`~su&qDCo*DV^hX!kxUk-Z4ZL95y3mhC(uH;|
zw0EI{3mskPO=Gwu{F4iHSL<C}=;lHvnv2EZ&Mq{X6(-V!P2%0Dkq_vxMv<N_^k7cr
zCn-uwFBb?Sr6Uxoj|+V{Ch?z{99thdfY!eYi(FXj!Y?iiqA7D>stbc%7{XOgaA7Eu
zag4(lsY%0`j9~ngaij~Qn2cs5pD`|sHTlCw5mLspnRZd!M4B(ErCek(;}jRDJ7iL-
zSR-MY3%|QChnC8n$aHS%EEhW02~x{vusPF(Jp=t@Qu@P%*(}nSkV!@6x-id$`7SKr
z2n!jPY>ZMCrF|Qt<hjI!6)xkF`%)gpWsJ)iDYtBmgq1F=a$&X0_+xj>A6n-E;Tp!Z
zEZ!feFUlDuaU<;-8g>^hP(T;9xNy>iQ!Z?EVVes_T=WpXl<hA3>B2r2_PelyH_>j^
z#fp)gw9_j_b}?>GO{#b}xW|RPv>pmYZf=Yc9)24*z#H=*Z|%PryUNi+e3;NzJcnH%
z{J1fCl<F;0guW6w#>c{O#uJRRN$W2SpLXG_%lIPZ3~i95VM@O?Pk)Y1s??-ACjz8j
zbm5W<&v{uMS{kM=TrRutHx;2uUAX7MKQ3Hz;kpaAT)0hbjwan;yh&Xf9#5vQDcbo_
zVC|Cd9oFyC`WYTiCW+*5--V=2(T6TPqRq|@q>}>`eC)zgR-U*({`6ha`|=UepSkdr
zyr8{YAo7w9u^!2<TzKum8yDVEGnR!vxbV(}nwz5U*(BwsO;I^1nFu8!pIrD%XPO6<
zJow^58aFn$vC)kfH)7qW=0<fl(z=n(jpA-3yOG|F3~uCiqktQ6Zp6D`cSEKkUHl1d
zWOO4FbGWhjhVguc%x+|1B{$<qB`GTt%F5<Oc9Z8|lGBY`Oe*oyFf3-S;D(jC%~V7t
zk{czi7_}&FsBYwA(c#9Y^t#JUk44fo=1xWuQ(J`Htb5$>y5Vypj~n;5=v}Nv7Wq@k
z>jv=&D|HInx>bzdtTF6HB9*-u3^3}9LB<dxJ*I$isZ_*`BsU7WQDuO?kQ;^FDB?zi
z4Z(~fV~TRLB4NFl8zaveRV*xOJkFwo8-Fx5zJM;x4kg`4VUlXr9%WLBv2#Pcj2mU$
zDCfqi$^Hr~mUpAl1ij@1os^1hd_$%io4OfyFA`R!#<;P6POvJAFKyu(FZ9AQlD~DM
zh8u(280<z(H|SaMP2FhbMlCn4E%(=UqmCQjxlz}R`dmxL^2X&^YJWX9P7MhTNFQpz
zdPBxWjNdahW^BSpMQB2sGw<lePj37`gMUzO;YLe0TDj5MjW%wyb>l}j-WJolZPh8)
z8VC`#bECZ*9cVRvi2slnS~tnas=O!o;;o+^7}SYl_Hd)88=aYVVeHCC^>$;@oiXHz
z>BXeK8w1?vZTj?K($|fjO{E`o+-mfc?(Q5&!_q473uDhrI`OJY^&xHybz_bjbGgVc
zH%7SeEA!!Qcy1YGN3uDEaTMcdM#>uF##rX#Ol7<q6PQnAoMh^gnH;<v^P8zmbz>Uy
z-`zNpMxSo#GnmX|oJGrt$!s$>Z^M{*%$K^c%#HbO>^N*Ra)BEQX?Xt*EOKM98#fE5
zqu;PmTH>bPy&Hslmb<Zr%dT)^B`rDTtIf!5!^T6gk~_q#Wn~@X;mQ8>Og`r*x`~bg
zH?nz<-GeP|Y^7S<xW&2K+&JLIUv6x7<4<Z5ixh1?lbwva+}LgEd)(N|d>`YLqUp)`
zbCz(LH8BU>ION7@H_o_m*!2H;j2v;}C@aSpkDIwC+&F3SQ?y_B%%Om1-MHk&WjD^z
z$aG78-i-@xjM`*;gW%q&Uvz_zc-nsY-_(~Z!Ru~ZG2>iia*gyf#_&?Q!OFbSF}In#
zbmNs9cigz^#ywUZGLq*%bQUpxz*xOnWZcijy@Ze0e9ZX7ji*dVf9A$><}XYoLsw%i
zUc2$ZjgKt8p$%o`zGL#9j`VYS-+1E<(f`uH?m>DFKAAqBnS600jmJ3BV;G6VGD+*f
zq-@49mBE8JR^UOr2br{(CDUUPJXm$w=yheqIMXIp4rZh*4>Eg@#e=LK<l170U-AYC
zDJ@K|=kOq>2PHj7p<EAgdywcszypg10>}4~z9?w*z-_j~=7DH($pgE|WhROTDia5z
z#^_|ECb^jG=#oU-!@No7Sf81jhe=+>e2n=$D8R(eNTsgtHae)YS=@u5sfRoWn>@lK
z$%BGS3NaRDEW%inu^1yo^X=jt<Ut8mGVL>}NHudydk{5wDH@H<>F+*CQ^td`9+Wfn
zicHFTP{CA|UoduV%R!OK9#rvQy9a-IP}PHK9{l3LAP=g0@T~_wc+kRw8Xna2ps@!{
zJgCJH>X~tBGpXajcTDP<dZPozGN|uC16CUTPiOKy<M~WRN18Hk?m;utXIH#2{{DZ`
zwDh2r2kkxRz*((5_|f#aT{5YS$=iC+j=86vUjIzmjvoBPW*-kaF$oseyL-^tgDxI)
z^<Yfym<;n{x_NMKmGOAJWBH9!q6d5SWbDP*oAG*`)PCRTeVPC4!K~6T{h0S>9Kbk`
z@$308*n=S+Ebw5V2SYs==D|1*#(OZFeMT|9Ij)aj@+;#=#!&H?(M+f@V>}qkyh1<Y
zh?qbf_r?6?!Bh_>nm&^}m`uCol|F@W-0pbd<UGxT+3fSX2c=epr+YBNgPwWynT&r>
z7nqPjr+32{I*~aZ%=KWN2T#iAvm5F2J=inFn3`2(45YM(11@7+%(#ScDdVC|(d8bj
zV7}6WwM>lS9;{}*hEZs1L|f;<dJi^`Ld`p*Z}DK02k)#!yKW9__Q3iocwkd>-5+|*
z-8$uN^<W#j5pVXg@D2}ldhp(Z4<79DV7CX?J-9)w^<b|D$2~Z~747rjFD6voeh&^X
zr$&-_(1Sy49%el1!4cCl@qm7e`7QQ5>A@*BuX=FWgEP!`T#h@-<gy2UdvK2VdBzKj
zRK-Omml$bDoNF0#g?8foG-J=`83)D;8<OUl>6vgb<|gwe9z6BnmIt@lyyL-LCiG{E
z0#dr?!9T3rXMDi;kns`YV@C3vzcrTdnFr5VX<Wuw;gnu@@X~`<9;BuVzV_ga2XE;-
z*{KJ1#k^zB4O9I&6Jur;N?J0)|IvegJ@9(r^Wu{SpXm_xBA3@V@V|Hv>qS~G(y$rh
z#ZM26RVOTrNykbCFXFsN|J6Cx*vORPy~ylE7B3Q5Ck0G0GG_9kPfw$#S)K>7dXe3W
z9A0Ge!dfvz4}~T@ExoCvQcTJ9flP0V5A(UbkiAg2ti=m~JgL&Pew!Df7m^n%zBi)L
z?_llJy!1L<-=?o8NKwt&H7^{@8;_4^`OIjc(+iiEUV!U&dx6=y#|uhC3J(e9Vb5eQ
zN_gqA9`bpSpB2xeNW_Z*UiiKEydrqyXj~%e0Y-|cdl6(FVr<kueb|d19eT4NdXg6f
zDfgvb$cy5fTbNB!ig;1f<i(iKe+~Z>GI~_fixe-avVW=<=PxD?eCIFgMU;6d#?p*s
z7|G%Drf4}Y%6n143v&L(i%MST*%K>zal2>|DV13#QpF2(b2RsR|C7-{GO4<1Tv2r|
zW+#Nc^`iHUkeWWGmKU{Y9P%Jv9@O#TJ1^S%(7}hgUexpAlozMHsP9DsFD7|0*^7o8
zq`em%ylCXb_g*w+h2l45(uDDIk(g#)?2R|N+1!gCOrI7^T6)pSR9Z9n(Tg@r+M0Sh
zFY3CC;vH$yz3Asfe=j<5ZcoO}UTB{Jl)8A))r)Rkyl)Wg?nMvM;}cK(8xZL!{cCkX
zO1-GRUgOJ=K3??o;%6_`Gzn9Bx>oPjBwT!FXaJ3y7vnkdFJ27t;#cN_z4$8{9nO3R
z^P!Bx7{@&cQtk-OrKU#e7!4lD<|xL|UW_qw$9gf&<g1?=D}RC)6IuDbpiyv&7r)VJ
z_hO|NQ(2$p#qUhYzBT-(d$EMg8D7lvVit4K2h5N8gZXU6IgE47+<9KiXTHEx7BX4H
zxY&!5?~PqaX{i^>yvEB)mNRY(gy?M`tGrn4#bz(Ic(L=b(Tp`*a4q9HFV=gpfjFD}
z<6~C8h^?W9HhJl1#vw}G`s-W0#uGL7v%@wowln$Di#<$sFz%!k?$dWM64}kf*3j7I
zd%Y;NIl7N_RxaJ<GMajTi~PlSknxZghnXB<B%h;R95eZGFHSH&X)5B1m@{6S^&*cC
zd3`uX)p?Q5hx9&rCJZim@sd3+d2!i`yI$P$;%`=NFkWH2>cx!4`Zb!b!9hybnWPyM
zyy-=_eDD_IZN@t^M8|@(T1cn1{lmqddvV{32VOk%;*l3mym(3@yv3g;tNz#v`W}!H
z{Yw9t*LafrvZn$15}Cd$Btj8haD-;<V_tdj+DrFz<1I}Yi|-geGrsrYgBKr}+xzJM
zdhsknQnUErCojm%JtaNiz%j<uQ%d7QjL-O^Kq=N|yr?Cu57|HJW9#S{e2DWQmk+sp
zh-aUij0ueJA)^nOe4uY9v-ptJhs-{_D-_(2DL8vWAR7hoVQ%JN4xjNjh}FsAvWIoT
z3^74^C<oQ0rZxV3uy80RqrhnO!Nx>nBp->1ol*8dVWOJ34j(k;OO_fRuwB#zA3SER
z&xb*wkk^O$LyWyf&tU(2ERfHK{619o;aeXH_~7^98=rAigd7sNV3;xBgYGk4{T5^l
zF_L*Hq(^*6@}Zy)g?vb5=fXY|@!?BcVhJCL`cTY=;^a?wH+aS#Zm>DpZF96;1^vy(
z!jm>ftM?3-^dW`)$)U?!KfT^4YPPu)lhTZ3d?;(`<$Ne_@(N5UGQMhUeDtm4LuDV%
zp3tlKKufMFV>L!Hx3|=5_~@=)qnj;#sO3X#F585$jt>odcu-FN&IiXay)I)tMl$RB
zkoJpCw~aSspGJ(|Gd5<Vf>qA?-?r47`q0b=BF!0pU~Iv7`$K@ft!~BDwf2GdkBn^?
z+cLKEq0Vss#>akIBprSD$%pkmZ1ACz51oDZ-G}Kubn&6955M{_l0$X#VXzNFeCX~&
z4<CB6*pKo5Xu1+`o2vKCHC*>4GnHg$aL=BHwfDL1<#6snWQt1BoUud$niN7Bq>!n|
zlp!;rGS6ekJci7PLK6Lq|95}>_j%UyKJWV0x7J?kTi^QjI(zT4clS)Z$BIX-_cKxN
z4Yx-o?i%c!yxZp!BRw-QZK6Z+K_+_B!+TpdKg-`I6MZvLdqm_#JM{b?^3WwB7yVdT
z`&5wGPlWX8nZG|h|FfXkCl;Ry_&gI|WMYUE4HW!RaFF0&LDsGKNE8P~<rEq!l3{uB
z;h7kbiLcntU%am~F;e8@57Y>D*Y<v_>yFOEm`u#b#LP^L&BVA&J{*#tQ#n4bg~?*N
zZ@J=xOcb0XNR!e5zRLukRhS|;RdAZ%biswDKj(XEL1zAmWus<iWn#9pJSP(@`d)CZ
z;5@<kg1_hU_&Ls>GO-{Nzh~k!g_&5CiOreVBGngXVx5pBf=g+of81r6Se}U$bk_;i
zs!XirScH#y!lQ)$rJ~N7Or%yhOlvdI>$>~pifAI%XJP{b(G_oFCVtMuxdMLoCGMt7
z{O@CHK%waGUB6^vYbK6l;%FweWn#M=^k61-WMZfAeS*6(dD4j@-frse@b(C2w#!9t
zU=?-g?kGC#7vTZHU)fatr~`*2dsy%{!7{(PPh8D+O!!H`<C)QuZzqJa%HH(+r}Fr%
z%=~|Fy=0<v3}s?CEAk7O_*=-If`4&bLe6us*K?oQ7ey_mi<!90b(D#Jr1X;Dzk)11
zaW>z7v;!k~3~8}wXje0FBNI0>aV--)vR$U@j75CfC)-`J&f0X$yT!>`n93K!eHYwA
zG{q#VKnw+?Zb`vHF{BGA{(b(!F<e=jWV1zLm>@r9Go%QDMPn!?gbH`ut`b9uJjst+
z(n|?1xjGt4S>bobP(esJ!SaH4#&DMq{#|$9z)1NX$z}>xyj>JSB_S-WEToEHRl)lN
z?-zU^h6jaI6Qusz4Wl+=lI?LdpAmx@!}BIyFk!`D$FNhwE-kX26T^>Gi@_CTF9tsb
z6+;l?8@%y+3}FoM7@EfLNDNsqY<^MIjv*OCb>Z296z0TGBZiuiO$c5rrkJf20|^xd
zEwgfCXcz-YDuy~d#G77S!Ox4Tda>w@b`Ql+Uq}PNhhx~cEJ1nng1co2R%|5I8^_Rh
zl-nc*e&La%Sqz(EZVN$@=0YBg;jui)<3jj-$tQ$7DcCZGRzjYN;b|ePTYiiCOrG%B
z7?`E-g&1CpVOR{qV`v>in;2e;;dL5ho6|Oik!P(}VrUmbdy#aY+GLMKOfSXovIslo
zm9nUlRAH^oF}#|`cP&i45#!&=&@+Z!F`O=&(=~>-V&E4l`M2?I?9w#rO+gy-ZIQnd
z!@EMd$MC+8_XIgi)?(_Bm;HdheID@p#qg1k-hzE-Lm@2sQ09w->Ejp%#PGQkeG<c`
zLi)$>nGhPBiE3ZOFffL}A{-P$x0N}U7f02Z$cbOZFeHYdqR_NYl8M3*F?<!nj2LFd
z@Iy=Wbqv#9SCeT3PQd_cl;Afpj21FRaAFK&g-~H!4C94=n<tqNL#Yxri<l;fkY5Gm
zqxj!(jy70R1gG*SLZ%CH3RpD!^?-MmX2mc&hB+~;>tXRhvX9<U-wS7UZVdBcn9qKS
z<TfrWZnJ1X3=3n((NIIfq8Jv(a3O}jV^|Wy(irx~a3F?dF)WW^Lkt^ZSP?_zX^Ay4
z6!|H!GKN(#^ebgkvRdSqVv2k%j}pU)p<cOt*7_KT&3{gm+~NNmc_VhmP<5w2=w5Gg
z3|nIOC5C?%rdVq$M>NdZ!HPd8w#Bervg11h9gErDU3PZHu!|P!5KxB_>g=II?(paQ
z;O^zh;=q4!!|i_K^@(3&I2gn4bi5c2#c()=<1y6k;hs4jeXZcpm5JYCI1&TNQNd$^
z%x2%?orodhgu}*9#&Ak{!oxAk>QfIUmhE=_kY1hPSs;c#h5yA^(KCZ;Oy^=aFG6yD
z9N{8|7Q-DHifcGF*u50PjTmmylLx#1#&DUzIfnmY_@=c-$+Z~%C!E=<LO%T1yUwur
zxck*Ehx``L5o5i48uDw=-AM|mnWmwTG)`VXLqXvi3)<8#tRY=P5iM%Jm<9?-GBiLW
z<VA(>(Bv#Fp`oOPsv7RoP)b8-4HY#^E$w!1tM07fm(fsG!|)4kIl4+G_f8GvHH>Jh
zn93|l-KF7f4bGy}ma$2eR?u*dsC9eAWp?N%-n|+c)$%I|Ru-(HAvWHn@O}*sX#CGU
zJPi+O_^*wMY0xxO6P_tZVc){gH5eLf4KK7+CX<F8y)y1U?2=m=A{>)s*3ocfto2U0
zTwlYBbDdB_T*JcazS0nIbn_ghleszjnq_BcIML0ku7SMCqExnq&#UBoStv!UsUe}E
zw}w6%YH6s=rZlwHkkpW?p}B@fHKa7u(ePKFprM8WhpoCA>T76O-d(ufs;A*08sU~T
zyNO3^prOJ||6v|zQEs78iSfSQNJC={P3Rk=t!MSzrCDB6;g1M5(@^vY_tsI1rH^Tt
zuq@F+!xI|9Wbim`b=KF%c~A0KqV|l2R$BCjnx{0}Uq1W(c4_<nah|3zfzI`F=O0M0
zsb@v=IStPXq2vX2;7m=DHX7P$=%(RK4ed0vm!{s(&_TmX8eXU8l<{7s1$O$cXy_zE
z=qUL1HRtNh>YeFwmz`HNbX}PEu%pM2@|uPj8!eK2<z1Ski-x6p{H_|_zUj|D<5&K}
zdW&4cdm7%?@Q#M3Zu&K@Io-ABZ(r|fXwlaFVssiM<L6jCH1yQac~Od^o3z&HrQy!1
z86RjUmg_OQj(-#T%k8V-Lk-h;P!0Vwe5BzE4FffNtl{xB?q^&q<iEO~2!5)ezs8Tj
zxmPcF6y7NBU0Z97D3$n}T^eqE`G+@1!(a`gxHL3;sbL8F*<O7`{)ab|{!gFRFif(4
z{8RnK=Uu+MdSK@aVx2A-Uu)RA-DMgn<hN2eqcx17=REID)3BtLKbA&b<4(~qPO_AY
z*YK_I33-x<LMCaLEaba9dBc0vRH<IGw#!CFT(RaK@Mmh6rD2tZ)f#4#KjZ$u>C-Sr
z!}l8IMnm@IY2XVtx(@d~eKljgaAx)E{!bbfXjshlxjHm7JM1sgu<Vc@ZcqHPE%*8y
z>*GbKrIct`squfoUf<7x<r;dF$z7p=yzu8qCT3r$nsKD1w?@NS4VyJ=(XdX#dir(;
zccX^PfBdgox*If{{@p65We~5H^M0mPkNTVFRB%Zcf_{-$v|YniuGSiU56{~sQLftW
z-VQB_fz;_*B6qijJsJudNH?&TPRO3<_)y1w4F@zR9f6KtH5{alj&vP|G#u9OkA_Pc
ze$#M7!x;@{H5`=~!Z320-kZmdGa6_(sexhS)a@WM&LaO^Vhff3kfLs9i!dDh$%U`s
zf)t$-Jf9bW8qdq^-pXVAq1xXXE=mNuf2u?IzZx!UI6uX?#u%j`W2*B%Y4bk~tkSks
z8YNdnpV`-2rCrx>L&Hs}!dhv1RQHyKd_wZ;V6&7E3y6fgppHVq*<ogj=*ZA<A2oGA
zM^PQ6b(GQh1~a_1-)gbPFQMZO;mj7-@yIBPWc#K>Ngc#eI-XjbFdAf+)lp7IMIHC*
zD6iw_4gXFZcj=h)SM|xG6O(TEck9SG?=j|7pzwyzbdQdii=!e&p-Orbi>m0TEM(yG
z!OUA$RUNBlBq;yo`@{n}9@Js!u-V&Pel;D2j^5|}OdT;DZFc#Z4qZpf8O{<vF?3{t
z#5nJpqC>Txr#p@gSI4O%PQhu`ue<yrFL|C0pZ>7RubfISOA_jc>u9dyQ5{)2s_Uq$
zqn?gzc3wwq9Z5ELpI<{qO&#mECMMkJ@(h^J!H4-bmUL_BAYN?l=IWTz$4lw>Z@%mN
zXOY(t&TQS6GKdf9XrSX^9en<wzK$6m2W6Xhyvfy2M<X4Lbu26DuKg%zqNAyf_xc6%
zX1f<UWjvyz&*Vfi9X!NjBQ@r@#q47`9@p`*j*dE7uqQfR(D9;<Cut2Gd~?pTI(AI9
z_}ZLSoGhlY-a)?bVV3i>4w7d?hr}r7J*VS&N#wOgd0d;VX<Hp_b=-O0nSIo6r=z`&
zD=l(6=-{#)cGSQAo#U)>DS1iclNY64(a}lA+dAIiRO<ZlOZICzUf1!e&QEkj0b$NN
z)*Cvy=;)^7O&!$^SQK{EG4GVe@Z!#~-rQ(0V!Wk;0c7o>6objTI=buV#Sxvd-qSH_
zgDN;O(No9!I(q0B@q-htjZ)X{$+{DhEc$@cq=VT$Iw(K1-8s1^#cV$vAL-boW4Dfv
zb$p`ZJI<7jPj&RyF-`~H8uXct0Xn|o0Cjw>;|o@K*&Cu`ppHR02J8ICP!ve{iXpye
zD0=VE9X7G!Zyv+uP#w+2y0rN)vFdQa5jt9T@hBXrW0a23I>v|^Un}&D9P#!$i^g(*
z@@gZ#uxL)JH1hE}zNPUeTN89l<f;+AcC|H`&cp3W^K8x<Ur)rB6iwAJjXtAexsK^{
zCmlcP_=)R_UDYv{w$(9P#~d#6KMRe@PCVBlb#_dm@G0wi4k|N)WIks$JMjafK}mI6
zVIrRc$?q><pR*H-bu7^_WQ?^?a1kBsbRlMYKkTt|sSdWr)GIr&LdQxS8@Ld-cy+AS
zu~x@A23sdV{RS1)8fMFTJPJAMuIDVDvf30zRVVSYj!inY>ewbnq1v1a?q(fZ*z*f6
z(=XBv36INCwy>S1sHk=b?i9TIo3}^DUL6;7{H<djgTIbrI*#i&z{RdZy_7gg&*#AB
zT8C+$;fc=E-9uc_kEW5lw#WTV#}P^7kIYH5d^|dzp3w2{T<^S&lQrE-N4%4?cKgIB
z9lr}XE%=8Z<!6MP)$ym0zw+egc({Bn74$zX-c`S-;~yPYbzIYNiS6sS%tb^ef81p!
zHw^K(<@k>_>E-@U$8VRspR?SjEw6tsm;Abp8#?kC$Zy~#7wJcCy+18hyd@*jrnr2F
zOEt+(Gf>DtW_v|mz(7F*Buu4_di7R#>_!m-83vXbSY`kQiW+#@z%vGl8MwnhbpzQ3
ziW?|l-~j^<8YpR?l!1x{?lmy%idWjeod)hQP{u%61Lat^gI8W~c7E^T=hlmN=1@}g
zgmt%poCn+r>~K-H>CxoWs{TC&|GMb+jb~RfP}#tn!`%A~wBoBB3><&mt7^b;+^dhc
z_eoLO;uICwCMDH4A_G3hVjyNfGhkEMz$0<*+GbZbU>GnBtf-z~`(6i^#FFf96FirD
zgMA5ak;T?LIZ&m=DIRX^r2>J0&_LWk>w#9OR|57qi{qN;u^a6({4FJNatzck(3A%<
zP}4xdz(WS=8>nTVwt>0^sFO5s<6QM#|GISy<gzF5QqnQ@t$Qn%hd$letCuI?aT^$T
z*Z_~!#6Uv>&ldC=8@$u%HWJP(KS)Y*k<8EX?^<RxGtk^XOX(ypGH|?)8hFgW;|6G%
zCpce=Q!Nbq_=3AG$ESonf6_pU#VJ-lRMl-|;3=^{#|nx%&l-5nKu-g`3_Ne(1p{3S
zbT#lI+c)r%ftL-mF~A_-)<8QW+OxI4+vB<5!V<T=fer?;inz6{)R8wbrf*BIsH1^S
z209zj{_Pb5iw`GGjPzbLKzz->>jwVomcc~L&D}EIF!(t(k3}U{x!pL+2HrK$-N0K$
zbc$ioI|kl1!1K<soCJ}Q7yj|zGw{BFv)wX!82I)?k~_x9gB9g$r_18h2L^i6GYt$k
z(8oYu1D`+cwvYM6@Af`4@R5O!4fG=xce~f~DwpuMN&dvZrw00SDxXec_U{SSXRKvl
zz~a;Z1I#l0IoD$L3lR=9Fi6N?!7p!XE=~<GFf@-ZDVaOMz*h!l8koiTdffe*y``6S
zQ0XJAku>tN?kK@;42-75rn_SV#|kn#PRMuzyD~GFz17>AU|^zwNe0N-AL3*K-$|By
z3RjcxX@b-9<TDKHOhnaZ8<<0PTxV5IxbOG#zBj-|<{Owxd-n6@36eA`rGAhimi{Q@
zCj$$FEEHUnSGrip62W65tmRx{j5a0;n^<XJm4TB6P8nEDe>Skqz;**`4XiWpvw=+p
z)*IMhVD|?WU#!QI-9|bg&!nx=X1$t0vYD$%Bs~4`{P>H3t(>)Ay=K)i(xzM7z07Ep
zwu272D7DYPevXlbVryJkEpqoTQe8@3o19SJB=!nt_DVVq82Ht|5hMDsKeVAbXyB9e
z&Tj?|apD>(ro*C4^3kCLTRv*wn1Qj^{o^8M3nwH?LgDWQPRk;_Y2Xh7XAJyf;1WHP
zOKfc7oPqPS4CCak1k+z4EOM>-1=dO>zNzkB6!N!$eK`qA3K_}CSN(qtTsH7Ou4Rt*
zhINHu`Hh;_y4L)Uk>|~tN4nM|UhPuznt?`LY98no@#_pY)bCO==o)2j8OUcwp&-AB
z0wxBQcGFBS98GVTAg8>blrqAkn<!$!<VA85875$&xQP-b3cZ$5)C4Dmmj8B;Rm{X4
zCTMe}_pOYQCQ6y8Y@&*Z(k9B7xZ6Yp6J^clS6Dd{<xTKP6#1Pdc$MicGrF9`?BvBM
zUXtQ<q<chiujo@=k&Tb__=AqTl8HCo^{83Z#C;|*O~g#-TiyFjJYeEMGdeFY8do!;
z7|y6j<Xe5(4#<5gbTt#7PVfv9<hm%_4sksD*d`nkkC<p?f_-pJ)G$%gglEDxp-coO
zvP@Jrqo0<c=)`Yh4WANL$(BCn2;LsZ?aONk6SZU@jZD-wku;GqQOArfspXnr;_p*(
zB8^bjL_HG^QGZ4xsV}7@9C!oa4@>)$G~}dcilniLCejmDZ_4)TM4e&v=A5Z?_X#t)
ze)XvE$4oqKqTt*jliPW@xn2tsQ_A?{Pnu|H;<53GR%Ub+>lqVIN%m<$%6U2KSu^tI
z=LAXiu615C(b_~q8;xwVG11mU!a^+z?M$>calpi{COVjS$;4C>(@eZ<qN9m^CO$Ip
ziiu7px|w*>#Or&k&O{Rzo2XY=afbIAohOy(*;El*Ty)+r(S`ogM0FLNoVTo*Z(47e
zc-zGLCVH4yy*TxbiFZwe+Z?Lx8{m<2m+X5c@8<ZARLbs24>$3FiKaCYJP?n<UwJ>C
z^LvY0A3@gYONXQzRLW*8W<RErn;33l1U<(@e-mGt7-Hfx6DRpLwgKK3LI#-lTnH=f
zujmh?83%ZS1W5*)IJ!7R(xb5&$__VH!%Y0%GlPU_ch8KkOnhzPTN4~IB_mCYp`A^P
z66J49jHaKbd=|OSCyC=^6to+ErE)mqC3|CWYJ!Q0CMKDD0lUxior&igtI3ijp=1iz
z`z}9!q11E=O{_Pu!Ng1xvrH^9vDn0H6LU<yry4)Xp}!ZLCpecLD`dXlZ9aLo|C5OY
zGG9+LQ3JO*oU(;nH9GiX`JF4)5)&&J>P;*)(O|jNqO-Tm1aY~bzc$gXky^zi_N%p)
zE_B{sEx5)6&G^jjV4W0=?%`5lqluqQ>@l&|#3mD)O>8x>js85%;#6*7gBKkh^cOB<
zIr?@JJ521B*&O(!$4TEQrr2eI7N9kX+);CP^R!m4yZcOxoSoRuSof00M%d3aJN=V2
za}Sz0#K>l$xP`+eelzi}iOVLAa6(O-F>#iQkpaiVA0~cUS>yy4RMni)>E1~icB(~w
ziWAKknC^}5k#Sl`%bkAF^EG)djQ218H1QW*n!$Ff^KJ)^w-3&lVCi`i7fk#u`r~?J
zP?A|Sn-$w1O#EZw5+~wFg6VR0;tEZ1Fmc_)4HFOV@c%RMKQp=&!gSTdwLJdCIrk<*
zF5|X^!WQyb;GL9R+x`4jbR&khB+@Jtus}&c!QnkKT28ZOZ1>YGytd6LVj;uAoMjdV
zHRy)~gcr4Nxmosro6)U}VpcR>DwJT$7Gf4O3#BZSwoui=eHO}CC~KjTg`+$Ca+Ifg
zcU!1np}d7VE!-s%3U3dYgC)Pm;;VbI@3l}-N*8zuW^XH0<{@%YRV?t9(9-|BUVW|m
zEi^6cWm?gFq6e(#z7o@eLaJH#tF6cE@tr=+qFY$iFmNomLJUFEif-jt7OKp2Y#B01
z)-cbr5b{{9-D6W7--41M2h!{Z6BE446St6Mp}K`^v1Co^@3V4**AQfuiAH9kq_%~m
zg(Vi2TFAAKvhan4ffnjmsB59Kg;y=qv+$6GmKIuBSaZX#Z=nfCXQ6?Ghb=U;(8!7|
z%Qv>by8u<&WbnclFMp8`ACW4LTKIBlf_0lowz=TK;TaS@CPj}6wh(;6!jnQ+diRpl
zQx=}K(3WA`imu%~W8no0qvklzT6j(*-<7s`LH>CQA2*6F%DrfzwFO>jr!wy~w6UTK
zcf3SzcJta>cv-4+pbeXPy?8Ic0<XF!cP2Voc*Q~|Ddkw$4sSYeAg@_?-9irwJuSS|
z*?Ysn+ZNuj(8a>UR5nvr3w-qWO$))26cyeQISGr{v3D)JPrth9cc<gE$#_rNXUlB=
z$mm3}2zK=ida>sgX7ek+7J6IgLu>cS=x5<03w<qoNNX%fQSG0;0g+kaZSskQPc8Jf
z@R@}HLU>Q1Ogupy5~j~BuofkQEDW|V&cb*amdkCAKit9y3qyo=PRCFo!{{M@Sm!hF
zm4&Z4n=b^V+GLERwJm%j+3Vx&;WHiH0pTT3mX5YC#==+&^OiWg@>%1U#Y>>yTA0Aa
zd)WGcrl9e;Hf3~^EqrHTs)cD*bX#YNAn)mre{~=+-NFnDvn-@-v^ct%7WYoMEF$Od
zXN!D)nKYLE*f;o|b^8W$1?LIQ=b|oaQ~0AC`X>tuEG)FJ$igpY{AzbZH-#5l(M{xU
zpKyt6cA16cRJKvj#tI87E&OWXAXlG-)fRSG*hw$7u$J!BH`vCy;xn5p968~vXL#X%
z0U3q*20zmumZZL)pCIq@Y(zMfn=NdSQIr2-VXJVOh}rE{bO()BnBDKaU0hb>-MtnL
z-K<W-?q+YhdV2(iEJ^L7>6WDS)8(!?2e_`|36gC~QimA)E!?zl%ffH$kA*81{$nV!
zaLmFv3+F8yw{XJ3Nm(g-b|$*s>v2Z@-f3~+oD$*h7ETNKLy+<_Le2{QDfpM*-E$Hb
zEc`9=b=ks23vbLy{A1w~{pZnK@-~&T|Ftl8oky$E*_d56I*sIi7C7W<g7lWF^e$f9
zyJeAIw{Sx|>UMTr8;_&QXQO{^BEOAM>n-*+&5rJx@w$B>8-;BcHcT7oHj3CNXQRB0
z3>&a<Fid=T&7oRR8zpRP7-bc+@pa$e4jaXVaQQQPZb_=7jZ!vB+bCnBtR1a!P6UzZ
zRw|njgXB&d3>uYeRJL)Kjk~4&3N|VVVbMKob4r2-y;me8eSb?-v2k^5>OmXTY*ZC~
zpCE<z+jt<4rw&-u&$OZ0;9bR-jlFv<Caxyk2A37n-4A${4ckW2My?IVj_y=ew~=kb
zwc*+DZ73UY8(B8qv!aj~*a+>2+zu?akwJ_?@*Er2=>KiJgfvw{u%?X*XZ^1Ss#>)6
z&O~h+Ri-;dKJ|t#aZ)zw&~&4%dUkXdn30pdTGx)&5pPXCB$HC#MgtoU+tFQ4&Jpjo
z(!wN-Z8Tw14zG)%sf|Z$EVZ%BMl&1D?dVyik8M0^<1ri0+jv1FkK1@s2uoYoctUt1
z`G++nEp4>oQEWV&r}M0kX9SC%%J*EJyxXaKFWP8r<4qfHasO|lt&KONw4IIiobEi$
zM-N61kaw{0l8u*bbj*|Y_0wO;<DEE_NvF)#=n2VJZM>Eze_aTlbfUbA@UDX07(;dx
zpzv+U_7QwX@Le0-Ia9(nmWxy8eQCUhU{8AER*$KdkPifV+h7N7AHA<s{7|r;jgM?p
zf7_aM!XkcR<5L^`ZG2{9l8wo%RWy5mjlnj)wDGxQzYrWKI7pBWdQokNjiENiiDa0K
z;WkDKXVC~DU)%UfNSX0Ag(LGyN7?vBIQu~P7~x~{O8F4c_&oltjS0dh=1HD=$NG*_
zlT6I8F;mDC!KpT;31QK6A$@9l<g;wdmF#T6Ie9wYv-2-IRA8ECW4?_aZ2U+Q*;p((
z?DGO4i)<{+lTi6KUy|1jv&%VgHqLW7*jQ;}m5r@7w%J&1V-0<t3vFp)t&MdyHrdhh
zHr%tVrvopuezv1$gf?(B3E{6E7I9<7BJQO(GfXW_ZLy<mE%$ib$By~i+HPZqjT1Ib
z+IS}6HSiNVZS3Mg9_H<~amdDD8+#ZNxPoRn`)vHm2xDWvWGOiygpHGP19_Y5^b)_>
zIAY@{C$VP+55#ng&2IOP3(oD}apz1tW#e}{+KRKEJmP5^XKb9c`Qk_L(IalTDQB%e
zZE%}?j%#14Q^M*6c_KJy{cYnS$K@cy!9O-G+4#@K|7`rrHNM;7ZvV2hM$YbC;gYZ7
zaX);O@rTC^liUwqw{gQpeg|m|xKY2!py%M(bxHDD(v9zS`fP`i0!}o9LJkT$DCmHF
z;7BRCJ+yQw<)Er9O~FA?2c;d9aZt>`9S%x3(T<w?+u}|%eS8Ay_Fk95l2TO4K`<-P
ze}~_GL!zvM3J&gZP|iVl2M?9YzSF_o4(c4Y_%zpD4p^NJS+zOhRh{Eiq}o2~UMG5{
zi$>$`sY*`tj8<jA-p4KW^F9anJDBERx`PKCJm{dKgI63>bCBuaF$a%3h&j+4<T$9|
zKzCp`@ErIKj`#BJ_`)(BSPrgT^=${Pg9C>gCPyT<Ig5B9ML7sLKnD|!dVzxibBmOp
z=8|VQXuQwQ7I}3C4VI=TT<ZJ8nhp|9blIe_gIW%1JNWy$|FDCkgHC%Absf|blItKP
zgu*&Po=E2K@*^)uKIBAC6V+$44!X?sZgXNo2Me>^MuK<Dw#b|C6yV?ycH>ZjY43Hv
znS+a~tmcBuKI(uMZ76BM)+(x}96asd2?tL~wxtu@eWSb;ec+VE+kC`l=q(P~J9z$o
z&T~WutsS&+qC3UB==XvX-8klL%@-XE?BVgFCv6>2-cA&F&ym*#D~$H|Rg|1$P6sEt
zO8Jt5!(D2=%x;$qo|x-(a?shqFef@yy~<g3(8obv2d_JL!$D66y*O$IT^+pZpu2-^
zPIT4uZ3kD9i8md*Me|n3ZL-f{>Uh<E$3fPY789RPeXqI4%ct)-(UsNr1$zi~$jPPT
z-LZ)e9Q6Ov>P_dVlVEG)!_xf^9rSbX1&8C{BL^Ql(Y=h%IH(iJPpHq%?DTkJ;!_9v
zi|4jmnxdT90h}W`+dn?<ac^G|-S6h@hCvR7I2h_+u!AoherPON<5`#YL~h>-=QFG1
z71le$9gJ}Bm4mN&6wV!8aZGZg;8+Kv9DKupxAI0i7{kF%b;zHb>hJ*%A~nZ}=6Iq!
z0n(Ni|D`8W9ZYgCS^D{%gDElu_LfIy&q?~_ME6`~IGE|+oP+ZYW;vMcV7-G4TwD&m
zcd(RG=3uUadF;s?XQ6}nwEs;%w|w?b4t{X{{~@a%Maajl7C881bQ%@7C#3!&skK;e
z2?y9Wpm4cl`Rv(h2P>rFN(YO6_UeC|Smi`pFK(08(9TPJrnL^%38#?1TsAuRnIqx~
zb+F07W_GxVx7)!M2fsMjNw+DK&7*8}u${wS8|_iIIVkmhlH00#kLT{7102sKr(_ph
zYiWx5d=_pG*9Dh$GT0|bQXn_@)xkl=2L~tUqV;nRIXL3rD7{y*5C4|<O-OP~f=A(=
z?U;lAE%7U5Wb+pje}|rwp`B(Y`vj*P{7xUf*JG-2%Q`s6`oqB)2WLg+PY1UR_*b48
zX}}8%6bz3p?sRdH!Jnr97jSXO!M_e}ImqXNkJDUs@E?yW6|V@cE9YKi;9_(-Y~5gp
zyJTHw(7R>vhh)v0KC?Gv)=u8ED9rChMTK3YyGV0Uz(qk9g<P=oc2{pBvzty@oSGso
z{@!FUajuKHC??fQy12tdaX0!Qz#nex6=$l18~x<u)d`xel#9}C^vGfv7v+SM737AT
z5BpJ0a+e#~zp9J-T)tr*6<ploqM`_^xVYCvB{$l@^M}lOzL8!YC93R3yJh~8Wkt$I
zy=C3+LUW<Jc)-PjF6#FUstLvfGX*&{w~66Ko@@z{m@fFZAa~TZ3rCLYvL}0d9*#ne
zSGfpW?D!lzKS$^yPNQ`}kuJz`QQbv{hw#!v$aay#DGPB|h#D?xvMCR)hlGn-ZWQ7^
z7p(1~iHoMflP+?Fq+HYyQrATTA=Izu;-NfVU&zgc(Z3iT7T(ZBBO#6Rblxi${Z;%C
z7yU%i%tdn-kGgow#XBzEb@8~17VNEyms~vI;z<|Jxp>}1%e)qzb<v78aq+ZBo)Ik9
z{r~?fx@5lh&E%*9FNnO2;ERG3wifcm39qe-cEa;rjCTI*g@5&T^_PWocJZo<j>2CN
zq)sOx#pI1lues<Z+1FjX;i8N1u6dgGw~9K$F1_jEEf)iBM2C1=O2ab$|4;euE_&tZ
zzvtrpJl;b{PZvi{M=xDr`oKkR5%zJ>*TpBDqrcuWeJH{yi=qZU68^E^CxV~4=r4q&
zp9vY@@+WijFQG4740JKb#bA-oaPg&(uUvfXVu<jef>a(RWVnkFd6N21=O5`}l#9tC
z`9^TO;OIP^F+#?=7?&rRKG*tI_yoa;f|CS0RjJu-i}RiEDS|xiR3Xz`tkLsNcd@N}
zio%&LX1SQ{VvdX7Xd)NiyO`@@HPu|qb1~n=!WrH|7eCPP+Jry47<xw4zsJ8^FBsP*
z{K>@vI(9L;-0-v?+6RkVEOxPkP1OmOyIA33DVP8E38rN(F1HCuR!S+WuM$$bbvUqN
z)YMuRlO9x?Tx@o+&c%8zy}H2$+T>ZUY{%g2A8I2b)#l)5!6)hlTU`9&Vz-Mu^oM%E
zR>AG;%<!~rf|F;a?QpTv#V#qL4kaz>1v&MCy^KXJ4vBof;IA$Y3OV3n^wJb{sLU!e
z1XG>7!|ch-G|G><IL3MRknZ8QixV7|iz|$uE>5}llL3lO#s6KoIPGHOC7-6C0ZIOF
zamK}25qf(POcb7zgI-{a6>{DMkHrIBl<Xxz_U9iLZ7<j4(b=VcMYy6~@Sh7>@1~1e
zF8)Uk>=;~iam~eNb%X0JZn${!Fh6J*+^8E&ts6Ay7!)gDKepY^=OMp`G!F$lR6e5$
z2^REF@};2G@H8TY%o2-u$nbEdhr2w$Lx(mY&0fYsQ4hsD+~J|Phf*F2pHY`O1SQyl
z@TbqHM=#ZkU#dwg?SVy<P^YX1R_6?s6H;Dq@5{l0rK!6;RP}J5hYB9<@lesjz3hO8
zhhGX7=HwD938&_sr732sNVew;?|u&tc!+t>JRGPOJm?|Q!@`$?GHt_Z9`-I(xo1>`
zOEu5_=ja{`52gpp!?ame)y+Y2V}b@@BXmVdY!B=(iRZ!R<oYP$LwN{1O!P3xL+Byy
zMe+O_4_O|nd-&4B5Rqhic)`Pq9&$X?@K95P4FnS&YI&&bA?cxxhq@lhuMBcMG|Wj1
zZ0eGyJiN9k*>!WWo`-*zrb={3J|u*trIw}Y)56PA+kZ(u%qkuld1y?#d3e&p+y}!Z
z9v=5F`MBTI!y`1>&gAJEs>P;cGY`b(91%}LuZHB0i6mT>YT=>5mgIn%xl?x}TY6~a
z;aLw&mZd&Fns~~?(;lAjQ01ojZhNv)kSK6dt)7-F_FDLyhvz-8@mH3mHlOh8{T&6p
z)*jl*7(1W!+jt;WSd?hzp*>y2!%H4|c<AZjWe*)ayy2mXhcA|;UZJLkS3Pv{@S94^
zSe81rCHWeKU6QYR;Hcl2q^3+##K#`U>FS}IhwdH*Pgiex_<33C9S`q%cuP35Z+rNC
zSt|3*WYOiR2bZVV+E)*T?|FFN!?vs-pAjUNrylK+?B(GD51)A$;9-7N(A&dD9zGV{
z$3tHslz%9spCBjV6AzzyXuUkupT<9L9sFD^%U`R)wq)<+sc%1zI{7&}?1AJ94}aGW
z{wIAN#NK)svpnVhk{o*`xo~-Es91>>EB-<LVZw(Cj_~l6hn>r#IQ+FpMzWKm6Qexv
zA|dbN@CL_dk&ofxdO!bI;j8Ne<2(?@3x4Zif)IY0tJo@MvWM?HTocVH9;VVhoH+Wt
zNRBaNd6@2DhGb`YSma@`hglwGdzj<ldk;T&_)$vda#C6qnNMTRaprO1th5FkkLG=2
zR`yRG7BD7Ei7wDBxZp43Q8rrRs|D5?|JsURiHD^g--?fI9+r7n?qR)$4IWl_Sjk!|
zQfoZy-<Vv*ZhN4eX;>Qh!t&JLPbb&Xw>Kx(d8oD`MH`l#q&CWu+2mm}C!Mn|_CK=K
z*}_R#k@`hSjqS-2za_3@27AA?w|m&(VIL16quA+TmxtXR{`pU}TaoIsBDIH+fiv6C
z`)Y~jZA|X2ACMpL@T-Tz^hpn6SELTgfev|?*UDSHBDMEcz!^WhB6Y;WQ3jko>e`A_
z<&Sd9u1t9=Q<G=r(heuQ=*H+t54_@Wic7Uk$UCIuEc%0s^!v06(w{RPyi(a`J^bn6
zFAwK<h*RD_>#g%bxPiZX&bi~9^|yzM?6ZgS=lo8^?JFGqIO~$&zdR6^Se3N?#q1tO
z5-k1C!~eLTiraif;wq!iTUOV_)^!gz<cKBfr{5HEOYq?}em)=heWdxAa9tJfQOE~{
zTgN#CMWVG(g?*ep=~H;|TPwo{e0-|VU!kavVm`L|*yiI7AH{t<;p0gkC47|h;rZ}=
zl=4y9$9+ET_ff`2SsxXB-0P#9kMch5^l_Ju-<kwt3#ndHg8Wc-``ELhNPKH<({xqA
z=Ld1{*viz)D^t}9s#&{|m3&n8QN>49A1zX<Z$b6eQPsCn_Sgby_U_>HQN_=iJmBL&
zADR!{M>QXrKE@waF(2#eMPF~>*J}6yluM@SzA|O_Fnw4)Y<6Qn+7e5-eZ#*CD#z!A
zT=jz)-fM=gj{z%Ftd+?xzxW7f93KsRgg)XvYWqm~$nsI$N4Ad~A4L<%@xxQr8NYbx
z>>565(kzyGWnPePh)Vc)4yqO{b4T`rDRpLEu(^QB^^x*X&&NZ4^f{h7e)N5o>>O2B
zvix2Qg&Vw(m|=$XeKerv_DI-jyK3a4v5)3H9`(`0M^hioe7rY8J>sKFBfm$w8eBxp
znjI8emwv_%Cx4}Oex)9x-F$Q}U*vH=`b5!RR#<<eTDCK4u%(Yya?nLSo+9xv+{XwX
z&-i%O$2&gWW&eFV@1vuSSA4wS<3%6se6*)p?Xb0vHa^;Ny4$DtZJkObvuB#>`T~oX
z%upSCyyW9$pN|Hq%#7%8mG`Q31=W3h!cIOqv%@~R`gqmHYd&80@doGJQY)tfwACN)
zgbOm%ta$+~GjV0An~yhryyfF<Kl+MIk>QF%xH%;H$kF1JDa}=V)~oKc11HhP7e3zi
z(Zk0FK6=ygcG%NLFCSZcwST=D<f+Lc)xLDq$46fuH`b{EKHnCCIU^JeSh0xeM{ggc
zm_8Env5!ykB%k`|FZ{DS$)1&|<wX=bFpzdw?hp3yCH>G<gXrN^a>hAoS79~8$50=`
zeEf7&ah6yARlUV2wI!v}($!aD{E0p$`S{w$NFSqod_%v=QR97#_A$oCSRdnj)NLC?
z22aa9Tq=9aq*S$bLGO9NuqnZ}T(De{y8?czXyw<DO(sj5GX=jBoFX_?aGD_JV!DqR
z9NM^iTZ$BBc9zIz(+)mAb{V<l4}x<A=LyaiWYL4~79sv9*`EX#2rd-l@L9Up#}Xe)
zeJm3pB^!J!7rr7-veL&YAFCz1MsTekeesaWOzT9lo-4Xta9gs`$Ip3nHwoD+xJB?6
z+G<PGvF$!~aOb8FDD3pH%SVO+6m~Pt_&DR^tdG4u_WAg=U2xLJe!A9Cb<oElAqTke
z%TT{cn<R%hl?;YQ)o~w3d>r+0jO#949om^BUR;?fyef4&%a1Odp!Eu>gQhy=<9BJF
z;pH?VZMtevJo^tH&R<FP@J}Cq`S_oYt3J;8IPc@4kAK8N7=<oyAStCSwEp%{-&Uh`
z2baX{FEda`(ZA9+>ToUezq815?Sud5VCmUx`I?XGjO_|(Dw;&P-whu(X@tV+mXCZY
z8c3_ckz2B~@~Tt;g#{^9SfTp5prAq_g%wYy!d1}}5YrWksAyHrsh#tx8-2&Bs6sJ?
zdlf1v+@Vlhp}fMK3MCXuDwI+vt@vD->ee>VCS5&sObx0NRBD?jT}PEsD63FTfkAuj
z%-~S%oCEz*cPZShP*L#_)3AbyBJi0nqmx3}v+4IJJ~W~lu1Zapm{wV#ibAGBOrfg6
zeG2z0JRoEIEKtdv>fxrr`2MK}qYkKQ3M0xFIaxqGzbZBOE2Syu3a)~uU?{w^E{Yzu
zf~jD!!JfJAtV&UH$g0#xJ9HGLtV%6im7<QX@Q<s0a@2$&k-0*JxWZFBs6rMkrjV<U
zQpi@wQK+eqP<XU<P7Q_0g;np`IqW|_A6BPjvX;X8C)Hbh!rBV^&nu>+kb5quItq1Z
zVTH$4bf&1M&`d?&9earGT0}9`S7;#o;XFx0g+{^~=Si9fX{zu@o@CdmRC9$3t5T0D
zY)s{l3?7|qL6hzZo=|v_6IVK$6ZH1p=zQ8zI-GxXs+Gdc398S}xz8v(tMIzQ8|;<B
z^9nC3bY#aAUQ}qK&{joDV8^6nYlXdS5<F45asq9qaI$1}2Zi<u|K&!XB-@`q_a%Bu
zx>~(Q)u^NTc{#5rbW-T7_`Im%_sAIQc>X26s_+^oZbrbAbX6CHt_r;s`Y3c$c#{*S
z@UG&<HKf|Q`_)?tAJhup7Ub-7S9nkSp%<;K&_ki8WZQVE#IEF_H*={|`n6n=*WB;}
zDWb#lRrpZh6NL(UgMJFN_5@892Q7T{k;2CcUn%u#EIMmcT%DqVvrc`cFhHS0fR_S%
zuJ8pdrf^GPpu!-9KNQX=3|9D3VU5CCg&_(<*=H^ag<%TA6~-%k%V9>1;~Rz13STSi
z+N(xJ=N$g6TaB0+@ML<WV79+H_4+Y2hHh3+ja3+@c=tKl^Y9~a+xvvvOK=A@L1Ci8
zRE23Q<vc2UM+a7*VLv&mnzf6X`k{bwPpZv@)UiU5o%wmV=_>k296gigi&<Qf3JVn$
zDa=v$Uf~CY9~BO9ohr;zn9o%(EIQTFfP+V=0(%2)Ejs^__7kUOy;{IUF-leU)r)hJ
zjQoogmMAP|7*SZNz%9@+L4Jzv<rzWtynw-HrNSzO)ij;0I5h5*TJKe{!isUe_@8Q>
z!g_@xGC>>Yy>w}XJqkZ7Y*N^&uuZ{lA8c0GqVNknd0p_#QML5TXs37K7oYaouCRlV
zpH}6<-{8}w=`A&;1~V5}WfofHk44dGufjf#kro@N_A4Av_*LN`tFU`hf=8_c$?@E1
zyJ8Jd^+%|~G^s-E<7(jEfTrVCfz~*xa7_AnT<`=VfR}Sp_$fi^{LYY@$N7=Lvw8fY
zkUtgvQmDT=bxz?t7c8x}JosCo%jy*4|5K||EMh?ZN8ysfzY3S>qTkr7R;Rc|t|(kp
zxW<L1@INlqx;ec%gdeU>y$y9;;RfAlb!z77)Rk4qkiW=EWDjkd%oiYk055<aAT2<F
z0F?t&2~aRVp#Wt9lnqcgKze{X0u&EWBtS-hqCw<=+=(H;D^r8?hcaGs)ax^YVgb(O
zL|gQIt5fq_RU$yCAo`->JuihNgXrv&)h9f?JSZ)kq+EdV0qzM<F~FSx?h0_JRQAq;
z>h1s)0?e!xa(4Di3@)sWHj^1^QrznB1kHWmy#Xo(xOr4DuJYtkHNbrVVga-O4|+NG
z2dEZ+tA;zz2Pg@mh{vO|V~oI=0qPe}{Pv<AzzARkumkKo8pSR)ZU+2&dur0GfYs?g
zoOCCED;+-gbQCdEfFMBQ08Ijf0pbBt0qO+E3Q#@ZQzBvQ0NDX@0+hZtyH<c20cx^8
zQ-ef+s&!PQnL)TFmG)7pPJ!I?lGzv1qBfHO81dQ_QMm#3_D^w_UN=C!01W~>9H8ah
z*$)N$-$BUlht`*#6ttq>0u6=hf%-FDHRABUR-X@#)?L#8kFY4fGXa_fXwDV_v<jm2
z`)Gj21GL}}8mPwv+0GNv&Xb($^@=)_c<U8;$#;UM0_?FuuJn6$spm$jzU7NN8{qi>
zF9di_Y8CDt+{l;lVt{c)v)cq{%MPzewGPmEO|)U)X1HB|_M$nob1ro#?B}bO19S|q
zDZpm>Pk>IGtN>rJR)ALn^bhb^fY$=N9-wD{UIE?+&?Ufo0p1VLH9)rj?+^<_JEAuO
zycOVWPW?iQ-{Pc)kQDWDNZt+5JpfO*)MTP(-k+nm_8BdEP=05$GyEVx?*JbL=og?*
zz(+Eo6A<H1-vG6XXLC2jI80~wD8MHH*7VE$Sp14Xc-;a%M4>(nu>MAMwljdiKfsp(
zh6MN`z`y{50t^nKFOV{5@chpG9)I<4pP$h-F@6`n(Su=}moxrwX^`$m&v)YC?J)9n
zfRO=y3a}u+r~uytm=<7qfYAZQ1eg$DVt}!<0GkTHC>lFmWL$vD{i2=Zw*mN5V*c4E
zICCtM0(=+X-Ms-fGn08NFC>`~U}}KAGDqC}P;&;CTY%XC=Fs@V6n{3(3h>(w_35j*
zt`mMAU~YgP*q<S)+`eF5fcerC6<FF#exLp*v;4yFsI`Rw76n)vU|oR40hZ8owC!-U
zG{CX|s~B5~sO14x1XwAxcvjs}UtRMR$x89<)gr$~IQMcaT_0cr7jl4~xqe5e{f=ro
zLap!=Pr*d1X)tn4YD<7$0{p`;5@2h9Z2?XN_?>edU`K$1TmoF_0d@u0AK(B@dQbLl
zdN>zdz(+b2|J*ZgO=@3&i~Vv*{+=D2=#-+7f929}qPc6mJ&nQVFf9|{7$=uesBPj1
zBWHTFW8t>>s7wl@I%k<qc!I%XQtBk_mQu~9r|y^+oTeQZBm<le_?ai14e)1xzi9d0
z!IoXt()!W4o;#uneM9;xBkBc42F6=2=OT?cF~yKeC#Qv(9=}liUrst>a)^u&R|5RU
zU>+hZ#Qy?Z4RC`IlG9W><fiUg5M5HZPV8Gm%?x_a2)a#7vFOU2;Fg#=UkIKom@N>3
zQMX`-LLunq99Q8Gt<I{CT(x0MDm{$CI1_gx2vIad$q=PN>>Z|xg;9jLBgDN8R8>zE
z57B6-DiQKY&XDOhrAo8q5aq)t_)LB`C>!z$zj{(dp{862#vJ}!WedDsad(IcAyy}_
zCV_iGR19$<8z-}IZ-`1Etm?3<qjHEUAu7jFC61~g?h7$E#FruN4>6*y*CE79Asz_v
zV2ElVRz8zki#_R|%nUK5xf>JILaZ6<=pl>{rtmC5OVAc{LbyUac3TLm_(GIm-E&qb
zBreF8%uu1a@N7Y5bA;3gQBz1laKLGwMYTgDL*$11bP=8m(UJpPlwOBJUX<P}#CuDe
zx-`Xhzg~!kLevk@K(drH74mS1hC&*JXe^{j7(JnvZlqC%g!qWaM;vwfUa*>ncr^U~
z|ENAD<na(KLOdaS$A>Oo{KdbowhHl7i1s3UTB<(^oAPHuJR9P<5c8&3F9<#_n7JsO
zk{5-y7HlI(VcQVxgx^zCG0XlCYfN%#7qwpw(J{m;Av%TV5u#^^&LMw;C)Qiudm&yG
z{+i(HA>I(uB}CT{-GpD>ZBhA6;qQk0A0NtJ^(lEf#5*D+ALHf{yN9^oMC5(W`v&XW
z$I&5rh4>)Ezz~a0I=w^m3DG~qXCeBA_%OuBAwHp3H%{~m@llB9TO{T+%<fe$aecLy
zY?1ghMA+3kv?g^MPYt(NIv~X7A-<3XudYemuJZ0ow^O6UAX=bdHkI#On;H@#QPSHU
zVh3j`#IO*<>9HXegjg8zQ*rn@#H0|DLyQbDD#W++mT}2%LW~YEHpI9P)z_wWYc-k1
zgdlcPsXo2DPJbrHhd9_H_jKnh@(Cf1ol_G9Nt&-seaEqfm=ogr5C#5BP7N`Ot*uQ>
z3o$*!3=z&0WND|hDdLA~Q?seoCTf!hoy$>#_#woPoU%WYZ!JmAr=PURUA#6${!@so
z9=RKrB&oS;ZR-5m)S?iJ+4&G_Lo5lgRBEjXu`I-L=@{!$dGM0tiV)Y{&t;n{8OqkB
zNZ8bBuH1Dgl64{0hu9QiGna6W+zlZ%hWJ^kaQGYotFV#U>rxFXB)5dv8e*Fq>leD~
zx~TN+btxKwePhczL+lFiAA=;V7h+Esy$$aI=bAnf;&6!HLhKK5fNuX<;!ucR$!GGh
z^XN9;!)t?lAEbY~COK<s5oYUJMUI3x8sd)-XT<%Eg*YYTI9q<fJ0VDNQpmKW{_i19
zv&}V0HZo?D+B!7%Y=|N2Qs+XP=eRyh{2Agekx=OMOgwqi8Ji0D!jo=Coxi247ehYM
ziNx;QLsg=e^<4__ugEV8QgVf-fQ=T(Rho!AjskHcYKPZD+z4@#%V%P$?lZ|-A@aqM
zKaS7RgZu9SB@FvV@+%U3P<p{Q3dK=8juLScjz^_M1xeC{6cNl21a<nQvxuo!9CyU|
zcz``*VDtvvl5v!ZqhcKQ#!*_73-%4~5mH95tYEn~$_u$u@Gil-1=(hWcytwogugW!
zthDM6O2?q|N^#VA*_j44_Yb{l9QVcXU>2%n;r=)tV8wX!Z?y;Gs1`>}4nK~}IAU>x
zam3@$;?Uz*vcHfYhY^Pv$Ek)%FOJVYOIm_X9JUCjtxHkp3g0N4n#b3rTAsF491p$V
z266n-%4N1}el@PRofVJXZCgE#Y#}*u)L?@{0t&5~$x`|4NxQ8bSE}zk=M!tiQ9BO2
z>?Y&LjdKZDH`k?7JajF;j>zlfx5?}AKylQMqXGLI$I>_+j-z25pT^NYjvE()Mzl{H
zkHyhAjwW%Wec(2Y^X(RB7DwlrZmq{%>hSOR&Et5Xoy)XfvHN%&dy4sO;%F<RMI2AW
z@njq=CCj2`g|rfUO7Q78p2;g+xiS4Y;m^m>?_Tvnp8Ul)TIX>-4c0D>_HlHh1AOLo
z5c##%Zs#~&68^Ga$2|R4gmjAI;?8t-;8hx=wafHc9Ixl`H{$4$$GZxNH+A2P<E=Q}
zmg+s?=o!a5!rv9_F8H1xn|(iyO~rkZULxry_(2@K<LD#2d{dXDOnu|{P$UQ9k>n%c
zBp=7|iSW|bqJDlB$ACCy#xaW%%}I}Atd#aGkv%YuL2=AZc>D$vKZY_mjxXaFBBfvF
zwKg=4VZw*!Nk+u+m2iGPg6%VnjAK+@={IqV&f{a^_~31e3YjasadC`~<69}3AUGwC
zi9#j`P8R%5kX86~jH$w><w>T;F(Z$2;IreH6UX;)%oSnpA?~<}>Xmogd2zH_>@JSu
z-5u6^;XereDEN~g6&5fE<ncxEXwyX@KWfAG&Mk{$c^qZ3P&NxI;#e8SjyQJ4u}TiK
zI*v6$4z^FMW!xz2(!sXGu`aJ~>*LrUe52scdGbwhY!*KI!^kE~zeskg;I=rn=V=z3
zXzhw)H`h)aH|a$m2Yce!AIE_>_KMEFJk9fytY70e7{@<xT#DmR9EaohE3fpoI8Mj$
zM;u4uI2y+>h8Ng8?#Vcg=joh?M=$ld-Jeq;{GE%gqN3zX9B1SBQ-q7Ybtswdc$uXl
z<^O6X&gHdmK8_2*|IU+KjH9TPOSOOVBv*u77JPP;`=5~i30@VvCU{+t6?wQ@!b@d=
z`uVbuKMQGDD3BF}h2nw*1v3N-WudSTmZoQ+h;W`|m}Np1ii)IIp3WUvc;_YWc4-L_
zmdwJ_pG1<<azq}q#T>6(7WihNJF{?C7Ru+<y=Q$YEhD@;3+Yd}(|bkMsE~zwq_kod
z?#)7_EL4_k6+y0CrrXD=Dw6wn77#+=13YelsFBPp#Io>H78Ybd%YvT8Pm7{=7K|*^
zrQNgOXQ5vGq?rXP3w9PBXq4?_!OcSWXo8%Cr6ei~K^8h^;Z=^hu@`3H;Vd-FLOcsu
zELxwco`vizoG9+{QyN2WIXPLVkp+^PJdlt?7HVaow(vTFNx@t}YNkl$Ms=Aw54P&%
z$sfu>ec=uABx#e<8)cz!R`l79SF+F~3r(}oA`4H5!XsIDbAeUuJ*!!sesdv@3O*+I
zxZuAN)1MS_vwB9GEVRr*t1LW~1&)P%cuw%?EIcFRSwYHIPfUM4kG~+~#s8z~JD{Z~
zp0DANFA^mxpn!;keQ$SXm))72oF0OxWRxh9b5_Yg1VJQcQIH@(k_1JRoO2FJ5RojR
zA}FHpztjHSIp23qpE|dzt5bD#&CKp}ji9Y*EdxRnXd|+1vt-&O&|csU33L>olc4OK
zA>S!KwtuKg0)>jCuiO#po<NTT`X%sI0zDJ_s%hwxoZ(&xkbajl+*<(RJ`{+B`*KAl
z1_Ey<@J<2)61ciLgLCgsotMeZ&j!^{q7)dIz@P*gTj9Z6snMZzeIvv}5}5E=h+udE
zBNF&Df%yr%o508fCMGZ`f%g)a{kHjj0%H>Rqg-rM0;3Zc|80z^;cmNjHfwAG;}ZBV
zfe#W`-Z@MeGKt40KrlhndVIrTVs<j8oWRE%e**iKW=u`sqXgz8FfD=UoJ-g640b2L
zOhL(+#g@lKnm)`R&Uicg^EVm0R)kJ$&LER5wB4OCmo4N^pO?VW-5KP(w=%RKfrSaI
zPT-3K7I8H{Fjpn`$;J3*f-V*uW|xTU(gc<X@VTJmFHc~Fz$*o1bu$0>Qzh-*Sz438
zI&Pd78Dk2}_MMZLl-czOtn40u4GDam!1)9&B(O1oZxYy_z<~tTe<6LF!1e@oB(RAs
zQv+wiTN2pD<$D+*-kLzZBT<48HzacUT@UR{V0Qw064*s!xE>lmC!Lh3*KT_+t5ca}
z{>LFWn82X~PSS2~TYLrLZ~{kZ#y?6&5-4*xdi$wZ?!!@Lj|t}S1WpJ*4*$P6mB48(
zacTLCsD4i1vk81B0Qui@%+2BiTT9C|tHv4p`C<a4lXxnL9}>8fz>f)Brf*ClUlKnh
zaD^T$$rml8s|j37@EwUb-!!<MzzyzJk-eF~tpxrR_~!&}CvcahlE5#5!~d9m7vN3;
zzY4$>exu`>B@rw>8qj+Q^ciJ65T*CCWd0Q3uLSs`8D;(!*@s!B|8PdJfY0<uFu&O)
zWlJJ^5^2d`ko{%`r8xx7DQGT1$;_QZgX90JOZ6fdyl3)c62+3ppTrYFtUwY)lEJ?`
zlrNY>A;Byx==j|>nMIT6qDcIwk1~Auq<9h~lEGUjXKLppEh%s*L7BZaL;9<<`E(Lx
zk|>+R-xu=L7-E;>k3UJgJk73}#Is3soMu0tL}dZW3tB<Yih@2TXeB`x?6#k39)E#L
z);wM%iRiQ-yLq>LPNZr{+}~|iPvXfvHbF)b;UumlaXpC$g_D?-#Ox%bBw|UlNTOvD
z@g!;_Q8$S?t<n$h-;E@8DRDoEWD;@`d^S-8b(2U5pe9l4>F|o9AuS0~JqbeqQ&4g&
z0c=4X_BAX-rYGw1F^3IiCQ&nq7uik{Yd1w-NuoA&RVGGUM{r&eS-)(+d6^3|IS;|B
zqG;*UF-lJA8mpH?eNO6jw1J=vlV~JB<0P62z=$_Zl6Wl{1k7Q2ozrYB5i}E}%>~sb
zTWq0K5^u1VBnBqYI*B)v*hj~kL>sO+7dnZqNwiC%eG;9LSadD4y-&CU*Mf^aIy9|B
znAsk8!~A|n=Vb5|6()adjGr9pmPD^4dMD96iQV5udnC~_i3@$gH$Dq7t!Wpj(o|x_
zi-n_o*l*=%p~>NXNxYTB+f>>fd(^_nJ4sNCgBfr|?VrRed+e@z>_JHkPU3?k#w9T%
ziJ?ino5aW@h9xmPi4jS>Q$BLxVc6Rldbxk7ZBuFBKN<WS$$O%yQAvyzpvGA3ea>`e
zXp9&V$G~qhaUx^6=!L@N`>7u$F+PdONlZy%f?!TeVv+#7%21|Yg$S>7k#XUvNqpWv
zbg_SAdJ@wF=66q6)T~QnMiMjG<Ch^OUduj8qQm;goFqO@299@oIPH@p<|eTriNx5@
zyd*wNVs#Q<Br!jU1xYMpYe_7m&S^XxNyiM<`XP62($A7uEE-uNXs0_>$YdIMJNt4P
zUJ@&lSS7ma^mF$1jE*cyCxp`o$l);7BzYDfZIs}wO=2DGgzNirb_%fc%Ot+~uVumc
zI*E-*e3QhtNt{gLR1%w#*i1V~Vt<lB7qK;o9ZBq@()QTf*fQPe9((B?d;1>y?>+X-
zarQ3SKoWbB*h{n7YsW;YyVvft*B-go{&=swVXu84iGxWTN#ZCS(NOD95{Hv0xX(VZ
z*ZxhU%KL0{pWSqy-FKgTjD791k0)_LfS|j5_UR<fBypL$d%t})iSLp)&-G2>dk$%z
zeU5grH)!qLzF=Sv_t_UY&Ll1+`5EP4R2&TZExzC8EdJ|-Bm9YV_t;lxW=pKAqGbX$
za)SoB-<~bwBN;c7xRu1uN!(6Cm7&S_C5byp<dDIi*ng!vYHI$K!~+3-6ZH2a?h5dS
zp!Wp5FDQlo6yRF381dh9>~he;L&5wfOXlAs9tr$d&}>4ccA<1iGNsA<TQg3OOGa)P
zrDZ%N1oDsykXJ@N84#Fag#^ei<B2Rz0T~6eFoOhArm)Bskx?{@zkEcVVgeTzw1l7~
z1uZ2gYgJ3;ds;>r8R;@I`1`+%ax$uj(q{yHE=%%R8RZ48kj1Ge0Np0rsU+k1EPiDH
zUXbyct+1%7$X3fLtu7;!g*ieBgsBa|i3l1MR1!2MXk1WA^5%pzA+kw9Wf@9VX-Y<-
zNiY~)h9Tok8Er(7DI-%xO&ONR+JZWQQrH#16Vw-!qk2(BErFX0T3be48TAByNzghn
zUKW5YyduD>a_|EtvrPXjZhaXIWHc0|jbywoKw}wAs2PF(n?B_q{-ib)9O7m&IzF!U
zUpp;iw3IQ=3e?z2#v55Ot!1z~GTX|G5{zLohRbL#ql1h-GWv=t9c6Tr(Ormj61207
zE?F&f6@ZQK27vAK5ZRuB_R5m!oh3toeliAR@!yj1w!rUXar*y1k^==EBxA4uL$YLs
z3UGgrIYNNRGN#CQSH?&g?`6q+C}Whsqq8{g3ou5;*euQm0*sS`*J(Jg@mc%{GA3r>
zNiyTE2c|MLi!)1rX@X7{bcUca1*IOUP7U-hM@FN2p)X~8CF5hNYrp-8jJedOj8A1O
zm$5>|d>IR56gyxqm9bF9A{n2_SS(}oetT%o$m&b6dHd}x`|U@A?IkkK@3(un*5CW>
zWimeJE<0e?IuMApKVZLmz+Ne1jf^p_wMxcn8TMLh-U0gy8Leu`Oy3-^*UDHYGhTtY
zUdA5>Y&XMfz0Ep%z}_I^YZ(`0T$Hg<#y2t!%Qzw|@LL(hf63S^W0T017x6~6$k-~f
z+o)|sR{R_s<=ZY}hhXlMu}j8o8GB?Lka1APUT&G}v3)Z36XXa^@OAhtbUGRt&@(tU
zaY)AL53^exgWsQXT@3M;|D&Rv<8tt%e@tK&vFj5usuxT<DdQBY2tF^A<^B$0kDQTl
zHcRq58Q%+hE{k(sfWO8C{{mRqBR|NvB;)VO+4-f*ALZbCmzQPiEEb$k9CkI&RhqGk
zyejgkxGv)ceP9Ytrf^fnE$TtRW(7Y}jWYTvcuT=AG!GfiDX64Ct{eVU#_uxj(iHRQ
zzp?H?dyx|UL&iNBg%lK4a9_rsGV&<MtKcsg4`e)+kxjwhG9JqKSB84fu5{4;hdZva
zNx*CiK_79~2#{Stnt~h($e$)S<JMXKiRDy~OYn0mSar}oB<ki9ocs!&Pym6+|F5Y6
z3JNMgvrO!Z4KA*17Ew@CK^X;Q6+Ee+n1a#@o>EX;0V}ejQVL2a!8l7Qpgh41!T+!H
zX;DO({{~-9!7~afh+fEfR+N?(!(jHmDr}*mkmmrNS5R5Os|xBW3>Jqf3KRt?C3x1W
zsvx2us-T*J>Iy<sLYHv5f(!vBXN&NOkI#Bxh2i((dm6-;l|)5~B?O2mh%4Z;VGWUG
z6*kKjl3Y8{2qno;6=({41(^zT1%@bc1T_`dS(26#JY%v7pD_ts1q5CebH?{MYKmTJ
zDX1;Li=r2{&-9Xlmj#o!jslK^qauDKYhd*h)K}12!J7&iC}^mlrRcYjg2n<gRnSDi
zYYJXhf^hvD00+iL>6>roTTohNgB(~h1<i$U3k5k3+5a(H3Dr?WZwPrZ+bC$OpsRvz
z3fhTTbWqSyL3>e`0vuH*1(feBD5tr!qQ$<ta4^5d2)ZjcUs~>?ps#`+3VJH&rGUd=
zQE$=9fAT*yh;ewV&ZbD;R`3qhH6t=kL4O4W_C|*&7|Jo^w+1K}s9<ANZIFV&3hrFZ
z7`Q3I#OI^NRkdLXMk;tu!EgmH4T;~~9UY-yZg=xt*4-E7dyJ!KPRoK98pkLYO)ILV
zy-ykrUiCj#RU50|1CeEGOl<Z;1>+S=P%u%!G6kP2n8Za<Fk8V#3bxDfDGH`3n66-|
zNO_-(KYPgL|1~odetgrOMeV8KnKV?vBnNxLjSks!6wDI>A1nBTBUC^pWhl_&kiD^!
z{i%Zaf=T%W+@5>G3q^N}1pQ1<_P$ubk}SMb0JgJS!3qWI6?~~+CHK4NXsu{%wZLB}
zc(~7EUu#6mS2IoaxK0$Y%{onjqOTNuEjSwlr3{%H1^!0RZ^fk89r;_hY6||O<5IAV
z!%%RJ>#ksjf}I=&zeuR?nHswl9240+g6>nWU%_4)_MyPxm%SW0z*!%%k0>}wP)a&T
z$0ERCK^s=I$lP+sZWa%R7KER9#Xc_DIUy*+9ZxP7KBeHa!syDV*w;Es@06zfsz!P?
ziFEBFeW&2N`^oPG<u6?q6kJqrO~G|h{Rag<3c!(E;_kSj&igKOS#bDH^G^z{C|FwD
zysBVzSBZ(t8=~|NL2oL!MgPwRbH+nzl$7Z<uL6Q|M^JKpRq$ID{$0UcfnRwg#-g)_
z?0dWlC^(U(=L$tgAJF-W#tWtb9X?d>SV6WF{t?W71$`taOMl849NEjBLar2Yr;wJy
zu{)t0g60(T{vn&3Jff+*DdZENeJcqm6hCa|Pa%BR=2r+;)Hd@V{6q=`QXpXJTsT@t
z2($gd0u)K%<->O8!*(&&P2uwtmZwl6g_0?>O`%;1rBW!Jf}Mhs!c!?cokAjoWC~?c
z81inUd<qp(C@Y$(n_n)M!ZRrlJS*sw3nAi)DLj`#dI}jS@Mq*oLiqVq@H_S|i$j$~
z_60$!2wGLpYJyf5l%ov^u=HSX3lUBsDzcHRQogArr4UOYE;u!^_(O*0se3$#MaCqj
zpr>GnA|-`XmW-N$Ch+;<!Oa7cDYBNJZw?FYd@4VX+!Q?ODuq{4@KeZ4VW*v|b_z9x
zSgjPl*pmH4fhpgpRGf6+&KxhLz<=nN>Ig8hU-(sOCWUwF=6OD3*2|KwFTjr_ayLk!
zp}>t&Xp=(y>%kpM;}n_*=4&auo<h?Unx)Vxt8ViYTBOi2g^`EtG}+`=|H`LDo-8L9
zy%^jzy^%s|A^9eka*M`K2Jo8>{9+?pZl6Mj6egxHNeFaIVNeQ#Q|QE@3Qm_4`lQfT
z;I1jGJ09wmLU$U;GqE0m_7t?2pk($=p<*tbfc-9$viB1eiQnQ{cg%QO(05YkFTemn
z$sd>kKhZ@nB!!_VjG%H-7?uKKObt(A*68ey%BHcASKH;Ob|~K<DKavJQKIGd1buy5
z5cOiT!0!wCsDFG+3Z!EN{Xo!hf_^CIctIzmaCSn7Vyr$ng=r~F7uBZ-I+dCkoPF|z
zY%@f5rl6FRl{~Xjn4Q8$Da=V>so;N{Rk|pJPg23RLFWoOPjtcTry@I_`uRAtK;VTb
zEIe#4NJc-)s=GLaB?7;AIWW0p0{_(`_=NNdZk!apPvKk&t5R5<!oC#tr|?AzYf{*f
z!qybla)DCVn8G(HESnWs&+Vp%HwgTtpkGm|Ya=ZBS`;}IA{5|va?4*2{d+R}Z3>&X
zxKfm9GcCc82pFz^TM9d9>M3le+P{w+;WszGkL*fecM5w_u)Ii*k)dPZ$jz;av?t8$
zUT%}TQGOKQKne#_IGMt!6b_|uIEAAryqzt2wq5vGws`*R@gpgaR!WACrEoljc@@HJ
zndt;Q-lXs+X_3<@oJrxk6!<~0jCSElBP7zZ9DKX*k0-;|J`Uxr5<Z{8g%o~I;cf~S
zQ}`i;Ybjh$;Zh1ertnh=Cq4>g_E7mFaHAce%PE8kr4#HrY+p&?Dt+mq(5}5P(i^<_
zPvK4qzou}D4p55TW(z07AC3(D%xy9@PQdIhf|<X5q}PoQ<7?H}oADbxKq33bE#W^>
z7+XQjrXstFdnw2>!}kUKlN$IY!t_@P4+Q>O(1(KlBj~?^J`$9YkExLSL6tNWIaK6P
z`FFEip_GzS#ez|hTq>>{wzGW{&Mo*Xy6|*_RA(R$75P<+(!htTCsY(rF;vAc6$Mok
zQqfpN6BUJ36j70`B11({6;G;oRz-Og#Z(kmQA$N=6=yoc{@9wa>ZVjeMM)L8muH0A
z$4H-2gWw(v5K&ge(*iSFM*UyN2=dFRct&L3>==kuP*G7uWfd=|LBx#bSb9@p^ae(L
zsHEa~74n=2@${EsRa8{vfUl)hSA)15jQLPa#dqyv=^bLr%jA0O#6l_<AA@znDk3U0
z6}pNjCvq$rS5ZThN-APvv>T_TakL2)9Cnhuh<+KpMB$i^*d5Ess*02f#*|>Vj1!$=
z=^OJ97%EH^nJQ|k-~cR+S%sqpkuDh2qFASxOD%PZd4l%2l$N7)+~@OSoA_HxLoceR
zr3PU%erX@6t>PsWFRNf&i#jUaZXG8WKP`=PR>#;Yg8!<Z<kS_Qo{IVcG|1vN6rhoy
zY~eK(udC>&qLYfIqN7$S-cZp@1%qQWSJ6Ufm@!^js$h&4riuGwtyR3KV)g#m{k4%c
zLRSne(q2Vd742BmF?RE&RN;ut_#_=vFbGMZX=$WXX=l+zKNVe6-t?lIitZ|Uspzc+
z;a_^tR90&hZb|H-r{HY<Da`d<_g=h@ioPl)^-bHgB%@gS7)|IcYCy$1Vi<#jaDTDH
zT;%}*3{>&Okr1<kRSXfsC_F7~`Lr|+W;g{@JW}yk#k(p-s@S7quZs6*<SLe{SfOIH
ziuYB_QZZY_7!_kxOjR*W#Rn?JslmUQlU4Lw9s5wlL=H^Fc#)kTDEaR_jMP{okybn_
z9XlMIqT<*MDf`iA({)nr_0n_|7uQNNRm@<g4<mnMvxlycUS2Da`H_k_Di*2uOvT44
zK2h<hiuo$MzG-Zb|EtbbF;5NtU}bt`jkG}JYbVk|(SBsVL|pTXl<`kwvFL&gE)`uY
z;ev|x$yui2^Q=;1Wo)I2RVuz!v5Cs$WRFDWABlcR?WtI!VlCI5yMX)pjMQhHw4Mw1
zFv6iuUmIk<Qn7)q>1gz8(aT0r%5i=pvc?g6^^zFpyII9n728y7;htI}Ek2%yb+-$=
zQ^hV7JH(7AS!7*MN}1h)GvJJL?u*Di75lkuReZ1FfQp0M1#6`fDw18&4yiaQvWG=$
zHM*o7QNhO9!Z87ki*~pKRM$x{s#7XXi=y&f(#{BuG~YTaK!b;ob1KfO_*unm6&I)_
z6<1YUQ}Kfemi{R8MsP{R?zO=`*Ovw7Cqb_WN)1zooXB+*H&omdeNmVb;UaQuw>Z=;
zX-}<@eo=9UJA#g#E?21WcNJCENxun9t<pA_y-Vf)6FKySbYI1vD*jgSkc%z`%$0gT
z$F)DOG^SN+0|OxQ9~J+Keu?wXP5;%2X48;egQ3CHkftGrhKd@V(~y&1T|)^CB{k&M
zkViuy4TUx2)j;cl#t;X{rv>)LDNw78kJwLWf&L3<n7Kyc@Q4cv4sj9oB8FW|Ls1P+
zYFPI$LUnN%wD9-WXD_aSgQW44(okB%Gos>CqE;CVWwk)bPivqsb$hJ3MUyC}1$$)V
z%3x1DE9A=y%6=<ofo2FQX?R`(dr4`itl<R>l7^UuDjKS42x&;y0-aaW(7H=nbuF+E
z^Q_e4h|NXG(1Ohv(Gb-T7MLB8!;z3upWHZc4VU)jNN7lEVke3gs1sR?go9KxOj{o;
zF^A2Hsu+x>1)GjpT>uWx(qL<7p`oP)M}w=Ou7-MSQ?ye{Lv0PdhD;6J`=-_Hn^sf9
ziyAKP3$zi8`G)k8hB`t^ud<4U_EbWbG*YHlM0U;DFgG2iP@iHNUeoZphK53i984pw
z=8-5{YpkKk|3AE@VilTcXilx32`q|$E6#pt39U4|q2VnJZ&QaF-qg^IgVfMQLt70U
zG<4L^jwZBTYA>3l)p6q8R>nv>Y3MAhrK<)yKys+MF2bm|cJvb5o;@`5q*gWb)zC`|
zd>Rd@x0orXlUk6*Z1pZ_w6T5~`mau-s@cdp#IzO-!!!)gFpynq7$U5WV;&^5O3DA0
zhGXM&xCe)euDKi|H2mjqh~E`UHd4^{gu2Kat>JwQV>FD_ut38?4IgM2r(uqUk2QR#
zVLX?zWqf5K?*v-NolvELp-CD@Cu(SwJ)MAQvfxY+bgH1!1f4GE3~EMzS%S_Ml(jz6
zz@P33KH+X%lQEAwcVOuD*BNtZ%tfWO+d`jms2WBcu{U=J_t=wh;ERk!8a~soLgSmL
z*j-dwtOaixf3D$|!m%Y9?rqLkD(Esne<&u+EfZPJ&GKQ0V3mf|8otu7LBkgs)=-BU
zI+cqS(8FtKpX)PTs2ARwC&KrRnr_NiFN(et^n+^l*BUlz*sNg-dn_PLx*z$5hIcxH
z>01Fd3EHem__q$>CyGY4Y9L_RrUkG15bV^jOT!-~?wQ!FVULDd25KAFt6?9PRmUJ5
z`!yV(*V6Hvj)NKwY4}~kT@8md9HH_x{HWomhGQDeYWPm$*UfN3!$}RNXm#__c{-10
zGe5C|KpC5IOQ-2=7TRY-5zmxuo+f>-;hcu^8ZOWdb4WEW1@TOHM2lh<HT*zN5|eTi
z3YyyYY;ef*vWA~DT-R_z!xarzHC*Gocs%?>jHkMIFqsEA??i%AayK>H((to}+oHRs
z3v6$qbuMD_?AR|Fe&vQ56T2gdc%q8(zX{9(S*_2+{@`M1ctS@39rrc-Nsp}~myW+Q
zJkXF$M|K^5Q|%gfl<%>Ie>D6{%b^dyEWIPn>#;$;kHoBb#G(wdX*xJU{<y*Ja_GT~
zmK_OBao(JtmRm<29eMTOARFhKPY0;&6CobK%daD6n$A;c&4dz&3+gDurgS{5qp*%5
zI-b-~Oh-{2rxwT7Z;Ua1MP|voJn1(0j#OMnNzqpc9Y5NVl@Y`QD5aycj$6M5Co7qF
z9<z*&vO1pC(feRt9(OILqq8k>0MCfJJX=Sx@_KOGvV!3379+2u<9QwRbu`dXS;q@H
z6dfrYRdiI<5z!IVQB6m6ov+;U0Tv-0?Y6{r)-!n?lLtlFCbb>b5zOwAv^RS`awHuw
z9SI#tJvbZAQ+0723|>(~5008vUKk@~^c9|P9J4Sca}`Pi=S)={nvR+}Ueqz_ep1)r
z=x}uyI!vl%L0-n0v2@rv&K<GuWk^f}o{ry+1cx;;bu8K?`8s|L2dDoUif|vbbkx@I
zl8!oD_hE4wCnE*X%wE><iq4Nl#ram-t2*lHs3&yt#8JD)QK{%msr=DET|6AxP)8#j
zZFIEN(O5?l9W8XU)bW~**L5`0(Okz9M!czxp?PF(ldVE0j6B0RQYQ=@&`QS}I^NWS
z05v?r$dF2{bu76e@q{%G56<;1^4sZXucNz;9y&Vc=*YFx(M3lm9sP#JUyn(v>%@3C
zcf#wry0XXW@!$1$H%>fn5dP@V)HDvYr;c7a`cj?-Agq*O0fJM#IvB)Y=T{kgmyBET
zEge=$dPm3GdJv3)i38}bV}Ophm@*?uy?E3ftYe6d>pE_5UOI;9_)N!Q9m92u&@o-d
z3?1+47^!2tjtM&6<C5tZtK$P5qlG3-Nh-y|zdFW<EH_c!f%bQ&W8?JTASdIlP!9vM
z=lf8U(ql~2F-gZ%9n*A7rb*-qs`DH)BgRY-G6Xzd$q-mPbj-jYGj+_;@u`maI%ezm
zNXJ|q^Oy?Bb98<kL!yd4<`T2+QTw%1F}?&yEpa<AN)k`Fv#AA~;3a7x%|;InesV>)
z=_o*}=4sg_I+p6#sbiOpWja3Bu~x@AohR<GLdO?6)^H-+@+VCm9pzH4(y^NQITplU
zVj3{V>~>k=@pc~QJ{6JH>-bW~MxCFe4~~H|ywX=<jW%%OaPXI<AxCX_n#7<G-|E<;
zW2=sBI(XcEvyLrd`gu-EJbYB;iC`An1!sq#^akYcq&&la?bfkJ$8l~t9eZ``qyN!y
zNJoVQY5R2)d^az><pEKP0k!&XH|ffzAGHtbIKqudBi|StY(GYaIXq5GMKR9FNp3wI
z7jy>4z-b+4bbQYZsN*d6!p-P+!k;j*1Q(QMOf{a@;muFGmM!0_8}iU0u)!a6T%wqc
zpXd-o5TqZ)7+Azt7p~B2)s(L4xJK{SGT6DBrv|lNXlL{FfSYu2^nM0P8TeVpZ5`PR
zWH<1OjypOY>iCEIog0BG$PKRJk2bO2Np;-QaaZ*6`B9taXYUI<M)(<q<6!$t52#y3
z8fwIA&zAnC29DYU|LS<8<FO7}CW{y$hs*c&R~eM2y3!2fFu31Qz(7s|xeVkrkk3Fp
zM`93?+(r<iAdi8ww*$A#3ju?7(L!K=j*bU}^Bes1u*r>C&_E#r#S9cTP}m3#NAvPp
z#K6)!!Ptr#c+v<$V?DVd#>8{_t8+>vj9??v*mxwF+0q7{GLSHkH1M>6G6vEOWEd!G
zpqzoq23|1mjDcqjJZA*ad&(QAV4$LbJj;XV5I2t6!`hgn?5<TCt&)M~MG*rpWIJY)
zPRS!xF;L9_FXdH@;7Z3hB&5|1gbXks2{BVVj}$f#F%UH%8Nn5tL2`IzynI|*JWYy;
zig5!k@0R*Zlc>oW27cNlZObFc1{4FX0nb3nfNH=nU>d;%f)%N7%>et-MGFjWW(ln_
zya3}J*#;cJ=P>?r>ArzX12ql2Xapy+84c;bC2-D~=W<GS4dwM!v6l?gq0UVdH}SH8
zR}5@1u+_k;2I?C8eHDYbjt1&;76v*RXkehBfffc@8favov4PjwsR16oZbA(h;Ed$F
zQWr@o@^XykN^S6HHqUD}GXl$LZUk@UklD(>8(d8TZ4GpZO0C)H%z)2b|E3Ydfhl<`
zsN2o}!=w<j7gL+LJCNyQpffu%(3f=$bT!b+KyL%xMDINeFl0n`A<rliA5M{^!ssco
zjMc_i0SukNq#v{U8900}?JZh@0p7(igaTdDI|c@F?Fz{K4Gb{wNm%+U6kKS!<qSf9
zv?`HzNH7shG%(4)FayI4yiZFuFv7sQ2HrC;%D_m`9lb6?w0$bBMAY_ZgCD300x>l{
zX3sw@jisG`koJLrakM~1>Nh!95gPoK1+fn~YXcKFwPQA&Hg9jZWRp2B1D_jMZeXf`
zX$C$uFyG)geatX0$H2!1W*V4fV77seXgo(VX6bQ8>?r|>F<!U_N7_Nyz)uX!HG;r&
z^Nb+G3gfZl%3-mzx@j?l!U6*ex#J8hGqA|OX9gA<SYm*oCwTvMY+CTQ_0VHBg$d#_
zq@HQPz0J^}c}Q0nSZQFLf%OJf8Q^r-;}-^2a~CWKg3nAoX0I`@*1(6E5@Q`OXh!!o
zu`dmLWniO$Z@7F5><#p3`=VcSY=@!@l)<PwOOM&#8rWpuyHnC;8vm)-mSZ*tQzIVS
zRCD~>3~Z-e8Mtm>hk>02P8v96V3&d21`ZlHWMB_({^@7vF2vGsBk)b~eO$Gi5`NC}
zQ5%ipKQSq=uEPe7aHR~K5RQw1V)U!hQ5slCJ0>V)7=V!>7oNzbFi_iR17{5UVBiur
zBL`{VdjsdFv@8F+6>Jig&eKSqlYYArw12_CMULu3hy!@}L~w2W(LkrG(q%dUx-SNK
zyCg9d4F_|Do3W{VRScL8gmrHixM?7piR>nBQBel&8~D?}Z90Dg_qdlg2hoJ?aO4Jl
zXS0W_UqyAsCA%xYAA;tL1|vBmw%Ej((y3_tF9Q$g)(rg1O)W{irb>TP2{WXJLcVW2
zo>49Sh;I4q*zk<tdi40e)<g?wCUTf4V4|RjoF;Oa$ZH~>iQFdgm_cj@9w-<st}=fe
zPJ1C7uOdk>`8Dw1J~O|GC(Ix`$o)aVMZDl~yO4>(CMZ+H3?hoqalLljWT!<<a8ys4
zf!96VJQza>6D3VdF)`IdDHEklq)ezLo-*;YiRvaoCd!y7Yoe0Lk3*rHiDyg<J(l-5
z6VI9`ZwAZ607Ml`RAdSTI$@}vTJ?gFytO69ux1QIS=q!3CaRjK#!-phc?p|zMY>lo
z7zr;rjIl;D;HssY$S_gEM8ZVaM8rhYgk%Q3*L^ILGQ8*apT~G(5HrCTZj2ffH-pH5
zyh%=)kWKu$F`r_B!rYI%ePa6*W_Owi-9#f3jd|HLVVcM^QPYHF!ZzWs3YC^qV!*L?
zZ$^1TOUKTeSkDa3S@<TlO_wGOv`JqyvFu1%Efcj(@VY~H_mYV^ChD4~NB?gI7t>cv
zyeeAb&MNm*;2*e)`FvF0L<18IO}w}vPsQUlLr3z7jNXic<kXs&c+Eslp`X`D1!!xc
znTh5m-Z0VH45I(FFwxRPD-#Tj6-^J~@bKxi%nZqzD!obdhNU*5BBR03!%T?B$!TYz
zy<m0_w2O(30<hms0(3U{(_(Oq=$ggvCO~&;UVuhdf@gtVCVHFbW1_E#VJ3!i2}J3D
ztXglGcw69i1nr;2f3jrWfdUT_bg-a9vPy@Vh#wCwRU-svyrA!z7%9Mef{qb%l%S&p
zeP2*sTv&0ei4RPS6PynPMajJDas@?96HH7LOyWrbOg1t8MBs0ynV4?kTN9g1%rG(2
z#8R%WiCHFQn^<6Cp^1-7%rWt)iTNfzriM3!sP?%gJ`qjvMuqLTC(L;?t#pmIRSY=E
zXKgySTF320CO$K<*u)YVa{-x;w~T2+>$=b;b}P5U=y?y{w?8+r+{8K)>rJenEp3jj
zG_i_}r^ksWz7tz*VvXo)^r_ev+#Rzeg0(c@SwZYXhLHV|+uy`S6W?$T9+&tauz}i0
z5AKV;HiJ;Byf4bJE4ZVeU*c#to7iIFxQP?ABHFfzLnaQ3F1DN4VPYpOdAGy>jJx>b
zkBPk|_L*RetUV@p1JIMV9C@W)>GA!vcD8R~?Nw>|Rf)m<vYn8K`9lhOd6+HV5fevE
z95cablEaX>^g>0#aY~-#_M!Knb2D+;<Y%4ZXH1+GW7s`KYF0Cdz(YlS$KB0c^J|iB
zgc0^Gn7C--hKZXdelT&##8ng5O#Eo#vWcHeTrt5gm5cz)?)aqkZ`&Yz8K0i0{Oerk
zCf2Qx#8`aX+LJ=kEfYVRxI?F5!XFX8Z3Yo&f8j=UByKdu{^CKf-%R{&;;z_P%$AD<
z8;bFixHJU!O@0LlS8ZIg@t27Q9E^qQ7XIdxxlJtev+xg_<+@mS&cY)Tk4^D5xP|?%
z$Ff<-YayS7>=x22<ggI!lE@|Kh^>*F7MdToJNA=uTgYQ!!Wiq{UQ&+{_FKnoSjcao
zu!U_CLr+*}cqOBd#q)+*#cqiL7Wxc~6tuA7y47-}_UHKw@{3ql)IusMXy+Evs0Yzv
z7K&RaVWFgj9d7hl3#BY9za1@Op{#|{7M`;3w1v|%A}#W#pFAivXf1VFDV4L({&w^k
zL07bvh?8}tISaxUU9&s~dCIC_Vd8On*>Ss)h375QwD6*Z$`*!IHzS;vg%>PTu~5}Q
zH7oc~RJw)g7WkE@5GPnFY8ujB%Zz_vJ>#1!%@8tSL5I7hWFcljwxC#uTj=&fw06%}
z!a~#a;Tjg)#bI*N|BNOr%)1v9r7WlxJPU8k4QUp13wwT+91DhpSGvb+3!549ePZ0S
zKxzs4e2*BJpLU74LZ(ID+<m9Si;a!@T%f{{Oe$wn^vh}SS{7<^bu6^7@REf(7MfUi
z&BDv9Wucyh`W9ZbFte;$*TOr7`F#$XnBaWdJPj;7?iMSbTW@G#RX=O{al4TPW|<mO
zQIbjUy2an_%)!a<dpGkowb0Ds+i@Ddnf1#`Y3O#XrG-`&I$P+%sc{h>MB7?uXQ8!)
zH!ZZG@I`H8OQ~mb>C$mK-8I`==wM+}OR1BEuRXIP?XZM(abhTE19PMsW%c}LqQqS-
z^tA9vHo2RH?iSd>R8Q(5+NaE?PsqJ2^cDhrs6$20b;7>mYGtCzTNd87u-3vlPS!$y
z3)3ykurR>FKntTSyl-KUg~1ly<L<br4zW<Ch4iik+Tl=6*$Q4`7*4DBD>{O9n3QiF
z)JSQ%KRk$!v@rQ_h?1j3UD`Gcc#MUy7N&@HSoDE~4=r?>92!Tpw2<Tn(W)<m$J3%{
zje_6*baax1%vMs%(-!e$3;!<6Aebszm?kJIa#Vb8XQqXs`J(eJ%(5_>#wqs2$DBA<
z{O9N#3x{t<hx{C!EBK#U_@k=CjWdtayd5PNbVzEo!dzfsA-9`_&n&DI4KB8@#KPxP
zLO*G#g-R#vWrEL7G`8Ft>efG!QAS<PZEIoYTM{{S-jc{%Wnne9wvc@Nh_=Rpb;2g#
z2z&IF)?4_}!ah0^D&!mM!oBEM7B+B|Eo`)~ovlrehwiH1SU6cIy2-+~+>)K7O*P}(
zu$wJxv9Ogs#KP~bBpSwomeQW?5#s$_6FWEz3%e}rw(xLze2-}A(8bv9>G58J&Ao!z
zY^}B6)z|?G2Q7SW;T%_?xOvFJQ47bYC6OiPh=l_4?4m8K<Ltdj_>={j%?S>Pdp2gK
zDoaf3tDC23w-(M?_|C%RUedo6)qHXDl}akp@0}Cp={E|*e&S4D2w$*pkpnv(t~x#b
zgM~{LD)Q4RtVLhCB;)?9xZg$^I^3L8+@e3ZV&N+Nz#5+83s1`tzG2}eO~U4n*tlik
zXSyjHm2KR%@C!Ydjl4GQSoqZfm-w-T->4j};JNTa3wMQy{z+568T!M*Jq!1_rjtVN
zEz!yqj%1vP(gOF))&8>ZfR_NO<#e>cgXoS2@!ln)Y~df#&cED!78*?o(Mn0P**GyL
zl-)*}jT|;|+Q@CAYnKG4T)VHdx0jU5#%Fy3Z44@_c03!+XXEPDP!StNZ9w4sHlDCi
zz(&1}QX#=9Xv2LW+`GH9^J28H;KaL2@g<QbZ4|Rn)<!uS#ciaY%qV4}v<>?35;jWO
zpoh<0&!i1MWrJ@2_bH(=HlDWe=jZ989)|i{jgrH63!ky^tc^-GewiFEZ=-^ZfpbI8
z*{D7(UeU(Op4sYzO$SS-dTL6Xpr~WkZK}OsqY4LR!?UrjrdHKPHCC}P=7PlK4skp-
zWE%>XrgJRAM#M%`;IN?gy2K<KF&haxFy^?8)w8r3Hue{m>AOhj(+HBHbZZNVc;E>;
zWy7#x+E8t1HfEo&Cs&H3l{9smN8`-_*&}SkvSHhBY}B}uL2ub&w)W$Bi7n9k`8G0b
zG_%p%Mok+pQpq;z+ks23#hD6F+s4mj0^k0UjXHv};e^fXD>h!Wk#Bp>x>*9F@0z>{
zG_d*U1gw2k8_+w}$VOuuO>InnReS2`yiIJLjKk|T|Eviws;`y$J)k@4Ys`+R9e@@#
z8Z?vMu+f@&m=tO$Xe)O5iN@@kHrm+eAlBvN3H#Xlp|&>K*}+wB@|1Xc8{`~R?ILqS
z9c`YD%vd!$zN1963+>IuVjD|rbhFXj#z-6Q+2~=TCztGaXqb(@`!agjc+1AyHqUQn
z^tRE*#^r?>eQo?SDb$b4dOFHP7y1sHni!(@9%!S#jdv%9>J>~MV1rxW-{unegY3Y=
z54JHxfT4nF7lSIpMQdzugaGe~#btJsjnOvd*!bAS`!pCEQ*BJMG1kThHYVDbze`g~
z$>V6=DQ&!s5%;1W+UVFbwxXHz?4{@g_LVD6fk{G=!jo-G$-<io#HZ6dO3AaRs5==m
zX!);4X3|Rchxju2fJ}3?z-1n0d}O1H8=>SU+^5ZBZ&rzXYGbaz^8_XH*|+TZHWt`e
zXoCWu+30say2!?kAEHde+lR)j*UY6hmhn`9jeRyI^^!ifvB}0}8_R91u(8s{Dx3fJ
z1$MPs2(0Cn5#S3!*9aQvC#|P#XGD6MR-%verNC^BoDDX<wy}{$ZiBZRY=`Mv(I5?y
zX2~o)`4;Z7`x!fJY^6%4GsZl&a{$x%GcEqw9j0&3S=;R3n7f47ZbA3h!M(~qU1RiG
z`)wSsamL13n}JVpNNl|mHol!4I&25GCC3Ekh`>kLOACq2<2HUfVROUs4&<Z|IA!Cs
z4S%^^{G`om&;!T(PT24zoBvDVdmHD34WFm0T%2){X51@wftEQvLbpR3{(*j@TZ~3t
zcWmggjpwGsf8rLq7CMzpz9O=}O^Z|bx{Vt)K6kO)#Z5YYw(Q`XgP-aAxuG1q>EIVS
zfBGc{)gAoGaoWh{AiIO#ZQQl-w~dE3{;=`Urr4i0W(|<;(GzCG?$bg>hj;A^SFE7@
zWn)k=Wy#L)0~-U(Xw^3&pDYY7cr*Nujel*l`X}<p#$)=-=^<iPd2^xGv0g0AK@JCn
z929nt(?Ko=`5eGOZU>AOwf<7JJPu;jmB>kZe%)AJ2c6nj1o<62;h=znHvP<I3qtH=
z$#1d9gHS;Sm!^iw77mxs7A@kSsDqLYN;!DaK`{p<h<AlMZ_U_f$=T;ciaWU4HqzjF
z?CY74mrvTI9X#bQS~4m)c-q02e}&3ADCeMzgB~aC{qIXVD_I<T%leV?<)vpF>{}Fm
z*5UhjVP@lFq@oKW6&*O&RHo+ys3hp~4k`=qf}m9drA$=^H8P_FAqVLWd<U5hG8}{*
z#98DZ;$X27e|n4*b<q2L>5rQ+iSvC<`(r^Q=Ae})aqtNTNe7w(-GS^taiFr+pvb)u
zp*q_mDF>5I+8iON%J6H`LWYB#gCdp#+kq)Cvnx;9jsw@hGaJJ#o(Ov!@ZRv55uqAi
zhJODu^xLmyO$RSJXzZYggQfY>YdNSdKy3#v2~fwus{*j}WdUBHGFOB;*N>4?S8(bH
z`eSCafdCB!WoaV;B6mZtIe6Vc3kQ7hIMF%W)WPj+(Pp%Y)zYnoHgR*oIqyj=Iej7a
zhM;VdRkFVlY2%=+gU_e|2kjiRcQDMsa0eY6bac?yK|k7$gU$}Rb4?v|aZvn0sH=l+
zT=eOoZwJMApdhncWbaA)rCp((4mRZs(+K;p7YB#G3_pG~+}i=^#KEyM3nIz)B5yf(
z+rdBwgB-l$;C$K00NPkabnh?W{;a+;L{6_~rEUea!Q658GU|<yhB_GHU|gXv)6TY$
zmcQ~%Z+nD;cO6V{FwwzC2k$u;>)-<iqa2KO@V<k2qrxqx*pv5W`1ixF--rycB4b1&
z|G3d{T$i2U4;_qm@J6Y~ikrcHY}_u=+>I3YGd#(`WCx!*m`^${GR47E2h(U^zeg?=
zNuN$#T~%i}=wB@I_@q6<!Awr@q`l*}80l=m|42{@%n{&Y2cKkd<_a*6Lp^6wV1dJ*
zP^^Ux7CE2>u8a+jYi@7)Bz*pd@Ec!eETMipX`_R0xZ)0$Ir!YcatG_V*J$&HGgdfQ
z<6y0Wl_E>dDhI0t{zA~MPsYe>cq8=hx1n`Z`1dj5>8C>%o(X^DfTdqk$wRYkaL{u{
zNF5xKcZAsEw_FGZM;sh=u-U;Dn!STv4z|+6I7pqccTfqRMz%Y!x`tWh*;DrQG79<M
zjtXrm9^Flu^vGd0Qarkc^Ww%AxZ?I0Ir|+P5ZQx*9uk!Nji08^JrOzdW9XQJ;||VJ
z?DOm=9Gs;7t>|g)pi}mfc4XO&&?yI%ikie{IBYV<MAlV_f5+`#B69u9NX-eM^A0X>
zx4N)ge$Em<ILPnf2^U@JgfBU`LwD`qM+cW3{6x<=FMQ3xbq81I+-MJ9XV7l957p>N
z#-FmQ?GN8CmFtFsoAkQ3!nb${pu(@I?%puzZGnHGD}EwMyZw#MpO*j^X)f+M_`|_p
z4jwqT=it7BKZX0^!HxQZV=oVnZ23LREmOW>jK>iErl%bo`^UjU2mj=Xe7QXQ`He`a
zda-{UJmT)C7Ynb8JQg6E8)TO}7s=rwr;FS!^0>(5V(}?^`Uj!XPfB^(hKcjK!9Jxq
zL4bTN7JeoDGB-?D&plhfML`$OyQu7<kc+}Do_2Y=f{)9^inu7oDlUq;c+y4R&ojpD
z33GA3E*C4|V(k1_DHo+(lysro2&Ekg?>uF{P&K|J6nV-;jrlQRGRwLs=b{3e`YiH{
ziyu$f?-fda*2RND(SJ|b<z0;TBX6ZgN}aYVx_D0X@^p*vn1kU;F6!2dTxB~hs<@C`
zen=FrSC3S6QQbwz#Z$w>)!6dj(3o=>y|;wZU4&gkTx7WTux@zefG|zE%!b(9QGs)d
zx>$QOLJ;TJIA9kk7d7vy2^aOgipegLzLg|1J<{}f>nYzFK0c(n&|K&)3>UOUn)ig}
zVVd9LP^9G_CMQU<w_P|cdb#NB!gb-fJn4YOE_@f6)brg~UG_r5TOX?J;w1rIbiu29
zEtaOoc;y{+IHQgm{Id5lM|e$T<Vox2*efnx{WA2bi>>J~f_g6MQ{hOb&uQSIp^NV0
ztlooTSKgNf43nC;c#Zb#qAT^|qN$4xE;_on{ZhD@ixw_gx@a!45B>@@OpkH(X$-uS
zw{r0YO=wrRwV(uV3ed(yTLIc-@!Pv#*A(C_M<*ALs>M3HL15D9kHd8G&up+~KN;@k
zqKC^5Sm5ICvF>6<v@UL+Z|lao-Hh=9(T9u6rQwRZ=;z`s7b9G}>*8$}@3<K3V#2*h
ze=g!_dyp`{0Rj&cl+3qVMyh_DCf$t<p^=x6hPr5QCd4$%#c+XnHDq?Ai}zdxK;Y+7
zgTQX1T#R<{L$R=2&0_oSa}`e8T)Ub}%zq|o<b2>_oC}&X4gR^!kvex{6I@JmG26vQ
zE+)B{>@qkxW>5oDLpj<-rns2ORlXT(aVs{>MYUTo`sV?j#QUO|E?V~s&2ocVuWjo?
z_lCx{@$<Ly!gE}FLKEVogj#Afju*Zt&2!PYW@Nsgp9;#`!jnT|3j|&$C<PV?@EJFC
z7H5fzrCE5Hi&Fz*6kFk9C1>j4eGjW#tmeM(P|?E|F4pj_)x|AZmy2~S4!AhzVm(LV
zVv~!_oZSbZuc!eR8@cz}gg3ajQc!F6SBQ&CQ~Aclw?c+X&s#*^8J?UU+Tvoji#@bY
z7ccVN*>A$zTx@qypm=15paeSw*cI4bgxS3=_PN;af-Udvka1v|_Cb2gD;niBmu7#+
z#bFnhUHs(Yh>N2xPP;hcqWx+6n2VE~rohKtoDhIsF;+jeZFy+O(3o*OQh7@Ftc&kl
zTyU{yScvI+YGX|JKYY%`c{-dyF=lssmT@sl<_7^T(JB20ss#dV3TD6J;u^0J3qsDm
z@KqP{J_%gqb-^L?h5#?j3;)bL<syfNoF0C0`P&rkag|4fhMl&5b@7{v-<cJ5dzV{2
z6zRJx^at0jqE)L=__O&j`o{Y%{$%flU2lHuFOJZ~-?X=FvGuDW4+Z#sTL$qzF8<|`
zt%^Jn^s%7XynvHkP=YiMyqXi_@{rp@Q4ddg$m1cehbKG~@Q}~LuOEisA-{)#%QFsq
z9HIv%XT*fit*fzu9`;_$DC`BEypR|8YVM}J*(_#@2xjvIv0@&Idw9yj(;iBA!L2M)
zDG#MvL`r&rhh)}XEtU3QZI3OjA1mX5_m*WnloP_WXGZR<mYxx<%`PbsKkK2q2ZC=-
z+oaEVsN|uRhuR*V_fXkG!b8%-3m&SF^Hn73p{j>!9=PMe9;$l?dC2fEevEV(>7fM?
zUM|zU;G%ixX1L|v2yYQ19v0q~N>tLCDsjm}j4L%aTzyeEE*h-iA@f}5wdo;xHkkwC
z$UWE|QXW(fx(CC9M(vFY`9mV@>&D(Gpz$)zi>c`aH@73|#ok;H-t5bc2bT@*%c$u=
zrd50J*|LY51Ek)2B7C%A?;CE#=oVh|z)i%hL=W(ihdLg5d+6iww=cZn;dKv9J-q6n
zu7^e*8hfbc1^2G?Jv8vZNtw$tZkE@`Y3SjE6{CmY=4ziK@0|VFn|Q%R<TVd9%1fOq
zX%lCJn|WyNp^b;O9$I+V{cN<Ahd0>co=8g%r)F9czlyZ>@TP~qiUik@%mtD9^CB<K
zh%BEGZs(!BhpryFdFbGwqleBOx_Id1;m<~4c1p@Lt)xQVKCEbTMWHZhcMm<hU<3B@
z(9^?rxgzw6)7OX3)r%2dx-E@a9qa3%pNGL7hIn|(!`mKs1JmEbJ03>gjGa4e|9#q~
zyWmau02-=?K^|YRi26@Uy;E_5KdZ!sdKkuul!}bxl>Z9x0y^Bo2oJ}Xhrd4?Sz1(j
z*8|<}t7F3N(f)6!qdb(|5ZpvnC?6f;VXTLH9#8i1YvUN_@qZ0$^zb3A$irtI7JHcB
zVWNjw9%g%(<YBUh86Lt#(x=c|vqfnzQ@OLQsU;f6r_r3G$aD|10VbaDjDHZG$<mNQ
zFZYp$Ibu=fd-#|-tQVu1eM)yxIQ$9six=E&GR>nZp4SLidVE!6froEKg%?sYUqu#q
z;1z+1&yq{Hi9D?Fu$FBu4=?ku!ox}rpL<x&J$T0MbX%h4Yn-uHd1!JovYO6cfX1!U
z_#~C1ltm}0h3&6Lgx1k%u;qo}z8f+)uP;4(MN2zl^HHns&hQ2gkBX-AM}TiUeCy$&
zhaYI|oTG<*9`<|K;$bVz$-^EGyuse)VY`PNG>oAk-t+S=k#|bHw#9aO*yVxXzib~h
z&ga>^9{9vDag~&NLF|BsgS0~rr)k?B4tqGpMf5<|bcFU+KX#N>bS}c|htFH<S4$`8
zNj?hEd5)`S5uBv4&5sduXcRu<;d>9~Je;MuHVS_yD19t3??SmR&eLgl(goUNxfq=f
zqmEpnck*!E!wnCu3#4E6a8*o!_$Lon1d}6Y_L_&w9Wt7I9C`Rm_$D`aC5tzKe|We>
zYdIMHnaj~I%ygT^kcICE@T-U41o%CRf7b(VU?|+>Oz?d4C$}CQnvd!}9(eehuEs|}
z9}nroXeT~$`S_qk<X;ch>c`T2Jo4~Z_|I%Ue%%zf)9ilWv3dVYn!^t~K!*u|OV8~i
zj}Lld_&8TQn%BqN@u7S^D0z8l#=Nr1pV26te10EK_;~+}&04%ED&(WEk1{^W`Y7U~
zsE^9yL#2E?>7$q*+;5lkQQSufj%0gi+Zme=l8esRyn*MXg!jh$*`c%_EZkE*o)+N3
z8JpSFtE6&1o?&Y~Uhwg(kMcgA^HIsi*!r;wJ}Uab11xXqnB@huVhM>B^1Nu_NVX`m
zY?%g7#Ya`a<n3JaMVXSk%7lER`^fZB(?^Dnun)tB=?53w2%Gg$!$(wP$&mzz2};`_
zhpUkAdGn8Va!2_@BU7I~%5@2+d<+>Cq5!e#LlaD0(6;l^$+W0mAD$0h$BVDda0GCD
zjH|46YY;m*E_ljjkuO@N5x(f7mXAh08vCg2<0T)j`l#!pj*pjpyh5F93fGE7Xm7kJ
z<-O?pU&ZpYjPL?l&qsY94a5r8D$T#nV|=>dooz$Tw1mW8ewz4r%|{C#Eq%Ps#&5@1
z+T2G|AI*I5wwW9zK2!gF#-{mkO<VbRgG1dD#69M9-&+)J?c+@!6S_y*2uje_N4qSX
zZKTxEM<*WzI-p<&boSB3$HF>TR0mysbn`K_7N*rgcON}yPBk&6CVKklMIB~hXeN65
z=;LFXkL^DC`sl~8@zb=lMh?%%Bp;KhB_I81?X;ZfrZ>$T;A5zdVLk>@$<xe1f)WfC
zV2Gf9XR|0g+{Y*%qkW7Jb;)_x$H*-F9<_8Y5PM&6SY@o>j1g3tZmvI^kIgcT6K#Gd
z=y*<C0P-gaNrEYyrjJEFKJzin$8;Zae0&`An{S5C7d_3{K4uCqOVF2}iWOL9ek3qU
zDaPz4K0fs^kD6R&&dmapq`-V13xx1O!6%1eq>F{{avv*bw}P|O$1)$EbBFfN$G%vd
zb7X@neXJ4!YkaI0fYrYctx<*pV3uiZR{QJ4LVW4tD<5rdL^p7OI$2wNeC=bSz~A`T
zBmnu}`Y3tUCScm^V@no)Rz-!J?>kvLeC+h`d?qSqVwaEIKK}9Xua7-G_WJn2$0Z;8
zeC+pe#>ZJ72Yej#an#2#ABTJ#_Hl$Oek01%AU)TlM^e}HTp4F=g5y3;h@#UzPWm{-
z9g&{v<i6;+N7Bwm66HUCBsCVoWPZnCJd!T>_@1th^82Fa1<h7nV^fkERJkZ*UP{mP
zqmRoze)e(O$4^4+s*h`;^a}Tg=;gZT`lg^avPO8Jf7-1q%whcE<BpHJKK>BQUw!<Z
zRr;F%x2kEJ6o-0GWdHQ>myi2dG8`3)*d53AfD5NefBRsShuj^HB>$}a$j4*qKNF=g
zku4M1Gm$S7$V6Hua%5t2S}ac{a%Lizz_~N&=W~&HCN0*ax<*PqIeA4XIV{SbiNcvE
zl8GlWQ6LkPDJW<mA;av;hoY1$DwxGGQ9Kh*W`ax>RjaO*5MuqZdSQd5GZ}?7%2Xi}
zPi5liOq9t)*~~!y&k9;D6VGG@>&rPdeI#+oN>$gGEuR_8k)Wbz;W<GoWrAt);h;hK
ziWf3rWx~!xl}uF4M72y*&qOj4|3}q#KuJ-2U&F!@E+{z%iGskU3FH-a6{e?qrn@K4
zEJ;A31PP)fkswMEMKTHq2!a75i3G_xi{vQ5h=8J!;k*6T{+<7KPM>>j-Fo#Zy{hi%
zh3Y0Aq<E0(fy2XdmXYQ`x-^*mWjk{RA;SZ9B)8=*5C3XlWw}K>`(id*&Z`l9%0M;s
zpc(6Z;w(HQiDu0`XyHLi4>CP?UJA0~xdX^t>MTpoFL>~x2OT}=<lz?w(AtBb2O$qU
z(s94^S`qFQR0TEBeS#b%jsP#+149&Y(}RG=3TEaq2ErahJV<zu<3W@GFeHgrOj?_7
zNK#zLseak*o;aCo!<ikD)K0{<V$4pp_n?CZFM06B6DKb!w4{A!4_@}5w+DSZ=;A?F
zhFKn04-dLAsPeeTyK@|dB;{UA_7nq>S48h6N#^$T;8i;JV6YVI=fOY^Uh|;8m<_PK
z(UN5cNvYQ*i%DKLn>ktC5YgZCV5ry+6CCaVFWS%`myGmalm}0^92AW9ST~df9xN0x
z#)G##80*119=yvD@L;M3<2)Ge!6Xm=0X!xYaE%|9M4TXeq6d$MCVj$W0oP;?-uK`G
z>ccE$3U6KoTs?L>iVaI5p}{l{rh72kgE>-mh6gh}nB_sc0xsIqa^kS0Cqt7+KJwsW
z59WC=--EdxFn7QdOXroIaDCzd$&_J9->}lSi@3;xPd(V<!Cns*d$7cVwH|!q!Dk*U
z_26p{Cf0N=;=jrF;48*h0oUgqFv;r+555#$o=)~SmUEyAxK?mE6maoksg)kA^5C~*
z*J?3aBgMBCbkPaFB(=_iZ#~%J!B!8}b8ji&+UUV1AsblNZU>d`BuPSLv(0bCT~xMt
zu!B)5;&#CuM+#Ek<-u;-lBIIX?(<;32e&-<(}M#Z9Q5G42Nygz<iTMs3J*?jLJPW%
z2p;p`sE0@5qf9~mJ9bMa`9a8_xQj_%Cp|dr!5OYi(W!KdyUq$fC+Lm48pd7x-Y&~t
z^x%>Qzj*Mg2R};g6%Vcoxh%*jriW|7fA-)fAyhbYoHC1e@Vf^$MZa$6-tgcL;jEf*
zNTg+Mga7j2wg>k-xX&G?kn3;3e?9m|2$fd~x$fBfu8?-8vmXd~B=}Hp=ddIiKNg;A
zmRCWNf_e(-D^~F5Q&3VtDFyizBr80e9|aW@Q><ZUV+tuKqM)c^jbUL0Q2ra$++lo5
z%$^pJ2DvjuEG~Kp1)RRLVM)v?t)QxcXT(n#1!WbKQ&3((1yL#sRus(bekBDQd={)C
zA~|P)A$M-KgRxglL3IT+6x38uOF<pQis#yb&nng@l4}f0qQaK2NL>ZbDY68_181ax
zf)oW21yKd53ept3px{LgNFi6cf<_7&E67mbP~a5tg+ea35SN0jGM-c#vXsmMOEpo@
zOhI!6O~s5#?lfg8XrZ7bn`G-O!rUwc*|ulS8ZYXt6tq^LD=-vz6f`L4;^h^hD7Y1K
zwJPXR6=({43j7L~q)3}jdG6(IYdM=DQV$6UC<sbH_dW+jT81Tgd5<HeAg-XRf^G^D
z3UU-{XY0gxP|#LE2L&&Q(oVskDM{@Wa9{dhn6(9Q!{L5Kh4vj4Ya^lod1nPLE9fE$
zcf2XGM|EdX!C(bL6!cX1)*Ag3^q1J^rJ%QhK8yj`8@bi=mFatxSkT&wIB_Hc6mZWO
zq~LW00~Nf+dhJ{m;l*w04G|d?#|pZJDj23<jDoin3|H``f)NVdQe>Btg7nE!BNdF|
z=Fh2@2(j8Au~EHV=2!*qNK4*TuyeQ74Cc~vZj&Z3kQ9vbV!RiV6uigv;zdC(CM$Sf
z!Da<p6nr4dYO#VP3Z^LdkTY1tHC4eJ1s^GxreL~)847-BlQ~PW4tC0%$zeI2O|#hw
znB>J=CO=j%U%@8|=8EM!$)(=CQ|1B%3l)57>l7CWC!s4Ar}1YBmMW-R*|lE5G6kP2
zSk3WN@C64%!Ai#et*oyYP9xkagfAEF9O0(Itgl7Psp_J#N<nV!S`n#y!_^^X>lA#e
zfS>APk^kjxP_R)9HrYPEW0+NS(es;~GPf!?tKgi1Z3?z4*ukMzaFpAKf?W!BE7-5#
zfPy{ZVXq+TVgrc#q(>yY4k|b-{ts~<sOn+^h(~ODR(Fh%a5|d{<g|hx6dYG@LW-Yc
zoPX4^h;)qxr?|^ib&;ImknVM0b0HoBdtSi>1wV79q~#Ymp1T}Z6kL+zk5Vt4T;`-S
z$XxnmHgm6v%{9TF1UV7ED)>#ozY6Xs_+7-CT!uofEBHgf4bFa>OtzLzrc`#(&!3We
zTPpfXL21run@s9|i~f%wNAj+Mdt95`A-&cl-WUCmH0*)kLqQhg^_bg>_{r-<k{8Kd
zt2?YTpOE~5YydC1Vyl>2$cw^WwDcm&3wTk)i|Ss~@S>;}PkB+%i%MQR?L{#!N_kP*
zYlUucuNCbjy(r<eB79I47n8gg;bkPNoEPQ2C@Y*N?&gL)W0l4gyda?^?JIlnjMw5-
zyr?Q9SEm`{yqXue(O%PwTGIDMUexyDSuaw(Nb{nOi0ndruQj%Hy?D-xdUltounOij
z5VI67HdnC*KV1x*QiLOu;f2HIw0C*o_F6HVI~NUw(@A45nuu9bQ8K+~CVraR)#Z-r
z^O9^K$S<>Gd-2m=M>{Xtd+~x7FM83+i`HJ4UIe`Gc%iUuUeq6*#K`n|p?UFF6&Ej6
z2zP*ksmV<Gz0k!hH`kC{Msm=Lknn^TVJ{+H#Jq^x4rv_agjRL&=wnvFB)ze0ju&mD
z6q9X*&}Q!G><(VM<i!v#hI-M_i%wqj_2N}8I(zZ57d^dr#S6OX;zc(hUA@+E%3nQd
zOzbWSb9+daNqF`0g1NoLjCvo*qQWuh$H9~$uL}+ke9eo2Lh>hEv>7BtXwSKLL-fId
z^h|M>MArx}-V!q0i#LTZco=UZy%;6I`HmN(g}f~|MvxP|PPXE)GCoYcD>}>4$pkMZ
zatWxYsbZ2B?|E^|iyyfEd+|Pp?vvDAUVPxi6fahI@wFEpdNI|DxeRPCrg^QsWu_Oi
zyqGS0h8Mgja<`f7<-cNbeI!XLb2tc%-8|8n;>RNLspb@K2VQ*c#TQ<D;>7|l7RnrP
z`j$y+7tvD4V!<VXoWak$SSp;;$|Ns(<GeHZB`1O_H#K>=J@3rr2(R>Fl^5S}X?U^P
zi#1++>&1F6)_TF#e&fYD#^mUv{#9LU<dljoa_Sq{?5eJfUYx3ADdd~Po>}BMqms6G
zvDJ%h^ft<}-!8d3q*SiuPVOWe^Qtbjl54jYd$`r?b?o)xkdS>|>=)8;R1&=%V9Pn$
zm90l0;$bh2cyUyG9^B*TIV$OUF=j<{a@>m(UKCPMSj9=Uko{%McyZc`GhSTv;+hv{
zy*TH^j~w0xndiN@;KfDZOwvE`dMugxC8?Cj%aVJ=wlVfPe)8gHFRpv>2g646-voaZ
z<n3wNZpZJoJ-3}3!f$$UO9(yFEg#ta^n%wDsq}9z{^6#rBA<$Xy}0AWeJ>t(ao3A`
z3>zuJM;DgLZQ(;N9<i(!c~mR+?jB2jEZ#WpRM?jRd|X$px~LFYSAG@AV$URP3aBWk
zT5aI-4;84EpHeDHt0<zPs3f0K!Ags%cv_Nl%Vcp8NlK_FDg3jFmR?3hSrt`PE8uyR
zQ&CYxB^BjWR8Xy;;%zr~IWV`fiYj8svP^On(D^ees;Q{XMpkk0$}Pg&S}JO*cu7S^
z70;@uqoRq5rYiWPQCCH}5DxWoD(b1IucCo!ZTP98(<VidJ9jzA(^Ld@JD8iH!XXAu
z6%ECJxh^4Y6`Lx$Xv3?KipF*>lg(5#S7FkL^e9usiz-^FcwR*d6)ja{sdz!P)(9h<
z?ax-N@FroBA`M!r@Tg$YC-#a8uL@NKEqQ6;mX_pPVl?xs&?Spb49TTK8U$5@RK!&z
zRB$bXRYX{CV>d4*qbep=am55lDCP)nC)h@?t)2U1ucN*24&sXT++#bb=q$;1RlKaC
z3&%>u2sS`PHx&a^3{=rwMGqCdRrHam?5U!c3eNH?lH}6@=Pq~B+4#OHURBXgy6}G^
zp}%T<`;3;asTibUh>D>qUKg`B>{!YTo59jZx?=HRDuzogIm_l&^p<Kp48N^f4@-P{
z9I09lz@t=*R;`Cy-r2`U776vSD&A55d&G@5FU;8=Clfth#ROI)e3FU}R7?^6o{Gsr
z-WNP{I-BwEp&esWMdZ^0MY@`yVy21*8XjtxrD8TGQG=mjj*5>|TvTyM#m6e<s@TY2
zQ>{D8Je8l7w_aq;=dx9?K*d58pR4#n#Ul1p#fSSHONsR}cg-xkSj7?*Kkau=<n@{4
zGHV$l@PLEY(!-YiB|9!zUkOsD%?cG?t62FzMLaNTHAC^RV~vWnD!viU<hLr;2`_oT
z!Q^`38w6Q9#qXr?`&8`b2&mYiVylX6Dz>ZG!5DtxbPY+`_QaVwBxxu0C(b=8_Nv&W
zVz&y4RGt&0Wp0vqK)QBR#rHxEsyHO%u;39v*4{3k>zIlkxZATL700=24M{p7$oHRo
zhnf4f_OyyK?CcZgdEOd^B%M`pPQ_R9A~)BD{DLTa;mNEYRb1xArJ=HhE2{PG`jLvq
zDz2)y#;R5Ptl}1TP8GkX_*KOX6*pCsb2j}=@DCNgtGLc0j;0iopE!wBh`EHE*Iz1b
ztGK7)zKXw9{KK7J#U07|zxH><Pi}EKe4ygt|8J9<^+ZJ;4Nqx!TC*lGuZCm|1vDf{
zGM|S08g?g=nRWBAlcb=ALXuTPu&@RQp#gL2%r49?Z1O6qVbH9?6hA%SD5jyLhEf`e
zYhbd3VE)u(^3od0XsEy%4?D_g)*&Ih%1g4GV6HOxfTN;@q9u~{&MJKLfTN0rsv25o
zXsO{D4b?Q%(NI@IbqzH%EIsU~t)Zq6R#8hsli7tSz9?^liO)(F$#WX&X=tROv1YA^
z`Wn(Sq-$s(Nh&EqQZ;Pe=U_5JgF_UTpi{&DA}ZIwt)ZcvMf)aFaC804<{Fx6XeP;T
zW){wMn8{%|;JER``Mk7;JWE5ihSnN9niX{~2<8UliyB%<l7Y%Bg<~#Bu1ZyiKR5Zr
zsR{9ER-ooaDY>a3pkb1R_cRPUQz)ompoZ5pgfxUTWH_5fG<4Ij=Aa|0A*La&A)%q8
zhE5uCG_=vsf#jg0tp<KMrM+0T6VBwNIfa?UvM-5F?#%CEva=++Xn0u&#oVl};wsuX
zv%7{K8hUDYMGX3B=-oN9mxewX`jU$o{jk)lVnBsS+OTYY;R6K6%`QxRkcQVajMY$X
zpW_V;gBe$OU86J%(ZC~US|+*P)G$<oy5BL3BY)5_TsR9-86o^F_C3kPtdR_ZycVH{
z(c))};M*GBIp|>4J7QV6x$|8O<G9|NJI4!75M**9hpufV$z%=hYgnh@TMZv*n8Ly2
zu}GXF4O2B7ub;WJe&#d=M*Ym08W;@Ih0oBy<;Ljcx|k(=wnPif=4jSd&uIBr!(0vX
zG|boVC8t}%CmI%LSfb%G4GT3a;zHA~m{UI_i5LGA@_&hcNYYXb%QSqh;R~^$@;|fx
z886qcf(>ZqT%+M@4J$RQ(y&_Wm+p74NN%azg5+y8d?UFm!i&m!#)*dW8ZKzqs9}?a
zAJ}mX-?66}_G;LtVGCnEpKH5@9U8WhKXG0@=-8%#$h~W)klh;gXxJr-h#NSEf<?;b
zBy;I;-`lU@fQG|dlH%&16gk9k-fwxJAKDxhk)@7l_+B_gj%3o%B#K>jIZkLetAT{q
zNe!nooYrtgl(IvUa`mzKT<2^XW?j^9NyFb7{?YIweR2{xT-^UPT-ES9TPuGJyr$u2
z4Zm=65G8N_Z2qy2S-)!djb=lV$SIy}=FHWvYxqMfuk#PJd|*g&-O})<?d?7Oz}Ik_
z+h9J|$kb&1xv<+I$G@_T+>_mv+ua>W-sR>dyB}lezGM~3Nq(f^F~{GB%|1NQkjIB-
zeW>F@ULTTtsOCd;AM*K---q%(+&G>u*=HS>RN9BBDVYU)DCk2W9}4?WTyzLNB}lU(
zLW=qjOvz;OX-O8db92QKk}N4$N-Swl=Vg2-E2Nwti|<WKt{`R=#f-%(390Nu6(Ln^
z{TU&2(tc=G4IgTYhnha{IFx~7vTON3<XLdLld?*j$*$|eb3P36;dLMC`B2}7kPl%W
z8u+Zcc9sv>KBV}N>O-0j=_0y)$PmK6AUlOP1bLfg5tp6S(1%7oG?pawmO`2cHua&I
ztvB}}Q~2|?(n1KIYItK}!57$aA2c6)KD6?owGXP#x?gyFP&je*Grc~PPEF=Yp~xh+
z3nDpl{bFN?Jr&&t-ZYtO`VinKiO%BOTPX4l67eDGLr))G@mb3-=0iIl+WQdqAt6eR
zU>m^?XBDPRTc5Qyd0+0}!%L!f^`WB=oqTv%lC<f}_{mA8S?>C>mY8Jmsi2#X?zUwQ
zA2^IO=;cFiA71sLpU-+;<>Ku_BF~w9h0u)2{+vx8Uh{#EuLA^gZCE__f%Xj_2KzAE
zhdDkB@nNVB<9(Rm!!SBI?08Ftdbr@5qKvR-frCF%_$bjw3yu+F!MA-FEBqZ>dDn+=
zHm}V;r;_h?O!nb@A0`QB@;#sR*i7<)4^w=Yk*hO4g-rKhn$LPJ%C#Y3$8$N0%=BTF
z?T61oANlYxz4@@xhq*q?^Wk$JzVKl_V>OR!3A-=k6CV}`S?I&IWY;3WPX!kXQhfGI
zHj6A3vt>TqoK?8rK?jvee4NhX`qGExl12WN54UF(CgHWh=BwDM`kCMQu-=E&KCF@C
zTA%eJVx14)2+4TjWRkxih#SO!MK<}cQFymmg_)!c$rc~B`q0piMt*GbVLRL7!!4in
z9&(2dhkZEW!%iP|`LJ8WeLn2>VUO^=Y|?JWrL!qC=KHP#J{<B{Z$u9YQskRPz8|B)
z_gciGK78-PF&}<l4Eu1!hvPn+@Zp>f=Y7_z*ONY+_Th~1QykmAEh&<)ma}#;SG*wN
zMG={G$%h|(=pk<`X+Zm{K3wzRy14o&7xy}T_2FmXzX;Nd{(lqBpQyjv6;b?y+pjpM
z4ITc;9{KRJAI1E*?Ze+bY-*EP*pGjF_?KI^ADL&e@Az=nhX+196hHR_`|!Px5c=V3
zQsN`-{66II<FVAsHv<%T<@H-5z<0>}A<tw!Kk~D#-Hv2G3J9UjKkXG1PQ8#H>;(y1
z0zX1$vWxgpRLE0;e2GM{xF03_sOLw0KT7&h%8x33RQ02@A7%X3)Kv1LtRLlsR}d`k
z2b;m^<11?#@T%yy;-TA_?8@{rIw^NHpYfxbAGQ5>){p8^u!bKs{nmR+7Ri09Nm5J7
zvYU0JY+XU>s=V8LP71OY4g46)b>T;vA1QuocqgC9rjjl?i9<++Am61pg}D51i+>u-
zJCn^&Z0tu9Kf3zS&5x#jH1i|uN5qfjoFhNZ?{a8<Jnu&fKU(?mRwdWAO0JfE@XxQ=
zjQ>imED<-K$$mk^MtdDE3gN5f)<QgfD1LbT;QQ6C6<w;>Pu$}mr{eR&?}zROl>mED
z(M4kTt-tb^QajDqh9D<MY^d|4N7Ro`s<?9eXd@)X@vN5__ah<6Xj(FpZKd|%yBsh1
z(N1`KPSb)^wz-2J)JZz}(aDd_Y~j|F%9UJQ{2;#Uw_azFY)ws0uH@?OM-M+H`|-XX
zJ^grv&G2KApZ|jrz3In~H~r}2M_)f)_u~yeUiG7&9|Qat=*JPht7nl0nOrR7%Nx62
z6LF9qH!8WPyfY??NQ1$m4E2M`5I>H`lKFavI&+6f$4N$T==>N<8$U++F-lyG@nf_f
zbV$!En_J{<sgy-_?sB|q^9f=z&X4g@kX6utG0#%RE4toer4?PxtGbAMdH8`0#SA}Y
za^hsTIAR|Pnd-+hTbV9|qdH6MKlWp;9~`vVe#{Z_k?7rIJm>kXKVyC3#{$WkFIjw#
zmpjx8MO-8zJ+R0UKR)v#9zY_1rG6}9JgiC!2k^NcUvPL0yk_7_Kfdx~wvIVEmiw`S
zYe7e<j<5Y#>BsMWT=!#@AFKU1%wGGk#*ejrZ1-b_AK&<~&W{a#Y-G&0cYn+Hak|%Y
z?Yo?78n~%2xyg_3{MgD+_hU1oWvY`W&u?MS@`$-v&Xd!e>Df(bPh*}j`?zn?PKL_5
zv^{?8^<$SGySa8;&bzg(BTT99lY$4h<hfZnocoC>?vfqchv>YJb9jcEC#2=fa`Lda
zqkeqv$5}tl`EksTAN)A!2hTm7cqECqC&PW5gOK4qAtI|j<;Q71DmvXfS@8_Vu#l4%
z8+qQ33w~VVR_Vt@KQ3`0_;H2nQFr~w@jUKgn^_|*c@8Zbc~x4%Hv4*K{mc#1k6-=x
zjV+ns?3?0dBYDa$&vW~{iz|M`dA6?e55_Imi;kyt-1Os?ACI_E`|&5YDL?M|agW=t
zAAkGtuOD~(;Gq4(rtWsuon;+-x2bm){jj=CPRqHT;lA(3Lv9FZZdyKI$3Jx5dM)eW
zEGG|UeBwtQ9mzTh=*X+fR}6II*Fg_SI(F=~+Ry2zkmlwbvHJye6w>k6Zf6l4=j*!*
z>wu0{dz|DMCtWRA>aeS*j`5eBv|*Eq=_sz_86DMhl+aO9M_C=^#6u|^cl#!l)~%M`
zPIs2k!4Y6_Cd=!nprewG%92}A$IO*UJmH)b(QOqS93`4n)v@(m>+o1|>eY4B(DAH}
zI=VF`HFea|QCkNKPH;K9OZRzZ`+=HGc}RF&c2@e!fqG82&ei9D)Yq*Ok9jrF!2{As
z(sZQjctuAq9T_?tI)XYvI-ELOI$G=S=y2<3sH26BmO2{gXsn~Tj!Yd*bTsAoWH_7Y
z7?)<nKhOMUYpJk#gEO4Z>(-&Hvwts0@%WkSEFIZ8UeNI(+cVRdT*!GM#hpu9>EO(=
zJ?&>Z_ollQoxujb4qb<;gNNtSgHMOXc~q<u3u(!IaXh&e3>~J9fOMA4;CB;fPj5HQ
zWQTP`bhOveK}VD}4mXSE=!h`@IBq)F$i|NUTD!BpyN!;vQU%XNY^URl%gL+sZs$un
zI_l`Aqq~kyGWaj+=%V8zhqJRFLx`Ts&#(res}3TU23Knj9X)jrnaiH?&}I%uZykL&
zVvHgkeRaI5V}y>kboA5FU&kA4m5u?NDIJ4!@Cayz{cAdiEZehh7Q04QugjP}Omh#>
zF;x7&DatUx;ewydaVibm9FyFRj})^pI^Je4#=Azb;B4n;9r?~?a~#IXXt15{uxk!C
zPy2tD)1Be2H`_@A>JxNK*73fMi8?0fU}xXct*<=LfUASa4|Gh?F;&Mjag`ebABq$5
z={jaGkOmi;se>nMbLe>SgYUB>NNB(<<s%&*vpoj#8<?wOo{kebPU@Ji;}ad5bbO~{
zfsTbbzR>Zdjzu~?)$y5*r7}>987jM+OJsuBYkmQQZkMq!g{;FQKW8|lxj)Nr4t2Sy
ze8tUQ$66iV=-_$vD|D>Xv5HacaDT0XXKpjbR&!lAoILG(jgSgwv$=0<9+I_A$G18*
zNEp-AdLbN#3OvTsX;r#W)-@OVW-c@xdv)yNTGp{mqGh*^?c98H>}1eRvu2ai#HlQD
z!nKRRT*w+3?yhX=9vLf6-+mnjbbPN{C+$}V<Ugq6u#O`-4zc?gPKGX#`|VNA>`B*h
zr*)TcO?4jA@dK-v?L5vcWrlSd8v9#w9#49T&C~I-j$at$%+js1Mz85O$4yViWgS;^
zT+ne*$0Z#<>fiyYC$?sfO?A@@bDWJ%x$?iClswaUmAk}LE4tDG`AP0wc19e|pSW^2
zJDL=7{;K0Q9slaMLk~Kxb63=HTgM+VTsJw$GO9NOZ#mtqcRBy$jHkGH!ZSZfGi$f=
zZ-&_}>vYh6s5{*J90PYkChzLFr{j^1$2#tF>cs<h$cGYaFT31_`ea?pXWeU_=-}5|
z@)*c#fbq-`rk~*9q$I=I<hhi3v~VXIC}5z4ftCge8YpC-hJl&}3LAidQU*#JC}N<f
zfs%%GM)6Yyo;Fb2KnVlI49h>S-A9r*0@i8muVr!7Fv%Mw^&3Z$$`~kXpo)R22Fe*I
zZ=j-qN(L$z)<C80ax!R1c-}rwp|5O!$}(}4>+l%^)eKZOu&Hkr&xfZ^)<VK*t!1FL
z0jB|%foBcWF_2;))j(atn$UU%>Kk~@u!5PJDt)q414+^e&xU0(%|N;V5{GnzBtr}s
zKMZ?zfqvWu8X9P7pqYV21{#Y&6G7(EhAk<aVR>sVBCE?Zz%7)@^P-T`EXzQ)fp!Mk
z8+gIMiv|J)f(BX{Xl+0<;4|Pcphyv~0Un&rrNOAMMl~r*HNaa2iQj-OZ8pV{QEhN+
zU2fLGQ`T82Lo{R{Y#?qRVOaN?2ziAjQQ^FO#0+a)GvvrgatyRF(AKbS&@1Y@sdEad
z&T;aK038gxWT2aY?owk%1D!cg20C%5&t}t-%b%g%#jwul?P`EKJS%#9FiBCIJq+|T
z(AU7L240aF>1CidgKCbG{y89h7)~yCkv&dEER+3M+_3JL0}SgaYeyFskp}B$I=Pb%
zGVr>At|q#fc*DS8_T9jr28Pgyf$t1#HZaV<a08zhSYY5y10&dG1CtHBWniR%cen%$
zj509Vz!(E>b6V#(xv2Rm6Al`i^vU>a^05Y%r@L7r>m6rcynzXv6vcTt!#$Dy3p&};
zNrrVIH#_oprgfWp-@pe3W*V4fV2Xhc4NNsK&A=pn24a_!=bxii)9D6gNWV(<&7#8F
z8P8khxxTXv%;9ctU>=uYDSX7SJ>|N&)A_Lw@<XX^-e0K9mnk^k#EOB11{N7uX<(Is
zPdTjyzGAZtEHUtzfiL)w&z4_yE|nTNN94;mzlQZNM$VmtW6S-V&114haZ6ue;A;cS
zdgqGMd)E4r$Z7*?418-~y@9m`zTp^Najs)$XFAy`ZYFHlpEaA#PjhbIJuB6{k&Bd*
zQnM+ueou8XFnBS!#lThu0Bbj}&A@g8hYcJtu*1Mk1N#i@H?WIK#=sr}dkyejz-G*J
zI=LrsE29V2IJ|cjl>^)g+|Gjrc)O&2$Uuj)*_;cWIDOQxz7q0-f#U|gXPDJ$dQ5g0
z?k&6<e!+c}`%j;&liU-W)-9W3Ydzr@IBVc113w!$$Kf*Yqk+o?E^tZCvD$yp03Usy
zJCt<E0MEeZ#n_;J#lThW34N?qak22%!8PupSFEx9#Q+U{H*np+uPntj%QGP#lekeZ
z>kk7r88A*~_?YtsciIf=14)%q+%)^kz-?|yCNfO?ZQvj7z$QwY_}9Q41NltkH?4wq
z4LmaNn7PxO_ZU14-1j*qF6RTmhk{&;+(Msl^EZ)Xg14<arnN5(Jey7X_s(Yj`k|8~
z*+c;o#Y}5R3z{foqNs_dOcXZZ&TtMs=_+CZ!g({I!cuH7=jdq@^Uh|o%^SM9SEad&
zn<!ygw*!~rton6UNfWfBSs4>$P1H8=tch|a%A2Ta;u+K0%_^9vWTG<tG;mim@s~`>
z;@QqBru96`ZGjcBifSgRo2Y4`7D<K`pEX#K%gwrYEIFr%t{8+QbwsacqP~f`CZ1!d
z>DB`ee<;zWfr%6osV34)aOAny?LC{#$;~*D#IwyeZOi7WbeM3O&`lU7T<o=pEECx#
z8gc+lG&Rx8L}Sxhq%$~`;)h?}xjoIA%H}3AO+0U+1#6$><TD9_fg{GBKP^qL3buq7
z_v#l+ylBE}LY2O^GSS+EM_S9fwqjbJ@*!cH8Cv8eE+lCtd?x%R*i&vS{G10zfCeO{
ziGYcACfb__nh2SQnuv*U*hIv%HY=K0-dt{eJSc7=VWN$Rww!d<EB7zvj&Ges{`N2z
zjd^iP<R5!Ga4t-+)JvwdIdqhX>%>xg;+^Bn#g|QV;q08SK8SYxY<71OJxrW4ao$8v
z6R()~)Wl*Fy-f5r@vez+bY-Hii6JJ2nt0VjKNGK+7-XV9$DFqS69Z)`Ij8Jq?><>1
zoW$3q4R4qjEM`>r>yP$4K%Pr)n2F&gMw%F9T91Wqniye%S$B>k@v)Yl;(AMxoQTmT
z#+Vpu;vMNe{cy{A+XV0XB)nLP^^%M?F~P(v7Bn%@#3U0RnwZK^=ktS!_c=10ks?hd
zbB)Y#<~wJd2G2p5!v4;*zJ*caTsH6E(@ab^dGe~&wQ4P!&NQvt9DloUanYDX=CDU6
zUHq{#-^52IJ~lCzN`{laQ@AtF6VBhZR6a4Wz(jhQ)x3o!7Mc7yMpIVArt;3agdI1r
z)x<UvOHC{@vBtz&6Q7&-!o&&_Uz_;S1YLb)Vz~+KuADF43s{`Bvw5vk-78J3GI?w)
z|I3e+<WA10;G+(^{EdlqCN`SbWa3*B>rHH6bji<HZm|4f2*;MjT%q4_nH)~y4zO7w
zpBwlV*$~)YirY=>VC^Ojo7ib$mx+BQ_H%dQ{xjW4<2?)vmz&-=zk9_4opVJT;KrEh
zK4^k#ie`K=uW%vh2-k~=QzlNc%^X`3$Jr_qKX6&4x_NPe7!PzvZ-WatPjVMcb@PV?
z+j+*cesOR?o#k`IE+=md97YzoVB#XTrU0r0aLL4vCLWo1Y~r$sD<*E3xM||5iEAc)
zH*sAm`iW~Q)%~-yoNfDsv&OAH#r><a|2J7UOg8_t5Zm*IY#kgczJ0o7;!hLzOx%~a
z{fj%liGNJ%HOOtQ-#%F+boH-^J0|X$;EkJoVUIR!&F0eJ<H`euU#+HmoOmd;kn=MK
z{4w&xM4kYO1yDSIya6NyP$+=H0ptrHe*nn=6bOK3oOkXj{AEOviv<JxfRvj*mk>aa
z0E!0iQ~<MfTLyg(Coy!{a(-cf{e3!M?QD#V5&@J9plkr;0w@(g=>W<Etmh><q`}N|
zH$O|napqQEK7a}VR1Ba}02CSde7qs@EeE%2B40{W4d9soTmiTPs1`u=0O|+OAb=VH
z)C^d^5uOX6RsgjFcs77KbeQI5Svu#)*QL#L>lV+O2ygM6Yu*Rz1+3>5HX|i~)BrL9
zaL`WxRMG?1yAiG_-r$J*5YI;bj+I*Ip$mUU&vZ5npiuyx0F(evu||^so)4f!08Im6
z<Tnpkzh&6FX5z~F_!nC~)B1(Q`$EeAvI2M^fEW2<HoIwd0QApym>e9|-YS5LPV0kx
ztpnCh!sW)V?eM3xHvlyNBLFi1?jahh2w1ljUjRGRY~Eq{3q=oDI|;V}?lS>SXd!1X
zfRH#`;<EN14iwE;itm9V0Yn2Ji3v9CoI#!wK$`&Wcg2IQXd6H~4o+L7wMF{?Is~vF
ziiJ_U6hOxS9*6KGgiZl;W~D*=5X8#?bP1q&5Sc-A4WL^9rvo?>Kz9ZYhb4e71LzsR
zD*;Rn;Qau41<*TS9XT>auulN}0_Yz=UrD|y$lTdI@(vI_IDjES1`56=I7sky!8ZaZ
zUo(qEcnuY0L;%Bt3>SP;u-%nBG<Zum$;bdk*?ctP@Z*eJ4{rxBR`hoS-wj|~0ON&E
zwCyKwEo3I=+D{7b*g&g0ywbZkKVWPWv0TjyU`hZV1~64}XA4fVEvE-C!{#%&rfgni
zN5&kRe-yyS!siN>xoEY2J{JpTM3g1A<w7Bg0{GNc7IQ7M%A4D&&qQ1*xJ>YK_HnkA
zTY=|)GLQn;6~OWURs`^Mu7?2D30Wz)DuC5O*5u|6Oj#==kyGefTiGmRz2FAMwykdp
z;5*?9uC`>2TWo!+kZpq71K45fb#6Ppdzi9Yl7|D>6TrxaDZKUuu+QfE12|ywg8>|}
zdCd+PM*=t+!1uPdV?x%>%KL+m<F<YxfRn;c*-FK88E1vx2;gP_=eRn!w`@tjz<q2%
z#!r%Uk#_+hKMGzJWT&nOxf;MVTWPsB<7eT&*vhW~{ATmt1Gp~y4_k4xcHRo$@6Ck}
zM3Er=4B)Q-Zd2hNbs#HW5dYYgj|2EOfI9))wUq|}+!KCZuu6rb+<AW(z$4pc%h5tl
zgy#ubv6@$qBq@k5XIPPtKWJ6ND_KZ^APNd8Bv{za&F<(b8pKmUR12bd5KoJr(m|9F
zQcSRT5G90^6f7m!`Q(4CDjP&4QCMj?A>{=t1X0n}BL(tSwt1Bxs@nXSAb##;wYEkO
zHG@cJt0b#d5YGltM|kZZPjdS&^6LiCK*Z;45A}kmZ}X+s@}}54HHb8uH|S+8ZATD|
zL~#nb1l_hxL)Iu}jcuh#5KV<Q6O2E$R_pUYv<PBK5FZB7GKj1okMly$Ao};rn;nD}
zgfEB}f~c`7jm9qq(Mrm;7W4=zf?h#Ykd{{mW|U}}?hj(<%Ct^F=s_5gWeT<nA`nC{
zh)@t=QE~($LBxeb1?eZomMq93N!ZG+$9dY=ye$X$o5IX(Zz~;wcu9CiTUp=Gn%2&e
zd|9vy?*eviw;;OP{8GC@uLRL6h_{0n8$|CQ`UEjta{Jmg{eyT_ct63P!iDI3KoA3i
zcukbSw&frpuLtplkegks86P5isBJSW$iI46`kO(#)jwl|Ajw-oMhcD!VziJkcJAOM
znePPoB$+XPLq_Pb<6ZGKE{O3$CIs=m?SG<>NkP0PWU{U2?cRu$eh|c%kdtI;5YxEI
zg7_+k=|Rj0;`1QB2x4MNcGn6SGo{q5AZ81h6U6)=J_+I@Nq#IiS8$%-x<9PAS|EI}
z;6lMgg3S6<$iVh_mk9aH)|Upc%;smNWRKop%{#AVnrnFwD}vY;#L7V7eyZ#1AifP^
zJ(ITmsvuU|e2tK`L?P>Jy?oSixFLv5L3}6TM#0<T@@^KgLvV}WR>5t8EVZ4hGSiyt
zoucd#+%33AaIYW@DhzDCKZtn``G=Ft13?fE3LXmLu#h8yM+LtZq|N*aS;vDo5#%9b
z=oP}rAWj8QGK5kgoDSkl5WfWRYY=A{ehu>`$~w27&vTA@%kA{@QtyQzE(USQZo}0e
zezf^zAy@bm^t2UeysnAz6L%`x=CcXOzXkDo5TnLrJQc$AApQs<IrQH%!;K)Gh~>>7
zZgJ-q{%;U>g#0CVTkvnee}d>>SaEe%k|Ym=+zaBqt!zG9korSOJ`#M)uI<XC$SY3>
zdF|Shgyah$zmV$3^5xnTkYvFS3JEDJ2*DzPMFnYmu|(6SLzvnlt(Yjq1xwhuWtZeF
z9YUE9ydkI|lntR=2#ye(A=GNpvU~{7hVaYPlnNnK455;gs%Dq1ETl>ZRc+-NA<+TW
zP*)dTBZQiEZmke%+kAM2^$b=ggu0?U7eYND^#xNyXkc5WFw1_HOA8@g^b9+<?UKyP
zAEeWjixo}FbcfJTvKk3yhR|3@6Tzl}G;S6`bDJN%-T3(sT7=Ltgsc!+i=J)gz9{5{
z5S~g{ooZ$4?>EfrvAGh$O{aBBnlUt43n3IjI0Rn^pN-1!htMWpIxk&_5rSzefe?bi
zBV7v9AQHm#>FMo4_&%j+RCr8~Vq8c<Fh{UW2yN}$hD{u-x_t;8LU<{Jj?${Gf}I3A
z3%)GaMUeJ-^Ym`Qy9@TP^`0S|yJ7`l?-2TgupxwvA@mL5)eshkuq1>pQyu+67!kr-
zA<VAi=pVv>5C(?un(bjo2!n*bZYysH87z3{g0(#k6+SG4;X>XNjBT>UaAXLhLikXW
z(SqYb7%yau;M*aL74nYYyMipZuS4Dm!aoq4C^$**Jwe(`4&i;97b#*LAUQ>nnxo*<
z5T*&A9>SauJ_=!mBxl<8v)JEU<0}6>Ddq2;_u~-ehA_{zStw+F2%iX9VC#?XW-Jo^
zso?ffRxG_XF8#9*z7An!2up3tWg&cS^Dj8sHvcMw<-%9k%In3`SA}qQb-K|x{ZKT6
zWOWE@L|H3H<r^XELipBJ)^j;44rXl%;kyt{aI+0za|l~P*b~Cu5Vnf{>@z6~qUqc0
zy0(X~!{$4M><VGGkjbsBS!;33u`h(9A)J5Qn92Pi9FW|DcBw-`4u^0=$UpV}+l{{u
z;g~2t*p|nIEcwN8ikp83w?a5GB=4CJO7BjeT`&Eb<ep`e+V<x|xDdicNnR4XBKRX$
z;;7`y(s4HFs%_tVO<wx>iL+TR{b!DbkY5FV3*mPm*F(4=<PSkw?thYT)8?!1xRP#W
z{22oAuMlnv`8$MvLiktseL?2l5pp+#d$w|-sDt{05FXmfqYy?`vcx=L<PF1&AP_-P
z82Q2&6UN(N<PRe`jBpr{FbafGFpS1wGzp_n7=^<~4I?d#2T!FUj1pm#3|qIYB4HF2
z@|57yg4Bx%DIUh0G;91zNwRVnRl+DOyo_MkFv<xjA4WwXG_D}zpLg?C67thC|IJ|4
zFzSf%jBQyhjOt<3kYr84+F{hPb2ry=J}bQQGfn8WZWzynQBRa%x2(;fzVHTuDS{Mx
zug~r?%9S3*@ZBkY?aRmrV|l?Qyc}UTg}ZFU9Y#apjcn!A`mCm5Gz-HMh7v||@%cg+
ztABH3+WwypqlNI6f?0yucJ9yX^S)^FR$;WZ`RPOXykUH@!rCxH=d#r>v@m>jZZHhL
z&2=G$pczKM)*GM8w#rKKM>B6Uj93_NhA|?Hco>N=286NmT1L^Vj0zjGbHZp7M%ysf
z@5|^M#>-)}6W(5sVh15Fh0#$+CtFY2o6;qWu3_|+in<B*5bQ3<HXIn`BKDNzD`E5!
z^7LEQEcX%K*S35$jDEuV+e&Cx=J{$F110%d7=who9>yC&1`7@m>?QpjDts7cQwXaV
z_sH>97$d_N6~^c=ir-GjdF;q{A!XNb$DTPnIkw4if5xB3QpSeyP8dlM<cr|lFvf9k
z!q^qY_%J4f@lhBbhcPjXp@EF!zqOny&L;`JCpcN~eZddHm?GpuLAHV4(<Dxl<n%CR
z2$^Z;&I)6;@Hw_JUivbZ)xGUn6UMwS<}(<=SP;gSw#`BzpM|kV$fvfxSjdtvej4`Q
zd#$BmEEDl_+vW=)<x;c1vX$jwtO(=lFjk7P%GUd~$h+F+3(jS)B@bhrD4W9gPRO@{
z>%-U}ggxEJ5SsPhD&8E%4qM+6##Wne3uC*@yN|UZWNX8u-C^tr<L5Ab3FFqP%)Mbe
z9O%3p#=bE2i}8Ulj)w8Q@PmSf1P==y3G-|O>#lK3k|)DBCFF-Njte;<=#lp%r-h#r
zWRWvroE6@?l=XXr*ZD9mgmE#9OQQd1Th`UBf!!i=bR~?dwth{>Pl8qJI9p70|H@v3
z@uw)ih4H(P>w@&~M;JGR-xREQ^uK!l3gaK!=5`o=+x$TJq<_P>!#>)|BO&*~xNj>D
zIAS($d)$h;$C7*!MxKbg{}H6#|EMc}1j!N9i=ci4o6_<Yh@eCSB_rs2F0Eh$g(4^%
z0c`tX5fl+#)K;Dn^0Z*hT6v2LSu@R=ck{jUQV~>&;Ln|Dr6X{4PA?-!QdUU02+G?^
zg$OFz{Os|R$`MqFpsJK*@mdi)BfOfeRF9yB&1*(rK1iooZBd>TtYhca74lpJZ_G`h
zO@jzhB4`;wRs^XLyu?$u2c|TRAT5IQ2r}$`HH^R^+$rd?b$0}{Yg<ofjcjF9Lo3*t
zM9@@}W`fP_+{_4`w|R>Q&Mdd4<Gh4TwynPq!HW^Jl4NT^Uj&{AlnA_%d@S}Xs7g|c
zpw~`ovG^sa3mSqyw6lKt1tSPW@LUx2q6kM2iC{?tpG6RjAjYy0^o}4NK_Y^j2-<Lt
zp3fM&)3I{9<LizYZ7HUwzZ}7dK`HITXM4d8f^_~;1RaHUvX#yeJh*TDCha1nSg@;*
zZi3w-=pm%1o%@QA3hC*67-kWSiQw%BUX9@5nUvQf{72DE`q`fQM=-$V1BJX6!5|@>
zMp}3CHzF7u!4TVKL<B>H53`lwLf&LJov?n}zGdqpg^Y?|w5_zSlr%PicOsY@!OQzo
z-i=_KWX%*DAHl>3CPgs8wjXpR?|U}?FoMa#-?x<yBA8<HM-${lkR+!?FkQ$DJGWe&
zj9E6H9l;!%e<bAN2xbko0&HFc^CS2~#KnROY|Dj07De!>kjxgAJ)1{d8o{y%eu?1M
z2tJSCiwJf_useb;Bls$U%?#R6>B}QnAqCe7eoYjzQjktoMX*}<8o{-;KI)#;uV`g!
zIeaVP`Up1Ixf{8k2<OOu7s29XEosJUO9WeOn{5$nxA_hsI|bcOTR!(ha5#b^qU?=e
zpOF262Lula9umwQC6+oG!MO;|NAP_F$0X~A2u=xM?s3MR@RNdBL#(knE&Pn&S;1N7
ztaWrj_!U7WFABL7!H+^N3l0idJ9bw+`KlzZMevi5p9OR0;<pHX=R-vl`J=cl`V$6B
zw?=<Na3g}75!{O4UIh0g>rcUdBKS)Po!=JncLZ<Fuv+!6B<~2`6)f|swH6)-kF}DQ
zKf)<Kir}&E1=Xz~<&`HYw}2>;g!sO+?31G?5Jkl(xCs=DqEHl-COb<-QCMtf@U##_
zQA9{l!KVcOt!8;HCcL;{2|<b_qgeHn6^Et8VHv@)g5?BROZg}&*nGy>%t}#Imf}?e
zYerEuif5vj;x4o$;H+kQt{z1V;oX*5?XP9)wWD~}=5?Z|YxD1KWz>(NK@`oS$c!Q-
ziqt3?N6{pTv?%!O$KQ<UQOsG9_SLeCJY~}}qHx${ol&@K?vA3N@J6<hc&Sj+DEO1M
zSrora%c84_=d;(2b}h<o@_ZC6qG%gMJ27q<g%O1rMV2J9qj*8ci-O)LS_xryS_|<+
zp$N&HcU8D1=o9n{>Vhowc!)dSv5Y_z&IM_l$6yp8?*DdfP81QFM}@=$<ARAO&Mmh7
z4AI86sW>FLeH0y{cqfW?qj>P1^Q9<1lYt&l;Iqt*QFId0S@31SE`nVJy9v^A=_6;)
zC|-%;^(fwmqL=vZC)nGrt4|btg}*9TaFi9#y!uOWfZ)I=UK27%khzV&O&c7=kSIoq
zGSt@Jiei}X;eu}pj<9q0?X|i&{8FA#qKp<CW9Pmd#aQ86<&L&Wb&reUhtugFL@}Ph
zth#wk5HeA4lHhw$OcwIKAZ_lQNtqJGhfz$mJ%1!*S`^cxm?3<o;B3KJ49<hrUc_q-
z<Fn0wPtG4p?%XKm37IcQn@@!Bw!0{bPovNiFcMfC#gZtl#&9i$&!Sk$c#FY|VObQP
zbLGZRG=?vt_>yxS#rY_{ieh;bhoU$f#fm7tj$)U%UCCYu*(|tPaD5bOgsc_(CKm^$
ztc&7Xn;*SywSR*oH%75Z$ajM6Wslk-e5>F#LE3K@vO{oZ6sP32^40Xr-E86X%so-;
z6|zr|%Kj)02tQ~my}!u(yjvq(%{ap4IU@aN6yJ-tV}hqSgF=oAo)A1KcuJ6M*ipCT
z8R2JbrPlrC7oxbxMIFVjBKi(zcp@2>qWICaxg5n6n_m@jP4FkdpSi=F&!+R=qWC?E
zyHVWZ{%_m=6~!Mmzaivi6t`^U&nRkL`fnB7j^b}y|0jxnh2IgZ-pGoX`*v<}3=f1q
zjN*}y$AU>QoE?_(B#JyS+581ru**YhzVgM8UzF-TE9wdeFDO{Zwk#Y2gx8c-Jr%>#
zG1Q5nZVbg@2%gWb5<}G(b{umQkD){iCB?XuVEGtI+kVQ#P*!+3!9B<Si}?yMR1~F>
zZCRPET4d!eIcB|ren#|aF_c-8!K-=<HEdo}NUa!Z3whSoH~ipujxFqz-Z}<P4E18D
zA47u}QetQlL(>>i?Ydk-(gf3E$PnTXbPBQoQ;Iexx+U2#hDJgf3;tcwx&t;7o+Zd+
z^B6L1{=ASDF|-u&#wqJpK(?Lxf{+(uXeFe>2CLUf3@`lP82L@wRKNA8@0Bc7P>aDQ
z#4pHPon5YBwIRT{h~fPhK8PU{LpX+kF}xN-B!*}V-D2o`DWgQm^!Ya(u^8epxNf8+
zVt7gX<VccA8zF6DXeXq-U<W(5`l<AecD<eG(B>}-=@LU%TRHf0M)w$cNU~=Py;<WI
z*53O{483fdUfuHc5xuV<4PK3*pUwNnFu>+b|4JJa!|O3jma+%0WW5o?TQO|YoP%YS
zhX``IhsH3>=EH@&8N&!$>2*GPWDKKX7#+ie^Vz({2^k~!b_`>Myd(IoAZ^-aW{l6}
zwlXn>Ny6W=l{>{!*}KA5)277mVGK*S3CA!shG{X(-=91;hP(Gur^m3capuH1DYw7P
zo)H6aW(>20kk5``j?F)c;bWT@x|cT39<li`d?I{-;6lMgf}aX57Gz5ncS>K%%|C|i
zT$nL@E_%CDnX80+A^4@>S1~LXvO<t$zZSBRv-zbJtE*#J6T?~&H^i`!MEE+vZw1#2
zo{_b%NjM8`7V=#T9WPmacx{PctBBid8xGD+;m2b*5yP$+cE_+MhP^Qyvu*YXITXWw
zTR9-)pkV10){;3K!x2dy75rY1y8EcLf&37|Vwd%-$m?Vb=Vh}xW!s#N;f(OJg69P5
z$zLD1r(KBQqS%vP67r+q<ruEm`llNmKgIAfgCUNIar_d)uiRncNQ>jQ7&bIbeh|aM
z7=Dl8x;XzMhQGOsu1dcl$(w?=1pgFdJO2`LI|gUJ|DFf_iQ!)n?+D(F;g=Cs*1Z_+
zi*hNCm3$P#;~0v>Q8bQuk&GuX{82wWU)<XK^9be@OcI>?qBSh}<4Bfd0l|WTg#-%=
zLXei}<K0ii@pK$j;;0%&G0|UMol#au@i<D@mL-LhilelUGPeFOCA(Z4EK**uf?!2K
zik0H1Z1bKq(x0(QJsU?gn^%vchVYuUQcFnfIA%1mrkhtCQR>F=Tpab{C|un7xyq}4
z91SEZ#V*UN^f)r&h{h3%!x4uwju+y1F%DN8{0C{x<2*7w-5tl!xtY8g3TY(RIF2T^
z-c(4lIBu>@ry1+Ylq#N&qlJ)`f?0OG*>QB*Xw6rvI9kW8d$ePd)p(B>m~kj^c!jHi
zx}X+^Pl#VI_m0d`h9s{KO$i905)={=495`>^1aVmEb%xJaqL-|GFZf%IJ(C1?|$oT
zSerQ7#?da0_L4=VQyd+Hzho;N*;Dx!P|WQt;>&S#5pqiYHBPrUy2sHYj-GK05d9Uw
zzJe^(OGt0QK7#63)=<0}M?XpS7pyYTYVAPbuL%wkd_9gg;yBmXy6crSEt?^1QXIqL
z)*XMe*pLj5<4sY>M+kXKaHQa<ILxyt%o-EN+i{GQQtt@TVTCgV-?jO;IK~T~_Kj87
zq&VJ-BToW(6PO&w`*EC#<8&M!#4#m~6>)qW$K+p9K8z!^q;q~8Q*+D4F`e-#e2(pT
zrjS{2%(j)yHLXs4B*~BCm@8zSor@mU9DNeU0#O#mu}H|LaeNlXQsIl^SR!P#{JR3$
zFN@<#Q9c*^LXi5W!>twZRUFH0<?GF9E8|!d$JRKu#WCyCwAFEJkX-ULajX@Q{F^w|
z+5Fo$*4w=3_LPlcze(^r+w*22TLeq}k!O1xJK{LXI4PdGQ*gf^le>iMW_;Sp-Z=Kz
zeBz`G+8mJN!8i^HIc(=15wh-F3T?iR<Cr9Wuyc>caYFb>TghK9{S2309P0dxCyb~#
z&Pxm5ia0OCagkfxdB@#2F2(U<9M|LcBaX{<kA4<%C624Ma!trjaZHL@yUj1Q{wwbS
z!hg4wS;tat*!;GTn}W9l|BT}=JNNXpw7+fskC1=kxMM5Je$Kiljl3`TK=7g9Bf-al
z>_xHtDK|71yP1?gz6734piTn$6G%>=d;%2`D3HMFUe1+$oKMPHdso2(3MEiDVcj*5
zz|#p7OQ47(iwaVIO2}6EV@h%1r3FhQP*O-KLCZrQXBnH9O`x33jqc8&C9F-aVgk?i
zcUBU;aspKns4BdMZTXClY6(=gl_{&Nmv1#CSu26sLPkHdemB)k;JE}|OrVvBd%HX9
zB~U+s1_`7j&?te%38dP7GK8chkZvnK&a_6rk$}@yTteJ}4HJ0M^S`@E6E@qnX)2_d
zU~|FD1V0XI?HDa=o0bV=3C|XM!PfV^;@nZDW$OfnpUFIVFvVl*iV&}$nt&$6XXpA8
zIMt{n{hJ8{64;W1tvLuL5Tc&I=>)<FL=u>m!1M&73B(c@#wrqsCy+>>a{@0XP^PDI
zVV=~S1RD0RI@KnDwzmIv33R`hr@bUQB=AxK9TS*+#Cn(B$+j8L*EyxHvr7UGE<E=}
z0$mg6CRyDR=r5#40zDIW#kTL0Kri9F1#`Xi75=JVKS5Serk8Vo%?Ap3ErCHoUbpqO
zt5OEre29>t34H9ZZY6IfFd~6TBEFSC&ABP>3MUyU$x#W67D8o=khcZLCh(4}_sNqw
zPD+gzq}vHXCJJ`w<4j$g`5x~AcJBK^K1g7St$dikRN>cJTj4q*ftd+x=42%>i-VcK
z5(Y^EbNB-1-IRF=++3CZk=TE1dzhQRpYld%zT|!)xImD`3xzBa{8Vr;r`wmotfdJo
zOJE(7x2(Iy=Lvi*KEDwB()RyV0?UQ35Pa`*YxGtouu77v6Z|K*)+6E?Nv;+AMsUYM
z%ktY?WnjvBAsZ6dXe*l%_)hpG`B!#ZC0uXjI1h6HzT(`L!1e@oB(PI#_SvO&3E7>%
z9$VQfq~a@9GxiHVkibD9hjOzDTmM%12)m!-JSzCT;4wjpKL|OVzzJJ9DdhF38D|nW
z%b?9c_Z*x{;Cur0a!@}97ZSM0JunA_b8snvCifhFC2%`|9}~Eoz!j;Nm0lNeHGyjh
z{FK1YlKfTh7r_r}SvU0Gg#Rwc<f*z@f7twnkednI67r|5PrqwzjDPbnBL`Kcr2Lb>
zzX{xt+=qg9ZOeN??sE;=%6Av79qds8k41T6>v?jJbJO}6PKQZ3$S0oj3sOlIQXmHf
zg~U=@QbZ08o^+JU!IW}Vdy3?sXbzsrvF-~`3ziZrCRkjsL=H*{p$)4mZSyih%I4s~
zWowr%pMwfHsF;IFqSwwrWg*pV`zkr8YV&7uP|fBGy0ole^O`xRCH(*KbQVxj9BmiI
z7P%1IArM@`up_(p!ZHcLf+YkQ_nDrVMS~OECAdS7U;zRI2p<V<!6gKD_XL6j66}Bb
zF7=<&=boo-y;a>^T~*yP-P1F;px(~1RJ5TIoysbviVfd0x0($G8@{rko$R~QQr(8S
zHq^5r(FUUpCKX?UV5VAZNK$^X4Mo&iYT8gs`LzjkY*@}au(Ay)Hhf~kr}XRF&_G3|
z+R#w3)rJM7^f{rCa+=%lnc~KTCe)@jG*f<-w)%wsxeYCBXlX+$`d_Hr);6?J{A63o
zm*lp}S?aQUcHhvRNw*ChWOerqvUHSQq1bMNgY2ZblwWj;Av(q2vB7JDfR8HRCj@K=
zDko%v^c>03#Ia$KG`<Z(&zWO33=yy)ZbO<4owyl2Z0JeoY(p2dom~mtZ0Jt-TKU_0
zSb8b`#)jVHKGeR{e$@U{X{DqDeH08}a-a=^2!mDbo81Y+Y#7nQGR}taHVh|Aas*+d
z4WkI7l|ROYv5Iq~n7*}P0+Vy76RFc}m_(RNokE>Toko@V3!gKK&R}w;4YLTd)AfFW
zWX&bdqkc!7PnE0%HY`+Jd{)Y08<xlzsbpEtomy%`$8MI@<Ym<5)E{hEL6Fv1X~Qb=
zkIJd}wPlUswKn`jUZ)({Q(5l@8-BK7qnPx6vEf%6Hj%ds(5L0iDt-&$PQ8p<3EPyv
z-G<zWdT-xl!)}>u?a=JlW5ZsVVC{e%zuB<QhNm_>vthpt2W+@!!+jg_W;PwP;SU>5
zvZ_Ni9F`f0e3W{EdW?G9hTjRDd+OI+M>6VXC|OR~a6zVb8%{G<oHK;8Hk?z=d6^l;
z>+zRl@~3%+dc}qtD&{KTnhn<p9}d#ja+7>Z#oQ*;`A?tX?vhs)$k?}d!#kXKAK36v
zMgB?n%O<BSeL9upG2w3;o+#&|Yv$)R{3CO+9og-8VMD=;7FpgAUfS?4;XmptmHXO;
zH{`d<$^G0cr83y{;u-D8L=etwM;3B|a<UR;<}|O|lG5~qIa{@cdrz2i+L6nS8g|sQ
z;{!W#+fm+*3U=hNBd;AF+L7Vclzeu5FN#p}Qzcn|P|%J-$|-C|k!A0XOHrD|sKu!z
zs3q+%@HwJVOqQm8M3p+r*ilw-IlFv!r}w~$cJyszs%}Sv%;rjDNmeFQv7;*CW93(q
z`pLCk8YL`I)n>HAL^dnOLP)YBSvg5aF+Rvp%Z?Uyw6vo({W^BkCDgN{p&eE`QdE3>
zLIY|lbx!4spQzj>c6_S1ksY6r8!M-8i=?KCn-QAZ@wsw_UNyC{<Ir@2&5mzp7+TYB
zW5*YSFR5Qq+fomHZfr-8=4wyqU`I#7Sik;Ao81lvt8!BPRF@rYf~>-0hgY%Bj;{BO
zV#*Sr8Kj2n2osi6%pqA(J7RX6vg5QJaXZrNm}19NJ386X*^U8r478(*9aq~~TIWs?
z?aJ-xW=D5BzP6)>9458RJ?-eFxLAAr(@JkU`p~I2LLYAZRBnGezENDGu|7x#*)dM~
zu-7!0{t)U=JBHaYoIHv;f-3PN?O2?u_bXXO(;Q>RSe09Jy6%sc-J~-?`4b6~?3hgG
zR8+qvnP$gyJ9f)-C$rpT^9(z_vtzy;GZ`~Wm7PtPW5-;=JZh&l`bb$|$3i=Pv|}~R
zMRqJBd{32t#da(qFQxwf??9I``2%%@9V-c|s8UKENLxeRV8_pdwbY-e>!|Cg>Cd@s
zv}3a!Tg0I$HEgou7sbEY(V?*ZK|_|UcI;68Ho|s0Ht}IO$=zwkE}Aok>wC9XhCnUj
z5jwxgVY+PIM-|vlI6yrpU7c`P<yJgzIBLhxCx&BGf#Y`kPCh~XgL+csp4^{u#*VXg
zlyRV}1LtJwu;Zm2|JreZYp<*&UMF0nUZP&M;|k#_RW|sV^vo6dmfx`BrX9EF|7FJ`
zJ8s)?hsnFt2X@>e+^62)J=TY0DgGzHdRwpRG5MKYKI`eT=o9Kw>Z@XUfGp3M{723L
zghSPI|35ok$vo^pUI#p@Q(xPW*?}w$ys_)aw^V_5GDR~WBQ+CM{GBPO2@ZXYpk}2?
zGMfY073Xl^S?K*($VoF7^#f{d>gT01<#Qmv10@`I-C7@;1?U%Ypddk<zPoZ1CKsU=
zRemu-aR+ww)@LCpUXqo3=s+n#Y3fJR(8KH!P|kt!4j3Hz!=DREnkqQ(>mWly7E?tB
zBq>WJ2P%`RD5omnV`?=AI<7QGSo^%D^Vf_<2TTrh^P;;KW(O<|9B|>F3rP+nJK%RB
z;6x1vYC5ppfgKLia-g;YT^#7@Kph9_I?%|0&m5?7GqIinDGpeN>bC-~pE1?vt~H>h
zs{L&!0pw4ppHde&^{b=C4m5GVL8qw$a{qUA^Q6`eG^5j;Dq)`!S~$>>(2CmNxc(`)
z4fzWPzI321SxmbFUy<86(4NqNYNK{^$cyFmUrbz9cjVs;&gPU?Ksb;z-sE;5<Um+D
z43pw`2|j5VLVy}nx#>3zBdoa-Rij27h!JE(aR<`KOZbe0IGts$SL!X$&4KO?%yZy7
z2flWohXaEh7~()r2YNZ+Et)E~EhMZriw~goaiFiNxgViF^&6?gsE?6>Ob(((WBTbp
zmNJKvhB`3Jf#LKgIxvYa!hw+vjB;Q!lM*?OFortTA-~ttw{tv`->R4iQmUB#voBdD
z)12wR6gh(OGL0zD0xEJkVTN>`%DO*`$=ND*4q>hX_wMOynJ?W{mO}}BPbVyN;Lrc1
zI98cfJFtjh-#f6_fhDT!4}_%-EF&ye{^M^GR*+XxS5bddxu2w%){xga@RI}U(tVY?
z-hmC|pQ#%isCHU!zyrJWseY3KzsS&I)@BE`61Gq!xAcmXZHm`MlXl7gcc6e11)bRK
zz#a!4${sne*MZ+0xahzonLS1(?Q`HHOYNr~aNr=}kORk5ZHEa*s7K`>roBI=#~t`x
z#hf7gA!GJy{kSX~k#x!d(bEo`Aqbx(oO9qj;ezrjZ!tbvV%T}fdYP46ap0;0*T}c2
z*QrwN4Z=<8EeD#bU+~?bbC-J0f%}99R4FyaZv4xEM-ITL|2DIEee+`nGC8s9u<>sP
zo-pjG11}x;m;B6u=c?>K4!j_be57CV{HOf44!lzQTIPRp##Zmo9q*XT;6z5JKHINg
z+00y{tTc-g3FNHG$>v0M#W@K6Li*&K(}`THLHGkgZYS~(@+v={6ZsX_&XHWmiNa2N
z=0syBia1f!i6keIofxn!u^7Y3I8mHQaY{H*lKdgH6ty(<BdWyo9A_!(L^&tQvv?J1
z1+~VCgi6%PPK@fOw^CInKBiO62_wNkm8|McBr0wgscBMdCRm(sexQHxRl|u%Z;a)K
zC)KB4lUj>fn_9<-x&#TX=R}I)ybDr_<+e0%LNwKhh6G`&6Q3yl)QLul&9972oM`Gq
z<{2iR6V04x?nDPCetMJmxvKLECt8qOQd=p%HK7gl#mfv|D!;80Uny?qM0;|X1A5=+
z=!DG)I~|XTamZeiUCMD2&Suq%c*#G%&G39{V#Q;Ipc5e{t~zneiLet9Cl))g#0kxb
zs1u!>=<LMo3D%esaVOH8nD;bs)76v(UF)@5r}wC(&64Cq+{KBZP7HHm<Zs5VPIPmk
zJJ<5H6MdZMOYY%BPeLzhZ)#`tS+buK1L;Ve{hjzm@c_bP{w#5j6N8x?LS5QIpErg}
z3wKR2bWNJ!#0dH$rP~ljJ2BpgZ=D#!<XGxBYMbKkzi*tt<YXr%5~RXOPMqcwSyP;t
z>clkVPj}+sFZ!%rh`&*t>BKB%&30lwVGeb!il0aLPP(q?{ngh3Cl;#QMNWKAZg)Z7
zlBG^8b7Gwn>z(pFBz|zpP3`PIInnP=;|eFP7c$B-$tzXaRZje<cr{@SbuIO1i)``~
z^!ZEH4Nm;*#Qwx=XPww6SuzjE)a}G3CthB%ZfEc>WJ&%?*zCj><!p6go8nx<^e5SN
zII)wZgil?|zQ>8ZO#V*&je3Z>kGh|Fz=?x|i27yIVJD8zk$R32jyZ8$Ir2RA3GyFK
zoOB}nmxlTp<+#v4LmlJRkA*Dfm^|;q1%fyi374F>Ot?awURsa8?!*lzTD#E3g_};?
za^eFQa=UQbi91esZkgXW_21OUW5aiyxaY)umi?RhfcnshKb`oCEEV2&XMd#lu@ip&
zq~Zykr%pU0Ja^(>!apkVg*2?<ug>e^=szc3(Rr=>Mc4I->#Y;-oXFt92aQb`UC2fd
z&P2%ULKZ@T^0T_|=9NVPvMVPC0WRbu<Wm0Qc@6Wpkk<u+3)Nl7^W2ipg<>xK{F0w4
zP=HX-g+j_HOeo?)QRQT>WiIYQ2^UJb@FC4gE|gNa<y<ID{)k$JT2|#6b{fi)D=4R;
z3*Y?l{;XG-W)&Bz5<XTj)m->vkKQ<mF6`K!RMUl8%ra6<R5R5gp8^OHoa{mk#XHCA
zpK)rtkm^E1nsumkU8qM$q1LB1pi2D4mli9z8TAwDr_@F+eC9%9auaHuQ~I6OreuLu
zmGlwRoXO8!XhCR6ZKYz4G)?-#g)d$B-i5_3`G*dC<-!mbhPu$sh4u{l+Jz1-bR>sd
zuo2uYcnEf?gX(m_MUeHrDwW+!4pMzozse1`@QTmNrQd}KyAW|fV{V!Yod{8Cj2f4C
z-jnLgWH)LTYFBD~-t3e0c4zXpUI{&1=t=J7LVrSUY9FdZ_9gUl;W_UvedEFa`4Cs(
z{TLs}+(FdA)RwVqNADYkxzP8FdAbY3T^QlQNEb#icajUE2~zWT7simsQpZtUys!5y
zc>+};C(8J$tM~uO%9-NARPr?Cq%}>LL7wTtEW&K+eCiw*<`U*nzoSZp7f$Qlb%6^D
zm9t2uAbv}{#D%3UoIYs$g;~p7i1jwEabdX&Gp;56KwUwV<VqJ-k$+UqYUwad%#yX%
zg`Zf%I_d`MdKa$qsluO`lx^6U4%AK5tGhD(>cVE1+%h(9p|jhCtxRsCioab38hIym
zm-5#(uDypv_ELYN?xV`O_Pa2Czdn`^xo}uUq6f(y9C6{O3-jGr;Knf*j=NCUjUsOR
z?!pNdUbyg5Mz;$mU630_k6bt<jpM>y7Z%C8eqA{0!Zq?awU#S{^VAE}i!NLuT&Btf
zRQ{iSFX^gFe$lCK&vn)y72c4u0Qr`3Zo6<tvDVWfG546f@4^G+KXl<w@?X^S_%?k_
zkGZ<PsZU&ZN_eKW;W^<S>EXNeZMc`){I3hS-1xwa{{$8rUb*m^F>k1u-FQoQN6p~Y
zduB#zCaNUYjxuH;C%BQ7kd2zdjqK?$ymt?B&U8mEU@lw#otu)|jbv1xl-HQY4N2yu
z=A-7Pidn#og5*NV`L4LBs2j!H2)Ge+qqrL-+%UOecB7;lA958{+$cq;KrOA-`;i-E
z$YqsNj!@o>(&g&N?o?#5lFF@2xLCWPWK|`9>_#<}YjC4FIgx5qexWMXTlI_<HyXH+
zN;66J)QuYCn$)^()FRZT)}dA|^8T8zo*OB2>QiOye;3Zw&<(2_U%Jtj<|ovq)K966
zsGm_AQ=3TeRQ=>GOEWi`yYaajEtn-vYd2bwTPde*e^VRs7s?r$NB?5yD<<7;v?H{4
zqXVI%8+JDwWSbinj&vuJE^45c-qU*2egFB|L(@z3x#1^Bz<*UUhTI6d(c6taZtUG{
zh`7<kjqcM;!kQaVn!+(c+>JCsCu(PvYs;#CtI(Czc9Y_&{;vr=s6E~2MbI?8W%^1-
zT51^U#yFb&-01JdH*O4YV<4Ro)IrptZVV<!!6EMVZ^9HF=EiXP$<OsqizCUSsH0W<
z7&nZUt&%%lIWyh(){O~FPIO}`VG?z+ikad@`n&9;;53@k-Izhx)>*%*pQR#ayD>-c
zTsP*Czf;a?hjF1Bi)65SklTar-B|3#QJDbUSmMS~H-2_wqZ`ZIs65c{a-4BB3ofVr
z;KmA7&q_B|k$<EP-mV{CS=P9*md;Nqa-AFN6>o6k1V4jJm#6jI*yhG|H#RZ%7wWGn
zax-BIb*mc_59;;raAT(%zp0pAZtPLKn{bL9Z?7B2`3s|cZtQpC0J9FN$n=NX4>5Vz
zjU$BC&-CMUTqb`v9=q|kY^NK4xN(oUC*3$jxa!7f!Ud`nIpfAz@;T~x>S%7Q<X&X*
z67{khR|w)?JDTm98`qh<;l^FUP3kS`ZR#DW#9!&FchOgc^l9Nf%?H$n)IX_zx$%fl
zd8j_hR`oSJapRpE89aFE#xrI;r~XI%hx&s0QYKZx_Yd@T(AUM}Yd78y#Cb~y^2JaY
zJ^Cpin+KT)nW<T*;wKQYdhq3n_v1Y~og5y3kdvB=s;_HELLLwDdQjbiL=W<Lkl%wU
z9(>U=p@0VkJt*TrG0jql@g-EL!h|9o6eSc>esK@xHF>|@k{*1h{8EI{9(+U?HCT@+
z%bLqk%Tr}V6+Ea&u0*Y@{95Jpqfpg@k6A-CRkOi^UHo>)=z+-tvj-Lrj;84s_Akrn
zni$u$?k(f(orW47)bwDl2fukx%Y)h;4Dn#72X#EC>p^D^x_D5}gA@<KtiQeo4LoS+
zK`Rdi^)jS-(3l|H&;u*^6XksBK_l{K%9-)PD3MJ(XiBG<@|%0`Ik|;$Ourdgd(g%M
zC)fK0wFC7_584vG@?e2SzdO*5NrCo+XZ<sFRF2I9yJCmzPL207gUbWA2Oeg5JqQqd
zR6lhpBZK4+wGDr3Bhzxk1C36U8l%eE;~u1uJ5kf$S3Gu0!>-Z?8YJ|g*^S!WgRcov
zst2K`2fdWjn-Kmrp|1yL>*!Z#{pj@f;2XjK6**9vi#%94+txK4=D~0erg|{VgApE#
z^kB8mGKv9x=IgcXJ)W|vsc|%&G1RdhjPqbT`CIBF4<-;MQWsr#-)@tcoZ`W|RNa~G
z(eFO5@L;6}Gd!5d+*uyXC(Ncw*c`%KX$Qi0%3t3;`vUSp4;IP%PhP5W7kjXTT$lG0
zq@HCSET{8>ius_UWt9g5|JSf#2g?S+kJQy3tRbwW{zR3qbsnr&T>pakXAd??RUT|&
zh1)&&h48DYKT;t3X2n|wTRqsOoEAKF?qG5!br*Fvb&m(@3hQHSp9lLrDCb3aFAjKc
z(1QmaJoMm@2eucP&v>wPg5j`y1YoJ79-JZ^qe}7Pgx@_lp`1TFIH_2E40T%ZXQMKm
z_28Tb=UL}953YM~fh?=I=)on$mp!;bzN(xr=j$`=4OVr}gPW?(TZG%xJ09Fs{^XU0
z`{a$s^`7vj2Y-3cudp$@7mqx6?7^MK#tdG4X8zlQmyCR(%0Bhr8Tq+#{_)_2VvVi(
zuLu9pdF8=t5B3=Kt}DwM58kTCcOLmgkKV$vWaPRsQ8Rmyg^)naO3g-<$Yw7MIlO=u
zIla<*QC#^S5DIyb+lxHpywrl!d|u=y6rf5y&vxlEaP20kg_To;P}GZJ1Yh#|nZE>+
zCB68NP|AzaUVKEB8p?Q)zHMcdv%8(8f)^FN=-@?1FDiLa*^6W^YIw2of2Jy4{JPm>
z2-U2r;y)%-^TOaobuSW`G*gW##^i;st=?7^I!VfJy2o78i&|bxoNj94MQtzYc+s4>
zb-k$Pg;hnScu}9+t-HQoq79f#^`ar+tVQn$pLp@97mesNp^Et#p|Ka~Z+#c1DV=6s
z+&!&dNPMm$TX@lu+)6pE3G)8@FTDCl`I6d}D#@=1?Wpa&IQV;lm^Lr$Uc^|?za-_w
zzljbn9Htbf7cMW{s^%cUL-k7gq{mYORN1htWA$&SLQICeh$vqpM7{WLydE(4Gi%(7
zG%q^Q@9aev!mRE3cQsvAsg3m$zV@Pr7f1X!>PJs6dU-L^hgm-K_M(p$|4M~k^!1{j
z7kj<<&5QnCeB;Fo3G-rr7X!VR;MH%Q{uwY0Vznc^7)%(V)-seZj5?e;f;!ikeH39d
zbqrNDZ>$&N$m5mstsI4{diS2_g=L#z68*{4DJo{F7t<6^_aX<MR+8Uh&+_62FIIRl
z+lx6~%w<ece&Zr9=BfDayqHg3KwU`f>(D<teD8$>%d(iTgu2v=WrXD__oY1c>BTB9
zZaqxg%Hls#|L4VO!Wu8udhru^19e?`fV}^Q@bGr_pS?)9Vc5vzl6LR!M{M%q7Zv#{
zVY3%o2qO;YJzpLm+~&o0F9dc_1$KI|OYv?m_9*WDmwBHT`@MMR#h)_&OBeOxx)(QC
z;UVc!D^qH>upE{yLFcF!e|T}yi(^d6>W+KyyW$gGEa!Wl#6RW5IWNw8ahkbjsAs8<
z)w^*nFnO7J(ThujN_==sYPiDWRWGg)#2NS2a8tT*-ISD-iFr?$Zz=z_7k9{asrQtB
z--`!||EZnwmrVX%Jof6(c#PsSo_yBOWV=C<e|zzSzVK5oo{^s`=O4lg>PwmTR_SjE
zc;&@wFB<#M#D_Oty!E2259NGl@Qv}E%-%la@*#td-~UiE`H-2A#fPkf1gh+pb#Y2I
za&~GCDpYRhVv5|>|G<Y5baMNUhme<A$cKC?GC!e!4+RPGNQqQlSmhS+p(wc+wYc)<
zTr`wa{Gkt}6qoklBgJKWDEyOtHCx_?3N#PIGgc~7TV7vK(T7St`4OnTr-?oo300_7
zsUQ1LjUWLAAF3;U(!yf$!R$jlA5v&qe5j>zlL*N^)F9MU{(!57+T=Ray2@|IN8Rc(
z`3bdw52=KPR4Y}sq4R0;r{qS;`OJqTehzBtLo*+``|!07&3*XX2d@u4A6ob@{4f1S
z9AEj+Qk81uLu<uteE5R=CAF>cGgfZcj@+Kw!H14M*vKvwWB0*9b}C1H_AcvkGwJck
z2-447ejlDSNQu!5`0(GcL|KA_kPl(yM10W5QRR#&Z;}Uu;y(S|0%<;UA_#Z(p$oYy
zwVU!~WcBc&rw;>t8015%<B7JG7I`5<FF6Zv?R}_ysj^}HeCV(E8^Qo-u6+8-83y}s
zYOHC54`tTs)AbM^hN{S6gyGbS+fzpRFp4~yI>m=EK8z)gqfYc;JmFjF1gg||WPa)-
z#gl#b|D!zBhiS^6?!ydn`hzsHeVF4zZa?z)G1rHAKAiL6ybs^`FyDv6J{<93fe#CP
z*zLm}9~QCfY9H44@VyU<eaJrAw8V$y1mUHGWj-X#Ns**1KlreM=1LW_%7-5nAH8p0
zo4##6Y$E(bUFXAk!iMx*`3V?dql7Jge}(yr51VQJN|jr>(g<5r{8k^f`LNxG9dve4
zcdFbvkMyIEsZqAQbmB+!YlGiZ?mohP>H!}P5)M(9E!TVCQ6G-^uq=P|vpyWUWmrGK
za@+@bf3IZy&ae~IKd2|=&=XEm&rl^YX^VA1O;eYI+82Dd=))Z!?)q@ahq48$FCU$7
zS&qe1{heS}RQy#Rt|`7wxIw+?!!5#Xl`HR+m1^(FCi(D`=6xR?5FV<SKYjR1@gu@x
zAO2R(+AY>+K0KEhX|5rwU!TzakvW|3f-x_t|H{bn;gu@&#)sGBw|qX~E%}|w{Ww8y
zpNxKFVm+Cu;$$HtQ1{-=Q1?}0Hb1iaAs|Z*KcG0LAGydMC`Y<kUO)2r5%ELwBflR7
z{HX6o13wD-QOJ*qepK=!ZIZFDAEgMwMf@nLxR@Ws6_+5C^y5S2$n*K76@TPM8FE=_
zIcj-o1*+8S4OvFORN0S2KaAX?D%7fed`yu2twu0VtNZcYJ-tVn{HU@uu@+4MGm{o-
z5;fV68U)F$>BpFXMgb{U+mAXdRhL?innJD4I|8YGH1wmLAMO3H`q80*@mW@5OFuqg
z%%^@dB7EjYGlJCFn9zjUR2o+O$3$~FpHo}-@s7WBZRLkl*qYjg`UO?YF9~h^_)0mS
z81x$@9sDR!)#PP89sRKRVJAEMa1u`B(%ZyEc2hmnP{a41)O<|(sR3%xj}So$hW*Gf
zTK`Tm>PO6vIWoEV5tn1+$520pF{~4{zaO3b=tAyF?M3b8M|Wu%ej)!gogUPle(Zmt
zpOShr*@xPfDrP@Fel4zVxh&uKF+lkP{TM_ZOdX>9clk2P-%btpW1Ju3{TM-iq{<yd
z7%j(IIb#V&?HRu%Or=gxxfA`Eq<Au6iXTVRceB&{m`-yBb*74(<;QHr(JQ8T(jooW
z?#B*4=KHa9Y06SRMlLWdV9Y`lxrp$+ABzb~l%L~V#$|pi_u~gYR?yr)T}fR-T}Azo
zy4sKbtokus%j8egb=37#$y!j>{Iee$C8?avgiX|6q|KGzak^=X;;n>jeq_w5pMQ7y
zvCEIc4~=r;Qj)v<_|1=Bs_S=r_V}?^l^T^d$3FU!wcn2e<b%{h)Wa%w-vZMyKaTs+
zEr{+x{O-pIKc)pRJ%B&_I4R>jfNBAp^5e8@LjaiqIK#Ev@Z+W*XJwk2pnuFi=f`>a
z7pNDhm;AU)xZ=k(Kd$?6l}U*=>@k;8pDcRj%zTUfpML!1$8GW*6?vC%&yV|r2h@iu
zw-nzE`^b-Sx6S|g@z{^Qne~MFj~`D7&#2F-`AfXN!}!9Fmvm%%{*``SPrtf;#j2#X
z*Mv8Iyd}J&W(epjk|lgFHFE%20w@$f;eh_K--LjEe)%APtW1iNjgUQn9LfP9X8^gB
zbEJnMHw#MHJOSh-=cDGQ7N8cSN=)gZ<|0yjuenqJrD+xopctXJiYXC5N%Du(yz0~0
zM@&|tmI<INLFz0=C?7xtLPh0IoT<+Ml>?|kr)mJd*XOlCeUl-8>H)L~;EMnf128fm
zH2@Q#7S&9(P?M-qTQZ>rwI(&!KN)JP+&YB10n{U;Q0oWKAb=;Q^%-g6C|w%{U}e@P
z0enUf^HV~j0NkAJ8VArMfTlECsF-E}G$(&fJu+FZt)<FsMQBZJfgE23&^CZx0rU=F
z$=<}T0&oW4Vs1NXduj)2N2-l#55Pf?%H^*C+yQt3hy<Vo;H4j?`c#ac5TFLBp#bEM
z7^Ju?_X}i-s>rT{7&RV18lh7FodY;hOP_zbsK~8+)}>nj-RXR-{2l@HBzOEpzy9nK
z&|ld)K7bXMt$hRN$E^MV3=UvO0N<!m0|FRG9;BQRhcXW(k5tYu!f@({0KVoEM6!xe
z0gMh{4E?bIj8pNlUy|$nC1GIM)NccrAgd^wI*}?cDS*j}rvxxn@wJsHGXj_yz~cb^
z4q#RQvjg}!fQ_;v0n82H&<ew<09NmR-+J=`_%49?T<L-U76tHq01MSNT;H5=F?qRi
zmJpUwmjz&85BWjmt{|)op#B2A=lsak$r@J&utxD(!cPILQ_lJTHYm<J(eS?jHU+Rh
zfCB+sS)2Gv06PQNlA0p?YXF;RZlQ{^HGpm8?bIF0Kl;G1iyO0BZQCBgUg~cF>?2Iz
zANt6P7Y+t+Hh^=o837z-))DH70FDx5ca9N`%P?0?nXL(bkWVV-luTUYGs@XDN$;iS
z1Gp2w-2g5GaFJP;WK#pU8o*^H2YcQhk!u0mRAsLdZcz8s*FX5&BHvDTTImz=J@NzU
zeHlu3^(&%>ObYxNz+dD?)b#y*62Q{{J`JK#5YGa5E)!-D9|ZAF052r|N>Y}fK3Bh#
z(;4Akmi>?VDuCAkydg`>y8zxQE?Ycf2F7QkO77Z>`k6N~lS$!h2|>MbS+WL^jhvmD
zg9>U+s>H~ziE{^$Cx|LRR1G38D=8Vohe6~EB0rM_f+(WaRgh39h{A-&$Mxnas&b1F
ziU(0bIliKGN|DPer*se>k;^EjY!KxXw=QO_ptxcXmB^K;|Nrlk9|w^_r&<t(AgTwE
z$Yc$wk!lITM3Buh2XUl~K2nmDlN`kSs=8B?POTtn6Y2y}myn)YPsJOm=-sA%5Dn<0
zD!*Y6)*wES<I8Wn)Ah3;8VAufh_8bBb8Ahc8FQFFXOX5sG*e}p6N=@`+=2lT(=v!w
z<kr+S)Gw%CQYA(^r(bck3&ItIn>Dnjb_k-Qs@X=c2jL(%m4Ad^PI`g}1res{rTT*K
z69OtS7{uz$diz9_lNN-gI7)~G5hr|~tVecIxt)XPqPVNXOwfDC*Fp3M!W@Dngq}h4
z3gUba7lP;=M4up*2C*!NzCrX0VnGnsURnAF@l6n8gBTaY0M<52)j2STK|u@-Vu*5v
z2QgIfupkbXe1By%g67B|(x0OqtzyOmQRdS7r!2+?F(HVF%=(tv#g=hW5R=Jsf|x>>
zL7hsSMx9Qr&L?|i2WJK`i;nPYg1v3VxyqSG_)dBqA^o+_3(1RA%=bYoR=gyLyF6IS
zgZLqcUxV1ptQA45lYZq(%Gu4bGKf_{2>eK0O_k)DAl8z9QqBOr<Z3-@*g*X`h>dDp
z{|jOh`4{E<y3@3Uyd#L6gss$VL2Oqs@|@4EAa={a%2xf4AokEdpmO&TexvTA?hj%{
zK<_69gE%C|h~{ysm`8#*N<O9>^GCeKWAX&GwmF-u>m=8Bih7!QCWy0yb5x0$`!?}n
z5SM}|8bYxUp6oJQ4&rtYccfSQELT|DRqC}Mt`lxhWlL@baf_TfO7BH?gOIlbJeNs3
zh<icYXVwGi;~*Xq{-jFqUqL(~x2dJ?sVsjp`6P&^D&`qs&4p|)2niu%4dG=F{|50N
zoww9i)Ynw0=M5qI*BRdhks+j?H8N5&Q!`Pk{+2NdL2@6YC1fLi5JGN3_7HLqK+Q?b
zMV0tLP4&yLJRuZNPF_O35b_fS_Iv+bLBS9T(J4$VLY1<kdmFPB$Wc6ma&#(Xs$POn
zlKLUFR0yRBA5o=LnGnh<9?9Q6lxMO+2o*!96hdVt4b&<svT6t)ldCD`O;=NO#fc#p
z$tLA^&ZQ)UkQ_qq5c-5rBZQhEG!NnP5Nd@`JA`Jk8Ck2>31M^5I##Mc-4N<2P9fB%
zHlU`4&`{;B{>UuxpD_6;wNVJ4sochdCLuIc&ck+k-@X>D*&>9NA-K7A`R!h-5ZZ_2
zMee57Aq-iXB1;>>7a@G9oVFo+MQ*2@mFo;rq(cZDS=L6iQyo+%)kT%a8N-u~C7L`T
zcth}o;AbmELeK~SYA}S5YQ1m>y@u#VKdPKggcvm*LK>m+r+Q515W0lWmCn~8^a!CF
zxjR(?0`<&2759>TXU+Ng>-T{AhR`pBLm?avp??V9gs?h<H6aWLVPFVTLYT^egF+Y@
z!mtnqGdYCXir-}oCy$|yppK-DqRJ{phcJTglNlSrIGW=_n5c5UB}@n*{nz~xKZ(xd
z5VCaB_ikDU(?eJo!Xo-JLYS+{&J1Ce;@N~b;_w_Q1?SQEE`<3iW<d!1=IOJ<_saPp
zgvI0~)TPvA)a6tOmdE==S1`Gfx{CT^2ygc3wXF@|CpvpVSVs_ZYY6K@*bu_c%K3$`
zQB*mbq$lLjYxtGUX60`QVOojzv)MM9+o?OKJ44t-*iDt<ZTA@Wl7Caqz7X~+K0r7~
zEoV(QB7HK1qI_iZSO~{MxD~?f5PlEg1Y^#J@P{gUDuk2d%t`O(qSH*C3E?c^95wx2
z3Kv4S$mFFEt`TJ0E{AZ1e3klVs$S1^m3t$En~E=fp7Bn4jF@eWcggpt_o)x4Qv9Ke
z*`j*;{1w8Z5FRuBIrVSq6Y5jyGpbbhW}4w2@(b!q>c1*?dW!M29MBMEhA}IQw;{Zf
zwS@I)KSLN9!>Ag@$6;imQz(qWVPp;?OBipSBqfBABMgMG_Zw4IYPK+Tw>D-EV|>(j
za<egK7`eh2+dese7~j`U{veDzVdM=XH<LfyO-gQ^w0yUz!s~4Lq~?N_oL8)(5?>&U
zf-Jacvr&={=9!9wQ8J7V!zdbtBxNZ^C{8Uw-Rw1%3Zt}a_BdmuFg^++{}ofVps_+2
zWx^;MMmaiSmJg%y6|2CxD@M^;drTF>2zWCI$WobHC5)*fb*EYw2JU{dFsg@<7)DAM
z^}{f7murMkGYnH0<}fU57HOHJFur-6O`1g-A(`gZ$Emd#FJ>J&wZqu<MvtjWzaCAA
zA6wNTH8cpL#{UeT(M%1aVHnmhK4G#EoA*-{FTvf08CG91KAdK39LD3##wKAjB?w<_
zZLD;_*gTBS!)Osk+v$duVYCjTO&G11oV78Nm|ukPWf)&cACP1i?#D)1gnL#u3$$Zo
zvo=W**&&RMVc5d3htVyJ?qRfFnCJ+j$NJP@7|t+Ublg;*bbyN)JY+9bl751e3WVXg
zkt7fbBOFE~3@wbbFgmfeXc+M@V&rt)*F1H2LUvh^ES<yX$}Hh7VKi8nC?H|79N1<2
zI*egq43~f~dWO-9X1_4{htZqdhuW9g{blO>SLScR7!bxFI#R>HFl3P|VbQ_LA3_)!
z#w})z2xDXzlekBtsN>}55JrbFhA@^YyD9rF`YpG10?n-cOcM!>nx@JwOb%lTlT*W(
z9>xr|-ZaL`zNZ&YuV;1`bHcbOn-Rv`Fy={L3S)a1--R(hjKyIrk?!%OapSh6>!*wh
z!Vq0ZT}1spj6**sin%n5WnughmcOhuE)U~}Fn$VST^K9ESShuAVOm376~>QYtPbPi
z%j~j<|8_u<EW&GL(io5=PP)HdMhc5;2;*nQrw4Cj4HCJDxl)_N{~E@VYDuzeCTyW@
z4P!xqS<D?_?38g`*?c;TT{5wRu}4Nq7`_e05#6(In{OyJ!t`4h`@%RH#<4K=hjDMA
z^-vhKk0l)l%U`ZEJShGAbYiBeDHRu457R#)gGfu1MPiPJk#DWxgbeds=HI0a3s}+;
za(pqt_(vEg!#E{JwtM!1gAI~<ue@3GOc-Zn_`f!u<KVg+M)8>SJoSR?4&f42{Hi+|
zUJ2u>Y=$&=7&kba2X-*Zpq8c7+iaqeydB1!FkXc5GK@>340okwIf5HZ_riGi&~Wdx
z;lAwDX~P5R!!Z6Ni1Sw%j}%K}yK9EO!w`K!eM)^seICX?gkvV71pFJue_>>c=rjB)
z`krjn^LtFs-KN*lXXI#x@h%KWW{MzlM28I2j8xgkEClhh5)vZ%mP=9=;p{YXP@y7o
z5^_-`CQk%;BiJ3oo*42)kUxUXQFMu-Km-LN$f+ThhC&e(j$n8MBO)jgLD2{rN6;jK
zVi6RNz!E`H1SKLU89{{zDn{^O1f?P<E4Ae?m*(D0ZEP$<_$Y$9zZ=SRGBz8N?A>BK
zouPKQ2+A|Ep#0RXhout3sz&f}1eGIrvE8twyQPY3OiznIwFnFmRGXe`j-Yx3vmfZ6
zwh~$7gQ?k!5r~%TZ!}54Q;AbnCSL2Me}R)6K@Hi$&4y1Ss2M@62<k`BAcEQv)M43_
z2wI#o4}7REbt9-3K{_W~F=XszELb-sHG+l_{oRb#2-*)$IPA4deV2G<r@37h%O_IX
zz-%Ao%GfA^&sf|2j{5g<KiAFPG=gRkw2k1a2%1OmGP}7&1T7=@JfgqNxL!e{XsZZX
zM{q1|X%j*652mL(P1hHs)M{gqms@@j!IyFnzti`z)ZB!2vg!yT5oi(o{n*qY0(S%+
z*{TR^5!fSeL@+v@6y9md(97hEU~5mKD}ujPB|bl760UpI?2X{yPJ=H3KVidt!;a_X
zKm_3kx?HvdBM3zx&XpVuMVGWm5Jw;yK`eqk5%gs;9ziGRB;+(|<Z4ov2)ahlBZ8h0
zbYpE_Q>A$K2sS5}q<%f@vZYr9y(363m~Jk6QBT5T=@-GE2nI*cKZ0*q^8h&zsvZfG
zvJxhxWZQ;BAdW0U3Bw{t-|UeQjEdlJ1V^MbA{Z0Fx(L=sFgAj55quZH{0PRgo(U05
zBz#M4e8nn#tjlD>B-xRJ`cnauBbdU2J2iso>rB(A)2TBem>I#WbZ4DuHo??0Ny6qt
zFjx8WBJf?Yin$<yg|eLyERSFjJBif)y=?Q^#Jl$miz8SP!O{rUTr_4+)2}K84md48
zM6g0kIh2cyHCz^Xjpxb;Rz;Anwz1!q#2;nE^*2g`td>EMHCbRSBY&cvoM(`pupxq<
zW$z-`8No(bZv@-8_H7@S27hJh`6zKy1iwgkDsK5z4pRhMBG`MyT<ei#b;KgDHG*k7
z4FcO)%9XRatYw!>7fkM_?up=^MoD`kcrw-SxL=|K{Kod&M{Vn~9FWe&$V2IsR7&|O
zo4$`nrQ1hvHG*pqoY`qQ9>K{7PRZ;s+3<S=CnETRoGo+h)LQ0gPRr>C<Zbg8BDffV
zYg*!&2+nd9=ctR@B%GJgaWzT0L{e^jJ1<4hy@>wK%*!%+WVBqN=DM16J%SrD7$f*M
zf}0WCir`@ce@1Xyy6zS8;l`==BDf<Xw3G2JRbb*W!&kQw??><;qQ6C1X0Y^kDgPD0
zV`;qz9&y*?Te!{(6J?-1k@-jV?oacnXXdBOdM5L&toN!}mVac<teYYbA8U|C`!9l5
z5oFPjpy71{Zz9N~;h&zCY~u`XBgmj3H~$d%9qS2gH)PcG^TqB#@84CGnaK@<Gt|yd
zJ*$R(n-ifSn}+Nf#CcLZle~^ThX(lp)SQy_WCx|Id?0md_)f!o4S6)=)ezPY(U4C=
zehr^#Xsn@thJqSQ8q6~PYbdPYLk*=g`IWk%h$in(ODe9RsHWd>=r}B;m<G|_LsCj;
zu#QM6Nxj!2DSxk|lOt0~YpAH9l7{i8jUQ<!qoJ&Za!i)jP(ef0*JjBYbj3R7inVUe
zl#lBqRn}0aMRHXQGv1g4sxWzEcFM;Zs%h}#%Wlx{#}%uQ0o64m5;k42N_@@pmcOo8
zEgDk0r__{9)lhy$N)k0$lb7Tp`&Da&t5z{<OSKxVy{nh1p)Nr<MMJ%G^Qu*nveehm
zK;=5GS{usVG5HDgQw_Zt*@(%hSFIA$ga^g0!J(n4hGrU?YxrElmm1n?Xdx~6Bu8rv
ztu(ZhgSEGzz<(310_oa@$uE?7Wuo;f4IQMBHMG;vo<-JNwH~-?ZJ8lO94Tc}!7JX?
zb87gtoBqvSNP|m*Tf^{WseeyM@o4aB@M-W%Roznpa@@P6NTe)%vs;5S#TRq!8T}Nd
zaW5uln5ZF2j%kQ%NYl_s!#5fRXy~k=i-w*WdTHpYp__&tn%w?N$do6gyN0hd6n~mj
z`{RZO>n4}{B}w@1RqOduNxe1n(a>MR<i|<HCa08aW$G(km&q1SlPph@n*5O3EXkC8
zyJ?_?K^jJA7^z{f2FV(#VVH)Ka}7hJ5A;rz8ahl)87{5*G)dN5=kKJJmFkVsu>Wz=
zIO$^=Mr-IBut@G0#*C%*xsW8zu0X=K8g8yOReV!Vs+z=olpQa8K54RsDH^6~n5JQ#
zhRoNj)1{BG7tLjIriNJ>W|K=@v(~<5tvfhnjtshM)-Rcq0P&?@yhq9c4GU#-Yj~q!
zk%sRzoY8Pr!(t6fWThH5X;`XZnTB;5)@xX<VNEy7TG`Ec22)SV57IK-EGwuhHLN21
z$XQ}FRi=wI1R0(`X=r^aQI_6C&650~L$(bXe%7#2L#7PXW3eQ8@ATd~i2}b!Khbbp
zj^>7x%^J4IA?TbfVYz<AwN=Az4SO_f(@<rfVY`MM8g|OjA8U}az$cp%cabG2S4w*|
z{3av%JHs&zm%3ZzGReKuuunSPPQ!lc0SyNU;vCX&Sn&}JN6B;N86-;<sqJ?SC*;WT
zSe(>wN}8y<MK0$q<To$em8odAq|>rhGfmPm=QNzx@Tbf|8ZKzKsNuSX8?p@=F3Vt)
z8Fjg#b{+jT?iCHmoh?_X0`4^_lGW#A!!t8YH@Tv_8g6Nj&5-4`hCAdN+su-@r{O+h
z%B@Oxpy46;$qxM+xs`8>k2E~i@LU>S!`~X7$N(>I%2d_zlwr@PUjAp3#7hk?G`y6d
zD&4@Ue;e%WpY31949uk`<wXBV(@*zV3Z=f)@J?orD4Io)A&QJqREVNt6q%yP90j7t
z8P(U7C5r4({qj|cCq$7os$V0?k}V3kq)F!-Vumg07f89H$P-20C_aed#j5JLsRf?a
z6YkX4lrM@BQT#&AFP{RU5VIh)5VbJ12(>6x0*VoeM`gSuO0pzt_>fwPTAKP1wG6c^
zwH#GeS3Zh&d(8rsqNp5&A&Tlz{WMoa_R(jl7DZJi#rc@<Xs5YcH~o?_F$!Z8wW6pU
zg(-@GIn6Z~V2;8PmACy^lDKWf{xl~uX)jn^OsS`)e9XCQk;{h9JjOavG>Ag3>gz^P
zFA8x|qNq<O5wpnus#Hr&k$-qeWsHP1jKWI(g!(D95%n{w#59hg30Y3@l58Hu=TSJK
zaLU1oqGc5AqG&IxD`;#Lg$%|oqiD@7Z$tfpns&`9^MK^Gjp8eYwZE^A+zwH6jKaTJ
zK7*KSQP`tMSgK!BNzW--tM>Sy-sfFW$S>|aQFx<pM<FdB%kim(8qG8Mq6kD0jAG;~
zgP*(E_Fr>IOsgp^ih~Vmhogu@p+(Un)wH5PZP6$>MvYTT>@tYoNp@tiL1rhZylWKQ
zq}^g@5JUGUzLriKL#7ydMA0*fxlzoEq8ImTNEAb(=p99$DEi6~zhc~!vG#x{`bAOc
z6SFM+qxgnA>YDY=hD6C77=`GdC<YU5Z%%Bm(lU&-O{NZ~j*y*-VpJ5Pqxd$82~muR
zVr&%SqVh#3tVNPfFE*Z;X_fXFz016|MDkICx%d#n#3*J|NSY)=#-Hu}0z>;!$yv`D
zn{BpCVVzT>m=?u!iHTwkotaV0lJ>8bIy;Kx`whiLCpTYZ70rFpAf{-U%ZBfwm><Q@
zQEX(91yL-FViCFjnv|APGJPM#IwluKu_TJ6Q51S&kY!C2%M>ps{6Jk1#Y*L`BK#P|
zYURv(Y*?%KCqmXz`bm5}SFs_A+_&G~`~IKojxYIlX+{}+QT!Uk<|y_=u{Vk>QEZK3
zyG$1>b!Cy|*2=_fGDYO6K4-6GXA}ckT6RUTJBm8*%rmN(SFcMv{F5<pkv^b)i{e)1
z>IbC%M6r)7$^B9JiyVvmchw;o3sD@4;^H;y5owBR)}v9R9<lthC*|S=vn;!=Sw)Xa
zzy-7XCiFxUe?)OIic?WMh~i-sr=vI%#kDA|M{zcab5T59Z@m)5`6w<(sVFW*ae0UJ
z^)+j;>()stEtjK6x^8W8-CARbrPjwut&gT^*R5BjKU7Q>^F|amqqrBveK`shl5a(E
zhj5!(c%o5ES?)&h=18i*f*(`+S4ft6GM7vJGm5{W_&19G<bZ}#A4TzZ6i=cUcHR0|
zoa@#_<1J64cqZ)@#gr?CnlCK%UnV|}qS}=dS^kMa9D$e2mA}}Qm{(CmgQ;(#cuVuO
z%)JLvCF|UQ)ORxf$FSqNb@vXdB(KO`981g`LzWmS$517Pl@&AAJe`mbL)I9w#gILQ
zQZbZ{Ax8|J!}^ah@)1DI8AGlZJ|O3&=AmBgV3OdxF?4HOTOfZ71!5=|L!lUo#!xIK
z|Dk4@upy;z3`JtFze=oe#r*Rh1~H}n;xUwnp(JA@>)?LFhcUP<Cdo}tO60h^=8s|!
zkflrvWy$5J<&|F{hKl4$%8{z1{;Dxd`YDGcrk@c$j$z*%OEsz?hUzgS#*n$E!5G8t
zAqH~{CT5kpWstD;cM|XZ(NIby#gH6BjTkOoOspA0?HKCB<Ufq`q%48Ombx)KJ#R{3
zRrO-%S0SluMoW!phFx3C`E%DxjiI5mGdDnLv&PUihOe0Xg!*X=Yl_rv6vJmRG>)N3
z3{7MBJcbrAG>ajvVTx~PQu7$zUANv}lv;gBO1XskEn{dE!xu4p8AIzB%Kd6=L+x18
zocEL=AI##EykT8`+f?(k`K#0Bb}_V%As9o5YwQq%VTgWk4@T>CjKL-cB?d<f&KSHg
z_+pTzld>*35VEH?tRvbPJu%1;d@<K3DvLjcfGqd*X+eTzX*DxB9780AB{6)zGDV9a
z8pG%q#>C_dg?J2orDbGyV(1h@&lq~e&^d-K(r0ACkD>6+q^?r-SgQ2TFK$?e?69uy
zX!<&at=G*xV(5CqD*e3K4(rHcsYiRH%F{l*W5{qkb?FUrA8EZ&rqN3+{bTqhh9NNw
zm8M%%eSn-hIwcQ|VPFh{VwiZtT6M2EUpeb!qj62=WGON%h6R<9M#L~OhT$>vIiA`q
zn0nxVVZ>gu1W3)Jq-AcKb9GK08^gF5rp7QWhVe0c8^ekl)=6y12{Gh+X_**<#7o&c
zS5p4Ar|!F9ogBk$*=8ANH?6l*Ql`g%`YE$wm>t6mjz@`{8Pmsdm4m5sVwfu%6T?C|
z;&oEy#qgap#i7))H?4=RCe9~IvffSWq8M5pNc}#B#oUIcFD>?)*6@nd3;$V$@Xyni
za;uh6mrGOM%l3mrGMVRCYR{Y2RpcLISS{^F-YT1PQ$MM#jp3&l*2S<sh7B=nis2U-
zN-=0}Yi*Rs7@8k8G?{0RWWEI^(K-7Jzs9gRhApf|9I0gTt3-k0@<qbiTHEL!dt=xh
z!>sJpcf_zWhNF3sWZ4x%wT#sT_Qvp=^zBZ_&>8z;*e}OA4c*dkKsup}$~gAKaVUnv
zG9uz=5yug!A%;A0<c;H4498>mD~3lhYWf&{kKs}bmt!~)!yhq>ooqT8!<iV)#&AmZ
zXh8Dm7?v+Fi7za0E`|$qgwGS2wrY5hkpdESMJ6RVj?#s;CVCo~Hq}hNCWEM!={ofW
zRgyPjxFrpB)B4w1qa^RdaF<2y#qf|I#qSdyP*;pG{7J}{C5L1^j^S^ad*jF+#}k<Z
zJ~aLl!wZ>Gq)Y5Hdo$I3MtCk`GgEDGUP^D7W%y6}c{Q`Zzf6wlYkC#KYnpH5!YQuj
zzLkcJ;ZR;vhBz|DF?yR(OxY1pF*7qJOB@LViOEWk+^0E>IpP>|#E^>$YEJ6qG1<kJ
z<pU;jD>Gjl`QtFhVTq$a90lVj7f1Ox3dQxkkftjYN8vb%Fj<sZf?AAPoGM`wT$21@
z9O+5X(s6vmq;MHR**K(#Bx{Z}REVQm9ELcAD^e@PQ8|t(alJ9C#xcIM*?7%3_H^RM
zbc%jtsxsTqd89>lvwB?b5{Xn}T<<fcIOOP;-C>qak`zZu9GB)BlH;hs+?sLJA=IKi
zK9N+LWd-Weks9j7_0Hz&W2hfT0~Sw>qmitd+>mOG;}e2Z{wX0}E~9W`a&u}E*%CrC
zYWo3}{|{~%N2@sI#4$IH)^W6nLyIFC#}{#Y8Al)vIm&J0_$m%JkLj#hrgm|(kE25z
z!o$a8Uo*_mF%D5@95#X!vB%+%;g;9bwuni3i{!fEFx^WO(0dN6@=|?Ne;m?=k`-i9
zY6!&<=Gs5aWsI<_)Dw#%9>;(<2F8)bL(nab?s0S?ccylscBLK|W{?9X`gI(=;^-Ym
z5Bfdh_;9R2d^w;J&?k=m^o9Ep`o$p!SCZc_DPfWv6vyB=CdV-)jv=z0acrDrn84vM
zj68xmJdU5gu}H@l$)v=LB8;Yvp^lAX9AP|FV!kDOoXaR>C$fe~RLPo3m=VX!IHoad
zdK?ld2U>DxF?Tk7DVttObY2|a#j!cAU#`eS`208)$FW4lW+~%>I2OiHf3LBt!?-Ap
z@8jrJ&=UXGB*~?5EQ{l(IMzvTjN^wmevD&v94q2@eLvG(w{fNPicOg|9!siU%D5^n
z?=CY6i%RaAIM&K$97{^ul&Q<6OnV;HS}z?qj$dW&eN^jb$&!H<$1ig1Hf55s|6_3}
zYtNif96hFyF}<MFwnetElyPeu+X&m^*hvs`hwL&Vg?G`EQhVe0O~!8;3~AUG$No6(
z$MGPJ192RT<5V1{<NBTALvr9Y7>|<=$8m&klq$K$2yctl{ymQ4H<DyI!T3MoI7yJQ
zk8UKzT*fnTT#4gq9B1P=7ssn9hVyY;j6<@7FVH!g)pSY0<v0$<>q*u%nbZC--jVu`
zC0!@qh~s7)x5&4tXEr8Ej4T3o>D-G$veI)O^60;g<4qiY#_?AikK%Yt^JN@=%X~H4
zARXg5;fahaf|$<;(sN|_hw(2|xA~XJ|ERC1>0R-y)W6o4I}Lf#@Gg!FX~>wSpT%TJ
zAY`Iure>i^yyRw0L$)+zr;~%4GYv@7Ya9BTK>|c`G5JB7{L#EgoV;nsmxkhLD3ONz
zX(*6}qG|d>DoepM6iP#3ChN)MpQcZYGT(|e&Qx3GSeZ79(Uh2yY4|V=71K~D4W-gh
znx)F7>GShP<T9$boX6AaFGs(88Y&Q^TJbBVp-LL6rs3l>NTisuNPw&{{Q^L^dKwbb
z@M#(vrNNj6QyS`}=_AgZh7-LF`}$kzroobiq%<VcsYR8n8fmDh_~1;VIJN22Nke+_
zyG%wYo|1+y3)iVn6=;x#RK*Pm)--%VDErtb0iVg{rC}({&NMVhL(??0PeWO!QO;=1
z($G2$ZDcKD4b7?l$JBQ~Nl|=Xvn$B%B_|~(Neaz$&+d@J?f{CSm;e<46)}O6Lx<^E
za?UyDAfl)s0!j{&lqA7`qU0PUDFWZ^$8Wy#Kc~+<w_d%<uU=JG_w+pP!wW(vY45{}
zDNdLBitvsp$*VqeU^5G=`%ij(eU(na%T&rBf8B>SeCX`M$h@p~e^WMI&3KdC&gvrN
zl9;EnyZP{z4{!VMjt@Q`N?*{r`|z$0ANkNcFRO=0-WPn&hg<1dy=$(wE2&ibz=sb-
z-eZEoAeDPcl3s!z`}m7#N9dOz6#_m4MW1trIYfMjGD9D3`w;UX?!&h}eCLDigW<z?
zA13%<`e6AmT1GA5gYCm$ABNC!9;itl`uNaSc%EQypW_zlbkX{;lYJQI!yq63Hw0f#
zP&y1$KANWtY~dbKTU}*%=u24#R(q%q!+bcwwZ?~EYH7n+fw9^M;gjlW<XqQQzpjq*
zA@8!%_=IbW4`Y3f>!W)g=W|?E`)@SjL?0&ku$*Q2FxiJGKFsxDo)1%fnC9buwQI9D
zUoz6C`<&NZW^f7&SGdsAPtNp-`)#An_F)d^TG_^Y%Vk!B#x2sd`93W0;d39B`moT4
zMLsO?;WOsOOisAkO;8s5aHE{c;UNE%<26qqSp%*ARfP>?bG~428y;R?`S2xY=mw|l
z9F%1ucOTX6eU-C9n!M8IEb-rPI*e9NR&Wy!+;FY(VYLq=`8?^wH9oBM;d>vp`LIq#
zgv;)uTmpR9;6wYq%0{+@c9o%Rk{~6US@TH778+PBl|c^8)o--zKI~wh`*4!`e@-YL
zjz}r5C$oO=VL#`c4?p^_o7Ppyy@zA!1EYBD_2K;9YzoP%tW4*eI>5Q_!_O@As(O&K
zxK#EbA6CBB{Np9+FRA(an~-09{AXkjCvp=B{_evcQs_~^V?O*T<S)U+#k1Jn<Nrs(
znR3d9PwlLWKAiU9j1Omh=+srcz#;fTJtzFUAZtST?e!|<m*_%$xZ=ZAs`=2XgLch_
z>+EXDD*dij;#vmtEG0;OWTbYJHh(&M>q+g75C3oq_%YFse|@;?L(-2tKmPOKo)3-u
zXza&*x_#P`AC-Ay<wu$yMf@o0$H=)#x*z%dDBuV8QIGhs?iUwVt4IAP=tm(x3j2}a
zM~nR$W4R9UwX00O^YRt^xNy=-!udiQi_cUumZ`=3DDFo&Kg#=2!jF=E3@WOX^`n&E
zxpyd4HLKfNrL=Gc%lPqFia#!dR!3{x_qL~k9~J%1UbMoU%n~bHzZOzC898CA_)*o5
zdVVN=RP&>{AGQ6c<LBdbXRG!@bFGHonU%cvsp*Hc!Og3d-|>?qPx_IwR%yLLt?LKh
zF?-7I?4TCsWmP<+a*EaW!{tYoAK89%%kNetAGaSI9nFuGt+fgRl>(={oIxHx8u+12
zP#XHt{~L{j)9}Vkm1J)lwTT~1{dmidxBY15M|1X-AFr?j{b=b&zj?~@tcD-CezfvC
zlbtp3`oY$ba6S@SvjS_CKF8EHemw0539o1TXq)2C3VBYjogY^WNBIRm+OtD8x?l9;
zC06XJLe4uH5<2r&{pjFFXFuNbqoW@mR#0DO9Uf7Ot<*aC@tPlKt@2WS)7}s{8_U=(
zespDJI7}PVDyO{k65QCc4^N&|=+oZuqq`qbKMz&#t{*-8_}C90t5I8hk1e{c_VVL>
zKR)myQAhnytm`AcvzRj2(~li_S+ppQHAjc`#vt9k-;aRb*;c*NUOTc)3HlN8gM?Su
zkBIQhH&h0DPf+517=D;E=?ALr$Ja-4I2pM+vRI-Ywn)mBtk352_Kiy(4+MJqoi%-J
zcWo4Vk3(GB-Is&H?($;*El?yB4)kMiiVqU<<vZy^Qj($Uz)Eha@ft3|5rQKHtNT5p
z*(dYW_Dhv9evD;@ELFydWV|20zM^)Ls7ZcI_TvXXe)MCCA5;BU?Z>x%XWKc=kJ*0A
z@ngE**^cs>A!Mc>vqXW@kixls%=2TJAIl|nzTi?n7Nk-w^kb3mPXreWewvD1;>Tyg
zKTk=xC@|YEIPX%DuY|BlyuRiX<3te23aJKTR|%Oq!AZzkwVUTGo!@bO`LV%|HGXiF
zp=2$+ivNF$4j0yqer)pNdq1}M!J*&m$5t71j{6q>|Mt(^MKfx<DC|td?qH97nNBrc
zyF^H}-G1!x<E$U&{LZ>ub&#^xk9~gZr?JssM0kLHV~}!KkmR5rhf<u$DfyXdLViuj
ze-pyk-~ISQGCAtUUqV>QpME?(K_NLNlH)1)2_Yv1PYIqDJR{iRO#btJ>^`Gj@#8An
z(p<YB!Ha%ek{~6Q$<y2<*ZjCno1d%P_k(8qx8Og5H~hHi$1UNv{kS89I-IjaZbJS|
zN$zqL5PmNu;gcQCAl5uBfb;<R2GK8wM*_$nz^4H$37|j#j|SikpjE(`ECmC2Jb<zR
zWJoYG00f*nuR;M74LFXJGq-R6+}jipWUyEO#RDiIv84n{29Rv-el4FyEG-fyEEB-i
zVaj6x&<iohvdRTeCx9mdC?7zD046=6Rt%tez}Z(+l3?Wkssu3ed^)4PzNl3VfLJYn
z>9?{;o)A(afSN*T1yEba^v4=gpV;J-_o)B|b<nf`+yT@L;F}3*JwYXa`a)a*s6rT3
zsJGVfl$V$lK(%~Y;{cin$qw)Z07ue5kffoIMgcS!r!m+xfMx-_`9RANY#u<109p#4
zGAv{Bs`O=#Ym7a2K0Q~2<dnA#piKb%*u4Qf9l$dIycfXx0kjR^S@!ld*Bb#m$KjZu
zyeLT0PRR2CypWQ#7jmn-`ceQd3x7qhli;g@9RxeFlLsoygx6~Uye`7pHB|;#R%cc$
zfG$#Q*8tuY(oOI!LF#Y;CB73tcaglyOrCM~NX1g^g8)7ZAQ(U>;A|Q{3cx3%r(iF^
zj|Ca~@chjmK;Zw#!vRESJOS{qZgE~#GypvSBY;={48{dXx|GmN;Z}gJoq$0Kc~NMK
zoSPE{^VqSKoaMfE0DWlu0p}#}p@d{W00RS<9l#tKNdSWb&dM?^fFS`44PZ<FV*^+?
zP8$|*cIKm4B?*oYq<mxm+1D~i7&|%uZeJT+%NQ5H_yDGe&V&Fa20-Ct(agG*LCr~`
zNkTc(PL<4=ma*JUOqV*$pv?<meP#*aRJuP*nHxZv*F7&?aLo&V!TEv<1Q}c?WKjU0
z2w5!192oUk0H1TXgD4xs(g3~);9vlU0{Ak3uXySnz>WZxae@?9*95ROfaRQM5?mqp
zEhmVOm4Z}T6~O8g=Mwzg!`P|HKpyd}bFHISQM9d`_yKGPU}FHA0@xBjy^`*a%I6%q
z*@(C~6(nKsdkJm}fWe1R&uvh52CydpS38w_R{%e7I&5(Gj{)o!{`*{oK`QJOwS9v7
z1Ncb@<p+eQ8`Q%A{2V~OAku>PC4gT8I3K`;0DcRA%h_K691Gw`0Ke0KE2w`2a8%@s
z;tuf70C;h?#vrfb0i2Q86DggOLQVy6nm*I;P={WZcs77@DIMl;F@Q?}+z8-i0GCD1
zJg)_CMfg<?x}>7;x)k@fAcIVMODcAc^&GF<4&Y7z|46M^+ke@0*IX>_uINzmpAbs!
zi#{a}qzI->r}Gaw+rOegWVzh=gD4bqHedyUSW!uRG>C#iGN>aYQ;<=G)9VK!86;FL
z97GXG_3&J)SP;d7C=ulU;X3>I(m|9IK6QgyO30iMj=W3|k4f;Muv`%3gXkJWw;(D6
zQ89?-L9_^>QV^AcP=nBdsKVfIrFIZ?f~XoqH3?P^qLz>+1gTIXh?-2ofAT%%Om@1C
zBu~sFwq8&k0SI#9*9|%kK^`6vD?!v3xhoaRgzlj8+@w+Pf5+NcL1c@>Bgm)*LK+60
zXC*xTYAl*f1e*%dvo#aKQ*@pNv<#vR^Jmj4t2sgB3h@TfN(fI-d8gl6I1gZ-38HNf
zF9-1oyJfBNY!J^2A%8B2cEa0MQ~`~W7bMtT@WmirN@-Hz)gU?q(K#jQ$ZRXBuLsdd
zBs^ewEr@BgoJ`)3D5j;tn-WXXMF{tDZ?Pt$)enOBFbHnl-<Gz&6GZo*bF=nt5Ius<
zgN8XPGT#&Oz91#+<d1^r$)Oyi=|S`gIyY8<Ac8^1aeXX7U(mUC^9x^HOASdB)uKU!
zMHmsJ4tEQb$0QhMo)4UxXd?(Sh-UdTD~O~JmX#1<OS$FuW-~TVB)x;^lhUEEe-HyW
zvLSdv7#PH$AT9@SC5XX63<+X?5I@mQf*2OWq98sAVt5cEg3kIrEr^lqgm1KQL5vS#
zRM0u28y&<LA!8Yvmv#AkIu&><FhPWqML1FTB*7Jp@-x+xAf`$b?|mMonjXZAAZ7+J
zD~NeP%nxF=7zQn8PS82ASMq0)&lMq0-4_I%<Mf3R#dCOaUOePq9K@&W+aT5iu_TDk
zf><8J*Fk(v=g)x);;SHd!tn5H;S1qBVOYjgcGkmV2O?uvNNrcKl6KZNL9CSEfmP{M
zyQfpKT7o3s2EiuqXku*;>w@?`h;2cvmr8C3VxtgNk2T*EbWXIkie$6k7HI;X0#Jbs
z+#bY^Abt#DcMv;+*cHSNl7x>HnEc^`3=;Ok9%=Pnnx*8!rxFii*?e}wfglbBaV7{J
zSRD%DuuSmdLHx`ywX|P?_*Dp3uHS;-StvcjA3^7s^oZc^K|I^edH6;7(IEaz`G>!P
zI3}EafKl8+oDe5-GKf<tUv!#Ae#%QP#6#V)L7ZbRT~*Hul3WPlqVP+Ct>k#>YS7tu
zmkXhM2-kwRPVW)K4La2jN`!DTh+7<^5FQDkWQpwCLHrxU-5~DJelqIw`iE^f<t0fU
zto%pcTOvDO2;}!Tp_p*6@<22xC+C$W`F#G9E5DG;5Fn(0;G=>CL&y-qRLq%JD1;&+
zDV&lsTgr=uP)sC^*Si=j8A7QL`bM>~A(RebU0ZG2wVba{WS0ryu@E-gFF0vvHieIe
z@Q`d@n_X&@S|NmrAv_gw`hl~%QV4mq)LJ1_4xvg2RYT6^iq{iDs)bNp2sJ6JA-tyG
zj=U^NYD;qFP$z^ZLwxsJB`4MmIa9b^2ucX`LvV$lh2Rc3r)sK1aZk=II``__vGc4Z
zON30q+1en4h9OK3VMYjzLTDU<F9d%GP1sSr(_4qoCd40%XiY=-_e^%P5SoY3B7~L_
zq$F2Jj^LoLGrdAurDB=z=@6a?;cfQh+U&L=JR8CrA#@Jmxe))I7O#ZxY6xvNYtIX|
z7knXv)ej0%_@V?~5_~xX<3u)v53xfCokZSIkn)E~UJK!MNq#HZjKViVAmP<jNEbn7
z)lG7v{H+jb4|B48Cxq@Hyc<Ffsp`jq?}hL|2p@*<z69BXagS^Jhh~2y!JZ-h>_wxn
zmjvgZ@{;pnY#@YS2)#q-6GAA2vc<B^5SrG>CJD1YMG_UHBqk&-s0$i`ZNGC_9Li$Z
z2|-(s!6eNf#hGW{5c-8MGK5hf^bcW6R2#w(ES60&K!O7W2MG=q+<eMARCI<3Qh9g?
zBT~H8QH7<9mLevFFeZetY-tGJugaPrt>7#eAHox>vq*SNObI8aYBfd3)DWhnB&~DY
zGeeja!e&+=gxMj?31LwPpM)?sgycPi*Qdc|^HO}ikOd(u6hdVxEDqt*5Y~tAMXtIe
zgwH}45^c6RgwI1*D#C9BzX;)LAzy~@m5^nE%LSQ)$#>q!Cay@ut`tJas{f<;Z3y2<
zaE%niBx@zOPVmGj?}iW#wQ_F^;T>Dq6vEmw*(AiR?5hy|3gK7?+d|kL!hsMDhOmQn
zQX>0DL6V&z>=OP%$nkiTyt&@BJA^$V+$*?0gncRf5B_i*(N8JAbSQ+wA^grREtyUE
z&msIO?(vsYZW$r`CXyq9^pJFA>b0CdLLeRu;ZI4Me%i|%j)!m}gv%jZk@<cygmP!I
z&kH{l!s!ssgm6}Z=L9*mIp664I2|se=KDn<mqMVBQCI2q#ZDdx<9Y~xhj1^1`yt#A
zA?@d1t^%BrA>0n(jtKt|B%d}zrNVnfvx&U!hVWl1)x)R<5=;v_c9>6aTpf*3>0u`=
z6Xq8oV+#m*H2l9JGQ&U^qXuF0Abv0kg~KQl$769638QEjO`~WQMX@l7hw*p>Wg{pN
zM#(Vdhp`}xQel)1V{jNlm@16N!e|yo^RVOI9}lBW7*B>#HjHv2DIZ4VFsg)6L4wq&
z7)B-GFU?lh>{qLXQDDDTBaGH7m1@HCuXk5xZNun#U$gFOjIAlLwOHI}Pi^6mt~u0y
zDvY{es9|W5;geM|>IqQ<>kG0(R~TzoI4`5RQ<5wplUh12#%G7&kzfPChAEv!LK=tB
zL`c(=+;`U9B8-+{^a$g<Fml4k4deMRUI@b*Mk`T!R<Ly#PYY?onx9M8<(oFogz;Nt
zcUwX3c6eOIIy@(8?ZTM)sMd9UMtcdq6voS8yeK@Yk@Ft)E5f@AzAD&(ZNK4sma1bI
zox*r6jMqi}w%{9rox^xjNS83W3F#`hd~bdxd`mb<<L+ti2!DN}(=EK-4P!<*b#&FN
z_rv@-7-C_>!}u_z?+fFjFnWgZb33j4k1oDA(JPFPSq+c-<^3)mOZvkIgb@s*`*tN1
z#+2)>^?z!%TMdU12_wqP{p!7E+{CXBx`=uz=VTa$a8uAq$rEAN!W*>DW%csH=q<t3
z<<vf5^bMn580$N!{lgd#MuW-DEA9is7{uI)xPPnC_}zVK*?u`B3=R!rn53O2I9!lF
zXdMy8NY0BeMu#ymj7cIN6UNvue`e)ac;nehrO|2Q!<Zn!D)P<17Bii%6-{Ov*{CpP
zhEbwd_S7(@i_SE`u0E$eS6<R?-^rX6#_TZWhMk9}b0oGzWq0?(X-5_~Kh5JO4v5wx
z8LZF3FcyVzHjHy&d=kduFt&uTm37;sd>Y1QVSFyhmvG)4PdjwgwKR+`Xze2WQjl4#
z3gfFVmW8oAjIYC3De^-jl@(zSzY!eMRrT>H>PY3=T8=rb4&z&P<4LuD>$LB}SQAFA
zQ}TVwgku=I*0HO@*g%u3n6@#DO|0JUuD0@jz9gF^IBAq)+uw(=D~un)*p{l#_AqvY
zu``U$E&gX|XP2h^7{=}}j)w84sO<^kKo|$Z*c(RMa_T;g#WmM{;Xes7_-;A%P#A~9
zI3h`Y4&xV2D;B*fjb`>MhjOmM!w^2xWRQPX%F6s6#vft0?<zg^<X=_784+H8N%9kd
z$B2uR<6*osO08ZQC&M@u#%XroB!zDabf}z0az=uS4E1~%7s9w7#)B{}hH*)9xFdKu
zjK76k5xg44wJ=uyqAc0wH2Jy+|GSv)24}}N>P^90g0}@J%(q7QN7ShQZy0wUCSfmK
zcij`dWP$TjbYA%)C=kJ;5yw8$B1n&5-+!)Zr@fCvP<&4F{1LqOQdW&yj%Gp8DHTCR
z1ep;)f|M7Ipil${|H$rHUClo{t%%5r3KmQ06c<uLu%zIr0%@gFv1NojCTMlfC>KHb
z2)>J8O#~Gps2IVs5j+<`B~hpyL7fOHM^Gh#s;L}m38@xA^$4Dbphg78MyG{ar`3#L
z!6c{C9_jf%YkAF+{$vDCMez9Ew44a)Mo>@EHjhAwpwtm(SerypKLS?-Y6MyY4I*e5
zfjfe%2(lyaM6msU)^~u~?6j9;<~bKr@v1mLBQ}blaRjfP_MUB)Kl`k!`2ekPj+1B8
z2%1Sj9p^eVX(7C&;QBVskL+@Vdj(rX&{{|v!L|`R9l@d@$}@uPx2f+I(Ry@G+b~jV
z7s2xp42fW91TRF;p5qn4`;zL#2s%aZS_Cge@NxuQiZp&Dg4~*FhX_7u(D+rh?yzfF
znKVi|ioD&8e6L6N175rp!P{K53)k-)!7F=RT_bpt$s_RpR**to%X8AYMQ}k&V{F=h
z0$F{PcOv+3oAPc13lAyXnaLIP!NIhRUn)J=5G!r;OKBfaAp$)DgQZ8%GlD<_!3YKx
zclV0m%RKet2p+4bwcM3P?vwiaBRE>g@n+ReE1?KB4OAl${I^66vy^*|KZ!;Vi{Q^H
z=`DvTaoS0Rv?b4}R5K&6BIp}IKaS%nS0VyCf~4@R+a8IoQ}UQ_n9?T#^4@|BzSG|s
zmyS)<{t;YSq791R)|biv)-b|b^)zw{c@1W5tE68Vm^Lhe;T(<#K8avN1S2Du5y8v|
zMny0>f=Llfj$lj#V<Y$~-N|`j)BL+jXyYOnA3?iaX%ixtD9tQcF)M#pb-_TDv40#_
zr$q4YSIwtJK(6geBcB$*baq9Xv>&QFf6y>1g4vRAJ_~(LofE;SDe64oa|L%!No%)B
zt2I7t0Xr&!-kDmxdkPzP>zcASf=^k0R!MSLBKSEyz&hnK!5^MUyH!YA%C;BMz7XVC
zFN<J#1S>^(=^oeDH1D(OiU`OTmq{c4MkH&dq}~2cSrx%*HgG_JZzFJmQH8iRf^`uT
zj-p5u>m%3@!A)i!!A1@%M^JL!9Kn_d_C&B(f?Ffl5y4LC6srHd;5NbSf;)b7b-$<V
zVgrw>KSn_Q13O>-J&lsxA}<|E+b3Bapm&Pk&_ZQDoyI}+rwEQWc6Kj^A~+nu{XMSV
zBltOj!QIqfBls<XU!>E%y6a-s@zT%dJHo*|nnnet`XhoHuC$}<!@DkC3uY^S(c3W3
z2u^TPL~xN!yQZ9s;B*9MI64oTGs>}nT}PF(5fIPQAcv^u1dlCI+ZT6YFGX-Uf@=|6
zk09S!*OdsaN?P*6@*_Lqq)e4Y{x|C&bCYwB7F%Szll*oBX;Gv{9Z!Bo68=M5ir}vB
z|7aVZI;&XwlR5X;Y7sK{;9(I_lz+s@<dG=yOAeV)y!mEYfhaO0_~o^Hj|wRm#lZQF
zW~+A{<OPuz5*$@bE6UA(6i-R8xL`SE9z_Y^C8H=Mq_p7UQIrwFd>)JP-A<>5Wku4d
zlCziKRY8K4qo|nDtVAoC_`lMtL{T**uNFo1D3pn5PoyL@qNpjnmSAncI)YCMGXE`q
z<f|J+Jth=Mc1m7fh${*;CDDYqqsU50wie6qL~*5aRs+F?Q8bF;iQ8J^D4Iku+vRR?
z&(-*4_2^yo_mOJzC|X4EaSXl~T1Jr*#o#D!z@72R6%0k;jiOZ)t)plY#cNT#9>vp9
zJQKyMQEYip4W9P4jiOx?&qwiW6wgIL$)5A-h|}Ihr@b#k(LRdf8ET@Kn*;G;6fZ^b
zauk;vx=R#rA0Di}!qF_DRZ`R^t2@{sijGlqielty@8;9qS*4nsE1^YpWxo+c=P0^I
z@h)v3iY`%{IPHBWip_rQKvr(oD7r<lZL9VctM|6&^polny|lO4>R#HH?X`QSz3z4H
z9#JIQct42Z!ziwgRNjl?eIez}c&nXMK8m7e6uv0@Q7qoA_KITp=IrM`(LRnsdraGN
zTxl>rdq+1dz}B(5p7La!@iO?r8E^1fb~uVi6wxSRQS^?YPZV+KIz0*_imP9`K1wP@
z%4lX3b1O8No9VWqNJL>rv2~o57v)#evyvQzODcmqFRLAQx_X`Q-mRkcjiP@P1ES~`
zMcsV4yx5l3S6z1+Y6GJf#HcggUp~@?X4bD)$~{y{oD{|6D27EbJc<$Q!zji^F)oTx
z5<7-dppEJ&;~vdna=W)RamPMWn%39GM=^mzzf(I_H*F#-xzg4BKlQoMTD`Aa|L%89
ziDGILrDG@)!?Y--NAW$oI*J)l%#3116yHQKi*^;of+!ZUS0|^>iDF(9rzUE1rQAC5
zZ_c!+`BCKi!TB9uSne+tMKR}$^GmKz*ymAv8pRUPUn=;S;O9{s{=k`5E5<vH?h6rq
zDfm?s%Y-Z!WbD^M%8yA~=@4v{;ObQDteVc`{Z@kC39gA^Z7Oyh=PxU;McE*djZti(
zbqU{+(pj+EsY#>!X`jEKzJ5R7_9%8l@n;l&iNek(_DAs(oz;-ET~YiHg*7_uM~Ql>
zoVGiPJ*j;5MzJr&yU3@-4@7Y&B{?YM&bsu&QT!amFA_W=_-hnjoNzYDze#YxiuB)w
zQ1XY6qpUy^r-zSm(nV1)hK!gqmrq3TZxnZ<ILUE|;<PBAi{g9~XM~?k<&!rf^Mddz
zG~FmJ3cn<HS#VyF|9QD<QT!dn4NfAFvy|<pa&HR%Dc8}tm6G2Ua!2qV!BTH${+Eh<
zL~3|Xg7*a<&`w0iOwwXV7yi&x@~7klVt7>emfOx305XLai=osM$6X_aLLw=g(k~*U
zsNm`2T5-`Vk%}!Tq?90y^RXBnkD+}GFUC+dhH^19jiFf#<zuK2L%kT37%GZ#wHUlL
z-RsVHE5%S*Bvk}ihpIxJx|OfGkSAiWes^rRh6HO0))K58LmeSc3O*%B&ALJkpYhg@
zq06_5Cx!+wxMEOa&{8_?80c)@t?aZqON7}mEPvGLf8P7N^@H;P*oHAQlBmXlO$1*V
z<mfbyp+yX>VrWhOA43kCBe9<?anVKO#&BbO4zI22l&dmTJ8f0kh{AI*JS~KoJR_v7
z;Io3?%b>K2;rW!#3mlQN-Z!AW6vN9gd=x{^7}_S4S7LZIh7J#Nct5RU44q<lKb7h=
zAzfp5JtcWVNN2$}1-l47EU{Y*Z%L4~dOL=9QoOs6cLjS0z9-oJzkDAEq5g+4d^7)l
zJ=rS;&hcv>I^)HePV|e~s2Bn<1Y-!r5RRc=4E<w>#1M@k8ADzSF;V;JL5>|mJO(`m
zgWY=}w?j$QiaD#EDcIGeC1QADoI2|XFR|Uzp0ewe-Z6~6ruKAeePbvHwNDJS&w5Fk
zpH}w1p$(9n2gNX$rT?W4jA8bd3LW*37>35s{j7J-J=ZTCv|${Vv)&Og43B}qK4FzO
zQiPOGypc0HhA}aWjbU62KT{`$@i9z@VN(p7W0)Ajq!^aO@L3F#W0(@df>i%Zjp2ox
z`SN|^_@8MaoF2mrAv04tvxLl!VUCcwg7Z?b^JD0J)^Yd?MY4!9E8G1^Dt2)UpQboR
z^Ya*%#;}aWEW$4YzvLvU<D4n+`bs2!y9$0C!-^O-#BjT3#_@H^H=MQ&wDmEpjDf*b
zF{~Eyt>Bs%z7xWzxUQ~^VQbmO>rxW>|K5e_KQdX{n5xN`UKv}c6T=TN{3xY=zeV|8
zVz;GqwhP%2!%iW)Qu3DBX}e?K-TfgkC)RmS40}_t`-JQl{3(V5Dfz(|9vbuE7-o6X
zYFEmlDgGM6Z**C4$C)3A;dgq)I6nn|KP1(~7%s(dG=@K8_$!8EF`S9vEE|=|^F$2u
zr~a?sPR4L5B|j}>NvpJTLe2}))x22UnFtr?XKLn<To(B~!7DLb6>=?xj+4?#R&m_O
z^%(x9uZZEML{V}(hFd9KAyd7R;{U|(ukgDm$$vtASmTW8ec=xT^Tm-S?R~i7<d363
z9EIX29LH~?m1p169+g<8Dkvl)j!YpCWTO~$<zKZ(93@3kX^mDij$*=##~qJaLO9i4
zZc(7*1V^7&={O!v`N!iZ8^?c1+)JWd9OdJ9+QKsyD#TGSj`cb==%^G&<v9P93_r(F
zC620b42<&w?5Gw;^*CC^(K?PN;;0cvy*QLOYEJXijH7NGzjw+B>{e^VQ9BNjI)YCM
zGWe7bD)&6D@}n#D<8Z|>v7YATLyaGE)i^wHG!U-E;TA%9Rvg(W{^>|h!#Ie|1xXsk
z(O7tsl%%PUW^vrBqEUfYi#S@QVsqliO+`^*+U0asrVTqGjz6b(f^j?(N832wWKYKN
zY#h(U(IJkGakS(0xAJ1#`CQEN!e0=iu)Po_e<_Za<9LM~byT6+tD^kTNDuk#A)ZbW
zr2ZSC@ES)XrNG$EQUPYge0X(@<NY{3h@)E^Z;9}2!FS_$M@V-;7SwQcW)I;^^`7KR
z$%i8OI1XPNAH~sAg1zGS|5ar*{2~kpp6rsz<SPV2afCUtPk1A7=y4b_tkF1P9QtXV
zI4dyCGwZDP{hD4g4l9n{arB8J{XbViFd2s}gdJO_jh2_<RN&P&j(#E`e;CzYf&&C8
zp{)*Pw{X1T7!t?OIA&j0hQ%>0j_Gj>k7Gm}BSknSj<Io!6273OcXS*?y`DBsBoib!
zJ`VNobPAct#5g92aIz>+I7Na}1(}vQGvb&T$J{vP#W73ND4Y`qGoQ`gsHc%IPYS6&
zKaT$2DGMJ4MTfyfaeNZT)GnFi4{=ExpT)5~jvaA)9>>x+)^J3Qt6#+NCEF{RQ2DDk
zzK&x>9LwS;H&b1nl5<Wm_>BZt3Jx2R$($)<s?{R-HjeLvP{?s)=4<2pek|6<u|X_<
zi<G!Aj!kiF7Rin-nVcHToVb<Fr*qEtg4-mPK}PMQV;SSw8^=CLzDrEyhd6$WV|N@6
z&1p{@N2+MNXi=O{)aS_VkK?B}4#=1ujN?#ha2Yl5dOGo!IDTb?b!WJLV-EBuI%??n
zoz9=rGmiTl<*!{w<2Vz?S(Y2eUvV6Z<9HmW;+WGg=R_P+)?}XKR2}R2q(tua18U0&
zo+E=YPsh>lQr6QwvTjZDoQvap95>>)8OMb<F2-@4hCN5QM3*(z!-QAjxJ>6T!BekL
zZs!@Et8rY5<H}-Jw=%iBNNVM3e{*~%da_Qc{M_-aI8HpP{u9S-&V`Fvci2}uT>P5r
zwMm|T<G4$|%KRsJN@V7$!#s?tK0<jAM?M{;bd=VSrXyYF9h_1`$0IuO>nNb(Q62TC
zdv^8D9MnIv?*^ry1T%G~(97j=GbG5`QU^K;NwBaE7C{M-l`pEJn2zGQ(~vRWXO_@$
z=UJ_!APFn{`7&1-9c6Wt)1A(FOz?5R)r(!_bx@&_j>@{zx(Yff>X<e(^Ux$u+ew}(
zI;!fZeKCs(cU;V>rh`~r2gZ6x(u-?sZ%rMwbiAhHb!zIUqoa|I#yXzV@stjJt1w$y
zT~~)H!FoCrHbjbZ3I4i4={-OzcPXoGW0eJII@~(GJL`3NUdPLCWU{zX!xfLtf4+7#
z(7}#sC^ex%6CF);Jg1|bj%HF&8y!#UXs)A$bW}?nIXXf~Z)}3+RB?@s&DBw+QI=O4
z-bzPnA(Sr~<#|TuHd1M;<5}G?Emnqgdq-2pUUcgAyp9)ibkNaJM|<6|C0;KHc~Qr}
ztLYCVFY9<kgfyX7b=;oqsFf&`+evo}@39(Q+V;@?nQ!RmtRto)&a!lL(eaUvo;tef
z=%(Xc9X)isrQ>b3j$hlB@ii|x^<gI6b-Xdb)BLi^p?Oco`#L_*@u3dN?dhIXlRWtz
zceAf(oIed!h`n@ttRtW!sKdv3H_0=azrADsG*)ROk4^VfTJL5lAst}~=P0!YWHR%J
z@Tee#{P>=(!(ji*K$to#9leFK8tXE06D*z9eyb7N%SoElovE59$gf%U(Va<6HOFqp
zdit?NV?C_i0Ct^@K{^KO_)2`j5FJBxOwch=$1oj5x4B=xrjFv^9&inp;0R`=<J?ag
z|A5l@8WO8iwDA~@9Sy9sI!?!U_Uf++Qyn_%?R-UxRMIBtn5^Ry9gB5L(J@uW3>`CR
z>N@rvRf9R|%Hf{rI{p~tnX*m$d$?y7=b(;W!?by9@)d24j$QYaxjOziq*0%I$rI{)
z9ScNfp^imDKD+H=5?)O5sg8rCnk*H3rI)%y$7i%O9Yd;R4IJ%Z)Zb^lUr21Nu9;uz
zD0$9H;W8b|b$qR3h0dqI>UTQ6p|Ks)R?#XZx=x%`SL!&hN#%(agR6CXD{}JWvpLjX
zqhqa(7q2Pv-fF&1$NUOeM~h}{)Uk<eH?Y{iW*u8}WE=1p*vjsb4$p63n~v=|PU|?M
z<3UFK9Xfv0v0KMZHe7f9=yPyiWmIP4A9VaQPf>1W?a{GU#}PVh9o02;pN^k({33im
zby!I@O@fR)B;;ODJIslH&Pz%4TiWKT+OIl(<48SF$S?KF=6Go<n(v&c{-NV99mi<W
zqqU<t{-nc6SJ{WRsyTPB$2kqpc~8-G=r~D7y57xqPWZOT$SP`s{@%iE)U!Hn>{GAk
zxJo18RO;kq@Vt%-Ixe!A2ej9htCw_KrpsEcPMPS6_fa>NZ*on?bshI~+}H6pbKqF(
z_*chGj>uZ&7AG>33|0Aw{yRE04pE+Kmect!SDTQ!+N*A#qTHncobyuiKOF-?s{WVj
z)8Wbk9r+C0Snc}0UE21T`s>7;Gy@kdsp*1`2vSZ-0RxX3C`jdfYDoj73}hI{G*F~`
z77P><c_9OZDKRkPN_zFFo}vai_EBH0;^y_<#+>2?hMe=x9_=YX{Sh9L(gw;HsA!;)
zfyWFmNjU?2TKc$f2Fn^qKks^Px2wF!8CAi+_ai*)jmie97^q`_^Q)?XY6fZ;sL6z^
z+c3|mbLtZY_P?ZkeNiE=RYI#};O0<|{~fKifp3~>_wHtOKH?g(t@)D%o-)Aow5|cw
zfM%ec0mVRl!|_6NR`q&h5nTr8W=RSzcexGFS98tHGC+6dEQ`xs4Gc6iFw?*+1C0zc
zHt?Z=j|?<1(9}SC11}nAW}vx&Rt8!dJlD-`VIapqu7Q>k^vAL(^conuMg4S_Yf!(;
z)A!ZreYK6@n8dRNtcB{(l37n1c*a0m!?BH--E#8RQVUJ<JZGStfyA8L;`?)-H}Hai
z0dDt{Vp+tQ4{}~I@G{$I;4K5M7<kn{Cj+k;D4V5rF!1bc=dh)t1Sy$SUwz%c8wM&5
zRk{dvHt?npO0K@&Z0AB339qgOU!78`B-OXsIR-v3kXN4*P3_LE<JX}LylbF`f%gp5
zQgRBORqhsdAIhjt&K#)r>j!Gpm1<7|y$lRAFv!5i27Cr=14%ZAw*Ur02Eqn-0}|j6
zA60^ebKk`6T*N@saQ3$*$3lo97#E~m7s5=Kin~5aEcQ<-mXbUJz1fq~lzs+wK2Z7?
z=xbp2UWNS4y~?$A+QARCmE+X@>`8-Pz*gxTcG>D++OUCf2F4rkUP&KnV3>j7oF;|q
zuP&SO#bnP21EUNqs-n%*w2=mm)Xf>SBA3C@2F8e-e5`>r8x@iX2I#dW8<=8XqJif}
zdnSp59%k=!&r}2c40W1;>Fl4;o?AE6Rtx!(k~)LdGSxG`TGp$Z-LnnMk=`y-y#8Dv
z3k2sG;5TgN3+L>fxl3Cpe39Vu9W(yjobjoFC9JK9(I!4K@VSAiCaRfOYTye42MruD
z@TGyT4E$(d$6R%pf#n7^(M22h+Q13}-?1T_O|;>Iu2lwB3t1^Rajo*L!I!I5lGB^j
zvST%pwFcISOW9~(y@3t%A?4kz?z>ht%b~xbo0@;ldtOr`HN0Es{5dWLc5%Mb{$uJk
zqJanfv<qt$2LIjY;#Zn?7`S-d)i9>ezombs{6L*43jg9{-8t`W1A7eYH4xaLG;iwt
z$-q8?ugI#G(;DwL(58?(a6vu5NpwwZ`oK{*Y~W{hnt`hZe&M_}@P~n;26#3&vSj_=
zIFzi<_4FQ7oe$&xZs255=PCT32L57;SPcWm3>-Ib%D`zFyjwj%9rlS=E$CK9EO5~q
zKg2Tz&Po@t0&F|G?wkQO`8<c4d%uIub;-bGUPINJSJJIb>WB;K+%oQK2ClQmOk|q)
zoBo!)VIZH0n+9$fxMScSPW->qYfSKPFL#^fJwW5;cFhgfznnD&?i;wv@w(ySPVzq?
z+#z#M%MCy81-?9>rkO}L@u&$`J@+Ff@|!3iocnz4m$<c~GPhye5%DT$I{9;x1`~x$
zls8eqL}3%$l@&8l+(Z!*MNRzlor^w`^?7`!tAvS?CLX77sKUK#DHEk>d&uHGkijy-
z?Ma@;gwX5$b~U}MiE^g1MP~)L$L98|qKV2T_&)`7xs^=tu7_Jh2CJCPcK6z&^{bnB
z!o&+E+MB3hqNa)AXOuQ3YMH2QBFjX!i8>~pG@+QNZ=y|0?J3jQN7WTxaiOc81SvT<
z+~YE#nxN2aV$wg(9*mnS&BUkuwO`J8Dc44LJSG~Lj+wPI(a=OA6HQGtGtt=O-(+h|
zOeCh{e%UhX&N*-24;zv<H_^hx4`V&CWorK~a-VLhZ5`?1I+bH0*M!%^7w28Aq?br0
zoOiVrUUZ_f7k%2qGbX=eh<#})Zv@(zc$TpPRPL{y6T)G7-gNE}o|^38$i8UeB@;c_
zA`>s0c*VrKCVH57)kFsqZ<%=8L`M@7Hn_W)&V5!V;jan4F8GFEXTdiGy9jm_WWp^w
zTr|0FCU{u%JEpT^?@kk);Gvv1p}fU-kK<+HLlXs$s@!jPyO{NX>D)hZAI`g48o);;
zXnwrq`PhWdL_ZV#P59ZRCJYm%iDTWegC-&-q9)25(n2P}jLmXayV;ERY%?upV*3h3
zHxZ`?o3HZ9DNtXT>ESl`;xCG2!ZwlQK(ODAs>zmF#5@y=S88`&QLhwo_ZH4zA0d4O
z|E`d=v~<=06GQ0|OFMj^i9sno*u;<&XKuqda97fYi)4i0NI`41#)M-yA|}q6IB#N{
ziSZ^jnApe;G%=CBmpxDGGBMf2EcT3vDJGt~pO1gxG?l3iE7b>T(@f_tpLk6dGQ-5o
zl!QCFIbvxGO)N4o*Tg&%^G$FwynsFVMK1R_MQS>>$BpqPoY%F~PfceRx0nS@ba893
zs#{JGt_AGF1KQ8s)TOjQ6Dv)u;<%Xjieoq2^9^TZ>8xce$i&w)!kM1<c^8|uf_;A8
zMFoyg%ahJc2YGCUXSIoMISaa|>;aC&cP7@DSZiXPiS;Hbo%d3oQD5)Vc*DXm9e+~U
zWMZ?4pH2K?VvC8bCic^$IsG~GU2}Gr*h#w`>e*%@-ved4iCF3SQ;xWHaVnYE%eiyV
zMR)q6>1<#3n7IFiw%f#mi7t}QO4a8Aw0*L=&%|}F%0=gZiG!T2=e>t$V^6D_uBFq@
zcWU6gfOnV;=X=YYyuX_G&BPHCzl-F918F>Spey^s#8DHcOq@3Hr-{EzoRHFwnV_#e
z&e|SRSSUF$cqN<Vp5$;3Q8-eChN)*voHfBQWsvI;*D}`pf{BZCj}}T<xMboo>(9!Y
zxMJd}iCZRao496zI}qM#-C!%Y1kk|pIeQX*-n{IK>P<T2j9kt{D%_!YXqsofcGtu|
z!v7U)FvWA@WX^vk7{%)z?XA9AsgIJ+LYjq43$T!G;SmduS}15auZi;ZfxVaCLIDfx
z-c1)=TzR=LWmu@YEUnZg7ngXhYlSRlZ7pJ<sF1>zv+xzEqZYHk1--Z+33DqUoK0qI
zX$xg6G`7&h!ebU5w@|}EO$%i$l(SIPLN&`dHKKDU&qn|jI-XG~TByXjEq8JIJz%1z
zvTz2g2x0T-VX9lsTEIo&2@5>w;=Y{+N3|@}wxC(ysSy*_p^gQ`!jl%Bvaozple(63
zZbN-?7Fv6Tr@rLlvYay|o-L>rxIEFRvIw_@EX#4T*%lgDXlTJ>IZlk_634e{-bj?W
za*;DtQwz=5ffn}kP$#y?X>NfV^_CV|SeReTJG`2^1wRd8A=iSJ9b3%XwwQNORBbjT
zcW_iKQa`sft)gFc8_U_Q@Q|Ucg=Z~{wlT)Wa~9fJ_#}bF2|RD%1q(+k{BEJWg%>SM
zu`t!bOBP<XkhG9z;S~#X2tJGdynt6NbYQPq=w#tt3q35n#v&|qwb0GN8`QM$riCsR
z4)4fes;))c+dpWyGrjTb4;%jXvqs@x<2-L!c-z7|?8Xrqqq<u-!}GueSw%Wz@&1ea
zJqzz!=xL#sg%2!zXyGG^pXuOVm}$Ht<ATV&W!Yae-iz_Zjlz#D$9KJa(%q+L!+?dL
zg{Xy?g%FME$*iaPW))eL9k#&DcB2N3BNjHD%-K*kCvG{e(zIY%&fM3T$(b~R=2Wmg
zH(Cj?IvOg4v^`slxzb;*-WK{;7-3-~N8ds}%ekK&W}(03+_uwU4zV!6!az=tsh&X=
z23z3G_|iTqeda?l)N<SfYfc<4$(ci7yk`^#$O2v8ICkS6b#^`VpTCtcv>8s2qK%K=
zaxpmG!UPKwEljeU(;K?MBZcbIXHK@TzNwoR*QRL}rqi@6d}U#Vg_%;^VhcQxn8mCt
z%(F0?gLvLM$8uIQUTJ-``4$$?DyV!(S!iLA1>SA-`?(<R!g$Zsu2}s(OLIu*1U|K}
z#KO2=mCr1E&IwW`+rFBw`GE}XZ<n%@EoY-Uy=i0OGENg3u!X%GJ_{>Y2Mb#)e8Vvv
zt$l0ZI}0m?uM%7>$Wsx<uCcJz!baxML+dfhvyKh4u)%`fGxuTz&y^b9S4-AsAJU>W
ziO$yT8dt8Z7QVOeqlINx(zjXI&R(+c1LvdV+!F3&dv`cbvL5~+0&(W$bl&c@uIZh3
zFPnFKyG4ypL-x_stGEwXIA~!%{lG{MgFi9z5uWse>LHr9g<sf3biX$gE(AZ*9-#8}
zYS|6-qfeFJ=!oj7ctPcTYp)BgKP(*OL`$H30)JZgi%u_rVhJ3xaGcIFf&2-aV82<o
zYT=rNQx;BJxX3BYslnOGzjBzVo)dD`LOxrggw;N8;erS$VdV|(|1DghL;laj+g1MW
z1BHAXdELU_7Vgo=E!?nh)52ZLc`A2{jTPm8rPWMzhZAk2=N~~5-Z=k0#KT_tPb5@e
z*Rk9Ov~4zIif8ypPriin=!Xy2(i6@jHVTRKv;`6<m_SCtS#uvvVAfX|wD!ydg6F+G
zzfuY(pdHqbK%s=wrM&pNs+}j5A_;V?p^_9&phN<V5@?(NkH|_UoZ~W20;LitEs`=U
zPRL^kJf1+=1j<RUW&-7fR25{}3PLI-P$?y;oIn-f+~-rFT1s9$fhUC5NJ*$xOL*;+
zq>hj$6L?BU-ISdF6r-egeIYJEl`R$G7R(aN{y!DqQ-B5uG)#aeR6Lg9{;Ej=O%rIH
zK$`@bCD1$p?mxW=v`FCPgq9;gl9m!2dfuCxfHKCTXzmO9v{nh+e5?s$7oPV%oxn2*
zXRp;RfmREYwh27TQaWnnJV_&Yj(u|8JGQC!`2-ei&*A>+*a7v$1YSyDPy&OU{P9Wx
zz6AUUyqZ9V1iB~iZo+xE)-i!M6X=parvzS;p?^JrHxlTaa2}u0RQOPp$cL)U59MAN
z?dh7pTM4|KK(_=|PV-Q*^}Ltl@H7wc9h%d5Z}GN`dnE8)0v{znId$IWG})niAjZbv
zhY82FIX(H@vu6Um#P%qsk$=pNI+RNipp7M<CtxHHN+6tY4#DE=hX+c8##UO5CY&Yp
z#p%vjdMtqtepH@6-)#H&|NW|kw_PTaBpk1vU{@#jCx9Bc&B=RAdvM;Hmq4BSE?&Kb
z^huy^O42WZ{=x^OBm-%U7ray+lEBaeCL}O1;cTIYB`_+1(ZYudju0HlZeOWoU+{Ka
zt&K@wTms`07@L|S+=0^zxsIsZkaO4l#7bpS0#g&1mT(r7$%0b^c@G$$qD)UX$7?e=
zK@O`kgfj^xvl5ss!8w9+1?LIQ7hE7n&4n}!;g=UX2|tz0VWW_ZB?)|%z~>1pP2gez
zmlF6QfiDx-nZT|DzDi(O0_zf3pTP12Ka$}2Hi2u=?5`78k-#^c6tV2p?1c2JmBP2*
zR8}Q0=B7gV#YlF$kcZ0OC9p<Pk*^g}I+nd50iIlKN?>yWk(<g!PNi)clW(DsuXAlr
zV26;c>@*?UB!5ORXR7sW<mR<1n*BopKPGU9mX^S7T6ipbUjqAS8*EM_dv5|fO3jQq
zmH8=wv|Gx-1a34^>xVoC5|~rm%_>pIn*5x=FA1EYegY?ND!<aJC-|WZ&u`MYBMIkJ
z?RTleAA&~({}lX7kQM7UD3eK!a}|)ZCj}{CKb(=e@pSjRkh6m41gUT#ff}7P7O@Rk
zmswT<|0ZxZfvfDU1pbyPQH>41&OA4{3vYJwKQV96OVANX>>cSP*8DaHbVw%2KT>Dr
z$xiz(fqMx&YJ(NHpTGlJ;}$i)?esuC8@0w|u#3_pNJ+YlM}%{@87yF<mD}k<_EJF`
z88$L)ek8%OYgHyQ4;9mxRbd-NY<O%muu;@TF&o)7c!*luMhP2F*r;Knq>WOxGy5vp
zC~brLqQ`BN6-gNz>u0Es*?6*$oAPoJTfugAAmv4YLPjxdMbV+WvdF6lRuyDyH6hgn
z!%e-E)TF+Rr`Sdj)=p{GVdh6Os6e&4Y>o|=je2ZF`7A|r+Re*miK<Al1R15-a0}nD
zI+GWZvwFFET)Y=+Xrqyh?l#`F(bz^48?V~vV56yxW;UL;@q&#VYjc~kGlh`1u+dU@
zj$p2!*T#xPxxA>*+D022PuqCLM!Qt1wnCn>@oY*`nH%Y~|4YK;lj^GNZM?)LyVVzM
z$EEabl|y9kWf8t&gO7(8>}aDCxs5k%gs-K)W;>_TZ`gR9t(fe2zh&-|Qx$H!iCt`G
z2mY4r++8xNE5~<U{cbj5D{{FTe_Q15*cjX}hq2V@VdFg;Q7YJYpB+0#`Phcf#s@Y&
zw81~Q`^a_<_j=jrX*&=1?_bQ~Ltfs6@y5z8`eCN!`ww%JfQ_I?LV`Rnq_FKoPlP#7
z^n7+TJ#Is{F^HwxFl?AM`q}7j!?KZJ>t=ZJX!bi?wvFZkGWlSa=Tu3WWn;C_9@nPd
zUA=ARZmy4DUyjIF4}$}2=Y<5mbiwyGSgU~&jIYULorl;MVLQi<e9S%6#xUD?-aTA!
z!gLQgbw;wPg>pyPSb8ywWUP&G9Lgk~PCCOe-o_U;zLcSvU}GYO%*JFJQ*11-vCzg;
z8@%C~ZexaxX|{7<$XzjUrj1!P=GtJ8|JX9ycAjTFIm$DKGj4AVFWyx>J<2nWHZ#gI
z-$skkStN^W=V`(VMYEO&`NYOzc1TLdCk~ALjP_YHi#ztuZT@qRx>WGx3*N76EVFUn
z#seG6ZG3IxHycN2qAc2WJoXQq=4=Q@Q+&c|8{gWXXWnSzJ0a@?DOn?AtswpXdLbK9
zu{|2OH>LPy8(V~LwQ**ho9>#)>2S755!-3@LUs!BG1)Gu2^D^{vD?NT8+&aWvT;}(
z*FIa^zK#7hezF}m&aw{J&Z5(Eyo<<3Z(KEgw(*ONUum@WRXR_~N$B_3MlNT++xWxA
zRU6lA9JTSMjnk}~<o_3YGM0V9#xXW|ll!<J*8&zq`AHj;oU)yTlD_w>jdM0G*|==u
zyp0PsE^>&Y*?+9cY!%I(y@78&JL}OyQgyW>ydwF(9nHRO<8K>xq)^uU2FW_tEgLs&
zXC-CkT+43LjJK$iv(SHR{A=Sb=lD&975h)xerrhPJ*f<r61w+%Nu(uFJBd0;q$lx6
z5|1VEcoO-O&LCzak(oq+q~rhDX^$qI4M4#p$QiqKgMuWAB~d(yLP;=KSg?p7gGD71
zk`hU<!lguBQiKdX%%QXh%Lp>tvO+2)QCUbi!SaF?1S<-%$GD(ZNjgjX6M|Kfs3xSk
zAmv<7YY49?SSuyxKs=emQ%N*RqHz*+lg{qNm4uo^J*lUXbPStU{iI`lY%+&KOF9PA
zAPI7J5?MmBlki9q3VAV~hDpa5n2N1#l0?%aa@c$8T<pMRNwiF&^w7-aNwi3EWp}ZE
z*bnTGgVAh`TJA&5buKSSinkWR$~=?g3;Y<8#Ly(3P2#yE-sM0f!P~laNxYoIE5e@_
zd_l0i;ERGUC9!32CY5<J_-YbwB+)tP?6f;1(J|?~AKOWg<h3L}obE`17raF7>fcP_
zExwdH)YB#D?D=_hO`@A5r;x$7CH5VOWuD!W_-K1`lJ}B$Up!v#BtA&u!z8p4jV;Eq
z;YsjM!J<j@O5)=rZqHDItmihjFNpvZ?l<x$F}`gMcl8u9NDL(rPU3C;|IrMUS42`V
zlNj4_MT-lP=t&sD+l=#=Nf0SaB%QYfO5ITGB$7$Y{Z7eCI=B1{Yv+>pp-m>yFNywA
z+rdc;NMa!CTqSEz5@Y(S-3DlUpMgjT4}bVXm~MPn62p`DD~V%Cj7VZ+5??2=g671s
zl9-ajRLN~j664sGB*rGurI>Th+_;K5f!%&anUr*%ypT+k;Ln@flatP~5<WV)Jl-=c
ziRnpvlEmU9W+X8)3C`JhNz6(*ySO<?$8XFQ&LF)F-PGJ9UTfxMkec(8SRhHr7mD(t
zq_fFn@Y5ugB=KbuUvYv*vp-`sl2|I7PLJ0YNynvh{x*}b$!PX6nfS{&d@=sqDVqv!
z)y<)uf5Q<^Vs{dI*wQ3c)5en6n#8wBe3!(ABsM0oM%u`yLTi)A>*VF@7VDDEY3lkU
zN>1|dqJ+-@Hzlz->AY~r*TeXdWSgpu`F_RsG_#9YyOQ`JiEV5PXKQ1XN3vX1cd)`2
zvvvwLT9aAny@Ed`ogD>J@o^HD^}R{#OX3JEIf?yA{KP3U%=0sQV1nmB5{HsFEc~D#
zqj*t5<azHeN&K3`Z>*=hT1MmnJLM#QB=KhweBedRqcovgjaXrB68Nl>BYRv%{Av;>
zI8RGvolN3X5~pbl6J5OHJ4b&)t7zsvn{>_+DWp-IPdX=5ye`l|32$)TbxD$6PU4D4
zYK(J^t*%Mt*OT}=i5p4Wr1@R&-c8~bCqfecu;&lB?$DBpHs)Wjtt+MSxg`H5@n4ZM
zinq+H;fO66_mg;#M7w@?z8~`CAuSL2`XH?j((~|09@O5@dLw@x3gqEn9uDQ<(L5B)
z!^e5><sl;vnR#fKhemlo9t!25dLEw0LtzRpWtGT7Ng+k@P*g}UK}Ho9@*SW3<vFk3
zJ(h>Z^H4euW%9tcWcecE=NG(`m(2tFxl$e~3n?d9J`WXGnZ>S(671C`hdS3LIQukW
zl{}1};Hk>28f8@zWUxjaYUZJS9$a~-m517SQ1bBe7*Cx%JelXbt9fghhiV+Sr}CWB
zd%i<hHxKpl{`c-8gN$N*ROTaZ<a+X;<-wijJSoV^b9Ry>y#60gR|0NR^}gLJabGf*
zDM>`=IQ!gtkC5TsgAApNWr_?XBq3$$oW1us`|LCBL&iv%Ndt<0rX(aGrOYBkWFAAN
z|GPe&|MTqUectu$Z_UGAd#!Kno$E)A7zMG()$@aPr%YZ0KN|Y+k{@0Cc-oIfemv(#
zTl(^&i677S(bBIvepA6_f_Z-A3!x#X&yRcNpv^@>%@%%TlC(OU)yl7$C=<Wb&T1{3
z&Nf1x^{f4EHqqz(c)^cXrh7a3(asMhti2x{{9sve=1k<a$XlawKAi0BBx=;`EaXK&
zZgp|C+|`d>bo$YaWzGUTlhcFcGt<>m_{)B^<-}4tcg4*Kb8kQT_*JJK;74CS`uXvi
zA7wtuV;M53ulkjBC9hLmvncE@w_X?IZp%PF21yNakNesr^$PH&A4B~3#E(UOyyeGG
zKN1YVk70fcXS{yse!T5hGxK--80l9QTqFE=M<f(-@EqmGfl1!?{GidoXg|i#JLms?
zaDL9Lk@K!!DvOp3<c1%nAGRM6KY}bMF)$7><MJ-RELeUJ!|W7Yvq;!(8C2Ad7|Yxb
zwrXCKvqiZsW;%YP{Fv&;2Y!t6W4s@e{OYxWqZ5a$_nBGAFZo0kuP-k@m_?71{mNv5
z>7ODwVnI#wV>&yFAG4%hK4d>Fm(68H*4GS?eB{T+lC|X_4~4VY!oSOAEOY$0uWOd?
zLoe%kt{?MQj3-?41xXh8`MGQ*p(gQDwlP0eG8cY)?#CB?Eb(KhR2g59*u@t6L7R4l
z%)PcR{a7yDht>3zw9;i99KKZ6ykCo)J?nq>h#-f@)qbq;V~ZbK{rJX@wSIi>$0k3%
z^<y1td9!;Xn<&d?qL)R)?31jQlHcIR^}acDG8b$cKlu5d2>j>=xA5qs`2m$Vu&~f*
zvAoTXpZxgQk6--i8Nr~oOPTXMk=}Q(Z2kDnuio1Dc;)ELi;rD~z$Ukw<;I~bfMNmc
z^<$qOS6SVD>}M<T<JzNI`w8CP{W$2yDL+m#sE~GuW#Y#%KmPFJupdXHxE`3|Jt|c|
zyXEuaymT_1$Nl)rj}w0N++k@m_LEG8NBdi9lS$=EE={=4_;J>cOMYDT<D4JoSu!`Z
z3w~^LyhEpYe>m-<lh;L&bD!cKzv5R$O61`#S=ZQrW8RDaG6Pt<*nQoP8-D!D<n8j@
z^y97{XG%6Czvahm5t85GfHvDjvg0*RfdGiqDH!-~CBLwc`vNE=<o>jr=DS?yFA_jj
zfZsyb$dM)w1W-JH#{;Orl6*`n5kRQ`N((O;!0h@B{_2%gCV;X5R0-hGfEth=44_;9
z<pX$#;h%7Gp1^I^3IS9Mpi%%22S6JnP7)~OGlI>jasZD6z!D>Fn4pS|Sd|eq&>o|*
zNH_=JXjzTIto-T$HSUpc-di)E_Bh-DHSc{QfLa064yXxjod8@yo($mLf;JWE3g_LE
zr`7s44}4_@ki$|6;MV|h1Mmj$UI6|8>ILvr038G96hQp|8U)ZHfM)_|7{Jp3Gz%#6
zp+<}}0NP083pNpK8o<KhN|+})B(yss`U1*ImS#w_HEJFJO};-YkkvAPRw931{I(9@
zxd7S*&?fF}Blv6pZzQ~QG7x$s*%-^>hTsbUv<skp038CLlh+R-r<F_R0A38>wE+4D
z@KOL>0_Yh)FA1${06j#%n>f1%@K*7L44-yTOwY@bDkhcAR|4o0KwpWycYyzK$f721
zF#-Joc$L$MgqP-0jIMqC%+~`L5WuhihD$C61~7;oi7^ke%(M*-U<l)qsNWQ1b{N#q
z0GI|6#>iy69l(eHMg}m7jbxsi`F$sVcO@J;85)x@I)E_&jFmtr+&(^^DUT++_ks-s
zpa-ykRS<v?fXONdU`haInl=csJqHjAAQXTVK$uN#uqw}p#AQp$??2;XEKEr}fJ6ZA
z2QVRkq@<A99~XcVKq`R8&iFXnr(bH0mojX0##gISgX-rqCk8M{DwJi#^xtaOfQg(c
zS@<A;X;Q-U$YPluz{~(<1@K`2GgxJ3d>;kyaRBr(@{Etji^AFBcb+6~j&P=Mu8`B?
z^BMSjxy5q$gd~8~0jvq&(*QmTU^&}=0G|hxdE4RumIUyHa5|ayr2%{?&SipM2~vT#
zsKAT-f9brhl$NkUoGgJ=LKrDy|As?T06zq<S#tL+yD%F}0P6zyPO`(G)=Pp}Caj3>
z1K1>G&N5`%V7$yJ<-Gf&$hQZuMF^YLRw3I2f0CRs%RdM3i%8fWcmjff{Klld?K&m6
zGk{$I?B+lez#jn|=13J#MnwAp*dGARRA|aV>zxAu9AYicb(8-dz(FQhY*vZXp^d>2
zW@@VIIO}Mrc3@%t(SWj_`7?lH9At)Sw0@!RFS$#F69Jq|^S?Ph+;LNQnhh_YjHb>C
zUgJ>4@kjWD04}k(IF7N69dmJWkj7WEbGs72)qpaJn_y+p`42<b>)Kf~`>j0fI*a9w
z>qY?o25^%_k?`JO<(ADMxh2lq>}5IGbW(UXpsc)T!Ii0_ppKt(Y}aw0jzT)d=oqWx
zejSB%G|<sdM-d%aI%?>ssRKHS>gxIUn2usP9?<cSj&eGR>nNe4l#bFmO6uVG8qWQ`
z3ukdy=8Un7t{#P)wLYk;iBnldG1JAz<%%--6qeUfL07|jWgQiD^q#5S<|^rG63&O_
z!@8RNQj;M(B5GB1wV3><uBP-=b#;V|&j>#KX(L^Y5$WJQKKbK1Xhco^gpOJ|a&<f%
zcGcEVM~7SI;eR}-!}px0h%cMS%O%dbI;NfR-II)*?(yhQXG0cyvUTL>AmKUyB}A_d
zVm%Q)rK7%%fw3%l;oYZoG}6&a$16G->u92*rH)p*TK{RPtG8^QjyxfJ*Us0~`Xpbm
zo9W<A5Z9EN%dHkVo)N;AcY0~fa?sI9=OGI`tK&HxFX(8eW8E2FTb-Yt_CBwxB`m(7
zbI*vY0qrRqp%%nC=xT3^!j7VLZyAj-zNo9!t(PVCmvnRy(p9jV&d=j}y9=jg4<W@b
zWitGp;)~Js*3n1DARTY$=&PfjB=vP2uL^lhS8Ib@gyg0bL+H;YB%5vnB&dNpm}cgS
zE0%+G_RZW8I^T}*rj8*x-qJCYrB^49D-Xk1;~O+y!*#X&q*f}@l6#ruI@`N!Z#oYB
zTIAj;=qMedb+!J+-9zGgI{Z3j>zJb>z<lYLsAG~2Lx-s&sl(9`)DhBQ>xk%T5#G{K
zW^T?JEjz4Z(Rgpk0R??MvS<*+Rd;SNM|H$>ki-Q^609k?mC`Xz$DQ+;C!$$2ec`R~
zI%wMTzK#jHGL*VoBZtfQG=G|`gXeK(==ey-6dhA_e87gMgEl9_HmE}uB-82TuAA3~
zy0R%Ep_h+!%+f&}@|i-Y$^GKZgSELj=CLr@FLX6<&DXJzv9L%_YYW(0?JN??7wPy)
z2S=w*b$ljwKWCQ_$rs{WEJ#bmCG07Mz4Y~^+@+T<yJs<kWjdCN4sU(U0U@Tw!<FpX
z?2K$4M_jAf<Ay5XTGsLiZ4En-<@rWZb-8=iw;XUTxz~x1^6!MK*RetTQo<;{7v)X#
zF2c>?+@j-5_pBd9!bqvMRpi?wG0fo4I(}gbH1L{%9Xfv1@u-2S27c4AQ^#2y=XC7S
zv0KMU9e?ZCqoaA9>;pP}*Rhw~d53GCj#IPqcyMXIj=|GiErYoSbv4=eL&ssZG2z>r
zYMj{cIeSFMaUFl@II641A|-#aud!3enLC=A^O<!*2WKyQpmXxTCy{y#={T+P*mW-V
zTvl%NoKfxH#rJ)_7o6u1!9mqPaRV1Q%5kLCaa{)&AusE=!bZ|4n}!5jM7qkFT~y>B
z9b7o#fhh`a==fL1T^$7srFK)tE#`;`4tZ#rGX8OmXR?m-p}?^{>7|K6hJj22Sq5OB
zpn>}g6gE)AKp{gde$wWRUP$g2Cl4Pn5L&r#Rf+}-48N#>Vum{W#S>dJmSY;i+uS7#
zlr&J;P$gE%Kxsqey^?`4#(!l}PDok72MuMO{g7~;SY)A<H&7w1Sy2L^kVW^fq2|T|
z`GR2J5kr~5R59?;ITy)e2C5l&#z0F0)eSsuAjd$iff@#C8mMKUwt*)M9Bq@!vq<bI
zvuCN3J~SMvW58vgu7OI`wI>aAFo(78Ho&bh56dJ|(+nIu<D>KX8DF-ccFGRz*OVcX
zfqIPeMPE}xP2-<3P~SiU$tmaj4GlbPpoyU-Y%1mR+>My#!JftjXt>TtIgv9`PHAY-
zmuDc~fX_fP1I-P!Ky7YwakZSJg`rl$w`_J1ThT8AH1LvvHU?<U@w|Z-3_L5G&gYms
zLyadq&(+JPR{Yu-7_-CE(Lj6FYz-ypz|#J}%S!BIC_ApwoANp{(yv_;%XqpNIK9E$
z%|LepT@BS5x3yDWeClD~WdpqoykelI0sVX?CmREUS@(VBA>kyXw}Cze`ighjb#s=|
z&p^9RJp0P!(9(WkcdfsH*9~kp@Uwvd1_l~<pZQ`H8+b#NIU)vsw}CeqxB<h!5T?z*
zI|kl0z{Sj=hS>ZV7-nENvpm&X`mB%0TLV_PMi|(CP#wh`X<(G0Hcb5nMl<6E#u|8!
z&AWUyEmwC`_ig#n&C#0%tF%7#ob?3^WtZ6Cl-A+T?9qE&CR>XuFGRn4T|omQ%G539
z)+n(Igyq(bF)j|sERd*y1iQ&eS4>KYi@k9}E&0-_Fv;x1ypDmCp{(P^F|`+6;|=ut
zgueyRcp#K-+!GB<Vl}bZuua}^Pc|@<m2O~)fvN1XhO$<gUOM|DA=B<T4SXnsw`Lgl
z^HL@W{eEm9nAwD6wt+b;;We%W2IjJOtNZ4&S3aT56HX@&5pW!)5$r-kS<IHGoUKNF
z1D_e#U|^$x&kcNGU^yGGfyHc)JKalJJ_eQ;aHeQ9nx#JHt6v#dW`L)eelR^W2<L>E
z!T!&{3IpG=OY(}iRvK7qsG)w9p^S2QtroII@EZoZMw!a<Xc&(;eP>|3L_rI48j90?
zo&oZ?@V$Xe2DY$54gA1hXSp_$uXb@}MWc%!8U8<>a>MfI<fojriNa3?`d9PO$%A{(
zx6c2CgFic+i7F<3<=}7NmVw(WMgzMHSfv|YH?Z5l9s`#QTsE-Rz&>^*snh*}e+jb2
z4+!~P@SuT12L2F!m~|oKh#)nOvdJ}7->v0!OoYc-IOUZM#tCtr6#QH8l;CN>GlEn*
zD}Co)2<Hu45cx&H17dG{#ZaH7xoY4acBP{l4f*K2W~h}7o_yrRb&MPAK~HP{8d&+F
z@1|sy`Q_=tI|l9=>O4g`uK%0JFj3S*F%y|43YxgzL}3#=pmcnecAtqtCOG+FhobH7
z!C$o^CTRGbWdf$^IQQ(g|NU6wU8+4`qPU6DCd#n1XS+(6C~2aUsrn<QQZ4pt?0O8D
zbD_yo^UIoe(8NQc$+#F4r$b+qQr6%X6Rz?mDli#k>+-5-qEebaY@)L8Z?@*})}tn>
znrLXML$8mSsAi(B3Ac&rCLTAH*+Xp;HB4ot`~(B3u8wKf6vFfDwM_MPP_9+BdIWGc
zB;|e5gv$gET2jbMjr=C~`jBlR$Am}1;a$E;@K&ygdM2JS;WgDu&<~%gM@fBCJvADb
zDA(vd3K=6Wn!-M9qLGQlCYqRNVd5DRO-<yP@R?}FWWTS`?0?*NZ@!6(%{872XwG;`
z_;{+9`66k5*4NTR?6DkwG^@3cRwf2?$)co<sSG1|aKN4Nwl(oQGZI4E5MD6R&cxUt
z-V36=i4H97ARY>$qlr!?)|=R1qO*w?O}t~`T@x>v=wf1^sm3lY({(k`$3$Nf-Ar^h
z)nTF@CVJhgN)tUPKj7w|N^^bI+AAh{o8Xj~$Jywl6-qx7ubOJy>u=&U6FljEsbYg+
zRWy>*>+(56cwO!e5d3bqHps*qCcaqa8f;>?WbjQBLri6g|CWhiY@adLP;v4(MIn)6
z>DwkIjq~yvVPfRUERvBXMwyswVhW4J#26D{=7{BB;yn{nXSz&N8OHlr%M5md#&JGi
zg7blTee(^Ie;C)o<+MR(eL=P;Q*E7a)sfqg7DJe<c26QEqRbKPl$b~paZ~LFIVLVl
z_a;mvO|?bBi|deFTjnMX@1{g&oFIdG-^2ulFv&ZSi8sOZe6A96r->_;ygSvz2PT%V
zWtx~~V!DaBCgzFX57|?qu8&O2U>?t?!<*bSpyXqb&lH@+#{XpYY&IToa&4Ik^F{v?
z6N^kNVAqh1vxUsyBrh}dDf|1EZU*>;iO)>67xuZS_S(2ueaFaK%(~|OY?*v+g?wqE
zY~1@l6Dv%7Wn!7B7HpTB_}Wy5{<tA>Z%={NTq{kiqQ^5i>rAZX03zA^mVI-&m+S5C
zpY?rXVyy|1Hcw`Me%8k|e1`uWThSVgJ7~<>Mh0%;l8MVEX2!gmm>m<pnSA14GrJfE
zuDh;nj3T6LdbgO$Y;P+Y%mgpVPbRjT_}K(!t(@@uVk(ntPGWbk{nXHw29<CpE8WC#
z6Mvc5ZDNm!{U#1D*s-3y9K?1id;5K+ve+l5t@7_C4w^V(;wT$4<ub<pVWQ4C7r#Aq
zI4z-3J#YPK;uy!JLoTix)5$TJ7SSh6oHTLH#Ca2cn>c0iT#wQ@&Ca#Tb%tX|#7kR!
zYSIfAt10JQ+Tk-0ehTRVM+Q@UVT>jjRJdZ|s)^es?wI(8eofqBb83>ux$AXSbO{e9
z9yeG`Gd%yAxXCu-@f<jo$0K00;v0Xq$k-{~yUc75#e#Ssh>RdIgSbD4!a)=asx_tF
z<Gh1ESM$32f+!>sa;`EJ5l(`jTCK_os(CM0oQeivm&#EdXLyST)sa{xpmY!=f+#7@
zQbE*spf2UJmbi#zs2}r|4XV8c&ObRRDi=g~j#NQ(2%<s|6@zFHM8hB|1=Yt59tomK
zPz|jQ3sw$d{0ub+KN>{UAf5=KR#5fU$AYLCR9|MO7DV-++An*Y@dnXqy80*(&k>(o
zmBlTgCDXk;m0X**@;$B~>WY^-f=>q3>1KxD4nhm6jZ1G(eN%{LglwgrAkO^i$_^q&
zNUk6y46UM_RZsMv3Zi}x-0P%YZlAGyo(>{E2%nTyBf-XkO$3_?<^|PxWGXicqIpnR
z$!@QoNo>Ky2hmz2&j_{*;-2Ygn;@PI;sxeiEMuSJUDjsB9QtZ2np;+6-Kd;HNjs6>
zQ{$wfV-T+f@mdg_g6JH?i$S~;#Fl}LdIiCeze`YUDs>N{=|!z;Q0?P%6XapZ9znbu
z1UIC(EyW{~J?XbzHs!Ab(L0Df;*t9Og!C1Rb;<hup@#I*KZw`qH;7?Dwd*uM8o(Pt
zwd*u6h(SUM$R-pU#^4~{6onyzZwW4_*pRn|2k~|g?*=h4h!G-xM=&8@S!up0k7N`}
z<`Zo+3+JMXO^e88Hbxp-R@Xv)R&fw_**rqfgD`?v805M)%pih6%n0J6AVNV{K{ehc
zgX$$H97H6DC?gW5^L&vX&iZ0OwH(dWU1B_l1RF!1T8h8tq%S9kRFH4b7%wewVh~wv
z^4<?(LQrkL@@q?6=j6KOBnJC#-ed`RiXi<?4dMgg)6$aZLOv9nH`U9}JboO+%phh3
zm7z6PBWDM}1x(I|=LFSi<l=Z?^0`3}=LIoe$O1u1XtBH~h);vq6~yi!J`3XWAU3jy
zg7_kc#X+nHVx`2jB#1AA_$r8{R9osE6U<_(UPjF&dCM7f5M4H?CGP(P)f)JO!~cE9
z;A$_=D(Om9ZP#}}tPWyL5Z{P|{eoR=t#FcWg{%`CUpsGo5Ujop>;+%D>d45zF>O;2
zKLxR!QLyo|xD3~iL2MPWg-uroXJ3?W3#xNQB)onOs!81rx%-PCoxh6kH>P};M(55T
z_@+RzhmAalzu9v+7~XR43*t}^e+02Vhyy|V9t00b9i&c=EMDZiNDc>aB#7hGoa#L)
zI)8HbnxPd6DIF>tV}NIU<bMTmLKJxGq!0=-&-u9SaXN_0L0k!{HIOqwoDJe!5a)wx
z<>XROZJ%8beo=69*&NEbpTed7tITW=H`udM9?s{7R4u|sz_lQ*2i3FShbdm-zd_uT
zyx-z*cg}Z*Z9|+(f68YOv8-kf*D^xL48a{zO}$_U_k~a~gi0Y43gP|`N`z1{gm3HQ
z@o7RU@xmb#2_Y+lHdDL^DYI}!R8*Xl6ch452*uM9D)2ySsSwJB@F0WQkzZP{Oh`>=
zdvwX-0oaE^C?5hp&s#18DpS(3OI8Kp6iy9g@r{5s|6IF%IE2a}JQ6~c5FQPob_jJs
zYI(V82-QNU9>QZGWx2}5VJ>Jt9zu-}YK8bk{oI-%wR+4DxDrnCggDpL^KhA+cb^O?
zD^OPmbwg@}obs{9G7GNAdard>si9si1WyRrA>@Q;`GY1QaFunzCoaw&b3^ckP%nh1
zLTdKNt3e3$)4XA~tcJp$7HpK3bD@S`(P_$z@WT#*c_HKrp~S}o3vVviBBYjrDZjl;
z`Dz(LtF&fo7P4?EJR8D@`5r1f&&huXLoB>yp<M{=L)aC<?hrbJ&@qIMLzo#trw}@a
zFgk=WA-ovEOCh`(!fPRP385>)DO<N^2>jqlw-9=Wle~LKee34drOcP*773lbLU<*F
z-XZi6wZ4KSFK04@yO%P1b@lWUN%M2Q{vo^`!q5<gh49ZV*8rxF>4|y=ij$H-Lf#M@
zEcm7%17T=yh18U<(&fzIA-pYNzDpGHjv&9#!ax{l-~;c-5JriR`n)I~8^U|6;t*0H
z_(Oce!ww<B@js+KEA+o+zF<gwE!GIB$(R`e&r9<7TZs8OpJ|2EOpI5U?Y30|l4wYs
zKP8E?4YR55bg|15d0I0OLa%eaq+rWxzHw}3A-o^L1a`5NS^NUn^cQ_4R%T5MVNwVm
zgfK0H$xOoz*VK?&f1V=zA%2f5FMC(T9LlGQoVR8O`H;<iWfq-0ruq?Uwqg$Z@2n7J
zhwx<xUxhFygt;Mn9>NzP%wrD<VF6RiCb8AWS8u+;^R=Dt=G=hbYxpN2EDGUM_P)KI
z&q8SMo2PS+EaRMyWHFn{>rX8SVJUUSd%vof&97<kpe~PZPb}qG7Q*rneh%T65WeQP
z5yH9<z6+^S4=X}g%`VA)x;A?y`(whjN|5$2--MK%1`W*ChCm@D--;R~^te8R4eTIn
z?ICp}WMc^5hp<U_r`1`Ma0*As57d!U6<g#MU$wS{u$9#pRI&3GpD#a!)XZ(WAU6be
zglM#*4%c(=;l<bO-(<Ae$-aEo!x844E?Ij**vqlbLP-nzLf9X|l@P9maDa^=gfmk3
z2SYd%!e1e<cK%?Q57&+|4IvzsT00_=ebrROQQ=q!$3@N>rzYi`vYrUxWC#OGH~gEu
ziP5dhIwej@*45AE;tUsR&W3O<g!AI}LI@WnYPK9UhD%c8to_R(WE)_Z|AcTYgbWLr
z7Opd!oANlnx*fs|;dK5h<fh=Q5I8}i@J>is@9?@Sq<{q)_Rv|-Qs3OjvcS34eU_R>
z6|!)@g~FD4A{P+}34g7~TO_d5e-(=g7886xkiz1YdhsVIWudf%))v}WC}W|l1<ito
zY8D={P{qQd7Rp&DZ>a-!k67xwMg<F%sZg?RMR8J6$-=|JFUsy==MOSD!gDa67s;w>
zaitNpEY!A8%|dl%;i{{qg~u&*R*^b9XUB2AhNX~Ua=Y*eOPNpeTwWau9PO#&w(z8-
zjxI7Tmxa3Nc)9sVAs-6a7IG{!vCz~~n~Av=>RV`F!E2$OC{yhzOKsrt%DI%;&{D@G
z8jCW?)8cF-dAxU~fDz?c$hYu}g_ah4;<p(KWRr*6olG7{a|<m*LQefwmfAcWbS#q_
zpiDgZvlgDS(9J@33vDet&w?G1`=W&xBuV7$`4q6!Lyf!1OkoF6=qSj$oh)<~&h1w^
zU$WF;gf3DzOh8v5JIA7jg_kY#vC!8-PfMMtWC_0_%DpV`5&7$}%-)tdPRLmJ@a?%O
ztDl7d76w{))l$baUK8vuNayQ97|tLIZ&-L!ig9o{ojmfxpqOT+f$14)VHj&C3|AP#
zExc{vsD(c*jIi*Ig#{KCT6ovONLHVP@fJo|7;PcUHf*UiiZK@6v*2fAnCKmADN9b;
zz6LDyJrG`|1wG9TA%P<K!L%e~!Lm5kd8o++jfjP)g}8-;rHl<YjgPV86v?LoO+%9w
z91AHn@_*{z`#2IuCoX#M;zH2-7A9Eu(83H06D>?)*;;DFW3r_dk+_7yVNe|bU{#Ly
zPPOoX5OS^yO=rk)7uQC9_)YuB!p9coT9_w^oXG@Opx;@RdUfSjOle9@1L-*yXo~#I
z8f`us*cy#XIy7j1*srcnEG)A4KQ*kk@TrB**d{G7!Jk|B!ot^<vVvZ0VTpyWEG)CI
zlqo4&m!=nAvU5%JGFX1>i_Yb&`Uc9xm&vAuFc0zl&%z1|D@Bbtq9zNIQLnbJ#=<ui
z)>`<MJ<d`Fx~vY`f3k3x_^Ht>W{`Gz8(6RwezLHgb;k~CVXLKVJop0sgN4l&ezcS|
z@4Y;3VQC|WWx}YJw9Mmj);9Ls>0avpY~dFRzgswHVTXlZE$n4Zm%4uwB-zc@D}0xQ
z`Hq(oF2ND^h_JbQdUv1j{Y<T;46v6+v#7xDYcau$>ku2;nVdf?9Om%&rTd5=2{n&d
zIBo&_J#H9(SvX<griEJ;PFnbz-Q2<j3#X(`&saDs#e16RS?FeQ@vW1Ee2(K}+{;pB
zvG7yI7ujwtTw_sKxGa^$?`Uyx@`{D4(y&>WFSpM7YqECT!VOC;S90~QK}cEM{3{j8
z`nql5j)fv&mD;;(75#DwhH+n5DHjmT2qTjTo~-d=!P308P#7Oh_A<-&hn0nYVL=i$
z{;aUF!RA&qEscwX@jw`r!+0c&;$f5sqkI?@!YIjLr+dqUQ8tWHVU!N51yZ&ddL%Ln
zM27ZY7!OIv<<jAE$%Ro=469Wgrn6EQ4@(MJwrp=)*r^i6qhUNAMvXA4hE?yVCVpu!
z{8(6-12N-V)vO*?-JHFwW?0#EKM__vjuJK!dZ`sgZShN9hqq?BNa}{+4x?`v{ld_~
z@PyGhj2FYm4kIUw)?u^>BR33h7<pmjhf$C5hS4xgn<CT?D@&UOVRcN5V;2WWH5$uV
z!bV{<38N{4y6S2i2G31%0H*>+OM0OiUt4@(G!LUi7(Aobj0wxk;axt$p5eH6)zykw
zcssYHAfHNnZF%@o=Cfh-GV=X#PrERl6HaH_FrH8I7liP=pnVur>mb-su#+G^a!C1@
zao(50=+3|sF7hs65W9xaO~^Ohvgqs)#>-*!45L>VeZp!Y!LRtf!g6Cc^63xGE4Ttf
zPD5hOC0-5VwJ=78F)FNHE&DUqVGIl7^)LpAWMCMB!gzyiW2XA(E>{Ab^O=KLhG7f|
zt4{<okhj9%-T?#TWP>qs{x&>}cf;Uz2`6uFhcSW$d)M=hAm1p-dGYS(F!&iIGmM~+
zF>F6!ycdQ)tTtS9(YJ<cfiVB@sPRKg6dGam5=tJTFpNkT(Xe_UWu)D@WQB#>Y#u2u
zH)3L8^#aQ)5k_1%<y1}z=aiB`jSFLZ80DfUAI1A&ObDY`L>0xvFeXU}+_W({j45HX
zw9(4O)G$5><DW3Dg)uFR>0$g7#&-6>Fn?}{4dUe^!LNyIW?{?}=PbcxVa#T^37;Fr
zDx<(>!siLj7hE8?Q1BDMMS`EQ)$RN5k9(ho@r4MP)Wt%Ugt1h}mudM|VHDW^pZ;>T
z{{iafM^DzwUJ=IXFxD_rgFP#m2GOr}&2_wg<~L!i4P$*egm1%G#}3Z&oSoDBP=T^v
zW;!*CFp#a63zjOU{)xO%G`|mH6Neh%The|vhw-EEQ}T<ht!eqTFkZc)4%z)2#xG$U
z3FBxOJHq%ijQyhXTUv8>7(3H^7hBP06*aFtVeC!I_X&BouIGS|-vtkbaY)D?VH_5+
zDN`N(;x+r6?@y7O3FB-S$HF+y;Z!7l3!V_9=1Czp<GH7VoKDNP)>765=frtAjPpV+
z2wr4IVAt!V;(B&iBO<RWVO*8FM+T|%Uk~F3M_n7GZ2T*73Sr}B7`MVO9?QNRMux3g
z;I>uToiNV4=()>!w6U&6#)85s<V+g{ZQN(0kd4ANiiq;M{aMp0W#4b(QhV)mF)ho+
zl8z|VFf-Frn9e`8sWcb0X;-E~=JkM$;x<ayH2YEic}Xl%SlUJz8!j7lZIrd~pp9yx
z|B#JxHh$GSkJ>12W6e2VB^wXhs9<A;-&N7Z(OuesbH0Di`A90;c*I5(8y$~&PA<;)
zxON8ZPxx&ddao*>JtoLojIp|n$8FTGQPV~pkw3wB&--dI%tsnUM`&4pXtiw|TaX)%
zd3Ja;UQgQiymRjC5gBe9nvHz%^~-g)$3}hO6<TCx+sLtzYr|`!o{gv2Z9gk~@U;7E
ziw14Bdb*#h?>_JQ6FCiRG_>)wjYc*;YL(m6Mq>$~iH+9heG_8J9)Q=6Z9Qvudh%?1
zw?6x1>)g@bX8UY3v(enf3VyJ0h(<{Z@%W65lULRM=33im!$@s>VB=XE&)M+X2-s+A
z<9Qozit-CK+S%x5<5f0>hqd-LI@@^BMh6z1jZQYM|D3a>eom{rj2jnRsW)?9veCsx
zcN;y#dsiFXgfP0Lzh+)NU-;Ac886%DY2y_ez2#Of8`CTO*K6!f-cHqu^s&*Gk)HSU
zJE7gb+RY!kuNv8ifAxJ~p64|i{cXH%V*qO~Th-1$31pCsH%MA4$zU5d&K4Ndu29cE
z)Q720mTfr1##_wS3))Z{qeOq0jo~&9Rr0*eybRLbwK2lRJ8XLe^7$9w+mGcZJ8C0s
zY(2_<=W35#&_;`|F*e59>LZHYGP&=unN`f#h`O~dxOE$bjrT>z6inDi+6dYR*|2Pc
zZNx-w+lbhR3h()#8u!LF_k4D(K&hMBpW8CxBB#)LFthC|b;}%aIU*V5(NZ?X2_G+b
zcC4!R3Bo4|P7<VWG8=r2j49&u#5~hjyf#+ZSZ(7&-m>w9jm2zBHa@oTsi@5qoMU6I
zjakCE$2Z%?Xt%Q3nrExeP&X>$S!iQEb=u{A<jq@P!`$zBGAEClfS)kT9=VHb=tDi1
z_qvZbjXz`imvG*CT-C@D;mZZ9o^&m>@ul#u1ee+P_L&BK|Iu1i$tl*`^EHJcUm;k2
zvTLP{@hdz#JLjyi@r{k&Z0xkLR_<=J@jbl@U&qF8!`D0a<e&Ne^S<>q&#J4DWQ>tB
z{k(6J@GY!U=4+q!gN@BLeq`_HU1Zm+oLwu`pL~1n)3$L85zU`$Y-e2`&iL8JFE)0t
zso%<}T&z*&3jdALQy$NK`3F^lyKL;XagoECjXgH@+BhpA?6a}o#-AJ+Sb#QuxABLK
z!|XU~^6Bd!o1cwA2UX|o`^JBEK8NZSKEhE&yq8$-IX5_G*&8{>ZTw~9l#SEOb*n-r
z*ne&O&4F>f=b6t{GgxunH)?18o}XN2#3LpD%P#!m5EbS*k(^J<FL3-hujH50lIu3E
z2)`=$kBw_W_*u4Y2eWsd_uUZZzk>KqwFh3e#Ccorj*YuQ3do#<cQb@!3KkT+FM>kp
zyY~wzELbFhth5|LiV9l47kD6o;t`aHpkxF;NAODor6MRD!AlWziJ(jbWg~bzf*PX#
zU<8$fJS6z#Ojo%G$_t-!&Rrpbn!9o<Mlf)pXXTolhecjFf=42#BD|X5qY+dU@>m4P
z?P?yvt6HHZ)kSDj{cnt_8NrhgxJ39w1hs_J7NmY1A*Fj3t{Z_n0$&8pBG4ijbKRXA
zfj7cW!sd9GqrF;o1UV5jeIWadwK@B$`07RQl=y8LLH!6CMDTP3jUwoGDW}<SHC#80
zpu;4Uq{hsC?TjX(+;ypXXzKNp0<Sy~<_lgq?`s}GiwK?<=Q9yB+@Q6NpiKlVBY5x=
zSE~s29QN>64#h9{xRvm11Z_o=_SMftl-XW*qx*@cRgJ$8LAwarGXW8FilDQob!0ib
zQaCrRIylWl8$6itVg$Q<T2c8Oz_(3ux<=3~f(a2!6#ecIjELZ!2zo^Das)ji=oP`>
z2;Pj~l?ZxA@Vcn=iJ)%;uSM|F%|`tqs4%<ks}bBOo>TS*t?WY2?Lyjn_t&l0CcA$G
zM%)w0@(y6NMo{k2MuQ@FBZBY~MV_nQcv@{Ok@4TZ^M*t)OhRTl-x4xZaNqF8!-c#p
z_+me0O8u_zu;9oDMny21br*ptlCcr~ZX1CJ^avI_l=*R2RXBdRHLj3~uFNNmjR^YG
zRZZpBS@}V^6^g)$a4TQcRKI?z!`dQ`2+|piAeQFw2ol1RX^A5w6~Q<m;|1Rr<WUHE
zpA^C52)2l1N(56Qm@j-yg`5u}_$Y#pBbX)<ezbFX1Rq8)BZANQ9g>wf{2c>B;59RX
zIif>8OUP`&rBT;h)_a=_8mZ2U;EN3!f1a{HZY_-9lL!_?_@OZTPb8l)SRr3W@cRRv
zoe$?+-Rk)wg2f_a$V(zvD*Q{quhQ~m5iA$3UGUvY&rvgfMFcA&SS9lH>^NIJ?q;6V
z>{iV@Ya;kY2>Dte-$rOJs&0LkmV2}6GN=vWePaaQr{mfr<Ojjc5&W2ze|<A|tMGZJ
z-P<_qjMRRLU^`pm&l%Y_T}N*f*b%|65&Rj!F;V-Cc@(l!aF^h2!99X|BiP4eM{pp5
zcmb7|!zXi#j>*}uDrexvyn~{1NU+2l*B=oa7T$JN-jN87M(}Exj1E#7$3=cUf*TS1
z6~PH{o{ZpP1eYTCTb!pNI32;62+l@uK_rasTm<Ji@HQ;e_W{qzJ*xS|$7#!pst$W$
zt?P0G*B5yHz2VJYpK~RGs}cMY!CMWrYaG*NDV>U@t0@m+zwP=rf&x)wL~&C>z9o1&
z9m^ddciB@GsV<NiRnOe}qbM8&e*j%Diu*)TNbs!-zNrN>ibRnWMQM?|e8+<*N(e6+
zMX@LzxTn9vQ#=YDF}QceA$Gy{Xr5LwitBwmrJ^uGDm!IFvuqR(3Mp_t^Pwnc(Z|nX
zc*lDxL{X6;$5AqlN>Mx<<qr{XK8ngwZkQq*g&jqeC?1XCnJ8LDQ8kLkqVPshFN$gs
zU~UwXzH?QNqKA~;<5ARzq9&sls67!yZPBR}#rN-d*4{2mWRmKL@JT_JVBIL(LNr0@
zc!Xp}k&~AET~PV`rhCRyQM}%|P=hEMMo~X~cTNK}<#<}0z9<?+(XLcZW5FhZO{2&Y
z;vd&IKZ<!5e7wk;iI?V4ypdC=MLM(}>Swl!qIDE+MKLsrHc>nq#Y<6i5ryZXcu`2(
zD4rMcf?&HS%C7wHnb<yx4kGL*$h375(pfNLOOZv-srJLGYZQH>=odvdxz(K|8O6&{
zOk1M$isF?hdJ3<1)YGkQcJC-kedXyB#rU$`iwiaCkPu&GvFEDl9vsDM!ut!p9>oA5
z1EUzkJPKdG+hZTlir#V!Kb%AIW;%sKqR1`v-z;mG2#qL)3wb+=5mCG&Tu<x2D`aF8
zqlAnW93wbZ@I67lU_g*5+&m)VqEF@BOiO}MgoImZ$*K_<ktm{3Y>wi`C}L5>qxdw6
z&qN_1xR7lu3MYzG6yu_p8pQ`J7B2ooF_CSOlC!R<9<9`P*Mum3IKjQq0+XZIvey$j
zrfs~K`*?<DN)#`&)`}0+rbRJ5ikVT&isHj4W<>FE6nt6xD2gSETqi4LKk~7woujq*
z+U?r!`F?)J>?r0$ar(o|dF)m@J#(X2b-(t`*#hLu*Ze4_vMyc=q6o}a<P%BoqIB*~
zRLl5W_<F%FqFBs`(s#d(Vrdj#Mlo`+_7(fxciGE0s>HMCT+US4uH$pvL`L*K@v=g2
zCDXvp>!<{*7RegHZv@vy@vV?`g4FqrA?yFmh&DvAF)jaI$R?IpTGD@lwk3+KQQBzX
zHxX`&;^3PZKSfdL8`avki|}W`U!v-x^g9GeXs5I@id|8hjbiu8jNMV}5w+7%?2Tey
z6vv`C9>so^SQJO(*6(cL#k50F{J~g+zjfS4NycE$;i&p?Fk>Vqj@zjnjp9%7HKBlK
z-34FUAz6P#aWcvST&@$$RLpg(l6v}=+U@>3ic?WUesiBWqwGoQSI#`c!R<a3TBjAN
zFfT-Lk^Mb}p)p*F;xfm;7#@isHVjvyC=|o}G5*{N|1fY4uu<HJ;x4O0VyE|8LjGk<
z3E|2Hg|~(Oe@PaIsbN1ukbh6k6w-c(r(g{C#X!RA)I;?O$514O;xUvEg)G5hF(Af6
ze<*!Py|BBMtCT+w!zOvb-?urVq^MC?E{0MuEScyjEm%gdYzz;^@Q`qxP2*i2N@^L>
z%EwSaJXRE}Bp8{Y0)IG$ee!Ir62qf0w2tvaFsjDzSPZpds2xK!QLZUiUGQ;1{;;5i
zkRN)fx!)7QZ+B8*)`=k}hTIsQjHx|tmtftP`eKGV#{UQ?p(loHAza^HyTHR^J`{Rm
zs24+%7@EfLR1EcFcshngF*JywVGNz`X#59+^K0&`b?#$jJgoHkK~Lit`t{Me-*tNp
z&p}T6W5{Q)F|?5M_+l8AuQe0?T$zmNPh?*jsy!3KgvDCR7|K8D*<CEV=BpX4V%Xau
z<J=N0_LJ+`7@muvM+`5=&^CtW#qUcoydb2#U^~HorQA9Q?-)ZTrZ5KnZ@NX1?139H
zUW}nvM-QFlFRF=Lml(RT)y>K17DK$Cr+W+|m%7H^(SAFunq|)z4><Ffo@zP01Ye1v
zw~#)9#V@-1GN;0+^J)yQ3GXlXy5Io8N1jq|;=F3Ttm@*87zW4iW(<28W^}t*pzP3$
zAu)WJr)~|4VR#Im#_(ATZ^tkqhVe1HA5#zdcVZY7!)OWcUBQtouKFtEG2*mih{P~9
zhWBFdi^LM7LLde`%?%-@U@(S|kfrO?T68!D{?3E{tD3R9NR*ZSRAw^mE5;&<ArS+A
zxlYZz_qC#TRd;Y=NQut4wC22N+JqP;#xPHkJxSyr#xNs>$!VP_F-(o&1947^@h7br
z(^*;7^BLgmQ>y=d6vM}C{8tNfU8kO{Gh>()!)(zXyuo$;Yi)8}&zu<M#_;1Ss@xj>
z?TQ{MFkciF2rd-N>6r0J42y(w7lWFg$M8iAJ7V}XhQ;iaF|3Q>J5gB5T8QDRdme|X
zV3)<PT%6?VZmax$ea{)ginM&CkX13P7P3b08^N`L-wM)icH2Vhg?}%&f#Xa$ZKEJb
zu%5PVQpP4$0Xvtp&&|wT+V7SawhG@S_><uF^xdCh_(eEFU_`&gurr3sF<gmZR}8y3
zuFBm#f=6OF%Fe|>CWien9Ejmy42L)pmelmQ+V3p+d0MTc%lTgWBZk8q=)Tv;mpdLJ
zb)Kux@Xr{INl@owI4<Oz;9r7FzzHEI1^*U26~pQD-7`YY3Z6SrU}z7`nv?OwbDj$^
zTomE^)74XkSKL?VY7GCxP%w`B;;P|Yi{W|<H)6;<qpG9*Zuh@2+>YT6hw<I+n=#xH
z(rkcx#wOQYjunQhKpYvoE*9Z6=}G}gcxA@bErw7?f+ay5_s3CKoJHcuivM@Ot@(CU
zr2Lyt(X?i<I35sQTyUVw+)Bk!I*x`3Je@$9IQO-&G>$LhcrcEK;uspousF)aQ9h1m
z;%FI1g}Ca}btHs}d<BT(Vc|6eD+@j%$k?mIaV$6cQE^s{<1r!C1gi@^E?7g5`s*SE
zo`|DX9ATfQb{w9|TD__{>y~LPKgoD94p$s?<8U*zaXc+vv^czR)T5?2v*XB#tGAfk
zxO$wCyl3USvCaKd9QEnl%vj$qBUwV@;mrndRPCI*{&QE~xvHNwilbQ^cecA5r&H2I
zNK?VQIP!(~(swuJWi%K47J~Hnak1Q1akP%3TO8fv{1^_Njia;ZznbNFE{^tbbcmyE
z9CSV}_<~@&I8HpG@uIw==ywvlW~h<P(_fjEy%@*cw)rm!b`k6<_~M@hDDNTqedFjC
z$IEf_jH6c^uf)+Oj(NpZ+v^=ikI%Ftf2g<4h9x|eEZ5BmstJWVd0vg<wK)36`I!;C
zCE-vwK*&JWLMIO!+aPgL|BW~X3x6{$86srKlZBqU;JWsedw3jg#}SId68VTY{6gM|
z<J~w$rhSc#V^o@tj$@4QPBL`77sqON%KoOUS>_4Ep|dvSt|@rx>D-?+EhyaPFR`|}
z!*STmW*qb5h{O?%V@4bw#Ss%7rg>5vO)@?4I1*_|GERd8RV=BrWSo%kalD_FOb{|r
zuv|D}a#}tmj;X>w5S%7BJ$?7XI2Kh=&$W+5GFxzF`tB_DsRn9#Ge;zI)ACe9C0roR
zPvck^=LvBv66bI!lM)}Pj?C+`I6fEo7lJ(6vzWD(r!9%A|Ewi1`o4-|Ssa(*{45og
z$9bq9hecC)r%oK3<5&^L$~abu{CmOGX`MB3d?S3V;J1S7(s#cTvObOtX~{+|0{pG=
zyD2T<>DnLT*b>KYaqJY~R>AFYY)k9>#1W&E%F)kh$uDv2h~rm|U0t<KmMg!YHl?|?
zD}8srklpO{S=ydB_QtU<j$Ji;)nD=~kSF5-X10a)dmIPjI3&t{2rj(nE8NRtR!~pR
zBXJy!<4+Dpah!?cY#hf$=WjtO{Kal4{A614#kVSvr{XxBmNeSr`Dd}~oH#GUab8H3
zE&tWdMR86ps9lNUD#yA6swMDG9M|{=NT5(cHM#3?WD2>#@nN>>U-5ENkauqhxh;4{
z@UCD1@sc5!Xpmh{2=x!&EO37Ug%c>vp*w*h32@uASOO0ukd;8&avDTZRFJpYpU<6C
z>%Y_%mq1DgmQ0{jI?Q*TRtjYksGOEOn7~76UQS4P!3qgfOv@_?d04PmA<rWTe4Od2
zBKW9a)dZ&Q<nJtVDQEcA6R4YjJAud3A=F5qW|}`Cq?TZ9!8(FZCeUwahD*3TQ>9ZA
z?oIF@hAQ6d1acC1<A&$oQCg8TuG|EcRn{UkwR#CWB?=o$6sa$yfgrscI-oU5pm74{
z5;&hglLVS3FeZVq3FIY^pFsBndL-aWpc#uaf#(xwp7z^XNDIMd1Y0K1O32BpxondR
zzYU`<+Ths)%D2gWE`i7;?SqM~7ZPZfz)PapUa*58^<8Z;ItuTUKxZK@3hv2P<#t~c
zt&2Fj3R2Q7fdYM1QM{Z$&jf}gFg$@?3A~cP;IvNf1YS+xwFLU4C4GhT6MVS6N@xEB
z28#3hth%o!Fd)JI%WJ%<?^UbrgXGp53DoYTlzF`=k|7Cvxi9N2;X_&4{{MFI-WJIy
z!4V0Z-K@Qnz`F^IOyEi(mD=1v8H?|#kVhvlt*@%P_Y&|Y@M!{{B@jqJPvArGZX{qP
zFd>172?Rw#<?#uG60pP>PT->}YEH$=W(l*kCopcKiiKA!fw-t81e1b}U`miW;}ZDe
zvYNfWFOtXO>d8Av_!PF=1Xw1M1&chReIWAbX}{B0=C+F6w=^d>&NYLHVS`U#rYI~B
zoRz>FA+yuI##L@GH-UKx%ooYAVyfI|ph8?Il24e6{Ta1eXp0iK^sTD;&l76iwKjoo
z6Zj&5#R)7)hxV0_rL2pz<m`z8%Y-i%{Q90eeRo9yD}}ETT%DG$5%P^-sVLSZ@Ld82
z6F8K>dJ+Ddz%L1GNZ{dJ+C~;g0-F-}A%QIkY)xQA1#L5HZMN&j1o-&g^R?SwL2K}*
zds_lOC9s{t#WwfqW*YtS+E7Is{k$jpkY@)oI3;su0=p!NUlXYFXW`$3pL)%+Tgcu7
zT0g5A-ky6pVb4Cc6U((<@POd&3AD^?@MFkD`5y@!PT+4*rmrIj982JM0!KyiXIg%3
ztv2!_*Ix;&>!BXOClYvely*{(<fW3HQwf|-VD&d1&PmR2fIX+3P2hIO#XPbjUr5j%
z55tlep2VdDE+<eaiHDQ8lE77}C2)u1zr=Mjfm;b&OW?XVZzS-qkWr6l>x$ORNT;XU
zwSr8>%MA+OWv5Q6PVrz88A)Uc=g-dyCXv@nEl(9r;y&Sp1n*BO%bblDeY{&ll&O=I
zM4OjX7b_}~VrlsUNfZ}eLa?M@DZ$c$WdzF#()%G<K6*%;<pj$MR!E|vkk`eIsB#jI
zB+)pDCL*ko#N$cS5dNrO)g&HEqFNGnXM1w8vZ{;l!=gFuYvj~S;t6p!Orlm2wUcN-
zzefw#N#e<*`uN*%Xs#swI8>ls5@-L)s++{x@7-=e5-kaja2~v&Gbb(2O~RYzsgthv
zXwI5M{Uk_uJ<-8)p;Y$%da7MLEwMLBVpRdv_nWd*lXxMCc1h$j0ZFtKg=R@KPvRNj
zfr&0YXj&wBL@Pg7pn-d|3a4cft&(WXl24-j4mIC?Hi<4Rv&o+mUz9v~(fxc9Z@=dq
zI6@<~Ps{r!(IJVB;_M{&auS_|yeRmRAVcUPq^n>z!R~@R1UK!==qaR^AoX8KqPOrq
zX-VHC`lb1+LS7TxyH@4m^(22$r<xzHfkFl)@rIDWf^P~A5v0yrLWT;qES>Ro5+lfy
zSdqj#BAlAU2T8n}#K<H@B{5orlad&d#8}}GR*DdY7D&P`d}tfh)LpeQba5I<m_mYr
zAwf$pENBbT%lH`?(IjF?9t-_17l|Y|apJ9{NF2db662B>FML8;^L-)wCK8n=Cc%T8
z_xNOyPZ3;}*I-%_)00?`#6ppLDELA{H5r~E{G%j37BW+CmLTuW7BWY0uHd{R=BMx0
z3TJ$h#HS03+*dr~izF6_{8PctlIraLJ|p+@Bm$b}<N?*X7ALVJiKR(=nGS*9`1(rt
zvb1D*5?>21RaQL{SF({Ou{nt!lUSYB*(hX<;5Y0tLcSGTC-|M<dO-%VfqnU)dg^^I
zl1+lE#=3q;;-$tamMtRrS#Yc1wj_Q^VrWXsc_@3kND7@(A^akoWQUMp8g?eJD+&7m
zA_uTLi9JayTZ`puu{Vi*NtFBqr9Q#_Bo1&Kn~f5)@p}>nlUO_vOD5tFM~NiD<6w`&
z;UtbEanr#q2S=0mGl{Max;Z$O#Bus{P{P4qNt}>)Z&6sh@yR5vC9$`a_wOW5C2=~5
zGf7-bqGzT2e$RN%CUK69s$=f?r8&K><|&fI1(DpjkxS>LBrbFO7yW?k`bWrB!R*!z
z?4la2Rrl4)yPm|2B>qie;y>9plNi!8`}JB44_@@~*6k$jB(cAL?%gDcILLBPz(IzC
zGS6paIw<JiJ_pkV<W}wDE#%;S2ZbHfo19tXfkxQ}T&MrexpC3QTNgGrhJ$N|avz}g
zR(YA7a*H}B=Aciz#(UPe+IPw|Q?BN7b4xlX<si>Nz61WkrnG}c9aLpp4$3-s(7{6v
zDqnLy;-H*^@(vz$Q2N2#3J!*k&a3FKQry3l$=|TfT}kA0M!Pj$-#NdsgDK11{M-lq
zR*?`2{+6}KoBf!BCmpyPRC7?>!Q)K)5%&`gKTU%g4r(&GZn^X|vw99a)^<>b6?a>U
zOz>{Hm{)17n`G2jS6v5g2lX8^aG*KxIPkIr9ArDlaggg^P{-WA=H#-d^Ec#{yX1TJ
z8SnjbbBFfylzqR*qK>&wIT-Pod;F4|h7O)~K+=?LpjB2Q2aO#xaS$)gk38oezL8t=
zY$JLvTH8yB=aR3FmE&{J#lZ(%v}O*PJ80qXW0H8zL0e|3R!&O?tsJy=aBio2$G4g<
zoOA4Q-oPVyZ5%x7fD-bymweAVc)>wO2b~<WbI{&F2iA*~!;6-#^gA`P$cmO;>UU;C
zU6A{dgQ3^lFS2|dY1qGkmpDKYGwjVqOi6bKJshlY@Qs6)9rSeYo&&#wUaU}hbTEwd
z_^Z3O!;h}yyvc|h^mWkB!K)4iI2h>QH3$72yzbzqD|xItR@~V-8q1$}`$qO42X8nS
z?4VHVELJ*yUPj^DSq;43yBq)I8p4*dA@?m7druF`dHDX^4evG@?qFme?+6FvZ?n5?
z%OQEk!Ml_@80BCLeVxitExcLox#x36v&r@Gc6vL1tayBIY2#sKd;tf#gK?}NhsS?3
z!-3<V_m^(dLD0d$54DhksDqdT%RyKqHnY%Pi!f7<WK)6Hv`#*@s5ooqb#Kx^LK+w)
zgWhh``|JERU2{_s=AeU(8S?uMCOG)S!6F9}9ZYgC!@)-mCbKcKh#GjOJDBRAWgB0r
zPNQjT2EyrNMYBfiOTG^skh9_{&i5?WJRdul>tLRPnGR+#7pr}<9W)&D6q~^uaZ<uc
zpYLFSI2SrdmC1XoP~EY8JaaDj$QkLU4nA}6KUUTy-{%g#aPXyruN*9v7RBfo(GuZH
z1sQuWk7t=Am~Cmfc-(Nw_qE)mG8I-hSSd|wm4nqn9w?i~md1+#HY@B~>tH>rkGC%Q
zzU8>FK6{;m?}YFm49~o5WV5fIx81?dEcwp)-#ggk;0Fhr9sI}vYFguM4z{q5%*|u3
z-zqiY@8lzAyZXsd9|B@SVzvIlR5>`#4(Q-l2fsP^odG)7>0lQVu+F{T!EV-3C*K|i
zds*Y%8drEw+b7k{`Xwi_9uGLUgzRXhk1g|%gFhVnDWlV22S*%4y5=5raG)BCT4M<8
z4&N2hIF22YQESuL+~zy;PdGTqp6lSegX_P$|8{W7!D)$_zRoaVQSXd`zOxcF71*Mf
ziwh1eI{1epEfe72vV$uQt~z++YA$=nJ+)F9b*WsLpU&u<f8D_i2md;_d&$R+#`MpB
zD4&{4Hj{VT!5s$+Q}`r>yBxPu{6id?rjUBZlaWHn6iTI#nL@Gcu7WAtmqMWw?oXj8
zB`Fk6p-2i@De%M{JJ(+`bH<rkh32{L;*Hq3y6<e<y-DK-Qs8recT1#DJf$8n<7R31
zdg4EQy`@tqlR~u=s;5vk#Z$wmkWx>&hf?a)ZMl>>kjwMG6)*eBr|{HeA6o)X=2lFh
zQVI`?X5|zfNvWgvoi6*Tq`=2zRY8(RQ+T?dmxR}2A{=_z_c+rt#+{pjH-#E0)J)-t
z6l$fwvu%66ch?qlrBFA8Iw?F!=dEnYn_kHy4!NC8r#pp5f6LmLStRm<+avnCmCd7Z
zDSUh@yI^glSucfmx8>ANp#hVff-$mD{IZXdhD=fljZ+wTHTT!2yu?QImD!}o7Hw6{
z?7%PDV{dx%SePt|l68YA_)=(=!k`r1NTGQOEmG)~LiZG&Nugy5?NVr;LaP*7r|>+>
zWUadmJ^t!`E`_!!JS&_|KJVBbMsLpH5X7cS$qUT>_ilEX4k>g@;l&hQN~y-&DW#sg
zol{`1VN08L*+(Zy7YV9sN<D%LJg8BVqg;;^UQVG;3Vl=PNj^8XR|>B%v_ifX!+gC{
z*mT*qxMm|d%kS|uS?TJR!mBA9zwCQGg=6LNUt`MKHQwRM>n~19R#$Gwy8}dLAPc#X
zm(IZ{e09I?9hPSbZ>BILg|||i&S7{8Z_BM=DfDiVKdP{=;1wV7mqNY~BJr2c<EJD#
z^wdVCFe(L|wUEN-6vm|BXCmu+St(;vIC-D%J+_1^zAb+3+Q>#EffNqD+o;s2MwE1{
zo!9b;&tz#|@ii@wLky*0r4UZRPGOET`$!5m=Qoa~)SUm)de{4feEa?`5c@x-t^+!1
zqwCtnVEfX0F9Fjr*4n#N8}Jfp=)H#)LJK{FP6#1DfOv~mT4`5XOs`4kz4u;1htLCr
z-aGtHkIZ-ebLQN0=e{?i(af7sS*=9D$;#|>%wh6dI=t!7Xl7Atv*JvL%*4g$W~55~
zj*9g#SA?RbgU<cPL`kQBVco~*7d{4)0L|YGrW>VDI>N%5!DM}@*m>!gPYw9#zd5*o
zr{qFLnzKvNv6N=F1KAu{mX77=xR#FV=~$7D-_vm*9S76#+HUzH9UIfJDII^NV`Vyi
zS{=749c$9DHXW;J3g<T$Nm}dHrDJ_MHl&;9Z=Vn1M3%U1w6u~#{<PH1>DZBuo$1(;
zj;-m~mX3k#(-J=<ZKrrkOKlrYeG*xflwF+N&6AOohfU)4P;{kZ-{<N1K50Lb<{Rzi
zY^^CB;+_2~9jDWAI2}jQag+kUQSVqfXnI~gkw{D5@pPO>$4OR5q`6FZinF1@X=kWH
zZp>wxdS_D4rQ<wxQ94Q%PTO7}?P5AE(R%XSPA84zyfDTxs8p>6$1Q)S<4QWN(p1`+
zK#d`X4)to057lskA}t+vxt%w;>@DX1(5hRl=51O%{Hf&mZ#wQ#IHlu#I_{_AK{}qL
z<9RwB(mMPh=@G46+)GsLlXOr=)y`}$`@G&$=9F#iPkq7FzD&m}ims-~db<5}I^OWo
zL_I?b6qS8T@n5eNr7fv7KcwR$E#nUJJm*t7A{@x<Ko$og9f)!ulLOHXY^W*GC~SD2
zM4eBI8$~<y6>W?37zaqCYN>g~vqaj{I0wERkphP~g47S$9mwH8D+gLTkkf%&4wQ4C
zyaTx%$m2jU2Z}q8*MWQv6n20{oa)T)KtYGuLTYdU2dG-Ain4_q=4woY+=@6*l>N;h
zd7o6mfsziCcA$&{rO0hh;uj8c;HYgA3fP;iv(TQ#J22_Fy(~A3vY)HHI@4akfr<`P
zcc6v?l^m$-fW?6%2dX&e+v|{MLkm-@I?T>Ybl_a8nl#*0f31aPe9pa`N<&YW>_9d4
zu{uCm8zT|w8S<x?sp&v12O2ui$bs4pq&Se~fZc&q2kKCpPsP=Bph09+>Qx#?I^0m>
z>+vp7C(zJP|JUc1Q&)V+q=5t4b30`lJJ7^|<~(Fg9r%j+_Cr!L9tG+y3IKCbTs1qe
zg~N=QmW)Iwa%d}UXy_g2O`YjLI|tfR&pXiBfi4bobeO@}iMyS4oc5Hm6z8;GT^;D=
zKz9c|i#;6X%<aiFf9=2@ne8+vgfyC4p4<C4(AR<Q9T@GvHxBf3V5kGbsD%#nry6KC
z9T?!it+ZN{1~Q>GQ`b@UJL>c2_90v+MIenJja{J*X*BPKJ3v!rB=6}6y6&E7rx6+D
z09mQWZjQ42;J_FMO?*soV5|e<C;%MhT0P!@2{gFv(<V~PtTLmEdV?BFo1@B~(IJ3p
zE}TXy`Rw*-KT+uVQ-9`woXXoGA1XeLyJcyqS~DD&>A))oUOVus1G5}h<1mi}vmKa2
z(d$6Kf!`cRcR*#GOb!R!%$*KYU649yV6w}BtgGtXY8WfCp1+jjaX?`%@l7Ew4L4_X
z2YgK8drBitC;FMMo%7$*yg>)%JFtK@w<Re=gD6R12Qt{FU`FIz2j($v^h1I?Cc!?~
zve1F0wA4GWh@x?@WijItM#|Fb8L73)9azDoi061=pZ_f3cNz`{{$z0_W1yq?L&hox
zR&#b-3-fNwTH+3@rv=1;`zsSpI<S$gI~~~Nz$OPaJFtb7?Tl1pE0b*$B+nAdd@}Df
z?Vzyvl-M<I<Zhak&&*pldmY$AcUsn2=|7}HnwuNi=fHk0c))>!4s_a{M32lJ5_KMS
z;E3Qy9XQ7PxKK_|FuXT^={V)UUk;ph;EV$=C}!3ro@JkN4xD%3X+d*C7if|mO1R;`
zO$RPAr|cyME(`v*16KsU%H$g3bqD%Xw2<>H2mYbh%VHx=={8#*I&g={UB-VI?=jwI
zB+m!5T7GHP@JJ|+nLJ^9>cBIhKc~IW&B|Z$UeJzo-&^ku&1FyGYd7Aw>FsuS=fHah
zK2SWkFyDobWOd+#6DOUBa3a!)9!`AiM3fVmoUl1j&539yGCNV;i3(0+aUy<CLOv(*
zI}zi=m#Y(Forq%sC$c$_-HEK6CDYsdrb7<S=5`_{lU%}@T)?#EaU!o!%Fc)(rGOK~
zoG9)@L7^97Qkb!b6Geqyko`+=wv-bkg}!!1%ok3S=B#aW9MxHdnk}qlohZkgqKi!X
z<|S5i!pce|Cn__k!kEaI;6zm>^qe;NOUx~dNsP&iWSXSM%+4$wY$8>6qJ|R<ooK|S
znv4|H<WtLu+D@dflFFFoL>(q%t;?hy<B-j9b|&>1pA<>{l1T$6R=zi@qSTm`4vbBl
zXzIjQPBh~zSz9~NoOuhzmO^jk#Ihz5IkaJ=En_=jZSTZkZYnu+WU-SIot@~yysH!4
zg=aS=Eyg8$COw_#<%HJ>&57Pl^l@UM6O$-@P9*eoVu%wrb4cGf(a(u*x!^#?{)__{
zX^Vw(rwtN(FvZ*Wgzp&1G*sxroEYxJ2q#85F^a|Eixa<hVzd+EIQxU}9Lr>k6H|92
zQ4KjmW`K<s)(KAReP|)2cL&R>YL>}P{OH6Kw*KnGEG9ouStovWVj5?EVH}>>>^(};
zotVK2@tIEZUH6~$*-p4vpChclF-dpQt18T}r{r{^fbe&-C_CX{q6i<=i3y*~ZRt+<
zoLJ$+?@svHy3lF<Wq?eE69FfJPJ~3M3?^a57B{82Oy)7pXQWaKn1o7M771lBlO>Ex
z8J9V+Tv(~={$Re&iS<tWDfE?2tYW^JaSh{IVeQK^bb}LHo!I8YM%Fh8>t-jmFmIjT
z934vAo!CQz!r~6bos7Gj*v*7|;)lfUV}4jD`<WbIJji&+i8<R-$@vIpk1`%(B=NYD
zzO|Q3<dhSCIg#o@9T!eJamGn613|nCXPr1l>zE7KTsZH<1t;D(@s^8UbmAW;eX<9a
zoVd)&-;CFtxWeQr<26RwM9m?wH<;gKye0IrqvP&4ao36Gto+OPi18ldeMYL`0h5O`
zv&5`_?8Flmp9-I6G`Zr<NIo<p=7ke4h5pKk*Md))5%Z4uC!xG|;sf)KLZQE~MYs^@
zLX_*jD9yqo6Js=EX2#eVF)^PBV;mzj04~sD>O``;ki&)IF6@c7<a8mI3kBIHH)8?D
zJfc)y7xFRBFO=|*SU)e_g@jVrg(89%Wm1fB<B(X|TnXkST_`1dzF<<?1tqr`U1eP;
z=RyjLt!5;&$tjh0p@It)S&>|@FsZ~?*@Y@hs9=H%RRvFE^09vk=}9hBbD_Em$t+rh
zkB!ONEH?6~;X*B;*JSc~y14|^X8yU`&m2mq>q0#jhPyDrg)|rJF7#uEtmmcrF0^o=
zC1qJ@;6g(e8ZmFi*qD*(Y~n&w!M}3B*TszR=0cG>TUxo$+J)XiY2!j$7uvaC@PW9!
z3mw?h-Gz=!x-fQP?950N_StM6PrGuq8{_Arb`R!XGxlWc<wEnh|E-68Sn1374P(bN
zGf2K=-rt1*Oh_5XWRMGknSAHM5GF$zhcVK!NoRWGJko_xE=+deM;E?l(|E?wj6X1r
zVI0dyMaH=hv**87O<-{%<0M8}uco+=GtT0nuyNrh7pA)KvkTK)aI(WMjI$Z1yD)>v
zOvak6rC*uQR%W?yj%NY!IV}F>Lb|XzT%eI9lS?RW7i8u%Or%p%IU8_cS?|nV7c|c5
zj6Oy`BY7Gwtg)K4Q3|>c5_;H$4CZr%GH*uA0v8s#(8Z0eZY*+Pu?z2A_~6147nZtk
z!-bo)MHiO4u-}CPTyTX8+g(`qQu^J6KV10Jg_SOB6m_m*vc`qgOa}6tUCVqO<9bGF
z+XffzeKZ@nNhq6{Y;j?$P_|Ks(gz)QUv{v#(}i73b~El_+{;LA`&<adR3&oIg+nf!
za^Wu*4zqRq5a}e7BQ6|ea*XjfBNaKpgpO;YTTA48nzNUL^$Z;an4e=j&v-#tFS_Vg
z;Q#vkGK+t^aD~ZL;d712br)S_n0tN8g@0UlDXh0$cqI587w!uFFZB}h`-~5S{*cbq
zdD)?=9=q^_^{0%_7@sq~U?iVmGh#l?OMJ!I*Nksmc+2FS@S$k`=)xyj`rJrzn+tw~
z8?kQ0xe@6`lp7^aBvkL3nu$$hjb@UWF^d~9OuD=>BNlFCb)%>o#oWl|Ms_w8b|VK9
za>&OdryIGL<Yvqxta;st9%A-qepU)F7Gx|Wd_JG;7jfe-UsjNFaW}qjqqG|(*rz08
zDdA7cS{cDBGKps_>qa>y<%P9^8{hG{eI++4vslFqiAe%uRpFWF#sWU+qOCh7NG@K5
zlHIVnVRNIJ8}-SPovSm}b)$wGHQlHsYDjUTHgh_?r%EWLx=}}1KQEZ|IGg5%UFbAY
z4cutxMq8mYa-#+F#%?rW(v-0|<5!H$82k6mOk1Ie*^;xZ7+W*8VI(Wfqjt>O3#Ee_
z9R=^?MrY=Q3z}oy&5iDEEOTSI8$I0k+Kq8;jCZ4_8{e-tm)6m4^m3!O8-3j9%LRur
zenb7tq@Nq#y3yZ_0d5Rrg-Vrjn#Xb4(?LQR%;Xjy--j?C?~576WH{pp#*vJp7^#Nu
z-58tizq$E?8)Jk%mI(@Af*TXv(B1I4G0Ba|th?R#k;%_)Omkz3DD{&YQ<;B0O8(-;
zbT=HrI>U`Qg3n~~E8{H2*=~9Z#DB+{-&jd^qe5M?51pJP;-dQbB$>GEhKF^9QDyWB
zPmKwMji1RpMnhNwOoDENn1qF%;l^C%PagkwWSP&|1#T=9K8xH~%zTMZmeRnLHrL@5
zZv5`X9XIZ}@rN6Kx^d8rL+rNFjm>WOc}ZX8rndxOjT>u44IAB9$9%m|HZY;l+$5B4
zbpG$gRyVc@We=0>j62-e$z+$X?sl7BGoe=PWn~}Ze#QgB=kV0n!)_dL<C+`S-8kyT
zF*aSG`7$oyIP<^UIKkwkD0Rw>dVI}$nw2v`KkLRh!Ozp&ulHYEU3BA;&@a33H}fk(
zx#~unh32^5V5MpCq|X<OH{G};eEwl_oAFaj)k_8NuN(K=^rn}XJGtvo+52uhaMMT3
z&1KoV9$zIra^o>)pD?~)eCozCCeInknPTiE^H)OInVj_2jdyNTk&z(dy&E6gC?un>
zjE`=7awCt7-Y@Jg8>B|a$RVRzTD=mtq(~W2GBU|n_cS?LMrIj(TGS+7`GuXVS!Be>
zh?VJcKcFln&$DDga5k%qY)rB<>a#3lqH1%>$i?*&&n@H27j`0fW$c@7&nF|ljNOy$
zBd6O7uu_n5(hECTi#4lRL`GQ|<zy6<QA|d0s#(StGD^!RDPz{Fq*A0etGS|5t@*7@
z|8Cc;)61poJsa1nVoDjA-c^g&<x<wxPbHJ@g}uCtiZUw6c<?^00%NhHTEr{M*zsi=
z5lRc%rdE}aC}Wh2?`23bEHYZlXd@#@#-OFvx-#m?NS0xhVWa($QA0*e87b4E?v=4t
zmqFM#-bz?Y#?~^{R2g+-)MkC{3ww%;BJoxtWFj|8MABr~Wi*xXm5ln-Mbyb_tW6jj
z$Y>~|k&JF%+DN3-SjJH1dtcZo`wffDWHgs?{A|?27xq?dZ7ry6Eo@EJT3gDXY^%@M
z)^_=Yy{(LPGWyB*Rz`an9b|Nu(S!CV-r7;77yqL1v?yv-Cz;;DZKu8HBBLv9okohY
z)Y{MFYZ*Od^p)`q7wN@2+lPWm#?*K#B`Qma2-QZNLp?(~-d{$Sc<Ue;gJle$etu~m
zC?oBqJ@}>VpH{Z-WDJopLdNKq_MtL{$rvuf8*dG@u@QECX{S9px5Qd-t(6=`QUJWP
z7pj>uTE-7DX3F?g#uyo6sR8tyUc7Z2i4AO%WGrl88!ux5XD2cqx)?>9%hk#@S;mht
zeO5bpij1GwlUkDT(!TDcol5;IV;VQ|7a7xKgj?FaTw>iHZ=E6Iz)O3+wzg|8?XzUe
zmZ8W{Wz3QBn+z9KC?j3Q<#?+@#;&zyk!)qHP9DUUFYRO3SY-;urDnHKe|o6wQY&R?
zi(VO;j0_obX%4ow=`wsW{4zavWTPyhAtN9oDC0$I+lQ8>5@KsuM$T7u%KlH8N4q0q
z5e;9s>U<ds*llDcE4eLZzC^}S8B_@=%a|-@J)Y~ay|S+mMgEkrQpO<-hc&E{v06rD
z6;)KMk+D|BD-T|KuujH$8Rb2w;K2qN8)ZC|@l3`h8JlIClJS>}Efgd&_EYc4*d}8;
zbq-B`nv#Vr!**MC$k5{~a~4~6%E($TiTK`SaeG+YCu6S+xuUecYEs%DOYZ@R84KeM
zlIc*?F$#NXn~cNMT24nP2n*Gsbp3ga_X&1wq?O(lc!I*LOwvi3$Ym_28cSPCN#%Z*
zPRlqW<CctnWSo_8j-Kt5aYe>?85d++q7jsF?3Og)w&fz#IUsS|C5iqhO3fggTwiKb
zr5-i=s*LM0ZqUsAE#VsNatX_~xve)Tu7*i1UfIcE%_|G}-<ENQ76BReW!$BuHB-{R
zG|;OhN}YPz&K;5_RZ4n5v#E&Xk&J<*B}xxzj=Zu@d1Zgh$`hgYU2S<z0YK}m2iZM%
zNkbsxlZ*%&2<p|<X7k=tz~8pKk?~f>JKj*_9t$b7xi8ZbKG0Es)|vDK${wj;iS!`K
zgE$Z1K_(BPJ!aV$#>^hmEennB(PSc&sQ+VGq=HnOdV_Yn`M*(FJ;=4%LOh2DIXx)u
zK?zbk$n8M^4+?sa#{=s2ydLE9;8{)cG3M=iqv@&p{2mY{_LJycB85CC>@nZ&Sd>K~
z)el7#;euzLOT>$LP=CHedPxsTQ8QLcWvS(N6Zap8{=$Q%MWxanWWYj784nu2s~68%
z`qXJT4@NGv&_ATer=kayJZR`aBM*9IwpI2Zu~<qC52|>O;6YW&dSLayQpP5EFgdd=
z$%AAM{b{S7#e-i;rHqTUXUSJJ^MUA@>yxvWwUL|6gK8dB_n`kLD`hDWsp&y24{Cdm
z!u8udNcEtO2hAJX>Ur>Mc3agiQhdcy>N5Z8i<GyEENLF-MNLwlcFlvM<x{FQwq@HL
z+kkqYv5k0R51M$e!h_#wXFd4JgAN{a^q?74>p^P|y=V?Yp4MyOK}!!>d62okJ@m@H
z>6P7iK6(F~w9)62+tT#>+uF{9_8wfUUvK3VtNOu0rlVJ^Gp5-(dC=K|`5r9rpo<4x
zJ(%YKmFng}cMrySFy4b66b$rAAKH)yUo)p{PwGhzdVA2vgT5XNV*MKredrJagwMCs
zKZ4U1snqFL=HHP9dhnSH7FKWPn4!!^31yfE!<mm@94U12q#C}bMzZn);}~Hb%R5UB
z6FivcLAnPH4<^x=vcpWq9~po4U<#9;7^gB)!O!(i<LoaUOlLB~gD0=-w>FqRgZ|3O
zEXLW4B+g;-n+Mdrly!RG@*p6rZVyxsydKCx@pzyJo}SbEdx*waow3-2G@r2gJun2P
z%7e^9LJ2d;V4UlruNj)1Oe0GpxX^<|6j4{K*PL;L@s*Mm)9UfszJwdOlyMp3az^r@
z`v36YPY*VGu!TeqsO)MF)_AartD-=n;8{zX<9^=A1=kbjY^B%sCLL_FX>z05HgO;k
z+3LYI3eJ0pyFA#=_3ZFqrw8Z%Hd{pwR3}-9?Dk*}@5^2fu6S_OgMA+C_uzmB2g#pJ
zhZv80aKeMb%#Sc0Wu)Cd#@i)A=_HG%8Ba0(#Yho&hRIn*@;v9kDVV)?K`0kJxWxRj
zQ2wUL*unf)9W|I*d(DIE9^7E-9S`n$a8r2R^57rlw}nDw|7HHrgGV0R6Z(A*9tckH
zLzO@F;5m~gj8BF28P9HVp!9-{0z#j<F7k~BZ#~$hV7G#I9=!M9dj+EveDL6-2Q3t|
zROkm{L@3CrAe(|n1*<Gl76ma1hCH)GDTrH{kV!!_6XKbf98vAD3LaNXf`aPRlH!Q>
zOQE!4yzOL65-ERtCuLVqSV0j5$95;=Q1B$Llv6=21-TV-U-B>(WX!7|ACvry1sKU^
zBmeGSNWq1-=G-Z&pqPSE3cgTKTtNv1B^8`4FHxcw71FE!B7U$uT$V_iF0G&pSCXP2
zUO`#r5@R_9m6?=htiV{2kv36D!LR(japF~2Oi)mjNuuy6y(!Y7Ac?ab9!DfAurjwP
zsKKNfV|7NVr_9pGn#^knrM7}5ug&EyRY4sEbrsZOQxnEC#s&)POzJa!$w)<pr<o5V
zG*r-tmBvDUe8kk7D)@?(W{k~+^+~m;Rtj1x=%b*of;K$L9Tap_&{jb^1vT$V?Wr@b
zTD-?4+dJzIF-e^i99ommOF?f1MwO(_TvZnZU71`BMs`!sop}$jm9LrfR8S?a`G=;;
zBcu&glH6+&4!ukKMnOLX0~8EY@U4RK?JV>@!~P1++bummCPpokh`fJd8Khvag74UY
zMDiJ;fJm=i(on8^7~^op5sV`lM={byW0pq#pkRywpF*Fjz*q(26r?L~D46?H8n4h7
zE-;Z=*vOK3nKVhkWDeswT>MA&$+FinMZr%BriwaeF!`Brnu1@LOc&M)_abI8|CMnT
z<7{Cqa5LgJ1(ayAj2=|oslcUx=7^@itw2`j%skGkz@wnPU7|!iuP|2`KfJY)cyp;l
zt(st$bOn|dmcx3Qp&+1Og@WG|1Qmo7ETF0sgcW4azHg42r{GbwD4KM0c>>O8BGELQ
z&r^v+;)@h4R<K0DQU#k&M3IA$%SKNrq~w#9agpVU`ToydukAFgJR9tPDEO1YM!{+Y
z53Ld{1uGSLBd&ey@;DmeH44_!E-P5CnD39JfcgFJghMBy2=iV}XhM;oV55Rfv@PzL
zt&CelFXfD}Z4-PulO2pZ83!gs?oqH;!5al{73@>6U%@p6*A*O~(af2AM8Q!72dVzU
zmP3q04l@}rO**FFxI$m}O*o_A1a-cGzZAsgs5$p#@`}CILLupt0>ZW*k_k`K($T@X
z^-<DU1?LoOZ=HOex_6Uhd0xw`ebx&KE-D~G=@OI63jSttMd(*4V%gz_f}1o7Yo%wj
zb%nmAf`1j<Q_%iE;%x<~Yh&*!xWifBYdeVzmPb`PXuYrC0YwWfm^3%{#Em+T_>d~0
z-9Kopb|7&PBZ;<=7Ro+VK%Ab!damGwf|U_TFBQB}@S0*^Rg}Cc%2*Y3yRs$zw>ZLg
z3f|L7t0KRO4+=gi$gCoZichri?@f$SF?WE4NQ7!;BUQXTU?n9JXQLTOpYnHFjEeDZ
z60@oF)i%Vch*JSpvZ`p@(MsvZ{1$Rp{o0;GMNSpD*cxBky7z$9vOJ1XZWUb{N|epR
zB(I9a2dtzNP*G4tIThtq6jD)GMQIgfR1{G`VOc^&NowT3mZB<(F)6OX8I?o|t@#wy
zrBw4M^Mz_2FG_4kB>wqu5YKL9RctyDRk*u_s_L7|M$Q!86;zN<MHLkPR7oYS_V}{I
z1Qk`O@m}QeB2k5;!mC14VNsE!qQ8m(Dw0)LRkTvkT7^wTH5K($e5s<kiW(|XRn$>Y
zQ^maNQQ6x_wN>=#Z>y!^{3zSx{x+?@Ek(tdfwooIrMfEeY_V*cVM}9Dk9Ib@L`tg|
zn_WeqeiE4)sA#CtcQ)~rN^jb+G@`Cn>HFrHZ)dI=-`~<i1%0xivtqgVm()x}a}_OA
zv{W%+d({5vwyqnc*9E1%udSVDN@}8ou#JkgD!Qxap@M2?r=o+3jw+~z_9VWto_cNX
zL|Gags(HHY$`nf%71Ku9O2*ly6;Iw7XX~aSN4b=zWmCxdwThl9`l|RwMK2XAwnz2m
zs-o^nRC(mmxIQXAzP3=ED=S(0QMcbn_*O;6jI`~rJ??6u4^IqKF-XM}6+fvMtl~Qr
z->Vp{()-~pLsSe`F@pI}6{QYD4`cq-RqIF<qnJO-Y@;k)oe`3iuE>5+F^-~6#TeDR
zY8%T)giMqssF*~Giizx;d^wqJ5|X}XR@{%Q5MS6WZK{f&RX8YkXx~-*qGFbc*(#>f
zC|tEtn#p7aBUSRN(5cyEox|C5#@|#7Et2xNd4w(%Q$JZLc~rQWkIiqBRm7J{B|^HQ
zg0d<rl+{)ERP0o-ONC#Bp<<be<rEt#f+`l#Ol%{yNRdJmY%1of2vhf}IQ6@vy|z-+
z&85)oZyO$&N<Ir{K&jek)?AlkDNC>8PJ3lVc4;xq;_T8A6-${Ar#e@t_+7=JhL&{{
znR#q~s8~hwqM-CAXIC<k9x88H&H5U~wT$G}x0<wG#Re4{=?0NaI#|{cvnpW|tr+{G
z+ZDBJRzbLhMv%!iMpCvj*})jQA!@gZJv6UXdT#^vs`TbPoTiDRV!w(5Dvqi+rs5zq
zQpI5vM^rqMlA<OhY@cGeI#kL*FN>REd9*%CcSapoaYDskw2pPKOv!CKse(-F7Nwn{
zz{_o;6x>;lOuy`kI;-Lw#YP9~BZ}3gk>^!BP;v5P!UfelalJ^Qip$I?dqc(Ff?rW_
zmH9QHTvw5>$~@D%sp1xk|1jRAdB^0A@T3=({>%KHQ0`O6@k@hmoQry>;%iwdJ<;}<
z8%AxLRKWI3#d8&rUPO8ELd8o8&asw{Dqg90t>T@E_bT2{%O6|bGL|Y}>+&>-kdzN9
zi2Jui5mKUppV)^;gx55YTP81}y?_^4z2@;Tvlm&si1DKS?x?-XqGG-97O;^X$7Je$
z>zNMLi~FtF*g3lwIlLe@63K_G{T9R#$?ZiRFQ#btNkd*Q@_F%vhSD1Hdr`oP%o?(2
zC`dJUkx9eZPu9X-6!Bt>7i+yJ>P0axex%}F6!)Tp7p=T#?L|p1N_kP;iyBm$7t}LV
zyh!k(v=?Q(=8(mEQGrQW#&V3Lm-k{=$UIZ6$Vw%lSN5XMZu9^9l&Z3r#F*%X#Ka;z
zJ?kQqnOhlcLa*ip?Kl;$$w~t+8hTO7i`tw`@uDu1RK_}t<gCt%tH(Ue3p<ngUVJI6
z{Xd!&KHv+7MqYfydSk{Wj7^1Sr(Lnl1aIy|3olx7w$A40t+D21LK`pIdNIh0!CtiU
zqCH!`@uGtl9hvuH?BqpPFS>crnX_FOsrbc>(cPJU&DcZeOVXly3ckFzxuM?FlS1k1
z#ik|ZEt-C;e9PFMae(j{=*9Jy=0Bdk^J0h><Apxdi;-T8;_NUleRtj*))B%wc~|WB
zf{*diN6<{`4?<b@g?WQ<EN91g;VEinCvbKm<0Qt(jAUwjIr1kjrh1X##au6bX5Hn5
z+ly&l{KDDkUd&=LgK;L~uZ&a!^*`ZkFXnjh8;j{)IGH$vPjU|PcERVY%%b51?TE(<
z#S4|@6pKDaO_b8TD8JeaOTSRg^6mt@2(l7l3=8Yqon}ksarSq{`CcsWVj=TIjLW=O
z%w!28`7dQc=f=xF6QNV{$ohvDe+p%#7ps`B7D|?dk?Xuz&)GX(Y~cC0!;76>Y!p75
zyx7cq3*%PCZNj>pf^)VR1G`u`;>A%WyS>=MWUrULFOU7g|DYEK1g8i*#QZShm}cgb
zIp)Q2FK)1M!i$q$ob}?I7pFw2?AucRVt!gEXT114K<B-<;KfzeFEU<cyd*rYRgL*u
z@GD-_<5_==mFq&Md3{sxTVDLb{I*bL9ErZ`#lK$M^Wr{>Z@hTG<e3-Gy?Ds{5#wV<
z+Nmc@o_bNRy!kJN7eb$Q#QX@(OD|rr@>=L^cg4Q-;vHw-Ge&CWH2L7gN6vl{o)N5X
z>R^pxLO#DsQZ%o|v>+E6Z;#OsODnd90vh5p-0ES;p&=&|FlN<|jmcjPZP}U3DxE?+
zmj=ST8ggsM!<@>JiI7r0Rw&!zx>Qg@Q4Pg35HF;mFq0yT@&zl2dF__s8cJ%Iu+>7m
zgdn9fc(+6qD4a}U84d9o251<lp{#~-8WJ>A)lgo;iQ*|0HB@3!K|{-Z(WFqStf6U{
zlq#&RE1uG7Uv&3<(TN%)4L!LxEE@Lru+-F0OG6SX$)cC68f=1B(@>px4WU@hMb&2B
zmN7*`s)jlm>T<TZhI&jIXlSS*jk%q%J|m67mm27QwL~a2qIL?sv4$psf3-LEE9T9F
zQlnR73+63_(n>>X!P{u`Zvu0UwA0X@#SV;J89Op|($JYn7e;b^G%B(i^X@|Fq2X)6
zr{9h0#k@CTAEEcv@QvX8G<?gvzfg*%#|_djSi@)yKWLycx9=E-GY-)(lnLp>G_;Gd
z5ur3f!$_fzV)8v>?>EvI4P!Oj%xRgZfldX-F;37xr=a6C=v^({<|on_;F1_=l7`6|
ze$+svEY+iiPqGl9_Y6<f@Uw<R8WwAqrr{R~Ee)E6=^AEeaB6UAn5p4c4Zmq<Q(c;+
zVYY^acO)u4hZU{3RC}&eE86yOk|muLa&u@{8kIzZTIJS28&WjL8aio`hjy)~g%Vj+
z3j2rFBa<vt!_A|Kx`v>JkOm*^)X_vrekKNEfbqrNgs_GT4GT2$rt4gdUKwqf&wQQ+
z`iu)*;i}baYj;M`HSa<V!}mnfWiRn1)FcfXG;GwcOv7^eZCAr;4J#<*Xhe3${-I&S
zK8v2KYH>{}x;Oey3L9$hLrJ+UkzQz>g??yznkQ+EhP9gc;<dXiEbBC^*HEUjMDMD4
z6eZEy%r<G*Ow)&lV2g&W8g^*dsbL$<#KIE&PPbhHInxh$RNMN((k>0VHSE!_S3^FU
zhU3gi=$E^~d!wHhmiB3&EpC}DwTP%m{s%PB+ujb+()3W$C)kc?II5wLfx-rkX*f>f
zrNgD;gocxJhN+{Fj#ISYXt=N8frir>&S<zoL84(;h9%n@Yq6G=vl`B6IIrP?hKm|5
zX}HWwP`(v$nFAJb_?xru=u0A%Y;Uhhg=<UKD711_{YS%X4c9f?pmCvsQI=b*(>v(K
zUQDDNsawu+N5frO0jeh5(?BnO8{>-G_+!GqGz32;>@FkCjH|kIUGhT>k2GY`=`|O4
ztl^1<HyYm3j%#?v?R-VqtI~5CT$<GHt+ePRzqh{BV7+81GEAbS^0kIJmn`v%;|Skr
zc&}m2AJQkP;kEUHhL5y3do08ga#khcJ{LtKLI+`_jwmL?SKLU<tRstV{_LJdM~seG
z9oco{(9NHi<8)-zkxd75^9N#5{;4P}s+mNjaec{Fv=;r2pHoLJ9l3QJZegKcx6Ak}
z^rQCP-R7_1d3EH|k)MX9cuD~s_lu>_3QVi+AM0YD4ys;QM-d%;b$p|vsE%SfTIy(}
zqqvR|I?{C5b@M1zQU}#0=_sY+3mv6dB)uY&GCDSIjf!Vpma&|U@=Pi)lIJu2OkO3<
zR%Wb1yU(O5V<IDYzN~7V*;+W8q$62}RfkPjQ*>0*QJu3nXGPXvQj@Wk@TtutV!V0j
zk;=RdV_n92j4S#@)~Ei|(NxD*)Gb@2209w+X#OsVctahHSUkB!qHGf#`v*vrVroQZ
zuOl_n&A4h#V^l|)Pd)jk)Pj|k&n&HVw9(Dy6ME@rtD~Kc1MRKdbhOv;w=Q+j(N#wW
z<{foxEN1D%Nb%X3Hn+z@3Weo`Yf|)R%fkjzcO5;rhOc!De3Q_Vw@9S+twh>%Zyi(k
zF@Qe2MS6UqpN?;JOwch=M}Hjybd1vRJ(bllNXHNzL#avGZ1lXxU>$!{un_r9$H@p&
z8K#@hNDS98Y+3?6O0ngDWdtiEj$}fyH=4%clBMkJ#4$QnT(JJY*+#3P#_Aw(9OHOK
z%67<Po1|m1ju|@Wk%J#;uZvoK*75UY^C^)jI)2hIl|{1BlLmy-bo{~&bIRDJGdUig
zME)~%{HkLXJI~San~vGc>C=<+tU@|_IvB~Bo_rwORXW8@6N;RDNcX{`L(y?V$4woo
z4zG^26b3pp9lDN1Iu`5j>G10a>Imr=bKPp_2<TXtJ()hZQ`{?&a=2t_n7Ts8JRS3O
z%+*1k;E8!-&r>Do=rf7<0v(6WS^vClt#;kAkU4#whm<8cmg@MO`dr5{9m{FHERyI>
zRE{jR?H3ZZU$d;x%|{^ON~Qiu?O7zP(y>~{N*yKB?0d)A>h6%r9f<CK)w)K<^N-dF
zpRC;nr>@trLC0<#dnkl-Y|@c_-nyM?*3HK!h;P-=CyQ+hZTh_Re7uctn@*p9wLOcs
zk#&cTojP`LDN-nPJ#XEsW1o(TIxbPbQ{d^iKuZv82dO1-w$-n!ulGuac={Y>Jfh>M
zj$=BG(`v8dFBVVGN>$Cg4yAOGm3!GDPcu2kc!rUzXLY#WnrB?+g_31L1l?%umeqEd
z##hHx+OL8VDRfKo3XMyg?YkK^!fQINbGGyw`)Bc%j(=zc^P!jzw{_g1<<y55AMWb-
zSI1Kw&ve|QDW>CHZ;9%hd`x<v;~~Z8F_TAck{&UC%=kp;Px{-Q>v*A~a33k!hnG4k
zFG!%<%jEw`$7^o(8^(`}Z>fGJ?-@TZ(hh$6B;u3c5k5rv%tbYdkw_*c2P0E6`^-Cs
zHREh_gF4oSI3Ei5P|$}R4<q119v|}hkX4k*<}+_gX7?e7P;&Z^i+OILe0&g<&xf?E
zw){S{&YMibN4J-W(Cx=UKG1Dv`c82X9}4?WXo;nJE{Se^(_Li}i~CT*hsr)w@u8#-
zrF<ysLpdM5@L}8nsk9GenACk^kN2T(ge`M~rOsoC$m9rHiF&s3K2-E!>>GOpAG*D<
zQ_7bjkwYaPHg~ZQPw=6t50icP(T7AIBp(L*@SP79Zn@ou`aUEvPxise#O6aSA8Pwh
zjkDDmYcNtD*7TuADf8QEDMG2sB$craW5FZQ^_ZkFlC!O2%$Ghipt3%E?L$K!8u`$H
zt&M$X;zKLuO@)7RAHEX2nGY8an-_yEgwm2p9lk<r?L!;Rw)LSMli0oH)qQ&(+;7Y~
zmK}ZQ#Cm7O?ml#3LZ+_NY0SrU|L^;Z1$IaE6xMz|^b)+c4}F;T70Ne0tn#N(C6vDP
zp+D;bgms_~gP2d?z8d1gP#=c*Fx+R}Ft_Zotk)!3Z9cV<BGc?6d>F~jqZr5e@I8~!
zj6X1rVWe%1rMY&_ywVxZ$^^!VjFW_q!re8+hdC6?{N19T*ff>#XU1th{NlrOA7*g&
zSH_u)RC&v^xLJbF_F-GRd6Q>ncJpqA!w07i5B+%Lhl@Iy2Goz9e#o@=`*78VYd$DG
zs6HI<;ULu?WAXa1)Q4q0Xg=sZ_<ZpDFyRkrF>k`~VXoL#z=t67kk7pBA7&(y!DK;^
zlzD8OFZ>tyuu$+tKG2FyEnMQm@;7!$mGj%yud=wVTU+L{E%#xC55N2HhYx@Hu$xP*
zq(Ssy6HOK$R*QPp`LIUtwLaV`W}YUkXJv!XH~K)0A)V3|7Pm8QW!%QNMKTNS@L?xs
zcQO8+&+N%P%=a?xW8BY3rY?7)4$(}Hv{B;=l(8LV{fG}oeK_XBan4?3JmJF`CMOwB
zG5*C!^_=!0Hm|uYN@rO-$9SIc0u2q%4zgZi<+2ZdGr7V@`hYu8*L}D_%aI@D{kZ8v
zy^1OCefU6q;=@0*{`+u;o!?SSGI`{~V;}xyevk1!;{!&j^P$iDtR4|cPiUQI{VC%!
z#^=KG1=Y_je8tLZ#y7%hFJkuXJ0G$%Fem#*A3o6%S|quU9}#|Y&8L*zk4QhFIGf3j
zSfNKV$;_C=j~JoH+_1(mhfuQmkxg*zbaD<qa{7^rm3%_a?MEKwd4)o&Uw-BV{--cG
z&Yy)U>_-tliuzHE#V;6(GnQbamY4LS6!UI7%u{PhrTr+wO1$tX>&KElW=~e|qoN-@
zSg*v`n6a`SRs2ZsqpBY%ex&-buUcfHAJy3^`C;)RiMfrDs!I05%Dheqb3Lpk^c|he
z-mc+CO`+6cQriz-q#0v%I9s2wE@M5$G)8i;`;l?RTs^*Ir2%6@VQu8c-TY=fP5fx;
z$5(zd^P@9coBPp%NqfeYezalIim^2#6`c4qt}XL+LZLc4Fz+aoPJVi^t@$8g7ol|Z
zqZ{+?LZMRRKu^H-@}svO7yP*BM;|}>`eFDH@Z%dl`uUOht=;d(w|=bJY8lH#`uj0}
z$v{6wG8x1;*pKi07{YuQ<4{K0%8PksuMYQPgix07!amB6?^zkm_=B*H@uNcLG%7OA
zkMVv?@MEGMv;COE4wL+t>c`K1Oy=y5qSO>WeiFRSIJ1+d`7x7~Ul^wg>kK~*UNhIv
zUs;(Y^oT>|4-LQ3YVU{Jk95`@j85TGo#&(MhnE!(qav&-#VYTb#)>X<A00R*m`y5L
zGwE9KdO<%zew^~-FLns~vD%L{6ghs(Wo4cpi>WF<=8GB@__2`rBB5L@5xJE4??PGT
z$8zQ?gmN$w{t*06CMy|N`OVLLQhU}?mX#xZtoLIB^L>mP{n+ZqHa|9Tb~ED^Mk+{a
z{&vB4Gugqo(~n(3AK%uphxuNid{rcJKl1~O2N@3u>tR1i^7o*r{-Z1&V?54y!jF@}
zv#cMdnGelpJL|_83Xd`pl_mUsob8++=PBTKNR%jh$xp9@#Wg>!`ym~U{@af$eq8l~
z{%u4T<Hjc|UH@hooZ3!FxIv4*ANRRtx`MvN<l{uk$(PoDXzMSnw;As+-evsPPhagc
zP5&qfgjDK*-@H3Sw}T%0@x+g;2I$)DsUOd1l{OG%;JF_!{Gf}qPky}g<CPz;{dnU?
zxwrNc#Z&KGx9%8JkB*7du(uSbV{PyJ=3@r$89y+7WF+zXTT+C919j|lu0@>AnKK!H
z0V2_a2C^`ZWsG5@(`m9&iZftrO(Q}&on~h<kljEI133-kHju|a))f*x?m|zY<T7ym
zQf%SrG5sD!<u#Dc!0|%nB~RVA_WTA47$|6<M>uUqtnEA4y1%s(FJhpmfj1$%4WXEU
z;<POT0Rtrrlr-?OfoTRx8Ti7$AOnL9lr~VtK$3xE1MvpR8mMfbiedI-IRoVlR4_pI
zDCiDGMFZ5gm1tkKMy+ftjd^R|m(}(%&9abgg&9aRAQ_l^&{CDUrM-2j+d_BeEC$Ho
zQ<RMcx=P+8s{xyV`UbwFp)pXMdMVyk+dvHiH4W4<@a@;Bl(e_@lTi|pwQuc&l`|)$
z7)UkDWwQ<=k-ALk8AxMd7kZxlk*B1{1_l}#Xl%f_TWV;)mCZ(^3Hx+4@OukOQv+Xd
zwi#nv1I-PzFff|G_d)fyG|-Aotr<yaV}Nd?5TVr0KzjonsF&E<nX!}boV7Koi{RSU
zsBQ+jbG8R#9|K=A>B-oOu{R^t{HbbWU*_K!=tmvGd;nvA;gj`B<Uqmc-q&{qh8Xz4
zz!(EV4Gc3d(!eOgystIfzz73$1B&iz(H$)!8`s8?{ykeq8=zs$9BrYoj_Y6@YhWCW
zAPvxO3E7HE;|)wQKx6{rM8-_{lS!eZEQ|Zmz!U>LcSMo@PX?wMpiw){Lq_Bm1JkK7
z85WO$U-l%<V02IjG5OWNEGDxJq%$F(IR<_+uws&hxcPX=p2WV+C_*QVpaHi5`o)2M
zFQ6nFXxP>K=|M4|8t@uWPFQpb>GCN=Gz0DOB^NprH8x9<&w$?mk><DU{X0lO10ia5
z06zr~HjqJ+C4h1B6XzP3XJDCu<p$;(SYTkGfko7N`{=hbiT?l6>%4{TMK3n6#K2OT
zcYKdMXh|ZGzOdGRUF-^qE5rQKO4b1WFz}~=GX~Dm)(cB34eT_q%fKoFs|~E-vD+j@
zaP4P8WtnUc`bGn^(a-U=nPQLit&H0YY-f@<0y~&A9%CL;DD5_o|8CSi7WWv~%Y<~g
zufCrqrh$V74zYNW@i5)<XL5w`C?om*dN%Sn^AkdGHZ{*BP8s-%mD56RTQ>5Xf%66)
z8+c;ig3xanxM<)KXD=JL#^i5dy<*@h^Al&yYOgcD!FW^n<Q^3HkAd3;?yz!S=ywhL
z%lw{DN>-10AoxQAj|9)wJCc50X<S5lYTy~I{{~(dhzuYqfS1DOt$|m}Uo*ZDy8mGG
zI|J_xd|>61&_7ZrTFo{`1pd1USeHLC6Z06ML<f+Wc^093E)p9+94iodu5!p0Kz7bj
znB@qd!WAiJ0J&Jn%~&9SJi<S30Qs2b7fQZg%*GT9pb#sC8H)&OlU-580w^9pi2zCl
z&_93y0h9{hivYe1pg{no11J+f^#E!F5FbF<04!X#oT#A+lk$ue0;tHOlCV||U{UG+
zu2K^Ms4DbCCK6-e0cH!60!ZepmC?pnjghQ1;!K~K0i*<w%3`emY76VIGUi066F_}d
z>I%JH0BOwaLb(td*>9bB2HudB)&aB$pb_)Nj7=Du2Jlq?&6u}fY|cmplLy7N6ueac
zS?`#4c-pekHGpmbv<skp03-Mh7i8)XKu5NAV(cu+b_w7&zuD~WLg~$<M*v?l>B-nj
zSWC{2?8Ce-<2Q``g!Nl$$uaXvZ6GV71Nb3;LCgmS@Ld2yn2%x{8o)3nlMy$Z2^Aa>
zz(~QHK8*NYaCC{Jzjlt{?6?5N2C&s@qh!l(KGrp!^$7t?WHL#Vn#|-!MjGF#0sI`m
zz#s+%F)e^!0(cg{^8ls?Fe89f0jv&SW&pniU<42dU=|nj2hd}y*+sJhm_yygVtN2_
z03PO!0Gv!*jO6JKpkGh3h$0j%0F}8{C|+lzF1Rm%0>jMEDpFm#|JEMl)qYBO%K~-?
zF@_m480Q8skI8&SDww*!45x(@=K(AZU<vELGcILZ#<-l3JXZt|^UjPJN`D0KC+jPP
zb<V4ZH36&*;O_vgkQl&vil6(IvjJ?NO+U2mXU~lRYzkm=09yjs&C1)wmaR0$W2GGd
zY-43RBW>mU;<%m6cM0X^wvlCPNP7a<%gR2XSGyc>Ab^7b917rY0H<hn9E(08tj7a5
z%KVs6Mjwkl!Th99etK=bU-Yj4PP1}G=%wOg&oMvGctPkF1GvQevQSoh9eFiiKD0pf
z+-LDx0M`S!!TcuUod9kz`G@f~Bl#CtWRAsM&i>1Ik8vos>H+hIjE@)}2k?Z+Q${LV
zA}RI-E&c)238HQguL5`-K$ak4f@YK61n@QhdK7^;Jx=hBOT7=^1Cx(*;0XS==6_-(
zg0qo~^bBeyCee(U8EK10W=6&a5f=n~k-1zDU_E~j1%k-RJX;XindAr}H<O%<xfrPi
z>hnCz^9m(j5T~}Jk%>~lAc_T1oK1xo3kOkzNm1cH?s8-a=B0&FGKf;lzYxlz2N7kM
z$1|1{dbMC=`5-C;Q89>0L0E&Z1yNa8r68&>PhhMn^u!>xB$&qq3oA*C$-;U(Z)7#W
zYXwoAc@4&z|I=Sb)MlQ-m@0JpqPTiNqy^C-h>k(ngQy=w!=QQINSpgI2pYJJ)uaZ(
zf6LdAje=+#L=#q8Gd5-XDu`x5G-uwDu>~X5Q|Wa?E5Qd8h-|~WEn_>z_QFd0(kY0}
zK@13*XOfO&iPp3(L3Cw@Zb9@8q7U=#LG)nqHDgak+E%Y1#@{y^PpL19-vn{JgxP!j
zIQuPQf8l>5f8^yqEx*J_gM;`kh!G)-3}HwRLxXr5#JeDd1u;B`P!M6V1~D=SjmwS-
z;`<<G2JveUqgk08#E(Jz5X2bHj%A!cJHli<BQ>M<(3pwLCkZ9KbmSDlrv>p7^QnwK
z3;pH($X^7X9>fghpTFTqb<PSxW@UB|bAtFycsiM+GdhBBpEZAfbaB=#d<uOL>!D7&
zY%c6d5Gw0lVg2wpLTBz1ia!X0d4Mq}^qI$^GlG~K#PJ|b1Tim&`9W+9Vp9+cf>;>D
z8unZi#9}6YGA?0U9>h{6%NVI8O?VYr!P(y#|De%-^WXi|l|igxakcQD_qEynwUlLL
zJ>v#p1+R6RgV+(oP8PQ?ZVh4^lkLJYM`GlzAa)0FSSWjfIKX_bQ1%6}pLz2l$-5s~
z4>CU_tb<-h9ASQx@tDv{G>tq-OHB|DgLuT^UqPG?;zAIoh0mEF&N4qIltIU$FEYO#
z#El>>1#y|Pe+O}u$ra(*F)H$!;76NA-VEXvXYU2^50kr$w}sCgT706+E1iFZa=%&3
zedZ5@^0`+Z2k}HG(#MFWK|BlMIV-OiUogHDJ|pJFzGnVLD70q258^`*?LufD!p9&w
z(Wh-fC=$Y_AR<DD3?V9ntRZ9znFob(-6AuE5FJ8h&c-rkVT@t?93gScA(SBn%oxbd
z+1w%IV3LzDm++yu$`eA~5c087fHD97tT!SH3SKCL`SIquQIu}}gitGl+94DVp+pE(
zLP!XqWC*1~D9`?1Fvc^MW-P-<#pgLA%Q7z~lrq7{3d}1qRuX#Ukoj*HDpFM_)j~)N
zK?=dbij^@*Sd&9oME@nBpKFEEvs`3#<~0~={y#k>gwzn4hVWGgby&AE)@7{6n8rvI
z(mGr}gfByAz)B;=hQdk_-dOM^A(Z7av}QtS#iV%%Ets?vI-M`IX5NOet<X!Z$=reY
z^7hsqbgQkJ)RD0hV`s)Lj9nSKF?J8(YFCMzzYd{i2)#n+9l~HyXCEg08T&GR!`Lr`
zZ<+LIWA@ts<^vfAF_K8f=<nzdz}fEcNkf?oV;nAg=wCCVLij#}!yz0AVRQ&Tgs?b-
zB_WInVQk1ew{(RtE`;%1WL5|hLYNrBFQSG?A^arx<Pd&jK1C?aUq?)3{xjn=q0{*f
zwQza}Ggz6)_^Yr^dL1!a@Hrv;#yp+TA#`WRJVT~R+#$#zctTLvG%o}-1TXU-qsHhD
zL1*G)q=IzBG?)j3lAYJ;PzYgGGK4;t37rAX4}p4e0cRHq>!J{LE;dg=mxj#8Wmko;
zI)r7yx}3=h#@|EugUO%5x{?W%S`)(B5cYo7Ls-vb2jd3DEsPr(H-)g732l_l^9i?x
zu#J`NLZ>t8oy>PJ?q=L0tW;_r^Zi0O5W+#`hlE0F@6iyBh47lziX`*r&f_8c9WtM@
zJrTmm5Kaltb4>mU;WU#ojAw;)h0Pr6^C4Vd<s#!HVZBUqljq$Png}6WWBqmrcS5+%
z{08Gq##@Y3+doX`QQ^BG{LB1#2=|yg4B=4-_nALnB!9X_c+C7M;}fCNdEhg_>1*RJ
zn7?FvCG`5oqW8y0J(}9yh47wwDU3s5e4xcYgkfO}593n^5n))vu!RvBMpPI%!pIp$
zrZA$z=CjiXqn=gD9L9im_Si78gb@=)NxwuBpLAOK=;Lv5Ve`9n^vSvC8dBCUvQgO@
z5~b`+==3#L7`ekJ6h`4NzWZR!6Gpx;@`sT(Y(8#EU-auxK6zx6jh>+`5Jo|&p|?cO
z@(qr+^_ZGWw>pc2Q9O(z%j1fM%{!lziiOQvqeMzjW2l}z(WSyDA4Y|+`7NX`!YIvz
zco`<~VU!h0xiEfvZzWU3Fe-)3BVA$`m6;GH6JZr<7%NqUetlDv#M~m3Bqqs>XLdwZ
z3!^%1B8<9W)S!O8ZlUJ}YlqF39o1y46*k{G_4#4Kl(6~OVQScX?66!^QoS(J!e|~w
zi!c@^OZG78hw)_?GryNk*d)4Art|OyY-$+BhE{e;jlyWmya{7dp?}4s8CBT8LT)X?
zXcb1UFnWh^V`4(<Fgi17!`POQ^ma_zGj<50qtH81KTolc1Enr3b`7JOuy$wCBaE+w
z(v$YFx<t;jw#QhcJ~R*$ZFC{iH;iw><`qpp3Y9SWGpFoeiYw*=g)%6N+RG&}QTmR>
zAz=&^R{5QML>ME(m>R~<VT=mn`>^>K^G{*=ZC4r{#u$o_uzCFYA&jb5rRhy<<H8sp
z26ZDjOkhIYLMO2ksrW?OB*w{%KQfXyC5+YY>_p7i8zxN)<Cicp!k8Pz^e|>n``=1)
z!nhPpm>I^eVa%c?Ej6EkpB*-DnA1b-l%;3UiPJOizlD(=HgCK;!f<l5xWe#-;Sa+d
zhRlj53@;OfQDvk!JYkL0nCn9EJ&E|=J#d4?Ko~(LA>k8dLib(gg)yHRpTlw>Y`zq0
zK^P0eSj3!~x0u~J*pmKWvV?JI7|WO}XI#PfJ0rDc@X^RW!&n){D(a#zHnaZuR`43;
zYYC|nm~Uj<z({53&hRF|JM4<uLX#qlZDDL@ac>wqnCxcUDLi+D(f5XV#j!^yRL?%<
z`-M`ncO>o3$M@1<S|!4`7smZCj)rk8jGGi5VH~G%593T2XTvxd#{Oh8Fiz2$P($j~
z)$$ij_85uMX(n{D>s%P;!?;2VU>Fy|xJdIf40?$HrAuL44r6k18gasV1#AtDT8MXa
z$6aHe8;sY5KRI-A$C33P3YF|ON_WG!9mbt7hGaKi>h<q|XnNDvzZ9;GZS>YJdcoI&
zFdl~SB8->R$x^*XjL*V&%;X6p=}&3yWHlY0hp{Vjoi3T{oUWMiDvZ~(>SiEw2Hwy_
z2xDzSTVw{_(Zs)CrN!+-7^kvY-qTWi#ab$0`ACO=Fd{NcH%jC{nB%X6s0?JvK-#t_
zeXE83az+1l$dZAW3}nqfwhY8(AT9&+j{|ziT7`A7RL_S<+uTOxzp<!>68o$h?^&{E
z;PrkhC3@9Et_<YPz?Av;X+H8$!3=ZN?KU6zGLSz5V=`BLIS&OgP%r}>=b_U)6v{y1
z4E#9v|7f}nC@HF@%aZq!bIy{Pou073A`279AV?4aB`6|EP$WnWN{}Q72m+!osV8+$
z&k{az5>P+{L?xq$B#DBEO8RdX|D4n3p8M+6tA4LuRrQ<Mof*vVqoNO$eE8dkhdxyH
zp$g?R<wI2;s`)V7hj)Ca?n4b9I{EOD4>f(L<wG+cUi9GwA8O0J>^{`-p{@^oO4}@)
zvj{ndx;f_ay}mRX_|Q;Dqg3xJ>(Z#7;e%BM@}nti^5ZVVYrk8F9P9AGDf*d$jRl(s
zHWj1}Kch0~qWR`?b04yO=3kRrOIHiQmV&qcXTB}q67KfFBg8A%O3=L5gtRuo+X}Wz
z$=mzTL3qcM#GBh(S7#r(`0%n1{QWyNd3E*Sb<yeOLw6xP1bh4NijbayuL|}O<fu^(
za`h4Zn&9f|=7FlO5B+@TFOorm0|eRih7WHFADEK7<uiX}m0i5v7U5tYh6ov&(i!H%
zF*!|*@L{A6V|^Is!@H^8F+$$+VU&>f1xKfPM-4OAyQ75j1BTO=mdQR$sBadH@uDz6
zaH8NO!CqOW{uJR;1*ZwVU`zYZhmU;N;loZJX8JJ8hky@3>7DJvQXiK2Fh`oS@Uf7&
zKFsrBz7Gph^2I(Z6#hv{vd9Pi;2?+a`c#BV1j|%6o%y;g`!i`S_hE$(pQlEB>BCCl
zs{~gIev#^3<HNur<~#FWr6g;8SeN2HA$~!N#~Bi$`;hQKP3eSvhzO4g#suSnnjno=
zX`5yU-|WK{AxR%{QoZYa*dYAJX6}tFBPsd+e3-l0JWA~>V|R~Gwu*e4;P#YGy@hGJ
zeAw;7B_DqGVGonHbjCM6d`rns_PvZ5(cG8P-|xeL6o2-1!GrYq4f{{rj=AOw_Cw5?
zGnT_XeCNXvAHEmO9|VsI9!rfq?!(5$=G;z*<j0hJc~-ukeK_gEDUqB{$xr)mM)+C5
zb18YhUIi}*|3&au!HcQh-+XBMk$IQPK3rirlHW(W>chQ-mODN)A8EUm(!4I@55XHg
z+!S&v)qC5AyQ#mw-1Xs4k>3-%FZh?>13})d(1&UNu=ul@`O(Oa|5*HesOU!}zgcx3
zv#|S-*N-PYJe47>6tj*!^C6cgkf#aB?Z=oIW>L!LM}Co%_oILx1^p<S(oFZGxNry-
z5-gnREh40-AH{_5#|LSxM5?!>kWzk>7E&f9?_089IY0PYe!SYOw^i`t^nL52A{oTW
zepC^)27*;-*^ynxk9R9%Rr8~I%0dkxHT|e1<ORXnsopYe&D^i+N4=D!zL19l%uFou
z*kkb{!;dz8wDrU4hvLVJel({y(z9%$>F~q;oZPkS9MyblbGy@zOg|cnu!&$(KVFie
zM4MS6X(qU(xRbw4ob5+zzxnxP_O|e&r5`Tobqjg~`{zpY3ZYIbAuW2D+p%_zSwq_S
z(btcDezf<agC8CJSnNsbCTg8hqh9i(bBcHI<7MGpQ<B0p(z^T6!;fB1bG;(MK7RBR
z@~R)ZqG`Q^_fF~a>GN8Ozb>TiV^4oS1_*yo@D0JY1>Y1LDEO8igM^&@-uzU;U_XXP
zbEqF9g-|%mkKrl)jvpgZ{Kvuh-c4~1za6rS^5cC!MvHKaALIP^K=@cc{+;swzlu2C
zk14596a1Jcd{Rm>*^eR>&Ht_CHPw%4BHysntj{0%@sS_*{rJm|nSRXjV<)}g$8105
z__5rN6@Gl|$6Oh5K)1~EW4<3tq`4qvf02-df}hayt;~&Eoa+5l$bYxZzdSDWV_8c6
znUHn)(>n7J;KwRIR{OD1gwy6&D)h5`;l~<3bUzY)eCfwme#BB^*ZL7k@pVFce)v<8
zfRLcz)val&A7SAUKcXp}?RRrknPsNN(5Fq~erSG>bXjdSDKz}}^RVfzq#rqctWS;F
zEM$Y=M!`+byZjh9+$=b}wuoe_;5NbSf;;@6eJbqsV~-y<{J81IUO&F}<G3F`__5EA
zWP5W%zZ3oaf(Hb@@#9+|>^<nmA>oHpl81H7|Gz!r$M-48Q9q8Q`0|7K3QxA2@Z+K%
zzlrciKYsG#XFpD+bj}Gm#o{C6j0DNqRPXv`Y3Kd8;Kwg1$*)452hwwF{hxB?XX_=F
zGCxRoT^4f1kE<!kH9xMW_#b{e*kP)j8n5IYrrZ*PjD*`l?g-xHE(qc3?g`0wlIwvV
zfBVrefJOm4^y43q7Ydlp|JRR4emoY*e|~h@YN>O^GVOu##E++bJoBUbS7wu%xkNvo
zV47fV!90R_1t(Ut=NCf#0zwK3rVAo~5@{LiDlE++0Td0OSOCQXs3npT0hA1&n($Hq
zlonD!uuK5ugm8G-0P2tZ|12&q!r%%sEGq_3DZn3_FlSpifGR2dssVnJo>@q%rzAB3
zsF~tF4^Dd_#cKypC&lXqP)~UMl%zob>sFd}ECFN$&^~|;(q#>xZ2*&8b|nB?0QQuA
zivSz}IHj2>*i5i-08NB670eQ(+0Qc5UQF@kLb3y331wGHX}VIq?f^Uicmrr97ZqAd
z*Y~B}ZBjZsPR#9--7bL9S1ipNC~x#A*ipJ(37DVn?!=YOa=a8kXCYk#Ul!~t$lh)N
zbWiaf0q}#~6#hE8c~7z9FX8MRK%W3s2CyoC*8+GwfEfXN7~s#oqhA2;2Jl`0{R0>f
z!0-Ux3E+(Y-V9)10B;5G&lC68!`z)KI$s;;85F?V0SpV^%60qT0EPrGG=MEJ*YW0#
zA~Bcyu_wK-v+r^jmD?3^QfE4x_tKp`;T#bF6-IL3SGd--!KeUQFL#X<<J5njYnLwa
zF+!aCT;l@xAb{}!ObB2~08;~)7{Du!JwqRRCIv9(P0!jw&b`mvlLH`5ee9VQz@o>V
z=>e>N?4g?Pv4_(p|0sZ&0W1h$A-A}&b5;N!%QD$JJAgsg?Q;S+@YusiE-2)j8^F8(
z*fn3)$R%(g9~5$a62OuGmhu*|ki`LfTgdq-H>IMJQ|0n$XITI%0-y&z6SI^o4<O%g
z_qoTO&jYwn$jNK+)ZD8B_#%MA0elz0ngG5GU}FHA0{AL`wE=_!hy>8`h<#lEfdGPX
z3ts?!A-5lUct={M8$$u8awF~w=Sc~#D0e@AL;x{yBPDSmnxJEaYrxdpMgTeVQUJ*S
zp1{c~{}T^!gEVVZcRrW@FM!STExo}l4qz*t2IsB-wuxuxt{nkv7h%OG9=d3!aL%M!
zVdrk))ZY^THR(^{J~~aNv7ZhXBOF5gZy4w4X0$LQ4hC>Ygp{=S+;t>?@7WCCY5+$A
zI2OQ}0L}(*Jb)hpI3>GqLOk<h06#H{SGZQS!OybMGgr7yJaL~4fM5M?dEz0Sme}A1
z@kZw)0xtycO91DY2+LiJbNcpIG4fjgmjbvboHiM;r`n|d9zbO{FH5{J_ISCTc&-I-
zJ%B#~xFM_1U>fJ->G_)h+zsH*0B*^>ZU=Bjrb>mbPt1M17r=cPMgI(a;`u9p2aMGf
zE^<z0+7l1SL*_^T{|4}10FMHA%=}%KQGP-0G7EB(JPF`w0M&!25k#kowzKi<X9462
zqSO{kS`hhy$REW0md$bpktc|}LA<rgUf`sowBn$!KoF6J*$ARg5Cwxs4`Ory=dMHc
zrB6J;C!QTaXW<~q1W`7KB0+u!qob%`F+nzq3n?L3l6OqWOAC4Wxucwr{1ctkf@txx
zv%Fvh!HPjt5>i>PiXe5W2Jz=lPLhutj#C93HG`-XMC%~h1o1);wS#CJM3W%u1W`8#
zB?wy(^@6A$M57=qK{N;=r&zO=WgQKL<SXmowW+I(l8hj%LCh;^r-aR~pLmEb?6OgA
z55htFyKGK+tgItbID3awa9nueX&OXUkiSrXAx}Ncf_O2AmO;3Jc=*KAJcw-0oL+kB
zX%Y1(Pdy!<dZ>2)ZO`nd9(NEwzU}b{4lChcZ}Gp}t%6wh)U#W9+YC_J2GR4by8{<E
zKxr4mH$$xL1=;M#4VB)Ph(Ww6yt7~z!IuTQ3U(9h9z+izuLzz$V5jk3LHwHLAR%^|
zmf1UqKD0b7^EE+|wEWJ#LGysoFNpp@3=q!dm>}K|{-)r-l>99rgMxTFh{1G=G)D>!
z6&xl=3&VxH6U2y=<e!BF-xdB|N-|2w`;5Jm<jBY7S$b>`<5H3jf*7CT6NF3@oFq6|
zaEjp6Af^eSh3P>&`_w!-ek78GL3|R#%vA3zA+rVN1o5$uxr`7Y^MhC*BxBhBpI%57
z1+kdHprV<IPlH&(w?ISqD1@a!EMtC!kT-<Sf><8Jz99Aou_B1ig9rto2C*`TRY3%T
z2nMk_h%bWpDu}f~Tzxb5wi%8!L43&+wq~zAna+<qoT{mu_PM9G$zB(PF9?4Sr=OZX
zs8sTq=iXD#tUWG%m;R6!vu0#xjcsoa2XUu>Jtv6uOy?k?LBxWHi_i!{3qlVf5k&h^
zcB)-_#X0thLbN>dq<3&7Mb2jK{>}|SYz$&&5W9ld6hxKc%68^d!1li&HV3gqBwGd9
zH8@}+Zj)xG{@GO95yZJ}&ad2AyMs98&iY!$?g?UV5RY5g+dlL3+OJUU(7imw0}S#Y
zZUk{Nh;M^9$Pf+UVi1RdI2^>!L7WWYyC9APaV&`AT*YwZ`yh@oKA(B2zN2g{WNSXv
zLh=LWTtD*!Q%rOyWEYir{ls^t+h#7k?mk8Dac)7J4}uD3XlJkUEH`DdlWNAvbT(<^
zLJ(d0*?!?o$9fiitFU)W^UU8^ShBLNaGQd-6y*O`+kO|kEI8$vhmvbSEG*^xL-4xD
zIfRl@f983}4;gjMz7@pZEEhrC=B5O3mnDvy_001ih#l>-hJ5Uy&OMg0uG#km{}NpB
z%yZ<K=k_ztKTMxe&Zi9KApQ;FKbG-vo=1X@1q<f#-oBtbVGv%jez@A5D}-$)({qO~
zYM*7+&$hG>>g4ja{#fCkWoP}BCtnEpLue90(+~=TP%wm2A(RdwJp_bMG=$}8N}&+0
z=gp`+&r&3W!XdQzTY2ElYB0kwcR?nF#X>lE+%l_OR`C!@gitbsmbtv$uDU64pL3K6
zp==0^La>BTE`;(S)aC?2s1QQM5Ngrj0c(##&fdAam4vfdIfO-roK*y?hEPpNb-@~f
z?5!!}-xgWqFNDCa*CweOLcI_ga3Nzo-wepk=$)^A2$K)m%H3BAbj+$d$<Z(b;^<u7
z?%u475bPm1La>IQgkTGyMMLwY8M~N(pLfi1hR}Pz`As#AL&yw)KTEXjypx~sqJ)?g
zLbDKF520@eFNV-OgpMI}3L%?zLTD92>k#;1oR%SM^egTVXwVe`jk`<OJt25yCe;Tx
zYmfDCFWQ7KV35*Y7DCcCgmxk+`=BYC9YXL|NdK>YHkbKQ2%SS%(IdNi2wg&Ez;q2^
zYLD!fg)hnFCFj*Ggjg=`{#@Q3A-obo&k$Y>p^psg6#^?pjUL%F(mQ1SG+UbvS(LE(
zS_l_%c}e<((4PSl!uy;?2ycY&4oCfLdozTAAq);-NC;1JdEW|QPzY}er_(5z-Z`sM
znwMl~2=!~)hJ`R(NXh0|6tb&tm#oHV-Vq^;4B=g|`CbUqwp!_>fqyI9Dc)st2(&XX
zgh?Tc31O@>$AvIn2)jNI@^YGay9vU}^v|9g!W7{%xG7z-hNO9?(lRA7J!*0S9Ku;`
zdok-+=d78$dkEifXG54B!W?=mgm?%ahcGt;AAKIeyb$Iy1?aaB7KE^nwVlZ_T=^sf
z7Rf~+EEaNjjE6b+X$VVL^T&B+r+Iy8-f!l)$d~aE5W=~#&Hn9|%>v6R{dov0L-;C$
zBDuYc_EjOQX1aB7k@Jh<zX)Lsw=&IpGR^xXgR^-S>+_$Sc5d%lI=`o99Yd>|Lc;tF
zgz#aDtY`?q5JFr<J+~TSS<8-u5DwwVF=y-CUgE{?90h-O*I#L2S<^z$L)a3+)({dQ
z7>waBZJR?#hLFQp4Vll55~r=lJ7leAmn&<cD{Dgtmydc#Hc9XQ1o^z+iYj(?pLE)`
zh49NJ%MPx+uR^k&0h8NHvXi@fP1zN~?hy8buvZlJhmg-=`&w{XZtp%Jl#Kh#c0d$p
zq@JN14B=1+|Az2i2!})Xj&lg%N(e_n_&$V_l1fKII2HmQj?B~J;=>;qnJ;Gjz?xH|
zdArK)6AYd!O84{bpO{dU-6TJYKFO&NPKV5g;F%E4a)X4=`M`CaDG<U%30ekBy&LXd
zSXFMge-$J-^Gfz_5>c1v$@g8q3+MJxnGdq7A>0b#Hlu<SFJQYK!XFI6|0y@<^Lu&n
zoO86k;k?Nmyy4_C@eawy%6-ARQYikU&o5Y*3-?$p?<+q~cK#K@14)y=LwFd%Ka7FD
z%^aZ)6&7STSsxyS@Hm9ZDypb>!uc??R1{V5EQDMt77WNPq#{k_&ut*TiUKO~sK~1#
zpUS_(S{wtipLny9E8OG-x42AHQDeJ>BwYo2e@HmUq2ixrW^e6}9EDY^%I)3LBCD8+
z;wno0u2fV}LPbdx<y4ec&0j<+rJ}<TcWL3*W@eU==Kpeg%L-|9+M3xrALSKP{FK|v
z)61RQ-b!MM)_y(fuBxJ%ibg6dDypkycGOi-j}uc-Q$;NmFQ}+3a)v7pNW}C!-eNX;
z9Tmjw7u@w#483N3IjS^Jp=8<?&$N&?R6%5PWvFJH^JlX%RamK@!X^@j3a1b|?dS1Q
zhn1vk3A;Oww@)4~t8rr$O;j{hF*c8vkCGaj70+1Diz=F{s1rurFtSy&P!U!UQPEO`
zOT`owQ&qTCcvQTlVvq{2idLM7imobJtNh(4TRRo)RkTsjR>i~YtnYf|JKHN?@SMAY
zijFGi>Mklesdz~RA9<Zs+$f*UQM12N&bP>7FNct4-pkWX#ms!RzAE~u=&qs%9T>1J
zET(){OnF5`PZcD*URBX6#e1vhBm6bN*HiL;dSv!jF@Sc?y9cUxL&ck%WGOq-jcG!{
zBO;TFiN@yJDh8_<rQ&@RLsZNtX{Yc#Zh?wnDu%0gN5x1L?=nt2S*#2^B97pS`e*Ze
z_{KEbHg^{1$?Q;1rqk!6Rg95oOs1bzj8ic|HGjimd>dt19`6S#NVqTKRcLw42g*bh
zleqBzoag#y54qrGAszWh;qz#kis>pA^Ki~7srXREd=-gF%14aVwwWyBA9Iw7S+p};
znXO`uY99G`MC3`5FA^!7%k3Vn%#%?h8;;u+s931t6Or#Z?Pf)#!9^<e-_1j^M8#63
z)jQ6Bie)Nh^R%F1wTjPFELX8Y#pkM7pI0(Zk2$}~<9*sB>v?_VVd)DMYgDXL;ZyOY
z<mTE`l72;fZx*wU*X=xBza%C(Q<CY~t-3p?n*VwilKHDDIDejOxyGo9n2M7sPN|4<
znJV_G_*#XonvclMDsInqBvcqGl1x<<8&qsmv7VvQ*j_)cw_2C1f_c6EPT9{NseFcR
zQt>}Y5c0Npy<1dlRk2OQb}_YE#SXe+LFO*5qJQ>I;cV&~EJWUm!aXX2eO=`HxHU5^
z$Hm%yX1AdnQ1J~*Q(xs<?!Jm6Dh{d`nAdwqkmRtCO|NEuFZ##mAB*j%ifMVh9L}f7
zxli1b{2(?@sQ8iPMa7G6WHYFKrm_?Ya@Ld6D$b~QOvkD?tKyuB`zrq8?x?t+;+l%<
zDt=M%tBOl1ewTo`$i)`2{l<Wt?52C4zx24Qf|BQ9Q|wgw6%|*R>?4%cA%(H=2UC@v
z;e1rEdfZfTO9iVs52b7JdWkIHcUAnUV&{y^d#ZUl?N-*#+H!tICJPIj59r>!-hb%W
zc3FS3I54E!WEaysD^9!klJH-eZISgKCwAG&>yePO1<F$ve-%Z-C>lntFjyth!pI%Q
zdw=C=cv#63M&2+AhLIjdzA(~k+4;jL5H@3y{MVii5?&Qvbs&sFVK7{IgeV*~k<rVu
zJqgeD#lk2aM&&T7gi#`ll3|n!qkI^vU(6~MM(Hrh2<JIx<Y@Ox?Xt>Blf695@BmXG
z3`#16%~MT9!Kt%t<i8ni>QoJ*Mi@22s1`=`Fizz)k3cj<g<7IaVQnEV2y)0>(Ww_k
zea<<|?=wV$FdByORv3fAXcUGejILpH3nL>8YZ%@zT7{v6VGE;a7+GQ1!*GPrm_Avc
zIK#*cWAPi=$IGV=vD(Y!^E%pQu}R*9YWcivtJ-)dYQ~x$MvE|B45N7%lss;hb$@<l
zoxJvzVbpPDdBQN8t}K@{-C=af=Vg<cH(gn+!)O!6%VG1m&v<AXMu#vuhS4sJ_F;Vg
zhj|9bwmOI8^L7g3r7##3ox|Wun2+*#$@x-_*hS>kt>$6i;BBRQ7(K%1&t2}Tydrn+
z8OEz&Y`taUOnQaE!u1;O7)I|f`bd*&p)h>L-Irb}-Rzw+?tVi2`Mh++zI@&RVZ6az
zXqWXSy-oY)+#~<W!!I)#Sk>llm-TiSgTt5+#)n}H31cYZVX=Eu7{kJ5{Tv>~J7FB^
z?j#=(#)W*|k=)#7S^wtqZv4bX@-8D&B;*&Xx!>mk!x$3=pAO>%NydgTPWT6c-8;D{
zoFIIn;3UDxg6x_S#?%y_7RK}x@37VNQ5ZABSQ^H%FlL1@JB$TkEDW2k(dL9PH;j3V
zkSyoNVelbRY?C#;LONf#%@3O|-`FI65;h+hi^KRdY!=%^(qvh9{cGovFs_dA@Vx@o
z1iq8-86Cnie;7;wJ}Z|q=4&)x5jM}ItU?TRo+np_@dfufjH6+!3FFH!j4+a%FjI1e
zWnCCPrj<ik%h;%-v^?SThY<)P5=JzPU>G4zzL*kbz)y0h3?7S<P4cHDGyYp>@>m%0
zF!m3!@gd79q=lh}kzhKnwefW^UxYG*NQgOMtPf)gLnVw2Ve_RcpD$(edp8Q-BuL@^
zSS~tdZKn6+Ai6EguN5^5QQ8ac9bxPY<J&L}hOsM*-QpRRN*2RC99}<@?%FFtI`C^D
z`vmt39uWLSkjjU+J5pW03!63eFn8^`o8$<6wbyCQ?<F1!<9HYk!uUIkAHp~h#;;sj
z7(a&b6N8Po(9$8l_vbK9hjAv1lXPQ#?<qkNK1QD(aY@dGagNn8Y#xlux5^qMy}z)A
zJn%gFpJ!@*?{8sT3geG3ZiMlB7?-)%bX0!t)6?!NoJRR{Ceh0LURH@~VO$S`a!NjZ
zW@Ap>4C7W9cf<VdR@@Go^_-RDj$|J>GmeRNkI`ba-w)%jR2u%*(#^3Km)O|LqVZ7T
zCs)L*GyjC~Zy5hcRe2=%m>$UQEgVpuNb{-SGr^&Q+#H@3LGB3hM36UvpHHSU6!S%p
zKZ1f0Gc0+cBNh<Om!IUk(j$OK$O}bKSa=b^qJqT)c}k>0$p}hC;LSm+9F&frOazrQ
zRMt>7f^rf36~%)n%12Nkf?QFgMNyFo5kw-0Mo>9|DiMr|;Qa`yMo=w+{t*m_pn3!~
zB4`%DixJd}pjHH#5!5f@d?A9`5m+L~h@egcbt9-pc?7ZRiq+>D9LoN%v8zFZZ&qaQ
zE8|-Fn}wud1dT*Oe!5a~YXnLJhXxlY70R|nFmRZ|9)Tl*Nk6%#4s#HlV(nIbFFC)w
zr*Q;LB4`>xRs`cpxHt#?gKq00&LTppU2rsyz{BN7&~jO3b_6X*gu5dA2G>ltV0y&5
zs*!8JTaH!{w2t7_2zo`(CW5vRbcx{Q2--zZq(Spe5xf)u|LM0qm+x_P5Z+PnlQOQ(
z5fDGKxeC}_)S1zvKvx;nErRaSMPZFvjvn-R{pLMsp_bzny2$P#;r|kUXLC(1gx(SK
zjexvQ1h0t>4YK*VXi}|T1Vpb0--uwt%h~gmSVlzfCVdsbTM-P3V5rCo74W`I$1;$t
zuFCdi1)jKX@30Mtpr6&%%IX>x!SD!3-Vx<f@r;=s_nlVRBO`e4s^willJ|scoM{^!
z!I%hUMldUau@Unx5g$Y_o<0}OW~q(2C(u{jvS&o_A#;IS7Qy5QrbIA(lx;fw+&X(|
z1k)neTf)7)Q+Dl&_DN~BrL}D@bj;e<%FgDT;m+CxydQDlr=9uk7UVx>&yL{Z2<Ar2
zUtylZxVqom&;RI-V15K&Mo@a3V*$;6Zd)3`vIrK^$q_uhX<rn<r(F0W3;AO1&JoAs
zmmTjU97`e~-dkq*EP~|`td8J|2v$V!c?8-m`^pIa&Z|7!WjS-x-m-vql_*o6V+Y@|
zuVEw)bo4LaJ^jc+<*(%KoWR-$)(Q6s`cv|Nkf2~F0#!&j)mt*%9*ZCz!Nv$SMbL4S
z`R|mPc#=`7)3F7-i3p4ck`d%Yu%3IwEO;rq@)L!4(`uVB&E2@H+yATbzX&!*@LL3z
zBG?ka)(C!#;NLUKwg|RIus?zW5$uQ{aZcIGmD21vWv4WE3GR;ImCM#W!n4cSzh+YJ
z<J;8MeG!EEIhG!^RPXEfh5;GD5oUc~$F~t26mm##bUFKBA&vVvzK`Jk5y!Czjz=(}
zvF)fdpY(P75J906mJ{5vr4||_PxN*0UO%ziMQ}2LQ{3PFj*AS){*KcToQvRm1ZTM9
z8<w-opzj?^%GqBnXTK1^u%(t?=(nEk`X?+smsoxk&L%kx(#Y=-TxNbn@F0S;!`3Si
z+>GFs@T-E?BDgN(55XG|xbn29THHqE+Y#_aoWq|H?E5$K4kLew<t}}D#=$wvTxz)|
z3ilaN|Jb`eZTdH7_=n{mdRxdt*2WVSO8$$W=)vsA5j=_Dk#IKi^mROqVAUU%XX2c8
z%QMNHMKjoyJBmC}bc>>U)J&_qQIw6MTon1D$R9<4C<;d5in~fgF>I_OJ&M9njGSnj
zJ=TFJ3PrJ{rLFh-juW>F77=+-K`IoBqIgP^&5~lIlwj#7d>-4%D$UD8F`=c4#>+=h
zA&L$%fr?R7iozC!J&MXvREeTa6m>bPf9+MH7}eKNGm2``q@;Qj8LeD3q6qYNkkpFe
zg(!9oaQyPArFIn6Puj1Zw6lw&>P2CZ;q?V6X&|Iw6pf-#a+^9-CT57-N?{a@?^tX8
z?*8^&n<ENm6fL4?8AT@LQ8bH!MWc(`)g+3pjkB6Y!FtmBnL=R}A7riEGr#kYzbI<W
zqsSIQ39F4O3U?H3qu6YBjjZkRMA15G)-EqSR@;=cieh8CY?3x2Ir6zX+TBIvb~2>B
zV2L`eZ&qY>jPhslGCM`_QWTw|2vxIniQ;TSS63R0qNMK1Dc}vf?BtJekKN$z5ydM}
z<V3MPik?xt8pZr57DUl2ir!px6z@mTCyLj&*HH|Q;`J!{M&bD)b5Iof_{ZNU`rUNA
zDZIbnfGFM&!rn_a9Yt1T4vgY03T?{Q-&)yxJBq<k4578wuA#j9RZHEQj&cXBxysqu
z`%V-;Y_*OQvvt4791+F-t5$0x`@2!h{4Dc5ZoS(^<!t^GNEBnDm=?wKD8@!Hj^2)9
zaugp#v2eYWqb5W#K8hK;EVPp~(#hcyqbO0xO+F=xJ?E^8;Fuc4w>KS|!`AWT?OQ*~
zoWW>WmiZCy6~%{9Bu*$?0#jpF6tkn48->x<b!oVBP82_la}K!V{5T3W_m#EN=B4(^
zJo?Jx8uEd2VHBT4@nsZWMX`usJTG%q6#Sja#Zi13#gZtNMzK7K6;UjcyL=|gJW{~>
z^rqv_{29wuXMWDeU!J)#ifw;c*EVrcKH;Wg+Dsdbtd8Ofv9?Aq`=Zl-!7*vOb!`-f
zhC3ortfMQoTYXXZx!zHZKomhClS<e(yy>JQ6oty@-E9eroRacyI-@c?7DZf$CYXpq
z7edRmM>>c`6sHzBl8pI?jm-@VOG(nJQEVcK;vn@IjjRI<1FkEItx<fo$FhTI$mIxc
zRZrPY`5s%XFD>la#qFTMcOB%rIr$QHlD$!UEeqLu*20UD15w;sW8w9!kZ)KbhB|0u
z#YhK*hokr|il3u68O0ISs4p!u)>uwN@qHA$-O(tHMS&5Hzut6yFv4-1aWca3Lljr`
zSV*YwW0YS`X!%J7mU+i<N)~u7it|EFM{!07SAA9phg=YHF^b=W{1U~lDIMO36Sx$`
zqwD!deiySOmt`_n=$thcHm^l-J&He~xDmzWHyrnvTsQ4E1@Cf=QQYRNM%nH)NaxAn
z4jtPvi{vej?N9E@n~q7_tQ>V;#vZ+8|2v9@tg&&Fh~u9q{$+B-&@+brI1Luh7#uM?
zj^YU?6GM6oPovloP!88q^2P8hid-@CLu6@!d1A;NLz9}#KX<w!O<k1djp6gb9+Lbq
za7cj|TrC}^nq~Lvm{sAH9Wj)Mp=1n&VkjH~B}HQ3(ZzPlUNnYcF<d&}8SAp~#8Nzl
z4tui?9`KZkp>zx{#85kiGBK2mq5mFB)fmdfuyd@Vq993mAr%DqxTz$ha;mqA5Du&s
zL-iPH#LVZ2Z>*!1keV?BM>{CVoM=mH>8cY$-54@tNWB>9bHeHNMltg#)_}{g+8W9n
ztZ%vM1hR+hwpe23bFDyA&-u{~tBg_vZGxN|Z{&<2GiE*|Uy7kIJr+a7<92ThMw-$z
zh8JVFSHMf2C6Z<_Ed148f1$H^4B0W<{>9mX_l?0FL(3Q{KeF=Lf8O!l1;@mSZchxe
zMmc#=(kh15G5j#s(uUrPVW~HpSKAoc#n3*60vD7fw;XS5S4K_obc~r5qtWurPW0`v
z%#({VJIBx^hL>aL8bf!PYBw>(L-_EBX>;mS^bk2$@mk3CY7D(%P-6&-uy+h^$1pf%
zW=bEy*J5~GNMAw9`w8hUI3R{MguI#R9Vp~2!9g)hdB?#aLt+>j!;Ba{r2k_W9>WAS
zc`A-!L=0oNO+Q&j#!!BD_9)){k>y?C?+H>Ec-cXGKgLhpn#bueSL{Rv*w`4x#qdE4
z<6}7XrsH8eV}EHE3FB~L43lD5_sB9ihN&?ens2Gt)iEW89WR@`(_)y;z3b|jd&^E8
zCf7$X%#2}G46C^jG0f)P#qdeY%)2=;%!^@u3?IiZm!_=Q!@8RH%HPe!2%mP-&gKFp
z!axVfq8Jv(uq=kpxYDkUPq}?D^XR@r*2rb@^v?4<jqoJDJO<+DF{}{6MX||iWz2k8
zLGncmYq$!AcMM;~@Rg{ojp3d7mgjTe3j~^a*eu&0Lm+0>lVA*sq*hSQ8#V3f2#HH6
zjKmO)VNVQuV|dk8Fcw2j4C`Zv$DnbgF(hKRJIQLqu(FrZ`=oVAKJ$N-DM`jqyrB2l
ze*1<PHpZ}(Q5VA|222c_WBkuvjNM{gHqFVGp9AaLs7At3#O+Lqx{e*ppcsBF<KEQB
z)ir`$G4my4&j@zY!)06(*Lfz{TwlkqFNRZGU<~_XIKZ6>C?{h0CWdcg_?}DHV>`&m
z8Sdou9e05<8SS+FZ9Pm^k8?kl9}$JS_JT)6pF@rbInESFNgj{jzoaTZGLYmJKMPWF
zGKN787s;6z&c^UB3uz4JVmKee4aVX7&I>X862tE?T#kV+6@O)wi{WVHW*1}lO(fKz
zywbM?qubrv9$DCRC5CIFb5)S`DZDQH4?#9(I9xYlxFxr^&3zYgNARv7&HgFmUJUnz
z{3ZB6aKH{L6&?zw{eOh~xW@8`#h<kzj)HMKVeyw`=8KzNea31pB$r@XoL`7);WXHl
zM<jU#*`z$b@S)|>*-TH#i^Kupg#-(y<n>3JzAYL@F_F-vY?h3pR2<*OaWsz7ag>SU
zy*Nh2Q8tcpab(BQB98KLREVQ?9ChNT7)PZzYQ}N$z0Asjzdx{4jbp$VXB7@Fp3!wW
zs>MMeuj)c-#PR9Z3Y)b=KXS<WLYyzwtc{iwtQ$wYIJ|bn8Ats%8pL6X<IWy?!#Enn
zVU45O0h>jP@OBw-tQx~3Q)b%VmMc#cC62$EDwK2{>$JytfU!GdEH!sGwq?fAIF2T9
zG>zlMIGV>Xqp3Z67P8`K7DwT|_K{<q)Exc5vZ!l1jgVjeIK5?@FQ(8dj^1&&<G4B6
z*)fhzad<dMvCt}xHgU9#qqR)C^jIhF#j)+;c&n+seH@(F+T!*O((L)bLLsl0;^-DP
zlb5`+bafGYIgYMza1NAzlH1W;bb7?`N*q1o;0#|CwGSIQ$iI1D`E!i3PaLnsF_aFB
z<Apx9*W(ySojCf&(Jzkv+=w`6>P>Oo|He4q5TA2~d>euD8S_*bBsMcfWe$$xZMh>k
zS1}|G5>B2tTo%g-kCdHyM}~}ugRZ6m?Y}GXS+mpM=ltXF#o>=*jQC_~9Mj_1zRNN;
zj&X5(5XX24j0tf}WQ@&CXC!bwlVoC31SiLF01gVd5p>{m-aU@R44XJUjN_v?K8|B<
z95Yk<J3Ee9GD9kR$2jMR{Kqj)Zt=W0=F8nb5yviwW1-xgfy59cQjIrSlp4N7#(o~h
z$~czBu}tRkT<0_4%i~zVr9D+RivH)iR*C(u;#eKW7jdkSCgop>8VN53`C5^$OZ9SY
zfjEK;)Ht@q5sE{VcsAk)#}ScxX>mj)gkq_cJ`d@*G{2exUDTK$i8!W=aWagPapc6Y
zK8_8tBU|Fw7{?}2`(GT)6h>G7hAwX0W)X4~++W*RC%d+@4#cr9j{RK4dzm}q*dsS0
z-xbGh5l*~cfK86t8^_mTfexpCxKjt>I2gwvS;aSTd@B>+<}yPMi+efhhz$8oB8N@h
zH+xI^u{e&$kxxT@4L`(jf;VLx#=)cAk8xaLzQ^%X96xhx9H+Rtgu*xdP7C?|56f>t
z&Iq23<D3xcoR8yz@LvRf6}*`0y?nuPsGOa{FUL{KoBc-|H|Xj(uEz27ME0bvHVUuB
zab0@XowBldlksrPahp4J)^<zyvEA;UirE_#^gg|2|1*wzar_s@qd4xf7RB+9b>o@R
zZgu7euk8UHa?`=<Zy|i?%C3Ln=DQI83Knw~c+BD-Hy@gLG(3&t8TU&=^S|w}4z669
zd5+bEzdziSTjcy%H}+Pm(JZfqy}(MvRX{^Q4J9>{(lGI5Te^l%$6AVNfQGkQx(jJ2
zEb?_9dx~gqHMRF!oz1sUiivUBFRr14hB^P)uX(b+XsVRfP)39LQh{<BZtt{KyXY*d
znU7sQXo$l*XP4K^x0EYrsHmCm1M|AQG_#6^sv6!hFvvhP4b?SV(D93o8X9V9xJ6SM
zYH4^u!zc~!YpAWEj)qPeUeZukLp_b(FoWhA>T77A!Ky*g(2zEtDI4aeWoT$bI|XeP
z4aWv#^4eXZS+_;X^crb44R#H8%Q~DIcI;G2->^9}tXZT?xvCW0ZO_!uSVI#Hd8gZ^
zUsP(|Ri-VoG}S=N($Gu@`B0xFTSE&CZ8fx`-&!dxHMli+gu4W{*0p;zw9?Q<!?-m{
zuPKhdbfsNEZ);9<m)Y$7y7IsAne8=n(D2$b+tYcL-z(WW3jgbYQl>{fHalzRqM;9k
z+>tA`mo>bqVaO(1R}K3n+PZ1zuAzs9SGb~0)^?Q@-r~qr^XjRg+!O~%FAcpl^sl3|
z$Zgx$TB$zU^16n;8s5|}P&5Cnq91MMvi0Y3a@+1)ayHLp8=&FTPUQ^^19sa!+Mv9}
z-PG_d_m1JAVX%gG7yuirr|Q^-X!vK3>&x8AP!6eMt2E0pOvrG-j{NaQ(WLT7?&(4E
zyL9M^vbz-i{OkGk*3lZqXh>?v(J+=?(y&y+G7TSS7_Z?Y4Kp=N;KDUb(J+;+-fNqr
zVKPIvr1LgEf?eFXqn+)J)j3VW$|sheiaTd$n66<~3Fn+UmKkGgA8N3abk;8Jd~K(7
zmWJ6H7HC+g;b$snn5$tP{ZP>Ru^>M*H=mJk)ydvkn;ra6F!?7M7HQxuKGm>T!;*To
z(dBIXR2|9qOHNK>iH3DWow{53Ov7>wYuVJWLc`}8zSOY(j*X^PYFMq|3k|C{^AgUv
zMV+={&NYni;?9W$GdS(xqnqD9Vp(6z`IUyI*PK(HSa!9y`84R<yL!%6F1uetfRilg
z<T8UALQFReVOcdLnubV<M}@=$<D7gka|o}aKiCosgZ`PC)oI8==2XjC&%|Uc)o_B7
z&!cSAuv5b>4V#$h8a8XlJwVwaNK$T@Wh?V>fU=EFzNqlp&J0R%<B@f@hCLd-)A$`<
z*sGyuUuDx#=Y9=e3ukj5_b#uEBw5aOK*KlO`f|2!1rG|cc}T-y;hjd=*!-S%%<E>R
z9M!OWgYEB%$}tVcIk#R4U@M$EgQ@qUhMzQC)^LS8tKp=EOOkP2k6TY^xTt~IM1ESs
z84V<71<whd7rY?&iy#$#WiISDhy2E9S!dymX69CA?Y91|;dCK0ZolwZu4?#0!wn7B
zG+fv4ppsI#tMcT}=2xdW>b-8esqyQrEKKT!-AyOlVR~wKT}NLXe`>hLN~oifj{BS&
zi>;0#Iv!~FTf-BUbY|Hq%R>#`q1OL||D*A%N-h6NDI=MXC+!h~VT1BmL$OUZuI`zJ
zTsjKsNY|03Be#w(H`)s5$fIM#3`;&8({@-%@=9|+Yg>Mi%$sOCch~Z9UFB$N#oAGU
zZmznJ4%U!?HEoZUTB7qTMRgR@ap=6QoQ~o;UaaRVt(&=4Lg%~CU|N;Z5&yx;4`Ltq
z)AhXsTNxc?b!@+C2D$&Tr@RcWpo8HZ@1IG{$~vm(Xr-gIj;cDU>1d?GqN6&CzmD2E
z>gcGc<Lx7sS~|)XbJm^bq~*EWoi9-5ip_e&QddX5d#?IA8tAB}BddjtGkI^jlPOPy
zhB{ouoxc=ywlC?-&|&4ebhOl==&<Q<=y2*_SME6$yN;1}ESn2v<Sp*}nE%P4BU{J*
z|2dd_jde89LDE!^Buhv$!50Oa>)@Bwu!}=ZlybM->~QH|zI$}Ib#&V9<YeB-pXHTl
zQ_e}Y(a~1N%R0L1c;`>oAD5MOoQ#eRIy&ljNk^|OwoN0O<Qb4TX|1~x1H<Ah_o<_^
zjxN$wWkBY^VG4VFdDFY;=&9pX9o=;v4>EZ55b}y(uPc^bI!^9%o&Q4VqocQu1Gk)&
zo|^9fO#Z?4n$Dj<Qa<kO?5Cr@j@3H8&@n*A8#*R(xQ;h<4CD+MFgo7SF-XTy9mBXO
zItFuh3fhKn2|rtF?zVq>+FHUeL#6)(7azW*x8)wLgU_--P0c6TNFDF$_&~>a9q;KF
zrDL>?F*<G=O2fhmgZX_OvkQ73?o?_XbB@(9PB)*|^Nv`$ceK4Z!9vb(T{%8;0)ymF
zt2>WUW}-4##}pkO>6poRZcwH&m~~924|gda^vj;1V{Jiiy9t&Lg#^D;SlOD)x6I;=
zbS%}eOvfA@AM2RMD6-fxOF8H2NX)cssG_hmZI`k0bu7?9BfJ(0`9yG$;9|i~1((py
z5mW6mu4}Smg^tgKET;p{SQbuoa3L#otdfjlUT>J1$-H~|s%;IEl)=V*(eV|hs$+|e
ztvc4}@afp7gFf*ym3ApQGj5qBpd+Xwq$AovQFWL;@1TsGXCVnoGxA)hBPJv+$X-pV
z0ZGljoeA#U-%dkEQb>*<CF^x;NO6|dO*;Ok<Ibzuo0+QfEu1h*M0}QI8}pj0OV8S?
z<C)L4gIS<sH)Cd_btgUcl0qRLG|w6-wI^Hl=vZF7+57iwkDn-C>)6M-RLPFJrouNm
zzSZ%AjuSc#vOeheUdK@#hdJjB*6(EIU#zs`-)23++?j2uo5wuT9Mf@JN5AbB1|A)r
zzp7Hcx{aIuqxkA)MmvqPR(|5W=2<qivYpcLq0e$o$7ii=r-h#pJS#ZihK0T7rFY?E
z$BzZQzv{Tiz(`<j0>A0Fq@!^HO%nKB$7O~}0{IiTqT?#-wpk=`O~-W|H+9_7@rRD0
zh3q#d9BcXQi9$}Fj2)19o2hrwdJpz{^rw!yI{rClWvc$E^RqmjaZ{E11-+vux=vMa
zJkasC49}gwLmmF(*8g-oqP~uQ#YoX~@9plknpZ84bv&W}b>vFmNLPh!pT5}jR0sXs
zwT@%RJxf}`%<k`cXJ+i;ze8l?NtpE^Z^E1jze9{gpg;lz6R4R$tpw5&KmwH$sFFaT
z1PUimCV{dE6iJxLRWyNO3GkS@a+gv(ff5N!ZfGl&K*<Dl{$d+cQK?r&A>nqEPT<{U
zb_OaH$|W#peCGTTS(OqfpFr25_6i9z#duW|a&nWE`^asonm~heZ?yzi4K_}3@WjaN
zuAV@Rgt_mwWfmT5Ur3;K0!qR>;?_x^E{9M*fiqR@^*ANNvZ{CnAA<E0=sd$hJB<=p
zbHHNdw8vOTEYi#n{C28?uL5|cwI$4FqCEiz7e3$OOdvA>7BS{BUnwy5Mpkh(O&}|Q
zp$QC2pjiShCeVvMOrUuJ*<4ft-4bY#K+6O=CeSH?30Ish?p;lrCjqxKSpg{YCNL%2
zPG7a6TPiB86KErZyseOS3A9g1I&f(f6?VPE<s|TAvSaJJ%^ARIFB?sDN#JF%On!Eu
zjfvSkfgTCG!l_=evV`vZ$`Tx(7F=TMnZT<FtgUI|*?w7Jd!Gchx^4Xv7?8kg3A~=b
z7bBZc(pTjD1bYq0w3Tqa!F^BQ;7rTg43gdUfeEv|y_LYGG7hs89I*_d**$iW!3hjW
z;N0;7+}8Vrluauw!xQ{x7>wr(6Bv=eNP1(ZGM0gnz<UY2pTOt@HaGK(VtjsO;byJ5
zYx!uSjW4nWR8hvTcb$c=P=3E=8J93??+1b`%f~J`Co+aP$xm$`G6LyOCh1OPI;VQo
zHkI2k)xiVIv;=ZSHfK<A@|&Av&fuI^T38}JN?>LJvl5t{z~_f;e5RNO!X>sj3D7b<
z#z2~v!2AUMP2j%-79_ARf&B>_NZ^wM79|i)Ad<l11U^mR%LKkkU`YZ?6IhwRssxrL
z@L2*YII$mW6DC`hGeR1edHr@brT<3rY5REsd-5sFcc$TLdY;QaZso(bRl0W#9hfVF
zU&)gFz_~Vob-d#hOCSMX0>@|C8urQVWp(<6zf{#uNiczs=%@+&!xur_ZTz+t7S(71
zF|L;}pFlhTErBGxk$|4SACIjG?t5AWtId>6Zk8rPrpmdkXEHWarWAK>Okjg>Hd#+j
zbhojRvxaO=U|Ry)rJigN+$zO{#cc;G0N0hk-UN0fKx-VbTb9FecfX3AmFjEWH{Dy{
zqIDmu$`97X12W0^MEE9wZxgu4GRsIy;7|fTCGc|shneY<Ek_dgUW(Os3D6GDEl0Ui
z3GDvKazf^CJOQ=0^9Sbae(SKRc0P~3+U7pr+xa7VdpkM*lL@m9pJOwDQwf}At&oYG
zO_<N1vVEL<LRH#nrAsd)@Jj-}vN+`NaP9Z+HXnD?!iDquSoqrQ5{rKV_c)CNF0=S2
za3cXO;i}A&yLp{A5>6*`;2$iiS1tTTm+UK+o1%G3@U|ca-eD0-@jn^Ho7@y0xMKM$
zfd|Z{dltsYU9bIbCJy&kT+OOZCp;?R;O!nI@R;?%KqCWB5_p<GDFdYqJWC*#fkFlf
z8%Q&d+dw`8`3>`tl*cdwDX)Pd1?_zDeqP+!zNd|=D`0>T2m=KTq#Ne<&m`YcI2jV&
zi<(6^+yG;vgaJM>iW&H<qMf@_T$*$;jh7VT3}9|<83Sbv)G$!fKsm$Q$4Uk&8z^s}
zf`L2Nn^!czmELccPUK2Cq>6#6eDlXJ6X(NpZ*>{PcxEhd$=9w}Y8htY)HYDZzzYVx
zO!qSIs!mnv8s?W2@kv_GFawVZtZ$$J?{de+z+jwkdKLp22HF^CYrtwiG0@Dwiw0~4
z>;{|$G7T`lLZ2uO1B_U1I#<nUH#X43KvTm!)vOMi4#^T<aZ21)T5fJ2+dxYLE(1Jf
zx1a;}Ss7Qk_FLI>8}Nvvl>x5-7KEi`nsw;yqz7o9nyn4<(NEIOKzjqP(ujc$209w(
zZlH&OP6l2w(8a*Z20F{!xG2t$Da`2VYM6=7tDAv0OElvylqzL5Nw~AG80Mp&5Bi=4
z7)YEC>q&0|eGT+8(8s`QG9|_;j|#6F{Lps>{n_8Z09rFJ&;WP;4Z}Q3d^y>|$-lA5
z&3)$qgJzlFZyOj)?<J9$#1I2R4a_ny+rTgb!wrlvFxJ332L5VbetE(O!+Zokx?>q>
z;9UdnN%MWdQ3gmx3#ZQE{^ma`&aYwTTRPMqXW#?rsu*&Q7czm{VPFzN#lVO3%zb70
z2bL-Hq=9J+)E4%Jt31;UY;@S(+vu7h<Y5(CY?`w5Bg^3LEFT$|DWmu|P1^y>9B!zA
z3kH5MFxS951Dkjk1JmDA<{MbXP&cr^z(NC`7})!-jn}8ryGWXg8RumjR9+&@rP4LH
zgfsVS%W?xN4EPNA4Sa53rGc+RhrO#9zy@Y)u&p-mg$yBIBN7rCqz=hi=I?9^$vWxc
zT>=Jz2I2-Z1EJJ>!Uoh7?-x`e2BHRH6h>@4T6j2$ghq63>riXbK#troVZh+JA~s%J
z)OxY7QE-DGKl4sG2aXwT+iYNqfx`yAGqBY_^0KnSz)l0(n8>SaFYdQ(H?Z`wLiu~M
zEW0?|z}E(LOYa^*b`>~n`DB)5ADafgF|eQ2W1of7qnsB9erw>MfkUEC3A-qyeU3e1
zpqSnEqk-=Y95rx^`MckCLNrN^8~8yaw9h8>dDEW^{A}Q)4CL4|22Ke-Ey&qYcvkp1
z!Sk{%3VG{a4P0c&N}@^<zZtm1ikd{>Bz`w=*}%UB{xfjJz*W{6CKros73G?N8wPF~
zxX%0vDu0)A{9*7t3iGE(Z;6EbwgJjXsL*PW<xgg`fd>>CxGy??i7DzlS0FwV36=j5
zYwS9+$o%osM@&ouxspgr;)%@snQSXP_LNb#L80Hc5cjdXxs%9~M1dp<Cb95t!MsV+
zb@`Jxby&$KNHty@l1{bL7Ko6|=W;3+Nt(_tl|<<zijpT$JZa_v6-p*iLO7e86~mRE
z%jVCmmPw*Q5*3pun?$)JI4gz|cf3635HUB1PT&M8CGp@Fg%?*^HEAXtb6-iKS`yXe
zrZtkNn?$`NY9>)Di5EmzJBd0;?B1a8%Nb~G=O=FNCg)jSEHq4_Q4$S=)8LQiofcZV
zqGTjtO`2P?CEfc&x|g{?&eY%?ZK7;X!jUv{Bqkx(IEf}nY)E2b5>1oHN}3gHU=lnL
zHA|vR5^a-UfqF4%p7EL|k^P)BP+ACSnS?7PaVOzPaj%e8f~~pyp7}VuT@vk+cr}S$
zNvwFNbV#C85-%muQJUG!^HSJ3i7rWWOQL%c|D3kHEL~kw3hTa7sMbTeUJ)U6DCsE@
z_OjVKiGz!6ZzTDHM@pY0UQ6QjB>IZ5KRqL)%d7cn_fe=or1F3yo;N9ZlheCycD<Fv
zpd{W-VsH{OlK7DIKZ&8-<s?QWF)WGUNqkYuK2k8USa~N2BCiobTJ3f>E#`QaUM=Rh
zmF|5%iP1?+N@8*nW0Dw~#CUNIkBH-v_#kOMfOt;enI}K^O&6XCNlZ+dPb+njjYm5k
zNTwt)H3=SCrYA9tF?`Y5Yoe>S4!-E-Gnx-vZrn#n%w+5(@ktW1k{EH(_Hhz(lbB6!
z<jR;Mo4akdjb=-han2Kk1xd_Lng<m=IynbUfXB;4Ni0rcT@t<|K22f?U7f_|N%PhB
z(j-1(?o@Cr<68LEhtJlfn3K)rN%Q44$x1q{o5E)|&-^5-l2|R0F9g>Jekr)Bhv%y#
z)(YqGhRXgV0!i}-VI&buB1Dg+Wfbm{ttPQGXyv6R5f&a1j0(n*=36mwK@u%#o^wd3
zpO7_@&}LFB=OnS7`zQwt3OCUw44x$ZO=5ErTaq}R#08p7Vp|f2k~o~i_9S>V+rtWw
z#17$X?i8|%87hSHr;yjzNqm#i*(YQ_-7ADIZJz6V%ODg9vy49fj*d;@$0UAA;``Lt
z<E%Mp8Ak<=37RhfSZ!X-cS4#p#q-tANt{gLtc*I9lAjheD$v3i=~{E&dQJ!>obWG6
z{F=lcN!$?sTok+{_*)X~dgf!~{GP<+B(8|?njkmmY7#u%@xV!i>muyfGv7@i_ma3T
z<W>^5lem+_U1?JDPa(WDIh{cKOC%2jX@QczlXxgizLC!6e=Ivml*~b?95Zwuv%KdZ
zZw{VFBr__WCh;tZT++*CT8<euxdquI=cs%+D42tE(aE2K0y$<laTL2qkb@#QD4K&p
zqCjEc95cVz#jBVom&ieJA$w~$o{u7y&Ow<RWaPk_gR(g&mxEe4cp(Snb5J1%RdY}+
z2NiQrDaXv;$~oZSlbpyVNfnXvHEeYeQeH!pNouCl$ZO}IP7dnlpg|7mrsVZx>~m{W
zrm2QGXe7PQ$8w-Wn$%HpV9P;f4jPNZo&$&6==pG`2)SMkX_5mLkmfna&Oy^0WaXe)
zj+rA>A2?qW!e0Hjn;G3A2Q72p&VffvJ-?|d2hXk16pi!ZN?YfkO%66~!T+|PZ4TPy
z;QmJZwGr)kFY0VS<qhbVgHAcHtVhOryp)5^ISAw+n1e1kcsU1Cb1*FjU31Va2cvTE
zeh#|lphpf~%fah8_&=t;14@eG`x=(Gmz;y3WCR>0E^!BUb_78rXC(-VASfysB^p37
z3J3}kBq^f8bnc#>nI1q8P>>)J1O!2%A{jyaZr6VN&i|Y`@7#Lzy27hhudAx7yL+%2
zTSL8K=p94P7-n@3<tv{%;6_g2wV^&SJQqX$9-+F3j{Dc2gD5{<-7kjzF}xVVOEC<H
z;e{9m65Pm{-7S<DkW=NXx55@Lql02ta@g}6qJv|2nS~<yMhrt@{CsF=C_A@VR-O9c
zCwlt2bPv4}!!TB_dx&AU0Iv%AnxG?McwK;^m2xR?>0D?<!vK$VjH23O7#DMoZ;g&&
zObk3J#8W*yax<RR8v~CRjr}BpN49uA<Sp7>3=?Tl-}xu8MYlWzJk0Zl9iZ6M7^cNA
zlWmXT9V%yX==Hgg88N&Y!+SBjAH(P=p;x+wrn4q<BQLZL{?^Eio-G;vAcnb!*4yQs
z9mAX$mc_7~oEYZCu$X-p!~7T)#IP`iMKOHHK~y69qZrPu;whVG+oWgWs@$VPLc6J=
z_CasS?Ej)6rY?!$lNdhbxELB*%Arv*n=%X(UVkVMxfpz|b@L-laz2Y;MGPxx7@vAp
z$M89uPbK$_v^*6k|3uEVQ-OhnvevM|PX;Jo@@8Ot3>#uN6T|N@d=bN!F?=7xt{67P
z@Kp@S7=~BK-4w&uF~~6}F?>T|zNQ(26vMYMY^H7O_pI0*EIc=7OAMsV+6VG&43C(Z
zbzonFd^H9whDqfj@fZ@@a&%hhzKF#>sva=}HDmY>QAU~i>`u@2xBWIHV<4zjEJ~V+
z!HFRq!`2wSi(y9$_U_=e7*6gEZjYf=vFPX9awyriSae*m=*}4S70P9Cedp%>an`dt
zhCMMHqa7MKKg9534Etj^5X0UWUVAKX?TOGn0iL~{L;O<=1%kQPr-cs2a43dfVmJ~5
z4_*As4%+2gnbC^ju;B2l1vy7!7+O70xLFqYJ0=E?$M7o$ml-<2y2Wrx;9=KuercQa
z8;6qQIn6xVW=ZQZDYL9v_F48g{cQ{nV)!G5^D+EMqvasoo^yfSQ7Lkf?(VF&OI!b?
z7%tOz>P7e$m5vQ^u5hq-4ij9B;qMs!5##h4$MOu%jTmmm_yz3Hbq@SyIcHmD-4cKU
z@DA;*SoF4_9A$TD^M8am)`%-z&b~)4*VA{OmAM<@i2g5zd=g4aC?g@igbWEqC1gq{
zAfe!=;jJ^X3K2-?H`%vmXOKH8g(Vb`;2D~guY!+(TSJggOv396vr0-RF1ed^B_v#*
z2kw>eDz5$ce6y4UKB_oAGm9G|WhIo8P+LMB3FRel`t+!T$9SQHiW0afS4qODnYo-t
z5my$RDiW#+@Q9$*1Z8S<0h%je)})4nT9UhiL0nV92MgUAQfBz*?79-_NoXXwkDuyG
z?!FK~LkW*d__&dep@D>%8My@9D&a=W6TG}nh*f1Xy%Ky9c1YMM!7m{oVT^>a5`q#!
z5_(JMBOyyd6A7&)w2{zMLNf_ZO30DGeZuAvT1v>4&_cqMMm~m(S?+_Cu!L3;dhW=P
zibYu>Dfdi%DHe@Lh)VqIb51V%;#@ALuj{Vo^1Jj;iD<k)?$Z+5O6Vk^vxIgMo)J~;
zAez=*!m~pEtTwfJvskqHZSR&BvN}rm_ili@Rcu`s2|XkbFm#pBP2lc=PQH;#W>0~8
z3CeQGc}~Lf)U$-)68h2-Bn*=9qJ;jE>#+w&ctL>X<#SJ;2yFj3cOd(*c$8uJmf%a0
zdkYvMVW<FuCA=(QNS6qi8QnvHcFkWA{3?2=S@9^D>XzWE5?+%qf=!#5``4D>>mu_v
zB)mz@Z}M_DjHE3c4ULi@SInJVDVGDM_S(>BTGZOm(oW%V62?ndAz`J22@>9tFiXO0
z3Fiy9dRxLY3GYalD52N0%_k8ri_CA7Jy`<j6hWs7dis#>T?y|=$ekXXNlv+(LGK6O
zm+;E9+^XyS(?xDGsCnj7Jj$Gz&#>Qe&KjXP65l?<M-moFn8ynxd?<nLcLB}dRDfYa
z-v~YP)K5Kh&RJUnizF<T@QH*^If9-Hd`xXfSSn%g+>obmR+YZN@A?LL)yU$}WfGQ4
z_)G#lKXX{MFdXTVLjeW~aKW-l!X^n{OIR)8a|vrCtd;PEgfAtmV@IzJua~ev!hcPg
zdwN7#7Ro)`+*ctI<}WrjQp3x`UkTbXr-jkn*J4AMsozNWR)Q))ldxIB76}S<p77GB
zViF``33G}^H!jRtUp!i+f{%QT#NG2;U!hAdBy5$iO<ZD1ums@cw06?Ch}seo0we`Z
z3F-)%7L<}4(c6Vpf5!|{UKYoxRI%|9j+gHx?2_<+jgqii!X61HB%GA+gM=R?q>D#?
zk=#S$d#Qw7-UAZ$iRe!f_6rV^c*vP^fP)eaiKNCn0!kpcr;a&i;Gt8Vzda)1sD!Sw
zg2(7ac6oo5aGb64wqQ6}JbJ&ld-p#j;Wr6?Nw_NEw1hJfE_1v~_+7$T34hRFB%EWF
zwui?5<F8aAI&FM5@pF5E7bINb=*ZXnBJE^Pkl}|%0=+Be21`W8|DN$D2iIu#7&Z^Y
zavJkDN2P=t5^hRZ^iFWn&7A9Ebi8@o|6}>cEeW?J+>`KV_fYI+&K=3UP5dL_t^`II
zc$?r1ZEeG>`$FblL04CA!TU=-8Tn-tkx^8J_r8zEtutg4kli!V1!WYH-I)~?#ly5U
zJ}O#Rc2C8VlPQC}P*FxD8IVy-MsXP>WIl*TS&>vyMkyKecnrK9l$PC%ajsQK%gHD&
zqvrR)3bK3e;N5}zA8zDuF;2hDW8_a2C|X%Y6&bmoWbh<2Cuvn>_mDrUQC-HPGA_!v
zB;zp|HDoN2v6Q*Vs3oJXjD9j|%c#Ryv5aSB)Rj?B=9kKmC8NHK$7MVr!y}`6i74;j
z4P-QwQL&SIvu-52xAokLxulJ$3K;<zK^Z<74GQM^W$-S~x5n1K+LT~OwQP#@uOH@=
zqeHu_CNi4J$d(b7(TtM6<<M8OkkMRre~$V4hS2yD(Uxq^^x&Tdy@MWY(MraXGTJ@l
z<jDA_L^L9UskI6<&Xo}>5seD^l%R~Z7NCucryp|K3P8{E43)DX#1ct6$ml4er;J`Q
zI?3oPqpOT=G7c>ZPuk?^!sgrv?0Aqfcw4x;400HHu$ljO$$zz&kI~*T(!YB@y%Bhh
z0?nKEVI|jjm^!R!_<1Vuznq%+g8gL-knu8GC*uVfw9*%4_l*Pg(LiA^gJkzb1DY<G
zFUc6pD&6$(rGS-5&rlh!$e1c~PaDHz43{yI!ZKc!@tTY`X+JG<&aDZJU>BbYy)J{e
zSi>wb-;lApM3mrs33oj*TE-X|6KGd5#>yBcW4!$T*Ac{Lbaz3)$q$z^ocz4aw#b+)
zW1<YMV#YQ0lTHyuFqMOaWs&)gjCW<slrc-jdonUgMyJb|L8Dq5dY^{ZJ;VuH^^(yU
z#e7^eeIUC_Cl0RJGUmwmkew)Fu8eu?-0ZCRLZ0J`*>Y92Krr83;9=52ap7VaAIn%I
zF!TALa)e2p>SSe?j1qjpfhMC#)9^VN%VaE<;jmw1e8#~gLzSV)SV>jO_(sOJGFHpn
z$i;dY8)U4J@$c{6bsQJGCpPx4rIxmaSZCr;fBzRUzLfE`X!}MPU&+`+LoJ`X_*{sp
zID6Hlys&r4DDTl!;AWvQ&rcCq#ul2K42i{6Z^8R@-?9+`%5b5l$Y@h0>%+}KU4|jU
zmXVNQ%CKafz;u7i%K7J;{r$X&Gh5C`D_zSybvKlhxi<^0895~wcqN+|^1i=S#x@xT
zX|yu7%P3eqvO~sBdL-GM7>q0#<*omF8M|cclkpR+f_|o3Xpf8^WYEiT`T2ak$lQ|A
zr><oGD1&sb3}#NSpPr$9m`XUn(Y-x~n0CSvf0l7r#z`5cWc(uIh>T-0j>~8?GdJg)
zmkK#bowvyvRWHIR$Cj#*UuB$-F}+IerjpUt)mu=e#`m7zXmuQk?5T!Xr-jZb&@>b{
zE2HfK4+Y3)+d1_9;E323J}=_}ZT^xw?ijr+<BE(a3Z^RfQ^sF1b&97HT$S;+j7Jny
zQ*cejbvkMVncM`BaZ|<v8UM++CF8b?`y6HaJ$Gc>rSiAs{KJ}*cUMUaJ4;5-mW<w$
z;m*_E_W#S_P%e_%7AjOKnomJ~1%(t8R*<2ffP%@Da|#OD`1c?&mtdsD3g-@N6)B>C
zN~lpPO5EsF7z&ChD5s#jg5nBFC@8I<jDp(FWR_GQ70xZCfD5#C+e2KbZ8vjSy%wdS
z^LB;Hic~HnD=2JQxRQd(qQr`dyK>};vWkMEcLS_sRRt{T`BG7?G>wLV>IxoJkforB
zg2xopP*7JvJq0xtclpL8UTp=n6kOaJVt8;pL{1$AT*`f8gz77JTtOoRPq4AgvKlCu
zSSs33!Qu9PF7AlQ<VtXV(=3k=;8l$kc&Y6RUZ2Q>9KQeoL4$&Z6y$95GO4M8W(ry<
zcv3-g1uYcxY?c*P@NubVO9i~G^X8tdxOaR8sZ?~_p5SjkdA5$r&QUOBK5`WhM-(hu
z#E)=BiHEeyY^|V;f<X#iRNSq(rxkQo&_zL8ZUHHHMnQW89jTL>A*Mb{W%7K2;x2Q_
zU(ezBTQWP*grWhSF5tqatAcK<vw}Vfx+~zcjiHx<9;_-$PkFgW;q92rKII~$&nb9b
zL4Sph%W>z!qJ0(gQ`}V>@7i1v@*oOjUQpb-{6IFdk&ij>4o(4bUQ#ev;Y}ZJD|lJK
z5CyL(7{TT%ctydhLUp~*g@!2@PJAxJz|}hGh^rA7ObWiP;0*<%6^v2b75bYBM$-H^
zIx<=@m0iaEWtVYP&aNM;V7$n4oUjCPn8}2^QYHoY>cm6^mHrH_(}R-*m?S8_4t4Tc
zXn7(uO~E^~Nd>ZkcNM&+V5Ndp3f@;RolR4)M8OONA1IiuV2<K$yv$TEOTkY)!<>YV
z%b&}cIcNKG70gqxP{ASv^A#*m@S)<a0wxvC;<TSK!ASTc!6B1t0n)?_KlzIl{Q6(B
zMYjS=X)2L0Im;Ax;qVDt-8b?nGrZ-l9mrp<fb=s#S8%v(be9zzS*sO%q2NmepNp}x
zM!{MI>lCb~4uA7*VEx4a<n{{zIiwpEe5K%9A+Sl%uW1SUJ-mdJ;T!5i4HIluutf;O
z6fi4tc=?4=QH82duv@_%1)Ac{aMCm+1-b%*y{5oYkW`RT5M36DE3g$LI6@0G=F*A6
z3quhC<4&O3<9<g07hjyi5HpEkn}Qt*b}HB|a{f+G&XJh(y@FlLe4d+a@1T#FthaKB
ze^BrvHL2i)g1rj%DLACyXIAoS?@t^`Lvr>D4>r4G)&T{)As%G3S`Kepyg?jR@C#L^
z;Fy9V999i-cxxzLIy#_17Qt~E%;jv}jBcL@@h<c12LDL~r|4=FTvG5GE3e?Jf^!Pa
zuny%T+@GmiI!f?6eUt#a0sW!i0=@c`?DK-&Xp%$BU{!CCyEt;0Lsh}w3a-$|70j)l
z{g;Bk<!s*3h*^65E7{i+koGGbjg*eE8aEZ(qP&JbHQeSP<?z%{PQzUV|InmWysP4#
zg8TFgDypgYSB%rLDw<x;eW2h!1^HCuS5ZtwaTOUV3aBWeqNs|3DxTH+g;aN6g|35`
zd)I|k*VS;OXR7XQ&xF!Zs7UvSaP`N)D9=`vQ2BlVN~_?kzN8B7Y|u-TQQg;PxHCh_
zJ&Kj3qg+RnQ&FDzsP4vWMHQ7*R8f&RI#fw@r<4?!B;HS~s=A92@=2?+0xF(U@jS0m
zQA0&L70;-ssiKw&uL_@v+A8X(cw9vT6?Cw5RsOTvTTjL8>$$ro`xxr0C^I3OZnmN7
zI@?Ano=`zPF;`(8wrG2(F-zGKoVC(JCZm280ToTCHx+GuiUd_;Q8VMRLn2DYP9`Pk
z*qf<nuHq>btyQ#8!5mtu$QFP_Fd7y(s-l$u<UA=rj-U}ia|K;iC5NdjrHyC;^MCpw
zAa1L=_Y{Km>?svpRdiF)LDZ_VXii5JokUBSiM!JL$4lWZDsGR@o^Z8bcL92;=%u2E
zibfN%hxN~85{v7tqL0dNK}U(V{#B6oDb}Q~>h7TpQ!!jcKNbB|3{dfcioq&gRxwc6
z2~A}Xo3Dfk7+zHIl8V?3_Y@F!3x}}sDqd0Dl_T#^Gy`VH9YWqR2wqk3nu>8M#;X{i
z;&l}xRg6;c2K%>9i1(B?Rd;KSyHeb6sCyweTE!R@V^z>B2X@cpt*7#KZ(don&j~8t
zQh8DilW9~Hd~d6msN($snSbmIrb<Vd8@I)#sP4UNs)}hU$oE%p4V(5!Ch>ceSMj5Y
zy(*@wn4w~`iY=^zikY-+S`Pb&Mx|n*ibX2ssP3YBzKR7Z=F$Sirt3V_bsC&Na?<!A
z^|m(j5ijW$;!~AcizBnwggE0}tm0!8OH^<Pz>&UGbv+L^bw5$D{(254#++$0x?II)
zD%O!n1ybQxvRAA4T*XR(R|!fcJ;@qT6BfEw0M4%Iz8Kx0;tLgDso11q!<x{SDmK!3
zhvaZiI9xBn%5SV4`I`Dv;lGyqt%|}W8q-g5$-_0y!7V`w#8lo6kW`Uk8*8+XRp=@V
z6^aT~#gLKNzjSWSeI$)m_iy0S`MHap37RTwnx&a*sfcrg{u}r^f8(!ewBVK_nF-b1
zfFf`>=s4<C>{PK;#WoIk6|3q5nOli(JuGWG{R6+QmeXSTuVHQxe@_di#;B9)-rclS
z6>EMC+u`QSmet@!*5UhsT9TK0T>Dh~q~fNETPpUeIKaMEabCqi6^B%uQ2B2H{H)@z
ziX$qH(qF0We2H78v=(keb6?^Z6_ph@P74>N==(c|c1WWo<$UQBos8=4c>m7&bn%^5
zaYndAR*aJ|o;FNXjGR?*PIVuca#M>B1W7NbxX6N3{H@}WipwglsQ6QL=XkVXUdSDI
zUQ1K_OO(zL#5!CP7R!NiUASLvao-S^(89TSa$Ch6_L_zw^#3aUQSqOOe44vBx~Jkk
zoj-^CiO}N>-DMgd7CfNC?;hGyEyCp|?>_l8cRgD`Lxu(}RJl^)8kwAe8VZS|!IguI
z7S)icp@fE#8la(=hT@uQ(p=)vT&uQ;(6so(kT=R-OGis-uFaRx+y!H44P1HA*j}vO
zf-Bte8Y*abOT*h5Dr%^tp@oK)8Y*k3q9IE|6Ae{0JffkIh9@*s(@<SQT@Cd#JgVU_
z4K+2?Vh;0=_l&HD<~}v!bF|tT7QExTbRk%WGJ~=R(t~__c2-|=B_G$&K*Q5*{KO4~
z0H3T;jGPKv!X6<L5d6j(yc(G5)8H3;X2twTDbLG;f*BIDz`;OM4Ws`Ha0{imhGrT{
z4-Ng$D@YC>AXeWW%GMCpFi69T8d_<1QbPv~9W~@ow;Eb&XrsAXOt~7KVp6-T>jiS7
z0&uU1-^a_Wp8d3jwi=!h%yw)=!Q8wgrCRm}W~jZ!`?Y%^A3yP0X4OeUXARG3cwR#n
z4P7<#(9lyuH|lLf7H84jHFq7vsWmBQ)V(zH)-YwCua5@KuA2-9acV73%;H?S&EL)X
zYVHcFzlH%CIPvbMfvFUGfyP!kTEh$t)ZE8yJ>QFv$qZl8FqjGvmh-ZPAxzaULc>rE
zuV@&qfkrrtfGhW_KDsz=BUGywc~$V4#C@CU<#S)x@TP{5r2YMGu=$<Cd3!ZGYr8uS
zqr~L|V>FD_P`*rboQCllU-k87m5DOX3DiKDD9w^rP1G<+!#5hf)i9Y^B|WQXmTa$v
zsT!tfct^uR4U1^}8s5_|L&FCe-e>(U1{tOcz}_D}D2sM7Q^PDauzm0&VJfpVyjmto
zvF@WIb2O076?C44`2s8u^g}_JnrBF~qQx3M7S{Ngh9w%7YWPIMry64WJj{(YN#QCT
zGby=D6hyF`17}N^U<JF0!morzmdj<uPDVqYYgoha&gSs@4;t2SAl&qPNgLMO&17!d
zexYH5<~|(vj|p*CnV)o+^-kv0H?n#>@O`CWlSqo%-mf*7Z)7nrpUoP!XmB*7St|_^
zRb4%zYmhZ?Nv;Um?3qli(7CQxH9Y=QuEvg@nZ->5gZXH%G{iL|G$b|Hn!6!zvV88l
zvqQ7WM1R%86iczHWun~=hq=;c=36yv<CxNLOyg^n_)fz<4L{M|H0;!{heJTj2fo*^
zOT%uO^o|_5N_t4nGwBBT?Cb{(KWd=s-b??mGswj(DWm&YTMdUb_jM{B!#JqnkcOY>
zSZ;ec54n9Uhd!2`pARd4(Qt%%o9Cl9=3RiZg5w%~)$qH9vl>olILVG{<U6h5l;+MN
zexsY3nn4a9Qt)zuGa5YSGwGSRSU$&Vm-{YgxX9*fIIn>+oIjH;QM{KZIW&t8D=%yA
zEsrxL&Xaj_`Afr9szS$h9e-=M#+K^nrQ^DW8}x)a>gl*iV~B(c>L{e+7MB2Q8poqx
z{-@y|0q$$Kw?52!=sgzHBf`7nzZ}BU!~Fnn$Gn{P-+Vgq>n<llckj^!SYrOhj53M$
z@xnTa=qRhBoQ|S8GIf;DQBntV*Yg+GQ6oExlZRrudlZCD{^q}-xwRvubaxBa-M%Xm
zEiG^vLCK_ic^wsWJffqTj*7awD_dDd6&;lX<}NEaXUar5x|wHH-Cd^fMpj+NqdIEp
zsHJ0G`P|1?w2sMbvREj0IQu^m;i#{zqYf*!CbT#0ZhLa+#9JP3L-ln$uEVFpucLvE
zhB~+#;L*`Y2loM<&@t?#NbOqT1t-1q*k@-38|#?w33-Ls)BomNxfBZM2<muRM_U~s
z9a%bB>d4m7L`PHI-Nb07yPlJPPL&R}xsDdP>lMe}bT>EX6~j7O>4@ma)$yc`*q9vd
zJLL#aEE?c$6~&^ud*t9L9j$fnB{d3+EFWwmn3SOtX0)A-XLNMY(N#x#9nb3MC@R2m
zJ1}}ZXBhWw3I-VMq@%Oo@Iq!q&)-c*_7Jo?H8~=S6@GDVkeHyijy^gT=~%4eIUUdI
zs9ZMsu8zJs`cXwXhU@6hj@B_)$ICii&|T*|P{$x@qd*pC6r64DZJYTb`;o%kTmx9V
zIKnyY5Z&FDXBbLj>k(@8N9YwD>>!3)bMYz_rDME~2|7mTc%9km7%2>f{r-lIf6GL<
zrGKit@2?v<qjZebLBKFt$C!thHOXg$#_8@<oJnu#c$-+qR2>DfvuGz1bxhLTmGxxZ
zUH%g=F#l;fp6Z;-OIW>kboU%o?0$&!Jst1sn9h3A-gI}!f1qQgjycSPVmi`gLmb+(
zb$4yTvCpX;kAPB)9)?S1z5y{`#{wN6>i9@^AE7SPU2nrx3@4D>YI8kCR^VeQ_Il2G
zoj)1G5*<r*e8R5Rv0BIHG?j|E%XBQ)@tF=je!AH<YX!|r$0{AX^)r<>eO}H-QJfMG
zuMvFr5f$ZWy=I6{yErSz6Z?YJu0!GgzaQYE-i<oG*6|J1tKlmhn}ieKl$FDuv-fXx
zY|+74J-x?f0X7uz$HcW0E9P>_Ewd~gst!$usl(#sr^0j~y6(>T4IxQAa2_7lVe3ff
zNb2A;et3-*yqu-jH*!<FYP*;9VQ|ESX>s9J9b74p`JIj(bU_A+@*v!3&rThObo{L2
zdmX!U+-?xsO~3JHaIcO%I)325EX(cg@Q-3#b7;Sm2<_AHlaBp54(K?@nsg13k7TG@
z+31!jq3yGRy!<d5NH59^bsW)gRL5Bz=X4y?-7Oa`!G6<mT*t3EPS6X{6zK;RcuopT
z^CpM3M58**3tMKL5%hOK8SP#v_YWQC*)AQ|bX?GJQOBROTVbn*OXR*@HhM|NWqQRe
z-YbF<a6s{?%2oQ_mN^T`y3UaH$tlfsdVYEm!*hd9pnHfbH5&YmyCJUE?&!G7Qbvag
z8u&-YJsl5p{HNnSyO^VObSUrhX#9W@A9M4mTs{N&4HPikqjVXD``C`(RpV5FcYi(v
z=U2b@K_})`$UtFN`8*))J{iw60D}jv@PdJ228tWVGSI|82?He!R5$Rb0Ulr|WuUx)
z3I<AxXc<Av3R+H3%KXwgT+u)!1CJQ)PHANWRSZ-$+(QxE8s#AeQl5O^{^!?O!D>Q=
z8=jlWMjta!!$1QA4Gq*ZP|HAFky_huH%J-k7&urcD_Jj_8>-Bwo`L#8fSb20=y8La
zNIrr_2A(kBHxMx3G0@n6*MQH!p<4lN$?`&G#nK75*Scx8kI|rkkjRRAv*a@qHl(S6
zW(J-$(7`}+11$`+HqgdEO9R;kA_j5|gbnr@o-~kSxbqesJt~vmeGiT+K2AS4AK)9@
zQC4GU)>D+^X%?|n!o?sLm`@vSw4H%x1ZYdpC&VOr5<XRLZ@BJ-+y2~{?`WWtf$j!+
z81BTQvw^MxbP<%Z3vSBMUv)FU=K=&h4fLWm4D>a?+<LP&w|k!xxR0RRZ=u)XK<;Ot
zKYJ?SWzD(ILox0LGKYZ%1{rwQz<UN>H1HA)$-rm>gAKfFU<7;9zz_pN4GcH%s)1K%
zAvZ(AM18p2X8t@nlIKFXh<=T>aV10-%0)D{V%{*^V^MDk$_W*H=1BHeg%Hn^jG?jJ
z_P%XkqJgmn#u@IcZ@l5|Nlq}_<0#ZE@mqpJuS*S2GBCx!RKtDVG1+kEhnz7^Gu(Fp
zIQ4qRa2NZW4Kj0T`+Wn`4J<eCnSmJwJ}|Jzz+&pnz$^pv4J<G)TeM=1fw`hYcFI{Z
zmmfBnC-^Lstt0)=z()oaQZsMmus2y2mCt6fX&)O{V&GH5-Fe_H7E?JpUCPUU@_u5t
zCv6Dwy_vm?73dS9+E*A@Y2XV3Um93tV71}inARKk+`t+GYYnWU@-v&$HpqW_ru)2x
zTB3Py9!s!6D2;ckjRw9l@Qs0Q4Qw*-HFK*IqybQAR08)RXpPj*W&>Lc#KcwH#Mn_b
z%C3=w0n>(MQMzKddmxPJ1`GpdEc|Z4G+?nSP3$lcH(>J&vx&AQ5(bh6{x$HxK+1q)
z;IM&T*hlOX1G^0D<`6cp-M|h5JDG!lzqfn8YZm(0@DSvG&9ANZbgJe1?5g*BgWn<X
zE}iGu!>%{5*T6n1=U$-CSDr6z&yNNQz2<W-vHU+7czmAcpn?6=(tS?@)qB7|y(7M_
z7Wxl~q@M+)O!HITBL<EdxM<*#fnx@a8#v8Iu}3(je)62)0Ica_p)03)P8vAH%8&Og
zotg2Q0K~7H_WsTbXL!yVn9#s?mJV=%=hz|7IRk$Pyx;ciZs5Bhsyb-BuizyAWdm0X
z+~&Ag>8bO*|4#$gIbQAs{xZNQ!&L$PrdLtD*989Pmj8x<n+9&NADe|X&di|v;c9+j
zW^zYlbyv`T1idHdeX6&Cj{^U3Xq%{IqPB_rCNfNvH&MYv0TTsH6gN@A#B=+?g-m2J
zX>4#*p>SdL-I!nz6Ga6ee)mWKru!jfhGGKntIPcMa!G;9m?&l9UB}N*+Qf<@0fMq7
zz8@JJGcs7tMAgwj3Rg7whMK3UiAPLS5}47-CaOHdPw)5tv%_D_<Qv)HM@>{WvA1~R
zt5P_(L4cgc1iyxfngWosdAz5NiMl32CbCTTCkXXSJYm8kaD71^H_<?VhJrRS`Cg}&
zlKdq^V-qbed18kHJ^{QYru51n$8RDa#Afu$2nxWzNK_gSY+|CRiChy=6U|ICH_?jp
zZh*fGXkog4uef$6(9(4OAi$7qB5b1Kz#xA#!03}EhW8KVQ0@JK5kU#~TZis<15cS~
zZK93o{{5lpxd{IU;r%5rEfywiXW|(X^Gz%;(cZ+fCI*{$+2o`P9ZmE$(Z@t56P-;A
z`8l(Pi7qC-x#R0@V#YCFR}<YR*}*repKn3Tb8D|}^EduCFZy~?Az%0&3;TMR$bLS<
z_nzlD6VIC%Xkw6wz9#yan7739_ZrW=XME#6_Q*#A{Y?xoLGXg01P?MBe{{jmOr%KQ
zMRxru|4SlUf*~e`niyqbw24<}9wuIA)7X6ahb5j7R9bi6t0q|PYbKb({o8J3T3>dH
zYX|?Ef;rMeug`t2edSAx_mwW-A7f%H8)f1H6XQ&bH}Pr*x9ABb-ZJr?iT6#sE!tl2
zu<u;~CYqQe02MNsJuC23L8m?Bzhi<8p#ZPSqj}d(7XoDNE$*LbVvdQqCT6jlG~aAN
z3C92HrHbN5{C~!L^Gxh(l-V!l`Ow5iCcZSW(ZoU%i#Xhh1U^~kU2NiGHsQSIGZRZp
zEH&|oiBC<O9_DYIzwsM8z2`dkmyx;7E2lln*~NqXJ(oAm{=;+hXYUFVD^092vD(C1
zlk<Fhao+Q}i8Uq;CcVU@d7$%uMb<M_2y8I%btgXqlPF2CuS{&Be>Pz=i49~|n&5f+
zZ%u4Av4!1KrTOmP0^GOxB@lk$d?aS#_aA%`J;1Ml7kc>odm@Sn)x?<ZJsQWjFJhXg
z{8uxby?@PP2<qGHsrXO8;)P|S1PPAc!`_hzPpReMq=}RX$3)r$IonKZHBsN^-*>=M
z?!_#EeC49#Z#PjxfSvRn^h*|=x3J5^Zu%k%nHKh#_`$?E6MvZak@=hW#l#Wn-^8uX
z%@4BZMgG$J13#Jk%>?>=ms4q<_kam<O0M%AVpl%!{46NJVF5BWdY5(#9yM`-Bi-bu
zp1sFR9H*~X5&V_y{WCz$CCPJ&K66cY;HmH#6Tb=k%N+k{`qhHX34UjB9fM3gYvQH9
z0tDwxTrlyUiF_6=nz&@*o{1tCJ(o>fF>%AhO&0NM_)kHv3i_9z!)|#Q{^r2B<-KO&
zx&Xvweh%L<@!}Z|Gr4Qxwuw6rqsNbW^Z5UWB8V>-{`>T?>%ITd!dVl;PrR+4pV#KM
zP|!l5Gag=*VWEHpf={j&Wl|vvg)JPO>^auM?Uy1JUVq@Zu_puz#Vmv@WLYR~p@fAR
z7HV23X`z&bN){?xC~cvPg$fobTJAZ+vKClec?;!4l$_Nk!(E$%uU!wc)4VOqMSCHa
znOCt;)x!94(SIuCK4Q5i6{(Zz7OGk9am4-C1Ep^S9<}foGygf<zg(1hpg=7PwJq1Q
z8e6Uj)e*Rng}N5%kt3MoHxS@)LD?vB8VbyEpLhs70yM9j>$TvNY3#GyK4Q6k3#0*2
zjiA5_z2PPnnp$|;LR$;XEHoFwIijU4EU;Z+3oEV%S_+yiXonktRwC(1K^diPBg|Il
zHY&9Jl&Ayi$x61i&_)1a*0Y_3eY-;)Ep)Q*jD_~1rO#UEAaq6L@VUdHa?#>bJe@6c
zvCzXpPm3Sc4tKTC-EyB(P^KGu=SG0~T+=MfzV5y$+{;353w@aR0S~)|eL>~0ZtR7=
z7W!FOW?{L7{uTzXAPbW%ykKFVg*Pm`X<?9s7cC66+?fxjM&?w{Hrw+O^<aAj3;MF4
zLxcdCuUHr+@Nf&SSr}pARhB+0gGtPRnBa9GaI<t{V$RJ*vho(jSQur2vq6@^DOviu
zXYV=xSPSE5GZrSWChL7~3;LFYla+&cl+2E`Gbakp=5o;~7N%O5ZDEduo0)-W7T&Y)
zzJ<>w`QEYct^mZ#GBMr43=1>aI|Z9}Q^I^C^nrz=oBRxCiei?9`TM*KBQi19!aNI$
zSvQWRjh^`yKD6+WzzYPe+c8M5@@^&;S|C`&YyS)|5HGQCtwZor3$+dgmWtF*EKq<+
z`x^w#){pdg!}l4D$3oIV%EC$ut1N7^@D&v@GPs%we9OPi!sjAN&Kd#MTA0{BgVFUu
zV1uAv2>PX<?k|}#1Dn`)Ibp?uYT;`O-&pw8!mY8vm<7qgW(!+5ipK@_m5VYERIFX-
zpHacng~GCh4Lkgm3WYTbx`nuf+h2qYn#8D}CGs={W#+$p5hi8SX1|XKCTP01ywk@9
z`QIqVLYh9@!Vea<Qez{7k89!YX#f^lj0$eI@SWxUr(=hOSB?aBvf6U^=$PP{kwMNR
zAB+p`vas6%qjI~VEaFEF2M!hszX<t#7BU(Jf41-w2dv2FfQ3UGv!jCtMU+`F^X{XA
z1j|43u%$<+#xcR;qMk=Byj4HUiS99>E`nbzoS+qnR5s){0Zv))k9DWP45uykXIKPh
zEu5q4vr);$9~RD2GLGSKT%hx(hm50g9G5IyrX!7`cpO(O{AnRy9Qot;%feL)cP!kc
zcOB^eo91ERI+c9a`}Jzy4H~V5qUEEE-m)<Ac;L1L-<;6<>%uoSc`lZV>dyqvp7#D@
z;a>|6EZnoO;CSG^pyfL^Cw?&BZ`8~r{g3LJ=O@UB<M^>a#jXCLaTJK-?cTwHf)W&p
zqp-jgdIpQcv3gyYOx7whj%QZ+5l5<9#-?r=CE_?((N{8#QgNJ`?>}+H%ZinbyLGNt
zK3XP@vT?Vn<>IIiN5weGi|CECpMMi3f6=N827)SaRE?u~94+E_B#vrvG>oHB-2De}
z^*CzBQ74W^<9IBN_4EBT;;1D+O+m>iayOEPbIV5u^$6CDL+Kr?7f1a#9*?8-)*OZg
zaSWRi%EJUt#Nml!^07dZI2yB7XCi)4?W?=P-Z*@5ESMH1lhHsN!8k&3{Bb;x6~_zZ
zqm6cZh$okik~WQlzwKsonmq(9<H(Mqa~xgb2*=SXj&@X998Ze2=f)9@BS&C1Jn~Q>
zPqCiNVZOgDReHzMM$o5eIR*U7%SWy9(aUo})IVFtI=2@!?-1wbL-FhE5ILkB1(Uc_
zoZq|k6WqS*?HWg)IG&56TO8fvuxE#Quv;todd7KH$3wu-D~{fRNlfPRarBL2P#iDD
z`QdR-zc>c4)p34P5y#3$8OY4T1LOR%y@ydUUy5UJ97Dw=<h&fm5P@6AT>HEyu6iYo
zm9s;PlKE;Juf_3Q96RC|5y$Isd>qG;INpfk%{bnP<6UYdj!|*E#k$2YI*wTrf@9+t
z7sr@5cnWYukKo`JGRBKiSRZCPLDY~9rx{F)W0KG(&3m$F-Bi)PQ-sFYQmTShI!!RC
z)%W6fKaTnA_c*4<F(VERx;b%tAo83gtZ1gd6A!rUolSe_m0Pt!l$4Tl<CrIgMw4Da
z{xZAr$DR*aXz$>nI6mU2|JcK@FpicNLmVcHIbL>q7^bYsSV|qzT;ovV_%x1XH0d}t
zaJ<Y3vF6L;_$-cVJ%TGZ2IKf#;FWQ#5`g@r-7?k)yf%(?0^C0qIM^e|A;v)bMI2vp
zZ1xPs;@B9+S8;q3$G358Vgut~1z3$(uOMly2cBSs=;k=Ki0V;bQlB6XtCLSE#UYCZ
za@0?JE|^~D*QmNU(s7jN6Exy5<G9;1n2f`UBTh>bee}#75Bq3o%}n+kLxNV+J4j|q
z2vgn>VCdP%R(AK92*b8GwhKJUatGkfIKGeLGF@dHyW-d#$Io#b7AoBn$9`ePbb~*{
z@nal&<JiZ+J0~=}Li8t&!3t4gI!4m1J%a~C(!n?m(Z*I~%<bv&e~IHr9B1PAJ&vPn
zW1rx!ahwp~n4rf6{h&hhr0@X0v4hy@#{;K?D<C*cPqo|Q$@LSn$Ir&mY`^D%=>2no
z{vqgj_G!-`1s?r1aFKTbI<#K{lpMU&|0kV4{jH56Hm=6;cO3WW`q-OsT#w@pRm3V?
z@!sGNJMOs^$4vpYRfwLh5GCh!98I3hp#VGLpE&NZbJ<4+JpG>w(o3`JAH?yW=%x%C
zv<kWr`tW=<Xsh{c*EaSPh!(I>&_*HK?M+@zf#|cLe=9_bQeeKngpHCms+!?U8?aGK
zTvc393eOV;R?5aF2RvnMl(SJ<U`ERbaQ|x$#mWo$3buO($t!}ivW+S>zOnHw^SAMc
zjbS#1+o)!vx{a1LvTZzS<1rhL+h|~;hK-sw>e#4jqn7P%5b?!<+BU|I_i)8ZoP5mB
zP|pU}s$9U<w=sBjhzFRfRE##Xp&amdZTM_7vhjqCUcY%a+U}~>W23R{u5h`$br-od
z0ydi3Xl5g5gZoQaRF{pAjpz4z`XBa?a$(DTs(MG=a+}*w-}AAQ7QFAD^_<)3)`X`W
z!Zupj=whR*jVEp7*l1(pX&Vt6xi(s}CYwD`8}i2yR`n@r=7;d;nwh71`-j)eWL0@=
zd)H1+Tk>tRw_)E6w6j6Zjq;&qZSax~G#DxT#AohOy`zmzqSc*6ws{TVI~3h)bhk0c
z#)~$3*yzb#=<OfCw%h1!qpyvAHu~6jj!k2@=Pk3!&mtH~A9CrO^8r$(_7@?K`GUxV
z`3z()-1jy<5qODuwlUPkD>gcxaCZ-07Jzt&jYWsUix)+{I1!*GNm<)hZM<e<wv9P9
zM%Z}W#$=mcTg4kT-ehmupx8(o)Few8ZMz$WqinofGm~$Zj1i@ewJ}bByb6#`u<;i2
zshsmR4TG<f*qCUeRM6EA_cUJr($8|I3LALO#``v=*`R*j5%gU_5AF<;GhOKR0~^zO
z`eull@WLi116eQmX4;r#gP`TCoXn!l=h~QOV~LHWBHQ^is?R(NZ7dMc4+W(LJ`$=J
z9S<*Jzc&a_X0eTrh42e|LX3W5<5L@}Y^)Ytu*}8^>f}p5yJNYH&uDuUqYTlYpSi7M
zFQ1RlZa=rNhSjt2rH!>V)`<+)+o1hZlIAC!^KY=-b32Uk@{R2M{jRBOvhkJez9zu8
z111#7<@V0kHZB!!+_PeIvyCk_ZrQkPBW6RgvD3!)G*Pz2hGQd5Q@5enux!L_=r%YI
z*sUfNC@{Bu$SE|!RlChG#rlYDV!zNT*eG_W`#O^C?jW&Zw2iGcmwwnTw8Wlb8^053
z-$C1G=$b2yVNc;!yKL;XamL2)Hul)~f!$=|h>ag@>}4};9JH~|#;e;y`$dUA3CbvK
zgVw@)4sn>D2oM|=(Vv-HJUsI0<{WNhMh+G@YU6~BlQxdoIBw%t5ki9I4SZ_vl#SnP
zoVLNrvtsliqzv>kXKAt2q>anMxBOw_g6MIM-1CA%1G{y|bCJrg7-fl9Z2U<Rsu-mo
z`^yHM$#p>quG;up;A;;#&oqvZf5XPjhaCEWJ2vie@Fw_~ef(qN9=&A(k0o&5#=ka-
zCr~1R2R8nr-%g-d0{IfipK$+%laat{<APkuF$^1!;U5<)kU+r%dW{Me5|p5D0!0Ka
zDrlylm-=TgiOVIfF}aXDIXYM}fl>)RCB$`Z`zKH)fwC-gTre;u=syxr+ZE+%t6T#7
zS#WtFQz3zwd<r0FB|#ajoIn+Us|uPK_LKSZE>E=tnx;L~6WCNS%Ee%f1ZpPWPau#$
ztpsW(@I(Th1il>^tdl^OxBQO_TsMJw3Dg&ulowKfsSSio!vqH0_cju^-r6vipN$jl
zvkzYaUQzm}Gk&&(73PXKm_R6jwh6RLAd5}Q475t%$po4tz+WL(JQ8RsK(hpz3qWRz
z1X>E5{g4w*xGO{^<s{sNZC)D*A|jfbKvaOI1SP+<0Br<)T2NN_nFQJ=@aU*uAJY0k
zw&>Y}yA{CDA%TtwbQ00df_7)?9;S8`pj!eb1{b1mkB9u80`y9tw*a&RrgFW{hWAaN
zUjma7n4Ca=sw;t4X)p=AkiftM1}E@x0$dsoO5nu=UJ{1EYQH=ngG+DnxydjjfuYoV
z0>dbi6XtSzZf4jS732=U@B~&>@N?-+Ovw=myq>_=1jZ%sMgng#XU9J}fzfp{M<y^T
z;XX*Bt#+Wfjt(+uOu~Jl#0>}TFtE<!6L>4(uHU(bFd-o}8O8+P7927s3P8<INnmOM
zYZF)}8apk4xe3e@b$f>;Ch%SY?<ZjM-|m7EOiy5jz#ly1%oJc&0<#4enGvK|?*SR4
z^AlK*z()xzOt||G98e#Mj^nliw=WhY+}#z1<q0f)h(AtXiNH%Aay}8@Q$d#r%7O5i
z04oGtDJb(<mB4C&KYz$sBf!pz(e(*zNFXN6`-=p=Ot_Epwj{7oG@ORCxqrr20`p<q
zrUbsGPDTa45tQKD1U5g!tNUlLr`Q~7UgGF@DTn`HRTIz>D0&E)hoIB2S<qH=-3l`S
zD}nVXY)Bza{Uk6bi5HVdB#=z-Ck3dKL@EI%f!`B2n?O2&tqB}S;AY*T+nDEQ55spf
zm@C2U31GFa))LQ-1a`8!6WEo&z65?sU^iQ|-S=aHC;2@LdlL9T;60^$d7Qn>@Lmzh
z^t>3_pTN&lc*WqLv7Q4798BO4IiEx}T?jFJsQVAIVv|Gd*7|<o0AK4{xz2Y~)Z|zK
z$LS~OcCLj^an$ejok-xqx$Ki10{8usDi&&dF8epZXVPf_&Io$8V)R@Be~3)}74&=p
zk;|d$2{fDTzmUL10WKwQIe{wz|CPX10sa&;f2HW(0$dZ6S9Ls;d!|tff_qx%23yCD
zPJs9}eZBy91SRLL0Ds*ta_=GMegbEX`x|h>hu(5+=s(^9lE|L~kN0OLfh01LD3C<K
zBtPNqD<t?!a|$l26kL{5uy7JZ1ixq!Rr>qMqzq}XBuXbyCW+!nlt_Z|CB=n#0;Pm-
zo@Ci1mgE#HpF}w!kjJbbE}<~<tW4n~8YIy$=^DVkSbox~0zZ;OwInKk=c}H?qe&c`
zp7B@`wUVfvM2#eB3eLN`Je3-Tm{cc;<HvI@z8$QW1ZiDC=N!+epTy&AX3g+7mwlnS
zVahQ7MoC1I7+u-@{_qn?c#>$Ggg41wZlQS+Et2pj5lEs*5}PjggMx+xEp{-29G)f1
zO1g(giJK<TED1)5^HK>~CJ|1em0)HIN`WVn$PqX<iT_DPk~~%7<0W}HJe5T2B-*gT
zabK0p#(k1_I?1!^XqV)VOVA~Wu1T~{;@KoR37HOpc1&VY`4$YkYWEW^W#}xD$n2Ix
z_au5I(JP4_g89GHJmKDgxq4D4_wg{3o=c*>r^WM0^i85)68)1Hn8cz+Ed~falU@*j
z9EQ9oIWMt)*_A0&P2uGvh9q%;U691kBwnGelGvEUuq1{vt0WdD@oEyUCHd2KypzO;
zB>wB?n~=m?0=zEh8-l(m=tx0F2|8NPF@la2bey2$leqVokNGgXEjW{tm?*#`K{vhb
z&)><<)F~o5m7_pJ-%aAZBxWZuCyDoym|HINK@#8g^Gz3chQMT!LpoD1XHf(5J&ev3
zQGx|RY#w`4aQd$B=Lvi$q8|ymP|!njJs)#WBr&K&<F!c~OM90lu{?>-1pY+OPX%2@
z6}5~|;Mdl{6-kh;PGY41%w&}SEc)|@oHZhUiZSPPNsLPQ)+ez+6!e9t9`Xm+imzyd
zN&J+={v^Im;+rJ4Cb5kINo-ES;Lz*g+af4|DnLw7Nl;l(B?;^E#uU&*R2OvEyBXw|
zOcK#JJ-+~C+5$A0=1cMxkc9J)pB7+V7hm4B&r}I+PvZL|cG2Lg1iwpShXBMo1*m#G
zv^$AMDn)-3bi_2@o+N&t2~G1Q?t2yu@b4A;eS%iq>7(R<B+N%c2bX(}&|^>=m;BX?
z(4i!LW`-gEVL^Wp^!n3&a*k5@bSBhl5~q_mlf;!Ta!v?(Dv6Wycwgp_L;9Ow68G3q
z<o6`bCQ&Ep|09WW0_0J0)GmI~^Q`BXT!Kq%@@P+y6n~t7%giB(Ka=<?i3drHtrUGS
z8M&IojU;Zm9wYL164wN{E+{!!m7=$j{N+0C(SWyx?j%w5-Q0f!Cb%o2Jt{>Bn0jAC
z|9zNRYJ2FvBwoInlP`t*9H&=vGEyj*LLq?*q_Ct?luQDK!h#vA6eTk=1*Fh?rKfDl
zech&53e!t9E+J^~6z-M^6m8(+w=YVjP$~ugbq_=76v_yk&MC-fxfJ+a7drg%Dfd=V
zA%%)5R1&zdphFjUm?!BYDO5}GuYwquauroQg_<eUO5srvEi%CWSPJ>x57tPz+MatQ
zRGT1$mMLVXP&b8oDFjmprBI*Qp7rv8ZsQalPoY5y4O7@tDf)z<jZ&ERWPpJjkKho`
zZ{zo-+=Jo_K2~1fz(Wq-Dahhg9zWk`Xr4k7f!X$^DQwJa+)T7$PJe%kl=~h8kEZh@
zX5kcCrO+*f?kPN(LQV?Lq|iQvND8?rw0@X#RDh@0DUpJCrB_;$(I$nbQ)o*qt;uL7
z1a2E1rt;0H(@zJO`LikaJ87L$=#WCk6gr8};sXDT>z!J?1wj|lL5y}4l2mUG(IbuS
zdi$o(GlgC$_vmtO!F)c2J}EpWIQ-re`8?swj$`-rqkdL+`lm1;1>UuJyLWq#Ln(z9
zMW=k2!b>R(rfsA!iDr|+kQ81^VMGc;*@Ok2S5sJZ(Ep0S!vrOBI2E$NM{ulk7E@nO
z;SJU^g|R8TnL@c){w8ZeBU6Z_L-pGi9VIwqj!wbmtEuVGxD>{x@CAP+l@3iv;jI)F
zq<n8v!|jU_{Ere$PGL$4{3Oeq6sC&O-%H{B6sA3_$vXnPD`>qweo9WK{a0@>Gld^d
zduE7hKVVru_?R>+h4a-~FwCZ1<rE~Cn*y6KF9rE>XuhBe1ie!suw4&*l)}Ok7NuN=
z{3#VEz~U4>7GQ~>Oj?@4ClB$Je1YXD_nx>ah1Ds1#u0kZyF$>Ff-?GAxlr9L!Ov4z
z!_w2<x955GP03jM5U=A{*b?max&Mn4zU0_R<FPb0rtlSua4_1zrWC$r{T+9ReUrks
zDV$5;j}$hiuqB0UDQr*SiPphb3VI5Lz!DoJ0QpJ^s=%6{`Rhc;G->LMLWvZT1grfP
zR{?@!)6{SKZcYt7xDrg!R4#<lDZV1%cW8tcLyIniI62?S3RH>`G@YIE9fy3r!2T2t
zq_87}ohf{u!Y;wwm%?sZBl|@}DfWW^qkDv&``X7S!(PFe@>DMIPXd#3Foi=Y97*9Q
zom=I|&nc8X8C=yhM0_}f2bH3~u$L=G89kQ5@f1$ck~yJT?faFkZ?*5FpeF?7_e1i)
zZz-G>VrNqLodZYUmX)J@Do1%O0qOY^E~Icjg@04HNY9YM4K`}A=W+^HXt5`~eU^Cs
zOyMuOtW~}ld%fgbP2rkI`diQs*SPN}T^D$K<tXvZ6uMps-b&$i3eUI5x|6~`bmJfU
zneE*a`pxrCnHsv6;_K2GocWXgfVPyvBMz!L?!+>mgJKSf3!Goj3_%MxC@27B3JFly
zL6L`?q7E`2VmSD6C!YfQN;oL#psa&(4oW#F?VvN)1wyPt5)70fhk7XQpn`+S4yrh)
z=%A92WNJS#=S;7N<Vohyst!08<y9Zg^H+E9&K*x32ah^<%s~wYWY%&}TY#E^cCQm5
zv;AGqs5%kSyLUWw9n^C`z))X+w$ZEx4jMXW<lqShomc?}9tVvbL|B{yuLGZhmJYHV
z_#FfsG<Wdbc3;pz$U&BaCJq|R^^lXtY$~GUG!tUqlydouwxDu!KQZ}Xk@TdXtpp`A
zPclaU?T#nv;3)?MUiP<l&{_cEwhr0|{IsA4zV?yXPT*$*{i<0mIg!%7XGOGwgO055
zC13T@u4ESnT^+pW;3Ws$9CUZ^yo0_DdN}S{xVHnYb9+*Cm7~2JywNDsV2Yo0?jus4
z6O_>x*ZTSi$rl8N7xs5BKyaAK9LO2yU=TZWa_H|l9!3W{c-g^g4mj99)G|niI2bCT
zuLwHa!7u^lwhJ)zRe=fUE=CCaI_u-$O@T*J=QV>z3;8L)Fx>HuaWK|F%z@-!oP+TW
zmOA*v!35#QK5#J8!CMaAb}-SwBnQ(SB>HCYeZa{Mra9m@ONpmAAe}0rd@+sq9fvzk
zc+YX)Q=`oLLLg6ghR9)K_Ym`$U#QhA2lE{)a4?(tyyD~HbdH0$H0<wuiGsd)0;H$8
z`w|~ISmb~n?;{5b9e1;Wn-aI~6?ss$F<(AfOyzSF{OP`kw8R0wGEMNQXaybeItR-H
zbGd_ib;6%HSV6Tr{G}S!I9TgInHpN{;Bx^w)D1JrKnGG`dQk??T7SjqMb|snAWZHH
zhi^UmzM)w<sQ-9)ql2$RwwoM$Ex=24!XGa6NtL5a{no)|2U{HUd&*BkC8bFd$Sljj
zpAO#}g35Y2*ze$ggWFR*x`U*Hlmo+o>A+&;xjdQgNjQkJ&htICpakUSB{>e#4u6so
ztX(C#)xkCgyBzFhkFdfHzIU*<a+G0*06PU8eLm-GKi?(6C)nfQ2M7Du*Yi9KKMJtd
zac_l1szkYNy8n6TC&45j^Pq!64ywN6`@_M{4h}mw<KTA(zc@JJ;8zDH*pKBxN11~F
z#9aE39%o0d@N?aC(!nW_bedfw00p?p%Uc+dLvWT_YLLa%8QXP^=G4huax%)B^?3&u
z99-n+C>Ofq;IaV3JEmk@5tyqsMz1>f+d;lG@~3gl;f^})Q#sv2Hyn2kaAv6YjsQ0u
z+!BDy+YXos!CmTkhKJ!F0q)T)=lb8==J{9DZEm^H0|);J%mpk%Mj8duZnkC9ZsiN6
zQ7nz(<fKtJjUs}{tN1_oq5@|M%I5svCYMN~R2rp4QpvQd848qnc<uibRW6P4qO1yO
zR8FIcz!lS|lt!(|p3l~MSdFS_Jd#HBhaB>&2{9(+$xuHv(x{on&NRNKSQ@p{7@fwL
zH0q??nM~6(nx#=Uje2R+Pou;2P~$YbX&jiJ`*<1+(rB1Q@Or3G8Xf_j5R{ycuDXHI
zxlzB5%(T1cBlf2eNMpsLq2mWLNJE03C1?{txgMls^E6td(JPJKX|zlun?<M5F^zB<
zt<vt)_vtjAOd}_a)@gT|$`BDCDrl~tkJXJl#d%uY2m=M$Jd`B!s|%jCY4Bawc4<75
zMti||R&W+a0_0PmQyRn!-P7nSa2G+lKIC^xqj}v31$w02*)>5=k@UNk!AW?ZH2S5{
zKkZJ}pG)I;0f_qwz`5~&G+s#Kl{AK>F))pV>ClU5yd=ONHciaB2dD9J8bi_;%6hgh
zninX^Kuj5i;c2{@#+zx3OyjjQMx^n28gGaky0kBvCrR4&|KL%g6kf|rm^3zxaqN^d
zR;DpNjR|Qi5xxIb8gHlF_31*=G$y6_evM~t8k5tQlE(XKOc$wB1$`%tX#((DVXrjJ
zdN+;tM3k6;nJ~;q|39X_14@db?V24H*u4@Z=NuH4?cSXs$bzt|Bt=mXP!JUmm1qJa
zDk!2LNLGTNlA|a=a@d~ko|&HMNg_FefC3_jB!U0-!`uJ)&Z%?Hty@o5SMKhbsv74c
zu`fmcT=0v0OcKJ-$wEHPX->{-r{?1;mgn!@X@b)Qt>3*=X5@pUb;Ued&XTKU3(gVb
zHui7WhSy}y6`Yrk`T1BN{98c=jc=X${2uU|?mNlpntZIy$M@_Ai@iVOV{txW1+tb1
zE*D%XxJ;0T2CvA+O5v;6a)e}8_tq|#O_#Y`UB@ykob_`)Hn7{~J5Nly_4)Y8<t-Yk
z8}qR#A3O7%V?Vj~e>1-(YPZ=Y_)9*v<YQ|-dREM%NZ0L(ce@1b5TwGOUHRCZk3IR=
zn-70J^nCF6(|n0g<2Z0JhcQ!mfJQz{*4LFb^b&bK0FMU=u^97lHy`)%5za>>9~biR
zM?UO)MDuY>N~YQHj95N?&Bwlc#5pu=Ruk<0Yz*g=?Rn0BNx$3E`J3S1@^K&^2lKI?
zS^hMG|BL$E4E0bxN)=U(<l|^QpCb;Z<DUhuSgQW@q4Ou9H#TG*&&LS{t<N}_k2Co=
zn~ziCrE;2aMzcwN&&RoZoM*=wk-<Mi-g3bCU1MRxth5~&{Il0TC7u7|<9a?Watz^k
zSVO&>kH7M9g)O$0%0IpRn>9N&`)WR}v0w12T55%VymK#l8N?h-o}vDmk6Rq2t0^}m
zHpYK5-}$dw5{kDa=uSTV6H@InmEwI47aHnmsIPHq2p$d9HU4tvEvO+?LrD##G!)WM
zSVM6QZKq@u5rl?^gro_kYv4}_3@xf*WgWGc;L=|`b2_F?z3QdHpb{Fo_V$oJtf909
ze&AHmaO8Ss84cw%RM1dXyyXPd=e-P~tEi!}D3t{NE2L8V_E!&)F;vx1O`<B&+jDD-
zw}yrurJL6jtfis0kUAR1RLtxAY4(?&X4lm~vi#HR228N#JR0&eJgT9ghQ~Ct(404-
zMj8|is^+`~XJ}|FBvW(Vhx?6jUWv0b=Pk&m;phqHMJQW?SCj{@Moly{)zC~rY0zAV
z_XRH<y;F51N5jluW@`;CHMG+3`bX-}$qIuW7fW8)hGGS^WYMf#mVeQ#S+iO`p>ee;
z+G=R0VV9oq4C^bD*<SD|!485Q1tX)fpBB=|_0pJEJuBCC*1(_7PR`DFK|>ej)Pic^
zMOKZ51qT277~M2<*YJ-Y*Zp`&!^_N$AI<#ep`oXS-!+_LW;OKE@Uw;u8eY}#nud2Z
zyvJl~=&j)`4R34c!&ao>o3_5Ji1LPpej47?@WWlNI!Rp}Or;}#fc-TL&@foT5DiU2
z-oLwgd$d&sY8a%UV!iCK`D*1+$~zi-@2k|G-ke7FT-)sTHKY~teW&4j4IgM2s$rOh
z;ZmpHX!uabI1S@9o_mau8mi1nXLZw!lAzIoV>FBv@{u4zKh|*NFt@j7e4^n~5oZWa
z&@f5EWDTFWmJ>C6F8m8u`PWYUQuq{Cd2rLI;{8f+n&5PnUTf!%<eFICnHpw^I9qUz
z;MamQcxhVNT;cOvWj<@l<=<*pD14Et(EbMvi#4oZAJnjf#dz1-wSM+eR&o7oo~E))
z!*UHgb@_pphY75bYO1kNT_<F<hBX>kYplDqLRhDK5d5fNz1-y|!D%a<pX4@b*rXw;
z;a3ftscX<Q_%&=HZd12w*r8!7e*)G})X1#U!rSk<(&4CgC!3;%JsS3E{QCnB-EJ00
zfvj&T=6P0Ue7nJu&t}$8eQZ`b#gC48R|dVh23tc^gP~#6txO~2H8ngJ^aeBpg^-7Y
zSb|}}h+uysEv6wZX;=~R&fnl+i%PJu1vC94mCr^h`!xKuSvjcT5ZltX>TeqMv$a2>
z&>axMP`)!CX1QrN$>A$kJ;L6q;h6A2S_YNlEQ*SGB&Rgo{wwRt5$ahDr`bLOUb-{v
z>=#sXO8T0a>GYo0aDii&AJzT%L&KjM3iy%Y$3+d7H2kaKhK9>bm4?4HTxFYlBx`i8
zaz(>WO?*Ed%lM;#(x{z!jr~-^zKVHc_ovZoZOXV#%YHdqnkhFm+|ux$hPxU97ZglS
zzr8}et>KP_r)m_6R>`?uIfsNn_cYvRe%twu)h$FNuSOw{9|ip=??(kcQvJ@Y8F?u`
z3i(mkk2M9=B7XE-qm=L?&5w9WR=OYr9}=Wk)Q@5=FYd?P+g^$#<w9P&wNci?e*C^h
znVYMW_M?oShsS2nrmT>1g6eg3e?6t5A65Jqd`+$7=f8iV;(oPsM|DcU<}8FicPmx>
z7;B_5o*I7C^kYJ*lHrG4Kc|)-b^WNv6jsZrEm+5ox6M>~>-*8bk4AoOiA}4vHS-Y;
zbe7uCk4OE8`ZLZBQ|YZ!Mmcob+qa~T*w~LuKNLSyKU&?*^!bq`B-;-!3rcC(r<l6A
zurD-9@hn$fyO&w3a!wP*pPyR4i`v|e$NbzxiN$`j@FT~Mp?(bWqa|ZtwEdKRemw3+
zYd@aw<4Hd@tykLkk$gxE9P;Lhm%TDil$4^rwtlqp<5fRi^P{~V9sKwrz40r4bo7H8
zpnCezt)%*tA5Z(y$&Y9J&eN@%AI}PTL6AykA<y~oysNBFrgU-ni+*$!egIDI?(XU@
z`SG&w9<EZdX3CUvnf-5NFb%yVB}dkzr+4+f?nfU#`m%WAN^d`IRm=;#t<dHTHlA&2
zDvP&dW93fPn|{2-8u6pQA4B|jhv})U4v;b#<i|kqQaM&x9V{ZtszRkaD(_0r`+hL!
zJwJZ?N1@2j5B%8mjgR7RKR)zhiXT(`7~#iAKgRhn-j7j!oamv9_2VNyMzbQOd&c<j
zN}a4~slFBCRC*cuv7i5Kl+kl(X4@X>Cw_d&eEBhn?aGfXmDSJunCQo$CJGG_iHy;6
z9r1GsTJ6c2?8mah%F)Z-)Mm<;et5=aZ1O3@ul$(iN6}l}g?>!;V}>8!_%W9yGftiP
zqcYQvS$@oBBmbk#96vS`Q!4gR>b#|rd@bIG)+wWIc<1>s-;V`;Y%i~*ZdV#E%jj*Z
z-}-U0yh2BDksseNU%ON`q3`8(>rQ6|_Ij51vDA;S9}y<ckL4^SKX&`E!jF}V-;a%c
ztYVQiRo42kPRMG(HGb?Fr}n<3{OHGe$@R~E1hN%onHl`ak84WSouAY<R;JUt$&bx`
zY-94+Jmf+~xK+p&KN!h?aq6_W&Rup$E$oyCS@>h7dsv=*SElb_qiyfg{V@F4>qovH
znkc*4`}{0GJ(Yw8jRL8rAMdYLLmVQQ9zTN2Y(=H&TxI8f%7|*pq+-76dK!PI;*-vH
zdNfY@amtSvjeDv4*kFXj1rzL9LVgvb!G%1vVhd%zACqh49OY=!LOCFKkO>w-<*<+=
zg4qG(m><WPDL=^R7zrK8X+O?zZ0A69F7qtMIzP^H7@Ui9eq6ojjcxZ3E4`yoxqU*p
z;CGPxPd)<txa7xWKmMkrAAfP2sl;>ryjMt$d&`#09oi=M_d{NC;x!Q;c>nd|2CG2F
z4jnhy!1(^A<7FMU{kX&NO-Dl=|1k}G=+MAW?r~_^s1(qVqO;i5`|J*TJ^YJakB)-6
zGkQQURYwsWX*vq&D6C_B19ezYU-ve-B>aos=vjrB&Y(Iz{ta%A0qR4#^N+nnbrjQ4
zTw*Apql}P}f~5o>7A!5ud+lA5URFmr@s<~?B3MC3MIDuN1d2E#5?y7{`H#R=g;1&H
zhStzgQ%5ZwwRP0hQBTJiJF|}NjHpwNsQ=8(;2FsEb-dM8X`tf~9jA>{_7~qTX}_LR
zi}qHQ1XCO7$k6eGjwf|A){&{Bsg7nk^7nWYo&OerY#k`3sJ!(}Z?WeUug*hq&_u_C
z4}52SRgRp_=z2frVpmn$<6&rX9er<lb9A)S@tE)yf>-|aQg5Z>aUE@R<m&i5-Pc;@
zZ+0G%CeJ82la)N38?lwgw<*u$D4uj5v8|4FykxlYoR0Q7I_UiWI6SMPqmHL^oGaA0
zla5#gCk;=FH@}E4Ki$V0F=%-a-&+r7zx0LDS?5kw&(}A+&+B+W=OJd<U39#tqpR@4
z^>W@i;q9hl)C+2N9g(8St^BN>r@W)rD?N1d)G=PiCpuoy(M!kMI{NE)RmW>OhMra4
zV8Nd7zOJK>kluoqk9$w=_7MBBw0C>T&Pb<aKe2yP@GTa2T_42(I#+08xQ-8X4AQ|n
z4$<+Bkij~(Y*5pdrN67=J)IptZJ3Vtb$CvBKVT#}I`3D>J6FnUogrkudf|X~%**Ns
z9V2y&)$tK?#G>1#jMj1IZQrsq--eXNJ+>)hbW~3Bc`hiOfA@T>W1P<A?hfAr{yA4F
z@l)2Uj%7NQ>-bE^M4e+1rt4^=rB0}t{W%Mb<*8$`jxX8lb?_2i-Zv+U1-=5lsXD%5
zO_f#22VHJM99YCRL&r?kwT>k^X6cx%<7*w?Fkc7wPMh{u$TLUB{mzQANuA5m=GJ%}
ze~j?WV>i5&%WTfqu|V?vtss?!LKX>rC&+T(B|pf8yY{C3bI-e!&1|Q_$mwO!3Z1JZ
zv0led94=NUt8}c<u~x@wmeo#=z9PMPU-iRN-gP>D)bZR9b;B;T#6QZay{XHKW&f;W
z18YRbRvjBTGL-gh(y^I&Ka}zL*WfLf_+MzVOSP{l=Nj>taYe1|i=6UqV{NWbny*dY
zsq-@yEezxs*v$*srwlw~U@tow`>c+$Iy4=A9S3wA)S+{L(h*`2>HK4n6qEg(H8Ro1
zhal^&db%&DqhG76tv%E*8?BBgI|37MH;1KdONV8jr2!wT>;fDy;%sA;@)Ckc9lr|M
zCrJG_ohQ*b27@O0h=+6>)^S3|NgYRYe3$M!u7mL$)p1NZe#OsybKmlnS)sDa@4Dn+
zEwc}vVuP2?e*Q!{J0R2fJA0*$e|6l@abCv-9anUoXoNr5>U3PvahYRgF!ds{Un%Eg
zN^Xb3zVGYh{KfWD*f+6W&YJwRo+rKJS9M&|!6N;K<-a$z&PboHM$V#Xt*?vt%)(p-
z-PCc51Bih_1}0R>yUmeb$6X!k4DTJLxl*3z33c)6miO4wbUYl%NGsm_`$~BQ3~c*T
zrAraw5iDrnt+xtNENq~Nfiwf@2AU_;Ri?LfSMNLDDYejiz^>e@KV-CcvuRNS#SGLi
zP}2av){7hb2@DktlrT`zKq&(c8z^g_oPkAw)DuB(X#-^pkn}y~9Z)Za$Pcu+$GrT+
zD{o-q&0G?GeN-|~)o?yNDjTR`pv5IMQ6!6>Il~4tt!D6#0}!6qrqgxx#Q{zEwNlGK
zZ37JrG%~ok)l<hneFF^))MW#kQKUy1rJjM$J17N)tB)91KS+7h0N?ZZ+D~yu-1B#7
zCBr~t12pg%$dphT@SkOgilEBe$u~l_c=?|M463kIB{nh8)WDHqYBQFSfy-+$$#cp$
zw|h*yys)K#RtDZT@PUEH4YW4!ynz=Cv@wut;AsP$4CEPj!azF%?G5mA?@0qE1F3Bd
z^e@qv1+w?g%*9ug4hBZ-@H}N;?5K>62ENHqSS*MBZANTdCEJ>#K4ain1D)9n);J%G
z8&77IKAOQ#r{@g(a@!$Y47_OIRRgaX=*r0-11~ZCO|rTh_%N8t!sJKUDEZ`k*>Jws
z*mrsu=*i3FS^SEDUcz_Pcb?9#8|ZCdpn*XK__^B0Kws8EJ9Ym4w4T>9-{6fJDE-`P
z-(<TI{<dI$!2xb)R<Ph;149h(EAKsuw=>=`@UCPeTEfQ^GDqLUl=Po7Ub&k&)W9&-
zsevyH3}?y>j5qL!fw{LcMi>}rV3gdN<uh7xH_pJFk21!v+zjwrvdV919|`%GH;O3@
z-%}{k;8-B_Qv+Hcb%KG<Bqc0?ZyROt%XA{E_?A<E@4cBb$-ra-(+$ipoPT}&(!f*$
zgNym5upZm{_@Ujnz3(dn(+uz>mY?Bm<-2>Pfmy6FCepxc19MpK1Dk%$=3TQjui|^`
zyvjKjwKRUAlgu-~3+Ef4PBZeqf~gDHi40T<pmG4;8Tg(RZQ?l-KNwhS;5fULfh7i(
zve_HRH?YjWas!*0M*}MitTezc)}IWlGO(H*!N9>>b&Y|w27WZ0Z`+xx)7Kf;9#+G1
z&~u&2@7&{CRL@Z*D?gPN{>*OGMWx#yWFtrN+ulvW`3by5O8Ad<%69hRlbKsNk{GBZ
zjgVEg!vH_+>2|VAT)x}D9%jdvMaLjEZ;k!hK*WIGfNsDrU>XQWi(>8UU8t}P5QCzG
z1TDdu{!|VTwt=X0@I#V|n1Q5$Uk$_!BpCA?Cu<LKx6i<Tf2;dheJr2CzTX6&z2l{L
zP=bi`GUzbt-2jJ(qkMRkQC8-sasWAIU}vSghs$T5G;qp5X%l5kzFXpqfx8Co892+n
zW8k`he+`^7aGt!q@1lVV?AiwURLxmGpy{7%U`*S9rktawQ!R(&l9<u*vXH+7uL%Av
zc-6o)A^!-{^2tEz4TJCYxMMhn2Hzr%_Fa8AE8~!Qo1<=R_00JUelGndp;z*hL&4Ph
z?5zWv7BP`#qJW7M6CM)<O-wwSS;%zSWU7h9#e9sMyj|6t!X}v75s$Z~l5PSfikm25
z;vo}k=S5AY<+FWq5{9Ih>9kuC&M%cTQOd-_rZXSKS*8p<jqRL{-m)gjnRv`Z3lrr{
zR4|cgLNQU%L?uRRI<rh8%4JtJQO!hk6ID!9HStR+g(BS-w=!y&s7d96j9RAC%obMT
zWTwJ~SDRwY8MW$|sB5C0iTYyps9*!ZM+9jz?T-Qtg*S4Q4B8LOVNgO#ZGJ&fO=Owy
znP_5SQ|qj3(;3{nCOF=*z3t0YI6K$WL^Bf{dz+i!xW^{?SumB)sr-+eu_DJrOA{SU
zJY}MliN{T}HPOyQYZH4P&1qvI*F?$ES#9TL<eAR!^`z;H#!m>Rm-A-yt{dgspepT6
zbYSt$Q#h#d0l@@p{8{Cw`?TqdnS4x8?_}Z`(;0Q?o)uEVR-QNU0wXjr&qNm!FPa!;
zVmM3nS+%Q)H%#<1(al766EB%~*+eg1XrhOSo+e%~ok6T|%^cP*M=B0?tiDQm+G{3W
zH__WfAJZB1IApOga7K}#eWgio;9^T)GkDVkrymEK7-Hfrlaq4jZ(@LmgG^^0l9r5i
zpo!)US~DIRGb*O-9TV@Fc;CdkCh`t@3mx`yej{Er=L3^3v8h8%Y@3-rrfN>f4!)u7
zln+hJiK`P#d}d;ViIFBonHX*2V-w>{jA7OedB>Xgh}SMx7*+4qS)4rKCH%l2Z{iaZ
zpEB<UJn#IVrvCsUKh@VA@^Th#qKVH<%rr5}#1|$enfS`YG!tiMtCLMk5%Q%V=k6M|
z^HHB_;!b~M)N-ZL0EM@>o8p^pVg`$=b=J0r)K|-A&t_^(d}D&gO@D2oYe64xSKUbC
z9L|EB9>$RUpLf2A1*~pHW#U^C3u%1Zd(Ffm6W^J*VB!zcnS%J9<3BsBi9!q2Qm2$9
zCYG|tnFyL##@=1jNB4`#vwE<?#7eiF|7>EFiPhp=Blx4>S`+JBo8P`lUoZS8R~foG
zWrK+}^;@!oY!q>miOp{4#0#D+61tUDBjR=wnvfkPcCsM}-y^tNknuEoJ!P-U^CcG)
z{i5iCh8t?KZ=QF4LkYRc5%xP1VG|Ki5+;%+Y~fMCm|$Fx7c%|7y8M8NeZqee-0$iW
zH+l{VKO}hA)vs<!J1YE`iQ_^}2%a@@(zQ7y<h0-!j%LT5-<5tB?>WKqf)tBfD)Og^
zizfbNqZ+DQGI7~-W*V=U&ZOnNEuO!GkXK)zaN3RYZ#27VB2-u1)<pS-**xyOZsK2Q
z6*o+5J?6b-;--nO@2Yf-*0uh8g0ITxHvh2~FU?E|z!SiUA<A7wJ4CrBc%S3Hh*W4(
zFo4tm9uA;%0EGgW*F$|MfT95u4xmT?<LawvBpWgyJU!r~hhmGh3N4F?NTp-|#f3Ad
zL;x$Z9h*`T8$&rUSSH|150(p{d;n#6$7aeOyFA?&C=~+y+|H~Ra5Bhpph6Pg;;9lq
z)c~dkF(Zg-0aOoQZ2;>6s1ZQT0NxGYy#Q(jP&<G&0ptcyCxE&E_yTAWK)nF!2k>YB
z4Fgzm*&7+FHV8O#lKqD&j|4#P{Y&0P0b~TA1fT}cH~<#)+^R|@Bj2lJG*Py8&Smbh
z<f?2zPHfU<Vh5i$03y@bG=OFSv<l$#n2hEDJQhHU0CEC2QYr7%S;{TJmH|wA(YyFJ
z=Z?=`_L9^1ak-?mAZJ<g0(c^TegV80z>@*A4WMfP-2%=e^O1d-?E+}ej5PO^t(?~(
z;5_&`2Jn=SrvvCDWWdb=9Zsh_6Tq_pbQa|W!RG{@7vzOCR-|_k{-UciIa;85051j5
zBY>VP$tTrb9eppecJ5}<_1dL&s+9do0A1#`?iBzt)nK&mRrlK0guKpb71GDm`v&la
zaHg3zeJg;s0~jn#s6wgi{s9b>s0IXZri97~c_Qn5P{8R0oN68tz&inO)}6O2+ErzB
zydS^^0el_6HvtR{U>I9P05bv@9>9kIObK9W03!lC*coHxzMQC>Hc#a|=coWiyQvx@
zWa^ldj{^8u_&C9dg5v}DM98Ot69hjKWER$rN%`F6Uj#5o_+-H^UEMn%C2wlRR{{RN
ztuigZiB`4bwCwB0m7;7^{gjyj%n2ZKq%teu{G7obGG?=tda^$JQF+f)FFd2pWlss<
zhX58c?>m+Ge9sT?_e3lR;9K^%dCI~7zoYTb+ba3wa_adPy)PVXlmAOb|LQsXDe7&1
z>XHDK2CyoC)d4g(uJCPeSpdreSP=kU3wi6&S;|V`Q_rYW)&$V8vO>oh^}jsIlKRSz
z0jv+;^&ol&@lyahGjh5I@lp^!2e2W4jR9<8&kdqn5Sy9n08X(12e2i8tpTt*91CEZ
zl*Zlw@&ni|e1}^;I|JAye7CFY5yJM*64nBU1`rFtAAl~p5kQb*LI9?C1MXF0qN$ef
zh+x>&Tbxd@UEcg?fw=H}0sO}D6rL3P)wNlDsQ~Z0KY+uc91uL{h8_yQIPbhn9ueiJ
zs}G2#Qamo+69Imw|L^N~)X|hP0h|@@zX2Xv;^^lCxFF=5;1|)<KLYqOfWO5{gNs5g
z393g6To&?|;1xmIOemRl)#caN0EAz6mD-C^ZUk^MfLj6F4j?Uv^dRm?==}f+1o5Bn
zyMp)Jt0G^dqy(K5783Lb78InI8bssrPTmWPQpDBM>ZMUckf$p<*FGdzRIr$9vwjgu
z1W_`GQlgX=eAo?*l};(+@|~|b(+K5*Xck2CASwh=F^Eb*R1P9TY^u1H4T7l3M?etO
zgWSS{x}w(<tSwl}wXF9}N*$M%T9IB)czstXcGIcxN5uPR5DkSiazhVRPH7xOW)O-f
zUO`nbOE6oIG31p>8{N_83vy9`Qw~jCy;{eV$AV}P#8aa1`FN_fnj^er5UqlETzFm(
zPXy6gcpJf7K}OZhlk%kS_JVB%+qt2`qNyE(cXX9VS*Hx24x&>K&jj(T=v~~<&Oxr4
za8mfZtGo~dhj%J3iqciEn;ZIXAmzsqzL$gO$<l7^>%l~3sGJ1m?DQ+5Q0x`Nt3kXL
z#3$X`&`YOQ&g&CI-yp^WF*b-dg6J2-yFt7c#G6696~urb1_tqV5KA@B&rhoTgE(3<
zyRhYO;-DZtFQN_!;+-IhSf0V+)z5p+`%`JaASxv92c0?R5kY(q<e@Pb7DR)W+6)ik
z%n2`zY49O0zm-cjvVY5wL5vDwG%e36KbG+wxa6r*qve;im5+k>IEbl|-*G{V58{g;
zJ}Th*B#2Lg_$-LOS163(c1<6%JRyksI~7itPh^sUsM25Ir2458-@Nt8q#z~-v7vyk
z-%ih$62p`r=onSs0#5OM6~r{T3x8XDwsPLgAZ7)zHH2*;%no8s5Yt1L5yIC&e8Y5x
zFeZe#LCoXO8bbLH<_EDLh;2b^58~S(76!2*h?Q(t_q~gPSRTaS%6Z?pwf4P`9|RW*
zE)iTB#4;f?W|BOQJ9EXWf*5|%JEd~o>LBhN^pdX$Vr>xX#B!tHkAl2pJ)Z)?e|D7(
zL5wKtWRPwXp8^kb!7Z-MRv~Rl`*sAeGsyW~oD5=@h`OYl*Y0L*in3QQUr-bD3({uF
zd>BEPK?H&b2Ju@E`-2DtVTnN^h_H~TU_{Us<h9+y&H}KQc;i8Isgy!TB^ku8BJOi7
zznt%MkOM&+5#^xZA;H70O%=cAsPJQg$6dYeq?A)ZoDO1j<-GfBib0%Z6AI$082lc@
zMIq;0`}09u5dMc?t4Qjftn{CAnSe{8To(LG@QR?5i>97yLHr}$+d=#_s0c;6>p}eM
z+S~}@rps@!cjP*8-Vx<L!MlR@T$|U=dkTb*5`rh>WWPv=|MZ7~!c#+Na!M^Eys#h*
z{?yabLqG_nM0v>7i-%BDcrjODYH43Wyd?!E&rEq(NNK?`g0v|s<oD9P3L#Vsp=}85
zLU_1QR;3VXhfpVk$|3w-tz{M0zG?{7TwXnd8ZNIHLM@lioUMFv-&;3?V5{8B5LZq*
zxvL*SgAg8ZZMyYIc~p4A5E_M$;p&Zr44UM$lP|)lN(gEQSs`SL-cryj*j&&j*hH|Y
zU^CuV`r5bmy^n>^Lc|<F#u;9KRv|nt-qwP7A+!;a`+sbn5dNgAT(VNzhrkH^HF92K
zl4|=pgwQdBr$Ttzwdo<GQwYz5@T~C8A-oVm7vax^P_tUg=Y^lCocCe~T|?*|!b>4^
z6EW3ts*E;7x(DLRtd6=)Pwy!<uL#oHD}+~tdkp7gpx*l}Uk{;o2z^568^RkQ43p4)
zuKkb@-VEWb5Z)GLpkRN&0j>?R#;68`Fj$mx1Duq+BmCVE-V^eE2t$Q@AV`CCWqmDo
zdeV%v;i7yfIKmAbDP&X#ccn(ghMb4UCn0<q!bc%|9CCgk<&Zuu<ow)BH(m&T{+<xR
zXCZtM!X&w5VhEpyu<C%9BY$L5T3#@foWE>N4q-|NQ`vD!`@R&cSK7y4QNId-&yHy!
zkpFtmdsXw$J2Qk?AuM1$hVWQx-)xTdY~*Xx=Y-Jeit@D}$u}W%>fVNgkD+-X6szl-
z9|C_@9o9H&VF-&t_=!mh;kyvN4`D?JD?|7pgvB8&V}utomQ~7G62em9<BGSTLRWWp
z=5iWT%6VY0DumS`{20Re5Y~jSR*Y$|PHbK)>#JNP@5f1PXit%j4Ucg$0UJWj6L4e5
z`Bj$<V^av5C2jjP&o3e8(Yz&uA!U4YuMBLtJ%k-0+z#PR2s=aA6~ciK4u-Ismb@y2
zXb5{l$PXdFE)#+lf<FW!gfcmb9>Qxa)9J`N?eq}oObL3VfG;G(3LzZA1CgN-5g%M~
z<-Ru-LOg`uSXTdex%?v$!mrHW>C9xvS=vfvK>eIc2R!>iD4?fu-fVMQ-~JHpe-DyF
zAsi0jEJvOYj)ZVDgp(nhVzUXP{##0+I~Kz65Ke?J{kA%FnA)UD-UI!UK<eob$j?X+
zNwj<Gb0M4$;qMTxhA^?ZdNbg?5W*iJ{29W<khA)f2A4v7d-u})6~bkg*KVs^5gr)r
zTy;(O4T<E&lJtM%+Up#?j(PtT?nEBKEvJDgjFyi2e{B3ARJBme!aZh?Ey_Z13k58s
zSV*&wZoy-rpoKyf3R~!0B`?*&v<;r&8$9G(uFT(O7j8}?7O~jgyfbRHhJ}YLzKVE@
zTKwnnG_K#~y|`MNi?q3%yM%?37Rp<wV4;-76O(Y@uD7g(+FiZ(M*2$grp24nm9g;V
zZ7&J+au#;p^#(_^`R9(eqS#lqP^?RKB@2^H@8BwVG^=8P27zaCt6QjHf%j@;p{C_b
z!#1?gx0J6IZ+A**bjw@YLLJLlT3Ocuz4Zi1>RV_a{1I1qRLJ6X&N49X5jDed)-cmG
zwvZ{DcbU{aH_Jk{g=H};kHKrfXQ73S92-q6G_{ZuM$0goS!ixygN2P29;1PUk1dR2
zsD+jmUboQOLMsc8TX>p<W}&r(Kg;>@EIeVMjfGsMxrO)C_o$wm+ihn0lNQ=q=wKnE
zo45E8Z#xTg?HT#aTq^Cmc^_a$iru_ViB7`h@y}S881cMn;hP=mvledF^LDnJ$KP`n
zp11IV@Gcf!67r&8S3%lzv(R05&X50l3cM`d9u|69ctv<G!R}fbYloM-#!@Qo<IHn$
z%hQLoU}2zzL9CSV8E>$DExcu+p9L-z;6mv2Gt+lGroL^VzvV1Tc+vDOTH`rmcn5Gl
zg6SpM`>s0J!h06pw=kxwcZh{|EW9iHwXV+EgSG+Zst+s-voPGkhfjNlS~&MlM!ixh
z*IL({;XJ}Vv@k*vIZ}|yC?TU6kC3sh{*lEQDrbgvyoFELEbC_dXyH=}6D)kq0<`cM
z3)8|>3tw6I+`<>^7gh4Uv@nSUI8d2v;dX6>j+{El6w#+HP*2v%nPy?S1(MmU>y)$^
z7G_$QC6_#OK9|P4WObE18qATatSWib=USL&VL3aRh4~g1Soq$;4;H?asFLlKg%*gs
z<02v7iGFZ;I>p73yd@TvGD0X<tK{((%fyW2fp?{aRTkFD9eK%W30)(p;w4Nu#dRVw
zVdU)E>n#v}vhcI?h)lsv7B*YB!3M^{w6Mj(uNL-M*lJ-L4J_yuwp-XCQRNHnw6NR4
z9t*p~%iA%2x;;kfUQx(PR?XA?KX2aBuwYt<Sg<WF<4g-!uq=c*4p<1WZPZqMofW#<
zwQ}ev68HPlq89%n14;JN&I(1E#VsV*CF`m*ptoFY$Bg7R3;WrAES%?<W8t8M6D&`T
z66>=MSvYLr2-|}@<{!0i%))WY8QwYO6CVuwjRrM6W#P0G%UKDXD3_eE@JLnXxxmu<
zoo%LlE(ewi7XGksg+<ElZ{ebaOBOD3lvwK-#GNVmD#>4LFygH|O5t{xD+8NewQ$YC
zKNhIahL+Tc*Lgd}Hn1tZ4~%cI5G+&=qed8aEd0k&J&eL(=fb-j|1I3-$jsFdw=(x^
z@DvEc6Gp)>c5m>cgq{5w?}xlYc6+`lqo#(@^+JITvMi@a7-?aY2%}`!*^-kU#zSFe
zsSm<@SbG<3P9qi-rI?_z3MlM6l}J7=tCk9*Oc-UucsLAt=}HS(f7n|tjPk;l2T~tC
z>ZMX43}QvWN`jRIs|Z#VtR|RSHIJ4x!>AQTMi`C5s2xU~FdBsMNEmg)s24{4urtdV
zT%JDhD+g~)b{v&Q!%hcj6n45&LqYb(2hER-Gcyc@ISr#p*xAjbhLJ5KE9~r%;U*@E
z-Uo_onc)VIrX2snXijmbr`lXR7DkJ(voVThT(w)_QYKgMavg80Fdh%%oiN@FqjeZ<
zSjb^?3nMp-yfB^$<LNM-2;<2x_MB8ZhB0hOIyaT@`Pep$c44$<Mbype5XOJSeWTZB
zlJlWSOU`L@3WJ|K{3?GwjAz2m=lQc?bPi+I*ZBHt$NQX!oB$zzA&f5K<s~l)d9`X@
zca}*QuZ8h?7&lrdobY*>wHZdwFc?2wuP|P5`O8}Bt6^teh5D;nD!)g1hw(-j{le%I
zc0Nz&`U+_>+j)C@GmN*x=pV*gVaGddZz^#>7z4u?6vp5%8kY6#+LShTUv^yc3<-mT
zGd8{J7ka3ykNmwb-VdXYjlwoQ;C;jRJA$hb3=3m;7{wzf5y6MdNEk<1<6(>pV^kQS
zFsv{}hcSljKh5`J7-PfuD2&-*%n3Ws#E-+66vpH*#)UDS1t{V~!A}Jz2-5O1AzVlL
zxsWehecRBKFI_%e$doXq3i-;_r!oFo&VEd~8DY$H^;uy|e9f7l_?pcojOAghV8+9k
zCk8(V&KF!1#sVSV3i6VLVLW=%d2)Rx%J;55ra;PK;Y$RUy85y(xB!^;bbabNd0!dE
zDhXX3#+oqJ3SZ~ix2WTM{|<Sg(E2cb3ghQ6HgJ?+vkYTn7@NdwR~VaxY<qB(d+nAm
zwz`~&+%9~FtL$Vao$$Yua53jzSJ%VH7p@8VUH#rAkKuANjDX97VeG8yd@zQ?h=kGW
z`!@T+uqE`n>N$TFQ=-CSf^qk%1UtLSe`QMEa(;C9%~ke?alqvV!#L#f!$OXPu`ti6
z$5B=Dj)zeo0&dDU5ynXgJr%~KFfNC2TD)h%I4k7$F#Zt23(tjd-sKm<=w8g3UH?;*
zi>_YkG0$INT;b>~%HLsJ6>=ktYeM#>{cq;&pD?bwSN+Q|c7>A{x|?C#68*LtTBk<J
zf5Pty-V?m<hIahBKuQF2Z+blu6pT1+BULb6u#jNk2#N?v6Qs?9Du#F;5-ciMOi+uY
zmW-fO1YbrlCBo&VC>=rf2wsYyOax^kXc|GY2+BoJJ_1!PsSrWM2pS1z{FNf89YLK4
zDvMGjf~pZzi=cW0HC>xJsVOxgIQni1chFqerqmLhYw77_40XlZAcA^A>bqAB{2Y%6
zf7DePM$kOnDb);78VhC$Dz43{r&F?oXS<3w0-x|EuEL()T=<g_w2k1g2wI3YCxX_l
zP0I*c34h#GR&RISTH8dBD@vZLKM}#xRhl!1u3ZGri{3th4njH#J`=%HLY@|+Wv2*!
zn&V{uSy4K>`g0MqEaAM>zu+oeB6v}FS6AsKgj)|@7V=gEZ%5E0f}Y}iC4ycNycz*J
zKI3^!#J+;`z8*nu;eA{scG>xz<&6mXiSnkaUuc%nKY{@f4CkO7!9Z7kSID3U1`8P?
z_>LROI(pCL?+f`ra44SwLbz>;w;K_`$Ot}-U_u0=T>FoOjE-Q8kg=}*Q3T&sb!NrK
zi85aB6E}45-%k2Ji{NunCc3&AN&Q0jB*Dq9e(Z9AsS$h?!R`q5L@+Ia=@PUhf*C@-
zVJ{OhQ*c%UvxV?3b0YX!_{VZnD)S;dWezJNm><Cc3HmmI?<4pjf`#r?i-dd^!B)w|
zV(~5$T;kd+jo`QbPTOAYDjX~5T@}H)2!4!UwdiXE*Sa?OC7tnqy?8gWMG5)Y4c!pI
z5&30slPH^A{TCtM%dosv__hePyP-QG*eQIMtFYzojUZpVzX@uBwxB-(Jpv;FGvchk
z=k^UNf`9}C1)0JSyMJ$|-ov6qT>Z*t1)>qe#2b$wA%sI5EtA5372GFCk)!ec2o6MW
zFoHu7oQmMI1RZAlLXHT2AtiZC_;JA#f{fuL`}k|ENzS;+#R$$u@OuR3M7iMV=Y@<I
zU+524`IF72n)589yA;7?(f@KouS77up7Y$f7QsIe+>YQ5d*wFedIa1ebTb0B{C^|3
zAr<{Ye;>Wf=`9)3%boW87s1^K3fM@o!F?0l#lW3S_abQXknes3{<nQ3&Ta)81#NJL
z3->Z`4@=iHU#gAYs^*atv5{t@j*YrD(rv&-X&Ys1JY+lTNZ&V8i`hsuQPjrO0ZrHc
zl2+VC2^(CMSJKAAVso)dPAMBi?Ta?FIbXhcSsUeSRJBpfMtK{h1~#o^qq2<(HY&=s
zRJf>*i%uCc*PZf4RcvsvAJ?N+w^74JEgQ8Z&YCus)XZVDgX%h~YMB6DNN>Sfh3eU;
zZzJ1=*G2;ykJxBzBh$vCHX7P!WFv#qIAxU0`5y8c6|%{#idmyCct{i*s*T-oPnOtl
z<1knCbLlTbX+z?((bPsW+u20i#CEm=(4gWgYI7Tp+0J$VZZ4qr!6hwiw6by1#wi<*
z+h}d$a~ogSXk#PS#+x?YvXN)w2^%lk=xXCh8*OcLvhj?Kb~f7EFh=@1+Ro0M4!r4k
z4=0D0hn!z#pR(~Z^K#z9JwD}X`H0Wj&M%nH*?8V|wh?u<osBt-DrNJnp1+E|V518Y
zkm2m^;iUA8Q{HYiy4%jYZXX*j*?8H;t2SPv%|S0OnO?@%!$waVuh`(OB2Ml0vYk2J
zRwI24?mOGW_)F;PHhSCO#5gx$(fy)%7+YV7^9^QAQ~R;3#;PQ5+vsm&xQ!2O3}E(y
zsY7hM!>VtdHIPlk#$em|-1tuOaHf5Citk<9nRe#H@=zP^*?6DLc(}sNWgpniY<AHT
z-raS4!z7!usd36X!p2A&AKMsbV-(AFr!tz&#&$NB(Ri%w>>#82$OgAf(Viuv)berm
ze!Pu|Hs+`JKC$ts+;oEAXSVZ`0n@-=2lz8I3zk(d$;M<GTWxG(YHdtm3$(G+##9?$
z*_dl%o{ecXrrVfdV<ww)AEnm~FS{P!7-!j-ZR2aY8{P-|^5)q8+n|@bqBUQbzhOC7
z&12|%8w+fFZ{r6W-`dW0Ke|OW77FKHzX!^9%w0>B{P;L^T}g#Kda>>F>p`FUxYTEv
zja4>Q(<Vz<F1SK)rH#*us}$GRSj#-Jk=R&g<3}6onRuCu;<OdXB$>JTiTz!stv1@&
zWaAebTR1-W(>B|9Fqguq70$Q(Z(hZpM!ucR)y7^M`8IYkNwpRJG3Xv4yKHci_--3q
zztmPwy|~laFs?DkM%+fihRz0WBV@y}Vba(}&;~!E_Z4?`!g8N1zo~D}NGA`o;n}d+
z4Q+5oXYpUsh-ts1rT&r@a}`eQUb){oY2#NL2ia9^>|^3N&TLc<@J4=hzl*g8I19!e
zt*8zRc@DD|+c<7>V_GV=z8<x4jGc692KnP<v$?+ON&(*q*0NtIu~QlQXx3?)n@`ay
zipQfkYvXs0QBl;6;vBPS<F1W+HZHKO+PKa(KOy5!4qrB|v9+YDmsrai6}rELTo(Mx
z#uXt?e3kJa^s0F4*75zrYHFbF`!b!^{>!mT@^aJ0Z5wxN++rCP@X>Kw?yAjcBabNm
zv0off=!z-c`!)(hfhZn|A|(n>6zNf%{w2F$6sb`ZiQ=nFFTI7LC>#Y>ul4gNED#pU
z?~f>HQM?xNkkIDCW$AxxPAeKku_!7=Q7P&aMe!(D8YQAmrp5%@l#Dv}EfvMXQRl6r
zv|t%Qm77C()o$nQx11>Dqo^Q+O1Cj7m7|#Th*C9*YEe{?2pRK?qCTdL2Gyge5k;V3
z&PRDp;n$3UK{TrqMcpW}qwq#iFY1(PqbM?>s2@dxC?1L8(I^^5ol57%XJ(B^&J}tr
zuEwGtuoN|l%qZ+N>Aa&NIl5fX$J}K_oppWh_|+F)P}c5IIt@{LQ8bC7X%x+(PKRn9
z#bZ%tL0wm07FW}?h+=F-h5IjZqM(<qWfZR;R7qM#(I$%iQ4EM8H;Oza@{rmuiYKCY
zGK%g|yc9*-DB4BQff3SRYDW7gLIcz$MSU#WE=7G$Me%eLFGQU~Av#6zOcX87W<D?Y
ztl)D|bQVH=$by!{VZ#;Tz2;e6qFA>&<3%a$uK&NxqbOa|dGUKW%6~UQ?<o32(KCuy
zSm{i56uqL(Y%1NWLLPK^POGxl6RAJw{(U8sQ?GBh_6+69!#AUNi#@_f^&eK>W~;l9
zxuv2qFp5Der6@j%VsI2gqWB<+p}df-v6=EN%V(U*^`cyJOYeIkz8`hg?sARju&8q=
z!G}?d5PdkyZGpn&qa&jj6?N7*SG?@)zcQW24sa3g=qSc8J4-X^JRN->M=_2qJcc4M
zjE~}zD1t2BC_as10;@8LiBWLj)_+A5t{mpwKW8~du_TJ6Qe2awn8pS#d~y_Dx@9;;
z$W+0v1fN=#J|l{mQ7m$8W<@by`0Oa=MDexoxq{!gHe97P&*cplr7RHst>8jef3Ono
zJMn(crY>Z$8@l*AEQ?|}J5CQZ5XFipRx&7xEn=`ra6=TUqgWHgTKB5;Y#1*8k&ST7
z|7IJ0isI)7dc>J$*eHCH;AYpp)6D`~h3|=CZxq|2*dE0WH*{ANJ6+BddW>YZc)9jC
zUx@C8YC`;iT-j&{G2PIYqN&UgYb1A<YDMuo2iPdWY!d9SQADFS6vg2vVy^wZDB><p
zM3EH!tE(KT?4;y3@$MHq5XC_^^zM}cM_hhV$Wg&#g2&m$+|VVmj`0)+Qc=zbo^?Zy
z4o*4G&OTJR7{w(a7X<$h{F7}-7NuY2C=tbN_o^#Gu1E2=t6UXwP4J&6xD=3y|5v;>
z1aAu75@ZlpSKf)@zbNjyN=nQbhwnvkUz7skrBY^*qkCc~C`ziU7mDH0%r*>4iy=LR
zCt`Rq2E_1C47FpZ6LVH;7mcB`*cTHl9z%&3O2$x1ybs5~b5Yodx?NOxItr0q=Z-Oy
zjiFo&<;ARW3{`|wh@qm8N`kcHn)a%~YY0{otnP-gmDUtq%T>-VLfshZ#gHpX{TLbu
z$%)|+W=D9_7#haVNO-njMhuFO#)6rGynE%F1ytc#uEJ&Z)V<>M#n8mn1Eo`%xx9G{
zj|p$#Dodt2Ev=<^TM0fMLu(;zTpO-lrcIuB%ik=}HimXFyc5H_F|?1NLkvA*ctt`x
z#_)U$F9?4shNs;aI>qoz49~{US(N8o{SR3qdZlbiml$4*p_{9Bje!~DO&gzZwwZJn
z{UyPd1$(%buhmQGCA@D8ZwPrchS%KC*JJ1{ypOAJG+?y-#5+LnO~JPW-xlmI_<S^V
zppZd=g9V2OGKLN}3%nP@`!URjVP*^;#4t35k7F1Y!!XxoR1Cvi{$UIwTs|^}2g`jK
z&*&J&h(1>EBiDxOUB}1piFl{P@TseR5yJ%Gp9xNM_0RdpP@M)$Hz|h6qJQaza%7w8
z@~?zU6PzyiMu(JHLKX|oj$w|FuVa`W!-5#T5${~Vd4jx)-O*_k-^TErC<_G_xuJub
zr+zQ|2UmG-v9l;^NeoLxDIyiIB8HVQ{FT6!1XjhcnjIv8`U$LwVQmZ<aWsx&T?{|Q
z@NWz^Vpt!;Pwd?>9FF1V7&gS9#o&)&BfE19+hf=f!)C@G!?qa0uP9q$n72#a%I5lm
zN-wwX5l`00sq~J*!&r94uq%c=G3;d;&Z$%X^X`s;C-(3#I-W|$6Y6+o9bJA5o-Pj2
zV>k<^kd2u0eZhALQ}PmsAt)piLrjPz7#55O+JaF*#t`h`lwLfBM2!D{iB(TJ-d|(b
zCkDU8aKN?PFJxntl!LBPeQC;(7>>qpK86c19E;(245wo_6GNvvStnRNCzVq%ygCmj
zW6s+bPscjdES2tT3_L9BclOX16rPJU*XKDGb3S<%-N_>U5yPJ`T#4cD7%s+eiT$yp
z%H157d5d|<U%cIm-pfxa<!a`T3@fPc)9Gpq|HRPzL?-z)A&lpG%z5|YR~7MQ47WI<
z#!)Vg+cDgUp=cb%;`lGdKTk($9EIYz7sLISbMRWhxU)yQKpZJ?c;Z+)T;ZPCi7PX>
z5x!oo(ru3Nc0rZfu?xphB<|QF4(@zUizB0cPI?^0-&M-rakgVODy{IifQRC2w+i>A
z7LTJu91q8x?b0RV&PfZL8{tgI*0`sXczegy(sAb~hBAVs?kJ1%Q_IIuA&#1H)QY2G
z9P_K>a6f64I4TLR9Cx;tQhc|&S~ZSpaa0$*hUgR@*pIK0Q#+12yvu;54dSR9N4>bS
zqnU(Av3?vce3{M(C7!$UNF0yG(NK&V#c`=>&itKiKEKwQmc-0BlsN1-qH(BkWX17T
z9B;>w9fvoLm*RLi4qqHic)MyjPsY)dp$D@bu9nv<j*hi+rcG+Y2G%@|$Kq%aM^4;%
zu;vQ36r{IR9FGfc?J8{~HU{O1@`S73t?f(<wvD4*9PLHy5Jxv59R;6?<7pN}9M3R=
zqC6}3oM2}`#<2I7wC7#^<kIvm!e4Ziu5oZuj%M9Od1{w4fb@u?XB@A^@p>Gu#L+AM
zzxloCGt)UK_o^hAJH$J6@b!+PPaJ*Ycq0xbn4z4D<4hgr23bV?;yfD8+2?+9R7+yR
zYI*(R7!b!i)?*w4;}{gj2)XZIX02M@kT~9v*0Q&x@7=g_o(8AmJ`{uZ1m73@KyYXr
z!-NbMWU_0oPPtOp$4f?vGAfSIag2#$Y#dWun~&o7RQSiPGA@qs!as49@AEwq;`og1
z$5ke=(F*^<Rk~g&Fj@GQuJZPk0#oDoO1#tJm@Q<w;0(c;f=uTuwv96XdydSB<7-#{
zM#$Va7T$5@s~5zbqXw=u@kQeJmZF3%dSD#KcX50#{0G6caV(BwNgPWb7<`biB93Lk
zm%GaPYXw%uu_}($qO5Us=7qOo=sI?GmcQs51b-6z`TtmM6uv2r%|du>ryb6R{FXSj
zin1-vxl`<kW4m~F2-0AukX?ecwx{eBq6_8=(ngEJ?{cQch{KE{AWBFu_<uqzmxtqE
zDe-ci<wz1^ljG>e1{p^pj$|Bv#&I!@U*p&p$Due5$DJc7ev9Kk+&N-}ZoiCgzB}H7
ztd4~GU@$xq$59#mXnZX0oQOg<yhzsZI8Ml|Pf`?eO7OJc8NsuHOwyn?QqBoKFL*)l
z4>xpfuarx1=g618*~Nrhj^i(;KP8Lq3VYw(Op?NeI{T-LYjOM&2RV;wxgN*A5_*GU
z{ygR9>zOyjOZ!_wZpU%QRd`6ky*Td2k)8k&D3Cx(0;vfUO29+6T;X9L1rwOE!^1;0
zyOqf1K^aVW;e>NYNRb4b1tEo6rHS{0YIzhNN}y;0l@h3&K(PdhCs00t3JH`*;Oz-Y
zqYBw$N@SCi6mKcPhZ86*q>Nx$LE4m)1dtT0oWoN`7<t76-v3x#Xem_^sG2~n1Zvaf
zs8TI~nh9{LV|DS?5UjpGjX{%kco@U!+~##?Upc2Pa~IFhI;!N%OM?U+Nnln2vlDnU
zfrbfun!tnv8YPgCz)K0doIv9QG81?#ffflU38)Ep6YwRt6}L!M0@(@hbOIiR@Zh`)
z9*NK-fu;%Pyo+WD=O_>UNWr5F9)vbeI48I4sGO6NK+A;l2zXJjRRS*vq4IbFtrKV?
z-rNM*CD2}Yp5PM+JSn8DAnkj<QKW;*pGlyj@TUZycJ)pP@TN4Tdsf8G2|Op{c{hj#
zT@o0*wKX4|Jbs~T0&iBy>6UQLdFU?q>ekleJrd}dK;H!3NZ^$OdL_^xKecxPud@6T
zcs=2qpu%R8UPfW@vix)XsdPLarcVM>tL5>0)P9UPfguUJlfYZ7>je5IFo3U}T~s!(
z@s-rZJ3Ir$OJ#5ZgM_ob=zYKk%)z?}FshFecu#WiegYpPFjV*`LFRN=0>g!WC^*8^
zM<#G?+5g7a(Fu$ZeXQU|u1(*JlyM1ctD806RX!0C38nJY<um3bfv*zI4>}VQ_&k9x
z63!#(c|CPf0+SQqX!9lOR8Qs8ihN1}eJbaW@cn99!a2Q`U6tqCOlME=Wz9%nrjQ5c
z-pomGoWb%0R<IqmQ@=^z+XNOSoRdc8vauyFKLIQ5VNYK`vMGZ$ujVR?68J8Gr3nPI
zRG$6&eFBRU&T+duljMhlb27=a73oVvX>%-<qt>zn^!;hH<Y`DN`SPE@W@a#f)qMF+
zU_$~M6Ih#YMw=fKSkKbdQr9KGQ&#wbx8|PmQvyFT*S9kGib$lJeZBw(E9PqxE0n_~
z&+Of=Zb@Kk0{IDOEKC_C*gSS6u$`@r9W7Pa$u_e(ojsTQgFRWh6WBxhUo!TxN9U*h
zy)>PC;C9u|0xYH;mMYK_FcL6Dq4-m^yg&j$rjVtPz&^1F3l4cW?bie%3E1L|3dRLv
zg3q)`NeE$UNea2uvo(+RQJ>2_qNV*N%Kiin2s!9l9%B7=a-PDU9`znc;AjHJ5;!iQ
zrxQ4nz=;G-CUDBN4_C|M4<EFrJDb2CqW>;<PVl_o1wq>ITjNjR7hUBNTbIk<yH?=u
z1g<7<BZ-?yTub1e1U^n;ToTt4_&0&BNpwr%MglhzNKXPu+~RP=aW9ENN!(!%<?xtv
zjy1cRz`X?05}pD{r^S-oPvDx@!=E+DQ<5N=?#WvGhe}e=wJDr*-qnjF|MzPq4@^rF
zg*I&e4<%7FiD#4OoJ6rCiYHMwiF!$tNTOuY8LR6gQ7S3ZO3Rh%Nj#iHY4Mg3tSDGE
ziE>Hj2qu<B`6MccNWN*X^O;sDiOQl>5v=NlR!cf9hXys0&frip2|g)&r5~#$-r9m3
zly3j#JW807`bjiQqEQljBsCCxB#B3bur*T5NTRVso|{CbkUyuU<RrO98EO()qBIrE
z7UZqHLVSWvlHdk>ip|8^T<|f$7J>{K|FqIlcq_rj1zQWY5u{D8KMUj~@kA0&iqcWA
ztsB}-NPEE!f`yl-Kjnr#Eu@p+GlDFo=aS$sOZP$&&kN^}`#|ZE#EWhy#qLSGl*C&}
zyq(0$N%TmfZxU}L(KCrxl6WnN*OUC~kknq%0A3a3h)2i9z-H51nh;wQzxetjo!`Xy
zD>={8=1|Gcz<x=vb-gM0SyNB{BnBk$QPNopIxvYrNsLTlR1!Il=MGL{coH89A0qfp
z67LFO=zB@LFZ=^n8Jff};peL5(SX0zo@wRah@|toZNch!{9Sl-()o3JY|`1lH74n7
zQ(DzWEx0zlY}onHoI9<?C-F%Vfh2-Se450BB-SLcHi^%Yn3%+(B)(&Qlg>Ng<RrdK
z;tN)HiN=!zD_76sNAZ*-rY4<Nxaq`p&Vh1#ANwllyp>I3UC7rl>vu*HGn1H=#B8ac
zd4h8UzZU#PaIPTj8`e&l@A3sKF5wGZrC5t1-zS|n($%b{HO>>~ha?8(HeZ~?60un-
zxXiU*p2P~_D_vz(5({cOYfCuVa|~aX#E(gAPhv+B>y!A2RZ}--D@!uz9I^gO5?hkk
zki^vnk8Kph+SZ$dY)(3FJJiqCch0iofo9~}Sfm#ex^pwrDehz!<Jrzh>`FRc^t%Q3
z2-3TkJ=*0OZRDUZT`u8OMiQoQzOK+4O2SIwR1&9?2qzIq;<qIBC$TZ#!#97M%`b^q
z67eK{mC-Me1e<75hBXd`u{BPMeL(g}5F6(KUR5RMWYRg!j0JK~is+EwVGe+9i5(Sk
zEQ#YnPPqEeS5ls;>AW1CN#bl07n8Wes!8Hp5*OGc{vT7<0VPH8yg7ovCpk*a9BFQM
zcK3k8Te!PLGANP}Bq|^v3P=(~2}%+pijtL_1OyZWBuYkvotd54FkuOj5fDTK{@=8}
zd+-0=yn0_(S65e8SNF{J^z_o0;qHc(KRD-9$>c@Mi$9;aQ{^gWm=W$Na5p%ySIWF~
z4u77*O*(%>6Yiqnwwc?U{F!wQ_s-!iyJmP3GCh?u`I|j>G(RzwQx7#fV91@r`Y<+x
z@$ek}Wr&6`Jd8)@@R$>I7@fm-LZ5_DFO2$Oq=b<-%zysEQ(+XoF7ZhtUl{qr?%kgU
zi}87bCyW)Oswq;HFsg=8DD3{-K;bYD=6{!?NZ4IRDjRku`J!Qz6o9x`7{vuHk;_@#
zx?m}ROAA^im+vj_&hzEMC?Cc%VN}TFR|=zIF8)n?O<Y+dv&yGb3%dut@ocoZVN@5)
z8o81+1*jE9Z2{`!^3U{1p?qrCJz$M3Y7j=lFr+ZjSm{Fd2+a@IdmDw_N350uyq++;
zVfe!cguz8HISgMIJ+??Zk&?-ce@Q>*O`G<iH$99Xjr_;G4K)s<iKwfopc#TT6ZBa@
zDU%s?&nzWq9!85WvIPIRFj|F?ohy?QMo8e6xtvdbb3gQMEt2iSXcKm)l(r(-E>~uK
zSJ#If!ssYCopSll3&2w=Uksy57z4u?6h_xDx`pvl7=6O-iJjfU=oJPJvLo&xI6cGe
zGbEF2Y;V?h#Lem}WOy9w00CYWw4addpIe*<-%)_Vg9T?u7_SJ0<h&{*c|_jOT+XmC
z;!9l3Bf=ON#_TZWgz<V9qr!MMj45Hf5yqQgOkgO6F*=MfVT=pA_lvm|Gsm(YuSstS
z%1>Mer=;_fRc4LP6_^yp+hKPf(d4i@+kdmh%iTLC%BFL((>q~o9}y&YFO2uYm=VSY
zVN4BUnz*Ki-H#fUAI!@l1f=}Z;lr?dE14O_tS}l^3tcYj9$r0jPu^1p^AgMr<0IA^
z#*#4Rh4FD1^TYTuj8DS&G>p%~_#*7Ct#Q$e^fQ6)<jdi(W%9rA`&AeV!dOK4&kKM3
z|AfD;lKBnW$i+!PJL<mwlq?PNkL0i_jMZU0Hy_IxrD3cH<J+)1-zIBklCBK92RZ(*
zvM|?0`E!pyQP<GDMbkT1FR(U@qT+zQ#ck5p(ep*q2{wkYDU9=BTnOX)FgAzr3tbn+
z7PeiCk)Ol(frFji3u6Z-jkuQ&PW*QaK41M9c7N~h3ZwMu!as%ocSh(=0Y=P}_;|*H
zG&!;C7IVd(F!plTp7wH$BCCyee;5bCI2Fd}Fb;-sh)oFN7%f@vJ<J(tt8_%*Uj^-2
zEkr%@zQl13RgrsAsN&%5_SnlI$=@bi%Kj~kGht|9M8fzzjA}2)XTvzhDK14Wvep}B
zaE76V-TP+KS?-GW8`VOCTgklrIol)-E&@FagJMsmb1jG?D;h?O;TlFFcVs2QFa@>*
zwFPx@bGv7{<MEGw^IQz$QWy_7X4$P_T;}8%#-H@0?7b4k^)P7pRYv&kygcLanwV_}
zZqV&P|4mL%shLBDc)9R?Te$A8FzyL(CycuSaPH-!1&dJOeKt15_c!~!w7U>AyISaB
z82_@T6y#Izh*j73@yesP$4fpI$tPjtAcGSi`6-GkK;PyUfKDi=pn$+n3CaU4c^9Az
zYk`8N6{M-~s3@YKsDeWZ4l5|8ptyop6uhdSgo2U^S}SOypp=5r3M3X$P)0#n#l2rt
z6SSOy>3O}C6qHx+jDiY^yLqOfg0m56cB%A_mP?Vk?tiXTR!~{-UQh8=Q84UVsj7mW
zH{4`(1w7!ih62jeR8UI+i_}(-s-T|0brjSUfc#yfGV2S;@?S^|1!$n)>tDPqOHL!&
z@P$O>9tB<n*$Q%mg|Y&l0>6THZ%F&<`r3aX1r($!pkc&cUh*~;n8_vznhKmD=$PeF
zGX>8oAmEiLKu|&RTuuuCvJ_mc;-x@HR7cNzciUZwZK>cn!D%Jv$E^yG$*Zk`7Zr37
z%yxpdSKv7%bx_bz!RC$Vq~LkMc|k#E0hrr;tK9E_=djp1)m6bu3i>GMCW?1gu=mZ(
zzJ=0y(5njUn^G^qA+xuFe@15#u-?83`YG61BJi?;<8gUqwGip4IobUc$h!jr6bw`_
zb8O}yK?w#c_#qh}7@}aPf)5mY$i7qXnu19R-c~SN!3YI!D0owtQL1EMq=MJkBZboH
z6$^acFMX7P3CX~qS%J|CqL<u}I8MQ)Z0{HaV;NENyj1>{;2dx09j{>RMXA*8zyt+4
zd=uHmy`E1?xoen{h5o4u-Vs0v`QBAPIz_>I0=zFMIjcrzP7^X8Z1PT5kQkjggU&1-
zAebrm)V4){Sqf$=n4@6Ycb>TlK2h+gz#j=ZPr=6m?BC|0z-J0RS8#VoV4Z?56wFt!
zSiuqnUn=-Y!8ZyPlAa7KQ1Hun@7IjOCrvXJ%iUWB8r{oWB(j*hePH_jl4%rJs$iLd
zl?qlVSgzn(1>Y%Hq2T(B%qb@WtNO~Uh@i#5^n=wx#H$sop>q^|`xao5VvWWI33y$(
z;$N>|gM$5*cOyNi;CuS*ihs~BH+QoFn!y@bHIr=nR?+q!6zqP(yG_A%1v|)5-1+<`
z#s<51f?Tjf`Ys{%i=aOXx?50c*dxGRL08?)voDvwU%>%^59V^lw@dj|!4U<uRn$>&
zRKYO?l~hz#aa_p!&RIgi34u=vdP>mK3Vu^?M&Lc=(`#2qIkwg>zfka;f-om2)t!74
z1*(EO>=XqWN2`KM3jSc^C@?q#6gUhy1u+Gt(8D56^(frndLYiIP;h0L)Z>!p@740o
z8eU7m%ewc@L@CL+NC+R?=)OL?px`0{xQMUc8c&t){3}bQP08|KW?4?BoaKJ@Usd=w
z#L^8;L<+94`xHz)AvK;a%{t(_vETp8(v&i-0vTuXQPrOuGP<|M8tJyspYNdmF9r8F
zt1Eb{;67*ggYK5d2Lk*};|r&i{?R{tt^Xed4;B2&;da0k;PuTS>4}0oDhjG7q#{K{
zUKROO6i|^*#T~;PFa5d{B4DG4|LPccN_cGlM_$@iSOruRRZ(|ue%A6d=YJK&M|=0}
z^Z$0xPqR-;zIRVc#YB;VQ>79rN~$QOqO^(%D%i9#D$1&OMhKM4t+Bj{&$i^Hqsne}
zU3cRBJglptis~&2_I}%)40%;iQB{;8K2j#7n!wdnoY*8k-P~V81!+w|YpLL|$xPN2
zGWAr{SCN`q_Tq$;2D!MQiof-OmwUO-*o{<3g5PvlX8Z3vUKO&6Pb2s&0-p*$HAhe+
zf`E#275}Puq@uBkCMq_m_+CX*6&WhptLUKO>ZR;vDza2$t9Vw0RV|b$Xi(7Rg0`TN
zsIOr!f1c{0qP_e%Dq4%$i9_^oFMmrF&(Trc(urHCNL=^SZ60VNWZLH1-%iESIqtyh
zsG^gKi7F<kcwWT|Du${UrlK>A?BVaDqOXb<Rdi9&RYf-yy+sw>RrFBNQ$;Ttvr#H{
zP$tbO6Jn9s6aB3B(B(kQ>Y<ld`{e-nFRSRMVt|T)D*7{KdiuMcbK^6sy89K?AQgjE
zysGkl)-ZU7^ooiLj^_tGXm$68%X!yb%03qJg}eE)d-`8fF<iwPD&ADlM-GlqF;d0r
zDwsPbU)tnz(%U`##G^#+-3?OJi+M(?cuU1N6=PJ4RYA3^Jw7Kuo#R!IP7u|7eNGx3
z^O3UZw^dA5@v(|eRJ^0&T@@dyn5klliuY7ZQ!$-0$uoJW{CyQuRb0B|r5;+oe5L!L
z+=%7!454#iH~$AJ*i*D^mWtUb=BSuUnlFvUFt=ORLaV&NdRL^6RLm2$u{bXp`6&Zi
z#kVR3RS$ix;tLhus931tVNPJaiZ4}sC9<A7n6*H~qNwld+~jjxgYQ&#J7STF#cW7#
z|1uRzL_92I{B-xTr`j!(3D_^pT`pwuB|YD%SfOI2id8Dss#vFDHM7o1_aAuHu<Gie
zRUgZ&?(PA3y^0Mg_J1sIWTYL;`s9i9ZQdNl8}aRK{>>uBj?qObwy2o@MfO%UO~p19
z+f^K4j3s<K1l_4(mjFMi_(_12gMss<LO-k6%_eKXy^NMWvbR+a?GbuzoDH(<FYNB>
zp?xY2-0<udVgv_N92A^Gf*ux>{9jdEs~#daD)h5BwVhCLQpI1w&QmH*tGL3Ur{Xsi
zXH>))v?_jAaaKh{g|6Zp=b}C-=a$MUt5%^fB=*SuEx{#se1&U-icFC--e^Y1b!&tS
z`uV+-wm*8J95qdXbDs+k$3!lHN&l-j&)865t8l1!shkv&XU<6np30bV*GEqECBcg-
zGS>zFP;r^j#Ua^5?idfg)IY#nie26*tIdPgR9qKL_*2CV6*mRGrGh3cy_Z>jm4|^u
zc?#d=Y^mZdwe571M;>Rfy8j~Wo+x!+(7#nYQ1K7vuG5~Cs^=j+Gct3_$V}45DxNUv
zG<>BYkA@Tty*0d~A+Lsf8qzg1){tLA0S%QjRMzm6hJqT3Ybc?ikcM%(R768j4TUv8
zB%c;^(>gh;M(EM(tPAhwDW<`D)z|){wC#$omm`(bP)b8N4dpeI*3k2q)JWXXXm%M5
zWi|e{La@zZiS!wo^kqs#&AmGpTP#&zrHVB74<B=vZ<eZPsH&m9h6Wm{X{fHDwuU+y
zY6$tB<-D~7sHtI3Y45X7q{y!9VUL^E)sU*8o`!}6WSX?PRN9-Hf<sP9RSRd-Et=L)
z!-dC^SA(pfkp@Y_gb7lb29Jj47fO_GT0NU>=~E+g?n0g&izJ^0zi1szqMm>TQn{+H
ziH4>cI%w#qAwxqm4bN$4rQul(nHpMX$kGth&|Je@xgeW=xKtW7uxV^*w_o#(TqtF0
z$kDjyC$W~xXXTIv(w6k?6E{iPT0>h6?I`wpfi@bhPYo3N)kkkre&_G`+H3e#@v(P0
z(Q*w8t)3eHAq$-~bkoqCoDIPjHFVL?m0eKI%SKs?gQo|37Z^c0xrc_<(*l=lU(2T6
z>95I8clX|180@8CQ@_9mL%n@8^cBASRKv>}`e}HJhH2=pVSt8F8s5+_P{SY%BQ-?3
z$%8e#qG6bZ*EGDUVTk6AprIN#z9!ZPE!rc0RU^cq!GShh$d8~`w*)z?GMo5Vd~&Mq
zbs;=7C%`0!z?&Lq&uC!-0k1I{#tJ5J|2+Qj>^KeYJe~cqhKU*`X_&5IhK9E_Ox7?(
z!+Xr7*`DCLwCbMcV0S-p)+v81>XUNh_Zfsy-!u(V83Q?Tp~_i<k`i;b)d+o{;X@5`
z*l`+WYM7;AHU~@owEv2SYlJAwA}oHu&iP2gJfZ4ljnIF}i^YSq>J!>9S6<)UeE|DR
zwBmC?zYui3hS#fP%|0b9(D1c}-!+`o@QubllE5}0ut>vV4c`mAM8i@IYc;IXuuQ{p
z4J$RQ((vzQ>01roX;{G?sgS`W>mumi&HHP@_jlU@t2L|<0*w|+<kU4J%B<J0fxXPG
z?B?Cb-i+s&c3ZkzCcxx{g{}a>W>GJ-ZPC!_AKz9%f6(wtHQD$+xLv~z3TXIA!!ZpT
zmwR_=*rj2ghW#3T)=*)-yjRfO9GILpYKAC7X6>3G(qBXtok@=!(D;%XziJ>pDCi+U
zo7W5-zm$DM1D$!415FN+^UF`!)N@?J2@NMToYL?c-BrU?ewxfZ0m`$ZS=|{8EZ(bT
zC~(7nPD7ZJUIcj~P&B9-ZgJ3Q&@@CeBsHAZpldKRm>MhwC!_jLe~jK<?H{zsUt+Et
z7v6Ys$Dd$S&zA@&K<89!S<u$taLSr1=cG3K{*M2GhKm}mYPhE1l7>GxqBUHh0k{9B
zYSLX7^iFNY;_*%X>!R!pHko5QwV5%|&q~|e_A93)R&-m#9SsjO{KK%<@Rx@B8vYhV
z(wYSBG3M|3zxvZvNRw!TRW*loJ!D{Lc*1!#f=3!22ZE1<Bmw1zJ>x#)P?(gZNb^O&
z8Vg3yu56+F5j48(FA%}t+y18nrT}wUU7-jHM?jm25dkT)ibhZ@f>$FL5<&3@N<>gM
zg475~Mo=o^PU$rxC>=rbZmw{3!6_3#*$B!-P(FfZBB&BU)d(t3tVMuVr3fkty!3CW
z=+yuVRu;uSYUt*YSuKJuF1vsn>Z~DjPFY{LRs^*Lt`l+htn$~v=6mihh<Xv!kH9ao
z8VE|JSAd2QEZppAB(TI5Mc|?3le4bo^>I$FRiL>X!SUBJeG$C<N%{{3eWZa1(j#ab
zL6ZnNM9?vUrV(UBkR3rz1kED&;hGer!4W(gL1qNeq&wR`sq6otqOS$z`xVZjOhw=G
zCvqn4mdBmXAr3{*GJ;kSw2t68QKbI7bP5#zEsMnueU#pYT@yk32x?vQwPkfzyyQ>)
zEPd->9`%+({hcCsKEgjS!AlXm5JBe%x<$}Ef)^v`5<%Ap-g>!kt9j`xLd}EcrL)pQ
zN8}##%)IoT5%dx!{b%I7!Wk4GzfS~xBN!OLAR+d01pOlz5J5kYWYsi`dh$Nwqi}<{
z@{A3I21oEp1gxd>?DPwlz5i7=G=gCfOcPFiP0;rR9Uj4m2u4P*@~Y?1dhc6;`MRK^
zB6vf9Hw9$_M@KM5;IX-!(BnKTH7)}Fuk?69CkQ$*f=L3rEhuv*NAONAem8<Cx%fRs
z+CLHnrV5=^-gCFvOpjnj1Rq2&y_LHyc5Vcr=Kc>Om>F?jjm=`5m-mi|duK;5Cj#`A
z$A9T1U0qK8C<4-X5qvBF@h1$Ph@15}BbFUx-~|KoBlt3chz?!HR}m~=x9aGi<Ld~%
ziQr!jSjMEVX9sBniy~MY!IB7;MzAr0O%W`MU^%OZU`+(yM(`aS7{RItMje%Si(kG=
zS`on&U1ALLv4_tyd<JOyn!Gl`m*7|*!G?(YR50hNk2JQ~&E+EjDW68Z7g<{w3=wRO
zU`qrm+Q@vYVlJOISjDyowhJZX^GSyEZg2Ug2zExeY>RUd?25RHU3(+=C4!#?-Yw`J
zw(ewL>9=WIq}mt3{s?}J;0Oy23mk~xPy`cR4IE@c>iC_OuGrm^fx`^EVS)T714kn`
z7Qv|qPP_i(UuWVZ8+gUv_#64|ZhwUhK`v@t8jyZ>Sl~BKBO8KeBKTcYDmC$U91<9O
zFvwN4X+r~HPW}=65y9mM)Ce?AWf3IU7eX6l3}K`$l3WUlMiAp1^`z;$Vd+p`nZ}qA
zSP>*6IM0!FH`9*55k^kD;-?tb=(uP$re^3u1Q#Q?B=j)JwKy)LvElT<l?bjza65uK
z5nPMlx@h<<dZ4d-BZ8X|u)S>5x=j)rGOuQcMgEL{4cSyPbT@*(BKSLk2NB$3kN1`D
z3(Dm_x~uX!4>|vchCgIrh*d#mkx9!RNAQGtbfoFXqa#H}Ssmqc<kgW+M-d%Gb>!Dk
zKu19xg>+O{?0rhd`T2!Mo$}_HEHhbH2Ul0mPsP*JFxkC#6bnl~hH@&*O0U;4r<ji7
zI!fv&rMq)}2_0R=L7G~al537i*T$xl)=@?jG#8}bpP63#lXMm@uj3gVHFVTujXEZW
za(GqNQBmMZIw*6hX6SOwP!%0jX=<&|YmT>?j_Nup*9ytA<yI|oKF^n4OGj-T4Rkcr
zQAgC0s-vEcx;j|h_(t-eMp;x9RI=*}oveM@E~!RB>eRJRBON8$WH5_%dUSYcPeRJk
zA#*8NN2ZRT4!@3oj;1;?bfoKUyBh0gB9v1tn?pZP!?2Iin~B<=)p0JA(|$uv`#Wwf
zUDRBtZ6T;SGKE#}%F>Z7IK-3;>1ZjE&k6dUg{=f`t)oq@WLp8+>0os%*ilC(9k1#b
zB0T@Rj+X>@K}Tl+UeqyYo2NH>L?pWk%0B8QKzBiV2-;K7UV={A={^`_pUKxpM_--m
zoM?1H<~2}9KOLX`B=hR8^NVH|lTSJ*S7xvPuh2zvvY0iLrs`O$W1WuIbPU%qSI0*>
zM(7x+<6Rw7biA%(l#U5HChB-Y$D2CF>Uc}XXdSB-2fy6y8KdLqLh0M?-g#Mp0XL+D
z<D_vqejOx_XOCnBo+_8|@A5Q?O%lvPv*gJ--WIrVtq{d{y`$sz6Tv68^q!9Qb<EK5
z0R_r>r|OudW4ew9yM2cqxmUPqMzzaQh1&9mI%evarDHa|S1Uw;H*1C3n!&2&ym?gL
z95!=$fXrBWaGs8jbu8AgM8_xeiH<Khz3cc)$LGWu1?F>b^$&c(Y5$IAPZN3OQyInU
z2U+&?kHH0;{B<nUu}H@^9EMARyqHz#i9{J%lD;cQW5`*mW0{VX^ofq;I=<EMosJb8
z#Tz^ii>5VLCLb#;kKW@xZz#uIc@|$S>RqE_;}ePP+WBSSIR!G->)4><xQ-L#>)51Y
zmyVxxe6M4(j_o>j=-8rTtIpLnY|}xX&=~5!q6G=4ippuyk2-$Ru~P>fH6SHpZY_5)
zkga2**x21V_UJgs;yU)~_(jKl9S3yKR5of&t<XLipOZ0XagaV?&;F<OFgr!Z5q39c
zn|=Xykb2J5c1&~-m9vffdB^}bspFK6aU*3-$7vnE=}?5iGwf&`XE_Er7|VI-5O!9+
z6Tz?!dVs3feXOp-W=R#rX)W7AJ>9=bF?2*Zy%?xrAf_X(<F<}FIuac0IxgtAsKe4>
z>qv@W!uFo)P|(T6_e;9(f6wd4D&anw^17tsnvUx_{?Kt*=Y83o9<S!ghi1ECe9?A8
z$4$Y!#aS!OT?waJQeJ=38^r?4Zc2A`{KfDvP{6=F9rx);9slZF$98q{`bU5Vg6<Y?
z%`z*eJkt3`4@fbP*Koz2&?g3>t5f(kjmZjQ|F>g&_o0-m$|?B_v@PYD^pt^u1}Ye+
zXrPcNNM;!Wg>x|sJS}h$14RWWW}swlZgB%81m?>}7Az(3ek)ID1AN&>PFcYzXJDfz
zz^l9f&j`x5dlaZ-psJ9mY@mt&d`U;XSu9XZB#G~wl4=T^WguICS_WzxsAHh6fm8#2
z0|5i|4AeK^G2k`Oz(7NT=Pe-3z&SbCNKpS?$qV24<H5W2{LOCjJG)RZpZgO@HsCW*
zq(fjrB=~Gjkn$xC2h$BSHt?*0Oan~}G&PW6pqYVHyX4J#r8_%wD13^4s2vIR*&x54
zl!A1{SzmJlEex#R9bDHn>(=jXT|dde{wsnx20{i}8hFmY&mk}0eV5$kdFPUsueMtm
z?u+Ku1}e>v_;*fi*foaxvb&vu_H11pFW*WR+AVcpi)MPisVjFh&`DqllSBJE8~D_~
zX9iw0(8WO4T))jW(9J-113e7%G%&`%Sc89(h~5TXG4QH^mkjhVFu=e-1APs=Y@nZk
z{<LI~f6NVEr@InC?{)rLdDEI!O8<DVf83VBjk^>YWMHs?)=g!;+qzXMgD;YX7#M2c
zbpxa5wE5C71Fsnv&M3Mb;2WPurF|m|Jlf}PJzg3~P})~<lSE3(-!Sl|fzbwT?Uiy)
zOV5AfrA~i4@04ljZy6Y8;9Ub#42(B0!N4Q~ZyVqnsEIUqzkA!-91ff~<ew~b@)gxP
z2EM8jD0p9bE3a?IS?N6k?;DtIV1{tWR0Gr4_I3VcZ)ML~BUdSs*|tXD0|Or#m}y{^
zkWrTVtt#o>ur#(}Ix8wuPUfqwIR@q$?u#?N(fi17-|Nj|skQ!(1^t90u9r+p$obsB
z7Y3e*qCyn&4SZ?fjDg>2m4OA+Z{Q~bC+>T`Hn7CNQh~n_bfKV&3@kRFy(l}iLKItO
zV7Y-!2EI4&t%2_tR|dGMzrt`|yR0&>+Q9an{*?v}td#j?XN`fi2G$w)Wo2+$XTM!7
zoBTJj0{R8djrM^JqU=Tk9h?G8F3kySW?(zM9}M@f*)6oQxxCfD^+P^hc`o|4QMrK~
z22yH=c)I(~;%~vb8S+j8yJ*0(!Cx530_^2LiwDWsEs}c#?N}u3-3>DN`wZ--g$53?
zjRsB{IAq|kfujZ}^DAldjIV~sM+_Vvke+tdM?7Ru`Y|Rsc+dI@JeDd&JycF`ijmnQ
zcv?uN9`F$V#=$-$Kya1=T=d{mQG^XB2L3c~+ki@c8aPjrILZv@1`-BL0|w_t&in@A
zocbR7K6~gPWkluof@{lMK3(%zvJBV;90N%M|NRK!y6(awQmtL?4<!ndUNmsYz%}~K
zfIKq~Ie!?q%sI2W_i!1nye)Xez*SC|%VaLYlHTCZX0#jbA~t`Hahdvui!y&+-K?I$
zvUk`=2A+t9{Kd)Nz&{2a8o19|S{3-)zyl8RhaRq$bJc=B16$s3ZTOe*Z{RVbWwX1y
z%w_qvuY0-pTsfJ;HRL=|q(qT7ihNPzkD@@-HHHnL28yvb>3=`{3Pw>Vio#L)M=Bac
zu_!7#K1A_!6xUWrMX2YB*K^C)XMt2aiV{(jilTJXz1Miw2h)q?Eg8jFua~D5Th;TH
ziK1*2<)V1=oh%AGpDLG+LOSG|d_mGqO7+ipD~f{6qi7LDB~}zgl_<{Mk{eMhimFjm
zi=sL~?NIF~>O{f+wXYFH%_wR`5nJWyd?@hGO&@dXMv*ECHlUuf!Fo~DkD~j1KTpNa
ztR3o6JH*qK8;UFnzfn7s7KJB@rlNLl6mk^lQ8bRi7ll8HKom>57NSq++vUYFxKz$g
zByAD}!JmB!v9stdhDt^h&7ycVikEv9%8Viy#rTJwzfQ~V9Fh3E@!*bheT<wXYI!k=
zE&^mnkrU;=+@fU^&qdKbiVjh<ilTKCZKG%>WQt4=w26WbE!|WfAD{Tt^wXLklLQ^3
z=oH26<MQ)S_X(Cy%Y3-v1Jw)k)n%!36twf!Rrj&BYZTq07#+nJx+01mQ4Egal_+{f
z(TfI0(JzV#_od!Zyc9(r`u2vW)_tjO6sM}CFP|V6J1!HX7R~G*#egUVMlmRgW%cE%
z9sI#H5+yfn^>n@<6L+rcdo_w7QH+e@^(cl$F-){#<!;|s^?d_RORVKJQP=P&M$k)Z
zT+Z41O-E7fY3U7y2m9`R(>I^a9DUc#nq4Gq*HdX@qnP%se{vM>MDbP><LFx|iQ?@j
z(uM{mGBWr0Cq>a{ufNw}zZnXUnW_ZF9&+)!QA}a+D723Yz9)=%KZ>ag)Jal%fAH8{
z>4m6Np^R_m_rd8=%n$+}MDa=O(8)rXY*guQ{j;K&9mSy=ID7+hqL>@S;sll?@KF@=
zqIf=z7vlJsMcCdLhQ;t{6rV-$Obiub_&ka)qDXKAasH3u%P4+|VrLXziHcT5u{w$c
zQG6Z6H&HC4=LLTetDuJkp7MpXB#P|GDNEU*1>J|tH~cC4W=hK$73`pQWuDQo?|nJA
zs_+USPl1&J3~gOtO%!XRJX{@H1ZQ0o8>841#rj;y4N?5PKa0EUzR%^{Xk74*^OEwO
z^jU3pb&=QBD1L}yTNKIZ((sqP+lAzg|Ku5gzj}9E_pZ(G?~3B*D9%LjyU5xd#X&kP
ziam_CEz(|AT08WMp!)>fAH@MqJ{!E;$C$BQB0U_%uWV7SB}W7}N>|L1`#s}37R7PF
z896`eL=-1kJmKE)A0KufcutF~-vqtb+4a)dD9(vwRM4=X5kZwGQ~^AutTCc?dUVsP
z3y#5=XQgNDG<n0Ql$hYe1*O9L*JUdTo52=C@faMzzZ}ICdM1kVQC!HCyd=Oy4(A-7
zznps$`Ge#1BdKS?dzCXM=ib==p4+cSaWl8n4F>aR_iUeAg2T^z{-m9yy|+10@ATY>
z;%*dwMR8B${wwHxLH`!?fuJn@PZSSxF$+G*#gC(Sl8f^Q15yNSaZkz@L;e^F#PC!M
zg=0VrJ!VM-V_cb(3dJxW&HL$N@9>wrr4yc~V^B)_i!#U`dyB;2ZzFRX81e1R@>4s!
z4Xe4HFA>B1{Zh#o-dyV`C8{VLLzx)L#_&ZixxC<%6F6J;lJnOV_g7EF7%Ih(5ks>W
zD#uVoi1~!7sxj1#p-v3d1hcxJH3Y3GXe~j%&U9T}SKvm1rp9pOl2k8-dQ+tOF<e;T
zX%NGhSLKF+5-?YaVe-G8v=}@wcw>-b_++)DJtGe~;35Cl+96V^^$UdoLDOSsEI^YO
zPh*pt3VcS0JsU%23|(XB7DF(G<}tL6p-l`egiJ_KYReKJThN>sX0<M`D$Cn4hOJB7
zA5G5*eybSr#s9Yts;%I36trCo?FFD@2LZnPBTuIoKHKMeK86=!=p4g~F;F2nyrOfx
zU1CUC;N^9*x4%0(H-<sE8hQ%QH-=s;J5%Z%!%H#r5jdl>w^9Y)bB87JUyk9m4#9pg
z^cP@&paU5;zf0slS>f@0?pi)LhF2INpLuz`8pF!-o*^;(&|OZ9^}ZIv@EGDTBw`p5
z!^jxc#;`7i*JBtJ<F`KrzKr1w(cSOF@GgUgL#%dav@mZ>uC-$Ycq@i+0*n`Qf}j%x
zoh0bnf=(8cRvl>QhUFBI{3M3=Vt8NRse*nS!?YNt$1p=A_s{Tt5X12W?yN%mVGN`*
z1)UYcYyrrbBf#7kJ`!M_p!bTUF^e<yy^7vXV+cL=d?x7Uf_@?Bd_lX%<$^x%S1~N$
zC=>NAjbT{~-^8#mhDCz2ucZ5;aIwGyO9as8XDt_C=rAt_>9;X_7sHAe9=GzYieWYH
zIO{zt8K2|jC$&Rs1fN+<4k{#9`dL~Z!-g16#Bef(jWKMB;gHbwy`bA-*e<~47`6!T
z@N;P^doYHXx4m6wxVHmdJ4Dt_L4S<lrx*r4l1ht1)piNy&oNATPTn2ExuAECpnLxl
z=J{_i>=Sr@F6TfD2Xk?|rYVPG_%(*#o_0@`I3oB*1uZg@JGF3J;Fr6(_oh<<tAd^u
z^fw0f0nZshe;4$upyy%;$M9u2@5n)3MQ|vVr?}h2S`3jGqCZNypoXAPL1Tg*S>a)>
z8G{u=o;XtC?$m9^@V5wBCx&DU=SA(8W4OXeCWeb5c`1fJ1UUa<HjDgKBJIaj(pAA>
z^11-mVtCmb$Ui6LhDhEN^j5CSp90*D;f?@z1^p{G_g)P51-8Xg0jJytBKc1Y4{1^{
z@4tdR67;d4PXt|>-^<**aZWF&A4h{Y^2bp?w5xg?PsLF%j!Gg~NKjgfI0_3q`;_;X
z>3KSiB5@Rr^94Q1#8Ebm;&GISqhuVV;_!rIBfq!uWbeQZ-g!-P7<i@QAYS^CpR`;Y
z<>PoJjtX(4xA0MzSGC_IN>+@6!o<BNy9F!9arYDHs~y2Aaa4`t9iIOnIEx;8$gd&n
zxvzL?#!)NI4Y8iug4T(nt^lcV)DwVNte3R>hhBQAAuWu<D~dOY^M~sH?!{?w1k1Tm
zC&%Fv%$zv<aRlPX%#}%xqe&c1<7g~6w=Jp1!j#mHrHnY5#S#9;yYM4-fIJ(AI=~zK
zP+EM;6O7|{irie#7J_C8N@jK(LvBd~p*UK`@my{#ZQ^JZM{AM%p;yYeLGJX`HjZ|2
zv=__{adeF1V3zyQ;?42dbsM2m9E0a(pByQZc8=r4IG#?RNCI8r=o-iVI1a?oEspMS
zd>Y4RarDTo>(w}V3fwD>-f_GXM;|(QvRmVu;vG6cUm@_ap#22xALrH)*KY&aWdaP2
z;}rq!@AVdKo}vU@4fOVqIEKbCERNUW7#_!D_G26);usmns5st;yEo8ZK9OE$C%*2j
z*Ft`yT1tmcr8nak8^>F5jE-aGj}osjZ1Q(57#GL*I3~r>uuKM@-zLPthqsArMaisU
zt0iL6w?*#98*?c0ZX8qMm=?$MI9~l*dXLRdxS!3oj!EywF_nIfNeAASNN2?HK^z~&
zF)z+t1l|whm=(ut8X%I7x_G-d@{SMWIdPEAjdQ!Wcgc(V$l7Io%(i5CTb!5nKI=RF
zSo$Q6=<M`yS3IA`@kJaz3(w4t<I6Z!^hsF}$5(>0SkMJ=l$$AiE$BCbE)<l^MR9C;
zF?)L#c}X0*J-(%aE)#UQpx?&vUEICb^URavArJ5GE18UAwa~mRj_m@hiDRt*?38tJ
ztdC<u92;{vTLjo7==Xwd7L>RCtpc#r4+5006WSrbPyg`+P4spD(T3N~ICcq+ua5gV
zV7I_~1l=p>FM{r)&mT$kUT`DiU>t|yI4}5z1ts%r9KQ;DB#xtT9LwdO65u%dsGavj
z94AHc=_&4m2d~p{{1(TVIDQxWJ5}7L!TL|T^c=@#912IJ$Vv#R#bF2#5mXnnc1!P`
zhwejHR3u}9##vWhU(I`gf!n=i92RG@?Ot0@M^Gk{arb~4f(vn66s0c3aW#%>ar_~Y
z)Ok6ME4jF0p_J=!+z`q93EYh1RveGwcpS%{aolzXNa4Rl?wvUPisK$f&_?;Lpj35V
zWYu5fdj7i$?%nV~9Dl#+{U?rxjJ<hTn=g6)6@a+P67Q2Z@+6RwK;8rjZSoX&?78ie
zJHeMPfxv!ON#_fBnh$V$q(A~sB~UPdj-nF_Q$B&ijZ!{1?0Ln>gM>Tkvrp#zx^J*(
z0>u)@N+3JoKED-DpmG9L5-5>C$plIXNeY(}ptPW61TCAu>-SwJmrvlC1S;f8R!rb_
zBljIaCBfNT)q7O;R863oNcs|}E<l|G>L&QE_J8ws%>-%*TsxQ3Bi)_GQxj;A%c&<o
zeL+k7<5t};!G9}*lt3CA>+{Yw+;=V>fxQXNld>%E7+YelUla`FYD-U`vA|6dXqrGq
z0?iW0Ody!Rf*-ukCfqw9?>OVW%Gvs_=Sjh|<_UD3=x>p5Z-Tt9F_$-^oCHD%3{7BI
z0xc7GPAD9lK&u2=C(utM+a%DI#w5@~B-<rW_J*gk!0i+0z&;YVQv%N?(Ct0%DA8pE
zFNkDty8I$nD$=}N1nrt|KmP4TBd<$jewyv=nLyPIp58(Uo8L<S9#{BM0=uT?=_8VT
zb8}x7;J=xne*yz?`2!OeB(VOz+jp<z@?TA0h`_zpxB>QB0>cxSo|`)&fj1I(Gl7wU
z^LhfK68Jv%pHQCZlrlPjF(T{z1jZ)tRsxema$K&4i3yAsc!HqUTDY5bc$s$sZ?mNd
zypzE0ZSs_ayKuoT{@zXCP^x^pl<z&kk^hv)r~K3erv0ZuyuzCy@CONeD8NiX=Oi#o
z0Lss1d&|mWzH-aX<tmWi&r6_O8UM#@PNw&h1U^mhF5|}MSGlD=PvDDOJU@XibMdRg
zut4Cib2;B6urL=d5+HS1*3tx)C9v%xwqL~Z1is}Ubx_d3cL}UW;5Q3rEUZjm75m*p
zcN41<Sd+lM1ojIJYZKU*z$SA3@vIY^^@48T;QG?beM;koH~Bu{erA5JuDm&cEeUL8
zY|nDrxLZj6An3LPwhKW1j{iUcKMAlim%l54pL6lUS5o#++boIK-UMC_`hQ8dAD%yZ
z-JP@#2(gkT4zg=F$t3V=0(JsU0!I=!n!xV~oK4^uqtVVjnZPMJVN%ZV1YTL6eIkK}
zKjsjePC$M;heuUB8t(rsflum$&ItL}D&?@$IZjO}%_9lu0)!K2*DR<cu&z!>O+XW6
z57!A@s1q`%JT(wYAf7;!lV06WYTeMlUvkRr4<r&W6R<c=>xN7xhhnGS%Hs8@lbuZ9
zd;$;XI-&nU0@o6_p1?(syp+Hn30xNVil8)R@3E|x&SYH`)iHU4lYat#C2%i+Tb#1~
z^xaM1o4-AOax$dM#;l(nd-~T&zmvd@LOz1nM}8WxAT|A^^`83){G9-`^{X55oz9wA
zH}o)pe-kKR;wcl45_p_I9up}hp3nowvie`i8nMc+v<^@>uZesn&NK<+H}PfN&}KHx
zA3Rw%bfs=+Yn}9hCJLE=iKk7pyD4>9>7TbZr?3fD@o^__5fepClrYgcHB`(*ll%Vp
z)BMFvbUKz*Ff~*=HN@njQ(4R{Wuml+GA7EJ2$^VUqMV8HCS(&n6VI5aV4|*xR1+1c
z{7hD56ID#t36&`Pz<+OhaJGz+|M;iw%c*LDw3?vR1+5`yO%t^Qs4XaE>IgvJ)-zGx
zgk&PkM7^p02ExLICWfSj&M!~Xo&*}1Zg{jhp5+n1E7~$6H6$O)x}O^O@V6|#$v<<%
zvnDc4q?>4LqM3<5Q$tNmG&MmDbWVne=}ykk)KHcseU}=#^P}h3F^Sb3N#+DiG&j+L
zZmbtNVR^DlWQ&S&Ong5oeby>}qk18NA;+`Y?aO)2MCbFqwj2)CLaj`^JQdui+1f-K
z!B1P^zmo{IGtu5e2NNC1H1Q%^Wa4=f+-&xO>Fy=tK00oD<DNS1ALGU_ZprInx|{2|
zn(p>Iit!6m(jF#yny6}_nuT5_dYf2pVuOj7O!P7Fxrr}K^ra0ZMpL<oekS^x7-r%%
z69Y^PH1UdwS55Z|vZ3h(2ASZ;P=igJ>*;<l#gCXcx`&t;YNE&h_j@INoW*a}+Sd#5
zQ={P~Mw)n?z27Z;grIyWNj%EL8!RGZ_{q|nCWi0zJ(t%lGS<Xfbh3#VCdQc<Z(@px
zOZ7tU^v;@K;%yU?89XK?nS6ie`LLe5MSl%*O?P)X_u;?Gg1_Z(b2#y_dZG7Byw3=s
zlDYCU)7?5wG44)hvfvfz0}~&b_=J%;U!G}VmWjD0J~A<zZNKN4W4hl0<f|X5RX;>P
z8D8^Dd@Qt41Cv?xL)^0dsnEb8pNWFx&*wlh-J8Nv6JIf+yxxWE!K812z+Vgcjfv#j
z+04?~W-Jo9iv?XGC||--ewm5oCcZWC9o^2U-oy$Mr7GoJX(H<JzMhtO>Mf~*<N45#
z*NE!YnwU@^ZS`t*8FQV$O!5WXMiZM%{9)oUqtV1>&ITraH?hUURulV895C^NiESo+
zHnH2pb`v|O(8N!i9DWRP+e4SV((JQ7?rqp<;%wvWj7st@lSkQmhUfT5_b}8={9<CC
ziBV@f%YDH?k}JcF7ER{M+*46(rS~9%*2Ho4f{DW>el>B##8Hlyo0&(~O7H*Z+3>sX
zm<dXbi06z_eJS;_XOv7kY2uWL-%NZh2OIARUjH$8nzNbX>$y%!|J}zVYdOnkq(c}I
zCc?rGnu&-B#e{0&y%p}J4sOyIWXZY-gQlhz;BF9_z51MQVN4oQGA(W*!R|0|-h^qw
zGGUu=ID3>#+q~UNV`$QzzvWkt2J7z0Nv)A_!Nf&|C4;Am%pD+sO~LT*KHB4NAEaSd
zOk6clz`|1&u9>)Q;sJeS;)aQv9GfQoGI5J@i;3GN?r<>v?wZl|tZ)0P0XCnm8#P~|
z&+nPIZ=(7}&)=Nb>t%E2Nsr}H8()xS-@ljnkVDc$9t$ZJ9&zs46nxCd-$cPi*<~Yc
zae8L&b<d0YgLy6Fvyk6%1CpJ1A{M;1+e16KL4{pe&_W>#MJ*H)0);Jb*UHltVDS&m
z@^OpH`7dPlP7w>IGTdJu#VwSuP{Be)3neX-vQXY~o4_pA%d({{l(E3t10Ts{EtC`Z
zPI?wO)bosmzV$<_x{`&;RCU%@#d3G){I@NK)t%YvDyeRvhJ~pXrdg<Ip_YY?7CKp|
zZJ~~ZrqpSnu7y+!l7%!2^(@r4(9l973k^g=xUqln=>q(^iZAr}@l>ot;q0n;=S(l`
zvEa23u#j#+w&1h)&%BbKmMGFJ)kn%N$k>*mY1w(Y7iw&QugjYVg?zWm+%q0Dv+%5i
zEDPBdGA(dVb<jd{3kRyZJEgfddqhS7UqQKr(7FAblw%=e;W-PfEHJmFg<Yw6KWm*q
z!&p(fS$SGpXk(!*UHaI^%>%=BxfOBOK|9*Uti|pd{|*B1_4M-=Ua&CK!Y~V+Exc%<
z4_#`Zi-oQhdUBGt(9Ob*X#p1OZsEu^4|jm~urP31fM4EyxzW?x!uJK;N9dOX;HFCA
zdpA5UTj*!u6$`Ig=x<?wg+Ueu3!AB7poQKyWp0h&{_~O9L2iVg{lxU@5DU+z7vxuF
z?&gFO(rXrmTNrEMEej*)9}90-c#~tHV8-hfMhR!0`c*dKK6;Eke{Xbw(H1W5E-=Qz
z_{ToJf2ZZNa~zWv-nKB=!UPKwEld(N@KZ#(x5OQZ``fw8A|Eo|vGA^i_bj|`VT#bd
z@#i30L}U1=VBKi}?y{ik*v#n`W?0xx|5*6I!iN@?SXgRdriED+KC|$-h1nM7SeR$w
zWA^EW;OwK)TnisD+LyWe;aN5H)Z0<u6APcR;R_{xe%S1$%vbQt`oh9|3twCK#=@5t
zzOt~u!m$m7=r@`{0XG0{NZhNx(8402v-)c(EY5BGi-qNM<DT2nGP>QuY71-V!;Avo
zT3Eryehc3*yszhBJWvnKSjFU^LhJ>`Fga^2tYe>A*i6?w^sMK=w6Kvj81Bx0cG;x*
zA?_jBBw~Jfz3eR(wp#c>)XUgosMAQRr)$hM4wI`s%B;NJ^hXOnTi8tlt~dQj(4B(r
z5;SdPaF2z(77lT+a3;AS{lZ{=O+H|uiX-i_c=`mKd!BH;V6A7}3FIJ0?zBLstG-_u
zoEDB-I6=?1&Nxa(aVofwhhE}$m$ZldJM2oHlbm@hoECjSCv!yS817ydj?mvNoaGp_
z5wvm6LYO1YMoHV9=oAZiY^2ywEoc@Z7IX`La%z$ThJ`5O&B7%MF$-}EN%rIOfrJH9
z09#PY!b|V@$*(Y4Cf)z0>~Lt*4-lVc|JDy(5b|RNWc^q_^oNDZ7Oq>kVd08}tHPxd
z_7_~X-@O<A{EqjUh1U)R&ejjL-Cyvg$i2m&O?Q7s_e&2fNDth$aL2-33x8Somv%M?
z-Lr7t!asD*HP7FiLymiRJzy*9hZ^_IF6eVDVRIg`f71i)HuxV|cq|G&5yB5U1;X$7
zo89&2wUN&TY&>lvzl{Pm3fg$;XV271-jWr)eA)e!jpm2F4{k|h77|&7ZTF;|8O?pS
zc6f@|?jFUWbZkX0ncTQo%m!(3K?i>!m9kOVMtvI%Y?QH4)<z8*HEoo$@qzdw(F!)o
z(}0fNHMaDO4btLOd=*7ERT8wapmaqQ8&z|0H5=7)@$_aXwQSV3kvbxiXF7dw$WzC5
zPdBQ|Dh_!rZI@C-lAL-rcz_#0LmQ23_-yz^mSn?gqnqSSV-+p@9zh9Cwf4$_&+mQs
zjS>%94A>}MFukdbbQ|wB_cylP4~Td*v61-BL(uiUC&R|BOkXn_&k8`yFVULYXklZ%
zjW2Cv*~qpr%f@WhZX;yl6&tVGXvy5&p0+mHv32V`&)H}tKx;wU2ul7oBiP<X2OBTh
z=wqX!jZQSuMt2*}+jzl7XB#it_-=1-*Kzs#j`GOX+1&HY9nM{Z$J~uTw!5R7yP$j6
z=xL*ujo!AqgNRP1JU5NUA2;O=BJPML?Q7#@8v|?%w9(H7cgxd;{x%O1@o^_PWhg(0
zQFJ26%}9fV9&SV8j&yEM8e-$l$No2MjJ7e<#xUx+A-!hfbpeQn+ZbVEBm-}uyUCxN
z58L}jiQG4Acf)_a>;O4q7+@=d<84f^!M*)sMe;2h<81H_MKSthqK!#5rrDTo<82$0
zZA`K89^+6Hc~|J9E8I^5)&!~Z*LS4%*&K#+xeRJxqnO1{3HEFc&am;J4Sp%`fvBiq
zn~d}Zp_!sBl%WzjYL1OhZG2{fJM`vqMA$fSLE<$}fRAl_A^>yA<mA>w^{sf^^m7|u
z*x+74xnu_ES2h;dI3xPyYa8D%K5gu#fQ>~qHre=|ep}^PY-72NZ*45GvDC&gcG>j2
zt#{@h-zu=VQu>u};5!>D+_8hTHo7+RuC%er#%de$QvBS5TA+G*wi1}S+t0nP>ujvI
zvBAbh#>pbT=Jj!7?V3=aVC%s3UNSenj@~3~wz0(qPr2D?W2=oHY;3o&!^Y*#g}7^X
zn~i@Sq%RuaeT>W>IS{TF{)us(<!-_$StC%$@Ln~gT{h-6^HP4*0pA`QO&9qO*f?lo
zufR<HVq>4c`vuKekaO{<eE)`Y$i{K{&BkFHzY4b;VHnsrMthb^OSAm7E$Pi={@`N&
z_lx~(=^uSkPTDwS<FpX|jnm5-iAVHM;OV^XW6bY1&T{^@5w>yN#tj<^r+piajie2Y
z)0fSEazWIFE;MBC%|G&hZ)^1cY0O64hH1m1CpSs-UV@X@4d3#bS+v2n!A;I=c%nui
z^^9xVc^en#B^y_4T;zD!o&S=JKj^?Z0gC<0Eo5ut@#{SoD`hpQ;Ja$$8t1)T`H6Wt
z5H}A~&rRyI@sLq%<4+DH8~1Je&A_v9*T!Eq?g=BgjrnY=04-sqfik`|+;Y6Zb7Qx=
zYv=)chXblwdf6?(ulM_D_9GjQd9!o)|ECOTB!AAIhq#xVQ$Bs?3Yi6KR?f=jAism}
zhvY5bxLwJJ;zd`J-l&*f$U$KTN0K<21ROl=ASa1X5=9&ob?~!;-42R5DDI%QgO?o4
z5FeqJa8S}gDF>w;w06+OK^X^S9mo!R4$3(w@1T~0+73QA?0d#R1qT%!=*P1<H3(I5
zF#D0evIDL%ZN2TA)y|!osyObwyQ+g~0#p~YhM?rv6ky<x0(BhJbs#xNqhuL5)j>T6
z^&M>3o5Pi;25f2F^hw(!?8|BBfV7dIKh<eQJY-##$AQ;Di;F%kI!*l3_nFsArr$w;
zOb1yG(j7E*kl~=2!)?-hb?X~^LTV}ing@Hoo^C(%KkFcqZQLJd?jY!(Yu)r24MNVT
ztf37;yC>w7K9;qnQy}%joNNan2QBGOy0LmTt)(ky+jDg0U;b7O*!HFQvWfqA<ZtVs
zor5ma=Ab>RTbI?z!SfEcZKI=*U)vx=;iC;gF9>5^bU;sb7WnL$EUwOR36a)zbNJVF
z9@f>}!O8PJTH8Z7s;8j61SOvWeH`?4@R@_p9lY$IpMyyb-geO6!2ky%9lY*fpo2jU
zUUBd$gXD?4_#N+H2glcYB6H=dkEFpjeM1}!bui4qr+1}I?E^Dzcy{}OT{?MRbHLo;
zf{qY06qH9fc*DV12X8T`e8D#zjCL@_0o7i#JeSW%q{I!%W{h(%-oXS16Ggw1$y~Sg
zn?AKgu!G{O{Y0MZ;2j4u9n5m@u7fEKra4@r!+Q?icM$!+JJmtMn?Bk}gIOH`=?n%W
zi$tXl9Z(h3KK??U5|d~%@oWck9L!^6I+!bL`$z~gH`yS>O4&x5QBLuF!X^vb*kpR+
zljYto9L#sHMKHgl(^|+&9V~P3m4gKizIO19gGFpCLv)?A(7~~TUK+sdwFKR6dkR1A
zXOSfiRz96sXsEp0!M6@pIatm0e+MhbcfeX`?dRn)2z*QYJOhnGV~vBg4%RtX&-m%&
zdXl*nJNh>WOXw?FyHVgxg0jf>4mRgvYTN4I2M606Y<KXJgPo$H9S*824*uwXO{T&O
zEl4j--|n7ONH^{hGR)fJV6TH)LfbD6_6ZPou;0M}fprH59UO9S#=-9n4m<eO!3hQ@
zeX`$wM93U>aMZ!oYk|Nr|1l26W&UVenY6@!^ivK_JNQj7$r;nbohwG{^^Xs@zo5@L
zu)p#uZ2pfq=Q#g7@`oMt+TvwFQq{qu1|iKsL<szKEXb>T!;m2=jS3nQbmtmBm2+h;
z;lShwqFM)zgUb%Ca2~54N;>@b0v8>3dGI`qX&B;JA}=%yU2^aTV{fj^i_4ND8oH~3
zR~=kqOB;sr-1l5}KzhT$O-_0ZLtLU<*)X&r>K;PEB7Zu#?ck1syADbuQ8J0Y9Ncs8
zR1yV~xbNU^2PsM9P2z!rf7l!c$%gI=i-!*W6;lu~SGJ2S$>ykk%v%7fOX5kx5a)zS
zjY2tp`_H_T#diw%sQe#)fh6)LvB&X|6BN0erV1t9dAKkq|D-!D6Z6Hv(@7LfqWF+3
zE}<7matg}n-zZc}aL6p4#H2<cf>KG8PNG2)4U;I7MA;;2CQ&Pia!Hg=qG}S=l6WSG
z3Q1H-qH+=yli+&?&ZtdJWG!gqzJr+hz#n<wuab0Mg8XaeXq&Q+@6D;6M2#dk2fooU
zdq<<t#p*d{8-;2oQ74IdNpMBIZW5fpuQdv#CP59H_liiNR4K$F^^=JH<L7#Nqa>sx
znk3OQiL@j<G~NuRC*e&(PQsr=APFDubW(^H?;Uxj`w3Vb+r>{3IHNXBqW;yaeo|<n
z6v{}VSrRRh$V%ebBr=l-Ceb|UPPR)Z@TZThph=v}d5@r1OV-NCPU06SwD)+{_cLYX
zmak<J&m}P|>E7mACDA&Gu1R!DqD>NQljxkp&zJK15^_6wJBdz7ENSR#pG1cwzA2H$
zU3o?Frahm;yz}x443hDgfSk2k`m2(cN0q*qL`KrnMbM#nGFGIzd)~Sy(Km^gljxDe
zmiykGN%TshcM@k>%KRxu&PxI_*+&5W-0PP_f41>l;MF7sBr!0F!AT4)=H)NGL3DUU
zFO|<sb(62qs>$hRo21jWAxZZDRbE4d&HPpPS`x#P7?H%tB$g-fZ4$31F)E3<Nqm&V
z8%eyG#5*jN#ONf(BzYDnCMJ>Ri8MBeajZy@c)gXxv=e@U@ku145b=VjXYkkQlaiP$
zWd4t)D}lGE`u;q``%;v#G9)tPygQux$Z+Moo6LozC@BqyA|x3aXi$hs63SSVA*6np
zhp33C3<*W|%=5Xg5aItlyT8xpeAZ{}wfA0ot+m(Q_ug~YUi+++8J~q+so>XSn$M6Q
z<QKDeiSEJa-ksX=gZwf%Wbq0;B#Qxk6Qq#It6993#p_v2$ucHCMhY7fdA3@?!nKLY
z1sOJbQ*a>XsRE%4Z*h%e(Pe-7qbz1-@pcyPvwIfrWbv+$;k_&<1KZEa;(UW*GGTFc
zmjBNtIRuLz&|+D9D44J~Pe?Ui2u8M~aP-EFqmC>t5X}|}_~HlACch+$HJryRmS*vB
z7N2CXEQ`;wSRveLIak(Dd@Aq<F2wlM8H$xztjgl^Y;=aG#UIJlS&+^*JbS;Fh!FBE
z+`24Nxne6FHH-CGe3`|DEH-BG6<KBRbrx(!R(#lf#`-j$0ditf7Mr<^2nsn<JRUnD
zXR>93?OE)|VpkTsMFZCE%;Fo)b;nk$ZBme7%W6Z>cqqOV{Qo2FA<j)hMJ*LSWU()c
z*$UoQus@3*xeOIFQ*eNenngtgl@$Dx#m`yzSp-@9lEtAc{>&nq#o;WDa0kfZL>5Om
zDOnuL;x}$e3*?u&%6*SXJTSs@E~*pj*f<%VC!M5sW$_0Wauz%S!;j-Xk0y$`$)`ER
z`E7YdhDTbuE|!-bmy|5jEX*vdEHqj*3nPosT~mCPc1c{9ji0StQ14Le&Du#j3nvSg
zJJ@3RkJl6NlQEt{*|$*g1ck&!i{&tj95-sZy@HY~{-WDtae+&lzMaK6ZunVTs#$oJ
zQu#@qxcTI8@{?_H^TtV@rg?ICLR}I2H;apGLzn21XthbAsQ1o|5K7y7lT=zko`MPr
z@)eX(u(ncL(yvlbR*4P)l@pNq5-+brJJJj<`IVQX{7_(CRe_B;E{j(yxJE$((WbJ3
zDhjSwaD#$t6<nvFhJu<3s<O@AL^TD~72H`6{Vh0ew@gX+jHsQgr64|_{lwbk@}JCW
zT%08FMg_GM)KhSif;tN7DxlHKk7N$|!J#z!@~BRo=gV(9pI=|W%?j9sbHT$weJ>{)
z3Q2BJ(1=WGm2Rw{;*)tz6x9DUPAlD7KYFWntAgeV`YCuofux{7!R-p#i;gh`g$i0w
zBn1ft51x^d3S<Q-g-MK){AoG!vji<kBhy=2D!5HS8wG6@bon=b>NdHRg4PQE5RYbo
zN0zD%j-PT$r3IgMN_3)X)qM%dNu)?Yu>u}V>ZKr~;0^_y6m(Y5L0JAyGEuO!N4)jr
zB&R@aTf_ra6HlePDCnx7hXPJzHwE1l+@;`d!H0fG@p$xU*fj-YTX--wez)9HiG0j9
zWuA(<hZB7$*_(Y8^igo1g8LQpRj~3>l1e>rCeeORnh!a%896+tpud7=6^voanTdxK
zOzb8PQZPWl!wMczFp!cQmmXIze{$iYl>F+pkCEZ!B#Hb&NTm6h_!FYn1BcRs6%0}E
zq=KOeMkshj!7v3+DWG2sSFmVtnogVRE<de+u=N;;@WY!^BNdFINykW|73{22$Tn=B
zJRa2&K1W+|UKC7G@VsdDf`S(nj8iaP6ekG&6X}7AW%k|KRgPU<^pb*OwUaL^m?Zp)
z_=AU2lZ6w~fUj_}4yRt_xSOPj6%wzB;(}|6-e6+|GZnn8V5)*?!lh>j-+OLudOGK2
zvCKJoi)-PmRIg@|XUgc4?<jaz!Fviy4awt{GD`s+VBJD#+L7qQ9J_FbnWNwX1)2g~
z!CVFN6nraOalV2NmFWNauN8cxU;+CoSgl|o&86To1rrJ~i|JGfma%qm!BQnkBK@&~
zPeifu{3rl`xnD?RNWgLhpDIz-nt=tGD9OyA)C$32rGR8LyCCzqf;9@hq!|06j%yWs
zL2msM>lCaj$mEqPB9YH}Q6&8<dLXky3&<kz4GK02nKvoeqF}4QHw(x-)!P(o=R7L-
zM!~GAQHE;cQ)vfHeRGC=cPaR}Aj8x*yA@o#BgKq5%nrmfINvGwUcnv(dlmeq;JAVx
z6#jGtzj+?v{;%Li1;5avK9&zCIH=&CkL910DAMC61z|zvmTkqu<rIsz-I_YwF~w$w
zMB~HM;+8@dk1F_;8&@pDsF-71N^+V{vse`3a)Lz#rxcu2z%OZhey68}NrtAJ7L+W-
zP@=Dze=5;?jG5VDezm(Zmg%P@RYB*EZbQuGzf_7lrvgiXt-xWeg0l)-1)hR{qH=-s
ziefJbea_&Sw#>np<K{2A|HZx=5|6|(%vs7de^ccJ2|oKP6rZEY3NDCdpBF?CjOPW;
zFotqjDX5>v?4y?yT;_(XV&qn-l#0?Sc*}A{6?tm3x0h3Km5MSd%Klf(MtMh>n6bPH
zK4elsjYcPuFB&kT;|sA&B^6hzs3ItAe~pUD<oR}_0+W|gezw0>)G}WO6P9x5szQKj
z0#+BWhJd3lC$Cp=gNh0o@-^J3qPB`RRZLY;M@3x~y;a<+qMnMIRJ2!7q@uoxn^h!L
z$SNABXsDvO3LZ$mMMWbOO;t1_w`*E8R*_pQHBs@-RqZO=l5|d|AKjH?kyW=w`X&dR
zPi?wKmQ)m|h^c5%&^E3jp@Q_evCRKsnFf7Q>~$!XNvSAQkyi2cFNqc^TB<m(FxE!J
zZ7N!+{9Tr8t>TXLlCC7fSf*)jd3L!17KyY~xwMlkwiA8X>vn;#OEKrdir=ZCql(VE
zk{NO!(ksE!&>ht1cy+&cyb~!Z?pD!57_*CtZYsK~QP4<N6^|@W6S+%`4q4OkJXlS(
zxqIY&wexzijf#6z>}lER>bqK1j%VI`EYV(-sAC@$_tEkyMya@8MPC(<t9U|1KNSy<
zr;35BdMW=w75!C6JEUSYsqc{<Qo)nj15|w1An~w(L>lK6JgVX`6=UwH(E4zhht^BX
z2GFZP{JwUHK`I8TcuK|7Du$?dQpn%AVTDDFQbSc-_m(_N#f9xD2BqvDmMG3E7_MT3
zif2^Z`blXHN?mF#jvcCyWI6&KFdwb*iWa<};zf?7;yD%LBY7eVjHOrHnD@L23R7t}
zt(qLCV(qX*GM<rkCK%;1QN>S{Tk$|T;Y%uBR`IHe*HlbWF<HecD(<{j{vnrayk7G6
zrFTr1Ioz~t@^uwcgsI;UHl)B8vk5YBu5PtppEOOybQN1wY*X=;iWw?CQ?WwDOir$f
zxhm#~seDJw<9n>qWACb%rAFuIH|$D&y;$lQ&&*aq_`ZO1RD2+ibgd+b^HqGPVi`T{
z&*VpRyjsacDi*6)pkkql*{bx!ba`W$qF3&bm#A2(;$sz`h-P)IIJ+mN$@a1|YyT@Q
z=R7V>5BXRAlpebw)^$aCrHWOw*w?X5DpsrboU^0iXd=mk4{KC>p<+F4sA8Rp?LB46
z@OE+JX+*wM@fGdaE-_q*l0p!vc}D(P1&bS0Y!pb%UNVcfcP*qdZx-{uMZgAK3%9G-
zp~6yO3(8J9l8WzDe4}EQirp%{Rq^TAydN${5!zn|NzN$^zDLDg6+d#(sr*`-V6K24
zRP3YW*QQzAuYxV<S52F>JxJM9{H*f-VlWPh=>_;486zE1ahOK<D&1(WbcC7;51~K*
zs^XZC<WCj9354VRuHv}BPh6p#RGB#^k5zvN$|(U)U#Y!#EUL<?Py|I)p>fp<+`Q7p
z5N^h1d=@mS;HYrv|0@1f;i>Rdl&JViMW7-St0Tv%MX`1>WF}9b*U_u#+kdM#qv9+*
ze@$%oB<X3!VeU>6o>NhEtn?4J#CYbsfCs)w62GY868CuxWi(u-3L4TA%9m#RaHG`l
z-x3TG;}YY3MeCK-P)@^D8p>;^^pAY^juiI|#*fj|%<^$FTD{yW4h<DGjMeZw+i192
z!yOtrXt+j0WerU=G}BN;!?hY}YpA2)It^7d)X-3q?YpI_X{fHD$-p>+tXO0u5<{(O
zX}Dg)4czuM<b4)n#24ef7$-LMWN~*d#=xOzmzW10^)xipaEpeUv?u`SW{t@(QC|Z?
zi5LLJmV6lW#b@21L?aE2Igo~_h2=O9qs7`BirO@)(5iT8`c@6iHMG#sQiG(SKto(Z
zLgNk5$q();->^4g8hY+cU)wsJ)F5*R4TT!dD;1M@&4V#UE0HII-^h(!Zqv|8LwgNH
z8d_^;LknwYr(xQ>NXNDs7+_X^U+SrNh7nebhRRoBw`*X?7URd*pjbmjLpQAys~9uJ
zXsF-vlXq(9s9~UnM>TZP&{;!o4fks3qM@sXyEXKPx}dv;yEHJ55F^B_Y^>)^iPJwP
z88Jo48Bf(yLoW^Yu$dRDac7dEa_FW?j8STRG~B1*Aq@jG+^?apX!C#uMp*UJP&_$u
zQJRr#ALQsiC;MxlvV2~PXCBsgbTr-nRH;X3rJE9^e@Sve8J6~#hQ~Dw*DylE6B-6-
z7)qmQ7_4E4h9@<A|5|B=mc8Z0Iq#fPc6s7N`Y8=R-^btYv8Ofs`Dqk;#;`Pw&Kye5
zXn0n`wubUZ4Wl&t9h4ibVbjRsyAQ?~=C}25Y>cRVPCz!Joa{JGi@ws#*Dzkg1Pv24
zyr5yahPSjRUhzc@uWEQr!%LhO4f~p4l7`6|UeUn7Gp29)YiXQuiHtq_WL44YocinH
zZ)kW^!xUi$4)Nk-X(}gIi!wej0FR9ee~o0WRFs&ZVWx%;=;~#nEH`g!cu&J@3a~Qq
zj)3oKm?aQWn5pJ{4ff^a9D3l-NhX+D9M6#0d2nj3hItyiK?&0NFd5E=8a~pnK*K@}
zD>ba*`qi*l<Ha{%0-Q4)QcE;^Op!D!rR5(joc&rM1N@eWv6c(C#*#TG8xtY?Ov4I6
z-xkj>PtIyi+`-sd0f~GrkTqgP7~;526u%IVUNkwBzM_#?YawglYYiJT1O`F_8#zG~
zQpX}4n>B3V?CTh!V=L!~dxDNSI<{-rq2Ypte>LpX@C}V1rfipn-5P$=a9qQ;8otx;
z6MchjqhXJR{ThCx1#;3}x*sQw9`$FO#l;s>M1Jeno_Qdd5b^+hm}_KZ@q5h^mF_5J
z71JdCqTyn_#1Rcg1#(EkVSz9^CF#FvIL7U3c0Rka3mFnQ8PA;1aFRM|$Z~1-DgIpp
zQ$(Jk*)OL4pz!ewvtpj6P4>r6^l4u=kx?|L8Vn7l295hbB6Da)p-z`*Tg;Zbtl~b2
zj78Z>BqGe*NIpzr>1c2{*BX2cISnPWq=t|i)UjwdCaz@m$RXdQnP>7ZE&&byXm}%$
zIYZZKo;a)FoREhthbJ<WghpUW%<~#J1hrtxiyAI*!_-kx$7KzrbX=uJ3#7D;JRN0q
zFynNu_oOm<l=V7VK7U2UayqnUOOIG4Gi7vn9Tjxs>tL2?Lbf51u#%3ebyU?+O%Siq
zQANkKIx6c?zH2sMVrsVM!{T+Uot7Y_x{ew;ZoaMD4LWM-Q8MjXI<6PYDG75*pIjXY
zz{V`zD0-R8<hqpeWN}PKTt__}%MzKJbkrvw9Z%WGTXkd)CmZN!sN)tLAGAw1(a}^#
zxv|BKbTk$e;x}we6Mmb>G!yN$M25ZiG}j^NC=kSPi8LQ_Na#rFxLZdL9kPy;jyrU8
z&{3$Pg^sk2b~*zUk}Y+#($QMSZItcx_~TPk<K|0kbhOn`CYfQz^$pFEJ5HwWE=seC
z>C<o5QLINv)Z6PQ((%aL!for)OubG@=D%XS1XH!&siUKgPC7d4QC@duW#>~_PIuAK
zl^mKTyX#;t8ktWw9f!V8ubd~{C8{VDhwDk(>UdB`e;xPe=&j>^9es6lDJZ&E$E6d+
zeJJo6iLCAu2q_e`ALpH~e|1m>^8YU_{MM7nhja|k@tBUsbv&%|gii7i9Rqbt-V#mp
zqeOC%B+MJn4D%eF@ChA*gkz8uwPRL!ws}&=P#rJncv;6V&Yh02I-b|@G#giqkJK?r
z$APuda2+EALi`zle6uTdeu}hgS8TM7XLW@4L_agf==g9@oX>M~(N1|pJ{wUqPLFP}
zd_j*Qvc~I}AdraylG4DHSo@-A!`sp)QF0x#b-b_R6&<hYcw5IiI$qQ9x(*(LvbROQ
zs;1C@XJhRChK{;M{7s=3=~Hz~yMj;G@zxc5hK`w6@Yf0}Fb?fq9q;M5xLzVYi~M)R
z4pc7uxqGY9n`1?T+s>gg3~u`o9aYC%n&^S}y#G|wF<%r(IetR=c5jT~XGQCz1v+>|
zI}=tf*0Ds#?FQN#SgPY=oi`A{(eVk_h>nvwZz)PH*YPQLU3Ss&na-afSg+$t9V>OL
z(($>DHA2+6m!b?;t939ema47Qv5uZIp!64H(zuAxm8?xxkMc`1O!O;u(XoXayN<7Q
zY|#1V6gG21C@5kB2EK08!E9Fyu4Zs4xz$ZZZ+#g%x{a>YzXF4Ss~naXGrUvBH#&ag
z6zkZfW4F$v{rG_nrZZ;?zSprw2jgQ;-V|j*V;2V5GL;s?ZW$)Zf%fUxPcN#QM>;cc
zG1`_9!UuKyq~nN=qnu?Ozi@TvV0be_Mi~!0YD1cWQJBMA4lR>=E=N3n<@Q1?zKdc<
zk8!K)6K|W$uy|a@2|*{$mU(-m-*x<<<CKomf~TT`^03#R+&#FX?vdKgmtOfPMxx54
zq(j$Xh&H5{0vWbHMcm^4@Oz|-tHa~AY2Z2oJ~y;#1^?(cuOpz7i(-y`sDne0a|u_y
zj=#Bf_NPdpJ*mQ3QG1U1?u&>MUMO`z$G_a?4U{)<k&9hNX#;r%E^~iqRo<(ZU&@H`
z#WCo&<hv+njS<3S43src&HyKxY2Qd;ATeY7IO7!z<Qur!z%>S7;I+DW6%AA}aDN!5
z={O5)%xG=?#Z%dc!gm?lR>g?2krQX^E=^t4Ks5u+4M+y68>nHRzJZ$!)HG1bKy3qc
z3{?F~y57JI25vN>z-dkvJJJ=ISB*o|HBiq0gZ6J?n@dT~Cd1AdjZd7l4Gc6i(AYo|
z1GgAa2ERu9Hu6j4s1%Z+%Vg5jh$6trvl$inP-0HDTZIvr4UcUK48#nyG;o`NxPgQL
z*+5FDLniE%G@|%?hIumvo1Ru^poM`CCZ}jF8i9V^%0O!aZ49(EKq1+S+4<<_X(I|>
zZ)bqP@GLT%o5APw=OP2e2HrI=%Rt7!9R|i4c-}w<19uweZ{Q&V9Sw9caIb+r209z)
zLdzKFVW6vlZU!buMcs`k4wFHf%wfyCaE$r9%ZM@zpSZf9r-5Du?lI7trZXjmfHEAE
z&6on0T^Pj3RJu$}d>`l0Kwl1*%oH1?*r1<*2Mj!DfJ~T(m~7cHu#=339ANM|Ck!<(
z%)lcC1{!$Wz!Qe}2r$5K(8mN$CQQ1^K?fNaY+#6iCk366q6|7^bSSwoi!V7d<?mAl
zo;EPbz-ao6fe{9tF)-4IlHGA!Heh5agIAgFmq@7^@n;Q;G4LE6sjxg*Q7@(lX1e45
z2IWkRGw_BOZaht7V4{H+3{0kD8+g&cOLPMRlMGN8c4^qWh}NUUh%>)2iLcVb4ZLn(
ziUATC{7J|*eEu^a^?H-a8klBax`COZ8BNMi*tZPK5Jj@0ohk6!^aNpl>dQRFWc8kb
z*#>qP*lFN>A?H#99~+oMcQP>7z&ryB>1+n()8P$#WMF}qQ!=E!Uu=$XQux&+O20f>
zT5Loqtd|Hr<WCA?S;r<bpBPw1qJggsEI06}fz<{+H}IK(6$VxsSS93S&@YuDXKKfD
z5KJ>j${GV}4SZ?fEBf<=*g7MM7N-1E=L-Yt`TQ?UoJOO+Q4EgD+70~jZ(y^5E!-Sl
zNo_Jf;_PH*b=N}9<5mOP3~Z;n)`+tgyRbV4WlP%p8xCRMkb%QOk=+J<FtCrR8TihK
zvOs@NZU*)WOa7OMnjB~iLIxP`H*nC1B7uK2qVQlo2MloHNcl<7e>U(7RlY1S*7vru
z1*9J_aFh$vfNtPdn%BT71E&rA#@&OX^s4X&{ojb9nmHWpb5bbvJ2$acQk0n#Do(-v
zG?1l)22>-8xMmfVVk&HEN0%_B6w{uD0n>nMz%yWpX0`!GtX$So1sa)s|Fb7~&KQvL
zIdRLQG~hV{CA5r*!zTVR@Hh7s6ZK7;F>sdqn2E|J&KdZ}z*Q#7n>cUa0y&!~ZQ@^H
z%u51Z6p-%mUv}lo<S#yvNy#%&)<iiIWz1+H^XYI+^u=<hxN&m-FVPpR3MOEpqG*sW
zp!QePrjm)Puk`wDblY!EMX&6tn7GzNZ9%`zL{$^jP1F!Ya;tWw{o$}oO%t_5@kSHZ
zo9H$=!Nk-z2nz3AE&X*ARLp0<-4*HxVqJ3kjk_7vy%CLmVN~0jO*Am^iHT(<8k)Gp
zL_ZS`m}q38v57lObTHAxL{k%S6A2T|Ox$WBW-<aH+1vy}i3&^{N@gSzJQmGAgBU+K
zbZc?n@lj00to9X>CS((>Otd!f_x$3NiI%ka-*Tae7Mz7I(~J~#lbL}(rY}67xQ$iQ
zW&Q`$#zb2a?M)P!NSkQ)UrUPgdND&f85f!_XV~}pAKDWZo5+|^94W<Mk^e3+e(6pV
z9ZhtlO-yt$(b+^76WtdV92`}iL-3y_wr4SdChjuP+r+&l?l#fG#64zo{$1IT>S<zB
z<><RyFB2^C`Kebii>xK=W1_FH>XL6`_nG)$MbZ5x-mF|qM3OTd<;;U7`kR<&;sp~A
znHXT=851LEC=-vE7;IvQ8HHL6H1W8JCrmtQ;xQ9ivs9xI?FY&kRt+*SLC!GViKb(`
zQ)YPKlO~3mc-jQb#edU=nRtp*_H-fRvQ|A^I7iMfG;6qt5rW7tFoynqA!kOJ(E;r-
zCZ02+^Y5cg{2*tZ6;>TEJc<?@YhoNn|3TvOya~p(@tpg36CZ6WX4usP6M>u|@}h~C
zOw6IOCSEo%$;31h)9Ki$%w!X<nRwmAD<)nQlt!t{)P}9gT#~0yO<KmpR1;*v3Hs__
z`)8ky#-)z@gYN;Q_$?DNOuS>_U7_+!Gm7kbo0FKz48I^#DbCa^6YmKjXOr6nnSJRh
zj6-|h#N3uCa-&V=nwV!|k%`47<_iV+FXsXiA5s_k$?!sY2;GnB3`}Jfno%Shdr_(-
zCO)Qzk1u{Dm02p}<P@-2&nQ}M;!_hFO>8pp8K2eCYBBFC1isP)ZwXmtMmMUkikFXk
zE^6r^YXq{E%k2u~3xTXR@ufh%`j0N)*8*<%kHYucyu)QsYO{%*CcZJTg)>N-a1#@^
z5AP7jb}{tBf4Aj-$2_IJ%fxOIKbgGJEB394?@SytaWa+p-ozdg`%LUNqibT8q%wQy
z0OXm<uy|DbCC&f1e-yO`OuT(L$^W}a;e{;h&Of_<7Cg!J7uuG01RsqZF>#c;goVad
zwCVk7;+Towgz))&+aDLmS#GT+PEZDux1iz=6SfJ*#3>V}O=P*IO#Ep^mxtQ-N13<x
zm{R@E(<+yM36u5|Omvgs1kvX*Zx=N<`(H`H4{4s4Cvkj@IIlo;O?W0sXb|q$t0bSk
zY9bVUd04*u;q(nN6FC#Slavp;|IL-&yTTd4mQ}ojl=O3@<bOn$vKGo&IM4OPE$C$O
zUlW&1TsCo$Q+B`13sQLpYbgt*E#z4!V?}q!>ZU|7c%dqVWQK4S<v#LN7Rp<=(L$}+
zQUwe77Ajk)VgVK^TDaPZl;RWKAKgY;$pQuVV5M}81$O5^th(01brx!pgN5pSA|b1a
zS~jRgiok1Jp^(q@R&=*%i*D_25J){M)z3^&lG+yPSg32Eo`w1rZnkifh2x*4w@*(|
zwudOd@ni!b=PedUY-oY^obu_iF!A^aiFwhRSZHeDZ42*MXlCJ73w<s0v(VgvWZ^ao
ztt=E+=<$9$X+;-0$1L!!WIk~V2@A|}&vP_94kL@&l!Zb{GBdB^b5aWnEhb5PTGAkA
zBc!#3HWoTs=w#s+FWJ_@?H1ZwNLy%U;q=cjX3OU>kfNP(krf>(>0seb3&j>l%vj(V
zkUKboHx&{g<RO&Ag80RGi5Hj3oh@{+a5v?&(A7dW3*9Z;Wr3$ZcpG)+E%NW1lQXs?
zdCxM>m^`>h?rCA!FGam9++*Qv{nU}A@!mq0rj1g(ubE2SYoU*YNq@!e6ZHE9%v0m6
zdVuO!7;WKM3;n6Jg&`K6v@pQprz9S;@VJHbo60_7VW5RaEzH;z-2wgKspyOhLuh!k
z<OvIdEbu_kU<=QbmU+l%@$~pBH4FV?@m`<BhFTbAVYr167M`*|?LM!WeA)tG$3&9J
z_Sx|n3nPViqiCO+g}fS|sCFS`n|&<K(>-G>JZIrG3$I%kYvFkd6D_=8VVqdb<1I|E
zqLWbL&q&QTMc*QLzUGrjkzg-cc*(-cR&<d!rJ7{n$4PPK@Za>j#2dXQQ?*0VD;8e0
zz-zn5R%lD&6wZ!?X%?nic+)~rdzrU^PZd*EdQrsu`1aIW7B=oGKf}UI3$1Gva@<PW
zBr3}k)@<;ug;^FBSy*i0J(_D}Y%YCuyF8mFT^@U%6O_u3ILE>V7QV@(IFDET8lOko
zZkFc@_@RZ5xLPeNv>5Fmkxmow+|U~z$;6jfSZZM#c~WfpzlF6H*3kjz9u`(vSS=j&
zQwyJ2SV0wb%71lkwR3TbCR#}ktXIfMacAW5^w#GV)(8oCD2z9N(?mSw^aZEe!e$Fw
zEPN>@^eft#v$I*29x0?(58Wb@$=CFm8wxiFxY5EUfsn$ge|nVv{8Vf!hpt`7b6&hm
zVTXmC77klDLX|D-;zU?DKr^;2zuUqdZcu#_G|soeMBfScy~T@n<0S4Cvs`A3^aI!L
zjfMLJ+%F*4;6V#NS@@X?(1LkOw5_oveT-E+)5Mi^h(5ej<`K4|7JjvG!oo=l$1MED
zjfD~(PH{0(sXny|C+?8x0JOvJ7XIMA#3d|N91rEyI4)5Vu25bu@yuOCoIZu(ad&c2
z--X7Vjk}zK8V(GKL65TWn#~Vc*p$;oD;ti`;va6;G(w-0Yr(VNa~X2GsFnPSo6j^k
zw2<RA^+wUu?^0C@GbN(RP?LXKIAbxbQ1Myry;c+qkSNUXzkdGX-@Pz%!NR}XGi}tf
zanZsh3l(hS+qi6@l#Mbr%GxMxqxTs(&j$YjCi3E*H2>M>U&-ZcTxFxY9epe^jD$fE
z^=d`0V)zUz%)rLj+e=?<;~E<kZB(+OD2}<)Wd1$Pe}}z&<tp1?<VhXTy^4)%*+Ae`
zZPXG7`BW1~bsIGVQu7L(|Dj(m@EZiY@d~}RKv=uud^FHaHtO5B)kbq0H`{1nqmhlq
zHttxSZfN5c8!tC5y=r_B|2L;<jO*ZtO>740qnV8^L9*lCD6nMN1)1?7C)&g%8wECG
z8z~zxn+MyGu#vQ*8wwa#z<<CQ;=)@O`QQ3GVPuCw8?Q_&*TP0iJ4&>|a2gV6w@W`o
zpYpARsQ1veHrm)|Ya?x=osCX5I@`G2MtjO>ql1ki%FM&aHZnBhKar3u@=tkcL2h^2
zc=Y8`V|JJ8Xh(r7j8b@5O;YAAHoDrl%f{Vepl&u81JIq4uSiou#?t(#CVSZE$w6nx
zz3eDlXV!X&|L-sPSEjUVcCU>-Hip^!-vsyBxZlP=j%A~-jea%;*m&5+12!JC(Vt?U
zm-(<eA;WAKsPm8whR4vV4AJ>d=0}7gYgOqn8;{!<Y-5OxCv4ERgKW?@7&OA}jPN0>
zd>l_w-`&ZfLPBz2m<{36RK&*fHpbZ)LF3yPZR1(mszbSvl(R$mQFauD#83pP$@XJx
zJjX@!Qhcn9p&KL1Gd_Xv_qSwfI-ZKt4Qx!ZG10~gHeR&x5;^ROti;)*oo9ATuKqSf
zhIA^r?qp7@%>xKg*bmv#Xyo&{jVU(v+W5i78#dmw@ii@fFgBGfZ7j60$i{RVZ`pX?
z#vB_nY|OOrp3Ngak&tiOc*n-OVy2qkn4CqW7%7pALJ0Wq59`@BHigou1;uRt0c~Yt
zzKst>`+0Wse>CF_$cKqv?if@0BO43s=&yW+6EKE>f1oqp%VHZ#Y^<`e+Qw3wH)-NC
z8!K#lV&mzblFMu?=Ul8x^RISx{FF0QzZL(s<~2qPX5hd1E9s&w%CYKDk8&)2Zexv&
zFKn#0vDW4#tx*8OI<6fh#&7~QV{(`;ZG2^e9RA03SD_W7FBr4IR6nd`BA^X6Hc}}Y
zn{9k26xm{9D}BbsP8-|oD5p*RUy|EtG%wD-<5yLQA}HAR8ymZ9?54CQ(u`!FYSi&t
zJ4$iGhi$&+Bu<trztkSVmN5^s%sv}g8j72kjUR0suyN4F5gSLjYHa+>q21Ua(LPrg
zsrd^nvoY~s-@`T-7D5aEYU7xVKWv<`@f#PljgvNhrvuyk29;z$1xKd=mz{|$(DJcD
zs?0cwgPHQDZTu;ivl*+ZFNq>dR2!O&3pW0>q0<v=1U5n&CO3cX`8He|XL__^fPu~K
zpT=lmLh9n#QGkTcjc9s;6t<yxbF`R^b2k35@t5fMH=*cAuV4<Pv)sG3N_3TK=VMF+
z#9r6_Ug|vUuvH>Xc+tis?$r(|Ik;@2l!I~(u5wV?L7sy$4$3;wh(~&qV|(WFp?iP4
zJ2tH_LkBDGpn?N9k-)S=q_`7(E>OHV%OekG9LUuUu5oakgQ^ZHJE-DBK6b4WS)Nic
zc!0fVy$0E+eKiNniNpXE#!GM%QffMQ+`$tLYB{*x!3_>>bkNp8+CgmxbsQudBpuXs
zP|raV2TdK^<lyVlt!|;%#f9}9-0YxP12mv6^QDFkURj!WqEl*qwG{75YUD)MDzRB(
zL0?&zY3ATo2L%pd4!S2&%^gS%e(umJ|9NS2=hTj!$=u8G3x(;pgV$!~k6u}xl&+mp
zve25+w&0+meW9RmEOu<^;5G-X9FSXU2W=d%SC=0WWJ`n%2-`Wh-9c9e-5j(ReeZD4
z!9kJ0iydSH!Y-7YGH|Rr9dvTg*+EAKTZ*FhQ4w1q7)N1|Eh$@f2X{HRUnqFDgB}j<
zanM@`*^|xW(!Drtr&Ov(donNU#3|>!qP7nW-XYSC&waFfm(;g~nZ6GCIe386<ltck
zk2vV>;2{SC9B7+jrwXI{r`YR1tFkyynEg=)j|o%1)H1~?N-I5(I8di}kb}Vv);YWr
z8ABXA>0qIQMGl5K7)C`LyzbyB2TwZ~>)?3@!ySxpFxtVh4xVu^(!nUs^`a=Qp85`)
zEZy_0#4BBf-W7eR8=7BXjDzPKT&z>bK>B*$$SePn#yJ@8;3WqyJDA{LqJtM4yy)PM
z#s7caWYrOgM^Sjpgl8*wGGda0$uymVR~;}WpKM9w*^Qa2qwR&`vhfrLZ#bCc;5`R#
zI+*HUrh~WHo>n>|O?U7Xr~XWQ_D*?*gO&~AJlw(H|BRm`{*D74DPo#}cezab<bR6r
zc*Sf7?>m_1V7`MnTsz~W4;;*OqSG-vHSpV@6wk$w;R|=kJT&y7gO406aH69e)SYym
zAm9%ro|;)KJYf|V-Qm;{2TL7%?BEjzpK`dp2{z_QrDYD5vq5o^hlBpwBGUq&IanbC
zTPa55Paz&N;R%t|f)81JPA{!iu*Sh!LE*s@9wAxp;7bRl1Ixiz9M{2q2S0Lx9Pntv
zHV4}sY;drV)>h)1$YD=<i-XOy(&1E<At{<=t7yr_Ebefy)4^^B-#Yk4XyHAAT{O#6
z2^xxapbfus@IC#?!9LM|D(?|yq}lfh<MU(_kAbk*Z+>(h=YWHQ4t{fR+`&(DatB8o
z9Ch%EgF_C;@UVjxUXtyJb9QD<it}&{C;C?h$Hd(65Z2vwTfI;_T5cyCoOE#7!JiI(
zr(1SS{o&x0Ff7kK?bx1bw@A9>E}27T9Vn4%&>V2Sco7nPlKge{+9lKS<i@!$9B}S_
z?<(649B#ZW%DHeIcn;1xxZuEd5IFdo`>lh}LC!%5SL@tFWWcR5txD!}^1rx!U0pPX
zzTw~;*VjVnA1Asvi5BKDF5Y3p;jVr>@h_JK_jwn2E-rEN=N5V>R>}qE+Nso*u1Ic_
zZHO1`!)07dyuCavPn`a6m5cH&D!ZuSqJql{`%uZn)h^&hOxUp^+jo=e{8Ge$DA>F$
zWr<wlV#CS`JUBzP*SfgQMRgZ7TvT;It5$Q-^iY{L8xmZqv;$XJO&7Ju^U1t=Zgi69
zdKWji(K4xBt1z0Zsfin15Y`s3j(~Mt@K_LuTvn9xW)}@y%y2Q&MMD?2xESH$85fOQ
zG<Ks+a)65_9M?q~7j50>(0wyOmtEZIqPd_*F5)hjf1tnx58BV!pN<K7g~5r0peNnv
z&^^-*uuaNk&J(n7(b7dL8k2_FnZCJftJ^4fhw?lH&ol^36!1m0{QnXWq+PUgaThJ%
z;&vD9U37HO$wiTiVlsDehZ~)sXBR>W+(C$UryC_eV3DW(d7__g*4afDH#)!HO*H7!
zqFh%O2L~mtx~koO9lLXuXC?MsO7?Kk)5ZNR`nu@FE-w1GxKH%zE#SR0*P=KRGLV0%
z?lOm{-X!m_U8VEJm+R-^0T<o=SFXPcRz2t<aX85a74MRHy1!m=`XLt_f*tuh?BWr@
zaG;AvT|7pkxp>;e`YHuaxESQ(Nf$$D+h-Dk1svjHjCUK0e2#u14-+k)a>3fsO^dD_
zCzD9X+To(A)4AJ5x)|kRs*7oElvQc8ix*tH=;B$j5<@>nOAc;3-o;oK&kIV=t;rhi
zCdSe6-c2ZTr0=U1OrWp2AhLd4g7765FS~ft<xle1Bp3Z%Y2Dwk*90<Iz*kr$5LSKn
zetboq{JM)NocHq*pEq3QC5SWA)YQ8Z<iH4}=^XvM)aK5z4CZ-@{$NOy;cXZ1&>=lE
z^6;*USuWPPSm)wB7qeZgaIunpyE67Z{n^DwF4J*GH%NXU;9LRc2{>OsR*gFrU*Lin
zb(Ya{Y8EbZu}BmbyI4y9bTQ$1X$hUbw9L1EpSb9-U9PZACaimXAt}qb)$~n#D&S{a
zbnWH$uPPvg?>WzHlUKR8dAGb;z|RF-BOo)tkp2ay!-eI-cJZZ)uUs7BVx+ZQeC^^J
z7rVIdIYBPAxcuUWP4r&w9wXy?o65H+eD}f&Lpjzq7u#LzaIuq<*j{F)ps|&bmwt}%
zeT!DBknb(|MrF5)Z(SUqZ@b`2u<z(^F7|W!#N_UAqf1Ely7)mLXP%3$B0V)v{*hb9
zB#AFSnG%ODaClQE-(UUY;%67XxZvw1w&dHYpBl+!cFSyY#Kln;f3V8MuP%<c_|3&}
zAr;5s%S;}pJ>lXc4YjfC?_327;(WJx=5&njZ26vZTE(`fUHs`n<*Odfa_vH<-^sdA
z+~{2^+wk=fbxH4*br*&U(~aKKHftT_|DnK~M80x#I2ZI54;4IkE_@f~U0iSxxCmYR
z?c$7!oQo0{{~-S_VNWulUQE$Li}40h@;~e192?MF2NG5PC%^TcL>=27llVgKUl$j-
z`Fkki;gXBXT+tp%d*Gd<<iG}mv<6>Z@pe?cZ7b`coQJEt=$#~A+0ozl8k4U>S;be`
z`5xfmMh~?;RP<2ELuC(DJm&Pn-Ji<Wcwkl{zFy-6th7(Ew0y0gT<3vrYv~EBWxA@W
zf>_OC2K%Ue4FQSN^iWIS*I%LB;6-otSXIYET@Up=-0U$IbScVK&%;d~_-c+S(9Tr6
zffv13Y$zZt%uf(%#CuvBduZa}F%OS>XzHPvhb~_9p>V5*zJE$d53+~m9=5KLBtc>D
zRe^_?hd7t*<dinNFyTcxHu*3^X39gMhxQ!B<F^R3^w5^tQBLpwLxb9QXyrwDz!;m<
z+QYA1$`SeTu{fiK+Id)70VB$_x}CikAbMG1u0n<b6?@2d=;%eai?Vo!hYlX@B*Qfl
zBd_9i6o0iS8O1nt^3d4>Bff|;l_(>Kx_ap5@r3~HqVOL2aUwkQ@X*V{Jzf;d#zd4o
zMK6Xzu}g0c_j>5#;XV&c%*Y@*J`{;VFp%kf4~z#pU%Nfw10Ejq@UX{pZRqdeA-aUH
z8^a+OV#mCil$LQ&OvpJ<^dkN!wV0e@&=)f_5_!VIAP;jr%=0kV!w?UzczD&rlOBe8
z80+DA55qh><zb|UQ68T5Fx<lk56=kQ$$>*K43Eg_&k~#q>N}dg;qem$&v{@#7qb(P
zPGd5IB~wcBVok<ejboL^bQ5^d!vy-tOQky;Ei+NbR{UFJ1d8{PhnGD}@-SJ9MJ*Vk
z$OtYz<Uq(^w%0to?qQ~fw>?bp@P>zJ9;S14-YI<31Nlt#qBt}n3{m6lpUheMmdCTq
zQN~wJIz^(-Fh1=aZvGzL^DvvMrca#NK4%GGs18+o-@_aaA9$cunfa3x&Isk%e?VfS
z;(QMua`FBy{m;Wk9u|1`)Wc^U7E)}wlZTHzEN1t~{AvwOBKb3t?b-?L8Oier8(g|=
znTO>bI2N_$)NmB?=T){VJgoGv&chcTR(V+M;d5>a9;*H&Q5S|;(#^W=lXwv=7t30q
zDg9)<hc7wkMdkqjlW^{}lg#<a2u2!~ntn}}^RUswCJ);@Y!?D-_OONP%ZtL{*o+U&
zOHnD|4i7u&3H>X4<3T?e#R@WZl&-~E8unWc-+5@5SMip-ir;(K!>K%n`sc8h>x-^l
zf(J^l&%=HXX9JuI@S}$V9zq{E9|t}BL?ip?<l|?Lf5QPjQ%U2Hhr=F9IDH<DcsT08
z<;Kf(>fxA&KRskU{6<H;N9Mote|R|V;RLt4K`l=T_&XiAaf-!rg_+0C%dIEHPkA6b
zEg-un9#jve7hOs_W}2)~FHYaZM6I!TED|w196A;!Vu?0vW(&j-@aWDoAD_<IEB??q
znPUaiNL1ynw7)bb{kMlR9?JSC=SM*-XSs<rPF(hI&ci<*&QtexiGKyWARvo8qj&KN
zeu+Eh44K4IKA!s`UD^jvnDWW<QRWKHm*iLZDDQ&@C$H|9pq%_af=C4)`F?clbn`yx
z?&tF=`MBCg%tzekmv&V4af^>eKC1Y*)<<n0b$ndsgSu4rQNu@7fs;=)A6xy1;q=q#
znq<;3alMaPK01WSsUH;W?<L<Lh&KxOU;DZ~>iJA~m2BYS`uT~QeAM@&)H-C&D}8S!
z^I8?&{X@F0MTSRu8~PYqtHQXhts47i;)6#uB_I0PSW`bT4i6+Y^O5>BajSsM1!VD!
z^Kt=4sg~g65+-~keYEk>*2l#Qvdm^a3jOFU^pZ0&pB6rD^P@|LTl)CNO4J^kN62C;
zL2T`Vlg?t=M?0$K<4zy!b-QSMhmZC?iUeNlBO|I<%Yn$`&odER^jO|6JY3l$@!j(g
z(%I(~40zwi93NeMbn`LX#|R(Yeca{aK_C4&Up{!(%)LJP_~_xIr;m}#BvJ@_`MAf&
z-lK6oy*XtqGQ6bbJ|FjU(kH|p@X^=DPC5Bvr9{-GbG#oLcaFEKB7gipX~G?ehkOk1
z@wksC{OE4MhkZQiGl3f(@iD7oe4rq9sgwL;T%t|a)VfFHHBI6jA54(*ARj}0oP01b
zSPV2oz$XP{Ed?7!`!tO|CE(Knl1|Dq6yC?HK3?-N%ExFQ6Mekk1AF4na(;b0PYctB
zeHbgG^qjmw;u+^-%b57;Gsy`)##6RttzT?jOjv(hg_4@>U-a>kkC%N+^6|gFlDZ!w
zw~tTClga8#l9X3ZrC#B5tc%^TJU;V5`E?&te9ZLmHpi8U-|+F4kA~ahZ~B<Zh0r=V
zjl;DnnlA8BdsFQiv`*eB&!D&8DW4dSK0hG+4lU#3Jwcfz`c`jROb)DN8-IBIY#&eF
z*n0W!{11H0_3^!rJwE37nD1k`k57Gk=;I?FAN%-(4*9ISz{f%#i)fZH^2t&1zoX@6
zN6MrxrVFv}NSV)4AD;`P+8BArvE(uz?~IfS$0bPo%*P7K94$bs^s&mv7e3ZUMw3_j
zSmR@@kFPpc_?+|GK0RWTJUu`C#DKhYKAyQH|EcGq;+Zk>mp<+rC2#UU{3}{gAjH2G
z$Oa!9uTU;M7fHC8yToJdr;L`j`PfcJ+9B=sF?mN~2VG7m^3y|kA011+SCIdWk6qOF
zSdz7b-}+cKTK-NnCbD>pyw}GMKK}HP^|8;#eji7C9OY)XT>4SKUwj-8$Uy;r5^%>T
z`DY(D?v&V!&mloP%vo!g&*HB>j&VK45+{T(zX^DpyUnxm<YUQkjnmB=lsoC;cOQRn
zO^r*OCNf$+CAws{CTZklzr^|-Oe;QAAC3=K=%~?evk8kkj}O|x5RiyTnfFRW-WVm@
zqD|GN<vcODdCg>U;}E_WC=igGOMLvr#U9|90DsfAKGFf&1vu;D9Cz9Pbprh3<Ghbb
z0j>^k!N<QoF8e4I;3DNIp9q&omuSXQiOt6n&&`&)y&GS+TPhu(T!5<r<OQhTD8Z*p
zfU*JDn9rm)5|>|=$_K~~aG+9R^|^Qj)*g+onJuvhL97^H&FTb;*952>pn8BB0jdOe
zs(fPRI_bIq*9NHguf*r$x$$!M#;XRX#zF6m@cX95YX*4#+Vl+pZVXT>!1Z+!b@ig_
z1KfXme7RagX{YzfJH0ISfRv~kpk9Dx0d5U&6QvE%C_v)?HwWm{D%~K!_wObsFuNSt
z8*dok7V>Ns;puzhBZeo+zb`cjKxE{Gc+&vsr}Bw35Aa1%vM@l408)U00I>k^0CE7D
zNM2i%pe4J+lK~#w5kIgjz3ajDET*XVvh?ZGiFUo?6uxDERsmWExQ$w`h^J~NS2f9R
zdwcvDE8Zr+@FVfI0r*g(yVs;|570iqeJlnj3Q!!NTY&BXG6C)g&^h4W)94Vu@0S-W
zi{B{>MM+*A6Ym&Am#B7P?cFjFs@YWxH{)D<*fny~<?*`$+#TSa0KEhB2yo5yiTX#S
zA7)Ez+%rJ00Hb=x$%n;_PssNQ1t}qmeMBvhz5)6Lcp_jVDjuN90Ui$UNPzwU9twaN
z(S))~Ge;T_fcD&6Js}TH)13wecr?Ic0XS0~9O-c(D!rv`uRJP3&VvICp|k;>Cb!Ko
z@{zl@dNRP!0K@1ZrxX7{5{Cy^wn}<=yEJuUqR#E{OuzU@O3rBtus*=(0M7=P5nyJ3
zF;pSIs{vjMFgC#R0mcWI5TNjz<hTG$r>6=Zl-rz2hG&vh&L$@Ycp<=x0lu0mk=Sub
z!Ak)q2Y7|v*e3mQfJp*b^qa)uf1f7&Kq2yafGGi{1(?nWYMOW>z*IhGlj}#M-lW5v
zO_m>5fu9sj|4w#4n;i6a@-1rmOzPEVQf%{ffOi6X8sM`4?*^C^V19rPgD5zyON-2V
z0cO+rxmx?m9|V{iK>fD;oB&U@$gp-E{kcrRL;d6l{bV-a%{UDF`zXM|0E+@FptZk>
z;tA)~&tDv1Nf2GH^ND~<1^k%PcQ{Sr@%Iyi%LH+`fCu}^q^t<AGQe62GesIZEU_xU
z=K+3wCcc^ie4I!&%P*|jnm1Xm2|%0(o2}!z7##0eJ^3Zg$R!ZqApNaE{C@$q2iOrX
z{X$gS5MX0~O<WNT<68o36~xT~Haie!ga7btT+0XIC+o*|2KXkxchon)t^m6Otghbr
zTOka;jqpzSDhtyOmrhLR6yGC=djtFs;N^Q0l$H+#+ZW*Ni}C&Z3Bc8{FR}Yb`sXj=
zf2=L~DZtMGi~uGbGQgn##{--Qa5%t`0LSR(Zt~&P?T-dHGbiyYy?u52v)d%%|GPi$
zH#WE+{o6x+vZs79!0!S643OpGJsJNaz#DGzRDc^gl`ZL5_B3}bH%ZD}ZjuZY?#U|)
zR6(42Q@$23Iuv9=A|V-C0qg()_t*gcI!Q;g^aJDu%5DIU^Ls&JOBSDPpP26?FFhiY
zZ7x6w7t2)XFCoJjehLVIkIqTFenDcF83W~i0-WcELJqg*aDmJNycc42h>HO((J~?K
z3~@O?sSr1WxG_ZO5P2c44RKwFG9kXIl(;HH`4DA8=E#ke3-Q6nvDaE;*6)-mgt+zg
zbR_|a<cEO3D+(AJ8z=E<fnOtFWdTX7a-~7l5F@^i)e3Qah-x9Khj_7Kfq5}jBSh!N
z6E#Ep`D9{L*#bfi_xF~Vb~brqxp?gmbwWrX3PRKkQ7=Tp5VwTrP`ZF^ZVFL9M7t4*
zn?sCW7aOxv8ZuF85c1%ybgpHhQHaKZdGipf?oKqJBq0yNNKHkNlx6}UW%0(S!3RAP
z)HfC)9^&>8?L#C&Jo>rRGQ@2mk|CaWJRyfj3CRmXv=9ijXl+y=q{S$Fs}LVgl-de)
zT8C&O5Gu~9w5VcjyAaL4j}a-HSgt4pH7yR|d>Q+@RXh{oj*!RsV_TcYNvE0}Lv#u;
zEW}gPB}A7H4~KXpMAs1ALi7mHGsL)~$?hT69ZlX9B6lvC{Wx}ah}f^mK~3}TIGXGg
z;+_z_L)=T5{n+7i$-y5a{#X+m<H!1hc#!VVU%oHo7wL#{e~7+<74d$8_<(@+{&auN
z;5*Vo0uBhFyd$yr<h#;9S}DY!5Q9TJ7UFRlD#Yg};-!uzXB|y)pidr>_w<*Ex73P;
zgcuq!%ugEnko;tb<3}Q5Zfm;zZONxY3=c7xzQ-X#JQHGU$V6KhNoPyTqe6@hL2j?!
zkzCoQ=viv?Pm+?43BlrX0_NEg@z%TI<LD0|CXh*gnWHZqAW!6E(GEA|6Mup3bVvKL
zz1y?+QizvB?E0sW=9(moM*P(fuZ4Ig#JeG0r+q$-O$qUaP>O@Tye>_}-wZJ|#5H@;
z)2Puy^4kKR9^x&5%n)#<fNb+#f0=DYH_oSoH_<FY`1O`V8Qu>uC&WJ?&U3kim>XhW
zi2Whvg_s{=1@#K?VTg}HET#X@fqzdf2(dT>Gi36R^}-N~1aVP|46As+d<mUof0`%C
zyS7Wtnv(b=MEBQH%h)Ewry)M0GryR>@RiiI7Mapl73_XKL3~w+)giWp*iIcotO@aT
zhz%ju(i1|g5AkJ)N(=J7swp3z82^GBg+Pc$L{8$w`2PfC@py~OMuBg>LfItRC$}WG
z2nri-6$tt42(dH7?hxM!$~PfM+$A8J@nP}15Z_b%SpMD+KUHbHAeO&JAjG%MkN*(j
z?-rR)GYP^ULmUWUb18*5$TlH<r^9f^D_`()h{GX{ga~hte+i=xxI+SdVHX_@@he9U
zaU#SqZY=u}zi~@hnc&lULY%j?@}q>rUz+8g3_+Z9GCURHbO<Aa$ps!pKcBN)5g|I>
zn^@B%`pK+vU5nv}*ZU@ZS8*$y4!k6~(A=V7FUPt!%OCJXoS$nwn&rD8JT~Uy4dI8;
z4dy`z-ki>#&-~;)R9oh+>G2%8X}l!FUqYk51w0!@KfTXzT|XDyB>UHK>71bRXZVE>
z|AwfQ!}U2_3~?z$#T+W-a5+S&9LnWzRSu<dcyyRt>;A;Lr{%mH-WV&F5s*k(fixH?
zUq3`Hp933I$U)m7<&`SP&!N{4`KEu{B8O4K<vt_it8*AyHeNM{YB>~|$!l_`ED+*V
z1afT-bxIXnm&4kpcx)=!ynVXG5V<-9*eTV>VXPUiDPTd@L_altLk>6Qa7zx2a;Tld
zfnoAZIn*bI96Aq^S*)8wy&R72mud`_2}h2QZ_eS?&WY;7<OUx}4RUCh;}vpA;)S0k
z8t2f2GUU)Aho+(#wYW8hW;vt=%cln9{n$57N^_x|ltY0)NQvbTzk(+Ok`z#8$18MY
zu-r0-+o<o(#QRUncv^0iL+c#c<UpMATzoLEZ4SpeCDJ+U9V%0*Cq9%|Y@b6>4nI=6
z9Ex+u<S-$Ji8<VnLx&t5&*6z2?#!WM4*ke{iB!35qEik%a_C7T<j^IDt~qqeVa(;&
z-2!%}$_*2D34HrT{<9EcF@nAGdgZWkoYXsqs?+25<S?=*KH~gs4_uDLmq_>K(1&U+
zk@(z~!~Hp?K}hr!l(+NqNPHlN2Xk0ZzMy{&0}e_91pW}ks9ui5hjVy!VEhpQ2MYLT
z4j(JA#{|x*>SGgwau}S$h#a2DVMq>N^hpfM;i()d9*aLI;Lsd4G|YdgPvYqu64T?O
zw<n+dS{g2JwSGP+6}u%y<}i+y*)5IAVRR19Qq3Hm%VFQ;7!m4AWPi8B*c_hEq3lnR
z(lEgy`|=r|L;2m3zDs%`hZl4BUk+dA@KO#h=P)OS4|154W9ACHlf%0?yh6!yc#G3<
zCjMFu(m3f&0bdtzihv}(Atr?gpQ$-a6ZGi<HhD23&d6cd6ltb_Zwtucjn^md?HRYe
zjB9ISvvPQk*3RMmD-Y=tzKoB5IzBgtc{!}l;maK6=kQ?;3v*bM0~@qinD-H<K;R|y
z^4XWf#niffVg+YeAWH;X%83vNt3DCPvK*FQp?oTk&jkG6waHZiSu5ab0sp9y{9GVw
za=7N^1ex$zN1xo0{2~X|vPe6BCED<=c~0wdvl1I}*qFnP9CqelUy5zw)Z}nPif<N0
zQnm<WYYyA4Q08BXrKU(U+BZ4u%HapjDLq+C;<xmc^2ynq;<GNtzRThJ9QJU^-1z^l
zO6(PEiLm$$Zw9$4F}p^bO!f=6Ihcwc%;6{Q9wn$#f}eBvC5L}<IG@9z91iDT<Y1Bm
z_mCWZr#d<O%0-&PLlq176W}+lN;i3ed*h~9&4KdqT=cu(;6V8#_fj`G@^Fms6rHer
z;!pOvAQc>rou<lT6HOkKvpFca=v%!?=5rDnUCv>cnM_>IfnU^#SkyfSHwQ0=HxI`+
zio>1xQ8_nD;`e+%haiWN9RA87<aTs8M&fP!IgkSzusCL*OrC$|a5jf?)Tl}R88He6
zZ8okvA!|vzKrwQ-x&+shpl<K@MVhn(<w|gg9|1X(D#69W@w^gDI~*rcx&%vKPY@|1
zC?w7wn7FD0<x5bh1h3Xj9$%WSP=fptpd|VfuJ>iEV41Y)x<siJv5F-a+_~uBl$7_0
zL}KL<R4KvrCAgsk*OuVA5>zii$G$Spe|_CWu38fP$gL(If8<tanW-UaYnGr^33vpI
zE%%&A5{|!LzOf`azs7T3{GB`VM6zxP>Xo1ki6ywH1ocZ$P=Z(qZZ1KC5;QEqEhU(}
zL3*=OvKm8@^;q8(Qlk>w%El8DjZ4s^1WijYe14iwvl0}QO?<sU;zOi)36}gTNhM$}
zJ{P8@;w4D@A5-4}Ek*Hsy*rD9+kgZKilSg34jZ5FfRz^vfS^QC6j4DXNyb1FK_v)C
zRLK}Xf`BMWMvx?e<e-3npztFqJF~kpJG=YcDgK=Eozthz?dt04>gwu#Z@OoCV|X}*
z`Z2UWpod~;-aYux?}2a(b<2mCA_8)RuCE?o^;$ppuRRuM5JRpo8^+LTVt}bbnP4=A
zM`CCh!&5Odi6JkB$6|OqhGRwR<;PGE!zcAaV|$kvFe6wP!=o{1OZ6}OfzEXcx-Qh8
zh~cM-`Akh?NEQTteK^#N#>DW)QU8;|X(5=84}4Oi!0Ebyr(<XxLmL`E<HtleSoMbo
z+Q!f>hG$~vKxPb2pY(q}QJ*#@LTWAdKTBsG)xGm{XMOSXiNJG`^<B_kh@n#qpPTr?
z#EUU>j$xpIK?Yum;bn%0f#L>UiJ=P}$PkL5YYeZ(Ff4}QF}%i5`6K!|!-Ec~5+d#%
zLys5+#qeefJ!9w<L*E$s#qb7Ybo8Nf4uyKhuxVZaFH$4Dqgn~RA>2O((t$BBOa1^l
z@Q{1c8nXnf@>UG%U(FjF!`q^PoOf<1A%BRpK2&6C*Do9q!@Ds|i(z^UBV%|khH){B
zk747{&?uoF2pui-{TRM$7iH0hF^q{}Yz*IiAANg6LH|w#q{P2n3VkFpA2WE^ktgyW
z1ST>dE9Op$;kR$21d~Nzico5sDw+vq#Bg?L^s^XdilaUe`YCH&a(y*RN{QzSm>t8M
z80Jdpyck}nU&x|Ig;L1^j*%3R*>OYks~8r>a4LpBV^|c!*X(-?8)8@-!;%=5$FL%X
zr7`z+a+&fg<}Qn2MD@IH#CtS&*rDi3_LTE|RAfyIt7v%)Kg96d+UWN}eF0ReR${eu
zgwCM`7X27=ujwOTt+g@GMeD>}1RFUVG3=#<lwmx_uswzyF>DcSKa1E_!Bj#G+hVA)
zBg#Y%?~Gwr48O+E?5ilF=$9CF%Yfd@-nlY*6YLQIX7|OgpEKg78)JB9j#m1;$nP=e
z??n#Aa7e&mq2wG9a8&3qp~r;|nWNpTNPnJ);iRPJE9NqLI)*bb{L96P;}XMPG5iz5
zg&59pPPNbX)z14nhVwDp*s8Z&S3pizqrjgIU5w#>F{Bnok8SstTA^Qx;WGVSJMWki
zBJ+yit3t`V7Q=PHtjp|;7-BILG4S##zY&8;J)CZ*qD=7^Z&-41LTHjJ<emA<R>*ft
z?HD4(+){_DJy(8_(TxAAn~lL^z$@7)w-vNq;8yWTcEWuPiElH&E)+GuBBrwGPzeJt
zP-x&$1Ij>21GNm)Hc-kyX#<rER5ozCfiecT!CS#VSp(d{<v~C>1J_ms_SGp--f;Ko
zd-f=ChX5WoR5aZE|C-(Xqi)Z=)4*K@?lVx$Kou(A=)c!+cZ2U{D_7hDi+c=IH9*j6
za)6ZE``l!%Zs2~lzBKTV!4Cui4;ZKz_kY3**sla0G~jCzAYf??12dw5ng%Ac3+(X(
z>KLeNAY>qHKsQj2v}GVD8vF*hryY<+8+;l#ZMY{U#|{KqwhTlJ<QQmdAZnoN*x>i`
z0}mUhZ=ivJT-tUazmehY^EVV)t8NK$mM?Sn|9J}Vh=C?z11nM{&v2Oq2J)pMIk`Oo
zq|82M;BgK&msSH$&`}238+gV*GXu>HJZ+$r0dDN`*yTxjgTrKCtrnR7mb=?uiU$Fb
zC8+UQxU~V&b_Q>KcdIb9HNayFf*$t;cwEwfrgA-(A$!gMJNp8=wp;H=!+sAw&vxtQ
zGEH0+AhVMcy(qM^&}}mV-1FaEKhVWMk!Ya1fga==cvaeE7_@B~dW|8}H1xWGZUQ*y
zhhB~H?5QWKtP60Idl`7c06D#d_7&PkXr+3=eg^s*?(x$A;SexU_)P<EF$hhRGV!*7
zcMN=QV6}n428I||VBm8DLk$dL*9`vj7={}dVc`1lz<2}m{GoRZe)x=0hWk(ENCQ^)
z#<Mzx55@zd4SYzS{1hU7-vH?cLiwLI@fg8l4J<7k8Yg(*FMd}1h;e1$;Ua;FLMI7j
zmd`R%3`{lfnSq%Grg4Ilt@qIwozHaR^8(Wi9IG6hA@ma(vnBK?J5nvkeNpP1WneaA
zJL{)~6q{pUE-mNO`#mt<K(VZ!V1HHc(W%d1{R;zM8dyTZ416W6e{EnfV{EX#(7>Cm
z1B(o7tx<x2Pa+R&*V(~$>K86!z#q`RF|gdgN4Ev|c*6g;DZ~GzR~T4nfZ$u9tAu_h
zl+2wM^dAf!pyPiAE*V(EkfS#Y95S%Zz<L9_48CmdD&JsWvw@!sY&5V*EZHJv(3mX@
z%SHOnoM_`CTLqu^Q6G3Eu+6}B16{WI`Jk~wO0W4sI}J>Cf|T6NNM<~+zuf|R44m8M
z|INVPU-}p31@;;seQ=eF$=Pq<fPtIM-K2*N9HFoQXRzzEYWabqbUt0$B6!@u2?OQI
zg@2bUIe!@77!jN_a7v2)H1L-IM$u^jXM~;=T6VI2PRu^fz&@bURBHQ&D?{r5pTsX1
zxM<+)0{@05-3Rl_2Cf*;O!!P(<??92HjrX`8u-^h!a&l%e+F(CFbtRyrLq5y9_|=!
z(oTz0c{`2a!7KxY!M3_>kXegk_makt=3^}T=om;F$cS^irt7h+0gr&2zB*g19+~uB
z5fitWfC*)SV^P#}ho+c`PhShZy)01N1fR1?2qoZt0%Pg^M3CLA*(6xn<gGY(#zY4b
zWlWScQQt%Z6Xi^lH*vR#drZ{p-}nv_l}+%bpb94J{*9R`ni#e*P|3ts1KsSMCKmQ@
ze3xX&sUl(oRq3l5`L$@0fO}2cXQG;k>XLoX#6u?T7yN)w3hztnHE!XWCU~I`nVb5#
zlpkl+F%dSwY+VyNZM$Vp(1iaM4hU#Hz%?u+_>X>#BPN!e3g$@mVUr6>0aJ?~gSjRe
znt0sA6DAs&n3C`}HW4*>w|V~Jk%31{G%-<NqR>QX70NSt>#{zVH@MMP4T4O1x12{!
zJVs-><$Q6#pR?WH?S?+1PT<7-;ie{<nP^9AkNBILc+$k!DaD^M@qWW-3ll9({zD!j
zCLry9DEPFAR)Sj#Z7Z~m2^LX+iSqm|uRYZs4DsshXH7h3VuXozO>{KzyoonV^fvK=
ziB2Y7G10{YpCev0(V1-tF2bLKdno@^M?W!Cf0?dW5#)13R}*}oc-=%d6R(OGA0A(0
z>s3Q<`GegB^fcY4j~;>#w#s7>pD25o?sMg|`h|T=^ffWa#G5AiaZncNe8wCo!u?GQ
zFmYvwPF1W`wrZ%!YX4hY{7nosLFPLq2AlY9OoUY^cE>uMGDGO_>cK->0>d~`jOwBK
zU+)H}_VW7TBTc-=U^elIiBTp-o0w$cW42}D1A5rRI1^+1fe%jvKQwXiyv{Vnbf4Nr
zl&Ux0#KuWF(*zSvQG8^g`3gUu*Cq;|PjD>a1Kng3b$bM-nV^y>w0}l$s^EbGg3DhB
zOsC~~34%{ed}d;<iFqbwnwTX@*b4QqQPSBadQJ??VPrlMSXIApzKI2<`<zJS)I6ql
ziJSCG&KeUr2|S#@LKBM^a&hFv@wJJ?bRCx(6H81iHSvpy-3((B-<ViuV!eswCRWgU
z96?T{-viT^=rt$mD@}ZBf?)ARej))<;w3-ptNBRi=xa>yvG)fPKbkl^QD<Uy&cFV(
z4Cy(V)+4Zi9Wk-h#Lo;}j?`Rzvx%QLbB6^3snCfd`qr4f#l-2#VR8z74{S5B-9)-U
zghj{S4m|QxfR^mw3=)%wcL`vvUrp>Wag@VhVy}tc7(XTsa%R1y?_)48b)W0^a|D})
znBrr#RZZQ8^h470VYX7D-Vqbq?hi20=Hn)QH}Q{&3tXDG+)dQam^dr_Jz?UciBnuX
zBufvR7VzJ8|6x18>|Z8!G>Dw%(8PjgKG4sZASH+G{>{)@?<crO4I_*H&jiib_fL?U
z49i*uE}6K@A!r$3bL{>#6W2{tilcHI|C;#EM3Fddi{plgn2Dqb%Y?zHu|_vd#M$x6
z!4?w&{7Db~HQ^$kU;tk&!eldwiq-SP-9Kt6E{TaClS8ix&X}n9XE1w<&wo+8BB{mU
zi{n$r&st0bMdK(IN0~Uv#!)<u63lMb`5ywCLmZ{v50qlXIJjY3QYZm;0?98erMC-Z
zl?m&kEx*udQn|Rhm0dp0x6b@`2(2KrV%+^Fhs-<UxGRo&aron?LVNxSRcBEgcgJxL
zIXj|N<KUO__r-CqWQlndJo(jbWgm#+!8mHgQ9F)3??oPpgAb=Q;uw20#B9yD`*6*~
zM>#656X!RZ?vpPcQQLP7=yCU<_1#esUUGYX=U^a?hvTSE13CwTafIS%)GH8<BO+i(
zmv9d4TvxzEe)Y-?8^lqmQK)eoxp6Sd)R2<5@JL6G#xb~SnCX!?E}khM$d98Sj&*UY
zkE1Y-N8@}25pTuuSR9YX@k$(B;&>vCrg20og<guISscydc%E)Qr1K#1$+&w4`g9yE
z1hf>&1KFqIn0d(+Xcb56INHRqqEq-ep>2h>6WU%Vi=GkCLFlt|^%R{<rjEkddyF4T
zqEj3^Ien4ZO4sYmPMyy`{!*AnrDv?1H!j@va@;)w<zZ{rI9`pTcN~4<cunl=P9-M;
zJg9x0?m8ao7IzO@7xUnlRYagy99v!tzah9|2kqOLQD*zb(U1OrF+3>l9#8jYfYH63
z!vh!<ox(iA<{|9GOZukH;lwFF4^`ie<DEDr$1#OYj$=q16XTc^=Qciu#qoX|Jb)e^
z2c5&FM{&>vzbll?kpkWm%0~ZwAv`*c-IYQV{=khHosE7N#~5jStk7{n#|vfYM{!IL
zT(*P8EN%W+I!>Q3%M<yj(w!x7ERADY9Mj{N5yvNS_e6VvnD?pR`GP+aIx~)00%i+k
z7v>0<D|DU=H<>(K9#ARtdE7lEXZnI8CHSjboP`1w@vne@#X|L$T;XM66}$XR9IN+6
z36|6BI9A4a%agt;jtd<$f^S8PfHCl$M8fx!7x077ABD1XO&n`)VFt;DI5x(Sio=Ox
zQyiP)I1<OvIDX=w$FX0=w9#dKYaH9-*uk0pV)$pab=|*>6{qS|)<<{7!QuGrvYwW4
z*(KRuI64AY^s9h9aqPXt`AxvSI5>P1;9>oNxclnD!8pdh7(NuoVF7nOt1){lj^lA$
zisNz|zsK=M94F&AC4<fxbV7{j-9h791b;FnJB2R@B{<EsNbp&qf8FAri{tz){C6Dx
z2)=ME#41b|CHp^4{0<tkSK_!D$M-T@E501QCNYzUgZR48e}(?XzXAftj|nh@nsLMh
z&{r%<%4D&G+Cr<A2{IJZab)7SFM(<aWaIp;VU$ncjs(03XbGqUN+#e-!1^OlB7vP#
z^dbq|CV-rx2|P1JCn%Ocagkw`GUPyHm@OrM?kbl+X~7h@U4+X>wrm17g*_>Mv1hdk
z2~<p=N&<H$P$_}ROjC8vvO5#FOA^Jnu#|l%OhCHnbd>a-1ahrVRiXC^t#wEzr+R{a
z<M<{X{0Tgez=H|YOrTc6eIJJJiaeBXm#i8Iu-y+z=2Btp1QMOYbrZatN3SELT#+cl
zXwm77L+%pMvvW9*Krn$&!d<@FbP7Me+aFGV3l1l2BmwGSiqz+is-r;yYZF*UlM-l{
zz`F^Ir1AtBC-8iNm%<^Mz#|Dfoj|Junk2B}Na)c79!nrEf&2st67J??VS<;_h6uRv
z_-KOwH!UAexVP-`vfP#lJdr?Cj?u5tW(hPGK8tvBEa{VyZIQsn)lp`jN`N;ZGqED?
z0dAeZvkCV)=r#$oP4EVL>=>p$lR$?A+B0<x@ET!K-k=*YbOK(B&0j-!j$;?oJ0=jR
z=k95DO5nu=`X$gmfzAoMl)&o=bfekB^p_LhW<`<Ofmagfl0er4D%{Xt6H4%^fXJXA
zQ|&ShyC={i0lwz+beVcR6X-?H9Mk(G+!w3fNML`(@VA@&#Jw3U-2()C1FEmc)G8eq
zkiftM-b(P7Nim4_6vLYd_n&J1%YAU6-gcgT=RW^C33OWSACkaO0fQ5~s2m;d2=ZU?
zZ;N4A0>cvs)GEP$;Q3$uh=lvU{pQ{!-b-Lq0&^3Xm%!)*K0k(W3BKWp_gOvR{uIK8
z2^`v=KPG`ctk6a)l+!gZHsQX9)1+M9N1Po8_2~)BNMJ$&6BBS&>XU>{5&E&v$qD@X
zU6e&kQ-w24D1TMqlLS6ZU{(UNX<p^LLBHsqB`}k*w<n*!4$PN)*yynG`D~@tpP@M%
zzCT?9<|nX#0h7RT8k_)cI9!~-k_5g;;7j`a8TSp(ulNX%z@h}Io(gR^5&D{vt;587
z>K8J*G=X!0=rZ=2*FV-TENl@uaYtdMe(s8ddynOJ45|cHCitt+SjF|><>2?vg;|RS
zb3Bh*oxl$wwkCle6S)0Xz2eV79@UMQuk}&^zN(s;6kMOc22Q#piYKv=6DNVQ3H+77
z<^+C9U>}D&fh`GaP4Ida@RtF9rrE25I}_NIz_tXov!|TY2ScB{?*2*+0qHLZ@b}Yq
z3$@oFvChqsKCvyjCxN}3*T?kV5};(uM{;?~=z#<dCh#Z6v0LC!0*5&fIEb7e>~*{`
zf6efifTKeB^M%K60haQoGf&WxPQjDx;Or>DDajJ-dN_JobW-dL<A1GN@mvDu6Nu9W
zdWK<>z|{nv^wnd!kl>HH`Y$DL@fPQQoYC8&H%l)|=@p^mTub0Oqa}g=MA#5|gA4LG
zJtp*KE&h<ADOCbSh($?G*aXrEWD>Bsq<p2P5;*!uv;zvlw%-xVEPu2yn*cdl627Dh
zJV|(ys8By|!RaVzyJgWLN!XPNiY9TJ0CGmv50XPrBI$lPdyh~gp_1;ekd#cKY!c;?
zD3wI%B>3|mw<q06@%gsAr|eLfq#ODC)sON?+>u13Br3DHB+l;*R1`7(Y6;_+vxzh7
z&Lr+iy1!|1cha44R8l1g27iaM{@WT9a_;=GB3d<x!*>Um?oDFAD<zuy1J#qbKZ*5e
zY)IpQBpzgoHvY5mP!ctgNLg?!)J&pQ63<!aXrXozb&^=eDoNB$LZ_Z21}0H22|s0$
z=$J$xiC_|WN#rLHN`mJj4U)*E$C8N9{`_c867|`Ofx(9*OAfbycv!=;9^!^c{O5$C
zNi@1u+L#@GCZ9!*u-ADFn<T-bpC(4$>-`%SBvF_|>m=GF@n{l{CD9^@mPtIG#1lzu
zSc50&+ZFC{5^2*Unn{+pc@i@xxy)m^0iHKyAI^O$iKmljmBjH@x&L|Vu?bp8lUC_@
zZIfu1M294JxI;VJGXQGmJ(GmC29$j8f8n*cfoJJ~bclebRL>{zLJ~cb=#@mLB-T2i
zE=hDv@>4!^<|rreauTnQpBrGu*-)>eQBwAi`d>}rwIsTW6KLD(6kg@;CQVa@iQ4F&
z9!dN>r8vPG?C-h)g1$-gmRc`8U80XDXYcxPI6g*yk)aqB4oc$9BtB#JlXxqMx0853
zi4UaWJ3>bY9V~Q+(4h>ZBv#($wlZ8e9MgA`7@5R-qIqL9cXSe?1hZ3Yh{Hs$ewf6V
zBqk;Cu?*bUBt8-_PUv`{l$_Q)JVEe8p;Z<|Z!#w*F*S*4NpN(gB++n@>!s-u6*Cx1
zXM>B11$nqe@JZ4=H2hSUl$n*pY*uU@{yvF0Nz6@RaS}_Cn3u%-B)&}It0WeX(>|ZV
zpC{czJ)Zu5A#pYTfiRh@yO3iyDDUee7KthflgZw-SeU;wiDjG}3!^KOU=S8QU4r~?
zl31R^3h_Lnf*b}IWxf^3RY`o8M4z;KWck?s;OZoPkihtnRC>h2$2IgVD>|VEjXZi_
z0~dcrnuQ`3HYKq+i7QE5P2#5{wj^<s)=FDjllV1>J&cDWwh3pu&|OLF5U`V!VUru6
zd8EJaD_{XMmGQPWiQkeq$VDTGeKNQQl4$Tu{(iw6ahk*tX+1l7SmrE;{)klP>|jx;
z_W8$?_&tfUN&J<>A4&Y3-|$cA5y6QhP6~$xoDzSMc{+(RN%Ux+PvulX2c8obT@ZR+
zC^i4h8FVW8kAwuBb}@<nC2>hgnY}E&B4BmWYe`&}37Fvu#v&2385Pp^q^v?QE{{o=
z^jmI#Q#DTiOexOLN{F>LgO(;)TnF0cb5f_0aHN%|l1Pgl_ML`hr6G^y&UYrS1;&hK
zxhos9w^=A^Az~rNLNN=)EmX5moi|We;5`&&EtIpMEO&`3ZQ*tSB`uT^Kqlubhly@s
z0F<%7#boJy4a-}&!$M^XcUo@LRj^QrMY(~BlBFlfWTI_%S*T(mJUd#|!rc}aY2?p|
z`5C?Uh@IrH^j-`1Sy*!>N=&owxA1`FHtM(Vpyf`7nigtVcu1<yMKx%iw;ly*TkdL8
z*Me@Lj^NCXE{73I<Lil4V|MyEF#{HYVqQpSSoE`qzM@GFTc~g05erQ$G!WM{vfTN|
zqFf6Ng~M2708njX3sEtE_=8h!PxCA{bf2`4Z=t|Kp~b5$TuyU#S!|$lp0M1x`M7w4
z+3Mf<n@UkLQBIC7uN<^sFD&<%{wWL3Sm+@5X`!twv=-1tC}r9TXeYG2Q0igg5=~D&
zYq@_@2%fjxzx9(XOtJ8Sg-#Y;w9whYyB0<^3%+FGWeaavc-z7&7P?sIVWFpmt`=UU
z%@(>@c+KLy%Hh!VylL-+nOfahK-%2`DVZ$V)H$!0g*Pnpw=jU~L+8BS7W!D|Yk>lv
zbPdn#?9van=k>END>q7kfl@R`gjsY`>`e>AkH3@mj)lP%hKUS?hgcYDfjWuV=uKmW
zTlk}M9xINpFsNLRO^mego`q2sMoTLbExd2x0}JCUjJNQiRNwe$!59JeG$^F1u_8IM
zV!=limQ5@^frF?wW-Bz3S^8&^g{QXXeN10HUO+zSRCe6r-WRr8m~LT)g|!ye(Q*r)
zT3AXw7PK<K&n(Pi#BvnagoQ>83TIoGV__~s{cHc4^7(x)=u1X><}{Cf-Yc@e!siwi
zS@@a(PYvJtnZB~{<t;qFejYgsIat8}!D5Ry?1h(DC?9WdaJY+`&d6DB_`k8RoRQO@
z@COSkEO;LXersWsg_Vrw#r|Da!rL$Szq3H$Yg2Q+=a3Z!CtnG#w!kbC_55hz#B>+0
zVFxex2TjX4I96Y8VKYOQm++tTZ?Le@Li-E)CJPhC>y>`-ld|Zin*tWL3iw$l#aOh%
z!cMBSaMHpq3%^)6Y~hF)znfF3XuaR0tzRwdv9Oox$uIt7vmp6pa|5it&%%BS2P_=*
z<o-A#hgKc5FbUy9bZ`AUW{+|zS@@m(nw3MDI=O+Lr{)~Du>Q@+;$8lcoAo~|{JhIw
zcqM$w!k-o{TKJ!Z(_F{K=g|1`7S32WYvC^o|I7%S<KPa|3F==B7tGEXF*^7+`CJu0
z$+^Hq?`n8zVf5|Fp?<>(E?Ky2Au&BCY2k{6tDK?Z^%&>ZmGCtgsT&rqOV(dE^sj*b
zq^A_P@l%M@uwY89IQ0m)w?;mdFma$6Ar@D*+<-04BuHDx&;}cK*~rSgE^528o5^Ft
zYvV|*#+nVEjg`T?A~tTbQSJWl#bDkiZ`5yoR~~UO8^vvuumKz8Y&2P>D;p(klx5wS
z`i1iKO4+#G#+lP0;?g!q`DtVs8*elYEIbq9*Y~5$5GBjoxWh&T)-pmBZB(+sQoU$S
zWgAmw=tFko@xx34mR7NGw~bLYM%%c@MpYXPZ8WlRuZ{a`KDpq??V)Nms@tezqpl5p
zKy*L<=eJSA#sfAUw85QZZY1)1D1LEM)5fko!CE$I+wK=q+>YZWGXa_0Bhp11LC{7$
z!Bp<I5fDr<X1Q4xvT^)$^u|l!i12f4JZz)BjRx#5KXjU`a~F<n<=XDnB@+#3Y$Ix;
ztBqG}JVL+OXl<hnt+kPF^J--@vr%B9ko~HW|CsI0aR$<(wi{6l=E=Og+Qt($7*56h
zbUDYigecS8MhhD)Z8tuj<e*H>X)-y7!cW;~MYXeXp0>d(6XSsuS-q`|b{xTJIh}2^
zxABaP7i@Q`cChiymGHB+J1H3IoH)-3X11e%=jrY9ftypNlZ_Xp7AsOMwY?-dU$*gz
zfU@)TE`0bZT8~Aq*?8T?ARBMm=q9Rq+UO<KyW8l&p`Vz;smis8`rok8*G4}n?QOdY
zR3COhR-XRCq|5*to=PEtfnpNDm4o_QHZNYoyCU<B(4jVl*%)kNh>dmAUAJ&$;H;$I
zhSQTaXgTfYQow1>qLEVTJ!zDdvx)a@d|+drjr}%0v@yoUQX9)`jI}Y&#%DHW+8A%+
zBOB9gWTxm782MJtBpV;wm}q0_KKJXk%=gjBjA}|w)~AulaeOJ<p;Cw&i3BfB%cBgp
zOlR2cmvo=l_|!(J-@@E%B>%on;aN6j(?vEG+4yUIbPgS8V}XsiHs(o{hVo6>+^PEK
zHoma&m00qn%{!2F>K{E-=awlgVG~sNwT;C#LR0l6HlFP4Zi#>XS~0fr*dd+r-`H5r
zptZ5d#tJS1TpSpRoIy4!H^}|Y#`iW>Nu%8LrTl7Yo1*ixxF3W`{Y>XNh1b&I4ERc+
z4PwvX@1pG5dfPo4`u?)p5bfD)<0l(CIUj9o5nr+5&o;J-dHhz6O^~zA2I+PiJ8X1b
z5p_9M&M(r(y<Eq3M(Ot5lKoZa9%`7Zllhws9t^QXHhsXxK^uo`9A@xaA#T`mPnZW=
zJn=bV<CKj*8HZE#qc)BSI4+c&-);QCj-1v{$ncSKQi`bmGy`>te%{940?ybtD}c<u
z1e_Dfy8m!l5L2(xy%+N@+W4Q1OEN$Vi4A$t%i^mmwtLb<4k=xCO{!cM+Wv1pdwRo0
zjH_Q7jnXh|m~?Uq>r;r^NZ5Ebh38U8+OSw9g(@l7Hd2hG6iTPy*hq8fo~xHgA;ZPr
zM$wd;^`tOzj!vLS)|<kkH3N7f>=Qn55#isKLbgYkAAc2-EWfBKo&rB~dgwd1E>ch_
zkV*NHDX==3x2I4hg}pt(l~O31LOIfYVSeYuub;}Na7PLiQpokxd*M61qO>*S?!d-P
zQD*rmS>+V&Okw54V3r?G^>Du|yE}z@QfR;`DO642-V}l<gi^Rq?5UAL%@nGoQ2nNP
zLLU<PfY1kpF6kTI*d;>Sm};e<r%+G$wT0FZT34*PDdQJTAO(ItHnexR!2`iamk4n<
z1$O-56e1#!BTl1c*DZ7P`YBv(ns*_qH%##-^UySfX5yU2DKtqTPjFP|BPmSo7Uq|9
z!+M4DsYLV?q)?c`KTEK7j_V3GM6W)U!s9nv*%W=^maChm@MH>YQfQmP^euXe6rM_f
zs;IDK3dbk8AM`yfoK`|x)1_PV3q8V=X(vja5q{50joYU{&vS@b)Ir25zY^(~!t*K2
z;6Sr9g-#SsVR#BJrqDTsLA(6}Qg|tams5B>g>EVLRQHt>x~ANz#L_M)_i$uck$TL&
zD$Lh}@^j$s1S#<Q+`cLI%&Vu+-a>n&@P+`MSh0wyPs&{|3AkYPOQC-XUr%<Adw6Oy
zkY=RtrWnH(2Mc&h=-Vm0!*toTgeOy^LsA$jMITxrW=Ev(Zi>IXh4Jj>ZvV&>zsdp6
zXNliSVN?pEh5x=#r%Va*KS;UDAi<}_3de}5u_-x`zobvv?f)nR(#a`I5I{VUK=8*Y
zgv;iW!_|*;N(xhjKTYU#X@dM=m-J6l_)J>)CWV<P%wlJyq1h?SN#QH8kc-b;&f+Qj
z*dOx*5YJD6D+vM9=P7(4{4Z~n@(;(tl>4`di{2uJ<z;taq!SjWutfAP6}n6)`7~yE
z3M<6bD~0}$!nXqG{8a+J<1jHSFX^jO;4vBb<N5bxvi@TVYeZnJP--J{Lkb&Hc-z4{
z4mPE*nc?T)0S7;&uqB0mQ}{21tttGR;)hiDBZX}#Y)@ei7myTou;XjOyHfZi#TR<>
zcBas;L1CM#;c*QLcc<`c3Ij((m_1%Px9#vqrcUHH;q0fuBO?1!=zF9fY&JOaV}#iQ
zDJ=Lfa4>~KqLZA%DFh}L91(g{=rPV60px$)pzuTriCU4fDg2ef$rMhd@Tb&0O@DIs
zT@BNu9#_L_{S9fx=6l2EQaGQ&<rJ=@@He|zJ^D`y7gGGVEb{lb@WmAVC)F<rrNN7N
z|KghP%nOZ4uW~LAk8EyGc#RX}s>{4iUo|LXa!MB7NFkO&Q3u5w7%7-slR3p4#A%^a
zbh!SDwRQ@r6fCYhp9a}S((^Y8Xex1o(Y#m;8L@}ik5BuDPb*;4UI#@S*GOW`fzNS$
z&O`zF`8EgX2lA^d2o`rx!oeL5DmZ|{`+RV_gEEfm>XHs3Z6l=xmlC>tT$s&abEJEl
zNLdF}>PE^rt~05VxV&&qmn`hqD5s)>st)dTP{~1M2X{Ik^DYVqpdM!L7JQFTx|({(
zB)HE(H3xkr<oCW5Dfd;-S2@2r?XR5A5r5FZLk^yC(7{0s2Q?i;9X#TomV??3f(}9s
z>Nu$DKzC5jamR~#>Mjhh<9-JL2Q!DbU7*3mPUe+9?>gtf>v>@Z4IJdMzYcO7JnZnY
zyS(}iD8}I<=Gc+;trKbJpb@>=ppa@=x3P4;a+?TawTXi~2Q3`5bdc|$z`<h<9(PbE
zuKT-m^ij5cq49TL<Z*zQrH7x8qGk@73SdZ(*<A3GLYaN4ATsmcyr&#I?Vyzdt3l!N
z)Be`t>UIv=3uxn@tpE-v2ZFUK=N9%I7p60xb?}^nZVtNB&kmk<(AmLD4qg!btwx7C
zQK!tTttAUzq<eS!S^Z@PuQ=e;driWoi-WFAo7{nB%oDuIpgoyKkXtYEx;WvUgOMH%
zdO8^3V4#Cu4&HFkmv}^^w+Qrc-000zDr}Hj$gyshTiDM*e+O^o7Sg?pXLfUt<IWEH
z^DXinu<y+d2Pr%)w~&Snb}+=jSqFbP80uh{gC89H=wP^m5e{ZMnB(AG2O}L!b}+@k
zdk#i980TQTgV7G&cQ95g`9SCxp;Z1MM|^?X3dfX`og)2+!BaXqK^(Fow~$`lc7JrD
zgGs{qSSU^69GvQ4nuE_cxDvF}9eg5ShR}^|T(zGH=I9WU+THS}jfl*0@M~`2t_Skx
za_kla7dlwvV4j2d4i<>tzHsoRgU=moxa68dO8?WJ47RTvWWS9toW6Fj*ue@1D;+Fx
zu#}xW6<qG{hoK|O94vnz{~N&@hq+O~EEhL-<#c$Lpu0GH?||Akh&13k$6ccc*xA(%
zF69;$X;`?%;r=}KIN0l8orCpU;T>#o@Z#mj26lWzWTUu|i{2)Voz!AOblsc#^S3(q
z*}*Oczi{A;ylou2I+5*M6Rw4;HY_CGA)KA!e`a?}u>C6Y&L^10O#UMJn}dB0kJWJ8
z!F~q^92}8oJSf#UUWX)B8#XLFEd1P|ZipTgOh664JNSbUwLkx~gA-!FN%1hf%CVqJ
zPf7Mqslx0TF_?DJ;pZHj=c<@SnKb@(@DEo`Hs|1igNqKXJNVbZ{~XZ6)OM8~aB$hd
z6^W4I)uUWD{#X!Xs6+z=*JP4%Df`dC4f@SNk~8=IXpHN>#2W{cEt<02(T8#AAc5t;
zcHpp;Htt_W_fJphXiBQE(Vt(A{5>|Dl`a%bqgWcAG`wkOY2HxkhSqIqJkzkSZMnil
zC-aJ=!8zEsp}T@{0W6+Ii8M;4-4$=~xG>UCY4qrt|Nc66b`!9zQc_x4D8(3BWz#5^
zMx8Y3rcpkPJJPtHN3>~FNTXsJRnxdPjY?@$PU9{bP&aaC+FgeUstpa35;GL5q;YrJ
z4N<0h1kg)#<9%sVPrLqPs+M*agqvZ&?1O21_C?-9Y1Bx&Ybgi1W*W89sGW9KCw7OL
zDZmKl*xgn$$`wp!f9piTY1B*eOauXONHC318f}gj(0h!3w!8mC9(@u?BPWfArAn^&
zp+0-jCen3YL4!0VG<26HHpF$TaT?Jycs9B$jYrb|x92uEjV5X2rIDXTK^pz&kc0lh
zG#*Xk#WXsn@mLy<r_q{Cr}0D@P19(Z##3oDOQU%j154z3Dg;i=4m`<7TUStdyMOR%
ze+v%iSwERir*Tih-ztsoH~A?^oIL4*wrR9WqhlJ+r$MpyX*`$4@OA~yNVcrEUWYWE
z70l9~$`sP1aup&kh_)LDb)tD+=G{{}uc{d#|D`luPNO^fp2jO_bV=j&G~WF<uWK5w
zronF(UQ6Shp*kfgf3*%jbjoA)!me<)G{#KLp`M;}i*&q?&^OZPEr61&vb<qol}-Lf
z59jwygB*6Pe;NbWcaeEBjkg305_+_3<ZU)b=R6lFRXoH`D(D|JI>%QqB#ohI3}a8z
zn3~44G)B<QG{&d#Q5qxDcuzEZD0CFVvSZ}^G)AZKZ()dEWYC8nr18mWKl$|Jm^8+w
zF>Z}J1mozL+IjR6yF)sG29znBEPbDt#-ubp7KhLSbTYpUnIZ#3om*}TOs80yw<u#F
zm8bD(8uQYaPtQCT`7DiDY0MTplhbEIgv>c<urFJyh37Jy{?XZAjtHGh7cEHR3vo5^
z=h8X>t^Jawc8t<ynz|^BB~p=b^0f@{;<WpX2{kOGm{#D9@9@Ak5~$0Ct`NFXD5Lk=
zG*;ch-!ZfVufE0kfq^Y}%`MK_G}hh1y$1(3rm=~OKo)uyo74Cyjp7-U$Y4tvThlnt
zFizv=G=E|q2h%u2PM`4hH1?#iH;o->>}2<mzr^40-Jheo()cBfeRnt9oyM<>x-G$F
zy(7oY1<3i0{4@@v(f<Yay+Q6H@iA~eopV`l=ySLCc_eW-jU#ECN#kr9N7FdQ@c1O>
z%~vAFISo5T4$sj~r}29lUk{3GY?k{6m$JJ;C(<}6;FM5u{$wmY7$jIdz^%efW<KBj
zmBu-mR5Ng{S%CDxVuk;tae;yQLNP7lPW+2${Fla!G~buQB}VlY{W6!4#ldTWucUF6
z0Xawic8SZpE=B(`bbE!l55R|d?l8m{y#sYV-5Y6`X~fe=(35lZY#K=cX%QgDO2ZaT
zDh)@#O%2?Hp@vKveD>#EG~8<NWZ=!X?NWgE($G#{21PQs+$(&W(4rYsd_KTzu?)B&
z!=XV2DuX2%EX|-~2Bk9SlR@7MN@s9;22C=^%b-jKWitq75Xzuj#@(;GCxfaPl+WOf
z3@QlcE}<1OsFXov!FS%|?~L*#OjfCIq=2+a26x}$b9eM!!L>4|oxyz>RLh`x2KQ(1
zPzIfkg(&|(27G0mZ)}o2D8hUhl|?l&s3|hUd}+K+#(l5bp8>Z(>k8I|^4_z08L&D_
zYbQg24EQd6*W&qM_GPMj<5_M7kqmA-t>*}RID`5kA1Pgr%m$RdtP?b(PvnNQMj12~
z92LsaM>1%gX~5F_3<@&nkioMV6lUE04eqJ7&frm6mBHf~Jdr_5;Wri9Txc_)+>W69
zlY(1h+`X4?J80xQC7h>)vJ0))<z(ol<~AAkDzmm3v=czwUcfUMaJ!h<=Q8M+abK11
znn7%D`1uT867Yghaykikkvea2*z1>X;a4)~BAEM@6n-^>*EmLe^PhuNGtfPQZXD~*
zVQw9BpP@$vJ%!&ZgWdw(kh+xI*|3lUP0%lc{uy`IVsZupGGLeA&fp!!1MgDHV33&2
z&5bvu`)|=>d}aMuXmAEYGWd}CJBNp6+;1O7Wbm$Jhl!Hm8F0&j8^R+q?l#o>GA{3B
zFiQB`fEq2r+>hm3-&{sM5X}cJhR0+uHiL0eO63y;j2HS5C&F*x34+-oODARUv1I96
zW~XE@HG^s5fzKEu0;Xp$L%=6O>6}lccLcLCn4Q5w@yVQwyN5F`gZYx3n{l__>wS>7
z;8v|K1$>^t7q>XYe7RrU!sY(*FOrI13+2!(7U1g?UY5Z(8C=canygXFGuV*9MmjBn
zl^J}S!Kw__WUw}a@93)xexO(et7+SnQ1>gvc^zfZHhHh}p3EyDUY>L6S?!yvA>N<4
zF5}*Tvpxfs^2(Z~8-u*NW>W^6GdPyP@eF?A;-A6(3=U+lHG`is*qy<zq)l?SW%zq@
zp`96Qm+TIqyk>_*yBM6THBIM@I=o1e*YZ&L9?o~pT=HLWnQOzvN%x78$Ge0J*ZU8O
z243uWB;($nd5BTHJnwMEy=IgDZXcEG*@lIqujK!p!5<l%&*1M2PGoRWx_LH(QyKip
zwXRF}H2c*mOfX@*+cd!$#$IceLx=p8!8xfyJh^$^KN(z*T9-1on8E+(%qzu9e;Zt~
zqktCy^;!|$Jzl>oc8;nXyuzSe?<ePa2LE!&&7x8k|7CC^11$?*7O@PB4D1Y28JHQw
zGe}C6yLhuG`*Ni?tMj&^IbQ|{tPJ;Nbpj@bKIa29XF6xo5&y8?!lc;@JXu$Ux03Sa
zQg7DnUDtwOkt}Y@V%(F_a#<A3@*8vBAQvc=Me!_3P)3T7MX6?aN{ZalW_b(SM(>&y
zWUa67E?zo|+eK{8_2Ol+Sac#d_TGkNv-qS+J^^LQOX(e1R1iQ8HB`>x&MY3t;=!zY
zczRbBRkOG^iz->%opo<(<U#G{C3Ek|g7mLbVP2d_vHP;9mUTbMsGj8)WbS7p{7A&*
z9}7|7p{#q<TPus&S@3MPMiw=*U=ii{q002f-1Faw^`mvN;L$CQgX?AC&*EK=8tGAi
zEP`1S@u=H8DwIVyi?_0PJBvsbIa##Lq8*#dqJ9=nWYIK>23hw`;Ko@*v&hZj4sW<&
z7AKz%x8oJWthFG@D}tGQB#Znk3bLq}Y0xB#yevl63i5X1()}X5rnpe}k4eQxIr{OC
z_iX5K(R|-o_iB1-XqLrO)ZZxDT*RIfN`8whS_-xs7BWkLr$wxl(AGlR2&Jm_Sv-?P
zuPolkqC*zXX3;f^SF?C7i;h{mm__F-p3mZiEJ~Z9PFajO74CT|95X^Z(|1hwyq-<G
zl*KDqEItr@S=!}&$YgfOx>xa6iHB&ws}mxxWzn4t@nYmGCY%X%6WY`a&FJg)w?`IT
zY6W{{!7Kp{>&?;3qQ6w>lSSVwFHZLlzAK+z8j!_6{sY-B@@5uVLEa#a>6r*yA>Lau
zaCkrt@jF=z&hm0atjc0Y7DKc6G>gx&7?#Cwx-pB7vKYZ3X5B14$ii9VA4!8R=%ccD
zFN+$n(2BF6&z=p87Th8b`uu#}hayJiSo$IRf8SY`(j)wUdR!J|4&<Mo8Jv*CL@An<
z#iT3}?ekeWnU)kQ_?UC&ko&bY)08ZxiWo85nl74WaB4`Eo8M)##hF>mqGPjIlEv&S
z=7@z0vzVL3JX+o``ehdLxhA}n^SNkPAWT+d(HFwGQ8LV~v0q<had>J$g+_(Mi$v^e
zX^Tu6uv9q9rL)U~ek1gQDaC2w3Q@H(i#oR#u>0R-@qHF2IM!LL&f<qGwr8;;iyyOC
zBYHMvu{Mi!S#03ib=^-Vuxsl%numh)673mM2OFjPzn9M6oW)OK$rfpGtN4mtpjAIh
zf461%Pow|i$vHc-*p<bRERJUJOBTDc_$`ZlS^O%kQ0-m;dxX+#x`oXBqJ+IZn8g9X
zMQW88{8iwP;KR3^K!IafaEyKzGmeY394~74L%L7E?5QmN<YK}_m}^BAXR`QT7MHR(
zD|*gn@wb4#gq{<6voHTJfEj_$20j_&c8%IDN|u&f&f<zR`fnCj#VyyxHg@5fWGP(o
z_5#xX#FAZq<uja&EX*vjS$I4u&W5tch?3+@YqLmaVcoLa7LXDF>fwmcpBxSjD6<T8
zuSczFQNrg@Y?Q9hJc=Piu`bO^P@t$s74xW<J&F$n#XYKoM?EbV9;LV{dQ{k>N_tc&
zkGjjFs(4gsk6KqFRMw-)dDQKKyWJBi<5ACy&ad7(r@TkqA<Rl1MSca3swi1j8DBBK
zMJ#XV?S+-4sL{H}ogPKnWncJikGjXB?)Rt%JgTZk-Rn`+J&MBAaGwZQ6MEme2%9)q
zKj+zhBE@$H9`vY(JgT-w)$ynr9#zw$YIzik*w!2OhBC3pI_(jrnx_MGJxcc|KNoxo
z3=6YvJyCeG3APesQKQ1Q%?L5=iFj0wM?K+DO+D&ikE-uck9brQk80pixwP4%8k4yO
z)YFir-ZW`gn03h+u|E*?sB3JxMkvpt@;&NNk9y3b3OuS%Tv5SSVxIO0B`@uBd%^U$
zN0Dxe6o0t0%W39O%{}TV5q?r=OQ9{KcXZ&*KCT`XraW6|<x#CYs*Ojr^{5v-ihXbA
zQSB-0QO|K)*oDrK4nhfNWbc3Tse!noFrSy!tulpdnhxpYQ7;PTt<~r(+Fp`AvYT|~
zD-s)BJgTclz3Ne~dDI|}defs`r$0TauSfm-R^wrl(A}eYdQ>lVq)}lHj~X{m@8-#U
z!=rjLH7e{QV%aJo3dhSgG<WEGtAzS_RDa<Q@Th?t({~z=YgEXJua*c>>@AOa+oOiN
zt>o@2Qt*yP4e_X<9yQpb&j040`x!`wdDPhhI;&8CRi0^(GlKHA|Jlj~to5Epjq<4S
zUUi38jph{KAAPSI^B;KBhaPpzqmFyj7>^q3QD1n}m$ccV#(UHpkNS6r|09o@;88O?
z>JyKeNa4OY6SeTi4A+jqNgic12=tihCucHCweS>=s@E@Psz*(eEIHE!G(+%HkNV7`
zW^qtVy+h-InWACHdnE>#`ntY3Y-qMe9Ud4Vm@DlP%=4)Ex9|eGy+P=6kJ_+VXVF(4
zwU8e3sBIp#$fLgIH20|Q=nzw1>`}`E5HAt1ludu86>ju@<5A0nvqI>%LRShMHjwul
zxSGHBsMQ{|#-r9sXMf<Jb6yXMJT)jnv&;6&p|$HgYQ2;mJg;qVqareMV1y3YD45wz
z9<})v{z<?Vp<6wwbDca2Z1<=g9<|$}e)XuG9<_M4pUQW6RKFYAl>rgD^cRl`4vOr&
zTChhNIzoAb>HNJO^_y_^3EeN0`~w0Gdeos?oWmaVPbR>k!cgES7nU8t6I=3r_ozQS
zD&bK{>GcVZI!EA9Cq3$vNBt>vE0n2s)}yX(37z(+GaQ04A-aw|{fmph4UG!5H6<wX
zw?~oQU@IPVLGVS7x+LI#LRpalOqV_Cig2z9CFh!e>q7tasQ+&9`J*{3jWMo-V+t*~
zH5BIpGBCm-T4H%rM#6yD_NWw#Hu{+y0qL9Bfsw37dA!Q&b$#m-%IccejSxm)5wCh_
zV1#}7vQc4CuPWwM#l5P<RK1i}ovd9@!mENibO=>KOL`Sv3y*4;Pkw2Uxm{=(p=G_Q
zoL5<;@}DnP(ECP&8Y*~IMX#FcRr9>6l2=vss%O3GIj_3YtM2luuvbOAs)|?L?NxQW
zs;*bv<5g9?>OrsKD}48Q6<>?3=2c}?{(WA>R~Gq>-?=N{>RxrfR~`E}=K-(cTYP+J
zxvt7*_93sT;Z-%giZArmriSwQwFEQEcmLw!a#qgD(Y=cAA_lzb@Ynv1vvcZs6<@OT
zi?;t}<WN=6tN6NLh}Qn%=ev|SUiC1W_Nqs{s=imvo{`hgs~U-64ZJGXt0u^ch1>~j
z>{U_W=X=#7QoV^+<#`p~F=j9LLN#AvWTyzG&B`h8DsE98nUV9DS3T}k&AsYLuX@6(
zsE4m~HkIlROv`yFKiJHx*z4an>n*&hrB^-UReZbnDX)6ktJ-tyX63Z<s)BO)Osxg*
zMaMQ?)z+)p-Qx4DZ<f9`J%_&HYv*)S2hq>Ibo8p{z3P3h`oODR@TyK;)!VE3&?jEi
z*{fdTs7=pddPzVRuX<U)D?<6Y>CMuvUiIoNNp|XWuj(e*?q1dN7QY9>V3w<jsh3y1
z;Z^i4vHH#5*Q@$@72mQR=~ex`YJgX5Yg9Pgs|I@2Ag_ActKRXdH-$<5TLL(sd_R_1
zromn{<W?zPz@~?XN_Ln8%uSgQUiI!R8NM?8o-{{SkMb(M2R>T7apcX&hh8<tt3LLs
z$?W@PeJsb$@Q?Q@I&GZDJiZ}7&PN<{DZ24oiHQOxF>W`7_`>!S`h0fI=;=A12$(8#
znpaI1FheNcM`f6O>Q$e4)l9D%IxB}EG)KTJ2ABZG9{C(f3eWed1zvU9tIl}U=U(-N
zS8b))UiGC{edSf(d(~<Q^@W_;UbRHxYLQoc?Nu9#=hNp8^^Gj`s%2iaQZ#=f0l!=V
zl^)<5vnvEMMDIEf`c`CCc@=B1`gdN%_xx$e58|<P>@5FW3SJ|0tx%5L(sY1rZIIS~
zV$(9*n}qW9=FMUu1-LW6h3*}sN3R98dDV8WI>ediRXe<Dr&s;vRsYV)X<j$9%d7Ty
z75z#4i&yRD1gRV1i2o|nnV12vm&?Tr*S39Lwco1_P}>DRoqv!<z8T?=ksj<HIpS4(
zKl!*<{m#X0mH#Mbx>sHQIA?FMLe3+;MgND`e9Eg%copA{J}F|<%s~26dPmRjlYz5d
z^%qxBO=+4s$HmjD46ic1>Tj?5$E&V*)m2X3E8z>`-v7yZa*@l?l`!8x<_dGkt1e3s
zCpEJi-)rnFmoJH{>s$%X2iVXJPMOE@=$x4FU!Lzeigw1OuH{v>S0%iPan27Al3v9?
zqI*+Zd9DRAUX}GKM=-N#MoX^<0hM?(*An`Nt|0Yks)(k_Yw8Y7-KMFcnkuQOQkom{
z#Wck=2bwA_S#nAUp!2CpX|9v$M(QlBsWO`4=Nq>RWt?2QGrz20GRtZ11SjA~RnSyr
zP2H)fikjlP+3sqrxl1&?dY7iEXsWvAuB+61x9G2`se1%)2*|uw@O?t738fP9IY#%h
z?ngTP^AJ0zsqRocplWKW7Mm-o?kcKkYpM>LD5CBzqUvf&*Hk5+s_awsH09USd`&IT
zR6tWfO?A@Li<$~)Dy*r7H~g(M7130VrXJPQW14!HmTPL$RezqQ8nENrqm4AxSU@i2
zHPti}Eq{A{uTupR4}_wcdPGwM6eDF(lUv!=yQBG<TDdw<ps7Lu#N%W6k8A1)O)WVX
zYC%<+>T)Jn?NF$hrYaoQXP=2S*A%mlHi<r|shY0@YMu8}vZbb;k}6MYinqFTIv%Cj
ztu@s~)V9^s-2e0rg4+pgFZ3C9>OiP|*PLf1`<$ja3V5F0I~aO_-Rzn}lbGHJ6n56s
zOPU&`snMExSyQiQ>Mc#ZP4hI>Ra3n*^@gTi)ztaj(Y;-RJ;aRHH1)cGZbA#bjCSXg
zS>mUKJvG&5y3W*Sc!}8Bg5H|yuc-l=BJLx!ucrD57<Vv4=0Hsi($t$YZ<Ah9M=>1)
zq{IZf7VGb5YN)1$@fTwk>w|?35lVsKnxZ86Bc=KXO}#6CH{g-^o`?}pW>KT)`<nV#
zQ<F9Ifu=sx)EIFc{W(EXV+D^BN`H>m6y-l+*o30Y*65fwk%8ASZ<6$JV=_2JQ&Tm?
zQJ$r#X`1pL3URzX)l|VKeY&P*2q6AMQ}h@?EGO?Xj%mY!nRNA+Q96nPJzG<AL~<^}
zb-#a}raqdbGg1C?O?{!MKQwhhQ(tQ8D@|?C)J9D$q+y!+R#U4q^)*9xLU4(umP-6A
zrrVE(sP^!I&@#sG5r5ZE^czhr*VGD4k;$}@^YNVi(8dDdSts@HG}U&KzDCC4d%?`E
z*3=KT@Q(sM%IIq)AlFGl>os+?9^$QXsbrI;Hfw5!rgm!TCrxb;pA0+{+Dcb%(tDJw
zM>BpF%<MJ++l8Jx6xyY!Uo^E}QwKD~D!bX8YyQ20f7MiOmEayty|64u!1SA@_DRvw
z4N(fyq=T9|qA3nE@gce{qaPL;&yA9KREmyi>bL-Me%BQ3Avme2Q<{ovDxs-A`Aftj
zN?g#?MNOU7)EP~km8RLd^P2jLBU>~7oKV)KdG)6U|JKw$EL!X@ao*3N{2wPm*?KqV
z!<;;VOOm~;sVnr7#+?DTl<8khU1xV%Mu>0H|2P&u`k9Ss%FvW4v!>e0Aoa{2R)Pyc
zQd5?uO869f%GOkhX84rmQw}wE4Q4cz)l^yroiWUz_xM!Vasdtsmm`M3JFf@t`^N9{
zsoQ+2s81E~DQ1}-9bSSmf7L@VpCT>pb7O<Su<G^Tp<q<`+_k8jPnGnkQa<(Vx%|>T
zRmP`SN^5WTDaz3Pz31}FO6m54p+*JK@;-HkPrdd{w1Q7n^eJ*EPfFoCed;cs`rN0!
z@Tn?3b+=FT@u|K(b&pR~^{GOideo=xrEOfReai1sua42G`BV*`s_9cpnue<T)crp7
zfKQ!nR9GVrdC;dGVrd}4?8Tk|0$!?F%cp8nVZuLPa2~JUtRtA&x;~}f!hGvPpPLu(
zsjyE)7yE-Onw!TI67bl4xe=erk)nr%HW6B1Xak?h^{K(n1zE8ndne4sLdl5=c*LiU
z)d(<~C)s?V1)`kHx?RJM`PAb+)!C<B@~J0$s;N)4_Ng{L)y$`w`_xlD6+a!kJeT)}
zsHS&^TX4w!(MyyGxAduE{wO~|wO)))ovT0XQ>}c8fQhATeX5;LJ?B#$`NwX%pD)R@
z_o-)milBo}F+D4oeZR@!`!mloNE!q?`P2(O_0s`AU(4aEL@)YOzT8mCqL+Q@6*0TJ
zPj#X5I|rFw_o=S8@T&q|qaS(&ZkBfQsd*#ZuWozzR8OBOvDn|sr+SN$HzZ3Bka^SF
z{d}swPrc_;qkL+BPYv{`;i7PmPyKPqe~%t|lYuu;CwR-J-u9_?d@5y!2K&?y0RcZa
z=tF&Km`|M>5hP|9Q24Wsc_Ty*zXE>Or$+h|0TXZJ8|_o?`_vq|!lyp)sSkZ>x=(Eg
zMaTHmSfBdXrzZQ<IG<{`RR74QCiv8NpQ^40r_GF#GEMZU>$wG!d`dkP?s+6cF&44<
z6#D0IXsYnZnZ|xi2vWvwR5-(@KJlqfMdvJ^n(b4c`P58No7*zXM787)6wZoL;mc>D
z1x0e_`P9=@bLacipHGGt&^ax`FaHtsJsJ7Zr@r#3T|V`TPc8JRMLzY7Pc8SUgU<)Q
zsTZoZGw`)fEvE9K^@x{n9_<V)6}n95!S^F8d}^gn{oqqSa?Ud9?h8|RwNH7@1y}jh
z`NM(leCm6j$|QqllR;*$zaQc6i>>jgwRDtEZQT>_C-rqcwVpPV33Prx(zS8u^qxSy
z!@-R{waKS8GnOdkQ$PFE7N5Gaba?fE5=>w1;qQ+Jw^2{E;C7$d;Zw0Kfk|tl`_qjH
zc1o5-#Jhd!S7v?6@TomMwb!RE_|!$8`pu{I`P31gI!d#9hWB%b=jw-i>Hz)ICw!1$
z|Lp%`>N}vMD88>@cX~S9?w&+YLCGL!?@mw80t*c6?vMpkK#~X|83C0fIf{v-2#BB(
zBq>1z41g#}kt7OAk{pyA6cq#b-Ff`xJO6X)+;i*JtNf~Frl-2w<!h?Qf1nSqb|ycl
z)9e6O#M$WKO#GCIgPGu~sSa^=p7lr`d@gnN=13+^Wa4Bdj&lFGKYC2?xFB!#p~4qh
zo#KXYK6X~{wBQ-R=7`n{8$V})ue%~SpNR{ZxSk2Vtcq>B$PH?>b2$^2GQk5jSx;mz
zToIA_)l6JVbG|f+S$>r+@YPhma|g(T?L)waKQnPN6aR67eBjHx{^I^m=cm%wn{+&O
zw5RuPCT=lf1^u66mC-)qb|z{+p#Rsy`+T=k*oW#*dp;i&A2NJ+n;V`F%)-#OP?p~Z
z)d$T7-3Q(!w5NSWpPpWRAJ32|d@$L7&F&L@Jj(~_6MA}#GLW;iK_9|CM0}~vhJ3t?
zpY>$>j3Pep5K(a-?((HtSk#ANK5$Zaix#6d%XxSEFz_9X_lxlrWB2&5Xl5e2w|B1(
z_xVswL3IVCd?@Y1=RR!kp^Oh@eR$4?em<1*p}Y?beQ4xE1s^K<P{W6sK2-AIejlPf
zxIS2Wqm_Ng@`3M`ts>C}1RoS+sw1T2%_!e}ob3Z~@|#Y~2fnh_^C8Y|9&&S*Mss}N
z1FM--)d#+wn4y{vj51XBfe*dUmFQoeIJJC8FqaPnKGgPs?+&gx+|_@}uH)nNv}m3W
zdz~8fHoBd<c^|ZlCVgn&!>gmB-g}9<KGgG}z7KrGz~*~hD(-Ko8XG?1HTK~lA3FHZ
zk%jos)Q877sy^^R*3H=Kyc&=A@URbjU^O3M5$|7%%A-Csm!uYgEq&mVv8fYV`!M&p
zS|sg!Xd`@Mzglh6<Z-cVFZhIDt5q(IpY)-V4_$re=EGBTJkHKk=dt>E2Wup{_)z!m
zyjQ0><R^>8y8F<>hu%K)@u8;=z367uqnrPZJx!PRA#tuCas2^<8K<qy@5{bVb%xAI
z+{ylo56_CilBxIiVSo=ae0Y-{;=>>xM)@$>hv$9ZN8Sh@Zg%$gnK;-7;t;{1J`58w
zT#)*>_4y-xsZVo$#OxiVkMUuw4-+|wK8*8$Phfu0hnIYK!H4lI-^${{;{Nx%I3Hf|
z;Yx$t2|lbloBiyK%vb4wQ=FGdxjlQPo<aA>oakg9ruZ=3haX3$9!bY%)4k@y>po1C
zqNWM5%r}JasdVH=`njJ?a`<59nXKK1<vy(NVHSJj!xA6f=UDmhjt}qou)v3RefagC
z*jyjxN!4=%`7FEnTtszZ4Uy01NOw%+(q<tSju^8FHe<05KR>PW$#~>^0QCnxEaj4a
zCiUFu2a3AicGmeE>1Awo#Lpgm=)+37<s#=ZA3pM76+KWYVy9NKdF`W2Vt@PI$o$xc
zPki`PDq^KfD%v1bd#~f}S`pXzus)s27JlKwmp=FuC<-?Eu*rv0KAiSpvkzNXqYwLh
z*y;oSJKo{LPR`xQ*jGM$%_aO>Y@6UWf{bqWfqzhv>=K1pzVl(X58u*7eW+tZk36T>
z|1I`+QFrNgsi&QP&*_stwSQnYeK_pHPu$jm-hLnWu#SU19Pp*SQ+-{`Wpqsy<B;ez
zvlB<SA95SaPVA^+91|OU<Jwxqpz(1ZPKZK&QXGurj1Omh_|1nK9CIIj@!^sWmwh<r
z!+EjUe^9v~Rd@Cq7bSbQ+(f5y3csW=`xOosH?fl5RbT2$9Uc1`cOmg`K0<_1CeiYD
zX5<L?aEtptJ)eu6dy5Z$aYoG4%Om)R#l}-yz8JUa-fX_p_T0Crrzzg%mdow2tDB*q
zkb;kHWfxZP(60_j$w(H-@L~nD&s5NLTekbD>sO#ExQ|<|0!@LgfX4_!3V5Hjp}<za
z<AqSbCuj1Jn5F_gB*9X^<2O936HpKo10LPsu^gUf3oD2yD58M3EAr4?aRs~?yr_a=
zLU;=#i@i(1-3pj`k6=l`5`w&Gl={62cubL`w1P4U9#r5c;IY86Qb>6P<rJh2aMsP^
z9i0^vR8&w&!Tk!VD0qN*J9umPbZ8+wAjD|L))~Al{ZQ)+-YlP`Ae+v4JoQxJr~+3(
zjsiaIfrn9J3iu$|xB{znhNpnX0(sNx!<BW43{@38COlU`4YpRn#|mmHsKv%8cwRw5
zL2U({6g;J%j)FV|%@jPWAYVZNr$9;lfK4ixd?ngYLHmSTS3y0FbK`h@1r0=J5-))8
zmnKQ-m#Kor9D$WCubeR2gu{N*WoRm->6Pq96g;Zn2?bR*B$_K|p`eX|wk&*^+fu4)
zCHR=&ogdDvmDF!)wxpesx){aqxRCWD^!8~bH@AR#2L&CK)TN;(1qbIA_?M@yQFK=D
zw1VCWy3mCbbW>8-I(o9RewROiyDR9SfL&lm_*=LaoAiOhq<$myJ_<%JNc7`qjC1-b
zct*jq>D1@we%S^s?_hti86Y@Nu;_J#xdtm3qTnS3FDn?TU>H5&v@=e@a4Bbmf{~o`
z!`U1$HsI5jlu`8CO^MM8#z?POLT4v`tODYTM-t5Y0zIcp?s#eNi^BOs`xOPRDwwWd
zhJp!f=l<Aa1ydAER4_i2#Vb6M*o^KjIVa^c1yf~wURP3A9x{K3QG6pklG7xK7uMcX
zFjK)h3f@)lmXf+M@V4MAnLEzuY$bKAtaz;?r;@%gN5NdKL<R42c<;}jr(l7Cg~I0x
zzNetoZHGy`^sz`uT`gIxq^@RA<V2Hjia%g8xC1Cys$iM;z;eM46|9gfv|&afbFC7E
z8CQ${RI8O_IlNHziGoi#J_`O+@R@?O3XUr{p<tbY^$PYW_<@U^4yoW91=|&Tq2Nme
zUn|(g{hv+U>@aLmuu1r4K|VL&j=ojFS7{rHYkGV9^2u+KPA_kVlKSeno7)Qqwzs!a
z!7fqwrJed74p*V9?>S1FT$1l3$}f|9+2wOC3n%`lVDM?>pn^jR_Onx~oda~~_8I(Q
zyuF8aSV?`)Pkq%_@RNeoy}ToWM+G;u&tQA_b)D@wso)g12+o&+(+bWgxUAp`_X-6+
zE4aW~&PRVya83c=TFdsF=jQO7$Lfguo=m(*rMGuUkYB&auPWdJ6Zi&R=H;>cYYMJ&
zQhIm{eB12k=e!&2Y_Y`e9G~N{oqauWK1|@Ig1@+3`=R;qx7Zi<Bg2n>6!6UdzjS^&
zNl)*#4C#Nu_4XNs{K#6A__mKXvX|HTc#OY;IKr8J`265oaTP!Kf?dCGzABf$WpqCb
zihdOLgYN}~A0dY4yqsq|(+|rJ+n?%bz>kgHy`W@gfp=ci%ZEsW{oqp_B7PJRQdE%7
zC7{Te;_tE#`3ML<hz)yrCHyGq$5s_zskqmV`~0}#$5lT{`BB=BL4G{%M;SkV$>LEz
zn)^}CkMe%R{mAj7f*<A@=RrRjHFqoeQOS>eTVs7U#phLw-%tBm$;$i}KnVE*e(WFQ
zkbE%Har_`=`H?LoDoDlk<A58BNz@Zgv8o@{{HW_kJwK}Zk?Tjoj~2JQ;(vH6LT(K|
z-dma&Ji)8!M=cKN*;xAt9<jC`b^IXD6S2ULd<je%`cQ7)TFE3c{+qI_??(ea9`@rA
zskfmYO*y$;s<G-uel!;GA;Bho{FEJ~zF;yR|L!&O<J2E1()@JnrNi!?x!HBsI4%5W
z=|^Wjy7=*!AFcd&!jBGY{~D*YA8q_->&K0W-e<S71Kp~%^J8-&F?6*<{y1m0SGD$j
zbn9B}y=bhX9|Olm+eM>K`oY4_osD(kT&zwo?^9C3=Up<o(%6q@{di8w@9sw*Kl=L7
z!;hYRaBzD0aimAJr<t)u2BYM?+1XyzNJ<rPpE(m_<DcPp?#g?iV!WS}-`@|mt>?d9
z?&v5D2Kez&OK+eI`0q{QgZ&ud$09!#`!UpyVSc>j$1FdF`!T|g7ui&4$?k#9NIypT
zv8uV(VU07|k1_PsN4>Eu?X2^H@NsnS=H9VKz40O%OA<_a*^gKJc+HR3rJNzxW3RIC
zv(5xRCi*eSkI8;a@#DM4^BCq&@)#<{lZlhrjIy=yGqI_Dyy3?*Kc@TP@NLm7@OJeX
zew>`(5y?qrN|dRL&i3PNKjugqO5GKEhn`==eV5{29vffyLiFxvbgm!s=<^5N`Rvh|
z*o0ciYQH=0`LV!{h4j+-S%KpTcY7Ym5<lMe<43wW9mbEPer)0t`?1WA<*a3wvq~I^
zg&$dzy@G4dkCmLGMcJpuXM7}teBuyywI6Hz_*g1st}p%g#E(xoHKMR3>x8TooY%D)
zmG$(-h3@B~Y!Li{OQxmAq>X-L-u7PDkw@IZ#qP&WKXz=-{)!8HqPN43-%rIzzV>6A
zAKyqbw)=7GpHw3msBmoQ61)7^&25UCk00Oru~&xiJHa~x%OT~0`k+>FpC3Q?!Bu%D
z%H?*zkAr@kps^nl-p)J3rNoN-`0IjuSTK2&ce^_e)o_o}y}MRB#?&6wjtg&pFiPc=
zAE*5|@5co{)_t0N#*bg<gsYvie*Emmlh<SaewZK+FHa0=?ww=TntP*LWYpQ?T=e4-
zH=@JQOADODU9rpbkmC+R<Sy-+pNCk`TSXrgzxweTeMUu=iW?jg7NsJh;txOm<Y@SD
z+mD7Vyqnw%&+{G4vC1vHzqnCw^Y`OlKNxM$v)Ub!@w@Y%AB9x-Rj4Wot7vj6+owWN
zQ?1HSk*Om3V#cR`dEF*?l|IW}I>BrBRqWagPg9|*FjPRru(PqueeUS3DKwd7pKGbG
zRa9+}LEhq2Y<DL&pdzRuq=Hdyi9c3J8Iu=L@x!5LDHWwv6jf17MR65(sVF!bD?ZV?
zTg5%x?Nux;5-XvC#WG7t6&J3jvOjvzCEllk<<o$iyLuTF6;xDIQI;*a<(3mHFZkr4
z1na7#qE#oivfw8-z57-CSt(9Jv5JZZq&*KxDiuD3DVrmpqMnNSDqIyY6}40(RCp@l
zDrz!IO*coy#l?y0Du%9cwv}_Ms(84PTTMmJuVRChEQ-03R71tiT1iHkh1+ax72CHv
zby?K>>^dqwy5{Do$Y<Zx)KX2dC0#Q5?@Fy!h9i?a4n9c(6%AFiQ}MWpMk=m+UHB2U
z<V>uwiigzH%4(vb>)&286=iO@O;vn5Hp+o|SSFN{7|BUKs-ihZQiap4+GFggkd}hI
z?VQ#s+NdbC&n31Mk!JKsDkSY$*FpCQ6&+M;;-c$Ot)q%3RrFwIRdiCpHPwX;Q1O(C
z&g%a@=J-K&=fkcW$Kj#e?kbY<VaMf0d#)Om&yS2=9N~%H(`srr&YJA?Rq>39cU8<$
z@vMsHRJ^R>6&3wd^rv#reNn{#6$4d_P%)Anl<Y&;_#*D}QpjKx=KKUpW`RRRXVNeg
z!_&O&DI;<^HcG`<72~*?x>g&lVvLX<yQV&Uxbwfjac=H%M;cG(Z0<F#l}}{tFRA$D
zhBLdS`>KiwDrTy9OT|PLli2r`-V7D{YPyqEOjWVIYqcpHnVHUOg0BnmqnQem-VlRn
zg40#7K#H8lH`UZu;M7QPz{mgVty}NT;`030o2}w)nPSfJJ3_`+iqBOsPsJJ)AFG(J
z;yo1~s#q!Z+&>qnSg2wV*AXY{P$Jy3TFLI!marKrmWuMeSW;Z3V!4VHD#*XR<*^DD
zPQpM!NBxKct75f^^R<!>9#2r2_q)d#Y}_^P6BVDb7b-qi@fjE3d3Wij?m88fAM@6#
zsjZlVYpVL%Y<6dZiZ4`rsp9p51Ut*|>~PcDsDia@lE!RSu|;~vmax}s$=52jaRq7E
zrQsW{9ThD#Jf>j>MQ%760!-p=pyI5GpXvFmRK<R-CU&!a^g9(la$%N@l7FvauZZOP
zg#5rYHNs_-$TyK4RB=efF%`$@b=lFwDl(QjKXEVG>dwe=$&aWwDq_|%I-?9HRJ_>J
zJuTu%!BgBijukNJj3oW@wBGRF*e@#1sra4SHOG*XGR5tB#JR#fjeCfSODZmN0Dp=#
zDwW5#ocHFFb`r_W3*D<KuBo`rHB~zK8<$U$IK^MN(Mf7_V*Ccjys<abP5i0iCU<fT
z85;gl@i!;yP~xpNUayJqe^lI7@t=x+RoqfRg|BHyCX&CjE@(X0UDhI_kcNJz^Q}G!
zVx|V423>=pfv<s3H2k~VQ8oBA+}+w^ph!g%z08LRa%iwLC~Z7)Q}iosz3O`%DnSh)
z4RH-Q8p0YP8p>%Xuc3&Bq8iF*D64_TS&M17M?(qW#RcyYyj$??cbpIVc_lRvO9|eq
z;XWZ$dLD|6+vJwk(6fS0vb~?zIWMtckoV#suY!h(8mee`K*PX(UL_4o>NPNxbiW2-
zWtLOPyXURMgBp$x@Uk@=?e94nvNY^H6nlAq*JprtqC-YhbXPDY=n2yJk3n8l4b?Q%
z(@<YSbq%>1@-^^oclIlzidREJO%1g)B-ragUL9#kn=g#o8rZL2?pKI;9PkARroPhO
zE6|YCP*+3i{$5y*E$r_NsGz&gdkr)+)X+pjQw@zY%q{A&<+q>r7H@MKYj}tQIKV5e
zBpBtGG?Tg>)$p)%<lh0_BSP374p(y-x)#he(5trDX~nuUys2TPhBg}7YIsJ&vl`lI
zcw9qQ4c)ZVCBF6=c%x`14Sby16B;@QA@8W+$^XyyrS6P=isLL<c;9pv4SWD2?@I2j
zf!Ip}?~$iX4-Hyby(i5sI(&W4(;A4qHT2QIo3i@~-kYtH^A`T+=${(KY8a=XzlH%C
z25ESnBS~^Ko6mydt+l)s$2)lkvuj79BQ%WEFhs*p4Z}20AI@30=w!<4itdn68b)j2
zW6+qf)Sm{+8N<2zE5>G!zo22fH1#$5iH4UnOwce<0~_<Q;45_OC%sDY0-#q#;Y)=k
zY2e$1sNcg^z-XAlyk_p3pC*WWL(uCQrfPUY!!$PX32%lBn(?Q>_jXO!Qdd)X@spP#
z58j{umWEjxR?v)VM@h`q@ScVRbQmtK0p2?r-sLi{;?2=8Pn5YDdTex<M4T_4L+_0Z
z^cHGZ#D%%US*~GIe{Zpd55#X@9Oy04u(po-K3h1@8+RzSR09{zvb0OkNgf^Q(zjP?
z_(<bnQGCJuc9XM8a(yDLTFvp%@Ue#AI-^$weenRVbjJ)9@~MW;XvXEd*;&U)ub{8j
z(7e3PD3|BwoWxBojp^!NYS^M-tA>rT7B&gefj7$<>6hVsrQvI->l^XsZK6-@=P@ka
zm%UxX9L049c{?-^hgM4LraNgktm7vgdo+AUH`ei-j_>LG8t&C`pN@SRe&C>KxTWDo
z4f{2m)No3}0S$TCF2i9V2c^bC8cu%^qxh4CBcdGDa6$&3tM!-$j?!_lXS72i$w@g)
zhnMB~n})L*e%5eR?0?a~8JV7y+M`I$X*e$m`2`IZ)BKW#%V~Z^GSc9h3>q_D7xF88
zJCS7ch6c{j@9f16hv5&dnl!)3Pk}W5TgX3bPkEhYw>A8yp_q>1ItuA1tf#Vvb#O-R
zY@Qi9GIjWL>}{OdE)*Sp9jXp;OHdQk1r0$6(!kVHjzq#>ix?0L>Iey;k1>fmXGBL4
z9Yu9ycgf>6%fQj2-`=I8qz-Q2ck8%EM+qr#Pbr=5&5Yc#PWSVeT1rQ09ZhsJ)lo)A
zSsitC)YDN;M|mC9bX3<dEs?CCBTG;1#^e=6sU&#6j><x+2tFYApdc+B9rFiyBwQWY
z<OOb2hpVF)mz5xiCnPSIqoZnCryu6(c=u4OKu1zX4ISLW8EOitC72Mbt)q^RJi&ay
z8e+`PrY>I?+|rAcQ|jwzpretF#yT2GWB6Id4;L;XF5$NQJdO;V;UPWc4D`chIv&>X
zl#b3i9?|irjt)9H>S(T`g^retcFfQd?#bu9#(!krnW@Kgw9?U<3#3v?Y{R<#$Zji0
z(oV?Zg6##L5Ofd4o)qU{rJY#CCWreETh5i<MMqZ-`<euup_|M*Kb5-c;Ovw1&{Nn`
zu$SP|g1rU%2-2XhkY~gJ811K{zm63YbqvrkP{$jbFCBw)Jg;Mdj)^)3>lmVA#+UAR
z!J&fVbPN+heYlVjIz|c^mDWe=7?b8>bsYOCO5+zqS(!*O`XX!j(tSzC%R2s^=a9dm
z<Ii@{R|QF|%;+THujzO#CpuZj>G94KQTDcrQlZW3I;N)WnL3^2>v&toJ38LfF;g<W
zr9<EA(w>1CXX%(N%Bl(()I))+cXiCs@t%$aI_63e_4zvHaly8WcE9Fibc)i9xfV()
z`63}y7IPT}vKW>Kd0+4Y9ZQ8Q6I?Dx8`ii|$45GL=-8=am5$Xq*6CQUV~viFb$lvA
z!P@tI>Fy}(exl<*JVibeon$S0^nybJj@aiqzLdVxc!Q2F(#FiPQO72UvIM4Xrt=Jm
zZV}un_?6(-g4=X_BZM~Fg)j@lE_R>Ub?nyhtyHu}@O#1U(p8ht_y@_jpOxzPQ51^(
za@>P5<DBk8I@lOCo^HVQAJK7C$AbnO1IKh6*I^idffG7Ta^10T9j7?sI?m}huj7o4
zvpN!q=u4BLi<dh;>)1Lg%F`piaF4p=+$!ca+8e!~<D!mhI<B+jUA@t6Y{jzZB^{S_
z^eP=?xT52#o;q_vPW*xQk?A1b(D9oPa+dRZI@<Zg=uI7e>A0=qKQZ{5dt*iSUmgE&
z1KAs`J~K)@xj6flj^Kq_JL9oJ1_~SS8@!+t%`lK@qz<$wL@oEy@~F>1emC!G6_=cc
zTbM*M)qp1U<hp^euec<p0n0!M10@aE23SQA1KV!6eN;DKAZQ?DAZ+j|R!WH&=shWV
zhw~&%Q3J)qxVVA4h1_MJ+4qT6I}<E{;T{9zR0eL1o*5av*T8)SN*O54^ZW)X8z^I-
ztbvLKDjBFb-YsXKf{^lp4=;^UT$>Rkp#kx?yFDsZn6aYUzh(3R14r9t+~HfBXJi@3
zHc;O{0|QY5u7O+wH4MZIcm}GmwSQ#u;LzOXoy$B|LpS)>$)QcJXjQiVUN`4}`|--`
z>IQagjqWksnlc*sd`{kUhew8L8AuqYZSZiy|3aPtP6VgJf4~W^C@3(HG*H*TpiiO<
z^$alF;l>oVp@BvQ+8KD<Kw|?B8E9!>LT7ixh-edb&A=lDW*v?-6>MhU`56wA9+fEd
z=A7#T4hcgG109>BGCpRYm4T_}U3w;Gv$cUXGOcX|sT}<_(cZul2A(p|*+2(ol%cEl
zu=gZ&HRf9vtyL%5NjRhJhPyob)WtwI11o1oyRr)#UHU(f(e4I%7#Lzk$p;N|o~APx
zSZZRKi9QDU8mI*%fM*Om%ZUa`0nZueXJDCu<woj;-2Mh$GVrqS0fGZLMC`1A!7Q20
zHZab>Py@pZj52T`ksMB!HZan_@bmG=i1<^39CJc^|6BPx63IC?ozVuy(4{ZLBX#0b
zUjNK}!N7O}FB-V=P+XbkWS-7Gb~(GCNRm<V10$VR3`~@&4_0(v<rL7v*JNv-JG_^C
zl7Yzv?-Rsp2Id-=XW(@XuYnl`-jpn(Cc1AJm}X#LcH-{o?sU%Pa~by0#Cqh<H1L*z
zcR9|dommEE)1#)l?-)>PCzrPJ-j*!n%*Zz$GU;q))*P|X%O>X=c+bEG983e{Dkm2h
zFz?D+Y+#{*MZ!Pa5NDQ3wUbK>yw9awJ4q$Om!*}=qvewOlT`lLnpk1rLj#|%snXh&
zg7yEX)yhqNL|1W>s|>6bvPSTU+R2ZF)O3@diSZ!=hYhSXu+G4G1D_lC*1#SE8w`A5
zz^I+r%=Ubr_a)cVw|N`6c+V6By60^&(DYP6??qm2#hfh$wi@`#z)ydByE#5fvq`>|
z=r#l22-z;ULy)OEh3pdKKSYCTCzH?Qd}rW$13wt}k+ZLBd-+;d@`PG-y7SWep3^Dk
z#B6WBfde#q$vDVu=Z5p<AI`sf^KV6BOWya?Kb@Zp95L{p0Y2^EC^vrt*9=@YaGaYz
zUCY2lE^q^<4E${17XzmaoH1~gGhRFS>bH69*X~B~>JP+;&n@&Qo-=S>QhzR8(0W&1
z$ub3NYA3&|oxDV6W8QgL<d+Skur~j5fcZ?$nB95z?#r9B(EBy@l3v_2@EhILK%{KJ
z@2OX>r*iG8m~34=K7E{5sbY=44E&vXFei#E^7cNMyihUuPwG+4;2#j(uf>|q&w6E%
zH>+CwHaor|pIHh68Gs2`0M91-01eOq1$bze<4;}ePp!L2;j9gj=*+_j^3d=+?tJ6`
z9-i$i4rke4$E>XUp0}&pKmaHP6bFLf{kiZ?7)8bS<9!Yd!W_xcZUiVIWan9j(KQ!h
zOu7rW8z>3f3)}<rneE(Y=QbD@Cn>?^W#y9$yBs~g*QGI|rGYYl17t}H%L<kg<f}s2
z&hkjz!cYOI2vh>@2Py+kg!3K*O8k_~qcv542Y``3#CVE>XB(#RK7}qWZ_{AjY$>OP
zU=%oUHRb{_b_a+9IY2cLtFi%`oEa^>X=@ykm1kqsMW=nP5MKGL3H+E$wI}Cqr#4WB
zBV!_DA`i$1-sIo_1waz$%dHQn3)BNz04+IyYqINeB7i2qM}I~e01bgQSE3A!fW~QF
zXJ0(;bEhe%19*f7&w&M%q7S?r?J~`I6zE|`-x{3L9OyaU8F|HFIYlnI4W4%%V|Jh|
zK;BBQHBjzPhtYPx<3LxS8_=GE26O_R0{+V~IshGkCxO8S6FlhB?MUJ?H^IRqb{6s1
z9Hk3V_t)?Y48>ygW8GyKdjh@K7~sMQWBpLC%TSMF@-(o&Y2n_$0LRU8<9)<(`X~=|
zlFxGU2VMkTVs{F1`vK3hd|*%?w?FNHfuav$%cmFq$I7A&--bK{7z&I9s?2qV0ox-k
zlSTu>g)=&WGoI$70H)rt83TM>G<r5KK8}wz;oUL&V=n;Xg|jF|Uj|+Q_!{LYz^nAt
z@-D+fV1jTOJl&}9Br%{q8Q6L&M&s9j*F~HPY^df=1KyBmvva98GEWzAh9FaqtaRQ2
zW&vk_v%qZdJT^7~n}K(LcY*G8lB<C^z+B)%;8fjs_cPh^fQ7&!rk=^354^`=0k1k{
z4LlazXB1FeOt(3a|32`6*eu~fsFS>tcPX$OSOH8s;w=NX)eqjAV3r1Tl0+7=Qfm1~
zaFyWN+6m@e1AI&;x!`@mDFZ$OM(v6Rd&JiQ>wqtSFM;*I=k)d-@eNWV3uj<USON<t
z-^h-~lf$!;tcWkz-NHc=2RICT#pwXP2lfKnfNy|3lC&Mz0qg{JNz}buu&RsOWpd7L
zi9X*e|63L^DW}RrcY8)IQ@<0P3Y~2q@B<ekU5?-14;pV?_cpEY^j}is04GH(4{~+S
z$?v?vqj-LC%0+(yj&N7(;U49R22KLUfTov?;~dp5oqOL&{29nPMQ@B`oR$)LEKR&N
zFIw!!*sj~LIrkO(EaHE_FTgqAJpCWI0sIbJ1TF#Bfa}0z;EGsY<=39`&VMJJ<^MUK
zElH5jtC{*M@S7MgmG9$jFh3EfocIIy6Zo5M4BP~UwekL<L*}b&_VqR%FVP>J5dRmr
z1>6SORnfdw-pxWDU+zqU_CF^0cS9i)g-v9b$TXpu(9P6t?=zv8@SEU2o4@T)R1>#O
zr=ANsaZBO$Go7c`B@8q5nPHl+Ol<x-<Bem5CiF@@;M6t|Fj4(dMuX1kjYhd6HhKIo
zP0sPcCL&Vu0ux0{6gAP##N#H4nJ8|eriof6?lN(=i7Rzo&%`|@N|-2bqJoK%Chj#+
z+C&)>_nBBVN#V{@N=hSP;JtxmCCb}B%bBUWCb{iA{9QJ&qKQf-91~g8&D43n2TVL@
z;?>33mCe)+R>cI(NT!^2A1&?ju1xZ56HybciI|x>HOIq>{2bwi#w4EN<4tO;C~hK$
zooeh>l{Qy1v1My^#e!&ciRPLxnnu}|8XU=GDUvWzn|-gJ^O%V`-26>6Hd9+fzKMV5
zWi=EmFp)G-*92e1&QRY(Jrf(PEOO2`u>ptZ^8%7aV$X~ZG|YX-L=zKDO*Avn!bI!6
ziHA)*V&YNu*F?V!vDH(&3GXDh%h8cmeeDjdlK;cFcuTSTZCspfXvJDKdadaLTf8<V
z8ZPh_hO*kSM`N9nkyv{ZC*O?r=2vtX<R?sYFwxP(lO{T)#s_@e^HV1HUgoYQx|!%~
zqKk<yOS$9fB=?wE(U+p#P4p0ho+jQsSHPr|gB{`>LjJS~Ch_IYeN8-L;x!Ymn|Rj5
zb0$Wb7{y+g=+F5w`P%^lObj$J$i(v|7BqBYs{2AO_nzCSPgs62;CF`2%MwFP3^Os@
z#0Xj*a!%fgz50zq<ATG^>}?LW*~j+BMw=L8@+v)EGBMV~I1?|J7|)ECqx^<5w@$Lj
zx>SM8-hXX^-%?&S@d`bM<MWPlpPtJ~S<zQTq7zI^G%?8pzaULE(e{+Hdyhj-GR4I9
z{~VI3Cf+ddwuyI4Ofxav#7q-!nV3Nz*q7a?m-{At{&tKFn|jE(zR#J(;W}*0Ht}$d
z%G9a<WHYtR_2|1M=9rjgV!nyFTzbnAJueh;UoOPdF?Me0UWFT+Fy7<ZY+abc!dwew
z$`%Q7HW!;%BGXF#zKIWnZz>aKbh(KYY?Xz#EPQBUrHL~p&YJj$D^9Y1C%BsHMF>ZG
zjfwsH5+9p9aE?gTMCQ)KrzWOuNYG=My4J)x6YEWU&XF<km5HxSd_l)Bv576`dY_-o
z(^DVyb~m!jYq6=<V_T%;BG+QsOB2Mcbg(4}9@yJv;u{mYO?=DoG_k`>9j)1AVyD>i
z98~d2?wn7v`2~zRt7fjDla)Ots$DdOugvCQmG4dLrNh*Z?=$fun{DC;miewXrBqJh
z9q)jNgC>rdIBw#Qnff|(#Kh$3&SBv{2~vE!Q}pKFSx4D;FY()9_sEg#6I>LVW2d-4
zOfWj-uAHtvIH$R?e#w4ibL`J6smA<l;!hJdrK!J|IA`L#i3=un&2=twuMqvB;3dID
zA7xxMVefE%<vze2<KCQWCa%*H?#oR);u3F|SiavG+06T$j&vmYN4<E>weBAr?K;UR
zt=+#&{LLN4LY{?xxTd(3S#T}fGI5)`hlP7A{AZ$&1;a{x=`U;{!-8gkzjtmfb~7#b
z$t~>M>iH~W4ssL=OOHAvbJx51C3Co+Pcd?JvA>p))$Rk&v|w2%Vxg!7+d{xX*h0iY
z(8AObIUx)4Cq-|)rL~^ttSpg}cgSIu_Vc_l<D7k0V)u-7idiUb;Vuggzwcey<mLYu
ze`Sf=aY^=X6WkION?Lf(!Y6M#_gc8mLIn#IEtInG_#bW=3uP^ow(#Qwx6NyAi-Ar#
z3-zp8<t=caMnB|HtW*#quVmqV3lCUW^i*{1hl$D-s<5?oR;W_!+!x;JB~HgCUU0T^
zJQ-(2j)g1>Bepr@*%rPEXK|&E_$3~*kZYlag|$~5&qCZn4j0QUr>ceOLaGUN3G(^v
z4nwhPPE8BH?RFLpsFko#%fcZew#|-HuWe!ORj1SNluf>c0t?Ss=w~5mp)R{-p?#_&
zsBfXUg%%bXSZK)cu~PSVHnPx|9e3Pj79JAP#6nXG2PdX(KHXm@QP!8sn?uQOPjlN}
zHXgC?sD&xtWiu~RNm^QX%tC7mZLHL1eJjEL63RoFS^MU=%4w&qg?1t`b=Hj-b&@A6
z=tG?D7J69dV4<UhCoOcc(8a>0&9N~Hou`=PW_D+bKbF0CK@P>8e`a^J(2aG)6MO6B
zE?n+W>1m;tg+3Pc*GWEY;fE<Xy#>#gO%~gg|3+p`uT#;!7M`(i?;#`DF!x!GVVz_k
zFG=igVSt6n(zbyX23dH)!gveMTNrHdUM-BaFoa{Z&NsrstBbOSa<a-qhf#mXV;FAX
z?4@iHc4wpoI&=FU<74P8OPsM5##wmpN_O}8UbS-3a&x>#esV6Zc3!mb5{t4h!NSWH
zw%>4Gk=mc)?FN535B?FQ@kEaBS$7gA@siQ@kV78)!rORv&J+u;S$LhRz`_g*BM++g
zA20ldg=rS1bC&lwH;Tk39!q^}HQ4LkK2i`}>AWe0Ut67+Wns3(=Vjq<3vXL^$HHgq
zi=@75VTpzJh0l?tG1tO8t}?dY!WS!@1r`=^WO}*$=vl-i`E`t*T&-$?WU)m1`|>~F
zqPDQgLW%LtG7HPOI$n;hv{JtiS8)Hg@W(x=-;ZNUr0}V2&PNu^j4XziD@9jZSYzR1
zR&AllHHW`Fnd?(}<1~jqGxr{JcK;G(r`FNoEgZJ6-oob=Hdv`6CA|2ygN+parN!?y
z*koZdSDA&cE${%$77JS?l~>zpUWgMbXJ&1)@D2STlD}Q>j>yug<R$CpC3jlbWns64
zZ!PSjFIkxMKzxsd?`4Rri}CM7;T6BVqIAtmUFG}HN?jY=&;9VA!3%@09f=*_BI0hd
z(`6%xyf*lgg(DVzkz6n2C68J-#pyecc;@chV;qFi$>Xf<o5Ts>CoR<ZGXHbC;I!DB
z5j-pSGe^KKpgr@RvoLf?!Fkqh;i8309BNSpZg(zQxNhNB3s)>$718@FevRwy{ero9
zNg{pbHw!l`{LX#P&1V({+E8coPY!Zkl7-)t)MI(ce=PiKp}Wm10Jz0b<$hwLg^mBD
zM@4NEvr))SZ32aDWZ1~G;j^LH(3!L;uGsL~P;KxC@rF~e%yM~u<t4Z6$>SL?!v?6^
z2-+}hST_3fOI`2!XNb#FVYZDD`AJ^jB8F^KUFbz@6tNK&&L}N;*@{=6DsC*e-XLDw
z#$7gYm}>K8aNJ{~l8yUWh>emq%G>zkN9SG}_t{u-ELPUWsJC)T*(hxz>#O*{B3Wx@
z<d?BAyiWn6cd(p|nLlMST0x8}+MwBnogT}nY@><|*G8kS;t$w(&_=e6(6QKv1CC>Z
zm?cRh45x;<Q4vWPjoI+hHjKt?)W}bU&v?~r@XA+X8_(Q!aw*y<u#vP;(?%^Dwb}QD
zUd#Ms!UnIrxtj|5=O-tBQBX(pJV6@dlPvN`>e^Vhz^iZL{k?hhY^?pVphfu_-76&<
z*l5TRSm-sfQT*Gyvb*v)fX(~mJ!GSajixplY)w3D;}ILJvlGoYhEbP<A_=crKguDh
z6eDkG<1rgg$-K9sv5hBebg<FJ#+K!7TN~{-xwSnfE4nPxC3&1(Yw7YQOnVy_kEVXh
zY`U1;(Z-XUk#o^Q)nnZw(F^xSJJ}$9oEPhCql=BMHs<_Mi-BX(P55&M42GUIdT|_V
z%$5c`EjYqPZyWqE-p58?4x^1{Z49$fcdYlEjea%;*?8VYe;Wfhm0~%+ay<5-*R@}?
z!&r}I%sbe|5F2k-jSrQKS1wmSQaR3~;6#^vIDPfHx94D#JhlJRF>H*sF~-JN8&hn&
zW@BYRVw{bMHYVA4f%?XR@zT5(1z!?;S&${XV&l~`pCDvnt^7%xSx)^kIn{RNeUzWf
zY8dC~(^qe$K5<^RG1W%%(*<v&b4{}`UHA;aH`Dq|A#Vxt4u!XEyu;zzm-ybsyBtXy
z>uv5Qm}_I6jTJUNv@zetdo~u+J!~wn;cShqZtE_xQ&)W#+Tf}@@Lzmxr8sNnLVn-I
z2R4@4Xtq6%;xZe{Ipa6I={*ac{-R)NG<tKAH}i9MrHzkld~D+r8>?)rwvijiS;Ode
zdFxB(Z#o_0HSH?bW9;mw;=`ZOSH*`ff0q}S<gMfW@VnQlOu@~C`Md^xV3)Ij4rXJk
z4e~E+d}(7Nr_u&5DQxDH4R*dg8{3<oB;hyquWWp6W2cQ>Hn!RLy=xxBcAKZsV&B-v
zFP3{p*&)2bEADP4Nh<js8?PUT(%?HA8}`ReE=^D*;VkU6vCqa2Hh#3hUt9ax7>-*w
zi@y*L+Bjt6utb^k%Dg=4d73ftT<Uk(Q5(nT|Ch~6m(AlgPH+}<^K;!iY2y?fX%NN?
z!f6|4Z1ik^UJY>8#?PFls@PB!zt}iu<7#<aE06PBCR}kP(V-+R+PGw+R0O3XxNPGJ
z{V<%`jj!6cW}{jN)kC;$<5xOl5R-%W&BhJxkOABiK>eET@7%Zo2nX;7r{>Y<pEhpV
z_{+xMHacC+FC4%>HoDiyzs(Jwo*?{|AjRi13}T@GYSzfVlApZtp-0RJATt180C%Fg
z5G4S=5LHkMq{>WQ%}?2U=oupNqCdGQXa!&k2?$aT2A~zBs@SD?wJS#>0Tc<KXaL0m
zsm?CXjt@HL6c>J10IS;;rpTanR!am>GJuXjJQ>8j0o)hBLqRkNqErB-1K1G27Xg$B
zplkp$19&TdasiYNU_bx^1DF<%R|p^$fEPf;04fD=e*l#Oh)PlwLE1bh<N?7?bK+E-
z0J74l*#Ue!OQXo(idbWo77rjNfX4!86+qPhss)fAK!K!I51>{$Z*BlJgx5?f&7`PA
z0JTM_lh*SB*dbN0mSg}8185{kbpxm;q<-460mo;QN3+HpiU1x>>rI3-3!rIQIk{AO
zIL#jkAh{!(xtfd8BCWR+Qpbw54xmi{T?6PAK-&P?iQXxI$J3S_0%)J+PXsU|JtiFk
zcrvYboTWV_yt81JwEp1i)Btu5pmzX$0_Y)nPr+Vko2LWdl~S7Z73Dd>X9S;3+c>kd
zereu601gH12L<qa0Ivk_Y5;>p87??PaHt^7hS7^;az_L(Qp8aKypT>E9l#jjW7Enw
zA!;l&@8bh_QKB!UQ(q47_jQa(Pc3x%cgiD~5WvI$CIv7#ZS#hZDFM7D<aNQR>C`*9
zrb%?V;0(bxxiqRIS>UVyW(V-0h`UF5ZwK&B0PhAsK5uY>26H57X#jHrm?wOG01E<G
z7{GfHeQ|55@r#6$d=S85;Y-rW`vFu~mhz=no24unmPyib!4-m!kM>pu@KFG(=y+mZ
z@`?O4lC)m%V?pNqgzGne&m_7wfOSGR>~~704}6~H^u{j(*ciZ#0Dc#7QvfFdI2pj^
z0Ja3MRm1}U91P&A0KS&!wg7gq`vH8DE@wMeO`7iv;O>4d>-si;JpufX*1r?7H-PWc
ziubF!FU`5Me-yqyt=w_!Ljn9G%HjW`A4&700UQ&4Jgq!COFJb~!`ZnIz-iIXq*KoZ
z@U!q=1ka`Q^8rk~lv<Sx7e%}jz-8{40bG^nZ-UnZuM5)hS0Q(tq=*~;BY;1-Uj=bs
zsCP4fzXFH^Q6z}Jx%mfR1ykeyZveLfP=()4my;31e`#JQh{BRe<0j>d%ry52Q3U-#
z(A#OCNtFAE9)yv$<bS<pn%^gmXG=677!(Wz5f(B=c8{V#6bqtk5amQHE_iPccL}*$
z@E*Yuf~>k^5a-9HmfL-4rBo25g_lVy^y>0KR0!h!v{F$>r66jicP%c%$|6=t+dL4&
zgK6#rvATLbYsnTR8iX4}EC?@%ydd&}h>M;ZM2#SFgjW@;CdiD{gQ!@LTEz@CgQ%0%
zYY9mR)(&D;^ndH_j_Vc#QD2ghf^`L1LcJh%F8$wUP=g>Eiry%l+Bk?i+f>sang!7+
zh}J<o9K<tcvmXtjc@U2XXLRBrtpx|Lc3#UM9t-j&WsM?n#YWzpr%`VcMB5<R2k}G@
z?Si2Gxa1|7TTQ2N;W~LFj52fxV&ITe-cEFkATmGjMg`G1h%Q0&3gYP?x(4xf%<C3J
z(=TJg-t@NQdfkOH+CxZB!DFG^-a+&UV#{f7WDtE>V-Wp=7!bs>L0mZCJ;(94a!FRK
zj+6A0=s>?WkkzT)q%3d9f%qWdj6NU4;2?%bbg1Bc_r$3W6FxkM5kdxJdK9PL6KAEP
zgBZiX92OrN#EU_^6vVh7UI=1*5O4gGzvO#Qo8c|}uHerfyqD_fF9-2z5EFu6^c6uG
z+#DKbcH%@Shh$0+uQ4@<n?bxD#MB^G2JsOKq(P96i^semrZZ_|d`1v&25~t*cJ7mm
znL)f2#8JNCk-k9(ZkwO?RQ}syHam#lABod`;Lx0R#D-bs2&o#+puYLTy!k;a2x4In
z<nIacOVpwu&a80X58?y*<gHqZgIGcz?&vl-P*ATR$)u%0EE5~@GZphnyj!q52;vIC
z4+S6Y;I87Lpji-SgIE*9$3dP&#E(I|(>U=-5W9ld9mJ>X@*?-MAl3%4E{OF(-ox(f
zS{MDCGxBR}OAuRw*bu}QbdrMP>}k=WrK4X4LEIR`CL!dTxxNm%H||cQeig(H(Z3el
zmbUpu$acE%h8WFuN_6`CRF-eKpWNj(8Q|{Y_VQ(PPY~Y)@qG|`MQ0Kp-bL)RE_>u9
zXU1RA{hX;)&fy?_;uadj#P1!3gF+6m%Rjq}9tq;q2Ir_?tF6wwIniUnj|Xugh?Bx;
za7sw6aKY)cB}LvN^K%fFIK@Hy62v(=*k7^pbnGB5(#P^sFXp4tai240Rf6P75E&Pp
z>p@VtDoF7f$<5f#U@pa9gJ`qe`7MYWl1k-wA%6r@_vtVisOA0@gdTzs!rwvs6U4vV
z1YUL+3WrkUmPBt0{ue|c5yvlAnUo=%BvXhl1SJIj|1nTQ&?Ne{*z<gk8NzEHxZm`N
zS|QjWlnmkC5CS0tLpb}Y8VaGoEN{#7jGr!MJod8}4j~dkU!V8*yex(yAruXPq?jN{
zaUpkwaJP_q(s~IY`8B=!LMRo26T;0gIkcagXOs@1ObBH|C>O%mf+WTAVq7Jiw}Oz0
zf|WwJUr6P2Doc1k_=AE*ag8NpN%`4=tSB0SD?BFX3C7c@IYO%5Nm9Jr5Nd?bArT9P
zQ8R>EAxz;Ag^&oLb_l&g=o3Pn5b{E38Ny?Hfk6lbAv`R#CquZ)AFmfe{SfMg@YS{$
zqr}?Rsy7IsVF-<wv3R_7@p#|j@te2u8;9@^>%EoVB!t1m;!Q(%^i~0*wP)rv3*lt(
zILRXvLuektQ|%KA+b3FZPXF@`X2e@{PMlhn-ztRGAwF^zJwj*`Lfa6!gm}O^{^gEX
zyAYmWN7%3s7;P^|vZYWewPOfRisIiBW3*E`^{Eg#3vc#qO79v%m2YC*1W6{|8$bGW
ztY-*M)35f#8kdOo3gKXh_>~gzg}Y*vcgOmM@C=<QGmEFiS~SUjHiQ8o3=HA95E$(z
z*k5pcelC?kAv_<#h!93{1VkSe!tfA=2&chNA#W8V$An{y-cd%SQ%8qzr?fGmj16I&
zkQYLDRmgb37X@Dud|8m?yb?l_jtP<pqD&N=Bse*3!@^$=VQMJ#JNH-!Z-g+7gA>BW
z5T=JPBZTE4J_-YGhA=aPc_GZ_vYq0-6~gQg-WEPfaL3Pi?}YGf2>o7j=ZZ2XgpUi7
zG-encF4$X;WYT*fEC^vq2=9kLg-HuTSi~tllTW@lgl63mBo_;k<4(9Ags?P(WoeN*
z4}Mdp&4(eZ4B@j7)`sv=2&-6E2%m(oTB=?n$TEY;R5`u_QRe+rY8hTmXCX!~Ro%J}
zJ`Z6-2<yc@rAuqS2w_+^k3BloG|Cb-g|In<??U)Kge@U#4Pjdd--J;3u$P@oe#ODL
z<vw^Q`|A)|y;eYSu1U`J5O#&IJA@q}>|`U~&wuYk)ESjOD4g3cnfx}yfBd~Y^yFmn
z^+TybPQ013H-ulGuJ&n%ydUV#Co=ZQj66OeLFGsC4te_p4+tI<JS2EHgr9^Q5v1i&
zD#IO;;~|`&IKVj>LPi*wVVnx#bcjd$vd)B1WQ22-v;R)?YzXTXX8$bw7r}Fa=R>$4
z<YEYyLbxpair`rz%8Uz7McW!tmUE3)fuz7+1%C_SMhL%$@J9&$i9(w{x!Z^Ek3??@
z{w4Uqw(Ng}+!nkgNc)}n(d>c@5{5!y6b`2v%&_E~(_&bjFAOydEsWoPt)+x<VW#R2
z<L4R9m}F8Hf-uZ5XlY24gsD~-b{K&$W+jtU_RftG8CXatjBpqc))K};VKfP&Xc)<!
z*=55h7e+DRj20JiR~UB-xhISgLP`pj3gccO_X*PeeEAr$v_#7YI!}7#!>AxU5k^HJ
zQNc=rw7)-$%EGG%K9JTQ48uwDEFsx~{1=S5T;Z`WJRxyG>N#Ol6<#e29&gPJ<Kl6r
zrYJRp(}qedQAikNs2xU~F!Dsq7pyN>Komlox?$7{<B=)~58pD{AgwnHqfweS7D9uj
zVKfV4Ko|qVc$m4ucv6xc75u_-+X-pTSrftnTMBtBj8<u-br@}gw@oW=OWz-tX!|fv
z&!%RrgJ8$BO^Ka)r!bxhqjMNt!swgUy9((UMz^%mT}Th<6wB!)(WeD_3-%G5ax^vI
z&j^23kkRMD=$GdG!#H0oPLW|y7^A`%ElJOZF*t2AM99!EhNYF^LPiLV4CC=C3bT(%
zr@ky?tl+pXUJx=~@I}Fw1ZVF|&EPA-Ulp7nI8ktt;ABCXbvP7#EsWR0m>R|#VeAZJ
zR~Xa6m>$OJFxG@IBaAo0SP;g-FlL7FRv7Pc8`&7;cho1lMrVb&#-p<Z-wxxQFz#RJ
zRbG>EaiB|mP8f5;m?x>_YsTLbGCvG*nlYS@7>mNZxQ*putO#QXYfL6bWn_I2#{0rq
z#p$yym8BfRjI3pXdy+|>b@@=buqup|;naDUj|54c%JX<&iCz0Rj8DS2^m+D%Fox`P
zJ{4RW#%B_!Oc?649g(*#4C4AQJ{Pj8lgH>6VSE|J#&GJH|KEghZhHQvFrwY#n*~X>
z2-zz5RTy8V^=+KBKU^AY4}(uQ+!0P4-rn?=LuGdu--dBHj4N^peNPxi!Z;encVT=V
z#@;aYg>f*9Lt*?7#$&VGAH&!$mK#3Gcym|bs$-o45`E?yhsRpDs~?u=-^G-lxD)nC
zU6kexzsJI;y)k-0l8%RQB8-#5&kLRsJS})ekh#tZ`8kYVgq%z3<Bt@&m`u{(Vi>Ec
zrOwq~lB9OW3tbK4S{NA-WJYj3j9<g}JB)wA_)TWvcTTie-Vp52Mq}PT={YS^<Z9{M
zn_&?D3ggeWqa+mn4dZqg|AlcYUHi(TMxh7_M^c|(`(Ng}@d}YJ6g`~ji$ICMjKGS(
zAAuSH#7v7|dXH>FI4$)Es+V`~@>2ix4{KC-*2}3OvLo2`ixZ3>6hS~NE0y}+_583z
zBN2RFFQpWbXwe9YMNmA#2lz+t6TC~1(YuA*6F~_fCDZ!7LU;~g?0ko2Wg;jW!R_Ms
zuQ<v@P(FfxBe)eog$OD}usMP)w2$Ea2%1FDG=j<zREZ!rf*KJ#knT&>2p){2etNTE
zP6SzLJzGdrkT)&Fgm{8+!5l&68hAL9SdC*60dHd=pV3UI89^-$$W*6c1PLMJc@fl(
zpiTrEtGbMm6B+U&C`j{U1a*ZE_&HWDg8IT6q?J4NjUwQSo*N53BuM?nXW7jncqD>H
zBOrfRu-#g(c?2yY7!<+t5wwipu?V_H&?ACY5wwn=V+2ofqU$ExM9?mR$2od+lWhg9
zKJoSu<kd}fVBWgPCxkyyH%Wzo%9b4kog(NGLDvYLilFan1)T+{lTWRiTvj*vP2FU-
z2$os-C+jAAM)2Cmyk{eLE`nYWJRQM5b(6h0=Jk@#M9?RKBK49~`bMzoc%1w<Bmb{X
z1^psuR4=KG%o`9vf8kHnOAZ%hU<5PkB|oc|92~)r2qr`@k^XQlHZ+1!5sZ#tSOmi(
z7$IWWk$EG9?5&q%AFtF)TJ@7-A{ZaR)<fRd2*yS50v)D)^6~n~qc7x>6x2_?7{N=d
zw|?^dU-Mp$;FSnojbL*9<f8h?ErLv%L?wbx=noN0VIL!yAHjPOydJ^v`pLNw%!^=Z
z1aCypc4XeP2xbYHE;vJw`kU-an!gnRJ4JDJT6vqZEd1THGDipp`Jej9L*Et@ZIH}r
zkX#T!zma(hBUlsx8{DWtlF`Kxd?3b4I9Uyn?~4t`nMq4IH4!YA)K%${S48lk@Re!h
zBO#m)HfePPYts715!^}oEP}NWd_gy^pIkOFZ(RiIx!74a$GkyGnbjb<A%Z<toP_vE
zgXEV|$i@gZrAu4zNPKGqUqx_<e~Cu$HGMvULlGQ~;F}2V=0H~2*!~E1M6ff0?<2@i
z@{5*=?TX-AmK?!uPT%+0Zpfh6dv|=!#f<N`9(Tv7FzlsE?27M;;D-pGbe-ZmmS+%e
z?1~c)MDWC9m*HRp=SFz*FT{U};0P=I-Z{_Bfw>waPepJ#f@8vu3!aGJB>UJQKKonu
z>ke_+bi0&)r9twHi2skOvw(6U`NBO6GBbQQNjm9tlI~7|XQBfP%s^&>yR(b?!s71k
z?(Xikuq^KGE(<IUi@PuIZr}O$JMW!S=R3dp>XvkMRS(Q0)#N|Sg-6Vfb?09O3Vuqv
zGBNaw^~7(<#4l<0EsA?ZkKCqV`l#f=&ED7aBOn*v=EA#N_?QcyXa+8O=|>*D3G_Yl
z2i9%55<cg`7uroUd$Dml=rG$2+R-atbHP5!v+%HITi+1*KXTzG?Q{V#0@4_e)_^T0
z{Aogz0W(VaRRf#`q%$DB0T~R)Xn<gV*??#R;>yOy8j#6=7-q^oxR*>{;>v7576Y=f
z`Cv*c`32X;X5;MWEb)}3l%2CVSaTYXi^0HZWThCB0lTb;1Qr8C1008AWCN@QNCwyq
zsGua;^vH6PV&CR1N|A*xWOA@crHTRb%ElA?wLR=Iz->S=0}>6$Z9pCaJQQX?UISK5
z_T)1lKSSoSkpc!3WZu0#nToF6_ERG88sIaakO74aAjfaO!B)uuj%+tF9Hgr*8ws(-
zvr;y9*$8P71E|deHd7lcY5-MPF*2NFKyd?>8nMiX5(b26Y)0fUBH4fx12!12(SV2n
zB@LKhpbzu-OBqnwfQ|-qGN6nBWesR#Kw|^S8BpGUS_ahSunGoLVW27%Q-QTIUFP3D
zGOHR;&4B7`*3cu5E%Mc5CZL!)%=PrrUkvzF=ei7Z%qE4^XKr9XLx!?7G_#2TO$}(n
zPBYfuSgEMF0WFwY>JFXGM}8{<TI<g540IG&TZVSJ-`;=@I@4Kpoek*1*`Wq>W$0-@
zF9Ut7OPj0idSnj+zP*nor#Cx;So;{zm!Y2l1N6xL4E>Aw2Qr+0?x9+PnTO~xG>5|s
z7;eA_cE+%dWF4i)j5c7-j}X<RG}eG|?2l)qgBHo0Xuu=`CL1utfF-m544BHLvkaKc
zFwKDJ3^Q1%%1qjQyR-)9u(N=5u3kFNfceai)@U&cnHTA$iy7#2wPg&eS(me}U|q>d
z6;~Os`lvSYHSDZqU8k3>XP_=N8SsYzcMP~|z-D?}7;wsf(+2#>0Xu2i8nBi5FV=0W
z+gYjc9kl$eY2)0@&H>s=2JB(ptH<m!U_bM{8(QQc=3{#4VTL2DM`_pO&|;43r6(9p
z(qoEyIb*<CcK$ZtoE~%8fb+~3STE}SB?Ed^{NKI1!sb=hYX)4`V-_6?-C(}SdW-cR
zz4W#L6hPy-XTW^}(ioA}hzABdG~j~)9}Re9z+(embNs)o&sm?aK4qoq&lu>COyU>J
zFAaF5m!A6;dc*vd^_}j&H{i+J09B#%iOp{Yd}jE<`c;oS{yzFYoxd~uFyN=|(4oFj
zMx-;sWQ1TudLuFzk;AC%tc<L&M$ngdDI3ii!&-!npJO0DD??@@vM|tDon%tV#@Xyf
zR9~;{g`Awt#cE(RvQp8&7KP15Sd38F5n1hesg*%uwHdYJOsR^4vofo~N+z8P>ST7Y
zx>@`4mFA_2MoczhiV^vZC}2c$BU%_y&<Kwa#p$tZL>$M5SiP)1RzEAXA21@QbKc(z
z#~V?|h{Eg?V=cm(pvM$t_}<B%s5?mvX;Wgu^zb*Lh7mQ{Nim|F5#^1DaJHlor5H-H
zmNlXb1C3$S*I+Sz%2i;eitbk=(7Cb^)F}m5Wv80%S2rT#V(pn<i=Dcxwe`|E48O4c
zYQ&EHUW%+|M13O~7}1dZCajH&Xv{zXTi!+I{-8Z|DK#~s8T)iPD`i_6@tYC7jOcAd
zEB4zP(ZPt;%)hg?VWr@<Mzmv&J*Tafj?7(IJF#|V?ZQd{w5q!?cW3RP`#ovo&$Pi%
z>SM%EBZhHNUnBY%(cg#xoE@yk4>V$s&c%K!Otps4P2n{&oc-~vBUncoF^XZd5n~y~
zuu`oC2ZCMRM~^e&*b(iSFoFGvtdsPZr|+X@clG4`9-3-I-5cI%Moj0T8Ai<2V`dsL
zOXt}Pb10a{GtY?mMl4`+p&qj*%D;$tvF<FPb#+gh|K&!kFk+(-n~b1CwpSXl%81p>
zboMMg{irTIIoBAq=jU41b*$@IH?XRi68<n^Gwos%YM8Lah(GBmVL}EIwi@x55!a3Q
zo4ej-#6cqt8L^#ife|~|+{?O)bvG*wY>yE?ddCy&V`o3>0lkz4f7nQ0$HrMB&KYr(
z{gbT6^qAvDoY2{RG<1sjH0v4N57!QzXTGdE7mT>be2JCLYo#$<(MzuyaZP7Bp8AFn
zH#z&xh+9VdW5g39o*HqR&HJo(SnsmlW2FZB)eb!{;-L|b*!h?Bv0h5&NYj>~uxISN
zVtuZczA)mY&U7~KYn|U1@m6O#_xQaLAB_0O&Q~M88S#nvGwT;UlFsk_j~)f|gUO^l
zz<;oxhWV!+LyyxT{5*+bKOHLt(}N<T3DG7LF(JW(7!zVmaF`&QkjbQ-@?bQ<WI|?+
z&&is_gsdiHW6sWM;+AtTQ=4>_doE@JYwDE>%vM%2D@9sN5Ov;nEF>}8Snaw`hxbyX
zVnS{c@|d9NzS9I3vs-uQA9#69$Y(-4JNZp0V1myCzX=7|iDUKX@fT_ay*krBbOX#G
z)}ZdwF~SbMx<a~B*o4$IP?Vjpi9V>TO?xpD5*d<Mi?fzsrP8UJd?_YGOsK$4N!GHg
zrSzE6Cgk`KUB-kz)@sjWO65!_&!yRU4CGX#tO=D(sKS2L|G%`F3D!^A&&`@9)G}eb
z2@_1HZ9*LrI-AhNgkLzmi3v?j_?5Y?3H3~<&rB5?nb3f_q3(3sr2QyqY{LI_nwikb
zgw`fB=a?3(Em?olYtbS9RO@#W+OgAywXI%C<7}^U2NOD)(228aTNW<zO&fn#&h|H9
zfC=49=x#y}cKWdPWbMV;o0Y2ISg0>^zyHS{$UMx1;U)}X9?Uv~m1+$&VPR2isz<Oh
zhIJ(CC_QF0!w{SHupP@hj&(oZl!?qsOqgWCWacR*%rs#Z^HdY2F-&Kr7G^Neam}+C
z7P8J^oom88hWREqA9@y;@VdG-Heymri@0<#g>lzQO<2axaue2=u-1eXoL$Mfij``u
zHeu;bZC2N@vypW@>jpjM+q>vZ%zx<4W)qIK)NbNd6aF&cEj<tn$=giWZo+vJE|{>x
zgq<cFGU2cZyG$764eq15djoBQ!QCe8F`-%@KFy`zUK2>mMJ4a&(gUm%c93S?8yq_=
z>IijY!YLC@n{dp8#%Dsc0>R_-ESes?79HFg2%a!u)z#2R6Bdn5>E#cep(oY!;5oYF
z=wR8h!LufqX9Sh_VEg;QiT>b46E2zXm~Qtz&t(&?m~hvGbMc8+S+ALJoniHIFPVRv
zaEr6VHyCcRo}C~2kM7@QxWhWRMC?7?zi+|=6LQrHKV&6%#PDNEkh=bt2k^v%rwq?n
zpPS&F5KpBqOnAu-@hiH^%x_rfxL`8hneg7EeX#R`2|sABRSA7G;S)QbS-+d`#e}aW
zq?C;u?Vi-6Y~-5>|CvD0r)-3Dtv|G;N%$vCzJRm>q6B0RkWoN70lzc}Z!Q~2FJM~P
zNGcOhq9W>%4rYlJkV!xd0W}5fl%LE3DhQ}3Ad7&k0ulri6_8Cpb^(e2RX`2_IR%&n
zSOon3BA82nL4c9@blHeWz~P}mfwNTlI8V~dsVNC@AyI%;fL(xtizERy0kS!gcr*Nj
z24ha9U`n@KNiqjyEEjQ?i#P?i1b76*32+O@Eg+wO`~vcDOkP$B8|>4n58DwYEg+zv
zfO_R3#Nl$0<EHQwSF%@tPe4#WNWg)c;ZL=FegOdiua;<4DD9Gy;sq2EP*^|_0W@rK
zC@n4$A-?lhh&YQOp_qU~0c8Y~6_6yLxPW8<DFR9em~tQ#W+kwO(}yd>5JUu2UlKaJ
zEmV>&Kb)SNQZzr?G^aGf9%Fz4qLxGvloL>1z`{%ZX~_Y~RubrCss1VgstTwq;O$gT
zXrE`n$C%TZebuO0K|A4g)%hgK(kZ*dm(TfX3Fsl9r-0f5>d>th@T-8|1hf)Rm*zx3
zQvuBc)ECe|KqCQ-1$2v#Zzy0+xd=hGa*+|`BH@cc;vbKKO=un-1>ZDFqD|UdKuZCC
zmy5LEDpY!)T%=+k<@V`NYq|>p+6(9)ppAgG0@?{6KlAw%YNw`Llxk56uggU`3g{%D
zE43h?Gq=-)BPlGVe8gHlQjR|PN$XH9+JpuZA5V=`I3LwZKyLv<1q`EQP(IQ}Kwkm<
zXxd-;?@00e1&m%C8Yp0pfC0?(={0iboA2~y6N(=!fL;(YM9|(AM5ho87cfG=9szp=
zj1(|Rz<dD<sG@)|0_F)=lPk`VE-;pECC&LAPsuIbaRR+h$2*>Nf`Ew(lUT{0%rJ6A
z^i+mv0;V&}5HMShnaMDV^~n{_9NnKQ;Q4c{i=|&QT}YdBmuHoL)pQ^4co(rQ7O;e2
zDeE!;%LS}pUdc+4S9AL)5qxOmkNohi5wKRkI__n&-q(5o8+6{tut~rlx<ez`BH&NX
zZe`uc`WNdq0oxg9kUIoyO$-xI+9hDO?l+E(+b3W@&9;Cu0!%BS4+uC!i<|=v(jv(g
zN0*r;uP@^ffAS^o5dlZ_y2lufvz}l*$$E-)+wPcroqT5nJQ46zz&Qcu1zeyTD&Qdp
z&`2%`xGLZpXD_o}VLh|UbDiOD0XL|}-7%>nzbW9BfPc7%Chax@72RXF!+KZ1@dG|G
z@9U)xXjW%v&Legnv;M1>QjgE*h6;Eu;Ddm#`@D27DENhdmwL=AhSvh#Fuc|McLKWH
z)z$!|k5pIpKMDA(^B3B%(Qy>;jh+8=|2u8-7189UF(a)RBSnl75oJa?GcH?j#e(!^
zWH96RN5Ph6WHdu48;CI@){Jbyq-Zl%AM|u763S!-%qU|<Su>q9h%9F0HY1N2St-m6
z)l8qlMRqfCP<1oRX5=*Eg1cxgGYkyn%SVh1WSSTzRQ3_mSA#8Pe03G2Z^9~Oh-R!A
zo@`|$kj${@Y-ez=%4W3AAEE&5$UApY7Y%Y*GBpw#AL_C!*=@$7Aweq5YeqgZ63i%S
z26dO;i~?p9G=sjJNaOLC5obmrGYXp_6$nuPRq>kP(|h!r5nv9ohIBvP4EiD@1<!QH
z)0cDU7&~e(O@YwjQ&GjtNHn83M^a1@_e&$B@9pLt9Hdc|FeA*vOJ*e}#f%7ZN!C)j
zU)qf6xg!){pA#%+Ms+i4m{H!03TEw}RTa(JKe6frgOxZ-PGvKy=v>u|Gv4@WbVu$7
zsi>wIwaln*Mgucyn^DJ%zU3qJ%=pEOO$}1&(%tv?<2xk&YDSCl5dum-8l;?S98W%_
zhGsN2qlp=f2&N}fI@KVhsTma3jO)%VA1RsJN7?3PP^}hhQWw9O(TeUAEiLMOvuBM3
zZOmv(_tXNr1?|jeZ^l1n+%`jQk<@|a%8ZF-bfoEJr?VM7&FE!D7tVHN?Pf-IhUUvt
zdN9ymzNmU{Gtv}H8EVEbGx{+1HKQLxe=`O#3}B_Ofee3@j}Q+wV~Fmjv`8XnIA_P0
zF+%r8(roKInmeVivAQ$PjPW|ZX%{=mjLByFX~tGFrkF9+jQM6P;DBkYGg+sbF@vEG
zcS;S;GGjJ7b6DrHl0T1@)8;V2LNgYbv4Q=?W-Kvdr5-~wuvF(|W-Qlvg&DmcBva`s
z+9T8s`|DZPnz4?7#!QWqQkw*nHqydi{)2V1?r&lEr$EYIW^AK-ZN_<awwtlvj00xu
zFk`0~yV%^T*V=8y9_G~RrS|u6mS*xG!*SL_tcO{Tm~oWh7%NqLzC^n<C(Jm>&M8{q
z3}l`*BX#6wbtkpf1v9R(bCLBD>t#LW3d2<zxg$W0T<7fHtT$M1vQp74TCr`k-tU-k
z*Nksw{Ab2JGw#z$YmxMk!ycINlz}elA#Gvi$E^RdK4GOsXr7-jKR4rr8882@Z^kR;
z*SbSZy*1+<XWz4a(AP}rOj7Tk%=l~ut=lggK+abhVciS_-_7{JGh?yfCzoch@cm^?
zo5}@Kq8QS#rnmfWFJ!bJ+JYDhV%axZkclCy1=%dxshxBonOO<4FkC7h$<C0IHHThG
zw<ed)28NlteN@ZDEU=ncQ`ezrft9loD@_6gJ1mebXl_9Z3ls}f3z}Ilvqh5A0+$8l
zEGTb*+k)H{M7UNS3-U6=TaeF!{1*5*TYxo=m6|Qc;ISaJ7q9O7bSJ=0kTqmM>bfE=
zWI<sIim+dTHNk?S78GNqmXjC~Ep*CR0%eQqK4rtq$-0xmK=+HnN?K5gv!z+fu$E<|
z($wB7SWwe~S{78){Yn;8wx9}Ut6ET9_p33`QmLUkseRS9puPnSEU3f&FRZ_^*3~2H
zS&-p#GIiQecN*z)LS|zNn&^I0eOl-tbFO7<OACIZNQ-vFG&!v-XiJZJ4sLD1?|Q8^
z474`dThPIR0Tv9jprb|G$lbW8lOEZbp^F7wb%$bT4Baj0VL?v|da>V^wYLR*7$}B%
zPmSznL4P(=7hbA4h@HW-;2DNmFoJ<v9%jLCohf)E^C;b+yD-Lru@;Q8V7vtjEm&m1
z1PdlwFx`R~95#t{GG7igNNI`%Q`wxRw?nIarp|LMn8iF>cjoA`N_FS4Ip2Z>dMQ1%
z7F)1{v#VH_vM$qmT+Z1QtSecm9eR$f)|nRkS_{@$u-<|V796nPpamN(*kr*r3$|PE
zrhMcN3pQKusC+ncg^0UCWQzqQDn$NdXDcfe{bj-ZBPj$sEZ9l+qC#XB7uBy2sg^#|
zxG~|~Z0@mOuLb*<DQ0bj2<d*#POcC+WWiwzPFirvf+H3jrE9m~xCMhchG`fSJhM#r
zXobj~3Xv0fztlK&dfI|B97d6!Dn!m&aL$7B>|C@USH;K$9y1M_0xq#n10%j_!8Hr+
zT5!*T>lS=@=ec3QO$#zF_55wYC`ZwkyZz>U-dan&#~q<t7W`w;K1p($mEev=d)FAj
zeG4AYvqeNe#6udJ1tt-Kh{qQEOFKwJMiEaecxur;H~Y<kXS6Req`bG_137HIV5QQR
z46iJB&G3fxtzP=h0y<rj!swLCk8Dyq#Gh#6pYwiZ{bIpa+Wz~KioVstDEL2){BFSy
zy2a%~lz!3z5H(KA8pWE9mCW>_c78HJw1^l{JCr%Ih*(h@Jf%zw#<w2gCAX5YaF$*@
zPgy$tE~|)adSrHn93pZu<YG1GrA842k7*5>MOZ|*M7TwWBCOQA2t|aH7?ecVMA$|A
z2ox=oE;Qj(pxoJjLqx0U@h3)ymgY|iRE(6X7*R#+JQbkiWax4sHn)g8BH~1NMdTHc
zPecLgPDFkYs|qAhQ*|pwC{bMxbz}-nIUAtwMp@E^9yd*TZ49-m7>P?0@`)JqB+wvT
zC@3N%qLPTpBH~395|Jz-h2WL9u!v2wlS+svBGN~Ok|-rG6lE>On#h{OTAcNAwgA-%
z)7)OuAR?lqh_WKeiAahIml9E0L>ap9;;~CVhAHJO9!rU`<waCrzam{1m!`%LQ^hJG
zs?y|$Xf2|ei0UF*h-fLIhKQOXYKf>V;`hZ~I*~8k;UImeyN-xoL{PS|2>S5zugrAl
zUtLlAE<-)e)@N<N+K`pv8!^yPhfQ>+sfcFG&2?vLPtWbW!QVurI(0MpsLff+yuXX+
zCZfBDHXPYjL^~1f^;-RhM|aS<BSR+<opq-RLsy#fHQH6sxsE;986cu3LoX4%8TyFm
z$3S6y8R$y;>p&)@ft(#AVlcxHR`Q233}YQGVg!S7$VWw^MT`+K){1dfj1@6XL<TD|
zS}|V41QCCWxFKSqh)E)Li`XM#vWO`n7KvCaVycK~BIb&iCt_BDf4Yd71k5v7n_ckF
zrlmD7WsZn?15?a>{F^U%NzGUM^EqIFh=n3nJALG|QGzCW^31ndz!DKlMf@RRvxsFP
zmeV4q#@~9WmlYyba$Vx4FT$k5Dn?dwDFv(%(dEA)YdO1)bv^3_){QjJ45>|R5%DMO
zFA>!HR#F;RAOGG4VbZ@iyG_J)-QU4L-BH>_YvY1;6?;YO6LC&NLYlb!^t2IiNW@_g
z1G;(+(xYa+hhBreeV*she$Ulrp(7%Wa?!^99tt?dOmLjx1nWr=rx;GNo?$)98o$a<
z!RNUz>h1!=Mb=BKmqlFBORq9qW4)eQ+92wth+85Zh=)%i{t<DTp5Y>%int@<u88|0
z9*DRnqC|nB-afJUe91RPc!(d0cqHOqS_vaOk7)q}Qwl##S-Ur|uwrD6&%eK7WPK>~
zjGloa-iml9f=XYActsmf#7k<hVx(xtl%EwNZ@7h+QDJhZR_4Qj_v|zd_&#tLwV(H;
zKe|ZDXL@EX@&6~{yNEB$UqyW5V5w4sV(9z(G=Lu>(pnK^#ZM7wtRQF83g3BCyx1U~
zoOJA@x8mQ5erlOgp-PcxD`Kn&SrKnVtQDE8$YI6stZ}`sd0<6WD;m7;P|9pY7Un#W
z0A;f=XV*(}HumSVB9|2gD~wiHtPri*Z<$P12v+S=uf<Zd?*%VN7c^U8jtdf4*>_t(
zU)Z0qDkO2%W`*4fhZQns6;`TP;i^_$wZf@8E-U>dRQo<}ZY%Owk=KfRT;#VRKSMz)
z=+y!gP=K}JvuNTtD}0>wvXawgRfv>I1G*EmBD!=enT4z<Y(*(6N?TFHiaqt?i!JjO
zvm$}HC@Y!spX5)pf{Kz@i?dR;1VflLnKi|Vh+bOKit3kr6jp|v9#(vt5ntAda&&hd
zc*<K*(~4Tm6|AUeMI|dLTM<{mPo>ous#sB#!F0q!|EeLsx)n9JO5;*m7@hN6+lo3?
z{6ckmd;a|=->+7zGURW`T9>ZZiu!a1t!QjT6Du0hjAe`ZyH@%}RwOqs{A6Eo_wx9m
z*Yh>CqL~#fxK?v34)*a<BX2(B%MsR~_nUk_(&qooidI&%rkid>M=Ls6(Z-6lR#0ml
zxV7lHaTMRqipggZ+p|(dYMi?0%q@4Jm0-o=i2-Vp5_Lq{&5G^}sh#%ZS?a|~)79IG
zK34SQY(FbTF!Z-#0HqWDfviJW2U#)LiXqH2IaErMMmmh0;e0PBJCa)%#X6dG3@i1u
zJnS29#RS@164FVSXvHKe9?^j5TCA92)xK+U&5Eg3OtWI073-~-Zq?owKhug?3^Q1-
z9}myAqL(MK#7bx91}R{U6?3_09xFNXtyrM*LMs;OyqIPqTRa6&#ieX6vtqdwE0|Z(
z7Ot)}NNJT7tJz$m*Ii4?_=Hxp!HSJm{AtBjD>hm2hZS2mW-}|D44K*jy_uShi6gFB
zDMI|072B-XZp97?qZ^$rZYRedp!Hy-Pj_oqN@+L49@f29>|@xkm(trwDCQ7nPp}@g
z;)q^))QV#|ALlM8_#`{0bpNy!XLLSG53bx1iaF2D1>L{MaLJ0x3|DmjsulFoZHm86
z%aS(5)4&ZYZqZX~yNA+Edh&=NdSns*!{%)(?l9bCy{AXsXL!K+koDEsn18Lf^eynl
zinmrgvEnJ+sUE&(v>C;~ODmq!V%YAX^n!tkURm*)V_er_s%?oP=baVrt@vWaS1Uen
z5t*O3g^yNH7-cDaW~OGpam;^Kd}p9WX6*F-peMf-sZ23xByAXJSqZ%3ed#4+kdQ+{
zP6-($grra=%61L6rym3oNMl%ISxxtX^vagZ60%6Rv?@8f1p1OrRtc{Y5-4S3sQS!X
zXl6WplPH%2gM>s0NfL|_OcL@*$S*;VV3y#bUhDyj1W`h#LmsDu<F~ylmV}6{5+pW>
zZ47o+hXh&o6$vUcoxMz9w@L-Ot<k{EW^UFz67n*%IuJ`m1tb)dkRYL`geo_^9tl1!
zC61HeWs|t;$dI3XsuExbYSW?(l2W{cLOK_gP=tA0#GhJPj7q0_e=dm`GEoaIE}?{k
zh=h_7!V(=ptTl3cnU|DeGWYeQNZR?*BfBP+l2DpU>#&xQP*Fl9=CTsXF_dSex)m5c
zEr}r>S}9VQvsENil~7HOQC4aLs4k&~?$l(c#af%@VSyI#i-f{$e81{3bs6fh)@NN<
zDbh$nV+myxlvU6~LQ|?@M-e-kNoX$NKMCI@w2;tJ!naqR{StnY&`QE236mwXmhiiT
zK@tW_Xd|I5EdwR7w}f`&fAMsaK<^)EFTu0a-$6o0>QO?I0saNa30)*~W}i-7_$~(q
z{N?LPkJ+2S+gm-|CG?<*)NIZ`OzDJP5;{~&ZW0yQ0Y7D_{XP=<O6Vt{zk~r22GR;o
z@6WI*Qw>XOZ29nvm6=Fw>EiQl^bL_PT*3%iCmVf3B@C0$H9pX-R|@G!38Sc@$3I@e
zXbEE*gvVv`{d+SwMxvA7d}Af7I_w+Aygr++`gb2iPLMG7bZ{cq%G)k9MZ#1GYbC6c
zK(8&HCSjh0`4Xl}m?2@NgnfvcEn$wfHT<(UOE6c$vFqMt#e98YeLv24yYBWZkg!m~
z3fen)eTyV4mat4ht<SzC5|&a^pFEAsfy0Tumw)&MT=$Qh<XbLbeH!0^9)5~hN#m5T
znwHs<3>S9$Hm>%pk#McG|6a)eY4(Yp^%6Eo_(Q@536xdS`!`BB<n&$o>f0<~3+=K;
zp1l(Ol(1F8P6@jt{3T%<ZR-BP9n@4te~EJ;`r7z*3HOI;FB=*#)$?{=VB0m%tf`*e
z60UCb?x73Z>&sNqm)YW@*7nh@8L7bm2?wb!35O*-lJHo<5eY}B3N=eN?u7psJrg9H
zV9wCa_xBa=NeQHvC7fb7&3cBF{Id+_B%Eisp!*l;VWl%2Qgns6O7^(#SG@EKjRhM#
z*U6EP=1*_G1Yf0N-Ww8bO1LHA!(Q))-ClD3q0M;Adz<wR>s<-=7|6db;epN%8FmW3
ze<eJT@KVAn2~X*Xx6k`b!gJa_|M~V5^u3T!Ds5ceGoF{Fd<4(`^u9UleN8<|_$Yz+
zjfA(UaM=4!!h7apt$kD^Wsd(O;VZT9)kpkU!WVjAW{&@mJ&yF7q`l^z{%%Y9L&8tG
zFE%`|A&m`bZ75<xf(=nNq_d&@^?V*1(%X>1roDwLvke(-pbv_~+O*dkMB9)Y9T#K6
z%sw7Uy<T`Su}?)AzxcA)(DR}%myKRnfUGu@9}}O=hU^SESaY(j8sdN2K4o{Mh|va<
z4Y_T|V}oFW*#^l5n+-QAMJzUmHdt-w^SQ`}N|7tCgX>-vxw<?kJonmd$Wb}sutBzg
z%*ii{bj_En*g)#CL1iFz+K}mGk%Y>TvY(5%Z8&ntM`m8GTadHVNIuTyx1j(xMUI#f
z-}6h6dM}H_+2FOoXT#`H$>|$}LJWS^fDJ*0yQPu`7f*<{p=xrFVhY(%n7MVmP_4?5
z47WX<Do2XiP|SuzYVBGe#fFFtNj4O>Vd4i*37Sj>;;;=vUV8|JzlbI+X+tR+=GrjN
zhSD~avEg?c+SpK*CeRjWVng4`QROs71)KI!lPc7&4HcOyv65NY28$^ZK{a-2+fc`b
z>UwDnhMG3i(w%`#Gf?m^Hq_UhUu~$Xb3GeU0~)Z?khPIs+SrDE{Luw!p(&fqY-p~R
zwy>e4&cE5vO6S%#Tx#W~Ds5>M+3<0=uOF>I8#YG=x^YYgJ+dQ1CmTBJP8Yh-I)B|2
z+nu=wYfsi*dTDQlKCFFh__v+*d5r!x3}9!V4I^wAX~Q5relXn&orl^mOy}V?<Q<@W
z;$jp#6X@R2GGHFVI#!PyXTx~rud}tjC{3a*!_H*ZDK<>CVH)!cR*IQU3*Hh)jUP5i
zyK%E@n9Zeg^q3v(W9Hkiz=l6<*lNQ<8<w{6Ew-Us_t-@?tV#%8pXiCZ>GAaTETJMB
zmf5hJ>uzLSVZ%xa(_33-!)l$^*sxaTn*Ft#vYxXWY;cd%J}a_`vwyH|)+4vjW5lQp
z^)DN?*>Kv1Gd66uVFzt7j-h+{zI4h?J${!ByKUIR*}XO#VA#jHUyoTjGWsC%A>BD_
zL*<kN>gA~J9JAp#^9kKKX~QX<X_n5~aL$GjAGP~+p8ab!%&Dzi*9FdAq_wBVU$)_j
z&R6M<pV#i%bsPR>^9Ji})|)omV)%!Z!fH**bcgva>pk61oSf;QjXq=&`9S+UpO2oa
zk8F5M%a0za8-puNNl$cmYQr-dp3}Xk963@sLPalZcxl7CbSacxF}$|n4a3`1UoU-c
z1O1AO!amyY$%fB1e4(eP9X30@+VG8@;dW%U<3Ag|(-Yo~bas@y8u($uPkQ*<k>+Y(
zOvB*kKH+>9J!!e<%rg%Kq_-o39Wi#q+L6%?GAS~e0zL;Ew>@9N;o+GRD2yPJonD`m
zaHn#FVzStg)egZ9vmM#&$Zkh2I}CQ@XdKL8M=(cnPS!OUic>{0jdoD)<cHH0r!ko9
zASFM`nV`iE(GIH}W0j(0rmq<`lnm2v)XN)V?RGfq$ZtmhJ7hZ)JKT2UwnMe!Ep<eP
z|JXtCPP_Ko_<Og4H0CL1J$dY?`^uZwj($%)i(7<iJ@gXfvxABV3fkeZBS6EmBaW|^
z{-5r%!%KbL_8iPmoUYDq2Ys2E&f;r0H5{@d-i|_c?f3jr!(f_k-mjG-q}1b{#=!(T
zirNt+Bb|(5b|l(ibim}m<bQlgcGR$=rX9uYC}Bs~j$}KkQ;*p~DRxBccw9eJk>;79
zoE<r<L`pG}Uz(we9c39#*AJ0Nsk|K(^q9CRkxF({=4=(#U&|&_OjSFokzXZ3iL#ZC
z_^8KPcGR}xyB$C5sAI=3c68b4d1}Y6G*@(Kc3iiko*nh=7-z?LI~v%vUthGdqrDwX
zzk3?m(a4U*b~ItX6)OcarT+ymH@BmO9W9xE(@UES(T@HYJ1nL(JHP9G8#~(STq{0p
zTEunWY<D|4>V7AN&NNPjuDaiiR!cgq*&cTEw4;|Dz3muc$50OFW5)o7zIuE=hW?~w
zv|0l>J4i1bY=@m&qoQGUjADN{>j*t&q#X}$Y3HSkW@ilRSiSUoIPC;GCff0b9h>c#
zWXEJXR@<?L)|(wu?O4i@)9jdTr&F)BS)IW;hjk_^nX~Met@Gnt+EC}(F;92q(+W3g
z=0bKBu`Xs^qQ~rPn_(IAa@G~BD_K{uQgu3v<zud*$!_fwm$huJvtvEO20dmY^`$eN
z0=tFzlpUw-_|uN9l(l1<9S7_<XvcOvau34})}40jV%V*hmfq;w%e+r__S2@mtzFR}
zc8;+gW<A1sl$8P`Yue+?Cv@i|^&8geQaWST{_l3lj<b5{IfnCgTwu7U`)ezwy-bUF
zq;Ej1|B4+~>G?n}yBX=*Kg{>H9XITFM4O2ASBbPYDcdE}KX%;Wx^yB0Ez#S0J9ilF
zvfg98Z^r|@^r0OSs%m4a-Y&x-N7TP|JfW>E1urktM*Cw;(la}r+wsDVm-MW*qfM2_
zD?2Wh^?kPEiyg0Nh9~>puoAqr;~j0!n*R5?^TCdfI)Ad$(H2E1>?_B7qYaqZFLVx5
zJSp+83Gu_LM1Io4-+^onWOpE~15pmdI*`eMbPnzB+8J5XJ1}#dk5UGPJ_U+WigqA|
zvrDQ(sEFRro!Nn`4(!hnmxX~|FG4L)@)Zb@l20jz1GzXRrvrPc(20L>qz3MVfWia^
z%no#Pppyd@2k6a8P6u2Lhz|UE)l13BAUR-TushJJugAeG>oJN0D)Yq}eyZYjAh!c`
z9jNC(9tZL|P~CwV4&-wnzXN3*^s*roaG;<Ar5q^jz@ZYc9tTR&)ftlG9Pm02d7tca
zpeO^e-+_PwLC%I8D9jMAmlmQSy-%hvN<|z<(0yvHm;;FpB(W1_EzVj(kD<C$E7^e*
z-H9-4ZdbUPnn=xFuM#1CS0z%0hnKx-q`U(a9H{6(B?q?n!f{n2q$f+nHpvpI>_D@s
zk!o~vt469gP?f8cts0>sYAs8aP)!GFIZ)eyIu7mOvnH7KTDhnuIih}XV8G2ZxBI32
zmF6l_+}O`?l^Vx&yyB_vKm!NbP_w-f8#>U)ftC*Z=0IZynmEwhfff!lrD^PyNU50v
zYv22ix7YaZ4v7cF@VgF)EeZy<4GRvc8aegG+sc8~4*c%G;DWw+RU@SPi-x5RiESNd
z=RkW0?#2Z=IIyHw;>|`W#M`QBpF!>HKo<vwIxx(Et`2l_pq~S0#6WikdN`2$ho=vj
zx#B9X^7Nz|;XrSP_Ntn;DG9gc`v{f{@HnRX`qFK^rNLEypg&!#0|OlxL?hv*hOp9`
zWdF#Q{CRCM{rS7cZO@?v-r)|+c3=*zkOkfmtRo%tnGlS2U<_xcuu|z*2gWgvXPuz?
z6B#D4PG+5YPHTCp1JgJ=ot2y!3^Q40(Z3lO<~lIXfx`|QabUg!3mn)-yUBrub^Qw+
zSnt3Fx)uZ$IS?-=E@oZgz)}a6F)wFb?Z65Kido69%7N(}LzG>^*|mD<ItL7CgXB|c
zbtkmZflUtlp_guF*i5UA;ZNP)N^42yZ4ONR7)Whl2b()tcd_nf-NU+<cHBxIMINB5
zs~@CV2OZdW)pxB_(ji)J`TRReC6OL=;Ftq%9C+)%aR*K~aNB`94xHphE?145b>I{;
zHFcWd4C~L^fpZR=ci@5p7umV)z$J#s(>)Y?nfVIqRaP>uIj}Q>pMcWeY~EnK>A)>L
z<{t+ZebBCvBJVoz#DRk^wMo0@z<oXD0mDPqM-DvJ{eLOuj#l@n?mT07?!XI%m%9JT
zf!EA*uPOeW1MfMTR>lVhK05HNp4RCnHoxn&J~MoA;48y7-T%)4x-}I4gY~EGr;#;t
z%%?!>PTG1%FC&ADX)>nE$S5OPMm`z&WyHv!Q}P5EW*M<EGRer?#1B##S!5Jn>#grk
zO1u@wDkG<iTr#rBpe&{A3^`ca><JhcjI5(egl4VvP>e~&>U41g78#-pRmP89Nmdz>
z3|U6c3~|MkD4Pts3<ve4M3Iwf4t$U%l@&eADZ?dW?HHe1MjjdSMSpJ2&P0IBymUo%
zeI=&)$S)wHpo~^BTFdarh|}f)g=CB>7WT^U$?(gtW{7!PHPY=<I3Ob^BP8Qa`WOlz
z$MY%ND<Q0W4i}bDL`I5?h>QdoMP-zb5tg;LCl`~k=CRj#-;>B$i_e!t<Ck%1fAFp)
z{#!49^yN_T2|;?9{p0+}NA`z$tnt<>o>Wps85w0|EI8#UC8IQzj*Fkx+}}Pfv7C(Z
zGFr;$HrV&@im!r<hB6w-s3@b7jLI@jjP%!Ft-@NBwHj-6RthLtG`6OUS~6<uPF)#w
zbpD0mSGqwy9|hOb{rU_IWQ<r9B)>6V(ZNWlsf;FcYd(0~Zv(UEdYZ{NKQBmra~UmU
zl%v<nMndP#`nO*2{6^FA(DUs>&^J2%cNzU<43N=AMq3&G)bO>VJ1C=<jP{)EAfuy<
z3&Z_X)QKH}&N8~_+?AmlYj+tvbibrutI}J>o8kUGGNvxjvVCRTyX@=7F`24G>@|G@
zWek!rM#flL!yQ9|Wek-uOvds;{voVn4yVOmEiyvJNOsP53GMvm86{&hXNli-2vI!2
zI2q$*Oq4N6#sqGV8X=z&wLncx<|<RUXbS6=<;mnz^%*i|%6Kc|os3yBX3N+w<A97g
zGUie(87p{y&6BZ6#$w_df%!7(KJhPLT__`&x)>9>XN)Y7(X2^mL5jvpWh|prR6O*4
zt%tHJWvr61QN||PYjo|!L+fO$r}ZggWjLfHht@LGuNK)Lqx1Pt?&2YO4WjlY#FWq<
zGB(TDL03du=A?fM>t8bdWFTiNUHi=d!8RG&>Ar^}@1JVb>vT@uC8Kw>$Q~Jc>6viS
zvzxo_&?rO$s1gqCqYZV~ce6>Tn8|lg#v!^vGH%N_EaQlbi?mZ{naMaN<Ft%3GLF+C
zlyQpwb8YgiJ0GH{_*5cvQpWdPp^o8DvvD4|ap++<be4h}ht6~3=VYKsXh!4E1={Q>
zAxaM#g)YmuBIBkE8UqdBD&5l(p}%EZlX0E4#(8Z#G{Q2!25<1>Qz<>-Zc*t&FG00u
zzB@AR%6KB<DJ?A-_hmek@rV{}SQ`}uJdi<3lh7fX#*bzEOV@QSwCrunUu(5jOg^KV
zHI7c~#A_MPxfk+Z$RK@5E1_D1fUfHeUu^pl+SP5X7I{w(e|j(~uqpT`;}boK6+ppf
z8DHqptstX<uQI;TuOJkpSMVP-^-J)lj5G?q({q(aRXjPQJ$ru%rd1H7Xlseq&&6ty
z(blB5)gsgpT|UhW#n9wLE2z`b-)U7;tfEbOjH2B#ilM2XY-R;n6c`oyLmuiUhq5Zj
zp&+M%Yznd~$W=nS%T%3;aw#afDvD-<X4R7tGAI}}KAAw^W-SUt1!hJ2QIfTKWcdU?
zy`jF%m?)Y|tAh7SeN@q|z@ea!g2D=91&RWXf;a^#2e=ft8Jr5zT?kQ?+zRs0pD7Fb
z^DD^9!%Nr@l~2JxDIppU#n7rKzyTCfkRd)C@+$Bt+7<{X+SK_sMEN<JyLyDef(k;4
zwruD|drO4k6_8F%h!jzfprC|;umYOQq6$h@k0kQc6=S7%+Gt6Nw%v-eHmDv+R*<5g
z6bD483i~gTL!p;JnmWhSC>mjDE-h3s+;f}1oPzQ++fJCAbSxe!(zUB_s;H!(vVt=T
z&eGTvR8=rZ!DI#16jWExML|~uH5AlT&|E<a1+^5^R?t8}Luy>XFSG^})Kd_B-T$ki
z{lB2vy|feBhY0E`h<WAPz0{|a)|@H#JXJb`8qr^V6*Q&3I)oatCbSRH=L4H5pnx%-
zV=K4OvMm+-rl6gI_6k}lXszIP1#P%}YVBT(k76#aPn)M(+O{;*dufZt`W9LI9cT^z
z=BLz2K}QazVYF$Z4W={QkpzF=>XB{=x+@r>V5ou~3VJH&tDv8PUJ80ExLm?d!#Mjn
zma6no(7%YUkL07l_g6508yuuyaG`Ma8BqhdL9KlySg37iu!2`r{rfwGhA9}XV4Q;S
z3PvaxsbI8%F<f_)f}d?dc_z`P+>@!|SX!~(wA3A$d4G86it2ChO`w(BIW&<+5;~;)
z_n$6vih`*MwkY^h!88Ta6)aP*T)_+lGZoBNuz&`mV77ue3g#-%s@(I$|A?WMNrx1U
zo~K~NjHnT9LUczKDp;go39af4+SM&qK&2Epy?TVYrXH6npc$s36||@ntWmI5!792V
z`~6h9n)XrK5Cz1w2`#MYU#DQbf{h9`(Y7+i=9m!`Xc4`EwsyPF${61t3N~{*RrG)K
z-u<GzLz8N4r3q1RSiunm+Z1}+GWIFhuV9CQoeFj<*h6c(o!0&?o;n&f{XiUAIGV0&
zFFlTCL~W|Boq<dX;CkCo-irPM3JxkbL?h{*Y-t;sme${RxA&+5QflOcf@2DDcMKip
zW~t?tokJ%ToKis5drwV!n(sCJshujGQ*fT12DGXd#a*DuRPa>6GX<CErYQJV!4m~n
zX!o`CUsv$Af~yLyDKPvVn*T09CcP~6hJu?49w>N7&DKo1MbAA2cj@WD+1sp*TBcBu
z+CSw)^~gO1_Z0-IXxW|VBLk`=4ci}nR6X*edgKv3>-L8qE3npx6s{2&TPpOhSQ2T8
zG{NTzUMO%K_PkX<FIRm@kD7zNH?)OoL|!R)%|M)Z#<%Q&cljFMI|XTO1nX?_kba;a
z0SZ3R!(Txr6;Sbo=lMUHTly(L4~hcX+WSTWyAvpwuPE^kTA4)>(yRDMLv0gHP8t<y
zRc*^hu@a<H;o+hT>||86Gm6QN=4_0LSUvKDJ0`P=EGi7Tla-;_PA|o0W6sW+gEgm$
zTntp&q+$l63KM4q6*dMltA$l$rARA-#CpG+_Pa_uvx8M;Ra88F6GcTX6>b&FRjg2v
zTSXoftyHvDkyk}N6=kai8>q;yqJWArlvPoXE>=ZR6~$CKT^3#yAr<i|d@B4Z0xAxd
z_r0IxAzr*Li8!dDEfOeEwvY;Cx2K4T1QmrjfFj9BWeTR4L={OYA}UI%D6XP}im-}g
z>Zo)e<F**8NMV%HZi}I8ii!_Mv=*phDdyBpOLIq5R8B>C6_r&~QBgrf^v6)U8j&d<
zLIvI=R-}u1lURwhO-=u_QvRwcYOAQDqMC~8DpvIk)=*JPMXyJpnw)*{Ifm-C&yjFr
zoc|Z<&XXMV&0k-|uPW-Q7}qyQPCXUW+L#)V;$Qt#TJNX7A^o^%9M_1ov5F=tnlkU*
z7ejtC=H{%FZK0y2&cCU6wAM%F@6;wumx?7cnJU_;=%=E;iuNixsOYAmyNVf!{$}TV
zG26o(RdiC(S%tY|LKo7(;jR=T2lhTq?ldErvOQGv)b75ww+eZOKXyp?-4|akTBSq6
z6h;AkRP^PFWzYF2J3z%i6(dxPR53`!U=_n?V4HmFFZ!wChaQPTR1Brr=#fat*)DN7
zH=bvEcyG?|C>5hsOj9vk#TXT1RZLPbndVBxcoh>=OjNO^M#NA$>2kHCbUBl}js2rf
z`RHihb(xZ;sF<qaP>o2A-br&?1Q*(Z<R>NhW~i8{VxEfmDrTvetzwRfxhnmiD6*qk
zQq_t{pKC;l=1ih?MqB-b?j<i!u}}s1i&XT<9nMuV5?3=)u69z@3P}?>CEaV_UrKj*
zsdt$Q;>EtG?RPxxaBwBvaTQloTvf4}2B~7diUYI(bA{Kc*sNlUigha1tJpv@lRXpp
zo49l%YuTESKN!fbS2OabimfVks@O%lPsKJa+QGV=bxh3&MRu(jSyD5yg?YD%y<D`1
zl}eAXzmK!GYDNyy<fu5W;sR|76-QK@P;rtTJ}QoJ%yAX(xC+%pt%zJJvL;Q+DHW$x
zoa2BZwIXL!G_MsotAe;{tw`@$k?|bnEEjW8@Anb|jd^*k$Ym9~YiUEhrsBGa7b;$=
z_*=yd6%T1usJN-(mWuma<sa5ND(*7e=7G^jsQSfPk$Y@XmPVT)U-$vd_WU@4$L#;B
z;t8!8p4g`<p0W8{#nW1mw6(Ps&Mr$KHP?>3Qt?{FCl#Mnyy38SD&DJj%S<tJEgzUi
zWY6@GA&y%pQ#<lS#aHULUW(Yp_f5rrDzZC~!-?-Ie$b9^g8ZMfeUeksIuShPqih-{
zt>i=k%0@Ynj{Wqk8Cc2B=tMMg3~Op|CMV!TW+x5}@=?mlkcGANs3dZ-Igy-4gCEbm
zIi1MmgzHA=SVMpKk(a>Wg!yZTKp=49x(k21V4)E@k=BJM7pzW5PRwy)t`jyV>`v5h
zqNWoLCuAoIJ5j_5#R=63&yeJx6HW$VpA(aQ23$_Ko%H_Yl-y43ryHd_PUL0I=R|&n
z0#rpWEl49Tt-V7bjvX&6wMLF#Z#lq_V_z_&JMj#KoOr)0NWlqC6m{Ztp<rd!Vyq>d
zNOU5}iQ=54(h^SkOn5v2rLYq@ha@LcJB5QO91vmM9g0wCDJM#EwhWJ_ENeMd8d!OT
z3Qkniok~umKc)TiuZj~@ov5bwn6+@QI`anZw3ZXKo%r2}Hcr%W;uj~HIMLLJU!ADy
zL<1)pI<<c|-ANm)=R|#)+oJ(`aTt9OBbi^{)`&|RJ3;UBqOj*D0x#%Ii)^-Z;x{Ln
zJJG_4yWfkX#uv&EGWde6oM`O?wOO-364h!chKSob(awocPOQ!pZ0|$|Ck8k%(20)h
z^l_puLnkLXGjwsHs}tRrd$SsQ`nxmqaH1yzHPwq&&Pfjem6FoC?E7)i#5%tIPEeN8
zteCh#di*da1~U&~9jf~S5I0=s5ey?)>5FosY2!FCma~(cn8Gm5iSY~*SkphvKapXQ
zo}J1-Lz<@h({*Qt6Ek(5<-}}e`dbVI&vRnF69=3)=)?ji7CN!riSD~Yi=0?Ydv>#T
zl@m*xShL!@oRwfH!!jodlt`j1r4>%BbmHt$jp@x$t0{n{f~#*~UFXDlCpIusn}0BD
zWZmS{J`YLeX1%ob0neXKY^8<AMbsvJ{gWEsMrLL|1@CZTrxUw)oHW$E47*wPuzvd*
z*r%87r|W7Kq_9Iy9CqS~6HlEuLhGS+@SGFpo%GvO9CPBh6DOQFLs#L%NheM@=`VWW
zsPu6ZX1^66Jx#0nqnF@ex;XMLWlkZz;KW5IZqjmf;*t}Wo%mayr7JYaN4?iMd)0|+
zx=&Y1K3&uec2fO+oVe}8eJ399B;4VmyL`PAN$DQ@sZ6C0d1fB5(u6!__?K@1WuH0m
z+=+Me=%A;cJ@|sQC&R3|;g?R3zG9^!N^iL6trI)!!BvBNADs9|Pr0kU?@oMj;<FQU
zncrxSWJ>ws#8=uxWBm<kM@T7cib?s8of`SWl>NaKf3l`=X^l|oUptb{h4e1OyHLo5
z3@&7JX@7oIU5IvJ`8F?H$jlJqLaYm!T)0;zhWt{KqDiy3kktjj1+xp;T*&UC4_rkI
zF63~b^ueU=>3q3d7(FvSrwel7K!qF0KlAwsj4oWg@1taLp~^Q8fyD*U1qX%E^Pk4{
zzKG2Qy9<&Ff7Xti-V`P+VGJ&smqKaPH{aRX5ygdXXQS!GJ<Sh#DZuH1%LTU!xn1zP
z5O5)n3%_^s#kt^hAun@2*8HpmSPQaxSSk4Rll=2udk84`*ew3amt%`J)d{i_Vm-Lo
zoAfD7VHaAt(Aq`s#6f}!MO`T7LQNNHxsd2Wk_*W+jGBH*#a$@D{Iqr?)d{=ko2UNq
z_DG5g5iTm}LPdsBtfg5gxC}#C7s@e|*Zm3%|Gn{7VyLY9RT!$eP>rFw?$@9nueW@u
zz1Mc3feQ_}sE!N2=rO;#P?xzLYkgMK`QMlux$v7F*_fdTYg5){E;MIo!Ac#qbfL}k
zOayV<!ta!Ip@Rz@U1;k9O*N(VF0^yu%dP<N(v*Z8%aRB>xzO2#)h?`Yp^FP$T^Q)X
zAQ!s1(A@=kqh%i#=zH9+&jik&3iNQHCuhm&<w9?rU;YgCbz$Yq*f&w3elGNPfnWeD
zy@rx_unR+6m`fvZVJJ0wDlo@|oTmcATo~@c2p2}WFvW$bE{xLK9M3S?g)t0cS;y(6
z)PnX!b<R$tWvu&?T{!SFNJW&Uu{qs^PN%hCN;BA*>B20A*?KLBU$VLROklnX3uq6r
zU#U)nuA07<zR-n5bQ9Bs7PAs8VOYw#jJ9Om3}mj*TU*Jn%7rF%BGl<x7uLD(mkZlm
zSnt9H+GsA&WHx%5oI0wF9KVV64;MBwY+<DUnm`KP>H-aBN`a*9F6`i<tE@X+IOoEv
zAHiKN>~>)fn}=LD%&^ymeGL0q53o|32Whs?{%=l>uz7;@s0+s!j<dF?n2CZ<x^RlK
zr|FT!wa##siq5*Qik<U3h6}70Sue3(X1&7tZe}cv^BUKEbW-d6h70c}dTzP!j|(@M
zXTJ}SbK8YGG-F*oN3*28%Ru~uo`){nr)SYC&jS}8xuA~nJ=9AN9!g86Nj!F;>VEIP
zE~FdaJ2~CA>7nnb3#89jpR>Mj;Uz=g$NrAPJa1fhOE)ME>*Mf_#z40wKQ83Q2Nyol
zoy`MF9(<x@UnjD{jg@YErXA#>Bh>KCh4OAxaN|E0zSHy2jofbhaN#FCWLkSAH`2H@
zh+!p2>qeB$>D)-qoI!UoGDN%a>YDa$zF0RhxdAsayCLW?Sr~G%W@XLBn%#{Y3{)}o
z)p)twFzAkv!NfYHPQ<MH7B@s@D{BdUTc3^D?uNq+FFVwx%%;Msy5VFX-{nU4Dp3S^
z+{o)j5jPUt$fuY3+{n*dfVH6Rdl=%VechoK|M_(exDnJj#1QXBA>AqL{@+^#sneov
zq_AI%HIX$*k1Xy+37x}kB<q}Y9={-xvn5$ev6gnDj2=_gjdIL``CWt+-KgZoU^j-i
zQQ3_uZgg;?BL`G<qmdhp-Kge9b#`j7{^~|eHyWHSNaL)<PHi{pF#N(w{)%;;y3F-h
z>+604HyY|(qd}+%b8FV7tj+Y&<_s-ZTeAM<Mk~FPUcdOe&TSalvbJMw&zgGsI=L~3
zvz^`O;zn2I-mKkH!&rN;_GInFS}Qt%E`(Aa&h};P=SF{q0jyLykfG(cAaS)T-l1*`
zb7QI-)7T%*I*xUO8zUJga+DjRbspo!Se?7%#CYZjtP@!$u})^4!a99gG&MqLx*PM|
zSm4GC_Q{#aFw2eE40CjUF2g+5mYw_yb-w{`ghg&FW@m}+FLh&?&dV7xB?VWxv6|LH
zZdA{WHEyh>{gNB5+*s$<zUgzsjsL^co50&tz5nAbZZ2;^gIPuH*=N}E+WQzU_ufMy
zM49IyrKCierOZPpLdjI35HeMW1~O$HLMTG!&|pmd@BN(b`TT#c*LuBQ@Aa%_J?mL(
zJ!|cK&e><}&6!w|iKUtNJQK?@u{IN5XJUCKR%GHU244THm6=$Ti7$k2ne0%qETOjK
z3CNcs<d;;dGqENU-TMSzSn-Q57Ol&~`b>P6iSIKpYLWd-Cce$Yot44gh)ylCZ`?G-
z=c`(~lf5AmcQee5nK(VrX7-0n^qp!mHMrm2l8LRX!c8m_+cNQECVt7pubJ4Mi5;2P
zmx=wE*qMo4nb^ZV7Ik={=HeEK-I=KKihbd0gJ-4g9m7K=QU18aV?_^S;-^d;&cx4|
zsQj97kVBErIh2XVH`~J>t4cnqpK~M=M>BZ<uX8LD)h{{epV{9JG4#3)Q=dHc@l2e^
z#2?%eGx1v{PG<6u9QVklIj87+CN5mEFJ<EQ%-~d59^y(L&Ims%7zl-&7rc;(i$b=w
zNQ@3wJ2pDdzmkconYfjS+nHdCe`bR6zcNwuh*L0+{kLTQ$;5!w>YDKDg4DSo<Yp%7
zH+7i(y+vYGw)?Mi<jhK|_c8k}H~$ds4WVcVX(8|vae)y3D9x`~+`NMMLdYLNll3lB
zdI<LjPy5<pwqOXIHe?qH0hA9kScO?)yTw-F5Q>CA^8Vg@#9|>7520KL<wba32oHqt
zU<mh16J|Nppp9K36nv9Rvm5TUONzXdU}?cJf@KA%##UJCA+h#w2xCVnN|+uAp@In6
zXhm_4Br}9i2#?Hi8i$~TaC4MFZ?i%O3y*{l4Iw663F?AWGlZCemY^-@gy0IfyDp>Q
zT!WgPWPQQ7U}eE7f>lGPCZu`@HH5HMvSQ5;YK4#;LQV*ehft3rv(L^Ap>_y$LP&(r
zyQb6q0hhx3mz<r0{KrD58^XS=cDTI#Pg#3<$YH7<LIaLo2v2Z)%G&oo?%e8cZ$6&W
zC<K;18N$oe+`sDOR(dGVpR?HEf_gfHrXj2dVPy!-LTDbsun>la&?1Bvu2kvBp$nlU
z<Ds(6)JjO}5ZZ*Wxu)MXC2to(`xNgWWa2%la|m5Rcr}FALiqBA_e==Sh0ra8t|2@d
z!u*Z-^A_}z_&nPR;gt}2h0vWH|J3P8hj-a83TL)Q2rtoj$u7BQYsKwiUu5OnsWEwc
z_SC8N<RW(O5PmA`GCfmH^$DSG2!lg-J%oNC{4mlh&@wS7g#IB62!YD;duKhl&>0v)
zqZ;<b<_=4jN1Zu8WDN;nP?qy%2z`v~H$vEPyN1S!S<cW9j&-(cUa?1nFp|9s;hhjh
z(P8<o_gf*14q=RB$A&PDfwv_1@Al;1ga4v--E1wpV~r1CLI@;G6GQkzgp=q@2(v?&
z6GEXr{=0(HLYNZ5(Pr6G1#?;^+O|xv^gStkKbS{+z{%yT<uSi$mOU$knNq|o)tHjx
zLlG_r;iC}dhVZduSvo(2c_|)gX;bn^2%kz@<b7Hu7V;7x3ZI4Wc}jC}2uo6YsStWd
z{bf>dc?fia*;OHY5yD>~{LL8;;j0ifa{NPB9m1Lrz6s%5PU2~6t>C&4z7|4BhyEGo
zYG$twf%yL63}(NRqVGk*>;}mu)iyEqI3pqa62g`cwsIAOus?)tA^aG^t`K&Iu$|Kv
z!mS3mI~g+#bKhy1SlTkNy=8)u3oR3M8|Ll_VJ~N@LGBL?a*5k#ISU))9$*xOa43Ys
zA>?b7DBB?GApLKUJF!7-#a4-*LpZ|za)MeVvRWnDv`RcT%IVuG!7Ppc8p81q&WCUz
zgcBkB7Q(3zPKQ9VC)tZu3AVDNRbpqW#67J8POp9!<7YxRE99IYn_D+ZT@2w;2$w^+
zA{PD#;e9KI&C&S^trJ&izd`PwY^!D9Bqj9l@z#ldLdY}R`7eaKAzTaLdI&c{JQSiv
zv&{5c+-*1=C9=pVxgEm4Aw1JMak4=Uvv)+TXNjyl8qzcr(@<PPUJdy)yc1W2HRRWj
zuAz{IopE)Kh5{NgG!)dpFOaFgR3)yCd5OA}6&3hZGbPZ_G#+G&P)&mxP_U?2<5$g8
zX2tt7+^?bB46~$$2Q)k=SVF_{bJ173+f4B(M&F(}eCGU6T6B2pL>UcbHB<^CGmLT?
z%4-;+;SCKBX&5xZ;U5GBYj{}0BN{4bsHovd4UIKC$|@S_Xn0IRriPG)${MO@&@>ol
zY*T}!AuK%NWk)nbg~v4L8YnRYD_5-XbTgmXj+C6SZ4HhFm+h|4Q5ybM*|S<F9=x7I
z;%V?j5*J+bv!bx7hH4sWXvoq)Np%e$H}em+PHg^Jt!bU8siBqz^4c1*HU2n)aGOM;
zP2y_nM6Ni4HVLMLa0-(Z>uNZ5EvKP|Mj9U1P)`GO>T7sHLj%$5d_CvJwH!8NUk{MV
zeAJ(ky<cTF(eRXp4jMXYc$(8hui7NqYiOpSxrR0x+G=Pa_S>~dwARp4!{MfWD-En(
zPt4L3yWCC#{l7UO`<*t4zHJgLtsBp#sZOHVTf?hjxwD2Y;?gr3x@ve<!*d#XiG+jM
zO-K(7&kK1$u)E-kg4AIv#FsR@oRahu@=9`!&e$xaGN*t&eN96j4ShBI&?eDOJS5>?
z_GqNPh5;G|iZE$*kjzNuDmLTibq#~h1msN(Lp6-jFj~WsY5q%gHKt)2zJAadE;vHN
zNFkIwxyT-)VJw3@jG|$T)9{vtO`K2-<26jsuu8)h8YXIZo3X871y=!sCmKA1u~fq(
z4U;vzt6_?Ue{LC{X_%^EnueJgW@*9q3GZomUkLg8@)xt|8a@!ojFkM|&jM?+HOv>u
z91S08_(=H2DV@0t`}Tnv(>xI_TvXr_A)jhkkdz26;=)`VXb$=(_(xk#nzLAZTf#+A
z*U7wTf39H}HFpPh;~$o>jRQuxDQWa=rS$98uo!R5zSQuQhK-yB4XZWS`-67%A!$5X
zaE*qw($Lo$)@fL;;TsJbMDneM?=*ZboL{!oO$$=N!rq)`yn(OecIX*+wW3Pe&J}^R
zBNfuNXxOUZl!nt9w$Z(N^X}JhK*Nt>VY?tTcL>?3VV98IDfu1^dxh^4{H;y!+!51H
zl1<LhK@Eo(|04NW!>>Yu)-@azek>*Vh0}fa|K6E?T*HZ!{5K&dIq$Cr{{OD=<sjft
zB-=Wx;fjW<8qU%4-NAD#=QUhN)xD_UlJGwSFQ?>IR)IgcSEM=DHT-ldn4`bA;b`bt
zvBp0lza}{Gn9ZUa8g6R1rQtUB?JytJHkkh9Rv$**FzztaMe?79yD6S0jCIf1l;;!u
z0;yX0g`|gZPfBtok3+Te%s{zd7==U*!NMt>BGgX{)QW{sJd847lnrC>@vQs8crc6-
zVcZ|a16(`Df)}Qne(;1IQ^_z&g;6@p2~A6mOqo3{B}ArjVLTMZ!{K0!low4BmOc_j
z#V{TXqk?Fj+-NZxM;y(Qr$&LNM;D?_C=4x(C!=T_ML3K|7&#H-MtE=vVqv@-M$a(x
zFbwL1(Krk<3@eQ4Vblo24#No}9!BLb>P=E^7%B`ejNc2YjDo6go@#Hd@Vc+?{4l;f
zt&+S-7*)e4R!8+M6i7&_h4IW<?~AowRv0zIc$}ufs1-(b7>O`yhtc)4x|(0*gptcx
zn50<6|JG~$xmPEQ$HKw+cvV+;3%g{cwN2FJ=oM1r9iPcsvcjt$M#C@$oy&P5j0R!c
z+;6aSOuA}cC`gT1y4I_*$!ikEQ(<%rqf;19htV{QZkJV?Fq(zYJd9Rhv<`#r^(d%X
zgwZmLztVCxJ*tkLRwphf3QM$2q_NS<s%;qU!e}2x`W5xow_b-ZZd_2!sZdBgT}^ck
zqe~di(_!|PoeJaGFrEwJE2rS9e5%2+yz{>Cx`i>)R;$ugD1T7v*uL!UVZ0c|OJQ(4
zzbdGDP`{umvcfz2jYm@MTaU`GgwZREU197FqjwmuhVfY#i^F&=j6Puu4`W0aeZ%M%
zM*lDdaDMYEp4T^|UoMA;KQRyF5HX!rJj?59h8i3We$;+lkYq?0ZwP-=aA-<CjN#EX
zL4}cw>M-65<NYv3hcPA$y1l|yV@30=Fvc^Ig-?^_=9CQ18=Mfv#4z4YS$kK=JA#u0
zCkwvaI-SZ>!k8-AX@Zn|P_)qWFzD@vVQ}0&5cv$jnJJxFVaygjCnf1oBIBbl=7#aH
zNam;H^B8r~7h3*Agr5p72xDPNXOWCN6_$jtG>qk8tO)ZBFBy6v^?4Y}!uWM!UPcAu
zoH{GRSQW<3Ft+DYUr_&m_d^()xHf4-46YXZCX6*g)^fqtEcCVTb%HdqUdVxrz~HyS
zzZ3jkaD(7RSvyo<d~&&wYz||K6p?QgvQ6+uI+K#`;2t7osq<O3zbA~nyjVw2EP{Pu
z><{A#$Cf%_{1nD7>{=KH!#Koca#<bYW_3l~dr=)0Yd;Gf5j>i*&#;eHSMA#-j)!qV
zgqH<>3*)SilY*xNPYcqM--VnJtn+#hB<F;m595N6i-MG267mPPCYd#E1zaqDa$$y%
z7D3)f5Ws(P^@-X)san^<xGvm^`&3}M8OE(JZj10=!8}s;j`05k@22EjYpjwlg8UJD
zds*EZ;qyyDLj?p$?h!I5EjaWtBZ7jGoo%Z^LLgXJut)?|KFg&VHw~I99tk$F%m_je
z+!w+95!^kf9*BUOUMbOkFoF_7SfykHzw8PIhpBV~Wg;jWK{+X{AXq-7`H+x@1s{n7
z%OqK=qDUT%pi)YcrCJ2L3#tgWeG!Hk40ROanPVG^Kt(WcX0|RxhM<|MYeitExD$aZ
ze4NaS7lAL?cm&mjR2HlvNN1`>P%XuISZEF5St&`)2x_HxHoMs^n6*R%wIetX!A}v?
ziQusa-j85<1a%{LJc7OvbeyE>MNmJ2<`J}z>Q6+_G=gRk{CGh%5J|%b8VPwaWxsI*
zO;Y?RAx}rZFKyT&_jW$g!?`$|meVqVRuOzzGNV@ntwpU<1f5BQw-szB*j})MU`Iik
z;vUi^#b1oznFzW{_Sp!YOUdgLQr%Mgc?O2??t;HI{J$CO5y49$S#VmtETpI4D}vlJ
zdq;TO6L^I^zruS>glxT!5biVmBIqB%0LhMuV6>2d5e!Oc4vygU2!=@Z4Z-1pZ$>aQ
zr86u7UcPB|gh)oF<lK?QMDT$Gz&j!w8^JgsZ>4m`M=&A9Cr0qL@P(-zcv1wDMe=S+
zXG#Q9g-=UK-jn!b>mNigBZAK(SQf#|2xdhvKY~vpn9Z;}tv-riZUl28_%MRQmlY$t
zm0XcOj=-3#IC}FU;BK(z8;?`WiT*T#1rdA}!Qu!OM({^9wI~u?`nipBA@iC}$+%bi
zC7k`wz4?;@zEm0_SsuZP2zExWD}t2~tcqY$1e;l%JY9Vi!D=C2N{f`7pQL!(!!E3m
zPOXjL>j>6Gus+qt?}dEB-6kdZj=h$>YlBEOrsO}cmW<vO30fZWyF-e$3T|WMr!=?A
z0%4=<5$}t3N3bV?{j&dX;q2x9AHkU>ITsAYY?DQ~K{Q@gTN-)?BRCYnBT-a{;&22%
zM^Ge+d!slK!O;i`M3E82F=^%R2>#(76~V8PJx+rWoQ>c_%7@<~I4S&;;OUh7cOiWz
z1&i*S@XHaL7ji-HqTnS#>iiMm875Upu88ES;GcqjrF3|>@wEu9GXPGg8xh2YWb-!l
zbEg`~%?NHqa66@$H;R8FxD&yDBDpJ=Z3oWei3a<8njlG1A)jRP3#LbLPpXu6CIzD?
z6h+}EIC`9DjwBPJ!Pdm}IHr;su*oYLMX@LzjG{yo#iQsmS=}GS15sSKQsq7l>_xS#
zVGv-v)ZR^0<9$xaC`v_9Hi~jl{4yfDbQEQxL1c1|V%(B2m>Htwqu9|WFR#B3MZxUD
z(cpeE8M+mtcr?migkeWfDT>S}qEW=62t}cBPA{uFee#~^lQ+~iZ#asGNO(`k`&(WG
znDl6HS8R&hAg1N83jO4!>O}eZ9q}kCN1>wNtu^n9cnR~O@FhFxv|_x~o~)`wgFB*X
zA|$CAMc;#}L%OOSMU5!3qNpju$O~L8A@u~aqsS4GEBIIx2_c+|+8pE*=SPFODgJnr
z?=bzpt7QEso=C|XMA0zC8%2ZbER8gY;;ASGMKL%UTyvj}qEi%|g*T0&SrpBqXc0wA
zk+hGZRTQmhB#O2|xR9Axk;32FCfbP_v->Bh4pG!KgQAWioSmz>MDa`%Eb0+OR}ns+
z(tlRSbAsKXxYjnoiZ7%}y9;?ye5U-RC|-_&3$tewuQ7h2cqNKnQ7{;KNAao@6>b-N
zFk#|kQL}Fp{i7HlI{l*fZf-EGloJO=`50mFiH6zNqZks!f+!Y7@kSJHMlm^xcST`n
z6l0<o8^y3FhKpnb11wcH`LSqJ6r)oT+GH9h*@;oSC4`dkLMDhO%)TAPJHjbpc9P(e
zr`41wrbaPGveTk?FNzsa%#7mwD5gj8L8`NKn@#ifo4sSx?8_|a{%q+lhk|mN{V<A;
zq{`eV=0!1I_{W@9JE;DNWIs(cO?^7Rp<5Kiw;y|7MDb-5pGC1aiX~Aj73GzJpGUD=
z$TC4zNmg7D1s$V7N>*{r?$2fu{ABbM4RY|KSRKWhDAq>tbrkEOSTBToFBdG4X>-v+
z-^eN^=Mw%tiVab0jbd9A8>9Fk3YKn`TCB232-T>(CB-TKkt;5Wol)$fa?wIb<2$%I
zn&cE2>hBgpeP+i#7Bsq#!5KvZ9SwCHhz6$$9O7bU_xUYQ6bFUu+8g{i?q_cP438Lw
z#&DEfi{kzm9*E&&wcwkaU!wRmisMn7h@wCYRh!tqMRAfb9L1keoQmQ!_qr%9M)5ma
zkK#PH(BXMTSIjvZ#knX}H1Iaw^!KmGA|W=PWOTUU9;jIGQWSqgahX%uHJg%IlZ`7}
zN1OBIn`BhI>GG7ezoPg%ivPGw`1}tSQ53hLxXq<~-r$*L`hu+MQQU~4V!o<31xd>9
z$oDUu%vY7^4wuqpi-ew#<cT3IhI}#Pk0EaiKNhRHt)xq5XpKBQ2KsPMEI7K2Rp>Cu
z%JW7>3<YDTmal4|819XsXbg~SVZkCX*c+^}JMz)nVzJ=Vwc;_{7sKv5g?QK+k5glR
z*%w-VFoqH_JRHL#F_es<a7){3VV8<wZwtG_qx{3LT{?y`F_4rMEGJlAa9w5fP>NKD
zVda!8el2FiP%(yWxml0K(CJxKN#vP=AwjBXF@#e*5<@h_V=?F{Ua4KejKN|@VsK)3
zJr;zA%W;U|nHajp@Y6QKi=k!=wPNsNh{wPa7c0k5g^>_L&ZXc0#%dz0F4*WmAYrN@
z*{m4uzvwWVP30IKi=i$Xs$u5}CIp|VY*SJ@hB}h{wUlD^@fhmG&@zTrG1QNtcX}4n
zlQBFYyg^FRFos4cKIy94IEE%MJSCE5f={PPo5rx|elKaKc?>O5@|POf6t-pnh@_2R
zTfufIo%S5Px140%jvR22cTSadiDAk@gQd^L@LUZ2V<`K*(Jh9*V80wgPYzVJ{d^2B
zh=juKLS7W?A^1`Zx$P1xqLEi(=qr|crR?_>@@fpPr6he~XudIMk*S{uc`ojN7zW1p
zsG&0`hQSQNzIL4-jL<-1^T!r(NDObt<W`t#w|dt<d&U?R!|)hR$MAa$BVrgC!wN=4
z45MNg%^t-tHHJCgSz}^&D~9ngjE!L&m(OP^%c?f%qE)(=^W73PA%?eOcqfKqOVq>|
zC@DD4DA?cVvP4aaVRDRb@ymK@iox_Q<G*}v?Z4Et7~YHFvlte~@O})_W0)VqKh<(x
z(bNYq%#2}HEI8qI2Io=tRu(g7a|}PUze=n6p^!N-v~QQ7WTK`%it*P6H8+Njh0GH?
z|A<fFCoy~)!?GJy7KrhM!g;JN8(I`Yk}Tm+w@ZA^q8OIOc(Q@t^LS3Lu*ZMEl&SA6
zkKrcYa2oTvkIY#W!xu5^;;3>AWB4kD?_<~y!)k6R8@=^0d=tZ(7}hd|<KEX?>`kg(
z2~{g{!CS}K>6A_KEr;lW^&NY?)w;1*{l3B5T;E;4-`OaWvN?t=G5l8F{ee-+E#jiJ
zeS=5KTVrVaiP{mvPA+!tTHKEM8~v}k+eQALm&MXrMO==Ou|#pW_Havy;pZ5R#IP@h
z2~&)NvEZ#nB>N?MK=7wn@a7{555+Lxuzi?K7c}$rF)AH5j&g<a9Z6@bU&XOwG5o@=
zWvd5|S=N{8cnl|~EJaPL*{67o;3T$7e9<nkw_PIN1~s$4aVCbdF%;8LT*o<%Dr0~_
z&Wp?6)`b`@a}SwfToem`9n5zrhCgEH)!#2LTM=*F^smHlmF}%KvSunCw){7zFNS+`
z6wq;v5q{0M!FdsKU9fHyhwrn#6~mnv{)^#u49xy3c%)uXRHUnOmyHfJ^5|Ipn0Ndm
zFHH}!e5Y7mA^CLV7eZmWj@-g7NrsMsI_}lM*DV#&(Q26u9ffst&Q@QJbIy;<E~2CL
zDX+t)*03DEXfL~{j_tdR66@TY@6~-e?$;61q3d`+$AdZ^(NRH12_1XuR4uKejE<5z
zO6mBkU1A1L#=BwF|Iyif!z!zzoR0E3m>vFcaA~G+#sl6%Iv&>XN{Q@`<|`_5=~dKG
zNk^uR#5U_uoi9#OIbT_82iqYX4{h``9R~*lfid9|71qI`h>oa^4!-B*`pg<SOdVBp
zRMlbWuyrUMo{sz4Cmc4UDObnTg(}uQG31J3$oU)}9gMf><D4mfsUwS3m#eBWUA<Z5
z@%D*oI;wNr=!}jUI)5TmSvqR!;Hr0*s%B-gxF?*et7_@U*74{fl_U6E`viGyJy;QS
zI3~Hi(Z)F%@gCDrSI4)D`H|myT*s{oRy{$I`Z}Hv&Q}jJ+epWgI>sBAV4$&%CY&Gx
zMGWp6cv{EnI)><Iss~4zwc=#y!KJO4j^;XA=x9{VY^h^)`@|Rds*Px$n9@G+WpTTW
zj+b=2tfQ@tb~-N4GujKjDA++qM<JaAS=w1h7ah;&=qmhK9nYsqpA*te@Z1wF(+gY?
zPq^I$S)Hkel&&`Io*Z@^18Az8+C0bUrQ<aneRTBJ!R)JoBy&sJ$FCLatD~Q2o?B!0
z>*laZe@@~mn`EHQSEAd4bWp8OEoZQfytivm{)Ub>b$rB9orlq3n2vEe-r`{Hva%XG
z!*z_%F_LTcKD*XFcZ`rxI!5c5*urW3pS!nxVyq4pF~!$qjn^?j#|JuQP(jDrj20c!
zbiAWul8*J4tSLGs>v)$vT4BszoWtt5!;FG=o&9@UHqoeh)_Xd3oXnZd712KNzHnw6
zA2F&eGN`~bQ%B1Z_8cA06*p(;m@S0Lm!5Gx6!)m}{C`zG)-g}V79Cr4%-8XWjx{>g
z>iAU00v%uJDD;kBb|W8#G#2Vu#9`cLzxj>v-BIf^2A&QQrX@m_>iAs8GVT&Ou76{!
zN|mk<vXa(54V0O_U@VES!15q_x|p+C2QRX0>uVkBxCGd*HP(93`GLE~yFS&vVN_G1
z<9m@G7B?v0zz`J)IfVzmb8}||`kO^K=mUS7jvwigjvL%$I956i={T%oCnxbt(3gWc
zb_w4tNZ}qjkmCDv>`(CnI(|y=;>f8bj{U6T2p7dN<BW8i29HY9$5LMXBIH*Fm5>uU
ze$#O>ReD;-sT9BZSoZHJ&Y?al{G5*SIxeK-S9M$zekmpSL&#+vSA;y98ks-2L#A~8
z7V?kaH61^k2}ZvEMRk+Ax4{=x;FgZtdhnzH=USbz|J89vl>bXvxT_<N5zKg+U|vCH
z^BE}dK``K)$E)|4B=<;B0l^Fd1%(t6gaMxY!bG)u4HPwyWuT^kVg`yEn3gB_8t^^?
z_Z!d*gbh4Ec_Fuyfzm=AWLrZ1X`d)*;GeG9EG@$qiy3&tKm`Ny*Er=2JS2p?ypRVv
zBzREI!v=^HRy06)B?FmK`Y2oJkSKpLhr*C>s_n>MlfsCB&bDJ2unj~F#EjrCle!W7
zi?CLngdtf|@b(~sMUDa2Ko$1UfFftRM(~e09t7mk$U{{#$2f73P*_<A{ijRS#FOgc
z7_&7bTR6v|548+r8+g$`4+A*{at*XF(9%G{Ky3p}xLq5lW8g6ZjSL*m@#`9R+(3N;
zPZ)U5_v#t=qhwaD?>*Ha!E6JT7Ezk(@!HYQz>Xp6%pyg6(g5FO(3styr?%|2?q8yw
zHn1+oZ)Sj3(x&Wt{i?i}w(zo=i=;~tl&<5pGSJ#U7X#0*x`DO^IvVK25r}!UhX$9J
zb_UuTSXw5lgMscH64NVt#Lh-=CFN~cz8MC|R@dul;8{-hQ1!fl=L~c+u%S{lUN^5*
z%)Qkw_ds3mOW%7z6uJxY)%H|=$-v77h8h@Vpr?UX4Dc>@kbytnRJ{zmX7F)MJlHv-
zw}DqV8jpM1KQ?~6ZuRBR4apv0fcL2V4E$0ohpE4i+4F3=G?4oBJeCeN@VbE^2F@QZ
z^rnH?MNA6cFu;3&Q5_OX%jE`lBX!*221XbdDMNJeL>3zwWni4xCm(HKjI>TZR>;eX
z)py^!ZyBgoBD=SjHPOJ^3>XvDOuS=Y5<M~StAWV|-eqVR_{_i*15-K06a0_3MmVho
zW*XSOxd0{a8~8wqrW^S29iI~743Q+Wv*<aU8EVX-wPVJI244W}SAH~ju_ke@fsZ-S
zhpc%977Cd!_=zCppBh*oeDxHIS*Ct(=Ur@IiGj7!3R_%iV7Y-620k}}n}pfbvzM{a
z>e(N6NUSt)eZTs`z%k2RW#Ib`2_}A<`XwjJz-r3(Wizc|<ZsN~-yuOx@-<sDuwJau
z;4uT=7`U|1`IdVKjW9eU`;&o<LbkE*LVhr?NyuiwErP7LRmkrh65ECB5!@lTQ*f6c
zHFpb1>zE+lD}0}U{i)IejEB5I(Ls?MO34o!_*wXol;o%ZzMzMi^#4F2>$rgv++z*g
zHh4I^^_zi{22OF%_Bza-Ht@TFi>%85*=wH>JTG|Gz&Rmpk7cmvf^d>|a<l$0aGB9=
z;4cGLxHJ5oebqp@jtP>!Cp^_KYd~Y?Z*GzXZixIE=fVJy@_5I@tIy^%>zE+9DW%Nz
z=$QD|z#VS3Cd!!j&%j*+g-pOi9usLM?lDooL|zm5+u8O{R(=!PelhZyXc)=jG1ru&
zn;@RrX+3?`&JeY<IR(iJiY99nHc`aHeJ1WVaj%J@qEpNStF!K%*#$|8OO|HIA23m9
zPQeGoY}aGyl#~!&Qjl$xN;y;3!~=tkM@>{RQO-np6VYpV9x_qU<a?CNhs_`|nH~{R
z!Nm86f~ScRDwv>56RR>ZLMAj56VDp)UtJ2rCPKRmTl6DT_%Bb?L`<@}pdn}qQs3hG
zy(jp_kF^}B>zYtPJVDBRA#oFxg;Wu&TGL@sbrUt%x`}DEoh%bIO>{QV#Y8O=*(RPc
z@wAB?6S*dyFwww7!o-G$?K&nNGcomyUE2))<3Li^#LX+l<0k5vSe!rW=TU0iTlUd;
z1?ro@qy9`YJ~A4bXk?;^RD6;Xam#LOf=?Is*=dpI7H}&!%`Q;LropBrnwe;0qOFPM
zCR&(iW%7NjHkDhND89pDi?m7OB&|82_qiLo<ZVZ{7dbr1xuc2pCOWX<D8=J(DBLqb
zbrM%gk5RP$jESx$dYR~L;#m{Vndo8SB@^9DJa6KSj)C#xM{-^eC%c;<U+}Wcwq7JZ
zZ2el*ec8nD{x)B#)l<m+_l;US3(mxrof&lRRTHn77-eF#i9RO!niwYI!=ipB2ACLV
zqQ7+Hk-jx39Asi-$Hd?f>J1ZvIek^s>w+XhgnZO7@g|E#sG)+()*9r)P0*7OtZQQB
zFWJA0b(l!Tu%{f@j)@5-#+i7_#E9Y9W%6dxe|Cfw$8&P;S`Axe{XI(MzLxtoL&(G=
z6O&DRWMVEu*F+?%>U$>Mr~f;xDS}fOBtj@TvB#Kh;sX=2BpznS5EUP-W}0ZdE(rL&
z^9pc1&NeZ}gmcwkJbY;4U(Y|p#qRkZo0um7ywJpa6AxAK7jPNwb3WlBt)9*7ry?Zh
z#BJzXgY&q^#PxnPJ~L5ujH3OeCO)S>@nC%|GqK#n?;g&0Sizy7O9~qmR+;#M3)4oX
zjW11nWx}<fEUY%M#>7bzr%bFh@wJJcO&sBfnOJXPyNMkpzG1vk{*b%H#CJkAn)re1
zS2*PxxH=~C5Po;fJI*FX^-tDj6Eim%6p~Z8mD!FC(>5VLGMM*z%<eR?%fx;Y2TbfX
zvB$(d&ewfDYgtd&d&NGDoU7z+9d1z0^plB$jO~3MIq{J2!-C9CFJ|_cY3J=|A2o4|
zn@Ohq3%gL<DLcaWRkFtgPYC{I@-@LWb%>`qXeMrRUQC=Zan{6D6MvdGXW~33;*L>%
zoI$THn7G1JLXlrIaY;IReZBpMiOa&-YZkG&;Y;)WW#aE8_CIWegn?JnZPnJ^(ZRmX
zJ`Qkha21#+`L01uW&V5U79(N2v$b%}prVO8-2AykTX?|2U2gss?zK?VLYjq&-@2?-
z#6n&xnDKmq`7NYdxJNjJg)I~io?)S&kV1m6Fy(M?h}?t<|M!e*@y=;9xcs$jdQMN+
zmtq!*TOhg5;#1c4!6zKzgBD6yC~cvP1$LpNg;9IbN(pb(qehpCPSX)aSql^Pdfl!X
z?zaWYStxJep_D(mg@-LXBH0QSGz(#NM6!?aqzWOK7D7UP92uMox2{UyXEQ7CGa~Y+
zAhR(GBmWGZ<~33h(}I=awh+g{iKl|Po(12+84G7E#4S{2r!0)IP{l%33vDd4wZKCx
zt69jgkZYm3g&G!LPm^FrSUt<)agqOb<*H>NJH_ALn3mu`6}B5%Xk?)_`#a94W8pCi
zbw#H^O7n3G^@P_?NuIE9V0-X9EmMJ~)1I`jbhuIP3Hy)FgJ+BzTWFHfe9FSp7MfaU
zCX$wd%~Pc<EUX$F>;SD&lGYYxRrV=qXQ91??iOCO(D{thfyh|eXOnld&`E^<wQ!j2
zV&NGJT`hbz!eAuuJA77uRt!ET*v-Q8LS9I<GUAV5@Owxoj<WEQg_kY#wD5{346)G5
zLT}-N1z#2HC-|C$K0^8m(oU^|Y5j!{5FD7250W9J!s{X#A~XJmg*PQT)WWco=E<qS
zL=U$xA|)AVVc*rj$x)SqqOlgnSy*mig%vExw=8gl&ag0^5o-l&aH54Dm*!>B+ZNst
zBa<vl6Ea!wUBM}WQw3?(>Q(4H;qMDhPsu;9&_f>kpULU4Fxv|DnK=wIE7-WmKe8~F
zlP>xn3oa0xCpe$Wd}QGECzAb?<6Jz*F0`<S(<H*aVt=u47A>(by;h*}xk#1?(#W;(
z&PoP}MEFk@zM$N~UJi~-_g5B9O|X}Duvc4HV_~g@uPtn`uvMzB6WnNFy@hWqd@I@S
z1-}zybH66iHl%n(IlJ-)3!74s&GcM^)ZAuar^tU4+%C8yrP;S!+AiU{1^1-nlPag}
zx6u3_kK@Kmz?k*+0SmFhHpxK?hooQWKiG#Y{A}S!s@4f1M=gHj30Ceeg1@Fpk8}Co
z8$4~!^qYl~B0nW~I;HbFSKR4fJkMD;Zz01*K^qq=T;$Z)$ZO-0g+I98uC=aOc;ke9
z*$S=^SFB)TpV7-^ATg-^wD1>q>5ew<2LHD355s`_sx)y+@P^<`!Q{5w?aj2?-0G{Q
z{cGWl$p4dU(%ZWh^6>I4o;Q6cEuW42Htw;(Sx&cu{f9mb(_LNxpWK#Fzy=A^xs7%q
z8?aH1IyMU1C}N|Gjj}fGwNcbYDI2BjU~?#Dqqx}TX3p$=skZKCX^KB+qeP0A<WCBp
z1}CuHNmOMN(G8M9oe~U1c7Yd^hxpDJ8;{z-Ex{u;D%jw}abM+Sf|81Ma4BI!<qp`a
z!o4VDL*v*w_`^ZiM#RR04oWzP+KAcsz{U)=Xv474$>#S$Fl|^i9=B1?hHb;KQQhV-
z_;76~8&$+lkDB%K$8A)$;fo~WTn+k6VR9s|mPoH^qnZ?DmQGKmEE_d#By7~SQOicQ
zjT{@fHddagF=JsG@nFgHKK1iE@_+%cj*ZarjK^%$wefDLbS4_F<fT1ZA|Ul`JYl1`
zjTSZ<NJCHBXl$dQjaDVo8`&5#Fc`*4of1uKJY}P)jb=8U7Wr3$yksc}b&|@%OQyGE
zT^ns}w6oD#Y__pMo&V{xR(l&AY;=@T)~!=AaE8btrY<&~u`$TTU>jX+JZqz;jaO_u
zXQP{q7j5*g@w|-}Y}{<(b!WfCNm|G#nXZ>iKUgAt%D{}5#5l>zLa2G+OS_ki-V8q*
zeMR`H;A=Lh#+0<v&qjY618fWw%d|P^;k0BCISJG2903~>Y)rKAhK)CEK0=03Hip_5
zW@EUG5jIYgN<aAjq!;VB%vSZ%Ml;xKjI;5Ujj=WsZO!-Darp<(JcByy#dsT(u=?Mt
zgTrs%w(*XQsWztBm}Fxzy`sZXv3vde<(FrCydaIr)TDiq_oP$r+n6psP@XJJ;!GQ}
zY#g<5%;v*ym}6s&jkPvDwDA$!wXxX7TpJ(T_{7GiTqC8^=h=9*ci#D8mMzjCvkN$V
zrPCME4I8hE@UihmB_oZA3QKG(wXuR>Y2$Mn%WQNhnZ8^skW`hFC6m6&#up3^8>?+l
zzG->Jmo`|G+bQ^8RZ@q9MPJ)kXJb3prj7MBzOk{%#%3Ge+W5}K1{)j2eydXHElQ<-
zZ{x^eXW(1L4>oQ~s3&nm6OU_Ti;ZnIezdWbp;aRNvvUrG<(6kGxax7Su(_Q!cG);!
z<0l)tZS1kJ*Tz0ZPW}8$R6yxqz`K=7=W5;0HQpk)w>fBoF?`6zVOc)&E~%xnGk&Hg
z;#kjaIn*I`=#==y#;-Q6+qhxlIH!qwxQ&Z8eiO~pHh#BpQurwwOsshRY_K_;v2oVM
zIeuI^Q=_a5U}>59^ET4Y)?n{0+4#f8pEmxIT9<8Hv2m5tF+1p2MG0W81(LtH7nMr?
zhr6_B7AuvWOjIMeY2%iS3<m`r+_v$rjWh>&9o(_;pN+dV@;HH4$#s!jJ6w0POrFm{
zeh2qBDByrgCfy0v7grzk`*%ttIV)09$N?M_bx_PfVNok0W?6+5neKH!HJUB%;64ZU
zJ9t2fSUuS&k$p*~k`78a=;NTTgVGMlIC#pz(+<iyDCeNEgDMWnJ9x-Jgj=_RhxytW
z2bCOTN~0AVJSrrx=76r!VcO^N4>{1d^GhiQ?SErM!fece?!a;2IxrlV4lD;YeJI6S
zfd3z9jgm^G(m7emf$t#hfK%oryL`3=m6=Uesp_DbgU1}ybx_?w4F}l{avWqisOg{<
z-7b|*Ysn_aX?#Sf^jrrC2elp45d~UiTeQhiawZyo+(A7DjT}7bpuU4A95isyP<&u%
zQileUi4_|=Xd)HKsX#e($eTK7=HOWe&pBxBpoN2u4)`XYmJV7uXzQSzsI?YsBRH!>
z`fDZAiR~R+FOl9sgxzF8B`*P;MMC4x2<akf%rbQq32Sw8@VtYb4qkEaf`jfNe@XB}
ziS!qRP`?L<;!F*00^~1?aCeFHUP4|K?48nNt=CeVG2D++?_imO<qifo80cWKgLfSa
zaxmDzXa{2)yzXF#gW;S$2Q>SJgEt)v6;5lTc3Hz5BokY|{iQcDWq*`|J<Btgwk*#$
zyVV-&V4Q=urSvTa;~h+JFp-Nwwinjr+Fvj`gXvnSbmBV>COMd$x{i}faWK`vTn8UJ
znC9R;2QwYaa`3)`=?*?{FoRtvk<Rq0Y=g8(a_mm<8FsdVIS!cpNF4Z(t7CZv)3`$B
zr`3EC)|%&FzJt#kEOzjTgHIhSbg)SD7YK57(A2w~5_`lxM}yfV4wg#k=MFd^oQ0$s
zIZIbKSm|J|gMAKGIrzfCMg|!59sbb|>m7XKV6}ra4%RyOn$do?2DkK9rP4_p3H5a%
zjPwh3)NdVp=U@XPP;~w+k^a3jJy|wPW?6BQgUt@MJJ{i1i-WBWwmJCG0ZVC<NISIr
zKfcq!F3u(=E7dwnsg~5IecIgb;DCeQ9GrCUlY@f}jygEz;E;pE4t{oUMAT@xrPO5=
zR;QhB=cN7O;8zF7IXL1f<w>1n?^uPBQw~l$I4Ax3UGR*9v)pG&1<D-KWECo(=O!tB
zUX;;hFL>dj!es|n9Gr4-+Qn4|e{!|Dc+SON4*uo_=pyFg9|zaCwYs?9#dQZaxNo~C
z;Nqr(TMq6z$m8NR2Z}qtgZ~_SSTC4vUYC;>abC@tr7+D!UKjaX<adM3f%0Tgx@4)$
zD!*L~Hlhp{1zi+zaj%O)E+7hpT~IT5Z;&)dWUZnuin%E6VpXZYLQ+UvQ!4!d7Z194
z*u^6*O1LQLqKu2OVy%>5X&22q2jAGRV!UK}ITz(!JmdylNSaC_8zrgWqN0nC3(e(W
z{_dkLD!IrMuV`UGC5N@>4>?KLMMRol#bgnQ?!s`<&_yE`rVGnOwu>AWwhPBaRTtG<
zxGt27xQogzJh9-rK`hliSL541Z6;0}o8Y}l6)B~hlIkvMxTxu(mJ8}+(T=PF7Eyu9
z+)s$NN~GtyNVurWE+nhFsN>=>X@aHHVOu0@qMnQTE}n4Fzy&3YHwsxwo5Z9KPr7LA
zqP2@QE}FP_%0)8{sf(w@cvCl6KFNyIr;!#eT8gz+qL6He*61D;+PY}xqBCdNMSB+=
zTy%8NN%UEowDA9W$coR1=Ur1e$<l5vp64XG_{hZzF1ouI=3=;u7hUvl(Z@w!7caSZ
z*+nlGy<PMaXQD>hD=vSj52CmC$vm9&S4IAsi@&A6$<H#J+<q?lyLjEj5Elbn40JKb
z#bCyRk@n$$jQ`!@(n#`Nmj>T(@urKRVvssav`=Kw2p1z=yz63$i%~8{yO`i&qKh#u
z#)|%1g5y%iYX@(n$4i!kSsHoU#XBx0rCen%m?n!373TfrO?5HN#Ro2CxOh+G@4J}p
zV%h)W39CG9W2TE)E@r!!BMX7Xua^p3O?t~L$y^s7yV&evi;H<K=DS$Q1?b`v7oWOV
z;$o?b1uho4Smfd}8P(*<B`%iMlPin<b18jJH(V@tu_DzX)shOl+b3c63)XV+or~{X
zeC1-bi*Fd}F4l-OdX>~)E7`AItV_w)3*k)~=OSG=t!;3z(ZvrgHp!O4>dBS+g-kRR
zn6|pu=He$82VMN=V!MkyF7~?E;bNzYT`qQuHFk%)7Na6L@7#81Y9E(#$@Kj$4#>Vl
zYaH98S^9a%#bFn}xcJq@&n}L*IO^h9s_#i>{<o7bd)&ndw&LQXw8$b_qdbXhn*4Vc
zXI!*UXsK}4#X0U{3J)uscX5H+sX`%zi!Ls4rEt4;@rR4cj23S1F0OF%ckw5;eNNec
z4BnQ|RYorpEmJ~rjhnxV8{GEkr^GFbl7ywKLj2do9d7ap`4s+hao0s2g)|iuQJFV6
zN&Pueox=PI=?eEK6i}crsYYaCmMKGlwHUxqD6H_HLJ1XIJBlb2RVb!#FWV}a&O~8x
zh5HolS9m~lrpSIptSzO_luW-eB)GVgR4A=bMxm6b@k-6BVOfQ8D)>U9yb30cQ^{!x
zK525tE1CX?LIs7I3bhm}Dm<!SD>w?36f*gbG=-Q#h({ACL=?iQ#JcUphfURjkA7z9
zbX~zvFcmC?CcNdS=JU>qIwZ`Jv#zV46e=rJQDBj$;4ARlBi?SYG-)u2RTZi!R9C2>
zKnoNm6C0vtmI`jwDCezOwnC0V1BHePxe5t|x(bhrpS2b0C_I+3z*cA^S)HVwLVblN
z#1y;0#3I_Pvp;Vmg(nr7O13e(qwti%(_)iqH)f>`l)lqQ(vxNi%|)3Om?&?h&{|=t
z!Zd|83T+koD-2L*$5MqC6uK*PQ0S=8RpD8MP70kBx+pxOu&hLSGO?}XC+_5j?&lP`
z$+SMtPK^&1NHS54Uzoh8&_kgY15)87g_jk2D!ihC&+LQ88%#-4|Fik3!fOhB75a(I
zJ~Un`orwyeb2T`y$va{8bfCf@h0zLQ6b382t}s+#n8FZ+Hx%BK>a|M;7jf3*#V+8b
z(}ydJP#CE&N)&i|Od(5ohn&11GCNjboWewfw?*eIh4Bg#RPY%gX(Wj>`;NjSg?AOE
zh-O0koXj2IqMd9vX_ovwh4&Q}DlAf%uJD1v#|rZlW+=>5_(-bHQkczEsqmo+?kJM}
z@bbz_HnY6)GI50GGX7Iv>C9)8O5IPmQd0NK3piyZgU>r$`=2Q+R#>gDMq!D<QiYZL
zc~{|cPN>3ig%w;K61@x$revIuaA|O;zo2o2uOu2-#9=40<5XCy@U_A>bX8%UgxPut
zGsY?nvN{RVccTBj6j8{!Ed7D{3a@&2&BJDeEnIqgjmjRjDr{4Lhr%9yRM@WYkHR$y
z58FEw_A4Av*r~9Ked(0g%^8uRo7)t#)Y+?Wa+})6p;+dT{3NA+D->U)4hlaccv#_Q
zh0QC~5zZ7zr^Hc(V+y~B<|(eS73x=o;|eFFwAXI;Hz76a=CJ4_H<N!I);g{5yTTcc
z;bEKEb8L5a?pcL`yIp3P-d~{}J*+P9Dxh#l)c&B(QtyhwWid#dndj71g+ICBtWeDU
zrI2@p`g~=;r>#^ywyEn1H@LSe+~vl;$Gs`|ufi=MZ1J{2_Bq9(J0c-zu{$@9hcpiv
z9_H?L^LohV;mRs?kB87QFF$|lKWwLaX#9mDVQPL(6%YmLyt+yilv;%ZS-t6Pr-+Ap
zJyi7YsE48+ig|e03nrzwhx<G{=%IvU@AvS4hY?FX7SVGK`|cI0q=!--%6KR%O;A|c
z1LaJGFK3tYz)@l<?*YraB!5VREPceo_S;ScG0t&|tWuRcWO^_?SnP|3e{VYx4^a=A
z@US3fmhzYfU9yG;R;;=$Xp!<Vg6yX4!4=CKaEEc&DZ!yo9y|}e$k~gyhk=LGga0~5
zyXR%LiifJ~WA&_R9vXRg(nEC*H9TZ_sOcfsLqbZ2UMW<|L$-%4m#s%mxJ)@BKiWoZ
zU1Zc|oG&u!h-AT@Eb_<LqY5?Z3O??ko{;*2PY5;;q)tN*L%4z})M)IXiHBD_99Ziy
zJ>{XThjt#G_V^4&c2hx;W*(XgZz0%Hu$70_LfUxv@N;8+do}KuLFH$k%v#wvNbNmz
zNLlXa@%5_cEZHs|x~1gLc<3tp*_7ltcE5v7XP)=)f(W|{zU1M>lui#1v-4D?&dVuD
zPY(r}W>M0MLGrHCTjcbCl0F{#dic)6_a6Fr=<i{vhtE9>;G}q%>S3CPK^_J(<UEY@
zP`hpR>mJ_lu<}JUd18SfB0141@ur7sa|^I^sE1)994<)7Ki3P6^1!!CjPvl82uFJu
zlPVqSfp(}i-opeB?|PWxVIt>xhWWPWT<?@%DbqV1CZ%dk7V_`h0(^VULuEXsH4j&#
z&U;)?9zJGli^BAj{s%&4c$g_<mf-AE=^V~cihm^Jm2{id=6P7?VUdUVB0QN}^%EhV
ziq8vDo`2?Hv4<rdevpprdrxipGjNz`NV>Po!*UO6J$%ir_<HsV4_|ork^{)iVU9`3
zDv?*x)mI)?Q}cX53OAfDSRtnxUy!}V0|_<x%ItL>PUg>8FZ!A38GN($Hy*zAP-Uh`
z9pVNLMge;l*S?31^lG*JgGe@U>2alSQAqZ~YTh<({vNtl^|o`j>70mmPK>DP5h>Xr
z@|~RVsvff)yV`p^>}Sk)Am8hu?mzZE4>v{^Ao)oQ{^H?R4+lLoENLI|aG2|~f&H_`
z$8~a!csS*`_2c$Y$x?DmNS>n(<;Okz#!h)SA$C~(<k;-<)jjs&lt?y=&3l@$o#j#a
ztcP<RM*A4!<GjaLPdX3!DB<IRhl?IAdEiNRe|q@K!ym#g3tkaq(N(Ssp5xKH%HJOT
z@lf2yeLlW^!nwx2c(}<);YUIbzaI_0A*|OqamxcA1^&;&Z7HJgUy|bP9r`nxxBbRl
zk>~M)ifKOb`p74oS@_5=JYDb}9|eSD2o@47=;LC+;O3KwoLE?}h>v@P6csEc$Wk5^
zc)#$CLxW3vxQlwg$GdHVPe~<xl=9KaM{6IYeU$O>kdKFb)V-_9`oSBf8f|mS`KbS+
zTb{k%;SS#E-ah9(;-i8O(}(4w&OEQ8kC2c32Nn6FBB|sfQwSxc%-~os%}3bB#}8MF
z_=x(55vQmjdvb}oa1z7Er&AS)?Zfd=n-+Y`v6Sm0?xV7B<-_yg`*_**kAzkE$5pYD
zs)~=QKC*o*oNqBz6H>!Rbs^)YDhjhwr8R}rqQjE|d5&arQ>6(X{SSJSKgL1u(Zt77
zJ|6c`&*x_u)zC+|_f&l!Y_x%oCnQTr|990Ko<H}#qD~_pPm1#4&8o3zQuwrwXQrv9
zKAQRb;n@GlQU6U=(@noQhhmy);bU+C#njTr!6^Z0<D;#QVeIB?qn(fTKHqNR4Dk7=
zKRWt&qo&`}M<*YheLTl(Ex(J;KPCBHeLTyCIB^HO5BDo}ypW^lM*j>tpt|{Z-p30*
zy8C#EmVLa)K2BFP_E=x+H+uLuY^nUNq9p!-8aG9?_SD{~>J=ZoeDwD5s*k=tHt^&h
zaeya%^%2tQ9#!*`jK7Ol<@s;@{NNP0{(_tGtARcSv1>kF_xT!e#V1{#?VK3m<4qrn
z8t1g$uHGQ;SL3lgIYUK49m<DGuSW=u6dWbUHzIK~#`+lN<C>4_KHl;%-p6_$-}so|
zW1^1_eSGBOZ6ELW{J#d?_wnOGV-g4OYh#*^$qajuO!4t(D|;#fFWc=m%lPV$(Y1_S
zDb4=iKvs`;?CCyc(*6kh10T$O-`AOuBC|NoK5C6M_!#!aLgpNf;k7D5Iw$5bwtcMf
z@r93hKIXGKK0foYV4d*^L#U9sfU(Vxn_zsk+Mr96FXUX@G+He(7W-J@W4VtN4C9j)
zomuMRb02?~wsZ2?%Q)lZZ6<4gePokC;YxNtud_B`&w0zvd%<{ZtnsCfuY9cL1Ql@C
zGW_b<YZ%6keeWywdjpNHeXR3?_uE!A?4f0BmVWEwJ0B-}{O03(&Z&>RKKA+8=;H?;
z+c-o%HgUmDFn%a#Zt=01%4-}B)O!<*t$y$a^W~4*MQYmnZ`s>@?DVmVy&Gxl@Nv7o
z-K~%_Ja6!v%x)h;%i4Q<WWBEF_VpFkejf*X9Px2fI`tDn&d1M;dG11AI)^yyyPS=h
z!(Jb{$N74t^Wx3m`RW7njAK52^>N(CFSIZ(ko;Z5ncg|kxR^Vurdwc|ani>rALqEe
z)A)?6(>~5{`Cl-8=ellczx%wkznFRVP2;SOX(ud_*~5$rJ}z-sXt1bz(Z}f;Hiegc
zT=DT22j9n4AI0yt|KtuFvo|buN-S`Ao&fogqeiTk%@-N`!*y}O=u_9d;p3){nsL;M
z;}+NWpH}HO%EWQo$G?)jBbX<S|AgEXq}rO+DlH!9=Zzy@96h&K`Qs=q5(?9W+!IHE
zI5OfWDA^*Z(n4`ScwxbFcPv)9S9sBsPO&&vbxu%zUrKVnkOu@G6f7ZFGLBM0sN8Ui
zRaSWUI35yGPOw7%+=qo!jN{Qb9uZFc3PMI5u`9)q8Anygh6F7^O^}-5I3mKMDM>62
zUAU2wm~pIppc<8JkvMU<LX_Z?>y9VH7mN#57OW!3ir-ersuo9e$&Q)p)DV)DD$O`;
zWXF*c$E$I?7RUW<vUB4+LmSQFNW@V)&VS7Z!YATr5XWP}>k2+D$fA02)EC~kY9VHs
z8phEmj)Buu^<0&dJQ+vhlztN-PYFI9$F;#hmF97@h@+PXTgK5!$cuul1-lBi5o{Yr
zyExhl?;zM&uwxvZganPIM~PkHct#|fwpq+Rn<{-yNH@Xf1z(7xd#beif3Y4Z{!$z-
z3-6hdyb{OaVFhTdw@8w_PaJ*Y7#GJ|arBF$e;jYbQF%hnfH)4R>_PG1yl#?#lAWB$
z8XU*#aSVxL(H;9x=ftueiU(O!f$7aS-v}Sn8WzXt)!uO7BLpcNDP)x3=s3m*8Jj9S
zb=(^t$CP2}RM?*q$Ama0#_@KX2dd-UIP66^ugp`ExGF1En;gg9%xWZqGX47X6D+DS
zGG}TW<45K&vFN=x-j8E?93RNz_p9QV5y#9pK8<66NM^+`R|s#MX2<_Onyv%tikfLt
zMBsgBQU$5fk$rF3d*AJSFDL>E2x2evW<eA|v7sW;6h)B^f*@T$r6Wx`(tGb6q$2|V
zv-y6{*)wN$GMP*!lk9FX$zqJa#|k*^Kl)qoC>(Ko4kif7Pyf*;=HS^b(c9PL|0pvA
zGDX0t0#3`p^#4--%H*5*AO4F#W(hc3z&Sbak4BTXynZ7^5a$X=%Df!R{|{dvkgdIP
zFV4Y|96XeXUKjt!!O|R@wQ$bDvK%bWK_MN5b*#w2${cJ}uuZ|AIarm0R~58UusR28
za&Vu5d<xd)U|kMQ=ip2Z){{B#kL2KJ4mOB_Hs;{39Bj(LW;Rd`cGKoL$hFDcmV@nN
z7Wk~oNm6#Ouhj@<e396h!x*i2-VJWWl-2yUye9{Hb8t9^KfX!t%fbE}9LT{zQf|w8
zC%d2Al56(ynf<GyexoD)p&Z<MHQ4Z2YWuM)@*iVG@?`JJleoWP{CG|j26-X}kAEwj
zWZ$fjI3?iuHF4r+b8s#PH*#<@2j_EeAqTHrluBQcF6QtDvZ#GC|CJp4odZ%X=iss8
zDc#lgo=j~ln(A95byZNV33y#V?m1euFm;P=Mm;Y|cWA3(si|9HEoLQd(|O)7|IGpM
zAMQwZsc;Uyn=R#1FspAW_%fASiEi@<m{&mF-prMKzk>Wq)L4Ol1q3WCU_k|03ZS5n
zg2JE3yaqS+$VsG#f}#qFDR@9ZH3iib6jx9}!Dn@XiV8|9D5apRf^xiC1*H{~QShLG
zxr1D}PU^S1!LfDjm}xE#G<Zlsc?C+Vpn?*0u4{|@O?Gf4l%H-DkfD--$_lCoArC94
zs^H(le$jUB*Hh$|>jq!1cZb$Y*HBPXLAHXJf?5h{E2yhr{&=~5&7h9L<*n2s3Mi`c
zPx4PklO3*ml1NQ%bjcG}kWip1&=e#EJx8eV`O2iMfH0*XEszLrka(+ApeXz&d!)mt
zCBCk}P{3L=?dl$sEmPo@fVO~+fMjq5;tA*r_~-^VRFDyNuBV^@#R|N>f=3lRCh%jI
za<zUXtMk}ILj{c#JguOmg2oD-P|!p{Qw2{7w&UG%pFAyf-Ix4ftJF-vQwo|ZXrX|_
z=M&be&E=zUYt6poqJF7<d9#0QDL<p&Sp_dDcuB!?3P^um!3zqQJzq<Cbib6>QYQX)
zOZnRe^SrDu+Rb`J6vQGZlcHKHXro}df*A_hDrl#mM%!q~roDnMJ?ldSA1Uadpre9L
z3OXz3rr>P_T@<{g;7tWx72NsKeO<_WL&2OgNlrj@m@hp#QaaT&|E(+1TU5SW9wP6Z
zkH4d!yMp%=yszM01*f+pdeVS*r5+0UpGtn+D%dwuBIkG0V!af6pkVBLY0v&-jozt8
z@+DSmjT!f(j}?5PU??l7ptpig74&0X`YKyiK_3NQD42L5iw7^vubJn8F^P9B<r=pu
zt1s)qwiqdOzng5nBUyERe1L+13I;3qM!_J3|Ik6N9l5_&u(D))*;I?QAkuP;MEEVe
zh=wf@|8lkTor1r&O5ug5cHb)?!b%YiQ!re?1O-1S7@=S!HCHfB0Y!~cFq%$Fiw&1(
znemS%SiwZaB;^qKQNefxqn;|j+o;6S@x&Z!B5k5zih`+>Q$+h&*tXoxEShLC`{{P+
zx!bW%J4OLl(>T&z$a<?n;<pjfOm+~Cx(e2Clu$5R!5<2ivPBg9sziq=%~$XnyXV{7
z927tBW9)YYUVC${f_ZG&Qc2?fd?7788(W}YAxqp8U!-6$?O97FUbI4T2@SX^&O_`;
zS*Bn)ZN&j!!3qU_mbUYac)Jo28*%=}>i2)7RSG^_7av<ozj9tG_HGoExK>nTor3iW
zHgGJm<-Y{%P)pw^kZG-gO#<00;1)J3WA1Ia?=5M&f*l+^G(4<fr-EGyTos;*-3s=Q
zSw$fgdxiY-0`60=U%>%ZxmNNded&;NP{APuhZP)AaGc$0SmG!xd{sKe+jFslLF$>6
z@`l!lnuX0u%jFX+dR#<2MK4uwMo6HLa|+I~rx!MP<Opv|@0Fh0W?fKlQNbnphJw2a
z?kTve;EIBq3U0BFoXfhZ;F^N#Y|U|2*Q*kLV=<w86oGt0!6Q{tqsPVm;dt9qitmrz
z=Ga@r?6yMwSJdJTb(<1fc_iO=%j8@ta;qq);;98v9u;|247!laui`!x`BWV2lek~S
z<wo-1-adshX?)rAw5JmVR1osoQahPN2_xk71x(_F)#x!%OGRxJMN|}3QB1`HDjrf%
zUPW;gB~+AA@t}&5DoUv+t)g4GXa&~Y9o2f$&+@tza>*gmdj-w1D$1!?nq`tmhWt0A
z3O~vfRPJO%RTb4#R8mn{MHLkft6<W_-SHb$Qm3n@{4(jP$0Z&>^r0(PS8-=}qK1l^
zD*TPojFFN2##f_vm3iY6FBD4FQIS?L;eqT&RMb^LilibbkZct(;<@FxiiC=ug-zl)
zCsG&6rT<zk%YrARVnGjSR^`-&gHnzPMTM$DQ!%zo+ESsbFjSbNJYV2WiR6JQse(09
zESELnX-j>VC2bXs3aVP-cX@e`@>K*XrmL8tB2<x4@t%tJRn${aU&X5`TB&$c#bYX(
zs%WO7fr`gfG*<D1iiRp0(Os9tc>EMk0AN{%OC)*z(vvE3Wff==Nl1LKQKFvr?~0c!
zop?$`a~031cveLV6;G>ZNl{m&N&6DlyG!JxkPAy?az3Zxc`B*mWfj*C$6lbd3z;<X
ziz+CJ7tg<XMYMavZBp0i(zpR}+OxHaHY#3M@rH`FD%z>&sG^gKjoVV~Rdi5+!@0ce
zsV9Dx4{wR8f2cybvx+V%UK6EkUmCm8Lt>M?xI138O!`d~T~)lJqPvQ>=rbzb79~D^
zN9{N+Mu#CkW3|~3@2cp*#-jIDPE#M+nYG|qRaDHao$jUL0~Oz^7^>n!6(6bSr=q`#
zk5zo4;xiSWtH?i6?oF2-D}O4CmUpGhGr?%pJ}SPTOZ+Z>Nq5>D@2i4^vJt~GS+q8b
zK2$zEK*c~6gH?Q^V%fNqS3W&R#aDv!Yj%VxDJnd^L4xl3t?>LID!x-e#pYdzs=z9L
ze_f)?A5;ue@uQ0IDu$~Vp<;|Enhi8k#V8e{X^`ns?HW;`iP3Rp**!@ft705YR4;lP
zFE?Gf)+jYW#ZSU3rl^>xVv>rVRZJH3+8Ix>?RdNxeP-*0=x8st^;Gt26|`8MXA=5@
zX;yruieFTmRB=khEETg=Y+xg*n4{uX6@RdYs`!m<!H%F}p^CXG=27_((tLLRuJLCl
z%XJsXGzF_h8!lqwc9#~bSR(ZNuy>j!V#V2ltim!C%T=sau|~xT6)QOwRZ6eoD6~YT
zGBn+vg2J=Ts2G)8tAdWbPQ`i-Un}!a4!ww+v`mW!(|@Vh#L-*DJ{6l)Y*Dd8#ZDDl
zg%fULqo`n^l*S=~MxfEyh`TuW3)k8sMiq`2l-6mH%-%%%>{oF>#Ss-pRnRjJsyL+L
zuxMYpF&U@>N1;J0<YOw1t2iNyPvKYkMMeBi2yJp&#Tj-V4f!>kRdG(m4HY+4oTu?Q
z-m17lhg>IJRB=hg-$GB`GNVz@Jh>uLiKSmvagFxmD7sf->2y^3K+EMaJ^z-9e^lIK
z-`8+k#lIW|RjfUniyG2&JjIR<d{>D5_Fd`ShAGl>YsjM^uZDV+(s#4W`?RQ~E)~~U
zqkI}zG<}b-fQEt^N@*yqAxi@^6w~m4hC&(&YusXnqP(q=qHA#sVVC5<-iLj>M6!8<
zRH|gMxP}rMN@}1#&{64Tn`_8qBVI<sgBr?fs6d8#sj?c%X?REjI~SXtXXvq-REA<J
zYLVG1X{b!*A7zd<97%dDl|5JHcv4kEH4R^B_*z4C4K*~h*U&*jO%1g))YtH+hCiCf
zwKZgGhzY!ohFm9-k7%f?;iGG^L?bkpiInY`h-*k_Ff~{jk{V<UIT{pZTv1@=@nlLv
znv(NmzkggB{d;W6$(X7^)1YfGwCGVtBH>flWg_H>T}pmCN3u0I8hi}_OD~h#6`Y<1
zX@ylb9$(!m+PRQ;B`egBp(d=z<LON|<W*G@%zL?+OgXoj$d74wM#Hru$p#u8*U<E6
zvZ012H8c@;BMpr;JfY#0LGlv=<=2lT$<S0oGY!o(w9vTsN`8tJIg+F)cx|>5PYYs8
zL40Cqs?2q{&9x}$Sq;x=cwWN`8eY}#UB2uQx8xT!yevw8NkF+~g2Y!u>U+nNe~pQ?
z($HE1iET8rrQK>Km{I;oCelt=jEFhe>Zsup4ZSt4;-RyKE*f6b&{e}*8eZphH+oVR
z>6GscfxpR?on?`DxK+?i!`m9()zCx3JHmk7HH^L<#qi|%Hc!5z(qq5JdTMx2!v`8Z
zqz@>G_cinqoI7mm^_Nm)ApA(f>_Yy>BI(jTt45W8L^6D;;cB~7#cII-jcbVbT-^52
z@Fg9%b(%?EXy{AjFPg+BPnY@$dVc}QaJN-3koG*2;5A6&e^OFJ28+^%&`KJ<(eN#u
zZBFc$z7l`lS~Ey~uVJW$l^Xuk@Pme78h#_chT$}$h6x&e(lC;6q%}^%zhkpUvA%S(
z+p#g?b}U`dP4SlSyM?g_CRjhxTnnx78uAUdzPMkTs9}<ZnHq=}=$rUi!xRlu*@>pa
zCX2l9OWrgM(>2V{K!&_tily-DX^fJ1<WX(&I_nn=vuG}nI!8dV{Zrm0{8i(}NP-Bj
zxf&Ky?X4D7ohR7lv%e3L7ieg6&|-0mG%VJzgwC&F`G0bj3Z7-+c3g`%+3Jjmq^%GX
zCp&AEhSeI*Yq+3cjfS-vwrSX|foDdoqlGp6rC~i=<PU#?fWvOai0@wGZql$t!&Z(J
zt%J?fvu27&<2pg3aoL>z={ZN*!IysyDH;xI*rj1N#~k{6>tK(Dy&Cpu*iVJmx|^PJ
z-?al}oy%D}yEVTlQiB@D4+>8IrcC}L8jfl>so|7{V;YWYJYzgKq2Z<1(|iAs=iZI=
z{Yf7DT6$O`?X-qZQ^6Sy{_Im5Ez+q8g$J*v&uN%H+rR#+by3454#+z0)A6^4%XB9V
z|IkWwMGZID0nfPCI4-HF>-3hJF(N%$2SZy2ZyxoVRnu>3poR-t2e;`S>`-2iTgM#@
zcQxGOaHk{d5C3U3Mab#O3Dxwei~SCDQk-DPqhojL=tQq8t%H1eG>8?@QBcSII`ZqN
zR5HPeTpJYUbVrsB;?x`hdEg(J#w4YPj-omy82HIRF&z)+{LKU|>L{+GgpMb4JSoJM
z)bXH>vN}qM+tNBlH;wZuBaqt7qu2g&I%?^tt>Ymb<#klhQIR_6sH|humE^O9@!&_%
z+A*&xI%?>sspDZCRYhtw9o2>853eT4{7)I5U7nnqwo1&%tB#IG1cR%it`13usw2;R
z*-Pen**ao6;yPw5O0_yFC3GZpeAqvcqeIq_(vj9NZET#W?YGGL4*S>Oz0=hruISje
zH(8*(OI*{T>o9~&inVl@|KVh|bvQbTv<b=%NifUhHJ+!#*AeIlbv&k{fsTxhdOAM)
z%YRhoFQ|h0I?g;T=eiN=1&>*Xu%O3v5K?|)9SwCf5=BgDA(QeMd}>IfiH@eCrVDj6
z)A5v!_jJ53D9v@W*3m{s3ms4EXsP2F9WUy5NyoD~p3|}DXx0mQG?B7)we-BmLY$E>
zwB+=oSug8&MMo<gZFl7Ub*uEM4ze9;nIPo6#1li)<Y}v;osMoIZ+jgbbpDkXOzNnk
zlaAMPbgi$I?v#~o9q+883#+fjix<+qT4<$~T9X$g56!XO(D5eOX!)hqTRQ5r3CQ#C
zzcC^W+C-1bw}tR`baWR8DenrThmM{CsVrundg=H;#}FOgu{Cvkq@%BnFLivZ;}ae1
z&Y$b(t>aTYnh#`O_)G_98vC{hR<Cp0wh1^b*+;N_A>hIm1(}5o-%rOtQfMW5U>|>g
zj-^MFR^8ysJMvdLCbkK_)-hNhiKTww)A_&A@vRO{QL=|(i66~Xo^ij|F_gVV$4@$b
z&@qfU=oqVGxQ-DzI9EBEX1tUfDKd^?7ZVeV%i9EhX9qK0PxENLId(8k$9SDTJ`Rqw
z34YY05r7#v8+oTqFi~fqGJc~qbo{JivX1F=Zyi(U_K&2d(jTg)S4{Az%rt@XmeblZ
zb#UHtmX6s1`9;7hvwafh2>e$8IV(%b+Qt4{q3S#x^M#2{F7`Pk&iQZ}YJrXchb^A(
zw@Alg9ZPilp<@?E8xAkWVoTWpms#s{EYq=^^Zz<l>R3Y$*`EB9UEa4==~yk0U|Vut
z|Af{^CgR_xtrZ!Y{c7=u)b%<x=-8;^FCANTY@-EqY}TV?%`F1{k8M}~#8+eEByQKS
zL&r{zEjz8#n<S>Ppo^Mcv7tO@Q*4ipy*du-IKoaXyl7;v_#qwpbsW&qeu{N-TXOx~
z<Ut*Y?MY=w;#kjo(;rVA)p3lPFOQ$4vu#Tr*Ktbda6-pPj^yW))RW4WYa5(qch-^9
zHW;x{VnqfQGMVd~$a`J~8p}Kw_7by*qTe@gncm1D%RpTNS9P8Zj<QBHKJ&WHUT+|;
zfg3t*>bRxjA078}<T7wu$G;r;b=)O9ns}mS;^crdPj~-!Y^+SpM8hMohwQ|L&WYRx
z_|Dla9)EF;^i}=jeFpMz^fvH-f%^^QHvj{L3=}X>&_I@fA*~Z7-j(M69-}~JKe<NY
zZD9jN3=}o6bb$O?wmI+@i|@v__Cy*IFK+MzFtenAQU-s<CzUXwH)kq9SlU1t0}mSD
zdotgvN%^>GoQiEOs+BYFkb&|BDj2A4poW2p1}YhN*g#bSl?{A!ELRl+EPcb<kq)=7
z$*+GRRTDZ;j&e4O>QSGX25K3oEi6`dLq5KmmibpMx;LxNe>QB=HjoTt8+gvZ^9EuD
z;szQSXiUo(NE+}A_y%MHDFeCzLu5=F$T6T8Sa&%&abm3h(IgF`QfE8COA|<!wt;ED
zGT<0+4e&Ld=CTd+*%K*7HfE$9XnZzMU?4Q`n1KccG6w1ysBhp=11}#>hOA@fNGy%X
zEM#V7A2$%$e?YpSFfY|$<MOW-PZ)U8z%xS0CI*@sXdyV83HX$O<`la!$-Ly3mP)6N
zCn@%611$|uH<rRA+Vfc<A)I8f5nuSvR-FyJXy7GkW#AP9Z4I;&Nw4yDklb3}t!S1b
z$zFrx^DB~V41Ccx`0gqBPCvQ5pm#Jtyo12YG?hDv+hvx;@02dAh=JD)ykVfbfp-nO
zX`ritw+wV+FK8y0Ka!+l{Lk~>Ht>!pZpLhhpBOw>nYCz{%*~eVL2DnEdWzKd4DcI=
z-*kk`*vr5N20o<o82H#gKLh;*+b0G-HSn3hd$X*Mqa!^(XG<CQ(tvg@i${ZgVPMpw
zslI}Thkug76HPxzM+bxsFfh=-FayI43^MSQfuRO|Fz~g3!F0%F$?pyDv{D{p{*6G0
ze=Cq7Z0>c5?*t_AM1=xmX6Yod(9d7WJ;K0917i)0W9dQ^8O9jkDd?kFm$XGrQm71T
z_oHAKFQnafF3zLTDQcpDNd^|1SYqO51CtFjG||Y!6a!P)*-hMUVw!>J26h|RV_=4X
znFbaZSZLrE1G6}`6wT(G_V-;9vklCnmBz*982Ht|Z!`sUD4(9ox@?m2uaFZ*<8S4+
zNm(*lo-a7bJnfbAA}T;0dZ2+bt@AFSo(7f~XmUL9hkz6QNG&(8!oVs6s|`HcSdNX8
zR|-@AX`oj_nOATzIlgVM#=wskVr!{w`Q+zcCy1{zz_~Rd8x8zrV5b4jv~Qx@Tu5#)
zu$2xVC?rlRm*&4{w;9-OU<aFZft219P0O=(rHW)zf8x6Y^Ai;#d+s%GnhG1(XJEg9
z157e-%)oI2hYTDxaKyk-p=AH9-d8-8v~9py_sCYYll2qH69y*0JZa#R(C}<gt?Fob
z{V#FOnUnLZfpZ3~)4T@G8@NEPGjPSgMYhGP*d+shvkTmi;=`p^drQw>mo}D5e_znF
zro@h$-c<wFI1Jv98t;e>eQi=cdDFlx1G!A(Ht~;vyLSHD2L7e0re{r(nDLH*;z#3D
z?5+Xc-V>0>o?opzCi0qirbE8_2+O-g)+X5E#=HdOuOB1jH&MVubrUsA6f~ptf?_5f
zFp*_Oc7};UCJLJ<Vxp)SJ(c(jy}C#)wpbqfZeovSQ3#2}O_VZGS}>F_aee-MB~4K6
zH+D#6Ogw0!qKQf-%9<!=;vo~|%}8^usxbSj8ztftQo+QRg|c}|t5!Bq#l*uVs+yn?
zNTkjbNLbATtNGRfX?wo}m8of>mI>E{XQH-=Iwn#k(k31;QP<?ZSCBLznaDN~GZ8nr
zwJOqi!op<Tn#u0NEIJIW#3tx>e?gggHk2uu3>2PYLNQ^OFiogtv^1lc(9NjTDm<2?
z8*t@?7T~RA!ZzXjulnudvzE)u&efBCOJvrFRr5^*CPKlG_k32yL_HIans`i5>YI@x
zan**L->Y5&Drq8LR<y3l>x0HJeUHU8Ht~ds=_Y2Fc#`Hd@v(_dOf)so%tU(=9oT#(
znww~4qP2+@CZ0C&qKTJGv}DtpctI3LnP1(Lo@KK>D?exAr?~Yz+h|~l$m`XjQM7jx
z`Q`sOUo~-cs`Ls4{w7_UY~|k`Juljb)V3ztnfNV?^n7G<6q(HHY|E^UCOVnuPD7dK
zY@&;at|s0x@tTR(O}s%%ns~3J%;jmWIR9^*ni-EDiODVGZYDlzF28L?OVTWnE6!m&
z@s5cbw_=?ZCwrLaY2rgs`g<ncH_^+)2PQ5&o?<E`FxUT<uqiy>ScyyCADQ6VHw)@*
z;!_hNO^h<}nTgNoMJ9%t=wspw6W^FPsRVuLfhGo;7$h|8XQID}0VW#Ulvd}>{&#PZ
z1udJ9c<?*vD-&PS&O7rBX2!NbW|sBuG>L3^+Xc^Wx4sod8)D)+6Ng&J)!PN_YXvy&
z{U9_SZeoOqVgFfpTXVT`I*QwApU%g;4aOu!oA}Yh*^?geF)V#dVyuaA0wM0U3&zu7
z*l;E$a-3)HJ{p_E!Cz#VO!}Y%^Df+*e4$-H<{s^WseA;mkF*OYgv^HqC1#rV#l&1X
z;rv*`Zi&~5re>L7Ovr2#b4>h7&n%vrT{QK(Kz=iEpsP8wUGU9IY4Xft>)eqFy)Vr-
zv4G`PNGvpYNLm!TvWT57clIysf<H_wr3YGgn(;p-mUG~;kjKIb6Dv*Zr$7^bvh6ll
zTj>~^ldA;2+Qb?YYfY>(@t28BCf1vnc}Ct~VxvIXwMx%j<dgEy-q?;->9hBen@wyH
zNwuuR^H!o}6>V4h)HWe=yNMkpcAD5_Vy_8#vGmyk*}F~b;iz&{IyBl}{j)TyU1Cd)
zw~t=&xAf4T*5NJ5gKRPrS48U^HgUwnMS&kRam>VN6KA5a3n$p_CQh07woxiI-QvX-
zTy!%*g#Vb(9!i`wan8hfIwuE>%dy7yCvw;FqNC$4$NCSKu0N@f=aP{8w~5OpsCmoD
zQvHXbrQWM1u8E}UCT^Sfm;TSzF>%Y}=^WP4t;v7*Sf3VSmKSze%NnHan7C^qmxUSy
zG+yuSvfA#m?wKf_KS89)S}Sy{ycX`WP}4#!3;8VEZ(-)I@e)=vr02I#L?8t$6ts|K
z0Tv2bC~Wc1@?Mb%@iRwbGZ#xuDkoYUO3*}KZb=rkP|U&u7Rv6)UtHv!ve2S#tUfDP
z(n2W<r7e`PP~JiX!SEoNEtIpsI`Y}kZELdBE{RzlvLgEssc4~+g@-LvwLs&rc9ks@
z_}wC2MQB2#ngv?vs|pGJCZoEAiH60ihCo>B+7{|qa4mQi9<flDazxRRg=`D5g_MPu
zg}8-;g(Q{SCGig(v;ftn@Gq++imkNRQfUi078DCAB?~>7O3pl!W5?E7bhC2{W4Z;y
zf@#6B;D}P#xJQ1D*#a-NCE250g3434Zy~VI&_W{%p@ocv$1F6kP)~5Oy&e@veG6B|
z$B%uR_;O;5M7Ht^f4cnqeB8oE<D*8TsKyqaw9v%D6I5?VV#kyDCSH#<wb0B$a|^AT
z=N@s$ddkAub^%QqZ<m^zuwLJh9N{EdT6o67XBIxU@T`UBEWB>v4GYg(c!3!$w6UVV
zh8HcoY~jex=yCIspv;?Ly&@>DvR!UStpwif@l?I+fNX6ojM$cJZ=sz)Na34R2MZl7
zbh4tS`D+#~J)9!a*+LgVAwO>kJ6wppX<_LfDPG+L(pA8>1nef@+XB8L;P|}~Ip4L=
z!$MC%dC$TJ7CyA_zPM#-FAEe)<Rd}p{U7~fp~fdx^z3Hpr-Dw!i1)GZg@xbP1Qz;I
zLklA<jI!|cy<|TNgDiX{@csf05OAQ7Mux8~47M=Liq;Fhp%JdehFJJcAm3Wig2Ka_
ze6oFSVW@>41pWQ&U|xq57Z-Y*k%z5M4YzRWXNlJc3tVoXgwYnpSeVM*x;{15!Z>;$
z9iv_9M+=Km!2}DfI;6%6HNIYNU0t90Nl;oZkMKzrezx$|!@*<=Qv{tj^A;UpjUJah
z&BAmGGuZJh%(5_>gTNV?8GjM-n_e}S9*R>q^UksGtA&l%C1xZ%)h?K8VV;GZ7Is;f
zPvQOKl@|WAu)xAXa@I;MvhWA3YGJX3C4zEys73m$8}c#>%Q^CkT+GN{cM<ZhO!u`9
z$gs-7Y72i^*ks|yDb^YR*VBhBth4aw=kbTz2kTa)maTF(P^^V-ZpcRE^v?c~kj)mh
zSlG@i*X5ndtgROM_eg9L@Y&L7GBjC{+96VTOCemW*=^x4eb~Yt3w!xU3KRP*9AKYX
z5vA@I6th}z(83`rTIivW#TS!=M=eY`Y>{%>!ZCIY3nwg`<WMs=cFMwo$C6Z@LdYqP
zi&Z_IJR`FE?Ssv3;=F|m^cfd_ySPY%5*!?N@VAA_d_LM(ZsQ7DL5u@^Y+SQ&-9lp<
zPuRF&;U>pY8)fWhtiDB`oEj@=;~xvRE&OZY4t2JX*T!87_pIn!DYuQif23~yEA!W5
zx$G!vh~F1n=N*_^zRyNJ8~JS%u%pFahQ8cyV?vhMWt3dEnScJ4%O%}DvekE#oMkiS
z3WaPGw()?C;x-s}QN%`38^!GC{}fzDUOh^#vLenU`|9P>C2W+m@$d6qDH|=v$TP|$
z83w@MC<dHxrT9S`Wo^hdQp{^}76LVF)U;9FMg<#HY&>kEqK!&6D%;?%)7os44lGQz
z9xpG2+5Mm-y^<!es*P$ks@r(JeXws|jBDIfAQ&C34%f0#+lFK#+eRH5BM(WB*r+S?
zJUl$Xg>ObF?A(*+QYjs?5x0@Bk+h@W87_-+&6>r1wn!%Ak~GUr+sLuu+3;;BHdGs?
z4a<gRL#MVo^BOiM+v8mNZ~s$_>d`Wccd~6bHe4Gda^;<IN=+xn_)oW|$4VtHBm*0v
zjYn-fW+TJa?2xA(6|g~rGqiwJc&~bjMRyx1H?Z+It!<-`Xd{}M)uEjkP{b$*#!#`u
zCv7ybxl0R0m&r|SG_&!#jW?*3jpjC9wb9B(3mZ?<RyJN>i`aOE(ri3uWAjLvtL+r>
z(<hNwwqutHX{!37jhAe^Y~vL+&E_~4@flRW#dlVL5fn6a)FL+8*yv!Rqm8yU+SwS|
zCs%u_Q7O$T)6`^sGq=nLpH4L3GP#S5*KE)fomr#(G0ORPw9KaDU+3hp?wdB|Rf&TA
z-nG%y##=VJ*?8N=J2tutZ_l?P&KLkzoIG?bYo$DMTdIeRo;KdI!QiX+ZS=CEs2&EA
zk>>-JWk+FJyy(^1Sox#&!N+Wr-O?xQN>x(51^m?J`Re#w;LP$r=3aHZFKqO+@uiJ^
zHYVDbWTU^0ZM{?5*Cs~T7+_<djX^fPvN4RFywLyJ#$X%Y+4!D1cS*dGTf28y`o_k$
zHpcrJmpg|DgsZoC*I7g9-lwG>Y^=DG{HS-TY_&wi((&OoR()5Hxi<c8jkGb!Mwj~D
zXd6G;(ZcH(>Skk{4JyEeS0)jeR5cjSK1)BWlSQ7N*y;GE?;Xj(i=sD#pKVODF`c<u
z#3zdqrwB_<wQ=7lt6x5ChK-pv=G$0c;};vVm}+CLjoCKl*!WGT_p8WQXH0@ZP7U!c
zolUMOk$CK&Ma@}--B)7sC}C}a(wdygT4-aDjm2!iMM)+tq3@l_diG*ssf|Bu%xIKY
zq$K{_p3L`him5AXtYk-Uka6%Q>u%!~hcX+hZLAS`o)vJdjg2<`68JhB>jlEvZLraL
zV0!W3^d`EojYI4{tj@dA78^Tk?6k3@QerEcOd#7uQoK)`#9cOa+t|l3VWjj|q3k^z
zA#EHVE-|%1w%4X#iah&m91vN0j*t$r7Ys`?mBNqMIBMghjZ-#`aZIS4ys;|(2^)K6
zSjRb-^ojSrEWKV<`}08Z=bU_}*@K$L&(I+IlUGZo>TgLf^_-3KY?1cC1&;0Xt^w(b
z;`Wk_zinI=_>%U)6%Mlpy{tXb!5QvV8-%>QF8FT<cvHas_j#n>X1fcsJmTOE2Y(K#
z4!RCV+_RC(K_Lf)9prY9$HDy$@;k`uM30aA9OQFw;!x~E$7+2s$rY1thgpOL929hr
z<p2(tbgf{LOCDSnVG>s>h&+6sR>VP32c;a8c2La00}e_!NQ}x|+`-v95~V$IG0DZ3
z6<d=f9Z)RiQkb!fg9jaybx_U$Z;#fA*7aI#OFmaHi?<){lZx)K$~&mwprV6H4r)2z
zx=CdRRUFh1sy^(Xs)K3{sypEF&5{LjU?mQ;58611Qa@UIKaUgP3QJ7~TtA`$wH=T$
zbc0pLL2{JL2Vz|Zl7nmqF$abN(?Oh?JCGfu9DKhZIy^S%VC|IH;_Wd)RzK|^$ARLY
zS>rhMEIuHiI(Y7SLfdI+4tT2zxVWKA+;U($a2@_(4rKVZeXuZTIjnLcxj_4bFD%a@
z0tZ~5;?fc!#ny9BpOvLq96ajaF$aAeeCeQpgU21TchJE>LkEo<Jn!HI2aO#(L46!N
z<wWN;Jn5i`gQgC~-&OnWNN#*9!HD-mBQ1ZA)Z9S}2Twa_>3~7<6YeChZA?rop8X6d
zrQ^?0&T#2j3Mr!TVqkg2f*Mm_bnudcRt{P_c-g@#4qg?SKfYdiXSc*G42B=RN}|9v
z4%!MG+Bw)Y-(#?SyY*81Y?7SBJ38p(;5`TLJLv47i-WfvyyM_C2d_JL%Rx8V|7`O7
zTM35lzv19bp%3ME6?7sE=Sz%iFLp&@w10O8?>gw=pr?aHmn9A?RrA>l^&e22f4GUW
zz6_P`<=_Jcy&ZfSc`tV><6{S(2x+~9!Za6kBhE;8+Uhe0pF8N|;0p)m@<(;2+ANE!
z(#tAGA@}6$#{p`4^lez`&%FH|3~(@z?nlRVFof;s;A;ni9em?Ny8tMm#MLM!pF(KT
z%;5CZXA|6s@STI94t}7IIVdtxA|-E@R;~ljJdbXNJ76e2$MaH^B5RCtFxtUl2TL4`
zp?Mw5axmM$I0rvEnCxJR6YZE7?_h$1pG4C%8IpUVgGuy|bpD_DKDkw5Lr{NOiMt8@
zUMEd;FpZ+-OTRdn?qG(4nH&Lta(9#5B|(L$HW&Tt_fGMu`$B;^LhNsZ4t^ClQ@0+E
z4ilT}V1a{$f;i8?d<R!nMGeFz$Tg*aujOAv`*%!mw*o!n4+l#fY;^FKgJmMiO4`%G
za)G~gA!~&L8jWp1$*Y7Ht)|SHdFW1S*b_xtbGyXhJIQtI1@oo#0&d_qP}k$_CI_1x
z?4^4<*y3QTgPj!OV4D!T-N6oaqV<u}4z90pR|xk(&@8(hRQ@P;cqnU+@LskNeTfR}
zcW}S~JI)aY2OS&|4tZGElht9Rw$-v|*u(?cQBg-WG4(v*;3S7!7jL;Z<>0iaT3a_7
zX3ubJbWzg9Svr`5^A0XJxb5Iy!E=$Ob8ywcB^Dtl=ep%Cwma)G@xY(7TDs=ox`SH|
zZhV||gA#@myeZgv&zCw3NEiJoedCLCpQrQx<KW_;G_%}saMwWr7X@A1bCAnLJ{R}9
z$n7GJi@YxG6IvY{nzpukWk<$Y1eL56`h@vi{5C9IcX!qgFBPO@CS|#Riy|(Hx+vtL
zu#4{RW>Gz+K7K{wMgC$!Y;ge}a6uw7?yZ#AF)Wf$%0+1x*)C#k^gGBhE;gP?R(A2A
zi?V`J&P4@*F!do9<pr*E2zbk@qKhAFtCEY!2YmiAvWkm`T~u{Z&BY@^RKeb<>Mm-z
zsO_SLi<*MCtBp%~^9}*a;;$R)2x8Y4e6O@dA$8s8$BvR9@;2@w;i8_4`Yw_#WEYkT
z+eOM{xE&N1s>{8r(X4Eai}*}w*#6|dGbKLCH5Y~p(~X|;x(gEf8`ft_V|>sz{wKL@
zwdJ^QU3e~h7kn$2zB6k|cK*~axdWCZUIs#uH_yK@@@HJks}tpV)Wu^io_5jFMFZN?
z#S<=`bkWcS-!vLgTJ5N(oLDUpY0Om5s<B6E;-aaGW;ABmJd}2KpU+nszI8n1qPdF}
zE~qeHOD@f}i14-N85hsGc!>(Qc#dsRI(Xj23vTqP!(5cfni6@@1+x%;#pMs6(aJ?@
z+If$}atVvdQPRQvRvQ;Ak*`mrP`7q2+Pml=JguXP&MvwLypw>LA9BCuVr-4n{Cg<|
z3B2y&4ME?Q4Biw7CGZrOZZ6(-G1|o#7w-sqU)sM#w8YTe#k($gxajHPJr|$5=++^4
z-$gGMAG`R3HM$-9z~#3FKB7T7W$~7gOGFr|G-!_1+r_6YNcl{p{*QiRM4YJ%YU(4(
z`r~NU7xdc$k*U9Q(a%MH7Xw_3WQ(*)4|Fkz9ulU8v(<F(D;Gmtd`G`>G1$eoXXI~q
z+adT?q?Qd+<lNRV#d+HA>Cb{;sDL{b`Om$YE|fQWn2^RSWj4h|xF8&KG%-q)#hGdr
zG1kR6<}I1~s8H`m7qeW<7WjA<6I}e{VxkMi8UD=9;-dQN=}9im--tFmPN8E|(`S&m
zLoij~(*&F@Ad|QYk}*6p>0n#jUtDN4(nRLaL@w63SkGaBd0i}XvE0R6R?5X97mHo~
z9z7c3J{g=|z?K>uZSxseP+RDtPIdqI>G%>Cf4Erc@>wI7_%c1Kb)xpb^z3p;{&(_T
zjcA2yg^N`#R=fCTbbO_YKZUf!d4EkFZH<eyF0Q<tyXCH|lV3-Yc`^G2c3T&FT<mqR
zVpZZV7uyB0$;D<DTU>1Ayh=5Hn~NsLk~>zr{6-*K@97?8?r^cw#V+=R>E3R^P`J9!
zRB}@CJ{S9492PnpaB<MZA)z_TePW&e&ap@<{+E-tf0+4?a3t*L^;noV=HfWZZKR#x
z$nWB`i<30k?I`G%ko)4#xVS)-Si7~cvo0z>8b2rS^8&_xmOft*>)j{bWO4F`f27N-
zGM&@MXFjgFxW+NuLoOfJUEE+t_Rzw^O&7N~etIa&B*_1`xWnG(;x?Nmx5f~Ke+AOL
zhE7%QQQG)KL2`P??IDkcydLs-xZjJS6pV9O_jzFa07DD-Z&N~2@_Q)YMgLLdEu$ca
zWO;yxLLLfxDCwb;haw(|dibceT--x3FZ#pmx*M?vJnU?mII$phprW^>Lr}uQHb2d9
z1tyjDqQAJNo^;7j#si}%s5$>pTh7Bn9+Dnp59K|~zdu?bt>&SE7foJO^iavekbUvW
z9v=3hHRviVVv(HPKE(z7s$TSmZZ6vLwz`KJ9%_21<ss%le@CkAp~N`(5f62}$VKaj
z+hvc-L?nS{d*F69@^H%=VO$WIF(K&WOnFFqXyAeS`*J)e9y|}e2i1e-!SZ0UAR4wq
z9>as_agSc~eZjIg&+yX{nL!I&q;|+TNoqGvc7+<8Ht)Y9+Q%1&+l+_Bi{#J)SD&BR
zEir7Mo`?E0{tEd~FIu~QOhC@S6MtN2($GUA4~;zz`#7;Y-ps?39-4TJF_xMNhBITN
zjf>?P6XL%VGKoAT*tnT->fPki9$I?%#ltLedU)2uryf2Nnmp&BqlZo&p7-#AhZjA(
z<e{~PHXdH~@CxO7XvO+InC4^`Cx3eGjuYq34$k;}I9_h+p`C~J9y)lqvM0f*B+e;u
z{)c-v{<kTHQ*)g?bn(!`Lr)K{d3c@G^zgQaH$1%Qp{vIL=4dXFlVF^D<L(j)=d>g@
zeQ?XqJ6<&9*xkds6jCW2ZM@o^qD*UKG~f81hxa{v;$cR+JiR=8K+p8>v4;=ouJuyM
zYSH#CPIGBx)0~>4+B?R_nYXux%1(aj$w|M@J@oM~%)@XGUwG*2;VTbcd(pJgmmd0i
z7~n;liTY915z)XkkiO@k-?==;cf{`uPmqmUv?yn=7fpK(@$j98Z#;ZUGfs+eN~*~S
znVVcV@A|!mp&owl7-1OAs&W2pcJ<UVwW1A!BRq`s@Uw@>9!7Z>?O`I#GCi7393$Fj
zEbDkRwy}C@oQEI1Xb;zTR&a>)&aU_bar+aEvn)yace~@0I8aQC6r;9N*r2=P(`g?M
zQ$29U+%!R{GD+gTJTlB=L+sBrajVDOf1Dqi?O~3GqaKcV_|?O294kC*pbj49dicY`
zQV;XkTRklF_@`+s`!i3?Te%icXIEy4Z1lx+QSLPSSzh9S3R9oxHb^b=u-wBc534<_
z@W4swl^*`|qWwg5^aMFMTS$G_?&M$NVXcRCH1(on_ahOV^MoHM(cZU>9{%#M+ru6Y
zo9M}t<*giTJZxs?WlJrMakCqlY1{1{c6iw3fy%IH{x^fVlRW(r)QVoj8QR~rNP9gT
z;0WVkADf25(O6e*5I?gm73T&+4~IPvIYK9?5^d^aYN`D(ZdzpIPqJ9{aSx|GoMA`f
zaIrw<b<)ErfpeCU{&v>GIS*GoT=Q_AE#={ohrfl1#-Awg>@Ni`vUExwC68R2xXd2J
z@ivdveM*cv&_k&Cbq_b_jiPhWL^nOu<D3r_+Y-Cw;U5kf-KE<cNQ*@~zlisp6wSV}
zvUfS=KNI1(edO_x@R9VR@i4ECGCm&kai6%&=i`1K`F#}dQOw5!J_`EC@=@4F5y4RQ
zWEOnn+LcwvN7EtF>ML@C`EF4%_fPP)^<}x$blI<|6EE(gq>oZQZtTn|A(*q3RB0ik
z=T*5usRHDgJW(#|qnr=PN4AfLe3bW5%|~?~7cV3$_~6oEWr0@|u#$izGEk?AkB5C!
z^)YLVq~A;OVmw$4ABC1kbwnvO1zyWXZC0da^0WG>X*;Ca7bP-0;$!xq{B?aWiiX)4
zB^C1#C+9_pA!l5&q-DYbxn!R|3P&d&oqeQz<oI~pM?)Wq57me3!}Fo}&_!{!k2OuR
z41rq$nm#6UGjq?4dRFyfDMt_o*NTMuJ_2#uK)}zM6bOA}1YS?TNBt<EqP~FJi>1zW
z2p;o6$n!v$ec_7SjeIor@wAVYw35iu%*Rs#c~Zb8w7HKjx|zI=9`~F3Xd&pUili8x
z(T6p?6-}Y@dPdMY_;}XGb3UFIx2*+a>I(vSQNWjcyeyDc1bkIM^0X4jmA<*#2&Aom
z?fy$`Ps#P7y&D|`<+;VN$|n+Ce7xr4T^~Jsye{ZneY_=*Hw1iBz*-xnZUTAR$2&eM
zzWDz!McI|b`@fH8YDEU=>Ek^gANu%6Fu(8P1A+7s@TFU^J>8=HV#^QZ`dCni_xAD0
ze>hJ~DX}N3^USQzee|JM1o%3@7e4y>$QR)L0AKp(=VPyreLnj87~o^Rj|Dyk`WWQn
zN1t>1_)19o-p5cMU;7yB;~O8}`WQm@D;{U407DBHWK#E`<adHXB3JW&@G;ECC?BIK
z>S$uPj}bmb(%&{GJNZdYv2vlG(FKe#7~^BCk8wU2RKS3QR+7gBeFh;=4x=w7knZCb
zb_X95eN6H()yFg%`9#*wJ|_E^;&YBY3dUGbHTWT6y*xg`r~8=UV<!E4x>f7dI3+U*
zg$#^0pv>7m=CD$tUW{}2)yHpi{vlC73qMR)`mb$M6`szT>tmkaVZ29`nTdry7WvrX
zW9=)^OY&kLOMNU83`>0ezcTrU&);5H3{+U|V+DH+Ieo13@u!c~J}OU(HM$T>4M;Ry
zYOV4?yx)GGMmYbwwa&+-f%(?^*x=)Z+R>!(3&q`yJ~sK-?BlWaslV7mTcwHATo${~
zF2SghG~-ExCfoQT{eiUI#||GmeeCkF+s7V}#MmJ+GjJ$-OOgQ+9V%-1?n?WG!hid?
z?BjrsgFX)VsC835?c<D(!#<AqIO^k=kCQ%5(N8)C?Iyd&eVm}q<FfZu_N?_T_jc9n
z7_?p|ookSOv}16V!_G5_T#uwKurCYzynrN*l7eGnvoHE6{Z;&uk5@Ye=3|j#U-5BI
zXmZuZHNO9IIQ8+bpxk7SK9jmdA3L4eRXBpY{t>sg=}tE#-rf<MlyjF|qhs(?KQ~u^
z+(Gn3lPAD^L<Xnx3b<vQH2a*yud`;mvhoKg5TIp%X95%qkQG1;panpHLIElVs1l%X
zfFc374fde`MFSKIP&z=F01uF7oK-S_vc)Pc@Dc)k+Ds;$uoN>km(NbLMmLim3{Wn>
z@SAd3!GHT7d348sx2F#H<%Mv{uON_$0#*`m{6P8P096Cj3GhgOY5^E6Ph!mglZQ&x
z1JnqjaQA29@yAvqYtD@^&d$G(s2yP3ktEsb29N?I0we=4H9J5oz^*%~2f0SyBE>7t
z>KD=atxCxPNe9RYkP5J)MXK-;>-Sio1ZcG)S$u=UodwF#B$@R9Mu3I^8U-)|SOEfR
z6~GRnhpZF84KVG!D5BL96kkBz{<73sqeOwnnE>^uc7Vrd#+r#AibMhJ^#xm=2a^o~
z%x;igRyoh(L9_*cs<L*RGie;)i2zRtHU{=TNwb_tHVe>1P?`qdR^rv0E$&kweM!fl
zd4Luo>1i5asZ?lX@|WWh6?j$<I|S$$pi9lva{-<Y@IrtWS(gWsuLO8Cz)J$>?aKoB
z?WWvHFt-(uxmpKkBXHV;x9tM7XR{tn*4`BFdsp4pG3XSabAa~(yf2FD5}<2<w*tHt
z;Pn7sHIJSVZv=Q#q>`T*iw~5$1$a9^_W<t-`a1zWu9=%jv;ZNSz6ULEUG7QY>3~T4
zyQ!z`M6UoJa10O7H^7GhJ__(jfZoDBH0;L#a_z~(;?`YGej4Dj0G|iwBjnedBXR2r
zlekCw`@I&oMbJK92Iv=HV1PkEwEd)ifC02s`8?+eYaLc5_pVMAP?NtUvbe>A8Q*DE
zU~qtM0@M%jXoznE3<<D5z<~hY1^7O|(g4c>3=Qx@faw8d1Q^C%5a7oE;{%KcFfzdC
z0Am7-5-JV(J>RCq(Ubc5Myc0_NMq^AK@|1(@$XT*9}&jCO$hK)fS=g~0-mXuZ(@K+
zA}=HKn1zoI4&YM)OeNd=#Iyjv9F4q@*Ny8YBOb{!lf(e?11tzIi~bhiH%bUFhpjV2
z3hSqSWj9}GEj}N+l6Lv9AaQPhd3-odjMXXPF&d2sA6p9pTu$d(6kxGX;Nw=gyU)(I
zB)}i!+>+#Y&hWF2g|eyq@&GFWZ0GpkMK47w1FR0PM&$Zaz*X#ei!67SwKl-I0DlG8
z6kt8aqK6V20&HZjWSHfJ7@s>tXa`nvbAT;0PJnInVJoqxVDcdgeE2dxkeWZBTf}#W
z5_huK2e`C3xjVpKI!SMdYU~NHq?+7pv9vD$Blk$;1M471NM;F9IE=dUVOB7}6*2@k
z8sHeicmtdca3;Ws04D>S;y7?2#s?)Irrhu5kGIB*w+PP$IL8tL{4E&Hv!AZD7)wd!
z3xaY{Kys2oRoSe3>Rk<RjqVyEcZll&ZUng6F}M@pCSB#Z{I>$oA8H?q(NHw$KLKvj
zGYe(^E8y-tcx+4ZZh(71^hQB?NfDKrCq&*5`9l;4BUSGUkxx{ObBw%Q@V9h-2s#X3
zND4Jf6%3=`SO|u!F!F&#?NV$?!?%irC>r9C5Oqlp@j!@jAsz}*JVc2Qr9+enQ8MJ`
zNs?|>Dn#pKq$F{MQ1Uh7!4Q1Pmklv|pTw9|T7xm1<wH~mQ7uIE5EVmI3Q;A*!(r6u
zSLXSZ!^na8n!!e=>G-z5SCOhTPA#whUFmuzRU<^L5Vb>aHnnC5h6nTcUPmCu4T}-N
z-?vL#X`7NlWQXuV_#t8;;vo!HVM{U*A{inlgd(!YA!m1yCi9jgMe!m+IUh_-s9_X}
ztcB1+ZV$0IuUo29z>dI};dbp)W(X^U9l{CWvPMTedKc-<{<NxWP4bpFed+jyyg`UC
z#DL;?GGP?eSuX?~m2t?tX#B@QGzc*@#Iz8PhiDk${Sdv_Y9Shjcp=1#A)W~FWQZ0a
zo)&G?gjNmFOyFm#<l!dhdse=u!e|3^^AMl6k5})U;JF7aLp&4Wxe(7&a^7sxpA}iC
zRjqq2nR$=`@vA$sUJCJYh|VFpgm@*yt06js=oq3E8<f}gx!Z?m6QV6G7J`Q=Y#p88
z7VO1)Vl1f4PqE%g;`F@4{|;fGz`e~AorD_1Un75r9)x$LH$uD_;_VRcgy<ULtq|RK
z-AnSS8Bb6{^6+|}do%?9yCSvDf-Dlra}|D1y3H($_<NMFIAUfIAB6ZS#MdD{q<KSp
z9O9D@eL{Q@Vq;CScZe^i$)C{&It8B!_-Lo#bGq@WSUVy!+`eIS6k&fh!D9c*5dEla
zjer|+xfPdNZU=-I7-Enhe%dLhRx@B~>WDu$#5eTn5F<GLQvyq=k^Vl!cOkgNm~VRA
zhs*5Tl0P)W4<UvLhOwQZ(+(@wNRxSFh*2TVRoAD4s98fF9fHRjP89f<5Mu>0PC%yq
z7-GD@CkXhHfIOm*Ns~hS%+C0*KUqlN7JlNa5hYWB=^<u>I7SB!F*C$3AvT5B9AZ|8
z*&&vM_#?!e5Wj|)7h-<MogMf+#M}_vp0HKy*C^FOK6xq5{UF?$u^@~#aV!k6C<G4-
z{9&rJ=Crgp1R2;6UplGM%M(jOEDNzJ#A@Me%R{UPv65N(rMR<$`xFjW^8RGGev11w
z2-k$zF;!Y0Vnc|vA=a^P?n`n51@|(LnOj9RhWLy8oq_`cQlwXzVbxk=Z3%I8Sz<f$
zhS)0bZ2~e2={rO03b8-L0UCd*v^&IJp*itAY_-Y(g>z5DKK8Y(Qf9f!%`XQ-91+Zi
zIGWMh_epy@1>9h=bWq|bt;cO9Q>ELTf)lK4h=St0(^DZ%hqx8uAC3cilV?I)3~?#M
zSvG43?hUD7r_Qr?k4f;lKs%gH5&1jB<q+36)Q8-Vj;kD~+XYl$#NH&e>bg1gQ0HJ=
z9{+}raFcG+L#C=ci81GC`8J6ma%GS^gFB)L?uNK0IJpIeC9)NGjh$fS$wZrX@@8;f
z2DBK3aH9>IDPIO`GBV$vLH-Pg6cCUI*|IV~28A*xoI!~UN@h?*)U;>@#WK+elN3&W
zcp!t~8L+J<=gsEs7;bWTv87y!lnnOwOO?x@Oa>2TP?m6D$}br(HK(D=O*F&_quYJa
zbY=MrDhT-%GpLk7WvZG%lX_@c4-aQhHG}yXEXbf*2Guj@lEG^k)X1P_1`RTJJcC*p
z)XpH4L0Sl@lR<U{u?!x`pl$|>T168Gl1L(w?i_ti#xqD{kYwtp+_^uFM!%&ObIF2d
zs~o*A<z%2_;AaqIpk|<DU}xZDpl4uYU}j)t&{T*j;Y7pxTLRzlLzLI0{wJcS2`_`M
z1fBS_&Os>T*UO-O1{r}fppHq83j8qvvvx<zsV$2{N;b@(Q3fw&@KOeiGk79{r!#1o
z!ILzOU~Wzw1kx;nrv%czxcu!Gi6>gcJLiu+$y*5GdkL5LGZ{Q9ZeI}axeR_-kmq@U
zSH5e$Q84{=vH15bqFI-hGk7I~P9o{m3|eK-E`#=Tqzu{!Vp{>F%6^5kHQ^zD)qi#D
zAm|-4INmuZRxfdXm#7w<1(ArfD(m$O-k?n~_&S3(Gw7PZhZ%e%7~aa@oea8X&`sRF
zE#S-RQ^p1L-3)qU@LmS*3u4u`^YzT&RL|%mqO4d|?3Lk<Me=_jQhSxuc`@l@ar=1&
zeKPnYgWef@nnBMwxj)Nbz|cHz1X|TD!SJ%~-7BdtGU!WU1_LwrGJ}31WB&|(Z5BBO
zFH2M;Ctti^y?ld2>g?B|@QJr$`rr({$zWUtKW6Z4217C!mcj50zRTcy!TCc5JWl6-
za)t^D8-4rB1>)87jL2YQ2BQUWlz^{_g2op~yfQyFCWEo8vY;?K-E4dY6Ec{V!SoD%
z%3xv!lQWo-!6cEFJU_D|w1~=@`&N2bmtg9D^kkd-A7twlo=?rlU}gq$ShWm(5vj8>
zm`$W;<aNAecM1NkAK|}|n8Dl(<_Wezry?hR^8c8+3MeP8@69eOyYS)e6pF*{CYda-
zz{2i^ok?aUnPg(PLveTa;zbIS;_li)aVb``xVuYn_y3*CZ_fFj^Uim^_r3e>Jh|_U
zB$<><u<kX+<T$r#J1rmDC`4otu`><3((o`1kJ7L^4SUjXAq^MP@OK*arr~HBj-_EA
zyE>SLf6}l&4F@>8VQEs~BlbCA!~dZ)98SX#*0;nPlX!Quu=+%N+Gy+XH2j-}Q)xKO
zr6(9qGSUk!=ylCxd?pQN({L^g=P5kQacj3+D7fl>y^DxSy_AN_X}Fb!+g$fb8m^_`
zI`gZH4c7@bn2^JpOrkqFN^~?L`3?m(?S3rYW0cPrK}e}#G2=$^0qqZL`8W;#rQrij
zeHxym;b|IPv;8y17ioBzhUd(wR&;vfvA`?NdbUIa*~6POyiG$)n+Wx3x_4=K&!xMH
z*}8XhOzi0Rl!ni=`HP4Yjr)`@Y52wlUrnFgvZtiuqO6Njs<{)=i^w1%6Dv_7GKz>6
z5hJ4A2IDq1Z)pR!R<>k(XiV-OgAL3q;#_Xa%8rh#BC?6Fi4a6&7m<VZWD!4#$SEQh
zJ1in1w@9D6p`eIDBJzsJCnCRy0$h5oZNiOvw&W(sTZ;(G`dFu|wU9#o3v=nGypi==
zq>jj7DJr5EE5$|pAfg2G>1&LZlo@7e{V_hb(^^VIX%Xc`RN&GwjAcb64>dO16WycB
ziTJyywZVByMG=)m#Ir#xW1NVz7+bKQZB&xI=*OyLZxLY?@!M_t{?5kS?e1E`E+T=v
ziAWJqSws~PHMuU8RuxfAM0F8~rZVU+OKQ_hH8`6jVp6{3q$K0wC%%c%=2{}EW-?+U
zRfI!?o6Txd8$>uoxI~DoNQ|%F8ttJ(Z`PGXC?f90N2pvhH;b_@_H}gJ;HdDhsEP2>
zXrHtFtk^zwbWBLL`$YsqJP`3vL{LOX!~ziuMTAAv5z$*j9}#s$dN_}kB3iMN`XZW$
zXey$Ch=!~*646-1+I*26x*PF8X%v%YBAT-SDI*F*v@m&wz6n2xXf2|Hh>jxKu-=w&
z;}+u+hjt>`Q;-}pR$swR#tP~rqO*u@BD#y{LREG~b*120Vi*XW96OrZEfbP@i0CQO
z8!xf8NhZ=u-b%{Z$}sS-hrS~E(P)d9ETX@N0U~}DF-pWh5rg>9!$k}hF+{{r5yPnO
zAC2jteZIm8YuiqaQJow=2NI^YuQ5WzNE)cBMkp?8ltc!jMT`+KPQ-ZjGnO%pFCOTN
zWD`XEB4Q$o^}gD=tVyD;nJw((IL5u3BH~vOv$=Gth-nm8B4&uNJTkg4opmCJNcdgE
zOcCYwM$BTd*#l$a%2L#_n|n7$#9Y>2HFV4qF<-=b{!+))PLB7T9E(IO7O_vnei2JV
zEEVymh>aqaag~)KR*6{7d<A3v&c>KiT1|r~VjYWXXz*uSNA|U>7qLOaA1snh<<5@Q
zm#r5%8ZjK|?AS!Qh#h9>W)WLOY!k7Cm0s-mK!>OW$BeH}Z>ORH#&*3^#4ZuLMeL!K
zC}OXOM(2$$v^xeS&==t8D`#X=;JR_icR<8J+F?YTXNUiYI3nUG^FtyI(++SU+9M{t
zubpyC#BmWPMVu1xui2gxOs02stT+33TErO<XGJ`DY|p&iGNh*c_xr}WCVoN0MG-ed
z+!S$1#AOlJxcU{-+f^pNZn1aG_P-IkPBu@C7``RqHkaOGyu)}`#HU>UTO+%R8st9f
z(K(VHiFhm`RzjSF|EMvv*-D6(@RSYSiFhyKnTY2iUWj-p;<bo3G^&##UeS8|X6$1L
z=dB0&CTv?|>>h7vj?y6PG0y29M0^yHPC|r)Pa;0E!*3$Ki1^C9aTVh^XS~Bo>H7MV
za!WJ)_J=W>krFaU{1GtY>yIfUMls)}8wN2FGD*lMA-{yo62L_{8M82EW6Ua{W4Dw#
z_hPe4$iWJI5Af1$qx-oe<d*R0o;8m|UsSf_C0AJ;J&(r|@0ZC^Kte$YB_;eQp^${a
z5{gME&K`<LD9VJK%uGx57BZrU(hrhxB~XHk!j-CtgY9%tS4u)@3FRb|mr#a_$};}j
z*)e6DF+?}&TS%!Op`wIJ5>m%n>5R4_+G5XPoM9h!cEn4tNYEwtC0Hfc$VP%gf*`>z
zp@xJc2?-J^OGuPZjoR=uT@?veZbVd-FnyVE2ud}w8iO`!YeaQE`uYNvV!X-Jl#t9y
zk8TmQnE3h#DH1Mph@jV+W$WUo%_7xRB&10YB}fvS5?m5wYR15Xo<&onC~KuI4zY_7
zhxGH4R$Uyb1h)i_1Wkfhf{#Y5w?NmQM+T=RY)={6M#%lDM(6a#H<<$xf)X0@Q9=^J
zOd3e2!=#>s`b_FdcwEvpIg1en6ZaWm*1Ae`LkW!}j1C$5A*Js9txY5}mC#H=a|u6j
z#i`|ET1aRqp_POYT^!N2WJ=%dzmwJy)b>?KX(yq*gu#t5q%r-b2_31MKDd17B%!l}
z(;l4hpo>KBh(kXY`n%9gLU-z&6Fw(;Na!hHr-WS+dP(Tbhh8P2kA%L=7gH_j%fQ%C
z)L;pF&RY9R7{Fv8;~+-T2TK^jd?@2EQy)(4H~B~=KTBBu&O%kjNEj>OR|!*zR1n5V
zm?+_6oNd_v>v#zhBoHC}7Yg8Q79vzMi47(*PGOzIX%fD?wEr$)CX?wBev>f1tz`xq
ztjHx$buyU6r3)m?W<tswCUYgsW3qpMb-skXUc;EGER?W_b>bv0;Q?7H(VHtQ%NUn4
zu3#i_CG}#jmB?xdYb5-j2y3~@W{UPqiR-A>5;idZgK?9DKPAML7btCHrOUhcl5?$p
zN!VzyQWZ*DXf4mRZspQ#%(pY&!JI1YrXi&j>NNJ8zp3#O-b#2UVV{KkH2V_HNH`$j
zpoC)*j!QVXMHo{(<sS)wt->M3!;F+Y!sIApu}(2$hJM1oGy;*r32IW66iO$VoTAO4
zQw(L#N;oIs32nI&qRLob^cBw28kBHR!X*h0X`7O8SwgOd_S=kC7%6*I!Zqstm?YxY
zCEQ>={n(_NOm0ay`YoP{DBY28*Q|9<!hMrJknrJwVK8%d%3}%hyExkJOa70Rd6kqV
zRa1yRlQ3gU(ksHjDb$ze5?)AnNt0DQ<;1#p!q=PQU(;Z26)3%tkiAn3k@w`5wp=H2
zIx*vs?W2T@PMmmP{UqTt4TXfSw8J}b<AMDfHT!`*of8q9&HGm*{)!}pQlt~<S^Ta<
zF{jp2Hrk08Cpv8vGBIX#A~O?Gz$A+kW7EY^HXCQNo2As4cUy&APULr@fD^=XJB=~V
z!<g5Jd`w7DJH-@qqL33MouC;k>@@mV)QMtF6k(qDtI^ZqPWrkmO0YuN?;_#%arlwz
zmSQ9)rK$R|Xd-2uDCb0ZC${mnnd(FZCn`Eo$%$AeDmzidiFAdnaZXsBurZH!Vp$D~
zg*g#{Ndk*@Cr(ba^jQ>3NVN#7I+5r^b!wFp**-^;Sk0{1bDJf}iJDH-aw6G@?;fa>
zYNgb(QkLvfoFGoM98T1BqEQx0niEbZTuz9bB}H=5t8y$vMm`Z_C)`dDp`<WTY2LS4
zZiG`joYl-y5_Kp1)KeE?T?jZ4q*-v{y%QlP!cNR~(re97$BDX5^mk%_6ZM>^??f9X
z+B(s|iH1(Ja$>>4_(qIP87bS?i6+bw#>G&UQZvprXKcaPl5y0<czW0IPfoPv?ANg|
zlx^okdnbB3p)8E=z}VS|E=)R7@GvPpE{00GGVj6Ijj=l;6`kqg=*hg7sSH~f--p7u
zd_rGS>E}e2@>Vh)$jWdhMlcz~IGAw=<4`AtF(KpKTFOW#e&*~nCq^-u;KVOZjCNuS
zA7ZQ%g}H^}I6I#4dz+~l6Up1c_{mO8VnW>VA!dpbzdAvLvQt_A&Zj%^8_l43^qEY4
zXZ-GPmJ{FmIM<1JPV9AJpA++`0b7LSPOPATbz&iB7df$%$znz_Si*$<PGy;?R38_!
z(uq}0{OQC-CssQ_Z=zn$xW<XK6q6rfNTIaO<Qus34@T0-U=z>gHYc_-`OAsTOtv_&
zmEzot3L-mLrwG~Q#7^elOLv?49w+{0J~c@ov;9sSaN;`cKTaHU;vd?|XuYt(At#QR
zwGKOR#N<c+-w}_q_^+v)a^kcT6mpjs&p2_O$yr9y&(ZvHh!Vfx#6{M<H!@I`(q$*E
zn3h+WTx0w0yKOg}xaGuuEZ%1EJ|lU%<HTL&_ZZ0!iIg5V@sO2Aj5H39op{y7K}Ap4
z&r>I!F?sI9TP9TZ1^4JBXJ0w-n#mip^jH=P*-$S&IPsBBsaajdiS-jjK9kQ*d~xEd
z6W@3<$>hT3g|X>eNbf=h7a}-IdrKsf7tfPvlZkR6+J$-Ntr=a$c0`E`C>!I#nk5#x
zNFbis1)rDxj~um+Wui2uuQkU6Yc?0MyO6_$oG#>dp@0jyT=4!Co7V-pP|58=-E9_1
zd0d$MC7MV+*6A|o`8G>I7Ye!XqYI^6DC|NJ7k+R7err(|7QV3R4{XI<P@X3jqYJ`;
zv7|p49ZPx%wkgR-A}OU^DC0s!GCO3YRMv&^CNIaNb(Dkj3NCynhD|>q&V_gvQeAMk
zVBvAIGOl@VT*2Cy3oh7QNN}OD3$-ZCkFVlFRVFoDNOYmeZ9AoEto*bwvN|h7NF?JV
z7ix0R_be&NoK10oY$#jXg)}};6Bk4mB<3L(hD6z%F8W(lcwKP0;J;;+X((J!c_?T!
zJTACd&r;Dw*_xlDsfv%LV3MG_jBCFolY~O;QvJ*+8(<P-q{}~=)36J5Xm(tv$5Z^q
zYj5B}eHYekwNR?_CAuL+0v9zV%P-MXh0>m9$xU5o=0bB9TDZ`~g|05NbYap!dm9(p
zy3mUGPcHhBvyH^oE?g}k5TOg;b}n>up_2>kUB>k@r4BCKESgNDGflxpE2Vc|qPw)U
z96S@*%|$;yL2nltKeq&?#rB|c*|gZ6j59VxlGw|IDNOpXO<zVTB5{BV16^1kW1);e
zE(~^IlnbM2R9zTKeViXRoN?x%Ov9LvGH98daD)pZS=pIU_}K-*lS326urkes=`M_A
zK8|s`3p*wY6BvJCoan-(bHcq$!Xy_6Co@iQ;a4W4Ol4C0TjFmn%wQ+AvuFO@g_$mN
zmeEDVEEi_GP(nsY8FO5iOKVm}1{w2QnD4@67p_phXmz--)rD;?EOKG73lHOj)h<Lv
z3rjKz)Qcr9EM@1*7)e>qWCi0&##I!()ePe`oLx)v?!tQJB>v&T29v)Z7V{_bjV^3r
z@)zwJX6fitF=W4m+JDRNww;^tj|<;og&l0OlW~^|yIt7Be7{-uZzg*g_tE~d+L(d^
zX6ZpwKjgw;=0{vO>B1=&j&k;xX?fg*e@%XZLMzp1$!Sx$z~qbzXHDfClk>Fm@CaNq
z^-D~0cXeEK;hGDtTzKumbr){X2)pozOK-Yxm&q;0+l+S@e>oFP$Gyj#$bA<cFn_l&
zlCqCY{TY-0Xn~l@Qzm2b8zcFg`3uIEj1y1AyrI~um5_T&>}MC=viOdX?B6r_K)q)2
z$<(JF%0#7KIQy0H8)G^d5wfuaC`B@9zc4aNMn)NhWE7SWEh9z-WMtve_$SGkWYD20
zWtQ>oTOyIHTy(jmz1}S$n~dz7&B2&gMouQV80jdvW#ln=g<6^OG0$%*1!NR7d9R2}
zG$Tc16qk{1icnNW#jcKGGRm~HQ=*mlV^rb~GMb$iZl8($QAQ~lHDn~oC`~pp5@b}C
zQC3Fv<@WM2D#$1&({Jd6F^laj?;0UdQO1Px!t<6!m{sC~#xlmqh?ilJVdbpAXk#SH
zbkmIKvvc<DnCL1@s>(=|(eruL*0#(v2-RfdyCqbYF}0FFL-gppak!c?YRPDrUQlJ!
zZedTB;gTWCNa0~5vs5My#@aH{n23xLBiT4*P-ls(iA!p+%cjuL>m;|VB+!24mf?}1
z$?(c(B%`qmpV{WH44t{(R02$bGD4=Zx?U7DvJPkK%BW}R^_euFmNO|;D}l@?HIdOm
zMoSq@S#M_AH)qoJp3sU(J5&FONoyHxz8jeOyJ0cyP2NF9N9LVOC2e73R~g-8{7Qo<
zqq~eAG6u*P$RW{FMjsh{W%Qyzt(CdAjADh1*(}x~i7NJ!VQXdYPkpadjl|WJj9C~Y
zV=#q*jFB>iP;8_Mng5F(&Sa>JVN6J*K`wsY_+$E?Wn^A%pTO-ICF7@V$>d}-XUE7G
zYqoQojPcAJT^(dV=@-sUWSqn}nQ;p3<PpYVoF?N<QKMmVWYAyOPp62D7Jid4gM;UH
zHlE2ii*YvNVBTQo(kXzBIK}8uu2!k@Y0_KT-`=Mm8)C7HlL}5LSR!MojOQ|5$XF(0
zxs1Cq?y-{<GS<jgE2H%p`%2l^OjgOr7Avfl5xgf5Stnz?jDKaEkg-9g?;B%}jK5|4
zDPyCItunUB*d*gG8JlHnk#Q!YKx0mW_Bp-axR~sCWQ#s8l#LhaJhE+<u~Wt_89OMb
zZV7A8+NC(5w6z+Yp6Y!|+%4nuO<`npVXusRGX9Zqh}u6iVWA}KmvKPGLD@K+)r}Wy
zal)_+LY{cxu#6)zj><SD!`aH-D^8$QOrDR^mNhJa&SHz>gjp?;I>ieoWt@_6NycS5
z3N=#3dEPx5+%#6@SsCZ(dSID-W(I*q{#KN5LB>TI)i~knO@X@5JX*LS<Eo77GH%d1
zjTd%E!Zq4PG73VJK%37^8MkEIp$#ow2-Hltn<McyZC2-vp~x^Sfwmf&*84o*4`n=(
z@qpT#D)ilxN=Re%SjH0>PucT-jAfSFpV7JgjGfMXbO`c!G)j0W;}xw71)UVUrkJ69
zNr6qlTiO$3<X2EY!Fw4WC{PtZ!ABXNXgjJVL@D?z<BM#Z*CG}4yeWL8-Cm)8>`fs4
zjaHBXngZg@B2#GhrmZQxf(#1%<Vv8xICI{Ztc(hx6^yV}i%~G-o{&jFxT}L^hx&MK
znVlvvi-PP5a*$hUNt{5v&ZZd4iY@@Y#tAtU<W`VJ0S$641vEsp8zi?`WzVY^=Z<^|
z4xNpp`K3#sy?@vXDk!AjM+K!66jqQnDW!;lqKdIw4ya_zaxsOTPa0cmj#Qzzg5i&B
zKgJ3r6qHo3U}(bU&9PT135_Yb6qHd={&4y@1!WbKQ$Qh6i4+BU&j~b-6%^10HPK-w
zUQsb-mi)&mp!HrTGKDanno&)#DA+nQfmR2FhoHc&z^TBcAVEQ81<6!VK^2;dI3ZC%
zHPWMnsx(b4>@>O6$(w@hu|h2cNi>FMlWQs%5G&9)Pd}OZbs_y}asoN0F(>0x1(E`a
zHwSf=I<A1m)?X_@<WZtvplPCIlI4v3TFyjSfuf+kf(8my1#Sg?1px&f3XhzLK80TU
zmY^x{D#pG?p-v*r7l}F-(P#%1gcNM1_@vpSjUuB^hkHu1K#ifZ6*aG(f{Rb8zOE#Y
zSwjVl6tq;(N<m`<O%ybv)>1@0uSzpc*H=vy`emGP4szZUXbn=QTJVgMx1SWWrcwp%
zd3@R^$d)Uytzw+eY15c6*;t7^hbGXXquzC(!E9xx)^=9VMWKH{!(;_r6?CHrR4`IO
zcLhBZ;|w^2j;^4Wf<e?N1-%vYq2Z-SIAfpJEr9}Wbd=CnK|cjVDD_wH;Y=(M3YdWk
zXm#IC5$L>0O39&y{ZIve-4uFc6oygoEVmD*d5jlM#|l3y7^Q$N62_A&CgT(wOcTZ^
z7)wDCE2J&9JEM%N2ntskHyY;&3Vu<HZG_T9CL7MDpQ7Mb1)Jz73Z^QUreKAFl?tXS
z_)WoF1@jclplq##n_sHVRPeiEY^vYGZ<d1DG{0x;wB5~7Kn9fPi1R7zY5Ei_RX}TM
zp@Kye>WZ;p()y+CxBQk^+Bs>0meCnuaWZX6%N65XLo-ELBC8avR<K^d1{%p_b{dV=
zvBDY!Ysq2F1loeu(e%X{+ua{L?0@p=s~IcQYhmB0ppLZ~1rP0<n-y$PuwTIeS|c}w
ztqOM2S{|0Ljg|n%@D2q#73@;z=R(G)cIfJ$69nxu6mokM{LQhnSHV67*J~zFT+xn7
zvp^gEK?VOPIIb9%YKIhKTRW`a2=6dma%VoOAXAGZT7buR@zNS87G<0%{-t4`BAif+
z-FR+#<Lq#n#*>0dMOPJPX?-bZp&Hk{=M`K~P*6o76&Dp;Qt;nlTQ(J!6<ncxmBL2B
zRR!0m`wH$*^LU-o@ZR92(hhl3!7V<}(5{XbF#_#EcNN^DIZYLwu?<DYeIC6B<R@n$
z89bz&d2{R|1&^5!|4+dalRs6AOAZqMU1NW)fbfNamrPzUlJZ)?8|H6K<sB`St_~{t
zsNfTAI4WXPd{*#<S`sBhs`yG<@s`+cwDeTa8YfQEM|)1wUG@kSgcJbjRb)^R#Um4V
zUe(zDnbSZ~doroWtRjm_KLZzNH9<u$zV@a_>p4Y8vR2Eg8q-H4yJ`$$4i!07<WjMy
zLQ)=;{_4U;BsYzJ#iX7^?RizyoE1kYACvql3NWcr%x?SFR#-(56-lJ1D5}zn_Ytci
zPDODQKd30BqO@w9WlE?hsp3Z!6e`rItEZEf(FItY<Rz1ZGODqV%c&@@qO6MfeA1^g
zdj)F$nb?XdDv|Sh0xb%PkgDVO>Sc3myb6no$||bR=nYM=st{DzRoGPQeNvT9+&j8D
zz9pp6=`TUW<hugxdvrHZl}gVE)u>4-5>?QOphKMK>LAQmET)EPoa`vkQEI73R-vkJ
zt4L9iszOvDsc@*q?4+s2@}cuxZPmEhnLjO+T+u1jslufqm@QFJ;g2=uPF9T#ik9}O
z7WSEE?T>~gcvNUA8mh)w%&WquBCMj0YCN@w*kn(OP0*>X3L*i<AY+J;M7k}ag;SS$
z8Yk3KjZ+no`kZaRNZHye?2Xtz9ip*{CKNU*?p3crSxU`RH0RQ>sny~S2rX5#Qt^|D
z);!<?pQW@>LH8`}Rdi6%R>l6!@$Fcl6FR+LiH_J&MQ0V=>Eexo<ghK&Jc*D_#B^=Y
zjdTvhz8>^Y(No1TH<r86OGR%LRozH*qmPQdDz2!ws-mBY{wn6tyi;FP+<6>5Ld8h-
zFpzPOios@V4^c6c`7jm3sZ&G$caKBlXBDGVOi}TxiqUK{o^cH0SVmeM<5V<`GOorc
zO;GWRsZV4wi9*FxYUIdFHd8q}i*cHY=}dlOoWV#ozpI#Oa$1R`%vLdnmAR&#*2j2C
zut3FD728xSq_w7Ev5F;ZuujENCaX;QWlWZ<SixkasnhKe`B}}`H7eFJxy$!5>s4$}
z@rP--S;e0w-^gSW<6ktV_lyzPVrGeNSFwY$$0!a}>|*{8<8BrEnCxNvn~|#Q<>f<U
zKPv}J{U8&%cQ|A!hnXBvag@pS`o^psSMjfk6Q<2MCMQ*#GL_RR&Y1ixZIX*psn&T@
zxxnNi<0Zz+v|IjR4E{CR+*A~F(`y?M^*H*5idQOLtGG!GrU<7PQ}NXFbC+tF{GN*Y
z%pWj5H1!ML9|X}>$;uN`|Jv2@%;e9RykLAule^ex$r}}KRb+G{+KqQA-mCb=1|Jwd
zGm_ay6`z=YAG$BhzcS`r6nW5=Ii1@$14b|siDZ(VF#}_i8$Z9PN=1}n+{ocZPS!KI
zk=YHnk%hBVnw7~NzOl{bMs`zg8<{DW$@969+vIuN$jgc9(mi{AQ!n5KJpv`Mup32a
zsD~xk+$icsF*c~+MsYWOaD(nmXfq_U5^j_>>y~8lqZ_4|&^;y@lwn?$u^eN0Mk?Ao
zHL@b}N{q3Lab{_}8y1sW-54Bg98NG5JCg*)%5GFK^}SOgtGQ9#jb?5%ccX?INp47P
zINhk}#(@k%nj4}UwU{R}rZA>5Iv8s+(tb$xbTXyOIlAAuHX_;OhU`WoHyXR4xS_i7
zc0@9rAlz<v+^B1|L1Pkh!|R5Rx$cJldnt!pz_c`W`1x@mH^QvcG4<Tt9Q90I-;D+)
zZ^-1+a^n`hi5pER43^ue4Ky8e;W}rht%Vyc-5Bb|FgIGU@lS5Fb{qGebSK-!jka!d
zbE7*KwR5Ah>AAfd9o*>1+3x|+iMco|p$n6)W|kV<gL!Y-@R{^v?B&LH8#3t2%3#KR
zjQtr0xG|6k*$koyivHh@J%q)J3nPcSF~W^8Zj5zfB#Sh>bRYCH^HFBq(M;+tj2!32
zc;-tPC%7@!jd^bT;>JWbCb==0_1_t%Fiv;Ve}Wk6ZYm>@X>L^P_P?h_zqv8P)Zf^Q
zg)oz|v)q_%>T}%qXr624v$%+Hfg1~%q_MZf%$G2dAG+<LyDhreS>eV?H(t5%+Kp9i
ztajsHH%_>*#!YWy#@}x2bz_~I{>x10`Y2^R#T$Fu;Km<r{OQI<cDR#q6XRCKzuef&
zWDDc><++VH9eq2K9gN-B;V$O88TYtRmRJ2gH}<=6)Qw}b1l;(>mzPJ}ILKz?=N~r?
znfx#ldP=-LgArYHt##Z@Z+5Ll*BHc;Ey77Ry@U<7+_>$=Y1%a0xJfgcUO4N<IXA9w
z_4ADMeBjubSn_|tjf<>YV!X^q`hgb4bHA&cy~cRmjT=m6@T2vXca1jCmG&Jsp1JYd
zjk|8#bK}10;W3j3Zag%VM{fF8LE}jvrT<ub!uZtO17Emd&6=3)fU)PlWKK^QNO?mG
zpLRJ9N_+6mjrTNAZlv?z0|kZ~pWXQ4HXicORnsT8ao<Fb*XRMxSM#{*R@p7X5-6%8
zJXln`T6zyMFp2bF>`j60m}vB(Jc#xn#$#M6XJky|lVBzfa(Ix_gUp`)eQE#?vY0%p
z2iZ)X-2>VXsO7ml$n8Nf*7KO91wF`X@_ZiTH+cc_aN0N{7c!N?9uzToQ4g*yG)gHI
zXYmIQN-!yD+WhD-E+EOEj0a^sXy`#B56XE^-h(<G)b*f(2NgX?^}yjlC9WlSVD})F
zc^qRrqlMARNDgftWO|Z9B*9dwGpX!B6(&^~6V1|UbX@)bt_CYfj5R%|<v}v@6w`9l
zW8<SDdIDdY6(3`o2O<-RQT4#dge+Z5WDgW3^ze#AN^TE4tZ1gC*JIpielOKM^tS5%
z&04^NAoGx^glYEqy0@MObVJmDC!Mb9>wAnxVMORwot}F%_MnLe-Dr?KXzIaK{+zUx
z2hG?|bJJT34_bPRX9#p?!k<jNHHjXy^`IRqofz9Qb}(%^dQf<hG0v1a)3-oPy(_hu
zKg*-XH9aV(w#3pYzNcB*i%D<BJ|67OV4Sb}dC=d30UiwWU?By$2ZKDuL&ymp`rBU&
z_FxEShk7uI$uLGT81BIcy3xoe4F8rm(u1E(ot|orHu)Hj@qzDH55}=Fo{=6kQ1yu(
zOrpW@V4AU5?2|qC)dTk~+q`&TiU;j&#uB3}JszCy!EYYpMtGhFGd%d6Rt=562T|Vy
z5@&MJEXLW4Bvv_O8`vy~3?>(`6VCTw0T+cM?S`Kg_Qf77@nHHY`w0)0da%rc?bK8c
z@)Wf%_h79D>pWP&*_Di|JXlR@p{Sh<D6OISjW&pDYUFwkws^4BgALpyv8eqI5B{Xc
zENZ8;k;x{;zZf?&QZvpLvQvAud62P)y<>hmHF&27yF57T!4aAr4;CM?{q4bCCVRO3
zr0g?0e$a#c+_oKs><6gvg^aHK;{kQ~RE4BNY)^gPRn$(+JL<tP4~~04ecyP@R<(tl
z(!XpIC}2NHQ+Yq~6c5PqMfPF$BhPwp&VyDOe$sH>g9~&Z4S6-=J2MwOc;qq2B@Zrp
zaD_Q#uX^zDWPIM2#y6j@d2ro>8y;-l5_^*-ohEukEb&{c-1guO4e#FA#@8+X?YC0V
zJvO-S!2=H-dhpXp3yFWfimg$p#$)#Xp9fDoc<RA355BPS+=GeT9B(`rS-2XJ7o2_R
z!7FOsw%FGmtnB6(^@D}@TMx9#)^{HKx6tyQP65<T4?eN@*@J`K9H$mqdQ7$KyKGrl
zKp@Mn9(?nlXM!c2hD;i=AB>IA5UHW9-I`uA^o$xZXo%AA)^2TENT3Fg7_A{j!=@&d
zyWJeo7m^~oJ2Gp4hAbMgYRI7>Cwb`P$i}s@vs-ewzMzf#lZRXya%)Ckigb67H}Xt8
zpN9NA=3xy5G!)d}&`?`LAq|B!2pa4fifAaRp^S#I8j5KsuAyZCp_GOnsHvr`KWZ4<
z*-}D7{4GmK#!zM3*nCzJ7yM}{t)bLqdt&L74S(CqX(+G3qQOd?Eo`em-AT2@YpAH9
zl7?7vcs_n^B}*K&WPf~>?he8W860&pTgdF&!<78hZSynPY#RLC9YofDiBHf_MMG5$
zbsof4)-W4!bJxZuYN)0m^`a$J!+<sM)ioq(sHq{}&g2@5Z;x2YO^97KGPah6WDWOL
z#HMKI+}$z8X(RqpwO74s9sRo{O@l~!|4cp&k_IPrZGy$4;opPtE*kc17Pp26$1So3
zMMLSmu__~x<lJ#j55|*$MuYj>O3ACy)uusoYP^PkhBFy#Ar0fYJBS1|`qv>VMG<BF
zF_t<S>T0N`p}vOZ8d}gSe6}~x(3qyUd&1r&)`l7yX&@36Z=ZeGva-9QiH4>ch)`-q
zo!t^U@r-5kLTi;6;};MuDLm-kB6h{M*3d@7MhYQ{6Q1-x7~5%Ruc3p6jv7W#glOnQ
z9oI03OS@=z_B2IwS^H>s-NxEgLpKfGiSJDAp`n+C-mLdzrE3l=*$^j^Ygck#n*Bpo
zO8uDhry0>Okiu!3HFp~$QPE%x-y#zz4bd>v<inT@r_JG{<v@4G&l*N)n6BYB4WlXQ
zdRZoGXtu;MM#EUnj??f96Dk_dWP*kdB`uVl$k|DZ+AAw5x4Ju~(2TH$sf^PY$>Epo
zju{mBJse9loZ4aeUBgTbvnaGQ`f;dbfo5zea~S6_&ed=$hfukP!`jC(pDPkss9_P?
zFJ@dq!#mwV)#nb5{WR9TOv7@jOY@~+9XY>f_4jbB(y)fcyoX~oZ3rRz!Wl_)bShfQ
z29#aTWCP=v9u6w{lV|4^zsK({4VyI_)^J3_77bf9?9;Gc!!`}uHSE@~hm9knZIu@a
zJ1BTcrtH+PiwW^3d4<2(U_eVt<BjoqHJm$YtzO#t?@Z%oCUw51JD}m9hJQ4=Rk6%T
zjX1={q*Eg0sD@+IM=v^fahw*2h6pbry~YN9g4T$JhZ;`OcxpIJk<WFnX*kP-Y%bB^
zn4jk%CFO#Ki>w^aZ2atn(q#=-G>rLV#Pd}y`XztFb<@KQu6UE?f|c8hcNp)QHup5#
zH~FouhTBIPK56)@;jxDQxaf(78y{^iXx1p^S?RgM{+!9V8peC(Uut+oan8!cV#Y73
z-Y_TfR>M1!zi0A+@gpPE`oiQJBiVmt5~oI_<AEZjZvE)=US#mX>!q)BBFc-5Uc`H0
z@gmxb7&iNXF_RbBm}K?>USwhZ?4j{9I!al+=)cbBV0JHZa8XXif?nkEA~*BeHH;Ss
z<YAuIi+oJ-Gm>7wOJ7SiJQOmO!d?_%UX-yIV{x-IXWqyXUX<kQkBns)OEH%ALaAqX
zE6dq(jFc_Uq=FX}nN(toHA~~XSlGk(b(NKsBrj@uVPh^Z+Pz3%Qkk)a7gd;0m8xDO
zGOxy1-P9>CskD|oqLvrQUZi;;dXd7V)-6U6rBu#37;7^Y?q|v0F{1A;5t0{F*U6&G
z3z_=GoNAGQYH~Ld52HpC*Vgc?d*Sz@r5CMO4=^_JBFKacLQKM5)L~MWu^wZ6#s-WH
z8OgrcY~v@ZjlF1MDovR*V{Gn43sa}FCs~TI5kGmcbHDLp$<|)9p|HtiZOb<87%RL@
zM@1dI=;Xy*FXnmC*^4e-4Dw>I7hS!^Nx7RB-Pw5As!TnY^!DOZHRHF>JvrOUi^n}O
zH!o)G<3(RD`ms2Wk!<>VF~H<`ibv#oWBi_ah!;b>80*D2FNS$BoDF{VB70lo7r~T9
zcrlX2+`k#hC@)5Hc8nLJ_)kwrJaj#NycZL^nC->o3CX{hN14K8BI6{+$&C6)V^V%)
zK9zAA<8;Q~yqLk{cSf?D>BTIQ=XcuX(BM?JBu}=KeULieiv?a(@*&oTg<dS8CFVmO
z9~OJD#EY9=-11_n7t6T%RWFt^+3CeDFIIT5lGfUH&y1_RSmVXo?+X3K--~t3*E4P~
z^->d!+5gjvji$1RrfHY)!%|9{z1YI~R>p0N+fB<IOd1UnJhv=#X|daDTwv_+;%_hg
zehvG)IPJw5FZQ$9VK0t&ae(<j#(x;;D2JHr?BO`d<OJg}#^a1+^RE|Icom;y<&>$n
z`Xk~j^NWn<7|)xf7iioH8WVJhmCKA*%+iU=jiPIuz3#;gCaI$g@wOLtyh!Imgb#PU
zC^Le$XfL+*O1|gCeJ>uc@k7REUOZw#6(2MCkMW5YPfdMjLBqpy&c0xL>BTE1uNfOQ
zHe&KE^LLDteecBwlYjK$lNX=8_`=FJQ~zo<ul-7+<&i$)bm{LDk=cjz%rh`XF=k|p
zW{hFX#7I?YHjM!DET)pxhiuHVGv+Y$oId0-dG_M=yguaPYz4;rj6X0IU@XX3h_SE_
zMVJ(2EXG)zk=ju1m9ce{;A~08AAKn0Lunt%m^Sn7r<OH&IUmZKyv+EBip<YfFh(HG
zhj<@q(^4v6jJ(AMn-78yR<=1d#uzI*^BO)RF-h>DvJX|5S7of`Ln0G04&<^_H~E;7
zhR>Qlq?k%ACdrJR@y0nZmAS)*3%!hErTHMTBKdIoprH(IWT5PW;=}g3*ijd%4{jeK
zLr5Qj#|O=aihfk`!|Q|3hg&*s>(G7hQ<jL1fDb_*Ui<LIhma3pA7=S5+lM+n)b(MY
z4}*ND=R<uTy7<u5hXy`0^r58>t$Y|d$lAz<rc8)8X3~UQ^>9pzuSQBUR+=-mpjqpZ
zLgG(8wDzGRi|Ue;Ha@iVfe0lkZO3|2YI1uf9VmW!I!N!tSt6a8RA8~2550Wo%}RI1
z9zOImEsxGiCHp>{?a$bku^*$@(=mVv*?d|OGuVeAKK$&%sP7`<aK>Ri+{~Pr%qWdu
zWh70+lw|Th+J`Yd{OZG0AIADH&WDLUO!8qo#Y1ZH1U4o!GN!t}aJFSn$7Cj?OkqMt
zAFv^sveP*Gn-AYxKHUc@B7KGrzxy!Ltkt4JmG1^~e3<LQKRz7tVV)23eOTecN@|0c
zyugPgJ}jls^<fdsV^0T(iz$G!Cd}#SpkIH}3p5IK7MA(2xu?UMHDNgyk+RB%)g=0`
z#fLRMto7kfA2#~1&W8m(g()3`^*;KYegb*e-~(m<U_9U4PJ9yurw^xkI({FL`ox(W
zeJ;h`T9As?*y_VJA9nh%i=xzr_PvG2JsmrIAS6x(aV2W(rXXx?-^;kihrgLno5_Im
zeLn1G<pASB#>~AO<$F1(^so;{e7Hl~EDfCx$9%Z#!xbNn^Rdp;dMul)HMjrk!wDaZ
zzQ3w*lF2DrM@-I``dKFDC_cB^$?O96`l1ii5lWY6H|XUca@B`xKHQ+d@ZmZgsIG-N
zOD);cU1-$H(WjR&!nb@Nk<x7@dwUD_e7Nt!QySG?Mo2%P5#Y8x<e7bB&hO-24r=g!
zT=ayI+&=T+IahqaEhG;wIs1x{vee+WKD?vZ(NRE0;$zEuAHMkTl}<pVQa<?bkv5{o
zmQS1|<uhl+LDp|Rq|=c_M^+sXIwEz%=&%+^Os|7V#WW#`Nd_H<dO0ek2^n=nGbe9k
zKuE@!bY#{69Ys5*(z}2t-RtGJ(jYaPjvP92>L8w7M~2>x+4ZcsbYrgb>PGzJ)=|8-
zBad!G1qIltA*uOvW3*`iY03)fD5N7nM`ay_brjK2Mn_rQ_!(MJ9Y5$;P%5DqdC>9j
zg1ts>N4Qq%)o?-y9VK=A$f=Z$(p*ZG^>Qby?3?hN5SG(XQAZ^m<=IaKM$)%0v&8C%
z)A7%f6uXXi9TpvejwOX^)amW$+1pW~R;pE}zne_8F~+w~CNX!ml-b|x*L|r~bX3(L
z>riMGbWG~)pjs(9s_Ce%qlS(o9mzVbwNI|e4XeeNcut@$P$EBrH>5tyn~<u*p`*4A
zsxIn~bfht->{|Be)ZsD}IyC8V8&Zj=Iy^dvxEaS4szF?1PQ<I@Xm7`W_*6e_{yGj)
zH+2Mcgmg^RF-=F9eCimgW0;P*I_l|YN3)}&zK#YuTIu+S!=s^&#yXnlXr!azGW)iP
z!o%K<raGGGXrZH}PFEc%&2{<{9|x8CFQ$+I@zQ-9#OdW5t#!2FipkBA+v=#<$3X@S
z3AbD0FQjzP(NRYa9X)k)Vpm;sbftcs%+#4iuURs^go^xAm2TV~s?uFY_6-7&UOIZ~
z7@%XIjy`;demeRy>B~5vk7G>d)ZhC!HuZ534$?7L#}Jwq?ghD}(mE+Al&Go0b&Sw4
zPRDqiUQs2C)G?ac*2qr$X9@{t>L}JLwY836-T#kuER(Z+9R1~l2{f3qER%Hn!o48p
z6PawOoJjg)S^{i9{8uJ#`#5Nnrt4U!W08*EXwv5;&Cv0?j+r`U>6ovhd&kt-I_A(S
z&~d7^g&vH|r4VY8LOgq4$H?5(ek_ziq<mk;0-aua>S)l{v6z~wW4(?II+oICyth$W
zrDK_n<upot9qld&9Y5Gs=vYb9&72HY>sX^>Ep_LEEhQp#ok=K5Hh<{&Q^y`1f9u$&
zW0MXt*skL*9h-G*<D-0cwS|3dWh8|>lLtDj@6fT+G}~piYPXJ;JCn#}ua14}ld9}z
zkvx!dDm|d%*S-#Na!AKv9p5^oUZQX+YdxalgpQNUkMejPqo7?Je_Y4EOo*@V>o~=u
zdY0<;b<psh)^UcFPMuQ+y|J9rL3m!r1sxYDfKOQ|JG_sjUelBZ?X7QTST5@zyrSbO
zlWRJz>!9uKhK`#Yq7*i_`#Qe%b<ix|(Q#KtDL+d4aZks69qIkZ;Ku`+G97QogN{c!
z9_x5PaXTlrPkGCr!`A<FJkjw~$1|Fp@|Nd1{flcNk;)6Kg!HtN@Ff?$Vtmb5sGo!M
zcRJqd_`=EuMiM_U`KTi*gW-YFXX;>YgM6g{<kED0<5-b?L@=S}&y-z0#IT9-BcmS$
z{3z&0G?!-eBby&Feq`coW<Rnp0po>|My;Od4b1LG4nOj-o|7?;A9?-A#oU{_T5h^J
z&0UQSH=k?Ot7z1sl;02as6h((QP__k{TO#Lwum1^{V2h8si>GA#r^ofkAc~fDEs<R
z3gHwU#*%C^<)zVIdiMUbiY;R?OBp}<-7H_$PyYfL|ITJ3Ue1pT5f#caR`8>8KL=%F
z{fP4;e-NwI$H)6&p`HeiDFCY<Ha~{>G29Qq54#_&{P@X_1ghvqz>lCGB_CR=_~G^&
zcMw(mNMusYk5nckR%cR!F^RFJAGMeyGo~<-WvvCqowdV{+J2<@A+oM8N{mj^(&dM2
z@?88kD5@V<rW^O*9@aH#?V2R7Y2#y}`{6g0FJ%qmkRSE@sP9LZj`+?}hp{g8F}H=X
zcgI>9_|cH7wDhA9`OFsA*iRP*QQh-rF1aYGiRrB=lV*&~8C%dCoiQH%)F@=!v$Xc3
zjUPk&80tq`KiaWPe?QtYA%h-FI{2|PXG%xroftbac46$w*p0EfA9H>)y3o^)UViMk
z5?}XM<B4%^F74w-UnZpVqp><+w1Lt976<w<$SfVq#HRB7SH-BcS1iZf(IfmA>Blxd
zw)^q3AEW$O=ErhBM*A^_?dSV3mg1B7?|zK;qd_<OW+8c+9}}4W!bsvoKPEAs%s9o=
ze`PY&k18c=kXd$n@^tq08{-Vdp;<C7YAnq3BkFqWEI($mIEQgA<2**{SEl>M)9D3%
zEcAo^=YsemE?UgEgmEe3w5*XUm`tCR=}$jaGAH|0eynD`##GiaS;x4ZaRcKYe&gMP
zRE1i#(NF)}8oP;G_?I7>*?@|+__5XGe_LX9__5QE>wetuW0xPh{W#*sQCf6o<M;UK
zeGAsV*|=It%wDtBK0o#|Kfrj<)c;{}$dALOQlVq?F=_^9FEaj1n?|eX3(QaWaniIr
z#pE>O89&Z4IcJuhrxD0w+@w=F(=Fi=ZQ#?4QN2tn%e1-5<Qn7XxagaH-16hSA0Pb2
z)^Xd9M}9o^<Bn;6mz*%aZz>O%JY;<Dvi`?p?4XDzOp1K5JoV!l^XH5&{5T~T!TFN2
zuNW!&n#mi+w|=~1GRtMW1@WUFpZxgh$2S%~Gk&2M&J$VTy^Ur~?&pZeYRusAKVs7b
zkiJ54M8Md-A{o;&W?+nB%osp46SB!(HZpSn2w-dg;{wPMK-K`-1<*c#Yyo6vGe-b9
z0?5g{Pyo4@6bv9~d3<iuPo4nsGSA1DpRoXA)w9O17wTm1KP{nf07U{Q%KGJVwxj@x
zF)tp#4*`@2pkx5H00b6)44@p7QjDb;%P^9|vH^74m_np{02KnL$a-7=@c~paZDIrX
zaLG8jg%zu*H>ze#!TT~Xc2*JssLbS+JGu&!YK&DG6B)_=bGex6%xjp6&@TGL%c?aw
zTPuKMQ%_-%8i3MRXxB)n9Y9(DVgOPAO#+zI$~d}{ZGr)mKN#x@K<2CxfXc)jfQJcL
zo=~E-0KA;_1>k3*o27O5Rj2{Zo(&tGLji;XsKZL#0O~WTXWEmu2Fx2WHezgSmhRtR
zd^puKfMx+S51@sqw`AgN72PU;Jq3-8`lkR|v)G2Qt!Y`Vg7Nb04gt{LTXYVfV*nSc
z8ar4gim2JK^ncu40_aL}7eM!b@kfeO)Pw8x3!r}hJxxEonDl1s!`L@~tyBN^wz>hV
z3}+k|z#t~%YA}-_0Ssj_%+%LCHl8bv2w)^DKQoSE9L+d}k!&_}iW(olgaGyja3FwR
z0+<-UiU3y9#04-pfTc8vhb&V}`y~PV8o<;5rUlS+L;M^vm~VVCGChFb*k%Uf?~F4U
zXEBn^Y$i)4SmtuAd5rTJ7ceelT*OFj7YCqe_V4}=^om->)t57#<M;Bd3Se~rE&DnC
zV)1Lxh=(=I*9NeT$$G{OjDIlx$+(em6C>4{lNPl(fGxBtuco7u+E&)X^W(P#uswhs
z0qkUDw`sqN$;Nikdzk#qxR-GsBl)bdFa5y){t4ht0Cxj86u{vCE^z6wfz~4d95?yV
z07y9&z>*s_nf{oGp8s>v3C5EFoMJ-yX(nd^ILqXmsh_79pmCtD00nR<fXl2$3^&4?
z{@e6Q09RSL#(16a2IEaeGP}j(He=2GmU{u*55PGyAu5Om0Xz)gTL9^Tcoe{6>P`dU
zLM`LPGXJst8;bt`o-%*N_?+=hs<BbO2;e1WUopOBB)!m)^n`B%co)EX7C$h43gDw@
zllN5oXXalRznc1QTBe8~BGVcFuA6~LBxCv@ggcg)Ik5+)Cp0@|EVqn7L<g~VXlzW-
zI89^<B6AR6PT8DHvILRURI&w;-Q+of__?_8YRz1xlAB4MAo7|@z9718Fh0vD5JbTs
z3I$O(hz&vf5k!$7iUy$t;SHi#5XFNi7ex6We&D(#7>BBs@!OJ02Js_j?{_pttW*%C
zIa`LYZ18`l(eCw(2(J*ts5_bLK~&_@O4OK##(IzCY#d{J5Edq+TZ6DM7ffZ95Rni>
z<shoCQZ0z;OsX;_GJZdC*9b!W%j#eyiLqvo{wgk_7V~7rlps=>(6PiRMhj~Pkrsr=
zqQs~$IvHI-$V|v`+My_wxtq~r>f6Uf_=3=b7!$<UApAiDg6J4TryzoC(;|qLL4-{E
za1eEZs2fB*R;clfgQ#zoHek{)h(@NeAa6_)=1ondSrE;czbR;J>2X)n-F8{J){1Gx
z;!i=eHZ9u((bnYcn6wX~gQ-0165Tn7E;L6$3@LBz8br4sdIga)(bAo57IjV~|2>%Z
zWSqlGzIPCPINLXf!Bm%dKgRw+3}7;lk*W`3lE1$(??agnV_bd6h@auiM=*}07-mAc
z-4i`J2&t*{lFc&hu5BFabAp%~#CYZtOv_(_^e<+Z6vX5prUWsA^<NpMnl{h#MoeQq
zo$)tQADA!G@62a1&NB7cL7ZD^jO{#DmIbjqi1{?Fe;Pa9f*=+Kv4}%`F&iumVhNLG
z{I3mUL;Ee^iXcW5v>qQFwUSF$F_OMIh&9aDGOlA>Z<a1^7x8Bh8-sWe#7h=8F<vBO
zvN?z?L2M0T8)pwQZVzH-5W9l7a6M@U#hWu($(w067ts+9GTFoUH*GSezAuRVCO;6w
zKl6+ZQu-%|L#7_6m-$E#M}s)V%4x>qX6e5{oM3*E@sz30=j)9#L7Zjf9OHS$3#JX-
z+g=LdGH0&@@i>V8g1BmyUJK%S5I2IjX)5=a++w`Vc!%+B5bwtu^L3xIL>@4C$oMFT
z_#|UGws*EX3F0Yj6y+ka9k8`L82>DY1$;7k&X&)*(0_X+zY3yB<>b$-yk>mE_%?`l
zLHyb~_C4bV#*d7j7^#SEPv}5jg7_N5x9hfVLA2YGOe9^%$VM>Mb0lR5Au5FHA>0Td
zV+he9bO@ni2r(i0ZWw$a=pked0U=Zh8Rr5@Swe7!9l1lu%1X8nvWJj^c}~;j2*0I2
zR|q?}Q+Zg=%a|{O{2>%zUV^b8V<E=EjC7PDOo}oVV=T`2LkO?(8>i8doF(!jlTsm+
zW>SW+YzXC;ln<c-ldaPuw|BBvWKM)C#)c3VLVO685Nd`{D+Fr@k)LYRpuyR1voRMK
z?Tl2Ez@%~rRZOKSlf)3JF{#ejMz@o368j-n^aj^tI#ztO)DY%gOG#l)*%k5C9IVt1
zAuR+k1SteB4gTpQGIMfK`O~q)T_J2;9508UgmCIvtjbw8eFPlBKXEoP&_dYQ(sKN9
zEFo1N@W_}ce+WNue*+-|L%4a`8VaE?E8!68gix2o28{JWsL#Zf(?*t6d&M^7Y@-l}
ze;1o@-KLDqLTDaBix66d&?<y0vUS+Uc<QN`H-RvFoQ0IuY#DPfrA-KJLuePm#eR-W
zJrZ8`bF>eEkg}aZ=p4eYAxsUS3)}Y%p&yg3A#`KXJ%k=idWO)O%tmE?yUo@sghKrt
z!!jH94t=<^)=J}|qCfLdA^fr@Wk3i6Lm0$-a0o*}7#f1Tzk`Y>4P$*c<EwN@Bbbb2
z{F$+7Ry&!ErlxL=AH#0PGLB=UV~uArf$^6RCNi1CIGK@brZAznoyKGnVF=Sh_>JAp
zU~yvzzlSiBm066-LYU2D4kI;SE|Ym7%xAKIabXCHm@E!q36teLqQ~BkUCNvYRb0+|
z1tVowGFcVEY9?zK*M_i;$@&ofWU?WIKbX)B1tqHZJxe`$a6jE<ZuagF_Jpv7qA`SR
zA(ZbGyPb8ip?{Xy5yH+8cCoUemT^sZF)i6y(DHW(dqZf`E1^|?$G#Are@dowC4~JU
z90=hcD<>HLVLZfmn2{`xFgeP2EQI5x{x1`{R5)oWr<j}$;S7_rjORi)&*VY~mzZ1(
zp)dsUOn8}<@7b%&uW?hUweJ3on<3l^A*l{(*1_!%?oeojF*uC7A>5<28HO6h{SY3I
z!!U}3@i2r(G=?F(3E^=F|Ap|9_S;zNlMtSU@FIkNOD8>}fP9=fvcDs9a$?6v_U9}T
z*)%qRN?*}>Un_KcU<p>Yyba+U?X+RsxSH}lgb%d6gpe+bbYGJ{hOn@4>L*71Yx3t1
zzJ&0#i~VZ|^M<EpYMi>Hzk{+7VMK<JDU8fvqz@xQ7#YKe4kIc|-(N}%9f{w&$vUQS
zDtRb;Bt9mL-TfWp_I*Jki!jFKtCl5<tYMH@)g$q<Dy3u#qvIgMK6@CHB@elaCFTqx
zR~Wg&$P-5XFbafmslOv{82Q3@eJ$nQwAjj$jmT3e@pXSk!@NSlFbaj~U!Rh)4=}P@
z@5UDmqgWUv!YCO=@i07RV@q#{{ej8E0x@f|8y9RphEXbvgfJ?HQJUHxMx`)f!zdd@
zxiHFyQ6Y>*%~Iw!ODS>O*87O9Vi<7)9Hiulw0DfO*B;<__NP5AjQB7t<b-XkVc5d3
z(<nvQuQf|ae3TL%;1I%SGr&P4UB#q+0~}Sts2WB}7^z_-hEXky8et@bf#bG8u~F5-
z*vN;NFu*~iW*7?xIFiGtMFSOSFW5DeaN7XKxCTj%FlvV(h9QMP%}Wcz)gXzQL_eZA
zI>6ziY#4GFeYpKM1~^^}aF8A`&~d+6lADGij3!|;4P$k@Ju)>}3*&fpyEhD97<w4~
zFd9-c>Is1`f?-VFn_NGPP#9sFl!1<VVRSiWBT|R6bs4`lOCn`)0|Ogy6{=Ncpo4yW
z(<qFhM{JG5s5#I<KeuTXMsxBIM%OS}gwgh9a;q?Y3Zo_YR}-fXi@r2bXib9_MhEIO
z8HCX;jP`Vt$pWRbPg8c~On6hz_>h<CcB1f@D0F6|(mPA-R7y78!ss4GV4$@xV-LpO
zj6K8X#boxy@?_A5Igz>Xwtmd}GY()JXqMi4SmFPudJiZmil}=WRuFbCIR}*}K^&%g
zcZR&O0Yot%f=o}Io}TF*5D=6kA{og!=O9@ngGdIIpdwij1VvDgoKaEu-G2Mc_y7Lq
z)Vb%@t5@mOtLm=mp6Njz4EEr>2NygT;=xc4_RyI<80Nu89xUQuc`)3A5gttUV1@@H
zJs9P|1P><C`8^op!8i}bdob36ieG2lbY{2T>L6*`KbOCNI62<_9mMg6*^@k&?6EJ?
zBl_n~@nEV4H=C)Ai!0MO@493JR;k_l=X!ogC!guTEDsiPUTk*G<_z*+z6T3Dm`j)L
znlVr03;XA89+X3co&9q=8m>7t(pf^4gBku2>VYNB#U3p2V7&($JXkv*YpDmzJXr2Q
zuea@QF0Alir3Y)6<iRH%eCok!x^7ry_)N%OU2VQf`04(+rvq+A`Alt{2Y*jj5AVoM
zc`xhrx>*}N*yO=h54Le)X6AhE!51EE@nAFO&cqysd;N2V?Ng!^Gku>a$8TqB_h5$y
zJGp?c_EwG6QA()+x%WG`chi8&G8jHDnmMsSCdpSGeC@#*56*h9*Mof?9P;3>2m3uZ
z;K6qu9Q4??owqAB{>FoEIl%|yj;*4+G$41zZD(}7`n{xnFu{G;nUlY_a)f60;3p4$
zx$PQLEb|zL`!B~y4~~0qb!z5>I_?u5{J;UN<7W6#h&~{9=hBRgcQa0TaGFcX`m8#A
zGSdR;&mQ>xZbUMyyXzMZ&PheTa_BeblpmSdqkVSaN9u1L^dFErb3pFz9{j<zR6`*R
z7e(_12VKY|UIje3lG6AxQ3muX&GK0$?<=lJ^tvF&cf)|(TOQo@;6D!@(QfjN^c~LP
z&JFK+aL<GL9z38~3T8g!n)AK#7rR+D>#Ei4Z;4X!j|br#h2&okUc09<tR3li%nO8u
z6b(;k$gkn>fZRd@bEEG&t`5jO|CO_V271)d15XsxU=&rW4$Lj)%^7ehr?7@p4b?PM
z*N~<G8p>)Yr=f_3q8dtSD5crs!cXQE(@<Oko&SO>y@bZke&sYBnA@~kdT9;8{z@5*
zKc>j)yU{tlXV&GWF8+?JyoL%Io??@ZD-|_7zaq1ehW*3coG%B;HXy02;kQC=@4(!r
zHK;umhG#TXN%E>fs@+m*XsD^dp`pHpXElttlT}y4a~f)CsLj@{b=J{PwMTZlGubuD
zWz@dbtRCyqaJ`A^(V(pD8`XEaHv9ITt70V6sX@`uNJC?mtRY=PkAb-jG%V?>eDl2e
zW9Nn$8eAGk+=Bi23DM3C8)~R~R2@Gscg4Wm`$f|C49sn!p{a&u8qN;P?Tp5|2Du(<
znQOi7<{Gjz{G{QO#!qS@N5gmx6Ex&%XrUpbA*`XLh8H!o)6iZ+D-GYNS#4LOwbAgB
zhL<(87RjrEOnQaJ4`q|QmXy4%VU3za$%(qn-q1j7tKm&%tYk}wZ)xZta=!+T22F#H
zZ75Lx+8>Hn)ci};4NBI#Kd17&HI@?)<r!tNgBrLGC5dRzHFVR^T`G-gFf~~88O?r8
zG$z8h;QfKQEFmG~ch=BFLq`prH1sN&#p>Rs{}gqV8k9@ys)3SsG_dMc3v<Zp56UH9
zke2qYhA|q(YIu*sAyxEb2^wm2ZJ76-WN!_R%4PQvCwyN+UyUE1ML!KgH4GEshZ+V6
zp_ld-GC*)3+jG<Y^~&I6>JSYSQo`_&hLOUD3yw(2dmSt=O8Drcq^GwKyRfNwR^maU
zaT+FW%lfuU!-*OuX;{x5X_%~G3MZF_xnh>78fIyjtznu(rwh&yoGD17jVqgVsY}C6
ze<+KJG-mJSX_&9!6AhnAXKBC%8Ww6;q~T)?%QdW^6BczX*05B_5<!}gLWX6@C`Yhc
zk+hXEl+|ivF#2V|7e3RlnvU1C;VKP`Hmy{cxJJWT8TxhNKY7kW+^AubhP@j0$*_K|
zVY`MM8a7Lmj`W3wEgH5;l;u#eO*n-+nYVe?9@e5^7nh)}4SA-qn@h@+ERwIpAHEhJ
zXj#-nlO9rRKiRM0fQDllj%)Zv!?#?xG#u10Q_1>H$oCqUi~2Mgzch4+OVdYof$Y&G
zHR}kwR@8NrGi6XNP2nr}LX#qCCp7#(_qf??OtmIIiZxCO(javg=A7nArQvBWp7G)g
zXR(I+8Xjo)MZ>QeZfg9fG0t&m;tH?fl62(E{cO7Hc?}md{I221A4>BgX$*e|e|=Ey
z3$3&M)Nn<^RSlPu!uCbduE~IMh;InFuJI$G8H_TJb3)zLz<%8kzNMw@7<V<?(-3iG
zWg(6D7hBFQdr{Pje>6N~d%Q^T;$IE_$+&aYukX_E!czqw$t<Hu9}CIHEJa<6KH)_H
zFA90>BPK>U$_2gl=#W3@wJ%sCg}q4iBF&3c3v(dYc~CAn1AAA@i{f6C_o9LqCA=u<
zMQJa}u>9wmu_L9t7&a)E{>GANrLta>^CH?vq0xwU>oy~@B^AA>?6v1|C21HX1@;yo
zKIH{{gS?6tRlR88MN2QLc~RYqMqV`bqJ|eWy->YK_u^SEYDwekdr@0TtLMe@Lh5)?
zSIBdMhj-aVb_l1b$r)&Tr(~y{6)(yzv<;r&h0BWuUVAv)UVF8qJ^9+kibh#{+SO3x
zd<mSda5wRysTa9k#2RHa^Mb2owih{GWP0&}7tPrKF?g1c!h4#~uyk^I9SNt#sb%&`
zLRWdwi&kE&_F|0}FM07Y&E<vRwHL|OUcADW|GjWrv}gBg(tb{~*S+@3<n)I&UV8<5
z!;7{;-t@xbh2}*&iMAJfOR$3=mBE2c@}L(!;eNqDQf|n%{6b!YMG{HMbuZ?%v`^t;
zUc|jvB68CU%Zri16JB)mVxSkCjGaW%&5Q0r-u9xikS>B<1>X^5fyY`Fe%FilB-%%i
zZ^iUTruG!l%ZuJgN$1`6X7GJ4`g-w!7yXj*{$6~T<Zt*24M=j9Hi%;<(IH-p5HeJ7
znBYf(!v*u&Lktv28|B4lFUEK=mVKAhabAq~VrEivf)`Vge4-bVgilUNdI#)-->F_q
z6Up?Xe1;G%R<nf67MvqESCF~ltuQ~y7kIHy_#(lNlk&ylT~uD`#WF9Jb8fn9AEQsM
z5S^7t%}>1eRQP9ttCDj6!2)Zgko8_{@Pe12bzb|b&3l85bPrzmyx2@RyFVzmY3&T+
zpGwwK)ti0c#TKu9v$2&Kl`Og_XBp?z4lj0kF+YF>0qpW(H>Zgo&HUKo#g}ZM4=a55
z%8RePsPBW*hrM3x^Ww1=`Fz;##Q`rab0PBL8!x`~;#V)u(c8T^=*4N)SUdfDFA`6u
zAM@h47l(u&7NqcqkfUDox#wb(;e;0_lc_&=@uP4Sl9&3EL{AAa>1QebjNn;8YW^an
zk^JU`^A+U}L6Y-cToC?yQnGna?nU93l9E3;k*ljz{{E=zsu#DsxXpRZWi3Uy?nQ@t
zt{O+PZ+LN2BrkSzQSFWwce%EE@z9HVT&oAF4+Kf>3yFWLlK<t!-x3YpcQMLxi2w3h
z5K$QZ<3i!ZxT7ux){@_c6d#`Tp_UI%_)x%y3O-cyp`Z^>`cTS;(moXOp|B4{d?@Ne
z^#K{Flnls76HWpjD2cXJ$&2|=+=mjPKp{i+rWDE<O8PJ_MIk98spXQ{%O-Wo3&|_I
zlFuH^DuN`HeRxXv(}K?kR`2R&QdQyA@+5*3*6^XG@c+>aDz({{B5FM!>iBTtidt7N
zW4!X554&y_rld#zjOTrDmv%XPxLZ*nQG8H+=<CA=KBW7Q;lrywyyk<8YCdGKwLUcP
zVf9c4LsK6bCV3+vjeTg6l&l=(XeK-}DS5$%=EA!Sva{#-kn6*M?atOdwD6&&4{sfE
z&6(+V(T7$(yyU~nK5S~C7Vn<I(CkiOVqTQEX{O^9A0~EABYEA2Ha>)W2>b8`GrsR=
z=YyWon53-_Z;FJxWD%u3tMH+N4;~)^qO)Lky5@s9%R$26^}#1{zYmOZdq@l>HK`UM
z_u+8F{f@LP>O<Uz%?;g#L}SSYpFEU7p(#n0U_!8?U?;)11v?9N5$x&%_hQW0&4+h}
zXE1aZ@~#i>B_%zC^c3tR*xQFb$<+6KI5sGk8OscE^z&hy5959K(1-rCvk$K~&Hl)T
z;XVxXVUQ1lMMB|FAwzs<e8}~nx=P6~;Uo+rd>G}!Xwexd$kc;Y8k5E(OBgHU&GE_v
z8hpGm(}!6c9Umt7FquAISe+*FDT0hn74pj+*K|ppA<+jr6y`0t#xdIm;(Wn5f^!Au
z<?+%P3w&58e39T1!H<1dEF`axrNUXxG9g_Grmpni6CeKe;U6D9_2Dxg&iU}053A^t
zTy=fe=ffHw)>7fNy2pogKCJiQa}JFU8+<s^DW_UKb@qMNv?r8}J`gvFkmL)_JI*N|
zmY2w|&N#RFK-}rWHX+*ucL?_H?`9J5*j*=;cl+>bmo##QFD3g|K77qVl+?u=Q}@e^
zKIX%5AqRZ;hEC$ccN_wd9P#0MA%_H?5j-r&1)R$Q!%-i&Xp=-YC?|aQ$%j)u{NTf-
zdoB*ak3vpz;cAh-Yg6`VraqH?mRWrGvu66w5<SB;B%m^Su0uAn{K}cz(MbvMybl+A
zxZ%T1AG`tOcjn@l29-a2xX6-uMSDfLyGkLl0dphjpI6n()VZo&@!_fv@@qa^Px1?u
z({K6E?iKaE4@dhrZgWnR&A1~-a@U7@NzUcsfe(L)+SqpX@?}1yKJ?*VAIkYr-jDz2
zx_#|uVUK-yB<nz=rOMfn&yW0mr1<fKA4UBr=0^cP3i^@iN17i``ccS_jV+bJe)ylr
z|H3oM!ft8Ae=nyHzq-)~eq0JGMf}K1aui67ZB8lfM+ra5h_Iw&FD1N%<Sp$7v*(q=
zTxBInQo)ake*2cy=|?5MZPn_2)bOLSACE>kp7P^qKc4Yp%wbnmkyH_6(!7o8$sI~H
zKX%M_FiJnK=|>$u>iWT?XZ`jxtmVh9l1*y+F}HLE6&RlLqjc4b=l%Blswc>K;Sf?^
zvM?`|6+cuz(*4Nr<Lr$_Y^Tc)w;zrCXzWJ==~qKPXo|UAY|GGA>>X{@#1C2{&mfd%
zQqvCvP$Yoneq{NvftK+j+m9SShWIg*UG}4eA8+{4){mQ;oGtx$SqS-yw8Jn*D~Y}&
zoI-}ye!Swxt0I3*@O3|`txlWS$Ia9>A_-nB@TMQ_{CL-o_xxz@$6J0_ekA<p;D^VL
z4=*aZADSOtKSF+tUFh(Mki<`eY;ckUM9$w+1d~Y=hD8_=q#DbKN~$3k^CK=vrXW*i
z?o^noqaR&F(n;`b!OntAr5drTMBnkFn~?78<`f6zdDz2`K7PC}Nj?4O<wxOd4u;-R
zFA3H9`qAHy0e*boM?ca0kQP3bmRCNjBN-^Y8$^3vEWq{;_M`T*3Q7B6j$wX$<i~tJ
z7WgsTj}d-M@MEGMBmI2USv@^g9plF+KS)L=CCl`bv3?M#FwT$he)Q;<acfX6btd^S
z*^k+N7^fUl{Fq92;-!IY*qBPf+mC5}O!s4k-@ZAaBu_p|)R<+EsLi4G(xo|DAF33-
z|A&jX(2qratmv1q+7B)lACn6qU+l*cKbEpdNy%~{o15e?RUMbLQlg*u@u?r531211
z^@j?1$i}SkW39AgoggLag|NY!IAQ(x(T|fdb2t03*N=UEeBs9yKiZURyp{9LkKKN3
zlPD$Ih3xQSr;rkpR0{WS#SlV^k$lMsB@*g<ErgZs_hb7G<uHw~*Kxp)Z)l1X<y$`v
z`tiLV-$|5`M$wc*lx$2TVU&UV?iKZjAH<`A#{`el+CqMiGFdDYe)8j#AGiIu!@>3A
z{7}blM9zzCj-UNFBZT~{AHN9yRq&i>Qkh8?{J3^Nx#Y*6emwh=<99#)5XnVBCQ(Sd
z?8j9~MCVFU;krbra8o2VBueF5NjaU9ua(~An#m>Ik9%BIzE&9S3whwjUw-`U$3IE=
zLm|ZUvntgdahUqJ3j|OwfX9C13)s>8f=>vh1n~Wb85EKb8J-kUIDkS)1qxGzrzLfm
zrDy=f0x$!x0w^9pi2z>ULKi^E07?aT#YEizmM>9D2T&n^iUE|7C?#cul%r-5rF;Ob
zQX0S9Cc9F=z8S76NK#qIQ-V(mJ`=#F!yHutxbk)y6&R|Cym|mNgwzy#R<M>Jb!rP?
z#^(a47r^y3N}~Xtm#UQjc)!gyI3!wM&?(raPa!pcbWz9<Y!HA;h+B{u=QVUUO!9am
zwXsyxM6hYH_GUsd1NN4IjmZk2@p)%<06DZ(iaPa>D>r}^0eAw?0%*yqD=Du8@M-`r
z3U4Jy;Y$HN7sib~4)WF_ELAFl{Ivky2%xP<UKea5*nx{%CFRWk-jXPJy8zlJIUR$N
z4if$9VgYXez5on~`ja}L00P2;f~@*vEj1iKM4F)o5KU^%S>(v8j%CI~7*E!f2%uvC
z?+4H~fKCCt9Y9)|+9QC@^hSrumv*{P*j`;yvT;}TVwdxs0J;Tmp|sjvqVEQvZ%!Gu
z%lV!}m&{YB!;NiE(di}FJAghys7B?PjnoeU7#6@s0rU&t!vOjR@Z}xXAbR60#{l62
z1xJl4OgV3m1_v-CVBaYX6(pfcoNriQcmR_Em>j@}07fz?fYAYr57>97W9YyoGR6rf
z85^+ICCVA{ZfGY2Fi~_UVN!!h>J(9)8Nk#47@a0aGChD9NzNPNSpm!z%{hYe1m_Cg
zZI_eZox%ba2C#^8Glaq+d>p{y0Nx3rTM$bESQ<dBAZiD(jI{@FHh^COSiw2l!?7lS
zwE<kbm9>)ns-u1)_-O#230Wmb`RV||VK>RT0M^q`0els}22ST<E`~1x*qG#-gnTZz
zS+MBf+${lY6~2w9JwljkdjLCx?@UU9h3iwkJAgeRS@vEwqhANGH-Lj&jsn=nE|<<`
z_$Gk;!Vd@*yqz_;l<V7M>UVUc+gVgQ6u@B$12`^8M+BLAG^v@F@k9VW25?e@KLjwp
zL@x9GB+*j=oEEa=P7Z}X2XIEBtd7wSM!HzquK}D3;I9Dw4j^94^;-a!xf}&>UZNKQ
ze7zrka5>tX!PHB%w(!5Yr&01}0JG*OloPK8a4mqlwD5Ts!}S1e3BMtDQ*iRel)Tj2
z0o?gNl6%6LbU%Ox!fDJeO1S<B;9&segQyVX?`7~`00^Q;5RbU*2T&l0f<fd9B7YE1
z1W{_6YwF`dM1~ZJn%&bTl~+4<Pa}CUh{8dnio8$|pVA-7t7#IYexBx$k*=aa6bqtE
z5M?E)cn~E?f}nB<!S~9md1W$MS|lv0oG7!RyxK`B22m-9YC+_lbud&8;+Y^$lyH$h
zCBml#7e6jUNtGZ5^-!w{I!C&yCv(*hQZtBWg;0meb%LlH#7jZE9K>@$dltBZXb?ob
zAf6Ax5yakGS*l=tK}MZIlps3n%Q}hNbctRp?#d8}OQLj!@x@&YgUAfxg`oZJO`{+h
z3n6bJq^V%DAgD<pv3U^J*(s4^1(7WzN09PQk2;AhM5m?Ti$Sy!!n{ms9mFfFeU&2^
z#H&HP7K9eWil<eE*M+nbY$N!FU|YdA1@9bmv=>7Cw}f;E!XqSB!bPDs2oj&5U*rMd
z6b>utV!fdt!a+oW$Qtg@gGdC?F^Fgo2GvAJxg{hnXa->(bWm92Ru)O8Al?q53$v_J
zDC`_Wo-$J@>H2?^y9e=Z5T}AT9mIP<^ax^Q5T69mGl*V6EV$vALMJco>K#PiAU+79
zPZ0hc&X&bo?*|dQ=pyMC#D_ts+gu}q=pV%VQm(;43=uLQh=D=|2{I#7hX%3gu4_aP
z-_%ov3I9lt!r?+F@3t|8%A<l99mJR*#!B`{g5v}y2#y#0@IMEOohY2SCUbq>n8Nmu
zPYq&P5YvO05yVev=}Uu{8N|L~u6a}rVpb5dgV<iuH7AI<LcDcc=WaNtNu=6>AQlBN
za((LLuzO(;c|yuRmO>T_E)ir>?kLx?AeM79Y0Qf*Mz?QDxl_{h&qdd#L97j89lbON
zMj2KKSslb0A#5sz>x0<9(t_9@#Ks^t1+gQDot#Q^&Th@N3X*IV@`d0Q!7<&MQNE2`
zkm&jwDkZyu*e%ho1y?^Rv?qu!gZN6K|EtN2411IE100tijs<aC)V>YkU=ZI2@!kJF
z*CB}>34(PUmb@ekN9l5<T&$h^gy@_M;)fu941x`ykady#lq`+PKg(Kijk7O^GeMjU
z;uo2E7lU|s!|^N49>i~)hTB~Ix;MKJ#Q7jdI7f&S{vO01l1j;(zcVgLE@u2w$mJle
zBqdjaD0kDrBrZ)ixNb|mH-oqp1g|@{gSZ#OefGU{_MIT^3L($Cs6CMAKSBH@<ZnS<
zwy41HP@=qM{l`myjQ(S;{2_b#6e!`!7XqCje+Vfd+c79%v_R;8@)i{Gq#)}`4IwRr
zDIrV^0U;C#K@TAsLeUV4h3rK&D}>@gYKKrKgc2c?4Dsz0ln$Xv2$%nLGL#9Sd<Ydn
zC>uici;i-Fl-C}dTTwWLPYJ0cSXnYs_;fP$nGjxC<f5c%2-WgZLwGh>evJ@n3TJ^V
zwwCam4XNaHLwGKPOMf_;gz)7qXT1=V5Y!N!m#9Oqz93VbA-*48kmPn+dU^=15ZscK
z5yDWBGpT{_#vwG6q(*|&&&x<`D%CX;%oJqpFNDxM$xG(1pB+L@2t868=Z4UlT??T_
z2rWhOqTov*v=VY=j$&>|eK`aYV?!$O)ev3_!5e}vgx5o86T(}f`9=tBg|ri7t~Z6S
z7V`GOixy62v_lA<5Lg<ymegUAUwBCBVp2e&LBZC8b14Z+u82tXRLd|zh=nkaMhhV>
zKJZ=$UCyay2o@ctQhFkU&LQkBsB{eBVbP3Ef+TN;knd|JNtY1+X$S9wFr$R4h%d8y
z2;JyiC7UqR8n50`)8D1b`7%j*gwQjDULkytzkXjqlHMWwoUeYL5Z)IFIa~FC2>XTb
zVF>+`nggiQ&q0Nhb!p5vSXw(qa0mx9gkf~fqfUmALOv24E;xeC-jJG?Ix2+GA>7PO
z&y$P|;mA;RoZ$EnCWJ7Nx8+Bi6iy0(KicL08&3{l*9iwD%e<~>AxsY;e;6rY%m`s-
z2!}#A9KtNlj#BkM4dJs8W`{5*gt;Ni3t>qJ<#sCHW~%d9YzQN2D+@wcKgGeYP{<-d
zp0h0uAyG`>am3bKWoZb@LMU@gSsud55bF1F|K2%mMaVv;_;Hi-^j^m&^qkrX<*Pzi
z9m19nwuZ1KgtZ~Cu1!*D$_eFuC1qU*#PuO;5VBE_CzBLjxa9aegw5>56vr2WB)`0q
zM%)&{H!LcI?IG+4VW*^iEx1c?cL;kpafE-xmRDAoD-Q=uaggtoq<w<>Md1K#a??)Y
zR`feI^?_1;isN7iS=$^8-wT;nFa1aeM?<(B!X2()Asi3kd<YjpI1$1RY|MPeuOa*>
z<g_3qCqwv2_$k3-m+}|ir2foV5W?A{&MzTUx>cCU<=#mnGMo$HH%UEnIfc>RIr}E5
z*J;>|>K`Fo<YX5Kg;zuPQ}|`UD@i%eu9<o*g#G<9n2Y=dT}x7LC3Psjdr!Gb7uuBl
zcL?`Fu%q{s`yo6K{+FONIF~}|{6k+2;olJclPr$~DSyQF+;h#UlR0E?ZoaTxBZW_d
zQ6S9!AHb_&6b$3ZFrEveUKoYKC>%z~FiM4y8U`OurG-)c!wgozLJ&rgFp7q;WRhAu
zj1pn{*;%nLn&nd|X?Cmdg6b**N$D`kgi$Gs%3<3qWy7ezV%Io$%wCQKhV27+awb(2
zIinQv*~(L4R12ee7*9)-l4ruGBD|_Jo+tbi)(E3!o`T@BVbqq?TFG2|+{Qpn>emhP
zd%?Nn&xhd%qj?y71YAE1XBh6VeeB?WtSVusVWfva?%b3@%-}p7RhYyT#xl*;`TnZf
zAdH5RrBN77*>PGRj3#017@W&;81hJF7%zlD<mm*3d@fJS3iIu2<b;tMM$0f>q;WQ+
zo@kdtY$3c~0ku^a#FxT&ISe9G8O_saElGT|{TfXgM)xq@4WmsMZ-fyHBNRs4FnF}W
z<6LhTZ-&uM+Sxvgx5DTkobB`oVPiBQY$1h=`iPa&{b8_=B!Muxj>{qmhr!bcBaE1k
zh@dVQ4ddL+!c2{aVTRE;j4okVVf&mU5k|+beN>WnD#GK7P9kU0+u{H3*<V)?b`yL@
zkowHUHwXCa>^)XG#nFd@6$Ya(-fGk{j9v_LmEM9U2j`Mg=lwAHhVg;u_hZ|__HxJY
zVc0&E<)Z}R07<2AFs(#4ej7#K#!wDW80+F#AIC>w4CgpTu``MhVT`12=xCs0R2ZYf
z7!$$R2*!jlHjG<g+zw-07~{h@9LA9_CWJ9DjNM`E31d<ilf#%F#)2@WgfW#Ka#@*4
zd+O@6Fuoe=KDx*;J&c=!bAQ;MH6sk-``gr6^xlQa>@enpF*l6C<J?15WzS<dlWf93
z$wInu7#qXbM0uj&$DD?2d`um&H*;|q#Bpmgm$G4NGndi$LRJW_4r8SdCVdj-zTVdP
zOmLOpzh9(MvPSq?!F7TZt{1W)j69vs!`MuJE1JHY4pyrE7h!A-W1H|Tg6wSLV`@Du
zwZcjDtw8GP<{3M}*ck@NF2UZNvdO=sr`<?d6wdsXHVNbFF!pjeTA}Qt9XL9p90hiy
zSE$(J00(81ds(F>--wX%k1J=4d`J0?15rge$U=l13WI^Klv8+=juggu`ZK57ap!Sb
zIE)|3OR6Vmx@K9YmuH_0<0p~)9LA|IC>h#adA3mfmBrQ5A}2W$#uXm^hw%$NmZQAf
zaZa*7TBXjbudtloB>KRY`g<6E(BU67x)Fx&hI)~1P*uGm{8AXB_B;L*emRWebut;f
zDhh*&HNF<c^)N_!J$6ifDQkOa<tBR+Q&`j;`g|A}5x63_7sh=q$Ptu|;6WIFap{hr
zU<CWF<^0WFM=*b<<DW1da*V=wW@PGrVLalRxmWEnEG@N%>v0(Q?>izrT=^nkG`}F<
zIh@<g{Y1o0D$~=|@OH|R5fqB>?NT6uKI_sx@8K#O!P*bgQX?qY-L3X?5sO4nG=i)A
z1FHyL7~^2QR4W!i*%I~blJ7f8NP#6ID6%Jg#W&6yyVJ`=P&0yOsT1Lr!BsATAt{B+
zM^GVxilWS1PYJ0MLFEXTixO7%bTajs2&yD`)d;Eyub!0Dh#+gFou!u8;k|nfM+CJa
zs1rfm2nIDue=fo|tQ-^WIdan#l6nz5FA{d2QR>%^z!`xO!K@yx*x*z(f^fYoCZ&rS
z`{j<HK?K1FLJ>5Kpiu-bMeuS2jU#9xxpJg2O(V#bXtM}1X&>qD-9}3D2yTAh>@?Y#
z6#=6R6Teite455uawBLV&2AY%?sn&k5wJb%JIAh7gde+cU%2OJ9l<LRcp}gucr}98
zq>6SCye{O;2>y7av=PqszagY;1Pe-}Gs<#Ub$e;aTQZLO?m0TpbEFopRPB>g4h?O{
zA@)l&5CO-IYT*bX5xmQWMW9Czjo|GFI!9nc5R=w+6pTlZ5W@DGLagL)u-I)o9W1Jo
z4DRtBt}bHOt~A#`+s)`a#CN3LZi3w-7?;BT=5qCjpl1XFXo?7WNm8E(-jATS7@Y3M
zMpCV>Bz+jc2SO<6CuSk(pOny(2SqSAf{_u7q7zCRILgC?3>6&4&h~J9Bw6x&V}$gD
zZDw5;x2KP$^Y=^JvO9fCH}|**#@m{X(}EKsm>a>o2qs1_DS~Ay94kgUCPy$Of~oBI
zXh)4rj+qf$U+$PDI6Z<HoF;YEs+$xFnK~<i*%6R1%n`D#l`>xn-x%S?n6My%g%K<g
z$<dLHPb2s^g2kLQ|Jr|Qu_OY=F=Z*Mj$pZPMn7TI!dE6GZEo31D3d;mU{wUGBUlr`
zx(L>DvPZyTi)g7o?Q~4Mn$disyWzEr4H2|u<5xHb6waQp!0~wmn<F^JDKORjMFd+S
z*h_bcU~2^1BG?lFf0f2{Y<mPdBiI$ejtH#p9QBuEj^B`3ub|rdp>sEvmp%>(+str(
z8NpYQ#q5*j`(F7v!sW}+z{uWDVFbq$>Y)g};jm6{AB><~r)DJIM(~|T_TNaEI>G%t
z%{#%(z|_N%g}IKfBT2r(mwG&c6A}Cn!H*G~;zYZeagvKhe*7f;<zFQ{Kg~V9vEAQC
zS2Ma@bo?B_nF!8C@C%n&9Z%}`HG*>y{1d^$2!4y;d<3^6xWkosr29eymm>UwR{So}
zKLjbiDCE~k?#mGne_yCv7ji}LY6RDWFlk(B;~UJrP`N2caw~$#x=O-Z0$zgevZx5|
zv$cyH4<h)BzHu|<xiKn}@~-=TbH1$2<PE_4S2O;N;Bf@`bo_V3@n6KoNA$FzX(asL
z&ip!_&{04~iVj8@zP^=0{3D!7j15UEq@%Eor*u56BUMM5j<Pz+>41(RI!fv&rK6~h
zVmeCb_CMy`n&SRwNNRB%&8N6W+)N>kUGJ>dSShW8&NFVbql^xJnfm=^yUQPN`X{=}
zv%p3f^QXEi>Zl+k^r?`(xpX#1p%M$3=&meyeX{!*9aVJH(NR~&#Ga0-I;!iaq2ud|
z&T4s8KUtsuTtr`Gbv1Q7tAnJLU~NH02Mkr8BiG^7q3C#CheHPouTRPI>HQWssBrbD
zqvsU&{aJ2RN4ky-9WEU|?oR)5vYV~qztHsWkh5mCd+1a<+E7O$9r>e3iK4NNCOW3;
zn4zPoj%GSK>3Ca5rj8eMwA0a^ebJGn<0Tz0>&VuTqvJ)Ezo<U{Z7Ej=aqBJzLkk^u
zFJ!gUF?G6|gbJ<bb<^F(bT|9hTE`o@z0|y-<5eB6v5^;)*9Es+%Gvgvga3!wMh6>7
zd0WwZQ?TO}N6sn7TRJ-E@apjC@Nnq+DVlEof#J-7X^#un$B<ldzm5yVnnZNyIs(EO
z4GIbA2n*pC(<mfHb;NYUb&wl6emGm0at2dJLWHlMQ!O1tDll{uAtjx4bkQ+F$4H&`
z!+1wWFOKOXrJIgbmzC~1-WBp+)%4k=(yxz9CBCPlhmLA*xyXC!7`Rv==Y3so9es4X
zucNPy4|ELCF;quC9Uqc(R|eAB$DO=Y<9%9x+PSAPfc`Vgjxu$S=nUpuctd4$m?#g|
zapjuA=tsJJvsY_K?(JV4V-`C{=@`v%(a~~}oA+j8bd1$8j*Z{%;F`w!z45wz?>9-u
z1RV>vI40^Seb>Q2g~>XoGewZ(!5pP%{p@L+LG`oAXX==xV~>t6b<EZ=N5@(n>vYW3
zF;B;09ZPhu3-hHtAM02k(S^Ew6U!DZ5;-};xarDLk$)yS%Y-l2v4Y+{Qdz0v6Hb{u
z3h#kiH_IaVRLABVg=CfJvzFCD)^N+?Pi1tyjt%VQbY+K*jgquQqP9sT`nlj{9bX7x
zdk*+gslQd!w&^%{+qqo_%}BzqQ^zjaxunXlo0Gb`Qh7w`SDel|e%5hDlJ@F2rsFur
zOUHhZ9MJKtj_-7Qql5S43>*Ea9HWCe4oOAd>-cAvbKi7@cvvKC!x5?XsI-C66H*-&
zexk1mXYD_70hB6k=h%1tOg$w<ofgb1_N<N@I&SLtg_BXoIUT?0xGXK9{&|{|6{RZ|
zBnu_KC-YKxQIakR{wc0S;T5U<s*d9R)N2%Ob6ls-bXQ2&HQMl&j=yyLt>d<iJ6scV
z+|zMi#{(T~61(}o{XOPOCAXte>3<vr9S?Q<n`{HyL!HMG%@?(;#3)N(AbBE+0#S5{
zqH7cdqj)lkhEX(%qEHltqo^FkQ&FTwkrqX%C`w0xC_WEmm5f4Lrxb~zXcWb`23~eD
zln_!pid!??c@px_P<6%1!eyd(YoJm-ie3X1CY2S<a#2u$(F#$ttCC((u#(`cU@9f~
zXS$z`qIwiHMC}<#suD%jDE1vwsZcG72A7>A6Q5OTMo}+{=c9Nwids?B7UjBvH-{*7
z*v(o>m5+0%{9F`Pm5k<76^E2VIonoWG&cuRokA2rRWMyJL(mn4TL{Z(Af_N`97U5T
z0#O8`Xc~pR*hY~XMYAX}qj({TJ})W_X1FPD9_8QKBbz2|okd}%boJ+QO@{Z*Y7s?C
z_Ec5cMe$-3t)h56ikHT^Uy9=8C|-%;)hI@m%4i+M-NVZD-f1(YI%)slX4?p_MbTnN
z?q>s)2}6`NQM|#vKg?<y#hX#gY?l7yST~Kcc8EgWo}&;&hbTNz{P}~!$3cuDJ|y??
zRHv7w=&76;;UMQMShvmLk7Dw#&XtRuyat7$_DzBjwJ%uVC?Z01K}w=gOv_YPO?Ssw
zS`?-zcZ{MF?JS&m6H&06BwvqlPbsaw9YyCT_;Y^Vg>o04zR2-T6y2hjAH{+wx<~PD
z6l0<o8^wE3^oU|m6oaGa8MPOa52E&RMAA#5y=h({?+f-7G`KR{c2cch6d#Iye?dwH
z2pPzdYvwRIB#OSfm5&663Jw!wIg}6Q5fCk(%sV=YQF*oOR#*jtU5KPkiDGIL<D>Q^
zV}eK~CUZ@qC50ERl+GF%rbRJ5iW#&(j>0R;OsT77cV$i#vy!=Hb3|r1s7(3XDCW^1
zi=E`}opUUVVo?+;qxeKh_&92>qRXOKOxG%@F5wg?RDY=;uUzB|%cEE!5-L=fsD2v7
zXHjg9+G`F|S4H`EC3Y^Ru8v|&6l*2AE{gS11(R45Tf0G`T&5`5ME_5&CtOM1xuSd#
z1#t_Vxx2D8ifvJBr=8C^C}ben6~*o-^cbQs?1|#bC@vWI-N08-e9ft0AltxRc07uI
zqxdh1{ZW1*Ryh>K;V2FWubirU!*wZD`Bv~d4u=p*z8CV(1m#E+N2B;PigQsMi{f|`
zr=mC=wQo&NaEVyp_%VtfSo?nG1ua!qm0H>ANqW~5_fLYnU;R0XGxp-3_~y7nWwXz6
zRlJt*i<H1!18)d<2m4zT=cBk0#ZC4iir+>5Pj<O*_8(DPqSNkl@PBA8a_uUik}$lu
zO}QM!l_;)8aZOrsJ&FhO9jv0%G&e~kmO<o=@vSKCGl|xw+BEkaL6W;s+)Hxava%U}
zaR{Oy`CIV%UFVCj3`QSv`VUJZc@)KCj;4WH2J#umZ=kG!at2ZiJYk@ifzqSg1q>84
zkY->?N%cts#Sdk1(^1$!A>nPl&7maKu#YGo*UBKmKoJ9Zk{u~(Q3Dqzx+yPipo9UQ
zQkG<~2FeI8CCCFz?qYhbRn8n$s9D}X1p_q<)HLh^&x!_~GVrv4N(OwVos|W7QcB+P
zl=6&$ss^eVAg>}ge8~Ttn)1lBx&b1~JbgZ$r=V=fSNqi32I?3{H;`eVt^v$)*B5+F
zu%6)af=qG<;nGU(6s`!Wf{O;Ha?|88(7-@L18&3K+wvy-5}s&eps|4$3?y>1niyzm
zpqYV81J!4`xjwTrUj9y_{xe-v{>S*pG4AFDroNC>cc$avba#${Tm$0`Ofb-boigyY
zfzAeAG|<Yxn+Dn$c*(%a2HLQLS2J20;O=R~ekV6puNZh$gygSr`t)!xyl#Net6C~|
zRc{#f{-~`aF>iYVZyAUf(5bWE*@5OY;5XorC?%Q@uVD2tjy0{a0tP;x<_;VD=a#IX
zfshb#`tU2aQs|;l1BQW)2L9`l#{FH4MqrPwX2cDc1}s)F$IWAeGNavZU38Fhhgfd5
zyOV*6*D}~PHnod^t_J!W7+~NX1KkYtmS%T1@UDR#26`G`$?q9Be>H>p47Z-F|MZS@
z3VRvYde_N+*(LUow!LqluVMdL=m*k^eg;0hlCx+?E_?T(VNW8Gfd&Q{7-rxj1CK(f
z`U1ybI;Vlp`lk)0d8fJg-|Q!*xk-i_*u301(!eMKwC4zEL%#Cqqd6!n$^Zv~6L5@y
zjl9Fz?|dHF<Jgg*Dx(t(Ofs;|z;*+ZIj0OPFtCtAZ(y1fJKw-`!`|f1k|@`o8B+U9
zDUI!98)h4rV}N9?Ajv!-><Fu)CoD4Xv4NEaJ~6P^z!G+Cr-R*JDlJ^j;hybgdzKj}
zI^E6Ytq?gSjDE^48`#7lHn7UTY6BZsHJduyy~e<LPTu>CXzjJM<a*~iw!dK(|I?L&
zm^RT(Ui)gs@#RkLF*h6df*!j~*=k^mVQ<fwM5`7$tB}+2xFOwPV5fnD2EI42%fN2>
zBuCl69vN$z>r3&{lE|iEd6KZ#z&-=tins6QTr=>Ea1KZ7QEvNSVZZYh$7r_uJHtMC
z;3`d<95Qg29XY0)HE_hhQQC^@m1I0-;5b*j+4i=b$SllD@}q&D44g7>Qc@`y>rFkc
zr81Q*KW*S=nPTK;4Er2_<QD_K8aOAT#&XUZ_)Ylc{%LF;U6KC7mEjLAgE5qh;i7>{
z2L3c~nf^v=^Rtfzu5uBc>3(S7nt|&E{x<Lrhoel!4Fk6g+%a%^l>4TETOwS4SZ#j6
zahFrIigNX&<32}xjQbvYg!FmW9S;orB}t4@PV75hEqg+}@};v|mh$@;_rIK;hJEYE
zwTP8I<|QD8{4u1&fS7$E_e2Z@Vt9L$nifOB82EQ{)BaWp#n5?-`^gw~49O)a90P@^
zf-Re?<ST}#s|KVMiJ_<zQY?nzLeveJ_r6!PTlV&roh=o^voX|)p>zyoVkjHK(*qq0
zEp(+^4CN(SA%^NgDhgIg>Qs*5sU&|ohG&FVNlK~;sTM=sJ?VL6)(}a}q`Y<vbz*1~
zLu2a1@LUY;7<j8$FNSU7vXmIq7@m(|_#j8+nu;Ta`Y||T;8&K`-c>%XmO*mhf+IbK
zj2OBWR>+5qce{kYRxE>(FF$fLh~b6DYQq@%E>S*MkliF^k8kT3UWuXK$7xMtXcj|e
z4Bu{bydan@*jzA+-G4WWNenq6$&I0fkd}g!zZgTSB!5ZB%Yw!4DX+%B8}$w`cw%@>
z`0IjgVt6Blw!*!<?oV|xyct6~k+c_lOR!FJl{aa0X)T68%)Wwff_r1|#q3$^kAYDJ
zdUY^{Pz>Q1cqn>ws1o6rPIUh`!9K_1L6Z?fEQa(rGUABGV8*bWZbN5?ArZrn7>35s
zF@{bt^oXHn4D_G3X~r1d5#Bk5E-^G2l-7E*`;!Mwx)xoLp_}+*_ZZ$4LdknVcnzga
zFIqT;55*yS$IvH+_hUGGR_PnVi~(sM#K6*65nXrOfHdm&k70l)>>7~Pa8TMnX1SU(
zNO0bOw81f4&1y`^uoymyVRj62=on(^aWRaKVMGl7byG*iFe--8!WkVy?;4m^{k}Su
z<;+(1tX7E=Bv-3hj%hSw43lD*%p2X+YQA9V6s`teq%tGbrqbu{+gYeNoufR<F(ZbV
zLS_k4@>(1FgA{XPSRBKW80N(=KZXS{ER5mf7>eY}UL^iTN2L$*nGqlK@MEKCDaz6q
zmc{UC44=iYJcbo9e8Q<W-hDlP<CPo^Ib_&1!f`UJW}e6{cHFTlhSf1_h+$(4YhvIZ
z5wDYy`7ClRyS(2%pI;vXL!C#?(?fDMF*SxSV%Q?~=TgA1nH3FDFL%w^%K1gl4=9;8
zv!7bx<a$E+@=fYaDf4Iy$70wO!|oVZ?4B47#`vHUU(y3(_&NqI9s30L3i6!oiL;LV
z!kKhH$TxJJ{f=*ie<wJ$RDFg+9O4-AIGcSW26lnbuZ}s7$8aKshcWyc!w)h17{i$u
z&c<+(?pj*;IcA@_{}jV-_noKc0Q(%LWBj)t_3JXqogulrpJeJUl*Dk4<*#?1qh<_$
za6matVz|I1E?d1YHGjvk?%%l*4$U31#gX!_v&2h{FU9aDHTx;oVz?Z`6?$6C-qF1N
za`uB~b8=o)2aU<zw%5VU%k>y;#BfuT?+V`HYOJcah2IfmIXohuZ;;#<$pgW^1pgMK
zQ~eV|(~oSO|2Sv49>(!Z9FJqj7YCQAigDzRBPEU!ag>bXi8u<xks3!@oF5cZ3dV6|
zV)m19dj@g%3Q4rEAmzM|Mckgk#o{O)N1q#NkvNLR!7J3?C+zFg%gt0~<fV!ewp1LY
z<0u!m7r-)c1d6AZjoTZy@wb#slN9!v-DgsHQK%sJO+R}ftwgmrn$5_bFwy-~9Iq<r
zFBQ+J5=YfI>c#PV9M$5e9><Y8DbK}GBMx5aYR2(w9Fs3Nc<rkdN9{Pbd+Oz3sdeJ^
zg_T#vbH|jdg7xdhkr?f!gjdNoR;Z3R>c^qR!Dc(9`_ucTu@?&adsy9EA**bgto@?w
zirZ^@Bn~|ecN`7kXc$K$W~8CwXdFkAIQWRRWgJb}@;F+=(U*&V952M-ACQ(4$I2Q?
z^EhbIY}$X2nkC36!=2IY38PYT;~>eCL<gk3C<W4yTE*=x!%K1dDFAmFuh1ZIc;e8c
zNv{dEjpOyWeJyJvQJ&kp5eH8jB8BR|8MhC>Ip5pG!Sjmtal93`50g6x@<@T)8;6er
z6t^Ek_ysrD&0uwZ?Nj*NAs7cYEDRxzODHuQ2R{$7ey$p2fl}SHIAUD<;}{ah&^XLE
ztT_6|?Sth+93A866-VzlI*EkBcjI_lc;`5}#L+b=?-s{9ar+#VYZTSG3+I^wIm3H#
z^bpOSf_40<JdvPgpEyW95asu2c1fj#S$N{zFOCmIftnN!kko;KgW?$czeVLJ&Y`)(
zq>vGDjO1HD!iUH0v!+7n3T?>Km{D<zrZu|Ths=zQiDRskFfNV>^uR*($J2T<9DIDh
zQ{0JhOrlSUe5&AORhc3r@2Ht)FVo|g5y#9pX3-9X72b->j$=+7%i>rb$J{u0<FO!)
zg>lS_W8k~Wd_iiG6Bos?IF2Q8d@R|ieCBG-rgs%r3`<3m5^AoX`^B+3jx}+75(mE~
z|CywceENUXRwWB($!mqTy^?dhbQ4B5#QDGC_#uHG6WGK-=a^dPZDDg9UodK7vxzNn
zY^ArG2$<Lw$M!gim?&yuM;trpy>Xn2V^<uz<2V$@;W+lh@nsy}aN@`DRUAA3*%!CB
z5?>47E6CFf%J*}Dn&LhX2fy{kXNcrHjropC!8G?lE@F-C+nDbq%7=F|My4K#<7gZw
z<M@fgaZKTc@mL(k<2b=C#O)iKALIDFgqk}twPn@D%+A2Gpi^8lIKdY<&c^Yx6wB@2
znK-Uj%x0E3)7*U0&D395g6wgABjKVE$KRZ)ERdRU+~DwW7Zb;&IR2z$vio8jBZjB)
z2<S4W-bKe1E{U_<yn`Y#T#e(JNZ1}mZ^rGXqO9%?{bZv17G0MMEVpk99Bk@c_GqVr
z(R*>+=c+r!-VHqv!ZV+L;&{mQ+(ZG>egOI}CpedVDf~b7OSP?(&qRLHZorTssh`|T
z;gMI0X+Oa?r@F}tnt0MgVH2sQy(8u}^VOlbg{UCAtu)hqR7%Ukv=1V99mMy}+B*st
zGf~_`QxnZhlrT}!L|qflnJ8tVw23Mvs+uTcqO6IECMvOZ6Xi{N`&_}a&*E4$?awyw
zOyG$jsg+Ie?E)SnJZ<7B(>{Wr15m=f=QAd_{iFq|nf9>&cc8UQR5wvWO5+B(rU`C8
zpOx;joiqYnrM8KU!_w-Qpg!B5Gsj)eM1A(fv=0EEH{p=%+`O|%iV4+(%Y@qmZ*keM
zb(>SuO=PhBjWQTY+)8O+qM?b#roG)}XvFe|s(g6OV-vm_(M05IEqC0RCSEY{x`{R>
znw!Wn@rsF8$tSwAO}uEL6(`PeXO4+nF*5DkLP$%~K1pDdnluZo{gR27X~`j}t)<zw
zccruOOnS|<&w1Dk>a(afOtdx8&P00?Z%X0Z^U_IpOV7T%C2jMX@R_zFbuewO@R-mz
z;xfO8JW^n3G&|>4koM<?6gk``LMFl{BFti<vxzPyq9zOzrU}c$?|&*hA#8ggJ!aZ(
zEW|n1H&aM9HdXnGV1hNCc6Kz;iFQlA6Zp39LDzG-ns~=VZxek?@Lj=fCI(M(_b}0&
zt4I5ccTKFn>R@<JNNk)tnrPV5L@yI7C%RcUk+o3aeHM6G=}X^Oo0<2H;)f>sn^?~A
zr9DjyG%?M@bQ*zGm>6SXtcf8ehMM5cdZdYArhP9#KHS7dBIMcKkkRfDR2%JP5~HI`
zdwWiu(I)n7aOCNaGck!BH!<GC1QWa$;yuPh_A4Wu;n&N~DfH^SDnqNeZsJs$QOFDv
zGfgbva13(IGBMl40uu{O%rP<7#0{j+H!+WG?wdwVLfp|bol){dBLCRLVy>|w{J&~T
zO@5qLq5iUD2`f!}Vq$}7-{F7C32tI7Te#n`iVko~QA;-FgXz+D9ji^O5jm3>?K0c3
zj+Unn&u|YPno8VgVv{KFB}OXnk@pwkCx4i@$g2SB<@#@8I}K&xXGz*&;ww6;iJc~P
zal%egcAMB^+Q$yuI}dx$-sybFW*o482DO)lHSq%{po#q^4w(4f#32*kB&Yee^sa06
z$<lYS4jklqa=^(jVR-6c6Gu!OHF1oyY>JzQHuP|w8u9C*$Hm)E(38t%^RmLp&O@Y=
zGDl8vHMo`XldLu@na=;2y!CX(#90&PXx`P%<L{^a!a-40zFEr0SihR+&>(&9t(4y+
z^}OH(K`Q?)gr^OcO#I13$wD0qmrYzTQN%(~3s+5CGm+0iehYs^)$1m1nYhi4A5(9b
z_M_69f;_ajW8$ufhbI0tanHnkTC#`ZZxatV^<>Tb%d`&(myWZ~<#;m2*Ova_RH~59
zCA8;K^*=h~ME7G8k4$)`DHSr5vMU@jif2%mV%aZQ6}0fA1wJBt!a@NH!+R)9A{Mgj
z`^Gd2d}pt)a7I%t`#C-dEOhP8Pwct)%4jhQKbcB73*{{ox9rUhLkSBdg_ja6Em+2~
zA8|6ZtV9dvq*t))-N7>=C#fjWN){>$c}kF*pr_f4z4lQ_6$@2GSWU17GfG|_i9{wT
zRH$j;SxI6owJduBMPXeF&shjs2wA9S;du+qEM!`6Sg3Cy!-C7Q-<fe*_NuE|P&hzG
z9hC6qfs%9!ygJaxZVL@8G!<oDl^U|Zve`W1Ze*dcW#4J=*$p4KG_i1Fx&4k)Z?g~!
zdBH++3vDgDX(5Z2wD6LJm+1z41YqGssVi5al(ewW(n8HC_T_`oR+haoGw|ZYb-uNQ
zS1r6|*=znQ9E)tVVed3vCSI2&vCVBPykXf_F1kH^fY{Cg?|(E4UJLClyhS^_oW+bC
zEHJOfvJba;s!#M;@LLE-jchh=e)5dK3kR<VVG9upoh@{+pj-CaiF{?qvg{WcqZSPD
zrI;X{DlWtnHAWK_sN7Moli=He)A(9K;rcA9tA%$hyl3GZ$@1=(N;eDLE%cgU*HUGg
zLged_JuLJ+>F8;pe|?4ZuH0&WH@Oc-*}~@*-e;<X4=nVvFy6uh3m;O`!dP+d0Tu>Y
z7-Hd*4cUV%dq*?aLTh=+ijU^`6r1~<p%#W&_{g%SIm1X!2jP6QJ;Fj_Xl}1kjYlO@
zM++Ha;q-+pD)aT)aV&7Oeabq~!XyiGs9<5Tg((*Jrsc0E)TtJxSs>v<@G-$GKKq_-
zVTOg77G_!Y;pA+N>=<`GzOC&o$S6bFfV6oWBih-*N(&1tEMzyADD{fxEV94@AFid#
zSiXhD7M56;S0ksJmddbHI2BrHsnl6c%k<1z+C%xo!lxGQ*HYG7_{_p8dX9y)mi-LQ
zc{61-trtq=Rh5s@_!N&9R$hYFS>OXTK3`k7#<777SmW4e*{?Q{Y_{-)1y2H60$VI>
zwNNR6$_Z?<u-(Ef3%4!ou&~p@5er8x?6R=i!Z)0uG*Qi*J?yWAy%xTtsfXr%#YIxJ
z_g37x?qfH1D<lUvWlF01xyVe-;x?8NzMSwKOa9gIy=A{S!wus>t|xnxF<0zu*C7js
zIlkTPEgSKeh2s`}ws3|{(!+6rv%|tku2lR4JlnI-!Q;4}EbuL?)0TZ5JVirYQ-+Up
zN4|6M`0J_jIcF{WV&S5NOB_23=PaoE9lu-n%|fT&l=BuU&Q(6o&G}`9`+|j6?l|hS
z$f4v9I@=aUx$m-Pok{<b{o*vg?YzlcHFLQ$y~3!4YhnZ*#BnEBDxzNJy1{udSmm>F
z+c<;Lm~_X&T?+*hcrt-|95~LAgUY{bFfSae?o+#7R`j=phZg>;qW;6KO>kE`>uB+8
z&ZD1mDvosjXW@~BW4Sqx1)oURJfC3x1X6^Y@?}w2Ac1`SRFdVq?N8WGIe9!)B7wpQ
zq$ZG-01_yYK+yzVos-i`-sBlSP$`zczM;9rS=41GuU}7Jb`Jj2emkXP0;Litoj{oc
z$|X=ffwBoKdQTafru@#mcBv*U>ZMmm$m^*`92FD%eozi2_p2%0nkr8v@N@$11R5mp
zOadF0W>-(3MgmoY@86bPRY<i2a{8q)wPpg(CXk-6?|Et^P&<L=6L2Ijf4sX+!amG-
zPI%n}2CT}WuwKHxWl9;AOJtV%5>*m#(siS1$J;qXl~oVRC0V*PCnLenW+|?O{n&+p
zB{WQ+Q3A~q$YQ_RWHnBpX#&j>Xd=-@!*Y4x!$(?~+%ivaf2ibtApu^ROQvS?@}13Q
zC-4f*n6P~^H-VSf-x=-}3Ht#SLrWnq(r&ZetrGT|2^8{m(3cb7!At9ey@+wWdM$z1
z6KIz}`vlq~@J0g5&pFyA@J**?Wji&i^Fjs*-;{onwRCJ2KCHf#u-~BWz+NQOH;3ht
zZ|#spO>Y7|CMD1>0oNs`KY?D-us{OA1VRaf{~uG=0VPEdZDEPaRX`9_PyxxvFlm=0
zi@Q5y6eNRW5S`RBJ)y&pL2^`rL=hAaiAqv}AP5M8k|jtMNs^Hq{I}o!`RAWg=bl@y
zUcG+x>Qzloch9sJUN3xJ^zfpm7aw}@5o0xxr{ds!klvh{Ne;f*f&0=2UTb&iBY3NU
zqt*u~x<8A%5Kk)nUIaK6u^jY5VL-fycoFg<?ByRxrScJIZa6n8WEY?B=7tmXBId>Z
z3fXZl8cj$a;;qH!5OTgyu$6K9<YntWpA9ceu}Plbag+SRKD7pTG0=-|yjaY6_hPUY
zb7bs8ycp`mSTDwT@iD{I-!a0AkzNcFKAe$^Ie4LxS1CD!QJf~T&}hbIZWedfF<$G0
ziiP7E@5R*W&WV)J&U)JfueCFb<pWn<Op>KE(~BDu(|gWLpX>#f<P<@Ysa||0e45~N
z!5PWc&#$L&8P4)zwilm^9d0kQPvI9{%=Ka(*O3<sWh`F_azYn)F<-d3E|pc5E&tfR
zPPQ&$TKelzxWtR4UhLqS^<tS9%f0xK$<KWA;#+1Hmlb0*%=w)cE4|j!#h9JWd%?Ww
zQlhzY4KMz1opP)9T9-1u_u>aHuK$qAiw`|FI(V|d=cqSGug`}TqGY3R-W8>t!v$+>
z_F{_{Te+WPyMFRo7leDZaPlMgXRq}^yiIbOpUeC#-p++TJ)NJboYS3N9QJ}c!!FK_
z7rVXK;|0G49`xcjFMju8uNV6m=L*^U63Snqtr_Pg?)QR^)ANJu02fHH8i$TqO}kR+
z9OAZ?QYSdv!z*dLUV7AvV_r=6VTKRKz4()xn-7J3IN`-f?sYzEd7kp(v?SFduXVrg
z4EGZ+u5v^0;+z+MiEx<9b<vCSUh5N?7q0*I;sSSr=~*njC#AFX60^(Yx-58wd00N1
z)oY9%cXcoB(SII&s&$>`mKQg@)<rE|d->^R3MIF_xWf%?uI*nzo^z7l=bk*px*qjF
z2rrC0<ocbJzPFQg|C(+;_TmY5S6QdeyvXgdzBuqg`hUzQpS5_Iz+=m~QhdncLtY>9
z`B2CQ_>kXc9o@Qk;zI!+%2duOC|K+RH!mje&OV#CmGR=+lBW*(%ws)@<u2kwQ6GBv
z(39PLDCR?5AKvnzxDPM-P|=4<K9umGqz~nMc*6&NY`x^eD?XGWe(rc#a7LHZ(muS(
z!}+XFG0I;P`RhIy)t!zzDU=Xd%KEGoM^auisa!z_*BUujWn~|#aF{+ge5mR}H6Ltp
zP~Ml}hbHk&AFBI6!ZQ4JN(~?QNxij8D)B`7Oeb5*XV+vVw9j<;;1)uj=0kdt^V7DL
z4~HhE^V737^XL7{IzH>u`NXL7dOl?M@U9One5mikH{;VA_|T9YN2R|lnCU~7kZeK9
zJz|Qak<a=Z_smRh=0juQtTqwSRPgS))aE|xqyHTr-n?!*+9fsLuvF@|^r4j;i~Kzw
zdRNcn`AKW((#D6jLfZMzO-OqmItc0L!}~%y`K;ZHg@^0xLzkqms}Kq~QeyX{yqBzw
zk9`=%WBKrb4}E<2&<E9rh!4Dt{*e!UA9yp}D^*H->^mZrBp{NY4~h>VA4ZjPQyvx}
z@6NMIoz?+I)Q5x*eSL`e5clDiB~Hx;oyp*{E{yZKw8<g=lkJlG^1MM$VLu=G`!K`@
zUP~X4R2wX0pbvwDP>nb7X{}ua$50>t)F_pGsXyF@5k7qC!z3R@(kmbMrDGx;;MF0)
z@ji?ZLdjSk#wGd1|LlCEVS*1tK8?U1bA95oe$vJ7KD>%D*@r2Ntq-*-XR-R3&-!WS
zG#`H3Yh7L84+r>z0{-@MrVq22v3@xGnC-*oK3taw&+*|4j@^fyKFsxD9;4*LN_M|(
z|I&xAeOSaG`>gvE^Xbxj>#5fTJ}hL=DrEC)xp%}mi~dFwcuL8W>cu`R5lt#D6|#)U
z8F4HZzJeXk+P?MSwKH}qtny*C4;y{>(T6o+WUbFS>!ux^rhf0UZZom`AY`2n>xFC(
zO+NKHil<m2;i>pm5pI_5KXFw?99sl=(oPFMbAw7++wQ{-;T#K_cKPtD4}Wr{h=tug
z9Pr_w4|{0pnuFyxA;0^uH!0cYv%V4R=eEO#?XOv<(}!eqyd`v)^IIYN55XgXM+J{@
zyK^~?Gwh=+ee#psxC+!bCr(m$iW>;yFE`N7_^h8Hob_2>SV;cz;k*xj^PqIV2hTJ6
zMQ%sDMV0NiBHb?uUgoNQ!O4NMBMB$yst?y>ri?SzO}ZOC-1Om=54V}Xe!S|(9UuN>
zDEvtE<E{_)e8}ZTZohTg`aUP6xZ{xzEoa#t`0$X)Fx<mZ=(z2%4^Oz(MBzWlG-^JR
zDpPLKF<Z@&9)77$@guJv`TW)+A9-lAU>2_f<o8?GItuu$>*2h%P-<jqpkXE@h5UdY
zMg4fekLUcz9#p6>JzQXa-VZ*x!PDI$<E%$GiukREg(xrPM{z%1_Tv>lUi9<y126fl
zhcx(9#?`m$bRATvq;$+t-ZtE$4=OY}S1PNe{NQ6A)OpR1*ZrvCM^!({_)*r63Vu}d
zTR)>K=eKUz^Y`Pt=KO{q#PWiU$?3a4O|Rs)E*<kLEx)u@_FIpw{`-4or!J{HZ>;9W
zn|`Fc?5Zwy_&lo3Z~chAh9C*AT08x4`LWz@efqPw{b=sTJAUxz=V^YV`%%-6T7J}K
z5d84?QOA#~MeEk{Bg2on!rv04FxQ|$_5IeD`b<9>thK!@oK=3cXEjTNRBPY|uLd;q
zqY)$aN?kS;+mYE|M`mL`nlRd9Y)z$OGf`uezn7<xcl~JL$8bMJQ0~Wje)RF<L&m|6
z)_%P2M`w1Q%3nmHgUn`IskRerFSzSw3Kcr~t!D*0`K?DoS@_A`#gDFj^ps5K#u=|;
zJ!02GNOuwPE*phB)9B?#Zw~f=_2A#jol-v#9o`W6$Pcd{Q9ojS`26tu5%MD}eFJ_3
z{nk|}UWR2}u_z*^L0)uH{nnLR8jSdna}A28pm9GmKTJOoe&~#Iy==p8-N@r5Tykb9
zFaP%Sqn{r`{21y-e?RzS<{&?)z-Jl<$nXays}v6QTXzphK9*4r6QtWb^(9h1(vMMo
z%<y9-v(b++TqAx=l7o(=aq4quz5?`t&jC*GW1=*1EW8XG8Ib*n-@3arc}n_ZKX~Vk
zW~Yh56hEd4VaLye@J7sZzjeyZYi{g5i<`e6^Zi)h$LD_Q*LnQ*_mv-Wn4h9Hm!tbE
zeV#;&y}tBY7akcgVyXSE0xRtcIdOAsi#TLvtV|7W{PD`<VlFp7x=pn&V`6`nzEoz4
zUogpe^O2)C_;KnAKfd+jJ3m&^H$Tq%vC5Cte*EsoUO(2zjBM~@BbWBQ+G}aYj~_TS
zQ>^a@ye7F$BD~&joyzjz+aLYdMECsI>BnY2e)40BA6uEp7wx=i%F|bN<N$y6V~31%
z&FIu^Z1sb2qkO}N)EwO9=T}-QM7#aq#eBNTQ(5+<WRJ*yW7<!(s{8!d@5gaE;Ku>+
z_OPVWLE(pzkuPQx`ooVSBIF^s6CP#eY_=U^Y7I-}ieNlX_;J>6eE~n|$0<K}ckeWF
zX0GjwaPEzN-7Cl{pFloGpR0p67XS9+f*+6kc<jeTKQ8%k-H#i7T=wG%Cqf4PkN88g
zyqCv&+?<zd+(u?w7i@_)89+ZCh~zfs(doGB$31=u`0+0t-s0jdSI#Eo_ocPW$JW_C
zt2FqKi7_jkMyU2gEaVO#C18!~sUOe$_)i>QZs!VEdBtATWR~U$AYTCa1IQb&E-ACH
zsXzb)1J;JXD-Z0F8UO;;YAPg1!U!<nTwH|%C=$R*6{}Pf4d8_UOa%!A#R4cEz`H@T
z2;#*6N(68qfP(>)4B({zz6fA$051pdN&xRrEr3!1ln%fifFpoc19*+j1n{CW?ezf4
z1kh`Ntvr>Z&awe`ezlhq{#}E-<Zp=NTC3Cw0d!AKs~AAP2X>Z^UeBr=K$QTh1~4!^
zt$F~HuG*^!e=~qz)6yuM+1Jft3xHT7fDKZ02H>Ji(RT-s7QkBp)C(XzfSLi+3E-(G
zZ!Pi#ZkE~sY}u3Y;zBo()w=X~p?hYnG-5^o^#jPJ@mgstZwHW>Y^7S3@UyNo_M$Rv
zHVB|$fF~ho&6c_w1<*JEXS>uU0lqvdt(k<PsUSmfq_4Yq0CAg>yhQ*l1BeC?lPJ9x
zK$ifz2GA;i)&X2So6#nK%9ZN251_47kF{~POOg%&bPS+V02ET^eIe}9Ie=5cJ-t53
zBu@R<-Hnz5=*{p3z-o^GdWvRN<@B{3Qb#Xze-J>Q0F(ei0el$1M*##l_76PX0DJ*l
zspR=%an`!c*?!@^bJ;Ac1_NNB8WqAqB4S@n3faWMYCHfffZ+j*2=JY@Faj9F;JlHY
zRwbSOm;odL=*u~3n$|yn!;RDW36iugmpy<p&R|ydu$6_v!CVwFDMJJJSVo!?|9!R6
zh6O-ORPu}rU{nB8=uZHn0~iy)w@uR~1u!;%al$7CpuU?mUibvTu@&lamMQ#1s?`5f
zbVyhx2f!-HXPgc#a|Rs<V4Cphg1JU`DCcly1@O6eHJeebSeKHS73*>$=7_LurSy3L
zJgZ;e#{f13@MQpB1u#E=1pzDzV0i$k3v3GmSRBBatn{w~xZK#iNQ9JsBSK2Zmv9ph
zIn^kiR4QXd0BZtREBxC4z7s<EN+GKPSk3&bnfB6EJB8<(xxVMo7rNI6@IwHd^VOha
z9hcP-H+42h6I(Y5p>T5mKQS}!+cFl}wgj+epKV6~zXb44kvdzszz^Af4qzJtQq{Gc
z)7?Cc3dIW7+Zo{BY&xr!N&ijAF2P>~chiUv#~~Yae&;eTlfGAQpWuE$3jb|d=TN{p
zmwP^l!a*Dk;Ew=~1aOqAAb@Mk<N%Hb@Uth)|E2v;AzQ{fE(kdhz)2ye1WyZ6^GpC|
zg`Z1G{tDo{@V^CVfod1IIgEF(ToQ6w@CrvQWL-I{>3RS>?y~^?3*bfoH@SV?v)u~d
zUm-Pz+HMChVXEzpR3o|FY`q)6J*nOoq~w8+hXFhi@>uYR;8Q{BM3-A7R}guFAfe6N
zLF-s4Qq2=Yr}vyZT)rUk2T?$T5TtTJA*n$WN=kAJJ||Tkg5fO^L~XwEHi)7@ybwgO
zAc_a^aDh9W`+pE6f+!zEg&;}>@lp__gLpNFmxI=R!ct1eE0mA0HXIV-YeBpoM7ba;
zZq6<f#CyMImKFZ)LN_@VOZo^8%Ns#!K~Y#Sh)O{?gK$w2M3o?HLDUGMY7o_ecr%FM
z)zVNoy=Ue0>w>IS58^_#G?GN+bbAnvAdEdJIn}+QlTka(9Rx8=FxQ^U97!&BTFoG8
z1wqnogok@z-5}oLf$BP&2T_m8L1YKf;i8?<tGwS)KZxA(+;0c1xy}?M$r8dm<g0=k
z@X+UM4TESLM9rzTMnSxPKJCDo6k-#RP}nqxX2K87OJ(&P2DVZ9lP}%mEg7F6b_DTD
z5Uqk}9mJ#{CI`_bh_*olgVqGK3!;4xWtQ<Db!;7i=om!rp!JcO^@F`r5KW$U_uxT;
z=p4lFRnocy(Uo)5HS5H#6jr+l?=CoZi=Fa{OWi%CS1&<xgy(}G`Y>}`X&(mR6Y`Ou
zS8#2EyliUpYl>g00m0_w(v=`WL4<=)gBTdZpdb!qr$>U&84zYy5HZft279SyX>ksJ
zw^Iw^OuC1JXa<o8qJI#BYo+xS>?g?Tx$m=cBm;u@KR!5!Awi4^Vl)Td&^44P5kzXj
z_OVol2|g{A&888;*)&qf^F!TZ7{dql@uE-pSdovDD)lLuAbg_WCqcfQ&9a=+G==%h
z?m_$z#AiWFlj&F*ME6DZ=|Rj1;)@`rn6?>$GlQ5F#OxqGm+H-w8iPJg&sDw<71kcG
z%?+a4F~_1H<^}O(5DhD(eHBEbGU;CjF<+{bEC^y@lJjY(6=&?dc01VXn;;fT_nEV8
zOSri1+9+Jc%$ep`9>fYE-wLi4{7!IX5UYf6$y1YMja1hPrq{~Xu36f;AT|f_QxNMV
zCpQRg48s1sJO5F~k3nn-V&@!p`2sEu**I<660|nPpE(g*U0Z`Z4R-%?+E%qv+O{A_
zwsZaNw;bLX#4heC3hF3U0{<Gs6)FU=JBU3&{KiBL;%pGd6Yjl1><i);6MmVS8NOfg
z{Er|G2stQ7`Jo^#f9*aj)h){{%_Bh^O|~v<mwG&iKgGz2AWjLP!IMHVj1=<I!p{iy
z{ny?5mit@~e+6+qh`+g@Zn;k`cV7&Gc!4|NI48*^sghh4LT|4Iag85F3W_MW9>k3x
z9tH6@h?|_XnrZ)X4K8utV&-49H(KPr9mJg=PE<`}VfAhh_ZYDt9&m$Q?tUn^bacU)
zZBp55dYe@8CqX>r4lu$~K*6&h{^OpnVDgyEJloQ8DM(53+=`|1c)mN20yaHZ=4LgY
zaFYB&z8&FVQ$Yo(3JNKpG88<g;CThVjqvbupRFX+?^QFcsDgU#wAU28uHXfJ1yE32
zLF?*iB^A8HYB$e|3QCBC!mA@ZFDrOOL1_iADkvp#3faVxI?}_EBV15AyNrUe3aTl1
zQ$aZeZz!m&Sn(+@SV2KW1tUin+%dW!g_RVLl*&&3vT7Q!is<~=B(17~Rg2wJsII`K
zz^x!nnrbMpD{zPfDmWFmL^H=)PM5z+Wu%L8O$D_SP=|%4cu*FSx{{*J6f{@xmhgHC
zG8Ek0WUH^>Z3USMnE5wePrts!ou#0Gf`$sRMM$|vNZY!OB2h;p1x*z!c%cS)V<t(|
z(L}+hHmM|+E2eQ>yrbY<1-%sXR?tGh2YuZg6`0xS8wNO9DtJ#pE6(gyduxtjkh_C|
zHd3Xet&nzt?G;QN<fgFp)-+n^q~Lu8OPy(*6?79q-bF!I;X8X~PUIh;D(InLU|%<@
zZ0*UgkMxj#pkUa1XFx$v!I9R^J_<fm@R4w@pkL6Z;7(T$6&j4RP*D(K3>Czg1`S<d
z!HA&Bd`sAV%u0_+^<8Hg6&5UWYYI*k&C(U@zHg_3A=PNxR0{hl=%?U^5Y~mzU%>zc
zvlV<!ZxswuFolCvFql!gZ<`=EMDVQ@_Mx1w750xg1R><Zg^XZ6BqgI1j21pdaIE0C
zWb1eZo{LU)r16OgJ`v00pEAx#K3T|&qc+MvQ?TxH+wYa@kxx@FJ*O$DIaA0i!B#iY
z<|z1r_Csh8!dwOOxS|#Or{GHkUn$t9V84R-%oYXf6>LzjP{G#<mMd7HU=hEGPbs)q
z!4d`Ea4~Lh*O^kV-g@_qT3H{~%KCY|d#QqD3bv=XS!N8*`c}brOkD+I-pU%At42>g
z|I8Fpu$pB|#u^1{6+FC@Mqcc48VSqgF&RH_IHGW=G4_thpm3vt9~JzpV4H$X?DbPt
z+x70P3N|bFiCe^a_ZB99?X0PzZRFiXdf2*Xy?Z;Ct%6+&epQgKlJk%1X}>6#mg(Hd
znXR2geIkXs6|AY1HGaK&54Ru%XD+4vu3)ba%2_2+azMdB1s4=tRB%YaVFhOuoKx@z
zbGUXE4|j$+so<zok104Q<hbCU3i^)poDfdsE9>0EQ&K&xAg4N5Mmlw*r)5JIt^LJl
zuXmpp{9BL?Us7;c!7T;1*-ODc-0fxfPgC4i6<nh;)zcc+%3?fejq$gpMig!et{UmN
zqkswz6+BYF1O2Puu7Z0C?u-1lk)C|(-47J_w`H<WlRCu5;_4Hz|5Px0WXg;yu3RC$
z+Z|Oxs2V~_2zf#%9>R+u<P9NT2ngZ15N`E#AAM9Xe+UIaC>TO2<^9~{*Sl%9P{^7}
zMwotb-k%SlaLAe(j-p5ioWx=wP_t+VFNE-UEo;&_u6M^|P&jHz!4e^q4B>2wyJ840
zh48W*>$MPG34vqhQC<~NDumKPXqj?mDRcGp5Xy*tS;6ulloRrXAbqA;Vg<2JQYnPW
z!a3?0V>0$#a#joB%@EQ<s2M`_kQI5(f+GZ52qZP+i1yI`u7y&I3fw<obB5pwfy5mG
z^DRw~ghQ(pLhTUhhVWL%nin3ij(EaVLx<~ykP)&nyuL(__89>pC2xn2DNW>ALb3(9
z02_wTC<HZxNC=HXXc9uN5PFBuG=yd$bO@ni2+c!yCxq4^v<cze5L$%rUI?v1;Bjf8
zrTD<v;Yz1V95~kzo7#rZE`;{tDys}EbC_<EGY*|N_A9RUL+C7otzAM0uXlG1fpKHz
zbKoT11iOdOLr70S28T@_gwQ7hMI!lO2p`Faf+2WCLTCI!eA0!hJ|G8TOt>8}4)lZ$
zgc$1e?yzXm`Dh5S5N3ujD};CmS_s2J7#_mH#szim@F5HcS?7cXO^wMg1rvgOnUgY7
z%4vCE2!kXOhK4X$#>E8Qzs@~``9C&;h1<o)qQJN@i$;Vnk`o=mgb+r_K&U(>gwb3h
zm7F<?l%pOS!Z>N=v@!zpd}0WbLzoi6zdzVN3E|Ta>Q!@35~M!))DS)kS-V7`pR!n;
zMsKB+`qQNs9iV;gpR>7qLRb;Pw;{|4;R}vBgs){#b3>RP!h#UyN%c#?uLLRQcv<K$
z3r#Hw;Tv&sc?gRoH<n6}8Qvwba=B?R6PC%k=5EhXFdx1Xoi!8+SsB7AnH09Jrq6@3
zNa+9f678!aJ*7KjF<aJ$upxvoVT=u9V+cQn;0VJR#-<Q9hj2TDJ0biO!j=$z3*mQ}
zyR9MY5%O~g+qm?Eb53^)*%87oLUs!768u$g#^!=l8~dvD0C1p98gVaED};;Ex}Pa}
z$8|#Zfe;STcq{(FtnH9U4s-1bIU;ym@TlN1!2+jq{V9Z9GIQrX8Nw;4o))xqNIN6s
ztl+s2{tDr|@V^Dw>(wciV;7`)qDc0o5H1V962es>|0FeMoJzZv<kyAV5WLCBO3Hh+
zFZgc=cezi7Q7VjkoRkpqhfyGG<^O{a{tF>j7!N~uBwb3pU4Zh(Av}@lQ^99~kroAh
zJ?YFH#(RI-Ql$Iw6&ayc)^l`u!pJKU@_a%jPAph3jMOknCgp{~D3as|<2m8a3l>hw
zN4K<&UR0_t2o@789>$AFof1L{jPg+PCE+iJtw)krEgi<IVN?yH8tvD@EA>)e6NT54
zeanPVHjHvoeM7L4VEHgAgi(<p`q0Xa93-h6Mio(r9<=0d&d&X27}dkDiLiSoXN@qH
zAIrmMX0+F`sbClRZzbxu!f=Q2VHh8UkrqaJ7)`@y7Dml5YK8H37@1+z<}5VJ7oKXX
zE4}K3@nl>Ijj+5Wl6ry}g7w3g;mlxDmQ=ID@CaeHGzg<%7@hZJHVLEW!Q73)Xe>=s
zt|U=Pb$i&#YV$DO38M$qMB!b*wt_9fD6z)bl9S6tcg@~PgslbJ2v#|3`PMFs_F;4g
z<ELzE;lzg&An6!JCy|i9FQjuAU4(Q^%DaWpJ;@u7^7IO$x0wAPjOz<+%l@!6sO^ZK
zwf-5YkH|-~O!bE03nLarJdBxpti$=k2!s&~LkS}yYF(GxLt#wQ3xuVrl(d{w!+1Zx
z!+q0=WK`r#T`defjA3C67l{!@LI`zCAw}-y%6rw(H;jH#?H|Sux$6uN94I(Qkix-X
z3`z2#VSFsS9^7oAwGq;NB;#4u(XWJiR2U0TZ?p*c6EG@_3u8R<N<~!_6T+An#;;-Q
z4&#$BJ`H0@7)!&L6vn7dY129B%!;Ru$%0eDm@4Em!D)hQop8Z6GmKeb%;&Mfm>tIF
z()6VmnIkwij4#5VCiOeo(`bC2RQDcmekIDa^QE$h@`Yi1lhph=j78F&FTP>l#lpw0
zP9<N)%;%su_Apk6oPAdd`8JI2gsc=?C75HJI%~pME0U7$rxk{4T^Q?`7-4J)V}p3I
zNm{A7F^o%^?Z+@ir)0BA3!6oO17US*7~8|x5ysC_-4?c9<wKk7@=Maft}u2A=PQ%g
zop11A$30>E7RLQB9)$6G7<<F`JB$lq><eQ*jf8PBj00gDWObPHIDI>8J0$$5@WX<C
z2p$m+slYch9pic*<zW|A|CCk=$xnrGCXBPxyui2HST=o~(un7TpBMa#88ym71y0TA
z_cQnsqKjet6UJ5c;x4+)PRV5<SHv=_*SK&*a+iDW%#0gh+zR7%7&p1YtVx~OHoH^t
zEE?po_~M~EVf@R4JYX-q$$CW*yWb0g*#Cg@VHl6XctJ%m6^|L-F!HF#t6J}tdK$)m
zVdPTrjB7Bp4vTiPU~Xwj5o{|ja>~JcD)Or+qyj1msNmb6QbnhriVxNnV&7|TIy!a(
zmH9F$R-dDeYQ2=Iu!<t0PX+d3DVnSnSMj2X*Hx5JQ9?yY6|bl$rGj=|65}rm(kt5W
ztxhd1)mK%#rdn^OqLAhPUQ<<8ML87}Ra8<fH|WC~D#}Y2>d<Bdag`3R7oDsuO_Z}*
zO~sok2C5jOqPhy3iuNixsHmaBt|CK4eH9KBPStu#R2>yA6~DD|q^qbY#4VVnqI3Iv
zl&@}|k7_KnM8CEmg>0&;;w@3GC&JRt9DLi<+bS|uG*Qu1nzB?hP|;9Dw&>7~M<U7Y
zER9sYT+cc>3%heTIfrYeqJ@f<65Hk~-cj+cYQ2amC+5_APem&gZ5SLCIbCR>b<zzg
zv)WFO0pUSAs_3L5tU^`sK8L2ltHP(Ei*)HNnq5_NlOuLl(Np9+Tn`mFj`flznx*gq
z6@65Em>d!JB?>?Ke+qsT?5L;+s0a$ri6LDLNv|B`2z}_3rm0vwIX%h)ZL-HWk1A;J
z)7p6_)y_-QRTwHv_EOPbH2Vs&OFtpu$?4=LMq4;QMGhIPVu*^VDn3&&RK>?CK2fdB
zd6<gfD#of9r((d`tPv_k3n3pVWR&1{A2=u(BYeosg5=|cPoP<;QZkXIgmatvRK+B*
zKUt6mnxb0!-qBaw`as7t6<@2kak<`f6*E-KR544%Tov<F%oh3Q%<T*pOMwpg<_P~H
zDPgZKRYY$)NfxO1O2vE?w3(w%@=1^Mg(9KCA{E~-CenAgiWNeZ2rgBzENPQQ*!^1-
z-w9zy9+!upaJ7mxDhkH=-Vm%+@jd4*hMqC}pkf`DPXvw#)~ndSZ6|_!5o}cPBZt7`
zRIy3LW)(+N998j?iY+R3srZ#f;<l|Sc5+%rIeu2LjZ5#ed%KDqDt?jH*`quc9@nGV
ziVWwo?T#tW>U}jTeYcAH#T>u0mx?{iPdYHl^K4^oWol-hSjs*X`&ArNaY)4hl2IPY
ztplBM(*o@u=1#cX@rR1#R~`36NaM#;99Qv|it{S|WU8phHP+3eoK$g2#aVG?<+FOH
z#nm$^nxA&Fx~+T$`<|2P`O0n@uRb{KZxxqRTvl;GdhyT~Rq#M0S5*9?;+l%<Dz1v3
zyZ$UhJ3JPhVGuZK`q}4P!CNYBbC@a~h_`pd+q=U572NY@A<KWxNSbx({!qmu>6<Hp
zvt?b6RsLNS=-U(VffDLGQ}G{njCcy=IhZ?wl!z7cJP|OqG#H3kr(XFZC=lV(xu_OF
z!3a_#csYVsA}ACABA~;?A{aR}^SOvM5k&-_7c4AtS|}Q^CiewF>X5Tn@d#dwpoCZ`
z8L{I3QUpa$yJ?EkN}W;>l#bwy2+BvSlz25_#koubuSu1X*X1ZAjC0uth~)&?m!qg4
z`juov6(cwyF|RB>&`uR;r6xzplz20OQS+Q6)x{rM1T{pHep=Qda7FM!6vd)&N01i5
zst8s`kRCzJ2!=#3G=f?Y)Q+G>1U)0DBYoeEphX0ABX}!<dLqdXq`}^sGwMh1b_AIs
zX%s=@2(lu`ma0dvf#8cptk5-#Snm`jVQE6orKzbPCCwsuy_@wV>z$;8)s{)#F@pD!
zyj29Ple|p?ZIirR1nq@)NJ>5$miyW$Pp1gp7fI&`x<t@bc=x1EHx7KDm2WJ8XSsSs
z_=iH4w|yh{Ac8)^<ANVX@KFTb2-e(pVzl)wkA%e+fj@$P=mZ7B5hy}Jg4E>3r3#NE
zCD90CN&cjGK~1=xlo%11!V^hJscn{%{UUrNtL5H+q<o-|L4tz?w-?U+afE+~W~oh#
zV7QR+f+GYeAIVfn^3g)Z2#ysTC%7+{E3J)VLIf>4TGts^K8fJd2qr}^Srq0+uz;&9
zf~gUF7QwU#=7@Z{;LHeS37H{y?27dom)Q|~E>-e34q78>=*;(pNahO8OSXO)!B<IM
zzL=%CP^wD=zm8y$kZ%MR3sPr&mUF4_WrE8ER|tM9_?;j%S4L2(Q5MOX2-Ze$GJ;cV
zir|L`ev9CDQCk<m)(C#)r$7W7M6ywEi{OtDY!b3r@F&4-A6l-?OtlhYn@F|`GIJ>3
zA^3|Rt2>4468trS-4W~&?ta7CT4zqoChm>kSOmu-*q7|JKY{~Eeo)Av2o4MRBPl-;
z!O<k2*4lEZ(rC}0A~_*AvW)dJw9^rs;eHrJY7}Q9I2XaK2yRF4R|MxH_(wGV7QENe
zGQx5pf{PJcityo8OLAFSuLzdi@xMA(rFt!b>q2e_-V|h)m$szbiQwM|{)-@2)C$Yp
z2p&o6J;D2e4+I|yP8jgNmLE&?iQv-+o(Z9a^YPrdqezLO$d8V1)OvZuY<m6d0#W1@
zPMv&0@<)-j#k!Ei*1`|0AXF%tyO1>XyjBlFo)dgturO^3DJn?)+ouW?kK)BBeu-jd
z6eXf48AZn^Iz{>Kmv}jfdQoIV`3MS1Nf&z*rIUTDMDeQd*P?h`NEyL$f@KB2-)jx_
z4dLaZs34@GV5J-dUjK>0S<-TzrD_z_lJYmBs4m==l+=i#{rx;tbFfPkuB5zH6az;%
z-BL{xOc$&fMfbbbQmviTtRtju6mKOZzjwAgtRF>_D4Is`b`*2R6v~v=tfWr15Kj~h
zgfvXb8%5DL$ycQ1ZWcxJDB6kSous^N6z>Xek(9KI;yvN51X~NXNwz+^ZaK_7nTxJ{
z)Y_jrM3FC#tKn$R`%!d`VrCSxqUaJu*C_f$(LaiA9A*?+6zVoBj6I_06UB#Ou%}=z
z!QN4PkUYwsrPioFiXtEqub?m4>KF2~t)&x;LWv?2ML5|S=Yf(uA|x6`Oh|W+btY3*
zhCrf6VI(z8Aqm00QJ|z{oMk{1AB%9H;2=TD2MZY@I5dhY(=GjBQ4Eh_gb2q*F;2+H
zC`JhxEl9O7Lik>3^6|na3r>h)Vicc5akRa4rIF=Rkxz=^uf_J_W31>+iDIe<$v+b^
zO>lY?Glcwe!TQ{v9mVIIoha5uF-PPJqF5Nk7s9D9H;Q?}zl`E5A@ixw*BV8$goR%x
zHCIHjD9OJOvN(z*Ny*YEmI+^;l=OPba{gPXekZt6a8(qmh5XS-Vk?}QTcY?u__`?a
zOmnV}VuMuA)v?qzM)9LmHwkVQ{7I0lL(}pRw?^@EQnF3RcEKHjWrpS66~(Vnl#Ahw
z7<P;BW)!!g*b~KXQT#5FBMdt?mMUp`qu3`BTHY_@Kokd)l0!lcNAX8eGWwLYB929I
zI*Kz<98b#s6mlYplS#=bA-zU>&I<WEiVH%{3H}wuc_Fj<SOdQ(oa9OrmxNzVO7cC<
z^-mO6rFu>9y5NeAg>DFWkk|3t&$io9+~M9BL#Y`475Q^9`3Q*OUKIC5@+69<IbEW7
z7{wz-JHK`G$0Gc{JbV^Ke(C#P6uE@t7R)D@5<?y#c?H?sy(stE>DG6F0wO7xl&1<Q
z6a$iy#+7nEFT8M4QY40=!e0<97DMqEUQD)@jG;u5|CL_gr6hk@NXt9U(lNXmLm8>Q
zCOB9&D?0PKROh9-$_nA$MPd0ED#TDLhT1Vy6nS+)HdTtDvhXTNNmU`$Vt7+X_McX)
zY{}LdG1!GWk`iYOt|WI0NsA#pDXAI5H@mFWS|^6OB78T7w_>OlL*t}QhLCK*`Z2tn
zlxGUb5>)ouJwh5JTN?^#6vM}7Ef1R{<xOK~mgLQ2cqhqQJj>N0hL$n@aRFM1@ckHC
zCtEwk&?d>-#?Vf9d%+HZ9h0qhn-%y*@~5*%x+LXYW9Sw`cd0Tra(3WeG4zgM5rYuJ
z2Ql=CVPXuQ#PDGZAH^^#hSBtAl+7E17K1L_C+HUp2nGce!B7lgA?&3Ji3mmoV==^q
z^y=-Vf)T^OtG50z3=p9ym=Nq6Lq8#Wp(Hg2#xN*`p$ujWgJUoXxQ1{+J@0J%X1<ei
z9M{&{$%CV8!(#kb9OuXwhR4wUq;o_J6tYwqWTV=#Pi$jiQ0qG4nv*tP`^r5whH-Kf
zR>upOz&xB}WA)P*CdDv4h8ZzTj^W5P+v>CSg`a0Eedd@F!_*iaJa({rCS;o6*?IPv
zG0dWSOY959+UywS#xO62&!y_E<(wnrix`HKcJU}I4VK%#jG<=pth1->U&TP2FStOk
z{59JohvRGMb?hU@;ux01@MjDsVptl(vKaQqa3F@|F|3GTOAK3M_%?<w_Sj0EbFYix
zJK-w@R|&2bTqC$v@O!}@1ljTTRkrmp>?%={WkU=bh5snHDJkD9<R>0?O$OE2<>wf-
z$FL&?@@;~9i=_M_WM>SIw_9c@A=wqfuOfMP$F@6$J;Hy>(GmRTdB<KM`<N{m4t6;x
zzWu>j5QB$eI4opt;Tp7glsUZJGR{LB6VB>!e$d#QBqw7y6~mPn{)ypq3}<4vAbroq
za4v@P!r8IQJojJ!&n6{*^KfF5{9+83Vz?|49+Yz8)fleDa9?`0KWn=l!|fRE#BhVT
zch<&oQ^+mB-}!3$RW^3~H-@{+io!MS#gOAO<s=Vcco@SYvGzEIC(=r_r=tAq|M~Wx
z@LX{#)VT#y1oH^y6=YMsIPxcXfjF}AI4CR>2jci#!yFCI#qoR`=i>M)j>2&iiKA~E
z{o*JZ#|v@PjpMDj^-)zUj?!_w8b@)d@=@d$<0v7#q#$)(67q5!uLvoXlq;oEUW?=P
zI4Z|cC5|#ld8IhY#<B9Ybt+g+gm1)AUPy(cPQ^GnG_<aeu>4iX`i59F4u`b<KGac7
z$eVFgPwLy^s3F`g*mtRQ3gnE#701ixUG6y2;z$?1`~~Ynr$vi=HAS;l(n4(^b>b*@
z(mI`}7e_`M&EjYtNBub7me%Yza$RuU9g!<jss)cbvV>GpGug!xw|>#wAdZG{jJ;xA
zMrb6hjRl*;(NxIyr!D*M#PMz%AI9;K2wTMQejJ_SXc@<QB54&zJ0XQK-L2zjlhZeD
zYb&JO5$kJCd*L18=$LHn6i1%ltR|K&BJ3JRmx|UEJeF>8bQfWdq<+shdL?=9I6e^G
zCn>peB#$=^UmQvtp*Z|W`KC$M<-UMagB<S+>oble97miZdX%OnH6uczam0i~E?HyO
zgzJKapedLTd{zDwsDB&-;#d*Kw{Z-NV^ADp7}Yoi$1x<1(R4<03>8ePVDXQIlMIVv
zc#@BZ^Y0L?R+dq5zB<+-Ir=2y;+Po6C!#Q3aDw2dR|<Zb?6pwHB*DpoQv|2R@tKfm
zaZHb6Mx3vl#=JPbjAK?Dv!!V+*P0L>>x($%2>&;c!77XWiDOr&UJm~%j`>N=9fz#e
z1#wip<t{PMQvN!QMbi3>;Nm!zFc0Bg8pm=W%LIGdQYa+ewWWN=^%ckFIDU#_RUE71
z*bv9YI8Lszui^Fo<gwnkz*)l&Qf;!&u};W(!4ZXP@X$XB-y}GGo{f_H8|=g_acqs_
z2&cQh^XEAKmj(xEe3WfFjaPB)7u*rYFLCS?&dq06949VUW9zR%c8h$E;BPrPf_u3N
z=G9=?$LY?lOL8DbGoPD%4{-?}bsvsnd}{tbgg;*E-nYtqG>&6&9FODAI8MiLhC5#F
z>=WW%mBHC3<2WUfS661u9qplH{mpuR+^lz&@yX0&nRC;+Xna17o*H^-_&bgZaa@e!
z5;qVHZVi{?xWdC}ctyiMaa@ffpN9MzuElXZj>mC4iQ`5bH{-Y;$AdU-#c?~1J8?9g
zm;KVj%(RJ_8%BGG|1t?jd+x?@j~z#Q$WzBy_{JE|!#Jq<NV@Qq?r)9pu<v^lGoQxs
zERO%ABdfVI5OZsmo%W&=8RJROkVmtQ#gbRUSdkadP*6h=4MjCPoRFEyJzx5g7ZPP?
zSTM%3d5q=Q^BM|kAfYG37c>;pEPqO9prp8P8h=r$e~hslE-5~|BsTvY<DpljG?dm*
zU4u=-s~TR@P>%W<dh~I;uAz*E?z^0u8`UW?)<aTOLxJXX)_mnCuc6^6M@0>lgjCSb
zf0uLDbq8B3Yp5b>)PHlVr>bzus|k5iu*F!<&_T``8XOu(?1H`KWvi_)U}XWPRL>SF
zl%^qF!@C+<XsD^7mWB)s^)=Mi(0q$?cZRdBhB_J_4YAK3?%=wh<Sh<oxUHTB@^P0O
zZ)?b8+%z=NkfkA;-fHlT^>{RRHrSi|=xm@t@8zEVo_lL{X8zWh9b0EM(y%2X^Ob9^
zrW%@QxWBZ<I~w|Ju*WaBnzLFrW7#!V+18nqpMKBXl9ANVUPA{B&e0jIG_=vsR^zX#
z9j!GK?~+Zjb#z8MkqjB@VRhROM@J2v7-12<uc5P$Mtj{|H0<o=?5d%gNL(+v*|)m}
zHc_8Ay=Ojlr;*+oK46qIe5|35h7UOk4Tgq~G<cceUuUWs+BM4b30E|3rwC{m(9l64
zc~Dwe4T%Ev!$Jl$%_NU#h-!$@_!rr6L5*QNpT;UnR;HUeCTE-mrB^~jUm^XH)&}KD
zr_MkPga1z=WN{PM5Dg7hT1Ux2E@A$RbeM+W8b)Z=&rU~bn51E{hEY--ElBwo%{plu
zD>zQWcp;Qb&@eH{KhgM~Dwf*%J9Z*Z#-?c2nH#%L74n(jG{NbDGX$wKQ^PFbvjs~R
z&O_lB<Qi_3bJo`}Ps5iQPG~r(;VTXEHT<Yy6W61Lg&Mxouu{X<8Ww5zmeHG2;~U2O
z=epjaHI{1lIbYqy8kTT&iq>fR*hwr|Jad@_;&Q<iJi#05VU>k_S7}(SVU32hVv71K
zl(SIbdksHmSf^pVhK<sFgCLv67A=%^D>cW?md2@@HT<OES1t!p*un%8vXw3g*`{Gf
zvhQ{wbmNz#gcfLOmsHC)Ex1R+ZyJtjIHuuu4SO{l)Nn{z_i+a+T4=w9d{r~|F33J0
z!fD;I*!^(QT8{lcq<Tbf?O4xoA?)?1kenm3^^}Iw8uIGMr{j!fJ^uQ)h6@_bG9NVS
zsbD_3{Fi1ud3#=vgb(&#)cD{N?rV6!E>~QaHQdl}Q^OU01ZcP_!s~+91Ur{?@F8J7
z8%$;X_~Mp^yNt|w_ib)FV>0-R@f{8SYSxqLd_<Xej{~ga<OBA6eEOk=N1F9RiD#Pi
zoOZjODUUTg;n7dnp8h}NBf<Y^$fa9Ga_d;Pv_^`K%*A#Z%%fY~sX)xHqkxVoI;!d@
zs3TR!YdT)nQAh`Lyr83)ZavxloQ}ej^m9M2ThGk%nQH#@qlk{(V?9O18lN%dbMnP?
zyr`q3j+aE4KO*2m&Lwp4cL5|X>v%=St74&)j?y~#a5&xI<HUSuoN-_TtOw(3XVI}T
zIx6bcpvvkfr(3^Mctb~d9Tjxc?2yGDq;OpGA|4iYtRyxo>!3A0uFPkftLb=CM>>^t
zROf6~ayoUmgxGY{5JI6{h(o+()va5P*0a#_UXKf=>DJTTd`7yKZvBv<u8y~K)Yef)
zs(g~1ZZjtJBt-NlgAU6ak#kVJ>;>Lt%ynex$kyS}VdyxTyIKS4>u9T^osLUNtwuVU
z>S!jsv0xJ&yEbO#`7yJ(j(2pl)bXB<cX{aT*)4R;-JZ=Rau)JdI$Ddqr+6l-`o>I_
zHaaej^^mmJ(LqNa9UtoGsH2mP9y)sJcwa|n9bMUXoQEBAkMnfl?2Pk}q>b}*)6rd;
zLek2^vGmf>TgL}F$d~udVi`To^Yu8-g^igX>G0}MbcA&Hbog}ybd>!u^W@dc4coK3
z?#MQFWbYW~3F>@RVir#o!a7tPI`eHuHq|0J;yOOvn8^~=5z}#goQIsKCFQxtdtMvw
zsXN|d>S%1(5<2>F78+*t)A7ViAE0Bg-_c*k+XD)gJYI012nXp{&@k%>i<v%D$HzJv
zY(&G27^Y*mj)OCCXeLJJ7|BqKMwihTrDL>?(}Qqk5XLYQsNW9_`(d1p@j8kp@L~cJ
zbWGH-+Q1qEpU^j*f2@t#1}5p4tmAJT7j#TvV(Zwb<3}Bzadpr)9ZPgf*D*uKS32hF
zn5koyjxRWyI%eyzn~p`7Y(Fe_kbJIVj!4!%=VbNJX8SxHzb>|asiTSM$g{Fwh3bw2
zTWzh2ITz?y#MQCfzL1ku%*pb#kau_5zY%%H5!=lb_N6+O(PtfNm`g=#Eaze`>{y}W
zyQlUA18m>wpf#57bgWGBRXTp(Xs58(6USPyxlTtt{tKv%A9R$sZEJqpmZmw^Gq3tM
zSvCl%QQx&m$7UUSb?npela4L)oVx@ktD2+VO8ZtFKkL|3-LZ{JAa@Pl02}#s9Xmw$
zi{MT{%6AD#tLvzFz<za&eGgY(H775E{YKw(&|05g?7VWmpFZn2#fjsb>Nuq1IJ306
z!%!TDbsW+8PdJu`e{j{;cagAqRL3!qlaKi%>rde)l9H1`_LX#>kwKl)QGdVlEa!1m
zhHZe2_|;kGUrbRQcfN6C_P2eG8W*{2brdmB)WBsOS9Cno@kqx%I<D%ttK*)IYh1!R
z?KioV>A0@r218WR-E5-s@>6^3@t!KJowP&uZqqEc9UaehWV8Ap+c~19hmkK{&vjqN
z104)IHM@OlzvXp2W}b6B8pvzlskqIi6a&vBVVE=j3CU$x`IB3);?FiF)rTV;jDJ1@
z4Ieq4GptO=Z=isIf(B9zD|!$tWPpQZH3#20>U!S5uyb~n!a^n;%lCqTVg@Q2sAQnH
zffo(DZlH{T5(Y{dC}p6u9EHjJl7ZD*Z7&OwykekPVFyW#V(wQ(r{Hq?YX&N>uyJ0l
zKXsNhP|m>aOSZMk?Nociz}-5IP226|#X^Ooo!wcE$_A<!uo<XfpsE2bC8p?`2K24A
zY6jxtJvox<26o<e%~)WkeMa7Hz+u2?@I_<Je9!DP4Y&-rrJ5#~Zs10(47Re6Fm6<<
zW1y~qK?VjJc*{UN104-?GLT`QzJVqNni_c9K&F9g10HcQ%i!CxoYlXz7b)Q2keN;m
z#L316n9mJ4ebpR|3|v`hXO+XDx6KSRH_+0+dj{SSBfQ=Au4r;DxExv-)(tp&F=s0S
zSy|3D2HF~EZQ$Oe%m=lcB^Nu|8EDU=6nAldsIbjmw^AyF9SpuJ$~kSk=Y0d64FnA+
z2D&f^-#dF4=xLy<fmq%eobhf3y7SPS@wYRGy>jFR`WRqN_BIgxGK&j}%jZJ_%sQWe
zj|^~tUO^J}@=Ft212VrPAp>EW;-nZ*4MYrZoi-U@<5rMayhfBm*yLc^b3f5IeFhQ+
z`WoOi#l^yXz%XDkEJbUuI7a8Pb`=Bt4Gb{w`&0YU4F%8no!qrJ#RClxTWQWA28J5=
z%)m6x0+ZIjL~h;8tC}t*)o=qN48E-%Kb6cHV}QHmC<Dx~(Gv4zEuByQu&3^{k2NsP
zz<9~|3DURYB^%cu7XmZwQ||u;CL7?<*N^v1F))>Dp`MEq&9TsVPAF4uI$h#eI0dp2
zXBwEz_!yWaapqRWx#Q%{F)+`-mmJjYj4uppgPqI7uJ2;Nx&L$em_lC}m@mo9eC8;=
z=0qD<ZeWFhZw%1XVgpNLeOaFin;c6GFb9@#j=p!QJMDS-A+pWRP2gJts|-A}r+#Ok
zN0yUir4VilEKK;d2EI4Y&P00?KNwiY{lP>b6YC9ZFmQ?6oq>%8el&2vz(I!2z-BsT
zU>8GbV2gpR27czU@;X{%*V**EbL}-piye+_2KGO*4|>i?;dTSW9b7f{Y`+NqB$wk?
z2HC)GoL1>u?}GFF{*FCN@`28+YYXh<4EA^Idt#rw#J-QF45W9?x@6DjG$3=vXIX~~
z95!&;z!?L77&v0!PXi~oJO?}9zwbOM29F6I7o=~sPiFsm#L>Tj^S5HolLk(4VXktt
z-r%fo&vus6YTz#e=M6qP<oLCzV^g-X*a@3|f%9(zw@SHNm2h1!aFH3l$62?(<Kc?T
zSECtM4E$r@k%7kst{S*z;EsWRIrXD#*SS-*bKWqp@`=51J16-~+ToV+oRj4?6KRPR
znY&!eTx*;iX_|S@(dRw)eJ-4@Y>REF@9cF(zqT<5^z#Wff9?z>@|k#M;6LsRCVJl}
zMCa*kE)%&;jA-cktbK|Zbf%ct+S#49!*S?UH=~;0v<_FmL_rgr8Y<K{Ve69O`t+%T
zuENA~CaRjKX5x7hg-w((QPxBe6GcswGEv&Z3no_Aauql6qKRTO(!<f>Z04HH&c9UW
z){wJ=iHXG=B~83!!ugS7$1TTCwKHBe@rntOr`Kx}KdxElRTC?6J9|yET~eH{nRvX%
z@w$mW$9qW1nRvrQB@>lRyjjTkO*xk~)luHWld{eVCMpW4HaBDZrOYZ~q*Ecs%bRRN
zc4j<k>3GvbbrT*F4NTZf)G$%YL~WC&TX2|gn@BT3HD6X8Cx>~{Ug8ahOUOH^u0eMl
z=_WW3`aoXO1d;C55mL`Yh6#48YvL`DT&wS-LVXimIytgr)b!zP6U0nGdX+7524q`7
zM?({hOuTENg^6A_?Tt;I-Jz+8(O)?^z-A_Yo9}FHf@bL<L&|ZzW8%Fzj!r>GOOsz5
zobQ=vC4?TfmVr#Y?`&hDb44d-p{)s4Z|`vuJDBLmHEUvniB2ZoH!;S<SZdN+6RL@b
ziLNHPnfTDeM<%+Pc)hKomx<ZEoIQm16zt#2NqKJ*ADHN4g6~RTb^0Ouu#wJw|D<_M
zocq)fFcB2uGjVUc$1g^xrig|4Bb{L;Rn<Zv(HVExk^4>|3Zo`s45Nv`CN^Hrj+-z|
zBur=~bcU#UAs)gI3v?-R-@YqvjlL%On;779_M?2M^W0$vg#%0sG(qJYuh=?7dVNfx
zkfA1c&{&bI;U=iVLyzL>Ffo!z-Z^vsW(S8r`Dpr6B#U-3J+5&k#+&%k#8)OJa0X3$
zW@4I&PfUEug|@*yl}@(JoPE_biK~eT*2+D_MEN!;Pk5!SmHWw67mJqZoNi)<i7yzI
z>CTxZW|^47Q1o`sX2izY)^$wb#l6pkk2!4L-!X-1Cp)GbneLoxVxEayk81PcA&t*B
zv4EM$wZ<th@wJJiCYG7_yQh1RiElWA*Ic}im|;upu{?7z=lZaH30L1W*T~1V<tFy@
zbbn`JB^Qf{Z@D@)*m)o#y`=-IxSUPv^5eY6Hp)x2auey^_neoGDI6?~|G;dy>RQL3
z)pQ<vY};t!M-!J#Trsi9#AXu*OdR9_H?hUUuO@bL&oS|{iESpfQ>VLo?5DQFMO<wk
zx&qzYeUG?ynE1s+o=LWyCU&uOb+fSg)<3qCe{6e9{AS{J6MIe6ykUR6sB_V$wi*pG
ziTfCVZtkiFZTn5I*pIpnt;#rL;;@OcOfVCFm^fnMq={1|j&h10xc)T3j>m)_7i@IJ
zM)?U&$7I{;e{95=S8S(E(6KrXT{vhvV}h9Y$MzTJcdzY&iPN9j&YPhBEPtE$tE-!?
zUgV1F>Zax;&cY-c$M}zls~lGXc@wy1;yMFs;(>`9CT^OzW8z;EFHg2@{nU1g$ywCd
z<BIJz$Jou?{h;lxiQ7Hg_qcO*cTYLus@O55=A%M9?nAD0?vUK~IMG#8C)CQwc*(_R
z{C>su)Wm<xlLVeIMLVP%{XE|bJ>0nyD0{^6GbMqGM_flwXJnkVv6?S|{0Sg|=MpH8
zK*0nGCGgh*J0nbksR?ju(mSO5`jTsYcQ<{@ciQ%R0!0&eA%VgP{!GtVB!SxxTumBe
z{y5pzZB_>LizSeH(czupB$h~^B$fN3SYN!9z{?2?P2l4MUP+)-0__rLpFrsZUQOVw
z1nMR5S^}>pP%VKs6DUKU6R40t#RM<?*~%sG^^30Z3A{mr6Fe`QDWmVXDQVx+S>{D&
zr3BV(bM^n*MqW9AD(wEEC9j%*V}ggII*--USu25AZ#ivrz~QJNXcu${Qs_*;mE`UO
z(uAicB{hZQ<~s*h*=i?nZh^CoVBG}xz6n+{5~!a*vjmza@U|RlL!Vj=gk%b4C6FzI
zZg_;u>r<;?0*w-AoZ#D3Yq4y~k0wdpR7l!U=Q|0!n?UOX+9YswzK!p^Xu;6kcehO7
zy#!h%_;2&std32j>^@`9^UU2gfm-+7``>f6tn4INGS=N8fsP6IIj0G9O5ptjdL__1
zfzAnZNnpuEdpC~vsIx^g=Mkr?YXafp7P)xd)jfev4?24!&{N6_kKFw_WqpvqgGy;n
z=GmLHara4}?`qqJ34D~msR?ecpf3RyR#}EG&I~4?Bw!?9CJ>_W1o}L3>j|g{bX#qU
zC9uD~v&&IOB!RZ~+)*mrbH6*mLt#7tO<HT6b6wl!+IQcL2kr!qn83gU1|`t6wUci5
zlPP#*wzGc%1E`<rB!9lKldZhLIXHm}OPtk?JBBd3jypOQz_0{{C-6rCM-mv3z(~e9
zfsF}_N?>#Xa}xL>fiVe;O<+<2lM@)1!1x3{VJLY0Ct;m1@UwWL5T1>Y^R!`Ef5+;{
z4xU2rQ+o<$B!L+T{0~##0VPGzg)2+k{fH_EVgLyO+B@CTOWuK9)<hJLsDOe<M#-=}
z(|LM&79<D=s3?+yAP5Rbjv@$3k|;rtpzwnrL6W?$i^n_foI3Y>b?erxTle0oot>%b
z{xlbpaxpm<Q*wikH2ufqc&inD&f!M_R`VhFIPn?h__54C`crd*zv-U~s;mk=2z{B0
z>A6^(izT_3k&BtRn3ap!xxq&)+7JrK{Jca1=H!Ay^Fsyk++2{(BNbqQpyYfdz`|TC
z65wk=X$G6V$;DExpj>n=pe$pK6$w7=tf0<Za9-c#f}e$!3rs-HN`VPD*(WM0t8zhl
zI<vsqT&&B*_FU}9#rj-q$i<diY|X{STx?=KWY^s+oWPmxDp8M9c)gY~tfu^TP5B2V
zVNYcnw}^ETnLjc)$4Wg?!=?IW{FIBG3}`O)((_Z54#(wPx%fF3zvKp=j_3hSoTKj+
zHgJf2%!FJVT`aYKKluFlYc7sel=&%?_@nCChjMW^7x#06!zxE8mW#`|_&XQBQH)8#
z?U6~Fixb=ibMXiF!_gThb0H1Pm^2{c<)5VAx!!X@!16;Ub;&{b47HsIFUco29hecB
zl5##5e{!GC#id;Q#qFY#`s&Q|3%R(^E`{<Jxout#r{4^dQsIhgyl0nD{d)KcchOwj
zVmjsGAEEGCF0SXI=H@V!-^j&HrsB=;@vV`bQ&L#Gff@fY8#}4zzmo1SLyk!IxZ!gF
zUJu{R#mN)l<JZHPW$UgTCO`F(a`$@p5e@k?q-e;mp@fE#8VYDAsG*RC!Ww4o36<R%
zln!Sl-sdf%0UC;GAWqegCIIn;3aOL73%xWetC$wt)+{dQGuJbSD;x~^vNXJ&_Lzpp
zHEh%HqlVHN%4is-VL11H4P`aFq~T=^<up90LD3M_P+r4R8meiiuHk77&uFNk;n&&H
zvl=RBsH8zY5UQx*_1VgE8n!Hu3G`xhi|$s43v`w%b1t1_{s=22<f<AL@eRcq?vz)q
zhLsu`UeNfYSvg(9;6{-bIjP;s4nvj%Aa<d!HN+u=81d{=^5Ch8s-cdCx*9Sx)YQN(
zThh{NarCtG+VsW(<wo&z(xuImdK&6$$Q0(WBW;UlXgE@8C=@o((58vJwTYZuAZKaF
z)<Dom&>TS*8$r`68eY}#mWECmUenN6!yD|Vp^1j38d^}fhGrU?Yj|^{bnKKob&y>7
z(+I8IzDH`Qfl68nFHN{Cx1v{zDg=HPnF4J!wA0XDLkBV3u2RaR0^+ynk<#q?az_pP
zotouM0d63@vxY7VtA;)r-q!GrhHe_()zDP~`*QkJn^&j6qfe>*Zq#91x@&k(Lk|r-
zHT2Rj@wi0h@u$^cA1egWRGFNUhYI%9Fi^uF4gECq*YLiEulGnFXgD)P-ss8MRpbEz
zvwDANWUz+O^=0ZeQ<WhaW=)e=hH7YVStb~vAy>oa8otn=X^3hVuVI3Qm<C-#o`#Vc
zpH>G`LqdbE!Qymk)pazubYS&}&20QwAt$ckk@KM{4I&<M=CVvsOjUkgApdwc#Az~%
zk{a$V2s}KB&e1SV!$-o&qlJbsA{p3`K_9CH#{ifQL)J<R&>QDv+CNdl#~MD-_?Yp)
z$&*CvCX3`@da&0Nktgpr2_p5GhN&8uPD}<SDqGoQnuaeme5YZ#hUpq+Xjq`(E3Q@z
z4B{*ev)OA<upEYtl;#K<=4qI#fwLf=)GHaD&t<+=Ql3&4a+(^JX!u40CsnFwI?LBg
z9t|{`!F{!4y`>`6%RHrgt6`ajO<Obcq|D^!h}5=1!%7Y7HEhuEy@pj{UaQ57D8oFb
z+COWB*JxO)fnc4W1VNOkO~Yn7jnQus*qpH>!dcK=TQ!_NC;uQ4jH$)cr9Ine33s6=
zibnC1hMkn5Hp*!DS;KD{j%oNs!)^`xxmR%OSRR`6y;ML~_GsA4EpB;;WuE|FO;Eb~
z(g7iJSi?aLTT{~yF?m*}jUJP8qO5v^*|I}9DkwqAJMwW2Cp4Vn5NDN>oV$jjze;~-
zIHlpr*3jTO8K=3qT~FKekJN9nJY|e@MnlK1q_f;t$4S51Duu6?Ouu|v{!7CJ4L3C0
z)NqlG(r`(`Wrpv2iB@G7P)@xRHs?rxYxsxD=MEn!7U-wKt4y8+(*7~hH7=RSGMU#k
zkpKDLp?@{p;x-;dfhcY>XI_)<iE-O)k?t^K85c_;rUCzHxX&by2HrT-E#-kv@<ov%
zIIRBjdCIBHQo$$+MNv44Zgb=ol~RjDgUM3uQC~_GI8D&NMZZeLq9`6k^(bmkNfafc
zC?CaBQP8kbQ9KsK<53*ytvpJZ<so({9YvWao{S>jYURO1o`~Z0=j1~p<g%0;A(s=B
zzM?(!=fdXl(@|86;<+dowP&JuR;a2VXw}0qV^@iD*Oli*$I1d%5tPiT0=&{#sk~jO
z76mDXcp-`xqsWM&W)xBs=}{<Agrf)vopKb7_?X<a(w4Qs=(SfXG`rduN##t3OFz`f
zcvDwuMNyk#QRGBXCyKgJ-1tdu5XEX+trtaR6kk525Z8~Q&n=1I!#z?Y3MLXkLm^E0
ztSGV{;!|}pI2YPR@Kv3RSE6_|iY_|d*6~^tjaiN1wHTU2(KL#!QTz}^vnZPLSI8(v
zN6~^l<XBPk<tS0KisG#(Iz`bsiZ`O@5Jkr*hEI~}Op)6}@%!9R+bE6=SK0|m&_0TH
z6EXpts?U?(jN<Em<^L5{*rhYgh@wXnJ)?M=*8U=QWnx4zxU>8YgVI*cY@PCM6rY@s
z+s}}@N1?BkN4HLSFA7#!UjIrymkQEyPb<Bm=pDtW$$Xo<y5uvtUljeLh_Oo)??>?g
zEfls5h+-hq>7q0^ii=C7K~a92AyXcAr5`6K<PQ<8Lj@fc#WTgjWR4JhX@9N&S`<+M
z3PfZwS&S&GC~V;eGm5ma!DO8%+$j7g{xIZet`v{rP7^s1MX`CZC+PPn^47Of=8wrq
zMlp1YoG0i=K}QKnW@bZqOcZ0Im><Q0D8@zcQ50W9F)fPmQA~(pQWTRJprP`_DDK-*
zfmQOyjOkwaUKxeXS(Y8162)gs@`KVRQM|HD`Bcz$wd)d(H07yWO;Kz*pmd3Zr@p6t
z8O8J{W<@cZ!IdL3qF8fS+54V4Q&eBRD3LiQin*NH?a(~>aE9D$f~-HGvikjYdF~?V
zt0)#m@m&<lqgcdPN3kS|Z-kyU6P5mjmBqBbL72{;e?eYK{~VPYw2_xZLH~cte5fAo
zv{AmkR9O+l$|%-Fv7Sq#obo+2FfrQ5g(pj^xE8p?syE8+p;9MZy*7$VOXZmrQa41g
zbBnww%D0tC8>67+KzT=bGZVF;yoFiumE8X$`B>HPHjc<B#85nj?NRKA;(t`a{ht~b
zT;@^~yQ27+X&lAzD1M1zH@7D8ugH72Kqkn0MGpKlNg}2V`=Zz{IKK)?&VeWnKE#Kj
zI4tmyhn&u9LccLmg=H=T(i0;8PeyU?V`)u;aQ7V&GqX<x`84w<ia(?HD~dBwFlU}E
zp`452EO*h#(rYc%aZ9E1QEV5Up(UL72M6Q}+$b8#7df5cVV1rl<jYa~9mRi4k|?f3
zaW#rt+|r{MwMzMi(LAZ#jN)1p*P~D~BX5+6WFJ;;aLfHRGT}ev%1r5B#&MFw(A*Ke
z?a(F|=q~qxjq*J~r9P4T-IYgT$QJ`*C>ldb4BIA4Md;o(a(;me2wG6kLV{ADa13@r
z4!~q7HHNepXn)Ov3TgXM@|I6!?gs6r$R%PZ8G{l-IEGR&JQ_od7+#3su^1kYp?nNa
z#X#ZGF|@gsRxXAzF+36Dp$oZe3@>j`-Yy&77m=&44LunP7KI#_-jbB3W5LGtYz!4*
zcqRtFxSUlW5dJAg4fPCCx?(KI^XCMu6hmbJ$f+Vg)fk?C$f*`Xb%7`L4pG2AsJs|M
zC<ZwONf@>$Pfm|vd4*Jh2MKdvhs@+xW5|dhGlobEHDjn1L%kSZ7BAN+B-f6C`(&LM
zT7D!S+!O4Xbz`_(L(z-WWo!KyxZJ3!K@1IJc!|@D1*^5kE8(mdvSWO6aj@PQU(RJ@
z#k3qzb+t&vs>-nCGFRU#LO=7ZF*pAhzKUUC3{7Kb7UL6&pvBNUh88h&ilK81uhWbe
zTE);h#`iTVbAAmsDp1!<P5X0W<PFL<h;)d7xD98qJJgoFZb<C}Z6Cv|CJL+U)lo>k
zDd<~*9&4s{iQ(-S`oz#ThIeA<O1~A$?iE9~7~YMc2lHpMO#R(CyKsbq62JFg#D$@r
zF^s(wc2m=)v`~8s$*-Gc9Qsh{7sJ%)>Yx~m7Ha<($a$Z66~llSo-0t7)q%{?7V7C5
zIi%$1&D6m$kPeAqr~tzR9WE&OBN*#O;pfWMi^dR(@uxt1#HJXoHdm7|<Z+-F%or>t
zGqX<c9pNZ9hIkA=8L3D2hr>0}=me!kTEWz`1pnr)m;4x}HB(ty6jDaUFe-+e{oy}%
zOCQoF&D3$z<<Zo<KTJG^DcVfEo*Eu20Gr0gFd>G|WB4M5iCht*l}Ry77T{xHHaW$2
zC{tqiG=|c}(?8)}w?m;bNk0>QV^F4w811;2HZ6uPW0=FFieY*TGh&#{yxkYpPey3-
zOa@W-pRU+8CWmv$-!!9N@pSJ}Xr6HO0w&LY;rUzwscB3A7Is_|!`Cs~h~Z`oi<#B*
zLkv4(_$G#>)E2{9F2)$XjbUYsXJXa2H%i}ejl{5m#*|j(Zc|cfs56GC<u^%-2dOOI
z$FPc7kriRnY8u%{d2)!lj;0P)H^#6jhV?OQpa)XJ6#iy)TI#IGX3m0JO$<MB_ZX&b
z6`Jo3QGZ~Xb<f&+I7~WYs5*Cux?OZExhic3oiIf0Jxtvd!_P6Cjp1Ajzr?URhGQ`t
zk6}*?dt>-Dh6Bu&LF$Pi>OL+FP1zsgAs_XZ<&igcM-B=*kHm143%p?D5Ss+(KSW(y
zu^{L58#k_D>dDJ#cMpZbL)8;8oTRUYsi!%wq3Z8KA;GB_sBQcpm6X%`BZf0E-pN&0
z9uAY9=c41D5X0Xw{1wB67%tJ1R5D1t$enOVFt7K&jr>oHMLXS%%0C;GE6mRruElVj
zOJ<Pzj~I9A=Mv{qZ?H-)aiG+QLi7HO;TCr=9qBr5$8d-Hs*Wdg+@%dMr0Pi1@m~!0
zV<@bnh>k~e<kOK~N6$Ht6dmnPgjpVddwtbT%lJ<dNDJy1)mts3^YyF&vv2`Oebm7p
zsMm%`&{0&!qdFebQA|hE<B<|NmcFkR*YW$5$f}JBaY-GebWDDq&w1uUZdEd0Xsnd&
zpv2x+AJ<V@$dk#YvO3D?cveRR!ThD4`lOEXI!62{Kc!=KZ}k}+Pm3yX>ki7>ol<V~
zRx9dwPDfQ8&+BO2TdkzyrE2onXHzTdsG?&_=`8szIo~2VZ-iP+M|B-93V|B*Qd8vx
z9ou`U-}Y09D-BYKx1I=B`a%lnkaaZE(Oie3BdjB$qk#@pM~03%I_m16SWTTzvs62E
zN@?9!t)-(j4d|<~eAG*Q;Kq77tbuBM9Y!BDQ&5gV+)ziBjvQJdG-T^2u}S%<M(WN^
zDUF1mqZ_4{bv}|#eU%^kb-beE-<~SV&mHB)B2rCs(1#4u{SQ=vrlP7JiL}u1x{fz>
zyrrY1j#fI}(9wp5iC&y0T|@(>LS?MmlBuJEXlkePDatApKCrx_s4`?^b`s&BS3B#t
zUnUYns)NGnJ36}Rc;CPW2D<5Zm)S)D9o==jr(>~>B|3UAyL61!F-Au(9ldpEI-)xI
z=;+J2>lmV=A5A?T{y@h7&Rt+u-`DZSqdCXtM{Z6Ho+EnXR(PO}L6rYJbmLf<)g>dO
zp*n`sOM9hZ9BYKcQuT;5LPsvc=gZ6E@{vUmw#IbmIy@Z-9el#A!Jz1{nF+fhrjGSX
zBgv|%j*ew#6_-I#l@~vk+)){S?2_ZOVV8WNXu7W>spCT(-`5D|2^*+?6bCBYXrwTJ
zfSid3BLj|yDKl2bI2~W=n6Bd^9piOO(ea6n59TWqbbPF1l8!RB!xMFUw@>15KO7Gq
z3P)($WXhDQOYo_V&xEyK=$NYGb1tr(f!N1R#3-A!zIqy6G>x&&j<B5lQDW;1t`Qw`
zbhNk~o+;=oLHljZn5$zRqx^elp^o`F7U+1Vt^Adak!P|m?Trk2wJzsNj=V%#q=S}h
zUDfDoI_<G+f^QgoGIboLi*$UeW1Eg2X}ON&IyQ5O=~$to5P#&=u};TIdP&DBE|VIm
zt99_$3=fkKuMwElz02hF)Y(<7zEjzxV}p*3Oq;^#H-8PW5Ky31hm@@h%}V(Pj`Ba5
zM_FdCkUp3mBHm6tI(F;WqvIzXJ9Ye`2WM1xUS<7gg~wfX=}7rn`B~5gB~_jy;%S_{
zI`-)}pyQw(9HiOL^nOX<ah+dv)a$B_8YfdZ#bU3?qc=nvRF{wFII82Kj{oVnc2xRJ
z$7v>mj$=BG3k@e2odWVn9X#8^gFQTZ^Sh2y%>0%r%Rl4gGi=iFa@_)dGA=8mbKD^>
zhIw-4Jfq(%I3Sd{A$)n6{FjbbJ1G|^JSK<MUea-yBkH)W<8K{Tbo|4er@DMq4~{?a
z#11V~YNYaL6VKrc>#E++ag&>aj$1m|$|Fpi7tih7)^SI8fRc9^mtqQ!?%ZPzyef0D
zJmFLBQ{@o@`3y8NkYgalKz;)i4LoO{fPsPr9y9Q`fkFlf8|bh=DrR8ZIw@sAsP@N7
z5d*0PI{%QBW&j3`q=t(cuun?_segn>iyJ6mprnC6c0}r34V5x5$VeS*q&{kZRhF%L
z!=(+BG4PCmXAL~TJ>)?6Ndx5tC~Kgc08i`=k<StP*N;49;AsO?!h!e!j0!VGE3I}!
zDp2xcsnC~Me@s*=8K`Warh!@psu-whpoW1L3_Ne3$D&Ae1N9q4ICM1w+0UgCEcs3*
z=S2gO0o6e1LsGhdkPucVY^2iuPR%o91Ek-a&h|>BhYd_NQwcJJJiGi;Gpn|NItCgT
zs9RpCE9}WM&^;UprXT1DEF61UVU;tAh^cXc<DOO;8pxtCqGQIT5OMp0c*(%a2HxVJ
z23|41v055vW#Cl<uNj~>8XIVC;Pu@>ESd;TQ$d><7`Zp>8>uY}Y-*D6x`Ar-8a2NZ
zV$@n2sIVy1#z0#GZx|>(TW-8JOyANi?F_uhU~P?z*%NNhSQ{W<=_tT!;Ru^P{7>p^
zpo@W?26`EI+rT>pew;6LH^5kQ6_oiv+)ZT5yMn{Cq0D<ivIi4MN?Wo{>TU24zTAho
zF;U64FH8$@IkT^UeoTYiA(s9E&_4qV45U|0G&Gq%3_X4}@QZ;V28Pmm20k+QluHaZ
zkTBpI7-1mSfNsDrpc#l7!AX)BbF8GoBM0|7tE?_P80KjT(|~2bH4ry~0~@x1cH<=;
zu2_>5aX7ohk%a})`%I8LBRFEg;}D~|sPDH=NgBvAFv`G(1`bq6wJ#Upk%o~}GC?}A
zBs7{HJ{W#_yfoGT51fo)GOv#0<8Sxxr~}4J<2jIl<px$5m}uZ*12YWFG%$(jWZ*Mq
zY!`Kk5ghjT)WFGGHGjS!ePV#eGj1LWy?rC?%GEkk4Sa6k3j^o>lBjc<5avk?;xD;=
zAIqL@;E{ttb(VqI1{NAvWMGaFoI>Fdkp%|k8o>dNd4kfm`OLjKVRF7={=cL0Xh-|>
ztgnSDmKgZP;EzWb^-*w4#Xnb&{#j}SM?N^pG9g3Gw*q`e=idsmy3)Y+1~xMHgybsv
zUua;j)dtoGCh=Nk@;fTQdIR6>im+^8uqvbyY^EPBhki7$-2nZ+#lThph<`A!jam1X
zL`=Fvc>Cyq@J@sOub~V-9*FqvGQfjFJaDqHi@Mvu9(u+^eiM5Q>@#rD!2b;Fr;LFU
z^fTjV;Glt{27Y6fexMu@-8q-TOt!xymLmetIXw1rOth|eF7>zpo~U6t^p5(wfl~&~
z(yInei{xR#(11ULSLxU@0?@Y%)_DVCcZB{DoIeeuMN|qrawl|wvAYvutS=e3Y~YrG
z+XntNaK*qs2Ci`}jF(y$Pru3`W`}s{hR27P#+)hh`8rp@<<JcSHwF0Dz=d5AJ~@QU
zI|lA@lQ)CFG5_xwICEV3k6X%1!8xD%qWXv#Fj<B?pGptV$O0w`ny6~xc@u?96gKgM
ziLxe&m`F8I(nKjU2n5ger137yt(q`V)C8x@#Zt_KoT3&N)e-`;$}>pJ=SNLEX5w)Z
zX*bj8;nHTX=*pPEBHcD#VhRy38=0%+Ogw3#ycwh=r}>nLr_JEdR}~Y_n0VGiW%K_=
zr-A?#O$^-;Vz9y!q~`>ulAx>}zL7>g&wz3LRx?rEL`@U5Ow=&(f*CkdG4UcfT~x}*
z0!Sv(1qhkohQKBUln&>~G0r7yqWJcRY9d1b9_V7Vwuw3>xM|ckgXLD&47LI$%++;~
zdL~Gj-kF?uM2!f_dGWYZmWgZ=6HUH&3yn<VnCNGszloPjylmnPsxtA4iC0ZDGtrz)
zA4zpv$*-AcOv9QguSTUY|Hw^DG&M1-mHb&dg|vl<*G;rE(TcO%5}J5F)L}zd(xm#?
z^3atMOKTImnkmojk=oM#Cf;T!P5e<=X>a1YH<T_WI+*Av6uxQVEfXIWlpiQ3=wza^
z;LNR(%IYpny6|79tBGzVdYR~L;$0JMTglT3$URJSH*uw@!t$Ppx@}SjD&16inmB$(
zCSdnIRF#yP&y@Ny$L@z{A^Go{_`pOSFIbrvU}B&N+vHtr49}1UnHX$h2!r^R%6Sc?
zktR%L;~jZfJ7vJ_I>Sv&3x!!m2#{++6Cf&ROi*1=$`}H$Z-G6MMGudbOQb5U2{cpU
zCOjrU0r~QqYQn_s47q%{@WRU>--P~Oh$YFs1!RIzoPvq5CdNHbTR45Ri7^b;OzHlt
z5dHSpX!+_u`6IR#PM=_6JpY!pN!hkG%<#RvTbh$4Pcr#&0xL|cG%>}*Cnn~am}lZs
z6Q8k{i7!n|HBn-w^tp*I=*bc?pFyOImZ_o4%D{WmP0Zlm$833y34gZ2iOi(^d*oT{
zRVtljwgAil8biO$H?hFP*CrO5_=-tug4&oEi`c82Qmvsv^QtTj{d_HLiHS+2!rz%#
zZsHp;!KESznTN~R@p9-}YR*(xEfnQX_LA34J|M~8n^<LHhl!s|tY)H`_`$?BZU|iI
zT&F9g%_i0}PiBR-R#rBe*kIydS!GQqOuEU$uYZTAu$U)rVRG)4wle>tQj0}O+rQ*b
zYNb@(D*Y%N@?D0!oxwURmr76F$&@y+pMAONO}HDwRy*YvktduB)$TU2hr8UY5X)W@
z`^3^9<{S@jbQ8yzmL?9F*gQm@R7U=dt1?4AEa(vvM}_~#Y>~*M!uF5ILpFqI4}HZ2
z_`8Wy%*;53#BrKS$;49*o_27?#96AfaKgel6X#9zvC!ATpC<k?QO!bi3l~gWWb#`m
zV&Q)#E}6Jx;<ky)CjRF3yE1g0mS-s?uB&gJ4PP-qdey`~0$dYx<LNM&H%weV6>h&X
z>!yi+MfqcTI;(d~+@*$=N<j<vOiVZ--8b=wh5xwf4@Wi?=A{_*-Y7Mnh1RFT`2|g(
z<S3QZ0u~yKRnI;VCM|nMEo7m~zv`UR;ZzH07M`?F-U2KXwNTtb35!SQrD7Ilj8>bx
zm(}g(2#-OQwD4Pf`7sNRTX^nIrIe^XY9Z@tnEcWf%2+6C;f+(_r3*t(Sm^eKI;~I6
zxoZ-u<t*gir~Gv#%+{wYJZ+&Ol?WT2v5?pru3+I=i&v+Muyh@(M$d#_AEUBwB@2};
zRI%_)8<iS(1o5M<f>PDOw+(Whw?MbBTEoH%7IJ8|#b-xDvY=YXuu%KDRM(QzErcvQ
zI!0}FD#Uro7I<7xu@JVfYDMU$tKpS@hih7>Wucyh`s`%|X9(+BXuKs%P)AfNoei_v
z?5>(gJImK>XkkMul^`Oj4d~uA3aeRypKYO$h2yQ%Tdh=5O1^C26*|X48w;;mc+Em9
z3$xQQsk5;K9^GtaVN)d1gdInzO$Fuw$mSMWSV5k=E@WC-`1wkhNy2bUTM=q)fiwF3
zdN8lH7TQ^O&q5D&sgcv(LRW^sf^}W(AZSPG5rCYxEOdH^I}6ao!rKoy?+B1M6@J%3
zd`H%f?V%S>L@NBJb{AEiKJ96tmj#}>>}`R^O>5pzhdOeJ9<@8IQMOf5`dR32VV;Hg
z7T&k;frX@nJPQLX474!Z!U)Ftab=JdoX;Fgt7Q4{zr#Z;47D)K3Kj@6{H3Zn1b1$$
zxtv#5#j;>q(75#e2uCd}{UaO`SQnIMRt*76F2lAeWgH8x1?HP?;gbq=;}*VLt#}sN
z4lTk%stMXqFr5zM3E0hrgX5_qEsU}-*}@bH%)JjSjI;2O$e+;`#t6Wpwqq@vzo%yY
zr;fKUf!?T^K~pEv?YGryAF7iqe9T4nwZw9-M}CgQv$CIX=&j*djJ1VN#bgi8NdL?N
z=~N4!3-E=Y<V>URLp+_U?;)Nk@}B}PeJjneK)1YiT_v7t;d*Pe=#0n$2ExKR3+pW`
zw6Ms+cNUflXMRn0Z4Q6K6)_{U*uoO3Jr%CmS|wd-VHwvE*G_$fg?=X8)lXSrVWow&
z7G{l6zqj!3Xmz!PEi*#|tC+_170zf4Gi|h5wUk22W4-6kgg02&Xkj-8W%hEt-%~cT
z7ppB5hH|TgA1v&!@RNmY7Jd{<Z@Y!`G3tOr%Ac7zJZpVnZiMTR`LNSMfivNs#ip^#
zLX(B6vOSBOUj%=|D0Q!eeHM;#Y70Xw`z;)@aM;4H77kcEB&iHv7CFdS%#axO2QpkE
z-0qH8AYJ}%uyTL1aLmHqHUZv{o_f;4?_8cX+S)i};WV?<Mg<#xSU6)LpN$k7XPIUe
zu2{IrOyK5k;S%X8`CdVJ(@yy>fiG}Fu=ohC)F;ZyGoO(EXMyy$N9FXY;ma2OW@|fT
zXr4U1d+I+Ht}&Vx?lO)RZqU`-UAM_MEp#p^?|G)?ggp6N!Su^s#w`m&%F6k^NVzRQ
zvv|fmZu|U;Q%pXVTIfDg>leAr)r=ygWC}lGgY=h>lHW!F8;{#4ZKI%#LN<!pC}yLu
zjUqPE*tAVfwUN)ynDK*LriJ`trBq^egpHTqO(iI9qlAr;HcHv}H#5RnEJ_bA^fRJf
zM);0=plJ9}8>ElffhEfp%VlglVdF^~<!ww%DrIey69W5RY?RheIZ#n~E5Cdqo>6U$
z{FIH>71XC~aA=li1nBdaTG7UHHnMDF+o)utvJKTnhK(vVs@izbhGgU0`!a2N-bOVW
z)oq;EDZgOzLrChRvq}vcq%VJwLSxnsshMtLua}|N2-^rzW=Kt0Py%}Fi_=o+bK!qB
z%FdifO&hgrWZGaHYul(}qdr4lQm)J4LP|ZhHVN;%D3|^&D4Yw$IOT{9hQ0yKD<-ov
z6q6-rM6Zs`X=<aHjT{><*=RCPdD+IRHeR#wij9v-%I9ATkMEXhKNoIngI*n2E8N5m
zQstT3O1T;7&23C5CbzKhx-g?^ok&X?j1i;!hG=R<2io|rxXRM5yF&i-QffOJ?QP7r
zvA{+L8y#&VZ1^_bwDFdWK{f{4=wzd_jdyKyx6#GM+cw^@(UnG4llemce+T(;qtcDj
zKO^VcB)#5C9o1LO?v(PLjUG1o+2~IV%cO;U)jxWvJ#F-|(VMx^Q_bk5_OZbqgIN07
zINDPsc%Op~PzTz<?=l|<JV4Ol{Z;bGR63^&u`$$!VZ*dB%tp=mO4Nq^xis7ker6hB
zBi9Cpt8h1yR1^4qrBrH&+0bq9m!PM{=8#(KWy7)I+W4f8n(|1x-cRKZG5ozL&Kxcj
z{F3F_C|f0!KQo=XFD2R6#>Y$;8zXIuvN6WSSf;x8edI$MqlMYqYos>rr}CA);}|s?
z-}G0hht3&q^WA*v1Tp1H{nd#!Fi2%-Q(2j8V+y0wSDj@CgMMP;a~ogS_>^7BL|8tv
zG4&y?%0J~yb-JC2F;GqGuWss;vgdB*bgl>+1TzICIJiriE!55tbgrNrWu5?;-$%Zp
zbLe>+zcHh1d~NgG8rE=`_f1`FV}*^CHkNP-<R6bLwb8t%{H={;4B`s)?=^C0ll+~H
zhEk*Df~LO`A^zUR^Z$fb*|>6{;1icaJ<2JIe-D$cwXx2|Pd0XPLD9lB@&+3lZJzLy
z@>)kW2@QAWhBiM`MZCqvRvQFA2uiivZ2Tzjc0t*+LjXPjZ<mdqZ5*+2vu!p@!!-F9
z=E)U#H^<_lW^PN34l^gqDFpjOb-$p$3VJ}$gEkJ)fHavirP#SIBu;!*y$E|9vvHh@
zmn(=Hh>epruGzS5qvbUDcdj@aXKd6Sn{!Ig(_BQ)Dy*KhagMIAag{5pw{o7#`EK}6
zZjybJPSxeV1e5#=0$jB5KLIX1<X^V&x4<v<Q7G1FZsZ>uZ;Z`(cTD8-K}x8Be1ltD
zALX`<JDfO|6?d%$@-2onyAkP&$1{eE&7lB=@7kEYIK;kIY306+M;sJ&P|QI-2PqB;
zJ1FAtG2=>p2L&Aza=@_)I2iJIFpJ*3mG_D_;-KuidXJpyAk6_B6u%p0)03YE`v12-
za#PAF?x2K&(hkZvcx;MN(m^Q)k2--j^uI$i;4ue}JNRg94(+5d*Gn{F$0r<=bplU5
z>3~C&bHL&FHq6#t<W8d-m3L77r;Ly1XAOLz(K8O7b?~-}cU)9(P|?A12P+&r=b(}U
z!-46bvV$rPUZ+9_RUJI<pss^@4yrk*?jXZKO$Rj`yx<_+LCC=?@2b46$a|D8I>9YS
zNl;#j<b_As2`*!X$#H^fn=E!qRTWHL=VVhY2W`5k`8%d~8wwNDrkLOy?U2H1eFvEi
zUgi)E_*A!ugN6>WME3?XyF&^~wu43vUUGsvp4307YAVOgalng{eEu8lxmhFiRd#pK
z^N!Sl|5tWZ8#`#~;O2UXI-5A?u`HW_S2CM9XiomZ^f$D^w2hZB$97X&IcQCPQp~{{
zw2hH<(Af!YeYSPb!9hm{?HuqrC!ZkK-T~>=i4v=BS*2Dt^-W>PTY~bMY8QI7V@g*C
z-Gsq!J9tL`8qeFKq+O6sJKuHC-3hL~4*E3|a2)h<Fv!7R2ff7*ec8)F9|ya;sq{SW
zpY|71tM;xs(82q{o(}{aASk^-ldcabLWc}-f;+0Y4m1&|p$@ioNEzl}xUgh|VA2v!
zFe<ze6TX^wu?UsuV&Y{tM0oYpa$q}{>|lxm$ARl$H2-s#!bgsU;tujC>A-XN;W^+W
zn8OYTl7bS1LTRHMjK3LTVXqG#;`?V(#yA-3U>x(@!6cz`JoVoRPjE1i2`Oh#{$s%*
zo%u<GO{B!+f8yX%2lE`vckr2msSajPhHKNo7h>oyh1j+;*|cGr;K-r0=?>2Km8<3t
zl+O}2&ldJLD^e*ohbw)I#HP7o^smR}EO79Z(6dY!u+YKRLe(O{eBgw|4wi_H-#Az*
zTDP;~YhkLQPRe{MgufF_RKC)|_uLj-6m_x6!D<I59GrBp#=%+#KQU?!);U=3V6%fQ
z4%9!hHgM+&MK%e%k;^$0dACqnkGc^yZFTU2gB=bgd?CH|l)8<p=7h4{!H>+VLTT)k
zT2k%wWh%Q+pk;pSa`3Z*{SJP0aN&!{FAnw!uv^eQg0c&n3Z0eqiE#<Kv~6^Nxy>m!
zIOyPz7_RI2g49WR)WL5KjyYh*2b>2@#|4MX56aa0-N7jbmmU1=;IxB39Q^6vFDA1v
z_`sop=eYFhM$U5K<PY?4#PbfQ$8M}}M!J%H!NEmg&;NuBXLm_dXK&5oG_N?g>fpYE
zM_l~l;F^Pf9o%woo!Q%1x#@sI+<0gY6+W=@HgmwiJqQ0ecwj9ZbyrxTwQWQjekh}G
zATsm0NO4ibMXHPZE=E6}N+S!npcvgwT#!vA)k1<6et^$P93{;SVpr{ALF!>C=AyWZ
zdM@g_DB+@{i)t>ayC~)2Q5O|mJm=yu7mvGm(nWa}rCn^;6Pomb{Dg}#E_PkZVlmn@
zD(j-03-Z5R7qmWoGoVj#w|BuSW&uaEKI7t9YA&7eK!Equc*U%ei^`&v7uKq{7_4PI
zPlLCFs=Cl?q_J9aYp7HmrAvO)aPfi*nYX-Lyy${`LoUzeNs=2}dE+SQF6QSb1nrqx
z*RsMcR2MZlN4^9=%gPXHX+JTw)pAi=bYyEC7c_}i;p(~|J+rD&ri+M+W-gk$XyBqD
z`7T~|ktMWo=o}ZEY_^L=!sfXhGsxr{PO0Y=7q7Z_%|&BjB<=ZZUWj~_e}4-#anaNT
zXGcDVCbNZ$*Il%6(bh#v7wx`FYvrP~FiFafURR|z+~B>XoN4y;G<vC>i}o(wbn%w(
zX9pqK(FK)L8`aW#om_MlLv(qdr&rBR`7viq5FiGttBY<fj=K2G#k(%LyO=>&xOmS+
z4;OJ4o{OF?dbt?tVwj8GF8a6_=wgr?9G~v%f=6BlxajAiKRGX?@=Wjh#D#<N=N|~b
z!?bxLWL_2+Ol`yDA=FSIIBd)#@jTJZgZjf=jBsJOu$i|nE4ePBE@CdeUMOpVo~)6k
zyTRFJ9`85knUCanrBsu?8Y=U2z4}e|*nefm#dk|W<nSP_OV`z|%Y(QH7ru*eE<SRR
zbdl#`l#9jl3epT7bm!0`UCjP8P<yeg{GkgT-X85@jEk`@_P?(3@H{yL<6TT}@i}vh
z&Ri-@bTP%nCv>}{d`#amx0xQz<<Y|x76RUJ_>}o}FgX4D8Mo6OD$7(C&%Yi39<86|
z28YJ!qA#hoNSHQHcX==`!qfP(Xc8Bfi;XVkxR~o=iHmPs%wtNs`0Hr?uiW732ahH5
z82<tWu44+-E_AVozH-6C<g{urJwH+=<|PhZ<yh)snTzjf33JuO$1`MJ09i?o3A|iT
zGFJ%Dxm0lSfAUOeHFf3%NBY-r3GhVsJbA5)buPALN2+E77YEk6ynGkw^@qI4#b#~-
zE`D~g#l=<^KQdk}E_6)!f%42!ae0B!Y4TY?p2pwdqF`H@w=+2CPn_lmd8eRc693|2
zw~Jq09B{G64K9!Dcj4qIb^FMBU6AghH_l}9)H)-`J0soml!GpgFnjZYdlrXW{`@2#
z=Kc_u2zW`MeoQ&$;<$?{aa4`tgo~5RRTux!lP*rVD7IL-<>Iu9KU`dLaoNQg7ia0Q
zyWxv2&bhd{NjkVS^p^nV1^rXd?$;Wz>B0knyW#(FIou1Ex)*+9dgRM;*?+qry)Nh#
z$_Vg}pw|RtcM7oF5Y?N4{wrw4@5=1LX}7r;k45eXdY9%6QHr(AzVG6ZI7-J+CXRe@
z9IPuBi6b?RlsNLokvJCVdn{5Q9vIJ3P=G>l<mELgEGU_2aex}KBag*VG>&3%JW9G)
zDjrAIr6HD5ag=z7OLB;<0rTbE3hA12sg!(fS?KXNXwsFt;V0rK8xQP!HjZ)vJQYX7
zYgtbUTwYLGPRXa^NNx+UJR?B!d*MxuQ!5DJiek9u1g#WDWdRP}4Rgfj<ER$LYjHH@
zT<Xfz<4BJq6bEgnA!heN94|hcuOz^x@kKa0IgZ+K)QLlhBP=GU#*q;Rqtkp<BRZ<4
zz_kP=b99AzoLb#D>cvrC%$k$Rj3W}qne2Km3ECizECCt{N<PiV7MP$>9618BBb#0p
z_?3r}ug1|Xs~-7H;%FL2_c-2*qgfp4)X1B0ycI|DI9kN<dK@h&8Atm#TE#)DSlY(X
zTHrSxa@vTF4_Y~e4uVhG@qyU%2nE>MDUL%e>oVx?&;xC=I}6$+j<*G1P{^dUUE}B`
zQi6VaSNM>iM;txl7!b$6IC=?(FcbR5(Ocj?g3?`Nvh<5%+TC#fINleW4<7Ql$q$Ny
zi-KlQC)W#|Ff@)~%rPG&eGHFdL>zy5_{&3X99kSNczDr6G>%vtzs7MO4m}PdjyZA6
zjl+z?iep?HAH`wE;V|dp@Z)gfh{xeERi>m&zaHkT{Q4)uIZH#2*N;p=n78$lag2)N
zL#~22SREM;F8Cj<nn@}Zs`=822$`ef7$f*&1!dE&Pb1^wm=MROaeNlX#5g{VV@e!*
z-;^f>W=P{|%9BO4REhM18Orih+<a61B#xz3Qd0LSQ{(tNj#+Wcj^m3s_N`Z@#qlLW
zpDVL<dK|}($}_os_bM|4-jPosr@?uNlo}?jS6F_1G2gs6=Et!vj`eXYh~uj`mc{Wc
z<9=3J7!Pjre-p<d4iS^S7Id+otS*TMAAtz?*=cDUUGfLzJC3*|v?`9(aV(Exg{ZD%
z+~dLLA2#tl*VK8uOg2GtGliq9iDPX%c!M(w1vbR7k(!14rZ_gou{Dk#ggyMAvPA$Y
zq~x|Zeq<tzNu$E;LVjl){4B?Tb_gSX5=>fn?njj$$$pOG7s1&b=lj{Qm%EDibVqq=
z;ByJ~#j&4z&ejm0PC$B)86HP*4<$Stj^jui*W<Vm$I&=`qi5o{6vr|8HjcmIc&EF1
zB94<>k^=wEeCw#3=3?xaLU4+UeSV1G55a%HIUC10A$*=$Dgb4uhlK(c;;1w~bW!lz
z&kz0ku6j8RQnp^@zS>>=TU4(wXTFr0EzAB#Ft5dNwR##mQs5>9xO;oZ@8MP)x0!fx
zNMB^#;RY*||Hs@ely;AM#j@<Gh0~~<fPG^fQy%e<&%^1lIjoXNGuW|!hr%9;cqr%v
z)k0iN-Bo#HP2yC+DJE!|pk%^BQGw58rm{*&&a0${QXZc6@QjB?Jv`>&$%pcfdnh9?
z)t2^9>9~Azn)HN+vL4EbDmi=1RMHWpv#GGWho`*2C&bkJtiaDv(nAGdTSdW1ogW%-
zPO9voiic`~Q<XBp)z>mppQjn!RaU8o<5u@jLvT36fLvAbknX|qV0#F8kUg~b(7}V^
zA?)EL4=;OAJ!E)j;Gv<1njUI-sOO=+huU=DAhnLicQ>flyQK6!9Ioqu*G776kdi}G
zGBZ8!$_B5N@YY7e3+|!Bx};=z!Nr;XhO3Rd;F?UfhbA{dJ2pzZoRZ^#w`R&zD)@?r
zS3NZK(9FYY9(d`77e<<RI5t>q>;>0YPOl47f8JoVxrY`WT6=iI!|NVeau(gQwC5vi
zZRO!)mlRs^z?e3|+O{5FZ=qH%65K$!IaF=u1vgx%t)quGJ@od_$HQA5I?*-{-92>n
z(1iwgc!yarPvU%Q4^frj!S$1_9=g$8gViTLiNva;axSY@r@iN)2fa5;?d74TFqQfb
z?2v|3N$o#et*I%zw9?l@KMy0gX?y7J1(po(Fwn#M9(Wt*12IkBvf*S0c^K?rm<MX0
z6NZQ>lur#DGSox!!(oEqg4uLvaNR~@WK+Yshl)iI_4uS^HRkbTh{D3VLWT$4Ibw87
z5hl9DVXKFA9@cw^d+<Db#*on@559+wJWMO7Bt7JL80FzZ4<kJ+uUL@Rb8b~D$f$8F
z#&ooYu^xV}k~)TTcyK+3H=f3M!L=P0dThLh2_7bLMLe%g^1!Q748g}VdtLa*P<670
zDIVXwr8c@7`b3OKKYuEcgrk4%;R_E-Jbc3@GCj=qu)xD~4>Oo859Mcy=*;mjOMuye
zQV-R(uAEB1LFb8~>65QKEEJ*P6qv4yJbX=6Ljuq6vejaN2d_)xM3#D3=3%9W?>&6$
z;X9F^%Z2yoQsye>yFye;4^^p(v0mk2wcs%G>4!Cpf=H4FNl3bZll5@K!%+{LJZ$!`
z)59(gTRd#_u!G(nto|T0FbB3XLx!l^n3hA;9|dKy(dWnCE66<mNqC7@%zpOpi-&z4
z_EYmvb+^Z#^YF~zz@9x~ro3jw6{m`{|CQ<F;h^w2*V-YW_Avc9G{{fR`h88IXKv1m
z{N~{l!^DL2_`X{8IM<F4KFL6HTl*xkZm3ERGpxKB_lJiw9?ps6=eS(sXGO0bZ>KaL
zuAb+nF<2d!p2`fo;Nc<@K7m0A{LjNBZZ8ScOz_uO{LLLQfhQ8U;^8WtkU;(f{_${)
zJ3QTWJAB>4xUylEe?8m~_@<ygRg(|Zi)1bfQRcRXJ3{!bhx;BLNdz753C@4qQI}@3
znolqZ4rfJ3$t;jS!30VqP%?o+3A{NilA1tT0)+)Gk_g8AZ)^^Q*#yBXE@)9fiwSCN
zj=WSZE32VeDuF(?!;dELSOVnmrFg8KZxr!whaXR%bOHp;CP=@R371WvTmqp4*z3sz
z$|q1MfyxOymB7;pR1}gFekOt5)gu)|_1Og2kyVzb$K|l~InhdHl?19LP%VM#2|S-b
z=Z0A<g{MVEj+YuV%%VVz1YSts#RMKGkvPF=5teiT9?*g>WXTCA34{|+6ByA%rTza;
zhIZCUpmqYUC(ts1ItkQG;I#xAiz(D2O<>OLFvaQ%PNtxd1R4lHe!~Q|RgVy4C(tN?
z93j7TcjRTN9WT8k#3(?{D+!RkDkybUx=@4@X_7#+mC}?78)h{Vl)ajZzAXf0-&P5<
zPM~`N?<Md?0&VDu1iB>9HUZ{Iy9C<P1FvKecSxXP0-X}bofdgB0mi82((J-H5rVfw
zl``L$spPz!z&i<aOYmV4K{7nZgsvhMbS7<}g*1<nJrd}dK;H!VCGg43B5dMhdof00
z;(chwD_KwPk9@E+yT2Isg9HX7@O}bJW2PuIvz3A4(Cj-nfguU(O<-RFLlYR5z{~_@
zB`}<!p(P1?L?sDm3B(id=$r&%2{;rhmBFGXU?yNC_y*^I^Yd2awOtZ{O|K5fd>}*4
z?LnEY5TMxH!b&26Q34SA0we{^OJL+fe%}i9*!p1tqXlQoL;lzVpXHm)rtt|(pa&B8
zG=YhtHDhol`5y~BDS^p!)S!UFGKC%!3O`HW%Ym8G1f41<tDh(E#Y4Q7|NaX+UC<d1
z`BXBSxs<@#1lA?+_N~y|1m-0$UtlU(kib_7EKOip0t@MoYmL5U-^%Ku1U~;KRP<+w
zn9RkZX-NX#B+zVy!b0Y^34E8p_X(^@V0i*n{!~{auu^nqYpv^Pq-0V9%jyKyh(gTn
zR8Bw-)1>tYY)D`u_n!oQPVjxTnVS>XlE9A%Y#06?*d${s?H`!=gP_|4W%c`#89SIE
zV#Hm7J{W!HLreo6jPgqYyM^XGg3cL~$x-$v@GJM*1THc2%Vi%(;BW#*5;!QThlGo0
zDlI&kz;6kh7UNR#SOUM?lTHe;<AR<LG;>_e@4`PE_muD$r};+$XGF)d3H<rc@^f5A
z0=HYLa3X&ta6wcr{(rRGkj%>o{LKyDM*$yK61Ym^6S%|upWDkW>1G1|CU7l*>j~Tt
zsmlZ=|B->2q@4Jz2N5qEc$?0@o4~yU5AC4-(98{kGXLXbhh#p$_Y-);2bnAnm?=K$
zW!2j_IFr6A=p)U?k%5_oe7<iw;1m|1h@h!H%Fm6E2|q~PqJkC^w78&T(rKl9JnADo
ziBJ-c`FPyN3Lh(dl=e}^$Gbis=7T4El=V@^M_nJ~d_3vnMIVwMd?Qre$Fn{v_;||4
z(>^9PQTgr1Gd}nY6$`&EsOaN4Uwo_Mqmqxxe(+^TRUcJ+<gby%FAX~IU*@rC#N<Ek
zqnZ#PpVb<E@P)$*e(?Q6>rfhLx*vSkq4)^<2>HB58VK;KkEf3o<QGt?j|?9**>o?=
zuORrf8`biQpjv`cn`Q`Mw$`J!eYEt^%15S;h>si}FZpQTqoI#R!u~9ddpFEE@{2Ws
zY#(bQbqV;D3%^-<*~cqB`W=Wg^YN+=jzZ;)eZ1y_UlP(7PJx^zV$i07QWfQ!i(V~!
zye<GabQ+sl`)KQ<osTzswDB>va2h>H4V*=LA07PQi@SG(D?0k<EC3zyrjNG-?j&f*
zhu_I`@$t6c@H;(<brlM`2{ZV0B0cb)j~+fo`S_5@;G>t1p+1KB=<TDAj{!ag(g{qY
zCK>&F^ryC4A#TX;`@uf&_~0OO2tHs4uBQ<&&A6v=mmb6r49*<v^Eo6K;^T*}CH5Nb
zV+1)q93QzpG#|PTgQ+_tSnpBdYmKNOCi0eBfhkg#`N`2Oftksyx;`HbjXWPCeNe5(
z3@nwA5R_HlN7Bdh=L?X@g;sB1CVO!&<r3qf8|`C^k1u^prz?Dn^YMv~PknskW4w=#
z*)%Ydg&PP>n&1b2Stk0JBKCjsCkcVc<OpzQa3D;RK4S)o)im|tn)+OTFSt&H&D6%(
z&7hG!7W!D^W0sHEKIZ#az_n8@n-k|gFoz@h!QMVkPy%jo)c+NuP@x{hI4RDE;A<b>
z_*m*=u?Wf%LHT!t0a_+}^__?s=l-pz(t&j2azS%$g}(Q(%Ew(F_k67Ov4&Cbag@33
zV;$q=W1Am5+G4$rjg%~uzJbANraswRedAJilMg-;gm|-$Ek3q#D`>8EJrdcxx)JG*
zKDPVV?PHIR9X@{YvCGHc)e;|Yv6Fslp-x;KJX++F)oDMA>Mz_bR;TgNB4qCMv5)D>
zy<&gxlng#hW517IeH`FMG&3^Qt;xrg^sk^0Q{a$~!#+9=kXh2|HTuoRF~+pLa?{6g
zA18cV_VKrmlRkdudR#AE^pUzjK1F_!v<sr+X|A>Y${$=i<8sdUI4c10IRVc5`12v>
zF9Fz{j}75NIsWJ4OlI~aVgF-qXYH*Xraf1DT<2Qm{V!(n{_sEa*vSaXH390~4`03%
zz9HQB;`8BuecbY4HjKR2RK3ltxD=w=JIsy$!W&wp{O997H)L+bNj#E7z9b4IQ8<Z|
zBpNJ`3M2!E^Qj~Glb~1m=#_#=v}>-?hYZ0Z&DA1Fq$PnQQj>v0$RVYBizacrsahh5
zV#y#7e9TL60gm*{Aitz&EhXsm8Ii}6D4j&5Bq}FSMlhdB;^`!wNTRH$mP?|%08a`^
z4Y6@K?D*-poM)0Cttj}<CQ%^?@+q*XsmdzBbAm42tX4^)YBF%<3rRdLKy^XMsg^{f
zr9x06iF(5%7UCC^U<PusQWD)S2S83jNn%kFUndbxLM1<m_map+q9!%aV@a&OBGpQw
zb`tNNR7yQ6^GfpaR~pq}uc1<1%7-KMlBl0VW)kcE7vh~<-q?L-R-|DPSxGcaqFEBz
zNi<5LvFMVMgy~A_ehs~r#7jxO%M!1MA%<QJovoJks=&PV%Rv{FtXpwkxJeSc8U4TR
zN^Vc3c@ixctR&heVa<xXp2Urob>9%UWfHBDXq^PFJo6%Rvu%;u-D|c<f|gV|EwvSr
zG_OMvJxir`PNGW^9g}!7iMNti+EeM2#6BgsH_cX7AAq-oa91ix2A88Lz}9Z`gW$9J
zWRDzjda#;AGKst-dL_|2iJ?ghOQKH_yf@uHiT9J}E4om)UoyB$zUy@M2g%?*IK4M0
z8C+x@AcO~U3Zs=;Ya@e`;Kl7BVmkJU5N~h~PhtdTnuMK1ZW3A&dJ>e3CJ{@bS~r<v
zQF2#zh4wE=39dgIbhQ|Tn3s-uIoe6$!_Op-ChZBkNyL+&WAlzm`}c&&PbA?B0pc;2
z<dI2?N@6mToXjLfCov((1I!r1HMKANXklfXFmkM*ylVYX662X*>m<f&x}I8AO5^N4
zrok&hleioXNu44JFOReO2{Sy2c}dJq;<F^CCNVRKSxJ1J#1~1>m@moyO`4X(sreyR
ztFCRt5vM0HL-2V!o@P&NsLU3^bCQ@#$@Daq0--d@7Y?P-2}M>!m?R65_=*;;lNQqQ
zOY*#m^@>VqHTQ%UlgXVS4~6sa4Re5T;f9dJvLwDuVn-4`CGlMn%ad5k#7=^bq*##*
zo}{rViIwzfxw=huMZQmhbl&msYQbUa8UfxLm9ajF4M}WE;>RR53g+e{wlLOQaXYgq
z>1_;c75pC__N7keXnxY|Nu1;ZPj*V@&PaVLrV{T=Vi%M4ptLWEzn4XRPGS!i*G`G5
zeo5l)5^1+k`(gdaUcqM*t=gZ&uSpz8f{)Z-Ih4e~BraCSSv@Z20q3x2svM8}mgM`0
zagq7Jy(Nhg+(wc(OEXA+l-~M9I-NubHS#<COcyN=p2%_S@r=e>GydRSu{Q14+B7OW
zC$#;Q#CZY!OoIBUoJ|+F15^*5>_K`diOaM(iF=$&5?8o3lekI$-wIz%;u@D*TlpVR
zC1(&H6CpTc4m%e9HyJ#=<d$&7x?^EJ2IO`UcLdW~A7NqZe@WbDq8^Oo%LAWP@<<*E
z*2&?sMCeR{lsx3mLxH^Dc`Pgi^8!hN!{c%YisT_R4>j{pD-UUTKpvjVL-{-u%|o#~
zJf4TrdBIaniszwJUht@s5_u?@hcCZT+DfUbSEaFu<<UGmMhz#zEW36^_Wu|ulZSG7
zf#px+fpICzzUAt2Mx@792G4JKDi2TRp+X)i=3(8ItY`9qCz<fkF2v6Y4xeH2TplXr
zp=utU&qL)ryxmc$LR0rd+8m6GTN5D|St_SmUXZBO^H3uX?9MdXS*XDac_5YY@S*@r
zPFB+e4hbp?N~R(}SWq<&84vk2yUVrz4^LkLc2o8JUoYZ)KZs;X2o>SH_ndp*%one>
zQdBZ#R!SjLL@Gli<=!*T_hyQ|sSrXaLy}AlDnl7VDM=YKWcq#1_V<6D{j6u5efHUV
z?X}k4_uRAh{;U+5r0{SGkEGBvg=Q(VO@R*3JcSl1v`nE@3dvLiN<*0mtHM@p(p$Gq
zp)iH}Qn){bHYsfTzL2R%Fgu@6n0RSyiN*rc1F2|y(Y+sJ%_+1?VfBSLQ~MMM@IsiH
zxvS&%HIW}pp+gGYs3ICMg^uj$!ep0J1YFZebiZ>d8a~$s&J4M*Yl`cD5%NrlVM#L8
zTjX|6p@%RB?{fV1OyPxExl4n>J}LA~;Y9~y9rR1#i4-pCxTNFB6#A#IUBwO+Po=nn
z0&k}=HH`r&JVW0|qf8plrZ6ytRg^h}K`9JQ!KG`Z@EnDwR4GhMVQ31&QW(YN=m4n*
zN&EQ}My4Wo;Ss3_2bjprPo5}25az3klf(fYox+$@gund?rAlFJ3cm_~WkL-<Tt5G$
z6duiszbq&j0x9#6ajbl`G+s~^do_jEQh1Aj9YxOTDNIV?4SH|s{2(_%pPnr8+4P$n
zCaWdAolMFWQz;m<_#`DwncK-MucmNzp`;0_3);20Y>G0Lpe$^s;0PfX{3h|zPa#NQ
zF7=;6m_jCnSt-m;Axj0OFg=ACDNN;nx?MSYQX=j&>z|g2(4-%mD-%GQ9U+?ZOpdQq
z1pQ6GWP+T(o5KH6n3KZ$sR;jhRGTDGn%_&|+~f%H`va<XT7+uOl2^WqeV77i|I5<+
z6nE+1;}jOBupotn^xn(Tq7(=NP8@Ys(yAy)1zwsfFG*o(3M=SNDSSdxHfp+D&}AuH
zQx5T*i5KmU$~y~%mijCeft+vIFRe^PklGY!4c$0}!zuip!rBzRNa6bwen??m3SXwM
zF@;U32!nck3SXtLAr--@Q(E?vHl5Wsg5ciF2a!)Jd_(KA{I1y7LSQ0YQ|x++<ZtP~
z$K~%**eVzX;O6Cz99AjpPvIB(YKjrh@pB5hIM>yTP^@>d?++_KrEm?voEm0xyE$yr
z64gb14@Y<T{Jkmc6Abye?PRuffc}}nAt5J)yk@3fInsB=DCBQcOLLjbA9Uap&ZO{f
z3V)_>G{uPRIG(~^bQR>Y%-_P(j-{}CaY<U10@JTfP`p0!$rMfrhNfgyr|GeMBfGG2
zrn59|3OA;alg9ZJE~Idks!roSdghTx!YhKgDCi|YFQ>qK-rfF4306fIcKYf|HDvl^
zu{4UOQ7Vnxbfnl4=?Ge%8n`KqPFrIo1*I>MCn!2iOpD~DfppYgCc>weP2=V?x}?!H
zjdE#}PosGnEz-CpjS6YhN;3pJZcU?N8dcM{EsaWPEPh9-oJO5<QmlR+F$}8+o-l^I
ztd@?DA^CD%BaPcRtISubiyUU=$x6*Metb0X<bmWJX>`0jPKNLQb<(&ijl0v}KY}~c
zAO<7f<U7=8S~rdQl<HKh9y?W|={;$bT^?()L(XnbHb_S>m<<J$(#RJ~j8rhPpe&#W
zCZ0y(dQL$a+D?hL8ePw6ESM&OHcg|MV9r}bER#&5Wg2bMcrZ=BLhCf{6FqIaJ6V`U
zk?2<&7TBHS>tgMxN&W}nU&8w-^HAl1bc83#?z7hqrO}RENaL|I+OvtP@ka$Ec;>@t
zhKG(cd8=JS%3HhVD;?7j?q#QR^yi3m-e0Cg=XCV9sJ{5`(=Cn1(-@z|gfzOR(S!4L
z8qcITrJz?DYi1{(Orv)iF}sL=QTwK&e_MUhSkN(twMBng`N#<Q37U0#oO1H-YX3Bz
zqCE2?{s(-TM(@{}%(H0>Oyk8g#-=eSjlpS*Ok-3U&xu|SO=DO(!V4WD=%dY(Yf9w}
z7j-@_=m<eqv`Vr?wz73XF75b&cy@FeW5`Upch~K4nl)WIpPutl8sn(v&!v~yomL7V
zLtmknKAPbF*_v&VG}**7Lr%j=!%pM1G+s|5%_gQM`4@Xq8gHiYRvH9NeM3AxS#*c>
z5bBeEx>?DTG*VR8{8)qIaZ;6TkcKY2>-_e(DV{Z0|16o6ymmYi%t^yd<M#uxOd8di
zwf52o)1b!^J=ITxT@D02`FFgFnZy71S&l^hAD=6|(J*gX8q+z5R3uf*NMmLiCu!3(
z-k~|t_&SYm(wLpbyJ;*<<C8T0m&SW(EK1{JN|MI=Y0OPy9!KScIMH=Jpoibr`or}9
zi=y@5<2eK!nx96MCQTQlK_H`#I5ajVyB>}$<RG%8@kb>>Bt=j&X)H-ckSRnZBBT<5
zUx=!-ERE%9e8G}wtVrWiQSF*EKBEpV#EGf0iUYiHa%CD<4;7MGO_2oF%CF6uQl8I6
zTWdwTqbkS0Ok+K3NMlPHUkQPi9+ftwu|e<~1?5vYe@O+zNZBS4WrYwxjLF3iUEikh
zT^f7S*q6rEG`>$`M;bfR_<;)Pm)MrZcB-^X>mMm_?Ofva5Wa?>F07w@B)ZN|Y5bhV
zt~3_*Nf4}NcN!OV%dDTx?V(GQZpvPV%ai*lY8pq=_$!SAX&j_N()f*HU%0n=ESGRG
zhxoShM51Q*oWnGC8vV9KA;bQlY=1?lO@9jJh@iWtmtZD=caEj;cN+hsL5Lng;!pru
zf#@;EIa1t6`6uW+TO%N*(`lUH%&Fow75}DjHjSH9lvHt!lYbglsAP)G$v+*T@m!|Q
zZ<7d%bTJ(PQe8@e5)v<nJQ1sCg&S1dsG_)v5-NIai7_S@1;|lROa-HrJ=ZTmN<<)v
z#MX(TQ%XgyiZUw7s>o9T6)TRHDy>F<RK#v#&@}3bl*mgrt0<?UvWhA!nM{;dQBjRt
z>lPIi)Cl5<@Kd)k$CjAbL?smkW%H>hQVK?JA+>LUR<5Svb`=d&G*nStMGX~qtEj7@
zriwdM)KPJ#8rh4jvs1NH)K;UO5=n`aU`mvnUA{}juu|Y<J>FGuxOapD##ZX9(TE@p
z58XgImnW&nS8*@JQzKxan2NZHPJI%xxMYr^MlLaXK<k7G27_Zxfw)C2Q8`pmV--y}
zNGr#isu7k{BtySMGg^n56!hnMg)LRIQlYBQRJ2x6sN!iA15~t8QN-p{bXIYniu+Zx
zQ_)_<11j38cu2(yQwkoWY(Xq{W=`V?GMUz^N|oCw)%+y(u!=`ibWrgaZTE*X;F7dw
zob;%Q$Lq`g%#lh@ksBnEe54~g_&&e(6m(J1RYhMF{U|?+(fTTSt6<6QD)>kb*0wiR
zR9oq(5>Y4jhjPvKjF-JB1-ll+zMoRihXVgyV$c7QPpEj3@BBil@-^c5LYV$4{#&Rl
zH6%*N%x6?QtKt<E<5Ub(F-XPpDn?S0ozh?xLuncn&#4$fk){+-JU(?{L2S5+W3Nc;
zGHV#2g6+;&(q_V&$|&kV#fvJ&s-Pt7`)CzoXsOk43V+)ag_TUM5oh_ARJ^QW$;rHB
zl@q0B=1~6eDki9SQ^i{<CaQQ<#T%lVEO4#S*HpaD?tGq{B<MXkMdT-|!~~Wo5|uec
z#pOM6ib`Hp>V|nSwv|@F$C=o)uEJ2UNX5r0Ocj=j>71@r*eV<qfr?O#P8pY)A-O6%
zH9~y#RV*M>><#&EKcAR8B9UPMHA0k~MnC*B{x(%NCwbe52u^k?2g}%q;jv;KPoAmb
z9To4Z_&|*g2+vY6TgAI<Yha>qXo5Js#LoSniuY7}`Ey~TL5Vpk?i!ll>Ent+5<KJl
zp-L1E%vUj2h%~uoE)Pn7L}z<Gv4HMZPv#|0G4rJGLeVan#Z;z>^(wwnu~fw;D%Pm@
zoZVN!9(}6fGZo84Z7V4JhYC}-yK+~mSjC2(OAv<l=9|!`Z_a8pI@vw!hJ1qVu2t~`
zCFCs8U18=rYVU}0asNG+`{g_~Ho>#xJXgL!#YPq1sQ8v+O4Pqa#n-Haek;I==j<xv
z8S3gc<TrUP@z;>VcPh5hH&px}wBZhoPF_>h`vxW0uOC(XJzb)5wsFE4nBe*7ohp7(
z@t1~U8h)myaUf{uqhUAgPQf%()v#B^K8{}%=T+>dLR1`AaYDrb6$e%Psp2Rn%yG&g
z&Pz%8SHT;L<w@=3-&BwuR`I)F{@_$87)E?x;;kSl|HZ1_m;d3^dOCKD;?Y%-(OtcZ
z%zPe@sW&Kgl4{(g{Hx*={XZ%5fXrzXXE;l&Rd|wubjx}9EGLs)3S&cD-~d!{lZKKS
zE~>ah4^eT07FBzho&7;B^P|kz5Lfv4F^R`sZq$&YMb#G9qLVnp*e|BxmECb3`e216
zG}JsMpX`tr@S|KxL#~E$8p><P(*P|xhI6wPh5RV3p^S#IS`-$95B@zMs)xrtc*=vg
z_muD!4HYz0)KE#o)Xg$axZJ8m0yE_|P=1t}Rn{V?f1dKVcb?44+cZ?u&`3jL4YzBk
zu0`Pq?$uC(@@S~5p`M02G}O{?r-r*U)YhT{ChSoiEeb3`bC73@044_7;Axb*HFSP3
zPUapBrAjFcG&Ix*v?A5l(5hJcgO0MKAzwqB9r;m?2}(v5%tLk&c}4IHxRB6Lz}hM$
znfa7m#2mKBGd@i;G}Z8^h7KB<X=tvYNW*;^T2MBcBb1WI<d#CbRvKChrqbCM)mx~c
zSSz`WhMwaTUh>2cFBvN3ehm+4Xs6);4Q<)$Jnl7B9%Rjv6{gcw6D-+Y80cXQ|Lc`A
zvsca|T66@7kCQ&8p`(Ugbmp(3LsFeIbk)#}l56NfeRj%W8H&voA7?R1>7jukDj2h%
zJBPzZGMSztXM$bCd{)9p2Yog4)9`_Y4>dfY;YkgzYnY^=zlNtYjMOlSTCJ!&tzn>s
zL0Yu`a{$#<BKeGlXSHZ&9ryB8+7%y6IW-K`FieZKVse`t_fihgqJ6E2QV~S_a1GCE
z(QZ#}w;MsX;Uffo->59=oAZK((Hh2Un4n>dh8H!A)$o!QZ5QOuTW+)DBix4fGToT|
z!%eEY;@la?otERM_LwqkX_C7!Cu(?A!)qG2Ka)FGxs&#%FBER!qj+y<m`tzM@V16G
zHN2%k*I;Ov!X`w8nuauQjY+72>bXg7YGo_j1<IbXX_M7*#AygMeA-H}HFz9l^%LYB
z4X(&!VP5(iQ^{y6?5JNA?m6UE#ta*JA+hjy9=Fj>W&NWQv#2)>(=<%iFoObcViX<W
z&fb~S^IC};BZ)cR>(1PFMa|UG`}7CFzbEJ%LAjfeEwU|Ya;}DX8a8X#qG7&<k2HLy
zVWoxzGzUkbhNT)7Y4}*fV%q3HoF^a{?r?z!Yk1!WGEYW)qJe=9muXlo3Y0q+U-q`N
zf<DkYL4JT<@TtgW<|+-VHLTb0m4-DMKG(p^bsBygQNVD7>kq`&YWRZFf?d@0Kzz*E
z=-9=V8c6SZxzq+as)kJ(#yyvN>y3#h9^%<3?jet3<ZYI}*6@vnUG#7b-)i_y!!`}u
zHEh-Jy@nsy1n0nBi7vepY={vR8FG>0{c${Y=51*Qy^C``on%An6C(;3cyZ$3+@E-P
zJkP7&jG26J4<~<)Qw_h;Gd1iNz57K2&w5aJo(<VNPdXqnS?xhud_+ODv+>_F9M*6|
z!=LQ+fq09v@oJfz-!=R}ujrki4oTS@ReF?@LzSis`1szw#NQhJp&RRXS;uh=Cpc<!
z+^gfHhEp1D)=^H!X$@yI+@zzV4(SW&Uk(4UgPd@T#90mJI9;rdpBMCkpuBu*w{l6t
zWevsk2vO~dhN~Ri)$YyF(Y<5@sC9#m8+Ek*H$l9z*t{eu?-tXs@@RxkRzi=;5Sr=8
zKY68e<mxD+M`2a-^a#y~7*>RagAN8@<z;CdV>%_s5cjF9j&{c-=9kwQ?E-h{xLZdB
z9k=SJ&hN&vVik2%(ovPq{wr11@x;k^6&;MyOXl!R5wmb^PO?h;HXYSiY?^Yrpvz|^
z$=A?PQ^y@TmfI0tTx}h-bo^7Ske3W`TSv#8LJ}fVQ6A@HysnOVIubfwIvKx*J<=nH
zDp?2dqZ;V^00&mmkSe8wzs7eAXuNk|;|a}`n2xet6HK<6VB}dvkK)h9b=>zsvhk0}
zL6;H)ziLGJsYx9@bTrY?l*(bpbu`n_Tt^WL>u8~)^4Y|;_3_p^k~&)IV6a+-ucdNY
z3Dt#rl2me`jy6KuHMd3KXz$k%9F`b&xUG%{bUfHO!4w76r5<FN=~$Vj?b)f>u}5?~
zsuRI7!aXCD8L`(o=y;6M>gcMYqp%e5);j4R@Ew5x$#>RK<+u37e-l3(lL$)IO~*TR
z3z!}k%$)xcJ$3Zb@tlq!I(q97Xx@`L`s?V!h7QI0>Jg0Cb4H>c%NU6#1f|lR(($y8
zXLStJF@XMdnP6WaF5Ej$=a8@PQck-Q@kCu^kd98BbErLH#0_S#D+w|~Dc&~a1s$Vx
z4AU`O2VHT5j*&XPyDk2_9>Ib=5GzWxQ)snOlqw^U8KdJxJ&JlfmOcGh`G#n3L;|d<
z3@4M*^c8xPjxThq(=lGh1RXPU%+xVa$E!L_9hQ#QbiA%3r6bL8cSqBQkG7b^fi|h&
z4IPtpteKv}^rnvAm7=!<B{PN3)+`{S>gahTuCojKrQ$P^nhyD6W#h4!!C|{iYVcsw
zgY%LPPM2(&Z@Luda0KHD>IuqxpKdl?A`|LZ(j}SEk=5}weYj!a(xdUII@Vu~pW32K
z)4|K>f|5CSIsT50SvnT;DV?~Bcvr_f9rJbkPt^RLjyXC$-6*{=Sb1N^2Rc3!^$)ES
zpF|ItD($^DIakMq9q|%R6qJ6W;3LZXwKR2%v{1(a9s8~{DRwA6v36_Lu!strpZu7^
z|F3w%7nCVCHC?J>1uLg@`n35($1)wQw#ApT#py}*dP7C|Gumr+vSGFO8XXr-ODj2A
zk1MNmtQO2KC0g?Ga}JhYlI-$YAy~1mlWg=$9ouwlXRmd9CB)dEV~f!6MjcZZ#h5k;
zX0uK>jyNyB*71#wZ|S;?6{hd$FoNGIXpKtpwfrB%<&T20p&dGQ>i9*+0gC!{@+Td;
zSfP%ebsRbyW6Dk{7}~aQkB%K%lzlq(>ew_@VotAn@@Vw^!t_@UN(Wh<lMkIo^x{`K
z3Fi|Xzv<XqL18*9n6dGqBRc*R9XY1ssE&n?D1UKY`aH>0?W)8}G8fC_|E;6#>?Bom
zf<CY^c8cDp<FhTwNgZ?pI>Q+qEOuVde+4}&C^OH|E+0gdT+s2Ks7IZi{CH`S+P<vg
ziVoF+X5p%i8w_+e(Zj@z267C1VqlqpVg`yE=xd;#ff5F8G7vKuBpoFUlrnIKfm#M~
z4dfXpXE4$_V4$=StuU4`FnfLLJCs7MNOBFg{Qh`Z12-GsnmdC^kltdTf`O_AZZmMJ
z5rwG8?1@z}P|*NaEx8uV_2S9~su)pJ4lZ<(KD#Z(b<%1EsvD?bM3FddH^B8=F5R+~
zVa=j7&6-BESWKq2fjS228mMQ03$k|_(Mt4PMzjNgOWSvgR=D`fRc0>P-@{f6NJg{_
zUEe?h(S^L-(NaEFQS*&x&j1%{*$N9N2I2-DVpRqb1_}%`Gtiu^@Nol84g6>qQ3H()
z6s5pL+a{v6MPsAdxZumx-WCRu2H0QrtEGWfLgojJXs<$R1J{;f3x&Xxxs70oDDd^1
z`vvoWpluB>#0iVBDz1#TH}EiZVxX&mM~rA;_fdl{1JQ~wHy%7@pre6K209y2kQA;s
za~+wRD53|yk;aadsPk?H9yid7*4!WOZlH&Oo<e>ah23Z3LOd6;f7zGpZJ-bPm{8c+
zQlA%6h9?X>X<)K}Hx2YR@RWfU4U9GLw1EKzR$Pb;Gw_UozwM%D4Gd)dGO2J?-XO}^
zEisrK7tGquIfoC$h8P%XVBLGl_DV7@$8D3w^-K&mFoJ4-M|s}BC<8AT7%47K{#MA$
z(FVpCIJ-XC#wjZ86y0zxR!`8E47_Y0J70Ruz}`LaR}73dFu}k$I(hfR?2ZYRWc?Ej
z%rT?pO5IxYD(`NS%JfLQZeWsu^EV{kFwom6s`_|>;!)bS3`{XF)xb0ZDFbN(zJY+<
z+$*UpsU&T>x&fW-68YbNWniXSV2aB>PRPupJbP{}atycz&RvLYn%ibw=NwOThiVxz
zO9@$6D2+m93@q)Dc<Q}ml|Xu1WU{~04a_jG(7+;AZr~jQ?;6D0#7DE_8vEi0Ol20w
zAV*Ljk$=%CdQYf#j-c$qe9@8j4SXPSKD?ek*TB5%{Cw6X_yyN<+V)7?W+@*VSR%B?
zdKMeFrjw;K$FGI9Q$)I)LUJ}RQQE|(20k-z#K4~hRvK7kV4H#M238wbV_?03uMB)n
zU9C;7HSh&>_*kOcJIONNMA2B*(I``-p5x>%S^4|Y$=ebe3~V&;t%2_hY%;Lfz}Kwp
z_QVz=3cSK-GEaBUA<Zn2zu`z+B5$joOUn2!TMf>2GQ+HV&)KF;Q>GtSz+mJ-nLKOW
zVPL0$U)WOvKN<Mhz#cjbhfKvdW324r7;j&&+rY<HV@yxns4)D>Z7(WJ`wX=0s_f^;
zS{a3#IcVSzXD0)P*{>C{*H->jbjlhhuUl4<p;!jLr~L4@{5vO{uF4;R^75#GzYJXD
zRAb;6#|X#WIpw_Q^*;tq8aQR(xPdJX$tMiFbgRs0FQkhv#ZDXemxag4XQ<CI3KMyz
zvm*1Hpz|M+FBtfbzWTnx&Qfwlmbq-;3TJpTs`ILW8#wcu$T6evI#ggbC}c63fIVU`
zoqH=ZD{i8MiJQzQTn=rKYoeryQYOB=MHyW#(deZFm7Hfrv3nS`r_qZ_853nq#7!hj
z+-#zpi91ZxGEv@yGBB^Qi7F;;F+l}ZFmbDir#BU2;2U066q%Jw&<A)~m6s-}o2X$%
z5pAlOQEZ@bmz3L0FoeyU_s1E$rltu76?%B9LT{NX<=$B*x3-BoCK{M%$fwLGrq5j_
z?iMxh*}7)r8`M%gGm6D?W<Uw@_n46y>x&MOkxb;9kSVQ+m<juGq;s0D%LL`^ZaLKR
z_>%byTEy@=1t#t_(bmL+CK{Op{X?ONHYS>wXlfEP8?7jSiRLU;p&2El*ey)ZMT>nJ
zONw5Ms-MeVP;9E2&eqxl{kG+NrO3p66rg_Y11A30B+j;Il>1FQx<P(-Z7%Df3q53_
zor#VnItk6Rr&jk$kD7Rx^6!nb@rVhdNgGPu!Ng;<Nc~)jG2-rATDh|*)73;b6J132
zsbSW+rj0@)K5j;%FJ~;4)X(i{qL+yZ7H+lB+e9B4+Qd2&eNFT;kv5^4c*4Y!CdQa}
z(L{d}Pnmem#1LB6!~hcmO$;(45XfgtJZs{=ipsq2lfS(kp+U|$lUr_`Ow7i?CMFAT
z#cX$ZsEJ`FMwxiQ#BdWM%m^a#c{9R?EPhWe0T>DPI8tP?5?&H~lJJtF%?KZo$dF&I
zNQ^b{l8M($yl&!U6R*&+CjPma#{vYaeC1$#oQd%??mBq_#ao^rLnzBvMH3W*B`2A9
z!^E2=-ZH_;d3Q43k)$@4>*ca(N;1Wa03=J_+@{iVxhYWzYt~HYCYG33O3j-vO}t}b
zmI;eqWFjyTnsDgS=VCr9`CTHofy-x4Ngjs`;$#R}K#+tgw-jZ}2#sNyi7dy<Ek#Uk
z3udaI1YscH)pT0CV!;eSXR^^XF<#C#Bix2LCf+ykE}e&dPCw~Uz{GY*iJkR<kl{lU
zb178=nP3j{M9yMC=bIo_!$&5Fkg!0|g@W>OkzhU+G*LH~SPHE36HXl_R<oN`;>%5}
z;LLC0GrCHv*398yy=zDIR?=<$i}N_@DvlIK8XL<a<pIMrG}g@I=O)$)h9^mRFz`zg
z>rMP_;tvyFnb=_BXA`?jY&5ZnGmnYyOl)SEime%^ZwrUgpE5t@6E^m16W^HNM}Dp&
z^tjYwD@Wg9d7FvtCcdZ7aQKV6cb>{4ZYs+>w@><RXcWYdA@+7~IE+Z_6!a&KDUrF`
z#2zZd#4jAhf5!Lnao!pnLAmmArf%aS=-LA&4w^V5B;l=JX(q9j!6k{`OdRGQ?XFyl
z+($UpBPRajtZO01!ch}{aZs4JXyO>%a!BHD`l?{KM)Omjoa3C(W=JPZoZ!ULzu@@^
zMWoC*CGt<3I3pP5{41EVCe8`wyr37Z-(|a(1b^AY6(JtO|6Mh4gB7h7QGtx@xV3i<
z1z=UhEEKm;#zI*OB`n-zA<v31bxT?(Wkm}v6$d9;_Rb-?Z?1(u1}BybPLOgb2Np_O
z5p*pRgE`)8MXNmJER?q*EwLEue{pEy7Ar#crTGqzNK~{?$-)B`+FGb=p^An2ENr2w
zh1)FLVWF0Vc@N0dNL{6-1;$>#UC`=+)?iiTqJZotzlt%UeQgVMEZk*b><nr8iP)VM
zR@Rm$&XJhDzDK^>;t3R~u7!FQ4&4{O$HK4ubE>aY{J9coLkp6H<`!C5$hQ!)uzZfx
z*n(`K+j=Qsp}@l2FD1o7T%_jXqmb^5|K4tpa<7HtQKgZfZ*7o=?~O4v5tmH`ZDxTv
zyv305NegW(6j^9#;oVCT1J<_^Olu2;f??*=P`PJW>^=*Ode6A?l=glL6qw9|79O(j
zw1oi{+F59Cp}U1179O_nh=oTjbYKS!iRxn5dRFq7g^ofY-7Itx8epAWEOfTO5c5n_
zT~`aIr{^%Vea>Kc-D&A@3+E2X)T(nfQfyBPy*U3{=wpFu>~Ep3g?<)SU`w*0Cxjtb
zm`^<^%yGVXQ(m%_r$n`^`56n(QU(hzSr}+xkcH<h+&EMjY=JTEhg(=*M}E%25Fye~
z3)Jc`!S|Rakw5UJ#9|{v;Y+EUkrqZ-jBcsCU}21fnHS@u#U*p9)W}Qa=D$eu8FI@8
z^2-)pvGBTuNfyRg7;j<ff*8%c_(6FBn+xSv=^?KrCeq5R<e~U$B9r;8ACTX$FqxIV
zDy1yEDGWhfO|kG6#ps{I-ceT+d&j?dX$$EG<Ne>sA=NDye9*?5HcSf^hmwsFHf#$H
zwP)cQ3$6vv!bcVsSnw?b7XD}9Ju6z<3Mrw5X%;dTvKD?hqpV0NZ`1Uy{6p<Hapdw$
zWx9nK6wHcN?ucE+HK2FIv$N>ElNBxxv7Xr?=UqV=s{7wn${Y*t(*Y*R464p><R4i0
zkp65%Ab7-=o5z0D$z_^vMR0Q+79~j+T3BS^GpfkK#~jxdKC!UO!fR_KE)*`Yz+m@`
zGrrUUY4H<zM50@6VTA?O&oxkD)_qEyua>zoNcgx_7FJUp3!5ygvG6(jJ}}0$Cw6Tu
zXPXb?uPl6FVV#99MSs@|I{VoK3otQr1Ks;f-l#uf{T`0un{z3O7;c*_Y@x2)Xr1(%
zPC4IN_|C%boR=(YweY=#-Sl}2KUnzD!cVlF1%{H}W?_egoffuJ+GEk8n?antc`_mO
zR-BW#NV<#D$gU(~rZea^mlWC4y?l@ZkduZLEv^wHa6b)X;Q%d|lxzO2uq2s-;_{#4
z^0EPm->hggll3!x_hBnS*rQI4SoqVzc?%af|6BOW!U-zS!Z8bfb1Zj}uPspi!|AuG
zQvRSq=)B|fmQ<vK6=S4R7XGzxmLrR*9wRZG5zO2!5sIC%Q$EKjdUk|~H<`iWEnMV4
zvyo$ifz&VYn~#MXY+M!%T@jRhVWZXRN736G%So>86|-^ZWEA6``Fx6ai8t9OX`_ve
zA{(V_<l3la<8~W)HejQIjazM$wo%4Lc^kLbm`Pkj8#mh#m?1U8_3O8Extxvm0}>DA
zDa@I+R-y&Na}v@2D%z-GqpA%8d{q*(vK<9^=b|mwg>SP7FAznpC%<%eyt<7VHu7!m
zMMO;-ci5<7<4*R-m#EuXHfq}p^BOJqGSO;x*|?j1w^82)F%|3Dm~?Z~dNz`sa=6w>
zo{mc0Hn5{m@{)~)cI4hIyU5mJX?*1bGi4i!jpjC5*ofOm*l22_nGK3mU`O`lAf@W=
zwb97tc_legqm3rld5)t#x5epHR4gr$w9(Q=D;uqCP!$aIK5wT?J#dT^+L6U+ME3N}
z&+_iGalehHZ49vSfQ_~`y4&bs<3T=Xqmzx!Hri38HXgOnfnvKd)&8&z!Z|)-<CzEI
zOPr!_8}Q#*B;I3ogb&%##<xxpnJtawE;hPSlMR%|X-8A(W@AwxO*)|5eqQFHHjyof
zx7pK1FB?zTc+y618+~lha0FN65_VrZ8ui>r@cTr$pUoggG6m>Q-&mpCc_SCZ5tdKV
zh+O4=tbF1b8_(K!!NzDC18oel@tlnzHU_hg$0VjtzAHva$PBeHj0)c=kFp~~&EYnl
zx53R1926sj#>j9$jkLkZFj_AEDYDcUI*g5pHeR(Oc+asm#<4q7<(F){Y~vM?Idq=f
zqEik5KUrWr+g+=?Iv_E@#+=@*Hx_I9n#~<h^6NHO+e@XR9T$^qykVo<(H5=pa5)#P
z^YE69DfBuAcQ{DdNZZ(H<0qTp5uw>wW^)}1IvvBt|0q1?f7WK>ZJTSFxc@)dw&B|d
zY&bStn(18J<4?nt*at_XrRyYKb|{x0(z0u0US??SBN9`Vs#~s*IW$<A#$Gp-r_=dw
zQSQGne+CDdjdyI!S{8fP#@QpS>n@aLiMD3b5SwDW967r%Z;(94#``uF*yu*sAIiKi
zHrK{H8y~WU1@iRL%EfWg@8{y*S4!}y`5gX(m5*$UDxUw)0A(RHY2#xy%1O`0zpG<p
z7Sr=Z&Qcr2>&wg;b42R9D8{=hY<z0tD;pbZd}d=MUA;p7IvcBOthTYn#^*MplS}!x
zBtE_z8?h-$Eq_qf(zpYZCRgMyIHjzPebhl|IYRl;#(ECkvNB6PvMIKaO0)6b53#Rl
zQ2xR$l$f^A)dwh_50t4HUh?iYY;m0Qt&Q&lvsF;$d@q<EY<{YZ3NURG%yt_)1T((2
z!pxs-?6PsAgB%CDZS1jefsNYOYh#~{Uv2zmW53N^i;*o3(aJ}p1DyT7l-@WLJ8)~_
zpbgT=72-4sjn3X3wsG7>$I%M;-);P1<65te*!c50e^fAk**GSczXkp0`rR#?WcKR>
zN1W(B`BOGd3;xXYoPPy#R?u@c&I@MDx=0}xZCtW(#l}_2d5c12US>m|#Hh6Pr=*8}
zj#v7()C~?AE{dHTC^Ns9gW?V<IJnh82?sYhDD9w(1G+~^2XxL{2c?`y?N<jY$)6;;
zVxEIn7RMmy&jaPM4%o^qf|9veFy#a-FDSi^-bHVz=<xrPQq95b4k|gQ>_j7lLx9$=
z;-IPnGPeoZE4L~6>Y_jm2Nbp9DT&WAPUG*7D775acF@W}YX@~4-07ge!MzUda&Wf;
z$w9t@x(@0&sPCYGgBnNWcbX~pIMJFfV}x<Ju<XhBvnS$Q&uvIy4#l}pyN!##4irjt
zHnI9pTz0VQ?gB1n^D^!rA@a$$=$zBY;lElWDW`)b4pv-=HFeO;iPo<dpNcnkAYV!x
zyqIA0s1}0f<wI3Uab24Mxw@T8e6~_4bkN2@e+N%FC~|P0gDwubva=2zaPX*u4i4Hn
zQTV5J4%$1>GU$U29uhgs9Q94>&6_2z6hG`lv9}%(lq;&_A9JF`S@x@wgN{xV{jGiH
z9MaCLwtms?PSK$OMco`c?w~J^bUElwb*)o+IsEjE9uD`mC3*^)y3&OCjE2U*SX5dc
zp}Jak=RQHP6Ge*-$Db6;<%@}nMuO4bo^~+6!B7XoSmFBkGY$sQ^oJ$(`dR9#O1$dJ
z${+`W9c<qvKj&bGgO|&+;0A*UYhrUZ7LXtAFyJXhIe5W|!ec$}L=oRcioUlU)R-pY
zB^SF#v$LHOW1MJloMMn?r(R-h4qgl~HpDA51iRqjkcaUOCOFvY;(Hep9lYw`HW$@g
zyyoC_2b&yhb})$*I{47RTnCfcsDsc!#=%<-rZ~_X=nl~plt#_tDF<l>s<>p1bWfs2
z7kOHL#c*Ic@ErIKEOD2awqQ0^&v9r42h7QAkIh-xhV@+DA#X08f8*)AzybLgos_JD
zw;jCWV3vcaEbL&qpoeUk&$1OZH$yNp9gJ5L=DhKiGFw#pzJm`Oyvyb&?GE`p2Xh?o
zK{ippS8KM|?OnOp={z>aw%!_xc^n$2<I5Z@cQD_<M-CP^Sm<C02fKqsP6WBXnB%=^
za%$7$$4-O;PuzIYF9#M9JpU7RXNE*(^1ebMz^`!dse>;ZtaI?0gO$`_v*hQZiB%5P
zP~jV6t65vs=<^+8zA(lLb3PrJyOx$+C66@mrFdk$gRdO$!&>7~@&@tvMv>3&b(D7Y
zZ>>Lw<!y2BHKzgxryP9a@ZARc9sJ_pJDQk7!@<v-wOFl#ZEU(t^cnm|GG!EgOun6;
zzq;jYcffC?I~=^$RbkpG7=Co!#mS$O#$Jivkoj47kAuA&fV~xdHfO;1eS)v~rOccI
zbS($Jb2w1R4t{m;n}fp~TpQ#C6`S#^ELRQqftL#${Km@_hjoeg5eLVd=z}d+3jTC(
z)WKg47{<N0Tf{H$EbzC3e;gdA*DaAx2njpBl;D?JiaPXh`Lu&GoT6QnaPcp#L!WVQ
z#lblT=V`e5x&JxQvc&}soOdO5p?UpWE@yo6YwV(fOPr(1C7Af#{;Go;+~^B)F*jNc
zxY5O;dNLnO43u+Ra24Rgrcr=+t_9rWqNIy*F3P(o<s#QbX*c?8&ZqYER`Oi1Yv7o=
z6kDyt`JK6pi?S|mcBAj@gYSseV)$8`^cEKtTvT*X$;GX1q<KEhbr3SIcFW-!L}eFM
z+R9Z)U9jC+rSh-zi9Wn@8Rd2t)m^;kVyufAE^4}X%tc2RcetqKLU9pyQQJiwmw%Q~
z-vxio?{smOi@TXqR_3o8Uk~_eRo6v5ku$!j{PhuuZ(l9`kQ%sX=t6SAR}to{`6|XA
z%6vC^CyBX4u#sg!$=vN0C0rCxJQw%7xYtD^7j0Y=xoGU7iHq!evF0w;Rw`sYO<hbH
zpfq#wPoX>=`P?zp!bOsrDJi#f(ONL%TM4GY0EK*^3;rUL;hQ0U*IuqKQ<4W<v}L}F
zM=0l}7=MT#bj9nLi+2wy?F1#$o+AAxlX;Yi8Y;(6NgZ6|l#G)<UtF%Uzf>m|on1WP
z;z<`>Ty$mm8}s|P=;q>a7d>cG8nII1$8}QOL2`E&)X%hJQ%c^8&UPiXduOb-8~t80
z?Hhv%E#iG$^mD;{rX~AI^>^`<i|1Snaq+Z^0WJo*801DTJkPjz)&*ZkSUE3eABs`Q
zr$3Yjixvw;D}3?bOVoSgrJ*i{^AQ)rXx8Nlll!~;yo-@8MzaQX+>KsBsNp*sMz6{*
zh|6|mWm^27jj?vCO3{cfxp>*dEEls~yh8tUp}R2X6)q;YjMa|GZuAyCku$%G*In>c
z`Bl+hcAW1;wB01p)B5F_v9oWwc*{k~MVh7`t?*6z>4x$Y7ko{9eSFj-z6+@?G@*YA
zOn;*xOc$1msV=6uuw6JV0v91`XePTtX}$}Ot&f+Ek0Gc<5oKVzUpI<pT+sAc7iY#q
zLeit&7CC&SobF-<?KLfbrqC))Gp<q_Dvb{Fj*Ihc6h87U2epe;E|34<Jr{FaEOxQP
z#rrNka50}^yZDepY;A0=%g?HqGeF_nH9d`z(0OQ@1$54F67{)ID1ka5zetR!k2(A|
z#dx{Y#V0P7xmZs3-WdDya+JwG4z$P$7b`is|A_wAd@8K-nH&9`;Uz~99chh=&s}`w
zVgpBti!WTPbE6k~4pNTL6?-N2>q{5wUHtu7tiu};J&o?M(dB<zeC^^J7n?a{3EyTb
z)COM#pIRsl8Xvvx(i}|Ra<XbBf9FOoy46N2KX5LhlY8jyVVjHXoPRu2^svLlP8Ua9
z{ORH+7yDjR_L6e;6Z|e0-_4eHyZCsv%(RDNWU|6C`(6Cv;#U{HiDC!X%Hrso7;hbP
zaY$q~IUil}PbC8=9H#kPFq*?3w8+~s{~+_56948Ob@3N9?BWIw$Jkj~oKrgW>Ebwt
za3Gy@al(!EWB02PpSmN-zy!($>F9wHr(B%obk|kpzgkiTaX9PZ0(HnK=qC9bJwY%<
zJ>~n{qKhurB6sOil1p^a<?>}}Luz(KP%`{4e4~dP5AaahLopBh0CJOuk{*hCDB<DK
zx#(HS%sun`EKtfro)>+x<L8}R58O7-4gb#{l?!f<m*G>PbTc1J%4I!Fyeaw;#r^-~
zyyzcyc`83C-y$fP3WDLMhDshPduZaJsfQ{as(PsJp@E0nJXG^g%R_C^%IzL%c&I7(
z>Vi_9JD78`vfzC5y>a3$g?t?^Iw*0shq@l_^l+DlxAw@);SPU(A)y#ECrR}@PN(uc
zLMrC)07XL&k{5kExz|I!hnNS&L)?RTUY0%dO~z0CAeZbZf4W&tcqrh5$0UB+<o7Eo
zf%>uP<kGT@Xvf7;V=p>fK%F=9(3~YbJm8^)hopx>4{fMkW)4)S0qUxi;9CpI%+={A
zvq-4%J`c2S$DL6Qzk9Ux@SumsJanY~P30jE?L4&i@O4pwU3l2TBW!4i(!s-{qBee9
zqSaU-tEEBdPMy5yTV+=di?&LgJ#?W+$>{qDKW5S!r`U2g51o5Pkv@8O=*hw!LJz$>
z^!6~?!x#^Js0t5*Jv`^3pNA(rJnLbghbKMs_wba5r#*fokuQEFF_;KH77g&g5G_pn
zX8VlrD@wu-t%LY@m3WiqOYn>aJIDwoEHlKza1SHcYY)TNg=12=Vha1tFQ3nQ7)b$^
z$vmvVYDal^L0ob~Y<XDbm#dQ<5-)lf>)}nB+rvv9UiR=BEtQvih5Zer@g634(aD!_
z9=4WN$nY~MBepzLQl9AHN^btEUi3wdpD17VFiB|U4e|J7FABWEG5D$y=h&IzA;l(s
zQfv=t52^><gF&BZ5PiGjc-K7azd4_ZH3gID5q%c61kZeaS#tQeF1sGqy{IsGg7F0%
zqRSZ%Sr4ChSjH~gue|MHmWSCMrh1qroOZg08I<rq^bwWgYo_3N`Ho=t74BUR|MT#X
zhXo$q^DxK5JP-3dyw4%yMIX36q@On_&ToKp4~Br5>w({{*>_U9!S-_b{0>az^Yhw5
z4<CD2Oa*%2K^`W4%3dOdEoECO^vTmk43EMwwcNuB58qL}9zLbgJZxk`9#(QZdZ2Q?
z^uU#fUla0b4{JPp?twC_rCp9moWw5PlK4XK>jY&cr_d%DdA*0PJZzwzyT}Xx#8Xi`
zB*kbfoB6nqoOa}w-mm%p?xg&Upk%&fuXoD#^vwC*!w(*Q_OQ#tkCfcQc24`W-NY!K
z3mxPB4hha4J3Y|8KT&DtWv(o6wx>hx_OQppKH84DeL1<8=Kf6KQ`K8Vafmp9aNPak
z;Q&X(9noY+i!c(+uO5E$&?-Rd0Ea#NP80Ze-^U*wj?k-pJmBL`4@W&z_ff;gUz{{J
z>-s3}<8KfDcsTFjf`{WCPIx%!;gp9j4#?x@OGiGG&iy2P|8>D>YSP154`)2^lIcme
z=p0Auvr3D($u9Gge_f4}|BnWmAYJuvgO7`x#yyOy8^26%=gfR2o?ENv%jU_uhA7P3
zyF2#6)%cA*%AJYl2-@a7iF^qkH~F~5M+F}xeU$Q1#z$En6eiaPe7<EB<@sn{p{Uo}
zNz$9AB}@CbV@9$=CFN$;<70gvrMxKLcfM4mMe>m|@dwVf@G2DT>8jl7qq2`GKG<|c
zAC&|{-pgxK)yHi<emot&-N*1NQZ*kl&$c+RH#zZiJn>)bi}Ly3T#eUcLq6{H(a1+F
zAGLkd_tAhQXXn@Pakr1UKFaS*-sxlT+1OozFS{?<u56pfV@b+i&&NGJ*l~)@%gS?N
z4SmFX$UY<=)fy+4osQ@Gk>(fY7b&762|v<yTy%$zuxkZAC=XMU;`xnzH1W~eN1>0V
zKAKS&v`JDq>}KgUGfu}T7)!RGv^ONkoSB+zDH>|!qw^1uIanu~YvW^Q%Vd$D_xYg4
zcuCsU$AdmzqRxFh<fEOBXMGIx(cZ_yKDzmMoP~Wn>Z21Y^wGhO!bf%#^f5s@bWAXQ
zB7;{lhGX3xIlS9N<ahPKaFfhu=*jLrdidz?<0&6Kee@Cqp77E8ddWUM{&}P+pY7{|
zk1+M~@m3>+3^SjkwmU`)gK0kP;~77SP`UN*_yEB$$RjU*I*~Vs#e9sS#eF>IV+ilg
z&mZYysE=VjM)-K%kHR}Xv!+z(rxL?`kdEonnmHY6<-W2qMuuIu7NK&qk1;-8WEYOb
z8SRlJ2dPD@ZLFyCwvLHce2nuE_y}n@9}|3NK6D=weZ1;pvX3{}5g#SGC%9*Fl8@JY
z)ajn!*3D=Os2}Y|<-X8O#qw9}iNEC|<)d%+#1uc;_Q{-6T@z^^Dow8>xu=x0N9`iR
zhv~!h;rXz9*nYIx)u9;Mr2q5+ZfXtOqUse2OYTT=Q)uZY6`%9KzIe{QIBCX5mOkv`
z9UpIVbOh0s(HRtbPkgG6X+Ea=V7vSE0#eGrjk1?Ml4kjs%?Ia8-}gwoE1KhG(f|3;
z=1h52-g`clx<z+)Dq`jbK0fqu)yEA1=K7fDV+TFW$9x|j`B>xQa~}(QEcCIOdYB<C
z@}mQ}i+wEd@v-1}$-N&-{pj%Wr#?Ot%qKpUadIe*<uu};D1h<``eAp4Ow~b&dQar7
zq}Z&12avh*WN?D#k-1}pn@`qqi23-M=BBDSWFAu1`_buRZqE5q)WB1~U-{TTnFmHY
zb~e&s_DP!r{pb0_W*=Jw&rDu^>*G7l8#L&2iS2F`w|?NT^})+Z0}~YKT)!NaWPxoy
zwu_Rj&gb&-Cm%m^HuiChuI^*Ek6)-sAA2}U_}C|^;^E?-&4e^K+HS;6NBi0RFO=TB
za}N4A#2Mbl5g)$_g+%*XeEcS~!N}LId?EeLE(}ZjBaUG6@q33SxRK^hdd0BBQ6HC|
zOB~E3|K{NGah9&@<G7C#K2G^K&5<%Z+Bx&>;KWIKY|Y$$!xD@xeMXpL;qU~{kN?XV
ze*ZnIzLm}kIj{I&<=kd-!N-3>?bQ55A3P#`iEUlap-y;moHn{KKu&<V0qO-P7NB^5
z$^m^3B?8<OATIy{lng)&f!rWE?M|jt03Prs!}ImqzK}}?C==k;02Kr9^nKX?L<}ew
z;AU}o?MOcH2g(PyC5VpdR}hp(`^i@d@JmCPRk1>z=;vAcssU~bP&2?C0jdSKJwOdU
zI5VeufE#B@Jcdu`0G__*@%*K++|pCzS^;4R3+@bXmyoJ<5FrE95wz7OvHun-gb}zq
z0GlJE08tC>2~a;kB0vE<6`)~&`~a~4l8}l5j3Ty1qatDmP;!}>;#nmCK>)6`NF)T-
zNrCST&?G=p)-yAwk?2U{0PJbaRi*fNvj8muBm*=LA`Ah76|e@TmO%t=(D85y3Qwjm
zK$`&j0_+b^6yUx9RscJ|{Q({b@JxVb1GEkBV1Ql$dIxwYK)V240(1?ch-~cxJQ|=w
zfQN$!F8h%H3<<|H{Br!UAd22ac;`+5ItCHeG*bgJuX7LumAe)st{YV`Ey?oT13WHj
z;3JH@M%p8Yps;(2Ofr1}^bPP-5J7PF3-Ck`L2xslbv{W4SSWRzmh2xyz|_}*qdm<=
zrzHmn8CXAW4Gb_Sz^egX3ow|E2Y5cf$RNVF9ui=vXpVT=Y<igBhYQLkMhJ#z)uRHu
z5MaD$ZghY#0bU6r%xwxxF&Oaf#Q<Yz*@FtxO95UMJtfcnj-wqf#|fi-aZYkVfQbR-
z-O-FsF_Xf-9z=2FCIxsybb*?j9N<lnsRwwAL!*A{DO7lXMkVv8+jIb@L>rZ_d4<i0
z1WsNPJTI?RXozRc01Q#bnw<b{fEARM3Jl-}_>hxufFM9f4F~vNfJ}gw?%_^s+%aC^
zHa2d-dON_?Y06YV$xIW>bU|kXm?@ZduHT&{nAw7E93pd1)W1uV_X5nJ!wgd152Af&
z+=TXlxZE^IX6C#A^8=K#q-Ct_Rq3Mu9|u?*U_k)xA7jqKfPbK(TTK7lFF$rszHy~e
ze7v%R6UBICX@E}zL%#p?oaF&pu9dYPB<{8QEWpYDTLNzFz^VYN1FQ}3MSwL_=7wnZ
zl+mQ%b9VnzX}ckDU)H(+U$UW#@lCY#SeZHN1AIj@ZBaG^*hrD)N#wb?i;2w7gOtqy
zhKUVh-vszJ!1e$;0@NY$TYw*_;kgnwWo_j=!09L;PFl1_YsIHg=C%M^e~&i2t?Hk%
zlj9=be(8d}Y?o<}vYVqdz^En#yLeeWPG)W@XW+$n)mI|HxVMmM{3XBv&KM!`LmUin
zi1TC!g!q-t6X3r97wHTEeh+XWz{voA1UM2zc-_Zoj&=oq2KbAU0G*Q|00Ms0Dk2(x
zqrZyt7V)?LW(^}-{1ZgL`(y~a%?D3$ei+$;>1=@0ROZMQX9OkluV7f!x$9-l3+95L
ztn*TU%bZcG77`AfaT%^~A`OufMu8iy2Dl-N(9sECPDt=#?9s>;Hwju?&=P_&vr4zZ
zlGpiCg2@fR@DsdMIz*WeHA2)3Q8q;TkuA!FC?Dcx!LxEgg){S(5Uiw9hzjEITd&tv
zQ7{B`ugn61uPRDb7yNA@stM+HL0JP^TyY>t%5+DFdLeEd)uL92+9B$QGOX$@QNx{r
zvhdv@>V^@PI|1Yg<W7cV?g>#pM1wFwl5ZG-;OC4C!do3~E{KJYLv#!AcnBp#JVdJy
ztwSV26ohEX!XfSrBizMCAsUAf_G8sqNuvKX5t&5oBN$-amm|2v<{?^yNQNNJ9)Th!
zmx~ivuO%NToB!K)F`_#bhG-Mwp%Cpt6ot4ijPU&)3?rn<`$IesMnHU4TKeBii2#6Y
zLn0f?9~YBZGmEtk@o<RFA-aTkBm_|bnc0C#SRQ*ci~s<MWcV1xeobQP7@|{%eJ?~j
z!7aOnSU4d<#ia0r^84RpxqFBnAqIvR#9oBx6{25=CqncN(I>>DxYCy%o|Zbir+oBX
ztV=t&OhO@0Av^VCi2fm-q62J?I?nWT2nzgchyir7mPw{(LQrfn#H%Et<KPg_g%}xP
zR2bn&4hb=o0*4V^B9RpdCOJIB^R&Xw*oY8Bm1H9J=AVrOl4pp~Aqwx3$A}h*l*nT2
z#l&3YzeUNHLcAQ}yDYY5@k)qsA(m$FNe1KT=OHR(P&tE%Azlr!A>@WhycXj15Hmu|
zWFJGk5yA=KhL{}U%@C;&X<8)2ln@_Ohz~56&oBJ^;(cNv2aBSH&_b9YEJ{v?FDYO9
zU{1!M&xpkxu2%3VJH(oXGSl|YV_pb9j8==Lg$Tmv6Z%xjFkT9&`SDUl<YWcqt+zv*
z`ZikK`1kV|%F29ddKfLca7Eyq5VJxorvgLFrhA9@FvMJHo|Si0K44!C#kgAW9{V*w
znG@oD!SEYCFS!IjVYqlPFO1e`mV}re;-e63WdSWEn1zCV{CR8<74o~xTTF{ZW~~L$
z?wzF}J`s;E6O=jJ+VN?K&sb)4?28a9MgD49xp@9~v(2gyl~3kzrGS@fMCRuq)(YlY
z=DHAH(o5IKT#{HHMms>h5^AUB?_3|-6k>CTqapqZu_eUUA$|(+bBJ$3d>dk0i0!m{
zh^-;6cD<47O<W8*-Z**xqS*H#eh5K^=|{nEr^*hFtaI_5VYJS|<q2xI-9m}#-9`0=
z#E`+SA-I~bhZFni*nX<_pt4uceS&ha=@*XcpQHnv6Gkfs1!cdM?JM;geQAMwIK=P5
z%Kuze{t#`gSRijMsj$%_;_}byna4u>9in&!B{KLY#BojzA<l8$8?BrOafZsIkYnYO
z!bwgEdYTqL6r;~@xr7UR^fxZAoDXp!#0{Cqwf+mE<-$uLPm#+Pg*hS@S{=JAa;^x<
zTUQ0cO6a9GW}^P)WKc{n+@{6Ln=;_$u96v)%0v##N^&#E%b;uqH)o=?Dmpwe;65d$
z(t;@?D3@T$WugVI3K`s*L3zRR@|FxXkBRcTHq4_<DP+Zr5OrUvDj8JG;OPtoWN=#s
z)iSt0g9kFWJ%j2QG|HfH1~oFMnL+Ig>SUt5WOrmxD-*3t(smpa6qsv^cV=)`2KgDp
z#4Rf4?hNW?P%jfLTs9E&9zp91%FHsYk_`nfUC;TsY(AH(WQv`MR_K&Wv^+}K5mKgv
zU})KUGtq7|?q1`rq$U|O&7egF3>M2xam_MlE^I-6rt{D!+^|GvYneeIWxGY;YFDca
zT4%roEb^pnL_Tj73Ff{GXk1>l%`hS@I#QAh9?GCy29IR$Xa<~E+GoIJvWHoItW5h}
zTWBNGA%n*<;5eemt_>&-{LUG4$)Hz;;0frOLAOk_oZ6knCB7M(7#ppAQVed~Vt$Vd
zdWr(%pIljr&c+)0&>u4BCu-*M^pnD@Ph`Mpjf-*2>7R*qnmr|GG{a=@YzA*+FqzV3
zqP<(gGZ?|NDK;pB!5KU!GKUB?4i)@6n@SF&S}NpoO^}q2P<78|FfxNt8N86e>lsYS
zV6?E*giN%|H%9O;3OZKMmjtC{Ulz<O8H~H0GhQ%M3m=@A!K<Q%*XSXGqCI=e<jVN9
z4Q8A@-pt^w48jaD8BEC_m4TUoMGv1FOJ|^G@O5Fd8%-5CnxNciX^6qXWp|p7-ePCq
zu>OV7MnV2|xHRSHXno(yz!#dN-v)x=hEGnd*$m#xU`_^aXD~Gr?M#>^C<p0u!7yh=
z1~Uc!&h?yG8O*-Uzblykajcb8SonQ0#MtGJGWZ~a55?u&4C<fEn@4vt6%O|K!ib!s
zXvzf{EaY6YF}6t1C4zpO!D7KM|BsvEq@S!TwJd|>84Sr{XcjBTzaZ_)V1EXmX7E`C
zD>GO{E7z8HWw4q$$>6&Twr22o25YG+YA=I7hR9!tGGAq|PF#K|=z2kUmyd7A;B4i@
zMnTDJ61O&s%iX5*jksj7Zw12w<d3>VeD-^G>Uupta9Yb?TL#x^{{Qvw5CwJ$`cno!
zUoYR{_o(UJLbg2_>=n%Z7jl{TO9lrx0JG?jMUbx?<Veq=MHYuL_%(yyGJIpf`3x>_
zhGcCSoZ_@LM>>+hpBelu_!7f&nR8U|Wd5QPQs<)-@)OJC|0D8`XK*5e_Is3*8SHpf
z;;o>kOv-dx6gZQ?zZ?{SayEl=BB%Hl@>_eNO8(2>B4^Gls%LR2gUcD*l0}6qu5e1^
z*vz8$gYpeo+?d5pS(MBoCyQcP6wji{8HKlIJ)6A7ln^<^y&_(g5<Hna!Q^I9v_<A+
z$@*=O#U}}ce3>lDW-)7F?B*=WW%2Lbaq`S3EuW2c;FCFMB!65c-zqApm_?;5DreDU
zom?f0s##oYTFCNDw}}GPvUqG})C$wlH3c=YsF_793ptBBvZ$5CyBm}DWKlbdg9i$^
zG;^0=>SWQUr+lZVmdxE*>?xmMsw<d!EPp7;%R2@n>u1p*3!}H(P*f!enlC78?q0r)
zl0`u+`CdVjmz%`1NC>__Q1+U48)eZrizZnN*eLU|Sr$#R==7<)^O*!Mhwg~VB(rFl
z#eG@apG7O-HicQV5lrhW-a8!`w@6&JTNtacFh;YchUJofK-_&Wi?&%T=q=Y8o=f_W
z$mCP)vS=^(hqHKu7W_hHCevzDdMt~MSqv0+J7v*1i@sU(%ks>o)Fq4VS@g)FYZl$u
zXixd^ECZC6xF*JZhg<g)PxZ-y-pI^e;<C4(;|IulpUd4iEcXd<`BWB9{~uFd0&YY3
z$FGZW?<b@pm53Hg%{?=7uHDIUlS2HmWLK8T5+Zx3NQ)&ZOXtkYnf1)fu|yP=B}-C7
z*&`uKM3Oz({-1gM`#=BZd7t<B&O7hC^WA6ex$k_wg6NUNuQ9bJjre1X1p60~cu^d3
zknN@a?^IuLNk7qZ{r-aB`U8^~l*Bj5D3iRB#9)pm;U_U9iC2?&JBfFa7@EYeB*r8$
zHW~e_Iy{L{$q0pVL=sc?t0R-RcTfbU`NgRwqm$9k&aWjg!b*_X)vI6}B}#(7;=W0v
zzY_hN`$iJ)5p8n5JoZhDr;8@>7AKr-knblZGC=0boWlu5UgLK;Gl^spsU#*PF*%73
zsk9`fB#}2TJ}rsqWPr=^a6tT_fl=cplOH5O0L-#uqd6pqu{k4&nMr(159uGDC9dVE
z*~#epO8ySaUzJJlqf0KLC80B#k`baNe>aZUNFtqt$@>n7vsv`IS0aLqghRg-lf5LO
zFJ$}2+0R@p1xbWStQ1#elbDml5^6XZ{fs}CDoSDznM`6n9gN{1e&1dwhy|h_`e-f(
z|9K$#5q@zJpCzN;;jeYc3HGZbJ{O0i`N`)ONqm*WvLyI3`<G<CYfjyVa{28ouU(#u
zzR6udm9CNaLFl0V@voCumBebn71v*rj6h0T_lXy*lGX~7@i*#q!V|ttVm*yMQ$998
z`7Vh!ze{|d1nCV)EVxP8n8Xi)*dzuyQg~kp_CF=Dg^Q;!BZaL=Y@_?7a8C-`lh~2O
z?@1g@VrLS&=(h}k;`wc_#=q`U`{yKfC$Wc#Xq3YC_-7LPUy|4>MrQw!*L$OMX^*ro
ziTz0&5EuR?`a_~WD0;$h9Tvn9(R1;Et>j}#{E@`PB>qX_IDMeE!gfMTAn|7sC#kn2
zf;-jINt{XI6sMh5{}v-{52~bj>Z~|CFHW8N?-a)`P^cQwgiA^M%iNnnnG`NF`7^_(
za7zkTnf$5z6mn9y&U|%9Es~0QHup-Lje|u~D3(HTF@cA>N9Ayw{SBf-iZ2W*Qn)pR
zTtVlFo`dK0ChSX!!%`{yzwy#3+&Fc63U{PXKE*#<RL;CJg>os}l|tG7*10i_7v8vp
z#Hikd_oh%Gg{~=dOX0p0DyHyw3Qbd}l*0Wf6r@lyg`1Acl~d^cnY3WBR3(K6Qg|?h
zXb=B4YJLh23Ho8tS52W>3e|bX6dq0C^C|JiM@pRb2ygL_OoEVlQJ;!n^hm`1TSrcz
z%>%NMBDO<Z6@zina}R$lo*I?&7`Z*I)=r^L3Wv5N>ZafyQX8aDPaJZjz92Zb_Ix~%
z!sM-uNH<KO5jFWjPU94sq%ggi+Imz@n?q_L*F2>1UbEW8x$F}uv`wL13e8e@QrzgN
z6k4Y6w4j@dzD0@~r3yK@RSK=eNE^}rFNNK;m1jgh{!*ND57BdGdokfhE7mE6XT^jL
zDTJePc&ei~#mSwy+WYY?q9?JqdCl%AJeR__6kbo^`4oDjFd`Mj4$t;X;l&hQ5`y$f
zp?3<)e~@}ii@zZBM(O&b&^Lu+N7P{{^h=?C3PZ)@s^v>?8r#d_a6k$Jxn{fgAkmX}
zC56HN(L)6Bs_6Ick$Cpl?wsK~ES}FcXpb_I%!|8>PGM{c9C=Ng9U}&L*t%)~=aUV#
zH&U3G!rLhv{a$)Ah4F$QJwXs}iT?e=>N~=3C(&>zyekIZ`)?-aOi4w^iqpt^Dhk-C
zDZDR67_$sXp87x>ekgjzDMvWY2i(jQzDz|=x>+gAPT}Jek|_kVLJBWmR8uLm+E6r|
zf+h}$eyOL>aGqqOK;+3Q=T$QWD+QaprQoHwy%6QD)!`{O1x{wm8(qTxkLIZgALno|
zr%9tMou7elUY(P|+!W@eFrR6mNu$Lne8Pyk99x*ej&te)G05?GlVu)$Dh3w`W_U;j
zK1+f9{qv+HWFG2LF~6Cc{{`2aEE65{D<R!7dO`{-QdpV74=HR);p-GurMNu|>rz<F
zQ~!&zt>Ma(B@+BU{@N6JEsI_FSoxN*|EKzW3L7R%KlO~SPvN^1CX`o(_l&cje^TAR
zG}1G^F@<+7OWXsnS<Kv$0yiG~c;l)Rj&M7{VC7)7+^vkGo^f8=yNR+Rg`H%00g5ib
zt`vSIKOWY3*qy>2W=j*-O#G6<-V}xz7;fO#6!!66I?C(VpTdC@UeNHOhTl>+$dsbt
z5e<h@IGjQe4L4~xlEUvP{GGySx(fX*g%c_KnZh3_ROQ#Yk0q+EiE%&7aaxUAM{=8R
zOUX%w)min0b1Lb-$WJ%rR0`L6MO$mmq;NKce^R)V!nstmnTMBOBoE&t&Zlr8746<3
zU8{D2yKA^p<zFU$N+HI%&W-&iS5jyocCDPfn0Jjyo{8>otVPlM;)kRh4MjEFuHg<1
z#WWPx01dZlxLLz38gjL0<4OrF+B?*%Z^7GrWD-p`C&)&g2JR!`VMz@??uy-}fee(=
z@L-j~(i(b|Y{E7ymMEiv8<V)TW>n?EJ2jNma6i}7P)@^L8lGAjyH`Vb4db>;cWbyu
zEEUo75{VgwB)I*lf`<FFXg^Oy4VB2->rz;)kcYe-=_(o?(4zf6)p={Oq(ys&xQXat
z^3b<n#2l%bhN^<z`eMP25pFBu{C~g7dsKs@;b{%6G~{cDX=tdSkp@|VqM^2iI#f%q
znyQ8Z4K-=m`iZ#c*Imr3CD#1qVjgXDY(QbL6LBtHS3?602@UlG!`z8fUyJr5kz4MM
zdW@XN%9*n&IsCan-NqW4Xn2xJ(7;Vf+@Vyc;c*SLOH&O`XwiNoT8cJmrhyxisN{3Y
z<GdaBdNtS3du^hH&^h(cQV`si)mp><G<4F?S;I3L+GuF6;aM&6sJ4{!*F-xFpPp^N
zokiq_+r7AW2QAv!MbSui)W9uUJk>=*R}If;cwR#{4Si}WyeT>72D9!OC_Zi4LtMy}
z=?q+<Clx}j#NdtnQ5<}U*J@a%VY!CB)QN_VG|bS@U&G59-qbK&!vGBfHH_3Sini16
ziiTG;4Anr`-oYA5k1j#H-yxiTQDtHw!Z6z~4Z}5zpsofN^gogF*((J^4<?{4VSY)E
z)-Z-_XdwNXhNh!SkRa%8&8~6c{f?tEYj}g|y`U1j_wl6(_7gO`rQtmdlQc}!@HXvO
zzAlq6a~kvNJK~UNz3<Xe=T+v($r?*W;(ZO%G)&bZKx0A^^OD5JImhNoWP^)O*YE)y
zY;eJcT9k4d{uTiO$Ll9%YM7-V&=6{vt>I%0mIhlxQUfp4H0T;q8uqPA5RRA(7&PAj
zHLXR!$TdIC;esoM%cchQ9ARR2v?z6Z8e9!$&#8nX=G}Q=hHjIRe0ue7Dlwe18s^aY
z8Ww4ot6`po1scDYM$NVAeER=I^%HRmLLBp2f-O^}R5kVg9RZQ3Obr}gN?E2B5dHYg
z>dNQBC`&YO8m;q%23m?5{!+tN8c4A1JFl+Luu{Wm4QDibtzngh15BP8R%=+JVUvc<
z8rD)q4I4CU)WB@Nj+|&%Pxt$z(IcI5)^*I8`9*Qk--(g$HE>fI4>|sW7VQC>)-%4n
zS}yl}{m9ET?9i~2aoQukMZ-3_H1hc<*~)~|GfrZ=7~vqV+Qo!(Qr*u;e<uF3hHAay
zyG2i84`b>-daodU75zTZpBr@xFB!5Uc96-RDNe(m8V>WO8jflBgHiLR%BR@xjEE-6
zODEN%8rbKHy=vT#NB)m%xL6~X#7TPc+2Vg`IK`29`N~O^qVZa8e*0Un_v8xYtcG*U
z&pL|hIIrP?hHDzGbH0Xur~!?CB7w~G9*;{J{?(#=blf#}_eu3KqjFh{!cz9DwAW;b
z{1nk~laADY5`2>8=+SOHGDeY$>Uf=7?0Ux8->l;n9i?^LrlW+8TphRSD5)b)j}%Vc
zC<Rx8j;WO!lVQ@OxYWFSuAiKn_hrYN4&zZq$L%`q(D6jCIJJGJ9%-9)sns)HR?s{w
zCkS4Cw~l*stk$tc$Gti#=;))Pua5h4RMhd9j)poa>9}9##uXIksH~%k4oOG8jt6u+
zsH3WmYC76>%pss0KYx2j$HO}KAs#{Mn%}2Z*HJ^qsl_rsIwShoBV6;g_@i8>L_WVe
zBf1@-?P5A)9f}@(=|&(pBFOQZIHIwsI`}c2*(E|OtSQdc(NR}NEgiLW@KZH@0e6S0
z@}stTI_m3aKq=xXKi?xK#P{QOf4n@Q<EKNp{QRwvj>bAV=;)}UiH<^@8)nc($KyJh
z>S(6pNoq_7zk{3AQrU7X=GDmk;rGT*>1eK_6_s2|X+go;EBwsxX+gBq!B6ULj1aW2
zwT}Pk{F_%H)*M@j{tepdXs6?~#qzT{y5^|ubx<gN$w(&oZ6jr*_?;-1jvhLC>gd90
zI-VC&^NYf6I=a(3Bcf0Ccu1JR=lD9*OeS&mLzy2B_R`T?$4eCON{nAzzCd$akY3cI
zuM5l6$i4BEB~?o8_0!Q`#|Jt-)bX;80dzSXZ|E4PV~~y!I!5YvMaN(r!*mR%jowg(
z=om^X@0BRat2&4TNYR@9pzvc!DwZE4k`404Z#+j)MvA6`(2JvW)EguJJ|cp)qs7Mx
zk@@B0I31_|Ryy{Gzo}!qj(2sur(=SSw|K{gbKhZHT#zSHpVwk^fVb&~0ymNvfL~9S
z=u4AyOs3E4c%QatQg@0TeMd<RP=RzOe(=aoFL}pl^a?S7bI9IDI%epYt7D#ynL1|a
zuyokMb7t$%bm%%h){*4hY2O{ON9YWTWfJ4pNrsNJ&}aP?1vEFIDNQ;|S+(S!>WGDn
z938F>Uq`?I5tx1+W7bM!gt_T#BgaH|iJ|a^tXPL2mU9?l%OoNqvY)Tx6CF!+e4%3j
zO{U{>9ZU2G)ACa~VV?$zbu1DJ2}{MP79tIPrlahrIK7>V)9YvjhQ^mVzS6Nm$4a)6
z$}*uziq8;OuA}-73i<z9k3KS8rAMEj@{3x!;;~qQBWrbh!)#;VHUsN)e5>QAj$=C3
z>-bK`4jnrgYxULdb!?<hQs?53pFi^h=S?~`>)6UH(N5;K&p(n?LG$cSdh`)=qe8V7
zi>dWgII>O0cB*=NjD!3pdKdW-lMm|HEhhh}V;_~Q;};sGr&4jAvX>L)MFg+nE%xj9
zO<Zz7%;#W^sf-_qS4%fOq~oxTBb4qP<##>$Mtj-a3TduG#{ST8T*n34SH}t3bc}Rb
z#~B@e>Nv?PcQN)CvlGK=U5v<n?v@ydzs2FtDCEe-w<5&9vpUZ45x@laMh*|TNQa{M
zN5>@{MGV|z;9s%S6&+V~ToyFfdGJ(Yu76G3l=I6^;O;VXno&qFz#Icb4dfcgGa_`s
zVn)Qt%?64a5h`HKbuq#K-eQ3KlrW%$5o2ptMT0O<(ui1MyVZ!q`L%s?mr`OK4wfNd
z;3)&m4cuYiP6N?DtqqhlP|iSQ162&%WuUx)3cRU-yA4!)HGYqQdks8yCC1_!-5<>T
zZA84@tMQe?;^wKmiU#gCqRJqwEmFydDvUfmBC7Yn+9D4ac+fyK1J#YF=Ey?^9yU-_
z(5&mhG9N7bF}iBv>X0~Vj?^&lh=E591ViI3hDD`Ap5Co)-L0}fM$7=e+D#aEjO!av
z4b(BfuVLd{$^dJH)HJ|)BE>^#!fJ)ZN@`Jr;)&X#zh`KiG}oE1TdilHzJUe?ct@81
z7&au%;vJ+L8fawTaRW`Mkm2#h23{?mC^XQ-z>iB3EKpK=XjJQDN#){{?g@kF@nEr!
zW@0ku?->@!Td``qg@Kj^o;T3Lz|#g=8F<z}2Lr7Q{LesJ1MPUo;wA>#7*V~Fc0=Q=
zDl+(?+|EBG4xGwM3whfcn4X`@${-yLun0?M16>SsGC-Zb_*@Pd=xU&wV4%AJYLA6Z
zXb9FEdCmZha&}DA_cYMUzyJdS4fHnff`Rj6(9ZztlDuf3kAc2|ftTnExhgpsI9j0~
z_wtL;-D-a-dAItq0UCv7rKJWLQ3;q=3=F16v3kp}s6NXOVQcdLs+c)c^jn)prW|2l
zq=ApqNTxB0Owzm3D3``-2F4ip+Q2FUV-1Wm;LwK+yl&tP14#oZgWJV1-oPXSlMPIu
zQASE{8+gaSTLvZ?5!wdpM?ASM`Wg0Jy2_pEdj^Q?!4c9VN}rEUF)-D@3<EO_ywAIT
zCQUc+fq`j8gpa{?=5KXlgTfCDd?e12<_O0*bCwt(F<TIv@Ugg%Bb=jAZ$<Od2CII=
zNAFJPoU=P&h@Mp&2p(b@U~kd-FVwcl^TP!sJZg_j8dz))kRO2&fp07@5E{rD_=N6J
zRVnYp<`|eyC%GD*%jk1r^F&W#;~ABM16LRHU8kB$V+-lk7vgN63WC))J~QySfu#n%
zpkohK@K1aR<Kkz9NGYr~GIuhIltl$TmXkLFJX|LFy?$)hl=upRB^6jlPvQjrw0^30
z&T0c|44g3Vr-8KwzA>=Xz&7T81K%3hXy69}>&bQ*<$K=o?@06C(TG>#OG>CGjraxz
z_!lt}o0wR>QCU6YM=@=)=xgOSAX>;zjFHpo7W&@&1c~hib})Vo9AFwTu*<+N2KE|+
z{g3}lz0Hg5VeJ1F+f8S9xRAuIH=@B`g%q7-d7purZQ_KE*>h0kt$*W%27WitVs4_#
z+}I%o<Fxo;rn^(pYcmRuh{LM~8uRDeqXv#Kdo(EIYJZ6N#|>}}%UDqDCk_0?e4ED2
zX`C|fH+5^^nt{{IMOWe%3|usDh7oE+1zFB9zQnjQHNO7GM$Jw%V%3j-D2tPSiOHWo
zSWSsftXjYVAD4{?=;n%$<?nbQf2TFRQHc+8ojRPGpcRUwaZ@^~!I6_ju{2merKmWZ
z*|!M?8(fQ5I@b7>H2=Q_q;YE+xoP}#G0tDz35i1@PaN*8FPBV5KYEu*<MuR4rBOPK
z+r$V5>x<vR`7=1_JJJ!B&Yfx87@WIQ(Pk9hl}7nAx~0)Qjl0vhCyhiJkEL;M8Wqy0
znMSQN?n|R$8iU45Rnw@HjsRgQr%@%%FV3R!ADO%c9C;wkLKyLf(x9_FC};x0G^<+p
z#f-v-#UQ=6S{l{Uc>ViC4GMl-j;Ha6IDAy}9GB9_7j*2u5m^vQ8mb_=9g#SV*A|Es
zo<E{eqT0+hN7On(Ix3%l4|UT~p`3c6ub)N(L2%^2DYao5jnZhBM*B1xr_m&h=4rG@
zqfpFgmd2BUcsz}!|6TRO4TAresINSgW(XIsd<^NyqjFlN@pKyhOXHceKnH3YZ<U7f
zeWTXt$fb#&GvPj!S%R{+Nn_PB@wRD{Y^HSoC;m{Fcs3nnvkqx=Oh+YM2!F)*>XgQ~
z`bw8Hp5LA5EL6Q+E$k`=IZhvYj;GQXO_9^+kw(un2Ba}Cjb4Ju7t(k!jo$PGfj-pa
zh)StnO5<h9wJxIjq|x_3x%#Ei|37*cKf_d11`cmAD2)+mqPgOgGzO<JB#l?o7?#HH
zG=`=lKd0L)I;`%PQAnDgMh|b0-n$V0dqyD>4$+Wy4wpuyA=OJz-Z5#6P2-(3-c3iD
zu;S$SINC9dH_~`BjkknTjZcG>WhRLJw5T#Om_=clE7aRWY9Jk@*=<*qG40~-r7<au
z_tTh`hDQAhoih)Ro<hIvpiC9xi%ZvJVWWko)#+(`kj95;LgnE6L6zY@BaNxQC7PaA
zXQpxNYMk^e8v3+4JI((oHzvW66c=GcnCNaoPs2##Od4m?NT*?@u{DitX;^94X?#iE
z=;~>>X?&8#f;7A|GHHZqWO?@H96ya9jW(s_-R*KZ6p>%~x6a~cl{wUEak<DSWga83
zu{<};veAlKS(#5&H<n-M65l^sSx9xIu{4b@=p^*j<ML-|6e%q)rvA$-Y-p)`E-qgp
z`f~deF7^ATu{MEp-HT0mS6Y_F@-)6lV_h2Sk4h`jSj{A}MOvB0*A#i3gx&Jog^5*Z
z@OC|)Rn~~J$3K_XrosNTfifq5o5uHPY~TuMd`Aa(MkeP&+UJ~Zp{#pQ*_g%;X>3a4
zS2JhdP<eA2pSM*$eLiRWfnp?nWOfoGq_>DUB(|rqBaOpp97$s*Wl3Wn8A#)225%a_
z(0jKlv&zY{mn0rq6x+iWi7%v0=knICQ1=R+f2AwFsO<9-<o^IeER93-%rB(h()c5g
zsK&#kWM!&M{znwZzo&7O;}l1j;EC1hXWlKx7@kw*d8cA0m{fPmf0M}qneERsPSR;d
zOMi*}6m5M=J`dS*+G!@?iwcQzbfh$76N-roX<THWnYhEmKWSXz<HN))CjL$1GL2>O
zn<-qO^9+`~KJv9RuF~5_OJlCYXeny)I^FD9W#45v$3#&RhrWp|y&xAeF=B>N+>ER|
z=5x8oGHH2Cov>OhVItSWttLvE$TP8as0`9G3&&T_<x+H;=IwJznV?tPX5#2KQfU)Y
zipy-5mr5UBiIowjxXzs>%9?n{#KR^YTql(?ahHkmCaN`zJc`=B+e8%;haXh5&hdLp
z+-rgaTLlyM3A&=_D~bO8|ISu6vG^91(}u26AK=O+NZfiMZ|TiSRW5EKM!5>)>Sp9x
zl8NaZ<QitAVYWw1ly;>@O;G0~@=a9l5@)M6lZDik=YEn@6LAwyn`mXCz(h?GjZHK$
zQOiVa6ZK6rFfr>%nJ!VsL|qdUmfEA0>(NY8Wy+N>@t7HT@9nq8sgs5#Hhdacp^?y1
z5EiFb(+3JoJZa)76OWr{YT^kKz1GB<3DeMdKDnlB8ZG&a<Rf0JxzHXjF=J{A6D=uA
zOl>(eI&5un(-hj9c-F)-Cfb;2YoeWr83mCoX#E-2W7S@lcKjXnT%m)BjwZU8ksne;
zov6td75WTAzBAP|T52_4nYt{|)dUj=J@7db&zo3bVx@^5CVHBfN%6_5iQXngn|RH{
z3npGPG1$Zqq4t+d^fA$wKCoNvH(#Np`k5GHMlM}xi`3u5%O*$+5Iu>3g1D!cT&tM;
z3iVt}9-NK6N}F;u6C+Jf4@@1y%qaARQ?VxAKP!{fog1Yw7vxd&ifU?+^Lf9qc!Y_u
zCZ=+NiE$=gH}RH<&kG_!-VpqZ7yX+i-gs6aKNCz)&oi$m`)^Yxnt0p9J0{*WF<F@S
zJ>e>oL{HD5x3H0*^`|iOuE$7Bqj#D3z{H1UloNiLB0ud)%!fDUtDO814Pk;-poW{y
zENs>#KHJ2{CKi}jXd-DMWg=^04n<({H<6}g8E&PbjKLT&OiZYrd+7Fj`W1uDGC}{O
z^VrmOaoG{QYx4Vx=rALCU-W_KL(%gTw+ziSF^|HUAY;s06MM=`1@p!Fbfhwu<(^g5
zPfaW`@fkHHEV7txxlW268KqRF^d%;inpke4R260T_1G6CzB0i){3U~;vCO9cvkf!M
zGFq^n`r$C8(e;?@N?)5;Win%9pNZ8b)|l96;s?rT;u{m+35Qu{Mv3=Z6YJ?hjpg>w
z$ULNOnMs%uzi0TE(KBmJ)m%O}N|(vsWMZ?49VT{~_>rD$VvAsv3{Y6wn%Q8hFf@IB
zn~Ckr39m~Op?Le8T_%1uv4{WgWq{9Dc8g3x@%f0U+b)NJeBxScFK@?MFdgLSfwbSm
z0p<!5f1CKt#6en_VZtC~)-rL##P7nF_?)E^(m$ChJHH-z{!tSX?^ce96jZsfe8R+^
zCjJr`fR;T;FI|?PpKLyt#~44=IZnSiZQ=~`yorlK$!ATR<NBY*Mpag*$(@pX-h}b9
zN_YCl#3d7#nec^o(bM)$mH!piWb$VUqQfxXGQ(dtQN%)h2MrwDWFg1Goi@taC~BdY
zg?BByXQ8--n=Lf5(AdH)7D`yCW}&);Tnl*??y^wc0xaBW;SMXpGbw4Il!ek3e{}>w
zT?pR7Ms%PuRs=l4ou9W`xKT*=&+@WSC+AKJWw~q#rJNO21SUlGkPkqp^Y(wrcU!1n
z;XVuZSh&}Uz{ZJSLzESQY*e&B0FVbPJZPbk6`{M_Z-LM&Y?Uok`Hv>3G66asvLft}
zhph;Js8KOg{qHQXL~2-g#6p3Enid|lAX!i>s21`q#4L1M9+RyIPnet&LCAPdA&^cD
z78L#^g3Bg+bld{#8WWkPmKA|D)uS>k)V5H^!ua=;x)z8}zPzkL%#&taavE6ZxTk2R
zgxt_Vg3Ppz6C&v`3j|;x#ye4ih)vYQLZOA;7GALMIOkYsYoVQmCoD9x(AvWPEIdgC
zT4-tEX=-><1bx%oVtq!r1$EU>o>MEqp2#Ewa%p8nKr{sNA*9bUR)odWhS%mP#M!n+
zNat>ri9*xf!m}2-Sm;W%kVB!&&K4@~k~)cg*!dXYR@f7?hd4IfEOfWf(?Tx`&j~S!
z71P7Q^A^T^00Jo!RQa1WIj^>piKs&i8DgsN!WS*PL<?FNZlRBbz7_^s7-FHH1%fRP
zup-bEVi5JGAi_+v)P~<14YVTIb0V$`vha!(L9Y;Mn>`VAUZs*hmWNsqoDnh7iBe7<
z8)0E2#kBASm$fk3!fO`B2n`dnnmAO1z9&W#ak|D@5rjK|ZpMifxD;*lriHgGOr%iM
zN$t996RZgJg#^)-2-ZZX@V70zV}S@Z;V_wyP?N}&g>Nmaw=l)RR15RSvxWC9OtWBG
zu;}&{KCqCYdt3O>!biNLh1nKn2)86|3_*>Eelyd;tKFiK*&kCIMIzXF%1-}D(m8i2
z;gQC=1%r0~NKRAp<y8WY6N+l%ya@802C^+U^hOIIb$dKgnrnerG_zgFvrv_P8jIc+
zJ+IADQM;8n7Ul{K5XzfgL1-^RZFgNQe_~;Qh2<7j&>t*(YGH|mrSua?S!CgJTK{dC
zh(n9%gip(#QScE8St8^Sqw)(2Ut0Leit0_%i-`S2SERo!V?ZsER&>t!YmvOt!q-d}
z7S=L*T#;5;Sj}uRQtmag@M^gTU8id6ILm5(V_}^Yq58D{CqjTH))S5R9YfN>c?%aT
zY_PD=!tWN2G9g&lWMQv`UoC95BB1ggE&RmPQA45iw+LU_YGE7G*GKZ2E;%={4g2jD
zc8KJ&Q}nw;&+(rHv0L<eME{HES!7|Kh5Z%|(6t2H3`6FD318(Mv?8=CA`2a+lL(sl
zUA;F*i`wKIp&jSSU$l-Nv+#$7zb%}$aNNQP3wPhAoU*{o@F$(Nsq&YFlXScm5%v*#
zg5EQGFukmwEuFD&mI?N5<(!4bYN*7LA~F>L+?e-h^oth$VOq8U8<#Bn%j|9AW*e6+
zT(NMIjT{?SnNsA$n2G#GULw}nH7i0qyDs`7c0_v}8W**r3IdEQW<0umF&l0E&Wpgx
z><Cl6gdIU$5o4bjjPaOjN9b@QZnaU;#%(sr*eGSAG>P97;yba3Ja0$eCTu$$mC<**
z9l7)!b_AaPh5+3vXX7p&+W5>yc^h}z7-(aVjeBg|YvXYnO>I=LaUXAOBW9zbjY>8i
zwDFJ)<_-G!{WdDwV6pP8FT|_ZxORKJ2SiWeU{-n9MpYZtZPc()&5l68n8O)m6*}k8
zOPM;Dt{<@@tT1M?M{P(pNK|hY9m+No8})3|x1rjRHx`h88+58T?<h($)Uu<J2X*Wy
z9n}^z4`~sC(bcu_8mp_9R`~pCVB;|x4ejVzmax&jOAeDHvkIf5k&P3()y6!Vhuc4C
z(!@rg9T98<9D2e=GaFrObhYuMji+c48*Obgx6#7J|7<*Cqa~GJRN=#jKJ&DV!;i^q
ztpw3p^hDEQcrqM_;&twT(vFu9SB>xXc9c)r+jv$G9YoKOj)Lf9gL#sN^j-#XHyhn;
zykw&f&)Rt2MlTz^?Wh(2A7njj^t8cZAAIt%=s>N!2uP5r>;*e|8F-O;6Cpr=xV|>}
z*-_dbU`P0M{q5-S#BBC51^izGw$^z{^f==a>J=M<xu%WxZ49yTs*Q1+Y-1?ZXk(O(
z(Kd$L5$fOw8zbq2p-fFOSeT9&BS#v@uh|$wKHrwd+EGemCSh3z7I$FW(VB1Ac+<w)
zHr}x@-o^wQZ`qh=gAZ;(|M5x0r$52X_~>U+WnLol@7kDbV+zCJ6XiW&^hq{;C=vy1
z^aip^dY+GoU*u^vrrWS>I5s}8@u7{`Ha@oTk&PL=%8nlWjP99KY4xbE3$goVJdjJ&
zGA7}qjg*ZveaVJKuKtbbLVH6;6z8jvA#6wUEq`0KsGN4uixY7anGJ60lH=O&Y*vKC
zCpI!Rd>dICb8G}$=YYb;&C8|YAr-Y%X03;KgT%qv(p*NzM^PP$d3IDef^G9=c>x8q
zvB(BviiKl1?Nb{Y1Uwo8hc6y{o%`Iz5*z1ioVT&m#uqlW(P3<SY2zy!>zPt)ETb}Q
ztg^A1#%ijppzA)Ver;nVt=Ued4u_n}W1#U}WsMybKv`?!8yieMH$XKjomAEd`!cV7
zYe%?k@>|mP<iy4%8=J+cjdt|-_(7x;YJ=A2%hiuIej@WW_^^IqYlL07#YVBO<d3`L
zEGez_$%~NOcG%cy<A{ylnHFsPY-5j&Uu^8Q!KfqysXZ#+RQcfBYvWfN2WU0A$8eeJ
z&}#c^>=$Ws`wE3hJ1Crib#Rzc4l#GtP!5Zp1a*7V#xWaz+Bj+B4;#mY-A~Z0akbCk
z$X6Le#FJdyN&bt8#m3(ZE0N!rtEn7D&>32Abb>L<rz(lF;*f50!Nx_V3kP>N_=m}#
z@9++aIrx{!pJ~v>b!KTMf2P^F(Q6D-F>}SSB2lCiaUv|xn;hgg{QqWxZyikX{>Uh$
z^F^z;gPR@XI>>Wyi-QtQRQH5=fN{Y`9v5L|gM(Y0=v}mo13shqyesLTloKVi(hhEO
zqBnC!6CdKV5oyANGMesmP}V_p2Q?g&b8we~iVi9{{3jIdc5sh_dz~nIFp8P17_iK@
z6}ar(3Lhf(IsdoP3PbpQ2bCREaqxf>Ws+3uIAfeIqP*9G4yrlP>(E0^^rFu8upp|6
zerBH--;J599&zxf1Jz*_bx02K9Vlc>lv9a0;0p<zR(7Hc&sN)xYR7QR0tYo6)N)W;
z2*~FMA1h2~e7&jTM6Vz99Ju%A)^(z{Bfk0QrB&)VL7^PH=3<PCh7KAzI8H@5XzZYg
zgGml1J1BJUxPuoQyy&2*gC`ucckrweAwo2B(857W2TwY9$^n5L2q-}~h2{>%maI!m
zhNrpsF{L$6IT1=jD+d>^NNtbF?V8JkgCO9;GY;A~5hw&(TL<m_qls40!9hm{T^w{J
z|5uB&uP=9U(3uKZ8Y8?z$+)tqjMB|PcLzNj^mHOvhUXkKToJAR$rkB(2Stv>NbvC1
zpA<6F%fa_sq}~qp-52NNmmKtQFx<fi2Yns%bMOkS<DkETm&pcg>R|hkVgsBAWr7$E
z6y)U#b$HW;lO*<(bcn<K*tx?T7GabLTk)!cp$>=$5zdjXFN%;iDC|fFqa3{HV7!CT
z)P{p`4qkU)cbCUFpdbX180&yc4x1!h+Z-c!1(oxL5U1Kgc~MJcf`hjlyzAgS2b5wW
zb^C4vsqwahS;drh9IRPaz{WwMPY~>afE(1_6dKyWDhI0>BMzoHaOeOIraSn+f#D$S
z;6n!=Ihf(_F@($xi42pOUk}Q&91s%ZV+TnGvxNmIJK;6Ba>~J!W6>PaniGM0=$u?Z
zAz?b8wl|EEEeG>Y$<3}xwiDrm+;9euw{Qqtj71K7I=q8<oaP{Okfn5U<T?|SIl{P^
z`ZCo%SJ1RIK}C4?PaG@|=Hsm?d*51h7dm*ldSduYWwC?L94v9Ll%B9qCIg?-MeEBK
zke{po9)98AD+kLQeCgn~IWpTDGYjbk%N=}8<3d>>w7rtfFjJvp{I*5nAbn<ygS8HR
zcCee0I#}mmlS2e%eCuF6NAmK25K%y9_>PL5Bz^B-1EZe(IGGHvXQOFo4g!z-=-?*@
zJ01R?2wQ|HchH|FNi^bC2ivHP&9UvGZ+|96nl5nzn}t9qBxv6~4t}8s4h}ll%fR6$
zjdW&mRYoB=$$sj#W#s1v=*(-1?Z`-!lwoqn!C?o#J2>j#h=ZcXWJbY~ujR_4!A5tb
z>5mCZ{UHoNTbwN?|LNc)Gmi_^#a|9iIk?kBSr>mhI87&aakGmv4$eBb#KcbPjFZnf
zIPc&BV{nqhcwq=!<lzE|_Tt%p$n!*bm#SQLaK*uOhNp{HcE+w!_AL=+%QbQLbIB+Q
z7*IF45iCqm7dbAP-Byo0voGdG!5B3tx40<b;x-p$T;#gQb5Y9W@8p0Rc^ws7QV_Sg
zU}O=(W$b$qd<{<#>4nPVg7hvL@pcz?@LmVy<GJ$f72+r7DCJz-<)WI4>MqK=xZ6b)
z7Z13&#|7o8;Nm_P_X?W2T7`VBS<#L1&;2ecxuCge8YVPazp@)yhs!?b;@F+_9&#gy
z82Sc{`>-1&fkCEJ)s3=Zt30)anDdB>M_o)EjT3tkY?6z77cm!ozLhcuW!a5#1#e3K
zB=eLj?xMiOGcMY=sOh4Xizlct7qx}>4O}E#)NxVQ1+S{-Ms7xeve$Q`#LJxa7?Zz?
zCN2nNLs=S$Ib6K4i^ony4$Pj>ROsSy7foHnKWVJZEToxeEUNKIA#zJM%C1kjXwKCb
z3tOZXVr2C}{?3e6E?QHi3!~tr2IzJFb0gntv07>CqMeK0E?#ia-o>*no)<E9aM4i^
z-CT5X(OIlUhv9-<TreoQx**LPS*pUro>!&rE}j!kweWI`Gkb{3dy2jnb#hf=<Ea;2
zyhPbu3=*gMxajMmp9`+Q%+Oy9zU)Q_Ka`OR4xoUQWHx%pD=x0APrT}~m<0xt^X5^y
z9wLbEHb;Oz!`vwRZ$KCgC!Y(X5%izmrICUjML{M>qXo^!&{!Aas8tV5J-qJX4f>&r
zeJ<W~G2X>I8iEe*;w={+xtQT%qKmg(yzgR~i+5bSOI;n8rn-2~#UvVfzx38e(mfaR
z-oCZ&WEWFhe0Z1o&L#EP4<!;uy2i^*MuqP2=`KFtDY{DcI8V*krG9g%X8Dh#Qr{<L
zx|ro6<wB#jyTxa__}E3##b+lZzkB?nA0^%{ahLktAVqg!xNu!~E>3Jp^zR-|yD(i?
z)D<^iGdZkG<Uii1%HhV2pn3TDrbPV{QpQE-LV7;#Q=(mJK*vrhxkqKvSr>C$%<L9l
z^MS;B&2_PNjY{GZ7Ykf`<6@nQg)TmI@uiEeTr6_2*v02AmT=7vq^8@X!yihYk=x@E
z8RorsM>4b2#mfDOFT{9WBEHPUau;h{taY)1rx+J54rO8+?oz*IGU<?0v|F6I%6=%V
z7USjX)P3T(REz)Sh~?h(T>O`v>bEY|yZG6~ZiW~Y<>Dt7TWEI|^}5A>Ah+G(8yRu`
z=B@4?U-6N&NsMfE@uML6eZ;C~66b7nvCYL!7gxK*V?V2JUC5(ux4YOuQ{JVr(Js4O
zZcLJCL|Sl<i(lwzm(;xslMkgX8)6ksNK`TjuD0LB0j4q!cY65E#X&CX;u=M8aoEL4
zrg6Hoi{F`K80nPs`S?-laF@yjY23Rz<{YOfIj4KPV}~4j9B9)=I_CVzy!w5Dc0a}B
z&rIdw9~VV-sl4N9T2^p!ma^ZaQc>r`A$dD5hzp`8|Cgw!LCU`_E;G<Rl4yl1biY$E
z8vVhJIY)P?<u0k$xvYm=4|!fB<4qoNJQSY{PX1#Yih3yKp-~;RxQ7xR=oO@I_Hc_B
zB;8$0ESMCH!^5o}Zu3ya!{}XVNiXtbY?Dff!_uPX_|;5|CcfPRPnGPD!@i(YepwIY
zJmQW)^>CMm@*W=Y@UVxwJ>28reh-yBP*>h_@q0Z~@IV16-F+S^dJ%Esu#$)8wn;Z+
z=Pf9B6)zJ10S^xff;1Vf>Y<v4M?5_0u||(n-9rs8iiPzbN+mAlHG4k3=efA#MF!fx
zFh=%B<a>yDkj3EeQ!$Rzy`(O0l!$w%?V*l`0uMDk(2;5hxu^}&+ZQM5dU&l*@%kPb
zc&O*GW{1@IRE%d69&1`jY>hoU_8;BQi=wHK2de1C*(M$e#o2kq@;UN^hh`q$_3)mD
zCp|pnp@)Z_9-4b-;h}?vjvnIA##?%L#zPwqPkU(Pp*8K&L;0Tv;sd`7*&P*^nkWU!
z^V-tf9*8{Ldx^wT{iYOfT6+)AiblF|$9N|(p|giB9yslbOEH2QclFTSL;sa(HxGm_
zUNW=r&gFT}d3fH#$qxz%eSG1Y1p8jRgv@&w?BN9uFM1f@VW5Z4JH}t~(2rJrzu=eI
zN*@n>=}wm#@0?laPg8idznJqf@6tKWLrO&U26@<CPA2i^l!751UZr9^jPWp(Zh2?n
z2oEDY3?sMmB(~v#AbRsCdL1p&F6VVC=LRhE<f8e1wI~?tVVs8vRP|2<6p9eauX}jI
zL)|AEz3GAY&*Q08OR3c%!h#-DTE6G2#9JOF(i^`@u)Xc!9YG)3q4IE&hshoSn$N=&
z4^w$}4=E4tdzj|oLq?5<eJ5kn=?1^5|Fo<5frq1eRhoeP3=cD@idoXp+J!ttt-jGd
zKFh;w^3y*4vFM3GO<MDyd$2t?9t`@DhrPe3)Ay>Y+U5{e+N6H|iHvA525T2KuT@B0
zxgO5VlY9?^u=Yfs@vx+v%)?(N7f_#B4|6<x>ESC6b3M%SK;<m)FyF%`9zGL3Gi0y2
zz{96>eh&*d*eT9-tYW>Mo#Kn>ex2fXPcFfJ;*)hh7xT}~ENovTmn<#y@CDnY7&Xa$
znTO>bD9b8Ze@a1{s*S59locLUdidJIk#8H3XEqY&)+nnztReGjl(nKKL6q!oJ*=lz
zvzV5}cT6t~y#RFsZ1Awr!!H@^&EN+Qo9O=;w8>zzhaahp49aBilZP!H&T=&mTRm)J
z?DM8nnui@8ex-rfTEs7w&fn=_7vt+|>1PjnxGcW{_VB|sm95wuY2Gz;uZLNaaQdYB
zT+4Wgk`4BIX#1CX(8D2mj)zjS3V#!Qo~*37uV&4kV%KIUHOkg~Y>xCh?e5`($32QT
z=HU+yrS~M-r<C5O)Z@%}hl;<@P?<Ic6<fwndMLVG{fkLsu5{$jSly@NBu;tw+rw!O
zXT&&1b~a4#5)$W`5<Oh=aNWa2`uv>4zaB2r;!KZBlGjzQxxz(WE|uSLUToT5>J_Hb
z9V&^d9zJdrPcF+VlEF<G+>$|w401ByDNZP!LD39~WiVq|9;ekBFR>?kH)o*b=8?$F
zATI-CaBBu@TEr<V)xx{{ejrA9OJ-0igVGu7KP*?-uC82{=x}R;MV54X26tqTpFu2x
zJ2NPoLFEjpWKb@HyE3Sd!F?H&&p@~1_hvA*W&G|;WR80>m^~*EE7gEB|57_LH+G~!
z<BAzjv`QIJ4`oZ`lfFNLPg)e@wvIoL!Gjr8&!9#I4`tB0V%=&P)Vr=eEa<8k6ebil
zDu)It-6+8|b63faWbi1x=$gs}d21=dA8%z6at2BUjWcMHfto=)gW4I?;o@cM7GzK}
zgP*4;t?DO0Epfsx(vrW_cFQFCK-~=LXV8GR7831yJ@<)8{4bT1$e{fIrC}!0|6>_!
zt*(-2BnE$_Vpqw989bgriws&)Ios8y89b3eGpegpevbo**S9CAhx57WlNmgf0SUI|
zg1BW(B+JtoaN7SeXvNF5L~GHL=sHiK%T4Q`w9TL$@17w-Alhf}Yz9Lzcr}9#8Fb8`
zH&vQJrwlr0@LUGZXV4{sez)d#%b<G(UD=*4SopcTY;5inO)7J{JZPpgu}prC46|rr
z*=ea4ZMseEnZf<@V+&VGQ?5x>E7v{QTX`{qzFa4RmoiwnBi4ua;^)}oa@ilAq4dvS
z&`+^}8N5t)YF<#gcg+Euzcu<)oa2MU*;g_cEQqo{OB@`U!LSTo=Y2C6p23I=MrAOX
z>?M?^wyKl1sv|S_E-THyt?p|Xoc*%N7<yC&ZC6Tnev&wtja8bHuuiGtGU#<c*<C?>
zGlTINyp_R38hV0Md!{mhKKWDZ@rDWZZ)fmM1|Melov-xMO6lDUrZTatjOh0=m?UVP
zn#>9R&Dqpj;o0{YP~z-#F@Cev=mT+BVrk+dp|Kem9NMPN<bBKJ&&nXEpP0?i_#`o)
ze&SrUc#7dhb!G51T_^)1gGCuE78*`xU@>NwCd>?~)oW6%r+oZS%+A0O61iL|gOD*I
z4k=?MgZKZE{R|#BB=L|JW;4h=99x*d9I?*a4CZApKZEUC)CJ-cr+p$$MblPFyyR0d
zb23I&X`0V6_&kFzGx#clCE}{38PL#?b#|&>2#MxxQ4i+lQJiIrh3$!)IkDv#&>vPX
z26I3!qA#t=V08xDxB^X|!P*SI&tO9a-(;|k7NiuF>wU`{wN0f_N@Zl;V!b#d!KHY1
zBg2+j&0tFgo2Z<H%8v|z@{LGr7Ke1Oq1#m6ZY$ldOg`PO-kBJQ##M56WUy11AjwL$
zjAdc{>GvtS>1i`1PP=VgqJERa9%}w2g_r!A!9Mz!k8VEpXK;Xi?xV7g-!eGJoav*O
z&p&N&ID=Ce{GGuOTIYS~IFsR$*v9Je?~JUu(owGPrF1NVKLkOnY#yGV2Hux?za#yb
z!PPniCo}j<5Tx&{TW~sqGZ|dY;0m2NgL4`DlfmhAvGWXp4a#GW$QLuXkU{YQvV2)3
zfcBT~<#6y4)%ZY!v;8mg;gT4Ms~M1uB0fKzkYZ<*YfQywmFv9qWtGJ1zI2lh_BnoZ
zA&KHXZuW79k2`(b;-iF*(mrnUk?UjL)AFr6ToTLkBN^Esi0le!>d{z9AEo^0rflnS
z^UH{t#27#LxOzKPS3chAf!xu{^2+)s=i?q9_fm)4+VMW?u%Nt;yL}Kp{K7_=P~KEa
zCo89d5353ih~9BJ?h|J#ioTNQ&)=5M`Bi*8;G>?8`aT}?@sJP2hw9^DA60!wKJv*S
zx$^O-&t2tG4Nm)Bp$Ieq!Mz{xv8#eYg63HCq#W}h`yhh)%d_Pto>Fcapb+|-dW-ug
z@KM_bfyCFGm1_E+)d+r0p=$Y{P;7O4q8ZC|{m4cgrlZGnH1Lt|(ZWYdACLKH=;Lu8
zO?@=-(bz{5AB93)bJj`(IVV2(vNz+z7$=lE(b1pq(acA4KQh+0bqdJ&le~6G>?scR
zjTmE3h;l0GX&<e8wDZy4M{5ecTW-%E<bC{)vRqc#p7GJ<Kf3OL7?+~F&-&=#qmvMX
z+L$v&>F7sz?~mT04x5zI*#~dh#gFjP*{T#%y8C#}$3`DN_;}t&4<DKj-A7L!y?l(I
zZn>0?7kmuz@rsWZeZ1tOkB`27gtx}}Ae)I))<53QM}Hp!d<^8Z-Evq0gM%+~g#q#M
z9hKDJILltJb_SuqhzvH^#}FT{`Z&@x$6BonrHhtrG~5TLkr?Jj0B$6BEpIW3hVb!`
zj~PB*^D)N9cpnpdB>Tn3@{WDu<9sX{825KKe%%MlXS^YL5^oBEfM##`nCN2~U1F2;
zwvX$7#ozHkX37kXvntBF^#A_x_e4KQ^gNs_h$%j%3gZ3$#v2cebCKyjJ`k&Y=wr*3
z1{_)SQhcV5Sw21{V?JinB_7Eoe%i)?aTYxx_!}#vr0BQ(;;#>t$Px>e7(UWI=95Vp
zh!Nq#_YwH8eK<aTUoB;Put13`bm-Be9*jWSsL~ty{Izd9^pW*3m%Ir{S<Hn{Y;%0D
zvPq3ug~ViAu`<C%^tlB-7W!D`W4Vt{sV*N&d@S{`*vDr+KKHS?lT3ZGm<y5X$RV|w
z>YDR~A7RJw@Jl}`K{E0W`71%N&Pas(=3^z@;}7|3Y9kp<82fU(X4jlmK34l!L+6A{
z-`L<|t)RaVJqOp(3IC(l`}j`K-;2J^gUXGo=m49@m5<^9ZVvFHkDq)T^YI52?qjRZ
z4}$Qkk8M7-``GP+s@~yar|<`AhILqo#kY&GuwVUI^skjsN#_*F-@_y${Ou(_A$O7Y
zF@rJB`#9|5027ywgIu|9oYh`_=$gYKET_BX&|Z@(<!1WEkI*hmszaqpXYy$DqZGVP
zoH{4=-Epej$0Z;C`uNkwNgro?ob~aSk5fMW_Ce)5`%0X6hP_^nT;ep<GBW=1$T)k}
zb~)$cf{%+n&NDP#iNN$|<$pvV93B*jbBCWGfZ=5yS9}x+a8rP*!qC^FOqjTJI<EO(
z#BJ&qAGN)4uYU2I07V1*H6YH~G~}OlEEa%DAP6D*TLP2_P&q)A0J#D30+b1GdjJHu
zH9)BVr2~`<BI~n!4~ye4oO8zFwgB|xqx6%3aiT9$oI3*C8Q`7(_Xc2Smkm%Zz+C}o
z#|4#g87$=ktbHi=?f|44U1>mtkLwq&z(4o;$L|lo=(sP4VwSC<ASwlsDS5~kWQ0Bt
z;K2Y=fcyXt1$a0>wE)!v0z}836ZLnh29aWk4_QMHq#vO;10#{yKPqT49}6G{h?B_x
zN&q#$ll|gVp3kAX-rGNNmD_Gc%>cCm)DEItM0iF{IC@=TbW>RFtgaWJet=|%REP!v
z5&`xF*dO4r01X375AZ>NMieu^umHmYGzm}`pi_X(0Ui&~G(hVB{|h3(>L&s;528xM
z&4LKg{YlZ2cuEi~8rvcgP-z)N2*yu~p2*d$0uYUyBhLhA6QEsy_5pfck%@H8qQGrw
zI8k1f5Z2F9X^+aiAC=j62+&a+ZkVI+uuFih0bUBwhrY2s)-AyE0eS>@bYZMJ`M)Fo
zxd5!0``V&dPhRy+jJN9@pcf~67a@D^kL7aY1;NsbK~#^JhkXO|3oszSK(P)XmkB!E
zKfv!qkD<NVC?v?tpa6qu#I@2ZK?EjGX4ns*X8x656@AlLg+ocqD&)wB03)f5022d@
z3NV_+4KOYMQRQEwM8~8t)aP4K71~-`W2_hadVn_qj1MqDXqc?N8GyLWY%F|Ch-N}S
z6TzF1*KY@SC%~itlLNdPL|ES(d@qPf))EbyYA4b@fyas4KSii$DsOaK{`&!@1(-W0
z#zn?%O!S#m_+fyL0<5IE0?Y_7lV=0W3owf@62J(M4)8G@CV&<|50DB_;f{P_M^kXZ
zXcLs1AlR%pK#*-#i#7vT0sH_#0Gqz?g5pvYH|0A*9731VZD=nqKt^!I3IeRlNl5&3
zT{#RQnD?ycNz9?TYRDw!GoS)|8ema?1p#Q3g#mtw<r2D_G@+-7BEC4lX8~5wAxp`h
z2Pk_+`YMQO7Ay&{l!JsZXVO>{d;F6KOaDuT?VO0<gk=Gii<zWZx0fK>M7mxTV0C~k
z<Rriv27Z9`0ls5E2@hNs;9CX`%Xasb2^ViJkm%L_)Q&1pe;?q70Gn<&Y7o_8-Y9ya
zSd-7qWIKoe#!3GeMD@5?DEUTx<ZS`A2iP0n@865>2(UB2o&diD*u}uyqVyQwm_A10
z=K#CK2<eBm%28qBPa-F0$o$F#_+3;7fi8L=;65(gAEI)Ig8>dP3<DGiaX7#c-Xg$h
zdUb%K0Zs(?lkqY}Iz}H@7yE<xWTeaxrb>?oQK|9y%SsUU`y`DO;1rd-Mq-H34=F57
zPXzlj0nP^aC%~lu=Yj}7oUwe7p&@8`;04~|^QaIr*QdQEjm)K=&`bXfqJrR;#k4D;
zzbg7`A_H)pn?mG-xFf`!A&Q157IGgQN`)vM;^q)}ArMC842Wb-kGds{>JF3$kt+z&
z9A{A68iIaKN6P7>{J1_=It2AoCdBO_ZVRKb=46Rr<Md%h>k3t+CzlOTF2p?{?hSEQ
z2-dSGAL8yX!m+2%6M~)^;C!xMf$TL<?+c?E;*37hl(b@qN?{~2C$N}!l@JevXcwY=
zhzCPF6rxs$+94heQ8h%35RZhYMw+aym8x^jqcY=#1-qFL9t|OdkV7aT^24aaHgWaW
zvH-WBc}PTbR--28YKV9k*^AW;3c{$&bWPFIGfCG8Q8z?kh{wsm+Q{weg{aT`A4UZ`
zc)NyzNQ8Jy5HuFY8--{bMlskVj6#?)l4i&^4e<n37vkv<%|bjG;@D=HWjk1B;i(WU
z!v9-yp}8RFnH;A%n0#7^na_l1&30Qp+y5xwScycNFoODLYb%I1Z_9r+M28TQLre+L
zF+`^j?}T_aMCUNdD&0bK578xzLYp}JUBf5=vWUiW!b~rQcqzp5g6<*uo?(;|Xu)3M
zu(vSK3n8d;4)zJrSB$?d`hFpX3Zj2V-0axPVdVA$LJSNsh|C<5m?DNy@UhY>AqI!h
zGlc?jomYjr__(1(hK2ZHQH*njhZqrJWQb8b8{)MPW5nWg7+%7B#eOWsSr{89#+ep4
zLdRqOMu;~<(2K^?0d9{^;Nb1bTf)O9(kTDRZ;NT1N&k6Ia7*W$Bp9ZP(k@qb#>mgq
z5Fdv4D8&0=^njQq{Ee4P5Anf&G_%Ky5UkriGsG-m7rMdhFe>;?tbRJ%$7Fs{jE!{=
zv=BODEsMM?j1cJ%TSIJPJch7Bd>UdA1BZNum>XhV2seZm;`{4TmSJ^W%7pl~tn7#2
z|19<{l#1??f)HVd-{vMJ&nnz}Tz&Ljbq?dAl`^J8-h66cT6_T~f0g)zyv>hwzNWr=
zbKQj@PL3~Vluq#S#S}TjHzC%A_&mgt5Gz8g46!uC7xbdyb-xPnWr*z)3ht;C&0lHc
zkX|NEEf+oK>^>X2{+sl5h}9w1gjf}VBW!0jC=ZmYyO!QQp`hjQ2BaUJQ1ESt_4M!%
z8)=&9@$V>I2yMM|c0xhJZEB@IB=Y&|{mKsvw9BzAAvT5B%!J%4cgx1aj}(8b^pogG
z?AV~}+7->;9%2WD3h`HnogsFG*dO8miCxmqWQMURG{#GQ39*;S(2#y*L|julelKYY
zV=K-?n%u`_dnsJ)w-Ct*1&2c%2{E8q<Ac0b5Twb*?;(yd*4|T2Fe<6KtI;BV2;$Q6
zh&~?T)ctk2;I})}KbZ>3)#Z&&h4`CltXMZEi_;;_&@}WAhQLtea>;zElnUH%LOoA6
z3voHbg%B6%|CeL`Fk>u~29#4TiNo5p5*)n3h`zb*b$Z>b!mC12T<01s^>%_pkt}Y?
zV$rt>Rm#?3YocftoeoOHvM8R#&17JkR3eKSmU4@rlhfj4wa8ADBgo>`ESh9dm_^Af
zN@Y<ki|SdF&f>N#?#-ftxG-m4tV|ZSXK_ascV<y8i@UOfmXcbJFDRSk76O$7U9o%?
z?C;6q?-P+{-YpKF$|Q0p6!=EszAP$c@qoCn5{Ytk@6V!g7Hj4uNDtpFRpEb#G-=}z
ziNcPN8b6rDLs<-2p+1~N)hyoIsV=)EugM;XE0eB~#UokN$)Yarl7*Col7&if8Y}r(
z#IgiVNzl0TBAFA0DvTgm&WmTcnKr*5OFZ_72#%?>vZ#Mun!hYjJByCxWYU?dDi7;%
zJWD){MB^+PWFyCDn8p2bV+lcX*~bL&P79UBYLtz9{xu`#t$qr<;_)n+X3;;3m$P_+
zr?P09MY}AX%;KpmT4d2OixJn<=2=*^m7*IHvuoq=zoe(LXqCk?Srk2}w*Eg%eFu~j
z#q&QN@$RD_B1jNX5RfqJ%<d6o;erVi1&IQRN(RYM5CsK92?`=X$x7JSnVqydGfPqs
z!A#CMDJUpP&i~IeU;gj+UcY*uuCDH`uC8vlyXmSJc)IK6WVfV=x@OWo^jo^t%WOR)
zZQU2;k#8GAyBOYx;msJhq3vVn6hmjOB8HKx^InOeBaNWv(p;qLX63&cV>F47@<_N#
z46jl7m3j0Q($~2cg`1FHx>C4n4BcYr5kpV0O>Mi$-Kq1^C`ThrdeKKR8}^E!cPzLf
zo_R0xK;3Ac7)al^r(wSs`p58I3}a&$5W~P2-i~2Z41>6dTrahXVc)F$Az}%`W2kmt
zouM%d6QJOjVoT39;2P-wRaVO79#=ljjm}yfEO~Sc@5JzRUPI#4`K&R*GVjJf2PS9D
zuJE`R-j88I3=?DcAcpZVIBlY9>MLyG4M5${PX3U-JzttE9E@NR-AQnWKNf(_JVk8i
z)EHQJTXM%gjbS>SRzoEXGh+CR`=w&BikUHdP9IYttC$tT>=<^&uq%c+G0cr&bqs4_
z_#%ccV@Skc#4wMSe+*x76)`M`VIegP7h@34#TUbiVptr*o#3Sv=4A99l)Z%J9h7}}
zR{m0MUkod_xt$}$2W2m(LmmmY=^SC8W`bA@DlOkB5|4qgnl&!%pU}=PBw{@l#DZq<
zXEO#Xh7`9_3}SO$D#@oX`y@s>O>*8E3S+U3-k9UX;EVBB#gOLt9hl9~ql|#MQpool
z9A#kA{(XvZ-nB7&6T{{hT8@*yc~AK^h7B=%Pd|S<XC2Qn7uY3-<vRh$tX#Iy#u$E#
z;injgHwpR!=em@|>d?OO&oTTO1HmtXj_w-au&n+jsugNvZ4q;A6_k^1i(&g+yhDJF
z3#8pK?1|x043}frOE-(*L<}cm*iRG1a5#n|F;v{39E@T4D;bAk=+3Nw^~3!y6l5w5
zf}^xpTsqDJLjPYT{XR>QYGg7G%QoT|{)pjh41dRPDu&ZBJ`Yj;;vLvD{AVo4lyP9N
z@=M>$K8KaQ)8sQT$Tc!gosj;a4e1qQrT=*4#_(z)#EB+_Wb>7b-9_r0kMTEJ(uEi<
z3h<9Bw_Yfbb0vnWyn$8JP;o7W>vVDz_o#gPFLCf2G2D!yOSB<1yv2idUmXs6n+qJQ
z5ND`(Z&Cr~vMHvbpo&5&{<|J7tm6Ccq#|mdZJF8m#6?v^Yh)5+s>o6S75Az*J6?WR
z#eD)0KcwQJPSN5jN~pMBFiWa<Kt(APThBM3z=MKWn!^gfbTjLVE0?AGT3_U`wX7PX
zk}0QRREzBLDk`Yh*dvqtH@e8A6;(W<qLLb9dwE<%RTYn_cub5_{6@I4096F#Gat%V
zqhh99UB#8Mje@~1D5Phja!nQ7xY|5`brkMbEiQST%x#qfU`CQUYLE|wiBS|4VHKTK
zys9FiB3s1^Dq5(htD>HYd=*crsIQ`diX0U^&xISRXrw}!5{ar<R6YAiH3)jcU^|Uf
zoUEF^>{^6Owl-1GRK<6fA{DkpNf|~gSH;6U>*oo&z9^nnarIB7nTqBro)IH+@Mk%i
zz~4yutTGN2qw74c!aAoM>z+^gqKcPPv{TVu<r@K%=$X?>#mg!_z8N{)IKT2~rL~GS
zY7i1?YmPGSYNV|i#J2Kpg;sU1&wyqf#H6pNL7E1Juc`H<(osbxE`N`F{z`=OH5FY{
zyszQ|6|bw9A<O+#^jGnQiZ|6D5K~tbJ*c6IZYqBKQR=RO3qP_sRIo}8LuU0-(MJV`
zWzewRDt?bf^R7htsu*x0T;=(?Z>b<<h^hf92C5jLVx$U2sT!mP;lGBd7_4H5il^H|
z&Qz#7l)}G<L-FYI7bC-kz=+lv6k|A`w^h8OVhmk~_w7D~WwZc|-k0CydcO;grC&8s
z-lL<6$Yx_ciLg3O#k#2x&OTnn1Ql~te4%2ZiVwL=I)lnD=kbw>DJrJY10Pi0IVmyN
z)W`IS+4+-IFbo%~(^y>+`c%+Qg!0t?%->nl1*gUAe74S1G45sgfp~N_HFTK$7PD0B
zULPHJB$vXB;WmdZ)VpBk)ykJD=BZdfHI9V~UXILHg9t)f&q&1Y|CO^)4FbM3|2A)2
z!Q3UBOGWQE`o!_Iilr(pP*}w>70Y?<RBThRLPbo)N)@YAs49Ow1y_ZqLQ|ouNb=mN
zL9|Z>?M$dJ)F5`NslwrwEmbU0wFM=AZJy%%l}kQ@c6M(WVdPK7@NDx5em|b+t4OOs
z<WGhhWdu|Pn_aD94P9O369%lMgN?wqG&OabBz>b|*!__pXzJJ?7AwQXu2*qvSCrs;
z9(=lx%3mU3lNv;nWjNCxc(Q6{uHn=2QjJJ|R`Cms*;d)C;#cC|a~TcwHy+ZTqIWRk
zqi#{b@TZeMl_|De#SR`rI-ZK1Dt4(jOy{KWRqRo5fRbtu-gYnj=Q(-5ihU{=9k=@R
z23#Fuy3TQAhM#T!tjvhJhv@(JC@pJdG9K(v>a5~8RoxxLK|P@cA$A#3HBq_|gTZoy
z!ONvTRQ#>t9~GxmoL2Ftihs*T&Io%l^zL7xdYe&1UQo`eph+8l8$PE7fpb~d{a;?l
z^on=nz5iyBbDo!8u{zv{ODZn&YK;e3B(Bi5DvHIC8OJsH>T>0_iUM(5S8+qdO-k+z
z-J&PQL$n?P|1#=tpGu7x3HhEl3dT_=9z?s%hzF5x8QisS97W<_uvSL3EgHwHnwgJR
z$qeNy*&F$WI+7I!!^W132LXf;$Gvgf7YBE|cpN3-fn^w<mSV}8nfJ#7N8(~hABZD0
zO!>TB2Kzo3N9j1q#Q87{d2!^&Q8tcpag>jvLL3abOA9c>F{8`wcsRoD564k4jz{9C
zM6Kdrm}Q#!(KxcH_F4I{I4Z|cg>%Ir#e?XwRpY1@N9}kJa+cmzog<G>YQ@1#d4kM1
zYQ~v@HlKZ2I2sF=#@*x=)QKY$2c2AwgB-fI5=S^5n3U#<h}jz)%wrdhRyU4%an!%V
zjDzM{_=`f?FwRf8g8033T~5Kijj3B(B^pN)p+-}Ju?n@yi6d9&O#9PHPsM|C)FY0b
zaXcNzGjTi{$8&MCi=%xU&Ei48;g<v@XfD9>g1#VVi#tt%GURoW8gk1xTE%f{w@mq$
zIa+6>bsTNt!NH+dw~d1i#-<K;I_5R(66d!HU@YH`g40RR&Vs%w=xc(q3kQE);5Xu6
zY~(lN=o$yzxLX|E@5*p|awtqoa<RSQLFi^4`QOH%ZyayMu`-TTarBF$e;jk^esK(l
zV<5%i_%Mz^RFA6Cm^qDx#4$7;WY8WP$FMkt)6Ydx>=AK{jN?5aL$T5K)OkA&=CdBf
zO&rvCG`&=SG4UYhJ2~%)K?s=knh|R^-;|g>y8tt*iV;4zJI;6kCd7l(+Z=Wh9UzWr
zaeNZT#~fjB<H_`SPvIc!PB2AOrwY1iB0i-X$1z(}sq+kac)Q%0aUQ^+7Yj9HUhL0#
zxZ*+9Y?c>>Ds$pNK5pjbUhyHmjALFLD%Iw4;#k1Do##%hdSRRyiu1pUV-Zc%JbQ6G
zNEg0DP=cjH8#6Qb@}dfJWWW0%mc_9=juk=y<^gBE?3loXMS^TC4m}Pl4x4T%1`m2&
z$TR4HgBzQI5-i|2&9j|2l03z9$X_KU(Wd=fUOvJ^#1CD}^2O@Xch|^Otd3(%97p2(
zy%W~*K*jM(9KX`GkIUc2@qHW{<5(BR`Z&Jh;GfCwU6ieU%JpC54RQ3&ZAh?*TD>Iy
z5XX;koU1F7^HUr@$I)<tMBz?Vl^un`FV$0GkA;7WV{;t4d79`C7v&Cz<So1(;@C!W
zF_hmbWv2k!1>GUWCv#UEJu<`do-D*c_8ZdPIQGYJfW{PJ?fWY)9?dDcRyruuJ3de$
zJ`~4c+HkGJLY<GraXgL-aa@e!L>wpMI1|TN9^^Rwh~sn|Q%~ibii7%4N%!?Y=TJ!g
zlfK<e=G1@DASD_tnVtW49RI}eUmWMTQhM40^1r+xONVQm3w=<pA;G}M!d%yXQ>E6$
zWR7zwj?26@HI&zIC622+DL+Iz_f)9!wKy^~6x2X`omWSH<pz!1U%45_Elx32BIkA-
z1%v?cJpxdxLK+Hdcu+&>%5o76MYX{ARo~Ag?NdHdOhcxIEDg{=Tb0squZH_HJRqv%
z6xVRSz$NZ-hS!zJFR6j6AfV=?|Gp9>Wm9PlWyBO5{~--!HLRVT&$6*mn99&l6*N%H
zDi?lOLq&n92CI*1cud0x9V2yA)=)*m_Zl{8cw9qO@->XqP)$R14KHhGt>FnOprMJz
zBuc2Mp_YdF8X9P*twGWd(jaT7qk&Pj7?_LkuNVo9LAQRn9a7l$J*lpS#%(jg8X_7N
zRt#rrLC``12B)g0q0{Y<loN!vYN(-+2KIVV1B2Z$XjQH05(B<9*1!;346GN`f&g>`
zIT~^`Jg1=<4K*d0E>A<g76dSSN&{mvKBM7j4J9&z0DTN&^{fWQZDV<9PPDm(=QX^b
zp@kO2m+LxOq8c3bMK1q)silTi8eS5Z)#1f5?rWRDAXE%BR=jOS8x3tW^wH2)LpyG|
zhHe_VYv`ci6%DUyO#Xt7{H?`Si7}}<(E)CU7<-Ko5j$%jEi*~#q6Jau-q7%-hS#<K
zMT2CJKt}rNs^L!XMq<Xi>Y<^hhEh}IURn@bj<N3;7K}#gtp&mQSemxUcuT{uwiyF7
z4Ajt1Lw}A?TxQTM&dXSKjF&~r4AL-I!w?Na=>T-~>+<vO1)&QWDQlPp26>xzxB$f%
z7Vm8hqckkmutdXX4ex09NW;e(v)kZZ4exVPG`y!_tcGzsHHCt(VB9r^l4EE)>c)^+
z<28Kpjxs^RL>j7<OiaUmsDa_~CW*b9cp>Zkwi%4jHCe+HZi<G_HB8kojgB-*`iw{8
z1?3a5S&Ve|DZM2Wo-XJNimi&yw1ahJPm&m6a+ZeK8WwP)znA7{e9I67B-}YeZrDox
zLc@FwjNC>1r3TV@g8s8dX1uRp5Dkko#$L-Pa;os;QPP-Op|2>f!PDStSgK)}22+Ej
z@p}VlxrP<gwy;d^;<m;#s5H(cIWD$R(@@-z8TF3as%uDSD9LA28W?1Z9Is^9)-YkK
z>}W^||72`2>Yox!T8!A$Ksw{wa9YDk4c}<^R>LacfiqLZ)@nfr%GDay(4QMC{iaJ7
zJ`G0TDO;!USGd?9x__qyVL};olVLv@P0py1Nqh1TZPM@q53i1zI)2pf6R!&m*ERgi
zgT~$0a7@Fm8h+y*Y1pM<Go4Mtb`3jtE!+-`S{=C4Rt?+4k>r5fARZZpLgl8@XLf6R
z7ZBR3VV?kd1pTaS24(hZLBP@jyiaB-ROX<ll5<Fa!-5{6{9~D99_Jb7N;RA(N5k(L
z&T9Bu!yg(>X*f;i5ej5n$|}i-e>Xz=J?SsuS7&$wcoNM*<1BhqSy(6tJ@=2e1kP#r
zSIkZ)WZ^w?LBmBJ0S#B_ErsN_CP|kxz5)pGG+h?Q>T2)CybXBUaDOY53*XRilb5-U
zGCFQilGnA4;yMcGOmB)pItuGxB-IQZbk|9q#Jj7Yj$dC;jxG)r(NR<f^dOdIF+GSP
z%L7ZJWeQA3%F=_lo#b<W@706&mh^`bI_}pQZ9BNT7@>~Jl+^hQNutxzpG)aM{JIDA
zAh0AOOwPL%dPqlE9aVKy(@{=Gc^wsWJgf)z28X3TP>i$C!n}to>Ucy4{il+kj|%#j
zpk!7Spo*Z63rd%(PEEd&0?*gM0GPBqm&1^fwRF_h(OnOIdXjY1;i7c3))At%I`VYn
z>rixrbwqSz>w$AJmLP}XPVoxj=^(DFqn?iXdT>}8=s{e^CVFrQHx#sy4sDe5q#nfH
zY^)=y2m8*$PT{6Ps~jCI7U%HB%hiK3!j4brcv{D^Iv?N^ef4DHXY?TSE}QC2jxro8
z6?jfZGab!!Jg)~a9$8)xfJ<v3z>7Lw($P`}ZObsK6nJd8+)6a@Qf<Qlb#&J8s*ZL#
z+Us~l$9)rI?i8K80~KbbC*ey${7*fItJz5hZ%FRfYdX5<eBBW0s^fJX47N!Rd{f68
zG=hlL*>aM^jjpvQgPzb$2mcA+71~2bPaVB<^w!Z|$AG}o&{wE8oRL3uFr05cJ&5wk
z7{zxeeQY2#SuPD?t8f+ahfv!B@=zVabWn0+n~dRt!^6u~7W&@XI!4jX2{cJyG`B<N
zBRJgDF-FI`I)i~=g^u@hjMedxj*oTzf=C*tW4w+DI^Ngufe!N?nHj9I7e^D9!V`5&
zz8wBg$0Qv`4u_fE>-dpy_o>-S4@UUA^vOD===@VDX6u+rL+SWb$8;V1)%Pbl9z7al
z7V9}DgXzimoAw!$9GE>*$7kH}%R!nj($DF2m&4>wJrd;VnxkW`jxRV)=Li#T-E%bj
zr5<GO`kJ=lX+0XAFDStR9Sa3sbeFSO#}a|R5|kOiD7IARA93*TQwo1$&rD$iF&(Oo
zbvo8_PibMEwM*fo4qZorYp2)g7*|6vbo}v8h-uD(<YKjRY(2;+=7=S5IZSYNROA;+
zQ9Yfn_7qPn<QqYKLDPb+6m*r2)dH*$luKUAGc~Fh!MB3LiHN_`v4J<dj-PlV>A_zv
zHtE=TDZG()*R2K=*xo0Tmid7@*e8?vFqPZSVuP;g_=Q)Nj^A`_rsmuN9p8<uyG6%t
z9eZ?a)v=A<UccdX4#*p?t-OPh%cGQGOh3|H-1=)Fg1tKS34Bt=ejNvN9My45$3Yzo
zl6IK(94Q~-=4uiHB9X&#L^LrF&~X9CVKAQ)0yE?qtH0mnGjz{s9R<57EdSA~b^N7+
ze?U2-<D4D@u{kSR|JK3L__vsU#B_J${}oNl`$j#_^Jdd=QO700q-S0c;Ig1JCc7{m
zBdv6eH=eK|ne?$+I&RY+5~!F!fduYJpll*Y+?J6*!344rKmvslD4YQOKQn<M0u*JF
zI1wD7SRzP@M|UD6lV{}K1nx^PWEn~&Q2efB$plIy5Txo8lpx;@k@i0lCVeo0hY~>|
zIpWd@lo2v_Qu{HZDEZ|QL8ia*LbnP6)1S$CB!Nl^)Jp^zP9II+u>|TQ5E9kO2|S(%
z{)|;cRGIvgGF20(CYaR)t(CwN0#K|*BJlH?qRJ$LwFQt8!Lem4o8&~0agT>6oPff0
zP0i*>qy-|h30FEOdugjYw$@GH+lzr%{RA2$&@d5PDV(~I=+3{*JxPlRm3U;h1X{ak
z0yzoHOJIHixe4SYFg$?~3FIg6R03TROn8T<6L=<pmlJ4BL$SObc`kuw3H0p}A#R?)
z^9f9ND%>)G7ZPZ}YM021949Y}Z^<dZXX7skCi%pVw$ErqwTsu`Q};Frg!w8tfldju
zO`sj^#x!jlnXl0kL7;%8uSbYq5uA)txt$aI3ls`m5Ai8CUu3_QK)-s*i<h#V+8v(!
zTI7uc-sA?6nLyVBx+TyvfnEu87wYk$dXEJ7i2LSi5l+en>Ae%dv-Ca*{C6dIhX4M*
zSquo!HxWGNf8>6pe*yy%7?i+ZTJl=fz(nw(ykq-}ArFOXUI`CLfaCDZJA(rZ6`0jw
z3H;GMgHw!5;OzvaBrr9BQM~*U7*8D%cqf4|39R`{8kfMk3A~rUSfRt*cTr=zbopTD
zx4)z=?K6nqr}4K-AMg}xmtHPjhvu5djo2<tP6TlVK1^Uz0!Oaa{YVIWEb!ZZNql&I
z=gm07AWTc(lLTfY@L3{=uJCCB)5Q{Kw?-ReIU~YxX0j=PISI_A@K2#xiQr-QY?`hZ
zXs+JHK$XZ@+a>Y^-TSGWoh8CwCO}$YRdhjuALHR*0*4Y<L{Cd#djdNWSdze33H*}4
zue5doOB48pZkYgItTV{KvILgXCcDEc5=aX`97{k=AfAB6OW-q!oKymO0tqfQ!2ox#
z60o@!uSVEPBk(CbWvHQ(0H3rIClf(12LcvX4C@K%Cop+>FyKm2U6tV12-0eS*9f{+
zPzoG>HL@;&;N?E8l)!p{zY~<q4FY^G=te;|3CbWCKZzarIRQS{r*F{IG%V?F;-qY&
z^IQ#YPGE}=*qR77np;fAqYNMZbH8>buq%N*3G5Z>83*Lu^vShRo*f2=*hfq54j&M7
ze*%m|!2lNw{y-+T@-VkPfxi>@CxN30982JI0)NsPi6ET9i3Cmx1v37UcuZ)$-|3>l
z$fv~F38FOYlPUR^82_wrCsxnUV=rZK>p9EqW4Y%N_?LIc)w(yRSOVu0xSYV1L=bc1
zg6J3oe-PD6g3{(}B9rv0u){S$xuWahEE90#n+e<!-Gf;KC}0GOy~n_#uLc5z3=}r-
zyNf?u6fsbgRR={J6f=-%;8_dLS;#T~ViV7qxYxja22uuG1H}!LFz}Iqj}6>!prnDP
z4LoDu0RyEB)G$!fz=H-#8>nocih(i)9x_nDz{3X08eoR3az>C^Yt8Tob5xZ#z+_l^
zXXo!79;s+x`S#Ew1}YgiJ~;B}1UzcMd@bWK(TjiyvzW4qd7~aTP}Kl)R8==n%?R>d
zF;x~5QT6&(V#cl~46GXx>9S5Dzm|d81{xS>Xh1Sh$3V7$x<-&wEM!0?FtG6*gu3N0
z?Nr!6ggR_e_N<5w91^HU-I%Ycp26SqD9k}dTHnAs6M||Z15X;rF_3G3b2T>5#6VL6
zQ3K~5&kPTXOd1-we`OYvbNyR2lUd2~4CHgMqm-wNV7k)7f_!1jip3@-=X%z_a|T}H
zPzIVA{2CK48)$9dc>^yPc*#IZ>RBwXTMGkBWcH!~>ciA&q+AO#WYGex43NXjVr>kx
zHSmgojt1HpK{_+e(!mHaZMA3j;SmB_lAx1;&PI@y>s15u=1WXo#yn-Lve1&R8+gOO
zAOnL9yh+`v7Vc`Gn*nA(+w@OXcLO~PW~YsOG$hDY){{Pv8ScmJ7#8UzXm3IL2-;WB
zw*-w93uO8m7+`>AA1G+gwOM_JMTQs{N*Mzma?=eAr{xVW1=t7!3kxgn2+C}3BL#Td
zz$lu1fyDG=qs7`O!!pLeqSDH{2HrD*9A{(ceqvqY47_h($?ynelo65fV&n;eatfM=
zUN?yzQaDOXO5G+Km|{RTf}bC!8kokB4J<bBiGfcI%r-E`z;pvM49qgXOlP#)XJUgs
zH!xGUF*l1=t-dykgR?OI+FS!)(Aq|j1&^9@Pro#RylgBh%0w$<V!nYP$CU+wE)@I1
z>JkHA8CYQ;X5eeFr#wna#Y&k(ZyEj803Dc{I3P3FP?e_J8)i~D&48L2jf*NB_4lfo
z^tuE$orlYSWxz3zq*?M5o2PYem}iIGZ|n&ZvpY*pNb$Hjo_7-^O{5L1H1L;!GX_=}
zSZ!bz6Rgt{cq9#MFz~&BZw&M;B(F2D-oUp8?mQ4%Q7My8Y4}`-&w0Kxz;{yP=1Ut5
zY~t-?;5P$582Hh^Pt=Oflw!(;fstcow3;LBn3eZ42k8^}#X!XZbqF}ZW&>NfcU;9O
zWea_&Z}1T5<qpbrBY38?)4&cMq7F)SuYh@_XN2#__88b};3Tg;1N#jAavO&Y95HZ!
z+8&hnvgsg||2)8lc;ZF|&$7NA8R0XrqXyFRrDF#8sPOE3>A0wpbHWH-8xj0L3;Zgb
z7D}En@c84I`#NWoSg-skICVz`FX_%2_?xRXkzwK=-Vz3`7`STSUjzT~Qi>^;c|k3U
zo;Prj7e#?Oe2;d)0AFuO=Nn&Q7W+cMOQ_|C!_14zcT(33T<72hXbQgS;*xI|xGC&I
z&MgDwdPi7BEQ<2&UI8<(HlKPGG*QT8Mm(vQiIr6|3!5lnV*2FZi5YtprEdJ2T_KrM
zWSYn_0bc$lKd?b@6MPj#1@0>pyp-gooGS>@5++)A&meffL@AR&$xy?@gC=OqhfI{E
zx6GGHn@lbyl@ZJny@Dr}<xD(cqLPX7CMt+lzG!<`C|1$LOT8j|MwjbIkBTPtt!nb=
zcQ6P`WfN5deq6}YZg=?A1hcxJ3(IBHG*Qb$V-r!qsck|w(f7~Bl8HJd`1+DB7DFa}
z91ywQDcC8+M3~DjP$y!dzKI4VvQ6-fYF$C=nJCjq?#DN(10uU$%@{c@cxT$s3}_=0
zPYOV@u*%1PO-$sN`2KLXsTsTtq;b@Nkz5mbCh}<n6DRve=tWPP!TUQtrh7(cNKEq@
z$E0Q^nw$J@PjKfvZ{h_LpK^~(v@r3aiMLIRqKQnjG||&UFB7e}H744d=)k=&(T4J6
z!|hD8rJ?epdm2SYHjmVwA;m^CK3XQc>{@uhM7(11J9%_5(a}UFYTGo@*~F_RKAs^_
zpm&WZ<y&1V`nt&=kf^vL`c%0bj`^mE?qYD_t|oqdLhfeb{Oo*IdkFriyeM&R6Mak!
zGBMc1l?mu;;w{?81Y0>i_33Y7fQf-7)?W*Mza_e<MxbP;iRid6I>ZELXBlo{sKCPn
zrRE=AV;WqH6#BG%CWk|jIoiZKCMMI8t&}k)-W9DM((ES2n)txPcshxgnzO$zz*;+(
zN?y*1P7uBNTnkS$F|UD4Fg%n+%Joh%@sSwnW3J^|n5D&@5a|>XQw3+5iBC*4X_`ak
zonA9cd}hL@!<(3C;&T(rO{_36%fxIG3r#FCF~`JQYE@QQVB!nTzA7}&46<y0X@Xg{
zzit^}`t14Kh%-TE@HTHon4z1gy%(EUVq&R@W!yE!FEl~s*VOQAnAMu2in4D{ma}0d
z_-3;5m<iQ{Wx_Utl;8Jujl@l8CYWkm7nJiR1TX|OsYA;MvvpIz5$YvPhF%Z!B$M4;
z6Z+Zk+Vwe}iQ#WXm_z)hrVUq`SY=|XiESoUn^<FFqlrx>))KdjtTVA?rt}TBc%<?z
z9sZ37yA!WB@tp~F-@pT6;?^6H|7J=Yv%s|m%<BFFhw6~=6J1Mm|54DKS2AdpUrcNk
zR{GTpl8m$bW+EbG(r8@%7GcIdts>h+7b>vN#10cXP3#iAm@|EkiQV+)&jV9aaxYKQ
z+3>n(4$VmU{X*>nCJqWf&LPeynvR$_YT}rQ<0c-kP|Csyu87K;xNYKh6MyhNH*t>M
zW#Y7nzf7E=<edC-PV}h;@}DM}eV@HgkM6q~E<Yf8*2Lc?e*qO8_E_eN*TMr2h5t42
zpNXp`<6+`FwYnC*#Es(tKNP+|<|gGL_u@Z^pwvgGcQ|~0OYRj)Zpr<$YW|w5;p<#G
zPt&3B0y%fb57C<fKT{-+oB|f^u~5`PF$)<M3R);+1(MWiPdIv{gYrv}Cae|~%pw;4
zDIE05v@oVrZgC4G_)~xdSb<7&_J{7ZF!<SqEcaQcb0|!3zvx)fLd`k(OE%=NFTo8{
zdeA~?3k@tZv{1&vLl!Dpc*H_pjc{2D<t<dOP|gaB&}MgZ*Xzoe&C<i1E)t!&J6h<Y
zVBwW4JZhn`h0XWY*?1`Yn1xQ8r4@(5-6v<WTE)WS9Qj(fs)cG6s#|EcO^T0?K4F1F
z)ew}RZ`+)j7HV0jZ9%e7SMcjtD0wIx7F`C!l#m74LViS1?)G9Us}WJnw(#4PTn<&w
zLVXLgDlzwww2_4;#lmwfG`2vknpohDbIhm(>iK$Gxv7P<2g5lQh=Znb4f8mcg}=8&
zpAz&L3r~wd$SFQ3pVs5rn^|a1TiM9B@w|l>r~~a_p#?X>!lxFdTX@MrOACE0^tI5+
z!pj!ATIgn>wS_ho-n0<^Bh;2_w6JKE@`i=>7CO*|7CKwOmzMmH(mWY{#R6$Z3tvx*
z5HO|Ys}{OYTPsMf`I-f$b0uJ&(D6Uzc+>NvgB5;L%8xvE6bln{x3GOfxQB(F7T*3h
zNR`XXk8>Yw*vmq1>i@UG?@Rd=<?xpyZ&~PPVYG#JEcCZ9z`_U%SE^+*tL8upLo5un
zFo@noZL4Q9)guc5KN)4FNG8D?M&lm~54SLTe{^dTWu&OSEvn>?vhc^$x&&h^ylY{C
zg^8TvMEE@mV=asm6S2zgNZ+SfJY~EEeo*>>^}mlxueOThjm3xjnYVT1BMTpMv<uQC
zK_426$rh$qeBBx4N2gOQyfHF^pR-Q0g6~>?JR1Fkr{hY5h1D4rKC_^53JWtWd~RWh
zg|95kqMjD!TUcOWj)l1vcI=gzOZN*4XE%gd=2`esV5Y5Px>YWORc4{>el4<)2H{$+
zNB9xxVk`JG^hOb6T$H}11ujZUEiB{sCxeegms|L5acG4Vqz@)IvAE7_NhwAjRx=1R
z3%Z5%lo4x5aNjLh77PpHTL**RydJSFI2Kk~SY;t;Aw?_2qplTv=iIj_%3hE3=w9Em
z;ENI1M4O}qCUdm_<a}dcjlgT~a+v+L=05pbI{7|%ouEvrOUVruHd*+=!uLEoVlR5%
zh|u!UvSE57=lapYPZoZ*f<(8!SooDU#>fofroV@8cFUkQep>`vENr##fQ?c%w$U3c
z{K<J~VGBDg9I|lO!Y;b8g@g2s9nu~PdwJe3guC|6w$3-+M?dH8^i+y{nY*9sos-|{
za%1UWl#!_xUTXZ;?eGx`M=c!Zh0p6~LG&11lrg5Rg@)b^m(!x_PlP_GubiYa&|A2K
z8u_nj(tqc}r!1W2*}N3$Jtx29t|<9uxW5)|Sh&ek&uiAg1@0!V3kxTojNa;+f1YaJ
z4*x5v|MBunDRs7m%QlXlPAhG+=p_qREnMUAsUE&ef3~o$WF3~q#p+z=*|{Cw{jRj&
ze7MZ#0lsD7wuQnrirB&6+s=mz*to|Amz*JJAsam}gbLaiQaS&^FWD??Dr)1a2GJ}V
zu!C8O*%-MknrY)yzx)Yv^6$0zafMVu(EDr@7ofuCD4A6Lej6oiuv+i=Tvo|^&_-z+
zPuQqoql}G*Y&>e?F&kxVP}PS8<;dl1lxIg#I2|V<v!ZByL{JJ>65xqdS(R;UcvWGk
zW}}LY{cRPN$8A&<xaq1aR;%BYp)xgX)Ur{}MtvJ|FE*}iL$XnarnuO6>CO;^Lw2zB
zb#2Ht6dPe118zwX8}D5Re>Eq6Ov8o**}@tGw8`|_;p*!{4Qw>F5w&sdK(wKaM(lne
z{3O?#QrP<LuS{tWZeruNOHxxCO$$UStI~Is@^ftD3TC=@cJ~Y6r))fJW2YVb5C0h(
z&r(AhU)XrgMl&0OYz(&1oR`0i*KBmL@q&#OHd@<gW8*~|{dOuZ*=T8F>sp1F?;Tp%
z!IO&Lqsq&6@T!94+d27dZM3uTij9so+S^#38_n-1@9i1o+l>y~lul8;lHi+*PBxP_
z;jI>OXB(G(l8rS{()&Y=j!uidZsQFbeQfl#@g|+eMh`lVjcztCKxIR}OuoG6E^w1l
zd4K#Z_o5}w%a3-CDjTKV0#m)L9uachveBOwrt(~7rAY05nFs!p2MWyAo9C718b+1D
znL}(0wegXSk8KRIG2F(x+z}fi=#bnCIv#iYO!nJ0pU|R4vGBEy(NQ+8C2}Xp(OLa6
z`DTPG;_P$Q$b-}JSR3PPOtkSK|1s?-zfZ%a<q7n|3(5zAj<@+RIe0TdezadEJ04gl
zPom}<B`ze~zAzU!*=Bk>Ot&$G*61Q{^7E$Jm?rQif|B{g`35s=d}iZw8?$W8w81wo
z{r}6R4bKnC<lx;3D=l^^T;^;WbHt>tl!-K77W&f0JR4~nD{aiTvA~95!?dx`#v&Wb
zxN9~Rv-FH^zNCC*qiwnH5^B;rlQ#U?26vGAxYWiE&xJV!7qY^JY9lT<F&iCD%e8xC
zY69qja-7$CWF`crJOwz2MF;K`O$ln-a0E!&p#J3F_h3UR@6sCwXL>e#8-K3NCg;b3
z$|@VHZG3NIqcFu98|#D@trfffji3bvXMTIv8R%N;ZG0zWh&Rx?dIkRWh!)yp<0l(G
z+k8(K`oYGJHui<X#H7F2_|?W1ZhH6Vs1v!r+1P9&uY0s%nMMU_=iLEY`A>k2?LvlP
zI|QiMH_F25E?y%x_So1<quKbIgY(|7@s}9qfQ^GT{t#UbiL-EoYZu@!4_&`Zo{nQS
z&U_U;!AsS~ae+B3Id|~yg2U=zUSfB3I88$de0y4;!x=Fb<yo%w%lwCTkrNzS`u{l_
z|JwM^#(5hTY~0|5**$uZR-$hU%<5(K68MUsba*mZIP&$oGCzK*+`Nl#*|;rm0Vf!Z
zd3i`P#EiT#3JOrjL99n6btuYT{yX?9i8D!LI>EiP%)xR8Sq|XfUI+I%8028E!>`Ct
z!okZ9T06MkK}iRXJE-d50SBcVlyy+f!GjJ;JE*fuDl-fBPLf|b5V9L9WgKk1ztKa2
z9y4>xI~WmC9(GXCK?MhGCuMg(TbT3_2U{j(KkDEy4!ba;5@*>Zm7k<kcKFgER4Wp#
zB7pvYGI5&BYBdMd9Yh>tJ9xrDVspV74r)3`PLnF7Li^v54%e1zIUuers3a(>bp!|r
zDhsLz8W!|MZnUn0dJbN6;64<o?*#7|Iokd)asvkq9gKS>uaSes4lW&5o)oQ__eYwh
zLQw}z95i*1<KQ_5e5*+QJqx8=2YC+i9n9>)Y*2XeE%_-2mDe?5_op3vuqv0}SqE1}
z$^^5{$;})zcd)UH^1K+Ng=l&~Ovf=P!&i+jab5?lgh48;F2-5TjFxDnHngXMZVtLT
zXy>54gI68A=79QlaPW$Qjt<VODn`TBSuVA&Dc>3+cXIe^Jvjenaj{%`7YDC9c+){w
z2XBau9QK-_On4+*WMKxC<V5vmg&tff^>EPBL0>L873xKQcqCl^UAZ@hnv{KPtW4wg
z5llUl`IduzH0i7mC+#n+I>5m|(Q$Y!xmUAXjxfZ*PzO^TOmi^I!ElG~r})+;7<`0-
zkzy!f&hoaviBKl-I}XOsh7QI%c$cd_Te#pK(pU%Y{U5&?=iq(eQEZ}L-B?v@f`f?;
zK63D}gAW~$PbNKWlE4JyOcw4pMR2YOi?NkH`H6#19W3C{m?Tf<IMd|MxU&vs2z+OR
z&mGKiFi-5xY{CCRPzuixV6N~qR=*Tg+O|?EG+$VTyTH9z=wOk9#bSi7#9Z8kC8Ao{
z!PgF!3T85tNi~K|#tI&1`a=>gC!sosJE)dK^&~V0x`SUG{Kf;~z;KXuu#%o2g-r(x
zDd{<|9M}%_R17<`#zr~C6U6;GFOfs)(ixV?W~qDzLS)oL-wA?DGLqrxH#1f_*x=xM
z2df>daj=%|N;_Oq7(Ve^2Ml2N{M+(6I<p97xZc5c4i3x@B3QDpX`_Qp4u0WIZIym-
z@S}qr*JK7`{K*01B{IC^&lG4O-@zGuWQMq8?8?o&C3vkR@mLaD9c*)g2$K&bv7Ox=
z?4!pzV1z@ex|5EbmUanBuv>sV4))&VF#h2I2L~OTb?`S&T!ZXGf}V76Sb+KGLPs2|
zm?#}}a7=)oRq42c+w+tYLV&Rx+3R-)e~9WSCx{GrT8#fEcVvz97x7KyjA*4K<7EEh
z@OK3$mJFu**TH`dG6d$r&pY6NmmFLW8*$MA15{FsO_xQ}6$e)xTyt<;40zkY4Z*+Z
z1Ti^ju{&Dbq62&ubYv+Y2EQi>8jw|nmn@hJf>;(x26Gio2DU1a1cQ+lO$Na;DU+E*
zRua)a6(qsXoh6gFH;Ma_C{EY<PAZYa{bJ0|Rq4+1*@ZDPSsq9R;VVmVv?NL=5g8rC
z(kvr{51kK2E}KNTB+844DhkROD+us#5|m+;<&h*R-ECz&QtmtLP&pZFM3uYz#|5Y=
zR>3Y$BvFGpC($H{nn~13B1{F6V64&FNraM+1(uSiBLMl-Xa7#=qN6BDa4ih8S*1xK
zZ<&;x45EWJNCtjYH;H<j;xnbbs1lIbFo{OVU~AZG>b&TaNi<G^JIlgq(<E||cqxf?
z8>HMM@{&P-Q=XUnB%Vs*g(N!6SDt3~B%Vv6SrQzLLseX*Jex$R-U<idu+5WrJ_#~8
zAT<oYAE6e>Aj~Ywi%BqCC&y`-49*U9roye0Xp_Y1B-W70*^`)<#D__==Zr}VPGShV
zb7@Kb*&PFt=#)g~B)TQhJ&9M7{NH|v<@F?96S&J=PPYqrZzS=isNO7^)%7la;f*lm
zdx&aZL3<|AD~aBmI;Rnv`rMU#Ygd%jw?wsH5?>t*s_7fyfdUUoqSd_UqH?)aFXXUk
zXcEJc7$ce{9*ho8Vg!B9kY+ZIa7KcWNxYrJD8U>p=sUD_+gvuWaD;c0cu#a6E9eJF
zjN?j+WWApRM;LH3OgdgPQFwv?WKK%rBMNY{lK41@$#jV%W+l<|Le7*VK1t$Jq36^j
z6LdzW(Y5A93D|KuyOhiQEQuMk>dj#M!$q=YCcy=E9UoB6GFz<u3!Wx1-CR24&2YM*
zJoiH0mr3mYJ~Z#HKJ$}UAn?iDM(nsai6u!GNtk2`1(x#^B=L0;OF3iVybj~BjHj|~
z?unraX^f-Y2vaegOd%f^R3pEkOdHbFooZ(#k|=pIe0^EeO2Ve9Nvur5Nh15G!mV+I
za59OM0CzfiVhR4;J$-tM!j-N{qQ%NQf=Qb~kBrCKB)&;ve-a0h_%?}kNo-DHOA_ma
zH8v#iy;$0JqDsTkI2)7rh0g2*{;)~#e@Nm-0e%vc{GWMW?TQloDmcH9inWk#6|3W-
zb|$fn{{$pKO?D)~rQLBSItE*JaUn_UNn-C^`F*^UW)x!+3m15hmroLZ2u%))@s9};
z9pQzxML8<mjNY~SkIdtOPwSmX;-tX8-{nxBQ(}bEg8nJ^MJ{Af_-qn?(;6vkN#UO)
z&hgx(&^?8JlfnPD%coEwh5wQ`pTvbEE^@jQil=ZXiOamVQz)3il_ahvaWjcqNnA@}
zY-#0s5;u~VdnmhN-^@@GnV@%XWlqbS+ex%sC>KcKo)pGZ&zn;ykJW>P!(FFEOU+Rh
z8=*oe6i%T?iXStC<_}hircf+}tQ6iUl$V*p^iT3h%g<K`NZAD`klrh3t$eve3iqc_
zCWVQ;m6EAot_RpeP%Dpd9v)1gHsjh&i*~Ld6O>M2f62(41<~hjgda+wtdQrt<=ExN
zY=VbVsF*^-6dI-QNQ(bgN1YUATn@#?$&aQ`J%uMycr1m=DUefzO?~C6f<7)d!`Eb2
z6QH`BedJoWhQPJN2sKl<J|~~OGOK5j)=oj<fI^Hkl!BasA|&gIUSaOYqzp<%L^WFo
zvszD7>!;8_fHP}k^|>%Ld@_Z`DYQ+YT?)|@nxybd3eTqa|JA@UEKjA7lR|C^c`0!D
z`NA>;v>00nNS_wM*ZXEZmqN1?UQFSo6q={-=`7_1K?$DcutyZ`6mbiI30kJmDuvc5
zv`OJ*Q7FSG87y}IC0QuhK7|e`bV=d$6kZXW&M9!Tjskb0r`-rstWt?+g}M2!rttBP
z*{_M+VU-*7Mhb7H(3Qq1p2uya&eWe9N)POjLeCV|q_8%HUMciWVOa{xQ|OaI-xNmE
zqf$ZC;<r*5lETmw`lZl61qOW`K!fy&4C1!d${a}HgA%`>7@P|JB46iug>+a7!&AXm
zAEQ!O-#KH1kmq*}Bk8F9BX0{zz%K{to(}Ub`(rpPHCY?|Acgl*7@NX4QRVj`3>?ib
z92l#XaiQO*Rwcv5$6$O46H*MzCQVFXN(xg2{!q|KDSRZr$0;x#HNTyh%&mDVLSdF^
zDa;eCpU`?dEUDl_h*>ExJnRfkI$!E|QvNIj(wQlIPHP+vGi)q7&ZfT|iq1&|AE?ab
z@#z)$A{7L7{!)xa0e=25KZOM;EEHod5`*l0PGJ*65HIGu3_g*<S1Eigy42VtElq(R
zR8W9lT&$pTrr@REr=X?~Pr;#o{+Fetpo?9wQbAznDuW}56bv!-<lYgJN3w&$Z%Fvz
z2UlvRz!1T-e=-$(!!UZCluE%(1>v>*fATm{It6~cz%M1tb<)ZdR;6&Wa|R1T_^wVN
zyMw~*_$GyKQ}~X-z*G3;*_?GL{Msk-Qwr>|p8OOx2>$ni{*b~(0X7Lrd3O9!2=hZA
z;-5wLUj%3L>d>#EI&6M1ZVg+vrm!uAw_S{Ku|0(yJhLvIaIrImT`6R`$a1lp%csRs
zxR}D;6!xX?SBkMEu|I_aDV$F6!6puJ?<UGjNqmGxYbqZS^su1Jk9?G8yne%DsUS-)
z%kdOW2z>G`=XW}Qz^4RVy;q@_{!x&Xn~`b`Rtuj^;cwpdyySUN)C~WV0y9K2x$`+u
zC5KtOJ2aKgbL4k})XB^N&1BG*Qn<{^*@d!8zLEm-XmiZMZUC-|>NQ?*Dcs;Lh${I7
zT-*})Hji6Tg=vnN{FnTDM6V1%3kq7u4KkRssfdd+OXQ+1R<x4Wk5HK7_=(;jW;}<B
zdtE%_qO6PiT+}=xohd7qbWvR35-#p{gGUq0Ys@6w1Z;hPLzR_Fxp+_j;?e??p>WFx
ztL0pjcTw5J_2zN~7Z1D0<*$fcR1{*wm0Ua`n9TXkYMYtLy^RX7<6~5&Q6X|jtGIaF
zMO7F7zqOhh<cMGSaHIxxbMb<U7A|VJsO_S$i>M39MI9G)UDOj(hg^hRtZovf8Zyl*
zn8asnsd>dnL^Nf)L5g7}$bR~aRNqA-7f-st4XJ^PhSYGc!ot@g8@`aaW%sQJvYa<@
z(bVNnK%h->DB~i}MZSwW3B*f3FEbN#omvXB!$0MMnWLGfxOK;jXWSso`m-*cbA#03
z&0KU|CqM6^xu`NPbH`bQr`a++@I@Cdx#;Dhw~Ll8T2a!)t1e!4(b`2v7oFT7hjkkl
z?c5-9dRyu|H=lXlnY*0T_JY~L#VZ1kGkjQ(0G%nGnSJ}<2<0^wU0if^adCCv2AukJ
z7jL*&H5zYnPtRpB%QN@lQcjq9c5~6)1#^7UU3<7e&h(xx7JV-f^l{ObO)iGGc*{jU
zTGB<yqY4v__jfVS#ZSNI<V%eP&^S^fCQyEB5tw+oSC-=Jk%zh%#$)@5GSWr+Ir4DI
zGg)*r$iF<oh5u3{^NhqC)<dK6XczCeSWdrnF~-HaE+)D7$i;hf+B(Wa7azJ9EATiM
z@4NVb>#~Dv>=T5A$BU|0BFZG)G;elArQkjChr5+q|H>b`nCxPvi_cw5p#lSxPkF;U
ztxOe|)oCt1xr=$q*fd=T%n<Z5L7C`$mK)?fpXXvex7!7$p5tP!i!WUM5kdZvDvA4~
z{oH(3-!bI{E*84@+Qoof@*<Z}a|7@dZ?ldW2~Dn8J9CN4*Sqri7Exk?r7o6<R&vT!
zRLG3EP+e?vvB^c;h2|pdVx<e69bLFCJQoHx%f(e!O1ZFH*mPG>y+e}%(_tv^ePj6!
zomx55cfo4ci2;XI;#E8*LijruYXta4(6xfzk@;5Ob%L_vdI9cCu|eSP1?7eLgNq+s
z?BH?)=O-7N=?ND@Ki~D$UtIip7yl-}?Qzl;7h7Fy6O!Bi5AF7m!oDoKT<mkPpZ^Nb
z4~r^$1l=oWqJT`!0T%~d9CvZTMYC$*LoSZ++zEVGQ2N6$0Z55iD8|CplXp49r(B$N
zu_cYIY5eKpFW#;`-tlq9#aR~<J$&flZ(dW}f}zqY9?tR9yU6i^>VGcI^WO7N$-@P@
zrHf1tSspIAxa=asLqQK)YiC_?G47x6CtE^ejzq7zxW-FhzjR$tf*USw3Vch@+kzJG
z0-1XRO*f1ZGhJ694@EuHt{$HEn^f2Xvu+g;lnKSiEaou^Q&zEF3OwBF;Xx0jJ>2J^
zxQF|RzlxUd0yRE}N0}h3v=t?0f~t}p9^kO+qb#KaVEU>u9v<>g-ox4@fmm4&<vet{
z9%3S}zIoxa5il!=Rth}qq2gW4!5{VTn1_%D*+XT{Tf9zHFUa{-#RIdF5j^g}Zj~|b
zgSyo`RQIs(g~$^gYI<O*Eavd4LC{b6>!w6ni;MMu7bB8~>D!_kwukG8D*GxP!X6rX
zVE(K=E0l<bS8j(JddTK19_o1@v-pBYeGl_1XWzjM?lRv!A~o_*X20~L2V!PPi;5~o
zXyT!%2Xe^g$hjW!Jmh<f<%m|?Sy_47!!urxmFxu%&w99%53ad~=LBvhXnBz&?s<Xx
z?hG?4Tno|VMcP4tmfrs|*(p1NOm;7ekz0Fc!?k;8=b^oa4xH%YU`7^#FSUSH6r7I2
z_d0p#?BP`puXz~aVW@{L9$xp*&kKG$e8a<=9(r@h9=dwy=AkDyrHS0#Lk|z<#|4;$
zKMs)cX9|{HwAEmR9JcnQ5rjNBl&1`t9JarQ0b=}tf|4`H!{EDk#N7O09)^1u?cp5{
zBj~*gWtO)+j1;)SuuN9@1MesgsX}=KW4Hw#KJYN!3w|_yk5m9-P$sM61SWW2fF*Bc
zvdaW7_=#qlEAyx3Ra@mr9zOC=!N<csKK3w~C(*-24^uo$<>~XV&BHYM30>5~Hy%Ev
zFL{{h;d2i&D9}>*Owfj7W#YHiM))bqEDy6itPyse<6$lZaukh2wTXP;;cEeizw|Iq
z;HI0U`5qR~nLRA>f>3zdpH#l0Sv>5l8K&eCA;v(0{9uXIrJ~9Yik1nmT+kJQ#spP8
ze)SYg$HMr2x`%`ZW0GPBO;&m^d9<HZEFL8fD~?7T!S@7B(zc?N0<Hk;NbK`yyc|i3
zarkA_Di6QD99iuJ-*j<x#LXM$ez;Hh*26lk>uO}PhxNh&40FfocU;}CIipX8H*kMX
zhQIgVFOfEqo(pgC@PmgRJ^bY1XAiRq*ZEDzJbWzt3uh5{?1u34?Fu_amPJT8;1&-9
z_XM2n9(H&*!K;ks^03RpVGl<<?Dnun=zPFK>}F)Ihkc?-%&>?11<s7*b5Se@Jsc7o
z;+8G)k9xtUV#n#OjA8hD_?U+RQv(jmhOa{Wfa-VAbl$@s9!_~U?cq<}^B(@;IU1S4
z@|PEUFm{F)&Xven-UC-6Ec~|Z)S<j{9{%GIu9i*wFI~5Fgg{ynC77NUr2>~cT=r1d
zM-d-aJY4l~n+o_)=SbH)+@gziub-L{x$fZxH)~4drl7R*7gHjnQllup%3F6le2)*(
z{_C<c{9x}2`Y0p-7x>xS{GvXJ`6%h*0U!6h*znCZkxU<1e(=c|{2;z%aUU;L&%RgC
z`vk4gCc-b)O8B_n4?e&nCN1SdTCd#mr(D*@gFZ_8C?hxz`Iu3p37b03U>Lm&f^t4;
zw2hSKEGweD$`%{&zEsi2BR*dBgMSSx`FPYvo{xMVkNK$VqmGY|A0(r%;-k8cCwx5a
zqpBa|2e)5Ps`=>OTxP2Ds!gKIBVWU3EJwMPkD3AypI#DhYWtWyNtOg<RraCysOO`;
zkFbx3A0)M(a!StjG2#9&1(<5Qt{>zjXQp+gJ8$5lp^qj$n)+zu2Wjpb3(BdV6bg{T
z61~gJ@%i{g$`zCXY<e$KnK&-<DIZV!Xz!zgk7s;5>j#<5U#6XXH1p9?RGa&F-bV``
zFZw}}`gRQpz2FDw=9%yQ;85u$wyskicsLRnC%NCq|AhnG%E!_t3w_j}5JziGwZ%BZ
zZ3Sp2C^OW*;-laxxud8OkVBbHJ~|7|h5Hn)`ZXV2e0=(`^tz9?eDw42hL1OWboJ5A
zM=u{oRk^z`eosMr2+HjCKOK^|BV+z4)Z53r!SYK>l|DZD(qWb=UyTZAe;)&U456w0
zAjduTZXlhxxje`Rmo`{Xg8rvuGKcvX>7#eOhQkGagpc8$D=bv_Z6BjV(;eEPMs$pi
zcWGoFhkU#zylAbUV||SC@xG4_d@T2|!pC^-ua7xC=K7fE<3k^leN3UN`1pwXTSI1$
zOok<7RKSnvcn2iLNMuaKsXnIp_{_&lAD{R^089osoK7oI$#>)di$kPj&hT+zzeM~w
zxA<9^GPAkl#i3b3j2!z$fWK}K{=&y%A4`0ENn82&<#>pJ5a;{Qn#n8+1X$=}(OnKB
z?6G|1W0~mA2!vmA$LY7d<Tv`uq(3#28A3BAT2~6H`iQf;zzH7)U5GpD$SrDSlA1m&
zA4%@rZrS$X@F0%}FvDOzJUIIFFUnOTC*{NS(dz98tDcbbMKvujg<t8Av5L5vyjsk%
zhAMdy*Bhyl`3*gv*N%_%^qi&99X`JEv4Q(ed0J_`(s^g}dmpzxQAU@MH~Jvm#4|3y
z2dyGMo|b;5!gKR~^Rb!s@$su4B)qO&EwlL*W+RPm5!LdaDqDHgw2Nr1Gq!QP?IIj@
zyASf!KXNIyQ_Q~0$8H~ceC+kHUybgkpPUWt^U?i)L~v1!9uWAo4iVzRK92A%O5?RO
zj`}#}qe>c&r*YiJ3ErG(6i(x$kKcX#=i@x>=Hrx)eS<U4_&Dw3PaijjX8skdH_|jq
zZqZX-aw6x4W4Yxwg&z7Rbk@h;KK}7>P6$xuUjY&|WENI0@Z#mtI0)~$^WkFKqnCVK
z=Kb$u*uV0P<)LdnuJRU=@>t?qqSq<BJj5y1Hj3Wzaofi|>7ZkQG$u5PlHaj;=HTs0
zi;G!gW{9SOY5Z6ykSUTz(KO1W@lYDY(#TAsWEu~oac;GomBxK(6i)+b+?z&dz3lKm
zd+X(1UgXptQi(J^n^ElkG>8i^sP!KbtEI$@rTG)kYWYEdU%r^dLN!`n%qp7(O;I6@
zhtnvR#)&VK@@e!ar~EoNlk(R}D;3jtMD(Q?S43tdQGGOx$I_^r#&2`;$)paXRnw@J
zMw2v}az$x8kq%PM)lcK)-jNz<$Z05P)J&sR8np#8l!h@N!d5AbI(Im4MYa?Me=W>k
zFNf2Jq*0HH9UT0glaKzg(|Bf3q;48krNVq1ce_`F57SD&72zxm(rB1QqcolrlSb(b
zeFJ{ubnpz2zn1*6QYNb`IcYqf#tUiWrjeIMzL0-bP_{lLz|)*a0Cv37>p4+vCTMd(
z`L?k|8ZV~NI*m4Iyd?B*!|Zqhv`nLw09@UjLHG;yw$!{|q(d67&<M?xc4@R1fWLO;
zD>J4@>zL-J5nyh(PU#>mBg>e5QNGaR?}xjj@p>9d()cQkH_~{M0%?q-a2nmx;QzjM
zE8*_kJDSvy2By(7jjF{Pvb>c>FM)gC<@8D8sgY7&QI&5*`U%iq&;f!r+Yn~QL1HM5
zHdufmX$-x~8J5Oyf$KgOroh{2j7sC9G(JvabQ<rZ@j)8n(-@ORi5~UGQg}+_U1~0e
z7d2AeqYw9~&+o~}94DIIPvh*|d{+CvC{IX(^ushJ(uFeW99A<}opcwIGdYbZ^z$@k
zrZF`g{72~1bnyQcK9`u5#wY3E>BRn!Oxk(|rl&C@4TkAv`F%$I=Tz@x_=_~Y<nc*L
zvjm+j=o~J=k>(1@rg>@1Ph&wE{Qu;gFZTJ-{#i9+q2Me^V{sb%UmRPj`ytY=(^$&$
zo5uCGm1SuxPh({otI}AJMvSJYmhJK4N=j-Py66~BLreefEdcqPf}<rwlaYogfF&sT
z|Bt5YfRdtk-g?Bl50D&1KtutV+jN9O7B8qENeLo~2?YfN!2qIyNRS-NC{Ynmf@J-9
zyEC(s!vccjoU;N-QY8JqY5u&|uin=+J>At+)x9&l(_O0tSR?4#BK$1CFSo8*!4{8>
z^Rs{DK%SpnM1{PUK_C}Fp_SK4HqCL2K~!UE5mH6aim>;guu+5|qr-X;^3F$@ty4W}
z3XUZxFOlyQ!7YMEn_i7E9XgwJi>8aPt_V-<j;t4y{oNqIZ-Q<Vl+UXyu(=3ZII$%8
zy#%%vVOvq~7`Zip?HrPv3KEDWu(JreIB6t;OS_A(rwG@IaGgRHVP6qWanYs-`-^aZ
z!?`GU-#p04p9U=o{t4wDqx_HT%+~mqi}U!-c!bke5%^E*8{fo9`QPaABAgI+o#b5=
zTjtaY^WVKcsP-a;sK!MO&lkdHitx9%>ueFu3C@9avA+bs%t97mI$s1{CAdWOUW@)y
zgn#Lu{UVo(Fipzj->FxMg1=&~injh^ZF7UabV-Q`ZWQ4reJp{p3EYvuoe7jq1bn89
z1WE|Zt`$oJ9W0)}UHyaq@_4mm0;R-Nawt4GnF(ZxVn~4h`7-e}xg2jvpjrae#ijBI
zR89mh(X6C`;8YZ}((Q(-Bmyl}6_mxOt{Mr{On`qQ)=!{T0(U1+CxN<&U}d0o0`~|&
z{M--muG0$%Dvd_H1nw35)y)g}pYnxWab9I@_lc$(2-<jN;RC|54HIZ;hZ-f&Sbzr;
zXp(@G!2M$aem3h#AS^C1dy9FCj%b_}OCTqKaS4oPfdrZ*&^>{t6KI}5iv-#v&^CeG
z1X?DLmq303{7e0z1X?8!PvFs+g<Rrjod}jbm>y09Ya_Q7JxB{~^B+y1@HT!#bZXq_
zp!{RE%Rer3)gi&pDuUbF3EEyzuAg+G(!MF|oIsZZo}j89EC^Bp{M((NtKblKOQ6Ef
zL3&DDBB#&H!X61clfZxkW4qwl1bR|$3A~!Xa|t}3K(7Q|PB3su-U|u5n7~V-hBw6@
z`mE<x6RhVIHjzMY-aE69*>ZbxSmrfhg8m6?o)_4qujoQQLC4H2B=dD~Y0k{THxd|>
zzy}Eo7rr+*fp-!ZlE9lH`<9^ez_$gU%MGRZ_U8;s;JpOi75JU$h2#(u6wNGrKLJv2
zc!YEWnR6l^CGeqOj=X)T*1DWg;?n2@#t1N$Hl1F`!XJz5_&O2d2?<P0U_}Be6PT31
zWa>PDxd}{3U@A3}z*h-OOJKUV<qJVSN#L{FRedS|tNL7k;-iBmXslb~nhRVrsE|ak
z_VrByGZWy76Gsham01GMzQw87lKgoIe4D_J2`py$1m<(d%!w=%K5**;fbSDnK!-dS
zd=Eg%tBXXLAE@V<h5T$|Ndij~_(?RkOk83a^2sDvE(}eFq3u>BusVTt39L_GO#*8Z
zFoZRK76Un%fSkZD99aqcN_{4fNZ`Ic;akEJOfscr>vC>!lmt?u7pf@3S&LUS!O;c1
zRm@DlO28InoCMqiYQL35RWNx8q!Tzdvyj+N1mCU@uoB+5K}hwxkm@&q>1i7i*d*MH
z!=H1@<^(uL(QURQP+Uww+xQcZzz$CS30zI!S^~Qg*qy+o1TH7ACxN{Q982JM0{>2p
z?GyA+0{aQXTGoLC4s!Om6l?Hfob)h_9u6}dq1{WiJ}T(>@8TyCIGMoT;_4|u&j@<@
zcKJUN`13aAjb{Zum%v{Fum&bpdtPKO2zpV_pFYSZ{~z}Ezu3PVck3jEjo>E1D;yw~
zf~X?@3BXt(*AuwGVRAmo#k8B8{FAsViSneEVs|D{B8ieoWQc6BWbov0l?OqKEZ5db
zC2{)iXjT$PqI43ON!0i#;E?|H4ay`@Hi>dcFo4J{KAE?!l5#z;LK0PysG1B~ub4z7
z0V)ehPUiglYPWGs0jdjHgAL8kXMtKGd#n6CNz|dVa_}2nH;H;ltW086689!ipT&|4
z!jAirXpltPBpy%V{v;kqq9BRFBpN2sD2e7tv`C_H5)USkokS=ZgqLlS45ElKC?_Lb
zO35ImZ5dMvC&4(COtB;)0!Ia9985BE1a2y5GeOB@z|h<zS|*W~M1B$vC4;!Vi~!hL
zfL4OWlVAi)@*hsZ`zOlKqNEHL$nbxRJITV2B*AE>OpHzWXcCVl(IyE-gk<1LMo1iq
zYz8rGmqhy{o=M`_BswI~F^O(TJe9=1%_E%z?aWG+ho4B|Nzonl=<0BZSGy$9H3`<d
zV?~Gsx+i%yOAuDIhq&u$aTg0PGA3K;nZ$ERyq?5>B%V*=g(P~@NlHcMAp1qy^t|*+
z5{%9IQWCwAcv)b|$q<TUy8BAAKp%El-11ry{RHSMC@WzH`wPqvip&m7;tf&fyGaa6
zVz9XMP7-h4F8@{%x5~5d+k)AsTzH58Lj`5cjAuGbRKlhyzz0bTPvV;-W+pKri4T*Q
zEOg7OBa_@!fw5HMdFi7hM%}(^v;Yik{BaWFl9)v0caE?;Bji#c<CB;`2W}N*SlEe4
zNM8q-1sJz+N|I+gV;X&|T==sjK2Ku0z|4Lkz^9aCVTjo;Zu7rN;>+8ZJ(_VFe=US$
z$yrIvPGWHqOOlwA#M~qnB~f{Vv~y2<UJ~<@_&&)U++g-QK?xpwIKF_UEFNAcXq_Je
zTz`LQQu_H1N&F}r{^LqfW|t;|$exTC`|Dn583)ToMzRZnCNEEN16>e<as|ix@&K$(
zVhxon#@*T^eoo?e5+{=QC5ivhjg#<`_%(?lI$IK25{V>|NyuVYG4|_|H%l>bh$(_Y
ztO~%`n$)UJ*IF5}k}w4LO%9m?FtR84w!n^{ZW0XWNoG2UbxCZe_a?DkTq1L`02>7T
zEs2duY~qwvF8uo~jvOLpu`MFIRZwQP3BWkoJE>%3?@3}W=a44hT_U?%3~loFC9z-F
z<%pmM1U)3^K|yc1^kL3gvkK|kM+Nhkpv*2CQQ~A0r>OiSE{hgVi%WkC{6~^IZg3`v
zv$v)COMr9iolwFpg`5|+ToCl)?V9@v@Q>)}RT^DnIS{TS@t?qqEKJ$1i2~HX^(1a2
zaZ_aPkOTePDF^z$r6?-Dn6PqjIdE5o<s~gCqm+!&GBRa^#MLa`D5Hvusxr#RC@Z6q
zjLI^~$vAN|I_rzVyX4@Vl#!mw%fW&GUy3WpAituZ<Ph_hh>2yY$(Zt8=x!OcWmFfq
zh8(=8)|A08NnNkUYKbg=+U}82N5;J}>dQg2Dc)XJ=4O*vJwbQ9mvQqO+$W=fjK(q^
zlySd|2V^vq(MS~FRVJ3dRkHb!C_xh$q>_wm0m!^nfRu&9G9ogfGCG!vw2+Z2BPN4?
z!{rD{&{TkCf;N|N{mlrOEoD3;<0_+i$!I0RtsjZYXf1<F9K@fri9Rf&*YsGPjFY=E
zx*UoAF{E_k>ZJ>0M)VF9iW~VN%-bK6(MHDehw;K;w53XAl-!6?8_`Zid+N$Y4I3RO
zn~YT&R%_@a;|Up)R7_U!q>RqIML|0SU1W5Xu}S928@kDOO2#L&i;V6vo|f@}jNvkR
z$aqG^02u>iJS(H8j8|p6CgV8@Afva8KJ*hA#j<i=qVNK|D1*T+$zjyXmu0*n2SHSs
zC6i%2iP1gGXtM+iZP`}_i}e?@pSZDB<1Ai!U2t|L@)<|<4H<((CGW}@EaOcX4CBbV
z-jeaQjG;0PU5~QlJM@SCks*RI^dvb9I6G%*(0Ya8dBbG9CkLTa-)CRi<TI6+6(1qv
zLmA^_jF&M|4#JO)k}+DwM*=fwCL^UX;OrO~AB#rE(s{<@FtjCuV=}@l#h4&tqKs)W
zO1u;VzMLdus*JXCq#{?EEC&HMr^skBt1#Iok3loZ-<FO{m$C0g3yS)gjL&5(W3Od=
zA>&IK-^rLCG=v#4X3Ll(<7+tx#K~~0vt%5*A$=o*HO!Q8SED!qC1k|gxm5e%=senS
zU7Rg4BImaPQv>TtWz{|`eJ|rj8H;5spjKIUzr>ictaA}vi!Qn)sN}ACnG6T~cJ0U#
z8Go;nW(}2=%0aA8Ho9EK3K^yhOU6n%6_vyB&VfHBXEjYwJHp_YYh<hyoS)?&RH!dy
zwVzeEYHgg+Fn^U{u#Yz-;v&ulbEJfzNg1*LilF4H0;FVUw>i2DYLb_jSc6S%$XG{T
z-5y;dhg=!H90XJ)_GCsj30-idA1Y?2*{_P(jONKp>t$@9A!PiKnZ@9z8|5I%CqsgM
z6)oH>V~dQM3Ti3XO2x`JBjc=$?Q}M3TgGu2JK0w6@O~KwI1k8-XdK@yV~>ozoN7wt
zQmTFI_~|IUks*4231uCW!8oBuSzx7fNXB6qM`ZqR<Wrum^$QuOH<6A|43<B^3NM6C
z3wlyeW={zaUKRO6fIn~Z>-WhxCv$-v#TArL@VAWfoDgJOlW~DF$)BN1GA_%wNdGLG
zU1NK6=)lN7G8i}Zij4n6fq!LW9WB9<Gzy)BaZ%|2*J;^~kvkOJso;hjgonN<ICYnX
z8m8hI3K-XzQD_;CwwMwGJ7(%TtB`J1Qb8F7WfhcCP+CEzf-D74f|13mw?ZwmI}Nh3
z>NU<Pr{FFHl@wG~P+ma=QLLhZrrB8xiaJ%qNM%Vzq~+~Z6jW1CT|reP@MkhvhO~yb
zi^Xnb?^aM-K~zCZ!95D<C}^zUK?QXc)Kkz<NPe#p#4KjC)&>gdi`yy8eWKd6yW`~F
zuiya%jGN4XJmx^Wk+|!bqBwhfPt|Y}1z`m*kI9h~WGe_Mfm1QUFD*#GV6}`i9iiti
zGIc`AVRsbdD=1LVOhI!6aRsfFU`jckj<isatDvP4g!E;4NC^UJ6VORoDS@jHb4q+z
z2_jbKDM2u9-WWvkJsd4mf&t5^;}Q0>YM7G@!`eQo;4#+5epStFtMIg+_$>u;PHV5A
zgM!0sLP19bofJ$}FipV|3Z7IjOu>5!I&<<@@S1|Y3c4!jrr<dR&ntLJL3c8nM|vuF
zS^-Z2;i(tTu)wl-4?(*$k3UOoC$o4~$-)N<YtBN)eeo9*yr|$61-%utS{HwbN>jKr
z8sVWRy_DdXi}&gkKK{Q@t7I1IY1KT+Gc@`rcvS(<wP0G<Al6Soe}!?G@wS536%0@?
zNWr}M*#ni}3>F@;!SgiU5O~t8!lHgTgB8qHB1~@zaB)_=Me*!+Sc59Ps{{vz454Mi
zk)br%tU_kV=iw*sEBHXc#|p+N7_MN1=+P)vD{lNqVT>DTq`)k1C$eJyg?NI;X!`Ac
zA)eGRhIJaDu~cBaLV~(;<Kq=fR4|ENH#a^(0cD`Nl$^rJ3N~$#N*s~)?hZ{+aQ>gH
z_QkTNEBHjgN(HMFe5&9xc2L2$3O-lxg@UgYe4~KHcti|u{F1}`i1d|$83F|SlDRV#
z+)=4;wt_hdW^u%oEx2WrjXOeA5$Rl7p<fQccM9e!_)+0bQhYCLu|UB>VcGH*gM(-m
z(KlM>Qpg8U@B;@93dmfdV5x%T3RcjgE=$Xl;53rQF1PwgXrAUcxmY@v$O=w7X%S~n
zS1VYfV4Z^X3f3z4S%IcNr_U?+pRkLn;8z7j999Y}J^;_pPAH6cD<xTmhu$ofm}J4B
z8xYf-c$`a$oPmX9MoNYPQ)tx_`m_Xf1hqw{C_j@cIP^CP<|{}m*fuM^I;((m13SX3
zg6$k-yF(l4(h9b4>L{MQiSq!Zt&q)*@1Ipj$L29CTZPZps9r$Nr{C@n-n(1Sor3NX
zKEOkA_OL?1*(c~hLH8>-AOKJ1`FB>~A%Sll^Kw+dG0s;iVk(X+I6+gYxRcLgqrxW@
zoKbL=J>m!*6+SKKAA&ObCubNDlK7n9TvWI;5fuB2zXAfB7xaRlw@UJ$fXfQ5axxhZ
zX8K2fe+9jw;J@2^21LFl@O43N2pUQh+!TOk4rHh(rs8fDwN(^XQ9?x}6_wSX+L9_V
zRb;6sC9<UjC7-dCp`wh63b#3BRorzOmlNPzK~t72uLj2&5HM8~d~&L&s4Do3<4k@v
zfvc;yB~lF)HC3cv4{o8HwNx(47chH|iaILhjf^~~qOOX1D(b%&X(;HuD((}2ocbzw
z073v>j5H9;`vrY~RDedJlEwnF3=20=A*sk#QSG5<SWxwv6jDJ-PJ{vo%(EAAR5Vrb
zii+MUnyF~6qLYdzRJ2f$tD;cFBPv?5n<`qXcv!{mS7NN8m8dhWf;GG`DohSjp706=
zye7_9Q6S2&0JD#(cud8pYf?Kk2#VcC(6)jyI`-q@60b54c6)(4+~#x?fLeW0MQ0UH
ztLPy(T~s`!20^sDiflJQZxv=e-GyBkMEe=4PQ{DjDmBAPJykp>uEs8BJud)_@`3=g
z<4d9o^wM4eyeu@&Y#$Y`s(4Su`zl^j(O1QrDkp99qms9UURN<d6=yA~|9`yXKoxJO
z;CYXOsmac<0h6UcEHgPc{*g?c=(y?S*xM>dhpNG0l?3mI><|^hmS!>guHX+7bk|jh
zWj;_bT*b#K#;F*g2FG2p=}{^^R54Pt@{t;xlezrm*pR#kkIfvdVvLH&ndn#+_%ph-
zVdkW5p{2txo?SQ-WtymBf*PE_x#R1I-6NynD>0spIYq@(6(6NADurn(rmOf*#Z?ub
zsQ6Tcrb1WonTpR<{Gj4T`nifPRm^gwc^q{6rLR<c!va@Be0rauf{$unQ@1xIf|)F)
zVzwGQcr(or{9@s(H%8~oRnf3hgy37Mk?uD-XTFN>RV+|(W^@j-e6Zy61D{wHs%Y{~
zWRakJx?8MbiHd}Zq>80#@W!!H#VQrcRQ#l3Ia^#Ax^f|SO5t5A#9ix0=d4z-M#Zlx
zid3vs!Fu>$N&e5Ocz_XN^V#NqD)uahuRA71FG>fGhM4$P#V0+PV~37$BdYM;Hu-#L
zBxN=wn0!ezRG2Cbt2m;<QemsutYQnrQ{k%ENR`ejh*k;np~zF=b7oM3$F0W?#5br|
zr(!*wXLL@r@o`eBh5X-CkUrQpmuZvAv#?OGTjI;kg0_*5#^h|JoGSLJ*rwuxGvVzt
z-<X^og6<S_m!P`^HI~JBb)Sm;>@4TTmvRoyiQiE*OmINOLF(<M^lUPCF(HR<B}av9
z$2j?`xG+6NIZvoKsp71Pb1F`;-IdZAHF$R*I4!b&2>Pd>lmCb^^{5*Di&|B2QN<+{
zJ6!2JYZG@7FDS_6?R+4-%u73@e<|4Y=syD2>{rN3SLnd^=8?%a@oOrsb4E(xp%iX#
zg5}(vLgf_hNa4;DvQj__87UM?fv=OLQz)L|F|E=Qv!s$Kln|J&66BOhflPWVX{Nvg
z<wobcdm~yVg}YK1x=SjX0<%ozQs{8H6<x7>D(G(oK`RRS)lVUEs-#dg1u2E>6so0A
zJ%!pS+>=6$6l$h$cPe<J;q8m&#A~JS$LZ*VlDXvYm7KH=uU?SqrEqTwW2LORso=?+
zo?Jf_JasoofsRLTUkVKb=YByS5VWD7yxK^B#)3X5C`TM`q;rN+2veA<VfsuYg=h-R
zQi0#bQo(x)Q&RzQsGnK!zb8ico>G-B0x7f*e7@}Dic2iXORZ9fr|?P&y;EqN!ow-F
zr*cxrOCdjn$5X*uCw;phg~uoco2wEo6!ei49u?sCN~Ou<+Z+wFb$q;SDsX;Q-j3bx
zA7P?$I;PMmg_nicPo(f<3eTl*phRmLg&pafLYEY}rh?^&T28zhRWz@Ffa$3ex~Fgp
zKP^BHL7z$C+1vb{0`L`^6+SPjeIbPx1$ZfiZ>Gn{?{yn+W@C$eQg}6mH&b{kh1XK(
zo5BF<Fok}izZ{jX3(%jc4rfsVeCy$>`Wr%lgXxV~x$NK|k)=hL<?GnnsbEQDD1A)0
z<vS@1xox=miSV!#-b-PG;Jlv#mo=!a;VJM<{DTzuDmQsfoXbQ5^Wz_;f@zj%WGYzX
z;Va(g6voi^G}P2EHieH<*pb4{6vm}6K82MjtV&@*3KQAK6lSI{DTT=?e3ruJ!WNv$
zrlc^H^M5KBcTAt8z@?Juf^sG5(-gn6iYMPHApIhRFH@L7bCk&SD@EwfU!}ltbXPcw
zKE^rZYZhJ{EXd4CVRj1Nr?5bb%{eK|OW|9()=N2ah0p&aWql`_P_{?sr-I3xjrK2-
z%`B&gg()l%@+=aAk>l|P0e+-Ym5MADc!LvJD#|QN;U@w39=iN?FIG^`+d}NlYPOPs
zo`R9W+7y1KK2u1t??RKD2Z~bopHRiGf=*f-xG06;RPfMYNlrmwRjFVaKOQMe39shR
z<|{BgM@xauLtv(0rLZoA^(olG^nMCy_Dh)0O~Dg@Z`riwn&~kv4gGhc1+~FBd;{l}
zrt#lW*eIq8PE(swI9E59Z_t}l!6g5?pyY5wY@znVd_}xXfbD{E!r7I=?i3#t@NWux
zSZ4|+QaH(hlfwQKj-+suq6+srn8Kk{u<l2{J)B|~xDb~h=%rK_l}QsE<6z$s<xc?1
z92X8rotz@zf=mkMQ#eggQ}{E5GZa<KT3y9JJDUQR5Si!$T-p1Jh10>0#RdAw9Embt
zO5viYoa;+FLs=Kb<XldH^s$kdSEyvp#v00NxSGPX6iR6*t>HQ+f8j;NG~8rIwnbSL
zZ@)temfh|YG(!ul#_V6SgH^cVTF_hxK}!nCOK&NGK{GXEX+iIxp^O$NffaHTmlc@V
zasqHIw1S3;8Y*e1tnsZs%0W&2oB^t6c%@D*f99%ds47~o#?f~p%Jf|{O6_qqxR!>y
zHN2qVMGdtz+@qmDL!pK`8tQ6@Xoza4r{P`=jWs;T{+7+Iui<_T4`{eg3!XP9QUd`v
zu{YF$pNU%wR*eK^_UX;>CK@CS^hSEVGeXLyehx_^Tq&f1*|4BAF>y>oj)qnm;u@N2
zXr>`o!~E{y<{D#|##?B?Z#tjc`0&G}xu0%ETavRq`jFtW7=J0~maR49X~-8+J*)+*
zI&>R8nb32%Qp6>)M>OtrMK=vkX?RRS8x8F>bkNXN3uZ0)b2|YZXWuVpao(n2oIE>n
z@t+DQ73r+u2@Ow@j?Up?7u$X7`GWDKvpCUp5jV1ut{V8DLeO2q)09LD9+rA&!D2gq
zu%6L^hYDgoO7S7Er?~o@P!WqgPgS?g<pa-48hUB?NW&-%FVmVD25A_qp|^%U8W!AW
z@wx`;?Ntr0Y3Qp3>s|a^=%)owjQut6DUk-Et8fA&Wful$7^vY5(l+_j16_s2dXsLW
zVW@_8HN33_56qn9hG?L=-qC{fXFiE>R-q>k)9{{#_ceT=1rHB&Hu@xg9O+KOg*Sev
zfrUqC!O||L$C1Kz?e=6*MWZ#0(J)KHY|j50KGrZ*!!!*gtLBc=Fi|LTyvR<_u+R?G
zK9W!8pG1e;9sF!f7CoIJC~ujr;S&urC~a0Q#rRZo`76=fXM%pN;R^xS^q05YgO6%7
z?$_e3Zv>qw=#-OD)-y-LTn*n-v0@y})9@WV^OeZAH078aJ_V7^*Md2am2fUvNPB64
z4p(aULBo$4mTFk0VMOUHPMeE0lszjkEfIh}lwAD$NsQ<f8kW<bV{(`tIV;`jEH%kN
zu|~sMjy@B0P5jKcLc@PLuIl(7RjOf#j-fh=G$b_C(s8$rqy|~TaSbQfM-8fmjT$y-
zNNLbCm>MjO?)lI;eCY7)!XqYxxo@T1%wXS#&EC;TG^}T_tZY|9myIC;PXl+jF!|KL
z3*j_f%L%gFo5PJZ8#wT1#!qL4f73u}EeZdwVKddjyEJU!sMoMf!*&{UVT8MQia#G7
zGD-SxWqgN*om#Nvg!T0N9=ka1u1mWG-6LqN*@fin*Kj}!_5mH!a8Q&#tl<dls|8z)
zm?q7W!rMdDvxBWDM>XuP9pl~;?pWd8oRb<((V#kt>o~394-MyOI}LwoIKzRdp~0>a
z+{|*88r~W{M=i}qnN5+u==@(sSV^hNk+QJ}w>VwYaEY4dbf<wkk1o^Og^K>s@Gl+s
zt?=c)r5fMG2`Y{Y^l*(=mxQUkJ9J#949%i91SPmBz@T{&uimK#8qN@uTXjn4D5;~e
zjw(7z=_swEyp9Sw-Y$q|>L{awdyBIF7s}EB9Rz2VL`W%5Sv`=doQ?(aq`P#ycTccA
zikG<ks-hmW-fLyJ65Xa&ggU9JgX*fLqq?|M_3og9Co8wCq2n?lHT7WE&xP&*t*zr8
z9UXLZ)KN!AT^-GIG}lp2=Q)|k))CTCU&nnq8tZsaM*|)A>w)LcH%64reLz&$NC$C4
zK@aW<t=$o4D-@5O(?sWisBuY0q)epq`vIk2h1uWPkr<ge?l>7@it6AdCTciG54M~A
zxFp<E2PqqBp(9sEzK#MNEp<GkgKiwx@l|G+e#P#$;s9w;oZGcnxV4VuWa`KhfSPBv
zP{$)I^JS!sjz{&t%{EksZ23Jxr9Gyj$35Yx?ZRz!Jg%c1yATYPfYR$$6${4BJVZL_
zctXcZI(q4NQb%VU-E}-oo9gJQqZ{=}?QIQHa>_={6EI6R;|8%FI-b#avIL$NdV7}U
zE|c9UE80^Sk-fO_Td3j6FwOdcu*-`&o}DBO-X2=GO?p|!D>?@1ctc0d`{=Esua15?
z`sjF-O`i<27=?dL=U-Y9yVGCCx{2J67A{^V++s}RbsYnA5O7434$?7LIL15F_J?7L
z@utYWMRVxE<}wamCIWVW^1rKN7-t?G35u%YeVxbh;5!{3=oqf!Gaa8(Q93@<F-^yG
z9V2yoq+^th(K>i^9*;WgJzlzhS9lD^=7`A0I(Qaea#U<AXRuNH;5<Bzw=9yz3pzni
zW+w_TNzloHP7!n}+gcuC0j5v%-~`1_=>tU)&qd_Phf9V>zR>ZdjyXE!lCNWi4xTYM
zTgRQr$k%#s*5XVZ-{@G{B8RE()#xl8+eXF6C*62F!b1poQYBCG<0+c+^x#m(`sc#)
zb$qX5h0Y^%ut3K`9gB4Qprhe5iFfT8FR>#(>R7B}32UY=&57`?@YN_!>|925-5sF@
ztomVU<0qk$<$|(No;0{h$66gf)1T=cMH0`AT%&_GcB-HG3nza)I3tv`oqaUSg9m@r
z!J|9L;W3^`9kP!7EUZJ(q3T$#V}p*A4o!#45u`)cVbI@bnie_b-jznCgM$!FVS>vO
zGi*^gJL}NdMnrfdqp#!4#EdlkN2rM1r(&t(>n(D44&-k-HtN`}V~37SI)2x&SqBAM
z-8OumAE8t%&+Hb#+)Bj?K+c32C3e!a5|N$#BD;0$5;|c|dw-j;ht4@8%+~kn*mqkD
zW)HHwj&nNx(s5YF5uJxM;e?K(G~dLG_Zo$1YbyVk9vpGm_(Il6j<2N>&jtO1Q^c<D
zDM3#QdZ~Q&pX`^88?!UsZjp0V=$VI4PWfH>TgQ1F7ikW*J|}|*u3ixCL~r3CtF-K8
z9sdT#!atk<&xLz^0_yOJa3mUtX1c~{U&m|%a}3<zEXOIrz>@~<Fc|g=^$px-Aj3d0
z16c-OptyleRb%`(u(W{^2KZ@WNdsjnMoJlIT)yS2eS**7&Ll#a2Kc=qzj!QTpsa!N
z1}Yc`4GZ%#$Z`hmVpUDT<5oya{YFR?4OB8v(_pMU{M|SB6s@v>DhBSZlwH+8_;b`S
zP)%g33wmxx30~qylKfQiZUeOq?A{)#XW$+K{6dn#)HP5?;IsL`2bQDCXY-RMes*}T
zfyC58eudb;!2Jf|23oV2frbW}8E9^xk-^<e;fR4KyJO%%k!>PqwxE*e1<Qm)cEt38
zumMtXF6D+}267BEHSp>`S=7U`$>7U6ej-IZv@nos;2{I8jNsF$mInB3XBRchOZ?7_
z#rX9mKP#mI+5LwN6c{KpkY^yD>gD8cXEs%Rvw!3f1CJVLFIuPS9y8FE`YaWuZrd0P
z5FGlYOoZhhH_%SpNDi}YM@SvSEgcPX5@5<yo@^HGY@myQ!3N$m(A7XU1HBBqY~U#a
z-3>f%-~|Iu(>kr9Jq)n9oFNe!?im9^4e41?e@{W5Gr-iq47%_lwfcKx;Rxv^0ce`z
z|3u54%nMbFyuwNh^f%DkKp%q#)P(YeORrKVC#2U5H1R@x1tn-VJ@UGN0R{#dc*6j{
z8l}tq`E%%r^4WvvlU9h{MZFbUU3yWU$Xf>9HZaD(SOf1E7-C?Uf%lByV@MVoYT!~T
zM8&>q;QLQOz}mie7w;SRz`$?=)wK}yGm^Gz86IKaLjm|DEwki*L=BISM$y}EghmTo
zp=J1E1LF*QVc<&x;|)wO@HsW9h9`;<L9d=<Aib|N+ajLK!YiaHf=(55nt|y8kpGE+
zPjBPT=!dfl$z)YcR))S3{J~ymh5-B;^J_YfftkV<{4#SEJ>k6cP3H)^FsDppu7P<5
z_8Hi3;9IKKfM>urFrOVa@QZ=}8CYOop@E+aEH|*ozz+r%8(3nXqZeW&H1v-w|3hH$
zrD8<W>*nT$`AP6H%C<Q~*;W`>Y2arL;d0?s2G*UFXhizPY6Dan(;5NR@=~)Xv;2Vh
zx9g!_4HOx{_n8*Qpn)V?IUGvS!B&RIlnwAhP$oqHm6a<YW;Fx40YfOCIx&SQN8B5s
zS2JsKFjkB>97=m7s>@~l$<hRAHf><5fo%rXi$>YRW>I*9f!_pYqk%R}!c3bC{4T6U
z%+3xyDQywjW}Vv&>@axLTWIXz&`txpIL{c^BP9I(P-NBhKn6M(r!0!P_qOB*3>-9Y
zoztm-Lk12TIAh?ffg=Wv8aQs?glL*dJ7$2DutiQ;Ck;@~rwp7H^^kvSTA)aO7z|||
z`jdTELiFTw2L3YekAZ(VSh!eZ;JkqgoT6t$I4UU;EppMo$=|}4I8IMWOqT`Vw9M~C
zuduTQu8MmpHkq_3YrbZnXJ&3!e*DSF-$ZE>nI^hajNECWn2F*hGE8t#bNF*+D`BFf
z8OT%01m)xaZ&xl%Jx~U!E6W5-R54N2<lKd_CMue!WTIi0U^tXB1KI8}!7u8|3(U?|
zFar-9I7@nEg~Z<xHc^>1oR@ytSGt;s>LzNNxW{DR%U~|8VWOsqm%a{CEi>@Cy9FgE
zwZAkKOQXDeEzIv)>zTOM#KRWyEYvq~pNUN-em6N&;eHcCObj*g00lGA&P00?jZ8E)
zk!zx*i3d$IF%dQqF(H{jXv=I9Av1{o$l#a^tjX|^JcW{*cB3X@CUQ(PHG`8I8L>1+
zlX!GwGZW3Jinn471_mJ`8N;-N83fa0AV|`OOtdmlV4{#6>=8twjGJgpwe*iYY$BhM
zjKHWx$fMf(#aJy<nNRQt70xmy9yjrriO&Yb+OXYIQC>Y&Ka+cP%a_EO{;_<XT6rMK
zgDX2wu_k((=wqUji6=}vLm^E(X$Cu*pEA*1wAh)pHiHewOkGWMyNy}l)1oA0?qOol
zWN;TVcl)0E5<N{kXQIXHLAcfDP4IY3_VgtaFPK>NdhA6(hm8s_kE!fs;$<^9ukzJ7
z(klYw-jO|RaO_no*2Dl4ubKGh%~)R({Y<d(?t^3fO;COUHa*b98_b$`+r%I<h+8_C
zcu=f*gUqvU#&{;@n<f~d^yr{i)t=#ZM31!B0y7<aG2>km!>B_FZ{j@@@0*xvVw#B$
zObj<M*2KpqMws}J0+<*@uj?P<L6IYcQM!)+cXPA9ROuaw_-GSj%wWHB>y9~WeRBzn
zGcn1;WE0~}OfWG~B*x<G{CoztUH>s42;Mq{idrL092TQjnBQQ!iBC+-HZjM<r?jAn
zuT6Yo;&T&p5~dj@zA*8nxa%v*sRyw^Sp(18oLndK#pg0+nt@c32xU9V3_`nJ=@;W6
zsB=xsqi+w4Eimz|iSJ1D$b2){gf4H8Zh7GMlvdRC#Oy+bF0K0melYQ)3C)CVVzJ2+
z+Odk(G_jNxq^gB7hn))3MSr3uPlb6@>BU6O3KJ`-x;mLWaFr)>?rfg7hC{=||4jVK
z^&j@Ae~j^Ve-Yvlw;vJMtH?ycMAC#Ts^a!}T8&~b)G4F8awEKA2HW9P6Da|R*#*Od
zX(DZ6oe9f?&AI4~Z0=8YOt|D!$>U~r&kQ!>`y9geW%6WK2HWLnr3~FmE3oqQCN@x$
za)|QN3cs1yXa)gue;XL18aJERV&ZNKwJmHlvCYI~6aSdl&QZV#%ET!XJ5B5|anQse
z6T40PG(_5KVxNgUbeNselvxtawc1a=`aSyIYmw$(Mh;MK(fELU1>|HN4IMUd#KcjW
zUX{w*@o{_O$4tEH#ZPc7kXbvzG&UOiJ9GL-=(LGHO#Dq}`&;^x6U)@dS%F#R4E1S-
z<2R&pCN?+A|K+iQzu2{Td1X4}oEK$y%LM^0a(=#j7n%Q>xWXyjLY9U9XoA0`8zyd=
zpyXFcZ%Ee!y&ia7ysIkRVc|{-#VwSuP-jUz!@|0~@grNJ#VkBk0;QVd=bQ~q+8ixu
z!DyHBP(i$uh0+%6&Cyjy@<;tIv~XVmER?ZOnaynsm9<dLLIn%eHiho8(7}zDw@@%f
zYWjP$X9ilH57pZey|ZC{MK;<nzmf%3PE}N~P?fh>D9?yy7M@!c;q8@2W)jp8*_sw=
zS;(ywA*Vvc@I4gOLJM*%)U{C0f@EQnDh+%ney@cGEHvb=fW@aru=2gxS?qfQE6~9G
zg3kS0YGmQ^lerICXkwu;%fB3cx<pVv4a&c|Xy~uTHO;mVvhdM@cvy5H$HLJsA`uHw
z3(J0wGR5dc0yMQijWx5-+`_{n!rz{YHaZ&Wcs4|lT3Tprfv4CJKO}@~Wg%{XUPL{2
zDjE5)UQ6mNpG{c!!NQLg3N1WhVVH&YEIexAF$>RIc)>y&3vDe13&7JB9=FiWLMIDP
zSh#XJ(%yns5+7ZPb+FLU!o2lT-a+ZW#~HlzBvo-d+SNig3!SYXG9XhI*4D2%!Huj|
zPg%iPPYg2n@3k1S4A<Dh0(V<HW8qSlSbYY6w1TszdJ0PLoB%v~>O~7LQN!$=g<ck3
zw$RtYg4c?*936he3eMW<W1+XGoLlwD)ThQ?rKMhN{u*_@J4}#sG}_O?-oDLwYSsV?
z11${VjTCrQn2{piu<+}RP?hV!iDXj`#qUo`Z(4ZE!l6sCw*w7Chgf(=WUEbykvUW_
z-xc)Al%T--7Cx{r-NGjphFch6VWNde7Cy8v(!v-EV`*Rdz=1g9U5=ttRgUnaGM<Pv
z+QOf;nrhjZ+!y(=g>e=rKUKsN+r|sb>;zVIHAcXV9+RzLvm{S);I@t_7N*itU4tzi
z)2v|A#}7kFe`?_~3$rZDw(z-yFD!g*;TsEITKLKeB2HGj9OH2rJW7i}8)sPfc}d2e
z|6;FC3&I^TbmL5m$0^4M=2)0(;X4cSX=M(LucdEktiw@my3`kisB<G8=K&Pov%D2u
zK;141726V7Xa!+0dGywz+hDPUB^HiZIL_AT&lW5WY70MESZ+bKpjcR8VWov%Ed0;H
zDhsPA6<xG)5RY<=g=SqdxUX}q1s>`}PW|>x*%0mctA#fXN0S^HyTV1h>u9vv1CfLP
z{bm<3fFt>;6&!G<bNC;P^4N`(1x+YQo{`C9STHSoe>rydune9O#x6L#%D!0GM?bgV
z^L7iHEu=YFS@?}sJ{B!AKfc}y;&MLmKoDSb18qGmMzE2Cjt<Z!dUi<Ze@EierLiq^
z?8DJ*7PeDJi%<UXiI-!CFUM%d9rSH02xrO7vpYE?MYK(3cMIkoK_|{G+;8Ck2kBbr
z2nXiBv4a*4Tj18<Ln2EK2M*7v<4__vDlT=q96Mp*q=h?d+-c*Kh0_-P;Ux=ySSSjj
zeBvx;kB!owg3@iyS@_Gsc?%aT{LPtRb|E)Oai~_D794-UaGV!8^jhU}Yc265PG}Yg
z*b&kzoQ;{aaD%RBN2&9xv}}b4(=`DY-IXP8axSVKrS|C9R9%LRVm8X#s9>YGjS@Dp
zY`_i_Qqm4Al4+xq$iBNKUfKqAzM99xZHZ9YGB)VL<?P^u!wtP6W$pjp({z{3<H$o)
zGHFFS2t``iMim>C1ZI>^a;n<F0f5!)z%JY`#$cu#3l;k{uW6%}js8Af_i?w4+BW`n
zaNfZ^HtN_&+K_G3wNcN;7k020_+A_JZ9HwGhmHGeG_cus23E%XHXg8%Yon!&hBg}6
zh+Yjhwb9tdgEm4o!Zxzqa1$GwKhBW^URDfiLy>Gdpc`+7BfLdi&0%+JkVDE#-Qsa#
z0%n`pSW!Ldmk&3$(Sp4@9$~h2$?!uqT8ZqVHsUr~+sL<3KuNv}KWrn<M*G%5v8}x`
z38uf5S!lzVUHAz5TQW?}{09mM2K31+suy|8#sxjxMo@cEydCf5&aW2nE~GY$_2DN(
zwxf+sHpYz23H>Ww9iMYxY)*~&*-z4f)xw>*S!{mxi2<2iZS1WW=Dpp-El=4PH96AV
z#@r(k!810VwK34f8#a2{c+SRaHu~Cl-o^_y4*>|X^2HUyFADs!jhAe&<K*-bN+4jF
zS8Vha1&I6D`1H^4t2D<*iP>`>=OpHb`q`jt{cXJ2IPyC2`tSg%F*nLYJjljiN@Zg-
z3)o<PGbe_J*?7yw+cw@295ROrFho!)=Up3DX2(A*A0~az#``uturb`mNV>{|oJM^!
zN7(p~1F&MG-;T&*i=?}L4Gq82ir^y~r1y*rkFhb<#xyp4Z}eju<7`Y3mw0u&jR`g;
z+9+Ki%z7r#C3;3Ci!Aj_@m^aIN>*>lnx_gTZ<%i66H(QtHa@fQ@3J_nJ=8z*bHRL}
zZ-m(|h4+4CV}^~dZG2;6iH)T;X4?3pY<LchVq=z#>m|ao1&7R<*Gtc{d5kvyhQ=Ze
z$#FT~3HrT_`5d-i#NTR|_hh4j1-CH^{2&St{3rmg5-%172$tFSiDKBeXGeHBjc8*H
zJ=_M1t+cUP+_Fk!S(x?Ts_kdN|3&c0VRN^tWhK9gs)}qRD1Xfe6D^|HP-!~{LmZ@R
zX!J%0H67^mUK?j^oU>utu;`pN_R*#s3pTde*k;4E;ZZ+Icq5(7M%oVIb#9=gK8dWO
zn{iy1jxreKz-96I4GVJD<`Ms9gMld-o^liCCC((TW^U&A-4fcu=4waQej9$VPn_X0
zS?6{eJ8kT;gK(BR>>$W#jd$-HccH|0^TNAr?4k1eW-=`(7X;|sPhYih%*JsW2YHK)
zqjnHy^WW+%4|B+z&tZj(eR+iDuHKTZFzhB{p`PHBNb}iP{#AV7wg`o12+>nEPSd4}
zf>5MADir+5dN@m5Z&B=e3l?Kle{s^|wCtcbr#=pR8`mg|jf+Ca|7=|4v`K8^A2vtl
zrvo%BV6@ZcpAFBhmiK@bA)q!W277ui7A@C0dV@1?-}s#lG928rafgG1h|}6b1p1`p
zRNBfmxfHL2gOU!)JE-8GloJG#&2*6EptKXjIc0d(?17n#j!IGCpp1jE4$3*WOO$-%
z^FsFV`56Tahk9ssA@8l|ppt_s4yrnV?WnQJ4!RVD8K@KkGpQvC%y^^K98`C}IIWCd
zdFR@^S`O}Z@VJ9^4r+7qcNlsVQ3rJ#)OFCvL1PE?9Ng=mfrI;<AX+P{s_)=FN*-!S
ztMwh2x&77H0}ehr6-04mD-E5%#7yC*n?C5EiGz@Xumfs|B_#*hK`Ro~!rHp@3j)zz
z7@k9!ll?Md4sskk<e-&<rVdY5j5l-8+yM))M=dD)#Yjtbvu~Vj<vM|JhZKc)mC<$M
z4qCJC4jysvuxNrJ6$p^$AYTAR-el8sGa8E$KI#O)aN9U|%n2faW|zsO1=|W{=gzrw
z=JpOcIC#;)OAb1U?ss?aw1Z9#o^bG_&}3)o*$F)J-GP~1oggwVt^AY#-2`QG<S=Gy
z4+qaUc+SD|4ldmvWn|T7g<85aEa=HbbK@<J<i8*~#m-V842jDQ_HyvDg8>c(I(WrF
zZwIeBc#YX*@h-x*`#88tAGpwhJ?blj@9&_W1EXf7RO146@O1~2fvL)z!Z#cYa_}Zw
zaWGg|jpK-;o2F!x+a9YybMz~d`?dp`k|BMEI(XN?j}8_)80O$T2j4iD>EL|_A2|5f
z!8ixQ9gJ`=%E4#{A37LGC;Tt^k%OJl_~Uj?j*``Lqx9wI__dYN7zghh3Nej!z$`%r
zPr84%G~U4k2cJ?N2NNAkaxl%oiDMFLm`t0-B2(BzrF?>^BKuJ)u3U)@-XERr;1k+q
za!!7eeA3Sy{4zE?!@<`MzF^uB|I)#l<B^}YNMF&!TO{HG`{I9Yl%75mVuiEVO$Q4c
zEOao(!CVL5aV%_z&vUSHm^9|R^ervhIIGitQR4L_Tl3O<QQ&()->H}R^_~z*9_$fW
z<bd=Cj?h?~4J~o7)Pd)~cd*RCPn-uFB!w``9jqpBu!5~PU`JL7jSX5HS)xS0T@@i%
z>)?M5es$1&v-C4N<$wY_ksoiDo&V45aFHnQ?2l5tluc$O4s20IbwE`&nIjqe6>y+&
z{udlFsqH`O7Tz~DxN34>&XFuZhtF)v${h!7Hb-1xHP)PVu#WES;IM=B4mObQV3&j6
z9Bg#3)xkDlpiP{P9BdX6QZ{v8bc=&L{%!3rz+(KRr@}ODczl>?yMrB~@}D=yY1Z8i
zXoY<a_H(5F9^d0&ui(%w74}D)Y=|EaH8kxVK1cydwq{DLjvsMw)WInSr-gxzQ3kqP
z^}OQ_cK;NoA;K%AlMYI}5g*q*O#UCN)4@3hHL4cUQiT&idWJ*zQ0Oct-u+PmUiwQ^
zLaSYHaFLU+2Y9%|d5k{k;xiZjIQW;dii<oKR~-DuiO59_7gy=VoSa>hb#dLn4L0qf
zq>GzEIT<dBxwyj(JelcE7uwzeg2?*(;%;yVKV7lYhH&lIvr4(3_DZ{fVALLQrodS)
z;G)}(I7>1SlyieFRCH0v4dlPeMR@`@=zgkBgzDP-Y0%TkF50h`s=D}C4^<JAPF2mt
zA7!$~j=<3k;hHXLxoG5~v5UK1)OLgM*ucd-Zs3r0T-0?@)Hq7q>_D`hi~25D!?1dp
z_loWi-zPXTs^=0j-7m5axM(N<@A|b;?t?CxxX5wQ)Wst$!jg-Si?GW#0#I5`3v|4Q
z%lC*JwjOhX$ssD}d!-847rGOT-pmbrsg;Z7E?T%a?n$|BFyvdhxL7&o;7<|ahgjk2
zI6>SEh9RA>wF}<P8}nThxOmA$FBgRr!^M*>I=gt(#bZ=E73HFhi?%KpRF@%o87uj5
zHwXmGfUu0E%c#B`X!PZwjxIX6K@4T$vx}rBT<(|-BE~-5ILz>`U0igfO<g=k`6uLb
zbJ3j^bnz5B`-8+-%&eTza(lRVMl{5rvAq3RHwehf6jZo3^t=m#7hSwS&p8p?#elOE
zfQ`QF;uRO~yZFFGZ+73sKo@Vgc-6&gE?##rz(rpd{oEkRaDO+5*h|?c2?H@R7BE|9
z&EzoK|5DZ<7lU2AO;K6ZwLmteH(k6XWP5Xc{8srPtZhV?QHF=Qc-O^;<05m{6fir?
z<*9?xdxAE~C>-u$gp1KG#;}ZwkuE-RF^V1EE-^YVmBTKucf6fhMll{shjcN?#bg)b
zT#R=yk&2p-Lp@BO0Ljwa;zUg4FxWBqQ(R1SG2O){6eARw=Hga_Ut&fsra7o#2Cc6D
z6+U<Ig^NuzlZ!81eC6U77yolHgQLd95*JHdeB)xK8?57TL4XH`&T=t_<y%L7yB?eE
z;-^v|nCk{~o{MiO>H|67(I1)?elM8w1*dd_DESLqEEL&Ag8m>V`9BJ<m|nLl&g?Q)
z>teMVEU)qW&*k*GK6xwXDm%l>a=B)ui&buL{616l`JpwGCoi&AP#%N!vl|?MR%3SL
zR}M)RjtkdC!bQ@B?!usRo{q?Fu)@XzPZYX6$AXLRmvS>ptopDFP2kOcMabb299QH_
z7ZwMmSeoOih3y8*7hJXQT=-PciO_E@(k?a(h;S`pof{k!!{bu99I>8EH#pyw3rAcD
z;d;VGm#4u8>tLH*Y;kd#GmML^F1EQi>f)G-?VMOv#P_>6;Bt=@cDlhb7nQ$@Qx?6;
z#a>P|H)8u}rcVot-H0)1C82M~%i9$%I2JufrP2C_0{qDRg@<X}o_R+EWtNg~Y3R5c
zoO*haHkukc;RY+K%rc$g%yu|RwfyPgjEny`U2}Z7ILG;%g*mHG=kuk%U7Q!%<7y8V
zxGuQ3Oed_>^rFin_am1CC7@l%Z2b{Rw{OZ7)GM@w73D%D&*8tu$)9sRr+N>(^lUiH
zbi)PdweLcAddTol+(QX3I8mpV2d;oo16*3X_zg;WSk*1Y<(*O<&ioU5Vps-Ogi3qJ
z^n#@!CN2b(@le)-?ZNR-&cj_E-tzFahw>gOcxdGz?xCWGN**5c_yq_md#K{!ZV$CR
zRQ2#-r&vu7EpJAL{UcTLP~Aff51~1Qj4!iiYqb5G!de~}u7z<)_KwWF$HRNA<Bhx^
zhD#j}bv>N#7^~+6L0EbnjNdD=<ka_YpTG@nbME)>z-`=6fX;VE8+*8?Lu_Pb7Hg9{
ze#d~89{M~S33&*6Xv*x;AZSa(L+d3{%nQP`L_M548)X0&25rgl@aw%f4DZ5X&8Rm~
zzJ;K<x2TBE!e}xNQS;wQj7rnm!^0k4@bIFC{q19U9`ZdDcwnHM5glTM9v<<~-NVx!
zUj9uwwMkmgF7l{{$2_$0(ALA*PO&ElQWDeS9@^c;?LBn3jXQeiB=C%H3vQKsQe-;|
z+C|W=f_4-1DM4Adhlgiq*2Y=Sd;Cry(8;r25cQ^~pw9`)?4`~bv`eUQ)=M6GdFbn*
zAEl)WEs<XF&|83i?#k}t;n>m;)2meGzEJ05k=F!=QF4Ac8||?y)StH>j1ThgIu+~T
zNa?JB9^Rnv55;#ci%jnrBPf0|y17$quqgSa2V(Ny@i4^0Ob@d>4E6A?hbbPWdKgCE
z@G#QDM;_ky@PUWn9!7X5niBbNYxLNkp-|cU=pHHai5Mdgedytn@4~eHC=a{tj*j*4
zv4_zfjvov$EYTPbb4G+&;C~%s<2;P_Fu?;cTc7BGVRt6e0|!PX3CygSEMWGT!QpAt
zl7}xmeCdI0eZnrc%Ky|u=P&c_-5UK&WIq>_{9c(^)Bqium%j2agVG+1e=R7%H{=YA
z5X`199@cvJ*~459^E|8+Uiz(v?>tb|%RS8Z@V$q7XT^W=uz)gjjP0BfSt#^Ir7iNn
z><@zeDClBA$y_49QbCt_!9R~=(!Q*Up_f*$iD3}}%DIX@EQ+nUU5vq@exX`C$Q~4q
z1*)1egBI?6F3MO-gSSg_GqVz6h$X!s@DsJIdPvdRJ(wOe56f;uw{?uMa@}K~(l}FL
zJi@U?x3R>ap4}wtfr6;(!Q;%}qlORPLz=zz@UMq;9@cXlc{t!<gNNTd{7xq!y%E|-
z`wkCp;{0<wGW?N9#`4I{H^W;zZ1u2%z2KC!KEgN-42!Uh6+Rx`&LQ?(q;>fi3zNUg
z!){J}H$!`<>L+9S1l~*Lw17!YqxF%49u9F<<f!y;m=5gWC@t&Zo$n=9*kNOYu_2BN
z0Zw^1?coIH!^W8>J=7U0wRtLX-(`tG6aL_=%kFFoF;+s$;o;G?M10P}Umh-cke-VC
z&B@Bc1<o6nrJ3C`NV|O)>DnUz%wFO|cUij3VOy#6tpF2OJpAXOw2w?5S3O+wP|Qbh
zA0Mm<U-xjQj|_otc(}<ivL?)Qhv1BQD)PvhaQ}sorj=UmdoEJKM@c^rtdtK1p7^I(
zphm{LAm`cP;Vd8UQO?I*qRh<8;W9qT`WRUz!U7D3QS;qMc^?&g#_&aDKM0etXo6JH
z2d(gRuh^&_8CArMRmCkgOJ(aLf{+>2{2*9H%U-dXK5F@B<s;7Ze;>73gO8ApdwkUK
zalelTeAM+(&qsY9_laun6|JzU^~du!EI|VwUv-EuP1WMpJ_A!jALT2Re$WTSYvf~f
zuUKOrFWniTK^g6$3G2BmNj|6qrh28b!#*NDn)zt%BkCjOqp2TQfqGzp93RwJk6y9k
z$Me}W_PT|STpz>Rh9C0Ll5Kq(Ker~VM50HR1g^!n9xT(EHTdZ2qnnRBANf8y`sn1N
zz=v88DP-&7MtUH#k5U82gBu?cSIKE3gly~MaRJ&1O0nAu&_U4EOYj6ub~L}Uk1jr*
z6ndto_3n|u_#kv$+JgT1l#lK{p7qhw$J0J~_;`k`l#QJGEa(@N^UImQhsk-4y1Ev6
z)yHcBJTK@Ag1$%v3eZbX7JFHMR|M_tqt9(V>**`ZRQAv4jlQio9{c%VTm^ywJ_b^C
z>(O#O-taNV$L2J)q%qjXn>2kI_oVTbkGFmN&PzVt@iD~5cRuF(80zC)A5(oyqv!Z|
z&&L=aV|~0&m!@m^_=px^AFqa%j*XA-vHVCD-)BFhDSL<cvdK41f>Az3v)#p!r=-ke
zBCDWLl<(SuYUF<GW4w<EKF0aMTU+&0C0^SS;+x|{pAnET*~jh`aV{lI@q?FHzAbVo
ziK`#P(|vs6V}_5fY1u~6Pknsh<4b`*qx%WKg%sY)7g#RHe8rKnKg!xjzwt5C$7~;S
z{9r|hoLQ`APl$;tLR|XT_iKEvk9kyPH2$riTu16Nr;yq2eJt>i^db9L=wp$Ol|EMa
z_`%1IK9=}c>IdsoY-q6`yqppYs+YOU4^{wv@`G1bc>>t+<pMLif(<P$L9p7#8Xv#<
zC}L_HT}#<~{Ne{|Uq2{W{}VNA+#J7tET2_z8G-$xK6^|=LI}^LFooXb!}4MKXgdul
z(S$*f#>O=tx*xpYbFqk&Z{j9ZG!bLx6goa!AM1T=@Pk!5&qvzFIu4T-VPBYx=Gf{5
zODoiW^>ZzT4U>NJv621VAKhc+J-I)+i9=w2bk`?^q+2*HeEi3W(Z@C)+kG6P7(RAT
zjXw7J*e7n>Ma%lwLxHV4>Yr6nNOp%{zmEex4*NJlm+)~&I0i5A)&9b!U;&UNkJ3dC
z1^&kJbHn*#Cg+^+ani>H>fFaEAE$ks^YNFDKm1^si-pe$P5$ZQ44eKbzHm+<X|-v=
zG6J>Ddj9rto-Q;xSVcKDOZseaiA!`UZeQZ)7Mh`1{}sZJc|}}eNjfC6*L+;(be%?-
zG;a8~>7!H{H3!A-NC&3ONTXO9ccz22osv`YSiZR6mq??e0ArLa7Q3;x;L$w(dd5qq
zktz7|tvs%2WToL8$fvo>rco}9s%cb9<E}Kyr%@@5%4t*(ZE>lM!dDcyT3${;uN<xy
z(biSc;1V2H&)C`OY1CkWG-{=Tk;TPKUgBL;0-c{qzB>(Cd7qM1Cylyke3<4=2h>aB
z-ZZ+V(JhVoY225_V`;QWqXBD9Bbr7mjkQl_Jdj4bS~Qf#mEGZnX*5csF)P^-eNa#-
zjV5V?Gh!!pM9K69MY7ZQ_>ln5{agyC5lN$Xw>+i=FUE4xXqrY|8u@8_zESGNHK;V2
zr_q8_)@M@7G#(NlSJ3x&M9FNGMr)B>ds>Q9s?Q}dA5L@MbO3(*R4SnSSE7Y!_|M0f
zMn0YKNE#InhnOBsW9Yd6v`ypjH12*O)+vp4X|zwHLmC~^DAgk){(m%G3A|0!_t!(b
z_cbP>$yi9oJ?EZhcyjAKFHNW<^OzDUDRUH+c}kR_WDX6Kq?9Qt4fotLk2jf#D9T)>
z|M%?vzt87<)@SW~_OPbC-@9k8wf0`A>B+?0o+?>j<5j&>4*N(Nj|wh6?WuC`_Ehv7
z>9I5hHC0&bm`0~G2Bz^0Ri8$eG<u}bGmWlkkmYU^wIC_KLgQz9sUOafCcGt0pDp!D
zqjwrl3CjDV@kAP13R7&;H;t;}@MIc4&XFenlO&{^3HPo`^dqUg)u#pQFW>+wsE^9Z
zXVZ9&+@&#+RHgBJ8pG2#xH8e_m^3&IPCArAOJi4%d{MwYg@r@XAY{!jL0)TD$~i9G
zbzFigjY{Lip6V+?p)aK|S|DT6xO$*y^EA9Hic~1uH0`C*7+y`|wKP6S<I^-=Ph)%<
z3(|NejR_Q58gHgCJB>+cOlE_g>KkcHNn>gnGlU*1_faYKX=!lY=>ifd;5Yv{(oE5y
zAdOkVJPx)f=-)7R4)HYJPGjzWl`9i$S*xcykH&dSYJ6`Y#W<g4Tq`$yLy|+io5sR4
zmZh;gjrY=6l*W=YmJ0E%590=l)2P`cr(Tzw-mX;GJXzvmf^u7t#`|gP8Cd3{G*;5W
zFC<rUHEm82Sw+RU5@-1!jnaFi4+U)Ty-b_}{5Xv@g3Yx8lHUqHr`DzMSsFXi_%@C8
zX?#vyr?FKiXhRxbrm-=NFVgt?RC5}hE~w&?`HGu^Fyl>WY$iRuRljo%O`1s5N8Ogj
zH=L_f<Lw-|mrBOJoh|L1Ez!ov!ZUA4-=(pWTS^*7k4fJPNGtl0>R5qH8hRQ(ad1j9
zOs3PIooi|I@1y1(k+)8Zi-r&p*RLs%vgh-xG%l}9@Udy?Z%IVFG_#0csfJ}5f;7T3
zT5GsZLzG6AdzXev8h)X@rEw;WvuXUA#_lwJPvaP68#j;+rg12Zy=m+d#Tt+2>`&uB
z8s)pHFL#R{B3pJP52xe%$d07(8%4J(+3!~=)2x{HnjNLV94;bqJdHon_=_^+ie9Sx
z$vwo8P6~K}|Mu)o^6oQE_tifM4(N7KPl*A4`l!`us^+G`-P7~WrE#7Xo<<1`7r41m
ztzFd1X&m`o`l5^aZyFcL#kWfJUz6{+(xo&Sb&c;$JA5E<h2}k{c*7gGMnjH<Tn%{|
zN^00QODUzHw1)HlB(_e^zgCOMD68R?Dn(@kP6}hfniX(ZXecKt*DjOGYp9^%+m%Y4
z$8&bCOtFUWr>~XD8m`lj&>(B5qTzZCwKdeyP*p=U4L54INsMrVhUx-&t9CA@AlEfC
zJO{Z$XZ2<c8@j5uYN$yvG`!PA9k;QF40;{a=1S_jPHHU;guK~}(ypt;qP|T-Jq|ce
zqEeo$RqTG9xLrei4U|{|0UHX);vE_q3H;9g)kqo|{|_I#E2(HmYPeg&JsMOE`5Fo|
zw9wFml&p~!cT}5cXew|@zHF+vxds{lrAJYak-G#vEw%VkIo=$1W{s2*jW1qbTqs`g
zX1Z1yiZuK?GoKH;6l>^uuxMW=^<Ju@lloHs;`=o`py3$}&uVy3!$TT+Y3Qw?jfS=w
z9@Ef)^6aFx)9{D}>X-P#qUKnaLKYv@@Xg9pdktS!lS$R%8ais|!dWzU)#OebaH-N+
z!0jD!8fntLEqUEET-ufFp`qUb<&PQp-8B&ITvSXm=&6C)f3Rj@AGTR5J*CA4Mwve$
z*y*d`NrCK{ncuW+VLuH|Yv?bCAuj{T#f<y`8pfV%)%v?a*4%%%sN56Ea~j5JcvZt7
z4bN*Btl<R>BQ=bog}kY}NHcpv87klq0ciun1TtJewi%(J!7+)=UeYj{D$wwXhA|qZ
zy`)k{`xX@wAw4e?<`dyFmNM@WBd=+Aoy{~%*Dzkg1Pzl#uZaTo>yyLolLX$TLGj(Y
zl2ZiEj#H@xF~STDGc~-eVXjyv)xJ~S&@fBGo5Fypi`fFXw5XW)91U*?X|&v(WO1H`
z`5NBUuuz!I0u4hB7QLh4a@FGEw)w>W?xQSkufC^Ykp_05I#?vKSi=%g(?dzIxLm^u
z4M#K_)$qQCl^W6-G!3gXtk&?AhOaezpy5LepJ`aH;UlicAn~z=H3DHUHH&LCd`d;+
zD$GLgi3a9IVA_FoT70i4uMlOx{^wkY8or>_Rc`FBjI%B<cAnAMUvjQGEjCgG>*5PT
zpFb*Z(y&>>4;p@?F=*JT;d>1`sobM7FHYS?gVeBHi(~4)6>x`u2d7D_;q#p+k}3wp
zGdBOykE!uV<tHr;jpuYfYhYYF^F=U@p4lEUEOLEm_*H{JT|6Y48Z0eNAaHnrY*P`_
zBtC%#M}w=yVg8;Lr<?FKC^st%NGC5lACg1Ca>T`cQqBs<nD<{aFa(}8yEW|5a6rRB
z4STs4dGbCD`?=y)D%;VRR58Gx>~p|MD{x4|VGX}&af$#+kMZw>Y`|dl-!&YgRcCNh
z2FJOqxa($6DuX{YoZzm@ZCt}i4S#7&&5ct+9b}Wy{e&F<w1%^S&ND)B)Y_ewV=bJc
z-S&!O^Z(&aLLMo=4EkP{n5E$&*QpTQWp=D7U(v*ssdJTU(3p84m;~dR3@8EO3+EQ+
zWWa<2JKjr`&fwY%DrazA24ylRn?c14DrMqXax*{%)JR?i%$~ut80A*P@+_B$VfhRy
z2!uGLMD@{-m?D5l2C8ImeFoJtsF6X{Oq|Dqk~zdI5TgAJ|Les(0~9IwC3ht3<_vDh
z;EoI$WpHZ-H8ZG}!EG7T%Aj@zbuy@%iL(T7u2<(4b5i2$&LXY!_6+K0&>(|`nfS6@
zs)?4vx8#Dk3wVd@&{nBCGmtXi#lFolysc7hoPnA_z8Eu+iLd&VGf)JQ6!82diIq)6
z7v_i{oxEeWX$Eiak(hAf(noUh45(|G-(4BB%;2PszjUNBxI2Rzb=;)mo(u{zSe)T8
zABr+)MKNYDB7@=#?#-Zc23;~}oxyz>JeEO+4DQdM{d=hgGWhaHZn!h?^`+#489bEX
zX9o<voP0QgM>1$Da2DGMq~slikN&Twy+E3l$>ZDG&J-@Wlzcn`4$_Iz`#jMx!>hzv
zZA}$$iYL}5x@OQVg8>-~%%FP)Ju>K%!4nxgb*9zfq82?f=v3IEmw>$m?654wn($Jx
zFWZo#OUcCL<df8IQR>}Utyt_QDxc1vzd))lE@mZ1dnSWH{NR(pvl)grN;7M<crF8P
z10LyEG&qA7G8jfJpD9$|OTC!ErSS~>%OgG{gE^&J4W(F?rC9ursgW6sqCsXbA%mAP
z7@fh`48~<JMvyV($HdD*fcg6sO79hlcS78q%)Xkz%Ny{zki%=#+L=NM<j?W3v?pdT
zDTBADR@!_9Q)rx%F*Ady8I=E2n$DUZ6VrqQreDaT1X!Gr!Rj)3L^$#r8O+My%?xH!
zdg~K&1SGOzcZ%{MGB<;H8N4UP;iU70g!z{Ef(+gfBoTjCAPZ@e@5QgEf<=O<NxM@^
zGgy|v&J2FYV0i{BGWa}$4H>+j!O9Fi%HZP+R*@vp_d_88iv0sYKRM-4)H`)SV%B7^
zjy5mkvo?cIGB`9$;qz$*7gwc-d?x5zFU*GY(|Eq1HD<6WgUy1%jTwBEL0BNSwiFKg
zbp}7rDNFVBxHfM~23xuMXwsHKtJp?Tcc;E#<4eh+$*}=bo;x!1VFrzs(|spq|6agV
z8)8a+%;2XC4rFkU!*XF}uq%UKGte@~&}O)OWuRwZ2p&0znL+eu0UtX9>wh?<#~Mcz
zT|p{~K?XEDG9C$I3;(xLSd-1*7a<ek)G3MFoxz?AeU)R?a~7(AR`l%d)V>V%|F@tD
zThy#kbSQ(v8Jx}FTn4{oa3q7%8JywXBHA3!;ExP`7x*y&DNLF);h)?qGWaWl6QaJI
zkn`UHKlQ(s6dGG{y-?I7fa`+9oX_9_w^kihb^IeZy2vGy!M_4;Iw9uqGN~$RQBp@K
zJw~o%u(U?eRZ&?&)LbKAj)3=1h})Fbktd4R>al9d2%J=v)sd^m+N^vz$z~95%jxkJ
zQC>#{9Tjy{(s7+0(?<QW&2vGjvJS33;uKmHF%*kjXw~$1f!v_umksf{tFEJljzJsZ
zN<LgZH|w}X$3z{Iblj?=rj8Ce9@kMzM{ON<>1e5=j*hxI5;|lZ^>o~(qk)cwI&RnT
z+9K(#L25Kht*>L}-Xx<_2^ko8haLy&HrCNd$9quk6p)Cd<M|Sei7;sK_tH>wB=tD(
zu$c~3N4}1xdVDJ`BX*lmKF_O<J*%$Xn`DeCBN@LNs5aM8pvM85Ep&X`D3_tcvoEz|
zgltO3-8$~q@c{RK9fh3tL8Y~hA|0*tIBfP_@^V;a)aRg8DCVDu!RpoLRTeoETi!?M
z>C&NDcu=PYARgB7h>kWo+LD;()OM8EKy~(jI2@JHj$bd5uGY<cl$47Y%=UsFhKMp+
z_A!c=5OPNyope0MjygK)=)!TRK^<LnbkosWM;{7&6}s!_p`)jumXVdcbQpuw3#;Pz
zTp|=Bqof&}`-G0ZIxf_WgP<w5s`YaF>2b{R038E$JguX@9)}5&9Y$z28Kpj><K71H
zpNpht$!X7=i+dU}%J{B&xzFnutYf5(Q954G@uH5QI)>?BXf30Ohv;AotSLfnhwE_=
zG^e9*7>GTB_BOKcw&&HCbd1*VvW{1DjG=fxmp&39#w3_wzZ_?*j@NaJ*D+3y1Girl
z@HGKhBzZsIkxPVPpCIJM0OZNEWF6n?_>Pq5n5N@H9UtkKu49IdB|4Vsn5p9p9dmWe
z(=kiOn>yao@wSfHI+hPtpBb*sp-pZ~J#;RyZMeF1gxYzidR=a^*)Y|~CT|_8&eyS!
z<~>whpkwtg^&J6;yvyz*R3d!!o{mML&Ct@R#X43FjVqV2fsXfC)UiUxxe=-|QY}m<
zpY_U_GEB`)DVK(+ORFlY#H-ahKG4BQ=L}H^Kc-T2Y}E0Uj<q^I(Xo4|`nirzb*$6z
znU3{3{vE2W>y^W2^^Xe4&W=z^e;_?snA)J@3l8<IlyisrC2jIt;@0{xM_=pMq~jYM
z+jU$&Lfx!mn-2COzD37YQAv7O%zZyqv3Jht9WjMFxTT~NJ}iFEb;>T>5On;Y<3}By
z4qwMlREG{zhovLU#r{;GrXxdqhr|&`#-L%UPW$9GI8r5rB&pS<#H10bt;5mb3Po^U
z%7?rJX=(k*ynyESt<+B{OOiqzWG&(pU#3VKTkg{FE7zuuBRZ;`EW2CBejNvN?9s7T
zFtv}}b7LVa&L#(rP!H-*MyQ9lxzX&iNsd4=D75{z<@Vko9o6x>5Y(SKj_IHZ{-7OZ
zlg9<`tKG!&8&Y3olRx&#IU(vl9TIo{TgNFK?;2QW;Ixi2G-(5^44kDxIlF<I4V>rF
z<F0F<l7WAyGVW{!atvJ5aY@Hj9VHArH%0oqOj2*FT-I@g>v0_JDw316l_5p)liw!L
zR@pT}E@_~{Z$&R(N|ZP7;)jV+21*O$S^>)l$ojGda{q_t8Gyjc{ja8COQnK=m(R)f
z?MQk{aw;3R&cF=@svD?c;Ccg94OBDm<QS>@)x@=9q$Q=~+C}oHHS&zoa^;Ki@UNsA
z25vMk?*VyD$DEGG<SH}ek@@m125vQwFd!SKX`q&YdIoMYP}@Kq15-9ibqx%fE%mLR
z467>~{O>jjN50)aeFKt##s=fpq}Ds71_t(Alp7kj!$2bgzs{7Os*^nRqRi(`0~82r
zzUZK^$f2f>mK0VRXkp+k1FC_11I-N-7-(YPx6cx6^U9UP_Dxb#1I-K&IaE&}e5_*3
zOUL#xJLS8pEe)g$+$|_f)>7^<@OdYNG9PzIo?a*y8dz{Cv2<ao*ucF8h8P%XptXVf
z4D>PZgn|1FJYe8a1MLkwXy73O4;y&Iz}5E?Z49(EK+&~c!%KE@DXw+~-drucaa!(e
zN#l1UKmA@(X3CFIvj(~v=w{$?10AWLONsqu8XvBmo4J}Gznu&ab~eyOAl0TwEY{m8
zbvMw{KraJ5DESo<pV_%NTlUJmg&2ojE=!qHuzjge+87x$@RWgm1_l@yXy9pbS|-`x
z9)%S4H*jHw{AwqKggs+`IwiH##j^%V*%F`HtL5hn3^sU?Vv2T>KSiP{UobH1W#!2C
z(u)S(A0RJ^lEVxPH!#(}Gy@|zj)7MUj5RRIz)J?^Y)`%{MxZ@QqovUX#?VCD#?t0!
z6bsFAoB<wly=LHbcB!qrY9RY~4(S|kV1j5o*+9eY>O=#F-%mWYS|Y!bg#8d9FH;N<
zevvOvr{oRHrLA&C13TX@Gn)h$c!M<4GK=J+OYo+F`Cq0sR!;7%lzgSKeC!MPEd#%=
zj_u@a!TA1ViTN}D11k?D-Z4PKJ5)j5Sx=!|P3#*h@jU~J4E$)|Cj*NOEHSWwIx?`-
zz%m0L8(3ptxq%f1RvY+$QsPhsrnfAn<K;cSC09|`ymh_4(s6iM7C+<`(O&(COY)pb
z<hye!gTWb%yVk%bRM{o<GXtOUt%!te*Q9uzz*%g*xOhFa$!3)meYo_}-$}+<e`#Q&
zfo%r9;iP#jzcR4Nz-9wq8~E~qO83HLXI0*#N9RoY4{3{mtp<o(e!3(f<4?C!Xhs~R
zzQe$`2EHRlXX6N5zFK%e{hpiN1+~-S;vbASytmv2iSTCwX#>X$95<jD$QangRct^v
zU>NWW_y$Y^mI24WhnLlTW`d(JGS{YQ9ZFXIS9L}G=?f|Y%zv1!2GqWRUuY6sWgS#L
z5%;|<%812`aglj<JiSR748EHN&m~Vv4D98WvO_v(piK*9ALV&W*>B*0K<Ib+*W0n=
z4^a_ssE0+H^=lGr$q?70Bztv=@!h{uN*z=_yx{&11AlT4=jt$U!oW$|0JnN0cCb8p
zIQf@>zlC1bUsfnj#@L=Aso$m;&U}`JcUWR9_BkP_*GA<~=KmP@*T6L<a!g$0rgT<X
zT0g&p2}YD(GH{tYz<>Uq+&u)&KyubR@`g%kIrvRZs-%fhW;{D>rp?Ex(kA{3sV-|G
z*TlRC^CRS$fQddXo^VmlM0pdp+o*4&f{BVIYFN0@LM0QGO)NLD!o+nZs+f4v#8W1&
zH&N9@OA{#*)lA%AqJfEqCaSZeiP|RWn7Gl5Jv?tQajS`&Owf7nW)sr4DLSX&VU<o|
zHBGGYlXRRTUW;8y6%eUwqMnKRCf@xtb(<Nx7t$r~b~E-HJT*3VcU#qOpF?-My62@k
zOf)i)G@+WflOvN~Gj<4UY+{_3N{GHh=tn1;C^;^dNgg=bd*hq1O}>dHCYqUOZi1e2
zvESN>WK+?d?wSRH7!r1ui54bU!>7Y=iEg4q?lu|djmJ!MFi~it$V3|xZB4W?QEcJ?
z&gCU<dswA&;JqeVlkxgR_nEk#NZCB%q=&wdXYNU{*@L3-LuTwmm#EOPof&(sK5XI<
zGj{f)6Wya`>`&O9^el{B?}!t5T9+QDY)y1E(T(ajne1f7KD1p-+&2xKP2|bSo^iR9
z?JO(Ns#HOD6Fp7zB5mJDJxug&t8Q<f)0?UnHFQ3Fg3_=OdxZaLUxAOkxe06fnRwd7
zR1?!o^fxiU#0V23O$;>gjENUayhxig@tn!{R&_8n-cBX`gG_X4r}BAT)XXW@l4d~B
z4Ka~fDs4%oNZ3#l!%Pep4d{5eb27f93voMjl!=$9J`=B+7;R#V8GG%H71DT_q7ZBj
zs-*;zL46IGsnEld@HG>!o0x23iiz=N>;O5*jNNfL?*w6l6HQ)BmOOA>4l8R;iC@t%
zl@g;Urkj{yVlEejiJ5HtuJWdd*(Tl~j~^(r1gx-FZMrdbE1e_M@wQ2yf!M2-TBdk!
z4pVdwo^N7-iNz+Cn0SZQD-3v{n4JbpZBm}^nV>%~y-XLG45UqM_L56!U>{4%L^Jx+
z5-$)keBZ=M6E@ABYsAEA6I)DdHSvLo4^6B$@wthQOnhwOvw8BTCOS{fUshQiSR%E?
z#9H>6nEwgYR3ddlb(wITX!e<a4ByWDA@9GSY%uYqiH#<{pdRl~>|2}c`CI8;Qf5&0
zS0=uu5;rNEOmNu2>y&p*d9#Vz%FEvjYqHJ6Hzs~C@uP`74O%tHYrNgW4ho#x!jJOz
z6w$Sf8BYEk30|CYq;%t*qNaTnl~Lggm;Q-n!0m`?GLbgpaBq$BudR@gQ3I47eRB;H
zCYMrW+32K@2FArVeJE*hDJ{-v{ba6d!sD)J;*ts9L}22$$v7{BG!hesxXMgqP5feF
zAD2eU<SrAxazCjo@8R1?`3x=JZKBeo{GJPC!o5OP|0My~Z{mOu8bx=I`)9>uV^1Oc
z&BPHZ&crbjM@?KaIiIpxI3V|%y1B&1Ow2!2Nv3?5M&M5qCrq3(ao)s96MvD@P4X#r
zc`*4}|J=X1Z@ev2)Y}&4u>Q1(Gory+0a;V{PT30-h#7~{|H~03=94f!jPxfZj8(sE
z;tE%{1z5OhqJ)Lg7Ou5$jRn$B%EEw2`8n4A$7`1qNY&nX#S`->$ubtY4#=fEb1n3r
zkYAR2`{EoTk9?%`o|s?GLU{|<S*T*6f`t+5rPDj)idG!pU*Y!TQ#Y%XEL65&CKM({
z(B{b{4l37MsAe%!P@FoTss+~cTb#rE1Jy0CJ<Wzm28K_SZ?bT+g>Niuw{VMvTP+N=
zFw8<t3$-jfYN5S_+7{|qXlWs3p{|8`7LpcJ3%6Og-9mi}4J`17#()3*6||S<RZb3i
zQm%V7(a^#j7WiwWk$^<*v>^QtZ)_nUaQS~ViWUEYV6%LSJ06-@SaUM|&$%h5xJTi?
zruQ#_K3Zx{8g@zr0upIqq3vwxE(@!UNG#rM;U0^h&TyZFLJRykR%C(yf%E^&y_+N=
ztt=Fa8shg_c(Jrh<bDeeSZG5zY?An&;hNRbgJiRo@{om>zli^(EWDa%Yr&r*^LIx(
z3lCc$a^)-e5rL4r$1HTP(Az>E3y)jqNSRpZVWE?S&ZKar+>K^XPobc?Sn=;8K3%Dc
zI?08d6#kImKhpP)k$PI_CEgC{n8V+U{8_<YF;7_NYhj>;XRP=~&6Dh9p`XATjFU#b
ztvqdkzj63Wr$23sR#7SW$rXk0M9Ji{7M`>4yoJFQ8qJpYTZzmL;uK4A=2eqlpp<qb
zIl_w;tbDor++vD%2sOJtv8qrWPD`_}z`{EgMp_tUVTy&R7GAP2+QK*suUZ&G`B-?x
z!dNT*PoBR)`0q4-)3y3GL6-R|qhjU8uUUAV3t@~j(ZYBO7cR;rUQ#Al*pf&(YvQ?H
z>zFf%Djp|IrX{S9_`H2JF^x=Fm}%h+3o}T-+X|m0i6mK=F-4kX;Y|zkIrWvqYzuQJ
z@MH0R^>0~t+rnH*><fADXo*7R@69q-6D-aXl^<6~lE`+a^4_(u(85{^pICU$!XgVR
zEWFQE$$3Xh%PcInu!I&kTAI7Kcq!M#(+cgO>L`VL(bR`+kL9+~!cVKE4+Zb51YB+5
z1A$cgN}@nM5*&SOfhNRfjfL+P!#O9Dq)#n;Vc|;)>nwa`VZDW%8p(s-C-`HWKdV3I
z?969tflDc;Q_e;UUs>2pp;`EvJ4{<;OB-dAh1|1w{2|Ft4SXnpjpt;V?pA8&lDy5r
zBMVYQc3Ak<!XFm?<m?u{xA2RFT^4p)_`!m0!6D68q#wChD9<0IpSWpQNL$!=I!_a?
zc%{xa_0$YkL>YzGjm^2gz@YR-NTz_6fGl>~R+`;i3z4YtxDwr@Zy~VaYlUAfoA=l8
zWJm%oCyDS*jjR=4P{R8rezmZhq8Oilz=|)%;!t~N#umI=3vzyz_F33(#aCSYTD~#w
z$&!yJ4{|9{$lN6g^N(8ms~sc1SvVpP;vem4b&T6@pM2uSEu1Sz@s<!?<HF(z3n!@*
z8<lMQW#MlNSGZkUI7Pvd_l43q3#Todp$zL3vUpYy%sVF9@5(z*>$UI?mA+8AWPx|M
z{A=MNce$ksZ$Rc%$b^?gd-C}8yxbBtuCY<ZMp--VLgDbqv11{Z6tI+y(gI=4wRU_p
z43S)$w*i)}ut>_YL21{yzA^Z3|01cJfaL}JnHNCY@rAssuWaKw8#Qd)Xrqda>uprC
zaf5hU)sC;v=GC{n%Y%dSk}r}`-HvbX;zc36+u|l0H`}<?Mok;<+@0dvTR5q>UyN^S
z*{E%!u8n#&>e%shC%i?4*HxU%&EvznOL+IkZFYQP2rta#l_CvnG_=v(K@SIa*l1)!
zvyriJrwz%*I2*6pXlx^4qYKHiA=^-Fq-^Fo#x?tsNt==2Xlg^XkuPfUX6DygBQ>0v
z-^@mH8+X}gX=B|ra)FH&HXiSx9{pJAzaXd4=&~2rqQcqa#xu!#H>UEJrS7p&XrsN2
z$7~eYXl0|FjfZU%+vt2QS-d{c*2cXy=Dm>LT0kQA3FLkO9}w_C8xIMjjerL?6tUT{
z8JM^){}CGlU(A1$?3_>X8GJma%;>U2I*^4P>f<&#QWR&CM@}a0U(uKZcd~JHZ*s#6
z`JHW$$cx?8ZWNS_!8Tr?x^48d(a*-yHhS6UZKIEkCv329YC+Cj`;z<iCi{~3^@$PZ
zl21}Z3vxD>R-Uqv)2fgnB1ipgI4|T6wDF9M0X8!;6td-zc1<XgH+!hl&nKU?@tjRJ
zJc-XBfjlqZ180*j+8AQvB^#q{47D-L#t7Pgjo~DwoAO#iMSnNNaVTN-m9A~#pGl6Q
zBF-h7EXWyS<7FDKjj=W^olSCH3ZHcTKq2%{N&n9uORw2@-NsrQpV%00V}gzOHWt{J
zXk(I%H*L(enR!W>Y-5^@>0~6EoMK}tH8oVNIz0Y*Uoa6fY^H_8EE_XLJwLqj?cj;=
z=X8FMC&G`tb8Nh2<87{~4<vq?{`wwe?=W>PXBnZ+v*QN*AkXji@7Q?P#wr`DZ7j6$
zo{gn8mXY5fD!)tf+w~$Fi)oo7)g=NF;XwdD6fd{2!p8et6m?6pF=^)K^n*jxl{VT8
zSNS>m0~;UO_{he`G`~dr0h|XD{EE)c)N2Hf%Udb!MyfB~misBq*v8j3Hre>h#(EoH
zaQWN#ob)V`Hjt#M3cq;s^no*yi;Xl7sq9xa_^q2P^TTzEp{kNiZnm+-#`iXM@|BHk
zHn!W?A$X~@DeoIDfzdIAmxrj|3OTUjcXoU{VNZ-d@4wkNchYe62TFUW`lF32BUSSC
zlg(RNpq7nKI%ejk(iFl7b<jvvw_$Lfad4vp(}rc^tc`OvY^u!0VH>~M^lV|;M(ne(
z--d4^uo2nF+R&d;LT)l2rJ8O{H5i-AWR?8A|BH>?9O2P|T{f8B^H%|hoNiLMhg{Pb
zP8Y5FLMALIXm!BGLGEn(@(z*yxk`_e!Yr43`(H}QBQ}oOIA-HG7yEeWcN@%C`Jj_z
zj!Gt({KLkdHV(X!dy0d&$rIf9sgAE(5kDzv=8wz$n+-lp^m#u;NRm$5IAh1TE7xt4
zm~isEjSJk#9h7zOkIjtzxW++_gNrnK4*rx<!of9el7ul6=4DFKj#FY@6_B$KuNq0D
zmh_Z#P|87RCmuZilhm~i`d4mDmYD!k{Vi|Y6y!R{bC|9Zm7SPVI4I|!yc6dIWwC-2
z%j$VMS<wMghHm>aG0;hFdnK32Kd*C8)j>4}RUEMBDyi!otnaTdo#qWroB@^jFuS-(
z<~yzKfGJX$^7JMLH#@l3L2C!MIJnh8(t+xrrh{7C!yPo@P!8%is8519ek9d(=$f1Q
zkE42`<~9LucQ9^z%qG)sQYj6cIA>`&DUSlY(?Q*XlH{PVgK6~?rtwTTkexV#sN!Jo
zT<K(kJi@!i=CWq%1ts4>69;!YxW~bXmT2nGYZnC$o~T~f%)x61r6<S6l(cZr(&5D`
zsak6jcah+=iQ<D&%E8eo${Q!-9_{iA9TYinURKi6ieuWzpFWhBR+O;#f5rP8rai%<
z4%$0-z`=tK9(KSiqipk#gLY1QJzpD6x-rpKut_?Zzm%2j)2T-sFi|aaLBSF}=HPJ$
z9UXKa<*&#bfvWH1ptFN6PHdL!OVc8q#QAh}&`s16pPz%C4thEG+rcRZy&d#%@Ueq6
z<k~@B%FV%a2TwY9%E1T+BOUZ}@U(;HDL|T#g8`&GFFA;B=PCmoJnO`cWc2=ehV;+}
zY+~7awo1=Av8&;um6E)hhF(=KIG`Weiw=f3_;jpHd?;1##r|ExocJOby50?^5X99;
zgrmr>gV!C5cktI#jCSJtp~jMnY0?-6FFWXZQhr51dV&!jC#HUt(sSZlljwHH3uTB*
zaAH@ni4G<?{G%Yzqb$DI$iWl`bZ&faYJA%fpQ$vMjfpU+%y2N%!9ot=;0-7CYJ1bc
zYzMQP*e#9R^_?QmapK#2-liOc!`NF+d^1spDJ58(>tLRP`3@F{x9<qJV<K}U#kVrO
zD~d!GIausqm4np|meA&ZliqjY+kcjlO(E6gf}IsYAavk-AxNydm{{q=Zje=W#De|6
z!G~hrk3>iMJqA?@cs&z6)=1=9GV8!`;8NNS*0E*0sPP#Wse{c9wmA6Q!3HP3?PwFX
zh^^8W)bB&`*Fv*jI@l->YWXX!wOoY=MK@$c?5oN9q_%Pk;`Q1NzM&mHB-7QCOl@~S
z_eDyE_zo@>Gx4pE`FCOj7JncmQ;~L{IUt=sI`~Pv`dKhb9!WXtGlDP6fi4h(E9*9y
zk0}tk`Poi<9TnaGa*vnx9QY0nI5_Aaa1c82rBr(zL=LhJesQo%DDK>+5`|1F<@2l1
z!fprM#pPBUc@K?qVm$ReF$IzRl*Z_I-a`%!b4+ex;?-{sj&Rir`f0s%cceQjS>~|E
z9sI#P#KB1ie^SmBRo+BK-O=fB<pKFGC-$>tOX_aj@_6B#c5sG!or?x8&Qh}uD!8cV
z;=F?k-0)qLbny@APso=XTz0@?i+>$fDi>)aXH}lFTyaq1w`9r73bV6bCGN)A9<Fi0
z#JtSP+mCJ9G%4kxw9CL2lyl==*SaX<qO2Qd(%^|e!K*Tp*5<nL`A(jIw;q#;FQ2KF
zcd==+!rT$ehQSP|m0VPIQNzWJF0OM?#YI&Y)m*S8k3z0@<CLd7c)Dh0d=zzqi|THi
zxwl=vW+aJim}BH77dN}O&5cigZgIg3x3yi=adE4QzaLj?x~RpG2R6HAK(o?Ei-^>9
z;}ahq_b}sVJvYvg((hlDu+<6Wb{7LnHYRNiUEJZ~0nX*3k&8QBv~p4GLUPgAMS+VJ
zE)p(e7foC=b-~2QWT(m~Ng)fPq@>F%f-#csf_Zl@ZqFyqQ<!EH{&{t_t2B3crmQlP
z36GX|xO10icDIX`E>0~=r8p72<!{g5KV7}Y#ob$!LK1dKEfSE4UWwo9#z$<eUED`f
zf00+n$@|?nr*5b7D%1Qj;VR|xkc&1hI=SfVf;m^)x@hm>F&FJzJnZ5TF#=C>9wq&w
za!3Y`pKj`3vIA)w&@6K(+0n&Yd!@%kan`_+()UT@aI%Ywt}c4I=p|Is%|&+?J^sVR
znGv<jsd@Iqb10rh@l3F{i;HJfB7I#vNy!Ar5Ac+WelEW8u-(JcG%ebsi+^1VAdfCK
zy7<b)GcKMb4KChx@tli6E?#r-x{K#s40bWr#W)u)xOmaU%PwAVQ7R?heMfSLi=i&o
zrQ~5Q#<20JeB#4hjBxSGPHCioqXcB}C4r1~aecQO7TNf@2CdGnS0-18lh@U|Mt+rg
z?<UuOMBS2A+<vJy*GuDFOmH#7#Y`8wM=BFtOmZ=qYi+$!^ACB7i~Xw;-6dsoYh|j7
zTkethOmi{)fB2!X@*6I;FqNx|H(mTVUt+J>G`51&92d;6=XT9`WVqb+ExB~}oVhOM
zxme-ieHZgxEO4>N#bOuluy|hLjPJR4ms4+1_$;Iza~l(>|FrtUa%Bm1{k2SFxr?P7
z|55d+smd}JghSp`@@6TyrxPn(tfCpX_|(N}7azFz$i>H;sB4^X@<WPoaWV7$wcaRq
zsFqs81zuJe@nwv!r7C9^6JbWgbuK=4vBAY>F4ntfT`EqK$V8fiU$_`wv4F^zv^rlQ
z{@>fLxe2&%X|XOgQyMOQa`Cf^tuD543A^}?w&7wsM=nb4;Nbrou=@;&<5b?SP*dMi
zdO|xpUA$K@$>#?bj?{w4IWwmJ%9~1>3*3e2LUWO!txAecv9FibEtHk+IlZeVn|v%=
zE>eHU)H~BE+AhkklO679OJwD=?7IkD{=bbw6vaF#bg_%e!38@;F0wAz<`)6kEAMG_
zw~IY44)DaYx4f72KS=uoEHNaP_<n(NWHx@Ooc#9+>9C96T%2}shTE5mqb^QxdwC`%
z{&yFDiuPZfmyWqO&J}T9x;$6<!^I!VW#Sz0;)}VpL+K=G{y_eV+nqp83CNnEM-pcR
z+2^={%c(c!OPut)uss$paO?P7X?TC?qKiu;*h60rmuW)WPdqg8aMeW#50yP!=iwR;
zIUdS-$n|*m2!>K#>!FN?QXUwWSK5mMW}g&cv)g*B8;(hNDV4!`c^=@QqK8Tz7<^jJ
z!?r$Z1uu@7E$@K=iJ!fj8vA!117^FOOfcf|)P-asN>=f3y@y&JYI~^a;bi9=h8foM
zP|d>)9;$nB<mt@<))0_^r8f%XCIQcWm%K$F`~GQit3Vig$XHPZbq@JEua1Yh9_k6Q
z8E<%-hub|g@ZyNn`W`yXkxHG<BQIZ!jq!#a@<g$A{oFe}NFMI?aF2(^9ugj!dT8cB
z_Mmvk_t3;cl9eYDj4SM(PH;fgi{oB7+I`33z+1*Jp6a7E_fSA-crcDjj7x2JYaG(s
zf+F=|gilK$ULuU8Wt&0|MIIjU@TiAY9*R9Y=;0yJ{ayj@`)?=#qeZ0|y?DPD$1pzN
z;i<AXG)HRVp{<9lZ%L0;XzW)^w)60?C{l6J-V`4q?L9o^p}U739y*W`4_&-CY`IaF
z9EQPCp&h+A1htcZodvuyN9rmh)=fZ)>+~maaAi*qy%wf=dAK)BGOV@tf5nBVJ_6xf
zPm(YW?%{0@{kZvic-g}%9{PJ2;9;nTVIBsO1rLKgyx`$kTGv2z5QV&5q66)79te5g
z&0}4Z=RJISK-$$`<rOx(H{?YQ%lmG;_+}Q~DML8i!w3(fJiNq_2gmN3bT=KzF?UNG
zlh?|O<_LpTUL7*V1B<*h=ENX%tjF_xO!Y9$!>b-%^Du!%>)~||>1WmK0}AgV8Sljx
zjyx**@)nXw9wv*LOTBZv-Z^xyox;YeVwcqE9%gu;Yw>IkGd<7^l^(@S2CMy7rQRUd
zt5UNBd{e->Lsa^p&f#(sH_puUFwetU51)9L?_q(56&~LA@Q#OfJuLCC)WbsB-tS5J
z^pdLg1inZ>y1Xv-VsBf%y|XYy$?*D>WgeD$@zp|AR;6P9WDl!6eBj|jFZTGQ^Dw2l
z+C!TjIh4{zLXwov8ZW-j=ws^rIh8)obeFwl9X=&59=`Ojk@h)2CBdJ0SnuJ!7uC;&
zC@R0GlAR46zTl!865}s<MPGT~bugQ`G(3FmVUrhMVKeU?^yrb(W>0)y635xfje`6>
zuU38~hV^>p?C|g{HRxlQkMB6RhdX>U^0Cvy58Q}+l=bnWho3wg^Kjh5&lJ9gUp%^A
z;MMM`=E3(6c*s!8MY8UpWyc(Y13s;o0ur$VVhiX9=z8$}_qJ~*C6MHh0(o1>dY~U&
z#CfkKcsldpzEXd;QGWHX+rv>0zjLlR^6@K)J)C`pyw}4%F0P95er_gfV}#EE4+ljh
z@k1UC3;Z_$j|fQrH@>2SB9G6Olxa+NuRlEe>EQ~uW!gV?MQWDo!oy!4{`PQ|gyqYp
zxY_dLv11Nh`%Vk|jDY1Q%B*LDbE4UK4;}MzSp3%mz1=tkPlYOcE?@LOc!{F>EOFUG
z_DzY!5<af+QQF6~e(YICs&ahrq_3opQhw}*Hot>HArSfR_>X62FPxThedPJL)kjSq
z@KMf36(868;JH<KAC-Jm_G6#A3O*|Ov6JCVHIh6R<MG*bJ}!+`{J#>PHq0eqRee<R
zag&dm{rLFl1|RQTNsyQ7e(cs*LqIx(-st1++6rrKp@nQu^1PM!x8q`8#9BUT`>5yR
zHXn639dc^gQe8hjU7{t>-<8K|-&K%r_hV1j`fO0S@rAO27#|INv|Az3Ym}#Qcam!#
zZG5!#(bz}A$K5{e@ge(Ad^Gn_;3Mfn_0hyfQ$H5$xk)l@CZ8;PCB4-#hi8S&eC*mN
z6+E89W3>q#b6RjxA1NPf#)pTSJU49V$DWyVYNd5iq=i0;d_3smAs?-L)L4uAeLNtf
zQS5`~t@jGp+K*jf?-P)fB>0Z$`6s)nJldlXl35-{j@}}-^YO5czCNDx@raK{eRTHG
z#YcPA@QmsD(vSOi%m>YnI_==chrA@CqYwIsQmUQE%M^*`-PK1oAH99_p=@_bJh0;-
zY<Dqx4*`4n=;g=m!K8{R<8kK`KIqwa-F3X@Li(zH?o&Sc`FPgHb3UH-(ci~FAJ0&j
z!r*x-J-|ncVR`hkr8nm1Pb)lo<vAu*Kgh@PJ_d7kOX5)`O_%z5fpbw8E2Q4^jP*f-
z=d+_>?r<L?eC+kH&&Nm~qkJs(v4pngW3-Q16t#~rv_Kz|eM}*RKF0cZ&ByCLe)%WK
zv_Io04L{Dp%2X{(al<q$<9$r<F_A5+7rs)Zh}oE5-&K-NuTYvqsTQS}eq^eTX|#49
zGieNa`2kIu?#F46*`66@I1cl!yy3@rU6`?i>3U}SnB!xCk9T~$<>PH1b16nYPQSxm
zOl-0|%+vPAd2i-(?d(Z1ArJGtyz65jSA>s6<bATt(U^mU>42Ezhtx914*M?kvCPL8
zKECv^+{X$ZYkaKbTK2Kh#|J(>^ywo9Ce>lKoYh=D`xC@T71P?R8zp_jHq2~8QuR3F
zG3%LGg$Zvz@v+XwXMUXQ<x@Y-Tg&V&>-{+I?gnb7Mga-<+>aB;5Fu5akK}Fi@s*FC
zeWZPS?PC*r`PfdSjFL9{*uuVIF49kFZ=<zO<t;XaOoq(ScKG;~yFD3krSGWCF3NK|
z^LuU0`(EHIj@X*VS3mHtfM`Rd{3MWHb|*C-86Us;*zH5-I%-^G`mls-4X$@JWtMAf
z`*3_@g^tocNiOFa6YGVz=ffw>KS_K7frJ7^wD7HYto%jvVh-?K+#G(2Wlk+qXnVL_
zWF#g#BHZue0Otx&DZoJ=hkRV{@sE$gK7R9Y(#Kyuj`%prb?xK0kKxntyAP(BWg=WA
zo*g9R{=u!|Wr^u$3I7y0krOoI!WKmS=2q;Z>*qKpUY+)FmR2++pSfz!_|O&?GeIsB
z(jMPjc38*^V{t~@&;QQ**T+R};{i$sxa8w9xB37%0j~JGyCj!6X-fpS>c?4anTeOl
zX^ZP9tRy{5$y+kO<y|s|WisAt1C$AX0ObOd4Uike8E!c>vk)@}Z(abVAkOms*(owp
z0hbR@A&AosGa)c5`7rZs<p9?Os2QMEfGPp54^Sh(jj_0-ssXA8IPj`mEr`i>cgQyc
zAY6N$LfS|b2fr!6-aF-60&vos1+2QIET_ITh*J}j{@MZR1h_pweet$#08(<BAfsM@
zFK<vO4N}rbO*IJ6FhC+;<U8&N;#9_W29N?Y;_NR=S6-11tSchRoV0NeCn)|)2<M+q
zcvOaD01AgGmxrFsW8Pr4Z$bjtEJR_5W&xT9*b-oCfPw%m0t^c<JiuK6S_Wtz;IROy
z0CxwtH$ZFl3S$3+VoI-RsxZLHKbzk<A-^a<s{sEURsTIzVda!-3+@YWe}J|D+68zZ
zV7{OvPxIRd<iP+B1=#;_>W*f`tmiQ|PsVxV{cwOs0z4{SElVcpR8V%R((Ouec_+C;
zfX4&$4=^A=#{iuIJju^B0Xhfh5}-$bo&mZB__axjy}AeJ7GQemf|6S5R9gAZKY{hV
z0`v*+L=by5^bSz6DF4Xf;=Tbkr4?IC&HNB-{LU<uC;R;ZJRM-!I*Etx<m;a;$tq1#
zM(Z*I13VXCP=HU{DbLWNt|Xrgz>d|ng6<Q~2N)dS1<LA##NvwqzFm_V8i0ep|9~<i
zV6u0GH8=f`s(mhR1iJ@V5a68vqXN7XU}}JA0Y(QH6JUIR2?1UX@JfJJ1H2YscP-_v
ziwXHNWo&?PT(Fx`4Zca0TvFWX7m3~=uLrR!$SY;@ItIy!)aEH^P}w|s9T1r$ijxJL
zB4DzrJUzgS0CT9p%gLDm-Uu)|z^X;5Spm|=lQn;r-VAW^VCmb(=Qnzwz}SXz6Y}}?
ztpIP6?28FMt<2>z+%J_sA<YXwI6uHg+i~Dr;$2!ufKMo*0Ph7@#9;%h4zQS}yHr^g
zfDRJb(}^Vkep8B<Qkzf7L>9WK<?QIDRs?uoAjDU4<xb@nq|^ri`i{@%vo^qooG3ui
zxLmrp(5L0&AogroBOn`8IxUUJO6vlA7GOhwFR1Pl()s|O)1)sZmQ^UA;<UpO75Zg>
zjRC$2@O6N?rSGQFcOF*m9Hz|Knxa}aQU1>;|6XanSxAidwgBIdWiHYX+XL(fa45iG
zsyM)R0m1-LfbRqB3}8{?0e%SZV}J~m&SiT%`4cyy3Hj*&KXYg6lTSnad`m(Lz~_gm
z@`HO*^n{_0iV>SZ^5-gw$(B_Vy1O`B6tCyI0X&N3N9khu#_Z?^`1AGrwO6G;jK=Oc
zYZBRjSB>LWno59qTN1m3f~ZOw#_lW4_i#JnmPN}U3)SQrL2@7W)isIz0&)ZnOFfcz
zTIs(_TKyK_NPxcr{LQ`b8yw|~6#k-|-vb;AaGdmv&;P+sQusvv5XA{n9&P(X0K$_2
zXyimr1vnkxmIKlSO0t=9CcwD>=L4J-MJ|V5wt-g7O@q&+MBYCE{ta-En|~1d_Uv1f
zDp#c3P&@Z>0GbV-D?z+YHyq8oCPYq%njw>+p=5|sA+8HiB}C~E*M>ldav`{llnId=
zA}@@)mkp8Gh8rfQXv5Sv{d~AU=)+S!1VvOSjHOy3j19YD2pUO^Ev@LTQ<(!+D{zkH
zT_2)qh-x8j2=T~5iB3DT&v(Y>R}WDm#7!Y?4w;Tps#~q##w*DiL#$d`)b+#IS&JS}
zw~*A|C2lFVhIs!<bFQq~A?k!^%1t;#-4OLcC?S#|ZVPdHh&w|_A?k;*88i%WM~DVt
z?BYe<xnI!?=vLH7yk&!NWH*!=huGY&P!5p@<K2&LT^ly0Skt{)0eMtO^XvH)8>WWd
zqU49T>#Ecw1o6XHq~;+CLcBUY|NT}46iW-f4MFZ!U)Pw+bK$x~%Mhs$<do0df=41n
zAzD%F5lTlW4*6*Xt3s>}(K^I^AzlhGI>h}U9thDpM4u23hIlAM#}J)Dv<cCc^n`dc
zM7xkbmQzf~Q?--2YL@aai~kf6X-}n0&+icOnua(r(PLqpqp9YS;tgB!i2OObIJKm>
zGl>b&HAFYk-%(|D9j0&UwJXVlIo-oJ6I9O-Jwm+sYm(1BC5oBirWeI~cRrCPLiD8s
zLJSM>WQeCi3<~jlh<+iS4&(en14Hx=apc$J0P?;@>b|6yICCXkD4{+RqWT;8&kFcl
zh%wb<7S&Gb;1Dl_V9u){AzlpQq*(Hde0xhCv)?fH6ziEAXE+5lOJU<t0vQovB$azi
zy1%PR_|%sYvp<a?%OPfw@({0t7#m`8h$$h)k<Ad}Lre&<rbEtaZ01U@b4Tis!<0mP
zSjmi16GKc2aiUHBe>tXB)y`#Fs;MESg>eR?H^Mmm(R9HS=b8~>W{5DGVxpw?t}pg3
z#A&jI{F<B{Vor!fAr^;tivqbIEnt_B8O$&@jI%1u3&H$U^Fwskz>a+G@l)>#X@A{O
zT_}({Z_hn?u;@KnMNTo1B_WoESP{m_f|jjJk>F+2LPvEu&7)=^pIfRFQNr(saoVnx
z0<!Xh5FduHLf9cb3h^=d4Y7j~2(dQA7a_h3@kxkJL#z++c^K!>`lpk+E{t=6eMa**
zSTwVf`qe{m0<jGtm_v;7KKy6_b-FRcS6nsh65?yx=LLy&^7F6BO(CAxl1D`|?G@W^
z4Y4i6H==LV8TqtE=Jkp#%1?b8;yW>;#^o7eXNaFd?3%Cq5aLH+3A9P-y}_2e9WSZ7
zt}p(XRCQ9TKc15g<AiL?t&|C&hcLLYe5W+uk~eKG%n+P<e0!Cma46&u$0=~CAcW6F
z5n@k>fGXpjCYDA-%9kq4(nf08k>>gfX$bMFc*`_md`p^{nrSa*4{=PG_kO|7!4QW+
z9N>(PH+gwUG2vm(*d<Qdb~MCq0zV=k#lp(p|M&LUZOJ3eiWhXq`IDB$-7>_#Ax?()
zE5z9l=eU7{amuXI+>1&!J|%D_&N|Y$)tN9(V8!HAgqN*+F4z@Y^3Ib0AuiI%HGYvM
z%6&LQi6~wy%p-SM7%dmz6|p3xR&nO8Ya--Cu`SW;Db;tD6qk%}<muvxZxme{p-hC<
z5$=mnHbQO$DMDk$e?>rqTO!;Vp<IOW5voPFAwq=+6(iJ_mFpr5yP7o4NtGg0{X!X@
zNL7yTWcgO*suxy?aDBu(ZBtbvtUIRG|29E<$TsQA)5+=)Zi>*nRO1>EuK8VB(L8ly
zgoP#49p_rI^5zJ&7N_R-S85W8&>%v?2(=>&z9KoNlea~v6XBi`DxbO$>Iqya*NVm4
zN!adGeF2G74pMhScyME)QG{`4l1t9D{Ps{n{Wo!Egc{Xb-Ml$35kZb{SA>=klnCcT
zDL+D!2yB^*phgJCN^GA$7fmBHi%<}ug&4efgdLR|lOE1eb8{Z?Q>T+-J?Yn95~&Dx
zM_7D1$r;ZqOx+`-)Jl+17@>&58JIt`PVu{${C7R6IKsVRmesBEDa`vLJU})hUagA<
zBRmwLTZHZr+C*qeO`UG}c!YKl9*)pn5by|<GERD#vB_&BB9Dq<&4rl6uY6+O4nmTT
zHA{7j(2061)wpv6>ZogkE)hECwQ6v+kns1fl~GQrM}(dc`bQWLp;v_75&A`-YWhTY
zf@DVwkCOhqq1E_iN?!R^eIxh_Q>Awly;4x{R0KjwgCjpJ#;>>#13B7th3*pNIe|PA
z;aP#OQajypkRb1Q0ogG+*YZVLW`v0mCPf%ZqvDvHQ7C<Qgb@)&3K_ETs0fwLBu7UW
z6X7LxSy24ZClVp&dO5<*O?kAj8&)MOR~i?A!fB9FNZvbVTfQ3MHU9lQD7_wG+1?a2
zJ3hh$fwOo+xmJ@SeBV=<72(YYQzA@_Ff9UYW=4dW5vE6Yd`*fEg-~Nn>J4GQG}K0D
zwRuVL><Dur?CPkz6@klvGA98<XiIO46)~5#TBn#xV?l&>B5dA`ExYk9%|1f@E;QMN
z_aZEca3YJ7SuCazMo4C%X0enMM%W+WK!oMgNQ7@9Y>)7Mgq0CK<>KP1kFYwzM-e`b
z@Ii#GDfz<)+8R00U*!?u#1ZnKGRmN7@)|Dl`O;c4HB#Xj_a_lvJSMjupcKB1&mycR
zRS~vC_&maf2wz9oM2T&eJ}Du85#h@SC+|=;3iwroI|@=P^2shK=6N*FlzE(eV7|n2
z$*mE#QQf2B<L@n#<T3qHt^bgAaMB1?1UtfalyiiiBc!RX2)vK)hX_ALIH<}kE2Vbd
zo_y#Q^(XRMl;WxVe^85%iJ(XP$5oy-P97Y@(1>70@p<v(M!CGC@5Flf!7{QFAsgYB
z2yO(AR?6|Y#JG2TAop2{A4?VxnK%ZGyXQm{<AUPR?egcP<XzN4UTRMiI~)8OVbI6&
zZUKk(l=nuMyi4Zc{yr|xg473<S{;mVh?`^<d08Be@LPln5&q!{jc_!=UlIO}@Oy+~
zlvM<J5!ARvInI^qD?IKe{zrsAxdq*#oZvFNM<z19jocSWdMTWWa5};t>!ouMzF3#w
z(fJulY=*?=ELBi3+4IKa`3Rq^k@@)Da_;y;`ZvPm2v;Ipqy_%2T%rcEO6TcvrRBI9
zp+puXvnZ7X5Bjgkf~U`Xo0CPS*>R29GF3W@YqRmGdf9C3TtO#_GTE3m9${0+t+y-G
z4zehhMcpjwWl=th3R&Eo#VuJ>%%V~jRkNs;Mdd86%c4pa*Jtr-*PPn7E1B^q-BDh&
z40MEefzv&ZydjI~+1TW6qUfGhYh-a_7Rk<~c@EA~c-9ckC@eAze&tqf&7xKowK?ND
zxn?##i05UUb+YlX{+VlKD(k<yJ8#S4_AC-v$XV3SqCpmSW-)SJJYd5t8f9Z?+##l8
z&Gn619bSqlvt?FFSv1aK?(!HPbvZ$J^)-nCSF*V24rTrdDL;!QSxm`dY8FkiXqLqj
zS@g}Kc@_m(Jd{P7ELvo7R~D_ZD9)l~7O5<XviS5G<!%bRtb9)v&PynmC=DzsD9qxo
zCUVs}a@*Ww!@m-JXG!;F(K?F<D8M>08*g|^zAuaW$xA|B@e=-hM4q@=dFDp-!7OGT
zEqrQ5QQIuqWzmtk%i`fIat<i%vv@3vN3wV{i{W$SacAWo{T255_Iag47LQYCo1`I6
z$x~M-eEz&!>6}HEEP7_qD~qmKbjyN`dt~utAK5FFB$3^-;0QzrS=l=alG=w_I3#u1
zBlj$&yz!p$NK@s>ES}<wS&Yb{UlvbiF(`}Yv*@42fGjhj;F)YpKL;V3B%U}sJ}X#j
zQBQs@i`}(lB4lB37DKWan#Bt=48at+;G~yoDW@_DnIb+ci-Rx3q8ORQs4QO1;<YSZ
z%3^dDW3w2S#Te>kmh^HKuZWQ^pJ-kqKgmfcSW1BGd^Sj_zD*)MuV<Nw1(O9|6UcrR
zlLY(Yn--9-iy660lwwCRdvs7d`?M^k$0mfWS<Ij!vRIYH>MY*KVitGlES6;PW)`!v
zn4iUhEaqhKRu*s5u1HLkI7vP~x%1;Wk$E&HJN4g}`Lj!k-^t?LEdGzFF9ElydjGGB
zxc3tYp-52@+4r1%&P5l;bW>!ilm;S68H=JMQmIrzD9Wr-nUx}Brer8%+<o@E&)I`a
zA<Fpstku{5`9IHo-sjzGuf5j0-uGSW?0eU{KJRo|e6L6lz<dPUBjEp;XUGy3&XmmZ
z6{$J&`C<XuKd%_XSO2^iUlfb&4DMDC`2EXb@t^H7>st=up2B>Un-|{{V}3EdFUAkW
zSWt|G#aLX7CB^*I&s#(x(=p0J#C875eQ7b4v78!sJI*wS6!=>%0!vfh@!fq&jsD^v
z@~lii_!Y%iS&UW1SY0f(2KX;`4&=vTv1?FeJl0UFCl&5B@DcxA&pnQHd{m5LwpNS{
z#n@Pk--_{jF*X%rb1{CU%*EJJjIG7^xfs7tz5gaC4>t?AdGTM5RK+$~&SaDnX@?v#
zw=g)yos?m|x=T`SdF(F6o?-^h;Xtw2Zr~{PazQ&E+sAe3T!L4oLeU?^{F4obIA?b%
zlO=9HHxaluL_~Uuo#v9om7GeZ{}jV4hFuItwnk8Ti)+i6_`cmOm#@yFHM#HO(jkkH
z;mV^a+#h-IzCv1ud{B(A7=LnMOr|2v)4dA!Rt`&zad(O1Dn%e@>U@|&6&<A)RW4$l
z#1qB%i=M1ul!lYVIK}QXs2WZe<L_cX!?haD6yt0$E*Ik}4gVD5-(s9E#s#hh(^Q^7
zKUa)iOfB>Qc$l5(crMao6RAsF`P&r`QGq-&B3-Q^N5eH5N^2;gp`?aVnmEzVv-9gd
zPt~uJ;L&xF$mvL|jD}oF(jl3rp>^4&EEEUQPsWIW@aILPtcG$LYH7Gl!*v?UYpA5*
z22C8Ozg|N{O~5r&kdz<{Jk`$I(F;?RHB`}1L&Gf^s%p4V!^BI8n>E~|fv4lE$@&yP
zoRpV5-(vnILNSz^QbY-v3+z@+9ImfP$rmU$w@oms*X<f=YpAb5(P#+N(Qv1Rx|)Du
zm@zlW^ZQK3G`?ah4uqfq^)%eY?j+AtL?zxszJ{0vCNL`6pI~Jkt7jsogodPsM>KTN
zP(b}?DAI6`CXf~yYG|yXiH1fRn8WLCK1!*D8t#|)41Y9FHPw*P&{6}B=Tm9TG_+t-
zCu1~Fa}CUg#X{mm)Kb(|)bNHlt9@1itu@@Mp@W8w8t#+z+p<j!Z8Tw1Vm|yi1{AoR
z27(yuyp$j`M0-u-s3Jf_Ck>x=Og^aLAq@{`V4f!8GZ4Fg&>8Hjv(yzq3?A0-*U<ze
zc~rw=8U|{3Uc=)Wp3v}|hCUj)YUrk+r-r9BFdf^IQoJ4-y31Q)N3f6rKcykDHAQHG
zUYc;QXQ+_N396S?Bhy>nKFg*K6!5mMhJKoWs<1L~nvX6-M2`L%2GCo+Nbw>>!wVV)
zX&9>EWlcaO4A$_Hh9Mj&oxgdCV<Z{|U5M=y6QgNv-Ye40Uez#M!!QbLr-<D_)Q;CQ
z0cSCSZaF<gbPMuiM$+Zx6p?vD!<!oRYdE0cEe)eJEYh%8!`m9((J)QJbPexn7^7j5
zhRGV<)9}8Au^K+4V%Np%m2dokhHpZpPTx2wOU7~TT#7wYKi+0od^{~REIvWQM>OKL
z*hG2TaBqx-A8YtT!)F>!ERC(JA0M<WHbui!nvC5o6|LozPPD&CCC_GWIH}B_lW3Sn
z|JQgFQJtk>u7=O)q8jG#5%OD~i~p!A(Z$#oQm`+n$&<?56|u?-;+OlW<YzC5f30DG
zhA$kImA}z2pFVj|>HSNr#Rz2~XHW-~LgrUUF43@5!$u98G%VBb_xjlP8h+65t%mPN
zFUBYUt1YMe^Tb$I(B(9&*04syj~Y6a&*$}QZ<TZv%@-<(lgdvT*3xsf#WrYIN6FpT
zG1>3hL}ERs{3eiL;r0cw%^J37*r8#khOHWY=1d$G-zG)<MGoq#-YV73k^ZV-JDp@(
ztYXtd+urKzrOGZ1ziHT`VXubYDf!yi$Xe=d&b1K=<!l-#G|fJZXQN_ojZ`=gGJQuX
ze`q+!1u%^gX&ll}%on++YS1*KsTK`^hVZwzuEEq`X)rV#T^+l<e!TYHxUHe)l9;2x
z<-}a7^jfN{SQ7iEWZaWh$Vf`B$Vz72)>x<^qR~0&G#u9OCr278$2H6<j28?Q`ai<P
zrAN{3$GFDQQlZlN>U>r^seuDu-zR>G>yNBV{<H?tCiT>_T>Lp<%jaLv7_NzP^o=F)
z^OACy?3#w4xnJI-T-0z$!(|Our3sLpx;iatvYk=LZ#GEfp!RN3N~TdNjT&j(lEyV@
zluqONG%BP~CM|sC+BC|hg&*do(PpHQmj)z5o~~OijqB2gRZuDOqBUjMBb8rXzQ_s{
z)2NijjcFnF4QW(PLtUxPoQx`IuwRb1ps^63s=OUuFMd-R)zYY*M*U^6o74F0LDB5_
z^(i_SZFg%LHPfh@M!hs@v0BCaJ7vqarEz;2wbS6_;_zvDGIyl$wi~M>3%kt7r%nIr
z6Td4BHWf=F&MwkW(#TH>C#TvuK<c^ONrhTf(_nW=j%!#vk;cRI)ROh$^k>#-m`0;C
zX6cx%<L)#H)5xabr_nf#CTYBz=3j_t%HgNcHH~i6TN=&N=#WOoG+Lz5GL3uFxG#-X
zX%wZ!In&nct2n`Pjyyqm55?<|!y}o5H{>zTHfeEQvTYjoQ*RPLk~Q10mzR_6)8aVl
zsCU34lfS;0?3Bg>X>?&BUy&6aN~3cce8f|kZ2aN0IGXwhO>kQ&Vj(7%qQ`~UV`=aN
z=;LWTkrszK3reL%ZxoP^>}$|V$tTn3p2kaQ3`wI$8c(HBrAcA{HD9%H&op{d)HI%!
zg}o$wM$+qUDPT2T&&k`qY4ni{OU^Ya+3yP9UozYK#|NhIyyRbyboMB9P#S~Nc=1Zj
zbr+PbkLU39p=rFF#+w(Ek!jr4LwzNUSJN0ywGW67lXT~N@$@w*;RtG&J625+!=Fh`
zIT3$7jZta5Azyqu4VJKlH|6bHoDrkc(UP+89r<)f|M+XYlJBMQei|#&_%V$S(ils1
zrSU}?+~WC=&Y8xvG{&Vdp3`S~YC;+l)A;S%)JJKwQ}SBOO0jSfE6m5_G`J!Dv7}@^
zk<64drd}!eR5D%b=1u26e<(>B+#+N!z)X5t8r;a^J`_v1r_XKWIaK@T0%9P{rIwy-
zMdr&i=B2SPjYVmEl@{B7+$Ni!#@A`Fv;R#RJQ~j}Dgpv5NQ(_PHpSETi_=(=#xnXp
z=fV(`JKEe)UCQx}6I-j_rNKSK@3|~gj&qM}c^Zk+O4Cb;AJSsCdPN%C>%47soOD$h
ztJBz>#-23Rq`8TJUnoNwYdQ7O*qFwqG~;9v>*@TJg$x_gXn(lr_lFat+-KZOFRiFj
zq%G9m;lx%+f0mTD_Uu-_rm>x3zg6&C8auc&%}epEowQx$LT(W6;(VM_)N@V|u^@iu
zs_rHjHb88Ly=m-ALrWu_#{M)8aACQu9ORnNPyIu-#!Xw+6ww!}TOCTHm?l`=ir1;p
z1v)1Sho6R%7JKU^_49UtMKS(NaGR2wiQy+Lxy#8|4wst0nDElbq#0A4xT$Z^;x(zI
zr3-^JLM{$E8taJCI7}nzD68YoG>)X1XoK-KIGV<>G|r@PHjU%7UCDfA2>MI3qnt>K
zfbA(k?#Z;sFm*~&GN;+mB;{|R9Fa!qA3DGi{L2NI`GXEC%oD`8^mA#PPlKWO7rQ4J
zjejYP%W0I<QA)=*6P2rU<mf1&ivabjb&*MmseBme%@k40gjJ<S@){QED5E1+2NU!#
zZ4-n48R^XoL3uhD^v+x8s5)7BRi<Gor{g*ucj&02qr8smb=<6@hK>q4D(a}Lqlzwa
zKULC2P9+YC{0*|C!xEABsj4mxAXL+Fqb_cF-K2xz=wz6^sJaeD`}3_^blj@rb{(~K
z5&d3M2P5il)4}-sTDmxWz!L$CTIaC^=AxpsjMZnecj~CCL)DScQBTKRI<rzDrlY<N
zR%Wv=ACECCU(rPXf0<gjab2Vg<KYGBVN#XE!7q^1QJ|v{mwG84HQYc)LtUg;;wgZ-
zrI3G53kKCQr_#-_T#C^|M^ha`bPQ!vI-2QtQb%_k%_*dg&Q!aOmO5JLxL-#*9Ys3s
z(LtEyHabqfthCl~ua57YPZA6I$K$QY+$V1tINg@I9h~G98;~SeaeEz|bo4J7??78H
zQ{iK3N68RW`2ktZM-NKoAzg&f^S0vQQjc)pIv%Ae+Nzf;rykSsxQ-`SVkH<WPMBpz
zvlC;vs}2G+caxMj)#Q875IUaI(MLy59Z&0cMi-FRjD+u{<AGr!>OOB^a#OdQ-a4Mu
zK{#lJjuZcxOkW-SbPU$<q7Fv#_t!B%$3U8Lpcp12(x0a)y5%hCBls6|43erK&k*;#
z=LNbo+j)t~?3N>7pE(>I@9X%0deiZ$j*&WE*D+kjYdS{gA|5{IC*tJ4l^EcRrKfsF
z>3BoOXu6G#H|gH96hc^2X&mocIyRLOz~IzB={q{!)x~juF*@F3`}<q+s(7kt<3KQD
zb$qB}vW|~+P+j9VA{`T?1xF6x&L(&kfXbYtW1{4FOBG$$J%{@LM8^~z8=gx}*Foh^
z)$ti8#S6(#bphzj0}G_nsJa13N<ur%kb0QO0ct6pWgwlSW3G-u1C0%QuHy^N6gH*f
zOC9rc?9j1O$5%SO*72i`Rh;iS=F@+4EZ4C>$3h+7a(2g3i|CV&w3<9iS;E;DOD)zh
zsxU=nDTg*oStjWjOC>+OFqK<A`Mr)GsJFK2N~*Vdk|lh)LPyP5s@FAni^i8>wbeS-
z=-5ov>G+A0RL4g7$~ql<x<SX!l~umDUI*WOp>pFb_3~Jfj9P4xZT>kc#qzCOcFHHW
zv9f%NFa9E#H}7rrWex5xV><_1BXMn;BGO%)wmM857Hy$pw~j+PigoPKu~!aZzoh%*
zV6X8Nw#>0}PzQAUAs-!-^nns$)D%F|q3bZD3~4E+Q&K!yd3Aypg|T%wI?n3&M~BM=
zLC0Y(=~BXsj;sz}2RmX-UI8aUVJebOLrF)fEm`vRoT4K-4wl3*X$zJdl~$k$j>{4X
zc|tOOalMtyDM?RD`nRO4b4D@;YpLXEntyeilaim;aq)_oF6f}DIdJNkhP%qZ)ds2?
zxY<CCff5F;H&DSqNdu(}lrfNNpx}^Nfw-V8)N2fsHUyAt+p1+q^9;biYuQ9O1J@e3
zur$R3syt^(rmVbu>aWCgvO;+SFPu+S*d71v{st8dR5I|-xMURrHyGml@7I+Ql?{<%
zo(EldD*2(?;#CdYXn@)0Z!*BA)g({m^k?F>hJjlQ<Qs??xYa;S19c4CX@Ey`YZ-Xs
z?<CLU-e%zC50gBAe7gbC+6LNeP23^*WSxS#2I?8u=q2j2q=_0^n7YfrJ9P?-V|j~9
z<F}zL6hqMak1KHls)2?E8c97Q3=k-_z(CRfAz_a!$m#yQ(!c-_Uyp7{T<7Pq)3y((
zcN=(jEB~HNd_1&F6N5RMFp7d1NEv8mpqGJXIB)|k3_NJyAp<Qbyn*{Dq=6y>_ZVCl
z6Riyq^wRA>iZKt}K29;g*1d*^RAB@{TLbqS=wyiahjxb8)^AT+WLs`4k>CA^B$*EK
zwxgs>k;dKp2MiI}!t3bQEjk-`%)sLY9yaiZAyTBVi!KHj>G7z68Qjrs--00lPZ;QG
z;7J4B4RoWix`^lt#u$)cz(x-PPZ=T++Z~mPdeUBxiU@?KCBrxq@^i-(^fvG;$70|m
z1J4=gV_<-Rfrbdr=xd-K-KM8Xo<TDG4G|s099|se^Yj)2-&IZyl6qiZ3?q3M2Qt_Y
zS;qSQl-K&Z)DQzh4Qzd{)Cd~dfO$0bs)6AKUXeTlRE8N~ybyy`DA;Rk{Lxm77@@kT
zz>x-C=LTy!!N4Tu@M6r&n+D!8FpruvFxtS|92d7==@PV~fe8jaGBC!#dj`hw>E{Bs
z;eA8ob^4GBY!d%K(y{c(l`-D(P(M%lk2k<1L4=Z6^FAgTm}FpzfvE;28~E4&5deto
z@Zygm85Zk&LbbmbpVuT#c!Y=Vj}vp?Q%=L`$&X*ko6biD<`|f3V5Wgt24>S0hYKhG
zCb6OnL~kG^5W(j((^TeF!I$)|50sH*3ke#)+*q}nrP$Qh1~GG#r3RK6_{P9|0}Bi+
zGz9L!V)pfJd=XvZxPZAJ=mDi#LeH<RKDSX+_?G67V_ZcGp1FHDryDcB82Fx&EK6~`
zKTtp2;~YC-7FHVgQC6dbETIxs8v=TQ8KBl0+?&8vHm<g@o(@T4nXpW3G_c7)TNC%2
z*lb`69m7Of6I%`ZY`~+s4E#cc8#rj-5C=lxN2t3E>@l$2zzzdD4LmSDK5Ulqn`CxL
zx@E2MJDKxwUgcg<_Hwct_(Q%sYP*^qqm24W*>B(gC-q2`6-c|SQrL2_0gV&ffWfD4
zCRviEZdWOj&Zr9~tEPc7JL0Z^m0u~(j8QC3=P`<Hz>&<DpX0o(R9G;lx|%iM8#vF!
zkRE6tG;q?uDe9c_y*PeEws4s8Y*zj>@YmMZvDWcL9pXp1Tx?f)9W!uT@+Yp8{6)>Y
zUGSgqUtCa58~B^T&?U|%2272gHBi4|V#!AQL;X*U^ZM7oImv%IUg7OU1DCk4o4Cfr
zWg5c7)h2gH<F}4fTd#<f9H~+&-sYGDOcUk2N=jznM<{Iy4dj`CDS9bmB3Ck+6JJv+
z-m;|H=X`<+q$K4`TxUWtk#C~B$@46zVxp>v3MT%DN>ws(0}b6*t!To%CqWZbHib4`
z&|~9**zt35>fuHcH<`H2#O)@knW%2!Ruez2Qf^+O-fSYLU!0PVuVLaA6J*YhEg<C>
zYnrGfYqGLiK3SW>o4C_NT~nBtg>_6E>Z_8cfjEkK?BZATE)#z*SGV<zQ?d0;q5LHa
zm6(aRiRLC+m{3h5Or&JXNfTYRD2+_qZKA+L0}~BReAgyU-)J^7hmJv>+9))!>6FsM
zL}L>#%t(#DyMTpFWg)fAM---+397E{idai(z{EW!TFc(~v`E%`e4#RBmBRY>nrOq4
zDY#D#e`{|3^)qu04U6xn8*gW#y@^jvd}gA9iH;@)n|RSgCzCm^(Zj@3CLT2Lkcr2s
z1QVT2ytX|4u!%=Zky)OJ<NM81yO>~Ndh(B&U}}3_kC~WWFPBVL+TFyHCjL4hDqk+0
zKY3w{so|MKzPpJjU2-;cP4+bLw29|T^fA%P#4{#(n|Rg~N#vQ{{m|fe`8g@R*ldwH
z>RNT&hE!h@{Y(rnG0?=RN%8rG$^O(~&*T$K#<30ebyJ_0?^aACUNFV&AW509p8QKD
zhVZG0w@eH*@v@1LCSI5IUor8jiQ#fA!%R%;lGFT*@|uZQk-A|drnFbr{}>-(!sw<_
z1Npkb(Ty_k23>;38y`_ew23$FnH+86Z4={6j5qO)iFZxBXX1U%m(uw={gx9i#>cSb
z8A4qj$U<u4L#fiSG*B|}SkELMZ5)XSCO$GT*<?yMf_tkIP3+IK+;b`Ra?j)>6Jad%
z*_4)_nAqvXjxUc-<#Kl<F~!6y%UY0m>T0#a3{0a5OsuApn3!Q=riq0n7MYl3Vz!Ad
zP0TYfhi<bn^|^^JOw6S`R)S!IgdBXaTXNCZxZX8M<|`9lo0w1U+M%4DrV#7z8xsf4
zBzV;vUS@#_;^vLB1$y3M6H81iH}SoRr6!h{_|`=CK6ymUBXS_|4~dxf9fe=05YLc+
zdq0?1!AW6am5G%m$_*~)a5m9kbK*bDLn7=6w8Oe8(e{2avDU;c6Tg{QXJS3qc@tYq
zY%uX_$^3>*5@X&ey^(_&qrN>x-DIN1B6aZD*jAILmg2vd*k<Bq`IHrYxjE-oE*%r&
zd~1h^?X3K8{Hrys*bbSUvcaagg}<BFZ9<c8?J=>}#6cQbzPL{|yPvaWf2=|MyaQa9
zxKIS@jHgx7k*dmG*c7`crtRwIkzq;Ngf1I5OdkD<D|M3;(l+7H=Pf*A!8PHr9Se0V
zWK3kaLR!eP;F}0coaQ1!)tQJ)95r!_)?BF`Hu29L1^gK9G%V*&6G!;yY_i~f^_d;Y
zaT6yvJ4^w&L#P}AxtQaVf0;PRnLD)1e|a1T3&W>p=<r<0E#z4EhimV1EiQ0?TrsvL
z{xxxq_T^k#mt<-N(&1&BUZVBuC5X3km4(aHQr8yAsYNL#R(e<t3rkoaa!x4=*H|cN
zi5w8l-^n3caPY$<{|YE=p^Sx(?n_+PJ7;L;9AebK!nGD|vQW)JSqtSXROVY2uCqXV
zp$Zl%S}1RUStqWygydv~f3H-sa7!ii221>LvHjQBK{e6(;pDn&#2*(`E!=3KLpilB
z|6aIBfCv%srn-fjE!4D7%fh!=rE>2^H7s<hquyfSRttl_1rr=pc>_$f;GPjsKet&R
z91ySDB~x3{8FPy6v{2W=Jr-J9sAu6W3wK*6v{2uILSZa4u#j&FT%(wUxMUvk5~?Kt
zi`MjRl(2Am=KuJlg-=TJm_VaF&D4gLNc7Oi64@nIZAp~9Po>z6Ei|#vf<_saY)TFM
zu6%ZDVT$UlqjozKZ)SnFMBr&o6;&-mrlo}+KUZ2&y`L)7ZILA)fL`gGbFYQ_EIel6
zaSLrMw6*Yng$FI%Z=oH9e<RL6!P;Ax-b9_VM(t=}VyjdKNjq&UAgWI%HhUtm<7DC?
z3!N==vG~6oJZymwNxKH9k8o)6?-XVLd1wo&ZcJ?)m)vk6N#}XOLRSk<TIg<}8@ukD
z<ljE*i^?G--cb(=JuN(K;VDZbp{P<v-S<uoHNa}ivI)XE^|tV=g^d<AS$NJu9}Ayy
z)E4?$=x1T1h1V_gw=lrMOBRM$7-->n3xg~XD#_5?7g%SJ!hluAMs_Zl&w$&(mI%9j
z(Zbp}MU06ZYT;!IuUaCy_^OIU)f%N<p+QULGX!)Pz3y~^al8!u9d6+@3nOTPtCI24
z30@2d9%bPT3lpeq3vXI@%fj0h-mx&+0^>6oc+7Sf;JSNRoPnC}T4>rR!5~sb?T)eV
z9^GJi>U~K+kaVo1A4<wc<0La)(mst;#@|k~@G%|60wX^sSwvn!=R=~S8l^<g>=X-A
zEo7Ud7&pr>=EAD2noY+v+SI~A3yUnwurQN8W?`O%S@g`)iMceKB|>m#%hAn|qhkc@
ze}TBI<|$uL^VjDy<dyU*3twCKhLiL=FxGm$93z!{LQnCP1@hfi1JuQIISZ>SthTV!
z!ZHirTlj%9j&qqB*pVuISXnNuL!-3K#5gVnGc$~K1(${CEg8N$@p57%{Y}>4BX+UI
z!cP{~$u1c7+<lQy>{`yOQ;80zMR53f3mYs9t622=!5D8hTi9a3v|w3G)rX%g?6t7Z
z!Y>xKS=eb|mxW&~Y`3t(0)vxjbVgRwEBG!Oe1;LW7JiqS-(%s=%Zc5bapz)mCrZme
zUn-eSwV!ipOX`4yKdAYdMdS}!IAlTN6uzVsbIwjLn*Dh`Z9#_GPFv79^)j)kYhiFP
z@f4c1>4KDP!Le|P-EsZ5;IT&wN9gdGScWUVg@D4(R<m^V{X$nEWwvnG5@EoKAtYfJ
z6pxB!<nvJr$1I$bG90&X!opu1^5q1z%8^o;G$n5tW=tXZ%HJ0Mb%qNTE?PKCnJt{N
zaGn}Fm0*Q`xsWbO>2r!0giL`M%T3e&XR=Fj9$mIj>0FFPVY8k0Bywz&u<@XSha8l&
zQOd?wHomrTjg8Va9<kBIMj0EqHtO3@Y~<O1jVd;(+PKz6SsT~es9>X<4I-LeXQR9=
zASE~5UqDDz;;9lulmMg^ZB(*xgU$bYv|=@u6DW1gmnnjaR%Qzo;$&{Lag&W(ZPc{U
z%T}w|*u74vVdLH#3ai_=nVs&A@hZPJL4?v<Y*ZVSo3kKR%f@Xsy3a#h8@Jo2ZKDo5
zI;0TOwTY5Pc+Wd*fw@YCg?GwF?Mmbmg0-HFyX2!m)f4?&CGu^=Y_z2CHsUr^8+Y3%
zw2`opv;|IVBO3)a8rW!P6H7M1>u7%7vK&0NKzY+s-26PYDTZd_(3nyw8_jGqp<=hE
zno9c7I)%Id{2Z;YyXLa%7B<L#y)RK@;~pFBY_zx0nnSkH#s&dV3C&7u)xv7(eH5me
z`ba6XrM63}&n`~g&-PoTzV%vmu+fo<wb9u|C;pYaFF|<E2W<SPrYH~j2W^2a+u-|B
zL_mF*2HKk-<|^esF*5g28;{v|+a`829=Gv?jlMSe+30Gco3H|&vGF9;Yomvar=<C4
z8j3`t^t938n6L;(^t6q|<qJ7FHs0IDv$lYl?PC)gIq@7Dyf&X`tHd28>?(D|-uv4a
zU}LC_m#GIE9Oer)2HALC8mKcPGdmOvmX1V_+m~#-NS{0tBfu%4N{7%x_9b{7U732t
z#xNVN*%)C9KvWLuRU7rnwIs&ua9beLQbi+eyiSp}rQWo0ODt~`NB17y;J_CsGn%XP
zPvX!L{`4(d0PT+EFuzPS*`IpX#uytDZA`N9o{jgV(Z@**d|+d&4f<ZWdGSWiG$3H_
zhq9cqQGoF_CfN9h=2)k&3zkfIJ$JH=k8RAdG26x`Hm2B^ZexaxskT6B{mkZGLy9o4
zpW1lgc9p=e=jIemqg@iIk8W1KZX(c$IYDMp;k9yic`fJIm}}z;8(-4fYZiXaw?0w$
z){}=)M5(3kX}Jjk!_JfAB{=OjHs;$nW8<ui1vVDi_|?XC8;fW)8!PE5HkQ~}YU2l6
zV67~(@vV*JHom71Y>ItHw|pdr3Ge=RIEPRklZL89?I36jlRgl4Wd#?6_9_8eR@qo>
zW222tHr7zKJ|bVhI(p7-<tGljWPB~v^0mnNx84?zJH)`*VB`2Kkl9Rq-k8`zlhLbN
ziUbx!aUq1u&$dW}K{S$IY;5BM-zrjRF#FyP8#`?jbEKS`Hh#0Q*Ty~@zjM*Bv4^hp
zqe7q(qQUTD&NU{pU_yue)OJnvAcuT?;(#sSV*a52EQ${~5@)WrLvpZ#yW|imCv8Kw
zam2<^8-@+jMr7l#4a<gYBb0A#9ujwKh9HUol6N`FY>>%FN+wH}J{2d!3IX*g^WPCx
zsQJS=%y7qS3oQB5=HJUXOs_!29<y=U#^2P5l=Fm*zigbeMS6}?lClo@23>MU3H(C*
z7AAclyv#o~{^jEAAm70`8|S%HI;iU4f{lw@u^qs{B^#G*lyp$a!Bq~Jgd)cgpg>nU
zLgBoqB?A7G;9J8*CPb!eAfU}Pj>tAr+W8-vO&Q7LI_T6^fZJR{6d(uJJE-8GtRu$G
ztDI!6b5P#FeO;3*p%N-Oc=^Hj4Gt<hsN@LPAELgHcF4~q91XLC<ebU7(ZNj)ZgX(E
zgK7?{JGj|F4F`{W8T&821uaEQQpj5z;ZD46l}t?s%$HZo!R1GCSXkRZ$HnTM4(iIM
zcQ~lyh<qH(vPW9a!Ci6`RNzev*^-GS>$8O$)rO4|F$Zx6EgZCTpmOXE8acSzLDFH4
zY&3At&;gSt62ysUJak1uNKqc9Sz$?`BYdeb^+}zaj}zR6w@qc&%^i_IB;}x)WER)S
zB`y#lgLt)aP~@PkgZmxa<Dj)8^2M}qaIYhPm}m%^nC8CE5h-I{zAREV(zn|=Xz!o{
zN9u?<ML-@xEir`(mC4yeYj$$*0A+qp%mUKR4jy*!yMx`-r-LpIK6UV!gGU`a=HNvK
zFFAPJ!4nRibI`{@R|nl3JmsLLBk~G8>0s(R1z%JVNuatrxbvrY59()312Q*$p8vFi
zXB_l)(91!)W(ihf_9Z6q+4^q5vsCr931&Mw(zR4y2mKrja4^t8e+SE#io8xM-zgx&
zEJe@LCmoS|YLJ5-zsGO6F2NTUoQe;Y0-UUoWDcew4u(2-&%yh2CkL-Mc*DV)RJ(&$
z9gLu=DMO3Ya0jnBB9|`H!XEFQLp=GPM+o?Og5JN*cV7}oU`KJLNaigEqiKEiezpvO
z<(aRRu~Ki-9A{#TiQ@IHBhvVeaWK42iaA?9a4^=vWCtHR_|U;PdP_|G$ia9{oFM|H
zp4~Ac?F2{Q*puPYiL%Zl2dlg1@Rs2DpU9_#yPx8SWWN1+<V<z&!7C!xYnp@U4mLX2
z<Y0z_nGU{jFyFzuebrf%#9<^SW;>YUpuSnqYkcaB8`QZDhRjrZmuvN<toAiMyeQtc
zuR6~`#ZT3*=ms^#?cAlY2WH0?I9TXl6@_uI$iZR<-#Ylt!4moIr?XN^$*)H1X+^BO
zOuoy)<qp25>-JMu(sLeY@q>dE^7e+gMeLgG*YBtPNFONI>NB%o<cZiC2R}Jj>tLO%
zHuFW56^`ytt#?2%y48(W`>bfqp7;iiqMu4;vx6-TCY_Cy9j|z!)U6J-Ir!DV&kp}5
zANxg8GVxg69VM`xbAgjOUa&*bowW5^STccs8y5T~OUO(tEV;+QUI(|jsOe&#gZ&Qv
zaqzE$1N2D;SqHv@gANWkFzI6sirEVt{+QD9>O$fJq#Y5hWH<uTK<B8n6d8s*vC!rs
zz^9b3qDriT=KB%^b#ZC9Wif)WWE?O%41<D50|%iauo2EUh`8=K_|w4=j{0o@$H90i
z)@K0HQ3uByk=TVXMMM}NbKJoRSwj9VE(KTkQw~l`{_iU#OUB_Wr^7&%VN}F~Ip^TK
zgKJ%sb#cMLMK1U*u5odR%cCPgxk|Vq42+pp2vu>Fi>qCM?7=IC_2=f3A;d>Xmj`)7
zcvxu{WnARC$a6)s8;8%hDb|52096Q2F{o4_(O?J>Q_jV8E^c&jlZ)~$u6J>Ri^?u4
zxTxr&k}IOcn7fDhdZ?xIxgsu(5ph*qAyQSo_(wutrVzq{NEdsw6obvGxv1_E_(FuS
zF#xQF3r2a};tHdX;SkvM&bJC`xwwr(aM9Go?JjD&P+a7@xWh#q7j<3KbD_5{d~r+x
z)7#zYiUo>!&6sHHE?1;Ht4|G#DPZn7^4Y41wsl&?Tokxy!0ueAE)p&tPNkAmV7Vmo
zpuPQW0hvy{;tgE_Xrr+!vc=u)g6q}d{KSziD%Zn84(Idy8s}7IG-DdIl#6C;#Kj{n
zn!9M>;vN^RUEKAR!lw-j6D?h|a>3QINYVy#i^$*W;yxE`UEJ@Yjf*~Ssa%ICB(vkO
zmv(GzZqc-AiAo(*GVSGU2T41+=p>m3Bz;iQha~MRDeH3??;;2OsEfy3;@UON|0Vvo
zizi%gDemTiD|6y}ysHbY<jf^U%1m?5-jV3x;wcxO{f%jVqo<3fX`Mgu>!0XFJ-Ars
zW4({wE}nI<Cxg8iJV(jdzK25|`nu>xOL=JOp}&g(F48oOi-9hlcQM1oOcyV>802D%
zi}zd%cJZQ%*IkTq@sf)nE{3^y)x}Uc=Us84GrdBFYD}hxmqki+CW1H(cR>KFN~;yZ
zM!iP!txb%Obfl!bCE(Q?9H0wUe%HlYE=Ico66zfn#C;;b)Y~qI9ChvN93oQ@#)^;n
z{Q?3>z3<`!7n5Cl>|(5o4_$oZVxo(2F2-{#BNRe=5hrSb3qo@7MM6|jut}T?H4>fl
zSd%FrIu;8*aWTckR2QFe?9EE@MOL`whuCK>rn#8TrbfmILPaDlHc}!`?wXxLz^hp<
zX44!lHoKVPVy=q?E*84{KOVktG0(+UF4+6jSniiDIL1fo#R=H;wTo|D%%`nq3wby|
zYJfOk)D?wU<YKXlRW4S$SmF|P70YBJ#L=Q2s2@UgvCVH~;dfMvWLWaOWPWh5LNY5Q
z{ZUe)c(KA77eBdJOP8R}{}3ax7KPz({%%;bUh0|S-Qa?^9PCEP?D#8h3;mxS$mQC_
z&n|v(vD3va`j{*9zum<S7r#ow(ZmEmqYn@wY)LGa3jEE*?_6_c=WtxRUC@00jg&ZG
zd!$NPvfsr4I_KYchg|$2{o$YsDvC-Yt{MT*$QQc;MvMyAWJhES7bX?xA;*Ko^~%L*
z3hct+n&#p#&CNy0MaG5iBA}DcQ?oR2dzHIFhLX$uBkm1_uGl={mQ&;+oYZn%S#{Wm
z_z@RJT^y%E=z;X5i*d1awLG3TK~(;WYw0WMDHmt{%HuBBNiHMhlMP=@HmR4(-J&yW
z(8WcrOD_I#@vn>XF4ljfoa0jSy4s*(WA?>Hj%>qM?<p7PIV(!D@fxz_%N(PJdzQ!9
zBfH=RSqTp%J=FGahsS?&;TjLsJ>2Y}w1+YtuJcgdL#~H!FUPL+P}W19C-xH|>Flma
z@}(DodxG59D(8U>?p+?|-r4mYZt~FZ6_tDi4;4MJp~kC{WNwhOvZPfct?J=M$*>N$
z5h;H)4;;c<Ta_A~*fryIi$`!#(I7YSZuP*OwVEDkdHA$v@-|OwvEA;WLD!b<-7Q#B
z$HSc-5+0Hs>UyZ>A>TvH!`P4F6q1U%%R_w+iie@)lQ~ONYIs)#u~A6*%kEU;9#jvl
zcdAosC$=Aq7qDdx$3r72BsEM0($IH%Ldi>RXk6$a7!U3$vgO8}*o!2S^3cq~5)Vr~
zH22WL!}A_q@X*pjD-REQc*H{y&EesG5AE2UCjvq5^>CjjpoWRx%aBNhGBVn;jRyk!
zwv{yAHQt_LR8DpB@PLO7o<Je)=m{WYA|Vq?`9Tj4dB{GW{Cq4rdm^^8YVF*4eMKzg
z(@*AfVTp%lJoNVPm`98kJmsOMhc1JXPk89&;YkmbyT-eE0%Ms`h-<s$Fe0?OhaR-!
zS1Cdq6Z@A8>p#s=_e=JYT_~rTG76M{$<KOt&O;wA`yTepN;R0TvYhzL6u2M7?w1_E
zUja`*89#(L$2d@S&EQ5hILO0b4<C7$=n<R*FL@YFPm_`ip`~baPlQKK9+)Ib^DCZ+
zVkMOE+I6X69$xi8hQXGkBRq_xtv!6`;dKwA=v{r2?^B)&P2cdCuSXz1lc&1gk~~qM
zM|*hN0~ucLNakG+W3H6ECz*Snihn>0_D@nF)cN;}|MWoXOpqEFPwjQfp|-RAh3zJJ
znCxM?hZ!C|_V9^^sq|G3Q#|}6k(n9SO8c_rXC7!Z8fY4Q<9T86{~}#ydYI*5fro`2
zX3Npd^{}~bvPm{R#{=V9clAs1_Hz$k$nr1gr7t9T&7)gN{%c9Uk#zo*r$m;fin=XV
z7%02Q!(!=d^tb90ik5Mvd)VsXXAj?bSk6v8tn=`_ClV+#ZShJEKS-XpD<s1+j6c$s
znyafktfrjplWX`&`{YlO@|0q|8wy#tUe;l?O_JH*F&<C6#iu-Rx!J=n<BNE^MHVs_
z_AefoX?lm4``9M=Up<j}d%L7V=N6IQ#bs(!YPW}ZX!@H6CU@p5zst%@e!a)TUQWOT
z%07D3-1q^mW1W)wWo5qg2djOa`a3tlN5vjAPMHikXOQ-wbKT3Jd<KRG)5CcW7r6d=
zu(=|6IO@Ui;Bvv?6k8bcJY+nuJMvi%K4*lyWy{lZ^Ni!ADBG;uy#Fdh9<y9w#j(Vn
z@?F02M91VYPh^fh<>9nsj(a%a;V;Sm>*bx~Wce}06Qgk>#-pZxQ*6#1x_A5J8TR#h
zE}4J1jHJ|aG{+CA1G0q7#%;Lh;S!hk3`%8i*%QZdzdDe(I)ke+;=CkZ;ZfF{j5wvs
ztAu36e;{tJ$uOlCx}8zTm(HNfl{!35o0q|`vkEe}Hp2r)O4$r1S1Bwfd1^BCjY4{T
z1{E@Bl)>E@f;uV{GpLq9^$aS>+Z!^doI#Zgs%EfiX^ItY%n%7b!Rw|Baj*r$i_Fa#
ztiC4y&J5~iP$Pp|<n65))XLzt41oy5)4s=I?Rqxg!P46^xFZ8HwIyXad0utoEo;`x
z;I0hR3=;Ci`Wf&PYQ7Xn$$<6Wf3{If7P34p8J-<ZW>Anp!wkstVxIH{lILM$R?|o2
zk``vrIK$l{+%Mm1l0mZ!n#*cUGvWwpDg(YqrbPxVGq^W{SDU5yVk-_jgL|$#<$2ZC
zk|$H6T>&fHCu_Emg}kMEx8o2FBp%=>(n|XbI%LpM)?tGz?<9GneUiz+IrSc-T~>;k
z4`=X51~W65l|h#b9;FdkGlR!6c${O;pkD@0$ToR2_}L6f?oM^31IUsmGw7Z{j|}Ej
zPw;X^w|YwQJtciw(q582BPr|jmJAztj{TmD^^ug!!xM7)XD}dx!5O@m!9Y0{mcJk?
zJTGb2+`K{mU;URdA{G0~vSdgGL**?GLGvxvBz;9b`u+9X;TgP^!3P<Pl_euG7@ZO4
z#7FWKSu!evx1^`NkrBtJdA%u_>NOhB-{^#I%lhwR@NNcU<fD7nrQXlry({&Zo1P_n
zk%{R)%;2L8CT75M+2b-8pTPubseO`Xv{~}eTk%Pp8uSM_*FMhRlMFt~Fx^ICimXOD
zl{2esQ&#5nX$B+av?4Q2)?qvLFqM;ZhJ2mpnrCM)C&Lg6EYDzW2A^l}O$PJ%r&h=0
z7a4p>lPyr%tXFu;v*hzK;$Zbx8GM})C(yY>_dk%}(dh*ga(8TLMjW(XNXaF$ID;jU
zQ8uM24p(@Je8REBvJAdu<zornHk*g<Gx#Bctr`5B!HNu4W^n0abwdU}atdegldQ>>
zS7)#$BhI0Z&dnp;^izUM+}aG*Ww2h>VN-0AZoIc{Vxw$iQ-&w(l-$ee<_xxE#2Uq`
zR>{I&GT4^EZy9lb{nsnyJLD_duhiU`5r^@2Wx$KCu;%Zw{%%RD|1RF$mti0linGwN
zIFP{~89bCl=PVBLU9Lh|RL!C|11*EAv&bP|J(149%OH~h0T6Wl3UKyuE|2CSBYJT%
zOjaw<1G;ob_S91De-dtv(-pJyp9~IX@Mi{rtQ^S~LkdtmF?fV{oo#Y}M>05?!G#Pi
zW^gQn-tCen*<GEM$0a=>DG&AkB^e%mKb67h4F1mGr8Nq#Xjbyf75*&O%q#rA8Jv^+
zc}dv<D-##u64!s}NN*lbl+Mk&Dl6RPe@EuCD49jsEXrk3DvR5=wo7_VR;+lXvnZ2A
zZdNRnd6JSz%u24U(tymhS-jpc$yeCaby?g{F8}&0M%t<JlBYlLBZ0RSWMM@~EAf$J
zD$6>2%Gc?-H)c^Ui@UP8DT``Zfp1V<(%ZARIg1)u0WxrlEU6{=TP3Y2X|MeW8v3>@
zK}1u9i&C{^;T>7j$>QT_sXOIu-K>C6;O)64MHBa?>Sv*3(K5?J1jx@KmPMm1?#?2f
zg(`a~$TFQ@it;D2;yWZMY0LIW@|3MX77eqQyCKQ$M5kFa&Z1cs&9mayvq=_BvtrpN
zPc5ag;>YE?Im$mn6c%zdrmM8biiMHRP?QB>4ccVUHj8_*Xf2h0Zx;7uK`ai+K(K}N
z_45dkaeo%=vclnq)z5361>qweq`EpJJ4n8xq@5`Cr34>6AaD6Yz{WSPY4tF>%VIJW
zl0}y+9?jx~ECyxq7<<p6cNWiPnG*!lmZo}S@l+OFv*;!pCs@RjSrF@^dsYBPl)RiE
zhy=kUddfn6Ts=)c`Az91DVb-oL;?{Nh(7UL7X7m5pGBXnfDq{`>9miE2qG~c3(|pE
z@RO2{$UiT6B5$x{Fik)wp?78R62)t-zLLeTtoXJZlEqMJrhW2ddCL;+<i484@GMWJ
zh>s#xrj7U!$S*E_5RS;=JNflBDvLL=7?;KPEZ)rGtt{Tp;sg20=q%pJ;$1pStHj$h
zLD{BkXN-LGo}`QaP*_4(4^m!ZW#Na}|9ySc_Dazxye3HNaEg5-nTe9Jd{P#Rwh6<1
zl4aZ!e#&BP7E`nMG>fHKEX(3EYM#T%Vh*R6e2b%)DVZ74@%Zj68f#IE?Qr!VGdGLH
zvgGqDzL3n9|5eCho@Bm~uYWD+H<GfE`B^Nu!Y`D}UB?qFXM?<!P$wUVUie-2Z5BV$
z2hJ$pWwAVq@3Z(p`u57K`0881730b`A#cf(uF49ymDO3Sk#+bb$#Q-TuFGP57C&e4
z3m2K~>V~ZNY~GZ`#w;Gps_cS;-JAty#}-+k+^po*toWEGvn`8X<xKe_i|twL$l~`b
zcGGqL5D+3ev)GlzZ*s2v_a(;p#Sg7LT;H<d6YGGa`y|~@=bu}|LZf|>wCe~AD3^aw
zHhxIb|2`+uS?HX|K3e!NvM{;+_^9E-%EHbvks_}4#msfGILs-Kg`0(!MJ6l0Gy+Na
zd64CAO^2kPMeUABE=?gF>{u+4PbYXP`6F2zm0ol%i(~Z6cFE&eoRAgxY4H~w=92hp
zi_S*oWEQ8g;?v@^q-6fi;*8|aO8U>0@_!}6Z;$g?T*%^L7MJAm!bbRQz*U;7!DU*u
zxnOd9l<-mB$Mrr+`Y7e&T3`G+v+^}QO8Y3|3o(kn1b;GeedPIo&s0h&{&sx4CXY3F
zHJgXBzW4<%=i@s0`hSo3OZVCSR0SWEeep9|(PxsQ)QXPDN<N<cO}W9x)Pd@Ue<)Ra
zRP|AAW$Z>D#2u>Uqf?E-n<QOyTB%L}PAhzozn-`FxRrH$D8BeHt?3KEnYun^5Jktw
zZ9Z=IQQOCgI}>$$fn`MI4j)d%1R2)3(-&AY<m<^7@AAd(6n`Jt2!9{*eZ+mJ@==WT
zou(4yCgCILqmYF@3ViVc)KJnyy}Sm#_*0ZjBOiCmLau~&%Ac4fzFfC2C7Sx!Nr;}^
zF)q<5AI*Gl<>V4d+R{fWAFufs;iJgMJwCeo=;5Qak9#?G9}oCqvAxg7{XW`JtB<N}
ze6*z`FDvYbe;v2?#mdP~yN*6ONS;e5OZe9`|MYv%$3s3I_3@aG&b|OdBIwh@<bOzU
zhCbqp+b)t8peeuS`K|c4k0*R|^~HB1zudaf*3xyKl*}&qiNz9{@+lt!d<^u_lcx01
z%f~Z5`uON8)!y63b5f1Z`U04U&^`RBAwxa$>gS`sFMe35y;!|GQfl>iA20ZL#TUP5
z{Hte>kC&uM`Dn0@7bVX*%U@fT4Dm6P1{$bRn3w;PZFY-czQ9m=RkpxJhD&D6{=`Th
zuha2-Op_&}e7xi1T_0~y)n%K$>EkUQqorNm_OYa00UM!ph@C|`#>aaU)yE{M|Mz{2
zCnNa}e2kUMhmwwyt<gqYPq+y1Q<m39J{qnRf7i3w$+GcJe0=PSUsCqMpSdZraH^!N
z^QmO``#YU3?c*CC^L@<pG0Vs2KE9A0(Y~`e(oV@aKIZ!3vxLUtKQ!*2hcA81^YJxZ
zZjQpGn14I-`pO4aMgA?xRgrXokA<8dw2L&*A|FeAEc3Bg-g1sCp+QG0oEP8v_|6xf
zC4}u#ub62$WjL1j-p3EV_`)a8Z+N=mk3QDWWNQ=-Y8A)0CT}&Z+_8Xle)6%_7e9Rb
z^d;q7-r!@Sk8>f;huGv}vyU$W%nPu^$5tQp0^AkgXCJ@#IKu(@*yiI`AD)klkL?tG
zhO*no9v?e6QeSL+?(zjV{O@e1RpD<wj_2m_mKOoo3DmIH$9^9N<cs?_qE!OV{|_Gr
zDHWFy>iLpFz<+MVa_dv$r1oKQsi)p(;!=eKfj4}KnZGhMmQWZgQ?@U*N*!P9T@r?Z
z*&JNS6MBLrSsy-4Oj{hiyWC8L(D#9l&_~1umnl;g#}4z+H-hJ7m1=gx$59{0D7KGN
z9QBdd2_M{m=5<msf6;p<B-u49zjidv3a5SiEo+khcSM<geEiD=JV1p2=lBX0-bgJK
z@I04t!ADLYc1|z)xFj`j*~e9ZfUl>1F2(Y$4)9sC)SrhFq^wpVK*<0E7$H0e=`{gL
z2PhLDH^8+4$_5zsRzY3>1bA&`4tdhgX67h_{SQQ^ysncBQ+SjQuwrxpcct6RR4N9j
z6yUZ%z;4_SpmKof0d5XZB><mJIv=|+5ZOSg1_Js+0BF!3E+(o4a4sfzvE)BE{Tgg@
zhQjNX0JjEWBfF-oQ;UPmD`d?hr3-HlP@DcUQn@1l^<O6tFeB{uPI+5b_Sm&*Axr89
zPy+M}@N|Iu0I>k~1ZYil1yHFXUgu+p0LcJ%2O?ugK_K8qcr}zvg8&ylXu;b?SIW7I
zT_|fdmXx=At7(8#fMx-j2Pg`#zeXVoTLfq&HBY{!tbDmuAusmG3Ir9oH^6;?NOjSL
z0taXt;K2Y7@%7OK_XlXlK?PVhGlzgJ0ukkKqC<d=0k|RFDZm3%b*W}dB}3#H#vwf3
zC_$z(dpVGJB*4P~2zYWnH}8qfrEc4oV&S6!9t)UhRCzo=*8tsU-!AbdI65Vd0x;Xc
zlL5N(EiJ|T3$M>dj{r~BYx$I<WG38F&?~?*0mcWI5TJK}X9K(xU`T-H0`v*+e1I1M
zv5((35ScXw1n4L2%bD0e5Fr6;UTigx!&xRKEa{*Cg9E%sk#;DItYF#>rd;8Os82o}
z8sOysqXN9ajyB+x0IvoZ9$*;VX-tYaBYr)V_nK7Hh(Ls1aKdsT)6GT(cwJhbc`JC!
zDLjqwr~%#zFggJ9p)jk(hjdZN^Y$IdyesLL0PkHXe_t{mNIF*1M}KNHE)Y3=crBS*
z^ihC`G;V-toH)z^5MXK`;vXgl_?TuLUBIrHtmG4FBM@*jf9y-$x-iCJe#)h<O(AP?
z8JQknc7PjiS7!ubo#8c8GP9&wxMa-<FjrRiJir%$0H}HCR9=gHB7+YV`&EFi>2D$K
z3Gq#U`Lt$$O92)HSQy|?fZ_m)0xYK5X@USt0xS)%GQf`kmIe4W!1n=u2*9vFhIca4
z+;;(%mrg9FVxLHoVFtYwoFFaZjLj>#M=8k9T@_$;fS)-1S+k3}Yq-MD!8HLG<i?;!
zhB(eHo!_ve$SSxYz{UW-2iP58Q-IC%jR3y}U~;`JwCn{D%(gWU*#Li*^cP8ayL5}l
z+_#;szF6HAV8@m6odFnb#|pm%c;s-L7c1-uus6WL0PpOH-*#4g<iYqpj_c9*eo4t3
zp#1Y<f5=+~2Qnm&)wBTV04J#A06P6AKu9G7FauZtvH|=6701Qvc1<oi9<#alP>si9
zuB2Xo?U&Sy<XOnTydd~rBq{^*Mx2S?I~#`s{2Aa_fa7wc44^$ii!4hW<y%Y<csxdW
z{cJF~-t;>YUWNRV0ZwsM4{$!f=>UHR_%{HXVs^zd0XD1_@sQ-t(vfaV{1bp`C&OS}
z#y4KzTPqbN+G8XwO~8`N0j>&BBg8Est`3nCqI`(!LzD<nGDMjWxgn2G;hIpSgDf3_
zk&Vpc$gGh}<H(k2m%I=Naa|~)UKt=tb6m@6qm;6emXnl*W=ZR<3XNVNM8yy{hPWw2
zr4ToSs2rk72+G4aM*7dQ`&Gt>GPPn=Hv5G_*J6BZwNNDfs~+O!P{ejJB$eU245u7B
zT%lHP4N)^hqY!t8s1@QiRt}+txIIMe5cNXb72=K%KNQ3%UY!sx&lX7)?+k@4>Pkvx
z!s$E?r#_W%V<HxUydr6S2*$qhmKSpxCPI-CG#O%5-CT;nn9qVxglICTvO$Q3p@^~M
z#RdyQG!D@$MDq|$LNpDL3Nc}Xm^&OGElaoLRAS(0ix87e=CusbDg?tjsjh*&;v%!;
z4u#>JtwY=!;%iRZ5ch>>6Jk(^!6Dj)xIe^`A-abG?x|gfheJHV7D99g(J{n#jZ(xi
zdWd>>ET>b52SPmeRI<-!>VqNXNv1Qcwof6F5^0wZ-jm5ELUav9X5mLeJQgw&kN{A6
zochd3k|7>cHx9PDz<MHm{?VKsA)X4+JH)dgdQ!rP3g3O29o5Yp+dWAns9qtS2|<R5
ziAkRe@o0XF=R>>@3aF(%A^L`(NWA(<roW^ELJXA5!UZutVqdIGU@N9Jelf&LA;yGw
zFT@bqF2u+XuhXU>UI{Tg#A~5Q9!=n;VWCLP{3<^wCn_TkD`O`rBSJ9!G@Bw+RPbmH
zfv`q}cq7EybgB?<hG1rDW|STs3K*-mXth5T;$PL>r_>sYcWK=2Nn%y?UV^%%@MVwW
z`yoCE@o9+9LW~XZVTg&eBdu(S)Y#*sKB?02G`i$JA|;a5lSzVfeS9!6ITVOqpM?0B
zQ(zRBQ+wCkB9=@Eadv**RL%%_J1xX?`eBGUQe!jZTg0d0C}zr%S#)ff$$Bn*zDM#)
z8aKq}QVF{bCce0${I5a*9d_mmp?0c*{QM9LLi`cpV2Fhw7KPXxVoQj{A(n(#8)99E
zr6HpTurkDtA-)Yk%<b>lon*d~bU6+Byvp(wG(iIaFisqDGQ{Fu6$)VUHKD*cCv^F0
zc}wW>pF*%2uhw%?>qBe^v5__k1wgm@oPY!;()ff50-F2eIE5JCTSNRDVpoXYLi`e9
zTZmsnY!5-e@K4UF#NuXmgyY_IU1I{0@1O%0V<-JeLX`g=Vt0tWA@+qxFBSOS1o7Sz
zVt(iNPbc#BQ<;<F;X+iYDZtMUgdiml`k@fTA^r?;B!tEnL%6gZ-6Iy)Ll_~<P#~_e
zK?1oG`P>R&b4@FgM`0YAyF$F;m+F=>@eId)vQ!Wv43XtuH#_5g2ns;Nb<*z}B_b|;
zHC1Yf{9#U_+(hA;R!2htjea`B-_*&8*s&1DIn7I|CnWt#Qr?~naq0@s`e)=@Wd4!N
zSxFzcEAL;9u~C8`=Rd4hFNC<rrQ<MOJd8^rE>p1)eu;2Z#2hQ=A7Ma*oCqZ%<VT1_
zC>fztgz6D)j&Mzc(h<r>xIRLe2)PlijZikib1T)n2!!_}{4C@xaXzaJRsFMx?>8ys
zA^{M3U4%MIm2GDegvzWCp<*PUUvG>Az-H@Zu}Tqch=@$35c8AJos}b0VW$=It4d17
zu9PHF>rD|zt3^2Sg8*)=5%Etv+!o>X2)9P48KIWEi1JD#&l^q($lQ4&mHNwKwIkdS
zp<aZ$A`l*SbZ@l|>o1A%x>GWBBY|Q2iY3rNuWuYDJZ$|4M5a|F9kWu6M^Gc&AE8}@
zM1*976vq{zAQGUmjUwC~F+Dd?*5d>eZ5W}=+E!(orwSu9js&bIVQGnFO2l0%q)7zQ
zrV;iNP<NBkoGnCX9SK}hBFDCjP<2DBC<2jMTSWp}m{_<hxkr`|boAZ`i#w^rO1+P!
zxfE*?p{-;_PH4s3_7OTncr3!>5jsZb6roFmM<YBy;mgHKOjRF}y+6p?2`bxRNoSgS
zs`_w*M<hd@<86N^L3ma2gw=f_Le~hrIS|=Vw@9GNc3&3bNS}<*on6ex=hZ_pPete{
znWrV~CFwJgvd-#pMSS<4lJVyv0oZ$8>3E+Aq<v|c-fF)H1We}bzzEMrm>l8b2rsZ^
zgpm<mk1#mGixGy>*&@6Y3B2W2#ifQs0?L@$qrHf``%1)EDGZPB8jW>Qc{LIMvxNVp
zeF<?)IOP$Mz}o%0F#h@1I8-iwRD?GoydU9%2yfECB8-mkwloK=Lv&w4zrGWJjzk6K
z^^L##|Fjh0y(|1vEmgX~*a#m*m?$mvp&Ze;2;(I)K~lN|hdC(%{kh8~hLy(ZmWv<!
zD)~u-DG?S%SQKGugij;P<piNmMwk|1dW0FAYZZh`b1D&YcxHrIG{=}YZ)ZoSRw`a=
zlR&tgBYC0(vxF$VUqtvS!q*YLjKH}$PpX=hr5GF+5vRYQDvC?ZzcPvik$_63(HBQp
z5@A(@)e)9PSjK8C<3Dn?Mgshn*u2Xld?#IqDiUtY7uUyl{UFV{Lf)>F(}9Jw4)Jx@
zMEEJfmI#IG;sk15OCyHL2I`9Qw|<;(!Rxt1^cCyIM)_!yq?@?})r+$xmzVqM$G37(
z8W!iY-4@|jPXEKW^)R+mya*>E{1stmgk2H*2tkD3BK#f^Y6b@*?2fP}LZy+)-Ux(@
z{_Uq2-H)2wM<qX~?x&~=1nBeu>Upz5=8&8wP6RhXv6N7Ym|rQ8mXwSx86$!z8B0?8
z%F~vU;YFZvDQ!lsY@Gh|{H&CpfY=;S7~yb)KPit?7oC~9Jrdz4*PIB)BRqW}PB`c@
zVGBN@T_`r4kg7Ww;S`tR!zgnYr}=J#^ARpYI1}M)gmaMqspg`}mG&RGfDrflUoH#V
zVh>eN*}{&7iHi{~QL%?H>7UY^IG4HR9~K^d)nQ=^URNJR>nTNKC{l^TAZ&8&K`QZ+
zOZ^{BR|0NR^}clx_r8^su}Ko5wzJPUSB4zZ)gVoV3>lJ=d8$YXm6Ca=XfTFKW=ZBk
z%2W{{6e*-VoIMZ6_<z^x|9hVOtmoV7tiAR(@3YTY>w7hkC$HA9d^%n%Q72zRfrg42
zDrta*Yc$-T;YJPDYWVq5qO2y2MOVL0Lm5r@Jdf)oK_4r<LO4Iw(t2pJoQComUi~sr
zK@+h_hDp;pjH${RZq{&%hMUOJc{Oe>>M-+(aH}SA#cgstXW%?c>{T_~p`o>gHX5o?
z77c|O>T0O2i4=F2hFThGXsF4a?}SRJSV~cwUi2?i4M|P-|J@qykpyW)5_M#okS#^n
zUm?xeQvVy1*6_rp(j0uRhI$$v)bNmo`WhOLVGR#xXsF>nO*~DCs7XmQ*3d*lM$+tG
zyQy?jO?X#x*)mR>NrJh;s+VDZ3r##S7-;KPi02FSBW`yf!TDQicvQn<<e85T4Xq?W
z`Vq#(l7ujB-{j*`ODx1q`UwsFr!}JpZ8fx`4mI@D_=1e~8oFrcN@BaxL5_cl^z1qv
zW!p(Z_YcJ>t<zb<%bQA*pnG&<zlLWtJgtFq9v#MIoXH;2VVHmTaHsz~D=o_?dtO5?
z4gJV~hThWO=yH8E^wGrE0LDIDi_gl{-zHdle1L|58U|_N>B&zAYvMUe2WEKE4QPcI
zHN2#uijLcL4An49!)}U9-ZTu?FiXR14X<bzp<#lCiR3}UYZ~6t@V17L8d#=`$0!Y3
zWu>*z8eZ4%hK6}ajv<F({Wm3j-Ny=hIEFoAd6kB78piWRqg0kPTQpC3W|bN`3hB!~
zCs@pFl7`6|W@wnHVTy*S8m2SKH0)R+%DZvEGz~*1D0|0?TX2&1c;6XCEU@;zhLT$p
zR&x75!-tGA4IgXxsce#U+upuDwf*}-a>8nCkAIpZ+jBI`)v!XtN;0WozJ|{=EY|Re
zh6PlthR?|75_KWN;jHplL2BeUb&-Z?6O`4(RhD0?@~cXT7B5l1(6B_qG7Y&&1*|yN
zWP-9(!}(R25(_Z~$>kc_o>RxyFR|!tbro%-;ajRp!<QP?XxOA-Gvz9%^Oc5m8rIXL
zw<v2hd@TvmA(9(-`mMTAs*C)vxEvM~QR+v^it2V-G*M{o8+n%pFDZi$C$?$WuHgp_
zJE@ifLLr|XQoiF|G<?tdmPu>*>QfVxFCR(n(h#B!)y}KNq>{=A?A7oi14@HMy)pl2
z_(Q`94g2Vs8V+eVtl<|82Q(biaQ#AI!R40F235+cbidLou5CbtAJOoehT|H3mx3JS
z_vD`wG}bZ3%fqVwk+SRO1ncY#d|2fSl<_1JnudQhXc|sw_)Ejz8cx%7=PA@MjZ34S
zp*Oyus)rN*NXI)X=cGB#Nn-ae3TyZ28VpTT4m35;7Bu?g`&3r*W9dBJ*Vf=@$kS0=
zhpWNU5NU{+|CxoT3OOxhp^_=Ww%Hllck4=p9Oh_H4Hq=@xTIWMqF&T+iSz5=%w?~s
zbD1(uP_9r|d0I>tr{Q(N6W$nsM{8wD=qRb<1|2u*xLQXk9oOo(PDg2Wj#UeEjLuKy
z>)^ds{Gw1x&~c59Czh!68Mb7pj1IaVl~7j4^}6u(Su={*(wU>T)p9z@>$p|NZMyKK
z3Oa7makGw!I#!NSE6KLYwGArs+KLU?Q*{JrFB<(89sac<=+2dE_(?aFwF>ESRdw8<
zqpyyBI;!coQ%8}G7CNfysG*}!M_nB?b=;++j*bLV$H*kB;nmVnTgTnHsNSaNV6nA(
zB+Y7p?78OzcFyGAB}nQ>=}7ZJFUf*<EO5v6#rlP;zsE9kto3)Vj(R$p>S(5;zK#Yu
z8tKUBU;)5}RNBi5E83C1PZtIBNU(ZaHA`)*gC+0CMiU(~mMFYCCw!n~vN?4!PhoAk
z##`0<bv&S>GcVNfppJ)hJgVa{9TOf(mH9f+QpdwOINO!kqWE4b9gpZZa!Yb){X&+r
zdt3*L&b8C=B<(_beWsKgptjc0hL#<mw$(8{zYdAS6tz7+-IMG{RZmkoNSde7DYcXA
zVdqnlV6C~XI=bn2UPmt-PwVKeqX##9(T<x$J-ugiw0cF<U?lyVE^7L9n2`79Sf%mZ
zYEK=T-bmj!GTB?lyw{Z-)zm&ZSb&k$6gi%y@cQc*K#l46M8`mChBE4ysAI5>A!LdE
zqvHh~FX|YfgO|LdW7dkqFi8*9!BTiUs6Br4vg{nL^QR{<l7ASn<=|I!#N+c`lbs`V
zjFJTV`RN-v-qbNx$2&U4NDZ)>-&>OSVJ6<D7adhul#eY<$$EX`bWq0e^r$Jyk^ZIG
zPSP=1$7~&Qbg*RK6dmvBcwfg<X@zOJC_gw|wj|z_%#$F)Gjx2Q<3nC0rC<*Q`G|IJ
znf#c;bg&{Kd)Tsv2MLxRoJ%!I2ct*PRj6v#PF$d4A@!_dGdcfES)}7L9iQv?RB}ts
zY1YL$zR<CEiLz2MwnWD=>4zgW6)dHg3yMxwV!`dia@n~;wizwCO2=wxuP<f0QO6od
z(1Kq{Vy$eymhC#(u9xiwUDSBwu-!fK*lyABjgIda@=~|oGJ)vW^-yU_K~LBwFWF9a
zl@&W#x|6=m+KJ!m_(2yXHyIJE{kW56ng;s+9tuL$+4#uDk2-$R(KU;1S^TVHpN?Bh
z+-hRKj$d@VY+$&713C`ssA}L21HbAxq$8qB=s3)%(Q#JCKO8wz`Ax^4I!@_0s^b`^
z`aE-7#~(WKy~N0o>hH{lM-&n#7)PD+PBL>APZ8si?O!^o7;1$dl+!x?)&)f4yfMnH
zP1MJSs%Pj|=MxidPM*{8uZ}FuszcME>jHJrq{$km3}G6T5S*Ot(ADbB4-`Tfj`=fb
zGvm<^hgFA<0NTBCUhyVsxKH(TI13dLEf1&x(@tMC)CD*rN9J^#*HOm6^#(5JxX8S1
zAm6|x9haHR4Va~pSLEeGcc>qoRPTR0UCaR6s|@5xqPT2J$d>&j4P5;{8u#RnKAOC%
zPols849woDTxZ~<pS;EpOum#+ujReGMAlLXojG8sI&YX-*1!!0DjBG3;6?-G3{)^s
z(I6gTk|3VfRZf;S@R(n)Ax~X3OI@`h`C>Z(JbIIXn+@D*;5OP$X;|i?<ShnjZAlO^
za{Vx+ih;)M)Y}cAga!*h$j&Mmby~IjY6kA)Yz7`TP~AWc1NRwdWT2*jy9^`^q&SIz
z+6EK@bqw5X;GOH#5*yXUtyQvpkAblTNfOJ)s|f?DfoWeVdyCTc=PF?<30|2tP-vi@
zf%*n^e5}@`Rx2d$HE?>AO8C+K^97>i(!(mjA{!V2*Rr8(Nwh3TX2`RF7SyDHCI$xo
zkfD{E8)#~Ph^us-W(J;mE&0nGsUibHdlOWmqds8ZK?4sPXl39b1H=gpHYe#D)OJfl
z*qv~nH44>7sIJ;cg1SCxpj#%zgO2xvfz}3|H_*#K8**Zxi-E2N+8KD#z^?a_oei`%
z(1G_g1e|L}1Dy=q@>Cw-KKW_6woM7RNrIld@0uh%EqPe&X5eW9-3>frfPpYXQ{R~^
zoV*9++M0aU0DXXL&n}bV>2n5NeLmfjwq8&~qPKxQ1_shq4D>b7&%gi!t7a;MQa$pE
zfNkwBl%u?!Ontswq2~-XFoY8t7;4}JLm;A7DU*Cr5)^;#?fJxP9cBoflQ+h~Rh{$5
z=PL$A7}#szN8a7QYX%k?SVV3Oj509Mz$62s4ZLpPEdy^;a085~Hx1NHr>-w9&~HhM
zk*754SbB(o3DnrzC284l2HqT>WTF^vU{9>RwY@3zv#4|4nMUel15*rqV1TkrrRNx!
zK|30lE_-Or_YAyiu##tH?{z7Td7t7>P`f>q$F|Ph$qze;c&F!lXy79QA4^Tr4=;SL
zP^GgNYqDpKY}qqc67vkq|6k811{O$~zaenIrv^SVu+hLK1D_jMY+$*86$ZXAu*3k>
zyVSth(dzR()9WK;YOJn^)n)YmjRhoD(k=$RHn7gXYRdJ2!p!!SfiDfv$9SxfX@taD
z1C*Tyfo126Pp+4)%S5z6M%KiQ$+?YFn+<F+xS$2Q418nYTLa%Qe8~CB%2pX5+YM|p
zFlI!iLt(1-Y4tx3{Pp@ey$g~Aiv8Ze57P5bol2%xH`~pbC#!o5{N<>1mx@?p>`+TT
z8Ti>iWFR)M&%k~%Mga}{!USUAxPjjd9AxsRISl+J^A!W1kgtaf0sMN{K>1&jBu+P0
zkJ93!)gq<gF&Uf3UKJ7ghk+B)*-kU#8TgYQkp~0ccg~}k=z)vc<o#`cdF=N0i9MR+
zlY)T4WlxEy{KvpK1C{~Xz`q7G1G)i&;g(T9dpXH0%HTC+2s0dR+mgvLrL<Fd)Lf)E
z23!N40bg2;xshI4+fV|T14BCMk>toN>f|<gZR`Rj&zynt21=PIZQ_D~iw26BxXNVG
zQ!W{}Y~Tt#bAh_$NRrUcg!k=QN+^)wlV_s1i4vyBD$IL)HkCB7yPZm$;;T*6pOfLi
zJeF^wz{HIv%9((PYfO|ealI+5$$WmT31+A3OjJFh@F_t2;<Bblk59(x4JJlS7dXpd
z&3yKkH&MYvMH7`w@N~d*l}=b9qgFQY;|}%HkJXz@%-XH~(JAj{6I5^g4^>Whn~5qW
zmYG;?;&$G}L?07<P26Fknu!NZJY?cd6V)k&iH0U>n5bzYX(DCfE)%t=2NQRjV1{Al
zXD)rZQi@i%#}pXH3MbE~jXLMmF~OvlkSz(-6zJF_80={i_nN3@qR<5MUinsPT@!4X
z4R{cJxO=mb^*KPzd^-mBnP_C9xrrhZ85507G~=AZ)UKNo%<xT2&<cDCH|4M<Dp}$)
zg`w2K#Qi)TPd{La2OJ-igzBb~5Ura~+AU2yY@)M?E+$%;c*I0&6Kza9YT_}nWa0@^
zASu%)>56<bkT;@cGd%eXp{<E_COVpU?{bn^Zt+m{NfYf&bTGw}h0iI%F_ZJ+&n5Xx
z?_}aB6J5VlM)b|(8%kFb-Awc_@vMobP4Nw<yNPE^{PD7Yu4cAp&LPY<v+;8#dYX9N
zL@%i~M(g<D!olbvxTy3tK@8<vVwFhK{Y>;XG10^%69Y^PH1V2=ktPP27;NGt6GQ2f
zP1GUu!{5~xOaU8B;zel}y5j5aW0;ATO^h({s>upeNqX{diZfAth5Fg1GF?!dZ-$F+
zBXl7?!AF@GZQ?BxZ<~1C#2Y5wr29$h(-1TbeU)CpuVKt)e7KJ_@s5cJruZf>j>Kq{
zw>VLz&Ukv@c(vAhBJc5Wz^^frO-wN{m%N#n%JC*<Qc@GsO}tBmn|R+8-<RmdTlT1X
zXDTyj;@(LCGu=3~qfOqyjQXL8kI2lQ$vGxIrt@>W38q0N<S`oy{zE4h8Lv&=m@*Bj
zn92DjJ~6S#<O)MD^cI*{Xo62bCM)8SQ)K3r&*<tVzA&+bf?TJTE}f)<EoKzllYegk
z_&{IE;C&*^1af2Nyq*Wt6(&}i$j_o6i&Z98n>b44nE2Af8WZ1{*kR%;TA!|K;u{lR
zn^<RJlZnkH)=PihNT1o9*g)pXq<Aok@?p)}eS9oMPiDd)d*7PaYGRv-?b1wC3*pO|
z`sjiD8qAc=%>2EHA58pAiA?Nd_+->QCia@xB~uN*r0q7bv@k{DN9m0<pHDM*`Bm*F
zrl3EQe8TQG@r#Lr)S=9N^uPl$G!EXKpTAyY(L*MVnBY@}-z5&yA9|*rUQqO#jBAEA
zLFbQ~_}zqM!ls{_M4G@^6aSbvY2r^4r%e1si#Ja30a`FMIkIA!Ur`vs^oPIcmNS*p
zCeBELse`BIO#Ev?Gokas4-}>p`Vx~ZL(h<g<~ISRKGQ^2=0MVn6vu?iOm5<$oXTUU
zng~tt?%*@(`7}JPGFl^=V62)mG3;wKmaVZ|Juef{Lti)Nv-OgR%O>)&D4xZJ-72Bv
zugFN`EsAAvRaQhL58iauK9Pv{@=_v;jnAh`%Jyp6mXdAhtVrYh2w7Z{Mcpj!&EncD
zuFIlI7Pn_nCX4H{sE|d)EXro_(AkpZvM8U$4O#IjbYm9vW0gi{>Y($}QAsoUDrHeQ
zi<`5!B@6lkp9ME%@!H$si#Hzx44hlD7=5+M$JUBs>TOxDExa{ZHH$m4P_n3#MYSyM
z%;K&rYGqNKEFBOy^)<7ok;UcwIy_#vMuZQ8XmUHXb{6+!K~KAzGd!vCD7+;_p<b+(
zpU6VZiZ617Wcbe{HJqe$m6K1DO{cO*XF-Aod1I2{gQFfL%Hpvs9?zmd77ep_kWy!H
zUlxtBD9WNm7MZMgL^827&7yG@O*pczN{8VWc(%>5gojS?Xr9I9@<|f+Qwk!#XF<(u
z@0_=wm&oCyTW0Za7LR0EbyIvvU~uuvLn}Fq19lY?ZwFK_Q|=R4w9cYK79F!_ljWX$
zJefuNtoY)}XU%8B)pl95ET#5ZSdv!YS8G0B_&usq7Efi-Ig2h?@fC{?rUO0GjA%aE
z_^f0Q@rm$s7Tr0m#ouySDGNQQt1N!Y;@K>oW8TPObrwCdcs`4Fvv@CyURm_cVie7n
z<@Pu9&Eh38oJGGZ`e!jHi@{k8$cmN2tcAtZyaOf86`Qu68j=N<MDlonmVGQ)dVKQ5
z|MiThRWvLs77U*o*ZegSSqzt_uVlpva4u#ZAx}BrRcdUbLSiImKAhrWOMABRdKRpd
z^-dP!vUnqlH?vsNPORb{lf_$EZqgBpY=1bEVudc^0FGs+Qox?^RO55%#4ILdF(E4u
z6^Vq%p2=BE$$~3ar)BZOvq`R}<r?p)l2tCEo=(~CXvzhdL?nDaiy7oFi%+wd$+*j6
zP8M^s_%Mr)I6jNnSy1+m>7Oqpxs<fVwRN}>m=(sjV3iA5x3~&dhtA7lK~^jioiE!@
zvY1!8V8LO52)R)9l&xJr`ZJpNWM)|w%gI|7i?jGb_Hg7<{#x=4mdH~gJaYUi3yM~d
zfnmztGs;RyaOExO?aML~_0*SHY|COhwM6!^Ses?-0<p06n=H7BbzK&l=(<@HtDvrD
zhS{lXV6Kn^KjkS~t|Auv)A<jk#%;y7OdU-Ny{YM~lF;)DzRO}q7W=dKC5!K~s69W~
zXtuIj5<f_r?#yDBJYD!rhM(@qVy`^qQgDv^F^iuVakG`5WlLgT7Bn;o4mdz#tx^tC
zu7jC_vi()IhnTXKCOTG7`6(CMAI;(z)0%~AEga`1Sp->xlr)PISr}QES)9z`PwKzD
z`cGCAe>;`M-wZ~^i#%O@u3+Py<e4naGA?#1G`cexcO3yc_Z`N$EdI?x`_J2VDh(~M
zT3%<QTu6}MoY^d#EZi(C=}tBsuWyn#l59PSKTGjt&m*f8(sb$bm+MDa&~Gm>%ViPE
zPdPZ3#rgly7qYncKl-<g&92Z)7K&RaVc{xETuXFOdRLwW5?q$d4Fx4FFoH^1V*dhH
zTwiU8;%sH6Wq4XzcII0skOX8~aJr<}>0qIZg?lV07OuBY*21k8ZnJQMg&Qrg=)IDK
zau&GMnPFI7UPx0CpR|I7ik4VuPkQ{}RAmb{S)ki9;%>HZiv<F4a*;ew9~hlq#lr0t
zYFfC<63fM_TDa3fbqjY`sAhq1pC#sIh^%@tQE+Wm1j`FsQZ+2Fs@{f~`P}coTi3Es
z+Y+n6>5wewcejNqY60u})v=JUaKD8IET|TeWXVD!3n>d}3w15rYYFgHx>F$stWLgo
ztB6pBOg*0JsRou<{$1a~ls}s#Z%Z}gR97_^c`!q8(u{@17MfaUW`Py+xG{m(HsQ>r
zlB>TG>$;m$U7u!(EV0b{o@ev#xjEH>n!GvH_J_=aWYxkW79O?Gk||dypbxjQ@USIz
zpxhM}+?L;ff^bp&V>Igt<#7v7NP>Vtt>rD+(FzsRHj<{Rx3$1_fG#Q)K53!7C8C~@
z*g+Co)@Giv(Ah#U8&}!rVxg;r6&6-n=w{(*3zIBNw$PoNSa`+42n#(dJZoW~g+UfK
z^P;DPJ{I~~Sf5KgPd?`-dt2y59{wPLTdL=WNkVZEkc<8OEcCbVV5c<uhaAD^`FR5@
zwC#{CvsW2xVTgs7EeyBtf`yVD(=S;97VZA;n!aeEdAXv#lL|S*P&xlF*%AS*=#j$m
zlM4Twn!LDNd6mv!;VlbqTNr6!l!dQ4rQftLnywftuUk0SQNWp1s*&I6j-ogCIQzR<
zu_!Ud!tcjZ{t?W5GCkJ9I}8d7<1K-eM#!^f9n)Qs8Qyn-g^ASva^>>W<dsbYixw1J
zoKrN#!c+@$EX=hq&BAmGA6WR%!n+pUvoOQLOgfSTCVQXCd`du)Q4fSLBSP6nEKOfM
z|04?@Te#FVZ?=?(@)G!LmW5J>GH3ou@RW#e^DNA_u-L*E7Cy1Cz`|!1KBuq;6~d)0
zw6Ms+FPjU7OC+^VErF-Do$M_aQ?VuR*%Av&EiPHdaz<JEG_lx-6Zh?>nfK@C{eDE?
zqY>+Em4($7j#&7OGgw$-;Rg#lsY45E8Fv=GweYotbrv>Q*hs%^pMHLG!FsasRJul{
zh=6g#ciUuPvn8P7h%5JStgvT`B{1NAUr<CHZnf|o1JlAbsY#l6yM-2Nk_12fUh15V
zv7u@{mAuQsZVUS??6<JT!d?qMTliyQAwk?I*N>J!!6T5|PnLj_>t3$tpL#`9>@OA$
zFvT(FNPQlpZub{{bWr(~*58nz8_X_OM6J?c=nNF$sD)z|Yzq$aKRv<1-xf~uMix$3
zI7u-jt5gxSO3=DBM>Ev<DSA`|^)E`gOd&sP&saEX!QfS9;vWm=m<qmYs$00cplHDn
z{LB2dF~dWX#E}`z>Gt$_(-OFNSqpKyx|VEd9nvlnAT4F#yanGvU?JkCw7Z%KIp@?Q
zV_{0w{0sex=pMofIpI+k$f|{Yf8dH_gDSlw&2-s9lS3H-3*Nl2=&EFfvgFw)ZsQ3X
zt!<RBQPM`zM#{$3HcHvJ#m22RO54b{aifiLHVSOO#`QMJ+G2D4H8!rZQAX0&+URst
zVW;{>V$MjF2e;_nV2j<3ED*tsgxny^y^t((QQk&n8#mdga41#5Mn(Rc^J}J(Y)Q<!
zt{L})-b@CzXIM0;+cB}t_BI<;Y}B-ImyO$PRJC!ZEq3~IU+o>XC{n>q)}*W1U^xyJ
z<)|({<$xNJ;12X!Hfr0r+r~XMtOm_laDe;AStv=dQO6d$8vos|By6ZQSSjUSSwM-~
zkXhCLmP&QgHVSPtv(el}T^sk>sBfczje7hOYQDl<pWKhn%Sm(EhBg}6$k@2g7F7$#
z8#iE1-Jf7F1S+AijV89Jp2VZ6jsC|AxcQyCp^I!hXyYMUY%y+O<9=I|zhJeB2W(Nl
zf?Hy_ow=orN65hb#KW>}C0m}deiYkBZ9FD>9{*qe2lbn^vC-DX5YA?!osB1LJZs}Q
z8|`g$u+f=G-bP1T?9QeLPuXJUZzo$+Wa23~<R)kuu`9J|b8)iRbKT9x(~=<FT@ut1
zOJs2SDy5?mdfIs2MqeBKZ1j?j(c4BJTkO>4zGD`?;NH^4OB8Nf?r)1qBLi)*Ep&h_
zHal}~GBq~H#$X$-P7nt_;=bb-ZM<Y-qK!#5hT0fr;|&{c+IX3ov@wE%ZM-54$Gz(M
zJHmo2dh;4hZ)3DA$_R|2pR<<K1mP;f?kG)~ov+(qVJ;G5Y`kS-yp0Jq-nRe07S>oB
zQ)D5mcWjJfj2u^3<cf|&f<-yF(RJ_yQNMx=Pqs15#&nLSBT>CpD*ITPu1-l=WZ+#|
z(8df~lv{bv#-d$f`}|Dmyiqe2J^O&_Ity+>uU)%<RTn<CG0VmU7Z+X3Cg+SV7iC<`
zwK0!YbI`%Td>fzG@ND=t7T8#5<0l(Gb7qQTV-sD7BG~xc#!4HjY%I3%g^gv@)o^8r
zjk#(w9)l`3SZd?o{$^A5WY{ieFrH5>*wJ(am48AIt8IK~W1Z}8^`r7zDznDMS2ot#
z_}a#nTx!=*gol*&6^a@xEF!U<Zo|88EZ{smHp&aH|1-12#y2*;v$4a*pf8f&+SqDi
z8(s7{_5P;#_REa1Pq}GOX1k3R_0<~3l<#f)U}Kk!-SqZd%1)-56DeNU{(zF&iMO|L
z(?({GjlDLyKdJt6M)}c3C96J<+mp@q+1O9T+Bj?D7b@JwaT~u=OdG#4wBJ#W**Ik5
zFx}}?;=|(!UUfuX{u{GOvRR`Wn>~0Sd6bGRS4e^fwe$zW>U`>?jX!Oiu)(W(PAq)5
zPBUuhl#Rb_Jl-txmyJKR6m&bHkmhlkUbIaN`^UyPW*aHmzcw_w=uVhSiP9DZbKsy1
zhxIy`X!(8N^HuY+^w=AlZK$21W^6`;4VU7~QmB72^XslmnRF(w5!$Hbptgg^MobTJ
zP{u*d#(5ig4vIUtVB;dc!a2BSj#89PUb1o7#uaIiCzX88Ph}Q!P`N@8X-ao~XOadj
z;h?00d<O*%u69t$A^uvbv?FXZbhq-K#k<Zgd2y8j2hD4xj;+jG!%OynlW@$n4%#g&
zqBz$(DC^)B2e&%7!NH9V$~&mw;Os8t$EzFfJ(ViwfD%pGjfxJjK~t3-;c}H6tUahi
zvsHTOO%85$FmPcJZOvotfy`|VsyL|T;7&)lG3|1@gQ||u^P9(u-{D~MIPli&uP$%I
zd)08zuWJ4s7ZWxA*K?O7_FYrwZfeFs3kUZ*P#n~8(8xi?LBfIRpq_*J4w8;=10Ho9
zq$Hh|Elp4;=ix`Z%e|7O(aC%R2lqKb8x0+-Ih*9cPPSBCV+T#BGzT<dQwK}7q?$Q+
zZ?_mcW=p|;!BRvmolnhQon#<9;NU?Ak2rYL!9xyOI(V2p(g&z^9*a+;=)<iX(3CXs
zV-6m7ga+C<c)~$zsnRwMKHpMsZ-t@@<G?Xga$5&h$>xmiCmk?$*6jv8xub(l4!$JM
z4xVz**}*sm;~jKy(AB{Z2QN72=HO`ueH`?4(A~i^oS*x-9DJoK+&0z2!LtrdPFJ3D
z(2IO_Pxq9k&pUi?O0d6a{nVKg3ipw<%ZUwH{T%eCs`Ju=c;6!__nXWBIU%=P4W#FE
zOLLRjb-OczDaZ=3z3W8>FF6?LV3dQQ4u(0XPN;Wz_v44f<uB8kM^eKbyyAd6(JFV$
zW6RxDuhOh1mDkugU3q$CX0(IX9lYV-P01LUxoKynZ1?mS+G3ybwj*|Iz2)GGcNH8|
z$jsX<Qe)|3EmH3|;3hH>6F8NF1r8QEnB-uxgZCZGa4^NeR0r=mC><4W5)LN+(|Gra
zsp$@G@0xz=J!Rb;`R~zQ?<zg^V5Wl)sLc12xeh*bz)fdlV3w5qBL^Q#qU1@1s+jFy
z4wWzY;RZJjo5!&FD=}ZTBtCJ_AeSPs$ib%$7L$MZ(Ps{pm8kPM8QYVfjJz*zx5U9x
z2P+(`<fk-l*YxhL=~hptxnFNNwWll8_BY+rGzvEWu5z$ib{5Lrd|xp_9sJ?ogoCdg
ztaGs6!7mQh)8`#*ckrEqjSe<3sF^ezRJ<>>nR;_DZ*;PAr@TG=RI7R2GF1w<I+$sz
z?A%6Y>y*b~=j)YVyTifv4t{j-eB%;7Fxa0??sTwA&cgw_X}F8ZUI*8IgFTYIufNJ3
zww(DV2R}R5$6H@i*m5==yvqS5!}F;lwCw2QK}H|vmly%>_EQfzI82lEQ#s&^H`L!8
z9CdJv+IvI2RZ0Es;J5?g5&U<`o|E?#opkW0gP6(I!6}D7lOoH2;^YoaJJ1~H4$e3N
z-SQs?=cwK&an=zilZ34#pd@i8|D^*gRGSv1h&4%kNyC9jM<U+kt$9SfBn%}7+m3*(
zBnGADz;W=_J4x38!7gieZpuk~2Z6()&|)4=63LH9{0FIdp7J^<;i4qJLO8hO;3^k+
zu7K3!n9B~X(BFPdRJx~tz?a2bY&(>Eu}m{^!pk{%aaRCqvgc|SrCcG%H7-ia&U_aI
zF7A~V!WCGYS9t}zkhAfUYvnCCC&jtmMOhb9T}*RvgNqwov~Y31i*hc?yGXkzbWy=Y
zMHe+)+~uN@i^?u;cTv^FO)hSBajT1G77JwgYOB>-To5Dv<jZ;S#q@2i0D>e~d=*}P
zG0ia})+l$lxYI>-m#fF?RdYe`#MZwhi7Zb<!k?Z=)^PD3a(yk%<Kjy<rMkG=#XT;I
zc&F;PP+Sl~k>G~2b7^O2>1!5b5-uy!r-&)fmPqkQ7sO0VxtRD$-px_EE|uV-%jRT}
zi+V2VyJ+Mh<DvoO`YqYe#eFWuKb*Y#z9fM)XAn5-uM{C28@mGZv-rVeGnc>KC{0{6
zl|-N7b$CiZ`Q|RznoIJ?$v?jGfQtuR3~}*-i-#zJi;gZj@e-FCow&=XURxKBxGZ;;
zdfdemE*^CSHa(BWBtb~})poMAi_bq#w2=zzwF4J|^tKIX=dyGaS4SxAIkI;>VvJV0
zknSM0N8%|Lon7>B@vLO{=S%4>F1m7j(_}Xn-6ip~Y>9VSeQ~Dp?Bp}lVUQ+GjXlSC
zT=a6$(*;k74jEP~-P=VU7XzqO7kynEPpHI;>@SIavL$dNdkA4kl+3n&r3See?4tPP
zbd__>oSH=>UUc!2i_x6Z#ZVW+T)g691a0jKKvnw5aA{4VPd?hS9sxiJtof>okuHeK
z`I<}MMTN%;t3j_A<^DhR<r^;EbTN*`qJIuoh`u_;#ak{;9#h_S!8xbDk~dbKvgaL1
zl(SP4=msvPPy<gSCs83zYBJU9q^|u#(5JEm6E38;woboQqj0**UEbL2Vhb5?@jh+g
zVzG-EE@rxz!>{x%K5+4&i&-w-Xrq24{fCICAJZXg7Sem^7(5l8NqL<VO)!rixme`l
zQx~7Oc;{G>0H6z~{~am1I(>B^rJJ0tb~aTeNGFzNK6BCbQks^cM}6U9iHo%^zNXS#
zEEBOnh>g^87b{$>bg|0CydRaHhAPD`C71q_Xt_feg|53=#uSM)E{L-Fm7J3ybL4fb
zbFtpVCOS;JG}+s|TOpX~2FA-!WuuGVhL(QUN!2@$dAC>bZ|JnNHC@idR;C>n2dQKi
z+g*I;;zwTMVuy?GUF>4op{~lMesBfY>rNNpN8*&``*UAn4~<o$=*afWCp8L5?3JgJ
z7Z&~Of);$QO?n^IcsfO|*iReDct5~oc&-`oZP#B;F#Hd>I85GL9CdL-h6bTpiF``m
zGj6U+oKsqM(BG+JRLGfBt^MjBE>5`k*M&wOaPg-LD)S!~r)Y(OMyFk5i#OY`F!2}N
za#H$l7mrEejO;&4kJ{6e1J+G1BJ}DxDG`%^?!us4E+Q8uN4jtr<86|(l(J1BVaZcl
zwvFbBk6ag?JoRN8(1^5An`GTEO@jVLhlyR}m}#99fql=r0_2y(B^Q?&l|Fj;xZ<Li
zhc7*>@o<%gJP+MHJmaCbhY}v{^-#}4Ne@?hsNkWZhf*F&d$`_1Sr5)guJA;GC$I^=
zou&}L8XgFreT|1}JrMHyIuB(eL7JG|JV<cx4IXavP|g#@|A`4s+yR!>CzL>W4@;E%
z*W2e+@=)2s-5&1oaFd6dJz_qVyvxHa9&Yte#RFlxiGXmMClC-wu;t7I2)NxtRZjqp
z^SHx9wg1s~N}{@KYsj{yY)6)=Q_B<e`B}8TwkJ@?NhqA(L&_774GB+x7bHCp=v?)1
zXe1gwlO|FFIVZYz+QazIlZCP+QCAW~0jTexfrm#tJnEsLhx<G<_fX`ak%x?jCLWrS
za}UG;A91c(>+-3uX5*!WO1ih&jQzD#DuhS@(_T|sc(~s~OAimzM$e>)JMe&q2R%IG
zfp`R!9#o0O-taZ`?91RJ6q)D)t)x~7bpDu!$31lL(2+)Ik$l3#lOEc8Xzihmhtbz0
z+tQ%5^9h$gx*c`<no5Gq-`A>;cn25XMJEqWdFbk)8%3y{Pp&$9T;`#6@j&bYGQe9?
z55xN>slcb{8xrxMhlgi9jH4<%JV(8Gc*VmA56^q(<zb+QK^}U0=;NWUhkl*_O7M>>
zbQ_{$P~`s7VdxJ;nIGVRZPn6s274Id;RO#bN~IA<orn*Ft$#^cXQ+o^9*CnMKs5R%
zU-mHE1JUFOKQZ?HRCzB+#lA`<czB&g_b}4KC~CkHh!xSjNy4lXq2q?%6$(fl(%f%)
z7~|nBIe-dzTdHd;-F|-NxsG|1{T<rnN1^$~%aRj3O!V-9hYvkW@-W%MyB^;2FvY`E
z57RtM_XO7bmlqSni02&%d{2+1fQ3J(?|Ya*H<OM>+jV$Q-K?lYo#0KWjgLHh>|ue2
zg^a}6nB`%Phq)do&TQ(oV;*^!=V88wPox@Y1!_hp=ON+7RK+3>pL$s4VL1m-0~dvK
zOFVoomAqKCU(lK@RfZ4SrJeu*;ZbFnvO>o7Dk=3!>Hl<$T0bTk=Bqs{>XM`&UwK&T
z;Tj*;`b6@@IuBV7mWTBoHZWK`9QLr$!zK?udicr1W)E9DeDC2058rsGu}0bIVH=G|
zRc}rZI-yOU^mY#~4@h6do$_Z?65n~)A$y2D!PA`{cF`@*sC(!PgVF;&6ZCEm|6EZz
zU2Mdw_Id*Lg2d0vRCASI7%9wA1JnB$=3b-y%n3xz=$q!P4>E}jNv|A~-rYO>D|!1#
zA#udRZyx^iaLU6`565Ub4<|ev_wZ5Q^p5gPdExK$+dmY-Y7o8Rq`Y01HOdDA)14(^
z#a|x&rZ;-fq)?|loS{DqNY@^TI<1mKrZ`J(ncP|m`kW-T_7ZRpoKt7Oo=h1YiwUH7
zn38y`dcMtM>*0cjiymBhi-*`l&Vw(<hqRO=0>;`}AuJCPoT^3j{MQDi&r9aXA^Y!X
znz`iRGBdo763qV|iuoWIN1iXn6Q|=U9~6^X>aqa?`lQKZNgr4HDDVLvrF@k3QEX#o
zHq!gPLq2Et3?v9zQRlM^VM@wuPnPd1z$UKqQN~AOA5DB>aHFh`yL{C0af6Q=ecbHh
z79Zt&ZU}93laDv%DCK=r@KMo6CCSOm4yY`NjoXr^2c^k;QT2Sf2W@(*kK24y^>K%f
zDn7m(m?n}4VJ~j?!GoMXF(_Tl$E#&i)qT|Pai<UZ1K~O7Q8j%KT;sxtT0eJE=`+-M
zZ6A00sOO`;k9&M5J`z5WwLy#2@v*F*fLXb<SRKxv^znG_bX^~R^huLQ$<wrtHvQ6t
zvSsIYUGwhsLCg*!cQlZSrPJQ$qoI!m#p)1V<maw=4-82+^6_?+{EQFMLq-)f_0i1d
z-UmGHqq&bF9}oMW)Gd76?+av;mXhtW+mr`<JV>Se4*Kns!Rd#55Fv%PAgT*}Y{5jd
z^6`k&8};z04;qE0dBR6)ADw(WCDqc#M>`)+QsJG|wo+0?1f!<CkB&b24^Mx7GSz{1
z`9m34tWKGhNs80iM;9MY`{?cqgpsa3y7?mLXr?QJ(j;gFTK^d;vt{x*A3c0L%Yz{^
zSVRq5I(bhYY^nL)KKjro0rCR$<&9`WA8UAP9|L?$_wlZefj$ONIv=Ba4E8a^$1oo+
z`*^{}i#}fRG1M2JpY9NqWuRDHie<7$v(6YRG7b0f3MKXNnvW5jbGq`twiF>aA9V{@
zAd8izSfGj5R=YyjYrIZd_!!H!hkCSD{u@5t^f89+$_mm1hpm((rsrFfsD1Lq=acXF
z80TZ6k4Zkpvn{Dk@c9FBf@RR6Wgws}>wOVnmT0z<sjmGB>zhsSG1UhN9@BhL9*V?!
zKHm57xsSy@X84%tW4@11e0<>JLn>rH=J;T-tdD%mrlne|M0)+$$1EQtSPG0SYpfB3
zcP=HZnw;l@^~8AmT0FJD$3h>UG1fY#S&!?v9_k{=$)`TF5eknfp30(9{PYVSOMEP+
zYmt+MMJz?Nln&2Oy`aAHsepXtn3W9qD~VM;R#Q>!lLB70QF3kD<lyu5S?BF5A8UR5
z=Hn>yzmIi3_W0QAW4(_JKEC(ygO80qHZe;qN^FyCuxuAqy4lC^N$M6K-$>$HA3OgM
z2&!AD-gOE;qCvO&_>NW>t?ZC3OMzV{tB~#VMTM?ibb$4uBpS!>_OY^7K6Ub=kDq+}
zN{jgT*~dN~2Yei4!kMhnd@T93-^VXL=m4|(G-AtIcAS=FxL6R3{&SeIz>wUQdcRQk
z6#;GO1INgrkE{>N$M1}NAAiv_RJhOWPWY37Uq*~fw9lj6saQ&Jiq2drwYq!WX&+~N
zob&OokF&lgXNRLIE3n0-`9=>akY(94K0Rj?8T9S<le!P;=d-42h4qTb{QQe@TN#xY
zuQqx1ao)!TAFdCNh8r#H!u$HZz<Z^K1f1XJw+=OuZO%t5EzTa+zGF)?TSmu4AD4Vw
zW{O*=T$wAte6KK{2k1XeA!EBf7bV)>dNQwgfD!>74e(fik^!y`aCd-v0+b3+I>0Rf
zZViwhpddiG0ObQ9z%>E()-1Roz_mPmBzb)RVkloHX`Ysm1c7~>s>!ke*z(gG10nVF
zTKNsisPAq~RR~ZqK&3#y0kh;<<p4JYB5+s$kj5I$DsTaw{azG&V|!bGDgkN)s7Y3T
zQEm^gelG3|MDe|<fl%We0jf!Y^b7k@JrMZ0XQ~Q6VY$4!0@Mmno1(ocv_~*vx;-ni
z>6a5qfI0yh2WS!?5kL)4muv(`21o@+2Ph0g!97-KqjS;(bRh->U4<c2FTljtiZu$5
z2~eL3<gPTyLqpl#7hv+H44s55G5-{MCCSu5|7jYaS%3!vJQSdLfT95R2Y7(Twp5D%
z|G_$UUq)C)k=*ED3~El&GQj4O>catA1tJA8YA7Hve;)}%?qcOb))IU?z!L$6QO^Nd
z(;@-71n3%|Z2<aM`v4sRv<vWLASVB3hf;fDA=7Ec0G(*@>7x1^tKK~&2lJHau5%!g
z-o+>Lx&?STK+k~id19*W0rnTF&&aEok$TV&G?O&tbF!sPiE!O3KyNwzg#dj5QB-hX
z0P3)B04kqHzX0#HD(o*$2S^uU=b%6!eGiuH5ZUsSR(p|>j#gfx(zYjt1~|D<VNkGV
zcz{;|j0-S6z=!~^26!XDo3xr7PtfPr1B{gPDA|sdEn&oYEh`YRI^UQ8Zv`Mq_*m(y
zOxmR1mOa~Q=D#Dy(<fP(Z~`q(ZUfAqW@z64(<uV)yIB+)oD#r#D$Nj{8ekd?aV2r6
zT^`%_0?>%`RdKtAlcZ+`AVJ{f4+4=W=<{@p52alWEW@k-vuVUD7=8tF0?ZAt`aHfo
zk9h&+Q;jj|#P}q@0=ij*8W9!-SQMah$XfmQG{9#8iiao>;`0ED0~`%-EWj55mIU}V
zz}5guX|DiZ1y~zkd4Lt1KfsslnWC%=K(xwL0SISVY-xgEk=Kk<3E;SfVZzdsx21M0
zEULH$Uk6whU`v2+7>R+vtRxQOrT`qdfq}CnwK2erGX?e~AuKlsxVWh_2_iNU9kN4h
z0d2W0!1e$?2iQkd1lSQ^cYr;CK;itdQSy7v`I_=WfSpV=<J61IGP@-4AC4zK+8YSe
z&L8Ey2rfy0$e$$VB=!gRg)u@;3veKSkYb8*P!hxm{WSog9tl91*_=2M;5R8Lxf(iA
zuuVZY{&;}j1Ly&a0DlBH5#UUKvvj!te+Kv~z~9vHKMDs^OQ)px#FsoRXI?X|Q1CFW
zkbs;21UScV8&}xVEJ>|W>VE^F6O9~R-|(+h%`T5rO$rhq4v?esuw9XG19;SfR3`a!
z$jPSC#}{R&H=k*0Z6XX1Nc~U`wdUnfKao@pjdecY&%C%C;0g`eC`lDvWY}I*E=l83
z59F;_2;y4iv8Kjh<*HD?hVmd*sqv~XP{|Nihe(Gg3{fgX=@2zS)C`dyq98>15EVkO
z9>+Byt`AW*#I+%Mw`_JD>DyA{)(Ewb=Q1HOw-u1MAr$&2C)D|klICeSNs#%9Au5Hq
zEku<Nl|%6In?u|Z;wJX2O&oZlDcf5^%%u~~%OjL0HAcPBLv9c8?6(<;L)oj6nQ`hJ
zvaKfDJ7rs4w$#a8A!>!VCj`rs)DH3FP5~Nww`7=FrCmC$L7fl@7WklM)(H4iH58De
z)SeJ$jZjf41l^39tjjSWT84xON4*gBLo^A|G(>|C@o=?ai2Ec#mdHFgq`Zx&4JmSC
z*@iEaWM{Jw%|kp8;=vF_p$NJboN8@i^@V1%0>!*P#HocvB#359OFa|{6j!<s_0}rH
zBO%&{=n&%35RZj;B1G#D2e+woJWl?2C?f8ramh9uQ(J9IR!6C{FX?vFfRu&oQ6hGB
z46(I$$xb1j3PB~mFQa4B*d%X9n|2M+EyTtUn?gJtqI-ymAtr@*CPa@AFNS!Dwg~ZD
zh`u5Eh3FZIm#JR#iV)@;<$0>;&LrQ?`h?=Wcx3-H-z6KAY{1v~{vig07!typfr0X>
z*M7&~P{1G#3dM^X-$csana`K97ns@BD8!E3*ClUgh+!e#2=OMR2r)dwt05oI;`N_z
zC9j0yg@wqBBmPH>48gb5Q6WZ4g6~<?2c%yQ1qS8rLFpF;r!Oun8WZ9zx?hO#42Mv>
zV~!2+PKZ_86mrg)2{bwVBTT>8h|G}lRQ3D`bf>=QC4<wGLre+rVTg}-^i5AC|CBVu
zG`i43Nxm9S53ym6!dEl?;P8Hk86jqdXnc1*5g0#UObrnDk9_^-+b-#kL(B@XEX48<
zvqQ`Yu^_}khCqmUA?AnpB*eb{0^)P%oYEx752fR~{NgJ4i<taFd=X+vh|fats{-%H
z8+|V6#j<7Ry?xS4rHuS7rJ`HFo1XeGvm(Swc7|9J3UJ9)Ay!NC5yg`4oBSDsuf1P|
zSR1lBF4of(w=1+VP5Cu%+9%C7$4<W^tWt6VBf4XfKRbLpB)vJrmJoIbC&V`)zNLSL
z_?6BUVq1tkA@+vY&f9U=H<{fbvIEjPq*lKtGlRq%?hn!{c%z+?*d<#^O}VZNO#c|-
zrx5!?{6aq*l>S-jnbPf(r!*@&X=VNnKouR3Gv87@|4@j-A<l;QhqHzFEySM;G%B`d
z$)h2D5AjEcV<C789>?i6FDVp|K74|g^i5OMq)$q(repjS;_nb=<mvR@;<fs8D1IW~
zQEwz@Vh%nR;$M1W2qT0>HoQiBN2ZVQ2ZZ`v@<^CcpIJKdzbfCCpY5NvsGNbqQC&s{
zb8Lj`BKRSK5SKz+4iSckLYxo9?*_3n0o9VD4u_<>Rw=piFA*#kXifR1e^Evge=)nl
z{1f5o2&E!i6(KJ|@dza%@yh@)Ua4?;=_hkamyA#-dE+lX3=sadP&yK^kROTQ;;@29
z#5iQjcl>K2wCR{+PnihUN4P1%%@N8*xPdcAs2JhKNQlPYZOTW&d&@;wG(25*xcDXK
z#7gl)8O>BFLgh$AC4aVxdkLV}TO!;Vp=yLXBHS}1eOn}cpQ#dw->LWu#+7RMx62+z
zWi>JYmFBoJ0<mA|v5ZzKxn_jBB5aTFU4&W@YDfG>9xp_=n-fNOB0}p3N`yKQG7%a_
zNJLO0)Q`|05@1!y2n2GvH$o~xnmUP4morENHzJITSt?M3h%mx2^=O?YnW>M8Reud5
z+!vuyB%n{Y+K{Uv2^GYa3k91*Xd2=E2oFR8iL6<K=8_<+2^U^+tz%Inpq*M!<Pr@?
zJQ(4j2#-d1EJDi&4@Y<;61W?!B5<W8=jX~;uBsjVyFz}tPY`PhACJJrhr~r9Tp+Q2
z+C*p@p<9HfBeaX~WQ5N0+V&ATL;^6SQzVu<PTYl#kpTPPJjDAT@f3NGbeBkgD0Pi6
ze_nI0m?er?_Xy8K=pCU?gdXHS!t;@U?BUu=BIXcO<vA+w(R9xUTqL>45l}U~s5%LS
z**8KzS}?*u>i@XXKN1KgTst~WF0iaX2%)*@L6Ja|<BHkA5!n9zZRW)YFGct`!mJ2G
zBMgi1I!#06e5<@1;nfJQ(ZM3I7WWnE_M6OzNI);~AkEH^oG`*@&ekDGD-b}Zd5H#G
zG0WAbZ$=m+1%EffTM^!lFfqcUNFe=<jW904_z3UNg<7S#e3$Lk)_GhzI)M?iJ;Q~g
zpS4U)jxZ&{G&;|<&A9k^R(`?M2$dEUaTviI2{tr60vG5~Kkr3&Kf;U%Gik&KA5jDA
z@IfS@Jl6^6Mq+oeWv2l5T!+~a=0sQ>;mZhfBg~8NMT8|ZM1)Twd>&zOgawS>CCWku
zlq7f+5nVrxuwhd2Gn#&Fh8AHD30j29q3L5>g}ao2->UG~+RO?@P$U*|FOLNFF5Ri#
zqN0`3C1}l65w<KyUsbaCnh0NU&IlVLtd%ZG%(e9qzK#UA)yxT4M~!g}^Q;WvZ{E%(
zHbvMRp-S`2R?Z+j_L~UbGQ>U=-uoXeBnh5wlf!rk9!u|t@O^~y5iUgdf&4@;BA5|&
z@s1IGkMKu?JrVXs_$k8AG<O94b=xjX^FMA9=gy=qoKNp#24JY3PVJAxqJ>|mu1(1U
zvL$ga!mpA(B-_LP>pvoi9z#oW(ZW%BSCBpy;kYD7e-flmL^v7YOoX!${)})cLitPS
zznDF?Dg3W_#8*n0UQPdw_=221O?_(WtT??cm;NWhIa*&;bp~Aot}W4+ss2v=x6b6!
z^ToLggZ~S2KsJKK91<ajxQZ-g(>ES1aw*`&v_p~qOmGcM{S66^nW|E1?DwgV*>!1#
z|F*x?HqHO6BibTP$Fj}ImJD2saES>yM%fsbnOey}jB8^Qi*Z$qQZY)$$cw>0zWE>h
z)iJmLrg)4JF^okDkCHJC4^t{C`TSd)OA+#8Bqya$Oi6PXiGmo2g+z6xr04Z5;sSu{
zVjSvOPidIxHzi#r7N#L_LyQ|^RF6?3M!6V+e@j-3Q7J~v^@;K^|KBgH5Mx;>^gN%g
z9AmGWx;4gau~?yTlWcF6?JY5OR!e?9v^19iREcp%jA}7%kHxBhs<P#x5w4VA``_uE
zG5$NP8RM>)DA=jHW1+V%Pp4|ds2z({KwOQ(%enl9%TDfzh4zB)Qi&L9jQ%+c$RQac
z72~@YJE)=<g)!cU@n(#=G474gCPv#B^<wU5Mp29wF&e~Z7^6vyrZJv;plQ8#mHT2e
ziqW`9(+Te?GfJg0F}9yiHI{ALMMb2W#b_Smo%5+v6;iLv%baVTd1_wf{umF$cqGQ7
zF&>QZP>hx_9_B47H{~Ud{+1{;FQe(otF4pOiZZQYtR9_T`a=E3sLU8o#AqFZlkkpY
zfYWl$_ct`-<h-^W8H+J6#-JGOV|0koBgV5aI>zV}qf3mgyf#K>GVpAAyqSuY)p_Y`
z>e)?+AD>Bgi}7@fXJUjOCcDR|Y^L7nQ}PeDfS;1)adZ`)i_tSi?-+ezRP2#{J_axB
zMFp<HnP<}O`wEBkjnR*uW~4TE%<I0QX@B0-NDYYL*G}_vMUOO32geu^<JB0i#dsmc
zi!p}BcqPV5F^0w%7USg@lWXKp?UCkP7Cn(pnyKx>lXVUyhBi$;-YM^*ks58JMsQ@0
z^sshK$-~GP(YMO$F-FB09b@Hiae9P;ya`_Q@b=7@7;n)}=u0u)jxjdIM=?I8X=03v
zSvVK(#TXxB0`D7RN{oqggYQ!3mMXU|Qz~4pKPl#qw5h!2P3uIdCZ|$U`DvH*G})4v
z9%I#2Dv9@F%!u(}jA>ocGh=)Z<G|p;7dWy@dj9;pQ<Fei8B+K|m-H;ED8_vL$P;4@
zf9;7<b7Rb-&o5Irc%7emqgJwDxB5wtV$XsY3u7#b@sE}06{NlzEM{m?EBPsfoh9a6
z9OH`^U&UA(V@Zsq^nWV+V`W*4<<th*qjxQ4At3yDGQ}A#EC-Jh-)GplnxV8;>F{CR
zsw3(ec@^j9n6G23i}7uYtuc7IKE|dPn`3N<v3seqk;)HKJZ4QV+9KJ$ax(Qzj8;Pm
zdwrPKC`^s+n@=XU(N%^NR_>DK4BKN=9Z|Z>h|=H3_<=E=L$w@s#@NM75+lcHV{Tx_
z?=k*hqM&QV_=O6L@l%YSW9%pMxw>4qyDt_v4qTkP^IfHcT#L&!t_Nf8`@@kKzcEKK
z|I}~5Pq~to3xE%E@?$C&!M^Df9F_F0LCHK_ITqtM)1$8N;HM{IoQ$Ex(0L<fiM;e*
zbeL{w4nD=CT2d^2{yWC$7-twnR)QZ9FXJqY65||0e!B9n>?bk>KfSs`9$O=Z$$(-4
zEK#T8)9GvsJBAa(qNRSy@K~^rC50825tOU@%W!xMOil4+8_1TY1el1Ji*C=~Q!({c
zSa3eZg&6rc6y$I*#wF(S97^VJImQ+GfTrZ-P%MY5a$>171%GptSRl<szg+q|p)`u;
zgiu|7#nm~XmQp#C&WWoI#i?RPQYTj>c#uX8*W^$!he|nIn*$e1m&xJ!9Ex{MUzZcu
z7DTup>_yoe%I8oahZ}O@^hVi!tSjYm_;pQ&J>1LDu|po2r{OB+n3+>m<d~asxH*Sg
za^R=8<^)a$$5RO;Zp(?~*(7e~-Rn0XZ&h=+|DZB-PvXuTs^{=<4y|&ikweWK>gI57
z4tM2HD~CFqhquV#?i}vPLCF!+Os&(RDc7ZQwKE|$xH_FKK}-|Qsph~n&&eFNbrWl$
z=>w@8(&SB7coa(Fw>c&2<xoF|2Xf%G4RUChL*pEp<Zz$VUa<>_MmbEB7#tZg(4r|J
zNZ2;biAC@9J*u5VvmBb|P?Qs^xOv(_etN%bd8+@Ec`%2Easu3hi^*HcVO6364t^wu
zM|0>vE#>f74v**1I)^qnJRz?opHz!j&i!<{t+Wy2qJ0kSayX|cPv%6tta+r6pdnn=
z&W}3f@Kg>xa(Fg}&N+0+A@!c}bPiqVOPMrh>y`sSQmBft*EF~(Dqx6p&#@x3@=Q*w
zPN(Xg%b{mZK&AA}2`Cxrgf8@a4!xu{ddrrp(EH>-T#|Pyrg&|?9DW)lP+A7&Fer!f
zIb6tLa1KK#LJn(kcp--ubC{LmmlM2{!_XWiP^CEx%i-l5-pb+a9ERucN)97)7?s1p
zdC3t}!o8VSb7-`wV6K;XEr(Z6@-O~WlVa)7IaFSjd4q!FxUwSkx@_6=>7m4!9N3mS
zpJ4l3*l27H@8mF^rukGEm%~RvqtSlq$SCFNxS(pW^vGoj=}9?E&S6>(({q@T!@nDn
zQ_03MWzc0MuXZzzC-H6$@8vKfhneyt^21^8=djmn)b)m@AJD1JCpgtdIcz_j_)xZ$
zD>bjFCO@V--Cy`yqXu(wn9Hcl;qx5k<uE^og;a75El(%5m96th4hyKIZ<ODUCD@Ls
zmn88i{kCi!5<Cugsl^P#waFzpEX`rxk;E5N^=0MO5_Oj4zyYN+Wu?^E@*Gy=K(@P6
zQGSa2tjb}vWQp{YYnp$R!`d8<<#0TQuX9+J!>$~5=eXA!k2Y?wg@K>Lh8#B1h58h-
zXA`r;Xk|04mdM<BM-kg^bJ)rWbNG%N%6t7BD*wmRcR))~JYP@TnSFIdiGrX=Py`uv
zX7`bVMIKL7K#U+DhyjtHh)Pt!gqTPw5)@HHKt&0H8Bjr@kswhd8Zd!MlHCd4o$>$s
z&Y9DvrnjfNy3)RV)3>VA^z#4Ky=*moT-I^^t{&+%r-bcVhOdJTiReY?q&NA3qB|v<
zPRZs|@)eDTQD|PKX7l_v+#2WH=TdYVY2<I`JA9BSPBo)-ZLe*f@BBl4%PHBGtk|-8
zyYCnrTyHBQVdZj)VtdlhE$>K(ok=^YL3Z~k`QeltJ|#y^$(~cP_mup6N`8qQC*JP?
zhETe{(PTeedvo^j{w}SKw?F=Gwx1G$!aPLVI3<73AX)Z>iu)i#Bl(@-t9AaB*-bVs
z=3Bh%pUGwip2)PCAq`e#{-TeZl9Q+8Z<=UgBu5ir9zP|=l3SY1-E+!my5r}R|C_ME
z9i2+{)vS4*N~baSrzBu-C`gZjgr_7rC3Oo@uOLc6)PhtlNR@(U1<?zVE=Wm1jDna2
zu?k`rBvpuCH1muE-*P_EMdRyBz8U13vRBT|@};&EWNI}R1v!l)`Cnzlt&sHao$?t4
zIX$7PJ?U@^-#b?<NTovj0-6Ui*j6nN<s>x<a#kUJp?M}*I_Xs}#K$&HTbZ5HKR!57
zvmmt!a&|$^;j@);d|Ami?0gAWyAZ#^W}Pg)zb0?z7NkxgKFGm3Zfxrp<h+7hRFGB$
zIlmwc3X<Wv1-YOg4GY4T&W#K4n|dCoXjF*bMDsP=g@yPv-1I-)3UxiFAZ(i?ZTBvk
zm&{yRkfvNTkp>^h6{KgB;mgfth4`EXUmv$fhBZ%GwRTC%LR@Q%ui)9XE=ay0oeRVd
zN}GaQT#&W}DNBTN`ti8p7~ggB?P|M%lo#R?9Xq>deCvHlfwd3h(xivnvY&4rFDuC9
zh4>@`uMP>(F=;y$<ck0GbL3S8xw;@-$QxI=+`XnC*A|4wLioaZ)kAV!LHOdESGJDF
z7t_}l;#zxrKhC%F-3s#k2M&oFxWR%vUf{11=~a*$3o^7I!wS;7AU74He?bNm<mQ4j
z+b_3KGELHaEq+TPoLdXhCn0DyAKlQlFK-`kZckbg{Sso}0&i#El7R)eqab&362pz(
zjI;b%LGCFC-(~Yv@?8ZPT!>G(@VYx8_>%hGLj3NS*ATt~wVIF^P7N01fr5-G$Vd(=
z$o+-*unmobHP_-ZIi+r&RT;jlA6<|K3-WMcU_3eSP(f(Ye1%=-_4pJA4<0;HkVgy5
zPbH7hbX$AJo{6oL#MnZ7yobb-1$n9<uN7oYL7pzixPnYB$nymmUyuof_zVVL#Pev!
zGu_;Y1>wPlNl8oMnSwm~AI%NEnPJb>PdZbmnu5$I$V>FW3GO|n%VRdvD4$iC=>>Tq
zAzn;c_D~2j3&Q$<vkLJG`j-pB^8l|T?GnCltl-}Ip8IM+W*3A6FIwi@g3K$(f`Tk8
z$m<1pgX;Uxc{4Fro<QJBYFZ{GKcCZ53r{+4CoPGYJF<%ka%6|Qn0`IhrC;;?I9+e(
zXW69%dAA^eFQG5*73BSb94N}cqI^)04{2{j=~|SJ3i2^yOHtIKETd}|WM@Hk6=X$0
zJ}JmI1^KohpBCh^f~+aX+JdYs@aM3+_d}cte%h1n;$r6Wf-t-LYI44bKp2l%>(>=z
zJ+)AfFO!cp6ol{SShIj>;XBTb>nwalR&yRp1F(3(*M+!*!S<}Tu^^iYvaKN73$nQ&
zTMF?KTa%V)`M*mD)*xVM2F?)I7ucC$8vGq(_*?Ubp>gGf?`b3j`LiI03-SX!u^>Me
z<d=f%Ey%ut?C16i!omtnxzEJ-%zMwW5eKQzr04_d3;am=vk*W*{>jGW1`ZYE*Mj`U
zy)TN3K6Gv6vP{E&g&uyVdro)%pdod1SwY}PLH;Vp$%6b#r!EL{_@5}mx$*xg$kBov
zV;KJ?!}0;g8B$8J|Ir&ZIjkeVIuWe?aEiKEDL(x=?G+Mf6loZNL)iueVF`dP9o>*)
zI=WHPvcQ2>6ul^oi{cc;D2iE>Dn+SUlvGiyqM#_xGpo#8&o0W)6^;}oT@)5{C@Hdz
zWQP50sV0^%IISoZicBivo?eV~RH-Ou6nV5vSQ>!xVV#1wuEcDqTokHcen+=jQO+z%
z!=kY8LG_~4C`!$u)GEqZ$p98yVD*ZA_s4_JF3LGYsb7@yic*{7JI1rsE6TYE-D#y)
zCn4$<g|g+RT$BUOFUD3x;WtQ#wku<eTu_YbR*-0vuu1`5NaCAJ<(1N;D4C*^7v&N%
zP!z8y&5P2aDA}Uqic(sXt#ci2gxqooT4~c_Y*fvPv8Xu@t*&KJE-FgCC~b;D9Z|on
zio#kR)Ku$YthlLZ_oVM!T$D13y0*(o7Hx}h=?xO?im~yqwg}tyMY)thE=uR3Tvn9J
zi_)nW`vuLlLs4k_EM3vD7#Bp~(sN#M$OgB-$_Q5$<*Fj{sK?bVu+h7wD3tScNy}ml
z*HSNw;@Tx|{~)x$>x<H@C=-h^sVLox(xWJM6=iTyZYav2R{1_fxveNYi_)toH*(Q$
zGdCCIj&|9{cjtQ-<))-(Ae!*@mSp_%ol9>`h|<HEzD2pcD0fo(7v=jErGHTd(uz8l
z4k*g5bhi6^XYqUPE!Eq~gK_5_$w#&4=POy>poAuIcTw)4V2ko_QC{DYy|*Y26s6r5
zX9$fj88fUXBZ@LISz>t7!*w~^eF=R(^_AR`f&Yk6MH!uZ#4!&hpOW)Oit;G8naz)*
z7K-v%QJ!K<+mikBHg9ZEo+!!%x4MrPg}1y`bu4|dD4%T2EI6YjTV@4$x+txj5^_GC
z=0|H^lW(>nzy3{U@W#wDMR}Hki}Goa*}Y_PQQj)b+hm|9Q;IT++DsOjT9g^odr_tp
zWqMIwC<-O>-KOk|330``{E~j&7B4@uD1R)^Jae}9N>N@e3OWDK%gd40r3>@F9n3sD
zCqKI=^C+l9M6c1~iZZt-oM&vsCKC_4oa7Dq=3JMP&rgUq>DOh<7@uVi7hOOHDa!i{
z=0#b=rHit(DDM{K9d2rKw$DDV&Xz1UwWKK8{LDjRoT@t<bxZa=K5}Wh|MbXDKV<wb
z%EyU__{L`$jqU1|{VF!$7!u2q+Z9DQ@Mea$pA}_gQ8pH36CH$3JwLy;DC>&yIem&f
z9ZM<3HHqZ8bSF*L7iB|HzM@|za{i(y6gAE7%c4|1y=-;8@{30^%WL+VWd0j><Off2
zzAX|bnECOG{N|!;q2U$fd&-1fOyBJ1?JUZ+qBN+}viTHmdm`<gn(Rn4PNlbMm!EYc
zd+vfvexGo_?xOsV4Bk_eef)O2plokZ25ipu%6k;x+ncici?ZThZ^mxt$D;gHlq-F?
z%9o#u@(W{{FSUF*RFq#CoftEH`K>6w(|w9kq*}R0I&x8t7v(VJP{lh^l)tFrHCevD
zAmHxrqWnY6R>``%v`uY1BJz$hI1moDI@@?}{zOqu7Ukb!{6c{sLH>W6$TC9zPSKv<
z5fXk;f`cAWr9nbugIvgu&d$cz#&&tt7tNPSzEt)__r>r<e1R{fFDYNP&u&8O<fW}V
z%NMpKzSs#tI_=B(6+IGc-|E+#FE38><>H^SXZZ2|*efLM>AuXH6GPs(mx{i09cJ?t
zNflqJCX>|grJ64l3pu_tInx(H^Z0*w($#(bk1KcmEioGREI$Uf62^G8FX#Bu+?N)<
z)b{0EUmE-3_)^E0y5z)<L5s!vJib||=SzKG&huk|5GqKN-^P=<bYJbg@wo=RT);nF
z#^-o7^rg}N=nMV$T@O3?5~qnT8DCsqh^gf34`S;)^5#paFIiv6Ranyc_=fzM*XB4s
z<<r!cSr>WD$XGE)=y6M5E}|TKY3oZXUt0SyAh(UrGcf$;c`mre%lk2MkWf?3Ops=o
zFYSD}%$Li3Dd&UVI_>=!=6Q)P-7V?)W&V}xa+h+a7v=d<Db~I(9ewHKOSiAuZdsk>
z<a}{M6yz1Y5Nk~AVP`)^Aij1YceO9q`0|b~ODGCouJZ|;mq&f+LPhv;hc9<>JDkUt
z8-3~R$3Uv?zTDtTPhWb_Bz8O1C&$PjqJ(<+a-dO~(5JE8wYeWSH~Dh2FSqzCS10V`
z0OGkglCZKqz7WqvB++etj4<k(v?Ol#rC&n#|6k7lUk3h<CLC#yFL!a{zTEH2U|;U`
z<=*5|qO^#>y2p<(hQ!BRe8L&x%TQmIHcAuc#m-^eZ}RDgq#c>G>?h9d0Y3&LKIroY
z4q;F+&1<wTT#m%UevIQIvWXC?T@!_fura<o=F3!Hruj0~m&bh>=gW9so}dhG$?<yH
zmnXS*)#HAjqHRCvRL*9J%p%lof-e*O7%({57vdrbxtc^#_&h8W!`YtW-^@39pS1HX
z<Nq|edZeGHZT##_p?MRJMkwWn?sQ*X@Z}A%=gW&UKVM$;WwtLb`9k0r!H=)_GSiQ7
zm%Lt12;#+N`7uJRY2}O95)b&AFLQjE%cVaQA{OUSxor%p@^xxIfw>Xw$lLk8yyeT=
zzAQ+DOr3I0!pDAFm?sQvp)WO;Io#bMUl#ka>Cae1H!XFS`tq(XJAK(j$MNNTU)K4u
z-j@%2`OudYG$CI;N(^b4FUx)TIGKkaIPYeSGZ5_dU9DWqhA*G_^0_ao{n)@((z;r-
zT}8i`7^5=(!za>~s6+w}*O0^Q?%KqzNNnJ(FB{1fB`{jP^yO<`zVYQNUpV=_=cmaz
zk$2y+=U|5V<<_X;&Ax15H1lN#hf%H1xZ9|v2_A{936qaskze(`6{9bgx>v4siKjbj
zg!et2m!9j(VPAgmWe?*yne=6^FZ;-|F9-b?luFU<XNc(U(uxRZrCRAqT=z#`eoC}+
zU|XKrIpoW#T=rK6e_u|YER-`9L3r%%>{*!qgJ%C~hALxw#FxK(Il&G3^0zPl_;Spb
z<Fw&RVniW1JW6SM*(=+%q<0Vo%MDUlw7P$NDfm)MbbZQ?(Sm#5Df1Ki;Zv07ZG1tn
z-Hm)v0%;XW>rm7{v_Ren<jp|zK#V}H3gqfQ%s^6sIDs??#0ta?<g7qy29ge>B#<)#
zsTj!QIU+%v_YZ-%<4c({@U$S#cUK{hm6N>F1F3p_ju-P5RtltYAk_jnGZ5xH95+j=
z62xgCnXRsBAZ$4auj+x+NG9CBJWlP%YvS^fT7jG$$a#UBAILd@d^^!QH;_6BQ9BUk
z24oL&GuGvRD&_SP2I>WJe15*~Zl}gLyUNuq8wAq-g7QXzTo}j&L7YR9S??MKadyhb
zFDPU3K=Rx;kk6Qmk!b)w%4E2mK*|DX7l;=~ma+<@bs#y4rF*VvAk6|P4P@@F5~rQV
zgp*95*F50A=`zd#*dmaYL7WEgqCnQqDL?kMLz-<qkT#TOJFjgZ6bK2Xsl1rXEH4S0
zw`5L2K3*QkC4qFHWP&)IVEaHW=azrS{;GSI20}hBV}IA&M_qH|oIG<Qos#Wbkql#6
z#m>p?l}Y>i@)8cXCXj0bxj&Ex0ww{FE`baPWMCj&1Gzqsn*zBxkZyr=59G!`dI!=Y
znW|^fa_Jiaxo7+T<?ZYh{9g`FX3=EwKqe}rf^G@;(^C4<Jf88GtFR9zA78qqd+x;^
zx!VHyx?AqRobucGU}7QtX<Ajw-`Or7cFZYr%kK!}PR<|5y@}EX1#%ZR_^<P?lKU?=
z<KRH<PI}nMo*{t@4P;~>_a)<p1u{GkT3xU0vUHBDn(K`Sq|dqKLDh1~lZh@VBDSLf
z86C)^K%NQY!9X4gWNaXh2l8+rj|4J?{g31yrOLKAv?8kV&R4zN-)HaLoqddo?v@*K
zP40<6o(yDsqE_1KQvr|9WyS^abYg7Z&(Cuq^4#o8sn<O>A&`lj_L>|`g{prxkmmxK
z8OY1@mq4BmWLhB8=?kBGg$boosF!N)R4Qm|o>$$u<u4?2vh&46<ID(3dPX2GB_p{V
z-o6sZtU&5^(dJNPH{@Oo<TV<b-eh(l?{&}dVn#~#Qy_EcT!B0`B^Jx;K`bH;V}8#0
zfxH#SpMe~vKT?K)Yzky^APWOo6v+F5e89m+oyCDH31n#?^GC5FXI!<7b;MY%>)k+D
z67D^E&_{7)wC^T5_ce4sq%-oVKt2!T<3N@L@<||{2C_Vm72NVfr{e&RRpB^E>v!YQ
zU@UF+#9EgX(>|m5&Gc5%_TGwTTOG)nKsE&O1x0tlJMpE<Mb{>4txMYVNz3YBUk36O
zIlSEcmI7Q>!un-j)4?Y?yuL{Y)|=y}8<R1tEVhNV6v%-<4hFI{5LQq7K9JpkYzt(2
zAUgtP4|ex|?5%B4x-*Dt)$K~!#Z%>Qd-sPxSVnD6AbSI;zro|PEC$EP_XTljKUTQg
zPY1uyWu3bp>EH~cPiuz~K7S748h^h8vU-KX5@xK|#sY1>2J#zKFxeZtJM()We*|$+
zvnQU3i}9_UDn|nOi!nBoilO`+$Un3<2I^3{J!&6ioC)OLL>I>ry&MnZ1f8pxolqgi
z_7nq`;rW3Cfh?Zy6apzG1ZlFtkHSErATCY#pDtKujr?dK6Rn7Zf>2m$%?Md%TvB1o
z5BF$=Vuy0|M3-d>cTN=+Kum{mi9=o`2{C??b6OZH;`C5nX5GV3-tO$~o~f~5V$h<L
zhEyq(%AwQ?rG6+?La7=`%}{EEQZ1A-Lor5s)kC2?KbYsRBp)?igCjS1XN9qyu)-iY
z-!M}<JCx~DrA{d4g#3R(mL(2rhjMNh>yb1~v2G}Xjyf!^cjKe>d7+#iiW`a-N`p`?
z2&G9V8Lq-dMtc{AaecsrZ#j)ZVasjuwsF$wgtD%4T*{CY_h<=J*^U8THk4c_%|mGs
zN@*xG_-53|GOuYE*B@j7KDIQ!E9<3Mp^t?fTXN}QmbP?JC~P|&bn_H!C@+OFGn9)%
zX&cIbPzHul7D_v6Hk9t6l!tOjC|88iIh6LHTpG&dp>zo4vQYSog9$yDP=zT<o?}j!
zP&$S2&xD6I<oUaa$D){PNIULa8Ol|mTo+0g>MM*7UtJT*3+J}vuc{@VXRoEQmU+xe
z)3J3KKkCX&&CXmO%Hs#JqkeMu1ByRSdW3RAD1Ab?EtH<2^a|ysP;O@DmiPeMjiK}o
z<KIeejmy<JKfUDb%=$j%w}d=3-JCgLZlz8SWO=!Mt}pj>*t<QHexY>i+m_4m=PGm2
zFs(}eP?#yD-(T4~Lb;Q(h4Kg$7s_3s3<+guD4cw7D0hc)PbjB;^SB%{qVU(&y;S9g
z8S?qsTlrz33=if0P#y?b0zm$nSvE41k3Y!VRNa1{N7;R0{Ck;e#hHJ?ICInuOor31
z?P!kwDSM=!{$SGiP}1^u)}x_}3FX;Po=bRpER?50c{-G_6b?7?Q}&5a`0J8O^JmwS
z)Yn&SIomi|!cKR57$*zj?wI$6#DwH_V$x0`hfAGjLYY53{%CS2&xi72C^Hh>O$lWh
zHGV2bJx)z}_>++I^iXy-_g<h4jQ4IimE-BYl?St@b~)Vp%b~nN!;3_VWERC9%KA_?
zgfcsn*Fsqo%HmMwgfcgjH@Rpi^THT>!Rw7MMjyN$#^4Jc(&mBi>w9T$(N9A;#<UM%
z4D0SUFTa4Z_0RoVFFrec*4^>R^LOaip)3n!c_>Rmd6)B0&Y`>)%KM>wK#2{Gkqdiz
zX*`wv;K1C6VGM|PYGkhRygbj$^Po77eDmb|icmfYWmPDjhw^DC1m<_C?|l}=@Ptl#
z@+(8RcW;(Q;`tPhpsx;PE!{AbHMF;{g^YbO=>N{i^WZ&?c7GAdm!TXE<wz)Bh4OVM
zTSM8#r9YQ%LfIHH%SsI2_?F8Jh@t44!x*Bzh5DjG-_T+dNs`!s&;Y{Tx6_LmYC<_k
z$%nElWL*Q<!^pss|Do_GK8H~(yJ@0I6Jjoy^MUetNpgGXTmy6a=;L&mJ9DHv+?o3^
zl%Hsv2j%B5h5+!G`j7nn9T+E7_$8D>2`9fMEzh_AmJq*(@<&2&%%6-=_0uH&V(_Qc
zh2nFwjne-x2!wJXl%rG`y?bPCuP!wP<Q~2!20@&p?+^k&TOG~+jkG4%;Z!JvP~I7o
z;~2I<C}DCN(FK-gC~cx4XcEjPphUt<3wPeA>5&+bw2YXfSIkIKk<^T&Rz%RT*pZwO
zNySLgk(5M2IKXL<NF<12Q81qaGfvQ2m?VK3uMow+jark+PmhEqL84M5l_RMhNsUOV
zL@{jSOx||)IIL<U)uPzyXe2lF(g?I!)l0kn?%X98xRl;mQH;Fc__HH9Cz1;yX&6cE
zNY0I<ZY1@h*w`p@K3*q^Q4d5P)Q{x6NY0O>K_uNi5+Vo)$6$I2+QWa40S;~y$%T<*
zB5@;W%t<0?5(&`+#A0v@%>2Og3mi<ygBM9Ql4g-K=WKhkbRQZ(E|StHPL;r`X|gVf
z774*z5R~?@k4tGhts-e1N%u&4M3RrBO(d6bl}Ij*q-`YSkz5i<8JC`yr%AVq<i|<z
zcDU}m>G`|nN&84HO{7E*`cDWHb%#hgMsigoS4Yw*k}D$V9LbfuE{qWq6b0Ro87Bzp
zp~*d1H+@Yc*G6((BweBywZZHq%!84?Fx@qZ4f}d-DvGff#7!_4O4L6`tjg^(of{&)
z;FbZA42+~#BsWHKTO@rGJLw(CO_AIj#c(P{5@NV$s}$)iTxdY<)=2s!1ZkqBZja>a
zfw_K>^yhNS>q5-Yg=uCEp|~jRJ0iK0wiL;bC<c-YisB?2cPI2+Njo?a#v*=1JGmz@
z5(;)`B*P+tYK0piw2H_YMl&jxxEm(cxG$3XBOay00s{|3GAfdPR2)??nx+`Z-wOUw
z@K7WVQ}PPhDR?B3M<dzIr6U;=$zzesi{$l4#zyjZBrirXBa$Z~c`}k`BY7^8ry_Ye
zlJSvDpjz+Ejf-UMCh<n(9v_w)G$J=KlDR{2lOlO0l56hw#;o*)d{XlA&Mb+uhUO+m
z#5>D$&OAIfC6cL>XC&V6+<=|gvtG!bH&b%9uw~B+k<4!A#UBmNy+rVDBy+g^dvh;G
z@=7Ex&2(N%CYi-y$%>2a&Al4Qu3@<wHs<5CUdX>UN<Q3~otr$>e3jFuZT^i&-i+ka
zNIr{Xek5;2vLuqFlvN}PB3T^qe-{#t$h|%^w=fdUFmPCIQ9_K_nZ4_NkE?T)r-tO-
zjpV&ZK8)le28toM_miD|K<TaYxO(sU>9!fqADa6(lI4-C;8#_n+%h`RupEgh!*ic-
z%Oi5P-=wV_C7X9<S4Ofbl1-6pj^y)5R!2MlAYVtahJq#Yk$e%!I%;HS?u$`zyFQ^w
zki9Qyy+dNI>en+l6&L-6#>{7Hr!SdXUTWs4f{l^f^=_W)vfUENceJZWc0@Ailaj48
zq<eGQA~`WU=k3gLs^{*_?WACb<#t8#Jzaj4!~JsR*VlQos(RGyo=Eo6@)ew+U|%Hr
zBRNSEjpRTi2P657E=DhAh#Q{!DUzQ_e;w1m(BCuOuSv_>L;qum^kp;Uk4XNcWztX?
zKq5I3$zS|(uj<h%sI_YKOfp8{SKFCA8p*Llo+lFRA7^}C<!};e?bjnEG@gzpGN&Rb
zaEt<7K`|0P5=DWkfKm#mUwZVg9QVaJBL=|R+EQrTAQz%i<{l}TJuGJ^Fcm<-X$n#b
zECp!=B?@c>lv1Z*x&0$@Gzl92IYV-yfPC`V-uZH>xI(hfr=v`YbijFO@>WqnB?XNX
zT&SS3f+`B?D5$HTs)A|?&QefQ!I=uGE8uK36p(?vLv!!+)~LR3Yo|}Xk*}rTYz4KG
z)ell%UpVI|c>28b&f&Q(Lv!aU7(7;<9Gc_m^%T@sKwE8~;5?2Wo;zOw_xtfp+R7oh
z<GnR*`~n3lhUXe8c(;RnH&<-Xwy^?7K{Ex-`Rqx%iGqv*H`xfaV7}pa3P?01!}ZLp
z0vbauX-kuqtkUuq-lVlq&{9Eb1$hNDq>B_#$gL<nB5{V~`hVs)wzN?|-=|fy<+DR`
z7gKt}bF&lkqf?hFxJ1G83Z^J%ui#PzgUFJC%M@I$ptpjX6m(F~kuxjkuAq|w9_r|-
zfCrGSNNC=6PKYZNT=l=6s}tgyq`fw2uT#(^A()GRk6h0s9*7Tw@W4_J1ve<TQ2|fR
zFh|N4?_`+Aqo;yi3V1Sv$s(R#lHq|99t+`Fmzx#brl7BaTNK<%flqMzDB!^`9_1p<
zv>Uf8=%-*|=nYiBBU}Bsg^lq!F&=puz@0{!{#`YGdPg$m&ZO<PQ3flxn}SmCgo1k%
z+^b-;f(I20Q7}}&NCo#PV15jq;Nn@VVG4#TSl-FwH6kH+(1?d*n2O<k1rKoi+wLd@
zrv|j<F)FTjdh50iDR@}Hqnsq+nOSH!&m#)7>*Et{%)`KAQ9suA9#g<WQ)3k{A;#DD
zJ5SQO);Qx8Oi=I?El|NY1<d5Yvs?ciG~zk8i3%nuct*jq3V6%2VM}lKn9^a?3HLb#
zJhMdJm=0xf!as?r3Z^OeM8T&DrYm?s!2$|F!HWuJD0of590e~aXn0&^vftLo|KR(b
z(G}g7DU*usD@i*`!MZt_R}*@6(*8T%ovUD;f;SYrNlQ~Oakax#C(ORWlRUeQmGIQl
zd<AbQ;323U9kSM%SoLo!V9Wd=ixezY@S%c_6uhHgiGuePe4t<{y@u`e9?uu?&=jxt
z61Dd2nWF@_H6|os5)z&d{8#~x7%ihZsGVzE9xLMEC1w`l$-or~$N-J%GX*OZY*(;D
z!72rxEBIQ$HwsoOSfjwd-}_3zTGI8s4GNf7WF7r9IsLU>0S|Ny;fWvxquz6QeMv>k
z(#RG2X`<gMV78*I3brZOm~cpI+@xT0qV6pUcmV7>2BO#FG&}r=wnRnKs%arR$sRSX
z;DCbfDIW!U`3HmV{=g8l$=RcTI%NWoqsL14@`a|pFH!WMKJKqwwSx+NRB%MWUkYfP
zKP7xteAf9{!7q$37iH;ghZN8|eoflnl9so>C&V8~`=^4#|Ld=|$K&ZQp1*1vWtg_;
zsDfh(u2a!P#c>5EsFa~jQxzu_{L5IXqNa*d3JMI@Dnvz*V&oTr3PVMpAmkT;3W6*m
z1&WI4k}Z8Tf9J_;>xHuLM0V~1>C@2DRE#^BC8&gm3{yo~1;HsP6_yG@NFJIYt@dSY
z6>R5T)2{aoUhC>Dq2e?Zl~q(po~@wb3>6hslrPDguA;&{r39xC`QjhX?m3>VL<Xj7
zysE0GrlPuv8Y<3ACMUdwcosrJnoie<6Ct0g_hoCI$ktMEwu%c>G*oep3ZhZ!sHm%=
zwu*CAIH{(@r2Ks%%l>*Q>Z^GFMdz{!rNpqDr$XJIZJ^?O6-1+4PMFO8ERi*wzmbXy
zRd_10DjIVV6&V$-iY6*JRl^CTwJ!09<!Lru<F1#P9+#l3-X7=XRFtY9_=W3|VeXDF
zoMtMTt7xI3rHXdkxQdG?A{A{^T&$wCikDirc@@u8&kksqU)L~y_IG(Av)Zb-DgkPh
z@$u&zLbQ%fD<?|p5*6)LT**&WT&jX2JF4iU;xZMNC%3f|SXl=ZoQe-}wv%o1SEwMo
ztFsC&!Rz7A^H-}N+UraHj7k`|M#b<9PhDo)UYz49T~%DK;w=?#tLUbpyNZWYJglOJ
ziW^i6RWVFOPZhmX3|4WsiW^n*R?$brZ7Ob3akGl8r)PQipI8rqCT^j<ZE<c*S`t6?
z%Jo%oyNdqghZ|{_?#F4nY5a&65gY?m+(8lj?hH~v9LIl{jytJ^9a-Mqm3+ict50_B
zq4uA1?o}~F1+g#$4y>5${D(jxtYEl`N0#L8Q*pnF5oGD#Eb%NORS<pfOE>M|O!@)-
z<*(vFs_Zvsl#2iGI2=aU1>1_<v`17tO4X=%R>c?<kI{xzj8`#M1u+g!sCZJv<0|y$
z9IczirwFEail)nV!78F|TK^Y30xK@aq=z4p2`VNgV&PiMr9X-Cf7ZEtrcGSKb1EjQ
zctyo570;`fLXD`Hsp6lTb5m7J<AcrfR(I|Dr{%}zoarjqzM$eo6*H)aFEYI4MWhS`
z{xUu2<{W3<Ju<F|@T!X0D&}%)ROoZgYuvkv>w4#mE^R3RVoxaW*OQI2L;@dwg97Kw
zzsD0&R`U~@!~zuyRcuqSUBx05i&d;vu|~x^Dwa_4bSo80RWy3q;^22xu!sP`Agpdc
zG|C4mK2-6kiqBMhq=Ew|=jAFsPH5gPQ^67jBv{K}g^Ev9kl@7~tyDo=$>+4F-yDLE
zR&kXpN(s6lGOOfd$yyq@if>eWOE$J=Ill26Sx<LX@r8;nX+^zrADt+nx=DPc;_IY`
zH08fh#U_R?6<avNZw@O^uu26nT;EabpX9gFr*6toIHz^fS{6zO;M$>Lr;6WH{H|h`
zitknIQ?XygZWTYM*qiW7c-JDLz*JE3gPM6XR4Rg4p#$8hil0>cOfNeU!=q|Z!YZyk
zH@&2Jo<$#ip<VUP9ikWCoa?+$eoc(|r`|c5^dBnzRPmPzN|FT{XwQdL9HGhGm?OT7
zCP(@Foydm*r<9H{_^Y@@$E`X}F!)nP8kT7Im%*PlprM<F0)sz;q=tGLd<K6NRW(%8
z5YlM*b)do2plDDvXc}}4*H-fSpV8!t_3k@C=J<*X+m~Cqg-w~121|pjA+6!V-46RN
zS(s_OIP>@-r$hrZv>oM;77bHZ35nA*Y+sbAkhCOD*Ko%F=!ywZNkirT^;AiSPy4%P
zYN)Q^Yz^mVXkTz^XgEtlO%2}!nX4Xi{&+7_({yVkAC0Qk?%UU;wuX+2oO3nQ(ZEH6
zZJ93*IfvI}-d*LC3~=jfI8Q@M4Hs!RUqb^884a$63p6y;&`86P=K0^2WVjGF^5H`F
zLJf_{z-Jjp!|d0ka_el9<knu8VW+1dtD(7uzUwj+5xM;}$mBGzE!EI8AxJmVaP!=9
z60Lu6T4-4DtlYgm(@H~YvZ|qzhP;M08ZOgtxrU1=H*QD6^)EFk)9}JIUONrt8U~DZ
zNMFMKRSvIne{gxl^h-@H<wm|25(fr)UoFXW;2t--%Z9Vqfp>+5&KkOC=&IpL4OeL>
z9p+uD;lUB|!raW&8st~L&B<ItrH7dzMw9Cj={>L{Q)RT%dvRu_G#S&^yR5O>T|*BI
zk7^jB;RX#oHT2WaUqdeqH)`mk;WiE5U#0fea1%F6%dxWD?=2cAc1k9{-MN(lpIpxC
z_9xtTKF##ia69)tU8o%z&(9~bSDn#hfQEq@hG-b7;SLRVYPd(ky&B#)<P6eqw+8C*
zw#M#V8U}O4#%?XEge^^_+2#!Sr-&}>>rqF;Gz_O0m)WB<jL=Z^ABQtgJ0laCxA)Po
zmuBuyZXe)^MiX|9rdTvQq=CDBBoR1?hm+fVRdPMkEvdf8G>p|SoqC~lX?Q}zGa8;{
zdac9-#%q|M;VBAgwDUBTvd9^iv|r5kNKZ^W;&9+~UZ0u78Ro{O%l0`9lQlfAVTy)b
z+cF!h*xe|%1_Ruw8gBL7_G*)98lr*T)6bN#eNn><4RbZj)9@16qh)G%O~cC?Ghl(+
z=U!gh@6FQiY9cz)9hcjbfUL+|KGL0&>{_4ZJ#t2qrO3X{G0D1bYk2HH=5)(_Qv=)i
z8va_8c`IqjFzE#p<{)>WhD90{YoP1#`gUC=Q^_N-l)BbXMMqT~?`e2n!y($gh7Twi
z4O=yA)9{gok2S2)@VSO%8kTGLOv6gXib~#!M7cC+%KVc==AUwsg|P)*Gt6Vyp>0zp
zt2M0AutCEY8rHI%pJ800X4h#LUDxBaUPJG?ZAnlCUouK)_*TPLiAKIoTK1P-<Wfo-
z8M_u{Hfz|F2+f%ud-s;4ll|XmpnOPd*RVswehmjS?4+PH{GeeEtzE+>YcjNRMnVqT
zt>Mp)GmJcp8+#LGXxN`LcK2zxWtosTsNqKqzc8Mxk0a9XRnAY0ITc(g>t_uu!kE}t
zEk{fHO~db0H-oT_KRB(1;~Gv-KGgf`a)cVuK$*~@{?<T)XRta-?YDIQN!sCuob@NO
z$272AaFutG7C6AA<AnSc&~S?JKZz|=rLUow&=d%x2YZ4<#p5S<bkg>VGpY_v$LTuG
z(4p%vbXYoUJr3-q9vdX}p3>20k;98-z#htwj-1v}qC<2rdLU^})4{FrmRAKGhs#_N
z6?I%RT`K9Qtj9J$t(`d3mRhEc80)I(I8#SUj?qzFM-3ep=xC_pEFCp<)YfsXj#@ex
zOV8GEjvmW|+oV0T*%XH?Mus{%>guScqrMIXb6OEY1iz=q_IZ5#2lsp(fA@E1t+yKJ
z$c%K~hsWUGNXLabTpgZ{#yT7wP57w}hQ!UQoDO|G`Yb(^^H6A$4mnvJIUUV)w9rAd
z9{)5`s)It{)l^5b|IwVE8>Ab)ve4y6t#q{3(MiV@I`TT&=xDFwQXLmlygJHtT%yNe
zoT6rIEKAsHm$X0q8h@GcyNvo`h`vn6<vKd(=%|A%v4_S+N1i)64toC@@fTTV9arkO
zUPm`Q4sKWJxSHakOm;hTv1_?v<tB%|aobNVr}VDV(M1OdZltS@XID9-yX)woqqiQ%
z^BZUqR%|dm_4u3a$Z(;+dvOb!yc?625sWT*6IrU@-pqDV?74k(+@>RCz%tNR$L)*~
zI^NgOPe*^QqT@Lo19S}3F<QriI_}VMr;cG1sg6N9?$YsN8~0uvgLQ1lyHjSntZ09?
zj(a$Aq`RqZmKTX3I_hk9D(?4&(n9|9hWwHlp<|?u`*l2!jJ!|Byb<0rOPni@m7Mm5
zJ8_ybp^H08$JD%gXq=FKNXNrEp4Kr=$0Ir()$y2)u{ypi&o#IzH%7<)*E92<mp6ZR
zAJ=i+<=H27JW;`YLdVCq=f)H=vqm^K&yuHftkYZ0>(zF=jtM#@>X^iJN4gujxHF&f
zYMkvI_}krcdXs19P}7_-AD1lr*PX26c^$KLyryFc`O)zbm8D~vj_EpH)G<THX6K^g
z%e@zLv>NN3@muSQ`Ja->Zqv8i_E+T^{o%Z<;}spRQUzVy=5Br#d6>q;O74mqv>TT=
zPkirktvNd8>R6y-A^Fkqx{fz=ys2ZvRA=#2XY^>dY^P^@?Ed_aJ3sb%?=2lYkCj}y
z)O(x8xzy|3FuO>{Vp^JxB|18HcH8&&Zj~%I-lkD@?=f#_vZHq?z=zyNK6BW9Kr_>^
zTgMMNKBAO#tc`_(WjdDYSf%509ZP$-D|CFK<5L|gwtEdHyNefkpXpes<HobH&(urT
z&bztR`O`MLs~L74an?|w?LBUXn|fuq`_*c9y^ak!w&~bT)1|U>e68af9mkh=U+Fk7
z%{jcp-S&q(`K<e`j*X0~OPtM#;yTVSslH7*9!j~?FZ;J7pMICLTa$K5|IG3>*&S5D
z1~+fWPWnRL-NnbhcfU{CS_@p#dvxs8aa6}K#yZ*wy+g-uTwTXO9Y5>%g*N=4J8Oiq
zP;q~xT6?%Z(JA`nHuud1Q=Fw`*+Yz1UENQgmmxR0r9HLZxw?)&b<kXUt#r4hTw2}X
z<d)`oBr)2*7{L<apQNP$^P}VZ<6nobBhYbD$G?o;7rO-=t6y|!{5{5cr|4WgwT}IA
z)OAtE3wzxO*J>eU%aI0X2IKm8wNLlBYsG+SfP|K`C%$z_bAVx>&iS61wDbboK-$2~
z25vD>Vn7V!43rvxfzu3}XW)DT6%3qipqha*4V+=1qJb&~sv3A=f?LUek#}$Jo2$(J
z{T?qm@3fQ7?>n;%-*6|4@TwcAVW6&odIsLw<}S{=XBoJ0d4}##)4;pCvb7AHoe-qY
zNr>7>doDRlh^{>~e)Qo<r@jHU+yedd;l8;B1}-q*7-(Xkp@BvQE;P{Cz?~IxgWnh0
z7=4za7`)9LWO*f%yo`YkC7x@*Gw{-9&X|2(*1*yoE<Mrg>JES3ZC@fy4Ky=QZr~CF
z1J8Av8)#vmrGZKRy6dJn7a3?}ptXU#5u5S2k3AY5&6u{@#=yl!Y+W_qG3kkI4U`#Z
zXMonr>)Q*{=|5siZg1dH4l{6rfy)eBZlI%qP6l?Zakg)AI~brZGo&!Ed^y#*!a!F8
zL%PK7-`T*GjKI^JtCIHWq~+~332|-GUYE38l9o}W&y@1(4Y2KIpu2%{ekmi(2-ed;
zFRH*mZv*Qmd#grx+yc#*k>@4@G-=w&l4~_yxAJiVPa7C#;5G(-GGkz<f!huAGjNxI
z!3N%VURn-x`x_Ww;G5a*K+4~Uo%aqS4!rM_=h!yQWe3r&+O#Bbw}E>M+-t<qm_9{5
z8BrOv82lMvhZz`d;86o(42&=^l5cwrj56XN-*82S`@N5n=Ud>X+z*F4Y#AR$bNo}@
z!v-ES@KADn^Nq{v_Di$ue<aaVht2L|2F4nAoJMQl*glVL#dtMqgyWxdpEP3sYP#Kf
ziuxVv9j%f3NOQ*<m|$QAO~t@O8i0Z44NNicjDcqjJZFFwp3l2srHdG-g>?zxO{V%5
zdP9ztOf@jgz;pvI(7BFg_?5?iOcm2~U!)(cbr=m!-Jmh{&NT3{fjI`|8hFLPECa6^
zm~F)0bPeV>6>4}j8+p?z<}bfGM;m^Pdc4>zJ61B!!0QI))1fGTZvTDfp`9L=W^{Vf
zz#+vYLA4Hg%cYl<mgE;2SY)8Sh4U;dHt>#tk4$`QVhQcvKsOWJO}uO1J-WXMn0Vj7
z2UL)O1N1l!Ht+?tY2af6%M7eC@Hs<@ffWWmGr&^OpBP|y?oTPDZr)>!OPGAGVWSe3
zfnI4~Pf2TMZd}WIwShGZ8WozXr&a%x={YLyTx(z*qt+F<hv$~F<)<4AnCTMcwfoAz
z*9Nv5*g?B8@U4NZG@A+DMgvS#$V$z|d}ot^>kemmZBB?S2EI#(mfQ2}+?H^~gm|3!
z{VQ`j4g5fU=xb!)MeqBh-JP_&eeG~&FJ1l(Z=V5j&V-GVHfDG+QRG1bKN|Sgz$pVi
z8Ti@2(Kw*B{Dq=6@P~mv4KN=dlM4RI0j<k^qirOcI-br}_#$4NHNFoUIAY*0$}O9}
z;3r`o#lH>w!%z@qAKd3KH6lev;uw90Om@n#%=8JG!Pe|ahPYLEK1F5<28sqW6S@iC
zKwuy;pqK~~e(o71tftLWdnA}U@yb?tCa6?RFacndi^VWuny^izO{C124Q6O0Z&pGx
zM`f+;`4SV2s<vdR!%7o8<~D49t9P1-3MNWTG&OO$i8D;pH*ubciY6*?W)rndR5nq?
z#91b4ny6}me4c5dx`}ED&0FSU{Qq<f6Eo(Pv!|8`7V>7&MP|Z0o3l-b%d9J%bLX01
z_DhPf4rhBU&vche<XG24Jrg6-C4a4t**@Py1G2O+<Cq|~7nr!vL}L>T`ACH(jZCo6
z{M*Ok!s{&3&1{)0!cILl;b0T43C~2%1V6gzid@zN^CD&&m5`>;KCw%f9<!N=<|ZyR
zahZu0CR&=f!~|!!$V4j>ZA@IumgUVpbE)^%CYU!eZ-O}$+iu9WO^B|8ymAv|Cfb=G
z!<_t?g?SEm?Ha9bryQqhZ^p((;&KxmOkBlbCTOc2O>{PKrHM`^Xe3uq{x8RQM_1Kq
z`{JTJdE<7NKl2(B*P7^Rf&ygcbtWF}l%rd9G4WqQNT!J7N7tM9FTZ6E6E~Q6#>BHG
zdYb4(VVbzl#Em9;o4DOXKNB~ZxS7lSo$X8Att@3x#am3=N?A4Vm{N~P{Q8(+dz*<`
z{hE($P|9<d97Akfe-n3`xW~i*Zpy?RCPsD1-DzTwiN{}-ErFN$D|?rTmGd%#lXg&p
z(n<?Fw)dJC!i^lvj!624QtX@aJSsUXx#jrbG_Aj~Bv=@fM`Z6e@qh{9<HmCdYA|{B
zF%!YK+=G;WiAQLeh1^3)e}n4wqyHnuB*b<1X#@-g`^v_WF-pe7lS%(L6Hg_?)0}fs
zZfchtC*;*;QVa&<BNNEa!7SIENRu}4{|j+GXJWF6*QhuX&zqP+!!z-siECPy6QRk2
zwNsOgOf$g)tJBH(SdB$9XP98ILSC~>ykvqXOI|Zgy!=1<m4qM$^Hmz&sod;Do|HDF
zI@iQJ6AMf%H1RrBGdsgmzHgg&!^E5P?oLhT^Vx)GuuJ2!4R>kmBp{T`EHd$QkXy=7
zZ(^|to;QAndjBiSYl(@!2Dc@_0q>DL6Fd|9KGnLz`+&mf7@tGFG*f=h1Yx_35yQk?
zDGW|wg^5pSGbx;&!l!fu6Tg@^#9h-eO>E|tO?+-*wTUlGd}(4<b8n4_^(Ho$IJG>x
z*2KDm_?QrhH}W5?a~jR^-u)ooyjlJ$6JMJc5oR|r-0g9`G4ZX511B;ZFvu#|XyUsu
zrInlI2YuY`@|n(sm$&@R#8wk~OzbtWjl!waWV?wSCiczDH*H(G)5I>yEy@;8Ytns#
z^Sy~WCrWCr&F|)S-v;N0q$M#YY_ZS8eiLg)J3sT;A2SC`{Al7Q69=jH#m>0jvuqpJ
z%+}bJow3e2E6ldr<^27n^Q(#9OcWWGP5f@+4~7d9M@{@`;;@OoP001``KL8GV&buZ
zUiWG-{g(;0r$*WHX6D`Bv&T#vPkIU_P9)<`QfM2c$4B{it>MnUjGV)rQzmXX?2w>j
zK6#~Gz~Iloo<b^x$b^!DmV%y&<xKX}6xQ~MiB~JM{A4jt3p+*%l*Wao*Q%IVTh+Bv
zkQA<(;n*qksoiqi%zQe9k`ze%{j;z&Z!Sd&r=_sFX}<Qa4%;(QsF*_A6v|SlltSec
z8m7=Fg(@jjO`&cI^-`#o!kH<Ylfu;Hnd&LjNTF5=XQyx$JFB^as%2}Y(D<>^8uh)J
zkwY_hGSzb1mi)+U`9pQv)=uHv6sVd_yYhD(Evb_N@$A>F&DT%iyc7mqR(3%O=clmg
z%lwLe_!`cczAN7#g+CuHtvIUfC5Ig<?m|wULh}?_r1%~gO;X6FkV_$xf}4s>=;)-}
z`WepqFFE(F$a*QT{p<Ja4`GX~UwEY{*iU)9nkGcE6y|Od-nLBPq7+)Ekmr`0<y$3U
zT(B&EUP(#4YAyL-n-sn~r)7@=4mr6vg^igK675nbPvOQCdZ%zn3hh(4CWUKLxHN^!
zQs|Vz6%^5e3^l^`a_(Y?*CB<D2|>H!EgeBGY1ui2D^syA9Ne0{D#h1cd}WrsIwAJI
zmA|fD`E@CDP2qa3)u^mX3O{@0)Ni*Gx+i0L(KhxwJ*a{M&No9m(l;bMJyWp{^7hs-
zr4=46y(xv8xxpjSFNIrDxRoZ6!fh!~DYS6<5rszU?VG~wiGsd*w3J@9b#A%gmh?|y
zK#H!{W*~)}2=flEUd`ooXF?20;ni%Gw|A#-PYPe8@FgXm!jKeRp}D3oG=*U)OiW=?
z3d6bC6h^1;U<xBsxQ~`II6o?d`%`#;VdqV+S|QteyYs_}l8Sq>pS+oOpK$+Lntv#T
zhf{bYg-26(*)1EoKU1FbeqQg4N#U2DoX1iao5Cln+q#RL$5VJ?PnJ)8izZJb^pi>Z
zRMI}3wBwSN!^S7Xgrpt6ru3N<o=ss|3e!_~E`?pEvXfJIK824OWx3oGddHq@xBZ!^
zDKx8A{@xbn@LJ*R3n~2gwL2q)mr{5!p*uDy>#{xn(+tPFEC1d4{7mwkLc4}>RAKvS
z3bRvqCxs;`yq3b86y~S!7Oj!ueZrlW!s}dmQM~atQt%f$l*yYZEFS5Mu3Xl1Q+~_F
zvbPzKm*f{EpOTFQw7?eb!W2HN+>(PAr$C8)m1@)R>-^Fb-c8}-6qcp%UJ7LCL+<YT
z%=;;PzyPu*%g4v8DB%V_qG_#n%Ic-b{Bj2W6jr9Nic(Es%vK>kpQdp2p6rfnesGPJ
zpHbi|GkpAWvid`I4W~+BUw3bH(ym{gUq_4G>~JvWU!Txdtamoh682}<|5XZKr*I;L
zleFO!zD;32otK_P-%sItMx+!rr?4f3?J4Y__oc9vZc@l{iT59KZ|>@nlWm-Bd7i{h
z#)O%%ly;>s<<WS>=iW3aD=zc{?Uw$y+55D%w}(1iQS$uu{J#J3MuRy>eWmbw3V%>I
zlt2oHQuvh$THW>+s(yQ(Hb4X8DijWv;GDlDy4d_|`JX8qPT>fpox<bSyDLs*o9)d$
zSiSAvDg2YdaT<B$G8*&I6pnEV>+>Dflpg!cAwkQe=qTrZ>7<N-7EZHJNTJB^Zo#nN
zrx2u|SWqp5DJ=cj<EEyrm555*;!xmUtamgkHWK;{*`u-1089%h3$}%{1<L~YIoB&=
zKY1QnCtYGeEYP7Ef1Rf-QBa(u_llAV7XNRI8Wzs7aE6777OGmPW}%W53!!qd3eA4^
zTB%}zs`tJsV|%6*TMNa)Jyy3cb4AI+pXOg*QBu=FEeq#bu_e=G&bDxlh1wR{x0P^r
zySjf1pRInR#oc?dbu83PmLMl%#+BCNqJ`MH&bQFO!sRwP*toz#LkquI_}xMy3m00L
zWZ@YLjV(A9x?AXBp^1fzg-b15#zif77Ft<oZ6QmMUgefrXlkKXKQCwD-rL-kW1VIe
znp=2ir(9&=w((^xEWF!1+cKe#j3^s4vHbRQcGwj6;N4!{LK_QZ7TQ_3*ut%UWjJA5
z3*WcMce~5WWZa1_dF2*3l2>~Rm;8@Dt%Lh_kNlZ+yvr?guyBQi&U|W-b7+v)(ZcYi
z@#LK>OgZT-P`oQGT$OZoP1>t1Tw~$dgsXohI2>I46K8&<i>|Z4woB5U|Fw6$g@I?~
zx+U#9HL@IbgN2?JhFTcL{aU!u!T^41p|^#bxH}7dIp<{eW($21$=qV`(1^$D)<ixe
z$TL^G-NJRY+n@7Hao-u__2W}jE_$|M*_+q7#jo5uEZk|~ZVUHV7-ZotnuG=J^r7SK
zf>AN66pMeZH+GqKuZ224I=4=8h9vWI=3YJA0c9<RTNq*CF$-fYjI?kcbz$LQ3->3|
zd%(gd3*>|<ySq+yQYDw#8ExS~3zRu8&htp3f=4Zkq3Sa(JGrkOB`&wX_HheOSQwv7
z@}z~QER5rh{xSLB(`2=3mV8q3|9s_fJDhw%GLkD!Oo;4N?z0x2v+%x!4=hZ!@I0;5
z!fVu*g{c-^u<)W4pD&$e;jo^aP9ZPwc*_H*JnA{a!b=urS$LIBVc}&9EMCc^ZLd(d
zQHIAa|7&@gkw;8<Y?W2~SXFI~g}MCijfHnC%(L*ig@x3Pg*Pm`Y2j@P3#fNG^%{p+
z@7|)>cgQm7BJ&U)tki_ZAXx{HrN@{Ckm>AL#f<!XUcp^rVJUS-DXolC5%P2;lgRN%
zCl3j~M_=fw&A1`=p@okud~0E&g^w*Pv#`p-=N6VzfTp{G;etAPJ3eE{bFj?v$7esK
zJ8yD6v#>HDNRO@It+uen!q*nQVHh!7o_kzt#phJlSy)d)`q0^sv|n2Ig1#Ka2bfs^
zj_p@;+XoyH%%m3|GcJqM@oloOnZ{t@M+;jld>2a_2P|y0u+2itYuxYY)KyI$*4<8H
zUX|gs!@|yl-u1tpDZa;%yDj`+VULBq7Ah=tnIey!y!J6-tjv<&x;*vDv&0nIPmF06
zex;VHxxZNPX;_|*J;adsN?h8HStz-EhE%qHSoo8X%|>k-hb<go(6(XP_=_fF;U5b}
zt@x)Of0vyzF2`S&$1EJT5HOh2bPKr?RB@H;zZOnX@;%$KN1Y(2=#>_V$w$5gW(4BJ
zVa$zBB1-xd8~o+S$_4Bvq1w=r9@4rE{<I{KvSHb%YNMJB+m3&jpJAh-jkJvt8)D<1
zx#jGvkPt}P)Bfu$<k)|D^2o|UuIY&!f3R2LJS$5p+xT;JmRA)U%*;dLOdHj0oNa?B
zR6bS1##wg!bDqDWd0Tm;Q!}}(m9$)uA61xFey)u=He4H?jk-4KF~ZwuXrsOjrX)I#
zANg^e0wPbDZ|8g)4Q!C`U(For+q{vD3vFETuG82C|GmK9uvZ^73E^~X@Mm(9q?7%b
zgy26VvNm!y@;2JoD7Del#<B6amUjGWo#}v@*=TNqNZ8UHUJDx!QmPY#?L{_*J?ipm
zWuvu?;_=)gdfDz)?!}yBhexn&TN`_C)5u|&jdnIzUZI>^*=TQr)fPT$lCC~GbE%EX
zD4*FGmPKIetd84`HabxnX;e+)3LBkmEU~fF#+5d%vhk3OhizPK;~E=xatk)DwHb$T
zlZ~5gbg|LZ#tk-l+92}ldK=wrbSF!n#pSJgP)bR$B!U@<G5maF3@Gbm<3=03Z4j!)
z0ziax5tGGd35dJJ#;rE`+30VhkB!@G^tExj&0{2SRV*Smi9~z%p8o@ZRzELIl-~dw
zci150uvPu^KpVvRv79l%fIUBwyKD@m&}<C1akq_oY!DDPgxl}#-Aj{8Kwd2WUGh%}
zae_ms#13BBUAYl9M%s9Q_G5!!!~3X$fjO3}BA)bq8~1%z_7j&#Hb^kwgErp1GxyU?
z8f%adeENuuM{Ufo@sf=(HXgI_jE!e)jHM;mc-qD|8&BAHlDi|U)drDhYxZU-1Wry|
zAw@CX#snJ^ZA_w^#pS;E5y5dU63n>Lxp7bose8`GWE)etYa7qo`0BE@Q*2O%#IF%@
zNO&VTA#c-dykO%+8>9)K3+{*^rCgCnx|ud!w(*vYx9OWUX4#l$<Mm|Zt2XA^Amo!z
z&9?CxjdQp&hYa7DBSA<YfpP>GQX>R5zG34{8^r6eLe_lxdx9RFc5T}Ql;N-LA{&cs
z0uAB;)O)>`9imFf+dDLpz1d#pr3o#3*T#D`ezNhijrVPQKrgnj$;O9t2OFzxtg-R2
zjb%1Iwegva<;k-v5@k_qtTINeeUiwE#7ZiTkk7;viBIIZpVL$JG~`9J;948&Y<x+H
z(Z9%*jW6hZzh+r&iWRE~>}}dhqpn$)>}wm}B+~enHa{|!8{w#|Y|g>N25z>o#m4tG
zcH8*Q##S3U=qdek+o%OHaM0vti9MuA5V=f?-DzW&4JwyNVSdDt@juwuW8+}51fi*W
zZ5&86xQ{{mp4@($IGrXW$oAl*4%d%1h;XEB6CnAEjYBq+G}JVHweg#c<2FttQ~hq^
z2tz&nol%jIc3|$XjYnoW)CEzxtU~@b!zo>RVD4xlK!P;6ckYgb)s7{Kj={e+{-w}t
z_>|RMxl=X@^!fq0N9v|)4vz7vHO@<OPKt}L*1$%{rK#wZ4w0&q`GLiGEe$=53Td34
zhLPrr6{OQBNrM)iO2bZri<S+_S!vLhNl-ErER{v%FPW4ykOqO<r=>xo<wcpFkp|1e
zS4@K_TKX?*u2o87@}OMhG`I^2naJyEX`GqHz%=eiqk0-O(rBN?rD>d%M$I&`Y2?zV
zmB!g=G)$vW8t0@@JB|8joR`MAtOhAwUCvLQYrA#Q_$}>TFt2=g3xf$@mpvs9Z<h1Z
zXh7x{#mP}C7Nt_H921IOkj9KD<;+=nVH%CoaMSS8VE#-ejXL*BlQftWcEe_2N>vt|
ze0O`E1T&g4Zz@xsGTm!w8cow^lg7pA|3}nUKsk|oUo&{RZ?rYRT{DwR5@3c2%uH~1
zcXxMK*ky5Bba8igez-60?hXr!yDaj(er*50Id$&2b?epZ^6vC>SEG;xg)NA;peR*#
zL%4_qbZFZ1GmhL|ib?muPe}W4(nhAVeQSaRv>9pG0@^E;_T)^oAjyJ=1tnOgElFud
z)?^E48&cZIlXg#~ja6y0(Bh-Kr7b99K}`#4Sy0x3au!sypppgUY4NvU%wylaSz#(a
z?Hc-|P%LdUTG;|BaCHl6SWty(2S4p+Th)SU77(G(=8%_m3Z)Hisccl>+7{HYps5AT
zEU0TiJqsFI(8vPXleWGEwCQM<OEIY%`Wje3o8snO=W9$hqr8+iN{nv8oVJ!FrMU$y
zETGL%TXTC-6)3c{pp^yGhNRQxrL;wD8w=W6K)bWjp-JyxK}QQlQ$@(X1)VMEYe7E?
zx>(TFf?gK7g7tT^pt}XThKW5a_|h$*b+?4*ZV9`)CX_kp?P<Y6XE66vvA2c(?}KYy
z6XFx&Pk;07?UvBrf&mu%X2D<!mXr(rV!^zw3BQs}kA#6146=ZnP}q7W9PDoRq}1On
z7|v$IhgdL_`7l#S7#|^hgasp68D;8=vqZ*PFpf%M!6FO(uwXomF$-o{Fu?*U%w!9u
zSU?4yNK=6Naf81?4?p3b7EI*|&dV8?#)YTy&#+*+$(M9XAmzoM;%u%06_TnyhxuH_
zdDKB%5vt$<R)|og78AE%3m<){1<Pni&@i)LIn5w<lH5IEg$2}Tc^;=;N$p%NNMV%)
zjX%c_SxXb&f(=}|_2gujSmA$u!r5<Qay<!b<ObiwNG-pa#&h=sBLCxKZM9$<O}fXa
zN%^Zw!gd<EC%vcs^6#SR(>H|sVPrq-p($y>i|Tk;9s4ZUPh&d^YGuIz8aCARGWyH-
z%Ys7|G?CF%#$gMNkPh?*j#_Zcf~o?l2{>-S2@6sRNG0H;1*d3rH5LJ!w&08f_bqr}
z!C4E=QDa(g-GcKJ{NYO$eEQdSfjLDlGNI=NFVg}z+k3@gyk&NkZRq3LWO;d7@(r5Z
zk>D+wJ{CAH#ZaIn<+g>+asE4uMD8-VN0aVj3`HN()EnVlGdJ<|n<9@a_?t?yC-E^g
zY=+Q|l+oLc`Y8I8ZC+XM+Ja{mJf}%_)kim(DdP(ZUUF))wlNfaW5HV*`4;?Z!8>*`
zyS4AV1+6t-r<Y#hAE-&Udp}aKsn#|hh0hk_O+6y?)a6%NmM!>hfh%8tqV%TZ4_bWE
zMW+x@d%c$kg($&LCM5Y%3rHg%n}F;B(h5i?z$w5bAiV%uGc5uH0i~vU7k`VLyT>aE
za0sB6{vg0AfRv@Hy@WRAb^-Ux`Y1|IH>Fw;kOasAVwQU|33yS$Kc{erHlR=hr~)(r
z)BHYNKn4MOzr<W<<97@22zc-%X3%lp%9MfdDqltcCA<2L{~PnaKB3G4vIw|4KPD?9
zy`D)thk%>{Vg>a1=*=Y{w_tQZegSy|Ol}*KSHQj-F&PH<4PGpePe8dE{+83d1q2in
z;1v)ppmcAqpGru>sa?QF9)1tftBd7!1Sr?+S6+I%@MLLUKtNDHNI)S0_2);I7Eo9~
z5djGT!UEz1>?sgVJ`x)*Am7Q@vnOJS7ZpJG>{x6u0mTKBpc1OVl1n0#Jz;%fBIRA5
zn8cXO7!lBLNu<k?NJ(mH0cFJCfp$rRBbG$SNg072PeM8Bozt=91zao;t{`C6l8Ea>
zY()W;SgB0Cc_Q{@(LfcBE<YVhX4M7M5I~!D(Cghb1=OMr6%i$(wtzYU4hVD-L|p;(
zs4oOe7mT+H>kAktV32?YR3ug!31}^#jesrNq8bZmBH&lW-;|Tcz8RC|j4cGTWYWq^
zT~#8gt$=m{dI;z#puK?KiUm86@;p$sMC^g4!H%Y7CnlW*bYarf)Vm4j&iwY9ARVs9
zpkObK>eY;BZ{~dj^kveIk@Wro2AKR88gIG6B>qZA7cfS^SOJ3t{4QXmfKgnXAp(X`
zBYch-DqyIR?5!P~RwZ$`fDz;;b#hBvG9?vqB###GF<-FmRByFW0U}MZg~ti_L%<{&
zZvw^(pjCYWHCMNU2R-~5mWC$^xcoJ?`uy;i?nzBI#7v=RoNuat*HO`bvRSRfc+&q}
z5}qMorhv5q)=|$2m@Pm_3NIHhho+T)MYQ7OPn<_x^DcRzfNgO;I?#Ofwt!moW|-X4
zT20;-3s@pxDb1rEek#T?CV^RD%J`#D+zJ6J1>6~#yh^}o0c!+&O7>H9Vw&U>T@$)(
z@Dr{VutC5M0Xqe36tIa7M+?HYSaQCZ%e;llwrNS^e>4kfB~jSQgpRUZz>rTuyP8Q<
z!7Ekbc2QGjjo&L^H<x*jfQ2{1^V~@|<=sauRxVKTjDJ5ReT}7}{w3g$fYSob2slht
z>k_(BCUi`|5dr-NTblF;9;J5cL7g5vE`X9w(3}-;N<jJl35~ZUCT;Y#dz(1Q8hT#9
zca~Nms<?o20?rG#Kr=$XO@W>`!khu#O9HM6xJHK{KLVz_OWa>GiS!kr*y{o=IfFN7
zF+3XR-Y>E9q!5um3;1qRqY1btAk)Vf3U>w2QNEqC+^m_@=t#h&1S#6Ul|*Cgp@2sM
z{uc09z#9Q?1w0Y(kARodcY5MeTJAQ7pVMN<<e5PKI7p^{%FzF$=sx^~B@wcDwIuS2
zYAT?>opAJn0O30U?*;rT;H!WSGy(;Dp?aN3BI8d2KC@@y<cIL>nWWpt1D!^Oz6tnF
zb6+t2k3gR3KtzU*49zZ^_~B-3N)f3<45SbBh)69WjfkL#kchM*(uts1<`<D(ghfO~
z5t&2?BG%?lbc%3^5Jf<QRfJ7Mu9t}p5#2`yz847EMbs-AqOdkDa_4`+4D<bx2w6m}
z_=sDCB0?3Ri^dEZe><ke;~-_xL_8d2<R#<k1A`tB8K@-HgNwHYHZDwTF*iB0h%6%V
zh{!7<tB7nOmJ882MP#S)#6?n!4&)H=$H+h`J?Wpgh*~?8OGIuFEp`VVc!Tw&xcXat
z`9$Ow;S~`rqJW5Aagl;ljB3Hu@ex{oc2x^fc}R@mTs{%k=KCr8`awbMMIe?-8xYZX
zY!bBz6}ym#!Xhe(s4Sw0h&T~tX;<~SiSZ(e5)qM1<W6jYh+-m&iwJX+6#CkoXK5r+
zM8EXOsr!YNHb^3oLPSI<5v4_x5K)pEuw-1DeDQ><LxD0PC>OmG9atLKJ=}k#WVoCN
z`g~q_5fwy`UXksarU{WBvaceds)%+X+KY5w0@X#-7tugO4G}d()D>~Fcfw3}Vl7(#
zMbx3z=$k;FCy11_^!ehicOuXyb!<JVZ=Zx(MM9(IdK-#pB%+y!<{}!i-upzLsfZ?Y
z&=Y~&?~=)^)Y&AmY$4+AS#L`btwhj=4=A-YD{VzkY8yUon-p<$^r>t7q;wF`k&}KA
z(KT<%PE^$ViS%hCnm(OHbRkhhH_<p5QRqXX%j7+n^rTKSmEKI~vqxmvm)e%2{ms+?
zOe)n)M-`;w(g%`$rO_f{yoldK3>HDd>~|4EMGRxhAtHP^($hLNTttUU;ZY(+ix?qd
zBu$q5iG@E2v}Dn8{o({|EF3#V#8}Z-OUKb@+!#X(EG>Eulj0|cm?&bWh+QHkiI^;6
zg@~0Rril1c#4-`*o#IqJ++0RFvrH2)o%syLnT)d-XEV-Wq&m|1lyDwL=QA!4vCvFi
zL^U$`5++MUTs>%<D3_c1SUq`_h&FeE>qM*<v0B6$9-{Qx`&uUShI_d^;SC}-ir7NA
zMEH*eH;LFR;<}Q2!=5}Xbuyg_T{nYUMQjs6C&wKkwu|WhIfgC_Dld&(v?c%Kbn4tK
zVvn)Mq|uwyID18$5ph<;+^@0wSlrKefX1_kznC8qahwTdIn3k;<53aEOr6dblzM`r
zCq<kx_0uBgjZsQENA1kwHxU;^Tomz0#NVu3qBfyv&it~7D@>w>r=VOEuG7$E<pv`u
zH$~iHe%n;;&|2}%I0}V(EZ%2)!1$1wrED5XdMx6Jh!1A2e?+`8`BM?km_KKHVd^hM
zRNQWOer+mmM7(AGj*$-ip2^Pwd}RK~_$s5(!e1DP{A=v!|KALvu}Y_J8qd^dbe%xo
zIf?=tfYW%L7xa=ADfCc(-2E6L^pNk2cd_(eWkL$+n51W<TRx-+jC2N|zn?Z%z{cEe
zDnI^;bpaAk8YlzEfCA(N@&PKK0oj4a|9Ex44P*wg0JMvy2ROdMn~8Y_#*B=#7pt|H
zu|Fr>aL5XDpXJX6R689*cRc9!0!4EGIe}cjh01|E#G`z<fsPY=eb0IOe2bxre|jK1
zKTrUO2Z{m(0WS~)LO?XoAvw+u#8T=3Uku=*@)V96dfWftlkaSQFZ~j6NU;GJzw$<3
z^tL|hD@4V<?2iKqQ{JVKBEY$kK35Ze{(OGY`}%zeKp3E(4<&$NKylF3ls_40lF63{
z+?el8Vm>6LkGMA38+*$i0d!aNqCCEmRHWRoU-rh70_}3+d-~j07AOZa1DXTnfeJuv
zfZjmA_10Svs0>sADgoUb{<OP&m9zV*QsYo*>4G1q4h)F(jmYCu_xO4~@TR=zv%QX~
zMNYc<^>VRWuXyw1^3?(A0`-9UKx68HRlWu=UcR8Ws2T#B*TqmvHUj8XEPBSC9;$D`
zHe}Y6$*=y{7C=j&3(ys4MaM1bYXh_eI?wgChH(lg_|4l6Xb*G({r5Ju10#`+Ormzi
zZ1nr6c{_8IYW*R%zZ-QlwE!tV4}cn^jVsU-#_vJmlh*kuN?Y;Jp1pm5XV1KS8HtQp
z6f*$$g@&92Rl-1E5H*(_%kB6T_zlQ!LjfBG1HaRNv?9M1Lx7>cHQ+ih3>Xe92UY+h
zfRVsb;8BC9QNU<mKH=fu7+@?w@8XRkgQXFgZiibJCj0{!4@|&+^KJ^0iHwsNCo{f0
z6ZIz($}$z0227`k1Iz^Gn))mnKfoNCr@@qDMj@e<vGVT;M9nj8Y>$j3YXPtj#@lm?
zSYK?WE&&cLHnJ>ZrNR4{_2IxuU={EeB>}5}HPpYr7J%L^q&HR90_&)$pT?}`EJQY#
z-ZnDX#Q0k#3%UItaDW=kVw`!m0^5M?oVtT?FR&BXMV>iIHhZYWN~JS0_V5;sNw<&n
z{fy}njMefWdn1SR`JTh9AEBE+z<&Cl>38EO$7sE3W3<L`-~@0II0alb{hy}kZ}Kxt
z&eFtWa^BRp&WO5b@=Mg+ms6293Ri%urk>|kiW|U9de^~<v{u{#ZUgUu4{UG;cmn(b
z+~w#!8k|1gedZ5L4-c6<0{&+5*wme4EKh-f7h>N6W4;^5ea1=8ffr0(GQMJb&G?3q
zELYb_{|?6U^X)Ij5`F|e0Z~?@wBoaA^OgFJd7&xZe`&qlAE2kizp?V&wE4j#h1D3M
z-*=`?WyQ0*;m{XvYAY`94|l#F+c?=*LGq=uBE1!g)p*|C!p06OZqD%u%tc1>04uD_
zZKh(kV&|*>&ZJHjT~<g;WYebLIiuNCD>N%~7Tt^)tne^NQ_>g@8Lh~~(aelFtjNM7
zD`PfBGRw|neb$sYtypj~MJ|r!X3S&S<h5dd*ti2wz>0!atg>RY6<#Z%t!QdRGb_C*
z0G}1fRz$489<SeuLRJ*EBG&W}U=p+<WGYmP0^NK?tcbVbVSito71;{-PVMxPSd?uN
z7{iRk7>hF|GA1!nk-qj%QG$7SD=Jv&!T$eNk5X2YHhCE)Wf{vco<0y;(M+voMJ1D0
zwxSC2s*I^W{?`}Pt*Bu|O)F}#UZ1fxV;x2+NnI=InY_~@p@9_*IogP^F(a*nO{~Ux
zNZ)v(EX}QGVMT8%`dHD@idI(iqIS6KZEZ!)o&L5~v}4kSk-k>b-ii)ZbY)jNeX;cX
ze@Euzs*@F+P2PnGeR-!FlkTS8!-}5FzqBycTMBn?$Mm(LpA~;vG1ZFxRt&J>4=X)4
zlAd1M|HW#&ga4Zq15FQunEXoR+@7AY54PfWTK}yWYQ-o{8fID!x8lo-|5|SZizBTN
zZ9aO_pE8cNVhoF88ONEqN*pzo-0@aSuwtSWlT3Xw6X8&*DW+0=qcO;*adbW%eM!u8
zD`s$XCgUvAa<&z7Og@*%JgU(tqxwr01Q%Gbki|t-EVg2a6-zm~!ir^PuH{U=<cX^L
z+^Eq?j^-JVf}(4zSZjq~qpD$@73;0oWyNkQHdwKd=JKJGbmNq=Y~n0it=MeEv6X=>
zrsw}z(Q%2<k`%VFxSeqa<4!An&gDH;?6u;f6`!m~y(rB-D~^&Mnw4yJfbk$B`T5I=
zLnc2=U1{?21C6#lZpAe#u3K@!ij$ml%8Cn2PMelzn4GoZoT;3*B6qTJroPC^CC1B)
zS4^9$Oy;&Je1pkjTK#Czqf-D!Z(DKSiU-W^Fy6J|9usm~=B81$haCNzCJ2)uxs6|5
zKlwkbykmSytF9H#nZIUy!T6H#6(eQb@r&;b^S7q5JAKr9lYd}R;f`@i{meX#4PVUE
zf0=x>;+qxUng5`Zh0R!7QZN#UvY}abV-TidB{k!f!bU|Xq~&Nj8`7Kh7ACi7BQP7R
zHe}(b&4yli;+;0QY_KzT*idbX_gddT>SsQQZ9I%Jqr#{%YBuOh+%_z0{@=C1ur5Xc
zGT4xjlQJ=ql9|b<!A9A#GS9}C-G&^dO->tfG0$x(d2GnbJfEqINu5;C2Cof!Y}ji<
zv<)#fdM_9qZSdLPx1o{^m2HS+`wBKxv>{+a(1wr=g;-3qp)iwF2Lf?SiV)uZZ>@;8
zp(u+9jA2G9b1@r=n|y5l6iGHDb2P$Oim`+ZC7CSbtIE>M%P^K@BtPYtlxLJ42&9x5
zoMPooudi`p6&4#YR;6CBp*nN2scS<Glh<TY%ZA!E)L}k!Rr+0;(d_k1oBB31VBXMF
zdR>cZY(o<pnzGW$)SKDR+~h56bT_~lW3+!hA%)g9v|*(!V>{EbJ(KqbVmsN;*@n3`
z%(J134P9**VZ%rpy0O7P8wT0X-G&|<?P)_lYW&$g^4yD+-i&>0=*xuk-lc;5O+LVe
zUzqQFZH%sQQ@q>LM*nK2{zkt7nE%c=gmEb2Fvj7GlrhjK{V3}F!QSaM%%I}!j~#8p
z7#qggFpg~|GycIio^b->L`L#3$%ZFYjdgO04S%vY)rM(iDy_p)%NXrXZzImMA>T`H
zQet2hwZ^=_Y|~~A6B;@5X(+l<F0)~|4GUOYXajv<agk}c*oGx0UrPPB(m3u4Q`uz0
zO6IE=S2M0LQ`gd2fcbjH4U8LYxY@!e-hri&&8Fp+pTvf(Hf*zDJ4bgh?yzB}4O5c-
zo6%V+N9|_)r?St6{WfH?BfA|3Y&dAcOB-I<@RtpTY<OnFa~lrZaKwi5He9gbs12uD
z_)h&i9Q_Kg;W+aXj3*ge{A0|%)27WC8_t^ioDJnh8mSj;n0zJOEgNog(j~^rj8|;9
zYT938a@~d-rgD?oWaoc(d+yk9-_-9ixo1PM3u)F?q<_2`Bmbcdk8Jpx`D4Ze#b`PT
zPi**ym8XoP{JlMjULdNh`d_dzZmD7U+J-l@oZ2DT@z#cSoaD3{&fnYcuMJ;q_+WbY
z$mEj^pH1ZplfZG~8vC0KsW>C??>77}ZBnopWk*UT$0`^TDzzPH>`2RsXa~JxPGUMc
z(z9Y=6c|ZwXg7)qJFKQ+v%}8ZVJh^pIoZ^mYMf$L*G(teq1d6CsTu9)ygH!Sp|j#P
zb&nlCE(;krI^}I3lO6Y$MlzeJS(s#HJlQQ>4m)z%(ZY_FcI2`nw;dJjs6>UgBd;AH
zI|{L7K09Je5BcpVz`P)%*VLn#(57KNJN(SUUZak&%ma);`~SZtEX+y?JBrXq*5l*s
zh_|Dt9SN)#V+=D^e4l~>xhl@lM8+h>WX1?18RRVJD{1mlc9gcGj2-zuq@caRD7CB|
z<v6uGV+GT)ciyPVc2u#W5i3<qy%v*dc2qZ&8cb?3(#36UJ3bZmljk~i)HQAD*-_u*
z4eV%W^11O*jhQ!LY-;Mw>}bwB&A&z+TiMatjwyEhNwfQop|r81tsU*yrn4Pg>}b!t
zgB=~2bYg6x8?Ak#c2rk8y4f*~#qM_Wuwyv$o_6%I<2O47+tHhq{&oyt(#MXzO!_gB
zAAcz2FLn&HV-Vf;VR1QMSN!}zL`c#4amK>f#uN2B8w_C_$~cUXQeO{@8o_*|sf@B?
zw8_WVG1lbWH+%nJK7Ns9yd4vmPh_0LIGK@r&OR44)sAU)EHIVncFbfxgRu<X>LJTn
zcFeY8jvaGZpU*gtkx~~{igNI>ypWYeGzAVAb9S*EOH7-kcFf{oyuyx^cJy=7vzJ(9
z$7(zFII!1&HFm6}!Q((x2iDoKo|YX4WCu3bvC)pFG>?WxZL(vt9hdC5Y{wS%eE6q-
zJGR=f%{<l~JGL|5LBok}_3Y&6E<1LcHkae0_A=jR$9@_ib{w?hFFOv|Q7a*;NyVt<
zos41d6DdlZ!Vx=;+HuT|<EEc8cAPNzNhYW4IBhC)^s^>EXUBPyU$E02w#GtA;p{T+
zhP8(OD|TG9;~ML?&D865++co_@s_Dy+7)xhj=Of;qjkxSC#*j(Qy(%ZpFQf4sr+rn
zW0RK{9`z6NmV>-6?;BI&nH|sVcwxs&J6>^;-GSG3ys_guErYcF+wsnhublLr@rxb*
z+VO$;N5)T#<n1#}u9wCyj-LaY$j@f{X2;K#OyMx<p2mT+4n#SS(t%X0keHguqk&Nr
zC`ut6D<Wfh2P{kkMoLvu8fNrg1gojo9P}8xamIJB;xu&^lUJ3~D-Ng*lyIP=1DXT6
z16~KB9dJ9~aUi#8pTU7FCeO$u6JurvZagp=EvuQD&4KJD&%q?81G!9P)jPvD4@dJl
zkdH}z#sa2IK_+oed@&Ae-RFyQ;A(51k43)&u?_@G%R&wWnTJfpo+-Al$%`;)bRp)U
zJ2u{dq7EcD5N5HsX;aLB;WPhh+e8+V97tvoF>UfbO;LPCR4E54IOuVss5#NT(hij2
z)Uu{cIVR;D_`iEQ6&<K#rdD<!!gn>RIZ)k!@eWLIpoRlA9T>_swH&DJKpzMCI#9=f
zx(+mRpt%F9C4W5!>a$HlYb?D_(ZB)Wv@sGIve<~Ru>(z*G-agJn6T05Egb0Jz^iKh
zmNclo`CBozW~68vCT$&PXDaRKh-YFbsiOm(9O%s6x|=?`FzM=`e`@?UTQ83Z^e}l(
z2YQ*jH<N_*mL3_6JH!1<y}ttk9QcK!10DF?)CV#7)j|6}8lDH6dWA>nhB(lrp3y<A
zuBIDCo#ns?P90;~jASy3aWrE|zMvY*e4GP+Frgnx<Y%G-lN?y+z#<10&+tulV7db{
zm``!wPbQ>KWipL=XNRAnGik`Bhzcf$2&p8q*x_u(IgE1|=Q%K+Izo?Hz)`Y1|2f5C
z2bR#f?Z8GBm(q}~oNg5r;Ins`1It-l!MKv~-<HN9R?{iKoLOsGU&pwfkqqo9qc%CP
z*@5j2>~P@d;uv~bkMu1+4H&mFZeu)9K3&{qFFm}sliUvS?qVF+-@BWdbh($5eGcrW
zIpRcu69*hPNF&*aG*0~Gz##{o97^@C1BV?r;=nBjZqpGRIOag17qRV^2bv`YjyrJK
zfh&Bh6Aqko;FJTW9XP|v1qaSLaE|$T#+|K=fkFQ`Xx`sg5H31!iFHzbCSBzyC0%E7
zjq&Hd25vCFX)1Rdxa+`E2c9`_kHx<kDerwI4;UXh@QBG@tN*(*_L%C$%0D!u=NipU
z{+~PW!hv_Jlk(Dmw<do@X94DK7{|9wxnM_XvbmGr$ot-b52ocu2R=D)vww=utb8%`
zE$PyKW&X{9?+*NMV9flOC?~z^k&wb^a0&~S1X8k+ijk6Pr%y=hL^>z3JCVbQ^iE@r
z2u_GjR4kd!;zZMB#$9v@^v`3(36%}3j5a6iPB@sm#u@hvoldwoDly88q@U|))I#H^
zn^AXyu9`^nm^K-l$mm2Sj%Icu8<Q-ISxuXmgXvS9G=ApfbRw4%g-ks+J-Bc3JWk{_
zc|IrdGcUkckkM<Vb`jFYn4BK{C%1maSjK=8K_($aO8qb-sxb2+jB%zO@5GuO#*!Fz
zqL>ryo#^01aZVi;jH=^Aq7z9@Bs&ptqNWqIoG3wLhQE{(rJX3rmiY@BO+=xL6BSq~
zYx*z8q&(x8&z6c#RAOG)iK<MhkpGM!${Q$d6r-9G)mg8>NJ`?tbhVk&&N**>GkS{d
zKa4(}uC5dHoT&T7Ti=NWPBdhjrcN|-qLG=mu@g<053lxL37d1Yr4ubon{Q8ziPp-A
z)~vKK^|nmfIgxgYQMHa7r8n~WIMInJUdXs~>FhN2o#^63S2I^PC%T)whZ8-S_cE2<
zObTC$?dybPvA5qi<HzOzCw(dfwOpv}!ayemIq}Yk_fGuk#BWX<cjAN-gPr)@i49I{
zbYh4TL!DUc#1bclvBQZ@Oky(Ji4jhWbYc`o|6m-=IEIl9H`a-9CSP(m-FTBvaAN;w
z<LA|6C#JBtz==PZ%wn8M(<)@FPSZF#-H91YW-^lgs%6w{=5tJCt`qZ^&o`A{w5Wy5
zmmdu-VzM`P%D16J`X=d8Czd&}+_YT7WCi0&##K(NHd9~n_0n2e3Rqch>VMgcjxLU<
zO{{EoVha)G2N}0Iv5m=gC-yKQ`yEc~WWLK(c9W9UaJ83}eWt#j$pI&FkNs~%{pG|V
zGxe|&N0=XFJZ9?k+eDpo;*=BjoVf4AX(!G&anVUnZ=%E>-gS2kS7+JyoRc27GN$td
zGjCo#&}ApC(NCe7#!$S%Nmrey?Kf8J>m0qoc$4uKBPHEta>t3gOuF-B@B=3vI`P_x
z`dN)T9>Midk2v*jCmu6-;>2?%|1dsfe8%|q;}jHLFsHmPop@#PBaQrTXtL}MHeVBX
z%Vd@u{NTh#T6<kkUHC+k#fc~vQo8WPiGQ6);ljsXjT&A2Y|O#0PJE+@yunN1yAwZ5
zzCEpPL^zn?O)!-Ui{BddHWyO6kj7;+R9Y7V7k0JwrQ;|m>0PiepV-}KSkZ;v(|u$B
z7p!bayr&dxXB&r^%jtrPxnwG`3(N8w3y$WZ$6ercA)1rij2;&*KQ{`K!G(-2&}Dfh
z7uFo`<#Qo38)R`Is|(qf=VHvxn1eAVBW3?28imZw(L65XHT7J4I?nGx0aGc+gnqBZ
zxZrc4tPAB_@Vh`yFBNqm!G(YeH8y*LY&LC<|3hwHh<PCweoToeZ2Bp}B#tqjv10wG
zu$h|VLNVsW850?^7cmN%Y}!OzC}HxFOiD49cA<=^Ckt_ur97=^(Y~rIR$#2?LM0}Z
zP0K1w4zBc7GnML85tG+sQiQJmU8w8AJ{R`8P|t<>F8o5yU1;D!Ll?TZ=;0x6BNrOG
z(8`6@E;Mn`cWR<rx<Gy1l$|s)eKvQY1@oPJr;Ezjb&+wEn3ey9+J=+by3o#rgNiZ5
z+Pl!f%-hk0PA2c{qTT9@mg(w3Hx|1y_Hp6G5^oPWG)H?e_IBY-x2Vc>jDLbq=<7m1
z)`|CLGJpnHR^xDk$gK;rT$t^`Z!QdWVWJDP1ve%A?!s6$9>O@3aTw!p7e+7{$vBG2
z@Xc7yM{{%xBSp)Wj~d7P561DPKEZ|e?Tor8=VB(gFxiDEob;y)(@mSHE=*&-rK@2%
z!_;RoIaDiY4wI!cahS|?VV(<n)g&^W@4^BW7cwqlT+FzHk!*^!idyb6J^`?ol@%_m
zbYT_q4K8eCvYK&?3u~FIV_eTj9{T@coKiQru!R&CHk&%#mLz>EM|U!Ab78xgx`Qn1
z7&Y2uD!X0SWAb{P(!6iuPqWH*fX0IhuUvTT!e5+v*o7l59CBgKYvZ98@^I9JV=g>!
z;h_u1T}Z3OU2x&s(#Q!H&hJS+$+=E3o@PA5c$Sf}pCdEov>6vgFEYPGON|RxOq*Lw
zuDWoI$#upXX6j8Q+mHEgGr42xcU`z=^7~Zx#m4`aAGz?i3o*YMb*J#yg=ePC6Bqtr
z{*-Yf|5t)+o^$kt3olK}M_HoYxbW5mQ3CB7Mmv4Iqbi%J@0omH{K)u;@iUzTnEcE5
zm680ns2TO$g~QKcez1~4LX>2z^C=lqOGw2eKR+9gMnYPSrjwAK30ba=H?AZt92F!S
zUt$ai3iOC4p;dy-w6rsEFghi;m`IE=BiZYP(r6NN36msDmf)7)k&O4MI!MSMA)|!i
z675}&OcF9nh?Wo|A&Z2p67opMD<PYN>=JTF$SGl`H&E|hpx3XV>n(#@lLNWf&)eeh
zYcB?KOCW5RDzGR^d_D>JB@~dbdaHM8@enCP{qY}v#1)j_<t&+&8E<C!B={wSBovYm
zD<L3ZXxY?331qo<QINvL^no1lfw^e{g(Vb`P*g&KgmkNe74ij6B?aOn#7pq~9+I|s
z_dX0vDHsS#sPU@EmL0)@L7|w0#cP6@4kjl_NS07jLM;gq2_+;{lu$`RNeK(4q%0+&
zw1h6JgG~pA%1GEA9VjQEN2);eeaU4d99opT=0ak52^A<yy1+1BAZA(Q=J~|R5~@h3
zDxsQ$Wq$@TIRvWCrDZ`1)hT<6u%$(qlp0)FDq(F2btE*F(1Zq<gnAMhN@zsUi2*Wh
zmNKcngtxvx14hG@H&it?lp!`SVS1pcgk}<2OK2mZxr7#!om;OZJKxhN)JnpExInN>
zAi_Fj&r~o(?bB95I|=P2Q2V?(6`TJ^Y(8IrQaeiMB%w2B??R=O==@@ghpvp>7`scD
zx4|&(C84*3AuLj~4?W>&^1c%KG4Ibffbkc`c|oH=1~Dh{tAyW7K3Kx<%xy!`Q_@fg
z!#Fyeajb+9Ohz)2!6+u98OJboTNW8-rvAZXJmUlj6Pb+Wc9<gJPZ}*U(#x1CVVZ;^
z5{^okE@1|ZRSD}P%#<)o!a@m)B+QmDN5WjHICX0z;7A>~`n<@)pfF!TgS&xx>w+}A
z7qI{T-8EWfv4kZw!X>Pcu#|>@gq0EwpGlrqDrvcd6>LevZ|Sl~r=kHOt7uXbH8K*C
z!}S$|8-0P&Qv>TIY>=>nCYOYb5;jTLEMW_0KbdS;UPx=;|0Haq@hQ=+aYkoR@N5c-
ziSeGhmd{ZZitduITf$#7XeI2Cuvfx<8W<AxvHe-iXziJ)jRG8GCHu2<#J6XOCp^r`
z)t7;adt!GyHS}Y&>`1sH;jV-e5>84uC*iz=QxZ-~I3wXKg~6c*v4POp<lj~W+b0KT
zm_3OOG`k$QAmO5f8xn3xxFq2+EpcT6d8Y@iNVqEDnuO~-n+ks^;%b##=|XVS;^2@U
zaiJ8+nH_O&3WRP^FBA-2Jsh}At5f>Gs<X*C&Ij&ExG&+Egy#|-NO&mW>-4}=YLI0S
zT8JJ=_*=qb2~Q;a!{J?vAk`wpB%{99&KtPQAE4sBknmE%X9-^<ypr%*!g~oHB)p;C
zOdEJB;hlv3kzl<RLEHJ{gtIY6ljAGy2!53CNkYNmLf2F2X^Ep5{m<ag$_#P;QZZ<G
zmyuG&HwoV*{E(1B#+=2;buJ|KrY{Ct0uNIK_FqWM91ICF1F2-BmXStAS{bL8MX2?j
zr3-Y34RpH{9R8t5!NjC%!GJ}EAS17gd@@AYc$#0A;g(^QVUyvKA<3}IIGI;;$Z*Q^
z6@b9d<UpT82F~SPkYy+`R2iBKQeN#(Zm}o!`@%r()PcFF0(Jh0rA5^vBZG`=GP29a
zC?k_hx6p+wvN5zWGt#O%*B8iHJd~BD&)MXU3sX{34jDOR<dTtF1~um6y8&0GI66fB
z8MIfAF_`nn#!5x&PktE%WK@w+RYpM>UKxdC6qXS!BSyxGB{3lxK00o}P|}n@Eb%Cd
zpN~6wN+2L3D5F>Z;HB8m<o>~@%Oc&T7(G}-Mx2a@j1n^9WfYZBOh$2v{)l^I2_(n}
z%f=aMZ|b;|=>oSFCMQy=EiOq$vP}D92lg!slAdZ)aBuzOk-K9{$|xnHoQ(3+9c2Qg
zWt5RomYUrcpi;U14)hO(x|NTmPN^WHqKry1D$AJW3q_^}Vh#n!Z1J8TRs2vOKxWls
zRF_eYsvx6=jG8j)$fzr$7Pat&;EaRGWOMghk=oQXgAxz62vfUJjV??I_@hG&Wb{+h
zH<a;v1#$QJz$$O3k!+kg(=3lPrqQz8I9E24jZ=SD#^#JI7+cC{#iX^24ot|b4U@Kv
z?HJoLMz>4Tkx3`U&Wv3cDHo*@cH?Mw89hwBCzD=`y&3z+=xe4@t^qQBk?~N&BMk#(
z43hC&!3zby%J@yjDH`fB22<^1?B-lUWDJ$Dkohnf!)1(?F-C@ed0+%%*P&tJBbkq)
z!CxYnv$S!yYAk1&Ok=EScpT#&GRDi8K%H13JW<9Znu(VJluA(|d+++E$oP{6Fm;@a
z88T)P|K{&?H87nC=@gyCuI9>^Cu26vi{%k=HAhD5@(8(_&(4V~V6zWPk}EBbv|nyq
zd@ho)SjG~W_6Nh{{PAmLtdp@!#&V9XpiX46l5rJdgS$bpq_BqOMLvVr^Tn^1u}#Lr
zd%+DdHp<u}(>BY2%`&#gxSlV5Bppk}Rv9lJ2X-%ytiKziEPci#E?gejE@KCcdCpsU
zbIM&Zu2SLe1y5ZJ5blw&SH?aW`)Rr0raK_x9hdy5jL-XH57I6WG7i!H4;+1QJ4oUY
z=0vP3B3;J&j&YXbGEOiVKQfU#Y#1EA`y=6ujI-3R3Z^SKC*wTLG6h)_T##{5#v2)L
zWn7YRS;h?+H)UL*MW$;K-L$#NB*m8^#II2uY1U-*ou1??xWZ`gTQcs+xG&?jOrN_V
z=YhM7rB+0U4~`E$pur~Nsf=eb9&u^^mho6NUb0grTBtfyk?Xk=p2+xzoaauUK-GCp
zI@`RWmgHLB-;<JbN+tW(Y)K07cQW3~kQHObk<Smb%qoWSk1{^d;beS~kxoH+1^>$U
zDkFu0C<WhSe3$V<Mza->5jjJrI!1_4FHGqW{+=<MQb8&OX%!UD6sDxqOde$pr%^!B
zoRbVOTbA(SdqIl=L4j3)O@XKw-so+v&6&dFirkXTfE5ukvnz10lW8j=<a1-k2zjGI
zy11y4g4WN2MuRAzc2*VIN)ft(xBL7V6?Etsb~E=V$e>`uiby#nNca(PnG}#i3a3{@
zvMR{NjZj@db_F>U#BnsIf?Nuyvw{k8E6AhJgCF65g1idyDTt==@IE2Gf-}d11sMxa
z9Y1)Rw+)_upFrqUAT<wBYK#IOl{0f1zk*l=<K88#d6%&Mc#u-b?0VNkavM_6*^^L6
zL189Es0~+nEh{55{{LAKiC0imL4pEmkR%1kOv2n;#i(%<B(g#+Lrq6b6j4w@L1hJ1
z6qHm@O2MvCzOo8RE9l)Mv5bPO-xHQ}4>$OpP$V4A|0!5bL3wh^Vg&_ZdzexyGO5H!
z_7#Q%t5WmoK1w2kY6^%@mKq9bDyXHPHnk7=FP~UPL0tu1Xyn{UuBV{Bg7(xG3K}SA
zNbNu!M<xF~)JQ=qCXE%m8t0|Zgh^AzW(t}!X~Ec%k!)_g@lxJU(==7f_z8)(RnSfW
z=@cUC0&W&ND(FNd92xGc;NWk*Ql|s`Muh!uy<HV_Q_x*O4+R4hlneTMD(I!4uY!IG
z&i6^|dp)>uSz>PmeH0Lhe{DoPZ-c(e$rSoiS6)u0=r0N=iHs}04GyAHfP&u?45rRi
z@P~rm6%0`@QlU@ThK4HGd(Asc!Egmzr~CTQdKDEKK^=6|cP}cGUJAWl<{PD8G>y6z
zep1Fz*LMh07|Vo|@tkpzg2@UdD4596hMB@yuLjBU6sl(J(4PvXDp-~|{3Tn6Jd;jH
zhnt~brh**`b}E>qV77wQ3f3r?qhPLr6*Q>2Ce5Qk(jj3nje!#3`OFtEE@YgPH(`-U
zmMB<C4V60l^SrQ(r^#{!1>%j<)=C8*2PRQi#U$6t$XYho!bm5hbqdzgG^7T<8rZ0y
zXE3-~!6uH9lDslP3Y`%Dr(n_8@K$P&q2ZxbleQ_?P9tY!g!q7!kzERQD>$a$IJ@0L
z&C8^AO#Fx*fqlFz(1NgE!2#-e1%D|xq~M5xqnvbD!QDM6$zUfVErUN7Nm5QIIH};0
zg3C0K6`WQ;4lmGxkUD%u!Of>J=b4}77C6V8nxgW*-a-w77r6|boaslOi@BoUs)C0K
z9?|eFWYp*y)%rm2x`Hp=joZ{W*!U*nEd{rk++n=Sc#rWuBiTQoI=(k<Dt0*+^S6S3
z6x8S+eoRyBT+HIM;V0DfD<i~7e9B4B7`LyCyrfy9&>nzDq2aZHHwwC{=%(VWf_JpC
zsqm_JuiyhM!Yb@4J}US`<HT<KH?~Ml|7TkH6?~<Wojv@8@xsc;HwE8mkymkjb>IiB
zx+<bnq*RR)$CIAHE4TfGr#>fipYP34E=+`4FSUv^DlPIM;%QZ+Q;jA~&uC$!s6YnH
z=~Z5eQn0G@={JKoR5(>ADpVCN6-W2RhPwMD)i}iymsRxnHSl_6WMu!arb1VdM@3#0
zZWSICo9YHKQhif|&vpoBP|;y`AmMXj_u78aGjVEW6<L^MWh6Ztlk8LsQ_0CB7h`TZ
z?!Fi@%cmOc-)&<|0To@(2lG>dObGwgGf1L+RU}$PjEYJsDy#6R@T&-`D5fG-ML<PJ
zrLEf0d47!0D$OAHgJd>1NR=wABLAvLoQim|>FzH=##Q5pQ0-^{6r~Ot8>Wz;qVLH7
z&Dr9raqce1B}rsX(IgegCXX;F!B~>9l#0?!$}pB?q+HWhrK34mo{CyMTtP)e)wnh*
zwJJhaZdFuNRnbI6Qx(-zR99)6ebgmoRiuWBS}N_98Lr9wyS9rz&*bC*YFup<>pmwC
zq3)}vqM?dLD(b7or5&Bl8mQRyDS=31BJ(0SLcw$C!h_O;E_4qyQ_);SdlfW~TBsPb
zD)K6KptXvYD!%1NXvKKb5+>e8MOzhDLW%8YNViWUGaCP07DYO!=%}KTisD1UT~tty
zbmpN#V<5U^nvU7ikkVa64;8yr>`~EEMK2X2RE$*7o5m6yRK>5<!m2UL`cv&x`q_dX
zw_|B+r+Vu9MMbHk(7ro9x~$#*C3YY+{?Y&`zo{6kVu*?rKN7U<i7UVP7B%qyu437-
zAPv-^tPf)x&PZlo#wU-WnyOf$VkwQE+zDgINqlg&im@uj(Sg<k{!lSp#S9hWIXZ!n
z^oc4anS3&nDJpFdY-FJ@RmC*sH8X@MO8>&1sbZ}sJWDnHot<m3H)XjX>2p-fRWVP+
zeDX%?JT>W1-vSj2nLMA7^sQ@n<k&FbVpfPxTNT;dA-qh*Y87i#5MNGh7!0mZu~Nk<
z6%(^1Qk6gFi(g$Kw3dbedAkwZNpojaWW5TyoZi8FgNltzNZ-U{vx+UI@;@e9Rcter
z?bHY#e1`F=2zA6Rc557Hf9zfr`&2wt@l3^j6$eyYqsCNmka}OmNfoD59HPZU#j)EW
z4R!C$@Db|z2fkypm{4Cd_wRE?6CP)g^b@q;oD9;nS)m#J(<;uXIIn^(EzYQ*U1!fS
zKK|jqpyHy6%XD;SG=)n{N}dYq31Ny}G4-oVF06{srO^!)w^iIxaZ|-DDr%MpIi$@?
z-))V#tKy!DM=JhSabJbCSCD$@p^690De7F2MD^|dEauR$;A0j4@B%{oiHhhG$wX*9
znSL?wT*V8TL~Vm#X}YO+rQ!ok=T^R*`GT)iwCWaotKy9cicW}$Cw!-Z$a@+dUHnf<
z2M9l^cz7m;vV2nUS;ZF>|FVZyt0E*)Ao7i7&5*EsC-9wCjJMtro^X_glp5-5XrLjL
zhSVC8G$d<Cqam$^f*QOU(rHMq!KT5kp-Q)~MT0=bw*oYNgw+vIL%%A13bd7jRYTs@
z5ekvj5r+n+29Jge8eAHR{uT~Ci%~U5%qc1}Q5ZAdO{P>$1EH?L&7^Y%BTGg;R&EV>
zG-T3{Swj{LSv6$WkV8W@PHpumLA@5FBE?q><<vmDVgC4rt0VpL$LFHr<&UR<P1hlL
zH5AZ{soE@0ntU4aYoL~=6I|J9$-P%cNT*>It-+_kuOUW5?b1F9^wXxxmm;wm;;E<_
z0#r5)Aq|Dt75(U=tC7MQ;xyxzT@lSVrPA>J$q8xhBxtCyDqKuMY>K$BhL_z8vEJ1{
zaSeotjFctQ`lyJ8k{U{BD4`kW2wI2l_Y0NQP)0*lR_OFyRx_?}DrhLD;o5EECuez+
zOkEwRsDZE&V`UBNR!6EZl2}bcb?&Sh8tQ7s{=+pj)Y33%yYFD$#M+wi+o}#DH4E{2
zY(r*rMcPn9BWf-UGc+{T&_u%k4Zmn;s-c;N-WvL7#!sr|8oFqBygJf?qb)VG(rA}L
zw9(K(Lq`p5HMG;vo>ToNgU41!KA#PIyzHegzD1}L>#g6#bf#P{6Ur41W_zD7?WDh}
zhHi9}@`>Fw?8zM4LqpUWV`38TsiBt!8r#IPuZi^4K+~b0W-M7mimizhX%OsBExaZ|
z3N`6K4Wl)T(Lg7%K^lJ5@Ei4`hTk;|(=c4a5Y6~aH%N>fs$oaTF#Vd7`K(9wBQ%WE
zFiHa{WbiYIIN6WYFpe_LkD03B4-Mlr&{uCJYgkn}i7o>sX!JprFolUsCNcJ26Cs-^
z8vdk%rVZ0{rmK4LFpUdO18=5=SsG4Ln`oG=VUC9N8a8Og#s6Fl%V^q84bRgsU&8_x
z={NEsCJPy(8zn6!`xTKT8kTC<)z(kHpedY88@pV?3eLWg=FytS8Y-uT)f#e64U<m_
zMAmZBI&N^XnYboGKg{WRY@>!v8a8X#!ku-1hNWhluXkwJsbQ;zZ8XbNY^UX7Rb+OH
zG_Kx3BD*x~*07H)_s~MoD@b846H29vPs072N`$-}B(C9*hQk_;X*jOo2rVY>5@?Ja
zrFJ+TyfiGdJ$-n}<(Ly1PO@@J1Bql)@Iyl4$pEF&pgODJoQ4Y;E^0Wh8K*oN2C+Q@
zba_ww5{+;T^HPLwX~qq%D>RQZ<BInxcONOVE?sAZ#2ZX*GSdBr+Zyh0-n(>baZTjD
zhI<@cL*2S2@_@ytwGq$S$lo+0Xo2<6myV4)*iSUv+!#~cgMTzU)$mNia}E7<4AAj{
z76%&JI#TMO=e=LiY`Wx~{>}SZ!-0)4Z#2Bs@J_>f4PP~U)9`@~dcgmQ@gwzM@mLD+
zHIhDS_(JPdjU<Ya!M~hDWN`7M?;29*h+iA|LBqay5{3E2lhmn^M}K-#=}4`kx{ew;
z(&$L5BaSR}q|=dJr`MX0Lx)9&pksOO1don96B0$8wyMFD35lenevxF=VdJP>$B#dK
z8gqvZrw$i$i7|OXqRd2Lr0lAW2L5CsluOs)=Iq4DGJ}qcIx_J=GwaBrqahzID=R1B
zE!nsv?Y_j8+?F`2h%cv(TsqFJ4Fq-MrX(E&b<plYRKmPE3h3y%Hd144Bp+3CZ6v>r
z8H*B$98F3by*3i9W9iyRj1C_kg)I9|Nc8K7)#>{<hRyD^5h4K{#EFp45PL49qcFAJ
zizI)yU=hwsyr_-@9p!aY&=J;AOh-u_rF0b6@p5=ll8$61iR3&OAcaCiM+p|`hWzKX
z5y!d+iKVFvMkJMGEW=3A{Oclw<v5ycL{ddM%DM=J%B)mkY_%>@MMqUm`gL8TnvUt~
zA{YAx32W-8rPD*>XsV;OjygIPE{kqJg{&Bye#lbSB=vOEXRg-wQPSP`NJAZsbc|n_
zOuVs<jq4&rn(1h+qpgm1bgV(47CP=7iEX8$rH)OzV|Qi@CS(qh(ppCwP9lCYQ?R{`
z4mx`2=&hrpj!rtd>F7=aZ(>qs9bKrWbkzHnM9~xLB2U&u-i{6t@1cXDJ#`TIza%p2
zV;U3htAp&xtRMR!vtM-DaS=Cl+|n^f$FDl(>X@hFHywj@$T5MLI)2wNgnG7HV7iW>
zI)>@^gKDZ{xQ-DzM(Y?u<-hJ9NgXsdJc>qX?m+dqUc$BA{bM;wspB|xSU=ycKfD{G
z{S$Odq(QFZPaR}7iR#$jH(AHQem;tl!MP<~B2#rtqsEN(w^-sOCq(EFGju%9lrT^6
z_blz3MMYf|oK4kP9i%XamWcHcBJ*`D&~aGD5$Zu5i*)=?$5tJSbu6JH>R3lZTE{XS
zt99HxU|FtXg%1Ci&`QRq6Ou-b2~l(vM=6P-YuNH<(s~^mbZpkKg_AZiZlcPrkF5L{
zLm7YC6CshZZ_}||$9^4@eTR;nI`-(;OLK&kT{?ENhr;V4l(G8y$Uct#B!na$pvK_>
z{KZL!bkKn+H%g|YF6$#lbsW=imL|B4<1~f)`%dXNO+!M*NsfN)>?5(uL4WM`AdxdP
zPIiTfwBH&yuj7J_t2EtoT-0%i?XNIiX55m|H)?&P#jPOWwM~Yf>pE`G^#2}QzCJ?H
zvR9I79`xVVaYsiAH=^9QtK;)<?@Jx8XkhEOuj7G^hcx_j{G-EB-~UL*-#Q+X|L#c}
zZU-qGTpzi!KJs;a<f)Elv^uRx3~q=#*P(BSQ0fb6@Y_L3{a;EW`dY^u8kuX7zv-y5
zA@Y_Er{jx`cRJqd_@Lt>jpXFuCmIhoW3ych6DKTrAhF&L@4vKGA4nWkJea#$<STPZ
zBK<o%{J}_`|H>9h=|(Cy%6Vx2&*;={q;aFI8|~ak>qa^^D!EbFjr4BN?)RD9pq<v5
zee+t}5Zn+sN*lL1-Ec9tx?y8tXLK-9mfE2x$>h2lGINDdHFeF6zL|Yw>~_P$Vg@&8
zS2t29WMn0i8?;Y8MYFh(m6dF6#JUl1BfA?p+{o!hE;qcU&)iJ%xsiuSUQ;JO<Rm|1
z0XGVo`XGxxnt2SP&(!^Hly<~ZmY^FUH<I0ma8e=0qKt(Zi?|WTgpA|ecsJcBe*!CE
z#$s+1XOiefl4*JKp0918II=8ZDrK3JWGqETH}x`1=wk%sn3Vq+HB&3P@nNlT#42u7
zWwE*&)tDSPW$cpIqjZ4w`K-Z8O*d+}QQM6=ZZv15E+d&Wa-$ye`iu=sy`dZQ`2aGY
z(AbS8rrwlEGdJi<0hH9j)LSxX<wk2$Y2!A&fIv3w-RMAL%!70ubabPW8+T|zx#`1j
z=;Fq`i@p_ZbakVf8-v{V)s5~f_GP5h9!z?=(aThNyV1ww->UoiG4IbffbkbIb)Xvw
z4SeL}H#Y{mG0}}lob<aJBitD2#t_qTD3f7~!`)a>J&|%z80E$|7DqFVVI+Mlxyt1y
z@&_y9O?`qJb5q3q%sbhQ>2A#6q$!MlGEQZj=BB#`#!+UvG0TkwZY*?THYbrd&y6`I
zpZhacjqrRXKckDx)TK-oGcKVS8u+i|%iLJbVsTF_Ib7++D(V_H*0{0TjXiFxbz>bH
zY;$8h6EfS(WCP<y#!a*!lr(Czg`@vtr07;U*3}py+f8MM8#|frGL<=n;`Y)oaO0F4
zr&-+Z#vwNjyK%s@ImqNMHwry9yiqv9%5gW2nl{JWc#=Arl1`Y)NjF}_{nyTC+_>t-
zH8;+>an6nNZd_oq%ZwKpFS)U8is8RgmEg~#TyZ1+kPz|frq7#9ZZJ~qZkhURS|>L|
zj9hN)x?(s<<H3FEJ~tk^@yLxIZ233iYd7Aw@t6wC(SO`{&g3a0<$Xpg=R%_{6kfRT
zk}ASUwGSncG9)?aEiERj{OiVhCZ8BTFp|wjH~L2zWAC%6d~qZE!*EF9s~g`~|8Az{
z^2Da_7!xguF(qRvMiNsqd08S%+;%&0&D2nO5Au6Zzypg1-3BHK9*7=*%@hw*53I~>
z9@sr_c;Muy?1763`MLhU7=)4sg{B!TOd;QNuV$uZ^+5N)%~20yCdLem89hkF<1I5s
zDQ^}Jrc5>bWMd_}2RWGJ^dPqfd6?(&pgG%+SzcE1d5|SrJVmDzGYYf2NuZzyG$2Eq
zN*j+xGl^mJG5Q%}JqR!fdO*W~@>b!IS;&LJ9u)B)&Vv$cKuPgTiZd2vOkfOqP>c!L
z4B^3($k8MZl1)A0L1M(1n<ZH(W$L9pC}Z-n^jmVEmu$*=P{D(W9#rz++0K|M9^9Fh
zKI={2<+U-DSt-`VzXkrP9;~kHujaw9wcgyPz4QyTh6go0#!pcSwV2fQpbnF|re2Rp
zeGgt#jV7~39yInCH>R>@MiUR3dQdwf>SRPSYGe;OWI)FZXyHLi4<38)#Di8IwDw?y
z2P-{j<3U>whI=r=L!X;Odk=bf(3^76;_pFM8c`n1-4N;Iq1!L$;(-thwFrjR6$owE
z5GhtkXfz{GerBM%2Wifx?BT)Wj!F8|Ku-@g7Yuca4oyEC=;J|Ox`6TE|55cGP*N1%
z_c&=~7p{tegz4_-p6QwHo`Kn&*`ARgE4w?OfPx}HQ4z%qB2iJ0EKyV>M-e3nqLMQR
z5(ELsK~$oE1d*VE7=E|ke)n_!|8wfxbL-Ws^y<~?>IvQbeCX)|f6+I?O}!<gm#9&{
zw-0@MU{m}t*zVnh{5@fR9|rg^(1*9#a;97QheG1lC*790?jYKV4nNi%nQ$Yn8%?^~
z7N&>!Fx-bpK1}xE9Un&cFq(t$;awlz^Wg&@M)~kQ=XfAFk}c<?)CunSg=r3tyn5S$
zLuK8E&bXTz7moE|oDUOxnCQcA<6X{lJo`$z4|XgdmR^+JJHhQ-zf_;<sVP28_2CmA
zX3$G%A|F2X;os5jN7DXuANUim{_#|JQTpanDRTajkiYx#Pj+YeFw2M8bjw`tXKbAQ
z93MXAN+sO7i_&i%Ob+Z+K>isW!-sEt*y_XQK7QSR6+W!=;Y%MD_^_C!^I@S6$uZu~
zFSBZ-7Wwepc<%?3{CU_?A9{`V<jZ{E)F@}a%Y7iyXsdi!?Za0-toLEvSa*#NYe|Gt
z^UX|`2I0@xIN1$!ylS<-_F*IICR1#)Q!GVtAmMKEfw)<43w>#f%j`BEzNN&6gFbBc
zVTTX<d^ok)-RZ-3+@v*9yJe8OWUXoZ1DjmVbdL{veF&tyUjs6c?3V^7xGw7+^5L)#
zN4b4`_+BdhK*<*Oi0JTVbsW-<KKw*)=~S?$W5Jul3%OFqeQ0+mdCG^MxiK01Y4go4
z9gGdqkz!4gmA1I2eK_Oe`}kaCpSvzMMd3Lg&ifEkkgec?4;L9Z72KxaS066<@ShJQ
z6#VAHWgq_Z;kpl3e7NevA2O<I(#7wr-ZWX^q}L|<B32*oS>}chfBEpY5C8aZlOdvK
zl4{&I)R{BcT{Fo&e~U{S{wwC<uLMgfD5apRf=mUa6|c<<1zegkir6zd#g)26!JYTG
zr8j#&1kF-Vj(a?rf`amjw`JNLOmb4}ojR@e=F?EOE2y9#pdhH=4%StmC{PttR8UDl
z6$Mol+@;`&Md_xARAmL9+?8Z?I@rOnZZ!oy1#>nOawMG>r8#~&D#xHH@GH<27z(J&
zen%`yb5dN~OPjnz3!4f;3Ty?Aj4&+2E8VOdl`X|v7uqMHAS%<WF32fxE<;YbH55$A
zb-zrew1#eug1Cal3La39P>`!2UqOKaS3y$2Jqqe7NGZ5mK`jNfWjv_~o>gm7LAJ@%
znVIyrJDMizh#CLRN#!YC*tu5$BM;>)t*1a6UdZm)X`zC&g8Nvipgw!gNpVj#P|&cU
z7a6Ebora3%{EZaMUX<o?|1#Q*9Vw*dg9@4`c%1fB&{V-g3R=;~uNFM4pqYZ^3R)<h
z$G()4;*anjks{i&rQ-Q5f51=QV4^<LqY54qh1P<U(D+X(XhUTM&vFX%jf2Uj6+EM$
zE&E-UOIP7AC}d#a)CT3c&nb9b!OIHTD|kV{iwa&U?kmopE3eD_V6qo}pU+KoP(c0e
z<J`zY<w_qZr2Su2&`H5j1;-S0R?tPkr<}Edt_r#-7_Q(Q1>F_Arl604z6xGf&_h8l
z1#c;MgB~*3?I|N<w0ToONjJqglGF0Nx$a5#-lY4%1eYCg*!>jr=KvH8Rxp6uu&g^!
z!Q1TXfn2IRGr?_BgRAPk;<`f=43+A`6fn#1!ZzQU?B18{kr4{sRWMb-hYH?P@V<gE
z3dSlJsel)+Q3^&Y_&}OH+_7N#K9^T6{@|9EEe6bSRPI<XUcm&;+VzTFo{>3``V-xg
zJ4#IwyG<6HBFO1bXPSbK6nxB$qhPw?T>%-5`4j6OtEb3kD40nn;U-crEXSQCc-NsM
zr_a4lU*d8<o^*F+^C#l?Ou+^PUn`ie;By7b6f9Tp1xK!6F<Vx!K>FoO%WunCD11@z
zNR}^3v#F(G@blRz^1tpaw?e^61?v=i#rV&izS&))V6B4H!uKvpQ^IY2X;GSgAz_uT
z6s%`(nBaL1tI%Q_6>L(lTfrU$n-y$PuwB6p1@p?f-zeCsV4H$zM+%w!mWG<(U6=Wr
zWRmfT)P0-1>`n#WDd45*@y+hdVTHS7?YNqI73@=RNWozR`xP8eaFD%>bNT-i*4?|)
z+XD9<NM<Zff0W~Xuiys-KPosvYv;Hd#=AvG2cYs#3W(a`^l=3z7_w9-Do%2<)9X}}
zQt`8b(+aLDxS`;Tg0l*)D7dQN7X{}S=M`L1aGqYL;P)K&q5>`l4<s%2dfUO*xqw1m
z#DC*jxb9_o*F)vJs|;s1$va3~Q}Bm^KUr6%NgcW?4-70NueCV+mjY&QD)^hO<$6W)
zo=^Ux;6DW=RPXZruWa7(-*^{sUI*zs+`^?*lu>b;irZCWsJKN%IThtqlvR<bdj9}A
zwz)Lb*cy$HrFyPgbcllL^>VA~b;|z>_}mnaPt>oV;!YJ6RotP1zDKX_*Ctg-#a$|@
zsHm!XA@`Tj-ae|Vf_Urm$!e;1;<`H4vjYjwIjRax#l0%(sqm}NRm4>!R2V7(Dk9WZ
zz2i_&MMy<hg{h+X;&hM2X`-dVmR=rcT5i<hw4-{b6#idhaCVB>>MCleh^feyDr{ul
z;`GMF=^Rn}aes1MrnlMIPOb`9MJ*Mzr6{Q)rQ&WCyri<D4>H}FDrn(@!wcCy!)*Ib
z1$9)^Rl)xVFg)I);-|%YFRh!Wf(IVjfzdc$<&zoESj7V>3RR?4G@ubw%x+rlv6JqY
zvTl9Vi#CjzfrNX%iiVu5>yqEM+ij#G?}b8^a)Uppq6x>ZqJ@g4Djrhtu!?5V5&fSw
z<W=tx74IZnPK4{l7339!SIm|wzS>jRN(DK0C1WxN-&)1v9Fm3yH9Vo>NfrA!3l(it
zJf&iiipeV4s(4yO9~FI7Jj27kicTszt9X{KrJ}ux4l15k@q&t%RJ^QumkdT!PW(j`
zy?1##l!M__fQkGS6&+Q)Dw>~+c1Ml(ghfRiUoGgOqN|D?D&A1hO+|MVuc>%le6L82
zIwZ6h|G?t8G4&tF?WN)^6+JmY33rrGhg+<-3bxFBM4R+e(Vu2fF+#-v6$4caQ884-
z+bRapq{-A^6+FZ;QqeL?_r<sYd9>zGIiq28NSV=a`p=O<PVHS4?@^!a(@Q72@5?Z_
zx!5mzAEjb6$E;#3-8JcMeBO)3Y;Bw<laHsB5-#r=Cdk4~6y$$%*zyz=Q&p@`u~Nl{
zDyGrvRD7!9BNa5)$3zv=nJr(N4#vyt3>7nF;<LG(b5pZaaPaG6DaI@M4EuVyUTQAg
zRmGPo7I2SGc0W_`xr#4T%$F=BgU{7v@4P58Apf;E&EULH#S%89Vv&l)j1o)ImpT>D
zqv*{1L&`E0%jr2uw|64NiI7a&o4-oMY8Bt8*s5ZUinS^>sQ6mNI&R66?pG?-(@F=D
zw9>qZ-tm%0M-GqY<c%seso1Q72PaCla2GF0-#O9qie^jF?ROSzQ}L~eohrUlv0e2-
z=#E@>hb%6edT~jbwRWl4EmqyDVvm@eLXM4H)6V-u!Y$9ZbdZ}`MI{Y)X*jIndli4G
zxUS-eiXT**Rq>08AGw89oMK>Caa6@I6(<<*RUD_a7nZ6$&TD7zk~D`$teHqLahx1>
z@<gfAjGyCNuEiNy7xsRR@leGT22~XoR9uvC{zk{k^)4=S+F!XVIqY#R6aT__nR{@3
zAur-Q?{UjtQ}Kt2o4M}qjM6->Zg%;XrGavZzoFtU3N@6~aFYg9Q9?sW4gW|NZ0%p}
z!9<F6|5H&E{D1wvu#|?<nztyeXJi&RZ5a(28h9g2P0G1UnHsV*+^(U5hH@IpYk-DZ
zH7{H@-Qo^yT8_R-SLZZIZqvM7z=QW48t&A<KvYrlt`{c~sX0s1^n6BpE>mR<RW#&i
zh-;{-p_+!E22+DigTfXx=$u8at7_0R@S?zxb0l<oRyR1F8mYS{y8#Wku@tY}JY2Es
zkcKcvrJ=fpAv+5!4Yme{ZI<%fmBHC~Ar;|}lI{`5bJQA|w~yF(wg$d$hEBpnZ{$L-
zG{MF-<Y~B<MUz}tLrTNl8j_ObIpoNAx2A?#8tQ1chiXZ=yVOu7mSWsU98A(6bv5wJ
zPfgB+p|75Xd<_jXG}2I@p-@A84Glzxafwkqt$C53m(=^%POcZ0?`Ic_(=6q&le1{7
zdDpo1iB!8Wo=elJO*AysutLL14G(E}SVMme12i<#@Q8*EY>-tnw9wF2<Ev-TQbQ|7
zcnwc#cvQn<8d}pP8rT%O=HJ}7k9cpjHJ)N5<oTI4nRLEv8x2p%kT{D?OVXUqGaA}y
zctOL9nis*IrDb@}qT$LXg}mwJjr{W(*cz*|otHGcEDK75v#7lk@xF}r$Q?Djs^JYb
zqM?(9&KkOE=*GD;Eyp0-Mdr&O&na`Wch~TmhSzDpQUzS8mEV=3P7e(naAJ#h+V82M
zmxjI?`f<RM+_yCELeN|AV4GAQIzwmg<D+t+I$TqZjSk5VUIuD-Tf>JMrfC?YVX%hx
zHH@SeX&9>EUCsNXWtfKH8h9GyHep}yXc!?`wsxm{oWkx{^qvNmvgHpnjM6ZHW79C2
zTR_7&4dXS8)xf3XM+!eINz;ev)vU<&S%o&IpHI>-nOjnJ<u9YXPk8=x-KpZA96Z%N
z(lA}aml_sm_?SMdVUC7RHO$a3Qv(e(O9Nv#-Pp*l!}IxU89%4b$<Ea<Ps4l-pKIQI
z2e<8K9B_7u0l(&<WRpWlR{VlHw^IR&XyJt#7HRyO50+})k(*&^F?-+V@}s$Pxv6Cu
zwze%;PMarFjNVk>;qCjRyGp}q4VUQ*8rEo7t6`Uh-5S<$AvhQfTQsbvsdGJ_-$*ku
z;AkkdG`-!d)4Qw}Q7PXfk)&U})R_tHHyXBS_?F#?kQHf%?HYDS*WYom67Eh~+x2{a
z-pDMY5bw73XxPh{YB;80pN9P!j%fISwsKPkG#p~s*Kn|S?{neU^2$!7z8B|V7u;pM
z<NlFbrftDb8tASRk~6Fw=a$j%i-vO=PHH%%;k1S`OgwUzb$^zq<y-1qkN8m@r*oE3
zE<44<&+E=>xS;VXe*DS^^FrZ)NiGu&&fs>53slzqP4hk*%wC%A{(-mRS2bK?$o1nk
zKYrKn2X~?$8Gi4;^QVTtxU)1|*Kk9OL)W5%aYwN9Zw>!xDB;IH8vfO=Q?9CPkc91*
z^rN&Nzr9v)|I&0RKlXoLNW$X;2}g2^A6b5s^P{XEnSSrA$br#5bTD3t%KQ1=ESGQX
zVr%@Ekr9tE^L9Tf_@Vfr`f-OJcluG;k1C>B(T_@g+$H+&jq&czyf8AXkT*5F^Q!7c
zH9tt$1<@y*MkarAjH~&f`(gM&?)Q5EoF2mSNq~|}FEH}Hk~bixA0a=&epu{CM`azh
zAC4c>{P@U^2)p*9y&oO?sP0D%KOXSoK|f-CWczWCA9el6q41NOTt8eto?V<1_k+)9
zP59B^aLxm_XY)tDNk51+{YVKRzgx%$|Hf+xsV!KixU}aAH;;2+3x3?^M?F9C*<;=O
zv>(45h!yxz$N}GoYsYdL_H<hvkF7tS!_xYGj6UWOJ_VF7Aim#^hJNr(WR3i2%tcuk
zn|LV3S_l4$m3utV#E+)5i62k+@sJ<e`jl+$M+-k5_M;j5I+4Q{JwL+vR*Ywa<M00%
zZ|O&TLC);TiAVk5vy58#@kw8=wa5HuO{WUS_cW<J;f^?8k^H0|ZTxt_&%eT9cwz2S
zemqBm2ye@80famw*iMi-&(g@B<d8HhooIi1_M^jMOY(DHVy%g>m;GqFE79Qz?>){W
zz0KTL{OHJe`7xNIy+84)A8&9${pjRJXFs~oz5TemX~FA$bn~On)_8Y6s^;W2>y&8R
zEcu!rN9V`p)Qy*^5YK+1W)Ci3R_#^Q5<UHxJ2uwOkN$r2^5ZQ(diybHQml_3ef|7!
zHF4?pTFm~oDt;A-^HUR}XT=Bj@iy%?E55ryVju@FBld2K`1(uv9qY!2_%YOvF@B8o
zV;JY?$NPSaWEXe3@A&a9-Mf-ILdKS;8*j8BzuL0cdmMTD`0oQ_ANajDoQ~pB`f;|m
zyP<z<(3bdJd<f?m@1H^A{21@YWIv{G73c<+@=-l^k{=U=Gdp>3qN5q_vOhjmjPs!%
zL;5G1pGeeCBp$e&IQ&R_x*s3=am0@wxPpGn@ME(dTl|>m$1Fb<__5HB*;03|AM^bD
zuNm4dO|ykhxjUN2s}D(hMx7_hvbE3sSh_YjpL5@rQ_@L%!Ci3K>*Y(%eVRuW`LWoK
z<$kR2V~P0B(7icJxzpcD45G)L$XP}g?dc925?{#(@J9S=KQ_{BUW~7zXYP!z<_a!}
ztr1-7=kIvE>{o*81)1HzZCe;8dG%`IzHj3-U#Ppu?>!-q&mrU&`rr8RogcgW*vggi
z<F5mWZ~b6*+l9Xwi|_DbrysdDV|+pRq};e~L5yz?-|fd<KlX9yzm4zV#y_7^zh7*>
z9|!z6=*J<y_kC8im+SHgV<QI@9HvW`%?_^4nYK9bJ=b(;nyJ-~i68y=iSg5qf9Z05
z9P{I%AHVu>oc_=&ang@devCLCJK;ymf8!r^j{i(EUW}dLq6<0g$2+AH6)z+x{Kb!R
zBCJ<Fo7wZiF9`BggOpriH1^{UdX68L{d_P;_7&NlyG!Q2{ArB)^r~d93I6WKnI)d^
zx@_~mq@89@<lSJFFDR@SzbO(n`!|D3NpArEaSP}ur=z@%lDaqGGCDGJJk%&&O2?ez
zvC=GUk>KkN7xs$Xq9aoW4N_JIpLoWnxz@W8&(g8?nD;Wony<z9zQ$X1Z?bplxJ}20
z{zL^Gcj&lX2cM5^UW^^CmCJV~4t44*7#1tI7^|pb*1UKn9s4V~b~<<DbMY!VUVklS
zF;MHMs-v2YX&H&y&Eh^CC)y;K6d|ghro&$>*L4`hJitK~b5lpCn1^-m<?n37(Gk&6
zprcSnRL7Q4u^b(79o2Qz&=J%5R+nt1s-t7XY{`Dn#!ZN3T^)Hka&>&xs({HAlGKqB
za(A)3rjA;|YZpuE=(wktpPZTV+wk)2_g)?6gSqu|{4+C$DPKpOjq$UmV`*BfRQ3Zp
z9@J4^M*|)AiKL;9Mndk_v1D(II!xbfElq4J@{FUgCOVqxXf9dGAJWlG$0L$`Sg@!f
z_1Q>K3oV3D@~Do-bnGg`?n1QI@wkrsFbcwWLdTOjehJ`Q0Bv+UrQ;g|TMe|;@w5)b
zfNJ0w-P=Cz=oq1+osMU9Jg4J%9dGEEG$r<eju&-w)4jK)yrko09c}02bkOnY*<=GN
zd7qwYuj7kjIV~F}U(wN#BRP}vs*Wx~ItfzJSqR_ca{g$ntIpqKrpCMx>#n26i5Sys
zbe>|~L&&)8rQg)iQ%5fyZ|NAUV~CF4^sCd!{yGNe=%b^rj*+L5<CmuU30bf-y>n@L
zpzb~7f$42dcADGWEH_9bmzSm~oOXY*^@8|N9qFHw!vu#5GFzp3`duCG>G(m%j~pS}
z)G=Sj=eqa5tq*im{M?<UW0a23^hOHjxswIQ>KLbEyp9PvCemUeY@y~=T9&2`(?KP#
z#<Fx<{sm0OnO0d-xxaMGQ1U2gDDsbVOxN+Tj!$&Vm5yfUn8_`sV>X*@p2al2c@_si
zoYXvPj*d^MzdnCd(}Hb@<P-DUdGt>X`+N>{-dFR9U+DN!=f9k=QO5!u3w12zDs!8^
zk+(?4=6&(S!e`V-E|IL!EtA6KI#%ddtz(UjmD~t5lB;wy>6SUtNj2-1X$m>@nY&iU
zS31_~AYaF5voB6EZm#?1=FAP8T8-o!+skfZ%R2Tj&Ts?L@pNq0u|vmJ9S2L^`z<Z(
zq}b^;A?%Anb4aN+z2iHnFw5Pg<2xa_&lga*TL%;6IZ7dw_tEp2WeC#I@OrJgI+lN=
zM)K#^^A71)T$uV^@UV{BH)>IML<f;_;!iq`GE^G4#lSHg$8}uN@f$;pj*~jha<g#1
z&v#F8v4oKStm8DN+%>hJAk8cZ@tl-i5IM8wC0kVGqK;o__JTAupIMf^tmBG~|8$fv
za8<`O9XECSt>bq_W5(Nt$v^2-+e?+Go_s!7*!$5eO0J9ihBW?{j@Rb76fS)<YuGIJ
zA4X=gkm+9?%#xHeu&ZXWi~(nWOH#@}X#;O}D1UWPA+!7MPuf<U6It114U{(k1AOdu
zrhzOW<qY@+#HzN)y1i?Bz_px3;pD9bZZmK@8=31?GVptoWCa6v7~VUQ?i8#j$Wo@I
zdt#ODOWkFlvH`xNlBtS;ss^eV82@0B*@wr+eTKKq$u$Fh19=ASHJ}?X4DhMQxdsA;
z7k_dL{JP!^8ZZrn41^7I{XAB~fW?*v#QvP-RySY^XVwuCF~B!KMFlDR>qhFgwK2X?
z`1<SwdA5+B55y^q8%S^%M?D?Rm)*Grk_J+2$3RU3_edk`rIvx(2I?5-o9|Me_`aT+
zc}F&1$W@ohV`C&&-;C8WkZ)kPfp-iP7$`LGqJftTqz%+J_^=VwyEV6gf%^<RVxYN!
z`wcWS@Q?w%1MZF7WFrHkF62DGDObsBY=DvmRr4r$P~=Snn;KZu*QM}b+Oun-Y;Lld
z0ph@A=@tfNE=xaZ;4uRo6Uml>tpq8jPHP(QGxu==OY4_mmYh$&e$qf215e4=IE-fu
zd~2lI8hBa=2h40c1J6qD&v7o>a$Yd-ykt2HzW=dOBDr~4`eg&{4fHbb7G21|D+XRO
zz(3x0G`#KE*+3T|ud=(|@lFO#EK7G-R@l|>!cG_4?QY<~ZkgRU>l?MW<tfRomiIbW
zM;dv<Ku;lW3RdZoV9Tj)nZ(`(;$0H`4Gb{QM>w;6h4eFU!LGyXKz3d7-a!Ti3whhX
zoCj-1x@9sr3^6d&z(32<<aa)m9#+gL8DZdE19J_`qZ=5QI<M4d17i%lZ(yW>ANYq&
z?%Y?(k20{XMb?f3vHRw@#IXj(8TiP+bb33d**KRGc(Q>B1|}Nb^<okY`==L^8KOz1
z7+#2GnkwW&1JjBnTN>wnY~T|EYxgB)OOG=IXBl8eGwBI)T@Iu4#w2l$;k~hu=~L1F
zW>?N<2IkYX46HWrxq(Yp+(iZ!3;DvpmqI99U|?Y}?|IFwvOK-Sz;Xi*&-VCIZbJj@
zs^yV4d@4;`VPGZwRyZ#lYuFtZ(ZFH7aGim#418^%_hom|JBj@*v(_7Yu`jyzDAijp
zbeE@ZaQg2gHX7JuVDc4r%Gw-CwisCdxtp&S)*s+*^SlnN19&`u?VP58n+E<iu+zYI
zw6??q?$ce25*L%l4D2?r$G~0#$H&JHa$Qa(n;wYmGq9fvr>FRawF3qoaPzkBiXGwz
z4Sa9l2+b>+KNx7TJpDwgEY^Bud7Ai>fumBiMa^Rxwmf~DD`?=Pfl~&~8u-NkW5v&g
zcb;LCBR?&YGxWE8UiKU}*Phs~43%Bu=Y=zSLC8hHoMkSHE*bdEz-3XpLcTWEV_puU
zF^jIr9KRkA`<=n|_1GVRe+phVa6<^?e{rvEEk*K=fqxm~1Be9hpMeqqln(#_lni)B
zl*|BHUC1dVymSC%0>}v9>aa`}72z!bl$FvF&9f-X68&-k&zHWM@6vm34dAwb=aW?f
z;Hv~~4}gDHuNd&2@LWOo9RWO%k$oq7-<88!l|)FLy8@^zyow+n{7zxD0DJ)`0jL3(
z0feM$EdYOjKi&MlfpHjy$b*6bLGA@67KH<_L}Ck;wKM)Vm&q-%q5)J7pkV-w0;mx{
zEP#6gs2jlC<>_p}Q~)^v!~@{l<#XBZ&+%jct`spYom`%N^;+F;mZvFif282<0BQz6
zNv#0th)(SQ{#~9v_(+1t#3BZ_yZ{OUC=7Uk?%n|E3CR~^h@&ta@S@y(?6*szK22x4
z?4p4*)ud)2`?@~>cE{4j0p!(6J{Uj~ArA=hV%;?0UDlfg@Q9Fy0(e+R(ba!JZn8Po
z=v;oQ0N!sJZxKMt02YQ*<oDa@Hv)x^20(l)fXRVEk|zRqlKKIB#PfduPX#bIfFS|2
z4dCejdU(p1kV-xiz)JzV96-AOo)yV+0lXMMw`cNM`g{N{h>({OW;wj3(PaAoIt0*_
zI<)P^<SPL*{><$ZK%Z2yBP|)gq@FGlv%d_;?;JoEQJ~HngVP6ly4?eKjdttlKG)NA
zTW0mTp7VNf_RWBI>3J)F-a>i?&`ZefN3tmIBb;Pl0DXn`3!r}hEWOw)Yd`?CHzrw1
zd|OHf73;HfC@sl}1TZn+U5JMVFfxD-gufHO2qEtZzDM(Nf7MG<?cWwz#8Cl^rhR6{
zc%kIga7+N>c~_N8j-`jUDHtcV+R@kLC6dDFzBGM!k~B3r;9ccETAwpTvb5n;As-5|
z@#)-d0qhLmy8u23U`7Dz1K1G2%m8Kuuz>3uz-+GF;W*Q0bSmMW3eFXrCzzP#Da;rC
zxgfJ&2>FuBF(t+<!^ollmIu6m!?ZYnCB=NHkY$2AO|1~JQgBrOs{>dgoVC6RU~K^F
zB)j8itk)l2Q$-bd^!l29bu_ju;2py@3U1=22w;owpZ1rd{2Sq0izU?mR%&e*+#&el
z{mETi)&Ne(6!ruVt&=#&P_rhN=dry3?4yb9$Y$Cfz=2}kczV_$(K#Hz_d<>Ya8w8@
z{t&>A!iRsH{E2&~agxGg#ihrKi%te`p7*NvB~J<YIe^nb&J@ef3JI&J^8sAoRyEPw
z#6>PNw^b0&1aT>V-xvUcP=dG|0N+9XCnp=g6^6b5DlT)c1@L>oJHGOG$%8kqGJgd4
zSwX6Eo%oFa{$j)nqFfL+17PVbL6i;R?*RT`BoRr;AgIZr{{kox^cI(?MV)vlk(U-M
zBgo@!h7ewQl9h6KjOTSKGw4l_NB8nUZ?P%`u_6#h(7WW_8pLfu+%BBiJA_maoZcdf
zk~@W06r}a;3S#}c@ydcERfJR(tQN%kYjP=6gV2H~3?dzbKL|aDoFL*s7(wsD1T*Me
z76U<VWqIBX20d5rxFI(bL^ud52wT*=V}B6GK2FvUB#8tOE#}pQyjRkV6-%;(%;}j(
z1d$uWJwenB!sU?k6o*t(NK!Br#N9$z#1?7=F(;j*PVFG-P`)OY+3~kz7b2IpJXFXF
zf_SfBJ;8jz0>Qw>c>N$61ihP@$Ah>pi2H+R9rV_*VGxaiXi1yP4N+tEJ2uuVhzEjr
zP<WFd9uh)%(;xzKy!)nyizPevB_Ao~&4siGV(;`U>af99((I#xkBOW@n)jD*lCJVZ
z5Kjid6{o4&h{2!YDtC>y4dR`3?$z%T?SgnVh{ZuHk&!<a#NZ%?1o3<jF9h*o5HAJM
zHHdCOyc|S(E?<|#t3mMe&YST&db%BgAiferM<L|ZR-~!ZiM}Vw<XwVDim*G~;O98g
z>p{F0#Ae&2{^APRJ%V^cl-~?uU=VKy(KCo%LGR{$`>)=O{98fvmTVtEO8N@vC)i(b
zfFN)72L-)P2AD`5Rtiam1~H5iygNB2h~Yu+DHD8r(8!>7e0nE{5kb5w!uJH<7v$NA
zsYvsKAVzUP3sR$l-a-A==~+AljSXU45aWZG5X5YHP7o8hAA^_{#79Al9-corh^aw*
z7{rtycz|cRKHt4L!zCFtIK5+VdU_BaOVP|AK4BMw(=#N?B66mpTC+sR?59D@4dTln
z76dUbi1}M{<_Gb45Z;Y|AV<r@=dQ5m3sGRv!XOrrH!a}EhYZW~6{eU-mU6j+I7Ooc
zv7B)rh>byP3Swo@J6DVy=&lW7m2jRhRts4Z#MV|>EL|4_6}}QASs%oPAiky<XS&Q1
zJGsf9zAD@t#I_*5rSWIETR1`?TLmfM!Df39JA&9B#DO4o22rbea#s+$g?uMCb$cla
z_t2|@;O8XezADVL>g*G)R!??yQU`-L6vPif{7AFU&p#}9MDY6{nyg4ucxJ8ldB{&9
zJQl=pAx8yS#B?Hvlai?1QL0e?bP#74h)h@}&eA1<C}SeS#5smg#%G4*AT9)PF^H={
zTnpmYp!Z49myME_c@+@;n;?awujEpGg=^O+*||x<?;QWz?w>)tGRsxm<R83PxJgQ`
zi{yqNi~iz5=O#&LtEa=Mf4Bjo$$x|RkMYw=l`v7tL}?QxO)vXstt64h$OALnXJ_Y=
z++w1viMvcxHu1!%!b}slnYi6VmWgsE%A0_RTTSqDs_kL#)2b0G(jD4*{L>X_rV1wR
zG*MCN-eH0gHo{a%s+?Yt-nb&oT2)L`HKCdCn@BpTYJ!RhpAbsQ?9EqAOxux9!Yo%)
z=YUNFOne}peFaU=-%JztT6O4Y?}X}vgfsiyM>)0$$3$Hdc_tzzq9$@pxF)Kbm^0HY
z;U?oIYM6*gHrqsw5EfPGmLd+{nNOXBiI#)Y=IPv|l-4v+%S1}}-Ga+rPE(&<*ET`C
z$3z_y?{+9p&h;W;_Ffb9Ox$mxp^1DG1txA;nQkDOg;J}&VA=$$u;S@-86rLEKGX9|
zDmOAc2WV>Iv{BgD!~-URyb&<5r$(BCY$91o=m`&*c-X|eCI!t*Olg(HbuS$#WUUsQ
z2<IC@EQD4j9yPIm)-&;#iPk3GGSS<_<6JTmT}&+L=RRqAC+c=4o)yx@#PIp<QzqI9
zd74WpWSYNlaM#qzc=9<D&zpF~L`T!RJ9t6xWx*Fsyu`gwn64B}v#7lYI|wpM`K!V^
z3w9DrZY#wi)*^N_(al766R)w6p=q9$i$0-x-9!%)Z?Guleah6!1o2H1Jx#RVm?S6O
z(lU#rkBPo)%EUwy{Y>;1&G$_VFfq`?q<C_KiMLJfW@M;Lc94m|+yc2?NBkIVi0OTp
z#?R1(i4N6<bG?fBiE4%Kn%L<incky2eeV9SwbV$usPr<*#5mKtXW=kLn;0X)v4WKF
z@IStoCt7ArGBMf2EEBW2b|$8p_}KJrIu<#}4^0gD%q`;6Oi=QXiRnVjm1$-_k@3th
zF_Y`kG|53S@eX1RH=v0=J>4%&@9twR2WHoqPY+=@N+v%OY_`$60r_0`7lPE`{Rl0<
zmKT{=Y~lhBt8@$#OSwG@Q$LzmMsHk|v(dyR6U$Ak;Ld7Xd!>mrCf0J;G+Kk))q-^@
z=aa89v3^7DdJ`KMe5S;{GO>L|j1qDZrmsc9EI;_#Y+|d4Z6>yu-UnjeNT<_o&1To%
zQq9C(6Z=f;V7O?U++|`nm%zk#j8SjKeyUJFq?~Dw2uc3&71o>Q?l*D3#9<TPOT~j6
zZ9(dg$-hk%vI;rtt~bjaG4X>mMM+URUb7~Snm9&RnUVOJ<9Rs$xNv4q2svrul#rkN
z1r(kZeukF-6TfiJHcV1@PAV2DoEJ{vuO==r#)fcv2z<TQZzg^>@rQ}abc0GsrYk0{
z7V~RD*utMCuG5kslnH^BxnbgOPQ=7tCT=op-kQC@szXlluV9G~N`~+sEl{R*533I4
zr9vJjp>Rc|<XtxlGD5f|#OIFYmk*(A2$>;dN#oQhYKofWL_&QEIW~lFYY6>nCetg^
zM7l(U5PTshA>0x2*6z*_Duz%g<atXKL6W;ds4Sd5v!g{8B~>L`O_1jeF0>kg8A2!o
zEd+lEjlWIkAq0dNAskDkDS2*Xx=$)E7{X_gr6e4J9fA{rC7Q3jQl7$yaFXg$F<M-m
z5-MbekQ2i85O#zR4<Qjk_YhtSAvXj!ghxYoEQDkTsSp~moe=I0p=Jp8hEOkr!_D1V
zA=C-so)BtFmXg*T%GVX1C)lz>c?vHa&!ap)gn|&p!o5$hP_TXoX(7ws&u38s;eA%7
z$(imCp<xItnk<qBLU=HQ<{|GAUm+*mgp(cMJ{$shQ^AKg=K3zP%|ci?!+k_BxIMqi
zOqW$!gwRsz@_5in2(KEgLwG!d&LO_BJ@rHgPloV(2rq=tCggo&^bF0rw(u$8%(fNs
zv>>m)?Lv4~`h6}0)$|T*1Elwy4(S&|=n%pyA-ojA%OUTY)&Bp3RA9O>)9o0-t08m>
zfxJk8a*m3F=@LR$85McA5SFb>YkTuw51~g06GE66!W$vH8Nz!UOb9*cJOkZ6A@mi}
zD}=YWF3CI!d($D^BzeCO`iJm#2!lcxKqnj-=dshNUuGa1tdZWfwvdv+Aq)v&SO~*I
z-ocFD&<&-b3ex;SjrfiTM}+XM2&qu?1s@5`J2Hg7SLBZgc_*t6LfE}B&FrWUMvI*M
zJQtBZV5i0jj_1f5C7CFh6vE^XzGSnE10hTe;nNT<?~HxO9T&nZ;mm#%!p9+eBH8KO
zVzb@StI{**u3xxJGec<in@hFo1u5d}5axtHAvy88LviZN4PhSFG=%w5>vJhJR;8)K
z^o3-pxiEx9A*|zkLs%Tbk`RtIO|A)HDHnoH6~ZdIr3hDWJFH4;H)>Jg$yI4$k(^|;
zC=?Z~E!JNj!iEsG78iXT!ln>5bEn^^wNZp@gnUZ~--JMXrmxrL{>v_f+eG2p;<_x_
z$$8QD!qCFlMVp84X9(9r*b~Cu5Ke{ga|ruF;5P_Agz#es`x*B_ILKLCb`LYVGe&Yq
zvOQL%zZc07!T+whEd42j@>kvClw5X6jxu_PWX!5GvlO0?qLU%?lI-aa&WK?z37!q%
z7a{*!g>xaC58*-xTq7<AZGJI?UukVw0!n`463Aj*5&T{7s^B$2>ii*Xa+!wxUT`CX
zzd|S%M)@#q($g5m!zi@tu;qV3C>8crpXpy&+5bW)Q7kDb<e#O5EG;d(j9^CCb0-Sx
zUv<ldy@_WEW`(hLRhn6ZacdYA!>A<sw}o+sRAH^#!>CYPeR;LKJHwufQqBq9#o@Kd
z|M7FTs*uWpRRl{XlayBr!xsjLB1pn-o%~_%gON}e;V@S0jOk$*VQ)3}U2y|p1j8`H
z-nU5nwkWH0KEGYE!mz_gg>iQnP8bmmhC>>Wh=y@>Rk}tPu`sHKG47gs$LchZiC=YP
zhmjLT&Bn=i7>O{lSEreneL&Ea7T8EqNI{D%eZD*Ps#`ORT4B@<qfQugWmFv4Jz-4y
z+$*K?EV<_9g>i2fbGjGQ6H~B#@&l=4VHoK!=2pkN>Zl(^0~#}eyCS$RjQhj57{;$*
zGz_Cr7z4w2JB-F*JP^iHVYCh7!7!Sz-)8aF?6i9BKf7a1g*+4n`NM+E1RoJ>F4!WB
zmO@&E@xj#iV_`fhSyox@bBP^Sr`hJ?(()66PYSjX98^B~bQsTs(KC!*VYCb5xf=0T
z1xcPI5&nF!<OLxw3ceJ^%f<5cVRR_wuY}RDn2%XshwXF<qjRyOi;%8ibQ99OSpJ%j
z*9ChBz7fWoLW&xBD~#S@-1TYf%zrsO55@X~(ND7EeL4O^v98}H`-gG(#rOb05-JZ0
zV{jN7!`KwYsE)}dPiL2Jmp>$op<xUQV|W<vgfS_M$zkwOlOyOtVT>34ZW!-{@x_|t
z`;ukpNLsj<j}kIEj4{QMv0;4O%B31p!4K|)FeZj^e7ie*b$b5vIE7P0bA#a2Fg~P5
z(ct_bJ&bGTk{^XJJ&cdT_#})4VcrE}Mi?{0m@oRX1m_CQ7G#5SgnSz2pE~o4`kg0|
z&x+-r3;9CuOF^npe^D5V!&ohnC4wsimkKTmW4RD&7U{1PvP!T>vZk1?4P#v~r~djd
z_+?pbeu?u)f~Nag49F^*!`Q<4_KO_}<C`$HhH>(xoWo&k<Ms)oWVw<%xI>Y+w#j>P
z?{*0e{@ju~g?z_LKp4Bj*du9w7+?D1d&Ah76(?cZ7lwOlnq+k_aexEh)Pf17Lt$*V
z#}j@p-R*xj#!i1=6bj>~Fph@ta~P+?IL2k7LKvs$5*Kq%FvzrX<6)P)+QnSrYx#-J
zJ<C#ZhFi6K_BlFp&$1+E!}vuc)M>mSkLi3ERJ*`^y&;bZm%{ihj8+yNwQxC%D-2T>
zvMpTYiZh^Dcz9^+_b~oo)U{B_!k=MW52LJwOba){_$!RR#RBU`md)LicT+g+L;g=O
z|5wO=VU(~?((;0;bG*c{l5Qyrr7e(@5zG+0MetnZyD6t;mgt{8Q<}V-h4L0Ec8WhU
zr2rOgwLo&4Aj$0(DirfOEZiwPe{K$o?y^u>+Nma3#X?mfUmW$CWong?>9e4SP_+;i
z^2zG7X2CC<I=T=;Fd!HdGzCKz)UN;chI&gRpY18_SV$kvj|fIBRJTw=coDKqmgZQP
zRwn-RD7UVKxP^oTyG0_`LT!uJR@b$V6iLd$-9lK(cu1^ip;ob^-o`R@EOf6@aQIxo
zJyP-MWBGX&KcPZB3;7lrTX?`ifrUZ~_ggT|x=d*c_X(f9v}}C~4T^bo%>+vqE-l;8
zLL&<#R49@>XrYOPW)>c?(3A}>ial)M#fGVeEPU{i`_<|+)qWIgUffGdAuZ@sH4{`|
zYt(tnLTd{V2T=!)TX=#av2nkRCoQzGu*bq)3r|^SYhk>F2^OB_YFc>1!kZS_S$NjM
zs}?$0c+SG}7GAc{-ogtO7LAC#XyGLbp=3!WW{I>jv4h1Yy=S~)p`)zM3zfY$d=aTb
z>};Wng>JN=g|5X4|EvC*H2AuO9zv-9zv`QMX7;qu%fe6#!z{dIp|^$p76w@8!y#49
z=xd?h|9?D1%?`BiwuM0!21|G2t7eR;>J4cKhjFsR(^WG*>Y4dzC^6)_oZ%MUu`rSr
zwlKoNyB6NF@V<rJ3p1JO|5BI8iuJ2y?5>=VsG2d#!e|R)EsUd1<%}^!nw2xCsh_P&
zwOy4nit0|ZFv-GF4#2`>3sWr2vGA#dsTMx8@QH;PbWRH&S(q+^9MrfBJ7OABIpbps
z#QDSAHhtZh7G{aUY?`8R876A7v?$HBFwer578Y3e%))%p`9kzRw@_wVCe_&H@%}Nk
zM!t|f(AQmTVF?%10(Dqa)Gu2mVU^_;R#@0<VT*;87FJnUZ()Ol)fU!RSZiS&ZQHmE
zHH)gS7Mr5vD+@PQr<wiQ!bTa%CJV0@&#Oq8J$_?htA(8wzO%5+!nYQ-Ti79E{@=XV
z2=&<o(=Hmh*hExdM@3WHXJNmEJ8ax(<A8;O7Jj$*%XS>HaM;3G3%^+S-r{Q=aKge#
z3qM%+(ZW&2Kxu7i)r{<F89#B0HA{YaIeDBm7bl^&e0If?oU-t<h0_+!aHkX(QMrg~
z3o|EF%{XV_yoE~^ezS1F;uBmmE?W3inqq5A*1}9S#VVIATw&z5a7}t=zeU{@AuCen
zPYc&A++w4wjT;O#7XGtP!p2Pte_Qy+!oM_K+<S+@XTKz-%q@AaO2&mM8JkCz>RmOX
zq>WNG%Gk)Ty{iC)rEPTYR_bKAY${VieIl!5+Q_nTtBu=4vz(3cHX!`9DxSBzT_vM+
zm5iAe-P>(GRojzPkkYeNGT71k!`zBCD%ptH$hL8pjmkCxHi9;)*r;klv*EW<&4$m0
zVnda>%^H{aQ(W=ui|$Lp+lgc7Ha;C6Gi*@dF-at*jgSr7h9h;uHXdzU#u83KwWf{B
zL~KND)DU5HLAJ~;N)!}uz*Jz$u@SdX$HqN25;k&eq-@+R%C3#1jn-8&dX0z?StXfU
zzNU>@Hfr1WyK=@~GFldq-;``!8+kTw^LZDBdu`OSkuObsbtTTa{ik_>g0<LS+D3h8
zyn!gN5w<|JB87%F8rfKEV~LH%HXg9i$3|Zp587yA<0Ts}+h}UzAsdg|c*4fRG>(my
zHd@(u#71))Eu`5}vNTUu%ebvylGvwlnMZ9r#(r&l(=(IlwoTsqomo_bPugf>;~5+6
zY&>OyUeVUZ)6x`|l{#yyWYA$qp0)9ujpuE=Km{r4RM}g47SZ2clqz(C#b@fax6#2y
z4;ydTc*RCX8(nR5v+=5pPBuE*{Aw6q^ztmznU>+TpmN4*lCn?NCGRdxy+%#3Hj7@T
zQ=P8cvy$hrZ`$Z(<1HIKMaWVLnR*xN7q!;UMt>V0+L&fzfQ^ARM%w&H9B<ngWMi0(
z;Wh?yoQ=y2u`!erKUQMi*3wMNX2zJ9eaFTK8}He8-^RN(ydt@-v6Qym-ZPUrOw5k5
zG1|sN8<T8|u`$-hcpDRJP^Y$B4aadtZ1YO8s0xv-O|~&bW;#`RXG|#Sf)_ZFkECdZ
zjhQy43+F}ZWAdJvpKy1C5;vD6XW5v|x;Ez9{5csuwK13DwE5iNj8CU!UaOk%VngpW
z=zq!@G5a~qZeyX1MK->)`H*4HbPH@ACu+~Unmp1h$=zKfq@0_5Df_kYtBp%GmfKii
zV?Tqcjg>Z5+1O<B+j*?EvBt(%HrCr%Yh#@ZRjHCul-N#<Dj6HNC97n7ZDXSl@}g3b
z@R_<>=$STl+W5}KRvX)BHyb-_d@D_bs%8vomdrR?_xdBrbMf-bRujoC8@p}nwXu(T
zHc_5wkLX`GQ<wUiBp$MNRyk<nkd2czPT4qY<9i!NZ5*?4M0UiFHh!}4gVd#ds#iYo
z(W)8s&er7~CqHiEgp~H^>zdWP2#{Mf<7XSEZTw>6oQ*TwT(arTa-TLXLrxv;>+?2$
zc#Mn1E%OS+i&xS0?)!N8-)vmAal3;G4zAd^YNND+G7hfU_?@A~#y?y~8-Ft9+xSZw
zd0b8%*SX?Xl7F;HacuM%;!SF{O7Vj7uZ{m~lyFee;Tx2^!B3SXF6DT^zlh(mEr-e(
z4sLN!&OvzxWgT!AXFAAo_?oATqALQo{Ik5|{gQx#TOHiyfLpt$h)ppj6m9%F9Ng(Z
zbKrMS(Lp5#RUK4waF>J1(rFb3yy&nBkq%bGeGU`{suWQ|U!?+(eoLY|FdT#&gdGGN
zK7u$S=)iRN==coAF2^m;)L>sJqUFGL;5c|x>`=7v8Bf><SE0It8V;Uu&`w4Yb5PGg
zzJqKBIU<QW{5~2f;Ry%1LRi;za9J9;yI69MgPIO%IjAj?I)bznm6^EQbw!d_tbebA
zG0%8s9;N~jHWVy$kQP$kK?5Q8Ik;a4HEHmogJmNJjU7DT;6Vp19kddKCJr8Q@UZZv
z4&NY?alCRyGY5}2XzrkegE!CAEm|OVVP>LENhY4Mm>zZTn1d%Bv~kdyhkpl8$cjJx
zw|83LQWlN#LY0iCr17@2IsK<f1{24_twiKe_E`tdIoR&-?az4L!3z$?IvD5RMF%fA
z7~o)_gO?q&chH^H9dvN;ii1uLI!m)11z!~`as$q{i-WEr=_bf?1+OVgbU&uo9rSSU
z7Dwyg4NlNOPY1m?ys8<z%FqMZ0te4MRW#o|4*ELi=b*pi#YvvzSxUliS`>IQF2>(>
zFv!6O2k%Ocg9V2<7~){4@S?LZPng3Uydx4?smQSJaThpzCzrRIMmqSw!6@O}^+iVu
zB8#TUsKz+hB_1-~!2}139V~G$(ZM7KvmMNFFxkNrj?=-%4yHQz(7`kZAF<Qi^7p+P
z3&l!CV<j2$Ns1(&IGEvJrh{4B9kG(sp`6{37a=bSpE{W9;0p&|I+*9+GY9h>d@h5e
z!%*$HVl2vXi5ECn=<thX6kJGtSUH0Su%h%*)r_UA=wQ8r4Gxw&Sm9uegS8G;I#}gk
zwd~Dr7H0Cu!Nd?cv8T6@dBz~FlTH~<zoKow%jtGc>T3rZ9em?ptAkD4`;01^%5LEx
zc@33X|2v#8%c5-#zLiGUEQ`)=&DrVTI|rpAp8a<@*zMqggNqLKIN0mpn1kaE_Bq(^
z;E01C92{_P(7_=GhoznJ)iR291gn4Vc=sUZ&ekPwQ@zfQ4t{cQ)IpKtlw3Y;tCqnm
z`3VOn9h`OWi-S`Res*x$!5Q*+`QGn(dz|Y|Qq;KDtaL}8JTHXpkW=AT2bUcD>EOD9
z-=ye@gR6`-4yaJ%#@8JD?jSg@<R9GQ#dn%?Bubdr*9`|Z9sDiT{}SYy{^Q_Z2md)J
zA;zHxj*&#qWR;R4Bx#*nr*s5mBFGR)W&~M6Zi%35u@1*yE`stA+#W#%5h8+HBe*T%
zUESCSZxtC`xlK6cJBn-F8R7fO{x6bLjG)RIFZxv`iD2+;*(ai?8bP%PE=KTc1ilCq
z$|D#Off~W&FLUZda8CqU1pWy02#g4_Bgly$5J6&1+K#{x5{%$_oqRKbPz2!!s@AW~
ztQElnYtk>RNgu6~|6-@QkqDv@RFB|?wuRd-=hUF`x`LSCfHi6IhSlOkrg#L;*T}8S
zmLtfGz>Od&wQ5BWY@9!3O`0hc!QByjwI*FN0%l2wZ29{&Y4$a+TyEV6@*;RVf+r%l
zH-dT*JQzWf2=XH+;3xbM+#f+<1nCIsN6;XGaSIcz|BL@Lxv*!if+|~cuB}P8e=x7%
z!+HOl%4x`naGZZ<hTG*giXdX;Hx``LJwBv+eCN)1(+D1lphW~NBY2qh`8(b$f=41~
zwJ(0DVcwwzd3>68^9W`&&pR+DUb$kORuSyT&VMw5$GC!P(^Old<xY7u9$H+`n#S)Q
zUr;OYWCU#@c#(@6!BY`@-7nQPf~O-mFeLu#Pw{6WXcxhAG*kq4SozKFuKjETuZHva
zmZg4O5>K_rdx5^xr|{eQd4tw_!j~gxA3=`@-iV+>1g}K!VY9r~X`DL?JF;Q~HP)t|
zsF3%}3$Br!--!#Io!>cvE<(BrQqnDg?!sRymfU@!AX%aIs7CIa5%i4UZBD0AelJ?M
zwD<O|enQ?7>@C<wu&?0hxv~DDKTNMPAcBFyS^Y-i#31qBv5jkYSf4*Mf?*MCiePgD
z!$tljhi$~)iC{zo??&)m1k*(RzTkMlk%Dyf4<Z;<%ts3uBRG~TF66iVUX){+AlZo#
zOcF9#aEc&Hr_y4=2M+Z%`$rK>kKkjGd@A@!vE~dRGX-ZwFuPbjM@YLLOV1TDuUP(B
z1oMme=R&>^+;q0Yf(RByuqc8JKe;QoeVjPSV#zLvV5tyFmPN3<nD=auSV{AiNvw*X
zR*%@~2-eV5%IA`=6$!~YZk!0#OLl|csk1T4zm8y|WQV;GXLd^j-$ZaYg74{L6SB5O
zu$_Jz!L|tg{xbG0m+VUHv&pe88)G}^DjQ?p3I6v<CiyPmB)cQnBYdymzGC@)AqNBx
z3Lc7J<i0qo9N}h<;1|Z6pW{D9@KXe*xljA%|NC*-qY)g7;J9Q@)vSF&bXassBqte#
zI;ENYS>&v~@_4}+DLN}SdPa<;=ZZ_uM{uE--@i6}DT3d)%27;<;xfY~qg)ihD6U3u
zErN1Ul#k+f?%8MDKe_MLrvIStU5ztczZt(C!Ho$15_!p}S9+6HlI%Z%|3&bxkal)1
zOG}8(2L*9*rc#nEEm$Us3?Y=?5=Gf!o+%_N3O?P1MTp|oD11>UQQQ{Av-x>d7|f%%
zJ&MJRG7rtkt02NVqPSBC6)HwishHmtMdf1t#ieq0^>A0NDp$?UuNLL^&gDCIbJZw_
zdK5EyxGdG8@QePgifJ}QO(V)rjq+EnPnc1JqNo=|eiY#-vKyw}T9F@%!V+#r;Y1OM
z;=5Pei@qe0DH=s}k<<`ml_GgIHMhiaL>P}E!NEk~O18FOQZOZWw_r^{R<9Mssh7OQ
z>xkqY!Meqzc~RUe{PqnA>J&s#7)948x<!$WqJ9)lMbZDO7*hkzqHOj<QQQ~Byo%ZP
z)8J7wDlUCcNMpeV=pGYOMYWoUq-his7D*nCqFEG=NVa(tEu&~9yoKPNVR5QGD*VYP
z9uv}9@Nq$wJ`siXiA&O^Si-t(qj*}f3kJrYiK3nGX9e3w@tlz71z!++QIL(iB;;kT
zR0*%m4pF=!l8%C%1YeD!plmivJ4?2UAhQ&97d}StwJ2T}(j$sN#X4_9@n)1S{X{R3
z^b>q5irzx{2==9O-tZ=Vd7Riygv<_zVqh_UJBl8=5)=-OVn`H2MgCrK>98n<7xQ<b
z7*WjM<*sSzwfuguWMmW{2p?4}86Cya1>W45#)@#9;P@ye2$?82NpP~@6hZ1w<-AJg
zl6(}!^eDcHVto`JNAU@FW#8BfJ#%J6z0>cPQ7njJW)!bBjn5LCEy(N~A)gA)rE3ZK
zOmKb_p9}dS3MML#TpJ_u;UNp7SRKWhC>C)5C9@Yty+@HO5nL*`OmMm23c;0vs|0)h
zn?wBvXOvtUMT?t>by4q4i2m}~m4m6RTVordxT`|;!6*(z@pTj%qu3P1<|w|6VtW)@
zqWFe>+q_`a&Dho`AKH`H7R7(BCWn?yk+*v%QEy?{9Z~Fz;y@H%zFt7#cTwz(VqX-y
zM1Szw^zJCGZ;tPgESvh{!%`!g7wnIM$kc^AQuofM3JymxdvDHBnzS(SeH2Hc_<?~d
zE0@CQYttk@M)8wKa-Pd)wq|$tSQNzLf+yGJp5*qA;^!z%NAX~FG^vg=QJjs!td3B1
z{1U}E#>wiqy*kcEaUqIp4CYZ>jN(^D`zXe=PF!L@_%`{Q@M^cal<-MMO;5$IM7>8I
zF?*FQ7v_@u5yhYMx9Yg1I<`!RU60}hb)w!=#mZKX-;CnNp|J*C;-#zO@2K|}B^1X0
ziQ?ZVNd6NnQQhNAC99)UF=utwDpMUqKB}v1_5a7zSpZ9Mv|pc#%fa0>*zWAk?5x|p
zaB&Il?ykWh1lJHOxN9Id0bYW;2Y1(mKydf(nFIZ=uWIVluTMYS)6>)4J8LuOoG6e=
za&1UXmShSWdf#-Ww81QANK$S=R^qJlRTCq%4bEhq<J+`!Hl(*9rwzGm$Y4W88*Xed
zv)Qasn#qPNHpq?3PF&M7+aPxt`jXs{m5!Kl%OJU@Q+6A2*yPc%dSI$9$xjK*+&1K~
zVa5a3l#%hN`kQ%e$Y(>9(yshAgtwRl$YVk!BtVki*-+R9pH2P`f+98)wc*oqx5Eax
zC08*UG#dug(u><*v*GMkU2gUzzFm6Ywp*a-Vf|Wu(`kcl!?^ak!C(*BMKx`36B<L8
zJCaEaUK`#!T&H%p12zPu-)tyjgWL@)WJ8<{C2ZI*MGxB$u_0<hlc)ObI-Xb?HgDBs
zTf0S<C%KfAy$sY!*|4p-5pRRs@=HLrN29f}Hgq4RRj^_8QoWoFTbt?SZSYie*PN<}
zmfx4WBD18P@1+xL_{oMrHdM8tnslHIZEdJ-Lk$}m+R(^`nl{w3p{@-}6Gi;{jM_FF
zc^g;xl1sRboT(c|lfR7{)#K{fP~V2*4|Lm6y@3r)TUpRp8gD}j8(NBEL)MAr;XQgY
z8|o}@CT)?hx#ZR`8eZ2vnyyxI`i7QlZA0t=XNDz4^(?NgBjUF0h;L^@dmAPN13%i(
z!G?}D>)vAhZ0IE8N)FS8A8dFw!ssGBK<G*pM>^-UZV2?Sp{I00cB2>jYSA-8?wR)7
z?(R*q4^?ve5+t{HgSh@S{1$W#kUINXPe&Rk!}2G$Jnu;!Up3f<AvR32VY&@NZ5U?5
zSQ~zpep?fF__03Rh7mGm-fJUm7|o$O%7&{yY2Ekga(6Ph$=DbhmXFos?q}m{_(hII
zPU3NW_1n1d(kG*}i8kzhr%kY7<Z?}55<6-#ReB6p6HKvTstw6n=`9OIM9=MrpJBsH
zX~`nzVjE`JFq=(XV8a}nJgL)|Yr{MnZl!k=A8g9!hYdFC^KJOwTkT^KL(GNJ+o>Eg
zcI%7ea2{!J>PzG-%dy+A%!WOyw7r|n<%9$Kb>E-XP4nb_bSrIGWkVkgeKoAMVT~NA
z9b@eB@B*x};j;~2WQN-ChYe?BvdBobVWSO)W!TuTN%k%k+OSs!v$QSFTz1viVZ)!~
zE!3^lZPe{l36p>R?zCaSJX5w^GSc>$yJec>@(2{VsqM32zYN+T+JxVYrF&clY*>5N
zE!#oqkY@TJn>=67Qzv=&&10?7S?#C|$87jZx_X!UxD6+4=$AS??X`ANx;?+U%5w8G
z;gp={ZDy63dN7-3>LvZ0tTs0MXTu{KF4%C<hPyW0v*D7=`dQjl8?MRfF-O15<P~bB
zPbsd;BwAqJVl!^okpH57(}u;_J^D4L@NN2cY)Bbr?pf&e=k)w-lRtmC|FPjd_b#pd
z*M<i&8GC9EW#z1(m(TB(y;RHPl4_d|)gIgM#D=~L%y%|CwL#)v*zi)OfUKg~JoeZ6
za~sZ$HOhZUG3TcC%7!%C%?7WH*EYP7;kR0QYlCb8vfbZdo_XwgFDuo2^8@$(QPx0q
z#jRO}baDbaV(f^sql6s^?MP%tHaoK0k=TwTc4V?6vmHt8NM^_D-dcJ)lG{=8xR%0>
zlrlEXx>KIeQb}%Ecl<n4{<R7_QroQ#-<Ud_#tu>0(h}0yt)7=;23FN=zM0XEM{85u
zoMmPa=aw_89qFEE&V^=Vj=5n?iWDcc9CqZi!(oThj$C%wi^UbNqaY!-9eM1?YsZy&
zW<ERe)7<=Py!<g-!qUztS;&s>?6BD(Cna{9S=f#ub`-Va*^YQg7PCYC>RwzL@Gj0=
z5Z5!IOOnlZn{v|ac4$&+mL>%)l}J0HcEsA@vdcq-5VAuCq}vXUU2boMa|=wb9de>&
z^AQd&H_P_cWN-%T2udI3^hlPNqG3A(B4TDS1f=Y`70#yx+|dP^w#zJON4y;k>}Y65
zDLYErQO%C(c9fC5Z!;^~@wB>8){b&^lxO>;%@vtdfhq@5$qqRRImTP3o!>L23U#Cz
zsVa?M5SMOed<{Ep>@@4xft{K_O*>kh)oR&Mn|}A-onoflW7f5!o*e@9sWo$Y4$d+g
z+0odJ0e1XoM-w}mN(&b{d)U!T_G?FHJG$_Uw2(UOXe|Y2lx!&t*cty7+St*-j*g6J
zYezdmdur94@p39VktJAIHZi->=}zrthn!;hC-v9dA6UPAM#-LbOzULyvZJ>hk!4yR
z9$J4p`Z6g_KZ4xgMGiULEN!41Y&Oqe8IX4TWXIV+V36H<Ciuq8mJYRJm>o0a2S0YK
zLs&-maJw~|Mo^_gghw$zV&<+%G1iWsWhiRslf*GjVx*~dT(x7oj1xPy+Of@!iFQn~
zV~HJ0?U-!GuXfC_W3CM5d)gFfyj}ilV9n5}lDj5_zzm*8IhC_yM?AUhcgBz3XNohM
zSq<C9r*37;V-53V#_f!kF}%Qzg?22m<7PKwu@r3Q7LZ}~6@Ig0nH-TF>+M)>$LTWe
zmE7s?cKnk(EZYj1_?cWX6j!lYY1?YT8ky;YH*<9{|BwSLZ~V`0EnkDDm)sz;+m21r
zX<0qu%O+56vANlfKV_^gHn&hO=q};ycI>d@fE@?zC~LTO+Of-y-IAPTo|<EdN^AGn
zvDc1$cF4lzE2zs^+b?a-=dQa<6X%f3AUjS;`(<|LcOS9igiOgio})}2qy9ye+~am@
zSr(9W^`uOwU1rw=DW%RccAS?=3Y%x`SUKA~Ct+1}*{b9TT(IM!Oxxt)OLko5be2iF
zG^mTyCwcgq9oOx6VaH3EEYi=ifY|Zaj$3xzw&OnI@7QryDz9F$(luw!+2%dzURlRx
zn`QmR--P}t!WS+Z;`}QUdAs?*j)$_u?N6xfPbm7IO#cPus%)MooOe&{$k<l*&o)1w
zcFNd$Cd=|r{kaUGwJ8K%$;v5fwT2`b-q@{I-aR|b1RCCw-%;P&@xhLd<j>Sk)XdkM
z692`H0=eP@y06w^G)VD;)I`+lSv}&&fKRGfr!uRCWEzrdNTDI6hRoWxSD92AGAf3K
z)Z{eOw8~GXAw4;Ra^%crB1_G(i!9_l+g##j(~w<54(>EJRbp}ya#6nyr#u=4uTLRa
z`84F$P(VXL4K@vSO}_cU^%}ZdvlZ3w<gx2J4Sy`t3R8<v<+gIgG!)m+sA9r$b2Qn?
zS2r{bX<Nrt(ok80LoS^(=o$<S@fu2L@_Yf98loCvHMli&jJQ1-yc#Na_2(mXQJ=iE
zs-*AS8SkeVpo$;V5K<f_L^Lee882CJ8cIkh4L_MB8oTwD$*ihs57F<8iF*)om)1~5
zj#oo@mXacpTUNu@-Br*aF;dC9o$&${HCfm#_+CR54Rtis)lgMKFNdoZRiGN7x`t1w
z!ZoNhsqzXgxwSRxRvrTNG}PD7NkeB14Ky^=aI<2<jvA_`bo4!~HIl2u(^_K<O*Ays
zF!ZU`nkvwY(45+W+EPO+mAj>gs|~p=wVm?Y6FO+}ixHPpQfskO>hB^Wt!zSp-Ws}c
z*OJvuLw8l`2SN|3+<>;1@}(Y$l&1F6&|kw`Kj!%{K*Nt3(wXuATnv=nmZXk>ItIxQ
z($Lb0R!$6&f*LwF(9wZm8is55Ps1Y(BQ%WEa7e>p4Wl%S*04~+A`N3SjMXqxvp#8&
z?PtQT8pg>;CXc61)-ZuEkvfSg@%dL-zpz?g-JC*as`964m`<KS&DJ=jgv}z)rp}>?
zIhQbxI-j~gL)jx%V-{;zqM^%O*KQ3<nYBtT><Pb7mr<8%_?@tVDg{?+h#a$i+_Hww
zMh%-ZtW~+|2<v4A5jH44<ud-nn#pa{&D1~ToT`|uGS0_ZKONsrX9smBb(e~nTGI;H
zqhT+deboIb_kf0jicfq_Q0cbwh=x0In3s*C8jflBOT%#u*BEnxdXaik!zsdP4d)25
zmotR3vUryM_KoCuIv1!53n#xsxJ<o5y-HnQ$NJ9YI{5}wk~ayrG~6a!&Sm|Y<u3Ui
z^>6Aw8txPRrGB@<s_KD;hfE5adlEjDB}<kX2iy)k)$mM1DhJ@eb6E=ZyI#vuui*vb
zUs7MGvNKC1d#m9clSv$Sulz5B57dt`-<AJalgBbz?UXHn12GP3BqyXMq9&$_>AUSp
zN=`;iuKW}Zq$FqK@uqeljRS=o_|Ac}4y0pNc4~TRMh7wwq)x{<>z8tw9LP*3i}JG)
zvN=%Xoi!M8IFOT0E{A*%Xtgl6ip=9cUd4HPSUs7a$pX}Z4wPl9#4qf?#-B|){UX$&
z)M5@4CrFIVfmqHpiPRYHpgO6#LmrJ`RU(_qVVwv8kHZ>!WhLo=*8v}^@;eY#bp{AQ
z2SS8h)vP0mI1rV6(TP`)aSoIqmsC!Ueo0D^OH<1z-`+T7c?TwPD%EqKf&&#DsN_Ip
z2WqI8?;WU4uA-c(4pbw@@r<uv@tP{PmIJlPb*OcfUngqRcc6g-4VBZ{fkqBAcAyEJ
z7Rql*Xy!n3<(Lbt-_^8qpcS3LMXVFlhTN9gj@q8ubb>VpJ2}wVftwE8l8$wts{=b6
z*y%tw2f8~j-GLbnOikkW!GWI~800_?mhI_~*Enln^rrTApbw!hRs4PqoOx}1uR1_E
zKN1E?{p$PH!E{DZhd3})MGkXdxZ)8Gj8v@cF-AKu#(}X8{OrJF2eO^C*7I=;nBc%K
zDssF-9u8>DvWd!><d7eoTD|eBa;C^}k*6uA;5vP#1G60X!+|zWU9;&ga$qrGjstU5
z<U9xFlNV4IDu4TJ*Am4m2umIKjj)WmoccRe8Y9c8=t>7x(OK=l8VA;r*Qpr$UrE+0
z&iTgNK;B5*Bud!qz*fSa)GgG{YMt4}<aP)4?X}MME(dlyaMFQO^!GT>_nB++LT#@E
z(An?65yAng6glX?A;pK~)L*uGQnsTsk5T_};5gxgiu^CN^&8jI4qQ^s83)cPK1VoD
zz2Lw_!pCFQ0(Du%Tyfwk`I>UBJ8(nszF(5ucHoW!xtz%D#9asOIgr4K7$;uccKyw;
z#}14Cq271kU%~_GL+XFjM^uUY)XjJzF99t3%z@Vqydgh#;056&RT}xqfutEz2*~!<
zfsgdxQQxbW4-Ql+Z4J>+%K7ZT7jo_e*6c{=L?WmBblk}7L}DkBIFZI_O{=6-fmBW;
zBPUl*3PMUJ(&hj5Is!VWsrRp!lu~IWm&x?h4AhL&OjL<UUeS|<oRykQ`Pm6Ms5zbJ
zn%Zhl9w+iTQQ3*P*AnD&!t>hnIpKFAzY_(VD5%OBP84$DJ0=S|QQQfe6GfOTN-d@$
zTaPpCWQTGz=eId4yK_3_QM}fEWpiINTx9eA9D>IQFJVSLYnTO`2r^m5iI9pc;Y3(*
z#EB?5mKvvgvxvJSIi6aITAKQGd6CM?GFi@v@`MW1iquL}iJ7G9-^;0VqN)>T_PH9-
zujWK`CTloRmmpa+3ALQ4t(-be>(x!N>d~pM{02@mRNUpY*;wtX38ASI%?Qn@EmUs!
zpu4pbZDb<oNT{Q&6YZSX>%=}M+B?y~i5X7JbfTjZot)_BM1LnL9kebcJ3G-u&bX?l
zH=&yo-IenLp@$PamD9_KYWb`m|MyW&U&5^Ii3d3GqZ1RE9Oy)fyUyWGjBw&7@*t|1
zgXLX-;-Q3LPK-R~k}Roqq!T}@nnyY1xw_V<7(*RPEp-0dmE<@kf1!?dVgjMo3hNh-
zeWQ^{PKZvX{z{$V#8kpG>U65aw1;Ds6SJN8(}^uImP$tEII-M`-&x^YC+0cjxwKfo
zq*T6yu+WJ`%2_OJZegvEOO^8*VVRuGmexCq6*6(w8g<XO);qD1EXh?)tX90niM8Z)
z%IR|6CGmgAC_3ZXK;1~)BsCMn-|WOMk9C1Dg^cl)&8<#!KIM{an-kj=?{H$L;$2Sc
zCht*>{8M$m69=65+lhaiIOxP7r#!U^C!81qhkQ1BSRK(3!cpomC;lSLT4{}hbf;Y>
zowz6i<4EL`ia#yGn0!__=bSjN_yR$ieTk(mJ8?z6r6J#<N>$gKxUTpH;ieOt%9NBW
z*={>=hvr@CJr%j{jO)G=dn&k}QU8^W-KalM=lUVxKPMh3=dlw{$WN71c!~a;WnVb)
zlJJW9!HL%dsr-!-Z^`ed@0DNcx$`6W6ZNz5zc`UVw^}9JvH4me9f@_s>nNooiH@W?
zTsll0$#f*wQA|g19qw^Pr@WpNI#TLLr2{&0>&T;9(;>BvECk^+I@0P$rz5>`GU~`c
zu2I*T3$kU>ky+(7i;ZMeoQ;rOM-Cl1$+>hqEAg$==qpy)yz~p{$VZU-kAAJQfR2LX
z8Fj4JyYI+_Rc;X-MHN3jkfh{LZNdV5?la9s)2>4!IH*n)sp~Mvg}v4sckA%zXniOW
z)loz@N-mCgb^JU_lg&r)>j)5n)R4*z6Cye;uQViBs)}W`anuslm+;??VtDhErFE2%
zHB(1B9c6Wt(@|GPJsstB+&b;5#>fg}NmkTRiCmfbJ++F;t*T>otRZ2t$Lcz2sJ+xA
z)S}kbQHL<$wzV?Mf8wgIqnVD-*+>Hw-;mHqM`J=0<u@g?tYs}V&B-mkI@DIw);ih{
zUU#wju)U5BItIvadTgz(9d-P$RqM%sPC7d4=tAyF?LqCPqdVaT>dRu*?uJ*i&T=n0
zy{UbuV)oV1kKCVnIlXn2GQ)^u*cJbieE6fw^Sd$Kz+fFiWMmr1Xke(0VLFcK_)Eud
z9V2wi(=lJiNFAeeOw}>#jP>%=sceZqwmC=Z7^7n>EB{%?M77^>gkN-wCrnU&@kiE$
z)+8O1>HMnvDbmh<R-a6h`qw(A)1N_|Nu5QVO_i`YI_4_={d&m-Iu`0!qhqa(MLM43
z3na**k9}yJ>%}^jFmkDm-*hZfrB)J_>-e3pLix^J@v9WC))75xwQ8LV{`A&`&1Pn;
zr~X0RK;5Wg6XAc<PI;_;{!_;mCb#O?rDL~_ZC_*LBOo0+6z`N)-Lb~o9y$kf93<?e
z?$fcKFyN`xb+R2|azB%Y$wzb?B_x?;otoo1PUv{4<CTt+I!@`hq2s2G!D#}SJH(%6
z<QeK&9p?z=saL2Ms28c1WS$bF+EGcZ9=OWnH67Op_S4pTgj+mo_f_O=9d{JpCEU~T
zw{rf`vG~@vWBFId1Nskj{HNoQig~KzG5Lvd4jr*}^i0QdIxm!;XkPql9dBfrHIUxG
zTj|V#@d*vglKW}PzW^BaUdIO&|53*$@@E}ibR;motu`@)Bu%Y*XiO{NPGlglfg~z7
zrGcd6WYisNwd8~p)PJ_bq#{UJxf4ffavJ5NC0sb>e)zyOu|<5mX(Y`O$Ydb1f$t4e
zF_6VTRs&@W`AP^qyPMez6f;oVKz0K;4CG|-{M203+*H|D9s_w5=aVAkt+6Uw0RsgM
z6f*D~bAKFQtq+CCMW{tpsaw5Gn*qClsO)HuRaRq`X~3akoCb8oh5;9ORefv3x(#@k
z^iqRVAJuOl@HOeM_AXn<K$uR1x;~3FM`F3(II1+D1fisXctR=Vmp1U*K|=z{$v^G>
z7b$O`UU$>CNBi8{oS)gKV4x!FlnN^mD$C)sH>w(_W}v%)ALv&%P~SiU1DE$}HR#kd
zP)n7qO{hbyORZ<fF9WSLwjq-psErIXHqgXCQv>bjNI)|KtrRyWw4k=6R?28q(wf}H
zKwCmtn(fIZKM(0hmdH+o&eSdjx+=e$0j;jp^F3tzl#Ll+$YZS0(?I!;*8ih>F|0SW
zk0DPY{x-Jz8R$=LIm2qkKm$J+_^@9aZ(xut{su-fcL;SPbtqMWhY^NTM@VlJuxc2^
z<fTv6EFME1OZ}ND<~YJH20k6M;$@p)V4}*MWMDG+SLIAGFjaAtp85;}GY#}`p{EP8
z49qt0#K2Pna}3NiaMQpo1M>{bH*nIxDFX`(r0K0KH}JcGm6i2{1{M((Q<qSeQYH5{
z1IrYDnQg2PHn7LQUIVKPtTwQXEm>n=Enzct9d#phy@5Xn8>n)0`%^eXH+@YSIM&KK
z>OWQP7Q$9){XH?;2|HBoPD7r{Y@Mmy%2~Za+h<@ulSd64Q2r4E2NfSOaF~3c|F^Yt
z;tLCo8TgC-aq0<b$HLZJEBcFev5zi?eA>Vn0|I9aoHKBqe1$6J1;RxGmy~mvAjc@V
zSIO55TqoR6F>!~jw;PVM)`8rX{(SGcW8g0Le$T+)2L2&S?nA<T>c0jaDF0rj6#prH
zWZ<#lb^c_}3_LgBb;0Mt3j;4@sdpiR3$F~kmI1szlG0`E_l<#sE+lf{t$}w2-m`|!
z)DJRR@+ALA{zPpbwpPn8<OD1pLw$VbTYn~IG6^+ff#gXE$*9SxDX7nie!C`5<pSuW
zrb^{$2x(nNM<`j@8WkB`$mBvX7sfU=GrQ1!vX;w*+=MLDtS)3DNLF?ia*%T>C-Bad
zhqV=?=B4JN=BLUo3J~5^wiez(<nO43T_{2*N|oFV53RXb+$BFAgq^15f=lH(2u`Z*
zf}#94zsn@MsUGDQ{63lAg@6kUTxdu$=t4;s;#~;2AkSx%E$l)>ag-42LL8xl@>3r-
zOSw>*HPoV(aiJ2SEVUd}T3+6T3gn8)8G%4$^7k%OaiJ=?2DKWsI#tSkYHZdd|J&Od
z3AM>}RBl~DJs0W|wimKyP$L)CT-95;(8`6z^qZ*ori5lLG<Tub6K4x12WPTMMY6hD
z%TZ@_b)vSRwxza{(@K!s4lZ<5Tqmomv*Io;bXDBVh3<-faA9y$QwsKSp|=YMTsY{G
z=b)jl3(H;j-GzQG^mk#h3%|NBz=a=O_@RqAmJJ(79qz(Ugh5nk>R=a!kcU!-DZhJH
z>x-KaE{voziaJ{5jv*{hpCU(B^Jf{cUCnXSU#R1$6Q~nim_(46!)?tes)pGvOjSJ1
zh3VuO)S1*-Dz{RvBy(Jt%j7&47At=~VSx(^m9t2|Wle!4%2`VIjk?T*x<jm)zQTo-
zF6?kwpNS2=qxEfLq|czQa$&WcYZunK<i4`j+OpY&^@KmD;$*yRRldQ6jmp{d6<nyX
z(Yg-*Q~6s6TV2>j$Xp=dcEY^Z;hk~{hHAT*+)b5&dkA}7*hkn;O@7|G06yfxVHfVZ
z@UII;TyVrDIqJeO7tWrN8RGtnk>{wbyBWt_IN^f8NvebhpQfIno~4TUxN_jU3m06t
z$g<a|vb#$zTvmLAaFu#ZCU`>Y?bQtzZqm6$y-U4Ky(43<inZe1WAbn6KU6W>=M6t_
zA?p+8Cl@}u@X&?-TzKTdV;A12m?yHrlb=$bDgQa)1@)y1O=GN=9@$>Y)M#W~9m)2V
zx$mg&sUKYUNRZqa;g~V!BVSxdZlY-|J%NcB6A4Z0M9Y@UL?Uux<s>nYl$@DYUlQ|0
zk4Zr%B{h|b1R*swjfu3%zkJP^!9+$A4lkTuWHOQ2!~{1cx{<|1Ruli3cw{1*iR|(V
z4O4y(gB+&Zq!*P<d~YI`iQFc_CL;2jc@ud}begESOypDb+fC#*QGm&U)S}cv)bC6b
zCKRDc`v-h9iYYE`!bV=!)mjNP<vR#Y6S{JYuVH~0(}df!9(phFviVGS6;J+RO)I~N
zfO3K+LW=*FJ*M&^Ey`qRYOIMkLJ4X~s?-oqC?##nV~wJMZ;Ub~%9;?6t(=MS<O<Y^
z)JiJ1)&uK$_{H&LRZLVhQO!hk6HVk?v(6eO>Je&EYf)=crBodgb;&FDSo^I{Za{5F
zZA5KMt+3gOX=b9iiS8zTFwug(m~Bn8B)3vdYeF09$~OtxnP^Y$V4{nP=_qHG+*vuj
zf3=2pR}<anWLazNv4_g-OXx}MWuiBskIMaTV1j<+{?q}=|Ix%Ip6fv-2Aeo(;*^OY
zCWe|=X=0U$VJ6nEbWS$$tBK(zMzG*W>Nx5s>Sz;V2xF<zu%Au%KUgmozbI!sVS<T?
zgh|RTUDKQ*gZZF)wuw1}sV1fo#GGzohT@qfW+@&RGUl3?$4Zt`=bKod>a15g<wC`a
zOe|Ks#6+c!R;zwf&N36r75`3HA;;d@Co!u{tTA!WM9qQ5S`+J-yMwx3)Wl{Jf0!sX
zJ7xpTjnqxl_IywDC;1iMD{Uc5wOa|>sM}5SYG$=(CzHFVyG`sN?4|Cf?xSYB7IT0g
zMH)}AE;tV{dDz4e6GzF%sQD1{mx?@2IAJ21&f3>$6K72PZQ>sjXH86+YR%lMCeD%1
zQ!h{@>!OKEiZ7eEqPXo%_casOP25m>xkb2X;&nx9WXg8i#2uA;*Tg;YkyvYO>Db3C
zRaCz(&F*0St70CQct{>p-m2lTi6<sv-H3DJsflMM(z%h|jpntj1AlJfg{-1WBQH&S
zH1WyAD<;KxO?YGCE#V#Yy~_PyqFj4Z!dfoXK67_T-1s7sbg3p=0=ES*ZX_fmq9&$_
zzcF#iq;4d0Bf0zAiU&dpYD#J<Hx~T+?Y%>4H`35dOWohex>U&EMn*RZ$|C~YkOu{1
zX4c9wW)?zjs)S{ABO5t8HHY$Zx{*uqxH4uQ#d+PxN6t?zp!~S_m{TwOeLgwAbEB{u
zMd-WSFx@EXMlmLfQyo+r)$WEyh~I9VFDF^28q_HrEZ<EQ2ogMQcnLn``w0OzVqeBd
zScu86%8j@YRa_{Xyo4Ji-DvMd2RGu~7_vKAEjMbrQOb?d3@hW7s~fB5%c@f42<532
zs1@BvH{KdQmEHK>jVda#rW;ks)u`2}HB@em@$qNdSVz<{ms!V+25vNTqb_snQR}P7
zA%m>S8!_3!jmFAv;zm<)Giq~cX@hmDm{x?=ZnPn^rM6SKL${Xb=*Ea=2|BsaSq^!Z
zG2@2b#f_y|N{nVqS2w!3(cO(7m>lFr4?-_Ddb`n+{K#g#<n<vBp!TJT*^kg)&TL!j
zc386gNN1oMKdG2$8=Zrt=b0QTjUf!94yW$j_ic8MbYm2q|0_F&$+2$yOpyA=x$z5m
zJaqu)#UwW-yD`jz;U4_z#uOR19_066svFbXxb4OrH>SHW!;Qmk9C2eN%Pw$Zp&PTv
zv#E2avX{AT%p=dIJ~6F6mu-<7zq_%*jm7krsQ9IB{6=0zU9S8Yt<9Bgta4+!8#~-s
z?Zz56HZgatiuuEhb>#KRDK#!;gW`>D)L+d0abvR^f70Koa<|AeUKOit+mus#P?DYG
zz0_UQ-PAqQo}q8Yvd@kEZX9sqApJvBtEx{4jxMrdj?y{f##uLxxsf-b%l4NW#}%I-
zoTQ#|<FxW$-n6bO&dGs~)~~RV^KM)qTvU6xM7Zph=a*SWca^~se~oaRdV_k?jaw?W
z<2e1U8~5D!=*A~E{&wRZH(t3>Z@6(^)%@6vf5{J&^U#g|$d9OBKX-kia-R~Ox$#^%
zFWh*k*xAN<fqTv58|qu?J2&2|m=7|>5?Dv^S(bg8**!?$!O@j^G7pjyVyFo{NJL0X
zm4GB3Bvl+5Zlv%ar3aZj){2yhDv;I#C{9gC<H2|5zRj9+9;8>f89d0SIK^fov*Ij-
ztki5Cl>VPpHV2bARZK2IZV&Ph@=}LKtjGc$6!gIEf#!j6UN6=trVw+#^I%WqNMUjj
zsstDHpcuJ0)u#MLX=5B7I6Y|XK^qTrsmg;29#r(e<$>uzDQOsk-5vxz2$4M=cnLmL
zkDn0mAay(Iy|8RyI&sv92T>In>p_EhR{KlPDM^i2x$+@%8O7y1D64oz$t2|!Uw)UM
z61k=awLGZo!S^0ip;LoeRYg|wpgMU^eQS>+`3Zb&59-itMy*S2=s`V#gw>Z8Dt^*G
zK_hZwY7=Txm0P5>*__-$IW0YCMPAU+x&~<LLDm&|7Z1A9Z0A9HLI-L`s)ThSboSt5
zR_ha_ZXR^^$a8_M@%Dp?>FYrc#XSkVJm^j6qx>U(TQ9!-Jm{~S0UrEF)}~lJAlpw&
z4)S0yVTg(x>Ve#;Kmta1Fw%pw9-Q-Fln0|dSmwcU8PAzhjPYQW2eUmG>%q?+jPqc1
zTWco%O8CWt@q`If$(rcFB=ThC{5eOP!aYt^`<>>I$DCP5I)ge>`PJ(hbI3o*-RcN)
zsq;LTuVT)ZvzEk#9xS4>n7V|zRK@&8D7Z4oggVK7_h5?$TRm9ekw+$3J6+|$1{JxQ
zu*QS6gmuba@4+96)5gVZRJ=(*@n*uG)Vdi`Zu4Nf%(#QvF%NbSg!dD6daz45y9s-!
zd#U?8Sklgv-~&t^q#mLkrXHalrApYv@#bHOj}uN%Pf|~LaGG$2D)FIv`gsp7$ZF<A
zW-l&!aLI!=9=!G7vIkc@_+hH?z=NyOj2D`0cL>)!xUQTV9(nlGx7=GE+*W*UkQIN|
zgL}&P+k=0|_o@FXze&XUX8EB9|9SApgU6~5pL_5`@l(Px>Af!2Jd*8&2QO9bE5d6T
zqJ85ftMFy*<u2`=2k+^B@F2#EgkF4P@)PwlRf4||5_r*~gZ0@_A}<nqk;ZEc2HBE$
zkwS4&LNYIs6V~vTFcOoJ$y8o|keVuf_AK#f6{jPlr)KaXqw+7hB3Zo1>P0>;u6GYN
zT^#x8r7N2k@=;`Vsz44ea*}f?C$|@Q$a$61CcPuS7fUO+3wTk`i$bdYVqSblF07m)
zgrZ(_QlFI-r(>hqz0e4~hFMcd_rj2#@u8&;E-y?kR(r9=3%3^@FWPv~)(fu}J}=66
zQPvB;7XdFGMU9zlVuDh3ixy>VA!?W^)keIikiuG9V!dcSUXv}(ixP@UdJ(U<lozEH
z2Zn3qyeRKQH7}}r(Q}I4u#K^&vr&Q7R`jA0p)&P*Y89&Ns4C&|UTg5w@S+LZR+DBe
zYHcs-cu|+!kSdY&2=%>apq%zO%tqwK$|?BRdehg`i)PAcE<L8WC83oUt(7zQP^6s~
z?Y)@o#T+@a(Ig$b_{obwUUc-Lir47mMQ1O%c+u61ek|2ZmF?+8ck&O)>EXrN9M)?@
zFXi<1qL1RfUYt#AeNNk7IRgkkQU}U>=L$dAiy>Z&^Wqo!L%kS77)F)i!@U?m9;uvB
zUW`^;DTTF*u}uCfgQ3E=SC;W~rg$-dFj2)%@?tXiSL%3|6+hLBX-rQ4sy1u*&G2F-
zlftvS@=pXS^2!=*t{1E5&y%iurO)?b0h0^8SV36i#bPg(ke5-V;8HJsQ@o?4Rn>AP
ze;2>nw>Gb&Gd)*KukVa2{>WM{)_L*Ni)UV}_u>yPE=Z@z6zF1Z@M5nQ`xw8`i%kMv
zY-Unw-tNVp<SokCO4vr7*CA$y@^=z;QFnW>NBN)IhWC4MKt@h><440d=*1ysouwY8
z9;Y7h;wa%5RrdaujK(hCj_3r<lU|%sxu?B2qj>65>uuvXCeKsbq>lM?MZe_5EiVe+
zOYm;B^RgFLRQy%KHR^Th4KHpIj!&}om}8W2+lxD1-1XufeK8*r{`TS@!hPlc>%{}b
z307FYg8NTa4?2&P|HO;Shxy5m7cXR;@u92_FTHr>l_z(=>9ZE<*Rs6(kcj-oi??39
zWAXRY&(sgpk6wHtEO1!^><d{S0n5ht@FmVVio`x7@gau~IekdVth7F)^C1~IxeqA_
zDXFQcseAxIikEF@y|+rkq-T0edO~Ju25LsC#ANbe$Uv(lvSp!})rV{<H@h@otCb~N
zE+6vxkdIlpsd=d5c3BtL`F;4#hr)CU_)w5gi2AivMaVX4QED-2ajMi%A-Bs;)|9h)
zYmDy0uVr<g4}KpE<-2?^6}t%@s@EsiT~_Y}m<+3!pbsI%=Y0H1l*y<Mu|CB4P(tO#
z`%sd6{MNV8Tgr#hD)($Ivz!m*eQ4%Ga~~@BAiw{q=fjKLMnxYgF|0DRI`w;M6>3##
zH6Om`?}BRhP?OHfy)m^2((KxVIzH4@j@)xk{Q5pLpwp1rh}xLigxZuUk%zmRaZW?-
zh}EgLRj`#0t!1qG@XCiaKD6~=pAY+eXy-$FA4d5w+J_E4q^hlV^r4gN_nE%$ldH22
zU07kFqt==2>capZe)OT658dhiK<(p054GQ(gkC=MR!+rT)`d`CCi_wQ`!H?lxBtit
zq%+iqpH%!H!eAMV$|-d-<uJv=eHcL=No}6kIy+;080*6(ABHWA{OrRxA9{5%W-{Ox
z88(FRR0*Eo!$ifC2$OwS$lrWQ?i3%Us@!QlOjkUEkl{q4Sw776VU7=TefZsn6+X=K
zVZIMb8L&XbFC?5D8CgVFOkJXKmwd8br+#B{8Fe`|Z}sFWeOTqgMkZHNC33wFYZR~b
zVV&X&2em)Q8<f-RL4t1UIg5Q5S<$uGhd-IM#fP0LW-DQv58DYls8`B<yPDm_<ZkL7
z>RxJs70D0yaL|X-KAiF4kPnA_I3-I{yZ9pvIR3xLUxcI7W3mi(wa(6QCQndLQvaT8
z?d!lfSMt%uSs%{%aNdUtK2(`*eJZ$Vwszo0?MHbB;lm9dZnDTFA1)KFP$lfD57!i5
zC%hUJbIXU@K0K1{s%))$cYL_7V($8IPx0S`f2gGoT1)!B<OkG;KKw`M#ZmE?wLPIq
zwNHI`Mt)9xq5SRVU9Ww3BUh(>n0~zV;hnrF_@VppUV7<ZB)#8yf%xFVM^^qx`p1vN
zetc$9vcC9`fHA@`goJ)HDrq$@i62S*fXYoqNaaUz<)rW<CHbh&iXRedscflfrlF>#
zrt@R`b?ZVggC80F$V9UsHM1XC2wDBe=|?VdHfnZ1auBBSmn2d=H<S7N$V13W6~9!b
zg!vU0@S_Z$AXdna?`RgL7N-`W7WJbTp*p`4w~_5ssZAp|{22Mpnle?ZB};QSV)(KC
zf=jmaO-;8S9zR<8(aI06gpJcn_)*f2aW!?HAAUaqtRYB^^CP5c4*L;N9Q7ksapiNy
zQGRz8??)*=>iSWSS*87`<VR(48ERQ-Icj-o1wSehq^adn8Q&|eN~q#Tnhn;BsHXht
ze$?=zrXRKF)S=c^xrJKkkNNvODN<iX0{sTmhSaaMNp535n$T%V6{ndW&HZTMM?ZcO
zAx_D@F|GY*<Ht{a4DzF`AMF_2$B*`eZmMhtLPu&RYG*&X5V}&OHu)+_w7VZa(CMN4
zo__Qq_g0R6y<}g-{RsW#E)awtsRLE+%yuz@{TRaJ1nN*fe#_(<?Z+@Chf_yTM^dE?
zqX^DyF=H4!mijYQ%8v8n7sccK$eYO!bD|%U{Fuyw)2Y8wr%<KNseVi&fBmoD4CT-C
zW0vCCe#}uk`n@^dj|G10kKjNA3;kH+$JQXW1+mzVC4T%Ez`y{ON=y969YCG{mie*V
zk4Jty_TzUyR!F=b+x*rKX`V)ttn_1*AFE}+OtoG;|L|iC_qA5-ah*&7a<gpK2WuP1
z8>ySV#!xp?|NQFo(6$hk<qvN6V}~Ed{P;_T#IAVX6l=BI>BlZVcKfl1VFy*Iy?*Q?
z@24K1cHy^ghg8gAKaMCq>POcy)(U^zZ~dd>Z~7<vIO)eJKTi8`RYjih<D%lTew<T$
z-j5548(oZCQheEuE99#Atc$m6eq8tC2A$i~n=0}aVR`u!ca(G2k9&$sR5Jfje4p?y
z^?@G`3ID0w+;vhu@#Cqit^uS9Ao1cP^A<Xv`SIM37k<3-W8hgWVF0hBCtDgHS?V?U
z4OPsye!Nrsp723Bf4eDJpVVGH6TbM7An@(eo|ph!an|ej<^t|Svfls%WJ?l2QpL#v
zNUk_V0FPQ45|IB{lGaxv2q1L;X=r8%;PwS0Em>mH5z<pLP%{RQiIABpF++LHmNkHE
zY)^L8svLxz)LhiEmy+cTAYT9#1E>^0{s0OD;0VAOfc(j>U;u>z_%49&Ly>(2;~O1_
zD;z+&{no`~5f(2>m1MC1ij!?rJ5^J;caKEY?$GoA0s#aAFaj8!-r-WYCc#bhP`v^8
z2!5*6|I-WCgxp3bfcO9e!c>6>Axe!6AdXOiT9PU;@;6M;QcRW(pbVj`$}LAIA3z1=
ze7fwcEQcIGg8&)^P$ht>0n`ehb^z7bo&=T63j?+4<Ql4lH3N9q{@eSn#J_8G0=WCD
zQCH>GBh;ssJ)fje0GTgpJp$+%K;r<K1kf~qW&v~xKz=tU$J?BdZK*8+Xh~>AZB1=M
zmB{@k-R%^&Cv*s)BjHZeYL8Udnbmd)pevypRs8M&{GeD)Zm)pct=CoPiy{A(?adnc
zQ2SD)s(yt2)Byn`<1e3o3SdwG_8_z%1_v-CfDZwD3}9#g!(?~|@TZ*a07e9`E`ap`
zj0|8@0KW&|S#FFDU`znh0+`M^$5JO!f2NM3{u01=g0x{m01G(0Cn;xg0Kbx_P^T*2
zv#rF80A@0|B!F4UpC7<%@*L`1>O7U3sfBw1c_DR?@)rj%xs&x?Otz&of0I`MmAgEE
zdeyCKgB5gEQdg<m)d8#_uT{>3K=Lw8^*@-5R<`~tv>||vDtD8B;)x%_TLRb`z|jDX
z1+YzChNeeemNWJSuwBLMAnXia7h$*Z_YgAlO0tizU-<_DI7mLEoWlVeQCy~*+2>#V
zuK=zGa3g@@0i0mgN$NT3sQ^x^_%npF0qo&F2+jv^fzHJMuBezx0bC}xX#MSd%2g(>
zQFmugcr$=o0X$*yb^vz*ctE~OmHzpca4&$rmGe&k_Z3g-Vj8clYvzY^{!{)V!s7t4
z*0Vm7e;UBE0G_Md*8#jBzofoW{(sA3-pC5v&T8u00N&AmuW|=;Ha`XMSytB|vIp@c
zfKto!J2zeFf=CcVOb`i!mLpq=AQCA~97GbuNeRh<NUofe<J>99sgwgkYHFGw(kg%L
z1wDNbxjr~E1i!u3WF%w?BC~R`1d)~eVZL<;IfBR;M8O~mNx>je|DrY8=B(okN>*-$
z<q0A$A)l%te-H)8M}D(Lb?pkS?}BLB(mXoV`joG55JgmE(I8gVOj(S{;#6A@%adBA
z96>mP=pMumLFhqw<_<~)QJOKXAc8@Jf-r+f@xuDN&K-n@Szf9*K7v1p0O3_HYc;Dh
zSq}$sEP-BiqAnZ>A{vB%Y_WtmYKb69DnCAm)d{SCGC`CLqGb?wqk5f%dO7K_vqtS8
z$_G&)2yrS>t4TpZWvck!2T?_FRXMtcR`Kd|YEWyc+*$-Pe~LOm)D5B@Ti!$+QGG&#
zAQ}=HQ5&n=4;ifGr74rmf@n@?p>l(6>+o9z(K?7WLA0gcjyi_l?Y1X(2%=*Uom8o=
zL3CE!h4ABc>kM`aqEA!n9Q6pIXApCPm={E^AbJNeC5RH2tk<AELHrcNX8!-NFU$6$
z_77r!s`E#}z#x{jw&vF$c?k$&NDxDV7#GAZ%pFD@O&v}h5yVJ>6d4u7gB{iaDBBpC
zW2ryOS!iI@DckrUCeYl-|Impuk;zHa$wB-|5dQ=WdCJLDCZ`24oiKwsQ^m{*Vz%Nr
zL7Zu2UC+!9Vu6h0AXWv@Bcd-1T0eD|GurBhMGRgX#1g{Npxpl2ntIEE_+8brJc#^f
ztl!nkwjzkHW3|L(*Unw>s~NL~x|X^wi1ma&L<t+H8>yS9QqQ`D)|uKI#GiDwNGC71
z#y~n}aC;Ct<Sc~oV;DPw*cHUa5H^LdTbeCnBZPJ#><wa{%<B;Hg|I(}13|nA%Hy2i
zI~_R~#EBqIN;96j4h3<TaD;l4D*mw`{!)CLaQ2dZDu~lTTo2-g^c!1sk$RSTjw&rY
zAH)U4NBJx6OF>*#&K1JdAg(Fr<Qwy55VwN(FNjApZwGNl<|%neD{C0sBj2a~9mGEb
z@%Qo8WdF)2qVrJsM@{RU*JCE12k}JtPlI?yKBn$z_9BRvbY4+ktH@G?<KG4GJ_v-6
zI)o3h2o$l#L&6X~k|p^mh|h|@$oe0$Vq&NQ$!=QXAyEj4Lr4-r(vUT5g837s2q76c
zIaSP=Y)r}!QqdX3UlNL+CWK5OWDX%M{dCmys#FF-MyXldvnWdlxoKvlW>b;bL&y<A
zP9_&#OOQ+X)pV<u@-W#pb;A516bK;@LXb|uklb0<rG-!^gzxAS4xuQa2-Rx&^pwTO
z#i=%`oqFSrwZh2e2*DYGPSc=zLU0iz*Ce<@_<BD;alCYVA@~W6`K!NB2;mS$?03}+
zAre9~glf!<rIrq%3?YtMf?ARqA3`aD)VyqVd|Aa63FSg4PpCjmoBrFYYNZe=hvbb9
zs?e`W{W{o67qYH2s?!mu5yI-!*8AC7A=IW>Cxk{JG$z*#p&p?=wE<Ov8xj_+uoj;t
z<Q5?`B{ZWpr{3iKzFLx7QCm~nP^Ij=_VMjQ=n%q!5Eh2eF@#Pb^a-J_tOj>nox|~+
z8QDd}cO`TSp?e5Fkb8vCOXc>I@y5H^^j6N6TnYPy&_9IX()lz8P=`=|qz<J1L>)vO
z970vzBWoy=(#~OoNuJ~*3BQCeK7>)^(bO?ii5wfk&*X8+Df!r%cN0RG8p1T16RDFz
zn5<%c4Pgp->}=~3mFeVp)EObn3}KdvoI{u$!o7{waw^+gIoE8h@ca<u4+R2?LRcKa
zO3vlk@5~|Z%v-O_B_S+j@!wQ!%R*RA{++sl`t@FFt3pWh*<4L$4RtM5DqlxfAHpBX
z*$_g4zpc+m{};mM5VSBHVf-1wmJr^A@HT|4A#4lbObBN~*dD?TY1l93Um@&NH5?%9
zlJl;dJ@P7`c%QrqD89<SFdPiwPzZ-ZXr_++2m_9WaE#E3_aZwkZP;qab|Qq6icb+v
zOW1;lWF>o}oeSZ92>*s~K7<P)Tnyn7E4dxQWx{pp6{;NO)ex>JZt&WA>AVrbP37DQ
z;WO`RcZbeh<=+e8Z}LCNc~#wfKz>GjsQmvzc%=9-;YkQjm9zAY)z!~Kc%ht^gjdwp
zvRLuvMejm*A41A7QiXB<p6i30(6F^Wd{m`ANjnvPAtVSRhA|1L61?=inOJcWLej9j
zced(DPEA4W_s;rMA7P{pTd&K7!$=dxp;M8}VPqksrKY2%4<iFX0x}XZh4JCNDM_g$
zD=W+wMz%1rhmj+UoMC)_)p{?Gi&=T7lFUs=a@ktG@`f>kF~a%7D4=2rhEYiIcZ3Uj
zB1H&Am0v83;$$1uuKfG=QaZ!X!>AudgRnfq1+Flvg;6~WGYoea6&UFW!%K(@!$*iv
z{ZwgBAdDb6L=7wdlFx`Ljt%1)KN%=Nr(_uMgi>LYC6rc?Wx`0T?%h|8X8HfmsTf8j
znw6>Ft5Q`6Rl}H9*joQ<Fqt=->*#Z9EY%F77M<GEI@G$<depD4VhzI>Q6{Ek7_GvP
z#lO+lENYW5ni85(rOxJIv><=I*QgBj)=c&cqfHoX$?d}E97dNg+B4aK+L79c`t`27
zUCB~sk1)C^?jFVu<TUE~p-*f~FO}Py(1+SLjDCdv)US084CALT3Pw;Uf<a*n4r5ms
zyTcd~#?Ub4N=Jn;ER5k{bX;J}kpmB7WEg3WYJ+N-qrw;+#?&wdUa@*_46B_$9UI2a
z1o6iaehFi|a+001M)<@qCefL!{9nVEqWI0Oc&T<8E1xc-njp?h!Yu0SF#a7J`MUQF
zljG-yu|SH4u{n&Eo3w>ttPSJycw<o*i^EvLntxaIFD3j&T}E9Vmfxs<do@`R#!3~r
zim*D2HH7VBzrE90$K?7j{vd3iZlrFaw#{gbv5u+qLyP1845OhD*+O5;tzm2<Z&%I^
zc^5z)dfvKJ-V?^&FwTW>UixiAWM3G6G52LA_x>;rkPoV|hX{wMN2o`s$7IHpur3b&
zxu+cu;{?r<)KgT+IvvIt@>%Ma+}1L3A&iS*B#Iz$1ee0N9LBRSo`-QIjH?X0FY}ae
zn<_=F6K;fYlW<G<&Q&pY6yFWw9{F$TKgypPqyHPmgD@V_`Hy;Pfpz8iNX0x3;|ckx
za*pt?zAt3Xj?g}a@iL58VZ3JU2Nm-sjJM=>)c4AtFicB#-&#vQvAERmIgBsl1QDyk
z7-~YQB$F+UOA<lS2r@^IMYi4X$s$M-;rh>{I4KAzsi~-lAhpW1=d|WX+6dCIlyG`N
zh6pk$CsX9xt%@W!YXrHKpN){6nuD5?nu}U7nblEwBJy{SZ`Zx~2>Gc6#6M#Nd>29C
z2--)`A%Y?i6pbJhK{$e95!@@8#1+Bdu}1L-{#c{iSkO+@s8ZZPa8h-u5y89J)<ia$
zbW=T4FIBR91V1$pK~VXQ!mdaJ(Fn>$P%eVWYmL|ldZ*KO_V5VD(J4VK89_Wj{8EI{
z5tLER)7S3u5mboC&wli`;Yh^@Dn-yNg67;&<p^p-P?P+91Xa}Dt42_bTwOUM=UZ2&
zwU}%aLG1|YL{OK>2Gn}g`c#R0GThyeyy^0{U(qy<poz+D8o~RL-&T?qG+RZ`lCX5#
zH@`KLZ6au^O0|n%OvK9V7(u59evV*V1f3)3BIoOctA7Mt8QFu{joMw6{UL%kcdcs=
z*?Q9KMeQ9y9~IL#f_~($|3@1T!H*FPWaU!-@CbfVJV*uuc?fkVb(qS14s(R!k%Upy
z(N_DdrjAv)m(rB@C4%u0Y>Zf6%1?-3Vg&Odm><C;wq!bWvTEV4gelai5lka&Yh=yS
z8RVH%NzRI3HhB(puJTjgi)*ynxgdgNbc7d1Ai9XUn7Sl_rG($8k~_`kS{}jg5v+({
zWd!S3b`^E4s(Ez;Ysj(gZ|{ir@731R`GdNF`t`HcO~Mgurju}mwuA6z1X~DOsd5zC
z2-_n7&$~qKj9^y;0=uaKdkA|Y*r%M4SB!%Z9EzZI9NNU;a0EvpC>V=Eu{avRF*%P>
z42t5f2#!Y(8%10cCn7i*LE0$NMR6*E(-Hg|!Gj3SL~u5OTWrQT)v7Cm^ATK7&PBqd
z2resUV(*x%imwr_M{t91liGrJ^tvtUNp0f}^)B@uRm{I5_=kL7ISKk24<ktbLBH}p
zEnyV@Merzs#}PbXg`XmL8o{#&-ZJ@|`brKeh4F&?k}AD=d|;B-ir++#f-MpMoy<!5
zAE+NyOp}w=toa<l7di=|)+!o9-LTJ^kBOp4%w!U3N@`MSGHP;a3hJ^zOe%sDL=>qN
zr-`CWGixNLk0L`<e(8-|QFQ62Nms1=P0PrzOi^TxB1;rmnS9HC<x7!lOlGI%h@u_u
zfsi|jJW&*lqF5ApnN^r7@%f_2ued-I1<8e?_>OQUTg<U_-^Or}C@$>%#>J!1qcEbd
zG0aZYs8Xkc;EdwK5UWpIQJ7H#Rj!*5h{8kgD&H4{Uva|h)+^xR%+>`)h-Ns7h{}yd
zF{`1~k`hsrlw*vdeH8Igc~WGO8d21YqEr;68C)icN>R-A>t$8ha#565T!BzAiV;n%
z>nI7U9L4vH7p@XTRmIh!sIJ(Y9;p>Y?I_-UGz+J<UJL3-dqPHY)>fBVFN*q6G>D?1
z+E)`oqbM3HXLu2JQ*txqyl?4~dRnlymef|%)={(}w53W+qJnW9RH+_O?0KPejG~ir
zIup83yHdMF(Vg%ERoZ;OZ(W-9jG`Bv-cj_4%H5T%@!U_vJb9U*KY0N4N9sV8dvk;~
zIEo=MDx$a;#n32*MX@@HHBk(YBFQps+VE6!rEjAc$s(hom=MK8^5`hWL@}29>-W~F
z{5gtoO#VV0PZj@ml1Pi*+N3C^M<FnoD)1{|N)%HG)0BUshdD#>OzAGgv!j@!SZ<a$
zFN*ox#eyh)Q~O#N#UjOv2}`I;qu=fdxJ>0PkK%X5E23DbcvTdgH(1v>a+kujQS6hE
z+0$GX#ri1zh+;z&+oKrG-v)1tVhc-cQf2=~*i8L1imhCWwyNB1gd9CgDZV3$ovcTA
z7h$)I0p;wCB4KeWY=0C7Sn8mx<b*@i!%-X|9F5{QK^lBaUIi5Y>Q8<`@kyBx>i&?Y
zX`YGVtjaw{I4>uit-Tb*<tUQJB1J5&L~&JCfG9pjaV?7LQOF;MUqo>uihGIlzoYmk
zikswHR55Qyaff{OtE2qO8?0|e?nmYSLEo-g|0O(#;-PZ>BP<Lhf2^D*Q9M=rEQ;rf
zOD&F*mb{GO6`S;$D$X03(d2j3_sTEb*7y{~o1I$XSb5yADe#%eFHt0jwS3uP2nl16
zi15isBBr!CNvzf2q_IdwSkHS|+;1O~G8P$Qktr6X-|MNEg;=B}NPHSX+E}C`q^D+3
zxpKc<iOC#`T(PLei|Q=Q${LGoDkeK2M=Wv@{#0i$H<Ni{k(ZE<Dz)X0MFGV#Ldn02
zMd4W7h{erV6p2OASj>&ZyjT>AMe$hF{C`Y+3Aj$x|GjGn*D{3684?obzT=I{y}iR3
z-x)=OG9?r;D>KPV6fzH)=dmR7oK!NV6p@h3q7;7Xe0<OU`9IHo*0c87pFNztKYO3^
z?sMLA0%#mStpK_|le=C3^#j=Pm$!BRN`Q~U*~jY&AXA7t0FRK><?Nrg-T-_~Eq)>A
z>lS!HNF7J7D<ms`SD&#L|Lg#A0=QTrBObtuk~FZBPZtshASfgx7#3s}H2}@w?&fYI
z0A^t@g;)VZghU-Z7C^F=ZIEE|LOBdcAt}KIf(-*`B;+MQ+HCFZZW6#N0Sph|g8-Ta
z&@6zF6Wx8-@&K9#&?$hoq!}#&XzjG8WdN@U=ig^u7t$&K{&9xQZX?mQ0kjkHMgSdz
zv=@9+kY@eb`Z@|fE7yTk-j--L!OntR1iJ?Cj*$Cu=eN7?9)ir(Gk{*gdppYHc{zQB
zzZ<}NLiz<TSV(`zW`K}^0Ss~!&rWrS@S%<}EP(eN9^0voV7EwgY5=2z)X1IjVF06r
zk8v!=3K<u`cp(!Uov+`a{Y3g<?u<zRd?e&!!O4PC1ew}(s6FF831FJ!o$iz{BfvL!
zqu?<AEJyjHMDDo(%nM*w0J{U2AHb*d-j~xi1h9Y;^96eWUlD-&ig%&lBEiLiO9Yn&
zuuKSTmIuH;2#~CF%3md9bpUG|Wv!5P0jzhF%%FY#-59`UR07x}`c}a&9GlGnd?|d3
z;FPTY{T|#Fz;;n~2<{YQY3i|jdji-?&#967TdqavS^L_0_67K8pKIkKWq$w%0wDQH
z@Sq^0Ukf=Dz&ApkJ|CjU(!P^o4+rpl07n8i8o)78eqt4u?B9>a12_@DNfA#uZTLY5
z|9SDFkP9X3S$taf&w{@Q_AFrg{I3C=<B}3Ytsu?^@LK@6f=CPEg4m3GCih<f{2oBh
zUtJdixD>!;(V6i|0DlP2AN^mS{29R20ImgaJ%AgMbX)Ld0JnrZ@Y`3^UF83IcSN}^
z-!Qt%6<eZz2k=k`&Hf4CzQg|&@?QWCgbeO$*Z9auJtfOj?jQ;UfgoNS?8y^E-k`k<
z<`aBEkkR}?3ItJ5NV=o{Gu2aAc-bJz2`LgpQ6a^Gcru9M!b=I35G*P9lpssKzTRD0
zc$xoCFE6~JV^cxM(?QgG*1p!QB+<%2R1xw_5Y>fL6{NwlK~xj&>tIiZ8p59wtm)W1
z)gh;L5K0h%Ac8?OnWSU{;R?bX#Pff9uY8l^3F1Ik&-2f@>jwFJtlcL*C$C>fW)Lqp
zN*y5wyX4OjQctkHV74H$=LmUG@YOT9LP3Os_WKxH2B8KKtLNcoXBz~e1)+<LAs7=h
zgRq1|1fzm1bFBQRi3gEzl%$YU5I2_Dr>%xTG!o?{)+OX+$Febx+TpJRF~6hj?af4a
z)zO;^X%WN#*;{)ph#|9-*PYZ>LRt&95o{~iE{HdTu)x~gd>w-57{v4tW`xiwh_{09
zgy0R~?I1b_u`h`IL39bCYY-!Y7{x(p9C{~+zCpYjM7JQWFL8C3(s~H?bV}|OL~r4J
z1pnW^58jh#$DL}wAo>d*5X3McY|p?T2045%4@dY=N8!Kn-*@<MAs+~i5FAiCZFCT0
z*xIw+<w1<)NTp?r9p{-H#JC{F2QeXt55;nt;KU#%3t_#JgnSgl$BvR)ZlX;IVydHj
zBIN0iy}V2pK0|P(;H)5i%4a7{Tgb1tVr~#5^Ehxpd@7vL#X&4^_`)C-IXv=)hp9_~
zSSrdgM<0;oUJ=B~AXZ5gn}YZvh}FVb(V8IE2C+_}>x1~r(KiIK(c#7Jc|RBaK&}rr
z3;!~REkSH>zO%M9h+U5THX+*ucLcH1(QA&g&ndelx+jReLXJt92e|nY<bPC=D};kV
zd>zE4AT9@SD2Q9Tlw(007vpb&_*Tewf`<ja7i7stf;j5%uJWI_6B0ca#7QAP1aV5p
zk3sw*<R?MqJsrf)!du<8f7&yg3F54i`YS!5ntdOi;d~IkiGIOJ{XK|_4j+*>?T;Yt
z4R_xY<w_8L260vREx~J!<#i!9g1G4@Gk;0DE&Pt7{3YZrm#GG}SNyj>=kFl?34(;-
zeh~jY=7J9dA3CY?UUR2~kUNBGA@unwU!D;1hVXPqR{ju<@#6s@6c+M?VEzya2q`E?
zgLEN<La2J(&1jJjic0n}Aruo*Qt(MZHm`UHB^<sfoc5H%O9?3*!ZOu93Wl;FloPSM
zU<JXC8rrMb4;?)fLm*ZXtSne1glB|Q6=dqOAv~z-C#fDn4axpo2(^UN6l77)hj8Ts
z`)tBcI|N1a3@6nk#2w;yi|khULhy&sk;_*InIXIoLc0*&2%%00bwdb-5DGyvZ3oT@
z;jOT@o@B4@l$I?dCxjOrB_O2L__S~cY6v5C+IO$C5OmRB3Bd@#456V!EhkqzgowkV
zLSi92{=P}V(UT#h9Nr*={4d%iGc*$MCBc_NXe^|OV|g;*ZyG`~iM}fMx?uAVS~xZ>
zLwHSi(-rnZunet2Xzir738Ag<0cY)VZu=144532^=a#yfRR}KJsa|~O-4(O{ic<Qp
z>n$$+A$-6C5214iT|(#|!hjIEhVYIQQsHDyH#V}f{cEwWknSP$5JIu1kY0kl>A;TO
z^|0$*r#<h5&`<cXm;X06t0jE{MH%GS3=Uz4@S%dk1m71NF38$>u&-TB9~r{L5DM;a
zj|$oUm7qRa490{o*0CHXWW3;n5I%JD#WU1NA^R^X%=M9o9}7+voD#xRA)g3N6QrfT
zxO-*@vqEST#!F$$4q*;wXc!g4m>a^p5YC41YY6j0_%wvgA$%Fa0w?csAqxc;2`&~~
z62ej;%LI26wS9X<2rENaCCUatimQdJ5nL;{E`;??>W-c2#t=Sx92Io6Oxq;n3&HQ?
zTQFNVeL^@Q%C-=;hj1W-uR_=%%05BXwNuEh5OzDto)GpreEAyNo%Tz#ygX`nQ21fN
zuR}N_<QqX+ejCDf4sTP#?(^>@y5MfEqg=8=I4;p21y4AZC%JSu{8R{Q%>P}P|0LpR
z!Jh?x3E_-m$vy3JA)F84-w^(zV}x))l5PwBF8HV5#SktDxh%+5{lWFe;gQbvKwOpR
zHNop4+z@h8@RlHLaus#o31R;N7sFp6+!cP$QT`V4kKlc_^F0sE_}<_LTu*j-)5CZe
z!lMv!g=L)=OcP|uxrO8jBd?Ih_cfjno?ozlU_rsBM%WE56b8a5EK2b(N(d<uMo}Tf
z1fLY7@w8@XC54v}e9F;Fg;84gAlWc4>*(c#ln<kVqkO#1RVj?kNP8}fnqgE9gXhF5
zVRYE1Jmc6@4dYqi)dZ^x)(~tMu-p867`4LC!q7#m9Y)<SdX2VMGbN0SFkE4{CCM-7
z5oD@244?2d7wmEvG9~(gU>#0Od7}&UtT5_@`Pn|Zle5DJ3ds?CQ7|BQS^lw3n~+4q
zf~w%!r_zit0&32Oqm^VB>*5|W3`<BvkV-U+nDDq@!qI<u+I}D~6-EOos-Ym2v$t}+
z97f|X281y%j3!~c5=P%J-VLK^7|p`y7)GZsUJau;ZAQA=gwevu`&yX)4Yv=c=WzQh
z%<#HITZPfuu^C>$UKQJh(aurc5Yk@oO%9Wg1#<WHtuTfc^L7d2z$y6(m?U)$b1%aF
zZQeDEcf#l<BBQ;9bQkO)*i*2VVA+9beT2MH)gG7k!sr)9fo^I2!?;+{9e*-|6`kIx
z&g|}Hrws~Ya2V6Vm>$NEFdB8v_hA?l!x$O{Er$ud&$bEqAdE3Wm^31ck-|p_j&}6a
zLeE&?;~Zst7!w@6>U(A7x2}iZy1GQ&lfw8&+Q~+KEM#&RQ-n-)^iPD8DVH{bz8%Jw
zVQdLw78n08)`wB7biFx_<x-vngwGS4AI7Ib7KE|Lu~{gjMESJELY6rC!GZRU^s+FP
zhp|G$m0_%LQdfnsT6q3}c7LuFzD{tKT+g!^8^YKq?fFcQ%I9Hh68?pwY!=dErib0W
zHH^KF%ZYooiKA{8+#$GAaF^ijF!l&xt_8#0`y|(X!2@A@CFEcj-w63ykc~Vf<hRGK
zfC%F|N2kvp3FBxOZ$!{Of@5JE594hEoei7_<0Ktk!&@4D2;&r8QN>p(ehlNMFnXxy
zsoD;II*dXppyKB+ehK4D7-z${8^*mbehuSX7?;ENBaHK5{1!%$ecp?-Z{ofX#=OnS
z?_qd0<d85_I3J!kD%T~pe4nS^Rri%J{tV-07`MW>8pgFSu7`0Wj2Zitdpp&$vvN+a
zQ5v7{GW*pY9`1mRo1S(%j5}fcCACm*TFTw~k;3qPC(qwu{1ZlQ6?s%_y`|g_;{liY
zF#ZkWzc9)@^j<#V86C>umfE8*a;XSs<xf*_d%rSojdJ0ka{po7`j3>(GnBk4@~J2w
z2hNr}q1qpS%dgt4s+#Y`yVqPSq@ap)6+QBX_7=Cl{zELRqKJwYRjyYks-l>RDk`3l
zLY`DnQpHoki>oN1g7&PdYW;926{S^FR8dJq85Lz!6wU~JeZg*0ITb{<hge?4f`@f0
zi1M`Hv|;|Lo828ZE0yJ7d1yT3sw$pU;bwzXR8vu1MJ*MzRn$=NoQj$%o@dgA91aZ|
zaOYJ|_(!GKaiz~guQ|-GsCaU&Cqsoxg+3{B>?JP^9uFL&UKKtSbyU<<;aAb=gY-<*
z-jl3%-NWYHJgU5)VsY^dlIp|!1L_pYQc+LE;9-8Ysy=&WpSM;%Pd3|=&y%BqEhh=8
z2&rhQq8Z0Rg{mU1BB4TK15{WlA}Z$W&!eBrW2i7y`_q2xjjjijSFd~c6*jgosv;)M
z=HRj-9!^q4O2tbmURKdSMMD+uchA>I8o;C8@Q2q^(c3wc!{Khs@;iB&sCY$6=zU7z
zh)@}QK%r;8s-n4yH&t{{(LzN_6>rG!G3hlGtyHvTn}1YZm%bV&KEUR&gf>!FTNU4Y
zr?eB#;jy=u#!o!yW`A~M@2Tjlq6>$9U!J#Aysd&B#o57u;OKJ~x~qzJRCH6(UB-*f
zfAETz9m`SUhx~Zpu|rBP6}?q_A+748qOXbxDn69xyDEmL7^>nu75!9Pxa{t)VxWpa
zDh6<N=eFOtNRecG!K}e5dbLd}vA{=V7`scwSSe(<iVswbV%t=VQ1R1wZ@clCBUOAo
zG4uOp!)GUD4qFu>ceN-uM(oMg|EY|V^2ZC(o>feg)P*V*shFhVBNZR3n9SLvVx}Zb
zQ887;C&D+j$($x+I){FKM&eEX!fL)nEj`Mx&@2_RRm`RHtN3MxI!6V?Mt8Emy{im5
z<fqMi6`yjNsGzdyPWCg0!}f~;@`d)yP}_F&FIKTq#VQr#OH?dX`9mAaRcz^#xkAJW
z%Un!i1KRD*S*>D?iqBO1@rRG4tyQr>Y}Tn*&z?M{umKYf<=lDGZ!wDsk{d7hJ{S8<
zf?2aX%*%e>EQj+YE8;v=u}#Hx6}vfiq>FZ_*rkG_z~0-*A)93PZR+bV`)#j^eKL0B
ze~q$xd%tu(`Afw!4w7>^YpA8+kW}#-jp=p5zvb-P>i<r~VHMx2IKm#|=#TXrRdGzk
zDK76Sj;lC9U;R1f2QE#!)RT0}yRHHig5<PZSW8{K)&CQZ`n>Y9AjxUf{vAz{J8wql
zMfHq|vnqa7aZbf~6>XaN%1-utz15!~B`j~^8~$DRcNG^^JfR`KhD*}6KUG{6a+#BK
zOz;okSLhX&{fu7YOi}Sb#X}W0RNPeYkBa*$ZmH-~+jE;;&2gEY*|v7@FBNyW%vxE)
zHY<!W^`45H;~|E>h0yFo=d^!S{3lh=l4eCe%%uKEMJ^4D=FyO*fnsinvdlA|WIjfw
z<`prYhK~Dln7x38f*Q(bD61h|Lm>?%H9VyO8VYN8QbTbKMKt{Pa(Yn>#Wb{O?0fDH
zr3}BC)7o>al)L{?<*6pV3w_e2tx!s6xOl^T?;lqw4HwS27)ooHo?VE~4Evh+W=}3e
zET^H8hRPbsYp9^%X$>sxw;Q=CYG5i|i%)2?s45zs(NIl8bq!U;=2>PLk}uTM_tRAS
zTJ+*&r3Q5kHKnd>e!r)+r^WG{MedwqjeR7vsjVTX*(Z8MFhhe&gIj|~LtPD78oaDj
zvwQvp4So&%HWkd&(5QDhyNkWYAvmgr>qt*N?&NwJ>T5{uQeV`N%}x#$qFIg@JkIjD
z8V*SJvP_O$NJChIszKAxR6{cjx&}i-V+~C-m>Mk2{?_nI8X_8^8WJpALreqTnA%+{
z6xYDlJCOH$<ZYG9mlB=!4K#GxrIIw1>}9fZ8fnOPUZKM9vWU$7C@0@58t%xG*hlAh
zI=z+eRSnJAJPqwMw9wE}!|NJaX;__+pV?oNUfT6U7L8l88F@0=2;RPD@1(IA)Zd_o
zOiX)ILkA7*HSl{+r5CxVGj!DOYT-h(B>$j;`)v)KHN2vusg5ohy3!Lg%+T<ThHe^$
zYxqDzcMTP5dxlB9Jp_9a?<>88v#8!0`Z&C=hIci*$6*p>kfZn4FhKY~M_Jw@ZLshm
zjxv-zFJEY_x7+=`hWjHG5|%$g!!!*W)_F#17^PvfhA|pyo1Q5ej((j+LYuJ~#z{Hj
z1t$o8C^%7&Hj^}b<nWJ$Oy&XZv48$dl>$Ez{4#gOC$l|omT(u$<({cwmWF#8{?;&?
zJ*nX*4W~8C)i6)P7aBHen6Kee4J$RQ(y&0oLJdnbEYq+^!(t8bLV1>GcwwkgWsm#D
zHs!6YzVWM+3444ux2dCcd6#QgAuTDlN;&+U=e1Mr)f(1l*hq)huvWu54eNRA^xp37
zvAfik@K#x(RI89#v${V|Z)M0F-{+iPyL_AIrTg;yI>WPnhF$*qr8B?Outmc`4PR^6
zs$rXkJsS3E*sh`1&$)JJ*vS^wbN9QeJYUaq{giu`24;NYn6g^~F=v)<pN9P!4rusF
zLxCUNo;hysv%V{5lyXDu2Au8ddGD0_kcMwGoRUN6zDoI4!!ZrVHGHSxu!isHJgXFj
zBN{U26(l*zo=Nv*KCDY#(#Sl)W#NRoXSvLi?B}xz!w*8L1${qq-Ja!RU3vD}3(n6P
z&S^L=75yT3M#EVRziPPJ%(FS@Gb&~BSbk%H8vdlH;dc#pe|25fP^YZ-B2NJt>Xpe{
zeb!a8QYQ63G+dFSlBGN}xRE>KnuhBdZfUqJ`mZItH#FRoLfBEPMX&C^qv0<Zi@RJj
zN@w<2?wU|3v(YkFiO+o_miqpo({er3QC-KsT#dOz>nNq;frf`%sCC@`C-aepTsrdV
z$fqMsN6Y=WbL+^X^StaIu+zs%c@*r2kNYZ5=*X{w(E>Es>!WYbc^G9VsM{WuuA`6`
zkb_frhnFr<L`P8_#YCrNNgYq>_+zd@o8pqI1WV(e^sCt2k~Pm)T1Ocj%l7!5(NR`f
z__U6SI{I*+b(GgpK}YTF3TtO*e%Dh;M`ayVbPV6>`(lBI8E^mSsaiU7$x<H`_DNOU
z?wMzGtlXvcE0|qF$8$PzbiAmerjF-zxOBL6)Y8E|XHdkxwvIsyd_(WJsANb|?q(j3
z4zG?Z9rbkhbog~ptgGYeJ-%Ys6=EijNTTF*bgZ7`BVh<t$fQfx*O9H;&OBkOcTmt4
z*$Dw1K^+ktQ5_*xt;5h^>QHrPI&>X8C_4Y$KK3M{x6gYfc&=auMN0<<sOG#ha&`p|
zHm37`p!U!_-63~ew@+au4S!O{x04H|bhO#&YamF{P)8$&zog@3hd0*I#NqE1&TgjT
zRUNl=+|kioM++TCbR4CV=y*-XL>-fKyso2_j(2sur}LkfXrrSumu?+xb+psbK}Sa&
zCFc9y(9vGUn=}}v#C$mn7yfj)XDBto-cCBm-_r3m2jcZ0Ia@xug15&t@3-YLyXtsH
zM-Lr6C9k#7-AzY#c9F;1V~MhEu5zzvMlT(`=^;88owCbUb&juL1@FQ_+3ufReRV8q
z<G#Ezr=O1gI!5Xk#eUN<P{%MG?{k!O4AwD3$57UC&0FKRe_(~o!7<;d3f^X?l&X7t
zMuvLmurgf72RcTusmooz#C!vjKHk(|UCc6C#~2-Z&*Yk*V=ND0hB8jac=qa-%35SI
zTKEmm$`cAdYCm?a??WBTb!e{gk&chqU>)mqOs1$~zK&0IOx5v;j+r`UQR$a!8hie(
zXNHbWOFYwc{Jz^gpn!)j5PNl|GF!(S9dmWe(@|uruh=%<!CmUQ-9CmR_v*6i8vLXz
z(6NxSNyl>bgO0^ImgrcjqwhUsYG=>(3f`~oD73G>&|RW~o5Qq%ZMf!Isbdw#`d(dj
z;A$3r-K$>rvP0JB;CL~tm60OZpkt$s{W=cl_>3;6<4YY|=oMS@Zldez*sOz9uml#%
zCe^9xuJ_2xVcM#Le4muFO~-cj*l+1o?<qTU?9};fJ7t&PZoxf*6!+4jKJ$>UY98HJ
zIu7diPRC(RIvs~}d_!;NJc|3K?)E7=d_NY<Zam%d)l%Q6_I1XdQ21WBDSQirj#%qV
zzLYF^!rr$$rsI^3A9Wnp?YEqr5Y!82pVaY#aEkr|_9e<s?0=b7r*-_S;};!gbez+1
zo^9xw@2rkr>7{#otb#r~dXbA&SB(39<MI{vU10x5yv5JE*^N0%l#4np>A1|5P{%bL
z*L7Uc@u!ZfEctvo?~Ab<9wxKQJm#HR(|be5O&u)omJSxe0v9xJx45g2)0h6zahJ2q
zKuH7lbo{L&-LR+sKU_a`Jk;@s>%X-8KOK<IhY{CL@I9dWP4JbOl`ofpGz0l1S8fA&
z4CFPCPoj_7+m?I;>+xH2pAeCSpE#ORz~KdjR9@~XWB>*V8~lu^eUq`6=tT_sov}rQ
zUz!|x(#cg^2w#@_lz~zPUNjIeP})El1B!tR17!`AGf>sQvj)l=s9>OqVZYPwX#?Rl
z=@kuBGO&D$ebLTWwEeloRoSrLKjvSRQ}w*k{+0A+49vc%{8-S-EY%FuFz}pYuWn%U
z5%0piF8?@BO#{yxsKrA*=jEH$XxVg`()EP5wgDm)mjSnd7Yx)f;4$E32?h=<ReT28
zAIM<|4J&(SIn9$pl4*drvAv%Lbq&-rP+yF*49s1SLowSxj)7^J_Pr!VpKIfOVQY@L
zCnsniWT2UWS9xd#R0DAX2?Lse5~DM91BPL5R*;(pECW%44<r;~boI00hyh}$k1{V#
zw4*VJUfQK54WtabY@o4$25gv=@REU{<1@K~LE}aSXhza{g3tX?W)lOi7--6#U*KC`
z&dZ<Pd&Xt*$9T>0Hd1VEprwJ=WYk&+(*AV=tqim?@P>ib2HF^CYuFnj{2|Yck^6Jp
zEQIYGzc#16fj13wG|)-%a!aIx0jBo;EzBxd<69Et-V0l`ZBk|z4uOH4CU%*8qa(T*
z=wqU<iS7n^7}(E_m2!F-7-(RS@LmQYjXb?+X`nBifsV8%r=Nl1<9+WLSlKT$q>-E0
z-@pI^)5rRX{^g^>)WHUZ7}zC+3^g!}V?+Z3?;99y;6now4gT>NBMgi+FwVe81Ec6g
z2F7qW?)%ER-Qf$~(ltB`#aDVJ#xhBWESzCH4`iq^f&T1v^HmI!*a>^RQw;<!C?6U4
zSjc3-{udOAQ`qdCHrY`)_a~eV^Ic=-xn>xcY2Y)qP%LM0P8nE752tfpNoRp`=wk-v
z8JI6evDm;81D^_CAV`;6C}fd=T=JLsr4n7~q%IS(TyTXT%~lCnEyxnq7<h2XekyD|
z59+ROgMp3glX<S1huv#0C?A^M)%h|${m-|_z!wI#8Q5-Mvw<%Se6qX1Rs&lM{8>2b
zn_kMt8|+Z?`Rwt(c}w(F*l9aBWP!Au>}}IKcds{o&gFezUuo}_s`m))HL%Y>|CRPF
zCsy>8frAEWnt0yC*9H!85i^n7#5V@MHE`L$9|pcNaM-{p13w!0-oOz9Ct1ZZ&rt)%
z3>@dSKQpd%^ORJ)NcMvE>WJfBrV@G9_<>VqsgF_WKN&b};Jks~B>T?>&KNk$X(%>4
zv!{;>)ACo=JKM+X=Qz`sC_L*CFBtgUz(r0sy3lbiPZ0ZS1}|iXW~}fqBd>_Qsg!wz
zJ!9Z+1OFJfYT%lII|eq*^IbP^!@zCBzTl}{!+Vpf>l>bTDtLK?bISlvb0iEkuPc9v
z{awL(g3R8bbtW_3H}D?^PQ-tuC?4-a1GAp-KcX|3;7NJm7B4Spc*f_+g=d^RCi0pn
zZ=!;Ud?ubSQQSlc6ZuUPFj3e<5fcSXq?;&Y0w$JK%H)yq48?1wr;23o{FU{kvLNaq
z>ApCvsEJ}Mp-47czG|K8Nt1854e`RDq=~0Ylrh12v0W);qO@=xBd_%4&G%7fC~Kme
z=;XDk_@6extG=oxo;6X?L?ub8Y@&*ZXH5GP%v1(e7n^VMY9^|ic+Lc`2N<nkg8G~D
zeY{S1OlIu$)iU`L9+ruSm?`WN6ZK7Gm~gRt6CM+pCSH(KuL++CzchoL+^tYHho0wR
zUgy*?QP;FjzF8)CA$q7l_KG_So5brz{_4p#kz*okV!|t)7ftY*kRfQ=KZpW?Y){Ap
zyNEhbHTe(`I4-&gLvrz2lzC0zB<#;95647%6K|S`n@E^=-9#%BNfRj(%}um0(ZEDQ
z6Ay;uZ)75ErjHk;^d<VhOD1^zz$>wrO*A&`OEQKgLS7MUYNDB=ziNW+N`nV)=H_Kg
zOB1h|wzsqQIN}`5);ywX_H}zZ6K#aIHL<XQm+zb9)#)3ieeukzVqymq9l4TAM|Cps
zmXLQ$ye&3eOmsETS@_;_`Do8z*6^}>S@_%+^LOK+Rm|cQU=I$riC%2{bPq4OdYks;
zE2jgm&*_Knns|>TOX2-Y^k@4`jAMVAXuHAwm63b5I?%)*6N60*F)>Cge_rJqYGSyF
z4@?ZB8;neUU-U+kmD;y_BTS4mG0MbfdcwOt8WWc-_7xlJA!&QlM>7%@&M@BOYKDm>
z+FkZfFu{FDl1Wn9Qcf8YADR5F1SXr9!j_v@z<FWf6BDyd%rP;|#B>ugOw44PZ~7|l
zR{vh<3-4B^kMYbhQ4}HXY9F~a)Hl}z`8*TzX}rxvv*R~?)EO9EXyT`n=}V-+i`XZ3
ze2WFyPI5M$WVwkICf1r*XJVzaaFvPG^cGM4H5GHOF|p}XdIi}H`*fRq#kF2+HkjBb
zr1MDo*6?Sh{Sky7S^54gY~KoOI5};Ti7)7oTk~x;@ui6^V!Wep#&#3LttPe!Aun3f
zE_R0)Tu&C*ZDJ3P#lkELdrj=)9JJuEu;0W1E*cg}S@_DtLCzWzSGfMulX;jXPILV?
z@vVsyCQh38&ctC8-<vpM;+HL6?o%}>ml-^z9ObID%XQ4eaZc)?3OBO2JHd^PUGx3?
zg<gK9?+1353GM)#;zYh+E5xsl=jRsC&n(KccS3$M@q78;856&<4QG_IV#y!lv^i(u
zyosaN?ENur%e-7Z^8$@cTr_csv&O`$%Y3YtTNB*;X*l1-Ev)1n<xdk=P5fixzKLrl
zu5+5NaNRX=!^BM!cO;rN&v(njZ4=yO;tm`4rmpSub>8Lu%fu;u&Uu%sNg4Y?2KVUF
zb9{euRovs|X2`!L{^ROxp@4-4CLZ!cX(5k=M<#Mv;GSEWh1Zw3>;?~0xbw!nDT)KP
z<jrd#pM@tZ+^gd6mS%7JT(0Kl4#vau?1C23Ej($VxP?L%V4<kR+Yt7?1RKUS6t=*_
zFCy4f_6fPebHwnogc24Xy7n=Y6v73NoV`)nLW8O9N){?xC}W|lg>n|c-zraA_Ar&V
zz&3Elqk?6xu^bd8RkZ9QU9r}_EU99lrX-O+W1*^rXDw8-P~Ace3(r~L&KO6Ty>!L!
zpFZt+8rj?r;U>@XlB<@5+7=WG85Y{4XS*zL2aH(;eygx=`xt(1)_E=XEOfEZ)q>wb
zreti&=2@s?!IEfQ3t1Kd7J?S)S*UN>KN()MkS&Bfhwc2$MPhmF-vxXIlCNG5Ss1(^
zhe78d3s(g-R&>q9(Bz?Fu<Gx<45ko%C@o?kY9VGJZXszQC0P!u`PXc8CoB;83}gcf
z4K2KEp|OQVbbwgS_Gf)B3E|s0#$R)nU6VtxiG}j}a$XUggbM#Y)6BxFa!}1Jv}U(h
zXknqHh1cjX7JA)swc=5G?a9lRY}-Sy#?xYjr>%u{7CKt!WZ?}9?Jc}%p#ytqYfd}I
z_}o$#e*ukN?5e!d^_GRVEp(QOO0LRjz11_%o5QzE-))e^181@CSa{DuKQZWLp}U11
z7J9M)7A|@GeJ%9nSa0$4;Xsed-S2M~IrW~3=k-kgyKHKv|M`mH{&Y?YV=aucFp!RC
zVFbIYv2U;i-XR)lVHkbM!hb83F?lk0i|Ty~!!3MZp;etiyhX)(ObkqVeA{TGg;8wD
zX)ndmk8`nej^{9JZ0Z|tVFF#HiEoO94=qfzFlUVaW6q{|$|MUPku>$OOlD^wpDe~d
zkMT3hR12*A6G29&Nz!x+GlcMV6~);s&_dw|ibOEi!aNK6xI9Y#%(t+bLofVO3kxhP
zw6Ms+VhbxQthBJi!pxHXrGm39`zhs}yS&TjNMC!FTYOJlA(B-VZVmCZY*B!msRiFv
z)=Gh&5jj#<yz4Bi7ec;))4!)@Bg?PkuUaZ=lZ7uV?6k1U!e$F!TG-CM-K<=nkh#Ue
zRtwuWwMS(>zDG$tc3a_1u^nR5uWvdPhTUxE0c9_JW@N!VQZ=KWbV_H&16=$qT(fZ9
z!a)mPTlkS9XyK5BZ#ac#DaS2*YvDT!M=Tt*aF~ad5&E99Ba|~|Kp}Dl9`!M<3_mLI
zU?FB9Nd^m@uyE4C4;=I#^1t;$zEhHgmjA6$em|g`w(zrs-z{9U@QZ~r7S3Dv&B9qO
z6c+e~qH|mWeL2H!Dda43{bxB{%VzES#e0E$^;u5U!MR!Qg&E2v3zsci74Z)ictE*g
z;ZF-C^Ml5$YuMIwmT>Gq4huQfJpG1+n-=m%>_zXEh1(V$a_MG`7XGsEkA?eOj>=};
z<tlCAZ)wTbzuM&xsWaEV^iQei0XzAYeJpyg(8JT=$JMc}ToL4sAWsCX8oSdXc1I=e
zd-Fz+FJd?E2|g=zActMVyeyW1Sqeyd3Pz9~!57ba3q^nk-aP8!F*3`0GZpfp5fqES
zh`@~C$q0%|7H<S4A}ATba}s?jf>IGY9YMti+OG1Ij-X5gWtnlTr|iY_aujd+%12N^
z6mo_~x9#f|8dr*-as<yrP&Hy-<UBf=eyUQqiWEz;<KHUJ3a=4CwFnqxs4j%rANq4x
zLd^)CkDyiryp~fU$cP|Zqh4*PtHo~B#iRQnok?zK8?Wv>5x8#nmh=pLz1ZiAz#l<o
z1TRGJVg!MRJ#FhmP%nb|5!8(!OBAjc3|u9$*+s2A3^@@nYA+)mzO}~_j35+&8i6JT
zVM*mZZYI%;M311*h0t5uyyRR!IG|Ppt>w@n5kw=1MG%jmNd&J%kcjY4?r0c6qX_zy
za;GBTo4XoB>}8FFfy>U#roNXVcsYW`qO&3f-h3z0tZ4+zB4`mo%LrbLpn1f;M?d65
zI#YRoyn}zZnU5>gYZ1Iohlzj<<HapAekHf~tE|pxBW?S6w!3Wv?bx@o-J$#$b$Tgp
zM$jRG>M7Jnp<@J{BG?qi7je85!P^l`jA2p?og?T%M~b3D6kQ{DCxUWOl#ilY1l=RJ
z6v5>PdPLAOg3S?p89}cI2JBY9VD=jIdPmSFg1!;F8^Ov5Rz>h0JAo@CFPkIiPs<2~
zJm>x8s%u~bgCZCo!Gs6~i@|U~S`LX|sKbW|c|U@ABiu~-Ac7GQjC4}R2pJW@Xh+$$
zTOI50aS?p<wuiYs6lJpDM8Qdd9|_Xn;|S`!93)|wBH~oRPv{AbO+@p~h+w8fX9+GA
zoE^a&65;bASRjPu%#Ywx;a!W`Enn#9iy|m|&sG?gh`3a6Sp>@+n-xO%*v9Gzc0V0l
zD^Zd)5<R_JT_?(V$9_Wu8y)@`hu-0vg#7Wy-T!az;BKBRbj1jcaxvkQzoBf4U>6IF
zV9E2o?Gfw{LcUW-^L!b5=serKp}fBDh3t)BUj+Mw9}xUj@T&+83Ze1W5gc;(H(X>~
zK8oK(a9BhZ#pt99K9VDxba{Q%m->%Ku=tGkWCTA%a3X>YZ~L}<qs%PiI~Bo?9P9nA
zUm|#EUJl7mTp^zio)-L>1>On&e5eqWGh%i&f?p%>&CEHu*L6-5W;q|hZw|k}wN&^;
zN6`;^{)pg81lJ<C&h>D-!uQGZ$LyaGT#ew9$*v>0-6QAbx)H(62p&f8D1t3Z++9x9
zycNOi2<}Ai7w0dJu9xR-1otBNH-bvNJsE$w^Y-@qEu7JRgxsf(_4Y9OV7JQD2a=1V
zYotJ~DAJ-R5JjP!VD2dLMDauv`J>1iMU5Svd{OYbR2$~Hzu)HR{)M|_t?-7)IqB_v
zwJO?T!6@zxR??X_3Pi!{gffDKqbMSzXcQ%d6cePulR}C|Q9?+qXcon%oYYc6N(<gC
z<Y7|TDEJWjrnIaIQ9K=mCkk&A6{DyWMa?LlkK%22dgUnEck@_H-BqG^CW@+2Jj=#M
z@z%~DL$xTXM^SH&+Sbe|D@c+2xhRtS!=aT^E6NAPJQ-2AqV`F)b`+_$Zbk6(t?nnj
z^A0WNZnRi&N3r*zZ*<t}i^3m8+bG&akr~AcQ8bC-TwVXOca^@?)9XZ0H;OFQ$gYbb
z*F!HueIZs9*-_*~@uEaE!GL2Ej3OjF>?mp!ukKMFm!L;sL}4<ilsi$x^Iv7pV?7c@
z)Ul665qEf*vh`??<WY#yz|k8<(a7O133)k+#zOevMP_lG@w^g6?>%bMC>H$VX~s6N
zXU=$<N6{jRmcrWzQhZIw>w>KWTSu|JVkVOo`0S$Ih+<IQtoH2c;|lL8uK6ds<_*{B
z=Dv<mbc!N(40&RBi-Q=&@hDD2(K(7PQM?yLKd%2#yc0#=DBg`?N8T)i?BA8$qUg@j
z%K3XlaX(k6XB2%3`5Af%=}mML-_&3&GxO2gp%o+iiB=i?qZkmy=qScSF)(UBsxdr@
z4}=VgVsO;{xjICmOd2X=SQPI&O5O6ABcj}3@sFhMeG#tvfhT`|-}zegMny5~phA6Y
z6yu^e!cME<9v{U7k|-8NvGOa|hf&OmqQPzVM2S+F6vanTd>qAOQKkt_5uEDSd_w>6
z_-V{AJ&GBk&va6M&+*KbGUo`+6`UtHUy#*(8b#^mIV3D$5oh!x?~W)IN3kS|rBN)4
zVq+AaMX}r|bB&M{L?NpjeRUKso%23!$=WE^iN4-R-N0knqdrdkJc_k1`^Yy%@kJDy
z#fDXEjp9qkehVGx2fIlO+eF;Xsa-Ua(VbE3iek5jUpe-BIPZk-6Ws6U2ZW?o^&gDl
zYvG5Y_*Td_jt&2v$6~*W;;^H9PjW(`7|P>5%K6gGbBw*w)!m`I`(zY9L~$pIzoIx5
z#g9?^I?r`Fil4aDa09Pw*7(T^Hz?|7cz))h6vde+&PH)7ir>$9>J)JQ8pY)(NY05u
z@q84&3BT}I5xnT6UgAa0=RTVKA<C5~{-m=BzvkE!{5X7F_zg$7DWt)jg3NfE9`dGp
zXE*;{uESCAV{nhSa^`aX%_V47M&g?5pD6e-;u|CV_qj|>as3;`e?rI~2ze;Tj~(ZV
zAuWbg9nzI2GHchYN6Z^Tz8Io0#A0|NhWs%+A49De3dB$_h8i(E7ejgsg<^O*hHHxy
z#85bf;xUwnp-2oBM=8^OP@asTXbdYlWtZ>oDHg+1LbTTIO%**QV|ZnhQX$40ZCM4^
zDNnK3bxNriN(&(`6GK_y<s7Aa3?H_0GilU6cHykFVhoj}_R4})1fLPCD)_7*Evv;)
z-QkbFvs^O<e#z*sGwxR|x;jsE*N#Dnp>7OWF=WKRvG&B^<pR}PamC<{fzLtl(KtRW
z=8N%(yRbio%ox^HbCbUiL!B7b?om^RTnvvzl6o=Jk73I9o?r~wG3>48dohLpJLFL)
zCx+TXGN~|-%&qJn1OG|4HxxrS1`<_J6VwGM8Znp-w_=D0zg{tuN%0sGG4za~R}332
zW+!845JSTlQZanLN9BbC7teMV-Hl>+IflkDkiR52b(N<{3_l-ncj8jaK@r|GhGs%u
zjiFTxtz&2|QJS@gp{4NG1YdXbA$7e>Z4<+rF{oQzZAEV<_=aQCKE^YwpJoglMC>TW
zjJ_>VW*nc}*V(b}BBW~!?+EGU=-q|%h~aUiy<_MT!{`{|>1ks&d-}#OGKM)p-@7q%
zTI+c)hOw`C`U&=rVStc<g2Q4MB!mWoS(?L##&CU)O7VS186Lw24j;iWTI*vfs~9B}
z#b3%8!_*iayswPoDD?77pbK#>bakiiRWBz!R6dMhW?6UDX6}#ZOPo7#6pCXq-6Muy
zVmK4S)EGYD9E@Rg4AWwm&XQx88^a7b%zMgA`qDyI;lloc7u~Zs9P=_}3x2*aOg=A$
z`7sQglj~E?vTH8n^ZdS3snXcLfIe`=y)cF?4MU3rNfrxPBDge$WkQxasVju66dbqS
zwT6xz!|oXN(A#5JAH&udw#88Xp?gCNuV?r^<LLZSXe0SX*K>Q-&tupW!xxgo)GuS$
zEWC>9W0YZwMC&j0k80`J&Q)cMe@}V_`HmQN#;_{}@&UaviCgRV_QtR;hEp;87{lU~
z%KjLR#Bel*12KFR!@(Fj1~O}>`wj{DTCi%qtZ!oYmeYY3|MWMPkA&ecCxVF9UX@X;
zmiJf;$JyF)zH#Yp;tAm-Cx!eF0}UAE#Q7<P(;S8Ct}z#tz{Jd-xd2}BFkHXrIUB>T
zG2D&eUJU1AI3L3wF<gn^w-_$O@OumwV_32&XH^?t-eH+5W+)}rxOm(5l06ZW%QAu-
zzI<ntKV!Jc)#gsFzhbC1TDca(4-<TifA^7J7v)9_H-+31ye-JoJ2CvZKp`pPbN}?D
z@9!A?iQ!QUx#GAV!@qRP175R_@?Q)a*SM#K>Sb7&59p$%Pe0>+7{l2vs>|@E#gRLX
zf^o#I`f2?7UNuh~dE<C@ubMB8{BcCmJq%C8al5Q<##inFar?7V{7z8qBH<#lGI;HT
zI11A&j%XZ3;wTzN-8i!1C>F<)ag>jvLL9~8C=o}gINBEQbe^b`jHBNjcl+teQ*kiL
zFvW78+p3g~gIFexvO>xUUd!-Md^*lYs_;x4RpY1>N9DM^)~!5SpxHa_y_;NB;+Rek
zOa!MVf<-@7o{i(VIBLdGEsl>CxvLA-5M*@99ryEb)QZCwhd+)59W!gk;TA%!#E~I<
z%3C=uA%8r`_Be_+jztABY1VdAhz6N)yyp&ob3glqIEZxwnOZN7`f;dnXmMo6krPKa
zj@|2B?(OdJW0V);_^hRRq@@~&BNzusNRVXXUiJ0r?ulc3dK^aFevZzH<LFt%WNSAm
zo~z#Mf#LbX!yGC89*o5ikK@%in#YldBN@j_al9NyDvkzm{8AzK`cdV}vL4=}Zx~1S
zE}jBq>NRpmV~$R7chfkU#qrN=rAZtg6v}#qqgLMSxv5-R;c7J6SL!AIsJ`wNakPx1
zLmVCBU{}8uN9#D+#L;u3@AWuZ#nI)wJyVE}Cc8EsRk&oeW&a=Ywu|EpHe*w$z2K3(
z>YF^wy(*QeSCvk2?BC)3oV!45z|5St=?N?<j;>rA<Cqf1J8|f1Tz%r`E2JA+E`(wa
z)-Jr4qx5D^mdIezyBv`?M#eEplKRE*zL5TL3=lFfjv-F2L2(Rrc>U)+LmfVh1Gmb>
z(inz|_(2>aoYZeZc}K@FCXSCCWvq}71;@oP-q9z-QEzb$3z;a&BuD=!j(iXQSALC-
zZW>ILq=j*O62~;*)8m*E$6Vnv1ZT!EO9<^}a|7+VLNd=$nqE@o3;)zn76|FL&b26x
z#ln}wu|~+!IF`k+T=+`C6@o0VR5&kjl|)wy@(tK)oz!)4tmo8|=tjZM;`sUnFS8UJ
z?I)%}!B?-lHplTLXKNBwlh_i+);QiwphE)N;@BR?qd0OUup^G0aa@k$k2rR5cEs^B
z{UnY(bh9}2(LFfVCi;rpbbWr<-Q~9D0H;G7-^TIZJ@-LQG`MpY^&DdD!b=y)q;m0^
z`<pl#cF1AUcX1q!WAq?5?Z1~?M+6x?D&$xk$KyB=$4N*3F^(S`ekzU^U$*ly{1nG&
zN2mCd>Nyj~g*blau}pTIjpJ9YRB@b-qrc|)EsiP$GAi{}I#tRhAzoy&i~38I2=b4#
zoGF*sIo;IkFWpz-_><1h<vNaT`P^6IxE9BC9{41s(^X&IKiz3xyT-hy+=$yhrEkV@
zOUP}(JA%~zisP=s?+N*v6LwyHCjHBGI9JB!Q!*d2tE>3`i{n8Yea<Q5we#2N_+sW$
zFS*ka$elnafp7wO63ClCp#+dXjfug03HxE8^aP$rAb-MsfT}<O1%;6Fc_D^&#r!AW
zZGBBCoIsHTlms#oD4IaAg#F695(zw+K=C0eLq>Cdap5%!`xz~nu-nG)R05@hmrkHe
z0%aZj`2@-(P(FbQ2|S%Zbv7x1iV0Loph^PIB=}_(cjbhAFLFptPuU$xqc7Z56L>aZ
zf49Bb<3i56wtV0&UeLSzBM&QjPQ;o{`ARoG#YL4owM3~cs6FSV`0f$Km4H8ixh|iZ
z6(!(Jpz<XjgD-(gd(~E-2g!5qQ)!TyzzbqoN3br-5mHYukU)JQw9FQglfa9PlK9de
zbolvWikg6yKs<p&0=zKL4|((ij08R@<gGE<ZzgyK@mmQ*5~#B<98KWfqpTRmD_C!4
zyPV8D;ci;JWCAOOE5{GJTO`nZo03YPK?3W!{<FY@r%?hgCGfIvMw=wi*x|H!MR-$3
zX_mmN!pm0oH5bCi04ncOTXG0~@x7M7<d(kI6KEx*wO|{;wu0>hY4b(`?H$gH9TVt8
zze-?s0&gYob^?PE7@R=o1iB>9CxN~RlsMv>vBuRkfp-#oYQooz$C3cov5rfXKLc4k
z68K=X(v#vJo&u{}y%K1$OX-~ed96Usy9vCPz<>mn=l0#c<F$WS?Nj^F!}qEE1z*{x
zzP;KvFo9~<>Kcm+3`t;U0v{#taRS2<ct3&RET1jx?isbkU$VFFN^bA*h3*jvj7nfM
zJ$!b?$OQh42T8^xFqYFHfr$x>OJIBg%{pgKNZ{yK?kDPI5^I$WPSxD?vwVN=41RL6
zZVAgXiL<G0Ci&z9rX=_RpL&PphFcBsO-*1%!u~Dx3A=QNZ(0J=g}k*-^&GbiX42J1
zE31A}XfuaClfdc(*06*G<|nWyfyD`Yn!tht7IGqAa@Tm-GjzVff6!!q@0ya9!ABa3
zeU`H%fu#v7<1w;Nwz!tlTR2<uyYIj2UYWqE1c-lacYOvAkvj<_YZF+Pz~%(Lq$4G;
zA%QQX*&D_y|BO&JCh!?^jdFjUz?{79O@fRvaD`z5-pQS_C4sG+xk(IK;@_6QcFwF?
zVJ@mW64=R6OQK+sU#`UN1a2g7Gl4w`>`mY_dn18;3G7eca01^aaDW-FxxN-8`6_{f
z!oOHyKf-;;(Z3P$Z35p3X?)9mh~kKodXl3f{FtL07jhy2cSZZD1BM?GI3?nbj?GU(
z*1hTZ#Zi7s;Eco1Ch)89bB=O8fkQ>zEb4+Nzb9}}$R)w6^y&ouNZ^WN|EG}5@4egN
zzQ=92mcVrpmwcd5xh4Ew0)HoPTlgJ8CjFJbU5AgIVH^J=(cDSgr=uqDpF|%DJ`j9t
z|42CPb0zJLO-tH8mPztRG_N3|`I30T;rWyHE;Pk-QOXDwN&-R(3l>kJh!C0;O`@2?
zpA>TCk^N+Ti6lx&^eMqoj!o$#_*6d)%8F7>u)LF6LCDjBEUi)!m6NEF#H41yPxq;u
z?8G76bDmA2S`zz{IFLm3Bx)qlD~aAoJeNexBpN5tB#GyfsFg%CiC7Y~lTecQ=$w+3
z<YRcjv`xN@BwR^6+c?Kf=j@+ZSGXq$uMp}!wn2ENqr4!bP7<A0=chsTfXuto-1S&R
z9sfy>w|)|{7x=Q1c&DB_Cy5u62qY0qVqSH>E*KIF3sO{*&>X(*H?JYwbQCLzh{Jz!
zx#LMBl6WbJmy`IupK>Ulul{ORGKo|Y4U%Y>#8*{<;WGsrC9!p%+TywF+|LB5JX+uy
z+al+ued?3lGG9reX%ep|(JBdRyV5L)SCeR-1Yc;-@Hg+@`|KxtTCmb|&s#tGS|-u6
zzvs0i$Vpl!(I$y@NxYFnTOQy!U-f<p|75yoh~j=SqkR%@CUN_!l6Sw_A&HJjbV;IX
z5}lYmiMQEZNu-wuuTSOh?d9>JSq!rZWVIXR>GgZ?og})kt|W@T>Fb{4x2<yu6!5%p
z#N8u_&kAG}ekzN|DD(D7qHhullUS6*yGgu9m*9XV(Ju-9{k(q?19&02-#&_)9zG_D
zp-G%B>={`zXHXJ@lNiGFr@lLLh-c%+?l%g0hSACUcxdpxm<><jgCs^IF;b#qlNcvt
zR1%|wj1i<glP2c&l8hH+f}?*(UHI&O{Y?EhiOES!Phti;=U=5$L*JAnrgE@GDxV}V
zO~{5_3ZtvvxA9)@;LIde?@{`~J1dD<3*58Wb*p_0bA-&LGYFY4_^IFmLE6xMaS}_C
z*qp?dNi0ob89OkE&so=B+5Ek>Jc$)atW0865^IxK$2pkoU!BAnPL@JBXS=%3ZwlXk
z!Cf(L=K3TyuqbvEvw!31uq<>c%kP<PCtWF?$wwu%pm!4|!n+E0R=*JP-a^;e>)tI%
z>_}o~61NT&+M2{R&fKE~d7pGU8#%?km%1y7-E_Hm8Lk`N%Rl7oNn&pjp5xx(b#oZy
zqs#j^U-qjcUnOxciK|ImOXBM!4khtJ5~q^*CW&v8IG)6bB)&`HFy}%NM;J=^|J>;M
z{h@pB=f0!#kXbpEH+#6db&S*bj>1s?UsoN&e=>>l?|8<JvNub=IH~-Y#7{~5p2Wo@
z9&AufC-HL<za+6|j;sA`mpNTILwl|gFJzLRP2$%i&LvT2mV3=HKe6QxIZXO3i3?(L
z^z#s-my)=g#Ggt2-&XB2MOm7jG546~k0gj!1kVM+gEqO3-*8<|;s#gI6pE&BlbuF~
zOd&0W+ev$O{Z0~p(YN=j)z-NhrDwDm>Asu9y(Iol;-4fQCDCY*`{2hO;(e|R3HQIE
z{3l59fsltue7H_wl;K#)mpg?#Dch;0?N{@r(4d%i3U^(mD*1%ZI#u(D6!NFAd7-O-
zU_rrjL5hV^fbhbO@_c_+u@s(6p;QW`Qz)K7iIlzZRWgO?J^lI)Pau!|Z!BI0Je9Jy
z*Lv>omPw&3v(I-`OxX|CmP_HY3hoLiluv=%9o&BBow%o^5SFuIzgj7UF0c73r%)w@
zXM|Tx;nIGU;=%putct#8Q^<Wlt(L;Uk8(5mTnaT)=-m)~8shmBYNhac1GH*@+9@b0
zTutFx3K=Q5QrMBg&J^4!cv6^=!ps!BDfm(dr=X_bPa%^v)=dkg?3)EIr0h$k>g$!u
zrTleLsC+=Jo5IjC{;U-0rBFYGY>5U0a|B-$^d3;v11c?p66M8wm(~8$>pTxz`?M4$
zr0`)1dI|;)KLsm=zA3z$LL`M~3U8*+A%$29@f2R;fuxY2@fz1FDKt$XDLlooOQE6g
zmjxRM((EN62bZ}TJ4%xjN)E916BwF3POa@Be^q#M!4`roQ@H=VZPqFU23FUaJuJp;
z#DGa{g|tiI4M%C8!nn%ynA9<aPAT+p^tV#z=45|c#LgT_AzdAtcZ4)MX;<1kg&q>^
z>7@4Jm^wVqdb?FLV|b4~S==)=g?=gY7jb~#h!h5<Fert=5*;QuL~y7e^Dett@O|OK
z1wU}~9(nC8rjZgIB{({TF-~gka9-9pj$R>ESK8<rk|)dy?};f)PGL$4lTv7YKxOzS
zg^yEMH6~0>oSH(xi=OH9x&!JbDNIYD`vG;_0hQvC11d$5St-os>`39u6y~HbH-$|p
ze38Pu6y~S!&PxBr6h2L1)?am32rdw0bfJ(%f{O*0q_9*-sIz-n3d@BL>{5ruE4k))
zJymPESEWE)Ex1N-Z3^pzP+y<I2H|!4D2#r_S(&o$YJIsPbozkW@8clvvGN@YsRr(W
ze=1v;`nR$zh3!1*zRFhmXSTc6BIW<c`VJ^5il}RHypkjb$w->r?wMI&mtEN1AsX1}
zp6LnQJpoAqW<gY<ih@W|qM~Flf})ZY$vI~PM35|q5(EVCzy0>x?|kR{=hV69)~i?5
zuhOgP>Yko!sa_s*+^Uno+l2Lb*pP?)c{q@Vjd|FVhrM~&mxs-H*pi3cdDxSOt$Em%
z2g9XsDXd>a-JXXXdDzKmyVW=FwcInW<xYGpH*>SPi!*MsT4tNC)dCNnn;coEUSI1j
zw?ySl@h1%nb8~Vq4~Oz_nNB7TZLX+?^Kc>$C-ZP54@dKGEDzWFX8oLpk?XS=$Qy6-
z9p}7zEsOjY@jsEy?z0@F;j~li{pOxu1yASUj1WqG6VmThb#GecxjdX_b<#2!E(p0O
zc!^!vzBGl8ew?=SL7|5GbFQ#ePp2N6=(?7NKUoVuvi$gq_T-_QALaeHk%yakxXTI1
zF6*PzTJO4*hrjdq-TTzrwC7l}J9G=nRPGsA>*!0KdwIB@=e%Fk{RidWJd_yhD(Ocl
zKOW>^SIeyb^3Z#`o1~B*h5e3%p@<(vg%=YnULY^w#|JgNR4DC789(61Q;Tx5i?(|Q
z=?rE4$cTA%|L*!_a`r=hJXfs@Q!DsU(T`ew)b^v29}oL+tgJGvt+%otvqre8`BB}E
zDt<gP&Q(>=%1FC%A@j~ybzPu%qPn|=A2t0T8MsjyI#j9S$0L5{lho;c)b)e!=kTx4
z_?kyOKkC!A+o=uwP=quTY~)8{Ax->fA>>iPrh?4`nX9=UIoo_BEk)uIOesiB^`mb&
zm8q&9Za;qg$4%}jNc9Ry6Kv&2>jHTjKkiL;%FOUP+qNb9J#GD1`<mC>=4<Cidq2W{
zMEuC+rTqx{Vfc~jhtH3$e&^B8YF+6*-qpd6j(&9Vqq84f{P_1_H#Y{vrn55sn&+xl
zp;g7~)Rpzs$NZRo-1WF0PY5A@(vNP!^922ZT0yGrM?m<eb5f}std}w1<su<JcpAWS
zdoIUOKTJO?KWsnvt+{g*3b&f#dilI7=68-d<81kd(sMR=yI;-ZRGM7U)14!MBh!zY
ze)RC8Cl&ly;YTk&diycXkMVx=@#ASfUiITOwx=JL)#A_l@q!=y{FruI>F>ug%#!DM
zmLtcH_se8;_V|bl&u#O)$QBsnIulcGtW#g|<7Gbv_%SF&9pBzP@t_j@**nk=;wyrK
z1Ye($^Ezwf$7nxhS8#Je4e?{;7S}LNs7;=sf-Rs77vTuOHw51ld`pn}BZa)}$2&qs
z708!;?EI4MT|dV7@gD2A&9`8iZ>%50&GT~)&-YI7W1=4m{rHsC;i&LC&u(0|vnNq`
zn1`ny^O+P;C;KslHQM8y%69N$x*v`HP-Y5}eCWqV!e<D6Ecl7w?)_dWFw9~FMKVW_
zlDR_WvDrnZ$LiDt9Bg{_uWPeD^W$?rmin>Gk1zcA{Xy!i;_8>2H63%ls^t6151zR#
z5?n0E=+}OHQ^1!9`Bv~dKfW)J^P@3ym$~?eYVlcDVzRQ*k5ztb^JBXotNr-FkBxq8
z^5aK8*7&i3!()K!Cr$@H_-ZI!*8T<A>-<<Rf&8nUUgDRv(z&zc4d!M)w)pvFd*?a$
zwwQ-+;C%T-Do?Qap~cnPd^`Nu>Bk>_T%()vW49j{{J7|M9uVyDquCbMN#T3_*yqQ7
zKMv4=_;FZ-hx|A{#5vpN?|_Jt`#O8kBb<PedQ9+VLCTK{IpIgX+T(wzzxZ*=50YO6
zPYa$A{7vwz;5k96ofk5Ck*jl2?<K$UNum)g+~k+p5gg$~y$o0UxGMbUe;!7;A}qY%
z`jftque&_q`OA;%er)!5zDrH}Wt;DoAAkGNKtn?fxBa-|M{x}$G~D&$A9{GsR(c_t
z%{FPF{_A%>v&OGL^KgKh{5AJo$~;#g4bOg+RZQcX?e4-F#y#v!>!}pcP*g+dQt55S
zWN+W<+I~#o9cxJqr8HF0P?bp<%4n#dp`wN+UZq)!tg;%Q;UNu2-C5<xxBISb^XYMg
zq`Zcv{8Zm|-}ApKl{6gQ;d)qur(xloV`^naRp$YHSv7;hpqhsI8hQ=(Ro75MLro2}
zG}O~@XppP6hB_J^(NI^zl4|PiE9&ua>ZL1AVDzn}4!X{yQj=HVKOZ&H&{#vR1|Kcd
z@Ti7n-0;&9%~>KZepRa4yM<P*a}TSbw9rs}wkL%xprP+8o|YP18r*HNJ8$<9`Hs-m
zIm(lBQxpv<<+NNwkwWg*R3%4)S3?@xq)6dbnlq%^YiO;ZjfQlIW(sBqwiTpK%I;!W
z!rK){&fG8bX;n2_qSe}#<jaa@zIS!d&{0Eg4Sh6p($HB$SVKf}mXhRUR~HRkH9V%_
zaSfX0xM<$MKB3`Bsx5K2d#0zGhCI!AbI-3~?iqK*wI2S^n^9fkdAkzOz}NDFf`(v7
zkiyR0)u;wjLsCO`4VDI*-BCIvAsEvTXG7^;N&*eDh~yPVd!{~`b**(yvQ5rY8hU70
z&^BjUw%U`usiEAc>|ZZ>KU?L=T;+LML(lELXW0uHR^3SLtD&EUQ#VzH{z9JN=w0Sw
z^mz?~SEs(9;YAJe2Bi(#?t4i?A^vV!!vGCKmMSy0`vyO!4Af9QMF|#HmTmVXAEdsj
z;WZ6AbnMjeI!n+{Oh<7YLo^K4uvNo04Z}1H*D#}*=Q9l>G`yi<q=vUOys6=-Ev}9S
zT<Le+Z?O~ax*5Lt!u5`ZQ5rth@QH@e8m@k!zOUf}4e!#Pi_S09#%Op?x^JxDIKlCP
zOr0QPqTmX(@Vd7ZmN1D|tl*x^HgBv<k))}D(*&7ox{wbwd{iKrA%q{Vo~dCL+eE{B
z4YM`O(VP!fkD2BA=3XjGW8S$Mx|MM&hg0c|7ijoYL#5iDg>(`3UHm>Xk#d^xxrQ$^
ze92)PR@fTfYxqjTB59e$8ouE~<9L&(9#g5ncXGaEZ#K%NKKXaTNtS9@CWS0#pK4gG
zVFf+I`>s{LDJyCJz%-H{MEOT4jYaL-?pss9e-g4*!#W}BHEa;FQN!i}olQbgvs-T|
zAS`4%J6gjn4S#FcsbQCfUpRy`?AEYH!x8p!de&YI`#5cPXCKn|Lt5{C;Rl5u(4fDR
zUG}G3@0r|#@0UC*Nz|e8Q4Pm5{H)=)h7%f2vRO`)Wog8=sag3XU()49=C2wqYxrHm
zX$@yI{HEb7`{kgzX@&QkhVvS@U|rJq)`a(hhW?+bJ?dnTU(_%q$4!zSy~1&&VbXf<
zb<zAo!=E%#_%#h(Cc3EnShcdme8O^WXt=3iO%+E%h1(kL&{fWJdDo@h)$oso!a9oR
zxToPh2da(_*D3#U@{Vvl(C{BM_c}k!p^z_(QAk1|Nrzdbh($#|pO?^4Qpfi?mg*>_
zqqL4`I;QK+3u$F^)Yef)M_GwN@F5-Lbd=Z8<l~e|Iv&<hK}SW-L3rkc+LdeD>e`Hy
zZB<%T)=@>r#V6Fa%QpY^QuC_9s|i*Ytf7NTd`-bxf>fr2*L_4srj9Hfb#>I!QC~*`
z9SwCfl8k2xH|NVjyj)|s=p*af(~>4S9@U*Ui<;_Cg)|dvuA_yHmQp?oPu1ZPo+3zn
z3Kh{Lq0lYdqr<BsO-Cyo86s(2kgJW3{JiM}xmZZs0!|_AZ>J+$M~;s661`Y0ox)rl
zJ{^`0TSo^S9d!)npK$5uq@%NrCv-fiql=EuD>r9&Oh{K9Baby>^l^#K?&~J+rXx>B
zP$YgqUGUqSR+^Bfo4KeK5dPP8pP?h9BP>zM*%uKVCoVaJQQBaNB|M0Z>4=Nki>I3<
zbR>1WMmMXYyN;)HJg4J%9X)jP)bX^=H3GeK^rnTwi}m67QCe$<TbC@~iXZK5RxGvA
z4qrbV{dGK}<5@Ps&XxlnNtyC|^DztC@O8@QXDu#2)u!DJ-wQfk)bWa3^d%iH>lmP8
zpbnkcclc=hgH46zFHD*6Rm#X6K67LHL8AGp4jNA#+CP|MK*zf}#^@NTW0;ONbi7$$
z+i)EtbbQ>v^<BMI&4;w48E?^G9dGM+N5||PzW?8(Q94F*F6{6z@DlIo7^`EVj`wwp
z(@}j)q47E<=*TyZZO-cK+To);wEP1dlf*(=OWP*vn4)8<NZ19GFqA0N@<SaT$-r17
zI77!5y7MaX$2vaIF;mAZ9iLHO$GIK8**ZAFFR#m(BQtKU;5<PN`}sN+6!3*YJ{6pK
zsX2!nb2+nVefuw^{I3LgA=<oH$JaW(5d*#zTp~ziX8Ddo^x2{$`Q<E=q+<J=xw%}&
z3LPtTtkSVs$4@%e>i9v&k2=<f!JNgM5zeGokjg+KX$GgjIvwjd&I2hM=x{zxVbVq^
zc9Y;{K?=9%*jm813E3`KGnukW$8HY40D1+mN5@`Hq5wJtuusQ+dZ7R+25>;fL3#-t
zmvkJ`aahN1I?n1iqT{HJQ#yXtor8sAoZ9K`lfr-2aa;)HCv?>4p)`0`sWr;`i;imx
zTxTmNr`d^9l`}fFRZu8dbW|m-vvba|5$2{|;M~`7UI!(VpWLjFbRF)xtmAhb|LG_c
zz!e==b^NX4wvInotd8qCZs?fzsk(Zz@+W<Z@HQho+-`YiD>v!%hIklmaVSpC{dA<~
z+`CTnj*h$Z`8w`%j*Rgz?~>X%|LCB?^~t&a>Ie+;K45Ef$^JUsH&62}8SX8))A!vc
zYT*Ei2C$-;r$_*wsA`*5=@b?VptuN22tE`*Ng-4#C8V@q8NsrG2%z-HGE^uh(PkgI
z$_ts&F1u0y4+o$I;0~a20968L7(k-{ss>Ok0Q;&^D}d?&bbHTNBY^rleOvZ<$<yy;
z)}*GAOHy0Z>Igm(z}Bs5-2mQinPH@O>oJQ+C~OeG<Q5qu{MlOL08#_^eYw&kfEPEq
z9u;gV*i4YZ=0aKo(6T_{3Lr)Jgm*nuPy(p4QX%=gk?IM+8$d<?Z39RPpj7~wJALVb
ztp#mY8YOK4Xfe&B@AQ%Pmyj7i`v9^7$O_=CoxacZdD;aqT}Vy<FMQ|A4Zs(`#8Ej*
zclxN%fsMZ`m(h7uyt{V#ItS2&6%Qa5K-T~s3&0G(3gGborwqd6!(30Y^#TY45DXwM
zfJOZkjj4mO{epk&^ch=nA1{=nOVZ6py#HOwAsPXYgjiIeoZ2hB%oUN+SYVW$RnGH!
zQ}=-(*}O3!@}jR6Pq}c!{rgEJ9zeZbS&0CW0dx=GDNeK-ZEiJj_qfrf2ZzBfA5-^F
z%<3ILp8#eCFe`wCD^i~h;N<`Y1kg8tej@2F_=4aw0X!>&n$HFBd;x#;E9J!k{!#!_
z&NipQzyMweU~~ZQ1~7<*1u!&#VFBE9XT8R}{Biw~?AHSr%we|6H-xTWLzcPAm$l1B
zGCY700lY10)O;g=H`y-|eg9^gkpYaEp7!3RqQoz6wjsU~z^DLr_f*W2ZkEq1V*+?D
zfDZzg6u{U35-U>21u$MpShOU2LP5#<?zNf7Q5xXm$n-@;eJs3QYxiVUA%G79_=v-7
zoKxD=0NT0S(>Ns9s;%9FcKN34@)4OdgAIGH4aqmVd>?aqO4O>XP&hk)Iqa-CDOUoR
z8^F8(Rt2z{^ChFq`~W@;;IjZ0u-!-=&2GFam)O_xZrkPiJb<q_3<4nkB7iSNf&7r)
zH!dr8aR5sK_%?vA1NeqU7Ec>gICuS{*}v`beaB(B+qayPTFCbSEETd$FmqQfQ>i>|
zX%2BE`=zjR(H{c%k*!C!9Kf0YehOe?0Gk3>%dUAnjSA}nSogpD?;J`t<lDU4w>f|<
z0c;O|5*o0THV5$BquK3u`=~||+3njAz|H^~@AeJY?b}6@il<H3?IZ4GTLo~283Wia
z3P%Gt##JDIg8>{8$q~8GVc}ox_OTF#A!aU1_&I>%0i2M_)%ZN;q>xjByzVarX8bDT
zv>@{`>1+V!0=O8!r2x(caO%^XO}l*;SY@&K)NUWi<$`j47X$7WROe~{N2_=ls_yaq
z8Ngp`r3BU`a6Nz<Y-AfHY}^dsRsjE4&auPa0o)GY&oKT9<4yo~InG1q9Kt^V+~Y_v
z_!0~52k<XPS`aS<@qqK4emDqs5QTy$*-I%FMDZX$YwRv8SVXX>B)z>wDM1oMl_07H
zQ7VYiK~xN4?RBM05M_hBarTxE0wSTXoREh^&L{(Ug#sa?l?pT;7M;oxWg*pqAg>=p
zgCMF0Q6q?&LGW2X?I7v|QL8|W5-L9;Np+=!;ukaPN%V!MbC}vNh(<xQ2%=>Wje}?s
zMAIM+5Ai-)fJ3&a$zBSP!e%0D9z=fB6?9gLhpMQlLHI6YrmzILoDxKl^D0BDsV)y2
zCkTHKS`cYLv<jkA5S@ek6+hYpk=Ul@29X{_MiALjT3f-(SCn=^WD4gcvV^cTC~qGG
zF`wrI!6aVP$2NaFopyEzqGJ#w43xB9sdNeA30`ic(p8Y;F)88kAogF#WR&4aN$Mt;
zC#e+bLHS8<5M~g8AcEANtr&ulAVNYY2{UzYHc7ckWp}JptRU<lo(`gK5V0Ws%yK^!
zM2{fitSk)^$qy$}yBCn59+f&hgXk4R+Y?G3Hc@AHZ{Z{iu__)Wk@O3q{l(1Z1^Wv=
zBS_)1LY@m^a(5r2FG!SC=x{0X<sb$GaU_VNK@1Gyl^|9Hu{wxBLA)Bo%phh3@mdhC
z2QfN`cZ2A@Ds^xW!-5zte2C!CAikWaZv4wTB8WGF7|DSY#GCBUvC3P5_dRa%W_x_Z
zcbI*<LNZE{KH07?N`)~&yhjUzm?HAAL5vS#g79&IRGS#Y`$157QV_1n86O0}GD#R%
z4&PE>u~UPX7Q{zE%m`w75FZASe~Ekp$VnJJF0k+uDV!1(J3ELuL3|p-XF=ze*K>nd
zAcTA#yIXpEc##xF85T+sqn`)yMG)Tyv6Sr)#8*`FxR(en68u_laS+E&DNJJcMkFkR
z{M&pUbbc7lC=29I#g_%KJcx<I)D=OjlnYVFR42<_^@kvS6#WB1tO??$AhrgvjTK*}
ztPNs)5F3QA6Wp*+W$iWwu{nq>()gPSx`0(?+cL_|+8)G?Aa++)_jBlGcy|V|Cy2d4
z?4nR4D?B+v+j`?|y~NzMUPku?K`d8ReKOs<>O+-=9hABpq95Qy-s5A9h{uBXIf#Gh
zDuXy4#EBrz2XTQ8@K&3XY_xgGnIL|V=qW+Ue+}Za@GZ$KMt>8vvz)x66-Li-_^nDM
zxfsNyAZ`WmH)kcC0B4Q3Af{fC?0*DtRdP|%bC2(*PU+XAC_1RWg18>U4T-X-dIQVS
zlA98x+o9xk5O;(4Cx|;Dqyk+W<ur_D+!MTCVA6kd{#+L}sMQS=Hc-SsB?D*HDn$(x
zGXMh*87NNSDYc}5QU*#0XJ1poP})El17!`T$IE@{q9i{lpO-UG!EoA>^701qg%za)
z>Qnfzfy##C1gaRQDx{ZqjB1ACG#Kb5Y8a?#pq7DHQFmRz+JcPMG4MzMU$j!8q@G0U
z3pS9{R@c?W2AUX{Vc=r}j~ZxdAYdS9pqYW@2HF@%H?Ux#%EoD7przsX3YXz5h^m1U
ziKYrF2IwmosNgo>5gji}*r>KPkS0;)YGt5z_aY>e_v~JTo-o5eXI5dJ+SWj(fh+^<
z4CET{8E9|dw{z+rmDL;r#B4$SXoY<06bCyP=xBhc`AMCGGs_!$d|eE5m0}+=@T7rm
z1|B!?gh-}^vPNsg8S)JH4QK{*1J!P+l<W%>-x+X{h%||47zh~{Xy6qCVFMAvnU60R
zh#D|i7Xy6^SO#nZJ;mCXfw<WDltdE-zZr$@!f7*&C*~VZ>|r2Z*h|QaJwEC`ZJ@7#
z=l)OK`x)pjWj<rzSs|?B&Z${M7D#+vD$b%_G@Nz(C4=7<PA7TUzyJ=OTWvVw7#(Eb
zRRixB7-ir!1Fy4%FJ``JV6aqbsDWVyh6vAhGQ)+xAvi*C*&ZLOPfmrm4A2XW6gh=&
z3kjCX7;WHP1CtF*F)+r!dmK?OtM3~aYhWDbf<(s)(!ESDK%@c#Nxp<L?gIl%nj~tB
zP8Bt#ekf#`;B-N%eI#lufyI7eV5Wgz44g7B%fM^{>uINfIR@q$SZ-hi$J>3^JOf`D
zSY%*6hqr-+20k_LrIhnoL9t&5`CO1TROy_~OYm~})-E>it%2_hd~M(x1Nk*#(h~6)
zH1&G}OARcOD05N5)ch#PN;dmgSFa)|KQYO`YKi_};70>>FJ>|+%UyO2yGb~4tpO^p
z6C~-|xfmVMMg!Xo>@cuN{L*GY%C{KUTEMpnd9{$Uuh?l|uYr9Ac8NdPEuLf#9YPfk
zQ|VIn8#rL#sDWb!4jMQlYDWaAMxDcgbVQ6&|7VGw5M=7{f}+Sz8gSQhiv88VX}Zb~
z%7t)-quRhN1AiNMYpD0Ef!_^WF>ubnc>@>dV`T$*NytSOJJm(WWdr0SwDT&*KTE5k
z-ZXH{z@Neut`r9T5}oT}1C?(`lyY(gmT=p^9eVN*iiDgJ?i%>lzykyS7`P|7SPnJs
zOBO2pS6~1og+k6Hn95C2(GZG-P%4DdArzOQXlKcgV{M5L24}meM$TMic&+nlSwR-a
zya+k1&AKyMK7<M(ctc1Fp<)P?LZ}}?gAg7Lp>hZ{L#P$Pw{5*uLZ})-wUD!#aA~L>
za*&}$h}-@geu#!TjMioer_?$jJR-S@jLohqng{pz>PZsSs6hROAv6l1WeBbi8i&v%
zgk~Z9wa3Thi8_yl&@|+H--a2fPi!7S3n`Ndyioq-QbJHeaEFi@g7SZ|GYgeHaz)xe
zWtPw?gw`SChTsdKO$g~BWQEX9%*zNNGX!3=tz@AxFHHkV&^v{YEhXoKKpS`=8c8+k
zutpu&dV77er=wWQ3o#e3-X(;tA@mBPcNmX_@OTKPIq*VwB7`SHm=?nH5W0ns7sAUS
z3<$v=f)>J4A@m4A=Uw4_S4@y35JE5nBZN?a#1aw~j0i>rO?J=*H?!ChB`Gy3H!eIO
zm=x?T$W@ODJ%#rV;Ta*lLg*brpAepwXx|V<o>i#HV*3f_n4yFjpOxqfg3pEUyj+@V
z^tR$DFN*Lb!ShpH)E~&k3E|BU-U?w*$hmi;D;SbbLU>Kc>m0N~K3<i2>3k-2hK4XK
z1ZoZs;f;{9_>Pb$eartYIwM1PJB0BeObFqf5JrU@7dJNK?3YG|@NNiWgwr2V{+@99
zQrBJ|qYUFjpOT3oydT13iBkT7kV&G?T$D`UQWC<{kmGo%&+>^MhVW4cE2$8|j1WE!
z;kyvN58;y#W`^)h2)7rivp9pUd%q0fs}N>~Feik$BAF*h1*XmyzCduH;HQF2`YeRc
z3-}j8y6p8WDv*3FWU(NN$}gE@31^C2JwJ(Eur!3_Qjuj+1=fP=+KPheu!5^Y_#uSd
zA?yj^#}L+pusMV+;#htPVS{)Kx{I|UStq!@K)A8Mw`>ymACr`=La4t($hHu+3vrzM
zb(Qj+65S=9ibC!I_J(jIgrgzs3t@i<2SU!qfZ-75S^?*MB_)SB?}U&a3*kfvCq?0B
z!Q(7*tcyv!5B(*CQz6{dywvBh1H-Q&5SjX02xsXc!hEWZb0M6kI}M|F7#Bjg7{Wbv
zeF&H6Z$r2l!Yz)>kaNm$ErdTwLbw`oj#mB<tjuE>E{<}9LS*<$<kv&EA%qet{LLQW
zX^%+m2;MD7rCPowFG2DzeZ^YkKe^%q;T-Uk6bhp-jl7siwfJqNNEpPTg1nb65k|={
zYKBoO?6{y(VU!P}LKvmPC=*6m5mNq;5QLrGe*VtCoJhzkl7vw`?A$QYr#&1-l`yJ?
zQ8|o!uUoNq7E55XTG;Xb<doD1BT_M&oLD=II$=B-M$<4J38QWp91IP@s29fIDjtUV
zG;+F&gc7bw4Z~;@Mq^QXuVzLQ5i$z{2Y<6Ln$wstlrUO^(K75T_bGy0`dwjXGr+;a
z-99%1<f<f*yTi`jAU~B^(x@3mUKsu`T8Gglj1FPvtR_8-j4+NLQ*#8{hS5$)rXa^m
zRsm^WK(dAK04G-n^ZHoYrA(5JVRQ<ka~NI1cp~haz;rEW^T(yR9+N2BmTgs@cLZT{
z3p+Q+Jb&QX1#hJ_X$LFp?4R{80$~J25*1{d7(zmVVQJEcaJHl=4Lhn$5prg?!-#QU
zNKuI}x`*+UR5=-T&d_+%O6<Yr4LX6mXV^ItBk2>y(_yR*J13TX!{`^roG|8w(Lao5
z!WbFG+hIH#<_pyrPR&&J^I^OY#%p1`&gxgoV6VLx#!F$m9L9h!UJW}p7X!o2J=7~<
z3<{&iULS8U=*&5u8JJ2r9Xl6}!P2Bd!VYISL&IR(vSEjXG3jC^8+n9Wkr#b~?fi)P
zrbOQo{HJ}+J7J6pJLe3u!x$aLyJ377#z$f29AFIFKaBUocrT2xVc5U8#z|{T5I$az
z<AHZ5yvO{2m!sJn`M28a+gEzBXigDiQB)hT*T<x3VN4eta?07=Gs5^p`knmaFp3JF
z8OE$Ic=ARe11IdNm(&BE9Iln~!uTwV&%>A>cD8~H3xq5T<5P}U*><j(r7-UoVJwl-
zzLcWA3S*H(7l-k67!9kdZM(YjukuaUxl?AAZ^QU5jPFHl8GDoMAe=T(lei*`m0_%s
z?8$-?!u-@9!uT<aHDUb3saG-Oco=KLSQo~QFm{HqJ`Da~@QKZ?tzm2s&gjN4HVNM>
zxP={b!ueex)fl#gv7M7*v+LY@3UQaDHd&z_WPfq0hOsvcM)!-{TA}QtPx#5p5)M$l
zJ(Uus9^zmQgU=9;2p$tWDp=B$@v{)7&e`kZ1J)B^oDAcaFiwT>YZw>9xD>|eFwW51
zhjE?*l73*MXZ*dA*XCuDoRw(XjI;}3=vO_IkT8iwT@K@S&N5NB62{L5id?0i$w*_;
zu*tbpCSkZH89Q9gz8=PnFy=)uKZ=`S+zMlB1luC`JB-_$I}tn=!JRPfhM`8_j^Lj#
z?$K{YP%DD_d^*rxEfYc62>uP@K^XsqQ7FPsk)uS!Nh%yckqC+kC!u7`USBaG<j43~
zdEx);^_3D$3QO}6dwtxw5fQ;d5y!ne9C6N?%0*Bi;&{UH66Hwd*>%MTDoK=_Q-i6M
zBd8KVRncU$x{zvuyvMImAg2SV9YLK4nnduZl<<gLtAX&k5!4e>UyxVl85b>S7(pXZ
z<K-Ghoa1yRHI0D#1Xsj4Q)(u>xgdotgtQdwQbSD<om6I=?xM01!P|#b5>EtPCPfgJ
z!qXzih@fr6@dm9TXf33TASLM$)IU;^Br}4n2=XHEN6;>U_7QZ7pmPM->>7_dHv(UT
z9~pFfHN(1NIm8aEjz}u+^HD-)PSPcUt`R&Q!4nb3!#^ep`3J%+MeRwZ?(=nvz&hb!
zE(Q`U0zHCo1d#{=5d<R$MgC`X=(W#hM4SWX;ro2V>HC}$Zyt0<SwaNNZi<C8lBu?6
z^6Z*Xws0bXo)Pqt$|eQ73qBP=4<Yn>>{eF4w?z9z&?n-Y-aIYHQPDTzoQtw+`ilZJ
zpAo{L@_Ym@L@+agSrNP#!AlWL;TWrt{c;2YXgo7UFff8wB6vN5!R)op?m-dfjQzEU
zvqrzlKC0sBEvN2mxBQ#mA)>~0d}strVwMpRyb-~B5sYPfMld?d`*sBHMDUjIk(4jZ
z{+8{D^id+&yU+J7iEs+3Psx}Fh>Q})Meu$EABe*E2qr`@Q8>%Voti}#`o})sB#}^g
zGDr14ZCD8NvOT9pFfD@V5%A9FLmA8;vw~b}BA5|z?o+s~5vlo!jJ=LQ%#NV&SmnzI
zzKS?oyEzfejbNVe`4N03WI+TABmAv_qmaMrBjKq2Jc2JG&JxM!@|L;0AzCDct%zV{
z1dAj1TI%&p1m8vQeFRGi%>Fil{L0eur4eUcSQY_=j4qcftRodxMX)-8O%dneg7XM~
zogTs32!0gF8Wt;0CAi<?CU9K@8}c>zI6#t^YhymS>nLo_PxZLB2;ozP?GfzY_>ZDh
z6gwl>6~XTjT!~;e2LLM@!EZDs;yma%5W&F+_C>IKfs41C`y<ZIic9~Yh;!t7EP|gS
z&H?XXi5`jIsN~{*##4A)l1_<)(GwAz6v;1wTudqaRZ>q&c1C%Lv(g%LIOiicC!CGL
zhGO4ch~T1hANi#SE=xyqtTK9)y-cqaMdK*0Met_?#iA%4#a|IzkKjQB|IzK-R&LPG
zM{qZSn-ZnumXN;%Z%3S60fh|z2)`e3ZW!-H(0sp-<X_geotuOT)GQQr^ovAMSO`-Y
zE&6|Wi6}}&Q9X(pQIv|JbQBe%s1$W>f67FGC?1NUY!u5@rScAlciH8lC?7=y*5X1Y
zb@Ju;Tp8-6{NX4nM^PmTMk!~g8g=fTs!0|KSqL-MluJAkMcpWBMNvD7I#Mi4pbqt^
zQ!k48Q8X0I1_f870#kXLMg@{4w12v*MHKYv439?9R3y!4d5vs_<`QMcwT!|QMT$h-
zlFE#!5>=v5g|Gw)JyCE6MeY?sN$V)uL@_*y5mBT^kr73=DDt9c8+GPaRut`6U==k}
zqR;%C(>{vqsB^E^C5oIVa---Jb?yXxQFMqpPt`jL@{WKy6f&t0_e<B6&QXvs+EubY
zCP?|?LY|1?$pQ)U`lHaI=n+NFsI#foqt5=;jv^36FbYGWrX+=;2n(S?L`YPSxqj@D
zZV5lpDV?dYDB@8h3R1fZNeVtVmh+U9NkYwDQD;NgKZ<9f=p99$C_0vMKOIFsA>@69
z@F<m>Gx6Cdo{M5Y6az*6d=xK6@sjWt1UYW0`Lb{#voQKf6oaA|62;IcUX9|lC|(zZ
zXUn8~*(`f^=XCZg)dokwC<()`0vlLDhyA`cqIffkDN#(7TD%p-=qTQeVkEmDig!5t
zu6r5sk3mLBloNK0bSV3DqLBBZ7%OC46yu|qP>{+aQ|fS=^nR3IDZ!+uvoPf!=S~(K
z-n3GIo1AG;d>nP=CRfJkQG6K1N36(bWk%H5&+vZXOm+^}Q!0EC#Z1v8pCx3r;2goZ
zoDtPkCM}3!VHD4sc)`S{QGCV$Y@(Ej&!hMvifvJBXPZRvRTS%Zt-+q7^VLOBtcqfF
z6pN$yI*NI9J>Nv}T@>H5TTi%_&<|`@z7^iZm$o#DUi*E^qgWBef)$=+QH)ydt(%cX
z+;pG_B`c%w@YlyHJU>X%kMtp>Q<%E-KoOEP68(w8RR|@wn|arZCFC1u?GVq#C^iY%
zEVxCG@~uK9tW<W;`A6|v6lbH@6~*o-jz!U+Z|)v?&Z|n72JS;q>=n-Fz9{w=@B>jC
zWYxyHDCfFxn3H#e_wl=~BT*dXAgtl;RLheb;r%&^<58T5B09}=DvDpDI4PXbUxX}Q
zq>!KHyq0Lmr;6Mi>ZOEuE{Z?+u4WXsqBtMLg(xmYaf$w1<V?C8#qXTj9F32c`t(HV
z)hLL6h$Rl0t<a=voJ1lar;vDEvfto1Y?MPuv8n3cQT#`@VB&TZccP%=ZWQ;0{3A%o
zy(nM7^^*J>#RCzt*7ue>lES8wrC2^rRg0J?TEMA5Ufe_pkz8%>re<jqWlVTYq?ssd
z0w(I2sBhvS6Xi@)Gf~|{c@q^(R5cNJB4^-xN<|Zusn%PqWP;I$h415WO>Z^X(No0)
zB_vBncyT^;T;rS?CTf|eZQ}A}rKaF>m%VjNJYwQOdXZN3JqN$_zQ4RkT@&Q_(VLgO
z4NNpQG3$=2p@~K&>Qqn~n|M@gAa7#AHD4uJzeQ<kqM3=s<rM}-&os_yVWK4!Or)4d
zHTh4$KDP<Q1d~*;?cc^ZG?-D^N%Tn4@a0M?6Rk}=Vd6>C*+sN5k!7NtiO#o_bQ2k-
zbJWn*M5g&a#|~L?_|V=&Hg!yNF_B{;*F;CwMc$C{na+7s2Z{2j6NS|TJDJW)HH>x@
zg~v=hZaVu|Dl>4?o3Gr>M4pKRZ8qUIp_wq*0xzpN(L~5Z*hEky6dI=UERuwQC(p!)
zNTQ~5I-P&MO$Ez@Z6YQ@%Hxuq^86F*?k1ix@wAD)CVGfYFB&GKryw=^NEYhzVIl)b
zKNI~;JSz(M5(=L&|0nf1k<%pF@S=&A*hCh57G5?nz{GYFJ2;R`ykcU$i3KJGnRwO2
z+a}&I@fsWUzH5kyp(b7@dep(}thEYVJ#X}eafohkk1+9uiQ%T>D(Pd{aa4QLbe8qE
zOy_Qq`$qDSl99{tC=;VijH7ub-sSKxF_zce@8g;9d+gZ@nOs)($^%WV#XRqtU}B=_
zJm#2gqR)Jlhio+IeKG6<!AT}23!!|9iKzvAnvmm~_e0Zp{PB_LEORr&=8pww{3j-6
z7VudnW}BE}Vy=l>Z@C!eNm4$i@<KX)6H84jGo8idGt)VO`-ZE4i7!liY2qsrU&}>#
zKE^!*53v`S&OUQ7$K+^d8_A6;H}FeLd}}&SroI!CzUMSKrLsL~-iH0on<~pq{9xio
z6Dv%tls25$J!|x3?<&(-zgC;z{ovfQ${G_tai*BqWMZv}!gJJL_xm=OSZ9JStFJdf
zC&SS34bRckj2V^On@w!aNZZ0`rQ~vac6(FZ%1-a0Y!j?B(nY@0#4Zz+EIe#sw~0L_
zZkV`fVy}sP^d2UDH?iNu0TU-p{9@vui9;riu|epgZna70SF&$-51Tkbg<qAUf+P!l
zWfo0W-Yb)GoK`)dFr1*%xa^QqCVn+BX<O<g6K~#e4H)h{&5rJpen#*&K}OFCIcMU0
zf#iaaizZIoN~Ho<!}W_?S6II3Y?l5KhxP|OPsJ2=)-{R#DM&AOLick0z0P(%nfgP$
ztXn4jrf0TL(!y;McT5zrP}p*AdG4C{$HYCl?o{s`y0Q}LeKzAJ=MB1l=|WBXHP-c?
z;F@9zdA0XFMJ&`Bs}!|R%mUBT%(iI{u6mO9Rr<{07H-aWNGS`YEtIoR-a;7*Wi99M
z?I8=W_%Y|~mxp=VUsU_AOQll{_f{KU%dTLd_Z?S73rEYPJC-j{xFN5*TB&TIiiMUI
zTo$T|P8|!6Sp3HdRJV}5D7A)#nzV<}&C01|E_S+qj8fYIk&8a3XI%^REHt&y%tCz&
z4J<UW(3oaa@ier+nZ9O|lWWGq3dd)xgW80p%~2n<kaNXLJO4eYHn*HcZefAHV_lt-
zPG0SRkLziQg;Wb|Eo4%`f@&enLMsa#25t);3;Y#8916E6w9RYbUZX4$PLtM_v%gKZ
z(8h9Zj`l29whi)SSk9iu`560MmFJCFteu6gE;-w?b{5)O&M<Hv@DXz?X9tqgOX+qf
zw*!l!nuSFcI$7v!VHi^_bg|IYLSGC0EIel6aSJgEaq00VEab6$EIetU8-=%>haFrj
zc+;m@&@BWl7?yLl9<ZFlbNW5bcOq|I==!SEQ$iNP?3a29Lqtf_f+@r*klR97NWwzW
zLNE56h3*!fvcUazPYXTd($(ub4`q17K{M!DZ(YwUKh)QU&Dh!fv>>bh`6kD_{uZ9G
zFv!BIEWyHa76w=tXyJL51LXw^FIvuhYqtZwJ_nrpac-4g;woS{H&g0e7m=y2aQrV+
z>593{W_R=Ofm7f$3$IIk2U{3oIZuT+zxrrizFahvy;(Ek>EgZ-7T#cMSeRzvO$%>X
zc-O)h%ULo;TFxvRZQ*ST?^qbcA<@-&D#XK$c2^bhkq3Ni#`i3YwJ@0-QPj<gj<fK-
zg%2!@w=jWuH7|t>6Qz%Mr^5%(to0<Cw9Prsp-F6tDblJebGn5OEzGkp-@->0W>}bM
zVU~rDEquZmH^;f|-8)XLxw6na+Bw_891C+TXRTqy`Qq*;KBd7l7m+7d3oLxb5o=+g
z<xKfcrQP`Q21{T=eZjt4mHMS1&wt2i;bIG4TR3RpkcDq7EU~cB!X^vfTKLYwDhsQn
zi@&$9jPIXYSju)A>gB-{v#$`&=t|3ZtC@{V<Y@VUh5Y4RC-1BOXkm>dPdO(kKXHQV
z-nD`xY>M@qeWz504HkAGi)6EfEf)4z*lS^{<*eh|E$k4oO<I-DfOcBW!yOv1n@w@R
zx65*TDX+`wa5?7cv(Lf-x|&;Uxc2S0oZDwUtT|mVg-4EuEgZ3M(ZVIVDGSFeoVA=&
z%AYM9xA2RFQ|#09>=PXDy_AzQCYi-mk9_xK<@6NSue5}-b+mF?`jpjV&ocXOGGI6+
zsd<i*cU9_nQMe$=?7PbrerKmxxK4XG&E*}Hs~qhi=eg$}mh&X^8Y{wPe<Y1>75?~V
zHe2HcT`^tO%jzA$PUBqUw=DcE(c3id=~Oyf;$7D0d?q{k%m(MblkQ35-?#9u5K10c
z_)mBt+u0Hn7AzuIRIr#JlWyGcl(bRG=J$RvHHOkQ%Gg+F<5L@DZNSD8HlDQckd1OS
z9<fo^MtK_*Y`opn`FrS!HY(YuX`_~nhp98j)!|YRVr3g^5BRDGRu!x!SY5D&;H?TN
z)L|jDZPc;B&p3bEMfqZgdT_ieTtTg8qrQ#yVrRFlr5f01F1(@OtkpS<Y&5pf#KtRo
zTu)zjJ!*r(rh?C&R-4(_H&Ug%h3L1m;j)opqZj{8!G<a%)yB)Uvng@g@YrZ;qr-gf
zk+m+bjaD{V+aOO9oKej)@T=4|Hqvcm*w|UkN6p!t+?4Z6HN;HGn`NV&jS~l)R0>zu
z$;g(g=LqK7@Y(zjmhxVGcLy6CZFI76wx80~#>s}cB%LMNMR0m~4~37}cwAD+nX#LV
zJR48h=wZWeL$eXF5oM3$6xMA7Yy{bBKRO>SFj%Ae-mqLZWaG>Tg`s3>*08H;PJh)D
zdCW%KhGoOHQRPzhvo~DkQ1!}>N<vauNOv1a8~Yc!uHSPLYn4_;p7i!))7f~<#_KkE
z+vsCsfQ^ARp0?4~#`88_u+h)PUz<{&weg&dmH#OH1)rhjP}SJy+R;ooTF0GwLtXT@
zdU}=mqK#{R<h*2q+&r&j=H$L?<LIkO-VOB?v1C!6`l^jVEO~1x!@ZxfC^=d#Ww4DQ
zHr}`KfsLUyhS?Zn<2@V0ZH%z-V|vbL8*kWn)5beCCe3smZJ@kGJ2xwD+ZZXvQ1asR
zH2wrE^^8J=QLL1a>-#<DUCF+(NiGW+Yvb+#-vk>IZH%)~Z>Bn)rq;`3=vdrc{+6=r
z1LZ(KEwm|hl8wnWW^x4DsD98l#fH1GXS$849B)-shG{l-pK*OQSN+h&N9>@j$_yLD
zk9$9{@v$gZ|HrEy^ii@kuFkfdE&Y5MsB>)0weiwN>O9-|YT|;|6?;gIu~FsFT|kpE
z(?~wE@wtuvY!r&&3(h7ROQ~$*D;tY!d?zirnC<XT;UzY{wekI=?5}NnQ_$BZ4QD#{
z{-7{FzSQlY?|WV@&H4B3JFV5_Hdb&Juv6HNHdfhK&tYt1wdAeOFHYF_fh}fZ4Tt3k
z^(RiHmg=)@bI8})XnEJ$dX1aB{nFH7@2DGXY_hR~lgP$qlGUzlGRC$rdp%{VAW36?
z?(m0FwsTa^a`jy3I;5$)IDbpK53mhw?6I-eM*oApeRLf&6_OQA)cvfxtz4O>d~-p$
zTgP*d9aqP5$i`tI<TWmOkFixbzigbdahy|?lgq|0oKw{^-Z|)d-Y7otdG!=s%8%Y(
z*~^@;f2!lltFsUKX8q$m!*;0YS=+|_8$D0O3>Q+)+qhukijAu_F0us<`YzLX4p6Fk
z+?Q-@{n;CT%QLod_U|^f^;1ax;83@5hxXX`lXHab;;M3!HLC2~q+hpj?4a+4;8Q<l
zZ%K3CvhlZ#+ct6n>TfCDzYqGjFg?{N_dzM;9~<{<+^5_5Gxb0(<+tUY?MVBVBe0pm
z@PHl+X(WYXC=x@t7|O>`H0G=Y#bPKP!@{A?r%-((3zvwY6x}|B4^m6UFf?81@wKaC
z;gm8lJQQ=B31?i{m^1Yt_}9}4Ke*a*YiflUD#q|s3_W6~Bqg_rAw7nNW2hWMl^CkV
zP(OwSF;tV(Ix##FL-iPH#PHW(XRy^2IZ3S;Y8P;=U2#f?6%YC9#!xSYqs4rGY)Q3O
zx*Bp|Z*Vn^p-Bvlgzqlnl=El|c_#|BC@7(64Bj3}vlyC-q-<43r)3PT7*a&?$SfDj
zNfoXLs)FtqJj^ScSy~B66U;ZbweUG*3TMR7HiphIbcrD|hAffi#_(Y$=UVMz7+I`v
z`xvrg&ST#;KReHSb7IIRK2h!vLq{R~3K#B_PrPdLj!M@U9*aR2$>T9R5rZcD$r!o`
zxzxs4@$+Kv$I$(dujL_M*F(Mq4RXl&hoKvH<OE^}#?bWFLKg?Rj2J>Okc4B1#_(}g
zdPJgYtLB_4=QTxQ(OS2gNp=h|R$)PET;!A_Vn`P7?(AsQQRCHn#xOR9aWV9Yp?3^@
zVt6`+XT`j}g8gH7CWd~(ssCZR<4Lkyg*V+Ud3=7>jn9?mB<XpMC?PM#@KOvf$1p&m
z@5C@r$lw@;#PEvnL4vOez9z^rUl-DNzcN(Fn+5V=F$^!@BZRym_~_Tp|17`7Dogb3
z0-e!^oQ@k6!{`FZyD^L@;P2&=2ZhGRFd>EyVwe=;r}dSIg6|8?%q>g_ak3~!9u#6U
ze=tvrVLHcN0;vgn7{f;~d>zL(am--ba`wehI*w0bm>I*a7<NncSuxCwVV>~WZ0&un
zIWcUh<RO_K!-5#r#ju{UIEEREQ@`VA9IAdA!)NS;8?Mh|_(sSVF?>neVptTzVqR2)
zf9I(0exy7|cQcSszhzVR5=kQeHiqMMJ=FO=hNUt7jS;w55A5pxftJLuLZT~USQW!+
zj{KZlUY*Ego!Drb`eO`hV%TPQe~Mu(JF%;qhAm&{B9d>2q4jEYD@V&c_eQ#xU%Z<H
zNj3}FA~^Pt`sAhTZ82=8{cXGqJ7U-w!_TLc9}D}Kx+jLcF`SFxd<^?y{C_3KtsRKr
z+Mt{wXH>37d{^pV42NPk9K(?qevN^C_$cQ^WzRP))e|usV`-f1_r1qC0_Um+%Bp4F
z@-X#e48O#j#T`#6r(z&7W4ANPX({21;BPUU<*+>D`>cH~{rrcAd>1&UVkj0z@i;EU
za5;t>G2D#dyF<R;=_R7-wHU5Q^kVIdt1<jR{n{B!CH^V=;&Sz`82-KHy&glm3tp02
zF|?ZJy&c1y82%PMI;$8Z^|rb0#&Dm?^o`qG{|Md_<ObtG4FA#L$MNO_7egT-h2wa5
zjLK_KpTeRd?C?+uqb1^)@R!0pOwR7ql5vpq`&wP5s%7FR8%O^*o{59^>JP<{5l7oN
z%26low0842D#TGSj+$}Qieo^3rBWQ`OjlLm4+~ZntP;oI9v&)G69wv2kE2E$>(A%T
z8m<znZ%VBlN4+>^wN%LK2zf-XZXA?QUO$coaWsshQ5;R<So5*cSQMJX@n{^M`_zYO
zdMK=S#8KwL!DutdOJR#RTE_A3K9`Gi>8P}dBPEVh9zevwvmVO5alHSD;*O*0K*bYB
zze*X5QvO0imHKIt>&e<Gm;2Unw27lz+<W&CcX}K|>hS4dW*k}^dK_7Cw2PyC9NBR^
z7RTdp<iwF1$Cw75PE7hw^~KR44(|WS+r3`qkg9eRIrsLRMXgI5T}6TWf2wVG$Mx(?
z<%u}*;vivo(lNjZ<PASi`~`&3Kpeq1>^NfVox`r<LtI82A>rXTqCz5ZP~PghvP4rP
z)U<?L8SIM3k%;5i;?&-8B;#0C&C@Fm?%BG>@f7Q|G_^+@Jw+aFuCRmy>l6|yu#i5I
z@##4F3h5^o`uBV;OG`QIdN$6ld1G=MQ{s3&ju&JUy&K1ial91Ah&bk@Dtiz4UXJ6>
zXIc-6gM2_718GlII{7Pc{Bg)f{%Rbr#qqkR4UMBqS(W;OB|1cql3{TS=KwzJ<2_5W
z!@k9~@&?Cz+_{l?D~@-BkdGAdwqUKn3MHfB7%kCZ>(#D@eP_#MjA38I`NtU;7sq&x
z6WVz$x7%rT0(-xXXWzSC@`>z@(`x=e{UDA>aWpII-tw=)p~#ssmE%(?%iD@+aZHcn
z!#F;o^N(X;9DkouKc@4KgQ;_vccyD52X-8@<JeqPz4NNlJ3Xs(1y7&DzPOP)msgKt
z<ZK@$BM$rK$FYD}uB+tC_^Fiknc#<qeJnX%vdkB8d>O~Zvo40Oge($V%yxKPp>RnY
z-_mQvaXF6f;`ly}t#NFNV<~$%j*VjZa>~cMR>iTJexQ-EB94_ptm~y1{UMGY<5(NV
z&l6m0IBY&pavHjSiaQ(o&l+Ts^R{sv=Q}O=NZr8J*pbt(fkOU5{j^PVAa5$0d7<OV
z7TU1db?2^&xSiSKI1$ImI1XPev@?!991?Nt;xH)h+0F5@&(-8&cBQ(Wee5r`YGw6U
z90%e!7{?LLh&`ztcBzNrm{Z!F(kYAlFz4Ma_0y^uDSGZvdH_9_Uj64dW`@1T<2W?J
zb#0mQZ6P=N>z6pr#&IqV{x`v?IDU=ebR1{m&JQhr6XedEKd~h8mFx|b-RI-DK&SML
zXVNF?grVw1;ry?5j=JCDxWbv0K*a>E((*X|i=$8i*Emq)_($6IuQ=b_%epR8KCw&9
zDdN5n$IUoyu^;JRyQbfji{6f-MHTgqaQ+~goTo;0HmX#($JQI4cAu_H$OFN-ZPFL<
zcXs2`3MWt`fno_1PoQW5-yZhy=JBTH46QD;JtYz-nLz0T$|O)Kfg7cKkJa$(J?xv9
zOe24(ZEo2F9!fa3u^iG!IAfmUyqriVES~`HSkJ}PN(nriz#|FNO<=sH&@om{ph^N&
z6R4IzjRa~^Gl4I<xJw`LrM6S99QO6EuhdFlP6MS*!np~moq*Xw>Gx+*BJXjyVXl`z
z{RA2%&^UoaHBW;C8YcK>SnlRE)ISTQb<Ig{Ud_`afkzYg&!x6VplJfl*tQqc%waCx
zelBg6R{w~vIqSZ}Gcl&LOyHM4Qe6qIRtojc{pnQ_P!kxQzz9|+0Z#%06VB4+O&~1+
zD*-!!RtdCDpi=^!6KIn_dIH%A<Rp-hKwFxfz|h61AN;LmCXkf?&nre=$Yr$QHRtT&
zr3z~M1c-~jbp7&?!o5~*!r5H;66nC|E_89%)KN&2Z?pd^lGY`Gt_cJaFcNqyfx^$K
zPbScf7aEfDcmhu(P-2zZbCm0kjtWCw0{#RvDSu2Cx1K;|%gilh(*i=;9r5vOt-^pb
z+7n7(@8jvw1i}gI_`(%Q;QSXZhJJTll$(;8-ARch5Ko|g0?)9u6G$fTbOL=7=uY_&
zUylTO3VDi>%HH~wy-RAidnM4DeOf8wXf35t2c-`?tAo<dtCl>P_39Dd#3R0b2^=Yr
z!a&!`hJ7}H7Zc!$@LU4Vvz%%fFR*Q^Wi)E*CI4WCQYzQ|QUct5yqo}C#{j`sXQ;0v
zFi5(_e5LTK3A~oT>k?&|LlYQzCUr11FS>>#FlJ&-i(cxm1Xi4IWgT%5-$>xi1l~(v
zYyxjdt}%im6L?$5j;5LK2pPquK9|ZcTFASCkM(u#w$iQ_8pna1z*h+@N?<|)6BGC-
zff<tVeO|YV`-247<}Dv~PfCFMXNJiMOc6dcfoU{gpKCh1d%OA}JEEDwfk95Sj}!PL
zfdvUHOkgI<T%5|lQ?lvfU9%FH%{h_)PekV?Fh2nb$>(uY4|N7xvt_A$FBRvF#=ZBv
zpRy4WIP`|+b3yKt$-hWA+vYE6_TNsFby=LiN-_Iu!EZQmlBJi>Gf4D1!Q}~O|L}bR
zOW7R>bQ$Wp);jC*{nTrhGFK#=Z2&{odDkjYer=3*bpk)IU&eTU6kH?tlVG3T3gzn)
z*ueH5h>-)aF@a4SU478E4>l*Th104BGJ0TZ0^1V&DhQ@@$96Umdp3!;lh~QSE;^GW
zswS~JfjtRaOyCm7Z36oeILUdPz<$oe&lQHF2^^p!YLmurknK>w4+}YxK&7_XOsY9e
zImVXZe57ldrkoJ0P^B;fqo)%1HG!M&tLIsQPdS~y8L25Hj57R|z}W=u?RWS&(P{c>
zCQ~m+t~+}?mlOD%ekp-MNnD}xPvCX}cNl#x^AGBjQ2(N*67nbgOhuJp^|fNxMRG&%
zW<HisZ*d3}aAs%TyOQN!DeWJcdMx#x;C;bK*OUir?ePlb#KK7wNup8`D~`I#Z*dh(
zqD&HHlPH!%@gzzlk^O;EQt<t&#me_qN(nD5$fVJE3hRZW(;DTIct}V&K}!B8tr9CF
zQ89_D5ru)#hviz81u5Zmt0hrAi6@eHGKm^V)J(#Ygg1#=Nz|5%&622-#N0($^^<6j
z#3M=YFN_(jn?ya4=SLeR(I|;WlUQ3*X<VQ)Dwsx{CIxCtYAOohDUNN;lW37d%OqS$
zq$J@^I?a`uM3rG#N)l=k<=)C#e8k7-mLtA%M|{PO`l!H`OiS`l*p=)ga)h)>qP37V
zf=o(JB13rF0!gNjtR&hMNZJc=T`QKGq}$A3jXEX4e+={qc3>5f*grRwfvFq=os;Oo
zERs6#pwj}6NxdEy<i9z0OCm3cL=wp){7Gm@n9@^v5`iRm3>Zy<ho2-2L6I0qgoK0z
zBZ5qArm4hd@)RoxB7>boOn6+d?ol6w90T1MP2$-ko=T!e5<QdPIO&tb(@FFy7$?1x
zxcG^q+*c(1{vT8C0UcHKeUFnsOn{AoC;_D?2nsS}CNn`Pfg}UcMC{nmdDF{l14xzL
zI|70fsnSJ|qJW@ML_v!5-ch<Bpdz6D_dD}>-~Vr|yY||5pL5Uc_q|MJ-t!@|l(l%M
zlOzQBIj!!4;X`*HdiY@ako2L8?a)z3XCFG*&Mf%8aJ78HKI5ESeds1xIxt`gd-~AZ
zhd!cz;6tNB-d=W*zS5GuK4*U+{d{11II07DxR+K${aX2g!9EP}p{#;(3WoYHjHitc
zJA4@K!w4T1`mo4{kv@#_VVV!0_%PasF+OX<PV`}{4<Gt4L4uEyF&Xc}=Up1J*&K&)
z*IeWrz>n-^u+$_e`>_v`eVF0{KkjRP$jhteRB1EGbRTB;Fvo{aeV8c)XA5$`XZdjK
zo)wv0;9sC~ec*?{OjT>T&i8fA^I^UZU$1j55d8baLh{8veCETKK77SJRnxV^hgBT&
zL*CDQSn5O5h-;Y-%Y9hk14rWvQTk1GZF#Y9C5QK9Nrq)&mhEJxR{OBVhi|#Lq_b<K
zqV>YR7F;LDL1xw8aG}m|rT7LPe)M6h4;y{h<iloZ%=dKu!NK;^x!6G079WT|`1pML
zLXvGhZ~#~Ib#V)j{3O|thrBy|*yY1bo<BbP?89y!&iZhUn~1Ag+H=?kZj*gJ9Pr_w
z@crB)>mAjvmEg%a>2ud15&zg?DXjX4?9iiv#{`f2a6$<8_(>iYHb3pd8R2=?O3)NM
z@BGDwUwt^w9dX{tlbOGfxZuNO9{4_7WPb<duUeCHi6gehIq&}bt3LeZ!|y)a@Zp*d
z*L_%0t8m^S@4zwn#Rlcy+Uy~w$c95+t)1%+AO7^=AI`E5fBA4*&a}H6AI6{Kyu&p=
z&N?4>Zq&|izy@%2-IEnU{vQWZK`8~L6{IOhS5RC*3B@YHmecd`YEGU)845BL>(nK`
zPXS+AO2TZGh$WT(9ja8ISbcmzK^X=2i<SRpVd7tEf!}jD(GMypui$M3?<jak!NUrk
zRnR~|1qIm(YAdLtprV3G3aThr*tM~%cm8-s?x+#YM-*$I9#v3T!M&mGO2gcb82MEd
zR8#Png2xrqWHS_0S5QO26AHTZ&p&?1OJw4SO}u-^`=o-Lxvr;JsgY0e(+Bz4hrO45
zo~ISmRp3<Ml1d$dY;ZjxY(|cP|0X&~DCR22Q&3-lTY*R6kJ+7}y1A~y-mQA$mX)0C
zMmnG2aFufM_Mp+D84VRQQqWRCD+P@e<SQsr;8oB>0k20*6>z2T;>&}bq(DKTDCB`|
zjeV0`%@jPRpoPMlE@yKE3?As-n8@I~IeDRWL2CtV6uhM1Wd+Z(wT5MCt6=!`5^NRu
z3yO8$(oXP2`gFD&UQzI>g4Y$a=YclR$(xx*YhAA?2vl;u*SX*g4z=ExZf}ahIB!XD
zmdz{g?x5gZ1zi+$Rq&nyp8`MK6evFDr?*{-f@o(a6UQp3Af#Z$6S;=MXCfh@Ai*wd
z&uLKLj4FsJh;!nqIon*!Isbx_gozPU1sXebF-K?Fx198Ed)UjYsURuQIx6TSWNard
zgLfAGz90`qD%})x=b|cb4pY!WK~E0;j+`M1K2Xq0LB~1;{T1|9u<=7@9|cX7LXs7G
zTzwVv6Dt+^>>gY+K*2x-gA~v-Sivt!VRVd($aLdd*H8(|dRggkscwXVkqSmB7}M9u
z+Q$kRO%y_L<;9#2#dDk>ea4IF`;mDQIqwQ)_%YLuj}=VjV)o-nKc*;{s$h?Ty$Yr&
z_(Z{K1#1*cr!%Kp!6L4ZNWn}6a}<24SU0q@WU^+<%vw`F(#eUNt6-k2pX@7*=PUU8
zx?_QYiRYb%eBM^)or@KG#sO5o6~zckWQ#3R@VSDe67x4TzxA-9y01Iw@P)W77aUxv
zXr+)<3clnj<v>*``pPDBUaR111zQySAa3ipUle>Rd_A}PmB#e>P62~&<koo8xq*kz
zY9~|tuy>P!%?iF3D?PjIwM3eJ<oZ;wQ^77-PTLfW*ptH(=_du-73`3C;eweu!Fl0g
z4yT?+?$5HVb}QB$b#ous>tb5teG2v~_(Q>;3JxeZsNlGQ6Wp+CU5DfxJEB-Oy@wg_
zypvm!!*x`_F&=<rtb>%MlL}5LIIrM>g3}7lSc}9u0O>rcS}q;VDmX{0-0%=-`c=Vw
z3V7##QNbkzzbUw;;IbT*R}@UCWnIW>@uFYLbydNpYR<WVbe{9q72ITYwDWfbHxy9e
zdCo&)VoB#MZoP*Z4nOQ=_Af@}+3Uyse*CTAj<i4BkGn$tQSdKkR`|%PCD^?G6cqC#
z&2M#+cMe3}+Y@PJwz%je1Sw_+xlb_Dk1Sg+=|?G>mlguQb?0Nn^rNgFkNQ#Bk8*xI
z=ts6675ymh$3uQR?6;<)q};cpDy`tRF3L=uTe$gW4u`Rl-?|NE2OsfUH^A&>6+f!_
zaqcnq6Mk!`tNFnrk)Dr9_Hn`Lf;9x`)4i(mPyQj`2bT~FKIKPkKRWpFt{-*$c-jxI
zAI&6AT|Yd2<oT@w(BVft5p(=-`r#7p7G#aNel+jin1sh;8MASHKc4Y}yon#riccdy
z8vD^eIQ53&&#?KnLc$0%HI;$|g3J~QDH3G-=6*cq$E$w4=0^(=U+|-ykd}h2{AewN
zW!w1iydMh=d&%4S(XyL$ZDM-SkC(;gCF$DC>m}HdS42s5;dMXS`|-9P|9Bhl#CXGR
zT}pVddy{pIbiO5++rNPP9r5}0!2)`|=ZDXa5B%umhvJ9d57iHi9puRS5%weEw@&i0
z!yO?WWwl%#^~U_8Dayrp-4XX&7p9o-kM^WfN%*b5*O++b>wXx1yzfUBKTJQ8esq@E
zWRMz~x1%3F9QHDG^5cvUo~6{g`mMV`E|?yiYvIgx7qVnrA-7LYSve%V{pjPzSU*1W
zqpu(R{21cLP(S*!r`vP5zXtj-z;E62u>Dj9`7!Ti!C*hXfKhlZyO4aC3=tRJNWXP`
z8ScjjKT-z{ag-mUB@`PrhHF?Z=)`e;jQ3+QM?<U={Fq3q@Q?i9<&SlJ?6<BUyyyH^
zE__j5-&+?>m5uO;?5t^i>+=C_km(}wW`kXx#n!TUe(dsN4nz5|$dAQ-%;mJss`uTe
z9^yQX@M6z=!3BZ~1u6c}$o-igOSsqu<Zbukb3c~S#Q06~micjZpJSEa7k(`FW8i-c
zR&c?jdsh0f?CHGuoeRDw;bxX@U;6Qtc#^O7V~x$%`th~!b+)oz$Txm`E2QuvH;ZhL
z8d>Q^KQ;;9Y%AXj*&_IZA3xgqRw3K`_{moIGN~PYyqV)JYTA(avmd+tC>}tG0QUH?
z*N=;ST;iU(;o0ZM5kHRlvEPpae*ETk9rWWc$M7pBzY>4Qk1I=Zo^0oC|FLspKgTgY
zj{EToJIF6KRCb^6<209_A1D1d<;V5$`OBs{&GWgpmO9V!WLxT_&p9D9`QLDE=#>8}
z*V`56d9D+`^@VUM{2>zG)pD5?@s#%Co*!4)3_otNAe)iny2jgpa?b1AzbmY-yZr9Q
z4JpfCL-Pyg{OalWWv)N`_{)#mTw2RqfBMn3ru9`x_fN&^%}M*)k2~B83kvxAh*4c#
zM82xvAL(GR0RH8%c0RYTqU%4-=Ev64GdKci0i*};eaKbo*?h*ioSvHz0MQk|eF0<!
zkQG4503HsYLI9=2L~H2)rp<N?F5Q3}0hAH_e%ty$0A+=j6MRsxyls6b0KNyA1(~t~
z;JZXgDhBwH1w0}?l>-=C#r0^)|D<KD5<t}ess->^08iU-9uJ_F@alp!1fQ_2H3P`o
zZB@baq=-)m))uT2KrlC-rn-`K2-Xv%m=l20=GS-U<_6#n@Vi6SurSpZk|+2^-z+N6
zuot%V?TQT=1<*KvW+5~WAwPg70h|xuLI6zzC<tJ50Am6u44^204+7}+m%~fv0QgGo
zP60Fz;JE+-Y+e8@0%#e)YXMZ=l{=%jyHx<hHUTtf=x)s>Ww=Mxb3ZR4^|nG@5NsE~
zi?;rfke3Bt3E)*B+l#wdgkfI~puNO@BY-ypcuV*@f^Q4X-JVM~rVatTD+>90LVSXX
zpg(|_MgdJBnb0WLOm}ZMfV<V4kpN~Top+yaFlv?~7C=0J*Y`O)p3F@I@NI_zmCJ9j
zgG7_8E@%jv0VIXc+L7_wxJc$tcXtlp{Q$af6>*7HbyDdbK!+>2-2&Eo)rTx}_XzN-
z1)yGPowG$fH%YGmdI!)afb1h)rr`nf4WM5D{R0>fz);Z#1~4dq!2t{jAXnU8D^o~k
zepX3rBg!!G9Nxo4WrXmNf};f2e`9%$4dBB7mIUy50OJA}&z1zNGh{*l9|bTufGGh?
z6y=2;j*kPFB%BUq-n71J)Maz=%Z)Rqiug$Y2lxsY;jNlyP8TvmaAg(eOg8?yW0v4-
z!8rl`NXioD3X;qdl5k)_01Ktyq5u{PsoN**vpvN>6V7_?*VC2;uq=RYIOYL-5x{aW
ztqovB04oDnE!kB8e3>dDIQ~R2F5sT6(q0T_GDxXijx}7;8!~T?^?n_|3$0!2#BIIc
z%nx1W0mpX%YzW||0JaCPF@Q}0Yzg28aagm|I)XOyIFc;+xXZ=(&cq)B*c!k#5u2A!
z|FE|;P$a}10qhLmXaL6o*cHIf0qo|nFP^C;O<$f*vX@Jul~syqpIG+`9thx|kVArp
z1&;{QbM~ps<2FCRJtci)drk&$%GOT{ITOHHTR9iNFT#Jdl_x5tT@2t7hc1Y(g18*O
zl>m$&%pk4?@LK@&g2)NtS^(Dr_%DEBLHr)TuuH}M4&Y7zHv+gRp>73m@qpv68IC{f
z$bSm?D}dWVUcPI6d-L^ij=KT;Bg(x1-dmdg?$rEmuVwKISO0RmopBv2Rxd4x^dPDR
zQ7wq#L6iuhOc3`6krBjwL6l}YJ3BIi(E2&DzHt6l+I@UQPF4`al0lRbLcZdPtIJ0&
z1ktCYMIH#EtQ4#gL^&b+pzo0&9u&@i<%K*X_;3&vg2)zLF^EdG&)ntKG!Y*SqRj*c
zQ)MB2COF<7?r7W2`B)H-i*vEQ>D7a%5riWM4D>t^M9m=hd-iU~jUDmwM|QP>cru7d
zBOOl#QCA3g?I7v|t*1_rKP@7EHO5~RG0Pwi|Lt%F;R>QC2yYO%L3}c}Sp6WL3Bt|E
z+Uk61caA5BydeDlIJQ@HPMhp_Hi!m6Gzo%NXSTdy5RHPkdBpnv;Klw0B#kAT9|UhI
zm~9%wqr=?=jKA9TbuVXO5JZ-37DV$P-VNftAf5}NMG$WX@lFsegJ>1R^Fg%bh}Fp3
zy4bP#RBr2_^+<s>Z2w=@bF*333qiab#4AB`Ki{}r5HAXONsvk~!^MKPTDo2hV)Q%C
z*92b|{IO+j`yk#B{-z)u-U?#v27aO4c@r-Fe(<42`5l7%T61FtF$=OXYPtHYbosbq
zzjP`x7ycjuK?H?|f`|(V3$kqyAyL7Yp!sjHgl$#1%!KQ<GHQQXGKh{rj1OW$5S@bP
z97Mk$`UkORZO;2abYs87xl0gTg-pJb`*@9l9zpaBqBj?05aqWP{~(B7V$G`U9Jbn1
zy|?4W^_*qH($cp&`UdgT&0>6KADhQCAc&zs3=3jl5QBnPKi)AoXuYs_ND!X;>kawa
z`Uc39OOD||j0o~^YB}R1?8qRdlyr>>V(<~`9*o~eA05P)AjXPb@PXq)Mr)YQbYqlN
zOXrR09|bWni1|S*;M@iAaS$_8?Pn1oGlG~ZWE$6A5OaCy>F(sK`YKIvO%LMNjZP-M
zzpwl*SHn%t0r!f{3SxE;bAsU4EI;MK=H86C5AJZx4T8AN@YL?)nO)>s7{sC=J`ZAP
z5R2*4+*&h-%9i{rh$WJpwan4!J7>d-j%8AN^#{^c1o>b7v@e2aR@=2ah{j(#&z7pk
zKipOZu_}o06i2g_&h_`4tAkj>vEs2N1=n(&2eC=`*Fmh~U<UCG$F`IEJ01n?t;@u>
z%&MO7CyxIr<ZlRq=!m;F2l0In2iWW&wgmA*5c{a4yMGK~YY@AF_&JC#_c-`_)iD`O
zwsD*@n*1cVJ%}Abb_!A-`%Ht~th9u4$~4Dbj_1~_J>1lPJNP(@<6pb^Ug`Z3`S8$E
z)*u9NSXz5t@CXN42IQz@|J~#`#;ouYf+qz}alZ#~M)*0wvw{p5K9Kf{%`+Bf@<omD
zFI*RbxX6Cpm)2&x<6OFR#9iTe5=4~{s)q0zw-V3Z5bg`%IuHLK?gVi+h#L~;Pr;i(
z+~O81>-oN9y+1^`yWQ#fHvO+4ZcFy`HOJpU>$@C>VlLu65&z}z3i&5!{Tz?=&ghs{
zEQGWW(pgu&wXlnau<&<JiIDXZND|I6$%YLDnIU9_P%(r`A(RZER0t1+@NfvFLqG`S
zLU=HQ>Mm!-dPkWM?hm2qaK}(*?gJsTneAXID`c(FxM9Fmo;6N(9zWxJXs`47mpK(e
zI6KgB@XH*&r8GMPequmV+uHe$gz#v{y7cgs@%?8zDl_J`v~OH#-z{}8TP?(wPa!u1
zcL<NO>JXj`;i(W#E^*Wd;fWAxhWKmZ{8J~bPW5;%tyTy;ulP$$W^0E~CuBYP!x_To
zZ8M+d&G}D`oDecjI_iet2w_AWcRfLpMKPzRlyxgod10DM+Oz41*Aqfs2#rE$EK2<l
zo(-Wv2+wecwm7}pa(Ep{+nD)jk@ZdZhT`+zO?Q3>pAB*}4WS@}CL#2H)Y;Z>5(`6E
ze7D#$BOG4F>FOxr0REn{V6KZw^nT}aA+!i#WEi8uXc<DQ5blI<H-y$4(h#<V@KXrS
zhtM{J4?`Fi!V4j^3t?CY2awx(f$PN(f+2)LcqxRJMSLa1Uou+OS3{UF!0}oLuS>Rl
z2yY2_Ly!({hOnld^X?E2`P(79BYFqHcWs~dLg=#GK?fxSe+W}{IRk9KBG>LCx#P<?
znGK6)rw}@a5D8&Gk9;~uMT~_I4<R934IydA)P(4QhM*b3z`<5Cm^zBGeXa9-RxNzR
zQfJo?x^dBlP~vOn(2{w{I<D^07&f3s2t9>=Aei3QYE^G3*hjE$2>m!6!Wn-M8!3FC
ztvq-)bFj^agfLY2=eM179?o?l*^wcP3GtUx&bxavM}_cDhI6#w<_Dc)MW<=StNG(Y
zn7~yR!qN~v3Sq<6%t;}9EDjSnmG|d19^srU0jGuV2^$>3%$`M4x!o4HDvxlsdOvSE
zXDx&|T!E$Pt-Iuz8N%!kZf|j(8RD500+H_=<SPg-w9Nf9gt;Nivs=C>g!#f3*vi5X
zIE?JYVq5tvge5lTn+lhO@I?r(Rm$BE!gA5qg|J@83c;0vs|3Fk{3?XiLe>bb6=W4(
zbC5^4NWKZ-#1ZeEBi?UAn0(u_wvLnhJMQka7TFlWrVuuV_$dUoNY$6iI2+Y*aYZd&
z?)V{Oy;1Q;(b=l4A-uZLNwPhJ9U=5tkn=|fJ44vT9rTIgW(Yrru$$HKSm46o(=9?c
z7{Z|tzXgHX2TSe~k@|i%Quvwi>C7@64&g`$M{Ut_A?H{K#AoWej&ojmJDzXrBAyE2
zbO={MxXO{|_OI`{%yr(d!6W|`oDJbz2qeD<lKd*<d<Yk8<)V;F+*z?AI^3>QkhRVE
zTL{;98i(*ZTeZKyamuQQks0<z2(eHhvn~60nZ3nx?DyQM%W~LR_We&8fxoyIgi!fg
z$S1v=_qY^8cq5EA!}vFZ|3Y{=jJjbI3nMLzN5XhC3~wwaJ&Xs16c3|B7#YH;mlASc
z7@4+`C8T5+7q^w915;^HAXp}h`)$t$gp>`VoRDipc`5($l6@$QhlNxSq$yiS#V{%f
z8CR!}VrAR<gpev>R25Q9@G-&11?gN}NDaa84o6K}uO;M3!KVakhfzn!2&dHxM;P_O
zXdFhqh&f@@7vdCj3DPZBh+EJjm?zk!T{^ALgz>Co8wgTq7)B%EZ`a9SmZ?b?&xO$<
zjHb3vfsn#5ic*STGr{I5C6+VwCkM;6l<W&(v=Y+Vwzd)Sd>Czol$c*HRaZO7z9{&T
z;LC!qgz>77*92b|Y%j=y-KIO<3ghiC`h?LpjCaE55JrzMdWP|C81IE)hLH@z7lsl>
zAdFxb(;F1>m$3dYK1*hOe#gaZD2#9zMi>QKT^(vPj4()zhEc(k5)&R5ObDuinxHOt
z=e_)X$*j+wbC>hEJBIOo7+u2X6y_J>-JQcw7v_&GQP1;CL5l+gUBl=e26?f&Io-rG
z;$5p06~3_bgD`rB@mi6)m*Bd_`Q-fAndl$kiZ#jW7e@au2Czq8<qQ`bC^$%PupmuC
zgbWR1n2>4ZvnVo+2;)XxNs`fFjN$r^;DHFnhVfw-x5M~5jB#O%4`Xc@UxzUvjE}<j
zG>o}n>kemP7@r6spA^PA)A?~2lSP?g>r;hH3uDvL|9y5bJ&YN)b*7M6g0ltZaD)4-
z8|-;u%n#%9FqX2-?F$!#@z7E4LgFh051n!^3S%*+EDXm{?~*VkmCJ8^)EhYJCFyt6
zyNnGx>RlPesxZC?V>ze3eZiWe-r4htR?xXwe&nV6y+^%Ya@^(>eHF&lqh4lLhp{G%
zHqG)&9P^$T?;@@XV|^Hh!Z;kpH(`7m#t&iq$Y{3;z7yOW#s(o9*}*VgUhR23qv*t;
zqMD_=--oe9Ocd#V?N-6oFt&xUJB&SH{1nFaFn$(?l~+7F!q^$ct}w{yT&-qd3h(wW
zN|C)1e0`as17Yk7V}BS;);JiM$hr>NRw_rrI2y(uVf-1!u`qsru3*Eloa<p65934_
zC)wa*ITyJduDDMLKOM%IFwP49MUW2XI7b;S5~g28JTG`5jB|BMr}RsrTo$~-F%<Hf
z;5EVj^ZcD_Oq82~EPhK!1Ksl%cf{ztzot3M|M~3q=W`zW)paL~yKG+Rdb?}6?}hQ}
z#oV8l<dlx!A6^2&_>YHw1f?Q)qH20tguh1d6px^UkaWRLfufS|c;Ly1U}kC0eGz0v
z@O1s6tOy=E=Jg!&mK2?)E0YRXyu~pu<0ArM8NtjcnPnq5+sjdnMItB{L6!RM2Z@_q
z<s*0~f`=nWjCNKPg``3R*`knFjG&Uu9})7XU}eE75q_*!l5X>lx)|;82&zZ$ZUhZl
zq}O1NB4`;ws|adFP%DDG2<k`hBx~v5!9}+tf~VNQ2%nJbt-~IP-u0N5COXuOpyP){
z8*h}X7eP)0&IqWx1Sg13u5gO(2s}3b{FwI{iBk|kVFb^zB@r|fC10>n1dYX+RWLEz
zMD(VDjK;<ki9<6%uiy_-BdyIN{H6z(Z6SE}n3ueD1Z^T{AHf^q{Cos2M9@xnTM7Hm
zG4G2JycEI9w#ZN{OMFEXl2;>m&E~I1P~rIh#^KEf-V&XyWh37f{!RoPxPFd#Q@vm)
z9xv}j;EO<sz|Zwl))|T*96>-hvq2%FE;;wlbyn!@iA3<#Z3j6Y{uAd^MzGez*Cx~m
zv<OZ{aViQu0)uNKiV9J9e#<c<_$Y#j5hOV^9P{6DIz`Yof_@QnmhAh2T?D%db`$I_
zNdF!}dPeYpkY0klZEK$hCd6{+*56h>j9`Gx2MQS^I9PB<1Ve4>Fd@Su7!kop;iDoL
zV_Qc@P>@lNk;mFfDmzZH;{_)~Fr!Q(`b>)8P%YQd2#!VYaRieim=eL%2tJQsX#~?E
z_#}eC9rG4NFr7sr*!g7RdE9^z<R149U*et}!7Q$XRvxAUj~C4m2l{*(!Q2S?S8m+q
zxR=@a5p;T>a6tqMg*cDoL=s*qdun?ZNAOt$=QennmdRbhWxP7))Li$n2)^Kwi{Qry
zmPfFH^A*9@5v+`0RRnXk<gB5!ZQ+*@tmZB|oAnjfWc4B@ieqbf!^geEs;3LrMX)}C
z->R1EIl%o*1P4zSek(Y$hvmuacaq%@!A2oeHVN4*_&t9GVC&`26mE@R8?zj-2!4uS
zdjto#EEDeg#ux5j$GLM8-s;bK;$sSS3IADew;)Y>gzSxApOF263`-M-hz+jR+kH3!
zqWf&t5h3J!B;D}{POujdT;p1e;8X;cI25XzpF{pV*L^yIGd%7%h7nxgD0T7t5<#)-
z++PLHUU65Lns?sjJfbf~FzC4V){FTwKFYhyDK724BDijc<EoI3>vQ>k!0R09y^fMm
z{2sxL2yRBOc}C735&Rj!EiuuWIjtV?FUb~*;<l~-E#yuFcZJ-u^?!u?EBGI~GbWG4
znbM+2k6P6g7c3#jY(^CK**r6fEa6=aTSb^kMNv8mL{Y}}xj%|jlW2V)in39Z6Vro&
z<)avzU5ciMB>U4ZRuFzgAv=n0QFM=@Vic94cqEEPqi7vPn<y$rQ6&mjlph?RY82I?
zcsh!@QRMG)KPFf+ipQg<F1$t*Pek$Ed3T-n^7OrK`c%$x*NWoFD4yc+B1)YoY73un
z+?!HJ98!w@^~B`(%99g?Q(~6w=BcsQz3RBv%|j`Qf+z~3$cv(W6b++j6vZ=9JR8N|
zr_&p-*}3i(-963^Jm2hfw>$4X)y>m5io@sK`B5~9;@6&@S$o~zzMIE@Oijgq$X<6*
z6kU3HnnyAIZXuIbNHf9iS#B!NMbW~xwiMDziqQ0Y6m6sE5XHMuydb7mqj)WfcEVq@
zOT84u%Qk;S$kv{o*Q1!w)AL3YZ${BxI0I&#NvHT$6z@c_vYV&F@S?Y)7;xU*#F@v&
z-|pslFA852MwE}*h7yH8ig*->C<0MT+2amH5so4#oY|c`e2#k~QADGNMM3`7R&U*R
z^N38$s^X~$rb_8i{!X)yCKjhpGKx-7bdI8<Obw@u^ZVv*cdwt_?{g5M_-miLYm`62
z&71v^`)*gynd9CbQS^*rUKI1A_#ld2QH<fji=uZFeWDl?#o#E^rS85_^o!z?Pn~Ka
z{l-o=Nq@->5F8lA{vDP$gd=moJuHgh47JleR1nMDBck|fhkH~Mqs3vQ;D&eI6fazA
z%(U}T;}4@47sZ??*7K)%OWot6n9QEiGm4L*pfXWPkxY^-$;U#<K2Un(Quov-W=LbE
zv4cz9p9oGDWcJbH?wL`{isJIYoM}7Uv+W4fKb0Ei3bN{@=dxZL>R1rPk5O!mVqp}E
zqF5ZoXHk5~UPM9bk|@3q^0^?Dr9zf*=$2$MyIis>1Xl{K66`BhI;>`OQG64{8quk&
zjpA$J>uiOgz7@Vn@H<=I5XDBDzjh&Ov+(Z)w?z45GpmKumSi%KY?JKnDE370lkn|=
zI|O$M(rs51KMQ9-W|{Uzaftg-#C?MMqc|Ys;Q!-!L^%DA3RxnR9us~%iW5Sre`Lix
z9mSa_k}5i?I2*+|9z+S$NZ=QaYG=p!C@%02D_-x{C|Z4$b8EZjVicF6m=wduF<g$~
zN))fe@M;WKId?omqPP>qwJ2(>aNLOEW)#<>IKIdEJC{w|onEY7)^x|MDE{D@=TXn~
z`Lh#sa{m;coF|>#UCto~N`BVEG4-ijmbx3oy(ntL@I(y%h)<aq?vLSLp0rmT|3y(O
zW(7|Z%#0yjNO8duf*FGJxi5zE#atvzSt6DcEEPj(+Xq7So^m`8L)jSSEp~2N;wmTN
zBQZQ0!-FxDkKrLvDhfU<SV1sbknuMS%p_Kdp~F8pB$aKwnvg1jRRtaU9dvjshR1E6
z>OwdyHDlPFmYWwt{TOP+@TBNZ#gHSUw(VahhNp$swH1eudNG9hSizl=b=lV37~H}=
zw(@X1>zNpyjiI%zG>Gx@G&GB$VGNC8Xl(0EV#v37tzC|$!V7GrP)Jb>*ksk)+}2yh
z@SM$C#87ONH72b@+4Y0Pnc7J9`54;9@PhDmF}x(?MZt%9SuvSj=4kA)_-iq|9>WJQ
z^opT<3~$8Xk0B7ln=!l<<7bk%x;AIhiu||Pg*vV#ri-PR?GQu1vi07Tm<;k>3_jtC
ztt?)Y6Xejv&_$GR3=tuE3{l%hiy<aFZYzlxRN)i4{jZ((_LVejt0^QILq{Q<Y`t>~
z?+fRbN!XaKF{~|clXMfYdkj5<^tAnZZE*LFp-&7S#W1asv#+g>VW(oa@nCNM7zV^J
z(AI|w85F}{AwvX*+SXy5sY=$6GL48~r0AmrN83IXTU*<3tYkloVVtdx7cwD+sryUP
zVWPB$O*(enF*$}QF}xVZOL0u49>c{LF2(Rk4AW!yE`|*;%!pxT3`=78Jcd~@%#LA1
zaaXgIIdiz`R^}`cB>6Okxx(iO&bRdiLKenw?qmMzHiv0(44>K7DN{0+#`uhP*H<yD
zj$xVTUkEO@eOAP<Qur!c`7(x|R{by9ni#gu%~?L(wbr(N9m6`|>jl5D^>1US_M+AD
zjWKMB;Y<u?#k85rc%fr=4Btz3OAJ56@S|O7hmfs;+gPuyZ|6#$=w!5=wz4aRpKac*
za;ZHr?2Tbx4Etj^Ci(%}dNhWE!Vd`^w)G?26f#5%+htnjaa%tT!%3T;5^`E_^@F+d
zR^|-OcE0p>{<#=_v3-6Oaz2I&LO93_csYhEG1QEsRvcGj_>C(njxupvi{ZMs{U`W)
z41Wl@A;^L^h1`l^=zJ^ApE3Lu!)+1o*gk*rP^waj*1MwIv-N+3{L7>Ggf;cW;z)}l
zJ#MX>;)3NWTct|GkrBszqA*)Bj!fZMw(`XE%u>Qj+e*_arS6X-w$Q;;Esh7`C@ZFN
zag>kap*SA2J&TXZeAwoX2&oW9wvdXpUMY^^vNj$SrLtfZ+gde_4-2iiW_nD-#|5j$
zQN#9mLP+~BtY!IR9L_jgqC6ExZ6S4R&!>gd6?DW=&(?F|2u-$%=f>fVqeUE?S!O-r
z&{Qxlj`~8LiQ`!z4dQ4lq@f`F8^!U{U8|}2w$dby9WAU-1)>xR7RBL><IYHHPOTJ2
zbKC#9IQ9&){9DG+O2pQ2v=!3E_IW;z_GPl@^Mb9k6SA*u`pa>=6350kHpTI39IwSO
zA&!sYc%4P!_#lp6al8@7o8qs>@m3sf3y%oCBd7>=5PUa|_k{QaS!p9#HvTvQq67s)
zwly5biU!tBkJ?Hsj=1oIpla)y5dEg*Y{X&4k&L6Gh+PFc33e8IUyz<%xQy3XgVrsM
z?r{u!t^qkyk2reTKA%p>>>Wp!V$Q+ra*?x-@V;?W>Fc1_PqO{v7$9VzAoW2~oMcEG
zLxm5EV~ibhxR4QoBjXrl>!XF-x5etkSguvcjuRYj`*fU|IWdk&aV(AF+->K_ao*!$
zK^(WbI;V)wEZcKx9Mgn<A~;=ehHaf0$G<17&d!cwj)<SeF;B=`K`sDV=iB}qqJ_d2
z*~(%epT)66$mh1sJ-#fCFXC7($~U&YB94`Dtdi`Pf@|aWO2}&4XH6WrcdfniwJ7Us
zeSI7^uUh)Iw(?yZ8-(+6Kz(x@-^Xz=j!SWDiQ|Vja*jJrGXBrbAH{8FoKMTNvP|2!
zvxILK++pi=203@d@w52v7Ca!hCyu>BSkb;X_S^j2qooeUaVU<*b~+Eoam?0_2stV^
zbxP)OAt!9>(YEQQ;y4}0$ji<)57cAKGjW`?t>=XN634GX&fEG0o)0^%y?i;2D{)jx
z;E@Eb#_=2HF^>Ou{>O2h%OH+Fq{#1rH{wWLHCXT_+xevx;ZHl}?Ku95quTt;IahNy
zTr~YHraOXn<G5#g{u76zo>jJ3!W!-S637&iCYUZ*Jb@BIG6d<CKP@v$`27hykU&XW
zFO@)P;joo52`oKfHK4304+)kNe9-nOpFrwzNw<d+s33Z_ZLOHVq&?QgIcPc`O`x*q
zjjp;fpSGG^C4s7<RI~jbOW<*vmn`OdB7vH0q>8dCY9;Vw0>342ErF*JsGY#a2~19)
zP6AIS5K17NK-~l!3A~-aI|<ZF@bg2wn7~U3I1_LsP<?V<%LH<TG)bUo0`3Gn3FL`F
zYl8&p3x7uNSzB-DDM@R?1R9Cb*w*tC;Fp?cVk$_W$kq!JSTZy#rF%temOyhM&)GgL
z5@^}ok@9IJVr#)Rg3l+=R>%v2bZeKuO}nm_6L?+pR|H?ReO^m|-(#n9dr{u7^*4pQ
zMf@(8)(#20D@rhd_k;`?Zgqjlmw+M)xnD>iVSU+&*_Y3`ULNC&BoIwth?rst#1rVA
zK#v3x)VDa)1eQPV;uAdXEploJ=;CH1_{>0S@J&IIq>zpYbh4HCGF<N`&_$H4g57K@
z2eW4ai&{I`&i)B}VC%hv^cL(R*jKQh;K?D@6bukPFo8ir1`Gc6jWugS6Bs7h;R%cr
zGD481kwQi#Fj~kM!LhdW!-Vx!H@Y#6Phf(rf0V#PE_lwJ@xN6;G9`hj39L?FO#;&r
z_#}a434D>j^aN%kurPr?mpW!jgiq}_vxLk}V2+UEGpxGi3ZEx9Uy$MgA$`{8EV7lw
zoG;-^68K!mQtsjuvD>^n0rOH(s{Jd(v{G<Y0$&RGN{|i{kh?a4uM^mkzz+$mOW>{H
zj`azABMv_v&iPj6o!=7Nkid7sDRL!j6o*ZMo9$@dC-B!GYh-@p)K7CAWeayZMs_IJ
zn!vUMeoA1wc<xDHuaF&rI|X+o@UsvW-^~pk`(OL_aSw{VU+{q7LEH0C0$0j5O!f3g
z0u?J+{K9$Xu>_7Ma3X<|;`vJgzb0@>_-VWB8P2lJ&v6a&$r3W-=S93Ccp-s{w$CLY
zmlNRPPkCPD6qmO4<Mjl7Pw-zG_?JCB?7YEA=TLA*OEx?={Z;~hB%ob%|Gmvk+_~I+
zJAuCwxRb#5#ha|!=C1XH=WYT&re(1>(>+GM>mvCtfnq8$Rb;6sxadw3ETJM@MR66^
zSGjApD5Q>S1sP%@zfZ;M7u_T!RcLe5OQ|TWf^A^5w*{f1jEehdz38UcSw#AmQ}LjR
z>MCleD6irn6_2RcQo{YPiun7^zaPl0Af(?tN4AQJDux|(bY14&dNQYy3O<OQ<WUu;
z|9Q5uie~Q=R8ditr+UakUQNYgVtQP~=PNw)`L~{%_=Jj@bXL)vo+_SH(NIMr6;G+C
zt)jk)XH?Wt@w5t$iaZtfj(f-Z3U~Pm>#A_5XzVMjCzvD1tW$+cc&@FuRX!J`kS3-_
zPk0~enV)yU`>cuvDtb)IV)kv(iHzKs?c7;ZC`ghoq={ft4zG$$4f3?cPMV5TOy2Kq
z`$nNxtmMzBXrbb574N8MsiKvN7gfBZqIX|MYt{Pn?|Bt%RLrm7;@vNiN?R2#h^d|W
zzrV#OzO3SpJC62(B(JD=l|gzsUK8bY)%vWAi6+K*Ljt}j_?BSR3(gKI-sR+~&{e#r
z;<?F=5Ep<DpP-_`FNCImilEK+cXdQmL{%hIsB9AJ>gnLe3;ZLoFwGU0rjoGnm%ea3
zJIwmy(cm~7a<ui;GbIQ+%ZBaA%<ZJ2Gv`jj(;D7a(M82#6`!f-s-l~UGbg;Rv(9*~
zt2<{wMNbtY*19JB=lnoLFBOwie9SJZ=)*OpVz`RFD!x7E?5|<~#qFMcf`OQ4AU8rr
zVf`sC-*(R+5osMPWQdAaPI!k(L5g(nRLUZbP%%=)C>7+R1;?uBbizAE#h_)5vWZgE
zKU6VJOyuK*Oi=NWtxOa$`h<7R<@Cua=BW5o#T45*Rme0IpGd&zDrTsdDI#lOK&DwL
zX50Q-m!!{CF;B(A)p8ec22~8)oulsXEa3W|;#zdVOTLiPvBR_FgqNl_pUGXqO{C(c
zid!m{s#vDt6gQWOFSyiI{Gj4T6)RN!#}i+xSf}FJO3x}T34h@l9tAsdzf|#+ipK+m
zt5w`N;UziM%ez(_n(oLgbJDwB#WyN8sMyHS<4Rs%@Exsbo+nOvS-jxs{Cd5-%x)6X
z78RQ%Y`2x3?>V_EJq=D;G3)Ql-Kt`nihW!*Dt?j(J5}sbv0dtFbJDv*MR$K;xOCyq
zTxlxyFixQGos-^TPv^5D^`tk}%e$BBu$Py5pOfALDh{bQtm2@GF(<wJIrCV5;Sm)_
zrH>~#&L_R>EPHWG#c>rRj9)k1v*M)pBpV~`AHB!pnV5Bk{{m2PPQ@=OE~~hr;#V%4
z)y@m-^5;e8g&#lZy*JKvQN<+=?>HB&H2rbXdsW46Dt;HAipz?w@f_yKdCE&GeH^E}
z<Tu31?4+edf2jDA2e^ik8vf#x4RqX7@sEnzD*jgS^DfsN6?cV{p6Frr)>sGeUlsqU
zs4}<kJ`Fpb&nu>Z-+oEg@cb!nnugdZ?|@TYD#b-FA()}z6A{;(@@8t-bIMCnN<(Q4
zk7}r_0UF9^$ktF%!~Gf_(D1N^3K}28RLGN%SXKi`ISmgADKALnAt9Z8h0pfPC-NLl
zot%|4>kxiKv(8u^p|sLeMMG5$H8eb-fnqfck87wd{4uF3b>v<><>gV#f`@Nr)zna1
z9B8Vg;Ys073G$St$VBJ58XOwZ45S;Vry+-}(($+srv{gXxf<qa$kpK15Z92<;L(t$
zp`C^oHPqMej0UfUW*VN=&_F{I4NWyP)X<2%(5(LfC0dvG>{Kx(^2J+==Zm<xps+wl
zp@t$MG|`7hw+5cH<{F;U&{{(q4b)p`ps6K2=UM?<NfGh|4fCGY&{o3>DMiYrf}|>a
zNyEz;-qrA)hF3Jas^JX{Z;JD48eZ4XUPG1TS*$d#lJ!gTNfk4g-r^`}ct=AA4Kpfc
z@XcAZ#D@+fDaEHj(Gb!Q<_f8p;nxt*5Y#~D*%hr&^h}Y6hNuSen0T^yy-HThlvUNB
zX&9<um<C;gp`oXS4>Xt>l04@%bdlC})X+&oXEr|D3eFU5T_VN1YUrk+yM`X(*<PAT
zq{G5VmM7hMY3Qw?zlH%C`iNU!4gJ{t<yo|*;`~*?iab!mAPs{x4EcZRqC+ZRs@~xm
zMrin0!(<I3HH^|QPQ!Q&qcx1tFjm8d8hn*9eq5eKyuYufQ=_~edt}}Jz4e{U2^v1q
zFj2!K4HT(d*qSrBM-~(Lu_vuHGeyHxj=YAM($r}jHx1K;r()8Fk%_Z7uo~uQ_*9}<
zmD+Jq4$RKiut38v8h+KVP{Se(KhT*gic3qw8VzeTEYa|}h7}rCYFMganT9X80XYb}
zat63cv!YICi;)ni%<Pf1O2e0IkA~IKszp7rW-+x&+cMVrH7?!g^R<R`8a8U!q+z{=
zZ!~<TVT1U8%h^0zjEOJ1<a=hVvOThxP2pw@-)q>Sfo@hGrAMrn4qG*B({Mn;K@C4?
z*sftW4<(*v8g@#|p9NWDmj<?nudL<on3xS@XR!EQ4f{0g7oRM5Y3fXjJm*Oq(r{SA
zNe!no9MN!8!!ZrV|DOi1`|K3kbAr>?I*Tpm+W=2%IHTdLhI6TUTcy#B0XZN{sm7nz
za6v<H9VK*J)No0|9~%DDa9P6@4Zmx+q2a2A-=wbVJkql>n63%A-p9k&FBZ?v=-s*m
zf3<Xz2cReImLRiXS+Rd<xUJzI4gYHRTf-d<cQxFTXzy3ZI3>+sORi*R@Rg2cg^Y34
z(*D!<ED@yX*j*u`-K*CA<qy8nb&HffZGE*bL&tqO%ISDeN2ZP}9neumM@ik9ky3)e
z?2KlTO6y=d`NHM<bvz)ZvO2o7E<urrZcHpyUdKZ^9?|irj)!$r(2=d9qIjl!{?D_L
zj#QELFL^5KsG_5)j%qsImryCUX7)M2Y;_$qbbP2|oQ@}S)YQ>I$GbXe>3C8{p^hRQ
zPwA+wqrQ%3bkx!Dv<{b!Tpe|FICSLjz-N<Q@!Y78QBMbv%ZAzCD`b!}1uA5?bujDE
zktcnmNQdWoW~CgS)zLslLmiED(3$;BnHuZJ*U?l*fsQ6@XSP);RhCuIC*?`>>S(6p
zMIA5cXs+Wq9j$e=(a}QcZK<P`4i;e>QV~*RpV!e=#|t{zN&8uKsy!rhW?0tvvW{1D
zyrJVw9k1$mO~>mx+DllvF{NUrIK#fB<83yeXVyD*Ul^02h#Z{vbog}i(9u(eqQkF4
z)1lLov!)}eBPQb$(h=4X5$>1W#|WwOEiPh0hbrX%PT*IZ)=^{VFge#;7&?+VI_l`8
zqqB~WDr9u+<My{ML7x<oba9vNDnYvG=*|xEpl)5lS1}`%__oatboA0ORL3wKy>;}_
zF+j&ailZETb@bEGpDUrE^}Tv3Bq<!EW3cE$#FLAe4k@?l1JZ`;7@=d7j?q#z^^rp8
zMn1+4IMx<ZWykB7pyLM}Ke8`6ChAzG;|m>=bbPGiQyp`4Ox7_)$8;StbWGJTO(J~4
z5vZ8)X9X)U6p`7PI%esZtz(W@dpzW#*jW;NNHWhio~L8Jj>S4Y)4@^;bS%`dNc?G~
z!ix@<2gwp{^Ye{A*RhmcD^-s-52=8udY9{1p<}&{Z*;8Gu}a5k9cy%a$>zx_O4UeY
z;<8z*<7*Zf=~&0kF3;km^J2uy9M3C?-|F~I$7UVh>)4=Uqx5kTdtD)em&nvrk`rCC
zQpU7JX-r!<4vW$_p~S5^w&^&h;};!2>DaF0ppHX2cIeotW3P^VI(F&!nJ1f$Jv#1H
z$l!Yz`5JDL_7yYug5!QOvdCQ(Gxkfp2L!3mM2EvVj_5d{<D`zGI*#c$E?r==dGNCR
z#1uKD<Ft-5+>+AMl%B%W$xQrJ$9WyMbo`;?0uO&3zv;N9<C2ccI<DxrDz*Q~$(36s
zz7%-j4C_E(_Bsca2a%4O+(e=ic@@|sYk+P{f9m*4$6a<)$88;d>$oEU8R5H`){^E?
zpW^@M_*ch&I*J+A0Zx5)g$(+n9LPCD#SN4&aK*q?0~rSHGtk38PXn0-vJ4a&C^Ase
zKq&(?4b(DF+5ik>8>ncYjDh<NJZPZ2fd{0Dat4eF))l9$f!d>8B%M2@^XkJ((nAIw
zHc-I;v#CVSUgBKIz#|5#8F<XVqXsG)sA8b10hVR6>BhtesYL#`f$9co7<fV|HQQua
z0ozz(NGmHPK55`718xHzw!}ak-sc<05&x$R)HUERtouL~;ps8=s+;$XM5h6l_~f!*
z10B3Mq;+6+2FVMpOXL}-Z=jKZ#s;1-_+(KuFwoGD^G9we8I3`j%W*`WZ=i{RrUnWO
zFn+2o#vw^XCh;0*X25SCV4%5y=M21J;8g=H474=(`7mBE(8@q-18odEFKz2tA>%1`
z>31t+G~bubzXceCyq$p;4ZLLFWdqFe_MR`%rW>uqmnvpZe9ge?2Hr8yfqggdhJm*X
zyv_D=tRx^yF(3;v9skF=akX><?-}qJP$V*M<5PNPo-N|ZQb7YDPCX~rK-fUUK-@q=
z{G$e9LjD&`8m}7Aq%S&WS=M%{0c<4Qk_I{&=whI&fllJq*}(f;71AlTE!75QyBX*%
zjZbx!K`0VGFwo1uasw+2^fu7Pz{dtA8|Z7GpMjAEMj7aDV1R)k28J3KXkd_m!Sw8z
zwfX}OFG(a!B%IJ;(grqcxH#OZXf25mTz-mm*EHI|7z5)Bj5jdWz=xbNnc~zP9WNa8
znPA`}0}~BQ;>KB?^?zHQChq!xoC8w~Of@jyzybr)418i>wt+bYrW=@H@Ci$p#bqzi
z7?}mhnRp|_?576i8klFmIv*q&F?Fg~hlYVg29_B3oKw@X!D0iS*`6u4^lZy{sexq%
zzA!*>^bPBA0X%k6O<ieVm4RIbem3wWN5jBI1Dg!2Hn7IPdIR4WSZm;G1N>WHoeWp%
zkAhSi$iFr4oq-MikBRZwao$nWy4k?@2DTd5#s~&}Fz};2<_D!a+*7B8{A6IefgJ{R
za&4R~#<IMb=U)>&<<2v8E#7TlkAag0P8ry1V4s1*296lmZ{UD|g9Z-qoRKk1VcqPE
zn&%rcWo2g^HE_(paRVnf4s!8LT~&Ea<i#<?Pa8O6;1>hG8aT@h>nzQ5PDmX`8acam
z-oOO|7Y$sJj#vlp4JWTS<tk=e7G>Fm#&qK=$bU0%ja$rw&%|{Dzw?+i@uZ0x25$1~
zHBrjMEdzfT_|HHw6Mq``%fMX&_YB-N@Hf|?BkhhLYiHs+f~he5!}Da6<6ps)n6jps
zNH?u3LZ*r0LQ0s(Fs*wniuZ}qtWpNs%*Vg*h0a-~bt}R|YiScOQOU$3Cd!z&-$Z#6
z51DwtL|GH%Ogt#XPfMtSylIiY3R8c_J#3<aiEI-U#fK&a%yO4rTQMU)JEK8%1{?XP
ziOMD(H&NY06%$p(^D#jVY&9X=lBrF~;x$Y>VWOt!ES}o4M4EWKKV_n}i6RqT6Lm~H
zZ6eP^eG_#}I845794-^}OzZvZOgZNNf6I}&@yIpdHsKKmDvX)ZiO-mL)<nLECMFt~
zXlSC5iN>5nxeH~q|JR@QFij;$fr&z?CFPK+m!8c`G&k{ziC0ZLXQG9PwkBRM(b7aK
z6Rl0OF~O_$-E#Ffq-;j&LQnF%bUb^#x1EU>O}u2{Wz+i9=zkw8&2@0eaVqJ_*?i5!
z>n7eZ@wSQfCf+ddrWEHc;1*yaVJ+3OGu|=5ZPmfVyFxg9yq8OT&OlU5_)UDsCYcDB
z2%6|=;sX;Q6JZmE3DZPGBF9Z6Ohiq@OzY1~rpn8+h-{B)LNlS8_`gq?-jd5Pvq=*j
zO>{BQl?%^AXA|#BG^-cOv$&7$RItt~?)`2ix|`@>;->t;%fqml{TCvYUM6~*7;IvQ
zi9RO!niwc?`kCm@W@l#%V0`&-Beg#HcPonzl1XG;oVB4QhM5>;Vzd+-ZeoOqk=!h~
zrTIAn6WzFOiA>CnF)>y=DKc?YkC*HW6EjUr;1)A6QIyFhrkI#y;$x0*tF%=WGq^YB
z?n|G_<-xHsF`Z*8k!ej41|(scWn#98&rK{fF~`KGCKi}jC}HQCm}g?X3GR_M?a#PK
z*t|tt7+i!VmT>lEs57s4QiKP7%4eC0FHC&NP$rg}SYcwNiB(*aJ*^M5QaAG?yk0P1
z>cgwmayYD!bwaU*{AIDu#Cq=ZPN>)k-<bH8W0=I~B)&7TfeSl{c1dhBv5C7ciJT-h
zoA};D$s|f8vBks>CN7(}V&X>=TTL7>an!^%6F-^QYhs^??Iw1Z*lA)HcTFWv?bF`!
zYaEG+o}W$ZX0x+BjTaZ>pZ4xCF`$x1&-Rdyso+uT<?lCfz{Eil-70w6o%U|a_8j6$
zJMBHp^>ErtPx4~fo?|ACn>c6U7ZWE;(DSs3GbT<7KP9+FA}}(GoRx}L*9eBHm;bAY
z3nng_AU`iiXQoR$Fe`bQTz{5n+G+1q6Tg|bW8$ufYupRjp6e!lm*5P0gR7dSy@|iX
zbj!paLT+bUJ-S%I!rL6%TJFD149fOQu4wg$;<D4;dnW$jA)iF?B>pw=pNV2gP^Wdr
zXN5nU_MSTJO%tV7MGqsCNFpPN`;y2^;*MDJD|+a|M1PjbN@7aAe3H^hAc-fEsF_5W
zB<@e5QWB3O@jwz~lXy6Z3Q3epTJ0%+##=s#2Zg7ytmvU6YG+$Dp3e4UC-Fl?PenmG
zGdSHIO`>uVRg<WewB{)1jF)1SB(B%XZ(YIjSQ72CJ=K$FcE<a-a2BLeLllaM`y1Tu
zmscx^r;~gSpojd)B#2M3ULoXllIWXhxz!aPhajD!4mVekGl^%Ccs7Z*Cc9lp3~;-1
zlW-^DNg_|g`boUQRu#Di<+^)0+~f_CXqZGn5`{_po@G5`pmT9|qa+$9k)K49BuWg(
zJ6q`Hqi#u>O1Aljg+)ntlUTCa(K3mP-SV0x@mvzGCJU<_bT?08ufzRbhP#C*6i<|E
z&?<@6Nep|!-6n~)Nv!-PH};w5`6L*s%k^iOol)d|F^QLw=$yp+NxYoID@jC>h+0AL
zS`vImSTKox-#K1S;*BKUOj`E<?FIRO#KqmM(~Rk@B;ICNdBoy7V(pN`yF%U*^a;{a
z5#moGki?wyv_+-d^JnGcTuBd!9v1v*e`YL+coH3x=p;%aiBVJ1j3m?~v?NZ*Das$P
z=t-o{%_K3CNG7rL1?!MW$fq<U&QryiNV-UnKAglPx^j^uvAlg+cM*Fg(L>0I?bZzd
zUoiSX61|e>%`r(h`5;8%i1UtqN%T)*xOfgoVxW*ANvzwLHYka~l4bEq$BQj};D2K>
zRK#IP47pmLCZ-Wdj7(zR9p|<}>wa%c5@R{Y9r1cce3-<zB#L!JT1SjeVnPzTlK44^
zkCK>}#20LE5|fhnIEh6`ILld2_nn-?^dx2^t;b1C5u7SGEs0N(nD&k5?bS}2W+oAP
z*)yA?oy674o>@tJTg}afn|;c${n52B3G<AXWUgfA3C>UA|D)+Dprkmu?#|+Had(Fh
z=$-1BS!7{hcLxX(f=jUA2_b}Rk95!UOivFQEI=R-g1fr}cL@+QxVsZvgZ!`G_s=<X
z?z#2qm2}ms*Iu=d$&A!mlysq8B9*fwomTC@sKHLEeOWq|)9lurE4c8L>DV+`rnL~M
zA`-44OH0RIa?9KU>&S<vV`n<nQ<ReK)Y*`Z>rY*k4%&%tWXUGR&D5VvwlZ#GB%ST)
z_@=c?<g0=5E;7`l#NAZXGO_<RX%EffU#z5cbHx61{FRPF>5%J)1LSJxG2IpC!E|e3
zH!&`4^mTWO!Op))|9;A0);Yr1t+yck<LNk&j=MCiXdclRrQ=FEuBPKuI!>qKLOL#{
z<4iiv@)3RWM9|`0=V;=zaGg)brK?tyc=lQ15)IQQahXbP<tiKJAU<b-+}#s@jSe{-
zl_!YX>9|2-u|U3=j$34VWs`H=bdfw_y7JAF|D7rBkkc69d>eMr%60eC@gN;9((y7K
z4{2`BlK)M|V;V>1pLdr@@`M~nI=+}IKTk*F`VKwnr0^^q8#W6fb=$gD7jjZFUXhnh
z$A9T~O+Jmzr29pNZ{7P=x!!VvZ}*nplM@@6@`0RxI%+)-=3KF)W?GeqOypBK4ybM-
z@d`31_*_9%1sN4&Qcz04jm7rN3bH83qad$>tO~Lz$gQB>U73y|yMi1FprD#drpM8X
zuDf$8$faQ69Y?-Hf^HRw(3`IgdxiT>oqP)ND=4a<n1TWdM(&miD=4C%pkle5LJGPa
z5MrH7NcVvB%4YX<H$A(ijw-I8OT;;5xU+<Uk_sB$bIrc*>hngTXO*QDlu<yNIhIvW
zK|w`o@O5`N1?3e~uT5KT3&KhY;tRMcEBK7bh>LbQC|drp!F*9g!I1@mNHqnLf+PjC
z6(lIIE07ghXbcB3$i1>Ugo0bJ9hxX;?J4W8a0N9K)KuV7kf>PWUR^=cw-Sx->5z*o
zwidN>qoARunRx$h9qNiY3X&BxQqWjIUFtn<X9EQ(3iMy3T6?5a1)*j33ftv01#Sf&
zue;wTiBVnU`g|b1CDICAG*m$N1(k5eMMSwLHBrz)K})J#!Iz4)z;ZJMv~uHD)X4)y
zrjvH!%~>*YnAD0pit1|pzYZB=)!Rk^VcuG`+AHXw;4pQFg0B^HR4`G&Bn6!mbXE{n
zV9+Qi=&C@aifA<z8ZQOC6!cc`TdJe~Zpm9GvAY7o9*jL1UppLq6nv}Tdj<Uze5Zhx
z*{q!)_hmwRRgd50T6kFeK+$0m1uv8S3TSK29~BJX=ueF4j0z)ZdYIf<=_Kw`;E%}*
zERZz?0ma(HGf1Y@R?u+k93@GJ$&)IH5e24#;R;45h$<MUV6cKAWKIvnAO+nw*{`gZ
zXo}GivO^VXX+&DB{bvPA8RswsKUH<PW(txdlyfY<FGiAwSMaNXQ3^&YcwNPHeTUdz
z#_<c8_dYR3!TU_|SOv89Ad&G3CMeeOu(UWv8M|xWUNOxre&ZTb8oPg2Fj>K3QdaN>
z&ButCs$iOeDLhBoO|-jgw&@Bj>@3I|FH$gr3}A$qsbCh@HLybRY^tulV~&CnH{5d>
zX|2wA3g$B>;R2eT%%9eiDN2sI#dEP#!7>HwsTQtixq{US){wm^SgBx@g0gL0HEvi>
zw<3Rvj6>zMRP`IFdl7jZll%9@?c9Q*8x(9*uus8$1)CIXrkT<vWe@ew26+pOW^R$1
zM-bo2l5LFJ8Fw)5RIrN)>FlO+<pDd9y$ViGPNlGGne-P;Nd=F-6bH$icG{~oaJH`M
z>QY~(6-5py_?v}vvUoO6993|PG!^`-;JAVl3N9+RMANNm(mzz7f-?$Ea`Y7S#$adV
zt)lZIL1TAT!3CNKFYV_P%-i6kaGnYIf2ZLJN8>IlxIzv=!EN%BdBj!jv1^LurK#%c
zG_@7nR6rd?e)z*BnHE18SKV<(!CeIp6g*ULk3A&$#`{dpoJ($V!%b0IrkEDtr!x!r
z%*SMP<OdXdQt(v4Gb)xATvhPn4fk^eFBH6_3E03%(O0AyalIk)yWxIK?s2r#zFJbb
zzG-ycoLI#Dj%KT3y}^I4-~;#1(r1>{<$Nu&mP?NFz~-^m^3CZ%yayRPpa&^AJlIk=
zQ$`Q6c|a}cl$4ms1H#N6Wbs(%DdJgKLZ??!$WD9%lPv-s%zN$%<w?rrL2eK7ctC!;
zkjH9aUgi|d$0WZ81(+0!$=ghn$j_676!oB(2Q$2w=|yo5N_eo!gVi3C^q`an4LoS*
zL1_=lc;N8B=|Nc!^j*$M9#r<AoCk}Ovh52dmiJ)E4R-~`ii~@2xIgotiU;-LoOTaB
z_n@lBTJtl(gN5UyY97$KVYS{mBo7E*U$Q?qoJ{2AuTtyd4&i}J$9~*FVcsdbiwe9X
z)$pLE2i_fyL=UQa@VKM%v?SW>$ym#S{l7|`L#g#WNMcUW+8)$le*K0!*#pA5)Dk8s
zjH!$yPxHVX<MaV!tB9cNUwF`n>bmV1?m=S@nt1S?2Yo$g>cN*Dbn~FQ2hBYA%7czH
z95k#q-OW81dMc%*2TG#cf|0gFX~n|UjBOa(GPYxE&q%pCF!`D~`KFtqovEqc$`rbK
z&?TmW(<$G0tZe~FVb)~12lYvvv_7OcLK;|4?&-nL|JZwZFn&T}Z^n&F6Da9hR`{#G
z_}+tlG;kh-Jov$b{&aL6_&oU0W8LheQ-eJi;K7_T&YwuW(nW-@_Dwetj|Y8rxF|~K
z_dxYP^B}+(tF3TNsqOrfn6_+=Gw8wpqJ*Rz_Q3F9um?jth)~Nt80f(u51QX}Q!0fh
zSF~xlRTs6PvfX(&%{kPAVRS4WP}Nj&`}n$6laxeKAk7gTjPziX2ctchOUCcPFJ#Xi
zO!nXp55{^h&Vz~6wx^C2Kg)!_GA~^~9#1x0K%T((8)Mc3Sx8}$2fwpUx0~*PZ=F+^
z&t`?G9!z7>?WtorlNpRu&P*n=XlfM5PUVnf4rhEZ%9(qYJf9{7jgAKkXbNY;_D!yZ
z9xNi|bmxp|St+{IgJm9cUL&nw;d185FLKc0Hl#ygrH8(taC+X?S>wT4>M<``c(Kld
z^&S-TqL3GVlI!r`8riJ}8$H<M!BG#6d9azBi3i&~*x|ue4`>Hx3U?>U+n9I$Rwlla
z`7RH3dq7bV?qSJZM#}!bT>F^p_uwxN4tQ`dCjXnsA;$1c_hBYSVyPrQ?!gHU&U$c;
ztan7(KOUU&;574-9&7Ov5>l8`&_&^l2j3TTO}Xhl@4*ERE_)z-<+@0ASkTodns&*9
z`e93R`As)PuXu2kCT28k=S}y?n{E=`@ZhEgFFknW!7UGNd+@-6haUWykaWj`dmcpH
zDV@wLcd2tCsp}%C_dN)<kk`1Aerq8=^59=`l^#6xfTHy_W}Vb7<*^5Zr2Nn>Kci+`
z6}{S}Jf|}4@(ac%2}#6Xd+^4CtX^dE;;jcc;}So3@X>>J%$2%n|9SA9IVDwzOC<b6
z9?uJ#7mshcDH`v!a%Ey9l7UG^FS<WXr6`5WUS#ni$1O{_{4IC(|7m)Wi-fUU@Pe}Z
zPd~R8`Mk73X=)xXo;^v;%SfcoEq8t|3Q(vcD3z263wu$-i$pJ~dr{PjVqTQ|Eah|Z
z|6Y{vqO2F?yx1@%rKA_7yeRF($yHf?gR|=`cNs6*R7#{Iil&ZDDepxEFDiTS8S7VM
zti(8dObV%89^xiVB2}mX6_a-Nb`#H+*Hx8To7Yv1QDRK+!p?-`!V8(XgV7n2ySxyq
z?4(e`i<(}P|5`NgqLvp)Uexm<#Y?ZkMQtyVy{OB)ju$7+N|9rNH1B;Sw;P;#GbN2k
zsuylA>U-h!$!T7MCdou746G&&zP2<Qdhvx9jl5{=MN=<r=7`?e<e#e~KQAPjc=3K_
za^RMG;w?8xntAaR^<-4uRa?v*B1qoSi&kC?^WtSW+unVS)-<MG^q_w8qOBM0ylC%5
zCoejC(ZP$ay~tZatVzkXH6>d|FFw9ZrRemr&SI}pZ@x_J;zc(vh;;Sh8zuwPI&&&H
zXq!CJA$d<PdU@gV!cQ&qqK_B-y!gS3wYS{OI=Q~}qN^k2JI20@-+OUAnnHo({k{0n
z3&jhM7o<GEi=VtmXMX&a`=@Bi!&`0&lr(ovmQ1(ZUN4AHwB&8K>V@XT=!VY0UTY=N
z0QDgg;z1@lW1;k{VK4SIbducgBEmwGG0HfQaS&tA^sJ;dgo~w;hk9|PNUdI%T|av<
zocd}|$_Ouh@nVb@BfVHqAY~NeXvPaYWRe_g5I@$7KfIXYwXQVAdGRZm?&j3-93{yF
zCciOG^kPy>{<{~GW4x;-P32saaT*iKIGvOi)*wmMLJ70HnC(SFAHMKm4)qDmXfK{n
zzjaHP=fw^$c6u?NTIIz;FBW;R*^4b+{5D%G_F@xR<{kSIFP3`IWwo@-i`8U2O9Tm*
zd$EF3iLYd`iV9gKQFIOKklI>03ou{L_$T9rSn5XBCpF4g^NkpAT5RQVMt4c0LbiFa
zouh?b*(tiqi``xv^5Sor1(lq8yx8x>Uta9x=srf0*SPI&dE0$}qeMt@Fs5+Wiz8lK
z_2QZrN4+@a#W^p|dvTm5ofoIPIPJwhUO1n-PBOk9mrT6(ZTBaa<4jC)md5CbtII0q
zpxf?$w3KPL-50#L=*1;g7}z)aW$LI^&MO@KXG|J#%1(IQiyL0t^Wwf22WuzZ^y0P`
zcf7d8nwxLCH;zdo{kt4}^)wr0q38pSQjL$8JmkXvSKz-aA+@JoV3By`#cP^YapIX5
z&zTT^L6bVh&u0{G$oZ4|^&yuJ@4WcWiwr(w^x?f1@xKZRpS<`$liiR$vgE;M4&re>
z*nEih;X`XdNNVf1xmw+IWb$EiQ8}v**?gdAW>(1JL%u3b%9Wj?A5ICdS`LopXf0DA
zB+TtY9v|xYkm5sL%Ho6UgTsgXK2#hb74V^;57S%8!=kQ2EGg<kF&_#uFTzM_yGzCw
z_n`zw6BtYSP|1hN%uD%D+J`bel;vmz#&V35x4aK@bVMq~B<oAYe=|e=jH6Y2==paR
zD|LkQxerxYSS_Y0`S5wC6iTwQL@+Ka8BY?Y4=x{Sv1Dc@N63&8nOA45!B~@#lqpLR
z^V%^<9VW>>)Qw55j}xiXb*F@zkw_Yo{Uzgx*Js{<@!L#}Mm{w5VSo=m`Ow6NrapA=
z;cFkh^kM!6dn+GW`_RmXuY73kgOodg9$XykCtCQ>lG?mSA_)Z=-z?{(Ha@iT!81{A
z>jOn8v<S%kqH=p52<Oe0JNnSchh9GP_Mx*6U3@s6D0=wN)ra2;$lv(T&4)WrQ<mSb
z(}<tF?e6XaA%$iAL{C<pm>^S@K0bWwL*$^`--qvfc$p`mpAXM(yZbVy==VO1zGEly
zgAcz9%|c1^)8CJrrDIsurpW0&C_d<v+ERGvs2{mB9|Ar)SHj0pzYkdlCw8tPR3CkE
zBa_1G`Ev0+(%fP4=@%kMebQWP9V3N&2>W38aDI$b?R(kufo|#}K0N(S5Q+Lg!hv+K
zRYapr_Hp^-AwCTCp}&eBRSfgtXKH{SWBk_R%HcjtqJHpUgbyQq80E8s6vi+aO`1ML
z|4M#eM*eK2b1VzTG5+d9btH~woWS@S&6KtBrc`;N54Wp`Cvl0BefWcw_xUizhp9AE
ze3-$KX^ba}TCX8)D=9O5nB~JJnt(pc_MyjnF~^6wBwTOrDLdwoRrs*lhc!Ob*et&-
zCl>fHvxL0Rhn4x=ix`P4X0pVGrA(H^<ja|?AY`(Nan9sq%Cgpnbv}%rE^YAPN^SRg
z9|r!MZP^at-|G6)htvaZA{$wObb@Wuws5m|_^{K5tv+n?VY?6OWtn!3e?B-njgEVs
z*yRK6xKAX=d&q#V$-5b!Wps@FL*DDdsRJ^R{XYEV!vP--`tX)qoDYY5_?!BTOwotK
zJ{+OJ_2B|nca-rM8Pa^o|1s`3M^7;R!+4VM6eIQLX&=roKg)P7CLiawzI?mr!!?#%
zV!Rwny~5-w<6^fpF4vjg@ZlztTZ|-spUHODhkN9ge0b=?eU@K+=V+VRHtV<`g-0xT
z?!(DC^1sX<Gd^K_%J__Nc1>$zkr&KgGQMIY;cFk>FfX?=iK73J^QW2aM|-y059I3o
zi1*`TO#hP)ahycTsr^L;Kg#}@EsGyn{mAIY=SM{*KYa_7NFlQy+lt6Uw(OG%mJ`|h
z$nHlDKj24#A9gMzrym9UD9Ah)V{XPgjCmRJ`H`QA)Y|H<LVgtHXn8-1Fe$}INk#oA
z7URYJD8alWqg2P**rjwVwG1_zc{#=tQ?pSjg$jOD^rI3BE7RdH`HZm&<CJXw|3<H>
zAJteQF@9Of+7wAJZ{SBmKV;?(Kb(HJnAh~97L!Cjsxzs<`1uR#L#8C=$$r#jQrnL@
zOqQ1T{~GK0k;W2IPGOSDxTv*oGpWybt(Y~AUodavM`J&JkCo8Gj}|O%%1CNo`q7N}
zSB%XWkJYgHs%1>4l^?B{w_$9{xbwVafgSw#+K+yI{NP7NmUs4}iyzAD)J}fveQiwy
z3SIs9mQ#s;<3~5<-D8p-OnUm!i%IX8ypJEzM^?{#7nAh$<9p`s{<Y-&{rJ(3pdUI5
z2l(Oj!^iw5#&kx7(L*M;#p+4FAG8fFk$@j6ClS|Ztn*u`^{ZOP9`YmX$0$FBxn#qS
zh#$jQ)1)Rb8Ok`&kHN7L1~EBxIeAD-Le6SfjQ{KhB~i&ESTZsu?^3`vnrkVSD4yI&
z8|%k7vP>1_RQ&44cvidM#{@rq^W%UY2mP4n$0R@YQ1{Zv`Z3v$)qbq;;}1Wk_%X|m
z*?vs*qxLQP3_oW2F^&0j#+8dDlGC|$<tlNgil{zYo_bE6<HsUD7W*;Rk9mH~r)~_(
z3;oD>*+pc5AJ4wDNV9t>B&i)rUE;@bKUPqIq12^*EMrpljGLnWjda}($=@CqEB#nS
zgMM647<?yftsm?B*y#uD6S1BS%1_H3V~Za%OsUr}spMvPgWuYNY$MI|zVaqNj^36(
zc->oBe?%k4cJd^Cl*=enXnI5J@PmY@8RhGFoV)y>1EH{+4k0AlHp~0`*w6h&_5S6@
zfT_u6O31`%2SfXF`H&xf`*D(n!;iy$93g9*=bm#-K1yCLi=)aNw>_VH%#Y(_8~w!z
z7SiI1#Q$N*hj`jmlYRuYtokhV%whSAACGG!A1mZM=SQn;qS{LPc|RJgv=h1L$0a{5
z`*DT*ryrmExa!9>ZrfWwuKRI=^7`?Fyw*T*(~rA;-1Fm>AGc{JM@#e`>JIgD7eV3h
zO6Pq)9{BOdkEE{FYs$iNTn+EIACjxN<F2^MnQ@i#Upkxxg2+?q#x(gQ_0k>pGv?13
z3l(*~pjmduUABPh6{o&tB(*m*aZ=NWyrag?7d>(&{O1SZd%yL5@Pi-S3%Dp6r^2S9
zjA~uI#H)CG+g?z$E)+AU$fzQdip(nVsAzFf&Y~i#3aH4bBAbfrEX<*Ts?PsjeCi@d
zXXyZW)dG==lX9yFZIek}yPEv<dDqb*?z}4UsmQNl?j3gls_TwSS#F<qdGDqWFU0j0
zR#8MnQ5D5hlu}`zkyczq2^A$dwd@%;z3ijr-47+wrghuyxF57lE3Km1TdNH-Hm5dj
zCzn@IK}9DOomEs+QAtHZ6<?^Rtl~4$R3Y)fR#EXelS8S3E|#jQ*0ocnk9NWYs#isI
z6*W}rg7bDr2o<u5Dviad4yg_mP8I${;Zkw7xLBMosX~2`NR`$X(;iueQ&UA970D|4
z6qReKNK#Ro`GN1nsER3lce?AUDE`cqsv=EAJ?1HlS%;;O+^t%lL)2GMcZy8p@*Ovk
z1{|%qM{cB|v5HnITB~THqN$2AE9@;*&~*4xMRRIrK<p_mnyL6o1rZ7~(`j&9@WG<2
zEk`b~@UGNGMO&79t%5G#X|uw1D%z{)pn|Tlls{zJ*|L#a5YKa3>PR+lT3TJlDyIu|
zl!~4zx>7q;eE(K@Q`@=}>BgmXS8;r38by1l=uN3C%zwZ&qnhQP`_SmmmA_^DPDNiP
z!=?)o_G8T-R2;c4^ny-$RXRY$Pbv;-IHVz6g`y&&!PMYU;Z<=|#W58=8VD7;IIpTg
zQ!$6EOGQ9MP{n8(J{39*bOpyC>LM~o6=4+y6{TVzDVGs+8Ix2&m@4hHB%+K@zfLCp
z_Ky3{{LUdX=uhlJ>EfTsKfOg0hvR1z%W^tKsTi)J{uBEM6(ebUvpMJ_yS9dd6etUo
zJcfEw#Y{57ijK2~#5fhdshCJ-0Tu3Fq|uAy@haknN)s4!q&Oz2_+7;m6;oBrUMuJh
zXfn+;xA;Q^4FnOAv>TB+O~rH-uL?W!7IB`4OU!rIJ%gszUH9jOowHQjKb|_9Ypi<L
zP4&)GF<-?7?w<uJ7OKc`RIFFANX23mD^;wb!s|Ge&@@>gmaACG(P3lcWhxF`mx(mG
z>t3N+cTYsNl@W(FORH6^A?s?Kx>m(H6@NTTBVO*6Oc(QGo{B$Jbo*6MnZ!4$*rcM@
zUH4`c1BxYWSFwe9@`Aio#Wt1~J!=1HdpzAs?w~1O$w^@+9onJnM0RtV$!7Mb*sEfn
ziv247QgN6pykg1$6@$VqvXg_V^`@RSC|rHoeMkl2-(;MntmqLH4YE3DLJ=NUae`cy
zh8!CHQE^hm1r-;`4DMQQv`=wer^&`LCZ1s=a#qDT=I2%HSSx5m68c$xKwKinrQ(T-
z%POv@xT@lsin}WPgDhXC#^)8cR1_{N-(XJBo8%d4yRsHZx~*c`UH2Wv;d5l-_h`IS
zJRp;(;CRF(yqhCGWCbEr;J;Q~sYITtc&6f$iZ~5}#!Ams{73q<3bcxs)D>f;S1R5z
zd9C6Nwe4Sf%QmiAxf6)IBR}SHTrB7yPFdco_`rFuf8qE@q_DeaSJ|c^UPERLXG<pa
zF5=9fStVrBkWm9grxbP){;$|9tdo_Il(R9RLZBh1hExq{8ggmKtyw3Osv7cW=#e+6
zkcPq<@@mMZVQja={2B_dylKbea(ASH%>TUWCe0!mifX8+p^}DT8j5SEo<o$@P(s7?
ztb)Sp5^_lmr8Hd2=e(6&$VHP#p^S#I8p>%Xuc3m5$|aqonUKwql+DUQ3M8qlfuf&r
zIV2%og`7!2@wo;)x8qG8L0C<Lq#;3rT|-R`jY>G_?p0_=)Q~NY)7nc|v+jAF8eC*Z
zcipxbQrEU=lr*=LqdF(mV9f{9lPRed)u^GihB_KjxU^&qS?tM=@4D+zGfYvJ@!#A|
zl2EY}s7AMj`Wn8|&{snP4GlH4)6ibS7gU0VW*X!|GJP=9SVI%$DGLOBMblKXKEjDB
z@BET_Yz}R6<NiuRbILMSYN4T(hSnNda+D+sXUlCgbjamyt6|M4H*Ix9WfGF4gNCm)
zbf+UN;H1z|Ll+H2-nlwa$6jz%y65i9Nv?6CtA=5X<Zq}A!;`x)X1d@a-a|uA4Q*;U
zdTHpR;jgYTW$(?|Z*`TwWy$UW4ibK^p`V7X_uM`WKWNse_D2l^H1yZtzUMBxO^{?w
zo}`~R>Y=j$wKh)@1x14|pG<_*yc)e)vJ>%hQK|+_LqJ1NLs+vu^6WTW(lrdJnH-{l
z?&*Bn&_P0RCaqkNB!lHdq8bKj*sNg-%`XjuHO$j6pHejp)i8#PmfC+n9;RWGhS3^+
z*09y)9<E^o4d~zT?eoYZsoBpZ3iNb^u3DGWbkT+DFB%9#_bewfPQyeElQjHFcA|k=
zHGzBSHyX#H&MEiYrKU<do}~S*VX}swhDdWY{Gnlrh8Y@WYM82Fnub~B#4ow!=^9E(
zVnHTxdYB;6v8tFw#lE)x_s%g}!{SB`diF9$14Yl3a+1950sD#h(gF<&HLTLGnvV3I
zdl5~s6=E6bYq$`S=nJ|f8kUl+8WyJus^uD1X!vkkl8~@c!^1h&<;~CcQr1wP1jQx|
zC%4<zYFI}TznF79&36s&cgtnY*eSX}!$!?Il^^(5)O{p~&_lV^y_{P$Y}2q^!wwB|
zT$yY+tsAsnV{AJ$?9#AD!(I(E9qQb+t`>IFAkGu^U1Fbx{p?RZ?o0cNI=r`dRWq3`
zw+=90R?k77r~a+su!gDuR14q;E0+jZF6gL+V;YXL<PjCl<OEG#YQKh48cu7tq0v&J
z;*5sjt&%TlxWweFhI33vc%I1xM$)8kS;JLwL7edlBVE^B*YKdTb-hPOQM%Z>so|D}
z+Zyg@^hG!BlRw-g_P@zO;V#)y#T2?kd_a9mGo`3ZLP8Q!`Ny}2#~Pk!_@p5&fTz^S
zZc(t9{F2Et#^)MdFrlOlbh^>-TEiO}1u5-6@~D07MBZw6$CA(;nX+3#8dD7)$rZT8
zxII>xt8NKf0Pz9j4j@ke83M={ptafM>;Ys7AaelO0w~{5OjG16OtJ=0Y?@rvExgm@
zSu5<F8j4}1<qEw;jsOrq&H!=+u=Y(Fm2m2wn~+lT29Pg+!T}TsU}h*={s0ODP%waN
zxf0)970>Uv&&H>fnJyO!fUr(;D-;c&cmQAT5XA!cD_2snpG5XSPKsVDWBnypGJsM%
zzQjvYt^mpgP>z}xu$)qrfaSg_1W=htMMjcT3Sf6R=kY;_<f%TRqr2cDA?bfk$Nmk-
zJ4pc~1TZFmu>sfv5CL=ypi_V@s^Or<aE;CYTmdu)pkV-s0aOp5WnJsL^cn%w48R@0
z%PXQ*0Ca6e!X(b}_8-dw)Mj2MfaF-q>oTbqKnjyo#<W=Khe`4ExwQIYBzlzn1<PAd
zbpcxc)3WWxj7<V)N_~}0d>OzOe@K^$TUY7LIO(eZnlmBE`d>w>09psofhBi+QkwwU
z20)}wZ+TjdgmwW)VTq<#`v5-NP8-!s6rcD1&#8vC$k91~E&)tWvyBR%YXIMHA^rfm
z1<;+jH-H`i^bDYPtj1nUY)E{z&ieMgPXONr@Er?1F`d2vd>`Ze0{9`u`!o45fB^yg
z6hJyhl~`)4ewKe&^}@pSitw?Vo}>QSPpAQC0R&iL1P}=z$XsU(F;cE@0RMA7W=t}K
zNi=|gOa?Iyj-{5!pD>j9Fvg!5hck{~9LY!}AFA#c9l+9Ng2FG<+aKeIj0@n`015?B
zIEe89ObFmi0A~aEEr5vuEDT@~XP*?nv;a1w*?#Bf<XD-1Fqsm-)R^Rd58|c=Fe4_J
z$z&Ge>;UG(<Z}a<$9z8Hf|z{VKHK5|meAx1-~cr^fX%ZLwsPvS0G0>Pzq>X1D_F9U
zaaAnu>HyZz9Ovk|05-<t>xoeN187{=%A3EN^$d0sr*4kvY~hMXPGK7hw+FC;$<CP0
zE}Eyz_b~2d+!ssTPoAW<^-OQ59(OQ+!!h}x0R9f3^gmYBg&*6Gu>5E&^;iJMWBde@
ze;7|Po?<-BIBt>cTma|En+1_GhzkK+B$pUOrXVf_a5;b{<d6fn!pc<FV<uMv7=1V8
zS^(DrxDmk3Sn53{w*t7$<PPKASn9k<R%`Eb^a0~T#zz7C8`J6Y(z5d&#p0g@@H~J|
z0mKEZ>Hi{tcLDrIE+T+e0lW_2O#p9WxyJOdO77V)%gqrMc~6r%fRC}%EI-F5b+Df0
z?%N}0x-D#6;H15Be2fs!5CkFZeoktcgCHlMOv{!fh^(x$xPdJj6H3j_BnM+_*m5z+
z8$`Y!atDz<)M`MUpmkqXu#BLa-~2(`YG^AEM6b27`I9Kf`h|bA)QSXAG>Gql=o>__
zAc_Yef{=rj=b_XRL6i)lR1l?uuyd|5L6i+5fjKFZV^WE+d=M3asL1?g^Gx-cS|wDD
zX@16}N)VqjsmfT5QDP+JCd;iX(@a|v{u9c<@@9<AAY4Jv$tW=h=X+QEAgTvZgOlnP
zcGirQP%DUwFR~^DQ9Fn_EKCj}g-Kn;dNIv9x8qV{JdKH)%Fkt;L?|=}qG2rciy#`s
zcw;6_f@m6(d>KTRN7l%G#ggWXEf`w{(JF}6L9_{?drZG=5S^H}V{FgZf$?ibDym};
zWxT0GI<uq;V^_v+7`ri&!iZds9?W|(_KL}S2hk_SzhyE#f716s{P(x`F^B;{^kd-<
zLG0Zv^^a*TtrY(g*$+qcAQUFvAbd<bq|EOl{2Zl+cq)@EFRfPz8uLI9K_-oOI)sAw
z_k(qQ471P(A`*njJjytXaUkQMAO<rb{UJ<-29a3SGKv3r`w>Bm4C2{*JfDwIL5vP!
z?hwoyf?t9dL&ZiAjbLmL<AT^7!k!R*CFdW+A{~o$ObFt)AkuWWbxfp*My9T#gpS{X
zm>k5hAdUy|M-Wqj*c`-`Af^TpZ%Avo8PjMw1TiCsnL(^($*dq|2eCMaB|*#y;&l<{
zyddTW@if1fOBR?@o^xMbKo(d)ETjemk>|eqP*Dd7NkXX<UCL@jyU5FfXkOgCj0>qy
zK&%L2We}@^cwRm6xBlY#z*NdeoH}6*oz4ndy|Iqlu%0l84M9|HBX6Qv+15p5BaQ6D
z>_n=Uwce&t*c!wh8n__Zr;2SsY-h5AaVI0mcTta#!H;xN@PD%J<MIzM%G+}6XYyCj
zy1%ICv>goM#W?v8<KICXW^yEmqd`db-R)kwPQ9#2B)*$C5yU@1yb0oM5GR8;6~vVw
zt_E>Bh%-U-SSv0Dah3}|N2A%vR(OJx?Vg?5e4fq%ET7ylg`#;^N|%Blyi5f?wT$gr
z5ZB4Hf_NOnUxxEW5O;&P7sO3+bS$|Y#2qf7<*)K*on_LYT=zNYVGxg)JYd{2LLyC4
z7%<Z6+fC!-C)D|LP&ArkY(ab+A<d{~BYDocwwD}zMS~RtN&Y7fX|@}qvQyr7G{2~w
zx^=R6AH;_sTAsFN)A2EgPeEkRkx@tfGR`<1HXZTIpVi8k&?yHADNwFVI=-r%N+Gk3
zAsurN$)Y1G3n{hMQR{(Nb{#o%Ku4W8IhT&yI&w0nRFV*`9Fa8-=PEVSntJ)DB2rr~
z7tm4alPIjCAd`FpvKP|PKF-o9qN6DDVmhjn&Pu{<GbB>}ZKqUHM<pGVbr3J5qck5~
z869Prlw&Nf<JIq0?|qsoSI}|(ny9E_Qwf;}<@${CR%gvBIzHD?RYx@)l8!_jE00PE
zI_x@}I$S!04p~Q`MY4nD<}tBM6|^JR9}ZDEEJ(PDy+NZMR$b4E$O~JF8eD8m9kp~M
z>8P!v9!vbYqz9Md>gY(;@$)oGzb?y%=d=1bMMvi)wp5lZd}=*Eudkzl4qZn`r+@A7
zg^uPrTIguRI;8NGj>gPuO%zRZG^H9RiZ2<PF;cYaNy~cw%fl~!S-FpnRytbiXrtrM
zL~B0w(9u>$JL+v69dvY}mgx9e$DpR7qmH_5M7D<#aZ)aLQtqN-OF_A-j&JBF#tGux
zbga+q=uYywj>^rQq?T=i{C2%na!;<Y7h`YI7uHdKtK&NzeRX`V<0l>II{L8!CH=_c
z2gd$7-tNpuej`1T7@*^!Va+my`s6#gXI9y#!^7OmNWvaRWWNqdQgvud0y=^^MvfJA
zZp;2jX&)Pk@;{2OPU~G`mX6svE$m~>ixH%w!_*PgF_0xgbqu4!XFizb#U(*u2z6S8
z97HI~&pL*4D)9%uSO?VxiKAHZtB&zHMw3hbQvQW;4C7cG6<$f>$e90@De2gI`vfvV
z9aD8W_em3VOwuuhOZZ*KWF19n#{Z#Xej%&yMO!6jz!uD4-9rtWEoFQpPvczE8D}ug
zWV~5H_O}#sbj;<V7BbGGa+px|Ka1KHFmE})nq}`UTIDa%v6O~Bgs($brenE|mo$BJ
z`qL0Ab?n#imyT6BR&&OkjB9jk(6Ld+T8^e{k=BtJ=$NrwQ23Jx?E$xmQ#UhGMf99`
zi;k_-^An_>D~oL`->zc^ncNB2)Z$`VH@Rmyd6$meoU}*BJ|=s092u9oVviKgE1Z?A
z6~GSYIH==>j+?A-NXI#v<~sh?ahQ~K9My4J#~B^RbbJ^rozU@*PD_qkJme5Bi;I&w
z_EeTn(dgU}wC5V}_)|iDDs3Gl&XQ%;a@1cd2-^&iF6g+Z<Fbw`WLgDmdluL)Q8~|C
zCpU{GEnQc2{20!*dusM;)Ng~Ng>?k|#B^Q9&abV$y`|G;ua=oTWxS)~0U5K7yE^Xa
zcwJkB+KT(sum&=b+2d`?K4f{M<6j+*b=v1e8b9B%w<nyp#h=nQWvntOJR`rCES~Fl
zLGx~?*myv+|6RP+@kU3n5Q>NJR>wOXnL@}MvTFa2JbVcG9hM(>&!v5!vw)6IH1X-Z
z?P3wfY7;YBRuRuU10zK<hH(3$bv>DdCAmWAo!^!<gu%~U*+R%3LXHp+vi^(A$-;HN
z$n<j=r7q8HA!W=RLY@#NPmuD)%FIWNVO}66DafQy2!)vxVJynHbeDD1B|<0}LW2+*
zhEOVm(wtN)gfbzN4dL?;s)kUGg%v}n#H2i91;$g!HtONZAyf%rZ&-c~`Lht>ipy7)
zN!7VmtA((wfz?0u5Tp<iLTLI_&eb3*eSvv*h1CENvL2JljE)eTOi1EllE_${u|^0r
znY6r>i4>B!0aQY5CUrtcW>S~2UMw{wgwz;MW8!A4&v+n%?TZi^F>l4#IE1g5P{~cG
zwIO^NLbDLAb`p(iB@)j4*EQ#~+?;yDAzCoDWTfbRpJ*LI8_wP~gmz2{@NHWASeegq
zXYCk5rx5-KVM+*{L+BEM7D6C|t|5FA!Vj$3Erjcz;(CYBhojv?=)vUXgSeg{^kTlH
z$p2sa)%(kOQ1)#I--WR2PpL2C_aTIHJNt!bMvKR51j+k{@M8!AIIoZKC&qL#vk)x;
zkZoIDrzZq&2z^Ui7JDg^HE@2`A)<!xMJMa}Cm4br!tfAAgb?D?L5yKWBZLSOlQ9~y
zK7Njivq@E)1IY%eSZy90!jKS#vcjNhj-Nvq7P3CA%&^8@^P|WMK`XA03}F;2ObTH%
zlV3yV@3Z|9!k7@ohA@uW>=Zkq^3c8Z<%WE|y69HPHa>)tBNHbu{>C_w@z`ZSa;o}w
zE^2ZJ1qNrLy-ucbbVi6CpJE#G>5PHf))bo+!t4-Mhp;AuIV@kmIG1r=2=i$cC(9RS
z2xX&aRNA?a<%<{>GcE~XDf#~pmWQw+gq1Yc?z_9+cZcu0k6%t%6~grU?hW_d#hRp2
zAPH5vHiYe*cU=hUiG=9aQEUkzlgqX-gcqMDZsJtZr1wpPn>qU5cxfxmHL^PT_q@IB
zOb6SrTDF&m<Q*aG41oxRT}<fiV{ZuiXpS2wYhXWhV+aGo^yU`_$Xdt=gi$7pLm~W4
z`XRgu;V@TmGK5nh90}nlM~{WjuamfN-+BgnJcJYE0UlVF6aR#e_Z!Qzoetp)nKAWV
zDXZttT9X$SLpT>}|9K|=7LYH6K$m=%L%2e&Z)cXuW9WsQxJn1!L0qGe`bSLo5I60K
zl;c_4jSy~zaErP<gnOKQ|37l|`}RB3$)>nVR#8z<c+<n`nfoC;h}HElghw&{ZwQZ>
zKZ!}6hVU$e=Nx_ijqL@Kij}O>#On~=gitVyLSf72za@JP;Ug=&WBf0K_e>rg$~fMz
zeIf_Qn%Nm`VPpy;GxPW`GBC*)#_Rj;J`EjN&O5S%ku{8WE0ce0B4%|Jr83yEg|Y8h
zT%eS=dBmP041|$0jHhK~`d=w;7`d2JG<O(znA3l<6wMb#{xFV&odv=mO*$8U7gvi;
z%7wYcm1jgzCPl(HJ4kx6SriMSco-$ZC>chnFlybfXD%iBbrr9Q2|A}x|F116%7#%c
zj80*64x@Y+6~d@Vnp{prMiEA(Fe-=fSr}EqsK&z2!+23tR1ITjE_riyxlxL(NpVrS
zhwZzkk`zWl7(^)8!<akFdH5S4hv5jr8HOv2>RbZ#^ZZ@5#4tYeLRQH-P1K;mSK8?V
zvzObgYwx5m8iw&j7`4Nw6UG+1BRLEyD5Zr_m!tK<XtO~|2_rR(r3<7%I~}A$*Mx3X
ztIybgG@Huli|mxKQ5cQGXcb25FhcL`O~Uw!x=|NRIr=4IGseGLrT+O!G!LUi7}HD1
zEyMVCp;RwN!kf1e-50ds_IC*5>oD4evAc=fE)03JXip9MV0Vm{sqibCr1>eLV;FP~
zemE%Q7-s7dM%OTXOlTR{H#9)+t$EZZjBa6c52HsIJ;Ue~MsMos45Gv-k@>AScvhy*
z%;>|gLfb{5^76OTtDL=W7(ay3pZWJ;^kb4eUYsiC{4oq#Ody?c0OL<#T-__$wRQEJ
zm#naa798-zh>u#x+0`&2OsG{_7=aiMGSL}BVT5CHgUO>hnanVvVeE=X(-Q>s($Wm_
z;4p@egnEW`hEgAfF(Zs&Vf-A%@GwS%@p~AP!x$OHs4yn7+UPKT3FFr=#)q-<lstxV
zwUWn?wbXWuWu%4$PTC84Y!kxP^PE(=@S7@r3!~*@7ll?e#COHTq%fM!mcDx@{)n}6
zDw8Q;ysT*51x(}U;~W`?&kSQ$80%Ovn{k6*S`o$^=5xcC$HcePHlGP)S-@l=<DxJY
zGg-p8lyMp3az@fGTszCkFxDOss~A@^QgqG#2&38Cxt{c?g{$QaVQdSd{V>-?j&5Sy
zOg7A9D`UT%DO5tkHS%`W+`+h$@k5qG%DX2_*J-##LrhL4jQwN)Ve6Kk+VfW!|AcXp
z&H`ll<p0Cg){sZZ>LyEnGe69DgpqbgEdNM4#;L~{Pq3Ue5+eQQkEBy!oDbtd7^lM+
z_fec-Jj-~F>}t3~!h;j!i(y;}<8l~R!Z<ZYx|TPAei)(ElW2L6T~Ub^Bf2$GT;m?Q
z&Uhn?n_+xkM(nL4=yuq*N8AbH##q~%Fy4l7H;j8>+-J>)j1L&;=yo^F@`xssL;M@Y
z<1n6(=Oi~pofgKkF#amzd>+Q6<?_I>&R%x}k(@{5Q*QB!=G`6fnv<56aZ+eJ*7+`s
z|H8;_ActX1*!PynAp`RdVSEhZQy6g^wK0xLv`$9P{<E&8G8)KaAe(_>oo$(xih_%z
zt>22w2C^8)YFN7l`|>AHAo6EkQEZh2133*8F;LV%E(5s@<S|e;UZ!;+_J3!m1(awZ
zl)MJ=QC<TD3=}d@XP-==paIXEY^3@161jOfCrJt$AigA!R?I+g10@ZVGH^>5i$+Q%
zxSeZcQ6tSpzxI?iFkyy#{gjw8R8~K?l`~M@z-<F}3{)^s(ZE0hgA7zMP}x9p11$`E
zW}u3JdInOssLvT)2C5pUW<WBKU_cm<4bVayG^RB#rP&R9wNGTNV53dX9R{47rRNH%
zOZoVX|5*+&(Li+;)-X_;j>|wz1GNn6Tj<q|M3MnQ`X+>MNkk-5w-}(i_#xG;^F`)H
zV!?lLsRq&vG~_}^Snz?{ZJ<6!e|T#RN(1KaZMH8AG&0bbqfHs<-<Bo@77n%ER(xro
z869RoUh#wND+8Z5wXGj2=g#M7X`qz>h4ot-Xk(z8f$j#{vV_X-WS|}M_J%c&Ixv21
zprc`JN=v(UkudXm(b+&316>WQTrM|wDADt-Tt($?43K$KA&W*@SKU1f^fb_mOB-O|
zCnmiO^oiB=t%2{D_l-%uH_(sy4>3u9CO;bZYk_rrd(0&!HWKLu`u7xB_DZ|o#d!>P
zsa^wq10e%p1G}=vs|GX!0RyL=*y)Vf`3HG#1vyA2vC2*ooyIhSV@8$)!@!Q8El*+^
zh!{Bh%--&r^y4b)d>!R_&%rg=zz_rT4J<G)l!c=W{9<4j^Pd@q8yI1LGFHrzFw($*
zZZ_J<ZWImWD(l{1jDfMNHr>ED1HT&h!?2!5QPOypr@xAuz=R~f8JNg?QcUtYlgW&C
zBep4=cPisFMk?y}HDZQ=nFeMVm~CK=fw|OXRi@{4!!<#__fAX}mvbk~GjK_jUmX=%
zW!pjniwx|f?lQ30z!ENhqk*LcmKj(@wrXIxffY2w2Hu>rZ0}8xq~7~Qr%{r-qv(}M
zUSnV_<ub6rz&gWv5HVAgZW>~}fliX#teF_~TrT}kOx+=^Np)x+?3)a1Hn7FOKgnXN
zfo%rpc}40ud4^wXr-3kVWVRR)5hv={s*D%ebJ}(r*u$;5Y+$c}eKeW|PSf>28H0g?
z1`bhI8<;v-T0dFJx=Qr<L#lVi_BWaRVsV5s9%l6aCjaoN=27OysNVO|al_he@C0M4
ztKuI6Cz+Fw{!%<+;4CYjqw>efj|PjEl^plCxy~E7VBjJrU1FpK%9O#D{Y-ozt{Aw=
z!fOVu8@NHyp;E`&;@L`>&Pq4QaT(~mRD50Bc4(b+;&t3zR?Z(mfe7vyxNqQrL60|)
zDPp<kM`WU`@R9Mcf#(KZ7<j_br__^f@yq~SSy8A^O1vbqxf}PIMv4_)k$vv9yvkeZ
zsK(+w3*RxP=zla`|JCd}M0_A0ctWP|ZkF`PKwJcKB9bkFcy2?xI#vl8m=nnu!MOa^
z1|pdw$Pz(TmLr0kOtMALA}X>+Kp)ZNV5AT2a&c1b2=YYG=(KIgc=`HM(PEsKuZg@7
ze0(bMF;bZYBPbL>Y6NMVrEmmQBKSOlA`ujgpjZUOBPbI=*$7IoLa7K!M^G|?BL(Eg
z>qW+$LVhmjuJ-sS=~1#M7eRSes}#ZLHljiVHGdZsBRJXIS@K=n^+^)hzkJeNIfBn3
zAVPt@|EU^5wFnX;sLpvMMmd56CiJ$&POTjwi3sYJ5=0y<r^Y)Ya7C;iqi#2o32U&t
zRs=~@FY|K4#ekJ^?Fi~{G&zEQ_uIEs6RAaHdN@`$f_il98AM71+pfr6lWfF`50Tsv
z)Q=#YN{*mG1PvqjCW3Aed_kQVLCXkQMbMZFY|7Y#UNR<%v4f>kW#hk$pjiZ8MKEBP
zllFeC3elW-3&!fHPLfm0TSw3~f<BPjL_oKt9aam%c3fI}M$+lP<m(7JGU>$FIhNXm
zNms`8C2id!=n+A`2!4p5X9T?>=o`WJoZ35rZzK4Qs^jSRg4Vxm6F%8<SF(M0m@(_4
zjP<rkqwZS&jnZPI{aJ?;21M{<1hq=p9>)tKKI>00Io+L6swV=KC0<5f1pWv_-K-fV
zS^jGML7NsqAc7#L+TTc#2z2V|iXs$2n0hi#l5d1$L_izPQlRZwAMUWxedWLi21PJ)
zAZ883;0T6LEm3Gu42@tI1rtA0h+udGZzFgY!H5V(M(__ASOlZU<RX|G!Mq55iC_#@
zJ)MSz$@mB+&^(IZSL&s%BG*$p?E*~qt-o>VBr^3$BJqqok?in{ylS@ioh2lk%;XQo
zDG{76U27`6R_-QGi=g6ff)r+O2{R*@6+zWvVm3$Tkf{_Cd->I5uZHsc2o{iyMX;Sy
z7c#D6Tol3L2$nEk8o^p7%NUn4Qh%;svND2IOjgI_YnbG&72mzC<-68XG=dEg<eg<Z
z{Z85x0g8%^jN*ZtB%34H5&@B|j7vWX;yWVP8NuEN_K_<nFYk(AH#x@Bl2X7)_vTdW
z9%|LNY;<G3KZ1PS<i8>~K%IQTHvX!8zys0os&&>r$Spa<_;&<{nUMSllcS8sA~+tC
zpI~yOl<mreET<y45Wz*3oMt@3c$V=T^*If6R8BW!!b=fcj^HIHU5Vf-&FBaobMzWD
zJA(TWT#w*J1UDnN6~P^vt^EXr+Y!7OnvIZn+X~`tOg?0c^~C8x1P>#qbWSwQVwv|N
zF7W&%>(HK%v-(AP9>KxO(ub8PPb1dblV{W?CB@X));Z`!1leHadKJNIs)h63-X-eL
zs<v(AXX)a<2;P&YGLdNF1G%yYDwwEf;!^~1CQ6tnX=3F>$z~#}iEJj~O=K{U(Zs&l
z^1&}f7899FWHvFfr%Y-T)|?dyRppYm<m@JLn8<4)p9z@AX(G3YwdZN^I;@;x+4CWn
zBj-Xv`gvHsF<vyzF6TE<z(ipaMNBkbA_`IiZpnox`$CcVj6{KiMNJelQQSo7NAgbt
zWGb!gL(zV=_?Rz=B<o9vxEk@LOv~y@GZHCdVsvRoSrg?<l&997w&(dpCP}vjawQX$
zSxsjA%mfuBF|We-xrt__992zJW724A8buRKY|1Ps*i8uL*B00*>fkI+Mp_4hZs)6;
zs9~bNi62eWG*Qb$YZGluB$=pfqP~d+ChD+0wUc~WvWdDT>X~RXHZje_{<YGD90@5V
zQcc{gCl;=k3EeFBO--cKh9<r+(JEF#BNHu6ynihkn`mO9Db;w@{w1~C#PDnhnfi;b
zOxS-B%^8U-Um_8<;8Y^F>WHnKZ0X;N>VHaYO|&!7*+dsEyuFF-<!tn-y@QFbO<d09
zY@Z_L6nAzsLD-40**SMt6W^HVZK98fZYH{$=*8K4F!p4$O|}f1o^U1)miJ_}?DJa_
z-<jygseMh5_1c5tdnUP(GZOF8!}fzo{|AZ1SDnY2Cl4_36Du1g(oHBPye51s@t7Df
zz$!COaj}G_jNgRDNpu2LO=PbxD&L3;nD{Cx(Z>Tp6FLogoE%~do1kO--$w-z6Q+qM
z=e1uKgP9Cu97Hy`)3JjWd>&$AC<~iBupT21rv^|hQRIkXq=```E>U-p1)BK9#3B=m
zO^h)y?R3`hCMK8|%X!<j6yuouO15#x+Vto6EZc7;=9-viVxoyjCVn?DnfjU4B8S8u
zCX56zg{Ds^rTlt{_*9lmW1Mc{%T8hj<4nd`jI$X@xx(20{|kP;i3MCHRoXYT)<Pai
z;_If{mY7&d#%AI#lO9cDxrucq)>E6?ixnnTnby<4FLY@one+yU$Z8X7XgE^Eyqos5
zWIS!-Z_Tx@YA^nzavs|^o7iGvgNcoFIIU%p&@J008l9!$%h6(TW|>wgp?bH{5O908
zGwv|0<w15b64}LMH{%`?dztKGyuMW;g##uInmA$N9}|bTguhLYulrEO+4M!+VG~D8
z95r#w#Br8aTy3BF(M~v|s9ZeBG3AgnX?^lZ6K75A*ktijCQh3;Lzb3F{O=ho3D220
zZ{mW9i>yY+LJwwV*c}rlrL|fhT`_T$tF}dP&7|LX@SdYLOx!f_l<K9te@eG#Qk%GE
z;x<j02kv#P<vS*N>eemoeG?B%JT&o$9IP&#J|xZfTOReZ^e=b*V-rtIgzC%v$4R;C
zq<j{UXhdd~k)NA*VOoC({%7K)iB~4xlJjXQU-pXECf<-8dd2VW?bO@U)HQu%N_xi%
z!{*6STe+J}{=n`0$oR=bTok*iTC?fM8|!ICeAM!*8KTG-MW!e+N0B9JU5U|f*G?65
z<yO3?BP;7<W8A^_3y30T6b+(i7)7oqaz{}iii%O>i6U<lMWQIm%J~@SH>Lbh6o`VJ
z;TMdeP!xrupiixipRt<p_t%Nd?ACjkVys*`iZW3Yk0Kz65{xAoOEFHKEJ#kuWm&mg
z6i4?+E1$=ek6QOi<YWewwN;9uauhY9s2Rm)QB;XSL?K7<c@$Nns1}73MZ$iOy`G$K
zQf}T;+$!QIc*l`Ihx1zaMhbfrgtVHgBMN7f)>T9GC?3y~Tv6CECoFz077mop6|j9b
zP@Xl^m2<wd)-KnIA}NZLC{m-S9Yvie-X_M^jUqXUS$UnbZtbr1(zrZg(&M-#tEGBT
zsCh(bUKk-Q3U?Issq^z#tLe&j992e3RLfDj{6&<O8APWjI!DnsiY8ICj-pKzO{4fS
zik5u%&7$P-&^$^vW%xAMHGa78SF&wP5X;WWmGcUEFHZ|`w_?q+2UD-Tv96ZeM$tZs
z4pDq4<7h{RoX<h)uhPQcUq{iAHA`j|N7~6f@;Rsnx<t`6iUCpl6va23`fU{7MbRya
z-}lMg8GA(0Gm1@P5_?6_CyKcp(t1Y`oFSK;Bfih;q(GW|Id8uxeqi!_6i=VXV=mbG
zNAY767xqaPXGwH*N6kC?jXb%#EuGc8j0&TNMs1yKae1-iwcQtmKZ<B^$Fr7Viyr4H
zDF>)V8s&kI2SSe`6veG5ZbuQ0!iZv96x*YSL}5lTEsE)sH;RE#jEQ0_7e0svuA&$j
z#o#E0MB#lXhDPx-C((P5VNv?XP?~nuF+7T`B^@IedkmF{k7AwC)TMc3I@SIXwNAtp
zYyKZk*8%24^?lhDgxwsPG*J;y0TG5wlBF!LxVr(VQbj;I2q+*`qzY`3$)rs(p-Bfp
zI?{{Mo6<!<Kzdb>UZfZQXD+|}f8YDgciw&XwfpY7DKqmXXFLmIvM@<XIjON(n2?3<
zxGzdM#$};yV(R!T+&+{te~xwU1b-e*6wPNttjpz-g-;Qj7E`Cv8?Ppk%*evbEG*+f
z98kZ{!mKPT%)%m3n=LqpD>XIkhb#<`yENx=zr5<4mxcLRSil`ULvb&2IqoTZN|adW
zMvlc&YpLLmSy&?E?e*5(X#ATcxJg}}g%u)P$;~BXRTfs$GUe1YS@@a0k<+<WvXuOk
zh22*ZN!E!xsg26g{#BeC=(=T+H)f%SFQsb{$CfN?&BDPf9FhjN3GU9qb|E_iIe=e;
z{F;TGSvZ<#{T;E38`<Hww%xub3wxz>AJ-)dzh$AwYL(u8fcyQCy18J&?^!5)O!+TM
zNjhkSm%~~3gAqHs<s(9lvsod>1plOM^XK{FN&3%w9VbL`G7G1&a5@WTxKfqXb6i=w
zx-`MTbXNG4uN+L|?Basp#VlOnAoE$L3J@=6;R<(U7IJv-PZq9<&WkKu6LL@RdKPX7
zxycA4<nU%kkJ}1k+HLNUEZofk@7m>Uy~LY~?f-JetyJ$bkY?dw7GG<ECs}yPm=m)-
z&f@R2^kzd{RH!o8@k}%?1gz|Hh6|CmEvz=mY1t&fV-35g2gN){^xzc_a(a-<gCq}<
zrRY@;^1Rg9tmgLc-h0(%OQ5^fZ>ZWlc<q!@NJ`;BUJvqlkl%v>9u)N8-;XkT&T%|$
zXW?re)M%J8`kI^i1!ksw)7e$ngO021SN>Ltc+mQ9Wp|C7uX|A3gR;`v8y>tV<UJ4G
z@}Pw9cRYC8gOVPU@}RT_z5cd7vkJ(4n3wulb2-1lLZ){;xblXR|0<M`irkWI7AfUC
zc;AEa9(>?|;(@+E`Dm~8JGAy_rGf|T?%OL87poH;Y9$X&Pgkj6_h8aii#R=SdC=d3
z0Uo4yP??$@Y^s;5iU(CaXyL&p9#r$7+-^11gX+>LpH->hK}`?pdQi`UG!JTd;P#-l
z2OoNn?g0;M$vm#|r!If3XLyk5!Kr7~WgTAV;RT)H=bd#tR!rtc#z)ei`#tOGOnna;
zc<`|YjXfA;t5oKY+R%eWoK(l$CAV95Jbr%9`r_BbgQlFtGi81O>u;ZC9yI5$r>g^B
zv(l1jYD;OewFhm4eCk0fA?MdQcv*o}dOo+z`<VxAMV|bnTI8<M-h&QYIFYdQ3lBPR
zB7+^BJ?P>=R}VgyY<CY|$87l?@4f8i0kKM5>n6+|BDcF8UwZJ_2(>2{(SzQ!*a-D2
z5Bi8Oafzd^2mRP!Bb7QuhPsH0>#JY2QU`kQwFhH880Wzt55Doh&vo=*u#9K4;N&-*
zLp&Jj!7#>u4@P(}(u3=tI;OwjU=i_K?!njommTH7wtXsvSsw6TM310X&?iWt=E2sI
zP7=;H;DIT<1U(3O5EdTsz@YsLRIk0n-sQ2Hvzj_PuOsTgk>Ayr2R-vwTJxLrX&d)o
zjOb61-x0i^Io@Mk)||q1X__*@gYTqtq6fSoVUi%pWRDeNCzrKanCiha50>0ir+dII
zW_a*(MQ8ixcH%5b=#xIQ_u&T*=6JB!iyyt1>%lw^oL;!RnD4;?4<2~%(1V2@EaC_~
zI7&_FcY_BTJ@}EON9;>HSn9zt50<kF57v3G!h@9_toC4y2dg|#tGJ&o&uHD*#f2kZ
zE45hhCn0Z*P|4R`bFcSU(T0Dx)>`bKXOeI7V6z9md2qmkEi|kL`=s}6g8cf*`xdqf
z-y!&m;ID!^1$PPV7Nkw~2-(a1u2{RHhUVDs!S>UZ>;9gtbI5~(+5ACS^)T(TKJgC^
zn6Bkj8_ahclhR8b{N=%)*_y|NobceJkW<<6(?ZU8a5h_VPRMx=E(p1pEiZ93^KTC>
z)BWg69HGen@u0~<N0kQ7N5#~uG}mit!?Uhy9<(o@zW7DGnO*k|gJD<o7B|$Rl-q)w
z(OnOI)s%Y-tqj+9l!MpY#QU7xH8<stJb3IuZZGn9@kH85@FLO67k1zogViqz-$?RY
z<S!USf6n~RgB)I@)Nzvcs+~-H#cO>QFy->{HC0&rx)n~1e%4o!SG_1dSy`+pNnRv-
zQNoM2McL*>J}>eMhZlLh;El@sL)AVYdBh<{0WV(jqL3E_y|~;?efgXh9}MU59fh;|
zDk7w)U@^hh1&e#}h7k7trjWP12oAJ{RMLx5B2m34E#zG<-t(fxK*u{?#9CUUj2BB5
zs~>n#!Hcq9l=I?!FTUNVmiNM+>}VBMS;|XM_lmnJdhyjFwUVGBm~)-l>>JfCoJBku
zmz_Gics9%t$)%=vQQ3<wUUc=MiWgPAXzWE38AdfPKJ+5pi&QVFi{$Fb^cr5&^dilR
zt(w~Mg<8uC-b1y(k&v03TI{G5Ri@TY$nYZ53pa<Fsn+wNz8AH<sN=;)UX+}mGS&6s
z+BNr=3l!K@>bQF4Y2Za8FFy97p>&jYt#!5Zr%bg%IHAIF%SuhXXeLE%y?EWFHuvJ>
zBu5)s$%{|CXeq*0ULIwPPlcx~R;f1ZPvyHq4qou(2Osr6<JujypKz+}yl5}2br9?*
zXxz-f-}Rm7W6K?#z39FmiR5!Hx_O~{5un729$pOdVz?Jyc=4qd-$=!tUi9*!Kj(Wh
zS8tl}kiCx=wQi{-UrDy~5<9bfz33-$@{1v5fEP`ls$(8F272+e7bHxBy!f?R3dvwj
zFrp6eVyGAYRB^sHIjtZn5l3*{>6X&(NH0ct!CM-#yx^ZI9e;NaM|<&IZHw^A-R!%n
z*9)zL%O|J_`swr6-EZcpd?9z`pcf%8rg$+`8Vu9lyfD3pyflb7N%Wo?<?yyx5sC3R
z?!`DS#?ye$?PI(se#|kJrdXixp^^zwivfHh#~^FnwU&#^J;{s7^oLCA{)*Py)gC?6
zX<khCVwM-Py_g}j-q>fK=|!9O6NYzpecV_5-fMk5t`Jav@M4Y^3q)tG7xTRM$zl0J
zrxNOXy2L^If7KGmDOu>nB5uz!_RUihPIa;FFIwWoQtoIU^82vNi{)M%^5U>GwZe<-
zLRNaQ%8S)rtnp%_NY)De<i*cI-ns5x=f!$21{6%#KyOdBdgrCUq0e%hJ#Fz#qPE$K
zE!-4dY@`2_w8q1e(1<+rjJU&#UqtO!FZOw{-;14I?DAr_7j@e?QmZB~pzRUP>|U>R
z(X&;4*KhQYsMW|pFAhlc-vz7Yv4qR2s{N~~e|T}ki-%r3qQ$&8=EW5{jF<NuTG8*k
zAjxqrdIyvfbSh4EU&1LbI=!%;=Ek|Io)J7Ncup`pOriXO7Z<se8aOX8+=;3G^5So=
zb<vhlk-vkSXB_XJwVpM&%I)mMJuj9$wd*%?U-#m+7k8xV8(!S>;uhCMZk=sj-SVQl
z9PknQ(L(Army=||r5uW1{nyLq4)B06_AS@escDp~Xykaz;LqsoLoOel(i^>a;l+Pm
zBur9yQ2cZ1=c_cs<`|x&=I|lGhgW>otPdSh5`EwY_Zx#9W>xj$M>#fSI^O@#@v0BG
zeSqlX@gXv}rp*VvgPP<+vJZ_4R=WJQTKBoq!t0>$#c%e!qWM`!;gAaWP|$~TA2NJ=
ze>w{J@PQ8%e7vg}MSOTqG}(1gAKqlwJ{0rebszZu)ni>L?!y~C>&)T2kE{sOes-P`
zqW`Yo+iWCDDJfV=klE5cyd&ItzAQ`O4RsyIsbzd{Uv`ugEGPKBV0j<Tv`~463`;9Y
zn@%5GJ}AN~`7o}H!|sFXgM;IDsLZ;GI!TBebBYgDeW)hNm3^q<10PW_=PAVwB=7?w
z)rSwIsJag|e5mQOoRcZd2W_9@=q_6=k(7H{jlv#F)7fAqM@4)3@Uc{^?L!?OJ`#Rm
zz4h2jUEvLUs3(My`abMiZ0#ndhCX~VT5UO6ZJb@&#)l?8G?i>KA3pJ+rSRtDxzrXu
ztl4Azn|-r3UqfIyKx-e8a;U9*;0=%mE2(qe{$I<VNoiXjT1`-Q&#`y#p`#B6eE8jm
zPCj(zw@n}B_|V0Nu0D8u@cHn$R2k^Q*FJRfp}UX2_pL7YKv_Q_UkHBbLr)>S1bYio
z?JFPp_;9s%uD;olA2hYU&w3th0PXX!%3Do(4Y9WKARh+%Fobi@);v<kHB|U0A4dBy
z%!lDVjG$jlQAcu_x@LUq1Mg_!-v^ZNW0aijWclEcT70hO?n8z5f-+ERA{p<)1RwnL
zc^?8k1bv8${Hj9@`4Hxg@S*WAg@1|j>Vx4!jLxhnQ9&LCLT(D@RSEJjK8*EQ@v!>H
zgmKc&I~o78^LLV+N&oku{6_mEA13=S#fPar%;2~B6$)>mS;ikD->B1k)_p$Heb!@l
zls}3%>NK$e=J(RVEFWh3P`9Fbp{Ju}_k_7V%oF(*ALje8z=xGStny)@2w7{14~w|y
zKK$qd|IDXkOqE3bb2a;!WtpYi6eClXaXZvim;10n$SFf*mZhtukqz`E5+8n&?9V>5
zwx{q}*W0Td>x8ct<d1#IH;T?C!OdL0+|K=V)%+b2w)(KmhwUQY>BBA|I|P66;a586
zS#@e3^-}qS-6GsC$T94po299Hxfg_-_(l0{wl(tKxR-}1S{L=84~J+{4IgMY?86^E
zJn-Qm-N1*VK3w+UiVw$p_>%#_hqFE`$xJxz!%1oXgy2lW`U1>!O0uVYNGtolRV$Jw
z;hYcWeYoJW9<Zg(Up`#);gS!}dnTj|a?Dt&oM@8pH)nL*&Ku_Em$xeZBkkOwlMA`#
z!*#CaY3nRImfrB;CbxM>*DW7z({)RwTaRztRnwkVyX(U}AO5A+T~qH%-Ew8r84l;8
zy9#eVd*s7ohFs0sYfq%~xeqUdJQaM#y)XaR|L22E$;hoCkA@u7f1oC4NYpU2wBr>G
zxkQpv!@mFQw&N-<SiCBd!70|Svm_148VYFEiWGmx_3><lk2l&hKto;)`84bK$NU=Z
zjZrI<a88<#!9RRfbarhyY~x*IuW2Zxp|FM`8s3v}7S*86R!R#mrr~uB#WlR4;Vlg%
zH0#pFn;Jga>U{U1^?2ijW$8H&DsO8jsiBl+T~}feFF*0VzUKK=ULtu%+Trxy)vS}y
zNXm$$tY*CtwVWXD;C)}S?(n=BbyUz$QA1k|?KCJFDrv~jkg37WQE8~mMl|$HNN{Ly
zNjpx#)^(kQuURXVqM>ME*UV#%sv4?E(T5sRHB{G-CRyt6sgN4NYYL7nU{$Q8Sr>6q
zdi~Ff(%H^3i@P<{7PY2ag-7-}!W+>7wAccru7-LV>az<)ZJ?o{X5F2|?~wfE%TnH}
zyrQo9u~fMoNNKF03D>BAi|K*K)=WclDQcnNQ(2==H2KKTps#V{EUWU#lvWyAYiJ{-
zn+?Zj8u%T6f7Xq9rvA{*(OyFb4JJF)&{0Dt4PFgC4V^V~(a=jnZw*~Fe6FE~hA%X9
zlkPaF?iyCMQHQTiXd{mde91!+b|~ESZ;o(eZnO84EH5uo^D7O5xvU!cNZr1I{j%HX
zFJu50QOMWX@<Bqr5nP{@FjT`Z4Wl%S)-ar|lBO~se5+xEhS@i4ygjnfSd~vJkJNAg
z4hGL9kJKy;_cu5^8hFDbZy4h%OS+DCYa0AC`;c4_4QKy#=+b^rLqJ2BevVEVj@P%?
zLmI*&9~n=WyGXS!ux4R!MjB$8bs^xLx0CZmm0e$|V>FD_FkO`S<z$?Oslvx|J7g&n
zG<-*IujiboVUmW)B4l>X7{?Uh|K3-VYCEaP_NQsq6BZTkSkY#NhMCgN_w*=Eko&7}
z^?1zsWFPgDN<LS^JPk9(V&+)P*RVjtdIK8_EYz?_LrREmq{U(lKWaFw<BX0a8kTBU
z;>S`ymT6e7p@ttd{aC?8)bLEha}BFBtk!Ts!$}Qm*t>?^8un=TNyE>YbrQ~24cdCg
zI{J@>&FoRK8w4res3HBjn}nKMM4y~$%x=@LUBeD8-+lF04LddbqFKkQE-3BfAMEXO
zI(WL~F3mb)lc{sD>U+6!dpHhg_?=TL?c7J7tdhE4!*4=5Tz4~jP{Sb&M>Vj8i~Ssj
zH4u+z_(M|O`YN;J#ABlKr{HlxR@pbnc8bQ)@GqT&9zy#hIR4V`H@!l`IqtG5j`JEW
zum#~|_dE9IuYO6x|KqSW>Sea3;hKi)8vfyaxoyA7DDj?Jtcdfjq4Yj(YmrC2A@jPe
z;SQsdhFdbV;wetflz2CL*7vyMidCmD+Q%}&11?G_2ai(WmHmer9%&$dOcePO$+8Oy
znRwRd3l0BiDDB5Pe&p~Y!H+_I6!!BpTD;=7URsgYkDSb2aOCzQj~}^&zbZ&mJJu;l
zekA*?D<JTL<6phmVe?ya;S?M_tji*l<ntrH9|io@>ARmtGG6nepm1i(crvQx28BiZ
zDC)<mvFclF$Iq~-(AsbK@wy+y{b<$4!2@-F8*1yq1JLM=3Dy-B_D=m0QtNF$N(!N*
zl#tgqDewC6o*#-ImHa5frZy=|ANWz$k8*yi)00aTp3wWgALad)Uk$zPrdcZZQIV3{
zc6uFMk>j`fq58q@suKMueM#YxRrbT_hs%%FXH<@gEvNV`<8y3P{MMSrUQ_SxbI=sk
zI32&`inK{}KZvJGt7(4J@?(%6-}v#NAL)L4;zvsvWQHG&{P@_9Oh4QrsqII7zva?(
zB>RzIT|xF+&yVLftC2MDgNxfxkRu^)?8o?r7HJ|g;yO0<qnRJg{iu-a;2b%-7P5R?
z!J2&>pVHKReBsBJoR=R1K3CiN(T=H&+Qx7B_Gf}LetSPUaGHK}^`oP-*4Yo9fX&oN
z$hhlnc0vBR-`Z>4XkkCNcH}fH)%a?I9)7Ipq~`uJjpOg>M;|}>`oSUf@}svO@$wm8
z(LR+`|C`mR6P@blC(AUzk2c9_f5A<AleusM{rFmnQrBlPJJ^pQewb{*kD-1H^JAnR
zqx@hC!%6O|?3yi%5XrZ+^AH<NG@1_YN5GGuA0Dn3*Sd$Q`Qek<9l2uTQN2%^sNBeY
zKXfq~6<Bdm>$H$e#1IVo5#fR!xA8z}?va<1jrtMugX_+hXwW6b_%YUx$$m`nW1Q6b
z&X0*)ELpn=*^9*<*~p_$a!nFBO+j-_^<$bJbN!g-$8<kt`0;}uRGaC?_kPUsW45>-
zHv*?gpP}P1dT=dhSgOsDv2p3i=hFkntBdJcVrRC$P{<;|<;9&W{ZVw5Tz4<?V>vxp
zM|B-5{8;HnZXJ1atm2aSaf-9!MEqFm#{oZn_v0r&e)eO#A3OY5=f`?KHu<qxTHD}9
z+cJ)gvMCt8XeEZYEn?EGer)rDcBY?j`*7Xq*qp*Ie*EgkZa?<0-#^oKa?CB%U4C4w
znUj%$e!@Mt*N=UE?Dyk0MwnhH+ybi#SEpms;9MyNURFFP`}e5eAwLfL@rMMiBZBOR
zL5#tl);s3MpMD&dNOi)GlYaCo?PSPe(Uxjy-1Xc|XZ$$p$1Oi@OM~ZVqOTlR{W$N(
z1&+;+OLTZ~)W5_(FH3Bsi~h|RRn<wtvC%935gqzujwb3gX@u=u7ji@JrWl99JM;wM
z|M_vxkAJ!M#W(Kz@jx`6`teZ66G2vaB;>Imt--XdkK>tS>AjpX$M8a|dj5(nhmHgt
zi8@}<kxR#`IzBmWW8$Z6PTh)%t<I-$*sR!4`c2Z2tfRD!cXZfvK(`j+EggAv<kL|^
zM^W91iurXE)bW~b1*if#_!-Ae3+X7VgXdt=&)Ee{O2UnnU{mRe#dN%`qquHG0M6n~
z9dGDxHc^>amp;QKW?v<Ayse`o`@L;1rGp`zjzN62Wv+L1D>%Q;VGDUrM;RSubt~p@
zU*!2qDW_Xs9vId>&{08$s>7k9q7H>!Z&K_W?LJ2(-SSoIqj?{XO13c)@|y{Jcj~CD
zqlylfjuhRBDiqQ;_z6-~M>XC03c-<czHFZ}V#OLdYU(g_M0KR;sHLMbhppp79qBqB
zlSFGB89Fj`G|<sdhg(N&9d&j5G)wuYrK^sPk96Kss*)35l3^>AdOG@Ebk^6gaH2xe
zNXN%ICY4HUp`)>mCc>NP81a{KcaGbC!P!(tp9{|MpF5iC2u5AIue+)IiH??{`KgZm
zJ8YCNv8as>|1ZwAI@;;j(#-W4EjHSA`Cn!3MQ3{*9duMZltx})x{aixj!q&WpV7kA
zRmbN#hUyrm<K4fV-E{Qg((CB1qlb<!bbKlDo;tkCZB#frIFYI0eOC^{_7w-IW2@mB
z%-QMaM~8gj`dUYSAp>*_)KTh%i^9LIyGvflAldbSdl0=v6jr+2Of_G)hDal+HEeIz
zatx;t*q08Uj&F7FeYl4nxkhn#tCW#~W2f0h>&ViP-*9dGJdp|>I)-7XX|w~)r6Z(6
z*D<fKlPSPPCfP_{IqW#r{gp6R?Y@f>iRe5K-kQkQ3$1y@beN2jI#%n5>lmYBE?dws
zR>wFUQ*=y~B_6NiI~@~sOrSgMPV4JYHVn$cVb_wuPtrj?S&(L#renH}SvqFxn4x2)
zj_>JIuRFPRTvIM0myg-}&umowLB|}i1FN&OmyOKVu|UT%I&e7$H5by(mz+zakwt=w
z1%K4hOm$O%b6m>3mfJ?MJbRT_2w5rEc5m7m9cy*$)v=E=(($v7Z92B=Sf^vXj!mM*
z#oZw5zELp2uu(#!&upfTWw*SQ`)+R<g$Y;H9XfXD*iDz%n(~W|Uxn-xq$Kw_We@#)
zNMcF@$N3?NOeAAeb-#{7Iu7gjO~(Ol(gu#-bsQ9O<DrZCFO~n$aYP5-$b3S_QF`WW
z=bwVd1ex8exQ}P^+kMkdiZb<22^spi`>c+0Ivxk`B!KfeF3{}*=oY|59hVrj0(dik
zzjXYq<GGF(jCeY(&~tR$*YS^zt2%Deub#U~{G(o@14mppbzG+@p1ICHb=}ZGWYH~F
zf9hgs<GVI``yECn9pk^uWV)y0zw7Qf(=#4OJDmGt9S`ZQ4IE65gsjblC)p!^%9xzZ
z-@4)cPe+ab3I_0600{vk25|p^GdX})0>~M_s{yMW4klLsbCPTRaa`qi@Yt0*fII;t
z1rU4Hc6^%cw#&^_<A&Q7uxy9`@(Rfpz)MTgjQIm7Ai|}&Dp7~yEEGV|0Ez|Br?Fa?
zc)?jD0LCa1TKM&V75ZqI;sI-cm^kdW0w@tc{Qw#S@OA(t1E>)|%>YUTP&$B00oVhU
zOTQDq$tSKd!rv8qFMuXT)0%a6mkr?FBNtOSA@2uJUdRW66|ze!3Q+{_R!UL>a0D>3
zTuRjd*2dk=08#>|%$6lf$;q9zE6-hj-?gxc2pe=ur+&2nQUj<SK)yRpW|_8>OGyjh
z%U3F81dtg(Et%%eJDeW|kRGrc;M83Eg$J%5qAqs;bprT^(=6<$9l#$>H%a~;>2(9B
z7XS&9=16{t4FhNtK-&P?1@LhIjRW{JfL5G!08ImE9zcr#M&EZmwX4l&z~+uMKid{v
zw$~bMJ2tD*C(>_AR(a@Z(cHD-q3g0y`Fz;bTBbbriK|Tjp9$|#J&jY~dQE-oY9By{
z06NM@if&EmEToelM>VWrYL@_rT>}_5Qzhxn)em4<0LugTf)?Of2cQSgGk{*y3}ASG
zSK07Y0AB|%i2gw5nN?{(0FSRa`UcRC7Wh1o5~lvtKb}T1Fu*tcrEmByiP&mi`Zr?O
z!2vj*yRI)xq>+aNFjRy)4yH3ZB7koLnDCdPY*j{zobipb9!29wHY)&c06yU!!QHzR
z*4=o)sY$lMErsm_xGw^j7QplXLIH%?W&qy>5DCBtU`zmG1Bh~W1YpuvZz(TF$U!Qn
zZE=yXk#;xS+)(2Jd|JmgK7cDXlbJ0y+Qx}Y3}6x+?18J!9cQrzuE}DGDRh`Yd6=y>
z-91$#`KD*g;JO5`D1gNQe9zv`r_BvuUH~&*$(R+u{^qXP!hhiY<v1s0jJn~b4!;k~
z4}hQD3j@}7g9Y4T3lmBBQBEQ4Lm&82JadVdYpLLu&s<hf04oFdGl1g(tO{Ut0KWwA
ztMs)dfS&_cCoyC#t8;UG;$l1@t`A^C09ymt7QjXh__BSA;3mP%g2x<A%K4c^+#W#M
zWZMn~(t~L=glxa>BHtOnt^oG2yMXoe<1<y=%_Vs5+7m#h<7s;X(8{HZ-I_xDEdYLu
zGJMghBnJZcT_ofO12`o7aJJ-+0FGqyqe6}eM!vV7U@!^bS^(DrI2FL@04_14a}Ty~
zong#p1bg5*8^Af*WKf<lcbrT;P9*Yc(ghBltFzw0)Udka?*L{$bIrKnz8t`RlWa^^
z0{AC@t2E18d%mHGM5e;Goi_rw8Ni(Y?$Vd;I1le|X8z^86~Ju<lc9-B2WHyuNv-?D
zi_Yb}9shFQ<+0j%5WquvQ~(R!N@t?wo0Ll-c^beodSejrAf5;CB7lZLGz#Ls0CEIT
zF$g7ygdh@wC?3QcLA(+~&LD~eaU{PpR}ilTkw1t6LF5kNuXe6{L3EgsmM4g$AnrbL
zZtdVo7D8?d0zptho;Qf1oh_n2b{?B;`>TViU=W3ZxO~j{S`e%Er`_F@Mq%L~qE*v&
z^>tLaWiJ{;uX0J7I=YGlL3}+3+n-L7H-mU9h_XSX6?2vd;_V<xwRgP}M2ikC*4j8$
zDM?9?hrudLrG;D?qr4l$s%y%7f+S^xT)C>03*!AC%Coh{Ha1=%h!2AJp`)u(?eymz
zT$H3&b5;t%9z<pk?jY14-*1BILDb;zI=GxcxPnLtqT^wOy_Y)XtQ<s@Agap5-&~)z
z;6d`HvuPYjwIEVuF#X0@1FOj%*;=BjRuD_uTb3DnK;hs&6k)m`OEbhoB(;O66GVd`
zc08{95qrO;)DyFORmD*^h$~BMB=tq2$(YZ^73Y)WkAr9&ME@WL1kogjrd%uzHHc<G
zG#3keM!N;EyS=Mb5FA)azDl12k(}mg8N{bThTD^vr4d>O(Q~ZQM$|sKs&MJs2GLH0
zoOpW~C(XrvI|b1_h#o<74x&pCqgo|?^4Qrm2qM$xLb?e~zN&l?#Fs&E?tR!4O&Y|w
zW6rPWnH^l^bJ-HFDZR<(*g4-atrJ<)SCqHKm44Y|U=UvikrjkT9B)t%G~@6fk7~i-
zAcnBbj;^6WJU*each41D>SO0Hmfo_Hj1Xn&e=B4pM=PX%d)H|3SpANTbN2=j5&!oE
zp#|X&g2IrXF34;^mMkb)u4Xt}{-HgItr^l<G>90<W2aWz+9_i=g&?j4ah<acVmy5&
zh;2bk2;#dSmIbjqh>1Z=3Sw>$^MaTh#FQYu4`NmjQ?qx?Od-<*rw1`Z2shM-M^5gk
zch{-2>5#YVKLj!Kn)2P+v}hh1{cR4rYwtR{%+5_cKZr#^EDmA;F=r*N@<JgUm!{G3
zKZ<)Sp>2oQ=;TX-IC<2`G+>X7Zn+|epMv-~h?P=>)mI5wEx0C#wLygA3gtV;DC@+w
z>~XzVWB*9o2C?c!!A*jj1-A$?6i|6PeLjeNLG0)Dxu$T}{}RNnLF^2ogguFlu}kC)
zJGyoUu_uVVG*<`L53Lf36cT?6;y@5*f;bz*??D_4;#d%W260F<|6pH24hM0udMfpg
z2J!k>g|0$}q1$k0aTs4ravTrh1gF!%byBcTt3>isL7bK>>oR*Ti1Tb`j{Qmy7o^!s
zjFUmsKIXhA?US5)T={PfW|{pmCw0uZvQbKjF$%N)1aXxsd&jc#r(=}lhsigBxEVy=
z5b}j^D~Q{S(m~`1;SQIBE*->^Anpb6ZxD}UW8N3TKBN(5+a3hb@|v=Ia+(!>bJ>VJ
z$|rGlPi1M?{&O0klj~U!T<#6&Y179lFBthB+i2m05H{a%zZydBkQLPvLwF^GoFU{2
zS>AiMlZ#u1PDLN~jaBl5tk8iFl0rxhSuQl<j;&Znmn{Th%fIZat}0y0{2>$wp<D>>
zhfpwt*Fq>6La7i6g;1E9A-o;}$H0+rY(+vK77bxcF(*m!5V&RD5+r#egg3J}Tc)H$
z2ybUgIN;JD>(lDJkQEBv34tFd?}ot8#3FKjV3i4>YzXygr&EoyC?CQHAvi+T!c_>N
zV#xZ$QA1Fq7Ax9?RARsD)416y&Q$0jGzB^B;0(bPvUXX$X?fU1l@O|OFcJ78s1`zM
z2)DUpAyf~cMhNpmSP(+Z5YlM35c-EuD})b2Xc|JZ5H8=cr-$GUp>_xvA!L<zWYRu0
z(yB~M<WYFc)(N35N6w3M6B9pTI}e<FdnMHmp+N|ZLue90!w?#U@G%G9KZS{E#8Ewy
zn5ev}UrNgNY09gWYtL7khtMK~E+KRc;gb+rhR`X5I(wB*LueI3+Ys7?(3&Gzo7N_T
z&p5V-&1~lyGsX7*Ewjz`A#@0#qjbl<*u~3^II7Me^tf*gkCNfPrhgv7mm%~F;rkOx
zw-CCsG=x!8Y;R6X{33(_?OYdEWe{tebM~U4&N;sdp|=q7JPGKN&HIKhda^>{fDi_T
zFg1i}A$%ReAhyP$5WWfF-oMV_A&dxNa0o*}7#hN`5Qg7MPTs8&$9+)!Vc#SYs!g;x
zzYSqz2#5Nmu#}dW&@Uw`1WyPF=bc6f-Vmr02;pg47m1H6D-v?Q5Iuyqp4yr1@R=h>
zYkcMig%B1J5o9Ta(GX(NrYSfngt(9~g6wN-2;;K(_z)%t|1MiHQ3xG?nv;c3p<~~&
zGdn$m86li%>-r&tWoK+8GezNh!C4{94xz%ZJTFte`_4JscZ-#|H19(vmFG#_{ZJQ%
zuqcE*A?)QY4&lcTehT4dala)p{guL(G92A^E(>AF1LyJ(R*31|s_mG2&Pf+t6~dg;
zuGJx|31KbAb4;b{zVzO8A*>H!dk8y1*u6;Ez+Fa#1a+feyjKz{ZVq8f2=vlA!}4rp
z3;#N4_H9Cjy^#@rWUJiH^-Bo9hCnyo8G_z3Y1SHre3wXe3vzh-Lf9X|i4acGGheOz
zTL_0k_#=b^(ibJai~Jx5FVmrMSnG(C9_RGK>c(%>qmn%)_$N2T11CpYdAsw-zs^&P
zgfFUH4B=7;r$acy_#j?)j<Y-GoZmBvu617cukBnHgm89$h46O>H$u3{-4w!=5Uz%B
zErfq$fjHTG{Zlv$4(7U8_20<~_Y?=SqF2%_8Ahdt&g(;MZ$5BxL)~SM^t3P{Vf-7y
zeTJGas)z9)gopIWFiM2+D1^tHU>Nzsc)~?w3=iYgFrJ0*JcJx!B!qD(l56i3g~wFB
z2;o0Qzh(AG%^bFhYGN3(E?BQQPN}ZGBAnTrVV=3FkmL>{PZ)W_)@ziL!blEdcW#F*
z3?78rb*WPBOSQS-rUYT|aU`p#qIDQ}fiMb&Q8bKVVelnW{-w%mVRTq#FC<u4u!!Kn
z^)_2R_4P2C4RTCRRf~sFC!tcIn$9=EC~{YMGmM6J752sZsooBwWEe^qmBOgi&rym!
zhEX<*(vp2gkn(rKcrTl?sd8bwA4d5wJ_v);=Ny~A=HOi%GY8xF0;~#Q5Gx9j@Ifbg
z7-|?*!r)<^j<97VR~YP_#2E%H#uGMDL_%TZFxH&TLsFGyIbkceRH+t5(k?q+CtV|q
znqhn%Mz=81IG!+?htVR855q|39K(Fig*D}jF#dk%?6=FF8HPKI+A?cS{83Kpk*jVG
zllPpk)uj=_xbua2<u|on7&K=6Fd7IUPcKxdQ5YYGaet$|aTu{HN>kxY1o;N5W+H5`
zRAJF4VYCdRT^Q}d_%w`GVYKBO$J$zl(IyPOt>CjT2Ij0pn^PIDIUZ#?>J3qM#BJSm
zwF5^!!g7hOVf^#l-Z6|$LdZLl&vAF*91S<KoK6#;(mjkGVGIvrL>OO$@nsnO!st(5
zx{}^g%==Xsypg7tU~kslq;mQCg!#CNy{{l8Iab>Ta7c8&Fowtqel7DF6b7xqQ<c7v
z?81L+oPM1r>d>%tP%{n7`3|FnX{e>jw_%J7BM?R~j8S2X4nw2$WD&E%;48nq^mh7H
zEhpEPZa|4I41Nrd=v<T~_JY;b<<IR`mndAUZaeMoRa8S^Y)ebNz0|&EmuiF&<$es~
zAx#~I$)Yf}hY=5BOc?XSSP;h8Fvf*3mD_=qKctKgV<O#2_=GUN6H>KY28*68QznNo
zMI@0kPG&FdS1W(6P7h;781uMZ)0E49DKk0KF#ejNto+;Y*~a8q!e<Lo_(K?TgwGXJ
zmnknbhm=lQ7{;P7ehTB~Fascd3}aas%foyhbn>2E%91daX7g_0lo~s2y?;qr!NDI(
zTN?)X$}m<5c{o*FEo6=0xz>&@<&wsa%UBo2`Y<+f1?ji@lnsIlH#*6$A5aF=P2C*E
z=8}%BVQdM5wJ3S#nSIrSjITGO?Fi!+4w#!Fj9<gp8OHfA8b5LF;{FO_e;B`oaq)(G
zPZ&23rR}3Xa9>Y!Q$h?CbhBB?4}|fjD3Jdi#=&fUD2&6x|Hzgc3FBxsKPIGdddhJj
zC$i-y!#E}UbhhM-kh2`TkjlxG*bx`y0>{QME3>OzP3^nDF=)4PnT|@eFm7?PgmE>D
z>tU=uth73BpLo)~Y>0AA^gFdwDZCLzxn9X6x4AkWIPWovo^jp@<8Bz<jmeZS)k(Mg
z%SH|;_rqv<#@XqLWw%FRJm$`dAYTMe!gv}+t_WU@VAQ|PXJPyoMh@Z6xlePrUI>mT
z=VWO@1g}U@qM&Pe8ihH9lQ8@3VkLJ3NfC_PpOz<rDpf5>jY96^2tNMT$z+QlM<F*N
zz$k?ze*^_0h$gy5M^G?=*CJ>eLAwYFMNl|`lnCFMfg%wUji5{fFY>vViqEQac2HWe
z2wsn%cm!``%S%V_W(03VP(mc71m6}cnXQwsEr~7Ud6@K0w&dLi-pl5DUU!xiUM_<7
zBPcK2o?ZHZkP3noBT%yCm4qBE?NGBNjtHE>UD=W+TdjVpL{ODq{v-G*C2{OJb?d;i
z)Cd|yaOFQo^$2Q2P*e0XvumYAP)qoSg6Y}vj0irNmc|C%5!4o8oe1h>mwqIquAs9+
zE~?cR-axQng!k~IQ222KjU#9xLS|b=&@`Jji=cTnZz1Fp!P&)BYJMubRRpbtv=OBI
zvj~d4ZYi{nphE;bBj^=D#|UVdE)nZQ3zAL|bQTHu_|gt4ca89FD{E!DWw+B^NDq!v
z$d}pjd=Ha)({vH^ji6tI??ZIF98aH!^}?68u4eSl)*KSSfNVZc$k&2{1iy)3aCYg-
zbr~wzVS>XW7$M}_Y@LxpMnzz*P&iKdYE}duaayk+CB6v4mlYB{f<OdQ3`{i;j37h{
z80cgm96^M8ErO>J7_1e+<_NY#5M#46P6V?eh(|Ccg6|@j7y(~sJ2ryxT<GEIIGSRu
zb>IF#d&-1}b<Z|m+WYrHWl{u_BbXM!boLm*R8cN^ERj|C0@+1tT_iKOo64&*Be>ly
zf!X{$9SJwx6?-~nNAN=gizE0kf;kb)jbI*48bQmg)+6Cvk0st7mhhrio&^ysj9^g&
z?5@y62M;Y_BTOZ4x|c+-G=g;ztdC$>1j{4%SrT7LyCQ;Lmnc+YQ!8b_t0Gt}gpxHR
z!hgz^Y%i4%%b!AhHnJgtjS*~$pvw}gqwf2a0;Y?tHCXG~8o{;*zn9{#2)0MCBZ9*b
z{1L$~>@I?X5gei?^tbJdAUTluyNqF11iLxNS@u1Gdj<CiQn+8pZxI~GmaN^VvM&yj
zi54JU>TNw!bA(PC!LbPR*~!|mM4P;G=T9zQ{*>dip*`h9_FPUza4Le+l06f_c_C*7
z&t>Z*#S$(EznCp4aUl8c2!BfB7FUV^A%cG*xE8_n2(Cu3rc?sgMZKCtgN!S$&h4Fe
zBZ8Z<C>+3<$!duLDi?_SP6YQNyn6wB@$Ow2-f!J9`5MRj5j=?Cp?Js##T{&fO+Cu)
z{V}Z?N~m$u{Vam#5mYi@H}E2Y{}^Kp6gQB=K!Sl}12zMR23|3c+dv)zISu48@Tvi}
zX<2D>$}bJm8kMik_Ib`pk^#Or@^bHl9o-Z5TulG3Z3+zJHBi7nK?C`uG{1o{y%Txo
zGc`FRzK8nOUx}|7mcthkT#%&}Ht=pQtNkK|<@`kr6ca+89!Pw{z?%lj8YpMrEdwPC
zls52=fwv8mG{8<v88Ftmes@<M=1k9erce_6$@Q)jy=S0|0Tx|pRGCwlUA{VZmfkky
zeFNoXcojJ{1GI1j1M3zi(azLimP1txEIXgTVbft$gQwyn(}3H6(}2rBs)6bTQVdi!
zP{lx115=JAau%$}TGb35uA(xH&6_~?rf=6UP}4xVfeZs_GP_y^KBTQoYZvqI@TN0V
zo@iH2O{uM>7}XNr{mIqqNOElhbqq8x(9pm~2I?B9mu(rg%!)K)eUb1@;_155$iT-2
z+8StQps~m~>(2}{G0@aNv+TN`2x)Ghg^&TA|M&DkOUZsJ*h;Xqfi^<87QN3Uur;n=
zd#>q2dj|vDDf9$#mezab>};S5BcXwafvyHVH;`q3he&iY(A~fw1K$|<`9Y4pcC`nW
z-oTd}RhFt8RtFmBN!wm_v}mFBGSHg?YoRiIC8UpmzC!x3eZQlBcIg0i;jT=zuMMyf
zrcb9<8qB%Rv5zqDt$`s14jgg}H870rzoYW&I*W#j0w4bzNke_4jyCv3*WRg{I*MVu
zo4V(;qv=zX?<e&b@EY)Ojs`*oT2EE|26O|3G95t!(P}AkPpUngj(}kuDNNF)x61c_
zHOQxaSJi1y!N6Dp<LG|dl@8~Wm;sZXR-k&^!0k<rF~VE8Q}>T_FgxDB1Ot-|u!W+<
zU5SNLzB6#HuxlbMc14*a{CPrUO8U)mP-mKf=>}#S_`$%4?<&tQ@VyZ7nFfxy93)J$
z3@}SF$G}`p)4);#^9;=An%=aY3s}H*cq$a#vYuLKt9_w?MV#PP`(i<oYa94_m-J~p
z)MW;iiyMr&>0V)ArGc++y4NvKG<B?^oJ+YtAzv+$H3s~}RAzrNz^9de7QD2`dUBby
z_+0r$8qM;26g08fz!t`$DE^D`jxTKE=87UEitPq=7`S8bra}C|t!m(ufzt+d8rUTx
zIc{J#cSnEquz^1e>@l#HHa}<IC&GgU_8a((4j|dz1*u%(oSix(heY{h>3`#`Lqt2}
zu5`q}QMy6yO2-6A{uI)vkUIFB{e*#&978~1%KN^0#=uzvmkj)6fCrGC<JSJe&a+9c
zUsujEOr5h|FmO=_`NALUxym~JHgMg*<yH3IuQ)CnxWdqM#qp0I$yEc_gdeS#!t4zO
zmY-b>XWMUb`_H!D61*)~GLq+>fqxCW5yhKP+&Az*Y=S6e=5jtX@SG+!@W{YpdSFON
zc;E5FuwF&+RFLGEkWXi;|1tPSkvob!Q6!F06Qal&MK1EFwI7FHOL--VA}v&&Z#iP5
z()Ch~SEI<v<z!;Eg6?SiqmmRwljZhmd^3BLH&Qxmf`|ML-yKKZDDp*-KZ*j<NU<n7
zu5lNP;x)+@A_`&qg@sgUoKZAe!rotxqT8+X;)1NmF>vH>Me$A)??$nEn_5EfZNZXJ
zloC=pih+;PnW*qy6lJ2Q7=;o=*(j>*aPV!R<)bLaDR)zueP4v*^~4W2?7eCQL0{)Y
z@?7?m^D`ZlMAIIH8ihlYol)$p?Cjn-k<~x%oXB=6M^Pn;NEAjCRjCt2+bG&aks3wy
zC~8MhCyFE0)EZHwMZtGR){J6aQO5_G_1qKRNmMIpy_x7k!SpCHgk%c31zE}i89s`l
zE@zRcwv2)&1JsM6Q4}8wuP@j@u%TeFr%K}}_=d_BQS4ZxHi`0Ccr=URL0Lz0k#keC
zcV>Tj+wn;h&hyGIKRJjWK2|@Cg4imG)<W6{ekM40lFFj?QFMr+Uljehpiy*+;_WNy
z7g2PMg0F$#n=!jY(J+6dn!l-Cxpt!zrq5rJD7p*jAz0|TgGFD;q<V6uv{h%dcNE8e
zbM%SgD<R|*68lOi$pEfz6!l(lgroR6ia}9~iehvWmscy_L@`XrV8J1Rln><u>m`yf
z4Hw}E!Ed7&NwaKnQhxu5k`;wV%%#(99;@CcG$G&QP<`3NFDtk{kAn&{Y#_?pXe|qe
z1V`3#k@L`oc!nB{A{NCqhO#KkDB@8pjABs~W1<)v1zY$b3R+-X6cY=o6QdX}SxP2E
z@m)5jp(b&?qL>l|jX#4MJc_BprwL9MWD(=-_t|{5kXeHCH<nV3&M+s6xl!~erp}9k
zlVX}5#e!^}yMnryvtt~-W?vV@k|;LxQ&&W>GK!_bnOzpe@@&qd?0G=eDz3|DWesQH
zP*+E-H+0OtVP7le`YDQ^g}k&dEw(<2M;Fx%;!E_vjZtihf`n<ajBra7M>pEHilb7v
zBZ^<5xWs0;G;gTCMzJ@FeRPa!&Ygn0qWFEVx;u(JlE_)KKZ@U?I32~AC=O5|ia)6w
z#la{JMezqWBX`*sHGi#>^RN(}s=@40;m7FqlH~)H6!HP^6H)Nd_)~P1;np+qCnZar
zKKC7bOn&@*`>Q<sjS;4jdQJ>}K6@1|L~&90z|{(u;O{7A?NJ_c?;o&Vj^aub|3q;$
zid#|Kj^Y|uyqtPHiW`g@r*l5+p;lk6+!RjvsRoX`laxDA+-0<<aiX{vMe-+(d36*2
z<(l4fztkal7zLFdv6s4u%u<K#ur+r2BnpOwr%^nUF_1rx;`x&lk{mH4#Lzp2uVU6W
z@WdG2jp4l*UXg6h7;?q%Y7Dt!C>X<QG2~%UQwI}b;K^x8l1&!0#Vmh*S(;ZQ`C`Z~
zq<|oc>J4)hilK1KI&Y+83`Jrn8p9hgyct8W7*^IzEY2Qz1WgP)gN3QhX$x1^O(eb*
z!`o6yVTl+RwJ4-AYw@sxQZbZ{A$&x6CkAHw-AZBfC=)~37&2pU$IzsX^WiC_Tnz8W
zP(FqaVqms<3>9Li7(?Y4CWX=zK@vv{m4w@~C29=A``FlsGh5<{Aw@Wa=#q=Isz|nK
z4AruAQiZUzMhrEj$FvyIg|PQpF?=Ze&M+6VOc~jd+A-9Lp`)zAM={imSzkZe#85AW
z`Y{;mTrFZ~z`E;POwD6xD7;Y&9}8*B`Nq&xkl!e%Lu@8RFSGon(Q`*SNB&6+Eo10j
zHRDr3l2$RS*^<#ZhU6_7%zhR_+ZgzU6b|5kLv0sB`xr==ItWSWlB-h;ont8Hc6N!O
zM+~!O+sV7e@VN-P33eBJ(j}2aU&Qcb3_V4Y%Dsf-jO1ZrwoeRwIR?%>hJG>hk6~;K
z<6;=VDK|?Q9>a(j2F9>(yu$3)F${{~n-~U5Dc|xrREmbg;Haq<U#qMduMUe@?~-HD
zw=s;2!5@Pj!zeo8wsbE^Yjw2nEI|*uTddx?UyY@{7_N_3wHWvwy7N7fd15xR0lJyU
zgMzFcih-ppig0N}7>&V<Vd;^~n6%G|JXRtuk}-m;#nSOHOo(A|3_r&39k)*mKg2MH
zJ|lyl7Q^%yCdUx3QJHB9P0>@GDrmhNcCk8xc9YSP&y3-F;e06x-y6%p&!)i}S#z8#
z^WuwZ7sW77IEC|LSdh&Z3SlE3Z+FmQBum)TTy=HKdPnNg7?yEQjaQe)utFp&V;K5_
zvWj?Hr2=1ioAH^0uf#3bOpc$5;T#PT!_P4u1B>-BY>0ucUq2GV#uzrm@EhGGhRrc-
ziD739yJBdz#lAI$?LxK*Qc~wo25|>>x=4P_mT$Z1-W|i981}`mUxWkO+4g3a&Y7;V
z*2^sMcaA)U!`Y?OWI7bX|LgxjS4?(Ncr=D%^b;BC$rw(>a6E?5=hf(;loLX}-(o*4
z<gDnN$re&){I@QuU5Mdg3=g==xWs4FOH>=9-iYC^82*k~Zx_8B!&N%=rj)iLl`Ap)
zBMRg#E;y)pjh@53Hc}yHb>ht!ZqfH*xFhnrG2Dy6na@QXw)Srf_oW5CtMsLWU&0^7
z@R-JVl>TXA+LIWbQo+P4CYH=qpT+PWmvWs-{+xB2ro3SIZJNSt4)cHV1R<51ru;Np
z$!Q|Di99B9nP8UbRg>rRrhipaO)`;eBCm;jCicu#Z6-QEg{YD6Fa+ul^P70JzK!J6
zO*iGQnJ8r9<FRNw7KKd|F|j3%t#K4JQH+{#<c{NY6U9x;H?hFP8z$Z~(TG({yk(+<
z38x8{iMLIZG*QXKy>R7HCQ6$qXX1Sm?@*^u#`E7(%9wc9#Cs;l_n&kXZ{>P?(_L1w
z=l8i@R81{!;`E%f3MML=_`n2(OnQ@yE^S;22YJXfX<jmsLc57=9n(}3{%WaA4ijZ_
zI*Z(Lr<ka0!pN_FWTJ|RswQfg_|QZ(6R9R@nn*M8<rVv^j%n4Ug&KlZQ@7j{7Tj-d
zc*}j{j3eDdhKbrHR-8@AG~qTe@|L^car+ft<r6hhzmKMOyXCH9V)8BbKRGLX@F=sc
zbn46HsAr<Si3Xf<0kxqBl^-0Fhr5_<Y@&&YQ6@&4XlkOFiS8zPm}qXIg^6}1+Vcna
zar-AG+6ZZB;!_hF|FmD~l-6K>Mk^DoO`eESd2OPb+0RV0HF?fYWmZ{z%T0L)6CF)-
zG11k;fZ|CUWG54yP3)?kN;Qsi#Qu!WP25U!cQbiZLggC`QYm>`t4#g{&0?ZIE1KwO
zqL+!jCi<D^&9yjg|H?!k6F-l)lOGT}*xl}#4>PH7`<5HG-4qTq@wJIzCWf0BWa1kW
zgG~&f58QSis^s1<xbnsxDML-<yyj}PF{OH)6lTdsnD~~yv@>la-RWLN>3x=*`b4T_
znedpHVB$LyUK2hO<4jDOt7u$z6Z7h%giPr4w=b+(0TY?M9qfoHNCO^CBMF;`a1~61
z?`2Rz1(K+Vm`KP?A#oF9vL$1Mu=nxO*FSTT+2ceLlbAIz-Gp}3G1=skAnFtok3LGx
z-7xiwT<)n{i*72jGfd1hG26rs+^2&wtIbRP-oz}r#BDdL@HZ^0&oMFA#NBzx^XLG#
z-KVoEGi46SWGZ$~U1(yFi6bVCnpkY&NA5=xTNx`%EH!a+dV1Lv>B~$k=f38m&_zwG
z<VIVjt~IgB#A-$c#j%E_Zm+Isl}2QirN7QiW)ZXNOstp9waLT=6BFkpZ{+T7<>Ica
z(#oaXc5{nurl(!Z(CVdfuVoZ;ZZomZ#C{XoP3$o7i-}+9S0-P`h4w{UJ53yGl=k-o
zg=yVi_B|YA-PFA%n4MiOm7G7`sqh=eHd|#!f0#I6;&&4V#eftZVyL;NwmYMc9~MsX
zX*pM?I<8|T{^Vdx{A1#{i4!KyozA#mqG+wulO|3vV$hlACs)1y${7=9SxTGSc2BvV
z`J%b|M49v%x83JW9KP-TxPIoH+wO}dE=dc2afk9JfbfoAr{}xlzRZ|&$6fqP##Iy7
zOguL6#Kd(IH@H&tF-Dj=X*cQc++}y%wePrZ(PNvW-F=bSqkifg6R+3LB<I-vHF4j>
z0|wzc?w#i{cAU<5$Z1MP<fHDmiBt>UNqK7G8Ka*Rbt#bX!o+_j661I!Zdo-)90_sD
zhD?9fOPzejP0T5hTyc=o)Yd;FdsQmri6beFu5o-GM{*ptIGV)KG!Dd(H;%M8YQ>Q+
zj{I?yjiX!~1>z_e$D47y73bBQ%CE&yj6pt*LU9z1W2etuByI)RqH#>Gp2;kAm?ajE
z;|-}o&S=R{$<h*WydB4TQl%ujzM};Ds-@$2lrN)H92@V}r1Cp)P)PEwkaH(9%835z
zJ67O*KaTQoIOA}|@j)CFm`!xs1uF_FoZY9H6f#v3$%SPZY8;L@rqoCse=wuKM-CRH
z#8Ekp)HtfgvHy;{N*q<=s20bSJMNd&yFF8e9n7F+q4~*_)QF=dO_b>V?`r1sm6>d_
z#fPaM#*rC^JC1Z(qiJeJ-1@-cc4*u*wRRkJ;&_;rsy=mo6i3}S8phEmj(Ty_=Z9vk
z)CN+T`>y-<hN)B=Gu}b`IF8e`QX9v?twg`=e=1|(hZZ)Aqj?;k#nCp77Boxk)KB7Q
z8As3g$>gQ(x<8GhbsR$urHxpV){2%nnUU{gMjMe($bi|7t`bK_F6C)ghd6%DSBZ!F
zao2FaU(}RNBJV6ng)a1jyY8v`UESj79>=&i#>dekjxXZ)CXT^zd>KciQp#6x^x+ud
z)^6=3l8(C_z2jEg<DYeX<2X7ZW&Ax?e<A(or4e<+ZpVN)2GX^LyT0ZZhC!Kw1es;r
zBMymUC?^<4D2`!q43EPbhcAv1aeN!c$T&vD!7VWD^&~no$>=y9G)l{g!z1$6cipdb
zbEUUTV-Xb?X&EZDIQ((wY-G11AYBi7#Z6vjQ0Cyf?l4y>pvK}b`Az12wMZOB9ML#f
znr2TKn8O-Xn_nF9IL5M_j%kyV9An}jQrJVX6XN(Tj&*UYk7HsSlj2wr$4ctZ<>HtZ
z$NV^^#xX69S#iwfPKjei95dtio(gx}kvb{=$J2E{IZ?e|b}37_fb_0_N>M|SO%_?$
zz-F^5pa@7uI!cow0)jLVM5@3}dNMP~AOb4AiPEbey-5)eklv+t{&zlp`JeO7J@?)B
zy*ICX@0-bP@`j1`5#MD8?{`K|C+|M9a`0mgW^=jsrSkSfg^9O68Z5f(_$dcJ=U`qA
z=F<({anj(I9P_qFQuT^sL5_K+qdnVPD14FNVnJS!rOR?~ILY%Ho$$16c@9?O@Yj*}
z^_FL44sN8RRv45?+<VKj`lOqlS*mSX2i>09C_P`vTC2HFbHI?xv{uMEL6&aJ!6tTF
z!E6Pax%cVw3O-P<m4SlMMnNG3+j6j-PM(94IruXNI~bsHP_MLYCugR&eP0gtb3f)_
zcMkS2C~dXw%|Y!yoh&-u+12t-=Qk(aKXlGIkb{FcIK<1Xurpg>hxISvhv|@CXHjG-
z|19%p4!B0g1WEqR!SMv&Rx9<N9GuF*!yG)y!RZ{F$-&JW{Fj4&b8wcyGY1!Puxy0m
zTn=^?wVf<m;L-O^KAv6VlHJH6+4zU;^fkvN*1hJqoP#Sut_o7QCgeINQwX0kDGtv}
zzm<c#^w=CcshfT~2X`0`Yuhi~@^r{dzfXtHOy?u<1MZ01p01ZYd{V7?+w+*l+&c<C
zjNt9hY)^CWoKgC=XW<Cjvm6lb>RGuI3^{N6F_cC<w}L#18SC;ZX2{B`AfJL11q@jX
zT-4j$_AufxvN5a`P|$syi$zdSSb<f6O+gU_MHRfP;1vZgDJZ6(tb%e1iYs`1oTH?I
zQVL2a7<$`t@0dI1wx_g$+GPvWbfuS3FgPuhr2L2Oi32=Y;~eD`R8)8>vV++QQhi`o
zS0%9@a>F+Nwx_a!Dhl3E@TP*Q3SL!ET|o`Sd@^BZdW~c0Xk&U^!SQMCYN9jCA{x|G
z%x4(BHk6#=TM8@+`d>7&L@KqU7P(zPssfJ!M}u^S0;hszNuD|i(iD`glCi2@dTj;I
za(Oy7P4AWDd0Rn`bk{3Q)6*5yRZx%9sKBM5K0DJiJ(BGC<F@DgZBGLQv}bZFsF38z
zRKRwaO}^vFk|JIrTfsXD-c|6Pf`XapjTIo4*^ry!q`i@XN_RY%WviB%p7vo@`W;Wk
z+=5LMe5ml(85pRbDLcv4X`R(mL30HkDQ3v!a<@>>Qb8vLofWiF__GUewm(+TMnPLv
z?CNT#V2&r9tH3$`=#Hnoh|IExdI!mN6q^BeJY8hTy758^x(eqCQvXE3r;_cVVAPPT
z7ppn>j^|WbDt(}rg5C=HNcZ}4?f%L9OhI1-{S@<d{FdB;*>m15`OrIn?)QE=Zwg;1
z7^Gl^f*iI?k5w>U!G@#mFX>APMkpA`<+xjC7|C|~SBe?=|LEc(AFhB;&K&+I1)~*=
zQSgm|ujx4}ZTA~E8J~%3zeyX*Dhj^kVp*LmqCMk3OW6YN0^cc^pkSh0ajJsv6-*L7
zS&-eB!a2F)A(=);Dp_~BV&1Tra-Q2CHE@$C3cLz*1u+Fa1%56{>C}jVfMUiOrm%vb
zf{=p8byJyTkXe4*@xi)G@~8q;0sE=Zhpo=aU7W1D^^PYlb${T7Dp{9ihGb_79w}E~
z76)!kt!#Dj>T?v#RZzf-f?oWj;AaKL6#T8=7e<E8&gBYLD43_1(R;pv1ws}oSgc@)
zf<+1*c5)T9rxs|Oxm1ekb#*OM@b4YZi#T7is{L05D;c*HY*Fx=g5NnU(v4LLRx4Pm
zU>!YSfpv|79W^re+_I^Yi=_Mr&-3H%_1shS%x4&i8@Ye4xHl>I>u`a*dF&I0W^PsR
zhk|_y_A~w~*sfrwf?W&(@1_39b$rLQL-^9h=~S5AtzeIWWggF7(eJ#LdFP}%_gxS1
zmAjq;3iuKAF9nAc98_?KTfUj|vz_h%<IRt*8FxKL7;{Ftk8*3=^$fi0q0)3<)^P<V
z6x`zyC^)I$9|c#$drv7it>B`J^b99N!3DYKSq0}5oEOe#Y+jmu<0JIg25usssQCnP
zNorjd<deXd&uv!~T$5(6EBH^rEl#z9o9y8rx1*|q&yytFAh*Tlj^OmWp1VRAoVjHl
zNa)Vx#hB-r4~0LXJ1KY~{J9`w_*2F!F8y6klZNTcGTC^Kpkr*YC3}(Ei#%Q|pJq?-
zBEOKlUVPBml}|YT&cHu1ta7JQdH0^JkQea6;f2$S!d?{dqM{d-yeR4gKMI|{>nY{M
zOI{T7V%G>quNt1>UX<{H<XQ1rCB69Lu4hJH4~t5BQO3(3;$hXita4tI_hRZo$ED4-
z3SRSr*p?mE$0ywUnA2reCbKVlQOyhf8RQi&DtpZjFIBvF)r-+BT~)oHSNtBfbIxBA
zh2rZ%Ccp2h?nMnRYI^a87pY#fzUO(<%kRCz&fYe4S-eQP=Q;4iZS$g*aAvJutZ9@^
z^0E}sEaRSs%HVsRa($g?UexyDZ7;}A9kSQ)BHas*7ujC(v81jSE-&hnOEyFBn=EIE
z2F~*>G8=f|7A2EIXpuSNo`;y_#V>oEKi~6Ishj?e7w>w}*lT`t+K}yj&x?j$G?KA&
zX`KGihc4oS30bT1c-|Kqe(?Fgi_dcG{G`*=i)LQ*^P<1k{LfBv!OnsodC@{hOF@>l
z;#3H4BiL53onU*xj|FMj!HbRw-pPx>^3FKwUA*WjdbdPrcP~Ck@K3$yk>EYK`oen)
z_DSfU3F#|1yKvF~FFyC;d&v$=*o+qPg%^W_3{L1ngnTJDRB)K!SAxU67$Ib&;3&bQ
zE#_JGOkYcOj2GW{G1iN5lBNEwkV$RKuSks-{+$;SgiL%<B*@aqLZ;AT6H48)xuyx9
z?!^o*auT}gg(5udQmWSrpK!lmKrkp65)2DQ1bLOH7u746Us=?=NNZxgAW!$=StV03
zyqL+qsm4$$h9A6`<;B(r{)pg5FJ|+KA$UW$@{eT>|McoZQy=DXr+e`;J<W@}KIHRZ
zo)`1IIPS#>FBW*Q(2Mn6Z17@{7mL04ox9R&{?%&<BY+nxyjaSX=O-@{kvcy_{3?8<
z;Q#Btd0{!>+IG*gnwyATw=Z?A7gf5YrCdn<$K%Yi)47h5v%_iY=^TDKx#wByMlW`F
zvD1r9UTmgIdqJ^DPv>@yNcbOu+XP<}{mGr%)5*l_E-!X_@s}5ez1SoA!9)vtCA-gy
z{R#U6FAU~+Soe^a)oft$BVHWyV%?35qlvl=x}|+}+3~lC!+JPRdhw4JcR7%q&Qo5T
z_TsV^SG+jm#lMVxKU*&{8e}`qdT~Lr<mb4*vYqDzJyVm@HT(H{o=c1sn*FPQnJwAJ
zd6iSz(SE~=YYe}8vzV@v-1l&nZhG;b7q`5alI<LF(soD4ZNZ<io&EYaiTAv??*&UA
zc=6baC&C|k@rZ}M29llEtt@&<hw&np4@o}LvisCzR(#HRkQS&U`;gm*JU*~Z(>~j5
znaJy=_>kX+H+^`^hXOtn^r4auFZ)o)2l!CNhq68t_MwOm#e694L-*d!qCULj!;h~!
z$OmQ=WFluO;X_FuN=XsL(n6>&4J6YUXk1Q|3ere<;nZ15n~FZL3bU{HP}yhBST!H2
z_)wMIzT$Yzhs&28ulhjm%G&89pFSk{bsys0(|YxE)(9k5_o0RlHGMeN)5(>3Lr7X6
zxzdH?L8p=}KGgD|whwRnVD-T!?Wg%Lu9x{4+3rKC4}aPUaw&OThYwCMAg{VNiw5+E
zIzFWP@Qx4f`cT)0dNR*hf*C&4_o0Ezt;=UF<(X_}rVnloQx@XA1|Cj3Q>{KuDjpwb
zkS%q&1n&vqqI}>(LmwJRwy_Ufp!Wq|EY^#KYa*qr+sudNK4kgf@#7;OTKI6mhl@V6
z^r4jx!+iM4XWkuJvkyLe;zJuB+WOGWhxVd(^WmG0DIfdbJC$pTyt%c5=pB9N<ip2C
zt<Hj71iK1S+`PR&<@@IM3_tauhYv%gO8NTvd;0LD@Lqzwedr_PGr_@veK|iuSiQdw
z1B8FhMHljg4}*Ldxh3};!y4J{B5uE9#_%B`l6?M`MXgnc<m8Py!#SuemT^9O>%#~d
z_%KQu8JlQ-w2-fT7?V)G@!`Y>^Sx2lKFQPCB#rmsJ0JG@aKMKNK1}psp$|NQe#E2{
zV(WvpNj^*#Wr`0|g?#UWm(%6LG|5gEoFSMa$cl=OKiRgE_<ab7__Gf|A3{FN^x+2|
z!ahW(`=I%7u4WQbRLoe5T=yYHm-fLBaf)<?IvXT@J1K?Tn<YiFeVD`TBb>c`(e1hP
z7Ex&bLV3}`FCxzKVSb`?0UdsX+0R8jEcRiE4{YQQAGZ0h)Q4qaw%mu`eOTqg3d#PO
zsJqgK-x8cxS?$9bAGRcvwL&%uuJd7iLf^oa$Cy{#B+BN5{-U2-eYk$od<DREZbMp5
zN?G>M%<d4gU4lEg)-oZx6Lt6auvhrLgfb?c|DX?teCF#v{`KK69}WvY?ZXivrvzDg
zl<^_K|MuZ{f}eOn7-xj=o0c?Aci7J4*v^PjsD+&h(^;;d59dX+&Nt1Py=T9~FvXDN
z$E$u^@!_fu8#=hl`f-f|WOVhTpdUAUxaq@lA9DHepAWZuc;dsSscE-)`?fniy6<VS
zF7=KmcLiB=&xZ<@wEI3hNGK0|c;v%l#-jTk8vOTZ8u6)=KJ%eBZ!SM(tx+6FekA*G
zB*l@>k4}R;Zy#~y_9KrUi))$oBZ7{+eh^3B_x!RqE5(mB5l4QpFYs1cAwS?paX(7<
zQP_{!we3aycu7bRKlTlBzA@EJv6vsr?|W_yaE9)CsFd`hlpljLvhcZc`5<R$Kg#$~
zq(XjY*Q}a@oWb&Ldu~@bKg#=2!H<f5yzECcr>&A7d+vK0_jFtnB!9(^%6?Sw^Qe4J
zn+KkO4?M3t@T5QRyyi#I6kFM?Hsed@>#WP}{bs4|M@>K8@MC9QM-4xm6`ir%jyL^y
zi$gf*bo=r8^*R>nyj*!_Ey-G?B6XW&?SiR(ID}AtcTWB^KM&n<)E0c(k2-#&3wH_D
z6{JBuAsK$0{KUL&{e<2?NTwgX4w^bIP0aS=9X}QXurPpk{dmuh1AZLzqoE&-{20#V
z@T0LG@B8toA3gl|z>g+=wDP01A0PVBl+oUg7Jg)vNo(dubH5qnU0WRcG{>|BmQztj
zOWqM;j;Rkk8)rHzYYy@@ezf(Yy&oU@acG0J9anH;>iYGLDswHL%yM+_qoW_6_`$lJ
zq_y0e9ORvav+*uMx(ap^?9K+a%4=)t*m;Sb9H1Y4{pjb1-aEOs*!1z^@G*Pvp5-&i
z4lbX@9`@&W>)0=)<R9qA06#vb=M>Ih4^OU6eQTBD3qJ<EFlIjsXPl1Ohe-BILH1;*
zkYRp&l~BGtmV2Zhqx@LLru-P~$Jc%Y{RsIn#*c6OQ2g-vG1iZ9ey~Ay>DxrzseX+2
z<2%Vt5S%DDwzoO7Nx~=lF+~WKy2o-8zxQKWLYeNz4B<Hm<>e~{eDv+H7QY_>KaQ_=
zXs67(So_TmM`PPzTWZ*kh#xtwls`}Biu$4Y5%<H8>Kc7`jcG=EU6h#MtwRN8Cffhm
zk01P)CD|VZXA9;^F+cLm5kA+CpM+4EwmQ!*2|mw{`E)$VE)-ni$D%~(V)kmS`Gd8k
z2_^est`+2d?B?F|W2K+}zQ;~KE{(PQE;bic$2LD!`LUXDBT;LkA8UoL6I?I2AyL}q
zYVxK8-z;Q{;8s8WNa#hwS=)vGnNW5J`Eh4bmr&L&KhFJSYx<L;rjfLlQHcBHYO+x^
zb9>yeUncxX2RFU?kRN~fks5#_fWr)Ee&i3JKmbSmIK~$IIPVAjeA>xef3udff5MNm
zesnM#Cnft&;_9b_oc804kbe_8{e&KMZ>Z&h9~ZfODy8KMfIYcHPb-mn+mFk<1&Hxg
z!T)#{5OO`y!VN!eCU~x|Qf>)fF79{7kGp={6Xmhs{e<NMArJj{lu&-Xn*79%r+z$3
zD9HglPw-p;Gejf>%pQ{DmTVqDX7dJczJmFVsxN-FrUWp%u8q@MFn~e<yc)o30U&^u
zb#0{rC>=oI0Ez_A@0GOt$4oCRDvi7(SS*0zLP`jh6r|1N5&6q6uzb16Q6_*1Rm^XZ
zl?|X=0OiG?g5WCwR7}`c3gG1gzunyQ>dFCB5v6KE=iYfefVscrsTF`VfS(_Dss&Iz
zQCcH_n!?`@d{gkPM5!f!{Oe3Vw*_DiV7lt~J=5{pDa)j}_Vsh^42;eI(gNrcz-Ix}
z4&dzo-eI5)piThk0n`iN-tT$p24Gq5II+;abgpIF0}uJD_bnN630DC1185*TGXQtu
zx{bdzqe_-!Jpp7V^yFU2?*-5>fGz=a6|qr(Z{tGS02&AIegGec*j%tlqSl82G)?ek
z0kldtmze3J09qvUmed1iE!m}~%)crS+etR_sAW@Ka|PQ6@UbWz1Um{+?<Ayi0Q1Y6
zKEu?FSJWNd0~oZ*GR~d$Ny75e0D2^NPa(Ym=$%k@KPu3d4imuS0Hy@cKY#&rg8(K5
zaA39L^8mgw9D@TGDE40n4icRI$ox&~kO006U}yltL>w#lmEb7B;Q@>gGE$ILw&u$}
zTKLxqWsHz-0;r_9UW{d&DBlJ!K4J4+0DI09d{H`y^A@oetKxh$=9uQUOby`s0Q3N2
z0nBP_pB8{W0Dd-^E_G)J<_Ic+UO}HA8+4z`6%Za23<-t>BLPGMP=#xPw6A>BT&YI&
z3LdSP8V_JjLN|oW4B!VLvl9A`+_MSZb5)+X3H}rJh45bz$~+<S19)+XMFA`h;HMyd
z4q{0FO9QA7M8zPM1+bhkA%F`3tY8(!%m9uBurh$(IPd_PS4{m~{C|}+_--vvp%Uq<
z16UKlT2VF&t`l4@$PsM_U}J)B3V<#|k!ec+TSfmva9hHrN}uFE1K1(iodN7m=(~jM
z7ThDaH-LSK(pJ|C97ynkLJkG+myp8={YU^`+%YeGv#Rs&08RvOGQjt}T8?vl|F+b9
zo~j;9eZOnkKh(#koRV6n1<wfnn`q~30Ot}sy>jx!04@cPFNl;NF4Jj?7kCiB!vM}4
zwqFV0Y5>;)xSp`T9l#CYHwFI_yp<?TyJp6UJCeQ2fFtC7qI8Zc<xv1LzqcJ*?#dg)
zW6_@oJ`La*BY(m&IcSE3TtOrWA)h%SS8m~X63U6md1w4=A2-vHKZpWB6bb@C%x`0V
z&z@Q^h#%KGZBa{!;g-Td*iM+g2`w2!5vf~L@Fl@wiPnk-Q6j->9yFhqN(E6mp_CC)
zR<K+U<rDe`*9ue$;^iRv2QeUsSAwV<M2jF=22mx5szEdeB2$cC4dU$}xJIu9@p=%|
zf~YQfY7jMos42Xb;2VN(3Z5)uI@?=8SR_k+a!nqhRkF4q><PWnSLW_>NY)udnvmLw
z(o*Bib*UrSbao@5*9#&;xGSO558{5&S~PZx@_rB>1d$blN3z*Lyes6Lg#F{o=AS0s
z3!-5{X(Xhv;MaaL7&Zx_Q59#;ndZ&w!yuX_ESm+<T=+)`rTd6nt%CUM9drz$QxN0V
zI9dnMMoQZzY}y6UKEXd0(m`<I5OW4P2hlT#$ra7FVRjL{t6;Yvx(lKHNf4hVc#j~a
z$X%6sFA;kO(I-**nUKCg^h+r8jn9J^7(_UTNDyBH!JFyeAch1nD2NAxEmxLW=;2=m
zajZbbxFEg_VrUS<g7_-Y!ssA|C-{gUe-dlD`ly8RVjaH@VoXB$CWx^Ke!6r1@j-kS
zgjbXa34Ll16NOI_oSe|72+0|p^nDQ1gzr9-GCff`BZ!;?S2(B&|BGzCAp8kE5JXUT
zD50!K$?wab5e-5UMHMXY++Jd)qskGR9z;x(co0SqGlkC){6Ua|oyF~$;InBajzN8H
z5WhDt|3>#q5c7g47($^C<_EDLh<!oq4`N{ui-K4a#M&SZtje=Eh~HQxh&`JeOM+OM
zXmgp6<w2}SD8B}=GQoR%msJ0${lOgjsvuSeakq(c)mIj#FOS&P1+kuCWLxe%T(~l6
zck7zx0Bi_iV-TC9`ewoHf?EW)2JwfGZGyC4n?LE#1m6+FPT{)}%5J(!vgw?g_Ph7e
zXWH2JR!BP##K9o$urom%3gWLI{%&Ny62xIn!XC?!AdUv{PB;6hVP=1hNmHk2lW6le
zoiM>q2JugVS8kAUI*2nt{F_iN1aVgQIl=P@y-iE=KS~!Rdr9!J;E3MI&kAN-6@D#<
z>q2OGBZ!*`{$CKc68v@$91accF^mN9Fo;J%lq{Owu9^Ko5N+d*4ON^k-LO0k;`~N4
z8a$!dbxUNh<!KPlq><-A<Oxae7o<&62+0YaJA{)%{&zk=UJ>&Nri73`VN)Q4yyMJA
zM1)W{gbzb#8bXl}iiThbp;iblg-|SnS3;;9Lh%qvgit1gvQoWd2s|shl-w^$iBei{
zzQnO|A#*vpZE%!NT&seRih`9wcsZf(IFwQ)gsLG_3!$Psh`t)atLH4O%bJt(nwY&F
zGXLhlEK~ImY9#8`6!Jz0Zwh%Uq4Rmn8iFl^^bqQXU=Jbng+YrfhY(KbB;A}<XNV_r
z{_nZEb_j0^uai*jZ%wWjLPiMhhVWhpt`L@QaCoG&zF>odWo8I&;aLe~;)q<?!rw_K
z&L!p$8iw%Obqgn_Q9^Gl<bA;p1e*wM+?w1hgytdi2%%>PABE5&gw`Rn37NaNMmKv)
zG2^am6~Z4;2T9uy_I;E!f3LM2*Y1XeynP5Ci&=*dx(ewi$ewf((pj)e2tx{(AH=#P
zO1p>fiSSPoO1*bdZhmC%6~Y%G3=*-oV4n~^6Vf+f*)N3t!Uu%#xsZVgv=uQo=3rhf
zgmEE!EBcp$qe2)ega*Sx_)7Tjgfb$8k;1P$FykK6XvuypI7aXr!LcDUDkcB+mF!eO
z+J7fxg5X5KNrIC@m?Gq*uK$bb-%ECy;Pen?2+0v-JL#+Q_(Jf9poHNKBM?H6YZS)j
zm^BnanA;?bl3_$bh;lhX*dKx#g2r_Z;dgp+2(b_rg|Ik;cnC&_?*PItA<PWnhY)6m
zFo*x}EtNJagdgd;ucj4=WEoRkW%^})s=MdX4|O+7e-ay(rabgishL58c_Azap~^!K
zOXqWw#@y5whCl-<Y-9=RCZ#Q-4~MWcgx8~4hMq-*BU-_3RLl4^#NUs59&EHusFtxZ
zgky!%D6R@&bqHJOU?HptVQmO+EwyhFTo=NI5H^OeK7>`d3zn{$c3R6K$y#Hh4aw#Z
zwuI3Bp@*D_;x@U^ju3VV*)I5};DL6TyF%Da-wt7~kpIqEr);tlD;~=~Im5;xW)FmL
zFobg<oDbnp2+k_DV<G$<!e1dA4&g`$-&M}wh<@EsK<krrG=yOfJtW6NI1$3>5Y8|v
zhOjVC!BgxQzXcjX?K5@~;@K$$h)n;Acs9f%;7p~{q=H0V=t2npg>Wl`iy>SJ;WGaz
zAHt0gG8=iWhHx!}>mmMN%EK&?>EGAf>L>0O*_%?tY@Lg?+acr%^JVV16T)3_s(XST
z?lV8S-VfnH2oFPeB;pgn$AbLT9u1xfCwUga^91izIcdgZ)90HOO-c?UcNin*+VX^v
zH*5yCd|@Dr!eOL@kzbSo#2w}XCsV;N3W-QwakCktib%G&U{S%B1dE07eN;X{OWjgo
zlnx^;jM`z838QQnRl|5SY))*sFtk~=3SpF&?2DPK80L>D@Uj%`Z<JX%4CSHc71mX=
znt$i65=O0|nM`FDy4i=<!gwQ$H^X>6jA~)iKdXn)vAwOP@ETz(c<3>mcCaO~$M#m3
zXCY=<!?1;65zcI_Fb^Bd-2TvGXCqP5)l<W!=l9aH9AP-a=61M0(|zuthve-r>V)x8
z7%jp`4<n~-raO$RFzSX;FN};ZTwyc_V^7=69(fAZ599emPp3QunWbf>*uSG?k$b|(
z4x@1x?}zbD81J$_Z)Y{+z#n<u3u8^~tRuCvs1V5;iNc}}I46CwJ`AI2*mU3~VZ>%+
zRv+VTCRr9W594n&iwYC7EyFneh5h3&I)u?GjMib?AL3{e#-;k1?S!`tqr^`xitX8g
z?ymjFL+ltvCt1f&!ssl7$7;>YHr=L+WV?pZ?S;;x#)LF=<vkM4`jj1e<RR%9Mz1h>
zhtVgD;bDvj<FhdOhVgkA1H<SShSg&qz=fOQ?9ZjoV=M8!t&Q9E;e7k@7WOZ~7{s}4
zZu>Hf!C}<=*l|d)^{!KpMMJnQJ?xj}@aOgz7RJ2cmeLa~t(x1u3Zur?mJWUGBf}UK
z##Fjr7^B1Znpa<Kn;6EJFun=n+c3t55n5^+%k>&*8^_g2sl_ZiLuC3cjP>(f=f1R0
z2=j|=g&r?<zq8XmDU8WsIJRX?3FB~C``IEk@*+#kS5Z&ny7aWo2=nWOw&`5WN~sSX
z+t|Y#ddM8JZ@w`69B%~uBM5{M4C7H4Uk<T^!U%_PB8-!a|6xSKSk0!m78{dP?v9fw
z^SID5u_-0&I#*eEoGu;4%rJfkV|EyG!kEQ*sFnO<7`X~L_={3v*;*#f4dbUUex`@>
zilV<j7LoXRTZ!`%?Jp3rFpNcEEDmG-B-@fOmWQ!|vn^RF%Y?8Z`LAL87Uoy)Ov{ym
z<<?tPB@A|akmtK1wOF(^jCIoTU!2u2HiWS&jNPJa<myyT-x<ax$!-o~OBh?j_#=!z
zWh^iHxs4lBve#q?9N-SgR**5$=94<+WB;Bo4sstgGb7U8F!o8C`vngOetyXO<HI3_
zpigX_9rk*Y%|CG;4&#WF9u+($Nd0eanFMcmHTOSZoC@P|7+1nL9mW}!9<!dOFWs~L
z8^&277tR#y{;%bn@RZAzk(Zno!njCh+mm&P_KPeuChzmeb2W@>Vf+`ytuU^O{Y{44
z+_i3Si659|*WY&%OFpvRX4vNr4dX!=cg6A^!}4Vd6Agw~T}1XIS7i^$Lk5=aCV3pj
zlQ5og=?gkM5oAa3j84u;iy$e2*CKd5g5(HtM^H3^mm)a*v`(G~T9r%vVohq^2oAKc
z=ZhdkNd5>43n?I2FoHrt5J9n|TJIEbHrZySeGw5yrQ0Z4cUg)pvJ{J;cmyRP__|On
z9#~o~f|9~Z36>TtBS?d?Lb_fqM9cCKREVHr1huv}D@E{1#60ixWkC`ipjugYl?bW|
zc{PG+<D4vFI(*ntErRM1G>G6rUt5g`YVx{s>^!0UjR@Y1z!Aaj_nmJ=V2NPxX=^I4
z62Z$SQkj^wa@3bCHo<>Rxa>lxQ>4M%lc~-K(jurG!Q0YKJwY~DCxUe0bp>-DOda62
zWC(X9Z0f(r*2}uR%aR#^TY8u!c<P~(y?rNwcOz&Y!N(Dxf987;d>BE~2pUGvD1xz%
zJdGoGKY|Y;7}MAledK8p!LY(^5*n|3<RNbsLGuXOM9?;ZkEFCk1c#-lQeXFfk3228
z$`O#X7W}baCV9IEqN$m;`(-jq!qz%O&@qCZV$&&t&JlEv;1l-hv8M~O(^I-~&L5lC
z?IvBNNdBo{52?jwJ&!%aqx~{_MbJ9}>U|>UE2W=_B}-Y0X2byzd>+A+2&P6bFoM4)
zSmx-Cu@QU`LF$^+L0qf|hD7jX1S2CD6~WL5o|Z@*7Qt5$L{uB?`7(k|k3GX9*m2G>
zLXf0s)G|84fAD3Fp@Z?upAoDrY~M8B{`wN@#Ok(hBDlH2B)rzR2#DVbj*s9wAyg&^
znHa$&A(I7{{Pi}AzK>v91dAeA9KrMmW<)SEf*&GiJlmQRfuEtCU486PBJk2}R%9~y
zgv8UG!3aWPsYMXx5V&y7(_fxvjYhyyCN`obxcb<mi*bxf1UbLiS!zVE@)tJ=aaIK7
zN;rOuV78c@Xz!X6!Cblef(U-%*l*YQC4zZEeirPF^!X92dF&yw{UeV(MD}(ex5GRu
zn_UvY(g@bm{WQz62$s{BvlqdN2!4&=_Xr-`vaO8Z?qd%LtNbRMSq@|s=VXeTX>|nr
zVqJ+R9&$F$qIJ?f$%Y6vGBjPctWeFgDT2+M#$~Q85o{@GBdJ!n*0u<?(_X_X8vf*(
zMsPfe6H)ApU>7$+6iuSo9l@Rm%0^KxioFr+V~C3)Ig0&^ND*9);7SAsBRCYnKM|aY
z;4kh7IvAT`G<f1ULib>;rs;R<y3bmizBlV0;~sqC+0@#RJ<Wb1!b2nR<r7bx8TM-p
zQW@S4KCraNlXN<Qvk{z&;7kNc)W-Dh3-ZKsK7yaqQZGiZzggx5-th;y-&pV7y~Vyb
zCF@cImAa%=y<oW-!8J}GXL7LRdIUGP1fM$Y(i^!uBDll7aK>{hf`v~!-S>KSJ@MS8
z*STFxO~$xVD?1iHs6+dE5!{!GA9eOHd-aLuVFZsNc+7bIkNZgk&xJf?@Q=VKkV^4v
z9~+S=R}{4inLKyY>_ZX3JW<?PY0Vo&z9>?n;MeU~R9HxU!2(ef6!Pd{TA?T){OT+V
zE$a-m1ZLZdN;@wJ785KkSVFL*AlobzMd<`D6UCB=<{!GtM^S;j61`#+m7;h<_{&ke
zBBW{*JgB^~@ELAY5yIEMvhJ%<ycXp{JE}!dJ&GE1jGC@5`e)p^YkT5Ms~JV1ryhRP
z{qS8E$zE&Ln^N~JUgD|85=E^jtV|v|)5s@wn{azVNsYph;La%0gg0&Kr19HP)QKWp
zT4OgnQPdS)k7i5U8G<gs`hpZ2M3I@`?kKW^a{^hE9mP9Qyc@-Pbmjq`Mp0ZCZ*Ley
z{fn0Dr=Al}EX-1GET!+$+t<38{V<BAQD{-<Q8bI9c@+Jl7!burQM8cGbdI8B6s?4}
zkD_=3)H&g99Yvcc+D6fi>sa4(3FV2W+f&b=;<hGbY#&F_A&QPszWohjo_c04vsU~d
zv)jvcC+IfkB3G9vy7F2J?cJj29)<eU{6XRbr~Q*CK8^A{J9eJ>-g}3mM-)AyAZO|o
zMQ`DK1V0n(n<(uUMU`<DntdL{z$hk0F-dy+MHF8}F+7SvQ4EfP3pyl<FIn`|v*F#;
zT>UdhhDvsr;M!2yh$u!zF*b^Ev|QsH6~$<2%JGV`#vaGl9FAm<*qq-8;i{b}m-Q{L
zJIgvgitnO$*gIoUG;IPGy^f>nxlDaZTFWx_U6-trqnHv!D2i|tQ=|M~3vU#@D5ga*
zJ&GAo<ZWW_+tgNmwtahl=jv|u98nZO7FAnl^G9*usV5LcP)Oa(w2sg0^?r9=d+N!%
z&mKwiCralp;&~XftMs(KnV+3-9R0}?iy|Jy)+qmQ2SY4>jAC{aGou*MIQ<8~(l5Jb
zMX~R8oqW$cbE25bofXB>D1PEROO*vt{1U~X%jR?Md?EA1{az?{^4S-%@mD!~GY%|{
zV#s^8ABLt8mqoEWir=F6J&F}<s!-~lG47R76swl`YZNt~c@8vm)rh(&u8LxH6l<cG
zbtU6=M^C}kww|3bFFdI8?laF??v#gh)<v;i$OgfUg48!fu{puFa3f5zQ{0xAll@U_
z=k||c2ZKMSbf0}s6uYA6@yxTRXU1;!At|kF<;=0qJWU5U_i_^GEot`Hu}r=W{`ev5
zfhZ1gyisHnwjGY*NECn3Z=ZS2R`3iT;XcaMT$#m}2po%|%p}*Z&pdxe@oMSxw+4C+
zKJ%Q6;va4(6`!m8Ivl?+hB_+JRh)_9U+x_hg;g_zo|UfNit^PAIM1CM#l<MDMsY0)
zzA@oa6qe_nD^XmIf(Pl}dggiQx#!oLmWIzg*Q0p)nd84GdOi1)?dH4@#ZAVmx6@Ky
zN+Wt^S;jv1+~$fzaW{&4Q9O&{Ik!Vv>isCTwXr{n;(=rz3R3^%g6%Q=xvT3*6jk>+
zp9+%99qq`aBL8(;UKRONBnf9WSx9cdJSt9{u~AH6Rz*RTKPq?ZtCUed#Rq-gCYf-~
zN~Bmwic0Ob7Ew`D#mg#Qk$HGYMKKk{RTv!LU`q)VB~?^Z&4V>c5ml5|QKWiS85NWI
zr2WMqtGM$;*6+_f<y0`slrhCNsBLBi75_c=^c~`=q~ck%%%4ZvW3B9!Ra8;&mI{lC
zsw!SpQB6g46|c#qUsq8mS2i!oZMfr<b#XCQ)m+(QFIj7-sHx%&74{R(4Kr-9ySAG9
z?Qg2+`@l|8ONCX%CmHrM6*k(aNLArb`8Mjbp#fLh!nW<DGo30fJhle5yNOI0xw31k
zcw5ERx~aVJwat}1q^+y2^nq9Jq@tdR3>7XF^*L`Uny6@?B2&e?D&7+_{({o2B1^>|
z=iD9@?+D2jr1J4+c4Dc;)`lt?sc5WX;fMBKTW!%{nM>|wu36xIpDWnKz3i%UaIWkR
zRWw!6N=0iGO1sQvDq5&$DZIIgkA$qsYiAMrw)QP2PkSS2!)3~w+Fr%SDi1wIor_Lu
zMtVCHeDll257RqvZX3JuRC0GzvARUvezz?-xw02l&*-e83)>%O@2a9F7jC7sn~Lr#
z+W76CsQ6Sx4=L@w$FXd58pAbzYfP`>?W329-YWX2_>9x8qCY!U#Xcio@2BFIT-jT4
zWs~z{>^eMEtczoyiZ4`bP_a?PAQgjE=qh3=e*e)rM8)$a_6aJ!R54V=Fcn{^_(sK8
z6~k4GQ1P{j?R{(~a%GRC+vLg~rQ-Yiwyx>6(UQ&HWv5s%DSM2HNXsl9?lDfqp=w#*
zsu-{0rPorq2ft%e%dLEbdp);@gsn}aud0}=Vv35Oijaz_Y?dCr(;855uBv023a(D@
zu$z3kiWws22r7bJL7yOP{3`Z8&m^&&vLD!P3)3+^wntP%IoMHY^^#1dRaIyzcJ|F6
zf3sX>?4mXBrajJ!ivKKAF;m44Dt=P&vx?DO3(Qh6N5%4SX+N^@UTL!hNrpblh;_-D
zOP5H>c0aTKqGFzkMclm0tV@?$=Brph?^5|q<FtWE*~FZr?CZ5`yy-7iv4n1r%eGWC
z?}@igSwe9O?~=<^tY9BhtW>dz?!k20_8ZshsQY&nd%L977?!cRubW3<tWmL61%C{_
zUd1}ja30%*RjJOcwu!eh$@?`-otKooNyTPvE)^G5Y~hAt5KwWL8-W{8M!KI1s^U)-
zd)T;&9V*8CY1yS>RLQzK*}Y#Jo&HWG?p85vj$@0{#b@|Gld=!=a_wU~N%ixsb@EyI
zfQo}EDj&8UqN@+JjC*7~*2=}-*d9@Flu=#9X%)v*{>c;<FPP7w)yI1HxPF|$kfDB6
z*75S5L%p+3s`!U1n3T=%LOdhgqw!hxd4la<dNqHyd((1`-uS?BUPbQY><yz_{8({G
z#bp(FHRRK9Ma5O_GEOOdX}R^9ikl2{Dz2-z!POt_u<gm3UffnCIlKN->n+a1Q`=n?
zx7kB^Zoeah2SVPXeUYsDj062VOdQ%H6_2?)ROHg|M8#7&JlDvTy0J=zvy(j|Is4~^
zsl%>jC8ax(G$d=tqv6%H&MUCx)=+1NYx-}lVh0N_>+0`1QY1Y^Lw*g#G!)lRKtn+d
zykWhhp^ye>D6FA~2F^pP<m|^KQ->sH7u7JOL+0Y->^JK=mE>&lgC(8ysyj+(D5;^G
zhVmLpvC0E`X$@sG+%2BTN6lTy*%M#SD68R(2hOtxZA2ck-0Zl$f`*D3znh0E$=QW+
zXIIOey{oL7yt0NW8oKJ}rlTtRuVJ8uFEqTS;dKpNSfrtvhUyx!G<Y=B&`^`3)A-9f
zyrJPnlC72otA=-bX1=K*rJ(IC4Hk`u1K8>v@epkq>>3YV2k)UQP1WGg;M6doW!mHk
z4yGZM()(Y@AYo~3F?(CX%Bto)x2}eI8s2JcYrsjXmzkkq*dx33U9-rg;cR6`eZdEN
z9Ki+lObu?%Mxpf3e|6TEw`FU1M?(`0AF^*6UaphIij6e9$C>Y7Z>VABd>7Nb5_PFJ
z*6=<@lxbu7KtqS(?%gHbO*J&r&|bsG8k%dkKEc&W+W$y+3&ECx-%fY2w6%sd8rsSb
z7G1El(=hvXCYvH>w`ss`chJyLLnjTLrKwRr+0>bq#<dEuC&B8e-86L9%qO4zGHSDm
zhEFy0(9l!EXVNmoUK$TZw)NJ)QRnKH(MLn1nw^};cKT}QC!>46i#bM4$N&wWYl!-6
z<llG78l+*chMOAx(=bHCml_spSfXJlr<ZMN2x<6A!*C6gG)&eoLc>T6<1~D$A=h}<
zC@!vsF&ey<)X^I5Y<3pSw11;vEZgh?Omxv^et%bH?rd`Y1b+4y*LV%zap1YLCuo?c
zVcmY)SGmoNy!<yS`4kP?zjaO5Fhj#s_F=5+dkxd*f#14{jB_zd%+a7|2uP_{kh))p
zPjFC|yneAHVZ|`#M8g~nb2)Ggss@8|qCwO6l}i^p7So^$AGRd($wWt-dvK!bd4Cs&
z6U?3cgN7fue4OV2u2~v3_jfJm=lXi3Z9`YkF-nbg{iNY%4ZmoZ$H*|z@!BWJoP_Js
z>}-6#hK17d>>{oO8aT!mBVEJ>i?}%6r5cuT$o%sQOEs*}u$FToj`XXB-!-hF|8s*+
za{Q*j_NIgFldq;hU)P5<Gs}JMTEo)MUA*Fy0j~8LHfY$Qq4r4EMs}FnZM4}{_L=?M
z%n&i!wLEt=2eMVe9~!nv%UqXY6CJF=#&>Agso}7OBN}#T*sbB9w7*A&wok);4SR*}
z$(_AqwCg}({<%zCg)6zUIj%z*{_T<WmyD6)J*wdtCqcsn4S&lfJ+5I;f7h<gHg~q|
zgocys%wZ2#mgyf2r)0TL3v&6+2>F*46UsRuta4GqB~FC~4xb~v%m8&Q<BF^lv*cGb
zT$Am?xWViV4Rl5NB=MGp+l*j3YU;SdfJuMWk)-3EhWk?GnT7`%9<u!h?x!+Qk2rAg
zjmMH*_><`^Y;Cj#t`0c^%X8V7+{?*2a_h*iqkxV)I+k>{<<*f-H+#r+Pth@>Nm}`!
zt@0LI@uwD&f;tN6sGy^w4(KSXqr8rv2H1+|D5|4`j*>cF(oyes`)ljm#f20TEO0%e
zdpX<KH6G4qDILTzf~9r5SuroO49jIjDW{{?e-<iDr`p&~B^@v8sHUU3j#qS4*3CHl
zx{fM37)4*x!QgqwW2>s;RZ$pKsHfz~4rbfx4bAwWS}GqwL;W(2KQXg!@Nzod(ebX1
zw{%!^ICZ4yW?ZVJ!=}To!>XH+p8>Gd(2P{we9(Qo-{#QG=)G^3)iW&PTxZnQ@wSe1
z9d&i^UQkEJwYE0K!$$Ah`ZcvPYSq)xKu0E5EuTF@&?Q)(voSP-qFX9v+{nXAX9;I@
zkB)5NY?ImdbTriY?RqrR&4p{En-S~-9gTJK7*Z<l>*l8WcYwKZn&|kDy-G>1k|&$U
zozh%KD;=$Me8f?3ysd52Y2Q)@|E<a8Xv2XI$>^Y?qmH&Z?qAK*P85pmb$l$`#hDzE
z!Ohr-lQY`YSvR*Q2~!u{j58$NIb%AG>o}p~Qyo2Ygmpx8^yE_N7^dSZ@u=P$nvMa&
z`v`s}*jKQhj?Q;8>3B?^>liE@W}gS@_(J#~u3AsifH)*k`lX0Nr3K!(Xg^%X7#-i}
z7@?b?Z={Y<QaW0)Ukj(s)av{EV|9$9N9mZT<Anhm`Bp5)>-;CU*+T0)*~CdYChJhR
z1UjbZm`Z;r<DMo4-wXe)n|b%7<#g^E9fL|{(I7{PD3UYzbObo7BKif3mrf1o=A*)t
zADl#5e!%#zL)Gz{j^A}?I&>XB=$NG=#=TG{jVZ3<aOeMVL&r=Vb88i1V$qK}X6sm{
zW4X@%Wniw3c{=9PXC`I+L=UNHPT<cve$nywXb(ju)>@!rp^l}r9Ajg4*a6!jx_73n
zX^wrdjz+tzOX!C=c9JTu*w(hTadYu6Z!5&@f7P*)4K}dx7Ei~X@V<SOj@3H0>-ba0
z8XarJb2dt!zn@}bNL;65y^bMyvgtn?bTFb$&y&50?xbUjObdJUhmNfri%cnz$~Nwx
z+9uhdW2cToI{sqB;1cNAuj7D@J+g><Wl=Z^Is@l(pJW?kq#cx{=L~S;P-o+uio-gN
z=r}4ijAM7F=I7|T1ntMT#irQ))-nER=Br~}Cw2Uz<GhXwI!@{40}s<_?!Kyye(&3F
zKeV0ELHw7&aA?L^;paH;*0%2dSug6iq$5|%%wE=UMaR10nRj$t<?QLWMPs@|_0;PU
zCvWKZ`dS8`Fu6T%>iACw2@~Td;~}Hsr*Eb5LTuqK?*iPj40<~JHEhr1au0<w`$)%Q
z=?3`|9ZwUwb-0bna~)-~)7{rI*rlWxl4HmnL!Ow~4pTuPd1J_zP*P&%=<-XpfFRH0
zDI^4fg$0WUvW22TUW%buLMa|Yi3HynbeE2yObnmQ#HTa)tuvI1;WY!V8z>(`g&1Cs
zqgoslW2h7}r@DL`FURmo4C7+>HipVEREeRZ6jhDk)fikc)MpE<7=tYadkocLs2;<c
zF}xK+jToYftTkhJBZhy9JNbX=#_gP)`EJ=;_Ce<@rQ16#F@D6eS$XNT)><)8blr8v
zR=G)1V{pV!JBGJoa7s~yXSTE$9vrvwZBxB&S#~wI)rlcJ1}%41Mhq#Zt#xCl$EKdy
zx~_1u+1b-<i$AgL{vq?rJ(dPBWX8}qhWBG|$B-4nyD_{M<Ii$YU{S$~LoC@buww-_
zTi=O+*%Bq3#1pOD4P$5&L$_je{~l#4oImxek(TC*3VsknlNj2@&@P4#V`v&fix^tQ
z&@6@{<s2WyzyUTF&Mf<Lt6(aXRxwO$=cLkFIytbhvrP>1^JFJiNKL7e%zxaskKyAO
zI*3`9q*^n&q>V_b#bFLEklu;ii=j&lU1Rt%hN0|I4Bcb+JcfZ>O?GB@=75;_%>j~6
zCEFv0o-y#Xxm0?I(p#`k44=i&S9re|`U{~A>%OSosI?vKU0-m{V>|>pbqLp}m3!1n
z&cQPI{P$Upk8E6^t}U~M#qd=Oqhc5x!*Ke8D|ICO`L2^g9uWiA@yS!$$CYijE2XYK
zWcfOVvC_jYN8858x_=|c$>Ge8THzia!*?;<qQl29fs+u!3VK=$lVX@0!%QBw6T_4k
zrqZcmP-FN$2F}ln7;<8m7Q=K}ws)QTJ&QgzwTX=ruEY=#U-i;a4_ka}uw|BCct9{H
z7!ssGSO{${Ke2Mox!iP1Ee4&tDXG@r>-Ja-@tFCKIU@!d>};1t&i{kYis8o?eu-gT
z46|kV=yh{=K+t~cjY}D9WNr*UiIbE6977<f7K`S`upovdF)S6!g)uA=!p^hwc7D%d
z$!^GNdtBJT30y{B-E3Vh{z>QDwBEWhhTmfNBZh4;{4P$lhOsV&RpQL6W4PYJPET%k
z*t#x;ey8p1%$69|$FL!WjiON89K$BzZO>bn-S@4XxHX2Y=Pg`NF3t8B{*2*N45wq*
z5yQ?H4%4?|*cHR>7>?(v#f9D@D@*_RD~7$o_X+NQp(jcY#&9UX`Tt7O-_Bb&(xWjP
zW0$HpxK%lIB!9DIQBDX_IVt2HLHg&J82*jn0%s!zy4l$n&I@6m&&9yKL&9LfqLKUU
zmty!&{G9x93|C}gug1XaHNoqGHv}o(WIWmEBDr|pGQ521ofz)MkUx$BaomgHehklI
zc+Tw*!^0RJGmQLc+djkI_LA+9@CQfj+Zv`m5nl9x<!KC;*E(sFD~_Z%^2SlHhl43O
zjz{fXxdl_(<js@Nj~ytKFTqo!)V|eHFpeR=S&PQ;l8{1iKnTUcaTH1LU%s|66^o-x
z93;gBOT<w!j#9#hx5@j$rgR(~8k)vsMK34FEDad>EATE5N2R#=YR;E=t^YC~->|$A
zN98!G#8G{+^VK+Bi=(P=X8BE|kJnlUm9g9Y%lu=tvw9pg;`lC(331en<Bd4_#?dd1
zH{*CKjz)30kFT*=;z*05b{w_hu*Uf^1N>IYR&=G+5r<tkv#D`VA^CWs-N`FXG7a9Q
zm}<|A!yU)L-HtkOq{mS=4j$`gFXpTlM@Ag3IJ)(=HV~{Y$n59iEyU4pq-KdR?cWjN
zi6c9q@Fj*@BldUWcrT8Iaikoz-2KP4_?*pq&ek}N_v82=jwW$*Wt(w)7)R4MTE)>i
zj%IN*k7M3`YYVR01?TRf&X3~w>Aa;~4d=@PGg`(ma$v@~M)stYjy7?GpIScV5(sH4
z*iNv09FtZ%S=up<PH_a5TF&2bc8-HzTN?G$f{_-IE}Yv1Hj?f#lf7TeCx8DH$EU)3
z2=)~0CHQ?~^M~Gjgp+(GWW~Uw{xYS5;usvq+_Clnf}h7RFpe+c{IREvUpg&3+fwom
z+mJXGjkOJrV?-QZ#xXPw>ca%TlA>Jy+G)Vm;Yy8+<7>{R=%eBoEmxsEm+u>?LNYFn
zvBF<0?zf!44c75-<o?>cC~+dEB985G{29mOIHtrAkHd&#Y8*!krUv5(#qoU{)99t5
zcm-KBBaWOn6x!b~CqH?DiPU{!;ODF+EU9y<!!q+)91$T@qC!+U)w2|4b+IRj$;`8<
znQ{CO$ND(R7In^w<HtA_$FW3e&E{638^ke(lSu~<(c3xAywFq2&ywZx%@;ytVH^vD
zFL`RAPRm7ctSM%8Y-t?J;#d{O>Nu9i@uHDm<5-cXOJyZ@N*uq7!WV0@7Q07%O~Phv
z9PBp5b<!-0$T!5XF^)~r|E+?XrTr~}9Mtgqwf+!&n;?~Kd9ruJv6C?{j{9-!ieq;i
z$KyB=$DTO$#=*%vEVwU@145|m=hoh3IlHs~@n9T>;`obmQpwID;-n%@k|XS%*dI&O
z`ddh-r{`oG|HN@6j;nE;isN(~=i)dYN9WFIXX1GMCFj3!@X!9t8iO*<iq0(c3vpZ)
z1M-V;TuSg46^Ym4xGv&t!5eX~`hUW2@^X2yOH8xflE&E}uf-~Nr1Y*J#RqXbWFRu|
zl7UBYJZ7vg5F2cN630`zu>rnm`WYvGusxT7oZ@zp=aRiS$(bYy#bl{Ml1J=WC9jZt
zV!&*E0|msUpy)7ANC;cAPIA(quz@0?uvun{87OX`tbuX{`s684!aykl4L90L8dzG?
zobA##Eu}@FSjIrxfdxs*8>nEQvVo>WofQqx6`5WZQpo_Tq~y(}@`@<+F6F5rmQ@8=
z<y8Z92WF5kwp26l+(53GsBWN!ftm*1FyJ%bH}Ix`w+wu0poamAfm*z}fp!M025bi2
zW3LR@4Wt^VV<6pt!+_I3ZKgk+j><Ov-*(u$wlwxLZ#EBqe$?6ZwgH|r&eFPud89Lw
z$3VRV&k*7gtZ$$}LeCW9HjwqgAaC}Iy4jL_$H2RWc{VS_4|dub8EDL58feCaXq@@J
zfhI!sA1?5Lf#ap?^5EP?B~m{$K;+5Z%?*5HptXTEhI!a;3--`JE6zhz`}h-X9_`CU
zSfy>=Y}RF!7AM@@=M-#jU~RI!i(#Iu{;|O`PtegoCj*@gOwXImQ&orL&HiGOo3Fs|
zbhcgjCabGq9vj}xKz9S55al%rM7}hEht~Eq(96Kr2F4iZ_te?jz(50E&>swZW}q)c
z0|R&!-QJ(PgwuP;T`WDFuSB_Z)A~7=BbHTlw1wG0y!s92Py@pZ3>M2F2EG)Lb(hyn
zV<}&w@Rfn#21Xd>D;4t2EjZG^D8qcw&%C_Z`Omuf<`Lp(QE2dufw7#Q>W&!(#u@n5
zz(fO+42(DMoq-9Q>Va7#f9B0*;yY;0<jsDTH+!;yDF%)lu}(8ERmk@Sj*d^uQ_kJ&
zinVk;({j3D9wt0%d|HuRZk~RhL$~SZR1A0xT-#Tm`)&ub0Ruq;+YD?s5Hb)p@RNa`
z4MaGf2A}QCZr@B#R}IYMS{Tp_=-hn<;sy*l|3A*!SIjr&IP+!GY~uJdzL94Z7x$IS
z9}Vzb5-(mV!52)-mf4uT&w1Tzn`?kbkNU;HJOj%NET{jMtUKSpLc=_9cY$G^Urpt`
zm+gxT^Cc#Wc`YegYG79JG@i#xGakvi!oaTv))`oDV5NbBrER~{Y2{kKarT;}C)r)A
z4XokzZ{t{Nz<u0&AJfW*Ru)m=%U?Da*l1v@jC2$C=`P1+16w4^_cw9)d@&PW*hKt8
z#OC?3DgJ3-2RDU*n+A3o*k#~^fs+Py8`xvukb%Dp>@~mx()SDQ6XYTJ6DK+jkmpG~
zXn-f=_sN&d<Ma=61r7Xd;MUxNM-4nX>ON+e|H3}q&_PbJIj@IPah&dvFI&r({ST*t
ztNC8)C3Z=s?q36E4V+2TqFLW#?sGDY=MAtrPXfOn*^7dl-Zc%=FB`aG;HrT?2G|DG
zw_jr;nOS^6%yq`k`gSH}|6{K>p9c6Ql-maGa39@tJTY*Wv)U;Afq{oY?isi*gyOX)
z?&bNi9~pQoO0cD?`1364yYpoqZs+QlZD&)@=$t=VNs?wF`Tv;u4k#&#?`w8gV0XFX
z93)5%%XaV1fZ&3gKv0kjBBCftl%OJrfQpH%Bn1>urh8_3LeF#$h!O?Kpr9DYK@dSD
z7(kN9|Muh8-}%m|bI+|?uR>S7s_vQUsqsVgBioPSex&+QjbFw1QNoXsew6d0yq|yX
zo>|I|bU!luNMq^_<;L~Q;=e2XmnfzE*p#XiAF6_8evG<YtgIjU5T*KV4-JCTGAsDO
zKRU0-!iTEcpH*qhP|1(VepK;e?nHGGl&VbqUCA%+B-QYvrXP*`Xe<@g@}ssN_xQ2l
zu#>%xA9ej`Af?f`p45J?-+6$q@5j#J&P%HAmFSSwGiCdvyoP?{A8~#R(!`IZel+u=
zxm1+%s&~`&%mdHnwD7|`q-OcCKTB=tN2VXG{K&h<(`#`lwkPnp^N(5zZyXhrF0W<A
zW~Ai!;q{}lA6@+L`EfarnSD#?;74me+W2vwAE&2#+xc<7khbjD%WBh=3ZGgt-%xY?
zn18_`?OD+qYOBWC53nw_kX>3qDfFYrkB2*C7YH7B+smiZj(&9V<3V<8F!Pz*>_$i1
zcORnA_>G|RTfc|=&L3@e_v87LoQM7B>UX}j>L&PzAfx`%Sv~yd>Brk@yIy|u_v2AN
zdi&AGkG|x;WqV5H)IFG^J($yv1D%>v^G)9XKOXZtzX5qlaG)Pg2zgwP`XE1Ue4k13
zq^k_}<Bw;(R2ql9PqX~6cZeVVwaOtGDns+Mjv+dR`7zv&5q^yHW0HnfG>r1&IXabw
z(i%qlF~*OzeysCjtRLh2SnkIPUY#E=u>F3#<Hw7BjQ3-zAFulHk{=UTjvuf1F_E?G
z%lU9$&dYuf%hXlRl`PsdwqP=Stfo3eQhA(ym({AWMLm#S_?jQD`|+k9Z}~CJk2l!E
zbya3$AtVgUMNUiR`Y>Ic?#B#27WlEykC}eVqTl-Qt{*g*?Z+HHXqHl{=vtnSxmN6V
z%6ZR^c^q-K>Po8$?iN+MRM8?o-uGiEo9f30ek_*kY(`c;-x6s*2@7$e3-dnmW0@GV
zD^<i6#!CBG&c}Xy;&)!gTjl4e4)Bxv5#qcE<!Kz*QbhsIK|h>MXpzgtkc?@VTjCeR
z@FVO;#E**S3vVV1UMN)*l@@+m+-Z4?(?OzfK`IF$mZ0rNQb_s%r*l~QYBtP|HGZ_n
z^nT{Y*3WZ3_hU(^qIbF%lJk@AdQMwEe)i+69~(JU*<*fu=f@X*Z1!WfAA9`R!u5eO
z*N<CWvYm{6Z0B-R!MlyKb#p#zA?{%3{HuIks)$IlU1H2C$oKm3wIBQF3A4OkiB7^S
z`~8@*PkA)IfczUjzLnCbF#5e8KlpLNkCT4<=*K}nj`(rZk3)VOmcZIsFUujaNynr;
ztnRoUt7dswDZ`OcMW^JFf1+o0FJ#r9FDy9i#~F#zn03+Y7mk7-|N3#;kMn-~>c`)H
zT=C;KKYr%|!inR@1vkqjKQ2m{%+A`cN>8%JKSgBWe@O$VR7@+n>c>C4UP-zp&cJ5e
z^y9jeMt(yGFM*}qtfErk)%_>k;?YoC!yPX5^K*)6NYU`YEHC?(7eysiLkSJ(nv)v+
zGq0qEQX104hEd=A9O~@GH!CUIp7pd$D}shH8XnU4hxI6{p`3<x8t&InUPA>9%``OE
zP*FoA4Yf7gqoJ~fDjI5NsHveUD>|SqAFNap^5zMLSJyyXaM|ItG|clUf6vS5oL0o>
z-U@kjG}PB{uZFrB7_BEra$=TBn+6&hYG|Z^oOws474_Yk$<)Rgnuujn*PaF~G_=%k
zpH!Erp_PVg4LKUJG$<mfV!UBN-o#dU=bv-h!=hfhs(3Z{G_YiHVrva;G`t~oF*<f!
zL0ifG`e21w*j>3A@-*a2m$nz|py2@_@n()e0S%tcW9X=%P<WBx+SYB?Oe*Z8;X#RZ
z)<C6;hL6&U*3ZlNEUk!H*oLke`fGTU15sD)rr{9{-8FolR@6g7FAcplq)t$KYB0wZ
zd{nL-SCu{*`iU_Yx4s(wNGr-}naAY?=|uxHJf`6}4I`SU12sIZ;Ta9jY8a&92@Qia
zJf%5nELS0x^Q7i1yl2K1F!gB-L)eGuMO=Sq!1a)gVd_w^AE9BGhT)pCW-|4z!ARZ$
zn3}GtUnxYEGg`wK4P!No)9`|Z7d2;neqIBUxSVnUXU6dwUefTgWSk)QaC#AoohY1^
zEQ(jk7EabMMZ-TDu4$O6;Z+T*HU8rmUeoZphNZOEaJqpyO~cz7-r>atvfj|}rjWNJ
ziK)jPYCm1W3=Q)&EYL7h!z>MRHN2}~HhU?(Xbua!>I`&uO(pr}gmS7!{(JOW4R1|S
z-dm8*SNh*hFCt$kPR=1)tYMLc_a&;O7jX)FAe_#_)FtfgNrfEfk2EaPU}y-_oiwb_
z(D9S@0SzB(_(X%IL9N|(rH0$H)Io-K{RY)9oYCHg^L0txoL)p5<_c;EiBGbfj7Fr*
z7bg4S8loCvlElWFq90E$dTx#{p~2E%Ye;HXB}2fw4+oS^au+9u^VZM-H2kRHpvFIn
z#aa#9*yq=?X|PVi1`QiEtQXgvcqXe{GG~*9FEnfs&)+Q0%qx8~Kc5%N_J65itLCia
zoDsaI?AP<QYuKS-r-oe`zGi8?N{_jby<5Xq^phLeqmJb45we%FctrlmUU`3QYEN;W
zv|+#CH}tV1Io}E%5M=Z_&JN)}xXPke3OV|RG#t}#T*G1U0V+o{9OcYfrZDun<UOI`
zq=xeve${YF!%yrM4L{3;a6X=vE9D68=#fu6tKk<7=R{;`quB)%vkv8RfPT~PyM{{|
zF3Y-lflb|~Tok-}@3?#S`9s4MHinOC`2~M!&K>_R4RbOJ{uX5Ps)&1^^pRiJa6>~2
z9W8a-)NqUIt&V$i{LAO7lLhHIGIZS5@E=!x4aIb%>L{TjMTbX6aUG9l6kSU%q9awy
zD7r7hSzg%Mk~*eNDlDZVP3Iqa=FA#bz`+_nwt$00%hEcaqk@i#I$p>qy3w<sjE=H8
z%IPSt^XJAzJxi%`Gm4hq@s4X>klDyrNk?TJ)pgX+QANl6O1@yt+-f>#P*reSMiG@W
z8AUa9aN^W0T~teVCQ(Z1BF-SL@P`){*3q4L+C)cP9rbk7*D<(?uYrz+Lhco;wX=X_
zDoa(C)<{QV9V85GOBXS3Qz@aD4*Gv{;eARMW$I|9BUeXz9sUV9SvuM@$;%e5=;%?#
zr|Nj{p4<b|3UYLKb@+6&*3nkSyiR#-blfNQ8@Fed`Y}JdjE{N8lrCx~sWiA>$AJlj
zBpq}-prfabUOMu0<g-j2opom-7w9O``4&oEp^llQi`c{LYDPPX*h$C9X)2>#bp8$~
zr>l-`Iv&z7dSXtvbkV~)-vrAed4y&!=k(A~b$Cv9;jEO(uF^%!)muj&9RqYcrlYU!
z+~4~N(s{`H(+70t3FpzZ>iN<|o9E{YWasG6#}z!OgDyQt#}hg>jVoB2ENJ#hAxRpF
z2J3iA$Dw2a%@{bHpV9HGj)^*6)-hCf{(R&m9miK?kqpx@T$B-lBk7Q<Ge_xYf}-aH
zM+=S-94pAAaXNpH<=DI+_@b+iXIIQGq|U-8NELijbdru&bWGFnh7O)NFj??*!6|fR
zA+L(@Yl2K-c3KkO)KU8Byu&(<(Cc)(O=BI?>G?V~=$OHAp(E)C>6oQsHa%9y3LSHF
z=cI*s^k*G&g){oDRP>%i`|4R#7U)>4V~HpWbu7~HzK*MMhyiQ=fFF^BFV*p(j*oOK
z)4{_Hn#L9C<8Lc0fyQ_3$v>uNx^;abWTjggQ#Da^!GPf2OwXa5JVS@6Bd#ONA<M~&
z=!oiw>6qfpJMeiP6%t}Xhoxh+j!$*iI+FAX9Z%n<Fm;JHkL3D4`EB0KCt0K8GaaAn
zSj$WE=22uh)b+kTma~qN;@y0bX5PG)yLvb3*sNm<T}bDPjyYcllH7MI=Sv-1b$qR3
zA1BBSWqq2ujoqH6PLC?v>3hO=3hokQ(rz7lT)tPwSHd$-XEBLkzm9KobRDRmc{Zcp
z>iF?y<^k9KJ00J<{0AXF>Nw~shlJ#HR*vd8#*PZ$Z~(`3oY2udfF1#y)Nx8jg8&)^
z@RN?yI{ssUCDX<)&pD&xXB}sCeg~DqV~u~&agI)|W97#==XLz5;~IO6haL<5CHT7_
z#S82Z9hY=m7UfS@|3k>jaK6guA*TfYt>cQDdR53jf|ENsXER<Genar4;4R(-gfR8q
z6UBbi6&?kDhmH|IN&ub!Y6bXpkkhc@0b~SFT6k&zB?2fZyp&+MwW(=B(gkThPY(V<
z02KnL7(f|UFB?EP;pJUr{Bh^NjY<-&7C>cJuM$92m-F=R>cVRX)^zn|J3Tx`JF+e3
z9#^RoKwX#D6H-5bdtD`CU23BM8V8^Rpa#GL{h9>OG=TQYb9e||*Y7i%1;BF%*`DT-
zr9}WOg=D%Vv<e{0<%JhKJ&tB(GkX9X0>}xVg`89E4Z!Exv<{$60QX6>Z2<QRY3HV%
z9p=e(IZvLfQ91j80P+IJ4`A)7%x0IJx5x^_pi2OSLW%@C3U(5FP>`0L12EVA@1){~
z0(e;Tu7ceJA8{=k*y%k3=oP?>0A>czJAgg`JQl#f0C@0z-vIgr&|i#qt;l&a0G>tv
z_YrkK0CU<Ye^hMC^V=&|RUZ#v5Iv!u@AUwl2;j*8UJc;200sx}Q~=Kh@InAjOCiGo
z7#_e7;m-&@D>zh;Eq}~TA0d3StBe#fO7J-j)&}R;RfaJEj1_U5YuRSF=SAU@TxEO!
zFA1L@IMLN#X0IB~FTr1NmB~V;1TfWAx>ZRlJnPlh=X|h1p-W5)p#C<;AKnmyHv@Rf
zwR~I1I{{30m1p~;%nD$30LcJWv9AJ{8-Ni&nB%@yeK&yj1Guu$X~27uWuD-C!36;<
zbjw*3K;*RZ3!@J>904o|U}*rFq<$#4!nOP;fMvp$yGry}v5#H;NdPNd?&tU}b2?CW
zm4J|-U`UW27zv<zowmMjvZC~ABlC;(PHSWID=~-*CIl@(rrI2OIX8H6TH5LWHUzLS
zfKT1jHFt^N=j?x1Ul+i7mviN*usMfE;%^GzivTtUuqD9#^c?>6!<PYU4d9yqz71fT
z*zXqH?&jSQz)qL%3LrJzIlOC+D0>6=DuAzr?{{tX1@NpK>Ps`vlwt>5{W~G2nx}j(
z<OjhY-PD5t(CwM!NB~Fa+d;e##4#@Z0W=DtaS$iC_y=$`fPc8EaPbe|uK@lI;PR#H
z(*c|b;AgHI{+xUios}{#2>#-he@@7G!CwV`3*dJlTQ)nJl^2Cy5@hr;+avr>SNS?E
zZTY?4_m3%80?rBZ3@tb1Tnpejr{tTyT0z_p%ThtyJ%Rsb0Jj48SH#;~>VxvG3(tQG
z;EssJTqPxlyMHZF+*MMAln^W#MEMM-&(nfP4<aLo(m_;pEfGWo;bjEN3YK$I%Lmae
zO%B!@pIK4FN<mb1Q>zHc$a6ffn(*p^HG-(=+Vt4r;h##>mgqe})Cr<)5cS;DhC=EK
z-Wx;%SLgZvEOXhq)FweR4Z;^hYhJ~0PqQFe1ksXh=;UiI9rgStIhjGU3OfG)G6+RH
z>i?C)N|uzPxTUE=vITR3@Va{Mo@s4@xG#wQK|C5nTV8As-GX=|i2H-c4dOx9vV9N*
z!aE2)AeiT-=1beyV1~jVibU_|rgq{b%jI+yrHkN0f)5LJ6=Yuic}jQT{G*DC1Dpdh
zdj!!lh+ZP{Up#sX=_A-zkT(5-ShL+3f&uK7s_M|7^CudQ1u-y)$6cGJgbWJe2_a7k
z4t7(wn{ouGM284I6U4J_YS+@mhXpY_h!L*xoRE=0j1p3?q=2<Ej1FRqC}Rc32~vMy
zUFwTLj1OX45Zi-zDToO{gn}@Fm>9&%LCgtaZV;2`ocl9p2Qlc&oL7RFEZL_7F)fHU
zgij6PRUxklzAnh}dEo7v!lw(qCHS`BJA$++f6+5T_)NiBu6}5T=cmQWkbEBxR(&^!
zPlDh*<-H*01u<W2J_us5kOe_36tYP0eL<G|y!>~}5{WJoT*^X(eB|2v{gZQi;&O?u
z2;yT`=UK-qh5H3HL0vE)7!+jQmycwGgNOvNI*3m>(C=qPgILAM8_tOZ(Pw?88N~D&
zzPMmQkWniL+vUk1s#Iu8vG+@v3u^h+u;d_uU*yaRI$Lj_OGTT4SnJlfE{OFm-w?z`
zmsgrv;tS!MU1duUUkcyqDxdw7u_K6`K^zI<Xb`)C*d0Wv<vE9f*u%*sw}8DtTz*RB
zh<_Et*Fo%)yx$4#cgy)Eh;M}-aFtmHo#*85CHg}UKf3xsAv{(1aFE|r=VYhk@HpJF
zCDM;^<qzUy5XWU+@c%(LJC0n+JQc(rLHx;eBZ$+I_Y4h!_(k~7K@6+s96)!@E&oCg
z=Y{_&_?xT$9z@5&|M~yLATEi1*-agC!NX(rPfk~BSNFADpLr#St6Z!uBI_dl3F2B1
z=Z@k0F<j^3A4KXJlvsnCLEH+WWCEoU_&12#?8Yc|Me$z{cX%NNP8lc`LP`j=4cueE
z6GHJ2o)6)L5K==Z5rPte8bZksN`=rQgoBNhv=Gums2{?;A!LM5I)v&W)Cl2?n(F$m
z)FypYgiwaLdKQ!o{qHVQE`;(SRFG&z!73qC5>nZ<`8PYIs_<&A^833fHAAQs!ac03
zR_?<MOS5p2+95pkltRK#N0RCa))V}6M@9oSwU62`ghp&?Wu^Fm4E}Dqafnx^eEC@>
zdH-@bO+#oFLh}$>gpd_N)RR-bQuc36m6jo7hVXbyX%)hc8?*SqbIA&|#S6;vmf7E?
zWM_wv6T%ZAJQ;#F1YZb!Lg*{iwGLs#w$yeZ3@M|w5xg&iFK&9<N-D|yBGL_VLuemD
zhY%i+EA0}(LqhUG$Pb|)ghGjS5-bvAu8tv0fpd_>gRat9NZEg!=hcTp=;7*JL+B>_
z5m)IR!i~qBqaJ#S(o3+noBBw8O1}^fyU1o37()LL9u470qg?Jj4+!BgNn&(RdF8J7
zcnE_ynoYB5picJ<=5T~CG=yOxJk4tiq4gumvmty_U3rF%F+>@**;Da&+9SEj`fAFS
zG~aM`R0v~27#qUK5Jqua(tXc`uy|W)!{I6e$><O^jP#X`EB=wbKmPGHeA_!t3Jgv6
z<zMr@7{d4vE{1R^gqK2?5aQ4L@m>fMLwK2f7{Z&<=1C#E8p3NKyb{7>wz<5*)=mjw
zs$AXO>!niJP+t!rRLVC^E^5FBYVx#az)a<>5Z(@9MhG)QcqfF-8NTUs>|P3glYXv5
zt6nd)r_C(UXNNFHNRMAUbA^0;E7!L*mB?K4LYN=I$q-J3upoqmAtXYuLiqYsbx{a$
zPBi|roQ%Z>?1T`Ogs?P(fG8gdt`z(zgk>Qt7yhx}3PBF*;1^RqaruR=rToG*LEY7d
zH%$xjGD9$2B^p9lc*Iq@oJolZH(ljet&{@?GWlhx9YQjM-68A=VU?tA7hD~}ry;B%
z=Y@;%xgcA$A%wNU*9oq7b=I;`_$I+GT)o|F=P=<dA$%#yR#)F9WK7%C9j>x7gk3Hl
zFx6M_LuGFWU$IL=JYG^^$FiJ#A$%`3`vt#o?Y|A-fbj2JWpLw^A2`{$xVg$vA%{XZ
zEaZr*_iCdY6MkIqgsUH}mGV;vr$aa&!mlBm3E}4u&V}$vy6>#G;xF{T&7Nd)m7cSD
zWq!Xj9|L`Z{`?!=?4F$8Ie$y}m~<h8y6L{P1J$QztCvIgBZM>q=?4A`;ja+>4dHeO
ze}`}-gzKEtAzTgN+WpEuf+S<Mrd|u7Y6BlR(TNJV8Nw~G>9$p!+*|!GggbOR10}fr
z8%QzmdW!F*v&x5-;xQ2IP*B_e`QK1~?ocqJlv>ijgjU&g^9yD)^pz4me5*<&!$4^R
zl?+ri@aWc57$|3;yn!+X%1Q}y8Yqi`>6?#aR-jF;(%}!~t2U_>g})M1{<!0<VxX#l
z8U|=n&A=2(d0<Z7s!eKj;f(S;@R|m2%FFiDGVu6m@4mm4ItJ<*c-z1`2I?88Z{SG-
zgALqkpn-vQ2JSb|&_E*ttqf!tXl$T~fu;tU8P4joDy0<zmnN=A%?-3PP;sM5-oill
z={^#>x{_&tNMpr-YB&cIwK0&*TV%SgwSg~Y_;L(*4a_LzJ9Z}1=k$Qeu=<+!&*8q?
zrF@r~EB6^_o9=6CI7b*UnrrYQHaZ*VVxWV82Mly_bL9ysFpw{VZo{Gq4HQZALO->m
z0j^6t8Iky)0oF1u%}0F5z{3Xm80c%DtATC?dK&0u;1LO-JsI5%XUk*hh0Go<;Vuc4
z-eN#;PR(2@{S5Rs@R)&t97hARU%DlA00*UJ?lUPqMv3~K3}$>>${`tK;0c$rkf#hh
zZD72CmkbOs@Qi^G21Xiq*1%8$bo=3kGacymytH9*UDtOgyqxRRlu-trGceA;^9DxK
zZJH}%=t9@LycY!1d}G<vT&3`B@4({9+zemKt*IQ87esu~z~yUR-e@Kmm}p?Cfmhj#
zed@~wCL7=oPcra|;oOO4ZA*RPnwNK<DbkD%TT{DKQD39m8+g;eTkQF3-lf;Q)7bdo
zJ{~sphKxQ59fNIPQ4g$BrgOLr#0;492LrR%QEaV&+3ZHTtD!7n8y-{V8hF>hdo1~m
z_gtOAc?RYiSZLsMim(1X?dR5Mzkpp`$!FAQPyB4F=hs7C=6&D52L={PIYW1+Qdwdk
z@36O0lib$3vpzDg(tzK<G6T!m&%3i$2!3MVW4iS2EG<i+NV1~8S2Lg+2pKRqf*HPm
z^hr>7_Mvp%i+MS(?N@F+t*pQ32^)xT+}9~lL6Y&+mAHX~fgJ{R8nD<E2G$$cU?9m}
zHSn2%&kg*oWUppw8)c1wPw91S6ms6nf=88kZIrbJj<i<dud3_l2~AWk%O4%`=$E`3
z4Qyh+UH5L|Bw~{|Plu~t8aV#6qL1)V-y*3iGP0>}WrxU9!FH}Qaplfw4{dfC*lplD
z1K%5{o~G<Eu%E-%QQd3cD+6B}*vA<iNbmKl=iaG4-W~c>bnqK#&$k8+80hh<hvFV@
zJ`H~0^kkBOqXrHdIAq|k0XFsjg>E%-*z8>&XAqCEod!;DqSee<ESEzw5=MXG_;SIC
zpm79e4E)Tg5k@GCvj%?QL=K~480QR}=Nb}5P8h!$_>JpT7!ATW=23q)aM8de0~ZV@
zy7iY-V%w$4Wdqj@+%WJ5ZvmW}%ak4Go#(y3I11x4|2A+%$W=iq{}{L?yw`r`OAn3+
z?}j%G+%oX5f!mx`VU!KyKLd9Rq=lVAiV3C)GMW;GM|g2psdnA@a<YU(ONLR()&HoH
zk}f<$u(Ycq3??xPL%A@jhfyPp@?n0ubgHWuMin8I1S`9_>KW-(g;#Tx<71pcYKBoK
zjKuzoTB6q$yvMb9<9e~W!s`jvclEK?i!}_RQ5em`Xc5NH<KD($G!3JPgx_CMTU}N1
zn&vhOgXB{b5nG0l8AetZ3PsT=GUNC$g(M8Bh`(3$F)->4!xzT=VdRF<I*c}9v<;(k
ze=oy*VJxYvl4R-%$*kSpc3}{g&rWY2Mu#x+!zc)&=Wg!<w7ij(7siBF^E3N<C*R1*
zSe#K9#@8sSwA<U%%Bj&fr}>Qbox*r9jFDlCVijR@31eUwkB9M47!QZhJ&Yb<9*LuN
z4WnBakA$%<U*!)FF0WC_{+s<}X2Gs0YR@oUJK;UG+xu7;y}~f|cza70=IRqhUzhh2
z(m#wxU1flfDk}?lA%FJs4hrLmFouNjOc=kRsAs2~C&OT~83u>Za-{l{;L~BexW~)r
zvtg{<<xMNwb{MC?5oKr?dHuW}EXf}p#)vRx@ASS})yL3um-o3a4&C;?z>Hyx4r5Fh
zW5XC1#`9sU@8@mM&l{YX-@k*p<$3k_o!-K2p7CM4#Hz!X!rlvGVi>Q4or6XTk9uDY
zBdtu)q%g=yh$W7CnRNT-tf^tV%CTV8>=5ym@%8htNO@iOG{H9n-wfleFy0nEUGN=2
z`sA9mDKlI?lLdb1JaEnlV=hNCjHO|`E2)dZcwfkSVayXUUvPooLP2J%w<!ICFc=n#
z(yWa0DR0wQ=c|d@i_$+7@e{$1!dNC`x!?-Hj|FMWRuNZ9)Gw$B>R|+2n@1AqMi}8R
z&V=!E7?CidVZ_2PIa$tSP1&SAa$2czzY^z+3uAK_Tf(ryu)|ox62eG^u_}yDIr<fR
zs|87>f9;ugTMcKb<ZE`Pejdi!FgAv<iGIkj6SEEMrA|H?(DJK)y`3ufcyb`a7wohq
zx$AbPru6kP^~*4}hOsM*-C=B#jN1ii##DwKVeAynav0_H?g?YS5$}V)7TYV=_?6(-
zVeAWIe;D6{aXgF@VSF3L0ZBR-#&<$~5d2<{<urUN<wut%=BFGA<8T;9L^<Z_M}>5g
z0XlNU`JVHnD5nHxm-YQ5<g_4D_0^uUVf?}+H-d5zoD1VTdwy!>6|VoBK4DzuQYlXR
zdl(nOxX9tyo$9~sC0+{S;FlhT!dHD%{$#g2q1GIw{2j($VUYA`o1L>uIkhcg_Px1R
z!}uqRYrIUKay^V2EXR}m#6!NDT+>P^vk!ZCN4^!tzhT^#wv~)HOYwig?}Sk-f)r6w
z1)1a#Qe4pI@s)6OuF0i@r$vw+L56S$mUeAge4J9o<?}zuC?7$E2x>*px>at)2r5O8
z)+oDr1f0d?wx(5%ph^T~X69Fopjrf+=A7(Hs``l4KT&FkaZSNy-zXbzduvB<k3{PT
zHi)3E5SCdlg8DAMH-cd|y%dLR%WfFKvKu+9y-5U3d8JW!qG%RD^9c4uus?zp5wwh;
zAcDdOG9zfkrbf^vf~*L3jZoAGvV|xSBzC4!$&sipf+IgE-Ut{-s56k?C#ks+w2z>z
zaO&-Z+%L#Ncz9-q2o7vi@**IAAcBAL)iNi%`67~!ypdTHLB|OCM9?>a*I!UOMeuM0
zT_bofg3b}t+u-REaqcM(Mey-WZ_5+j>$|+aKBIJt;E@P=M$jvQ?!2N!={+I{@AlG$
z#sfPk$vm|;^)+csB4-xr{UYce!50y1mVtXTf-w<{jbK0ok3}#rg2zQ4E;vYVh~N_u
zJSk+b;8TM1pQj@jDbwT`S9vyqp~8o`%9hK;M!0;WkWmplCuFp%A3axW99<=Xxe>f8
z;tLVH9Kj^vFA9#2;3Xjw1Sblz4O|ajiD0rsXGAbX$m<bI6EZb|SB1PLNPE`xhVZuq
z-xPeyO}+Y|v%0<$!E{lAb)4u-H+5D7vxU!bm4<E8-iu&f1d#}$5zLQZK?DIwT^PY4
zA<H6o-?d*F!3Qp19KjNo*IHWmq41Af<@K!@%OhC9aTmoe_=%gkl0LJ?*+bM^MHkX~
zuOkK{2uais47)aLZ7c#ag3lvZ8$n$3q+r6eu_CZt{?9(=@p4rJt3~-Vf;B=~zgYS+
zA#_L@FznpyJg=^cV7=%Y1UCv&-xL8okYq~)U(#<o<!p~&YXsZYsoNxaXpAzmjPsa5
zLbDwa?3BE_1b4gT?1^Bn@UL9uYxdy^=k17ZBKVeTZv^K#xgz*3g5wdKh~WDOeu&^`
z1bm`6QA_<Xg2SB15gd%*Py|0-Q3?Z!uS#}fPxhfc>UW)$14WK<j4MnD-}%}FKlbyU
zjNlZX_9OV2#dcPH5<JaGv?G;KhQssIjeB#?awQq6{1Sn$hjMUR8g)j0jo`Nku19bq
zg5M*!5W!y&{2jqXc7A!~as+<}xkOi=p;BR(uq!p=LgAmHhsqRDxe{@{JNieIt6YsQ
z6jG%9HOVz0Gw)`^`Kb7B1h=`S?asQzT0Y1i`A>9`I}z|BByEaC9RrfBWr~VNks8I4
zD3(T1B8rkx)QO^Q6s4j_i=uKARia3bA|r}&QIwCObQFk!eOM-nUJcaUq4XQG)7e*L
zqc9uz-a77OXI6;fY=%-Xib_%3h^3EfptjlTVHVoZAil#}HHzv{)QEz-TGV;uTX)A>
zGm2VVu6KIx5oOoHbf(shf=M)>K4+3zFN*q6w1}c*6!%7X`YW17aXZD=y@9V`6pf?!
z;9J!jOK%hfl{TBQn?%v4at;IaW>Hl8tAM{nZ60-g`&p-tH#3S>?20JbM3EJR5_MK-
zZxm`2*-^X}%*=`6{;BGPjmp*Xt-gOZ^Gul{ioPgjrnlPGKq)&h^S&tBMlm>wr=n;V
zMY6Nflik8xQRkkU8%6slIz;h66rH2!5=EZqOe%^ZUwDD56h_gz(0LD`qbQwR{lO@H
ze9D;)4~g=Kt3NEHt6(=a=|jh+yF`1qHdp3*db@mpkUoNa*#oZLKZ-|%=S*@|Ifln1
zIxvdIg$xpWLXfFXa!hMDCwo5~#gHf_M=?c`o{3_tkY}S98pW_EhD)?VtLza%o)a7?
z$n2wpy!BJcXdz=<{qus9aZx-U#S5-7LCA}O;{{(5{9#tgL?JH=P7-9vuSAhj)_JaG
zm@49eC|>1&M)7(S(?ppY#T!w)8O1D#z9l$a@NGfneJ9G(be*UD8Ll!@$g;!gY$0=8
z{nbOBcZI(vIM3DRM{#A7vlp|_RTf3@zVHuRWpNa@<~uuvA4c&}6p1LTD3(RBJc`Gr
zs-Y-WMDcMHdKBmTdg*wdM6ogozc}HbH`1tRQM|k$oxVpeWi%j3K|x0QmsgD_!cjz`
z&f`ZkidYo%-t#rH+n&lYIS08*I6@&`_j)D`4%Sv}dU6z-qWB`pU4ZmeY-*JMHG|br
zd`iD<;4G3~1=H8iGp{I|(Q9QXSRcg(&ekZHx~ZN*vyHM)oLJ?#8|8AbIf^Z;J&Ns7
zd?~40Wlgxhk;;XX%SgMG8C)=TNFl76O9vO#-BIk}Rhv8^7JH-kDvEJ2JRif?QS9R~
z5<|@x_DAte6n{kVXB6LZB1ds5il3tRE{e_5)PpQg$oEnFAmqm=dS3Q2>CQ#(;V6!X
zcp{3Uu6|6&-#b%jbDWD_36+H5WE7*Osmyy?viuUoxhT#Er}(qvIxEpWwbb)b{2Il@
zC@yhW+bF+9@$?PntFzyuxF8B2-5HqiiB0O|sPjGB{KFpdT{+5MjB;^~p+pQ<qPQBx
zO}Yv(tp3A+;KM%`!!61+cKgXR^+RP^6ZJ+EFU|K1YMA{mS49p=8zm)%|Dt$uky0!M
zmU%}SZ}#=_5^A<lSRHLVF%*yC{i%-qtZ8b=7)r%ZF@`D2ln%do(qhPnp>zzV#wzJC
zr$+F2t{BS1P&S5gF{eG74tsvD=)2ikDIaq#lV1Q1YwN2Ja~gSaXDYE$43))_d8@=w
zHHLXPO0^j7H<jwbpK6iqc{P)T)QX{Y4DDm+Aa&gnL*p2l2(J@E-5BagIrXLRhQjZS
zp@9&#r2hrAQ4AByw`HYW+WMNt&@6_W7`!nwmqOV7tQcCv&{DEw3bu-Y8EMaMWL`xq
zRo6aSY?#p}W^H3=7enh9*x)uX+$YtYu9M3^<^C8r?wPHX+!zMW_q?+`E3q|oX-V~g
z81iBm5W{0J<i}7DL$??niJ>rtBB|)%7&^w#DTW7Q=q!b^JuHyLvg$4|JS3?U*-O;V
zd|p7kYYcaz<lSTF6+>?+t%sD*GltK;R%x8~kgty@{bT4GLqFknvorP47;ZeQ@Y;z3
zW84tO@EAsj&7c^bis9)Po{%VwpA<4U1`Zsf3`3;GXJdFq$ni_wyZX==hQ+`JGq3?8
zV;B{~*cj-jtopeaM#nHF=6rR`FF!M{r%mtTqw9`qk-PLB<(;;^7h-rZ2A_%6CdS9`
zQVf9@f-y{BhsQ80hS@Q^9K)m--iYDN7+#6t(Q>}2F}xbXWO^^XqM!Fni^AsNbduL%
zc%4;qbp9-0`TV5J@2hXwD!(%2XWqByTIs&&?3pwl$=ecrC&vF_DPnX+3^PUHE)1jZ
z)ybU`!`v7?h+(m0c{hgnF)WCIN$=60W8fxW8`=0<7y~!{-skL_?pq|hY~$Ra9kLl6
zy(@J|3`=A9IEGJR_%Mc#VptvncOsU>@W()P*y0Q#x15Go%vr%HIm*|cjhW%&{`JZj
z{4r=TyglB>oeq9sK4r6qn=CqgY^K6JsZb0?3^h#DG!c#=!U=1ltchq0F*YWK-7%Ok
zXVWUdIU7S<_!o6^sn{_j*|6(g?waw&w2EHDhxQm&3;8sLH9|fU+!({>F|3VY-CdD;
z!9v!@u(FZ70r<7^3ezSx^$Q`JIdR%MPwZd1`qmh>xqQ2j9fCV~71E47G3@0^Wg^wY
zS264<pK_9m67K>r?Bn_$!#84oB!+K={2<6G4#e=C@b6uP8xYigjNzcG9E#zvaPGA+
z>8Pt8i{ZG-PsH&3SI)KkB!hk?hM$F;7UZ7MS&n-Q*EySFI2Xft$#_NZSHVAG_>B`*
z_yxgBf)`_0lH$DT&v2Oo;Xb|mDXD+O@V5|d8Q-<JD$##pxF&?+_is55Z#QGO<0`je
z_*eLCSNV@)I{bhCSY6CSis=k1gGb1ouQN)RC}}!-Y8fWDvsuanw?`M2QOMIoNjIG_
zWwf*j?&UE+2scm5nJ90fvWY6Dvwc&+L`4&oOlQZZTD{yB!A$P)ttz8%L$Im|$3Lh0
zs+rD4Ik&?3qD6JndEKJhNM9`zwN11z(bB{{ChC}IY@&&Yx+XTXQ|p_!*F-%N|Gnai
z?DSG;AbKMc@0|BE6i&iaCeeU;Q!#FCqL~Rs?<Ns<?eJzwG|PlyqLq|zw`5hy$u^Pm
z{}s*xnaeB6C+pQVChjxwyonb~{*fNqnRvp)lP2$I$TiW!L{Ag#O>{8vkco#)JYXWv
zM3IS(Ch|=bn9dGqp^4{8`HT!7IdS@od=l<HcQWyyiO#08<4lpt<E0&gE+&Zg+{&fi
z)x;x`y_=ZPhIzY-Lc(JCm0&Lu{Y^Y-qPK}YY~d!guZey_$a|M9BHpN3NE~3|aT9|~
zJSM4iyB7?+Yxa;+4*!&-{-4eR#$XdqnHa@d=qIML+4ro8p(ciyct)ZP4|^D>^UKL$
zrn6@^!gRi<94^SaKb4Ut_!T9W-_fS?`FgC0B^y+dG4z2xIkgVt9psM(`LK7oV8CSG
zi(LG9fhJ~}c*(>B6H`n~H8Ifyw>4ijF^RPg_i@+w6*l;qce3gHm&DyI&Y_n)i?4ZK
zrKO3tOuWrPM*7%wubY@A{0$TA-Z!NK*<*LR`W+LCvs7*wbF+B5iDT(L&IrCLFw4Yj
z6CW_u#2gcIc@-w+^TMxtCtmWrYdWtL@kOKeOz=e`zA?4H#6lDAQ=jf^g)cI(b+d<?
z<Ik5ZVw6*cW=l*gHL=2Ue(3k14DK=$%T0VF;jUxcb(PVV^55N_!IAx#p2K=eJHy>$
zhEFr0n|L;kp>YIE1WnvB@h>Z7Y3y?o2e|&5h?rPwVjb6i6EPD>6RS*^;>`5wgI(Iv
zz2g#12wEm=A=EijR?}lQDh!{Rc=@!KZ)mLHqG94(%Ur&s@wv%mIi2rs*r&bgnaji;
zKB$}6XkwFzZ6>yx_`>90Dr2h&J{dB!JM6h%Q?{7+Qk3+S85G~yn#w@3!^BP#yErAc
zrrxzA?shH9Rm|q2>{llCnb=PstB~`x={&pgq52zMpeLKpa*VcZqj0DAI}_iVIBVh;
z6IX6|e=u>_#1Ruen&4F*<TCYj=H8v&Lu~L)Z|8TEqa1M)Kbbgf;<zkdCpbFdTB++5
z`qe3Mu&!@;8KtM4;ruG+qxaHXe-;O(4_Dfqch1Cl6Mvcb+r+OXexn;#SN@Q4em8N!
z#6=T)+l}HS6PMYHjVitO-LgdmMjng(q*!};@1LAp;=@;Dx%kJ#HL<*EqUsqBZ_vZI
zWo+VxiJM$@W-EEyGx)v)@h-W|^^I$394+IxW1?6b)#IoUM@k%?ILgFPHjd(Pq{cC%
zq%R{5zKv5Nj#6=?#ZfYj_YQj*1|IgNyL|m8rJ9}cMh|;SOBM*WznI4C4CUge7)PZz
z%EwV{x{rA)#6e?{%3@hn%BdoSFDvO|bxf)j2Y*D&>^0-46-V7T>cvqz?!3&9QAW8Z
z4!%h>e6y!c9DL)BBC&oP_r}pAj;3)mh=XrWHHzaW<nvjmVcdBl^8BiB(lr*5_ZmJy
zHH%|@ne65?{>8(Nij^(mRLzW|RU8k;(KU{&IFvX#uoL1?<H(MqZ5-|5$ce)n2Omw_
z2>RkU_Cr={;Uo;Z$`;j|t=<>Mzcce0y+4jq0~KSM+FnSm;MtFqk>PYc+~&oRAIF1n
zbdIAS?%ZBG#?dK`Lg9=Sv4#7b*OOKhW^;n`c1aKUGTqlD?%Xf<3Jss`9*X0avPE2N
zy2bHG90TKcJdW<{pEwrTN?*aAg1zJDC4_ovxgug8cI+-MNxwMy$ML9}8e5n?K=@;>
zLNm^YL2OUlnHo>T@njtQ3T|*5%f9eD6?bOSoRwLR{gr+5vJ-}g@=P2JOZaF%ERNxE
ztd8T;I7Y-Vl06p3j5tQc@mw4e;+Po6=s3p2F+Pr$I0SusW8-*U2>Cc6e_ksfe?j<*
z^s5bdj52(ek>91Ck0+rqyd1}*I9_3yhjVxs+UfJzljC?jj%jgBiDN2#X-fX9oC1fl
zUK37oZ@D6hZ_u?)df%eM#POyWP|Pn^)Maiu3wcM3=XEF;`au57IA*c`<5(HTY<5B%
z@5k{$9CPD%m*comSwP38gH`s;BgXODB;WQr?MvM#D0f9^^Qp)8sYh+#TNuZJ)80jK
z)UVr~WN{oz;`lI*k2p7bC|psO()YF~ku9kVd?{{O94mMUma<%sO4WOP9}A~Q?vF!@
zgTJv&$dKuAgyJxS2Lyw0EFaP4?zo3J6XS@*5#f9nPw<>o=>}#TaWU)gs}rS2!iCX_
z!)E`)v5MpPpSSDG{4!s(r(U{Z-kLZ*i{nfjKgaQT9Bb(waeNiWI{GlZD~>I3=Pj%a
zacrWWkM}Wb6he{V3l91v56PEtY>i`Q9J}JqjeA=h+vC{5PFSb#F_r7yto5Ew!A!oa
zwOeKfSGF$0eS3r}hBHULj$>aO-^cMo9Q#=*$MKH$fZ$JCJ@G2OZ@B^p`Ho#}D78l_
zTeqbC7<Zl|*>5M~I4FE-Kkp$ShXs$saa71L!Q+C=azaQW6Q@{g9H*u8Sx!z_AF=6e
z?^#aFIR1&_8oOw<=Ug0@;<y~g`8a+R|NJeEi*YQzt<qP2kK=-f<SpZQiz_=i!ylYS
zanQqe&CUNaj=$pgJB}6`@)%_xxyl}!n@^E=or`B2#S)JF%{Xqw@t@?SWB(h+ZH~?f
z@45Nu*?oL0nVb{k4qJXcd*4ZKN&=pQGX)qeo<M2>oKqzdVA7WNGnSt8GMbh^dII@L
z6eN+6K<NZlTJT#y0%e#tfmI2VO`u!?eG}-HK=}kJB=B$oT@$F7K&1p8NFXnP$_Z3S
zAS(eSfvO2qOQ2=qf1f_8C(t5+jjKI15~!I#tpsW(&`?tEac$}fsUuiJHoWR3P+y|=
z3N{erXPK$hoX<gx5@;++6Tzl}&0L%23AC>5e1qL}O&T|wG81UU3t8payvoC4Jc()o
z*$H?P@Fko#TbRUmX>xcKJ2FUGC(tH=`xD4bU{vGW`x0oIK)VE(#3-@Lq5Nk~c;|M?
zA#a~R2T7vBXxD`*ZSoT+U~ea!y;{C$Q<%Vrx@xBciW2C^u3M-w*WJ9-A7r2G^>$96
zM#*gM>(Txp$;c$WLc=ZZZV5b+K=*{R_rWcXuLdbS66l#guLOE0&?kYn4|y0`-tc~E
zDQ_L}Fp%_5;L!voCh&3s0}^<Q*OI_<Eb6o}Fo7o$cvAS|f`byk(+ZOYlict=o50Wn
zo=Wh<HudQQh9vMz0+-LJ+;br^lvtq-OW^GL>Ilg`T==b#O2r3#J^%HNOyG|@c_gC~
z7{eZBYj=CcCa`0V_jwM@Ua!8&Gftu(uSt7>qjOc^OFPCMFU`g$z&Em95}Y9TPX%RC
z0<R=6Gl5wNaMycs0@D(BE#bVNH6?+m3A`$t$`}2;uM1y&y@1<}jJ}b;n+d$dUP|Dd
z1g1-4vKM%q?0Yjv${usx@|q#~A4k2j6PT00(gZ$CU~U5MCa^GpMRb_|yzeCtKa({-
zfq4@Bvy<=j%v`>Vv>@S}fZAbg=KJi}az(4l6)omq34eu4ak-);2~Z>_9_^U%Q38ns
z&i`JpEP>?-tPsDAbGG*Jek}YGPQwKJ!XtuO0(t@g;dJa!0zsD-Uzl#VJS?Q%3TIOz
znm|mVrkl#QVmh4ja%*f!C!dvoEp5pDTG_{jCGaWdsfCsn*3dqIiwRsx;PV95Ca^z&
zZxUFS!1@GsC$J}h4V=*lY)fD}3+e0Kl)&Z$wy^&b_<Btm_o}Ma&;3%8`m9MK-zuDh
z#x&TGz%EgCa=ECVJE6E^f7gZvds$a)wM+-)E0!h&G7I&630xVWl6;%Mfdoz@a54eD
zmG@l&2NTY|=l2QxK-c9SCEaz6^S<A=Rei)m2^^*$hSF)na72ucCU8s$mE%IVXL>4u
zpAtC7wk2>nfk`E^e-=C=$Y{571!rCUi;&^{lwa9<mhyW77ZUhQIOoWVN4%8^)YqE%
z_^#UboHd*jTre$Ew(w^HfAKe53EWPAFB<(#XXEE|UR?rLsccjKN#I%n*Aw_LUwwQ^
z{`%wIc^|3+wyOs`%6FyJo9w+O)LRJ*u8`faMD~9P+)1FMg;ExZSxB)^+(N1azEH%!
zvh`T-9#db+FJM%AP_2G3tAypa@w(C~G0oz?lb|#gd<z*Cel1kF4p2WkNSSoh>pkfu
zf8x!YG8W2O&Z}9qyQ}3a5X)PrAcVZ4)J4MOqKbtY7HV3kYN48i>b#rW_VUFiBKv`)
z7IRr>V4<Ofdo0wkP~XD67H*zW%6^ts*FrrD&o}Tf%6i#ywugG^XK5sjEHt*z#6nYE
zpeT29(V&@y=2FOW4V}CUB$*akS$NXIU<+9m6blboc-Vq!A=^R+3lFg6>>msFS!ip)
zXQ8!)bqmssw%M;7Q`%VgyN()Olg1HYl-SM!Nv?(aEgV^smNQSGL3<H7Of<-|kZ++#
z@jhswz(S#gJ04$=h4y<r!@gA*8n^Xyw9v@{`GxH&!`yROwC`+T?q@k&EJQ!c;lXZQ
zEnMoT^s&&_LN^PKSm@3ge^Po{pbg(C>S2K!f84z8WuZ5FV}i<z-T!v5pXE%+0Tv#k
z4KK4*Hp8PrEL$09VZub^aSMZlte@{;l*sS|duEbyx_r)47M`{+)xxV5`oK5D!gCfz
zTX@F8vlfQ3@fNJ6>PW%iVlzVcSC6Q)zgVtlltjsCHpaqO)@7mAw#;!HTnjH)c+qm)
zoBrH(c?NOVlkLZ|*eBb+WI5uRn*|Ic6D_=KVaGOglEp`5>=~t!zhdFFLS-@s3qD3E
z@(&bVv+%lw_bq&2VVZ?EEX=ep%fg$I{T&O_Excu+<o=BE^K#y{KrFx7DQ#*neFiT!
znBHKN`d*gz$-?Z}l4TJ+r!adC$3@7yf>hqKFi-e=!3BZ~-BcFHDu|1vkdG`Zv#`X%
zQi=YuCXJPTXn}wCOmCstatkXgd@QMK1C>uK9Nd?|Lf9T&re;C6FvG@78vzSJPAePL
zZG<cs7S34s*+SSt#KIRAHq(DB#JGlA_{@UIna;X678VvYQ#cmwH+i0|soEBj?4{M}
zYVq)Aw|G{u+l%>l$e!n&%*N;QK4nKW^p)GFd~RW_g$))q(j`V@t+TM+!u)N{$$q0h
z%pkJBO;R{Hr^YYMl(}Jbi-j*Oe9JN|Y_+h>!d?qsS=i3Yw6M#<ZVNlPfK<<6c;Gir
zgOAh_#j}a5Vh_Epc{Z#5-Ol@({#H}nZ{ZsY`z-KZGpe;Jpu(xg-lKQ@I4Au(3*TEf
zZlOi_q8}{$XyGtt3L9`s;hKEV!Xd6~<%>qlZ2zLi$9H0nvL%C*V|3ceIZxgx;0j5?
zC!Z5i0t-25;gp4+ESz?gZsm&@Wzty-zi>u#nYD3_v&_O33s<>pTKLVvA6(ci{BGd_
zr`}Zc=}n%CoSVHBzD~d?#y3wcF=?Z6nORnO82yW@+4j^SmrHRv|1EQtgg3r_EL^j2
ziwjY0Cwkq&4X$jws95@4<@9~2k%k%M|5~^$%K{ZH4*v=N>AqAh#VIz**eGkmW23l@
zR2wC1q}xb=ucVDqHfAkK&+V@AE<h#C#{Q{35@Lpp(l%gY^!_X=^9u@i^WyEPoDCXR
zvQgPac^efZ`p{=-6@~EGkEwj}tYU)?q9j#q=bp$=|6pMa8#Qe_VdF^~wQSV3k!hoq
zjeBg=vC-H@6B~7HJUmIMZ{uE;&@{Uq9X`EP&I4`Pbq#DZw9$x-U$4%(<@BU-E1OFn
zFPZn*rnd8<cne<O3bmQ-Jf=3caizSE(Uy{Q_buEk8;XrbZRa(0z9gpF=w+j~?R-ed
zwvl7QYr|)wwT-SKwh?S^ql1n6gwwLEjdsHCca>Zli<<uL?YIYQ6xt|~q&yq>LJC~V
zR$qEL3h!)#Z^(BN{-B$Ba!E!P;SagW!#3Wo>3oV|=qBPLHo6Px;o9`HanN?&E$L&U
zuZ@1T^Y%WUd}>Wr=B@JZgGPT*_*`A_xOae!$E50kHXgUZ7xmk0^W4QjHukm1Cm(F%
zDfZzSWwMQ@Z49w7%Eogxo}oY7_B!YM+j!Q-P>Bu`9Bw1KOWTJ#`DXWao-G+hvL#J&
z?*G*@+Qt|g6KqVhG1kU78!y;+(Z=(Vg{83sS~BB!8!x$~ox0&=fz-PeFL>DoqYSUu
znB>~<Ihk2TmoJ)PV=6Di#%t^=8`F2CzHVb0eQdJwh7I-!FNDbGn>OAO@>oe_%x*80
zcW7@TTGjbfvY>t*Eoad;Y@B3`Hs;uvO9!^G#>Trg-m|g7#>Y11*_dyG&(F(k=fm9s
z8}Hlrz;@nsTxf%zYZlRqUQ}7&V%zz6ved?hOy$Qw`h0({b=3Qj=*#Hjt34bniVPI_
z>43$4Vq>L^m<`j0pY7SE25bav=g4bKP#655wi2?P^)PHBVmtRugFR5bh>wW8pGG+s
zwrA|RtTeBdQ}}LX+(yF2D)tO-J?ZL?`Ko2Zw!yVJY2&Yb8JkxtyIN)Q36poX)wXm0
zrSh4L&u#3ovD?NEOEcEm*l1%DC-OLDosIQE$TtY#gWnf6T0H36W@EdJ&BC_`QvA{e
z*N3eVCE;Sb!^TdwA*7^zmd5C*9jSb_++$;}jc?fi_W8fwujrFPzUC-&@-f_5nL&NO
zjc;s>nCt7@qkV~~zVB>&Z{sMJtQ+3szuq658G%ER@kjOp7qqK+n>Kiu@vw~}HW(#m
zX+=E>j@dYFJD-U80C_?PKeX~W^Cugpxqc>5Hi<JfeztLwmtf;8JB>YN<8K@HpUpaF
z<2M_>+c+;#D!&R*wx?bYa)}-&<f0&7-}*y{e`o5NovD8ccb?+TW?d0Za?Qq7m;b{F
zJ5}YXc-_Vg5$~3BT2KGi#%-?ZNt8(9Kl)g$++s<jBpq^xj#|E`RsCF#M2ibD`rOWp
zWI-t!l)S5S_GJhul|-5lCZ!9ZS*y;z(n%l*l3!wZ#BxcLPoh~8&661YT$>6>R7s+$
z@QO)X?d+?RMCBx`QEk$Fd5l&|qIweblBl0VjU;L&aZeI;lE|u^TT9GpC$V*A{`qQc
zUwTlf@LZeGjdJTIQEqE0^Rkex&$YQXi3UkDPNGQ?4U_2B*+-kj3)343XEbA58e7sd
z>73#D*QhouN-N`QkwnV}RW*rhk|Z*dxc{QsDv2Kol&mEFXqLVEhqPF6RS|_GCkby7
z?UU$`gfEHKNwiI(T@r1Q*f>Y&HdeVWiB}#`m(@^SjH(a&GcS9T`;$1fGBY;`idSkV
z2On1XuNfas@iF>95>v7r%e*9rR0@+QO5)?y_+&LYCebO0UsmDVDm<7(=OivBaVd!|
zNj#LqjwE&_@o*AdljxH~UtXqM%Ogp2XM0*_A1IaGBZ*J*vU?`cOOk#s=VO!?wK}Qx
zmaD69Fs)w_{gZeziMNt?G>HLhQW8^>cr1y5N&Hz!c_xXyHL~9ytvoK#LCODpQ}=|B
zCj|#5@syCK-P9pTyua2t&t(6$%x9Arn#8aqhD++`B*r8$!nGWk#3<p<xk}dMVq=pS
zC()M$pBH>7i5G;tD9FOcCvo)iERqSLOmubYZ|8T5lQ<TlOm_7K(Uey?9A(tklbDvo
zYohbg>a5LLTfV5+MD-21Mj9+H?<2mQ#PlR)B*CP2=!c_~a^GgmOk!3NYbEb&K}~Q@
z5_6MyH;MO>Sjwp(;yl4cNz50rKyaZTTljo_%KO4U5M1o)OOjaJ`hV|cd_;e6^<_yc
z7rw$(ZtYF^MEFWUzpMBAqnMsVK%&7UVo8|7LxM&UVIdJgwj?S<`_1_-C@%cdBoe&j
zBy5SU5=;uxhUKqz`N}UnYh3=BkpE-qETE(~+Ahoji(cF%xWlkBvx~F1I|&e+1a}C*
zU4jJ&1WO1Z0fK9?)8npqaCZ*`53c{)7wS9zIeqSV>egG;HPzMCIx`Nc^tLMnZn7r@
z5rUWMqxz|V6a-TcB8RC`|A+4Sm*AEk%@kFRY}36d*q4ISDe_~p*e}B}1t(IVT}`-K
z&UjFE-m<lirr=NtB>6Y>F!hKG@43cRuMOfKOTo|vHIAoXTzd13?Z#HQjDxdPKA8g1
zQ!+<AN-uCW1?N(5O(t_0T`Bs{$XrapCBg;SxZ5*|b2$Z9QgBs<@oeL=?HT1)Wd!;x
z%=lR-tt>ZEaFg+OsJBvZI|cucKNkObdq!ELp1ZQ+Y|r>Fvm|*hMIPRn1Rl!nnS$jO
ztgzs53ZBUBX~Ap@{!78r6uf<Gnqk4S6g-z1&w{cR)T^!E=zfucm+Y=rQlSNzEO?!Q
zHxf@XtwrB+-;v*^;Dd~6I;p8~R0+slCQ};4M;pb(Tk!Q+eN?2gAU*vIDmQcHxXc#7
zf?~?aVnI#|a#@g-PBv<GY7P}sH)mXK3-T~o*n+%-0@Qre{8U-v?#HPLk_#!PwJYv3
zauI4#<>wd@S6p!kLP-ls5lSn+;uq=5Sy0}BUKV_1K?MscTF{KSl`Jq=^rL6h^`^=e
zBv_DaK^<lpEvQZ~Szxvxkz9qEM3r{Rd)-wPSF@ln^gXu*oto5IDz~-;=d$bXqIa_B
z+pDf@I1B2l+(s5OAU9M_%>(*(Z5lJ#gxb^sxttNRxdkmOXlX$!3p%R!)`a%dHWsuc
zv{SkAhWzK`FQ^@qzcv=v$$~E}=uD>@wF|YYijjBPyOVn;r>6xYN9$J{UrQHVtUug>
z5f=2epbrE3QU_7{QTtmkfH06M1q+(=P8iJO5DSJ9hN;{)jpO8^bxd>fNDIEPU=;oF
zD)(CpMw7=-$0~oE1@gTNsaBQ=7EH8Yk_D5QJC!;`Meb@4H%;+$i~cga6#43X!b}Th
z$<}|DAj{j08Rf!ojs@Rau)v~UGtRYOo>b`5A8O3E=+}>ttW_3Tu*d?rU%Hg~g9S@0
z`t__hi|I(P@Q-A<)4PlyWhHl|1wUDkVv$Eq_}PM07P&6KMvH!x`ilj>TCj$^+M<6y
zR7_cZlj1agw_vRW>&SAm^keRNi~g`cSU`$wvS71-1v{kvCRMgjw_1>NFq7QO-zJ+Z
ztb-KUX~8a*{nLWo3^O0hB)%*X@E5ac)@vY@X!7YSxN5;Q3vAMd7M!=>f&~ugkkm#O
zdo^!KlT-S?jcH(3qg!%Qn>-eHE$~_3x8R@!hb#zK5M=OP3qopJL@fxDBg!e-J1$1v
zqa4}a_mTHg4=Dd(<}`m>aG1$c)Fag6791rUqsoTf{3g{2@=4{GtEE3pK0`gL{Bsrz
zu2El#T$DYoknyqwPjZ?s$)+h}oLayr|Dt|HxPZ}c&Lp4xI(s0)1LI8#?zA!8kjZ4C
z(Z4E_oaVK9WcWu+nQAmt)^OK?e=Ug9kXpk%uIq_R?-ty*;DJ<P!6TXZ=@&VkX~e6H
z=^AG^xFqA<q8S$L$@o+ze`dY4;JF1aEO;eTJ)OFaIO~#(FD<BK(Z6;f&3<D+mw@r<
z-Bd3*^Sra*y#*gE7+$F1wKSPhY5GB7OWg+Ytv&fwpEMfMYS?|rP)0+%hIAV8XvnJ}
zy@m`LGHZZ_j4YB#gM7=ffYtDQmMZf5Jd>UE!oOyk)h@HtmPJEWP5<Dd=NPhS5Y0}_
zp&=(B7d1Eam*p8HAfJZ(8j5NtreT~dLjes1H5B5C<Z7ZYLB2ICub3{#WBg1*5e))A
zMfLll#Wn0Xl(wXXQW{DyvPTj9C(EQIrI~C!C+Xu3_-2}+tOhwTE~lZqh6)<K8d^L5
zYGXxBuCI~U%p^zuDsPh3yiQ2aVAL>5!?zkt8q6BnYxrDZG$d)Lr=h-vDjKS4sHvfr
zG`@wonuh8Uzuk0pUs}-`<Xkx#ZMk8RWNjvssr7iaUx!>*(+7_P$k1w_p^1j38X9V7
zq+!ergZ5*_#u_?5kRNn1mAh<grs4MRxH(x(?YPF~{B$iev?R#qZKa{LreAKfq0?6R
zawL_5xD3cIG<49=O+$AL9W`{49(bS7Ad>b=4f6YVon<s`Hp;vwKeE?F_@Ysku7q!=
zn|f&aO}4Kze669UhF+Tfy`hw5`XX1Iy)`%r7ze&Kj?^IgMIQ})HT2WaU$tR~h5_V(
z)IrK0Oek6{^-#hv>Tv1^s(h|xNpat3kjh_A&{r{9I!79#;d>2ZWx!~dA}f^-p2aj?
z!z4|=V40v{qK4YJjg#-BuJm^%aV9e<AjxSOrfZm`;X4iUnj2?mn5p61>!b%e61Gf)
z6cMn!Nt&%;t_B(8b6B}t1;{19JQ?|KlEf5UpkbkgpEaz~ut>uX8kTBUreU#$B`o-(
zjGssb36@0){!f={SfODh9SM+Xf0E%;v38|MCSP}xH0c*jzuZ_Y!$Wq%<C&yAa*?t|
z!*3e?OG;fTw=pys8IGlvWu1og8fIHD$BI8RY|wB`!*vZCHEh!0(d2Ck{Th6;2CJr@
zEpO4VRd$vlwYO>5B|E!@?J@-wuDydQuv13hnEC>LYWPcoTq$eP7<&e}YEIE$k*T0a
z?JFf~%ayn(M<dA<-^SM3WejNeF}2w#d#E$PMSXU_<R*wC9q7~G*Kk&PTSGuYP{Uyj
zM`ZYE2y57<VZV$k4N(m-*{?NRDjnalSp4axRc<fKD7^QMaj%9o&8j>pS5x$WhJ!Ml
z7O#Cs)9+?TfJDm0{_TBf|CVi9xVG?7+2u8y)No3}aSem_WRmz38devs{d$W@O34g%
zT7&S*GpT*es>pIiLyN+-W#&0A6LmSGEEfqEsB-Nf&Ls_(RqhoHR~5hh#dt%*P1$X&
z=wih!*=IF;(2&ZCe>B|D@KD1e3D$7*v)cbkpUY;lXOR0C_cdg1UgZH*VB*j;AN8?@
zCmNn>cp;mfo&QY3-(_n*B`=&=Up7bDJ(=XT#!C&aG`!L9RyN0wYK`}%eXZ#?Tju>&
zZ|=<mao%ZoFB5o`dP}~qFV1SOu5nhRwj!eynXEX{$dty43|4sG8q-=4Z$&yQn!Tx)
zo>`6d7$hKFGov_iyn9y2nAxiTHz=&gV%2wl$;xU)HY*xh@$gcd90#*oQPzrbR^+fE
zrxm%Z$Sp;zC}Kq(>!&*j1qgYq$VbSp{M>Wm3X%&cr?6GtJkd`Yi_$5n{9=US)Dl!V
z6DXx}OB2di(aWo!PRml>imFyrv!a3(6|Jbm0QoT>$udwYQxm9SPOhe})MSO(ibN}t
z=vPs>GP_EyTq{+lQ-@lET9aCfTAM17$yWWmNT9BA>RC~r+(0?)!l`A>Z)8PdE1Fo*
zRJMW@Uof{hwXKS5VMR+TS~1z$iZ;rZ9*|XxI2+eaIqeCb%cfyg2PQjGJ5j%+N+~(x
z>S{$dD@I!JjTPOk=wU@)EBaZ{Q@YWL$qkHOQ@^t6cgf_=m^e$eWb93|4^^B4D^2~a
z7+}Q^nVOy$2TGq;HD^pQhz_#q2Vz+UTOq{-hFUSqis3Tqb{Hi&Le~2%L9#CXW|Xp{
ztoYW7sa8z0Vzd=wWEEEZw#-;7##!|_XOa~%)r_Y(kvxGabCKNEkO@=fpD&_mC1#2h
zk`$iK;F(r^rj@E@$P`*F^~XtmmKEPw_1j-^|4N*>R?L%~!U~@i^R4<<$(C8M+=}n5
znE5_wffWm-4H4raE0$PMH&5aZRxFnIeWsHOGm5`{bH*R7SZb9S&nQoy<*BYbKV4zP
zN-H*4vC)d3toYfA-=)s-#=|#_tE~7{I#!;sS|Q2R)HXR9i6hGzD}JLRS@JS~6j^J<
zI+hh)FI}y8LHh=qtk^6c(2BpT*kZ+2>1``^S|M+VY@=?MHveLhd;8+ZYb2t(=<l{d
z?(>T;xnibRVX?v{BZQwqK7uAAp`lrxt6HrXiz<V1G;&zswCc~_Jyy7^kh1bI-Lj!m
zRXMrOB()_UYA9`%XR>~&#EKRL>piw2Xhq11Q&ya|B5XxOw(q`#Bhp>hlA>1Zx8i`*
z$)q@YthjSBajzBoWIDZ;B#XR2d(etQ(jkoT=GF`TO_nU{Q2q7VCOb18m1bCR+=>%c
zoV4QJVbjMqdE{3S1mvgl<i`-sSaH^hYgSyh;+z%dtypxybj6AbGT3~kOIBRA;v!j+
zc?%?p{_IWtQLi$%KrQ2p<r!~SaZ{QnO_ljydVaG}9$4H~AW69f{H|c)T`TTe@xY3I
zr9I3|I+rBRA|>FVjP`R$k7x?W#iK0ZKe6IJnSU;ro?7wNigz-?Wg^Yq;JFnqtaxd~
zD=S{hxQ%4GbuLLBVap3Vkr~FMf(_qDse%n9Ql7B9w<6A_zmF%cetnRpt}vyt;do|~
zWTm!Ye<hPFX>5>OdH#~lhV(X^K8G{skimwGHXPoABYTj^hRim+@ZqHoupx^L>D)-~
zMphfL*)Yd}xejEvA%_i3?Pz94P8)LB5V9d`Lv9=L*wE94UN+>lA)gI3Y^Z5N_mj!_
zZ76O-2^$L7<Oe#E3))b!b7CQCVX7oQBNVZrsB((gkbk8?vJyKbmb9UQ4Ha!DWz*;L
z(o}&mgtF9f)bciT?4bXYlPr~FrNtVW=^JdQOb|c82BTt=4GZe)w<RSqk?~2?DmGLl
zh+mCR-G<s1&62DoU_&b#THCPmzB$>3#;mOllXa=$*CW)YHlQ}7HnL$>ev<?gxNmME
zeRAL2l-i8i+=do}mQ=|dIWc`38-|`rzFEI!CmY(TmbW9cx8ZZ;d|^Wea!2Kqup~&S
zFJ)lVui4p#E(GDOHgqF*r}j|3vxf028@{$-wrp-2dfU*)hHq?`^jX~Ow8jq`68fr|
z``OUnh5<GVRL(HMARF3DGz=yWk!Gvh**O{wS3JUok>vH+^h59{8@^?7G<Bj4V+doZ
z5-`q&@rozd;GG&T<|G>?)0{$`VZ&6yH0pHf>^%CDaam?EIm?Fc2<2w!HO#ePo(&sq
z*d${((LCRVB{uxXfbXdbY*<K;;6*n4KweDk)mE=zsSV3)_|1k51C7g7<SN1n8&(qL
zZZ!Qw_?i0ey;Q#tr1)yWuhca%#yaZb_IK8{mMYb*vthmBKR$x&Uk-z0ZMtpPY{M=a
zcH6Lpm26ctZ?j=Lc?WeTb;*9cw`KX$2AeoE|FR*4Ail*0O|ex*>9|kv4(W6HPO3}A
zxNYz#zL-DGNA^<#$`9J`XH&heA~r;2s<9)J9WfjB*yQy&oVQ`G4f|~9G%)>9nWk8(
zMdkXHFX^{K57=-})pN*(zsZNGN2m+x>NOv;A=9Fy<8)3?Pf|}&CEzsSj16ZALtp5X
zU$Eh#4bN<NZo?(nSWZLlO~zY<%Qjpgh<TN8je6aN8_K_F!{z*m5^&pwe`HVDWV~aO
zmko4~<*p6?lJ6<!z6}q^*QzH;z$4{9COo13M}2C;A2}LHjKgV&W~}@|Hc&I;OB-Iv
z@Bgb$^nvh(`qqYb%71S|rJ;JCq_QK<j@0%~XXEj9q*0vK4!qM(Zqw08PtBlm<z<^^
zGvYGaQPPf55@|;kJF+r2zt2#}j%;>hw<Cv&&nrg(axUfMwj+<?!EyQ!%4bJ@It8c&
zsdJj?S%oFbXOQJHLJ>QPDyNto#mOa<bH9$Mv>j#aNV3cAc$i#<nx%~Mcbm%EQO=I?
zc2rR7O(0aXqY}YDtxWB*_S2{~GHJ5QAFzGur9`RZgWfY$=_K3Hd$GR1RI{Txof_1d
z)LPWq)RGVMQnJ*sqpltGXx6u*F+uzWb~Ge6QqJB1dNZ2X;me`l*=}w}3p>u)ao&!W
zcC@l%o*nb;Xl+LuJ4V{^jU8?6sFSX8J3HFj@n6tbB3<Q%IgFp%(Z!D3d-OYFU$F8H
zc620kQtSHCj?Uy0$@<vnYDYIay3^@xM;}5DYENn}>Q~gSWz|*n{iQFH1F8L}{i%{Q
zz>f7+z2-r747Ov4@`n?KQis`bse65ik!1v(ar5Icolif?j=6Rit;TQd7)^hS9n<Z|
zINvzdj&XL3rzxc-+cAMWkvfUmb&%eTQ&h}UJEoD3ZPD8!mCRsOGpVzv-`O#nAh~nw
zm{G#4hb=HoNmu!MI~LgCu)}Fb)fVQ3cKl|?@9f@1cKl$+VphJyj+J)&WXF$8E>&w^
zX2){!3gsNxsXxg6*^X6oKK7D0zu2*w&aWzRjUDnI1d_Fu&K5hi+Of`#!yk<6sRDo4
zu|e@h!X`U56XdIc5-_8Xd7B-7$%iUr-cA+RVaHCzy9m4Oa_2{nk!8$$V+z?q)s$}~
z*r;~9yuNFaV3!?kJ6_L-KWNu~)*BlP9y`1;hV9t2NpF1A4nH|S6*EW(QNwmblz(TQ
zK4N2b?6G4nKk`01!X5PAUf9p%0ctpxzI_kLY}VZTw|r8XN9;IBI7*d(V|E-TpP+7P
zrI$KIKCNQT*m0ITa+p3gF4%F=j>--sIB?01%QB}qkkf%Hc3icibl8y5fopbLx8toH
z9rzyvH|)5pYP)I2EycI(_=kLlda0BCDgL$No*nn?cp!VL9Z#i_G5UICd1%KYMn0xK
zp^Cquy7`&nSA^%(7u1)s#veYt4fvYQ8|jC)`pomrj`wzapef0;4y1B?n$zMONKH<o
z9Bbydcyc;wdTIu0*E)K?HEnOo#AId%K*&OstgM7=)a(wVYo>pqTn^+bo4T+ApE;1*
zA^%X5oW~)rjwIxz=A%k7KcRpF1qp?epLEq!#DSyo<46@uWe7zbC`J&oIH3f!qywc0
zrB&|y@y0ZDjb$Au=YT+YY6Yq!D>_h#Y*5a=3r3>@CI>n@(8U3>1Lr3jYB^AwpD2-<
zM6KdLRf2rLYJ}<z)F9MUzAay3GWqpxQ)36}D8DYD9<{y$4G0aXji^#*medWKIM9^I
zW)8G*pe?z%11(fcO9xsx(3;7}skqj1_Qdhij!p+^d+O&7d_lNdRp0I%$(^WQQg@Wn
zw`^Ajx;Ze?fo~l6O1@X(z)<G)aG<9Hy~Jd)pKKaJTo%2QEWMfRL+$IpvWlNZa(@Q~
z&>ZN%AO{AMhft+d{N+>&CVU!)!yFi{{1Jrm#p6af<i8OUCNlXgS(2k27^8SBVH|Zl
zb%F!uP9;d#B$k@&z!bt%2WAqcQKwU9P@DDFKgBGvz;_PJ{(t^F2j)9)+KDqxeDA;l
z2f91a!-<6sEOOwn15X_I!GXmN_#E&%u*89B`;vcmU@hTC2bL0+Ik4P;6=Vtc#etQI
ze{$ew@+#$Ad!D#j@vjc7A^)bF7iE*yIk4V=-46W8rv4$7Ylf}l4GwHnpJkH+n-y<y
z;ASIzyGZ0V#&36E2SJ>jgk28#3B-6wO4wgg(1CSj^jDWtSc$~}jbNqPs8N31Qo<Yz
zb~@l9h~p-B9Plb<Wqjp;13?E4Iq<gwu?2}CR<e&8b|CVxPHId(NI!k5+{5Hv2ks2j
zx72<n1r87nI#8jn9(LG)BQhsDaGm~9>S^jR2aXd?P)|}%QOhUjBk+s^XPG=FvpwNF
z^#WA_F3Ox>{xsSz%TYl2R~;C8?vsCm=3VJ$!YvhZ+kt<`cc>kBRU&o%>%ct~bKijn
ziXS@gNO7ZAiT^q9)PXWily%~n1J7j^bs~=w?-nG!a3HM{@lL#S=t)^#Iq+KMSSH`f
zJkPLqOukn!9|*ZN=<#t3NbN+LkC6)!&*o^9&iQGt%<4pXCo(XZ(TOa|&qT=V1PG66
zeTtW^$fjblJCQ?iPA76H4rEE4*NF*_%|&E~dY72biI&@wWy$YE0mTKKD5SWs6Q3#G
z^g6L9OG&|EP83&Mf>6?lQpzb!uw^ipbE3QxHJ$P&t(bh%P{9c^p(0hBN(6%wl?e&T
zH#%V=Z@O-lFj*3vNK&~~oTy5!rkv`88loK%CAhW|yHnR_<V0gavJ-U(V%8<pqt<t#
z0imJFebrw7L&hfTu2$5h)MidJC$ylpq)Ozr%4qFG8z<U2(awo4mEYcp4&=|NUnu`%
zqxg>GPSjNw^t)TKbatYPis?$|=7i&ses15>iC#|p<iyWTeC5Q~PRw&+z7xHj=z7aM
z*oh%d{CU&d$BDiy*iY5dpD=(rkUGdIKXt3$#~A9wFgjD67)}^X9YGyQ{e~*Rqn!Ab
z{Pzm|7&nGI)`@XWj8`#}2otCiohVXNpA%%6OlJyp{l!$%oS06Y;lvz*#LRSJ7Wq5n
z%ywe%zj_UGl{5WDs@9G5`SW`x7D)WA`mM8?7CQ0IO}&d2Iq?G{7dx?p@S_vU2}`NV
zs5Og!y5qEh$(1rH3hB-&Cw_5ahg1II8MzZMw_*C#PW<Y`8rkR(z5WeO{Kg``Q^i?J
zSVvv&#2<vKEA+W&ql($&#Ad}?2wR=lM%b?Wq+rr68GB9yoCrFR>X!LW+3v!x6aQjT
zoD?T4iZz1ODX)U)!Lrz8?c0+D&X!4XIw9(E!c7qN5WG(Kl;bA^+9!sbsPNd_riJM+
z8xwXS;zZPmm}=X8C-x}b>%>0tCW}5|4=Dd2;gA!5E2rcw^ARVC<~ALr9-~U~xDzMH
zCzW%`iKUOtl6BUJb27GF_}Yc@PF#=))`h$-Ty)}+%&tzna^kWRSDbh#1DGqiDzm{E
z(?3pJQ|rA>xIw*1z2(GhLekftM&lhP?$Y^}dXFj}=e`pU$e&;Nv_C$Uoy%y<@-FF#
ziuuopr;48uo;&e^FgIB*_1cLyP8cV~zh&FDzDpe5#&~n4VQMYYJ15>d@j*733vn)e
zy3X!GY8TSD04Bvr>q2@LGB6oWP3M9+zdoWes+hZv&6&uVmD41lVHR>$YBuVJE_$gP
zDkdi(mkYU-^K0=8`CQ2F!sjl0;X(ly3c6r)$xRy+av}b`eqCI`g~BTSGZ%`Giz=s>
z3&qKQB<Xu)NpdL{N)yVsP{D<Y<g(OqE|e!M-JrLv5_xiVeLgXeD^nAwV!k_-@NL@4
zW*2I^knBRD3rQ|iVQx)oRTWu{P@P(Xy3QU~OXcp3*H>4^g+_GhQtMIcQyWklQXM5f
z%@2)TXyQUs7n;#;<w9#ha~E0=T2iIvxpw`ravK-gDW|P;;N?$uoZ8cTcqGnO$=JaK
z&$Cn=U3hZHbkCa5iCJH|(AkA9<esXAu7qwbbSLzn7U-*gkY41nymQ{$g+4BLUGTZk
z*M)vA%y;2?7iQN??(f0?7X~so!|~*wEyh7EOm<;^bK_tahR`4C!Z$9AA`f$6I6+o1
z!iACKXGQeh_?A4LI+{9$Dp_M)7^nD{MZaS(fys%~Nz}#X<EFSU)rDzHen*wa=`PGr
zJky0)<gyj@&p4YrN9E3SVV>fe>(Vc9VWA5fT-fNsA{Qo<H_C0;UtRdYg~cu`p|g@I
zSwFh4l)Owi%UxKZ_|I(yiTTNepXsbp{x2@9R=l>bzJ1rQ0l&HMy9<s(dL!4;S?9uf
z!XK)If#VG~$p+nSsFcgR%Y{9yjhkKALJ;0c*hby%!VbbtmD}!(-iNzg_|t{ISYe6_
zPJ+b+jbIfe*r=EIwF@cbaN+S`{q+MEeE~PYLzVY_{VoJtIOD=u7fwD(2-4ptqa{b9
zkPBfZBUC9HCB&$EsC!-b_*7-Tw01+n0T&Lsa7e`;cj0gHVd@d;Q5TNM_~i4TkI!_Z
z<`c|1>B1?(X=;E^e9p<_@4`zLUb%3A{v8+Y%2B|DOH5v--k@G_p@upARTr)?d7Uct
z_so;}rs7+K+thzt_>oUcZbuCN(s|;-Jr^W-pDOUcg@@!v%6Tk3)50WK|FOtZ>NBdW
z>p9_t3xoLo6r1W9XZJR~cHs^Ew=R58k?#oasl|AEKb2d)Evp|0Qd84V(^BK9lC`L)
zIfEM+-6-!x1urtWk=cz}9@O>#Ze(%e2R9bW^Itczx$(6dz1_&}Mh-V}yOGC@bwlFi
z#!gN*a=Fp>X#;O^jni+<PeO*gZsc?8_vbsfk>8C1Zd7%nni~b(DC9;tS)Ch&RU1mW
z@tNWxZWMK+7?Z`RC8)LL=!bx8HR4OD$kJ|<A(y3&;+?|^WFxhr8<pJH*7(!W)<Cl|
zHNlP1*FMdkCOT#}5(%=FBsZ!kzPdfRI=QYJ^$0cGs3~3KMr|hV=K3_BCo@?`R(ed|
zN9w!LfKD4X8oJSl+?-n75#N{~VND24-DswqH1(5OkXuq)DZjNFH|yz_>TQ+N&W-lu
z&#7N1e_Dxp9Tj&XeCbAKH@djdRrx*L=tl0YoE~nB$XiqDm!+2*Un#$Q=S+QM<GL})
zjmd8Gb0d<cUVk@k57w_@3XMn{;KsfYi38mj<i=o@8tKM2ZVVw0r4CcI4VSej-ZoON
zVU!zVmGiA^7xEb8RPCalR*hqFyc-h;6IJf8L5Wk`n9AfLH>SCf;Wxt^8D^|`I{g`L
z%p}aBen*u$XS-3dq<)<;m(D!p&v)Z{#S7e6NZ!T!oKpFRfr(4p_|c6AZaj2jsT<4O
zxa`IiH<r7x!j0W-{OQI@mRc)22;nC;epYp^a^n~BYBzp$V~z5EC;aBd`)c|>M7-rW
z&wAPD*AlieOW+SCH&8dav56r5W;eDd9-7&>jq%&5JE%LUyQo*D>$}olZlt)e$BkL-
z6D@9NZUmTXrMjsSW)o2CAUNG{5&B)whl+>nRWUv{{EFK)%Mer?awDub;zm?)Ojg}R
z9|n766w%!8#t}D;x^Y0o9CYIl`ETVMcEj;XKY={v#&I{!EB^%H4E3ZNrwFH2uB_-R
z`5bj%6}=y1xxnN_H!cxgX4YSKzv@P4qe)&qx#os+Y1LNst}|D%Zb(;?Z&7c%@ekpS
z8~0SqT{r$!oc>jPDRo~a(%SlL{K$>RZe;Qxvj<OPsB|?}Tw+M=!GCT%b>kVGx76p<
z7u1*3S5ztT+Ko4gy^9Uvykqh`^@AI!JbKNt#Cb64X1su`I*kWuJ$f7BsRHRdNUt~p
zA)^Q7`J4hCWbvSaM}C+NSv|<+LG|{DB|Y*BjmY6aVUJ7*2{~2Se1u%o+|)cC<W;$?
zil)x5xPS)*$%T}YG$Q^p)>ecn)fOcbqZX%@@Zi^bX33H^m-3*rDqDt7mRe3)P6)ly
z_v=b>2%Be2RFMWkWe*aRWAwnJ*i3Mb(r23_aupA%5~@+FQ)^Hqrltq)ZZ!}{_Mnaj
z+dSCrL0u2(c`(z1Ssv8)pn(TpdeGT}r#Tum^x)aI@vS^)#AIV?6RPAk^`M#J=7bg=
zv{X*&3W=>fsQGPT8xPvD0qs2aoY0<{(p7Kv7vv7qj?_-na4mhD_X--ic<_x31`oP=
z(2ZH$J?QH}KM#5^*^}Cf`W5wS4|)^&P^(nTaAu4Cm`|4ebcRp|crcJKh&q^Bq4}r%
zYp4gq=nSWhppK+UJuk-SyZ^TyNDC)<uzOVEXb;8^#!|;o#UJm%1oA}Xl(ZQpvz{r`
zsnluI>C_q2kNxwV2eUoc=)oor#tt*hksZW?pFEiB!8{M<Gg4ZznD9Myfd>l-i>N<P
zTg=zb9F~xO^x)yVxTWM})aBF_R0(T3D{1u}!@cx1e)gc)L(?h`eqq*X4>k~frLOVd
zHxGU%ucxl1uA@plJ$D%XP<-1JCo2_mvj@j-rrP4cRu6W%le@k*pD0pe%X>q%^2yEC
z7<P#1!DSDwc(6-)%!B<N9FPsV*zl(Z4iB6jw907y%YziwY*F=V9#|FIK7t2Z__~6u
z)I}#ubyGbacs=lu{nYr%aREY*8lp<s>^b#U9U>k?l@lZE@nA1u9~Dpa9zN*7ArCIm
z`P+lT9;{nsI?dz}4^9w{QjbxOQwJB+hm$NPJvc?j_mlq2^bA?xEa4pWJoSPH7gg?w
zGI3po8b|dtUiILb?6V#`_u#q*H$1rK!SH`FKY3|hep<g@caueKQEz+j58)2=F7;n(
zlgs+q;C=D~>O-oSj|h*cPpJRNF0XQPUQ2l4!AlSFc#+qOS022U3E3+b{)RV<iSr`0
zSD(z^%3P#Mz4zdQ;#6Mb%dMZCrePSUX{81)(vdS#(^DlZgBOM&pU##ud6Aj^4AwAX
zfbPqxvwD$@Z4l1xMGkUK<>Vsd_Tu`+1PR#PBQc*Bg?lEJU{(341-vNeMImxwYEdsf
zBNU;IN!Dj?S&A`P+>22S^wBO$NiRy#6fR9D<3(BJlp~yIm%gGGmAok8Ls1_LUR3rX
z;6>1j1TTzUjPqi=7bY*vUVI_B6-|j=Bze)$i$-32m|>{mMQtxEUGyVnRWGWs+UnFA
z)S6Vut>r~co~I=%r;ZnO71txwr#6uK9r~wm?lU%~)5?n`gr?MH)aKL{)Rxrk72>w-
z(+jp{vJJJZ7wrh`sh?BNwbbX^4qkMWHl#6k@?ww|t4}6>=|yKRx_Hr*VST*lMv&lM
zUUVn-P)<)TZr%Gd2EOv*YvuPQ{LGgz`jY#3(Vs9t#SA30%aJ&k>mB07P{J_kC@+Q+
zq)8(PBfa=WIV;v1za@`W&KNJoD&CdKIKhjFlJw$NFD7|0*^A8!;(zgCiWl2D7?*nS
z=PuJ!FQ%~#)2Z{lnBm1t@+>dr5Wb_zXP-@&T{Uj5a^}fMo22*Q_g*aUVxjUEd$EZ8
zgK~OSiCaSckvcw~zLzay8>AV_y;z}mCE+LP&t9xje)X5e3ik|-wux)J_|1z=G6Jur
zdX{4PofY;dXkM$<wT`gfi$4e(s2iz$dADJ+7hAm8N=KSul@9S@JCi$Pb%dQNcNbwd
z)n7s%SAUUHs1~Z`g?GO`_-&G;<M6^ma8g}V32=K+ropG9yqBiW3qN6%TdzFiMc9kG
zUi|At#EYmGr@T1rMX&tkm=`A*`7W<%j~9Er*yqK5I)|wTs8Y#6FAkCarWQZ0&#1B-
z@!}|*V=D5v7bm=UeN<od?~RiuHa7YCC*MmkoblqS7uUQv>xCrGQO{E^P{q9H#U=7(
z>J{Y|O*XpvCtmmB{Swof`KB9O*G;v?TZG$Q{G*&ZUVLofJumKik<o`tK0NT^p-g&t
z<5KzXNOroQe2K>J(u>Dl$hMZ{i5LHopDO2>7thHrlp||@<%JZK<u&0A^)2<Cv{2=K
z@S;khS;DR-8smKUJ(Qf9nueN|8c$8<LwZ66sze%cHp(n7|ND@~rypGAo;J;DX&mz`
zA&U=L>4=$)kllwIgq+IH<wI`8@BTB@$Xhe75Bccirxu_VR568oC`|rLIa8(>i}_I8
zhdDmX^`V3hC4Fe>Lo**r`B2)2az2!oKCF#0KHS=CDC@)FcZSXBO<OLRPwY*Wmw77q
zP{)V5KFB*c6@92AhX7Vy*@r|Ql6**D(nvL_^_mIAuB57>oSKBHK2#%Ar`AxpPj~94
z!L@v-t(;^+nVYFbHLX#Pd__yHuW}m@8v4+P&{+9ReAr!8--DX_(87lSJ`D8X*dNB0
zK6LP*qYo7`nOZTpHMI@3EwvrBJ@s=Rz92|dxi*-J-!OFYp{ozweE5=nXKEJ}^K;?2
zi^YxIeGu(K?LqBH?d8K)gs-W+sS-J-P|d#Ne$@WdLG^1$)*v6gs~q=@52JiAw>1v-
zVF=eXlsb$$T&;bC4<i+CucYs--}*4q2isT1(e%eq$NDhNhw<b|KKZteJ|HLfFp+SE
zPkE-0r%@$$s*KVmdWF;J%us&mne}HW{*Ex4T7N9&`7qxHiw~L)-}|t@C%?pt)jllr
zK^_k+V%RfpLc)0C4?g{ErNurh@!>~R+fP0$RlJO_oVtR#QnqGDpR8p0na(O73XRck
z`2Xs|8XtD~@YhP?ku1jFeAwhe+djr3r;We+u+|3wS=JHO`|yWyHu$iS9G#OS0rKka
zX4&ud7`OPam9UK}&UPPmkasHQMs{P%I_BMM$)B=nf;1+DkfB+eRknicSw7qrM>b;B
z_zSX?eQ@~T^ufijzh$TM!R>>`2d@u4ANJGt`w;LUMh;S?=CBVT@{2v6&MP85L{+Z5
z=f8)%m%2~+<Hs8gC_d=JA@YeHpK3Vb!znsPRm?FTj(?1yo>YF`*XGmYGt{%nKj*`F
znI$^v7tVV<$(LjR*pkn^GPlgx=rUQ7SA4iizDB)Hy+OT6m6&da4gdIX$A_u4(?5{u
z<%apL^s2#pK0!Z#{>#<fqu!@(Uy%6FhsYlZkEoBSPpD%4M|eto=EHO4e{s$HN+vWP
zR)+CY7;k)d>qCPe8V2#shxa~|37~8MAACsV#}q%N`Vr?xYClT*QO1unex&syw;y@@
zi1#C%A36QV<wv1da(X|q`Ssl@1C!!p^dl2FvvNSl;zw5H^vT&MJ4@xD$_;I)p^nFt
z?OEcOzl`!eLta_enE2;&Q|0qx@f6dwut{z}<@ck29|ffnmMTV-f`$F~j9f%HMF}0(
z={s_9KT0rJl3I%D;YcX!M>#+G`q9si@_tnCqqQGx{HW+hB|qx=QO^$p<CCbBsZwWx
zA4bI{Kg{Gr<;Z5O;zw0Ks?n*X{OW$xAlIZ`^XQ+tw#rTRqYk;^Wc}*3zVe$A8u-zW
z(1_ZY+Jw5fkAA(=jNF_m$rgl`ezYPK?EmSSsI4E}{TP<l+|G~o%=+AqFIA~8{OF*#
zqaU5fAM2MoJNwZ^<#zR>8@WooPv>tv{OC!i7xgRZ*VNwBK2)jaFe>-=V}KvB^FBD1
zeBi2ipdVwIJIIg0eprts5222v4y6wBV>m%_NBD6%mRaB%<%}YHOC9aU80C-sU>L`m
z$5SUzCsL&)lL(Wkeeb54=ErnDp84_Ij~RZ<^uzB*z>iseeCNk<KUVlL+mChU4A-xi
z7x^(q)ic+Rd5Y%~zNaqmW1;e6-Sry_Kgf8dvxNF1bt!cjb<$&fj#}x*Pkv}4lPrGx
zOn)<Vl^?$lR#Vqff2FRW{zm;>hV&x+S<gB@*8A}XO-XL_V}s(k<Ks6ezL5u8{MgFm
zHa~XxvD=UBOzxoWq~gy{+xkx?yYeQ|Uw))8`LX3y!e-46Q7hFZS$;VDa55>r#}Aic
zw;zXoNfy&f$ESQlx++0G_LoTg_L=#RA0hb^HvI?~_9Mb|Mg55Rv4<@Fen0k-_fcOL
z(66TssN92o9JsCTQ-Aw$nC1~bZuoK2kE4DZqjTJk^L||L<Afh4>74T84B<5OBHzh8
zOFl=H3h!>yZw+1a<0_p?%D?Q#6~*#dt|`9m$EXr|+hn=r$2~vpGwZe={}Aq|$h&_0
zt9awZ#0P#nWb!{5QLNz+laHxSsCm?zAy1h!e3SITkC!r62aqd(SAM*fDLsHR0UR2f
zIAe|B4a1}*Z~b_u_`M$=6sHR46MI|$|IF17bFT&^?jDhtHh}m5(lHCv^wbPg3CkEj
zCdHWpX!?Ub^JJlum70y3otlIC<qUmXomrfiJAga^<PBh&Tn-OQEMqa`3qbs$0r^Ec
zL;e5?5QGa73Q-FO@EM_q%1s%r?`y>ZD9-vzP{k=3Kq+!*YCb+3EEhoe05$}$F@OpI
zR1Ba~0AB{swL*qU0aOd1dH{w1DofisB_;&WVy$WHsQN}#r-@(=Ad!$ntwOCzmGvG>
z)38PWH3MiJK$`$&<ZM(cAm_K{YzGXr14s^_j*4s;KwZW42=%EA0$7?~A32QzXdFNj
z71LaLnB0sylQAvGEvc=jQm|>4#BFIR=M9_M2C#FTes<B0S?vS(obUy;gNpAMK#^Pe
zUeh@sKNW><0vN@tuG0Q$8Ak@tEr9NHdIZonfPUnj)LzuD0{EIBmGlmvkK+3$lKV?P
zH#82W3JeHfpyEM<-j5Q*A3`1)z%Z3NJb)33OZ7A6%%jh8-v%%`fCT|84B-2d31b2{
zeBV4JfVovoW2xf;7*Ci$ok*43NdZhI4_#o8<Ww1WEIXY#hdP5glR7Ja?+CN0vX)?S
zy}9Ih%9$^1AP@L2UIL_fivn04zzTl+9|BlRSfYC4N5awomJynnKFzT!1NfEBPXYWK
zz$)@DRH^e}q8_$7fS+>c7m{lN_$`3nnY&iS{8l>kI`VqzAIe{rC2msyn`N&FqDT;1
z0@xbB@c>Q)uq}Y?0k{Hi2e5<jmH-@M4LeoYT><P?{AU1vkyEHuOY5gw8re#<QSDR*
z)%npGZOC&kl_vmi00#oNx><iJ=L;YbfZQz+_A@L%4F(WWrNXis@_W+~7G-cOfIS3p
z_7e65uwOYt#v2a?a4u>%ME#q3n0kaNSw{)SWY$`2lH|z%P6hBhfETjK)*DX;@UIM>
zcX|uY1aMY@*_iVITo2$z02i3N7{DdMW$IPx71<(uU~!E}si9~M{le|0%&5w_6~JwB
z8}&ZkodE9AS=3GMPg(9Uc|U*$gogn<B0LV@KZ3+OA)J{T_muEV`Jq#$mooXwq#DGM
z6vJ!!se*_L;*E-VOL!N+d%_3hx1JrBI*2qu<Ou2q0$I`qks*kTOvVS1PWkC&AnpCs
z+DtUF1d*8l>c@M_S;^U`*{M?Jv~<Rt<Xp<h9Yh}T0=~v3G5LbXPp5#2DHuc{#f5`7
z%NLfWUQJari1I;H2%=a}{)S#}c8MVJK2Lah#Z;2XQmRyGLYW}S63Qw67~(1hQ7MSp
zK_mxZ2x8rU<fI^GkJU$J<scFmX{4G|DRU5sinE5|sxV%PR3%gkqPlWw5NZZdOF28|
z8|6l>+-<89#AkK&wbW%*^@6BRxWI2CHVUF~5Rnj~Av6i1sa(4S@ji%VK{OBImmpRL
z(ISYJL39bCYY?r1Xf4}ihpCMeY^xs-EA}%bbxCf^I@<-&p741P9SC1gC9LpX{S>rg
z5S{3JN$pIXa9!WZ-GXul5)*@%6qG--HT4LhUl9F+=*eU+s`y_8@wMXKLG&T_RZitm
zwFjs*4kru@VvuqM2T^paVMq`|l`|}eoP1+sL=Yo`_(u6-f*3{qmO5Jb-b8)tj}2m+
za>f%TNNd~ay)l`|=|Rj0VhVXGbsALyqHW`61~Ds$WkJk+ZT^n_57gN~%n_6PJ#`*+
zKJ^}-KS~V?f>=mLc#-r^Oa0B9#mZR{#E;~q)Tbf6Z<ljjE2y&4l|lTZ_-Dc@*|@(a
zOV+PJtO?>o5GRB9Er{QR>&EX3Vy%qWAgn?B_td<eHSeJQLER9<#vnG4Wp!H#o8>4#
z$jP@`w~@E2n5+ZR?^L`ih}}W_8N^?7EYuX0Ypn;3{PBF-CLDx=PK4?V!WD#@ENk}%
z;Zf`*_<}goSU;i#f(X(HQNuyBQD@FY_%Ja_KStdX#9qRY8v5Dh{vZx8d60UHdWiaW
z5Qhmzs1kfsR#Z<PD#w-cXSejHf;b(-zd_s!V$l`znILk<C0><zhB4=YI3L6X6@Mj&
zi;6D=ahd$FC#Bl{gECzU;(8D_RLrd)ZYq|r+lv1Q;tu&P_2U&ppYo>rGFNv?d`9yD
z^&$095RVB@sIspAf_SRfH`ny|x%s)oJU73fzNEgQzNWqj;w?d9T3$)|5JajFz7C;x
z2yr2#4xx4k$swc(A#DgnLMR%-$zKfdA?)g&n1!5<nm&XKgp5>)$wbH;0+b_Ha9KmB
zd)1sRgzSVI)B+*oB;*PqcL;gN5|)pUH-zQS&61QQe+c2}RX%dT5DGD%F!eK4s@M)g
zv5>yWDu+<`O~Tfr$;Cq`5kkojgiBG&Q%h6Jgiw|sx#dFm^0`?+mI^d0hER!MP%*Wi
zn-fAXhF}VPIwn>N!Awq6P7<L?2vwC+JAaMpifa&RhER);#KD}pLA^R5G!3Cy2rEY>
z)eWH@bL)rDAcTgh?5Pr|8<86;r-^JSeg(352rWYBK)<ERZ4*K(#jQhl-cp}o+R|x9
zZBPB2`UUmlHGansI!SNPks{qg=uGaSoUVj!)X(~-??LEE?M3~H`teG<PY8WO_%(zz
zA@mEOKRa_;2m?YG7{WN!w}S{HLl{gLLLI7dhlMblJVH5gh5L=-Q6YS*cr;-Qb!-Ud
z%hdk3O~=!j5W+;lB<f`96zWu}1UD*gnjXT85N0Z8aR{?Q_>RfhA$+g=IU&p?&!f&)
z{*DF41&SBSfF%E*oWhMvOG5aO$)zFur2J)s<<u225|lqFR!>^>a|o;G{6bx=atm}%
z{4FF8>0k}P7Q)&P8f`IdX8#MUV{&~6e-JiMH&QoIv(?n&w@7U)vMq$&gzeNFR2c(1
z3A;l2Z5c_*@@EKtsoazhEM!eNN$ZmT*=`6tGe5YTWDmg+f|FS;s-NnndP2DL%<K)p
z$E5s{k5nEY3j{+5k;BSK8k;&6!XBAh!pIWF-VpYMa6N<@(zXx|gm5~9GqQg*NIn?C
zp%DHKp?k9FVol@W5OSPKZj;WmcdOxus_iJ@SO~`nCzOAZa7sqqQT-zBYzW0uC0+|*
zNCWfcTFK{RT!j#PUi$*|BJ~ng%*!EMAzxKa+an1be=()rmT)tKTOqs+;av!~LwI!5
z{7(pXLTLTeoOPq|ZV3O%=WUVnEQEV(z!TM;`-BJ7hf<L6nA(<40Hu-th47S)@Y=`v
zWA5inz6jx^@?Q~Nhwz55h;Ol;%aQuM%=2NS4eQg|2WF)r$5B&L6KcoDhjF&Bx$`!I
zy|sQ4l`f3*%*sH`NEJU5A#)f@uIcxVvWDevSuh}sfnj71BS#n&!>AONC*9_pVH67E
zMYhUCw<YHaBR31?q2{ILqvod;pcbS`wKsYt6%OOGFp4OrG@&T97`1p9B?u*{rKnQ&
zd`D9m#bpWQ!YHqt3WUE3#Tf{V!e|^u<uDSMG=_2Fs5zNz3d0;mVi-wGR;Nn+Rl=xB
zuBM#+d-W5W8e!B7qgEKX&gtX4w#t>^QHRw^&2<U&sP(B0!f2>+zr3B$gr#mQH?<F=
zDY==dr+FAH!e|*rE9JBaqc!<oe#fw_^4o>6a*qD51fPfT1<elB9$|DObPD6kFgmOF
zZiFsjbXCsF6Xx#ZM|Jeu5k14`#pG9E^dWpr?M*#*NFR`W$^EF3>>ozCnhgXpKde0{
zj3HqR4P$T^Gp-x%{Fa!lUh=RohKKQ87_-C3Fwit2jB#PC-H<FilFm2OQDJ;b7)>2R
z9ZQwSVmlMYhcO|HiCphAwf0G2OjbOFFqN9WYW#HN&j@2Cc@}kceSHTpoixu0W6p)-
zAHtBGdTto=2*UHj_@2Cgx{$g^<$BD?Qfe{FE(zmDf;dYF%c#r4SfPBGxPA^}RT%T5
z_&$nX!dM+fFoIA7zlO0!##jW^BKR$g-@~{W#x3cbFxG_;4I>uD`Y`?oLkq(i#s;>(
z>3+iw!p1N*5jIn|Q01d-4PzU5yK+Lw`ncW6<gPGwEB{ZzU(}Q^EXseJ(9lNyyrj|l
z(WE-4&M;gbO?m%^;E~N;_S4-1A02-f0TmMrBcwPSMnv(Y9}@S-<S+Ztc*Bh_j=fAQ
zU^MOvV?P59h(kE2;tz%Kx8lQL90}uS7?*iH+w+copYyovUtyeN%!M#6hH)y4(@dVB
zo}-=(<M4YuUY7H8+HB2ui6G8ZsZ;TlFs|^s+u~oNd0i%}Q~F*Y-wT#z-wxv+aUv)Z
z!JRPf%1jtR;RyZ><6anfBe<|hzwdNkrpGW|vW5rLhhaPl<1zV37*7cj`Cl0Q+vt1Z
zGdj<epFf!VDvZ~%J4BE%q7UFVVWf&6j{KHk@4|Rb_@GKT-Y2AvVD{0tc!s5+O4+m#
zbmaHk)6q$<{9#=(WFlvcAR8fb1R!LgCad4I$R0s1IytC0sUN=)EcNGRGEW4<*n9by
z6hA+q0JUHQzbw=bK#rV^sy#EjT%>c+2u>d~l#O6WRumI9=?CuOj4wegNi7vYX+jz5
zVSY0@xGAAr1mz=`d(KoLf{KJn5&4~V-I2vWs2o88!Ki$B>~1C}Dkmv|DvGTO6RSs1
zBO-sphlLT;jG$HoJtF8CL2a)6iwHVIFe!D7<Ou3SP?u)C2%1FDlw3c81_b#m4I^lz
zxN!vc`NjWcblOszN6;dImMW%o1g*&DFYCt|S=un^Dy*NvwTqy=iu^nxTVEeJ9V0mK
zMDMp;-&g6x+%Hv3=LouxyHdMRyQ|#Ixy`*I_$q=K{On&x&^v;W5q!gdJ`wr%5W^sH
zUur*Uf9ik;1`=ewV>722%wUNhLKrF|fiRppLgl_)r|%u3Sa1^c+XzMz#zZhSf^p;t
z)bZ3&98nX={$hG3OeRmEN^&Y;S_IPx|NF&&nGwv2;5*qJROB4ln*6PXxpd|!e|`kt
zlk;#^Srow!5oi%uBUl{4k_cYiHLZ`x??Pi~1cv$b+m<ygQ)Pc5ERSG?a#qUL+^$c*
zviuyuDjD|7S}k)v;a3&8CW6k}^sW3mowd|;DmVX|#6Kd~z~n~i4(g@|HWRi`rTEqe
zwvo3hCreZPuJz6cc1h3E{F7R?QQTjI6cuTS-~{h@+r){WdCyFN2;NLERrx&e_EUo+
z0%rsxuA60XMc`KKA$Y022>i;=Ri&Z)YJ{vh96>~;lqj-C5sk=CN#kM!mm=5`!QKeY
zMsO~IeG%-JJ!O{Rj0|A5M~=l(_Fx2unEX3}<AlRh$vQ$f8o@E;Jg%?bK03kVN$Hv6
z=2PU;vculj&tv=5HI0rWo{u2Dccu#ww5gSR{)E1>Y&@CJet+`i2(Co%EQ03|T$N#P
z%zP^%-`>TgmWkI`&vojJ2yPOj;Ez-F1K&RpM30#V9W&pde^(9x5!_QTj|lf8c%Ynz
zGIe**3qDrPlL-DJKUL1KTFEaWco~75SO2<BpB`UHsVGuM@j8O;t&?PV6Tw^ZJL-Go
ze;}laqU3dhgr$joy4R7Bkd_)xO-D^n%|I>MHZBt(GZoY<)T~r#$+0gp<%l9@6!oKM
z5Jj#iaz{}q3PTimqA(_B&KpHOS&k$$YO1$WisX-?KokX|NZy`MJc>S7OohmWsh?4c
zP>WKFQ6+f%3quLUOOcXMl!~G>lVzyoqbN%#r(zEEHA!TJC@RvCu9IYvC%$qN3DUMG
z8lEuAz%WIz_MtidhK4l=<|q;gVkQx)L{XJcjapshj##1Z%Qe{*wWzhFsf0Szy3~49
ziOl}c&@hTdQS^wSXB3U2Xc9#Sm0P2AV)c{8rcpGDqInc8l;4)nGKyA&*2-@a#jKY4
zEYVIm?FpYp@dcsLSbbb|jLOj`xs!_dGK$XRF3RZ|MK^MH<$RsLUau&=ieh{e6QcM!
zir!It!`wd90o1<KepFdef5O*Sk_Qq7MKPE#B#PmLp;U<+7R9(p`gzv~IwPqI`+PcY
z92Ld4bVgIhP$hUQVO$hh{?*G)ln-*;JVTn7puf2>iMf-hQ>as^)1sJ8C|6EDMjU)^
zo+<qng@7#I5oSj*hcK5qPvzdXCohO%p%jn75yPS=evnNTL(>=*N3kS||Dt#r#g9=e
zjlva$JBp9LJg_W^<y`5Cx26?Qtc>EPD1N4+MX^dw{-f9!#il4$)0Bq&5yh`jtcl_`
zI%}!FQ}fLI)HCatTrXi~^qESQ4N*MfEWMdoyQy2E*c!z)vc&9&VmrC|!%yeBJEPd8
za<^yItNJsFzv!e;Eh_ipimXxCJ~~tf)k!_fJC>d(yir_^;tEY)6tO7w$Rse);Ey6e
z2vWrf5yI4n90imgEu|lu_D1n{6o*;QKI(qz0of=7i8&-i_>}Mnos&_VisGosJw`ZA
zJrTv*<WDo+X*%blIHMxZ63$WOKS?hTE~?y1gl>6KUyb5g6y>`m-ug>F3|*&xCyE<{
zo77uW$-N!LKjbm$De&DW{*B^Z6!%rkBf^6y9unHSIRBHMP(O~MXHh(l;<Ffv#PC8^
zH`;_4vc&K*s{gL$E1CQm{3eRH7*faZmdSV2_f%=mhbU6TKJ`GZT>5wJ(lD8UnwA<L
zLpnlws>GaWr$64x7(*uIWR78Ud;Rxw<X0WC#*jCLgm>m_DmQx!ITYuNAs0C}HIMR_
z#_Kl+^2Ly!P66c?BovCFuyR)Ji!T~Ou^7t7P$7opE%ZZP@fiNNm|TJ?P?At8hSJI@
zLns?VIYOEW^(3rf43%OyUBg%>1_SG_CVjYD-*+m@M~J}~gGsG7iC~T)ksv>0Dq&T~
zRjH}zRA&uRNex0xYONS*6OvW#kc-K6x$1gUX+wQNgBThT8c`do+{MKbo5j#PhVNro
z5JQU?TE_523>{)<6@zC?{O4>#YpOJ?O$==nw~L`Y*}zRKFVE*GVeA+~rx*suFeHXA
znJd4-(TC7EhAuI5jiH;Wp;rvu759jtCwbF!edK(l{I6r^P5!f>-ZQfFjiH~)?N1m$
z9Y`G%!-klC8a6bBVRUB2u(h~(cno7=7#qU~CPz}gp^l<T%(pV$6u&vBKS>`K!xUB`
zJU)gAiYLY}i9A_3-zDgC+EgZ|#W0;PgE~{i%&J=BJMwJh%!y$xc^-8>b?#64zPV5)
z{}?vLuqmd$z4n95|1m6)9<vy#Y&AtMn}3YqH`yEm6PL!YOhzoruAxft6)~)g;U^}4
zj^P*OuZp1$-<Ok^)iM04{9OYRxA3Z5D*T<*u8m<GL7er3Kd2jGsNOxbn44qz?_F$(
z$!m4`cByYMY>oXNRc8St#r1w|7MFuN1b4`=JG+as=;Cg{-QC?GxCSRcu;5OB1os_x
zp8<kHfB?ar@9hKkSO2eS>Z#|R`}Xagwwc|T>Bin9>{DYNq3kCQB;laS4<+F+{o8dd
zWZI)_{y`o~!f{o3g3_{Inv+R5m4vDWR5ReT?3qb;nuKRbIGcoXNeCw)l7#cJgMCV7
zOoB<8^K=(D?M3oZ5-zJTuO#6rJ&81^ydigEa}pe~lU&ozx)yd>NgHV=M_1O~QaY31
zV$+=jPZGTJ04cpbia!ZgnrnNbJc3CGF)ZrT{!+e{gzHJT&*a4t-Hjyl&z^WY34b%W
zN!}vm$1+lXhc0rLa*xbaBh>@hg}CGonf#N4N2>BM<w+9$rA+01^*jmx$@$8FG6uXz
z!b>@?8j#xn%R}9(Bt#jI+<@0fc*9BF${Ajb_AUwU=^s?`QHJ6>sLxEkkY81AGJ|#?
zS80$Yg#jrI$jqiBspLK{%2QL)kZBD_M@ctaTR$084GhSrJd*+IT5D?~i%PN@kd2<5
z%t7W<y=AjhO=pbGV?gQF`XUVTlKBkCPx*l?U_e0w3ejco!j$>GD7l)MH04p$fMN`b
zlO<GTNdrpJqj}+@vIdkhpt1o~4ERyH2FAz_c4AndGobvpO7h!t)YD^0nM)ic-hc`!
zsc1kY<x_Ii8IYxX@-(rHm+2D^Mpri=!GOgEEHR*l0W}TiW<YlXY8kMmyuP*pbqwgU
zQzu`8tZP7`ELFwY?G31Bz=5Flo~Nk+_2~^r2^$*Fh~AiNqVg_Zsy8#BxdAQIlC&|P
zrSet=w5GqQt8KNm^mgP=<SypY)xm&{OgfRB$u4A9^36JJ%l0s!rvaBQB>ZeZF9UkB
zYl=J<%1E-W0sRc<PnSuCPzD$<kTQrIta^9y=oo6iFebyv5vsSIRX@sr(QJ+(Cy-;w
zaR!X1j9jKYyNPs>Nd`=&f4iRBRQfd4JKca8^qDG|Wx#BD{?ocyS9Nm?Xk0*hy_m~z
z9yy;}V8BAkA`+FfgJ`J%%M3Vaz$pWk8}N$(>katTfE5NDEFAmyOuZkmD_Jkat0=3<
zH3qDutRu(q%Jc6xCTuWZy8*u&u#ve;wTbeZ0h=jXRKC@KZOUaXI}G@|ua?yBH()1S
zn!60xP2Z!Ey_9{jZxoJ`f&(1kpaF*rIBdWXHcuFERE>O$@&~!<R@8AypY_`Q@F)E*
zQkuIHQk^!)mDytC#sQaQg=~vH!>+UBIr2Pt!GMdDOXSq?+Ie_&5&abdt};m?4F(t~
zCelip<$OrFSn>P24jY?x1CqE7T?V)fnB~H37d!@d4VY`iJS%(#_zlQqMs70#1_TZG
z!Gr=PgbWB9u*itTMnnv_W<W(FDj9LzfExy+HX@A?e;aVqfG8uXeT=>(C!AbW*3XWA
zZoq8=?ig^_0H0a^h`dMMCm)c~_0WKSly9k|m*lYlPgL?R<*5PBR8l9bo!S1AR{;ZF
z8t_U^`+Sa{4R}NOKuXP9$~yzztE66(_FnxXo1f&?U0t>RZpq_|0bdy=Giv*7^bBna
zW-MPjIh!erNJ)_}l@XIBX~$GrBhndB+=voJq&Fgi5rvINk-iF8ncavSMr2e|WileO
z@+_3BMr2cotS%WarxE#?<T4^RB^;wIOdcchvYC$@T}7Mw5A*_LL9!4jT|FOZC;uWw
z6jezv%Ix`3H#a4eG@`r_2lwiers_%=QQ8QRGNedZN;xBbr07(B>``nqr;-U{jL_3#
zRT5`JJiUTSGHudTHlm6Vy^ZK&L{-^0jA&{^Gb5@Skzhp6s468hmak!iRMsO!Y8p|C
zURxz~jHpXbRLQuIu0Fj1*^q3cdK*)k81ZRqc^R;|5v?mFbT^{WAbkrXT5>(KGU6vn
zYqAa5mX!6@&Ise3@2{Tijp$%RM|O2Gq6?)n`E3vBO7BL>v~r~yVGntBD(Pj!>ciUc
z+t-MGMvOILoDoAC)b4MDcXs^kH_-!(7|7y5MvPEX4W<l{N|g*VVz_dda3p<{N=8%0
zkn<Zv{a&Zacq5uvbyJL(plT+{eye;k<>j)tsYXnrPd8!#Wrh(mDYMAA<ZSY1Bj!-#
z=@kF5ws0Ps^JQ=0wfh#T-USPiEiq!L5f&q?Ml3U8xpW!vml3}h(c@vVT}JFSVucYa
zjaa3o+CW)Nt|8YNv5vBy{FRjX&Pj~jXv8KXeludT5!+S1MOG%SyCOAP8E%s&xSVHW
z`Tvg*I~eX%^+8?QJ+d>b&=pvr+s|;X5&I}bJ81tcJU~CF>JL#48*#*lqelF}=5f_~
z%!pz4wbgP$CCRhbK54`$+3x1(OGccQg7>il*6T;C(9St$j5w<*&lz!E`2`~`Dt~=D
zS<TZ4myNJL(p@p)Dn&erVjzu1m?&n|`*}ySP27km6Ox<YFv4lX8zbJzkvl%lWyDP*
zZW-Y=!Xx`3=jAsdV1!T2cl$Q&=?B@oW<*HkVM;{Kd+I7x*O}aqR{_edT-xi-Z6ofm
z`P_)Rlt-j=-80Jd2ei}L1C>0a{9{D>(c1qm9;^I`5&tTGYQ!_;az!sG`_G6MOkS$|
zl@YJ$Z+O)~)2O(2M(w&-U&hD1S2Z6fALaZ&`E0}&Bfip;nY5*n$G4|egHJGp30X}z
z`XE_K6H=LwTGeDUA&v61CZwaMS4jpFpj@u{n2Da5%%bv*8RD{;AlIPFZbA+da;iMH
z3AvQF$e``IdDzTrLOzw}H{n7_Z9Nw>p^yoGnQ+pC!X^|kVUP)fO(<$YF%xQ;P}_v!
zCX_Itk_nYLc}Wu@Q)6`WQYMsEW0o<YEWI50qsryl4&_aVW;4cw3M$uAV#zo%o;;Oa
zTjq-N&uyb*UQc)GDz1sHVuG-$3Dqd#)hP*N4YH;QoeUYItBwiBmg<_A(A0#w9LjSs
zCeZ|8J+i(D4JZvs$s3u_nC_e(FHO0kMKcrHo6y08<|ec-p(V#@N6HemqO>-ljY`^5
z<XUz=spNAcrlTy92|Z2dWkP4>UC3tXwg2yRrFT>H-6=gxsLH!k^j3La6Z+8KPt{(#
z`_cQ81IU47@tfM~&JYuZny}i0H6{!*AzQlGsU}Qg!Eh5sm@v|WQEW=_c*<yUj0s~^
zKF)-_JQAg5f(a9uPa-FiQ&gq-qHekgvqQ0SWp<Oa*RL7unn})*E>-!n33KR&IPyFb
z=9{oU^)90<Bo~p3O;|!%O3KJ1%?Znu|6;-l`bw3oGHGWgDO+p8Iuj0=u&s{1V5zwE
zCd?fhx77skUrpFR5#MOSCi-tG*-Y7Df;=fHkfFAju-$~;P1wP?>?L=qIqstDHeruS
zqWfrnBkVI_Ka&IGLDd@`8+Rpp;$e<|ggi?AA-gN(IC+AUW%!d%LFAMPr%kwQ!WG#M
zebHx3xTGDPdinj`Srg82{PW}mHLr^%+~p6AWqIT`BUepGGT|Q+9+?oIsk}kX>Lxf%
zFv=mnQfE?AnJE?%tSYfl?7}J9fm!XbPS+#OWrAA{78CwH935tXm+m9|q;v&L2+~6;
z8Qd){V!|~Ou5+qe<PA~=|C@5tge`5fYk}T2;f_2DhWE*P-#owej_3jXAt}v^t7<(q
z;fb7A%}8t3PR0M4@XCbOCOl=$GgbMV@*nxagqM_MH?(8t4LypJzct|<oA1fbCVZes
z*+&yTDc@0CJCS}d;j2oLnX!_g<jFZy3NuntQjwCUHp5&(dlu=;xbnV2r)SX*AL-JY
zk%0v;BP%7Ns?S8pOlC2o3EyF6Q@z<KIn2mO`NV51=P@I%8HpCuvml=t`OR2u#u_tz
zFr$DORn4eoMnN+QnNi-1Xfq0%aU*-;k7nr1Xz*EAghLf2i<wc}j1p#)WU~xeiY!f5
zuc_@D@+fOYIVR%QhDW9B8Z+js&Y!(X)%W_P>7!!I*q;!kHzQ-5K3Gy8)uV2#8F6Na
z$RnOo!HkNON-D2RsUj;XeR(OXZbpI`t;}d`M(q+YHDqbcXh^R~)*@@0QHN6ZTeCz=
zBBdT#U&hQ(UM3&DStrBJ$r9VhjK*f%FO$%O6lrQkGkSBf1=&*d9xfQu#*DURj5EtE
zTB6#S@sk;27wU$Y(cX*>X7u{3>(5ouQJm7rjLwuUWOuSF*^S(ILtBkK%;?GHA1$?J
zZ@NeyN?)=cd81y`0M2M2If#_`4mM*5eW*$<WGFwJD{urUPkAI|6gk?AF)ANx#$9`~
z6pS}xf*BLdm}JI6&Tg_9Qz&!Hm`ahQnrX%~<<rfWLEm!s`(Hq_%$Tiue>S5#e~~9s
z%{5~l^ZBZGff=RpYtMI)8H>$W!u%K2yOgrbjOCPXl~TMyjx{E$NFDEMyw;3$W?VAk
zvKi~m_|=RZX6!U$gKVjf(SPZqHkvViZ_NAbiQ`u5H*vz>%-BqkF}IkpRrxkEw$p!C
z$->RLU1sby<A@nY&Ddi`r-ix?hZBsU=)LrPq=fq^2grluAz1*`JFi>J9~`sjecdU_
zF*A;<xt#bW<X>i-RQZvdQK!w2NzRaGNok&=oHyeF<)X@`r_*0C<Ek9>78I}`$qa)T
zcVrXG+E^81G{b3z%M268H><f=C{{CU6g%lqy|%1+xAGvxV}@5HK8j!d3#5{sv$f3{
zG9zq8#Efey|J#h~%5Ru)u(noqlgTaew(6C=_nsVgY-Y6Jff*0!DJ}TNj7Mg?Hsg&M
zk5&DDW;~()YsOQ`Gc%s6-ndCo!}uL?ncWLBUNV10#wVnd@Gbq5s((j$Z^j48N0pCh
z5ck=PFKm95^NHpA`~PGX^y4Q=$(f{3dETwsm$Fi^nc9Lh7Nn)8BQuccEx1zX`+weG
zfuWwZPBK}L*@7%AkY;X5Rx+Cf*)7OnK~B}1%L2<B?UiK<*JmE)dC7caelqPyZRCO$
z6tbY2Og<r1VGAx@jW2J3?8!weC~845R+c7<lO@QKWGPYxk%O*`^0Jh27W_!jsXWaa
zeKbAB0=)&X7R0exiHw(-@?0mQRbW!lf^XZRGMkcDp;RT$yhv8vq8)b$Y}O!alC?;w
zuT80AL0y$(n;TQ#f(8}@EeKiA(1J!5%(q~H1&u9eV!=cUCRxzbf@T)<7Rg%PXpg=&
zCuVQsnC2F=u%M*{t<-3pD6K7MV?kRB+OgSQ_5NhR<WAb3!1Cx|K}VI#3r%MWx>(Sa
zNe{9c*_~`&LEA1p>AlFrNm|m!g1)j}F&R$wC#7qE1p_S@WWiu2LsdS+0=XrT6bw^I
zcAj8ISTNFpQ4B|0Fi!Q3p^UZQ7C(0z&*lWxJA6o*$ri{f)IRQACYNpsyQW$&&4TIl
z85aDk>StOoOZjXIPL9_8Q#wZ_b1j%hPsKYpFSKBh1xGA6YQbU)mRPXbf;AS@T&Syg
zR=3omy|6A*(=NB*7v(D`D=k<>*)&so-C1kFIt%t%Fd#{nGe_cj3%0OV{8!o4b0lt%
zCqfb5WWjIr%_=!~SKDe^E!bwkc24-a1-mGc@1X3I?aMuOx61cW4kwS=N7=9P1C)d0
zA@Z;s_&oalu;7^N`4*U%AGc^PPZumW!KTdXPYeE%RmbKj3(l(iv;}9B%N(WhoCW8Z
zoSv%fb+X<r%HjNN1uoQGrd%Pfl1XxIQN0K3(ehr%Yyq5l7YDIeV5Qj9T<jEw1y0Jh
zGqYRudMIAfNBS)YP~@$VEKk^ihy@j_sA$DC3$Duv&5A5m9CYb!Sn$<?WLErb!A;rs
zEV#`HUs`a-g1Z(xW%C~S4|$)IVINQ)s$=aDn~zoR6Ux69l>bxvQ2QC1&&mJD7v#6|
z<SPqaTkyt$w-$V1{*IIhKU(mf{(<~<gi8L2&Clew6LphU$>c3%loe^M+FR4)*6*(f
zDJUt)R92*>q*1-M@<pXno}Q9{1ewu_Oq9BuQC2ImS+&EklvO)jXSbrT760zl=ddCt
z%W{$V$=p`tp~%wawIZML-8r?5@&lU%tSG4RLRS3mHMfWrMO9wRisH&kP)bTK-)ohY
z<(V5(#)`65lw((ns{E0nv!XmDntU`w`wxaZ^j5?&i6bS6ryM8~RmqCVR`j)^pA~U4
zbycjWV?|x|R<)wd!<cGTRHuk1SW$ysldMJ7R=tJ1+P7H}t!QaQD=X@8kosf;D;iQ7
zk<F}VOld+kC1u(pDPo$_TabfWeqa99Y<8C!S<%*tc5HSce<Eet_LL4*bflC?t}To_
zI$P02)pWI@oAO}~wSpdO_9T0ey~#dSe0zT@HT|uS_pT$X+TTP2tT@_KKad<`#bC-1
zaws{B98OB59PA^xenwd_+KMq&jOF+<WK7B=ay%*Xnqb95x{iC`Wcm~<rdlzLKAmjA
zH6w2%WRjUy%wi~Sv}RL&Cg+e+kTrAEd@B}MQO$ws4lJ}{kriicIA_CRE0$RC%!=n$
zEVW{p6_@2{TCv=UU#!?+#ZD_$Sh3QI-({0+(XX;1Rfo7fCv+QSPre?z+KM$4@wJq7
zR;;J|N^VfSGup*%Qp@ujWiz>j+)8e<Vmn2aS?)!Gp87$H<9AuH+lrG`oU-E8e%&4`
zt}lu|V#QuICD~`ie&q)!2gyTL99H?eWN}B;$bV3dS#ew?Cq(FfsU%9D@MW3)v^@P~
z`UlTr&Zzt><(w7gRdT_Ki}Xt>ncN}nsuf9A+_$1Y_Syz3j8=rK2wP#Y;!aFL#rAP7
z7Mn?n6;_Ikw380fNy^%Y$&n~ixvlWXS-pLnmlW|?;im`4pvq<8Bb;_xBvvj6c1>2A
z6*rjNCI2RGlD9~i%WYXa<#HJ=N$#;}o{>tP)B`JIyFX;|j}?zp<zvbdIWbb6lEZk7
zum7xgA;*XfLu_~{+rkRH4Y4-7w&IPPEp5na!?h(bZ>>mYLwXzDS@E8ef3V`K70GP)
z$fhjGCo4YFzmTooXzx9uY~RoMsVK>9NI^-d@<W$XrKYD*Nm|OhugRA0(q*7$vjH|p
zQyv*@$fP{84O!?}RU#KulbL4cR5@(ONy$a#CZ$*IN|uja)P`b|{NxWd6i_t<DTQn(
zOev!B<?UmN+psD=rW`3!f>P3kQk2qU8L})XHEFKugg>&Wv!OgCnv793FKj8|Y>2m^
zgAE;Rs9-}y8yeft#D+?odu_5ZS;dB`HdLe6Amw>gw;@6K)!L{@uSISuroF(`q1Po7
zZK!8MeR@Mu3L4l@j`w$Kq>_9KqM9miZ9_A9bCtBPp(VW)Ijev+7kRW{v#kyL-zIBk
z!%u9sCm(0kYMk*goowi1!{(IQ_Ug>8E@W35y4ld(h8}E6Z!a5q(x>yz0=-r4<5$Z2
z+R%?le{z889Y`5O9{Z4Ns13txm}A3S8;093!iJx1a(j1eX-C>Hfn}rAw4-epqkOCl
z<LKkbM7y^96X}y|m~6uo`V4X^DFxFg({0$!-wQ}G(}r0LXOqo%bjUZ-V^`|u*)X5s
zej66pAS-914V!FOXu~2o|J$&Hy=%#(<VqWsQI?axkTRDQlwI5Fu2RWr8`jWug}!f{
zbvCSL@~f)ZU_+5=TJLWv`JJ-ahAk@DYQr|=+imzZBbj7}4Lfbv#jf3QHsJj_CEsJi
zURA%(hSD{)k3tUEaFF348&25JI&;inRdd9Kqx3(>V=6x`d+8$W>l}Zw{x4D{JZZxz
z`f2iv%H`rt=WVzktJIDKc3iaKk`0CIC~U`N8?M-J-G&=BT(u#|hN8C<d^U_<qYKBz
z8f-AyU{dpSP|T#o1}nuz+R1-@;hs#F#dA^IHh3srvI_56DK}a0+YnHdK}yJmuu39w
zj-~&=`#$__!%Z7L+weuUT|&$)cHOt(whb-D#>nFi<*p6)RI)I?{(%h-ZTQEAM{*{&
z;gt=KIpH(%3HdMilx(5?_xRj~|CqcWmsi%F*K7KF@(n5BTRH#J^%cMGOCQ+$Xu~H}
z6Z1IPR~y#eiiRDPViJ<s5oJemyY?!OhD<?9GbJUJ9jPhTtA2kcnU>9TcBH3dAouV>
zg&FP0WJhK@vM|g?W+iix+3d(pk@0ibkyCl))G@i~dC0uv|Lz%)-;N(tWdS=1(l0I4
zo?{U^irUf2j@EV*v!l2j73`>JM+rNYuGPsyM=5DXDN1RwjOs0GM>+bBDv2AAP@W#G
zk{F8Kj#x?@8LxU}9aggAw;HiE?5Jr+WiDG4vMO24j=|Ass?%kG6YR*{Py63OEjw!4
zF>gssV>{}ww*gs~OeE`(^+}ne6+eP$Xh$O^4GU=>`N;@P>}blNnvs$;x1$BUrAnrr
zjcH>?TRWQPNStCvJ3D@|V@yKK06W^-(ZP;BYAzk^=&rmIrL!Gf>`34>8@t-kP4%8F
zRYw+}2b(?Z=tb#G#;5rHO|!mi_9Od~)w3iFv}2I07CVM88E?l>ii|djGK?Hfj<92-
z>b*2xKbk&<97~Q<y=`)7|FN9F=0rOtQ6`fwdujh;oNC83Hm8$w?3h83u9<esqR%FO
zCcnmN``BDnGtZ8?{2ui}I~LjT*p4T5EVg5b9Y#A$vP;+@7c*aD$67n`I--}^v0P32
z3uT2JD^;?}j@5Lz1iH*+ogM3?$>di%Hc$?c8|~O?$2R&V+1V&E$!0sY(C7ZDE$4QX
z@3Z4~J9e<S(~jLL-z7)EQLS<hlf5c`c0zlV-_Pa&@}P`dORGH0<`MEJ`G+0HD97zM
zLFt*ORgS2vokRYz<0QjV<YhZf+i}K@vus`<rR*H#Jo)Wg9~bSo#OAlPafN=Bl=>t)
z4D@f$)J*r-;kCnJN4hN9fnc@6#@tRiNGB=1E<4=xxPNL%(`QGn`f;)K<E}CElL0$|
zln^OpVM@e~RJ>T?bvtg@@i)VJ<W2Gxd7G4}?%3rssqgQrWiI!XKd|E={U7p?%7^Ai
z{MU}BcI0p%rvuOIcy31u2U0rlpB)FL#AF>D|B1yf?089eMZT8(&5pP959B-YJt<4_
zZw>8b{Ue+A_)V41c6?#;E1AskeL15XNUr>3pQuz092u&YM@C9&G7XuQOy@v)N(NFY
z;eh-;LL?KD%qq{~Kvw119LP?eb~2Sz=8`AdDypml<s8WEz}VF>c^q=!Xp5B3fkF-x
zrspSraG-!%!h#N5;^+HPS%hIp2Z~aPk;NS-;lS&e+MZeDPwl%arI?o{%a9UIH>Um3
zfdz;3@{^x<2R;?n%Vq0@<sFEoh{sU$4#ZO8R4&&puE23Bs?jPrP?=tZtV(vSs6Cwo
z2WmJ_%Zb`f)D&?b=s?JU+78r_1(1I!I8fJtL<hP!(A5FCpv1^^sOLa^2O2maS6wh}
zjcLIF8#>U4(%69}4m_`>jo*}sNHa=v2L>F{o_k9NS}|$uKzmiwhSHX7=fF=Y@9Bx^
zK<`L)B0G~SDro1=ZVq&JV4MTv9q8e}lizg%*xQpX&0Y@lR^Erwm+VLOci`xYSScIm
zz#vXI*nyFhA*9S=C}kKqoE#zR<czi(%VQLi(GHBEj3p2AlcNdrS>!|qCOI&fE>lf)
zU<y4szsW4gGzX@u-Wd+eq_4lG{V#ep{b$uXhccI(=fHf5hkqR`a$vCozdEqNfh7*@
z;%0IIx77|Tb!hhvSf)l;?!Yg~S2(az`6`*}ytZdPcow~e;aUgQQPz`oUd?`^1DhN;
z<A9X?=D=nLj>&%VXTlbl3(F3Y+sHi*Y<J*y2X?S2gYR}=r}ABtMLD9bb=FRpd)eHl
zdiPTf$o{}9vmIjdu<AWRIqJY4luo=l+;J|+2~rm6PY3=|ev)#^fzv86?bDrg;2bAE
z?||6>ivt%NxG2Xm!z5A`?6Lz_=vT@AT@lpafRTxbEIUNoURGIY8Diz(cECorlMd2J
zx=5*M_ExL(IN)XCQ@P)Pfbxc~W5W(a9P;@BGCFb1f$I+Z<G>@?#18!Jz)c5k$%%SU
zT;@yqOA%e=;`-b2MEb`CE7g+U*~uc^ao{eO@E$42ec61<A5t<7O!JuXl6)d7WN@53
z{&nCf{h3Oh%c}tW1sO9hm6W}blj_L0*ABdK;H?Ai<m~N43a54|c<;a$HLnj2e58LO
zKdU_IlI|-#87GM%W!gQ{(xjxPRY@u*QY%kGNo*gLj*_0tpnA&=OOwfo%uW<^qL35E
zza-1zL{=xVIq~Fpbg4t~CF+>$PUL){%g0G_h*NT@5pp|`hn`m@WlT}|mH*&G0eWhu
zc4jL~FXKd6CyF?cKUGZTG%-b;C??C0CZ;%9f|O=SCrZ&vtK{|h=yGc0I46E|qNGD7
z51kX`>Cq~Qq3Fq2Ck9T{%Ho}<z{x8*QH@fGtV~uRWg)9N(XgMkwAEFT;6x4OHC1mN
zC+a%!j}woaNOYo}6H}d-=0trb8ps@-806G0>)p_amQJ*Cq7g@EOg2%YHFcsHy}3$S
zIAP>{MN^)NY3;<gED1fGXyZg%C)%l+&QAQKygj7@+0ltkDt~eyri&9@oe1#r*={QD
z?nDpe({n~G&XL&5iQZ0#^dUw1Qu;a3pE5w@#$@`>t965&Si4;}M%F{ixFH;Bs1w5|
z!_~+moES+TMUGbaUkmi5TEvZ&=fz~a$|q1Jl9R~EPE1j~@<-EjCuTTtz=?xS%yeRw
ztXn63abmVSn#5Gzlu#yZ?9Wcj;Usg(MNZ69Bh05PAQ#FDI`8Z$n|QGkOH|EL$}%Uu
z{oS#`iF7Zc*E{j66Dw8CD#~hd4Y`(F=foPlb|7zXVk47XPHdt`xQ+6g6PqbpRKC@T
zaz1TO+s@>7atFDSw58K}chmQf(%kFBKIQwJ7_(QaIpoA)Cwxx$ojBseQ74j|FgUTh
zRm>kwoO0r{6UW#*PD*}42BH5&o>aN~fhhx?;VdqaXPr2w=6K$T3(6<NC%;6$tdc8E
zT&0)heKTboqZ4-7b)UqTn449l#R;o&o7&b6R!Xtc372v=#Y1}KX&%%|!Kb$|0VnP`
zaVDf+*0xsAiI5XvCn8Qr^Co$Xl;(9OZqWZ$$<nfQZYjU*#2xxwm84Cpzt3fRKt3d=
zkI~liV>vN8QQ3tmF8u4nQzxQb+ID~D#B(Q-xe(>Te@?t`;#14Gu1~bzA-?3~@11x>
zc}>0{rT489@90(e%iIqt|48{nes<!E%D+1CW}WuVD!B_OTqxy2bDvHgDP73m0@zGN
zrgk9>C9SGSM@jEO(H!Mvl8i27a-oRo&Fn%B7jm+h#f7XY&qm4a!p;ZUjB>e<n@K@3
zj|=%Jc}XeA=fbOTTICNaDd0kb@mf+yC50*Fe@-T0Q5TA_S)44PYD&6L?};{5X(nY<
zUe<+j%71i0r@Xuir~lLHW#z=U@bH07??Nm^JdP6YLIssnq*QWY<%+aYP}PNME=+J?
zq6^hsNN}OG3vIY@Yq-$FrQI>GrVF)PsLfF3Qs0F-%Ii`R$$Bo7;eY%Zu-Q=6G@>+i
zp%DM0+my{_WOK3wDI>R}v?3c-PTtmqZMUO)yU@plb}szHW_z-$3mqsO$xfsccXpwR
z^7I2^y3xCnJ;<J_x0efY4@8-yuM7QLxS1nvqznDkk_@2?AP2fINacfF$W~L^^M|Tr
z7-cv)!iB~iwRd_l+9-}WnjAxpbzvMuddE}b4vc1FOt?kVBp2lO*OO&W&Zh0;Q#jgG
z7pAGXOm|_1@|l#2uao`kl4~L24?m9iG1rB8vP*c;!i)JXEO6m~8wcH3=)xiw3c69q
zjm0i3al!9Gz=fq8WWSWTu*`+!vPZqF{)-FiUHFw<E69~DtfI(Lt#)AzeJ#08<>hy3
z|I6ASM+%dTE^Kn)H`Tk1ve|_#l&xeV{^DMy+U~;dOm>ix_$npeMc+;CQTbjM_9-ui
zsDmyXa^ai{=Ur%@MW3Te{9zY1tkoYOkIHJH9CP6$<v4kQ{FD5Plt~u5bf=V`rkru%
ztV)J&Ot|2}*Nytsdv!J!F1m2Zh09zLBYB0qs+KLu1p_@5uk9nx$mD{ViG{S1srf4*
zJKf=e(*+k@>fJ6J(`);fJUlMBuJ3pEQOuL0f-Zzy_##W?LfC}}^JnBW7v`p`eaD6C
zY~CPcoWChI$y?-Y@)`dyx$D9`7w$88Kt3iPlK;5yh_ah^x{=YI$g2R8r{uIT+J6O~
z%ei8W{y!I9xbTwsJ5st{QC^d8$hWe?-_~AP<nf-#2lAr}pD3S6>5XKKOD1<faU+Kt
zWh>Q9?nVkX7PQuOIeDaXBb{4YKdIbE?M529G}BU=FG*9#qs=9~8yT2@%;H8yN+vQh
z+1#rAg)5J&Y-S^~yCH)}nA45UxvJ!HBexrQ*p-(Y(MS95aXz|8em8zlUcikWb+u(H
z>_!nc2D&lGjiPQ8bEA$Mb={C(>lAk*){Qu~_6wR4Zj^MR6eln3hE9!BMxMCxa&GxW
zr#9wk^&6t{ZbYlz7&r9Fk2zB87#$by)_$hcWNcgoH!8YON%bbUQQ3_uY*r=Zw{_K2
zZ*|JQ{IOmQdQCTKsovUdbR4U#6B#*C+>K6d)N`Xg=heWCX0p=g4c%x&Y5Z+5$fjhQ
zzUgK17WB4cOR^Q&nv{YzZme9KK|~(y-1v!kd$I#L>_sZ+x-%-Svm2%VOz6dh>_T=W
zySdR_EqM<&deS#f(e~Kh^gd)?vLD%>96)}|tNk}=up2|%nB&G=H-@?~%#GP@{Orbq
zd%D>#boVyshPyGsjgfAQazmOENRiQ$G2~b`#!<$rUb!#lL^me6F`3D9a*FDm>c%wX
z=L_j&v>9&9WHL+TQ?u7L8+9XY#0Fy%N``gw+?emiS~u2l;TOm`|3>V=9El6vSR~Hy
z7jg+HPi?6i%akv7qX6$zxPr+_m9KJRwemHx2imlwuUkO3p5YGiS8{_J8{OFC#&4>A
zD`m4ATPWYgm&v!Wx!sN5Ri!+aoyvDnc9VO^y>9GNz5Ctrenwk{Lv9>)W4#BzdT_*z
zqi*E#Ah!p9xN%IjjvEi%a_>%@aAVamomVDz<1aUo+%ULt(v9h+gbN%~<P@8y$us0x
zH_lO{_q>d@q=Jad^r9P=IMrpfJXhRuwM^}(Jlg*IInC&Xor#GwlNM6StQ4E<&%Erd
zBn~D{(&dJm;vt*X(~dQt8}Wt&zZ(HJf^LM|xXs=$DFrv&h|sT**U19uv~$|us^%u;
zmK>hECbM+iapNw-d#dKX8{htC_>UWp+(_j?Y7ZW}@%dxi8#ms%@x+aPS^SiI<;FA0
zbMim(1^JScxy0?%{)zY6jqHoH=kiWYeaW?}J$!ZJJ^ceI;YT+<DgW%o7v)WFYhN@?
z=FwJiln2Qv;wdO8$s!y)jR%=MXniL(EyHvkr1#+FpzoguXJ802BbmvAijTE(cosHA
zvU-qBd3FzS&~uXO618#ic#zkF_8z%%Bl3BW--Fs7)bZd44+_X=9#rz6pa+FKa&_6*
zXb%c=+OlL34~lwFj9!YA0gF>gkR@elpJ{(U$)mIfWf&IN`u$fw<vjS2iH<B!PT+6E
zWL`0xqn?Z<<H&dqDo~_Gwqs>ZRgJ7dRwZSQKQ2yJU3r2BHI&!%pcZ{9U(xE)8<UA-
zJyJ%fPif#mLrNpE13#T?;z3h3o5=>ENPTk;S}1SnK`Z*U^4f-$M;kWVdeBbQ{N%wg
zevZ)5gH9fd@?f+FojsV4O8XAmAP>5D(3QpAJm{mQ>h3`g<vl&<MenT=xomY`dOxy1
zIY9Le^x(l=ZHr`E8aG(>jiqrzJQzw5A4VBYjvz;R@V-@?bdB*~tOs*En9HHYc`!|l
zIbIgngNbZT@?a`uGC74j-1z&MWZ_5c*qP37h6gh#vq;Hjd+@XJef=xV^I$%kE6D}q
zQV$kV7Lkj|CFHmBgN(DxgXK)bf1#|9jn!D&+gGu<TJ^5+U@d(eDR&8%nhhRo^x!`a
zUU;y{gWo(j<H1=EHhZwegQIdn_F$_ARc6Et59{}E!fhUGr~FRtAa{~7;4aE;4+ehX
z|Nq(Cr+W8O4tQ|TgG2Pga{i}$JLhcV`E7L{y{m@4k~`s;2j!~ikCP|JKgqwyljJE6
zPE-2ztt7?gJUH)x%LBIu7dUd}C2?jCF48Y~aM^<^bXnRY%2f~cuG4l}gUXE_nCRcG
z%Wa`sRj<thJKaG#RepVPGLHvd5ALeON4Y`zJqUOZ^dO{q!*c!^P)X(+QOPwAt}FMZ
zjs2T`le|UVChw3nc+K#89^9AxoQVwe#Dj;*|DimRR{@HBl(xnHRlQFs&pdceDarT4
zFFknWK^`yidbI=jwFhauNbAKL4{T#~Z#{S?#|Z0_v)}{$Bl*dL&mMfCCu8qdx{P!C
zO<WWc@leV56v|V2k&2$0ti)&Z;B9m|FBUY`XYnFE^9&?N86l$=nUrUyOrM;r-;%hj
zUI?>!k)4u*lq9DYx#+o7B7^7iBEJ`vy{O{F4_*}TB6lgho}(4?qJ$SE>4m%~>_ri}
z+`phGMV6tM7scsq2Wr1fE2Z)uy(q1`45cht&WkbXJ%i4R@(iQN7;+JNW9e~ZJSl@$
z@S-BU5-B%FkWg;=P}Pflf9e}}QO%3$>`L&W4y6VuWi`F1MXycfcWV29JnDLp$fO=w
zpOpN~kf?_AMr32M3E7lvMoQ(E{K;E-(aJ0T6UL7|wDzKn7hAp9=0#gC+Ica~i}7Ck
z<VAZg26-{qt6c@XgBLx#=;_t&Ow`efP8_W>*+q@q)r)TQ?kX94AZ?##u^xSb+-|9t
z7rnjsJ))CGA4*@@tSag6#Q^$1mF)Dz4)JQYRvGHWFt7Yw6T5tC%y2Ib9*thRMf-A*
zJVtmiQq60W7o(Mrp^TL$Qc7Fr6TFz{#cy70_F|G3lf78w#cD66cp-E7*^4=pspK>-
zrc<PA24yBW%Zu46mrJ$JRlbBWPyP!;SwJpSy^Fk9th}iqLB?F_#WE(#$zRA7<VsR%
zDy`PfXcD(Z_MfM*pHJ5jU+aZ%ofqpV;=g*afxeO4q;k1rdZ{|GTV%d|-R(Wmn={px
zOX6>rwd%zOFFty)L+0W|(2J04Sub{bVerBz^E#Wb$BUz0{Ncr3wI=s@v0wQCS@~WZ
z^5QU)Bjmu1-{0w(YNR>F<dheuDaXkZLdsv{N%B%}?KE|UE^>)-){AqL^D4jK#YN?R
zPSdvdWj3#nSG`E0Bxci&Ws@w}Ih|7utCM;&a|<b5RxfOHyGk6Co@Jw4vj30O$-_<Y
zc;Th^RPOg8pu9<n@^Wvcuon?8u6fa6fAk$s>~$}0c=4YX%a3b+t^Do9Jq~`8yrt%N
zn{vmCyA=Iz+WU?BUOZs)A^F6Me<+VgDR?aB%<5X@zf7Kz&&cPhM)t-R^p{?|qP+Iv
zJ>`w6dF#bH`nS<$@gCEky!h-zMjtZyAQvtF;>9#?>{l;F_;qzsR$073m&}JKACmi!
z!uS3CVOmN`GL;XhDQQ&isPbvj(bJO|NT}XvcavrIX}3(u?L!_P@>i{u#fPk_H=7UH
zmFMswCp{P0gZJsk>q9=DcGoRAndE0)oczIu0+fP26s8m+b49crMjl0cD9S{<7^UO=
z^d(eM(uY#YOZ!lUUREVts?^c>P~Hc#4;CMyeTea4hz~=3(EAYULsK7``4A_`zL-QG
zIwr)#`%uA$iX0(9)@@$xKg^Zbtn5P-N>#ENS)G)cgUMoQu)Zc)i>yu7A?uPd;D=5L
z^?ce#RP{M+12sZJN+TZ{tE7n!i@e|8**5o~s}J3L+BcJ1_~hy<XvMPDKD1Z$Z76Mh
zXh->pd_7J(#yikElATBiJNwW@dHfHtawG3$?_#<$>ET09A9~UIlf6}CA4*@cpAQrG
zDc%4!2a<zG8Go=312bvMKg@^WKCJR#wGShF80o_-A7-;`lxz!s%p@Ob_lp}%j`3kE
zWgI!4oIp+_rSj>~n8}=Q3MnH@rA#BI`!IttQ}zD+N<XAo%;7b<pM97kyRi?u4(OJU
zBJ(Ko$pt>S2ffz2h+IrcGeymqrOKE2uw3~sKCDo_(g(vUy%ewUVXY4z8^@gXVVw`_
zeK_F5rUm+6ec0f`b{~G{bKmI0R<*7+`S6?a&6F)Z^x?O!Wd&|y^6hKwJ7jjMa_9fa
zcl)r1&AsG4az7~}bW4am$YnSr`yS;8d4fDj{y`q|;W*{?e=)Mmf71UVrFqhaQ*_tM
z%F;aJgRWW3Ss%`EM(4>ZK3t$&RCB-N!)1D%I^SP$uKJL~#6TKJ6Ddn8o7n1u&4)UE
z)b+#egTse{eiZV<>4QtoY<?v7!|j8|hv#x)$x`0ygO8KnBmHEA43I%G<U^S9?N0R9
ze7Mf$4e}QGH+fU7|J!WdA@7p1gtE&C@B8q;hlf7=qw;@!ctn3pK2dr9Q?;Hde@5v(
z4gdM@!iSe^ej;D_@Y;tr^!KF9<t^o%oWA(0mJe)xB-<^~j<3)3FQhcTQj+<R*i2j7
zDf~$3*M1t1)vvt}q#`qrsr^VpNlT_9r6#=}-+pTVm1Lx3A~Ta&$Y3N*Hb1h{bNG>$
zA|vGVBbV~rlsqzKvhQcJe17Cty+2S2_%We})?3(*B7U^|B__6dR8c?5%E!Ca6UtJG
zk;Tapew3t?B1@BHNSQ=_T2juBAN|nzQQnVAepL1&TFo)ej~KdKw^!yEOOD}rGG5hG
zpj4F43i+A7lvQC;!;h+zYGidXfs~q^U9>MD*Yu+nliFle{^Bpuk9vL#_sa`3>if~a
zkFI`n^P{03jr{nDm5tRnEh$a>Xi90O^5%ZDpr=sZPHDwvYd_jh+N#QSl#;ok+EY5H
zyrUnTly~-{3%%<AZ9nPm$D&jE{(j6{86(nz&7OYrqDa!4(#Ma!D(UCP>oa=k8X!|$
z(8*&UWe_=-9OB1N$}m!Do*dPU^kbAC%lugGhkRdXv>%iGm_i@p$5@Kw<NO$}d;(=6
zImwTt9Enme)sJa>3Jd(0PWhRfLCTYwNtxxxY)a>j+CDaiK9`(FN;qFe;QiCZ7s?Z4
zzF74xp)4h<O^Eu%j}_cY_xZ7s;jeyd@MD!9tNmERWLX34@0Yc7k#&BoS6-%T)J8ux
zvAL7{&5v!A&EytxD=E|F{*Y|D^56Z~LI3tEhFvP(?Z+PaUNTmlY4`haK-C<i9P;BZ
z<p_CH^{z;sc-)T@vQ2|{6U3i>{3Yku06YPl^y8H5r2(`L;ItoS{P^O>S3l1Ban6qq
zeth)fydQbYX^eiD{J5aTyy(Xz<(DZ}$g5<M9|qMs{IK5ahsBSFew5p(v-)B4<C-7W
z<^0bYkE(P~oPM}e;`U>bOWU$uCO$v>egx<tGDuoWeE;=I*pCPknI!gO%nkY-mHh3;
zP35=zxJ@rSOFKsHs{9`1KKZ~8@GS9<ACLTa?8g)4ul@L!@*gRaKlS68^5=fc;!i1G
zsN|&|uju1=jcciY!{%G^9r@l5Z-TZYpXAV35cS!Qch$AOT%uB!xBsMX(K{xYe3>tR
zA^{W)Ab9{O0$A8NCQkq<1E|<IR=(<&F@RJ7?8z3BnoL7VGc6@u0O=_iR6g#g_C7pQ
z00Z*JW({a3%*+8~p?u+;EV8jndb0<RLwQb0E;4rja|*;sLEZp5uF>96=i}u01Nebb
zfGkKBBBiEq0Q31vsA2&W4<J5(3NqT<_!0r=0w|GDd;KjLKq*yUno@==OO^}ZN7cJ^
zZhU!qG#R6EeE_laIPxBknu-Bz`8mEp01X4E6hP$ws;K%J0aR69Er9CE69RB@yVMMz
zRsgkCo=B+^KwU~y3vDm0r+VvCTJF%oMl!pX(Jh!XCYuD%l+uipn&ttV;l9z5#Zupj
z(wb~Twhf@2>P`Mk-$B-S0K)<pE=TdF*iHe+jedp%&^drE0dx%@a5Y+PGt@VLZuIVC
z53(oOi|kGIA!U+gpS6GT_v3=~CkF&DP%Y;m%HRNw@ba@m1NiTgRxh{p84<w90QLs3
zFMv@2j1FiQk6jVK7)~-dfGGitrH@miji*cqU?OD_IjfeoD^3kyS^$fgOb=iNWdS*p
zoI}ncXOlmZbtXp5rOYGelNBCnpBycui!7oPJfwY^wj_Y1Dqluf9>6b@4SluEw=#fL
z0jv&SO#r_$UrTN#rC?nE>jU^TfDKGGseEGq-+mkQ8<TI#u!X)=)ocr3J3W@aDU;E5
zu(>mUU6kGA9#VQIEsNS8z<~fR2XG~TgUpWyaDs9ufWwp{<WceuQl>o?(0=SD@~2A9
z2JjdCBza2Zr)6(ceu7`#KF8*H@<IR?RqrL)th}G*)c|(9)X5LiUWT-@R#E_l0E{d%
z1z-!nPB#Z&p;*ap%VXZ9t!H^S<XB_wBES9i%^QF(fZu}H9E4x?(g5^9#0C)zAS9>3
zAW{Yq4&dC#>i-1bTAqGa8hs>yYXMvj;0DK$k?&Ie4&bIrZc%Ora7QKG-$&n5exLGy
zd>DW^gSJmT3gB@7PZ&N6;CTT5s`{stC;Y|Me*wG?;6nf}7`_bPRRFK)Z^<|0hw9px
z@BWW}q)Ygf@+pANlrR6MMtYOUE4aKakjaDS^j5obajGCv2T>-7?oMq@rU@cb5SfEW
z%d&K&<mo9HNCc6QVy~&apUDzLRyK>0*@DO&M4lkBvzdd;N#-ImW!JV^UU~sCADN&0
zfh;vzt0_nqDMTq8L=lyg?X118E*3;_CM8r}GKf<2(kdA}sh0eZzibfYRPtjGI(m6B
zTIDf8$PeUY*tj6#gBTmcxF9M7Q89?NL9`3v*kfI#AQFS97ewVCs&K-pWX&L|sd1`P
z5`w5f8JnQ3rCO@DHl+?(Hwa55t+##<lLE2L7&f3cBqeMVL}Pjrl{5|FXr%<{YR>u=
zWJ^+pYDH-sL>ratS)uzWi1tB@2;w-ue9|F^ZnDLL=*XH*WM@_1C5W!{G9$ImDS8Ca
zlg+_F^rG}vmAxr_g6OM~enC{?wc=&M0SpHQF^KZ*y0Sx5<xt8na(ECQs%h(Cr0N|-
z8BLBMlRwtoU7;Hv#KIsJ1<{~K+=L(|$~p;Rau8F3n4_khN|_nNG|F^x23dnw(Vs=1
zP0CDvmi?d4RD5m_^He^cvVeS+KE=%(iHl{&$W(q+P`>Y)xFm?B6!B%0<>W8qiXc|1
z-ujPptAkh*#99uuQH{SYi1qYeRkA_$E-v9FmDI?UZc7kbgK!1m4q{sn+hsqL?I_PW
zYwYi`f9}!m2x7;;xI?#fJA;tl`|Jv0cMy9x!Xa|68f_nCKY1XCgDPJ?DDJTGBb1{-
z{6WclQQHSj1aWUz+_@mmOBjS{K-^!d{v_oTd73;E#97K9z8kzC2TO6iDG0em+QlF)
z1#y|ZMp6d9Lb*yN1!15p?x?*p&tF{ID`Y}5C$|J)rPxS2=^&k?RNlX+yOlS&CkUUM
z_JcTM(|Lm^_M1*t(bAcz0zv#O+eKal7)l<ZgoB8v<QnBVc|+E1^W;)?<3OETT(E~h
z+@{Ea-J#qi?*(z6@__u+shwT_3E~l(kArwlc|!h6J|(5>SrA!xmFE9c@`Cb`d?h>i
zY3;o9Hi&mYghB|1@Lmp?Aex8JB7~1Ye3F;85aL4k9K@F(3WQKFgs(v)3n6C+f7jJ6
z+z}N*rVxti^vOd=5z+=sNv0!Hk*UcvWZDo;bou`GQTh-vFa#;nW(>(4-?YCwGBe4d
z@~o6>A!MiIAZzorK353o?rQIyax=^mLS9NfQu6#E{6HVg-yanUp>PPLLnsr%kELRZ
zgtR*^7fq>s_o-+I#ne>ADJ95~WT}vR&s<x!LUj_dX4C#ID9gN@j6;z`7eaaE(ILdp
z^(xuEu5Nq?6+&ndLemgR?ue-v!n9uLO|Nv7La5BLDj~co9hVqFRW_@IP(6eMHA1Zr
zYS3${Br#{Y+VnbPU6t>86J3u()h8Q}GIGNZ8qpi8<k6kzMlI70t(B@-NG=_j>Oht%
z+0y7+hR`a61tBa9p>+stLg*VpzYyAnP&Q|ky?N4i4QZbqwhL*W{Qg9?Cp(ZGL+C{5
zOm-oq@@)V3ZXxZ*5wfnjhtPvd+fyxbFG}wa`lzHyw&XkIpG6@|3Sn{x148&YHep~0
zgF+Y_!jKR~smiuFqlVIlsbqKvBj_Vl(j`GZnm#6kv6OM-gb>D4!Zz*rnn<r(U)$F5
zS<)C!taXcSN(fVBV}&rCy+4yPNGY2c!Yul1@_GerT6xR~VXmr~7s7nyci$&lBr7n4
z<8nBJuq1?~A^aA?<`9<2PWV>0mX#vQL->Ws3UVbW`Kl0B)7Plv;ceYIPPLx=Rn2Py
zWh1#Mq}>}@7Hp$8c1s8cxHY$iuq}k`s(yC}zteY+JIP&SJAR6~hrXBGN6LWvDS2i@
z9psp@lN<`+F#U*1j#B;z;h0Kd<pa17{tDq@2*Zo(PlmJ)@8knD8BpYu>?%ye&rr^i
z=g9LRTu{B!ujwv@a5;o4AzTf?&4o!Kt!fDkA-UKuOd+{<o_1Sjd6?N{AxB<`vQg}$
zgLINEQtHn&jq@n?hTx<7RT7{CLy(W=r8pA8wGhUIF+Pmza*~k~X&CWg{2jv05ORc(
zGmKlD<V6TCL%1Enoe=Iad8Ed?7s7qz4=4}Ge`G)5_xB#N`6PsY<;?lNN@v<<%Abeu
zpYllMgjXTF4x!LK9m06SJSwd15At{$!aI2hVE94K`D&_<luse#ukn4a{vxje43nv8
zKR>OUJd6}<rX<sbkxKQZ4kHcye<P%0Gkq8t{{K8<7@5>mnZwAUJZl))=-E{=Xn5UR
zVeOg^#lk2aMsDVL$h=|XqvQ{xkgETIQXq_iDv=wo7N!>=i;~}#Q0``1BCK6Hqvav}
zhZZp<!zdL-=`hNKAx(Ldr<5hjh4CXrr+T-Ktt&OrVZ<=eld-B-u3S+ejEZ5j2%}{f
zHLgUxu<9?TjjF^2s2oO>Fsg=8EsW}6G-jAU)()c%rA8PvDYeM|t<}10HV7k;BHOfH
z81<ER9HPBuHDt3<7+ZLsP)VAE(Nxtm3!^!`7_U?;y{*FN8Ah)#T8GhwU2VhYOlha4
z`YDX|^bRWNNa+;De;u_yz`L;7mF%W!x>I_Dk(5^ZyR3H@hoba@!g9&Mm_F?4t1A0Z
z`jZ35f#j}y$p=%0kVC^57RGS83^*!`5%iJdxBH@wrjJoIV<}xz>L-LTF^tn;oC#x6
z7?Z<T8^*dYri3vyjMZVR31eCq$*;#Qk?oixae5dt!k8%=Xp3GR^C+{(*<t)lnM2Mc
zrDkg3y2ANvE(l{GWf8ep)pXG(Eaf6CQ%ks<@(Z~ljFpsCs<&2Q?NqkDL!4aJ^0_5p
zeHg!naa6WfySSP@ZOv~8V`CVbRQ(RhZ((ef9Uv?hn$V8@ZKPabQhd9r{GHONY}%b+
z?4s`u<Dlx@6UN>!_Jy&Z$pP}$>e_uw(z&$v_J>sE;V_QSKk>7qKj_Eg?DtcgJdRUN
zkbj2p7v&^*ij*4r;`p;+oD1V}7+1nLAI60+E{1U_jFL6tKON9jcIz_St9|cwbiK>9
zZu}eFyKr53`d7oShvDGtlEN^A;oq;5hcOJ3ax=w3TEnoZ{QXaH&M-VDqqFBsluag2
z$Hj5n5>mXRkMxsMdTIM`D2#9z+alN=K|~Idt>vpkP&I;U@)8in4LSKUEEd5{Ir)bX
z6+!X{ZijIvjHh8d3*&AW_riD*#=l|Q595J6i|chCh4C<qbovVa$o6%|*`q7S$Re>h
z6Q%cY7>y_&$HzBx#&yk^_-;b{b2;?n3?IhZFkZ+Y(G{ffRTwY%xH%zyc+Ny`x7x46
zSVDOh#``cnhw()g(iZ<g4#O}$h4EX?L}|+G4&_XgNo2yWVPx-KJ6Qx$Q@CG+?VoEK
zSd$`xlo8~NpndZAR1u_(01;%2Ko%xV1Zg8k7lABZ+QxO$%Tvyom>~jrI?^kCw0mu%
zJ1$cMnIp&^fjosQ5q!>>m^FfIl60@#`Ip*xawQ(WUU&2Ly3x53FHDTj5rME#uEbms
z<c=Uu1bHJU5JABR@<ot8qOJTN$Z22V#4jh)p2e`_@r5EN96^x?ib}mDR>D|^Mwc}<
zm|UwlT{fY31SL3a$q33t@FTrc1f?S=6G7iU(@Y7cEz3~q^M8%gMNmG1icF$OeFU+T
zm<XPJ)fONwg7^q3Fx=yaEmJOGr6cxBuLPOziZ5}Mm{*QqLO87yk8{LUi=cW0{UYek
zu7n7hMbJEg8WGfFQY(V`5j2RPHk)-Ks2f2dy&fs!q~x=nUM@krVFXQ7-Y9~`^lt^y
z+my`-rgY*hzLiDLGJ;kSw2q)n1RW#j6hYgFwg>(c(e|iz5%ioGFOO=&YPXM|1Di2Z
zv~}2EV*Ku;*a5u~hNg?}n-tqcwrK?2BIq7LuLycakfC6FkBHpKH}+Ag_@1)){!AlN
z^~{wh%|g0_tv@F8k@d{Qn4LC$Y_7xsQXIjw2&P9cD1yPVqS!kmf}s(NieNOG!~P#l
z*8wF(@w~|#$0vf4lSGlQ-0kchaKOS|AR~f^fRY3he&mb_NK^zwB!hsUfReKT$)IFJ
z2_o$5%<S%LoFhmSLHK`D{O`Sf^}epIuCA)C?%AE5+4W(#4<iJRKC6u6ESy)qKWESH
zFWn20F0AVr<HJ}V#`!QcuJr1gF`hYgPI=+1vTKjKSG#0a0rv+!eCWdjA0lUzi9Spc
zf#5kiJ#OT2w>_g!$rN_?VUZ7ueVFFMbRXvV@P!XEeE8Uh**?ti;S(Qb(&oONNyimN
z<5RI}7OlOSNlRGjRdPQn;67Bz%|LzT!(1Oe_wir3ZEOFXZHF=6^n9(4IOh9MvXXm&
z4-0+B+pXZjQ_8jz$~O!0E%9Ng5379m%7<k>EcaoB4=a86tAe}w3FS+s%F6mXe=q!1
zem7^K%xQ&Deeblg+J`mL^tBJ3YngSE+yhQ2KNN7ct>FIWq_WP3_2jE)rs7*4zVji>
zIQX!^hmAg5@Zq8ln|#>p!x0~j`mn`^tv>wZ!(Jb@`LNxGAAI=HhaEob^kI(=bZr;2
zrGR_4xKEJJY8p9Z`^fUWFk4n~)3D5w%4??-CdSV`?DOG(4+nktth#Gf5jTz8&jou*
zQ77g*<ioi_c5t$i+?`G+hkg88TZQ1555M?umaRVg>cep#PWy0%)>d$z@ZqEnbboL?
z&-7Q56NTNUeDGIt6C8NkGpbQq@T79Ip!+u;&inAY4}bV@tDBo)#0e#5gFCH=d*jy3
z38$6)72TJ7xa@;2X8-BK74Gxg-WhWruKI9|sd84y&g0(S!{a`qT&Uw|b6)A&!$XeW
z2hE2PCGwq~?QWId%}tW&XZR4{X6QqR+gD!qqqstOlS9<?P^=H%psnMH`Viw5r=qNi
zxDN^Ls6IUO!SW%;hrfNe%{U)auKRG4W^>0lt=!-&v`(&A(Osybo1x~KT7OEp<HKEM
zmk;+j;z@<MM+f^>aDQ4^=Do1{0gY*&%wYcO!y|6jDw0(^=05C09u;|2JmFe6t~{jy
zCzS;i-5pLVYleF{t@%{sS5ZhsVHE{bd*fv(C}3XcY-T>I3(C7^bT61B%nhZp$tkJ=
zDoUt$LB(?_ib+#(6-<L`lkz>U;@9KK%o!Q%Na2l(^S!8|q{x&O+GJ8b@=FP(cLcuQ
z3zt(-UPUz()m2nbQBg%@6)&l%q}pjfg{hPBwJ7Z7<W^B}wX3bUs%q~={^NG~v06h#
zO%=6O)Dg`utEi>o6&0fw*u&WZmF=t}sH>u$3PpuWB*}EBsIMZ0{2vRas&ERQIm5+O
zRx)<oNyV)qO+_OW>C(#48>na~n42Nh&ME9}tfC3aq<l?PbSh#S`Bq`~(F!(T{F|%r
zs+gzZ3l$j*mx=)@2CB$Xk*%V$iZ@iWP|;FF8x?I;@LJPKMQfEmFl+12e@0=N5wug$
zUd3xFI;!}%zkAYeN{8Q+S5<USk;(;lR$)i(oG;Y%B#P(jq~diI=erl=_Q;E77Zq=+
z=%eBt6<t+yQ?b5>r>BbUw2jvq6-S@C-ctEb)(VsS=hE3D+9mf;aetF{Xg?3l=q3L4
zR_z^_mh_csKNbB|Fzva!);_1aE3NMp&7i=0BEUuTKNW*ij8idQ#b6afRE(6Sp(=){
z7_MT33U1MDdU%%qrYt<8RBY<v)p?w(tWlgq5l+qP9>d&d>KdzJ<~jR9%%%6fG<~FE
zvWgD`f2d-Diiv_J38f_)&nPSeQ)r%w84R6@X)31Es=V$)`P_B5;|)qW+PxsECVxWx
zD(0y8OvR@vW~rFXfJa^Y%tH+<1gxGdoqerM)?5{ztM<n&@<;Yci<Qpq5zLyeVu6aC
zDt4(@sA7?dwJO%BSgc}+idB?Xu~fw}6)RM%l!(zCMs>N0FI8|CVktK&le5W4a%-A*
zR$0vzcUIx0?Hd(qBrCq=`aPqt<SCQQ{U_Sjv!0v3ifyX>Y2-T<8&qsov4y#$f<7*M
z>f+4uYPd-S>44l&GY7V+__KJvu4k3)Dt0j7XO$;PV+NU<;cgXsR9s;f72m7)feT#4
zaTPzR_=yRl;+O<^uZo*bTr~J+75r$lPbk5D6$b<#%;g+XaaiyXp%=Rsq!{gI{`?}U
z)-5Yi@Tu#BijykNsrXIBDdCsR<37VolYt60bt&z$&T<p@!2aCz)j8$7ir-aSRB?%F
zRa{Up_gc~j+3;^RalIo~fBJQqd2%i3Pv(C<cl|u}mcA>m`>Kj-Dhw3?ZbvFq6`BfN
z1=F58dByXJpVPOj$f48rbkI&_DOVE{GN>Y?!j!b+^l>qAj>6n|&MI4;xFXzDu4exF
z#1&VOVCZ7_F$POT4tIbcGK09zv{%tnM=u>WRoqfhMMG5$f2+97zJ8?oaYw~n?zDas
z^Wz>Dql%|0^7!#fY2|^6hbsP6@sDa(%azIgc6Z7n70t^lPgH!=D3#!`RR80CmEmP|
zz@7ZAGTD<0rseh9Um^d_Tc0?eAEf#HC?KGqP;v?hC@eHdXc3{weiRiz8Tj$@`V<0c
zd)|-Yew6T|S;1zrhPZ#&n(~5-Qr(Xi{V3@NIi>t4CxE!LA7yfJSpinWU0y&1p%rsm
zD+#FV$4j}KDt=VW#nt>+G}#`mh73nbY6^JSk6O8$R|M1+T1RMIKk5l^_)%ZLKXa2(
zJodL>ryq(R$Nf0rhszJQACvs}$d5EX8u-!0k2n2j=tm<zTKLh@k90p8`|;LlPjf$-
z`0bw!@ko`RsUIIFk_ejl@mFIHWlA*jdi}`o<Ac?nOh2-yxlyXOxoes~CEJg}S)M`v
zDk~eMw(_I3sOl)RjUTTHpsKchwDY6AAA!;etL#hKA-DB40Vib8PJ&<eqq84h3Fi&r
zv|s4x>c^C0o_>Dx_oJI1-D$8NZ~M{54=OzKN@@>3dW(@g{b041P=f!}wk@o_+C#B-
z{OBw4w4~bZq=pL|@A@&^j}d;n=f?m)1~O0!94tfq_@5tx{1_~pAwucwvsT(OELZZ2
zvdTz5M)@&&f#U-|Mhkz8A7lMs)8&MhUB(G>yikUboc9Gk@OnO!juV7Z!$bj$?PU7v
z$67zu`7zaxX@1Q0<8wczOUIdheCo#xP8Q?yjPtLuqI7!G-6<S&=D*4;aeubmF@>`;
zN2;F*t)As!Smx0@KbHEj%n!=Xm)Tk9#{w~%U1%huv`F}i{a7M^9ENeZA765U{8;VB
z3YnmlLc0zw%$Z#!nBes?*`#Zv`i&o7=kl3g<t;nM*8A}-Gue-y{P@m~4SvKjJ-hta
z=*K1z-tNa{0b7M`$<;8jO!hXxoCxY++2O~|+*W2R9o+559zVX9;Ph&j{)6NOB^m#{
z+ywkMBJxb;eUj1#{Mavm9L~!@!H0w%_T#fM*&K^aNBua)-Aty5qx?!2{#6J#cT4i8
zp7i6CA9uO+`Ei=j_QUUo=Eqq-&iQfCk4t{!4Jg0)@w<TYLdiL$B>j<#FL3RY$RM-$
z1LZQ8p&wVdQ$0}r^y7+vUktnH8fV{dXKzSVY0{K5pC7H}y1N)kyOHj!T`9UB2AAYL
z<vJ(MkDwn>hL_t~6Hmww(~oUR5?hbmaE1Md_)%qx<JJiGr+yciaX%7bOpa`u9Lw^f
z;-eI{e)EHazaRTlS8n)mlg@5--16gZKW=l48*ct&>zoJ5TtjJEHvJB-1!cTzk7wQY
z<AEPVG$d>I$B&18JoO`whJR&<$A0|h$0Nbi_C*g@Y_sF?myRd2U$<4Q_q+0H$fu#8
zhC-Shhx{4}Xy91Hk51ZF4S8TYQdmQhhT8WOb{}w0p(-+qYJi548cJz+PD87;^?SYL
zETN&8hUYaq&c!wRM{9q)Yun80!V4NG@S;$H!G2e14P`V`&`?pce=@hMhVnAHqflBo
z4Gi^*51ZD1pj6CuGKQ5jyrkK|tSppZTMrlMox4gk4b?U5(y&`Y4GlFljMOkn!^;|K
zY3QKgH4U%Oehpp?85-(n_*3yJ8eAIcYN)5dAsjMOGz_cht*>G7Yo20j>!)gPYB*XV
zqjPpT>4G*ccdle34QaW!frf^H*@a5dH8hrL6Ac~#O>-q*%kVbK#mxnDf0~*}XEn5w
z>V&+`Z1#GZ+DgNek<JzxT56z7&GO2^n$FhJ#MU+f+6sO8v?(Rq)Av0YuL|8fF{z`5
zP8#0P&{xCj8aiv}Mm-wd(9lIgSE}vjD&NWVCI$MrzJBEB_PTdnM^}gI3Yl+dc$?Ft
zp+R3)4^GV^$KxEOr-s{oU46EB@78hkDq6p{hCWPyelGs0_ti&^E6beyH1yZ-KMjL4
zjO*(fvfcHrhW9iK;Iwvf&3xn-sG;0-g<$J-g&K$lYZ%IaYoN{{LXUX7Y#pv)goe{|
z98`YrsF#Btecw4+!x#;-HO$d4mSbf)KhW?Y$I|%jUdnjk47jem&t!hxo3$@xf`*A2
zKGyJwhDjPe(lAZKbj~bkS?5%t1XDE7{sE616ZWN0&kPMTfSw-c=pz63zOGg4QfG34
z_NC0yaD7G5Pc_V)<Gt}}I$emg^?t^xhIJa&YxrElJPk`VEYt9XhWQ#6X;`e`$vdta
zMxF&4W?fe}%0jx<Je@!4IH;3riDv%>Bh4UY({c@8YFMpdjfNE(|2Pi}>{pEZA_wIe
zhgBLHb#l>|Y<Cj7e68Ud#^iF!TCtGR!9wGylOBDmfxjEMg&uJh9yz|#utCE{nYB&Q
zv{`0^UKiWxWXEkBkrSPx?9i~CYqPIwOhh5wDZ<X{cGDgW-)ktXql}IpH2kQ+uR+uB
zlZL$%TjxGQ<{0<S8cxyp5o!B0?ALIB<DO1Aq2Z*4gBlKTg+A}R+bH$0hMPwemLmd=
z3Oy$D7Y)DWwjS5;U72i(ITs{#ZJJr+ry}!@r4Cw{a#{pRj7&SL;hcuwG@RFPnd?Zy
z?;4s#-5129m!j@JXh7SHhHmAehD#dqH%+6dP4cIWukXB~;V%(WnF$)MY4A~1$&5o~
zvMJE3LdKk8Y0aCau`jFarE4&_XX+@VBcLIu;TAurbE2DhLmFZl;(|>LVGR+%)q53*
z3K*E>rC35k+ofp}m!{p&U}?zF;QprmbrJYYci&0Q*sHmF?8&&PVU^RlTzB8ra7V*`
zOeC%m4fnX)Yna*4dtbUd&_Ll6OVbJt%nV$0z1KYBAuj<ME+%Jih)1G?dL9c{;&DFZ
zWYu=jjJ!JX=xE#`ox}B8nwC#Te%<z>fR12Hxog^{QogW`Bpom6*uBbGM91bm864sT
z9mzV1>VS^tbQIJ1!l|=QGcV1kz1)%anu}gMuY<I>juHZheWsU|u=~Elj*>b`>0m(g
zHp+8D-DP!@)6qyrx{mTXD(G<NsIQ~J&6J8dcAWLRtfP{S$~q4AcD<zI^7Bd!9o3#D
zSJ6>b$AN_oa;gcaF7z+mQ&Y$7e-xGiZ+L6zctuBTe#2Vfq0YKG>WGpqmgD!s8SGn6
z$H<<pZ;+m%BUOh>hISI?bFJ&`q7p?%v+_mH6i@#+TcL6{-TzBT)4}cybTpJIIkcp)
zjwU+V>S(8<sSb}0uZ|3M7oE+8`pRT;I2uM{GIeC>XeHKWi&f;e)X_p5F-l~x%0bz&
zwGM(dBJ-ql#^((^?RC7Wqq`X2LC0%4y6AXQM@NzAq~moRr61ZsppTu!9R`s24KahD
ztBxbRT(|qUXnd6`N;h$&!amPi((!E_Jw!QOrl~u>^z_!zhZASue}?_d@g1gwjx9R+
z>gcDVzm9ix%+@hS$9p;k==ey-un(OBb^K4j2Ra7n7_4Ii)#`ALa}A;Wqg=yu`&adb
z>d4#N`%R`Z?L+5q&h=OqtD|&`)-jGV_@ifxC>g86KiWl^uA^PAURAanQrI+J1m4$i
zf1Ha|4*H=8PtY+@06CLr>LG<-vW_V_rt0`)tc&Gi0n>y|7dk`d9$2vCIM*lAcczX{
z1zfmlcb`SP#~$J{9dmW8*3tWj<8vMJr0+@{U+9>xW2scBe}Rrgxp<+D;+vAmTr8X=
zLd(`{`plALI+hFPOQ9>Myr7d!&Z`Qev`Uy?3DxRgjgGH%d?TS-uj5-WV=YtSs<KYU
zno>?0`JIjpI`Y+V@uv%E@J1b*bTDo#Y<+c{i%nZ~Y~w;UP|Uz~E;k*fj<AlMI(F$e
zt>X-rzm7dR_A@7Se9z6FYvkXQy*egsar~&`!X4!&`gK?7T*vDzlKEDVOt$_kGW&!c
zHB%1iIHdD|PaM~An2WtY{UbV#>Ztjai^3ll%{-=K@*U+DrtS*QyT5p-iq#W3f5sfA
zr0L7MO6GdU_yt*=3)DaH#BM#S<D3qa`Jm%BZYd4D7j<0Hah?lP#~(T#l*y*@3*24~
zJ7^^F)z;3-I{wr_BYirq==e*=RUOxK6g-kaX0=U@de3EcE1yAkx+Z7RK?44Ki^e6>
z&_e?PI&{IT8Uh9u%?yf1AujVRDJ+xu+OLkNjwd>v>WJxx^WKh*TRIXFs2u57qHMOs
zMcTl_F4q|iGv$U3y2&yrJ^gR)33NfnKioof++}V{-_}Jl?@3gXpL$)TvS=X#GNfoK
zyFb+NNXKKY!RGFNMd546q}Z;mc98#*Uj0`T{km9Y9s`99BpJwSAfEwt&u^fBfr19;
z<K3c}gBp4`M~pxr!;TdNiWv5!bCjY2k`3G02JJEyC1t`u8Dw%&o;Oh3KsVVON*H*-
zfY(5Vffo&wG*H(-Jp-i-lr~VsKvniKP}V>N0~HOFGr%iyc>}y&Pn+lH@j}M8#nN~k
zuVjE%;mQVHGQevwWq3K}J)*<U*LRf7u4bURftL-`GQf*?4FgTeWY#pm?!5FrQ$jtj
z7^rQa4sDLQ*`1g2_GPnqm8Uj`f%*m-7-(o9#Xu^7TX7q38c^t|0ggot9GV{ts+@Av
zsO2F}6ERBi14APN=?0n_@Q8(tg*Krj`O|3RqiLD!NF~k47bf{;nG90u$uy8f*P`y%
z4P+Z=Vc=B*9SpQI(8@p?18pTNf!YNr)7k(>f966v1N?l_Ud&(<Kh;p-YX&+R_6Hco
zp_4RmprUoscw3C7b~f;afi4E#G!VY!?#h_|<Yp_QM7p!QZDe=p{+5Ba8AAg-4ZLHZ
zFUK;#a8+rV*2h3^0|U!uQ-eKFEe|8v&p>|zE6ZjNFfh7g=Jc}J?;3cIv)nZ8RGthL
zG8t-uK?Vl1DS!b13^6d&K+r(Qz%T>D4Sa3j8v`Q@j5ILQz^4W_%y*13FvY-BYBn&&
zz*qx&5{~f(-ZwDLfW9N8asKp&*HVp#X&)GvXn^2Dp%Xacuh{&?Jzb=eg!z%s$p(sE
zbdaembWEezKg!1(cY$NNff>xkUM_ao@@7Us-SG(x?(Hg_QiODtfkg%u8<@?UH1L@;
zk^hB(xq?3zIxm;+&EIUk-~~b#GWg*X%4c6uNS7G+(!dG>OARbDu-vfU_~3|arD1&%
z4!+>9k}LE~%2!+|y<My5`{@*FAZN9KHPSR_p@Y@62G$waZ{UD|^#;D>0+bQIV*m~8
zW`x(LY?NSbHL%UVCIg$91`8ZtEp$-B76YX7Z>G?I?SgkO{rb4dpYZII>Mo&_8Fw>f
zk7)Z|DAoSJ<bS9T{3Ijp75cN#eM0G}M|T`#{usDq;Ie_k298LO&losr;FtjpbjrXl
z0_e`K2Iiekq1xl(;|ZbUpA^u)k@vKLNzsDad%7Nay=M)aW73L3PTcPT&Wp3G{$b#P
zfr|#{DXVWhR7mspbp2`I3U>?xeo2zQ4EVS@9x7L*%Cx!0Jiq85Ak#YMVajO+KH2Co
zm~vd{Wt4WkU7U_s!Vxe)Ofi$oikn6Nt^gtiq6SI?@InAF191aS3_LZE;C^D@j)A)}
zT#kX825uR+F4Y@CImOh*^0$H82KbW8b~SZyFBf0iA-!kdzJW&u9vgUI;2&yU;P}_T
zLj%wK=Ar<ry%u>Fo_BnLbSfc-NlxZ}2Ix4ec>=s$1_bb20QmyQA3&i13I|Xiz}M>(
zN)`;*3+Fe>5fXVCkQ4wr776e_j2z?>C$nQuSJ42TRf`4ebw|nK0XxZ`57=h2iCM(O
z^<n@e1E?NAjQ~moP+D3m1nh-YCScEgxd6%r?8W|ivHEl7JIV*_b<NM)G^Szzl>&JC
zbV_B8m2gxO{89i_0$^CG1~9aNldUO#DL>z8$|>WxHEF*L@v=~IY6*BnY^xo>sh%z}
z>jqFy_zt0|LhB1n5jta`t<5R;OUvO7AT5B`0_Yg9W8NTu#sM@Ddm0ANNI-hPUd3e_
zrFSi(G!4KLK&t>+2hc2l<^f~}?7hn?E@z2+hG5#C8327}D7f&s%31`_GJrgfQds5Y
z#+QuR1hC)hX&129a$AP0Q9Abo&N!>>h52d#9Ri>{Io!TFQDFe@F#UwnS%&K>l5Ys@
z62O}RxDT*Pw*b0}+P4De5kODDZ;QfbWA&mtWt33k^xkY*=-}vmBu@x9MBf1V$ymhw
z19&$Vv+uwF{ujWJ0FDMQh=~-y*8zOP{hxCez?=X+3t(6P!x_2&CIm1dfRO>*SeQ0G
zfKgmcX6l##-aF(NO&3bmZ@naK`^8jN#|AJ?`1|gruuA#&rPl{SeS->53}8|Kp9C;7
zfR6(BHJUP&QQe<9S#(Yb;HM2Kp~3EnYaG)8m@Z8-gywWB!ht>({O#vyp9YY*GHq4>
zFK0Mg<t@sl`C}ck1NgCQ_U*&U+yFigpva=MWdY2SE(^F!0+_Kl?TY~B2k;Aj0yM`}
z=2QyHB9UAoba4PXR;1CMr3~zi)IS%cy|c!#Jb*6)SP{TVky*`2S(LUafUg4RmE)S6
zl#xEn{qy29`m#m@IBwCEX=?*m7r@p4wgs@BektA!W8E7A_?ByGtefS#XMl#)bas5*
z!@Gr>0@y6fEnJm*GD^6-z25L_r%3_)9Kb%NYk6g70K1v7oRqxIT_W76LHhRr{6MF&
zm7f@a09v&2@_s4rQck<%Wb6GFp1qvt5*hp3d#GW5z`osjFaX}eJRo{D4Jdp_nB*T8
zdkBtEVE_*U_?OcZ!0`b50cZi72;gJ@2iB!t=9&%QG?Qnr`$7O`1e_O2&RK3;x%f8$
zT@xwf|ISPv?fxTx-^*sR%5pJ)OCoS{Kw(z@WNr+0UkTu^0ImvO6?#qR;UR7xGuh>(
z<oBc9G(+bu7r=EUSO5X8f>G`;xB38rf>{l5uMm7`m4np*N1V|B;sH#p=Z%R@a&8ZI
zCxl}O&Ec%I^HPAPr8fh(6~Nlz?)zfc-vQha_w8PcYPOd;X~x|E?g^im9ckW!0RG{w
z?n=T4_l|KHj{<ni{WgdiLHx(fikG1vUJT+Xx0E1~f+!M1-XQV?Q6PwdLG0;Vcy*ri
zib~`BL3HQs%@i*|Qi^v^M^7QPcJve$no~AAIf$Y`JQqYU5rFiiz_aep2eH0bYVjaS
z1Tp<-BPygea+arf_ZLks8APcdDh5$0h|)on31W`lQ6Y%3L6i%kd=SkWr?XHM`IKk5
zne8E-)Vc7m=Zg?j4&o(hP#RYWqH2(T5)BHRtM6qmT1!fqnnAoAM8hB&1yL)ASAs|l
z!Wl&EAnF9+2%>%vZ)JJv22n4_XXKpEwegl;<ovd?=ez9m6lo%+K-t@=-(_bgLAZi&
z2ay)Utd|;7p7fW_9(HLE#Ge~dXSef^G6LyAG!CL^5FSxmzCzN{j-Do>kV7=1o3~S&
z2f@Bn!tUN6*jL8Q$O`iB8!$YK5n;3lqGb@5Lbx14s~}njaVv<wgJ=^(+aR_Fu_K6f
zL9`FzlOSdW@oEqqf*2UY|AM%DS9vXnE<wB*#Ku279fRl;#OuQEOfSCnyb;8>`wGvG
zLVI{n=;|6ow;<jP+9x>OX=)I?g6JK@+d+)#;p!2DeQb1JA?_*IG15&AOP?V62kq0M
zcZA<pXg{HB{i}tCr!zdhA%0Ir9}wixs*9XKK@1M!{UAOFVo1>b|GtqND~O>%43p|`
zX2k<#gjh>cIXWq|jSgb0=pPfbkB4YHkBY|SjyPTb?fEc>2|-L_`UO!kuWMou9|bWv
zh^e)mljzqEsbAkyrbrN`ieda)K%V!N>*1<oC^JOK86}B_RvhtT5%~MQ@+qf2h%bX!
z!6^&k<B{&gV&t44J_}+l6Y^2Y=RwR9d4}!_(Zh4D`OLRMX>?%$1N)Y9VGtaB5j`~&
zR(Yhzj!S}A8ss-1Wmyo*#cQ4e@`$ZUKv^lHtmB#rVpR}dN%z&HLH>`A?cExgI9C%7
z&k9Kyx3x0jv$Mi)nFB#=Vm69B8-n%;8fS!QK(IN8t)id7+!6$j(imrI*e2oq)$iIF
z#4hF`oeE+%mw6CJgE%H#z7OJ{IQv5oKL+tr5PO5zFZvm}pG9UL&Gx%^kjk+Lcz}37
z!p<svKNQ505$?l5+%BATgsSc<oS<KV_%(=gLHriP@gPnFaVm(@jIg1c6v}L2hSw~W
zaYj<*tWbuFX0vdV^FjR1CAKHyVi13b85e{;3l2{<DaI2_o`L=u#FZcd+!p4#$^0t_
zzs%89@q&qTEeIbooG#yRr5#hY-B*|in&doBd-Wg;nMWQd)4U*OFbFe<ezl$PAQA$?
zK|}<Q85I!Y{!liZRa#>4$scCvJtaq`ve-R^gWlkV#so9mJZxp*;qPru4OeIg?}czT
zh<icQ4WV8L_k(!A#0#NP2>%4}klS(y2;tu#9&v9EAzuiOgE;$+i^o_`g5dele?iP|
z>-~L^eX#YEf$HnZ6S9v254n=^hwO7S9;+1zf#+@oLMRx*gDv%03JEAIG)X8A1Sy;>
zeR*ESUeAS4B7_%0C>Fx=q9H3MskrFuCnsw!hEOtu^6Y-d(KRQjlr)tMp>)W$kflt>
zKCU95=5jI$0fj4wK=>UON2we_^$==^l9xiL60*+$tA<dG!5Qh~85vI%No$I7_N^t7
zFH3dl#$<9{38A(y>j))>zBnilLU-Y$gpkTzH-y$9I73iEXdFTl@yHcIS_ln9n_GtF
zVO+xy8cFNIZuvMg5988vH4`@t!4pD82$>-?3)umu!ObOZ^wb*y&qH~@%9FvY5VECX
z3(-$iJdmYKOJVW^kfyc?p>2qN#DLBrv<snq2t4t8Ed)-%t0C}EvO~z8Urt}3aTdqw
z7(yor4#Pqw=Y4XH@<zx$G3*vXmk{0*<z2;o`a(WOp(KZXD}=X0=)p+|p`Qr!3ZZw%
zJ|cW41fC4?e728F4UZ!^7WsXpl?l^7gtCV{R6<n)LKqmrh7dM}@V^iSh466*pM)@&
zIzyNslg>ehhA<+8ks%BdM}{-KmpOU*$>d}jj0$0V2=9k5nnO!`#tI!Lvp@kJ5R=lo
z4?-C0b$%GK&zgA>N=gkALzpD|k3yId!c=i*atNa?r##D<X(7xIg^crbPG~24nwS_o
zHk}#5ry;Bg;j0j4F?5V@2n#}(6T)X9%#~iNHYW27my`z6jL(HRPjd2$kbT@t=E4vb
zg|Iw?FGE-y!jce{iSZm|Dc5O^GPi05lbnDy(*V*H(sv~%{iq#Ga%MJgt`1>M2;YY6
z^Kl-|ejTz8=+}ydZ$jV+K5bYR!g>lcPv=}v6;GBq5#NRE9bnYrqMJh49Kw+hj)t&B
zY}hR+v^9in5}EBncZmGGoFrz&P9|yt=dO@_R?dU(Jt2J0WM1U>A%wjl{2aoMA^aqx
z(^<xlChZGhzbHRU+dA6M3^1ezLO3YQLqcgPnVXuY(~)D`I(9nGQ*8*pgz&3WkB4xI
zj)ZVRsuVaWfJgkqXF@n9)w5iceO*&Ky2$)3SCXM<7{VVi3l~GUAb?`rD0+QZm^1Qc
z2v<UwW@5UDzvx;B-Ar^haV-R22(?VSVnPkUAHtImo`#@>poefPgug>DLI{Kq3n3oD
z_ED~22w?#sp{CFsgB!9b5<-+-jB-ss;{4xLWo)a|L<knw!d2x)2st82vFiec4r$0g
zmZA**ed#7cD)P4l+~bM};SMhW%!(sUN-phEm}(zL$A3e3#H)bdhq*e(tSb6g`cnUY
zArvT=eS2_2YQEPxEsu%3CQ6$qV<Ml4{3c-HITHm;6f}`!@;4b!$V6ciG=?Uz3k{}6
z?4E3*sA=04znI*9NW;qIvZ<e9#Y{YJ;sp~gnjoJR7B^ACgd&&%6l1TsT?&^pQOX33
zVfCx43Tasr<xEsEQCT#XH&MZ~LqwT|M;#orq6yNZ%1vJ~QN=`c6E#d!HSOTDR5QWh
z7!9L(Qz|5=X@VVJHZfv)CI#4+0<}%lG11PnPt5C@sAnSGL}PNsx*W9A<b4LzH<2Q?
zU1;k{l|h|Csexg4n@BU!fXZb=YG!2E)X2m?Tb#rkG`&Vs;wC1VnrLC7r3sITW+pOB
zWQups9B(ezYodRDFC&m8)oh`xGCnK>t;9TLR2u=UIXjh`(%`mIC0KDFqrHh&P4E!E
zgNfHobQb)YiH-s~31#a)CsN-q?Q?vVH%)XAJ`e7XnBK0!=UM!^j_$WiylrBXiSJu`
zc;BFhiFZxBC)J)NdYR~Lq7UQ0CxbT``k8n~a9^Qh@+JU#^*6zXop?83fcgLT9|oHk
zn2Y~sVvyjYSs5K#dWJBVQXM9Ago)t-nwHC^l9495mdm~?H#9~wCW?0q)6&E^6XQ)x
zG%<-0ewzBebotP<?^=97fpXcrLBTRX`0P&GJ~A<dVR_wCWqHPA)4n4?Q>TjMG=s*>
zF!3>SIE)v=_{79a6BkTeH1Vm4Stfok@uP{^Cgzy<%EW3DpP86zVu^{RcJictZeoFn
zg@Wgq_(A~r^SRJYr4TGK?R!v**=u)7R*vh~!n6|UsjXL}En_BMO#RZt3KPqzA<I*$
zk?Ze5d`il-(!>Wju2m*JpX10=M&Yd_-mO|=;%gHdO>8ppjfu%Koa;=iH!<~)W336Q
zr5K0%*2H%vu6&Wk+g7~MM6kgG??gT0Y&NmS#Ew?pxhGS$nApmx+@HG5M6DdxcA*42
z1nd;LOXzN)tJ-?L=i-VwIM9M}**}@s%Yg8%l!>1O95ivr#6GT_HmUnf95BJVcHfP6
zA4tmJ1L}uO+**-#R1BuT5wW>$dg_b!8yz$4n{2-br9H<@oG@{c8j>>3m^drol!?;<
z=qdT<IMCgc^Co^57k)DlS(0i8p|s*#oc4!_Ejv>fcG62GE}MA3)oS8TM#kj-5Fy6>
z-^5iDx(S2(zs#D-y{jl6S;3ly-fEvY=&9d?MmtZY>@1hfdD*lvC14`RrE$m+rkiwd
zMH+7vni5hDH!s=6d5M_z-M_Z8?K_rn6A2SE>6Qsg_&20`j*06`!bNHCmsOtRxJs``
zqp3H=3=03v?MQmvF>y}-nRf+H=lxs`6YQahe<ih^3*(WA$KrUwF#eOQduk$27;mji
zdm@^dV0pvH7e;|Fx<noCI8*b7?Hi2rm-Ei5&D>X{P#A^7ND8A!81w>RB!|I-+5BHB
z??X;pkyccy%pw*hYB5%Kr#vsTxX=<p$z%eT45L&St-@#>M(HrhgrS7NQ?{~UlnbMJ
z7&XH7?eX$qR0)Ik-ia#+r=rkGVSJfzR1V`Msj{_+<=}}x)iA1s?L#OYH}F8ACKvBU
zPu(!;33yp(EupW3QCmPA(ND3KTQhk+<p?7+Y@hxR*AF8lY#;eO@Y_dqyfg0%+b3nb
zIqwR?9Y$Ih4Z;}xeMWW|4Z~;@MrPQ)$DSUx@63C`Xck6e!A-*Uv0BqGrtb2viRUAv
z&BMr$R&UroMCc%Q;CbxArYzq4x#-{_2u}ccQ@uqPJmG2?#s`+;(`p%QI0ZD4^A$$B
zuzgnYTG&2hX)ly^zWPjI*gj9`^rR7+I!aTgFkTlxPG^xJcr%QyVZ0m0dtr17qkGss
zTj|RTk?y@k|Jz~o2%~4%zT3~>?7E`#3fo6EtXApiq5*xvct<38%EKyU`icJj?2_R<
zT}B~u0D~E}4_Ju@hVeg<A0(9Ckx6TZgzZz#p<xUQgQIXB`Ezz7!x$CD-x1u7V00K`
zm=zIJjbLmT<HGnoj6cE{AIAGkp)j^GN@08$#?mmBg)t#)|2o->Fg^}rVi=Rc_$Z9Y
zoQN={F^fjJrciR2>$mQyJB~Q&c|A{ux%fM2EYri-5p%NdCt=JCV_q0vgmGi2>r+~I
z)bSZx?-!jF#_TZo3u$wN67(D5nkxdI3q3c;b>>dd`C$+&6wZP$DhzjV#Al-{66WGC
zmV`k`GHJkaE`hHctHSt7z?Wf^80lKUAn3}<Fuq;p>9O09^p#_E7;D2=C;T;Gd>zI&
zV#d@}4*t*?W!6(Tj7{`<i0eC1wIPg+Vf=i=`Q9qWusrqChPyZry?%MOW3z}g8tmG}
zWaF|5<9qrjmha?TaKR38(F^xs$EXpm-NL7}HHW%>2;;{vIO5qbehOo67)Qc5%2C3g
z+Wlc12xA}ls~n|<xM<r!W|~-dIE+Jrw-0xb)3Q%0qep>bVf-4#@i2bjphH~sM%t|>
z!nnT5aWafkVNjA2$NvOBEki^Z<goo0;VhItC&tj8-@;(idFe>a7s9w0#)B~a3FA^2
zm&3S8up#BoFs?93*ei^`!nhhnAdDuBvaW^U3quQ|(;Nq{rz$htnd;|ebt>h;EC=^J
z?&^9N1{1HWeSNtwBbDbbL9S>nF&dWP<i==ZCi8+zObyX65@A?joa|RL#tb~<hztFD
zNm>rKj+JRQWQglb^+NS|*&>G{@@mKn$1O6$xE;nF*`@D=ai1<TG160ij%D)F$tw|e
za$Y+)+`};bWm5z%MDQq#$Mkw}T5<&caY=@eKY{`gJQW{#`OX^wuU2^?wik>BuWR`t
z_9c&c3Pw;Uf~1K3$)VwO7tJdiu`dm5A}u0a_=;Jrm1#vIK*S#9xd@&Y86IF2i{M5%
zTTk%_7%`rdCC^WLF@lm2REU5Ar6TsZTUm1Eq#aRHN=HyehNdKsz-U9c2+9kGLAY{6
zVV8;#RFb}xg}x+|7Zf&Ci=cW0-$bxBf*KLjjG$u#og#QSf?5%@j-X8huS8Hgg2oXv
ziJ(pdbt7;^;EteP#C|V{Z?Dvkz!8C`d<I|hx$5<#M35T6*>c&e^2Hoy1WLqyABtsK
zwl^&TzWv0eMgkfLZ5XlN<RYImJ%YuBm0y4NG!^~LB4|$K&%_ouPGxw#5&NYrzT46w
zf{X|<BlZhlRGt;F-?7RT%6DO&z5miOf>sgxH7FM9q*&Vs+DGuJnAA=vUzXu}G#w(~
zJ6Qyjd@TaLZNwLUUXP%21d}58D1tX4=t46n7Qvelbd8{Q1brgt7O~$}V|hD*?t<SE
z$`^CU?2+5rlcCP?^oro<zxEqvEbl}xKwA4o&@Y1i5xgr^zDC4Xw4TYlC!B(H?dm|m
zd{b$#L}PdaBO(|gc&N}}LSOo%D8o21f>BI12A2E3@W%>ekjDt<<;OSy<8%3ZQH!k~
zN_Aoc69mu;GFi?(UxaEWNANMth+v9L*;JwAPm5rBE}kKPlQJ`cPa{|o!O{q3aTX$&
zAHjkM=7=MoM=&pf&jd5<a|JL&Uqo<cY1WgA9!|l8PEO*5GEI!YBAFL95ib^b$}E%C
zRYI3X@MQ!m1g{jDw#$CGkA*q&RRpVrxkl*MLYXJ@jsoi<SRVl&(^a{;Bls?YBb=-V
zHbk&7g5449iC_~mp;79V2)0V!&5VDnAT?|gKCRjzR&5tM85VMO3TKy4X5jY`{2(cM
zD1slkmLoVIdA?T!5|-oVi2W91mzLgr5$unE9KQ2N%DxAgx(gk2nQ9M<JdHV!NIFJq
zea>?c{1(A45&Rm#ap9bd;8X-BBKFxCkK}l2cA7(TZL&2xgXeBMVtaNZSLC35gm*rI
z-y^sb!Q}}4kX~%P$m#3oxe&2W>uMZyQcns`?zq22a4iC#v?f1I{wsp3(xr5A#?lHI
z6ziUu{OlZXeZ?ey1X=`o1V#jr2%-@LA_zthihxgI^TBdHWzC1W|Lf&4BM3+A=gBz{
zd}_KTpZ|;?&RsErn-RpyWhWwhq!2mm?su_zou6>{_*u5{%G2a$k71K~%NMP>yYMZ}
zQ6q)VW8aD3E_d%J^2Bg2g8Ljaig{5yh~OVC@F?Dh;$Z~;a(|1WZWNCqcpO3LD9S|f
zUj$FMpGQ$7Y9Dq#jUZnX`Kc<3yuyh-NYa%gHWiR6L16&}qbMZc)0!?aDMp$soMKTt
zA4O5Y5c*scJT9+2+D)0_QIrs7$tYeBK<100jfd$x!e*7FRFn^^C$Z|hpHeo;XCP4}
zigHnukD@}<J~6Kp1<%SW3ceDuPr55d?K5{49_v?)qFNNSgmYnYGLOQmM^QtDt10wl
zp*$St!8(U~MI>wIYM>?cqHsjfB8rw#)Q=)1iu5QNN0BNrt|;75I0Y+0IRuAJ6HgmN
z?Z*-x54ANn6x>KC4PzYWQIja2HAV9%no`OA6i*ZsCg76^Uf~dDMv;+=`3KA7WQkaI
z6g=@~wN(_YW#|qf)<$r<DB22mI?N6QOZzDJe8Q{Jm;Syct>kwU&?$=7MIkwS(x3~&
z9>tg_#zxUKif&O1jN*S$bdTb#DEiAlZ%5H1ig(1Lo<e&I?In~GLEmX!pD12yls;yd
zyRY#33FRoyTHh5_?{Vl{AL-N}!Na21I@CQ_@DQOxg;p)pjB1BRd2azDW!^_iv`0m8
zZd?Y-(<~Rm%efmD#rP;@MDcMH??=Io6Qg`45FZF;^}{G8<YLC;qg*^SiphdG9aF@9
z4n0jc(}mJ_c4sDk62<H&?35Nt@Tq`VLTLjza|C}TbZ!(mN)nl0L@_^#AEWpwiUm<D
zjAEz6e^C^RqxdF@wNWgIVrkTVnq`f+xh#q=qgWw$IrYesAuGlAuY|cuFn#AluNFJc
zS8Uv2u={IKLOq=Qby2LB>NcU@3f&aNceyef1Z<S7V3*BNY>DF812e2{l~#sjd#?Nr
z0el8#S1xCF6nk><_fhaEnja+V_-M-BD1MH@7lj(dz9{xbah9{jln~z!M{y*IgSnY`
zNK%Cx%Te*}coZk1I41ZPp}z_ZJZ!{dJ1O|I&{IPBbPf3|XQax!`Ynp{QT)l+4tM`9
z3;#kC7iG9VqTmj|g-IVTi7}TsFGJl_!j9ZJu1GI-{3{BMcr}V^xg2JrKMF01TT%QS
zg&u_wMJ$RqC8G#N5fMj1LYX<HM1z1OEX?$>8Bqai{!4nsPefsHilg9^(Ex5B*Tvu)
zLdP`CB<E%n+z<$8^X(|^MR8v|y(1pojoMEo?R(^SAR4ITk$``A70BiMD>=y~mdCsb
z<no^gU>4<#Azus|W7rf!{um0x&?|=CF%*oUPz=r(lo$%fkQ76;7^=rmB!=V|O2tq*
zhN6@_;&?8GVlg0w2OB(di+Gf=uIFPY9>a?<@bw(N-BW^k#=BA~HtqDG^9AB@F21=_
zQd(!pD?EIwrA!Q0$GNJ+P&Q`23RF%gLHQUe<l>4kR1#b{m-A8#d_9L^Rb%$6Lwt>e
zL)3_&W(;*=s2jt}!hc2N^)aqmF+N?BLIe2POYImQk8$xup?YG;ps}v{F;K=4!{2i<
z`guL%q{Kj)DwG^o4DJ}bF=Vid=xh{2dJGM6?P(~Wb$@T;7@EY;Ogd6S(-=H-<fwzz
za!`W1Pm9uw=3*Yt6f$GTilK81Z^W>-xidS4S7Yc9Lkp>r(^5byp{<3s5!yC}b^<8V
zUO@4rtk+`b7(*v9hEu>7i|94u!$7?r105mg60={e>PDFu-W1$bD47&^D~7kF+Ji0^
z^iTt*mHeK<<U2%TYZU1d!#gp26vN~g`ciESBVrgSbKPHNc~A`R#_*ot0Wl1eY$>wN
zGmwA&C78*>H<AX&_~Fx@^r6ysxZq(z+ulz(eZ&!O<{cHo=oltQjxo)~#4t|Oj*a1y
zarRqaj4I<fK8E*&|AFwg9acV+YEG@D69w=Us!0+7Dwz_))EJh=uq=jYF-(tPZVaEt
zFoTlgT`Zr*@G<pp7JNlnohf|A=UMBl7-r{6&WYhO!OSbWb)0Kn3=3jd7{eDa%#Ydc
zqw%FPhLKH+WYVc;u>_MzOT0ud(_?uIU&gQ|hOc8-5kvXq9!6<Z42;7{$=*9hoL@=w
zR_Df$FL^Nn-^8#!hHqn7EBQ>$Isr^+hUmK(Hi(4`CR2rjve#z*3XS}3@Xi>nM^d-M
zur-ElF<dE}u|38+U>H}zyFAs)>by;vwV!kEVth(@cMIJkv}$$N_gwqsvk87;`o(Z2
zfwKwx9K*gC4##mMj{PwlU~a@QGLC~W9O8x(NB%et$8dz7W5tG}F&yLQgHvzD@JkH8
zawW!K#Be-@6ER$h;c^ToV>lJV?=k$rXmB7dy<Z&Xg`SP!H^ypO>N%;BKX$W&lpNAe
z3npKXR^p4flEnS~Df}m$jp14hKH>kxT_{%rdr^jJ)foK3)I{c4M{4E}lnF>vIEILT
zU<{#L4W@vh#~jfeu4oLDzaB#@hIkB#7|hX0IWe%Q);xz512F*$^^@L^YG`y4V{%I(
z^S993G29VwS7?_LnH0FsbrHiqF+7an_N|nPd)?Q1d;g8$zZgE;>3Tfh^N4%he9vQ{
zCvVxUPhxl)L%9W>JaH_z<<2XVpicSh0&x_K<L$Ve8-?O197k##&N!0dC=y4dI4Z}H
z97oYO%EnPH4#e?X952REGLFr0N3l4b7eL(pXfkQ>I7;MlUWjAExl}Ss38zdhzqEin
zd);h$hRX}5qR<LLpYdZA8^07sl{o6gQBSm0jiY89FAJ_Fw7Sq5aZs4U)r#X4;W)en
z$f+&3PMi;zIoL{$v$XSrWA3|k(j0VTwsXxTXZ<)*;visYQs1e>;ff<Wjuvsa<4B96
zaU4zJXuy;%r8HRUP8Z>ZLK}$^@~MhV+D&)UI7l<%@Wjz9j^<MJ3hi;s-MV}>TS+s8
zla<RqekZeK9MzAxJH_#O9IfJL9Y>ou+Q#u}937;oozV6|>lMmu@@M9N^4YIRwWH8`
z|GBAwOw!JAydliDgm#IeYaHF;cvGs+#JcBVcAqM}RtW78$Dp0go^kYwqjwyA;usLe
zz&PHC<Eg{R(qBN|IR3fq=oiQ2nGQ0E-=#Y@Qr@#8=3w=I)Ds8aGUJP2gX0(y$M862
zpGzGY$FMlw_ZH~iGL2>ImXs-#8fP4HuPEbM>MbxzvT;7MG>*}6jEQ4x9EH}oKNS9^
z&hBw>%-`V}FZBI5J`g}ok@iUw;`~b~Op4>9I6jSI7Hx}TN*vSTm>$P#HPT+GllJSM
znN#D)+r|Cyk>nY194MdtNgNCFI0-(M>hW`_tj^@Fbt{u#<xbb^IOfLjIcfEbIdK$g
zoAjAbHnGf$<BK?Ku{YeLpG-?4T`1P>7P=^o#c?c&V`&^4<A}WLTo%XjIF4?0tmQP#
z@qWqfajc4CMI8O(?#UU>`9C=qR`q<vB%JE{I*!$}uy4LTQ(bG~m@w7lot65HG@Tls
zMS)i*x!1+9K8|li=XY`b6pV8NS8F7NL$H-}6D|42u{n+{acmVOJL4!0Wm_EE<7oLL
zi)wcWhk*QDB4dwL&6APi-V?|7as0s9ob3KFj(uDUzdDG263*T@eilH^_B!7E+){o@
zJwO?j0;#*Y<B$N?NA6bq<^MR2afv11PT-d~evRXH9CzY4F0tZ9l!)U*94F&A6~}32
zR2*IEyU)aNHjXQC{KdWKc<Q-0evji1u4}21b6x<4;D{IExZ!eMisK^JQC1oY`IqDP
zQ_P@kY@JuIS!#*;SK|oJNmb*x#*HGX5c{|XmZ*PXV2WRw4!xO1rXGh8M<9-%7!ws5
z5*ik2a*@u-qMZ?`p7_H}91~0s&t=j(D~=pVq)pW`uG7vqZc6gpisNst4oM*<7_*4U
zb~lcDanwrK`}6%c9&myZD3QQFaXe(U%ykq_;NLhNaXrS7CxOS@%2sElolkkf9EhXg
z;8d2HJ6&^MbO(+k=S?7A0tFKGm59uOmr}M*NX?&sF*zT_$Sf#Lg%Wu2v0Y6{ph&_V
zB{_lT5-65HQK^!H1P&ZYCRj7iLGZj(i7(G}toqjRLIM>M;1Dk+puLn@GJ#SFu&Hzc
z52iTE3N9m*!sQb1w{VqDfS9eM6%(i=-76<hHGyh^U!uU#lqy20nWZ}U3A~&@4G|#c
znE(Mf#IGc<W~QUI3|dEM-300ha0qoKP+vfbP+FKOfZ?JgiePfm5@?XX<OHT9&@h2U
zG9AMbNKc?~0$mb#Gl3=vG)<sg0_~~Oa(WWTPM}2s%@SxX9B%?AUQ{v#X9%VkIa$IX
zXvrXN^tRy#s><$Gf?Esia-uN#Z4)^7*fDW>zF|{SUrk`{b$6$P{UM5=gH&HjprZhC
zTK$yob>b{%=Y)O5e?w^c0uOPyFz-i!FaN%iK-Ladw*<N;@KyqEOO>2n0(vCSGnb>?
zc97p&s(ljZ)Y{2v-vs(4&_9896BwAl{}PySG<o9I6qffAARRzv!?X^yy`+N@7@WY6
zg#Al^Q;#N-4$Z}EWp%iObVLFp69_j+8^!3YbB{}4v{c6kC4VdhdO6uNK7sdz`GH7I
zO5no;CJ1L@0_*CeQRYhdY<BrbnB)*oO<-Dr&l}jQX*vx~U}*x&68xn;EY46y9d&=6
zz$XdJOrY~O_9uZ)6PU%RU+bQoz-IztKRV|yrEl7wALa^&t!>`Nyac{TfEwltT_kjY
z(1oInO^c;Uu!KvAm${>Eegs;cz_$r}m*8^_SdqX=PQ=R@UnlSl6F9-&?!#)~tVuv`
zo57}Wd)=R0$|7Ljwe&Org3?_3du?s&rOH?7HzeevR{~oEY)oL20Dc5=w@ccZi+3il
zP4M<y&JF?mn6xXGvs(a_f6pmn=$Pc!-G>r5oWM^B>`kDp+xfH50}1R);7%(iIs1h}
zd{6*6e;rC@W*%YYOO_r@;8=psGrNCD;8)==X(_;RJb~65y=*#}o6n~NoX!<Hm*Ard
zuq@<QIG@1p33x0tv+#$^Y=TV*Tu9(z0+)ot>5g!>N#M@}t}qmx-8Xl-j0FBl;Hp%w
zaSIaQ6G{O!S4<P23pGlnvMG=Ny9b35ganvOGbXucrc9M~u4safh+xeXXFP%H84646
zhkQB22_#!6YT*VuCh$}&yp_PAmt6OlD%Cxg*E;@A;I?qcyd&VQP+r>Zb5r8}pTNTe
zo^aQl<o-8-M+y8Vec7Fy$ASr1Wnq<t)zV$l@>s}gA)kf(77AD(CrM~Qp@l6JlJb`b
zcmBxkQbagxB8G+MEYz@2(?T%|&s!*Op@N0Pqr$~4ylA1Mg%TFt+T~_>!NTqG*#xy-
z@szS~u!g6M1;;vPX$z%3Ng_xjQp;K>XJJAMS6$1!KjE%u;mLJZC64uxn;(P*A4#cf
z;Ux=IEL64Z&r8)T?5O3T&ZKIdesdkwh5775PTAMpFI%W<p`L|W7FcC@#X@btbu6%u
z(|?@TVR4H_Lkj~sxl=5pTD-&A)NR3Op>;JyvEUN$ec6Jn{+vtGES#C;YG9$mG-uju
z7il94>7t~ug^ho^n+VokMpFUg%t@}_+=AD_M;0bq$gq%UVX$TIKUo&CExawbg@u+3
zngyzD#i1>9w(y39HWu1i=xCwOV`n=HFI328=^&uJg;xcz3z@G;U*bQTDirP{U0xTe
z-}I8-#X_aMsc(u46=u8MZk*PYqc=|LCbYZIAGfCN{>*V>O==GdJuQT1xq1nG*FtZq
z68w(Peir%)pv;?%v-;=a&t|yZqwi83D0Gm8{|OjzIg`RH1VhAY^<K(Q3&Si7w=lxO
zNDJdFyl)|Se`?1=$)hZcrjLh`S;kl>b0oRvE1t0yTFi2eqZjoWvr5SiEPTlPVU$FY
z!V@h_k}4%BaP+H;NhKRku`t!b*A~8!p{H5+)WR$a(=Fs|O)2bXJj24rmi;;N6QQH?
zWX-fdJ~{qM&e;~0Sr~NPHOInd78s?u7Tjx67h3q-!aNIKSeS2NfvgcOlYx2$i>F{V
zDXWVtEVi)3!cw6XXSi5yS57CTlI0e@v@q=-#|jHy2_Rl+VO1`!dB{!9YN@UfdU=X_
zt%Y?K_F33(VZDWKEo`;0&BE$+&K55y)v7ArS=hh@xIUF-qlHbmc(a8qx%lW0j_q7f
zvWR{Zx>M*Lp}U0c7V4;w%~kfj;2(r?os#pD;Jp@p7QpWvWFFvRx9~eRWDAEZ9JbKy
z*VN<8{39txEF2R+d{n@Uc1ic9xPPJj%Tj+8%BB+*PI60+rkvtjTR3asw1u(1rnbDF
zN_tM3e&gnE@y8reDMs3Fu7gbk7c5+~pt8xrB__;N*A)wY3Ak+GPs{!$MP`8-o~stF
z3I7?#m)pcve)-ZY=uBM;5etTefQ66+GgrR%qRb%okdXcTYeC<9)Idrc6#;^{g;=h_
zXJQGiqeYo)y3Wm?bC-ktIk;)zmW6>i_+JkG=Dcu+%t8Ge+_7-iLXjLK=inYwaiZ&~
zg*-X9Z{dN3e=Iz-@E<d0g6m(QkD2zD@;wrKZi0*aJri84J`v8uOZmvjn}cdg9V`U}
z<jX;R0f7?r3*>;*`Ot1Hl!L-jB_}BdWX}B2T{H(Ef1;~$4xY=gzx|cS!3#MkCir=w
zWEN+~#SV6SF$X1cP&NnUa!@J<rE^dw2mBVsZ(e&I73SAK0#b5V%IBb>v{uN0`$!7;
z6B;U&a&UC2qyIto%coOb%0ZPJRHd~!|HssKKuJ-2U&9i2_mXqYnPK7r3%j^GJCZ~)
zs02|E!w(TukgTF2Ac9C11ymFi5D9{S0g))61W}ZXBFUMa4$~8Q2Ka72|8vfFPMv#h
zy?XU3y{fM2?wLl*AX){{B#5R#G!NS6yJkWAyvgw2S&x><Td+zcT{KQ?Exc_IZG!f}
zkP;%#gFFK|gZ65iA4HcRTtPe;cesP_urjPk5FLW(7(|Z9+XvD0Ro{*s8Ps9ey(1$x
zh!>Bz^F-b$h|WQ<qbOk@q4N7xT=xZ05aci2(0rG>FbIDTeS+v4L{SidAbJGRGl=`8
zR(6NblyL3={(i$tN%wSxA7E!5a;<IP?G?nT=k49XgF!IbTacRM{etKp#6v+m90dDt
zfZ(7Y21-w|8`)mU2M57ZEy*K63<+YGSZ0)FhYIK6mj><9i}(T<Mg;Mg$k~L^K|CJB
zNH*uFbClo{f>fr2HDt}7lsZ2p1In)cUl3!0SQNzKAf63kY!Gh;F+Ygsf*2RXD?z*(
z#P}ed4`NaflY{v69sdi|SA7%Ny)<I@CJ0i(q?aU#5=N&4?OUJ>F9$I-&8G>O9>k2a
zWZ^hB!}f}uh%<wjBXVYcEr{2Hcq52eVy(E`7kyJWQ)dgg=kw71+#ucx;y*j{NKD%x
z@2uvwDcq#`76d_jCx|*ViWUa>zP(K@-SHEbh<AM$#799a4Psdk%Y*1Q(8p8EsvuSf
ze=mrYLA)=VNgoJ#eW8Q=qYCX-2eBq-|63HZ@Cd_$+s7R7AU3klAk+npPlEU?2;M!*
zUE}yP2;#aR)=Sdy)eb6rE~y&?Y2+mL|3PdHVtWu@1#z;N=S#t@L2MC1Nwr>Ow+Sa<
zlwn5@yF{`x2<Lh?C0}z6R`)JwUbs7mJ(9#I1Czevbd!c>hp;z@AA-0U#H}Fq(GP<-
zLFFL!2XTP&YmDnChyH-$U=WAtjcwhB1bNed_a7KNBGI1&zZ`Dg%{Ugsamh&jvyfi|
zd(;Um9PT<5#BV|T9z;e}-)WB2aM!PbX9WKp<Ubq4A3<EJ;=2~apFzyid{+d|1#v!z
z3&Jl6GU=iaDwAK9TqF!vgZL}0^S2OI=AR&VJLSnbf$Ji<!R|ffX5QOD{2R0%Sd<JQ
z7{m*=92z}PNJvl-3=673{LNcW_j`>XB0>DJ-gTGjf6%^dk_f^Q5+w!^5902A`-TYv
zNm7zhLEI7f|D}p1Q||>)EQI1A+hB$u$;1_|62eIs&3oBVDumJ@kT8@HQdTfCgsc#D
zw928JU5XIOg-||(3L!KKAyBSe#SkimP&Z_sfGUSjC4}lB`%KOACf&GjtgC7W)k0Xd
z-u1s3WxW^5_FwC(Aqq7^{N*NUhd>ECwoVA$jXZK<y%4UiwNGmGL-v8IK?n^)|95s{
zDUCyD5<=4uz8{v;La>=2qs>E@y)TQTWeBZ8c&k=!YnpAH(>8=QA^3TA>*it9A^J?E
zrYi(@2opk>7=kARZwMnocr0XJ8hjz#A41m<awOV5gbpEe6wcK9gye?MDJ|*D9uuA~
z*d;B$m}!6DuONg%k@y9R(y0N~*<}~U&@F_)X?gb$dW6tZq7Ml673?MWpkVJ1`Up9i
z{eKqvu|GvJKyaYoAi?2%>`x~@B>Z8)M+7Mx62j0l9~Q#!G=EeG3hj)Khqw*?zfwjD
z8725c2&2>TCqq2f+d5CDCC><n7L^&3mOLB6SmDp5CF4REFZ_AI7t-<<g}hoP@KOkq
z=t3bZ7s=!hUJK#%5T>LxrwW-SI9+gt;L9PrB7{|XHH4XIzN${(4dL_Cl35|VndY;F
z%n_VRFG|bj33)q&>=X7E7#B$N9l?cy?+P+$Q3#8LFG)+5hF~?$W73Kc-V5O?&M8S+
z8N%AM&if&JkmjpGSe@o;LijMvKMLXFG{3&D@RJZe4Pl)~zDUd0hwxdNe=cN02pffL
zO3TY!b8Hs=Wm>XD$kq_Hr6t>ibiZeRxpHR+KZS6V5)tkSVYiSyg8M`GM##4ze8<Tp
zoVoT1*&D(SLh4QPP{{CO2&J;@Z@V8zYaSGGNbs=W5y7EKN2(nYep>Lj;Ln1;gm6O0
zNx@Ts)F1p(@n1tY6T)vH{2szTB0n3#A0b>x>--tQ#WX(`!g=8r(vk{K+TUQkB+<)U
z8=tYi8hJIH`d0{lr}?!I-tKI->$*s8q~$k5xF!6yV2yHiH-<t`LU67v=UQ7X9D>U3
zYG3aA_T{t?^bnqCSZ;K~a)#*7&nUMbqg*5eGlXaeF)q9o%3FwskO<)o6SGWMAtXci
zLc?YasSxgja4L+`Vctl=y%26I_*X$O1;rICQm|M-hJq3bx+u6$K}iLr6tq&%T0v<A
zWfas_P)9*o1(^z}D5$C+OF_1R@(L;_fCB%U-f{|x-Y+Dnz0OTs_l^HQ63ZxCQ9&h1
z-N~C33d&V2pyqFN0@V~WF4eB4Bvluzkv0;o6R4%|U&0FBsZvl^K|KZ6*87?&sITCS
z+3to48YyU?;HlgkmU3>Px3Scri2~(}vr^r_&C*>??RCAm&8}551<e(-P|#A0yjY=d
za=9W}>(<lXMnPM)Zk@Zm0*8Wj3Ou62`a2c4#3obQ)D5s2Zb@R)D})w&LUI&5sQVf1
zprE5vDOW+QUo$%^=%j$9jGX07*2&G2f|xyDLBuK~DNs<TV7!9oSr8kp;2{MMD+nmK
zU%>+kdMW5i3rs4O{d7Ig!!x|y6^w1*>A@tUVAKh3*`uzW3MQLAk_Q#^*_G8-K|ck(
z*|E>%l<t_*M?sIe0p{(mV1R;GPPzswSd-CZ!8JFn4OB3QCC>2L;ku9EbcdWr6bw=D
zgo4ouhAJ4Q;4uY{D;TbTb{<tQLcyLEp3S>`3?vM_i)FVT;Tx%dl2KAL$+_=}h)=RZ
zIF1U&Fgwe-?)%@4ELND6e@5Cu@+^sh=M;>iQx$pG77AGw+j!UTk<j=H3SLw&Q^9Kr
zCP)#J6--euQL?<GV0wk3NrLmL7qUuI6-<*}dX+*2Go-9nq_199K(nj~tHI7pR4k(X
zf?Zj}*Xdmf<|vq}U>2*rBWt$Q`AsoJv(#ah++A63DVV2Vfuz#-+Y07O|NN&w9om0K
z!9oS^a^f6yu@w}uL^f)Pf~5-1DELjmG6l;Oe5qiIf)xthQ}D5ZwF*{p2)gEcpkNid
zZh-H71^n;XJJ+1?YM#{!K4g7L_}3`dW)|=!{9{WCKN1O_xl{fL3*F*vJJ|J^f=`)I
z!R_fezDM2bSwx?FhU2P>sh=y@pkSkdO`HXTT`f=8S-ucXvYAsRlt;3ar6|~^;70}9
z6?~=OTLn9}dUp`%35vZ9W0e0H`?Z2y3To*7-HQEuzkA<&Pmf$izfo|ci5+e7iSIkf
zOa1SK>=pb$@RXxqzk&k_jwv{<;G=q-4st&B$UUrJ<f+0#v>eQ1pBz!}6W4)(KK_~i
zQBk8N8~(F`Ulg3?^a<siP;gSgDX9$0Wepdke0=IOu6HI|^eY#--3|sm^#5JKS%vQ>
z;4=Mug6|In=M`K~xKZ)_so)$JnL}=VTmV0MF46-{N9F|I%#NNldmY3p3Jzs?|6wPL
z&$+7LFLuQ~&og?)-yEQdo@y1_UE|cQ;HHJ^3T`O4so<7ke*|IW1m6$*6OX+Pnq}Ug
zf{=n|!uVep3XLd8Do80%IefdkQ3WvtngU&c!KH(1#ix!p%KI;OEHXLcE<5jS^-=A)
z+rBt`=6hdmJD(*ap~#)>?|q}{1}MBkw^z_Gj7DMH<KiDib{Ghwco-RB9IsH66-J3L
zN`_G;jIv>r3ZrxwM_+c0EtcJ{im%O-yr(Va)5UVTo+|wDpf58F3NKE|W5#=RJToWf
zl?$VM7}dh49!7;QDuz)hjLKn5I_}*+DQ{|tOq!y8l`sl=WL6F1tu>CDCH+hysS!ra
zFjz$WFlvQSJB+$v)C=Q8N&kN())6}_n$~ECg%T%Q?gmoBK|L}XhtVVqPZ-`XnugJg
z*1~8TM)NRQgzaUgRTw{^kaMtQ*j_>zIJ=3h!{D6dtaOCYE(})~Zq{&D7H6(gGIDLC
z8ZA)mm+3j=K6YJ^r+pY5!pITM6_t{XVS9huD~tz)<c85HjLu=?NwlkAei&WCxKDVI
zV1ZzvAhY|!c)4zXBp{Oe)AE*Qi+4-&?qT#0-ZL$EAZ%X|n5%afeZm;YvFn&a$$NDJ
zeK}HL^cT&C*rG57q;m}vGDvW+Annk|BVjx$gnWpQp@PE%hto?lx-f}hgh(C}d|dF;
z414o7DvT#2I$DsDC&PFu&7ThA%7GFTjtS%0Fjj@Jnu8L?b73qD<J~aEg)u&i*<oBh
z=6ybl7s8kx#*8pt3}XU4A&kjkEI67!F^n7k@Ly6<wv7MaG&gyj9r;tj7<}51b1Hu-
z2lSekN#xVQIG6B{yiCWqlK)B=uZFR$Zs6js{F&_Vngy?i@dk&!y8AVD-7Xi6|9Y};
zRv2%FK{Ec5he-RxIbqCYRp;is6~^0P%xB*|>YB$U9P_?asfeZ)gz-z=K<}Sj?}%ke
zSgS>0EDmF()NR65=aMj%g|R%0=ta*`5q`QOi}Dp5$0H8%bvv@&V`Hy6_f_@3FA5(>
z6K3!6Gigm2ABM3mjP+rB#IF0-vzD${x#(lzjPjrJD_-_~62_<OqPhVly))PQSs0&(
zu`i4t!`KkU#xQn-u``TKVSEwBR(41jo5T1rj4fOW&Unr}<y-lTukf~a;YY4bcRfmP
zZ{Ovv?O`nXI_oP|<|*H{la6j(-Be)sn)Uh3&ax|v-JHTt7Lo4>WAp>wZ^F3#p_k!X
zA>RppAI9Fa{0GTPh5cb1;5_A|4&z`Lhr*!clJx=$s`w9wafAc<w2x-np38TZ&l@<Q
z@E8{^_BIy^CVBFy{IgW-UXiWF3KLIq#T%K!jMV=%j5Az$RLoQHTNuA{rmHAaaW;%U
zsHUQ^ia%)~43k3>#`!QVgmF8Jf5W)QdEF!DGF_L--E%H+xi$*c?8>@XBll_;txEcT
z&ccY@1%HKY{9Evv;6H4pkQ;(G1#byHnqNfaU>Kn=^e_yLNZmXoj5&LJsuULvgZ3%Z
zM95M;dA0+ikuW~ll|{7<6TI6`7RJJeb0Jaz6^SscFp8-tuG()+B)O25FS--Pl=Hq+
z7%SG;7iCKB@+u%nydW}~p`wI}vMMrFlvGhlMaDp185N~f`|sr!RQ2<(@^h>D$!W86
zxpr&2xw$Pl8~0_YnBO9AcDAdWit;L|tEi!(f{KbNs;H={qLPZQs{1Reh+XoLaAUxW
zI4Ty=KCj5tRID=!DCZWXrV76DS6f9L6}5!3Zj{tjQBSqs9&DhZzH0w<Ka1wugCrTh
zxF~PP5iIBbre3Eesyz#ut7xI3scOHL)=co4!$;myMJpAZRphB?t)h(zj|#7f-6>C7
z6)qK8%0uo@(N2WqP9bv+JCp13-75Y!sIcD$`92nx>*}DQqmUfI_A2hR&!s$<S#n*S
z#M&QybH`lF-`KE|{-Yyb#qfy*<-T-u5z;JT^ZVG?_4y=z6-6pWsCZ08Kn3>(Jyi5m
zaleYL6i)DUQ+bEk(dBJNch%lze7o1dox=kvdZ~DrnqOr-sG_%ug0Hd$spzAkuZn@H
zeH!9fqaPi+USNQV{;GZSV5r;D%_9=eP2bJ-@~|^l#Y3unh~s%`Wc^MJ6g;A0h$s)G
z1E}`lYZ#k<wP3iYQInRbe9b6$T*XKgQ&db<?Q6#<6?|krS;Z49E@a;f8Li?;NqS1~
zX%)}Vl!`GDeNn};LZ~@T$XFH6r6v8VXO2(v=Y_nWBEOz}eVmY%PgL<znom+OZhj$C
z2fXatbjv+W#dH;~i4V+B@iJ#b`TUtI{fWX?=wK>33@jk;cBg=Zo2Z|=7uCva_qvKV
zRLqjpIV$F=cvHn}W?$mx;|#tsk^I_6Hyc(jFz}{tV!goIoC5SE4PFfkRJ_BrMaAzN
zFBR{q*rVbbl@BJcSjAcupQu=(VyTJ`RIF05OvQ2)@2Oa+Vg={mV>uIhWwxo{f2M-J
zm&?QOJ{`4!e@w5;X&)A%f`2u$v~hi?qH;A~y_j<iC)fARPYpk#ABpf|!E$9ipK@lY
z_)^6d73)=ers4}x{y9?cxrz-cHmYzuos)6h&#*~Fv*`}nVPNz|1>a^B7Y7w?&o0`k
zVjDXl!@pC-oW(iYX@v7J=DbwBaKqvpk{uGglkj}4VwZ{+rxsK@?cA;6$3cY*OCtr}
zs`yUDN%5TTRqR!9Sj7?5J{tc(H5L0+>{IQtJl$zgxgy>%IH2N?isM}ic(OhyZcIX7
z<*E566-Sw*;%D)8dh#(bMHhwJ{R_QumiMpUT)e|@LO7#z*HcpZX%#$)|4M&03eJdE
za|$rySrvb%xTE4O*MAk~RNPkauZr_3E~xlR#oxSS4Del4ahbDktM?K|c8hm@y}-_{
zIagF%We>0Q@q|U4u9b4G(aluc;FV>+Z$e(qb#{Ke08c1f&A3KUcvHnKNqsz&$7oPR
zh;vPa$(GVSXSC(kxCo5$GF9cGH_$gMFNY;=OZjxp<)wv&;Np{oQLd|8E&p*QSmEpT
zi+ly^U2)-4D+DaImm|`=FeSLJbq-f-M(?R8rlE$0ni`60$k0$hLq!cGG?dg(Rzs$S
zQW`(F<7AynYxcX`<JbDg%V;=IFF=x|AzK49l+*0<Da++&N0wgqu^*0I_m$V|kB>0q
zl`pEKfjv`2LsboxHT=5U!DAq=1vJ8|20OEwhU%K#tF%L`rJ=TlW*VAn_Kp2I8X9P5
zsG+WgdLkKN7EoTF(Rzg>jWjeCc@quY7dj}hQ#<Amn`&SYBrP<w)X+-9U-bgKcr8C$
z$Y)-B*}Js{M%!pOT&akmtq_M`J3*%gS31?L*=KO7`84EccvQm(4ed2_&`_YEP_tL*
zjvDeb6nR{^8iFtSI%(*v*~dek9D7gnQ6XPay9nMV*zWlp>ifwx^w%&zLqNm*8hU8x
zsiCWeV$bJwW79NTnd@KD)4R%W)*M`@9ClLvfQDY0eYxo)c=X+}<PQq(t$~*+Mj85Q
z_@R1XKMiMjfy;IAiZf8d!x|pZFi68-4ZOfT#QTKx0%IC>B6kcb9HQA*!=W06i8Wro
z7#+^x9#qJS;CK1Coz~|+rr~i7voyS^VWfsp8YXC%sNo3>qcuFMVXTHHIh0vNPiuHa
z!&B_BNCEc`y!!u7oN5f~-?4z+#qpwWWZ(SfG>p^mJnd|9a*Qfh_wZrjc-rimv*N?T
z7exM|AQhPLB@L4_ysBZQhRGVHh$FqMVX9_t=BH_xE_pf1Gg#YD9&eb$JRW}UhMdm!
ziiWEWH_2-psS-JFi1M9EMXzhvvBgz&y}QaDf3Nj!UQni#@y}*QX_%{FMwP;qnticj
zcuV8sLi<edwubp4Tp+ku@Er{c)0*#USd``?t`}q8B@$h#VVRKS8deB-PXhxL9xvl3
zzOUf}4XZS)*6gDSB|I1KNJ6qk!-pC^66KHSpBmO{SS!&_1gZ0>kWHuYSz5AD<C|%=
z{S9eJg`TB0r8(>NrG_mWI|EM{*s5WhhNC);>DaE}E4rnQ2XySvuv3GjA<2vyc5!NJ
zI74rt!*j}LIHKVj4YeM1f3IP$hHo|dqeb6oxSOzVSk<l{_<@$qf*&>Pm!a85%X9r#
z621c(4r(|=2Oj9-xO1fV;V0tQJHEpS-%qRzmlq8uXun>kV_d!l`i^rN)(>!x`ZH(Z
zejh)m#5L!nhEuX8aCM@Cz5G?yX${NI+Mkpn{-)t~4c9dM!+D|M4=y+n|B&O}KQ)}=
zT%%)XIIrQk&P5EDG+apYiyA6T$)oVHNOt|<ApeW4n3PBP-y$>*Ie6oO)~;)~p+VPR
zXt=527Aya<OVMy!!@nBdU*cje-aiR)^H8pcS(qB4J58~LVGXM2YjpDCUfN_TZ^A@0
zm>Oal;#|JMU}{tpXo@BBu1G>EL*vwMy)!GN;SN`Oo&TP}+bkXLa(UO0rQ;sg79GWP
zWaucVqm+(Ce`fO>T|&p>UF_2?IsL7)jxsvR>bCFI%`W=;+x#C6_;{4&;W}HlkEj)N
zRMY_-<#c-@Y%lFEuiK|)_n?A?6^bh9c({I`vW_Y`m}}U4KaE$_QB6m6-9G<vHq|;<
zKx>q@ZC6-JM{OMr9qn|~(NR}NGab!!)YDO4M<X4Lbu`d%@szWnjyaF`xE>z5?x@t!
z{Wd?J{(-BBj;7Q!eN^BINy)gyIW2Vjv&Y{`M{6A|bv*NkkNcUmr<^$loo(2J%-ps*
zXlLC57q>3MUv@clxOC*{$k*Z4;nC4vM+Y5V$?Ic7SoGo?+F@Rrs`I^*8?cT#a@k7}
ze`g(&7nNnvomkHgTnwxa<vkzqb<uI3j)0E)brk3*)KSDn{p6*NUk4Rf4f50-7j2%s
zlHXMd>aL>)d*gd&Hyzxek&Ky;$9>?`9nQH!@_Xrg0D&bsmg?xOqYqo8W1^0}I{N8&
zjH9Wezm5Sq9?>yG$3Pu}bUdWvk6K>t9&>l(?<?gRtb?Yeo+@m1%loj7USGSX6>m3G
z$CQdi!*mRn{>h$P$Zg)EI!5UDxu5ID%06Zx;U;jTj!`<E)iGAb6FNrgc$$5s<4Nh>
zr*y<GIBAmwG0Vz<{{QLxYZu2D9oH6Q{a(rL#!wqO={X(aB+K(Ut}e*paEzC-n3sL{
zf{go%I%-w3yOj8nj!8OZ>UfQP&f4mj!6DEwl^y$j;WXXeRdNT&Z63Fd({=j@!`&d0
zUeWQYj&BxZQAo){y>gX|vajoSL&rQFZ|j&P7ML`bebp=XO&zm27CK(6AK*TdrzGNA
zl9!vw4|?R!*TF|l3v|4r^Zr;_7V#*L03uwh<6S9wk?8+d0a{>Xmg!ioV-IVhV}*|Q
zbZpeINykbZ@9S8r;}abpu=90%sN*9YtLeb4bLQ3Xa|vC;u9n}*ak=Ae>SIabO?$o$
z#9QT`>h_*$y^haxtP{>tc6F}&I_B38tgj#7k1Tk}+o0ol!%y;sj?Fs0;=-=uOV+1e
zC;nbzn~*JnTiG*feUxvfdvq+|n#>#T+?4L58}Ik+(($zp?uYl*4_x@Qhzt8}_E@%y
zOFD0cf2(7kjvsY=r{jAadpX2+T|DIez_!cBf5{J<j{Um*z2Ji!(2kx1x_#i~#)<rp
zj>9?zn~ozoev(vvIGEA@ZloWlhj4u`P~X5WI!@?_al&@UKglWck^78}-#7}wPYY7`
zE3I`Z;yrWDwcqJ!I{sqOoDn+y)Nzh(rsEQ)^N#%UIxeu=r#tj452I?4hf{{WcUi}k
z^z7b0H-`%mz4veWvyPyS5EmRB*LB>~aZASydiCNQ9<u&BZP5a~{kD#O*(a5KoY9PO
zEutNTBc+40ETTh|at&rb;$?PChb|IUhBMAx&By6)atYPJ8DuX78GcqWt|Ott(vjpE
zYuF2HiUzsD8z^PqE|+~-$%`BIB45k^16N=!*RRj>We8`qgpktn3rZU(W1ymeN}^xZ
z!1o6VG7bCA>WS0&S)!Jm&IJSI(!9Ko3Wj}6p+Rn+DjTR#&0kgWRxv;cFEOiKg{3MK
zRcDfcng)!Mg|!USmTGf{!~IVk1H8Ff*8r=>o9rh``AHfWXlU3QnBfK*8E9-E&p^I`
zCI*@s@ECkQ5X}rUH_+NZ8v`v2v^4PEC0{E8>yMONk#Jt9;9s~s<E57iXQ<A$1{{*=
zG_ay?!K>BW?MM<%vx1+gE(2}@=j#WyocC3$=x0WsfgDljWT3r}Tmzvq`5g>&G%&in
zf6??p8u4BB)qE|RgynWNQ2v6C7P=U?&p<x|{S6ctC^XQ+Ku-gH!#+mcZ=kDzBH@e%
z4Ere<$*8WmoY&nX+Fg*3@R;;~!Q1}mBNCpr9yHL~uzzO7uRSu#)6fjFV99IVzJ~n^
zDH7hP8(?6tfrktXG%(1pzt+tkKJytFcgPQO`cy3(YS?dBJz`*pVW0cBS>j?s1qz25
z;1QDKQ3E3kJVuu=@B|0zJy)%o{*mmB4*C25=qLk>GR(PKFq$K)czJ8(kMg-s8+e9U
zA{ZIry;F=afC$P(@T`Hc1~wSjXy7>m<LEO678@APY8!ZsLvP>(12584FmI}X2?qLB
zDtd{1^;7{XGf@cl>Woe@Fj=Bg1S#Q(V;cL!uz%Y-!@$dI6rCq8hj$&>s8?BsibW$@
z<;*m|C<9L`Z%DViMaMJjz2z(eZyKoFxqxA|fjMbDm(JEApTf5d{<*GmzJUdzPs{HZ
z_WHTdz`OK^nqJ=LWR%MFs`~kx<s}A|8dz)Cx6qdvSZ?5b10T?l=!A5M+ur3H>|5C@
zIS?OuS8mJdzSqIK@v981=0F=5+9iLDfe$%?6AIVAW2aJ$re3Jx|5$AD?l*6De`0W}
zU>C8DK5yVN;q8}YRNI<g=0?Wn1`_oH$Fho8&?W<47zomb4Qw{>rGeiJ{BB?iH~$6>
z7&vHPn}O{Hb{W`h;41?=4D4jJm$+ukaa}#-h)vG>Z)^Is2)PZWaF2l>4eU4U9q%^=
zxVimS@H?&{LMYiQ<OjihbfhYsD15l4pU(t)^~mIg_K<<Y296u}nL3v9h`~QfMb6GF
z@}D@hr{o=FDF=OwvNEj3F9uGC=4k^b4f`SE;Ep-0z$vL1)hHqUYT%5hk+YPulIx;@
zO9uWh@TUPjsXQlH&T}y-SHu?4{slVK78l8716K^(GH~0#Rj!TP_8YvXgum#1B|Wss
zZuy79XW)iZj|T*9)Y&IYy2;t`SpGMc+^qJ$QbSgW&rgYLj$$BeAkNV-pc>HFCme+>
zUY%<r=UUgCh%62-lrQ4ph&Zltk;$o1w}3aJV)Vn`{k-VYjV%L7F8C3Yj@Y-VQe62B
z+!G6TI0r*{ocP5e_I12kgFr^azSB}Xf=YLN^wJU$@HSCNL7vvh%S7y-Pi95z6Iof|
zjAja<KXYbfN9=o6Ty4rnP$7c*A}EOPOVFqkL0$yk_4iedph^VIB0OZFY6R6Hs1rfm
z2&zX=BVz9#YD+!2ZKxSREs^jp4fhh9S$w5|r^R{^)Q_N1#I8I;gNVHw;Rb`eVZ@$^
zB#kAt38O+-`KS67Qr;qhmJzgzz!|Y0AGC_t4;|V>&^iKsFqa>tJvxBXq@ZmC4oTu_
z$*3y=cLX^Rw2z=<y+Tg}-UxgV49O~Dlf4ZB{HiZkR93!2#C};KHv&Eu=_s7h<0)UK
z2s%gXHJmRS3^e@2eCdrYg6x(i{2hG+{s^9H5O^elq6j{0>g^gqw+I5P?H$kk5&K}m
zJ2vFqBj^#qzz7CK&@+MuBIpxAU$(SMVXp`tjG%V}yeRXMI-o&-PcZphk`E>OMeGNZ
zc8J)AvNG;MUXBNdkc0|@Bj7>rA$CQ?eu~QQu-GKw(mf=Cp%Dy=V0Z+NM(}x7yT>BD
zjbq<JXX@Jx0=#+dH9JzyTkfMGcp`#K6ImukNAP3>yCc{W!BY`D9l@*!-i+WG=8a%{
z1kXn>CW04h`Wc?%RY3Sy!O4f*|H;Qm^xu}A7f2$Q5#jL)6C#)x!PE$*(INX~z7)aa
z2#z)gY-$jg6aleGE6)^>Tz%9>dC5}kD49+V?3Z7qmjB6f&Q~Jn==Fbi&iQHt)Oqck
zb7lmuMesWN|D2QI4SGwDd=h3P&W>PC1n)=iK?HLn`1bAMZ_)ke>T9#O30ZqFe`}9Y
zByUGBKVol77DVulkcEQF1m6{0B)C{`iQrPsk%jgffXgMiLhwDom4ZxK(I<0N1gkku
zBiKK-_!`zzl0K(*3E{DtqxrG$wdq`+2>DcST?FgX^3Njpw31ySAC&X4_{Ip1bg>_r
zY!ZbpBG@eC%Lukaur-})M+Do1Zx{S3EiZeYop<MdQNdji`@ubh->|PD2u2X1!$<Ia
z1gGhQqO+H-!k2l3{~)+e@JBXK$N@nbIVj{%1c%d-7A5R=41S8>m)E>UMR+WN<3fH;
z>--|*L<A?(l2e>AU2~X`;Y<X7MDS+>zeTX{vh#PkK^xy$(Y(>Xe!6rng7Xpl9l<pb
z^7u*Ng$ORDtz8mwIf5%`$<+w{O7mWA>>BbJAMu|EuBYWUgxnOo6~S#G{|XMtx3ee_
zgd?~U!QBYd2sHY<>P$qSM_@$2&15u!9VPt{&ZF1!P2nTP`b#tnaBCWiAkG=_lW%%S
zKliZ>8wRWhl9DSGfh|lp8K{3RVsC~^m?&wYm}#3WZX(09h20<Wov-GfRn1RfDHEkl
zlrh15GNattvN9~UtZ8qLX)xOaOms8R-9$MP<xRLuxJ^_rQPD&r6OBz&GEvz?O%t_D
zRFSf(OZKWJs)^;w7k#-61KeQKehm{Woz<u<n)OWH$w3_xbxp9^+>lR8I9Zbhrrn%|
zrrkMIriH-`1Ke*nG11gSOB1b3G&Ak4ph621%}sFcP0mtipB+fv+C*Cu4ijypKFm%z
zjkh!LVKu)~vNIQJMLQm`;4_h9f_3nkp#Hdqf%YaknCN2SJ`){H<eKPYqO(+t3U-Or
z{CN^3&u4$0&u3?{wu}~-D3m_G--O>p5v$R+ARv~@KjdS3Ss4<JY*!N;VxAy4E<H^2
zG%?o1b0!`z(aQuEv}a8`Xri}?hfF+dqK}EbCI*@qWZLUn#o6wDCi<K9BDttxV1NiI
zAKS!59BhKCCFNXo^|ro8Obp@bO|u-t+3ukxMwxiR#IXOO^YVwA7&<TiQI3cZ^2dZc
zE;!P}7Yzdx&adhJZ{cMTPf3Z-nE0R6_G!UteF|uQj3jZfJ=!q9D3{_NYWl~S7;oYe
zMom0#;sw^w#8i_n;9-Kv_g!({d_TiP`i}`N(Y#o&6p~5oD6gL+`KOa)8vVos8}+J`
zGDDPKHu?VsP8xqjq60_R8L2!|qP#{h>2(t~8wN5O1>Q6<n{y<A;t9+#F_#sHVPXt#
znV4r{cNBY~c-zE$6EPEU6AMhdV`8U?uT9>*z`G{4atc&-Ei$o~<(l}?#1a!rO@0Cr
zA9MPQ_boH=zKIV^ET;pQsNE>wZ4`KqW0zUTu#%(MC_wUbqrfT?Yv`ONR!b`X_;Fo(
zH!Zy0D8Rpqq|RD)nu$$fmVd?hsfi6HHkw#x+8>QwFZh|@=YstEN6PtErRyH`6Mc{S
zkCx2;f)3^_;2%rgDCU0fv36VNT937h)^-uguWGlA(|lFC?IynBtlwNfzQe?-Mgj6&
z><|-YP5fbEkBM*SZzhhJ_}0XCCJrz<$NjyDNtYe_h3^%l@CPCL1b-AP)hUzm_<A?-
zphyl09yW1A2<1PSxb$Wj5{Ba@elc-xri1)v6YIaQN%ElMgeae6zrF4_CH%DDuYzYx
z{3hgg!T<99Y2us-lT)>E;Jk?oCa#;fVd5f-Gx3*+zd1u6bzgs=tbb|YWzO8Cg;%&Z
zGzwfb5ikoFJ+`#)8r|TQ;~y?u%?pQDEaIO>O<h`e)5I+kArp#;+a~@MJJb)F;9ik7
z%PuWk-P%JQ7PG1ejSJvFA9ZvS`OOPy?N*}z|0BpS5fRDpMghuM)hMUuu7VG@_!4~i
zpUYGf?W0JVNO2vGqHz>=Ox)!P97WYA?wQy(%T+3h(oqzP+MJ=dkPN{Rf+YpLGad6g
zyUrZXFB3)CC^DnSilSy?Zu}hCQCzC$g&@g=S*~)z%L`TztSDGXkUEuxG>tl{MNvJ9
zx>3}Nq6Q5{(IKa>P83^xg|!50vk8p@eH#ZTne|3N|C~Z9Fgm7jpnen$L}zZ}0Obv%
zs4b~YqG%dLyC|GdG>f8n6tC=ZwTYsIkXC{%1u3t5rKok9f7&=eNn43JqWJSx!Ny_%
zmqfi$?A`1i(bMaW!V?7v!`{XLpQN5;Wm<YWMA0#d#ZfGYA~%XoQT#88F;R4mA}@*o
zQ4C}a`+4)DD2&1%MVBb<KJL9QYJX(2K#(7#BQJ^~5VgNz*;Nz@{w#aH5GpU6pV2Lf
z?vmOgirzwc3R3@pD0&HhFfG~OE!!u}`$o}Ec>lEI$?j$O-NQjqJQT&lQC#^Ue{j_P
zC?|yl7hR7;F(itiQShssk=EW}>0G0P43FZ`v}8mSj|qP~Eg2aFKbXiWJt30O|H%cP
z5`6kU$@A`KqUigZ({6YaW22ZF#k44%i(*_96QlTkg?oGy&r9=PjDod#LF&WL1+tRN
z#Xgz9UhQ6z-x+*K^e3e)PZlyo@XhXJr$;d(ir1oeJ&Kpb;7nF~bHOX3@M=02d-&uM
zN3?O^4e5$mBIoxO`8C5gqnItxIfC<}n48Y^mXLY83Zx}#AI?~i=I;nu7{$A3$)c$J
z%|zCJXfyZHC_aqhqbOgXaxRNvc@!(6_^N~Fy(m^kQRNf&+_mnNQM@0;2OOq{^BHAW
z6~&Ixu8&_Tpu(CctUfN1kE2){#b;4`9>ph7RBP;7AH~H+u1}*_$I@FBK2;^qsj16)
z!G(TqPaoIu60QwVd>Q43Z1|3!bEDv<D83Lv$z~z#vt3)G*v1m0D4y-2!N145X=gj@
zDMjCVINv?dbzhciXB5Lry1$NMR}_pgtZ(f7CW>$AdolEn;X95|6t|+d%?TC74^bS6
z;wP>!QB*FU$8a!;ABFFa;s6W1)%rg<$)U8)VIftT1dc{=j4MeLm!miy#m`ZkjpC0e
zeu?4)=V_C`?}8_z_*Docr-Yo2qFa-|$R>d^?Di&ssZ9dE386ltRQr=ob*X^iVif0u
zpBKz*RCs}_U!%fd-OH}KSg=f#uSD^86xX=a%+J3n_!rluCILqOiDG|~0PWn2;ySC*
zByfXs>Z5l5GzkzXXL0{V5v0u+vSJ8Dp|DH2Xh#u_LXE=Yn64_&qR^vQu&ay_#q?ce
zd^bJh#BWb{BT@bxvFC1+0M(*&T8UB;7m{G-pYSqEii>{~Wn#9qyIlOEC=o-+n4OoV
zChsa!EQaEenh~?Jye#%9FBQYAU1eyYw50A`RX__2WhF{^b_|HY6@xp5axs*Tp>@nY
z|5gyJ8bh@hD#q|-?fgn2sVrDU@Xi(c6^QD>8wu8kp=J!Vgfpo@47G*V5v(g%FP&OH
zhDuHBw<8!D#xP!fg-7046q>})G=^p|G?(bjp7!y)h47YX3$29IZfYO*+QiUSq7K1!
zX&tAK>-QDk*4lmSp4$_HmyO!t^2Lx7L;DyOf9YbhLkxR9b~5ycp`-BJ7&^t!S$Kh9
zo?yOU7eVUZ$9`MqASsN&A48GIy9x%<I`_wLe2<Gd-O`foLaH8i^%U}eU@yT31$ztj
z5oE@`F`ORiCMjqd7!bolF+3bYooTLtF${`faLoQ1(cwi7e!K1T9_J%542fY(49~_e
zG=^a@jE>>S7^>`c43FV4A&m}~d6eC&bR5AV&U#-j>3uwg5v9B%IfCuHqXbEwh~e)u
z4w7U!?^7{cz0>g-!Kc~k*K!#BUkqzXc$twHY*=*hkD{?LJQu^b7}g(lkB{MbAv>mL
z|5Ymgg&4+8@KVn3B7I|mcWBeVOEFAhzr_)VV{!~rV%QtQ4>3%QVOk8I#PDeh(_@$s
z!(49KV|Y1+S7LZQhBsn(H3ok0am-upnK6va_V8Pu{65`l9Pwp2B(q}J`GTv=ZO7~w
zs_%Ed$xi##Q*(iDP7JNWj^Ue~FNK}+Vt6}-<uR;?VSWq?Vt6-(MKQD+<9jED&({|J
z<Fb39L@60rvlB~MEM+ZW9UgFPZJBwdk9Vm^mc{r`!~4)Y*LyLnjN$zlKKjzh|M?&A
zqI<+o?lz@7H1$CYt77=Kdd_OWHG&@sQuvXOk2yElMsMN$zqlz}#}15PTMXM{_>AlD
zFyAIljmHa04)=W?!v?Mc!+jeC_YNvU{zVL%IblU}tKgOxUTPY6r)gk)(?I^?1&?p_
ze-*<Hj(ZH>h^d`1ytdW<bqqf?4bc9s817Ck+%3X-!+lJ;*fj7hJ7>5r^jN`nF_d2B
zV)#CWD|5<_>|;hcOdPf1*dN1z7;eOHGlqjP9E#yg48O&2IEEuJ{4DPDQw&;3FPG3`
zF&vHI)-o@{vf^bQzU?_4L+oBI$uBXSphLFvo{ZrXonQFrZr;|Ny|c}ZzlslkKdfld
zBJb}poQ>fxT8`n^D+P4dKRD30Jq&-wa4v@P5*?fAy&&YG;3dJ!g4Dbs<f<SY`&x`|
z-ga!#$vbk1cm87UKQUbApmg)L+U>Zz)_W_4+g$MD$d2RR7=qHMl5vED=rI^ED8j=r
zs6sNzcr_t+ng&?INDO(WoGG3|OM6Mo7@{H}j|qtjCIl_Pq+n;ims##e#=C;|Vkj23
z?GzUz$%vywn*UYGTPlvH!`_M|y`|$Q69)-HSs|HmXl3mv;wTqK)i_F@@Vs=@TRx5o
zREXPie?!<?DGqhCuQF%o6TZ9cyz!YiBvmB3rj)l@9M$8f5y$v-MHdfwx|Q&KSKBx1
z3196v>cr7Jjuvs$jiX*1jpJw%NBuZIz*nY091Y`W^s#-d;or+Nio?^XIQjCo?SBwz
z8n@*P&4lc{TI}r&c52HwTE)>Jj*fADh!Ab!ST)yOeXpx+91d1vud96=Sy}FOaX2OF
zUg8KBce&zl)4oW2g4FcJ@$(2*a<L;vBr9|$g&%zEAm+x=DUL32+!sgZIL1`<<i*jl
zo~zi{Jo0?uB$N;fM8Pju7)R#hG8FQMb>ljD?vJBu9ACw;BaUuybdTfJIA+GtBaWVN
zJQK(N;&>pAUU3YM<Iy-CjH7oP{o@!A$Mp5SK5^7;>g&AT*O$hBE!j_mm6`>ZG%$`q
zaXcKyBXJC7CHv+)#GYvuVBoZ37&Rbgh)9?;OvunU3PpiB6po<HjXs7^aXcpc@w8;5
zkeuE*PsA}=_>**@bm~(=hBpgLZWgdD#PMt#&&TmX9Ao3y&^L#|adC|5o%5XF!e)W-
zaV*~8+kZZTHeZZm0vi&?47z9>FU2t}j?^(v%j2F&aZII?eBwv{oXK%aVLu=DP{Jq!
z`L?foZARt4%v>it)?2<;;yC)2kHYoM0zJRtf2ra1INpn6WgKtBF)NOD<5(2On{mvh
zuWs<Y9mkwFKHuPbOQLgGfepUmo$@G|ClW@fHb0I95`9OM7qa&@`lu86)W*eeEQy1B
z1xIt8Z)qIMg?!U2uq=)f%>oq8U7N9dovq(zhwuG3K8Ryu9GmE?ajcHx(>T_}u_lfW
z<7nG2XRY8zaePcCxj%<vN8w-10z`&SSd)G^l&_amlF#G#Oal3TNgKohqhD~mn)tTF
zu~j;Ja~vz0`o4@~OH&`4wk?kBaU5yt8y3i6Lxwc9+s?t-$tf1cuW_7-V^<uzxrWDa
zAdWqpQ)OJ=3zB@panJRA8^<rc?C;pUxxRgMa`#H=4|L;Bz6N=|eQ`{B(ETGPW+xxX
z!8i`ZaVn0}qIQ_$6~{5wfgRP^_Y=EidqJdG;K>FB$2l3}I4NpNvh#mouAki}1Q}&0
zjr@oF`5)%`SQ9hX_aFH!j^E=5b9IXIai?9|^Ko1d@<$wh3OPre9%axx@c2;o#W*g-
zaWjrvl5|<{Y8>S|`K|~a&i6f7!}S+uVhz{daa<EZ{!bj&h2Id=XS*nz*1X_0r)r)r
z$g2SRt&?4=KP$OHaVT-j%k%AFG}lL>#ra(@SW<*R=aF*bf@U1iIAX%trJi{i$KH3*
z4!e5apM{Ay*jV;bQu3zaxD&_SIF7%S!8+gLe(8h4qO}E8tLL-k83{xdI$9>sDuHpo
zdrBlwGJ#SFlun?GNUA4LR!F8Gb*4P!CT1m&ot8jIxdh55P(gUb1gZ$BBv@IHxxT2F
zTUB^9K}IR8A-rY+wGybE)@&lAP6Bm>)Dx_qKm#ES6KE`i*&7M@Zv|ttX<FVaf#$+n
z2v$_=YPU|HO#)XE{Ll~DCg4b5LIM*LXqSL9fk6ojPQaDm-`t@`0yhpgJPCLc@F%e3
zp3|3r*2vvOFozj~E(+Tx(1EvzzjkyK%oSv`Qv#iZ=cOh232d6`U=oeomq0-Rg$X>k
z)<HXi`nf19l2T|hAmsi8x(ex*KzAYkVgL1xo(VjVKrd!b;QZUJ{t5J!Qu<1?k0@74
z+SThPlIvTYR2v|iWMBe6M6yX9O5ouHUPz$nLB}Hr3`t;A0#76`G=X6WJWe;5<`|y9
zqmuEl1V*sX`7U<Lyr~XmA$fL=gOwkd0E=KlXmfM|PbTne0%H?+DuJh^jsHu4S)LKj
zmLC4j!zkN6Ml!Nbp5quLFkTdBxssX9%3Gh5d0r&Vr`gIcCh&LVb|rQ@ne<WulM+~!
z!0H4hCom;}cSUn*f{$tNW&*Pl_<Fl*dIB>Ocun|>1YQ>Mir}jW{9eUHoq;dAUr*q#
zIbK?xmB6QSyl+Uf({$I^9xe)}ZFkLK{S$bb#<#oX3ce-CT=O|)o^vfs;O1D@f&|`4
zAm=_0b5S^|th>o`E|#(=fyEq@1ePZ7UIHr<SVqU5ZYz9tA!~VpkJV6Pwu=_1PeNqH
z-cNw!la8JbI4)(~Bx@4*FoC@sz63r>;Nt|oOkhg_YZLe+frX{=H?jT+tP{Q=f%OS|
zmcZu;csl0RDV@tN)KI5mX5r5@a@#f!Y!o$0u9UV@zu=5$9@s2G>TgY8TLQZi*u(4-
zz1tJmk-*LbzT(LC$l+IM9&M4&Twf=!i|$dvPhKbN<@aTX-*Eag4^Z+g9pDEC`F9C?
zp8zHN0u+&-#o3p@j|rSg;B*4}6F4BL#}haxS(xiE>r=MNp#(DX-OO?%fu9mMnt+<;
zJ|;-AAv2$NxqAN33H*}adnRS6c_M+6lK1OR3uxiN()qt8a3+BZ(zM?=?g{*v;19!X
z`)3pQLyD#{>$da{yHV#QiFIbp87RCcI+qf-%n8ywKxOvfE6oFc(I+_~Yl>%DxR$^_
z2}Bc!(W|+7BoIs>#O1~3dt|HYW&*d^pPzYeb9wpP`>*g)>&kQ;kXh@xZ{anclE9&T
zzDNRLwvLNT0_EEKbk_Nr??liy<eJY&;P#sZ7yj`Pi~jMMbmMt$l6V5jK5r_)*GG{M
zZV6JDOrX*0j@TOS-2~cS_jTUjEoI?ef?ve;6|+#>LWX7Yk`}Hmca;#X?Z}{n72f)0
zL1_!jQpQ4A3$GXEkiT2k&!jBN-f8bV?Z~zOi~p;@zemWa+BK(wg^Cth-bJgssAQos
z|DGs?3Mo{vP}M@xLdrrl3)L-5wlKv)4GT3b^tAARg<2MBTj*#Z*Fqf&buF~E(8j{?
z1Fm`&8d+#;p}vI%tkNuZi>&O1LX28o@+KCVT4-S*QrgwbLUXDGT`T)|S1!z6-NmzN
zXa=K9YAFh>EPMaYXj=;o3mywz3+*gyF6MGtI9B8(8Bx>YvQTEZ<E=Vww*}&nV(#%J
z;A2hBI&v(`ddbBje0zy@5X>~3Z)Uj<N8Ft(6k71JdTh=LSDuA@i|^QHkarOY$$df!
zEX*J1Vszm)$LIgLiYx>y+;5?)h3u50n}wW>uG#ZlykpR%wI{gE(cMC;&s;q$`>7U5
zFAEP^d^--$Sm<q`kA;UUzK(^y7Wz@1<sM|Azl8x721;?Y>bWN^bFi$-5%>QZy2@>F
z4Yn|?kKNv<7P}s?FvP+z3&ZKj16^A-yQx2v-Lfp7jeXR@2n!=EjIuDhyz4Q+#|3u|
z$)Kd?`=vUTc0FO?NefR|7!-7k7Nn4bf#kg>z5lZ?#=<xY<1IXE;in6(c5U3H2D!eN
z>l$l;_?(6C!fcX9@?Fncc+tWH3olssaFXNM@?Q7vu5Y_|CelM%yI*46;;zDTo=J3-
zpyR?L8I78|r?N#Bez365!gTtxh1KjX3ol!Eg}rTIfrVEs)ceN$CM$1YriIt&+ZNui
z@cDO+z6)FpXSioEX<>GSoz9Jm-NbPhoLBd_=Wr0|2^RjS=XskxZ#d=&GJ510SCg>o
ztL@p_y1U-7u-L*93k&H>tz7R~=<<V$VUdMJQ8y(^EiALJ(!%=|oC{pbEv&Hco`trT
zvKc+REc=zCZsO*R4i@?Wduh3gWv${2-Q#Xt(migm`$G#KS=eG>tA&p_i^sY@vGA#d
zwH&_Pj`EWnOE)<BG<L1Cu+hRM3+w3{ja>|%v5jfILCBEnuCV3$f<4K0O?ENVnwI^g
z@QMo^Oxk8)J7?=^$F~-~varKK^q6b6g`F%e<zRbvaVfBHr=#!K1_zP-;I5ywN7TL%
zq&{m!3*TAzo_(^x!LZlD>F->Z49AZa_FMSH!U+opEHvEYIB4OJg}j=%<cBRBv2f{N
z{*AEnCrLdf$fTomGt*ORn3w!GJH+(-%<0q0&FD!Br!4$yA;?lJ{L1E7_|w8~D;;Nu
z?C@+4xubN>?-tH-o?h`#Qa9k9*~-1}f0^ejoadAo=8dd$9Ju1SAe_;Qtciuo61`&K
zx{#}ae+m9ANX=_P{t;ZX%t6Tw3pXWtOYrvprx3EBSTNaF^n42{`*x*c=KnGe4fARi
zbPEPMWSIBg!5Pmy?`t<PGa^w+x|^QBXRes^Rh&*W-p45WEn&eDA^H3(o;w!q(({v8
zki<O;#ggcgMBgNeCy|kaI|)w`C6XwaM3W?%CQ&Mh(n(ZGqH+>tk|>)*`6MbNk(oqx
zd6&7@Sx!h6QONOaP9#BOYHKa)vzv}Hdz}@N{OX+Jy-%H)N1Qu1J4vb}Q9X$oNmP}j
z{*~R;k|5sR?5LSUtt9>^->z{IwUc;qv^#pUVEhqh9pQ}DO`@Lg`e{jnBpM2DB*<D(
z?K_Xhu_C)!63vrnokW`?S|rgjiLG~>t&-?+%FQ3ow%y`%PIg`Xv(&9S&bCS3p!2j#
z!kL7FE#2(=zOAeMX<O&c?@m_|B=7Ze7iPelgf9ty5=BYmB+)*Jd>TxmLlXS<dM?Q#
zM@Qj|^2^tqSm87Iodxp*m+UU2<h~>dlJ@803q{C}$n#6t{H`~1@zd>(J>d-`(Swy)
zT|j<+5?zxZ=_W|hT}ZF(g*}saAc<b0+2nJl>#ZDSc`%9IN!-ZGB(MC0w;#JViHS+P
zl*E7}1}5=%5+jrN?N!I1Bpyj(i15KlJS5~{!4dhnRA3k?(cyx_1ba2ld^Cv>!XHaw
zj?+c8wSuFPcp`~slNg)CckehxC;2QGPqTZMIiBP|RCAM1^O+>RT9g03B+ie?BpJie
z8J9_U_4_=}B{43E=aYCLiR75fjE#=*^v{isDeLpkmTpH2%R6{pOrqzP&I#=K_uYEZ
zv$}a;QWBGscrA(7lbDjkRQhdw&ntq{1ZN~MT}V-5cPUpUQ(sPEvon)X@>i3XnZy@P
zTTXm~ys~>Xo0i0^BrdmgRbG?vCTGVD$Ame)VjG=vllbdZ*E~^sOXL*3&8f7;v9pF(
zS?72siG@iVN#ds@-c4c=eJ_b^Ni0rc3Ed-!^+_yEVp$R^lXyRg<w^WJ(Q(%8S&>9!
zbcdN`vfpEc2YUDL^0YcTt5fy|Nqn5d+9VFFb*@TcbrNfm_%MmH#~nQmc$o1ca<_-k
z+2`Eju6aJ8hiINpS-L-;QSxc$GCoV<b9V1J_ZLZQNMhH=jy^5i8(BTg^VGSFO<WLK
zxHqlJF8IfB<C<qP^Zx4oQg931>6%A#7H#LiCGjl>H;FrQO6^EuXA)m0@j=47Gw$8R
zslCs)Cy8J0xOdaNOSEH{G6&zV+`0wjc4fC3=>48WuW;;5;)f)<AM}*C<K9PC@9&=A
zave(IN8ya_XG?{@JI{MinnvMa7Tw(U_lAtC^SnosIF^K#gw8dGy_dwrBrYZKOA;qU
z|IZ{&CUGi>Gty~E%S#JmTlh}1dR)`KaBqFqedJXBZyc9v9){nUOZXpx51z}QaQ6Yv
zxg<8u^PW%Qf)Mgw{_!-v<-VN6wIu#Y;tIR^AJ0|6zXUI&ynnNwUvp4?o$hhR{cjRM
z_F)n?xtLteza@B^v*Tz1qYT~tEeIu{uz|-NVJ@?yGf4XX?a3OQK~%Y5_V+IA<}v6V
zbh8vPQuy_Nha+ny5lteNM4a;_iIh|zk;E%M<v(4std&I8XZhqrw&hL|#ZnmJa*^Ln
zf_RTpNwu3vLV1Z4N~XY}%u1nD3Z+x_fL1WQPtNz2N#W~+H#3E@DU=`NeW|~<{%scn
z{}SrZJa2XiNTFN`?w<-6WjOnByNW4PN+IVC+TTHCZvIo)lET&$s-{pag^4M=MEfb!
zNTGWQJyNKdLM>WI!IMJm6zZhVD22u;)J>sY3iVTHkiyES>-2Wl-d(P4!`yk--3?PX
zQ`b9Wx~u&pch)=EO;Tu@f-{9pJzPAYU!RoSEQRJN96jr5kwQz!?rLAeXe%~Ho)NT8
zp-q~%72*(VC%7q9Y}`jqR|;J!dL4gfdsFbGke5O}+m*6!0(49vH-+{obV%Wc8QImX
zoMo*uCmGofx5(_2Lgfn%R<CmktT2!N#4ah^mqH+g`%@@L;a-_`ex8gLXS4o=Da3wr
z&M4EaNb1R!vgj_G+(a7b%7KfyyGeU_f1qay52P?Og<&c5O5wp2`lm1;h2AOjNnza_
zN8c3Qz2oXv%`>|1|6}Sqprk6Euji$CVfso?5kV0|$#3V)yjfuv7B-BiD2jlBC^>^<
z10X6Al%Rruf+WdNf+C6m$)KVrNLF%`ApVe`GU2<^{P&#ioIZ7KS66peS5?=%p3vi8
ze;~5+qW5G%%u0kx&dOtHo)FJ)z=U`zA)Zc%7F^D)xh)goX6rABFw1wh=YI68-*|ec
z$NY%j&1;<yZ4#neLUd1vwh8|GjOdsUof4wG>@_4FDfe=uLqb&lF~UOJnZCH@rn=P|
zbel)eMOM3V?W;1?9tqJiA^J!rt@M0?x7LSxCq&loZm)zGl8CTZ&FP^^R#xAH=qJVc
zCj`gm$OB~ch2o)7ts^fd#K43Y&m||spoAEl5F-=fO@`B)tXC4^^@Nx-Dl#M?UX`5J
z7;k@vx4ap<I5b3op$YLuLJUiYy_F)v6Ji7n(kU{aqs>Cjr_X2TTM02LA>K)dcN1cC
zBJ)}Qj~BeL5{yX*<*nG^YK7#yo!~9>p4-9Zu#eV{j!THtE&gqdBe$Q4PDqG}2{E6p
zNeCV;CMCr5gqV>K?<d3u2{Ab#rX<9N^gBcS>&S@?D$BU~I`OoGI3AA@kiK&!JW~qH
zPKY@P@sVtz<SgnoJ&&z?@V@!<K9{XGqVpv6ZbTO*#3Fipsrxaf`_f&U5KCm0X9ON?
zsLxV4Y`Ij35A(|snMeBN39*8)bZ_R&Li%Y!tV)P;32{ClK1+zz3Gq`x>|n0oHc5yr
z39&UH)+Bh9mRO$<8)z9ub-f7R+*>EX*OGoC>Dq+&=7{$#t#L9;8NSQ+@}$Vd1pie$
zv?(DrQ^PV|Y?K?V7}+zyJ22k8_NKRu9^c|_y2bmBD>AdJ>yhsXbnl0Ra0k2FCH+xS
zR!fx1`Z*zfNr>MP;`fBunGm}YVh{aGwVOp=T;u-A{BS9}J0bcPc>h?@Ggm^DuSfQA
zx0dz~GB2%h_b0>wM&07@2M>E?*0?3+x+6PyhZ5qj)c;IEjLr9`<dK9pnh?i0vg@5n
zh*R^z#~EX(Fw2RAs5?J=l9?wJVU>fNX0BV~F39&r?)1(k#2*aNJ0rvs)<-WS#6@nR
zq$rgXe<sAG1Ya_Qo)mv2cn6F4Cn5e#h|3A_cS2lCh+bb6Ug4s)=Uq+kuNHE8JycMs
zqs>Cjb?(r`A(q|4WB(<@4Tc}%HkcFG8%=PKzukEcM~=?OOEMTzZs9?fP3eRPBr`IK
zqy%bGBxYw37)f#bS~!#x+F>`C6lPLbNnt0&);&=tDGq)c`g?e+)R6o+PkWqt-!_+G
zLJC9DTO=(ZY2D*)>7=+dDXJtzRXOZ!NpWXVluL@+lcG#gTxk_qd)e(UJa$J?{9=f*
z6n-GD#W#iJll-!=TQMmrCB<D5-z{kcNo((o-Xp;?$K8(i<lLJSm6PJWq*!F+Y)I9)
zKPkRl=^o&%4&R2T-tWk&mK4>gkCPKgiW*5#Gbw5%g_{(#$rICDTB+6xk*p+tbtOCw
zJ1n-gb|iYm<pNvRD4<oT$^2wAniPIg5X2;%a3fr<dr|GAsFM`)G8~bU6uC*!KPd(z
zMct&RmlQ3N;+dq#ON#nQ(I_b%O^OCdk)ITgBt`T4A_YlNm=q5tMZ=^hu`$v#<P{}F
zJSk?+u%27xk|XrctPPP+fB$G(^`WGAI4O2K<FV{a)FW=%(|;@}8Yji$N%2HdeAvT3
z+0C!A%I%j9m2DYmk`&F7BHhFPvzPxQg_DBJ{(b#+d<jVMUyP$qQS(dw(-O1VLW1+3
z<h4qQXOp61Qglj+=aQmzQnXKs4oUIG4ELuVzBSWrlN4=}V&ETMJ4ru#-X|VC(Eq-h
zUn@WF<z9a0r09|qpY-zk&=h_Au1V1?DY_@c>o2&6y8Atnq9+5OuTKj+pA;OErI!S?
zo>O~EQ1_HaCTHxM6#b;;JuLBVU;l-qcrhu)C;0*=UP_9W8M;X^np<XrH!vw);}l6T
zC@BUf#VbiMBq?5{K-jC?&}&<(aQk!K!=VBm9C+>+%H<@*h@=>q6vL8YdrfC}GIMNU
z6VD^B_OXBLX}_7w9F*RYl-+sUV3miXF><=Mlj7`2cWhED?`?0{<i3uqcaq}Wq!=gp
zUUi$TZ&q+vCM3ngq?n!*Gm_%WPGeG1Orf)q;(a;e&};c0B*nJg_T;1>uCO9ZHG015
zO-=IoHZ$WiMv**l%}i!aL$i}&PEvd%XPG4_C!!AgR#K-0?(*lnxk+)Vw@p14B*ns{
zxSAB#xG$1oaZ>!il_tfKq*$61-*EP%_&6z+CB^4S@dXz`B`-u*(s4BS`n(lM@zxEO
z;M1g7l@y;P`6mw1hA)OT<mL05v81aRKTrDnZgazqKAYAg#g|D@5VP*+;GeqekbcET
z9vJ#MDXxE<_4<YAw@ESlgxHW28<QeyPk3EYtY_0Y_fSifgKSEQ%}K$p_-<p!U5IkP
zElfD%{N-e1E<5}}@^?uwW>1(h-_s^d^Z8}t9~mu4aV{y&b895U&q;BFo0^#<DRw5s
zUUpB4T}kox8=*Zk`^>ywlVW#L)E-x~`1@GDnuYH#&i{I+$DjG^Pl^Lc@mo^-PMud|
zerHr;YSBUN&8bC)jOZc8+c^G%Pv$pAH-Ajjy?dnDxT0fBXi0IJZcU04Nx`8`O1iqE
z-Q*+hR8p+@Dl}%3Oa57U{BUe`Kl_iQxVxv#@#l1~$$2B;USPIoG$!0T>P9an1?iuX
zUg9=<MrHMXj07%0GFiP+%)i-sJt_W43Xu{>iGP#gKL%$?7%6ds$vi0nDWRl9l96-O
zO)&xf8c760!~|*X!9yVew@Ym`C1NL|nL}Ahu-eiL)i~${Q^HJ%`A)rNN#9C|rC&sh
zvjt8{v>)f&smy7`?yQDVqG!DVrCV(_-I5X|QsS<ZxH~0ErUVbLWm4h}ehQEhEq=@|
zof5aE#CuEq+fw3oSx(N*`d?NNn+SNEDJxscrNo`7%(-b+CzZ5(O0c!#!i-FXl(;7)
z?oElxDN!*cK56b(N{QK3VwF!v1Mh^MZXe+iKE3YWml9P{nG^B-DSr9QfBL%r)F@Fk
zB`CnM`+!#?C2FQb_W*hXP>btLiRaRyby{SlL^vgWOo^XT!b^!rO1zR1LsBA|5<ZuZ
z5-n+^l*mqrMk(=VN<5ItoL=juM7>nzJX<>@>ZC+YN<1-0<#{bvf>+1+G*p#Rk-U^B
zN{NqtbnB-?18P_*lAjWVv})Jd1(Fg>*zb|DDV`D!O5uhaS%QZoy}BvN5m+86W<Hh@
zjZ<R7iD(lpWMky<lvrOS-s*IeXX+<X;;)e^3(vn#rbN?}XqFPqQ~XYa|1>@Ij{lUz
ztX_FLQ^<KHC0eCK*Ocg%60g;bJev}2Qlc&G!(pHFTc^atBksMI9MTn|BJEP5LrQdH
zJfy_r-|{+N^&1>i&%Be}DJ43mMD62I7TTe~JE1PJ8XxF(Pl+BW(LW^yNKVg`=$#S=
zs>CSyd`j%BAL*467dK}*_DP9fuKNUiQ=(t-Xt8a1FQmkabnD6Jz?7&k)_*A_UY4!5
zS(zEh;Rv;N<qeW_Fs;<ge|CG`t6WY>e3%kbQ{wfM7@87qrNk(HMD>gJMoJ8)f2&3+
zpNbAk3C1A<e&+>uL`saLN*CNW8R`SorkS@W{n05ghDJz<NhvWlCEk`(zn99Kn%_x@
zaWwC>%$p(aN=}Dn{&)^}&3AM2;*0XA-h`C+Y;%ZKdS7~cG6U>Xl<xjO#)FdxO_4Kl
zI?g*SC8pD}DX}pnW~9W-l=wI$mT^TXF^jvB5x6vO!HMYXlsLaIZ*EEu&yjTOuKanD
zN&Xj~gchX4LMgl`B^FCSCi^atc&VhUQh0evtVm_vTUf{7&n_Z|k+YH;jXU>5^wX4B
zmC78PKjYSxV6~*5OZtVRYb5>hCWlvizw3W3@i)bswGw>Gg`YJ!)Ov={j=bszRqN60
zO)0TCCGyHfx69qMg*$Xh^t+VU%Cu0Jw~agEf6=G5=Qrw{|9wjEeX1X5iZ8;H*?u|t
z+<uR(J5u6jropthB`toTB^m!I@jnJR7nKr+QsQt*>`sY2Oj&LG155}L+`TDrW?!`I
zME9+Kqx(`~zhsin>cNyaF+aTMJ@>bi_+8>26Wx;&+#@M*G$qca#2+bfEG3So#3^$A
z%|4M5m8#n8dom^3Ss{L>nt1hVAvT?s0%vHz$6~CWW1RdOy_gbzro^E0?)j9sz=hut
zWns0&^3bGx(MwX30G}|gJC{@9@019ng_0IO?TcPXiGP^tQ{pPKYg@l!YyVnGTxUvb
z?X&gopZw3xyUEu6e|!mGuN&dmbtl1>fRsq3L^>swpDkGbLum3Bd8OL<Y^5pswf5Dt
z2&RRZ7Ft?7a4CHGpQxS|Mp}%FM~U|z$>UnAv~bcQloob6V>*`D*ii2lYJ6W*q(z(M
zA%fPsLnYFpWLh*xi~O`Gl@_Jb;{LR#k`}k7#cgSES6bYi7PqG}3vYMMEt?i)B)&sZ
zGGn)7eUqPeXIhj?3)-Q)qy!7+hAO1RJ#y-M(;~b-S}`paPjD-xMavc{t2+mVNOzof
zE2jnNeVo0WZ?;scrbV^1$mY7z;=4YP>S@umwO=bOYEZ*E(VCJHu*v0107sSrl!;2<
zr9~tyXisu(QeX08#mw4iQ70|(<ls5!j2CE`x)S6{N{`f&YR~DM&!+lm;i-Q4uk+rm
zomY?+g=z6vS~Ql+FG`C?(qcgyKb{s3rbR=!kcZOZ;k0;td5DYRiWm=VTc~tgqqG=y
zHpD=BlwRYE=iSHC;)%3qo)%A~Gl4PjXE*PN+l0Cuai5e5G?la&<)xBOr$vjjXq6Vt
zD%#_I2)9g&XVPNkM7QBNmsNU4J?}m%O-+H#|7N#Ii?)nFYLyo4(xQD@Oiqg_Y0)7q
zIx<w!;?1<^lop-SqJLTpNQ*9M(KRi4rA5{5UbnRPY@_>fFYo!Z=q@p<J<_75#A}v&
ztnzb~`!~7WUv+z@MIX*vI?`8Cf_`anVRe|`g|v7vE#BbTX_kTBOKCA!j{mZ(4wQ6|
zq-;IjBl1dG3`vVurOZ%CUz7B8YN%&XF(VZ&mFrQsTgj~9Y4N#;j7W>^XI*|&#E*wm
zGg_`s-dkz$Zd#1LJ2Hx4*(YywT8v4Hr6cmj%IZ53zb$cL`xpyl#!)^k-b;%K>C6X1
z{J5ubQQpL~ct0%&Ceh3PMYsHt*XGe2(hp>n{14M&Do0C;kJDmWntul5ev}ro(qejA
z)SK?kkaT8Rj5TtmZF4`L?v^mU*=aF1E#`3_E%D~0h5o5UFrNdaGuI?8NsEQtAg5hk
z7`Qks7D>$N&JmG<tIozsez(i++0*W_v{;@NYtrIN+BV^?NQ+hUOIqApHg{!Od?J~j
zN;<Mm9tBud%jy@Be*XUneDIg|Ra$(V7F*L|TUvaR7HiXDU0SSX-q@VEJnh?b<~~3c
zUU;}6EjFgbrnJ~BTVHIKO+D`%9^#c~Te#R7-n2#G$*VILrt!Aw@6v+chqU-Uow>Z4
z`t#yPa<-?%kFtrks8RT5CVy_R03reGOp9G<5ePsD;McU+ofc=(;%r*%NsGN{aWpNC
zrNzFq*q;`^rN!@Qak+zkAT1821%FpaTx+m7uZd6aV|)MdB$vNBJVf~^k;7?mL;{|V
z&RlkmGwcf^C)46oTAW}G*%RJ1HS|M+oN*m|QvQVSG)JD~F1r~0BQ4IQ#eo~{e`#@^
zA<d2Rb@)1!Pm4d(;(ruNi%V(oSDOEU80C@Y+LQ>-O{C|a%s<uM|2r+NF}Bx6h_7(E
z_Wsr4>i+C}@;TZ+Y4NWd_Qt(7t2fdj!7Y;?Nu~w$NvB0hYP;RHs53eGi<TOI7QkHr
z+#P@(fDu5+07?ZA41fnW9>frU832VXNo`3hHqCb=2n8S{pa7Y-1VBU4fF%M*G|3zf
zO9yak034@W0Jl`OZwsJI0CxnyU!L9`0K2?!I$AaWE;&ObpUlx0qa2XE$_GF*5>yD_
zo&ahDP?Nm^s1(5c0aOX#-T*2~1?Zal0^o0HceYeXc><+_ss>Q4qhCD$nv0;CtZp2b
zu_1A-0C?C8%U-U;S(1{;5jZcs77f4;;PC*S2p~q~8~Q~7!~@6<;DG>Y2T&(~0?E$_
zAUA-#0P6E_Q9ieB0QDrFUGl$=EO@w(fJ{=B1`^~4@Ug5G%Icy%_N6}d(Uy@10~mhU
zeKdfE0X!7I!vQ=JK%)TqKa_KDMc&$fqcx@!P5CX{vr<O*u>i<qX)HlvrQ0NcC%KRS
z+5|A`_DItJo(kaU0Ge@MyyQ0zVEzEV@{0wekps~d0X!4Hi~TdWB?S&d%iU+R3gFoQ
z{@xIIE`R|>9>0J`JbHlNHh^{kbPAxf9sTx2zkL850w6e8C0_RadL09p^P*pEMd+FS
ze&+zX(C-|)zyIb-{<SJ`cIn1-9f&qQ5ba5ub5RN!Dd-hI?*PsOa5jKG0rce{0n81c
zAJ-eer~pP&hX7s(;I#l=r>X(G6u^)GUJc;o00su|U#Hry&^sri{Lt#fVcwts22*U9
z_j_IM##Nsmu=1nQ#&fbRl+P}`G;iO=yb@jWhXyc$t5}-H55L|BfSh5}jSBx2<>`iW
zBoj#e2p>M*4B#zB=HLvjw<2#$0AmA~9Ke(S-sT`xViN<H6u>(HyvyL<ndi?5j|*UY
z0PoS@gVYHDG=8_}gXTUz&f{T_N5Utn#@^?QSA9NXe;{XUKPdFdGX)<8Fg1V~0n7}5
zM}ukHn7>A*)r}BOmz;C|i*k)T+wvs)5!Jik&I(|*1Us8VSe-}D2CyZ7tpO|uU||5C
z2CymszT37afE9iGl>sacU`YT=8F&Ho)V&n}ER#*kxr8H8%1myWzrS|=_TK)Lmt5jc
z0^pl|KR@qJ?B#zJ!0G_j2e5%j^?K-YZi;UHmz<@y|3v_N2XajS$5J7JuLAfwfN!M0
zI!P(HmZ1^=-?x0Po6jms`JR5;-u^}@aC<v-6Ma3<-yFb>UOoZowgA2h;1{kjfbW?K
z0@xnFk5Z*N_eDPL>GK`VpPy5Eb@zW_uK@n3Z0DXS;2V-ZGf?IGle?Jw1K1b9er|!j
z{%-Dw4H3Q-dE;>PJpu47)4hznbf$WM+b4h%WCrkC0KaoBv{FyMVxr!m01iu>pQuMp
z!+!n|?)u*TQRbpVJyws?`wK!`%X^7>rvhko$~!Gry0oS}J>>VOWj|ii|095NOtT6q
zC^#R$1x8B%=>RTr@Df@73*d49e@c8QfWH`H*WG3hM_+x_;}`$_4&Vwydb9U$09P4Z
zpSt{N;x!3!dU*VG;dQP(0DcqliKQOD5=qJb0=U5>%pCG(s9pmv832D{NI-hBz86p+
z6hMKZ;8Z>Dv5B6lKvSSAFch%LGGlg#G^oHV=2#Ng3LFVS#eCyg^%eys6x^<$jDkHu
zucU%f3Q8;Bw>RrI_a>Lh`!&zIRl#iv{wbSV)Zc!ljNkN2?+yiJ72K(yoPz1=U0&b8
zFI7@QeqHmyZjtf|_+?9eL-H;O?pW&GqoAUKLIpfOR#I@U0#89i0sniVvVtlKsw%io
z!Tk!x)zSI<z^5JFm|9Iibp@`1n~y!@)KE}UK`jNmQZ+VI<%0*WW+l#25LUoy+2NrD
zt@0=tRp2YAt)PyA81;NPQuonVHfOo!@<UsGrul$^L*IqS&r$HkBawOv@)YDMsH<RJ
zg=p}!TPd7(erBFs(yy-|pE^jf1`0+VDqs_3CeC!P9f^E0AylM*Vk~h54=QM=fc%FP
zJS_Rsax%hgo+|8;llLesui&tPBMKTTcwE6O1+x`Ap`Zz^q2L7tPbz4tpo@a83YsZs
zuAr5IXBBLAvYt}Fs}Y}8a6RF^u-09^(`})kr2+z$XC&aoAkQgit>DEmZU+TzILKMA
zc_Xi#g7u-Swvtb9a!0s5JwD(4Zb!JIWOh=}S;6-^-R};B57g1wy_<sW3VJK(qu{4f
zksb<qa%rK6w>Qkz=ed?rS)V=@>6Kw-5%Yo(_>sN}`cc~@-iGOU1^0XX73_;fIP8lG
zUQ#eh!Dt09D;P+7Dj23<5N&(E_lklc3I<bPiFeNS^n1Kl6>z`?W8BvzcunfhajxBx
zHB<qY`Asx({$Sp41#dC_TYDqu8U=4kF<RsBt`L_=Fz+Lmtz#67RWMP(Bn59Pct>^_
zFX_AV`@fNoLJ?j9IgajInYkpBUEWhLK?-bL;IR5W15Cj*2E2mF3Z^KSU)P(eVD~9~
zdVi1QLj{4eVKSeXA8~GkW-v+>e57F6jxcrD-PmYxB0zBKhERjG?i>Yk6@1Pe!Fc0P
z3YI8Xs$c<kLH#^Vw^+eK1=Uu1izFpTjt+fbd$Zekbm*`T-H$mkJ+5Gdf=?B!Qm|46
z2{rkI;J*;pPGvT24}B(MV6~*L+mXeiL-c9KxuG=*zErTCn_a<I3cgmbQNbo|nc<Od
z6nv|I#-}E0Wz-Fr9$|GI%`5rD8zlHd^H$ynZ&t8X!8Qe3sK$*jHEcUK^!YmPI|g>i
z==TbaEy?)w2PTBMp;9+O45yzI>|kst*stJc1-~#F>A{jw_T8yqmx5oZ!?_TvyQSs?
z*=s@_k}kns1@!)%v-8g0mU}?PB;)XRhU)`42POSYQc5x`579o4MczK^9i<vfJ1U|o
zjw?8!KvkisILTbfLAb3HoK|o~!Ji5)DL5<bd0xQ<1%EIxiY&(GIT_mw(YM-UwiU}o
zX5h1#tNZ_wk^DaemlZr!*W-+TE4ZTIRpd~U@nc+WVM<<=^7BS!bo)m^LP1i&zYNQ>
z-hbTeW851|2=gOH4}{sV|AtUXL0Ybnt|b3)CmK*esz}O^&{Y^J%BZ+QMNoyQ;uaMp
zR9I?ehYA&M><ZaxW@oWDDniA0@~BMQLdAd$A%<>A6{S=pmUy?R;Oa`NxK+)Vj+=e^
z=nw~a|4`_5HIqhI<rPC^RotoKeic<zlv7b&MFkc2sCeo9jJ5Al@lGQz{b}CaRBx@z
zT~JX)B^CFosH|od$c@8|#&Pab(PWAD?A#D{Hw$B<s)}k-hp>w3Dr%^3Rb;7|<Wo~c
zEeU7=R#|8PYD+-Q@UafDr{cxIq12ABuOg=6ITfu{WUF{UMO?*$Dr&2!qoP1Xp^85q
zh~}vHZ)ILR6}f6A0oIlJY&h;Q$C96?qP`SpASpTdDt@fs5%g~4F>e&9VBY)TuuB^@
zRPm6CW-6Micv!_F^br@Uq7f~#+j~sSWCManRrG70$KYwK;t>B!dP$_|&*3K0bZl*^
z;z<=9MtRFFdE8%2)RcTm#nURDQPE1xgh~q)EhXr5$e@GB;fn(MGR$b(XQhQ3%?Y(p
z(N@I^G>D3J^xX=#hl-vm+H-u_y`zdQD!SerN=0W0`tA*Lz+39-q}^0>mrlRQWJEo$
zqL+%kYUXvPx0(rcZreT#9+7o@q(>w01)`sd{wh9aoHX(Vs9^RRRKdH#bBv0YRlKU=
zH5GiJ8K`DbH#-heF<5e5p{irtArjLU#H6pQ7^-4~ijfRvc1KR7!6DLNH0+!V7%rKg
z?aO<UVWVQSiZLqYANMZq3h^~=lnMp|jYG~@iQks)Ad`j6aVo}h`;<W05_nI=1Qkae
z9CI*H#UvFU7?^C}eF8?2jt6v1Rxw4z>l%h?_)x`E6&F-oR54A(bQK#^Y*aBr#Y`0|
zReYl2BNek$EKspf#i=poY!&mUo{BlN!=-|`D)=kNH#+5$X74PV`E4|Bx6eBh7O7ZF
z`I0$HID+Bt4*FX=<-fbnU#j9`23Y;<Wpsgx6)NWL^I0ujHGb&V{8<eP-t_!WRjg96
zM#YyZK2x!pzEJT6gD0J{{*qrs_x0h~x0KEq`@Ww&#jhInzf$qFinS`frG4i570SiF
zQ8D{he{KJwg0R0%D)4R4Z?!VEUS)o>sp`i&3pc6Qtl~EnzpL1yVylW@>1!3+=sp$O
zxlO3sLw@H|{`d4<B=-kqo-)>gshR5_e&W{4@|$#y{i0%ril3zs&SzzR>}Gxzy;H?5
z75=i=o6BMYmdE<VbN8s&tKxu)gDN_$%Ut-dPj>lhW8r>gp{nsK&lZ$C;qw}Y7QRml
z98z&u#c361R2-p0ndfOt700+8H2>MGY|`T@PH<11_wRo@ujX?_q`V=aX@gu^n?s$Y
zhAPgfIIn{IW^P99@K%5KME|E~<`xT9|5R~F#a$Zi*6<g_R0K3A8ZN8&n`uhLb(-jr
z&=nO|8TncM@3s8Ot76Mn#W=-3D*k1@RgvU=9G3mS&js&J^8ZtDgPH2*0+u~b7Obw7
zol>#i^j|gow2FpX{RLAp^Qsy&4W%@c)}U)JG~A-0godC7Q$t9D&|qokQNpn`I9eva
z*tdSwc%_K{`EI|{WWV2me6F#^R3B8>&)A$LCz@SSLyqNNtM9OSs|L#4uAz(u#>s6O
zK0a@f-`Vo-&`?&xof`Tz$VfiuW|z}I%a_;CtZIB}R%XEAzF$GZJsKX+P+LPq4V5%x
zX$Wh$S3_kDwKTXI?$dC;hH4tB%jv3Us45la)IItX)ZZI>D(ctJP*cN$Wvo-0-*>0~
zdDQP5E&OM2jI;c@qksa`+|v-z5Y^yos4&g{s8;r@aE7)#;m4@I9CPzFUwzzZ`F_TR
zb+}Ru?KHI4kgK7thKDpftf8KUJPidJ3N_T%@J^QBKtsNUk%fM=OKhv|GjeJMa{q3S
zTcjaQtu!>`r1J_HlcUc2!*=<-b${mk!cD7U!z<)GqM?z7=QOmYBNoT{?XVuz@R){|
zs>U00(#0`zPyXW?p3u;QN}B%Dl0GSEQ%T8eCP8yapVGkaCbNaCwk(!;MuJvcW-*6i
zZRD!kO8QShX4QAkFC^`tp(AzB@Un(Z8amUD8v1MKqM@sXz8XgFvZ{-Mo{M8#ayJT_
zes_kG1jIchcwW+88hRJ=`$%wZSjPLjM`(b?y@nSx@P3u|s>W~gGHH#&F6v+8o$?22
z7^LA<4d=%c4%QHR*ndUC5UTOMU)}Q~S=kx>ZeMq^U(@i)WWW4we^J%=8ybdb_*}ym
za#6!IjMFe)!w5P^a^BQ1iu!AKOT&LgX34)E^T%iyOIK=mmovKl+Ztvc^Lf3=?tOmk
zs59@LT;^5YMN{AP-_tNb!$)$ci5ezpn5JR6hW9mmz-+H!D!q9ulei{p7{jX}7|-X;
z1z+Tk9~_(gLE+2$d`?$sYix#wnT+{CR=)3dub+K*WImg?mRX!y!yFBBX%;yP1*jy;
zJPq?1y0Pp7XZ%5yzfi*>4U07_(Xd)dE|qkpq#sMlUdtp{u3<$n=i12pPbB`dn6pZP
z&m=ARU}n1J{R-A-_)^3Fn5;B>rQvH0M>QPN@QsGG8n$crQNy<y)@j(HVXFr2ru7;&
zYS^S<g9hF<^Y;A0xdZYyYgkj58FTzDi?_`^xwMd$+@|3N4ci{{ztix&hRq`jC~)%m
z!U1mHE}1cY(y&9rZVuiwf6e%UpEdlVVJDNo1@lU&oLw5q4bT3Sj`%wE`0g05rdd}t
zPP|70t9v!<({M-cf`zM!NcU?vAgja&HT)*=?~)#p^l)+O5jwP20mY7MIHBPjV^70L
z4W~4m)$oUgW&Gx+RGZ+8G*?T{-%~Z->bU>tB>%uRfAJ~*f`*G4{?u?u!-cBxO$~CN
z3Hywk)rS9<?9#cG&uz~9@VAC5OvO5&<En;h8qyj9I<9N@N5j92Pboj)l>gQVf8>zZ
z4Gjq<bIY$0^A`+?B{ihDxlZ^s2gepo^9g7}MTe@x&=J(3>6ygdVN9&u1b=MI*LAQX
zIithAsl(AxDciSn*g9T`WixZWH_azCs>MS()=bPu-lC&~j><aj(@|1KDIK@!xJ}Qz
z^q1DLrDisR)08>?b{%DO+$m?g5%urTQMMRYsFt~iCii+#IUTo*u*yq5Id@5Lx1<$x
z+#^9nNh?W8nR|6`YY^P8ql%8O4o^o_9o2Ny)KQC%Th-##xh@@#REsaq%A3?F{}$IL
zb#-L1byC6G)#4qh#jkJ7e@TM5)#4Eyz7Dfw4sn#Dh5a?v;xReY^SOTK&av7$>gf1G
z$2lE2I&yVP((%5Ix;pCV=&YlQjyxUpbu`iOq>ctU@^w6@qoIxh9fdlIbi`@HLf^7|
zhRVK<d3zVd2wq<ldueF)LpmPT@u-f+^vsjPiaoKOt74DnXr$xPr!jL`Y)7^DPlf){
z5>B_>vBo+c*YSjo1wnt#u<T{Ee1fJrn(1h*qm7Q{I-b(;w2l_kc2(?&RWbHDQa`&T
zJr(v_6<hKdI_P-Dr_btmPBPW?nYpHS%4^HP8;3gT=%k~aj`lh}`#$ps*P*!Y%1G|R
z$9#^~cUg=NS6y{<(=k-X8#=n{=%HhXj#qV@Zs7FP@v@GAI-aKy4&?XJ(OX9!{r@)O
z&CS(UR{KfXU&jCmUXYYq??nk-l9cj88)RNAUi#1<q+>7xRR=dUIXAa9pR!)lQQpmd
zU8?$KR(9`S{XzR;!*mSS@ve?>I!5RisbiFm(Klu2DL0!P-;z~68*nuD@z|XA{V_Vm
z(l68eojVKP*71(q7w3Z+0n+hO{yiNNblm;0Uq0${7o3^mPt-ANoB!U2e#gh15BTt}
z;~O1obxhImp^l|GKGrc+$21*tb<EQ-UB?U^Gj)8VgAdF-PWua8f74!nmX5E6Wv`zX
zo1^2+y8dh$xj}B$aerQi%srFyGoj@#(y^G%qNmnHnN=1_l?eE(zC_Ptr)BlCH&+W$
zewmKtIzG|ysg4!g!mDB{x$t-{pY4mzMVV%qgr7d8uF~-Z1C?X`Rp&Dut95*?qhlnq
z<ZplVk5!9*Dd(j=<b0*$YaQ!P`OgIXM720y9KY4EPRA}Czml(G19O6otvWX9nf$y-
z$7U(N$MUx&>u{s-wU5s{+jM-VW4n$Y^~`hQ1=Hti`uB1zKS;_{=7qDzNBp03?9lPE
zj$d@_B<Pa;&6vWglYBn+26p?bQmfrM_UQOs#~~eib?npmq+Rfvj{RKquNk#p_`pA)
z;~+QqG{1$HJ^e(6lCN#`59>Ih;}k<z$5FZ_>eH3Sr4Gk*++IDCxK8LespFx^KA-Jb
zrg+)RpJ#M5j%5ZptAmB0|D)0KIxcW)8+gRPMIC=KT^PtSaEU7EsA!;)f&b~a%rt1A
zgn_?xT+yKzPz_wwaZSe!9SP=t9slU~SI2+!h3P*s!EgL^<~5EFjg2-I@)?pTE~z7>
zBdsIAv!|JJcy8uZm8U$Kn%Tb1fFeGDXa;lxwgJb0VIXM0G+-IHcUU&>ZM&~aewEg>
zYgCVaROmlAKlbl#_qv`FG9V1V07uwb*>6xi^U~I=dYq@rk_Ji{xWhnM1EmezY9QlH
z-REQ2Z3b>PP{zP3Q!{5DKG@gFFR0d~aLjRk?6B-R4U{)<mw|Eyj#SL0uiH=Y?>12F
ztX09lJx0cQJjT+k1f}~F>|b4YuYt-2A_k%c?lW+|fm#M!162%EHPE3bR)gIQv@2s(
zm)#lFRTjs%n>a#E14S+KTSjt;vuN0`?-|%NKR;~XN5k*t`W2SN*4TclovLpjW}vPd
zA=^Oi<DuFH>KK`aiU%ZfmFMS3kSi&(H^(fHdx5)v%V)K|Y$`I)z`#p?)ybEXpuj+(
z0iH~$6{~R??TpXzpn--49y0Jr<Jih{j@Vh)cwMxSfkzGWFwoP$V+I-<XiXOwc-+7f
z2A(qTw1FlDo;1LRhvp2h2|lv{53@}T@L=0a(y1$A|D5-kLs}SUNv#Y#XW*Gk$YqRE
z#>qUKv@$??ZbIe^qBuTX&liifw4{NK209tY$#>e*!UmWkI23m=$K*0Q8|Y%7n}P0f
zy<MdMTd9NFz#+Z);==U%yn$W@Mi>}rptpfO1_l`zY@jdW-1G++c!6dyFvs@$GiDs0
z1*>A*dM_Gy*+BOC*h_MXF4g1H>iRDY%N|IR4$I~f)GG$2G;xL)cvTAAw#|Rd!0QJ1
zEc6C<oSQw=02B4(G8Qp)9%f)TXRjWAr+R!|_4rmE{0+Qi;2i_+8W<%98Es&U1h3W1
z9&2E)o6XU9{Qs(Y{A~mKtH&8X;|z?KG7}9vAN8xt2lDp}oLv{2ASvgX#BC^L8fInF
zh7W1}6ayb}@0<9`#8d;**f)q?K}<I=gZuG_d&9s?2AhFR1~wa*Wni{}6$Vxsh}Vq1
z<9Krn%r!92z?yPCt4j>bmzdQB5-c>ZNP@-1{JwR)rCgxnv3zV`SutKN0f+s>z^4Y1
zJKc>2R!KnorGd|i@oEE~OZ-JKXN?5x`;~#O>BqX>H&VlI4XmXf2V~|NSvq%}f%THl
zg;02dr15d?!s(F~_lqqCwi-BQ@LYhao%6RD_{G3Z1K%0=-oOtAwj0=CV907O@U`16
z6&|U3KQejtD*B00F)2duvw`}_Fq@hi-Yx@gPjmOsU(7-h@0OIz@!z`p=r{w1xWKH)
zrH}Fs82HV=?*<NXnRBf>tN7$EnrpF%KfWM6%)Dga<GB`pZE;lgB4E=A16il*onufL
zIBDRNfzt-gFld8C&mSycIeez5pjqUsfj<loupFBZxxi2~aNWQ^2L5CK7`Wv~{uK^8
zD)yIw%S`*+k_M(fXe)mdkSP)c;Y7ji8wIVmMy?vT#*}z2_SC4@<r@W$zY$s9zUW^j
zfmQww2fSUp>d*i=_Ak){onjzmAk9n|MD-v7K`24o8pLfus6l8!I6;Jh(1X~zIT8%Q
z3?ev6HG-JX(>pxX`>&m11yQ+Y#17)yMCO7`Vgmk$I)W$}M5!Qdq44u6#YzO>zZRQy
zZ*=@?8JYD})Y3uh497Tf^H;oZ!n-|4v!GlM<%75*nE51^<<20=QlC*OF@=dq?+W7X
zASwn?DToT3=(ET@K|Hm=u36*}pPU+L^o4(K5FOr(oL=Hq4WjoOUgaR}D<1RyAgV|l
zmBUgDi@X{^)C{6I#|ffV5N;5Sf_RjFf*3?Nh=+oBSWdC!ph^WisYWD-C>JG%iUpA$
zL_rYQK|Byd?I7v|!T(UC+BwDZ)(s-J7$5JSxq!5utTuQwgX;&;pt$wc(`sQcF5)aw
zPs;GW>K`oTH<X~>Nbv|=cGP3*rBf=GKkT6USP+eacp``<)Qay-zw1681f8|`4UeXH
zGKi+KZ!>8bnuz7@l9>^@+!=W~h!#O~3!-}vEu|Q{JR?26p^VZhh-ZU%u2_eT60{DY
zO);l!5bcU_dkH#7YL5=Ynt7dq=o|zAOBV^c2GLAbdj!#HrpwY(YQ=ydj_gx=2hoRK
zHgS)MzCrX0VrdW`2hl%>0YMB2;?*Et2;$F6-gz}TFo+j}d^a`vlB5JL2l3hkmw;tZ
z5Q8QEmEzXh_q(qJ@p=&N1~D#(p+USMo8As$SP;X57!}0mAVvf+GKe>Wc#FBWL8NP`
ztlZ1tH%_=Mm$+MYMMIbBRasj&Ms^%4DLItkj5p~!k{R6ZjSs@8m_0p+89}^9lLj$S
zHcgV0-`rrA_a**7QdTDiF{K!P7{pYGrxkN*bQCj#_$Y|QLGT;Jl%FM=eu;Ur>4<rG
z)jD`{f|x6r^NM@T5Ar0KvC_g~&LRnpFAgt}px1jDV=fC~c@SrUI2*)@AXWzPT@c>~
z@ktP$(x*YJ31U?cp9S$bx4G*tyKb+h#eTH-T*1>Q?*Xn{)>#${#h=UnGKdX95PT&m
z!Ph~26U16s{Wgg8#r$<a)EE+`K!>sp>BeIICJ8o6x<%5hl5Ugqx8>FkL2M7=P!NZM
z_%Vo|g7`UzUxHZTC_AJ~QTK3m#9!k0JA>F2#6HO!^l|~ip5@mdc1sQ?-6O$XNw<tM
z_e*dfh=UURCh5d+CMACl!ro~U90}rR5T_~gr+X}j<MgZ);P@wk;2<Z9Ij3ZmT_`Xv
z7J7Jt`$rJxXh0JsOg?+yLJ-LyQbAl~R0nY_i0i@3Tf~>-y#JH<FG-KJFQTn3)AiD5
zS0p9pss#V*=KaIiuBGxpA`!&D%m6{$U@FsmmQNncP>w(*K{{h7UorW7g$c{8fQg2~
zv&o^Jnu(wZ(}ZqjJZPBzmzf_OZ(5Q=X2^tH%y-PpdT%aYm_V@%4OP-aDHFGupf65b
z&M$4^R@q7;{4&nu+bQR($8R@L#>5>a%9^;_1e-Yiol=Y!&Tm;0F30iLgv(2Mmx&n#
zI;-pToG<(2S2R({#MdUiF>$Yn$|eSwc)`SdChj-!w22lbs+g#1qP~d+CaRgJZo)GW
zF>(A)zlMpLCTf{@{z87Ea`~=_v%P9($?BmC`LnhZDmCI^6Xk2f38E%8&&sc3BFBU;
zF{?3?Z?I?h4@g>D(ht3Sa&n7h7S0aWmAIaXaZ3vGiuv`8`uQdbOgzL@n<%7}Ogw1f
z&Q}X=3@M0H;jM*K>}aKWb!x=PX(%-zc*H~_6HiJ#A2o6PLjGeW8k=ZZBTn4AM*MLO
z@^;ZXHR5MG7Cd313D?!J0J958o0@25qT<^8I$H{xo8ZV#$%zOqZ7FPN;u#ZNO>{HS
z%EYrK&ywh5;yDwoP265H-oZp06ANp^S=yUuYhqK4_|Y2ib|x;}lS@o~vPPV0(+H%U
zO>~iZ5_4VIHRG*17IZh!!$dC=y-iHHtzdb_f}WJ2ziMW>Q<B!}!{kqI){OTvv8Q@H
zGVi*O-(iN;--Na{pB(mj(Zow8rkR*-;$;(j8)S%yS4|8wF^G@Q?^=URbl*@&K>CV_
z_Du_TfO^fu>x_Am$A4c}>kl>Yrip0N0^&DJ3}e`<^@p1nVd9;dapI8@@I-bKzhz>S
ziP5sl7!z-^)x?kQT4QOkl`)R<F1>7GyovWrkV($}Pj6NynwVtr44ygAO_nk|jecNa
z`R;rUGDUJI`5{jM#h8Q4Ffr4_$0nAU_{hX86AMiI@035AM%YwH`MD<MNPM$O&O8(I
z<p>A6W<T+B!9o*@q)ir^SR!X<cbbK>FXg)G)f+r7w%o)D6Q7z`Wn!fXWoh9jCfIjo
z&G^khR@RJvW@5F8uS^`M8RsmYGZmQF-zkqxG};<ziZ3PojvikbqZnsdYvNlIr%aqS
zv5x*?*msE?FtLH|IOXq@)s2iO>B`OA$eRBXcfI6Oa;pT}B>hg(?@jzr+`64!D8~FC
zhJAO)5q_5R7fJc?*)9{mn&2BFyBSwfo;Z7-zgOaYlJ1w3XWpl7$vG%7Xa9`>Q;ZLp
zI9!a6NO07|F$s=KdP35ZlCm#9SsVJ4e}*|~ckB-n#Amr}%lhA}b1#;Qo#U&32?CZ2
zH-V&on&^;Yllearml@$U2HN=B#1+Pgg%uXAnz&}-aSKmaIMFS9ovF#fq|UK_O#Ex&
zKNB~YS1pvakT8*C#<t*CNSR18?OV_+1S}{PzUoxarJEIer0AQk^3T_dx4gAbxA>6(
zf)-2*IYaz!D(0Q3n#U%~!aK){Cf-+&bE6)?jmL6A7KDXT7D`*VvL*}*w^%4)@noHw
z=M{c;U%`dja!OiYcb2@n<F{J4&BE;#%2?Pk!sj5QIa#qo_vKOY*u8n=+-aelg(?=R
zTHrl?<t^N0;ckg}i(UMSyb2boUybrozI!Afu4ti>#P>>CS<?F?y<bwwtW>;?)g#qd
zm7I}BV`SE_P}2hM$5W0)Ye~LqAxna=g_r~s^CXB!8kN+yz?%cvlwB<IfCRNI)G6j@
zwc@!J>T-Mwc@_#S6j`Wmp@D@0E@xjf-@=<Bhaj*oN<hjV&^@#_KW^bc3ymy1YN4UU
z!+!mTEj(gjyq@)tg$lLeTb?c2dDiD|#NMuyd-U<5$LNA~K1*W@eyIWi{!EMmHnH%e
zg;y*LvCz~)_TWf=3j-`Pv(VhaQx=}K@Qj7!pSdl_Z=L_vm~7)hfS{#?x#fL=Ru+!#
zi99Rma~4`#Xk($Rg>DwQTWDuxo((!lO3+?{4i-8Vb5_h$I!oN8nA25)Hpk5#w7}N<
z-m==Wxb=AndRf5n%r8S(`bbV+3;l{^e*aT_!NQ9c#!k-~WMTI7tU5EYUZUA&WZgF_
z>tzcAEfCbL6>nZEzOEp5FoUyttn^QXuUdGGf%kacWQ$)cv|hI`%))RBLoM*6%<_f=
zXL_o<8fAoqw=9gZFp@r^s()tgOZjkkjC8bxF_N>ebQXVpHP*u0bnZd-ksc9N-?8wn
zg>jPeo}}X?Rlm=Sz%s$YM9G;X>HCtB{{dH>RX{Ms!iN^7T9`&JSeR#Fx`i1QW?J}&
zj#!^Z9Bi7;U$yWr%t&WZ)f?_?NeSjy;H?M*^Xa2n@dXwZGL|;xk+aCcVhhW-@LKUD
zQvS-~qK_>swea)BD1T%`8U8UDDSs<Oy3)cY7Oq?P$HJ!;R$2JX!tWM7v#{F2uNFoe
zsQx+qVqvX?Z!N5`FlVp-m4&bAms;^J8SQ_0<@freb$1kgBdY|guCuV-!gdQkvg6a<
z24({bTP<v4hPhOSWs?M(B|XtA#zL`e7QUn3%jA|C;jL>P`Q8HQ5422`OqJy)F2uqw
zR5&+(2m4ki__|hnrv$&&itl1F9F|We3k7y_3v=FAB6}_Dv#_6|-IMwA>kE?#4p=zI
z%;v_E+x<Ul#rYrEWFE3`*vdRMpR;g;j^L`x#m-tdX5sjE(K8mhejlw@A$FYE*vh<n
zd{WX=lCpZ*LNzx|5WFka<%j4Wl7GE@(Oq}N&Re*^<UB5N(ZXLAKj6b7PUKGp=h4U|
z3nkChWA!qfzR$hFv~S^WiAygp{8IJEyk;Tajq?ltq!j+w!hcLMHu7!UVDh(6!$wUT
zNhW_Tvr448ji+~eY3>Ufx7rBUu#b3(WU4ka8@dg{M##qW-d<2r0!IQ<Qj1-R`LB#N
z*}7`9DQv*TEyes&HcCibvY2yIl6PHl_S<Y!Ddyj9ql}F^Y?QTer)1tIX*nAei)G5&
zxXZ@fHY!NYJ;nU7a`vIKEb356GVhhNvW=Tf<liqj)UaxCuWB~ldL)}o`+xRnkXkle
z8{6iEb8PVMdb4cQv9ar;Joool*arWH*Rv6kAS$UZX-v{=Ngt4ulC^D2zN3hsVXs2|
zp;fMpx;D<I!u4$A+35HRf9M@<QQ*~=(`~sgf{|W<jY1pkY_zvgWFu~)v5m)VJZPh#
zjYn*>apMo!;N`b04@*#Qq;<12vhgUj9ch($tl%*lWDXyh|4+Q&2^&ppw6yVzjVEn1
zweb}F%P@E=Qv3JtC%=W8+4$+VaC2Jq_wd=@!h_s+3mcQ%_)0fU0fJUGp0#n-jkmG!
z9K}urTH9bpN^W=KH$ht|pk>7~f1bOfpo5K`HlF7)ZFI8H*~X%Nd0lOEv(d%IJz4QO
zS#ff@OMVZ@`Mz`>ITicm5%jXr+r|JJFWA_0kJraWKO0xedsC}K`r4@ROJvP{w?9LA
zqPt^AHu3a1?u#~lpKlVpBtibDNb@@)gKP}8@r#X}HeRtY#KtTevu(U;<24(jXzh*R
z*QshS(l$Fb!p2Z8uvFv?8^df2w-IZS?-s_IWyQ0Xcs~^8jkIxMVbPlm7&>B@&n_&5
zn~Fx;7{eH|@wSaxKjlre@s5pm>Aqq9`!;Ti#Kzf}NF(fa$II$_l1`A6t>+uY*ffc1
z{~peLq2L3CjqE$c#)tG&*=&w8(5lC#3Rm4}HoghvOt&#Zf}THmGbLEj-~Wiugc~9R
zb2yY5S#D#6jk)wfR(zhM1oLeyu(6P4X8_#gEtUNGYGkp^?;-Q%e3WezCHPqKmlgN=
z;EcD@M#)R=w>H+%^)^1`0vGzLY^<^IrH#*Ib+wJpC0JZJ!i(R(;7<9-BcQFm;&$#I
zS<9{6FY+}NwlQM4&(dm%Pd=IJZEUcynY*tr_QaIz(_e>&_VqT>`!;_xl*Q6-oVUfs
zR))mByltFipHJ|e1m8>ggQVLf{ZZ1NB;6tD&ytQf7iGs?Hh$$UaPYK)-8S~v2s$tw
z?6tAa#zh-{G9Vw!*>B^hjbk<r*f_{+K&#r=zdwA~#$P!(Yxjp)4%wKHn{#7w_7U0i
zW>%a6#~CL!PTM$R<D|{6f@GCC5I$vNUXvKRRKHU2UyE#xf7Zr1#(9%ijS<;@$kqqW
zhtJ!%z$G6DQ+VbBIpkd8bT<C6@vn{l*|^N?y~n#sv%eqyTk3hm=Eov&Ru9(AnVA*8
z#{GUi%yM0VMn4t&C&dyrIQtEWIXn4DsdGwB$LFgw^S_gMic=(2CDkO=C1sQ0WGq8q
zIj|knc2LKG;~?bVZU+?{2nTTZ!5r>zaEpTy4oW+?)j>%I_y6l{{UKb+!R&Hg_r)$T
zK6KaB_iv-+|8sA5@aaQdfthunPL$QM4!`)9Q_jKgx4b(YJX#{FN}+fEr*3)4A@i=A
zP5UDEIH>5ra}aU(i_u6W2Q?kka&WJM$_`pzbkD4I-z<#WM+F=Z{QkOI#o^E5K)_PX
zLG@x>!@=RXVKS?BtLHihb9JNLEDCq4$Fk^{8?Ng8$J+=U_zoU$GRGX2n1gJITW<1J
zMZ7(AyfTX;<U8vNavbD3Xhi)Tj5-jm>tN7D_dy5s9OOBu@1TK$A_s8?`3}DPIO~tS
z?%*$dPFmogP;$r|aLDU1H_YxVG+jdn4>|m~tM@Q{Q9Ea0nF!7Gh_oRGf6PH+2hHR}
z=c;*+JD@-l2TwSda?$PitVbi0^Q42OvWa-%VwY++cd)jrcP1Tf;h?31c@E|~c*a31
z2Ynp$b?~f%=Nxo)(8b|HU8J>x4i2bo8wYJ2v}5bl@RQ$0+dEkKiR-kAh(gbQIP&P+
za7PE7sK6thebFWD>Yy9H{eCpu%fWjoue*ci9W?yV?ZN5(b6I*yko$={V70q<ZMe6C
zfBto~CXtd=oqi7bJNUrCWCsHryg;iu813Li2LnHGUvuy}E#u&28Lk5vf&DU(HmEpy
z2TSmZgCP>UTFme9tWx=+JCp%jD`U({4@TZ_Fw6nLa7hV9NHCHiRLptHL7Sl&;kmE7
zV;qci@HUNhKHMObb@x#B9mey_$h!_sPRWGL%nFfl4#qnmcu&#^l1`L#lB8^UUxGRp
zB2yfE=wOb6QhUQw9qf78oyCpgV48#J4rWNsOa~uHz<n{IVa}dgeTp&s&L8qxjCQBY
zjEsFEvg4F8myxeTXv_ulxWnK2VT*%B4i+=O9DL>QITlMDEO)R%hTO*t%YVJ=T|LI$
zG6%uWT}ItX2cJ0joEGD{9B|2W*(wHADUbLw2fuw7SuH8StCgc`9E^C~9eF;?sN=@x
z9{k$DHx4#B_&4gUWkML}t#h#6!M6_n9PP1iq797OGJcEM;Xda*1_1FUDNlXgEAX~D
z*yi9@CT(`F8Trn^4-U3FSg_RlUJkgXbo56DKRMVXcQn0opsTmT!OsqUp>8ws7km~@
z{ud+IDeXqUOv0SAhueo;92|16&%u5N2j$+U=8ui^80`lfsDbEHuJ;>v`pX`}^87lF
z+2*i=BMzoUy@i{@6s!EXOMKkH3A#yOhQLV~V>d#Xyn4#PY33*gXC15x;j<9_aBz<M
zD1?q7oOf`6Su2FfAzY+Q9Nch_kfy%m;BUF3Y3jcu=YNu3=2qR5u|GHd6$e)xTyt=p
zdv=HS+AA*k1pm;0l0*ET1lR70CYeLBypkc53L)hn?H~|>62hoo!*&P^p5Gfq)DW}~
zhAzwJ?yLB)r-xvKaK{aoB`ARzf+YbBNTwsZha?q}ax{c+OEE4H;#=HVWR?!$))2~t
zP(Fm)LbyGIG8`v_$DZ{j?~2^M*uB~|!c0=(tXDRa+50SaO0YA_yDNmYh2A|OR19Il
zVejq`Dugh6ZkVO4@2z{SXy4IDqvnxHq0GxiiMylsg>ZiexgpdIp-Ko<L-0a~gfe-!
zS_rj5a6_mbLXA)+Pj>C<)eND{?r`46p3^*%C7Iz6Hf;`5E86pyut^*ZWnQqjsbeAd
zlppFc;g=s0AtyTo(g#AQEkPYgb0lSkVN<;j@<M1F!s8*-51~N_kA%=DgnSw&goYtJ
z6hdJLf5tpU@~Kz6B8gdzhwxxA=1|}D^0?U_rc>_s<|4w3!Rn!z9y8dZv}6eD{|j^X
zF|j`pLX!}hhwxMgPlmvJ*i`EO_IWRLB-~8m8zrOLSG!M#(D`+@WeCqm&_dF_z0|IE
zc&$QcAHuM5-m@XBEg7Zto(rM1G-De{+e+F_Qnpen>cdy<P8=kJ@gckyLYEM_hVW_#
zuZ7S}21B0^`ckD3dW6vP_Gr%#deLzqytUYUo+jGk{y(O^14@eG`5%vXH~ZP0*_qi1
zi->?EncJD&Lp)&N4p0yTL<K<*6+r~aS%M%)R1i^+j3_}eNKkT+j7UbZBn1J90+Roq
zY5w<n-}m~}`*d}6cXd^DP23%y$z#^d7~QH~@;XZBB%v1#HO}cQp^JoW61q#^v4+{N
z&Mc=Zd(Cp_${y52n7t=ua=GnpcvT<9I1U4wS%TerOMb5AdiyfSB@E)E5<ZcDl5T%S
zlo)gVFYdhV?x#W%9=W(L21?k_*9pYjArgj482&hDt9ipDd@lJZVtIPC&lr<K9Ue>>
z&l~5sBe=EKx`ER1FC={bPmG6#Q4+qAFq@Vc=X@<;wB#Qgzoo*SJ4V8I2@@oI!^k`x
z8!KU)gncI+C*9>~Nt-H}^Dny-B}|eqS!l@P>=dyhb|(`&mEzXm0e7l|?>Lu)X_B92
zXK|&%6g1IH2{Qzyg&B=EKk$BFP*w8?ZWZ^>TjmI@<_b#n=1G_@@PZu9LJ5lm{!vh7
zLW(Vwu#ABu;ddrFiU018+ba^oS0t88nDv>niZLT$h2)?3trYY?dNtxT64pxCB4H~H
zKG<DHd*;sEBw;;`EP;oNU$`%7_<=;ck!$%g4*|E~X30O?^PsRzZ1Z0w>=a<TpgSbg
z=$SZBApJKXwp+p;3A-fF@;C1~%;C&Jdqw!|lfZajm1RHk-Wd0Q;2$629FlNY!W9Wu
zB^;4(l=?_GPk9N)C7hOUM#2d$s$zV>3FoAQKSbX6QcZUk#ZJ*Obk+f9+XnaS#aw44
zWG;375^MQW0_B-rm_T@>;7<8l!X?IV{`dv4<cqZ7KTf9OpD_F*;bf)6Wf2MV(UG_x
zf!CM`x%D2zu1mNf;a^6`dj3Eaw<X*Zm@!7q-SO@>)jTE;o($ZPaF;qSak`(3&AaLF
z{N%ob2h98u9!aPczzYH73gC$ViUd$JfRq4o2M`KC4)_-@c?3-pG;aX;1Ry_u00jh2
z6_nR3WDdKQTM8f$0Ix3)z^*G*gMt!Vy;4;P_!mKu01P1z4nPfnS3@__t7!p{>Oz>n
z6nqZ&WB``HwxCf#*`;8>zjPufl%vm60u&bX>41N+!|ufb{smfz07?e%jF`Q+5a1PD
zsGw9zv{not89?a(o(-T(08Rj9`I)r<(gTPE-~|vDz!e&DA&6DuS`s<y%3!ZpHS$?%
z#;TPI;Q0W`2T&mZuAP$PX9~b|J?_P2vI{TnDg{s_fT{sh4uF??TuxR1*+MJ5VOeU<
zB~VpjUL?L4K=lCn1n_YHH3E1kfVTo@N=pXNY>V@H04uAywE}oqRBH=bFMv7%P@rxA
zujJr-HC%FD4d6AwdCad*yw+_X=o^Bv+E9Q-0lX<dV?mqbv~tF`19&HZPF&!!*t-F&
zXkW1vHN5OJ3*bEgng`HQ@LP!L`+`n5mxnSeABd)WD`Tw#_%MJr46v0kmJR~6rI!V0
zFM4qbHgy!3eTh2<&?SJbLZ(Lm9|h1&XhO;E0z?No#61P>9YC)f=C~eZ-#V9vO??CC
z7w}Kd28oEGsXw8iF2?%j#MOWRKFz@c1z>0m7F~u2%DzJb7$)#%0emjN@BqdLFhbBT
z1f}H20KTMu1NcgCMhp6NPV3f}%2K9gn*yZY2<F%T#^tn*4`718eg4Wtfyn_(3E=4<
ziUjd(08<%DKvm$o0KO044tELzK7i=~Y!6^Z05bxZ8Ne!TjR1ZKU{(Ng)O6;A*#rSB
z4PaToKm5%NV4(o>1SMyF01I;P3msi@76tI5;4Bt&YDag80L+{}acL)G%L91wWQ^r!
z#&(wi4UT&&0^nIaIV%I$($#%5I<|MHyC#53mz-aO@LECF1+bojuX5OBLjbd<#RxX$
z%)Tjr&CFLF-7NuZ6@YWGY@^wy`QX<8b_V=w?Hd8yKIZ(!O&Y-N0P4OFmwF}k1dzA5
zcO-zL0qhN6UjX|9czs3Uke~+wI4D5AW_f=Xp!TpNTUibVP^f(Yf@1+3r_MB2x$F}G
z{2{<!f}RZEi~wvp6~M{!8K)^ZxGJk>1Nc)kJ=4Cx2eE48oD<da3?~6D1aL8c$4%d@
z%VI~${1d=s0j>yoUC^rmToZr-yUS&ha?JOZ#QqK7CU@MD*eyW`Zu?(i_c?c)rI6n9
zKgj}~;Lw%~o(KLPqaqjZpmmjp+(C=8c(mf*|M33?cngPT5xM;zmf=w4tPX>+NYe*p
z@zs7(R{4%6Iefu~&#4Glc)!17zbXVJs>b^*i2(=#CCCIqfDG6Gui$tvdTU-x0m6U^
z|3(2%@C-l`m{nbX2>i=rR#{BIVzq<ID^1cUP!O2Z(tQ#r0u%)biRx2=l3y5j8n{*5
zBPJ~d|LTmTIPgpke%y4RMoKB5G*AKl3B$8M86X2F3pl{8Mb6IZuE!+<To0?RptoPh
z!^;XD_v8L7ZbDFkL5BMrm$}Hl#qm7AQ>k)5-yQDcbeC7+nLv43zI1%fW$)~NZbkU#
zen~*T9Al{@KxIL*fNbF7eh$wN*i;R80a!+t0WSj8fx*BKDh#{?bO1U6HR&&)A<zg=
zRQF}7ao4E_)D~58>Hu{GekF&K`;q%9@EY(s_}l#S2EgwfT!Q*J;EfzW{@c5~Hv!TX
zKx3c@@D|V%cn|(n|J%YW?*MNsa(MkqL$SOIM3*O;i6-8^VpDT!*gcy~?*lEl{Jzcy
zz=r}5w*p${U|vtP0osacJD`0IpJ(;&?8{Bs3Fr*;0(!$gOQd357)~c*U4d>ucldYh
zc(&XV=pitx9|1fuBUo}OM%VNKcyHtrpg&D5meyC$euC2Y9CHBt+aSCc<P|Hyr=mJg
z&_PsSsek@C6c`4K1;%ke;B)x*(7pzS3s;T+z7U+xa(g3b=eWx<iW@=T`VZY9CCh)6
z!{=2w?-Y#&#=yVCVEKj?`^8Po<&Fm?01JTlDQ6<%oRP4@{ehbTn8N35|2WfuZ-J=-
zf6x3cz`#E|HnH$3Z<^qY?d6a;L*SXfG$BB1%n}1~%-O&kU@kB(hcjOQo^rF5mkhiX
zTL>(o;~KmEb(sK*1ziFx6@Zr&Z2B2k4qOB-0V}vhMgp)KSVe=tzxv)z-{tbw0Gj|_
z?5`D7a@Gm3o<<OW7eT)Wuu)K&eY22fmn{Np6?B`RJiX_wryT(4uY&FbeiPtAb(hRN
zz+S#k0G#3foUMxO1NH+4=)OaaTGK1n)j0?pVN^5tnb`nx4g)L%EZvidW599XByb8i
zA^3kV<dO-N$1>|L#)#QUKu)2`iL(Ij&OKP-{0aQURnP)*{BH(cFQ<@{ex4ajN@p})
z;2*ubn?iZ+mw$lEe0?&A0zq5>u2S0|Qi9l<>8G`8z;)mT@Go#1_z$?rxUJ%rQQcec
z?+ItTkmqrg?!E&&1PJa5N^no)rTfhMg2Nm|=A)d}TtP5k$Qi81rAi5Aq1-|LR$iW<
zAM<$y%_k^t&@n-!1`!M*6a=q8(}LjbM=6Lv(7!>)V*slJ>+d*n5K0hM(06(`2sMaE
z5KOQv3{frUhcSyDM83@)FZPWfOu=MoC7)up=*#X=0SXHGWDtb}cq*s0umIe)MT007
zM86<D3F4U`iU<9p-Wyb`>=Pw|cs7VKL6j8CC5;lLg2>;(EgeMVsj<%gWjR5l2k~MM
z)q{uy;RaDLh-45S?T>juTpQ#)A4EKegy3WZ@tk0iUsixZbG>q+iJZENVwpLu<%6gY
z1e?y@$lCCwTZw86_E@qxZw}51LK+buvq}(EgIL)qe>Ktcf}pH&!0ajBD<63^f~Xxt
zogiKcg4O3cxHW^Q6$HV{g7fthpZVZ5w{8%x2SM<Pp!EcORnXT2Wz)ry@pzE$x%pxZ
zg6RFR6X+Uf7(}BW-VCBKwd$4V7DSUE-lF%(JQ-^m#M?ptG_P$C?*zd!y7vVocsGb<
z0>39H&lsBv&?1Nt-}vW#Ek*T%AX){{T3|9i6vGm<5ga}ZA#N8$dofFgAUaWvVg5N}
zN5SElVTERSd9K(c2;MX78bsDImw+dh-Glx~U=Kk*3Zka~y#)PO(B6Xf3F5CB(&J|<
zeS<hCaQ`3%1hGAc9gO@S1_rT$jtF8<5QBN99mG`j4Ps~zV}lq+l`18M1u-h<AJabz
z;`1PebD2SW83gYjeG$ZeXWWrN%pK#g%AMZmybtd6bx6Mog7<d54q|i=V+8&t2;Q|O
zlXvPK13t1DAH+lv*vxwqxUIT7ySuxS1ZQ$i<WCVGUrFgZYFogYAH;$nz7Jwr5YrhI
zLmiem0?Y_vW)MFJJS&LV0`M*$1+t&;9!t&@%z2z^x67QfkZbSZ@!8z6AQlPC>W=~}
z7IaAvOLO?ul8K+Vis$1jKMSy2Q0lxYh}G1S_j5!x<LxOvR$CLqS~1-^L8-v{AT|j6
zi=az-XOYQgbDQXeD&FQGwgj;?h;2dt22Qnp4)5$S9UZQo@+-4S5Ldb5g7__nT|u1T
zc4Kx5Vh@FbI4<0@m+PXtgV-1JZ@%ppbmNIU#M>XbzXx%I0r1d0#Pm`*L2x(-`ip?&
zXwXmH1Sf+22_C2BUAR94X7!{1r-C>w023*h%-es`;HR9w#j5`j^jr|<1)zmvvz!Y-
zTx8f+N?Z!!pCI_0k@wc}{ud*-EUH%o<t?4-LEH!;Ed(iqe;N7QvrO9bH9V&MpA`32
z5Vsk1Om2#MhspLt?4H1P1ui|%y&nW=kyWvJjgyap$Q44qJ8s?(CRa*45%Lcu%-F;!
zA><ZJ;yfYrJ)LLKP$!=d&L2X75K=?_Q$^lc;#n?7;5}y^DFPw?q(2z)@89xHDNPy*
z`9{`4kOfde2n(S859PVBE~=D_2tapOA=n}8HL%Y>G=zd7yr-hMiYG%T6haLJFDZB`
zgu)>_Eu)Bxr$c^{9~Q!AAruLrXb8nZcqW7vA-o?#@eoRc&_KwP453sA)j5c$mJT5i
zLPiMBhEOI1Cxrf$Jr3oH)^tH*f)+mMUz>XZ$3v)^%l`ovOW6=AgitYr=RznaTAvSL
z#q?Ntfinetv0o}VpO&wZ455<XR1vgt$bSVTJA^Dz9T4~5c<fimBeQA<)#&A)W5u)l
zXU#7N{9*{|F8>kpOCi(@;Wg2#RtPT(P*2d>w7&p#Cb+NmOXYxdLwH4SF09YX>Z=0#
z{A0OZ7r4Hl9S-Cs^NkQ1hR`U4H$!+ggl3|taR_e-&_qz9w|^Icr72@ZaNZG=od4fc
z-8asAg4tZq$2TrohR`E~k3#q$gjRyzI)siPbfO(XXcIzP!E7feN2tEkH%NO??I37_
z#=aM*Icet*x(H@hhDUd&8^=jW5Ofz+;+`S&5(1xw&^v@aA$%gL?EBl$ydMkPH;2<N
zgoh;(Y+~szm;(fTtocBJ2Zb;=M}CL^Lj`^HSgy}Q7#_lf5H5x=B7`qOSR2B+5JvLP
z-$Ixf!Ve*g3gN2|CWbI6gs(%WzsDI9!Z#uCD~+Q=SUxm`Wo!uJLKq)HN^6&epPs)l
zDTQEy;A~1w=Qrplvr7oyh48&#ejCEn5Xh(SV@Zll6P)QG%n&jh<WRGe$1<y$rOXOp
zHfLm@hQLq8&k12s2tS4}S5(QFC&2s=76`CV&<!^nHf=2GE@n>H?)?<PwN0@lAuJVO
zZf$p24)|FJ@Kg1-Pq`~YsP&P%e}uC-guHFtRbstdY4OAEnh=gnO5yU?hp-`pLm?av
zVaIIemk_oSgs?G$O(CrOB(XV!tpe~vmRmv?cF%pSY9{&Hm<+FE6Z|S#4~B4Rg||~+
zGJg|bm!P{t*dxGRLH7x|Ur<UO5MvUs`|o0q@(-mWAsh|iObBPGC)MufoCx6$CJHrv
zJcOHzy_H4WMsu8#WSWW7T*3|K6!*>?hk%?qMN|I_;ja+>4&lmO_go0=zw$W#`4GAf
zOCew>lE<f`XFHcd_=ld7kz2-P%7<__gnP6}5BF*aH@N+2TW;hL?sZ{X+P~09>8Baa
ztsU;o5N<IJXE?V7{f{}YP#Ps!?g-At)eiA}E@!ZlOZEqOAclGv!Xp7H^zlCc$}fIC
zA>-SEUd>h>N6RB4Ap19Q^2*33^RI7EK=hSlG@Rt6$|!opO%r&)#sW(gONX9}Gd#GK
zpp1|VLxw3sma%ZQQ)*dEm7xe6mhr`~6fznAniz!R=mJD!c!knfwPe^b3dz1<qcRH0
z=rP%8Hp3lvQKCVfl)(WRKMciTHR4anC@h0u|GhYAQ5nT#td+4&#xpXC%jhHHV;Lo6
zl$23NMqPH7QCdbh8PCgjRz?{aaTy62pFeaQ88I2H1L?%+GG1Hb@TZ-uy3|eZzc}Nu
znjxbs%bqxYInG~P_M4V`P6mHl+Bij8xYW&*QC>!68Cfza$k_W_c10N*YGxR_W5h`r
zH<nkaM4k7>Z@rTF-0Ebuj4Cp!%cvoQtIBv$&wN2fH5ntH^yE#+3uj_43g%0D<7|3K
zMok%O4#ZxTQH#qt8>0^O3dSFU+A{8bTa{g2JznJ%8TDi|m(fDTt2ETSSOXbva9uK9
z7uEVQ-uqbMPh8s{j2}r)Ybc|UjHWW)mhq;H#xk17c#FOZyVRNbziVc#{?7|ecd6L^
zJ@I#Byvq?}WXw+vxaPdSHQ7w)Ok5+Lq|B6i()%)6%IGMglZ+3j&-UbpGTI2xO3>DV
z?q1`R8|}4~(VhdI^apPzgLKESWc%H*4l=m*jLWeq1Dwt>y2|J#ql>U4-O+xuKXrE*
zq&)@gA?QbfE_<;`F9F!vTYzE3yuLE}$(Sr-ii}TW^p`P8##b^1$oN#~GeX8wvy%g5
z43RNZ#vtKex_B_dc#U&@h?jacHcTk+xs1<*fBAD-T4}fpHZ_kY>De!2{P1-7kupAN
z>3u2aw^!oz3VUD67%gLhjEOSF$oNLaIL5#LhZbf?lq_Fmtc;Y|v1s4a@iKNc_pbIy
zZ8+PR#8aJp@t#8@x|@LfZ)HrCF;B*P8Q;nHUdBw$C}SG8-rhL9#>kw`&A2<pGJ|^N
z&3tQf)+`ybMYMCqd2;3)8PxpR9*Ge(ms2eC2%gv%Um#<Vj5GV<^vgn8BbLTrK>sLX
zv5X}`z10jt8A}DGw##Jvl!Jeku{;N_kg+lcuM*%^W|CerKTbWJp2q#Mp4OA`P{tz}
zzsT4q<DiV+Wo!~Q-znoav4qVsw#eAZ2ss$vCS!*T#^H7uEL<Hi>93-d;Ly(8ySUkR
z$M(tCE#t!~@d7_3_i)#b_V&uSFeNJ(PqKBtkU7BZzs89ibq>imOrOg5SH=<Uqg}C+
zGET`jD&rV!TOoN|xZ{Kj?t*I7Gyag#cYs4%(UP>lX&HaXI7g$&I4kpiR{ap77iiC|
zvm9c|oR@J;#y`zH;=iehFvvwgFXdS29|0~4dPT<79De&^9y?wa-RobE-4x5YLp?=I
z-eQVt=H3?gKY=*~SA9>$eVV11S7C_6RWmRi(0a#`v{EhwPbhE{q$@~KkXwPFz*LY&
zL0*M-jS*CkPXQx2RY979{0iTRjTcb-Sp6nNB9#<>sKEcwabA*~kdWaNngUsYq9Cl`
z>0dKc1@!oUST#}>rchn+9m*2nbkluXSqf|gg(**ccE_TMpX;6!Vg(i7-4rIL5Cs-`
zPYGJNk6T2D6;tqxf}#Q!uI7hyae)a+DJUUuNkM4`GFeJ1cvf)A<Ven0mE_|JS3xBO
zl@)jj;tI+scwX_hb3%xfRs2nzp`gH>00GB&PVl**GHJ}&u?mX+e<L(ec?C?xTr8^<
z6(kjZPqEOISqichR8uhMn7<>caMkl-RXNvaZ=jOS0ApyqAiCd)#a~oVUGa|ykr(4k
z?==<FQqV4p_F?`hH)<>RTfqedbrjT9@QuQk^ze#;dJ1|e=*>YCyr!VFf)5qEuAn~M
zeZqNPK?4PED0ovrV+9Qr@FU0*_9YuB7?z#nhmUt|_V|J6CLD8u!=F2~5a2BZO$B&c
z(02r-z`Fu8Q}CVu&2#u!vt#^Fb+@+OnFIWX1bo2h9>!bI4hQ1(o4ZB#CEF-ytANvW
z<%;NN1)UXiQE+XC(?LN;1<SWM#O0n#PL0PqDInzstk*2`RqFmQ{!jmmZVI|9=s~9_
zn6NO`Q$e3CPCUQ=`Q|e#lKf&dzg68w!N&>)(%K68Dmeb|`ToKP9HF0rPq_AoySb0U
z&qEIoQ}E;0pHi_%ywUO`g$L823Wh5fqF^ZPBh-6&h4YyJS(ANpahW3&e4*eg1z(E=
zj#Tiaf>8qV`vI<-Mrs|56L9&Xg(=1ex-8~%a<7)gDHyNdXRexSQ7}=#Oa`8UNeU(_
zpjOiqOi@raE8}|we|c3aoOZsY!U_n!6O<stZ_yrz^Sjm4x!59EGsu7B*bn2JeU^gR
z3g#<VAT*z&V6Fmw@|zaUe_EQSV8*263r}QnEejPaQm{n9QV|$GD&P;?7AyQ;rcBzu
zZT_^oQ>rXeu=w?)doli#0)D@nK}FoDva~|MN(Flr>{AeZ<g8M#QNbn!tGP`StW~g1
z!3G7taHF|t3<J{jjExCZsWz2-Oc^Je6>L%Pn}S^mwkp`h48UxYW6#H8zcQZ12s?8C
z`6tiDb}P7;n#Qt6!J$}M?(7Vv4%%(Mf&&WvP;gSgK?T1PoQ)k3V;)j)SV8dt8IN_K
z0#xj%5IDw|5#WS^@>e`|>9a3MdWsGTr=L-9mfm5m_}5`sd{p|A-ci7aI?v#I7+-QB
zevZbx5dWvMM@oLlI^IPEmlRYCBN@g&3NAC_g<*zqMZr}j;V|-raZSN>1^4J91vjYe
z{rJBMZgL|ZPkw7<*PEEU#ce(@`JbS-1wFDvx+4JjcLgZ2ICkij%m++OVGJ)^{vjj3
zbk-y0w|}#8g?;*jpwfMZICt1@%_HcP`*Gs@VH5~M4)avdpDR_+Kp1HPNP?2Tc~k*X
zKIkP4h7l5Ad8W%MOE?TYjNda|HAh|(fZ9gFSbjgw(rmC~g<*$LCJaX~qhS;cW5||R
z!7!c_$`=ab=`f0f@sy|*4&&a8BuniTRj|O}O0)S^-vXyt7|(=JJdAPwR^gIMhQYOz
z5VT3Yv{GS|4x>R<`DZzfmHl<i1PiO2C_RjfFv^Az3&Rb=6SLDS9G|UmQB6>R#W7Z&
z6IOaYjLa~~{g2(shw=UKWQ8!F;W-5EQg_htB)e3iox^An##>=zg^^7Qgz;(^Rl=wm
zMlB}uFsg}O)oH6uu@}UcFA7RWw0{t<5ynel)D)(pN^=UAe{6PI_}cw=?JyV>EOi8^
z8^$XF&;n#qlh?v{BaDV&ydFk<;dBN@17Vi4UA)!FOs<qojl#IT!C`qbjK(=wT^S&!
zX&BAJXc5NSVZ0+czAGH@UKq`U%Q()T+2x!6TO~0u`F<EJ!}w5W`+-;&4f5L5WGjJN
z=WrO+RK86ZZH0MhSO!CfFgk{DDvZ-%bPA($7_-Be6GoRXx`r_{jA3DP3!{4&eZ%M%
zMvpK)3ZrKjy~0@ahkMX*`9EL-o4NeWUHy7)?=TiO@D{)C^$FwSFur~i3suY_{UnV3
zTty!D(=Z0m-NRk}DDQelH)DviY_2qr%YPIb6vkjG#u484n#`5PL|m2=UEI&Y_&kh>
zVN9Y0!Wa?8mtl;eCUf1RpSv@%+%Liy83w_bjj{gqQ--fheig=;FutJzVZ65?Hkx=@
zl0f;=8Oteta;VaH0mg-S6WbqW0%xD@QQHL@oyk;{1BTIhp7(7SQ^S}}Yy9kd7e;ly
z{vF1&FsL?_-_%zcwJtv5hT9-l;KV(*kK)n@GsE~Hj9FoX?@DdIblmTqXTMFE8^*ja
zHiYp@81uteKqu0bCE^RIVJ~M%7)!%AHr!nl#*d7d3-01D>df;v@>6>pT6kF)6W&a`
zz1#UIjGwvdEBe1`WI1p(wjzv`^hFqdPK&JxV=cGjkFnMC=5C3cb=+t}91ggirn})%
zf8y!?N*lx26vqBA4ur8ej4feo4`YW|a_D<!YZ%*vo9Ls=dTwUOeeSd5uVL&8V|N%k
z84{0Tw+6Ytg|Tjh)8&%8htp-dzdnlX3u7<$SN)Vcdz@(bINf@6u5^$dyeS<C<0uWA
zKmB(>4+(mhYx&*@De2@N<HGB?V`{j>$HO=w1c?6-;3OrL^edC4Gjv%P5fz4tKg0Md
zj5}f64dYxG=edc(xDm$RVyH_(tDdXe3*>inFES?I$xrZ47?+v<!??=KFYNYz!NU;x
zw0;WdzhT@I3e*0|J@*#Zb<1UJ6W<QwKdKaq&l{HY(=GR2827_SRq^*s=Rp_`c|cK-
zU&W&^a;cyl@~D{5z~j76sJ<F0f_AIt=2k&U4rTHR$ykFF8g|0JX~i}<1yp~(aF#R`
zl8S(e_cl3vxhJTi%@F6&v{*=mtb(fxtEfLMrl{yRE7oC(#Mq_{RTY|O)m0oA<x-4=
z8k#CB73EYsufkRlRq?FK8*V75V&ERP=xy&w)&DImom)u7`}@78R1{Y6v<f=6sERJ@
z;za~zmHuV5m|#95XmLSHs3<7_TT2O0TE#C7JysnR>BK?TQxOx(r#)X>ALrh2Rm?7t
zN)T6(P>~^8%L+<94fUMBzQEI7ri$_^URCj$iV7+!s(497O%+KMl~hzy@q!9UR#uUv
zB3q2yzf@`!!Q@a?#Zb+Q#ED<KE4`?qx{4Y(V(i#xw?xVrYp18qy%MWMpyK7>?#rql
zu6-WH21zNb))CCQg1(|+(xG@gdMy@b)9ZAKibg8lRM9{MJ#s34`Wq^CzU<N6+@TFs
ze}@t@R?&p3$mZ)nKL0HhZ`0QsVog<lBeNHS^Buu?SI}mRfyFKhWm?cjDyHd}uA`-j
z59o0Xy)?8^(OSh_757wp$beC?Ld8lIZB?{W@s*0NRkT;pK}CNR0~k3}M#V=ej@*fN
zrpr_;-RE>y(N%!itK;2N6hGp$+!rI>dRV%&%juz_@h&H0by`mqy;S_Q)#<IGkBW~~
zR84s9LZ`17ZD9}Rl@oCe+fT(O9Qjm?_~ot6r;Ilh!&Qt>F-XN=x?r#OnTjDQhN}2{
zn>0+&TE99ydN}4a$sO!+_Rm%Pt7WiInJ<J&#9yiyDe%qJX`w`toKY%TeCCUdrse5Y
zl`mxC8x><!OjYrnig7B&Gf1+eN!*(>V658m((#EZ4#ksioQicj9^bz;Ihn3hadmO>
zTNNzcuh}fDeouK7GgQn}F<r&wy~zf9og>HN{7x}vq`(g<W~rdUWO7(8gm|usc{HX9
z8f3nT1uEA5nEX*i-R$H-6^m3TC*u5XgbpX-v@lIX{THiPBE-0G3bQOz@so<5xdHQ4
z;t!%Jvs?%euTrsE#bMf9#TqhI{H9`;igha1tJth!i;AL?oegx>s@O(G#c}5s74c_N
zr?*OMVl|Ijx{s7z%iGGt6-gFf?ChX-{)lf=v0X)G-b@yLq4HPSd9lN?lUuJv3c+q>
zr%s7#CEbH6_NdsaVxNk#f5#7~;DAr&O5e{^Q_Neq-dWNnF{*u{bNj^a+_|k1hZqcH
zQlEXvJF4QCifhb@>^RFiuHvMMQ&j0f#S<$2;EvniWw%Z6yOXC?oMD<(aY4md6&v*|
ze*Ezqj{*!o6|eM2oLC@D>yh~K+a&qtnQCfzoRr=9<;sgHE~)rO1-~H4Z%6j{#Q%ci
zW!3-a<Q00ES)!f)^+_^sFve8e;d1U*yvZ%oD)FC~>lO!`k-RPFy+nZcRmr7U_`S~6
zYm)a>JfNX8l-KZ(HsrHZ4TUu1((r_afabr8nW7=LhP6Mt1vKQ*u)koU-bac28a5>2
zc{RM*+s&t;;$L3D-Y#X@zTu{7NYk+Ue(dF4UXM1Oq+$C@?weQAf*L{^3=O6RS%acM
z7sG}%s2Vg4k-KFNZj~r}{j^j`PV`#r{`FUOgqdNnn`@i&Nqz6f`!P#H`>C<0hBx>M
zkicVpmI?|m{uc9dfu}SS*5GJJ*YLE4A{sv5<CM}+R6{Wh#YMHsVV4g|Sf1fH7bOBd
z-6)~?&p1kInDe50a*#t>TEnw~$!ZzVk<6F|ms9ldp3~rQAtN0=gGgwIYv7XzmYyrq
z_^=~GLs<<3V@EiA$W>0m^EBNEr}<!~{jnGysZ^lRG`yvusfMJ6N*Z3$P*X!?4Ow(S
z=R|c4+d3t(HB_Sxx>rTRwP#ZKbN;FtNNaUX3|Q~Ipy5RgozHmXJ16)B-Wr^=r}xYx
zsdd*xEvk1o{;G!8G`y^#wuU+!|5j{ux5O&~)YZ_lMDj7Go(A%XU)TKa_Odk8P+#B%
zg1#Xrzta1-wGsWEBiUF(6M?BDTi@334pq|dT@~+L+C;;L8ro>c`-AhIhW9nJ)X-c*
z3k}sLNpJ2>wtgmcW|zdMPKggROvp;M;@WcsUhk4<w<OtG!_0lL!`%{XHMG;vQRDv`
zdo1la&f6&+7+33^a$OQ#o=NTaOll`#u8{+!y)_eEG<4O_O~b8ji5}FXYofb`zNe&x
zO;cuW@jlW(TY23Rg-RrPYv`k)j1InP{4r%T{H@`FhJG48(Xdd%A`SgD4A3x1!(<Jg
zY8a?tgoZCP4AOA%LVT!(VHyT&7($yojFZE{doQ19{#~r$47^C@=R%Tv-WDJxf24*l
zHH^{ljfPPgzGA2_t`>RS4m&3&CBN2CW0J$0PS>}4yrV__SPkP?DkUds7%xVfAn3YS
zHI7C;2haOX25%otVYG0li}AS{rfMMP2T}b_!}l7dX_&5I1`Vs>)u(*<(8weyZ?%!K
z964TPmWB%VVzX(PEzTT42^QqfoTp*F7-|8d<zRf^jWpi#8ImvaM-7WL?9s4S!x9Zk
zHEhzbS;I07KWSLQJ+9$r+97WxmQ@;-3%o+mm5kCtaq=J2)j8F5qIH9YUo@;2xcj}>
zkytfKZq)pHCajJ)na%1J4ZQoeUBeCyTZQB{LCNemKS}zlhFx^o$!y}C8h#V<?9M9b
zZc+W})$D!To*GVQ_(Q`14GkmiAq|H$9ORzL%Ai?(*FZ`a(?Lfx9Mkao@6P@K8AmnT
zSruO~y(*iIYpB~lqh0@ulNwIZ(HhP&s=GOCq90Gw_?u!ySGa#__)Eh%4d-d<NB-@~
z&F^`<eK%%atp33`6)P~*yQtw3ca4sGI{wjcS;K7&|7p0wlvUcjq4A6YSD6!-Q5Q>-
zW2v*Mde=3)a7#M+T-B;Yyu<Tj@<Hb&w*a&EIp?Xx(vZc{9SwJx&vhK_?cCFFpLt$K
zmmwJ+5Aq%`1Fvu%YUuEp#47P42K?eG1W)MrdPoM#x;$yD=GLJUis#XhKGO*dar5ga
zpu^B%ieXcAgmlO{(sW4V^l<|^f}#s_EHe@;cjm{a61!Jk8dG#=I&>XvE9D96cy3Hg
z)v;uRb9si7cU1vu64Als+*?`T{>lQD4qM05I*RCs>L{qAkdCKlqA4j{?2`fvEEFeh
zx<!hwj?++ub>AlQVyQ)S6w^^cM@b#e=qRqE#XouZ&)Dosz%DdVDIM%iW@#?rphNtu
z4pvzxlddDiUOL{_;p*^o)Yb8dj<}A5j%*!ObaWl<W^ffc%IPSpqu~j6;7ZSH={~O`
zQ%6M|J45Bm>p0)mtDvK2Be(pZK>1=W!GROWq>f5D|E<DfwX%*ZAzXZ?UuCbl&v{k3
z7M+iP{XwefSi06*WW}rNAg!sRmX0}t0yT8JBsi^Ye$lMztk>L^b#RK>zCQ606TL=h
zZXKQf<lr`H<JQyhs*c7wn&@~<$Ll)Y&~dF%l6~vzAT4z@M%sXmJ1;%1Hl(xodV?7A
zO&!OdcDcH@M6Y+~?gh@Wcig5r-qyjsEb$)FyE>Zbxc;lRsIAAr-xI>k1?}*3yrqs0
zbbO+tzm8U%R7W=*-F1AZqm3A_v!HEtwAax=M>|n1y~}NOHP(^%`DDd*UMEh$x$3%4
z&2ea`o3UzLgjiR4r>;w_dg$nT(`D(c<0D#Lw4UkUQQKZRHnj8JHOlwlA%J4S1q+_=
z`iU-FLX(zWv;2VpIzHt_&@q}pqGOPb;at>kXRwYTI)>@^j8=Nb9V*sUXHejAuUO2b
z3qEK3f0)5wARVFO3mqec*eGFSGQSi8>(6D;N?+-qGFC=>jE-+~OwoDt$5<WIc7l$H
z0*uo!UH~%7PIkHENwiy8ce2o#o+6)`lTKy0rpCV$p-A<<7gch)3<}K9F;mBH5$uZK
z2OYB*)e(3R%w{0zxTWK^j=4JK>Da4dpN{!D7U)>5V~vi5j4>TQ(RXtCg&$)->ezAK
zS*l|(H-(&@r?k67fMo&ir54^Y9ZeU;2!7^r=DW*vtPo(Oj#WC=e&9}B7JH_H$MXAv
z*jgRybo|O7*Rh_ysGQuY<MNi+1|7eM>PA5~>)0d!r=!dkfeA_lT?%j0v0d~c-XTEs
zdfsom-t6OCT@cIa?GWq|)!jPw2(W)`jLiKy4sd(w_*=(89lz^1spFK6LqaA!oH#DP
zVI4;VV3(shjtN}z3y)RGoY3(H(_=W{*yYP?jh*J%MIYx+9csmR^)l`m9e4M{&I;x~
zD`I5+rQ@7v{cfhj>UXDO7j#@@gy^`a<56o~2zZxx6cG4w4(AH<*j|@S?__(|b^NR2
zrj8p-5qDjdT7}Xs%y+WX^xWTgPtTA2r{fN@bOdGucbS=k?mZp%xzgWUy5@n7hdQ2!
zASHrg8)J`z0Cme1!EdW#<WMGe1bHG*A_zyYXl*QS1VI7vMUX#&0s@mS36L7W>DFGF
zz)E>{`&Ks~FgQYamtriT2xP&mSL+E@)d(7Fa5O=yrUZytbWx26+VrGjMPNtpOa#Rv
zh(=H_f+r&=6v2`W4&#berOls;fJ<g68bM)!pBA);peMD2d_gJ}!OhjN8qcLLJW51R
zGJ+Qt`fD7tz$q2+W3@~Kr6c(JL9D?1*t1;S{8+4qZzv~%bRiHEl$<>)rFaC12zo^L
zUnR(hplk$<B6u@`=OQS_kt299g6AX1j36t5X7}ClqHi+7pY5kth@jzlr=sA{Da75*
zJC!1Sz*MGj9>k(~-E7gTil9{mttKdk@*^sO8WFq_!J0DeOA*u*;AL*)pS)TTY|HO)
zgM9XtM1xSEb_8{VKwUw}Vf@sK;ME9Ti{N$Id189Q2<k_$Vt7@S1`#y>TOxSl|2PxV
zStYY^1Wh7*28wnOyhZ&ZXdS_)r(<tN_$3{*jNk(?+Pe|FCjduoCP0a!Qu7>6iwNG&
z!5QUU7EaVk%*83#rRD<XLt1igtW5;m7bRM`EbSxcDwutx^bQepjDVn11f3)3BJh$8
z5;^%#6d?6Y8bNo#=VoL)_l%%d1al&o8$s^~`b01xf{77)OqmG(LlU1y(6hALFTxMV
z`rwlY`U@~X(1C(}DjdhwL83ZXP}-B6p#l#Rl-1cYrQt&OE5R8N!50xf5si%C%Lw*v
za9aN4yM|zts8asx2u2IxF@lbZ;2QxbGnO${-k*hKykMF~rAY$J5H^_{!4y&bR?uk?
zOcj9g-$n4fn3|YoA)PLoIKsH;v6(yyaA)muX7LaZL6sjQ3b2WEUIg<a*cid42o^-J
zFoIPPtY&;h{Or9ff}bMzQD9aV3$P@DN*%nV5mYGck@<53%c<CWml=M|rr3%IYF&4@
ztyVG)H^r*W_nB*$e9HK_YXe6RnALR=tQWY%0;l0j=@+qUKI|@W@33rUgh#NQX>DC>
zi=bOM(M*Y>?O<GOZ~|eE1O6)TPC+>-`MV?76G3eQbqwr{U>|dl0mZ=n2o6N>FY`kL
z2P61Bf=dzn6TzVf4o7e%g0o_EM<O^Ov^pxP#{}gvj|=c$Iq#1MPDYTrHFk=bPynjI
zB|Ki>pAiuAh^b$9{u20H1m^|#ThNOUTo8a_?C7Vd1<qxrzP&EXb;dwf?@9z$Be=$}
z=ieGs%)?wk<_(&Ck4HOG>{bM~BgktYpW!qA6G<<{@Xd0EM}Y|L34`2^@Yb2nd?4sU
zrp@CntK53Igzysv=rwXka~uA#n8`DbfqUQhStY;W=Ud4@z(4`RKeDi-3Xo<X*D8rA
zmq(dN0k3Azh2iJwpn(SmV<E%0&(_=VumROT%z$e^GoTwNWuUa-M@z)OlLiVIFbtRm
zEW^*q%=1wJY=fU!54<zIYC*$4q(1-9<>7T+UGFIaPa7y=fVi-M9Wy0P%Grw=C@vHr
zE@puA83WsA`-+t?P?F<!mxzC!@A6R2F3%b`zd`!>m{Z2U59b}n0FObmL%QLch}bj0
zpDUL)P{BaL@FTgbuuq1dOx;}Oa{|+7<pg-%KxPhS>B<5X4I~Y`WZ=lb7-cFMsA8b1
zfyy~DSpsAm{=tF*jOS_wUNBIvtH<0<r@tsLtJMXlAt;ad9Iz%8E|OJC4F0m9wYSFV
z8hFLP2m@bG(!i?*IvD6^;57rU8)#wReFOFBcLR+LG%@gofvF3fh6WnZn+N0P`0EyW
zB;xXJ17B<5J&MCOVsCLG1MeBwrh0E1c*nq_Q_i~v7O#r^*4d)~Z$~uaP<xXPhGp@B
zx4D7z2Z7E{`nNkiD&@8`a50{@wSi!F=K}++1gJA9h1E9SxE~s5V_?o#UR%1dl-o{F
zg7#EnibK%JKxYFz418o@+Qa83Y;jn+7$EIRPtA#SGtgat@7E+ptxond(91x70|N~7
zHn94-!<#LA1?VH_$AWS#{S16!AkX9^-(7j&q;big8W?C`D3|uS|L)Kr2JOZ85Cek+
z;G0gYlJeyr-ar^;;4{O&lkmBq!v$s4ei$EV;7f+0fu#mU8Tg8t8<=k3YXhSVOr*P6
z-4q*R@IPZQmhrGJzU@ZZIPSI6@$ppeVEj`4Oul_Y{siukGuafL%q?T!JJA}*_P*to
z%=X&dNSi9UQ-Ia)4gZ}VcJHyO$_xW%zxL)Bm}_7rBb=G=x$Id6_$DgfNuDjLk6$XA
zXJEd8MfAd_$pr@Two9@sG+?*)0n3uU$sY}b$5vg;u-WDO_;FHpt1UC|6GOrPH`LDt
zmK)e)fTvh146HQpi-C>Y=5qN}2G$x_C-7=+A_15f*+k0xww_Zzh_P&7a=7j+K3;&Q
z8O$f+>UrGnn;C4aJsxYe&}ac~D|5nLzm@U7ouOjjR|7kR%x<xZDg2v(U4ld0W@Ppr
zu{C(U#5}g&zySj_3gV@LILN%mOk$&mjY9?w8@Ofi&-ro0z)|iR6CF()GjN<)#Y71c
zCk*_-VYy9AoHTHXJJ-M!1E&p~VT2pFM1vdnlUc5|cfr741}2|z&N0atcw%tI+M=m{
z8~hV;_pKkY{`fTGE4YnwyL%gZ#Q(6%7PsqA_p1f&l9)GjP{vgQ*9_cY-ZOCBzzqY<
z3nu<E@b)hEUxt?Keo`b}=y&%fb>=qt-MuX+!HSlt{s>B9{4V#Nf%{Cw%#-QyL))_-
z8hCbwbLu~Do9w>uUh0^?yeCYgn24A#Oyo9^$3&V5$>dkR-Ml6Wn7A@9qlDt-GyM_r
zn@An%_P$f`U?83<ILp)BfC-pTOoUAYP1LFsmjw-(C|oM-nWM?{4Ow4wN+n-4p_$M{
ztJN{J?re|RE_vkEX_IQ0u4%$DQOLwoCT8Do%ciB<CZcpfX|JG(TxYx|@})m%;;W%<
zw;!FevRl~1cbnZJCia)9^0W!A<?)J&3QjRWpAj^DzekypCQ6y8ZK95e(k7lYQQkxa
z6J<>BFDGIqToaYQcGFFakH#zIOYf5}{hNUqo{6{#Dp}4%!bFCNZ+^(q&&4<7FI(2c
z`^DqWQQ)3iPff6}x@l0x^Cn0$1s#wpS<yt&L^TsHn5ZO%$~IAja|ygga<j<Km!2mS
zr>R@336`oRACe}_E~yKLxG$P$ztE%go^`8LH*s%pMhz1$3BbsyX`<zVSS^}*NXE+o
zQ=qPiS4_NP;$0K<OuTCHFNN`jiPucLZo0421?S@aO1HSycj@(M_V3a&PfHC=G&0e|
z#9JobH2nbE@T<#^BWP^mYGb~{?p9UYuZMU|IYP@+M%UZ470*$5qsGL0oZZ9+CjWE8
zZEm6kCtcxDa|X}*^!paK_Mi-MT5)NNG5+X4So=dkE4N6cK5YbUYoeV1y_);XOD$7_
z#p9h!bT+Zf#7`!=nCNO^9H%zX%|v$-15FGv(Zj@!l5QUpADj5dL{AeN?#4fwlI&&T
zQ2AtULC;r7KHQh=YoectUiG~GCca*tJ#3WoNlt6yLDKE4<Ny;{l@p(uC^yO(d^bKi
ze|)fsQH(tkLre@cG0a4(QpwLud~V|5K&jx5*~7(9BTRnSCI008B!?yV!o*0y`BG4F
zI4PC+nn@-rIa*9g4aYF3X!9va{wLj70s8%teEBP9f{BSHelRi1#3U1wO?+=+nu#eU
zzGd)pnNyPNm48ZdDuZozvdx78RJ)p$Mct;Gm_bwDjn6c3DiY_U6s8OnVC!tLw7J~E
zLhU(XIh87B%{Q^Y#6lB`OjKMPd+NokiO;*7;zyzC5~15-fv-KA#xa-XXiJ%&O)O{T
zG;!3#3KJ_$>@@M4iB%?6o7iGvtBExx)|yyP*O*wx-8406HAzgp8DIQuO7vEINr#MI
zxDeC-xW-2Ajt&_tJ?-qxCfeMNkCo!`?fCTLiDl!RZA>*CGqwx5L(pFZU4ydZ?=rF5
zM5iW+!zT8a*emcM6Z@DAIJk*}Ocxz8&Me73^|=%soANvJ%&j;%eJ4l+)!b^NY~l!P
zJ!ay#iHjyKG5<3N$2(_CoE6{?K~D;LO3>4SwiurAC%5FO_`Sx7b5!hR{4Z|Uc@n>1
za^A$>CN5B=+GWpuE}d(TLNLEc;vW;2P5diVy~40*l3=+mz*Rx72|BQ2#tjC1#|(C)
z0Ka2$)5Nt~zFGb=afg9qVXTF_oX$i|3$-lVH}QZ;)k0wl4^2Gc?z13S$YtRP3%M=i
zu~7MzvvFB|KIcubFtWG%`o~^g3;8U5EG9j_g?HPzd?HM|u8&keFjECx-$x=dVEO;o
zV_L8*1TBO_lV(A-F#RWoPjbVS|0Gwj{HMBnysHYpC%Js7Ot-+N#vCLfdKrT98L@5o
z52Gpkq=l%3f)>7Cm+I8_Nb78NIZh!9-!@3$_)l9XVj;sqSqnui6thsqf<xNcd&WX(
z3(s08ZlQ#Qqe`Nrg;Ju4t*o*%DdpB&5F=eOCD|A0=@w!Z4)k;4LTvC+&$aN^7{{}q
zj`hY)PLd`p?499!H_{<}&O$j0*%qo;c-}&$g-SH01$IoC<CM4fPncc>3&boH1xO0|
z(ahxadvT7OW#Rl;=W_MTcK_zCYN48imxKb;VdWn81q&2o>x&kuTOeSmVPVCeF#^g^
zhnFqXw$Rx^7YlVP)V0vk!Uq;!u~5%K6AN!yc-6vdEO|2<S$Lg>%3J9T3k@yQx6r^s
z#dy`nPs;c-jVJt9Cpy9Y8Plp{zA3siw(z!F?bFuYCvLT-#1@*9U$p8w7J9_1HnWgE
zGV!k95Rmhpg{v3iKjh71m0~SK)BA#Q1YS+FvhbmWHWpelW{P=y^PJ4K7TVEM12Q@?
zJS_0UyMv%l{p~+lBcIP$+h!*_2_`{T3*9VyX5n)S-KmL%0Ty`H{gH*97W!H^UfAo!
zAdk4cE&l|5NB%V8J`B-G&c_zET#9j-#vGST{VaSUWcmwA&bi~xrxpf^0SD2W0`R4G
zJ_O_xLo5sxoZ?6y#sE0zGx_XqxP>n*jG|#9?g$HCSm0yCk(U311+I}YU(q`g9G1}n
zd@ZKqWd%871cz_VkFzk|!ZGS^VS<H;^tFYR7A9GkY+)X))YF^7;OCC8FwMfCu8FA@
zz7rtUJgaM`M8h>{(>o`oQ%3iGurSNQ41rmlDFELAm~Hv5AMnBY904Xy@*lF#<yyKV
z*mu5#1r`=s{<HPP7M2K^MS}jwpz7&$&YN6nVVQ-WEc|TwPwM%o{qR7Ex-F+NRXo0F
z!1oiV+x;$yRTfrT_|3vD3v0NqEo`)~$-+9WWl8c#*Tj0E)f=4?8|cKtad!EI7MN3I
z@8S4n?#Jd?J1qPvz!nQz1=uDio3?W|l}-@wq5n=grAs1GG%xX@rYXBcb+3heG-l_-
z9?Sn$0yW%kfmS+b;dgE{3w*7D)u)T*Jwyv1jvuDic1o?fB}S*GvU-GhL+~#&a>+ko
z;SXk13lAt};gp3djCKpBE&rX0R)^!~ESzC}I2=D~p;4#ApMw4+D64!y;=F~wEnKj0
zk=xlq+b)SATG}N6{;{BUO$_OhAd@2yoNStMjTykgf5JpJERcCySm|F2H%0XpHEEhc
z{{2IK7rOFb$-H+gWW~I@7VgpJO;h+X$<K%5e4peY6D()35wVfW#uGNuY)CdzY~;52
zar0z;+c$U~8^@cb<P$irp!5zoG<5;nkE>K0evEZa(4GO?|F1U+C^mu|s&u07Kq(}E
zmMY0M;$0Kbe3=}UGGQC45Y_}GhbuK~m^KR8er(f9WLh?C8#{JN>pLf+HVWE!QVd8P
z*vbguEPQk3DI0}toavMpnVw2o)J8EIm7=H|#WOaF+x!qVmfI*{qoj>CHrm=KWuvr>
zmu=Lx@vMz9HY(VtXv49QZlfHp1RXDCBeQlQVPnRDxNF0+ac!Cuw{fs?lJvs^aRN4F
z*eEMxh@TVS)_Y~2XJ1;?^~&4$qIROgK_@t-YNe@8l8V`Q!N!X=D%;4iQB}+()k$RA
z*mzc|LPyj|5Rmp7CUKT(HfEmnf$?qC>NZ{y^11t_*03>ctMu;4WKF@TB~+pqHLqi%
zu8pQP-nQ|Ije0g3iq=<ctobfkU&uGP<-BI&bsOJbj<K-XK=9uXt1dss;W&*1=S>@p
z1+$6JgnXLiEy3Y05Z|F1HNE$2G^g<X_`5c0taX~%VAI$-i9Q9q7B)Vx(aOfn)cE^0
zCiQV!(n>GI^KanOXK+z}R?Pm;2EVRb{YbLNgyf$E(%RW*Z{uqlqiuAs(b2{L8=u;s
zlAUaPWTU5z&NjM;8N1r(ZX<P_+s#I!4sPR-RqMC)deFAhrN`Aa!Sr4>KDN=<MsFK^
zZ2k#n#cTh>TlAKC+;*t^D}PG;#40`!w7;O_2e*3zZ49CZ-|$A-7;IyRjiEM%*%&iS
z%2hj2r$Un8GaJiF#wYHN52uC)GCsF)xM2LvI*AeN$axEv{qs_6_QnM1mo{2d_DbuS
zqZodA=2xQ1A2^S(@eOTj;|CjKZH%)qaX{JcY)lDekEg|KOtvw>#^(nemWgz3p-hfH
zg?o^~`;${e)7*cZuEQi>frHMGrOEGYd~zi|jXP8rnZGWisb?_8_W6M{%f@UQi){R8
zV~+6hJO;_!7@a#e$IJ6=EU>YV8{|ryO{GhxkskWoBVBA`iH&W)xI>3YECfqw1i|@9
zP)0AAD{QQ!-)-EovC8JBvarX-UIw9!wKjIz_|3*T8|!Usva#8Q{(W+TaN;lAWrHPF
zHww?vj~$0eTbM&OC5gA$*vbHF>m96@!jLQfD88Lpf+6%M{;Qw_omV=vA;Xw1-eqGq
zy}v)n&BBed&&GZm=WYCL;{YeJan!~!Dpn`)JMaI{eF9(qIF)^maKJgvyGN3Yhxk$F
zxQ!DwPBYus_`~-9CEz4?^lXPF<&sY^y#&)EN1ZE|<7aJDf6@EP#^pMRKN)!6R^h%V
zb0kT6j_#iAg9}U@yJJ^uT(xo0#wDAdfJBiznJkwX_PwRYc;{K^nvM7N$Nv@XzHZ}&
z$P%SWr+qy>S@KUmS5W4*jsI*s9Yv8S?%23%qd*j?QQWg}pJ_9S+);mna3K$DJhbsh
z%uWSzMe%8wGy;|<qJDG{<ca!WoG%K-ZC*hcUF7E%{Kt`&7KIc=I0`k2qPLwu6u~G$
zQ9tky<)<psm=alNH|`EO3MK0Al#lBqNVO>HkN2!7>?m}BS&c+t2yEtX8Wqfniou_X
z`u;5_Fz0$Qib7EopYBqC)xv^Lr#Cw66pf--6wgLchWVc|QIuleZcd3Petj4(Db!;m
zWJncnhtdg3NBzyn?8LpP2h*J>yeQ&Pq(>1G!u;=1u7alHUS7L0k%%HAigHmrA4S<H
z4%ALuubs#<+j&l4=9Yqm%4TxLD3Vd^Zs}E^NAhG=q^;^C2qs^1xPyr8_p91xrK~8j
zsaO;{qo@)^)hLEXF(Qg;QM?evJ5jtF#fwo?r|+V8Gm08fycEUjv`-W@qga0?UOS39
zQPhf}=Mv}TC_WsKIMAZp#}&L1Kga4uQ7?*DqxkZ(#4AydQ~FxG&;>VbpY$5lGvmwt
zOR(B}hqGX@)4spcAc{AlNc$n#FbY=5Ja#|v#09r;6t!EFdn<}2Q8Y_bEqg05{8X}O
z6mwdZE3SBN3&1~<Z5G9QQS^$UcNEQ|Xc0xLC|XA`@lN9XC<>mAZ`<ay6x9#7-mXqy
zQ=Ig}DB4iND#`9qv=u{f*mhLozQi%x3r>d|e#a;}3EVk{(<O?oIk;OCqYk<3UU5OP
zM--$V3EK1jG4&l#QWW3Uu*BWvihz=)dty&dqIbGy28j!s2#SbERDvKNAV^Yz0wPLK
z$$|(<j*=wj92G=K5>zBelB_6_^}GG}=6C+*)Vb%@t5^Be>zV1PDt705jM0HYhH?6S
zi@oQ-AO{ZBu-<pz0|!3jTywte#CK$7=8T9l3~^wn1J`%OD6CnpBGEY_KHPziq>zst
z7$Jl$|Aeb%dxC_ujC7!Ap^A)-abPSP=D=e1jtz5QrUSDa81KLY2PQc%*#Qp7XPnJ{
z;+%qsG`Z37&mAZ>D|3pOx8kMv7o5J=b2+V3xk4MozZ9Gz*t}5+<<lIP?!XKOZv7GC
zyih`%?Z6xdR_u)Zq$lP&@WX{z=%6{@fnV;&=Q(h4UX-Nx?f6#?EZ}OrZS#df*oGwz
zeC@y{2R1vfl$LWYw#tFk4lHAtqvOk2tOF})lVjoxW9!7I@L+U&jRR{P*dT>dvQ9Ft
z7rfTH=+)ju`}QunQBqlZ)thNs9N6lBaXY@pfo(MD-LbrW#!ebDE!;HM?~3i<5Un!E
zDc{Al(9hWI!14=5OTYPz1K)Do9N6c;ccNc+VS2|uV#kLUBc2)^Z_>Ny4-On~AVom|
z1qV6B4qSBLk^_ewIO4!52TnWiBUh^fC+N)_IOf1{E7l;8II=5toFh=e>fI=X_%m(z
zcAU-lMM%w`Q%*YYD;MdoloPws8E8d|3l%%#z;6zmbKopH^?Id_yV6%Yvd%m3=$ys=
ze&5yNyj+mwIeu#T?+#pc;BN<SwX;XyiUU_2xaL5)DHe^V;Q5^E(wILTxZ%J}8qB}N
z&K=6E_C@+14(z-gpLZ^Hi;HxB)?b1oox-{QIB<tkb3XR3SnTXYnRodJpl$58$M8NM
z0W|OB=?@*qH!A%R-P)o|T5`SHagzTW`29kxbAgO}3i2yxu_#Ku>rhrf1%(vo3IYlW
zD=4C%jDoTXiYiD|kfvbWztQE5<1IH?Bc^0=^d8)grz<F?*vB+Kp@1XFP+Ul}Xfg69
z6_k)@Nx@P{ou?E$o#dqz^mr7fa{XBu<rH`o_!N{^;836_I9bhfD(L-z$)GBDa63*3
zxl4gt<XN|39tFGBr&Cz)LTu5csHTA9?^p2t?Ks1uwdp|xAqCYHWGV<NybBLe1*U=u
z3h34<9nQ>9Y<n{lG<gv3{vb|!ZtzYDouQ>5K^+A#1#ty!F2s!O23_T#y_wG_sHC8(
zg5Q5isjT492zzN%QS4>H)$!;|_Qb~VY6>>(H<(1Mq1aQCt>E@c@tO*<6b!r@Pn?ha
z*}EwHYL0?jwt@Yf7p<kBwu08n)5+_IWaCtu=Uj*ppHomzL5>r-PCT!mKAWMUvWgcJ
zG~hTW*sb721q~H^q~K!(FDYoG;7tYH6f|ZB6?CMeSxQp{%@q7_#b~Rbxq>;b##<<8
zso-S=C)&hcVUJqJ3pVBvn|UiLWwv5_6dpJj-}p&7qpu2YBY5Z4IOQzoH3jXY!1jWa
zbWrfRf^&1D<Vx#!Ck34qyrE!etN66>#xt$sT@>_e74NE`OY1l<K_+%raOPgc{t5=r
zDwwKZ#qn4#!9EJ!5<<z_LV9x??xmOfE!sCJ?<eFP!FL6tbJ7PY{6LQ1uNcD=45C#?
z^FCB?dRcU^f)7}1nb^o?DU7z!Q_H*>ACheUP$9md`G!jiFPt(?HB0$K!Hs%}sS2hk
z7@=UKf>8=aE10a{;Sytvg0TudQ!r7%dQa*&1)nMyui(IFi_w3_*f>F=2hF_4(a#l3
zqRTS#{@a*FH6rC-DELxAhe=lHoz@g~q;!1MrnCXC#HTCV#)1_JRw|gOU>1#Gzwxz#
z*$VcYip^K>m4faItT_tiDrkDxm?ucWJ#GsWEL5;a!D7YUK{nxd=HYR<*Uh}2mu4<e
zkZ$F1e;MW6z_nDtG6huNzO%(&8q3+jU!oP;o2wM8R<K3ERt0MmtYse+Y@l0^T0WbQ
z%?*0X`Wb8q_pEKC@hjNO6|^~xZ;gN5oc1`7U%FsyQ?OmZ4i<RC;7&32Vkej6aFct}
z*wi!4tvw39QE;D2Uct8t_A2;Q!6^m%6nv*}n-Y%FQ>`@ibFtH6$Hc$x6wh91{J^p0
zWL>F#knTm~<cCCZSa4w1_&ev)ssB=!_%SKrgaYo&I!=3#U0pvZ_*p@@&hcLqT$-1j
z-7@8*L@7yZGfvY!72M<iDmbg)HwBkDo?YUsr9r3oIR)nxTu^Y4_C_bxBi^ueit$(V
zOA3g_8*$>GRw<NUQE*kkHQG|oIJ4hSa9w!a9P6=!d%^xxa7(c_n*Br15H$ayAD(7#
zPu$=1AvBMj=_6dJ#4f)Yces{M$6Bs5?keD}w0rb&Rvx1dxr*6%73Ed@tKdKSY86m<
zGE6L=ib5(1tH`fn{^?kXiUKMMs&++*PWIM0?#nyhDPBayubtzmD$-Q2z@jQ<?@TXJ
z(5^IH1slL&XM?H9&2&$wD6Zm3)!x&`XbBa^zc)&$cuGY{;fyYuoc>c?>uJ><;W8@7
zOAB(79V;!X+I?hc4i$=uu!@KZRke5Xxm9>nI8`+55g-3%+@;!^<{Yh3ysS=zUxlt>
zZ>PAXqV5~<$#2-L;#NEED-5Uzsc5WOK^5~RWm1xoFN4^ByHP=fp(3s#q2lj8#`UR2
zhKi^P-Z#K4fo1)v?7JnL(U_15S(*8F7+1T-E2>!byT$N~ki&)2tEi|-u41{0YAUL$
zcvD3;6`3k(sA#U@Wfe75WT~i6cda5@MUIMR+5NAh+=Gy-q82;FDNyZQ2_f07P)7x~
ze)Qa*$sH4QRUCS<>e<=3{|+>tQ&CSvzD3dJReQTfDN*Lmiw06!LlrLxc~S8D+v$x|
zd)oy=Qx1jjceAQCQPJtyY}e{2<;_%#$t+0nii#F0URTkPGp?eQY9E2vK}BoT-az-N
ziZ&`L$iBI@DjImr;Ao?riq|;xYogpYN2H{^3SyH(_CbZCD<?Xs=&a%m6<t*OUqC#~
zk0%Xsn_gEHuMD&p-m08nlm|<8SJ6YoI2E6&=&7QYiuY9v=E&19N|^mryrbf66}?sT
z;Y{5%`l{gnCAxM<ed}|h!?cvUt4#h&;a%1K$HG7rd`sS6#Q=#?zOigoO5T&`AeFBv
zt6nZ?eW2n)6~k40ByzqPAEM$>A#<o8-)Ik`b;0C67Cx3Xj8HLBO8!KJ)iaf?8YLN7
z;~3U;uli_}JN+%biyy1nuk35jGg#?(6%)92RLoKFnTm-jrmC2x+An}US20P&WEEex
zG>;d~_(HYc^?b=H=GpItdi-5rii%Hm+OLF&T}GSJCD$xY2m7vK^B80F?KI-JZmF%l
zj`GFOT-rIC!~(grReZ&Dz1>_yLsIRxQ41;WmU^*E>d9W#vX@i%=4)bxwOB=^F}YKF
zSxcqx<6Tl8zqfidv&sq;D^=W8agS!BVzr7NRUB2ZM#WkcJ5}sbu};N$6+2Y$QL=#p
zt740attvKgvSe@dX4XD1ox75s%gE*fg<F!hso1VU8<NTW(fZE@_gRy-X=1X3-75B|
z_+G^iTq*hR4cE1beJZ|H!3PJQN=FW6lYFOQKbOz$#Ql%bYg>6Q+>Z_29zCGqAnkLi
zafFLS1)n2_xz_H-Hs6bJ19+d!X-s06v?u)-J(7wGDlV!x!DXW2H1*j972A4MKS{sG
zl|_qnSFM^=b?)2MPjSF|R)6ZP>K%JkzdbSi=eMih?^XS*ir=_WdfCExy{ey6?IUH*
zbNrv<8BK}6CkZa7OSA_SS2(bo*?9)nEVn^jRdJ0zN5yRw*C|(VQ^g-2CAg=FOS1O}
zdw<g(D*jaMElbz>8@H(6-}p=L@QYdG|ERb_qxvY3f4ae7Z`Ych!tGc0X?1jlP6V8I
zNE@d6b>e9!{#Egxic}}koXF?I{RU=1CkhG4??j4_0)k9xRnRKzL=h*B{+?dcY40)N
zmKp9U;vN(3SIXiJ0+#7DsrjT6#hmuNEKfM?jY~`|?gV$NG})L#&izd#oG9r;sX10o
zzw}Z<cD!TmDr%N?qKp%&6HckLtP>6)&Z24MoG9-^;^j=L5f$N-vsEr9+){|&36JRe
z1ieXpHfc;rQxl!`R^Hj)(-{pq5pu$GayKHbO-kpY3p){UqJk4+yQLnUVMd)Woc#T{
zY6gd5k^O3woJ)gAF(=|qRCA&_t8k*C6P-I-Rh)RniAqlU1@Y&VV$|fCs_ex0o~hx7
zF)q><r<+x&?=cVln3?HB4JWdl_F}IoNd0mLqO2&(iAK}y7sM>2SAR3liCP>z7hZIs
zwi9)n_|}QNPSkbcStlkrG1-adoT%qSA1C_q^S=}IooMew2Pa-&MkiW1(b|a@o%W%o
z4V`$2ozkqAwr4hSqOsFHfRragHgSUICGtSOmQFOKf}FzFOh|LVmjz!DY#~_gz4XE7
zj7Be*iBZ<8Y}EpztrKme7M97=>RxlAozp%cv*HOO_i#EDUU#CS6WyHP$(B4&u@kN6
z+srOb`$)#lPQ1ZcI}n|JB*x#UyGqiVoD0?Z@K1wh+;w-NhtodQu%{EfoOp}+#WGmS
z+fKC1w0a8$JXQLg$YgY#mD$gUcbxdhiI1Il*NOg4eCWgwCk8k%(1{OdoO4Z<_MQ`i
zq*(GoI|{w;#9)c?+)<v($Hub?a-Kancx{w_o*e45|3W!TaJbVxot4o~oEX8TIx&vj
zm%-tAlB0!;668UJW1Kv0&OV;>z=QNpIWGsJpGigIX-NEokQ3}9k5nCf!<;Dc&js0l
zyqcL`IPs+uYn@o<#1to{Ix*LYc~0Jugl>moGo6^_#B>??88n_P1}B<RJlkoXKDr<!
zon4qi6FnSb;2D)X@^rovi=6h!jbBN<JhF9x6APWV7maZ?zn-48*oh@heC@<iCssSb
zHY{`6hh8$Q5VD-Eph7mID<!&$cqGQ3G%4YEm}|IX7Dij0$XxHl1}C;VvBQatPHf@|
zJrdjM#AX_2VT*<rcqNNR&TiqbpEKC~ZKA;Q7^$|CtLZa~rS0MvY8H)(W$t!jj}zZG
zp>NLNF{B?@c|4VOpA+9XQPhQ07e4J`?swv6Cw`&xapDIj4mfd;UdxGNP8^~W2&ewY
z9<4MdK5rd%f_Q`rd0T8~Ig7$k+cHa@G^*809CzY`$Qk{K{_3Q0bEP?_rFGJYU!Az=
z#2-$aa^kcTm$-hNIOD|eg!P*f=bSi8XLZt=xYZ(_cjAI19lDx(f2MJfM($2MvehD|
z{$-B86L(%QuRF0OHJwS6U!_NKVoPfJ*deyg4N;&@>S60oCvG|Mh_0I}*NMNG<iuSr
z_IJ$NTvjx~isqN8>C|Lt%);nB$$p;=8){JPfkYoB%RKyw`5&FX3k6*$<U)QIQd}s&
zkvwdz@TWX3>M<!%JfpA+>{JmKK1fYxQS9C0Zl<}A?t<Y$h6}}9ynzNT7u+s9;X-j2
z%D7OLg*T5s=|U+No^qjt3%=&@k}gbMY><4|F#fa)Z;VWwX&Nu>!sP<ik9Up5jZzpb
z=fbxIG87k77k13G%1hKCobpS5nA;kqI9+&dhQ&bcaoOL*gD!+z@Uj*cG#C6X=xkV9
z>;9-j6K^UtYpuvEKh_F}@XzM)HKon43wQ2CBQBic?U~ba*{}*O?hP@^HH$}GFkPtO
zLQNMe7x+y);X*|hVlKqlh30We_MVLWz1U!x&$v*@g~~2Wn32-!WbE3=L=_i^)mYkH
zqpAzLr{*46AFb{}CJQ{8Ng)GCmJ8V~)N!G%3pp<2y1-WDabPcG+a+(vWczEm@Jw!E
z-MwgS&Xko&@+|w#>JA$(xWMk$lcA_D_`KlsoWx>J>NCyan|_H6IASz(@elx<aN#Ex
z8oAKeh3PKLaG{9{O<j1)g|}U3=0bB$hYMX?c-e(lTxjn?2Nznn(9(t1T=qF#JR<4a
z`9>=jTD$P73p`zlr<t{3Y0+4ti`i{mV06NY=$bP{+i?nZ8<%z&J%31lom2n7WavyY
zD;MkNLMPE2@G#0K!@59fR~Ldctv6lh=E66Z3~~k@q1K%P?zVW0TMrkAJq3HQ!P{bt
z_I9C<3m?1ii3@#Q=;uOz7Y4ZS4!hRSe3y1O-n{ur{7;X?Go8o>y6~P0L!_=job(6g
zU|O}1_XYo(md=BiK6Kd!EAbpBo{Pm(nAnn`E(~*FxC<Xi-n1p@6uwm4Y;cfYz3moG
zaN#o-MzUWnjCNs+3uD=l&9Tz!jC{A#hUP2AvyvDcM^7d4@q)E>8x-<9tBF$k6c;{s
zVUo)}D(&V8bFy@^$Zq2c7rvx5&Ng`D8lya(ZmJ8@XqKbwGtIVbFlM?i%Y}_DY;s|?
z3v*mp?7|Wk=CZYejCn51mquP$ZSt%wp5yeD3x)d|3j`MmE)wKGQU0|HOI=v$!YUV*
ziTw2+El$dEHg8Sl3eM&@V{M5T4_;gC!lGrF>!iW2HMQ2zBwY4MYdjf`W3rw`mCxM3
z!JKXIbU4rS^vy18ap8Lxe&BFT%iZe2E-nq)unXI{cK(a*;2_VncCzEwOcEX=MyuPy
zv2x)%7xufr1M9wZVIOC<y0urLloXwjLgXoSJgn@zW^q(|7BUaGaF7FX+GLLovC?;q
zA6+;q<gg1ox9W%>C+L_EW~4nF7tYjbJQ2=?U+6>J2)J?5g<oB`=fZu?lnbX_xXK0Y
z!Wrt*-lk_>cHuV{&be^Oh2LqApBm?BjSVd(U7$zG&1ASJWZwN4!`QO1SymqZg?mM^
zzgaMyf788AKjy+eG@i1tn=bSimi~tee~JPNWUgB-{Otn&7|g#G|3xFOoyETs-=<@{
zANwgQlX%C4yDm_Ze{yCPR{Fq&hc2YKk?zJL`Z2CSHww7%p9}fi$nUnFiGA9}2jp23
zPo)!Aw2f0z(2YWF6m=ujjlynxJl}pw{yaLph#M7KWHU^jm>vEry?kF=KH#BM%ni6v
z+Kn=9JmE%hH%huu%8e)8ppN#BQNj&ANy%APnQ-b;Qg6mdgHPV4rOa(s-fvc3SvSf_
zlE#c~P=ST}+;9k21XV$&pi9s#=n-TVuMnO&%)EV?r}*9W<32JaolOn85ptux8!xyK
zb|d0O6*sE7QGt!$o`|^-cO&P9Wv~P{qHgeBNxlQJ+^BRXPQv$qB>!1?`}Rf?6uRxV
zt~C!B72SBo4U*c`EFy)KC27*s^lENYXOG;d<wm9(HCVnI+Zx7y$w;l~#<e*{wi{V)
z%uTEQ^rQIQhw)AQQVv}+mbbNX-S!K(M(?E5c4N_6>sdFRbE8|olsazwHrJ}_#+5%~
zBz!YC@q$s$jpyA+xor^ZbgopqQM`d0FS^mvjaF_nWKnK3apTf?`<)%%k8D^QZ6w7u
z7W}fB)zpn<ZZvn>uS8#QqXoP3bIQvSWyeYQwu?ziYsOnkIpLqpwr;%YMxT-KHg1&d
zm$ImR3g1dl{u;;jXS1E)-yJHgecO1QQyjrF5p;B;lN+7gc*Bj^8s=#HT8*x54ENw8
z58ia6U!jcIZp>j%-RSN{4>x+!{M`7&jb3iN<;F*Du)w$7=<UV_!Wr%3#(PQLS4cm>
zcQ^||`U?&ar2arwRNua&W>8Y{z8iy+{6fV-wMxc5bn`6J*bp~{a_&mT7={TME;xF(
z*}YtqIv*xRxG~a=32uBQ*+;oCme%#X$$eO(-5BGxKkfX&jq0`1$GMSsG3!%7lJQ)R
z<#R|Ty6u0cPNJq8pS$f7*cf>5+83O=6Paw}mu|d%GLv6S$frmxQw68FF+JJl8A4{d
zF)JxiY8IO7#yp7{9?W;+D=ume3VX1?jfHOf<i^jOeK!_U$BlJvEa8BkiZ5jwgnZ4l
z+%rMRa<}~#)0MQ_+p!f~<FPzO_jZpny2_2!oYON2hBa=?zf+xLy&D_c_|A>p&zT$D
z*yP3zH+H&Ft#9?sEJR3?zSXz5v6W`ow>m@3;c=#JcjNCH1sQfRuN&XE@huI{n;xwl
z>zZC=5B=4;qLw$EoWi|So^0&n685H_>6SZdN#=exzIWpXHx9UQ*o`9`jU|}}r5T54
zW|Hf1X+KKRQ8$hWVL8X$@N70%_z98R-eWLI`7d<-tjLYqZvLGZgDT{l<pOlWishYh
z<FrW5NR$$$o^#{88&|os-MHXJ<NjukUDg#hE^^gK^mjKd3u!qZd%^Nth6b@bs$K3?
z<hmO-+_)vFHwBM(t@MW*Z*R_|0{NeA#Fkp+-?GU6qKACTqWmAOrt#4f4^LOCdPn$O
zK??5)x$nk<q~sy3PWZoq{|V;v*d;LJ_n=jN^D!^rLBXUv^o>!(gQASa@*Ezd3VFhV
z;vS@V_=kUs@^lZ1dF)$w-&kr#8PZZr;*%a6scV+>;Nw_c2@kS9H4o>Rr961bgQq>{
z{i9jNgZF!xr9Ig7iy5wE{*h&s^`IO}PBF`S&{s2GEMJuh4$V}gUeyDq2QJ}$4|EUQ
z9(X+P(uZ8m^4Xpw&U*PHmF7YH1}3AMMrQ>)2zn6lVEAC;a(*i$*~5$`tX}QSiZ7b~
zc+7@Zb1Hc7%jm2}hl~slq8^wYSRS<Zpo7PDJ24Mxdr-%NxQ9RKprQxQcu<p_@}LrX
zu_{_su(DtkK?=98idGX|T`*IyhG4NAlM30wa|Lq*DP;CM;k5)=2!(Y$_Kk-PJb2NA
zXFYh%175vdPq4lR&kHHkDUCV|FNkvfPH7E2c*%oTJ@&=ljYOvf8{FGy>_HO`nu?^~
zCgT+knh9_2!OI>{!oq(LJaWdqld+|ww(_902L~*(QsXSDQHRC0k;2;wz9!g?K1Z$^
z=eWJ@!CM}@?LkKmI?+giW@it&dC;A+AW=%Xc+fS;-}KlQO;SkgA-!l*B!j%C$a{Hk
ze_NE%Yu60QdwbA_cH*&bqU`U%0JdB>qwffLSFqJjsh5u#13mb_1CsXyNd^gdUvRK!
zQpoV32SbuNLxl_z9Jw_9u?L@ckm*AWA4YgE(t}=Jyye9x4@T3fy(sO)7!SsJu#;Bp
zf&ZR4&VxA~%=O??55{{i!Gq5{_Vv@#Jy_D$oan)qLOvIqBuM#WT3TJ}3yHRR6rCbu
zs^GMw&X7UI3=d{<gjXB0JeW<BUSQwbOF1w5n|ePwj}zg+3J+F#czXqQoHed2H@^0O
zxWI#joGcF(d+-A9B3y1P5kj3AORTe}qm(T5V3{Z{m%L+sHF=BlDvy16?gkGwdaznJ
zqick$^<Z66vR(+U2Hqs3_GDwb2b+_rTZC-&V4IL4{}gEQuepOuY_f4LX0i>tJ=o*H
zbq{WM@QnxG(%3vW<-uML_IdD=$G+Y2I}i4IaEz-pV16%n(1SxB{2-jd143BlVIe;X
z9!aLo9%LL%a(3ak@DqYlZ=^CitN2+e`o#mb>LlIlHS41z(bFExTV(P!;R_!7*77qR
zob}*056(%n>T=_}2O|ntyy%>%j8gNW2bVnfomS+ruOVi*D&&eFZz87T8p{`Q(}O=e
zc<8|+4@w-1{^`L#9{WboTN3??Hvh5lw+Eb#+rk;;MZkAF_T8g**;K9(4;~2e22y6^
zjn53cRQF#Rxd-W96!RjV7x}#?<V9hxedT3}*S`L;fEROX7kqr{WkHefs$zyBUZi^M
z8?=j3StQgUNqej#H)is7_TpYV>BSQwqyqJ+Q$orwB^gT!zSrM)N(dFGR>q66UR3j<
zx)<fVDDQ>G3$GVt9vD?7nv=Ji4lfk1eI>CfNaFOuCET5qaIyHj(7brY3*MON_u6-P
z8(w5CHgzuoUIe{hX<;uSUeLTlUfk|v-&6cxkU_$v3SN5vNth+Wi>Tx^y|BE939l%~
z)VPp@Anledq;O+VtCAO$y~umtsN%KnV`Zr71urHh$@HRz7xle(ferH_%Zs{R9J_C1
zd+j@sYq84_lOe~8iG8zkS%??BU!H-&+M-iObSR<zvuxh42E%h+)JyW`y*Sk07P9*d
zym-}%HeS5wMME!MlCCxNqL~+sytY$nEZ9VFQxB7p=3cz)MdLfsmR`&ZR(-{b7G4|~
zki{EaDP$mNB?_$tDVZCt-j-!9H#&OJ$&1&7w-anH*g^1huYD0b)qHD=&R)FXMRzaA
z8M+90(~GW236;Bf?OWy<D&9AktA|8;dhy#TBlpRQZ+p?(i=Qd<qK_ASy;$JILNEGx
z@eX~j7h`3(-u2==FHb@Mua@rb#Q+fwlxUwx_U+Q|vuzViI)@=%3>N-@pu4X5AxE`%
z#!o+3Lpcjx+bInf9O1=BLMZvzi%-0^Tj0&+j53Urq)}ds7Q!S7$H@p!@ZvKsK4r^G
zWsLV?_d1JVRh^WHUVQGwG?7mdq{5e8`~KF+68%E>xPQ$l$<(P{FiM5#Ud#~TOfTk(
z8uQNbVzvn9c<qbn=O%N_6T*yN3E?HM<cqvm?8P=OwtKOR{@;rgUaS=UwHHfCytq=w
z^j$ZWi;#qB{`}S|)&gq-yO!Tt?Zp})<ZFejqX+0|t`{8&sku@3Cc({uTSRlKXi{N^
z7dvTeUi|3AB+J~z$r7^Li#<ZV5&X`JZ-wj?q~<=c3X=UvGW&Y;hh*vjFAgU8At8rZ
z`}HXG=@pN9v15>N%!@xV<Gk;f{J0k<L`eRV7r#!kg(peaP9KW<aLS9*Ufg6BFV4`7
zaD3=h4D&Zx%a^#i7Z_aB=e#&C67mZ|F7kuH0*le#y(m%2yv#AbXEdu_ka$%}U?JCp
zTo=5-#aP^;@J}ypv9w7>As_zo;%_hRd+~t2E7`9*LjLh$_2^=DzodirL`YZGZ@KZ%
zi$~&+Q+)VWNPZtGw@vwvj{qMwRFBacGw=?2y5fQ2{0sQ(XF)+9o)Z1SKKuIV_O-1d
zJ{0wVw^XMJrU|AC7W1K9jW~oqzQ+1VA4>QT^}+O^qz|QhDCa|Ymg&ROKD6fE)hZU(
zPH7)#SDb<}J}}zsW23B8$4@eordbXjG#~svC_bn@IDK&W;PJuh15>N=mnR|Q=kJ<C
zMtLQ%PmmJbhky?iL?<X15~L0_!#+erbI}buJCP+AqLAT3HCHO5mJcx>3a_!9Dxbx1
zA8y|_s`!xbp&~oT!+!)T`%uYeKanY!bkO7zxo?qJRUfji8`XTaQ>`xe^a6vtrVm*@
zeDA{#RPZ6khaNuk^dZ-WJRe^0p@9#ze5mcSKeX5P+4r#5@!@$N9;L)<RnD%<)XLe<
z3O*-T&xdEa7p1WKhWJ+-;`{Dq@fz_LeQ4-ITOVHY;Uyn;?4r33FZ)o)Z#MR!i4T|Z
zS#(e<rdf1!O??=)E80wuzU37kT5yhhc-3d$D9s6N>BIdmOomoIbZKFe6`PE1%cGZ8
zMcZ(Yb7Rk}kGJ!oy$^3t!G{(7jrzf=9ej9Q%IxSvC!g(1=#=<GBk4>t;K$B7Chs?|
zvfAkC!<#;I^MN;OpQ#b&XBCp}J}kLylU_c&<-=4Trup!;550Y0H%Ix<$A`&RVhndS
z#QXZtk0#{9yR6ZN;Xd^Dp-!djL4pH(7$~H0_oD9!d1F^rZug?^`!Lvt4@7eJ&2;L2
z=);<A*(5`J7|QPK$|7%D#r#NgJ`tqkV;>&tlaCPLNI{lAnwH?hSRcl*c|Pn;iL-g1
z`tX?#Bn;z)Ody^#7@g?D=OURTU3;v<q%R~dvw!Ksl*i?qGz#g~bRTB;u*`?$G?iL0
zTE$Es{(Lt+%ZCCZGH3fR$A`JXzw%*$ka>dhxe_lYsI!o!C6ccN7Yi;Ce5|01$XqH>
zDl^v#A6ELXm5arPRX(g1tJ}nZ5<<h<AY`rJIv>^xd2Ev#lRAuUPVy~6;@yjG_hE<h
z{aeAEf_nsavCBd@Anf%w!W)b%%IMyte4h{BCHa0?AWS{r!$BW1HPp~>$cMx9S{hO{
z9P!~tAFlau-DiIkJnF+)AAa-Um=DK&I6>=jTE7aC{3PUOAAS*XGAZXLf2N-D;dD}R
zMhL$boD;ME-G|hC=6T^41TP9+66CrV=!;R|vZ!4Vyy^o#s8e{uhnwsUP0NR>JIy~h
z#hLNHg#Rgci)-YzMPE(%-;#QpHn!dT$A|d`q7>faI;EfY;XfZ9P~l^v-+ki|=dMQl
zA$?kH`#$#t+;wr^$fqH{hJqRjX`ly4(NI80_tC}j+M2{SM;9xsft;jBl2DV;G!5w*
z%4*!dk7AnrS+|siR!gGL@Pvl#SEI!>l+ZBidxQK*kyJffkmFWTv%eWp{*-2Skl|?|
zr3K3f@=HN^4Gs;4h71jg2312qLr{ZLvmJs*gI9w~10P#%kx+Q|W@VoSO#_Lp!7qgJ
z{}IX`D~B{hBrj9LlASsgG%PM)QGsPfHJBO_8Y*fif8VJ0Ye7rH@g63fQcOc!gpZ@o
zXt?^TSyhmvl90+8sw5@3HR9DY5SdzC2p=>xHDqa+py4wO*&1>*bkxv^sT^btFKK9`
zfe(>d8lKhgoQB#Gts_`hkg3<}r0_R{dKz9}7y6pd3-T*ZeIedW(FQ`8^rD7_NzQLc
zjWsl3nUjrH8XB)QnrdjS;bjeD^O?;wyj8m(g|A4`$g@TZ4R4C1rG}ID3<j#T*6^x^
zHc|-7>7b#lhSxN-6G?l)j%DmmzYP2^%um9vi;#BGS;HF|25b0$zyE9Ks$n3z*~@%W
zLpKeVRvYhX{O^ZN7~a;<BguQR7h7Vz*g}zH7s;SP?__EpjlUM6pN4lhq>}XB=wf_Q
zQ>TAYXMl!S-4sgRlNwp+AR+Gy&b=D_P{R-nV>lZ3jiDNbY4)>kq~LH3{6*yx4IgRv
zSmT*CaYmU+LL4Cy5{6M4Mzg6cGWi%~bgY!d0>^3iRQPzolzcG?Cu;ayvmberHH^zP
zpC4*}xtpZfUkT|b_~Gyi4PR=Q!WDGSn5tohW`A{Mn5JR62q}LonaSmrOr>zHhItzH
z2Cy%H`5L~`P)A2y9Sbxp)KJfl=lxhjo7eEChFdfb4PR^6qhUq8{7W?~(@?UFwMxTs
zN@%WYO#ULrPa`XZ^OrYregL4(Y7J{RM4Yv&<~j{Kgsc~&WCNW;l5Y~SS;Lm3WUG*E
z?1&KluE;Dqh3`u0>`o?qqv2cjNV9)+Jg(t{hJ6~o)3BezrQtB!xykrJ!vXqy4F@Gk
zWLP*S%B06w^X;NXH2kRHs0MPT9uq<ZR!yCsH2kdLB5g*)FSL0MsfOQJsfJS;&PZwF
z&qQ0imVR0T39}H%ACq$$&WoH1lwZ*BKTSq|*Kl3K4N<tP;fjXGg<REeO@!2Wobje4
zeSga?{0}Ld^1n3vt>H;OO8B{F$GolK4!s=5<c9f=hLIVGpH7?iG~Cxv)Q?m@9%y(-
zC+|m!AKNn$k2DPZ#>_v`JUiC<SHpiA^7%pD&S?jd0)7Pg#|!&W#E*i)87<^T$3JpO
zSVH`Gkr~5NNZS2l*0^q_`H}9&&|}tXwR4L3!P@yJ=_mXc-Zq7yxF6re@)+Jfom0|}
zQhr4F7ivGA^5bbg+<ticC@tAlKX$*BUB-{Hew34PSRhL)FPy|7MDgS3mRv@iez^R0
zuh}X_E8j|Z{qXq_@gq?yrupIbBkTuzdg!xE-H)IjBmqCJ#PSNo^N5UwM0g81k2y0|
zknDzFhM+f|XZaEHBg>C$KVEHQ#r<H%t1#7%ihevJ!pee7t@Jp0EAg0D^`n|ds!KO(
z_>uX46l!wtXIN7U<`Q%KytmF8u-B^VN3QTZKWh0=TR6K}M@Y%j7J2P>9yOo!gZLaf
ze!K`teLr6CV~rnc{b=CFi+=R*qo*GY{dmcbHh#4A!!an)$d8&cqs^I`lG#`!O$3_?
zHWSP_mw4HaSNv!p%G7V|N6RE{C8Xo(lvk6I8qcQpUYYfpAD#SYHZ$7J4@TSj(Lu=T
zv>zcu3l*iDfuyq^Z-{aiKi(9=j9rBkJDIPWAKm>Z+%AQIQ6}~B<1Ifv@neJ^Z?iN%
z2Kn*6A8cyVl*~SU%qx)D*N=XFyd%Q?g71o)I!q-F5aB=(zQ;nMRVf_o#|JVRAB+4$
zKZeO599WSxM99!&A;Ts5ksnNAMh+&Cjd^Bne54<f{rJL<QGSf}V~ihT{rJ?6@qSe8
zlK#}Z_&8A`r}6|pKJ(*qF3)W_nUxb0{fKu>C&{-zi+He7Vv--k|6a@e(vK;u-H-Wx
zO!Z@$AG7_K<HxdR6Vv^e>BlVLGuZz6*&X6}fwzkt8I$!){p@vPvYK>BzjijWysy|?
zKc;`5Rq#mG@Oa)=ek}3hYd;qFv5>28thq>VvD8R~-tDdPGc%U@p#^f6`>}$f)ZSVq
zxNl1i!%9C^`LUYKi03go)tHN<jlbeLKi1Q4=qRLPgC86HIO4~Te%yXGdy^mA=z{#%
zEYYs>;#>UK>Icd4Sfb$YqC5Q9>BskeG!JEeH8;M?k8e3jAI5k4v4?9pn!AIIpBw+i
z58`j%XYKW4AMIgE&Ub!XKbW<j246p$(NFK?{#hsS1Luf6lF|+dve<Jx81K8R!}KuU
zWsx8C<Cq_R_<7?Jj{9+fi_wqY=x1awPx|qzA3yu?3un+*jKe!ZtD5&!&M7}m(}T^6
zpApQTS8)6O6h<HA7W|@8;+!An*&aVCM-mtOxah}asr`~4)t^oL&c1ZYIa(({o-dKd
zre2ZMtH~B#qgVVl&Zgdw5^f4E3|7n+N!;?|FB*&=5B>O?W9Y{{KkiE#{_*3EA9uyl
zXkCw6LQ7+N7}&hW7Wl}IfB7KLQEf@wH7q+{Jn^3&`E>q}Rjl`-__kgZ^Xpiiojd+k
ztbpiTauuUyVI4(uM08ZpQB+5&4n>EmBTYxTj&eFqZObX913F6ScuL0;I*RKUuN8Z^
zKFgWNds0V99W<K~x@~L>oJX2Uhiy4eQ^L|Bw!xRt?eQrq4dD2+o1evIut}Wj@;V$+
zONOr)qfQ+z9X=fc{C4VR#o}(=UMwC#60Z&}oOkqGO^08Ht|P$iB=W|*U<P%%!HP83
zu#S*$M$@+Cut_v>gNJ$P$kb6oM^uN&TspRTb1WS(c5QCFijKIBgwA&{IhAx&lpZ}J
zy<@)~uMQSfSx1LN-r5bh6N^`*c~{kKGv>OkE~R}uFU~S+>hM-h)Rv?y9oaf^M3So`
zkF|HnrA0B9V_0r2_F`*Jpm$cjVY#fO#rd3Pbv&ozs*Y<q>gjl1$21+&b=24Kf{x)j
zKGM-Z$BR08>gc7Tp^leybkfmTM<X4Lb-c>Hv&M><O?14h;}soEbu`n_T*rg8Ih1cW
zoBf!Ox6si_M{6A|bsSK07$_t^);N`cysZ?~p1s!bnvQllzmKOq)?p#kXK9SSu7f%q
zId^BH9TsI5m}0!4<4qkTT?9$G>i99I;<UPnZaTK_h;`TT_OprobBrEB_=lNtwPJ7S
z=+D`wL`QEOeQ1QWV($p{6=bv@N5e|6K=OBWT(4DSc-QoSI^NUqp^m|GjX{EgY1q$I
z>AocXK8Gl;Ajt<JKX^AvK1BFXX%bV1>7el9#^{u%5+8Hobo(y>pXeB&V<bl}r{Y*0
z<8+K-_wPg*M(Y@p<om2d%|-D~bxh!-l+GHjgHd*8b9O~WPdT$E>iAq5KS{@sIo1>%
z?^jAp*71doFLk`zHGP*a?Qvl0R2}Q`S2<R&$_yPdb$p}aTOG4>%;prol-QzUj*huH
zR?ztOMLqdq^Z1!x$3h+C^L2bBg#48y<{}-7bu86!BW_W$<o~38%@J;rpl}&S=~^)=
zEEl!YRVuEOl2_?itz!+xLC4YA#zqmY)3Kh;U$|K!<LLVdwt;~Pn{;fZe4Rz%)}|HX
z?<JNGN^I4!jdLyfI|O&@*r{We@OD3@__x|6?2#x5C40Hzbexm%|4zq#nxc;5I=<KO
zgN`H1tRpm3t~FOYaIM&ug62UTha@`nL6O5k*q3ud;y-eN3e~8aTk$Ae#I<6SoY3);
zj(c~FDjA8indZ+rex>Kp@eAGEO!K55N%d+KKip@W)^S$HZ?vd=#u*)D!U+<FABUwd
zN^)Mu1sxYTFAWpF>tLBAm*_=v(@2U8h+o!mh2C{QoT1$u^E!u@D=2_=0o<fprb7t8
z7r>u7Zt;;CK;Z!X;_{i3c%b8<j=y!>=IU;o_=n1)jr%(8=(tORxmIk-wPN=qX=d>Z
zDn#x@NgnC=SI20>${#?L>BfILN@N#&W4T41F93CR3Q0=9Rwxiaxz<)e;Z-jioyHnP
z0w@|l`2ZXNqy~@{z>@)#2!N^S0X#L|f?%-#hIUDz@Ck{M6b~S0d7PxANXiJ75@fEY
z0(d&9SvpCmT$T+8U}S4+@98L`iZoaaz!^Zpx>kYe6<q=BpJuRA$F~_I?f^U@AzxRo
zs1|^q^#+g|fF3{~fOr6j0D=L80x$#i2l#Nn{sP61%|-wb;S~h=9g1>(7sv?kPX+e3
z35EhGc~$^z`o|e!0sGqxNyPx3383)_qh<h=gjC^x1W;LczM=7M?NW%<0>})2q`Kh$
z<TV0#tdJ%8*^<iA-fWkW7eFlv185RJ?EpSZi#;2_a{;_}!>AKL-2hhCGEd#COl-Z$
zs29Ks0SvrkKF=h@tS{KfVJ9^ZIg?)GxCwtruu)Rp@KCgA0L=n;HGq!-CPQ-}Ed^f|
zd?kPu$<$JHE$XxiptVT0>9NPT+62&6B#-6o1LzRIv;d|D@Ol6p0~p3Z3!qZ~odf6<
zz*_;lVK>{X+Ro}Gq)Px@8SYsOZ*myh*@U5c06j$BGk{<A7z`A?9YF5@`UfyTlKKSj
zj*z~Rk$L+GVfpWhoP?5r!ru>IFh^4OAi;NjiL%TOgbxv9EgvQcOB*U(qs~VGd>p{o
z0LBIINdWa`8J%YtBLgT~GGjylf2@htZIM2TtA^d2WsC{HnqZ8YX$-9qE3qp2X#i{c
zRs1}FNuobqa6$l|37IIEUBF~fEN5~6Py8AEf>YTdeR98w<X?(pN&r)Z6n2^v&In*;
z02>21H^i6~!0Z5)2CyuEIRU)(jj=#9=L(-EIA8E9K`LBro3b!~MFA`p%_RXeuM=aj
zkMZkdbUEj1rm=?Y58&@|=86DT3Ry)v6jHZe#WC*q<gK>-tdp@?pEQOILMW%HYzkm=
z09yjs8o=^9<|@_P7QprZz7d@r0qhK5chY+Q>z;OYys;~Q$rFrUS4Q`+n`ssaqu(aW
zWZ~a&)dzUUJUk(M&-KeS6-4(S4g_$Ji#>>N5QhRd9Ke+Tt_E=O593GxKhu^1_)*3!
z^S$`d0FH5yz860(NOB^8pOU<dYO;4H1GqpB?6jBFuK}D2;B)|IxDYlO=cLVNh5sf<
z;kpyXdEu!q+gUEk2wxKXU6A8^SqLZeS^(GSQG+NE#Ek&ASDW_(c)+Isjf(zXBoy8j
za*Iy^A%6?r>}N2E;U9_K5xgsSPmo6VFn~vN+IePr5dQ}7A3G96ks$H~kw1unL0;Y(
zOA#y(M8i^vpvu$i6AY9y6p|!Hi%M#05L9?9XRfql7M5Qu$ba|Q6)`*!MDZj)cpy<S
zXnPoE5UwCf1@Tl6Pm82%5aooF4x)?@<*02)<%4iYRQ;b^qD*Q$)SwQP|0!>}1vNpB
zpqKg+4Bz9_VTNCb9z=l67QVW5Ix{+k8Ueo<38F#}FR}|k7(rwNF=M2e8$^`)1<Z;;
zJQIW&MAjz53ZiFAlOYyFTzEo|W=~<IASwsJxvm*R6(MvEnL$()PI)yU)q}RvV6;Y(
zP?DA8*+Jwa^{JK@M6DodOH1krvPpG>)D?U-i06`W4*2uJ>n9~I2x$;R`TbF<y%a>F
zAYKciU64B^V~vA2+cf)?AU2G%ng})xqFE5lCG~~D#>*m{y2qeGiy&GCq0h=`6~yJ4
zIc+3w>mUz$&3rY8J6?+gwiSik&QS{62l4D0t233g7)b|-z8*wJA)N$S1(T@ohNyK3
zqN|WMr2*cec2W<Ha1i@~Jk=k)f_N*4uY*_`#M?pi4q|K&<AS!=?Gwb{AU+79ZxH>0
zcqfR$8>0h)7#PI6qR?NEj+Bdq`tJoXNF<LvcHd%nKM1CN@ucm0KMZ0xElm`L1Tj>|
zFu@JwvTE!$sq=9VBZ3$y!cW-9Vs`dX5+xZeq{_MI7%BFIZc+GY5aWZG62#OXCWz(G
zY$gZsned5%pC{#$g1G;VZCA9eFM{||<m9D#q)iKAdJyx1n9uP)YR(XxEjTlXSwbkM
z{~^wi=-i<F=wb9Lj>#o+ks!$eAqzS3Ez%ifSS*qyf_+=0FAHLM5F3No6vT=kRtD`S
z8b@H2ti-i6^>b0K$JId|?fCycKiEE*d$EI9&soc~HVBg3=$5vbrQI<fEz8;-#Fiko
zN|tS$)|m!<?9CSG*Y}z`f}q0AAa(_@n`);mM!yMSkH{GvmdK;z+aUIeWPGz+M)wEt
zJ^fe+g+lm&&OeBooPr>(=Z_r>;#d&JDd}e%3gWPkBZ5B)9u<t8vZ!z(h@XNu7sPoQ
zVGu)7Oor1z{F3A+gZNcAZQv9~Ce5P4nPlo&A-@H|PhXT@2;yQ8SAw`I@=HPd&e{LN
z;D@x+-P1@eOY~y*G(Oa>v9*$s{EzNwH)uH%44N^K-t14B_blVKc(z-De+BWk5T+Kq
zZvDe$D9-k75D$WQC~N<oNbU>Xc9@Tno*{n-|0el=d<ukYU)Q=|jL47@LIIJ`r7&7J
zgd!o^LL4C!4cT*w5S|c{8bX?obirbR9P|49tT_R*cnBpzC>g?&B7bZHrG%GBN}dw(
zv|#BF+D|a3RyKrkA}ODgQ#fUoLHk!iP($cY-d-9`A+8X5Jr(D=@P^<E;d}@eLeN6+
zhtNNS0U_w@O9(H8&?tmp2%!)vg;1GlPh^He*qB`<Dm)TG1tI@N5=ICaAxs#QpiY?^
zaWe!<G-DxD4B?p&;u1{=HhMmrg}hZFoybsaSkWpWR1M*|5ZVlmR|}zf2(R@qYKM>+
zLX8k|LcIDRyJiSGmKY3KA&fbeLz118^jl};hWLUkGcSZ%La5I`NgXMwZV2PnS<i;R
zP-#RKdA$&x4`I_>vwjE@%jPx+q1eUf3n6^6Jn>$2>%|a%l+NCDIngkLa9eBUaI<j;
zO+t7xgl-`;4WU^Gud=lvu(QoWXc0o=-xDuOlq2wp5DrL7k$1b2XeFez;FT+8Ted2M
z>(85=LukiI4B_<<?ld(!gs{7VweYJnVwI~Vv7^X42~xqj6njH-x`aT5uENJX6Jt@`
zL+B9#+ic9SdUA?GcqfGHC(YAqjJHDQ9m0a$=G%gle7_~FPY8V_+K(;yrvQcfi<{J8
zvF}RZz1;DEA-osDwh*?5FerrgLzor9><|Wr@IeTlap*$$FoYo?j0j;QhxFCVp&@)k
z1#bQdVYo=rh81nEWipB3V=;hF1RqOAg)o-06T)atYY3^sic-!jk5fOD5+;N&UdZF5
zR(Tf7|2%|AT$R`3(?Xccnazt$5&S~%OF`T*DQB3Pj82y<GX$A;W(YK%Ml-EBA<Si~
z*pf-+yb$Jxuq=e-A$-L#ENd+aVKK)lgoQE@Ctpg8YL&z3SR&CnbF8Hyd@Y=V&m?LR
zSA?)Kgf$_omAsF$tdas(hd@o1yiPRN(}D0sDp$>=7|8}9)MsNhg|Jy#MZP73t-@)m
zjP3|wX9x#FIK=rKVeSgy+Yt8BBtl>d_eh!F2tHZ55W_yMrc2QusJz?!PLR?4{1za*
z-6(_61H!3LWo^pg5K5V`;~|{j`0tG#3E@W}M?=V3kvJwug>%1JKhb3si}fEIKNG^w
z!hc~K=uZa6e+}VO2&d@;p03I$k(%dxnIvaL;Wxo^$r32P7{a9xri3vyjNe1J974x1
zI)!m1gsXH-VFbgtMx*7!D~!Tn+z8=j2oFMd7{VVR{29XEA>0n(7QJF>#$O?v%SfzU
zVzTzc43mE2pAeewHt&RRmxfv+(Xnoodm-Ep;l_A7b^2U$<w)aPS_ap`Biaf5NkOwf
z82?EN^M&o1b&NC*d}QVig9WC9?QU}U5DT&~af?5r4dt&@VH6GHi7<+Xc>$u48b*2;
z#lrU1$h0ti+h%qul)JZ(UCZ-(421DT|2Uquo(!Wz7@jb^VVsy_l?<b780Eq|jss7L
z<Y~b&VU!lK__9ScZY;Vw)hZvx!$MZplBg>Thj2xZLNyGh@Uz$BjJm^MT?}VSWcb3+
z!tjTohwYzt>YOxo3^r>2o6BPR<%{uk@DuMRLScl%s2j$!VMM~H5JsgiDu-c&k-<R-
zqhc7*Fw8KlFk)eR^oe=$cJ${OvC2c@aW-Z|R+qXK3#ZM$R62I!DT_|>nJ`$<o~jjJ
z=Z}YBR1G6HjJz=KMMd>67Nlk5gpnDxy&}qG)eNJC@PToQlB_V;@@zqpGCO1Zv9us>
zXA7ft7<Iz9o*i2dNw5J$PG-g2@kFBp7szvA)C=R~FkT7c`7r8-(J+jc!gwK!24O53
zYrPo8U%V+#%jRtIMR~@>>har^TRk0b6h`APnuI~lsc*_G#j4zzYc><YpHIn~hmqaE
zBxw;w%P?LGqaF3b7&yvk9mcC+`@QqmS4_62K*!uRVYCfn{>kXVl5zHE@vQ{SrhOQ%
zGfSTJ!Ut9dX^%t8p1Us2esvDxjW9k8V@McX!nWssmsS@>*D&4;bDwX#8!?Qx!ss4G
zk1%h46P=Jvm`eS(h4cxducY=C1wJ*HN}YaTydw&Hl<=WLWHSaxW8N1WDEM9&gM=`3
z&u(*Yl7A2eqodZQ3=Lyg7@u*teoqXi8H6!9j4?ErdFIDqj1)rtNf;xNd}W!cl#G&S
z!C^%?O=H6tAGRIZI6;z6g&cZ1J|QWggW{8JBF(a`^?4YR!k8S!*R@i=;N)Jmz6>K&
zAcINS4Rg=BvZsYHJ&ZyT6pmm<7&F7TOlK0d_kGL?V>x*uF*}SooTH)ET-u%x@_C%2
zB>#$YnjWKYA*Uvc8Hv2bVJu;#>~E(ildNOrQqfr!1_LDwR9g|o$}m=iu{w<NVO$7f
zO&Dv#I2^{2FlIlDuM6WFdWqZd^<iufvQcn*7@LG_7No)!AzQ=PmXu_6tGGk>PQhJC
z`EDV5!uDC>%=oQD_lB`g$ai6UFJ!-9rE@Xr{2=^*;6XtO4~21QuR-!7{lh+kdnA7g
z<7gPi!Z<EEza}+Lgz;07|19Je!IN}Tj}k0_;gm>DhjAvUd6wneD#WC7VSAtEXYK86
znB6}xF0x)ae^JZ2U^jqAvimOD?Yv6oPgfSkqcE=1--hu=7=Lm(Y&Y)u;y1%Q#k6`x
z-HOBmUE{aH_&bbLwK`A8{EJCl;}^FZx5M~{c2cMYqiZT;-3j9^C#6ExJ;D2e4+JUX
zT`Da0-!Sq=kP^Xv^v2ulit<J5(jIdXh5`{36k(No8H^T*plAfH2;32*MvxZ4(-D-8
zfEReBNAP3>B_cTWwplC!2qAwWg5pWO@^!0Z1jJH;Rf?PBqyI9Wk|@dL`9_%t%17Xc
zplk$_R+<duBDm1UB2gmPoXB%Vz>KP7VfMZWv&Ua%{|nVU5qKlu$rT|<@<qUNPV@*g
zMw?px2zVgL>PFVS<x$E5k{XPFHBuOsjLaJmQbEv&AR{S{3Na(Fgv65acmxUIyfKa0
zD@FLmADc{UHc=&lsu4Ug@UMYt5mb+0Nd<ge0htlhh~OcUBB&WbRs<hK@Nop$5#&VB
zC4#OI<VKJeL5m1lMo=q)+7bID;|megiJ-3V`Vl-E!E?f&k6_BF{N}MJb?UKSSp`Xc
z_2m%lOWEca4I+3kf`$>i6hYGnnniFk#VozmY!pG`2-NjvlL)@~%-B?>(7BV=M^_TR
zUo@I?D!U|J=F}f5%5pxQZN0)q&bD{}V5<mPNAQMJ{b~elc%FlBs<n-vT?FkV`dS1$
zB$YxQo_S=c*@41&#_JI*+-WeZTW@p{wRJgW=LoomH+z766vK^O`QMD7TLk?gcqf7n
zsuk)ULC*+!MbINzOP_!9y_Mv>BY0alf1dg#Bb_Dm;fT#M`$q8PD5Lxb=DQK}7lmPh
z10r}og253Cl<0dA4C3I_u?CgR|EQ7aN~APcWPZT$+-5AFWqud|qeBFT3Q|r9YZ)Ga
z;;<Y1NdzM}<Fw2OMn*6yf-hLL6h1nFaYDujQh96yeKwk(9?khQg7Fbd5cyBl>~ikD
zW_?Bzjo@?6#Sv?g;AFvPBi5?R(W0N3QzDoe!D1Rx1k<=oKDS#kKZ5Ce1Vk`1f>{yF
ziC``}*v6X8860BvLyT&#ePvcG6`v<rdVUurr<{4ek_IdgTo}Qk2uf{_mK|pinfi4E
z%W2zO>G{m15iE<?J17r*We`_JuquKLlC(O4H4&_ffV(`_M!>za9XpzP=SKPGZSwUI
zymi*#|Esy#WTWVFQ)Jn=xg~<F5nPGjY6RON*dD>z2!4xThcxEf2=+#>llo7_cM0x}
zU=KrS>zfFc7EU8663ry;i{LvdT+4Slg8h=0Ek7E;_euVPkOL7M6mm%Lu;3BF9|f6f
z>YaSYXo~#}hT{>O5dKqA@^b{g2tS#W{3_&>;IPr=nFzQ$+r7ptQY8Pm2+m8fm*~49
zxEKMCed7yIF2=^U5~)oSr_08F7lq3a6e?@o*}^+^t!pCrBZ5C8xGwyL;7yv!|D)+j
zz;-IWxYxe@?EAiC%bk1Y?#qkMa_tf#35hl-q-@zGJ5kBjA_=7^Ytm*{l8TV1kdS>R
z>;HGB|MxuiInS9hXU@!=Idks4v-VBx{nBJ1FV@DT+PJRh3|>~qRa!+~^Ga=88zuf)
zlC<5m+Su;P2V`<`$iKC5gUvTn++<sHm2d2n&kU4z==SNmG`JeFXh><eSHsuMa%9zz
zO-sB@6%E-n<j_z+LqQD_F3Ox5prRO?OG9oAc{JqJu<CVbH%_`9k$ftcU%}pc>W|Hy
zm-Ip!3Tr5<p`1!yL_-M;B{dY)P)tK{EjfY@J4_zh!>7=@b$J|9DGg;5b7?I(If_rM
z&UTy6#NB&R<uz1LQI#}2^Gl<y#ZnbDJaMjm=MmyajYLJ2HPmcno|>Jts)l<sR8!0~
z6s(>UJI7*f&HF0RQcW#cLR?G3yjAAnzq8a<Jeq<+gRa5Q;0;P-S{kInO_uhU$@dZI
z9ImuAUg98|R?p{Y@HLF5qBH~=LJgfXJggzokk-(OwNPT~Xvok|pKk#T^~nFO$u0J|
zikclx$_5%5YG|UNsfI=xVrqM;XiPmEG=H9-N>1~;mL(Wxa^XQU4F~6o<{DaP;N-=X
z3t4ypbW7$qF}Vqvm*n!wV3xVHhBhiw4g%k=C6lT|+G=R0;Q^Lvo!LP{v(mD?hQ~_F
znHP-RCyWO*bW}tJA7cBSt;2`0oi%jP@Vtf>G<4PQh!Xp(hHe@j)$pW-r!;iecma^v
zLq(14A&uX&Jf`7ss_`px?`rc24Ogd{pMP(@Ki=-C;b{%M*nAqsR8G8K&Zfy*W^+|}
zp>k@`kc84(Lmv%&l{D^g=%?X1g)beJIK3xEil?)g{WT2GFigX64Ffd{(r_)x!PvnX
zUeqvDOC~rNY;`W{5S8|Uib?SJko<%rG@jyumozN@LX1+eZ<UsL{xL=?T#QR{8Kd!1
zB#folHRd?Qxidq)aG~MAQIe@9YM7+qeGLmWOjfC;YIsE<Q#5S7n1vFiso-1<Z)%vX
za1vkD@LDGRx`r7Fe?!5Une<s2W@qAa6jJGSBJeE@?`U|?wYVVsZR+QgtkqA>)9|i_
z`HH@PHeZ1U-pcn>i?dQ3nQt{jPW>hilk-`mVX=k}G<>LGiIV)0hQIveo1xtatM+*F
z<IH^LjZ1x^;Zy2XV35Fa4J$NU*YK}~mF(ae4$ux2^J)cu)cC=P&or#n@VSQd8a62U
zIt9Pc@CAFpx5k$mc$qt&uN3mNhO7gU;Ot_i_g&H}H)`0SA=i;y#5ZZ!tdbMoqL8f$
zZd34E1;0~pyMo^<cyVc}+Qae(_J|VpP6e6#Ck;Pq*rj2&hJA{y^XdG*XxO804mFf0
zW*^;Y>}3VdB&z;Z!+yr**7rY^7{hNGMje(tjnwZN{-80dRDWtXq~WB7QyLCyIHHKh
zsZWJW-fQ$7B979`-V=W_(=`U4V{}1ZCKHz@H2lLp-cBCRq0=3e-e;cHa7M!gmG-QL
za~jTT$p4@@bfql&g{ZZ|<WXkNFBbGa7d2ecaGAO9F|R28`(~%;JXy|XXXLu3D8%Ej
z_6-d;=}ZI~3*6Fhn|@fJ96w4m+@){<2xJjRiNxpU5y&c#O(3@lW*5jIkW28GQ<+mB
z{6!AjX?$s!MaIdFZ<s~O+1GA~D#t|jiZZW2=P81_^79GoX(+pSsR9B8m5|Z`g%na$
zLB1jji)4Fm5lU{HxYl9<ZC;VZ1xg6?ylIsbC?!z*pZZr;n*Tu(%c!)4D_Bon$y;8a
zf`FkY6$L6O<X(Zw0*_j<mI_u8s48%eKsA9H0yPDytJvonh2**Zqdlx@H28)|d`}}u
z`1;4P^k<^Bz++WRO+X0r-{lxBC4;&m4!YDx3YY?xlAjiswLsVcj({uR3HSnmz}>8F
z(WlKiS{>Fa6u8>Jj1;^RTD>m`24A~s))A;HP)|vyFVH|BL*UQLX2;1g&sy{P6tkf~
zBZ2Q{3I>~3x7HN2!d|k8KvRJS1lp?tG*hsRKy!t(5NIjTO5i?$)&lplSqmm!^!Z~6
zY+oUPTxrnD$kkTyGuTccoHgqp@Ss3ffky;73OppxMMZTIcvvBw1=n)RhgQgpcg#1Z
zik}PS-j_RRxVQ70-KbT8z5>q)bQgHxBlBs2i$$y+RGPr!0#67$#b#xFw@Ai5DbS=(
zGMmZuEp$o)jtUZq^b&YR;8}s*0(}HHDbJas?boC+B$?%JRz^~0Kfyb2lb$$0;Cbey
zg8c>Zmrf=V=@Pm4;k|saUQT^54NTyuD*O<Ep#onDd?heUV7S2h0t*F32#ge%BrsWE
zl)z|#mj%WOyrfbwmoaRDyS$&pJipp(`<gi}lRlpLmX*zJ)}O%U7Uo0&E<fYLRdZ7W
zrV30KcvW!uT+*TVOrv6Zn%ZE|I<GZBTCWMbF7Tef0)Z9H<P3q?iu2LAdEelF;@`$h
z8iqoMw|r5~QL%Fsd{e=<6r|+01>RBkyiCfw3YjmkVNcRPryn%C7Lqq#7u54274?b0
zrvi%wJ`ng&Q9f31iGm-or#x+B+nuCcDsUvXT&C!~EbDL)dpQfNf}bh4Qec%r8dQ^a
zSJYiCP;9s47ttD;M0u$XcGn7gPJgmT@@I1$bv{>)+;4s%VBZ%~{?`I;Y!F)owh4SA
zu%2c9PdI(Pz($3Su3@fr<z|I9-zB#Q92+SQF3j<*z;^<_2^<jE&Snz$SzwpIj!X$Z
z2=GAlU5ms{fgkAvs>`1QPF!)CjL*B~M~CYTb_>+bFZT-U6PTGt{vt48iQFSF#xiG3
zkiXLZv`o6peu4Upl5Yk+S8AjVX3GCVA-@Y;DWuns&YuE@1P(LP$IQP}REJUW2+g3H
zBr-F*d9$qfHw#ZknknHj%OmiQz)3|pBXCyWlt@l(I-SY0Z&T`=z<G8kflC4x$nRON
z7Lw(2%0uewVsd>sW`o6lD;`#Jg?>ihT4vfC0@nrpW$-GuB3j&%#viwvd<7^SPG2GT
zPsei%?$Y_|=xX2*11TL@b$q1bV;$LaWY^J7#{)WY=*X#~vW_Y`a_PveqlB(r777;B
zQAkH#9gj~m^C_5LK`3~Bu`HmY@p|*}p~R>P>nMLSOHmy~RNAa%tpfQH^%m1nTv3RR
zEtM*%qm+))I?9k=PyRajBUx5Y4!Yq6=Z+IaITq>P1gW56D=J8~N;<aBFo{&vagPpD
zhoz&Ml3Yv2y)1cEv$~ENib7{nQ%_bM^k1K}b#0xOzQa&anhv3mMpew`nx)E5Nxmxi
zNIhBG!wzNZaC9_MJg$O~j<gO>2hZ2_6$}&%b@W&*>)$m9DWQ&HuFnGNsHY=C1>dMC
zmsd{lm;B8$$%~_bA~w`<-=jKzrDG~kQJN@tpN^&qA!jok%`@>9I$CDptrT)KYohbk
zI_}reM#rrSX4b{Bt&ZuV%o^=Y!uC2k=-e%csX89i(UF#*;}MniAq6|>7<?pA4xfj0
zbXLSJ3NBb|UMnKI>3CE}e;osKbZ1Rf)H4b`Mg!3C1nc-{@*(%6j)m_?J%9MLj;9pP
zU{4*d>~e_o(y?V&>iT~3+56<PI(qBqqlB!PBbH1`a__6-IYsHGASutY?K1I{pKG9w
zK{|%(7{M~@cu~i&%vgGFw(<}iLlx!9phU^^ORdg}k+kabNxO{KF-pg19WUt^qvP2n
za;(ln-Q%eb$S?CdFDo_%$5B@g$lO<q<(=FKIwtDKpX>knnM8ZIV@y_X&>@4)?G+t!
zbj;N;jXKxyYG!$6D&#dCuhT>?$r(D{(D7Z}?A*Y3q=31yf;&sc*jZU;>$rYVj4P<0
z|Jr<0$6GoU=y+eHeOtkIb-a@)bDoaho=^U@=POFhF6MhWDvUD=4b8t$#}(1w106g_
znGA~*!(ysP$f#g)y7GrQmZ(@BbkE>Y9m{kSG*HOECptdWaY4sL9m{pB(6Lp=HXSQ<
ztkUs?jxTkr&Md<^9czf|SgR+4z@O{M8POaW?zPn9xys3T(X>V<^_7mVRgx|2kDIc7
zqhr0!O{rLSDa)sqvTS76cu$TkWNp&%P<Na7W*rrOkxN?0;S*%}X(=vY`j+Zq7CQc9
zf7kK7j$d@_(XoSNd&%6X<3}39A>#+C>tDhDqo4HTAi-UFa$w-kba6#>ZeiXwTX0A1
zZn~OR%|F*0dsXays!_+U-OPRLbp7P73a9fV!vSWu-uPX|K}O}XIH*NwQ%*@TAIj9g
zF&&3>9ML&Bi|X9!{-FD}j-v{n^1ksOg@+0rSNtb3Q~jfmlM0^Faati~GGou`IG2f^
zSIF$Yk`8r=O{OD@fy-=P9al4XZYboMg4cCkL6!Pf;aswNlTLu9c*VS}D0k@9zm|u7
z&9&CgN`WZ@Sq%`$V<4M>>;~*^xpF8<i8eX7zG&A*ky8bWj85e;kXzy1OC?SwuYui%
zL_P!g4Zy%$OP&zc%|ccIMX&O)WNcvrMGW``0s}=26f;m;Nhofhgn>#1DjO(i;QGIb
zos>0_fy7b<N*l?BcRpo|<h%$Xp)boBC~u&Gfh$hTU_}EB8k=)+nuJx9%zF$}Gf-9G
zJiDo^m$kZq8V0_5S=2Oe6Up!hU!B9Q%320D72@T?NiS|&FY)u50ihD=222B%0mDG!
z(RrjIK0G(!v<)~cz}@6O(PeBA%QG;$p#4MDBzAm%dFfo1&_HCMiGijnVOqh42I?57
ztMGaTG8FP&UM?w@^$kqlk#}r)yMcihCnQ?s)5t)qcp4k{Yq+?%-0XinOEUw_4Lqpm
zEey0Y(8fSp6>MeTJ_AGh$dTL46J@M5+Z(l3!TSw7ddDE0GTRwwub8I|Hy<!?uwT9|
zFXR|mJ6{I_hrj#3H|uENAp@NZJghi78<-H~ueim$Ju7Sff6OihUi~~NVK<63&_bf6
zM0W!{44gD@%D`g=9yjp1ff)v#Fz}>-{sy<%;wb|?4fHkeoPnne^islm8+b+`&nkF*
ziu`j(vg70HE^Z%1xiCdsop1J2I5T~oCY1gE<$Qr99B!^FXAU$l$iP?w;|vU@0u78X
zFw(#fR^Pxd1H%ohEiH?Ep5xqKS<X5#-+swqMxL9&ld?t`7;WGs17i%F=q>AgY~ERB
zvXAFEEoNO4FB|AA%rEO%8MAVYrydMUHSmgoi3TPam|`Rc$j}LFn<XbR3*T+_qF8t~
z%dguTe6GuBY*XsWz-zR+LKaP$pJ7W1CZ{bGKWm)&QdG=ly<uRcfgcR)G%!om@nZu^
zX-)>_uqzpO)4+!YmKe!VldboN-ml8H47_dNw=Low1?MUFu7dLoyvM$yn90A$!21ec
zs34Oh#E;}+75pHR$gif4*dp1?|30hc-AN34nSs>?*6=N0;8O$34XjYbTgBGAl`yPS
z!QPt^L*0-=wFrCJllE5zzNRV+d~V?5o;lVT_`<-K?EY@tb%p5qrBOaZW?v`A<u$)C
zz+2(g8@TqAB*I^w4GQ0=;3fqbwb{TH16vJjV^<w1_-r@ut-`-kkUam<zgNK>nZzFr
z{AA!y1BVR!Y+#pxy$1HtDH-_1z#caGmgKaD28B)j9q@I@V@W3O5x*MPPh}c7z~0wA
zIjE}VOJ<WrV#O7M$A2B9IW?2N8~B6m6567JN!Y!QJZ#{If#XUiO)us9i<W;P%TYR_
zTzZ3Fk~i<)29BxNxpo5vPZ;=zon^n(tCHkz&cp%ow1G1QN^xz7#90I96mvd_^9C*$
zxMSe1fr|z%(McM-uLqau0I4Fy#?1x%?Ye4UUUtdnTD24}ZMnhy8ecm%4BRqso8~k_
z+++tSU=|yf%FfI9#wBOp<vJm<NTeikO5~ErDw9LKvPoo@I6U9rJrUy?nmJ^0gl5H=
zl845mPiEnCYHo=<5_x5Ew*oIp$k)o`MCyx`%~v*y{1T8TAW=}FutX7wLNd7rWL_?v
z*F)5-XJ73ji%RgrrkF%=i4qgU`#t6Bt3?Tkk}`QavnfBUp7(|8_1oQ(Ok$QvP8>lk
ziLw&qB+5%vkf=(T5)~yXNmP~?v?ez@7r&NyXb(?Sx^I(NMRGlc{qCmZU0F?{x<n1u
zsIbnJEu(W-ZALrAw#h$t$a^JfOGFZB2~9#s*b<J!nUc^Y3<)W58Kzmz<k+AoG3%Pd
zr*i2zX-N=1FvfHx-dK?@kjZgso=nEUezPoJg0M?78Ipau;Gucj4rZw%QCA|CXe?1r
zV#u$ep+qC<R-(Q{1DU*hIoQ}CM~Ww266Z7-=h2?ul>GiQk!UK>Orp8O!I7fUPFZod
zEdF6K!^^Qjjt27!r<KHg67wY9m1r$-zr+ZMkrHhr+A85gB!?UEfW%W0Jtf*pbdcyG
z(N%&gk~&H}%<@a{FgKop@{mL)30|UcPtDX{n~i}LQ@n0t<SqH<Ix%3actoO`#A6bV
zOU!I0AC>4K;boT<e-_=@E<cMl6U4{ojAMs$KOvJ#J>-JqA{b6{JjqN?O2$4d(Tfcy
zF_<PN@vKB|RY>07@!3lG>;yrh>Z2%q6{JF*Q%FArpO<(clipuqKqfv=A@iO|y_iYy
z&)91wyNxr<p^8#-ah_ok!xhf?m!Fm<eRGt=BpQswXo;63#z?#@F;Vf1{f|>(lxdBl
zCX3pfXSs7GYt>G20w?;v%E}J)*Op}dYl_5Fi8mGhD-zRaEo`#kV!FhuG}m)kXR4^z
z6r3UPx<cFqiQ8fFHzeK<lHcJ)qeZE$a<;@AnfQlQzgcr-;{17{VC|}@w<O+{_-48=
z*NJx|)=m|j^T^tZ#C(bOXo?%e=Su7X1wW-siG@tAf)xI-#A1mLXyIH=#_q;~RSX}=
zFPBIVwr%5(XVl}#6v<MFWfGsz3}%UyRZ?91cBNYG<q|8DsFf0H6tYTUHTAYj{!&Qi
zkR2zaK2!9y65CdZ1Nrocee<nT6qfA^Rl+CV7GJXpB-&VOW4*)%i8>bQTG%MDi6&~I
zy@|~dTj)ki6f&`u(&!Z>&M8sfO6--`C-I%cc18JK;zxz-kjc$)Kd_01%bf}mxu`im
zsn|*{<@i}*m%?`|czLbyi^Lvw^R)&a-lX%Z#D0mtC5|bE-`L|MepmPb_TRDgg>mK|
z5`RjRYGM5)lLd-gig}3cg_eBE@Q-IXLU;Nvr@#c^AB*Z9r5kZ$s+7-hiPK8d35kCs
z){PPNg1RT^Fg-b^ygbE5FE4YM^5;9o8M>4XGW$MxUh(HP6aR2Q;-U&(lDHyqRpFNv
z?D>0^YZBM#x=rLT!SCCDC2mOEl;90PTTW%UrPwIs%B<vr|F#O=QSh#USxnw7mE@9D
z!E6dLSf_CAoF)n`OYJQxIm^J`##|-{8I?!z<TZI=H1eB(iP>k8YVs*yqWm1m4J^d_
ztWOm-QN-j;#Hekes7lrRO75yAiYc5cH+PM7N|-2VqLhi!CMuYyXySvH%rYj*nkZ+Y
ztsB3$RWAM2BxmUYc6l=yStU}*L}e3I&gH10gdA)Y4qPGbe@xCVQh!jPB=>t%7S$B2
z&OOTi<#^nx$xRGgF?!t6t6PMc31OnXi3TQg#p9T8O&BJm3YrSqCf*$+EEE0f%9WiY
zCwI92#WUfXsG}H|W1x_<iBKU?CjIT)*0q%ehqbwXqMnJ}myM;x>=C79hM8=f;Xr*u
z6O9yeYZI}F#tLs`qKQJ9E7;UTGlkUNld8Ns8?$R+f>TI5XRIZ))VVH?|2<hR`+X+9
zE0kP-d%ww<zSQZ{qK%0~6GU4RzxI>u6lB^CCLT2Lm5HxSbTsjhiJ2y5ndoHVVU^1m
z6P-<TG4Yg%o+i3d?IyabC?;QcJ4-hcyxix}Ov>})v-B{ryrlV<iN{SmVPfZLvwLgv
zNfQeTholp}c+7d)L@yK1ndoQY857T{<h{-0OylIVw2qQv2$bJP(fcYm|C7XSpEohU
z#6S}-C}MvFCm0FyAcc=MapYAw*u;w_hA0Z7TB#w^p(;4c#Bha-$c!Cn(!D2^|9ydE
z6ou2EFVRrPn->Q<FPj)^Vw{QbCSEZyjV)zjqKV0wX(yTZ*+~uEpZZk&MIxJ=Vqz*a
z=F0oqNW$r?l!@0&yiR+VBhMGMzWhM$yd-%Q(GzX#8D=tI{%s}u4XW$7Y+o|zR<qes
zCKj8RV`8q#=uKLkiTMhD%S6LzskcqMV`83(tS6IKSkVKL6VvZymTCd{mnP>1bJfKA
zw9Hvzp@QW6Ad_dgi4SQTCO%S>k4-E!!AXY&x5P3<`NYJhCbC^lzV;i0iSoZUlkfZ$
zCRUnQWn#67wPtd!F{d^LOcHDUldK@mb|B~HCf1qwf?fWAoIXZ=$%Y#xiN`7HiS_lr
zF|ppnX%lBmY%sCW#6Fs(iA{9=CVrshnAoDEZ8PyL-va;1=gelQh{C@!xoia2SIO;}
z^zUgKixLHHd*9%9>5nFUVlPv%KhtQt$z3MAlLi+&xBORBENEs+C1&%Bi9L#EuY!ff
zB`?AK3O{1vFB89+IG}<DP5f@+4>ss&nK48DsfdS69A<w(qM1L=8c)BR>iTIi!f;f@
z9y4*=#NP@}jW(Yv5S>u?DFy#AagsW0n56yhua;8)&z*D5nm9*?X`!fv^Cm8sxMSk3
zN^()b8zwH9xNPEziK{05Rm5xTo@>o`Orz@xIlSBCnulFu<dg}5OEQ?nO%t~i=WXQ*
zc%>IkTUjimEabG1%R*KQ*|->Ioy=}w@?$3d(Yo;S<2NgZl}v|mey!I7d8aN)O3Np=
zm2{ar7V;`2pMs?1R|pg=pkP4@g)(CcTNwFKvKpb7h2j=!Sg2{CgvA?$P*w4ivQXMW
zc?%URl(CX2^0F4nS)lVj+#|KDkSww>Hy65awB)5ZqN0UL7Ajk~`iVIDT<Y8X#;RJW
z>|JFQ3xu4cW=8i|sAh3QF8L#4u)w(l*2*l8X5n57wJn;o<nn2r3SP8^6c%&~h6SnE
zYzqtCO+15X!Lm@ci_EoBtRHQrmnK?u6pyQ*XTi^u94I7IFj6qBU|cFy&q4+(XrrQy
z`W6~k_}0RA78+V;MEzJ8Wg)iE*uo1I`desXp{a#V79O_H%tCVu?JPWCp@oH(7TQ>7
z%jTOUT3Kjq;eHGEsbKF(a%y`yt$5O2{YNLT?7ikkdu6|q^21Zf9*y=EI#}rI#yp0F
z-<%Ix=xBk9Ge2D-9<snG_+=aN5q7rF#llk-dRmxYMs~H(!@^@09<k8P;<S5W2Hh1L
zT0BvBv(iZ)44#vZQ|A_*v~c2+B=_5UWa9z(iGT8J>S>D?384>jxA2UGXD#%$Foz!u
zd(E!%QXHMmcPKTZliANn+|F}Kct0z7fAM$wc@-o*cbVjad4Po%GbsZt46-noUy`2*
zUe0)Ykz7~J8e(Cng<%$kTNuF#ej(Y!!x|<dAw27~{Y+7=mmF>3CCaz3*y223QlmF4
z%(U>bg|QaKDav#UuUZ(-FV%fwf`#R`jfo0Q%FKPTLZ&D<Rl!#*Ov{WNR5SG&MYT5z
ze=25Jc%9vCa$;1QCkf6n-<h16MSaeY^A-PWYQy4CYO(_4Z42*Mc$2obJL_ADLfa#K
zd~<i6g?HIae945I;^)^RiSN-|Exd2xt0|KIDbri#U#M^fIS%}Rg%2&Pv+#w=Xo-c@
z3i&9roF6M>se;Qae3D83R3Xb1T*3aLkX4zndn={Z5T|;X`$_X4%zKK-&#AGjR+d3#
zh0nQkB+=>yHVq47;cE*|-*kBQ-#2WRg7$hVxoP)K&pL#g6z5h8+brHKo7!w)i=uEg
zfrAfR#>SOeTt&dcE4I@wS@_$+F?uZvKPa|C3huP<i-kQFepJDqEc|R?mxbLHmVGQ6
z>^D2UC!g+_YM$3TmXX@4cz#!KpM_s7Y#%DC_L2K7{>Y>84)cHoe*GR~H|%2WS}6xK
zvl;wD@&Bpd@RI-ciia&6QIx+d9A(q+QjC(a>KSqTu5p|lfzH-ORvZ6VJcSZBEZnqk
z%Ay;_Me3ng@?JYbpKsxUg|imUS?H{mLVc+q$1R85l>^%*Uq_cLTxKV=Q0o=*s)cLx
znV(BaxK5K($iGS;@p@||qvp@gd&|NdRkqt!GM>znH28gfS5dOqN$WhdBUuT?Cz}cu
zw~^h(pD#N(Y~-|&%SLV+uu;H99vgXW<hOAOk_`FC`GxFXD)|*<a9uf@u%L}XHj3CN
zYNN0XMwQ9y?z-wQN#ma8%^tFt4Z?Hxnq=<wqby;gq>T-^-BLCx?-S*1lvc$kWAoA<
zyR40JHnuO4>kpg!do8=y9+^}AKFF*@W*ehyjJ8pQHxJn8Vxy~#du&v*!Mg}DY*e>V
z!-i?YvQg7UEgQO$+~A4Sy$aD-JR8M6FiW)Npi<J5f~kfIu4y!ENE>U;NWLzwc_yK4
z!?6+Ch-|njxo;z|;VJyw8aez4+53(9%T7zqlX6!brKRoUuc5AuIyQdjCeNj0k=vr;
z8FT4GSzo1UVxy^z1`2PeAX7E65!+}??NzYWl(hMf$fuc&RyOXl(cDH08|#LN9i@`b
zt(G>Xt8a<cHtx64)<!!UZEVnya)0H<HKO%V85Fc1uoFMSbv2!Aw71d0#-aoAK^q-y
zJfv_Uq)fLZ;X}53nE&a&CWo1HR>-D`@)1g~(c4BJ8;`2eK5pX)8{HM&!^UF@IWaQT
z|829`t;9<|X``1SK4qgPpR)34Dtvdc7U=fNg288O>=~8R?pbPeWHJ}iSMd{h(Z+K&
z`q@a$6W2=F&nx;1Hu~EbV50~0f$UQ|<+dDoi4U?dm}+@Y{*=XfrbeBrCF~)JpPLbf
z*%)qPgpHAQvSIwITaqyOMIG!C=UO8!fqu!xVjCaW7-QpQ8)I#ZvoXiUTpQzUOtA5q
zjn|dHi3(0vaFT+PZA`I2C&n^QRg_n3OjF3|5y@A_t9EkA3Xv^~QZsCDzWWUuGi^@w
zN{$xJvXSM4!7rIUEs{@{+3Y*z?45b!n>OCEvB2hGn|RyCJ2vLgoNRQOX<phOH|~(L
zMy2N4Skc(z0M2`=j~uL&%KM!pWg(l=#-!efKDP~!d}DGV^1;L6LshC33NEqn5z8>e
z{Mg1aHgSU-OI2`5dr4x+wDpONPZj5K1-ZkH(pD;b71cE~|7wMkxJDtZZ)N$MW@+PJ
z2R9siVdG1hmV-_XzOwN(-H3xc4!+^wkBt*_hV1n=Hrn{n#!ogj+1PC3`%IZzY<#Ei
ztv0r??G}mIuOzF5zh$YGh#gO)w%honZuY4sB{#aV3_IAx6#tT8=1v=D8%rXj|7>HQ
zjbCl-Qn9<4ips2DzN5=MEXMsNhj91W$v|%Y59NLvjkYJ!j@$Un#sM1#>4j_@wsC~Y
zDHZ*}&h@$c)5hK>?dfiO$i}szcAHD`;5_-4jicnBCy&|5fN-m24Jqnx#Zd6N;5r8`
zPwjUlv4@j(GGv$4Nqp}q8>elYVS#O2C9{olHqNV}UZf=)6c=o8bae1Axn*y%u%F+$
zmuy_NamB`yhh^{k%>n0<0$-=vZQQ0E+Tawx4f<Fcx9Gi(CU?sJaUi+9J?%=~=bk-~
zcj-Jg$drR0MwnR?Jk(d-J>!(BoI9H;RdxrJJ2>3tnZrR&2e}-KdS7y{aY8I8^E$}q
z;9du{9prZa2US(70tyy!P*foW6)fa{D{2Zm$vzI2vzUY84$3+x=b(gxl8WcGQ(3-f
zBuhET5gDbO<V-Ct4(IH188XZe4eppPk8{d9sNkR?<&1Z@rQ+yEvXV+$*-7TG)^3nh
zR4~`<#F^aVpqdI+cTiIyH5}Y2U_V~YzEsVsr6?V}<RepaARJ^ksP8~`V5lhHfmDdA
zpy|MJaH2+T+kxX?&qDFhh~#Cl@Q5VtImuw)%vVfqgAE*n4kCw#j-rl(x(?jDdYcUf
z{~U?j*_Wj1&{o!S@b7rRubKu98aimDa%rR>8Ja01cF<TMO&l)ykWHQBocy2vuJip&
zv$=y7Eb}C>t#PWQ;wj%TSxbMPgVql2chJT`dj}mHv{kX~96aD)+doO}ujWi(!&8YJ
zUP!0@NT(ij(9yxg-U*#UmmfW!de}i{hdV<t-$54#T^)>e@REZ^9CUNgOUWejqYe){
zO>DTkgB}hZbMUx>E9#Gf-zvG(W!$f=x1LlyPbnDZmp$2D4v72~X0J6@JmcV52fZEi
zp^Yh?z7C#q(BHuT2mKs8?_k<>*?zOETUQ=*vc8~r_yYZMzxhCIhuiiCIvC_&u!9#J
z40kZX!4L;So#c>>VQlm>wtG(l;@sW;%m!m>bL+PpCJzDVep-xlc!{UYS!Pz@>v>tm
zICxnJpXp$%gK-X~tKfJA$uq^l1P2oxOmZ-p)_A-D%fMy2?-xz|2gx(l!7FTnLi#lJ
z5lxORq~HItcvVSw&B5ym*_=wvP{<n!Zv87Mz$^!|9n4V_2H$cp*TI_(n1wizWlT%C
z?XvkcEy2M&2hR+aefLTZadZ9fU?=N)4i-4r>EK5P?>kuNV3UK*4i-6BOy8?yexTsT
z4hGI@_@RR()b@iW=ioR^^AUUETG4BCmZc7sIrzlErw&#-SmR*1gB9!)jm(v-SJ1F?
zF*%{Rq=fzp#40v=D|x4h{LH~xdV3bt!RIvoVRGRFd!5SYzrCFNqNao;Zp<hy@A+Dl
z<QoU;={k5XBzwxvWGaxiTy1ocyRKM$K3f#q_w4U9U4?(kUa8hLbAixz4z?@e*GROt
zL*cyk;s*ygK9+vN)K3lv=y2M>83(&m?0yHoIoR#s7YCPrN$qjC)(gKn*vpdFv-pf&
zpRAYWd3w3eCP#!FP^tcK@TY@=G=>%8cSX6VHf1o=Lk|8?l*2R(X&rI!7fUsQGepUv
z-=hxxR`g>E9#`;$f-hD`cqrkdN`8u2G*5cpUw61lf$Lk6K6TE)d4*hHX{pSQ^Yv?C
zU1X1FVO^pDY%qvSUo5y2mdsZjTyt=pxz9-Mk;ye8KZk{H(l1eaF1ES2&5l3^;-ZC%
zyAHCrNfx1tl#8q`O1miIBAbisE()tC#^!L5U*S1j<Z_YQ1y!BbMdjRj%?vY-i;Ze_
zW5q2apNq=}{@-eFQNT^E7b)nXkegfzMp0b$z}qg0xG1Uw7IRU`O<pL)U6gQfCW|#-
zwk+vlz(?X}QHOikxW0(zy_9uP&P6pB)m5tU3RZDZ!9_(EH-0uMDN1D*9m^%!3wtE6
zsv;7(M<LDXr)s#U>B4kjxv1shUKhfJH{AYyrd+r~a$2D__0ZhX6l6k1=`IYH(>Lfh
zO=f*m9&+Q&M-wx%UARo^!g0Y5{=Gr=k<fh#-zpx@VRG`9)5L)bLVn{#F4C$Dbrfu%
zU|kpWTx7VYuY%lv`c6CZ_m0VDd_zTP<R(kaV;7AT(!@nm7tLH$8pjh6&7K7$WBCUc
zuaYfYv~n@u#d|L9bJ5zxqb|BDA@@@!3TfkV0tF4flI>hP;G(_4H^ScbuGzummLl+l
zc(90kAzR)JFVy9m@gWzTTyTHK!!EkIc*F%iN;|U*w?!99I3c+o#Qewj{))pDFWp>B
zt!VlCQa#wvE{3`oMu9G#a52!uAXR`TsY4gfyLigQ=EX)&1&KVZkX|mH$)r5%qPN2P
zDA-rQ=Q3lb_L5)E6W@-oUvTkL`-c5#EiM*(Eq7$KMy@xzRZn`s)}hHuZLkZzVPACd
z=7Z)C7u;aZr4hqjjBqi-#Tzb0y5JY%t1e!n5voFtcJY#nF>W%+&S$cV*@flHF2*X#
zI0eTmI6=XQ3Qkgxod2boLT#vo48EeGrYSf*lWkIG`B-uD^n>Q>%yg{Ns6>vLE@r6$
zyi3&$PR({PM+MifX~2riRXCA174nvXZ!7o?tB@JXU8v;Y%Ju~=-gog8`>BhCE*801
z>SCFT#ftL-1^-*a^P!6+E;yXRZ4^B7@FN!=yUBTO2hS(7TA#T1)WurGznmQ~m%c{f
zD_pE}v5MW~3og-5VBdoVA$K$oPRyf!=JFQ2<U8bZ7wg>Q{=_fnd2TpgvQ$sWi7%v{
z{!nNak~aFr#TF%Vy^9U(5tEWs8`+QcntV377(dC~?Bf0lqDVKH=kKInf9v8qx)cwE
zJ#2UJJv*R_^K8%!Vuy=eE_N${KPb4<#gDWT7eBKkIpwnJ^8SLUhccvhBg-!?_9&i{
zF7~?E=i;b~zg_&Qh(}!frI7tDepAQ+1zCWDtdYY1$fW$KkV6U{R&c-zslO*no(98{
zu6Y^^Q}IM)!ec7-xQi3YaShxk{$UerGl-mWahg8R#aYGk{%d*ov&QwJugsF%rh37}
zMfzSZao3mVX6dCBenm0gbaBhYRTtM>T&MP?%6}=JY|}-->Zy+xi_v?sHQpi$j!)fI
z{C8bs@o-1s6gaAsed9wj<$>dhSv@@RwK=v>?xh`^n-lY9SGnXMb4RmzOPSL{#}Rfe
z1(}df9uIjv<nxf<0~B*XkJH)7ul>S{S!hL^?#!1jb)>1qMSVp)6!kFE!z?m*DDGjP
zhd~}ncqr+iwTJsXl=4v8gXh8bP{sq-iq!B>(?eMg<vf)4P{Bi05BGSe=%JFARJMu-
z>vfacge!YET0qvjZE*UVkn2^dd6+&gUv&>$xH7{@c1-Y#G}%z>;a(4t$vt$g2<zKC
zwLNIerL-kH=pGCY!)_V<*IR!UvIr?n3=zkc8<qz`$Aj%*+i~%D5BWrAo681V4||22
zwWe<1;jKGH+Cv==p$95I@{)rlI3Yz?*F!xI%{{d6kl~@ehsGY7cxd3EA){^^oUG@X
zC^9$lko{*7E65)N;!V9|@eCJKH}jIyEtvJD7UoSiZs}oD0eK%|+sam~)B=&Mnz`_(
zQM!uVY-GMR9@=_%PBl$C4-Y8hNe}JG@8MAue2@)FJ$UHi;UN#5l2(WxCiAfd)FC0I
zQEyz6)0O5yEk#y059c1X3l`R2db2JoPV3?aWOpU4hk}nO__%_!lP45%=6KTUpHg^F
z4^Jzkmx9kI_^g7x6(naL4}CN7Vmq_-^YFZv%wNCYp}&U#9=Kt=*Fw|o$s-P;pKcj#
zi(7*g|7ZnY^f1K3#i?Sbhv77yIdYf^ngb+>436+H(!(e!u%ayA&Dqz|<oom`4`V#M
z>|ynz<^&HDz2v;su{4Pxa-4$W73|t0HOa$dmC+O$^ECI`mikjG$^~VUPo1eAUdb%^
zG=)s}@M<RIH4m?6;xiQT2JLx7l5n<{xUz*F7I~PXqUL&dlSbv?Z4d8xSm5Cu4_sO^
z&%?V!dYDV5xVI0Qd@VBhd=G1@%L;ep+)w554O!o(<@;HQ^VPrD!w0OChczBP^sqz;
z|J1`rv{DaCJuG9(4m0o8v$;=`*Cl`ACBw6aj#(Vqo%<ut4^J)kk}WVRJgoG<1D`j%
zo%fkX<SHeH$Y;#j!_*4NJB#ZX3S~1t_ppv`VUgfUj4#-&w#hG(P7(j{w7Yz!{Duz4
z!(Wf#=wsO6VWWq+t?*_mZ1S+#!zcCeX?<+*u$A4U4jR<KHV@y@ErbX{d`IW+;Rhc(
zeSGg>2R(of+s6+cc6!L_Bb$#OJ^aMxX089Z_h%2gJp8Tj4qm*Qdh>8F=>qXD>`m;v
z9`@0+6lK4M-d;T3iy8Y-zVvU3c=sN`;O}gv(&<AU4tw}R;eWE$Yl5FP`j^WJMjc^|
znD0ivKshnvVsw;sxfn5Oo);hUaNI-PRQiO6(;m*yEzpKj>60E#dHBMMpBk63$BQp`
z@mac1KR)N-yoVZoOdiJ8_Y;N-DvCHOb%|D&J$>236%SWET=Q_<!)^L%5C5vD8*D*^
zbn)X`9!B`_EI<ClkBMv;oWZnrJ!J8b@)J3Gr9rsEkI(vXz97!-BZr@;uCjtTedJQe
zFx{A|8M%Gr@sZa@KBo0i!bg4|)q}WzkAgnnb32>SAczV5b6O#v=kOavd=M|}<K^yk
zItOu4AH{quo|q=vz#yI;#3g-{@=?x5c^^xHxU|oSEtK`a*zc$4r}GFV=fkK9J~jt2
z<y2C!6@6^1Zv3I-ELs&*@ln;sJwB@WsO>{z!F;L__p)GN{6co)N)Xrd@!)l>mVyuG
z62uu*EsTZF?|3{E#-?I66hlTBGgkWe4<Sy(@!|TI>*Gxy9;-%9A02%JN=x_qxV^;>
zeMCOeKI-^r;`0_-)b&x1+VIhc(tNy9N$_dlqkt3Cr-n~QS+7Q)7ZrWOm@xJ^3>Zua
z<HkOIDk*pu4T;TsH22ZU$9+Cp_#maFkM&{vVHh(Nk@3aSd|Lb17siE$WFbzOZG5!#
zF=vzC&c_1}*6HBm%c|)Ie6;s*HjFD&(g~a76WMvY(LeV-<l`A1&-&=(<6$42*$`3O
z&BvoYy7=ho;}P`)dDEoxS+FJD-A4}}Px^Su$74PQobjJvO-qZ%eK=8k=$oKz6qntT
zF18`)>Emf1y%f*#$vS!N`OIHkR+y~}GW7P*hZf>vtdG7vp7Sx-$BRDt`FP$(f2Lxo
zCh9LxV|fLUt9_#<pN$6k=pDtx2eFzJ0wNQm_`N6|;$x_fkv=a{L9Tw$FdxI&1e0|p
z`TC+iLg8d4Wweh!$7a0bV~mfQn}ZTz2Iap~RXp7@dSqiT&c}Ekuljh+#{?e}eN1KB
z`Iw}NG1<oyA74c=licpC6CT?b6fT>d=7VrLd0H9=qL^|hnX#|?m_fBq)aR(Y-taNY
z$83eqR26A`P5Z5HL{1irNv`yXwtW-4<>PH13w*rqb38m?yT79>ZJv*Jea!c9C5rjH
zN4rhOzvWNYNXL^~1`8F>M?OCGv556e$BRj!p{C>M(jfeheN6@1Ruc>^^|6fR<YR-6
zPkekz1M{)Y$8sMle604d#>Yz1yXbFjORw^AVS-M)_Bo%(XFiT?4*I6!wQRd|yydFa
z<c7YvqW%Sq&Bxb1zM+=bb1Npq|DsNx_7hP9GnjlzI^OtStdA`|Hqn{y4;V$xttz8$
zS#clR6ix{X(lMj9)Bmef#PeqhC})Q%9)mx!*Z7zgV0wU`ee6=INC(*M;};)Cef;fX
zk0R3M_mjD?u~)%;3jV5Kfuk9}`8eR?ppW0_=&nbHef&Xd@$uKO^uBa_x|%qo=)bLt
zNLinbk1)!|e?jt-a?Hn_f1{f|ZuvOw<AjfYe4O-go^_$C^s)8d=nP+2qq3j&aXB3~
z>R1PL=!bER9;{9r*NMB-iH|%LT=a2?KEcOzmE^LDy~?I%zo--Us*+|xW<;FH|79nt
zmS&J?Z_wd%tW)NKf14$tgAGt2z+E3%0u%^PFhD9m)&RK!<Oz^1K=uIB>clw%uy%v;
ziLY9ua|9sV-r9e^PMj;izKZED>%@5j<O_fRJ!^^mb>jRKTQ_FH^W>=;ljzos3k4_~
zpj3d;0g41D8lZT95=sJv7Yk4;yHVjC$H-H^ZQc0UmT7T4Dj9%~v3=^sWdf87z`V+;
z!aR{LJ-%-I5YqGO#uWop3LpcR0V)T)OAECE+#8^3fO`Ve2v9S?%PrE?0=}5Q;t_9p
zJk9EK&r_d}l*X@QyqLRw?EqSUKdTEPK<CTamvv(iK&PG5jgPcU_#bVaB>bXd9V>tx
zzz-0xI(H%`fE&OI@b2Y^K^CmV-RNxHm|9}p!vJ5r<3y_13{n(fod9(M)C-Ui;F$o=
z2B;sPL4b|{9tzMfK%)Sy0^AoM4tTvgngwXi2C5e~3D7i1-dWY^#RaZv&yLBcTQ7N+
z@lC{F3%27`t)+sbv<`58fCmD!4{$QKXrmIg3(%I06~;`+<Yd$NvaT0*P^lga(4k(;
zHzVa_T-Q1Uc$nJAoqn1yK$igB1N5MI)Dm3-bPMokfZp}uN2uX?@muxcDfz{!dhrkS
zViF%?+JfTA08a&YJirr*layoiVkRfjQ&B!CnI=yDUMeHzRjrih9iUHuApwR4=o{d<
zfNy^c3eYdW^8sE6(4S4?gB52**566=K%ERw6}(d~c}))v@S>__I%}H2c{emZB{Je+
z0ZJYX#<0Kvh6flCU}S(%ia0s|3(qQ`d76-HFR6MF85>|+fJp%+2N)lKWuB<ugaEY*
zCRJwnSt-JiwZxPFQv(i<Ct9K$GOX)RhX{kO2Fa(?7qsL6uLXELz>ENIDB_X;GXu<G
zH!-{qXo?x}>;P{Dc#Fo65zkSSxdF<YiXP60-wyCjfcF9{pm`L}HZQ<@YS{DmysMBS
zu6LiE1m6#^Fu<Y!ivx73=oPoUuWJ22s$WJdY_D|%Z&5z+VSvL!vrou~KML@1fTaPJ
zQ5ykP(^_hHp9J_c!191M_;|Z}q)AypvDuB4%)N?Nr-nDWiXf55ngE{#SWBy}=Jo0%
zJ`XT2BVMP35LuNGuX!|m`j3pS0(>3d6gx$LZ&da71lSv3eSi%CHU`)fU`K!-0)F6O
zOMq_!d>3GAfNcT(&WMRn4+k%6J2GOz?Q~fe)1-V)?{qeU6g~{@3~)0e{)uisz>f-N
zutfcMm%@JuFyQAjDZ6Q?3L);)kM{-mHNYV%gzh51Zvp;bW0e<-J)jaEq)*6{_Pauu
z{Lf5jt?I`|6!BPq;{pCs^rI{`dqMq}Ig*(#2nsx**!~GXA*7#F#TZ#XX4IJgX9MI4
zkvqh>0Otc_36TnMA;84|w*uS_a4Ep$0M`Tj8{kTSI%hLh?+>m9$oqH33zxKO3Mt`v
z#1~zNZqPkWP3X;C?<Spzo6z~(q5oIO->e^RsOiP$GZ>XM#LD_{jt~@>E#$C_mp$Ya
zV@Z--H>2<C$2k?zbiIRDwLBrphA0;zZ-{&$@`v;-C>El4hyo$VP$)#<5Qpcb3x+sS
zKPDwhg9H{)MAC~gd4rfpi4Y}2lnzlQgsphUSt<nKxi)oLG>At$p3$p8yyaXpx<On%
zMD-9gLR1J*F+`;hl|xijIg)|$$x}s1CUQ@RYD&(#4dS&8;@eX*YKEv4!U!Qlkm24C
zB7`2Ib_gv58Gcd)IHe#9!-vH)Ls%i45N-%E*pzTIU|!5IYr~kry$~!RDa?hGFhmrh
zPMTj_ND~RsA;N<Z>V~Kn;>!?Uh5Va9{Sf0rObF2+M8gn|hUgxmQHV`7jiw=*g@_g2
zr(C*m2*M@`wl9}%9-;+hhIlYU%Mh(Xv<vY-i2Fjc4$&q=TmB}iulmvr<NK-GhOyk@
zH#@J9Xg7=rnFWLGmHheVBL+K${P6*Q0Vt|dh=)UT3DH$CbSAx$zP)U^(4zr4A5p|^
zY^;Vc|0zh}b7H;UBgA7No(s`0#N#2J2=R>Kd@@9lM*4jX<EL4|hVfG&deV@j!RLvF
zajy_JRtLiy#^j-#XG8R6HABp5nEaCbH8`WM%7{_Vhj<~xh!7(~^bav0#ET(@gdp3%
z5QEu#Tav;IVoSZ8!P2s9tm)7Y!$J(FKF@2*luT-gIGGQ23r5ilLW~LVGJ9FK41P27
zd5I$oXCem2hRJvJxDX@~`9OH9I*EOo{fQwah4>)kCQwWcF(t&n0%CrMsUcnoF_VQ4
zF)hUO5U+)JU1j%brmC6s_J%RbIU@uM`9=uVkxjsdzh<*T%n5OHlmAYLxgp+E_}dDO
zER%kVndVIM*<Zt8>^C)xc`EANke5{%Ohw9jAr^#qpJuk%Z@tN1q>zQGMvJA<>XAB&
zDMWaz&JvaOlMtVV_$b83)a{7u6uXqTnMhkkRhLN<Ssr3Vh_xX;r;7-&iiO<duL*Iy
zVZ2(wYn79hqVZg<n*L1HmyNPc86h?Qh2r^gLc+j`f6bDI$Q2=X#9voz2=PaVKSOK`
zakpXoEsIKBh1jfu9~BpTwuIOkVq1tsD+30}c44!>J;e7R_Jr6QVn>J{Li`+JSBRbL
zQ$sU;3emK?Ao3%v_p^Y=xH)>6MsfX;Vt0sN=(1`WZljnyw+Cl1b{`ueo$)I*8RC=A
z0ussmTZjYnEg_!IpYGHs=JP?tG}(TquFhyg4u$AjQk)KPhHj0HjzXx_5GO+X6XI`n
zheq*n1&=9M$uUUbvwLuM!by!{(ofQlImRj0qKqK%ES-OdYay<)rMCL#LtG4TiPir{
zyFksiOcS|G%M5XqT6!^K0ZX;j-_R)DY8s5{yv_fYeTpxR2w5ZC3~`I@Yh`eU9Yi6Q
zi;LwI#h;C067SMIMi_msaiNxxwQ8F5Y)n-(og+$;kSBYD4kZNfoDu$Q6f=r2PlUV?
zWCSxpz6kjv6pm0N0tn-{K!k!3j5v;)r>or1ioTRlNCk<ISTsVh2-PFhh)_I2i3k-U
zRE$tELa7MlB9xC%I^viE{w*QOMraks%ZnuiIBy%rtEA`LYY->GSR$1oRE|(J!aWh5
zjAPQPM0k5l2BXHtF`xgCYK(oP4hvs1Lahiw)$ZO1wIi^OTEq)7jCpZfe523WG0Ck;
zLRUP7sx^t9Q&a>yLL8xS#9<A%5$e#TNARM=!2Ae71X@?e{OK@46d@hquM(o*s(_Y8
zbNXR&MyE#cOJzj82pJI?L}<ur(jX%+Ns;1WzinKpVSKmA|8tv9*eC+|X`f9ZG>y<Y
z!u=7NMQBc)kkVbWQ27#Rse(0&iy5B<yW=>oW89}Gv`<QC6QNy%2O_kMK=~{ZliVpU
z+DGVP7)-)`v8lM|7~!D^KSbEcd?P#@;hhNcB6N<>CBpcKr$C@<ghwI_iZD1rw+N3$
zcsfF_2;C#}i12uXCnB7Q<5K6e$0A(X>fd$@;!j3+Dnd_IvtpXW;zKe%ddTluPULJH
zGx$t|XCw5B@I1|+aok%a?8~xI!&OBWX-ul3M~&m>s8YrMLWKT`b3lX{RrUV_5;E<;
z2w$%Zh`bnKNQ6-|Y+7&QcxZ&-5k^E9mRTzD4=pbUM@C!}Veq+HTD-(6R2R=Rj>kqA
z6XE3uAD0s?KMP2F<xs{r6+5+pnAkX;7-3R`HzLf8Fge1M2(LwWJ;KxouSEE{nwU=J
zt^PC`XT>y;l_iqAURAmGz9+$Fuo1WV<7|WYdyQi<%!)8O!dr@`OK~wL!dz;;xL|dP
zf9n%@Q`Lof<MTE<RK7&cyAkF`SRP?TgwOu+-ixp(;>KQYL4@}eWub!kk>)d|i&z}t
z1I6$mAuAYRi3+}-O261HV8W#lmPPo4W>(Ytr(KY$=`Cs(e5!be>~0sVjIb)g#t54t
ztd6iI!WR*~WG)fbM)*9!4%?%&(e*t_Apf!(_12NUaeVwny|36n5x$|@k8tBq!Zt;C
z)7k}mHn8OF0#f)q{=2t1!j=f%M))q`1%=+$2-_kYQ<DE^9N)?-$jsn&HnHY0ukV?!
z%9>)YG>!{2iGPgn6P-+2jsHj3#m<sOjx=^h_$9)r2&W_LiLjR*Ai|*t`y%`r;r9sD
zn#6qevvFU}IKTqeGJa!e|Iuz%(Mdn37#RE`LcJz2iNp^_I1=G_gcCIKCh=bpjz;)f
zrJ|WtswxK8Fvxa{4xx-7@=t`5?EbY3CV#$3Oa^_k&!{sI&eGv9VT5xL&Qr-v;;RuZ
zM7T&F)g<0o)wmSlGCML|$7cbbN~?qP>R?)vn6V6Ai*P*xgO^tZzftn);AVtd)L|MI
zRPc6$yAepgqafuI=aVI!5GjEa{yJw%Ct3f##h+2#$eBj2G)kmVGL776<VmAo8imrx
zn?}Ag#~Tw)rltJ+O2~++I)jv7AT!g#X%tDLSQ^F2Uqe*f<d@Nnq7>CMrhZuQ$``eJ
znkITEl}2d_NuzQaWzr~{#`7n&ifNQfqkI|_NWZ92ft(H?Y+o_aEh$v*GRLTrM%6T`
zrSZbh45p%P*>?A&lNMx0uCC~eB7e;^YNc^+8nx5#((u!0*);CeG}h7(Y3OMTIS`m>
zSZNq($TTK4jn5tkemM{jGRjWFNyDWO6(ogpKHUxk?=_8sG&oxnr9nJQV{Oxz2r20_
zY8*@$>ZOs9MpP%U%=&3GNaIMF-yUd~Mx!()FuOG3G#aPzR2n_gXp%<LG#*TI*cQ#w
zC|pt8pGKQBhbzz`t)>9dxG#;?Y5dqUZl$1JSsZJcOd{~v>LkO(ZPRF%#si8!Z^3l?
zG&(4}bh9{Xv-rOu<p-SLp)@+B@u-S=n00R!cS)mb8l72&W-+s-s7KPsIXBz*xq3In
zHnUDLJM&1hxO*Bs(%3gB`(tT5p`uv9$J4l6M?c#l{iLFVZqTk|`sp-!r7<{-7t?qq
zjc3`)Y@IZEv&wGJC(Qw56rQUuu9E9Hm5K#pzWu18xjK;n&EhG|;{G&-T4G=t1K4Dh
z#e!x@eFrIGn|28spCM@sOJg`~pjkXri7I`sHzJLZX^ctZ<upbq;?Hxky_Cjih4)PB
zom4KY?ASEMDdKnqXOt7^%m3r)I-sN|y6(y@LF57kKtLp@pzQ1{adzE~GgH%HhPdRM
zbIv(O1(A#a3<L=VOrWR)BLZST6cm*tBBCgQq9E|!eth$vQ|F#ruU@@+_3Bkk?{rUZ
zh|&AXQw;CJ8s=%(q~UoD^EEu8VV#EOG%V2YsD>vrJgH%!hD92dYsmKl_kQ)%Vhu|;
z!3R~mOwLjb%eV`C)l3gp^A*Vo4UcJfTtib|_4n1(3R=f%ImDG3R%v)z!!sIY`RXYR
zEB)Y(51VNAStgr?H5%4(vUlZ#OK7x41>XH(EAJw`CZpf-L?)~2WiA^Sw8z66HU0?`
zIQD{u7d3pWVULEFG;G$eok7#^vW8bQyumcq@T!K_G`y~1iw0We&>ZOHnmJn;$#VrH
zBdP^4FW{gW-jY$?7C$LuE8Qk}N2W%yQ<~n@@SbSy667tg_ceT=;X@4{X}C~2m<W@T
zp<uaTXE(j7nd8^W*{flnhOabyt>F_5`+2sr`h)c;w}6H(G#ubAGs3)g_PGR^K7UtQ
z<GnW8WI*WuL1vwVmj(}MIIQ724c}|{hKW%{`&PsKzD9DaP(Px9$inIm+<k@Nqm(dQ
zT)V>XNnai3a#ztvSV(@<a7x3SIx6b;NyBLk|7iGEj>n%hoYU~ThBF#|(QsCT{7nB%
z$gkYyr8J(XJc@bR|G^_v3$8;hY4}sfMGb#3GFou0a%8+U{*+1bw^YYH7UuN{t1OgX
z=Agd1#^XrC72*F0UKM21*~<kPI&RWYLdVTI$|O}09ho|^bcB+MH(QJ9D5eK@V0kB(
zrMQlLJMuT*oZ}@Gv80Y$blj@rHXWsOKu2jB;m!Jd)#XQxy?P`SZSu}+S$3QsW*6e^
zI_?mi@;b`t=(01PnzLj$65bK6pa=Jb*|CzGkhwbQ=%}pYE*({L+^yqY9rx*|s-v2Y
z8anRLQ9W&+KJ&gXZSn@OcDKeG&CHpaI%?^tt@CCIo=K|v_25qQ1A1^*nxl~Ou5n0&
zye*!i^LxKwzT{!?lccVWdQ{MnucN*We!#tzR1qBwIO|$D4Rzdqr&j)hJR(1jPFBj{
z?d&`9f;c=V7C3|^bJ2AeI-W1oO&xTM`~4OpZ0Q*JyG0Vy5!cbzLO%;iM?%MwI#%j%
zbhtVm)-g|qr^DAVO~-T{NgXL2&-KXYrQ@#yp+-8|>*yf7v5qD>nhI~Gqos~k!kg<T
z6hi$L^yGK}2}^4oZAH#oPprOhAXL1GMQo>oIPGAd(@{q^sdm!QnF}YHU3GkxRBZiq
zQo(a0wbM!UUs83~(L+a1QO=zep@l~Etlm=X!wKr>r=!1)VLFEE7@%XIjv;BU1_>D~
z$f?otV?8p4O7(+LS*(s=xO7a^F-hlbufW^!f*fVEkTE*O>KLbkF0qxRR4VXrg0y<w
zvS^UXluQ<vrU*_I<cKqL%+&FaRA&j!)p6{yF<bZ?!5S$=3oM3MZk1B=bv&YDnU3W;
z7U;ZvhQ&Ib*pRhjOu<4Oi=@{;Q9gVy=(t2AO9hwxnor3J9gpdFoV|3^{VLFzlTv$D
z1g^evHh;<F0+Llap3-sDz%c_)Gntuz1{xZ8R>x``Kk7K8V~virI`-@MRL44|hmJRy
zZ0wj)>$&0_k-N24WP^^4I$!A-*?+ZQ6O|i8u3sv6QO8R<UeWO?jU0_^*6}jCr_{Z*
zBH#R3kbR+GXVcu*biA(Pmz3JdXL73M%xjvvg+pH|_%fyVP0{s~dV_l;6sg=uy`|%A
z9UpQOowxANppkl4$9p=q>)62!Ypb2qjHzAX55LFemq@I>FUF@gQt#zNKG4yuk?PY(
z5qInOnD<4S=I_(7hx_P<$imV&dl@ti)JXA*1%A=}iI^qfx7nZR_*}=gI*#c0LdOB_
z-^S{&jxTi_)bTZg{D}3Hj!t8<NX|4;pL2++Ifrx<Z5)`Y(pd42mv5+_QtY_BF#kJ7
zo|zy)`<|zS9(=`dBpjjgaT)g{9s8}|1h-ye)wi)al^Z$sTfy$yk)L#&<~eELHUmHF
zIHM!Oz)c2z(Q%eJspD_vs*c}u{I25<9p`xb{$Vi!9GWY|K%Lj|r_SrBAZW81s|z{~
zt<GC{Z_b}*EzbSc!u&_h7hKZukB<LzT-EWfj>|f(=-_fNV%3`FKY89_{8^>X*TnvH
z9@mbdL5@}VzXE=%U&KJBfszJpF~C2;vJ4b6P~1RK11lS=8TaPA+E|q^@Nr{xvjJwy
z*VS_-pNPaHD}InEmofkYr45u}X`;#+*nA?ws4{c@Y8-^IW)pS0fjbP`W8hu`<qYUe
zRCxmxj39;R+noj~8mMCMRx&CX;O&XK4Djv)No4~qnkW(`VZSD-s)2`2MyeaAVW67W
z>Cs82HI7I^2{ZFP12qloIA2i5KrI98c)x)M49skzO1);)Hjr%~Y#`S_h*O?!<w!4n
ze6y9+C!45wrHYdudez!cI;XCIPWMD^Z<ABcKz#%JBb0Z(h!F#M2F4qhU?AVXg9f@7
z=xXrV1Db&*2Aa}61BL;|fNS8DCdxEm8;BaP46JFC&%%K3YocNXl!1f+^0<N1O;kox
z#jjg$Yz?AkfS&jUk}|J*#%84qG%|v1(wJdvs_HaVZc}wzjT}n&97r<*%?)&<=LQNH
zKm+Xzv^UVwKq~`n474?Hs(C)=xUOk#YXkg~zY{GS5B~P&-{vEmDyCTn@rRjqp_Dei
zsoL07bvCev3DA^lp-TP`>1Lq2fj$QM8es5yFqq^gB6NV&UIy5=H`juzb3DSy_A}7m
zz)%Cj3=A+Z&;T7^whuBe*a%LQA+lJ1G!3>SPo9#^6f=Cdfe{AA7@!*?4cy!@r$xt{
zQS1vXH8HFHe+8qB;2h%}tFZ>gG2qp->dh1r`=v_-6Aer<@S=g23`{mK#lSKH%MDC5
zFwMXt1{N5Y&O|Dw%`!0Czzi;&_&<{=k;><{*>hy29%j|RT;`qu?mIg0V8<NJbVkRV
z@lErY=ku9V7YgX})&`MBx#G>#Vgm~eEaGZjHt7lD$t>;COf4~jWnC)BZ~j*pc#J2x
zfz<{cH}HgkcbloF4e;xZC%FL)tP(!1S#SdI538q);0u$5&D8p4>KXC&P&4&yv-~v%
z)*9Hvu+)mIqmE?JM&{@7$a=vIbf#(k4k;8e$7VN(JTLk$2>#JbF^roHyv()WerLuS
zc$JH2;B97pOuc4ci-D~MUN?eMly?ugL*Fp)rh#odK$<BuSJ!{F?r$CtTkstN+YRjE
zq?or%yylAE`3&lqv(vzk=8A=R`<{XK4Sd9%^}F?ff!oXEd?>9{=Ef&7LntKKV_+|j
z1%nT1U?11?Qo&~iJ~!}*f&DUtPbs&9d7Y|lb$_#fX9B;7{z6vp&!Z8pEGKx-z+nU5
z82HM-*W3lQtwRRpG|r#@XNZMlUUT)Wfg=XK<D$4~eRK6aH+5J22LpdJSMRg6xjNoE
zhy1vK6I?zMkDEBjqs%}96AewAGVl{mQ4_^YoaW(g;BPKBcNq_V8ZmI*z*z&o%4YeE
z(@Cj<>KccpC+7_OE{83vENvU*^CbV1$#38y)3tg|^jL7T{zdzRs!Cyy68seV$H2cl
zoDF1{Xj@IY%wQV0$^)uUUE#rAO)D%^?0bzTQnUQ)h4}*u6}#VLqKJv2CV0?gnt1wr
zh{7xrzc<aFQK*Ql@)PIjLRG@V%_gdtxZ6ZY6StTsXQI4`QY^1oFi~0v&)za7%9^;%
z#O-FV7Pp%J`zYtf4Oj3EGx$v5hY0iMweuG58dNZGr-{4F;KHM#IKQn>RWbw5hgH)m
zo3Kts$T<c3XoNadO;j^c+eEgB>LzNKxZeabs&&PjdraJG;yyD-PM#YzO&ly#wK&HX
zireRGq2d>YRaz)+p9iE1Cm1r3V<Oi?9TV(A&7$SBu!#mORH{YrVNusaeG~D!a_X6&
z1I(5Z=dA86g0M&Eq>0`p`k2T!@t}#uCYqQiFrl%F2_+qM6DDV2!jLNO81m|idx!aH
zn~0i-ndtI|MVBVFP&_?mp0*Mu9LBIlPRfL9!e5=|n@F1QIQMcI&y%uxgj<iE&<&m{
zPc_MJWCpi{NSZR>Cfb|mV4}H+LK7`bKIDTIG7wM8Q8^J_<j{fECK!`;CKgP}YQxBL
zWlvd4S_EI%GDI}Ru{xUQWTLytpYowI{WQT(d>ZM>B(H6CGlLtToCvKkV(du&dop7G
z74$NLO9gH>s_`1HuZeyppBlm}6a7sLFfoDiH8GG2VPd3-Q6>hP7-C|WiQy(TwNP6s
zY7F~O2^x)j&_XdvBbbCO6i+{X-#gmG7!%`6jOQ-9Y>qX9FV@)Qh$t{<T*|*&s5a%a
zNzBQXYKn=eCRm+pf*%&VjG4wosiv_^XD&5UBr`-(uVxPUY!h=B921YqTFf;u&%}Ha
z51Dva7NvGeMQ0c>ZWDfVK5*K4gbUhIwQH#sa#F`4i%l#s`Hw;(i%bk{sn#^kTS}WP
z)p8T>l*;+5N6s=6t6Hiz=-UH1D`@kX2IZUSPndX;yU7A9tfT_Br-{QRp5hKQ@s^3V
zO*~`bSradscuDehwTX2mo-?tA`^dx>^dUDg`TNMmAA)bi*E2FEHky37cckR8$R-od
zoBV$(kr!y~XyihN940nHN5bl66EB<C%8<5HuZY@fCLfdv^j{Uc|5)(VJui%Tsj!9f
z>Xq}v@yHt{-ZXJd=2)(k+9qSws}p(0#C8*VOzbtW!^BQzsfiCw>@xWa>&Uw_D3Qr&
z6&%{{Gt=HI;L?0oGxFz;)<-6GGvGOqk4>;j;r`kd2j!gwUaRag@d;;Y;(!SrfKDqu
zhlWp0e8vnZRG;(kX`=YY2rqs4WNi0V>PwymCca|I6)IX_!q8i$%GXSxX2Hoo{*8%m
zO<Z7lm^fnMJ6bmJi;3@<_6+apyi+EQazRa;;DK*qQY&?wtMfq~AC=+hapM^qjy@~j
z`jJcDDj+{Gl8k>V#Vb9QpUvPJdq=Cl;j<>r@vt@VE03&(5ytH|F1@XI7oO4h!^C+`
zoc3D<S3yMH=(+!7<jRT2Unc%Gag&827IwaBT{3aS#D6CKG4Zd7%S@F95q_B72qX8-
zRW1$nZ_2rDf`2_RMOpZDM23aE$0NJ}#2{x{$g*&YCC>s`;7!}&7D`y)RY5TeOQ&0H
zs%tk3DQV$kHSJm}MIE+QY#scS#HS`oTPR~8&qBV1vKDT&P}M>;3%Ajlg-RAGTfx4&
z!$Nrr6)cpqa8Jh^K6=Cx{!R<bB05vi!r`Nl2CWr2FRoVp7+l5OWuc0Nl2=TAg0S3e
z1s4)*s&1i%g$FFurYQ^eTEVj%wXEP0l;l3Caxd4kf+rtH=;!?w`1f6p<B@EO58a`z
zg?bipEO0r(7IG~#YOQ*=R&}i4@78nQM<{RmLu7hu#VOaf(9l9err*FqMs<zCD%CYw
zqw@^ogBA)bG_}yof@VRdSqrWOL*i*$i1MRSI74R%;V3a#g*d<bv4W)KNs_R@Lb9^8
zV#1Sn7JLhhX}`Lbw2-2ooMvOin9v8V&aTJ9^oOyc<t7$b-Cs4*+(My+jutvuXknqH
zg?1L&TfrZItt_-=7=<(7TnJig%QHt)+gb-(hF8C4qx`b%@;X>x1o(;2*+Lf!JuLLJ
z(A7dW3*9Yz-dgcvi-#LeKhA|!{$bwBLT@Yh3%w8X#{~BUpG#+z<#cP+-@*WnYom;f
zfn1t1wTD_5W?_)<!GaVHv4SUQueMghEsU@*!@^8jJ5zh4h4B_9SQsVM(Sl>>(yq{0
z!SZd?IL5q<>ho4;qO?vGoMhp_k3y3LNv1F+ZB*YjYMQj(+%JE+g(+<mhnQtywuR3)
zI}39x%(d{mg%`M*yFw3HSi)Uk;b9B&EX=p?h=qj~7Fk$8g{c<Hqii+ww_YfCOsu`w
zMm7B`^nM$)*uv2^>QWoE%))XD&stb*VFd$aVU>laxMkX^+HKY2+zS?-WU91PD`iF`
zGkkr{u25@|>*mwUuEOxrwu+XYu|OQsR;{tHmZ1wUe;vJTtIEHWw_dtG$DD7g7#~W`
zv{g5?QyVR8vQTkz0Slw_qJ@_%ylde-3!5#xY+<W~H!Qqj;Z<5_r?yxa=jg9lNVW?G
zt<;Xsc7p!YZ>Q$8Q{NP`>Q1%Z<a$|nhkI(Owavm?%$CD>cfL^YbUU@!(YIUJ!NbY|
z`P=Q(E+LO@%wv^y4z^S8TZkuhI=|P#2NpiG@LN0ek%iqBK9*T<6i#7}aIO*g(ziqV
zEPNtSCEsu1j`r$Pu1iAaO3~~W77keW*}@q{z`{Wb$1EJT@RfzHEqpKQeuxK-g(DWe
zv+xa%g7)f_543MB#M-N8c7+%#u3e}0iqRg~K8WED46>si4R&Zg7mMq1f?K|^e$v8^
zOosMqLwi-Vk^X*rb;`m|wAo%=Y_CppXLV4uIw)%XV&SZX|14a!@GGZj;Q|jv?)QHA
z=PdkAuXw_^y44{_;PYbqPYdK%o9OJ`xr6%4!r#ov4ytxz{gQ=$EL>(zP7UHSrh^*O
zME{r74vHy#Mda+u)@v57^GLUGvyBWJH`yp^V~wG6zC~;t>7X)geAGcPB`C?VgAK(^
zRLsWIlwRBhUntBfv80V#Y?QKt&B!31@1Tgx3fMtP+z^(vajT8qHu~7O&BpCE9<)(l
z;|?3;Y}BxEkBx`chsz6Au~EUsoi>*4)GFGzi<Wn4m26a&R#qveGKEBzyG35rMm0{M
zqoSm`NT%%6?zM5Bja(abY}6Ft12$^gsAZ$=Z4s9Hh1@N@I;_jewh^+CW8?3YR@jEV
zQzM~4lDv+pu8n#&^2AQ#j;g+phz;@vHW~`)(NVFQxi^o!@;Tp~8oecIv}U7;jixpX
z8>Wqf4abIM!?qE#5f^LgcWU-+k*JMv;u6QDDaG)v3f$nlTpON^MjXoqC&(c9Hj*|{
z(w#b-6o(^OEEY%@v1T@!+vs4Uqm4ovEo`*m#BH=p_i80^xDnFUBJ|f~(G(qEX-6k-
zi?p|~p`#+{WTUf<?lyYJ>U3dlNEf<F3oP9vfSk*_9aT>oz0#x9+ojPgUFvJ2pN&Us
zEU?kv#sC`=Y)s_&Z)33=8fs&hjX^dhIT?dRLg5gb4`$?(47V}D#wZ)3ZH!E}KI&w!
zsh{8&8*AOrSQ}3{8I+F`o$-Rdx*<v?*_do&rj1#QVcNnpAyc_zVr05hXQW$ciuPx7
zA|jb%W3G@J$`zMoKAhH^CuF|hlXSqwLT)RmE+X1kX=9a*B{u%aD7MVTavRS&8B1+Y
znQpHT&Bts!o|Zgu!_*CQGX4}#uDPM7Y&^}rHdfoH?uDMQacpbep{1Gh^M+S1I~h0J
zUTb5WjpuBvxADB#VPLm;A!=^0u~8(O1aI_x!Nv?P#PXtzmxQleo>8Pj_!S$k+K42O
zm*8a~Ubj&`h6*ukv9Xn_8O4Gq-mp=(FucRYP9bk{zqGBrP4F#dLizC9Hr|mYs%^LN
zEw@!+c$bZLc@9KzPZaOjc;CjKHZIusfIt4VafnNA<MeOgk8JF<`85J|+xXbV9vj-Z
zaK$RQB|0gRiyhS`Hul^2!o~p`pK_agSn#=xU6pe`<A|T;zt<pdaphcAd+o|7_IvnC
z8(;B!=%iQ<3gHmsUkjgDIoIl>zOixA#*g%qN1~1IY<$l++c<9H2kxd$s!!$Iqv8e$
zeW+h0_lHWkC%7W#!t6dm92>hU<CKjvHh!`36DMNhXR$y9c46UIXKnmy<9D8QHh$xd
z7Hj8tT2{_w_j#hZwv#$<<Lyq0LiXyjCF7!vzj!!AfhhjAammJY9_CT}!|i-7Jg7?U
ze+*qG^{<V~LddU(ZzOEJ%3W3^_nHkxgXE?tibPR7iV{&|Mv)aot6dp4JS-XwLR~Bh
zMw^6Dq7OGm13xcyQYEQ*S1u=eM`v|Q6vV*2%DJVZC>KTfD9S`pHi}!L;7o6if-|D>
zZBhO+`XKmJzC-NOhYC^L8RahmP=#ZOkfE*|MJ3_X{PwQgdYyyO?-ohbD5^y<Z&wE8
z)x{vkWnhUM>)t5ti=ssoEu*LzMXe~JQN*ISKZ*yUXc$E#irP_RN0A#vohU+4^xKt@
z6Gb?RMx7NG@rHYJEO5ATZry0GBK4!F7Y#zkLYI1URt>}%lDsJL$)nJtcrc1?yE2w^
zRs~UvlbF!ptDTh*g&Bnv#b=#^Rp2@@AhctP5lR^3coZs%#!)nhA`wOVq9K-)5GM*(
zh$rX^CIzYU=E-8jMpC`HC9|oJW>GX3!hwG7tf)}PCGMgaG>+9Oiq=sKi(+^bZK7yP
zx1;DDMLTwhqH`2oxGNjvb%>&J7u8WBz@0*eJ24Jjg0L`3wA@wvr<~L55k=1^21GHC
z2G50iMbRgUzQTJ)gM6cq+p}L3O}nW6l2@#<FRO#Z&fqA9NCwhA<wNeut&<E5mC;E?
zL@_eT-)>-f6r-XT9mS+5CPy)b*~Mr_F+Pg__h(=iHG%7!3{8~obZ=T0#f+t87AE<W
zD5gfSq>JJ-U+xkl<cuh0Mlm;vhoYDj#cWBf4!bhuM1!r(HDUs=FZshvzi4n8uoq2n
zH5XUToiDAMD(5~L#lk4IM6orBMNzCi5PBwxXQTMNLU=Jp6hgi<ie<u=3$74+EZzFJ
zkS7G66kHj_Dj`n^J}pQ)d%Gw;g|#}0wNb2#f_#l&b0f^@KNrPjiNpFRHbk*eIOQ)y
zu}S!rlLgO5ak*;#$u8<ek-Q{$rHisYEuiMhQhg<gSB2c(RlO$Ub&j~LAiJx2Bg%J&
zqG${U&eYx(#amHaiQ>N~-j3p(D2_z&T@>4+*b(I~Xz)c8JEPbY#RpM*$UN_=-i_jY
zA>{9IpH9_IP0>c$VUmxSja}8ADE3CNo2%SaQTTBbXPjJ;eNlW8#i!g;^nZ%BV5+vC
zk?*QDu}fEVtg9;7O%1py&^#daze<ntWfTX~oH}1eaVUzzGW0hhXBS$l(M^5J9o;P$
z^m{HhqZ;Ku(819tjzw`Qil3y*ap`hW_z5<3RqRW*f8-I=E%0GTH+7mmNAXJ(KQqI-
zDbAEg&9hOwTQTxzx4>ss&v8wo_=^X76n{i<K8io1cv<vmkZuq!L~$_+nhmDeO&#y1
zE{V=%5nj40@((`?x~YGoU=s;7D|A;^qqr8uO)(6fopqfSo(qS%D<VrqET~%bG-8n$
z-!`vh3TDNSFFM6yC>}$J7;cW?iKd}4F_etq_mNqpV;Isb#Bz&}Qi2e)cVzriBDZ@g
zR5pfNW4KL(cL-Adb|I@u=9NoJ3cIU2WBjoaUWwz?I4Z?ZIfk7v?26&87^=kZObpM)
zaCZz<W9Se=#~7-`P(21S1}ladG29bFP7L7~hIUu?#!xGU`(wCIs+81>;gRl&<bfDo
zU^Kd`Pz<}ftJ+e{j^RXiMR}#Z8g(l5P`NSGi}8jR@_MK`F|_QV>I$;8K@1J)PY;zJ
zLqzP)=%Mmr7}z7QPYbL*7{l8=0$vaUt!XjnF&yrp45?D`R}W>!5RLIyQD_oFO!S=?
z+!*4*m0&{fhN;p$l^25_LsACibW%bZ#lR7{PqTXlhx{Y`wWcvNqqi}%ilMpa6w0`X
zo`Hv5da4#8q<-sI@F~-l%N;`-;Zztcb~q@T+NXt`V(1*hs2E0bQLY<ZV(1$~zZkm4
z&@G1UG4zO`R}8&l=o!OTPA(r=;lnoFXG9*oY%J=j`ox0Ab@+_Ux>=ERJrynVk6{qA
zQLGIR92mp4o~q>qqsZGDHHXm27=}s55iyL6VYu*}6N6`a<~6d2Ec<(^F)@sdVO|XL
zMPXbF<71c*3!abq>w!FaGLf_Er5=u95=*tr$)YxeOMf6VHHK+1OlJ&Zm=nWX5zdTZ
zRt&S56+P8IJ%a~+vU;hzda3(+1-$gn#U2v1crV4LfM}U+JQBl#7#`;ak)}sucr1ni
zqQ6iiiv$<PutW&$ERA8A@a2Ll((=IV1EIyQ=06$3${3y!`NruH3Rj8eB!jLS#HXdI
zT{Tw6uqK9=V%QwR+8EYx?lG)qgyZ2Uy@K5M_3iu(vEb9Nj%96%VPgy{da2F5RGVd4
zx4oVJd<-?0<-Q>JqTu1f8834)%Ifck;nf&ki(zXF|MpV9`;pgq{U5`KWN3G<AW3NU
zSTFTPjQ`LiP}mm3b{UKOEs?w}_>SP7uOpO~=^b>Wop)n+FNSkGPhxmKhJ|m0_r|bK
z$OnQS#_*Al-7$O|!ye)NH)K(hrFT}&Co$}g;baUy#_(wjpT+QH3<qP#S|6_6TYWC%
z3qeW_#Gv(7BwwW^hhz9U%@4(plGblT@@-mvM96o7-wXZ_!%-o}1dj`z5bPipIK-(K
zevaWx3_ppSlGEJXu0`@o3}<8bP2|4{W|j}9ekw*B*jr8Ntw{ce;XJb?j-_$@8N&r0
z7jeYmxX4A1;m$ZJ#_@Lymv|b-aZ4QkFuXBbi}9Cq!3S}>S28XOxx({vTK0d!DZeUY
zQE!zI57bz)gxn-pL@-lu>zCPVEh@ZN9L0r{5TyL(IM(#DNU{%Qmx}Xep8vB3A*BV&
z2$qfG)^zKL-dVR(S<7L^J49G6j`DHb-a4Z~TIab|nU&(G97p{)8pQF<*6h3Ds2xXk
z9981DJC3Sp&3lAYi=(=b8iM~^C`RM=rgiR%qh=hnq<ViG4+tr-I+z;Es@|&67ulgW
za^eVc(3Ux@Ql2YnQ(g>sojB@BwVvRR))^Ewj3W|<9)}S}UL5&xXwu52YGVAsI118|
zHqzy-hq7Pqt;{$qk+)kB7`MsSWp95o;PE(A9HZkH6GtKrCyq98w2i}!!;7Ou94)1z
z&p1rWZX!G>n2Mv35E^M52LnjbG%aZ+q`6?BVENV=t>WnTe0J+}mHM>V_fp_SyEq2M
zu^|y5Zy!eoYR1tij?SXoPq2$%&p5gY=_W}1?s4=;bFL{Ry`<VZjy`F5Um-VI`wJf+
zNUsJ7863xuIDVCNq=lhz3==u|@Hj>YA1OF0EvL1yag2*&UL5m9I9_m?-~_>mf|KHy
zEM$t{RKewogNaWUJ|m8qLS_j*6vu2Ka|GuKQaS4jjrg!sZ>;YlaV$u;Hq8q%{86bc
z6kHU?;&khkRvF9USRTjPIM&6nB96!6SQ*EvI3ADVi8!8&<5X|8R}RVVcVtv*9LoL0
zBt8`nKChpRV|5%2uSTAZ;~61rVs-L~f{i;fsjw!F8|1k-*2l3qj(UC61`6YNA&x7(
z)&AZZyKE9`B+rYG9XZyEjL(UJmv{}<I8?rmBEB3)^ZmuVKI*kNUXSAug#`**;@EUY
zIHnL+*c!(hal9GFwm6C?WGcKB$J=oniQ~IC-ic#7C)F(ba2z}0*cr!%aeTyd>Z5kW
z@qQd1#PMz%S-;eNkIECXS!QhyvszdpyHw{8$?iBBpE5p=<BK>xj^l8d>^*Vp6|ygm
zPlQl7vX9y?{8Pct((>qEwGYJcWgK6}afl-}$X?V(u^f!!t2l1(1s7{S+%x;n>e*|~
z6(fGb^t)91+c>W0WVacU{fn0UeH=f;@mn0{;{4qxj>T~@jvwQwvon00lS*d4bhS2J
zJrU=HarUJ9vQP0k_Dt=c<2Vz?Pr_L}E###>>U57hD*qD4S?2SKV2-~^1a|jP<iFF;
z-0Z)2yvOlJ9OtF!&p0l`@%=mDpZln?wR1==N|k=jzFzwhv-EoH426G${L4cinN7)M
zsa_HMFOI81D8DA;I!CXT%j!)EWiql^s&xxxDHK%*DdZ>=Qz))bUZH|Q35A;#Zc!+u
zkXtVMf!f*hyrc>iuI9=R*c#4k`EbT<3Z+HJ`Ib>AtN2%T<W?0#gXPeK?AxXF4ng)U
zCuDO@&YcPs74B8IPb8HDt1DDixJ#i*TK{e#P4jZux2i%lslK;0NSJaxLNyfbQ6MSO
zR}mMs3e}|9zUqDj@>+tN?*j^r{;pkHkR)5kgHyA^oSFh(Cu1qpQK&1%3l!=p)DPY<
z!*{f1H&AFO)5%kaD4ZOYy}3&^k>#cBk$h>|=45lSbgApb+Oe~>wcxc(AYn0t)a|RB
zD%m#YRgn3|&Tv%Wdg<(KJ+s+GDI^p+Ds)nC6kLU-3Vg86Q}7k|EJGvmzQH%Bo%^b!
z;(x<bqxz~x`>OSQRbz!F3anCrav~qWD^zH!&`#mqzN!T$RT$>o-IhYW?W<ZTT<EJv
zc=smqsKzcd)n0}mp{ZwgXdSrv{nUN^RA+@Q3S$(;Ds)xorqEwufI@dps-NmbNnxmC
zKh;BFbU)RT(e9@x>8;R5nl>!U>?@?7Ae%PzQv=g{n8F~1!3sk}GE_me2sP-IM>Q7m
z;R+)ZMsk9*pYHXp3~{udx-4Xz!gz&g3ey!Pq;)0>nJ74kaTt+HgHy!RR1sF_ufqKU
zS7#{9QJAYRGu?NVklBJxfAx@%c?$D|JWOl-R9ER+Z&d~@tS_JcC?~G4S7D#RB89~Y
zPboaDutZ_0!b*iz3d<z^<F7Ovxi@dQ@D+lODLhWgEy7PIJjtv(kvFEl+PpMOLgAzR
z74<juS0DCQ&nP^r@Sei^3ab^?C~V`wtFTt#7`rIEEM%SFa|-K)uxW$BM&X+TpHItQ
z5b~nJOG18mwgHt#)eXO*@WsaP_5SKrM!s(NHNn>fw+K?WRmdBHZwg-Muilo9I~8^*
zyrZyP<U2%Ic7UP+JKi%u(fGR}#MgP+0QG_Jj|D$uf_2ONNMW}SDzn;nfZ8Liy#}Z;
z1Jox9`xWj;pj-l<DtxB!i^5rj&#9wuSm7ImN=c2s8atryr2>B}e^B9T6}-FbD+T_R
za+j|y^0Y&IWc7iZmuuzRn-lp~;Rv_3!jB5yDSWT6yu5Z?;Rl6z1Jp4t`T#|8RAJo!
z)wV{s*iG6G1JpkQ)Cq-xqgI81Dm+k~;x_q6`&r>9h11;B16A~5L8pPii{nNPRA=bq
z)q<}*?N^206fzRHDS>kezbpKu@V5eAiS`HA^!A)T70$~PmL18TH&E4_Z(UHhsPN3d
z;MJhSOFZ@!u5p`p$@y2|vci7~SH;4_TeK^Td{TRJVDOGL#(}?S;(Hed%?)1{_dXk_
z4*we}l0aqxw<J(1fjPJ5WF=5Mff5P4doffrfno{p#cQVrDk6PY-8tvx1WG1?aB;Fr
zI^|p&$myYU0=FeVg)#{&xJfIUz^$B7QX?l$zD=tzNbNnXZON{Gdjfy-v(A;xDWAZ~
za^V^YT%Vm;A%TzY2;Z4NMG;m?pjraeg;y55D}gFP*yU~^Riz`V?0y4j;T~zaSMWZ;
znxa-Kf%_A9Ac5Km<R<v9$dH{tD1jUqx9GzeEVM%mOD`HEubV)<1R9FYjZx|+&>#Ue
zQGvrz$U>5zz=JgFp{~dG6+la1i-WBW^aKnxIVf;oCSWD-Z30IUuoH+T@LU4x6Nn`c
zPheI8vlCDWBogS6K+go61l$Bt2{cNe?jYqQ;3tqw;K@Z1e~@CyE+2mJsr;UURO1Ai
zB>2Vyv`(OD0#gR5<_UZ?NRc$-bOxy{gVb+>RAB-w5+G?w`>P9z=H`*VpNh2M5+~4(
zYdu(19UPc#Piuo!cX~cpbx5G2kWPY~1-l5cwQB<1gfHEvu{z?Bf`NlouLOE0Fqxht
z(1)QeA7+`5K;Hy7TtBAS!v+0CJ|KaC2@FbLuvAA24oP6BkjEQE*l}0_!=*YRfl)#z
z9GSrWM+$CO-g0N=7?F<^9GBJ^&yGz33lkHVl)$(a;n{=LCygU(2CJzFOiSR`!K$s3
zOZoH!z8<V*iq4D#whvYmQj@|t3CvC4sRW)*;GqN_PGCs_OJ#_8qQ8*&kefF@fkzTx
zm+Gyw1tNKr+hmAh6HP4=&Be@+A%W#(2`o?G2`*&<D-t+APkTIp(Vyo(#%%e}+W&z?
zOb$^!hNzVZyt1%h6}Q`}{E-{-$a5bn`2Aw|8G6+tYjpx^5_ndenLb2ieVfP0u4R`Y
z%9|eqXC1@4px}uiYC{4W6WEc!&IC3k@O%PqB=BYeFC_3H^%ML*Vt6Tm&0>m9vhThj
z>Sd{(KWJTeDxbz*OW?%Tg4b!MxP4-X+LFLlkz5<1SmtHrmLD2)+{Sbrs@_WAZKmr`
z^^O?Xo<MhLr2<!f7mpXNAP?;X-w}cL6WEi$-UL2ipoXfCxKHP6i-)QYrEkl5+HNjT
zru{LUJYbP*7^?P3(~m>dCkgBp%XIkAJngdtU+IajsGq<W<l(#u!_=3I_7HVIR^h*)
z>L54%F!iz<A<lWI;1F|om>NG!oopOAEM~vq?i&_Z`!0d+xtb1&Is8QijwWz1fxi+s
zmcVi54|fwIkif|VPABkl0zW2jDuJI^&eUe<&?AdzB{FW{nFM~3rn3oN8)R%uWIU>Z
zCUPRnIi8Ko2cA?`==TKJO7dp{7eqoeR*5&{e<yH>9~@3F);|gSo4|hwTutC|0#`(z
zYBvfMNUrfDOd!JvjNg#lutr?FIje}+$rQ|T0{7mWmP@tb4oWzv>7bT_n;n#NaHoTc
z4sLN!%E7G;ZgT*Kj})SegR;*5e7@o8Un>KLIrNR{?GDO0DDU77QKNDHtoGr`|4pZY
z483fas^p-ugQ^ayiR3Q9D&i8m+%46|qQMlZJE-CC#T~(n?h(9KT3MxK;)Y?0$RX}$
ztAjcY>WV^b2O$SJ;zqWE<KkghEaVFQe~_;{o>k95eFqI4M8t<1(`g`fZiF|_LB90j
zSd`F15{-wygBA{2Ixu+nJMbL%^dT9t9M}$`4&ELXd_5a;5Er@Y;LBl32`5QNl?qOp
zkn_9Qq=S^`G<9%xm}=yp%5c?ixN0oICW6$=9Il!<XfD;p!-Ihe9Xys{k+*Wt+QCu>
z%N)M91Z^EY-G}iG+Bs<NV1R>x4mvpK=%9y#o(?)uZCO?q2VEU>7K8l8_+UKTYq;v>
zpu0$>$`DTp_7X{72mSaVI9&C1_>2u2?<@FhxMH={P_4fM7P`d3>L3S$9gJ`=QiMYs
z40Et@Q3mfY4t4O$aFsPe4R=7zkJ{yL+#1}M9OYn)gUPATXa|My@TPY8{1$qw19~+_
zg)5Ix6C6x*FxSCD4j(JRWCt@G%ycltfi^<58KI^*nCf6(hcI3GsA@hX)45)WFv(3X
zXYtPFEC;h4%yBTUbRK<JJ1MfOuSNc_IJwxt{t;@PgZT~~aj?L_!t{)Wk5G>a&#iCK
z)kO}Lj0obtMQ{lxvMTS?2({e73I`h<Y~s2&c--N0L0IkJ35Smc;Th)t$e`CshtD<P
zX$Py)_8FNXBZJ7VZkkDj8%VN7rvIFSwah)~yUyVUM7ZThHTs+U^$v&|7+Yz2-oXnF
z){RuJI(X5+j@<>D9lXqNjZ`l=`1`3ml5HwXd_~43;SjGeL-^G_cX63KRtF&RhJ!a9
zyyD_j7uy`X<=}S*e=xTlyyIYxgS`&6)4qcb9em_qr-NOTj8q>uc$W!$N0{Y3Ayfa(
zd!M1073Reik@8JX<nETHk9opO%Q|w@qVS`~vTo??bMQU$q+IwDu7!h79en2C05^++
z&qdA)voD<B!jczkH?G+ZI=nxHn#+UBwy#BJ_4IJ|7VVIz9TueiHx9lPenjv)!5de4
zKR7t*;24wV@4Rzj;o_XE;|@+ZIO*U=26=k;Cy|q!l4|`$;nO1dS@4YDFM?+Ue--3J
zexv^*70Hb_oOkf2gJv$8ySU)sqJw)~+~?viE)Y*(7o}WWa`2CX3>P=K_}9T@2md*^
z>fq;*DsvRSf(c!5aMvi+U`XyY2j{AXuJgDq8=6xoL>>`^A}%sr6n9a=MV5=gQGC5^
zZqXZLl$uy2RLsSkQL0LX(3(-|W*4t?$)p8VOS-62DzuA6T$FZE#l_t&%D5=&qMVEJ
zF1{V5E{syQy1327?Jn+ckr=JMFmgXWQ@iwNwY_?%_GneX#horHyBITCt&3(<bn#5}
zP_x@YokpulF6#f1PjVMM9HolY2qkX`RdrF##XT;Lk5-FDtLiQ<lJj<tRxgZJHC&vz
zCG=J_?_ZiN6{_i?mWzBB54yPD<wG5LAs0C=9&l0HMS}{VcWQ>R>DU;>rV`~sVHdeB
zMvhSpTx5??bzIbS5gQZ4kX8Cz&qb#(s=kXZ2$3{&5pnUz7`1kc%5(Ad7*&t|$F^#y
zz=h^Qak4H_1^K!Q%Z2UYz!+t?FzMtNl{Hooqb@3rRfS_!Oi07AD(+(7Sj94Pta3Ot
z7ru+63y%KOSmn8R@A>?#V|j}?FGYi6RU;RTU7Q=M$eXw*IZico5gn)Q8>bknj)H|Q
zTDX|(Vv38FE?RL27lT~1cG1Q~XHLh(*m0_@i;ga4R1LLr(Ox7ST&y3b*tB$<3RXl~
zw~tfbj8k1*TpXu*xajGk8$G-wSeou!@p7RVw}yJT=q<wjf_+@{<r0ind&-CS1x-KU
ztlsD~zy%kJe6WilE=F((Tnu%wxm2iKnb6}ELc?4%bn}J_=2Z^uD;*l;Vzi41GT$*=
zf(_cHvZ3+x*~K_6*?3i_VrWvS5Rq~&-$c=zB+f8IpVtaaburDw3Kx&Ln9h08h>Ha-
zX1e&|fzU%P9%jP0n9a<0(P6xrOJ11Ars3n&nHRK&$1BR`xtQ<b+3`VcaNUdFA0m0w
z#X=WLT`Y64$mP?mSY9!7aJ<?+UY#f%nw^`s#KqTxb0(Dzt-UR@+{J)Op-81rxALK1
z$E(L(JmF%4i;XUxbg|OqbFF+$bp9$A^{R%Ra`Ci~ViVLeT>Zy#*SOFpsApaNOf^^n
zN?2-42>j_VL9KJ~oQu2m=5eP}vfc$3ksF`E+~nd#7caSZo&lerSYF`tC#Y{WXqy>|
zzs#3iygNZXHz7#=Zzm}3sn=Y*&K*%0uHj*ei>)qxa&g+l8!lgUg-=}U=lSpAEf?>*
z_<-BN#XBx`xY+4pI}et^@avtzm5tEf6BPN@x}ja%ZWGme9Eb|pq0$o-vD25uyou^V
z7azIU&9s+}$x!H)XY*(0gt|{udqlF=MbUaeb?QX5k7tgbYt;#T>heWc_=ZX7;&ZN}
zi?0}JF@C_smo5%+V`hh%=phcYFE_MiqI&b`{6j7dGZc~k3E!EhPOQ#9-5_+t#dj`F
zxO@~J^!9rfM_qinGV2Ga9-64iuF;P16moHPU*1JlCn>7^$fIMDIwd-ZNosvgsOuy(
zev<l`yPk)bhb#}ju#1bUF0Q%w)x~cv{^ap4zMXUNyNf@#D__f8J4u~)`Gc$w!<FAK
zKstYshd<AG7nfb^suL<%C-k>;yyW5^Mr@LLF*iiDA1A3RJo*}hIFbK&wAK&0v#EJJ
z<2pYzCM$a~U;l-}@r(=)YribG$-_r^q5CE)O6KU1q8^HQDDR<yhvFVecz}n}9&Ywf
z(!(ttyl1t%Y-__a8mHWIaxn2yoLXUc`szSZ#=~tMZudZivL0^rFln+XQ4k`s^$stH
zXF1VdA(FCB<=*L`qKCUYRPj*B1KqAHE|JX74Q9bfvE1#Us)uWn)sD&P)MQo7<Acz_
znpT{m>Q7N5%+GuHB}`%XUcvhWYYNu#aKDfT1gTS7NVbQNkQ~8qx;0lw;&4Vi5A_*}
zB)&USyMc#>9%}fw$4A6No`?M&KJ}3A;Xx0xJj~|zKXl1MI}hzWyuZ9a_xK7mcpeN7
zrU%P|?IG$R=HbVVT9YZN_Y_ritySf?8TXLz;CNVYEut8T<0i?ZDT-v(6!pdw<um?e
zBh5TC7m^fA2{!W3SO^uG2x&@J%S2c$^!VQv@;=#Xwe--!!<?h$x#r>SOA3gsJW$@+
zLmMIFZG}92+U($=qlbPT`g`c)p|gkH9{da1r4Cvb58XZV@Ic<xLpLGS%0^ga=_yqT
zdoeOo6eZ7`(VBl|_3_Zx!<i|Hd}_bk0Uic=7~^5Ahe00b%uo-*JPZ~GXl=+1VP@WN
z4@ENaMtT_K;q@YUBcw{gGFtfJJ=V~oc^OkxRa+a!#hR*Sco;9rG&@1aL?)pS_L?kY
ziifE}rU_0LtT<Is;dWP>$;nPtBy&8>_3)yHmpnY=;b9LeJUqrVjcW5eEb=gMD&I<n
zN4RPpf3y{O)I+3fgrxga#nBhaEK+&aVh>9^EcLLA7N)A@9)@P-krRWtXXbIfk9&B6
z`_aQXn)0yH!&4rfW+@$6C3a?6kq>Q+NyQ=BA2pxx@T`Z`9yU)^Yp7f#kCyjLRV1An
zXFkWxTPAXRs(RkTdTvIsv(dw*be^!4>2cB4Uhr`CnEB6CRd$-%?BQi@JrBD*yyD?i
z@$e0%&@}a$blf8Rb>{FiMIlGr$~_y?T3Fhf9=3US%fs6qKHxf<+B?jmY3iYA>YCC>
zwo7$~;7$*_guE-r*7t<G?_tC=#p;@A>O=04qCtE<=Kd;?x6i|8)6^c}+oq|#9`3vz
zxw%A;37^RFaXO!Q_?$<ChwC1`@Nj@}^YFWeFFhReaKgh$4_|rs+C$SKx!-#@#JNvX
z-+1^|$YH@tKbS{6+%#Q%=b^)XtI>L^@^nRPI9>hV;V2_{+T_H!WXB{v#|0VBA3dD%
z@H6vVHr-D=%4E4Y1?n@@?9zC;dU9F8FC56juk_?I>z<-{lcp<@-#qjYk}4B<=b!K&
z9?pCCle3O$7d`ytfx-(OdS(PMVfov`zaB2r&h^M8$&i0Mj4t-S)+-+V6Cowl`HXY(
z@Kve0*CQD||LHAm^Mid?#7DR5k)l3|`N59P^pPcmoUO%ul<-m7=Z7rcScsB7Zt+pd
z$CG@Ne!s<ix@>xo=j}>ISm1*a5}rI|ecVd@vXP|;?OH;6RcXxL+kM>OqnwZOK3>ht
ztLmeIk2`%-_HmbwKbIF&^zqVkRmlf`HQjKc)qHsYv5JomrmMSs%tmC*hT!zzD9^<C
zl0a1Vadf)swbuG;x+*h6-Rt8%AFun^;-jXIT0Z*w7~u1Tet5u#>%;R=+efxc-0%_d
zk>jJTk9t1BK5~8NGt?AYtK-A`)VhC0Ff|gM!}WbM@cBANJm}-%$5!hZsv$oDeB}8U
zGDAH(L-C-VJ42Bd__(mFK%*%iZ_H4i&QQeDGgOgcc^Na6>BI72`-u98`%s+wOjT#5
ziuqvNoSCZDQ8VF#v0``~A5SkSppZ$}Wv23dBz<)9(b-4JM<X9Ce6;j2W~OTF^VN}P
z=A(&^UM2G8&s1w>s^&flrCMy3dTXZoa;9opBJbCks+Et{9L`63A9Syc_}NxCU1g!G
z9ej+>$m=Lb^4>a&8%=fAy7=ho<78%DKc<b3?zHctw~rn^dipp}I>OHy25nnZJ7Q}T
zet9j@$46f&m1n7<Me-<NcdmZkEH%)_ARlvl%=Iytk@PXq$0Q#^eGKz4(#I$t3{KNo
zYPc-f2xe5#z>VIs)My`PGxDCErN%NE8F^!v9<$Vn#RcQ&vq(yQZdEB0nIN2dbFz;q
zK4wb5-<+kU`uJ~_n(kwok56W)@b$>?S^POCVy^bLp=BNqJ|$-{EoZCQKA3W!7Rh_a
z$HP8W`FP65JRkFYEcda($0I%#_*mj&sgFl}Fw~6mVjl~AEb_sViYvldQ&?xVij|H~
zVVSH8B@^~oY<-Nu@1#A!ZRO)};fEGvQIeRgm=)YaD>?Dvc_dH!c*e(i9~-!QvlTbO
zvp!b)SmR@@kLP3q9^7LMpRLx>f!T_M)z2)Anj3v=^6?_Kn2+aWZ<h147ko^<8hK&1
z+C5vb`rxvH%|2e?_Vn>Gvwc|s3&$n0`WmA*OK~pT;9HqCK6d$dSK{-gEYMp%c4y{o
z^HHOtc6_$_c1gk8KK`Ap-eK@<ZM%;hLYNyng)qqP`FP*Q&pys@oBR0C#~~kweSAby
zK0fpDxsQ*<_#Pj7h42*JC*%`m;F1C!t;~e|j2kyj(L8>bQb_Uz<7q{{^l^||wQS@7
zgLW;#qx&l!O>-1CwYkRPw*8tNr>F<!sPm;G-}w06#}7Wpzx8oM$ajJ~HYq&n<Cu?A
zK7R6XoO^i=-~5RmeVpL&ay`;<jv7BFSd{u-SPU9l7hKRza~m!$XtdU1mG}$umbvHS
zs*hip2Ia$l^St%(8)ME}03xCAcOidpXda9_QquB^Lhh@UNu9rZFi}ZZ{t@|Q!G8sL
zoKk*;`ClfoZArm3A8k*Y#gZtV3<kaKBSXkdf<*)~1+xUHQ&h-1y|c(mBvCSnTSRiR
z;F39Nm=!6NMCoL(LCBHh5BVefU@apGWs|ryiQ9zJ!W~K6F8pBe;;fbvUS5!0D7iC<
zib>wDN982$PvL<S?n<Ic5|1VEcoKIfQ8kIyNwi6#S`yWhNF?DTQ6q_ak}%}@{N5z)
zOQN1|Uar>^5=x?0T5^9952ShRB(l@oeK;dWcsMP|6;emAZW0^kC>pGvL<5mDOya?`
zW<*GyV7}nN{TT&9G(mRMlYCArlZ3@g!V<ZiZjB0w3C5F9X*s>3zMI5}YvHCM^pfy}
zB-1)6A&rt~ETl<Vp8HrvGvUqCl0qRZl4zNhv`T_%9HMO!?UI<D#N20#v`?Z#65~Xt
zV-lT`eAt`+<T27Yi7p}>oJ7|ox+T#sZKu1C-hw>@dvaNY?2@?k5zc}7CUI$D770s#
z5e`UVV7hgXkQ*)y5k6FKSQ5j9(7hXdM@n^+;Ap`yf@7HgY5U`om>|N5f|CT<eX@`#
zf>Q;j2^Jq}%}8SJmywxC%o53L!AFvqBV?}NLxQyPu#kCz^964t$$}&vO=6))7A3JH
ziKW69C;4rBkORx4O0pt}<!S!$PbMYbIhju+@njO;B=Kz$E0b6iWDa&E@sw!3oWv_h
zJe}k#ZG%5ZpG{(Y5*viC7F;8^R&ZUCj{*j2hh-H=HcIt{BsK|oUXb#8|1L&+QK~Nq
zZWjF9$$T}f^JWsS34dL1OIp4)i8q9wmkgiqY>{nAyd{#i(>m`Y`5;Q*$&R!nxiItH
zB;HHni?rl@2A_w_T=hX(@?jDmrTK0lA1AR#$R9GJed*RugzOjmRPZyw&jq=U4hW$G
zUkW)W_*D{L3ptc-J)GVVM=0S@nL>#azE9!@QTR8Bqe&b~;!mj_=f+Ipw{+i=LVgzf
zF^N-Y`A<olPV<Tdd1uo67a?Z_e`RhgXh8SQrCWa&@`vDgK_``YA>DdW$X`kPot9im
z;-56<d@m<)MXLWLaZ@UYJj+#)Tub75S~EkM3Y{P=i=>d5*33$wsPJNfZ6$ASPN8H9
z6;r5`!Yv}NF;`Vcp;QWxYH7jSQz#>(tl+JJw0~O)XT=Wr9U?53Liu#-%0wou-I;<m
zSCLc}d3C|N1goSq?-o)ug=#`dit{yu-y?XhAV;}RNX-;#r6t>LwQ8r3ox-;%97!RR
zLQV=ZQka=SIECC4dZf@Zg*qwJO`&lLO;V^Qea#dsA@x&ekU~S@krW;jk|&ri$Z;1f
z4B}ZJRZUPAGz1s-)NCP+U{sL$F(Gk5l|n*D%elelj+@r;Qt*W*(~?vQjncgDT-7v%
zW+_~G$Lb`)=7McfC=}8nt=UpYE5X)+mz~VE>DG2a+6#6N?3lvV>tTAr(m91LDZDV;
zBJV1#-2}S}u5F#!OUNj}-YN7E(pPYB3jKui7o>#&LIw&B5<FiruskG%p;8?tNXhUN
zMhG7%_(z6K;ph~`NOi2>WWjNQ;{_)OP86KPC6>=ScAS#pi%o)kF-?$Ux)7%5tQ2Oa
zusMa7Q<#&&+!WuUjHgq0D6RQe3J<6Fg3zG*e8Gh&JR)R);G=?U-JQx@l)~Z^mWX7T
z;8MZ=|D0Mb)fG&(^e5NjDLf&<Ck0mu(%LHekk)xdgc}5(6<nRdnzZKH6xIoUPH?@T
zaU?<`8-;HYWc7J2WtzVz<fRnuOa%%2N(!&0@QDat6MQR$w}reexJ7Vl3U3Hump4<`
zCj7Y-!D+_wj#S@IVS8F<hmf5q>=N>B3O7|Q{$9Funk4)ODSVj1M=9)1%lD@6ahmU8
zd_-+uTEYv1{V9B!!e?p8!4y6h{)ONH!7l}GTt$2(oF0BH<WLHSg?y8i*JQYO`12@e
zgnEteLkdSzxV;hXXoO=a98cj|if>xRi4;zza6W}UrQ?r+zou}C<=^m6X=|rb_&J3$
zQvHP|p^(QH1yQ<jT>K`Ib7}qGQ}`pz|CSHd3sU_zg^OwVU#b6N>N}vMD4zdMjwJ9Q
z2$E4zLD|{cBOb>cnK80)W_L0{5Ro8A6cqspO3pdw9K?VKh>8(KMGTlDN)SO&3@GsX
zbn)H)`@h$(-e;<7s;jH3YkGQiXYgkh|0UpWj)i#Uf*k&vt^KbvE(*RfvN_TJT@lJg
zaa9zP+U3)X62i=lqGYzVlz`Gg%S3TRG+!M>IpLI#qLP3LLa6~!R22NrO0`a_EVxRx
z_8J1o)z?N*U6?luts%5t6g36Z5?Whm9idcJSHKmu*9pEpiW>yf7kZ;mO5PMj*OMyF
z8${7Cid%#q&eq;4pivZ|EJqWN`m}VOfQZoiY;EHxcF2rt7Udh^&?kz%QM8DnAPOf6
zH;R@b*&&LK0t$t;ilQir;wV~Y^|XtkO%}Hm@RqoueH6nVQ*(`_QxtKj(xbR7irWR>
zojvQ0DDD(|m(VM>2A#9DQ30_if7GP3C8B)oDpJ|ni~u7FGs{T}XfjY`S}O`$4zK7W
z$BW|rtfU`B5JeX`>>9;AQS=bpO=$Nh{@+<Wqv$2fdxc)<Ahq2WMQ`B{pO~oUOj1|0
ze!>|U#bZ(QkKzG291z7rS;>J>JQ&3wIUF3tuq=N_6hpK4zXw#@4(BLm?+Zpq)x%Ld
zB4APH+()xuR1~8H&y8YC6pss@5ye;m<D-}m#W=y#c_q@G;M9m>vM`^FVq&)TzC&uY
zJSB>0!kH?x%@M_9nJ$MTB!$itJS&RX0_F&%%!rvK=VkGH0SkmKjABuiPaBp-v5fI%
zqrk@UC|1zh2JSSlGKy7E98KWU1Xf4+E^*u&N3S^6MzM~O7DL+@A2fv5M{z2u9*1p+
zVq+AWqSze8D^VPXg5Pl2!q|@DDTeW}c3Y$BqbJ*<*v_H9I*;Eu9dM@I&M2Oa;-x5F
zj;i0HKNH2XQ9Q@UZ>3YX-Xwij6#Q&-(IowO2K*$QWw(GAqI~uD|2TUE?2F<>0sF5A
z@Ov?nbeoazNBEX{d21`=y&A=9QG6K1M^U^U#T!u^isIcU-i+d{DBg*3r?mLpw)(*+
z-i~6xB%Pm(DYz<c(j@&<**t!n<=L`%??v%`6dy26Mb+nBR!&l%ias30UXl55lHT~Q
zF!@ySaTK3K@p%+qFmmeU9gV8*)qWPmr&0VoNza|EB>B;2R(%=8S5efRtba@JMDf>A
zzDQH&H+sI2!+-t^llff~-$(HSN9~XBu_%6|m&)eREk8xkY_f9Hi71YXlEh?X_DOL*
zmG_yf{~X2XD1M3JOcdo~s1U>1D1MFNLKOc-@f%}uvVJ~_KchGo#qSJ;$@-qj`XB7(
zWIZ}Ba(1%*R}^KY=+{rt|EA9;>o3gC|0jx{dgZsAq7R=|{9hEYDSFwMq89}dT#Dkd
z;2hzTbCrM+G2{v;8AGWUO2?45wveTaFt1<=vs@iRx$L>U_<xufD#j3sVeM3X^c4Nw
z3oR<eP&tMwF<cV^O{x<^)flS9P$Pz#F<dLmjeoVR9>c;Z`pzl(!70k}@2BXsVn}?)
ze>;Mh;KCH0pl%HHVz@4b>tnb%h6YqSRlgyI8)LXBhWc_CnyQnjPgVbo3WPR{;R={K
zRlg;MTjj8kbc%eIp;L7&hA=rXL}Dm8O>ZHF<;T!0hSO8^#xXRBp=k{Jrt0h(EhPA8
zs@_~UG>^=J7(Xzf&Mg#LB(zlwb*JfM7RS(9bRPJtEe~%v(Xw3(?PC}p<E!BcI>gX1
zhWlga6GNvMbXpigml$q~;r19F9UgXLxI=&$Lpp{#W4J4ZoOI6JF&Htdo*Jf1=NO_Q
z6B8O2nh=^4niATmYYv6Wb<H_COr4d9p;e=>6N43lEdmopEB?s!;d2j%FLhDEp74F4
zyQYP^#=vv$iJ?af-Gtd)=%wmqD9qAR4tvFLuYfJxl#=@d6Z94^d0e<}4E<sl8N*{S
z^pD|z7>33$EQVj&wi^(`gE0&eJdloUTR`Su0Yf<Y@i5DlFN-Qw&)qsFGCYRE$?(H5
z5I3KuKNQ0V!Tf<DIgbc_R489oK+Y)9@KHMd@fb$O)Ef-O#Ly7=8<4+cf6mw#${?Tm
z$Hg!o`NR`qcp`=;W0)92^*Cz8F)4=0F+3N;t{A4oFg1oXjQJR*#V|dF6)~)gVMYuy
zW0)P|UkJ6APUhTVMEE|mSuqe?7^jgrCx*FFJ5T8R7#46A2xje)7#0a$EcDJsxhzYw
zwaWx77y3q7jn|P?F>K@yp~vK|7Qj}>BwfeD7&gVQK86hp6*1rn-5kS@BXXY~n)hrB
zTj(FD+7`o8G3*q)UFZ&>(+aePV{)nRX*nc#hVeE}ajrD<d<?r|I1t0DjB}BBxq9y2
z81`fv<-YE|7+#EFztpnn#`~08Ub-S2!z%*#-pKurYOlrcI&)wQzsB%J3~$EpZ4BSV
z@Ky{5V|XXVe^@9_zMWM?+^MwoZVd0m@L3F>3;%tgA2K{*_#mb>)hRZ%q;`a}Y@F7<
zpY~Bqy`_ZAk7M{mgpUgSR4DoUyVDnfzoM)6<$Ni)>#s`B*IAiwvVI`*`xuVVt5Wp?
zqj!$#;7>6e7tWa&PQ-9BhEp;898>>8;l-4H=v!DLLNQK5($gaO3j^%;A|A5P$-l*L
zPWTsM_&tU{VrtROQ9Ccpe}q!<&lvs^{I}36t&>m5e`EMBhKn&=lB%k4<-N;H?{Sol
zBPWil;wTYEuJB97(RrFq0TxCS>EYkBGI5lRqe2{r<LWrdiDdaWO7&A>EF4h!nNF@K
zRW$pWIM%f+s1!%#xOzt@OO-fZ&s9heHC4ZOR<$^;6?vY{!<uo_iX#+<7Dw$k>cr6?
z&hLgOYwHTVE{=Kv$hqU8Jksms@P;_*XZbhAag*Sivz({*Dal*nxHXPOaWxA*`9cj1
zL8lwa5QO8%iz6CGjC#i8M&f85M~gV}MML8_dWb`s$YE2V&4j-2U891yQqn$-4#H^}
zN1=dLaTLW-ESOESiSuJOsv|7(28P-SZkOc@nx=P*b898Uat9S=u^z{5aoirqosnEt
zJ$7T0D>8SAz+G|Not5k?fPbiri%uiX&*dN?I4LxhZOd+ypN`|nX?mA9n3^(zEum!E
zaX5nAEXNbz3k~9Gh$+@pv~|ns>@MIQI!Zv#ET5x%UmU&Z%mfM&xId0QaU6-`!#MiJ
z(JzjnaSV&2e;l(;haQMyKpa)hm*zj92gcQ($_EMmLBTwv49j3)4iQOK4UglYIF`k+
zJdP1@JRHZgIHohw;&?R9Z~b6G93$g+ERHdB(KLNj9POutS5DJO&yEO>mcycn;m6|`
z8^<_C$h7eL({xH+KQT;xW@5OYL*xl|KaPoUygD&FDUQi;u$FkuzQQSSOpW9FY5JAJ
z3)6Js8F9>vV*!Wqi7?BoIOfE`=4Qvia&)3%&W&T9C?ua{z6eyDt}kTFPuCa4u{e$;
z?8R_ZyEKk=)AgSxhR03}ldgzkWgO4M@oXHc7}9ZUj$=z4YvQQ>P<VYD8{)91>uWg&
z1<=}l)AfzgyG<PTM^x9?Q}#})TgX$kO6xo0*cQk3I6itLyhDVaievAi;m{Ldx{H=P
zEn+l)COt=g#_?7h2jh4?j@@y*9LFnhyb#BpIQGTyBK_Z`9lgPG_tL%7b*hbDTezPF
z#Buo1aEogT8_o!`6wL@9pey2dJ&rfxcuiX2xonq~&+ZTzQKyhHZwjCCwEyimUz3gx
z#KVWgWADcC9zC$HkluTr`WYwFb=pi0DbM1V5>VSmaeN%d8ET8;leqfl)DLkS<G2Xs
z-*!HY<1@jZ(+TauUkLqDC=b69@U_ry;`lbp|BhiGxXSHeiv36pahw)C$KyB=$0@-l
zg>Ia#50!sl@lQrH;AgsPy84^aFH(EuuTsCp@f+hjfol>t7su~$T#VyV9Dl^|&$W@i
zN#i&l$DhnsOLO<GiTove0@kuzh~r=35VPt(4&|E2(djzrWv2ZE$|O)WfvXZIkwB>g
zSe2VlnpsK;__IwR@z2xs(o)M4FHYCVxjKRJ2~<d+Ttex*(mE2Tm_VfjD$BXlR%M0~
zZXlGk#8nfhmcWe(+?2qz2~<y@Rsyx9szw4e6aVW-%cZ&0Nn=>*Bv3bjdLqMKT$cci
zp{n``TraKDfEyBMHAD4_{JUo8Hz&{_0WE=W_N;~p+>*ep2{aN;D8X;>6w<;#Y-3wI
zF)x8g0*ysyi@If~jU`_W%e5^eZX&p;&}KAMz(8rYWdel>^huyEElHp#f!h<fBZ1-s
zrnHZ+v`g^ob^pU{1hh?HR^{Bhagp{3bV#6M0-X}LEi0o77&k-bxnJB<l9B{>CU92*
zJrd}dz}*R~oS|C@*a>t_Aez9g8G1};T4+3hgn*<_)}|6Lve-=E@C=<ymW(jDKz;Ri
zF0V~%N?he6z?GpZ)D!9_5D4fZw5w3cbQ92B=siLQ+?RWAwzhWyy#(JUlsWv@c{x1m
zemQ*aWKO>X`X}&60*@x}Kmr327@WWm9*&C)6gnt@2L=2%Lno8vp$cV&CP2RtKb*j@
z1coPYafbd-0wc2gE5e8FDM?|9jZEON1XgjAB!N*0oUB?nE`jk0jApEkFB+4;;|Z)A
zTl8$TLRO6x{AIPm2?;!rz=8x8Ch%ke6B!;e^?3<QO7QoGMJ!Vjn9O*dsZXJWV~beE
z?Py2-G!dAdz>KWqOaZfm&Q4%XmOod(<Z6ZUIjq$RhgU1CGPY<@0<>g#0ymE@S}b^p
z(4|6IwTuBXQzux#7)XGo60<z@c+r{!)+Vq&!LQw^uB}Vp=>(ohV0{7`64)rrO`IKL
zi`W+B2{tFNML7K*FWQ>GHjc>SMJ(F|>=62t(49gpHl4t834A!NXdfeoLz%!H&b4ZV
zC8P_~ygPvxI4;!+$t2yIK);##_?h~KaYZjCuzaS@(y?0M%hLUK6L>FyR}%b-R^fpJ
zUQOV&1VS4l_l_%ion4-(r^gq)kpK@_-lUk|gIUho0^SjND1n_j+EJ|4*rN9nI3oRu
zjV(GX#(a>#iE%|V>B9s*O5kHUYFrT=e#ba|%uZqUn)I^-KIi;Op>qmf(7g%FPGU|H
zUnTH0(?}AxCh<)I-zI=0Dkkw=0^cX_YXZL|@IwN}68JHJpBNIiXnoy0-iIDJ89JW8
zv_X;6Y^7=B1S2qk7H>zY%+yXL@N<Ii?azCArcSYAGxcAXT8D>O&LsE+E_HX$;?E7A
zOW=3r>Lf}e)$ew=jQk^k^UPxj{KdIEyx>AY{VDHn<~IS?l+~=?LM+T1|B3)*{^Lx^
z;!6o!7Mzn*r<dwhK$@FG$t12$@;h$e|8+|xF?w^jY!WqQ>7|n>BY>EHGx_<)(ySUP
zJFW|AN6IIWx*@+p5>036Jgk&N<s|AQaa|HslDH-b_oke>Np+W6HL31jY9~=GsSLhW
zXmz1HtRbLg614=hdb%W;l&_Nn9}QRhydXVG?>kGsK8YKWxG9O7lNdfry)mi2D8Eq*
zHV%d7&Qkw>X&_48oTWD}Ti7s(9ReC95lSLSgOkvb2q$q{lAr2BUJ{Wczl?@9bi%1n
zei8#dYt$-<#z{0`zmjN{L}3#7)wC_ALSIXx&6BusaJYrg0--IFYK2VZc@f~hBa4zK
zrjonE6=tjdPEu#{j*+%Wv`ea2r;eVT+dhdgry?vJlISS7lTckK-^s?RJCe9FiOxy<
zGbN|tY}H@hM%_hYR<yjE{7wb*QpHoDXcDm`;z=YZKU=+Du_V-=Ly3(f%p@L3;?X41
zNt}5tCzFJg#Q0FS`)u7#!eKC<3iaSfCGqLTB9Fqe^>NYGY>2>@!yt(+0?6r_L^r{6
zX6xOPxJPiezF}7NOyXWfX%hD(`Iptm5TU(=_7{485`6@)wy%JGNv!SLiiZ!#;Q-|v
zJeZXkoW!6krWl1O$ud;HFvdU<4<#`o%YXR)ljn&elXxtNNl8pjs{Qa$Np&MuqcAc$
ziGPoVS;h!>Jc+Ra#t9uSbb`<)ggz;h@)IS@2&PDYO_SK0n#88rI?JoG^^5Pco1Vms
zBnVh$CNV3EKb@`5r5Q<ll*GqL%uixL5<3|-Ni0laQ4;Hu*pTGg(y%0nRY|Pod@0>>
zX;QshaV0~dsBoEt({grJ0684ufm3q+n5}a=@xt|LPi77MDT!j;m2}a%fJtK`Elgrd
z5?f{5&%L338Mrx#N@WTkDTr)KqQV^gDGC1VoGhFjxh)&a(fPLviglW!H>=<7nIxV~
z;^ibiPl@M}*p<YK;(_NGKXX(D8@)bn@Em=25-%jNCkf)cN$g{f=IF%J=IHz9=uIEY
z<GWAyC-D-)b*#?P=uqK-BwkJ819mfs*JSFwPdkr<PyQQvJqgk`l6X_VTS5;CCI9Ut
z-VuB#%Xv46_XK~}Tcf~XM*EP^()$YsJ{X$tXXMPv{121rEk?CAg|sQ5Pm(yww3b56
z6h2Mjvm}ls@naI7C-FrRKZqq?Qd=y1;biC=rnS!DuY`Ur&gbE`oG){9mhS|7FZ7o=
zdQpu?UgOA5NgPk&uO$9X;so_1@pBTVlX!AjNv^m~(aG{&6#Zb)FZAcM@SjQW&7a&3
zI>V{TTR)+{Ch?nqb3)1gUBDkg&kN;-Fkc^9YOelI5*HXJee$nO;ol_wlL4)k!o?&m
zQF#g_Q{WEFWoG!4nh5s~DdOQ(f=dV`v-VuQlwf2zrBf&)xUA5tg_aXqUMSD1kV1>O
z|JysNm_ns2zp{WTDO@9<YL<WJs9dJ9&YMb-R!?DMCv{jWh1w~!PN7W-byBFC!u2WK
zkU~9Lek!ziNj|SHx6jqDOM#of1ocxYyGByTPvOQCZc5?i6e^DlH%KXewjUWjn#p;1
zZnz;EO=0W$@U21{3FToZ1x;``%gIY&>aZ}Y8mH9vZkndhEQKb5C+USP_BCzJZl+L7
z15Sll3Iw!F!M{yi8VXbBHdiNTCHx|x7qvWcPT#DxO`%;1zfaD+UAoggrQV8MTo~z)
zLdO(3rSNCBLOq3|y2bqZ8}V%^z7tz#877XsBZWItxGRP4_vf-a_gUeNBc-D$#8Oz5
z!s-;_DI`*OB84YYYLT2w@e`|fFojeKMha$1U7qewVP*?0okE80dO)*ic?v;_-&2Dl
z0w*hLE^Vl)c|r*~_13ziFm0~hmAy-0P*}a)j-|WE$F1-^0?6r+LQlc>W;wkC+?PUc
z0bRO<Db^>2zA5xe!K<V7PvL<SmN(Q^p9|42e_;5&s@ecCa@U&hpcDqD@K_3?QW%oL
z&=ej?;ZY8OT{tX-;VC?n!n(Qoi*xlObM+DI!ja;KrSDs<LN0!IczmvYX|6s}s>q~U
zMyJ$L<Z+JaEqNbT&Kr|LgKl~MmCGB;p+8cZ8?)n5xOSdCUg!h{*gTzw6Y0h_k+~_%
zOJPz9lT(;NdD@x6EINlP#(Dbm6kZ%%#Ij~|QIC20j1&llU5Jp<nAuW0a-Kei(LPTn
zbAAfB<01=FSd_v7>ZzRD?LveWR_hvBoZ>e%BFj=(B7k^l3VU|v60j^6=86<n3Ya^O
zpW%qCNnvdYB@E;mSeL^36pp8GB83g?FQ-Ea&!?~{h0Q7K<XA8OsuyfYVOt8@8T@ic
z&dkcWq&rf0N;qrh={#iFJ5PUx&6zDfn5RD{RnKMxj?dGljV{`q!V6q8r}#9pU{6YI
zaqnY)Q`jq*hkVb{{uEwH;j<LR4{!H!3a?1jr<{Y;BL`AAEa24?UQ6M1!S4utLnvk5
zOyMoT2UB=k0N?vW&FgCB9+Ja%vy$(n@V;PH@x%|Z{38NB6#9|Sk5l+Wz)_(TzC2I8
z!l?Fqoko5xrZ%6if0@EpDSVy6HzM|<&~JsZiR66!yA(*j7y3gA#{`f=^Qi5otmMfQ
zPB8<d@P|a{&ncYcko{S7I)$U(x8u<N!U;Q{|2b0WPEFy~kzYA?o-O(<g>wSp&lXYs
zyo~#QOzZ;wOkv`D{jU`M7C`(@3Ks<bEA+*pd@?VI@Q(TVRfdYL%PHgtSUO+D56gl1
z{A)H!87MIL`CW9|5Gie-jDfO(ANZyCY6ImA)HiS=IeKn+1597F4OB1y0~HPM!pCy0
zfl7iaXE{{_Tw|cBfNEL((fNAyEUsaorr=saf0(Z>qjdz=6<SXynb!%p-oOo6PXF1t
zHyOCuz}fkH{;SMrAXF3DQ0Of}Z#B?J0A)f3cp^bqIC)uq#6Z5_#zL>iP;*n!-^@UB
z0WE}*PbU-_Xl0<Sfp!M!Ei3tZI={#OX|d4O2F|Z3W@#f}_S)jI3-tB|IvLOnbTHH}
zG;Ug;ccecT=mdN=ben-L|FyW?z`RB+S!*uPS1yR$W#Ddd(wLt{X9H1=j)}4+Vg}*{
zwj1iUC8tk*!hmTYZ6Il=7e}NF)Vf~1ufs4f_+%m9tB^5Z8JKTifdSiqW8i)ReGIq;
zJVPbA-UfUFfq|X|4%`~)VxX(R*Lz|^se*0>y0haoBGgP;yL*I`dq+JC^j)A+;K>F0
zKQ$uv8t7$!faN{|eAGp-Vu3#P=15-y{R|8@@Q~=~Z(yK-2Ms)6s5ih<+W_HvTh%+>
z2hnB&Lku+|dalV`Us<gah8h@VAa9d;f=0?yMi_Y5z&Hcr4LoAtQ3In4j5aV*R6Qp2
zKu0CHXMs*Ss#au-fyWJurDUxLFVLjy%gTzXiZ?zJ49qbw*H90zo-pvFfQdpU37u?U
zih!vGrW=^SSr9Kd&A^zFMVT_KW*V4fV73U*;ANjRnpISE{`IDp$`wtxx8;#8Eos9%
zLv6MFbX+}(U1(sDp*|L~)xcsIf))IckANj&{89tU3@kTrbb<OpB~L%XhrgnKJ;#OT
z8dzgst>~m%))}~>nUW{IZbZ6~wc*HS(Y8q_4>^ci1h@P>l(SXaW}tT6B974x15X*)
zY2axCUmEzzz%vG(HSnH+_YFK}V3&dY23|7o!vg(z1A7g8SiU{+ZUZj}bC1vx3w1L0
zN$oY)MP4*OO39ZEykg)D18*|b3@mxTz^evcW87A1$!`R_E@B%F7R25tqI~^@`dbF5
z>TLt>2smh<aG_2P0qG&31n(M12>-BfK4LtV3e$iO3>;x#EYv^burAcMi_FIcKA{;4
z^`m0yX9hks@U7HdUZ{U=;0sYg;VXUl+Q2skjvF{(;JQWnw+6lw0X7j@q<>E(a(IlM
z7qvgK*TN}Sq_b(7aniskW&i_!8vOJ&P8;}51b#7ahC?Y9vKMC!WELp{h}lg7cIq56
z2{ZE|W&9sf#aed%F9UxYxM<)Kr<;MHi<DdbWj7b;7etIrlk=Zo%3n5+WAc;e$TdOD
z`xog~nfPjvQbkJ1k|s(?6)`oGHkC0fJiOXOITQbwxL~5Zi3%nbnpk84CMuffW}>@^
zN+v3sXltUKi7F<pG11sW6BAWUR5MZE#EmAdHBsF}U6bGPMh$9Pq}MW0n*xjVnkJs^
zThL^&e%E5Xj)@72^<{$lEY`0x@$6##1{1CN6}-P#zuv@;i}g#3^%_g`{3ZHLCT=#-
z$VAA*T}$)^CK{T!#RO09y+j|iM4!JzztzO{CHfmIeG4=bVH5c#3YO}5CMfX75<Oz#
zOR24}RKIblo>;2izf^B(qM3;z6U8RK3$H$JS3oMDg^7tv_2o<T=a%Y)Vr?rE*FP9J
zBqve>`_fvPD8Ec^BV8lshoyRZ6CF&LCekK4n&`wFZX#~-rN_99_M5od#O)?-Sf<}W
zXD(BEhzahLLu;8{YG|Z0o!_@0%JCW+8M91ZuuR{+On+mUo)FtoCXy!DQ`$pHvkl>Y
zu}uGcnO=Umo-tvWuuV87d=r5Qmn|;WJ@S|91TB~A1oYk`%k?fMo?otiuw3tIf`=@#
zmh(D=9(0|F(I$GDxYxvB6GKe&GI5`Yz9#ya=q)x-NgosU%W#|&wbWm3h2G!910pa;
z^be4Mcu@K^Q0UO%k(*ZN95ps~_X>TeiD4#2nt05_a1#%icz=cdsEH9K*PK|oLVtRN
ze$NWA*#yt!(2QE4{6+^Z9Z>kw3ccuof=es(F(w{2G1<fv6Jt$`Gx3CpCrykuQD>!2
zkEK@Xg)8+5Cg>}2ru8eBXkyh$rK<NzeG&~=slZed(@e}TG1J7Jl{%e#c%?qw1jpj|
zN>yf=m~CQ?L`BI}`dkz9Sj)5e70ego8F<ZB>Fh<#Rr+14)F3W4vBbpNCf;F>=rI$|
zF!D_-H?hLRRukJyF2%9R#CqD_KC+rqZ<Tslw9dpD6Km<2RXSIXGgj&ASLu6J=^w4q
zH<;K+J6GwOOl*;}h&N}!6=7=FZlcy|eJ4ZWx8fZpo-*<CDxG&FB~~l_Pn&2e;5ie!
zOuT4fKS#~PZWDV=>@)F#iRbPq$@{F~ql@;K;H?3{@G(Wa&521NpthGxykg=2&At$M
z*+g`;YT{KBubFtA!5~(Z+?~^Nwa&YzH#xGa^@AMu3z4@3&s?pO!&=fqCf;R3CQg`m
zkN#xhGVz6p!zMm3@sWv-IptUDYsVBFG4UZYmE6wo@VyU;J~1(UOwmyjpK|uug~V^H
z=GVK5SUxjBJ`a7f<(DSDHt~(A?y0|GepszH_@VT-CcZQAgNb8IkDE*KIo<d4)tDmQ
zjgqpPf2`JLj*I-rJh?{yiQzFWa^o8Pq={1|&YJjDwEb-27ZYcszo&&#jH>AB19Cgi
z^udz9nfODh&dDil*66=;bk^tt*68P%eAeiHn)r*cu}1&fRQJWa=VjsHzb5{pWEyT7
z7foDZO5vh0jmsu~K!{KpS{hfSQ6i1XX;eugH;vPe<(EmLtbme2OQlgdt(IP2H_w|n
zD*x&<%B6ucDyC6h`1}Atg*4XeDd4%p-ACmYjmoc-MxEl^4HrVhw^h`xNuz2SH>GiN
z8r4KCg{!A=Z5kAK<-Af}BaNDA+%hV^RvPuwxG{~|qQ8z%8c;WldV;SLdcDvavb9v$
zuWOjJ{oV+*JvJ)80kuh6GxiiT6tQI==iDkBHrgnSaeE7@y`szxr_nNv!Zh;Ih@_F9
zMq?3co<_sH1x?a;evRH#I88ch%>?jVp4dWgK^kn4s;Z94Z^a&^al7z~(`cPWr!?Pv
zluzL{X|zkDy;QYLqk*gOtk|gh4)n<@1s&5MreSn4g>@0TEqg9C-yxhkh2ABOdVh`n
zUK5QEm0Bz*j;7VqrC1vAG=5m4C(<y|*ts{CIGIK&jiJ{?xY4@fokBB>bQ%}d=ovZ1
z=FqIwEund9bt<`St?s4ar!hE<A!!6@bV;LE8uz8qHH~g*^i1R4G`gp8&sv>3>fHLf
zhk;bKfTc$oXPOri@C}NOt<?`UE97=`?=<dDqfZ)r(|ET+{xv5GxnAOOv>)B>gt&dj
zyPL&p_5Nu*y;gr9jR9%Ay;dJ6hYt!Re^467*6IX9(-@Y<BWXOE#_%*AN@GMC57WZx
z5$gGGt<HBXve9w9i|hB)xX&|^K1^d&8l%(dJ&;w_>5bOuo!9AO(&`=5lhbN1=!L3z
zkEbz~7B<WuCv?0}9!^N(3BgYaotWiM5-@n3K83BDk*R4+OJlm=xk6_Mohfvd(Ah%g
z2<0iwCl)=psU5+BG!}AdSZH8jQ5uWW_$-6ZGgy+w(loBi;Q9=frLmkboI$A!R-~~q
zjcsXcPh(XYtJBz&R;yf=HEC=RyjJMCEPuTK?tX6+Q0H#-+EvPLmcuPVw+elKW&Vyd
zo}#bPILHv9|I^r;#=f-LtK>J`o=IcsI{n!+o=dAO`j?(6B;6(Wd7-=0ctOA(p{(uS
zy5*{M`ip72md5L8>{_Sq=Mb;cUrOWUtjsF{4hVf!=nw1kH>A-wg<jn>LIcjO)9c+E
zc{`1F(m0XE$utfzsM7dUPI)hlUoW*`i$~?~eW8cb_#llVf<F}cvCxkg#^Vbp%<_qF
z__etA{#B=cmd594d?D@f@S8Ng6anI|IN7s!LeHFU)9N#G<bRjO_rm`{=&>|@Oyj4l
z<Z%I4B<aK4kHe?Z_?dG#4LawqRJ&g|anfLa*-dIYo5o*h{4Hnwn#ONgJ?GNgQc!OH
zL+JS||4)?`ipXdAhk54jHWxX^rS@N;|79gx8SO5K0A((xk&{uvR|zd4l!v(tv-LVb
z=?uzbP%VRNGbo$E)frUGpi)L{R+P)2aJ^nWgX`9--`lfP$N*AhWI2^HxF&<D8T9_H
zZ565Nzg{1|UjIB<%rbp_%jy}_$f%1;oeY+**K1}_E2F*zz}KJdni;8``QM9MIc@7^
zP)`o|-dDXu0R?Wzpne8c26hHFW^hvmdIq;;aB~I?GRV)MaRv=DxFv%wbF>RHv|BT1
zl!2B(ID?QdA3dYp7%qHfz5c~g?N(lGGl*nxWWC<Ib>8F4wBLTvh?`{4G=nx7w9TMd
z2F)`VxJN6<;QVau#2Rh;>spHpeqXBHGC?E1C4C|St%Mc{CBIle>kLXvQDW^fXwQcD
zZ{G|abMre0F2A&pn0AuiDTA6{X{Xogw`Xui28j%k8Qhrx|5b5!2Au`m#WC8TcRNuO
z%^)V6dK>gTms(JUB`zEurZO-x$Yd~iUc}5GO;sE8A#!4w;zFL@VuQ{qa-0m@4C=m|
z`$+~~27U(5XRteifWFFLVg{2k=$b*d3<hT~L`JQ920b$9nZZ37Ox>WD>7tSH^E&r(
z#51@*gI*$bpU`EyayZa^1QQI*ps(P5Sx)~99uPbr%Sk+4^1&<~B%s&ioS_*E%iy65
zMr82lsnGBYPE=9f%^~J@h#t;h?FRLTd`t$9WY2vxgOP$C6FMr(AARNUZS|wm#|4kg
zV4Q&QS(ynLJdwpus-RMBP0nBn8_HlEJ1(`;GMG+#`j_Mvqh@6Iu^|=JOEZ`yV1dxt
zLgxr&?c5CJW$}CgUmsMKEX-h$94^k*E)j4nu9{xPnUdwN5U?_XRawqz0c$e&%~D^L
zTA#s&44%#4xePXD@WlXas|aiox>@KJp%kWXNw;ONT{t_k{HFx$%;4!P=NSQS*VA@o
zaNy@qzmi(d^4g36+Pi(V7c$txd78n&4EAQQkHPtB!2ywfF@yaXyd-#1N_&}(y&QUl
z0{bHb{Bi!~(;?zlGk7hdz8Cho&<{4~ZwMggO#!<%=x>XXLkx0Sbu#o0{rso;+|qj)
zyr02`8GIxHhnWy6YOmE)e*1v4Oqj&SB|<K5(4+ecKF)xj_oB?v3=X%Cd@A&rk6RLd
zk-?W4oTLD~cQW)<2H$7!1C!xK{p$?A$>3YT-wFLRKl1di#jH9e!hALKi41<s;3uY_
zZ`&OgN+rbPB;P9-*R$o%8Jy1G-wgiCV9TuhUpQ(RoD+N|gR=sDWxm>|vzGMt4F1UA
z>o<%3V*X**HtKxt&x<(0pN!1A75G~O{t<dXXt^>4Jmq2rmzbX|RJ3q8gB(k}G&|Q)
z36@Kyt1Oft|B2kL8+E=Vd&ow;q=ixzN?Yn3*DU1(lo481=+&ZuRpsTdLY7HRB@2};
zTyNn93so%jQc$icYgo9(;&&cVjVI2^xz<8;$~;`mx3y2)$ZxSl*byGqv{1{!<JX02
zTc~59t_8k<mWTC(`4(UPFJR?H{rQbLDbG58d!#<qUJl)8;U)_oY}EhRs8`vf?{o?p
zTDZl+CJUP_+-jkb1;c`AA!I?bP-vl*g|LMtoAkz{7V<1aEada7)&*O;=901;yEC^b
zdvPlCd+(wG0nIElw{Rt)wGa;HPD=|E;DZ3tB1`>9wb<fkwIhe7=kWPLYYS~Gw6)OA
z!d({bw)jV(g7y|VS<nS{u+UKe`3p9-yv+jX?H2A3(0P+yJf-;FP5PY{MsLz7vuu;z
z*+SGpl5X6r^UEMH3vmkx3uUJk^W5E=^!GREr#I=PHtQ*NcC$`CA4R1tWH?xKqXo-?
zZQ(u(y)8HvTnmAPE*3ls|MrOZmijO>%d9tZuF$R))-1}u$HKVzB?-D&=x(9wAcc+1
zI%BDa2=ugYuK@CUS$JTxPH?}ae)=`s!b2ANSm<k^pKu-!x}5J%wm@3zrknx7q3}Qf
z4_X+M<qWnkMDS3d!?OH>&bcEjJZxcZjr`G;`gY;O&H9}+@*lDAs4z!b+;9j#CUlfg
z9#TLv!=F|!9BX0!<eUi>o?zE3%xkQTw^U+TQd{d2*PgU6(ZUo9Q!T9CtR4=sOtLVU
zQB*y`N06k`EKKL{S?aRB{RM5xIBkZ7nQ}ObBPf7Xvn|ZY;<;={@O+_HK8Q(~g}e(8
z&SDEoI9UWQ7rIO+Wx5|y-_~3qhjU-gStVe#&^1|^wHDS1UN3Zm(2dzzu2{BM*vdl-
zA6nREVY`KwEWB)ChlQss?6t7Z!cI&5NbFe)&(R@*pApJ=x2t=}T^63Vu!n)yzF@Zn
z=D-&O6Z|(PhlSt@e$m3<L)ziZI-iK`7aLyKtbQ`|iiHCfUql%`XyH{0v+5NvkG*c;
zH4Dc#>pWb)r{#Z}^*1b#zR7$gfVk`y{cQ{HSUAL990|WCk<eg^{w{B$wy0e=#?Sl0
zJS_AB3$3@Pf1Q71;bRMbTKLPtCl-!c_|d{oG~U8zl(g`bh0iUdw&<MuUvO5=iS*f`
zGc0-T*A~99@IB}Lw8&d$L*H8Xj>b<Z`s$_}9uhDTey}iV3*Wz*e~j^5BA@uUg%cLe
zTDVxT%t;HUBx6`@3;GTZ{cPd1g<mXnBYel}IgcJLK4W3y7JcU7;`v*29{$RK*rNYt
z;T+QoPh8&a4-4m|N58)sY5rbLx19VV(yzanb1YnE<9ZtxIDajau~F7mH-`Vw$gS#`
z(M1a<e^5V3y(B|$S!j-}g7zw*C2ZshC@GZuQUXfbII%^I*VS@Z)ke>4k#aW5+o)jU
zt-(c=Y*e-Z8x`fS_Ew!t?hI6sL*i>}goW8rXf+$x+SvVTsJe|BHfq}Z?wGdh?+~|)
zYT0<@X6<Zu^+S=`HtN`FCbHDEQBQDRSN;Cv1{?KlL~P{SxKX-!tBpoBZnAN+jr3N%
zfsKYX25r?Zr;B-bi;X#3RSqO4WaELm^SE~r7N7~;I<qj(RzDHsGdR-5Hk#OKQ-$N+
z)K<BxIXOn8nc%0ks#xNFAUQ2<6xvwV9qYTJm5m}BwY#8B7ZlrQZKH*U0uOC$w6(Fz
z!SfE<*=TR$R~x_C=wPFxjU_gg+UR6Mx6#|i{Wfm1aXUL@!?$sVjXQ0`Z6w&``sz!g
zciFhxMrRvkMrcu+TbH=$YHdj=?e~kJ_dSg(Ve*qUQZ_6bwhhCEX(J<&)Q}cEeJ-`-
zPkN@EQ^NHsYvemNqNhVH#eNUH)JP-0;@MDOql=AuZ1k{EX;-8x2Xw2>s%|#AbM%L(
z6CbaugnQb!S4_IkMlTx;%4saGYKpR!pW{5XC(_48UmN3XOt8_<Mt>U*+jxZjw=uxR
z5F0~n47Bl}jlnj)TNvhFTnE`WxGc;j^t-f<J;OAfYwVvcgofD|ZsQ>vA6C`4vSnXJ
zNYx#I!Zh_!8zXIuwlT)WV>V9OIVbCBqZl6i=0l+Iap(2W9=9>p#yAc^DeaZ&8k=Kx
z{_Cm$1)gA7+L&Qurj3a<CfS(A!9|J5Hm2B^YU5i*S3_+`OC`Lpv_`}J-l|Wx!PEKc
zYtmUZX4{y{xZ+r!R~)uJ$3}5E?YXMjd>fw?XbWsCq*u?Xf%xjBri*MWw$*y$nR+VD
zw`$sF{k3I$`2%I>3L7hIthDirjc0AFva#C6RvX)Ftg*4y#s(W38I96SI)A-@va1V1
z!@}&~CR^PFY__q5UEUKRho#Ck{nhT_S4wExZS1h|l#QJng=QLU;|8PKNqd@6T~&>8
zc$<C&JjY<R@iM2X4MyGbHul+gku%!H3pVyJm=}fj+PGy`gy5m!8tI~|wf!~@SJ7Uw
z@l$Dy_OQR|*Ja!E12$f@LC%|E?Q1q(x50L4HoNc!ZC+o{sG;`8@iy(+YM(X9d)vl4
zWO63jIAr5p#(<5F<lOgc<n1hYpN5stD16w)2TWNu7L?Z}bk%y-(g@h)k8ONH=S#pG
zwefkQoKI;(_wcxeD)Z1qWqs{);SjL(uWWp6<CKk`ZG6LVw{e^)k^Ox!@*Uk?LHkkg
z_cneIK>jgC_?|+7pTs1}(6E!Xx@o2UQqA%RIQuqM*Ot}LPTTm!#u-u7x|a4#ckQg;
z;;6<G&(X;?k`7W1{;+YLN#4N?4*s<97Zb08Dh~d(@ei}NgOUy|*!b7RRSrrx_|L{g
z8<*Hq@lStGbGPZf6K*#|4MC0r4lxa=Q&WvEd&*#lJR2$HptOUl9h7s_bSvYatOJVu
z?d4n<IO6gSDmdV`AuBp+u+Ah@Y?J@bkT7W_M+F$cd0V^2K~)E}9MpDjzP47)L3IZ;
zMDw-e*lPYV*!Ty}nsUgqXhR(bbsaTZ_lLB4j`AD%*Eyh_G>QDyu2$c{jSgBlC~|NU
zg&pKOXzZYYgN6<?2Vn=dIJnip+7epGK_h9D8s2eL_fM46_UtZZXyrLzq;XIp4yIMo
z-tDSA-dFXdiG!vN3LIXb!Iap{QBg`&%^kFG@Jc33Cj0*WyaI;zkNtBB#Y_CbB+o5&
z(Aq&q2b~<WanP1vQMd#1KehcHq7CgiQVUgPW8o*E*`s%sg!z@t+Z^2OptH1fyMsF%
z+)4AghxwUfw$21~mjmX~&89}nqYh%?>V$*1qoytG`R)5Q6eze|yQj7Ct>M6QFov#k
zkam!9aG!(T4lD<@gRTy`IdC|L4t{X8z=7w06Tx>d`daPo%WXLYX69?0Pz={D4!#_v
zde_~-Jq~&}=qa`_$#Wc;MG5Y8(8~d@Q#^e^TnUqZzk@ywhBz4Nps#~|G}Xa_GQRyC
z3~<z?jq(pjqf?zQb2vGJ9F<-;+>DJE4@3sD3;%?ud6<LY4n{h7%)vtrMsUQ-X^%R1
zSO5hc5fEs3l&1!Eff;p_Fqw9qE3Zr%?SPJA%#US%IdBe^I~ea^f`b_jW;%Gn!IKWA
zIGE~SqJv3}N}iJ)>{=N9qq8<=uv~Y}aT7x&HySz3!E_l@Dt|MlE$J)=vmMNLu)x7;
zCp<^OY_1FwQy&9(o`dEk6<Ej^W{%CvUF={HJ+n<GlXQuLr3@sldHRIuVLEe#gOzlz
zgB=c5DYe+(V55UIV%}N@>zEw=4$-{zVocW_TEmxB9{$4AHaXbrfN{P}=Ft`odP{Aq
zqkhwSMTUnAMOyNdgPjhZaqz5zr^PlhSxd?k!KCz@qyD%}XD+->+ty3l?cfCtgo}q=
z>~XM{bInD_#Xbiw($5agIoQuh#Q1UWm4lZ#eH^^w;1DNi8SQ|B*B!h;|2TM!X-8sa
z&^_AiAD4d9!CMaA7K6D^Iq0B#ZMDc@G(NdaFS9b-{cPx6<}n8!Ir!MY`wlw1mh*vw
zBMuHTVRlv*bW+Zs582;{R{o4Sm!tEEgQE^UbMQH5{khPm5+0l~i_2=ST?}zPejyWq
zQ-G=Ly^`A34!&`4%E8YLzIE`OgP$B6ckn$Yj+pnOgL<b!bpA01^E#+y#+M;wD#Pzs
zk1$i*2?r-7=Cx+Zlblnh9sI&fep)32(lZXuI{1~EORKrVSwORCs@i{GUmR3&QQ5_L
zp5ovt7bRT$#pLhcU#5D|{0|4+0o_7hu?sx?-yH3tgG)?(4su*DJ8>_OS%OoBy;j%g
z-fBAJx+v-5Y8T~PlyXtp#ayl=T@(#ek`!PFm339_I=Hid8fbrc7ZqH9Iv0hx;-Y*-
zS6%ekE@jwm6&KgIsN<rptNK{gMRgZ7TvT(_ii=&o)<q>xfqQFeyztd@QOiYb7pvzM
zFm4%OOwpWl^;}%%;%1kRO>w=88(iEZ8tS|1y1*81bn*A)Q2mz5PIl_w9$}7hLl?~C
zjOSZvm5WOqw7kp8&*X3lXfDDo(k?PC@?1n*&N8%dk?*20yXm6PMH3fIT{L&m!Ufk4
zjDPy7nXA@s>^@a-tP5NOqcmnk9`aQr9Ozbbnv46NDyW#NUAQ@?n2tRa>aeeATNmwI
z-0h;Xi}o%$xVX*5?Jhdffv!sF^xNN#R$+iftP6+h`8!;d16g&Ki#uI)Ipzh3G8~kD
zo-c^Hh`C6)FkHl4BwTfUOmgZC3$NU!b8*Gc<++?nrmI$)yom6SE~TR^7q*LjF8aH0
zT(~ZJxwy}T=fZc<)kQaU%~h99UL0vj7Z=n+z(q@U7x%cJ&U<AbdbsE*wR909gbP>Z
z6E^fqw=m^<yXY$>-7hkITy<sPFfqJoCzrktxESDKh>M}p+(3#+pt9))T~Gt99qg)$
zAa!!ZGR(!WirR3dn%%`bonjBU*pbur*0Ujw%Oi{m7sp+ka52*5Ll!*a;#n7?*shDE
zE|$3%Lr1xo<YKamu`b5Bc+$m0iS}L%wDBBn8c<q|@)Isv-5+jtA;fh!eaqf)CC~Vo
z;$o_c*)Ha|;N8tM7c*SUbTQpU*&o`x)lErq+^@v>ESFnqVRm`0i+L^<x>)35zN=PW
z3xpD!+a4)yqL!(PWe}IRIHGG$<Y>np)&_S852>ducd^37CKsDstaP!8zH+gSVO&OA
z?P3kbqNZx}LPxFqKoueDU2Jf%QM6GB#b`fQEToj&;$o|dr&t_qn+q0JZ5JgJXjW6(
z!FgInqYXP5iVtf~yK2Eh(7L<!oQqvFn?vK`c^A7~yyoI{7cX!`T<oVR7kiofc}fZG
zMfN>M<BEcfHtVV=!|7#Kx#~vg05!;plz%*7-(Ph>;~$J^-(3#9;o?mfZ@YMhq1z<y
zEl!#9p@S}%JQ>?OSILys4sn{hpk}^3iD{F)AoH+`4|tY~&*?@NA2NG{wNG7q<l<u&
zM_rX*8Gh{PC(>p5nTBz&m>3D@!!KNX>Eas~-@59${}uB?8|`b(kp}9Xg@M8BME`u}
za@B-mF20xG+2^Rm05$x`N#uloa>1lTJE@-u>ZFTPD&wKDho4=XcJZH!i!Od~afZ{}
z#UC!ty7-l<s%pPcZI3Yfb$dO{4y#Z+$C=((_3k{=sf&MHTwwlZ>SMl|SHP<tt7smD
z8GiqYd&yyjd^)btj7!WOOza-Yc*yZ^m4{ppB|Viw8P7bWgojIO3%JH8B}^_M*gCaQ
zNm&n9dno6jyi~F8<Wr!62Y9IHDTBXUR>0Qz3ZE;rj26a!6%W^WxZcAx9;$k%=HXfo
zwLR4FP(9mpO%FfT)oOU)0+=IG%fn{_!nBHa)^$D9^T4$(R~@vC1H{`vUXgF`P~Sr%
z4<QdXdbr6$Ll3ujxY<)VpIL~}-axFP^VxUqEZypXD}hqO)T)>kY97KKns{i+CMs)r
z9`Zdj_7L&F!D1QJSexBajT%RjX`eCN%u}o1=4??0h}i6_we(QvVXu#UK3cIw5C3?$
z;Gx(<YY!_ttmOWWhqfMuco^!Torm@w0uNn0bnwv8L()UaLnjZqhr2x7?cp{Lw|lt5
z!<{lBTtCoedWPM9HZPaP93823_7L?D_mJ?^wKe9cdBJ?kjhzci!t@nKgbOoP86Hdz
zjtAF6+C#>J<-ztqVa~Pwi^E(kP%}@w(uC)!-I6()=1c3m1amn=fvz69dFbPzuZQj)
z?(uN1hh83fc<AY=1rLXe&gV`D=NcCS_j#ZJ_j_u=*_)9wPzjK-A!_UAp}&U*Jq)7L
z25Jv@7~o+b2XvT<0SfQ}$J3LS+77037KJ&WG?*Glhj|$8VXB8|9v<>A!oviPnumuy
zJmO)LhtUizi3IM9J?3HT!JLtvTCXxNI$jPjNsjUGxQB5b#(SW985LtW7cPWYc#UIQ
z><BOJyae!$m3N>|dYI^8lBcHRWDipaWD&)b&f&PSl$!2ghKKnc7I>J+<~+=$TRhCB
zRc+J?VGcXeTRErG?qV84%&=r<_gx4r^wi2~v4<rd7J0b;Oo;lqu%Q_Y!lfRTNib7p
zxkz$madolE!)gz2bK-bd<6*6b=REB4u+GDJI^V-~4;wse<P7q##lt4CpG|W_IJIf~
zRvIbOpKA>ImUxGUr#w6>t?cyhw5M*3dDrs{XJvnlBgITkzzZVv&>PQt*zMsJ4+nUn
zqrKo^pNAJYr%s3Va9()o){L{8+gTLm*zNc55+_JU?PU(%xe#kBdD`$6+N&O3^YE63
zgC1VzT;3IVL(XNiaO%A&F+lM0_6UvV&LmA`Y#ib!d-&eN4<6q0xKzL=9*%lA?BN3s
zA4!lO@zmDkha8u<cA%UZR^B1f?H_Xjo>yx{=CMy@XujYCXE!~3F42<1AsejZzoKmy
zL*H;}7inK}9+lR(Q`*VazV+}Ovrt2g_uX7sans-!Q<;a~Je>3JlZWHX^Bzu1cOGw&
zdxA4dFo&K7oRSXmdhv^gGak-*_*H_I!5@s$O7v1`s_S5_W-k?uzkB$@Q+IZMamw7I
z(Y@!zsy{uoslw|c>EDd%x*9u6v45HFJoNT)zmJQY$R3*eXyM~BlfRF8KCbg|m5&lW
zD)@kpTpuNUl=e}^M=2k_*V67Nue{BsjeEHvhO2#)^VP+It~k>?m+JxM)$%^ZtyQZ6
z;)*^h`KaNerjN=#s`$9pM|EFa<*)Hk)kifS6}zje2^SS5{!`a(0``tq3XUe{W-TAJ
zebn($*H=p;dWkkLNN51F**hcD_2_yZH~6^KM<XBgecb4yp^sa9+~mVu9=_Q}10T;d
zQ78WOXNadTX0B|rPzfcu1`heqd_;WYv+o16u#Y@)7OCYKDGPnr*hdpz%~oRCNhdV*
z(aZ-ojoDMi49BRzM@t`3A2A<=O#YPjq5CNEQS74~`M-x+`)K2XQN(3xTe|&ph^rJ{
zI!kclePy`4j}E@tSYzt$=&OxHmO-Js+kD(k&8I_m`D%{b;bTA*HTCZF!3zOxCcT?u
zbTQP~SHZweF#zH|5_EzO&qvZn$_J;F<-_n{`s%Wn_SJ0{yF*nu&lYfIWhmcLr7und
z+lM1v=H7K@Q}cZUK6;7Ay7=hIrhWAA(M?XF2f7R3ZYtw}w|l&6?&+&b=e<673CJC!
zuA%R3)9>0=aG#GpvJ~v&qpy!yK4$yq=cB)m$9#<P@c=vMgR7JgJ_h=D(8o|8!+bFO
z2KgB5V+g~np&Eq=$sEQuuUYKEa32r(D&Uz_SoL{z<;Kjg@WVbHVW9dL>EmB7m%eIH
z9AUhDzbwoJ+h`wSd`$E)Nd|~Zg2#P~rG6jdeN12%e0(hX0~{%;rE)I7xT<;5$B)}|
zULYnjz^ZCfIW#_|NO)6{@yV$%T^u-5rpXMB!lkwy8Y&I+`5Yf}eQffv*~dH|^EvK5
zmit)1c>X)I$j4&(O)yolU3J&vW2wXplP5V;!U$a9W2KMvJ~sGR<zuyvb&SK`Ll51R
zvqr#L##;mJ(GFU*hFaoM=(e2&yqo55vz3ivEjg6uR{RzpJA6FlW2+CY>bLpWE`SRj
z$}m)Ra!@!&%4sk7c*e)GK6d&1R&Or*%i(@bf{L1H*z-Pi%jok~g@xMoNNvxN%JLU|
z>}Q|`7#!dw4lDCOfJy;g@o~V%86RhTyz1jMAD=Sbe7sIOeH`}jfsZ$RyyfE%wfSmw
zdQj%eJJON2eQ>FB)pnh?_PlX^&&T^dxc|)CsI;x76+`syv!NqCKID*<R}XjCuaA6u
z;^U}9&d2N^A0{$e_6Tzsz*yp)>E}Ma@NvS&NgrR*s$SanK7R1=l@E57<!c|`2>w>+
zcS7j|RvlxI`1r}kaTyCvRc1B@22&9A6LhxJ4eTi&r+xh5<7XetRJ_>H2Ig(%D-ITa
z4fU&!-<YeZIlwv2bVjm||7g!B?GGP+`utF%+A=-wtJMnw=5KbKjykJWM^~PATwqmo
z^~ht?88y}yef2_GPV-AXwlvFQGGt=8DnN+<R|hB;AU8nCK%G)HK&b$w1JIZ<0hph8
zzfbdc))m0zH>;?V3ATKoR{j+NAW&gUzRFZpwaNji1Sk&BI>0pnss;!J&;nEoa4jVR
z)DKWSK#c%(0@P(I0cr*6N>Q75ySlylyrsG{d{a)*dI7Ezd#(>a=dcwDa44AvSbJlD
zn*uZpa7&=pv^NK65U6y=iBH;iyH4jb@!lGsQJ|iga=k$@R&h3k1LOrL2+%S>BtU+E
zCIOlT>hjlET4X~M=3%n{%>%Ru)D@5ugp-BC&04O+=vXF%!azOVqS{u0y3t@M3UKT?
z1=<8?8^8(R251+ceSo_IbPmuVK*s>L2jC;NPU67ZqzgK`AkR-3jr0k_@{Ry^1}cm4
zrj-$XSD@mY(G?943y=z61ZvAY9v~4Y8IA>W9YInK8Q#3engKEatU&EWrvq+lhqrfD
z+o5cQ#g<07w($b^0qzUXJ3tViOMrU<^a#*3P?wKx0lG6zd^I#QjFe37ta7)rXMlSH
z^a>Q_Ei)a(#XM_C@2BwrxR4$gpl^VF0Uii2AOHuE?&W~?55O$<b$!)e9x8?9wFd*W
zq+F|&p?O0B3=Qxil>`_TU^wk(*8)5gU_^ik0iFo(aDYbwj0x~Khbh2F#@l5Tw~qxF
z6{w5vXxdg@<AsK;&_yiF?H!#k-?7XrH#WdHM#81G;{&xr#llf|GQdO`nkk}f5<|L{
z3V!ODED_7tU~b_~)bs!|0&EPhDZtDCvjQv&usp!*0CNH?3REJU8(?05`2iL%656Va
z!4P5$(@QjlIu|l4X2RWugcsA>GW&RQx>U^O6_9(~^y-QLYXhtcurk0Zj;5HmhO^*m
zrGz$f&BL^_KEMXCkbyB+p2%=L$w&5^18fQKY=GwiYz?rDp=fG5rC+@0Y!9%5)3d(z
z6gzT_N>;>N$vn*g3RH%fGfK@q?vv~a@O*$50=4(T^2lI~SHs<$&L!0?-ktz^84oqJ
zeUc)WaClMRLh+>lF9$di;4FI@;6Q+n0(>0c)c~&rI2hn<k$;`$l~=955#UX>D@JnC
z4a!psFsgkgz#-1K03QTuQTJ|u_eF-0`JTi!hmVrnkvJ0IL-8bc`<WByZB87<*e3!0
zkE!>7lA`F|hZlCqJR}j6Ako0=GK+!Pk(FK48WmraBw%2Arl)f^NX{8V5K%Hn5)?5@
z&N=6tbIv(Q4*#c%AK&@TsdLX$w{BJ4x^?fJ?w*>SJxy?`2~Ib`UJlX(N1EVh6YOt-
z15I$K2@W^GLE7r|s=R*VMG><NpBfSO`P{!{peEeVV@+^^VcrDC<^Ilm-**N+_2M-i
z72sx_X@awIMHiajToasc;$PYFLWQGo1OjgQMMgdI{H!3G{wMF*uQtIoCaWm&Msc0#
zs0ki5!Q&>l*#!SJ!5xM_yOdA8CDo&DyfV2>9mb_`z<V-{KWKu7O>m!4{Cq02I<M2X
zWJ+?<y3eF0MSX8fjv^(B98u(qBHyn`{Mv;d78J`B#kC%(xualoQy<EYf9$_dE?*R+
zg`y}NMgAxXME%c*f>9vq=c`ITr_oltYNbq(D2hh$Y!oG;C>F)L6;q2x{ml7H6zR{V
zvPw!Z`b^0vo|D5qANBJRrz4*a0I3P@`pZO7Hi|6@wkmibigHn$jN()j<)f$&#egWj
zkNT&lDn=3H$Wc^^qB50<;w6r@JuNkgmnEnoDLJo5aAjOlK!UP%5}9dFTdPKqwA<%Y
zi{jNNK8T`r)c=wGYm(NC;&ln$khFRf^$#Y6B+ihOlHn-cl(@!IPNoEJNnr}GWJQrJ
znYEtEye+{yG?WD5DL)d$dlJ7dY4Q4b*!{yO{uf0w3MGn<qS!MlyB-IR;^QbjiQ@gq
zqD~ZDCX2dJ|A1nAvLG(=Q@BACpGNU{6kl*%18Ov+&7)`>MV*gB6r;?r$s%KG_%lv4
zS!`OF{iW<q&?Jh@lmGAB<D_qDT%DC2i^7P)j3OR|8bu-sO$zJWn#m$*ir+o|s_fEJ
zME#$_Rupy=eWU0Xg(Jm!NBMGKxDtC&G>xKJ6ko||w<wxR&{5JBQM8PrmBei&rK+tZ
zXd~(CQ$)Kc+DqKwDW6P=v2>!#NoE&G$>~ZfO%aw9=q{N(B<(3_uP7Epe4|nSJ~Zi1
z;cueoF-7o~Vq`Y^I5cx*_P0@d7e(@O;r>yu$};Ms5UUjaA&P-fOp9WA6b*mLIVg%D
zQ4Eb@uq>{cK5B{>7RB%=evM*M6#q^UBcd1+#n>oDM)6}5qu6C<#%M{~d=OqaMI4+W
zC^jyNpQ8S0w24uSk79!C`%4rzruaYE`<cNzRj}i^tr-+1U|;foi{f|LbY9f>BZ@zx
z_=g?k;D1FyVM?<6EjjZJhgl{^F;z}fVXBxS`w~!w<ImuF=^IhZjrym}XVH;zrPZ4%
z&c?H6)8{3a7sdQ2cGD-LSP;d+C^km1iB{#9QLLjer-~&}ERAAS6szeEQ^m3<R!Bg+
zT!L*?(pEkNWU{Q0)wNOle|#PVU;nh%hA7zORPBt-OcYV<h+=0Hr;)Zbipf*O+<!8+
zMX^1K^++2zRZxt=T??kInksfhad4`*F;%c>Zxs8eXZf_FQS6W6Kop0g_-2|YG))|g
z;!qTyO%pFp6Is&)LGx*1!ZdLtiYmKmESx5O?-@E4#c^7@XXu2a1ly;H(@~sZj3`hQ
zoTb5|$gLocg7Z;ah~i-skD|Cp$7_&wom&~jr6?{(aV3hYQIwu8KAJABvDY;5+H{dq
z7BX*gEuW^{ro)s9{ujk92H<qT5m>rS7k8q#%am0reQ2rlAE%3ZbgJp%zN8N%?NTaz
z`gHM_318uhATs`)6HHP-nnTic)5Z3VnaK)L6wFUa&n4+`jxb&1Rgh0Xwt`v;@+&By
zAWcD41qBs=nOQ+O1%(t8R!~AgNd-j|6jk_^Av~+#k4`m;5zi3MNV@c57BQKmLp#-|
zGD8qNr{H-7WfZiV7A~bAYlbMz!MoI;aDy3wKmEJhE5xR<3Yy7kc?A^|ysY3A1r=ql
zN(w3~{;w3jo*`aTFf0~+Nx|qD;`s%c#FJ-;l`}-Htn4ZZNK+LA6zrWLuFeo<ryAs>
z%oITd=?dOdaJ+S9H3hFKsIDNS;5EfRWBkTU@w%L-!c0L;-cay;8-L_VUHo6(ao!9m
z7FO`#Oc9?cYADE*BfQ1sNPRlY6g3r){xDNaoGGa1+X}81NN=d1k%D(5X7ybKLSn{O
zMDe5SJq7P8_&`Bz4lX(M75q<vPbB?F(vKyj{F5Js)KO6PDW@K{a;E=ti3XDM=~Mm}
z3&M>Re5OEA_&sL$+zT0>D~LXsT>+~sUn*$w6jMFMe*Pxmn1byy1*^mf1)73C75t?@
zS70dUtDv6(Q-P(RlY-6)Yy}Rjr=Yz8SAnOXje;v~)u!A~#eYfBR|@!IqH{CFjLK<V
z{fy=cl4gk(vZ<w{tt4$NDdnd=pVn3ZONm+HwOOKr0&*U_oAJRc(UDs=OH@3VN!mq0
zR|UNl^q-uWm?gR?=%Jvef|@U-b*FB##Lk`BR3qi>q+SY!&l1yT2~rOAwStYaL>~p;
zC^$7sRO^&kxM<q997n-e1>+Qar(l4BF$#FbV{gxt?`c5pvI0KR|3T7$3I>))9i(8e
ztdc)O0Utw6f8>8ZK3wsiJd9Q_LV}UJ!YP@`rzJls7{$$PkZLCUBhak_{*%)Fwf&PM
zKPecm;8z8c6iiTXx>D*dihnWrvx22HQ&~ziN~<$8G?7bwF_qvq1+9Xqzbm+qmAXAE
zb@+3se^B%0{zCwA{-(PsSf^k;V_(5!1@q`6+yz>akys;jj)IS48PmANQmM13q^y!N
zL&40ac)yd%*4cEJ3O<;t;B7UPeRIqf3luC=u!6bba$u2y#Z*$kGR1#X^<$1ymL>Fx
zlBtgi`3tO5Bz3vsU&a&k=a04&tWvOA!5Ze7>ZxnFWo1$)=SVFQsQP=M)Ps|QWb(z8
z8@NXbO23g&Vz%giFIUysViOIb;O^q&TC>HMv&A-gse+X;tcqcWf}Ql_7@{%kQm~uZ
zEQVS!>|q|Dk}(vFVV{Ei3T`O4so(&2R>4W`zJfyvz8sNyRKYO?hZVG#ExwyAj?f2Y
zi+^W}=3k^AS8zhX+|#LJ4+mN0>z#>DD>y^rE4aw~&j?cRN&nPivqj%mGuF%&=eax6
zQcw0yeW6y>MXzRDqN+S^KSx|vz$(iX1y>cs=cHbfl;FAqAAFPgpMqNo9x8Ywd)?-e
z72H#Bhn{mS#BtV*NNcq?^**y%e?EVJJu9`u91)x&SbfaMiXkP2Trt$1BXY!$97C0p
zY1$l-Glo|EQs?f=?lec7o0Cf6+%e>dA#aR7*Q%QFVtC7xRKC2LC0`8rWB!Y*Suz%<
zB8EaSq{fgI^Yc~V7|O=*LJUP>C@ML{BrO@kGco_-filG<=UGWhaHvxLPr#m&)#oKG
zB`KMuB`6a^quJT44x8h@OPQct4CQ501xYJPS}BIg61*sB6-i%`^kqq3;oAAVH(%K#
zs|34O*QhGB;;_|Y2*!~9q$(w!%=M}ieofNXV|YV?j@NUuI|V{9WXLXIN#Bg2Mhuw}
zzx8A&{{NIzyJieol2dSO3Ol~dDb5Ezj^UFS-ihH|I^oZ0B8K;4_#ozgITeZFJ-Tjr
z|0z@b=TmFP{6|bo3m?Vsp~U}_bk^O#JUw+lY5yIhbz-O+!>2JcjG<l(Yv+i96~gsn
zm^nO|U~;4M1~Dv^nAJux^c$Z1Sqw+!h{l|~LYUz57=I0v{zVL5k}tcE&+bYLu^7II
zp>GWF7}OZr#LzZ|L=0LCUJOk+UGbnEgAs!%aUn0$iouTILh+z0IfDi!J28~*l+Iru
z-kIaSuAxA`<Yuyo%;qtCC0mIf_DE?FLreN32j^c=6c3WNmY9G)18)~Y`xrXM&?V;o
zK%+wponk1H*MI3mN2)Y7g`nhIK~C2gitFj!W9SjXvaadfVtAxw@Rip+W9Svb*D>^o
zq3T@!Hyvd5rZe;SeXcM^AlPu&|5wL;F?<{IufTtwEBeRqT?`9iSQx{A7`~^uxa1PS
zA7U6N!LKn4ieYdJ6JvNSBYTKs)|x9QGc?946JL0E45K9&A?Zj-f0T5Tq?DOurjU+_
zVQdWJB=e^jCOmB&FM+KlQ|4!he~G~w?!VZXlQx+vCQ0URPvw7?;15avl=Lr2|CaQh
z82*)j-7n^=IwgjwF-()3*^*A@M)wdbGbET9!z>B-DtI#4YfcPvpN=q3g87mzG*cGQ
zbP~T<KKW*?%q84~7?#ryV_=nKW={V_(<@@AlQ+)*X{fey#p)Q=(9h%eUmR;={%><m
z$8aWwbup}uVM7cXV>nC~jbT#^o0+|1*dN0dMnufNwAdBHHVL*ff+ScnSG1^@wrj4~
z$++Wt?B@#7-Lh$qq&eq_y-z`zdE!6}9X`rPE1GtY`#4V=is5>v%unVC(xWjPqizM#
zPQ@_0gLv!D%wtC~j>m8!26vt~Dd|?HDsij#GJ4JvXJa@Q!%K0#l|`IqIK+@Ujy!Q(
zjPa2*9?~IWxXh_zxE;ft7_P=}jmC-LKTaCM$<)jnk`j!ZCu+PFBw)Ek6U`HcIb&+(
zG)eEqa9>K^nJ4bWKw&l!KVWpv_wnNxlH#a8-yfvHe32uL<Tz5|AkG=by0+;AEN{&h
zx#A!t&g__;H;#O9JQGLpIPCc%f1KasV#9n<AdZ4@AdX)1#rXMx9MZY-Md3J##8EVk
z6Z1u}IBv`7hzW`>5YNU@B91a~l#QdL?EYLF&&vVXmm`#lgS2!U!3E;o1)@W{bXH%8
zqg))7;#hJalhyLnIgW}_vPi9LiZxy!no9Y~al9Bup9Nyn0zu)+7cyUt<CQq7Nc*Qr
z8jzIRks8OU1%iO3s$>S^NSB~m9IwXlS{$#(Q7ewO<M`;W;2Zp%mju-%4M|FVMjT;@
zc{{*r4T&>pLkVh1njJ@$1P2xf%CNA@JCgIBq~yFSfrumWltY>KCH_Ft+W$ZPM{#@{
z$Cq(5iQ|(v>csJR9P<Vz*NtOqkIYZwIQL$9J&Ef}+CWk^wHuMrP_{Obw6UZV{!9W2
z&^^A0gLLSJ!Dt*x9K+)n5l1YJcpTm0=pKg}M<R}9aeNhr7Ka{(MfZr~+5%z3VaCxh
zEt93dLb2oHV8w;PiNlS9*rQn%3N|&AP2@C{{N@Wq^Eg_>(K?PclG8GdR!_PFGb#3i
zly4hHI}RR4C)w0q(hibNTqqVS6kag1a~zu&iY{?<m3%T!Kb_0|I=x36J>%#f$9HsH
zDbOd5Z{p}J@z;`ay5vQouf*Rz<@BT1E%KMc!YKyC@qHZ2KMW3*^oKYGO2FliIVcXU
zJ-o<Y>5w>vO6HTk!{VSy#3SSQkv<&9gt-5taa0^*;usspXj%RD+iEulRpk@TadG^_
zI6WWWZ!vza>|YP?7wA97@k<<^7R%#SN}3q=KUSJ8@?U?U7EAp#j&JV=>Mjz$$MHuT
z|Eaj8;?Fq#Voa$>SMhfo|HN@UjvI0O8^`20cE_<Njwx|WjbmdRn-~IdOsAf4ER17D
z95bm>9CPEC6~}CH7KsguM3qxvzOJ_SA~AZAIJrp7i(}B~8uR0LKs+R!ct?x$MR6>S
zV-3?dgEx+)aUSKxO8QTOV2Q<I8F%yh%-~|NT!P4AF>+XNRUE4sef5JeSv~wrh<IHb
z>zM%_SO0CX2oDQx;9QHv!(qXWvbs5rEphCml0PL;cq_Loj=f2t6^q5TI1Vlr+vB*u
zSP&%r9pVdhcggYfyrE_-)Az=)FOI8{vp<dlah#0f6nn*SD30TC<iB72a2!7`&O8?P
z|9kgH97h@N!-Cz11xcS-BC0NtukBqTPRMncOT=l$$gtq~I4;C-Mha8%EaU4*$0g#&
zCF1b?>KEg<B<DT-Fl*WpahXYYiMS%^j2APAugTWp#WGGT5jVM&ag<hl%iLmKWtvq{
zRK=Y*?lMKI$gkoaml;QriX18)#PKkWM{zuk<GHgn9xM^hEcNwVeX<5=aH)8IsmQ4!
zSw(IYKQ0yIr>MAEJ3E&OVq>Z3zErT9M@3#06XyAboxW78Un&Yn0jMaXqM*cAW%oSG
z{H-ah;^KEHm6!Q%2P&rG85N~ee=pWo$|$blt7YPO70;?Dp`xUUx0Z<lA7($NqR}!z
z+~GlW>PDHq%f!!egfc41s(3*~ITbIdcv;2#WnzStUS3576%|!%UnVN6cu_?q73Y@;
zmgMCkGAQ%X;!M&vuVlWWqPLlTVpuRuMHLkR4!B&@TrN^okg_C}i>fL*FBdEm>tt4=
zg;lsJJQc60cwOa<E#6V_hKlMcYN*Im5u&Nj1zOb1%uq3Ox%hjz2useJT-VI(wadk^
z<zmC=@LMXrshL?*#pC5-YUN;-ifk3NRBY^<ez;Nghbu(M6(Vhgcvpo`5mE7;3Vns(
z$o}AUvfo$nfr`&ne4(PYiVszMs-mHa|Ec&$MO_v3RD7(W*9x&{g{Y(Aw-w?O6-UOW
z6Htx4EBrt2s82hW&2FIL=(E{ZR*2apvsrDVqOpq4RLpxh`*7LpVk>?5H&==}D}}XE
ze5s;|ikOPHia{&I+49*@6^e@KEBSa|%&n4rYNb$BBvcqGOcfdzxKdmz9)5Y1cxIK*
zRjf*6AFG_5dN=Fq9O;${TLstas7NcFt*jEYRtZ*{s%R#S_6xm2MROHxRkR~rC0eLF
z+JyUk(+8{)6ITh^u$79|D&MV<-A2-drL&3KtLUI&fQs)`bX3ua8?EANZl#JYD!QrY
zu43UT!PjDUrMJA4J*iwaccF)ho-`UgYIf!>+4{IjHh1LGDnXe(+%gsYxTw`4*J{z1
zVyngb62DU}`&$+LReUEG!nKT8ExN511V5-4sA7bQk+hhK!77HS7_MT7ihoy&<EzC`
z6&qHI=H+~AQ}aiw#mJL2XrJY8W&S8N8LeWBicu<_TjMKSb&cTi$Eq05&{Hu^T7#UQ
zB%r|05?rs5O(x6NWwR%$_*KOuX;S*nPWpq~-`^$uL()H0{KfpQ;vecmKcsppCaYK@
zTc@a)s$v0+reYemTg6<-=lC-un4@B*1azBODrQR@StD5Ga!CEc2vtE1xlC3UNtxv;
zR!Fdzp;Rt=iKI&<T_!0lL*bS5oTuY+r&dd>$??}d<*!q*{waR3X67b|IU^O=tYV7_
zD#@X?K9$)f!FClp=q=K=Y~7_|w~9T?ODZlfUva0_h<z#!syL)#zlsCWjGsQ2O-oV}
zM*3kDXH=YJe95MxPwjk6g5xSqJms8};FOBfPdWdt5$9B_UE_x~cZ%RV<8h53xTNB;
ziYrXKv~9Hv3fx&E=p>A$YbvfYaLW2Rw7Qi0w>!ZbDsFOH?*v(B;oD69Dt<{|Vgh$L
z7c)ZwA0=>~$)Bk*fmafEsN#`|;t4#Pz+>)90tFKOt$L0GawbrCt;jE{d<9T)0x9f%
zs75YH^CXa40&+eWou2n8&L;tzcvs$UNpisikU-_N;;+%^@2nMt5+E&{K#>HBCXjh6
zgH_UE2|OdK#GkDdyo)c9K$!%}CeZp$M#%)8OZa#CEYC|&DuL2ZIUh7mej$N!39Q^4
z;tQ1cN}1McMfn6OBv3Kozs~5z1hy9sR+6}K0{zwsGD)e@O9}iK&LpUkKp=rP6R43u
zY6AaeroW!R`?oXF5~#}Rt&E_wL$w5!j7d+In5(0qUQM9(mhfu{&<I@e8wpfTVA$yN
z!TZA@T7FbIONIntNo(HA$V}j^1ZpMlw&ZY@nsSgVX}WAl>rG4HfaBMScM^Cv0g=GG
zwf>8AA_=@l#W-C82kvC>t#>SM><iWALL@H3_gSqKA9BfS1vwul@JRw)6X=#eodoJ8
z&@_Q&3DlF;`yzoaC8(c3g9JWJpkV@y68Ma}RwmduflF%z&6{hTAfWL-=Z>uNLG^W_
zNdo^{Csf%znt+l(O!i_&(KtCy4I3x#Kaj*~A^|M{T}oOB*a;X3a7=BTFl85l$@emx
z1V}weUCC$F=R6zyDuLz+w3ANNB7v3?v`L_q1T=eV2}qlTGg)mbt9h0r6SK5Wpu<zi
zjtO*1pmPFUq%h?>uk&9+M9@8f9tn)3B@^f=y|FL7C4pWN_m=c)T5@#y@YSI{(v!cD
zd;P?RzfE9J0)rFipTKts43P3aNJ@e4C1`awgC0Im`ai)CdP3#!F!ov}sO?aCbtm6p
zhSTeM`+xW{LIUnPS1~GqpAs0Kz~}^iTPIk?(4`YNd^cm<Qw|@R@z3igNdNpf;XiR@
zmECK;oBV46lNe<hifi~Sf!`BYn82b0{z$-ioXRpcfj<-YD}lcg_$Ptc37pFc{>$y4
z^>U=mN?=L?QyKM1X)_a;mcVq$pCM`Q>>&9RoBKGG^mtO*teQbKU3;85Cjl}WNG4~Q
zC#RdAzyb;CW+joim|?{nmB76OmL{+)frAMgN?>^cD-zg7XJ&LKc-erp39OSHS0{K%
zDrt=zJS!_{bXJgbeF7U2*qp$Y1U5>sO;QI=@$<kWYWQre;L)t4_5=M%w<gd;&QAW0
z1okAbH-ViA?4o}rrR`22e|FM{tfU3&1O@iV(GDcASa#W;z@~MAgRqH%98TZ}gC&8>
z2^>w}SORAfIGezzq_pD+oREDf{A9Y5bdSfWrzG>Vq}2S}Q#~&vaGu%hlVqB%VUOgC
za+&N)nJWogP2gq%|4~?O#0^QW(^gA;RjEvi3CX0VvyyHla9g%6&ElVc`TKH*Ij44V
zdXBXF2|SQ?E2!aN0*?~NtNGjdIDsS$xg^e^A*TjTnxbK9xjbx5)_gyCvIOc@W>8XY
z4S6)2&zr$kmgd>Pd>Zm=II&KYnvh&T^LL+9=g;A{LPH@ra$yZcG!&J%n1=MEw7ar9
zHGCyI_^gH!8ais|q@kpS=QMnw;Y$tAYbd4REe$m_l-5v2LqJ2ShO!!7&`?Q3Wew#t
zl-E!}Lq$0?-Gkb)aCYt&>79W|FKT#6<MY+zDjHsvI*|X01TPLs68ZjbEwKs7X&S0(
zcwNIA8iI1|w8m>vGF{SY8v0%ey(;OGHTpJ5N~^9Rtl>>56OuGT(sz>5YDmyMDJ@eD
z*f%Rk_1HH{L$-#x8tQ4NrQvN2A84rkq?d;GG`z3jT@6C}KaY)Q*z`D+h2~{sQL%o~
zr9ag0KMi%{;MC+J4WGzCK9-amMggr&_j|IB^(DWdhDI71X!w*=ZWbkf%}Q!4TR+qA
zxg2m-RuU)TDmX87ZlWQop{0ga8WasN4W5Rk8sZvM4ffL+6B=|4h6YV?%I3@P9Xl(j
z`>R1y1NE^a|AO2mM}w>R>Ef0Qx=Q_0=pM~9d_@ZkOrmboyt$NbAt_sbuIUFpJ(E^#
zt)Yzug0>pkN!MyGs~sfeya#fmv9+^?E*jQoSgWC{hHe`E(C{Z^H1yCgLc>T6JvH>w
z&|kxM8hUH^T3WuZhCUj;k=Dr7H-%}WRaWpxQ1p{b;%_Bj<{Y5mdksT143nzT;6G>>
zC|d_f&Jc+QOG?k7VcDH)dEz9)W%RMvj~Yg4_(j7+`mKgB8h+9+Uc*=o<K#F`Qs_Ht
zazE)#Izf*4^HXmru-?y9ze?drO#T{%pYerh%-=OXbr5qRF6S=|f7AXN=4tpx!@nA)
zYnUNBPS!9*g0-`KC!Z?uG)Wmv<gD(OGE>7W4YQxFDDxAaKS#>YVYpfIH7wwAlG0Xa
zSg2u<hUE;^-pPv@#p}fq4NGM!lld|UC|Nwq|70PctCLcArG`~<%+)f?$!z^Nb)AOw
z8un?}uVI6RjT*LV*ugN-uvx<vDgR`dE93{kRt?*vr>&Zu6qNSasbQBC+e2p_n6z8A
zG71=^S28oH!(IlU^xgw<f#e+0a8Tk_eN#$g2M=pFB1br?fuDfKB|awUsSJOFTI<Cr
z4W}8E{ZOYL&S*HxCAY$|RyfB*s$rRn<t{F0xTxVT8-Lrlq~Wp#m?&i8iiWF9%LbAS
zT+?t}!w?-qb==T!lj%aohdTb#aEtOf3hB75;f{u69Vt2*trvH>t?NaSj(ZyJGvwEc
z2a-PGrvQDmS0*|9KjOz4nynY#trtJ97nIMTBd3lX>&1ojBE5HJ$_9~3M?M|-b>!yA
z8$=#S^GaG_gCJ)|+h745b;bk=>ZsW=xNS_*n;QiG2dc1+B0AD_RMSyZM=>4cbyU#t
zjLz@i@Vt&vtPak8R!0dPC3TE!=>IjzryIm`Iwo!qi#G^&gXq0Ml-99pgLpwl{f(lG
zj<Px~QH_nF!bTC^D6Ea5oQ@tF#mJ4KqK<_d#Y;L~)=^1EWm!EqDloQj=tUjlI)n&b
z(NRT5nvSYE_G}aZ9jQ8Iwhvz4C|E7KNrX3v2Af1s_fL~H-Q>SQ@KoufS9QFmBTGlN
zj@Na(p`(V5OdZvA^xh=yQ%uKCn?#5+ZW1Rsi0uBRq#WV7&EmDq;w{=oN3c_{_GaO1
z7AKnodu<lAbiA$O@^8uS>v%`UyE-B|-qZ2NX0d6r5IW9p7WuXa(nU=Ir&k6>^$YVK
zOIP&>exQT&{lS6%>G()TcN#&*$2vaIVdyZqBRcBpP;|s})T8xue6HgQ9Sw9Ox(7ei
z(U7~-Hr(l_ltx@vyI^A-pUEa-@^f_vQjFkB9mGu}WtB{p=+kPP+qy+)k`kyKL5I3B
zFmQK(RTf>x+0#C@bl5uD=xDY@I67P%EvWDoQGJW}vun`P(UhF8!_9PjrK7oyK&3FN
z^D6q3WoVb|mO7k@;Z{0YOGyflNlsfG?R2!)(LqON9bI&My+w4?(MiYrEn;HD@c1oa
z#}+}{RmbTqqQF+sjXqW}Ob&77t)i!nUOK+j(VrX2ZQ3fn(a~|MAoyBGAKGoJc%gro
zRWkeP=tt&|?4esliOu2fbZj`8^@EOiTg3n!i^c?4zL%hGmmrw~Wz!(t|39O_l9D-0
z$8a4-bR5+&g3hmFF2!{GsAH6le{}q-W3-MjI)2mfyN<Cs3hc|ApyOwHGM!Dw+D94V
zbtLu4B$(REr!2qdxVTmPDqAN?x^1f<XOiS!`zrj0j>oM-|MbrMOUIuQv-;|%p}%z$
z+$LVyCf?m9_U+A_OxJA@oUUVv4pyg1N-&LK+a~nIHZg-yqvKlh;4BXESzxw~S<OR?
zqjuZG9NNEL=t05od>spPY|^oraY2J{z1zh`9gB4=(Xo;atYfK;0o%lK9V>K9+9sCi
zSien>!*W8>d)vfn9c#$f(PX<=%LKArtYg${7X&YF7q$8a$lpN!-!6XLE*5VWoF!$4
z*rH=A)z-0}>1Bu5#+)-DW4Dg&%y0D4y@8!fER3BUf~{3|2xEunvO|p7A@=ClOUv&N
zGj@orJH!DUXLg7~4ECMkppG0n1xx9jzCRq6%#U`8V>*u0!c0v%PUtwP;~XQGDvcAT
zI9=P|z@6f>tdetv5urodDTq7l6o2j%%XW%Zor4#2zIZl7a9PI{9d~rx)p3<Z*6~7{
z;7uLZnf$q;o#M()k={2<vv+GBOnEM3^a}r{<CYYo<ZT_Z+XYj0iF-QkGsfG6`HE5U
zALw|b<CR_F;Zw;|e<VMq3mHB$hXHGs=)FsPvP-a<Vj!1+o(6gu$Za5xf&Ur!$Ut5L
z`3zJy5HgV8Kmh}l3{*A{?~_^301On8*liy!Y@mpN=M9uHP}D#%1J4>LVc;19<93O~
zyF_t=FF*(o@7g8GxPg)ee`1ERyZw~gJ{q{TOYGMJoj(thHc-YuIRoW6h!QBvsdtMP
zs9uvmp$UPHcZ)W=MFj&t$c_~a>==|@Dk=Q;ZgKBU){6#SGVrS5e>}a+Wf}+?NH<W$
zK)^t%fiweV#}F;KYPZO48#pWnxxHIdr6zmCtz6kJ^ayn76s%_8jXk1O%i!NVg0FG3
zJ%Z(R3ErUH_6Ry{hJmnww+*~w;7tQHxH<zrkI3%2M`Rk<vPaZ3@Rk8qf7~Oc?-Ar=
z8OSzpa*trSD=FpQH6RRpXrTXIQEIP<7;yKB4-C9V9VF*{?u7*8*EZ0;Re*rPUB3!^
zY~T|E4!ck{19c62X`l(K?E>`-d}g5bK2hI50|US86`yiD_K8LY8X8!&R~*|b9_$s3
zC9~Q-(WFO^!k-)XLiS4R6RbuJblWFX13C5!#lYBoBF61DFm0b8f6G2`W}iqH&<yAX
z3|hv(*KRP{CqQ}Az|x+9GW!MTYx{*Q2Vs+Epea{jpo4*CoNK>0wqLX~@D)eiFWT=H
z%?-5R{_Yo3_lx!WMJofX+4q2GW1yV`#BJ$m2Lu88lHTYO=*U$c5M2#aJ0Ln4=xl&n
zNq!f}dH;Z5Yd0y=UD6(s_C6qbQ)dIS49qsr$G|rRh8h@Vps#^`1_l`zY#{5Oz_$jz
zH!$XaAnq?Y-x(NS;8xCTa;n`8c3c+tf&A8ifd+^V><#b}|K#!j_hJa=Y8R+_Brx2-
z2m=%7C$!-KG19;&1EUT6$c~k3Fp8NFz8x1B!;mrXlYw0a#8?CWeiI<LctDIdu&hI%
z(m|2`pg7q+_=|yw2L3Yew}D>`Ofv9?fx8<sBfSH^8Tg&<cTf~t7FgLLRPUf@c2JaW
z7yOfEX%^~nQ2fJT4NRpP1|}Q)d0l`(F@?_DAvpS=Sa?u0`X?~mzzhR38S;n3hkXJ&
z4vNbMMZQCVYsow$<`|f3-~|2Iz&r!<4Qw;8-M|6^3k|F_u#UqTSZrX0!Qawi3H`yq
za+<n%s8GA`G6Rhd3F49k!>kf?IwZy)5~~cXHn4_+9}@cyi5rJR-oxUh!(vf`(0T(K
z3~Xj_8F>G&P!EfZ1~$=SI|jc#EKcPQ|E7k<92Q#*TsbVVCI%K97TXVt9R_w9IAGu)
zv)K``%fKE3dnMj&pu!RH!4VN^5Zq_r@W#M?CO0SG91+EO1(}x)(G8A>BL<GLm7CQs
zFzJX`dPF??b@-Tp<IHtO#epN@@ewgb3lN_&aGEY*;I@G?2F@C|WZ<%aa|X^ExM*PH
zQE|b*cU^*+^8($Dir0^dFOG`2M+Ny;3|uvE-M|e4$`^rMN5!S1;u^E@F(2Gy9y=x&
zApaTo;Fusj_IrTUJKS;JGMGp)anHbg0}l*5G|*^kz&a+n9}_>H4*dH~_>qAm6FE$b
zJ0>1;PmhVc$HdiR;++BEoF;HwymDM@8xqK6BDaZdox<M9Kpqo$O?-V^6fiNRbvU1i
zb3KCjP1HFq3N{Q{#|5heO>Au!`nz1x_~W9mi6SP3S{P=bsEJ}Gu9>)Q;u#agIgW`w
zCZ07>!o>efd}N}eiRVm&O}uI1c@w2f1WcrwC~cyQiHasFnJ8=G1ry~=l;>!?_GljJ
z(>++RVQ|H9QNhHG<0AhFL44r2sBEJ03GtGNmrc|>Azn1`*$L6|g!ul1|M@cUgm}e7
z71O`SUne<fCJ){Rs+oAzL{$?(6Yup1rkkLjKb8V#PKeh`ylx`IUMAjuF7$>pRCPJX
zj#1eQTZU;j+N$;0z=%279Jz*xOcU8AYMFS8YM2=8gr@zST=Jy&adaTd1n<8F{2E|h
zdYiLzOcNiNSk@-^u89a0F#XRaVWMr@;P4*7(q9E$Jt=rCUFW2*Pm10r#qTFYZ4;Y@
z20oN@@k#NqiBC*?WuiIv#Y9~b2@{%$dM4_dXksF2qJfD|O?+<R3lj}ZG@@n59~?Mz
zQrtf&8q4MQ$`=Te`Rpn2rHOBj1^#I1-<`dAO2keH#YFp4B5p!85i{}QDZx9DIj4NX
z?mZ=Vck|yVp_?#FxF$TVf*aQ$WSej#u(;``1v!+jc3QmsS)j<*fu{6<ae?=vp=Pwh
zX_0m&(0@z~R$G{8X`-WvP9|EJXl<e$XE#x}RiF(m!)mjDdRi>&7~Iq@FyOT4VEUJ%
zAvM^pWD>!o)1tG9*LnuKndok!3m4lm*p<$9CO~grd|LD{(bGgPlcxgs<4ynni-(^K
z@DA%n<IuvHf$|dr)t%5cCi<F~Z(@OoekQ&(F~P*oCi<KB&ctvNBTNk7ZkiaxEjIB3
znau+OX`fz!lc)WA;kCoFlh25<XT%WGziS&xJDd?ObqNlmx1SN4T8EW0Vk9kTVvLEg
zCbo^pzSt<V5*eeo#xr8Hq!BYP&csh9#+%r9MoexStkym_<c#?Hj9|vQ)i&^piHVF&
z6H`t6YGRU!KTZ5);x~f&q2EpL>Lug*@ToK652<0nv!dEr5jiXVHt~;%f9Z8+g>qI*
zW^A4nGtY`GXT_IZXxv#b&BSyQb4<)NF~h{IvtpKs*%Hh&QS_W3=aqB51F&?r0`<;`
zrsu>w877RB-si+Z6N^k7FmcetViQZa1UjvWrF3``t4*xo6OW#OG3Uf`6Dv%tG%@R(
zICV~}qS!e>T;RN@a$c-8vChN>`uTamqMsM*sjbBHLvqHR7n@CNF|otMPA<7+V5^Cl
z=fyT|eX9V?KJL%Jc8+jfTs<##nb>V&uZev$(eIfBE{HwM8y7_81wTUf%UEDq=zT#n
zz97E3AP$*0Y~r+uGbWChI7*+9L3+%@aT6z`Re!u7u6_|%bwM1yAZ}mqZNjZQW%3RG
zp=w`+&oXTio491+JpJcP02c-QBo+-_FwtX7((^ro&$JI;=AtGiU!jrP1xJ4wx+?Q(
zp7x=FZG$&V+%)mFg?B9c$1R{QS$M(1Z4-Bxt}W!T5WFbvns{j95mVVkanHnk6Au{d
z7X_;<UtJWBO(a=Jv2gUF=yOrzu#jwF>P5jY%xU?-IQpVkeNphbH<yJ67X=GFIj@C$
z7D`%p&O&|*1uPV^@Qj6m7GR;Ug(4OTS*SKYQ0J0pF*Li(CGpxNVP6tGFNraiL{SUN
zFNxtZ1H~;Iza&au79}h+8Ik?0qz^BNw=Ro%mj!e3^A^5{g-Tnz_z#t`(CV`I?y@Lj
z;n&Mz!DX@IvM6VvyoJ{-ykVh&g^CtZEu>kfWTCQ!S1eSq@S=r_m&HpKUbc|?iuhnu
z_6t{pxFS-tQ2dGrSm<y?OgR-8e1%761H^w_5mhauQ-9jf!saXD)D`jixWKD4&Q<Z6
z9Iez<@k;AJ_EoVs5vpz>WZ^9fH7#UV2wSLO;oA|})kkK(N&T;iV|@d}oHx@#_4Z+w
zxnG2`EVR5TvMsE<D*9a&<F1NY67Rd}FYR3m!h&wWun@8Eo`ugjl!f;#d|;uTh58n1
zTlmnz#}+=Z{QDi=F8z;NX5q$FQTUp8`I@M8O*FnH>R6a@I#Aa_cUdLoS{hjR)Iwtm
zJq`v&ToVl~G_w5rqbb(}t1GXG<JZL9YvMBt1KS4(zU0<WhwCD4A<FH(E@BoAZSixp
zV&PKD@R(NN&~-u1GdV-5g@lFX*M(;JS4u2DTo<MV%R)D*VZpZGSZHgZodwr|M^kWf
z>0qsbk?#XdElj#D7F`$3EKKMf_=-bG&_dEh9m8ba>KJUz9Ul?cd0p@UOB)NMb*#|m
zX9Ddlbh6Ny+iIbsh2EzFSFQ`@pDSvpi{<BJy=Snig_pVoc}q@wyhpf)g`O6^voOFy
zFLtr;4K=s$HQk_HxR2#uhZE$xAu8Pv86yJyxW5)+O~Y@o`dPs180^nUI|WO&3ck`O
z{Jn)AEDX6JhR}Kz23eThGdS4dpZo^Dyy1V+@lyHuPtsf65bv}M{dGeOw=jZxYNNi5
zkrsZmaFao8VU&f@7S>zXU}21fu@<ItD=mz(@DoFTR<bajyY_kLXA8g3I2OOr2yMF|
z&fE|a>5w<X{I=mK-NSoY2VeOj^qYm>EljpB#ljzywD6CGe=Yn)v)>SZ)3t7jVmC$b
zrXc7wC_8#nw7)5MXK}G^XsU&27FM4M9KGqUci>I&`%SU#rkH7AmW5^X`TxXh3v(>Y
zx3GYlyIIV&@NDzoJlb=!7}Y#fwRMmWC>B~+WMK)z<g-BMHo-eL1<PXTBm|7grMyb~
z&j-sbtYA1;SY=_2l&|}rKXq?4w3_2fyw<`xZq|Qd?0;g(e`5cCVxxskOl201(Wy=b
zHe1+bVYh`X7Pea0#$3@ZxShd5H#iv}-f4lC+}x=`x5R({3F2NogL^C-uyD{q&Uj$2
zg?$$G(_3x{KBge&o#lZ;9BN2_^LD!>4qG@v_qZkEZ3Bj+$1R+&aL&Sc3nv+0twSSk
zi8B^XS)kLhoF?;82EkeGLj92bTP80BFEFcExMtzHg{B=smn>YiaD`^SC0OOcuQD5~
z3Y@tmw%+1J0{?#sZoSaEx5dGZ;e5Bni?_usCVyr>8)-J~Sh&j|wegINdlv3n$ZI2?
zjRzJUTF7A|r;SJSsK%kk7LsffY8(3Uw%{cwx2e-@Q7a`o*+z<u+&1#q{`07zx5YoV
zMJ^kwdxcls7ClY|cm>sOY<O_{P<|T)Y!tRp#703I?Ro^k0d2fe*1vr_a9iZK;}>4I
zmcAo4cMle|QL#sm7d&};1dH2v*2W7q%GoGkqoj@JZIrU{oQ+y{1U=zQ#iTn21H`3m
z{{h-3y~AZ}JnrE~Zdn_j-|;_;THF!kZB(%FGAFgs?~bTw<3$@U*{EcrvW*FM#M#jS
zmbHVkNx7UFU4rAs1?JolTknV}Hh!v@#Bl;P&dC9*+6dZs$Hu!h(rr|;@s^F6HeR*y
znvJl{Hvr>x8*kY7;I0VSs7@=@3zfbrUcD>I{S(M>SMbs?!-jQNbiXT@7HZfi{#SA)
z&E6zb>yH3$Rd`9CW&4-7wQMX|6v&o%{9Qo~Zy(;a@mrT5Zvljjh>Z_z{LjXFHfB?R
zliJvPSDd;l^4t>@?}^&f=bli_0O?0IqW8onHtN_gJ7<1uL+unK=zLGqwK3zKsN6F!
zrEO^BJ<-6%r(C%0M`A-8jcl~B(bh&|8=u**Z8$WqjW2A(If#ufZ8Wi=@cXF_!6^6Q
zp2&G$G+Gcie^0cI1!6YJ_YJUAxGxemG#dsLpxEbu+V_Rd>V5J3eeuVAK1vF0xi2by
z8L;RxI|BW_$aZabHk#S^%Ern2qA4BqhRE?ike-|nXl|qHSHV^`TH9!0qb1!tNA}AP
z#Oe0otOtD9<=+r}{y?;RAllhzZ=;uu-Znbe=*W&Xy4mPtqqB`04@CZlqVEGS>48}M
zKy<OOPlE3BlZWEnhoXlK3h<VsCs+DVuylJUzP8cF#vmJm83i`_+W6K+fBG0Ld|b?U
zD0V*-e5x?|q4>_m)rVq$jqh!A8SLNp{lEo2615)5geh^AM}nLoHip_5!BlT!7!CeN
z4CmUL1qoU_5+kJik2Xfx7-OUEV=>yslt-e}W0Cb(Y<whcJrZMWjI%LdY_|Sbbbl;H
zJQm~SK2G2kKNdgRSoc``Vq>C>Uu{gX@w<&bY(Ln4qZ&yO${c$v?mZR+e@e~=Ns*xB
z|6}7{8&@3PD<*SZ?ud<3Hm2H`MwfV;dc?+b&LXEfY-6U4SvEG<*huHJF~`PY`m^od
zmCv=YKmy`<63mx$%%8~%C0Io7>KtS%KY}^kQhx90g_he`#?{G;_hy^m3L7hJ@FIMb
z4L)~WEioUt6R(k+wUVy0v0ei5&wm%@Xq#+ov9XnrB2^`a4|BHJ*luGlx1OHKWY{aP
z)5b0dw4?}UA%|tRjXjb{+__(1zl{UTOMeCqGRzBv`N6@bVcnA=<Q$TGUUzZ)QArWn
z=ctWia>nD5o{*G$3Y@lahCb||rGv9fH4Iw^H5{C`ae?{4!Ltr7(g>WzL0$)!xe?6X
zHty54XfYfA*|=rnx{ZffNjGfVB=d3VvVJN2mYH8t^Q(4FG&e`uZRUR)HL{Y*O-N?-
zF1I)%ldY6_z`o2v4w4-_VscCJzo1WYeDGLSc?^SHayb6C-W-kJXs5{5T#~~9bIWRu
z%uEX8bCBOb5ywB5;$&tPZ~zB|92AtC1vE%zW?=^<a{AxnlX5_Qt6tPWF)6UATplu?
zalj)wX_=WN9F%kr<oFJrbMU-_N)8{pp_GHt4$3>I;Gm3yvJT2QzAJK4c4v9P!N#P>
z6HI<ZIU}nSrp&xh=8Fzqa!|!VKz4lD!7H-q38f^(QXQl@sOo?kvhbJ$>60dcY7Sm?
z@VbLH9K7b>_BSb<XijD(k3SJqcMx*GLn&bg<YYKFofLV}M4B=vsoB7!Ob2f{Xy~Ak
zoVuoicWF`wS+bh#pq7KTC8jd(NN_hPLR>UQB;w#b2cI~o<KTS<A2|4*gO424cJO;%
z|7gvJTwsn!jqD(+895>!JHBI3F;;hGWS*;$S(kI=Ok=6<px)D7+w*2LaPX;YYLp`q
zosi5EeT^M_=D=`ZI{4hd7Y^c%e?X{mt>Bjqq7D=XO=K5xIKtWNAUjeZ=D^MoAyB1!
z!hz;Mcl={-<K+1wf-OmD7R4NVMbF8R=5X*!Ap*|<k8`-(>!h@<IU?jVb^Iee&7>F)
zn~~F;Q)dM!){4Ro<~o??ppApJ4t{hn%0W8^?HzpWppSzN4mvvE>6&g1e$AKBN!qiE
zgU*hBB#fi6iPq@qfJ+#eBhuYL51J)Mq^E;k5>Q}4j!18b$!GN&2YnrU@8Aaq{p8?R
zc{WLcZyofPfMProGJyNlH|0TAkOBi8408Cy4?}2;zA611hPUU4kPdY)%)xL6BOIK`
z;inFkXB&p^=7_M0oRN`q{;VLuXa{2){6<X}1sR!R>1hsraWKxoPY%XQu{Ux?CP?3Y
zA!me`<4=?;{gsA#oH~gfm6SHgK@NFx>9e;o|8Vf9gDDQCN`b!|{Oe$KR`74GF)R3w
zgBNn75xkc(GFkHJhmCVara74IV5Wmv^f$TbGaL-~G|b}VjLfDl@#K#jkVh_wxuUe3
zY4aT{aIlT0cCb*kE_1M4f<+D%OF$);I9SSE$QfZ_b%leKjB9S3gY`MmRykPXU@euA
z)xkL<pEV4xBW6VOP2u@QmJJSAI5jaTH+r))!WND!PnvC&Rq}bpY=?uL4)!_NFPXa}
z-Q!@l1Uzv>F_yg!o}3*zo|JaL!C?nSWN;mH{L?;%B&Am$b#TnV1txGtbXF3h@3?~#
zQu3svYib6`JjKi)t7jx7=d6QsPw{yPD)&nv|B@W%vV(PJa(B*3`Xy(C%&Qb|aNWTT
zW&;;>T-<c<AJe0YGA?d0FERJJfQvg0?mBqv_>URCZyvtq;J$<T%QNTXjPU-H;DLjO
zlJiJXa(EY<<RXWQoGy}G<Z<!xx8W2QTXRM(<c#EYk;}!Kt%7Achs$>jvXGhAMLrk#
zU9eif1xMy|#2o4gF64qY6eU~~c2UIT53~bCT@-WijO#1*U5j9G7gah0ueJ>iX%l?b
z1v%Av`Ix1oi|1SrJn!-XCR9q&+{uxJZ3AUpyx=0_BEv;F&d#Yhj*AL%w3n#4i;6BP
zxu`5TQ@i;Cz9=!L;Eb&D*)j`nWCAWyUA*ezH5X}A*afXr&GqjegOakEF2M`Q5q|o!
z%BI&{yy1e~t5Y#2M8E?i<dae+Ok25l$HluYYPkM$<}4|kDKV>Wxv2RRQ$AbbT9Upk
zDVcwr3<wty+3|la-gEK3)a^spzkB^a(gi8CYD+-QiDn_{Mom~ga`Ca`Q=fN|BXwQW
zbMcLfzAoy!XyBr$i)Jo9b<xm;;lh-{ja+=`qKS*fE<SVdxeF~h!V$V9N4}7lfSjlc
z#l@85NWw+T#mMAHT>1cYSk)q|y1u9JON~06!<rnHlKN9%x#0IiEUpV%G99@nUdhvX
zevwQHeC49Ki;gZjxoF{{rHfWBTFdT~@yp2o#Yo$@XzQY#i}p{M9VDPWD=Q}Lkh|8|
zMHgDqMNc_GR~Ow}@M{;2zymqmUH>Ap>jXjEOY&Lm<D$33`d7iPrNH^*2)pEI5$xyU
zTNmS9OmNYke(Pcc?Lc7{-_vPb40Z7XY1hCYPLv!O$bf1Q<ke}RlnBi=m{Ha$$UEhi
zQX<1#|LN{<I_)IideP>=tdz))aysfT*2O4^N4uaJV_fhg8y~;0iDjINpPouK>l^;r
z#V;<Vx|k-J6J7j9=XCL_i#F|olO*K>2X_C%#h*NO_<86bZgfh7oAs9qeveSDMeuLN
zREuDnl*piz$iFTobE94Sl@dv99wc3r5}EE|hKq$R7P*+o*l8Y|%^j3r7UNn<&Xv_i
zDUtau=D9d7nWV%EWK-!}k;Sfm1<tZWIsn0kzhy3EqWIbeD_pE}F{=e;x4<eFt6i*X
zhV{*`#>H9}wVUF@rda1<y^BE}27B1R^uj#gp^Ar1E;hTk=i<JLEzDppPP#bdVw;QY
zG@y$^469s`9WHje*h3%A71`-x7u}<CX8T-`(YYdfUF>tQ-^BqMlhs_2>$xJubNeMN
zcO;TK@?6)<!!C}vIL6g6Q+3TeN=<S{68*wT?nrwHX6BA;%pEzwsdGmj=Z>6qamK|p
z7uQ{!b#czcMHiP`oTowZL@qD}^F*pO3%{Eu(lt-SXcfBbVp5*S6&F`|I&?^2exAto
zJdv|`B9HS#%H@sRVDe|q=TO}O|GB7@H&VZCxNqJFftojRn;!wpX(z>9?or-Io*sdp
z@<!PDz{NusB|Mb$@W{nuW^WG#JS2I@;USlY+#X7G59IW)y-Oh3!^XT3f>U`TDIQ46
z)eGhEkk><ve35(}lJi9tBFs`TU!+dH2u~ms^Z*Y<Jrwg$$U|Wd-{*@I@xZ2b`69#}
z#$;C=m`(7EhsUP_#XUUh;pcpjcTWZ8<%{gd=O@@Ubwkg2c%HpHRHi;2N_!~pp@IiC
zmGMy4!wVj6=Zg%i8)DgZI#ABT+vfrV1@lKLvRD2HOJ@EEnH=y%4=;J(6Mkk?(mMGg
zFMGJp0}m$yU!DsDJfwPvdQd#1d8q2)eGeaa2zp58N<CzHsOI5S4<Qd39$xdXvRSBW
z{>U2=ye_GoKT_Spu>8LMr0sHN|C>J&_VA|XpL@(Y9Vm1vK=77_npD-pJ07w;WP4bb
zKT^x{^EqW`gdV2?SMo=g$=~%LJTxp2dC$X@vw?_*;sqjU1tP>8r&WQ-&;pU#9zLXu
zhejU$=iws{bv)Gd@Ue&41tNtDMn3Vdxj^JrfyksWHL4VhyjL(%&qI9=4LmpnBYkA~
z)We>Fk!uAb;|oR>6pS?H_VJI%xZU}~pLyU33O2pTzo7B(rH3Y-{|JkPClh|H8(LF0
z6!Q@G(9uID52}ZRhp#*|_n>*uJ$N3PdN4egoY8~p!J?9ga0HtiL<S)8m#lI$eoL|z
zkyD5)a)W%L(#*r*UOc4`AZ_8HrH8g2+IeW@p*8)XZ{U&}WYh3ofi@oU6pEBD6scJ#
zq7;g>_b{SRq=ScUg(3tjUXJX}9=dQj9{PCb$|ev0b_(|L(4C-Aq=$!|Qhs-#$n`=I
z6pp-DIKt=Ny*<2DIKqc}eA@YqhrS*L(4{@}<6;X($n4LKg(Kg3{uj#M@rY^R$afy*
z7LM?%|Keqn881J07)X8QWD`@y>Jb>?VW@|z9<I@0xb+@Zd00&u4<kMNLw!8_=wXzH
z-#q;8VYG)aj1dpNco^$poQI!0jAuC{sx%F;>?<7kuxa>y;m8E~C%<Q`8{(nXiS)gC
zp<g{r@{qq@xMYz?wIUJD{$Y`bUL^8|hd(|1?O{ll@L%+ndLb&w<Fb6D+@(llc#%kt
zw_l&kknym<!$J>JJxrsRhdCamdzj&2riWSVQZMvxkq8Tywzf!Q)Nh$Q3&cUnoDR(O
zFwet$55#PxO|BR53vuD1kwqSsdRXRRv4<s06h$LcjOS;z)(b87u!1qg@INFd{6^78
zy`mAfXoO8YibmFWSnJ^seS@*%VZDc)9(FPRGg;BwJ#3-ribghZ>LJ-<rOjEL&hE@<
z9(GW&Xk;5Bx>u0kO3_H3Vi6u#CD_eC@UWlmQ7lraSY)q<eOzYy;5)@4)AEN2^kR|!
zN7Gk;T~U1hqk{cGy1QB6z6h6nFYhZX@g9)w?yk+dO?Rh+fCz|*-AV|8-HM5*ScG6J
z0xI(V?EU?}&oj?FXJ%(-&zzb%Gka_rz96T{$m3<?lQQyC896=;UsK1Y;fHDXW*WYw
z;!MNIY53h#uPrOz(NdL_bXoa+8tAFjudJM+^p+I@CGJy}mz77#%9&|6I}JZg!_U*u
zf1UPnS^1ITajA#}PO{iK?NV9!h4yNVR<4|+%E|B3@CVJNjtV;doQ88$NgY?|_=_fS
z8vdPzOVe<HR%?&)H?47;x=3rERXdlH&TF)PXywWYAH8^w@*nYBdQ~w!*{G^_Z{cN{
z&3g-3-n>`2LQi&n<8o45M+qI!Q8HKTY8}_=xK774I@XmFzQ~y2dL1|DxKYOg<>b{|
z__~~&FDEyZmz#7DF0G@Cj#4_BFsHn*W@eVvQBKEzTv979R(V-gUMlLSq$8yxPe)}P
zRdm$TQC~+@9o2Ny(otK--Q}gajv6{@>Nr$hxQBbRe1gm$<)uOesiUK=j-Y~Yg*H_|
zI#rNS6{PVdt$~h)Ix-cdiH=4(8WZ6GDMiQT3PP>fTS304AjK+5or=;_M>8Fdf2ln8
zvhwsXrTZ&Na~(J9DAaL_jutvv>S(1y)zRaf<Y`)GkDz?@jk4oIC7++r;a8M`TxJzZ
z`DLQoT1T&nLSS=6IapEJ=xD1$bac|8>1fA>RFaN5+UsDM4!QVPuKdMZ+`5t!>HmKa
zRd}7&S;wt9mR6EJm1Jrqd9aeaSV_8(Wjby$P|83L9X)m2tK&X?S4VFhGj+_;(MLyL
z9g}rT(a}#we;p%rZen79j)6Lc>KMkF`>KP;sa|<QbeyatgLPc0BurMVEKDAICo`OM
zs4OEGU#D?I$MVA~%V-^Abd1+AfnTX4V|9$v(R_wNkHny|Fs!UB6LmaMSzfCwlX8!^
zr+m7y6t5yvbxb40$TA(e4nv2f!`5Mv-Bo0072y_heifl-qoX6M!`0#CYFJoB?ye%Q
zRFPv<gxdk!0sps(ggPP}v5x6_vM2sYHdCpp&}oEWhK^z-G<pTMuPS;~nXO}vjtx3C
z>X@rzo{p6|R_U0pV}Xt(q_B>KIu`MBebsBL3EfK;>v*lI{9093R+UGq$}-aJip+8y
zD=2c+<i+PSmZ^AOA>oeIWVMbpR1+$Wj<q^QRFjvg$;oQ6u$t_uCSO^~m9>klrvQAZ
z+*Dl{Z_;tQj_o>jP$qS3(Q&7a^e4)Rcap8ftvc?Y&>m9w;x?)SchgLzQFUooUAljz
z&<|>-j$Kp@9e0tH)#aCO72j2EJFFajTUp~O_psWjss6*&`>CWlKGXU4F6`FvppIAB
zC>;;!cv#1CI-b|@h>k~fJf-7l9Zq$5jEvLqWDb6ujjb-bs*7;j@sFbY)urhI<<si&
zYjt@>$FnpJe-vF)L+aO%kqeYPI`--~sN+Q%s|CtF9s6~>K&e}xw5cI<9IdoS=~qJz
zkoz@ceGNIphHq64>v)Oy)R3PRXI`cf)sW9?$geeoGnZF#1qd*_uH$VT?{F5N<4t0?
zRq3@&yRoLcMZK;moDIFJ<2@Z8>G)X3`#L_Lbk&q2I-1oKp1xt|T2nqG5&Ei?cPVAe
z)W(|f3AMhad`gk1DXj3#n(}Q;`CP{_9lz@MO~)5HzSMDos-fd69mlDaI=-Wc)A0?3
z=bxhgY9{*#kL^qXf%wjXTD7EgE%~16R!huUaw_-5vpRm%aazX@l=E70h8!_cjm%Wb
z!-ah7Cmlc2V4A64Sbt4fQA_TrB}_8>u|@e^#~(EK28tW_Q^z?S|LFLa_Fu<&9T#+5
z%u&hQr7*DCcWVi29(kYgHw)AfZpUBJ@gH@;z!e7C<R+4rb(F3xO6>&s-nC_NZMo9G
z{My1m`jjwmwSnslTyNkS1J@epaE10ouJ8l3<<;84<P8RHG_YW+QqsUxbp!^Q)sfD1
zk_t%^=8vu;r45uZFu}k?17!`AGjIzLFi_q=1p|!@C<ZDTsAQm)f!YQt8>nKSx<Th;
zR5eh|z(fD$(?^B-q{rjbnF(rKN7mJm4<@NK4LU`rS4~v+)sZ>|>KdqTpn;J%w0u=Z
z>KXW}j!c}S5=LEVXrPgiY_K+{E39Yp1hs8lX=0$MftCi+#N0s203S8yd~>HVsIG9+
zHqW3xwn{gon+>!uKu2O`a?91KE3FKuL~^cDU|?BY$v2QO(AvOVb>*45LLBN(R6nRI
zXX;8}t{Byjh1(j?4D>b7&p<l^?G1D`aBHqW2Ll}q6y@M6>WT1+i<G+cq?3_&qBgjc
z&m?Q;!X&M|fu07s8T^HZN*A*3M&fWte|r`vccs?LKyL##n@S%8HIFFaVTG=JMfJq8
zl|xyjzkvY;h8P%XV4#6P1_o0q4k_opQT|$;qL=suPZ?29-Wj9}Gcer1XjX1ugn^L;
ze!f!~l`GurP$9$Oda|RQ9H=K_*@|ptJV|k<GLDG(iSPOs_2kcbLT}GW1|}QWYTyn7
zQw&U{%otc`V44BlKx7~`U>GnBWDU3mECZ$Mi*3Nk0S)U5YoqH<$NDm~zIX<F1EB%t
zNA)Eza9a)_{C~ji`ZC?X3<Glv%r!7GhtDhnvvcSjtS`sw%lZ0(22#I)?0!VKtGG6g
zl26_h*V;Ca0S&}zAd3tvHn7UTY6D9QEH$u_m<P(z2C~e+aswYWkev-=Zv$Cj;I{^H
zZ9`dFTpKV_t=&-87+7myqk&BZ))74e8%Uprl>CO$v!VQPsBpc3l7|WjEZ9*n^)cmk
zikX2exiUsWS=>;zHI(NY$|nuw-3OFylyfrLz%vH68`xpsK`I5+YJO^`fqM+xOUw=I
zGH~!w<!*Akk<77GdbIxAQ0_Buzkvq~>^AV_W69Zs{6_NPV+zBY4=b#Ed?R_-z#|48
zGw?WD+DLXZl1B|Z*GN8XBvqPge>Rc|jpYdgPa4TYqh(`xiW1mZMmCmNjpbREH1MK<
zLk6BVu*blD11}iZ%eGuB+SFL~vF6{32tV3bUT-W1h$JObkv@ui-B|u>EL9X?GTTo*
zY;Zt@R}8#F0Z?R}B9AEYs)56byk_8a%0@r+Ges^b!v8+CY$Dy7$Xf>9rXE>nZ{ZyS
z?^3QzEHv?+f%j=xOf)g^fq^3iC;s@CEHm(tfl~%f8~E73CkBog_`<-rCi1C)qXs@V
zXp^z1i5$DLi1AuKb^T=ZfhO{H6Zz7>R|dW_@I9@Bfv*jGW8hmN&_qr&k%d-@ue`oI
zLvQ5EO{DX@6oC^4PSV^p6~fh;$}@q|X}0o%finhvH}Hpnvj%=N@QZ<8iTo_(Cj--)
z%FjmPeb<j~jZXY&zu&8DZYq!K%5MffJ*Yg|RQ@z@&cH<jf78T~FN2ix1};#9zSL?=
zQ0SgPM+=7co64SH%Frj3pDPrrK3utE;6GYg6O~L{Hc-sObtbMiafOL1O%yj#!o=C8
za+S$LvdUG>gfM}tO<ZFp?(wHaCYjfosM1UdnhD|2W0V_A{yY(-O?F#=iIQe=s!PTy
zZT2ZQnHbVcN}1qMEG7xhY$jz*jG3U6H&MYvITIfbOB%?S-f@2&RE~~O?r0{J`3V!X
zP1G?t;7M9n!$eIJ)l5`3!PeEv72}5vHj`Q=FHcZrOi<K8%E!&*J6)-3qP~d+CSHGD
zsb}KC9_2zaX=tL6$r-fL*u;;|C=VY{_&QruW1muOoYK@pGZRBi3^S23k!PaFgqUb<
z(uAV5i2@TXOtdtinz*;0nkFX0l~$~LqEhalGW02hfHG3aH<2-MQ!1HRG)W21uN9iO
zg)}kI-b5P$w`sjnqM6B}Zd)@M_Asa8Mr}$;I+*BaVrxpCO(nf&lLvThmpV5kolJB#
z(bq&j6SuOlCVH6YY2u?O)73<&Jn3%Y!<2MmyHb*zEWSh8eYeufL~oO~eyMbvyWC&x
zWAZ*UbwHjp&J!(9`kNSFVz7xj^2ErKfhOqAI*5vsC-i$K%=0x2LrgrCCv-0#ZeoN9
z%Y<!Wq=```CYqRJVzdc*-4|~z<H%MMV@bm}^;VuR{FEo-O-vvko685|6doxmXfBgY
zOfg}YFilJ~G0lY2Ty&Gy2qXm<hBg=GtUsWvYA*LS7v{XRGUJ%YnutuqCR~bWKXv%r
zOklz@;hT7+xtwV(mzxWnx<m5iW?@iomgy#Dn3!u~9!YVt%q0CMs<Tb*KB%*DF^kP%
zqiz<SY+ZV@T+&nFwA6eP_unip-z=wYmPIBOoA}1Ww<eaDSV}xiJZEB=iRC8lGO^3V
z3R1wtCKI=tSY=|hiQ7!9H?hXVS`**9>Yx^~j_lh~tZEBs*Fv7wQ^i`y1~#XKeAYrX
zn%LGt4z`eAa>>mmwwSn+f=Wpscc>tyvW=SchBE9`WtE|H{8q_-M>*swSGSZMCU#OF
z-%_f#l*?Z#blTtGD0iE<$HXHh9;KjC08Bh+;vqK5!~;a5rSKH_ZVK~J<&3GsZzmos
zty{`9mh!NPSuJJaYswoRDHB@CV{BAQdCJ7oCLTBO1l8ef<w+ASe5ep$AaL$=<rxzj
zK2|<Iu8e;}d7`B}Z(@&$cWHi2>@~5^#LHxmiT!-h#ET{lQPNBtBrAP|E6i(rrPe!1
z%+?(?@ls34o0WNqT<fnMZ7ILDloDxq)x>Ki-ZJqvl{zi2n|PC~Ps=T7d4r;umK)tn
z2}50#miyCkI4wuh@(yiITFSSQ_i6l1{ze?1n>a!>G4ZL1&!{^le<&ayoA`vv)k>ze
z5*~t^-%2VESGTv4gRSJ~?aJ^?$|t&djIXzn<J8|3$`>ZSH1U;*KU>M5)k<?!pbA})
z&CS}^6zR=ccU8V4(`gJXl(lfe#7PsEO#El!l!?<OSBLP2i62ayG4ZpBUuXwZIcwr4
zvhsH2$6S&QMa-O|$`)1V6#XlSsmgDBYm@SfDg)LkyAAbE6X$4rOkAYhUZ(tI;ykrU
zS6RO17UiTWy$$tm8uonoH%E$R`>X%ZyqqtplrPQmrBl9KHc`yNwHB_kaD|1*`BK8d
zk$kz*!c`WETUeSeJM(2vzVI!=S6jHo!jCMLk(wDP$jJ2;|K*M48M(<q$;}E665eP5
zge~;Wh?9{sD>4Ln94ahjp|pi3GxGQyn!iPPEhFVDItin(1;s)I3l%NYv{1`JB@2};
zRJBme!dI)6Di(%sQ7&cVrH#sojFfLJ%U3JaE!42kqP3J+q4aGnXV)mTE!444-$DZm
zU-nJawXmYK+}m2}Sy;1Paa+sUl}bYkFSM3M7N#%Fv_R&Q*78$pA>715Qwyyus1}-8
zNU>%MEiL3(Xl~(V3xx%;dxcWGAQ7{w1yX%A^)b`0K*9n^TlBY7*A~eA1(I(eW8oGH
zZ7j65_$zbd?aeQ=z@6(C3#5IdOq{I#8Y%NG=eM<Rv_LLx)-(%eVukR|8Om=3(!oMU
z3qM=<#X^w<v9Q&`9TqxS=xo8UkhO5Dg)XFtg%K9ITIgn>uZ4cBXOi08LQmpjp@)TI
zp~9RC(-i`}E%f0RqXZssXTi0FQln7%TNq$ru!SKO23p83ltC<3DB~i9FnwhSGahPT
zn3bH=@C#)_F6ZGw8EIjZg-Mhd3!^QJVO6)t1Pfy=yi_RT$%tEIoQ3ZSrQ}wn*e${h
zKJ6Bv1L{NzjO$NLO|dZ5f?>h5px+|X7+bh2S90+!!tm}b^204stc_S!a!PK%JjJ%a
z9RUKa1<%5K3kxjx76LNV!VC-5+enxz99xKTNxsO;0|V67ZDgi}Sr+D4m}_CS1)kaG
zk=3GsD&7BhuD^d9na4WY2nWo18)0&xg+&w|3u`Sbwy=Z}Wnm?i!otQjvW#M%1Gdgi
zJ<>)>4OAIkZX*n<EPU^)tJ%OnxhtFc`C6^Q^wc^Fx3Rp1O%_hKk@eIO9{!?)WHS>M
zWLThBTVbfuR&KYj*#ZF;)7r`w3*+0$y2<J`i+^mv%NAa-u-(EA3r|^i+QLrK&B8+#
z9=5Q{!rd0`vv5Bf+g9$eu==_T4|(02OWxO3nE8MO=6u*z9<-9-{q9`6zpb2YE7xoC
zh=oTjJZ|9$3y+amnv9~$w3a+#a|ra;WSS;VT9~KFCQY8P@T`S{7G7jM7M{1T&%%Bp
zrpX>kemmJ~;X_S+)}&dx<lPr2&!l-fIY3#RRoJDS5MI<yK8R9>EF7l%SlHH1o^B^^
zwv*r5$#w0eUVC}f!fO^jweXpR*DbtZ;XMoQQz_cZo8<N5$~zX`vhX(RJX|=ry{v36
zefH+_^xwO=r(+&c7(O5-7CxehqlMY6>~1gbw3m-9d_ooIAkH}TY<sz)gVgIFZ92$N
z3!jsZG~iSv3tw0`ZsBX%77KO<uHYdZD$6>^T^;1w5$gU9@^J_GhH65Yr-kewB|1ut
zj&e&!8Prkij<T$yoV4%*mDIv13V?-sSYW2Y<7Payah9)G_{qZFj>0o&Eyk-=#;F7t
z+Ky3wwdhidTWxf)@w<gT*sa(oXX8%`=V)wgl(g}eh4ZxGHm<aB!NNrgmn{5efv^9~
zCU=y7E&M|rAFQxu9(^M4V@J7cp%|+juc}4D%wpr!;zd%uNUpL`+{U#wuCu{MC2U-6
z(}w|lieyre%qfz4ie!J0u=49|++d@!$U-mkO_AJa^O79(@1lenYzyxXxyeQuo14oi
z!lmrQH@GyDqf{mt=mk;UMg<!w8+kS=+Nflswv9Th(?%5=)ofI^QPsxnpIqHdq-P0@
zzWU8Yv_+X3HhmRP%Z4s8Gj}v~sR+ZQ5?Wmw^=ve@q1dQzqk)ZvHX7O3CGxt+*CH20
z=nGV~lhp4d?K?>m8=scY2sE?N)W*0@GN+U5>Lffm$`3WSakGs!HrldvHd@-e7X=v`
zX%-GthE_KAc9M@fiJHs#rIRqTwT%KBg*I-nfzG1jLch+E?JS!*%cCzAKG|6`8|`d#
zv{7W^5D~D^!N&Q{a-E&|va?jXRn%KWYz(_qI@#!KBfM4C-YUCqm6vaoqqj<(L26eU
z-E7RYG0#SK8$E1Hurbj_PaC~#46-rUMsG6CMt>WNx=3>9=2q!zqaP{UMbs|Rw~I{a
zA_Hs;w6VR5{4z>q;O6WQ8$)f3vN4(n*cfhOB%9M!UhX1YV)axP89|ZgDz&>x|E|LP
zF*e4MbT-D@FuTf%t_gbgca;NO<<qWmp{qPON}Xh5vW=__*TxhZQ*9V5Y-1Xk$oxSn
z&&#k_rEao)QHDv&hHb;KF{Ya=9i%qzCM{$2)^5_r%*5Tqv*FvAVPmF^fW)y8*@$hd
z?Iw?OlecrlrjuXuGyimx%H8GrZpn;nmJJ?M&+E>$5zHnLx(j8JF?0HKm-#jp*w||0
z4jT(eF&pb_+-763jU_f#+E_(mc9*3#mf2WtW6vOUN_Sb-UGC{F`@2)9@NswP8mX&o
ztf9>GkhRp!?ozTx!m@@vgq}{5ddPYk8*FT%RNL5S<K_32CzoV4_K=r`YO{L?uXEXK
zV~dSr3o}P%=j~dUd7_6ff18avZQN($esapj4jXsd;Azk|ddTq}veU+0Hva7)yKI#0
zDV6TfMg%DyG*f!YJvQ#8n)j66<MPJ!lm~3=w(*FKM{PXFhV+z&ZQRpS9?HQy9>SbA
zd&;jp<uMzN+j!E(Q#Odn6E^3<2}(TL!?;v0Y1~WN^^&JqznfaRF!P*^=cyN2w8~-+
zm4fP=O>E9S8~Z7x4(2&{!Nvh<x`Rp%4%&Fp#*a3BqWs%9OzPSA#KudciH)~xyiNZf
z8?V}U!^WF7UL#5U)a%r~Dax2$vZ$B*=cwHWtGj#2;a;NMs~qbk@7Q?P#s@^$#(UJ7
zlSNwxtM5~-dI@3P6vRXN-aX2PHa?<R=q;st3zJU_R@?TLPi=f=<7*q=*f?tAa~ogU
z_{s*K4(=_-Y<xkX?Je_r%hulV#TDAV-ttLrId0=@u9EOR<y#xy**IzA6s=qz`QF9}
zQZL9<>myI@QW#qGk<&Ksb5qaoEgL^jXZy&6KEg80oYO}bHuaI8ZTw=Rn1d@E{7SQF
z<8K@P(Ei)_gA&E&5UW1&r;T&8U8j{-`v}hw^Zeucqt&nb$X|Wrf{lwL-3jH!zQXGW
z_~>8aKUi(vSN^kcDfbpHg7|7q>M~77U*V%#i!)a`xXM9E2RAt=?x2K&>l|F~;A#ig
zIOrLu*E*QoS623wyZZ{?y?4A?dq(O82RAzSxUawglP~lY{iHI{&ivU|Zs;ea9F%rY
z-a!QiWgL`sP|g8QW!CGL;LNw$_LFDsEo9})<N;NN>}a*JgDMXCIOyx3s)K3{S~^HO
zsP3SK1I0lT2Q?kka!}7feFww(2@iYLc2LJbT?bJ=`P@pe)dWbN1`ZlJXzbuKFF7T;
zv7a<z<)@X7rxeBvEZo#VGY2ULc`QasW>b&!lUMpl%`2~I?w|#0?k_hx_@bZu(NAvZ
zFKzk@&wjRYpgL&ppo4>a2N?&24sLPKnvGqf6*w4^D@K@MCf{<<)`8~W$NsW0_h^5A
z`JlhFBasIr0NoxsIw*3`%|Uku;-Hg*TOD-CRak9+bmr#<Bt9y{aPR=(#R5!rb-*Nn
z9%K{oA0WLP%o-pY2FSqy!enn!>88YG>(>F&&q03&QyffnFu=h;2csN}b}-1HD+`7=
z7@8|wYM?Y8D36X(hB+ASV1$E_PI7Tm(LiCCt}6_?_bA_wRi+G-F%HH$81G<$gK-WP
z4wPL3rR@{R5wNv`l!*=|k+uhv$+Q6DmFEY_hXbYBGs=N6`3*-a(;VmyLUPT4;lOlw
z-UqG&%fYn$itWI0@WVhM-27SP)rm^6L2_}3;yLgg1Qd)rm98U{ii4zZknoO_QlpgR
zgO%99bO$p@1R_6H?L9~sX0ZGq**r*QJ9v7KyfsMXIAD_SnL%>pV43e=frGakyv-&!
zSmfYQ2ah>e>|lw5Ee^IiSn6PzgWDXecd*>S3J0qltZ{H;o3b*8%&HuG$5@q!RT(U6
zDLjLP`_a<}%fP|1&Ph&V@s!h!!Lq@@MhBZ5JU3XF{9v&BFj#J<t__jeLu50xX^3Qo
z$Q^ve!7c}Plm3+3A+p`U4$^9fOevMQI6TFhC3ZTv%R#SDoj*kG9U_N@$UP43b?|_L
z-45<^@XZiuI#lj=@b3^QJ5=5to|2(5b*Mb(;9&=kIJ_qT^M}gLp|W?V93Lv@hRTh@
z<d4DX;|`v1aM;014xV)Il!HAE_L6`Oo^kLjk$1piO@>MPVKQ-;tQaQGlLEtp7mnRE
zO!hH2*zbVXXdEQ>9UP!k_sYu*movi>kMuIbg~=Bk9CC2kR(Z0I!@?oM<z)x2P;CdQ
zujk@diNg@}H3!~s`FNDd6U0kKs&6=;t18R9nJcquxV+=wT?ZE&Ty*drmBPW-Y&*HO
zAoBrjl!H$kth`$};^4zv=0_yXaN*Na_ZRYR!%rO?b?`Ygh;|@%^C9D7)OrVBIXIrn
z{PKT~=)22{5C`WjQ6xN!SHL;=jux9WSgG$FG{2mGnxgCAgoBe*F5V-T%j8pDlEaz_
zoS`Xjc!)lE<!tULO&Q^zbMP;;D!fz0Q<=lsesl0UsqNs;oC!Ve;9Ty-zy4Q@WjNcV
z_x1n1^0$M393YF5S^VqZ5=ASEYqR)|q|UuqB8y_#<kMGX6Kt=@#Z101T$sEni{iN)
zBG2U2IhZK1z;!v8nK$Nu>vQo9xvGv2Pw?kh?xrkCWl=VZa#@tl!h2BRzEYVSK*w_W
zt23v37C-ZtK$ab4ib=v1v*1R+-@}D)<t(aXQ8hP;sFp?bEPpqjjN;A}%hbrCZWi^j
zsF}r|8<kqQxOOhiyDn3Q_>2(d*Uu)W{+s7&Xpn;&X3;1IaHq0y4oJ@bX3->zrdc|W
zWSC@VmIWs@sa%1)T+C_s&AED7<l>gOcw(Jm#78BZ#h5I{<}x!`bj+eC2e;0mAdA8*
zexIG`JVI{CqD>Y&1>81^b~%8smIcSR1ls>Er$Y`P8j?k)Ts<SR=$z&5Dwd6uAz5_E
zqH7j?vgn%y$FAM7=$=In;xIyHjF6sL+&MzHRoXj?UOAXa-Z8a*gz#u~zbyJ^F(8Y9
ztbA_jvk}7h=Mhq7qzuZ!9x07R3NPdwOhS#6fg@#TuKB~V;Ds{`!*jrhEO->1$x%7<
zMrV`dj(bKXs|4e+7@x&mS?tPULKYLVSf9m)EGA_!Ig9zZ@>5toi)<Ed7SpoOiHVi6
zvM{pAsd?TWU}ot+o6HDE1QLf&?OYir7t`Oy%fioMP7awMhhdzHSw76-Oq7YTphvg8
zI5Rzq8Cm{zR%Yhn*|~UDF6Jf+^UFIaUd1yv3&!(uG2QhSPyn)6l*QsKR%Ed<izQ@J
z7SDJY9_wC~#c~Sj03iilotYu;7VF79RIC1n!)o$qTp~yeYjT-uvsjk{Zu?)EV<Qt`
z-be=JXtIeU&0=%z=^eRv%l}GlO+KC49jCVCa_Gs-YPXa1L1srT-kFQ3`zM{$-C5j|
ztB}HZZx;7u@njZHWpRHN4`lIB77tUWrlof0;s+_2BZX(`n{j($T8am6AIaizO6+~g
zqggygE_f*}1JYhyGfHZVk|(msRR#o}CMmMmn@z5I$c&O_vv{7irJ6iP40#G>l=L4Z
zB;%eeW{r}qqhw#M<o;azLN4Zu2eLSrgV`J=4`=ZbsWg+msdzbySE%n1N=0}zi`TNa
z&BuBluV?W_7K1zt_V8vFZ!zD+dKYhJ@lF<L7p+{po5g!sT*%^Lmg6FPK=YEt$t;d!
z@nIHUWbtJdA7$}z7N2Etlm$+!pJeg%xYVa?#VGk;l>9hKs<+NBK3YC!VKx7;lWiY<
zuHYCcHd<Kht1OOZ@og60v9=$SubJGC{w4?Se?dEZOl7jwX!+-R^?PdNXnE|oHgU9^
z%HlN5T^7G&Q6{VXKq<}QY!<!GsIy1QU87}gkHTk1%a4@0^XgAo{&`IZ{F=pYG;3L$
zBd6Gk(K4m9_6N1#pw?lBcH+Fc^<wHTw&HU&Zkm6d3UxeFur@vDl2&Yt{GG)=SyXaS
z+2#EzxRk{;F0OU)Uly0MxXMLw7sXs$;qtdua;1wYt<}n7WZ)6?{p#1;Iz~Evs7@Or
zC0zanNUnDID<!#OjI?Z(PvANi*Sjd~qKuo+?FJWcQPRb$W4K6;yH}@w8CUqtIrSzN
zrCeNdp>4CVnJ>r4luhYB#z<Kgub*sN&P91X8Y{KON(C3UmeMM^{2PmWh;~;N<o6yc
zgsZry>Y|~GMlPzksP3Ysi&`$+vC?E*;j*z(!^Nx#g%7Y27j<0Jb5Y;rKBi2}SL?d`
zvxB@lO=CR&jJizAYv6+U3<pzMV;72xn_aYU(Zoelm#5W`a`D2s)S0nz)i`0ykmsT~
zi{+Bla&eb&GHIO59Ve8NmTX<m!aK)_>LTC87#Cw*WL&g%(c48IHpfMwi_UDFi(6c@
zaZ%(#T;2%@%|&|`9bB|?@%c-s&g;{smli!WPHx|>b#xP<dSjd{&!~@XNE1FjPCDg~
z?{h&t_ksHFIO*b|tBam4db#N4CIZ~uMGqJ1o!WynQsu`>)A7=Ays*{7$IH%=DQCPa
z9WQ-d^m8%P#V{BBU7T0*DK-OhzyKFfu{@R^<YKUkAufJC-&P9M3;(6gtWFai?qUR4
zwmv=D<^97l{<d_tv+76}1V*`dGM97L^BN0`W2TGQF6OwHK(t+C$ubv{TugQ`)x|Uy
z-<8fxajDeW(N(Fp#|vZKh2g@cKu(a4GWn(pi(k~W?)mDe@pL-X{=JxTT;32X*XC(K
zt9&m<rI2X5@LdFC<pd$E7`ji8*u`|phKr38Wc&n~;o`&RwV7<xnlxEFdx9`Iq)g_u
z6YOFz&&6^VD_qQXvB1S*7fYxMo6?U=kcBQ5xi~yQ8eY-v%L!8UrglqREF&HMPGO>S
zaJ2IigyF;1>Pi=@T&(>;UE^Z4i|aaH)p=rq&vR?j%0%Hu*AmHA`RmxIi4snf4aALF
z>Ee=$O)hSC@sf*|U2Jx-#l@p8uUN!Z7k9Y0$K?VGwvp^E?sBoqMa4Dg)e~jAiyba@
zx>#CPlONQ56XmYlhw7bDZ@41wZhr0ub<Y8f@qI4tcd^^WgVdvg+L8m>1C*H@ddeN?
z(-Y+(7Z1C5Bu7$`@!89%|0c?gFVwJ%_PC2DT<mkPpImnFl#6FwJm=zRzH&@$K1p6&
zQuGYv|GyMNrAg9xl05HX^d#BiV$ZhBs`cr;ITJxE(dh;41*)fugDzflc|lV`7Fw!@
z&#H$=WH<RWbLB1RZ^svsZr|OOrXhNTCWQ*(;uxicc7tfUIO5_B5_yum?cyC5Z@T!T
zWV<0{wYPG>1C!)k7w_>aljMDxzAfpUr&Pu?n=MbMA5D@EU3|onE<Sa+YbGrJF?I8Z
z+Uy6l*kt+4#aG4hnogFZ<nm<Mb4o3moLKTNTzu)`w2L2Dz{PPF-%^YzW+&CJUA)yg
zpM?F!<xMHVs<M;idlx6D1*0=3DNd7R+vLQ&H~&&SMH)_)0h`lrPnI(-&Qc~_{6cea
zLH&_67pT8qO8u0xT@M$_qwV_D#cwWtckzdd?e7+B+K|5YbM?E)a$&OkNjvj_N<(zc
z<+Ts;S1u-S{{Mhne9^_<|I7b}%{-;Dz<)0907r8VH+v}N;R+8GJyh~=rH89L+~DCx
z55+x{@Nl(<Ydl=onr26Kqo)!7Z;z<gdbrNR^&ZwAQ*W9gJxjJ@OtG2xfeH^LJ(TfK
z*27I67QI_AWQvsbcnO1)@_6roymVX9^s_26CvQ!c^LQbKl=sj#Kc9VW1rO=>3f7-g
zmrjw&9<LckeZJ_Ss)uSGYI~^Tp}NPbuu;q7L3r6-CbQbs$g-NuZ=Fv$AG9(3(jKj@
z$5ZFRP|w3>YtjTh$R!(kXyl=(hh`ocdpI#g6c3cW;!~yiRB7VzPg|MvRAEe6y=q)0
z<>AR5g?S#jPnFjSRK_hlwDi!~!>vTsLn{w$J!l?O5BVMnJ>23U<00F<kcOqeOU!s{
z50BMNO_(Z&M{0AX@^q&Ztx4bZm)gbyZ97@q&O>`r#zPTFdPeOqv9Lq#MXDZOe}1Y6
zKX)<J$>V`U`F*Nve6HZoomv+UT|M;n(8ohJV#tPMwVob!e5m&Dk{+4DO!)d~(kn*<
z(xK)w>Fc2%3r~}QM1Gp|_b|ZY{VhT<qb3q~YF(O7DfUA=3?<(^T=X!^!*G(q!&4qc
zco^wnsfT4AMtK<R!S&#I7~^5Ahp8T>c^KzmyoX61CVM>p#nV_a!NWukZ(U50_3Skm
zubw7TJhaQG-|f`?Ij0WHsJaJ(@<0Y<wR@(C>A~`NL`Vo%Jevr)P5IoCCUA6`WIdcY
zt$t8i^F0I}W_g(HA@mS=P%futczA6?Iwn1Jp+rshcxpx%*tgE~uytt>yYJe%%<(YS
z<17!0Jk0ZOydZzRhXv%LF6;_xyjM6x7kym5qbJ?d23;0=SmNR1r!>;4%`x>sU6y-T
z;bEJHJ3XxQu*&11b*%TW+QS+TYgzwkb>YR-Azl7>Db?_K?HgUzQId7(lF~MK*yv#k
z@yYRPlZVZu@MNjJU%TB)#vueQ>Qd5>J3RC(r!la1X3Pq=lhGb_dw9^pPU?b(dpz9h
zCAMgn2h#IykAKn1)H8%urL`gVdAOf^G3XF0f1}+49(owkqHKmR`|F1&Jd{!ok9&B8
zbjWIypGQ4#9J|JlYu2Wje1dXvMt#)~j)E4A(H=46X^&GOd`ju^@T|ul7UMM!uX}jj
z!yXSWdc4LKd#Q<Ri-(4HT}kBkvvNbu8+74FA6uV3;Nc*7WG21jxRmyTtsVC8l80A3
zyz1d)5A0Rzm<hsn?$9`5Y;8(kQ>K{mO0m2*IQaMQKATCoB5oeu_3)mDyLVm1+TI~s
zP2uqPwqki(O*%3q!xhT^5!Oi#dicacg&o@2bbhS@^&^T<tNfQu*|$sk%#_nx(!ZH<
z)Whc<&U*NfdPjYvx$tn(!<Qbu^6-s^Z`l?WXqA71C0~2UJE?M%Rnrm<+9@_1Ik&Xr
zI}hKJq!SXsquD&=;k1VzD7sW$OG*@|EJ@l<uw+MBZH|?U)_(Hvvxna)u^xW$@T-U4
zND50fTQYfR-eZ<LenRCdRX$h$^su31yK^4?qC}le#<Z`g`Nu7}SUPjw!={3K7W<pR
z;Gv6;u0H<taET_=M_nKPdARJMl#kLriut(0$2C5#^>L+-t9)GTgOWos7WYxY2YVc<
z1Czg7!jUScHk@c&=i_>x+fRVcF`j0uP2a$z%}ZeNYTJ^rrKFGdFQ;zux%ntlZE4rN
zklI?tM_C_Ld{p&O&PRD4m3&n8QNc%}!u$ocRP;ehJ7`?~9kwtzcy;<oTgb$J_G{IA
zRQFNSM=d|G8yuf7uEFxQ%qrRLOFJ1;v7f5#BN?@BP1o~L-$yGSs*eUf8v022T+>4%
zAB}x9^^+d|9PxBS@zKNwhs_*3H*<uYT4zU^`CRdq#YffVJ{Os#rH{0an|-Wvq=nDL
zQek+>5sqUyuVFXDINwLcM|&R~e6;pa;Nup4#Ydsfzlh3ToHl--5}<`|>qBEJ{6yEN
z&V2OS+5BUU5T?EA=%dI-XCJq+Ej~B^?v%rpz@JVsx+s}VxLh|YG%2j18_W2}`fz>p
z@X^!97$0MO^zzZ$$3P#0$ORvLef0CupY2lf+hr5I9+H)8R&M++HGprqn(b(dvNG7m
z5Ff*Q4EK`}^-v$9#~1Q*d_*3N@VQtaBYlkWF>$~4_X%}0`8b}-0>YScPsZbXjQ26k
zhfdjGF&~qCO!2X7hc=1)I-yQGl5}&gWu@)L^i&^TXJy+_b)u=UYv8!l@L~F}eD?TB
z4`{PF2Q`OM>dJqs(;RaWAIiVy^IB{y^0Al<@)7!&<zu!F4mjCIL_XaMd1I<f_c6oA
zOdlVtPBUq5OjmW~`%Ota$H!bB^L)(bi|-ZC!gDsn0oVc`Wlj{1-H|`LwYrdN4#(7y
zpQ{C~Eb+0_$4Y*JZDET_Ys*PeHxWFtZv}H)ndeIL1KMgIYbY?=wYB7O_re>u<!^T7
zNmth8GQX;k;-d{dHd5U}6c4e<$L&741?V1NvyUx4&iFX%W2=ule7xx6kdJMoyw4>#
zJmzD&j~zbl^KrkAoj&gJagUFC{ls9Fx!ih}kGp-m(KLU5CZFR^c3$M{{qL$(Tjjsu
z$^$-jQ-FOu%;xtfWdHJ@&yi{}?76~|N2r^gboJzpGb#lm?aAXlp78OUkLP_nNn!Bh
zDIZUh;CysKUE|3!KAt54o^bZZLB$QH)CR}YJwEpOc)`a3pWT7%qkMKRoabqT_vdmx
z_GI#V1qXc`O=(1oFlX_HeZ1u3V;`URc-hA*KHl~5o{v{4Hf)iPH~Frqy-ra-p5c@*
zy)ON;C)fD$mY<9+-u5y5SYjS&NZ+CS_=!b*-$%5z_z@C^GT`I%QI&!Afui+GMrDur
zQKF&Jbcgn-kI#I3=hJ-)M}2(m;~O8}`Z(r;9oCmVzM?Sat6%sS;0w*5!Pv(_U%vJ!
zv{E`hpVI^;<1bV$eb74nn8`ob^{Nv-PWm{Nll*PIoc8gIFF&v$o73<5^1Uy+P84?A
zuKnoaCm+=UR1fg8k6&nD1KbecS0BIm_=g7E$L~J=@NwS91s{L<IG4ck7a2Of@X(qx
z!`yZ0W;eAf70?AGY5PS#8G`;zdlDowj_a2eU83=))CDLW;IfaBN7Q0LLNtb9fy^$g
zT@m2Q00bDew$3jR@ct0FCcw1;t`5Ml+^5G>#-uj8)a!y|j>$lp-xvS^$_6MGpk#oX
z0^Ao!nE;$it_`GAfYNMQ$#&FSt`X4^Hr!Ugi7;2j$_J<vpmKl;0S*LGF&7^Rgz(uQ
z=^v{Es2ZSCu{?Ir9Ig<k5uj#(bbwX?uXRQ30F47E0qO*(8=ygehC$NsdI9POczvf<
zER;8IOLJ9$9TUfOjRJJzz&?~JVUlbT(31zLfUBweNnBww);u*)>IKd688;7bbAXmX
zGOVJ0wFp465MbcyT>G`D^?NimKz_hqXrWzzOn}w_+5~7Dpdi3QAE-x`7Tpq{FaSBi
zP!tNgLbi*2<&tgrBSI;6JkvfvhXBH62AB~Fhh80nq)+_5Os0r7Axy^S7yeQ^2e>sr
zmjF+M$pTc@0B?jsi~4maT%x3u_6WF5kH-Q$9-vo%-T`Kjn*sU+=o?^sfC&Nm1?V4O
zSb*UHE`%~5z`y{5g2bK^E3RnG$X5pk7(#|d(t1OBD5)CBs0oFHM+6udU~GVK0Y(KF
zx<jL391~zP8yiWht?Ay8Fvr%lTTiMSwv{YYRa=`FU{Zi=05`zo08;|!0gQlK2ACYl
z!;#F3WLf~HOoqVik(dFj05)?1aNtzFly=|xbb5Rt`->+$?d1>D`1Z6Hz^6b4h$(~t
zJtefMMqU{3WTnOhqE{lBzbQSPQkS1UBfw0`UO6ooS4eAoEJ`$P{aJNRfVly-1-LW7
zya4k9tO~F?z=8k^$*cg&11t)#IKYwsOZkadI6>n?o-zBoDzP}L)9h|q#Ihp5$^h>;
zT9;UkY)*fd1J(ps8(?FAP2`%IKQfke0d5Pho^*(X>l+(_WVEv~PWnwIZzrPzY@vV!
zi6y6|lpUL)pzex=@Et+Yo$ZN}1(xjrb_BRTzykqx2DmH0Jpt|wuqyyNm%D>xf#}0n
z&cs4<bk%gZk94>rU46O~->%VO(@^gY@L+(413W?zr5;U}dDDd~>pfkjOqb2mg=4%&
ziO+Q5V#rg|<%s}K2KX$%(SQyuc$%0~vjRLr1y2+f2Ln78;Q0Xi0_+d4hb_%&dr8$z
z=}*5<-<&SAw5O)a3*`8F1(jz=-V7-=L&~04U!=s&ke33y9N-XzaE8pAA%{tX8OcKQ
zQ!|7^rdI;I8YF8qZ_SYPW-``#Bfy)~)&NHWycJ+?zWPppcLTgl^*^SbTAMySL*64A
zruIIS@sxVSOqso1<NSs2hXFn!F=xsrv^g_n<oa~eneuUv%$hmI;9Bda0q@31EYIfw
zjs^IM2ATFGz?T8O4{(A+4sblcHxy2CVO8qu0O8C;L1?eW%#_tL<vW_A%c*6TQ|#0@
zp*R`f6!8ymmhu_k2MX9u?Z8Z-DE?hWyKkm&d6wGuBL(BBWLa|6ro1CF<rf<N0Dsf+
z1o$n$?*aY_a6Z5vtZk;S@^dsAWwk$pWZ+HUidj-|Rx)nCKq4>AyGUd5g2rh`-Yk(>
z@^64kl;IFph8R9eva{qrb^#=KzDngP7A61(>b-4^HIpohXC*8v5#s6)dqV6DaZQM8
zLyQkGA;fhdt`AWVqA<h_A#My&H$=S<2vIUb#SoQ3+!Ufzh%zC{hRO0^uTAOFA&(v>
zi?@`?owKA|i1HySgo$B%`a|{ESxGO<xCXZ&LR1M+Jwy!xrgq|Ds%nVeSEb&YCDlTl
zo+T89>(H(yzcpKGhqyFLYK6(DfIyuPw5SX;2=zlW2yt_W79kpjXcVGZh*SuQ`pvVY
zaR?<ulMvl!OVcnJGW9H*A>6TUhHzdEF%HO^hv1S075~9~+TphfTZZ)hMSh4(h&wi=
zxgpXjgc@SYX?5&uVVF5vIF)D}V*LvmC$@vz<#8qdmJn@1^bF~wfwm#E5E7yjNwhKD
zE<{T;zkLYq0<e?n5Tau)hk8*Ig68qe^IEhfy<xU=4$(D4H{u_n3m?svS7ythlI_@^
zUfQm84|()hj?We@mG=no&opg}q4f^YC&Z8tLqqfp(J#b+5Ch2|N9!M=Y4<`JtLye^
zOj0p9v>rqrtxFFM@z-oAHAff^qrik18DbR4HAmXbkwJ50L<q)Qy%`;1OqiJNaUsUC
zIdg>TTFxBd{srMHzf_mZk%=KDg;*Ejwh)s;ObIbJ#JmtwLre=1ga||EA&d|<s|vAW
zj+h~=5bw{CXXi+UOYsHyXXi+kEDqtZhSn+#OYyl<b#5}b=B}JiF*~mkh(g36W`>wW
zu7zkmS7wk_a}yKFNjfL&oTrof94F5XF(*t`MGE$66n@6@Lo5ifBE-rN3q$y0GfOE0
zAr^&LOq|vHB}8?uFrQ)UTw(9FJjA_olNB@OubwNbLaYvXauaJq9GaW#yu4bF&*tze
z$L7kpxpLDySs!9UhzCPF6k;O>{~>mTxI4t{Av=0(XY(mbImEV7z(SmOuV7DUZCi-9
zT&?~*xibfF1Cis0$xDlNhWOgmUS6NRi$XO|2oIbmOx{Dps4}0czm{xwUx@odJP=}c
zh#sv~nyfOJd=BB#`!p`8ne!yFw1-1H67td;JQL#45RdV@`?aSiX=;8mM|(WvkONQV
zlHcU#bK*b=UobD}T(-@Vr{*Ox|7?ioLcBIl2JF=qUe=zc>K#+5Q2Rpc5Ak`(Gbwl>
z!~rT=h&MwV4Dlk%hj^W|3UN5ZtCTu6VV=Ac;$^DsM;fifRXep;LU0YAfn%PM^QG>5
zX+2*mj?sG07f$Qm3h{P`k3)PC;++uhhWH@Fkr3}u*yam$<oyuy=O?__K3{e?8X57-
zeEE=N=F3MEl9Afk`9iq(0-?qDG{k2ij?(xn5Uz!CO4$3o0>WQ}_%g)V5I=_aD#US;
zJ;XO5u1aY;FQ?Q6LN)KUAnClm4e?!w?@2&fst`Yrl?!-F2{tT{Q#p9Xf@Fc{*HYS}
z3*-z*u^?I3r7UsK{!@sbLtGKz$_T%N_%+1E5PygGjjSYbLYxorM~FYEFP?TT#J3BC
z<4<Y<;}Q##G5>`SH5VqG7fnj5g~Irs5dVg_Oude9DNN=vEw-fpqe!eukwNU=U+q!I
zosr{zsa)RSlH*koibuFE!u1h<{EDliWOw`82%JT3+mi0KP_Bu<88H{HI69rMP+l*i
z-4LN<l(7582xJ)pasU@bXua9Tm5xv*!oKO)KOJQwl#6&u6vJYak5D1PyAj@tP%%QK
z2u_4-gvt@BM7T9Vmk3oOREuzPgccF1N2n2@QN+7LQ8P-$<n<!dk5DT@ZI=H_trKyu
z3K^*pw$`S&#7DS6lyG_O!es2kX?{aiJ2x2%DG{1PXd0nel=S|bvVGB`aO*-zMc^1R
z={h5D1)dg?3e}u7w@5uhl14~J&?2;p&?<r&p>@R3Z?bKaA0ZQA#fR$Q4ykt+3IR@7
zW=_v5jCgObw25#_gp)b$&?az<*OnYvC>0j*bQpiMm*7wo;kol_M>gRHm8$w?=?v!}
z5`iP1P7yjsypTDs>)&nJ>7*9X)g0X-jEXQiLiY$gA`FZ$i0>|vo)LOS=))H;rh2i=
zBAK^H`ttP%1IU_^ss2&Y7eBU07}Nf5S(L2dFn@4_ArXd07(pII7#880*7^MC8;cTM
zU_Z`yWQ1?|;$o?`IO(kE+b|}=*ocF9Od(Ac^AH)vN0<<y*J63-KW$=!%?0YD2+KC7
zr!JOxi<7o*Su9f{Op9Pfup<8XA~78Xlbh3zE|$;Ex8*85VN5LK*x;4LVv|H=wQm-S
z8^MckPlS6T_z{8#Ya*<T5Jre1EQqi$LQIZF;41x`2s0wgj4(S&riA;>UHy20%2oYY
zIcop4Sgy&am6yoe2=gdoOJshOtni;`olnu~u|yU{SWL7dET<M|>JqYhflOQ?Tqj&g
zfzQwX-O^S>SQ%k8rF2{}`kK8&R^`6MsmIt8$vQ9x3F{)<Mj}MmLY8gU)<@V7VPk~t
zOJtv|ks6yKJkm7(cFNlld2dOwq<LbAY>jY7gdOBpgl!S;#!tpV>7{aciIiI^8_Q_h
ziJO*3jlL_w+!N|u8`F13*p-uB3UJS*GJYvfILdty?vL<tgjXUw5MeiEj30{dV8nkq
z;Hd~tM;vD0kqD1Rcp}21B-&r<V^pz)LV$akr!H%2mL@}sCrJuN<C-vGit95Go{hj+
z375e??Ul!+SE?1e<~<SiMtC8@0ir!l_C?qq;b<vs^*NQYM7zYT^MesyjQIab9Hwz7
zqj3gAesM?ar6^fC;9dzm0q!R9fxMcN|2HDM8G)OOuTf`b%Imq9yVwVo%3G}btwQ4S
zc7%5#e6p0Q<wZX)O~mZ|2p>ea5aD8kBN0A~@Lh!OBc7ed$7EB4FIhgqrxA{^z02gY
zoNOPB@Hxe4nv_^3o9|3UN3S1Ix#dLU*(-e&A%B@1rwCEPmkBrAxd8Z0l&r>lOAMFE
ztYvcK1#QbRIYE7=C6DlHgi{etNAyg?*$6+7)XT*AP^Id<woJZQChQAd+m=tKf*&bq
zhWr%aXKIj@Y<6(R<hKaFNBE1MpwT;`{t@9%685~xIUT$5XD?~z$cRhYKg)O*rIcDO
z4VNc7M}M<0sT8AGjDKlrB9x6$F2;WmE>o{#TpOcUj5+(YD`Q+0gIir!#EC}--6V>~
zC=r7*?t<k)d%_j7tK-Dagi6Zzx)|5TC>i6X7&pY|_K|jDoGi<eK13KXD2iP1<4SL-
z7^P$0&Zm`$(R+C!Gqi+LmdhV|G%kvkk5M5;tr)dqRE$w6M%5VA*e|@GRgO`GxGk5t
zbMoj=^u?ZJai06U)njmby=IIWaWX_<xUeC;IahO?7<FSbjL|4Yy%-e5`Y{^BiCrbk
z&CS|-HSUCR!K85vC70hM##76awUlL-G`f7yyM`WCsTg@NiegBN<}q%LQ5fTv7%gJ7
zjFBHB6C<5_y;Te~2A9VdZ%mV$?1kT2E_4EEO`7y5EQs;hrPQ~}ll3mj5;w}*kfbr%
z$LJ6znyazSE$McwVYxJ3pDwdPQY(ZbF3!9<#;CKjh|4>qWTzONWAq{c<HV`y))-w`
ze~d0M?=q5ZD`dh7=^mp;jGi$bTOrJxy+SswNa8nE$nh1@Cq~~G17i$|(Jw~-IGIBY
zi1F77!Ajw9z3xikVpN-zGB`%}E87iPDMMn=iR<?F3OFI<lFRTIBVtsajvCW3GRCNw
zT93UkM#mTvV`Yq0F~-Ii7sHPcP>Nzqh+)JqWB$bwlVVJbF)haAIO%<+P;9QqqaYD3
z*s1O7UZ}4WJqBkw)wiZ;X*o#ahNDH9B)dufrA2lwp0`q5^5UVQCs&FWW6R1!{@+}g
zY>R|3q8RgH%#RVrm`>q|F*nAH7~igxS(N<odH<}GnZ##5Whq%NnoS`uP`SWTdX>=f
zkco{}$$}UQV=RfWG{&MBi*pFmov%udLSno7wjv7iGIC^<ERV4w#>iE|Eft0k?FtH1
zdK9dVu_ngdG46@6HpaRbTVvc2<F**<W85BNGqK7h2yBS4k;*bf;#G-iY|050>Axih
z?An~}(kh?g`t+uBw>{dn7~5m)h;b*Wy-FTjC9kiNC1tPS#{EuK5@T1K4EX<9C7h;l
z!}R-AaxWz$#-o&q8286`AjU&69wzeZ({yK|UhgJHmgYT}i-`|6ow@b4skHV8b#Qeu
zMtVHP6EU8S@l1>-saBg32dbxHG+8Z#+pkVmCb@6*ER|wY`njAgH0)VOFTUqvQ0xip
zi?N@ajd3={3o#DRjKnw+<6w*zW4saL%@~Jb9FFm7jNz;0r5G>A$xQZ@7*q=G6ceT&
zTJ`@&({(^eQFL9Dl_Xb?C^@HPdxo&g4m-f0OeslGP;wLzRKSGFc29Rt=K)c2&RKHK
zNerN3&X@y&AP5QuMBu+&{@*!$>Qq-(c=g_Wx2mgZdKM+QXMMB?Zxn^c9ak2__zK1~
z*l{n4V?}to2=B0oHU$%36z@_+i<6f|B;I2^GxB+;@_lmP>DapmlPg{n9~I$as<#N=
z)0>L$X%W6C!k0z(jN-j0K4;}cAR#YWTKMCO;Yk3l9q~Q-t0G)^QGCr#Nz<^8-x81o
z1>7p-vIBiNJh@baAB%8`&Q*jHWTzsWB%!q_2+431=L|`%=<=58<z5(T;KJJJBCH*p
ztUOtqEy6hxvWn6wex>WNIg)k}E)?OnBK$#DrE#hD$$~3Om#F80f{R7ri!j$AIRWT0
zS^QOmznNYXPFaUf7DbZ<M_x`NPmf9dL%>YW=RD*p$-f9Uswl2v=45f5{I7;*FSkw(
z;m61gDn^>oq2-e~DsECyLPbdxoJeyn%0zCabGMggqPR0lTa;08vx-|)R8a9|K|xs+
zx2Pzmf?G~dL)PU!+O==u<yE{rS^PLzR2mW9R#Z_*MKu-GRa90{MFn?wZ&O1F|Ct;v
z(^cg=!W6-Eex`HPw}uLy8mcJ;<I6s$sia4~^3+jLSH(mX&#S1XqP~j$Dh8-%prWCQ
zPAXC=8mVZkqJ@f<Dw?Qhsv=iKa~1DS$<Lb-PC}Zg;M&5DuVU;PIV4Yoq9UR~izK5e
z>deUJ8r_{!#Ly{%4%kXXYZXZq9o6vAUB1enR3zK0;jxW2D!Ea_WLO}>xQeziQYgcO
z4BN?2og)4lxI3trIz_CXB6#ZQb`^I}EeDf_rijm`geQ*vm?DIVJ5}7R;vO}e;N3-I
zspvwrPZiul?5c)?HRog9RP1OQ<NSd;P~EB3e<G`9=l4)?uZmtO?pJXi^)OZRRPn&n
zaLKX#RKYzj9vI+u_5&*VsOYPrH-+Ku_SodusiGfE`C*K6U@nAarwVTV4pcEn#WO0N
zCI71!qT&%1kE$4|@{h(aLdC;sc>d%;H9SW;T*Z>9g0sPjOOp@L+~39-8A&0h3eM+8
zso}Or^{-=m=lyqD{$naet9VMq(<;WO7)!jVctQmaesH+wViZHpW}l>GpAtVz4bOib
zn<~ap`BV8(6!FNJ7~knQEq{(ptFTo#DvBtK3X@8sDOIFZOrD*utKhjK^7F9@@ru)g
zp@wGwnoSd2jO7%UBb`OeOcV61!Aw-)(aKb&JQmB{d0!2Was{mO=h!pT#Mt{I6Nsop
z0ncwUoJ0VtWZ>`>;6*m4Vugy8DyC4YD(0z}Pn@eDAI_lbshF;!=aM9kt1+CVVz$b~
z_OQ!z-WR5Y7Z<GN()v>b*F9EE6AM%<q*hfdRk29LVnXq!7(v37sE+gVxun1Y3CmRM
zn<hS<#&2CFxo){!dLkpMRIH}(DmJTlNyQo!>j`_h)t=;)hZ1YmaK&$(iu2P1Cw^RO
zDtk4_S?)$Pd=)J<UDTg0wy4;uVz-JtDhj5HZ8W8dooaZnYCB;zU5uG7yy>CL++E#8
zkFW$IdsY5YNz9!tHcjUzH3}F%pyHs4Uo@Q6a7e|=DiRvnX*jIn6?R|66-uSzHL{0_
z?^V36;)sfmReYl2sERkpBr4t^+YmFSxUIlRyWpC6$KA<&f5eWd$Y~pUZMt|@#d|6~
zWT|oDeKkDV@qr4fZ2=d$&rBD*<!k9j1+kB0BJD-?{#3<hDn2LU%@EwlI!?Oi9sf$j
z*DAh{ao&EZf^R*Hd=oN*$c%}8D<APFW8sW&<NF5{KeBf!&Z;<};wKe9Q)5Nq$h>^+
z2%jWRK9xL0#!HKPXNXZV!ed~kRh*#*os1RVljNS%Ig&q>rs5BpL&XIapCK+%8<ucp
zh~HHFPH!5KSU5v)Go8~;o@Dr7hKP<x{Hfw^!fb!?FV-+l@O7KZx%9`&YWUjw{ZFxf
z=`Sj7(@;&rH5J#%AsWhRD5l{CEj*}MO2ds>IBUI0LkSrvt|3RmCNp|^hG0ml`DJ1b
z!;%^j3dh-eE_s#Kz?J7RGUQkT4Yz1miH=n?l+#dNLnRHBwQx0qyH2-isGx<@Ki=|8
zenkyT<Sj$~F5sTrf*WUsr+TVt;j0AK#Hwqkp&?hpGc!d^4Yf2Znv&m0Lv0OpWW2t{
zzf=%)HB^}?INUR=r-l9H{vdNUka-$v=zS{2+r}E2Xvmu>nrdjKq0`K8jhdOc)iQ9V
zXwF9(6b%s#v3ZFC4N;BXF-E?IHX45$n{26}wFa&UFy2b0uoU+rUYIF(l6lok!3tv<
z_RSO@&lGVDZDkW2g-_2Eg&G*SX_jcOp@W7OHB8o!WH&X8((s6e+cn&w;XVyLSxQ4n
zLsy!Bded;HhF-HoXD!?ltTjvA#ioZBWJf34&l00&i7qtai3B73wL*7|TWRQ_f$_Vg
z9x6@Czn3O>DB9qLD33&Xv$z%^dTF>{!ypZVH9SD&Xy~W$|M>V(3(-eIUoHGW3gbIx
z33m3~S%Pg1&~R#&7)T+X4A10TpCx!ZM8i-GBQ);WVVH&oH9SNG&K8?Lj4{J-4Mt%B
zGgqE1xYfedLS7@O<Y&X5kZ{|b*&fyK7_q0p*DzYc7#do`vl_-~cwEEN?DFp96I6Sf
zf~N?BcmX3%YT>bSMtBZ^8*Ss*mu!mLd~E1B4ddCU29w&>plaYdoldNB3s^&1!(Fol
zr}4by2*UWF*@6oW84Z>OTZ6+EXN!BxXoJcnS({6{R7yTSTP&L$j{b}X8o~`<nhzbb
ztX#uH4bN+sq@j4MfOh9X{ZsLRy|cr)ce^?H%*>oqG)yJeX?R(~G!4@=tk&?7h8Y@W
zYFJ2!YM7;k$CGAjn4^IdI&OOYT$#cVe?A>{ZvH%JO};KIknY2ET28Sp=M^lb2WeQw
zL=9Xev*zY=^KQ9@74$(3t2A(8!wDPTdC9<^&K5Psgu6VuD<;=ySj(pxc4}Bhm1@|c
zVXKA>8aC49HEgCwKbhoIlgmEbxn|Qm5JjHkq;4DO`j(E{=^(?BXJ-qJ9ZcuT{w@u>
zHSDDe5Qk=TkA~w5liWw<5-68pxf;W*+x;32XyMH8AlYV);4ww2nrmo>HN2wX6Ahng
zcvZt|8s4V{G`z0ih=#W`u7BdFhBxT=bHtlc8{FjLdjX5{H&ExVCEwQYj)r$Nyr+Si
zn@s1SL54i{l9(grO$!hFd`Jn0h_*k+J|=ADh>vLEIf4<s`q^{DXBs}&@PmdQDY=F(
zG<>b$8x3D-;W)^d0~gcg&k<kIB@ZQe&huM#gfO@s`JSj7D*A6rW|!W$b&lXc8n$&p
z!%rH1)^J(_MLkImqWp8hy*VC(`DTt_{EW0(`MIKdVF6DN{W(XR)9|b8otwsa4Hrlw
zX%wdM8;Oo&m`2SsE^4@>;X0{1jXyN}se#J8qTw$Me{0~+!Pq*l%NqWX7vmhk8FFy{
zmu8jqUz1j#3vgkak8Vig#xyFVQ8A6;Y2>6)GL2Gc+>{1qT+QZ+5@~RympS=@#;~+Z
zXXNzQWSMkGxx8*pqih=djTmHjiww)ju)GZU=+-onbHm?}Rg$Hurg2*u+(xV{Z>z|#
z_gvAndCC8ptCmLfG>ARUu^HB)7-_ElK}n-d8g<kB%_f@2QuWfPpGJc;Xa!oCvk{8a
zFby948ar1sN{6(`NYgZ$rIDLPb6INaUom#jnj1Pk$5VEPr6OrW)5w<@TBI>+u4tJ?
zD;c3XY?v!rr@^;EzPK?nvCXhe8nHAA(uk+|{Vu^Bb|!K??eJWYNTXdEgVPw2M*B26
zq;X#wJ*kH@I;PPrjqYjOp2i(%h&1kGVm!t<XQwn$X>e-s#awY$^O8)tD~-<Sa8t4i
zd;MkX{M_*6l*@5l(;z`HoyQOEPUD_5{|_A`+a6Txw0v%7m!2p1#?k$~1n0?gy<TbD
z&kSkoZBy_-8okr#n+^{iaG2<m<~K=__2-2Y9d>G{@Rt{7w*E51fHVfm2s00o5soQC
z(-=mn(s-6;N@I8$qth6Z#zSe0NQd0}2*o%PdpI3>{irlJ;U6hOHo-%@Y=s>1s8sc1
zGUQ%A_io0f@kAO=QmgaC<1)R1Qt;<J#h+r|r;4X#ZD&S`aq^a}^q41}OJjT*W*QkO
zTTvQX8tF7tdCPYYzUXl`R;Q5jgdsJ_ojWet@bsybhMk6!#?*O2n-?Bn=F2{L>A`);
zv3rwV8h#o9p_Rs@G+s!9ODhwI!|sWRX>h@c`hQ-E^zbj?Svc}PkG;K^#$;l0tROc|
zNrx}RT&P?(PfSl^2J3O~f`gd^RT`x;D3if#B8S>DFvh^#H0Duw9lDPBX)ItpIvVI$
zn8u<szDeWTG#00^B#lF9yqw0;G?t~YA&re`EKg%a8tc-STRpKdjqT?PR;96;UARGc
z>2&Vv^TbP(f1X%Fm+YE|mr1NmgXz4k%@ga%F!RNbCJEkdN@H^xJJZ;e#+Ed;vZ^$8
zq_K^@FkiSA3W{eVjC7eVSP%1edNZM(NbF8y522ODzBF1~D;y9{^@LKTZSs~f%KkKF
zHi{mU%^i^8(S~8c;q%4eG+s&Ly)@oW<5m9nH;uQ_IF`oiX&jL`C(Rc}(|99|H|6by
zdXeGXqbytgRI>OZg@flt-cI8kYV25v*UuL&n=fiNj=oDncaQFyFBpD69-s-*_(B%{
zD2-3j_%w}=dCAPIiq~h9@XPq;X;9iW6C>v$(az@!zf7aYxja7onhvPvd?jo6`9i_w
zuAu<mrSU!4K*x<bejwD-xI|i}hST_o-jv1}s;+v;lWF`ct2GKzr_x~fL#@ypXU|7|
zN#iWpK8*`>nezqb()cxv5(@;Mo|`Wi8Q(1$t)cuz%*+?RlK>Zp*aC6i0&$T{vOtVk
zApT6_uQdKi<4PKT%WU(P<g@tYG$t$%%NB^UrIk9v+Wnix^oNqyr2JRYI4GOAo<=bp
zf1J--wLSj1OewA-M@M-bx9Ye_M+qIJb(GOTotM-x<WRg$wa{v%^bj_0)QkMKK-{bY
zI&RTXRwh<lDC#||l#_Ah`SSMyhI3EmRnSpUM=c$-byU((Sw}S;)pb;nIjidYGqteJ
zmJ7qa-yTn`DV``(O{t-yrjFr}P}{t^FBC79Q<ij1)zL$R)YC&Fj$A0}>S0L35%$Mk
zi8s{INJmE<x9e!Eqlu1~jshJ`bu`n_Qb#KtxjNDdc|Hm)bTrqIr$b?QF)yNH=0b67
zVW`7fZwbxxO+3Z0znPQLb6V@jr|^xGHuTLU`D4x&eDQeU^r6Mu*NaqX6pia>t0SqS
z%}AwC$F_wcp`#szsiquTDBA1jpriAl_>O9c-A5BUt`@Qj{U$^R;4=%w9XdMcJe`F>
zI#N1>j-EPt>9|wJT{^ny=+3fi`k_#yE>c$n<e0)#R~-y*TqN$+`B_EWtMfm63wy9H
zi^S)bL+Fla8og(ccyy7tPY1)p<CFL6$Se|lb@bEmfR5gJh@}hnrTWNf?`!n`+U_rJ
z2gvZH;R^kiwGAc=*rJZHI)>^P#^$Je9S_QE!(}*cQE0@6bd1pPX1T<bUGXdw;_y`W
z=qSpd<1roUA66dG@%(+EZnw$&jEvUtj&$wEbv&VCoQ`L7JSppZO2^YWz8qV~Y_#?J
zi^N%3>RBDn=_t~n>bQBaSU$8}lf`1Zjx7h{yZFu7#X^(C2P_u6^u@x^Ve0r@$3-eZ
zheZi>yrsj|;pkYVW4R7jho@tfj@deV9f6J)bxhWg)iHs<)A53=b0X!Jk=cvG{tkRI
zbd4SpBX=~3@+$jPe2R{#I{yxm|3OelN7&FUx@EDLCX3usQ<*`e$#|pT%6*R%?l~Ws
zqhl_4UdJLG#}<ouIu^(b^LaZdLc36bY=UT6EYn-Rl~_VsNY7nLye$%1$ppg{I#%k~
zrDL~_RXSGFe|2nR5glu&c^&jz*3+SyvR21B9Rq$&{=8W9T$E3!tiB<}N1JqPW`#Po
zQ<IdxeAu<EvQc)q)Dm&oOYV@jJ7xI$uLa|)gn8Z^UARZbULA*ZyrN^Dj{Q0g=s2jO
zN9$;VC4#QaZ1mGZvf#_?a`nXKNs&+U!mhol<24;eb^M}4U)OO&<~emf<PbVtLKc66
zm5)y{W#AHVOvl?gPU<*C<mmi_KE5DGbiAkIeI1|Z_*BOSIzH6#5xGLv#^#=0654Be
z?UFCZ$mS-YPkknzel9~QWc3npoY+_*PAm~$>G)d5PZCrlnQwG_r{jAahb|R<tK&Mw
zxK>D(_(8`Bsy!0@kwnMw@wYsNtohk^s{T?jre5M_9jA4i)A6g0!fa&H#k@1@sg5h%
zqOYpSzKiqElB4E@Mb48^%P1F^e`lO_DLEnen~d|89CeALO&&AQ%D|sG{vx#+sAS-8
z9hY^KG*HUGKde?qF#|Uk_*Zu7s*Y=Py&7R>ugm(|Ee-X+hT7kdxY0my12-8cVIaRS
zMQr34;JCo6&r<Q>uc6;vZy1&>ZJ>;Sat6v9xY@wdO9c$vVxX)6K5hSegj~`6TH%*9
z!Xnd_idzj-FtDO_Vq5p<*|N&|rJ}|si8q&u$_A<!XkwtL!IPX}*;)o_8@SCtH3MJI
zjZ`;K!$3{>=)_X->V2t^ezN?9kkjfIsB56Ufd&SO{Z>#<=DD&|P#AWnp%HQ*vo$vG
ze5phu1LSi?o*b@JTqc?s$Tg5>Kw+tRB{|_~E{m6I5+X2SfV4?Gw=nq6;IXI-m1Uu#
zdMp#IsT>3M8+gD#8v`)|!oZyd3Jk;zv@_6NR@K%(!T={fELCV=#4<tf>#~v#29gFk
z8o1rSt%u^w5Nhmn?i~giYsr)>&PXSD%W1~!Wudz6GSJz;JqCIh=whHNd-MuVtKy&B
zXgA6r$EiKb1aI$_j|lQFmx+4~+-IPdf&X}eAna*i*$oOWYKbE(!`=q^7#L>YK?8ja
z^fNHXz+eOYiKqslU;_<MZv$j_eVN!ZCRA+q?$L$EbA}igYJ}*$ZF#64LU*`<hYXA|
z@CbWND;VL3GjVbLNMd!la7Tq@d9jj5nL+yXe`<M*7B5QPvs{cd@VJ49iKvMu*r<UI
z41R(VPZ4PbW*eAeV4Q(xXjuc33_NS#IRlOX*T8rKMF!FabOWjZ&A^)F;>dFG@U_Cn
zq=e3LVHhy!AS=WrH78@hA_yBrZC3kJh$~KL&n_1=n}<m74EP4J1|}E?sDCwCcZI05
zCqC-#C=ou9TACZ`haV0vTp<XU7Yw{;V5U^aWCK$SOeY3bh!@W1(Hv8y73j;;sMtNB
zQ_nE)*oshZPdAFrlBELHe>gtZz&r!H4eT*6-@pO`YYnV3u+YFFn$N&;0=P+Zv4qM}
zrmPT447^n?1RF8HaD{=D#4R%zIJiQrq8^GTI3J)Y_>{AbizAf*UnkZW;QUSP8eMN-
zgMn=Zwj0=JV3UEZvhvL`++tua6dIRCXK|7PL(<pl^&>kB>@={;z<(3t&sT`e<rA!*
z8TK03XW)o|qXzaHIAGwgfmaOB-3}T!zd{_M<6J4hoG;7UweeK>mEu(cuNipV;1nol
z(Y#36%O&0}NYM*UPKwZ*-Z1c{fp-kN%l;B$b;2%h&x;;2FfgaX+cIQ?)5WHG4(A*1
z8EC#zyia8wO>ki1=>L&{kI7vo&nn{+1D_iBm8~22j9zcxM*}Ae95?U<(P-csHmBx%
zX@K+RuPD+=G33k8VW&(8?f$KS?+kozfDKh?5qkFzgv3fgIjJ0a)=vgb8vLVPoTgiu
zIV^IDri`aJX^S>e&KUTGWr=~=IoirlW4t&mKSy4@khkRa6gz%_1|q+ixWVK%#Bh=R
zPMjE+wNhLn^Beffz#p{N$`F=+_DWHbzop48OQ|M~EhMqW8%6&$aMb|Kciq4>T48J<
z=S~cHaqJ^epKB4l(L`|*H=8JHBFDtGYlSzNC}HBQUGY)X6D3WQGQ%OMj0w&|7%6RH
zU_sa-L*AZyh|{^8XQgIff~<9mi8ogYMs77x!9-&dO-xiYQOQIN6E)3nl&NguHWSs%
zko>EdsA^&&J!`l^!5+OmRb947{hVAWhBlAZGEv(^0}~|7rTjlP6Ln40Goc)cm+TaK
zzf|IiRAYS;Tb_^T=L;IjoQ-72B7YQ*HZ}1_<EUby#VXOv<bifnUL~5F$TQ^tF+8*y
ztD5n9A#3QmO0+Q1(!_ETD@?R9(b~jQCZ49`Cfb->=R^+^F%tzQQYM6nxQVtVk|y?4
zR0?I-j;)(Wn0T?S!o=Qx=XH?jBUTCCKAIoGsiTS8P26E3Qdik^p^)i}bduQ^xzog5
zCc4Sn&L$RgN!>9o(#1qt)-Y$4=xSnQo3I`h>@Kt2ZGtu5k{`d9#xn7siQy)Cn&?H7
znHXf^eiILv_@!B_pNZZkHm%~Re)Odb^CCy`;{)p|Cp)CxY#qP3eWbsM0kY1ctAwbl
ze03>rFy)*Zxw&0rsEHwTqRuI{d*h#>*uzY?zZQ-=pM1!~2oqyXJZ|D)ibr`&JZ55)
ziEma3D&Y}X=O3~Qdmm^w+Qb+W4Ofduy--WvKG5#F*735d#j9=NPnZbiMV=(05|M@J
zoW$zTQ^uKi#>7+;(@Z>T;yJc!!ZR`6M3D)@glR%Gp;1dFbQ5fX3hBE#)cF&#hRUT9
z!D^l^gJr^z!q_H$T@v!!=EfnbFup3CQ@>5zrvNmciS=#bSrZeamR=xGO+0U6k}ONL
zu;zub{@t?v59Su9GAGMYQ%uY&rLZ{jOgAxuplzlsH8In~EEDr-Q}#~Q)2W;?SNg&n
z_GMYY;(zjbR!z*4DW5%;v(N<9!fUaNEHY8LONzHk{+Iq{m(()4On&^m)gpQ#zS6`h
z6Q7y*+{9{DV&Y{Jhh;-+Ol+o`m{@CK9fdTpfiN)f?`m;!wfIj18%_MxI>c4;a>{#m
zrM8k2s7Vw1OkB#3Z#S{i#4dXDOJWD1l^<s*c5pZAmjW{$eJM0nx0l4NYO(z$4wyJd
zO5u+#%PAvX5_(PLki-vRwkbdUiiuar7$h7MuhBzuW3>KJ6R%5wkI0a9re6w;_=bu4
z?ILqt630xuZStog_`t+FChqMSc~9ot@RE3!2JM<)X0aqe0X{VG5u1}wKc-qLg>Ngb
zy%cu#sgla4ESrcNlwdw?;tTeXTw&r%6JMD)Y2uWLuZdn0-<$Y>#h=Uh*5v7zV&72`
z>3t`pU~KM3_M&zCCle<K_;!(XJ=@(X$0^$7XA`GQoTFgU>CVsxO`J7x<t1@*oA?9w
zg)cSzODc50^Cm9HR(_|ziO}nRBa5yP1Eqs7!$sa!NYHctq?t@yHE~UL?Qav8P5eV9
zZx{JS&$&V|UJ^v<ztWFx%ne`enynGnO%%(ZL<S`@xFLfZGpLzO=44P@Mp%T|I<66Y
z)`Z%=DHHPZSQ%%>*?K9N@?&k~<_yYa(AEw!AcI>nIG4e%8I;SQd<I$u=?reoph5<n
zGDu}mF@s7O)Xkt?29-0YBAcs`LDfvinXI{*jNF!iC!4D-Z|N6p+ePR#H8ZG{;a@JI
zj!a*&MyyHTNFu_r^)qOYK`euU3>s$8D1*EVlne%+FKnDa(+rwr&_s&eI-Bg2Oy$ZN
zSg?5}G(Bx}>95d>BN;?9XqiDPnIUm0uSEv`(RIh$l-3#KXV4~tU9?4AW%9l4$V=q*
zch?9y1&hZsD9j*1on%6@{=7zzdB}?GGU$*&GK2QA+EQyp^mLMp+A)Jn)x_;muoj(D
zjNic;+D8}>8GfP@!!md<gS#^5oI%eFdS&?g1$52e?hNjs9@dI(8Lm;}&@ODfdj>Px
z#53Cqd&mlj&wFX*dBrK}uay$_WiWYJ0nK`U1`lK~FoQuE^v;A}?w3J-DOjHj`u<Nd
zv9%!#NCE?xr)`RCLsuP~fvBep$zZ5#;;tU;*e=b{aZ>W0wPJV%4`uLp22W6F89Xej
zdMp!i_{a<%$>7lpHYFmXGT7QMq>I0==TZ41)(Rqdw9GsvgRz;=rkzj3=|?%)<dYdZ
zmBF(a{`?A~5|O7f7)M;K71v6I-u+A_98=1a3*+NuUl>s{D9T`ahtwQ0RflkdqLb<w
z7;HC#Z5fzUJ6GK^n3I8(ft|sm3|`2<$-tFjOrV~xmhdv6F9))xKHcP(LTZva$w~lF
zm<bb76Em2;Ry?1<7m^2Fq>?k3lEG9d49&sOhoj^)X3Jo16J=%wGh`FjI;2*7m!xcO
zmrpQ#RtEpnRv4L^!MqHAS%y^^%$GSAWw4k=&n6dSuu!J3!gXr}4Y4GHr5P-f64Hg2
zXRt!XFWwR=gtnX1Hbquk&BP2gWUw)VH5t6VR;-hDTuV)^5=0|2ug~DCwc^rRL2BJZ
z$LXBfoWT|%xlNp;#0;cvhRU@P+cVg~-evH420N*W3|`6L)eLr1whZ=XaDYD5GeY?7
z<?hBhu}>PEW$DNV3FE4XLm9kG{U;)kQi*!&LYUD_4wEIyDTV9AYm|_h&)}^LX0?kP
z$>6B$H64UGA6O^eAeO2o{+lcv%ix_1-X)&vDsRhd8`?$auq0l#_?}FEKZ6hCBc^;P
zBOhh(@&8gjk&#bjIC`BpPE%&^V+JQO_>wvyz%uxj<R)ipUrRRNT*6%^zLQ11&)^5L
zoLcO+HgOX5e>5_Go%kt(lQP4Z3{GY6Gr2KHG8?bcQu&Nfo}KH&FEZO%DJoM~&-n~4
z5HJ>ISokf2-!r(~!W|YaW^jp|X`z;dKQj0;gVGktSokZ0zscklZnSWjK+51+2G>bJ
z8T^~U*>&P-2DincAFdPQjuv#;77pt-trzQFFDPb()E!?hYOfcu*3se?ax9dvP|`w=
z_2S>UO3tqMO%}$?O_Zz|j+n<PDWxoQ+Z8`JO!=)@^kxfXEmW{j(E=>oVxgRc^0LlR
z>&4!#spXwgw_5n@wSxQWC|*4IP-CU&Y+fY`l`T}4*{WEmYT-5u)hu*Rh4#IpMf6nv
zFlVin(b9hvzEva9Jf}kq3k)e_Z3}fQL@l(iP}f2|3(YL#TBvWKfrZ8vnppgwDIT;=
z-q;|~$O60EdwbkoFLqT|n(|S*<X$ZtXL&6Xspb~)ENnVgs90#zKzX6IGH<=OoJdA2
zJY6@!YhH~+OAD<m6k14FXl)^%IW5F2Y+WzJ?)amPqvwB3u82hoEW|Cem9;gkqx@1c
zab`rw6^XNj?JTsn_zO+MT1NZSNgP`*E)7vS$nLXjM+^FE1=Hq4jB|ONETk+vYT+>p
z!or;vdRypY;VuiEE!;z+Sp30kP8SPZX$1=pN>g^X&~lh^w}mr9l?GLm<E^7Voz7d^
zE5)|%wb0W-FDdPPQnue-E6Cd&zu&?G7JghW?xG!sBzH6oMeS>$pM_zp)<S;^11t=(
zFxbLC3va$!(Em2&@Acx9GYK?NhFBPCp|o7H{q|@9ZQAF~)T7TQhg*2a!UziwQ`LP7
zwm+Zjex#u41~JmYC<~8Rc<M}E`$Vc<odm-%t)dS;kb1m|GMWIhU|29MjJ5E%g=g7K
z3r|>h(gGnjP73f8jUsQoR7%+(244(Ulb*4__+1+WfjZtok%ct%X+gE1S@<~?9kD^Y
z)F%2;orK<4xn*eB%@@B*zVm!?;J3+)1<S$&3llBa7994pMKrMBTJR`L<ESrF*o#>Y
zh6NAarc6?zSqn9{#jOp3;qw+IS(t2LiiNKqR9>)f;m^VssevZS^7@gNN+jlQ5L1a#
z={wUb{5d4PeS>H`R4LOeI@7`|n#{s4gsX))77kiCWMQs_c@{R(SQh46SYTnLg;f?7
zT3BRZnT6#R7Sl|%lqD9HT0AhHEUcM$w^cOtcVYR<9p2p_RuEc83UW4z?<*;9S66=C
zAXYQQ!deUKBuLoJHByr`3Zk#qO{^!D9#l54>28U|JLAL>JIhj=Eo`x{!@^DrH8zT^
z7SDEKJKg+fL5XPiuC%_U(v-WU8^tr*<GU>Ewy?*-7tN#PhsO6>*k@tCg#$F@FeRsM
zWN|9RI>`xR8Y+K1pR86}dD+5Y3!hl{)WRzkUbXPHg?HE^3$I&vgGRS7vt{&%^pvC0
zBEK9i=)O?|RYM8iB8|LJaEv)?DfIUrt1Dxp(RVGpXW;`nzAVMQyl-*ILMi>A^6*BX
z=SM%XK==IELS|z)?wqQhpyPjL;d2Y$Tlm4kadyGNHx|C7k3^$iTKI~_Wt~Hn&b1VN
zyq~3>xlKVLRlKP}Utqt!BZIYxF088jXyJr~Qv@EJtGe=&g_HE(Itj*~Es>y`96l26
zWz-y|oF<PwsGMvN?R2!@tc7!=P#cwO{A%I6h3giI*|<RRCuT_R7JeuBlk*9H28pi@
z7iT4;@k_Fg4_8-)smZw;#or`<3;$ZUDsf9d{$t^a>;;*JN}x+#BUX3E<IR*Ub(D3L
zm788IxWUGaHg2|2)<$s~IW|h#C}ra&8zpRfHcTPT*-aXqPDBPSZG(2F0A*~<{i~3@
zBcr}kTY-(|)MPmu<>l+ZEjGvr-5V>94h;v9TW$VbHOL+#i;_>3O-w1CsBEK(jm9>b
z*r;mbHXC(p)Rkqc*{E)#hK<#)6%fNUZPc>yK$Wnb%^Str8%1q9>;<pyH;Q^T>f2~&
zqmfLcA+B!Z@5I4y-Pz=y)fBp0pRx&JvZ;+`Hd@*IXDH;_Xl^5FBe+t6ddRb(*ofF*
zoLo0~Tf9?c<#MOgf}u(a8!c_H(acb#P^4(?d>d_S6v+O@Y%q^ql&rW(kXS<9+KAUy
z@-_*QPoa&3jdnKL+xW)Dw>CQ1NZOcgV}^~6Hg31^sEx;L++m}Wjea)z+eq0EHtw;}
z!^WL9?y}L<MmHOsZFI3iT+Qj8;vjNpd%W`|aYL&p2dwU_u(EPD75G;ndphv<Li*Re
zHtw@=KUHUgd3sXYLzQ0C^MlH+2GIremBfyCZyTdFi9R;^+TdXK&d<q?jiW@);pWj{
zR|^N&7-(a-jfZRuvN71kP@8`=4}y(UGejDT^vFS$2w}Ac4i`LVqo`SwRJqVej<7M3
z_1k#Y%z4;G(`L~j^%ZYZ=y#9UxVySSM9~FC+Zbc>clvN_jJ5GN6>DR>jVEk8Y2#@d
z<7_--V`6>ofrh}FGEAAjN&J`_ea6PK#7RMP^Coe;vN9__^vxn0stv=2X+yJ-wlUyn
zfo_L`Z0by2r=4+5B$#buew4P($Sznm*b6G{TEl3%vf|qCY`kFOMH@a5Vq*eZr(MqE
zapps`X9?Zc3OI5-Z-Z8NIF*`Y163667qw}i9N8o$6N<D~CTA+UBgyKHW}$4;sEzd@
z3vqOwX=4_P+j!Z=Y#VcIY_hSLx}_m(thBMp#(bj7#u6J#Z7h_cE|QM$)h6-ooCs%1
zi;0{TQEGCTjpcU8mgP1JdfY8ll}nq%3M#f$l#$geOKj6~neAfU8XIeEeBY>m?#Ww@
zjHIUPzveyGK-pkpBdy#fN`Mh*mzqYm*w|`gmyO*vwh@izlG|<Ukg%WoYQe<A1rHBy
z_s#Xfoi+$LGQ%Dldu{BqvEN3oR#A#aqx-F+2W%XqO212T#Iddxel;ZCuT!e>D+Py1
z3pPHm`Ar7AYU4E<$LMZ0Ubk_?#+zgzBZoB~rA}^B-e7;5MSrZKaM0&SN|nAv!nxdm
zw@b)EHpuhulEGR>_cl=8v++JfZK{xCM>Y+|h>vW1Y~#3%FKm!DKOwwZL_d@9Pi06-
z|6J;sqdy;gY2z!(@M^)=q$w)4ag?(TPMPRO<ht*uL-L7()((E4W3qJzWgMKa@so`|
zZ2W2Cq>WQ#bsOhx{A}a2jk7k++2I&^#>Ovft4@OPjGSO_TF4$<XdN9?GaObfP#Z<b
z-)#JDqis==Q|^lrW@Vd3FUbfMLUgShqWop!Z_>Df;tnp`_{YXI8`o`IvGFhcaZco_
zjmdYW{y17dq9#6>LL?V+ptOi`9JxV8HWejb8m6$J90xZ!DB+-_gASVo9hq7sLO3Tc
z<$%-vd3p}xt+vH)c2L$q9S3zCz`-pJsyevMK{*HI9WMXoRB~{ug9;8RI$+lbDu#U$
zDH1a0&x}`gFmSV|!VF~2yePxoRh4QEYB;Frpt^&i&0#h|v6igi-Udo-2lV1=wUpcI
zM|%C5SI<Fx2TdI`bI`y6xv`;xMh*@RQAk8A+t|Un>Lr`7s<U~|{9ecz5p|yHpt*yn
zgBA`r=g*@C97HHTr%$oy!4^?=kh(G&L|XEw-ey7e=vXxzG-;812W=b-aWK^3Hvv%K
zpu2;+9mE~9b#Mp8b5Q6YLG3w6GO{Dy&Ov)Nu|fPdbUvp<zqm6+OukSj!I^(Y2e-3$
zGldst2q_1`!CekIJGhe_si*8L69R*i8BQR(IOxhARaUyuKrKU-W~bI}796QbLH9W5
z;h?vJJ`V16aG!(x@`?K$^mM`rYA+h4s&aU<*wrY?@q%%VTn{+>yWS*G)Ym~j2Losk
z2lP<lzrTZB^~0u_d60v_4*s1Jp$m`uE=f31|2H;{4s-Azb?ZQN__Y%}<X|jYaWKNc
z!ww#G@R);<4n{e+c%<MF2OPvNRaQQyN*gQV+eGQSH122zB;GMp-S34Q^hszJH;X46
zJn7&W2hTcq%E8kP#yKI$aEv2|&^qf|hW4dVo|Dy%cfh%2`zwVU8ko+3Ok=eU90#rg
z-GSl2bdaIdPUYFnqny3awOhPiU=g}o#0n*96A!N!aAwHRbKpDt_b5zYyWb@PCuB}e
z9iMuofD_J%L}Q)A^AeM+it3uuCR(CS;zb9OnbX4x4^tdWb?};l*BwlgIVsf=8JX_z
zn=qkA%=};aEE$<C!#OgXOJx4<>3kVk;9#MQERx~k|2^dj9;;gFU>Tcsu)@Jg2Rmsy
z2df;ccCf+0MrL*}x014!;Bj!IWps@L%G|1{vT0YGk;9!*>m3k&SFacHRdkbsZ4S0O
z*z917%*l7>t<)hO?TRxbGmwXyZ4o<Y-=+%rWVeGogsX!?MDH+VuY-LK_B(i|O6WCI
z^@p_*gwp{j_T#@LUUsnH<pO_h<W;uo;1w#WZlZdp6bXv*uoXh(h=Zf7(8bFx-f-|H
zJ;lWxF29_EV>G&pn_RrjCdj%Desb`xgZCVK>fkd6?>qRw!6#&c5z2?`_4r~R6AAs4
zkE8(q)Qwf>tCXl4E{QL{yWsY+%I6M_JNU-Iw+_B=(C(hpzh#uK9DGS&w}{O>SIDsJ
zw&d5;%x}pr>&4prntZO0@|}b4WriO}{taV4(nrcD*Sn<{f4g<;q=Qoq{&4W8gP$D?
zY7jf?;GBcg4$e6Eh1}IBmZ=@eP`+L4_U5r)9h@h}I{2N3g!?KNq}cD(ONjb0-X<Hz
zE|MzqW0zzX?idjI=9|r9e>wP@?K-$h{&(<?ES1_KD)tF8Tp=qqR<_2%R*v7STyt>U
zK`|E}j!@pMmbk&ijczD&aThn2Rc>n<`{VQQ&3e!PrDMHV2^S?@G;-0{MJX4hT~u;W
z*+m&<c2Uj+TPf=TE^cvgsebI2D}|Gku%U51QX~6^t(SLktBVRQSo1GEQx#=fKlW1=
zoQSc}DlV$JsO6$IGq|YcqPmM3F8;h2E;sQSxJ4Y=8m`zdb4?e^Y9{^=sX8v|x~MPf
zT+mOc=VI{qV$ATw2&G-aSOXUg`Lv(Xvr+8q-SImgNHuZM)J1C-`Lgw9E)*9L7r8E)
zyU24xPyDfNVt(CNx_*oZ+0Ntj#8{hHOBXF<k<a=nte-}2<$_RoxJj&yi<pbHE(&Gw
z0vB;N#Mq?@#m8+CU6vJ`s2xkVXy>AXi=>MK<(2j>GEyguZ)qOuC~Ll<zfz-ns%(=`
z8=a_67pe=*g>Z4FivcbMy12_lXBYRm=;@-1i>@y2c5#o3A$^o?F1pKl*oF3T#fgaO
z;o_OT%0GRS)my~9F8-^0(iYLn#r-b&y6ETP0ao5Jwy{;Lw~Xv<7z)tG4WYtFHkqnj
zH`brRE3r$B!$*UtWEYRRc#Q4380uoUi-#nNhDias^$M5o9+cWB+aNZ=#ltQ}x)|l+
zpYK9YQ66UCMa8bGAA7{bD=lK>TgFDa7~|qe7f;F7$I>Ed&f_iy^$qhsAuIo?aR{oX
zU5s<_tc&Md%!<UGaq;>VK@1b9@5EwGv(Tf*%ls6$$i)x+!@i_l=q?t!SmMHPVY+z1
z#f!9s3(G~|BJ09-;kdZcTk&1E(vC!$=VDdQc()cYLYJm5(K9532`(neCMLOfwSFj7
zwI<5*gf5R#$Xm)V*~Jw0#l>6~Q(a7RF_Qwj_;!n!F8eiuPus+L_ERGDW0U)Y+Gaho
z*}ER8f3^sQ^IXh#vB1Sb%F{2@Lt&$^EnbUU6g{2ug7p1|zK$)WQ@GgdVvCFAE>^f$
zOZi=_q}mApmmeAp;l0Ym#RjoZr7qSGx^-hydxy%QV%NLa;DYA+re&<sR<TjGxXHz_
zy0N^i;p~epw$;Tp7kganb+O&W4i~#z>~^t}wY7|$u9j#zKp`4$jmCcOt6cx9kWge>
z`&{gIagboHA3H$mkhM|rrqQr3Y@K~SOc>A^Jw!dc>f$xhh>JgHSr<oWK^H%=3nYIR
zAG`R(#hWe;^;O<>@eVyy8sZrJqEYOz<Atp7T^H}U_<*par)&*1`M%6^Xh7ImHu{l^
z2?X;1g%m^+f9m2h7hk#fny46{5d5FJI8OFx6#K&EA2DO-RzZ}qAQ^!EGOBLu8yDZZ
z_~z~u<KMdYjtH+CItatneH23Ogo~eCoOAK3%TIps3rodLyEr4oI3>fMS#z(HvsL`U
z+uE_SbnrgP0x2y=7P30UIPc<jX+a8kfsm`2_)V52#xBZq8kdd!>EbUJ6+Kk)@VAT0
zE=qVP>ER!l`MQf@9<DGhZ?C$zM*lrt*t2eg!wuC)_}$>)Mh`h2Zt_svLvCM%^tE%V
zAR)BruN;ZQ2y%{e)Icc@r9HsIEgt9;Wjx&Mp{y68i%6!?#|%^sH;qvP<vf)4urU(b
zeNVi3e(Y8cY^Z{V#~Q_W%VDC~sbpmjRXjBE(AYy&54U-!;i0A%QfM_V^nDIwthqY7
zRwqU{)$&l=Lp=}mnZHG>j)%G)r~x)jk6U$fs0|K<4On)7($E8k=J&S>##xqi@@W$f
zO+7SYA3Z2u=mI37n=?7}?oBoKaHvN#&kM&FMo#_Hfsqy-T6!4g;TaFDJhb*Okd=GL
z_t3^eXAfOiiIm}X4|jMd@DTUV)(b6O$UKtjPi+;9Bs{c}DeYy*lnyeI^w9BtDI>=h
z>*OKj;gpecCmWRxF1(QFsD}?nD0g|F_Be$&**eyhCh%~-hX*`#_i(p|9v<%XaE}L?
z?8uos=I>oi8Qn8=pNF381<7BETC7EkwqV$$O^lw~+e05JziF($hrVq3pAP-JkZ_oR
zAusBU*8pN;TSx_iJ$_IQBRo9pVW@{;9v-4aBtbpsfdeR2&1}P2)%~eLS)AP&>0y+I
zF&@Txc*Mh_)b;>nH1R;$`YCkM{N5q8GEQ%;yG=aq;Rz2<N*EmLm}<LC@M)iIf~a`P
z!_zW-th{}ehV~G6$a)x0sB9Iw2g5^=2bJcI#xxI{_0gRvRa$m!)ZHnQ3h9w@c<Y6e
zmW+qI3rWj^EhCJR8$H=dqY;Wv+cgQNE(8)`Kf%L94|6@t^YFZfNgk$onC{^P4=;L{
zDh)ST_Urj=Vv2`e0~J3%WG4#njR<*uhKHFR=16nUOk{vrd|%imDCBJEfQ<B3LO+`C
zVSyLU9F}@m=wXouvepu|UPoE%;Z3O)YKFI=TQ!a?^FRn~Z4-8OrH55CZh*c4R?|s6
z^!Cxm#~Kf7={r8^`B>*+y@y{tocFMS4(s6~s>{PB51ZMphl3urutE>JJnWY0-9~tO
z*de|C_g|9K&rbT(sU*etq*;uvy2r!FN+D+UdDzRVVeBD0e7axumlh<=9`f+AhhrYz
z_Hfw4D;{1aZs~p1lvic8*T@4cLQ<uE*q5Uo-tf@y*W_Ddv);;2+r*n5==HqFy39aU
zd`Ei9dmi4GhI^Mx)ji(ohu8-me#%XLNJ{LZFv8Xuu^Yuc@$jjK6MX97GYO0@J$&Wi
za}USKhua0QRByZZg58hB65GYs9=`GLormvb-@lbiMF-)aNmu3Efav{!2BO8c3z})A
zq;XE4PI~y+!)e*XDM>qbHH(!Wpq%mWi-)rkGt?M+(Z|U7zESL))BqzFJp9I9__)Q#
z?;b9CDCXk^AD2A*!R}BM9{%+37n$F~Wk!l}{+o~xQN4~A(kN<=_#40Hk;?v+%yvzN
zSIIf`Voc<9U6Kzo-{_;bkCHx0`5?}7d_1~cl<;wrkEq<1B`ez7Lk1}AhXdu!emMCo
z<AXM`yQesml$G%(Mks`9IUnVH)b_EfLh)ODRPb?|k7_<D`l#fist=C)<iN^4s`w$v
zue>)-L(khDx;c$Y!KyQV6Q!mM8L1(gV}w^NnaFpgIzGrS7hC>6=hXKRp|n04_)st8
zHT2QQM`IsNd^Gow=cB1i=c8O7&19Uvvf=Hv?coo;7~#)_6iV12!Z?pHxA4)@M@JvG
z`)K8(wU304c0R1!Xugk_j{+a>Y!_{Od^J*GqEknS`)Et4d@#=C5iaF%$K=09?R|9c
zar{UDAAPnxp7g<G3a$q8Dfi#+@X^UfcOQ5ANcj*xI{WD2<4zxU`53mdI9EHlMDtRU
zC|5{WZCBYuH_BE&!Wy`u^27G9s(XBXcoX;e=qcr-Buu<lX5%7KFCX{&cz~vnJO2Nb
z4OdH=M47FxkA6Nr_3@dH{yqlynCoMnkAXf0`6!~sd<>=`e2n%n#>Y?!=Hp=>BYj-n
zE*|tT+{Z&y;EoU{FLh3g@G;`%M04JDPE4z%{CF}kin#J|wow>=ggxCM7<o)$;NH{W
z8{b$TkNbGm$8$cO@bRRNSN|<B&c_ek!l#S*cgjAVrVKlTwnH#{hT^qL&DbFr-k!-B
z?_-B-osS+|lCSwl`v`nwecanr(S2m75FdsQ)5pO&i4S)Ov`d}dA#5MNwokb}JSvu*
zE!FW{mqeo>O0{c+zK`+O3;#KpV7%B)F~P?~AJcqH_wl@sNd&WxDMZ~)@d6<?M0rtG
z#X5(d3T1xggTz!~esswEyx1JW89rwEnB`;NV1;clrBMZCwvRak*iP}q-ojox#qCJU
z_pyLZ<YTvwg+3NhQ6z95i+wEdvE0WBAN$*<KD}0AsgGqeQ0K&xLzF#B@~<RQD}Ah@
z_MR+UE!9hf&@Pt-D<%IZ9KBPlCHec<;$y3i^*(;NTDZ~2CLbG!!#?eJ1v|xNA2o|5
z_-I<`#Dpt_Ka7ko-YK^E*iI!=s}+?4JH<}IpmV6Gb)`D4>5}+#r`Y3Tua6@>j<R<Y
z&&SI?4*NJjg%fzY1g(E=r#R$uB~bLQpiDm$=PfnxijUWQ+<2|<RUfZOnQO>n3Byh&
zM>SKX4^rOn@urXWeSF~KEg#2xyiEs`IS+N_&b4T}OT0@EO0~Zy)9-7h^xh=~T*~{<
z2P;{=OMK$vBOf38_?9O>cZu}PiRX8T_p2n{tFL@c_asXMXcpiLA7A>o?xR?MuY7z>
z(E2#%;~N(Aal*$>vi|RgOdo9hds#nC$yR<O=X{rBwZHtFIO*e*kJCQRQ21SfDw^6k
z@iUFsC9%I<>ib>daU>3OP5eR++9eqI)yH`sfBE>^#|0n1k?no_LH?&-Ai?XRj8xn$
zx?V5rSvo-#Jz76e^^szKN{jSG;<Ar_d|Z{cMC=vH**WpA#PHUEO7-6gCSNbSCZ7(w
zUPy<!A;66RssyMSpm>0s00?kPfSUr82v8=#%>h~sQc4D3{?Y+T$y>seiPYYQ+3?li
zty77zLCEC1h?a5z$_J<zpi+Qa14MR<3i2s2^UC6U!iL$dbW3#EEk?P?%JR{u-Qu<Y
z)dJKBP&YvJ0F<+4fLZ}+$T(HXl+5n1Y;9SDp0edsqF#Xd0U8Bp9AMv~{00FU%KSZU
zO7NE6M+&0%&D|}U1fh@b*)87REph`i4{%=)x?5fVB|tJjM~WIC8lWIRJV1+pp9MyK
zfHtzZGrL8r0IjK+J>s3?@oS?~kKdSxQQD%Mx_d-oPbk=mVhQS`ZGgf6i2x5A&v~O+
z$#wzS2k0Oxp-9WF6jGB!J`qAA-X7qN09^xg3(zS*D!`oq?xHHL6$;98Dg^etZb^#0
zqj~Gj0lE;JdkgR1BgX6z%LXgt)$RemO@w;_^k5Bx6)Ks0<?Rvo$`)y<L8DX4_k@1O
z)_Vr%72y5=r$(n}eLDC90eT0Z)js<m$*^C5{_JKJ`B@AIFfhQ;0B-~s6ku?Gr2&=&
z7!qJ;fJ^|3s0i?2fX4$o5ny<LhXOnj;8EH1hyWu4?B63+Ue0@%DV;+;92JC~NTOi;
zG0sl;r;7o`$o%!|MMzv@W!!W_Tz$SrJQ?7r07U`R05dBjo(?cBz%vx`g9N+DJkJJr
zF2HzMO8L9+;vPXtB-G386<UCF06l;afCAj#P$3PPrxMTIteEVAWXoP|k}9$TI8;J_
z=>gmTUVsS!CI+C+efE8HDv+RJbJ+mI5^cx$^8qF?J;0OzFGvBH_+kJKYV=APdPAKE
zao%XJm?{N6)-4genm2<T2{13f`~b7)YlD^90p<kZSjpnwHdd~lO3eLVZTyDAf&dEx
zET*4c3;X+;o9w(-EDG@U$pnG4glZq8^scD9^g&{IfE57_1UMLAWq?%ywg%Y7`9Et5
zuqnXi0BZuQ4X{4Ih5&zcP8byuEVzz_xKv1`5g}|sJrUn1VfMt8LVJA9@V#P7fD4a=
z7WuWjvYl!Pu$S%@U?*)cK8LW`9bi`gN=}$DY+py&6M)XH4hm<stcOtFPe=PZ?82b{
zF9&#?R=Zw!SbF6v0bZq<_KMki#m2qjHTD;Yu9pirqA~xG0PpM-C-;ic-4bsGc#BHQ
zqFffosDyy$D)B2b1b8>V*8#o>@LquT1AG$T(*Pex;u==E<3|BLq<+ktBbN*5%Mm^L
zF$LZ$s_YY=1^7I`m!$dt#{+OIW4m9_h4+X$RP5>87W=|E%;1TM^&4}VF3$fpz;^*o
z1o%ms>H7db(C7r%J`oPV%*>Pg6~cli>1Y8?2RI{h{wzcKEcHwpp)!97kliQFN^KLI
zT{<Utd!E`3a6Le=EPj);_9u-M;P(I*16-1okVXFpKw;Pl^|o}M_&dPm09OM1OFp?=
z_z$f=P~pJM3<vj#<NL%__HLiJCPT`wevrcX&kb4Jn8nRml+B`e7CBjz%%W5l7xsyp
zvM7-a#~qGq9Q`?rl5dB3$<kRK^^caxf?iB-B2!VNbXa7;YRS@U@$A`x@>$%PMQ#?&
zv#5|o#VqP(Q7?;1SyaxVdKNXZsFDSNaa$JEvS3wJv%rvWdNAs6oYNT24>_9G%;HZo
zS}Tj%lykq}42PhdQmSK}EI7+*x?e2f0q-mtWYH*###wy3D+DcP5e>5;N-0c}EH}_|
znr6c|z3k5YV#I#YEDQ1{X9#)xJV6#Mv(Wd8NET71UkSU@A`ANd)eA`uBL7X&n4y)-
zMm)EXwROv)dloSnFUW#lI%u2akGpYu7I&~~xv@kR?X&2R1(*BUvE!{{T!wAYG?vWb
z??$nXS#XtLMD5stX0bW@MW-xMS#*|}MHY8v!JK!=Qp{#IjB%NZH86jdY`C1;HH&{D
zVTC_Sl-`{UH;cK&%rki0p}RMW`?844M06&4X3;APZwmY={A?N?pp_?~)FkxIqE8lm
zC!*g(^v$9lTc3a~6VRXJpT&tRe#&BC7K5^woyD9i24^uO3oVOu7DKZbmc>(9Je|dZ
zSq#r&bQWW>cqoezSv*24%}YL<#mFqKpUmB|UmUUHqX@GHB4_W7F+TG|?iUktAI;*i
zEPk1sThKRm;<K?9Kd0I}5*tg@W$^@+d0*_rz{rzXbVIz_J<-qh3*L@n&9CMb5rlJc
zpUL9cES}3^d={k-h)3^>l^YvRbQP@akNrYbBWjkP1C1;k6w|XXvUnkj7m2hiGBj=$
z0mW{Sw5aeb=V5|zn?RD0ey4I>YK%HLmAmw0u5&WC-vOZ?5ZNpyWHFJ3%VH86-B3KS
zC%5GHx%2s`MRNNAvGVuSWIla1^3gMq8CgupVk-S2i|JYHe<t_h0de)E-2BD4#}9~d
zPvy>}1;<2gIVfgjacXsfk-1s^Pce37u{(?TSu9{xr*gMs`6q^vg;}h~Vr3SKvRItO
zk}Q_W^kp*qV1BV?2L;3B^7heZb6I3n7OS&Zm&N)l&OI1=i3Pt-t<7Rh7WD_@md;5s
zTi+)mG{=T4HfC{leB{QbBAbZVgJLt?)5#rhP%yr%77uCUZp~sF^*JHFooYNNzF3jV
z_zsz}Q-<RXiam6?EZ)!JgDm#3%UQgU#hYxdO#DC=hq8E?D3!M(Gr3GWoW(0yyq3l5
z6yTtEHH$C%=e}}K(Bf^Li_?zfiismxe0NYBrOO-?H4h1fZxM=4ZmWl4?{O5!qTrBt
zTlVN38GrY`lxr!bpZy@W-y!iKbwW(OEWXO(<19YO;@Tnc1)+OLd`gfX614{A&Nw7K
z%VP5(@wp6-%kbDC@nsgZUKVX%7Wcm_zRu#CEZ*sp`)wBAXYm6Cleg8r%C%n>|3}kx
zKuJ+N?}H=5M^F?4iYN*W;~u8H<v2Nz>%}ZcMg&Dv6a*wk$->O+?1Y_}6%aEhNs@w@
zoO8}ONX|L_zv<tf_xjcQx~4-_byZDI*qtxuis^I30jfM#6u+EL;SY0JN208TavF{>
zUyZ~~PR+P(qa0(7WqPOc)9m!LQsUrTQFXC$awJYMd(2l(v)Ma>;O1O$j`2Pcmq%hr
zc8q4fFcKB!i5sP27e|6smP_PxjS^fLiK}#~k+?n*_1T6QV4lct8jUuJ)@`m7(iGy`
zBaxw@u!bTUKh_+nI!+lmG*&=EnR23_#&;fKnHmP?i9!<BDxOzV!|le=(rloin1<pS
zN@#felSoMomG8??hbpb+iBcM%q2E05^*k|Wp4iT!hpsihSM*}{$Xy!lW)}@lXeh7Y
z9t{s@cu>Q=8qUlUvkQt=_lt3pl?oc})A(^fg(BTA4;7m)Dr$I$*6SL1jCtt+@vw$R
zG)$``h$|7#4?$%Ox%0)Nk`nCtSNW!6tcnJ;Kps0*)lf}C4Gm9gcv6ExzJ{kLK$~c%
z&ap=GMRg6N6&EUBbc}YMFZ3}v5e=kSl72B?Jfq=R4K+37XqY@-Jg4zbxg*&cp4Sl7
zuxP&6F<)GoFG?>ELwdzx@@UNkq88=RP)|d?h8Hx{){v*6j)o0();%>vqXi<CR$2v0
zT@5dC@SaNh1>%8$3c-=j6{;XK)Ym}35|?1;0`b!VF=n^&iiTG;tkSSr!)qE|*AQq(
zYj{KBXDRTRhOQd^?htK2i)naULqiR3X_&u2G}6#SLsN+xYgk!bkhyPxXr`gLh8DC^
zujq{hqQXM46ry{{ShpXPKi*baX=tb60}bzJXsv;c(MH328ro{0d%P<t-KN$;(PE+4
z*gN*V#;<I|1}qdGYWPUQry4qGXs==Dd(lrcbdca<4d0Aa$SK?_(vddl5n=jbAz<lD
zbry;)lFytL=7C%J-86L9U}>;5^w7|gUaDb;hF%(aYZ##6a}9koCMfjN(4S7SP#pa{
zvTR{^I@q&Nd^|bx%`pn2V8)1;-&q-`VUY9zRvWyZ^+f;3Pz}R0Xk2v4KOiz(!xtJx
zXn5aMSl#I>_qU1`=@=QQ;qpSU@>MatM9k1&YS{Wrh!Yw}%PbN}4V<y+B2jOVaA>zh
zV#p%lX>cWGHAMryqiBnj{!a;?Dl8H|ED~R87^PvhhTk=e)-XoH_ZoiCFzYYnE80rq
zUkNFL4k=?be63+h-v|p&rr+Md-!UrNN6GwA!#FZE{KAloii(Go@fv>8@Uw<y$MYx9
zJr*kj7oHarHT<ziuuPI*vWB&?I+dmin~7f;cZ<Yy4Kp;%)WUQ3rWH!YV)4*oQG2my
zxmXyB#c!05GA|Y^s}_qtH2kSysfJ}5{-P6VSjYg;aCo8ekA{CW%#oN<&1LeTg_}le
z^oq=<>-LQ;(D>_4g`mr={KJby#ZQ#Q8m_d6vMkYXbFm=!`=?CO<y@)W(N{~wYAg|c
z*XRmnsz%Y3lHR*Stf3+tN=GFf>olxqUk$hDOI%hB$2FYLut~#aN}}OE4O_T^8un<|
zt6`g5%^ey)1b~;9i0yRpC1N0FSt536Sh7Uy)-Y98YeLlgFW>wuvQNVS4F@&s=Lky#
z%XK#BtUP@%{}8)xRgSyLT}#Cgjh}#t9n<(b;>b~E!kgLIfiki~tj#-7a!zVErQw2x
zeIt}BEu*J3oMUcj6gk6l2L#Jm=B}k7I8U3jj6VKhbmu7LB2x|HYeej_hN~K`F{3UK
zR~TX)VlO-tyUxtBRNSDmEfq8@&zN*eo=I<O$k0(r2XqwBQBX%=9YyqTZ;+{@kdAIO
z1vfmbQj1sxQB=pEZqb1sDaCaZ)A@6x2+ON|loC3~<OZgs9&Tg49IcerQAWqbmf|5D
zWp$L(ai5O+b=;+go1eRNl$W5dtK6gGULEH;MJsTSrDF6_F?*?4vs4V+tdu;K|A3AM
zb^O*271?H~sIZKmeT)t&oL6I+_^xY&<2PO=9??-*M?D?+Iv&;Wn2zUlM0Hfr@wkqs
zbVPJKQAj+YqpFT-I^OITWA#ZLy_X49Qbk8~9bYaJ<V;&8wo7n%naI*nL&wYSD{n6s
zPwRL_$Fn*rE)UoAQV(VBROP98wVsol=avhe8MAf7bkx?7r}LeGSWO+dI$qH6`Erq?
zqn3`fh4RKM7o=S1y$uEWM9xi6>QKSuqOOk1%SHJ)%If9fU7iSZZ2T-tszOIx=XZ0^
zklHni*4Oa{&G?P-5(U%oijG%xyspDuAu6p9ujzPah3K<F<jd;I?V{vQS|Q%lLCU-#
z+A449Xr!aD4&tWI=QYt0loktDh^9JT+n8ULdH6ZeOo#TiLeNsj+dAqPsB54V2iLJz
z$37jcb+pl8ab6wo>UdAb0II2@t&aC~bl1^CM>`!K=;)-QvyKmSe5B(O9UXME*YU9q
z+Hia4Nc%BL!%ndYhQi%-M;)uXL_XC~_oz~{YlQfP9ueZ|hSEhxR~;4pQ$EviqG|Ma
zqbO-N9i!il?r9~M$$L`HMq>90(N9M&t|_h5GulT-U!DI*9P9d7gjF_RwxNIa*YQQi
zNWqn2ApKd#a8{}BSY@ydhUzfdd8HVlW2nymTZ<9j)hR;0KSbF$NEyMFI&@lZr5MSz
zelJQb_I8P#ZWA>q|G-E>hp8he7pv)j@Opu(wqtC*qr=rPOUG;-DIK1UA9akQ9cX_Y
zU+EaDBTXlyQgT?H0Y~ZJWzKsm!&4zQ^PFppj-D%py;6M5Al0#WrP%A_@#wcYcy02%
z&Yv$uzN4LcD%_Tk^MmA1SSiNq_({hvI;QIQS;qv1{3<b-5iw5T_!H?KI(DuM&yUP+
zmsSd9<0&*t(<q0UMqO5k*eWqYg6TR=mk{L4)bT4FewFx5(zdHalfeqBzw7uz$0CZS
z<4-!qD)Enwe|7vtO;?G(DZ?tUWR)PEqhl@|X<V&#>6~4w#5^4fbS%_yVU?IqCtod|
zTrFN%Ek3%M|KV!EGujdzOKD^sYjiB5zpWMrSBsT8mP@>Xo;F{6y;{s)EmkrAWQ5@6
zYO$8dpV6dalaB27qZQYP^*T0it=EV**N8{ni?kXP*-Q&;&S%*o0mF0a9nLlhwlkt7
z*m;M)OM=}x_T1rgUL*GFIKZh5lr?Zr#~~dzbllW&SjT@lE-}WXrybF8oSv-XD1B*-
zpzj^yAQGI^K^4yEIIH87#HZ<pYeKyatP$rp;2QDlT5&;w^GuIx1vwX)n%0U}*NXSn
ziYtunfeOcT)`lZrWlpB2jmcrTuA|>tL2ygQZ5_o8EMF@!3=}X>#6VF4bcQNx^M4yx
ztDu2Q1BDC_7dG(E7^P9?7%{zlVvDF#Ui`dP6f^i2RpH*_+*(n>KuH6o48TC?b)vL^
zC)b7UM1$8~CmO6!${D!JKt%%&88~uSx!b^f2JSad-oQQV*d%hVfkErUgmvPBb)td+
z?y|VodceSg2CjCAo#`2#R+>E~IQ8On;$Z`o3`7iM8F<7%WdlzbsA}L*rl~-A+(7R6
z{Kt$i2~?4E&pJ_Xy&!YQ;0Ukls~M<npxJuy(0cKt0fkbn7g1SNCBH+T$WsP7tru+b
z>{z9SfvACO15X=x#=uB24LoPyc>{&VE38(jE52VZzJD<D&-MKDVJt=g4DfQMrhy#l
zbx2veUTjM%wG0sCd>VPdKy6AsFmiUi$TM($l)^#<Uo=q9KwuzkAm4y6@F~SG5I0cY
zKyw2v47_CEWdjWjyk&%0>lFj9(SZMiEB>nFaNgG?=M71D=uHC+Brdu^u-eD~FS?sj
zQv;19X0?d~yzuv$2rB;Q2EjdfO9O8k_`tx2G^~Ml478JawKmX3&h@^5nj6Hs2HHyS
zo}~3UN6BosK@?~lrBqWh!z(+2k0?WvNP7bx8)0r)(J|6>gZRYY=Q2e{1H>I99ep!@
z?Yq$lKh^4NpbJ|X7-8Tu9x^b%z~=_K8R%}Hmx0~}dKma+gQ#~%>1lw;mMNFFCRpu5
zQ&WJAqMw1j26&!5yg`umH^Ng-m5pH+iZsx`%F)Uo1C1UQ@r`1zfgv2n!0X+j!?@zj
zl^+)<#KVb4DDOB*`;B5G6*rJDU~&mo=JVo6mwFin25%IjH;TVDill)x8%0W*$TDCX
z;Wf2mz@;&V#E1`X6yFY2h&|cHH*jO4czlx}{nEfF1B(nSW_%eKV_=%WKeNJD2F4ng
zWMHy^uMOmF5<eOkCzs<J1K%3>&cOFZxV_=k%?}cc*^tkWVfEcjV!VL`o5TbIKN<L$
zHrXV+O`=&xWzr@w(ZIG%f=4qpi-t#(Q6poOHj61VETe3*cyY6sDna2^$_xWD4g70h
zj=|r`;WuUm`f8?_MKPozf6`$#i{B0WK_NE_Vr{b^_-C{D%fJ>^$0~m_R38rkJM#Q8
z*TBimVxEEj&gWMdtPszq;{9r|ERbL!C%T<IyHjk5fu+n026h=(#@uCKoq_cRif<7s
z7>TWv)dp&85i2EKMUk%LvwHH2*cv(mXZa$=^2!#mLC&?A@<^FCGVg5>o9Iqk#P?go
zR{D9*NaAolU38m)?FJTZ5j$k0^VSOEefJiz+rS<JCpe~oy$1FfILt8(+-|N6uOs#w
zIADM${euP$(G<<1hf2gQZV?0(wu+~=iX*b+F#|^pu*x!Yv~pZd#JM=*DFdh3#y~~_
zXAGP*aM{2WBfRc7XW)W?i%c5K16u`4=dI%H4$(^tlda<CpA=G7uNt^Ur!sKUz?a`C
zW4DUy24-v(%eIQsTSc*Ld{U`+Un#e^vfD)NHc=pfM%zT81jcU@1rzALO=L=HZ4<;~
z7EYkZ|Bf~ni?@m536x0SjU?VoqGST45_rr+6%$CHbOK){_+dVjNuX>3pC-^LfpQ7l
zl|ZuunkR5~0_78UI)P^rxF>;o6L=zlstHs`;JySZCGbcB_1h@-C-7hb6%#nNO+1i5
z;q9X0cJWXGHMffn+r`6@-)OsVwuf3*PT)}~a1~0D06E9Ei$XiZjO}9Gc2RYQc$`!0
z5bYKz)e?Ahhp3)_n!u9@e6T|(<Q!C3tj$W>{&`O&kd;7<1pm!GFOmqYN<dqU*de~z
zA<q4%Je$CC35W#Z2|S-bG{OJ9LEQwh6Nn{{o4^YclK0iOiJSy#(Hh?=b9M+?a;Kyj
zJH>rFMePLgq@0nRf;T|^w{S1*6fY)_pTNRT72<jcyt`9Ss@E1NeRhia3A~g*g9I8T
z@G@svtGt@PYYDs}@%nWNIq99^b*@VSZzk~9PQmKtonclvy;Bt4CEnsH^KO3vXLpIm
zc8SIb=(|J{j<!pDyh}{pC6?|I<#&r`cZ(KM{x%dKftC`#EorL+oYVR5NK6G=OYI2e
z^;X_XpdIa*;2-lUZ6$qQ(jC2&4{7{yN_*<HMSLVNcND4Kk&hGjL^3-h&`|=$AcK+3
zUfV4?C(tDUjY1~ySpr=X=#xO-1iEpd6X=;hFRD34>9Je%NWilc_Db#+z3HX91urw1
zTL}KyE&3&}akm(hz~BV>OE(yhz~{2>soi3r1V#4<UP=#1U?^9dtKTWM>@#Ip0>cyd
zB7y6x6jmSJ6GlyJk7%%mpZpUe6Y%$l-}VS2fdmDh`pft&A;qML7%Y25GJ!37ge9ph
z>D3m>sXfA#M^lnMzE`lN&qW-r1PP=Q7}hY#TaGRJMDq8F(Fu%6U|Ry)6Zk5Du?hUi
zWliAg1indNLIM*L_%?yod&T%fm_NTu;CotZtnxzw<0PN>#{`D#4f8FVrS}Rp`-zSx
z+Y{Hhl0PYd$qD?Lz;B6g(=sK2sR>L=;1^kaV}30%rzgOj;Y?biX>>*c?`McbU1ERE
zuf@~NAA7~4zbdm5IJ#H-p1}IOVz#6W?-M;gRsKkzV5=y>-wFJa;3XASCh%_pa}roe
zYwr^rVJ=l0oxh0QlEC}~7BE-r6AKwo%@y7@A+EMhytYrU&0^VdiKHLz6U%5ZCy!-$
z0ypm#1YhkFf9w;h5?GzUngrG+uz{;j1OBM2qf`l;-WNWwSig@SWRDSVN?<dWCV{O9
z6yG0i<gS+yd;l?{O|()qQR8Z)+J3Pkft?8yFj3INt^{@`a3X<|3G7K=Zvuz+i=zqb
zOYj?`I83W1a3Fz$2^>nGb3*A=M3inFeb-l-C6#*nMZ5jt%+35G3H-iatlBU7?HAsD
z!4Zy8{{7-OUAjnEJw-Xmp_LAZGmO>*E+uf8OK?D(OW=G07npDkh{yEsF7d?#>>_!C
z4k}X*DSX6sC4sB-*aU7Qa4mrr2g2J^?g7C&+g%QbpAU!*BNW~bj}MC6lH>FK@a+VG
z*?Aczc!A6rGffmSQQpKoW_XvNu!&+OikmpqEmFipQ4_r4W;xJNDPf|di83b2ni$qS
zN)IW;Q-FzW2L!7urA=HoAP$VqV<~6iZj(1Wqj$0WL7^NJ^$v!Y8(igkW%maufQbqw
z+8+$N+-Kr`6Azg9{9riRsDpyN9+E8|k!>E9n1?D!Fhe%0Y+~&}@u=kRrrhHuo-pyR
zi8&^!ny6;tV-ug4c+!Mo;uRCGny79<H4!sW)5KFIA|{?T@r)Th6XD&(EE9Zk!BWFS
z+nzCoFlT($48!f@LGhf4=S@WAblD~-HuYr#0@554wM@Kdq8>-?7RfbH+eDtkFPPYP
zE}zUgZ1ac0O=+P+VS1@6tIW?-Heb&2k{n!^h?}S{F%Pj+IV4`@;E7oAF0nd?#A_yA
zH__6>+a}&H@urDpCYqaQV4|Vy)!4*aW|)Cn9ttm`8kymShlN`jirPfBX(}m&@7gTd
z!bImoqGi7byKv{z%EUWdJ`-2`JYJ0R{tR<(YZKNXxx+N^9_?e|!M?HgO|+AM&u~95
z@u7*2xL$JP|2YE}XxyRDO0y;HV4|Z5+k|7{Qxly`^fS?)vzzE*qMM2CROGYBrbFU0
zaz2T4m6U+@4|~w0??ro>=w%|mS+r=c=z&k8Hx7y3Ci<A@Yx191YVpeJ+jpY`6%UI6
zbSD$TO?+Wupou{yhEgySgG~%E@lw|qFAexSF?v|MR4{K(!Mv;yv0r<~S{xQ1Y*I#;
z7->Q`VVGf_?0;BjCcZi>W*rur4vU0|>xYH?pRi1rCXyx|{!cvnpJ?%)=>DHL)-XEp
zKjE54nHX>4Clj6t-^5rGUz-R_q)m+Gk{uCWnppRr7{$msB4!>|&i^MG=8Nh_M3*CC
z45u@(Wvnvdi1@Wv<Qo&;nmBhvj5F~agLIqt!31|ii$7GpH^Y6)*dyYvBjQIBTaO4<
z_w<SIhSJ<0m7h)gVq&U^2_`0*m}FwIi7C|Us3>!k|4Aqs9TmNfiXV@Pe~*f3CZ?PC
z-NYXzW|)|1;#U*Dncz6vj*8dDDrb(0StdvyKPG0IVWur{OynICZH|dQWwXCb{7tt%
zCg{}^gS()AOt3KvHyd*qXv`r=lucs3i3KK(m^eyDHL=LV28M}=#U_@RSZ-nk*Xx*A
zYGTwe!Ob>zcgv)v9DJpTRVLOj{N?KK=xW;b%e>#d%$t8qY(FN}nOJY){IT#EO|SV1
zL5bsHlZnkH_L<mE!_rVDc9_`7t?Y5Jjq7+^%s4K#Gav2{ZyXohkBeQDs!ME-oPze;
z%|IKYtT-<AQlk%}#ANO}E)JMD#8h@dTstlfa{S|hkM$2ToT=dc{KpqZ>YNa>tBGSK
zj+@9#qEHeiOq?`v%fxMFS`(+4c1&ENVNIN+*i57*nw}7a9uNn6Mb1e(cRe90e5JHM
znQxy6Z9Dj6{$&$aO<bctpUl6)B|8x^uba3bt#p$XI1#!>>2H-|C&bwAm7*s_MiNy{
zir>3N3MNq?2|k9)Jt=s~<|EP7KP!ck*q1MgCQ&SjB1wLGOPTO#l<!wCwH8mJR1zIe
z3gQw;JoJJnnM9M5f`CkZByZ?RQ96mQPl}vWUb!UhN<vNIsU+@BqI?pMC-Fp*-<Za|
z?8}jpsE`ErZx1Fxx4$om`;++dWH=P@19Bpc!$TEigUu&JrOwexNt8Gx9!=trWOzTY
zauPL$M9!QPRSx7oCJ$9PC8{J*_mpURN(?<EswVl}YH;&TTrG)jPKhUzP&m;kv6(GT
z3BGx9`=w|kiL4}YlX!sxCh>F<HIv9m;+Z6#O@d$bV;nUro<|>hv3G>0u;-JACPT*v
zPiINQlHo=1#Z%(_OmV!RC{|IFIW1}>QM5~BZPy5!)#gxqdXmITN#yYxffQhVt-49n
zOCmps7n7Lwd8F!TLCR(#iIqK~@nm>kmmC&?7fy?pWwTe4ctry8*^=#Fll1i@n#mCw
zB+)R5#ul1bcq@rUNo-DH3pre@B>W_TB$~2u61|h?lSK0*S|rgviI0<LnZ(;k(52r`
z^26MrRPQChXMgV`(OS;ZM$&iXAx_8HDO+3FhRu4P7VVPwAQ_(YKa}Ixr^77tk;Dv^
zhr35UNuqNSU6Sa)B~F4b!+e@VrzCzkEx6z2E%&9T#i7&Uvn0AE(KCq;&xmeGbWfs3
z64_@2Z%E!eEkvK#17`%QubmOSsNgBVO)2f%H;H~p=t&q!^iN_y5`&W%LTBq9`8*ls
z@PQJ~E1b9Et>_?L%#Kms{3tp!iD6Ra5nPUuvEfO4k>o$9C{H(zj_DLBJ51p_57cO+
zY@<m^z36y@&WJ=3Cfzs*D+yP+1h>jINA4G+t575-i6x`+C|*h~x|hV-f`Z->oDu0H
zzD(lxB>qTZR1%|;_&JFQNsLM2t7Q1z&iEuoUdbPu#J5R&$H<}sOU`d+#O5>N#2N8@
z5<es{j%p5424}>IpA|nQ@z_}rKP%onE3OU-pW}0!pOTo>DHLX65|g-;LzS5f{0@=H
z^oP#M)Fh_R{z>#bD^h30l(XTD+-XTnmq!<$6*GwcRQ8`0q`xL{<*fLP!G1KK<IIwy
z&1SHl6RiH3#9v7)q#fAcl=wS|f0LM#<Y(5yYKMag!(na`$6H5P=CN0&NVQIp`AIBD
zqUt%p({cQqC_S&%Vj4}Z6!*7FlUPQhCHcinEKlN{b7K5Cu{wzr3==xWxlmf;oLI$0
zKPPVWueFBWcqqKlG=~FT&0n7cUnts`#0H8wUSZ)Qp-ptHK@pZNT_anQ*p@^^3lCY?
zp2UtME+la=iJdaH>`&rA61$SvEvtJ7&WU|V?3L9EV>0Ll9KS&_^C0tTkLZykj?zRe
zqlc0>ECFBF`H${YD#k6%u_SIP;$#x1WcTAd3rN6iA;&q*_UFWzB+e%JO-6;!SkKYt
zn=9v;(3&fy&x@zdi-zY#hx6i65|_Dx7K&K7lEl>{GOREYUZYvE#4S1IbxukxMk&M3
zi<?}6M$v;~l&{W<+w$myJ`pZ`0okjdq?r~9S(tS`bZlOQF-D47C}!b4i~s$l6t_^q
zLU{}KSQyqh(!FP-q(yxrETtrXh0=F8Wh5wTp_~MF-QnLYL4!t7-fF(r!r9q*6)a!~
zzW^0kcU~MlFYdQc@`8B4!h;qbxez`ut#d(;^RR_V7P2kG$hX34=V}(7v{2c?qZS_H
zuoj-M(Dj1g&19a)_>|{y3)Q+Q%`S+l7Qf^e(=G@eRVe%?k%)yX3)L;C7M|kK!I9dN
zm2WSI>WiP*(IWb96;Xps3(s1ZeL*};BMgcV{Ms?{oQ3BtL@lhjAWmEmU++@}HIA0L
zD5_i(H7(>=sAHk7g<2MJX~~|Ef15<j=fn%_)hkxp!n)p(QR8dnS(xxvl;w?!;zbMf
zEWBpnbqo0xgoPh2ikB@6U6CKR@REf;>j~oe7Cychf?*d0Ic)QaZ278%h2)$RZ&-NK
zLPI8e3%f6dA>6=1<|V;G+{nWG7Ez`nQkIIBL{kgREL^7ZSZHpcg@s8LCR=D};cW}U
zEqr02m4$aKd`7EUXl<d5g-<MWu)^Sdmo8zUt%Y{uYpw4beV@R>2Npi$D)f)=odMoW
zeesfLc}euSB<xG#BP)ERusyYqfS9?WqlNL8!e{H9EqrQW!6nhj3NMkiT@q)>e_eE;
zcF1OfZWg**{GKxUTIeAKs68;!lSZqNSM0LrCAFhey)8U`SrGKI(BH!676w|VeOd5+
z)Z3TE0O~s=#%E!JEd07d8Ej#Q1x5sK_<vM5ZzvtZ!tHKRzMeXvNFFmk@dyheEqrBR
ztOd=2Zt<oQd<%w!gaylj&1z@Gw2<V{rOI19Vm&X5feppj%fhj+xod3iWs$PrO3dmX
zmqo@EaqkroSV&v=`ynyf!k1G1##h9QPoi{~Q5I@m5d=IsMz-POq^~V}V__UEW})L1
z@vVjLEPPKd9j?syUfJ9sGVF@@fy*>hp&5U)F#3uh;3@1U3ruknEc|SNCo-0IyM`}8
zO_cu0UCk5=zgXBn%UhUgVVZ?`l*ht!3o|VIK@YSrlNPh^+Z8d3)C#u;{aPq>+eQia
z?p*Qn`LivM{%&FI6>;o}_{$2@&YS7He;8=pqkl6^T@}1J|F4BP7Ut4dHKl&XC>vD1
zDxUI{1zczg%Pp*+zkR7Jvam$jgm|$PKGY*vDs$8_Ntv3MqaLdwR$5riV6?Ex;!oHV
z7QSS=)<Uo1v2}FONy<h`8QUvTxnE>GgX^lGXKvzJSlDmjfQ2m<wzAn4vB$zTs`h2x
z+x+Gu&jJ>9Fe=9?J1x)?N^Yz5!PW4>XE&qcsKV0!s@Q9xU`A}86~4K|!VCF>77kfB
zW#P1i!xsLtaMZ#vhDpyDuZwv`IKpsi8TGD;<Mg!V%1KUiRZO@lPEc71iq#Ul3_n8$
z_%HvQh4ah<hn2GyE?gC*u8F>v^DkJq$c%SQ@GXeKy(5>X)HT7<>YBJ};Ti+hMr#|_
zE!?p1f{ofXZd$m-<Z0s(8@DZF*eGkGoQ(oD3fd@cqlAr28-;8Xu~C$zWUR1_KIKJ?
zY(e~U`S3wJ4f{_krI?NG*MxITl(bRGMrj*mY`_jfV9qt6{uc)I&)3AiZKJ!ciE0nU
z{v8mx%f{U{?z3^fjq)}wUK97)s9=Lh;~sLZhx&4T>HJS!4?Xq)8%?f@iZ&jy@t_^L
z@wS%H{?|pMZ{%TCuZQX4x6aXO&7+lVJZd9iBg@8PHmcZAY*e@LxQ!=lRJBpf4&T)r
z(=^Il!PDzoU&NlYak!$OY<z!%w|Z0?Pucu{NaX%WnRBl5K76=LJFklxHlDT-wUKS(
z85_^qc+ST2HkikFmBcYA22V_LXXkP6%5!wgMok;FZ0zh4%dx{Z!0+xA<NGaV21aNr
zKK09`;@5dcC6Z_J>)>c$qoIwuHeR&xvW-`4F!1Zy$hRSE@ZA;a7`IX14lg>Gj(8El
zH{V{eLr>#2fS&fMjn{0<nw-g&uS@&CDJiROQ2oy%e19psOSo};%f{Kxk;b&DjYfCc
z@RZ%uMl+ii0-3FBJa9uax6#5zOWBy!w`to!5nknS!1Kcuo^6YNQ;4tSw6Xc!Vf3=m
z+s1n~+S=%B<LIEs`!?Fy=qMFomk(@wWTU;D?n5qRzZhls*yjJG$3C&~@#=h52hLSG
z&=d`$LssYWIryitZ^k!;I@vhhD*8*0NEaKQ*?4DCsAE?f-ROIAK>B14336_P{@GJ{
zEC=jkqpyttHa@3SCuLH7u53T4QGZFtcZdy?fCCP(F^KEiB{EpjCkKTuoRdG)#xU8Y
zU-t;d9ART5y*GvXQ_yVaHokN)%7I}cL6>&$fCJM;(#BpJ`)pWr5*z>8m}A4S;oA7w
z#snKF8=j4CY<x?}X?7c9Y<y)S%>iwUveEN~&_Bp)b3;s=suHk_rnk4r{vRI8i2hss
zngV=~H)n@>dYhWOA-=Qmy^SAjjI*KUXFXIW_vc@-e~>N5-4Np?V6Rovvupj5^AneB
zS`NWP8<TAOM(43H*~Szb(`-y<yc=1+*w|7qI#uGoZU|y_XPH3{S*y;ZQajWEde*P9
zN=|H&I@`wYHvY8nmyLB&g+FY3*fK&1OVp2WguiY4!yx@7`^XJJA%EVb7P%?r+L&i!
ztBq|o=G$1nzDx)<7TQ>3W2ud0HWt%3d(|a2D&G`|ycjV7=BotD=@qNgRW>TER#(_q
zN%f~>n^qR-Y8z{8eA+mh4c0PV>c&dX$YGZaHU>^q$=}ETyeWt`+1N~dW#f9&bDG^0
zJlfzNb-RrnOo<y~-`x~DZS=n>l2dbbOR!5)PDIWgF8b6Q&a&Ue0UN~}6nAjY#vvQ0
zZJc4AvGJdclQud`QtuV9BQ}oFv6)Zit4FEhO+j$N#-5wvm1XLMn_~IIY~oY0ebqf`
ziCf~VjdM0`F=^X4Z{vcEYf_7gOlvkS+qfdDWnao|uwJclOZ<?Zbyafe+zJ(BmGrue
z8<Kfb(hub!@-rM1a8S^}V9CjJP{=`12O=*v`j#l{pooKe|4>_h9GiJdth^-}PE*-y
z|1ELtmMG!iE(dozDCwY-gMkZFNLt20X$i=gIWxPggPSw6r%%i-=U~qYm7qL(-4@gD
ziQFr}J(6-jaw<5u&q2>!DhsO*I;iNNje~a`JmlbE2hTf*I;iB}5eE?mSq>^Yc+|m@
z4ipEEIjG|BE8$qXP^H(=Gaq-L-WDu$;Hr$%wJHx)bC4nZw%%<~-NEO##ZzqNfbCn}
z7G(Z#TaelO-Rv3;o^!D3ws_jXGfwEzOPbdD{kC}40fUQEu#lO}z7Ae;@UnxN4ssmS
zb#U#mNG%67R;e#IsO=zE;?uVUjnJZgB+o$|2bid`(8oyotx;ceP){=R9mE~%UZsjV
z)?k~$8S(lYmg|xcf5pM84jMaXLbGJVUvuz=gEt+#E~^dpt7JBCQ0DJvSQ<HKcn7~F
zM<6phBTm}XK{E#}9JF-MoOpFMB_ZW9k-p6_GvX}oNYF}B9^&e>rjzUrg@4aMTL&E-
zeCqI4u=2ix<r#5;b`CzE#T<O(;1dTU-_34MSDCAR?BL^!I0qpfoDm<D5#O;{?I5+D
zkrD6YptFNv4u(7E;@~p}eH`?4(A5cJum@ePK)myojBZXC``sO!%!t3CXZ3W@i-)F#
zG2Yt=Gsb2uYy3>LA6;d&I?%x&c6Ts<eo`RLqn}GaoF_+P$Pacfgmx$pf2vtzD3iIB
z6&Jaze&Jw*gQNqCDmc&_49$$04s-|m7N~}l>hR0C3zy|2B<{XXrJMzS%3(9xf#bk)
z;5%@oRLm7A2j@2yq72;%#Hj)&3LIRSo|9(d0`XRM*7ySP)qB*@4#rRn7fBaiIT*{B
za#6;`*ABjMu+YIG2j4pQ&cSR4zdQKe!4D2*&`U?C8;7btI{3-K&-7A<e}5Em##3fp
z{eGxA!QmYhbzTp3vV(~Z=BLz2l0G>|C7$Bo7s~ur##9H>987mGw?MqNrp_6m>O<9T
z!_+MW;&u9~GadX&pYN&uMmO%Svdm)WeXh3ct^UCfcv79?Akj}H_)}K@a`3l<e;mBk
zNBviF*d?b=*x+n|_*@6`91zTRu)x8Ip&|4BVe0!m)y0(7!F~q^94vLP%)u51TjdDL
z83LNRR^k;7Rx(Z<tfn_=>KcdNs8wf~>bXAZt^Vqn0V-RrbFkjQ1{%b{CfRqhq=^CQ
zQ@z6mEPre2{Ug+Ea?IThwmaD2V5h_XB~W)sCXGP+fEG%=M{)@E(itTFtXIfC=-`lp
zs|+*;haLPU4_$C@#KBQ|tb<byj!C=q>!}`h@LQV<PJQCeO7;FiJ<U*ZaE`9Rr5Ua!
z4fTm+{#i!EAeCJxWSK@81%`$Aq8$8^q?hSPj3YOcfk*!ys$O?+!$C0@#a-NVaEqnC
zTG$O2=r%LIi-ImPT>c+aXehm}y01}2rVFlhAvavUtph?Ps{_7>6me114ZA0Xg(fZG
zqNE!-Tm9al7^P${xFC+!jm&A2!CqxulylL-MN1cVxwzX!#6^~i@-FUi@u-W(T-@uT
zbiw$2F79_xL3XcNFwQ|J;R7xna`CW>2c^IjCH;3mc!&)uxu`5T#E;01MZHXFU3XuR
zDlQ&(QQd{=;t7|3yrv!+q*ilLRbo0`-GcE?`>Rj7P+YLf6IM9jYEzwBF~+!f%H>{8
zZCx;4!^P7sUUTs}HFfc<i#!)~Ts-IEc~0#j$3;}ikS$Gd?%tx5Ek=_z&Nw|H9J3au
z=&y3&UT|^cos3+Ue}@~Iy0#RU4cgU>)OGQq3*jOzne|-cyZ^t?5B5{vGt_^-Q0u#R
zNgjPg(s{1R^0JF3{cskRS6%FSFh=l(i#J^~anaO81L`|erOz~U(M?+QEf<YkG#jKg
zcJcDQBLD0AbV8leTWv;N>PDKo&<e&6+G@`M>gnF<+b&wU=;@-Di+5bKcJZ-`Ph7Nd
z@ve&xn2{{?J$C7(wsrX<DO4S*R<9V#vD5;Z+K#r>)Y6_xE%tq`e(0jTrG7-g`l{_E
zEi+K<;G(08PhE6!VO@$08L0+Ib-$V4*~O;1ksdCnW)~Nqx#&t2Ty(!<H=2dQQ@geO
zLhyCLIF;({q7Q{}`9v?jFI&18>SCCS{w@Z%802EGi_bY)>x_XMxku<o-9A@`_Y9LE
z@emhG6bxZ55IMu;%8qa`(#02)bEryhU%DWVhc>mzh#Ttn2~~GtxP0kaO}P9NY?vPF
znCk3;am$76BJJW!7tS4-xv~`1l{7`G4p2Q8z66vZaKn^E<|r4VU957kTDBbHVv37j
zcouLmmib=>+Bg^EU3}x>TNmF+U4C%E-21&$fx5Ks6Q<%HU4D2y1Y1U^KQYW*eydmg
zS%&rm*`ChNFeh`8JTzI-;v?0mE~dHoi|*=TI%o0K-(1X+2ASbvrWEW~Ne2!O?LXVa
z?=Jpyan@B^4^jVcv9e&i?4U4Jvid(JrTQmaP|T-Pa;Q0yUZ_@du8Zsa)Ybjf1uho4
zSmI)-i&AYeo@|}5h-!WwPO+Gr;VNU9S-ogVUFKrB6kvs<D_y>i8a6x8Hw>9IF4np@
zO>4MV=VHB!JuddT*x+KLi!Cm;(!prqUh3P0>ui=_V4DoCFRR<6g=-k<P8ZuH-XSS7
z22&sTyIhd&mh^DJ_}HH6J{SMFI6}vBalpkvDbgVqhb5q&zeuN=l|c`og!HbXE>23_
zSv}_BxQi3Cw)Er&6JeWE@+d9#a+{2^F3!0ql0wlGn2^uYRxWP1xZvWVi%TvpySVD2
zc3<_1iw|389B-XLQJH>u8YT0ZJVefjLF!Exx0#(%xaERXmfHp61yU%OLZMW6Qn<I5
zI`edx7BW*|>R>pNSy&#TZ`1ROrEpgYcc)N1g%T;0OrcZ?rBf)A3Qr;>d#aG2-3XOo
zURGj`RxTB86$lty9He{-_oQ%d3KdeQY^#+<hWUYk&$-HH##z|?ffOF(upY{KsF=b-
zDb!Elr4$}cp;8LZrw~oy5q3}EsT3k9JetB|DSZ82=2w~VDk(gkLiH5X6sly#pGe`!
z6q;nltIBG%6k0Tnu;gUMl@$JM6k+)!Gk$(kbVz1=Vyo<~BcfR;)JWl(6rN4t=@jz!
z#n|SL%y{E@nFQ-H<CWV)4rj)nOTlRrxt<x%rh+NdNue%nmBQ6Vky<oh3ON#&Efgo`
zg%rv*4(F;ZdlB#aBAO=~R4o*LQ35urmqP7A@eTQz#Q7=g+Zz+|P&|dEa-5e_cqN4k
zDO^n9)fAQ<Raja`@LCG5r||c<$QzOpyeUBgNgGP~mZXhRXe>b!Nt;T__RUggF7c;@
z;;eGymMOfQLaP+sNnvpr^_LW;rqDWtHYvQD!h0!nO`)4S)Ha1q60q6(DYQ%BgA_hY
zVL&PMlN36n@DbOsg4$lT`B>7-yHqx2VVjOA^nXbGRPu+GQ;Es%EW39};j<Jt2%C}F
zJ%t`ABvLR_=$S$<*=1x3y;JCu!r&B!rqDNqeklw}f&Zn-F8v8)vv4js8o@vbPE}Ti
zO{~RUL%7_>V&t<dyiXmL!f@Hemm_>3@rV>QoUhFWnyl(~L^5QR5+)@Wox+$DtQ2gn
zbqcOzekmKLB=#lsXiPbHkV0B=29#E*>HlOHmBO+@@$L77#`!9R?^5_)3OrUe_&SAe
z{@10H`fUm)Ce&iDA5!>HGABwpPSOb}j8EYwiT^kF&l2ZN4!dwgNGGK*IfVm-;#1@y
zib3YI6sD)JDTU1`%t&Eo3ajXQB~_MRQ}~CmlfrK)%#zI6lKz>(?<pLwp#G7<+KTGU
zLUA_!>rSt~Qz-Ui*nN)VEV;v<o5H+1czy~CQdlUf_Z5yWO5wS}@x`+GX5nx&mZh{z
z3Kbs+@$wW_-08bAg>?_8HA;p2)hVoz{O2mDYsr^*y`&pb*qB25JEILL9N%(hgcHoM
zDQuI~?To%V{2dbPOktM<yYKM#NU-;gF#BcoKne#XIF!N>31U^%!zuhH@pGj^@s6f&
zOjh5l8DsT0)!dU!a8fc)Ny_T!6zHF4Wc6$c=OpM`F7vzu-G9rxl)`0ZZx4k%T#<>Q
zfEVVpt0`P>8@WbGd#=g2k-}{zjq#D2k`mlXA@7-51Q}k)|Eh4@S&~uE!>q#bOb;6h
z#|cP_cqr-t9!h)YRwGi(!>PjYk{*hC{B}&Fgro%5vLauV&o1SGl+8XpS&Pg9MdDkt
zBIP{X<ss$4^KiF^@*bY^@Vtk6JlyM{s)uSGDtLJC74?1(4|urGgZ)X(d#hxTKFH+n
z;V}<YJpS`!^@lt>!tO=l53_xdcqPeP&+pLL)yb?Z4?QX=8?P80d)!0kN_pyodBjh6
zc&kYKZ24GcBjZUAiihevYGkx5tg6()3;!C3U*vr3Y$W30X%Bmz%O=k9P{YG8MO{5U
zQsWhsji2%GEIYQ%+<8>_$a^m8A=|@i9$xnl^H9@6eGg~;$;|Ok%fkyEYE$Lbk;>(>
zb3MMOoJ~xc=b?@V;bBCPcwG-2i^S`BDDh^5<wXzbkSsAItEwK&r+xG&nQ_S^Am=3y
zFMD{!!;CYv+WZuG)x)>a&cw7lC49q!=^^RiO%Dw`G^FAlT6k#bp^=Bi9`w@Hn|o+N
zfl<9F)yc}7aa1{TMrr2ZT;=K~E-R#kqSZUyR^Il|%0o{Ny*#`_YkO$t;R6qCJmhq)
z{=SEU4_ANJ!`N9F?|EqJq0lkq_agD8XO-1YSAVQxbsqiD!$*?e#Y1}!AA9IPeLZ~Q
z;h!ZLZ2y6tvA9@uwP^KEWwTDSt%orWR9{mh&Z9?*#4k$lnTM`4+B2EmJaqTa!^5s-
z)you(KVCHc^S#xtR;$j&y*<2Fu=+p`gXB<sJoNR@&qIF?13Y{#<)o(X<yQBODcR>k
zA?MT!I}WDB%2XfeVTgyJTy77;J$%8{@ldyDC`RG)%1dVyV@i~G(lKSl7*(SgX$n2V
z@Q^z@Gr<|7)mwMSd%bA<r)!Eu9Sf>9{ozUV{Gd!ON{ga#$AjyIw=7Du&fwLA?;-Gz
z>7$U3w1+P}{ORE@52LtJh1GAktR6;txbb-Q7={&v@e7TW)nR_2uNjO*<2*$Aormu|
zOz<$#!w(*Q^zf61{{k`216`D5Skd_SJ9x~O;@QsPXAfT&jkC>1_he1-FwMhs50e>F
zjnyfV68s{;R1b@OkFd%zgG+f&)+`S*@3i?<g5Nm8A7Pu>bPp%`yN5qKEW8m_8fLMO
z|2Nl~d4pl~R^(p~b3Cl{u*$<+5A)cPQ&7QsBJ({gEgun;GJBSbE%5k%o0)yL#}<27
zLcWJ(9{-Iqv(%;RXProgdm_u3Pey00VCe12nG&m2>ryrWIjcRa@vwvXdRXgWorkR+
zwo#;_@%5avXneE88zkK*=_bi%gMCHgTWH~;@p8rDYO#2JvG{fm&5MQn&c))pJnZ&x
z$irbK2l`2|c)D18FBjtJJmP&G_S1&z)dO6Gr}HKiixVG|9CrWD!x0ZBDeW_PJbF~}
zk9#;K!4lc{ga@`{*;y=p;F&zibDEjN!&ye9hwHNMdFE;l7d>1eEfz0XJYKnYoZzwt
zf-4@b%4U=~Ry=-9Vv5(Gcv!u`{3E5kMN4|f@I%S}*S>x6__tSHDBy#%ppT2|Rf57k
ziufqwqpT0+*rGm4`JrbHEgmoCqqvWMpNW)^w4|iulQX7x96m;uDq7md*^7}f565yU
zM9TT$(m&<nE+2RMDDUGQ9}oF>*vGv-D)@NNN83&6eLnsy9%s4V$Liwo1I6Q4i^m`E
zL#y6XBF+XCWwWPC#4GuD#OK`)C_XCtc+|(^KA!OLdWraBKC1W_Tq6E)i8!l4iTLCa
z@nbu(tNN(s<6MdO+!FE4CBj*Fw7QRCCBvg^L!ioPm6Gw|pJkme3e}+4KGu%Gx-odh
z$Fn}Z8HI00;W;1A`>2%0BWXl^zL<iy1GEYd^HI~s0v`)~<oKxN;|rf*i(DTs_-OCr
zV;{AB<oRgGKV<V!$46Zs^?khLW69s@i$3z%WkZZN)$95E?PnJ6qVs8s@DZ1M9x`{R
zZ^UCS`*@AY`XGKq(pP=lzahqI&64pqd^9K-Z{XuiAAE!~?8RK(WA9NiKBi>6k&nhc
zTKj0@qlu5ETu=({qnRH*iD>TQ_mc5WO>42&AJg+%_#mA+ExQ$$qhx&C(c14waPe1l
z(meIug^}D{>bqPKAMg8kj{+}HS*HG?w)63UkB_)OrQ#fR+{W0clJO7eKc(VN{hH0b
zC6ig7_~_uHvyU!*_>_%mcJy(5YWAm6l1^ONt=SLO2_M^i=A)~RzCQZ-2qvoCeDv_q
zQ{wJE=KY#YW-lM2RGg)ckKPjVv09~B+2p*jKGxsI0J?;aAwE9$F_2}VI*2CSnq7Bw
zSmw=9S;*uK`Jq0B`55lw!s4*HdY#IrmY?rcdAEP056#C<K7RJ0`!Ia?6vIb?5-wD2
zAC3=`-6!PS&d*Kyu&CgSY(9A6P%hP6p{D%su|<oS>fS-ojvHg157LeM)U=N;eT?z(
z6`f~N_9!1y+GbE5T5q(ER;A*6;4;?7*FL`Y@dN$P2cJ`nUKaaSn(N9}ncqncnKast
ziRzC&#?#-9$Hqxz`J_hKtoAGwFaM7^!N)`&zxw#i$0P<97tY6Y>h*W#6dwhDQKwR`
zQt@A?RJ~jZb8e2hWpreQj~~Cvq#dfgkULXOI;~Wk63+55+s8l50F1<OIlnW6ef;Hz
z4@ds+@!`xIw)xu!*O7{I90J;tOE!mV=VQKH$GMWWte5rL9Cc}_IAh`Ned;0~i+z*}
za94mOK9>48>Eo1-Wj>bs*y3ZWj}<;vGD3Z<^RdduftBiNA8QCo#e<dVty1x4Go#a{
z<lKk&dLJ7YYr`X(eQabrBHjY=O%m`)&8P_~s}z+Dw)xoZ<B*TTK6d#0I|A(Sv6q=)
zo=RWZ^}k42sP2})nx4&G`+V%@q;%TlIRm$<2k9HD)G2?d&rHp^ajPbu%(khU`=5`a
zK92b~!qhP<y9?s?{+fN9`2q2Xujig1bG16Tc|KQsUcKDYKF)A00%Qg_%dF+&rjJ`b
z&NG?pR4@6sEWrilY6-^9$R_`ak5LQMYm6fau1d<MjiOr?`Q}XZhL2wmUyk@~`r)F`
zyPCY1n-Sn65o5JL5HiO#jT8z{I6#R2B?A-*!e^#M18l03yC3mR$*f{Q7(T@V6fYfT
z;j)$rfB;Q)s-@*2b!N`G{MgTbs%2!ANvv!DCXEL9vAYA55AZ^O+5zqfaBqNW0iFy{
zA;5hBDhGHp!2O&tz{3G51$ex4oDcFI3{Ww^LqX_NgI>)gr7ooPO2>=j=e8;xe<T2>
z<68|YwyKW>sKSl`J}(`AV3ztsfU&=+RRg@fNByf#F7eA#R8l2C^#IQWcs_s{;HdyL
z0z54Rju8K@8X}i|m_^klsweh^wt6POvm8yTeD}<3g3-5Y^Fetu0IRV8_5M_|r7@X&
zY6i#&P%FTjujl3lpbxMRyUim6c>(GKcqPEA0qO>LF@OjV=Li92m5#4y6FSwN(((KN
zq&H`Wj#odx%e2XA^`!u;vH>YG37=WNM(qML3eY&fmD2Gy0yGS8bfNlYfCd3tOv))f
zC8u1O&>B2DycJ;0Z1u@9@g@P924TFn2ryu(+AKhG2|7;5VYP0VIB84SfNf??%6TV1
zYc`-^1GEY7ZV*20{WQRP(r6z9_%Ohilhn2W-VeaIXea52soBII1^lnAtd9eHB0>8A
zH5Z4EXgNZM038Fgo0v`9x=g%JnK*H$0G(+NEvrj_zI9_g0(=(WyE1W>t`c;Uw7aA<
zMb7}e0`v}WtWK=2l&4RCKg+~t+^)@G`$-O0uz!GqO==Mg3@|9bYMLUz-~dAce9NH%
z3=J?WfEyqcV0eHp0we;MQm=FUGDid$89<XR;ZDmo0_gJ4!;{ojKju6;StT<W@UJ0M
zJAgy=rK!gx!?gDDWOeKGoONa51YQ6?z~}&D0{k{j4Fb%Wp+2`pO>;DQ{v>r2BXN~F
zXJhQkaXGBco}B&F|2(s7d~ATPxwvKG-vl7PLfLq?Me40G@$UotK$Qdh72wAJ;{yB=
zU}}Kz0e%WFDZu0a^sAp4dN1Wp;3BrpW_2RlOv`2&HZz;9#dlPu1mT-1EIi{(3oxA$
z(kBBHo2kwS@T-i$nE^^o4qvTVT|1X&H%8*@0Nf0){4T+LZ|43H{QrJ{*8V%dKLM5o
zSQg-4DjQ&7fJFi3N=wcQFh2laepsEKyC6XQk7F;FjhAnk->iPFw_KgxCVMgSKO=}Q
zgtW<SS2o^nu}YgPmwhLhSu3emfc|CUUzLrMmRzT<V(zLR;kvI4ur9!j05=1y53qsm
z5#V@$jm%~N_6ImXZw#;{!1e$;0<@3EHocfNyKH<bGr%f!TYyWi<sLp#duM=MjKlzY
z<$BR>tINiB2jNNWv4s)7<w6hK7vTHZVU}Q``+j21!2pK?UWFm|pUgu6*o@nrBV5FS
zSx327w6k8Fm`zN#;j02C0-OwRnZX<2RDjdW`2o%axH==7o4~4O))~3_1m^=>V7f4~
zE-^E|oO_Xp`mb=8!cs%zzG7tk@Ivn4vhk|{t_R^;G}kBwjrouI!rssWKU^QX72q~a
zmqzI{GSVoJM$t5irBN`A;^pEjh0@4OgL#$MU!fM3{5mgY6-k4XnifxoDUqX<Oo!>H
zL>jlJXZQUryHpy5{#98jm5Y~2qih=Yrcoh{a%tR^M)@@EN#o!fx$K*{NWD89zHIaE
zv>a|r7MIH7PJ?T@=%w8I(s(e9ifP=R#sldvb<e63i_cYSmWxkVu5zdJP#SNSi$Bcn
zujbMdM$A<!r}1bSZNJ3(U*fSes-!U^jhSgYp2ibtbWG#ZG^(aiEsgv%L>f<~p|E=z
zHPfh`hMGo=G@ef5sWc+gWofwITmFxll@3!@xvANtl=+!7+T`awmk!T;)~49A5@fW?
zc%GL4X=JC-rCgl5qhz@_&qTyIY1E>{(x}UkU&+l)qjoyX+b_r}?M5c6d6LQLUQB}?
z!cs4d<@bc%!emGqPosVsEz)S2#!G3uoW@&eG@|gwW3Qy~I=iPaTf|;X<2A{oY}``5
znMQ*&HqKHfl#BD_7Rt<|)G&>16GGfLjV5U{OXJ(N8EebMc@iOQn#S23YAhaWE>&Z*
zQ|01sr_m~nchh(;jd#*$oeuNWeKT`-T~O?<cpLhOp7qFG@ws|d+ce%!<D)d%bKQ5V
z_7b&S8Xri^ljDcdXYQLCMheTvX?&6fGahk{oz+2NZZ*m2lt$+?>@*yjG>y+FOd5mI
z=qjb^kw#Amx~0+mj+}gts8<>bMP9!&`lr!5jXr6#+pBWAzO>jBweotk<FDaddv>Zk
zsSQZu^K^L1i{2GKkrx}B#*j2drlF-VG>u_tjF8d}PveU;D(C0%MIfHn=!Xm+3d!7<
zelfDd$kP9hr|$rhqIlju1woM)k(_h9+uJ29d&eEHq-!!r5X=ICh>9SJs2C7Lk(_tJ
z?u4BU0s;yKk|H7o6ckWVP*4;QF#L=l2EKQS|9;QYPd#r}r|Rme>Ymw|S(;+6F7spl
zBT{58h+$z2i(=q&M~lTZcp#xIanBu4O)ZOIITap*8^ekiR>ok)5T~5g)T$U_F`U~Q
zn7b;EQH#c=#h}w-7lfD$0d$rGo#^d=74t8GUK!~7(P#UMZ4s3q8G{$Y3o)#VAr(V9
zhUa5g&ADtW%EXZ6T5Jz6ap6e$JS44j4eM+TtQE@B5i!rD>tomu^Pe((DTY(41GB36
z_WUBHt>$0KF%Z2ss`O==K@62NT&>|%nqLe@V>lMW<`}lb@L>#lW7rzQwiw=t;oTUv
z$MAX#J7ah&hBso^LHDH1#PHPdK;O56v|iGln~KO}EIo82u#2l1!)^%?d@_nU;q-S5
z?($v?@5k@~eRf?DV=q^BPYirWkAks6uS0>+ZwB_o@KFq((s^U}m}9*ZI1t0Z81@V1
zQ?=xL!hzNVK4F9r3*`0bp%^}o;YbW$a;81Ie8F`;5I7ve;q?Jt!TnTC9ljyR%M*ru
zrmtcky=r3d*D-t(!*4PC9>eh%zK!9B7=C1wi{V5J-^Xw|hLbVSa;U>o0vNK0IXa)v
zJ0k{sHU>)WKP~odpkj6P6XQd5)w{a-C5E2`GyA_7cy7G)@(B6AN~_zet3P7+lL1`A
z<r>b#aGt9c!#@mqHwNF|75GcS*M*pWd}3;_E%0v)|4He^nEymEJ7hrPu92r<+GpjT
z<|wE0%V{XDp`wN>HEgJ^uF&{CW~hROt~?}ER}9zb>w{Nmc(=M@oadu=+>UvwsjLAS
ziZm2!{3JWB(a=gmYYkO3T&tnJh6Wm{X{fHDmWJA_u)RYK4ZYVD)zrY?v+<PxH+PQC
zs8~lsUCj@?Tu>e->S>s}+dnA&Qe8FF&`3iQ4NW=Rnn2ynzEd~WFz5M_t81uMHB>VV
zEu<~g+nmEq^{+ko5MxWtKbLYRZKI*BhV~jdX!wg)#2N}U1T_?B2x$C{Wr*kYN$X4g
zOOy*~=vG6u)3EnYV9NgDQ8g63n7AV=za8K%Mneq??xZ22VM+}(uZCi5{QR9jXALD9
zuG277L#c)?8p<>%>X3bE=&qrM=3i?wMK#bMCw>^XtgM)qS3NcKqFOY#HPov$6t6e=
zRN-S=1Jeh0>7${qhW;7`Xz0g2zY6gD%!56(M?6r&APs{x&_q8k7ol>PDs2ofJB0Pu
z`Cyoa;TmqB!ZjSN;oJWR4cBY9P(zK>{FD4BjbGaF59CaBYpR<x+)Rb<2;8pW77e#*
z{8NnRZ5j@ITFmgyK6$1khj((`?-3fUVGQkXcaYmOPw(S2jMwnD#y^Y4of;-+cum7*
z4R>jns9~XoMH=qbaF2#ZG(4)|UJa8tx`wG5&U{*YAN5I9^yor7S@X{T1RS?xP4xiv
zP*Y9Q@DNq^cJM*X54Hr;shsx%4{La$rXskzrn-AfQJ2q3XJ~j#!_zbpt}jd3^Zw$e
zWY#<sJ*gp9Q_U1gz(;v!X_&3~QSrr^>Z_Lm<JJcTtPeaxBh>JmhG(gN;WSwv*!*^2
zo`wZvz8UCvWAFJI_>43Gv+vbZi#04^KN?nRSgK)}28YY4VY!AC8cYpw4J$RQ(x7WF
zH1L7mn1&ha0~*a^pZ|C*hhVn$7e#aT7c+abrb=l1rU7gXjjt*G>T5rSF#T53UrLIa
z)Zl6U;Uul0axIn8(6W~LYksIzpDyNGfecNKN?u>WfJR5)`Fsr*RQzb8h8Hxf)9|8(
zp0yNLaQmi`_0$!glKnccK>(Y)q=8R>GjWJb8eZ0L>_G7=jQ?Es^?@dPD=^EAl6Z@T
ztr`w$_(a1t4cj&B*6@yo*EPJM;Y|%YH9UBEWCx|)72w4S@oR_5zomg!F}pOp%?iD`
z?EWBdYb|AMC@MY>_<Cc>yBglpu%G5fC2S~qU&99)KGd*>A*EL_*N)7+vT*yv*{9V~
zyv$ivOMRr_W9q+_qF`KKt}IuOfwb1UflnDLG@RA&gN8%YKrMAx!w~_WYxsh(>sWxy
ze_jlHso^UP-)T5O-{Hh5Of7X>^KXgJ(Z1I3jfTamiw;Ho?8iF;Ed5pj7r{vlr!<_V
zwXY3uzISX1{M4(<_cWwxih#;IBSpL~`lE)QH2gv1tfhXIrTmpn)U(U~#4vslN8rhj
z?m*^mQuMpfuWPA4xdmuAulW}R?DGQS8(ngPzbBINJ|~&~Qp1cwI=bn&s3A{BV;xO&
zT&Cl49oOoprlXvW@;WN(fQ~D4RM2sij!HTz>fk*_20&hDFzQ~Z`<6y<weH7i-U{Y%
z=-S$fPy3Jmzz;rEbX=pO|M)y!)>+q=R@KqAw!gnr*HJ@9JstIR)YQRMrV{GvsHLN}
zj_$P;IdycLJy^`dD*|@K3iRj(IvTRW_k96ws_pxDBOMRd_8%i}s-u~Xj=U|eqq&Y2
z97{*Oj+Q!F>1d<-Zq-@`Uqx9~TfJUe5zt9_EkkQB&=JrP($P*wp^h!l;-C)R@a(#-
zgm}&70N*sB4DEGvkSTvwTk$45kL8?xCmj(TopqGxDAN7Qnd)^EFZOv#EY?AKuC^-G
z!JAHP>!`tX6loXTe-&ls+CY?()iGJe6dgTu^wcp*#|=7q>FBLvfR2G&oqd5a8MKe?
zU!*H8%9;Q{Umg9Z3Mrx(y!uXF?_WR-(lJ=aFdf5n4AF6&j-fiv_3y%+%gy*(;oqP8
z2c$dds1Z6!hXqG+aVHi(T1Q>4gLH8n|41``f8a(PH|ZG9Dd@Oa$1OT;({a0w)pZmP
zgw0<px>W~X%^+aUqjikcafgmEIyUy}LXY5ycO3Dk;4gL5j;{hc>!>g4s0oyLUEppV
z_vpAw$3)%VajMl-`E^y~xUb=RbxhK6pUiP+T{Wq$;`V)bPvE(_>V6$lbv&zMu8s$E
zJgDOd&Rxee9S_k4bUY%KM$2*Ps_8oRY$$rJR~IVeQ7*lX$D~hYAJ_5u%qXwKiGNI$
zyjxdM)R{VF>6oqiuO>aE`=@sTrf=%1r*+KHG4D(Nz9Ko#&<oN&c#cdRt8~P4%-69%
z$6_5zWH}b<_;P!>MS{D{DECiYMdM$pW0{VX!ld0ct*4gjSV1|t0j&uHkNWiFi3;87
zDNTni)hr$9EdfJETt`B%N#!gGU24LU4{vVsW+M-Q?9kPb)N#_lDFdF46fNICD+6gA
z86Af>YaLk~&+B+i$7Y&(|G;V;YbjFS0H1$YqvQDgyjZ>93py<Rx%}z;bvo7y-jL(G
zDBvZb8+B|F@UqZXgtFDE0;(>`+oEGD-K}=;$l2&N9ou#6(D9~@?}mq7*D<1=dPB$b
zJ&~c?il)?4Z|#Y^rj_gzVffqPTRL{>c$<+y#|Jt-WH>sL{|?>Zhx~Wxsuc^~y+1H;
zLf}2&yiXkpDA`iV3VU_z)A5mxk9B-=bHU4f3cA!S=zp=>ey&kH#q^1e137$9K(<N2
z(8dLyGKfi*&mpkd7dj5>_(#XTI*xEbPv;-k@hyRluXG%x5%v#!EtKGx4zHdfVETrR
zu%bLca!l|$9pCFX&7~O=JR$U?&{IPBWZfA?IeLMPUl<c6M1IimqmG{#2bz~L%Wow9
ztoz?y?l9iR^B)WTs`FdHILA25STsIz1OEa>#~(D&36TX}{-1Pte!#@ce~&Zu{Q7_C
zxIi6#*X?fx#t9LAZk_!w%jX~d(~)Q3G6NUs=~o0U{ltH{fp6-mDh94GP|om;q`Xjq
zD-2XH@K-%mQRtOIuM$dTB>`6ptt=Em*^rO#Ry9z^KwZOs5aL>))r3|zP(uLuH4W4<
zz$a9jKNP4f%;VDo^$gTE(9}RP0}X`PC|AFs;Xf;TVp|E@Ha5`2z#}UHOxM;|<TN+X
z!T{eKA%|}k@P!vXciP%O8v{u?h=H~S@(nz0;0Xf-1_A~K8W?1t&_K{Yk%3|ZA<o@E
zCj)m5473;8Q7E$=41RsR<nWiJk^OmL11;+-G9yyjRWP3;>TLMGS@$(iVxZJO7Xw`l
zbTbg8sKbLZwufpwUdV-*y1uZxfvg+)V^Fx>=wJ^6Jq-{r^%BtAKv|BX4D=B^=S*i-
z=x3n6f$Qt50S27<YO<uc_0?blLkvta@Q{J)3=B0e&cJvB!wd{JaEpOk4UAwz12-7B
z(ZEOp)oT@xVkezLFV|Nk9fIqx3mzF5B=aT%Hw&LkavmG%7yUXoc$<OI2F4h;ofGU3
zd}dmxWKeLd0hZojVB-Efaz3oD-k%og)i-#jfe8lgGceh}T`V<luL1J!Ht@qkp?eI>
z>l@_I-_=)l1WFHtN?A0?z(4gBdz&IPry6*GCe%RPFWF~ihgej#d-UZ+kq3pt$D-Od
zP}2>NK5F1$YNmlAeuQ&xpk@f3Vc;>te_~;|WS=xJ)4(DFiw#^`t=v7Ag`P4nixx6F
zFx$Yh2Id-g+Q1wNIoy9%hj#Uh0Y3gs@Em2H9hfh49-A!inR{0FuSYE~uu%9fG*HYk
zs4g+E%0P^%UT~>_Wd@cTd~n6jGOaXtWmH1YSNU1ZfNt=6n6L~O2HtL<zG<N1bj$|I
z6#7pCRkNWAG*mW?p`l`O1vpaq5@&Qnm16KW@VtT5>}_F?5iCO&9um25IzLO>Xs8I*
z7+7oI69b<bc&?#(!N3LsFB&MH4X)!-8qgXlCT3qUu+hLS4q;%EftTrh25L4^uNYX<
zP`%25`1gVh)v<;u+PU{@1~v<4i%=GAWi)802(}w|U6=)p)X+xi4FfwQ`)01@P62NT
zz2UCVZaSKQ_YLf!<D3t?%LQtr-V;2bks@Y4ABYTlrHRo<eMku#DS~~R??<H{3IAiE
z`-L75N?{HPXfUt$X9f-#{CFe2Gw`{AFAV>wm9GpxFdjB=M1WSye}d~v!2~-i1dbXw
zCfTor9_Q-hN*@guow+J-&lvyN>3J%2SC70CwEP}<%zkg+w1K-#++*U5fwPQMCR&>K
z!N8Byl7R~bell>bL-c<XgZ4Zu__G0bOCG_m^!-7B^9HVLtbQ}_yMaH1^HU>rPQaf+
z_cc=Fux7)?iZ%bHD>0;-sA}S0k+6b^iYESJ@HdcW;xZHEO<ZC6^S#_eIRXEy>CG$?
z0hyOD!IdViGBIdWF@#n!Q8+tTS@6|DnPutu4@x>rDPP6J<p)a0xz<EA6U|J2PpNLA
zhKU9y8k(qSqLzu;ChC~DcTq{Cu^QP}^<7X>*F-%N^-X+swrHwwmN!-}2>7tEYGm?D
z$R$mMHa5YcCQ_4?e`&0$H}QK2HBrq?kaEOUCR&^5X`+{jHYRBK?M$>c(bh!1i2@S=
zW`_lXCi*l{w>D9Q0;V@n%#t6H(xpvQ2NTHyfzBpMOmq~?Y}iDn9F7PmGEto4ytOJ+
zYNCsYsEO_-x|&$qq+B=Ce>))C#D61ThtQ)!dkCLQb4<D3CLX_{aD1)cjV8)WD2l}S
zniytcxQW?IO8S`?NQIl|FWCV?$v@Xb4Hi7a#C2TdB_(7s4W+7^s&-8kaY3!%2ou+v
zxIt=;6go;M>#)M0riyhY2)@b0%_eR!ajS_5ChjtEn~B>^+{tOG;?X9?n7;du7dqC&
zI01K<c(;9U=Gq`1P~;Nusnj`F=g*3^XOs1#i=S+&CQ=n=@~`~0v}Ui+4U0nenwVr_
zfr*7C?lUpj#0(RUnV4eYeiILwm~LXoj)Dp+3(EJ%o61>V9eBXRgC?e#{_791rfPjt
zMewkR`Q3w$ivAxFytHaLawr2A>v5X;nf!TThfkPz(!@+U#qiM6CguouO6V-ALco||
z0hT^v;{31x({m=CHL<&?B7d%lV@(yA#OInSKGQqj#I?<Qu*k$>6EB;1#l#X5OHKX(
z2QoDK+k(qXtTeHTMr&e)i4&KF+B8#43uAdP>ht4h=@mtm3C)B~Gi#;{28w1XZo)KC
z`B2gDW{M_}Ffpr{sy;SkHdD3<$Art79x7sUj}te+PFQVIGnJA)KWe7P$#PvxyeJx&
z^JlR7Ek&fOO{_8TQ!}+z=nE#uUniK%^#V2s&1>#I1pAVSjnV`0CR$*Vb_B1Qc+JH7
zCia-vY+{Rvx2Yu)TTN^;vEAe$)_;0%^2ofE>k0_oFtNkLP7`m@$Cnm-H@l!}bM+?O
zb4fw{m41a?Qop#lA|CKX!8<0-)(Fm9T<%?yS2v+5PnEB~s@!{m-_S!J&;e@&_nG*}
z#D`q9s-Zjkh4#|&tAy07;C0OvV;48psqD?fK@+Pjtg-NkiBC;DlE9-0d}iVh%`cAo
z;`rRe7bdF2aZMbDO&l@ti-})Nd}-n<6JMM7hLX1^ILbNZ2QC&C95ekB#enk_8a^C7
zZsJ=;bz1M}qVKr4CYJRHe6I3VG*>50oH9}OrBbF1&DHl*S95im^_#2znk(zR!n520
zO#DcZh6jJ9>IO%CVqk2cm?i$7@Ck}rsNYQd&e@r`DE*(SAN<3_pAw?aF@P|Vhl<YA
zSz0LWL8KQL;%Wu|W`J#>{-J)PLgD?r$*epuk{9>gr*a&K<FYs|kE2{1<>R<Aj;rFB
z)j~}$O0S5cLLBiHs$v{pv``mYD1K&Ya|>1SU~#25>a|q-UJCKmaojpNNbsOmu*NRv
zT)P6jzG@uT#xW$0>*A;uNA)-g;t0f1BaWJJG>oHB9JS)89mlbu{&rI*j=FISY+Za^
z@5qPS3hKqNd_*BTtRDxn4TKU5NfvZ$sT#-8ERN=J5I2dVsQ}{ZTdEduOmC@L$I&K^
zmV#Re<+V2XZ8^k_Kz<y%TB>C&)!LToNJ~|=w&=bu+7`yqDUL`SRnFuG;|K|8C$zoL
z4njK$4GZPr>fz>jMR63zF({77??*bvQ4)uW`<DQvLc7G#HICCicis3$*KTqA-cm93
z{<&*ZaQ7UiM;tu`_Y&GW$1kInUM#NEN;Pk#`mn23s;_k0FOL2K1_<SF0|lHP*L!f>
zzrn)C3@FdgIEKY>eH<g>{#6+DJUot}_ZN&{|Cu1)4dHttqvE(Bj$7jXUVkGUAr!nh
z?z=6)O>vB9<-f=A*Ym!6-Wtbkaoirq=s4~mXj3{yD8X0(m+m1jJ5I9WbES6*m>~2n
zp%de{J6C#-fP3TUP`#LKC&w`*j#F`bAIJT1OpW8EI5x)dKpYRoF*lCq;@EefWSR)M
z<)gfZxV~{b9LFPZJj031jNI2sJsQV~R%&(}GlWCtV*(x*`h?IYh0cuQDFLiAi@22{
zV0t=^IdO0!%d}FY<UA|Y9=p0|UL5n|u;Q@eSP;j;IF`{|<Ji$kEsA4F982T)td&|E
z$B_#`o;v<)rB+`E)@rTDr1!0eBNm57v)Ny~GLBVo^o>S|Q=gUUaTxTtIEJ@Y?OUsV
z7nBf~aZDN%xu>=I<++kX9OG8^p3_<lsugtNNXFsC;l|PaP5+omnu;SG$A<X-J^!B(
zus)6~8!ijeVxNy=b*^+x9BXs<1p(`X)@`1*;@&b=evwvjFhbDbk+My3yd1{|^u#z`
ziR0Bc-l8AH@md_48B7KQc|Eu#j;(RLK?`iHtk!B9o3vKj8CB*LlzXn=b;*+RX=}A3
zjyD+@+Nhmz^k}2Xe^GGPr$uessJCfdsqzEk1@E%Y8o}Lhyd$9Vp$N0@(SPFw?+d-9
zjoKq18}r}e*c-<;j9_Q-_r>v193RtcKB#aoj!)v)Pg9}sv{3`v71506wNamPfoSS+
z5FZlCB4Va(`+}rja2H@yoL_K6=$Asj5=!P#0mtI_TEGu$gJd3$<6ADou%OdMeJ9{V
z9Iv-g(=LmgWc+NSh)>6HCXT`cf(e|B;|E631nMX7V;n!l@n0Ml8Gf$|{7jiw2mhoR
zB|QEjzR5WGYaG7`=34(Q;18k6szvAGnASeXbUu#1;<ymU-@^GP$Dg{c{J(<l9us1<
zyaX;wVCkaXH50fzfpQ64n?SXM|7v{s1g=Q<udDOxAEbOcyFvmL6Sz{CR|%~ww35)P
zh4Q-x5Wpr?61YZi)f|VV%|G@(jBww=K=lM_B(UI_z$;G%4lVO<(bP(yb^>*zvT<v)
zZUTIjo{2dB`5=QcPjL+rXqZ5w1R5vMgbExM2qe%nfv2|@HA|p*0?ziLU)rdnBSYjc
zwMd|)l(rH|PHO>egtir$pFn|tE88koV4vNalnW)$E`hrfxJTr9qefuV%5eJxIwa6B
zfp7wy66l}60A?qZo7_Avl0XqhuM#Xy_%~6@66l;jNdl#b|GS^lGl4D%bWNaJ!r$e)
z3qP7GCFfQ<)I*B=n?DKkPJkTZwpGfJGAXItCxO1XR{aua8x62%U;={@xG{m75*RE3
zTu()fC>WCPeSzt^1cnM8CUm&a5klYCT#gk+N~=*qZxDK6VIC*KQ~J#b|E#|A@z5<4
zDS_J(xIKY!GTG50$r!<$`>Z2*V-vW8E3&g3vlNVAd;)hSFhOeGmB7RVSndBx+p0<x
zBgEXQ?oD7i<-Z~@DS`VEn4G|r1RhKvZ)?f@)MQ&Vq^)`&fvE}qg*YZ=FEL4{CGb!J
zW7{h72X8HL?<{*b;fKDNZPknf9!sFI1z31IfhQ8!oxnQ@Jek1E1YSsBT>?*0qy&~H
zup)uk3IEQ_+ywtf1p{9wemVi8t(ud-Gm?EafsJj|9&+jj<|QznzLNkC+k74Acw4m~
zfeURF)4~K630^F8NsiBIth|hVbWP;fRV6DE{tjy-U{Yh@;3^KCfF?M)C{L#+<|`%^
z#S=&*kWJuuCf=e?@PCuxB=GEI#r5Vz$#E0NaL{WCiIY;t6Pgm57Rvi7ZI2YQ!h#mT
z)tqvRV4DSb#B1n=ErM%>=I5*R32aDUTLRk?crk&OWKmw_#Kl@(p$+Hz*8-aoc$pF7
z{(>22@=1Fx4-Uy!uO+aV7BVNud2LBxYXZN%6C9VXX6CCcMTM_RS344TGl9Kbi{B8+
z`vWicEZWJjS_I!t;4OCBvuIbsKbI1aa_i*Fo9~j7z*h+zP2l|m_R!h2yu%56Ks&!C
zvNwT!^f)c=L$39>;Kon$K1$%@1U?Zn*iYeG6gsQR4kWOpdf_`yMGq!$RlnYcI`?Mw
zQ>pWrP}<C)1U?u1g;4F$0y2*z@X>_QFR9`D0F#!ljwSFlBcz227QRW~cmm(#tG_-i
z<saXCOB3x9xsbqj37kmaBqPHO`F)2)&L?n6@b?Lv7H}qk|0VDXcLB+=+7H|X1pk!d
z{G7n*eE*F7YXZL|@Mn(yJJtJf1@iw84*MrQC;0cK{-0(4#XvDE@>aeYJGc065$PYH
zl<nUH{>$Nu0`e?h=F5a$ZlRn2a>@(f3tV)}ik5!^<SGkOhJ~)Qa6VtH9Tuo$p=yD;
zn$-#vLEi#Z#lkffMp_ufA`91A=xU*xg=!Y6TL@d|WTA$InifJ9+F97#DUa4t%R+4n
zbu84i(8fYr3-v72x6q0`TPUki(7-|y3r#IFw9v>xttthLEgY^@z@o=n`m~u;J3P_H
zgGLlImuw3QEd^Ar<n!NaTJXx%1;Zy7T<BSlZ=t|Kp@oah3Pu<BCLQ3!`9$;&`PWr1
z2nwG?uXiu#a&LK-PQ1HwdkY;bd@-#vQ%3>6PU~E*R*>2*k8%+UMHY%JJW`-KTPU@l
z*DED15l;2Ckv4A^cj4^bE-r0U8nw{f!XOKSEkA(tu+Y;&FUt>r4;kfqTYlW`W1+8w
zjoeKvC;`NE`xNxE{ImT4p#=Ro=)qzFrh&p_c8G=RsNVj8>n#kmFm;=M8)UeJ<ppXO
zEp}_UPkt{YXM}|o$4XZh_&3TXEDzpb;YJHjTbM&hM3^TmaOb_*!YvkVwQ!q-2Q5sq
zaJ%IPqKQHYMq3yocuci|u@>$SJT6x{-ol-1ZikpA2)Ik8!|dG_?y<n1;qK+oy$U$N
zNs=Y!J^_<yZvyVm@uymNKrkz_+CvtmTX@vM3=0oi*jb<+vG7}gI$WT5RwU?sdE_yg
zif|sc{PQF^56uda^Q48D7M^0;hXS)K%%)vE?jJ=y?c1A^svPjo{Lff;)`DpvF8Z8n
zVU>lLh372HvoPPn0t-tlEVZ!ELW6)>WMQ%8U-~s^5h@O-K>;;R=rStb!b+*bYJA0V
z1q~peSncn>yE04sXh3O}zjN_tS>1xcf$9Y>{Wu#BsDuT}f^ESO^Wgcd<%J5I&WEp*
z&}>|~rv=Z#8v&J}eni@og*5GabZ;guaq*qypSQq^7Xmi_ETGm>R12TEIOJlTh4pk*
z2T=zbEWBvpAsf?eyu`(#^V+CkW0QrKEqrI;goRfuylUYi3m;o}jgD;LEepFWY_YJF
zVp!N=VVi{~Mi+0l@H$ofeS~<-$w=Yp$edFVcVgL_7GIDI?_?-A89BAYzc6`rbM&sc
zp|>sUw(!1%Jr>@fk31QAmkURoM?>!~4WBo{`<8_3>fv`viaxOLp@qE`_E}iFKk`>m
z(N*Z)dT{CY0rjmDWrt5b5Z!O#0JUo2D+>pC^T)!coU-&*=}d&fHLTM8kcH1_Bo>ZX
ze786Jg@uwO;mZouliQ=2<>433M!K8fukQ$cIjHm~E6}y)lpVM5HP03E%YWksC4a0B
zw@2A3b27rxZ@Cun;@XAkq=i!!E?D^6!uJ+VTlmGouNKZ&IBVf&IxID_H2i~wA1(Z3
zVZfHCwIqCOYIN%0Qg#@4J=%J6^t=;ow<9`vN$@udzgzgz!a0gDHL5QtJANSY2SdlW
zGHUWXgVMqv(}!mwb(e<!vao5XuhoAn{A=MV8<lMQ$H>M&XQRCB&oR%&Wi}4)3KkYB
zDsZe_bh+(YV7HawD{NG-akNqJN*fiK&UZV$w2V#43Kj90&Ax0`+o){g8XHw@fOVFH
ztJu)~3;z9G<k6E6g8Yj?(razpzbITydOp51{L|v_ZH20)jaoK(*yw4awv9SA0yYY5
z)U{F1Ml&1DZPd5Xz(yk*jcqiv@lc^!QmC#o!d*{A2)MXSY&`W~w5g3h_WPHpv=9o`
z!bVFQZEfV+V4YSrTH9!2V@;uAo#k7i6P^t1DpUj~Iv0&R6`8XnTwr7Vz|x}sf<YT0
z8xb2tHrm-}FB%Bj=wO3d%`OafwDDp|Bw$Btj0??L6)sn!VkaA%FSSu@qqB`t8(pYd
z8{G$%etRbJ%#vW(irzS|w5yG7HlpO)e6GVcrxPEQ99S7<g#%jn+Ka&>g{qg0-ZpNx
zG1^9%4P|4vjS)8b*yw9xkd47Mel1k}Z1lG=zy_5}w;IUGw?&!Ouke?<;EvKEHm<WV
zj6J*&9crWc*kZa{LxVp}MJV>xMd9TqBiGv)Y2zjvH`^Fx;|3e-=SFGrZb^g<s}3%0
zyWH>a7MszVKbVHgMT!QN6n(Gz%XgcsCZ{mQ##kHo*tplm9X9BLciNa>W1NlgGSjPr
z>R&5L0k|}G*_deKZW~9Ihd+yzQGv9&-(ulCkCsicaUbo(##9@VZA_sigNlCFJg5Q#
zOUqkPYU}|U4~n@?v+@2NWn5fNhvqb9N0g@iu#HDp%Fd}78#8Qd;9}W$%*Nw3bQ^|^
zCukBj7TQ?E8PRxb%(d~HjafEk+n8hH85>X24o~}GigTxzk+v!-(h|{UZ4h)_RYp3`
zM&8o!d>acm>)WCuf{JsY*Ia#Bh<38r#u6JVY^=1g)b_n{nT_RC@4(XYE5apP{XV~a
zqxkH~@G2WI3TcEj4!tBuCX2j9;j?y>(Z-|#ZKQ2vY$R-0HXIwSjdv!MjT>J^x3z74
zN-NCZkhJ01puMFyuM?3Q--uEzl!qaLqhxJ7Py4sAmi~S^!r@;3Be>eewt=O~7KdN3
zvChVN8(TL=H-8^_dwF=)nFvjE<>Iotg6bt38*RL8V>jc!jhETV#&#R8*m%{(W*b|$
zD9gjI(H^!$-|FfA+|0IHsn4LI6;W^GtUeui-NqX>-n6mPMo0H@>V)39gNw2(T;o{r
zTU?-^+9e`!?k5;{PevGu-?8zojgM{YxA7hq-Npy>L>qf-JaDX-Yw_@s@-(d~2O@iI
zaC6yb<0FO+E&S7iWmIP2*y0&~MmXgIHV)eO%*G)bpV;`6@nn0n#Uo%fipQ`<`rgTI
zpL4Nnez7@R;zTzs3x7YO?9ABWFKv9qDCeN6gQGT%+4$4OIU8Tw_{PRr8$Z}MPUYJ;
z$+kAWqrWT;pI{hS<Zo49KM-9SD581P8&vwejnmY2NfGh=o1@<@3!kCU#=>_Q;U8`M
zMDMoo8y(h-{%qraHh!_uuT#-J-4}1elc7i=`kEg8U4;LG<{eZtdxka6<+jt2^YlI&
zS2(EP-~xjZP1M0<4*s$6FC)K=i!{r7qU?tTcBdYuFCRV~Sr;hc5SKeB=b*gvfA<XC
zm0?bw=E2>z?u@dE4z6?n2b;D>uX1o|Tv;UtS3AC*DHyZdZ7Vx?FX#u@m=*1NGE&9C
znMGlm;<XN{IcV!3-$8W;H5@c_(8xhe2elm3bx@B&o{rRZP*xhLBbaW&#IEW);BYlB
z1RFT`HmGPY$0n6=e{bxdiGvmnS~_Uz`2N-0LFIT6n>2I$t?J*PqVe-w(aJ$<2VBiI
zjvuATWTNBTuqezS3LFF+L>v@3D0C2X(B44@2b4eLpq<0L$q(Jvn&Eh%-+4y|VF#TY
zEPp*ZMY^H}7=mbuEG>4>*+Hp;E)KsnRMFobCzq8tU^uN4QeD|<OO(R*SX4$(xGdb=
zK@W=U0xo(w=;a{kz;n=>s&FvX!2=GIgFX&!a&R-Ha?sDgP<HO1zk>k|20Iu+4Llef
z=wJ|+<Fe2fACx}6EIj{Uq=O#jk$_X?c5of_tcR(S;SLxoM>-hgV1$F~ImeLV7T-6d
zxFg))fHQq`OY}x6LH8BK?3j?c#lfu(?s72E!EFw1cW{S;aSld1Xj57=*70|`F^+#c
zV|{KzG;iatV4rz;;~m`TV1na^O8O=z&V%3nMd9wnk-Ht-<KR9AlO5bkJuE7l<lyt_
z6}P+*t+XOckr?f#ICwOq?svdo)n|O^^0N`%zE+c?4?39U;8_QA9X#Y<x`W3ZJmKJB
z8p)Z+BWy+O4KC%xXVBP;Fok){K_(WicCqt+i^78nDn998ri0lIo_6q*14@;;Cpyc)
zD^L3pt_-PmXCrf{`SGQzL+Tj^Yqmu>1s=?}%Fj8N=U|0{l@8`RSm0o>gC!0YI#@)t
zSkce#^N&fae>4`p|6pXPgJoQLhbQXjTOq}HHSApUc}Q(P8F|i*u5u7_U^<99&?x^K
z#X5atS(qVc!qTwefC1#dV`XfTa9}xb9DV~i%q9LQq-^n4p4q5&H|Mz(+NqR-w1a~V
zKH;n#WF2g$4jnx2V6}sd^kUA)!CD9FdDM6Cf`fJR*0II!IZ<kW#@VEuzn#6vwR<we
z)qIIQ(oPMUR7Ok<yi7$o*y><xwdku3UURV7!4`5Bg>UE{;;zAC$^TCJyXU4y%NPx|
zIpA8*NjbYW9PDtg+rc{y-gL0j;mg<Iw;j+p-{QiZjqIXU4@P)k;K7VVv;-c}-(_rZ
zu$S84^d0PR@XZW-=->nDe{d;%kb4IK4}m<TjCno!k%NyN9AL~b!~1Ea3(L}nBQKta
zu;$Qqih%n6)WK&Ces}PPgG01E2j4k3!C>OxFyp*~V-Ai`s}8=RNSplQ$E}ef?u<Mo
zu3pxgf$?jK;ovw|O|-}PR;GrFikJp34O5x#o`{@ew4@PkkDj5uO)2}H;ci>>v{Ym0
z{&#73<Dk;^b3<nx{6Hf)8{u;Q=-?+=cjBKN{4a-paqz3)--NOiEBxu;9R171WiHM;
z_>0k=%4GZ}T^jzIc0Q<-`{N@4f8lsesIa1pG2uT47a2n?bmJEASRzW_yxc`O7ZqGo
zbo~=%9qt7#u5eN5zA|p^jAO?3=#?(6a{Wkhwaah7hAX-LM!@VrbU$#fAM^X&QC7vp
zH7=&OxZg!p7uUMz<)XKXYA!c5<hv+vQNu+|7mZvrc2UbkZ5MUet?LJnPbQRA7+CJd
zBawP8>bq#@`uowH?G)p~eOkDI3)1(hMM>|T6l&t4sf!jaTDpE5Tev*j%tdq8zZRew
z&zKtJLbP(x+C>}JH?!_j%V>mjrBC+ewROSmer7x09|JB5T@<+}b`f+Da(O;Mn0>lv
z@1lc?4b6iLS$UJ9bZ72pE8F?oTqpM6L}{N9mtXbq&+|M=k>A-x2{|sJE=r|N7Z+V!
zytc$Q33F9=cV6haGZC)-oK<DrUG!k^cfpDC%IKfJ{DCMcx0^B-%EgT?ZgSDbMPC;~
zT?}*4&qaS116>SqvA&&Rhfh3PHb4~hPCLb8z+e|cTwEs{UaA})=U;~GJ{ut&?t*e&
z?_#8j5mb1EiWHc^ZIp`}SkzAadN}fHUWlXfw*1EzgEzal#l@X2Cb+oO#ceLey12u|
z?X(snJle$=mY$7J2@D$a!9Uw6+Jo8=9Ve?WUS!xMn;pIKE*BGN0~dq$xwzZKJrvRi
zPjYcDvy(zq+N-%+qa2r*Qt@JwqE2@GYaH$=Q(ZjZ!g67|c+kZ(7js-Z<KiI~(_K8_
z;z<_|yLiOKV=e}qjU>)R+O$`Xx|rdD=G0<Um_ha7#o@=9-4>-)QyVi~JmvbQ<ykIX
zSz5*z)vdjv0JB{@?fTw2ianf+@Z$Pe7js=KcCmy?b1~1wLKll%P(_p4tNAV#$V_Lo
zS6kx6m+N7zz2Xs_fop6cy41xo7pq*vTr3wQuW+%F;|?n26*}k00|u|N?w?rpT6?9r
zFkF}}blUcV{slfy7v=9Ri@QkBCaq|PEm67&!N(NUh3jIQi|sCwE<D-;ZPi7}McTz`
z7i(N(sFOfZ*2VKK-&75|o1<G-hIztg58O-{rPsQ6f%bn}ly?jmgx5(m?*6R&qKlWP
z85gh8%T|Rqy8O~Y_+|P&h1~9+>dB-$j~<D<=3=vpEiSgY;N`}d_Ufz_rXC6wm(@A#
z8{W~9$m=fNaIuG-xY*(1O&7aeyyIf0i?>|7P18EzZyCE>Tx_p+ZP-+<lFp4UE4L;3
zF8zoKw4%HmQ_I5akjItxT|QP9uH8X>=wh#n{Voo;{z-#AzR$%+l=+n3p>N5IX@?_2
zR)i1I(Oi7$f|rwzSLx1kV8;^?+U>+M5iZ2%F1~Q#B;h7;*u@cgSrUVi_|nB!E}A9L
zJc*+&j=A`OR>Y-r@r{e`7$t@U#|#f1r#lP}_E=Q<t$@M~s;q-LA*CnjJ{|n$2~WBB
zUO2?3U7QhoR%qGh{&Su`x%ioZH;D>K{LjTNF8*R5nh=`SLH$az@1V|efdu?6l$<{V
z{ORIcjx)c5%3fE>q6^aV-!uam{T~<qy7-S87JgpRmz=4c41HM=mnTt<bKL7oQeH~`
z`8`TpF^MaasF6g?B(4(vmmO3U0hNSaokV2;tc)bymf?u6Nup|wf31LOLaPhqqph`)
z_`QRw+)*`1qIS|(V4Yn3x=GZ_;rarcEqM)-XwlKvWTPY+=SrIhXqv0jB8iqslq6A_
zM5`oPCy}2-K@wf0VH>H|Hi_T<>%@LCZ}bibr&wrV5<vkWp`DUwCxA8E3+N!UV-jHj
zmvj}$)hWs`Z|$f$Co!#~THH}}Nup~KAO6#+e-ho2h*Gdv@19Al>8Lp0lZ#8cC;2~d
zr9FhcB|`R+etIWSmV^>~SonPe_Z8ZYrLu4XIG2u!>F3i$gOeD-ag%r`iR+RWn#5>o
zRq78*VpI}0Br!aR5nRWxx}K7R)$p()9x2Li5>_`RaZ?hD!|FB~{Ix|lC-KGP(5*?_
zA{C~GeVK!A_GZ!TNq+J)xH_!f4y&<A+>yl8BtGb*#w9U6iF=Z`H;Frwn2<zas`&0C
zPKVW9No+n<G?8Z3$^Xb+#qpu(rNxaqsji*Wq$KW3;*n13{v;;LSW}XC@Av5SofMfX
zJE@8Pb>h(LI;n3usRxpHFbRTloqTzwC-HC+3zJyH9+G%8iCIa^PGUw9k0o)<$)cG_
zJe~w1>WL(tq<KVCG@^Q*EE*Y6u@%87l6@+Pc@g#2xo%G<F^4#b`AIyJ#Is4<SiR`E
zBo0mqajaBC%@y(XR*US6s7@<`RK=wGLq{TNK@y~_vp9(*Nvud>WfDud;=&wSq?Sp;
z<w=~2sB4Q<L6KUOL@Wt2i8#Z~l#rH$K?zp`bt<q(%`Q^Y!=-<mEOBDN1gjM(D+xP^
zEz3f$7pWsf>dzuorC3qD$t1ia&LnX*iBuA4`d|{flgK2IO=4pbn`G#N??s+ZVs#Qf
zuMDn9Vto=Dl31I>3&P=QuA|Eot1iWg6-E`SDaGo=BwnKB6#MH%`fRa!If+-2*q+4e
z^sLg5Q><Q1;x(?U2*&q-w-F?<wODPvM2i)xohVi;dLxM))Jb0Ctt8$|;_qU$ld??>
z?O745-dR<;*eSoW+9ig^IkMV2NxYlHp(H-1F(mPR5)1;LB(aB<Mj1M*1N5vU_9pRB
z5+5^MPb?kKS?!a_j_>TR#eV8jfYVuVy~tsmgS6_->fe{6pECY*R-Xw?pD3POx9AH7
zf5!YIzDnZTb$)oHBuB)C363UlEQ#-uIFUr967@BWFp1-W&5t52N>sE&jVe*!Qe!3R
z;SzN+iBs&VM14<_C{e3RRL!SCyM&&WR_y<WBz{byx`!Gb{wh&F(VZy|?Y30?%w0f0
zeyRFJz^^hj7X6XLpX|ZI)gI0zaXyKQN#wDIBrYWJPZIx1{3+Yfn^EX*QR(!?#k9}I
zr-uHMq7G9-pZwS9G7pz~xWYpP59K`H<(bNR@P?Fjof6vfX7BM+Llr$->EWteX}zf-
z)?q0rODlVThig54-XvJX<82&ORp_my>Kf0F9^_9eRSQa0HK~&-RfTyGPP}2$qM9CR
zd8qB74m<bI!b4pT^*l83aJ*F2_t3!e4T%=s(DR+Ek%z_}o<CVaXC%G3jxX)@Qq|PM
zzon`fd+VYI222RG^w7#fz~jAz($*fR_O>4KJ%1J2cnEb-1O*=Yc2N&^Q7gNs(OuO3
z3f&7me-B~`dRX5@z1Kyx_t3$^iUw6yHmK6kL)gQrV~8C?Cl3)1vE9&iqsT+ChbK1S
z$xZ0&p@eBIN|`)#@vts~^%->a(9J{l6ndl(CGc>;!`~FoLr)K{czD%AFAu#vJmTR|
zD$s-S{7-q0_0WfMdbq*EjUM`W=<i{uhhZKDco^v6^~X!E^DxN6U`{z+eu#&!yQn|A
zDDp|!L$l8!mAm?2I49m!?fJTRg!D{sy@!z=MscjJYP8fLVEvms-0WdAMH&&j#lx*q
z|27XSdZ?>f)z$w8gxiI=PU`ROs>XOY+ExADRo&rXoQLrq?(}f4he;kLc(}{M-5&0t
zxpwm<VVcOL6wI!er7)!Td6?|sK@ZbBOp*Rsf2xQ31+zkFH}wFg-%Z`wO_8$nArB8r
z>2&G*F<~yxjWWZ-A`go_Jm%qXu91f)J<Rd&jE9*Xp7Jo;!<ugDt4||;JQJCf8-<wZ
zX%Ck;&w7~aVV;Ni9>{;r!^*FV4|P*JyD4Ug7f8c}LVu8<+2IloOX)`*QXZChSWav4
zpwX7-r2Inr@Zc);BbYCSFk2z&zZIf;Fz6;8To0y)xCe_SNB4~SdJBA0oZu=*O;)x&
zJbQUD0aH@Csv9p)9F3~9hm41{9$xT}m7>+`a7?-9Db?`cs9X<gJlrRE9Sz>Y%TjZL
zhZjA(<YA*^IrRKo{Y^5*5zj`}3FrN&dT?#|*F0?Y@QoC0p~HIkMDR8b+daJJ;eA>u
zIUaU;c+0~M4{wSl38=kqqrMvdiK<;5-WL9D;geajyDIGN^WX9Ct`w2UKj7Ho;R6pJ
zd)QBx>8?KXu-C&r8T9NeMYncWAF+q-iuj@KzTOUa{5#R2gOsGZ+SpxHx;;p6qPzOk
z!)G22dHCGJmma=iyz+3dyE@EhLw6eytkFY}=J!zd+#c-FLs4}%_E1MX9HV{qP+wF3
zJrn^GM>+1{TMyrPIN{+Z4?lZ2>EV=zGaTK+_a07rSoqEVtryo~{WB3R7CCkg^@9hl
z=8sZ=3TG=8{m;Xn4DTL(@$jpM-#q+IB}ftfri3FhQ6%<5O2c52^FsNTC4X^2pYiMb
z!`R4(nnKf*A5Z=hE!9flqK7=;T$aKWDO5<|@)XLYP(FoMd-yBD%KT%LeLYmg6s}C6
zN($Gc{0MMW3RkC4IfY8nod2=Hnn>XUwIrR-v`fjUn)0K^wJB6f;X)5pwWq3{LX8w^
zrf?}}wCL%_sLnn8=2UWR>8*~?x+&C4p?(StQfQPy;}jaEK%bh}Q&F~|J$;A0<ZiQi
zDjG?%6q={d>5@Dt->BNB&>@AEDYQzVbqZ}#C`ciYLR*>R%hE%B3WhZ2WD8RWrVvV@
zoeV_p{zL?$Y(Mr?%u+MN9aG4BQydn2c`sG3mv3Vc$rhzhETD4=r73ht`R-Pd!um1(
zzs7V;`KuEZ+D)pF>Dz#$p43$eKcw+v8og5}OQCBT-O^Ag^hx3U6!xUhH-&yFEKXrb
z3jI?Ukiy+5+>^q<l>a2*Z9)g7Fj&Bl6h;bQ(RC>d6+A4*87^Q%3fJd29eSxzIedeF
z8&kMRz|BH$5qhi8ORa8C@i}dz69r?0`S^_?jx|>B9Vv_xK+gCS?#$r{0`5v-qJX}=
z{MUT$O<__B52Y|Y<-h3BWLd#|DNL3M`w#ms9ZV5?ztE{dA4uUr0n>!C&fpI#kUpHk
zQz^_6<|8RQnk$`=!efFT7y3kw|6~d?b9m_Ha<g;zIRQ@#os+^dIsUUL%+2A0&lb!R
zJU_=-kitU2i*g)RUYf$P6kbf>r4*K@u!6lUElATuxo|5Antb9vEx9U%m^9H+uySp6
z0S2uo$B7F_2p!Q&**U(Gf-5+g<9I2g1YfG0$?>x(JTG{)&^1EW3VlK7I-wM4eF__L
z`2C~)Dr}VO%PDM1VgBrbZTkyIUtz3B;Wa7Rm8-uwg)J#;mFza5ZwlQm^mQ7)fE_{~
zxU)Pv-zk{jtrRYC-WJYoq3`5M-xctlP@2#OG#CblG@7KbH-&vE{FuT|Qu<K}hf?@l
z@W&~PUstf7Sh5`DU<#iI{xrw=j1#%O9E-kS!?^`qqpwpqETu<;ekt^;T>Ya0j^$dh
z;WsH97v{G@zhgWUa59Cn0$AsifbUZ{E#Qn$8WM|s5KMz1{yByJF-)aVK8;_5L*`#8
z{F=kR3HV*;A1VAP;9LslQ~3Yp!6p}k|F=+P|4HHB9R5$h#T4?={)m?ey<8}>zduuO
zMH&^-Xe6A9X<R9wRvK3csG6%;Nx;=YD+@&$RRmlkl)ZJ^T<+Q&u9il1!8L@|6uM)3
zF{{-UTt_Igbp_N*qkfLlAdQBCFF8BwRQN8~G>v9y6s1v|M)NdUq!E-lEpx4CrL5U1
zjn=|xBebp1e4zzG143D|Pyme~ltw$j?S+n(VAVlz$27tMIth&kWdLFG&VozQC>8L>
zRTa9Vp?_O&bg3@}!Hixinnw3DHm0#DjUH+AOykKkW=j2DY22E|ZQKRYC}aFjqmS@M
z3hkT5bpqH`zcl&_9w2m}&_TJ<!D$Q;e7#6DRPeA|>F_j0Tq@0RE>#;P*&EWhF~`3t
zjhl1$76F`QgCT{tr!gsw`-C%E=oq16h2D|IxHQHKzB7$`1W@J)0`3wzQRv-i7+w60
z<KA4I6}$aMf+wf(kZ`8t`1hwVHHRNa<G~!Bmc}LFr{_2i3wT86qiM_#@K~<&@id+g
ze5ut_Y0Q$Wo5t)ko)-L!&^bc)*#*Bv@^-B#cs7l>X*`$4yfic^nlF^nE)%dIjfDah
z<@k%!Sdzm_b8@o&a$&9zx-yMb0%EzEv0h3SYzQ@l#&e|!0hUlZ4MzZ*u-jy=jwc``
zG@V8!jjZ73(^#LYvs%C!p=*V{kj6RzRilOMjcG#~FA9hFrCia=X}prg7ik<$<JB}?
zOXDLc+MLFgH2;1MuS<5#hP<u0w%ZuW7Wnqh^hO%*34e#sH-+vL`j*gLLRs_eG<FMq
zN9emkH^@v``o3iMr161(4~3GyH;sLQFZm-mAE&WDS9&0ggE{<(fKP>fmd2qR|8oJm
zWuPNze3i!0G`>vZcrW#jFpo)vZ-jm=^mH#@W5)%5E0o#q1e_3hGL2I?{`YB|&fzlx
z&T^*G^G|8~%-E7arwsnb;Lm88L5&Q4P2;yTuE?N52EV8AM;aHT;h$+F_f<GA_*||}
zhMK=}_=*+2+W$`DpB(330sp0OQ9xeCkN-@UWpH^8m&>4h4p$$US22StC5sHM%JC~@
zaOuc*bq19)sNUPRz^(`WZ<VWLaE;V#_<3p746e<9pqkJ~Z$(@)gIXB`GAPWTb_S#W
zC}@&FQ)yBsgSr{iGyJaVWl*2ZmlQO()LU-!MgkfOtu@k*7|k+ho-5`1<}CzYm|f6P
zKr5lGg|^9{tpK*l7f_JF5C8hZ1tlBGpq+rqT0wgO4WBBQI=7&MU{>px!62D$B!i+1
z9?f7z2E`e4&Y*V&Wf_!6&7ML_g?7nc;w2SHwp#{K0o{eN&mI|241!)cPNls;l|i2j
z#tWx!2K@xwnnC{z24paEPr>jEp6;!#%=*F)l+r;$2WK!u0QuKtFf@mU39v+x5rVH5
zI#TGU3~ms>RyPW`N$AZ&Z^__N!`pIoZs)=Y9+TsY&EO8f<AnB-rMWYM2^ri)4P<b?
z@bAvxiSEA3+>^np8wxh{R`&{jlF<8vvUG9=Qv~y1!|YVS4+wow=ro}Z31x-p0v^ub
z5doK4Jw`*#z|O!C<`Wq_m%+RYo|NoNp-%~&C6xWl7VxytIYOVw;MrX1TmhWg{2XUx
z1`7l)6uKzKUo2or21|3CWdfE9T_N<+ad%Y)G0AE|DT6M+5Nc)+&+!vn1;Ibad3B#G
zrJF%A15fyCGk76`l;E_`j8OKO74Uopt8<(+0xoqmYGmHu*ZZ!tA%hn)*!n!SJ&%_%
z*qFieEFR8cQwA?*5Xz!m7O!yO=rtMqn89lqY|h}r4EAQQC4&>a)ms_tVh<T?%V2v3
zuV=6$gEuqyx3_wOJ;Z{w%2btQq5t)Z{<5%?cinf=YnGJmdZRag2;iOJw=>wC!8@#3
zrug&6yBWNf!TTBP$v{a%-r!}c59k_YicQ$?i84jJFN2RVIGVw+3_i|ae+Gv#_?&ah
z;9v%yWbmmB#I|kf7IAbAs+XzHGN3RVcVn6QB7?&;&b7V2%-~1{n_lnDUmQLxQv_X3
z6@QiS?+^0_np0)!>kPih;5*Kj(XwfgJuY;d60Qh-E4{J9%al5q!70g}7WzHic0y><
zsUnUwrh4QIqnuKml{zbYiu6+kKWBg}s$}uM41Qru&Z1n_@AlUW{>b3Z41SYQeiuqU
zXK^lr^BI^*U6#dPbbO`qvY1-Eh~R=`|IXka0sjj9Pbf<-(kqoBm~mxfmQwsNjz7|s
z&*F+KDrIqX78NMTvQR~#FDpeoUzx>KS$wGcb$Pf!5lg=per3wpM{!c*T$4rBEE;Cf
zD2r>e{*?KvN`oxw^-<NbsGdcQtpC$<$3CiN7PYddEm?BvWl=|P-K?)?a;W_J!nyPv
zr2GZFk2WZ3oJEr?T4vEIiy?i~#6GHN7R|Dl)kihYqJ>CH*_h?fl*jC&T4(WcAJvA!
z-yh;{vh2BS7WvY1L2mSbfWj<-0%qUon?(C8I%IL1a5`oY&SFp&gR|(AMI?*vS@g)F
zDC_^s(ItznSrli{Ig8WNqa|6~SR+zO99Db#_!{P7u|uxc(dv<ISwy8zisz3qEZ8%P
zvMf{<y@Y?VkLsNTDU14K@oyj1H;aB*@HeTNeO3Fusy`K*#Xwf>tNQd+clA}z34d*0
zH6)AcvKX1gs4RwN`S*hSzr5hk&+~?5F<k185PH4PUDAr9+(1$Ls+-B=FaG`1jal3z
zxJf@>hFh|@HH%Nih4?F2=YDELKXrQ+qq$63jLl+77WZdyM;7C<SXEklPZr~|xHF5p
zvY42~1X^Q1wX>gZKlA&klz_wi6kX<S8G?$sH;YNq_P#783t&Iw|JF|tOwHnfEFR3F
za(};7sDHHol@S68HcfhXhz8K#m-CS<9?jy<EY4*yBa6ql?hIB^=kY9zEX*vP$l}Q?
zW@hme2cmvxIa$n>I*YS-TEM(4O8TogIXiqtn9pW0R{#fkP5^&`AKqWh7rY>gg}Ks2
z0%){LD7FZ;G>c`q(&YkHWU(^G;e!MV`YSC9UDj*EilE1zX#4xWz{aykWRcC{`7Ep~
z-s!L0ERr-crEH-NHCDHXA;{yDuZ*N6T%-ga>+c(0MjZBhf5ji)S7)&%ix*|wwL;fr
z@&B0m4k#&#=l@fp!bb!F35p7Wa&xywygLu!h^>-y&N=6(qGCcpBqIt&l-rrz2|K$x
zvxtHMf+PbXD1r!xikJw30_y)Wb>IEH|9k!FeY(23y1KfmdTwv;#wr4x85K&O+eP3>
zX&r)sKv1cJYTH4@is14JD8j%FYIcXf)yq35uLwR(D#ETJq>8Yq2-`Tf2=9swTX<89
z$=O_l_lm$HTh+6f-a)-D$_e<}*sVqQpa>rp1;1_NFY+k7t%KT8gkv4lM?Az1ieS;|
z5Pvg1t76{AMc7@0AB*r4l^0=e5snn$n<CWtuj#%bd{Tr@i?F{46*?+<k4%RBXGQp2
zPVlxRZR>Yb2h!gDLcl?xUl!p|nt!+mUkUy?&0)<y%9yE?`-A8?CYarCi*Q`<cS293
z`6rp7g1;AfI?X?^A-_#Wb+T)TGe!8h2)`ELw;~MasLl%gh2h;%E$*l;U2R&_QT@*1
zUxaTvstZy>co64`aGt*Es8~AKSbi@S;ZLb%Ozpor2FLLii+>U3hw)e#SBh}82+hK{
zKa6Xv9!0n<jN8Nbw+R0g0b$$}Mn)Ldg;63LRN4Wj^Pirddwm#{I;rX}1-}3-8Ah3A
z`K5#slr9EB%L=_g=#62N6Hs0#B}1K5g)koIq;3wQVmSD&0&%5qP*tjhQ9X=X1hZQ?
zj4Fbwra8BU|M&my#&=Sy+6P}fsv$!))BIXt+!4mTVbmA?okH)DEj-yt)ed8QCsl{L
zu9|mu7<I#_m)3kwTEmV`fv+;d(85@`Jf|RxtT3{}xY$WG5#ghqR46?wM?eEo0gZ$<
z7D^>d4brAz<fb`!VdM+GFU=|6S!H%s?K`XHVYCRNZy5b#s4$EN!+0o+mSMCKPHUlU
zgpTU0+6tilb^;V#n&uQ=h3&)WE}RbH<c{KmPQvLNMwc+UrscZ{D4uot=@LDp+cQ1d
zD~#S@^pP&BQ1LgK`iC(fj7eck4r8DU4GLp$_<uJetr{ZCkzouKFia@<!v%~Gx_DiQ
zQEC2Y0b{}#o92uQV|*G<2xFq)T2+EC222q=D~#D;OqG32OG{1{Fhl4}p~d@}6Gmi8
zvvr--+%TT(EEj={J{-m)0v;90FFa8H<6%6((+^{nC|?l9qA(V7Vi->e=jkw>4P&9;
zXTnHyR{d7wJSSbI#`6NY?`=c8ud{j~9DMWP#W0qJu_TPsoz*{`Rh2HmS51~Nv?}E-
zCzUSo3gJ+Gbr@^HC<-GS#!F$W4db;iUJs*P7xi)&>qO_EF6xyqW_3}NUmwP+96g=4
ztcx17G&JmV!5a+PM(V9FHZZo+wuQT>x5IcR%%`Bdjl%pumJagbzowIG=ILP=VWec}
zt1c=MMl=jFj6b@lvR#!W_S+2OuIkRN!4}vY>Bhov1;m9?AR!<bh9|%mN_h@#V)%7c
zW4o%?zR!CvjQ7L%S;tu&Tf*4N;MCDo#|L42$m*e^ypC;QY!BmmuFkXQn7t#6Jz?w>
z{1FS+0&Qm)yTbT5j1wPgPjpo+eh%#x{;6-ZePQem<Et>f4&#$BJ`LlGFb>kCT@^pO
z_$-Xixxucg{6XzN7%%M8)*K2oS*3kRnbz5dSxIb--9up{mudw|wSV_&p*Gn^!uTeP
z-(J*ChH*5^SC(tvhH;$n-zNJQYvxnh$A?0k_#N#L4aDb{XjJ}a&%#qOk#o7w4`KYs
z3LNGesI{NMI1|P%Vf-2fKce|Lj6YXsX9a(9A^3cFcUSdW7{BvaIm8nQ<6Ic$Io;M)
zHqAKRRq?kHWt|Mt3smK6*~_$32Sb;__$!RR*}AIBLZ1n1SHif;+}WE!X3%{`o7gC?
zbL;GXcm;&<AB(?^8+3f@YS-zwUPoyiWptF#`8pM?q>fSoIHhLi>{m{P$RsGs6I`sd
zI1}31Huqg4;M}O=%AQb<^BOtOag&ZlIvVS!pyOs8cj~xHM@1c#bX3t%RmUwldRkh=
zZYpn!Mo?MDniT=KRYx@)HFeykqq+``_IW|8!MV#c;(xDb<riwV>!_vU4juP)Q_Eh^
z20o{~x<s4!yk-o@;fGEwyQ$hb?%}8o;yOC+)=^jIKb+C(=~($=ATXa_CFrK=>&Vm*
z(vhR%<K>#BBTMH?BD89IL%-_5y4eiKg#l=<YYlWX)bYfO40ii=Q(TclQx9rQblj(-
zKu1#@?6Tzw$kUN8;KIHTnay<Euj4@-59w&GqlJ#vI@;(c)UhD0wbao{$3aKyx<c#s
zl13Y-od4yrt&Vowg{LXbI-v2BXUgy&Bt9Ta%J4%i%D3mKt=2l~=pfoAy%5apq@%Og
z|C^(I;A!)_sct&D>xk+wb@ZVBDXim39ldn))-gioKNAb`tB;O>ItJ<JtD~Qe{#0^M
zBfm{S#sCo@p0QFJtYZjcBatyo$57!jAM2(iDKlKhw1`ILC>^79OxO9+F^thMR>veA
zlSS<~9piOO(D8tqk+WNSY=xF;p8ck+P1JGexOVXqZHkVypNIb5n=y^f)bZ<1ZA~{t
z+Vd~%xntT)9kX;iqT^8=vvthTF;B<CI_B!A{G!Iz@4js3P>9s(rh2c)FY}kSlc%ra
zF&?FkSG#4`Td6(HbNNiW`LodFPeYtSO!}10xA)>DuFgH`cvi;?I+o~IsN>uz?KvIK
zGi8=*)fa26E^3Q(EY@*sh4#}1jiUtQzo_$7AYeMLq_?+e%XBQ)v4W0Wsj>TQgZuf9
zOeuL`y|zlnYMH)94?fzWD$0!9puMc)6&<hZctgiJJ^1zdiEe7WNK((MJm1#Y<h&*s
zYVX$G)bW;%jXH{SY|!zx4yNs2-PCO>^GV+k<+ZnH#9<wzx(<VR^j)Y{>+A^EIvJu8
zXHOu&jJ9;xOb4C+d<>3`7^}374|TY*t}isMBcUTHn8tWw8vz>^O6l07<6Rw_b-d4l
zuY*i3@g6nr4ghNr?cXYVu1ieLHXYl!i>ul`9XoV<q+>6Sc(t}u4~pb2rmBt_-POMj
zW?x;M)u_ALtz(bmFEO*Y-rL%gceN`^wf%HHE6MrX2fM4iEwVq=ap7%k^+xT0jxQJ|
zA89`@<8*wf<AjcrIu7YLO#6API=+&4rpyr?UkhHhGf07NbR1>a@6^UF4Z0)tXvbyr
zI~^U*YHZoFGdOEoqdbnD(s5cw7Z+rIF9LODXPjH5WzEibYPa^IaDLKpMr5dpntx%0
zGffQ4H1L~_-&vpxXa@dZ)Ul`<s9@kcH=^TT9slXU{diHwwQse*=^W`^(s7xGD>`Yz
z*E_VK-4(^I=(sA9*L3{D9O<q&Yoej8>#m413|wcRtbrR0>^@p}y@8SjN*Sp0yH>)$
zrQdVOe80OYZJ^#8{3m!?83XJd?yg7~|4f7%4e;9<<qVWJ_;wOp>#nNwP}eWl2%KR#
zHyfyEpr(P_3{*03i-GC}-tD2Xd#K6=sv5Y}K${+_iUD%^_E6OfOz)vK^iY2u)(D>K
zp}y#$Y8d#vhbq%k-EN>3Z8LDU!GCV1?lAZut=%cOaZkmPc$b0N!X&>#Pc^2es%xOt
zSK2)Wi0cV`x~IBVnDq^;>#5lMo+^t580cf5uYr((99m_dt$_vx8XCwmkZ+)ofyM@M
z4V*q)_~z$Y69Z4z&2MVpi=K)c;<G(f&hZfOee`N>b~6L_8z?YPqL)(dX;)Qta|105
zv@{TDnq6q%rMOnJm&)&@2(CLEYGt6cf$qK3yYFb^kl)VWo1xL!Ko<iK7<kY?2Ll}q
z*sp0185q|~wKp*TlE&ZEKiNxVG|%p2;GJG7a~&UtwD)_dgS}K&1KkYtGVtmzT5iMq
z?gn}q*!WO(4+FeCd4o`xe*3MLdbNK}Zv!LthAQ<|{S5RsFq-Z%Fo2Q<9zPHoN_QRB
z1{vVd3^6cRx&^&euikuLd~jaF3=F3R1JCqUqYOMB(MB5oyBRtCwcd)Hu{4`ZZsc6<
zcmppU4ox&LiBtB6CKy<fnZG&bei}2`z!U@V-fHl(8tvKFTlMy|X^ai}|9LHQp?0db
z+Wf0F%fM^{hYTDxFvq}Ly41j01M>_#OalxoGVq9jM-4p1!=kSY@KSh;+Y!KO|Ac`B
z2A(v)JEHgs82UqS7x3aJ<`n&<?T>2D7<kseLIckkV3+M`Z#DLq#?i$FUNEp)_)EAW
z1IrDpknU0g%M4I#>nFh!3KvgVX<(IsV$C)Cs28@B7``*KMmQ8W^?Avc4ZOlMF|e6V
zHn84+!I<G88hFjX+dO3huN!FAN4;U-O*xT1eN@ZC+FJ%TFpT@C;w~v=$lqunY(VD{
z48OzLRADX@F;1aa)PPBc8%P+i7+?ls!hfZYas(t~O0i~FILu9UlLmYPDFdEpu6$gh
ze)2a-m&%JLzQ?*@V6TCF2DTX3YT#oL_`tx22DTg6VFWiIP1?r2_fgbC%Re%()4(o~
zq|TofXj<uP>L2=1u*7aLV-IW2kr2C_wV#pDM;%~F8u-M(rv^SVz*&FvQJ=Gx_E9(V
z4I1O{pzt|FdA2VlTq*FCfv*kR96`khju`lczGWFSaMZvt13z+>fo}~QH*m_p30dwt
z11ANrTd%L85~}4AT<Ck&inIab{~(w$XAJyIdkma2a8~C2%Caxu7oo+5{VrJRm0hfs
zcAhtIL72qUe^D?sH(8l~*}z{c<B=de|2A;N!1WQ7h~O&yV<01fmVFi5KL-9a@Sp6L
zl58}U{QiB_b&()viAhUFP%47QerQo90`f~of>{(^c_k1iE32?ed}9RVA}AjLBB+q&
zQ}`y)R;;jCzET9YL~w5e^&_YpL6r#Zj(|s5HG*3seCIXph@e^o)g!1G!EF)LkkR6~
z)BCCud$ikS7u;;|(!3G49pXD9xGRF%vU;5eHa5s-E0&=!m#7;-pMzSx2=0lXcY}O-
zugftlGXgDwh7mN9(X0rbT&(2?&K9wdVCvzN27;IORgEKPA~-*Srqs|Yo0@ZlLu0sH
zo?!B+?LILn(pTLdLGuVccCgz)iwFuMc-h1&CR#?&DuTgL42hz31Z^VtAc7AgXd6Mh
z2<Gz$B2W=L5W%PjMn~{q1P?_pAcBDrw2z=e1U<Q_?xBtmbc&#xV0Jr4&?Sv0^eoX;
zaGz#59O^E(M|!kTle}KsENvD}U!h%lm!KqDKk4?5V9}LQ><*Id&<KXnX2E0*5%Az+
z!4!%Ok6?swMn({6oJZz)p#)<hm>9vN2*#%8j*DP?8cz_gqpzAQU~UBSBA61vROwEO
zU`7Np1y7IQL|;XPvm%%+oH-F(6b_kX`>BhW!Mbb@%jj6y&Le^!6-wJ4kMO@bqbP!K
z1Pgfd5v+`0RRm8(@N@((M6e`+XCio3<QGM-Pyls47Xe*L@Vs#Tl!X=xF814tf|rZa
zmI~gpwb3$$cfY{q6~ZZ=zB+<65v+?~eFQJ1`8=$(f?pQ;N}Au`r{=Fl@LB|KMX*7b
zuSf7kdXy%;DY%KOLj7+`ccajEgwniX3-t($2x1Yq5s(v!z>-ZxMa+z#V~<dK(PMM1
z{iPk@6vseZWc&zH0um7<nXoepJn3@XV&`lU&F@9<ZkoSY07u^!Fm`gzmI$^o7$)bi
zjqInkMX;S^B#N7&*b%`;5&RUvnFw}9uq%RN5q!%GiePsH2Smf3wB}C*?2TZbfc<Iy
zClNf7_Qq!se4gg}KR5qE@WC|aO96)>I4t0+H2-Vf0%`n>fTKcJi`wIi!w60a=R2Xy
zf>Q$MhaUudFZ8rfLuUOL!43gGM{qWRj3};);+F`1jo|kP{t(IE#Cuf2#sfMR!TAXO
z66OUFxFnRL7v*UFjNnjur<Y}jF8w=#D}t{^aE(=~pW?Be>8A+(VLcZP@qeO$;QDA#
zNlHdhDvA<<N6PflQIv_|M&T?N^uNq1E8QESxcisp#dem9qP#HK&6-|NA&Q%$Xc<MT
zC@Mx#iIP#&jpCLlDo0T>irb<=9#x5=Y81Erf6G-9TtjH}D2fXUC29Qa(I8y!5?U)7
zMClzu?-a@|qo}q_B(5VMqra+05Jkf%8bxt$6!oLXjv^FArU(SqMxmwg+h>C96vr^v
zqMn>68l?6Ay`@CsD4Il35Jj^nnnsZu#eFh2PiVf-$!RYgzCI|q)N_AYe_<5O)7n}H
zsN6p&3zTUcMVlzPaCgFQ8^r_MeiZGZP{Jv;hqgTwMf)f^i32-CF?49jj+7BST7NY_
z0Cjd20fKH(bdRE66#a$MBZ}Tp^bwssqv(~kZFYavSD3}#W+CF-0Z|N0Gua&^8Yocg
zqM=a?i{jrX{)=LG6eFTYMX@Q0kx`6_;@Kz`Mlm{yF;Ps5V!A9emKvg%7{$2sy5rN4
zLvK%tVzThN9m!{RiYz@<IIN;e`l}gHFv90VF*k~tGCE7>Y?0|Wvw%j<i{jxZ7DVx6
z6psj>u6rzsN26e5vdtH#5papeW%?6B-|4TO67Y=7>M=Rz=_o!(9}qP^7sc~Yyc)%8
zQ7npLaTIH!cqxh(qF55eN^#DMQ7jd(TvRQKV!Re)&DWx5MX{YdLMvtzu&s(>wQ!D3
zFW?5(N^H~GSA_YpP!`^G0@e%tL-f2J#T!vXqcEd*Gm5vOcqfXDBEabzWN9w?HvKs$
zukp-+qA0i>Jqkl)!ckyG;48LBG$_LF$rVpYOKgZm;ffMl<Q<`lua$~Nk%+>R?hOOf
zV{S?MFe%-;2Lu(y7tDu^cca)G#Sc;Z7{z;0ydTA<QG6D~mMFGH@lg~z>04Q1TNK-)
z_)sv7p%OL*82z?GjA3_I6d#M7`=i(`%)PP@hxUkvTMSV9gu@;691!HxCsEL)?+h*Z
zc@zht_$G>@QG5}_!6?3#Rk+zN8Jq*uVVQU+3Ucl|lK)i{$!n#knY*AfkH~1TVaK94
z9>sT2e4DnD0w)B2FZ5)Zf2ue!dxTC4=TR}~rzp-uaW0DUqVwk{eiLw3C~f{lz^_7!
zFWlb+|G_vB4Hu%g$P|d;uPFYE;!^Q)-<PHtoX$qS{T;=XD6U3vP3DqQJo=AxDZ{`c
z<*l7z;yM!#nP_j~dJ`o~+-c%26D3WQGI6tsiY7{%C}X0mi5pBTkRah)7Kh?9y3s^A
z6UAXr-ULkCWCnGkg3v%x46Cc<RWfmliRvb5m_Zq57E?oI6ID!972#V=R1+{|dSD)7
zQkRITX`+_!Z!>YbfNDca7Hhu443tokd#r7uj)|rwa!uSV{7e&?iMoR8aiR$x=)ETD
z3uk1{6724fC9+Ipn|S<6sm3Nk6q{Z^g$-n_924IRP|YXjG?Z>5p&X?FO+-(zAM#A(
zn<(TXy@~rw6v$9>q0P+TrlZ*XGWV6tJO;y=83iq5^xOc|%0z1u?Mx`)v@y|EBxy$R
zHaYhJ87f})K^Z0U+35ux$T#tbiAPOzGSS(@XcJ>hbfJ??3@|a!L^l)NWlCRB(!)eg
z6TRdVsHF6f{NCKM3~{-V16A>r)K575g%+p7AQOX43^Os@#1P@ro}r?-_>_lV39^RF
z5hg~a`J>FB0M;C+SZ~Lg7-wR#i7DyT#|xNXVj@p!MnU6&YLaNCi>PX<iD@S03TL{B
z875|n+G0P@+L_XwB}&+xBV7XHr{?!-dGloA!)B1zWX@-xnt0yCA`yGs#FHkTGVz3T
z7YKbuLhEV43x#sxGXkD9(Kj9c&oLL=AP5(mc)`SK6KhN?G4Y~_WhR!3{7rqZR17F~
z4!5&H_^V8;Olxj8FsM}A4jTn1`I1aoYoei8vd+YM6H{$Wv+=5l*Vrt)&Sv5b6O}Dg
zvGAsew@e&1@s)`UCf+u&-NX(P@0i$VB4)xhVdRF2Oy~qAnp`dno49RNe(Z}v@*^fJ
z6Sj${3DZRXfojS?#Zij2uUCcwY>vz#Gj1Yb;^ExT786Mmo{4u&Y&PKwGi73viG>5z
zoKpF34pd2Le3jCBGWxy=^4Z-#P@NK)ttLK@p%1BTpxP#wqn8J&3WL-~CU%-Q{!;!I
zCU%+l*u*{)`%UaNv4{KmqOkrT#YTgP_cE^ssWyYuCo=S@iO*y&ob|Z?jvkPqV)=f9
z)Z{_xpouRTkb~6ogVZ4tqjE!B?rRfAO#EfyZ|1&<qb9yLaheVvq>h>RmL{3lvMN70
zNPTDGgo%?fROWKw{y~bnBmb0eei)>Pe=zZ*iQi59Vd5tfWd3a8tch!b)EO4o!NHVY
zO#Ets^fwWp8PxW_>4Vfc6X#9*DdvR+s|zA?Q7F3<<|>y=To!=`1}jeFj;@%v%DQdg
z1`F3r{KE=wp@fBhO^h9^{^Q1TLr)A=s|TwL3)fizvukcBuz#>BX`z&bGSbN8P-zRF
z4p!63=KoVFpWQ9Fp&Kofvv8Az3Ko7CtjY_8g_1*5^&yHJy0qaCMb6C@Dq0|}Br>-M
zroaP30-357ZnZGj!VnA9EL6A9+(HWrH7wM$P~SqPh1)FLZlSh?Iu>eKxWfvJzsth#
zA?n54(47`YX*nqyhwipOQ|no{M?hVn+}FJpIP3p}A047J3t1K#S!iq_+v2;w(ZCAA
zo7z4to6k_mv4V^sZYX@~av_JBSZHb?-@<(saz$YtUGa0~8nK6z{$aPkLNg2ZTVO&l
ziJIhv=uG;YqlFe)TIgb-tA$n;T3dL?LVF8s#6@i_v=cAUKgz-b79O-f92*iijjp3J
ziAg(H=xBjX?kscn4N;ve{60i+3m6(m&bw6D%|dqzG-jZM9u|N9j=mQ9S?Fb<w}n1d
zP#l=-G_vkcMZhirX@3g?#Q5Sahq$RhBF|A)gP|6NSy*7<NuGs;5f-M>)fPsIuf|#!
zXJM3u(H6#7LBcXUrw>(yLsg%lYP^LB;=0KeCJNxWOyV|&24~7fUokkRSfD@2oNi%;
zg?ZF$VWtGYY?(ESK9oZzonv9HFy9`kc(_#Zh=oTjJZ9l>3-e_bmndH4y`k#B&>-e1
z{Dcfq{wWJjTUc&kg@tD<JZoW*g~b*YawEARX6SPkm~KJE;7LioGY4O=u!Na4R4uiF
zET+I2?m`4uC@8j!sdTxJ{FN3~S$M_5It#10H4AHLu#CPW@)TpMGEBWJ-Rxni%`mk-
zy*gFBDwwM1&o@~7nY=cxxAB&R4HiCOo?3X@!aEjR3voG!jm4pBp~ynmf-Ywfk%(n2
zH5fTkMWYr>iFS5b9;u&EWXoJfXw1T(VL@mm=mZN}ENm6NXJM0tcLn<vQlgploRSRD
z%@*F16&XC!hpG3|OVl5vKCtkig^w-lwy;g6@38QZh3$f$9j17R>=aB@yI2QS<r7fP
z`eBN9(;f@^gt?b)mw@z!DT4hL2q^rSh0iUVvGB8n0~Wrp@U4a877p^bEqrC+Yev+i
z!b3tk)8T{FVLEVFkTvWcvG9$Bqmp_YVml_1KZyXl-&r`pS;9OiX~>D+TR0^g;(tZ*
zv^a#_A1(Z3fl8>HU1s!IT5jR8g}*HPYT-8ve_FW26qZvyZ{dQ4KP;T156?H_-Ne{n
z9I{;$COO2n3=ekA{W4FvcivNfTe!-yZ{Z4$X;nVMwf=DR4=c$K^`Dgbf5jwjfzD(_
z%CLj_&-gE4qoj>CHrm=KWuvr>du@I{3T14RwQ;MBYBp}Laifh2Hg2|2&PI#js=OUI
zoJ-RT*tki$JgJ_;6-O)DsAQwEjVd;7v4ah=QIgLIw7IHi;B+1$yOV~i>NaZFxWmSs
zHfq|q%??V(?Kaq0H);uGe6o@-P*>!I?y^zaMqL~AY>>}dUB|}V+=XDyrOZ8|gqwYO
z`2Qwm+R$v|+Q_q!Wh2{0LmQ3kpjd@$<k$h_L@H?@s)(tI1~j(OREC<Q1=bG_Y8sX2
z+qln0p^cU{3T!m9(cA`$SgsVM`|Y68(#g*7z|}46;3m4~T45^zt!=Qe5b<^(pR}C~
zWuupk-ZmbvgMgvOy4rZq#zQvR+vs4Ula0<cn7Oo#d+%st-|(QO5qA-96klGX-E4HX
zgIY>^df34#J#DbDw35@uMqeAlZH(Y78~tqzv@ysIo}K7{0gM58d?FrfV~CAmc5nsr
zlBKCb`E*(~|NG$*OS03EHb&VPZ({=eX=98`A4jzV)mSl@=FwnkBjpp?L_2t>n=EI<
zp-BR+3=c-9$Skft-Np>Yo`V}5%(OAf#s@Y&v@zSp96lS{c+JLKddbE!HlDTdu#HD-
zEFj1YJ!%J!k&oGU+{S#`mK&-xLXq=?9X$K7sPfsb`0?*aIV0Y5PsyP?Z3lNZy9;eR
zXJa`}+z#^Vc^fa-SR#0ljm3<;5y8VAuYeaB&m$C*ZmBStu<S0g!5e`QveL#X8?T7>
z=)l!H5gRYr!D9*AT06MQUbaCe6Z9St#0h=7P6UY8i>o>DbuMk=UD@56EdDl38<vd?
zHr}=owxLT}y<-Q7wvkD+DxaW808^4aF>J89Mr<%&*k!q<{wV!9La`LsHXLTL4WDNr
z(Gs_j5a8P2)k$IAp7+RcCz<j;XEKmdcJRZ+CL0?^1kVpIjtI6)K>eFJ%f|a+@D>|e
zZSY3`HVSZ*KNm2zx7qlXCuL*1jU6^Vva!>~0UKY~*k$8m#<q?93>8tbhsKNuo>(}Y
zdiJugln#ElxIZ`ai3ofuR&n$*hOr2r7@@9>2!1v>NdJq>Q5%PB9JX;px?kC#z}GUd
z=14_VjYcYhZ)B8R;$t?70T=zw#t9pjY+SZ+k~^~Tn~mRXd~f5ljk9#VjUR0MXya$b
zDxd#F4^2A5pe+@+z2nIL{U}6jzse|O&Q&i%|8N(7aQj2mMJWq(_&FQrZCqfUjtu-p
z4t>iw`BS2Waq^dFxMt%Y8-EMFB6QwJbydvftbc9%$J*|ow1W%>*EuNRprixd%S^ZH
zogmYhgQUeAG8sH&927s*mvw>%QC{ni>$04K@(zYO7~ud8ZgSAbL1PCM9Ng^Sb_cZ_
zRCG|uK{Y4H#9M?`5z1{=7EpX%RUOdITS+e!@;QN9tL~tNgPKlIwWi2pz-<odNI2c$
z1c7~zgL@s^>EJF0wK?RVu7i3GcoWg)yG4dK3*)f(W+aorU*AEdgDeNxvbyF34ySE&
z4h;x7$Ps=+2Mq*pXvN6jhhkD5J#VNc4w^dX;Gm;}TnBj$+Bj(IAm71#{0*;zLMJG&
z1x}DD_d94NTcG~P$l&3>xf4|W;v{P6fLm+rpcNfER8fGN<tVR=b`F$-_D)c**dB23
zkl+V-SR;dKLndt_<qwanKb;(OcF@N`Uk6<rbajHV+*8)-<^+e^!$Eg3iK}oeR%2cq
zy+o|HP};^R{T%dnFxbHm2Ll)+Qga4580h@(A%XRQAxFxKW2gua@F`-LgF_>O+h-*0
z<dz-0<Y2UeF%F(`@HD4880TOvkJ!O@2NN93U@><v(Fuy`6bDlsOmZ;U!S5qgxlyXl
zsGyKeqcd0KQ((G)f>DZ(+$`F&oZz9FZH|N4PVm&tDLqE1i870i2M;@#@8B`n`y&n>
zb%I()KCkk}9Xuh<eA2=7PVm^kfL|bzJSMu7LH>+`XX!l$OC2n9@SKCiVkeL0c{$%j
z4xStpT<&xlJ@5j3&Y$o2vw(w6d4VUFIYAt<t#q*5!3yqfco2$w{$ZV5<pd8xt3`%k
zNwKvKUUpzPupPYOU|E^`w;jCWV4Z{Y4qkQenu9kTyd`1D0{%Mf;l>B5wWESELO`?m
zc)3B6lzGIT1UHI)!$HJBk%O=#h0aVF8ay<zF+rl-;K1NHhn^uY>4#B@Kk7OJ3^s1o
zf$Jddz;oa`NJx?<MO9KhH=rKwC?$NZ`>udZJV*H%e>0=bLGi;d^Opi!9em(mn}h8R
zK9tDka>uHdVFWVxcgR8P6eS-y;F0Ya6+E`>5)O5q8m0C)*vp`D@r;XoOnI&q!yhqx
z!c%5BieY37pE>xP=@~<Q3<n&1!EzMC9Wj368eg)u#85L9ym9Z4gP$Fob#R#adxW&A
zp|2c#?F4U5XFDR`8wW=n9CPrkgX0cP3-i0Q%t-+!cv#g+aLTDP|9b~lM+L8Y{=vbI
z4t^5;8KFs$<PZgZaqz2yTVtpe3qCym&B0#|{^pJtQN2t2;RMWc4$eEc;NT*|#=#{P
zANj2H!SsjW>|Pd03g0qXT@n1RgZ~6vb#P6<KSJ*q9enVZ5yN#cl#c<j?)5R0j-gBp
zC1NNkoTueO&QgN4(W<O~8)CRI2J1?xn0y>sPMGaRD>mw6yD5fSVyGNLg&1y@(TXut
z60qq~vx0|nF5MgaMy!f(2&%?{Z3Ywj1UnrvTFo7;s>iTg0N-237cAZ;Cv|%a`e^mx
z=-}0pJh(e!xGRQxW2hekUp!r#r+g-p?<=em!`(5|jiDZwh~eweijA+zWh=%7#|tUO
zSKwvFf=3rEhO8K}W0<`tBgDPSJ9CG%*K*Rhfq;fFG!oEQXcM7Lh2{!<YCsm}-bZ6%
z=o3TV7@BX+XcmKt;elB2PQd$R7tMvXh@ntGOQEfVwien(Xj`G}gmSZdC*a?OIS<By
zw>ox;;h`AXGvG(7(qmKyZg!07D0|^{rj*X7H#&<?x(Mwmw42cGLVF198AC4tl<ytG
zrsX9F`f<e=2E{NqhPQ@=obLAx5E}-@uxL|Wi!q9n_Wakg*^n4&->MCbVOR{$P7Dnf
zx^#@{HAYPwqejIrI)+s-td3z!3}a)M62sIO{(B{7Tnyu5m=MD|W7PKLp@}iPJ4Q_+
zr%GtU%Q^YOF<J1sg(bGUoHH$k>0-cw7`_~%W(a;FhM6(U;*kmSapraBtT}=yGgrVo
zp$`jvB!)-Rqw@tk76YS*!fd~eQK`YfOHNCTRZqt76vMSv=;;`q;f`X#OBi1ix-f?4
zVt8IKnM(vLiea&U7lg)o<#6cTJsG4+(~`>=%xSzrz{(ir-x^4+VK;_#F|3c_mo*s=
z4+zyAtJcQwatyD;z!#5^!^T5@HHOz1%rP8^;q@5aV6?~ZMGSB9m}1x$!|B@Eh8W(C
z;iDLK(zh{ejKPT^7DG`CVMbsKW(-f%EuqI?aQiW|7#qC#bmtS=o!fK2>#Ox1t41x#
zuwt+!o;fsmtm50B)gaA{As)krF>H$=5koQtFNU6rGTbwnXRc<>{XO%OhMFHkic!SG
ze_VS%hT96XcLi@2`kqkg<meU|-7540p=45idkp6bO3Ye?9Wm^hmi6pdwO%abtX*Q#
z$1%`Cc6Z0HCx*RgJ2O%x_$J~d!}9m@3W(wI4O;iILHjfY($8Y}TtH!+fSGq8^I!~}
zs%l@xK)k(ni9<0wUN(4x{NWhB5}n1Xd=tab7*51+GKOO@d>g~@819><eLO~6)>P{^
zMvISC-wB7z{bSXs7`~5Taz>zP_HgZV3}@07{t&~Df`5wPRWIYGv5E%&ES$4E`WSu{
zJ}3Sb3*P!_HOwZyI98pbPh#lpqK}IUF<gwHnTz{f{29X~RzDZ@U0jagFIHU_m0kQD
z!xdI?7iC;rjo}(IE`|&j|8N&0+y2X<G)~<(PSuuH>tsQ<aq2o3*Sjd;V)Qum$T&s1
zaGWaXg1D56*TyM-oZ2JuWnENoakGmXT-@k_V&z<%9H+_){_JcExVSP--Q?ny@xdyj
zl%bxAF1QdEt&|2;T(Enmi#NursxEGIQO!kl7q`2p<w6^;YPgs_UJ=xE(R#ePO=$n|
ziuk$lfhy8FT#%A;7qz)a$#QjE+%0C*72E0wrX}}CxADjj4bJ2eE*iRM<RZ((hwHU$
z7e9?x1fP#rA$nti%Hd{@hZ?x3xF(CO`UKV3MbC4gK@(K2fF>@Q3Lvxj1Vw(Hi+mUN
zxgef3K@|ufZrUZgxr-Jq_~u#jw`Qb;E;_pC<f5gERTESz?#@LU5m>h=zpabNgy0Rf
z#O+*=DxnVuebB{2E_O~(?M43B1l2+KRLj=cMRylmrHhPq71~Yc#R-Z6J!F&uJq7e~
zannS_E?<_>*X3{XgO}v?bJ5?$02c$f1s8)|)SajX?ayyMQB^F}a)^teE@rxz<zkqN
z;V#Cx81G_)i;;{X7h_y>-kX1_QD~Ha9upP2O%66Y_Ici2_0?Dxq%&)UCQJ<Ig=>Wq
zTugM4yC;8=i=(XzCkrK*B4DbEX=%=M0W(~_tgwIrvt7(_G0(-rF8(-}M{RRm{8GPh
z={@;V%C&sN#iK6fyLd$wq5%|GFi~|ol1G`xT|D8U>nFMEtAyAVxS0EA-jgn#67bfW
zCE0zJfz8};@h>CI#q%!qyZFS#A{UEYY;f^5PkdGA1vj`W*SJ{X;zburT`Y5PVxn5@
zV!4a>L`A&H#R|cDCaRTbKz`rcW>+VwYLgT-yyRl7sCt<;^GpRdl%e&4UlmHp*95#S
z^bHqprulEV`0?eyn0NSWd@1C)@Lg<lQ6$~43)_X`LYJ-~G$J%A)D&t7Z97R(Lric&
zs4JArxQiph^9Yi{sXRDDoN}?r#Wok)c{(gU!$VtzZg%mWi}zh@k?!(c8HXA-+x}?=
z1qvHA`+(Ue{H~J}8<{&?eB@$}FfVQljhm!)y4dAn!6fxDBW;q}Ekgusl;0~|f_)63
zCd~*wb@7>tpIw}F@wtnaC#eH2zF?gAg*AI-9dz*}qsYZE7l&LNc5&T9Sw~!Wlhju(
zzLqXI`zNU%CMkk%gj2hHZpLKwt&8I>PPzDAnBTFaxcGH-iRzQp3E>bJt8zH&v~+)D
zRdMlyU@~(jt21fL=M8eYOjf^81M9hqOD=w6`b<`A=Un_Q_z$5Ag?XM=0MBl+y6B?Z
z6xCpg+CN#HpR9JAY;l=Yj-H&KL;RNu(!ZIutMVV3qOJ;`L)QeHT~gvd7a4K1ilcQL
z*TsYX%y54kX0x2@<0uhF$v8^Ik<b5TZ)BB@qf8w2;<zV{vT@uHNA);r#Q8aD){Svg
zh~s9#<>DwWfP4tJNv5;QRxysM!mJd>Epa5BfLS??D#D!cPC>auz_~T8p_+g}`?Dxn
zGmg9Bs2#^`aojF*PYutg6~`Td-ALA*aa{c>i%bfa9hOlij_#{7?v~Zdjm+Q{>I%N*
zWZfG_{W!AX$c`hE`&yQBUpd9srfc!wjq0Tr<&cI1HxSBhP8`Fh1TqcdXcR|d;pYl%
zl9p*2$5uCsGHiLmT(&FgzBmfv`0Bb`8qh3`YF+LxXq7+vSXT2m|FSZ~)*_BV!7bCA
zN2jPZakPzNU>t+uXcvcyqjMZx;&>pA2jl1%N2fSeO;HcU(IJj*ujaRpV~1bBx8C!C
zq4nncxyv)oK9{w6O6KRE6#RZ`s4HdS=pV;`c<{RR=oHmGjvjIJjH6c^{p8$x$I*vM
zrl^B9KNrm>I5tJ~jf42&l;FQ8yw|PSl3F=Say8x#<)^B_aSVxLY#ig_7#hd0I7Y_N
z`(o*}w}uL)1^<m_cpM`bEmIZSk{|O&$<m|a7(+`+Wff9GcjTSTs~jmgK8}aucqEPq
zaeQ*1U}7AT;+P!AlsKkR`PAUiblvD2KKc?&i(`5m{A+?4LT3w|8OJOEd`9IE+nhM&
z#xbv0vTjb3p~064AEnx_>-z@^Nasye^W#`KRb@8_JrU<$VdI|naqs(hGLEO15u4C@
z6P}La8Jgi^s*h*mSQy9ZB-SMHTpZ8Gu{42Y2`q~9oq+g0j?;0x5XX`@HpWpD$BPu8
zejZaC%h;M~x3|)^WNID9WG&|jj>%dP$BmaV39_1MtK)b%j#uJX6X)LpV%pWryMN6r
zRZ?3U#}_wg-<Q(X#j!q)oFQ2&we0zIwHXz(SD6}hwPSB&y%y(t3A0`o`bHdY3V2KC
z2BB{YrOZ1tV`4BR9ETpqwm7!OVZ_n&X3dMkk0TOClnZ&mbG5rUWX54J-u}pBvjsSD
z#L^r$j=122(B%K|`46JcWTxW5v+IXKH^uR;0CG0R@t)xKg>DhLRp<voDRXsa#`V`S
zTmP52BaV;a*b~QIdaRYUGmekr*d50%>5{XtnKrVTHhxqVTghB)UmW}6I1$H51`-bo
z+F_<1eKJD(G>*>%5PvS<fY2|59*pD5^ync0TI1l+eQhnR;1=!cIF2xjZwc@>0*=z9
zY0kHC92fjunp5t#OrGGWIKEEhQi-}<Yu-}(A&wuJZVB{G;HNmwFryRblEBY#oQ<Pq
z0=Fgb3+wHL%*%27700h}{3hL@%``H9XFZYbIicj77jPkti)qfE0xk*t<#OiVR9mgY
z^$C<n;Blp0VR>W$R2thg0sqADZ<_O;fDDnmPUxNYX(bcjPjlrHKmw%_!RH~Rg_aRo
zRw$V_BygkPa%s+yZMioIZn-&BSwID$Hz!b0KqaA^drJc2vx9h}WR(P}CO~kj&}u^2
zt)4&)!Tjlx-P;qWl|cIhIwWvM0(T~mpTK<yjP0S_l|cOjG83p&R;!&r9RYU>tt+&i
z(0hd5D|Fl0ObTmaPs0RWyqHO2vZR|WG?YM&fCfT2I{RYjMj}b!#sZoo&@|1-O(0Kj
zbgH7jzpb=_1X^=$u14G}f%_96U~4X*MFNEaTBiA}68LDUqCgu)#UGh%g%Y$&KnZ>z
z&3RD3LqeBM);cEeN1?_V*hx%f4XIpDt2<V!&|mACK=%ZCB*6W4OMpLe5{xU<HhLL7
zMYz<)EJkUc1o|d0Gl5wN^h=<B0%Pdd1O_B9Q09(Kpj#=e*(2IFQ`MjZ1}E^(CcXz#
z8<N1#1PF!+9WHc)(2+tpG)e#?>cYj$5C6=3<`HciPd|aT|IEDom&~tvX|!rW0uvLc
zP*a<f!1Fh2lZ8$ZI#no{(-N32ct)CYajKe~z?=l0OyH>m<|Z&NfmeoVPsmPls%R(1
zXb&eq`iRg+6PPdHF`?u?E`V9HAey@%fkRtE1fSH_p5{>|@abPcO?xJRXPLj}GT9ai
zcuwf^LKh{lSilQHDYGPj?7|#^g4_}nr>W%$tYD@jQ7(y<39L%s+XRl&Ckd=cAeMle
zz)K0NO~6WE!*K281kT^3ZJ>WRbSCqa1l9>4UZ23LY5ZCOuM2)d=$mQ&TL}!S6g&^m
zfcn!EKb(0dfsF~Ao1qm6B?u>=3pRvC()?%wrr^S9iei1TG&=#7H75b$yw$n!1QH1x
zr9(1WBopuw_&9;x3HS-55;!<DtIJ(M{oItmhv}?&SHR{3-V^Y?&@Do@Ch&m(mV%M9
zN^;^h=@M*DV29w3gzgl&D?NJUi_!~j)Aq1TCGh6^1$z@<mu;Vb{k))?2Hj63bQ$oU
z3HUsL0||T~_+SEG3HVazA)$wbQhpRP(ytRZlIDCP;Nfx_H-1dEfAnJJcMP5c{z~BQ
z1WqP!iWNSAGaUUd^ZNvT6l+f>@B?%3K8?&(HwN^l2ef+YvwlwCYyy`OxSYV1by>eK
zX5P*HlieG%UxofA^mnGV0P@cXIG?};0T+e#JDbTN-ie&PHCJP5>%FrGt|V}kg(ZRi
z61ZoMmj7?&wFFuX)7lNm`X_;KRqda)8gJW-B(6)M)t{L;7c*B>*RD^Z*4V5PN$j1g
zl}rYezm(9@LdysxvuqMK2>x3u!EX5^kVKaxx+d{SE$yZxZcU<E5*3oTIf;r%R7#?1
z5_7kPZb_nY5>-Sjko-Nf%IGWtW*q59<1}8H)sv`^#QjM$PoicLw<U2;68Fk-l)s%8
zCPBcWaYvG`yUMy#D8XGx)D~Pv=-p|4-C~eL?`eu+^^?d<qH!`PiJDLrrPb9mK96N3
zk)1>UnrfjWas)RJ+Az&;B!B_N=}lyM(<E{Q<OwA|KZ*MU7YJ>Z=1-ZXS|qW5e2^pU
zk|-3+Zc844;MPLh2yH9$r-~W{`ebM-3DO6IKA6Nq0@@2Dze5ro)3}p>&PjY$F__pb
ziS9{^Nn&ggJ(B2|#E>L-*8hywdhwZdn(9qU>S#yuwA3G&eZ<dwh4xFLzW`c0Ac=u#
zJSd65f_v8uZtxraEIl-dtNpZLNemZ2JR*saX*^26XrViQY(6fD@ku<M#1lzONMd3V
z^ON{49-5Ryn+n?2bD5Jx`HhXTrzG*uh0Li*kU1@h=}F8G%<kMIW(uAqbat9QCyDQW
z&7=U^JYha8^pPYU70_s6utbeg+G7l}Qrh}yYC#fDCUJXJjn4zif606*38w!GNj#kd
zyUz$EcviqddQ8CcLKme+7bkJ0bugWCmxzWJg)U8EnSkX&Il6+kfZ$bWPS;zsmy%dZ
z3q8#D@NyEbByll`Ka*IO#Cj%U68n;PHHp`f*qp?BNxYuK8%gL%7)iXz?6@QQ?Ihkw
z!k?zzN@7D2kJSn7o2L94*&CBMRU?}M;UtQZNZy-$M73p?jWUrWqDi<(#FH>(I;S{E
zSV`Cnk{x;L>~=R~<xn`r(HhyfC!5^_^(2uJF)}?_!Y`&ZvRl^6;fkA*c$a2RQzxb=
zE_6x2`$=q1Vn-5Ncot&z2TToFh%z5?v`RMT-Z!t1YClR_zB`GXN$g7EW0^vesB>wr
z`)O6rJF@ri978$m?q^j=;&2jQ$u>Ww_w05DnFUFFp2UG9zK{)aBlCCUQU1_}dAXMg
zz7#P^9umNff1SjUBz{WbOcLKDaWsh&Nt{gLSQ6hdP{oG3&S(9&HgueI@1E=rwVWeb
zPPyr-&UAH(;U@w=aJjZ^xzK5r%B&o=8h-wdEDQ4rDL><p!u;v#=OoT1@e4EScp<m&
zYZAXD@kbKpI5#(kd*osLo<y@`KEZi8)0ecI3!-p-lbi#;6ma!RNnB2%wTCty{z~F+
zdc#9a4_BCONtE$W*26XCQ4$#*uJiD(*u2_lx6sS~F9|xKNhq-AdJiSMK&+I9k{&K<
zIaPP$@f12uSHz_~eo>(vx4>C9c(~C+MGuucl=D#D13cX1fkQkIYNJ>MGVcij>}D?r
zMQR`={}vCGJyi8@s~5xuqk{Y@vK;kS6D8F>&_&cn7d=@co4&ox!|fh&JT&l7%flTW
z?)6aL!<`=P@^H6@x*l3L$f@n2j)x!W<WQC2v|}J~Zaoj&!aW}JRQ?Ug{1<oSag;-u
z9yAZ^hP>cVvOH`_<!5_X^K>D_D9q5JPR2<?4~;w&cxdLKv4<ueay{gEc;xo%$Lr;s
z{V=bo2QEaL^J!<j?E9F)mkVeB719a4>gAB$@1cc<LNCbB=CWT-Y2@d(^n&zkB{uL(
zr%YEHYGt?e(9Xk955qht4-a_g>7kd02SvDphmHas@-X;9L3@uMIOH!?Z994B?4g^7
z?jE{$LHG@+o!ynADu_ewaZQt)9@6FRXcB$Pu<Y%jkB9yq26*6TUpcsbGJXFOIh5o!
z2YMJJYYi5Ujqplvdi7e_Jfk6^kWPC(nLpgaI1l4JjPQ`LEpMcUQ65Hn7~^5A82sSv
z*)w<L(dRUHA(N#>_5=?TJ<Rkl%floOlRZrLFvG(X4^ur%6SpuzUY)L(Ad#no++kEO
zg}I%PO#;Wx_Ap0me%Qm4TFzX?#vR%7JUq9skXb_+Mjgc-;mL~pV;&y&aMr^w9-i>9
zz(dS~%efw&^6-*}wH}`K@QjDWUhtvWvq4Pad9k0}Qrq*MljR85UF6}DwIQY|=?fyi
z#QR^qzbIg-hh+kmdsxARrmO0ytd+u9m6lvh+XU~Ku6QDJ?8_cr_wa^?S3Ioq_{j`^
zV;C6It#0;f#M9Ng?c4S#-|XacMdq6x-eP!rFg$D!JKyoJk-1za=WPjlhH(*ZmK}Lv
z$pxPKIn|b}gP$Mq5cOa)(r(YDV@(g12YQUIqq`UY3^4l8@xXFN5ciPq@QsI~9+DnB
z4|_c9WmJ1edD!M*yN694-eop<*y>@kq}6*K-j~!U+L5<rcyNjQ_ghxETFn@uA28Wv
zMMgd|?qWQj=J9ZMc-ZM-mj@d8kq638IoFKI^|8d;ZaHP<7h{`Iw9mtS4_|sX#N+Vr
zsfPm$U}jl7e^HyZpLzJ48OkhZl0y#HWd)$086gM7UBy-Cu!pZ%K&Gp&nB$=wR$7`t
zQ;$dm`)j&7Cc%Ho!}lJ(^>Ez7cPxW5f-pYm;e>3Em{aP_P~@NX!2SN@;S7rsv1<Dx
zBRnUk*1SUEpE*VDL{=w8IO(q*exni}wS4^U;ScVbdF11qhx4rM9{%=lf!SKV*+mb3
z@~mrzm`axfTo(S<@q98Vz_h*M;VNT5M!D;2L2Q>O9wlY_SB5Bjosa8%z{gEKO8B6X
zQa(!i!9pedpgK{wjE}ND%K0eoOL+T1uHEQ^u47hmJM6OPQJ8Dpu|2PXkDGl|^HJSL
zMIV)@|DNnBeo(J&@lo0T-#y4(Go$I}sy=S@F}-}VPwE6Em&wJtT0>T^DJJc++TA8f
z7^RHQJAB;fqrK1Yz+FCS`)KMT*GC;6cl*fnq4}umV^zHzmZp3B;PR^HgY}0O{k=Zw
z`@wa<^3}guHrLAXk?o^_kA^-%J{adYeo)C7ldSLzGw!RAA3QrX_R+)#Eo5?WrwmI*
zQH4Z)o{xMVt$noN)_fHBXyK!fd!M12`MBRlb04i{C^~^&8XnJQ<`S?-w)BI{YUP9R
z)_aEHfpW#RKHAY*KX|ZFesF<4;DZifKGM&;S?G2e^N=4rC(!>LeRQI4eGKu@*+&=g
zTVEeteRT8D!$(ga+g01~^>VuN_-<^*3$9cs=W6XxFCV>m&|)XcCQpZIttP=L{e1NI
zF~G+_AA<rv=eO|!Ka928(RG|lJk-Z9ALD&Y@G;!S2p?m8ur!VIG0MkiA7gybya_WD
zSLZIcDBVR4??lpZV&~H{)I>kHcAuPAILQZh#~X06A6%5D&t&Zyo;{6$!E;F=Cxsb4
zX8QQl$7eof`Izma$Vb@693OLe%GBfYcYJu*$BR5BACLHW)W=gkp7t@Hp7imAj|KG7
z{=CP1Y?z_mo1usws*%I?q>l?T)Cj?cW~gWQ;lGdPd_3=Cp-j1HrqX6A4pDd!&uFH4
z!N(FG>@M~(bVb|YGu7iWgVEJ974b43_Dq#OOOY-Yyu!yyANyyjRXm7Us?IERcBW$Y
zB_C^jyy4?bA20jpHA}tXW1Wx5v((8CGS>Te)kmq>ir*J{&Brsd)ayQCv(!to6!G3!
z>W5kCEpErh+dkgm5me2oHCt_{nzLp|s72MBhu<vR$OM_KI?q<5I-Ts}BOg0?IzHA{
z$g^mhkEmdFO&;8AwY+A?;VM41_}J>hr5|RixQ`EJtBtdj)+388!K4rlnI4Z!a7ySV
zq3`<GEZ{vK?+c(L0p}8Y!1!_7ZkO(dKDPNd&@+o1wtstM?GQdCpEKI-^6@cqq(<ly
zAG=wd>W22xS3R@#2tGPn5wq>1Z-xJ#aBiEU8qQIlQ!Pte3MEqb!pA`$zxepo$Co}1
z`8ej|TiN(w)|s>iz7h}66-R{gjZiw|Xc`>%@f}mrN6A}rP7usgCz&s$vf9rH4)m1Z
z?}d_iTEGuNe-!$Y&@(=M7BFc^2E|6sQ9QWcSp0ol5&j=SFUu+vIOpTMa4rbFDD+RE
z9K9rfs{RrWkn^{XepPb_uFB9gAOHCH*T;W8GE!h*Y|jb4^TzL?k+OSTDv&2AnL?=)
zYNl{o3Z+vhlfum@R7|043OA&JQ@A!q-6)`Z3UAH{!m?Znj|)HwH>I#$aD^0(%u#F<
zsFcDjGNoDyl?7Byq1IegMKA@3Z%yI8xr&Y5>M7Kap#jo;JSTKJ<x{Aa!aXV6k;0uR
z)JY*Fqx0vgyF{4Z!K<CZ>%zP{g}TB#GFM#?4%Ob9f|f#73iVT{GEZfSK;FDyMW!t&
zTXqVKmbWe66%A5on1Y)^oSYOIr|<^%n?jQmnx@b*#n%oZH-)?u+NGdU$WP&|16j>d
zxStylTp+aM*bMTU3npko=L;@Ob6N^$l|t(@r~5qBHiaIgvMEpcKnf40&_PBYO3Snt
zaI+}Cb8U!{9aHEe%+5l)q|h~mN5=%Kvvo_MJ9Wy?h<S>Q%-$*VNnutBvs38H07zkq
z2=o^^JcSVg2Ba`Bg+VC{mhKRtoIZP=8k)w#Qh4CT+~T!HrZ6gn(J3sFRmO<S__X9$
z0pn6wBcl^in3%$(^yuUiIK5a;>yp`1Q<#>*^z;<+XQW4GrX}a3FgJzgxtt8mOX1-Z
z9uds#<L#21^=Jz7Q+SMln!?j*4Ns)-q~HZ9+$)~^ds8zCKPAk~yEC3i;n@@j7N+nV
zx8F7ARKvj4#bS$7cp-(gDZDK5OHx=R;KdY{3Ros|h0x`qhjUj-m)j&>Ep(00mxPkZ
zg-BmvBn$9LX0J<OeR}j&0k5S%KE>DqAk1i5W&;CzOvc+OypzI4VHODu^Pt7&dRo#*
zA(F<$hij%_rC_Jvr1`OQ6w#S9JCQ;%1#H4io8YD3r|@|S2bhd0Y+~-Gup`B9XJNBU
z|1gF31Z+)fdtbm7Cb&5K1L-c`7<hGC3j4-n937MKTgmK?((-##*eQ5dn)9)M-6_zR
zJ<OVt*~QNMe>{B$m=o3aHcAzE>Afz!WfDNh#spZ9-3v-lQKTsdqI4DHr%3O;_uiX=
zpn^zdGCi4DR4iB!73?BNk*bL0d*}M+d!BjDbMBdQ&prL#%ucfJAI0%IJRcmzhez>M
zA?2exly8R=_~a-)J<7k&;!8>VOu~~#@wr6)f2DjOht%Y&qxf3l{~pEZqd0REf5;(K
z{pKjn9>p(5QJ}E$?NNMp6yG1k4@dE%WcXRauZ9%(iP?Ls0CR>GaaPTt1<oDC`J=ch
z>AxPug`>DEnJ?avd`UWiv&c_Z{C0<a<&LG-B<1>1+>o3%kK%Vp;VM*y*Z-xcB>s66
zx9>>!OCo<u_>Y8pUl9e8xGRaflR?TAlaNTkBnl-_SPqLMQB)%TsYJJs;hsC3#gjqE
zO2}c!Bo52$B17pUY9&!y(#s@KRwCsjET2S$Bq~ZgBl#;OQ8@|X%CtxoNv|qlH3_Rr
zSVO{^5|WKeWF=82iTjd>Cs8+vdPy`-qD2z*B@Y>zCh_L60uAJ_p@fZ+Xq-foWRN*z
z;KiUflea<?BKxh9MEH(`ND}{bkCsW?D~YWnyga19xl@53TFYTn!fXjij7j9biPwe{
zNZg^fkx1Jl+DRnm4!wO6zYHnBt78(mNu1U2i-x=;L=rcWxS2$!BswRtGl^YEJdnhL
zN&GK~my+m`MAsw+B=J-d-I6H2v0(Qk9!lc*;f46F%fn<V9ejJ@$s`_0q6cGozUiY$
z^p*(m$0X8I!p9}-mBg5bg1_nT>LV$ACG02R6B3f4e=_)s+t6yw8q{qzFo{9*Cl^hE
z?+87e#E2xg=-?#Yni_pZ!e=EMBH>U8hb1vwB44~Bc#(7P?eNGXMkRxD)X=>#LVlOw
z1xh~E<V6Wb^Ua*5p)pB}yA^!RWUO4}*}4U|*2^R&u`G$@NxYK8c&eAg^dxo+%bAeG
z<RsQzYpTo$PfTJ`5=4G&A10iV#MET)N3m@Mn-$DzHe_Vz1po7660?)|{*6L2lQ<bu
zW=Tlor50`GByr(>%uS+TrSLon=O;1p+1v#ZE|ieNMM*5agD;WD(j@vlo6B3@moB;@
zi8V>AP2$gUO;<`|S4p^9!b`7+c;)aq>F2ZEve!$bN3mubB(hP$O-XE)$QB8=O1Moz
zMr}K-miU=#K@fK*u_uZAB#tGqH;Gr1c!Nce#A`|HW5sPLcrb}`rDNN=NBPyK{Vbmz
z;n$NmAQ9q~>PP5*+WS@#hmv?FiKDD>8EDdvB=I&4c}4Kz&zmr0``09rNvP5~e&K}_
zEeT(mwzPD1DhWb82}2@g5>^tn#9av;3CUA#yhuwtBcXSP{`o@%DRX_vqVFd0UJ}1D
zBJ4j&98coYBtA=mFTdS55&9sB4;ja{iI1c!J|^?}7#&WBoJism_9ZlnRA@%{Ipa%X
z$BVD!+%J+imBg1caCbq9I&wSPZxJT^iaXuy>~*6eoyLpPNt{XI8z%60@hvNt<vCt_
zCx_olNcs;F`BB23lKA-!{cIABn@0vtIhVwFId^Q2D2Es6+f@ZFC-GYnm!yaJl^+^=
zMdtZ+39sIX@->MtI)yqE$UoQg_ay#cuTXJQ#VtBNiHRyEskoiQUrDr5(OTsT8~7)Q
zDk`d~_&13HDvGJNN5$@}u=8B}E){pHD5#>4iXtkCQq=JHOY_3fVe!JG&ka8^EZ*R0
z<&h!EUELxxhsKMmD50X9it;K-s(^|zD$1%DQC%seqO^*|qvN%5Vv*_!k+RhjL+#kD
zSvkE&$CbKD1r-&^FkXE5e7us1Hy4EGjf_`T5uY0_YsQXri<C;os;Q{1qOpo5Dr%^x
zsbXF{x1ow!Dr&2!tD>F?zkVW1MIA2JC_=3`-21fh+IUf)ws(y*P*M1s#Lo-Eq|nB3
zUcwzO8mTxkG~VBdHC53}MROG`RD@Li@f~3mqvE+-<%{tm&xyV9U?igAKfHnyYpG&K
zCULKdkNw0yQuEG>!o;I0vQ<2#VxWqciu+VNq~c-Pq9UQ9ql#P=ZB(>XL7DAUv{R8I
zO}@Awm~Le$G{4FO(Lu%il7~KNF+n^yLFB0rDjrnPMMWnSomD)bg8r{y#|U}R#z}(%
z<i?Tgt}325mgvSv)lG2NT@IUh2@)Ss(L+T)QdB&u;xQGyRP<KSQ^oU82p^Y7i>{H1
zgB5K<ULU%BeYmfRkrTx3i`o6xg}-_(UZF{X>prRCM#0Dc6~y~Xc=oS2Lw2c(GDyYK
zl%wJW6@yhgqhgqf;VPb0F+|30&fKuqB{G!4N5miaE&IQqkKigQ`Y+CTj$XPEZ}CJJ
z&&Nm6<N^wj*>@?WiYud4j8XBjig7AlR54b?ODY=N4$YY${-<KS8@n<$Tp$zM@KVk{
zBjVd92tOOIs9-)!P%&Ob@p)l=f|xKOKKf~;vl*MLVv35lnFcDRs+gu?gNltRrmL8t
zV!4VHDrTyfrDCCqMJi^im_z+l%$NS3tAZKz#RM^Ph%$JvGX6|r0fW0B%v8TNK@eH2
zg32sW@z%&V*TqD!RK+qCttJXmiocV6_Hy=06{}QO!{cjJTpX-?aVxZ1#pZg-8WraA
z@mpSkdHCp&ymhorMfZtf$VAb$PIwb}RP0sps){WtwyM~vVwZ|O^TOLyY*)dIWsY&U
zgEmeSm*#~F4vX(r(RXBg4@FHB+4o18x@RjZjef{^O~pP=VJfOvIxoCm#p@~#s5mrH
zjG7xhsN%zkg4Ig6p}O+mgORDD;&1V;R5)`i!J+@Ga#+?Nz44BUqbfdEaZ*K6g{tD1
zig#6LDpD$36>0kOVzy2LX}Ai5$<rh;>2fyXYpZbR^C1e0m#$zf6EYRapP|?b*}e)-
z1v#^yixXD5FDIYcPRnVWj=iVieU_w(6Dp3Y_&~)+T&s5Y{6z7gik1D^bjVK-e_~n=
zgYxCv@F$$ehro@MPgM-<7Abl$`!lA~yl|mOg2XRWoKkUC#V;zpRPmLHA5{FP;%gPB
zReY=BI~7+iWuIZa508JNBEnu*Tp`|Qc>M2v;a|@rs!bB#t04StcDQ0J#*Xw8>+4ja
z?#1k%Rs3niT2B(^RGe4wn~EzcepPWn#btVRLHHv3Mz_fQ!{e8jnWN%GhQ|phnSF-!
za+USfH8N;X_?lEWbS5!<QTRIZc2Stb-&Op<iqkM$!!0hPqN#>v8g8rji)~p$ISqfS
z_=mk+Ls4EAv;Sp{Xt-MgtFnNGMO*V&+FR^cK@H51!Ws%`INmk#$RyG8LiYFvBi7t-
zF%9=<D50UGhT<BscIGkdSpr|Wv2V>7G?da%T0@IQ%8Qf4ib<lH8%s?RWwfBNpO_>r
zOcLcaRM1dMLv0NeHB{12O+$4Jl{MV^ZlbCd<Zu-Y<SaN@a29J}+tB#&w_-Ik)YQNd
zEAVcDUK&|dVfkcfsH362h6Wlo4U5;+P)`GsCu_2>PAAwIm<igPa6=7^G&I(5-(>Ol
zWHENKSTb3-qvK7eLj#3KNQ0u`VGWOH2y2LFXs01ZLvz}qA;yUsT5_RxvRi3rO;xp^
z4Q{_nq0^!o*Z{LRrK-X(k%zaqf5kN<xafO{HX2_p4ZS*9<WGqVx{}>i166w9O7_|M
zN_!0*G<4SRfQI`ubmW;|gV2zxf&5gA{6sjNQ#xtr@<e#>fI{A6!Qq1%D6pG`?xbtz
zs)2TqKQ$sAzLHJdsLw+hzMCxAX$gC1cvQmx4Nqx!OhZo%{WLtG;c*SUH1yHH&T!#E
z_VbC{-WuE@iO=)1AAT-QVqY!T7K!j8@}!3TGH2F35q@t|Ua=`+poT#j#&wB2tKn%a
zD68t3*fSaiOZ?rwZI1d0QkE<X4<SW*qwW+z4^aOR8b)f^p<yRi(eRvxxf<qacwWN`
z8pdmwpkcIzF&bXd@Un&%X{Ls@7qeM(%)0++VB!%;OcABeB&vUwU?9e6c!icu5toO>
znI!C86E#fIFipdBMzeTgvW7WR#8eGa<gnzigqan7t$!O5XK0woyOMzoVU`x0d}eDP
zKI%gDZ(Ccj2A>_quS~}0YgnLRrG`}+7P5Ra(DTb^od&vn*bDI`8n`Vo3MH;(FJ;wS
z%icOgY=g2~13TvmE!d%WGFh!*4YOCnW-T}ft>s!8HfmU>VZDZf>6kl3@T#^b{LK`x
zw~lhgj>VvC(Xds+cGl6TIL}UO5!*DdJ$_$P`SgW&t4xdz-=$%<hO~x^hCLegYB;JP
z$<)&DnufPD9MZ5)!+s41xDY)&FZ?>wdwy`_qt$GQZ)iccd{e`pQ^d{Z<2Ozxh*X~{
z=!C->j%avC!`lpc*9fmU7qZ#9c^XNMit~7&GS4-b8Z3H7gRa3~vAeP6m$I25bE+zo
zMr52B>pv=PYjC8i+e{VXYKOVH%VHcBoIgFfi$$&B6cb*<F*YR)AN-eEvLxT9U4G&{
z8Z|#0WZGwm-c!Yg8a~qSiH1)#e5~PwhNv53i~bx5!p@hni4<QD{!GK?8cs5!7KGVk
zx>ZZCp%Df>O~Y3#9}VAY_*%nhW||gk{bw|M!#u2`BrasLF`oP}XHiy|Da6Pg+m`o(
zh95QjL{7Gm>Iy}5t*%fe_n>Q8;lr1+c|PH9KAhvaDV$8<yoO)d?lfGaMJWtR;gW{S
z8XBh1D23lNTw$|K0V!N%_tQ`yg}YL?&i=zb&$uwv9}VA>@OPHURKejNa!BO9rSaPu
z{*uFg*#9MRqI;Cz8@hBeF@LI<*FE~LBoe<ng@P#*O9cXX@#iTDrBFD9B9gMAU?lrQ
zob;k8keSFmDHKoPjZHDq`Qfod3S4gcR8dOuS4p923Z+vhlS0`P%B4^tg^DTs&@Fm(
zO`-CVhxnKC;+0a!?wP2Z0u?JhFHXEp&xAHrR7;_H3UyPcmqLvcR=$_0l|t<lYNmo8
z+2C5#VPBW%=Tk*i3U$cYHA;abQjXgtT0eybDGZ$#Cr%2H%Tq<;6q=;)U<zGQXqrN^
z6k=36g-{Ag3N2H(H-&Ht^Nz(SsyP`dg(E4HnkJ}Hixl3M@+aSF*D8h9DMYEcRIG3$
z``YFh;fu!tt;jrMX*`}nB8AS<QV!dske7mx!?to(yA-H@P73WMLcD`S?oXkkL~<p3
zXRN|o6wB3lbxNWBG;wZzu+Rh26;!fo3f)q8GKKyrbWh=-6ndr5JB5c+cqD~KQ+O<e
zbzP%vr-{y;qCKPzk4_8nuxE<@T``AIcwG9Qj{47meNyO~LO;n_vsn8l==NgmX_tSi
z9d#i8fE1oe;pr3xr!bJ2e6GzP$vk|TShF{qSEV}Q8Tv=&#t`YlXH%FyO)wnH7P@zM
z3L{e3k;2XtMy4<-g{3JhOX0Z`o=;&?3X`c@3Zp4Dh4C^dV^SEK!v9iuk(F|)$Xo9x
z=<}CScv(hj9Mhm@V*4~fq9#K|WP&6TnJAIe(}l=mzEf~Y3R6><lfv8-rctpJW~M;v
zc$YjgB=dg)XGuD5&6WuLGmj;ZLaVv)B`GYB4x|qkrLa)qWZ;nbxme~ZhZRp0`FNUG
zp2CV0)-n)`zVsFSzb1uMtcw#xR!hpcX+dQboF0URE?u9(<`lN1upxzwDQuEFq|>)#
zBeInhF<op+p_U#u=EZBKuwCNE(>V<Ht`v5spr>G@uqTDRtkx9X<h3;ZDpM<k{VBXA
zWs*XHuQOiL#jxpu`F0?MgL23S@_Kl>cq@fNDI859nZjYFNB8L4DIAd|mpoDA9Vv%G
zrcW0!Jx({W3#ln+l1?ITr6kTmCT^x+v7k~oo`Ri%lfnnn#jzCJ6w)bpbae_D8P>6T
zv)4}-VsADPHZIzpp910G>4NZGIgxYUlgQ@bIUmTZ`zVEvWq0~e3SpZ%k-{geof+b@
z6h2LXNl3fynjy|k7etsL%<wN#IF-U*Dg2$nmnnRe!i5wr(sk#We$7a=h@4B|ttXVz
zDV&kWHxhm;A?e>q<a-H!knl$de@fwJiJX;?oWDpUSzaN2K80W968ldV;X;=repNya
zFLM{TgI{4I-Bf@?Ue~w_+@aq{;pQFu_Z0rPgWr<KpDEmyNPI@{w%9)shaMR9Zwdt@
za+i*8yF~tze7BB*lE`5pi4>Nwh=fIT6qCq35|XF5juH|td57}&3{gr)X&s|yh%!2!
zep0ESqpTd3laTcC5~(0zMF}fOSXsg<I;u*9oYf>!UB{Xkg2S43R;i_<_8mM+M;(dR
zy+f&|qy8PdfsTfE@a_EzHPO*j$3+*HTr|@W(oxAqWgCi)u#WL2CYXrmXs)A|f!+pM
z=xC|K)sfb5uZ~taCh3^0qqUBxj($3x(2=bprsDw}59+v2M_fk-9rx=<=xC!OM-SfK
z;oCKBbsQ<Kw9|w4ppN_;BJQ<_MDLBX*RkS!f^VJCpB;7N=@2?{b)2o6sNW{%l|!*k
zI=WR;29D3^tfOxg<ufJn#=*QpGej31U3EOF<1t<}65Vt>q~l>dc>S`wj+e*htb8ZN
z*M1(+(L+bp?{VjR;{6%IsG|JzcC06z@Ic~mnyKT&+?)$DL~k8^bQGQ``cmf1oZ)p7
zvyyqgcTOz7Co%7K{7I^<;{}F8#{eBq=@_PCxQ>B32I&~A;~B=9U!>)mU|ka93MTd{
z(b_Y`vpR<87^?G|Wih^7*EKh{b4`WtiL3E{YAPdijMVX*4r6?wQS{YJabjN{UlSTt
zUs>8D!WS2xmx0?Ejf~OpqK<JoUePg@(rBHIzbhwRBC&PkN;-Q*@9e!^_US>2c{p}g
zG}2?H*gps3bxhDPQAek<32k#LKFVlwByW3vWr~ieIyURrqGK9$*0GY3i?yGjW2TNp
zIu`4grDL{^`8pQpn4@E^j(IxP@6V$@I}KC_`KEEbpF^}_A=9r$B8Z(5Au@8NSfXR8
zj%7NQ>&RpUw+_A&3p?2_4^&p@{MF*TKlbN!X%!j&Q@d3<Rx`JCtfg=r8<<-4!t1ER
zOp#Sjx##zI?UoU~Ft$<0CLMd4N0uIqb-WtSI~t?RtvbK`gm-lO@N;6jjvYE)*Kt6{
zP93|*OxNkyt;6n^yY06)Gl4I66}>m|s*cxm?9;KI$V^eEcA{Fx+~01-DUdJM5h>X?
za!|(`Iu7YLOhb<HNUXf6<1HqCII^^Lq~}x0zTVkyGe7(0Y<x;NqQjagh|{Poxw%Jm
zBz34dG=^1&sRNaQx1duxbR89)Y{qL;%SiR?h^6D3nZnlL$SCuT=)JWQ)ypJGzmYe+
zk&@Bjv2PeCXTaByuj7i2t2&P9cvr`19cOgBM`!BzRL5sJj_de9$Hz=&9Utl_S5f(h
zo~fp6s-$o&n#uS5XyYe3Zp;)tBavtOx0%#1cm?`%9jA1BspF)MFPPE|BV*<SZ+;%H
zrF=!j8bwOZ5?{0GTSbU(osd)JR=aQ5Fm;?~UF-Nx$M-sZ(($v7F~yZ1bo|J2XccLD
zJ3e<p&Z8|Ob!UmQY!S1>FFMXi`Lzcr>#HZY#JklKKO}N4unM{)F6$^YHF8nMCD!=I
ziSDz+z<b&cn-w(e-*o&oEQiQ79oKafGEmsS4IMXi+}81zj)k+t?>hd_aZ5+DLhVYu
znMY>!oIlx=4#lW{=fC5B>-a~<-3AI8_?JmCOB670m%;z1mY19*SZnHpoDxkV{L)A5
zyj+Hi@B1-7ix`+wSt)4%28tReMx>H*kAdO_N=W?RD>?TJQut+o&#Nle$LEwXaJo%+
zYUM;31Ki+B8wjrp-`JhEa$2B&c>@&;v^EemP|-jo15FJyGf>$;6$AAQ)HhJoKs5uk
z4AeGI-9Qbl+agla2)-La3H5ttvm#E+5=@~i19c3nc_pW=fp;22s2DT+`AQ03b*_~a
zZeZ{`5wV5_8d2L;k!E$nzswSi4Ky*3s1(#MUpVYlJHc!Z8Bo~grNZUvhKo!?*g(Vx
zzEjY-b>!J<N^=9#8!K#UEe+gj;Ch>ID+6`ggsBg0{AU*bojqa(9x(8rf%^=^4YW7V
zfeRUEW1y{pb~JXjU>VX;oRwqX?s|zQYbX=WC)PAk*v#*zwg!ZOPF$;5B-cQm49yGm
z64acl^J_Jo4Q%O=%NHZ}G>I4kl(k)RyBO$d;1L5oBy%?d4@v8~8^Ko+xX`q}<1f`J
z`Y>0orYN(;^eK4MKu<0-TRdi9;M|-N(h3eAH!x_nAkxP`UjsiIIBTGvfhP=XG_c9Q
zlLq=5m||e6fdK}dGVr{C7bt`i4U8}_(!kRO1{)Y^V3>hV&W4^b@T`F$23~tK_q__r
z^#RJfv!TnEa$ewD%8A_J2FA}8?4o>me$$McQ3jqfg4aj6<uSzFyX7ux6qqpDz!-8G
zm|);V17i)mWZ-23jNL*d@;@Uu$=vFg%UzP`$B7;4hQ}Frh5oM_W<MdEKCaM21CtC)
zHt>0`Hfv{#DKm3At9j>-<_&G4OrygMEHSXuzzhR34a_&Nz`!g6vklB;xa$;c)xXU*
ze(-gnIb2ud64_oaF^^6jpmeOLjG-n57SmBy_9BDtxy2Yk+si&YTePmHEHkj&z<LAv
zgNYReRx)D^tYulXjI1)Sn(2LS@QyL}j@qFJah?a(8A!j9qr9HSWTvQ&{gn*{E;LYX
zPKj)04j6D)4hFUw*k<4eli$F013L`tGqB&lP6N9P?4f52?3Ss^2FU6-)HD)KXTQpv
z$<2L@_6}6uuNLgZJXe&eth{dEfPps+yk+2^fj5}pv-m3+K?sh|7FP!3a3ecp;IM(W
zDS2S<T6mjC<kuR3hiNP$dz2Mqz%pPnjs`S_>E%L(ffQ|L3RPBEsz#Gw*PBpNdGu0<
zX>U^D8p_$(;+YbOW^Ho&mQ$Ae8&4a^7&vL*3j-dTzk!bod~6`!z%c{w8#pd|!n>^5
zfy#SK)V?`<m%h+DG1l_Z=8-}N@;)%|A){Ga;Y;jlJ>~d<oWEy_69ztGx2YTc#K5Pl
zh;(+r#tP3}*GeX)HI01EShR{9te!Z<up0Q*z;_0|GVnDUnt?M?+OxU2d^vgFg`k!F
zP)Xs6-x#>kBr>G2@;xj4NZt<yeq=@b8$X%I?RPy?d5-u==I5z4xt#KgfpZ30nP_d|
zyn$a0lr~Yu#03Kv4gABlY~YfC%k1q2ZW{QF!VO$w8$6K5zO>HG=I(rz5icHmdFQ%;
z$8N@X^5IM7zZ>|&z-<G68Mwt(a3TIDi)BI%o51Gc3XvCX#@P%9)>LxOhyFG|*m902
zVB#(l#Z8njakq(rCJLJ<Vg|>sLS~Sb%)KYx$g9~RQq%<ZELL1G6J6&B;`i{JTvO@O
zF_)0`mNZd{hBQ!K=&!)UGjjwH?q8+Vys{?BnP_C9v5E2~DwwEYqNa(J6_tu6Dx0Wc
z24{>)CfL>4A*-6GW(J3r>L%Fec#Ch^59*oAH_v%;s6|ao)H6}vM3#v<Cg}XSX3zv?
zbV=-Q5xmw;oE~FdH89c81XC`*rovk+0Txsf6HQJ2=`+#7L^BgJ<_N_^*hI(#vz<i|
ztEEItteYda6*f16GY^&FM!+xTw3HL?m5>s6Dvp}SHqq0><0fJz?laMaE;11}kucHG
zL@xblqOFM>6YWhfZMeNMMcbL+e#C%wFu~!v19|tGd~rQSd)X>!LY@g>;sFy6n&@N(
z8(e1-G=#T|0SdP;enWw+iO0ogiwHOIZYH{$!Jhk=iHA(|omA)%6Fp3De|gvpz753l
z28BFI^$z5nXr$1Y{3!AIx`Le2%S3Mz!%Pe}(T8(Q3}z5b^fU2<iKk2qH1VW~mW`GE
zCI*-ox<8MaGxz@M4;9Df3^MUblL*hWPn+OLfcqNpIhB-Wr6xm7l${auv?26WBywnu
z;F%;`FFeA;NE0ub7;9pbiRVm=HZg|oHG}P*hsGC7@XX8vX6f-*_*iX)-GdR~vGac>
zUNZTma(p~Tc&&n?-RTmEml?{ez(q9b6`HU&k9*ui6O))`7OGm9Y+{OuEhe^_m}+7g
zbI-&w6VsUqCKj1kRW32p#9zggSqxSpr|mNe@!2Nkn3!u~p2;7Z&0A<<z6o}f1$0zH
zg>1wbHGURYSuf0lJW(^T*u)Ykt@ri#FU%zqE10@1BkP#?Oo>Qj4V%DI$|@$w)%dOf
z%4!olX%Js4>AbbQPd59~dh$=t*<fO$iA^Rpw9n;`*Ji0Ck!>cn)8{5mn%H4trwP-9
zWn!0!-6js3c$;;^0%6peC~um0)x>KiUN>>T#6B~4ps}Ah_HTS!+g##2dHy>`RQ)G@
zkS3Q8Jo$!+Hwq_sU22<4`dcOru{s(l2Y2Vu$w!!(CR7ueiK8<8l1%<O3En#Sa-rLg
zD`)>~my)U)CYoomb#|DnXtlXw>_fRs$PZdZY!i-&4@}(d5^+tWP5$3Tyk{aKXZa?+
z?;C``<EQeuqE=Qk-^4K!U)70{$ZJaL==%(1t>|%P(L=eU3>jD8gQ|(^b)z4e_=xGj
z#$w`ACUCvzC(Q7}dEVnnzZOwmOL{4F`zW8W(B=wG{KCX3s=;+le90wD{K}qY;%gJ9
zsRr}G#2Km2x2%F*fpfm0w|glY`zYT@3Zp|gKbrW7)otROiJwiJWhV59J=r_p?^7q*
zqfdY|Ih#|iw{o5-7l}4+9L;GMy=dZ+iR&hAn7C}B|6Fm!#8nf&aos-3=$u?qu92Z`
zVECc-xy;P%H4-;j1#`t8CT^Mdou2<DhkuEPG*I3NM;49C`BPG^Y|I-wF6VC(|CqSP
zLU9ZKnkZnQkcGk)?y|6NTmj0w+rnG5qSTFeK?~nC2o^d#u0RnBMXjJBKCF{qWQi1$
zLmE}WLP-myEtHWIGQ&bC5*tNnZ|lCwm^#t27Rp(uV4<Rg@)p`Oik_?z1a9qILA;WM
z5vSsnDWRXz_Dq!7LS#>!Xf+GfEv&b&!9ooSH7)eD(9c3G3$-mID91vUg*q0(79tkv
zTBv8Ck%h(<>Qh>aXhSagR`5BffrU?d<R1S!p8IBA$%+M=kUq80)V@kH3r#J&eJZxE
zZj?C|vY=R?&XuCklQLM%Ewr!@m8Mb2mKIuBI5-pcTDbaS4zIJ1<+iqP<BNEMXOtsv
z<z-ulS-8(aoC?=TENvJaB0D*aWw6>>XlJ3Tg>DvdEVQ>!rE#>gg$@?(w;<#yOsb9+
zaxLUpc>mt$wR+J`O@b&eNoYtX$<w}0w0x`R0~Q`+_<jjd^DY*D4m9t{hjQQjF52C~
zLlz#j@R($N*g_90D3(XKx)MxeL|&gOp6sXelnlKs^s(@`g<f))e>KE~@?|+NE6!C-
z5I$kyNedG!OtjG7!T<{+EsV18l!bwuIJwYp3xg~?ZGj0n)WTp3&sccY!VoEQ=b=32
zyjwRK&591`t5j{IeD!E9IfqefzaWR->!XaYz;%~Bt~_Vqc?&ODc-g`W7W6X87z;02
z7|qq|M)&kmT31lU@@_BXe-aXz77F6kxSul4!Yk6NJth~Tv|W+t4_S%vR!}}Co>3;T
z`CC|MVUdL?7N%O5ZDEduX-xap(HRzIT9|IZ>>VU0#m=(uee1ya<x4C7A#*Lvv#>fG
zop0frxuS5z1Qq5&3mEs7(WzO{5+#+z7M568X<-$UXHm{lY1eWK%VdT#w<&PNor>Fi
zCBE9i8VhSJtdpFymjXNWQfN{6UcvRkGs;E_n=E{8;iQGl7Pc^HEgZ41)xtIl`z^dq
z&s*4GVGo5^*lFRpnSnodTey91beBwWuDiCOLjS)igTmoH`oFjGngz9f^ociv7_sCJ
zFvBIoo6P*I=o_r2VFemTqE~w>)blM1hb$bHs!{^;pDmX%-?4DiLdJq;AxVLBqXo-?
zCbKTZIMOXWV$48lMaYI}Sh#zhAYxl^EToxNy%bkUrY2w2jgIV*`&X@K)p??Plc;YY
z-@<VVA6Pgh)q77?*}HdaVTQji=TiRq@1h@C_{hR1EPP4)nEin{KnM0#*maq2T;kD|
z|JUn2V?Q|@G>R`QoU-_q4sKicl2v2jqJ>KqzP51M!p|1YS~$bdvo|s~EPQK$k)rqL
z3RWNC4|2Jm*r{3s!he**HuZzOh8^G+W?f(9oQ3m}PU5fZSCQxiHsNXsZbs#&=P->~
z%a^(C*2q;0*DU<TM4BhAu+h~~df%7JjrBTv4*gtSxn<!d{V=f2?-u^B(0QJ?FA*kv
z$-`|3%auzEm?wz*W#MlNuu;m!KWzT&=QfJjC}86*8-F&96tZ!*jecA5conpRP2`n7
z+Yx^)mRs0H5gXh=I>d6nsvhS)a*vJTHcHx{8%vP6L0~EOTp~>yMwdPu_<@U-wo%>&
zA1{=#QPxH|n=crM1?7~yEM-QqfMLx%QNhNnFA7z(v1w1<-8bV^Y*e+e(!nYR)ofI^
zagT%I4r<t_X=90vr8a8WsBNQ<jlMRrY}B!Fzm1MI>e{GhqlJx@HtO4fa~j!bY@>n1
z8`?N9PjoCDtlPv!Q$Fpt5w_9HMo2RJcMN``p>lWAX#L8Gh$ND^xsA20Vtn9Js#S~!
z%X@9KveCvyTN|xyL~Yzh57@}2st@GGBqTy+LQemoR<Ppl_r?-7GV=uK+!5N*%tlIk
z8#y-Km1i5abRJ+j*g?DdscBBG9qhK<Z9HTn&xWwk$wp@z58CKrgABV%1a0I28)e!A
zxwm_Jc2^s0cin6d=ibMXB>iC<kI-+ul*euKu<@vk$Cv}HVhl>SSc2)q!1ZKwYAe@D
z1w-y)y=?Th!D8oho>ltUc!Ghm@v@C4ZS=SCjE!e)46s38G2&0#c*@2=8-r{-+#|d=
zOL=K_!LR2DFA?VMHkjHT%A?pJHip_5W#c&;!zeRL86kZ|=M1-T?B3Wz59E%tF}zib
z6l(IkjTdaZXk)C6(UO6W5XnY`$Jjw<yEZR)F3Jaw|C7Vt1}gk)JI=-{Hm2K{VPm|F
zSMST6U}K^UN~U6yY)rN>#l}<{pPk96voG(n&bez6;S%!$QH=65DT>O^WLnyoV`Hw3
zjSu7=n1VU$!?SJhK-=!m&^#OSZ7iZp8w<$LM_DKXI=^1@MqVzv0fT$?RB+gMuYK;d
z7SUxkmfQHi#)mdmFuiRYvT@kPDjTb9Y_+k?#u^*n-WywQV}l(Wt=CGE*U2PgHg05r
z*w}1ii==PNMu~572(9~a`>YRhBAvF~#txcn<2C8toy-Iqd+gv@<t`~_RqKF_3BQ+B
z(?pqhDNft>+1M}n-?Z^MYsAJuMpp8_n5A^;oXZEfoW&=)yr>wH=Ph}c@p{|F5gWD*
z$HqH0jxu|t6-j17>llNm+35L5j%o*bQb?O61ya&Fej?-0uwn9+Oe797uLYkbTpMW{
z`81RDVh0bsJ;t<Hd;Wc@&V1oZ+`APg<y~1LbnpAD!TI7nJ2>7vGG82*L1gyw$n=qo
zk8S?x4Hs;ju<;4iv+<pcPg(nQl#@2TU?$l74V)k$>630#KrfxL@uiK^lBf<V@Rel#
zT4n-g{pZFrHojpp&lj`ii~g76)ckuJKiK%i#yJ~5(k+qb&o)@sKe2FnE8Hd9JQQT_
zS%x?(s99d;S-<@ho+rcdNPp4BC3a&Qw{2XeR&#Q$F?@6a+b{L(ocn02*j4F##*{1G
zuyNDIA2x2;h{<mAJEPe;sBWsnUdPnEI47rV8~kPCZySXi6n5~B>;MHE+~owV;9oY+
z(m_~xs=3<%&sPN<G?nE~ocntb2l2Myq7I5VLEUwKEpOxeppU&dU(jhK9F%m>-N8c+
zK!FYv2Vn=L9h7l`=3mD_SqJ4DJk>c-(+SG3yn{*(Dm(bPRHA|tH0p{D^0E}xT@?pa
zogibYJ7CY`Ey8M&hyA3618r)+PtID@s!pP|gha9&e9$UNq^=YEN>x1v^&K>D(2%w`
z{4GE5F>E6TjU6;`aQ>O#=^1}ZfzJ$&x!L?X0;hx=@E2*yJQd>;t^D~SA{WhZ(B46F
z2Q3`5ba1bO`?#WmRut$U=3rRmplwDSWJ_nVsgB#8J^X=Oc2qu;_}^3{9B>P0E2Y(K
z9c$y@O6wTC*N&EU&gDgOm<b&mJU}OG$-Cb{M+do1a8BstfVc7_E+jlXUyy$2N=|2K
zI8A=gK^F%Xn@74j=;k0(H+<-DUbJrF`g}qBVF!=MsJ-H#hl58M1qTDAGLJdv=YSh}
zPX~`X=*5sN5Pclb&kSpC2Oo9{bnEK`iPv<2i0{jL!oiac`V&5sySqn>e^47BCGeAG
zg=B1y6C4+ZIT-HXX$ONHJmcVWi^#JMhB(;LGE(C4HhetJzaH|b=}?D1I1uZ&K#XuO
z(!om(Ha?|{a`2pkF%DjI@VtW;XiipwkN!qG!IS)c3j`srr300*4t7*X@Q-)@b1=Vd
z`1s*G{tgEJUi`9yaSr&0&i@|8@Q*&@9ZYaA(ZM7KGaSsMuO3KDb})^^5{W6~|2IBn
zftc#x?8w}wN+{DE>?_v3@~GUr#W}Ma%yzKQ!6N2{gSlMGK~Fw*tCN^VqZ%v0UoKij
zul|}t;sSXq_;n+Cczn)M2g@8Raj?HxgsLw7HYZa<SuSU-aF9x8`{zP@ddA=SSnXhq
zgRU;RxmfF9or9t-in&<tV1onGfko#y*yMmu01i9YOlPuA8CC~d9c**3%fY+_!Q+eV
zbc=(X4(c|Dva$T|xWW@P>4ZFH>}DafiuRcme8PRz!RrnVICzcrvSi8?yi~5>?ge5$
z6T7eSRFmjI2i*PNbnupgH`ptxCAg{aXnM#AK6&wx3&rwL43W1T9H9gUM;*M|I;uOt
zu`uaCWwko|UDiBursUE*2JpcPn;{ttmZyBM#<pWSa2%X*@Qnl4LE6E`4o)!o%tlIc
z@IDWL^`pLnV@_~DdcRgQ-@&O8!DqU6<t-lONk`r2arObGt`i(!SSk1SQ$FJKT2Xp{
zki$<Le9E~FzI4E6Q=d8b+`&m|F3(Hmg5dMW7tGsU%Ar$n%Kx8q<5z4}B+AwQbLq(i
z;^G4Ft%L6z6mW5ui|<+K4sJR4)4`7pesXZx!EY>(I?<omdHN}rWI3O8@Qd`}ISJ28
zNSFR9kqZ)Dl#qVonULY&v#cw$NQz=0`1I@=b0aIt>$*g4NO)7i-yQsM=WhK91#inm
z|7P2l$X_zP6v)r@l+5d2=A=aKc2UqpVK?YGg<KTxqs*5Ng}T|`CwFRC#Koe1%8I(t
zdwADH!bKYwC0vx`TQn|0F5se+i`p)-T$FZE#zkcpRa}%M-cKp-qJoQZ66erv9A)S$
zx<Q6i;;q_I9$&eGH;+cEx_nO<HC)tm!C`e5j6#9t0Y4dPxxwL?vp9tpwXNf#t{Z%8
zZ{(t$i~4SGBx}fO>KkNQ0~)n3s1AO{=MqF3yJ+H~sT&*^n2m%yArmSt!Y=N0(aJ@{
z#mqiI?X;v0E?T(3CeF{uq;R3$vw}l)YnLw-<32a2h#BPzX1l?I&6so`OM{#Y7Gc~C
zYKoM$@)i?SaA_AgF4{{9`&b7emvhK`zl)A8a$OkBBY7@(i+>Iv<c}2bwU$mUI=jKv
zzy}Lte!#_p)FCTczE06Dw6~#hE*kCb;vpBCU2Jjju!~1rOmH#LMGqH`x)|YNB%{_Q
z{FsX;Xq1buuZMcNc-%!V7rkBdanVmQyxu0f_0>FHeO(Z8FW{_`6%zej3~=#`i)X27
zY2_&wgWTXe$;1CZ7jHBPKJPs3VlY?l5$;=B>030Qa8DoNVi;q(P!J!=)w6=nryLG<
z(Z6$U>xE*Ji|1Ut=msZYTK&8m6#HlwFSs~fOL=)<@N0f!++g3QKMBV&F<iVv|4Rk9
z`jkX?oQqdnjCav>p?J7Wa5m-%mhkT~iAgRdyIA64DLLsz7xUeq3r%x_L&Z!NvzUz%
z=Ld%w(g`K^<k802Zg4D|>tc?Jp6znGACB`=_B<DE>)25FaeDzXuuXU&3xsZ2D2Ok1
z!N=qLU{2GPxmYeWTrY*MaIr=TUrDiCaiO?>eRwrvB>z;gZej3&eXSduwbr@8xroRH
zrnH><#zL`mUBOLm@Ii?_-|Au;Gv9^fV!MkSF7~^4-NnxTtdMY*gu7kraf445d*!gh
zW4Zjq{oX?HnpBKB?347~d-4uYbK)*kM$^TcF5Y%=MBaVN#UU4mB_3T;fS(Ac8~rnX
z3f^HiXchZwPu@{CI6}}C<`p&6T%;IBIfZudF~vxpihs;8B!$PM$lg5L<yT^H+Qk{V
z)J59Ghb}&Hk)bFT@40y2g)bB4m>YZq%V)EdULq{9zTmskR}5K?%8BDHUY%GdZ)@U%
zJ1dU8oWlnxAG`R(#iuT=w~C#Rw<gt4K9k57E>5}loRZ}*M}AcKYoYj34!@R=ntw&d
z%2PK@?)7TkH_TEOzqmN(;ycOngNq+slwTyim--x(iSd(*v(&tf^0OrJ?^6^-3Cs$f
zgwMP9)x`xlz3lh`Jg#5<GsNQ}OXjkR-<Y3iEJ)*ui>s{4G`@(0uh9fIKw779!^KS|
zUK;h%_}#@HY^`aOP2(1esCl?R8XXpiKV96G!@nf_n|)?Q0bXSIM^gTku<0UkR~mPx
zQ7{eSMbd$UK8r*lxoBYtN#Rvg-YS;H*hS(V35!cuLc)@1Kq93iEG;29IkB9aSS^j}
zX_QZ+f*e+quyPs;7l}$~?3A2ju98Mod5buSH6&j94yC3<YDrbez$+__I+94!j76e;
z8V%A2rJ<zJP|_Pqcyf_wB$3N<p(YY<Dq*uUiY^ZH49g*r7HLH8;LRz2v7l#2Z<)ru
zlHMwf`xc8&qyo`2veSr>l7>j5QyTF!5@~cy<NL*e@oJMsP8#jgXq(0(i$%LTk_YSw
z4__>1E*2fqxIc|ei^U<y|K4Jen?{~wn`_0%wy{EX=QJKj<6%ljW7NgOgA#U?u#1HM
zEEe4)(mjobB*LZ1S!s#rk;bEG^p?cOB<z{S;}VH15uDgd;+)uNiQtqza@bcw-X-OU
zG@eYOe;Nbm*yiE!X*`w2z%)juF(!>cX*`|A@H9rGF*uE9(s(wFA(FFf^Kh>vf$M0+
z&@^6HB8E}Oo-h#_MPwvbN#prDK6y?eTyc(^wPT5RA&sL;1d$h+QE9xA1}FY64Ki^0
z%My7hjgOXyUnOOnlwWkIpd0Cd3297B^9L|7IgMFq%uZuU8dKAlmd5ln$U`A@mWun9
zik?fwj5KDZF><M(&Tsve;N96v1w$~08S+z+d1>t8P%7}BQ9Z5r!Za2!^D`)w!QwQQ
zr15DQpQW)hjb&*ZN#mU~e@huF(%72DHfi0;G}ffCR^qGD(3XnTX?(I&{JK=EV;L?J
z8@NOo>m@_=Wr6oLrO|4c*pf!S=Hbn0@Zym4t`crfV@DeM(|DbAL?z|KeQE5L$oi?#
zy)qVi<dESb<<&G^lPMPnUn~kUaLdF2dTE(BoW|;9;$RwYNaCAv)>{&i=g=L56M4Oz
z#-EY!k;39=8p$-?rAyOLX;d1X<V>ZZr(vhzNF9tc%rp)x6I6zpSZN$v7KDircV(*~
zo=yjyibzIE_>a?1BVQ&YvxUsZ?%?lB9%}M&8pqT4APpAL_shhGlK$s1@zEXRghW1(
zu+s9td!MIqlKnG{Ke%)nr_%T(jdN*ynZ{RXoJr%GG`^M#on`_o6;w66Jh-U&w`qKr
z#*b<I#4=~$FBiOiU@a^cxy{4GCoC5~%eh?WtVBrX#4XFk`80k_<7yh$(zuYuMXAzn
zGH)-XahW-@T(E4JnY5Jfie%urA1xPWmy7FC+70%lr2*T`GziJbySEsQGzw=>B!k;@
zV;cXa`JHt9y<GgA#y@gjsIWrRYY|pf2<{PgWrFIvJA;B5bXf_pB9K#v#ES{4&8z<k
zQ8W|m2*o8NQY?de?%)hli44ZA5G5srB}0bN8I;N3@eF!pP&R{d8MMlvbq3`#sE|S3
z4C-Z2F@s7ORL`J>oLD)7su})bDyrO(ymW=ACe>he{ijUL3~FbPmBF!{1#6Lch2Sl7
zg{Z?-nukxV5X9-L`WZCHAe4cULBk9hap{$U42?5rk_mFPSq8tY5KYO@Jjh$(#aD`~
zm11xj;S3@fw9Me%3|J#%Xr4if47#oiB2G5)5ONBKv^1JQb_Tf_<Yf@c;JysnWY9K)
zxU_<5Cur&3TyipYgzYjQa=*NrlR^6oI!FqM&#n|SnMg-@m&wnGB7;sDbjzT-)TeU>
z4`lG5w3nK9ktTGNkot^YDHtpw4`uMMbmn6jJR(gVxHGp$2AsmX#2?LI*-Al#-smZ(
zzq(TN&Y({QBQhA7LEjAeWiT*<K~fGie<Fh?Gw3gw2W0S6CP+~lm{}S0$uld(A1lSv
z84S*V!=VyBlL7BOD|4^xDlsI3W~%~b!eJQ<&!FQfG5cbIlzywks0^OVU~&diGI&0N
z7noETypqA_Ot4vup-(bkvn9@JtR((VLK0uf;N?uPDGXzKUmD~9Wsa9ROv+$F1`}zH
zT$+0RrvTy945nqUl&;8Ny0mLy28%M7A@P|K(p|GMm@V-+63)FtpC^&|5-yPNzc#fv
zgC%k}c9r-KVJMeputE}7Nw`wN;wyt}<PyAAbMIIcL}wiXO}C%G(<iWjMrE+zI2Inq
zrVKV`aOz!r`7X9(ur-6CK8pF+mcjN6ybSydf1(6CGsr*J^vw)*Ww1MgH#of$_GGX(
zgV!@Skin~xVb3bDKZDmKzE48VD%K=4zHGq<ON0();H(n2SBa-fg@~M9C3yG8HIcV6
zI3$@5XONW0+e|7J@@nx;AiqGJbrIr6CFS=6F;(&uDiP8ol9EuD(8$1)h$SKA+g$Vx
z?q-m_gJ)QPs{;k{S@_HW5086zH-q;wxRJrl4BpS+cm`i)@KpvMWYBrF_%wshGWalq
z;ytrJlJMgUPOuVdg-H1%gVge9jVht1SBuH3#pfA(R3mhfzN#5obfX>dFX-nCR<9Os
zt`?mJg}=_=bOvWL_$7lg8LTN8`i>2)a_Ae0bNDS4TP;GBLf>cbLk2%)@Duf~68gJC
zfz0#DcdNzE8QfYexaiQr;#>yjGq}o3yV35oGNE7Dqt=K^j76Eyg$ypT39pHiT_dzc
zq04Mj8C+pMStH1^`+4Ql;R^9<a_)5rDdfWsi~OF!9~so~P}jpP);rs;hq4}SXYkS(
zrHF^39{yq(X7Eo2|FYG4DCD64J-J5Q<>77*&#e(u_+OFzV98Lm5+Tl-w?<I;!d@VO
zY}?j|Vjk}CP{PA!YeZ^|DDGibhXRvIhL|ukt)vHdxV%P`@`4O3E%DI}L&evMI%`Ea
z59LW;D{6VD;Gx4>QQ1Qk4;4KuD-+_dl7}bO3L;fKj9n{gc&O>2nuqEhn1rM(9-*vQ
zD-1n0zkKN6T5)%cP;C$2t`%7l68WNhsGf)V9%3Hu^YF)7(ZEAf56wI@^w7vdWBO#B
zAiasaOPoIEFyuk;aIc3}9%xJ0Lvs%;JiJ{!6!Fkxoyc7$O8gKzyCS&T(!-Vx+58g$
z@zx$fWkcB>q8<kCkC8I4Qizm+>qOi`!h`V8$wM0tZ9V)%IUd@1$nkK$hyCkBd+DeS
z9>%W=3T;rW(8_g!ct;QKtrHwxULHMHB9tfRdZk01Jv`u{n}_bylRAHyp!2(U_<Nl=
zSTfYrgH=AnqN}`KJmleF5083yX1#dCLu9?^;Xxm+Jh)yECqgA3lXs~zd3t&1?ctz@
zH$3$5(AUEp4|6^AV^BOy@-VVV=t&R#J-pyyw1)v6p7Jo%!!Qp6Jq+@&yh7+%-mM#Y
zny#Q^57XXAOkXe7trrK^3va#Ptsx#xuNUMb94@Df^e~DUyIzd&P-a7LtI-DWoQIwp
z#Pc2w-=E!15;=E_hZpH624#a7D;Ijn!^>1`gZQ5mb+STe9CPgD-1Qs8D>7-PZxE}i
zhM3sLH;4%yCVDtEMtOCN!hD|WVT$CL>S3m|ZkmVb9*R#W@OzoiFB`-R4|i=8H8zS_
z^6qR2yN*xL5A!_C_pr&sW~s&kCNLF{_(BhhJS_GQ-zb(yt(Hni56}c!$7_X$H6GS_
zSm|Mvht(b)*%%ledOb#4$ToDNSm$BuMzO)edM{`TGdBj^FSSu@^zg+-ado5E!ZO?>
z?%O1GlT+f`JZ$%{!^2KiCDXD}=z}*BbvFeiOwN(DLzJ_}!(I=sQl^L3StFaoJ`Zl!
z?EMUJ$<Sk)1aT6HAMh|@li<bSn;zcs@C~cX!yyL6!}}hNGY}q*crclD9^UbAl-0Uf
zwB9U|9#kfq2gAdxO+u3kr6k<4NhCLkk2Z<(n?(02p}RKoA2Ao`vRT+3JP*DHhx&LZ
zTr-qrUTqc`iL*3_e^WY?&r}(u9Aoomc@9<BsOgsXJiNJCyti45+bouD79V){(8K2*
zPI~x=^)gyvqyB`-Zx$bWIN_o4XoVN)pR(R7hdz@fe`B*?A+VQz;o&O}?Y9Wxr#yVg
zil`YXvqd!8BEFV%-a0LjGZGf69{SG1_a3f!xbEQx4?lXi;Nc?cXp8vC!!I7rN&III
zXa7SG;w>(HUMlc$wa~8;DN;A|;udl5`Pd~7S7bykvnidAE!rY}W8k(3XN$NhwSDrX
z+^@EX8y;@5_C5T=05u5R+#-HwTceBE<+h3%?`Gd->)R^+WUDU`Vk!OQq03e=Xse*@
z|FZe}DCA?`R&ke)yM3(MD%REv{jxez&<}h&eyiAWFi~kuglSXQM-d<2cFbOSDnWRU
zkK#VA<>PujO86-0<7*$MeZWU4ALD$y;-j>WGCtb-=-{KQk8(ch_^9inypIY#s`;qy
zgZ;dskIFu(_^2d@{??$$e<!!Os+74^@LE?QL?_hnQQHr^!K<c^T0X9C6{WU`0SNA9
z`9bTW!u5RA_Yv{Y+(!c+4Sj@sD1Okl8~JGLqlv^DZxc-=(#%JzQX$qzjcOsb(BDTW
z%X?;reN5UWK3yIa+r*%4qJ@u^KC*qp$Xq#euaDL~o*$;P^09VXuxXCre|_I3qJFUB
ze7H^A=LelO;iHX@xWr4B4KcWFeYB&fL6IE#s!Wh<KW`H?%7sW_`0n@7(MMk&{e0y5
z$n(+7M|U5>M<<%FU3B%)*#{3T5BhlIyTk*Od@lC)wjggg?Be6{aHafqL7dDF`FPkz
z4<C=x1C>HM%Y`1HQ6)pU+r^l3vB!M$^wHbLTiZqd?c#ACguNKJ?P9s4@R-rZ4>s`+
zwu_&(izj?M>0^YCk>vC-z{j&bhWL1j9;g`_<l||%%0M3<$xIvUV{#!u8=vt}V28L_
zB~)WaFigFfJJiQ8pFiW4J)>hzql1Y^x9s6QetkXh(J*C{kLP@h;a$n_ypI=rjII-k
z?hrJM$Y>cduXJcE<yQ&yDII#r$Nzj>suSw5L$HpX+aX?NqOKK0#`~Dy<Dic>d`zV6
zK9>7f!HGVm_?Y8ku8*lcjG@X5A2TH~&Bt_!khrj7XzmU%%g1aPENx#dcg(-KWEWi#
zohQ{;=wp$O`4V3sAp@~x2mgZu-rgZvu8A!5v4qm}7>g)TA@u$ZvCPL0(hn<HZa#MT
z*zIGrk2O9v``AKf`dH^<18Zkz(1dU85bJ%sx-Z5960O@vZ!`>T^0BORsK@_u8J(?6
z>78P`kF2cV)Ul1CN(RUdA3JGv%^>c)K3E;u<72On{eG~U<n9!#;#Y}txe}o^uO@gZ
z+sA0`6hvP4@zPE~pC6#dh*S%`$vp9K%*VSv4*59j!(_SnczvgM+lT5y^Krz-J3joK
z;;5u2eVo}TIHW_a@06jJZZss+B`mco=yeTt1<KeyTpww6j9tQ!u-`7hE}fxF>a$CD
z60$E5=auh+Cv&#+_k6tX^CuZ`f~{<na@@y<6tzoy;A817v4591zcljoF7c6%o4W#+
z(ymW@eD32Uo6>IasgKXtE_RED%Y_IlmkfR3<4fME7n(3iImOc3Er@)@DO=+_4YK^t
z`1pqTnUAsg_}0gFY&iL7kdN;fT=vO)6wSwvK7L|@@^Qn*&pysF!+l)v@o84*7a!+*
zoM-afXxAw(d+wG(O}k{rvqA%Ri;K);AHVsy!qnX@E;Ao?i#K<RZ8zIJHA=Zk|L+#x
z?-ti2!ghUYw<y0y-1PCgkH3BV!~WyrmXF)A75pjdx7!{uc#l}uDZ9m<;0W=TOm9}x
zzbwpr+?|ht`7kPk?#jm`$xwEBl*2;#SiMIa*dq$(<95kV;RA{Hi62N5%f~(WsFaV&
z`6$ljpN|%MMfrS`%m?yOCLd+<Q7RuivX;(=Qa?n8s~xh>?-Bn>;Z^pEa`_<K^#5qO
z4k#&#=Y4o2l}`}KNLD25?E>Q6ajP5>`p95FFd`Tb6%c=dhyf520)hclP!uCM=Nx5n
zo?UXzIV1W1P5bA)e)YbtuI{d`uCD3nncaCcpR|mEvI;s*5xu8~p;N?<Q$z&?6&2j8
zpo)S@3K)Sa)0k7lf+<3uA_`3v_f8d66;xADQ;9-)bp<sPY<(k(v4xh&ohrIajZ9Qa
zLBFX{K;Z3OZ3Pb~=&ax|1$7kERnSPmg9_>?sIMTdAfX_p;LE8ZOToISf^+fLR8gf~
zjCUCgI8t5|riz9NewdNFbE+scO>}6H(^$bn3R)=;3bGaCC}^S}Pr=IbO{Y%I`L#wY
zmyJ&o1W5%CD`=^J_z?vyrim9NpP;FNe937h>7$Z1m$ZeXtU|H>8Z1!IT0wgS9Tc?T
z*cHsH6Kkhn@H8=QnjoD$O)zK^b1$@Mn&_yYlY&K4lO>Bi%7JX_pY^zcCltJ-;AI6*
zD(Ir%c?B;hcuGN61<xpWRzWuf`=*Jf6}XQiZcG!8SC0{tnJ&(kj>V^o#lPk}CySWv
zuHZ!lJ(Vb)w3!}VgXmp7<fK&oA;CDwseeVms|wyw@FwT9Ladj9*A(=o0@KCgXPc7J
zq^~P@Z@OquF?Otc?7Qir4<}B+TMGJeLERN&YE&&YXS(RG;BC%Pjo7B?f*d9m4Nx#p
z!E6O{6uhfokb+SPMzcYhMZu>Ec+GvEj(t~bsDfb%J|I@`k%A#yxxDY2E_O~ApH_}B
z6?q_5ylm`a1>F39qTsJLvW6>Q<Sa8ou9|i^pDFlU!50eF&&vH$!AJ!o<k%B4M7tS+
z*Z14cH|;qix{3Qr!59U<aK;skRq!>Jl7jCQe52r74&k2IIBGIOe5XV~#w3^_X3h|&
zsznC;LBWp-ep2wWf(i8e8KU$|F_EU2k$ZK9h|P?ygB1HIkuyobq`p~gW(r;lCM)<&
z!QTp|DEM8$x%*=iW{N+lKPPCWc(6+BgPCI9Oz{_sR_69ynLCx5E785}Oa;>w%%D?M
ziBZg*DUvI5kIWRAv&1av%++Rzhi8eobT$RH0!P7o1q--LXa}}H=dTo7qF^aKO=4PX
zF}-V+Xjd_|Ou=%-76q#ntV!ps;LxUsm2y$PHA}oYGkJ4-Vr9+P8d`OhSS$I=a><jw
zLBU1^7JF%*^N)f}3KRvZT<J&a#JE-CoN8RurDKKylRi))rYl%7Gx<<K&M&jXifS?L
z$`;NN_AGI3PD@vT#~D|!M}g0d6l_+oMM0<_#Wgr1$?8XEi8L2`UTzdB^K#kmR>sEJ
zVuymA3brZO&Jf45n(|Six9?(%njLN49-1w9&)&FnY%kZ2g5wHKD4_rES8zzdVFd>i
z9HgqV#T&E5C$j}_Du13Wjwm>);FuEKV=kC2tl8qI6v&t(PAWL1;EaN^3QjZD%@LjE
zh+cD|>P_Z|59dUes)=(1jdMZ4MfRxTgo;ZF{#Ee0iZ@hTR&a&kS4CXKRVqVIQ*n=q
z>k4jgQK%@UV$mFNlfA3BO+|*xlEXEdsluKk3acohg8M7tgL6coxq>6=^+Te#irZB{
z#a$}yP;sXkEwRRPqcu`OjrJZD=SJI0UO`H#D5c_V6+9=QGti#YpTgWK(`aQ>lvQz`
ziu+ZRQ&C>Uy(+4xsGy>virH;)DyyiZM!Q_z3-C;mmgmlAeY>2Fb467Z)l^hhQA5S9
z3elFV@Sv7|){Zgg)l~87Tv1EKq(Lp|OT*?0u9Vs;9#BzFjeMz&in=O3uN0lM{5V%I
zx-xtb)K?KxF?Vj1<>cOXv1vj@0~H-rbW+h!MI#l>RkTp?po+#S9#-*)iicEWtH@Q+
zM1?U|<ZvMKqDZ)(=9()S&l8>Ii98ia6}{(0V;?$COq?g0s>oN-OvR%r=$s54i{=Sy
zo;Wa1T$?A#&lkD#MN1W}RJ2jiR)tW}lv@RAGGBD55#tVxx4o^YM(G&$!0lALHb3HY
zP|;q+$MeNc^9AXG`NEwqI@5+KdZ_5B;&ByEsOZLNRdIB_c#_R75KpP-LLXQl7AJCQ
zE)ZQ+5HK+!J)`1T70;`9LB&%GqA7k(<p<*VHS_35A$vf}?kZkXv2;PSfBS8LU=hJf
zDqiNK-xGUH#VeeklCfTrzACA+Ky)~odw78uTOpe=z3F=k1;Lvt`l$F@#S|5NRrFKw
zh01^7i@fVC6$4egtMVfncw0s7Qn4xv#s8=YEx%AOh&{1T3{a!nkd`xZ2dQ{Z#ZVQ)
z)aa&Qu!;{<e5mph!{U8e_lt$%BMFAk1GzUS75i<W;8`N;eyn1+%CGARy5A=%K2`A<
zT}1^asOIck4(;tSG2Waq!ZZF{?~?PSijgXQR53xtC>5hsj8idQ#aAlEsQ5-j*D^7t
zu`0giEWDmY>@5^W779@{_N|KVqyV$z7g-eTkZBy6>wAtx+KPDV{jrHEep2zfia%)W
zqq#q;_(jF9Tq8e-Nn8bsL=%}NlT#x0n;J!)E{meWz_$ly{7IuNiX8GU>RFIO+^=`m
z7mLJH71LCxDl`?-Rm@PaQpGA2GgZuDD4-9pH5GH%*CMe%(zz<;shH2AMdGQlF<a6@
zi^R=EVj-96VnLsOXt7vAH(M;0s#vCCN#CqD7mHz4V||(?NSD)?i^U2_nO&`7jf#yb
z{!#hKGqIM-lg3{x)^YBt#+a_WnZ?DpK{A<b8Rl(bz*!;`l^^XAXBJ1Bt2#@B&ZVbf
zhl-slOcfSORiqijR5&Vp+G>e#84|}w_vs#2@e=X$648H&_+p6&RD@J@iD0R>L>yfr
zHmlg8Vw;NXDz<WFQ+X`vJS|yhsi?eEG+HXS9csT+Jf~onirp#>sW_}+kBYr2_NzF+
zdH+q+svGOIRP5utPtNH-BT4$vQZat1I7ovdHg~BwLWistV_-bSmB?t^H1WvnB&o7g
z>|ZKQsyL<MB@HiYIIZFgW0!{d8qP9Ys3@U<t(;eJfon%YAq^K9{2AL-B$kPPRsQq8
zxJ*h--pb-R@Kriz+30Zo8W%!|Sea$w#rtCPz#A%VN=}<)f<eB=vgo|%HVs8I6xEQa
zMGLL47Cj{y%%V!M`S-<&X}Dd(9UA|-Tol(p&fI0<P6>GXxo?@=1TGVIX(*}TUJX?=
zl+ti>nJA~ByoS3q{?)T6t>GSxf1xbOXyDP=lT(w#WhIBWg2sO{76g?vRMbGwYq_9U
zWer1@^ACH)#O0!@hH4rf(D>J&V$pI@UBi7E?$=O*99gB7279?UvOKz+?JF#bu86j0
zwWa(cD@4~7qK?F@URUG)Ns8GE@?#pZGzbj^8sZuf8gew`YG|OLp@zm(PeUUu+7Ldd
zq4Mil1ZI`!q<z#1F=d6|nPj#G-hQrG5xH3t4S5=xX?RpaQp3X<tn#s@8aA&GkI)W3
zimk14m>5w{uMqhf|2<FCS}BH9j5XKz_iLhshDTOLKG{-3E4EN3Heh9RV$TrKT0<L-
zQ9~CEZ8fyh&`CpQEjn&$Pv0sR>!_gvJ38O=yOn}FC31N7^4#A1$22^l@&CTW;~JPH
zpOj}BG|^KUx{|5kc`e#H@~E&I)zI*ahG#YYx0SfMQfyo)4)TBUUeDqkD`WBt8eY`U
zL*rjLiSAmo!QR|GzkT`GGc%GsX~0#2$@?MkiiTG;{Gj1S4ZSqHreTzZ(HeSdcwNIF
z4ex1qL&KY7t`h%~mg%FRpN6+2?ki2&e3f`^mFTbWFM!0`(pJeDF=EnpGz`#iVtR6*
zhIgefZOiQ6tD@Vt!5ZGD+h`c3;R7nk6|_nW(eM$Svr=sHs_5|w8(FzZkUw#1@?#Cd
zHGHn&3k{!8)v~cqY0{awcdm}kML(06S#EM@v=JJ<)G(6EWOd|bEmn&cR!32ncPL+J
z7^8va;+^AIExH1JtKmB>3PE3M_(sEla?w%z;ML-4kN7wZ-)rEZ#CR<V-RzW4wOECm
z2^uDHW;LwR@RNq0IY7>!hDm(*tKm-#f03Wa`BlSj8fg5<GE2^y&3V7mS2;(0vOYW4
zlt&h0SBt;79?Qq3N=h(=Rql#STP-%O7Sm{u($VD3)G&+7S;GPivo*}o_}|)s!c22D
z%+tV=H)4*L+kS597HU|eVX1~?8Wv0UyS!Q~p$#iVjz^QWIoxzPV+h@Njo{Umr#+?D
zh~AGR>aG#1HLTHKa%pH-t6`l6MT4qgy@n0!NW-^l#70_xXH!S&eXu4{qsJPtNpfg&
ze$`0RFl|jVaXPE7iEj1{4IJ;UQ(AJTXKQdY_!<HYuErnmMnP=%x9}vsuqKKsAr}!J
z_N^70HKZiIYpqDr)5^pM+N_QCJliO*p}2|LP3+LHlX@Phcbkb_G>(RUbzIi5N5fu5
z5*-6{?9;HHu|mg#Iu6hcG?dT*9fvd=)^J6`RSicp9My1&;a$Tq4aYT{<m#B499=zj
zLIWM3=UQ=@PXpJA57&x=vy*4&x{UK0E^&o2_-nYJq1>D#tNbu0IbO=}2_OM$^`D*m
zm(IpDRXsLmtso`;nuhC)?K+C;xWSmr*2=~*b?^W-Lq{PUx9R-Boj9;o+?1oHD^j4a
z&R=N>0%jBIL@^z=>$pQlaUIMStmBWQqQp+`l$`D|dzX%qI;!iap`(<JyLFUfJ3311
zxJO4B9c6X?NGG~j@G%6B_`Y5zeyJQAwzTD(b)tffiaPGqQAOvEK13xQypmR?Ro97|
z>jW`rh4rFlI<KmZYC7n2^hREAuUCoH)KN=EJstIR+^6Gy9kn??S-0`}=sfndUio$O
z=$@{w&KJ=I?=0G_kIpoPtQRpISvnf%Xs9Eu^R4XYLZ8sVgAM{F%9GArAGw6NUNqM6
zkd7`op3;%6BS%LI9W8a_>S&_lVI7Zf(o4nibkuB`;7#Sh^&+W9Pl^ee>d4q2n(25{
zN2LuSUyt^#+|F@7)11E4FN^rW4I-SCY^6i!=%k~wjshL6b+psbUXP-E8yy`sM9Qok
zmfcp5q782iI87aNbkzBNV|2UGdxQ9OgIKmfJf`zqMDc`<!W*NfPLJz+-%Ql%o?m67
zc#;Zl6pw8bU3GM$S#-Rv<7pkw=y*{_4_W0|9na}_o<$qQP?=uP(Ou`;6yoQNeCs2+
z*=IoLspBO*dPvku$ICiip=Bz?Ue)<NgDCt@l$d3z@sD^-=aX^40}~3rq2o;*Z|Uf-
zqmPchI{NA0X%$PKlrnEL&wk?{LHf2H9cTSd=Ywg%Sj49I;AYZ4VxW$9b*$2{ntr9@
zJsm&k_*utb9q;QHt>Y^lAL#f{$EUQ6j*oN<(ebg4;X0Q7BZlf2rboA~Jf-9jz4MRw
zwr8B1{G<PfPdHPXMEOl3Ym@j~#}_(A>KMg|-XunFv2PMz>U<g^8oiZ8Ja&_qwu#5o
zV$Y`N&4e*J#<E#Xu8yyDe53OZ%rQ>qIj!J}A~m-szva46qVt^bbU8(gX_vF=wJdf-
z4%3f1Ca^BwC{V<UikPTJk!r9a#wlWwj$d@l)-gxNuR12{_)Ev%I)2mfyN*9}{K<9E
zIDd{3ZA-Wt$t=yYk;os4*N9EgqnA>q>zJWqs*Y*WbGRv*Gb5LKhM8Of6=Sm)C3sU`
zK00Bek$Ewit7D#yB{Y|g`8pPGB6KXK4kcm>xu8^0O%;a}!B<vt)aYvX?!f5T#4;Vr
zb*!Mf%1%3}k-PR*MYlRJx;oz};uFa=I@apgMYqwhPRDv3mJXZpIyUN17?gDULs#sR
zwTY#DvUpFyed))l_*oU24xQ6cHfB;K+4!C=IfmqLe`~4H<=D~T>e!-VE8SIxuOp=+
zts~G;XK>3<QfhTb71z~h=eAjL5}IIX1&#MU@)Dq9yN(^40!{Q8&~hi;TjTXwtgId*
z_(&6bbnMk}RL3zLGc~b~k)MX8=9<_qR{_Bx`s8eJnBKcsY|+GdO&p1?3(<WyImfw7
zbev<r(Q#7F^(h^vqwpo}d^_umj^=u_i9H)FOfg8}Z**}XnnZDtZOQ{N?#(XI+uw*z
z2zmXzqT{NLF$TsOxJJj*(aL}@a6`vUhDQUn4P+Q7WT3QxdkoxWAk)B|21*zxY@mpN
zVg`yEC~9yz#8q98?jk4=>(@R1c7v^nJEFRxz9GnA76$I3e9hS1vb3auQU<sidEO9%
zjObXNGT#_tsv*i4C~KgKfvN_|87Oa{l7Y$w)*6CyQNch(gO|BT^0P$FHp#r#;N4b~
zZQCuM1FUACx`CPoY8kj>h#CgSXKC_$)4NU4_iR&!-}?;k(1|B(^-S@AfjS0q4CET9
zYoMNih6WlLsBa)<AYnx39$5zB22S#Ryh`l9LpfnaM{^AfJZB0{BCm80O3B6s9x|e-
ze8&`{Op$FwrzqTD{9#5Dy22Dq3^X;6Zy?V=(!j$;bd11j+#?3krZ{o7Y2$tgYIw>N
z%{Yqf$rc74HPGCMb{7l_#Vo-`?Nuz%(ukhwW?Q1bKx+=iz?%lzaIglt8F<=2I|J<v
zJZ9i=104)>G|<UFXC^C(B(GcI6HEMLMdu_-EMZ&X3E5y515X)vl8zxCDN=II#*D58
zZpvEB9<anS2A(z0)4)p{K4-)hFBs^~f!pGFBZ~8#Z1ILIUNq3dz+_vT9i05!7JQY6
zar<QhuNdfU;HVuvy?WI^F9WX``1M@$BrD%fE@8z!S*|T!H=;co-Mfe*`WWbI-~$66
z8t7->Edv7$ylbGEBl;WoAN^#4XyS;s4RG(##S!lq7(l;W+LHIq<Xmc>Gl<U6KIeS{
zzc}JO1B2<qO%r__!HS<cVx<$wd}Lq<=gz<v28J3KX5bS8pBmWah>vB<!(~U8ov5$!
zuHeP!Ay<56;0aeSQTY)DzBDk(z-R+~T)}GxCwC+VlE@+W%7`9z@EXDSWp@X9CcZZC
z4QJMXYT#P~-x-)<V5)&}2F4rs!@vt+-uDK6pnYgb13wy=VBlv1lMGCxp04<bURo~N
zqVokg(#fv)#lUh`gl=>a!s9s3#cu|F=fKxxGGg<<<g8ST^iTSpCz$>+@VCTH@2vWs
zm}X$QffWW;8kk{Vrh$b978#gjV77s|2Ifg`<O5u;`Z;uiyJ9W8=<s<yt5lCIAbmZH
zS>o=VSWKV1Gq%*gG6PE_W|k*K?|Ndnfqy))+Y?`VVx}in(ThsO)*4tR!D@yGBf0}(
zEM?SP&uBw=BYMM-Yhj~-t6sEqr;&LY%uUfI#)<|x1eyWezySjX4HyPYt}Fwa4Oj+j
z1HOU4h%RU4eBl^y<yf+O;c@+zk1@6OMNeOZ^kh#=_r)MzqzsUL<%=x_wvumP552;`
zc3EYYfgM!L7ds7{^~H8y@GUZeuiwln5r|^Fv+4w5uYvuHA&O`jh<#kJzIY)Jg95>W
zyF&&JN0AEu8aTpr!A1<6GjPnnamF03N}9by?3+NGpl<|XLm;Rmk48@$I75Lz><prN
zD5^*Pd8yJxM!!&8pp%DDU}V6g&GSNW*}xUXc`j#Kk89k(bpx-5kv)0K@OT)tzy;2M
zXPEdj6ot&_rA-1p(U=^H)uG5VQJCq`j3OqAnNd(GYGUm3nQy(2Nz7|5ua$S0xYI<;
zM3#vXCLqNsnYhbDNfYHvl$V@REGiW%ZQ^bTxIJL@9uuihFqM&@tQl?Rm?dTVOchL2
zH2L?fF&@T}R+dfOYodyYs%ErXt8Su(iE1X!gyM}#(V;z4O%wN-xZjLiv6dOxlc2T)
zbxhPX@qonS)0yj;(O#&&2|kh_V1(qA>(lAUxa{jyNfRa-m}qFCk%>+wI-7XVL}L>z
zO|&xc5Y;x3XCi5WkGTgo%g8a2Yewg6O-%5v<iD}-{o#jAJYu4miAT-ot&FB-^nf*A
zcEO4~WaCO{ZlZ;W%Bkpy6)W<5sd!2po0b$N3QV*!`ELN3txeQ#p25S7wkFz`c=|%q
zSE|HFxzB%KMzXz$4pb>6I+~c#JcIApbV^09SUhIpaTCv&c$UhSk3C_ci;1U9yp|GA
zn)q1Cbfs-8M-S_}nK)cE)_7*}X)`(lq$WJ(dd|f2CSEYn-Ha}j)c>cHSd<bkn&@Go
zr-_$Xy?k`9)V*h%yOEbolqwf{MGlZH*eSu+CSSTg)=P3;Gtt|`>n7fyHE1pqZ<^?1
z;vEwMO!PI;kCS5Je<t3d{Kky_CK!cyN5G~IrlJ>|ZcB@fKScLsWDYd(u8H?d3^u`1
z_Rhy5gG^LUizaFDSXvNJxA!H7;3E@5OngGmH_<CChSCBi_=e0dNx9<QOGhDnxKwp)
zT6|{Wa}y&>d})G__6z!ax#+G_Ef;IsA!lkjx-q1Y`8vmF6JMEFU}K?;F<dY76AP^@
zd~M<z6YJ@3CcZWCor%dNelx*OER8eqgNYwajHg$dXgw;gWxMEGMK?doo4~m)7oWtj
zOE6K=pZF^P30Rk<*GJ|3%CSEYU!NAu<tKrDH}MB&-^7|pi9b#JW#VrWdbPy%w5a%M
z{#TFWd|f#{#l(%Ym}+901k+70k;BB&nI>j&nV6VkVwH&(ziBzw#5@yA>EtHnbATom
z(HfgY_08gu&0--9yIFMGEc$I0izQwnOLGSZ%G95nznqR*F0sNy({hPr<r0O<CsvyH
zy<CFK)h3GGA7@%a9UhOZHL*^D$xp_Z-Du(;6ZI_Ax3G!RVd8>`izZYPnu#qYwsL4D
z3=^IS-vnR(=8FL)=aKDi7B&OX-7(k1>dnHDG__e?luN||6Q?(e6hqvdk<*5pg2PSk
z*do%5gs*39W*FHb=)k<XZ8Ndm#8DH+OyqA7J51~`vDd^-ndL@tmjt`HF3Lw2seLjc
zy}d;oFtOi6*DZnpiZ}i|NI7WYkc>aXhZ!E%i6dro=tpqe#0ge3qlZ@QXXKuwdK}ab
ziBl#<Zi#gM;Mtttw?yIntci0{jF0>%eBQ)z$-iXcUlSE9RJ3r}#1#{n77AN%>&C9K
z7ZcZITw*r0McgovVWHSoaeRxoX@YdqgZZR|EZk;AS*E{cC5u=nYT+IWWhiW+xP`kc
z{8l!0yM;R}l(3?ATDT{_(~4e8JO5rw?(q34BdqB0U)8N*^ps>t3#BaNZWVW1C~e{K
zt%8^#ospKftc7w`6s5~ES<#y|93Uw-1Eg<m6_qSBX`XYRg~}H0wNS+Znbj@Skf5rC
zY7&t7$=2xk1#QBGS<^x-D+<C)WZo|usV(UPR&<70$3k71CFU(ZZ;)davZyDS7UCBE
zw=}bng$FH+Y!**gXkg*};qiu&68y4Nkl)zCLsG#0BQtY&JX_)%Nw@VVOo2QLNehoy
zXlmhM$sb!PliwWg&^5P9x$J>M^4={`ET8=jk2kaMC~f#ePIH<4x>P1{3&~+S!a@P3
zz(!dctu3^%@Rx<ZEwr`J&cYkCfQ9xJI#_tYLU#)tEp)Q*w1sC#8znni=wjh1i67$>
zSa`z1lNJ_i75Y{|0Vd)jTSZq3-K5xat@Fw3`&nU9!_R-#!t)jgQV%Adli<$>BYws<
z@uGzu7S8__?`<Kwak8g{mo2<v;U$^v-A9ng^s0qk7OwV;6F<->`5Gs5n|NrOAcu8d
zr=cE967;dq*TNSTMp)=);VldASr{za@6SoG@Q#JIWp=%tL3ySD76w{)_ZGABHbLef
znPuZ&Z_0Sz!Uq<HS@>8o$@$R2M~umvG9GIjbvncX!B7jYNgc=;Zs8LPpGx_k8YMrI
z;PYEq3NTTDFFB_c##{K_!YB))*`|eWEPN#;$5<F^;q`4Izftmh!z5|vK4L)Y{9)U~
zw-%TkC+T;R7HgdB{8?cN{9xfn3zIDTVxdv%{0SC*l3=2w<V@Tqe!hhlZWF&+m~7!s
z3%_$=-s1luv+g!Q0ajsJa<C{XvXLnkrdqHqI2NW^m~LUMg>@EYSeR*Hm4($7W^qYc
zSjmw4O3PDivggo|_ziapb1g7CPty7H9}B~KB^O#)Y+;FoMUsDfo1hHSQkh*QY0>Qw
zvznwUB!><D$IRU>h}Tf1Udhhe1)1wDY@m-xv5j1<7E}uwm62+&o%I{D6^VPxy2G{$
zoeFOk>UKdqe!JMUU6``EWnuHi?4NoiT??Lt6BbTNzHecRg{>9>3!xlEijops+Ah)(
zu%l8t1hd;LY`1X0!a)l=EbO$f+rl0OkR4)|G*R;%f|AVcwXl!cZWsHxh;~FnrdFi=
zc8C!>#32iZEgWM!+#!xwI7*92naMi@m1LqMjc{DHKzz!=X^Z#c$gpw7!dVNKEc|QX
zoE!oLE=q9T!UfJImDw&xY0s!`o9xS6ZWgXtxFU^1&dqNV*DX-&hOBr*_D()Ig>2kr
z12*omk!ho_jbb*6+tG9vu~Ae4s?F?eJ0p6#jXP}IX`_S<_E>&r)GxCvBA{20mXulg
zLunhOY}{?5!A{XeR_Bb|BRO<13Y4=^-bQa5uiL1=-jCL6DrrR<m26bDaj%U=HXgK5
z#YR;d_uHs#qneHCHtw@Ad0OEbHrAG_U&}_j+v*e4l-YI1>OEYsK3n^~dqf|wQO8Do
z8-HJ^cQ!Bc<2#DgwNcN;-a7R=-&6m<_-x9=Y-HKk+Pi*SD!|qfGD}Va2^vaTV-gzM
zJO)7%8+kUeZRFV4l$)7r!)%gScVc1cu)9g-=v7ghNgJ<xneniVM{IoiQT-Pl&V21;
zJ@T2TaK4RZHXgOn+{TkOy4Yx8qos|`HXgIl%7(B}z_4$lQ_tA+WA)nQMPq4Wqb&z(
zqrHtS$D^hel#lp_3+i{U(b2}dBlV77in5&~-Y_GZoX0s|chrBv28%9_%%J>{tC84K
zHoDsAVWX#wZZ@8#N$)7uU0UE78_&rWp0yDxR{yqZ^+=zWMXdgUjnUclf2o)CqHL3#
zIZxGp$;Qhzdf9kQioIgvRoTMu+V%79sekX;dO7DJh1(ymH|kV98tM%jZ`$~V#<9`I
zMqe8PYz(wfH$T?TMt>V`OZ*l!+$m}{kHt?G9n>QBKgp!bJ2wAgHiO_@8-r{Nv+=Qw
z_iPNdLE(=iec#3hHi|ThvEtnYG4elTFS51!TEvFf7)nQK5%Ecf+xSEZkG1isjn8Z}
z{J8MJBlT)M5vRcCvcWGTWp;!FU)mTc!KhpO(Gq+m=@?0;eASYTd~JhtOv{Y#Y>cxp
z!^TV-<86FTo7?zJmi}O4qK%&<{?Wz+>abHVvAdsbOluzL`77@)T4qeL@r#Ww>m<qf
zkFxZ48-GaSOtbN)1b^F@V&gA~zuzfnE2gPjfFd?^r(io&iJa*iMXMO~9M(J%m}O(O
zjTJk^98RAc!dx5nPO)dFAe}FZSW4kVHWu4>z(E}cOKdE)@vn``HkR2~&LB`Weuly}
zR@z9}NZVLtW3>&<hR(>gQ>?L}*r;`P&clat*V-sKDY?$ZdK()gF0o5IuuE)Y`@6(H
zTxAjv&wo47;y|8Cx17@Q-Ri>N(z6lR2yIx@(}qtk+9e#WtX;yh@$4=^;L7aFHFKC9
z{%YdAjO=>JMETK4Hu6Us@zpM|nG4Fs5u4|h*lJ^&jeR!u(~`Tyb{jiw?6R?@z1YEJ
zQYM>#wAI+;nq6WyS8<u_J&Y$35I=P^8qon8hiniWlr+6d5HlT?S*vo+F|HjOCv2SL
zdVe|bQ7bY1ubesK;}4h1sZ%lMl#R2y#A!yDV>xRN=Jj|YepZ_FoQ-n56XzwqASvy9
z(Z;1)xY@MC6&qK%X>>5di(RvEoy*?=9Ne&RlWWsK5hvQ;W;iG$0e7u4p2{WXHkr+o
z^v>O)sDok-Zg+5p<orG)k21w2Ufe8xrv(4)cvlX|<L34*2PGx*9!X0%xZ6Q#hd=Vo
zq}YFw|IsoIM)i-j$`5tT%?xAZ9F%uZ!2xka2bHDfl_VvHqqx^W&E0~jiUd_9ttM%8
z2Q_Y$)|8-@gZplA?srgI;=;$8CU=Xv4(d5P&c%~1>N|)z$Z?VDBFjPC!3GB#9V8qy
za4^KdPzMbiG;;8?gJ&E(=%BHK0tc-fJmetT!NU$7VG9m&9puqUo#ISQ9QYmLOJd1n
zr}z`QMN(!vev+8iE!osTzJultT1eq$4j!c)c8mVI1uOo(Tm0H2(bB=H-J+EP;b7Zt
zab~wzmPituibb@IgSHMH=MWsUlZ|wA(8)o22OXH*BWBf4Rvn$qcGe6`bawE;WAVov
zRNEsO?GZaW##`?Z&+idWI(W)KR|g;N;aNH;{Oul*F*3WGgO1DcuGLRI@MU(3*70W@
zJm=s|2Ynno@8AUouQ+(sL3al)I_T-(C0VzJ9N>hqxzqOuWsl(4UzVI-JH&|(>=C^j
zyyl>{gV!Cfmu>CiSEU%cc*6k|rWlRWrAK~W2mKtp>tK+Bw;c3$@Q#B44&J6I+Q)kg
zO8n13#dj0LCkG`O)l2^RZldH~G0;J)5;>dN$LsAC?>QLkU|&4>k%RX+e2$T$*ehD>
z6|C5LP=bxTvsWmeBu4EOoRnb>K6WtG!88ZM9em<of`f?;K6UV!gRyj72cJ9mg8s~z
za=<wq!MSb}|56(N_q}4pUg7T*qaA$38QCYsI5@sn+`dm#-6tCFi>&(6KJkr%Zyk(x
z@V$fY9L#PP-`6fa&cR=GlWp3^nV9{7#_SOPkzTh?(2|Y1=AY^iAHPrh<ltuqzd88b
z!6b)IH}I>2$#mB*vghm*+CH&=pJ>uCerZhhz@KqrpZLSUpAP<ZFvUTo{i5-H@fWMN
zj<?w_NW1SBoZNT!i=Uh2Pv`n_FyFxf2Q%rDt>beX%#~o4q_b&<r<3F>?c!^`$sm|V
zBkUI({z3<f94vRR!ogzpwO?%AFP8EuK(B};SL_$`)n#<=-}t2rL5EyPuXeE7!5Rji
z1LEET;%uil8$2^Id#!_Y4%XAFJI5Oz5N!^K?>fhste<lKaj?n383$(_C=OHyTj>c7
zGzYo^*MY}N&%lI1ZOi3a5}OnokRa1`;Lz-C<1Zf&>}dL+h&gdU!gmnRwZ6;_9i$y>
zmN+G8mw)nEcZ-8vvV{*02xhm_MLWm$J2>EAhl8Cgb+DUGG9a;6)~fPVVYaqM_D--*
z7P0jE1LB~ALk^D7B{-1w@xu;|%F;Op#1S$FCT?^~9<7^H4v1BsB~Cav>EM)uA709#
zst3Qy79+Fw9uTJ;{(V9I<pbiJgY%qI7nNOHaBz{9bWzmBB?tdHxX$n{XYI0ss}fw1
zlw-f^pt$Cs2Q@q>t`AGx<T7+|n~O{rH(SRGxv0`6-r}H04^J@bw2l{cLHzAO@$^A4
z@SrH>qPUAvF79@5yNf$qlyCtTce;3ILKO5~Z4<@4whfYZxgahn>C}UQcu1Q#L1`EF
zxG3+Uf{QXP%DO1$;@t6M;&^iHK{4WZl9DHnCAS|G^vtsdMMW1y4hb%bX7!WzQau-S
zUDR_?)kQTI_qn*=MRgZ7T-0(Szooa-bfc(CH6{*EY?_=;7iF8ZUEF&}JRoIq4v9{O
z1Vcw1s&^<_nDt%6Tr_g=AmhK3Nw{d>BJM^(iQf4BA@TK??C(A;+)$RX!EX+U#xC4Z
z*$=sqyK>RJ{vxtnjQBj8emm`uXyPJ|>HCb1E|M-DcG1*DzKdQW;}I8|MaH<+G14Lh
z8O>Zg>Vnx;E{=<g<}O;g7~VS8!o@cQG4jWa&mf;1;iACB_r-I_X)R^iNZMA?c9K%8
zy#yU3r7#=m<YMl3nVnrcCYg`ll4LtwTs-CCx{Dhwy1MA*!g67|c-rOXNAZJ;A6-1_
z;yD)sTnu#ayo(oHyzb%+7u{XF=;9?8FT3dBqHy*2WA|tEbipqS@*A~>vlGm|LL<9)
z&BdNWLOCSrl+UVBGTDol-D+9Hy<M!G)9U!`S)^~ee2|L%F5Y(0myUNPub+!1jS^G%
z8cExhwI=1gMGrqD7A?$Ok(KzL8-3UK9T)8u=Pr0Ui+KO~oOfLe;?P`t;^I9QgI#>+
z;v*OD(`a?G*4IgV;70$bxpq)KzwyUUunpn38YG6g7$yP#`n%*|!LJ;W`LX1@*(>W)
z7oWNK(#1#@AH);q>m)vR`7{<IT<jZ^-|SF+&Z!u|^iT3fx!|8Uk7K6|qc0JUmf5dd
zjFDihq~w1s!8b0xy~X)Xf^q%oji(<T7T-%HsVBeuIKjn47t35e=fzJhes=Mfi@)9I
zFTN+a_|?T^7r$^3HAqy*PE3p^e&ZyHmcP6BgI-j)Y3swnk0*9?%lVU5<$pETPVj?q
zQ(R2t9JyE^$2iSJ&%<Kqi&^TPrqf;MqvA6pok{1HV78>>&yirRr1Ka77Uq(<(8VGb
zOSo|OUD5ZVPa-asQ^Oe<Ge38!<Ud?3$<h@rR=U{aLUFOm#cCJpT&#DohCblp(_zuy
zv-8`RTjuBT>y2z@gNrV$T5fdlkBfi#eC||?AA{ouH{12hdPvDp8TvjE21CJn`5IMX
zAbKGBS~R}`Nnp~vLkfR*Sj;b%<#3(4IL5{0!eel7vERi37lDh=#SRxcU8Lx5F1EVZ
z#t3sHw%NrNMuW%lyD!P*2T<CSiawb5{b4~5+3up_`W$|e`*OLgT`qRh!A`{XxZwA!
z$K9WxaPEv&kKLcx%e8iYVxOc1J+cnEIOL+vg!mB`hdFBxCg!fneR@Rvo!$AZPv#tT
zan~JLb=BmB%)|*7CtX}|qwk=da&g+ld5)Cfu2JHQi?dRa-(;L~Se%o%-E(o)y~w3O
zD=`?>%DUJy>xDjfBNB-_M#h=FESdby>{Zz&o4rO~s+mP_(?y1d)*jk;DCFTb4-a^#
z;~~>SVGk8NRP<29Ls1VUJitRS55+y)>EU=mtVZkD?H>Lph~42~TS08ggiKQMC(6in
zm&f-FP}V~^52ZYe6&a<yDD>U!MKP_|xJ=S}Jg^a_G9Ffo3<5I06B*^DOsxr-Y^{=q
z$`tcZ)5E<Us(7g8p}JIn9aZ%}G3vmUS)CkvLT2OdGirGlBQoyyP}_^*>V1+@y$-`O
zDamFlj?1j;p`M2(9`ZcY_Ym{&pohjDvOL5+H1N>SLqck@NVZSiZo5*1T@W<#KxVb<
z+}(?E*zZFgay;a+`u7>x9wtc{b~jl9TVy0XJnW&lhZY_l@zB)6`HZ5?r1d!Pd=G5r
zLy^&vp}uwOQE4dlLRDKz86nkZB}cJ2FSo!0+vF(H-(|M-(9T0w58XVp_s~H~J|SsG
z51l-8_M*to)|ejiz+MO*=d>1N&~6;glTw(>E)qP&e;X4~(bF>ftcT}3JR|Xcvqs71
zWwyJdFG$KNFG|qEi>_Qt<+Q%+;S~=%QrMZos~nVvn*lOHyyl^|2gQf#<8=>jc-ZgZ
zfQL6d^zkso!&DD_J@n%w(sMk#<)OcaAs&7xAAj4!sq*o6JPeTFe;!gRl09lC2g>Xq
z5AR9vuB4Z16&ozUhmyW8=?9X|FCS++Ods81sukixJq(lCk2wktpLqDx!&fqW=HYV>
zUwRnn;R_EVJgodOgZlIv6;Y-xujP}D@-W&1n<8cx)?pEqR){+Kn)dN9f#&t_t(5tW
z6Dqr77vnup+wWyo>)!GJD@uHHdGbdOq*rBAKY5t!;WrOI)6G2mB5lGhe)Vwo5!qMy
z_?RNuzte3z{N>?qDbS#Pe9`jcpLE*g$=DI`=n=s#_ScX9uWo#rhv{5>9@cm~BEU=!
z3n}JdmWSCK%Mmfp!yG!m5i!>TP1mDBy#EnFga7h<%lRG_c(|iTHnsh)!Nneycv$XX
zg@>h5e;Q#KN4-4xpSAx!B361>cSNj`6{$H@DqS?20&B^qV|#F<&g(sB9&`^IJZz+K
z%E$llP^Lm$m8F~LKexud<%l?cM3g)#3=egW3e$tdq6+b&trD~w`(-aw&-LJW*y3TU
zG`{a4@DS3rtr8SSNoHD7PG6^$$;}e8l-X?_wtLvcb?QMJ72g-l-f>HEr<@%QfkuAu
zs9<+{JnW_a92NT{eIP4Ne9*%o4;_7U@^RS15k^-Z6@47_aLmJX4>uUoJe=_GuZK+y
z<0ol759b&tXqKG()0~&1;*2c%<)}F8!96M#UCkjrCcy;{7d>3^@ME6@`41fvw;dCe
zkBQ43t}qB36WgZeU-j_XF~M|Af^BB@O%EA9?($L6M<E}#`MBN39X>LB6!uZfM{yrT
z{79doK6bCmC;0T3U>AQM6Cd1>qZ|_lkBJe}^KVM#ojyuP;Y!EF!^Z`DkajyRN|D(&
zS;ohg$HnY*`FHy$?c?p^g6SR~<PengQO?I4Dc~O$<t3k8RPs^TM<X8(`ncCe6(4nc
z)b&x-$NA%;hL4&)s&NP>M0FpvPl#qGBK2zdxX;G}KK?o(o;e}z_wm&UQTxBXP6%Rl
zy6S`oPl$Rx>idZK$dc+^IU$(JofL5&2_FsRa84F47C$LC_69y$NkGMzZS3PAA1!>e
z^pWi&hvW6}h!2+L`pEN<l(>ncG}Ln^Bi%R=15S#jKJq2MnGbSU<-3!SNgtKWg(pRG
zALdCx(8`DK`4$=4NXY^zz$%<Rwt4ELXzPQty`=3VEp|$Dkl?;kqSYzU*~eo(M)?@+
z<8dEP_~=jj`*_kv7azSDgnc~aqpOdeK3?+C&BxO|p7-&Bk7s;5D~<5kDbe**WCTwA
zb3Xc<5(M3)L0<IHL&}gd>6BP3#U8VgFH7dDK6?3hMPgQ`7o9I&jFQeN@tO|`6Tji(
z$SKj+N72)fN4?4R{m55oC}#Wlc#BhiT0C?*nz-qGlmGMaj*lTehWZ%bW1!D>_VAt@
z^1G5gemb(u3MG56kN16i=;I?cBAFl16sMyi3NTGQEmlhYFdrZL7(qAiG2F)|KGLVf
z=hA1MT%Ui#OMdEektRQrlmq!f3J_3iq>t05qv>mSCepd|8NNV>F+OJcnB`-vkFR}9
z_VJsKZ+v{~;|Cu<`uNTVM>k$}!3iD5**O!fQx5QZAEX@Y1ZlUQeEjUA-x)E{$H+6$
zEKKt8=Na*fk6$Gqr`olgRc8b#@$WwVkQJx0RD!>J{7r?=2u|D-$)TT@J}WMriF|Sz
zyYoRmpR+Kp?pZN|OYCga%WN)5A8UN9^)c7SJRi$_tne}4#{$lsk0m}BZ5Gm*&x%DH
zlng!$N>7~?j9N>5Eb}q`tmx0ut2s=w&We>j{y8gFNjGK}>~XckwBBCUlDcj1vC+qR
zAJ@(b+JTgQMd5#ZlszZLddW>(o)Tz2bS~Z?dP~aSl41A?aAyF^hwbB{k4rurA1=d}
zk3Bv-A1D`3``GNm_YwFAB_}26?@KdT`sdP2f-OF_a>e=B?qf&EOs2z2Gqa|~BkW@*
zJDnP*@PGVWKL5=xmz=#m_W3yO<Ajg>J`OP2OG(x}D8V6eWG}4CT1R*ZkbJgtOzJ>>
zt8?Nc-Pp$&pKqD|zx-(__MZahZsGH?l+3Q@#0AMD_}9l}#_%B0km-u#-}G^n_VjW6
zR^1yCOqGM8CK*z`kfgWWs{7_SQ8+*mnJp@5@c_kcm9p0D5>t70R3ZR^NZT3#?g~&c
zK)C?r1C)|79M?So?!HyGv;=H{{4%UqE?!pF{ZHo#0jl1TtQeruEnHcGd!>ApfG>>;
zR%DfGl3!g?j;LmUS^@40aDRY$Qn>c57U~3e;Fj2bebtrO|1_yDg=3P^2jT$|0U88o
z7~sbM69O~}@L+)F1H2HRae#*cG!M`sz{GPRJ3vl=T#5PSUK8n)$p8-r$m77hqRY<-
zdg&tpng(bVpk481d}l8>C-S8v@#%BoQ8wb`y)`x89me;E(JDZv0G$Jf00pcPpnZVW
z0r$yyZ3391^Hwj;tWvxgUl(jEvjiQ2=vBar%h53a+bNRBA+53kj|F%<K(_!-2Y4dD
z#~+I>0iKdFPX>5<sF>a^o6N2Oik}zHbj<EOHjnK*6X4kZbI0aA7hrP7NPt6_AnASQ
zMfU(N2KXSrhXHy7=t;!_^bPP*fR_XG3h-KhmTKNB0Tyh?f0d53x9LZho0=Q)kFxy$
zugl)w43JqNclg*m_VNY|)iIl0n3MAwu0THu1Q-xtV1WK|TyF>XUw}u?i}%0Cdq>)^
z>v_R8Im|mo<h>hUP=MK&o4!xs0D}Xth>d@zCkbdMj)<urs{|Ml;L89b0}Kr?EWoF9
zrvM!I#{q^*Fyg%6tC*iiJo~)h@Xt-k{haNOD*QzNVm38GYPDhof7q2A6<~CL?*fbq
z@Kt~@0lp6KjnskajSVp8=Uf76QlfqKx0KYA*2m(mVS-Hkyci$g`v5-#m^mqzjng1(
z|HrX;#1jMj6kub3e**j*U=r;aU}1n?0{j|adVm?6odCZD_#?odQnzU<@OyxpPbR4_
z9pJA3e>3}8-qZkl&x<M2I5ha<lX7Wob}=o$Z5IT=%mA}E<I)f560_w1=Wy;4Im}Xk
zYR?NWUykd`p@NQ0k8LtGZ&84y0hR?IUL0VF1RTPDlfFE_ssO8{ZYyM)E4ilHXIHr(
z)&y7^V10lM0cc6i*Dqe)I%#%RFEm{6RahqWzA1nbU|)d!0n`9mfK-5V06l;azzN`T
z70@8<vaJBN1XTEwf%&up(}a<EUI0Hp5FnIx;Gk#$_BeEQOHVr9x0#8}0k%jD_XOA)
zU|WElQf&@oJAJ!&vyK-;_64y+$`EiF?h3G5PUx!_1non$_j0X?1pWL#fP(?fvV{PL
z7~%pP4{(C3Y*dnp9SLw$wsS1N;&{$S7X<5)o|HYF4sa&GDTz6d$rnV`m3bR3M6O7K
zoDXmzz~ul}0$dDmiAzJx`!~QH8}li~75CEf(VAszS7pSw7T`K(O?GjEYjZ>%OF4Er
zz`+gqg+kmG;)4($hJ5xKy@69FL|uXqMM4w}`TGJ?3{fdWM(;%N5O;<s5#sg`J1&Sj
zLe#(9^x_3^_eFsacZDby;`{x1B}0@7Q94B1i=yF0!HRdw>TTC&65kVI<4gIS_ve)f
zQ8q;Fm-2T$l}}ne#MRFeOcg?YNTnquD~Gr@#Qh<z9I00&MAZ=0rOcT!xh$<lu{D`2
zYF;hBMu?iS>sldRz9{aK-BA+?47w<4%N8Dxlzma49yJf~5`{y=LS%(#6+(oFhe(8I
z8X`Z$V>NRdgvbez8=_%|Mj^&u6c2{jb5Uf6n0-++4xwBW4}~byCPr}Oq99;u5+WJm
z;Sl#+5_xR@Qp9h+D&r9<IXUx4hggHQu~NTfHVg4+2;!Eqh2|kzgy`2fYN6F7QM_&T
zhh1}7N{-n&RuG~yRSMBML>n45M7t0jLv#x9!X>e`AftVV7u&`<ggD+Vrnirge%>bb
zK<kWZ9V75~h$lik7vlL4?_Ls5hUgliTZk?)JHJEhsSvD1@N@{$c<YR3C3q$TdnYGR
zkU{W5i1!OJy0b6I=U94#VEZiUDO(_}+&0R-65`bmeL12Ky?FQ&;te_#GJDG*b6l^>
z76_QWxg<#64DoNPcppjs<G&SRK!|}M`iEd&Z%fLe|4Hx;o4P$g{<|Rt$!5n0ycb5V
zEHb?xV(=||&->Z^MrM%tQHUY5UJC6}7#d<2U4kAJ;^Pp*L#z(5Cd4Npe;0%4A!dZp
zube&$@neVy9A=0wLW~IUWr(jsd=p}1h*2TF3Na?c%`dWNT@s^dnf7tzlGuAmjFrqQ
zmqh7*1v%t@OHcb(d>3L|h=PB`i~ox8blMO<gqSI1-uqXKlR)`bki(aACWiPc#NT1`
z?$A$?{v2WwS7?6hmk_^(m@Jw9y~#tF-$MK@Ie$p{r=(xY_k4E#E2e~)8e&?A`?};@
z`ByNNyBz%`5r57wQ`%~7h<SAN%VHKiT!J~0l2h-o#QYEoLM#ihJjB8fi$c6|Su6>o
zodd&H+sk5c7+raJAy`UZ{W*8&WznT?%N11kNWGOIR)rWnx^Tr>8O)ZfmBFL_NpBWj
z8)99^AM)UAi1i^hgxD8iKSM-_e?n|$oC&dsfIo@}VM(BbP$keL)g`5XL92e5L10VH
zwh*-nB^-&}5MBuXmSiYFz!lfK73G;yA<~k$S<)?%Zk3d!`}*gT)_5m>XNX;4v<=(K
ziMuQab~7MI&g{#AY5u2qyo!;ZSuTDc#39BRhFONza&e}12a6t-95Rnca5TiRTb$z(
zoRIWnh*P)tr$hWHfAMjS3u;T<oNo0lN^d_O;(`RtN@a3UT;jrEM7k_?T^2QeZ+SVy
zrOTq!6>%-Zbq4Jekirf6WQaRbxHE-}6qGXY!YLF<MdmG(!fh#JO3Zm7hci_)g<>g;
zx-ZVjs((eC>y*hwR6G?evD+o>b~4^)W}GSwXc(VRqS#$2luV&T3N2G8mBJ_WV!WVK
zOyTYnN~h4IOX9XQIjnn63T0Awqeq;$tZb)T3gsmrr^2nGN-6#%3iqZ^C4~o4sFT8s
zA@!@K@bjV!t7`pfDLCcpclse#Jq6MllGc>8mZbMddVdPFC7_Jeuzvrm_3Eb3Foi}b
z)Jx&f3-#)!qN^TLOoA*)<B}#MZ6GOMn|v?@wveO(uf)o9s^2(;hd7W<^|K|-k(Ak7
zj#T2jTO8J6m4{P!MAmI8X}+Z7H<RE|Nt;W`_f&uLV($-(wMv1u?N=@?QXnlzp>+yv
zByPAnmx;{wDRfBT%M?bY(2*lep+^cmQ|O$+V<~h^p<4=%r|?7yzx9Z>ydrp#|L2m7
zCpr8n@h*}+B`LG_f1J1c_xRH(Oe+(o0?(xIYzoh%@O%m{rlQ}<y&!4#RP;L$X8ETO
zq|aT6e%3MIig+o7ms9vCg&`@tLRCfl-4q7#DL@LnQvAgkUMUx68kj<FiC>rWjTGKY
zp^wCGrO-cxz7qG7l=8jC<&nNEv+tzvzgzsVSHyr@_@^r(StN&I@1-y}g%49$y&^Z~
za=rIc_&ZU5V&VE9r11IN`1~t^6RlhkEFGL3ADW7u3$N3%ho$&aI1H!9rtlg4?W*9W
zefJf?johaxoEVvxc~yL#0`ES)NMXb+ft;(N^Hnh_h0!T2Okq(9U!^c6g+EjHD}}Kf
z^;PkWTs}1B*BsXpp5e#7O`&PS_;->Lj7wp>#NVgzLkd4i{L8J<2`Nmxg@2-N+`^MM
z-DPrEo#|J}oXq*XRr-4hf84?p;~4vT$w4`}e{;MkOy&HhFg=C2Da_-V;(T2dvs0Lp
z!pu|@uVzuDtAc4{;RLg!m#T}IS4FSK<5w2t%}-(D)#!e3K?=+=@-I$dNeWsDI%CKe
z$s<?A(iE1ZusnqoDGdBLzM4}!Jhn20Ra_c%V@wr4iRi<h#@5hKV=@_t)~2vdMx^zU
zlCyywN&Jtbn{M$H2~<gMyC#ejOgWGAH!FoBC390Lq*JgZb|iHr<<xs}E&B{LGvYxC
zq0ADqXmbi%82x0kKYSW*lFqI?II)!>XmDa%3fG4gCLnXs*!Zp#cBfEr8!BzXo)q>n
zjBG*kE!daB{uEB9aVCueDgGc4W7GILjYBCMreV{FrEw&Mf?@GuX%tW6XbQ);l;~h7
zT&6ME*EMl6g)=FfO`*Xxaf+=;X2CVVqH`&nPvJre7gKoQniz0RFgT34CN9z6u8Bo@
zy<*qJzqH0RapIaFy_&)`#`!b~rExuly4OYR!mVz~kaB~8;=1U4U5vdRHF8@TnQ1(@
zyJgWd{=P0&Ul)bbD3ZqR>*C^dQSyeEcXum_)x9BZPved>N~TdNjXTpg)jgZ3gajjg
zu15@s?@FWd4Z-Z)X_QW*Y8utjxF?M=X;es~Vj5-B=zT+!Pe<{MsazVvZ-|LEB4rld
z5S7xXoW{LrRFMKpp2;?Eh;8rIJ9tABxhX31Lp9y%RZpWv8f$Kf2hymSMy)jNPeb&J
z-zTdyxhWpMDV7Y%Cg^=r)K25$o8q^dqD~rh)7X4d@VyJxttVSJdsAek5l`c-H2SBJ
zNTWd-UDN26M#D53rO`Z%7PL<qjnhb`@o*XsrIDRRlQi<!T^hNpm{IUr(5gg6LG6r!
z{EUJw83kWt6#S7<utM_fjDjN>1&^fBG>!Z;n$b#UTRuu77b>V+sNkVO1sw_%a8R!m
zDrlKTt28>%fE-R51!=TPqkS4f3Kg_YqfHuZCH}rp!CYB|6<hotQ{Mq3Rq=gI&WD_H
z4sUj6iNml9EMbRB&N*iTNDdN2l87LPC<ZW~0tUo@B7%wt=JXQ~=H<zQAVC2oD&KkS
zf2+Q#u2ZLP-`9Qn_U(RYrr%kO_4ErP{G0ZTs;Yk&tcpc$K^YXr&@hIDakZcfrvD4c
z5QW=Ucqi`cLNYvm6b2TOQDKY@V^SEC!x$6B*f1u9@##WsTo|ux&3&n0?s!FJ7Lr?c
z^O&6&#@0eotxS+OC5)*Y)-di5V_F!~!~BmeE({D5TjVvgw~*?fYU}IO!MZE88DY!}
zV>Sb$VDN!3_AT|)zAPlO6laz?b|GQuyfEg6u|AB)!dMW-LV6&Km0|o{NEU^$B#fnD
zEM`m=mIoOIh2_BA_MHpMGCHBKJQT(X9#~kGhq1G;JYT?z<jd0oJ6_U0Ei9`T7-2k0
zI}6L2FxG~#j=@<(P8F6%lyJ(@Ao;54fy^S(t%%GhBGlXv#>OxnXYdq}$BPK-*;7Q?
z-51!TB%8x1zBurN;&+DzsIxVUr^0wAjCaF$I*e_!gl-JunJ_kN#&cmj&q2Q#dNzz?
z5h2;mZtl`{gz<tR%?5^E<P0q;FEcV%`$=93qh?VdX<Jlw3=g~-#%p1`6~^8$c7?G!
zj5oq~GmLSw{VV4O_Jr{b7k`fFqTu0UIbY2Q*1QvXC9NgL`Uflv{yro4^Bh0Z+e&|*
zLJHpt<NYvx2;;{v_J{F77@xC8VSE_IfiMn+@o^X*QMg&_Q&fmd8+(Tig>h<pV9>1K
zr(qlpV@6S7`h;FBDwU^e?-rHM!Z=e@jxhd<O7UXy1#6of7`9vcI*emnC5p-MFun}q
zE6%TC!ffzEZFn)kecCsiV#Va!Fun`p`!JgA)_yG}w~EQOVzRH8{1nE|VMMrOamu9g
z{>Qn%X&%NeVVvONP+U%i@oN~TX<iteip#j-Lg5)k(fk0@e;yz)!Z5>d!YKQkcHhr=
z@7D+|E-n_MtGL*7>FYTpt}5-E)}AXau`uFXrb@{9FcKWTFn;5tE+Ge~wpmNjV;i+J
zPXRQqxLhhO-*3?-Y|_pto!_6(sQEj?ER2g`TneMWjZoh3z~wMXKBJKjDj~rVLVksl
zmvc(TbRE~i_={_!jygL24&!<l#dH+caU+bIVeI)kR7A%uMp{a{%L;Ye4&x42wi5DB
zn7{hgPCV!*|CckOgpkae>o2Gy@j#%E4)Qtk{DpOVeSd)IwGvWP$1n5zCB_9<ZH+gz
z5<1H1D6gZWj#4^G>nNk+TnQ<w13H#&)woccC?SVScr*R=djrpH*DC0!sDsB=(@{x>
zj1EKxg;xF%s;r}mjshj6YDuB6s*Ws0s<ZW!#s#g0j+#1Z>6o-v>s?YhzoiwtnO9dw
zJss_J1a<!L91V16I(#~&l$3@#n(BCPNa%yK)<{QV)hOF-qR5hxLf%YAbEVTlVc}^3
z>a&9xIx=<mb?C!F|Gc4P>1e5=wT?DAnv@IiOwmdaPCaJZ>Ue*8VAEWGI~`-Ld-}Cz
zX#tu#OKbJ3)<H+MjyxS99XUEW>gcNc`SPVuCmm0glrB0t>-b}#pORc1#Kq$@u8>n6
z40coAraj#i=`=LdgC5f{M8{AaJ$3Zb(O<^^9aH0>-a7i|=*zK)hxWg!(P?{2%JGuY
zk0Vmj^FK<-Kplf<Pbq0wN|<FD%#kW3lS|1k9m92u)iF-T2puDJjAnN@h^6G|QZkBt
zEG4H)$>mbQX;`AP)GsZ8(lTDh1Ray<a2-Xg&_s@oj(bbXpwd!qaG=G;Ao)}!xi&a7
zW=LpjY1vm=?x93SR7Xt5eLC*f@w$#Tbj;8(Q^#5zkLY+n$1EL7Xn>B{I_BtD%t09y
zn9H!#u~5e%9rHOr3j*Jj7N@k3EYNX%t|xhHjCQxQw0Ti$R7M_DNAbW}vx5u1)t2da
zNXH5t%XNOULt}bluK!^jxn*RPj@5K*8Cgj)$_U9ChSo@JXBp3XOzX?YIvtPd*rwwd
z9qV;Grel+i%{o3UBO7!)uH%AI-l(J5oxIa!gxM)wLQklAp472b#}*wY8ik5M>Or2;
z@iZln-H_x?Ef+EpG8^)&j^`K&I(F)KUdMJFFX(ttM`Vfr2*iTy&~XJ)sjSq!ocEHd
zJhQA6o*rQK6&<hYc(bhR*17KietJ!7Hc{K9NRP5IrL3$eE1YqA)KRqLO&xFPIHluP
z9eZ`Wt>cK!O%kwA$2&R>==ey-yE?uoEAQ*ruj4%(W?A{GtduDyALwXNPNtNT4|Vh_
zC*)muO;}D2>iC#G(eWAGRZb4+_@ta1W_QX7v-IRAs`ZoQ<ZL-9UtU_3m!ak5C|l9-
zgN`3{9Mf@J$2U5@)$t{Rp}c&>S;N>UFT2Z2)`GzC@^Z1fRH-1}amrVa@9FUOv@R7y
zst1Nwka-p4CmnUCY5(KI(ebn5%nlx*ZK@zAbev?h737@?!YpTTyn>w8aYo1Q;{%S4
zFl*bbEnVuj8DKgLcA3+vqEKitoGMDsiZZpLJXTSjEgU*BEZ}mzo#StODHPFh_)_Sj
z1%Wu1P#t9rlrxajkz!<WLDrGhaaPA=&Uc-kf!2Q0ah{EG2r9}sI&F5=(TZ|G$3-2N
zIQvps!(sfNf`84Jz~&<%rj<!;TT=T|$EX{5e=`PjT;=+&H2>0ZH?1{Y?yq)M8*@%0
z-?mztx+mu*7k|!814Rwo)^SJ2ztrSHJ<PvhNA^FQ^#z0VC;5rRKh_EuC}^ON0rIg^
zwZaD8o~+#+sr~$hcDkZGI9|I{QHmL8T1iS$$H4U_p+nE)mN2k#XrNprDP^FvfzFkr
zi~$(P{#+YXNvOQ2k~~{U${VO)Aj3eWfr<ty8E9ajp@GT<su-wapss<c2C5mT#WYK+
zZlH#Nng)KaB=1y`Q<a34a24ufXp~T)wo=P=v>L1Y^$c`a;jeGt@}xk+m44oOFx$xB
z-W_OR;F+?aCI)uDt%W9Q%?y+*lH1fk;mXpevNSh9A+Oa#mF3cWzh;2wGcdlgchUaQ
zBER228v|_(WEmK+Lt|=bpp}8vG<Ao@uqRU3&Om@Ru-69K8{RVh%GX-Z@Zy0HvS&t+
z*&H7AmDY(aGO(z!bTn|*)krq6Edw7LS{DQ4%^hvVacy^H>24s8o-|R`M94r718E*&
zKn(OWu*bmb26`FjP5&EMWuT9Nz6PcnxW_<01O3?x0~2Vrfq@1_8W?3@kbzmtgF_7r
zQ)IA#A1Z`~C_G+S&aKym8{DV_rK^ZtS^lalye4T@#k(pPZD5Rnu{5KKjHx0YF80r_
zBI68fBd;Px6`9D98WNafV6q~gozhMZ2~6QAKch`klBo(i&h(#qM!VK7bgzN?49qhy
z-@yF_W*C@lV2**AhIg&?0L@dx+@*aqH1NtIKhyMk16Qj^pC#UP#azR?4Jln!7O;t`
zvdF+<TK;;@LWR?Ah8{Gq#K3X`4;koERhAl9Mu!y6tyD6|6WN%mvbd_OFtE9*JWOxw
z*80Avy<JtluPWrL4XiP+!@vs$)*5((Y6hM#u+G4v465Hl8x35jD!hGO&-qeK9y73k
z#y^$Iv)+lVxm+kB`?be8nhcw2Lf*ZaY%%a8L(#yq2DTb_%D~ecscOP0R(7Yxc{Jj;
z&^E(c3Ubef?)(~hj?GmQrsp}<)#OMuIa5uxE8&%D@}hwopJ+P`ykg)b#a~uP;r)v=
zE<vvv*hR_cK$V5T*Eq!%1}jyU-89?q&Sja^<qZRG8u-z`Pi)k{UIQN(_>fcHz&=J%
zb$QRg)KeO7<=){OsV+?KDmiByuSwoFu;0LeMcStbuBa{t418qZh=I=yj9%tHXmBqY
zeCkCte1&rlaUvM}HKx2@-J4dt=j!oi=raR5*LW+{x7CH&tVO}22EH=zwSg}T95eVu
z4>`_dp@w{^c+na{-nNGHsUhDO_|Cxh2EH}$zo&B>-pZR?Lw+!@w1#|JLsB*5sT#7c
zhWyM@1BL;UQ*vhT7X!a?iK{8(CzRx*fm4c5(qNhYw1G1Qn$?uB!WYK{bVVrPm7!(8
zHsI12PT`v3aJ9LT*YRo|FVRQU6nkVK$_d^flrRu8uzpm4Db885!cUT<=ZA(;hIjqU
zOFQCk2F`JS4BRwuo>PNy+d6c`8zA`R1n1Y3%LXngen}zYgz`T)Uuw#q3U4a4s|@cA
z+BKeN7W@BFm^UKuw}F$x1J~*E?Hb7~F8&6JncU|Gn`_D)u6`z3-fiD}bl@KY|1!L5
z%3Xyd1xyrFYK0V1va6<0xrjQXs6yJmxMZ+|>2;@!3G$LAN|`uZQ%bAs><5Cp|2^H!
zyPPg(qP&UwP0TP+!9+z9O-wX3QOQJQ6E#fKG*QJwRTDRA%9G=@Y9>zBl<KT!Wsrou
z<6|6huKBf0)HTtimQ<)EwN2Dvg|(!)%2HU*M12ztOf)nxv6eJanzhZmTCGDYZLG4(
zYe_Q`%}sPQ(ai*-u7!!VCfb?MO!!P>nEaM5TAFC3N^eeupTxxE^}(*^H0uAdDB%20
zYi**)reGTryKBkOS`w}$7ivksM0*oCCOVqj=?EQ^f11<{JyklC&HmPwj<qFozW+ki
z0-a0@sV(zs3zqmho5(eB;JMr`Ci>0|Qoe1apV-|*o{2#w_ew&@L=Tpl=x5@I+9D=;
zn+Oc?_cZZtZDHzV@&k?<Ngoruec&w#FBiYAEiViToSYr#PnXUP3@|a!MA7b{WNo=s
zTZWhzN=KQPWMY_!;U>nI7;9pLiIFD8)sfLAMw!?&!{4orFk7jPXmw<f;^R~+6BLd&
zv14A4iS7Q!CoB0h6Vnx$Vq&Ty)G0c{e~*cKP26YV<2v%l!~U1+2rpD}4r$>!Ldi@M
z519DI#J479nV4<jDHBhdm}6qDi4`UuHZjk{d=pDdEH$yf#LYS~sje(Gv5@glR~B(7
z>q^(ULQeUE>|k9<gteC*_AfKB+yt*@>c6Hft1Hjdm4{3a_t%w`bi(b>qbAmySY=|h
zi8V?>;UlJZu3xLr8XUN1GuF{djY1SYW?}<J#Kaa8Kh%|tChpdi#}!Z1l}(&M49I#S
zDov;-PtxpqvTk@_E5~Ai_N3w;){|`}o-wi4#M>sGrAf+NubOz?#C8*0V_!1CE4m#D
zUtq^)dKY+1FPiwVp8Qr%URG+<+-c$!#qZV=W?wV0%S841vfIQS6R*>UCp22}hKV;#
zyk%laec>w6s=jw+F7<`k)%9hciFY_aCJr&cSVMi;Z{h<QQ@y}@Cf-*SeqLW#?f5m?
zhbBJa1Ye}x$P67Y@zs8hMC;2z6W8lYg$8oi#3v?>nK(|vOnheIa}!5RjIJ3v!im4s
z&trWJq+0_S@x3;tfqcQCRD5#-`H~fy_}YZOYG_wnD<0F{Y#>J)2(xACg}yWKy@@|f
zT%phD3KOo0h>4##$|im_aoWWH)QDGH?LT2cZy>)gU>XR?Nv=f=xe17z;;e7zJ)b#a
zB5cAmVVUUFC8V3^-%tz=$A}QKyz#%dF33xLn@ue7JLdmg1h$^$&9$hBn2GZyem4;}
zkuY(V6ZXD9(nN}})KIuwKlO!{R{kfM+E9qUnRvOOFrA}A6k$~tOkAd^4dtS0=n~fl
zc-NV{(53JXRrFUwxoYB?iINsdS@_Gu-zExJC}?5w!~W|gZkf1kqIM&>VWLeVxvBVo
zMsml*KPLWVur-qEk7#omdE@>>Be|<2#~KOcg)9`dP|QMci$68YD`KIj<;@!MNFyOR
zyft_0)w~iGo~#_2T_v=na)_j~g)$akp)Ac98sK&BwMJ5+v6Qn=-a-`%FSHKTZ7dZm
zRJ2gZLXXBWuCY|Mu&}Xb!>4sZPc#<tsun*eBR@8lY8I+n-aU9)Db%u1o0d2z=Ae#+
zx)uu9C}^Xeh58m2TX@hy0}Bl;^r6`n8d+#;A;20eG_lasLMsccEi|*dr(r$|6CVmT
zw=iscpoQfvznX<Rw5N#>S(ITR(}G{AWm#xR%_h>WiB~kUiIA6{9c)7{E%Lw9MB1{C
zvxDsvu2V%p3mq(Uv(Vi_Hu>?;l_rv-x^udTbhOaPLT3xP7P?sI-BcJ|#hOa3rqZUV
z=Z&sPv)0mJo`nz<ES$TM*Tcf}rqYvEP1ja76+R1Kc3<J#UKS4Cqw(n|pB+6zNmJ=(
zp+7CRFv;?6rUqCTY+;Dyov#O47-S(@ImC40sCK5Q47D)Q!YB*m!z>I}gnWdB%T1+N
zGZ}4RjD-mnIOuho$yf{Hm3idjEbl7rvn9bEE4|0{ROsAHCR><dVYY>yg9F2x$yC~D
z;T{XKn#nYU>zc{E7G7#5_gUN+%_9ez$qWlKEj+*|YA&zV37u>vt8zo<n+dbCl#qU&
zV}Tc1b1lrXFyF#EM{^c1epEx5&1I2=dL?tGG#8$u^O_4=Ut(b?onzr+3(G7lxA2sO
zr!72WVTFa#Eo6&@hb^qMu-?LBRA?@%EUdAx*1{uYLaQx&Hdf=Qb4PP|#KJlYPIDnY
z+*}^D@bav{6K`phY_PCVMZ%Va{?n5Kk6YMm;rT#l6T@<xHhH2(e1dMT9{O8ZmC-_;
zRIP92;I<H&vCYCW7Is<KZQ)r9&vCL?c#&qz_CIf72ji-+Y`4JrneJ;L%x-BRFIjl2
zh3sTV@77+XCkF+XmMqj>vGA$|o>E_9wJky<M_b60<=P$#uhVIae+zF|cvIECkCkwI
z8_3%h^cF(0S7rGajoB+LgexA+c+bL!%OT$CeqiB!#ft_*`z@5zq(SN6hnzw5;XE$}
zKC=GrPPz89z#$8VEtnQ83!hl{)WT0(N$6G1SxvsS@QsBd7CyId)WR23K=4aW3Qdk#
zIIhU9#leZ1P*T5Uh^1dqzRkPoSgOgl?1d&jaELYePT}_!p3sEZE?aYdRHet;g#O3z
zogX-9;S}TF!dIFwonYVHJd%^eL%%ZMErcz!D-%3zVe}F|CnK*_rkw~4e#oy|NNHkl
z20i4ztBK7Ru<)maD;8V}5et`ma-I{4FMlnZweY1+YWSqPPvRC57RLG{$r>!Axi(G=
zFuTAf6PD*}^2u91`Hk~hO{LC9LVT=5@BMD!0!Qs&?nTZ%3tEPdUs5Y=<qUamOYR>^
z*eydwWXM$u*Dc)ObX%@n<5|GM-<%G0LrXHe;pVD-)50wacj?%L+HJ0H7XGpDT9weL
zh2BWDE$X$%?7y5B8A3vnKHH%cvQgN^A{&cs6tPj%MkgDcZ4|Rn+(r!>HEoozQPM^w
z8<lO8vhipnubd4&W#y})(l*N2fQ_;?<}LF-UOIU4SPluXyp1<9yk)9_jfzU2hcH{k
z_LixtHpV>cUFRRokZN4m=lH8DJe?urwQSV3(auJ|Mjab}WJpsR&1}@Aj_sW$>f30{
zGs3%C0~_TtrJ+KSMm9E%36V5Wr7|u+o#r-L*l1~^l?}~?&qk&Vzm2tfaxz$yDY=<)
z&(7@9_i86!&l#2}SvKbUo5yr|mc|!?t!>mFskLDTGlh#@TN|4)Wy45~*xu$=c(|D<
zTx>honBO6kZR68S*_A2eIW{`lXjm=8^Tn^3-bp0aMi(1XZA`P#)kZfPLu?GS(Vbqs
zlh@lu9~*f#LN=~f4)w6nlRo#0s8T90JbEb!g_nQR`m#rUFJ=bX=%+Zd{cQ|ToU1gm
zef=^>We2lSzwi<IFdM_^d>dnJY`+~kH6t*>#z-5ZY&_%_%P&{`@~mG*+c>63)hroj
zV^x++VrR2tyut}KCfXR3CHG{>gmHoAvt+W3DK<X;BJ@p`5U1O?hl9?BT8fz^_p*;I
zWu}e$Y~0U|kJqkbN#&L@gWYK<zLrwpOy~g{z2|zTt=aUyjk$EVjRiI~w-g$-u%*nm
z@#anM9qx!Z+Cm$9TFTLua;Bv`Xk&?u_igOAvDC&g8&BKVW@9;fWP|blq>U9e9=5TL
zp0vFtI&=!HWT$LgXep~12{s;4d<|PXtgRg$;yrlLR`UMHz^JpK^)?=(H(Gh4yn&I~
zN*-qnFw#^gmR%UgZ6%v+JYnOvw6?{@q*k)NmCQ(LRb~Ztw-O3z!&VzlDPzd_c=H(>
z&)Rs)#$FrG*?8W@P8+Y-h_#aKHmLA|jU619wZW3DB{4McqK%hq@Rbu!!7tn3Reht@
zLVVT6Yc`&2EpOPES-rq6x`jS(Ejg`ax9vSpefvjkQEPdfbG)@YYin<{mN#vD)mplJ
zp}lRxZ7r`D+CD{YwU&2m-1=C1SK)gKnXS}DKCtnj4cmre<A9BiY<z9w8yg30d~D-0
z8%HQy5IAJx6Xjm=!#1+o2p_Y5sw8yX#d*O<ztHD4j@tNw12kKkeJs?wjeJow_n3|2
z?9{lxls57u&EtT!ktf^8o;LDB8~N7e2Aeox<D`x6ZT!Hwe7F5iHh#2`YU739sIywN
z?YRt$pKbh)i&$Hs--y3(;c6`;r)>Oc<BW|km$f<mhHWLIVD4$I1G@JHO}DXTyJpxh
zx%#!0v2A5>Te0ZXHr|@~WLtT?t++OK(Zm%SS8YT&Og7HhIBz3vBVi-0hCa!zwH3Xs
zq*P$MS1-gGF13}jELD;tJF{8gj5>wC9vS%E#zh;K*ywEk1^RQO_cH4;*E$=2+Au~3
zPLI)cjt+b}KEU@@Oq5)+@t2K%86GzN<`ThpU}V0i-Jmm*+D(oZUA-v4_X4+V+_Al@
z0^aVSoscwCICYlyz?@HO3pgm`ps)iz^)0Ay`jP-sc02j(i<}}3_?DBTxPuZ7hPfE-
zqNIaT4jyr^&OvDhWgLulFvbBKly#8npo@cY4tF|569-Kl3~47798`5sP4S8jDmkd^
zU{*VMw4GFO@KQU;eI!V%?x2Q)x(@0&sOg}V<2}o&<9O?QZ3k!D$=!Bxu$}zOqXIH~
ze5m|dt-gbX4jMUV;CPR}cpJNYptmwKcJTRf?|k?8F3lg1W)7M==-{A5duic7bI{5`
zYX?3D84fZX_#LoX>h}sr!B@3O0m*XsSME?t2TKF8oy}bcG26yLTL%G}<Y0e5o?oxc
ztQTs>V*^4$dsxY(fCTB2?OMh5lC4_IanMnbP7XS&PIadl?PW@PS=L^<I_T!0pM(C6
zH_f{{=;eSu&vOuR(8Ix#?L|}(W4KPIP*26FNgW1oZ>8MFL0?5EWYGWz104)^aIU=!
zQu;$3v|Q{B<zNSU+shEgn-SDx8b<ru3kP}xM>8lR6^>HKhqsM`GS<O32P@S;u!ivt
zrZ||Ynwy|-qJv3_Oy+R3l`cWg&S?&&J6P=CK?nCZxYxlP2Xh_V=iq(^53q(|ff>p+
z_Gl(!Z+w82R~Z&~c36Oi&vG!^!Dcr^PUO44c@7phSm<Cr-5d1Y;_+&HQBW2+I3AQ_
zP+lev$`THlgNGc{?jXw?{2P?z3eU_7@@?9e4GU1h=XfhPC>`Ws2UlhVhIWuu4(4_6
z7WUN)yjj{B2Tyg7wW`beI>@6A);l=r;0q;r%)xdCI~;6qu+i}z?>z2cD-Th8lfumk
zpHR3(;gbq^9s9I{Z4RDgBsh46?Ox4e;IR_oR~_Ve2ayi)cL$lYS|j0);`lD+1qXW^
zyzbyd&KCzSJE)i~uQ+(s!A_3UFu#^9#Md0`QjX;#tlg}6uD{u1!9w%=Bzy`tBwOBa
z@UDaRI1{twO$To=7#zH<4%z469W{I$f?*d!j0d`%vG+bh-Qj-4IOyO5rFl=be5eRD
zH)hKLPTMy%3O{ymh+)8B&XGsn)ebxO#KEULDqDWemfy0aV2;$xkv2JUgws>0JwVMI
z3B02n;~+Y?<KQ0$Upn~8LD+%r;A;opIQY@QPxRHn+;1KH;CS~M-*E_X<a-Bi?$ZwC
z$hX^a&nyV?ocObY|2a6p)xbf|n|XY-$5rkZ2lh72+@SG2)F}tQ<;bse=DmTFIda;;
z8AjBO>@pptaYyOjQ49yBg9{EWI<R=4gSdl)1BYGiC=mxy2dg`ZtC0G8I?B<G5~H;p
z<w{4X&`FXGQf!5@k4sG_NjrGBlbq$e?j#dC$*xZFStt3mlbmPF(_JK;q*!P1b@l?_
zl7q_*{&sNP!5<F(ba2(dH8#4<JFoTZELYgC&N8F3tnVzx<9UBM;9U}bP`bCX@XquG
zSF>EX?ck<^TMmwO7PGTl>MX@_J!Sst<6j4Nx%#<i?V^B-f-Y*gsO_SVi^49-x+v$O
zh>N0J=UtR?y>^SaDDI+!;sbMqJ-Yd4-fTrmyC~xVF2cF8K3Cq!6<%r6C%hxOkt^k0
zRB%znMO7CST~u;W*#*1L*U&VTYV3RE(joF{E~>kz;i9JNIk{FBZy<bKJco=g)`dgE
zqw2V*>!O*9<}T{FsPE!p7isLGYZqzYqM?gMF2;0`g<U-57rMx2UF38ZY2u<O`_)yn
zuF|KgOzSEwTxc#bUHD!2Tx7W3`GxnJE4s>-uEL)Va&QlHl`LgROBX+Mm1I}Xw>P^=
z8y9U|<hcmBXy+o}qN9sWtik2G!cYen*>q+%3A((!4YlniIW*}=h&L4dyUDasTE+)j
zXBWA&*+n-OU0nXQ#Jg2LbRoo-p5)zGXEE8@&5LLL;B8?y>ES|L3~({fMNb#KT=a9%
z-^C~0q_>McF8=8zr@9HVBz;vj`+k3&?!r6wZrx>6cNyeju!|ushPs&7U9P_Cy$yV>
zyKn)a&V=ECPv!+jxESf;yo=vmjB+vB#eNqb(0CVPU2Z{)M_r6_G2X>}F79_R!No+^
zyMCVLa%X0|-(4oV7_?9Oa<2cI?lQ&2i*IVoPE|s?ySJ`RcX6$|+{2K_lY14<%99x`
zX1ZA6;$asLxR~W~XJ#yNG26u)7jtPaJ4>}ZS(zsl$A@<3$?-gy?_z<A3wgq#vLO!_
zyLiyWQWwiyEa4c1WJkygo>3urI3)W+vYg`>l831Fp2jS1Ih!;Mt#m=PH40ZLT&*yn
z4rkF?m3_no7q>=s-g+00xp>9Jt1dRU*y!Rp7tgzR+{Gr>dp^9)_1+q6cJZW(tqchl
zTR0*i??En8<Awg{CQt1trTnx)W?A$Mqk_KzVo1E<X_9Z}tmz?qPW~coP-eftF&Y-~
z_mEHzdCA4gE++Sooou3q?CBv(dZ_hZ4ayrX-sD7cvD?KS7sq?Z>n=J^3Rpe7A5`?3
z8u+7!yyarA3$BfPb;~pC+b-U9@t%u)F5cnX7vb9e--*Dx=~&>Mk>7VgPT_|x4!GP7
z8o#*sNDa^zE{?f4=;C7+hd6e>g+6h)eYAJ=c$o8OSb!&&&lnZgLr2(CO-OhK|J=n<
z7hK9HVQM1MS>(8juU&jYgGIh{@s%Rvyej+F#dj`#bn%mm?-?7*{QOPAe-9acV0<q6
zKmK!m(K`$M6rON#(nV5v=9G(HU3_S1arWKC85fQVm&=z6-G%AG;-GvPG8lwG*(x$c
zWCd@#xqOWeofl!zha$g_a53b?a8LQSUg&|1L0*a!>M1c7O?pblo|2$5QyLRbqbV0@
zI;5vO-BZrGApWNCoI+;5KaqEVOBrWq1VbaZ<l-{dw+QM-@Q2GSvQa#O5)oW+ah0*;
z;$N4$5Qnb0xbEVHi@#L%)TO+?6*<sTs_CJdY_zA`W;E)dTkN<J-ciDlbNwv3%f&x}
zdA+1a#QUjp!3YXR(5jadil9I*VXECr2KDl0P|*lB_L5=|yxdEeKJFzYBPbO?)d;FZ
zP&$G#5w!0u<s(1@zx0yIw?kzkNc58bcsbVGTWa=}3K3MK=18ql1Y3H`LqCNoM=+qb
zR8dHBUvH@%@g6MySte8~f*Oj~RLJ*Ddwa`wy`^>pbt2w#QPxve)pohJG>D*K1l=RZ
zi=a^ijVX^H7(tT=nnsWrfuDBvk!BGzkDx`w`yDtBZ_>v@ErQ%W;)`HpAIVS^&Q<cP
z2wFzaE`k8v5<%+-+C<Pcg2(&F{yy?kAMf`DsXlV2k5ug|fxc4nU2R-nufi_ZLLDN=
zj$mnD$&DZ<f{qb%j(`fahlO|u6*@&g<j)lf-pQk!nq4B;+E==&qq;@#W?!K&6hV&&
z`bN+%0-+gua?HNM8|t1B^ornEU+En|A0@xJMPrs%N7U(0n@?y1BPiQXuJ)AyjHvm3
zk|zCR5Pi~52GgE?UUpan!x;k+%#UCMJrKb?5!@TWs0dap4Ni<;QUs$T+&dj(BbYiS
zu%@4kk6;{+>L>go#>{@Q^s(TC2q-t5yvY&oMt%x4BY2^o{5jh{Edt)xPp2nW`+0x&
zUO%bSBSd~*1g{p&y+48(iu|vi@N#Zu1P??oi#=WJXZCtOnH|BL2<ApmslVq~rk7vT
z+AF>wf`t*RiePnw+q`?fv|k#*vIrK_SN(<Y{GcLB6yDcgmPc^)Y$$Jc&WZ>gQha59
zsk^{W$-@zEjanJOuKw~_e_0d3+6XpB@I(ZUM6iy*&q0syQ71}Y3$17Hs339s%Z3Q9
z_vikqo^2!*2FRuedJhmja$Gq;rYQLqx?+Gl$-!0Rq0XVFIB)~x*=XL=43d%|XMk)|
z5&ri8VdOs-!Sf8-n`m|u+auV)$@nJ<{)rbNcrgMy1t*1<I1{-bBv3Meoe{i3dtwO2
z@M;9Famb>W9L25(x2(r65uAu%PXw<=@Noo(I2YFV--zJd2;O6iMetSxdn0%|0`AAo
zqJ2t%q~$<)haK<YXR10--dFMi3im6d{s$3!7(r;DP-pZ&;ZYx{qJy;m$LuFw$vYhJ
zb|X0w!RIuxf8dh{K4m-%l+P4WvU6?`Djbb?e>eMI1Yam}EP~?^e5v@?5quND%#Ar;
zDWn<`H?sIP;%!OsozkJ?`v`te{6~d9Df~IVbi+WQ4*xuRGJ;bPbc>>U6u(ArnhRGH
zh~i8H;Rr5rnna*SU__9NAQi#ozjMt9oCsXb*4w!j{U5<I1BL1Bff9)z8bK_AI1L^s
z)<8M4Eok1(CBHpT5?rPRN%fn#WzTEr2+l@uK7!x56bzEz6rST!KS*W_lC^_`4XrN`
zy!CR<bA#kU1SGFK7re~HKZ1f$6pG?cF8-89aGRkU!8Hb61UDksH%NZZ%>65Zzv;0-
z5*Z|4Je2iG)8ee~Ce;Q>pX<3<&*q%Ck$WeCe<HZcaEjtz)wRZhC3`S`ur0H$<qjS!
zwA1(^_k*HArovGakD^2rMWQGgMX@L-Z2fBC`v=QC?fgw&@Ke8J6s4nB^p|&RsVLSA
zmhGw%O3Fr2E($FQUliq|s1QZnDC$K~F^Wo2)QF;H6qTc>5=GT0szq^duzYmX`){>A
zSS}2f>QNLPBDIDH{Xl=#ilY4xd3{^3P86H(<knW$e~3&U;<Z>miUv_MiK1zgp9b(0
zo*p8NnSH_ED2j)M2+8SZym4u!gw3PivHO(#n<3Id3C|9Zj3_dr=oCfgDEv`mMUfr#
z2EAnzt!VsEuO6mu#e$`VO6w^9B?l6wwo$ap=K-3kcu-*ng=~vzIZ<>}ZPDj6GB{NF
z50zXtp@ihg<yl>$m^)N94i&bW7ey$Fkx`6_djE9p!Lc~6^;Refdq&Yqk@toQi~1<u
zH;R7jpyC4*vZ!luUt*MRU=+kbQ4Cgue25}L6%JE4Jc<#DEIY4JVRU{C<DwX&_*jL1
zZ1cVy!!$mM3Hdq`6}gq@G$o3uQ9K*Pb5Tr-VtSOHHo&GR?up{wC>AniqPQ=L`=gj0
z#hfU<9V#=Tcp!?uGBS#`&X^g+_;wy)c2*Rzp+Yh<Gh=QP3pf_T<fB#@^P;#pROTzJ
zGEDj?;o>MB<cLSHB8nwZERAAW6gj?(#ceXSXJ<?sCaZ_Z@+jUKCU5r4`gWKU8SH;J
ziglS8s~GCp87q}C2_>tQd`%Q<6`|x262%|Qm#kOhu_!j=OExO9;Z*kKD4t*pukmk-
zVoMZHD*jXyTcc=HH9&dh3k8VePpcxmQ!cYi&!}vZM6u_i*v_RXhO#m2h~kAPev0B}
zMnV)XMe%VIhoX2nik(sHjpFSnUg4V7)4w~4JyE<G#cPb-*8bmy$u4Fya+nGX7b?6S
z#T!w)8O8VY3)dJf+5P-u_<e_-{<osuF7#B`7sWeK^c*e+qIfro_c-wx>b?C#&J^Ir
z{_jVzKZ*lYg4_we)o|es{~t!NeqGj?^?^?7vL+6fk2sf=C2W04Z$A$_9K{z=98<zi
zqWCn5&!V6)N1`~YgrBQyvQ`fYTXxMY-zE2W6kkU9NA&_fMDbM=Uo%3K=DLNRg-qY5
z-qD8d*b!v_jiH=h3RpN?eq@ZP?Ej+pg)3(iSE4u(#mOk*jO{2+aq*ABjPkP@*fd;D
zM-h%f=R()Ve?~R5TOH1?Fc>OJ!`L0xZ$}Z0dLMUiqHtAFB<g)x<3FpuP)Eg-eAy#e
z8+!VaQKX_sM^US{pEaC~;<qR+MsX>Mb5Wd+;&-~86a29NOZf=^qM<7JW4Nr$^gg(7
zIf@TA2mXj+<v{;8k7N!0Bj;pR&ebTcF-~GA62o6n{2j$VT+*Ys&hBL8+>GKD2QD+`
zhB}HJyv^_)Asbud+=-&j2w^uDZ4A(Rcj@^U>MzME7(;lVpM;5;_YU+IQgV`_F%*lT
zw90b0i^uTvra;LUO2oYHJG37mJmgNT9;IUFGeWqjei;^x5T*%TbIZk0K86}G)Qq9k
zV1I=eD#uVo@rnv7#Zc;QI~G-qp;`>pm5|xlHQJ9DA@fJb!p=cvYsFAI22GXLiJ@)`
zEn+yu9*vOKM#$BF+ts6as<eT^h6)=gY^;!#G>M_9;?43U&13jvgs|x12w`m`K2?+v
zLuL$q#a}s+Q+%Xk#nAG<qZGFOj}P{@iJ@&iZ>LBgh6W?Osyf7w9m9Y)2F8&SL&q3i
zh~dQ;I>pdAhB-0JjUhLNE-{RbVN48NW9Sw`zZm+*&^?B{7<$FfJBCmUJz|*d=Jt%?
zSjQZR;q+H|9Y)HLCb``5XxK<O)GW784D&|HTO);%zKU-gDU=L|VPFiyVi+F77b9g*
z41;4B5(D=>vPa6$7#7y)akEP9l&|xMBbZ|Nv3~BTn79AZ$QUU6ccc*K#B!^RlCd$2
zqa`ui6T|ozCd4qAF%a|igPIrv&6q^LjS_CkB%@^VDEVP~aB2+Gcu}hO=25b?VAf}&
z<lY$Wi(zIA55#bP40W34vW6Kk=%eJqD0%mzoK*ANSut;4so5O&(VnE(Xd%g{k~=Sk
z`7x}HVNDEy(Xt?h2V+>mj>NDihQ%@bQ8id?Yhk@=u>WYeXS5ux8eAH~iWnY_;fboj
zWie2)T;W3ssrm3|S*iFcg*!&e3-{$vd2I}j@TeHJ#IP=gM^)+LF|3c_u^2Y0>;{Fb
zfz^IATK+d${;QVRO{&GsF`OGMY~{%qw#M*G49_yuw-$bi{jD0@rtoQnJh1Q>ub$^r
zo!b>M`#fiml9TU<flZLS6vN95syI5uu``BOV)%^>(bX}$7Q^uvzKn5Gm*B1#_Qvpb
z47*j9l07lJ9>W_d`(_MpDe__EAd6mBxG#oxI4@%OG=}F_WxpH4ehzfy;CnH=uO!?a
zWag^uJFBuuK8WE%PJuCUKq1LTiX4pL<9x{>MGnWXc2zbNSk-4S*p-7v7z3-a*~I7U
zDdUq9{0)EQEqPR6I;OG@t<C-_hOc8d5yMGk>Nhd`z@AnLeyg(IDg0ictjT6CevIKK
zRX;0Xg+J3{%Ko8ivwu;9EuM<uR|Xg-0%ubUXJTNf$u&@!%A*WL^cenG<Jn9}pD|)7
zHEP<7>M=qRi6I(8p~}H@46zvEiYHYoi5R$v%JMO?dv!J~@o&jXsZv&TRu#RzCYuMI
zkKuRvuyU|T92a7^7z5%c8^@&>F2}fEB8tWFM+|?)a5aW&Tu#?|Zok4<8pHqTcpYTg
zGe-W3;qMr(=Ue!%A~!gN^Ch<wxgEnDMgGZ`KeQ&B9l5Kr1>z_e_gqm(AxU9HiYPoh
zMvBK#BJMfAl)~J#*(Kv3GM!qJO?l}!%BUi8y6*jVbIZk1F^=>qkC%_5LL4Ma9ED18
zRF0!c9Ph2lt`ql0pQ)-M)#9kGNR51X%{Xf1^V)GQmZ)4e?m3^SUL5rmZ=kTD!bbU}
zjpNv$)ad7?aWspgc^oa`p4;0fB+=sVDW0J)Q=vbOt!uJbnx(QW<7gE}Yj$w8CtUMx
zF0rjDYNs#|$B8k*)LxOG!VYm{=gV{G3Z>AQev6||9DU>H!fFTm^Wq4_(KU{4Dtl*)
z@I!Ci;~<t8D?OBuYCYo+#djVmz-+I4d2dDPkCmr;=ThD+-M(KO{gv=$ZdP!t42olL
z95>>)8OIO~XdIC^qHzq1V|X09;@BO>h&V>Zu_}($ag2&%bR2Wym>b8KIKP~Qd*iq-
zj+5uKadG6eEij$Ixy?5|jtOz>yX>2&kYrLElNFz$aH_&-`K1$wWey%I_r!7WlCRGm
z-^{Uce;g0QF)NN4Y<H}5?wmO@4&tpfzJ~w$X2<zEOktzD#tO6Z;&^3KaB&<D#^LXd
z`Ee|WBO{TqP$9`8MP~l)U&4-j;9C~Q@;H{pacZnw7%PRx$&bT(JQPRGagvi2ToDJe
zOb^GgGM^9J>RZDAi{nX-ejJaeE<YZ}ra0Ec@n{@VhGdRg6`)D$RncRNE=4vfygjS{
zi<mC!xtrs7f&nv5o|%|6x>)8Gy0lp4jAOp1;&?ia7Z`^JecR%ACXUVH<T=LtCSUJy
zGIN|ftEy@)S<kDY?Fx4&d|0xm{9+t0DV>+&+#w|A6`ln+1-AN1AMp`iRYkPnwK%q4
z@l4$l$Lnz%kK@ZY-iYJPIF7{ec^q%Wu{Vwn;=p)$n}KTN?u+9cMfQx7={+;wjpLhf
z@;)bNew}4@`t~z;#>rpfg!o|`2jXZnUaqb4bssMu#c?nWl8+UV9E#(x;-BP8K2_v1
z2Gw|>LY*tVqa2Z*Szj>T9`(`MV_avh`5t}8_mE_M701_c{2a&sXh|I3#_@d|Kg7{t
zgKya-Px(7#*xd2r?(+Q@$4?xfv;Lt*kVV_ZWD$Si?298DhfYl%tNTvH@oSu4%J$RY
zH7Dj!hkZO9N4;ylGYTIYFGd_DYa1_i92TQ)yp#%MQnS#%zJue%iQ_M}sF0-m1c}k5
zL;NXD@HpaelppF(#4+#DK$3wp#NT{^be$j*C&<}2N=@)ziQ_jVKNrXOIDS{h{;80a
zT;S};=a&?@%(Fng<iQC-owXC>s*+q&_!s9jKTdik@VCld=lmV&r`jzJWi@}H1ey)@
z-;SeYoA!6&*fBx=iR0fm?sBXrNWp|BFOcx~g57>1vw7A0h1F3-68LMdzi0x*66ia`
zUp#?D6N^yt%b{T31=*z%D4oFWB=#gxCIKXHFoBN~D4RgJ1bQSO3Gb;z`2>OqbV#5=
z0u>XeltASKS|p$)P$hw?3Di!YP6E{usGh(Bg@ZL&!~X2gLLEP!AT<&QPmn*(X|)m{
zGW9K<+oB9VtA_>&G)$mg0`+O+1nEA)zk9g<%69+CA2UjC_Alz@Z$xXm`5P;2l0Z{M
znkl5bISrmDB)$aK5VTF89d#y3W&&CCNdo=^M*Q5K>630*t&~ZfCrX<Hh^-SCIZ;Sf
zD4f5qKp=tkG~>&hZ4>3(m;Sz=XH?0{%1(F>HajPfn?Ozi9TPa9cJSjKznv1^)`)LU
zlr9MzE|SIl?z$z=HGvZog;`>E#q(6Deb66DfY_vXR?h@_B``jL2?_L0@NN{t5*W_W
zN#M}8d4m&p;lrGM3G5jXWa^*50L2F?9F#9VIwbh<vcM3fJX8sp_5I-=k-+E#_MX>9
zCSV-N&fe=EMW56tOfrT=MKi`Gysgs4DRd?Z`NRY!CGavIL?<vgfz^kDvl5uC#(hcx
zQxn+wdncx8icC-79!2g|c%Q=i6;fx0A~O{}pyG|fISI^7U`+yR6PTC4d{y&92`o@#
zp~7?Xvl(WK6kn|HL4_19QDkWX%km}56L@V^5f-h;mpq){#}>UnU6n6ct%&wifkza%
zx1?`d0_zfZG=cR>vMFElF-0~curXiqxFR(!c4mc}6L=zDzJ)`%q41OJosvA2FMnE*
zPP4Mu$}<T(n*a&ZbBa8l!1jE}4vv@NFXl^LQiR98lEAA8yqUmT>|Fx8IHs(2u-`Qc
z>}HT;Wq1#}f*!ukv154m%(^~Ns!kH^$M$;@csqgj5_ms>eGF7z#ybhTn*bld{hjR{
zk~K-FKeTPeen#3PSv*NTOyGkAesATK^6}b%1U^dOY}<_7mY(GCtc*kKEaM@GDM@^i
zz^9zxNz_f^vjmPL_&rMe)x-aJ0!I^wBoIyDiv*4-KZFxFp1_w0{F3jVuM+q^pMR~$
zHwwQ^;JbWz(kVu7|DduzCh(IYKP&v7!d>@wpu!2oPby^glp?<>Je|N9MJg`#H1&KP
zBLP!!D_>$O;w0eaOL#~ufp`LU^CgJ{&eK0Cn@k|3NLu09e4XDEIj6AqtPU3x`BULV
zg_ji4n9E%H@;Mv5lE77!y_UfB1a2t)R|0=4@?S4*Dt<@dErqugvLRN;^pDE^t8m30
ze}SYI{{@pMltf|0OC(WJks=C<CQ<Ca?0K!YB6MjfMam~pA&JsF1*j~ND4VbOU+>DP
z?6>neR7|3h;?)&aPNGT@Rg?ecNp`K8lK<z}`HMQ#P}%=1uccy!VN;v+pVyo}{PmKk
zpG31HnkUh(roX~Z*$t9tsQ9OTe<MX2C$VLcu(XNFHdXk>Bx#X^mc*c>_kl2<!Zt~?
zRU{*cOhx<(vlO;eNaa?Fv{v}_Bx#pKAc_9@rR|gGp3j3xbVwpQiJT-lCXuV;o$^aN
zC(-#??<<h}W*M<d5?xhMH-#)ZIY}tbOCpp+k0f`B@l5TPL{CL}E9|9^UzubPQy-P>
ztMI?W`AM<?Dmzdib*MZzi6Kc0O=6f5j#oH5iP4I1U(gYXj8r&E;YZID7^4Vl7@Nen
zeBpoXPDo;6e(9tnF8A|#G&PAIZv<}D^S_Y9v?Qh{aZeKWCh=Gj8<My$iTjgSmc;TT
zW+X8)iG@ilO5%YeW+gE{={+(%u_rh?i8)E0Lxb)l?-?w~+$82H33-o=fdxrWjfoFS
z7bo!`{om8Sgl=!`|9g_~k?gQ_Sxb{BHCY-?mXTlOK9t0YBvvP}CW(iWSee8sbx6C(
zLY@Bo{l|9r`8i-#vNnmnlVx2Jk0$X5hj?uk>!gI=z`Zumvt)e|{5I>{telNWehilz
zp5wVBHYKr{t{|V%{t3oj5>F<vH3{$W_+(i&S&nqb`mt7zr;>P@t#|RhPx|85xg>9|
z&3Yz@?URLk|73YyS+zsq_9XsTo%P*h;UjSx7Mm<DCb93J|D_~ePGV;guc+*+v}bVp
zTa&%(2a?y6kZQY<C|Wd&<n<)K&x`dbJeI<nNxYTBuSuLvVs8>}C-F@Z-|~<o-bvzJ
zYM#@0NKETdVTzEvm&E%?>`&qYuIH-sLxl$vW?j>$|B>Pc6@IMnkix?Xsj${)@u}jU
zDLj(I=Sdt@{7Z#jC_JW+`p1(vG}PO3_$wv(`u~%Em-IF({(&);#P^EJa&HgkpBTn!
z-|v%2#7`9XIf?%%qD_%sIOV6v35Czr^!6M+#UY*|BxjNcGpbYG8mK2>B$1awC<QYK
zi>plv<x;Sda5xZ2{K@r-QFKZBEs1kUM3RUm5lbSgvM-TDQjxgAPPKh0wSt{ZqVipD
z)lL7mppEj)`%|Ojd=fu(C`|d~Bz{lg0;lA{jEhNJQe;M5AG0;bdq^FtiSJ4hSGh!|
zP&kEaTo04Dlf*ws{GG)0ByJ^fJBb^riJJ;%P4V6g&T5rOWcui?cDtaD<X_gm%vXT@
z4fyI@(C+dAKF1>km4uw~A}M~L8KqJvokB6?86H?%k)mC_N=hhRGKFKaJ@e{hdmUja
zlLA!H+)Picd<qp(@THKELd6s+rO+UShAC7|p-KuhQ>c|f)fD#k_f=O%kyKOJKH0v%
zM)+!^K<xR4Ry&2;vwip9(CVg8Cxvsjy|!kz@zqPA$zR%@g}(YJbT8*AG)kdy3e8j4
zGQcySNeWF<=&EJbIl>RPYQL26HA{gQ$|}%8wWulNCel>SOu?T*b_zKuWTntDg%1De
z1hZPDFzc??E``=9Xu+&D3Q5|gux^Tw1e5}G+NTgyeB`(cW?3y)tUs&!I;yI2Q|P2f
zXN9A>d+m0ig()0f;Omy+|8zVFd3Pn@tJoeXND6~f7?MKI6ndr5KZOA)^iH8q3jI=e
zVT$xkc^^|F@-s{%L<;$_q>rb_z!U~CU`iCHoZnHJSjYR2*3cA&r7$vuQ7H^hd0%-O
zkwUDt_o*g+3hI+Cfj3X)j81VkDpZ&%Q%kk~b&5RM-aCA33fHFy$@ml|q%bjsNh!=s
z;eiw;r!Xajds4VJg{dh_OCgWnUrr%&s{E3jMc#9&5U-bMPrNUM8MJ(=+^^IoPnDHZ
zh1r8sWmXEaQ&^V5@)YK%(gi6jOkr*c^Hlb~+U9c{RfUU`@S@_26=(eqrm!TRFIC4<
zSZbO)l)|GNf@!jXhi7L!tZ=2mRSH)tWYHQ$)~4`CzGPhrjiz~h897a=9LU{}!bZA1
zh4)f;JcUguJi~D}T5L|?iIn%bil^B3HU2FrY*pk*>UZ%|@>8ea-XZ+?M31MH+MH>!
zjo~^?NS;mMxfG0!InQ&IPT{Q-wx_Uz!T)I13rhLr6kbeW&kaB8e@RLH`~Jnw6kbtT
z%3n?4wG?)#>~4jxE8LUv-q-L09B-)Xe+Pcpvi;r^-bvwq&2ryPf!Tcu-)ror8B8mz
zVh5+m`zd^!!XeJh6h5E=2WU~oN1VUQG7czSdXcx8^FhVOulDvWKb*oRDTGtdQ}{H6
z&r<j?g`ZM5lEUXHe3jxJkEqqQ{ZXzV^jNwR`4=gim?nGMv_GE059v;4r^%No@5uxC
zH!1Hq#&-(8Rd{onRGco~Q!|CXo40Q?U06fM>GCuClEUc}9-J<}u)-96O<_b%R@dJ;
zom91LxK;ENC(d+XVx3c_3tK;<^m)kR)5YL=)y}teg0~~Isko((!tDcnZVHhU&R)cC
z7ZK&G@g_2go<}@|1dGlhdKSqPQappCVWp9#ath<qn2^SAT)P+yY53FF`@42Ng}WS-
zG=5LvLJAjCxWpBY-AUnc3V)<<l`}VmKl!__Q5ig;TuC9&-Z!Y8kH<bx%(w0J0wnhq
z^)+f-_<9OAQuua)?@kIgIli3Q?R~dXUMmzXYUg`uR)%|T2DAU9@UPPBGQ+oYbjBB>
zGYY0rD2=LVR7<098b#7T8fDWcnntlSN~TdNjpAu<-}@42Y~ST=p?~~gU&a96um5%~
zoyN=bc`IKTrO@#K->8=|Zf^^eOQU=m71F4v<gEr4pibQ}1uCUcSxKs-k<-dYAyfB;
zzMcE>p17q|PoqW}jnin7M$I&8rBOeP25HnzqfQ!i)2Nq5>p!&6JYT!zzWB6^bLD*>
z%+FvtG+j<imxgJqo}bYujR%kUc`n$$D`UYz-wzkHrfGil9xc*nmd3<?v~+3T>ic|J
z8oo3#(s<sVSx|gDk6f58c>{b*kKNX?(rB4R-!%HA(Ta_x(J772X|zeBZ5l^s`Lfe!
zmqs9sckB9sX|zwHTrJ=E93QhSyLqHT8gnyz)ckx`fFvi4j&$i&jYZVVO`}ViyVRm*
z8dFO9x~9=Rjl49Dx6SO9M!|bzSZ!Y@jUNAxsqcW2qWHdESr7y+If;m5acXu}g0ssm
zQGr&H<P4IRoO8|@1wqM55Ji+M3Zf#S7%(g5EKcX?=`e@{{caaO{^vWV&O5hWy?T{i
zy{fM2nNDEC=x9z)v3{&LzcK#jYx&O~imiEAJd!~B1bWvK?Gj*g_ueQe_0;Q}(J6sP
z6X>77PeFvAHt3u{&jflU&?SMc33N-KJBx0Z)guvp_@GjO^0CM|&`peaJ$G`8Y;t-h
z&{rlc8ZG)Hz(w}^8<BnzF!ku|V$na50UVLSB3hsfN?>pT+Y{K4zz{Yhfn^CSPheOA
z!xNa6!1M%0Bv6pRcxp&sWCDk7M8+gAHi1zIj833MZ85yAAhSYIv9)8ynl@q_Eu^R@
z7%n!{5!u%x6Iq|@k;&{#nRjqw!RV9(rc&*2!D^8DHzG4Qp?Ip3zygkb0<#jBoxq#~
z<|Z&Nf#XHRqS}H2kJk{{4YCHm5u5aD9-|9ouEmlvx<~>FEJ<K#0t<IW$)qqjD-u|l
zz-sn(0;@Q1{Y2S(QKNoFMjcTqQ>;y3T>_gDcq)O%6ZB?yQW`mJdp$=m0jFOEzY4K;
zh)8u4*%igc1YRsBhVF~M(l?Ag%@HY3wkEJSfh`FftDnPE3Lmc^wz2XRLcr`hW%Z7c
zlfW~acM0rDV0Qus$WLHT0(%p9K7kk5|5e0u3G9=AxalBqZ-yY4a<|wonJ*?V|9+7^
znLqoD*riz^|7FQPoWMc$a{^1Ai!RR)EgK0^W;`NOk8&D{F#1XYCldHDfsYb+HG$U>
zcq@T337kyeR03~s$O@FxZN%#doM!Z4(QKYzl%dG8(Ki#AT%cs#F7APNJAtzayqCcF
z1m2+`RTbwFcsGGJr-zc1UtOU5x;08k;`bByK+3F~)Rs|dp!}uk;z9zSC-6lAA1Ck$
zyPbAkS$szG8z8E87G--0t&})ENPL;VR|#B9;F|=#<{%D>QlQ3_2sNDT9_slvf$tLd
zp4~f06!Icpj}a#i#)Cugzmt)l68M=8T*V+2za;Q0J&B6?boB}Ro<N3*+f@9Kz@K!a
zUL>8sr3C&;z)m1Z|DS+Lr)oqDdbWPi+>RMq0(t^&-{`QOBDbdap>OoTYY{U6D**zA
zy#<PsKq>)0fq*)%N8AKF_Eoc-PX>xT8KQv~d1gDm5|vTAlX$h3=x9VPC-8RyR}%Oq
zf$Is}NZ=}+QrWN}*QCE9E-^>^-dX%h0}KBw6vXsPq`M?7q#{#AWffIa6jo70MQIgf
zRNStjsEQIQN~*ZgS`<@phl=7V?mrW&GhVz<LzHVHmW+*Z&O!wNx7nrCa0-7?R8XD*
zWmS|@L4HLw^f~2KJa#owLCR3WH{C_=bcB+XR8aWcZsJZAQ*uOg75Av9s^TscN`FyJ
zGVf+(c17RL7T^8R?32-=hKiahxJj<7qLzx+3zXU_>Zph}73)e0^1m)nsEYFSq!@u&
zpxmb-qN1IO_9}#msEP+wJftE^MNCDmiYBZr8>phOiU(9QP|;AuieAx1Dh`c|HtQRP
z&Q(R5j-vQTC9d*|1JN86WDaX9C{}BvV*MS-Q<1Ntxr!Dl`b~&7rGS)dF;bzDQnw4z
zmQpQKTS*z}A!gpzD%!{%W_Pt^^Hn^o;t>_})#R|3=#vTPw{J!}sOYGoj~b3_Cl!yX
z=%%8(iVaqzvx+V%y0TmB$m*EjX5fKtqTfiRV_Px&T&#zRo+^4t$%EUXy;V#esjMEU
zFe3v6`bwSsRP<LdK;qif#6T6FmkpOW;=gVagH;SsaYV&Yl^1XrreeN|1uBNC=x{kQ
zPQ`c?BUBWq7%4eqj!`j6#b_B-x5rx!i~g97v_BCWtKyB;f}9B|CaRdBVy22otd)xC
zDysRBDJrI_m?m+Dg6QzsVof7KKEsio;=B7qx_8Db6|+^$WtDo0IVzqRsr1McpZ3it
zogwaSCFaSz1n*CZE>y8d#Woe&RV=3Us#wpiP_b0SG8L;;tWmL?W29oGidD4FtC2=m
zBc1le6IUbWdkNAW<HV8PVy%jGDjrwy1g+@xxPE`uheM+j_-CeI7KXnshxADmn^Zid
zVxv^Wymd3h(<(Nr*rH;q3TozZP<>>S!dD9ks%lh4P}>d_J5@Z-Tx^btXI1P`u~)?|
z70)%#-YusU*XunEvj+XwoF?&{ihXj%(Q+8wohi7E6YN*<qKbnwV-*Kfyrkl@k;=<d
zXh%+tRPJdUo)wTo$$E7%9%>V2IV@#}kEuAW;=GFYRlK6&gq%=kRlKU=HBLPhr&XL(
zv45=iWk59Na)jWN3W7OR#2YH!RB=WHH!%Mkk8#m|OU0=ff`OQOo44t6j7Wpw;vK2>
zoTTrncuxY(^bS^p)A<7xAFB95#h0wS5&1~cPbl+d{DQ<Et7x4q2DJ{?`cGMN8Y+Fr
zd+}C-Mftt)n&rh;D!x|ny^0@HTx9k9$hVSyBk7VRf*gkL*sg1l-LWwGqfGi)#ZMBD
zb7`dVi;8)}1?6{MiTqCIPn{Zm(C{ZW|0?=w=%?W?6$us4P)dVJ^Oz{oDlV(gROl)U
z6()V`seE6BrNUN`QsL4sjTK214yV%2XoG2j0t{Ss8Lo{~nCeLxGKm8<T#*U>R&hne
zxk1r8H2kCDs)|AyGBsRNaa~1*2E&QmQ1LGvT}=GPu^1Sw^;G=rGci(bU{Ysdw@I17
zg#;xFYbc`Ot%xY9;fZNtUR`m!2KL4oH*&s}C{kDy(@=htQUrn}7S~Wh3yUtP;ngkC
ztWnA*TcV{kl+o~jhPZ~Z8p>(7TSIl`(ojJ|6%GGoiS&ln6*W}Wu<6kZ=BmUF%n|v;
zMc;|hkz3<;YN)E=E~&YihMQ_TjZ)s4BR+d7evgJ48tQAfPeV<r6<KvO)YVW+Lv0QB
z9FFbY5q&f}tIWP=Jq;U^k$W}N+aB#YJo??RkRLx6i)auUVj8kFL}eBxWoZ~cESeZ7
zC`tMIH8jxBP(vd&e@FE9`?9FH^_Dngn3_K|+E@$icJe4CM?<cL_8K~9XrducLn{pr
zYRK2Z-AFSH%{4TYVN4lOq_b$jg35}PGWF287*DInUolE~NJDE4iiU?ZJXJ-s(Qvu5
zXsh9;`C|7dW$U>ZH!6>4XeU)sL%~4N@OZ5Md{L~D=*SXBM<3PDS;H^IL?;cG?9iCI
zuoMlwH1yWcO+$ALJv8*xLId7jL{xn?PQXBLX-KsHBccy`a-?`~TlD-Wg`m--Xnzd@
zG`yf;zlMPt9@8*i!vYP1Gz``-MZ;7LLo^K4Fjm7j4Z}1H*DzAUC=DYtEE_1er!COJ
zM@T+4@^O!x(K0&b7PG_H=xYaC)BBB=oCz9#LyFU7gm);mwXc|@VX_uJgmS}7CiVO>
zO4(UiOw%x1!yFCMHO$aJ&P)yaN{d-qxQ>LYPjkWOTvp}|@p!)A`dH|0F^{=MN7JK}
zg&G!Vcv{0|4U07_(Xd*>8VyTXXAR3WtdQgT`VdjKpTKmn;Y@6$2GUg;&hL+p-4Px4
zuxP^lzlL=h)-y@N<LsX)(I+%KJ5uyt5T?H5M2Za+Ptp!)>Ks;f%aPbxC$e^M^vmXA
zNj*V5)b`<#*cJ_2H9W(-8n$uP6cd^vc4*kHfxulL#uXJi*}wtOFJ_3Y#RLU*Y1pG-
zFYQyxADS0td5$s~UKx||ykve~MRYtBC!ZOs-iW-Y;edt@HGHJuB@HjLuQa@=;h=^?
z8cu0=UBh7wN2o!=2@OXz9AkZUM~`da^WdKAkzdD&#joWL3c@qkS2et*;UpU_qd&h9
z>$W@G1WvvlA?LKr!YG##2Fkys;f#iNHN3~(E+yX9@D7WsE>4UVXEjtRB_8V`cw~Bx
zcC|Um@jB1a`IZj7=<R|ol(<rD@d0fc|BGJG@R^3sHGC{3DewtR=w_~h){K6k;Y$q{
zHGHFCRTuG<hPJ!oWkxGs%V?*bQ8GD;yG$+ot%mPt%oD?C==_hwe&p1nVe1&C<7ZAQ
zdK(?Jbo{E}Hx2*Nk7@W_!yg)w8XWq6R!j?*6`lT{Ep@{Qs7g*k(si3!M@B0er|QsX
z`}V@nVAAlK2ur5g8cM$!EBs$`Qf5qPa5Y?^OV{9O;r=Jkkk;T!TzY|6bDy}Z;YKI%
zcR2SIYmP|7Lgv2lA-JmHx&{Jfyv8ZaXMsK;{{~CR5bfTGW$3s~M`;~pbQIE&sfT9~
zC3FlPtrXUAyN;qdis)E-D8@DVP%Mjw48?TZp`*Btx(mYt2R?wLMo0O5JswjqT2cpe
zl+y7+9l_HH9%9TMt(4VKPRE@(s_H1Oqk@jgI;!ZXsD~#cUzHM-bc|{do}A>*5n~Dq
zjyoyONqBg2myT*W?$JXFxmynpUaCvVj66%Zd9-rubgTyJ=|_03Qd>tI9S`bwh&9wv
zPe%hC4RzeBqrQ$TJv=R8J?|qf5JE>p#}lI!ZcE4{jq0$xNNm1{$*#!Oalek|M=MO_
ze&$ds(MU&Q9eFzPbv&Tsn;r2S9l1JslofFuvwKF*j#k$9j5g6xvbb1$JXUf{iyuZS
zO?A{BCtB!esiT>W<~m;CU!C=gQik%o2a8rZ?ye-7?~T$L*{Ie!+UV%TT-8Kd9g2=l
zIv&;Wu#QJ`bYS;hjf_l264A_dI@&XJUwl+?QQ8hSnH}}e4IUd6<=&Ff&N{m4=q9st
z(ZT&BH>KTmTp6wO(9u&z(>~(fv++l&2z!`lTv$*~ZykMf^wrT%$3PvA>ES_Be;osK
zRNoaXGg?&24!3RWr9m_m9YgeR*T*T-`)r(iZt#wt3Bhn3BiK?MCv+6(7|E{Iv7TeC
zW3-M1Iu_~}qhqX&X*#Cs7^h=AO+v?H9TRkZB~VP%aja^1U*=2|jK2MVm?AkPCq$=8
zP%}qxjr*ywn4x2)jyXE!>X@bTBWR%TY&~3^%ZyP<Efmx<PiC1fY5g(E{m;gSwhz@V
z((%PTV!4hLIu`3#qGPF!WjZ#_7iZHEhJ$Le-wQ<6-D0JVRh$kw*6CQSgGuDC(LuVg
zuHb{)P0r&osnr-|tmJIa@g%K?LqMH6HgSM-eh(K<>3CYlRvp`PY-Z`@#TFg!n34M;
z!psyyD}-ITUFQdh#14+s7$rR^I=moC`ehsOtPX<RI`**N#wfdVwA&SrY>P7cULDWr
z*vFX|5l=zzUW}5wM&#AfejP9BIH=>0jsu+X*CQ`UO0cwH=F7Kmt3A=ro{k^Zag=?f
z;|NWzVdl|0MC_FqC5ewq$$#dHvU{Sh>UfR5QO7SjPU<+N<8$_>j@NaZ*72^6_jJ6W
z<4sOmc8iX;I12_wXF8EH?CLQJL4%3n&ppw1XcD)Hb2`Z1F|uu4DMS8w9q;S-NXG>o
zAL#hBf?$>pIgu|l+c!PLT;f00@d=Z3d`2^HB4%Z=V`{W+AJK7sHltM4r8nOf4G#(~
za?a}bN@AW2e68b;y-_}2e9L~;@uSY0<xuQ<&POZqgTx(Lg(nF-Qm8E-Mu^|;l<}*M
z-*nhIk~*SA#qT;)8c$*IhmJpWT+;DzpNzkBezF<s;-XSRap*QtqN?EjmO#^?>o8<S
zlMaWSTv$--^;zQF)+oX5XQGbIHy-hi&Wj|tIy?@yj>|fH&i5OUfPPyEkE!R5jPf${
z!H31?UBus<)H1bV5Gf)AlPGyj$8{b5>Bum`YttK2;9ok)>S2}}S0khpyUjo$1DQt1
zXGR9{cZ^XOz1=`j19w@dW}%pYI}9WZI0lLvC}Cidfyo9+8i0Wo23i_?KL@1^)HiUS
zfiecl8mMKUwt;d6${V=TKve@33{*5w#RwNlhDru1-@-@7D4&c`Zt|D(&$!D#H3Kzd
z>fMr7H*k-Enl;5bFEYEC;IYPt@}i?3(wb6$fKPvQ4Ae7luYtM-cz#RH&EwoJ_C+I|
zGZ>8+;Ui?0ftUdyaa2-1OLE?28@S)V0|w#-8nBtyB8?1uqKJkD*zN4eKG!0@_>sm2
z_9w$=j)7bQ<TNwT#6X^bd;?95(El*k{87>J@5H{i79pSv$F8{?4l>DUW#B;rJq`3S
z@Q{Jl209sd)ChOWZ45kY;1L6DWt1F60^Yf_yT$2XpgoHorEm+)ZFWb==U$pSXD(Zv
z4RmGqHWFQo|E+x;du4Pp(A@~vdhQANwBCc+2ZYOaZv%Z~CyX)B*FZl5LnvmTzkvY;
z&KDDd3~V_Y8))D$8D;CP?~QLe65sro7%VyWmk^8&Gcer1C<8OLMn@PZFfdYfMcw?E
zIYud6Lf{TTZO_HUXaj3|M}O%Rt=~I3Ru(<Zz<3EJ7?>!**LB2o?p>#g!;gt62BsQ#
z&A>?m(+o^Eu+G5aEXcr21FJb|4~kg^W*b;+@bCLLmoeACd;<#%{5w2aXsj})RpvYc
z+?nt$W1$fqk1V2Djtwtd2KA4wx?6lKvX)Bzasw+2EHgk3#h87i<Qvb%S4nNmLT0rZ
zqHr0pMi#wR()NYK69(2B*lXZ90~-uHX<(ay?MCR{HyU`#z|#gcv7RNwmu}>}QDQSY
z*1%Q+jFL$)(%}%F9F6%wWQT#B2A(yri^l&#29utVswl?1TsU@1ReM<B@`CbhB7!pe
z3_Ne(h=HR9UZA0dor#wXyl7x>JF&i*IAGx1og!~zyhm2n-ihL%fkUkGL~)n~yfIFJ
z24fXQDdScY$7C)>Uomjpz_<NHhsNTkJH-hDuSz{kx^18+UQ3+fjC(Blse#W7yl&vM
zfj11iN%Ju9zJa$4oT0pwdE3BQX3rAu&<w6ec$-7Y=*N4bKktgZYv4T&wB(Ra&IblQ
zq(6y?j}3fe;DQ0lkY0Ep&QxZk809~a9OBOnd|}{{fxp<X2EH=zqk*3cd`*KdCcZWB
zoq>x6zTwmu5zW{cCG%uSLHfOcAK2cG8QnUFKRSd9F_}Lzmx14T)oWlv!>n@^#jgf_
zlad#6#pIaSJtEZbr&K<&V+QeSPsJ0V5k|Pgm<Ch>nvCiO3<+lRkMeMv0>g}mB{{aF
zzxEX0^QCM9F0IAH(<VFvKK+A<)+Pc2X#<r^R5o$hz~6MsCW@Q5V&ESGx0xtphOYIh
zf$Iit7`P@K<KK3K4;}v+_|HIw6rdOF**8kbYeS;t#|WP7WSS^!qNq$Izle!Z2jaKO
zC{s7}jXrcTpN}WSOz=>M9L|dpCQ6woZK9+Z&L##(P;z{jTE;{<6Xi{ml}u%9c)D0Y
z;;C&!MH76G<l`ZaDEZ`A#l)Q^YMcDr5~`Zuwbb1vs!MQ}q}5Dt%Qs-Ga*v7WV-*V2
zG*Lq)@ve$dhFT^%HVr{t6ZK4Fo4DV^y(a3L5GJA~?lUnk6=8^&cw)SGVyr?uk0)2G
z=R<;=n29rkqc>%^k~T2W&_r_+Ele~r(b&WTCgLWJj8#T#iT2A9qzt_a<>s*Wj7Y8t
zzVOpTQi41a`L}RW6U`+4aIC^43b$len0S!Q92;d>yws+uKgTMpMjI1tP0TPc(}ZH;
zVH1y;7-ZrR6YWfNH_^jHdlMZ@bTaWM4I@i*H1Xr9jO<<+tPJ&cHqpgIR}<Z2lc|~Q
z;+;5?*gDG0`!~|lL@yJ4P4wfKZi(K_Yh@FCi2sdHxMrbj)~dgW0n{Lsu+_}VTX+^n
zRRn`g3^6g*#5fZ}O$?*Wm>6whxQP)a3QUY7*b-&Nt7G{;go4-iSN{!5=LP*36O6Jf
z>ZC$;=6DkmOiVH{S=M3ru^4krl&vF}Vq&U^X&ikHN-DzfVhx#{fq5IW4>im(G26rn
z6Dv*3F)`N!7w9D>E<PmYnOG>J^Gz%;aqL)Z%iA$h?w}UY6lD_M5SXoqc@@M`8C_;#
zxrs946iRa8X6kpP#VT5kiS;H{n^<FFt%-Fe9%sKjB<>g-{kN64>p?->^iI(UA=qHz
z=Q9mAn*2co7F7!mF=`BsZj!j<?kKNEH=EdE;u{m+n%HV$n~B#<oHViB#10dOOdK|`
z)5J3-UNEuW#Iq)Lnb>RMITO2SJh3e9Lid<B{fKyTqF8i~C{hsJC!^1s;Kp)sSJClY
zd{wTX*o!6($fTD|z8`{WdEw@>{y2q6%t(5W3JanHM@$?w@rsEP>?<1EjmU8mzjw?S
z@L0I*ESw5=GOwE9j%a2ODRw1t6P#j+oOeOwGnQiF4HNI0c+bR}Cf+i+0)|hoy!$v~
z;%yUWIkFA1uI!0!uOPN(H0P}cuTB^}XM%Xb3~}DX`z9`!_}Ih;CO$O5%ao5y%pWIy
z>m3SHhF37WZTZ9mpNKz|`uTKBC8PU<H!Po<_`<}OCcdJ#%+I_ioll+d;%kC&3YYKm
zYBSzfvclh)_?|K>!o&}pN+ul6=v3q<4xfoXO<XeZiy5w-zp)=U;_bw*Cb;V9cZ(k?
z3G%<&pYewjxOThvi}f*Km@qj7stVPFMvJ0xwi8U<*i`WKPVzVP7yBy-%Y<zr$?4oU
zTt+EFCS@p);xHKzmrH;NpU&Szn%!GYEF1d2_Y?YzQ;2yjc*Vp&CNeD)ws6(NH531u
z_|HVGIpV=waoxnkamo#P%e%xKeWIiX8jB1Iw^^Z6Wpw=mqL76a8DiBqezHvzv2eSE
zG8W2OD9X*hg_0Iv;SLM;-X)4#C}DwT=H1_n@kD*cXz@W-7D0KDRf@UxMN3=Y33-{5
zapIPDiE<XoTc~WIiiHXme!nlPqJ>IUcveqs)Whs`M~elGvhK7%JZ_4pDhqmYcbu5#
z?RQ(KPR%yT+PKF;4GXI+tYPIX)UwdaLT?MTE!45l%EE&d>RPC0p|OPrsK-Km3)xn9
z8g`$Bh=nXZ(fAR;CfpaEk40sam<=!XVtjAEj2P=bNASe#ehUpOG_=sj0?#6NZ%8I@
z9+_+3I3;c&$3jyJ%`D_vXu@0;b`K3tnetelPU7{!VPKSj{O0UohT0(}r==C{!<mJY
zVh>rM_uzh@gN4=>+E}5xXlvnN3y)aXa=TDiP*nUlUaXuV+F9XSsqHPCup@P%p;w7a
zi*~fo$-<)+I$P*&p@)SoQh8Sk-7L6cqyJYlE5KvAo)%`+5In)7*gH+d^g^PKg;OJ<
z!z>K9(APpg3;it&u<)3LK~}h#;XV6635W;29vf`oOs9+?EJfCkm+XA9?svTiQ~3_k
z2nz)kX0j9uBQ1=wFww#!3!|;@{A8?!aTdl%%=4Cue@DhM=}LHzGQq;(*JC_dVc<au
z!(<CnEljg8#R?B+o~b8xO%>B6X6g(J*546kVYoC}%w`QOEU~cE!dwgUEKp{Vh4~g1
z$l?}Sc;!lD${4{)9-I_qDHZC8#WIQ2pfKyO%)&~Uak+&RR`^O4nG~b&ftq5K1!kn=
zS_|ted~e|g3y)iP!oq77PFh%R@d_UMExc&qN!HWCP7BXi*ks`;_LYULtg{z++QMcD
z_@bBMMK~O9j8nE**luA5ZMbtrx#r@Vap55(&)i6P4*9HwT^63Ru+IuFRd-w1V_~lx
zN*>knFqS8B3_R_8-ogtOn32zYOkxpCwZ|z3EWBjlh=rq8xIVsY;gAHx2k8?O;XEXW
z4_l#o=aB;OF<ROLal*oJcAbU1`hsFy7Af$m%v<?dq}Gt=DGRS#_{74e7EW7u!@|23
z-m~zgg}0>GJ63p(amK>i>}|=RTE2I;sJ^&hhXtLJOs>m}p11J6jDAG7VBtdxMaC;H
zcgkQYOJ_#j_Fk~?F>Ne}umW7l|GXag%);juzG8=07GGHS(t_4nOnF31Pv@U4Cm6mS
zEWWmI(ZV;JBhid+=?5%uLHTG@lqaIady2)U!dw0yIq3AI7Oq+N*}^ZJK~{KF`zwW6
zD+>l)nT0<r{6*iwv9S14!Dg4}fv-kNBqMwce$S@(e@9~~9o=~4>h`E+p_CKh-hL^U
z*M-95xLa^6Q08*uEZaiTLg~JuryD6WT(s{dS~M3_n6hxGsbEHrU1uS%ke1cBBI#ud
ze@jrZxM1B#Pi~I)eN6nr8CO{pzZ|KbFRrr)3mG=P?-9LWVRqxJe>txgh%3FtZ8i$o
zxWh(q8<{o=+qm6EQ5!{U@Z~FpwPi((s$#&VcriPC&7PcElS4i^jFzxb(gtk20<rPM
zcqy4{@QGMyDLfZ~e9D)zQQpQJ8*^<`uu;)QTN{cU9_d%I5wnqPqq2=EHtw`h)kbZb
zudIY`vEF5)Ivu`^YBuh+@uC~yOR!~Uh3~;O>X=c(Mok;FZ16qUwiQK_@d{sReY2(b
zpr)v6qn?fXY()67?(@0#+Nf`1qsStDYMxj$Q*;}z2pdrwSvDpXh({Y`wXYk#CqNk*
z6>qOrKOzR@i~DUfu+h*)BOCcPn%Zb=;{iK7ifm#dZih#XIW}@_@Zhm%713j0l(&97
zbtHbTAev``Q3^M+(cH#^>=qj>Y_zn|iWPexlk&U`q`*Dh#DDX$Dcq%RM*jGW);8MM
zm@r;x-!)X5*(CE}8;{r+Yh#>^b~f7E7-D0njSe<C+UQ}Ur;ScF9<|ZcMmHOLO}8^U
zwxZ}_gD>UsB6UV%;oT*=OJ?EUZs&m#-$>+PQ7;?4ZS=P>fPHSGuZ@0eV1w|@L%ycS
zj3qjSfY}Gyc+AEi8-rO&gYdmXzKcuB_Z6ASyWO@^qQh(qw^6`Bu`$BNicIl-PqEgG
z5R@Dkb>d=_jWHaxIf9(glqnwqM)}A&o=vvHE5E5WGWKUov@zMnwxZ!t)g&6mjR*mw
zQzWy?$mld1)1~|j8?)H4eZ{*~#7x%hPSNFl(YH_LY#ZF05zn(R-^Ob;PTE*tW1)@h
zHg?bexbL;G*2X#;i)}2ivDC&g8!K(Bvay`?r|snlZk|_;R|vYz3pdPKS@GO>Wwnhp
zHr8*A-#omfD*PRJoMvWYlZ_{s#BnJqHrRO5#{Nge7sCYU>G2A|Q#PKqu~qUnQ@E1Y
zVuRWFZWU#CpT%qaZ5$N3?zw`mmhH6hjE$FV9JKky4tCktXXAN}Y#-6sitM(r$Hrb8
zUyWC~jTX;Ia55Dk-Z4<Tz*0E-jL1uzK{ojQ<j}Wc2W;?si7#8a=}6gW(PDi=fkQUz
z@yaVUxEnca<A{x;>|Q#A3CeLBeA$l+(3+NFc+V)ui&yF=q~xm{&|cBq1EWuzh@B#b
zb9RFA8w;}WhK&n0KDP0ujkj!kV1qBCp5er|@ve>c?C?d+vo_wLxk{W@Ui5!9Zn%+6
z#pO96r_9hOe+2YCJyKzDYM5x&Qgq)D{ZQ)pNYa^JB)h-(L>khMcIZDpwegva&ux4`
zk4FQrv3hUxOB*}`;i*Nrj^Zn}rK9-T#zhH;zp?SH#NXZGBp(nz_Y!>E;Etm5E3uz!
z{A}YFssHPV(O>B;#|rM8H|AtNx-0s-jX!MsX@{>o{Y5c9LLYvK?&2O1pP(ejDHfhA
zwS7S7HVoREgLMu}8<vd^llUkJ+eVTWn8cDK92+URlq8xY!@r1eIl(6=m6Pyn_%;F?
zX?pA=iYLRL!d<2VPa-qP*5QgBa{iI@hNM>|y=LRO1T&w^?Dt;AzY_l^DdjVgxJ{~h
zVRts83?CE-(!!EiMAF+OEt*6z3EGv2QlNyy1Z5>CnFMZeN=Z;!(lSYGpPograxz+8
z(h8DRl(dqhU(C#;OqC?=OrmNMcO_9jiTjeMmc-pj+>=C&B<6L>`s1<ik2|U-(cz+K
z^H5gJBv!5$wUVfv#K<SYKL!~xA^hK%I!SzaK-49b|H@J?iF<G1ozEeXgh(PgiTjhN
zlNbKKM>L77B)^>AB9_E#si9=YtOrl!ZJwYsNaFJ?qEQl)T+uLzDi>k|6IY1FNjxBR
z#&2oPk)Z4I$V(zWiQY-{Nup^I%~;!?^SUI_Jc$-bv`@n79B-LKt0dYcp(OF@1m(db
zS|`yaiHBq=|1_I2pU%(yX@c_i1m&yGT0fjb>50lCN$jnadvJDa<J=aEwo8H^3wZXk
z)*X`Qm_#QwA&JgO@B_OP`0vlw6NaID?c7tfa!1w5?MmSaF@|mubeFV85<Mm8bu0DZ
zZP|U3=$FLIBxWViKZyZJj80-q5(C+dU1Nii7@Wjo64#p;{*Goy5<`>Vk8Ajk1dI+#
zVnh-JNeq`V<a{$Fk91@bhprYOU>L>mlEPz?7?;EhDLFog2}w*&VoDMdZ{?lDqPu4@
z%ZeT$ohtd=UJ7f%FfEDcw<J6F%;YbIj$SP?TXN<|%Dm*ym3W?{^OIO0YkO0}Ldjf|
zM2>9B(j=B8agbF_VtEoPlK5kC+dVY1BvvJ{E{VsPH;MnsX0J`6=s)oq<+Il$;ihAo
z%VlqVHiw)il31U_)+Dwiu_1{klXxnLr;~gY4P$Q0e&WvfrX=3jmQT!Zx@vrL5@a%L
zVQ*K9-{g0ksBBMSM-scJ<n^4LNer2&Je$OpiOMrcl&Kb<Gf^QuI#Hqg?j&BmEB^jn
zVcxw-JeNe*F0p+{yqFAs5dFN2zQFOFsF1&3M*oobfW$8`y97+7{NZHy3$OKq3ZG5l
zND@brIF`h5T4@rm(fodC@k$aWlGrpi-m6>g&0pPqH>mJQ&Zc(J*ORzDQ6V@bqt)}X
ziBC)XhNN#w`j(_;l6YGJ%2b%7bnX^^Cy8?$h~ANRlX#CaXj1H*K5>TgNxYxLP5glb
zXGg^^B=K<)Jsk9O@JSM%CQ-{lZ3p~U)k#INKI61a;tNhmj$jghCh=7gUnlWH5<ez!
zF^O;3oGtm^C-H3((MigxE&02)<WJs`|DEI$beN<JouvGf#Lr3mMzh?KPnlonA0{ck
z(jIn%!laD;ek)21my-C44%tCr2Z<z9dgf&KN4{DzJRf!?)g@)rNW#2@Ev^C*Cna@m
z@l&*%`QdRfgD07O62Yz1v;>zW<r^bclK4mBs~m18QpmxzTawo$xFPAkG++rbSWl_>
zHYa?qn>c7Mn6Ze1+Z~j3P|iV7DO2W_WHAZua8O)=5|Wmb6p~U&DF>w`<{q9=KAV%4
zzm;0uK?MgDWwer{)g-MfX%z=|N>Ei&X1q%R_Tk;P0GSN;IH(~xHE&4{J(#iK{fs&e
z9&ymlL0t#+9Ng=mzJsO?nmM@7LBv5r2aPtw%nC8#AnIWH;@CG^vo}mqvK+*m&`D-X
zfdiA21KYFjchEpGw=9e8-I~o@jT|&~aBh<FfP+hul(+-(b0j6mb<pG%&XXYDLBYl_
zZ*vF3w`DUZ4q7;9>7bR=%+eon@Sw!he`Au;+Cdu`tuR?>D*<bDZbR(;y!?mRipdIV
z+ulK?QQ2K2?I3AK2b~-|Dsg8?TTfOf(@)Z_lEY{>2i+x}-YauuugqQ!dOMinV5);Y
z4*EJcP$8DPDb~+He+Oe7jB_x+!9WLhOi@NUc+9~d2gBGF2ZJ3<yU=2Yq!TAA>n1DD
zPgaIHI6GOX`DlEEgKs7)%vIpPo~%qCm_NKyjL}gJMoVpDBz<5?C{tsKGTy=Ux;c{^
zOqO7RgCosyCQ90AiZZ2WTc$33sxav^j+%qH4(2(SKQlIDin6<VbcTZ!Q}|X1W=SyH
z!5jzVlSxcUXEoo!LV66n*#fq-Nc6cW3jY&;(M1jxOFr=u2TO0^WfClxbcLiV9jv;Q
zx>|xYl75ht^|*s49864MQVQ!GY@nT|P%(uk9c*;)y@MYdY;y3FgPjhZaq#k&(Whym
zQ<a5>TW@x-#lhcQT5NT&&B1mDZ%$Dd-NB4glso@xcE?oZj<2Hj6y;gkLrw9#gBKj^
za>6%xc01T3nR_J-dWh#Fpx8bKJlZAL@8Cs_i-UJKz7Ae;@QQ;I9QU=+mmU6<9}YPv
z@_9zDh0(+8aCY7F=y6V>sfsl_+GtMnsFXbBVEno;I(Vv*SQmZO!D|lQU{xKQba2YS
z>ul8HQ7X}<hd%_KHdQ&z4p|swxY#Q8mP|e4;B5zMrYaO$u`o*glzgU8+j9=yb#TGK
z#}3|eaGp(Y@S%hE9a!r#_H+sB#=z1)qMx50C6iIsa9FF@Ck{S!@TG&V9DGJsCTshJ
z0}8M{RL%;plqKsz4PSGOpw8LRi?mNEvuCREE#39H=m}XX3RCPy2R}I|lS0`Pes=H+
z{Xo~)mTAhb4t{fR!@<7}es}PP1K&a5;7=#~*ROAiw!Ah~xx}_iRsNEkgruqiO#+>B
zK>|ZkQ&MKMB=~izl62rWNXe*sEA_3SEh*zkwFGI&zb+|DyzHR*H05sxS0o_*$HCQG
z_?iSc)08R8^LkEG{=22~j#OCT3`uWGp^yaRWTtrW5hgJdN#XWexM&K~rYXfFy_s5E
zCY6x1WD2+?St^CnxA59&O1V^MPUTZvaPvOUBg9+2jT2W&p>hf>QfQe%l@#twp+*Wd
zQ&{yvtZE8(r_iNYjQFk;s!3+ca&bnhr*KaSd%lcrcs|BJnJM?jYO%N!qAAo)p-u{Q
zQ#dkB`CyuIZwmD!rVKgPH)hmNf%v`@A`%dHsus&iA(lc;3b`p{r*MA?jZ=6ag$5~<
zTNiDZ!e0xc7Zyf;o2E2M;fvFGY=Sm7y61G>wRO=r+chJ~z|<xw<fYIoh2}D2KGoiv
z(=-K&Q4fulfYx<+no@SULM5$Icrb-QDGW~Gp%hxD&@P4cDYQwUZ3^*Wg&$6VAIqpe
zT~S!QFZ1~AjGOe4RQMqbCUr=mV+#FJ=%2zfqg!-Jp;rpMC4N-W&XRUXp{oSlB<(I~
z4@sG;rvyVj&+n7M(e-(KZ;f5+=}Mi?^EuW7QW*JNJ|%CC`@j?)BWG0}1FJM7g`te5
zFp8GL_ZcJ|A?a{Qxpo&wuzx}Zf7(!JOY70Jw=J#5r7%W<u_^qyxplwkO751{<5QR*
znNHWxMN@1tM=FK=DZH4%RGME3t5aAbhi`fc%TgHj5@w_@Glf|x%uZomDm+A*LraK;
z@4-H!N9Ib*Xsdc+ehLdx;kDYr6c(qzBO~HPlJk6S_7ce<b7?BPb79i*6!_tT6|(*-
zX@?SU$2EJpvf*-MZ3^pB*qg$0DLkIS6De#@VF&$x3L8?`l)_W=|0$GwBy(d5B_7G-
ze=S~mIP)fWT5`6eur-Cvw6TXXk6G~+UW;waK0W+bM&@d2#h>bzLnGfwOOP{y_!$YF
zmGr^FS-U0J^ZzmTrNS-83#o94d0t}fI>_l>rYI-i0X8;;Z&LV{0x29!;r$doNa0Wl
zhg10R*A_b}#*WYuQg}Uu(<$tpt{h9@L<+A;d_09$Bq0Cfbmg@aE>2fU&QMOK5KIrh
ziF1nWoe^?&Ki%Su6y8kXofOWcaNi8&trX6r@OBE9zHQxF3JjC<EEPW8V%`kp-4y08
z&V4V1^HQE4fqi<0(*C>F{A%st8OjGU!hc!+Foln34|?Q+q+g}*aSESE{3)kr3SXx1
znT&oeDJA*$bfn}nI|0MjthP)gli|BmxSRTkuKulz?^F1J2G%n6<4roaaG@{r82veg
zUsCv$@_Hnhf|J5;Dg2(oAEYyspPv*u%~;|~lKv$rlM*SYbZCo&c8hcI8*z1sFj6p6
zxH?0zBrP{nvFU$iD#}bHazvz3aNiR*NK^1q@Y%g7Tu$L{*7p5aTGFSV6vT!br?x9p
zBJ1`Kr{_#%)%LImR`r@>UYB(GOyyr@^u&LX5_GwoU&uwKi^6FXNu#ifBK+`>k3v3f
zcTv<uO%Js^6mxNhi;XTexhU?Ugo|!2y1OXp0xn`MvR#yNQQAda7xi3}aZ%PqRTp<r
zct}n;7ZqGobWz^LQ!^EYh8N>6%~UG6$j^;caY0<!#k-P!CzXtdG2}IlRdaE-i&sbF
z)^<_d1v&S)s3Ae2Cb1u9Dm7hXeU@>j#I+=!%sMg)g_-eQ7t2~_MqK_E59+(PPs(^R
z6{dDA$cwrdy`wSfuw_@_FNWu4x%?lJTypMr(ZEGZ7p+`0bkT^pSXCE|sd;SnFX!@e
zT|D3-?qbsLSmrDxNAmBQr7)FEYvO`3ETZ8orKyYNE?Q8}ETx&GMc&P4wC$991{VFG
zi-%l1?BWp@t;wII^q-})b<xJfh0)mzbw0~bSd)>lsk4-Ivy>vcv)j4o<l<2m?PUjc
zaM97lzF7*jF}yiT>C9mom)%u1c4qUOE>etufALD%!$nUQ3tcR7(aS||7t>r!chSd1
zUl*g;CocNA=<i~Xi@`3wnWYSHG5+2BR%5dVx_GR0=3_3LSqcM-8{*=>S;{aM!&%9(
z*+XSn1SdwtM##J)T@<+3pA*)Nl-dZ!xESkVB0JE<IM%arY`he%GCNGA%mk^2VD*&z
z$x<_Arbs50OueOWhKrdlX1kc<;)yL8D+*$>TpT->Utw%E@v8-~*lcC4i+L`VT#PHT
zmHAS`0yb^7qPEB(UF?Fkw9>^Y%D7l6t5IQK;YqWVW&8qHUTnF{vcd)BHw}-icCp6A
z1{Zs0D{E!a6E0TI=1FgSoeR>(IgXWM1Z>E9IRxkPVoyqWW}$gJ<>F}<f4KP5#by^<
zT%30ChKsE(wz)XK>EL2Ji*~Vxxm@gY@r=~7%f;)nm1iaH)+mRVHn#g#l=wNCfs5x|
zyg*Byt!T5A8&YP!tS9U9q68J@C|PsDety}-K^MneyyD`Ji^DEBm0HXR)gECt%1QUf
zj>bo25d@seOgcepXH8rzmy)l!I7y3=m_~j|Vn)Z$Q7Eu|j`F69w_JSX;%k>bjKbS4
zK5+4&3r@hZob@i=llUDM=OiGXrBs)N9-pI}ckw<eDfN?n#Cai;K6ml4i}SLGPhET>
zF{5l33;oPR(;bZoF6?Oh1+(mE{H4tG+Z^R0huFnWE`Fx3yBPo0#rH0LkoY?(vv+Lv
zk1npxQFctqCtzg=NPlthn~UG++~z93O8&dKvHEirDq$+=B^Q6W$nbERhXf6V)5Jwe
z_POR_WNs|!LU&=fFeTHvH7*NBgtNnT(PVB||2|H<-CV_W;c+PEDpxrl=PJI72b;vM
zxCmUNCFin>za<#mC}-MSg_L5H`NzfM5?pg}oqax6x#8kp&QpmC4Uc_0S0QC!QXvnS
z9?Ezq>!GlRA|6V3DCyyL4@Er`_h8Lc=#+|ip=-KB(tRUx85kukG*5vC(o!Budmx7s
zpR~%n|79uXp}dF69;$e#;Gy@3+=?D5N$|w*T+Xk{+cP;|>d#Z|^ib8~NnO0Uhr7IR
zX{hGmZV#Mv#3x!cy1z+CxlFK#dpy+e!l5~IJRF+Z9_o0Q;$f<Xx*qCz=<K13hkHHL
z_t4x!3lH~sh<M2Hkn2Hsh<a$~p^=9y4>2$F<oA1MRuFrCZzgfJ<ZKw4+dzU3&gGNI
z(AYzddCCJ+I8R|T?qSBW*<<D@FYhYcg!QQ$%VW(wESsmaa^jrqta(%Kf2&?ImUuBv
z58Tp2D-Vi?hdn&#;UN#LJ+$%g;n93*V3ud*Da530J&@jvKH{OBhfcE9?L7>blK=7J
z867;lI#0PUPw6O2@7^Rv4Uc+YU(u*YyL#y6VU&l_9=fyg9{Mw{hn^mKacJf%eLeg+
zPq{iz>Ft4(q0db)CYufHCz~IguMG6?n1^8=hI<&~VK8eh%NpWgsE2@~z_vGz?b+Vg
z+>)`hb!MCS$_Ni9N5)37Y4eo=N&C$Y&6~_I9>#i@K&#tRXdLaQNsLP;vrn3@jAxVO
z<eKQ=iI-!Oq>{;!o*j|Lp`YeqI-?#=vGYC5^za-F&%-PavpuZxu-d~M4|6>%_OQgm
zJlTYWlx&_e-^0rJ3c~^kSQ&;z9!ibK-92B~H!`-=!wPDa^<3s*Ij6w5YzB(0l*7jn
z{CvK$#=}|<>pg7nu+GEdtg5uw#C+xY{Lsl)UJ$mF;7Jb~Jv{4Smj{l>CJy%k<tdut
z0)<iHr#)<z%q@~`m6ZH#5^VRd;}&Npd*&8S=#kwX`YurRdZE+UBQc}K@H~cz3zX+Q
zyx`%mha>bwc6`5w7d;$c|11cXs+T<MU7#HFa7d=U?19xLpMjnH<^tv01<Fwm$1cWC
z(7<Ge9OKZBiXE5c_ll&9Qt~yKN>}f)GGnt}_i)<7_a1)m@P>ysJ$&Zja}RHMIOE|1
z8o7tJJ)HIMo*ehv7b@>iI5&2VEtPJTOWV7g_zS~jh=y@qioGxCaVhYTEd65-jTb5x
zB<5mA;ZHn#O3N?al7Z1LJbdZl8!7OWq#Tip9=?{C0$db+A0A_I-%8GR9@;NdxSwR9
zKYIAdL)yb-4?lbO#e?C&^zf^P-#q-mDI<rQQ((wK<#&ncmo9nu%Y*7cW3O^jG>I|X
z+?Wxt^vMgA6$=&J3-`J^7b=zq+e6BOD>ZE2**JL%I35^1vQW7+GUj>kJ<!7wj~J3e
zKOfM%CHR|Nx={It6P8V=9J?av>%()edH8*y@~?;gII_}i>0@uu&s2`Z^I|9RVt+4G
z$}Uned_)#0Efy)6J_`Hz&qqeUU)17uA9H=o^HJ1CF(3Ipn)<lIM{yr_`Fwv8C47|h
zQPxK}AMjDiM`<5reDq$Vj9<icAx8JLVo~VCwk=W)FH*|;sNkcjA9}M#kL6!jq*U}#
z$wy^BG|mR^=2ww`ZkG5?AEfl3mli2k7Abf8sLp!&5I*klQNu?aA9a1y^ij)4Z9iNE
zb~Xv;8pneEq1@uoGdJJaxSrH`uOE6{u{fNM_1Tu(*nK{znIP&T%SYVjk0$WoVkPF|
zeikipwxoR*D;&6nJ|6JH(QG7XV@VmMTOf^1&d>GH#7Eo7`Ba<dg9F4Wai33zL)^?q
za~}hI4D`{$M@t`_d_3x-6^rokh>vzY9^y0C@K|dfZTxVb$-40gqOFgIeJozAa1WsP
z;Z9(*#N@P>@-(N8K05dqUl3zhJUpZ;hUIql(ZxqE4u_AfKDx2oMM`%+TwAG`nEqkg
zVx@-<(w;sxjffFUo)kWh^zqTx5BI(OWXBRP^p~6x1+m9`4DvCKCHffbV~CFtJ_>vc
zl^r|G$MMAq_wdZ}(PCw|4=zjuBYph2SQ*8hk#%6t{IggY<6|r>XNf}04Fl%|@dO_e
zea!MPTb4e_$5bEFd`#w`FHxpQ=G)D4_;@(o4|m`UGkwgEn3M4)hk%{QA(-QXE}f0C
z_GZravB1YsAIE$w^s$Jo_VE<E*T)hc>wG-!V<}s)L|NrywU1>!miy>fF=vI3l@b)2
zoX;pjw<XHxCCVBfYdI*xW5mXoYz{OFdO~Vg?_+}xPD4(~ZIkmq9vXrtS^3JbjVy7A
zLh!VY&8)VM=Qxy2Vq1J{XD9pED%-e?V2Q%K)W4In#>Z|cc6f>MtdCtj&M#3ok-r<0
z%`NwDOB8C@Lt~b{YoCwjeZ1`BAgkwNzmFGv9FPO#E>Vgs4P7PaOKj$pd;$j6{19i^
zQiTiOVOsmra2t7qhAKG)OO@k3Uh(m>&-Yt!!pEyVKK1dLkJo&h^l{F|yFN~_$v)2b
zc-zNmdXJ?F!<!PkAt^2Mty_GScve>F=iP;B%V+R+{Lqz={~lZC<3k@Gaim7Xo?fcF
zPcxXMd>|<SWf(5_;MVaI9}_OdKbERO@OTDo?{gnt`1sz(4?e!6$@%!&$3-8X?<#yV
zFXg|HS-xdiviS#>D&P6|cB#UUTB`6l;zud)lcb!I#g-{_DZl#o&4=Z~_VK%qKR8>Z
zz@Ky}oQccAx>aAM{3V$QcIh%DM>0t@AG!}iCQ;1vF<d6imo(|a@$t8hD?U;_Tqzd#
z@O(VEO!05!dPxeuvrI|f;#{WtlFWa6T=j9y$90+X-7<xN1>K;#E(m+fU8ejiF{9j6
z-xi=yfcXIy1jr0fIN)zLaDNb5X^{X3P)g$40~8HHw^=N}9TF4|!ZU#qlHSoGr(}Q<
z%N1@F$SfV8On}+}>I5hopj?2e0qzP=US_Nqpppa?D6{;3<5)SsodKFISE>XUk{9cc
z7gm*_$MSHRR10u-fa<J?bn^EEs1e}l<w{MdXUuZt@8P*imn*fHccDW5OHys!0FeM9
zK)nF>2BG(>AK<<Kr)4S+Rlb&>%D}==sV7TPnqN!;mj2}984Ut74A3t?{{W2wG!F1^
zfJXv65Fj4lK`EINAU8m>0L=q5xtaHthP(iL(55Q(c2hQxkIx0M|9cW|5%62^VXw9d
zU@lkKjie6+XdR%9<a1KAm7ws7P>B+tvh0?2lG!;xmjLYpbO^9!RIFowPC@v9Ny%y}
z6oN;k7(v$n-I%&U=|$nZSa-=!oy+eLpr`Ec2UaNLv*&vU=o5g472JAJPu~CqD-?Fr
zfB*vnObReLz+(Xhv7i8>0t{wtE60Wf7#<+Qi4O@dG{Ec?%K8-w`6Fa1T}MHH7gi|T
zD{||?=%{1)ow;=hFh=G&yFwWoU|fLl0dgwlObqbt3WZ^U1k}U8=#&6csa#f`T``R&
zu}qmEqtkB<>&yVN0&x4vCo)ntVNQU#QiiSISj-D>Y)4~fg|aZfq5z)-_&mVk080Yw
z3-Ek^r2&=&*bv~!0Lufc2(UK5x&SMs`Ei@NilZ#gKvqi*ANkh=;TZyr^Knk1m7!~0
zAK-}qd@SYmvg*pvk+LQm18fTLEC*tx@)Qj?!1e$;0&EVjCBQaW$*nZ4l?nsp8E%60
z&BJA7rxbXGvvpZ$$>h*Hb_Lii@g7N^<9Mx9_DagsDxYOg?1cdP1H2O8M1U6q90+hE
zz|jB;S1K>Dl5F@&<z*Qq=U{;KD-{AV4@)M&sg=sH0LO#y>4~l5vm2KrYJN4qYXRO3
z@LqtE0Zs*YGr(H`K4=nqT@L*l5}yw6#Y%-cPkW`3xk}-F`%HkhIZW)XRSKQzJDmQj
zLW60wN;xMnquHyJ^8wxu@G(bZmGXg9_)&lfQu4zf)YePl3o@xjUhETg>8h}ZPbG)o
zivV8+_&vZM0lo_Gb$}lN{21UO9an(wnJP7W8{oSD%=OYL<>$%ytjXC`inb~o%AW%K
z9Pkym_^;9va!2}$G%y~<vIl<ST$ru=yGp6JTKO};r2t+4KfqrB5^_XR0n`9m0E-n4
z5L>P2tlMhEkeD-$98=E0zN^DMbL~m_NtyA)_QsC%7-WuJt+<j|I5!r^ru`G(YJhZr
z%XCEC$p>KfG7w*p0yn$*8u<bKmHm8OQnr!v^gmi`8imp!&X9EJ>d@r4m}aKI0~TUB
z%-ho_n#NC;@$+RAOXH3-)HJj-il<Q`jV@_)O`~KQNaNvjxMY+{qjZ{o%a3|#lu4s(
z8dcJ`GadT*a%ogbqjDPCRx9Pxs2~CP6>kB$WqKqUEsx);rg2vqHPWb=4(+^VL0+{q
z?q(5<V|@Inp2pQN+4rPzNY<H@gI<fJq){i$7kJ_vqd&G}yf0H}75Ao5pL)`0n#O%;
zMACR5jd&U&jc6M8vobsjl?BBleMasOvL*gaDrt~LLm6!(Y2!3rlGBri$*f*Z8o6mS
zNn^>D3>xswr+$JwDI7=*&C+O|Mw>L+rZI6#2G%Go(rB6HkEX$W<3nluHawTA9!#T}
z-1)aogO4-hkSgi$8JvO9qfK-9AoEBX?b32G^1P*TtbH0C(&1LK-WsK28lBR3l#N}Z
zbWZ>8YJ-@0yQR@Rjpx$Xmqw2?dZsZojcIB0N~3ogL(&+UMxQjsZOIsz#>h2F-!%HM
zw!<>}bD-BK1JXD!B!~WoXJ3pymc}4CB7@W6nJu5zdF0Lk8kWZJG{&ScHjNR|DhjAg
zf`iHUFIzGetWieE%7;%zX>3`e5b%+0TpANtTpEAW&mW%#B?)*BGAWJ8?C>=TB^f1{
zB0H8~dKxp*Sdqp`DokTm8uQawkj5)5a%M|9N78rJD03wse;x%I<q#}P<GVG=k~Eg4
zu}ES@7fV0^2Ig8Og_oz{tx?D!U6saa);W!>X{<?OZ5mIeu`!KxX*|yM4#`=c2A4L@
zL~dQ4;51nqZqdo#AX96uRW_yZR2rK(Oly^=S^8>)K8HS#AZKmp1Igc(#`ZLxN#ogc
zxV&;$cck%h#hjfoN?&?)WNg@4Wmg)z)7T@Kv(_qnyxJ@0GP5u+`g|HMr14Q27t+|D
z#*1m3PU8)ZBm0v^mBw+ZP2*r1M`V|>s)y1zEEN({$-1=)pMU8{k8-|@jPdO575axX
zPNuPUtwPSLX>8b4_%)eIU&<!X(oV@#W`A9(qU4)typ_gzS<0C--cIBH(R3BiR#e}6
z0`MpL9TOE5J8;yCftO1@;||+E5e1bN5RncE0TmFj>F)0C?(XjHlIGo*nLG3U?zsMI
zowe7VGiT1(XYX(ClkdJ&giS8q%;jGKW_|oob~aOn4AYuitPL~C69XN-&AP_=Fo(0X
z4Y}Azi_FX}R7tnwVrwq;<YI3ww&h}bE_Q{UxFZ(}|B;;(^}B3G{u?PqeQIw1M|Ou*
zk=d7v{lr@?PSftWIGD?SKaFFA{m)rL9LmLEddhEEp6N&~&V~j$&SEV}p2+3R5OM#>
z8jj4#@bOsjY{@gZ*|F(d*!Qy`E!<Vgbj{Xtk^WBCOW?}{F6ZK3hQ|aRO=N@T6^6B3
zxVgBRi)*2T*V)Zn+{)$cVoZCxSjDbc-QLbcZumBxi$v()$&hv!pz+j_DHT4J56kc?
zFBchxaR%^2R?j}eegb9!0ihD+=pk*~HS2~fkSBc1m%xAPsl4Ii*Wbkc=qhD71SF6@
zf%_7;KY_avxI2M+5*XQ4xa>j#Dv{ki=HiRv2!{{WM*iNghDBZFfdn2*;Nb)wNuWTO
zd1JK6GE5I8usiG>H+%p6f9A0S9#7!41YS>|Py$aR@L~dm6L>O#rxJJ}tl{YdIR9r2
zPjr)K5_mR|jf&jB&)ZF&OW^qg$S^U7BC*&@30Mid8h-n70>!#zzvb#Odk{=36pefs
z=0p<U5o(c;vcMY&yqQ2e0Xu=B3A~j+nFMkYh_Z$RN+nP_tnlEhlCcDeC(wUDcHYHQ
zg8AVq@>RPDZN&M1%diP9+ZoN?PT-vc-c6uux9t3%<2y6oOMsO7V`USN1j;4waahUw
z)Lty|Q34-?k6h+_nBZwkgbepOxT5(af$|A_o<PL}K4rDPWIgn=1S*95$Zj&HTQ+BX
zC_p9lC_HH3h)MCjN}w_&Phda-RT8M0K#K&vrz8nfPoM$yoIs5PY9>%SfjXf8Ung+8
zn{d45=e5F|quu12kohjOOWg#%O@OO24qNr8w4p_rSePcO|Nn+-6qawCKodf=yA<Up
zknL2gS!j-@y9-Z|xSQQP0d824X_-K)1iB>fTLP^UXp_Lt33Lc6`5}RJ3A9h3E$z}h
zYgy7CsfzCMQv&t73z>_fO>P7=h?^a0!A|l^cj=VC&Td+kPoQ%GgS*SGv}p(`)-b2L
z{GPxcG*ANF!dCuFU{iPbC*=Q1;O~$*UO#K@|KQX;fgTC;N}zZ6io<;!9u_BXIuxl-
zn90dWzXbY*{HzAqlLaPDHU=gzD1q4t%%LO+3`t-@0u#exLlYRDz=)6^7E-Ufj7(ru
z0%H<*uSd4O9J@!;xkCP>9#XxBj7?x%0^D_B2glQt;j2jrOio~W0yBuEJKio(-CR(&
z#FVhksR>LA8P?XiM|Sm1XmPV~CgmAgbXG{2GdF>G)I$QB6PTaCf&|tlupxnk2`oxr
zbpmS$MGiOgpahl?KSPQx39BWuJb@J<zbcX4()qJTHmwYE$Z%hp8$R5ZUYkH;?)<ZZ
zJ%r|94&k~ulz(Fa`DSP1zuK;CNnmRNdlJ~2z_tXoGm;P<ag%CiJv@xqk%0DXiJb}T
z3K{au=eN6i$i4*jvm=d)93=Kyl;r%AE42fmx>(?H4>=URJ)D5iQwsEyV+kBj;9L^t
zlQ@yUN%~q66_Yqc<1$z!Q7DNs37kzJPZD{PIG4cr1acEdByb^tiwRsy;Ccd=82l6X
zH|#RkR%~l$xH)qr%()s;nveNRH^Rr8Atg|65fvpOe0w{AP9buV38WJ68PXF-GXf`&
z2@AUkd{-k6uR!op#4A0;OMsLW4*k?*rrlGtB#dNsP|!n4hMA;h_{i%4`I5LJiHF0-
z|0Qu}689u=ZxZ>#9E9|)klr2A{}v7^iRwMGXNaWtC9}>_Abfj&5)Xur4~CTUUcO>;
zOb;c|x@XqPk0enrEc|Fl{|nlWC9_>7|3nf`CJ|4<PU5K~o=)P8B;HKonIxV~;)Nt$
zOyarlL$=Q8#PcCffB&zQ!b!Z6#H&fX6y{I(wuF@g>B}Mg&*dXYyq3i4NpQR?l0^4V
zA^(ZNO>EXvG>Ny8SkP0-BoR%b7^_O6R1$xW$P-JVcoHR&Xjm`1^FWyKP6(O*=%7!{
z(qX&I8QxQJl6X6bojv89B;E^|caz!8nbSSxzl{sNDw~8P@j((Fh95Fmxjp6mB*?Im
zk61p5^5Lrryk6ByJ`VX$LaK9^>y<6`X%c07Nrfan3mIaDkCl@6B8d@6j7;LoB)&?b
zMH1g9Q8|e!Nqm<?{UoX;Q7wsDNz|r6lc<rz*Ga5zUb1Eq-_(hHa5cN*L6@Y<+}of?
zHouqDNuqApdUhc|RTPb|*tbd43pGX+wH~1HHV&m~KrJQtvkY1IacR>yi6%)jqxFkN
zT7_aWziIgPpI*{D%;$=GSTAXrM5`qJqQZ%pB-$j=i3$lz{*XkwB-$s@Hhg3aoVfm&
z#Gi5VrzCz(Voq3dhh%oe$J8;2fkTRN9YHzy*g1(`>CPNklG!;e$E+>{+rtrVj<LY+
zgaoTfVskG!GP5LU_G(ry`6r34N%TpgZxY=Im?Su|bL+SVyEC|GFKVwuq$lB8BD-zE
zX(6TRodhdqOy;gpKgy8Apk#Ijsecj!Ldm%<<|CUPOynmqG!&y^{m8H+PWF=QUPS!}
zS4_i`AmyrRR1%|;*p|fhB*r8$Hi?BvEJ|Wr662GY!RCnYBqk;?H3|1hG}%igB{4aP
zDM^rL??`!Gb|aQ$rX{nt@3;pzor1L}Nk;XSS!^qbc}dKs8bix6lRW8vr{42v;v{G+
zc92pn{3f<Ii6u#_PGU_GOOsd@R=YBZ<*X+>=wA^syp2N$F=rKHOM@c+onI6TPyg2@
zv5t@no1>6hli2Y8{Kk;kM0149mjBN$+@Oe6BM%Gjpid=nD2c;K>`G#H68mWyhKQj>
z_fV4FvX7CigX~RauP~9}U5=tRvv-6JGOFy2lIhp52+?~aiKC3_Vg1LFIG)VjW<16C
zPpH?AkUtqRR1|qmK6xGJbQ07gZ@HXh_pe4fx5%!GFC=l1Kuw`@3YU_&%%G7%=@fsr
z1Xq%{FNOP4xSGVZB(xOt6t1(9B+^MZNxWY-b~B0GBoZM!Zc&)tayz6v>`Nw*N`h0z
z^pK+eP5WtrSN3Elb#4+~5}EL;&wFQ0)2O%jNpuPM;QtvT1v7>GDcqGpo)q$?a7PON
zOCcZmkwus;jWh^XGOXdwRMuxXaC1UM=I-$Eo>cb!8&XiI>}JKV-q{0Xj`hsEH<dl!
z<)-2TDLk0MizyUNp+E``rSN15Po?m13Xg=96bfm<6dq0Cu~c?u%ler(%0HgU29wUS
zvV;B;VKFlEdkgD-I)!IbcrMI*CWS4%g>i;&pHJazZ+Rii-|;|pj>^ZEQm|5ZD}`tZ
zFQ@QI3Pr;Lucko#ycY726tq54B;>i`d!&!Np28d9<7<7gy?!&5olO3x2ewr#g;*+k
zbj!(7ampFqfhn27fLSF=gpa%=$-(ZOK2j!yoD{03P$Px6Q+S7srcg13cT;#Tg%48r
zFzjYL1v`bZVT(KhmXH|~s)9#0?^8eF-s49pluMy}DjTCd4$D;TBcFr}4;t8CK7N`)
zg%mzZfu}``In3ndGwGAFOIAvuatc+#@?WIzWmpeieU-|FI4(4*rtn|2)u^a&{=m1q
z6<ITduTyBALW>k?rBFMC@2HSe_6BdA6zZn3LG>HrJZ>_lK)6x-Z7Lg4>xFG`bGShY
z4O3{E%5L&BVlPTW8mG`CWLoqQ#(B2R5XYgAEjD9SeS}N$?^9@*!jCE3TR+0eTcyxC
zg*Kr!s1qvThZO33TcTYGZNrB6Ew|~I)1DZMWly_)O5x`ewtW|24INVGn8Khw(kTUA
zSR%s$Z}1=~g)S)^PvJxgzoqbd3L{b&nZh3_{Fy?p6ndw!3z@%C=$=B46#h=(pRl>E
zM1CLX7QQ9J#9~|eNY4-(v<P_~-}gzOFR?)_rLsFw{Zd%)|0k0D!yJk|D22hPtmh6(
zVMr=_aKj@K=AY>!L&Hb%^snJ5(4EPTN?~*g8&cSq!WcSEiob4zxhej$$n25R_!K6D
zrX)Wxg-I#Qpz?Y9npUV+Vp<CK^v$l{r=&17gsaylJMCxA^srdrzB2Rw%giExJIQRK
zw{O<L=cTf9jHM|oOJP1c5|&>W7G9jfqVSR8vHm6hUjzB&DXd6geW>=8L?(^WSJtJl
zI?P!UDzj2wY1~)VhOcNH7NAJ~G5z|=CPFlYJt^#^zo)P@g`FwvqGeOq9@=`+h&(&O
zu)~p*rf2-&ki?)zhVtwVo8U3=z7+PSa3qDJDIB2Ea*7>H;Sl-1<)_^2oRc|BheNwi
zfMY}~J5nIKPf{tIv7b!g6oXzG_oQ(;g)<D@X&7moW$P&<Q%I$7K7|V@Tw_R2W!FI$
zQ@G5q&ru*0gEyvF8xte>6%GM(gs^6oA#)>zn<?B%;daPO>nltwoEv^S;+t3^1+I+#
z`-G2tl_qjh$b<!)kh&rL_!j&W0tUBqRt(1TX$_0~IXD|AnAo(LMxHe8N@sVZ^QN;w
z{?0Ub_LMK=?+EGt(s(Wuk2HVymgiP1!<$HVr_qi(+vzMqxOa4K8uz8~L>f<qAKsrv
z!89IC<AF3DOrt<LyDoS*d`0G=|7RWvnH6ClDZpdl<Kt-@?3>+IDwM{}@D=G@{j#?!
zpGxEDG@eQ0*>rZic%F~_<T-xTFFUKDB%FlvYFveWQaFv5(incX8gaL>(s((IHHKPi
zs8`Z>HH}>v?9L#PMiCZsVYzrMjn~uopMyIcyphJ6Y4lHHKpI8Ucq@&s)2Nk3G>u|u
zluP5|G-7EKPvf05-c6$fg=rcq!;*K$m`bKmub-4kqjVZA+DDlBHnnonxY0E7c39?)
zyRyaJ3v+~8Y7>d4VTZ2@G>!08*^qD0+Il~Y57JNrtbf0VGJTlFM``SC6=CY!Pd-Vb
zd>UV+Q8|rI(_n#$X;ez1Lijl!KTG5Du$7MxW9zftiGGpBmuVDgA1l@@a=BXca>LlS
zZKGAvsG3I2H1al#up`ydsGi2}jbr4W=x7~p8L5#*@9`$f^O5z`PNPm59n<KP#y4ry
zO`}N~P1E=`4K`7qc%uf=_>SsomhBD`g=v^Zqcj?aax(wFUa;~(Rik`tmPYe5TBp$_
ztfWO6Ez@X~#`kGl>=?OYqDdXHBwOc))Y1=Wv`wQ!8Vj05+NIGxji1tBfgi)ZXFL0Q
zjGwUSpVQdzh^)9@{%8?lr`X3|(&(JV-)a1l#;<8~2|N2|8o!ZA<ByP`z%0zfs`yEX
zA0vN-nmjwsWSw2p=oUWqO`|*gB8{GD^rAvKW-UbtDHS_Kb@irJYexH|L1CEEon!q%
zzRYtaSaKj`PUBD-htn9G#t?QVjfH6pO=DOZ6VjMS45u+7jnQe02~{zYUe?hX6{>OV
zH1n~B{GILC*fhwDOJjV9779$sS*&OMD0@9Ajmc?DPh&=?t|@6u4J)BM*J@>@ofb;I
zx05xK%1>iX8goOKz1Ac)o6g%bvb;r>&ZBZ#L?|{}oSz2i@R#2tU6jV+G`6I%HH{@{
zETyldu{MomX)I4;MH(wZj~LK4O0`gXt3sX7^ptQl!P7KG*pRMEV|^N%!xlG$B2je|
zZ)3=B3Mn<ruP7LCyDg3FY3!ssQ~&j&JBYxxQ9^=$M8>anr?DrEy=m;DZd=5d!zQSf
z@}CshpT>bSukpn5wT`rG9XUvCcZlq35#!^LG>)cmoyJY$SQ^LExInd2;5LyHjQMGt
zN#kT1r_!Jdtdq|B+J*SpG^D51x?|*g8m#18SYf&PQOfh_6mwdu$R(<aCJVK?Xrg%~
zjjL%~3)Mn>);I)y%i4$;esVL7TWPpycxl{DBR2$0I<#FPR9z~}Nv6?nSRNXY;G_)2
zTSgq>xn+zt&7|RTU~*tOc;_oCNJDd=J2=}ci_G7?h(1#(`w20V$3b2P`5fHg;H72u
z>kT997xDA*-xe$Eu);dfDU#p8T@Knf_`$*54&b1agVGL^gM0Xu1Ixj^4(@YM$iWj1
z?sxEjgU48N!^ndU3OIP!!6ObHa&V?v<c&@d`qbQ}Q5wC*IE%RAV?hUx^4pHqh<-v^
zXq@@DlZ_s<*OLyOa`3E!=Nvrkz^-jEAUxw>Uh4>*h=8QP6#IDxFF1J7L5t>Dk0|V9
z<1KYd<<m6J|6{%E;1vgNIfy!V)j`C;n@-j%i#T}gKfxTl9)3l&(5$Zx)cBSmg?v#b
z3$Xgz;%vGY`&BdgX@zKU2Qdd-n@89wmMP(&B&)jD-ccc2lERm9kmI1TgDMW*rXd`B
z?BEjz?>czTL0JdlARfxV7HuaCp4;NI5g*@o@PUI59ehO1w8`cWf%Khn4%j0ag)y88
z<WN%H!KV%?I;iBJf`iXO@jef&NevKAR5<lO$-i*2W5kyZzH&h0QbIzG`ApP#RR`4^
zG<49&L3IZ;9MpC2t;7G|iLV{hc2LL34s*4f>;S|LzBDx(lL@D9LQ7Ez1IFgzV?77o
zg=(xH=JO9ZX=Pf9uNs7%rA-?<XyTwbjpZQd7-{ODS=ddgjy<K=bcgR9v~<wQLF=%#
zc~i2nZea)y>OUKfDn#2lXy;&ugPjiAJNVJT1P2ox{N&(g2YuL_gANWlI{dXF{OzEV
zgI^r{=HPb+ogMt@pbJ6OUv~GC21l%m{Ul$1dF3t}ZDYmy%O4K@q(b^j#s2c<Q0w>p
zviMm1AA+Py$!-q1JLsqEt`7FTY7gr#J=oTIyB9J1SF9&ZIm(*XUr2jXy#Df76N|K;
zgZ>UiIvC|(fP;Y!hBz4NU`%QG^@r#n2ZNb^Iexjn+&Ms=8zAotkYNsnI~YMleI2bf
zKw1xwt^?$^lh&g_d^A5~@5<WaS>XT~%U+L&kE3y$M-~o{9RuY20J(L^PFJ@kIhgEV
znS<pHrZ|}DU@qN<KyonM!AwdU+9f?e-alf`pf3-U*9XeE*0J&fWwwJkguy`BJuv5=
zfiixeyy_R5?_i;WMGo?R7hOQuFSItTvNjBq3j<}bgC!1@Ixq&wo$uJ+?Xk%`I!IPH
zSm|KBgAEQ=Iauvrjf1rg&aJV|{?A_2D)wD|dmXLQJXYaq{JH%0mXGWYyI30?Y;v&0
z!Bz*G+0Y<qGDwIzGL;5N>hah%2iw^lzwG<zc(eEA*Fo}5S$h{D>cDf5aj=I5a&X?k
z1qb^a?00a&!AS=P92|6T#KBQoVUS$wWF2yFm>%?qy>yU_=xnWBWgl~JJTz$e_Obng
z<jH1{xnoO`o^o)Sv6R9Sy*sQ@@7ZUl#wB*;oAIu9+P!YYwZXD`Q@l*A=tT#Y9Nctp
z%fV%OpM&cJvx6%RULGu09b97&7%angTlEHK`<1foUk1y>!LnwsTpuiV43XOoavh`{
zI1UmHk`7X#NUsf%azkX*1&g#mal6qFaS7=mGIxkP@{v7ch}_X8>Qg+1Wf%9m&|K&)
z?r`xx7lsSdMIIM<U2JV_E!}MuZy23w=Hzp+Ylz%AR9+n_*M`XPS=OB{^1FZw<>D?E
z9}boFL*;H4wTBA%DO;?*LuFs1==1m3_qeD!)4JEiw4t(fsE|J3;z1WrxOmb<0T&Os
zc+AD)E=~=Vhg}qO@u-VOTwJ>uKVHoyHHXRL!=%(OX;9TF<l?ho@?r}s-wFGFwXHUJ
z?WbHk?c#YCFSvNd#j`G^4wKxDR{dd8ez5hNi%!ENQC@m%v0rqtahRMLCQsCh77qCi
z&7u>GoR?j^;-bBWA3eP4BI4q(iz6<IaPsfsFBgBic-_StE^4~?+QpkLin7ZtK63Gv
zi>QmYUA*I>n2VT;k}gWQDDI+!i%BmFG2ji$>imh}^5Jm7SJB_Scxe}9Sle(}dNZEm
z@`_-*({SPAyDr{yQPzdHNVTxyF6db^hl}lksbj@x|Kak!3nz$w;Ns+2iwv<r=Fo5{
z=i*}*U%L3p#V0PxyZGG2cW2_)hs&ofDo}5<)Cd`0)P8n^lpG-yM`UqT(M2T}U$~gi
zJko1~%o!nVMhN-JE~>bw=AycbMP==r?$-7ZQq{$*n$a601S6#ezZxk&jFjg`O39H@
zi>7zc#>EdV>bUsEMFSTNUDS2)t&94^$pEWwizxL_k5aj~P*U#w)w<-w2aFU(Ip#NV
z(b(lb*+B~zO<XJ=DVdSdl)c_)9ULjmT>j)pggFn5lJ8x#bTNLEv}Pu4F-ki7Wq%zd
z<wr^VQL=QD>>nj<U9@xYi;K>*tcxFAbYN93esbZBlIUppnUEVTlbc(F^iz-8om}L5
z(_YfP<kEe1+b!1iCDyMlx=@p&<xdxDa_!%!s8aUtE`}bk-+9dbgZ=%}8gn&H`rQ-e
z2EW)pF1k`bE@r#vMw_}A?qY<C9xi&i=;NX<Q&X!K@iWxwO)ZU<*SxYnjh11frJsxb
zE(W<6?1El1z{Nm<u!_~=eVen0^`m8P6RX@%YY1C+aeTBC>z92T=3-vOD3d>0M!Fb9
zh#rbhburq-7#h^YL>FV}Yhz>_)#c*lF<Fb-W2E{RA^mBLj2a`8TugQ`#l?a#*<Wl}
zU(nt$MlOw!ykljWi|H<AgksO6i;a~b2eWu9JvLj<92aw4taY)DVz`*^Vi~Q*dR#1Y
zvDn2DB8S!=D+9;M?6LAo_|=ZFa%-$CrH_x3T9d7U6Rj04Rubn0?T^RFDi^E6=GM@x
z<AfvTvWqqc{i#}Z$+q6b1{XVA?4<L$*yLgh!xYhV!m2Y)HoJ&FXSW+CD_dCGT=W|!
zGsemGur^wG-4=VpIN9Z5H#O{Hzl%LCuI#h5@!5d9*Tp%0SitW2pnZTn9WMu69159t
z#><iKtmf<Nn&aie{q|88$6UPR!SZn2#R<kt52lBc3|}s;ySU-vw2L!DxXYi^##usc
zyqu#o$IGzsvS7TBIZxNfBi?wqMC(kDe<=w+eA~Y4;<sHE2l}fFI9*C!qmTb?EomMr
zK0#_skoFVgri)uH(u@E^)C9ThBG*NNX6k8u+0825Jd$M0nII`f*N)cvbFJT-#Xk5Z
z>JsxVGA?`<>-qMkeRP8Se!vbG{5@!;Y~8~XjiZSPq9)3upRDI5%I7U3c|7Fx@Q8<k
z9`bp(!^6EE?(^_J4|jTi2gQ#6Xyx~CmxsGOMDynOYpl!Nt&$Vvn~C!G#4NmbowV=q
zz)8;7iL!d4-0$JkM0vo&gC5d7tbCKCfCq|QZjwCg;UN#N=sB-Uk{Zfp&Nq|fQGQF=
zJUr=P&oTSwN%FXdLLUDyYn+piDYdOKldPvaJni9m4=;Fl#>2A|wL<hc4}B-elu1G-
z+C53?y7AKQ+An&zG)W4FP3x28lT{_7)2v4(%gb!n!>1l9F#dapcqr+il!qc7Ui0u4
zyXN6_%DLEj(?d}YZ?OAcN8gw%?@yLGlcnoqDYx5NdEP4K;q5Bc%*j&RL(JnZV8q9i
zvx(ah9yU#u^7-w5CrfD$Wjws^;R6pjEbrkx4{<7RioE0DT@Nfq{>x_8^Haob8?&jF
zc9F6k#6#IBQhSQDpCTjk<cyvoOQ*<(9zOE$v4>AQoSq`(sDY`{X^&0*j;WI8uzjDI
zQ{Lm>^2dj5jlVZlKJ)OohejS6d#LE4l84$J>Uj9V!<RJ8RH@<ND-V@DRP|7eD*Y$c
zV5)SODpfp;ohoPAMXGyPIh7mQC4N61AJQcDeQ&F#hp#<6yw>ujN-Z+er0O!8^cxR#
zJ$&n-o(E1LUY#cPH2Hd(eCMIQhjG(n`7~+Zq17~L=%L#*;RK01M@;T+HSy5YLu(Ih
zJT&uAy^Hm|hn6AJ+(V0yxu=E2{8k>0^tG7C?`<9<^Mi+4zgTOV#oBsUg4nsJ-Oj_=
zX_9xkkpAT1XF6{NFK5ufLq~eChZ7z;dHBV{L=TfZboTJ8hdzW5k>=qyiszxbhu=N?
z;o)zO|E3Cm5|-12aQ%yRoGw+SOY;F1ADd5?KFzZer>-9Unl59fOYzoL4-dUO^k&oB
z?4BNuZMMx1W$ko1K3#(8^6(7l=b^ucVIGEi7~o-`hr#r_iIzMPeSL-uB9`v6Ki(cc
z(<U;+!|sOBp<ecvUHQYX<VScI>0t~F<e}jbYm|r4bcaj!pYPgV%#c<y<ewQbj+rxL
zyoUob#Cb!O&yYKh#wU2VJwy1jv6DSa@vzRrdRofEG!KhBEGBF`%<wSB!(0zDJ<Rej
z+e7}DGO@D7k>ZmE*1UAQ+*<4MH_>?>=6hJ^agk-eFjH2Pk_A-DOsP3jewis_XYxP(
z$Py1rJ**&p*qycZG7k^*w3ZVIrDXX`nRUeCNVm$vY7c8Y6#m{iI8$!Ulr?ncS;F+}
zk@!=y<lR}a!NW!m+db@{TY0E5OE!Dh;$`Pc9oAc083B&Ozn>-BLguCNMY_+D=IgAT
z9(H-yPYn=A`{KJj?DepZQN_cW9ohXi(nYhfBjBJ<?Y_TQ2R$6}aG2;~@M&(f+GFjR
zC0A$3QC5;SXJ)(Dv5>iMw!AW1W>mLM(tQ{hGsvI8X%A;SBs?SuJP+qQT=Q_<!?GsP
z^9(^AE_=A(;UfM0e)|hOR-|S0quKJWhbtbg(vHXDU*5Ls%$5h<l%HqIpxH8aw%nk4
zt6H}`<a)Tt{?3+LjANCphrhHxtZv<!E%(ilrc<m*=j{~pJs26788{wXM)(ZYG`2hs
z84tdPfZ?lcY*OVYEk#=L&K%NL=45$21ICsQ=472QPX>82xFduAW$^VJ`FN-G+z(d1
z4BE_*zH_8~%gE&O@om@QW52fU%HZw{9?Ib143L4!pls8~gPH6E{+<l(%i#VD?#<xw
zy3u4)YvCMuw}$mV26^Vn!lb=pj+~z(kIt0>89aB@u9~zT$)I2cPiOE<hQIWV$1-53
zDU?B}x$<}hYiC&nTU*6G6h1zY!IK$0mBHt8W$;{Ku@}c$?dQs~tSW=T8N5DEp3mTg
z3=(tY#SG@mmA!N2jk?j<MeLWG#qOCWFJ&<MoW){Q=E*A=yqZC$41VGMe+ES|_$q_S
z8N9}NGI%G0cQbe+gEupXW>74H=JUkRVt>t(q8a>M)qX3J{W0hJp0{He6ekS6i<Zft
zL<S`(^E@d{`7>x=**cUPA2CnJaPzHAb&IcZGI%?K4YvKm^Y+nsGH0p%UIy_DKFsic
zEy1QTGpJoL`hEs`N=u&kBJ9z8VJbUcKFFZyeEDO(nAhXwGWa-yN*R2S!6zA%&)_p^
zCWB8im|xhg5Yl1uh5Y=GK3hAwbG}r};4(j7Al3re*E04cd%ZvwZI6?0(=k>hgQ^)c
z%Aj!u)iS7_LA?yV%b-REH8c1ogSx~9m6l`I&Y(^PwKDi=f%IP>1lYKnc5JKt+DEqa
zY>YARTf(Vj<g+bt^0ZX_3>sw6FoSc=BVW9gGiQNpS&&_?om(KY8bq70Um3I}*fMCA
z!LeuT<{7jInf^yCbD<E=-)GP=gTBYDs&7lH44w}&KRRgrkU?9jI)fiGXqUmtmXUF_
zq75>|$Z$XKC+c&dbjYA%20v#ouSsM?s~Bm6h0<lAJl`Nv^=avx!LJ!i&R|LgT{8GB
zgCQ9VB@Q$ABZKZ4^vK}P4F1aSpJJO`X?+%0DF0-@<-_8I;x4lI=sjwWiQC;WC=|Dc
z54Cz`&?|#}8T8MfcLtMSckgQT2^ns2>{%#%Gq}1?$f!j!AcH{}49;L6b-vlY(jb!P
zZ0&tTiY*e-UysFyWq3&*V>1|+!3g4~iZv>O(HR_gMn=-~gRRdNN#RrRCM!#h{>&be
z!OX*P?)Hq&AXPa!k(ys5e+@1%fn69}LOWtlVoz&ZT^7mMMKU#mX;fMUt1_6L!3@GC
zg9WT1gIQD;=_qT~(H!pGEnOtD=~Ef(T_ke}h9(j2u9KcT6fZN{TA0D243=iFEQ7@v
z+*%|{sLXm%ES6^%OWEIJH9A|%=^cw@1tUhQXvM|Sc(IH;XZ^ldRx@5@usMS*^c`Ys
zr@fvILOvN^$1qY{Ds{3pvg3<o(PG&YGWy{-`HAC8Zp~m@20OwK6ntgnt7P-{&$kmE
zd+mFh#*PfMc2cleGI39Q4<)CEYO18B_GPf2F)F})0S;tvkihftgO5WQ9A-4|QN+iQ
z4309W`pDzsSO&*4xRJrl3{GTlGJ{L>qYO?l_-AmIsAiyO8|C)b8QPKOK8q!_Sk7l~
zv7dE;VPuKiyF{+MEf?wIOQiba_B~ai|7LK7F*Aef^s*&#;&#0K61hr`E@hXC+8hze
zO|yD0k*2HcTN&KWz|SDaAeX_70V*P121(jCgF{Qi%^;n@_}6lrkj_{l<e5Hv$=-k5
z=H~G38qo~PED<uAk5rW?lkTJZcUgu73?KI|mB>=b>m#3!Cw)BS;|?GH^O4`jUHs&T
z)vl3sr;iVpO3TlpZ|#ZS?E^mU^>LpM<>T9>au2^6ZT+!S#x9kmOJ(;`x!=bFJ_`7F
z$j5`Mgk_e=)ZZ*_1(1JnS$3C|>0uv_u-*PrFr<%$l#h>v%;P=^h0GKGpP#c#p7!yK
zj~9Iu_VKKr-OYI3$7_e<&-tjgOv-kQ{JBi3w2!>t^B+S*r!A8eovfF9bUPG(*@xw0
z-7>kpOzvJTulRVCl`NN><x+EbcAfj0kJo)v@ln;s8$RCj@d117qo|L!eB}6e+eg$#
zF(1W!lpt)DOYh|p^D$|;tX?h`mrF?>4E3dbl<`r@hp|E){5Bi>XXcmoKgDk5&06Fg
zAMg5j&qv%x!4*<;h0K{`_1SCLKFazKAMgA4Xob{UA=GDyj#k$dGHr!yT9K9TBOm2_
zeD34#LiWc#KJih($7en!eil8yLOz;gmiO@~P17`%+cH90zh!h{Z)@gP(enr66@66l
z@r92seN^^Q`eS?fj}dL9eC1<FAv^DHSwAhfQi`mUYCfv_Xy~Jnj~YH|(!|uQkFR~y
z@=@DI9cpH!)LbbawTiY`Dg9Q;jFs|@kGej#erYXeALDX{^gAENi_6Qaq(`gBj+Ij1
z$BmWJfOuGy-7swIqlu3eKEC(S)JHQPeM;JI|7A62<xy#{N`74><yQ$c*3!qtKdjb1
z=B<*ErR-Kd28RqYcdU}OKHB+M>0_0T_C9{}F^C0x{zpsv?4v79@1ui{jy`_#@w<;s
zK7R4Br=!)yM`s_G*bqO@o0EUFJhxijUoGT+X&qZW&HBT~pHxEg*x&5(YU#LI{_;_+
zV}#6sHqn3h`NvZGfc4P9cy}K?eDw9v&j+XOJ=qr@f7P~n(V*3%y+cZ7^lDkOTH4pO
zIQ81UTCS{?{yqj!Ee#_BL;72z2>BsChWeQ5W15d)K8E`k?PH9O5k5xx80CZNEwIGO
zvqnl6iaoPN_P%R#i8R*7I3j^)^znGt*qFwV@$?P?c#Uw4P<xHETO%Xa$YeIOMyB{!
zxJGuakuopX_P5q_A2WPzp<|wpnbb+E*e5Ncb12(LYnG2LovqnEZgsK9ta;y_b)P-o
z#{wTqeJo=HSSt&CEb_6~$4hIa+*(=U<JSsNraN!Nc@nWHe|GV5XpFVo#|q+Vt^Bf9
z#;?udd9{x<G%j28v6jB+W516BKGyr#;A5wcT|PGY*yLjip+z&TmCejN7U$;Vj3;fv
zyIwlJ&BqRkF(P{?yxj+5)a@40eD$Nu*-clvJ65-{wT~9}!LfsBua92mv&_-8!dC|w
z{C%ACamvSG27iLq#|a<PM_4V#SVuVoP?CxfXRVA`Z52LcJ+@A&)QrCMT26^|vb1XS
zw2yN>&eQHb&eC7%SsaY+ZXEmEFZRVcxj=ZY6RzO?zM9=nyX@m%A4$eTA6I-_^>LGm
z^>NM5j>|WEw60}c_i_6(oBs!7bhk*;vv!Yla@)uFb;8r1gpXW$@z>EE>ttfSoYJi#
zvu0aq9}b7A0C@wrK0F_R4=q53nFFmIuh>5QqHcEKb7h_I@%!So9>54-26()IWv-Ve
z*Jo`}YJJw%@&&jfz+D0E4)DJKHP_3X0rCfE-PmfoUKSL}mRUa{TN@Js%wI3}1W*B9
zi`o<awuY@29{1e%F>-%^2Lj9rFgw750SW}D9iUEthXOntpk#nj0UilZFn|@{<p7Tc
zcr3uv0iK~$LH30Az<PNiz~CCuLIKKGjyC!s`eXoZi9AKRMAkfE-`^ziY=GwiycnQx
z0RCX?l2+F90Y(+FUkKo>7g~+{&N|lhLiT&F$xCc{gOGV8z^eg@26!vLnZZ^h!0Q3t
z2v8)z+5EBBLQ00mPp@x~Hv{x^>;WBOl{QGz4Km@cSTsN^K=A;@g6z@TpBrTK2I-N{
zE)n432Fbfo7HyE78>DoAGL$^PrvY*TydB{E03QT+C&0VxV1TleXK;3P@Lm8;5l@b{
z;sKt$VUv*nTen(oZIq?oSY#gGC?B$e0S0W8j{|fbWR(kWe+`=xxvw@#=Z*47fXj#M
z8t3EO1FR6>vjEisR1ffZfQkXCunSL0r2t<9_$ol<0AB`}zEKXGx3+8)Mr`tC-RPN(
z!jx)hr8i1dT5Xe%iEfe_0cr&pze#Ea_&PwjP110aBz9SUZ<6(!<m}7#Hv#Gf_$|Qi
z0lp1Tk7x<dCct+A>IY~ZphbWN0U8Eq9PnRQV(;Pjzni2H5xZF)-z@d3L`!a#rqs+u
zs~Hvbm-WSFX}($Vy&&HQXc?eYfM%!dHI1Ve&RI{ijQq7(qMt{`Z<Zedv<>i6fS&`j
zBPs}_Ez-W2tlTX7H%nr({1|}rzAe%rKu0R1i}g!@_!jBJj%*QXo^zy2C#=o^ehsoq
zk2YJR3*lEc%Efs1E%HZzKLZR5Fet!Z0saoqJ3yZR{{-ktl?Irw!|q1SY?1DqOm30o
zTZDYk`|KW+CmAQh0Md(H7-QYsA`jmk>r0Gnm3{#jpdQ>R{lmurA^mKt)Tm+&4lpFZ
z*Z|`K3=J?Wz=^&&qXP^N&}gfS2r!b?-zvk?@lni7$C<fcs|?#J-ygRJ*N%<}c$3_|
z_HA@LWeYHkRt_*Rz@Du#DZpfEvU?8SUfwEG0!*drZ4+!0PL;`gwoMLL_T7~tGXl(H
z$uPg)HkrCj<^-5anFHhom`9gqg*0M-1pyWY*cf0_fJFfo2Urzgb$}%SmIhcBV0nPk
zgL1e`IJ!;J+hj$6d$$YIO8V?}@ta4<m)b6C0=)UMU9F(KA;8)I>jJE2xY#b^w#&xt
z(&(p1m+itGNEX-}U`v2)0k*T|?XshFbSu#%wzFOImDY{`I~i4~Mt5_1ze5V|kWWg<
zt^lO6LwFU3ul5DlAK-j|3p81Pg8>c)IKp7nCiZkci}Von)+*9yha4p&0vx9a*yUmI
zzGtl8cgWBkax%avw$9K&!0(WSJA~UZ2X@F=I#=_^IXY(doLft6@`)W1|1x@!v9U?)
zN`R{YF40c|V5hvgQ~qVFs}y-~lF7H%!ZOzb++ZYZ6XDF9nPp~LHv_!4Q?AsG-eP{8
z=o{Ze69JM8m7027Q>g%HMrlpmsVRrSKR`eLXo|;Y9({I;onesa7~vw(53;K^&JuI}
zhOQ|?Q>Lc!Xo@+_c1o*bHp}GIR6b3O-I-l5-k~Y(7BY3+ncX&IU-E0}E=}F9sRuN*
zZl_eeXx*(TXi9179!=e=srxi_YNz-+<>6hzi$g_s$)~%78%Lk)jX$WV0-AbQQ;+c5
zE%rm2Vg&27OUT#TCF6I=8$ZShYU)u<k$IAT6Z@65Y?l<$)DxPrH1)Ekp48M+ntD!C
z&ui*wO|?94x8&ibrk>#^b))6$MGx<i%Vq4;E_p#yFKX%~O?|mr-n+wY=En<bYJP`E
z!QB$uEsb}}n>*}RH1(>cifHOJP5t_~{p)VwSw=)t1HQDyEBiX@)KpPTy``zqyJh)q
zS+n1MQ&Z!9jC|e|QBBPpWEs_>v5+Yi(*3)oIJH_Wdh4qwg)gP4(wh27S3m2jjHYrl
zbwE=GHTAZp-qBPSP5q{+cQy5%rs`_yTTR6^WozmS%B-ofni5TYqN(zldS6o?Xo}m~
z<urA*y8WT1KBDT*S%f_wIY}U2q;tuS*_X~Gk5{oj)l{ZY<mhy(lBOzX>N8EfUNL&3
zN$hh?RSfxCyM;NNWVRY;ab^0IrYdWynx?92iW{Myw2pG_RE1{UBUP#GJ(8=%YH-!O
zM`~*7YfV+%BgHqzzuzOZG*w4a-)O3~rufL6pB{T;?}_Xy?#oTxBlR@(ou=Ao>IY5L
z*Hi;dHPuuzO*PcizduA8X{xcNSboDE;hEQA$jLp@L{o{a{PQSjuBjF@F=4E!f_vrh
za~9M0)Ls=UwpTvio87TYcZ{_rFeX@Tt7uzIwbRtkn(Cmb_L|!Hto@^=8toM_f47d1
z`AJhf_6nJfn(CyfU#LS(P1>6^`l`KhVXs7%S-%p-TdXJd$+n8oV6XhHsXsI|SyNLq
z^{1x(($o-54b{}&n)*jmJvG%!Q(ZOHjaJ?#ymr!^O=zn4KDp~Vi?sSa;c4%L(^hXy
z^&ze_HISd|lfLwq0aicSu}NgYKIu;c7PFZ{IxuPv($s?otikNd;P@(5b=zLS36-XX
zYibmsNR<wW&$>6(t7T+_rg$zqGNcFgiF&)(2X(A5bY7xVQ{(B^?4YJ5u(`L3UE3#X
zJ4OyyjuJNc_RHAfHWPEEYHFIMR%>dFrlxCZhNc#2YBBMwsabRxO)b#WY)#E!m(Rru
zb+hJbs!%nHAI=MzXZB~Sec|T_H}lDG7O{}9-!E16i`OKwL{rN&wVcSGpR-g`wZ6&j
zkgT9(_sdF6t)eFP%Z&Z9VZR*PYn|CI8}rB3GB{{ztERTG(J$@wn%bnP%?w1E+NddS
zzpQJJt)%$*c-_6$7V7hS{E-7P>3ge2!^n0`?a<U7f{H<`QDmp4b~ENwitY*@r|q_j
z91uS8ipxGt?WY4CkS>GbazILcXs>J=sd+#SY3i`13hU}6T^-TXQB7&O(sgxAQ^z%R
zLsK_3bwX1oHFZH#7a8j`by`zr>7JT8L;D_(QpM%;0hxI~HXo4SfSlLV$1S4V0KYlL
zdf}j4($r;5UDMQcx&W1&KX!#MIGCMylmF(RT-DSIQ>`Bl%B;>Y)hV{&sP$@X>z1Z&
zGq!8W)fBfJbLk_RN-{DSIsFbw<Nj9LXY3Rm^XJGPm7{5z@1V456ZIGeG*$C#+^30O
zvI#{V32i$l+m2a*rj8A>E*}&_SEjBW)Kvjp<<V7MT`67NqpN(nx<glY>FUp_*8lV@
zQ1gfM&XAtGY%>Rk<i$f$`jFhME9mO0L-Nxhd3=q<`<(ac>V93d_&Ii;t_B>E*@t9A
z>*xcz>e3<dOQ#6wL%MocS5NEe8C^Z1tAe_ETvvs3^{B2Mqw)_+;V!Wwhve2F$$wbL
zJfW*6b@i04_97NPETnZp`oK@IyYG=_b;X6rbGmw7SM3f<&%-k7uv{o@zrg%otrvB*
z@v!hN%H_ji>FQ-&RnXOEx_U)duj=X@UA?QTh^~t0DyFOAx_V7luj{I)uHMoa{p>e%
zRpN-esjK`)<mn^AJ1~5l-8vT4v(d5`s|p_*AK`DT*(G#UQde($WtY*_gbP+FU3EJm
zrKyT8mRUJE`H1{5zGRNBRvwYJ!(uFX;E24Zt2h;_t8%)sbyZeZAL!~sU0pvS*Yb<#
z>V2AKob~=^(YuZcXTL8Wl~0dK>!Z^3sC=xePjppYSD)%?*3s-DZr@S4c2pi&Xx(v4
zo<AlZ9h1*>RZ&;<b=5#um2~xmu4?G2rmnu!RkLHlEy~I?pRWEmCc}@(++$KjS5<ZO
z&u4ZuU2U6S-8?4M!^gwNgqit|%h$T9qpNRpRZCYrhsA4$^oKq1GDG8abv34jT~Alv
z>FV2%=OZ_Y%Y1HkR`T?5DRZ3vxKK6HRV!LYSB-VmL|4tJB3<$5uqh#TTxK7aW>jy-
z*cZp8`EeN@lkatvIxa1Bwf(q6cUt$JkO#M0ZFKbm4Z7})_PT1TE6!MmJ<@i%x=_$&
zB7de^&X2l!h)ekGRtH^mB;*YBtf4xwIbH43)qY)d*43}N8ck^lQC<DUrgha%SHDvy
zy6Ud09+Zmp>#8epSRwk-3He)B6L;GG5UVHT(-T6z;R)%+Vkcz!S*t*kXir`BVhnL@
zo^CJUq3sDN**?;n@Ms_D6VgQ|q(8kwS3`9*OjiRb*q7141i2+UPRJly^N@Z1ge?6$
zIz(3o_rw`khU;pCu14x=6z%eJEdNP4=a+rzq`Y{|{$-7I?4(uvq>R<oI9)B&)goPu
zCkS;lT~{+Gt*$2NYASnrQocATlXbQGYJ3U-f5<L;)FR*Lq)cP^ld}4xkj|t4x|&A^
zsbtUA)tQqrM_2ua#_J7^r%no)xrD@!9A4>}ud4;rSW}C8P!FCG(#5)3qN^>s+N!Ii
zx>}~IwYplTtL3^{p{rH8TCJ;RkH%NB*Z0}QPszjg+GNU~k~O+&dP;sfCH1CR=i9~B
zQ#q$(qpmiE%mxOfe=O#3V!T;b9CXMqaZ109z+jJbwMSPw7);h!J89Wda`=F?@|3*v
zeRLP&Ofj1?(xab6Zl4nF!tK=+Dd%Yis9s&Uy7F{&NLPmm9$j6e?R0fiSEt!`#(!NM
z=Pa&Pl#_67X`Tq1IH@bnlt$&vIYryuX_vUuCOxYwUX?$mtMj_zr5f&aw_RzqKWyE5
zI(vKMlCCc6>ZY!4>1ytPoPTw7Rae)DqSJDPI=SEG#%8(Ga$Q$9baij7Xr0r-$M&aX
zNk#j%u5#%Gx=K^Mt*iu{XoSW1Kt37f<QbIX=&JW=8S-WH`ERnD!yB&I8D06T%24+i
zD$tc?sQ(%2PDAO2G7R-rn^-<WJ($n_Bvr;VR31a^tsbQ*dATUBq2{l#I6Zsiymg16
zBHJwvH~9^9m!UY;58G$oZK&c-{N`zap{AUc9j8SZs(LxO$57NN)5B-venUNAsK*TT
zI9oAP0Yg1vsDf<$P+T>$YOS#zGStI{;?)<XB4_0NGxDgRUd@p)ZDO^~$d6~FkfEM1
z)YFFQTq{~~ob{xko-)*|%l7ayviOV~`^7RI)pnl|t}dTrJ%(y(sAh(G!B8(693RyO
zhAM2Rmnf2<VurE|^|GOg80t0t{g<JBHtpgSqOTgNj%g>)NZx8z#89LcezaaU)EkB>
zN);LE&!N_vhI;RLyVzN|Ry|tqtW-EFbhn0QC2FWHXN4DCiW{ngq24ysJBBK0s8WX7
zcUH<6sx;FMYx!Au?j8HZX4cTNl4Gb-y{)Tf<^FT>E~_<ESwoFKm%Zc@H&mN*Vza7q
zQth1dI467*L#;a}C(lXmE!KyI`p8gK4OPuh<qY+)p(+}xlA%5^RCz;vW~j#J<x@kA
zdCETXeYAq1(&vO{k<Xl$56)+&(4W%~=d8}><?j48@8y1Bs4ormm7yvdYSVeCVyMCA
zWzKowCM35+&YzcO2IN#XR1HIYXQ=vys%faN4fTzo>Kdw+q0|Mb!=7G{+O%w|?1eqj
z3K!(tRGDuLRnJfzFJ%9M<MDGgmm8$@FGvGJHK`G8XsAYp>UTlvuC-@fkZS#`@gLfa
z`HBs#wyU&_Y`P%L4b{R>0}M6LP~RJ>rJ??yAq>^ZP^}Hsft6ENhWf!!KN@OC&FIMs
z(w2N-X-9}&lou{adseu^;*6AZZ;zax2-oxRpF^5+Q92pw7uwEHzp?ulrS(PWY^Yxi
zb!D|R_@XSoD5oyU?}o};loFSOlgx)NNw;P8UxxbIP(2LQlls4I*SaMC&>albja6Ne
z%R{X0gxQw(_)D_ll8mZr^)l4qOVY<seGS#yP-kI#m!wv^$k+{5(`HsbL-i+On^^@e
z%kuTsE0<*uO<<^*L^wNTsG)`$Yp8LC8fK{Bh8j)F8ft{0MjC3Aq5e7$=ltQqAnW7H
zQvb62d|CQkmMVj+<efGnbGt4j#~W&bp{5#YnxQ5dYLcPOU6v_^;(~6&mXebVHT$yc
zxGel54*#+|^shwzmFb3hv}LsZzcPc6*ctz|W%Sd3WwxQ_7;34ZmKkcUq2?KCp`jKr
zJ{W3&p-%oQ`SZuR{wrhtmBvNvW&aB5TZ;{~gjj77asQQvu1Lu%Qt65WgL0PB_fzpz
zhFZZWbjn^yTwTd-Hg>uqs}03_0_%Q>aVEUZQ0pnc9cuF(YJ;IR8mdfQm6KO(GSp^6
z-8NOOskRtuD+7+HYM5%9p|%?erc$QbVW^#kx?!lBhT3JQ-IS0XXQ(|4ZiYHysH5~v
zL+v*dmwty0b$~j*BAdRC9x~Lyke|~x=f9j8SLC;b)}|{$<Qy~930mQ3{F&YMaRRus
z{oZ`*_!aT4$Z12JG1NsvU80Fe|Bi83ykMwaKgP}(>O2MeDq63j#m53yrPNh<@GkqZ
zp{^S0nxXzR6kVp$Rk>oQ=2x@KoWs^XSLHed-et|dD%pJ`cA4SYR3<xasDz<BB9rM|
zNgB!_?3+hdm$Xw1eJ8DSNMGGz@vl)_+I@UU*5EVv8%i@3|0HegpRo!}Vq34u`KzLv
zYV&Wg!d0TxzKrHERbEr&H`QG%W-4Czxx-ZcRe5%@$*=xrDlXEQ?hKiSugTq}dhMDV
zJWz69!wAo>?Q3$6sqST_sa`kLeWtqKRL_{|SyMe=ss~N=xTy-6s(`5;GS#SS@)!-*
zF!Hde3YzLsQ$50V50?D;nk;V^X@4y%+mqu<o;@EY8XFC>xDWq?soFkhKV_;mEvzTa
z>@Lj*rR8Z;6{{0ncTJ95ljltJyr~MC>LpXXV5(zHtrtxtog&UPA%E?H#hHd>s+Ua_
zF;x*$y<)0YO?9TZ_5F3Zf2H-nb$R`|l)EmGb`ko*^QG)-HKT8s>P=I9V5$#IRn$~(
znX0s@%9tw3c1=~>R3%Jxx}-hmx~#e`F;j7)@6dH|u1kR%Qj%S(7VZ6nU5dTyVsVQg
z$5d~d$~IM5Q?+`+e#cbrn(95)c|%w-ZmNnmr11@TGG>!u`T421n2HhXeN+8@L&n^Y
zRX60w4f)7a<xKU3slGJT$ENzkR25A1nW+*t_>Xv`ys2KiDW96E)J=J`sWo)1^|`6O
zy(tw<RmoI8-IP8z<$+!Cc{k<gO)+lCSEj0Ls%oScMK5OmGukSAORAWvs;NG@C9ghX
zx40#o!1HZQQ+;i!nWma$s#>P1ZK~fWn90#oePgO-rfP1gx@^l-4NTS0RP{{t9bNLr
zNRgjn_1V+2*4q=TfwzQz)I+9`skqPFn0R=}=B7mH31$;Ibt9`O>%S$;+;~e`nCg4l
z-Bj&NwV-K{mZoY=0GR63Eoo({;f3vdx24c+DRo=w-j*Ls_0MgYaa-D(>PJ&`GSx5a
zugOtf4Q~?dV5)Vu<=Aa;Zp+y3BlqV@M?y4L3g=2^Q`OvK{c5T%rfT_Vv}~?$-?iB;
zt7@*?{iOYess1$82vdzT)nBIi+f;o`)sJm4r<C2pR6R}A)l}U~#q;Ryrb^DVdWIji
z$(3HF>TRk%raF`><8$TCi&pEd){0!Y!2${CPZ*nOh^dB}Y9OJTkin+nam*lAHN3?B
z;U!2HeI0#2k=;NZM&&1Dc!)6`jwFi9Qv-8GnQFADCYx%Csm7RUER9l7Ca}3n_D=~J
zM@LJ@_>j&|2>FSo+Le$=rn;OEGbu9*+EYz6jSicX>0z;gNtxR+mS`KH%gi9UlJe`g
zlCw=UhjG<ZJ54p$RP#)=(p0NVHJ?T?)gn_ZCIFJMknX=-Uiu-@At}R?vcyzNO|{Ha
z%gz7e={umMD4wr@H#yvyCFdLmSn|GwCp^LqQ{<d;&OEY!ND>4=5l~Q6#DobmB1RMu
zR76q9f+9hJiee&%@9zH2|9huTpPGKNGu_oyH65yM<IJ7OpH>9#UXFga9NoSgeUgQ4
zWyAK5=l<L!EOsT@k%iB)u$#6h3p?3OS@@ETnjin16}u9BK^Fa&YJVl-y5FQLX^%|?
zkMO@#&povK)bXXkk}J{I?By%byH}z^SE9Xa%k9?mocTTr`zS3`(k$%H!htLt&BC!P
z9L&NY_U3}%2sytrIGlxRSE6RG1oS1~<qugXdo^lxH5z+0`jM6-3nyqOu13eR@G~W<
zV7TRp)XJ+7S9)K$8hv#&x-dBLL!Ib!7JeaPv+z6Hn}xGkIG=@IX=ly`1+J&K@^+4`
zE*+70u2uNo)o4n$MCohMg)IC*#$Jp5riHl{{h5V}S@?^}cr9X-$NX#26W7wtbz84R
z|778xYf;hbQT%#ziDE|KQLs+Il`LGPNl_3fxR!<MStzHVyn-89xS0h{fv@0J7H-qL
zE6^0sQ#zl50t&Je<j-8vnTKEPMRh_&!M)=X(e*UlZbG0dFcjDd90l&e;KZt6SC`OK
zz}!;6cnuOYwg;{P=G=*ff<Jx=2VPHGvzUT{3W_Tzp`eh0!n|A<FRGyZPr<USL8@n>
zhyv!lmE5E2Q^gd};Lo@ol~mBVURYW|83m;jY^xluzaFh@9bKQ0D68Pe_2}yL=$-3P
z|HqqDP*71pLP55IN(w3~sHLE`g4<IQRaoLgH5623dnX6g6jWEh;rf76!Be{fmIS=B
zPoicfC-LIsL|j1~wn#xE1$7miTav7=pxTY7^2|g%1+g1x(0~E|rWz<5Dx^qE*&L*9
zL^Uf!LvKV$1&tNtDrl~tiGmyjgMUahRdCmhXw{AA4h36pM9T&RO{|C!&CL|-zY%qJ
zq818Tk^>5g+>FlMh+2_RzogyaZrzBumKA2oYu==nY$OWWD43*RvVyh>+9~L(pdUG@
zpo4-g3c4!js9@r!IsI=&ofN$BW6<(uH1lTES;5Mi(OWm8ZVI|9=%s*rtOsvKJru01
z5%whOdIx{qjLci<IeTvfTpsL`$w_c0sK0^%3Pvdytw1&rTMJn;lfx7YVgo5B#iAh!
zhO(X$6SKDky!`G=dfj8Vf)NTvD%dwYS^ri<Pd3gANRLr4R>61$6BK+rA-;WaFiwGT
zU(n`OG~iaWYh*Byt*a5{DY)lWdKyUjiCfVW1ydC)Qm|OTGzHTY+^t})f*A_#R4|)N
zR&Z%WeA}&Prh-|laOJSYTfxy=>1F>p3K+Nb->oQiJDNJ)B|T5Ud<6>>EM)c8<<__z
zb-5kYNkva|NzZxdNN^9ObYgte?dV<wOBCF%-~k0o72Ky_nS$jCW_}qiza6!{JNeY@
zXx++O?#=D|E%nyv@V(p73I(eatXA;D?dZWwzEZ(Iw<BIYq~KwN+exyPPrH&@Lv6|@
zr-ugos`By?1-<hL)4Y807zK<<q~K2lPbgTgV26Uw6g;V5gMzmdY*z4;f~OU{sNf~4
z{M6(#3Z7H2QNcs`<XMG_`BJxI9ZrY4-W5EraLrs^Aopg)>n@Ble_?duWd*PDHcC$M
zaFc>pXh8l=tsjv1JD<Ex;Ze{azr3k%5m@+jUK)nHtxJBHnqS^lu!X{`;9UjWlIW=B
za_RLQ%HibX(){wCg7+1CM4eT*JS86}_~mM9-?7xYQ{o@;CsX1q+@4=P=5G~jXUZ=>
z<d=K}q+9{{l&_l_@aAR(WGBrFHJuDp@VSC7*i%#)HblX01$z~ItKcgIj4}UO;mlX|
zWN2R2osj%SL9u?>vkM6Grh^kr%ZA^v2MfsetoEhooqGbV2Oi*~?C79^Lu6V3`M7}4
z>F$Hw!Jj9C!wP2y!WrvP60E<1GYWpB=}_>qf)jkv=fQCWZ>ph|CExAN=4HJsIjP{3
zf=y=BHA{GTnp&16Ov|$5wJbTS;JkugX;LW3!-IWUaxF`KQ}BCQhUEequ1IA?nk&*z
zk%tv_fm~GZ7j2G;f-3%|2+^h~$fx381^+3yN+VC1Cr=&>F7t9_uq*u&xuU>Q<*!je
zr$=(H)A-ZoQ~rAg986YLrIji-sU51!R^?GuIAqPQqJRoh<*$&XLQ$cr&{PnkhEs;i
zdC_|nle&uEyN7S6^0g|43fBv{dcfRP;qX$$(51;I^XJkD>a;55@)A(tsqj_Y<{R~J
z{;g~h)T}}(3ahB1qN<7_DvGKor=q-yVk(MjQbI*Z74#4;t|FmHM@>qpD6OKbiUpb^
zhQvo{Qbt9uA5(oVh0Gt-<W)^7sJQ39RAm)3J{48$(4>-zpECC|&(fuoF4a_2SJ8-%
zRZ&AlprVe7x+-d_sHLK|inxk;x<tCv-x-Y1<vv{!TJ(l4FSQ8ksi@EDeG@cL@ue;&
zbuo-|c|#Qp_F=i67i6nQs>o4s2VcD>Xsn{GAx%`gaUci`8Ei<*4V$XC%a8*FBjyho
zvdNI<Dq5&`P{T?MEmgE)&#L%OMM_1e;!zdr$PE>dis>q5s1OxxR18uvn9o<yPDM|0
zLq&TP9aMBt(N)DahICZ%^QzoVDoz{nRg3g6sj~`BdGedmadxtsitZ|Us32X^lx$Pz
zQ_(4t_g2wIrEFlJioR^@-l(67{whXh{@ZFz?i^DdHsvi-4x4hx6xWh!mJDI<s~D$Z
zyozBehN~E@VvLFr{2{qIF&L$yxg}ixeC}k>*AkX+iDQ~2V^zdDhrd3YyTXz`4~G*}
zOjI#R#bgzEDqgUJ<D%=9Y_sHqC53F6qGGCwX)5;ZO)=o2|L~yT=Af1>oTlBWVy244
zD(+P=i;|#Xu8Mi&<i?!4RNPG_+cHPR0~3Nywv4uAvn`iyrRGzvC_E|_sW@QEExw{#
zVj(5dktU7|bp+pqa~xUg$PyJxRjgF8O2sRV+^1r>iu+aUbYz)|qmKOLNJ&=`t~{V(
z1z)G8T`ATy4STvm+s@UG)hZrRu|~yO6%$-p?8?I`Xq=yPWveT#?+xf5_>C)%s5s>c
z>Bm$&u40#p&s993V!evjDNZV$RIx$Db1F8fcuK|7DxRUVr1yn{K|Q4*+=JjU!m}z0
z%}FvC=Xr8c#U@r;#fvINLHJ#JnbjkIAaCCpXU-+%Cm~xQud4VS@*0I|cRG;mJcO5T
zs(4GqyDHvOv023jO7lLa!go}>tzwIcZN(znlS-a6@uaIKTUF$v0rcd3-l^ha6`!d1
zkeb3fRebHq6i>eUBv|dqCQs<eL*d-6;!_o$k(pFp71zE?X}$!$khti{(hUKZ0k7`K
zY2nKklt~rGDc)TFQSlWeLB)O*d-!A(dsTd^qPH(ydj)yEe8c|orQYe(ceHHBQs0wf
zz8w8J$&!!w@KwP96$e%P!0zJ%eYxt(Ar*&J(BtliiV87F#)Q$1Q~pSGjL9(-Ke9Xi
z3iD#=JAca1OE0Eaaze#P6~EC!vhS#LD$c4nM^TK)FDlNE=f$E;G5IVeM`A*sit{Rd
zrST~!Qc&_0ltMMbVg;q?Gr<KFf2g>q;x83L3JRw-vkS_fD(H?y$7}*I-Q6SPfbee>
z|4<GK3h9k=axSU3OtYh*sfH^muF_y?D5K$;itB8+23x}o6*p<*HDqbH#h>?1+-5gv
zX;+yw`vanF<kwK@=U_8mnitS>Ska(r&@~tu7Jie`H1w?-x`pImLAg{=ObtPcs9GWE
zTQVe2QcERrG`JdyXeg=y8lpn7ppe8gcp7{SQ`h7UDkSV^Hld(~LK>Ez4R)6c3u`#o
zIefN|Y<w=@T3;~@*4%hWjUNJV*{y_zzvm`DDkRKHX*g0y_}`0#q^yQ=tbm4^8p>;^
zprNvcDjF(kD0VtkNkiGf(&Kul78b5V@kLcN?4OwYaCoAchMy-Tzt2ll*HA-4qOkO;
z74<4C6AMc%4Yf5i)X+#nmsA+nP*+1eExpTAhvf$YZbgx<uYr-3N-8AXAoJhlh2`hV
zVM0S=4NWv;YZ!biOlo+(uzXZlekm+m7|hX-Dk1}m$gRRsqlh%qkgH+1h7lT?YiOaN
zqlQkj{~B6pXse+e?`O%lWNUI#L#SbH5&7PW9xEbm77@|#$GyRzAqmoLH0&-Syll^(
z=g;ks$xjrK(T@jhW+ko^k<M(6h5;G|YUrw=n}$B@N)6rFQ$?kRhMpSkC@Ou6N|%4a
zUK)C{({Hw(nYo;BEJeB>dv;cmVXgf&JYH0OS`;*!8Zbh05L>EYsD@!0hG=NBKiE@L
z&J~q*-1ILh1&Yb3@j<C#^4scQq=r!%=4iNE!)Og-G)$pLXc)^bC?*p%<fSVUj?*w+
z!vqbziU~KBW^T;MD<&(7$)t1PBn^`_yiiO&EGBJ!NKufcX_&5IriNL3_?BRXh7-l)
z&J4YKMXp|4$`u!G`p;(Di_2Xa)|3ky7ni|7RQq@^SHnCFOEfIiFkj=i0*f`=OF7qY
zkA@w^Wf5yzT&}FjW!g|&+UBKQ*SdcnaMNeY_JA8|8y5ukQQk_({aSiRxlF_F#bvn$
z&QFyR@&JXQgsdQ|O9;L0nXl5Ynw_qrxsHc4JgniYhI6cyhP4_#*6@jjM>IUD;YAHE
zX;`P>F%3^?c$z%d@PvjZHEdv$OUSYkvYrw$okRDKIo$vV48jrh{Vl?0G(1be)A0T$
z!R8XOw}dco_&E(5sfMx8xfU`%G%@i4nSU<W^-J)whD{pY(Xds+D;i$a@VbUKSho^l
zl$6}X$=6ut#mV6Xqc=6YMU~W$EGe6*bS0%#>5y?KB-m41GUfc&7(dB?%6B=KnI8X8
z!+Wd=`Mfy!0mZDO%sUupS3_Pd%8P%Lxn~<qQ@g1Ay!dtvpK3TjYe4>M_)NoB8un<|
zsev&9pKJI+!!8Yc_@gtDe(mT>Hld{KCfj!f^e$UbQn)?J@~<^~qv1OZ-)q>b;ajT1
z_TWNEd7-3yTrxe}{l27_rDPxFwv_DGP_>jaD<yMF$;i8M4rw?{DbjF~riSm;IDo`)
z4M#N`<1<Ui<x=u=Dfv;uyQPF?lj8(l`lY4M$>3)VwMq+9tI~2x!)XouyC%+1;3o$C
zO3N=4_|g&$3f7hu`m@nz^}L2(H5AlQNXKt%1#Pm1+ZrxVwKe>w;gW_wHC&_t)bNjn
zzt}aUg$sRZ8QED{ek?77ocfnWzKkTxNIwaaj|7)#{AuSk+$5v+rLK~V^}=g3Yuj_^
zJ9M3W^hnULjJ!QQUTi{qN*SSxED?3`>Bz6c&|&H*pd(9%szcMUw2VAGCH{07QFJWd
z6@F4ibUi)M`*MG<(T$Fjk?n{q9kvc%M@+{*WyH||9iEP2WyRI8zzaz*7KR=^waW_g
zPG#leQ{kAhvb?Mm)=@-9RUOrI6y;BJl-E%~M{yk`bd=FiR!2!4^}h*9=_swEZ<#Q6
zdhkqH$z$|iSx&5?CjA1swVWv{<yiT0Qn{Q|)KN)CWgS)Yw8dsL$Cp+}WQOM!1&hYU
z#}|lNl#}W@YUpUBBcUVEQBy}<ox^_A($VvSAg<%yYGG}@uAIy~6f#<*j*iLY<c+y;
z=Jj<n(D7&M@R4%D$<(}2K|>t}`UOn9%+`_Ak)z`d9gTIoR!(-6lUc{YCOR1F$3&~u
zzH4~!kFcqZW;#xklUwCv=-1(i<v|M_Ep;r?u~<hd9Vs0nbd1yy>S(Q_i;k{3A|0Zm
zla9_h+URJjql1n*Gm`CeG?|thRyTL&yr4Z<IzHKDUi^W3ll)i5%nbxooYE_Cc3*18
znqWkiu$zwVI{NDvprZ#{t)sV&J~|#G-avU7F(uK9Z=aHQv3~r&icw!3{d6!`?6E{t
zyS%h6FI>4DsAG_x9^(zuF<1wE@VMHrMrl4o$51vzNqgndt&aJIvGL(LnBVT67^P#h
zju|@c)G<cKSRE5}<njKQ@wHoX$LScaV_12iFX(}xi3vI$$sf`2W0H<J<z=dlY3v9c
zPn4HCi$+s)JZwduZ3(uNm+9=3n&Gwb(x-oTsJzV7F-ylh9rJa})^V4PyLGg$Aaf|C
z6{LCv;aU)hG7Z9E6=bfCH=fT?TZIdBEY$IA#pIspiF+!@JvxqzPj-7GFpj6zSCD&k
zEYb0Tju)vHI_}f4metd-jH;nyHBGvX`*l1(DYC<rI#%e|T0zcKkOwIbABEpmkXsd`
zL`9*=T}5{N5^Nlvcv#08Hvj%$c15XQQQB3MVXK2773EPK>&P)3Pw99}$KyJlq*NbE
zJ)vVg-@7^3UQq}ZdZ=yqa7B5sq8zIzw=2riI-a4NOia>Q`dJ;%v1cpE^HiKlvXRnW
zNiZ-$PdQ#rs3g?Nmvp?W;~myh$0i-GkPqx-9j~%EmE<)YdnyS*d)}xduj@EfNgTpv
zuB<~`ySH>O%xbfaYn7y6WqF$&Vak?FUcYjBV)(9(_jG)!V~39Sb$p=XLmeMcfGbO-
zg#kCs^D4_W9V@2<AJd+Yv6W>#pQD9@F4;~Azna=!S(tyOV<(mLtKf5;Lzgh;#}wmz
zc2WNOB)CX>WM=S%&Y3t!oT)5ydfB7nYqr`#PYd7Z*h`aQqPU4~b$mx*GceA;_d53J
zC~TmJf&J869e>ks={Tt4kdB|Jk~$9anL3W@IHrT)*gw!Z&5m<1vp^N8Qbn3okso#Z
zq~kbiH7wYh2(vGSHHIWcSCK!CrB0GpI)0@|*KwNP`qjB-DTh_$mrQ<!e3->ZqHN~N
zRs`pCoYzsYU%<3tNWc;P?>hdVd7-(WMOvJ5q*2IxrxFq->!OaoC=XTSlPXewaq!(g
zseg6+M~iJB%fKZamvvlar?CF4Nfo(5GhS8r>euHbuj{x$>smg%t>fF%;Z2&{s&Xqs
zM`u#p+{~>i`3&SYFs!P~sVZx$3JJx4Y5)d21DXNdfN8)oz>opMz-v|Ii>kr^e@<+P
zYiApH{Cvta;27y`S*D+>%Ih<OQIF-cyg%t1DEmQB&_K*UzG_mgnlz~<g$%j?<#wnh
zBdSSJ1H}xqGLSM*+&~Efbqv%sP|`pt162%EHBj0>83W}FR4~xm2^UtAvIfFyVYy7c
zzM8yKP3kO3Ry0t_KxG35tI36GqE;8WzEr3#8&0OG8K`a`Fi_J#4FgT9ORwrOU{ye3
z{+GeD>QamCsxEQ9Vr@`6lRr{jc2^go$<;GZ-$0ImI}H3@T^bl@WFTR1U>t8~;9R*#
z*%9QgA=w6!2EMtPDpo^^-<{LgKoi!yOPWi}>(-FAHKeJ5<_211n%~Sou7RO7glS0)
zd9H@EG;p?tFaUw{r!^#GV-55%(APj@Kn!#<(A_{AgNsY(V4$Ocb_N)wdxV~E{MVJx
z4}^faTpQ_Rpfev%M^OU}0^vZhi-83<vv2+xwhd%vAis4>@EhI3KraKF6mK7s=*b3p
z;bWP9^)|3Ako|%5Gti&1!LFyI1v0?EU<1c`Ck7fAMDeI8{3sv2GpJTmh8XBtQ-&J2
ztELcamiY(+BMmS(akPO^1~xZId$89S9{e<qXUeBu+ZK*7u)3x&mSntv2?jnl@P&bi
z2J#F%YG9p#Nd_hxxYxiE15*r4H89V>d;`-AOsB9Jm~CK&fjfCQHJEAO^_r43GVx_i
zIbBnpn;w*!oxIDy90PL=aLAOeR$46YHb8horg$w0YYFceUrQDkSZLrLN^&jf{z<sK
zmT*&Yk%2R{gm3|i$?y#+5=#x-XW)JV4;WZR)u=7YDRQ;t*&^YU4}wJ{Lk>Jv7<kaY
zLk1o;u#*3+98Rh&s|~E82-Oy*-nE6HWUFh-E45{ffwcx6F|e<;3`s=03Wr4fx=>rx
zxID(nP$t<Z15X%OZ{Rrt8x1^ZV1t2YGP*YS&(u?7SCQ~(1HC(k72=YJOYgY!C=xzv
zq<sQMw1}QJ@PdJt47_aMMI-H5Ix#Lw;!?9nNOyuwd|+H&VK2{*H@lpU_IlO8$8k9n
zmm6_;!@!$loq-Pxyu}_g@DATzM@rU_w+(Ee=1z&{)=Ar$5p`ri9ocH&UB04U@ScJ9
zGX!b+jdLxU<E4)%R0g&i_>`<Z6Kt&`9~=0DwJIELd#cI7I?~{5xPvNIM|K+6W#F?6
zP4mtYrLLU)DOs+r<kXcf4eT~>*}xS8Um4hA;3ose*{uc_KXJ&wVFP;&d~4u<fyeI3
z`HqrVSH35c`5~yAUWnLlU};_1%12EONNlJpd+W-<3`@_|6|OZMp;8$5vP1X-&CZZG
zfqIx9Gw`DUrJnpcE2vgaQuX9#11AjpVc<^#Ck>pUH861A;JPdNTuGf_V`s&G$<PDp
z2}{mqN?7<}&G1(mhY^Y24fGrs{zh|GJ7lUE4=-d&SV+5Z=kviu1AiO%$G~6I!JWa9
zdV<G-e+~RcePr|N2@wTfsh9a^y4io%6SKZtHE_*<VZt<V-M|fgCQK+MtW&9*25!?1
zn<!sjZqXpz&R(lEKYcxw-^3@+1qDp}Ix2BTeIb2)oU59+=X8o8Gu#!`GBhuB6W!_y
z3Co0S!ZG2Rc;SuU$7|u#`a&QMnD9&#GEvyX{q@B+@lkz=nRvRs@Umd$a&8nIs4qoK
z<ZBidHSuB){ZU`IWuMg`Z4678C~4w76YrZSWuml+Q6@&4C}X0miO7VQD90w4sAr<S
zi3%otZc)QTV4@O#+bpcYUp0_3C&S7n8a2u#QPo5>6V*-paiv+Zf%I;`#kYuypQQ#R
zYMQ8HqOOTrCTg3Ao8Wlk{szK)Y9?=1GTQ%h@ZzcPr3TW#L_-rzO*G?^O(aY-Hqpey
z3^U9&G4t`<qzRf|5*+k?(m+1Dn94D6u7TWPqIsE+m$xNx{+}?HmnK3JcaDp<Fwv52
z>=33*OnNByb^|HVP+IZ%4W&y%Veoh_Gk3Tjw&r-|QfgL1X=9?TiC!jpn`mdEJ$uAN
zcM}~<bTrY$L{}4?OcYxhTrC!MHu2=6xm<^NxS<^AmUy|Le6cEc{HN4~I$;kJI~qz)
zvax&OnMFw&rMBOM6DP#`nCNR_kcq*p&!S{M6a7s*YeaOiI@(Z33@|a!1j9E-Gaq7N
zsEH9Kw+S$e{aZ-(9!U*1al4^ZXhamtfX_@el8%jJWFsMv(HIkBO{_5SpowuN#+#U9
z;%*ZYOiWC35_g)&<Eu?fH8IV^WHar~F@=59Ke3>ZJkdyg|2N$APVjCcna*E*5LNjy
zy?^>`BdJn0yfz^|)5I(@{UM%Bh8zznB;+m=XB!DiZZ(p*Cgz#A*TfPN^Gz%;v4~QU
zh!(Od6S5>B_mGDP8J`fkd2C3?dkI-gX-vrX30Z35K8jzq+;4(0faemj%*1jw=c`mK
zTdHRZr~HGm<pDM!TOQ7ql_pkE@=ZKrVzr5fOgw60oylP{UdWcuTSaS4T<srUL+#5J
z;u`&sEsvPE<I!9?f<9*AarPbCZsM<OdBOyjw$^88KPiOTu9}pmOniDZ%uC9o#mVML
z>6w&gO+07fRTHn7*l6N;Dwm0uOx*fBSe%q6lk$Rz+2@08NqKBg__7H!79u|NIU8&;
z@rsFqN%=1+%wIS0hKVgE-ZAl}iMJ?b`%-UHR2oZ^`N?Lg`J^;j)bK}|@LyXgEsbSM
zW7*eO-eo5?7N+|f%LgVtr17z!TKLGsHWNop95eATn`~l_iLXs;XDdv6Vd6^)q>0}e
zOLi04Ne-LH-$dH)PnB#UiDk)MCO$XQfi}IG2y>zz?52H~o#YK?Hl)6yz%-GbzlYzL
z*vp2PI7EFh@tui%Cia_H+eE%MQR1m=x=MCBnR=~>9AMXM4azSG_B9a}5;<_$vgBbC
z>o12#DDWl2<%5GCXf{VD8t+KQZv1HCCyI)RKTRAr@iX<>#Ca1ZOq?`vhPB-uoTB<S
zkwHbnUrd}Pi*lrDj<AGC5nL*7o+D=|<j({oe&v&oMZfWW6a8|eZWwZ?Q11KS0y`*2
z2A)fmIh(r3?ly6SLSo`?THv$Mf8-}Wh)(p6nf9Xj*Tg?u;n|*Z$;4#}TaJuMh1`T4
zrRM&3BDiMaCcB<r0m?v*5Xkoixtb&NSh#J1d43B8EabD&^syYdlp{_u%Cf*%S`rMA
zV6IuvE!475+k#=iv{2SUISZBr+d?r5#Vt4%Tnn(^S@7?Wx_8K-QV|W8Zy{!(u!SNP
z3R>uVhZM3vsMUY(${{`G4k5kp4)KbFMJXZugA*SFFWey|ER?h`cV=7}mMCSRw1qMj
zel8q-a)&Uc_52;-={tm%jHD}Xp@M~~7OGjOXr%-FDp{y(frwtGX9QI&92pX{m>E=P
zD*2iU>6zW=DJs=1)ZqQy!@xpK3yYh|xTZ37P(XslDsG{Ug;o|)7V284XCcSJ9Tw_a
zXkZ~>A=|<a%Yue{co}JA;lNj^C&vXFn#$!)Vba3Zrm}k_J$%sELVQ)gRXgS^X}mA|
z^N`z=&G{_IweWpYX=bH|7H_P|ZEm53g+H2#-b`AO+s!zqj+(6qLJO@ebg<CT;&L12
zA4|2d(AI*mjlYHEnn`vuxv?W`XJN_oWP1x;nx&U~$2Sx1igqHmEp)Ze%>qGb#(o-g
zvG8a!=~gQw=rOTdyIa`bOfEK)*Z7=jVJ{24Ej(@G85?~p^tF&>L$T4%LVpXdTX@65
z01E^8E(=R746-oT!W0WrEex?R)WSFm<1GxcFx<i@^6>6tvBM$Pb4FMgN%6>)y1Byj
zmUg)^+QJzADpy+1kB_x*f36URf%yartJ_BtE#z5vX+q-eEx{xUMCJV@S0-E7m@8l9
zO75@Wja->#VY-C{78Y8VVc|{-cUhQ28EY<w2ZS>%%(5_>eb-zTHkUW{20fe0_~vrA
zm3E-r&|KzGx+pVK0<LuN%gB=XY{KC*QMN>Mj|HCkaW4h6xh$f1SajIP{jIrFK9wre
zLdJ{>?z6DW!s8a6u&|u<xA2g~B`F*_7d&7gf93E&3zxctD<}gkgji22*$Os|eYZHE
zzuyEaNrDskH5S&gu`OgB-!(XR#KOn5!$;YVErge(8J7E)g?n2F69Zn>TX@pKb7X~u
z4b)i+@7Uop7G7u}rF(=QHIJU=b24`l+x%Jf#gX9R%;0(6U}2MmS1i0}p;x7l$V)F-
zIGMSV^vl%TM*|YCk}bQ#{4M3vX3>hD!q=>HbPtI)ExbjUw{X<LW(#jy_{_pi3tLzL
z3m;hckOrZpY_%|<rMyesX(`ds)bf_{o`v_RKF<e)DR{o6d}Lvpg-=*XwzQ>uY=M}2
zjQ=Ig&-d)U0q^{jHC&y$!@}{FLV~A4?6UAV8~aFbz`_?6zO=B{!nYQ7XP*3(g*_Io
zwoLQqYYVq(gx_S!NyJ*oJ->!5uhlC3-|wh&RHF5%eVKf}h4qi6c*#V|e30G8UYi~q
zrnt6}BV0<#pX}61mNbg)ZY9So{Al4H3;$a9iFLDZ-omdmN)}F7IAh@~`AHdQC8sU?
zV&PPV=H=_HgigFGUW<xON$zeXf3=cxv?M7xd@giS^3Jf}Hw(X8_|w8g3vE(zfr6cq
zKP-&6lp30n<tZs!EeiXFe_41oC4W<-Hw9X?sK(k{=Krz67Oq>kVd1icE98TPYvgT8
zj--Tv=kwPqS5iV~pz@(GPW&eMLu+p%zm1!Z=H8~hYz}^{7Om|PN+@GODPV)p;yXfl
zFqBQ9s5Uek-E4HXq1!NQ1U72gFl|^iO4=x8!?xkrC}g9s4Ru1owc*+DZ5#^)HvS2P
z?g0#VjM?bBIVfnONNXv6EF{f|VG$ceZFFXdji*=V7PC>iwJ>alG*zjDjf*qlBU=me
z(l*N2sBEK(jj}e%*(h(Lf(>ps-q%{*Y%QO>9(>R9Yiuwkv62naU$qt<%5b8!RJE~o
zW>AeyON0d?DH%z1n|>gP8a5bHkR8d8NNVxbHk#XLVIyv%j*W&k8rfJBNnIQDY}B{$
zWF++HXkcT(zTnLxDFTCSpBj)(*vPhVhmEE-k~SLK;3i8GI~}Kaf=B=nH~G`sE;)Qo
zhUg$d-?nBpa&3$i;oNpnCU0q@m5mNII@(w#lCsg-Mr0$j@uA3Zk$i1LY_ze_)<!$>
zp^da^Bg}~!UGi|MJ)gffB)~XnYEvg0G^#yT23>57*q7=|tKLTDw2`hhF5S-F&_>>C
zBRy>Nv@y@dd>g%N^k#i*jN_f`EE_{@45R(G(ci{ko10nj0X7a#4QML{W(Y>14ziK;
zaImk9uyBYCg1HgW@PqLQ#t{$adnrF{g;wa-HbNxKk?bAzV=81CZDY*;(dFC9cpDRJ
z%&>8%jfpn$Y)r8+mCS4_Z*2}H*_dqOqyE9<y5W$v!jERP&fzq&qEA5F)aiD5hk_-{
zXWE!$<1QO>Y|L((cIIIu-E6jNMjBwP?$!9+HuklZxi%hdE1TQOzioxi%nNKRw6W60
zDjWB((`_uZai5I_pXT`OWHH4oC%Ts+y(Z{%U$DeRjdns}nT_QXBpWN(P3`1x{cuD(
zxu30WCv)4$gM3;$+0;%xYbOj1qtD4|8xPrdl%2~5wv&f#Fs5Uzjjx{#)=(weOY!!S
z(_S8-PW>BpYcFMt=rKy2jSV&)xA6oS(q7iHste)_e_&#0|GKe>r))geKD}>pWO1;f
zy*$fH8_gW#I@oCAc^g-3T($9njTdcvN7b<Ll8u+iPaE58Y_jo+&F=`d+IZE*Yh<R4
zw``EHuT#vXC*I&a1=5gEAGeqJ@o=+^zh4U8rjVSExQ;=Z#1^)qS3m^*cWoSMFYnv<
zfYNv|dXE;My=*xie#l03kX9Y!NRjZjtwGHW^0AFiY<ywU0~6bAd}?E-ja@c&*r+%^
zet!p<vnuy98v{GY)DH5@;ne3gHg=He2U5E_$UO&Aq<7o+itn}Yjg22Wr1xYCbd)_d
zn3w1%^*YL48{e|KvqGXj_39{FCj}Eb%03(WZJe@k+NQ@B4%#?Qsgv*!McT#>Hjc7e
zJIXU1W#XLV5lZ8nWO7hQkBDP@3(d}_;d>ore@FQ#L(`#=B|qCZVdKw^Qn-_ByVC3=
z?La5t-o!69&d`WaFKnD;r`!0=#_u-H+xXSS`cCr5!eoz5lGjO=bV~1HZ0#f$Y+UOk
zf3RJh<YXuLljbxY5|6iZXKANKf7|%i#(%U4o#h`|s$=2Vfx*Dea*0N%vs`9=A@$wN
zI1f|cmc%t1*J(2yRB>>F2A?L{p<^3v*|^Q_aNsz|=ODiW)q&=qfP=?7%R8M#aq#dH
zL6(ErLlY!8bKzW7ckpv(F&$VAj12u@zKA7PI?L&&f`VOy+h^Qma2>=P6m$Rw9-nYI
z4fp3esMSRn+5PR5I48NCy2zL=Qpmx=E^_n5ps0gl4oW*H<Dj^M5)PW32^ctkZ{@J0
zg9hW0r5tR?+)0{mEbE}0gNhEO*~#zL=6=*g$~!pRMJhPB)`cEQA)S9JIoP>1DA84z
zS9MU$L47{TL3IZ;9MpCYcVOPmuGdv~xI^IJXs56yE9szZR~gn-=601j4(dAiqpOS_
zR%cyT;RXl&>*_gptE=qmDh(Ypa*%Y;*a43NC~-8Ea6nkmxBDlu$)9dQThWB|>?S!5
z?r^|O1X_$ekEOxtnVRyq-Q=kcgXRueIGEw!P6sU=v~tkdK^F%p2cg5A4nz(J+e-wD
zzTM=XUI}r~#z80EJTu<bK|2RLUV$t5?HzPrljp}fl9NZ$XD;Oa7%*oEap&mJ#kp8l
z2i+VDbTG(4cLzNj^mfq4K~L7<e84q)uKo6M(z~SulO!@^Uk8=HP4#oo-@zldvZwtP
ze)?-Tz`^!z!ZG=jZt`R|8SG$)gRu_AIT-3-n1j&{#yD8BE*S1$q=Wr;$46u?&vlb2
z|E5Qtqa1Xcl;G@ui&0tK(@RpHx!L1stX>HwJDB2Nf`f?;=oy%o$tPv<65Z3jg1k9*
zV=&c0(R+ev4i1b6w0^;Kp5}Q^z)g^b-DReOSq>g_u#&Rp;4TM?94vM)$HCo{HwX7P
znCoDklm2APZ_!}BlLir@TRX=~3o`T%!vmJkk&K`^wWr4GHxBQ0u*AXr4jyo@)WLlY
zmaz$H?)=jMX@Y=}AY9LK%KW1N4`g9wzW+3bzG^GjedE%b@2ecFCJ!AvnkjjR`o$kQ
zATB7wtJymrOi41Wbx?jroW%U8iFFPhqdt<`ne!0S$5t*32>0;>U)^2SXYwc6w48{S
zPdj*qZ!ZF`2%dHDoP!^H9QCo$!Sj4C>jk{v;6+xz#X1)+Ie3|!>!ON_O%B~zaoWKz
z4qkQenu9ML>~`?FgEt(!=iq(viem3zi-UI@Y<BRrlb-2#Wx_GtWo~y_(_J=q7w$l9
zrR3*?$7jWfYxizisgnn~%LfiV<fF=kI~;uEU>nthjoKOg)m_XUa`HmzV+YJD^^olj
zKBdu!hdi;Xu^V!g{xga+rR!*Fmy;gReV(CndkE<-sMLQ)eC$^a_Bc4gCOi1r!8a5+
z3WkHd6mQ<?;NxQ9<R0>^gI{MRzjMF?M<y&!?sGuYyPBo5m`^Vj9%PGXLmb@OL-<kN
z^?0i1lj-za4>{`Kn1fT4>Q}OUbkb9XpPcj{^8@~?ha9IRbU^gi6Pf%ZyEQLZJ1GrA
z!9sqcwVrau!C6`x7nX~24$eEc<lr*v<KQ<37ajb?u5q(hwupYGbs8RApxGhQrU!)k
z_>&6WQ|M3Cpr_EIuk486ZwLR-Ce#kQ_LP|;gMVpTsB}H${+_}J%_|PBI=D^4&SMxI
zTz9~OV7OcN`pDphgPSxRF9omkl>XnRZc%1Nq#ak7Gafd-3&l+@6r6o2tALB)3*uQW
zcJ&kzste79?qYexq>;%<To{*N&IoARh2x^Iiy|&u7jWUZ@Ljx<7rnnaw?pPI!7k^5
zn2Ulgj`tKw&cj62b201N)a!GS@6JpVby3VkX%}VO^enizn?{!^<)Va(lB`uPDcwtY
zd>C+>V=9#;Us%>fITsaO4D2Q4T~u)K*QJn$o$>qr%C?|Uuk`*-C1TLdkIy6hOH|cG
zHMYpb2p82|)Ns+kMMoEbi<&O(aM9F7Ef=+2BwS>>i1W6-iFz*TvuW4DI+?t#i*d8!
zT(4;0VofihS9v2B4Kp+^-^i3yY#1e7@HD8WXT%%3*xO4^_mU=LU2h>AQ;wSkW#X8v
znTuQ(tz4v7^F_(#d`Mov2exqWUatgGOID+akO*0a1#xk4=);g$9If3nB1hzc=a!Oa
z<D#t#!eF*@(cVS3PeaoG%WF7cCl{Sv^mj49MHd%cUG#F%+f9e@c5~64KiQvptyEaA
zw-}|v9xi&iAknS2@IZk+E_lEtk!%O##Tkv;*9G%_?6Tgn>dwSK7lT|3V~^*>^FI?1
zT5vF5F)=yBO+(z!b`52RPKht=l^EWG@pSQ#E=IYS>tddZ(JscgnBropi?L*>i##^L
z#j4)IQ^~GPh>v&a8xQ(IGfm78oXhZ>Vp<hKBTgpA^5UnS&zVNpco%oNm`MvZGtQGA
z$-@~g9=tQiejv$%eP_9t?cy%}x3~OtHt1F;{H(XkaX}#=aW@+~G@ys-d>0ES(iAxt
z3n~9D?qvm*B)@n!Sme_4He5`BS)SyP4WxhWElX%W6X8-9_ff*TC;n&fmr;<G2d7pB
z54c#tI=EQrrXc|zxSnD@zFbJ$;8iYGyLgDOxV_V#*M}+XePpeRMty|D8ZxkWm{THr
zBtvxXBNO|`W9(?&29yP!aIv21<Kkx*PrBIP;zJi75#iXy(=J|h@tTWgTs-UIc^5CZ
zc#eHEKFKprd8q4sePknV>mzj!rNOjcbkn|Pukb72;$;_~^$}KnlZzkw$n8GDyhL9)
z+BNaIi#J@n?P3et;^L7OiDA{F%@om%!CRU9x);{%D?ESU9dgwLUHU(8@h<;G+2||t
z`-=3H_gxTmhbOEN!-Q}FPxY1e`pPyJAG`R53gY4us=SL&UF@I){+{}LNkBXV?#g{e
z{dMuBi`~4fuk3R1IW>#6WnXZquXz0=*-r>b!4sf5_mi(&Ea@kEC}#cS^#0&$Hou>&
zI~{KQCH$5ZV;v}&F1~lM&&3fc*Q(t8R3)mFi^DDsy4coFh#+*SpB(Kcq#Lfx_4=pt
zp@V}em%|@iZahhw{xY<`JWx0M(Zx^f%5A}2{e{>s5A~N5E>5P8f5$bKu^Tw;;vxmr
zCBz5LxcJq@Z)A1<v_s%o7yC!MTPlU;T%31N_ISv|0ru}ME>Lp*O&$6;_`^;643wsS
zQGcOE{ON)~`U9U2{&w+?i+^4GN82?p=y`v@?*bhy7^KDt<0V#dVVrmxm)$g~#uY02
z<oK^$64%p5b%B2#a5Ig~4~`UA&}dBJHVu2)XA=YkB-k54To|CQ04nhQjKszM!gO$4
zoQVYg#hgAt{s7^6;m6lPf{k<gh?n#_vyqk%CL*P`eLjbW2y?lBu_rzd1BwGBfPzSG
znH5ftQ!t`LRw01rx)QpI@uVF}=PL@-7$5}RECw*|mY3x4tR(Qyx`2)irC6ouNv6^O
zqrga%1IhzEfnGobpdxV%ffhg|pfX#>+kh%SRiGA78>j~G46ny)hXGKXHxG~+z)-$%
zfG}S-KxzU5`vxS2j0oaDU7#MYWq{NHz8fIt*i4`SkX<rlq;o@nNOVlxWa+jeB*7ze
zvw<Ao4x~As<i;A(z6VW!trL@6e_+mYv8e@3k;c<#hP2;iZYC!|kIj}qE1(0=5lDd%
zJrJM`(qTlcSw1y!Yk;JdCL^R*07!85&A5iP<n2I743u_2d!WZa88=WEjou0940Hjy
z0)qx5Rtyy47!a?F4k}zL=*E7@%Kh=KWOsmh4}b`bJdLF{&<B{!8UlTRe!wVTG|(Ry
zKz0Gc$R(r)r8IqmfLCY7x!FA!7(#lW9C$4_@=@5iS2&zq40O*8xw<$K*fmgUHxI85
zloJDm^cY|)Fddiyi~|^OIv$w7z>(%5!KNkxdB9X)<*sNFFd3Kv%>OPtR3;r||Nn_n
zPo<^-4>Sy!iVl*0zYd9P$<NK5z)U_r<5@Q=LzL?q%mMDETmg%LxnSHA<^v1ZUuG^5
zZwB>DIOkII=Awr)_f;3N_Xo*60E0W)4U&6-CBTEM53m%tkLAGq!0<t`j579AaJqCF
zZ-34phLuGR04o57u|GUWULGVQ7|gzk9Ox201Uw9UGDudF=YwSavET~daz3>NSPPsf
z9_~Dt@&^l1R@PB+fOkA>_3${2KgHWaB@gR?CxMf|DPRNe6gvX=6nGkV26zkD3_J@w
zN0|X$=62lD<VLc0e()lz^mX!i&H^$7>AHiZ-C!9rST<3GJJop|cmsHaod_%&EKd)X
z*MRp1%f7+#=U_Q9A<5I<tReCywP}b%L*#9$25+ENQYv^1B|zZ)trW$@IfIADy8w4L
zW(|>56~hmJ4{0vgaMp8(d_*B%n6nLdcZmG{M~d{E`-1O=r2QxLKH+aeWCyJT7=wm=
zz)tcF*aLhGd=7j8lx!RArlA<07~+Lr0z6%aiO=Cq^jCo0J)FBRnSZE!L!D*U&j|Jc
zrG`qwq4I5pXg^eVz9*-6`+)<%5#R@4TaUy+fVlUED8?fK?keu<6CBQzj2tRQsp&|^
zl^<uXAsyTM<WSjjDENuuG*p;qzUWT;GjIZF7=$14;>=G2ztEO?P(7Rh&H|T#E5JG6
zJn$FrH}EU)8}K`Dfy%xoSUxHK{!k$}*dM^3G(N+m_b@p$R6d+r=dYo1k)m5Ow1x>!
zfBpyfm$vSFu%>%R=%I&ug#WRIG^bPIOuXcx&{g0Ta2vP=T<5>GM>mj$+q#MLEOq)Y
zA>C<jn2!QBC4I1a0S`n_&!5RlY|2{pMUcgse-@C?Jm?-`9twIeJeVHtdMV5GV0qvo
zgYCib(mt6F3={6K)9svyo%gj5iN(iH4!6!d559+u!{q(%LvEuN@=(}AaStUt6!B2h
z!vlHACa(tctE8qB^9TeH(vNXXhp?oFQXa~BDCeQH2YQoU{VR23n3Unu@{%776Xq9(
zNqG;8{HXD8sld7o7p98CrLu=A9`5uo(?eAc)jV|e(8WV_4>dd_Jv8<Zc&O>2zJ~@L
zYI*5cv$%(&JrcEf=WuEBSnk4EiLt|_j)%G)>Up?lxDd|k$>H+eaB1kFk(UO<&i2xK
z?gxj<h2fI$z<@aJo!KL#$_R!-BF953w#cJjC7OC@;i096X5^cP<{sV}A>jzYj&Rfn
zSusNRw690V-u>aZ5%O`5u)s(O$yg5^JaqIBc@U5L#X&m{ZP*u^(;la7J>0z|s5~Yp
zGg1;Gr9EptQkce$ltm+j=O1<Aoe$;?=^irg>Y<y5;T}eK=<cD1hk+gjdFbhJrX2QS
z?xo>;xyI6m4e`+51H(f5dEf~VPmB~<mrEBu(gQN(e$S8tV+M^5_Au1LFb@|mghMj<
zq_Od1-9kQdXSa}NdyQn@dC2oH$-`(5V?2!YFfQ}b>CK~^BZcSNa<cs8u*7%|6Ugl&
zsfp~qb`jr5`s$?QWDiq3O!F|^!|{<amC`s$25QYOWomV3W6lf@;V6044@uV?C9^!t
z_VAF0hbgNb=6G1*VJUg#VJ@Y`!(tEfJUmGRT6Qa|H%jJvj95t%^F|5t$3_W({$3v?
zUyPEUN6Eb&xX5$Qh9=b~#xL<-9+r7n$*%XX+{68>Ubh6DCm*0LbPZQ{>FH15(dltD
zi3c;6)UrmSW#p_x<!<3>cEo6z`9`qD!&(Znhvz*!;^9$Rc-G1TL(A7uKBMpnHhHu>
zMkS@1jFwHKh53%rX_x|@uX;HOH+Xo;!_yv~p^&J#JcjjI52r^<$uaU=hPaiX38MId
zhZjA(?%@p&d-}&;^6;{UO&OXeg}vh8RWfaiyhbT)9X1;yL&nH|y@ChF$liQWqF3-H
z#nr=R)^?2C_$7Rsay2U0!hX!3OM-<v$D}<d-u3VvWz~oHc;CYZ9&UQLMS=0~k%z+`
zj(FJS;bRZGJ$&Wi6A#-x?DFurhfmp%O5qL<pLzIwjOb&92VU>=&~B`ZADedMt~yq}
z@X|2XUwT+QR^ECfcb?Y#iTYua+Tk9Lk;VAd!*?Ef)ejGJ4ZmUY7vvBHeJ?+wV}-=`
z9`>ax5FYffpQ>~sB0kK448c1|pDG)TTM``Nf5!@mA7~9c{7I4aaLmJx9)4rRJp4o<
z^l*yLr-f+}{><`ji4z_!j1^vzKFQ9S9M{LCU95kh74>kIb}Vywj$ednai%Wg<oy59
zzh;Q+al+%dFL)q`-_ercAAI;YSv5|01kzu$P9Cm!xa#2_5C3|&?BRCVC>^BZ;S%dP
zPF@=)JI8SmKHuF|IRBS`0}sO1oq8p@#@~*U>$JDy<pw+V`xH~#s?lu^`FvFJQQ1d+
z9|e4PK71cpJ`^9C58a3AgLsTQKce0E^lYpCcrkpKJ{&(i#2qnSEI)1WI3%`x-1kL9
zcva338ea)rANPzG_#nMuyu^GI^ije`NgsuLOiqTyGEXS%qlk~9ym?51<1Xf%9uK(l
zQrrhOi3l_|wMbOTM`<4w{Pf23d*h{yk8*xGz_6^3;**or?n^Q+pDEdKGR5*A$4f;Y
zSI0}i2~x#JRo1~r6Cc%lRQJ)qM?)VqeDwPzsN<uqkHAMwA9W^3Eg!Xg#51%^Niw*P
zc{)vyK@+5&k7p)GeKvD~ysoAXSov^*H1g9ypo~CF@cC~BCniX?k8jlGNgpjICvHp-
z0%GL&xWh+tA1!>234*3RxFB3>LGr=QiDo{S=lU3TIv~-~M=KvGAE6JPh+V3ARDPn2
zy)*g8)PQ3}qC~c4TP8~XiPFYLTmF`<_R)@<@sa0al8+8PI<iODIv<^UboSAUeD=}B
zM^`eTZur8OL^mG`SLXKc(KADI_pxB2uw-N1@X?8~WuokvC_HbXQ^z`e*yNreKgSHB
z?C)cMkI_EH_!#J8kdI+LhWp?#aD#p9{3K^+h8~j1xmv;!E|-lUe=<P0BQpe{aYy}M
z$!`-S%M8c*81G{OMJ`XqWpaXz)P69Rpw>^D;Y1&0@}zm5OeWKO%x6`75bA%bk2`(L
z^fAp(2fR$r6wb)xM5yKsvsewXaei{1kGp)#;mrdBMit#nj%m3}b2G%L35ni$!pli{
z@=%^Eq#XKK=3}{!O)PI0F7mOM9hxVn^W<J1OMEQ#aXnA&^HF$`)O<W5%|x1k^8_i<
zpNQ`F!Q&1e@UbF8&;x;&t9-2X@g7a0kB59b?BgXLFZ)>IW37)TeQfaYh>u5oJnrM9
z67uxhbv}M*7Cq+U-O8=GFGIR@k?0BDFfhTip1;it_+@;`$J0KZV^_|NKSSA`B+vRF
zMmJX=NmF=wPmXW&@w|^0sJ7GNOfQnp#S{Od)8J`7Uh(mkkIg<_rLNTqU-xl$v+y;F
z)1>su^Vmu92AR*3Hw#B^l5dlQ1Q+Yx_VJF7t!z}QaEqVDk2*Z7^^22a&m?)gPWUdX
zS|=np{|7!k^zk*>=;I?F+kAXRf${ONk57Cscs6IU{60yx``E#+#?{oPK6v?Rp|E@7
z^f3xWC(AA$pZoaA#~vSF_!u%-zVxwvRN~t!DINtrbF%Cv11AfK8Q-NC?_c)M)Yi$e
z*T=U$_WL-%S5FqgvVG^{dmsNzmVFf6FN20tq~sK#u|4RggBcIAy;J0n53Z;XSK+>0
z!4XRP6k#If%rPH7`uMjX{ws)|d>rRx3_rz)8i5m3u^9TqaMH&qA7x`G7sF{EzxcT6
z<Cc#zKF<2M=;JRR=X{*^@dw}H<5$|ByMhZ8jN54p>fih{2KDchz!`~`DnxINOmsUE
z9`6vg^+QGzuN#^8n-b;YvX3jYr3>Q!QtMv{h<o!NmHqL6=~9MRJcaNSpiyGF;o}+w
zY>HgZ<U6Lw@hNg=UT|rO+-9p|@MDO@kUxe3G1xIUF=WNSMZ(V}C5#x97}OZFSbElT
zynm?2Ft1B^cv@mt?*ykgJet#tfw>h!sZVoCO%*qm#xtQCZT6%%*L{*xg(zWOEWN8m
zqF@Y#Vkj0v@fZrn(pwBX6oA_tMPli*0E%Yv+mjNcUl^Sz!Dq&BeP)8Ql9DkTni`)y
zJ6`o>cIg<(#6W`KV_m08`50k3kcuIUp<)b`_|g~}$51(jDlycLp#g7>p;`>JVyGQM
z^%!cz(lEs}W0*Bnf*4+&Dm$hMA@o;Il}>KRf8B7B@fhmHaBixQt`h?>!Kg>|G9@hJ
zHfX5>LA+?#Fos4kBx1;pAz!g@os%Svw>3>FP7@++Hi;o8hFtQKZzMfU7)H@Fh91+>
zixtnej+*f;1470Fwur$!nQ9dSu|ZnKFm{?OnwAdtrb7k6NL$Ac#n2@NnH859+VHj*
zI>pd7hITP@h^5bEcy^i)=Q%qkY#+n!X>x9w@T@L^Ht_H-@~v|Wzdaa?Jr?AjE?r~j
z#$G;~>K?<2>GI!ysU9)(B#Wj?uNVl?GjX~!n=U=3OWzp!#qem1!0hNB!+;p(QUGEY
z7{j0#@?w}2!{8W(#4sv`(J}CtiA~dGXbi(**fm{-Q#N8a-#g6TJ+W^=&d3;;c=`Wm
z`VOe6iSKQsiS5zd^s-q&P~5;GmSq*?wY=+I1yMkx2`DHkz4zXG@4ffli}c<*(gg)Y
zQBknh?@9jO@0>aJ+)R?m%$<90l9^ksw2?90lb=M;D1ycuYy^L{5wk7-9Hj|I*H)Mo
zVd1sJ1I<%SBY~E?*dg5_f|e1q=ag|0$K<r)vm$8AfmD#zd|X>eRmgT}D_n`1)>hg@
z0(XYhZKY!b``b#V2;W(0j_Av_QmIC!a|B(;>g}XRJ0a{IL5~QAkQ5R0jG$Kp{YlRV
zdPhK?ratUmyY%zzq)I#K%igw=ei006Cv)4$p>{HmWcepMnDbIbyjL=VA|RyUQ{ns4
zg==JnMKC;q5fO|GFJL6YpWBJnUP`x@Q5;t!h{sjFy^Q80wx{b{W^4q9$0o)_P_Mmo
zVSRg<7{R0nHb$_C92mhA&Q1hNBbXY&v<T)zFgJqfkswIvjctipWUx!QGa{H7!MgTx
zti60auPptWW=F94NMJ5LFM|0IFgs-a4w9&tSwPN@;8>@!!*6AHxF~|f5hmgh*0At3
zx-5d_k>K68Hi8uqtYkZpz~J2JAWW!1@2yo4>@1Rp$kK^9YuK@gIcKY82G35ci(q{u
zNC&{OfwK8dipZxCY>r@W1p6Y`62Vs9OM$H#r2n9$$2QV=W0p3n+auUP9&1jiPnGGw
zfH|Pc?d}MuZT5t)aHk~k{bX`>K7!+%zV3;GRK?8_N64#}at@J<B-*BIr4G`lgY@bk
zM<ckkIWfJ1oQU9L1ZN{S7r`k~se_!MVu|2%1Zy`X-fWa0ESWclHH61H$oU8^PzQFD
zhdau}2(A~*wCqy$yADD~{BtUQa()yaM{$+PpIR=8!clxl<xiHT?&2*Gd=<fu5&RUv
z*VG=Qa0K5|3L>D-`}zknHzW9#vNI{jflJ2Vr%Tz6!euMw?)f2tjw2Jds4dH6wp`04
zydA-v2!4y;_XvKDAlV@CYXnSk(SLIK7t(V~qDDu_S2EM0qulvA!_+X0aP<erTO>&6
z`F8~WP{~AtRrr4+_>WpWio2s2*fEI7mM4n4qCvo!yiw$fB7YQj7UbjM!j6ISMS&=o
z<9<&^x!O?*MR89wSpMY)@V_19-Y6<|lKY}CI!UQca(@&bbrKfd^<WeaMWORl6w!Ax
z5yB{xDC|WECg|+lNv3uZ?kcKLXwhJMab0+5Mqx$KuCv5=WfVs{iA$<>7V@nV#f?sq
zx3iS(EY&&-T_?OK;?cl|LU}bqjanqiqzTAG@oE%BqbL@|lTkbs#iLO?7Db6DN=ETn
zft=z|ENq_kqj)@uNu3$-DJK!uxBDh@q)UQvUw@ZOGKzEK5~ZUk6~&s)@<a$3y5v}A
zS-T=}v$H%M#WPVn7e(19xL{JCixf3esVK@sk&fb7cC3q3=^`~(CZ6jeX8FwXQM?ev
zOHsTW#mE8aav^*%ggMb*<&9sPow^9u9!GZ(zFuF6f^jcdazkWE7s(QdqDmBRNAVix
z?!I(IPFWPMM^QeC3Q-KtpV`$#=<rMAjqtEs{>)os$cZ_XIFNqni+Y9`YzZrKIOB7O
zRE^@DC?idwUKG`$s2)YFDBg`?Tj4DIscDH(BZ`_)5TUUy;pbhXb~MO<P&bM?QT)+G
zoUZazS9ve2WPOFMQa>6jhVT!xK@=ZEK|iDVUFE|l2zz!FhIE_IRX&NLVHBI9_%w<}
zQ8Z?6ql{;TCQ&qvqGJ@DqG%RHb2b%4t0=NHQ!U6^1#%dL;J+_(uT4s{j-pMJzi*j_
zm4Yp&woz>ED(%TR;Z$-XjGufR$S}`kS?I#wIm%GI=o3ZXD7r?27kaNKZgrJzQFM=D
z!rZbwLfDgEcU^^tEEG>OmajK2c<Cv={rg4HKN>7Na<^^(1t*HZQ4AsXwnz?&g82ct
zZ_ZNhT<*{)eU8$@C`4apSoj_x<o4poC`OU@qF5Bg=qScSF)fPeQH+gZ9G@P=#3%}O
z3j(q|)=kDoQLdX1;g-jwC>R@gN;F6(H#vmNAkUhqVLgrIW<)WQ+*LI*FN#@FaA%gW
z8RtYXJH$z%|Erlx(H@f4dZ*`;8fUT#LP$d|;)|nLLNSkG1y#X?T;}pyN`B}jt-8rF
z^5?<Cz;3cKid9i;pj7rQyP7P-nd(!vcz0PF#kweNc9ZpNq?=T0oIKS{hIKAmpt}&+
z$m#1Yi|-f0&EyA4Rut!>*h)5w;&2p4s86EU5yjpp_C>LibS|CQO`3F<_qxk2PFdq*
zyYABI&)hvx>|&tB>WTgAB;DkjB@ae%fW7K2EWNH~4n@Jr!~KE~Lr1AqqBuqIBs)#a
zIZkezTbAEfRH`SUILXeBOq}a3g!F1ZLvem0huN_|BWEtjvYZVO>c$IET#VwID87y2
z64`?S6~(nEK4-J7lQhHog0n!5s+L+$Yx5BKrMtunW*_V!*Q5A~rA3ma%gj2&J&vzA
zz+W>rLP+G?ubG=sd>6%S@&mK+M!~2%Kaex2wR*_QJ>*9!u^!1fJ*0CFA@UOixn;1K
z$lxb;I9aa>lYsvk#cx!DD(+M9JEf8YR4_onpPc<DUR3asg1@8qhw4#5Q3d}-@n00G
z0!=|41$Qa9U%>+k@+#n_Y#{|qPRbv*{7SIqSx`X%1w3SV|FaDDJMLES{-Okti+APR
zqu^cz_bC|FBRE_hLh1o1h$w*xAEQ(~sNf+b_^Tz}zgG}^FRDOM5X9x{A(i{4bp?h3
zS3yh(vT`tZzNx@cU@Pd~JN-=$$=g#LKBax?nfueM*)TTCq@13DxPp&rq#jmKSPAx<
zxGPF)t0D@PpU<U#O_82bOu?fHN-20k!D9-FD=4WTso-%12?ey#qVb;3A#_dBxaj$w
zL43Iq%Kr~EN2S4NFbry1tYNY=+gFfg_Y^#(;NZ1#hy2VlA$^`!0t>*ZJp*n`DJa7}
zS4lCX6(LiLKBwRX1?5OUKD}n@c?Cbt%g1`+O?wJ|1acJmO=SA_6vCGkyrSS^1)nI$
zRgh6oTR|NKuPThEhsp}7C=gBuEk6~MSMVC?)-uI7MT8X;yrH0?f;ZWpW(kJ5W8r@2
zTMFoITuH&qo<c)q;v0Gj@wXLJWy{TyH58oeDeow#rhxCATRnwuKqA${!$&(OYbvOv
z;9b(cm$3M~WVMzhtgGPpJn8xhK2Y$U5-7m;71Sda^$hH<W>?HGYMfQE)XTl(Lo!S+
zX~0qRNPZMT_dtem7#b>Qq@b;Wc4QR=O%ya!&|E>!c4?<kvZ)fdQB$LGI4u+ggUxB9
zVArt(k(LTtg*C)mD`?s}O@x+~ba-j6po4-g3c4!zx^$+ag4I3B{?j-~&x=k9I`gn`
zvJ;2UIN6QUr=SnX)r+wTQK)vRmjb#!_Y84{y)AYn(>ttT<%Qnqz6$y&Slml?_L6hG
zg!|e96%10aPr-f#gB1)>uu#Dw1w$1KBf%BSQZQV>2nAymj8ia@VnRlGHpBFtqZNEw
zCuQ`OQoZHxUNVNAX_b1dNqW432@0ktn5tkRC#bhfR=|Mg!-ga#kr{dm5gsyo!Zb2-
z)zowablqiU7UDBPoc49BnXO=sg1HLjg;VoQne46GxgFv`9!9iD&F8FroBLMb%mNa>
zxA323v4SNE)+t!e>lG|huu{P)4vH_nCh6sz>pQu$2U|hP+u0?3(=-oTtzfMJW~QFl
zTh>r%6qgmfgTR9ad&>p|8x`zOuv5V%j#NPobHONdmCbG@L-v-dVd>l=u~oq~1=~rP
z&N;s}et?d#jE_Y8jib4{$bsbWuM_+q+)YWJSk~+#ANES`Rf3J(r~1eNN+LTz-J;--
zg2M{V2EvQi`p6LlM-?0+Lv~9t{?%~>Cls7f@EN(CJl02;ZT6Icfqi6cGDG~df?G2a
zL}u<UlmCg#%9#nm^9n8~xUArFCCE;DQNbm4wU5m2!(bE{MlT^`tm#Sbq|~j6D+;dk
z5k_|UQo%I^zbN=s!F2^+DY!{aR)SsEmj)%iR&ay7(Jc85^>82gR$;WFEDyE5Qo65v
zuiyu&2n9bWsMJ>)_mx}hWM7%pSGM$(+Y0Wm<-Wo&5kFJaR8KGkXXDA)i+zR2Zwh`_
zP*BC)D*mAIr(#!;SH)in=$HBr9~UBjQyr~Hu;#C?GXGKktDtuSapuo`@w<%DPiSAA
zPepzeZ}yXPKcS)NhyA30ihlis$gd0X6;gu)i`?YxT`6^s3a*e4xnIQtDki9yr~)b;
zR8c|28!8@B5m8Z6MN&mng`&b%;iynmXex9ShKh0xgM?7|&D4~BVyZ!A5NcGyUH!yT
zakHPGzql%5DvGIiRAqQi#M%C-+(*<P5Y5VlsfSe*R#8O7@Ix6ECJHCy2U79=QdAAz
zn3RaeR1{Y+zQ6c<Vt;vDMW_CfP|?85*6%MgL!vu59c)XeIMF$=p}&+;@q~&T6)&nN
zt>Q@)Wk@R(PpM$mhE$d0(<+Yk7v?T`Mh)JNDHY#75+qC^d{)JCtW@#5iW~if;biY0
zAjJpB!D^XrpUAvCKwePs;Q%Sers`xGY|g%<;$;=0;x!Im4T877s$%Z|={i7iRnTNA
z|IWm?0kUj>>@Abds&HS<7A%*opC|LWiear1?{-gL86f3V{5e2k1EnJ8PDL9|lZv-g
zR8mn}MI9BDRa8+?Q$;OKP@c@&D&A31O~nfhQdQO9E%w4dsg%f26INGYEl9A`P|<g3
zqSkMjkH%)-Wl!oQxcJ<rY-aE2L|ql{srX36$12`eQI8`cF;z^tk*TlZ?SaBo%@5RI
zZS!W^6cZgb9Vq<<%H+o~&hNROsA#C7sfuPQ{92htDw?Rle+uQXu^LDvgUOHoEO*&J
zX|Ccxs}#METB&Fe;w?jXxmt?#t<}ImiRI8hX{VySie4&us|-Sgjw*Vn=*d}DLGR8k
zD!PUjcUBnyJm<C%tSxs_(LIvk7ZmaCr2ikeOq4)9xh`*pIpA(KO84RL$y6$Rkg=sp
zvLBgzkPKGQU&R0wUo1%sRB0m=AlC;9Axp3Up<*cKg`{Ym`uX!j@j-G=Hv99JnUS1X
za-a$(6w3^f(JIEO=rTx%k5R#BA+-m|gh4V+#fm|~Jr|~5IW$NnshCVYS8<6As+g)`
zJ*lc<nu_TvBj;d&iWw?q5^s^5N9h}%Son2j7JL3qYPO0wDnrrYyFpU@Qo<c9`34K|
z>F=dzOtMhLA{9$jEK{+VtWqfzdm*!g61OfvtG54(Ex^=%%T=sYv5HU0pR<BoJv~TH
zx0)O~Sk{uxgJlf|H8F_4QGKwi3u{=(So#}PY*KMZ#bFhns@SYzhl-t~UjCddocc#I
z+eivB-eB4IXlCtT+0HN6c2elE4DUTYSazw{r((Z~-75C*u17O_IsBIL{a_)!U`fL3
zoG3U%4yb{d%E1s89}<KwK0?7%aZ<%86~|PpZJR7{SI!9)$0^8t%Dy;6c5cnSH$-|4
zk<%*9s5q+z%i0r%$f_a2D?g*KAVcJwiu07vupAg7H^Z~_pUPfV@wtkhRs5ndC;_gj
z_=d7iHXskHxXzxaxJG8XKYgftrcRF_7aq4M?;0vgkolVQ=@=|!-=LyikdMes&W?&(
z)K1k?Pqa&}E1sbp$oFcnB>saM81eF&A65LM2GRI$hw{#NWyJ4LK{ZX=L*-W$zp2Ql
zA-{&-RnTwc52^xci6Loz*8WAsHI$Ku@gH@y3i9VaWc5V>qgEU$HQOiiXt-P?bC<>#
zK^gt`OkNFj=ag+VRE7?f0vZZxxL?BqS`aqsZVmTnxHrTLg^;V(KQ&F?r=elZ43~~8
zF)eb_^eOr}RV+ncm7;Bu4{3;K_{2g(3sDV<hGz{tXF%1UX(*-R2_3oyL&JOx3pAJ-
zEMCtBHP{*)4LKTK)Zl7}X(*{7sln3_*YK!@$22^wp)fCQmoCN@hDs3)k7zWpPIT&@
zsN1=0QFgv+l4ZxxU@z>#P${nA$Dxwo#VwNji+NmwI!uWC)F|m|AS@9={&JSm@Pvjk
z8qyj{Ye7nyr!_pI;Ykh0M<!UF(!k8%-_}p?M<%7=#Ju3|(jO*sM&&%K;W;e`vQ1~$
zvKpS(kQpZL4hteczM!F;76gGjTR2Nd&xlvPPQ0YyWesm@sH))=jlrVvx`y(+E9`$(
z!_;B&YKV6p7G&ZO4bi4ame)dL{V=JZ;SCM9hRItRYE{Xc8YUHas%MhrO)ZFFNTia6
z${MP0PKS$gEc4j#U>%;!`HqHa8a~kQp@!-jYG`;*!}}U)7R%Js@UDj1Y*Pz%b{J%a
zu-tIQvPNAFWVqBCE`)7DIDEL&(-><d!>AqgHLM;U*gw!RneMs`G@N@X^Rb4HH01dp
z#k`qZO5#iT^l)jUp|OSm8U|`;qM@mVjv6{?jA@4E8d_>-rJ;ouBu-*dA-z@dhvBl|
z%^<8qYYpu*wAau^3&KLS4dGpl(*;JzV<Ut{dKE@U2MzT{NTH(H&KkOC=&qrM7U;1c
z`J;wzEF&1-PnfcVOB_8l^wNU0j=r4qliBLC6C7`E4Sm>?K0(9=!hU4P2eSP`$o<D3
z+aw2R7_4EOhVdGPXc($tgocrn#G0vL8is3u{-Hx+D<#+m89zeSj*vqg)1x$u)-bJc
z`Y;dM$rue|H4tGb{YUNu4HGp?XIC{$(gNoxI)zQqFj>P7BZOJ%?m3@eX0E9k2&aWm
z87VXA{6!W$l}m#<f27RTFqe~PXEGyYj)r<8nOGzz*a#qbM~b&ByHLX-4PTMBH7wS!
zM8iG}`!y`puuQ`S4IBAr4J$a6e1wLT8kq66Smo3z4RflbDh_{u;RN5_lwGR@iO9K<
zypAn*N{<>T>pAc?Nf!R`ZQ@xCyEN?9uvx<vw!f|H4h>s1Y$I_-3YQ|cbDAEO8!eOk
zyysoS8GmD^7DVAVGE%-ADa@Bj8;L!<Y-D1u7QEw#9MEu3!&$NxNvGj31(RY(L1>j?
zu!tiXj%qkY-Eu9Lh2B7SS4t5%sUdqYaZ1B!B0bVQax#C66y}yaqk$KEM&(l^*fdv0
z$$1SIw7}=(OD(Xtrl;yf4VS1bHGHnYA0=OCxI&K2pL3PEcSnMMCB%u)@%gn;@@nU@
z*EG<M@j4}Flo)f%wizWiG<>6>kdAwFe5>K6hQBoYt>HV;R>N;(8%}Y^qCaW4&D%%G
zEvhV%>vpg;xnh*u;nXx1<`Moy!_QjqDb9_gv!mo!Ub8o`{AhxZ202^mrSj%U|G^nN
zn)s6)IGSLN?0+=;t0AwBd^-N4x)>#Q>48B7Bf8W6zTjwaM$5@}GO5u*&&2#X9`ByM
zTMu&W70~fZ>tsP4{aXgU=QGD=<BJpb>bOrwOoylAejN|!i0V+-PTM5(z_{)qJy?r)
zP{$jirQT>^Shffs-9FuAw5U2X9hMH8`d`Pa(X#d7tf6DeXgNJvOdWZ;B@PwJ5H>!R
zb##XK%eXp-e>Yn09wSrtCgM6C)=`|D)KOSR5j_a<UrfidZ4-}-kw-$r?v^OZM|4ZP
zGDaTN@t6(<W2rqx`izlTV<e%&*8}&@B>UMt$*oB`k(FS_p3Rihv1tr_c!jBuw;aqZ
zt>Z}@>qrV6Pw9ACM-v@Qbv&aZrQ>ZKRdtlnk=BvbA$+us=XAWJ<7GVvx5D5jWp#$x
z#|t`WbDN{%&KM~d;*ShWu;xV_4~-R;r^m`GI$j?e1Q^WKv4Sx`#!9wbGQ*bJC12IS
zg$VvAy~b;FRMOF?d9u8Y3T#TpTck7b-HD1iI`gi&3F0iAf@vocf0fU00haHM=bEG{
zvwKZaRYFJ`#dp|A9q;R?r=z;grIk!g9kq1S;E2X0rjHd`LBFe`wvPAoz!{kV`RnL7
zK34eMMZB&K!gXWi_4X-x^VQe!fsTgkn~o24G$2<D%lSmd&9U;4j*s<Vi<x+IoIEv7
zDvlH0!a)6v#tHKe7C4`2tOs7_Oi9*^&FUDXW3-MII$G-JqN6Ljr=vCJQAc|{h*-#Q
zK$OikI@*$x$H~E)f!}BcHlpM1^@&b=?)ePk#;+bHgskZt)*l!r-E?%<F;K@K9X)jP
z)X_&rU-s}?ZZ92srzcKd$n6~-UKuB>?579uABHqa4$!#=o#?Nl?vTKzn>E$`%^l3A
z>p{lP5uCN^si8WCks<THIBRFN=cMd#GWn4-9UcjpQ*R_6)HpTbsq7dXV|C2YF;~Yp
z9piOOq2TD4pktzr$>ch&{US3-$LgHSl+(FCjT0V{Tq`c*PSY`6$0K&W**a$Em`R45
znHc_chMIvn4rb|8l0qXl?yhpjgueOnbj;VWoZZv0K*vHI$4=%h(NT0x*+n`^j~5v)
zi}k?Ul<m)GnS5`&Eai-kmt`dWom|@1vW)sIccqS1?2nE$BuMqt+7NP2w%vG{JYF`9
zmviG~gN}`46&-(2j&yvg<1-y+b!?`9Q<ilc*0Gh-r(?U09qd&!LsyZfdZs6~PVdyQ
zOUFJP`*jq1FST389vufG8RG4BB=&|l4{2<CfOx>D+1nhcp5^Kv;Tuon9MN%<{Hfyv
zby4FWa{GM~<d}{QgVT>p5N7c^N&ab+Jgs9TUj!jk&Lqx|`I{u0mCg{J({WzM*E++?
z-~tDz<BE=}IxbPz+a)e@6zRY>>PGLf9g1W=CzF4idSil2YMlH+$Co;;>1Z}V&NfM2
z*YOpVOfvJ+1nE0LrcIFb6XfUw`G(40$8G9?P($A2XK>}rEgj$K_+H1!iO<pg=La1l
zd!$)t^2cS*A9egh${b7Zo1gG!3hbi9FBJTH18aX{qWsEx>!p4RA(7^<Wd79gmk!rJ
z%)s9|{?YNEfrkwIOXW|>7`WRA-lTa9++`rIffpvqZ~PjZD5(>Pd<OCx;Ex7>u9eRc
z1q=}GJ(?(F;2s0t_ekE$nlp(30~36iE-03{&%pf#9x#H%le@bo@IR#eL}5+DK-7R?
zz~o*0_&0(KJ3-n<0~03(8FoG|mLZ~thvOO~D$dGU2DD~L#|Yjgwt+h5A0V=Fq6~I2
zo`JZ5gaO~c!v+c)c+5a?14RrRnJ7gK6f?lj%SQ}cpD1HKPW(Mlm|Uh-v(%#oyh-x%
zBzfGxp5xitlZ3F%<;-2n5+w|jG*H^WlLmIwNF@zC!QS3T95|m_$^c=HNkUPgQ!3X6
zpEAIWjFb_qnLHiBXN({@1rHenri=l?bO<L;lClP#H&E8Z^Cn&}P|m<+gDI1cW8g&t
zZ49(E@REU-4ZLfhwt-g+<Qk}Cpt6CCfmaQ@ZlFBxnv|ex+-pX#-OPVC;jI0gOJw^b
zVW#W~MzDuY<V^$3nxx+dVMR`HyA%(ZKISb07beNKwK7!<ylpVY3aXPU?oTu2eN`jy
zg@4BgK5|$_Ps;P#Bw>{G8V1I<NzrqpCL7<Lt!3a$<KVE4fw~4$8sTFD?-_WXhm)m&
zfqI<Wys4Z-mhM#b4MZl(2L?Vgf^XFH<iM(--u>yvw`5YenNJKfG|<FAQv;3o^xL_O
zN%=m(=KCnRe@@SG`MsHe<_20CXl0=FWNE=^-IL@`WpaBE7nj0S?7__XtBKYIO-*FU
zWNBxhy@4qPrW)vApre5y28J5wWT3Nw-Uj*@=whI&fgT*Gfo|l1$w8tzs`2gyE=~?M
zURiTzvfMXCN==bo2C`Fx#?O5X^fNG!v(qQR5MCcl5yqeFPZ~Za0}L(*Cx%|kvVIVI
zVqo&QTw0_M4l^*E1T-+gzz72)N$`frF$RCVv!e`reJ*!2$#qw{+Z6fno8Xs!EG6qs
z?zj+gr;<3$X=?3BOf)cw%^GNMII(YvJlHfnW{RwwBGU{^H?Z8m3Ij6?%rr3Hzybra
zC^*-1FI7&?F>qyy%nl)g)6O-RKnJxNr6}V}ky-gl!f29QXkf8{CE?H(h4A+&LYIyD
zFJ_p!cd3D82IhQ~%QC2WawVDEzy<>w4Xoz08i9v96Ys9&7@MWmli)3q>q2}~$0Td2
z_fE5hPUW1<O$I)tKy@iwGJlq0f~m6Az%~Ov8~BAZq|g~SPZl+>)4(nRhbhZO5Zh!o
zr^&!xPV1S><hrRxr^-G9`zb7Kk~vd_hX)KCG;oO1F*OK%-)3r1h#V!;QVSV4Y2dhl
zMXi%`Gql%aM@|)55uBnN8Q48l&XKDri31a#85q_kL1f-kIUC}?><hAMku7=IMFW=%
z+%)i=fy-1c2EH_KjcnF2dBtGvA$YBmG?`$4sYhz&e8Fp`1_^YEwn=rE^4xU;Uvb8%
zA>$e5A^IjnZg8?Hr&#l?fqc_~@OOk?#53Ph91Q%($|9K`sOY8%J%8EZYCmUwGH{#v
z;fq9in%pt)#@+-AGvNGc;5SaX3Ejl+2L3Qm$izJ+{xtBHf&UETF;Q`v7}YX=Q<|p9
zKNPEKDVBdjgbO=&nHW4x@|iRYMqcy(pPfHV_D+)mCN52rf+m==kFH7oOq07!G<#Ew
z>2j}$`%FAw2L8R=l)RtyMFY38)bt=A{DUSQGNG7IO+?s%=`wS=L`^i9E<LBq=Iv$a
zTC#V#Fm>jY=`v$%j$y(y@u-Q%Ojsst6LAv{n;2Ov<Cut<!46&1Pg1T4t|t@mIN0ey
zW|k%Sa`+!z*bLnEi<l_7Gu!Z=GLH~3LBl6^h7>cg{L}2yGlY0?6OWsC+Qc&^5+-~T
zPjF}^O7L;TGf5M}X2|O^q@;<)GlUUocv#BB<<4ooZTS(!{AJHHPd#bkDHCgE2v_HL
z=(R|t%peo=b0*4|NSok(+=UtPY=}(VQI?0C!QxGmFR)7{wwc&&BFDswCOVl+HHDW<
zylkS5iMl3UF_CLB8UQMr$e4JQq%-m4`P{4t;XuykmN!AS?$_A!cT>Nyw`Sn(%^Lo+
z)-8~!VB!rEe}9%OJX2^+{HBRpJray({+5YnXG(>cQpLpE>{$C$EfZBuyknxei5h0G
zSY6G;M>D0{Od<aGx4G1Zv`>DzK(?ld=`&^fOkv8@cTH@mlc^oT`STO+nRwqsD-*3v
z)H6}vL_-seOnhMCLlYmH_%&}%172J&_18?9|5xruCO(@f_lCyFMP|t-X0Yy^o+XVr
zeI{Cv_e?b9@Mp=P@j1=OQ6x*g96Fj2elkmF<lKFh%%3H6GTlB)+L&l-2LG5HO|&!7
zo~_N22R3E9%}8`0d$bIe<}S?=x_0s!bGCFb(bdFM6Vps|Gtu3|a1$d;^f1xW!~hcm
zP4pszjZE}2(VtW@(Z@vJu)H~2TFsWHW(TI}lV;1x*|LAOT%Rq2C_7}EaEwDtFz>*N
zb7UxcGF!|!5-fAg5r(8_F-Jz47-eFdiSZ^zQ))UVceO~4;e+PL+&QwKerl{4e8O#;
zBmbteTpXKVVxkGAOqyh3GAGEyxj8`wrK0(Bew-tpRLIatWV(qNCRUkPZDOX0Stb^m
zSY%?hi8&?~guF4Ak~LSV&y{)P{JBA(gZU=Nkj>`?ny^g$RG+y*qxZ!omY7&-V$h95
zonbl4Ooo_9&z~zR$aNvU<IOB<7JZ$&l8>OB#+%tSCTN$w-oys7XrIJd6YI!t@27e<
zOfo3JMiZMz77l?@{AFg**~F(NHk;TnS6VMjFv{pxeD0H(8Xu<qn=8gV*<oU*3B!VE
zVV8;BY|6xsCia-vOBporxru!y_M14t{+l>p;-HBmCXP~&=Ly?+X`UQ1ao9x7dD3Q{
z5DuLuOXdkfvK-^R|CTv!g62tqVUmf{CeD(iY<!-aA*0Td&nRodbFRz_3>b|0a^A!R
z6Lbo@Wa6TUQuAflN3Uk)i_*L7)m~*koG(0e#l%&UzT5cP#237n0(BtwI<>)k88=_9
zk(auO-8#kmJ4*^?Kb<c(Oq`l8H%%st!#5OULN-`2u&kr4a=9&;o;5PxoA|-x?tsJ=
z$kPjC)0M<eCT^R^W8p3fcTD_j;vW<Ln)rp?rk*$Pmx;F)$Zwpx1@Z@#42>8~G+!XC
z$0n97ki84!`U3geM9GCxw^ibw1!63eR~Ab7Yl;8JSGyB67E1GllGj2$3-?*L-$H&1
z1uWccp^(M6--!VWrJ#lOjf1@m!h0+%Tqrvi%Dol_bxyL`%M0b_h4O$E1bT>CP%J#S
zNFKD%Vv$5FJY*rUNM2ba?=F(Ti)7KotZHG^BC+$NwGcV7NOTK4B;|ivBo=WCuUN>n
z;8<`il(O)Ig_s4;!ebVSTZmhD*uoz*5|3IaY|#%3k638>dZy4~As)cRQq)4Ru#!LK
z&o369y?;?YTCF_Jc0Nj#uuzg6v*25(yI9&ioo&5X#xItuEfYx#XBP(n16M4T0#9d3
zTX@pK^A=vP@RWt8Ej-6=v`jq1?$u3|v5>Zq;?yjbUPZF}=D`w4ERko~c!==ug=4v8
zEo7ERttC>rMY^1Ymn=+KA~_abw9saWF#84z-C#E?k(Vu+iDphNk&J~`EmXIdNf22J
zVxf|S$`)R;@H%PII`yW7@)l@;P{G0*A@akLAWU&ZD+pOk!${&pnE3lG60m2IORrTd
zylvqf3)L(z%w1Jdb*XT#lV1D<mkQhbb!hUP>X|#tuxz20g?bk1TX@$ByeW&^o33l2
zHYu=F>aem}iiIrEx^n703-5Cl?oG3lUn(D14DkUb82ZRU12(c$n8=Uzbv>8L{H4O_
z_?VMhEmfv@vXO<x+#YfQdxj>QEDO)rNZDv+p}B=G`CM|5g_ai9Sy*qOm4((8Mq3y|
zx>;yzp`V5R7TS?NEp)Tc-9iTo9XUD+{0#2IZq!b7X3L+X_zyz7i-m9BPSS3ZHIteq
zn+#9%u!8;WUKV;=LENpL>{7P`kv<l-Ia!vz7DyImf8fI7j-@id!a$B|nT#O+TfzHc
zh=rl#nWZw=!VgR3?q%}uGGSo1MjevFEDX1T;883uEt8Q};HS@fM};kPTP9;IjI%J`
z!U7B9EleO|SeR;IB1bVYv3Z$HX2;yjB#!G+V)inb(<*uDcJ4F_)5(Mb((^3LurSlY
z94lB`n-va$ou6%ipJ7B;&McF;;o0w&1zDK$Ef;UOEVQu5!U_w_>9&|>EiAPH50ps_
zgFth6>L*@aF3YF~x(Lg1D=?ZRvXTO8foE4+SYx5iav`IReJV4fZE~%J9?NBAuk;2B
z8!a5=NG)t)e=O{=u-C$73tKGgu&|S}+%CP<!gdP`^+tR9Z5;J-*?%PQYqJz>OLkGH
z$0oM7PVTmF;6}D>EQn!v{CsAgh5Z%|S~$ddj=E+Jr<kFWh^$>MMEGM)^W(!7j*zL&
z<{n%w*O$w23nwg`vGAFNlNL@<v)z|IO;&k3#V|O#nj{#NrB|&KKj+R`I7hZ2O~`ds
z<veL<1-7z(_e}8cq7?)lWTZj9-I#@qod3CnD;EA+kng+pNs9JWip&!Ef-F%bb#QR{
zx`nT(32i)NGpi<UP+wX2)5168Knp)w_=#6q_>Med;g%IxsMZ*t;F9e37FM?p)_M3Z
z`QQqnz526Vleej1sJOZ(ekV)UO#N(ufy6oFU&x#!<JY<T+My8rMu{ktp<N|6d1)&7
zmxaHn&utX2@elj(RpMWE*uuw)^3lpJm}nbw8>Q*EahHv}HuBj)L<kn{kTR1Xk%Bhv
zwsDV*du=?rLO3ama9GGj$@-<%cS_%9<9-_t*r>T8NMk+z!_+G)<Oq>}%D@iRNIS2P
zh>fU?qBe@zP;96+Vm3S*nho8?_!Z*XFj(0sZP|f!jcJ26^9Ng|2yHv?%5UE{;n-lx
zQ6d~BJ)Yt=^N@1=Gq5~-w_d8S9ef8CvB53x^(*8&`!GMjR8aJLdep{aHlDCi+D363
zkK6EVl(517yF>^dTq(cvmd}H=o&UNgOOjS~Q%O7UIw{2)|0_d;gk|NEHmI^_{6jHe
zaH6Me{P}K%>EVj6lrlE6qvDW_!#18}S8dd{@qvx9HlDXp*+vx`FW4ybWAary*nKW%
zBPZ<hi#Bq@`j^7Pmu<Wf9`cuvm+|^cc-XaLnt0ZR*m%vx>o(rB@mAPWc^ef%guej1
zh2;$!6~h|hG}R+zD%rumDi4WQS(xwb@L4rDoa%|HHq)~*7EijGjq2=7wbY~wxm;!>
z58LgMHEq<g@ve>9oJ||=*{EZK0ollhoUaB&^3WESjl6FoOCm52X7xn9u-V4#Qy<!B
zU}Lh4DV#(bAKU0=qq~hyY&5jd#ztGR7GD9>_BNW^Xl$cNcyD0;$&q#l$j-n@EjZXo
z2|lZpjh4KzO;CTNd9pRd>P{|4MA*(o`|#ebHadi(>l_|-3~^r5DP%ArUBY^P2GdZP
z?Nn%y?qQ>+jbS#1bBrtH=fZh<+30PfkBz?J#RF`HdrkMVgZ$CFC9p##8!yU7WT1^f
zHU`^4V7j4{oeQ}`LY#+`6dsa3eCP-^b-ds>8zXIuvN8I9y&A*Y+Xj=uGB&KN*&#XJ
z#ssoZ=U|wupBUCp3L!VSrrMZhW37#KHm2K{VPm0<MK)&IV06COHs+A*Me@uFdrnK^
zxs<im!6W98|Es6iCc`$)XJz-qf)G;t7u#53W4VnL;ay8Zxa|L0=#%DJ0q<HF9<B-1
z1rJx*SRHnW_RMUYHFP;#Z)1avZ8o;s*l2^4+`@<UNt2m3+4$5(zd9+F&78!QLWFm1
z4KE|I!^Tb<du{BaB4VIm8+%BHkg0ZukM7?nAU-+s+}X1GZ5-f8o2AL3tUPFA)k-1h
z2#?q}N=@b9F$c$N9H)@l_{+u#8z*giYvZPkQ#MZ9xNPHd8)s~MX5$>?-NspR)VbUa
zC9=%*#vQaHE9Lr1xnSd>jY~F&7g`n6Jhn=5R!Q|$a>d3~8(;A*8(-M?k_5Ce*KKTm
zA^X$)8NOJr@hL+SJDMd~-*J`H8k2K_0yQS*8ynZg=MWhdR(@yWd(wgG$i@#gZrQkP
z<Bp9VIj&Xm6E9vRL=LTzf~&<_E!TG^=t1`V&ICP-ezo!BYWa;EyIS5@EuXBG-);Os
zCRr`JR!h0w=~CSie^dF}h&YHk_}9jN)aMTFb&$uwT@La)DBuJkh4VV7w6RP+C&&x-
z!O4VOJ>v~b7j$rGwcPEXkb^%~%R_6V_!=p<M&4c{BW~s1=iq(^_k5Fh(4iN3`T-}%
zX@U@Mv_{Tf%FWR-4>>R<=CBM~BZ>pnf#)FZKy#owupHP97OxS*fyo;i25O%fa0qG1
z<2aapf7W#nbFgcTblRTze2x6EM&fIQ$iof_J1FL0>o2)Q9F$!vk2ommpz>O2v{rVW
z&J15GSGSd2yjFO@{<Tuv!Q&2IcTnCz!h!GLIo{=<goBa}N;`Pc!Iia=bnt`|xZCj4
zu9Sn{*UCfdq{KRTd7V7v;Asabey=*9=4Y6lTI=K)2VK_5sCB{&l4%FeIykgW)~u5!
zcPEJ4SSQarc)`I-B(j5i>zQ>LISyWQf^7(Ay}YzuYOj~eQxlCkCtq=p>wp38UUkrR
zy^LBfjI;gh@I=;uIQV|OyhakOm%Zzyewpmd&Iv|LU3ETD!ND62-gQvhK}82|I;iHL
zx`Vekp`?a`Dh@_@nSvX{+aLw3?Av_A2I;v$-f>WsH*OG?9|ojZ^XjS0wn2#+4sKn{
z)N=4oI#biZlnt_WLlCR^>ISLfpsvFV+Ne(|{a5BaCy1T(J_pz$`R4{HvQb{xC?7cZ
z(80$JYHXAS4nA^%jiDd^$>l;HFQ5erk#9%meBz+vMw!zn*~md-2TdF_bx_d7-7cCr
zXzpN*gS8G?IB4l$tb=h5S~+O#ppS#T4%(1J4my+g4n}U2b`IJ*=-^=eM&Ty`7jMsP
zl#UKMIrwR#aQBLeLfgcA-{?lBZI|ukpu2;oHc1Z$JxRJvLRX!3n`HDRS+pt0!r7Zs
z*)qklZIkqK(BHvO2g4i;a4^upV0P*8%z_PxK@J#pz`B^Yut|R1By?OI;z0RScy_ph
z5e`N>7(>?jR7P?Z9K8Rjy!NS-+mq?@sVvPS6F-&JpUT+~j(0G@!8`}^9ZYmE$-xW<
zGaXFk6gZgX;P$67)d}LIY;Tz$Wa2-<O5fy8=R|*#%fy<|%`(fu98!L>%qDMdmPhKP
z2<MX9o28p=ma&^<frEvVI0s7{Fm3v(&9cY|;^pq=*}2)J4wgAs?qEe&$t@(FVkME4
z4puo>9pb-VOt9vQ&BF5MW?4tFJNUxEmku^K*y!LW)vtq14nAc&WOWCd9c*#1-NDjs
ziLIQ<yCi3eY;zFVB9Ctga9YdkV9&S6P71q&-dkka7TFNOy$<#{3?wIq9PAG}aKORA
z5V^EPCLB&wos$?oIPuFCIqcv__&ZsAtL!?MVJDB1{T!TkaKXVz2d6l+t#Xz!xK&O&
zIOE_m2gxmolJ$b}?pEorRYq==b8Kg;(8uky)!B>Gfz%8Ru9D|F1|N!-9enQKzQ?l+
z6-yfuBEQtk@GGVLt;~(Ba?QbY2X`F&Ok|>b<=`6!-?F#c<ZC`_o7|uPZWAIm9ehVw
zbMPaj+rbYMoNY4ca^l0T3C3!!Q!_xiY?GgOs#WqfTR53vFq28!gxf>EIQW(N+`)ei
zexsUl@TY^nNdIkeZkzn!VAk^NPuryDn8e>s5HsN)2k%|XINOCmZ07VxaC?`;$>Sog
zi+nEba#3!(oOm$%&-c0cUDV$$3${xE7k#z||7F{^%a!en6^wgah>O=;-0R{#7mvG0
zxVYcN11?M#mdn6-c+iF7LUr+wi#$7|_6~`<h`4xUhh%q1PTf?u9l|ej7R`lDd2g5E
zLdw`3vV4aaE>7$a`b5|+92bRM6mj9Yh`EUKp>u*hf4?JmJ9vCz`AmVG^013iJLQd?
z(tf8r;s)vSin(~y#qga{)Wxcua(1UY=HkvyDYr|Cvyoj=WS8W7J-cs2j_;xbZ*lR0
zi;^yqF3PxIn9))$o^bJ$i>F<bc7tVsYP;mt<=iLTAnWw-$Fp;e=RV^i<)ZnnV3&~p
zTn|=G(eTFVn&yswo@$wAT|DOofhfzmSh`DSRmC!5my~mn<Kkr(uejK^OI~!r^<EC@
zB^TFr$=a_n{qN7_y2!Z5x~Q^S^6ZvZNyhq#^lo`%H?yB4Xrsvb*Ikr%(UhvvMFkgc
zxTx)-j*E&e-gHsb#XByV?3TA&RAxIaD!E{UAHGrv2ke%&U0m87{IAW}E&Fy$H5b)g
z)N=8zi>V(aYPhJ$hwc&Lw5NJ>kG#G=!Tr9<`Q*htvZHjiu8a3vG;r~e8w9s}pA6&T
z0~ht&z$_<qJD2c7wz(%rbN}*PIc@g{@sC}6;-Zm@#x92Kk;&6?8@fSE_4#{b-yXTV
zN6!41X~LP>BXmn4Z0@3ki+(QpyJ+d6m5Z(}y18iWqK%7=E;^A3_extA?Oe1cgY6X>
zhdjSmI`9#DW%vVG;&1Pj&SZwYLdV7fd!-9+pPg8=H~3rW?xF{|tA3)li=HlexwyVp
z{@W|}hAxe?&SKR4*gomw;@G%sUvlH;xkLuI80cashv4FweNt_o4018p#Sr%GYHrhg
zGH{=88*#>-#BdkW_sIwsBVCN`n5fq(`=FBDvQI|27<VP}<vzJ@zl<f$J~T$GF~+-?
zz<GHMmtVs~7n5B4QX0RO#$-~-#kWOpvk0cTm_{j!<H0zlyO`nPb_{o7nCW5`XE}z-
zG0b)`$Hnh1{%|qZ#XJ|MT%2|>-^BtKJ6!B^vCzdL7wcTCcd^*T5*Mp^{VBiWpZ-!8
zD<~BE<&pie%*Aq!;<Zx0Y|YvFyT8&!?ofXf*<-(ae98atTffqQ<Qf-i`RD`5F;o4^
zJN*qVHoDkO%`o5Jz2DzN@o}-4jJnZp+27ydVk?=1vpLGgY(H;Lf6*@gS}%XxL4WxH
zzvX`U_p9VC7rR{?Wv^EGWB1D*7keoz?CO5`{g8iRzwCE$z{NoqH}(q;*9`Lyxj5|N
zh>Jga`8!AZu^#@|kv{8x?&}}pqaRNnCl8b_d4h^)xX*HuDy4_NB~|i_i_ctqL-M-#
zZ<2r3#YIj5#hhX_+CT5&0+rhVxw_Y9;gB!8_}s;plvXx1-@ihUIUrxSxay+l0m(fe
zgmd32S>u*}o!oUm8c4~ni1hIP5C57{BPDN8!wm9=5B6`e!^8YLE`E0Loy!#7{`W3^
zaB+*GebN6Z91f8msV*KZLuB6w|28LXmtUu^zu=6|!B!rT{)OB%(*HGtzi}?k=1e^x
zf4caKDl`T+hQD3>!`{Xajp1Jo(?$Lm3dE2nhPz_O8^d=8WWxcuJi<S5K&pM_=Zj(W
zI)6dw^xX%gU<`N1z(C{=#!x7Rk_V;jLAfu6dqVu>gK}>Sbq>l$ua@NP_s4K}vHw5}
z#0y^wx_9PG`k@$}{MP^Axc}T7Ux`7D!Hyy4M)La~d@Y7CbA2lYJq9C&DF?-jVdX)o
zaN6H^(dXg5gL3Vl^j`1B&X$eE;KlHC49~<6kKy4MipTJH425Ipd?>l6k6$!~A|d`r
z2<z`lUb~nq76VT`8pC5Tu-Tt>`LUb+KL;fd!@EQMCt@fagC9c)4ks3{L^7<;JILoi
zO2shtSn{)U$*yz#-;O4Gtnzuwlcd-P|EUo2np6yBVkpnXV@SvFYz(i((DH2ZxfsgE
zkcr{du-Qij`akXVpN}yH3+##hR~P+qBti^CSYC|brT^hChsY~2<o>UQk0TqiZ!Fmu
z$kh@9MTQ-FJ$zQHmU;5^^52MoLi%P5I|`Jn7=v<1czAE7<Xa@vAz_&?!><y<+c8Xy
zVOk7TV|XWqb}_V%p;`>pWB4eBk2#P-QX_`<Vt7A>nlaQOL1KYe)rsNE`J4uaq;?E%
z&I~5EF4fMFWVb^?*mGZU`XQ+oL;V;&;E-?o4Pvm8X(AtnhqZg8c)0P9d=f*$7+SFB
zF*J(d(7EKlhonh}G$zHymN<7vSksiedPthZFz0)}IaS<dpGYfC_XJ-%ENx?G9pY_5
zxT)0h`kkPD*?zx63>{+_5W~P2I>kV3(4EMgWM>ZWv2^bNeiw4lkL9|Cuv-WV8>t>K
z^bBXJR}6h(=u1w{mh2tUnL>AIq(5$h-!F##F<eNMyn5Py{a}*Fpcn?naO-T&gczPb
zEJMi86syI7P8%8v<aAgFhlg-P3?oB?^`l}K9pao^9*&J+Tu9{Bhw_YPKZm6UAM)AG
z#26-p?H9kAB*7<#*G!28+9Nf<pB}@E7>>qpj1v*ViEk3?W7rVGEWQFrw;1M9kYk`O
znis?T7#7E{B!&f)!TkX*Es9}bi1YC4n@QGOJf2({!!p(n^;eJwcKdwL@)*jE3a%$)
z{mSs{DoTCd;BZY0YhxgN)^S>|`fQ5q&5Jk2uqlQEF&vEH(-^*A;6K*K-%9p7ESqE4
z62o)Ho}>Q%<uiX<4BN@H;n4QPu$NOto;)nOLP%tHh&(*f-^bhg_$<|z1#o|O$Y-&W
zheDlmn3G<iB!!py=SU1g4oi<e{Ntod3|C|LB8HRX{A{U<>~IXH*z+$-oF-St@EM!>
z-7orF$+IDCDO~4bIM2C`A^-8RR04$7FJ%dxG5+NkKIiC;BxfC#PY=r#N=*-c?(?Ot
z9+of3Fr2To{tq!+r~Jn7Em?QAKci~NuQ?Ip{2QFIswLUyZ(`Uu%5Q$kC%j1w%o%(>
z52yHh(&4ZyK9-Ceky|lTT;e}{M1G{CEcJg1A!~l7q*Eb#c*w)AG5khJiQ&H()<2Wy
z_Za?Q3zX2$$~L=JqQVizPw>eYfAK94!#^=R@N@EmBhvARd~_}+kB7TF-0R^!4|zT0
z^8yyi@4+uva@%2l>=9XfL{1!$0v-zT)DgKmghUE?xF^KF4KLtb_j`CCyuIL2`RY%f
zSu0ps^r#R<JVZTw=%IlJ#e?dhjEA%b&4cbC>7kT|=Z}iv!SxXHV0y4TJpFvhdE@*;
zCw<!kp~F)>e7=!A50#F}!yXEIh<j*wRQlXZ_B<+`e(;NUc+|sV9v<;f)Wh_n!f%)>
z#nZ(+{QZqjq_~I2J(TnUE=q)uNC}SjfB2zI{-S3}vU2lLach@)!bATO=^}MYJ>{Xa
zhjo|yCqvkFeUdoqpZ4&K2O=yf57!s_3u~2n*28li%6q8bp)7~yA>-jy4=;Eq=ONd_
z4@V`(!;2nX^6;{U1Bd*jy91GVzx4Abj!K2e{wp5%vS?VY<bk?n$r6Q*NyGCwSr65Y
zNsD759$xd{9h0jk{ntG_drbanm@a-O`G$vz9%_52<6%ZG|4kCgL*)>Eixd57Nj6o5
zBV{`ts(X0luwQ;|@aa|63*IL0gs|T+so`P3BEP1GS{`@s{kg{^Ju>LtyB@Y46Mi4^
zu&#&8vwfDU$K*W^?~_9o`t>~2_wd22-~+7oD4)m&;UVw+$iv4Zorm=vKH;o+=;NWU
zhejS6duZvQm4_xC&ddxR)Z9Z;4}Tn!W*!Fh^;y=PO_K*&co=#qP*bfvwDHi*Lw65t
zJ+$-C$-~M_Fu?X69zHG|IdPZ#4q+vErp$3UH`?#ahc5JaSr-po!&Ahmemh-DzHwZ7
zc<9N;_40dp=<NjxZN?;@haVr8hNqJK*r12G9_Eoa9tL_C=V3gr_b}MQNRP{Fum<@<
zJPh|Rg8lS@H|DYN{xA<!zD;&NE`;p)*buq)MRK%<F&<uD;2)XhKl+P5HpF@O&NP35
zhlw7hdYI;6l84D&ppB<^IPztQAC~(!SNKF4?eO25<4@=0dYI{9RycRP`}jwD_=GHc
zr_A;O%|D03>Ellt6jaXlu)xDI56jsm`#dte*h8;mdQmvuX#R2>H4m4Bl}kfdb+5m|
z!_woj+QS+W&BNZ~vMPjM9T(z%9hbEf=MDbuRsNe7lG+K`;9(=#!^7tuHhK7z9PZ(u
zhs_?gc-ZM-7a1uW)I+`f?H;yyXni!vk~$%**+CW!5xy^W^Fbc=dD!Ej!wDe|kWt6K
zUuwUH8^8J^PRRUBic~%1;jo939!`-;q2@X2;h2ZBLj%>f`h*<!kXYc~JRv7M@bJ_L
zAv{ff<24@6dARaksjCP4&p5_me%_P84@IHl$@84$gZ_n3^EfBvB6)S8e<_5sPA7?9
z@o?3{KOX+|@P$WXA$(8i=3G!hXZhDXeC6TvxBjyy<!g4>!%cRwpU>CRH)Q@1!S4z2
zZ>f6+1#Hh#--Q=EzRbVn;YSa@QwpdGJlyv1vxi^8?o~P|FP!l2kdonV&aZ?0U&DH~
zK>Rlk$48}!{ORE@>OBv}h2U3+T7`vQ6csKfNt6FP<cZ_%I10saR~&icC=kbs>;0xD
zg+E96;vn()xtl)@LVo2IjN|%2Uk3SWPx|-7ac>+C#PN1+$t^$nqbK|P`noSp16L4X
z8Inj3IVtl_%0qEP;#l)A);^4A97-I&#qoO_Y8+Y|v*VZ(haQI!N1Zt8#$m=`#gQ9F
zCJs9eCk{W35^=b3#NsFx$D?t0am3>&97mCOpn@Kb<C7`DUnKuD*PZYmiG#l_-(B*H
z#xZ!a|K(Vpc%hm8WAQ-6u@sME+ex{6QiwkuM<T3murD}OGLB>%W#f20j#6<v5yw+;
zJRQfK$-c78FCE8|alAzV`OW7y2H`UyO_+-2**N%bn2MuJ96xOHS@>!6Tpa(Mls~Td
zqd)hH&+v&?S?Iq&BFFJk9OdG;J<ZPv;f2XQ@!1pnXGZuhleU?XEU%C<r=-Lwc{Pq~
z992l|ID~|%Uh0iFD#r0zh+p|S`Fe<ykE23}@PY!v{5RRvIA$yhei*4$$Qza7Ag5K1
z<AoAwat^;<s>bn79Pe_l`~7Nhba}s2`E!2FII43BPD!m(QX?KH)z;(vua5e);=vaP
zk=nfS)sieNPRV<5yiYpEF(i(9anz5aO&o3G_#loC<7gg7i#Qs@@lhO2<Cu9$KIUYx
zojAH52)@}G^3j8Wi5qlE?(gR}4(oZUNyvWeb2D<(DPbwLC-?$y8At0l&YqH1aqu<7
zLUqymvVZ%Ow2PyC9KGV`9Y+VAjiVb|iwE-CiTra~x`ue?5OxXSw_{6WP79yHzrr4*
z-f92+)4`8t&p7j+29<r{=o`m?I0kYcBm91R#A)dt$IsPsE?mgr4_*B#!Rv#kSO$e{
z5*ZrDl3V_`IL5~@ERNxEjEG}o9AhXTZ<PG_H-8k{kK@f$Nxl)r^NFMV=KXx08q2{R
zNp3zZEw}g+;+P!Alz6a6GBJ)x@j#PPFSY6APmN<5i5bT$z5MCqx1%zHG&wCTzVNv|
zbNjTcZJ3@Fp5+Cc{kd_>;{|b?i(@{eBaV%H5Ib{57RIqGPXA(1pDc=FaftB0dkL?(
z=r3i@N2Q6ZARC0EUKdCD<&vu?(PYRS{^~gX{nKZm##kHHaE@62=owib#|HM{jLezh
zKe*QaG>*+-o2TN~635m!_QbK5k{HMKICjRdi<NJce0Zk6BaS}v{T^%lI(192=I@%N
zcE?d|u+Q@6Fn?bh`{Ou4(YWK+I3ow*s2xil`F}KB1=JPA+kff)(P^+<v%9aLz$N5W
z;$;?)MnoxF?7~K+5u`yn#G=8V6v3psySuxQ?>F~<zH{!G^X%;I?95X$^TgbWSXB|L
zD`E|?v{jNHSn@~8uB(V)%fwrw#rlfaKq8J-f;{qPu_@g`qfS|DhmUQcdg&&%rps;V
zlHc0N51j~(Q%2^AT@|srqO!5<sfhg)c50sVW0#sn`=}q9MkL(9ia1meN2yVN5QnJ~
z`iUbP-8k{VR!MknceQHbtz+p2ZcGs;D329!sv=Gkx1{5am@B9=6>+X2&R0~csk7wC
zae}}FY6%i<tGq-;+A6Q^6BDzeyg$+YBWq1lYm6%uag_+%DmnX86W*wZn-%erhRzyp
zRm5#lO+$4JcStWv);8&AxLXk!8j5NtrXh!hoEq|J$gd%nhTIyy3sQMC<k2wonBYvu
zQOuhys?QapRw!OAprN3KLK+Hd*iKZR6P!BRJ(XER!}6_h-LZm-f&l-Zi{;^qad9et
z4fkuPsG+2WQX1~luzHFpt)YyD3L36$m1N+u8p>(lF3-I!4(%1?HMP@UoQhcTfqT-A
z-ODchrY`d=6I}L_8#N8421~=>B+@k)8X7l=NLH4%1~S8?dJz>Y0c?}522WG6>}!ZL
z#2R+iivkToL#W~00#R?9q?NM#mkN!U8XnM4iOA_LF5D88H9SbTzj#Q)qO*cKg{QVj
z@vz!#R?$#3eT#6lG{6;O4GlFlw9)W{hFTgP*3eKxBMr4RWNG+$o8;c}5e<)OsH<Vl
zvH0C>vg`~|N5kehV(>N@^bz$m)YsJRAUpj)qM?BX+Hm-j=^6r+y9vJAp;z2kLkkTp
zH9V%FiH4>cSlKLHHmMU4e(g)qTvMwK0+j1k8d__3TvIzEZfwbEefubjBJD_RH4MKL
zZ=5DNYIu@3>?NMk&`v}9G~7W`YvW(1iJ@!6#`@9YVXBjcr!_o7<af+`R>N~?fa{+Z
zmx$*zyrAJlerTfTwOnjpBRZWBbq=cXWeu-r7@}dQhF3MbM)Yo%gEhRa;SCL+YWPgU
zn<SQo4>WwJ;cX4?Xy~HhJ>qkPd^cUT93%+u-X?#j8Ig0|*VHUe(_)F=#YY-G*3eZ0
zXI1C1s7ur66Air%hXV(uSl-wk58M`iuA!TT0U8Es=+160R<q2P8hU8>dt1$(>9SY4
z?42(Aq)XoFn+Cqn&@T=2PnYh_n76nK;JR-2&ti~<OWS0T?UL}r+p~zV?^7AWh+7R)
z$i|x5AdJv3M#I=N{1v-8ON>mHqtfMQitu>B%5fUTYnY_rYsyYHLGJo<P-=pPi5j?8
z{AZtFIa$Lulw2a5i<wJRDW~6R*zu1@wo8`ZYxqIKOM?XOvU@D2X=<0((2i$on4YHT
zjCA8OHO$h$?f;dbVo0SFb>JKgKWb=OJ*wcRe$w#JaKYctl<vXe7mZ<-l9%%}EYPsa
zz-|KzHT=rEI#%fTjl!ZKTSo&OziU`bJ)<MPjwSqrhW#22X!ujZUm7-O*hn;L_(#Jk
z>IV(~YFMh_>P4}F!`vs9u}!|-P%Uq6w#*{H73oT9t>0>JowH}3=)PU9(Xed0T&H0z
z>z&lt?Q-^ZxoMbKPtq?J`v_CMh!zUIhAkBQHDc^iv5iu&U2fG-c8BC@ZM%lP+p?B6
z&z9@OE{f-B(Q${|qhU7{!VY=gaM56g+^b=qrk2F-?~s&GZqN>DI7A(#;X0X+w=`VP
za8bii4aYQ`(r{YCaSbOlwZ#~-L;hSRI!QfHCwhCeU|FwvbVkEjY9S5hDcw7iBBGg#
zlQ`F$YVO-1gR|n2hRYhRP)2@LyxO&G<~_629_K3ivqP?`9d)`QZjhZcWa!AD<H8|v
zOT(sL#T|~3vc?gO6Sw{p|8WXnQ#-TR$bii?)e>4)ru$qva_itT9MqK^lDmLBI`Znc
zwn@x7Bp$03eY8dt&{0rFs3X!*NJn8E_vyG_M-g597h_2srF0bCDU0eTrlYtHqJ8yr
zwGQV>vhF{kgbrSI>Mu&`D5K-kq2eALWp%Y!Ew7`3j&eF^?%<5TaXCBHgicARy;I(+
z<GG!ZBF`DHq7F@mr^DAl8=9`e)M4r9x>FiD+H4jz9?zz>v2{2)Tpfg|!-wvaKkSs8
zuUU3I7So#(=(v$L5<33aDQV@Kep|#kGIi9_@vx2ubX3w&MMqT~m31sSEFRSHkd6=6
zsWoRQ8b7-W8nnmH5Y=>~bd*j-FKvjc>!?A@@02xlY}qME#JR&#e3+zMwo262k)@-K
zj=GeBTjCKNkLnnERS@Q4l|RC?W3Q|canD|l2s|n3>$tODl-!*qbtF1^=;*1Vp^ip6
zUexiD&OdF(V>+JF(N0Gb9Zhw#*73Nm4AISWw9wI#gX%Au^F#fGxhZa?gL@@+m)!q!
zX2D&ObkDglZlj|uM>kwNvQIq0rUoiN?vhXHV996N>*%24SyCbWSVz*gmv~x7C*r4G
zWHpaiKC??cqpO9}rWzT~>v%!Oj+R+H4l8yd+CSVSDKec&Umaa^yr<(89j~St?`<8g
z=~#YSyg`EMAYxzF!71j4>w-*63{xY$m41?_cqa|8OYiDRglRW;U&jYJKGyLGsiWh}
zQZb>M7`aP+M7C@m@%6In)dbX4$7eb|C)ertahL3~IbO3%cGL0qlbN-*W_2e;wq$i`
zkzMH<acGz9rK7iw89HX_=%b^rjxj`_jxTid(=klPa2@@1e5qrQj=?$xkO%5S1IaVr
zh}*j)OMADhwOg_rLM*k&9!eHkqb^6b&1|(>j?nRyj!`;B>)<A6q>eXs%R#%93xi9P
z9{Yu}DXaRX`1jp%oR0An5FL{#Yu&^I9g}oi-7P2bm7g;9?3Qb~i}LSfP`!Vn<69j+
z=$NA8yY$10%jWu?{j8yE&ZFPR?Aj!ns$&{QdR<IUKTvd!4E88lqsfs=uUR@~>-d$b
zTgMz?iL9byfsUVa{LJ2NjDO)+PN-$`v5g}4mtwAtdFgg|tHB=01>wT<<!5`;3jEnU
za!##i5tYA=zldiYi#gu6GnP=|bhVn|cd2A1|1LOh{;8w=P4Q0-wetT*$5Ik&wH$g|
z{7X)_t@hEpTt>BaO$^^7SL#?r-Zs$Ez-saX6_J4=2G;6WN9ogXQO9~68+7cY3L;PH
z*hFsBu~Wxp3MM&xWVlVo*7R`xKBlzd^gYrUCbp+<aW>%tyL9YM%PDuqdq}1|l5%=<
zkK_)TI(fg213FIXIHlvDjzc<*={T<AzdiD>jw3pblD(%1Ueb#A_G1y*gIsa)q&T6g
zbzSXsqT*gzZLj2_>$HxuI?m~8$9g7RHrp#{i#xBQ+g?ST&U>Z3SzOW?Rg1e6Z39=x
z17!7u;x_fOj_bOzPTZpU9Vl*)SNF=By0S?U$#eF~r`9M(1G{~P-J_uK?jSMtiA<I`
z4CFMB*FZjldB<wY|NfX7EOQ&kW5EAQnM|9+)mU=o%5R{cp{6kY3K%%ciEpo@S}Vjx
z_Q_)FWBwO!Q3D=dG*HYyaRc`osA!;sfszL9F>tSeQU*#JC~Kgcf%5wlpOi7w>_b~<
zm3^{&8h(49tYDzoKBZj=f3;82iA;Yz=ZpIctn8`W@tOfW-3Qx%Vc>`DG3R>AfN7{%
zd(J+&VxK(nWF}P^`{@`;pST9tAc4SuFi_t>wt>(<WT2LThk3Vo6dQQJKqdBVdsZf!
z>Y<#!l?^;-;30$IF4?@Cd!}~#X3?&F(qAX4aIot{RRh)10O6E@>S?$}x~!QlIcxA%
zZ39^b9x?E!fouEJ?66~in9?D$j)8+c1=)}8mAYi<9Wj6P47Hvi(7=E+(AdCZ1`-1e
z4K&y<8<AK;MDhJ{!eJryOR^=ICwqoyLTvXI%?zyQFPa*7YrkCFIBL$}pAf9?JGy2o
z1Fa1VH!#A$;|AIoc+bH52A(j`*1(GfUNZ2cfu{^SZQvOL?F_Ux(9u9A10RnN)ZrZr
z{Ifr%5p2YM$&wT6$YU|<iE1MJSp&}*n7Lm*pJtU8((uhS;&gYhcE9Xw;AI1^8+gOO
zE2P?W5v~@m8F<yexaESsBl{({kR;`s?7V?@`P(MB&3W6vJBHdTWgJlR$d(6Eg!$`Y
zs9DB3AU`nhp@CiodZ$_FBLklr_>6rv@QH!DzhwNpIqsU~aCWBF0r|OsqwO-g8|Y!6
z8!2*G`7Fritqw@BJBu6Yo<xgVjX)m*eGPnRU;sORKz?DMzk%)tB;z{zk(rkZ0t_vf
zwJ{!OV32_!#I~Vk6HYOM$y5i_bU^XHGg%BXz#2{gtXX(Kenr^80xp{kj509V!1u(7
zfiVWg8klHc64AmI*nvH21H~8F8t0J-hMH~&d`+=x5>1*Wz9rBsYqEiF(g5LS-e^Fh
z_jd-?9Z<W=DF&t*_>mYeFwMYp1M{|s*@l`^W{^e(W*PW;i}D?uJ)oqLzkCNJ&4Y8&
z&u9nb&jx<sTLzvVq3%{WDCd$rri&gcMB&Y1zM+<m?HFP~|F41H$i^gufkg&>H~4=s
z_{YFvq9xthpX9xtG8Wdz;Jbg21S>?vgYjSKTYQ~cwtv&`a<Vanj)Gt)y-Fi0?>=!*
z(lfQv!2B6vRk~y)jRy9%)LIVKz*Ym>46HY>fqJRG*pe<c8rWoDvw^M$CHJQrzpuBk
zenji;=x@X~lLfu`Ei0wAb3&<<+Ck~qC#e4k?@ZT>J}CDXJSr2%47I%3XJEg9Bjg_g
z2Z+*x@?g4tC4qyIuK7a-4pV}@5;qP?<B&8vG~io5^NX}888|_q+a^+n)EbgCrwyDT
z8U@-5oHcNc>c~ax;=F+i25cLSjf(~@8MtHOKNFX!{0)3=qMM1UR3l_v6Lm~nH*kac
z)<i`UHx1n4glMY&M8C}!so_oJ<LeXz1366OG}S;dOuTwXzBof+wdEmYP|9T@w~0I^
zHZK;9_QkY?vOK;%=4E~p1x#fJ%Xl~{XrlKaS;$0T6B7<e-esuIPLW!8NHYGUsEJ}G
z%9<!=V)8Cg+(bzerA(ACvHy^~dPqJuK@>eKOPeTTqW)nSAC_<I6511)W2#1sbt!M+
z9uxPPc;T?DVB(VrB6DBd|FGmDwi~-@;=4P_m!X-^O*~|xiV4GnY4R_jAxu~%Y!i+N
zm%wJRVNFeLm$*^#OnkE{KIx`>4u6Os{OqxKd+Dm7iO57H6O~QGCNfPtU}Dj_m^zKC
z)^86>ZF|h{fG)k_+H1vwCZ1g>79Ex>iL|OFvQCJUiRz}>idHkRDc#Q+CTg0f&ATS9
z9G10AJj~846@+ODSo~Pj`LLiBtHcpmVn_Ul3IB+cajLF~dK|Th7l{@V*(RPa(bhx*
z6VgOe6U|H{CKikpjZ8E)(U8v^k)4l723<U6qQ?;imd8!l|K)M6F9hK;eMNH<EljjB
z(b_~y6BCcfbK6yr#{46a@Z+Y6vfKNUXk%htscM8@cqCePL_TTaDHEMcJZ++#iS{Ns
zn&{G7oH!zJRMIQdfemsKaa7hmDycS~Av;x%o;C3tpFb)&t$%z}a^v>AiDy>CjA1xA
zSiEGSvx&D&ykp{J6R((f-NYN@Kr+=)dF@#ITAC-hjqN`(t8M+NeP)R_O{_mEX&Ih%
zRK8_`B}0$iWlv0eOvW(ro{798#QP>bNCRZHIUQ?$XyPLi^u-gtl<o$*)Nhz5bWC<N
z@u`Uu=W5dw_L+&7+GX;`es(AJNOTjwo9Jnx7x|XlLMAuS$HXub!%g%x@r8*&CI*{e
zFk3$pUz!+TqCY!1N?BsrPMtX!?fQy=WXNNZH7tivV4uhuN@h4FX?$ycIHs$#^)Weu
zqc$<l#CQ`UO^h-z#>7|?qfKS;W>bf1M+6xBM)<X3^4IT_!+ioNX!5UevHhY70h%~P
zOd@M-Pw|;07e)VLa!>orZz&)qelqd1iSJGPKvbBRZej}6LJu+3#M)zW_A$wr9EMWR
zhcbgaU}Cn3ITW9-1l<9%NbyVY_epg0n9Olp&RZgOu8w~+(d1N2JKHZN=9>78!(SWE
zGcn)9uN3y<GVkGd0ZB76Yaw}w-s(RD;R#DbcwExX(B!yeP|9KxOH3RvanQscCjKPF
zDKaMhGV!;G<tA37`|yv6e@!eU=D$_0B9`wSm&-`F`3fFzT&^^+%EUTi-o$D?{7%Li
zj?2W<<MNMr%AFU?5q}+*eHum^Oq@%i`yYvpAD0BKj}e<qY%#IZ#4Zy#`iiY4p08YM
z8%1f9psjwpi5;dgB*ydW^}1A*rpw(X_E4ry$bBaE@|6>EVP8?^gba>~9zTiw>07+p
z<B~YU7fEi4yon<wj`Gtc&YL)9;<$-ZCQfq*<hr@yBsIgh6o1usW|7JS&QO_uDb8~E
zy_F|dn=7(U$POpu1uB-w;u7V3t$hE4yh!zaIOaq%_=KEtLS8j-%~bZ)n<l81uba4G
zf(}P&QC|LYLb@{I-CLXm(vK0Y(5dEKK5XGD3nMM$u#nS2T?_Rr<g$?4f?>h5kjFw^
z3neU+w2;q2ehY;y6tPgi!rU5BLB6|65SURWF2u?@5$9j79O%58KV85=QA>r{6thq~
z4G=zYLb9Zpw3LO?7VfcduZ1#f^Q0_ip}d8%78pX{os{?fp5mUOf`uJxV~(Awa?HW_
zK1(h8@3&BqpQA~kr}*le&@AW{C{Qy7tIL)rC8f`@U|Xnap_&E9f@>ku!UGmO3%&(m
zA+#W0P6d{l0U3BexbXH=WFfZj@=4|WXYds_dbIrK*(xeosBGaO3so#^J}kaGDIc`Z
zj&`|ylI4ZrV)jXS_@Rum(?rTbbqlpDJZzzc1+MLvo>UILnifvgi5QN>NYvUEvMexS
z^HB>2PRd8peaJCU5YBN**0I!Lj2n6Xl&o(doBgryiiHO3u!ScrJY^xV(9l9lV%0(;
z3ym!_v(Vha&-Jn&v(SV%B+dsb4gbg~N!|GPDHT)n;VId|Qtp)>WJH)Xtt~vxPFiSd
zp$)q<Os(Shb@JZ+)A6H6#g43qudlxlx3kdR!ZQ}0weZDg(ZNC|3v>)o`FCUwe-WH7
zcB~aolTWS-0?%1^-ogtOUbOJqvY56$mgDy-1K>**I&(x+?0v*nr{t&YGPx&xm5*8I
zX`z>e*DW3-g?B8xYvD}`Z&`RdO<%fPY4oNooiENgC6}L)T`U|tB|ot6p@sJ>yl;U4
z!>plehQLP_?wpcWoYW^4KDJQmv<y$ndZ%T()3U3DPf5Yk^0RbF;PW)l%|iG8uj!En
zx}281E%dQ4z`{V*9F=`7^s~^Pc%b;4mNiF<YIK&35MNqqx?wyO;hXO_7-V6vg`pOP
zS<2@!#KPaF<)k@c1{)kAhFdstT8`iVH;aK6#q38TmPclbQ5Hs9*k@tCg)tV!TKLt%
zZx+UJXcnehm|<apg^3ovv+zA7Xo#3(;cE+%E!;dUc}eyDjfHP5bi5%B9f&Cl1X%e4
zALt>bSeR-dH9HsKzJmqtP9v{w6eZ6{Ml8&<Fw4R(lx_>NEzBWDksA-isZ<6f>qiSe
zr5mC1D?TF`w$0GW=4a$Q3-j5N5n{m^xxm8ZpT)Q{YT|q4j9h4;#~Ddrk%iwathcbi
z!eR?cEG)IK%)%cQ{<QE9>1*LHO6W}0)xXnU>9-||@P;#z5&mqAt}dc?xrG%L)>v3e
zRbXM2rL^>F3#ZS>(<kEFgHw68*JO%8?z1Yo<KDA!UAjN)()I~8Hd@$ZVXK90X(`xD
zhWS%$VQUSP=jernB2_hGI~9(F-4^y(*hy}jCU#k<c~(|#kxftfQ)kukn07GA$X;rg
z#u0y1fCtEj)S@<W+Bn26SvYUu0!eJ)sD+c1eGA7d9Jet1tUQr!_WiRwo*|3I*!&l2
z=e<_*H0l1QxHwXrO^@h|1;QNux&H?k9CFdZB?~u*91hCD6{_fd;yQ(Qq_|4X>?^KW
zDpsd&`^?_;B3?3jZTeYx%ff97|5><e;gbXL59ey%p<)~-WN-23S(#zu?E4wS756DD
z-#HZLvXR?HSsUeS<gt<0Mo}BZY~-_%-$p?jg=~d$nw1LJ;QouobLNZ`wsEOLW)T~(
zvG=Sjx;5tZiq9~pm}PMrC2W+kQQF3}v$FI#*=LC;X`}rZL0KrcChmSYF2fJ)7V$Yr
zPegee6>QvZqoR%MbF%$8d5;ZFXZPB;&qk*|Mb0=yrP`Lt--d3Z*V5RsVc0Nj6;7X{
zYSd?=T3U~6pi&Zemo=^pj}JRA9QZZ@8&hmdwIOVTHeRyP*+yg|w$ac=BO94E9<cGS
z&3_<8B^#A(q-<2@Fq=jX+Nffqs;%~(57{bZhQRQB!oDM_*~&6Tb4{0X%8^vVMok-o
z((s^WQ7v1=7*9DTb5=}c*?5ElJTL3pc$AntC+pg%XXD^GS;q!lLf6m9HI-7dz)xK(
z_*k}$1~#brXquBY5@N4ev~HaW$l)y0*v4Zv+Squ)MiU!N`5_yvZ8Wpd+(t_hWr%2D
zE0;v`^K$$UQSH2(zfQ$Szj9tap1#}olrSF5pfQlUq_#E>|Hm^np0)9mjdnIV*yw1h
ztvzicYcGlRHa@r_$|O-ITe+5+E)h=?f#X#q*rm(r@;MvN+j!AduJ-Qd<qPDW>!MSY
zi14`clH_JnFWY#<Mqe9W*m%{(Yc@W%@rjMsZM<Qli;eeewV`;E*s$@A4f>DXvQaCn
zMu3}(%X{K~zNztU`WY@N`s|F~XRmC0XoKz{t_?o2!Agc+&pj^*FkG;!jZbZKv(eqg
z@or+}dHI=*ljr5<>;sJn=Vi_dvWJbHHW;<ihxlxh-OEOABJ+YQe?ewmkOcVTs~05S
z>Sv?BjjwEswDF~_jD!P8Ya0W2xmNVJAXyH!F~r6&8^dj$WQa$e$fl2b=LPxo1^Md*
zNpBGii6hvVyAP9^w9t;SG1|st8{gO%V`Hq1i8dzL7{{?}6yt47Ah%BugfCuDdn<aZ
z3SN}PMOpizq-pwVerS>kOYZ+(#<w=UxA6nNdqR9iHXbGjaLdf>q}R5@T=q<}F`fKI
zm1SdwjhQx9*;s93mW|mqezozNjX5@cw6Va(LK{EX_?i50QO>h*YpeK$!cN>0pECq6
zxkOL?RiBtoI*w2uB7Ekoc=w_la8WL@@w<(`ZTw?nG0}Tb{$b-!8%t~zBEnzMQ}JJE
z+2M}6(EAzmfGoQxcXLpr=0&+IEksMxB|X2iH!e@ZE2vm5$(5AfYl1*@Nv^T6*~S(d
zYi+EvvEIf88}%>AO}6r35!h%W$NAbcHPZr2ztVkYYj3r&jl6ARH^t|Y+-_rsjh&R5
zX`)~2sOu#;>XQ70Enkv*C@D5_U6u!I?4v@c6VVX2-v(`ZbJ9k+BbOxa(%f{|#t|w~
z2YDPEwQ-E2pz0%`ZJe-ihFX`5XQS}QTvQjQZJZ*lTV&IC$kYH@HR&2SXX8Az4fP(y
z*2X=T<wYA0U6$oD)kcr8UbO6Gju6XNiYqpr>nEDu5-hJ%9ofimki)@EQg*Mn&F<M~
zd|BS2_Fx3{bhW_yk3#*AxJwzotgL*E4ynqVj+)nUIcS}B6@Aq<tKz}9Vy!5zgM1E3
zIw<APrH%p)ia3Cyf(8pZDD2=vCW)*Ng&ehjBvA86OyeO{V$pPi#T^t&1GJXBpZ;74
z2YiMuq|y$`@Ro!AGqTD$DCeNOg9?rcJ*5Sh69@ZqkAs1i<-O?^W?Yv11heO8xZ^AL
zr(dk-KuZIxVPco*z;ZCv!88Z91INKj4mz_<2cCn(K||_)2Z4iH4jy(O9E1)kIjHO)
zau7TCq*Yd?1A1isx~z=MU2X}^vky3+!JiWPpo51Tq#RUtP{mOO-l`6&v8GOB?1_(E
zmUl19vR7pL?#en{!%_Q-ntbJoq!uEr=^m}^Aj?4=hY5Xn#KEI8vmSN8WFG>Hw#03&
zNW%3T)OXMzJ?hu5$hWFT7YB%JM@=QYu1JO)$n>poS7ajxjU9Aw(9ywT4w^V<>7bQ^
zrVg4pXzr*u$zQI>l~?4^D{{@&tQHO!)IqMM5xcd6#~nQB;3-GNIJI%`goCzZ+N)AK
zuiRUV2j&*9;#K8-YR6`;%Jz<$N@`w}gt>0-<lt!s&pCMB!7~nCzACBMpLOv0RXO&m
z>?cx7zY#Au`01)_ezoR{4pv>2%z31*?Z8#}vV&I~^l|vtPI%S9Ys9>Rt`1&z_~%gg
zfPCfPO$To|c-KJ}2e+=uw@KV@YrI1~xu!Of+(d9w@ItN3_Z+;RMs?+DlCuN7NbLMa
ze5`K7Xn{Ac$&b@;(`%9&kWU?aaZUDc(9^+Z?5cxq4klic-5r%QLG?cGnp}HL9=Rra
zkvCS0-o))vk^8!&jyl^q`@`Mw7Y_P480%mh8IQDcFwDVl2Ls4#8{$C@29s%t)ir_v
zBrNZ{E{8Z6N*=qebUrT`kVANcgRdNnb}+`lJ#Dgy<dF_WvDy79u7FJuU?pdKUea?k
z-oXTR(!pd0jjpTo+ll1E^|JGIIf+buUF}$zi1&?yZykKcam`Sd-#hrhQU0JQth}S*
zT6<iV`KK!t&C2NxW>7~tIObrcgINxiJ6Pdhwu3nies{3g!H=Y%gLw|-J1V&7X9vGf
z92^y0Fz&iaFZ$`aq_$_!!U6{id25jPjkLZl>F!~$!LN==z+~DN>ldZ(Qe7``@P~uH
z9sJ|q&oux4mA=J}wYnHH9)=GeyDtBAu#BBQ8ZUKJs9~qwF@2`QNzpZ8B|qU{8|xjc
zcCg052J!$IevMd5L0&J`Q8doiKHnyrYGi$yZ@V^#HaXbrU<(<3h^SI4qhX7PnSgK3
z7F*Lb-uk%FvUrDsoemB-IOt%PgWV4H@O9QK6Pr6`^6T6$6uhBaKl>c)cOd(VvRj0C
zL&_WSkb}bxj-<ttI^kBHh;ao3=$qqu;JAYm)S@m5xH#$Hl!F^o)DBKNIOE`=gG&zD
z-;ie=oOf`6n)9|e$EJphk;h_=f|{`WMg?4U@ZJr1jVg}zWCvF%v&&Q*HD_K<3hdr>
zGWle2ezCaa;5MfN7dc(rN$cwW9NcwK`dHklbyV}cjIa8M3|HxJCY2oA7Uy!2+eKa%
zUvE<Cmx?-%iwSiin$$S&FhU@oi!b@<O`@QSLN4xiQPD+V7e!o@c2UL!ToiRt+(ii&
z#av|d5^GMyOMlLw9sa;_@%hP^GfPPqrCcz5iJ$oXhAh%Cv#g79F79!0uZ!|7D!3|l
z@}d3l|0XQHMNbp!`TTt@8t#u7iOODSE_4^33*Uv|!gOJ~a9sSfRIJ!6IJ;S{nm$_6
zQsJtEGJ2O5-;fiVs8|TbdIc^*7nSx4;bO}T$={+?@%bBaZk)<=@qmjLeZ1tOl8eeN
z5)TbMJjixj{OaO27gbzTb@922ZZ4|1NV(|XqN9uIE^4@F?BX#OHC@zlQO`wv7Z1Cj
z5jD%jBQ9#Y;Oc@5!>E8q*~x*aIxgyR)On)ee~ElIRW3HobggEIY!?mqb&lG_t?cMs
z27hv}H|3ft5lb4!e%z3|=1tki1${L1zcg{t)I}>7tz9&8(cHz$H)Tr~EpN&eu1b`y
zUa#ssts>ee=y2(IQ;xYQA9wMDi?%LyoEL3e{Cra~wdY9}Pq}DMJe-hgZ_0XKsVs(e
zF3#Lk7A;otvXhIaUA*Svbr;XLc$OG*@sf+@Ts-gM_dX)`E!kjg{DP~tZ&cSbNOJGS
zUuX8p#Vcf$d1^QJstZPCQ#sQP_E7z*_ui6kxOkIn>Ea_7Z@GBe#k(%LxR^abyhCg+
z7Ue2et1?TaTD<4dMT=#RRQteHCaF5Nl>O)P9a#$-WYWg<F^BAe=B!WCW!qb_tBY&L
zlyl^NX0Ff3vD;F7pu3A6F2<AFUG#L(%f$fFg>)PzdXrc#cKt4h|2{7Iy7+=!x+Ry*
z6+AKE3#N&YpiAQ~T@1P<8(pY6^_CpuVz7&^I4&1MTr9pNhq)N;VkkN7mh8MkIa!#|
zOas~o7c^(loYM42IEvisq{g@y%fa>*qlxWX%G)xI5-~>5r(@lg+ymyjEhoB|L~e00
zgQDtUvWp*FOd$qbeCy(S_W!ng__l0yTYkr`)~`wz%*(gw_sJ@LL&egMyDg^@A)PX5
zpPA+=Qy77nE@rv-@3x#zJhNBi1Q)+h8;lS?Ql?yG;F^0|_CFLq7+2#wKG(&n+p_s+
zF^_a)r1xz(^McB<T;M8`*P^Cb3(4~vg}x)Th|EBx=b@m7#V(dm_FWuw@rR2)U95Mp
z!Np%L{&um##Yz|dxcJvq2CHQ*mb%dH$R>9r5mN1rWWd96lKUrda+qMb%Ef9|oguK6
zEO$pPKUZ}Pkv3KE$Aqt}8)BWSa{6dN+UR1Fi|u4`cJGd4X3%ER!o^l%@{ZibF5OXE
zs%3ZNtu(Nc6nC-5#a<V*BC=)P-A$d=u|cnSqV#`q9}$=yU>@dSHH<jYtx0sq#bFoM
zUEFYS#Klqia9vz*ag5^W;xzk4<?x+2LH$qK4Hi`{C~M)VG%Ws;tl>WTEC=<QIG4u2
zzFHCCdjH9bE-tYrF0Q&*SS_+giD$nTm&u~PiROpJL#?7~E@-4;vJB;-*KTo>>Vj(D
zLoRBq?eaGDKZ)zAFdLfI@4CqF@ZNtihX+RPv66`%?f;X5{*#}1soWm&c*y4=zo+8E
zxs1u{spy)i|4D|#Fhr1+s|VU<^7%p@3VX0UI39|4fQNfM+~=XFhhiSec_{CpxQ7xR
zN_!~dDfdlD52exo{W!c_`JbfADK#r=Uq4YcUH{9Pm@r3FfhyOI@A1%oUcDT9#8>p-
zREzHSl;KPFV0b*VADRbR{Eqx5Gw#X?ccsbBj1rayS^}A{@X%e^q@UpHt_ROUbq_T>
z_#Ofe4|u5LL3ju~L>^)f?M4Z1uc#Rs-<2=km7m^~{Ai}9{M~c|RVEreRP|8J!|1#6
zArHUYl~p{I;z5#qI7u0=QXW>{l{AA;E$94NC1}+2P|L%k9_n~_*h6g(k9bNMKJ~RY
zdRJ!g)=|Mro-J^njpAR0bv@Mc(7;2+9Yxmq9(a^Twg=joY0s>(OYrjcT`5`ra*C63
zBM*%|?C`MD!($$rco@MBduZyRnTNNC91qPswD8c;LnjX{J+$)B*29w?T6=ih!xNq|
zDNw7Nw^MES%4kt0BcUqhkJg)~h~dp~dk-CmA0myp=e-5p@x)1uZdJJ!V&2x%9-i^=
zvWHhZJnP{(4=;Fl(Zks9#Pc4GSIHQCL(K0XDzA#Y`C@0~)Jq;Zd+OMeN*PImjD%wK
zs)yG+yy4;FjHGt$X#C;u`HbXsa^U8ecSmL<Z>Dd}&Pd+z_*diT?xBZ=E@WU2AA0zR
z{I*-X@8S8G;sX!4(-F~}q<HzUhfh3w&i?mSn}x0(KK1Y!F~Ah9g(`Q6?NhYBYn|PV
zZC;GY1OH?sJ&6+!13V1$(Az^F4_|ob=b<mV%?$m%;&4VnmC|L5xS5gk_wc1^GsTI3
z%)=JuZ_66wVX%jx9)@`;xO4~wAv5*yRB?Zfq)+o`YWvLL9zMvCtiK={<Vc>*k&N^(
ziX7!(F1gFY7>b*RDa4_Naiq0}iEJ%LLdX4h4?pEd*3A}woQNlRSf3-A?BN>^oQ%Hq
zur;$5b?>(xzVq-sW$=Ound7GHM2;j+&g4~|qmnbB{-5e$riWP`rg@m2X2Ka1ghOGC
zoJqM3nJw+qY!7pYkemsVDSqS^J!M<oF;BF}nY^4c`Pow&TmHy4^E}M=u)@Pi4+}gj
z^za9T!o#l~e)I4<6+XMsQ!GlOj!ebVMW~R=ToOyD5H5*vITI#1z8IwbBBxCj|9JS9
z7$ZDXymYZD&HhVC<stQ!d00+f+9?Rn&6#Y@nNTa9%9*U9#Ch1j{&-kJsUIQMdRWKG
z-vlk{g?<rtb0%eTCF?z~3>!t8JZvVGJZ$rn3x-43!cHy_w`Yq7awVl(M~!kN+sR|=
zVnzh@B<eiurk?Sk`Pk!OuZKGx{`0WU!+sBEJ)HA!z{5cgM?D<#aEN{QNgSd69Ikwk
zhdnSv|J7Ux)6eN5IZplN;k1V{9!^rN<w~fmPNikxhg=C)8ejGmU7Ke!H;S(>&y}3_
zaKXbh57#|h^l*uqp{KawA^Qixh=R);LayX?u7n2ptJDCMQzddIrN0q3*kGFBZ+n>f
zgSeF@R^vtyXD&|ACF^BVf8M2r@lo7I2_HFp<n)o>M*$zXeB}0#$46ct)4vtt2dH^A
z%$<;eoKo#+BA*XN1rR9c^Y}Xy@c|!&edQEre7@?%OL6d{0*d-5=HuPGYNgH9TD{!K
z{_A4KK2g#~DIXPl+~cFPkM_BfGCs=sYGGeyZjEw2%KMo3tJ=bFE_-~JFwcq4DW@0X
zdwm>h6b;Xv+~<Rr{N3;4%&PdK+==eP@KN7Kwhz;X<>Nsg5BactI6eX&g1@hX>%;Tm
z`zT4FPJ7Dc=S~<wu`72H`iOjF`gp)c?Bh=Eq-36?)KmsD31-|ETM<|CQP~H*dw!ne
zw=-foqknsdDn6?Ec*Mt}KC1ah`FPkzZ6DQr)bLT$M=f9ZWvEpclHp&dTIxsTjLXiG
zaIH&PXZhgVG%&7p`b50wM^VQ|T_5#)d^<|C%aeSRC*fUAc}`Ek2!RGZq>m?kJmn+t
z(a=Y8A1&A=9~lcoV;_(C7?dZ;@x5r`qp6Q(K4=Evi;Q95WXj?5lHtBBeYEoNxQ{kI
z3Wllg^Ca}hwD!Spg7$}FPGp?Fp77C@ojETS=Seu1ZOxOk^HJ`W=;Y&RlFUa3A02&M
z&65<#n^4X2Ep9!Y@$syWnRKP`;Z^Z-q($E3c{0-Wnr+V3exh=!cHV?{%PbO|eZ1_W
zWq?)zUh(m&k0U;g`gqO9>!iMqNj?wk!ka#N`{?82Egx_D_{2w7AMcQ<e0<>JLz1jj
zRu^Jypm^U`EC2V%#+&5dhvUmtBW3^bRhBUgm~@~J_&9yZJ>ZjhlTUqg^U>W`wye*5
ze4ID=JYAC8nKRylR2wLIayUEHN{LREUOrfUz9H`G;|m|deT?wY&qseB1BrGYWAY|n
z`dFAZ8Q`l_Tn1{c%bT$A@u_IAkD=)g4e`NC{;uXt?#Y)7BRBpbs^v?*@-foKXf{IT
zoGoa69K~Bl!n&&kErDZwjPo&p0&+U$G)<@86Zw+yMA|fQd#_-OH|-=}`<U!wk&oYr
z2l9`PIX-^$@f}5#HTja6K7Q~qg%s(~V1|#WKBkd{x{2vNW^EQ+;L&LIX1;{EIsNh_
z^s4Z&Sw3d-_4TspNtIuA?=|t0kDq<a_p!jor$=l5;$yCldA^zm*lile*jtW>nHLLv
z{Bb0vG3qxTzxpc4<@bCEOWG12*drFR#>XZfoB5cJKgoMOR{8kL$KO7d`dCIDWBk95
ze>w1O;@=H1eJixg6JE{-nrHLw3i7}f`M(q`Uat1Bh73<KQA_7b7!iFlU&4;9_pyPT
z+(T@nqRXGe`IGGY2~BVv@+Y5Oh`0FI>SH%w@v;1Lyv@fBA3ND{{$xA9zDJJApKwDr
zJAbkwf3nL5%Q0nBdwuMqy7O`2V%7aV4){3e;}Eq+e{mpxLVxb<{0Z$adz(b8**`Qz
z=LnxX=Hs}JGW=`A04IE$^l{6_Z6Bw6oKExGWok1YXMJ2Gv9`y**ROicSJ^t}eQepP
z0#PpTyAwp|0?CC25&82H@m4lhjU8E6D2Y@K^d<RNT|MK5uY8o(+0FnF6-cO8Z&KsU
z7NuHc-J#~B(hg8Kz+LK%03+*0c?0AKRJvcz0J#E{L`=&GFS#Sg9UxDjLKK)z#q^oO
zJL7x-@&_moV2G1y9abwCC?6=j3=Ik-yetv`0g4AG5uj+G&J!S)77OrVfrPowpB6~y
zQelM2umVZR0Hp#n-JVrCPzgt*6wP|<cDVrM15^!AEkK0;_XO|*1Oe_1a9;q2J%22^
zKS0F*MgTKVh|<!f9w@6LFUg7oXfd+_*a2wyp%~6AkkmO8ZflY42Jiwf{POUc_}>Bv
zgNsCfFhJ!14+e+=+^QMH0W$fyZpwVb7~KZ~R0@=TkTB0e>9<K7ERZ}DC<n^yS{c_1
zBvk^ne&+L^#nn;)st0HgKnAE0pk{za0z4X^R)B{C)DDmpfG0cgVMadhm|CPr!Gw|j
zj6h~hod9(M<@?AEl#!}lfP+UweU7xCB4UknNgEnpNdhzs&@8~?1(VB<MvVeI7NALh
z#(@fTW-1NinVY7Y;^oFWg1&e*+dKes40%#ei$I-=!i1XEY=Llq9Rb<|cp^am0AB`Z
z8{o+RuLgK6z*8J)fad}{&&z^I`v4sSbPCWR!0Z*uInuje^7Q}E72sJ8fk7teuD+Yf
z7@NxYw_x%D86W^n!7m4RDZuW62_x#6LD@OLje-e(Ov`$OUr8qplq;0H9^j1tp9T1w
zycgiD0PhF*AW#d8w@HgaNtZPIPP%-TSY4|^7Z`#6UV#5r3A#u=4DeBaPsoA9NulIp
z;%ca%y_Y9rP}MWPl7RuA25JLBYtkp<M7K0idIjhmpnITFCVK?v$!-)%7_d!o<LMlI
z0`%nrg%ZZ0eL<ouR-2=KX(W*PL<N~@K!AaihyV)$3<@wf!1rWM3QK^Y0mcWI5MWq<
z;Q{}46{7=;2=EnUFhIe*>NGRrfvZ7I+0@BY#kUTIV*-o~FpffTO-?GL^fPa9$<0{V
zi2)`Bm>l4n0AB}KSSX=2fKhPN<czQTHed?BieP8XBi-~I(ef4%XQe3trUv*az|R4u
z1(+US7Kadkhp^2EFf+~PI|?Ny3njS<Cv=F@BFaX{Epq~Bg_9piiye}{FMKy0<Uco1
z+UDi7$8cVNq;SGS?1dDu0ILG54)9xmMFIW^@Na<M$=Fmi0saisVPf=pFG({DJ$>X@
z<`>h=@mGMq$%JdgtmfIT7EV~XG{CX|E2)}p38vdKx@>uX6;vPtRm24+nwibA56sB=
zqHwY%z*@E(U{io~MC>Y+Q@MfTYL>k|{rbF}StC!XQz#ko{dM7FbAT-Ywo+el1Ad|Q
zwlt70vlg}P9~Wxx46uus7pNexJHQ@t7u9Bfy#e+GxJ;x4*dO3PfFl8pQd$Er_2v)}
zJ5c#n*vR2Da_AW$d@L;j=gD1Z;5cW2G(fpH8Q|3a!>7~0nE+?gz`6gg|E+Ms0NRTj
z#dUEhP$&E_<%f!nuWu}zTn%uY(nRs!7+*`5bgAE@HVbf@oN!UHOZropj4GkP-U-lW
zdwjldlD|ljA&^6$hyVm~3gi;7izN94atq`U5ZgsQq0)0W7cen1uTbfkOt)k`Iktd6
zL4g6)qe23Og-WX88jP2WimY2CDJoD*pnH*|j6iXL5(1?JN(+<}Dq5b0a&)Pd!P6>!
z<dIp`BYIEhOnIS5!i<=*0_6m*Y{~kVw(L65Jp%U%)Dn1D;69!zClCq50u==`0h4j2
z0(89UEQNAF^A#?}#uP~y@?i@&0=_^X;0kyGPaaW+#?aEm{lzCI#i~lRD7iu)6rdl3
z@cbePZHbIj&lGq-psGMMfl30E`Sot%Aps^cKA487v^lx3vP$}r0Nv#*Q~cKATs6{_
z)rpyObWly9QU>Z~)aJRMwTS_NCIU?b9uas{puRx1KpkR<&j{2LSdhx#6hOJ4l<`Qk
z4Mma$0#cx%KqG;RMbwNy_e~<y*+f+Gjnkjww;mI?yIkeY^gI&tvY9}0fz|?#3$zeu
zDbPx&xto(0Q+2rT<0)+gkWk#(2y|&3wIzxKo=C&|1Zyb%Twp&%R3ph!nFmP+fsO*-
zW#aoxbP{-)sEaT%!ZRGBz{epz3Gtl3^8#lD&I!CA@S?yJfvEy733L|dC(vKuWr0`t
zyuc>{uL`_I@(H{v@VdYo0&fYtE%4<i<uZ7a{YS!G27Mo$2Z+}zrw$!wlxa+2brE=9
z;Dhv&?+FY#BlyZ&NIn$!NPrd+n$7$14|B#SYe`puPX&4k^b+_?;B)e)Ko9cgU@;j<
zH=)!lIg@NmRZP<Xjfae2S%9RsKwp6kNcsreQ@<*ihe2px2o;W1bXOKr6~3e(2#gjO
zBQTKN5Ev#fT;K$f!9;i(;L@G8nxO*EZ4gYmp!Z<}Q714;s05jjLdE>^JYk;dM#~bd
z+*}mV=Q37coWLZ3uhab;&(6;i69m{XcAM}-0j3EMm@M!O=_2sGI#wBsA>`hZTYhd-
z^A$~g5NadF9}Rchkg{@`z;uB%0&4|k2+S1tO<<A0EP>eqzX;3~G>>P`5%^KyCxMZ3
zRk{IP8$Szl=&9n>3De#+Phh^_Y9vJyB`sqM1b(G#4ps0%0!0%7Q;(@#{O<yb1^yQJ
zM_>u5!ww8rVcV3rKL!30V7zh5i|TUZ8x08mE3i~xg}_P*vXfdyVJw;~XOdL6syt+@
z?GR;ZTScB3C3t$|YO1g8@tuP);pRn?bpq=J_6r;!;RH7F^cR8c<o{k`6UQa6HBG+F
z>`(hl((#?52~StxZ{?bJhrmwap=h#)DsF<<C6qO3H|hJe7+y4CXfZGM3hWcg_RIY;
z>r+d_K@vjXn80ztzX8RXqRCO>e1zb!S4RYB<UjkpI9@c#Q7kzja8ls3P|mMYoL`D1
z<JQEL2Bruwp1)GD<cvUrV#%|`lJf!=1geLq5#l0+U7$>evLP;0Lvp+!a)-Doa82Nr
zz-@u+0yhL`LFE}xHw8W{mXHS~o)`btib@_8cSw#q@~%Ke2pVwyBWs<J1agFm_eSzC
zs}S#fpcuxyRQ0h(qdXz<hCqm-A@YUDAEHo*!XXNT7+NeT7^<xwA0|xUB3Dl<mT;Iw
zLi|%KIhOu(u@J>WlnPNgM2QfGW(xjFhWPb6WeukJv~cmH+0HDY^tsD1ts><@ln>#D
z2trf{aZd;>gdXB{-Ryfq+#iBx)ZE9reS}>+p)I;%sEk7Mb_m))j1VTr6~YO@MU)k)
z<GT+vRp)dam{*TWL^p(&9w{9|AO4`cU}PZ?A`DSAM70o6h&V*05S2q@hRT`3)RhN9
zbyNbka%AcLi^PK=9tu$<#IyTi*2v<?bHx+ZGm4lsDI)Mc$rFmAMWSc%ge}wz8M27B
zA)X9*@EU4|Xc(eVh^!Eggs2;$UWi9S6@D|Wc*3lfIw5GT;g8Od`XRDINPe+Z)F4E&
zPN})Y6P}5>;HW5mp=uI>24@1a@H7tbScn!OT83y6qA9UAMl|Cm($TPVB2y=j$(x7R
zT0CJCeX9_yi3*~qaxDhO((mwisN5*T(%Iq(E1w{1l}MPS@>Ga+A>Ih_W{CD7I)r#W
z#0w!hhUgR`DUm$OQLGkEhj@ncYLm@1iB}@Yzb%XKb0IpX8)5lkh(Ux|6Jkn<WJ!tS
z<q)rgc%4jDGTBxlVPZ?g!||&jUJF%v%f%82ONKJKyTx1VTc|Qz-V5<gnyjR3mk{r!
zVOsKex%-%iOD6A!_#niGAue2qKMK_u=8REKN+!2D)_h=X+%?3fWZ(!zB77F&^ALZ8
z_%lSe5Zyye4)INh9wB;?y+aHO(JMsn5dA}Z8KO@J#^LlO&O>!J#r#%TbaXO=zVphs
z9|yHE?o=}2WIBMu<hv!4fgwIBnQ&@ub|mKJYjB7m<n8`~l`Myc7!hJzi18u53NbRo
z=n!KFEL8Iyw<M!NmCKX!fz((E;I`DX6LCe(K-*Fr?1T^#LwwC%tyVld`oRoptw|w9
zt%wOw9=Q?tHpF)!ekKM&d>`V65Hmu|4Aqur3M)${(?d)RF^weKtBwq1&$*CbekE_s
z3NbsxkL1IW3B%pzP<{uh9P^bW6UHO`M0D{K)3qx4Wp0RhAr^)Bof@fRGC#yZigt)K
z?J^e-y$e<R39}uGl}di2uAo2bmf&8ADYuJ5EFt;679_e|D&ddtUm^YuaWcdyDv%KW
zhS(WmSBRw{mW5a!Vgp4o#EKBB`H2uKN&WPhma8aSk4FsPZ^>|%4f4@a$y#cRo$)&2
z^Jr~G?J}qSsZwf@voXZB5Zgm+3bC1DvMb)gA#Bf5+k|1Mt^CBW)JuCrmr@CBeLF%G
z!L@30OdH_t5PPV;LL3gUmzbfTT@nXE>?Z}As{_g=mP!cpEtM40avh|)9xrIbrkC~z
z6;z1h<fYT%C>7UK@!3o<zf{6B7RGp-Ae9?ObmW~5afZ|haVx~x5a+1vLtF~M$IhqA
z3u(ng*U6N#wK?ByD3x3eaV^C45LY+_gcv?i94nQKnXkOwIZ7vdfV0vK^3~Vk&Try&
zh&$Bb5%Nd)FT`CcoCvuhWJGFNn<G+tE4OCEMAV8ivUtL0?g%{DgW)=PA{83MxJ@25
zk~dOEj$BzGBIXvAP6|XQ$j3I+WEg*;NLkbuXGK(8h)^`blM$YZ`0qj}9-&5rnh{Dw
zC>g<x;6*4Ep>%|b5wr+pB9x6#A;LWo%0<{%Ey_1vlxN=-2*%^lRm4S6*9SB1WmhBI
z&qnejU;d~PAvv{i`9X5)5sV0Sqz<8FO=juDj9^7Lv^i$VCmobb>!Vyak;;`I;714|
zRF3dq1Q8*O5J$+25Jl>wZYIFe)x~J2e;IKRL6%M`QC*Zym{rlfbi#B?e)pjWRU%a5
z7y0RGQS&D=xfrX;!44K<ODBs;C)J74i(>T@^>sRQYDIWBLc<7+BGitM6(Ku9g9wjA
zYO1Oep)T=oNjw^<#SDS1r4ugd>P6}hZ_YCHBXtlTfpevk>_tLyy}eK*5!y72_~Ws$
zjUzl3p=E?tk@8kI;foQPkzTvhDPGMZFn{yGGD!<!zD!d0Ty3U+(YMk%!s8JLKM|>1
zm^Kluf+<dC4a+1=PQ`5_JX<E=;-6)^2<;<$KxT;0AwtIpFGqMKLZ=8%M|eKM3z0e$
z?is!ksep5)15?tUOINb~gPPIj--#C^ycDUJhkIIQSD&oHfjUR({5=A%MtCj4+Y#Q0
z@Oq?<b$uhkoBZexf+t?SMXopzd{ibO2L3lmy&Itm`^?Ud6!dzK=<h|!Gkd;a#A%C_
zRGuG2_&7rU2wz6{Btq8+JtFjs@F}Sop*vZzm-xC&@_B@AkuokVD3kD#t8~J&n5`|7
z^deVBpcCYa2z?^-C3_rG&W;U}lz*R|5yCT8$Ndzmr#SC(5jY^i5Mm(0zzBmP3?_&3
z=-uIhKJ=MPR~agXMaug>Ji-XJxkTI^BDf}3u?<7T`7+6<2&4IWjA1dxL>L?K4-`-#
z#<&RMBkU$VBTR@eF~ZLgeu*$CN}D|+Oo{Mygvn&81LB(q-$wW@!j1td58``{?zTFk
zgBCU}&j{1jIyJ(q2(u$hi!hx;A%>X(KvIqn+=FxLO|?*<Y%(X^{!f&bvdNDTj^7q9
z3{}LXkAvBKbIDf`mPJ?|VSa=K5&nqqXM}|jevR-uQ5WGi-aQ@j^r1x&@=_<S6D`Xo
zGy;<?c~%UKa!W|@vdN#9#a|Krj__}UFUltWkl`<@!)o#`5o<a$IQ*xmJ6J5`7|SLE
zRzz4CVFUXdVO6BkQr1LR8!>KKtWK9*dd2G^b(+U|%J|cnG=I^8$DV)mjo1`nbA;_g
zPJ}Jwkh5ZIgl&;ZWBI*o(tNx+9*x^TZjBjfyfaevja_8O2WrhqJ4zU#y*I)>YEcSH
zg#8f?L^vPeLWF}<I1x@pI7Ng<I6`zq>Y%fuk+O3hi&O#&eJg|s{L)QKnkG(Ah3*wh
zX`z$lbcC~HPVSo`d~_(}CX`Q}i*Th=CPTFuC3unS$EL{VWFgi^xEA3$Wjw-|Hrce&
zGkb-Ho)OqzHeqVR&9aFKK&67(6W`_lhY98>@I0bBX_%L^mS@Ds5u;#?LNRj2$Q2`B
ztg=>f$H)`o@u8`_u{wypS+xw>b<34YK4Kuy&NzRJ0x^0#n3~vKooU91pu#bV#3&x4
zM2!7MV#FvGE4mj=msQIpgdZ!Xd_W~*l#0Qy<gzhdESHpyQ6^ToZxoGQr(y!1l}pO;
z>sJMjtQlS|xhKZGF<QoG7301b_s6Ie<KY+;dAumU6C*Q*&NGK%crpAKCTseu+!H&7
z6{`?sw%K%vaALSI7M4qB-{W1zEeA0~j4%ez4B@0qgzqVr6lb1qt0;;Q%u&ni2Vzu;
zQ8h-jSS`0I$9O14l{EZdx{T{aTH5tM1;ul3QZcH>s1c)PjOW+KtfU-uU6w&Ue`ZC@
zcxE0wQ9DLfj0Q1ej7MTT8so&)xLyqUdGD4>>cm)gO&Q$k#$ZXST2MZzA0s<f63P`6
zP0&e<hB2DPXcmJCq*08<F&>N6(c%m!Ww1KEElpz36W5}ALJJ$2ncLpI_otf2Xc2?!
z86Gq=XKUP=B#zM~#(Oc^knZerj2B|GjqzlR_AxrdJnKeuE}uLVtD_Fv#md0mzkEX1
zQpXsbV(_m%pNYY<ENE4mRX*YIW&0kDo{jMw={{Hxrd5r0a>6ghcqzu4G2V*Nna##{
zEyn9HUWvge^1qo`uf}+GoT&Op#6OXt9gJCZTxrm|^aknPjfVoorB(<oKi-b<PK<Zi
z&UEoyljz#iA~gCfFQ2?0<AWI8Vswx3VT_Mrd=jH8`J`6#af}sBBF63iRk<2ZIQf(;
zT0Y@<IG?9m{w!UxhOQr0_K49lMt>4FMz2`?A3@(3U&QDgqYtUDLYd<@aojAQ^rOi1
z7p&>^K&ngywbUOFV<2CzkkDX0C{_{0L(*kbAsHN_b%lfgD_^aU439B_yqXCs6JNy`
z8DnpZeKAH+7GnGv<1gy}7-M5hi!q)0KgReN-^BPf#)KFXV|+~^Vr7M-SJ@QP945so
z*@2GQxfTA8rmujys`%c15k;&=!9b-uhI_i>zU0e0bSNMpAgBm-VxWQ|3P>7&1*iy!
zw1I+1NOz|qEg>!P1ND36`v2BC>#RBFo_o&3-g{<tJX<n4Z0((rn*Yx=Ow=%$95gEU
zLQ`RJ?8!;&qV3A6yXIi_(4CTIiz|+6Q#E|0VLpda!!!-k$tfDXXE**&%wS=P_)f!2
za#qg0e3pjU|Gzv(!`Hd;H@Wk-|NlPgKxF32cgk`{#19(gu@0r>==0*wlO9zQbxO-A
zPvkAo@Ka7c&@RJ`NypNX@rjEyEYYxm)UM%Y4NEnw)Ub*~%O_c%^@7^VO{+Aj{ri@d
zE68r^3-3Fw(Y~{q{Gwqkdvb(=S>~N}9K`uzJqc`_ifZJ9(rTr)NyBCh+coUq&`>_K
z$<$sgUec4T8n$Vm=K$sZC#99LeJ4AAsMxJxkA_{j@(--`PzC?KrL^3)TAV5^_iFf!
zVpGSJI`(PUui-3TqTvAfg$$_S4-JPj9M*7D!!Zp<G!!o*=_>ZShRkxoGBu4f>u{Q=
zQbr!v)O<mpGtM=f2u^BvvQ_4^hEtlF7wAjFFrqVj!|80jGLn+*JjawQso`G@7c~4u
zX`tb64Hq^1kIgxqy+lqdBN+j~JU*Nkc!#o){4%;_!GI~EFJGc7!(0(vts=<Uobg$>
zLRS$7j90x%M=>3@=_sY+Y8}OOK*x<b_8!(qJlE*BR#%>-*Xg)k#|^q#q!A4BoicK2
z8OhI8YhQ4ajuJX<(Q&Jek~$jO!Oc38%}Eyew9K%;xrRm@T6wtWYQIU`uG38pWmo|n
zcj{_aQkv!C+NHJyKbMhAO~Tz-IUVJ7RM1gTSJ8+oa?+lGEsr+M{8C1)UMec-YDvHm
ztg54$j_x{o=%}uvhK_t4b#&C!QA>x#%Igq1YU|K+=sGgb=5d#Lp^VJvsCrQAIQa&e
zQMmn?xKlH9n7ZP3mT5+DbhtVK9ia|SS1E_sZ}hBYM1!wmlI0TtBho?7lSD_VBi5BU
zo(H8U&sm*$Q6<Z?+Virmj(R%o(s8$r`Z^luXsV-`j)po4bR~Ej>u98du(yS}qDhpM
zF9aExEAx`CDtSn2k{d+Apf%UgLPu+k+Iq2LL4HeJfxfn41ItR9>J;|fdS%UTqpNv`
zg|<4{>FA`RvyS#US}qs&=;%PX#Ee(F3W++~QCFt?mTAzYtnBcC3Z}kSM;9vpbrn;|
z`ghauXjyq+jdmaV@EXZ7qfzKOa=(rTboA5FU&n(wdg^#g$KyI4($P!DBkbg*qIa%W
z2bPr&=L$2Q$RiaI(wRR!sw>HJY_NDj$CEl<)bWyzr*u56qmPc~NrwluXLLNP<2hFN
zpo)K?d}CosS-G^V<UIHSiKm}vH@Ya#zw+knyuLbK(Xo2Dc$su~u8@-m&#&h0{8Lu)
z{%bm3*YPf!uVa9YH*^fvF(gNd19iNq<E<Q>)9gM-SN=tLm6gu`3wM;0Z|e#scesub
zI)>^P#s+Q+{H@}t9U2WTBXx|@RY3GRx<dP8cNyg*1+^@vB=-9{M(g-k$0rmf)avN?
zK*xt<hrwbjJFT438nG4p`@akX)0Mf6*dqkK9;f3|U732v>zJUcH9v0>xNP1kjW<8b
z{lw77FG!X;mhjUgOHz)GIV2bzU*?)KRmWF4zF4VNEIg*MndRgxU0Ii==gu>7=b2>W
zHHFIL)L+cj@mV?f<3aI_j&IpNx%YgRJO9X6#hFLj7R)7Kv@Q6a)SfHM%bn-v&I`)P
z9pxmUV_NOee$ug!+!U#y|D&8-q%(zzT%0>|0kBlZG96nCY&Ec4#|j<I4YV+@QpYNa
zAOqJKSgm6XpVx6x$66ihC;@cr*0Em41|6GpY-YvSIZMQ>3xctbJvV4fG`U5myDWC-
z*h!YzrESZdx9eCb^BGvpJ7j9=Hn~)8x>2Lp+@s?c9fx!r*6}OJk1}7!ezMQ#qO{X-
z-}IZV9G{Anmj_6A<>f)LGlQ7QOU^PB=}pVaBV;-q$0&74UCUJ%`%%iJ{7m=qk|OH_
ziL<=qv0$qT@fcTLp3-qz$G<xA44mN*=(woke>%?TAd=yE9e=V)BNXH#x1twVf6f9r
zzALX>1-NCS!_p-kmnk~_RH!3=>-dKiJ|d{G;gXEdvXpY1;)@u#!obxAiW?|ufKVhY
zlf0`8Txlrx3GyIUam5U!;o(8xtZQ;*ZecF0)95ifx^Cur12-5D25K9Cfg25!F;LdP
zO$JIBxW&M&hKkwQQeKuca5KO1mbh_eA*1^rJ}YiBP|CpV2JSGF*7{_5S-gUzgY=yS
z!Tcq?qe~kKXN+1+nswp|vYdhP2C5mTZlHpJiUukhsKT!d6_pH({6aidLAI%&yuaS4
zAgdZ!JYU7je^NnyTS1oJtJN@2(?Bgl1xItX`rxd0Znjbi(LFn3Kr@gSNDb%)4A$8|
zV8AqB8E_1^25bZCD#$;F2EUFW=34>PH3XBVYTYw%<dD+ovCg5PB5T|oBIeDVBFdeM
zpA)s`3kFza4dfdrFwn?A9Rqa@^gpCEFqEmNo`L$g0?XW|AFd!@{zc=j4GkRJmVb3c
zS;*d-AsQQKVnF6b;qqM>S_#?MrUsg^v4_QXsq*xo`J3mK23oOC42&|++CUovPZ@aH
zz+LQ80}mK@&_G)Q?F`&&po@X_2JSJ?!9Yht0p)S|#Dy8>i%y2x26i?;U<4M(wwwy-
zXw=n!*EQ~D;64sSMM=#D>8iVd9tQ3=l=S9`u@s#LhKr=4vRU^u@Q{H=3_NO}mx0~}
z9%jWVs>KX_tvRz0xPZ<Q1m}FrP+FiT45iiSRZ%|9=POEr8$6l2!<$Tl^^AdM4GdsE
z7<kS=9|L_2ylmik0|a4v!N7|o;3k>RMv2$;;HBIjhg4MI2E2U5z^evcWAkeV{S3AB
z_^hJrZzy0cmZ{?Fctm@he6dkunKq_@2HrIAHo3#VTLuOh7-E1X9-YZ+D1RzSIu*Q7
zH^X=qs@gal+#?WjVVHs821Xd@M)<PPYFl@pqC7##Y~Wo3KNy&2;5`HH8<=EZvVqYC
z#uyl9V7!5`20k$Gk%5m5;{D1GIf$RBH?v&2l5{Fb;^2KkNmxlT*#Spt0*B1NM85fe
z_8CWtT~R0VY9-|y-r{Z1vy$YN_6r02sdcAD^f8`d;7bFu49qq#)xcK<W*C@hV48sm
zmE`nXcM<o7sx7`@UhX|xc<!iQtR&|c_}aj?2EH@!jiIz>Jg8qPQCU)-IhXejiSKjw
z8SqY*6@HqY$@2~TXkZ0Jw}A!h#xY`{fkg&>B0Ik>UOD423UaZ5B?gvJ)EoGj=MhTV
zwv^0XS<=LI%>i{uV*&NLRL7;2<tlbQS<=9IcH>;JhBBeOzLw-&Su&Q8-z81ba<suv
z*6>Xn?oY(V+?mUp&AGm+@tX?k-ezDsIl{z)CUzLuNm*o~w255?b{n{4;Ie@|q)7uu
z4IDG@D|ws^Bx4%bH&*<{Gert{t)ItB(%5xf;%6#LDx41)I83&p<Rqt$2#!$J5j1as
zTA&{JRQzEkv|=AOaKgY@1Lq9<Vc?{JQ{*_3<sX8*O{|`wl@;Bd$uR{PVgDpiq-Jp5
zz@G*#82F2XI$kVj;Key~2)^(lhmTTXqWHYBT(>R1{v?&@?{5SDP(GWu(Zs(7@=O#n
zakZ)BPZ1MWnz+iu6()+B%9=pK0nOY?D$5niR3Fl`w5PHxZsHmf*PFP(RP)ZYCc#MM
zb*A$AqgO4<m8vM45n)<sRGP6;++?DJiQ7z+GEvgR%_c##<gF%w=HxA=TAOj!ySIvb
zu8O3B;%KRWuA#S^;2N6<7!#|=J4|q&wWf+J!-q{2m}q38oQd)#OcR!g3MML=sA-~>
ziAp9ao2Y7{nyFGzlT(&`Evm2r!v)<!s+*``s`-UB1<pPPtEgxT`d|nXwM`hNa)i#9
z&`jv2a<2HN3T;3NLaq29m5u1Os*-LVjNGwJI3`jPSre`a&qQD%G_m%q#u>yn(d4wy
zs!GOeMy%WWA~scUB3&b7RmpQ=f_Z9Qw32)ibxhP_*YTr7%JMT$9TIg-Wu<NUi`K2G
zq++~*iH0TytkhnvDrpp8KFUH9(nNa`_n2tRZ<%Px#+qQ5CtuRkL^Bi3O@h)$r&vJ?
z6I?=2>=5_h^{PQ@lfbsP+eBMFZz`7t`sFf;lR-BuGscSNcI?s#%7jEfuns0Vnz+wI
zcN3jV&~@Qn6J7YZF`~0ch#1L2R}<Y>!!;V0Oq{cpR#hQ3EcD=5&k*<L&U9(uvSG24
z$2&buJY-_3iLXrbGSS<_n<m~e@vw<UOuT5~B@>UDc+A8zCZ1()n0Ug(Q>IF|!*ngL
ze<!BAC!S>UM<~<huT|yKCXrYqgUg;X(Z|FKrt*2%xk)2(1tTk;=NO$9%yUXBFinjd
zh`ywD6R(+g*~BZRnp|Er(T|0y%2R?dp=GKm2e8*o6)!gSjQ0lLP)!aXM=TOQ?8@hz
zf&9c5>Zd^_2AlYVoor%=iMKh>?0HhS3HlBVH;J=>VYxEJ3tf6fni$3Rm?}u^KcF+(
zMC$C<c*&XWeG{Wie85!iB;!G1jES)({xe1}u#ttgC`p(R+r-DF+82Mmn-B^C#bZ$`
z7;j>NiAg3i-{DgepOJ%1d|?vVL-yRDeQqjL3fim*6~#3Y<zCa}+6&brk##8yr|`ek
z<d+=x&Dze58hLOU2iL>~6B|v;Ffr4_A`^>E%rY_C#9R~Ko0wzbYZKp^_>P0sL2o`t
ze3N76xz*GxzpPYIWwvXj5G{V-*qQi|btWN|myF?k;<T7=Dtt3G{3laoyIYv+Z5H^z
z?*kS3=n@k@n^<9DrHQ2`mYFy-JfM|rLp3D^my-xP=!8V$c@-(y#2PXn-&sxlJu@Pp
znT&n7&cu4wvxF+M_c%jUKca0ivDw6a69-IeF|pOeZWDV<9KH93ZIt{bcAD63f+Cl0
z6+Ck~+ePB{GmJOqt6uoF!7n5^_5(A*=gzb{Gx~n72@+WG>XOsbzTAEG!$DTt#4!`c
zO&sP+_!SeRqC2-~znf^cTh#bi&?+>+^ea}Eto#WRf3OuM&YC!B;uN1R6;M0MP_MYU
zJWV!yQ*b>qW3piOy>o2%BsH478hBg_T`=(%NiiSe^Kp^%Oex{x9v_!XT&9q5(ZI#u
z6xSyHv~j`4zb5i56t{7WjUpDVurSQRa0^8(TxlWSLLCcNStw?qnuY2XuI9rQZn1Ey
z1wz?eV*wU!v~aD3>nvPvDR0{wEKtwJ0?p{uy5Cz}-ef5?LP-lZTPR_He)v2H`B-zh
z+Cn~8UC#SR+-9Mag>n|kTe#iA9ejy}G8XQ%)Do24$Xytd+Hi$a)<TW_%H5IP!c3?{
zn@9x<6)jY<P}#y1D~~@>fxx8~k1CeRyIPe^8>}wNeyL!|Ygnjh!Li_4sAWM|&@AW{
zYFjETMaEM5cjm>T#9)Dy<Q!*Muq-v%jjS$BOQD=io2%~I7DMkPm&cw3-$G;|wh&kd
zEzqLGbvWbTIJ;3>xU{-bCnlD%kfv<Z7KMIB2l8z0&TrLaT?_RrJZPb(h58m6SZHUV
zy@iGr3M{m+(9%L93xyV%SoGLo5VzXjNehiFRH-4O8nR;zNzGw1i}A3sxrJ{_6{U8O
z8%$c7-mW2AS!iwHZVL;Bs#u;j7VfgZyhu#AbL3BPZmnooKhxGy`FD6Q^UggMI#}pp
zp{s?C7CKp6RR*0c<t09`hWw$1WMNGWd9S6m`HT(eX5l^yJuHIgqRuukf123VuAsZc
zxJdchHt|;t`GBPq6kC|SA;|FZAq%}Mykg;13%xBoY~d*jPg{7z!lM=*xA268$4F-V
zMfbxRlV7|vQe~my@ua0R-gFD6D7&ef{tVk|;YABCS$NJuACl`%?F9?ZTcCA=8WQEW
zQd6=_0m$cT*Oc@*?`z>@OF^zt8}{l3jT*>)7W!KlXyHu@uUUBA!T<|zu=8um`)VrF
z6*Z9eEmaDE{x#*8n({3YRev$q!Vn9Ca^+bymEv*2TJ3F;Zi~!NOIf&RW@4G=5f(;T
zSZQIEg;DGZ3$rcEvG6XrgWb-D$vzfFvvn3ewlK!RSPLIm_|PIsKtNj<35GuEw1_dz
zh}d7;E|DodvGCVw6?ip{Z>}k+$lbj``_#f`iWl&uh0i%~7ACVNhlz>P#22jaYB7m7
zr>Vd+au)3=$7{;2zl*8lO?H}vnHHv5%B7#jbW7z~>$F-e?2Fctj3Jt3Dg4{1tCi}T
zTF|d8d}Cprh4~~o3*TAzfg)n4m}}vC3)HlXZ=t-wX>VeVA)fz(%>9vcXkoF1B^G|-
z=rfRQc(9QDaCe5~MHbi!qF}Mkv{(LYVX1{>lr}$zAI~ct%W@0*@6lISD#=d&PK|Dw
z8!^MeY71*D9Jg@7!deUK$gmcEwXoj81`FFPY`3t{!X}F`L2@fwVS(mR{(VcXzz?y^
z7xGt1i5(VWX|dZPriXH4XkJV1BERH9JRYkh_mB~G<?}wRDtk%f77kfBY+;|Jpob1x
zU`B)e77kEsURH?uv}aLw#NMX!{1FSkbGW}0$2hVihFX#tjY-)2m1!3!qo}w1!@@}m
z7g;e2r!1W2a9B8Jsnv3iAn%)9+8K(kB#-&3&Rh7C<mzQEPzGKrse$Atc>asETCT($
z)smMiT((fe#uYaHCP{oGni&4StlI$b4~1<`Hs;x?z@K<7YO93B#cY*m@=6<5*_c#I
z(sUKI%q*%U?PKC<o6!)GiD|C2ah;7fZM<dUdK)*`kTx~^fQ=h%RJT#X#!WU#*tpY1
zX&WVN+{`<d#qG8t$XjgOYU4H=6tkp8x|6-ox}X#<->=OMIbTci$vgNqq4eZsY?QT8
z$wp-xG;Wr&={YYe*x)XsJU=AlUOiw?PemIKdYN`YR<ZHCkk#0(`kAV^GB3GhrpcSc
zT+>D^zQ;yrL)fTo!?I!9$k@<q7&c5Bx{bc?sFc~v%uex0UCKv7&J{}FulDjBTbY(z
z8=kEUTh+#?@FLEAe(pYh;?2lLY@@!71~w8KDeG*buB~Q)tc`qIWl*KpL3XF&?!HF^
zcZKzAFyQFtk*ds}8rq=eLxGJ(HX6QH`{V_&LC8WID<<9WpDpk3M$yDZQyUN2=w+js
zjpjBw+30Meg^iXr?zYj^Mk^bwZH1+Im#qv;ZEX4;ORDd<=i&r$Wo^ly+SzDtqob`b
zGnrHG9-H2_vI8qQO#G)!Viq>$P+$=Ey*9eo=wai2wrHE^YU4f|-EDNU!Blz__;f<x
z2yzEUcsi%He1J8qt?WuYIXbyAB^B=we$Z~7>22d-8!y^;$;Kl#9<}k5ji+rqX5(=i
zPufbJFcjzsHYc};r5NWW?blS3K4arq4sPxlKK7gqnx&{?VYyH4W{=uRZT>>8{Ovk=
zk>O<<{cXA~pywX(ij97@T1zu0`>QtITd%R)x3=<9c-_VT8*h*d2CLv5Ms)VtURZ0g
zPXzCQxtr7;53(`X#ylJIIp{Xtw(*&b&ut8~G0evMHb&bRZexV4ye{7*L)jQ*gW#+0
zkQd%i<|>}qQM^Oee$NK|2guays4+Ii+W6SUC+t!ie;w6$e3&bcdOyk)D8u>W`?cjb
z8xw4NYAc~V-UgFNkzbe}hqHgt*AxihL>ph&_{zpKuKL!ANw&&p!w8+pHm2D4(pHj<
zB5o>sFJ~M2s<vEJTTZtzgM4b^8xGJEF*A3bZPPhZ&LT7R6D-Wh-Q=%?6a1C~G*WzL
zV=nn|YyQmNl=sf}Hh#!GTqGlT$p?rl_#^wATwvoD8$a1tXk#rI*~TIpi)}0?dD~c$
zBfOt&EG01%%W&PYj3n{BU{*v{k1wHKdL=)Uk*is4TUk|B*{GM1Ec|bP3gqGXiWaE#
zHa6JUW@9_)-^L~zn<?LH5b?54*{j)#o*B87ov=h?*9t~Ou|SIhNq2{hlcR#2Z2lJU
zahSJ@LXQKqN-SEY&8ZPky8dcoFQ2h-%EoUt_SyK|#!(yl$+I>N+c?7Kb8SDw2bK%U
zXJ*NHHKX=Nj2oqg10_FGdL6UT=h?jDHcr^ej7Xmc8mj)V!84zvI~EJ1;nOzG**H(a
z$jCFcN|SUpcb=0`9(pwT(5ZlhzieEj%yH1b!T)SrvXSSYh=a=%{x<$$Z)7ARi)n&?
z@m~Fsk^D;n%TYMP;;wK|)WKB_iaEHJMwvA#Db<w@cs`YpS34-~pn`*n4zA$?4sLT$
z%E5IGu6IzvK}mjbn7F|K9Ng%D3;X|85hOy|_iu7k;&KuIW#i3`vXb2D;1&l&lDt-v
z)GIQunoi@lJGjF^83$$g@~PrZN7-dcJD^uX1x?19B$JkNP~K5-$DCCu3K%uOzzXU{
zDmkd^z;s|asN$figBlKMI=K7EylM_MJ9*U|mA5fEqi~!m?8vX>KseAG=niT-D1FAG
z9L_j&eUaR=5a^hfPic~<#l5Eq!vW7!tl1762N7%Tz;)m`2poiL`)dlw&UZlFI0ud<
zzhRnk$K__WU`AfzAazj3L0tz~2h8i2@2EhnNtz^HQ`fy3X_bh<i#6q8RnMV+f+{q0
zP~c#>gB1=MIVf~6(7~Gyq=Uu|9&*sjK@$f}S!V|w9W-;$+(BCh?bvS)S~_U$pbhJ$
zNzSKSQ?+swObwH*m(b;1>={S-^|8zy1PhdV?HwgX2*7)fLyNhjYcz!nV+K1p=<MJ=
z2i-Z24!St#>cBrBdK@oCPk0J3M%`w0+09X5bc~SYtkJ{40}dW^aKEFx7w9g?xV)bH
zyDn+<zIv5%AmnV)+rh&Qo^#O0!6ObHb?~HvryM*+V!K{GPU;#*3?ljXTJeOV(6cA3
z)3_*o+QBmpp3RXQr*$T?d%Zycm3}1b=XCkJgBKk1bI{+xiw<651=w&0eI3wuk-}k^
zF8iEUevDK&bCjvEe3hRYDIVXI{~G&H^Ivx`z(M;HVxlhJa6kwhYHn#zj<;w;E`7_v
zAO~M^tQ`z?FvP)!4nA`5wu7PU0SE6p80KKOgAoo!vf5llY!*y@LD!B^4&HI_Ztf<%
z3OV!6@1j#d!Iu-L@E*<@4#qn8z`+=f^&U0(vNPF-EN~}F@a>NseB$5>GNyxZ4#qq9
z%)#dlCUD%hiBI`coZ$wIWghc%Inhxe{5&@6lA-IP4rV{tCML7~?F*(jv}Q_Pas=mW
zEd0vBGzZ@~nCoD=gBcEHIhgIJwZ}{c+$&wuC71C`^EZdxWk^Dje(k8FbzRnpZ^)8l
z3PaMy+I~+y|MI<q9~>-nu!z!tWPDuv(ZK>X+>rBg=U#>~(!Fg+Y7BmIP;XTspXqs2
zTkPOx2TL6+alo7!gix4ZNN%{6Icf(=s|q#tjVFth4pvcExwzWJY6oi^{O;hWgS8IU
zIoR!BkAw9NHaOTuhH|jc!6qdKu*Fesf%6Q>DY(Q@wVB$!OdImI*velGNqNYuraLG-
zX65a2u#>`P7*+R@P#fe6;<5jdyYm|x?%-GU?e<_VNoBf%_T?^Yzk>tpRR@PDcuiT_
zln2=@rjojkY|*IAZevP1avX6mx|>e_kYf&xJNV1NMF%I?UI%B$gB--a#7PII9dM>*
z`4mOsA6XW-pQ7dW9J_*@xwY^D8$MP1NuiVjwXU&V<1<s%C`;4-99(kn59JJHg(>On
zqqbTO{&qlu=Rvp9JQqb=T;ZaqtK3A1W=yo<>3g)QbEE#Iywb&0u0l5EO>U8@?k+6u
z;u;q<T-0=Nt&8hi+~ML*7uUPE!NsjEZgT+_H@Ya{qNI!Q8^ld6wSSUsuH#JkcCFxM
z7q_^$U`m3i?lL9evbpWz%gL3cT-@%e)yVRd$~l%hEEWIjq73WiqOyy!F3P!JzLkou
zLftR#s@Q}IE*R^|l`x}gDR{Y=rAJ&97gb%Aq^7!yYA%vosyI$$O^>Nf)|^rSaT{v6
z5H2DYv5VR+GA<k!uB#TYnhV{9!H?1$xm1`gC|E2PHd{JQu*`MBe<<06A@x`>hW)w-
zT@?RP_^yH{z1@=3AQ_gL#1HJ&5*MkfbRczIwFS$%sN;f8=A6g#T~sK@ut4rE$K2?-
z$LPO7Lu5l21w4E-;^CsuMH3HAJxG4S#Wok)dB;Ul7b9Jaa?#91a~F@gc+5o$7cE`f
z>!OQ`RxVn*Xy>B6i#9HHtq^y)xZB0hIe9F%b=Aa8DOziZQk1cJ_qgcbqN9sWF1X%i
z8d-V@kqb!won0(HtkKJemjv$U>Y|&Ahg|e>ai5FsF79{nfQufvKH(<u?pB#5mgItp
zWAUJip04s=inpsNk}1_#<|NJ@?(O1XQp*<cfF-#yf5Zh9Q-?DC<1U_X@rsLAT|DXH
zDHqSV=;PvPwtY+CGcKNWLH*S$mZW&(vY!okHPN4U@q&xKE?#!=qKlVYrIs9HNggx0
z>HlrkD0yByps~zQ@qRA)yLijRAQ!KZoY+RXI<SAv6%KI04cbEolyIi(9q8gs(#g5P
zrW-Xr)A2-hu!|ushP(J@ns}RkaWRZN{GlM;HP16Gx!zK)9i(N>j3Zn%KXQTkj*E9)
z%yKcCcU-*hVuFiLU5s`y#>Gc2K6cftF_zTm;zM@Yrx7n{eqtsanhsh1gq3Wa8Rx2u
zNZhh<LCeB;j_)w#I`|pM%*9tOrn#8t;tRgP#g{H7xtPo*>`~e?p4o@&I{Jc6b*YY!
zOp?Bu*eS=gVz!*_Vg{*nrkF|YSS>mnFUIX>HCxuPl?Hwenajlz7eA9VTzu<do{Ras
z*<XC;;(HfAxR^_N+mp|O<I=^J^d4uQ6RYP(7xWun;NmA&*$s(?z0k!XK0IA4b`{PN
z-OdS3Kmy|*Io&LEvCPGK7aQ1Q7b{$>qQEEpw=3X$v6A#)%MWceiL7z4mTw>_9@o^I
zVk_MpKRSk4%h!vIWPu@KGg*7E*yJim>fSkAoh>f5x(XxoT}EbYROtnGxY$V{=HVs}
zyIkyc@h3%=i#;xWadFJWaTmY3*z4kV_M3~}$fUIFyEy1#pNsuuoZb1mY}H<7@jm3@
zFzJ~?yjJ7na*kc$$QwxZ^q^R)MZ?rSj?LuEa>B(Qly5H1kR<A7PLlgBD=+<16cIb}
zx#QzA+=HB@^xG%Skt0@%AGd3?nVxsSZyApKi$A%z(!*6A{^#Nnt3A5t6&_cQ@-j)(
z#lN%y@YpLjU(nl}(?p)9vf>u;l-oHA_d1f;^}JuyQ;r$*{V3+)Y7f_XxX$C6N*4E2
zLY!+@W`1o)QVBoHk@O?F-cuSmc(}ns#l?chDn}l0WZSLzB|Mb$;Cb*p-0a~N57j(W
z_i(F++dP!@P|iasPtCJ;c(~I81^Df`OKJ&9d&=*f;-XBho~#(PY9-@Lc@Gsl<swpr
zpW~Ykh{_&XPRp;v=X1JZ?gZ=2jkuAi$`?)&MP12r4G%Rv=pGCYwLAz9ny0dr)%Fw^
zb;iS-<{3&PmU&)$o5ne%bCg%cm8J*VgX1Zm7K?T6CkQdknz)`y1H{D}6@8o(0uLd3
z+e4v;h#lpjo`?D#5)Y||I-asG@a0(#%~y(iPi;JT$r+81)cmQgr{J=w;`3bDz(Ye1
z1)jnJ;^kMBz^n?y>*l99Q%Fx?_%IPR%Z*u|<H{kY8DHyRxrY@VTCg`fyzODAhgKX)
z4^Mk|#zPwqcX{aH;eHQyduZ$7UJqS7wDZv3LkABX`4U$?<jQ;4gdD&Kr8nVv7zohG
zL+4!E4<FNBbCvU6*W6_{5BGUs{&6B8b@#x2<1sW)Rh@iLd%&Yo4i9^H#6wRH59LO7
zl`Dx~(aS?`4`W?PgAub`&v2E;+M^yG^YDa+Cv#8kbLHc?F(s%V4RDkg6oXIk*Jhau
zBLgzgvmTx!HG1gpp^t~>J@obPvWFLPBwB1o@M7-or@xP0^6-}{OL~eiU-3W>=LVj9
zRZ)Uc>#^L~lSHk5&BH(sZ+g_MVt|J?JQej&^~2z)+#ku0Z{;dB$irZ^=z`!XZm6dm
zo=Lz%*oOy|gdgT%xQ7`YW_lPw()BRG!>1lbd3eXe2Od83@UDmVJdE}*#>4v_y4EkC
zQch?3+HLtnVWp;y>c_E^LQ6#P4*Hj#<ed1ChmSpc;;H$O0(>0bd9~y*-c$1+CHY!U
zQfz+a;d2j@JxuX%)RPlEe7B<T3r{J#uJtAFOyU<;DN+BWhp8NTUruK~`0^`KsV}E_
zDt`7q<b0AJ0c5z!o#kOR>EFW-o^tq^L)w17_BR|XUw-YO0fA_Kuk|fI<SF!?!M=)z
zo$G;V^|(!#=V88wg&r2=>hL3}+Lu4&#$|zriN4x<?(!u;+ZKCR;$dlyuGoCa>YqKe
zT<1}=M!?Huo-)4ha;1k={K-cVAFDmAAq#uh=V2{HnTH)7c6wOvVFNjZEV-kwNFX<Q
z*z948hfVD5-_=_2jzCRkTRm*^5OmhBd0#L=rxD1;fu!$ueR`oV$ApJHd~*(tZ#Vg+
zy-xS|YIg98hhIJH%@ISlKyqiwUGRQ(j)y-yob+(e!y%58hu?G0yco#&N5x@Q^?i+U
z?5Kxhxn`d5aNJY*1bLIuNtDAxTDwK_-!qa^9!`6>NMY{b3>&yioaI1!3gEgccX=NE
zq(~uEv&sF`dY&#fBLc}h)KdbvI8d%QmptVH@egIujJ(Sp{-!LNqT(?L<w{Q&ZhZdb
z%b7!MlDNW0Q6DvY)bw$skE?v#;^S5y#e7`t13qr_QQXHhKCbg|y^n=MNK0UjIr{jq
z%mSD0EZ^XRbs$h1CGbr?O8Cl`zNC+#do)fE6x3V-(dqPNUuo@F;oE$a@=@ML1s}Kj
zDhRQ(k1{^)@NuWFvhc7uTru9E1?CQ|tdDX&4hE7b0|<sj3B#PZ6@3Qbq6$Ccqq46?
zmXcW|YuK;yGF0=?bC{^kMhy`RZML<5AtcNMQOk$$k@!e`)b^3_;rj4=Xg+iwrVq;p
zBa94RaSEjw7kIq1eWem~d^Jfi?1*J%K;s6)_tm5j`iOi4J}4n6$*K3_JQB0hLdlth
z6(f&iedPPfPrIS7{HyEusOzJiuhyKrWcJefzKTI>z?a-4c}Z6~2DI||%AqXuA$_#+
z(b`92A5DBT_tC;fQy+vf=F906(ait9888jy!&U#!a@x{Y(9L99KGVj>T|Vy4J;sm<
zQgYW&w)N4Dy**6y3FSMX{4$gse022jc#J1vbn?;J$IBsJ330EFE<PR%&@(_+AKiQ$
z;E4FR&qsG3AN%-({pRC-c9D-ad_2I1eLU;qISz!6hkQy5Jno|x-$NWrHuLGc-ad0c
zYji#0`4JzF^0AM^mQdDelwp$7Cwx4~`Y+d>=Bo-a^yYfXhXP(c=kYJ}?|Q~3OnpJo
zw?rQw&--}A$E!YG;830@e92b^7y5C%$iIY=?p1x+5MOEY=+Z{DAwih?`RLDI=@-g>
zG4l7UxH*!q`LH9|G?I@r&JYk|ppQ3w4D&JE$5Zsi@iExP5Fdklm0F7(%j{Q_PH+2I
z`9Cq#2g6dh<$o}e6^&$skC8s!_3@sMQ9k-b@*Q7=((_-`iW2~qlj-|DM*H}{$A><~
z_@LXsSPsxS1yIcFIfI*J7_jq^uj0{&ElHIKcWNw;^D*AXVjoL<Oz`n3iPOioK0fpD
zxsNY>O!X;U@r94cKBoAX#AhOf)-o@WL`&$gK^VOPhAoTt#MVfD<zt$USw3d_nC|03
zBxm@TN$UDgxy+sKth1BpQ@5~oKxgdf7sVVOUz2^TfT+=Qb^B$O_|7LZJr?-*$;bCT
ze()7;`FwWT5cT{#N`qMPd7gRyN1sWYW$jolB;lPEi^z=Y3Yi??oSjFsSeAeGv6M~r
zvCYRaGKi1$J~ps#*~#Rc2AQ?KLP%Ie`R`+mpNpW6B}bM+`R{3^=4J1#qm0_GV7)i8
zW5<ileE0{kiR2ec9{+hcZXp50%KvRU8PmrvK7RGF)5k7KzjwtRc3nrE1s=Oex&uY;
za~@%QO6?MRN#P^JK7PW-Z>;Sgv7%+c*jVx=!F+hR@2<=tQn-&=0YpGQBK%JI8Q}T=
zM|~XgaoNY;K92i1L6Tsf`}o7hNgt<uobhprLU<-?o?%1&+N=EE=EU->k8?iG=P35x
z*G2a>nK%6movE5`5P$i&NS_~e>}%qG{O@G3^b66xRly?-GOJ@rCFGG<{^R3ciuVA;
zc+3)c0j>y8G*Dh=MFNo8Sz!45QKAsPDXt6@W<tl|;%YvY$ZG;z8=!aqW=ATM$i62P
z{0M#9R(~a&MBWep0m=p_7vRPKHwCyOz?}g~1SlEcmH@W~Dqx=ro0|ibo`z5W%*A|L
z?h~Z~+|I%X(ISzoD#wl!@$iNolPs4GP$p1;?Y$G3f1oz`g>EY415^l5H9)lh6$4ZX
z@aCAfN}#shl>^WOIUrHXJR)|^o1hG=)dSREmG+C8f!b(HPUKx16}BObCOp>;kO|N<
zK(hc^06jpR0CfWx0n7kFfG~g+zz*OB@B*cCV_5FM&6>mZ_ET;N>k>)ZoF9N^9{dDd
zMxy{pfHc6FM8*`DUkj#<Ufo@%J6|?HKHoM%5CeQ06BZ8->IJAD5XTiVK!X4c12DC8
zK>#M@ygpTJQ7AwG=)=Yo)jT&2l*r;{tx13#JM!t^T`5)0-pvEF2ykzJE&*BwXceGs
zfOY{|vlW9xn*etOYW<ex9`2AzI+)!Z;K@|hJW#tmhadov4LSwr5Ma}<8uPq#%oXxK
zQHTe0Gp<7b-rO_v#_t+{xd6Hc=n<eBr-Oy!zT6$&9G=Si1LgfiHlf4et0%G#klwb(
z-=^}R0KG{60geUe9pK>rUj~>;+6(Y#fMEfK2Y4*N;{jd?@M?f3SiJzx2Y7+K5#Z?n
z&jxso+;m7h6JT8`nbnl#9y?X8ha;&Zv-jbX^8_jOMb;+(VZr(apsQYytfbKE{%wPo
zbM>r}RWS?w0`w>SkS5vZq;n$}5a5km;q~0PK~@e7l<AzN4Fa&Y&*q?#0}KxEHfz3G
zFj{R$piJjndvk}V^hE)l$tpi3DnLdA7#Uz(fbjuFvFieS5a7cA@3Maaj0rH7w6RCL
zA7C_Fx>_y&NMJnf*(aC@YgAT_*)Jw#<wpTN4)6(wZ>P2(E4lEXWTyEhk6zy^Ma^Hu
zgaDrf_&mU;0k&q93gt{zP9)O>m>ghAfJp(kQROO#!7tb3OXlqUZ<{9arA>WNfN24i
z2UrncdVm=L<_GwZ!r?73lUx(vn*g%{%nmSzw0bhjd<6f&iEvK&HXvvrzURPo&|Boo
zp80ZafK}TCkG;pW9|Ft^z-;LgXNvy$lIH~hehRQSz!H9IpGMYL$Ue!Ji%8YO#LRqo
z^N4`xtUm`z!Y>Q3l<fIV4oRcE&Iy81HY@pl@;e{k(2ykqY$TxuSWA)!)a*d)lok1E
z#$O*`LjZ;YJi1%VXp`amwK>2Rat&q31o2zG+!_#C3EN4ZbtLa_QYc$TGUp2mJ9E$c
zcXLmGUnu$l918GjfV}~J3$TwBey-7fvqM*UmXfwd1T;z>AnT1$fE!L7h4)TYJxpOp
z@V5X3Oa#E@)KL=zA>dvaB#s9-5x@@-g!m)CNlMNTcZN6>;56lJ$OR<Muu-Js0RIFy
z7vOw=3jzM(h&S;54De7L$&>;7O6hmS#hhfg6yP#hhVx*6esv@Z+%-_76I+IJ%D(~f
zLKF>gWr!jno_t?i5n@~&S#*BDGT%0Lj<_mBu@F~>IXUxzg5aP`zIwAZ@U+@HTpQxL
z5I2UnDa7?5ZV1tTx%SvDQBamq+2Eu@FKEh^yLJR6LX-?~TZmF2ZVr_e?v@a@hH6$_
zP)BaBBk!9`zpsE<LRjWsZVweO9UZVaJCqJlCPb|eB1G8`<w8^rQ6)tA5EVk4t|Kdk
zYIVUn6S1epx1v&rhu>20Zr9b7RYOz@Q8UD&r;1gsE331aGewP1%|S{|4x%5j&&i9C
zDYZjnLf9dk5LyU5gc-sL6$aNG->J07Mu?=Yq>Lq^+Q7yc3Q|J!clt`{Hc757f1M({
z5cf38++A0OA)*i+Lv#ue^QRC^Lo^GKhRB9!7@{D=*P{Z8)BF&1LeveFq^%dCeuy6#
zqW-J)TwO^EDV4Mh_+)NpJ-n`L6hek*9HKA;t4*+aW^?G<Fw-Q&g1VC3^+jD7pApSN
zv<Pu`h_)eGhG-SyWRlk=MC%Y7Q+f`QBj)`f2LCAT%5}x|x(YC-U8p97_H06~z)c4)
z**XU1bO`a;Xtf9F%*B6*$3r|3qDzRbAs!6TGgQGo-9mH^(Idotxl3|7yXbz_VV8Iy
z#JReXh*+G3rydd4){_r~=oR7-j!UT4`Mo)09K_!X8P~(hBkQ$fv-TKAyq;`PPZ9!-
z5R065o(%C+i04DR5aMaR^9}J#h-Y&JhRHBx*mEHkZ;ShoU@jFtSWhJ;c)6Z5)@m<?
z=o>1(YbMxwiJikVTlFM;4mmfy8loSY5aFQ+{X@JK;w)bn;`I;%_?Hm#Lc9@TV2F=G
zd>rD<5O0MT8DbQhKUfS3F*wAK5Tgl(Ka5DW7)oZTCx?e>3%2&Id;)F{3o)~v+)_`D
z2tix<ZS^J3?{HY@y~96-c$aiCR8ZghUI==-)gG!0Mq@&Z4e>#!9N2jIA*r#xGNasI
zU&{KDdYezkt>mB(UxpY@ay64rIZUB4vrb@z>&wS3i_b$$WS_hvCh_6=O0scX^aXq4
z9-TI<$*k%yk%QxwQ$u_eVpfRR<d;QaT8QZ(W^h11RbfipnZ{eRnYo|%>$WrA9M+%B
z;aG?GxxTD;Kzze~+nG<NHJ*zUWd5muxgov}l`)+!;m~teHJ{`iVo!))NU<S)3bBrq
z9AaUJMIn~4@)RaZ#A3cP#L^H;*y<b<4;=ug3u1@&?5CFWT>h;Hu`<Lewtc$FO|Uw|
znh;DcvX<j}RP3&=>_PmAJ_amo;BbW45@IXaZJXE>VlxN2zN7_#=I?s@G~-bA#s+d*
zh#etzhS*LfeXll61_UVB6=FA~*`9o=xrkIiSLB)v6u!Z)A@+ti65{tzWg_@3#C|eP
zh<#*yX8i1@@_x=cAP$B&6yh*hn>p6kh-7*m^M1~4k)aj-XozE!_GHfx$0-CF$P*zt
zG?2u#VEL&A>P+w7Qxr$^|Dn*BD%=*Ca$Cij+?}@@$nzooq&$pJCBlUee^DAoxGBO#
zjx1$+gexOl3UQfoEK;t&Zw7gPhxjMNzpVVofUl(*jpwFY1YNd@M4*9>WO+rTKp|+G
zyDGw_QKEQ+Ya$gTT`a=YxjQsN@cy-YKEe$V=IzVPZhsYCA1N0p!VxSWc1EsD=otQ5
zB2o+HTO-^Sp=5-cBis@xPy)IbQMb=C%^#&A+#aE9gmMw?hzL8Qpa@GxC>$*AjFfbx
zf{R<=G7*SU$inmnvV4S!JQj-z5jy@+$YXf}`FjIdDN-J2G-p?hP%T2;2=yXV=gkOi
z1TR9(2(==Z5v&LzLhT581S101^O*=*gmF?Q(oWyQ+O-YU!u#1(g|!+=I-g{&k#+<p
zQs#yoYc=YxhF3!UhLVaeKVkqo(g@iIVFbE(#jJLuk|{@#Qb5sE%`?|*eVb>f?IetU
zKHJ+*)QOaF*`#WV**2fes~@33guB!q(J(?mgr*UiMQFsXh|nZbPGWpgMrfS-`-2UY
ziJ7mZCX-MG#B`(Xt9gW$5n4rP!G_a~Hjq5GjuZ?IvAf&k3a>Pjlm=rP%C-^OMd%Wt
zYlQX@?upPTLgxq_*sBzbD>Z7RzHTU$=kPr`!5bNTv5OE85%x5cpH2|}Ybd)#xGzGF
z2=|lZ#uTOQf|lRz5tba)Sa={(!m!3_?Lju`PDw>p$pXneSFZ@YBb<zID#F7N9*Hn3
z!t4l-MtCg3yAj@t@OXqLA`FP|MuaCLJQbmDgqI^c9pRY>eIh&`;n@hpx_OSnS6_kN
zWC|pSlV0((hrSTu#RxA&3c9m#fdU)pQ6R|({Ph(Q`5w`aVxI)CTD;22@6veZwMell
zpL{)1fH^M~$T0<SPJtX4;mrtdM;IC@E&5yR!@*(*hl2zeVSRzpU?1mWTePbhDQA^o
z5r#(?#V(yLMv&yDi;)p3Y}aZvk|mA`G6fm!9oBqjVf{vuPWA6c7#-pB2oocWi7+<8
zC#1s&A4H&+6v0$K<e)TCZX_Q?_?Y86QdG=lo@pdUHj?8>khB6sN}f~NPl%M40v(ch
z`B{X8+cXxw;A=k>Uq+Z3VNwL<Wu6>i3P<fz!Sa+wl0HsfMN029gFU%Zn?@Rr@KYn@
zQOTg2^2@|b$`GcOuw=Vx!JLTB6<8Z#9jQ0Mw-FX|xFdWQ(fb|qBm77~v_!1$6?`Az
zhX}hH$%~ETJT`}EDRyc^JX^q*N0_!de-S(9qF5M#87`V06V_1`qC(M4pU<CJPl^uq
z#xI4-B4zMh5n*Mnu$<kpPlcJR;t*^St4TZ;#G%6~f#df-idzen&7D2GKEj3w`y%Wo
z5mI(V*u~1Q^8Ll;2-_*vB5aAUl@e*F*v3BZFDUtW@N#F4Y-ViLNWHXZkc3DWdm{YG
zPe=HLw3mygqf}>sKhaC`Hx9(9!c3t&K<O9Z_XtNL93ubTE{~9&x8@(Fv|Osu*^<;k
zKd6R<@>rx&Dj$z<B2oro3S<>O@@(E86iS0dlcKUqp*$VoOoU7fEymdh=OWw~<E9wr
zNum+1h*31AvJQW-UBg6PjEkg%2!BWThZ3WxycB`i4K7E@jKT~xbh)8;{FmLrWK~=9
zX+-0Pru|QGP?1<!75S2v>SwNuadnL1v3loKF^c61BxC+`O^j<}Tp#0x7-M%RIKk^;
zwYHhJPU9Idl^9B4#hk?~aCclHM#&guW0Z?=bBtSJH67d;<JK6r#keEJbA?LbQ!2)#
z6WQBiwcX$YG)9l@q*t$`qAE(Wu`M%9Jy0gbCxx=ug}8i-3Nfn1s2-zYtjr&kVpL`|
z3gw1E$#zwVv7lw9YOJi%6zqjvbt<=O#HblV#HbxBn^&zECkth9DLbvxxNvG~DD+oq
zRvAR5$1q|P#Aw7f#IRx{G13@z3@1hqgSa$qjLxHk7b}=77APUP_xD-<oZTvn5ygme
zPcmR+N3%?2De32#WmhoUON@W2B0ol*SUGagcuFjqy0KCV6TQEFj0Q2t4)jK77=uVe
z{7Y8K!Wc3}*BISmG>*|EMmsiyPsV5#qg9O7F`CC{5u>e?E!nqPFmSt8Czofr*FiPK
zw2ATRQLW7ujoFj$%9ZcVoq4luu0R*Qdt!8;&Y!J|l}`>$7_?S*jFq*TWyY0Ey-m9}
zMwb|Oc5cLN0*U|o(}nlN=pN&tn3`4e;J6GB55#yd#{IDh!CO*9CsbMsCa2&kE=Hx=
z0S`_ty>le@NQ_5wg@<!zP8?KdJQgcaOy>>aO_BSajPVplKgGBdPseyB#)t$X6Ff`$
ziE%l`-!b~cc%C#6<2w#Yj2B~k5aYubFU9B^<LwwjW4s*Wl^Czb7{K<%=*K6ed@WY0
zDk_o4`29(uLsg@cHDpWS8!-mP7#w3rj5lMv6=P5g`lm5_5!XmcI2=`4dalgr%F7<+
z!A#}DVhoS*E?>)f#uyo6RE&3GC1Ck-`cBlc^0>BPfsWrdt`YCY7)@?stq#;46N4gR
z^ahQqATD2t<U@@X?|&5I;}~DXn8to!9b!z3>FtT}F($<LELNc?w3iJzC_W{1g&?>P
zAr{H<pYxAJbOtR>iZM9`Q>aXhF@?nTtN4=bTB};ReT@nR<Xl63C#2!@7&Btbjxi_4
zdNXrGJBt;Q^3oTA$|45E5RUBY7~jO0E+x}j5ag4Npe0v{xiP+vu_wkaF@A_KFUD%J
ze2n=qevI*RjHTqw7(emTZ;HjFe<>HnYLT#r!}O<MBrI(@G*8fKvxLI!EoI{2c^RLK
zu_9I&xm4q<BxgyvinMfAW8uAHg%ulkEU%?Bh_N}w77p%gv7Y4DSZ<85frI{*`0hj@
zEfGxdxryDlS@{xdjj=6O_$s@|FOB7P_D_tRu|l+_#*a$^ZaO~QqS1qq&+LwsK8l53
zW9*G_JjRI_zs1-W<8X{4F|r?M`^lI)#K9N`a-Bx#59U)ll)Fh?4J-dUWmitibS#G3
zSRRd)Vd9>~@`=XE2Jr`l66HKAz?Ux-r(&F;_<dI}HR@^hr=BqM{_LT`AysgmBN!_K
z#6`;g7=MvC8%tvQjGG|{3)63hg6sJog=&mXzf+h$#L^kpSpE~^Uy6|gjT7W0D3YLB
zg6av?`zV^=)&#dDxH7?232sP$1jQ0uo#2`T*Ctr-wkV!}5!@%g5yUZ|`QW+)*C&|Q
zSm_^Hch;G2f-0tqlawas#sno2luU3_q70q9zqzrzIZ;u}w<K6MNBORtZ!BqcXSq~@
z+Y_QSqC$c@65N@fENeJflul44VHR~+x{2Cmayv<@0cB1(zGt)o0if24$P5(|R8CMO
zQOc!Cx$~K`8q0PQSyeSna?2o_$QlW1CI}LQ32G$}3Csjmg4zi(36$7R(4&c@K26IN
z*eG7U+(a4)K5n9PQ`9in3FGhJB}^!<HrG^Le%nMT-u(n0F4ZP)6=@fpTjq$>PEa>N
zy#z_3pp~-;@)I?!r-@p>k>G0|DXhb{O;eudEE93Peu4&x!kcZxt{5pACRo!%79=Wh
zJTIB<oG<6Eg^5x}zt&!FlAvjVhZ8)Kpjm?E?3M(b6SUwb60}KhSAtdvb>?}kb3MjC
z@?XU8AsE`-3EC#OCqW1HSc3K(f=eo60`cd2ZPsdxS7)~C-zw;sfVwZ1nUC_`1YHt5
zkl?{Ysf@ZN=+3@M&@I7z3D^*-dIl6`7R?j)C-{4jpl*t~qw3oV*(W`D=LgX%LGMIq
z;T|ISO;mV01gu~<3<U@~^U(y4CFsw3@@*ux1kWdUA;FUgo}#o*@En`N&Y2*dVJG}s
z$edaH7cbYinLde9hthe5T=wuWjb3vvCU_|UbxN-!U^?c$iOSjWa;{AM+leMB!R4z7
z`th-kRT2R%m5Vl&uO}FgU~qyV3Ep5AofK~-c#Bn{3uuDF=anLw&ky2YHI)qy6xL{}
z)J<=*sv8T3u~B=(P!3$93=_L_YAS~(D#OduP35~y<){Sjki}AzO7U)j_Y!PRup`0y
z2}URQCc(D}#v~Y<;PV6%6MR6TN-!?L_(XZFd_+2A^Vex~m!j$F6Ee&8eCj27?-di+
zY4lXDpZSc8vse3+9Mn(wuyI#NOYRp5CMDdKGJz2$Czz7p%LG#sP&q%RsRGa@HLh$b
zzhae+7fwr5lKNhA#G$5=mopR0N-&4y@rj_FcQ)llGf6im0%bg%pZPj>pFh#+@m+$s
z305XpmEijXKafEZETMczFrVc2RsO;RKT?b&pdRw4+_}PLZOuugmgK?QI*Sr8D5KQ@
z(Ph54RFL^O!LkI)`H5z7Y3@A#eU*lWna)-usJbhk%1oYDv$qp$WEUk^OWBfOJw;iN
zVg3&0k)bos_3N|^iSi7ou&<Ek&52rCY)P<{OxjF2mA&9*wvkzy$v({_%gkJ`Gr=yB
zYl43g>`t&J!HEQakT(<jn&1%0fW4RCw*>pi2nmKallv0*o%F@c<kV)WOL-hjaFOpn
znI$m(o@Vk$g5MJyOTd%?oYanz8fz;LjoEDrczK+I@{VX+Rik<RWP(#1i;?0l^4COh
zI>EUF=M!2IaW=ut%_XNcs^*xSjxb7@=JL-37uZ*Ie9j<i&#E_EOz^)1mss=43IyhI
zuD}%zE&i08|8fvhT$|#$6h%^H)Gn6d>J(R`D4OER6hw?^)LdSb;=*CApiSoF_Wb*s
z%i<}nN%4MjIk&ldW?M`IDyCrW+gx6s;)WClr;Cy)kYd&4LYh2oN^xVZ%*z>F;u0yC
zAg1DufD-%W6t|?9Hb~r>f~f>HH<v8a6moltJ5qE{(S!F>lul76Mcou-Qj|@RNui}E
zm!f=%swt|asF0#!iV`hk<rK%8%VO^Yl~T~y&1s05@G5-6yJGb@kLT(sm{6}qikfWZ
zK8=n~W(!#>g-B65Rhi0Zt)LBk<L643)wYGyQy3}26j2H@g_Xif;is@ug$(1Qa8nFe
zsu8m~o};EAf^xL*GtBt>SPL2Co_TOf{@M$Laf&2GHbs7_yj7{SPE+N+MQa7m1aac$
zIByPYA?u~6pQ3e&HYpmUXqZB#Xq=)TMWYmjsWQaVn$J0i@{OJ?G;{F3O;R*X(IQ35
z6wOj4kSDj0%~N!IPigE~CV&ZV4q2<UN>OrKT<tT#iRP{pck_iQI;3cu(px@5x!sN*
zS}0bvkj!7xp07IVjasdBOwlPtmlR!794^dsPSs3wZ|+QG{(%;XS-PdTFU7Wx!~<R)
zFN?O6-L@1miNO6S9!SwIMgJ5Jrs$dCDK6bpJd~mrNscryS@cfvaEeD$JjQ`bRqh*-
zVvkw{7Y~YO-xHnZDPVAR+AoX66Der&sJ2l&nd@F=HF_q+vngIo@luNCQuImjJlnWZ
z?A)ZWml#*Y^9vj@P31e|lt(amI`8#O@p6h+Qczd(YO2;D+;>xBL*;7Omhv@Heu_~k
z-r@MBcq7HzDTeal6mO;&oPtq`Z*f3d%0a0Lspb$6s*!~<^MfI&QomEV!4>1M6#ty{
zMzCEi<?vJ`4rtd>(xYi$OF1&d?9(1C9q*=iFU21%<;Ucy6r)LpDLzawCdK%cax9y6
zR-?U%Kru`x!yG-FVivZPObh-IdplS7<GDP#(2P$pfq%(jLKdH<_$)=OEJPNcr<j=H
z5C<;B7bzyC_&LSW6qCt`DZWkdU5YPLOieM1RU!+wl3$T4Q%p})#@MU2D&_Eu6f;xh
zL&eN@l$^Z7<cSObVPNu{6kn4Q{}y!e{Dzz|Oi=H{33P6X?^FDkVgV_+iu@sWo|ijw
zM?>HK`6Phf1Pec<SeRl-ie=TXhzx#>Y}`sNPL&bdY9$$$-My89Tz;{YT*kg-t5a-G
zv4S${HL;dsmtrL)Op4X)$w6WbN3E3trl7%vmjt?8pJGFbO(`~~VA|!4tne@u;md^V
z+zo9>mBx&Pttq~`M)?3UxcK<Q20O@!tHm#*M$&nTT`6{RP!@_kEPtr*<k=ex3uSq4
zir>g7slw)E@Yg=}Wc|#3R;eb9^%>gk=@d$<%|X_4wV2gP9!c>#MQ9e+W^pvdu@rx$
zxJcPWnLr{*agOwm;$(``Db7$BHkOYp)2`^OpGvX5mHeZXq$nnwJFOvCwU(7y%kyj(
zMKp!RFa<KkylE%D6Wy0<+1B!Zlz5cwSzM9D<rIHYpdHHQW${l6h5-^0`rlmP=&8b6
z|517~{>t#WqFG#-RT@s_$Enl4;HoUH&Z2l0#j<dJQ7Hy^W(Mu{t(C%)=j*b#K8w;>
zl*!_TERe-5S=^e%jal53Mae8~&Z0zCxe6Dq7w@%J9uY6MmQ<QeZ!N!Fr&b-eWl<`N
z+q1YMiyfC#Jjl+|g;c3=r0&cruzK#7H?>wam$F%u%c6P~bb%|MMTM+lw<=kcu$7gm
zm_;S_YHL}fjf(rIoK=3CEL6>+TJA~WzVecQ;Wb#XH`F-R%&KAKIM&W0lf?sBJeY-+
zg`S1XqHz{R7G@Sn7HJk%7Is$APn?Cr-pC@zBFw_ef*3D8`#FbK!!x%4G}c5}jNKk{
z&q9?ixrUJ-|78luW|7Yh$)bK1b+V|N1tW850VK`bex1Bxqeks?gDe_m(TE+=Cjb0`
ze0rEK->Ma`$!!$yc+f@`X3?gN<gZP#XqrWbEIMY<EQ{t@+?B=MS+t-8SR-0x(K?Hk
zxpI+HS>9=rRUiPgxlp}En9Zl#s2Gs8tV0&<IgWHrrrSwYEgk8i&-2hW>f9-d&RKNL
zqFWaCvUB207k0}O<%G;l97Qyz!uzu5&OyH{?q}1Mh#pzxU{B30Gb-|u1AT6`=$XYs
zSq#YHjVyX)(L0M5IGR~JoW&zqJe{S_3?9wmvF!h&=}W+ND&GI!Y!N<{T~f(Xo_U|=
zmF4x?p0h7=&Uui1-}ikj?W9CPg^)cWvXn%Tc9jriCq;`jd$vOV&z$f7cU|Y2>ppYl
z%$en$`^?-chNUq)jUj1e54fVa9LmfZd2}mH#>-dDmB58OH(q49JeJ0ssu-09pFW-j
zbI64w{6t!XOW?)u1W%{&Od6xp7(@KIp>%+sP2;&V=)IW@qiq*eVxEtCJvNOO(n{}_
z`n}|L(Y}v<04Q^LDUI=Iyqd;qX-r7t<uoRy@k$yDqe*S#pJN8yq%?S{;#-r`%AAC#
zGKIJld!=4>QoNqV)HG(ZwP{RCV><COjhUQNH~B_d#rL5-AP4jJ=5kgV`CG_0(@G4-
zN(j@*Hf<0pw2*Vtn8(+DRd8+#IX{gBX;8>Qwk@wFE##s!7N_Y_7}YhroyHQbh%`>8
zu{4c$*gP&Mek+aTY<U_VrSWbWE7EvBjWubk<Pv^Vu1+f{9*1QWXQ74KXTF!l^%ul5
zU2^<msSnuk@^UQ~LRt;oXEpL@jJ7UrDoG0A*$?M^oW=&ykTgCgmQE2H)1YqBrZhew
zHE?suV(OjK@YA$1<|WS4Y_`S$|BE!fOyjF~06BDDr?EK=GM33pC;E}vcWb7^Uf-p$
zC5?k=97^N+G`6O(D~;W0Y=2&COXEj2iEtV}q_KkyXqqH7K1F7G)8x)Hg``OWY%`6g
zNa}ec+>@r36b{71fs|oi4D63n%6VUDA(ym}O%A0<Mt)A?a2kJbWYYMBUnk|~6vx1?
zET3PA8^+8Pzoi+A6I}BAL446d(u)i8DLOxv#!2>WnmC@u38G@#9NMZsI9Dmd^N-1G
z$zN%l;oxh4hO=p$BbDYlP2)U?TN>9m{%KrH<5C(|_|X<h8vb`0&t6DfW_xNhr2Rg3
zAiTXwoa9z*qB0oyCyjqe`O~;b)IF>aiPOsIAV9l6C1h!m%+he1hTAn1){sv_ehsUB
z^b2Vypn=vOyb3b^g3liTB__NjX(9u&h^D5Mnh8ZU#m~HhFOF4?&WdTuDw7vo5Z|fc
zE)Dl;sHov?4J9;`)lg1DNe!hmTx=mrYamVAbI_->g%Xf5?0ZY4u{L;WUU`<`Pk*|&
zN5h;WDW1+MXo_h`8*OIZr{R7L4{E5ap;}A%fTp6hRf=JXRP>gzM@v~nLsbpqTFPqd
z(LZX_!i%K-Ay(K@?F~wA_Y)d~hVB}AXvo%()L?0_HKa7;XsD|pPeTn2kMQX><)Nsi
zhFTixXvo#@)6UfTmXaH!+L|Kr!++Mehg6p73zdC(Jq`6WG}4fc`^Zi;;D^2!yc%lC
z+U}2oDNR$}3=9oHPDA3Pt|`x2yIRV>T1ry`BgGJKG`Jcb)zD0Xr@_}irPF{fRzhm0
zkQy!@@Og#bra}#oru@2OG&I)m!R{1ceuY324Nc=55_aA;=j$3eXy~Y+rG{1-+G=R0
zp*4X_vW-TSJV|f=geg)Xg{K(>S;{;$wC4!N=a)_zI%|09py<l6-K}(AyKs~i33}q9
zT&bI;#OMzmPR(eW(^Eq)4KHYTQA2MHeb_<`qcrr@&`-k<4MR2MhO57Z0U8DpRmO;;
zr~E-NFqm(Z&6{x5=eCmo85;Rp$zd8sXc(y}fy;1??W^h+@R+6;-927b{{pfg_-lBA
z1vHG&@I2e8;b{%eX&B9MsGIeShG*mYE4Gr9xzj-wKT4;~B>4Zcts6^}<{#(1ELsIF
z&&wh_jy=-whK3m$#%q|M;Z+T<Y53yD0xxTLMZ+Xb8JJJhC<so{`xfh@d}OkQDe;Fo
zSF8Kner4tNx`x4PvfgoWr)!w1VVb7oDKtfAC;_&C1|yXF%+xST!#ra9B%!sEZ)%vU
zDM`v~;w@L=L=`;o&=&QZpuCCf%K350*QVxG&%;|97I9s8sO(`ei9gqxg;ExlXjrP@
z8=cGnyrW^6hL1FSOdLL$Sgv6uCs9*Tdf(-=wvsF2bZa`fTElx9KGc-wLzaBLm3&`Q
ztnW1%$b0!9P6@0fF3nWjn05TbLvnqb5@`HaYJ-N2#6}%WbbO*=6X}eO!a6?H@R^1`
zH2kUIa}Fb0qG6YYFNu2^wrSX|;cM2<`PHz66%zBi<b2B|aKzuV!@n;M0`hh%`Mrj%
z8b#zuS_ppMO8F|`9-CC?2Ms$&6WFlHVy6ZwZ_t6ssaBEzeVdTlke=+;ut&oo_DI8C
z4f`}4WK+LazAN{0NaKlHZMpO+!2dGO&XkwYe&;YpL&H%GziD8o6k00Ls{L0Y_F-{^
zt)=sd!{YZCpwEBW{xhfNDRGR;S;G|#S2di_a8knsqWu(cO2cVVdkyDEgj>tM*zxDZ
z86xu$pRwBc$LB3azDjF(o|L4uq=%EdD-AAcxWpygTK>)D&z|OH(T06kYjvEV1GH;&
z{;A<V4Ou$=(bTE!hK8Fg`MUU*gl>@%jx&?d&~9m<iyJCs5tnY$kx!@YtJ-bm*HJ)6
zK^<jelFFP@XXj0BEomb|zcIA9T;5u;RYi2%p`*HvgpQ&*is>k)qr8sdI-sMJj?%h1
z8sDkoE**F47_q26Z5t_SN$n9Obd==N*2@1_<wBCIJRVib=qRhJutYNw_^MqF#Zvr*
z-J_#|jw(8;>bO@&MIHC+ctFQwhE$lEcb~45{JDjo-6j2;RMPRFj>@{)RNP!%d;$eG
zt>ubsDe75q_N(cNTmG<)hjip`BdfGg0aMz{$>V8J=*ZTQ)}iT0>PYFRqa#;Gj*c2S
zYU!x0;}IP-b>&j>(62r*ft+go4T(jRQBGYfN<OSYoz~Tnr=x+6h8#&Mz_NL|(wAT{
z7A7l_$K*!3vfvw9H_L3JPC)#}={gJ@Qb(Y})M4pxbhx^bO{*vshlQ;xQ6K>tWHI%0
z__|Vb;nA44t=lMtlaM1nRb+H(6f5BZb;g*|FqXf|raB(gF<!?69nEw!*YUWHQ94@a
zXsM%@j@~+2>1eH^i;k}Ru8y`k+Uw}RW~>nOHp#S|4(htlJ4B7PIURL$B6{pq@X#YZ
zztWlC-J?F&O-Fb3dWtfF=)t~FSy9J^<}LvmQF4w5_tB}Sj3GLP>gdPu*(L_+7^I`W
zjsdzlFR<j$HfkF{o9J}?<X~Oxfq8M4xNA>p7?EL4-UuDTb?}y3JI28ospBzSxh<ly
z+3YrwT!kleb&7df$1^eTBzyf(-KXM|2cI5~Wj#w|(=k@Zb2>(|zh`~AMj4}HZ5#Px
z8~Jw|`2q`c@Ltq0j`&<h{oRVSl}ta`?!QE8w%xzHM|)YvL><d@yvvU0n55%P9kYp_
z?1+vxIB_~&B?7mVujzPQN7z=<&k1*=Q+52h-=D54UcodS<Ps3*)>bl;Ch9YF75Q`)
z@wqB!O-YzqG;?&!)$x{&MLOo`m`_Y*@Ji0zUXA|_8a6KAm`oK<x0O^XAkkQ?<82*F
zN$@$dC&dySn}14C$AB;anyVk1nV&qdWn8&6<;|`B3LPtTY-HDTtkSVs$A>!B5$AQh
z&vvqroS@}mdRw{ihg6jv{#y3B5+e>PgG#bfSk-#2&@tj89UsTQrnYkUfmGev*g#B(
z9kbA8e-nwnj<0llt>ZJ&oQdLd9bf3msEs@g_UKDu-4?O(Sc<9?{K1{gOY)?%S;wBX
zk{99ch>9E^6StZ8UdL9VoPiz&wsE4_7X#%D{Gek8@j=JmI(F*#QOBP;j*;dNXLKCW
z@iV(~A$K>c<)>MopG$*+eLD7&0O~lXqw{s8MNi%Dp}Q4h<kxe#G^=cR+&`@27ahOp
z_?<JT;|Nz4<3ExT)@(>EWrhT$XMVEvKK|a{TTr%NsDwm+=s43>7H%hx>o}p~oR0H4
zPU<+tcMpp*9O^B~c;qzkoMSRs?awJ=<wr@e&+3XhK~qFhY&u`MpyMKEq+yb}z6@tf
zs&ZM!6%sT91q@u(aZSff9k;kV6S%J9UmZ927vN}6U9f?2usNkcvSO?X!rd&jO)9mM
z|8X!4+-4}8$!Dm)5|8R6m2{KBA4)+3g$xuo00XxhC~TmJfji=2PyC$Xbi7q7kCR^1
zK)rUdn4$iLbjw4(yP1Z`I}O}rptON92JSXc!azv_r3@7ZnL6SB3wTP)p#K4rH;Q)`
zi?RkNc+I*g$Y5tc#(NA@Fkl!k4cu#>qJbI)9x-sAf%^?SY@oV<2Mkm)P{lx1L+J^$
zX(t~vP}xvE_NgJy912#d8OrVdkaqGRw*Q=<#R}~o`6yv97HwX(fusSNl!`dbcS~@S
zlQNKF;J4rWUB9M2+8_$%lZ0y;sAZtOfd&R@8>nL-*FaqZUvEo2wM@LVR^e?Phl1Ul
ztRl|5)J{@NGq0WexSechppgO1fNm)HW7<%9?^n<I3T~<bG*E`6;tSA=kpbI4a|105
zI0jq;k%5c>&wy_rFqEW*`bE-EVQA>yfBZfr0t*dg(AxB%_G3HQm`$oIn;2+n;5eta
zol+`z)Ic*XlZ}FbcPs91P^!JkY-ymCfldZG8)$8yje&Ls+8Yer(y&E?thQWA$9<ZF
z5F0zN{q1E(L-|ByYio<V7VRbBE(WM(z@Jf91D`a}hP9X74DgoHNv1sw^fK^)fwcyD
z8|Y);H3P4+?*{rAc$&4b*#-s}7-3+ffq@1F85n9{7;*B1KbW00@N#?A0LngSd-7C^
z<ZuJO?o=zQT2d(zlv^ntGw`^9r<kv+K+K~IJYnET1L<^<1?bm>7Aw@sSlC{2Yr(3X
zHSnB)mkf+IFq-W*@B-1&!1D$^Z!gPD5@Xqh3u@~{%Rxryc)vkboh4$NfpzZ)#!=!L
znZQ;Vm}FqGfr$oQA%?%9q&Yvgmy|?byx>2)&7Wc@W5!nv(0Tiyb>giF3ab+@iKzyr
z8F<^k5(CpYRtDx6m}_8$ftdzovppY(Sq9!@t0t(p022>sl$+C1hQ>tHZ`}Qnm}g+V
zfkg%u8(3gqAyMw2_LiYUKeS1qt;)p-g7zA8Ur$pwvgW9hz;vmBcZl!?RvK7lU^xdo
zwqCj1UcPI9`)cQeBElS^Vjbiv1MeAl-@s}X-Y5=N&r5zHk{u)!1J)2f(@NM)aqWj3
z69d0+<PEGh@R5P-#2Eu08`xmrE8?MnjYJHC_9^(BU*V*0OOZSGDG^|I>fM6M{TkI}
zzaXl2kY93L*GqCkMVQ=)P95ZC1K$|fV&HoN-x?U#SNo3WI!*;<rEw+uOPz$Rh6)X^
zji??b=^lhIg>ekMy~Dsx1A7hZGw>tnn}OXV3ms(ZdP;mr>DVqVs4h7pJIHOV+&u=m
zEmQVQ`wbj0aLB;V2I#+idu7n;$U%|_Uoy5k&kl!K$tz0lf{4VH95Hazz*z(5NG=Tg
z&c?7MoC{89LV0ldlV~41+9kZKgFIp2q=C~0{xWcizyfiwgCvppvV$ZkI1`fvii#-h
z`ng)(^$zm9feWOHB<}_;#%Okl7)A70FRs?iqc!Dae&}Ph92jki=`{n_4cstrlT_Nk
zLmid+`oDblo7BIZ8#L}H`*oDJi0U0xAiw_%%<3rL@2Kp8N%QlW$ZukjiOD7km?&r>
zG!dC7Wa4%c51XiNqOge~CMuY?*Tfwriki6FL<v*Lsf(E?ZUQDq#JH;`fxXkjw;dI#
z++~86N*pn!B~6qvQPxB`6O?W7CtKP?8P>m0nedRZ@pbZe%bWP6qhkHhpYS~<m=dmN
z;yx3VO;j;)KMOQYPW(Mp$;1Pu;=o_&DCxe5O12N0c<QV$-DFi0)!3c2Stqv^dWhZm
zUHxjQhfk&)13f29S{R|8iTWn8O(ad^n5bbQWhy2=nKNXU4f|FZL_A`mrinTxa!rr}
z##2%)6SYmX=Umb>N#;CD)-~1fEzgYII5bHTCYzCFTn$V#G+~=?Of)i)Hes4rSWIf{
zz6pbkkL_#9c9J}4iew(;u>3z-rV8G{E7?i9Y#1H>m<UXGCVW%5uA+YxDrRRo$v&MV
zJH@f3L?dIOv5A2u2AODLqN#}vCOVpU)I>8AtxdEs(VVk9L9{f{%0vrO{r6w!BzH7Q
zcI}rpzmt6CA<X~NZ_BTn<g_HIrLew}{CQ6OPA`b|rZVT;)k$_T(b+^#6TM8u5a?o}
zn~Clwx|--aNl+a5S0~wnpB^vfZuM!P%1pw&P4qF*&qRMyS>uv*)7Mnal*quDd^nZA
zvs~ZFi?;a#IKQ2h&DUTPLrjb@@w|zlCWe`K!o-s%hI0Ua&mL*wF%E2JIl=`0o9zDM
zCPwj<m&C%(vSnvEth0Q%v!rgxQzo7^@r;RQiDUEBPnmjjn>xz_o#k^TMw>V@Ufk#`
zdDQ)}lq}svj^z+d5ign;XW|7D^g*|&P8MD3ykug$iI@2~VoMh_P!ml2@Q=@nT6V9P
zm>uM&K1`P*sqWLnob9P8CSEnM$HZO}uMs~@tTVCR#8ea0Oe{6=j*019I40(rm}g>!
ziJ2zeWIZO{`(DiAx|=TSE|M_Einh$8Hv9?BG0~%o%==i(H?hFPA`^>=PF#s=mFmJ<
zCa9cA-8@F&;WqMZuHP`Z#8e8^G&yH@=+(!4>g+8uv7BEqX_$t0O{_4nifHqSSjkZx
z<uRBDNgQvfM6ucgH6=(G-#8}*x5`>$^0b1rMC0Q=OS0OM1?7h(+P)*YznVw0(2q=f
zY+^G}l#^>>qlwQ<d~V_s6Pw~jPGl4V6SVYPR6mQaQ;5&>3-0Gn_+OdW{i*oU#774-
zDh5;xl5>7ZeN7boOf){7`j#t;18!o6i7njxo7fhwovow;uL-(IAKfKZ<?150bAnFz
z)I(^Jo7`#QN7i6s7YAXA;!`p5CeKs5O&t6wl{)8h>rQ|Y_I>QBiN8%;HgSMYIrS!v
zn>a)y=O;}3%DG#twqA#0`f&e|6jAqxiK8ZdGx0l-{}07lr>Q$B-XEk7(^TxpKRKse
z)XAN$%y@gk#7PrpO`MC{bBgrmpmv%Q(M9>k{)^bi*&M6%Hc4c@>mtvaxWJXTBem?7
zf6)X}o}({uvhGmf9_Uz!Iaf?vCAqdx$ig)f*G>FqBFmy3BK{@T?GZOf2B!*o-lORm
zJx<>=af?LzSc(kiBVFXayyR_`vZl;$DZ~GKmfE25_Iejtz(UEc^2>rrnql5<p|FMG
z7GQz@nj#j8S?DoO++m@pg%Yh?294_Swu;Kfv|d+vr-i#L+|5T8{<^9DO*Ft{TBSxF
zQ!2tW?J7%KD8tts6mwA4LOI^rC~MQ^5%*Y_%Jx{OVBua1EiAOOP|?DD7V2AQVBvlX
z4_FWuvMp4y@Sufi79O(j;&M^hQUtt;r9^K$=2W#nlQh!pe01agl6crs$N7Y%bPTFn
z>X_fRtE429YdmQoWuZ1ZXem{M9G0|bcZnKth4l1Am2bLudX`Mf?7Ui*A{11C{{97#
zYbgt(dKT(h$g@<85>6S(Y`IQ3Rk8|kGt<yQBMZI-X(4SvvtU`UEoIuHTQE3TQv|tQ
zO->0j&ZGe&A2HLh;9Br3<#me62^1I+PZ&O%%)r1>{Jo5Y#uh>gn;F+B&Uvxx|2KYV
zVxbuuX`!iwM=j85uf!#P>HZYsYjAw{F41g$SJ}!!YYQVSJZ7Pdg|?hl3q38gv(VlG
zPvYGzbg<CTqJuJYwGfOEoh%iDrn9B?He?L)Cqf}F`FqqrpgV$Y?A_N2pmh(2sF#J_
z76w`v#PXK%PTbEz{}||NDWe{;>F(N@q90(U11wO3ksgKzTNuJQvar6Z%IA@4sHGyQ
z(VsRc(r^nSEX8B|I(Cdn-R#FLjIuD!B6AE+Sa^~%YhkQ~rz|{e;W-PVIhEJ^XDmER
zyt-EsrsgE&P&`MEA)kD**wIxQbiD9qnwFkhcc)%p4U@%-?8{j3XIDv>5eLRwm|)=*
z3zICoY=KV8CvxQPRh(W53aNxZt{pjMlPyfK@G3Eoe6wYBUyFg)EoFd1Mj0hUOljFM
z-NG9dwprM2(cdFxva=RGvM`G^TUcRXrG?oR=2%$Fi6CBCiq$sXqA@S##W3q(&O!?e
z2>zCZMVzUhwg0+Gw&CBsqHH%=qnlj9p|-Hh!g31~uDuf@GkN2Li3YpP<hvF=xFY(D
z$Rf;~vkbVv91CkLthVqT-(4!+x4@(28rDzU`=crCM2c#GFJAV^ulvx#It#S@x&IfR
z%vCB5eQaTah0jSzxb(OpJ{F&{k1K@NO@6{zJDJ$TzQhhL7=HRQ3*EaZC4?_6d}ZMq
z3*TD!nn?Sd7}ZTSek_ZOi_Ml&HXsA)I}2NgNSFPs7PxG`w?I$DuXdA^H*rzZa%x34
z`GbWW7Oq&hYGEgv%>`xQD8FlAmxcWn4v><J5xe>BZn1|*zN|O}F?)%Mtn(M2avus}
zXsUV8!XYjw3%?MlexgmWvg@HK9O2E~Bw4#W5B_Q?SNT+EJlswGX5n`WXDpnx@P~yz
z6(-}9g<}?uTOc7iVS%i+tKB4H*pc1AHZYT{GkPI7O(IF6_on!W&Zg#wS7wTH7S3C^
zXwgntZP@-<q0yG-f~72asL4it%il!rE#fk}_MM<BMg9)%>@KfaxNf0{jXP}oW8q&5
z`E2C3af6?>@E<YIR{o6{!r)ds2n;tsM(b_18W47Q%Wh>!%E}AaC}`t$8-;C<#aGBy
zV@2Gk)?HFk#(x>{hjDFKRZ$zoY}{$%E*onqsn9mX<J!2*Mhs9QcDIcZwo+OsWuv66
zWLqt}D?3nL>F%<0{HXmtpT2_2k@)l0#&jF^*r;HmtBr0p?qyXr8ro=N<31br+ep|D
zHXg81$wp-xRc!Uc?cZH3=Lc;ik$JJZtZFMoriW}iY@?b@Z%*n*Oxt-f9ytQ^-c~(s
zA%ScgNgH)+<l0Et$gxq=MlBmP_=(^AN9@?q^l$&)x`#Y2B1vsq*+$VnIqRhOsjiJY
z8})6)pnIp9TKM&B6*G6;p%llqferfh=Oc;_(l#_3Eo`*3q1&|kMrb3l)n?eV;o9(Q
zST@%05WH*~j!hxB7}Ye%)VCpR6&5Y9)!~lHQ52w0+T}BhLid9rW23Q+M{P8-(ZmKl
zAvYx&#4eF({zI>KbVE1tYe8Dk+y+S;FVekMHd@=@+V5nejg7W8jnL7aV?HDQvhI>(
ziU{Aq1}#r{yy|ExH7A}mu6NC0AgaF~O?I}?#a0%7ycjF0yNw<;p0)9ujh;4o*%)qP
zgpJ;u6dQwV47SnNMn4+^Y^AzD(%qlkzhBbChJOueQ4X~6Wp{a~yCSNM&EyapLv6(@
z<;B14uo(WIf&WMwe|MLU+ZbizF&hQ0`IP&V*({#0m5$0&HlDWeq^*AR+~m-vd;MYY
zOx%8+76%<x61~wj#;`&g6Kp(hV=PBtwHU`q+^gb_y<p=-&V|yR6)xQi|Cy#wfR|Y3
zPC;qT%lwLs$u_1C8_P=ckgwR7WGk(+8~gq0J*3e?zG~w&_V*7l)yC_@E4ujJE86r>
zPUZ<KYXY8F`HGDlHg?*WX=9d+wKhJq@g|q5jkj$qAp+Q#OYE8=7TK6*V?J@uR$6ci
z;yT$K64lW?)RB-CzQvBu6BCd7i{n@L*6bdV%Fjz}EVuEltrVf(v9T-$2y+L%!p2JW
z+Q$3Dgw8puY^>(8+TuTPBt^|e9%gye-P}X2vGIYeR2d0V^M^yqy~H}=D$(1<*ET+~
z@v)6hx$cP1Ha2pR{;X9kE~$9-3E}Nx6Wg#|5a2~wj7mvcipwvEVBF4aSKQ+-ZS}LD
zcjC=9zOk`|Uu47R`I8iYzW`hLgj{>c=YQc`54qLGHkP;X1Bpye71E3U0?JwXKAhKc
zs~U~zJH(GRe&S-ZanZ&ucF@M}HvX`&$HrcgBO3>8?6Z|UICu5?x%PWX`p~ASCT|bf
z_}Ru08%J#%CdS(M)yCyNd`2YsX}Ms^0|iSmq6gRSZ|uuAf=D~5UXp6Sf7&=^<CKll
zHjc-n=7f!tT%<iE{R5DU99UMIZiI;pe{o*k%Q|D@EPJ;nMfTk}TM2i%oD}D6&=)A-
zqYMx>MqDD!+xX8$mV?VSu5f{K9^=Zd+A4_5bsN{>TP|~AMX4>y281u(uyHfa|DQ4G
zEt14ca(GY0W4X;iJ_kh{MWXXN>R(XMK_LgXUlRqG8JD@;Q4VIg_6x_wl;`2+1*0JG
zl{*|z{eVDm2XN5PMI#q?I=IWh8xCeTxZ6Pq2dy2naZu7hDF<~O<T)tqpp1iu96ZeZ
zzk_lP?sIUzgYpjUad0nN;-G>9?kyRzWK~be33_67iu^7zvFWfWUn=hb2bCODaZuI4
zgRFU(sO+HQY;~w4|Gz4&|7MD64i--pU-y(e`H~Sq=W^8@Bpf{Apr!-Cj(;e!9V8va
zLEX1MFXbS|!5#BN4F`-kzjBEvb4eVSCMeTkh|gLMYR4t(IOtLp<W!K8PgY^BgF`*#
z=EZ`{^Lh^IJ8&Gh4jOPk9GDK>M4*v_v_tjsq~SnwpgZ)LpG9v%O}pfgZ+Wq&EZ$26
zt$w3RPJva*V9IusK^b{#)U@{;_zs$~Ne-lgz(K}AV+SFpV~!xtFp7axFS-5;Ww+JD
zQU0>{=#K2XK|c!$xtcj3qBeKX!ckJEroCiKN9jzqazIUK0%cbymls6iwhr1kc+A1$
z4%$2D;GnOAejHc_ogDOV(9=O@cHaRRecc>%b<`GR{6i{SDJ3aA=wOX?{+=ShEln@J
z^@8Z_pieKQz|71(9F|$)=00t5N3Xww0S<;b80KK0gXen5K@J8x%F2L~$avNjMcxoc
zMKF2iY<ifJJKVwYlc|x8GD{i35qMe5=%t)V-rD9fXOx2{IKmEIbnv8uryM-(;2C1z
zkD_60hDk%1XZaNeV;ns1V6>xTB6NVsl>WXxxTJuwapv(}a!oI}y_X#4;3Wr>9ZYdB
z-oXS;?#0}RMB1aNmmTz4ou3wG#4GYlUU4vqLpn_iJnl0TGK;<H;58yJr^Zosnzwq%
zX0PSF&XIgm{Ip)!Z;0uCq^5I?4EAU=M?I674rVzx>)@P&HyzA&@RftFi3SelI(Xlq
z&IaZ=nD5{n2g@8RaInz9+m7P!kUR92gGI!42lNTa9GX2==q<l^MKtM<v&6wt2X%TY
zValMId0ZFE9lYyc6_LR~v)*!rgO$Y99X`b+bf3inTs8EEOdE<3z2$ojn7+S8eBfZM
zgHIgp2k@bTbq+puuz^T2UNE-rdIulHBSWzZFZze%=U(Y8H?sYc6kDELtWO<$=Ah`?
z;!6jgbKYqJKn}o5qQM91mHM#(PTxr)Z*~674!$8KaAi68*1>lUb~^ac!4?PKJJ`x;
zV#gm>Y$zTv^mAgngC976*ToKpd)-{tM$Zy_x@@OPe{!(P!EOh8h_`xjNpB@VpagKQ
zgMAM6J2*hH@V=P1&Zg*UGoSWW(i5t7Q0?t!hu%(b+`$P4zc~1n=uINv;E02x4t^tL
z>miqZB5F2sr@WCpvRYo{a|)6E<kTM*$GAXF3yM)ljcFIjI!`({#p&B9{&JK*+gn>w
z<Z+!QedwG+_U{=^%8x1x9Mkg-E|4&~DDUE;gG*d!E(*B#o5bJ2Eq2qv6|M!2gM)t^
zTw_ipdEHT(6@~lAYJHTq6Y`yIaI#`w?l;-gN{SW0Odc7iU6AD>pNloGiQ8Ny1fkH1
z&fn-v`12Y03%V%e0wm@xZg)}G#T_n+x(d5UX^XfD>u$?cMvlc?MLc;NE*=Av&LrLw
z6tdjq;%*nET$FZEB7Q_ql_g!ZZ0RSkw2^GwM-J*E%eW}(g1#{;9@NJ7k)1lLh|>4C
zsNf>UMGY7Cx~S-)s*7qa?sIX!i%KpYbU|OB4={hGVsCOnnO2U!LQj}gT;*?*bd{L-
zRv-D0i-%ogyGXjI?jqqr@WoP+Qu{Oi_)jbl8~ezMB_wl5JW0}1F81!tyLBu@68eaX
znl9?P$a9tEXDt^CR%&%z)aFEtQ^fhx>Up`Y+H~>S(?_<NFY39d?<z(Uy^V2{E?h`8
zaPjDeqSa|X?Lu?0(Zwe&bQgw;$6btaVY;wfw0F_Lh3&#|k>NnOa9wyVLKl$>pPiZ_
zBxj+oJl#i<mqO3;fr}Z3{3bQ)&LekdYayN#s`iylTr_pj%0+8_*F`f|X^gaF4cGnV
zto)7a7A_WLl73$$)#5pVZWhQ9>eg4b;mGV0?Oe2FBY#LyGN|H=Fp|y<(a}XG7Xw@j
zbkW&G7Z<%;A~3oVbBGl#day^k1dpZMLeSGozFmG#&Rqp1Yp$}mK5zTD=*yA(L-gnC
zmqkBU1@)t+8p1rM@S@_uAZEH4=3=;uAufixSp2Z!Zhf^$@vL~!7>8lGMz~7r@-Y`9
zi4_aPzh8)2U2}M>W9Abso^<gBhsDKHoEH}_xft)#<`mDm80+E%7tgsE?P83J=UpDv
zb5AU)Kd!H&S{hxA@eES_s!xg7iySB`InKpfebt7L9618R9!*Yg@iKAG#S{X&1Wg(z
zx_HIKi|dp&8r9M!x%lpYPrmf4E?#pn)y1@U911TLbky^@i#EHI^LdWabQg>jOa234
zx@nr}VwQ_{U952Nri<D9G^feM92awmbuJdVn8yW0%U@!$uU!3etK8?u6k%$Nkiu|$
z$n0J0;%yi2xLD?53Fl>zVDN~gF+g?nS--1W+SDv360+CaB~BJcj;B_-SmokF7wcTC
zcJZEz4_vHuQDld5Z~H!}1Y6rz(sw!!(L7mG53OAPJYEb9v);u=T*59kaLrCsic-{w
z-m_QmY{GL2_lo?=CKsP_$+)=e;xiYYyEx$Dpo=eDeCc9`OE*gR%Ei|lJr`SCdf1km
z<J!J)73+*c^exfsc#0Q4@x2SOs<ye<?qX{Ulf+Sz>IZgViukv$;!%+L@r3dtmn|39
zcCp7*>SViI?B*()EIx~!UGRJ~PUh@&vCmb?*iYv)+|TkS6V+EMH%*6J{OsbmixVym
zyZFV$ZyW?yg;4p`RZh%~lCt%aM@UloN&2Ya>1OFQWfAiS@yf+9S1GDpI9=$|{VBF~
zdxspipFHW}l#6pN&bv6xCJ{5c=J059##Q=(bewoLUZ?b9)2W}lRastem7^ZMcqs-h
z@^^5#!MJ`(ooqordBw$5Qf3cDJzR5fo%Gy8eh>e+_}9fP7yt2dt>pFnse?_DH`wxc
zFlh=wlZq@B8!H&*n0t@gJUSwiN8eRG{P#!60v>MnP}oC34~0CCPenm0k(Nr%MLcyz
zc<({wpyq!-F%QK(l=V=~13cX6p|q!jw&Vic<)MU!k{<4k-(p0|&pPFBcpsuN(il<7
zQx0ia4|yYH;sP|cDevJP4-a^#<e`Fxdp+>DaX+7WN@wgo4?Frv`ja6{w-WVVQDIQ3
zuhi(z`H>@nDT8NK@le&n1|J)JRP)qqmh@4|$3q?-_E6nJ!oz$I3p@x9*&cd$=;<Np
zA?3mI;CsmNP{Ttb4`~mNc&O<i&qF;AwLH}Jkn7=0KXvqD94HP~9e!)M5-!*EK$njU
zy2`Y^hX$T<rPa_wk^Yiy-yV$9mX#%OQuCm*um>7J7#<i~#PpQ1B}K_RUt1m;_E$%<
z5(iQa^F0+8hQDkgHp@#7frnNeT6+jRL>?M@XyPg3$Bd_lLxZ=Av&#%3+0;YV1){l!
z79Jk;(9BatDAWOF`qUpO@-WF1qVM;X9EUfAc~-RX(AGmI51l=RnMk(t(4JGzuPjj<
zfb4DR#g3kGpGB59(=M#vLwAneds)r<E4MA(JWQA^cn$5Z+@O&h_43f$!wVi>^w7sc
zUk{Ia80Dd#hyI-XDPn|&0Uic=80uk|hd~|&dl<sGeog5b5kGkz@6|A8N`J{?HRYi+
z1Q_mtt(|njXFAfuW1f=DwQZ7QZIq!r;o(US&v_W_VKyTaZx&B^c-q4=9I@8!jAQ9%
zV}P8Z8ixg0M(_5QWL%H&@Vo~uim{%Ou>aX#e%D`;M2zDkdYJCv4G-hlI}cMlyz1d)
z4--Ab9h&5UZ0A=zT-}kPxQ*nFE_aweIez;5WbvAZ*V)4Omi_?W`^B$Gt;n(BuFCE-
zPk9I=FvG)4w${TO53@L53^+*K_$x&nfC2+laI5FGHJGdLR?g#!_&G(7UZk!sey=Fu
zLJx0w_{GDo9u`sg-@~UKKJ)Olhb11?c=*7>QV;JC)whXNF%B&Au-wDD9_||;zxZ3M
z@KBe2wA$sY^uQRqML%a$JB8k>c^j`v>hu!#-sjX$5qSgTS^~s*Pw|3CC)asc@8Kg)
zc>^OanxvIv_TzZnk*|2#Om6h>iHA*bd1_YhEy|%NlKb4l7ao4#iuUj&8^$hs*y7=9
z51Tm)o?--1c-MS@5)d$@9`CnAj~Mu#NHsuiV;K)yxeCswc`=F#F@M$o$w=sBFZ(+^
z{ODnyhy84fhh3hETD6C`chv7yT<-R;ae(ASlDpSaw3jQ6QCtsrIOx%59k?z0d4QaI
zR7F2LL{eE+K6OwWCT;mfEq2-!9^qRaZh836!*3pb_i)a`c@KYh_|wBl52rjF^Kd*K
z!xIFq`Q8sH5=JV`(%gXJ2A;%ElbCoo>)|ghr5ehRnH(ev{keajO9UPpFL<~}>>_#h
zaES}k!(}e>Euz?N!AL!H;!Pi4n?4d(NE7yI+yY%^Q$5`9aMM%K5;-9M#tooQlIFMn
z<Nq+9e5WiQxA`dMqqvWJKJxo0?4yW}0zL}*xZPJ)OND$TGN2MK15{lbpomiGfs(9m
zw*L+v9o`j1eI;q7V45&3U*O|TA0>P|eM(&1?K3<*9S`2+D_3cE`(O^+!{G8`4y8)_
zDC6S^A5Z!y>!X|x%ZKfwypMZ)2p`$ZJS-~sxZlSEKJN8V(TCnt%O0rQdf(^c#0^20
zkN1xkm3&n3QPszTJ{UyX87M3JU`pyip<y*reqZ?@A{NmJ(!)Ng`-(B1U|Lqv4uZ4r
z$pRW1BITozkF>8eNpgJD@saDJhL1=1=`qTW9NFwOebnN}92C52$H2r-L|q?wJ{tI-
zj$%D#^2ZdX1h_((KJZ*lLmvZZ#=AmohcuSVlDZFi#$e4K*G)1wrV)R|j8p2OI6hpC
zn~zRDJRiP~W<Hwxka2;?N5)6MZoZMtRT**^88Y~dY<h=i%o&*|ny`0c#i2v00Zn~8
z8oxzlVBQk7TKH(~qm7T2zS5v*6{l<oJ&@3oVOt;V`Q3pk_H;X6@r!8K+rd|ETX;P_
zkZuXl#m7J&gM4)L(alF+AN_nx87RB^=;fogj}-%D4}N90=o!O2A(F94JMKOl=beI1
z&-gjAtl7x^zVZ|_AWoC7s(;*IPJxeMK8E{XWMuwFhWd)f$X9+CsE}}kPq%@pgCpa9
zJr<{&UusK^iu3u14n3YC9{QN>;|(_6$Fn{r`gq01b3R7<c%GGWB98f^4`@Sni7~8X
ze}ggC#S1=ogdgu?f{zz{jPvR8C3$S1e8~r0Ui>#u(wP7QWZW}IzU)IAq|`pY{ZLHu
zG1<pdAFT$d2q05@yvFt)QyZ#RIU~~r)k<IYc}kLGtuTLDT=JuRc`QG}$4npZ_*mv+
z7V%_|obO|Sk2ksch`LRZbK*|Tjp4eVikAn;c|LYm&HH_&m{ve8^s&Upztgkd^0COr
zVzyc4yv+r&Geuz0AW7hpL6QZQa`2C*sNcTa$Gbj0^s$b!<Ew-1YGPvytYkV!uJV;K
z8(kZ{@8j$sxrUi16C73Uu|M#!mW1MfMz3q+yfJ^hudIhY_Q7-LM_kT>CAUU&7{Zw%
zUH!zzCQgLJGZLTr_>AjRqO!#2KE7ZheVp|1rH`+C9P;tAkFR}f_OZ>!b|2sP_}0f3
zA8Y=|etD|+E}m!tyi$YZ_rB7C*czuz2FouRX8m<C^@EQ+KKA<9;bSMUQBVHJ#{1aC
zi>%;nsogP3(}^6r!{xxq+UH}x5AIG6#`Uw#1H_rvmBT}(%s<>Q=P=iZkKc&{#0OHO
zoBrkx#8FPxV0k1?Ul=TBtr5R*;c#<EH*r3Wu}6or<38pOmgHAco<i|1bI4UV<>R!E
zEQ#AB{_=6g#|4tdnDU(U>6a4cNv0llsmQcxusT7LIWzOJxa8w+Vglzn?($_HSAAUb
zafPcdo#d8`>2)H;V0m`1q<n+`_iTlR$Q!JDg1E`o+i1MK#hE&w@%k?YXrh=;BEQ7l
z5+x)GNEDQ~L!v0BsgqYo;&utf<-B8iiX4x^5@LufB5{4E&&wJjCv@`op<)unCCKZb
zr^-%4BqZ*XAi(P`sptTKk`kpPDoETb6-A|BuC%1BnHp-!(8^2PBT-JOIVHK^k(OM|
z4O7*sr|`X^#C=k+C?AjrzfG0@DWya<96g%doe<2g6hEc?brp%K5=|tUN>r10i1`wY
zBp#NiE>TmWmPA6T(?n7t#qLOCOU!MTGjfQeLSUo)T8_lJtBUMAB2goTdCN@~W!6NM
z+HAlQQD5TiGop?}Zrqo;5_wYjx~FXv8(fc_8X~!ZNL?GmCAkr0Y@M`(CgDl=5)6`}
zOBfQSR6GF&V<m@{ns2-;30uOEa9Mer!@#cu$kvnW+9VOOp6h}@pn978wP`Yv$VfDn
z=vq~IeBz@OLnPrxC7MYLkQgY@T%v_UN6w3+y*1s0qJzZOLllCwmT1RfgJm13EZo~l
z<tdaG`_f+Ga?LFM6A5!IaNIgebWt)-^yKHH;(c|KpjN|gLnL7W-Q!!TYWI?gO81uN
z!vP;E2h^<FSE8R(imzM+6&fe243+(*3Nb*KxH?E;u*72$mmaB0BpNC)oT$`7<5qtd
z+yA>V$ssR`y3-7sH9}&f1fvG?Viz8l7!}V2g~d-u&?Ul?68h29Q&MRi(90szXC<EF
zBj&J!5@RHmNGz3jUSh1o>k?BXUXXZEVhYjzhCfc?CF0LeNuI`di3t)XS7uF;cv)g%
zjHs`~UnIKHY&P$8L0%cZGC9uVaLqZAdR3}zGpl+nuCV1$IZa}^#5{@lL=raRV=+Tw
zCUNz$3PJnq^J10+)7f$QW}K?3Vu1N`xzPSh5m-RvIVRrXBvPMes9eZa4VBDUB$c=4
z#S#qk!2R~yQVGEcyd$wp;$w*oM89V4a*5Rv?{TIiR&Yfut4rKo83U`N(w%5qFZuZ2
zKG)a#>;hMT#2N`Y`J}Ys1BtZ~1b8u4#iF5-F=f_Ed=!rfC8X4Nr<22tY=gu%65mQ}
zBJn33IGXyBm6P}ra~2EI!!M-b9&?DOQNSE>t61hMqNT)UBG`2Gh@1q<v%ZtqBC$(i
zx5W1nTP1c#>?As+lbeRhZ4%pwz!MY~j?S-sAo*IW0P?h}?#ug8;wPyb^wD(>_cO%3
zJreW^zE3J+oV^m1e~}6?hn#ul9ONpH_?d6T@np$&C7@7fsN$IYDshC%ts5G5!%>Of
zBz|p&Bkk}z`@&&qh6c^>r^GQ<+Zg2<<G92LuFVKdBAk>sMY<ZIN=O%`_={K<U}}If
z5@(670gM3WB+io_2Dm4{1&NC!&H)MpxI_vg@vp=Uw(al4Wr?d2*CejQw>h1&nYn$a
zxXwi<X*?^=YeLjXmLHluQ5QFfEteDjNn{16UQOJR*w|0IX^ZGe;<kWZQqj1&So(lq
zTH~`+lS-msfI<O^2S9+^0~8L>tcNHXph$o_0!;6g-R?%>>`=xH&n3{cguuB(u>fIn
z@o58bXMno`lnPKf!0+oD+#R4qfRX_o%O}e8_Li(lbuTK44wF?!i!uSq^14%$3-Hs0
z#Kh{N&RyckqT<ruiLRfdDg?MUKu&-f0m&fl3s5ycwE*`AxKda=5TH_kfy2ervxx@-
zR1Q!jK*!G6W7~-#y+x&Avj6JT9S>8>OFR_d;Q-kIlI(kcL;w+>*Uan-<;1<`6HISj
zN_^Hen>ic$Wu*dayi5G>h$z)Wd{9a}5};;)dI9POs1=}gfbY&F@&fv9MQ#A=K~Xp0
z)+_g71y#6cV|6`VTikgjA!>>S0UGrX=>S@QhJ*t!|EIKAA(GeYi`&bIs-3b&ol87-
zn=n~bfT00~1+W7+>_~u40o(vyfTjT+4d4fm0mk*r&IAYoEd3`D28aUW4U>fT>Y`s;
z@q1gbaei*&08Ik$wpKaO{`1@^|0J3PXda+dfYt#XnUUKfK+6C<hsn$^IbvXTgCas3
zF4_cW8(>Z+(Si7IBhfBS&&<ds+@AOu1Eq=yzTP=N7uFx3e}Jw5x&`PHV9fPIcMefE
z(UZ7(D$yf`A6c8roL&KX$C>Ls$gQ|Kmrq%^Z-8<)6fl637~ps{F_`mvhrnnth%-Jv
zcg;QGt~S|20z7alQK^PlmlVSTjNpd?JRe{r(J8<a0iF!-+FyxYCB=zO*^hH}+K5pB
zwuxH9erxnpfTshD4zPQ;cqYKJ0lKfudM?1$w&LlViLBBhtV&g}?5Bpw5{1RIx!Gd_
zybxd#QTM;ZiviZ9#DoAZbIb$06kyMt`h_0Z<KvF73;7o0a*0h0@Cp%67i(@MnDV+q
z7n1`_39!7X@KRZ?vUve6RuUryXW!mYFmoE0Pk^5T91ieCfEfWk4zMA>%mA|jyc1wq
zfHwo$6kvXU1)Q&*VopHA0WmMY+yF=VWo?Yt>DR}LciND8>QrK3fJFfo2O#`bfWEiV
zBU_8N11uquu-e-MugSw??Y|Od9uPe~O>wxE2e>&@ycgj80PhA^5nyG2RRLB9c&1zS
z`5e)#k+^U<asQRX;$gDxmBg9=buT48<d_8bAi&xHH~NXO^#n7oo=JRHNv!9{SE2?Z
z9=%^|(#5Ji+3%iCYz*ie7~2AD53nh~rvbhWusOhI0X`4#727Z%t4Q1IFSx`E@nwKl
z>xkhM1an$<$sRc@d()SxZvuQ9;QIgrt|q<<u!U42okMItFhJ}qD+qL5pW4cCyOmhI
zAw}x<Lx3Ft_6FD&U}u0I1MK4L^DR=3Wm%h=WDWf{@k}YfbWea2o>)30>&@H6+a0rs
z07dQ<`vV;0ifb<p@I{ENPm1|TkyS+;3UK#r3iu_!uWWXJTbzghM+5xDr4isa61o5<
z1DpzAo=z;jocJTap8<{qm{?1kAg<OC$GN`hs*z#JQDV+%4#hAz<9gzY65`GV8mZ7(
z68`{K16&Jmp2R=E-vKTYCv(L`61`#aQVj1MCfjBNGq13B{YBG~BHzWtpu0u>&ULTH
zl;K}a5Q%3_);}cdZ|7caEf%g#_4uh!BVEiaB>oGK72@s?B|_YLDREnff*}fp$QL4i
zhyroud#yxrU>2XwA1ZDSQ8+}g5XD0rZzhU_xFbZ-5Wy#@{nZ7D_RYqED}pJ@BgCB{
z?h5hm-0U8g5>L*`EjC<!IZO~J8KP8(3amdw=@4Z?oV-hv53%D~qHKtAF+g}*al!PZ
zl7dg~iOclton0}+7wxj|3vqu4y}ziqs6hKwsRu$-3h`iwTvyB}Dyj{a@01a49l_hG
zA*zM=D#X_z9t!bri049#4pBWsB1DG}9Ycr^*&)0Teu!j<REP#48ivRTQG<1cs2k#u
z5H&;83Q;@6rpH9dzTVp6!YL){g!s6JC^$d+hxXaC?-7LaLevXsiz@1e_@}BM#+Irk
zzPOwqe6+V%^;T}95E>gFA|2x0Q;AulL>F5aA<Pg?2$!=U#J(JH_e$FeVRMlCXOBxJ
zH)M-@T4i(M8V#5ETV+cQdx+*CT7(EgL?IsK$dnM75RF4L3DGn}>*13B{h}8VSwpj#
zR_!CW2Pj-Sxpz)(Ggf;g!O3bFqE(2tAxes5>kw_&_dcRYx9m3kMgQTF@Qk6^?LxE<
z@ygoN{i{<8=VX`eEINhg9Aa>YAtAbi=o+G5i2fnEh3FolcZfc0KuOUfPJ0raYAfXI
z72gsd#<seU7}PfV&UT`2NMDp<ej+&_M6(fMV2D8>_6`w*`Say3ctAUq4h^xjz8D$e
zu@J*T3=c7Wxa>G9djzMimT0stb@dMMc!*IUo(}O$2s|R52=OE*BE*8>vUaZEwQjh4
zJXaL|JoRjdUn+^et|mS#C|agP?Sf)Vi04Br3b8oE*bpy-m>ObQh!;bQ3-M~G{<AOf
zqa242lR``&R$NNF9AaV&uty71qP!<A3|GYPqw|T$A(&3#$Xris9^!tfi3R5quf_GS
zs@Frj*G7<1O%L%#h}j|Lg!pw<_KXlSL(F1JjuawBJ+iTG@yEr~1=(+gxX><})Oaqt
z7K!=nRET*Tij?3j=W*w7xsb?HN4&*%hlnpvCkU@;pZ#`-B}CB>8~EuE?}S(tVl~G+
z#PU$>%2tF}b29O6h@r{+1eUeT&R0ro=qgrnAv`Nu-Yeb<@qUO8L#$&-u8S_>gAi+p
zz_rA`Pl!K<%Sv^{BO}GQEV@9)s50Us&VE@@YiRb3;gUd=3yB`3#m0F3eio|D=O<i2
zAwK08RupOr+B17~R{C>dFERO@tS>`U6e6dCc&>{mJwk2{@eRpEgwhed4e?!w^Bjs0
zTS9yvVt<GOM2ryISZuV|9b$V-J$_(H3U(^dX_(j<;>Qp_h1kU}J}N4f5idR^xS+U*
z=C#gFj*#oL9Jiv_!_liK_QvTxwj>{e7>a`-4uv>Iau?#~5Qjtj#z7<UaI!)i32~IG
zpq7~YccM#&>_+v3UNgxK=KP&_zp`+Ki9d+&r;Gm?s!isI^9iQU+)A9_P=xp^#F-GM
zLI!FPr$fx|BY1IJ$h3kjKIxHtHpDrOWD&s)hF(DsSk_Qn3~?z$R)pIk{7u|GmH3AQ
zHpJx+S2(97#MKbjSSM*$X+<`<3njoEDIeVkv9P<i6{FeB7+zXMFy}wgz-hU}J(90{
z5%NbU9udb-AVR?iMIzi0seNFf2)9Ql%%?@fzgdDg<%TK5<36xxgl`IqVsW~-n3&O7
z@HY8=E`Kq1Mz|}&-4Pm=7j>^ExMwaAshxAl2p77E;*W{-pR0XfnFwVgBqO9El#5V4
z0*?|8Mz|+Jg$VaY=uu8^RPT*&U;LGd5wddx2fXlGxqpXZ+8wGr4@7wDQBf(v*EbWd
zw8^d<p-P0R5voO~9w8Cop$Hvk=H4nwekSJ4RvX#@eFQhUB0~52VtP4|9bv*<V$H&A
z-nt`XPJ|i}v<N!uEGHg`P$xoegqrbftvIb6r<3j!12$*XjgS|i0XrL^!w6X~!tq41
zegyw~f^?hd?jhN?KP?(XNOLfs76XQg<$ooPwik~M6-ERzLKuNW&x$Z+lyD-r5q-<6
zf5eoUf~m)<BFG3qq~`aZeB$jp#gGwl;+aI*X9Z6Xl^1455q91!G7;+DE&jMqJa8@1
zG{U3odj=0@&@4jp2=7E#7NJFimJvoqcq~Gz2(2Rw<XhJhZ6dVgfN;!tl@{$dXc0Qa
zaQk@hJ486tTyUcKv@>Ta&LrF=!s1-<(7IH&2<w^&&Wl@2^!&f4ePW<jgl*Roy(46<
zB@P!6eIxXX@M4wx{UZ#B3l#3Ikmr9WG>C{-N(_!LB*M_RZNno)te810!tjKsVA7+$
zDpP5&+Rr>5VN`@yBfJ*ji3m?dc!8Bic#0joka#x2a}f^Yil-wyL-ZRhh9<@3skwYK
zI>Pgulw{VJ2;)Y`qGuEBhX|G&8!=dkxP3wPxVVN15hJgus$SxN3=`uceBMa?$XL(B
z2$LdAj_}I=)x2SZm=YKM%*f9&#fFPN8j9B=OpUN0!ompCB216)W`x-h-eB)8C90fB
z%#48<T!3A~R8Rd%W<}tkrcxy_Cw??9PUpsHmr*Kzehjk=3%?b^#|LD+9RrKvbTP3}
zig_a>3oMCqma?@M6M5aTmlL}poQ-fU!ioqhIXe-yM_3hMb%YHOHb!_a!ut`{N8nCu
zO@t33d>DcM7hXJ`uZ>|o>Rw8n*4M?wswdPB=%WZ9$4@^TA(`_@giTy55jJyFBYeh3
z|5wlF5x$7fzn-duFS0O?|6j#V36LSct>8DL8xgj|ncqg>w|W*A-*XI$3x0ho*LXtg
zZ>iv)M#vu`?1*qU!Y^D75q^xYpHoj#R#yBJVRwW*F}#aQX>Kmp%ij2QUj(j~*UO9P
zl@v7~Jf(~{7~$s#^Z!fmIuxm04IdF^`fG$ET;mZ=L^v8h`Xj=#XA{3g_&owwU$gR}
zKncN|KO-EAA6*(C#=e(gwI?H-BDp9l&cvTS9pSGS;9G0}>%V$7k%>U~JTWT5zY%Vb
zMEsYy$i>B{MEio`68{3k_A80Y5w5Vn8@YV+cms8WxkgIzptv5PL><AB|F8>5QE{ZW
z8R1rhk{OiB;J=7L98freA{pG4LB0&g!zq+e=kfd*6v&`p40{`LSKUn1t09=47$I-Z
zVEWC(4>wfK9T^nO02$nw0Z(e$`>A3X6wjdIn~EJ&prv@Ny|^obyE7<}0bl=apy=06
z@X>2k#ONmlKU6w{G8x>L!TlMO<>xY}kiori;qn>W69YLn65AueFLtdhSi`nQvRGBc
z40`tzWEVV;L8S~H%%E~cv82W)1)Fzo0oB?n8C1>C#sNG+GLt#X=hxpGD5__W$Y6B_
z?`0q|$j;!I44%y(nL&!<kU{$lax$oqft!Js!6O;e%%EWgjWVc}LG29cWl%qZIvM0<
zP&b3T3_dC*nn&vTrLfpKJDVvl@;$m{vIsQDfN8#wl6$sv23iJY237`ooNr|Cdd>WN
z>#NdYYA9I7&VaDPd8w%C`E9PMkc<>R1DQed3<Fgl$RNz1aRyB?h&U0E$i%fBD<rb!
zX7l2|wP^;A#+l7B7+f>Sn)l=h?wQ$6rW*%lx6Ghb2Cd^V-7;BiVt{RK%kdv6*#^E+
zer;}t3_51i5o1UOoiga0K`%~020XWR$)H;X-80x$nVqEqzu>O5ekQ9&hJ1U`GlPDW
zMY{*Z!Y8;<lzlSjo56q#1~NZ`-CafhxESB%7MCnX7TeQD42o+T92Z!1CBb@_4$WW~
z3uiDQgHahgK_ELhGK0r5c${<BD|^=iB7Y@e_sagSreK9^$&(p8mBG_-J5SiE5~ghP
zQ{}{S8H{Fr1~W4llfm;DOvvEn48{@@&L+miDS;O<c#*%(@`9`N<sRat|H~gwd@Cy+
zEGs5v@Ja@+aRxJ(^nXvMWH31{kXuGkl2>Dx)T8dFDb_hPqe#m1j3PMGGK#9O<~N8)
zcMH}T{Fk1U!J8SplR?Xo*|Rg4lcA<A7H2RwgL!;6g9V(6GGgxHtgp(8sSU+K78oMl
z%3$f@tXGF*^R2Fdc(jIio3md-u;kJVmSo7L6Vp1V{9l%2@qn-_gXMANyBVw`5$GgV
z@Dq!(ypiez&BCkV2C(G&8LY|Rrwn#w@IeM^Gx(#p*q*_M8LVSVGWars^;`lOocuTO
z31{c;#K#$IJ(Ji#xJuT5hsDMW#+@$SX`~!5SZvDRQ%>1P`58aziO-30BSn?_#Dsqn
z9}X5@W$<+d-^Z`Bw#^xQOFX}s_=d~*a)MVEPkfibmJG<$?O06waw%c@f+e>SXW|AN
zD=JF=o%kVc<c<vfA5GT*B}MV{SB|Xr0|7~*D1zYh-jbICB(vTvaFg@Qf=HH}b4JA+
zF#rl?%mEB2Vvc_kW(5@$P(gwc1%>Z7eV^~`t5;oJU0u^%ovV9u5TDZOdWkKRQ$_sg
zrjJfcf5GGxILU6X0$)|&YbLC~?h1TUfp07DV+FQX;5+sntJB*m@O=fg5_S+bPS105
zuYV!+Lj|AyOAs!rIko$#0zX$^X9adu;Fk(;%Y6si)a_aFUvogA5VHNsB;0PQ0GA%)
zd(($4&E+|x_Eg}H3LLJ$kqYdsz`hFnS%JT#ko^^M1HS@?Iwd=b++F0t>L9K3fO1Ic
z^UU--i3~EwqZK$-ffE(@M`py8*WVR5UXjc{Pg|Y6WKEVl|FR563+`1i6)D71Do#^T
ztO6>ks3=mC!M(PMs%kRg*HBSYMKu-GWw6O5$tX{TWlD;W47F5zdWLv+dY;4d=_<}p
zlMVc0B^ik8sHm%=ffRVAq}P);6LKO^Ukc=?O-@qIl2Hv+RBrw^QPEVzBps7=oUNjn
zikyZ^G@PU2TotdWcwI$v73ZlKsbZ9h^HsD^aj}XXDlSmbQbjuz?Nzi=aiN+_u7rx#
zD%z;HNCrtce|K@^+{yZ_SW%JgoXnuoDoRvjBu`rjIV+n#LU6LQs#?O(K}Ba3SsB$)
z!cHp27s=V040ct~jSB2lN+skh?)uyMcUSQ$t7Bb?5=iN(qL&Isg{z{siasg^su-lA
zuZn&uE>TgYCc6jy`PC|xj}@OCP(C=R3=@Kz3FVTKS1~|MwuTNINOl`kH_hE4ZZcG;
zP*oTzOck0GqO(kTCz}r|p3MYG$xqYsOk%09Rh*cfXTsTQ)0E6yJQcp0tdWPQ2vmeB
z2CEpNB2p2nD5z*OBX6%xZ~dVg1*V_Pkdv8Ss$!^$%T!S8wQI8!NPW1zW?s~GxYU7^
z5tONvTvQ@Ps~Dr=c9m~%;c^vYRV-DpOvN}Bql%d-W~rE<Vxo$vDyFHpae|nnVzP=U
ztk8kt^vlwN$BFv=k{?&o(<Q?U6{M3h7$vG6P`K8ftzwRf1u7P*n5$x*iusb0r#zKx
zgd6lk$RZVsRV<OQB$7h<hGPolFrzC}T&dy)#?o9_@+z*OiBj50g*;cY){a#p!i40f
zde^DAUW%GFJyDfxH>tQ;#jPrCllpfYml}LPxrGg?SCWKT6Ef2k{~>p(xJ$+3DxOfW
zQpGA2_p5k7#cCCIt5~bzUe?P2<sKF9Jd|3aCVQvMoxc&!X6|G4(RgO$sZzTcd9ppI
z;vp4}sCZOr^{|R{Dj4fmDJ7(ORFY+qeCz?`F*dXV$#*@e;wcp`u<lemt>PIbk*S!A
zzo+<F73<l)swCx4e$FwTQ}Mi%&k{JlN?S_UsNy9RFRR$3a<!XcLds`euc+88OYc>F
zFBi5GL<dPviv5`KhKe^;993~l#ak-gR`I2ZulS{GQ}x9MD*mTp?~wGnGWec~EyKn8
zw38<@@d81H4^@1^?nuQ)lHu|Z>5th8>WZ3PdfNiAMG`+}M<kJJ)?~@RR9~=8*JS&R
z5?`zMM#U~3)T;Pa#dj)xRI#0wc~se|@~JU!7k8VA?^!jI)3+`V+}FK%VtP?NMLK^!
zNroLNepc}dD}7>`3AZ#)c76HV$)4~+u~HYm(HItpy(;#x?o{lS^gSy6kV%+|Y-~zX
z$BO-IQz{OrIIQANsm5O_4l?&&d%V+1Bs#Q8HkNC5C^;fyiBJ5anET9>|F??cD$dr>
zOv4Ek|EQ>;p{9m^Rh(oeQ%6+M5_n4Dr%61eB^yB`ZronI&fel84OKN%(@<T*yv-S;
zi?~6=*my>su$G3}8vk_*^)#HW;S3FRq>!m~#8ca=7i)mV|Nd5LbQP<)p;1TFl|m>#
z_eQ3^h6WlMX=tqBESc(Xd8(nz{iBTFzWT581@mI2O*AysK$+a0`eKHlv~x6^t0AMI
zt%l|r&eL#_21Ud98d_**t)Y#E3pBLUaG?e-CHPxXU2yxT6+dUU(mIuFEi%X-asE6`
zhBc&RS`te%ywfr@Yeqg37B@_naFes0hV~k|Y3Qz@gO=<>b=Hv8&{0DtnFT37HWd?6
zqKlSnigu-Lu^>{a;eV$TB4nT%7i;K21`T~Q^ptX#s+WeP52T53Ta^;}vNSaGmtv_l
z72vii(~{?_jwNLp$~Ani;Rg+Q4FfdXuHg<112qiNFqb8)p+bYI;W7=wG-w)h4S|MG
zgQ3CH;An6)@I=*;(3X$`)0>@=^Hy%;dK!EU-%Uz&y-2(=J=rS1aYjDUu&=WyXc#P!
zn3daJtm`a>Xt-2^HB1cElF^O)kIl#vp`0CimEjsjXqcp7vWAfwMrjzQVZ4UX8pde2
zT*Fum%$LlBeM=LBXNY?`ir3eqnfn9{6Qz30nljIrnBG54OrbGon4w{&1~O06Fr8mI
zP`o)K*@Y(O_cQXdq)M|j%#m7AJu1Vr<R_f3VS$EgHC(4*p@u~ouF!C$hQ+kxnqrBB
zMAl78E!D702Jg>{@ihdA{9UEtYDsKcQ!Ll;=R(o+U*#G}IoXviHwn-68g9~XvxXZa
z{f9#OMlCsdZq!lSA}P0OxJ|<YzZL)Wd}gGdsuaG06;xC3Eb>kbcWHQ0!$u7&HLTL`
zu!eOSR%^Ih!~IOC;T{cZG|WF=+^69b#9CH#Q~s9+cxrQaMxN&y?~dxfUQ6*Dhq&dX
zA7oRVnSV&b#m$qWXC~np^dlOc((tr~M>Rags(dT;xP~V*JV{C`G5iw2(`t$>KCCeK
z4C_L}1`W??Sg$1q+1_o%l|0Pid8r1odqHNwJ-YhM#bdE}NyEz;K43%8_%<wF(eO6g
z7n{IgWwVCYHN3$(((sxFZkR6^oAwVYjN<Q2$@3PwtoyQz>X#GTW+(k!Nq<knw>x@7
zyNcgugX&PSr%vyCi^PW-KGN_xi(13S8a~mmMKY7~@n4JA>{ULM(pt~VQ_g2>j9rEM
zK>AA!Ur`!uUc=WKzM)FbXPz67+Hhamx;K5s1o5aPwrbcWMUhT9%!`}P+>ZWH!*=#I
zI$G-ZNyE=<7dq<b_(h|KFpjh1)v!~;F18vC`!)QkfzBSkYuL>mU}pX|4SO01duDzQ
z6>cE@(6CnnT|v4QCEgmOTsJgLcz|Z6;gE*I8irO8f3ZamOdX`r4o)-3UEfu{IKt+j
z;h2WMY1?}hrs4_OFZU(MnFV>~*y0~{{_M|nRM&Bm^`#-D<1`&i{%}R=v5FMgs^}=v
zF?Mjes-CDyQ3H=B()NuOgf(>3)N#6wGj!C_5e`f-m)bhWLuO{zU{jXaRa;cFz9Lnu
zCtpV;PnC$eIvVIWOUIcyhQy+tPJb=Ilk57-tEzZYh=w|T9oD6Zj;4~*NJr!UqHeXs
z**co(Xs+Wt9otIVo}=Sj8QXfkcx{5X@U;wu%zZF>zK#}>{&7`t?x^(Uxnk=>*;YC(
z)G<g$g^t!b+UV%2qnnP4bSOGH=;)|J=t%3x=xD3sElZTJLMMnLN2<N^YY!srbbMte
zK2hy;5E3U3kxn`~>*%5<#>|tfER!EnzWrBu@s$h_CM?x4ac2JGsp;-IF4oacM}HkX
zbpCH3`bcKFUG<VkZz*}mab-j+LC9ZU9mL1JRGQOqiH^L?g_)K~q+ADeW4`1e9Kb4&
z^cC}yB#csZXgUfy2J6su7&=@X9`X9Zl+e~;>EKDnp(*08hQiUojY|GFQ}T6;Y9jax
zbp#S`=?k-wh;+m{xb4Z{q4I=bh>lBjjMgzm$50)Y=@?G6rC2g^A7hvlOXefG7)eo5
zTHg~2gM^fDIqOTu1WCVoczT?U@lw5-4aI@Kd-6wxso_K^hles#bWGJT%)oF1({xOy
z+35I9#|#}ab-bcuvyNFhX6v|F$1OVM=$NbHN*!0}n5SdD4t7?Hbu5qw@r62g_<Q*=
zg}+6T$RqD1I+p5Krh~*QB;;Z7)>h)8u>#e_avfLe{GWnE)HOP;)p5PVuamG+2&2e+
zgQQRhgEvW>6#4?)s^c~t59)Y`<*DO#9cy*mtK$wGcd|X|SgqqO8tP<D7xDF6v2kRY
z=R`a$B7V0H;`iuS!#*ea|0AT&H)Nc-g77{aen-KhrTZn@A9KY6Y<KyDZTh72!#dWn
zc66-Q@dz1oJgMU;9gpdFoR-P`f0>G6N6k;pq#6xO5;FL-j%RcbA2cdWNCl|d1|84o
z*r?+r9nb4{K{C9kgPM@1$NWTF3L$)1=ie3xs<DanTU{)jEXc#)t2$oO@vV;U^kfzD
zx{eQY{7=UlI^JYUl*D&+yr<)B8ay?BAZ>?Y5l^-5Op|{|2QmN7^!qwCJfCIoLmeOK
z_)N#=IzHC%iH_sr%E-g0Po=0W?DyIyC!wU1$ln)i+ALumU$Q{ziT?Q{s>Xm6e~kS`
zreYRbCGw+=?d+h|q_@f7_d0%%$apD}{6ERyFFJnaXSNqLw^t`|hmM_+Udg<R9iUX{
zcOAQRv@_7&z#iI$j$#8auvh1wf#R5szjf@_ae$w{UpdTSWv}w5j)OAzmxKdN!L#F`
z7mGtWzUU|h>}Rt|n2)km?pGMgbL8VXPUxs&pvb^KI{sw|=s2b0{iidoo@zTN#Z)OH
z5q_G1qc3IYl=#j*g|XM|SE?GQW}udV+6Jl{s9~U{f!C`DX2Dc+#$YODM0|`PPB(Cd
zj9vM3mdVF86I7{=fw~6HH_*bsnFi_^INLxo1N99wFwn?AV*_UybmbE9LebE`C!ttA
zGf$jZ5H>N;)Bq8F=54J-%_xEAFc&9Hw&n)jn3Ou#!1itl|NS%b=SjR$+64wKG|*Zm
zZz(^pm5~$<rL{3|kpYS-F`yU_lAbnj!)1w_Hr>VB_h*>}88QaiO7-Tp7W`3i2Ll}q
z^fAzvUC>#glZ3qtEMA%JY#=LxT_j{|se!Kl;oS^${|~>|K#%|Mo(8yAPv+i|LOI0y
z8R&1oG2j}=8MwsYt4+c%P-dXqz#sz^2J!|57#L_ILlQl88`MZ3**E}k^x;o6pc&9v
z)c-{hxn;Z{WUOhxGGH6YNJrmG4pJODJOjRg!3KsH2>9)X6bg?Gga#rKk1I^ev5%9q
z-W*&EFvlOqC(<sJ%$G@?p++)>QW}}5&j<q}4ZLLFWdoxOj5ct+0s6&_AzNcH$-ra-
zmm3&sV4Q(jnjmq4j2ds?xsp_~zZ6a;CmPB2JA+dUOf|5;z(V%_2BsT{XTn?wXE3>e
z*#>4BSk$VBbfcCyw?k3SVPcMC7`?H3_vf>u&oeMzQt0oxZJ<~r@nr_CU_BaGB7>wa
z{STqH!<7<WZg6u9R~aCMqPU!-v}+7pYv4KqD{Jy4LlOCjUqPh;HyF6lz)c2jHt?W<
zhYZ|e;8t=PSVapou)@FuC3UBPyC;g<4cx)fIHAz}@1gGEwRVYj5QBFa@Ma29h_5!V
z#=u(g8@R{7FDDhNO+xRqHhr%_=Lg)+vXw%ZcIqWrMh#n=rYJ&kK5Sr}fu{^SZQv0D
zk5Z-X;t9$Bn1RQQ#F?DAmzRl{2ZaZfCnZC}Gn3@c7<iU7V&HiL>m}y~8GB%8;%!cT
z^1NW+MJa8gWT1LffEyrGfN+z6R}6e_;0FVn4ZLdL3pTw`;x)Et10NZQpTipl-jv9D
z622wjI}*Ol7J8mIahiBn2Kx+6JR;sV@PQ2ePr?srhxHO~x@VdRrI7wu5<fBcx4GED
zhHNB0LZ2J>@!s?oEfa?G>x(@@1s(9dH1L&yuZ_h2;XA2SX|edm0O7X=zLZ9Ic2;a<
zm$)Lk&A^qXlrgIKksS`ZH52ts{AA!~1AiMh&U!JhgFU%{eFk>2fgAYUz;5<PtJ1$3
z_{~V1)oDDp+?#!8fv{i6>@o0%frft+AE_x?T`s=sAr^KlX??cXZ{UD|Lk14BC;X%M
zPXm7$ILK!EN@j;BVOq+eS03RJ_TG|*2`QPL@W*5>l(zkW^a*zU)Z9dM6aN}G$>G4n
zdnF~O45Un)W}=Fjs8pG6_i1VBx%%=%G0I``sxp>H4HGp@oMEEaL@g7w&E$(tHxcYn
zs0NuCyz#jVGlhvdChD3vQ}R$0#gdIYmAO!U0~2SNXk+3c6Aeu?GI6en=9FJsG&a%H
z#Mvh3tkuNC$zt)`>4NlTCPujFb4<{KktY}T4iz<<i1SRG&s<C#`J=dni3?1$G||cg
zeH|-P(Fu(RA>~kDYblU(OA-|m!bArX9ZjT7l$gkvXm5g1MB18YXC}^Ul?m6b&Jv+m
z3Sn#~<}zAjO>~h0JIf%M=~r25qN`M%3{>@Ktwh4bCVH57)x~QrdYb5EqK}QfHhL3b
zQCMhbp|6R4CZ00!w2A&EawcY)m}TM;6J;h$6PC$4JII^(xV=zK3@{UirHY1PkcojN
zIFsjuIiaw2+K3sKiTRlnUA#0CI&-{07-r%F#vdL0Y!i-&VJ3!~a7}ou+(-;H;j=<b
z#3l+R==2-1SjML!6Pst|8*R!w*+vi<Y+{IsOHI5cH)pu_vQ6$F1?@|?b#s{sx>ENV
zn@T*Zxu`KQ#>C|&Mw%GK@??n}ROq8Z$Rm|HJ;YcO<4jC7F^!gHVuFduCZ?E}XeNGT
z{L$BF(tr5qr?d1RqQ}?!cc<U2CHn4Brkj|->i9#MSW<HC#iHq&EQzyC%rSA3iJMK#
zH8Ib`a+Z~e`6fP}nO|gLv55sHee6>Unf1UFJFENtQkJlRj1<dETw!9Vne<52h6-K~
z_;ytKN;8=?T}8v*t8hZX8P3hGX09=Dt%>KSrRj-xor&vB+-QPVU~ZrhCMUuvdK%Cd
zf?fyoWX|+0y2Zq;CLUn<n7GZv3KOeM+->4^6L*-n)5KjS9(ppvn&PFHvcHti_7tx)
zv5L0cy{O6S$-0uQn=8<JST(Fl6Ze@|OFc)WIbq|b0ln$Cc)y><Q%GGfKDma#dq6xl
ze8@zLx#AHMkD7Sc#5xo2y2)YIfth*IA2abdJAr=`4wu)?7Ee&gwdp5K@FbmQ<vfw+
zar`qTo~0Tlj+$6+VuOkAP5i)?!p~>PnE1fN3npHqNtk%u#6}Y@Ntv5Xyli5ViC6f&
zqthG_J~agI<`5^OiPBr|RTCc#7Jn}gZ^$x#%f#Cz-ZVkKN>;%W2bFi&nuK_ly%x=t
zu7I)l>6F5KQErNI3-^B}K4i6;_=0lSG)!!f-3XV)pU{y0Q9h+Dbxd}9N>3`By|CZ-
zOtw}w<S*HonE2MjcP74O;op(|#!T)&Jz6{Ya0ZEgwJyaI_N^wiu_YEnjahk~r#CMa
zKbqKXVz-Gs?El%~#-@KUvBSjAX3|CT$4+&piCrdsGx0mi=TLQ?ckmG8S2H=T;(-W#
z%)Y57I2|Iw%O-!AIAG#WGjZD4Yhs^?{jB|}f?hq<4l4BX`HLkmDjE0=OXQ%0ha}`s
zMf!?%;+ToQ*+pA`h2thpuof&7S<rilf7pjK5hrQnY+@&pGYi5~CQ??iH%@yy%|iRT
zvm0j$|H5Q_RMkRFD_Q4Ovryea<fm#_yiSsuQzm!{&ja^b7HX6JTK04cXIO9sr-^g_
zikn5Ryp*kDp{~Uj%tU=De?z;XGbK{bN><j)kxi+AWZ=;c*&11BY~eWz&s%6>p{a#}
zg~1liw$RK%Zwq}aoMYi!3uy}_7Mff9Gjz1J(8fxd>iHHfu+UQCEiCkJE9gYpN(LEw
zq0G8|A$`s2Z2E+9k(G?~%X=3ID;eb#i+@)wIIRB`q!`RtXlo@d-`y>=W0_d!Y$0o5
z%L%1}g^m_FS>T+9bE=k?3eK0<dpKi67mBjb)j~IFctYW%j<X{=C(y_V$-|k_#TI&4
z=xO2Ded%5nb{$uUw0=F?WL9!}tFHyRl3rq=%tAk@d4GQOP{C@=S;)-FbH-9`A#cI7
z_~-8!VDYLQDlDiLejg?VSxL2WCYhU+C&GD`#(KA4Q1j;EqcTA^3{Lr|$vr0&oAqTO
zun<~sEpYeGv*1(UafLO=>U;9_OgJmg{v_hZ^1F&e_X(+A2X`SSH!WG$Lo8fs;Ytfv
zSr}^JG7B>-%(VD6Ack9*U}2(#5f(;T7{eO3Fv?2Ci_unc0I}fBOxXaz!J^edG1f|s
z55`#-ZzU%J1G9n*+b5?9xphyooMd5&g{c<)UZ0t4VbZKTd&tU8a+-zd7T8;|+ax@9
zZF-i4*;cZ9xx~U83v;c+(|)0ac^2l&I$dC4RjTJxbHsx2i4X0>nd0sd=|vV6Tlip1
zniSri`@LPsQVYv0Tp>ke_ZIVe*~c<=xrM7O+->0=3)fh<*1`%4w_CW5b!Xuw3pZQ%
z@S>s{EZk^;Ck{NG;EBcp-iTQwZn1Eyh1=LR7bV}$D6~(GEqGssoOf8b)51!sM<ZXG
zzKc_Wwt^qdFRec{y;>5#n3Ssgb{5MT3u|d479O{7uZ8>AHu-@T?q`#!CmyiyAe(1z
zK@XEFXXSUcNCpDBtgN%}2svlvAEom0sv4s>QK3T!;S&~~WCdARZ{aB`Ib3+!!ZQ>r
zj|`5C5cNhShXUOH=bqRG<{k?k9Pl7u^{VU(7GAV)$iiU@8`+>Nd}-k;3ol#PWZ@kP
z?^?-~x>s1;v;+&AnbGgc=Osmt3-P*zH!QquC8scNTFJqRS(A%RJUL&`la|v7B4>?H
zG4?$x@ofBv(8BwyG7JABe?8HzulP_3d~8UX9*^u^K4CX9IlaZgXBIw{I7@&|FZ}Ay
zEqoyhhaNa}<h>XoUt9Rb!Y>wfSbWF=JR;d<;d=|;(Vj06TP203A^h-KY4L-F?G}Er
z@S_C=`CWwk{cPa@haOf%^pE1#?PMFbu!p^<g<ok=@&M>}`I*15f(q$33hCW4NZc5m
z-fLkWKZjGnQ_6l8?~pY6{{!q2PbtK=P7rkO{L8{Yw)C{%S6?|Saqm20;V8|+Mspj-
z*i6_P+bFhi+`<X=dp4@s_{YM(7E(4&vvJY_9jMrWpJI>thr<4xIJ@*JcG7_q*+~?K
zX}WK*(|Brox9T=(*qD_mscoaCjaoK#bS~okI2Lm0(^(V=;)JK$*m-*rgpE2jn%cPf
zgi_bWnKsU{(a=Uc8})58u)%9(Q~p#qnLMjpyf-WV-~{o*tb8LIiwB9uHk#PU%+o0n
z=kyT|4G<&dh<`8aa<+|THh!u|QMYq!UV%&y&e_hhalVbLjV?A?*to!ku#vXW(nc#A
zZERd*<3eh(tGKm|x-WEp@gF78ut=QAp0J7_{k%3Q#Re(7I$dHTW23!|4mR4_;JvnX
z%=e(OE0Y{DzTc(`HSB1kla0<cP6VP(Drvk_vUA50YFlkoy3|HjJGo2J(?&NISN-H7
z$;Ec!gx1~0{dE&B+#WW(34#u39FBY0xCWxPOtRS#&s{G1+30WMAqNjT$dS&vv+=Ku
zG8^TTVB-Osk0D?HYsAKE8v|_&vN6QQr8X*Ts5X2Xfep=uZo{%++c0c!7-Hvd+PHj7
zf?PQ<S(rOEI2O3nhxOIIghVd<X#+FP5NF<-4Q)g+;b0rFOvv4Ug5+e$bATfcM-!$R
zYU45+<84f^G0etr8>4NEu`$BNNE@SAM{SaEXTg|c21sO!th>u?jJ5GbkQyfqkE0|-
zaa3jQG`xv6CfS&3W15|eypwHAp%tB(Y>e;|lrd>4FrDhzm`Qt>m~25*s#Lj;K{<15
zzQu%_ZQNpGo{jl7uC#F#tFNk9Kx4D9#KuA!i|k}X7`;y+JbFY~YGawCTwy13fSGcP
zcE%^;MZU3EPFu2Zy^R}KaW<~CF|lRpIx5gePy$C2UbyD)LH--5*m311Ddh4?1;=`h
zM1;56xQ+5{thTYj#_cxllF9F2q3u(4rHk%l%bk_4{<p&1$-j5FSZRZkg!hM~?`D13
zxL3+tBjxj3*0Q>v=)dK-vfWRVB;`Ju!Gqc4h6oMG#{X=5$Rsw_*?8W@3pO6H@u-cb
z*b;3#CUd9$PuO_e#!YRLRoe$IXL+^uNtw~b<Ha))A$`3>p0$%3xEv@q*m#a>*q1XC
z+LsVM+fBS^W224NY`kvcB^xi>cvZ@Oy&|>A#w#{9+c<Z0nz`^g>ZhyIlzH@`68@;b
z8#dmw@wSb3Y%o*uza_KlcwAxZyEfjl@xF}@WNDCr63#uIl#&^U%HT&fKDP0*jbChh
zV&hXAU$YgnskTgQvGIkCFR8hW&uQ>elW8i4bxsxTn~*B%TJ&4zqOaJ6TFIH|w>G}B
z@x6^7SU#iDTPe1I*d`$-NIdss@JAcl*(0$T?pK(KbgsWBkTWGF*}=}x#-BF+va!p?
zuQqnu*kglv@v!wb_OUj4ZOSq&=M{v1*w|}hpN;+OY#R#-q>xI<4QA&l^8h=RqU5=N
zgEkJapSSV1jl(vM*f=T`qe_3wZ_D#s&e<vx9%o&@mSk~)3JmT-2KLy5CvBW!U*SM?
zkaBREgS3MZ2UQ#tIcVabse`HxsyTpzIu5EksNtZtgVP<<bWn@*MakT(a;iqJk2Yh=
z&TzmkopZKgCz;L>;q`5@)pc;DgR>kobWqPheFxktXyAa!IrEt|DRKN@=SjSggT_uW
z31pAT<WzN1MdJH$wu5F4S~$4C!8s1jb#R^oI)w1YSSD=lfSOPavpe4b=USXiwRF(R
zL2CzX98CJX_(GXGXI$m=1l=_+a`0#;p*Ro@IP@?%KY^k+9i`ZegSHNOJLuz}orCrc
zvJSd9=-?!iu}%_pbig@S<+PK;&N4`()InDV7dz<Tpc{2qBzTXqJJnvBCZ3+1XOf;W
zs+WwtX<Rau<<EaT+t)!q2jvd(EKDw899%-Nk}c<8={;FWAiZ<nA_}3{0sL?WgQPx`
zz?m>187iUXKzFdv!6FBS1Jl7c7Ow-#f$d<hgCPza2d;y_LFm9^Y;QU|z-O^^F5zsD
zLHaP$e>idwJ19`M1IqADCEQr3bZI8rr4EKV80lb?gUcKYb1>Y&2q}sZ$j0d<VdX^h
zKrb=c!59aZI~eQWkq45;6G)^3GbLBbB%I)2qJ!xUX0YxYOm-57>Z#Q5_AC?5*qoi>
zBy(5h&Wxrx|Nrp9OegVbp5tJygINw{OKo4gBhjCl5YBTjpXT9!L<%H@km?ax>|lw5
z+a27&a(1xH!F3L<cW{M+D;-?zBn!-|Xb(fha*5~969c;mLT(UULuDMi-cs<b60&j6
z=LQEiI=IEbtqyK-l0BuHWh%yUH;F=+YG(~`8|~^}Wd$45rRkyP3GPexpDpfmaF>I%
z4(@fZQl?$);BF~@l@!7)YbL+P!5SH?buy7j;^f20ZpnQP=bwqT*Kf|=?|_>pjD1id
zmFlfyu{$Vs0T+)t$%Onv2OlwsgU89{;7JFsIN0pqDF;u}gqn&M9X!Lbb?}^n=N+tP
z+mTL08zfS>79fQaW4>|m0vpu%iI)+NEjBuM$-&D`vWGBlP->HtI1Z&B&mOOqFudyE
zH3#oFcvmKQ-N9SzXA0sC2X9KsEqA4lZO$;s+YXo)5vC%-+4y@7-j`xOaPU8gkdyQf
z$+hl}9em>8u!AEGK6S9g!7uD^9DL^Ba|ho#_|Cx>4!(5oHM@nH;wuU1zQr9&PRO^+
zO#HaMp$*p%Tz71Bk~boLaPTAhE(hOBdf(ak$v<`@+ja*(Iry2%TcC><r|~2*A(t=|
zwbQ{a2YVgtlUe-g;CBbRDbPtK|KyKm=l95{KlsU#V%AL3^0<vpQtWr|CqJC_FL^4(
zl77&^AxWXv8Fk|+9y2}a;28UJ7pJ+&^5Jg>|ImIM9A|&tv&#u~@70p!!-&^2TvMEM
zaEi5gN+FT!lp`WpRuHe^qMD29E-xv7_sA%xs*A<*6QqWVnr^~#x|CnbMQt~^eMXtw
zu&PAPaFc}zc__J#i@GkxyO`kOOqYKUiHlwIa8chy0~Z&%Xzk)G7Y*HHxpBUWMlKq=
zILF1gE}FP#>f&q{&15V$F1W$MyCK{*>?R-c;mV@9jN(T3c`g`BA=75(NpIoe0ynvP
z($WPNIIUbh4=aM%g3FxXgwn>vMJ_tH=;%UmA*7IYF48VaTx49dbun*rnpa5p<C=(5
zR;J}tnU_u4OJ+_!TU?gz<f5~SE-p%4WSMqAs?+Xb>cF(r;gX4|t}eQ{=+2DdG}Cgv
z%2?{a*q$zWx$s>CE_%D@<6@AD3YMyielE&fl)K=nq`!-ti%VSaO&cyxxX60x#qL~%
z5zo6Az$RQI2D;#bB(Dxm6aE<{>zeKBGpY;Ch2g@KJY3`G65)_qxj?gAxGp>wwxlza
zBN0AtLcB6Na)vG<7sFf(cM(g5AucX;QE)Msb=p073x!!<$E$fRE|Z#68Iq{lWJvns
zl0?o37b9I<?qaNqQ7%TixPEqijGL?z(@*rLK9oRyrWz;ZQ&k2jlW8ZqnB-!Gi`!{b
zE~dCx>SCFTsV=6unD1hNi|H=jot&QKVzxwPxTsSqX3~~6WjGt*0&R|qxvWq(Sy6H!
z$@Lo7m7HL318Sj*MKrL3$`Tg`$EGM}u?+S~39d}1{#wjM-xV&dbaAbV>s(yrChJ!6
zFQ;X`+nZ~{t6f|}+bc@8vz{9%uHa)VE^c6>aB+)^8(mPsO;R!Pb9qR89^eFEfVfp=
zbQ@dNAW`^BVb+v(hl@L1JnrHN7k9Z>>EZzw54u?8VzrC!dC2P~?;71LOYa^REa9^0
zVvQ_z($~sZ*5G|E?xz*W<@sAvk~@G8xp-Jw(PJ*wxp+k4k4hd2sWd7&Kd?f%1ZMd^
z>EbCDFS^*6d@`PKvBAZ2v_={Gtc&$7HqFkjT9nisYoC?)ybB6{K~^G7l&fr3B4b}7
zr_AVO!s&^^w2fC>Y<AHi^Zymid|!9*hKsL!eC^{+7jL<E)5BXH-gfbhi{>8A^LS=~
z_gwto;zt+nyWlmhPhD(r@d4Y&IpTkAawY9UHg;AS{S_tg6Lwkk#nd~}zd=lQ#Agh8
z>95!@>nHaGK6mlOfB2WI)Abpioqg@%8%g|D!mTd8lgNF;#i2=;Y-2@8Ap%La`T6Yp
zb{9XftMpLY!_O{$Nfg6hREE{$^3{Fpp*{Se>~irdi`~VL?bWw#tA7536fYe4kEDKg
z!E-C(Jhb}5#eNqDT<mqRk0!k?yK$J{k=F3t%G+vcKAi)%SEs0hE)Kak$<EEiVHZbS
z{O#hni=!@%v8nD>hHkG;nM5ezm&t;{Pq_HU#lKP$?bd96-koVBj`tPDJ|*ShG!Ioh
zRP#{9Ly?F115#9mshE}weAT47q}T9RdWrno!gRGhf|@Y4{#bFkhci4h@NkxgVh`|e
zrkBh>2J|Q*tRwNd622$jF{mf;`Vy`mB`%(soLn^Y(8NPi4~-<9l*TO2HvG3cakiwK
zBVjWMc`#I&>Rd1JLLu|{9$I*q?O~3G3p}*+FvvrNhgKdg^ib-dtB2Me+IVQoBpxpE
zpm_LgcD{t4HdzP{*WQy(dw8N3pJNhBswQvLWMmY_O5*7nqP>TX9y)pG;DMaaRu%oK
zi|tyfvxlsQE|Qs?&Bmsy|B*cSz}Rjcx_jvFA?M*@4?R5e@zB>pPY=C3^kz{%l4TNW
zzW8#0xVMFPX||vmSM4pPb8J5k4Lb;$bjg^qOFWc$7~tW%E~4q(*>Vqg4^N&Z?!6~X
zPHres&Oi^uPa7zhO7)<zraX-BpnEVF<stN7dayh`fS=6AY!41KIbPlMz<pg(cql{v
zMtW`&@jaZHop_RSE*E)-JzVNxs7zS!FxbNoFFC~FM2-wZ=r+l;gqL|3CZj3^GIl{V
zG19{*4--91@-W)N7!Tt;Ody+wu^z@ru@piz2q)f?u0-f9$*4-PlRZrFFwMhs57dxZ
zOqFU-0cJGA!%PpeSUb|0lfIhFltMTsB=cMk^E}+);Z7E~hXo$4^03^)LJy0)WQXSp
z4~xBI1BW{vOFb;{z@3f$?Mt|SvP{ysufkYzUdgX$nc~*U)iU7?9&Yq-4UNacb&^7!
z>&Y`S*$d(>0r!h;@^G^hvckhH{Cr;i^>7=t-LFs%gI!0b$<Ixj+r8vGh&x5Z@A9zH
z!_yv~@vzFnY7Y-lKIM40$HRRd?)R|9!&(o#1az;LTumBxRN*}%BD@?#_<)C!bHsyG
z@Au-ybMm|s#OrKiUgzNv50BH-Jv{nf!pB$(M-@I=#rsEFnu{kXc7cer)Kgyah80th
z$fADM!+H-dd)VY*gG~E^hZj9O=izy3bz7Efe1vW7v_yf89$u0>)QZvwDZf(HS3GR?
z@T!N`$l&1($;Mo$1MfYxYLVOpqb9s9^|pt1XnsBlKHl~49y=Ky4Sl@t;R6plSz;dk
z=ix&SUwHV^!$%%IrWwr1f5P5?F3r1>b4E6B!cS%4Z}IS%L_U|0<=_3N@)ZrBnfR9N
zi{&s;eC^>Ic8R+cPSxmfwAI5l_C>S`FPW)+FQc|g{09#|N`$WpFp5cjlCk@<qWhmo
zkhQ#nP4E6>L*`d@I3A99_?t;Q?DnwF!+sBYX#X<RUN0HB_=<&JE{JU3m|~e9@bD*x
zzhlbLq@PLu#ZsLnj(9jIgNGy}{V@B7ae~OJ+2q88OQAk|bIijDcFsPEeen48ADK&4
zKl!wOJ)Eoz?p98DNJ%2;r}?Pj<GM4G5-al2?(_s<A63myUZ1P(qlQF?*Yr{AKfJb&
z(<P2RMU1+%Ou$E7A7}cgBPDaJ<ehY0Z|`!lXFWf0MCY%*j|TtY+zD^wqp^=tA6<Pk
z@zK;rYaeZVob98TFCBY)>Hp*7JRj%#IM+vWepi_Yha~PjbPa0ZC(oMEd*=elNg`th
zOit5xsFk017F{S|J2!oi55-4&A02!M$z0+iBV*G(DwDL8bV_R{>9ZON{^-fm(MKmq
z$@+<J(gh|u%OE#Km_-*qaa$sy&B=H3(cMRd57o!TK6?1b`MAVKPanPf#NVc$kKR7|
z_{lR+ef`7(mX4<MXx(WfZm49S!)kv&agk+InU8WG1O3F2HSZ^$u>+(K^3w&E%uGu-
z$VVljv21-fK3vIW_%MA~GC316iA{a-DP}}beKvJqTF-~?BapFluMK@JmeY|;PK09V
zB}=x!K8DapSmQn}^)b}P1RoQ9T;^jK)B3pFPhPPb&e&EpMzI*#cuR|TuXd!LyqQDf
zz`o+q(l9tTn>;5!)=%C`8Rz5ABh^RN7k4N{<Nf4tu<riiNj@g~Sma}|k10N;`dHv&
zp^s@kj_)WwRU+p5nC^p49Wx}HDItTiBr@B_9Er@8aNd8h<I4q)5_-H}oxLK5c>9`^
zzbd`N$5J0x`nbx+GN~T7Qm^o_?a54&PDR{XU|ZlzR`eBLE@QdKz1qh$G@*XtS_z48
zT)x4_jXs{?C-}I@$IU+0_*m=X79Y3zxYNg7K8)t#HVJQ+a0M-4taxmXLU@OtJQPWW
zl|HZMB%F8qSj~z%UnmtR2G5+GaPqOudt@xVNAC4;pO1%pJS-{q`*@J{)=WI$V{hHw
zl*uGa_{fE+bv_>P@wksCB<G_NKIY@QG2*H@`D<DvPg6eW<0+Q*F!3~-@N7XMd!(k-
z#3g5mY!|VfjgA#ceSAFUC-1tv>|>LU=Y6~&gD?8n=;I|e+p38V1{wG&3-N>hDzEt1
z?Bfki@_oEYWAO31Ou|^c&~lC~$jQfEDiglt<82@BNCwK`b20tpBg2e+-^T|&KJ~Fh
z#{SQjkJ9+~(8ou9@(9e`bMoAXBj+cy&wA3y`Jdzkn9pSJa~~rICC|uw;p0mmRE*Ed
zFvu*vq0O@o48i*T&c{~TaDbr!w)yy;{Z)Xo0{r0PM_PD*>H)U<_{ql+A4h%s?Bf?7
z`+XdsJ^R?{V~>wNeC%R9R!xlOf`_xe`uNSq@6vuq*)5U9s}gr&p8wL3?0*}(@1@a(
zY5w-ny4GZg{K@Ys6MykD+a+>}6>*RSeo8qcA(6v=GPPjcu>~FTal*$x>{a+7|0u_0
z7Db)Jb93_l(k4$TCw-if$cJ<CsUR5+sz^xWv;bl48btUkUJ;1_h;TMb_^DE(Mu1uY
zY6qwp;O^&BJglTqogUzf00>YgNS>tQ&_h@p;J&d5^3Cvc-2i6>i7y{J`EXLYUV!=m
z`1lOp^JGTb_bCknGz!owK<@yJ12hTHCcs4jng%#Kz<B}A55NaWngxmf)w!&W0pc7I
z_bG#C2vVBM*g>5{ivSk{$ulOc1GEg#D&Vug;zFkCoIGYi&hPl3Q$s;w=XEIt6{-=S
zQ-IC^(g8{Wv<uKaKqkQGrlPG(NMA3erA+#ObqLT==Eby&n~L+ACPXTh4bUY(_W&15
z-AV&=4bYAH4^A>=c1*tGr3^LXAlM_ot4gY8fZxwaBr_xO^a;>6fE~aI&@Vv$0D}Tl
z1jtc`0Qmp|SQlAQCSiGiQ!NCa$t5I_uw$o^fkE<cE`Ow`0ki<7WY#4#sClQ7O6E?P
z1hE2a_@xJli~3|4bOQve`T$-4UotZ<N@mtkfH=UA0D}V*DEZbbk;<$qb)XzdpxDa-
z3=8m9fVTq-4=^IY4FPTpFfzcX05by2WWfd)!>XZ6Pr$dS(Tu*70mcUyOFefh$K1sA
zZbE>GGRSL0BytfkiFSCR+T;Lt)k-KFVd>E~HNdnW87BCfPPIEGOY&I(W(QajU@2=q
zz~aZV+~QtH%jB=Im=`3|nE3&?)FQHgJf|nfq9EA`=Wj7v_xXuC$M+qJmIYWI;OYQZ
zNbBW}!IcuZO2QvkrLSQvPfS*?*GuGD39ploub}X83|^PJDZtGE?qzcba7%z&1Kbhd
z&H%U3X806d6Tx=0LVheSmflVy{G^y4cvpaxlDJC3LF3Z&Pa}Ob+g*SIaf06?qt-~s
z;97}rg?N8}2Likh;KcwB26!mIQvse1@Gwo6x}BDI0X;&yI!8Pv;iD2V_|wDL$N$5h
z2=JuDQya27=H#D|_;aiUi98!%y+k%h$P!?3{;D)cV4H$CV@i4>3pv2cL9*E7me-~L
zyp>$%?1X{HD*-l3%BvE-CgJN6GWLxCZ~lk#s^B}s1N<4_uK@1_c%O9?;Ku+T1boCB
zUk3Opz=r`o3a}->X8}GA@JWEHio~Y@uH$=sMS{N@rwcl}68Sv97XcX6r$!Rw&fB|g
z67_X}ZvuQ5U~7=L%RVqMMfhz1PUb0OTY&GSOr|CM-#K~GiEIz>6Welt-2r|MxN^j<
z0Kc-jW%3;Xc2ap-b*CgR^7F^wZ<5GbV{i|Ph`C70UYW%{sUFWj$;n*mRR{_>z)o^*
zo<a@=I27P`K>rgQmR;^K3E9~m32;>6gZd;ELdxGV$VbBe`H$yRfPW=^@;{2jr5|@<
zL!1^S9e8E1YKUqfmWEgsqI!rLA;yQ85Ta&?S|R#}$c3mK;`EUJ8HW}j&InN)qH%~O
zArPWYhz23f3h`R2WHhN8;>-~B!laG!SD(qBNrpWBIHENSlY5Tc+lxkF@(Oe%om=ir
zL!2GroDkc-s7@lceVT=c{;5X%0yX)-bEUxMA<mNs&pnf<5G_M=4ACh>s}L7*-WDPq
zCLKj<2^9(3gt$l|+=FG*ZEvOsOG0F1b{#^r{ZHF=A>Qp$M9KWMmqbmD<{TP2hscKL
z6QXa3E+I-o^a#;2L|4hyJp^yHcau2#e<r_JQb^<+n77({h3G9~r{$6$8MspJ7bd%B
z#9z)QyDJ>9E(uW<A_x(NC=Zbjp@%SJ!U18jCRIZWtjzIGWe|&fWV(X-&&_iYs)fm|
zJxUukPnaRB5MGFn?&MWUT;wDl<;a9<Pb8)4lKHU0ag9achlyL=pJ$0EL>yvxh!G(Q
zAqI!IjDK<wh^dMg5@IOp`fPD&m^{eIg*G9Nig+bq>jW_@1R-y=u*yb;7!_i)%!@}e
zV?taWVr&SyaE!PnMXO`(T)QziP7>+s&L#6iT3TK#2r((d<PdL<N>5=%A*M;3n=R8r
z%m_JI!d$7+%n-9e%w}GrlNC3A^ylgQa>kGwIP*dd&|-d=_^xn2hq26VVTeU6!@7dE
zK6!0(afl@{ND2p|D?(fu;;9f%hqx-l@(`;-{z(w7mX>o<h?_%P6XMzs*RdS-CU+-q
z2yuOwEa<qk&ftv_=Y0Xj-V);05Ucp@eD*EGiV%0vYz`{7hqyx`cd~xx=9euJTm<on
z&JTa-!Pu2DigzVQ+^i&9WcP$v!@8K8e>}w65ch_7D8$1d?hC;ia}ThErp5gd=j@_a
zC?1qJ@7D3LxHtAF>%!!XuSX?(g!-_bnVx@)A6P&6(~Zw^;wD=>5rXhZ3Hhk?GyL8V
z?}zvx#Cqm+TzOfRz=jadg?L_4UI_6bt5~`)5pE3elB^UOGlMMfX>;?NLc9`UGmEH>
zpriG>5_wg^*JyhZc|$@nyeW~lSl9ni-U<1*w_wzJtmS(0N#RlAe<42PCpQyYY1kn?
z4)J-2FKFt+#9)(aYJ3`Ei!{8?SXp!P>{tKt({%QryU3U9)A;g3h;Ks7yRhi15ckaG
zpYe!q*>x-w-$@}X_Er<qe5s7CBip34f6sb9qWnOcObeck(mDU95I={wZ7^00#xEgu
zg!nhc$rw9B><Y0r!oCQ<hWIVS$Oxk%{2pRAyN(E5BJ2tA2m8_pr$^WuVqb{kAx?zY
zA7Z1IJsjdlhy!elA^r++bXEBwN&oz&wg*}AbMr(#o}0h!^wOiWL$&-^hyitTD=Kmu
zhAKq<W=GLDN8}%>#A5lYf0YQIPtTkTaVkVA!dvT#7<_s`X8Y0HX%P;6l<PS(yYg7B
zC_>c;)gn}nP%FZ>XXV<xq|}Ijol4CJ2j}J){MgPG&&#Jz>veQu*%=XvBeaariaZhO
zL}(V_oCtLzoEf1(gtH>li*Wtq%#}^i=I5MOt5^L9SKqA=X&9kVgr*U^&vKs^<;Km=
zG>*_DLi2BP6-UdOeV1!9FMoD~$G^|@nU}wQPww0ZgXiVXi*UX~np4lQ8B$tAm^m+h
zK?HSe`G<2#%VuVX98t<IjL<qlNrVi)cU4)N2p2_AB#t|kwlhlGKh%BjQbj~aQ{YmC
zzoG$UZ6mac&@sXz^YU+fs<e;LA;L}b@(0vh^g-^aX63{?$=J>k?szRn&e8~7Bjh6t
zh|n!U_XxQNmqfTYLXQZa&CB<TQ03w7JtN#YE7LndFBv3d?`2t1`b6j(;kx@3;@T>O
z{Qa5fz}%>cTv>#k|MV}9@Xr~gb6S+Miu*4wopeR%zzBmP42f`QgbIFpgfK!BL5rYA
za3Z)7j0o=-IWvM4abF_4(8$^RIy1*#WaU1+G|Rsp^dk7Ik-oWrwmL8W;P7nOa;4#v
z(wiIPw#_b$BNSLTEQEQb8+zw9O;>81UV7obT^J-B%DTHjId_pVBEn@6hOt6d_FBJ7
z8O|E1o}-=YzP6OHSX??f!k7pTM0ha5<q^h4xH7_35ynLrA7Ofg84)H#p!`V@CP$da
z${muedbN_8pKm-rKPAG{2tQq=@VCdxPK!XXt*%RgGb7B3uqeXf2(u&1i7-FHt{J6s
zBg|t1oSz|Qhxz%EeD={vr5zS$7DQMm8T|SABeOFz=jWG1SQ_EE2fJSpVOfOQy^^-D
zVxqEXa_Nrg+4olTV$^aLQG}Z#+!EoM2-ng|CuMG8mC@{Hl->~G#ID?T6EoM7XMVnT
zcIl(@^EXnN0p%-pDBYe=1|xTCgxeylim*Du3Yz`Q%$*VLif}s>{;F(j)v`NSELF?C
zSfsSHa@4K%^3s)5W_jtTMata~?ul@JgumwJZ(pyxJwLxD!dh7%_e$b>qq9HE&)+BU
zm3r=Gzx=k^xrZV=9O3l{Z$wx}TaB<j!iETsMtF?XdTaU9Y+Mn_r<8v7Q|_q<Pegc<
zB{Q?s`#?$8P3Xga&Yjw&)LM{#hP}ap{IhI63-Uysi|~AejS*go@Ir*LUHxgaFG{4w
z%xrE!{`(#MU#1Zb&TfkE3Jq*>hWO?PN7b@3j^|#DK!}yfYZ75IWbjQk%n08_*c#z&
z+HHg_Y&a3#jqqNCPZ%{Z^L~U6B77L(BNp9q<<bRt!v9Izp0yzVv8;u+7UX|gkiTg`
z{?P?_Ci#>_hw`Cz?(+!$F35iw;j0LfrewaLvANkDac0`1%Gb<pOWC&(h<`(~Y?Gt5
zosaeWcb&2=!uKo_HjM~BMEH?q9^vN*!yoFtorO6w(`{k?yoGrNe~GXo!cO)%4=P=J
z#b1~w{Km=oPHxUPW$wcKZxMF0+vg}iwvUu{e`iKto-O;PtjnYfjpUDr&p~9hQQ7?w
z4$vTDEQ|3cE0ldmj2<x#vX^G}7^7*7!x4@|s2QVHjH3~bMK~=+l^B0VIL?lOU&=BW
znWg1_yiPg6&Us{Z@gim2!u-hyr`Q0WQrOuN@|TK};M)uHMKP-P&Q*``;M5F}sxnwj
z!nY@t)`*k#$VRbua%t@tr^l!lqkfDtVid=y6Qgd7_LEEZEzGlQA@Pc+%M}YV$AWC_
zMfo#h?3t0BHLmnnm~9ZFVT?vGKAn+0D@L0uN~@$w8^>sIJl7`74xFCNR`124J3B@*
z#>TiPM(e9f&xvtvjOG&0_RpOc<NO${Vq6$QJ=SyL_|g_JE+BKEyk(5?RBr91S!-e`
zgZ<AcFJ7X&**({qs?IJwdq`G^A!7RHpi_)=j1p=aqeF~L%s1T7b77_(@kROkqWr<3
zN_J>weYdhL2m8}np6ORMbWy(dHA?3g`+DWN#3+q1$joJ9@JsJLn(G>)Ta4~8_hGUx
zO)uqFtejTbZ>KV6QT~ksWj$l`iZM9mYe?uFqYpJFXN<lv`cdZ?`531@Rr<%+F(;FY
z5zfvqNc@r*Ws*pI^@P#^Ec^+Xfh<xhd*G6?wpW!lTBQsk&*Dr4;Shz09>a)X#jq)P
zcE*gsy1Q{ve&vD;gH8;W@?%6XycnD8oF5~QNY`nZwRMsP`&N(K3ybnAmMC$I0*m_6
z?5B(JwGQ^*@psu{1IsUsF*L^17}H{07GoH#D8|?r!(;xNOxeg7qa-qd^ce~%zc0#H
zTbv&q(-kwv-x!HBI=6gWjPb0>#rerGCcl&8oMb|bi8QeH%f+?IB&l{ne53o67+dVj
zlGk#C(__qt!J%_*jF~ZJ#h4Rg|IqAruXmpvW8iFs`0YED?u+w8UiwU#$LwM}@kQB!
z7>i>piLp=y7fDFEy*OY0>>@UQ{)k)=<H{H>#CS2rRWX*wxIM-lF|Ll$b%t_NjGJRz
z6XV(#*TuM=#xOPW=funnF>Z{pdU1aJ;{5c*dCqy*06(i!c1w&~W9&+o7q!UsK9u`#
zasD=bSBzg5=MVbX5mT~TW@YY-aTl9jjE7>ZWW5~C-5uke7^^5S<})nWLsPPSCucXj
zSoYLTWlfCxV%#5NZH#+kOc<O!wKz|DwTBe;V-Lg_aD}oV&Ng0>KRhP;aEx{2S(0BL
z<A)oRM`AoKi|)}F*(LeMSZ*V;L{_iq|3r)@*${?jpNjExjAtZU#gaVB`B_OHIy_69
za07FHy6m|a&$AGg<SD$-8KuwEF5MX8r5NAD_%_DNG^ZHv$M_(|D={|5cr(UZEV>4{
zS7Us2Aom)(lv$a}7G{XQ9^;J|uR1y64=u^R9Vau=cVm2Uqw)^xXilb4)TO#xKH%fr
zd;E%pnNffDe{D(re>900pT+nv#z!or(@Q^&lL^nKF+PcL&fHQ`wk^pISyM*hlhZRF
zdCKRM8RJVT5aVlp@AS+wXO$lxpXnVczjV)Cx38@Aqsn(Nw#N8_pC9AV;@q|vzp(Yi
z_?}tE_%X(@CHbFX{49~}Bz~xT_>ywg(tLv|z1SqvOY=KpaBA^ujNjNy9#eM3e8;%$
z>(es7v!(Yf-_4dQk<aESsaj<fOY`Msc6N*0+C#a0?C1IItdyABeMuqz8RIWj^r0N5
zTMQDpbyL}4%8zlJHZwANlxoQShw`tTl;MD~by?}({DfttFV4=s&?a|6vi&3Bohy}7
zF;WG*T)?IRPAi~F0TT+CSU^z$RSW1_K)(X26;Qo^3kqmipldE_7ErH%`UNcN)A8PS
zlv)MUF5rWy+0zRsE&v6bQNY62lyB>oPdT%!P62fbIDWHoW&xA><-TuL&O%QAstjM6
zXCXHzU~ALd*#$H!;H&}~7SO1G#sxGjV9nBG#5^%R%c^fuz!gjLL`ZybY5tr7&Mjd2
z!{z4{Q2v-w(Ja-x0Jd)OUr}0qegQ2Cd>JgeuaNtAaybj3RRI?k(7AwY0j&#YQ-CNS
zUEt_|rn9p(o8^=OzAR+t%*inL^*On(mgY+e`1&`cLjjor+7{5R01|62%m3OwiEUrN
z{-t>$9Si6rIoY3caA&95rGU}`dKA#JfUX6sSd`h7&2=L(Q6XOI=Un#!E@pAn&ThQD
zjF9wR1>Djq*L7K*c<%y!enRQP(q5J)(!YRQ0d4_afu|lQE5IngEP!QOUcjINDhkLK
zFra`@tNIV*hdY__@#Xg{%&aT!venFDa8@lqW2$9&HZ)xp3rptNJ9=%NpRo#fuW^}E
zz^=Cxn{357A{>#Y9Lo6x1O<#K;Br>_7rC&2Aq8AoKvY0nz~cJlg#rc_uzR*boC7y`
zKCW3lw1CSB7*W8;0)Ahv3@czb#Rl0uTg$fjSt1ovv!e=FvN$ukfU(Q+n+9i@_Gqiz
z8Luc~SuFi><7iYnm1WEF?Cr-Fu(Nh4f1G|#Dqu3puz=eOm{P!0>OeXC90slIoC4<3
z9txOIz{~>HEz8d;pu>pltIP7=EX&W9_*kP0Df0@+!iTe<Z-2?nFJOTTE|hS~1-V5M
zDV~%i&(Z>x6>v@A|9JWiFe!@X?L!U>z)O^<fD)9wWsc<Dd50X~_U;-1Ns@0T?##~Y
zlCyy1oO8}O=bWQr1`{YKAd*BdU;uu?|J~-}d!BykdAqv0ySl2nChiW#=i=cA(es9H
zWG+_DPkXaPU{o$f)1;ZfF}WBkTZ@krp$@*}kzztFCgx&FE-rOTox~WZk~29Mtp?@1
zc{%&L6~4~~`G}{|-MN^ai`#ADX?#X5(t4%R^`kok*lTt!=Hy~+F4pB@ZZ78KVo5HR
z=3+j*KT<5_GBa})<l@{=WnnHB<>I&6L1Uyyn&Z3JQW-c>9PFtq%f<3stfn1uv8Qlw
z1-;NkS(S?!BgM*GRH+(VH&QGd;v<un33Stt<vB-3iuJkJkc(}(*q)1xboapYEp&IQ
z;3kPTQ>D&<^CQK>kzy<7eJ<E!p^w)=+>$$Tu`3t5bFniQSLgeVypp}_Y>+!~54T%p
z@XKdXMP|-kx}aTfANTkuF{@heU@i`EPlZr3gu}Twl8gIH5xF>;i(`!cT>O-a<GDDI
zi?g}-G8ZRlg!#UYbMZ+oPUYf*Tx5(AALin;<g@AZzq3E$78oUljuNEw@29!=EEk{W
zV)iJ(!`v6taFp1)Bl}D)E{+l%O6J^?)vuV)`Ubww#f5kVz&G5>%s->W`CNP_!MR*a
zC=}#5{ASx%f3z@13u5M+i(K_+ab>jlAs0W=-3-Xl;%2+x@cucMC7w50kaLwWOdsXq
zckZ%WT&L4>@oO$_aD(K=uc3aCmbt}*Hb&GRBOZ>9Co%HBvwWS#h&wdY?d-epESKHC
zL@*Y}={rXJ!5HYR@EZ1STHy2SKXY*}7iK@-Uy@E3BZ$|H5&zJDW5mCbhQG{wn2Y~0
z-Gxvtg#U8!h`Blhgzz{Q2_ZZi!gC=$GsQC@d^bkq3n6a^Ul&TP*)JzCgq3G9dGY?J
zLXI&ewbSIB{2>g#o=xz42)~aJ1w!aF%lCrBtn#)=LCN72(>tFB3x`l7gc2dV7{Uu<
zMbQw7g-|?%I!^q0WMRL+kz(1i5PW^CC>a8i53?~xC>28K5O{i7Mlzd>6?2OQS$!#l
zmqU0p#E;RVa_K<%5GsUFF@*R2$z-+9Kf!{9vtJ1zJuT>r6~9dORi^xa)Yn5W2l}dn
zP&I^MW5sJB9KDdu<q%(A>Z=w4FUa4ylARR7j?0<VL-5OL*P*_%>DfvM$srW}J#+q8
zv44O<@6-yRHWwH|E>{u48zD3ap=k(#5K=;@7eYn|32y~cLr9}0A$-#-_015rE%Omv
zbba%G$n4cesT;yuA?)swO8iFO)cPSb2qAU0PlV7ggxL!-GkK37gneU0BU$|=6vzr8
zo72_E7&APz{TyEoU6~dnJ~vjd+E{kyx!>EN_!(gC`n=7!iV%1JZ68AO5L$%LDugxT
zQXehP=AECG^w(I?^iv<t0a}N6Z60qbK2Ed=p{>-JCo1hi{LNjk%v#@#wCoO{_=(ol
zzDmas->>sk?yZDEP(v6>lZK#$poh>mgnl6yv~~!w5ITqAM`tSpCxnR9Djb3xLRMGh
zc0Z*@+ki`Euhb}~?yh(tT<fm9(=3@Ze;=jC`>9<*=o&(g5PF8tEfl{z>>k4C&Z!K3
zVr86|*D=s5gx(?a;YtUj@}e(#)z|T+kF;{W95GJxXJEwFCBEpP44`7;1h1*z4`E;k
zgF@hi+tO=3tw(CDk-q-p#NZIb(d;3TP8uhMhcF_9@gYnIVPpu$#)&Z@jFn&%)sSFq
zgWxwkQpa};j$^ELOXcZn#nHZj=d&j=W{zf031KS3`0d~%NhdQxKKA7+ll|?u_}$uR
zA&^d&^v7Nb@hm!;{?!oBFeik$R6xZ@74t%vA3`Y=rB!~B84Ky15WWpzQ3#8vMhM44
zSQ5h05Y~sVA%tZiEa$32_;Z|C!5zKPm)l2K#a$fYbwnl)G^Ag&2&|@IRo@o_($`AK
zb&|5n^W(+F5H^Ldo!cRV&D;*-#g-7ZhWG+%py_xqvPVwKVX51gAB@2B7c)tBhOjGy
z10ft_NQbZ|g#C=wqw%AFJznf(7;^^|&z>}1)GwLMbC2cY#mVvF5EIU3ANhwR2<8hO
z;l^Z`jTdCH{4-vh2;pQ1pVRvxoC@Is#@LXYk3;w{gwu?xd>M&m;3MX-38LNv5gZ;L
zt?~r%3Ag72@u{SrNy;kEDEdwiXF@n1OZ_T@vmx*>@g>)|&X?RHb>#-%*9<l-z<Vzg
zI7hJ%{$cWAJ`CY|24{#rp2flm;z9@)sU#CxSLN%u2|rT#ve}nIxDvu8+F?RGftOp7
z$$Qa1g>W^5iP3n{xG+KdEb*fWV%F}A8zI~b;WzHV5N?Iyw{~xb@M{Ragiv;(xW6Ok
zjfo=h>&#9@;7$m489DhgUOM4>ccS=nuI~?eDulmC+XaU84}9M~aF4;<!N<Z2y}y~A
z`Umn<j^CZWAHstW3aNmKhavngg#0R=RWT+{&VS7OOj8m+Vl1`FVPND@(QTr5Mnzr~
zZx>8G(LQJE;_O6~w|a1Lh%#=X=rq??WQ1?thr!7ceGm8uK*jSae<qgm_u`Zn)cA%f
zprW9P*$o202f^hN<M&1it0<!4)t;#(RTNcGOvQ^Tcq^63Is0)+aTO(0^cfQ0(Tq|i
zuKg1Q?=!c2GsrGwRFqZGTty2N<y5?+B27iQikDTCSMj=vYAPzIsHmc{iYh8zA%BSP
zRZ3p-6}Xid?4NpRqNt?8zb>2L%=O@-iK42C*HnB|A^74XkvvJfa5<Z|^?WLlRn$<C
zq=Hqyis~x9?WxcvtSTy6O%en(Rn$@uP?4fy#x!4T6+<(EbyVDWHrtydvZwmq;NWcn
zACw8Esu(g!ys7eMI{}`-67#-C;SPbiD&A6&qe7^tr(&%cc(tRip^6MzkDL9Oj0S97
z@8dN!<r}o~HBynO@)tMYZI&!{+3MTaEkK+tagAL*avIZFD*iXj*Gxqd70P=G%j`*_
zsS4g};+=Wkvt{c$DtPyXpe2{1BBH`o(OSj3Dmtp@q@s-qeVDI<ie-6n+Nx-$qP-fw
zb&%98b;7kw0=AC+F_W#iDnb-iVW`+NNi^#d;1e8Gg{ESI;Unf1gvsfy`go_pR$;05
zsdIqJgjKA%?jzq}9JUCYoFqs+6;YMB2)$IqRP56NT~u^cv1GWfvx-WUgFg&bx>2UT
z(nAGL6}n5zl)n3&9G=>J+Q-+MA*AAc6{S|CAACQjuZs6n3{cTeMSm6KBv^q#e`oV9
z8E>r&q^%~2c|}qOso3TPu1t#GnHfxf(VHq-j!J!IUiL6nTL;)WTm`FTCkxV1Dn_eV
zp<*R>jf$}<rl^>zqUK~VPQ`c?bGGI*n=G#1$=*1{Hz6Lefr*k%l6119Z!XK3reZp?
zI%9)T#HjmU)=WlJJ0HRH`SDwwv$%sKXO4<rqN#ILT#f{I+$U!10u_r?ES3TbCH-Kd
zZ;1+fvRI~Kxr(K1ZIQ$3yOnZys3l+-GFhxrv0B9+D*jZlhOwvOxQY`h)~Wo58EjXv
zgYM%Fot&|6ve-n)BEgNEYqH=ism&_3sMxCF=Q7z}P8QqbHo3DghpoI&z4~@=r;5Gw
zor+y5cB|OKoKrvLF6XV1b8n`P_aygo*Q+?J;s`y$BrruRts87TMI55Sb%U(dn8F7o
zN}D$_j;c7OqUq6eR(WDWdQ!zH72m1&Ud0D0K2&j5#g{77I>FN_K2h;0ceIM`Q$(q;
zzK>OKMgpE=e5T@a6<;uKqz1nnnoj=IzJW6;CQK14rwG!oRD7-C8*X;yv5vlzQ^fhS
z;O*CQ&Z+oeiYPxWwZ`KVg7dOk-SAydaZ$x}6*tIH@gp~;%Krxl#+LXlskp*8r?VKw
zOMEO_=lRZD^L@WM`&?(`*{R}ZW);JCO;Uo_G~Z1Xw^ZC^6qN}6qT)6)i3;A!`jrdh
z9nJv?0VxyX))6_p(Ed%u?+l)V9Llp)ZV<eu;xD>PLvam%tN4ej(D1B=te(ohDjunL
ztm3|k2P!re2|iTg{QohXrUzO5Pep3c9G1#cMS_O0je>bJJfq>tubFkHio6>3H42s=
z=*y>}^;D6l!J8`hTwr{~;MW~}&uRR*Itpo6I#s-&Va!yqd5Q0K!R#r$l>!>L@Pb-A
z^|5+ts(=R4!WxQj@TsDxqy+oBrk2p~qQ;xasH&l)hEf{JYp9^1w1zSoG+%Z(4P`YP
ztC#(Fs>stiu%$xqhdkM|$x9ku*5bxt8Tn3-X`!NqN*eeO^QCFx6%C}XYDk?X2*|9g
z;qD)qJ-REeX?R^j4Gl~MJVsa3;MY)H!@TrtpN1p}W*5)inw3KrH0-CenkEztq{+0v
zG*P%^pr(de8YpA^lU-ZtR!34Q`9|BE6i%w4u8y~Kys05g!!8ZGHKdcNp|gfA8s5@S
zPeXeR9W-QUsIQ@!hIceH(9lrB+Zvi^Xrv*Nc54xAtRbky@4#nk$k8zQUS<~059j#^
z7PJWPbXU-HJry29N%?f?yWg@u>7?-4%8hHjrds@5{aE`zb1L6AwT*_h8d_**Nrl@7
zTG6u_-qny;I`F@4$_U!(-5@ECdfR&h+G!YmE&jlWd5NH-hE5s`4W@=%y37t}8kSE|
zLK;*p9>7Jb1lL{V|9S;<>bc&>)2jH%zlJcU))3WTYrI(+bTmY`%zg@6`>yi2T=;w+
zPxy(;cMs4<F%1VUWbz!~kP#TsRq3js8)Hes0u9~iaRwV>RYOk=y)+EeFi1mh4Sh89
z)6ieTx$C}#)5J5K0(~_cmf$@yr-=cKwCUoXtJ#mIiMOVU^O-sCYZ$CygocqChG-b7
zVHlUJ#qZR$nJ${l&tQa<9+ckxaIouiG3$JGo@zOxq~%9HvHx^IFBGqxJx;@T4bwDC
z*DyiD=ILS*-9(S?^-a{k2e`a7bauL!qVc)EZ>k2~Li}aAXgxbSafaZbaE69i3@6U3
zVb6fnZ4ClU@^fhF898Omz+4Ib?i%>{gPeI94!)J`n;{lzSfpX2hD{n4YoMc-YgnOS
ziH0?+eVlixhHYwKnFii;%9<foYFMRVt%h|PR!i@6`!{>q!1&X*HSE<Pz$?)8^z00=
zfdX}N2wr+Kd(4P<2yND|MZ<OmXFK0k4%;BGjksKJFqQA>`}bZZpLOoguv3H6C(vnq
z4xb)Ua*u|+8XjqQ%rv55zlLu#d`r)A2^vmo_(;Pc4TXF7PG~quPiZ)!;V6|n6WlUG
z9A|uL@wY@+X3Y@1TKQmxIHf_Dz7I71p<Lk746&`PkKjYj+gIVEv5z%;LThs`w-0=(
z;j?%uz!?pnYZ%Z=>C@Rq%JT08-&qZL+Xud+wYw(&9#wdLUa4R<@z)wgKNoy7LzI{)
z&S^NW;g*J9XhRL(Gi7P`Nkh$<;sWD&ruad_MGcK-ik_#k^X2+})No0|q~1C0YUf<$
zI5PzcZ?^M^Gp{MGYWP{hHM(BIP3D0+**EBs>%Jv3#jcrx;Q5<A4nqEI4ZmvmQ^P$C
zcbKv?{6RcZoF3u(O~daD)YgH0$I^p)eBaF!#06)GyUTokG5Kq_ui=4)+Oxzz8vf;$
zS)3+j306b11lDGcn<XA<_@9RVm|$NIE}Ip<PHAw{cYp#-a}spq(NRH1MIF!R$g88M
zj$%3z^?0gzR>yNX^6AL0<J(!{)UZ_EEn(m1b-bXXkPhewt@0Jn@!Kp>P{+EY?0Szg
zOUxD(m-~FPMPWUDBlK+7KoK4PEX`>;TaZ~?M+qHebd=Tcq8@)kql%}L)=^U8Qj(In
zIF`z%>P^1NET`io9p!Zpo3q8sI{zLgz)4?i8{qSrfwRSpdA?V4ysD$R4n;>L9hG&w
zrsH)TbGrtr=={&*Kvg|{Qp$S;@Ap&qMo={!J{^80>K=iS{Zo^4?7bAMF)V)Czbq@r
z&DgVcPO^?Y|7O?LQAbA&9W`~-($Q;$kFQmbPf6l8bOdyyavYuiV;@M-QMzM*cd>Zl
z!~<@ZIT>j>zI&Waz>=<mlnJVyjtm_qb)3>sU+2HdV5p8^IvVO|q{Gx<>B!U()X_>u
zYaLlSvUN1p@ix~!GJVS3V4zhXhge6a?(uutC%Ofi=xC~=xsJLCsm*k>y&HUoOYZ91
z^1d>4cKjNoVjrc2j+Q!B%of{5r&c$Uc{}A@9c^@U(9w}=91xdjOFOp<wBu;q6qfc9
z@Mzvij+RSz>$tNjFGp5&XgYXcHFS);mDzc8>b}`R*Fl=uCT@f?vqe~kt)q{QzB(Ko
z5n4b;SDo*}=eV?(jwr1f4iqo~i!Wxz7-n-sXFYy_aA$V>cH(Q7eckBI-U<&8J#}=K
znAILS*8eYspqGx`I)?NNP~fFGqDlAEDSrq1=@_76ppO2u?Hs|Z_#W3dNBlY}b&w8T
zKJW~4h>rJl45lMi`go}26O(>(#QZJ_!EhZTbga^`n(NXrO2;f6vvrKtF-FG}9aD9T
z)iF-TWF2Sci19im=$NF(FI#wUoJg5DqGjHk^+Ob%w{yCka|E9;-JBz)QLE>3X6XFi
z_~3LM1?GxMb4AKrF;fN)5A=LjVGe^<$08kzbu^nR=IL0Vqw~p}`Lx?yG3ii{*}Ed&
zG2m|P6j;$bu!P2>Pj%E@=wlf@S1i++NdiavE6a7PNeU9Iq>%>+UZ0Y#(Xm#?79Cr;
zTWLlen{-^9D>iV+a|Ji=p}Fy6=temp!DdEa#US6mBHgBAJN>I;zm6SxJR7s@*0EE^
z-J-!=lEYKGC;UCMd4FZEWZs)A4(K?j<EV~fIu7YLtfShY;1Qa)O@OIBUteY8xI%mY
z{ro)f>uWj3x!-#!C%CES#gkR~Jkf5R_&~>pI{wvhU&m=3AL+QN<7XWo>-a>+d2Td4
zeq-lT9bfAFt~81#1wYgAId$t^h*A25jx#b`&oaQeDdfD>UHO_pGEaO<SI!gPNRx8O
z3yNX=JaJAk`+b%9y^afXnGW9f;CW81Uo$W2_(8{y+`lb?)b_$Wade*OzB&8PdE&B;
zD>@3!7Z+ywe&QPEi+9HQuIaeW45{OH9XGhY=8Ic8e$jE0n__-ucytaq|L)JeO;x$T
z_JLm+14V;(BqcD|+CIRCcYo;klZli`ql0hW`%3&OK*wJ?UYX_ln@PKi!nf3(>7lSX
zXug;;Up&z9kQvE983X^*@gI}9f#+HN%zVVf8pvya=UR_-BuGG<$KZ1`AKz1Al20^{
z--zE=X%YzLGjMZO96W1a$9%!kY;n#D2LH$!Fi_Y)LGt@5x07=U8JKb^n^(kqh3|(~
zgGCG!HBiF9iw5|1N-+afD+P-iXxuNr>YQ*OduZwhOMIn9<nVTVNduqH7o`l`n=c5;
z8YpMr4FdrKFBy2*!0QI88Sw`<<qf=Qppt<K1}YkeKk-~3YAq127#OYxau$fn2C8r_
z1FsnvKT!FxztZ2IZ7mR^7Koi)1FVwz3?vyyHc-QW-{3VGF0b|}2F?a@<}VQSmd9V;
zip=-zSRiT|sAZtGfjS13RtnY|tdM@XK=3M?L-7G3pGBq^NHx&VKqCWh8c5^dYkV07
z(hcO?&#Y_UEhB!hf4m49R|{UM7OZEWtS|UswIHkY4Ky$?L<!zpAinCCS}Z3g(?HOG
zprH(88OY`!2ENUg(c;hG!pb@M7mE6c8N5;d+CuTRfhGoeEfhar&#b>tv{@)N@_&OC
zigye&H?Y>hItMKbv^3BvjMibaGSHenGBMTU#}1Tt4g6!^UjuCnv^CJqKzoBXbFk4s
z2Ll}q45nfRIvL0{5H%1p5Hg?|unjl{Gy}SUFm-697?N6&wr!o)lwkZq!KN}=BI&Sw
zsgKteiWqPWcm_T?T#I7mdZn?cT%8nx&IY;|=x3n6fvyI+8R%{BpG(o*;7fujz2tyB
z4D@7Rbjo6{B@0DndUAa^cwYmNF3EfMr*K#{eb^)IJp(nh#O7M!Km!A0-=q#%={?g1
zF_?R%wd#`mzGT)-N*QWkn1N{qrZavF+&`3eynzV@Mi>~$xq79IGVoVRWvqeG2F4gz
z-ZQQ<%ROJpI5`M0H7u<qPBbu?<~8s~?UYFz^Qq)i$yuo-zSdGXx1rDs12YXQHn7CN
zECaK-Km+p)UWO;mF)&w-=_RE^Tj%A-dl!lY1{O-@B1z9I6wTYjn^>x7iAxPEGq6rJ
zEjO^jz$yc)WtC!7c%^~uzLaay7i%P5D_iSz%;GHZDfXwVmmVS5WMH#_uMFPj#})%y
z4V*IYfq`x87*7;9%*}3Kr-8i&_8HhEhuS0QZUeL@P4S2!D*duw@(&oi+D&{?vN~iP
zluR!@`G|p|296szVc?6ssq`J4cucm&TIc0ZCnavJB~pL->q7&lDQV!0<bNdn@+sro
zz{dv0J;?V7w|q;5Lv8Po_8IdDH(<}S;)~)z$a&8i7^NkC$xv^dw+~~lPCQz^;m$H}
z-M|e4=M0=Ta7D(zcT6mDmP-_PCYhGJVBn&GA1J&xmE}hX*4Iv9VfC^U=0w!<Cj(by
z^=BCa*Cc*o^D0RxHx1k}aM!?ZlK+cb#jgf#KOLb^&or+6j;zunzcY9Y{4J}0GCfjW
zVg^5_D=O_wz(}C=NbehXV4#JGmL?uD`7^(nsBYpv1CI<mXX1GikGa|RC*(DeXd=PH
zw2LWuOmv!)#PW=ZHFxR}WL8f)%PSN!p1AUxXjVV)tcglLq!5t4V4{GDswQ4D@!L&b
zK@;UnWDQdanShDHCe)E>WljDcyHdnNQ4`1C4iuBsQYL(hL~#=(Wc5WUS<=Lig{kDT
z7fWdqWh9@t=_0|t%Z6m}S3)mQVg3SC((;m4khG$tuSoi;q?IJCENK-g`DQXZav`sC
zb`#M@N!5od)l7V^ClU-SkdkEL_tPl^iiu<sZ<(lPq6U+si8K>C(w<2xrPOHbuVtdP
z31^Y0V<JGyn0UkFAK)vSXDFn*rl#dfPWgI#TB?abi^Q8Ih?g%C=_W4R^zr`+>Pmh1
zLG}z2^-VOTRZTQ7(IKCogJ+v)XrhscOcOy9C;I#Q&+s2wBr5gsXVD;|{bT$3NpnnI
z5%a$RmBuFCmf+%6|2YP^34*JO#Dhhm<YG~+R{R%U@0e&V$A6=wQu9dORwi1T=w+g}
ziFZx3F=3jpOtdxe`OJhDrzaRD+L<UgC+WkRzV_^Bf`Fx?1f5LeN)VD%ecGzg2v6~X
z&$668Sv3}mu*pC9N$g^xs|lM%GZ8W2()cD~tPYC*9~yrL<k8^weEj~xSbtJy6Z}Ub
zf;YQllh$1<W|vjEF`{nyx-;0m$?0LDr-@dJg|}FYUo4g_7JW?gH8IY_coRoT=Iv+V
zJre^MS|$$FQr5i|Hv;`WkbW$sy!>8pkcszA3}(EU7-?dZiJ>NjnHX+jgo#?+s^2K@
zXZfn4zsK~<gNp?*nWIgNG5J5PVyua;7K@vbpLdC%7>zT*#6%O5OiVW8zci$_+!6FC
zo7PD1pn@{Z#B|2Ig%>T%Ffr5QXHRj%#4HoDO`JCIk%>7b=5hoR+fB?fG2g^$u4TBg
zfUB#oEHU{7A1pMn$VBQA{)c~|#gZRvp3T-}CYGC6X`;mvp)So_A!P{Iv}$SQD(bd0
zljZpD>1#|rfx<cy>rHGnvBks&6B|uzGBIVi(r!rFtIIQ;CE^J!usn0C)PdEZO9c6(
zJ51~}agY`^v5R5cHg%7Qyu+2<60<sIiP&pmA9uZ;NdA7=N^n4e?MuXAI*Y9ga&Gen
z%27#=NxG#~p)$)d$(-Dx&`HiRIPC)yr#PCPNX*?z`XK}Ofl}a7*2gA3;pSrGoA}hk
zXC}Te@hyYd#23;yUz<2%;w-%;tA$DizGUQ=419JbZN-o@R;w>apklOApTTM8<Vw#=
zC296W%QL@YiZH>o(+<~K6(ab-#E&MfN*S*7l8MVwfFn@nD|G9OOe*;kow!8Yy^zjv
zel~H<1U*8T&z6XrCT^LyZ{h(pS@z5?ChjtYaz!<j+milj;-@9zj-+IsS*!eR;x7|_
zoA|@TpIp&e<(`S>mI?xvzm~*7kBy1{$nNa&uZc@{^OO0|#Q#h@YvDNy|CxAXB9Db<
ztoR6z<v0lz%FA&$Bbh9DWoteQi4u@gYpKXyD)P%J!Sfbguu#}S5y>fFp^$~nOGSsJ
zqM+muZ(dpl78=b>Blh&<q87;6u~ZCNDvDW{zEl*qK)h_JC~2XTh07MMSSW3wjD>-0
zvQXASIScJ9w72k*g_kX)SxBe07AjcqTc~cKqJ>v1yl$bIg;y<9vQWiBRSTai6_qV~
z@lt#Po_IHf)d&A(H7xAEzEr$sA<r`L(lSwfnGnl_&q9)v4=oe13Vt>z7LqNzVIg3l
zhK2siL`{pYLt|R~gvJH@JME0x7V21-@S?v?{J83$xlC}D6boAjmWfnaqlo{Jk^H6=
z&z#iZms0+^7T&VZ*uvWu>RHIJ5VVkGp*~kv*x$fHLt48*!jH>DBiV}`Gc7z^COAHE
z)grul0cX##Af!O4<zje+c+-*Mes^cyCKj4nXl0?bg=QAsvCzUo&wVM)r7*iUT`p=Z
zkLy{dYjR5q_HseayB4-r_SY!rZ)5R0IC<Gh+}7erLh?@jX4*nWy46A#3!N<FvX=$N
zLdb$j`)^D&Ep&gyuSsf1s&i50{lk_E@~N$5A#CBv5?DP`)*rE8ZAkSjL@l%};dkYt
z68mMwB%e*k>L-v=xT}S37W!D|YhfV=lma~^?P1}-a<S}1KP7uH-pcxWTR68|u-Z=w
zyk}u*k$7u=S>^ZxXpPtXEOgEL76w~5YT=lLAr^*OSYctMg<%$kGcuW+EsU@*k}kF|
zQ5tZRg)tV!TKHqR7)_VWO{T5J$)<uU#CXO-*W^U6I`NLpS(7YGrUD$Hbqd8A+)SNf
z;dDtq1BQ;^(xx#Os`_7FA!b^bWnlpqXkoU6IdYtNa@a_N1gbh$+UM5mevUuiLgos=
z7+Yjvv4v%_X$kjWN&iwAz#Ufz;#cM-KRZ3JoZD?j2Iu08t1PUxu*1Sm3u`Q_wXlh;
z7S=t9sL%7Sr|(t>_pRg&7B<T0ov=bwJCe1U(^=TcAdxENT^e7`(G_AFt+zt-F6_Us
zLi}CYzstgI3;XF53wxyGUJGn()-Zwc`?$5cRwt-a%74(pAsV@Y|A?G=_nOQlMg4~*
z{%3`Fu9|;jIsb7BCoFtz;TsDlEu7-gEPQI=1CC5HTKGuH2O7rhldv=I$Fj<mGLnm~
z6a=4H_*^o-WCoCdeTI8{rI;-Za@N9kFUGyFc71C0O7WEiQdYlZ2wC{v!UYTGEf_2L
zDkcWWruVW7Q8(g?7JjhsqlHUSAm7XJaTaXPBBlI68S_6`xXNS|M)@#)ws4KfHjKPs
zT(@w;!oL>oTexZA7Guf6pB8?xaNELN3%^nLCO`LpI}#9=x*Z^$wo?4gj1f#ACe3Z=
zC%9+fFAIM^l_dX(0Gs|{CT!?`#h3Dc3B<x<3khNTPcr}G*0%6kFo6OrPXKA2aJ&mg
zctXiZ3?p9{MZ+i-M*c9K4daC{3WV`oIIbki^Wpe7?2^|^WVK)zg~BKtMiDO7OnlM=
zDSU6Z^1z78JYg0OqeK{G!YC^zeKCxZVU&`X0;Qj7@?@6PD+N_5Cz&rjm3g9Pg)l0H
z5eOqCj91tcM)fe1Fe-&nIgDyy_`;|XMpfz=#_M5xlau#}4jho+iMdFVp03C*!4p2c
zkQ_#hFz-&Iww$-7Trc~wP|rHD`i7*e{(pXI7;lCV3?nOyv@p`c$Oxmp6ssG?TVd3b
zv#`sP@?^ROVKkKdOv=lqMzRa_+&3caiMH8c<b=^QjAl|&NXfUuXe_HwLZyksl;6Kn
zyc0(AFj|Ds@~PdZ<dealXiNNV7;VCM*G3x~ZNq36#`Z9FgwZ~X4q@~TqfZzeiSzkc
zY#OAozf%~wVT8g^!_Xur9EKi7a>XoDQUW6kyFh@#mgM~YmqI41mF5?6!ia?7hT+L!
zdxQ}UqeqWKw%&R^USeT%4x>vL#DN!*yN1y%jPA1f#Y*u+X8pWG>eDlfUQ&Us;}h7u
zZy5c;m>$NAF#3n_UKr!T7$3%fFb0M(DvU;}#Go+V4`X;38%_mS28S_3;$K&a8>a$8
zB_8&)_4<X>ysN~BFur<RZzOHFN)U{G+B!ypv6513LKqXd$1kK#lXOxTlf&Sc)+)h?
zrbx`{R4TSAJ{JWjJTr`0VXO;deHgRDm=nhGFjj;yH;j35<V9i3UnS;;u|QUd*=wQf
zyHDc9VJr#b>s4Z@6!>$M;P}hrbObBISS4Gj16GUGvg6t?)-bwO#}#X^IzC`0i8q9?
zMGmqtj7>D!>bRbpso`qzM3|CW!`LQe$YFJ77`wu_7sg*<><(j37{7*bCyc#e?BfUp
zQa%e~e;5bCI3=qG!#EVi@i0a&D0G<9trkbZI2uOrt%=81i*HtoA?uZ6RC2ZWceP;m
zPD27G!XQ0KPpwx7J_zGOCZaWQfzxu#k0hn=$6<UT@u!jwt(ryV=V5#i#+fkAG8=Pu
zgz@E5`HK>KMf*tb%~SrjVVslryrkbr`u)?^3k*&<@(<zo?SdbrdY8huECsHF@zYaD
zDsWZem)D3oYXqxLZZBMy%o}0clz{8H6~-@efw!M7lgztMTmKB>H;I3j^bbjCBChU<
ziT)1bA0|DU?`GiNFzz!~+bCe8T895Y7>~ku9L7VY#0>xc!uXE~D(EL>d6eZ(u#v|`
zJ{$RMJR`d#+L)S|kk`idnF$r%%lkx<oM&Zg>jeqV+jvgmqS^m%oSZeHpp8N{O4}%7
z12ziVC}yL$jjeMNi#!pQl;cd!Odu^`^KWWUN-|5@*p}%Rzoc`nks}n+lM50^%i1Vs
zqk@f!HeRwZV?n~pHeNWI&~c4miYss9Rzv@QUh(wEg!YOJEyG`_f&Wz-mxe2qBqdnX
z$Y0gQYc}fH$guG`XS7kr#v3+#Hj<<QH6``iP;4aI=wIJo-Nw$$1OnRX;LP+IHdr_j
ztF@$XZ5!jV;>+){Mg(l6*hsUHZX@w%TyvIGDfXtMmopRUO7NDXY#pDOz(P>pMgtp7
zY&5me&_*L0SvIn5WK!o~LeP#MmxrwpOz-O&`kOTL=SYsQ(b&efjp7F*^53@c<e<;$
z(1!kIHr}z(N=jA_CN!6zg^j;{3Gi4<nU-=b)7Qk0t*z+=Ie1$e?QEnvc+)|98yz^l
zjdM0S+UR6sp^Zg0a&3fc47V}DhDw9m=xU=I%^1$mZG>&u5*s$(X~{NiST<Iz5yYe;
zCnY;JTpON^18YQtvAQ*F_9cJRM$ATM&N3yLGH2I_3RnES!Wpb~u~9piOwip%4;y`L
z^s`aFR8~(Ly=*+2QMc>qz>#suy}A5P{l}|h^&vl;LEPWQdo~8yc%NQAmomV{KpUjQ
zy)OH=O-?2l%&3!KsN@fk^yV5dO!Bc-P-di!Q8uP<N7xu`V~mYS44(b|HXBmL+Wd@&
zGLG^2Z9@B9{yLxg$J>}-V<P9>>^JxNNw-f(CY@~KlP&&-=ls)bOt&$|=C3tD`5Cm*
z$NpJ19-T{>Y2(lJDHkvKl^^`GX`jt$1nfJ{#=Y(S1vc1yK4Wr=|GBkk|Lyh{JLg|)
zV~LI9Hcr@BYGWB&ZS0~GCnYbZ*=?+rc!iCX64YKRHWkWRV`Ht2O*S^$SZ8CsjSV&q
zfA4R#Ds9lX<d$1Ah&M`(-9aJV!hM}xce|upX&FYydVh&q^~73{JyK!Q4o2+QWP;r`
zPV<viHV)d@V`DGFW3AXH>3$mtU-(&lZ>=CWWb-hWam2<^PQ=~aF!ebtWnnOtBY%9w
ze~htx+COuxczD2n(#9zppWFDt#%Gg~Kd|wUjgM`7NK+TeI4x<(AN<6h*!Yyexiw|@
z&3cV4`#<9X*NW-ml8Hax>F3C2Y<x|deCj_-yJe<Q`7dpJ#RO&J=YwgiK077(8wS;s
zWD1|BbD2UN6m;;tjSCDghO3Q>Hh!>ilbOfH$+hA~8#N1L{LEBi<1*=5amB_@Hb!np
zVR^V#T$Q--_~g6i{nxlzzVkmbKKZ(h8#dl<QuoJ;e$roTlvpS3*!=x9Zrdo5Q+Mwf
z|F1UxH7<R3k*qV{`G2$V2gAe0@3iU}KMR@ca*sP&_MN*n&iwl+W>flxl>0V6JcLI!
z9@u>4IE8vXwDCWwFqKJJCmz!&4klmpKj$EigJ&G%bHI*yo%k$?k`7+ye`lSb{+1jw
zzk_F`3<WsIoinM=J9xpt#qMb=qt}T-4&b1SgR%}5uM?Gq1`0bU!bgxNl%fubIVkS%
ztSqC^u9Tq%{3RUhStm+4Ab!z7NePIX9QHRWlu??!)}|4cbMTUb*Bw-I@UnyQ4yrhK
z_kzFawv-AEUUg72qptsa{)!G>k&`lb;!{f*idA;v;q>yhlzs#AR&~IUUz7AvTgB%f
z$w3W{;K1*ox`X$2rYH_L>B=?=%XjNUvJ-!_Q3n~Mi{4GIB}aS1L3DC*ZHK>Qiz~_T
z|Dcsl`vVSAqyX2IfQ&TS%0X`jeH_$v@Roy)4mvrg=ODvD#YqY694u+A)OXO_L6`H@
z8aQa^ppk=22ZG}`2s-$%gp%bTTdF~PWx2xV2ssY!mQq-q<nzDnU`{EeiG!vzyB23Q
z<GM;JYi|19apL!)M<M>$qISO8EgZCDNUs-phh?>L(3;bYOMBNr8wZuw3u5xyIv{1K
zw_b3l_D=lfa|cOz=QGzqiS>yg2daYwFDmWU3r%WxcfH_AzV5(qU^=iI^l;GALD+%q
zVDx&?)xk$Il<hr|yQ~+Eg9z8VUbvEal13$sNy?_qPk`*jYBxDZcS$)Khgu?OF9#fR
z?|SjgdePTGKL;}%%yQ75uB2xh`$ti83Ep=w*ug*tgXo2c@#}>O&EgMSDwIzi;$Vb>
zQX9lj2g7Ljim7C>40rHwy&xDVTfb_gocum*w1Y7Y#xjf@Or!7yG2X!h2U8rhotZe%
z0mWD*OEAd+XL-_*w8jQ8m2Ubtjd;|5%5<sN3<vrKF{DT4Z2Hl`G6%~Uy5*DSI#|Sb
zb}-Mu#PZ4WX>hJ<gW!Oq3ms6IFPi(WR7hPS=UOTiIGY)totki#6|}|%vD(2(PSMi8
zN_P3_tpGc&aq#z|6fU21y@L&$!o?&P8y#$Nup@$<5o~s_h5IXlN)c>jAUU|{;1&%|
z0S6yD_{70Z>Rejc=U~5sT@tgpTY^23?sc$ngCLXTfP*6rjygE_RPvAnhaG$_WsW&G
z?%<Tee+tEkr!prge<1zl2Jv`<cyXinQ1U-|+Im`oO>+Fm!SqiZeCFUgCT))C;C{Zq
z83$(_eBmH<qiC^Fkn^SFf9>EK+D&3I+4tM0_`HL29JZ9g!X_4PqxkK0<${AB9Q^2D
z_(pNj!TgPa;F5#O4D!!YuRGYfQCx9w)xpma|0MZjp57=ZaCxJ+COHJG-jJA0zc{$f
zT^T{42!3^NhiW)@zzxnVPd9OsZW6yc_`|_H?(0qBpN-;A2P_0EMK+1Q{>b=CHW75B
z03&>p_?MYylOU*GHT|K3{1H4G!T%im=irfp$4vMU<c)x>6QoRn#Cas$xJe{RkS~HO
zo5U$8@I>stO`^nR@mvH+n?=LT;`s<zeIbJOn?(UhSw#eeBS_pLUXGwh1Vtk#89}KC
zhHMreshPzhD9&CH{Cp$pMM>vx7Po@Q+cpbwN=Hy8g6*Z0vJvQ2(?8xU&XrNfC#Rg`
zza;7H&4S~Xm$OueprQoiyb?j#E%Bzx5mbpF7D49-sz&fy1dStjJA&6Es1`wL1aC&*
z<0>MkBUkDtm7rDxN(41INCY(^XtG5lOTM#3)RbWGmbgi4M=(nQ8k5yGA_&OVty@G&
z1QaGSO>#0Ks2@Rk1a%{LOLAycwzAZdY7;b&oL~f55j2#z(NmdB2|n2(u5A%d=E|0w
z97#n4dA7#qY7#-y2s9ckf@TrC6G58@+D6bkf))|9j^N!0T1L={Q*4dfr_@$aW2>O$
zc^skddRJEn=Iu{!M<+%Qia?FT4>292wL3+?rj87us&N?#=Tcy6yceq-6lK6xF>|Xh
zm?*XiGXg7u54Q?V6pp}-z>UD8O(I}?w&q@=KKTNdwhGd}w~A;4^m5g0;;n6hpwKqa
zC4#OIjE`VK1l=O&9>ItRMn=#hf}Rl!i0}h#{MAopuL$}^&`;vtlJ<!}Y>UU3wN3Po
z;JrwE7r&4%@MLL2wuwOzydS|Z$zNMl863e-xy;k0l_63+0(N1b&fO-4OR=rn#Ha{H
zNAStExNZ$@W{rtpEZ6mU>XRxn+c>#!M(M-|CPlC!f|U_Wj$ldzvpEQZe4CgW!L$gb
z%jp={)av0jQGC0Y5kc;Rgqe~*i~FUlQbOu5mo|@JKE1qMP^ASCER0}r1WO`V6v2I&
zoy-Xd1a`|pIork32$pko+r=`eHoKVH#oX<JoK+F5W<HN#O9X2oSR276TC$q5E`s%P
z-W}V;1_@}WjdCpnQx+$ae!N|9mTTL^Gdsjqsou5-%Iy&Q{mOPZQSBXKR|LBwc-2KE
z7keVu%RCdoe-Z49V1EP`BDfgAfd~%LNAz_Bhaxx}!HEcHZSLzA6y*pv={9jRf@9pI
zJH&ArT?8x)vy%~=ir@pO;c2e1Ox!^q%6!7)!0Ke5@<{}rGJoz6-$d|P1fNH6Hi811
z61OHPUqmo?hnT-ZoMB|{h#Pa_&8#mY;JjZ&u#5Wd5MN91=?;-^r}#F4a}k`6;JXM|
zWuYCue~Mq;DSn9H#|Z9Fp9n6=&Hi%)*CPC}9<Ip!!c9?Ur}!y?t4uFDMbn*v^m+t0
zBDfX7FS3iXQ!q>1l$cFJc8c4y=T7k}IkIUB=}z$*XE~7mX9V{o_&tI@xVoKUb-uuL
zDs~|KuL%B?O@B-JkEG-$?25PEm(>RmJbcQh!5>BNm<icMX%`7@d{;j2;sqCZTs$MI
zd0pg}fK7=K<dd|_uK2O$S&5&Mw5H?~a8cMr5f=p|v*j*PNCLQcBEVinC8vaoViJ&3
z+=VB*6Tc{#C0z`aoH8yLeq~*hlVIL1!Rq#1;w2X^yYcK%-bDo$72WtT<&$0F*8cPx
zyF}jI;uRM>G;ocTT~u+=!9_<GRb9O1qOOa#T)fT^c8lsR6c^Q8_*^8p@odacWCrs~
z{3OjLyQtwJ#YL(cKUCFp<EJ`rxTxi#wi^%KIxg6SfC(^lcl;zLAZ6a&E#7p|b+<@!
z!6Y+ow^*`UP|tL!Esu}&Tx7Ut>Y|y8`Ysx{2)f8}(a=RB7n$^hqO9;M17sf9zdIg&
z-|iOKF7ECYjXC=sk>euY9wFTLLAKnUcs?idZQ0aBQgYsL(cI;iG110F3l~gQEUhGH
zDJeIC*dtm~=Tgd(R%1_GrmbvkC;9Cqo{$*m<RaHaHy7Pqgj}dD!Y*tVnsnUsJwkUe
zV2?Z%`6I({VY*nqM;zZHEElBT?-AOqEXPG>X}Uw>5+W{K27nt+WnAE2dqmVl%#9yn
zSf~;W+l6LyQFO0R_KG+12YR^Z>EeACgXvjC=_P4D7rkA)y;rdGanbiFra*re?@5^f
zF6t@DAQuB=)!r-EI#|*nRJ*h?%Ef5Lo{M2FhPxOc#TM)pk^F&?Qenyy`<eV*jCC==
zji2`H+bhPo_;Rlp?}B)OqAZ@B$+fWXlyx#g*M$*<8O2l=(_HlP(BH#!7c*S^?&1%|
zkBeC@mb+NtVm1x#VyTN|F6O#8_ES2~&lkGjmBKt1zw8zBT`XWsHjZDmEN$&y<YF<$
z&nmP;GV|^e<bQWMP-UN}&_8`~>tt3}x>)7nV;7&eSnXnsi``7o3`_2XePWY~%`Vo_
zQ!X}eTkR7ICIvRq3;V=~eIl)v(td1Ui;Jx;b~5ZQXKiyaf1lXl;?sR%yTq(+*(a{=
z6XZPJCw9puGWXITE>5}lz{P$S2V6{VtQ>W5&;^HOIpX4w#D|}9{#P#R#r^R~k4fR<
zlAe(Cq@*0-RU`XD?vWhjBiZY;#MSl-a)SFshyCJH7oWNK!Nrd*K6mkji*H?=lVWEi
z{mR8z7gV*|e(|LoWXyiCe82eG#W%7_d~CnCuwVSMUz~UGon(Gbr;iR?ba6pe4~<IR
z)LhX<CYO0B>ynGhE^fHE>EeoupQOO`_*PB1>Y~5_aZS$qGik}x9g_kyDf?DA5MSvn
zy4A(6F7B|`0WqVw((-_~%~@`z6LdKsX8Y3b$^j|-n*`O{r~m2Vo{P2~+IjfP#osPo
z@$jmLe_Z_Q0v-x`xbNZtbGV0RJv?;rKPGk$c|D9gApT=DDgCj_4+^9|lK#5TK0U!h
z9uEVCC3B($Qny48e_YEVlM3hauthT2@i`CAd-(N0+~zNMV8?<U_W08acsMC#NDF!R
zeSF}&tQPU&)0Op5&O=cT#XJ=EP(pSo?cqf)9uFlwl#*gpiG}hkc@By)9<GcHP$02G
z`b!>Omc1$x92Dg}P|ur}3K3V3oSFv(#i&Uo50yOxJfwK2;-RXCWDjc&iq|~6?jgy8
zpK6Z}WE~XMJdm>Z$S;{nP~C&#VbVd-^`MM@30SS+p{9pg9%_612xj&h9*We@h}-IJ
zdL3$VH~rK>@!dh8Hpocz@TP~iJv8CcJfwSQ;Gv=HRo6p?2g<zVp`M2inkdAK1k(C6
zshpA3MjkRf<aiJsg4EE%=4MK^hx~^`g+rp=A;BuAF4$BdV5`?ZxiQ^zNOU_SntEvF
z;p0Q1m4|mcH21LekZ9@Qcr#`6Awk+g;)RC<`9JN;Z0+G)4{bP0{R|cYTArZ2hYlVb
z4-pR?J#?bl9yEs8fTW)eiChmM51+l7^iiIqqwo6pok4y+PxoMXc)v!H;o+^_=_YgC
z691mxd}A$t*n{n1v9J2r)TD=p1pj>ArP>~Pc<AXN>S0xSQp`hV4?8*}@!Kw4Je(Sm
z)YU^bdX}F*csc&nU4GBEJ45uAuWds7yF$G@{w^S?j~D-PUvG&gcS$0rFNgiz$ImS_
zZJqQU<vk#Z!ch$LFv!E-+$L1g!(b2JdN}7{2uJX+(ZePW!#oW4Fvr7O4<oo)7zrLG
zdl=<mw1;sX#(OAxSd8)b)lo6l!`|V^En6tfiAM(}c$nycRbo=-uoxowQ#?%daQK(>
znI5Jw`Foh*@rMs${$atLwN=vYV*?#Jq|fp&+ruTvxi9HF5A!{&@UW6G=3yai=wXS6
zixu-0J0cc&U`K*lN5oROPnUUEF6ZLNES!|%vvrk+)gIP)STDuac(|IBzE)y_7DwWm
zZ1BMD9PP>A<ZR}y_i)t1F-DQcf6TycZa}*7h}iC7Cr3LXh8z()IQX#SnMcGf4=0WY
z;_r@#y&m>?IOyS!hy5N7FiSL5Y91B$kBAR$r<Xh`TD`3>%N_P`gn8qgcrY`7$$V~9
z@^Oyi;Zp_}n-~cmKJ;+fgKtXU0|x3*p&u3J8!N{eD<9F7N5#h;KB1D0l{rVn=A+`b
z#tNCNe(vE54_|utihJ#-VCxwVXFX7Wtt=emYY*Qr=8uYpyHh4y$)fT<9~E57c@N)t
zxXoSZ;d>7k7zV?VuS<H7KJsu`;vXda(L>2&f&y1O{3JQom`{$0s~&!qphxfIM#ls>
zr%q*1lHi7io3!DJskc1*;>C|>EFF)<lPU%7c)07~o`*5V#BU5pGv#+ld4MKn`NPAX
zl0)3>m@peFf63}9EAPKd{>&9oJR3zG;a_nz{{wC@U0HHWJmg9lKgYy>k`g@f@c1cC
zh{l`pMDdIS#Cau1lr&!yf3{90^SLOVkH%jJDHx5vM8Q|eUx=bW6vfIbWNvDcOj_kZ
z{z6jb=Cl4HQ521$VHAxh6GibTd{HDt`FO}*B8t*cl!?Yaw)J8(ey6%*6s06cX_Isi
zNoAub7e$pQsz&h=Pon<zX_@g)nY<j0{{(=gd=wR);))WyBI&D9RC>y<90k8HLgCk<
zcs&~bY#H(XV`5JEq-s%||Ig=UB$4`~s2)XH6zNeYQ6xuECyEv|l4?XzlL_Q*A*vV1
zO6plSY0xW4wW1)c9R)wuISxs0L=lK0C5qH2zCI@2jN*q}f4{>DDO)++jboxN4f_Yb
z?ic^g6v11vT93W%`!b^7CnN|OMEN<nB$j^ne3?-Mqj)!pHc@0nksU>|DBg)8CyIM-
zDvhIfo7(aOo~p)@pE)jG=$zby)*GDNGzww@791DNqws2{q?bx<#pOiNG72)w9v4H#
zWLG~fT1O%71mfe|3ABx(T@<-dgraC4#hb@P@VMwevm6(v(v*&J*p;@@Daz-G%1&2N
zqtK%Gc3`$1MW_DR1C5k((d6HUXSX;mh7HfQX!a;(M=>V~I~sqA!QZEhio&70qj0HJ
z6n&!T8$~pVSQNck9w?oo=n_RQPC8uaDrt9~KOYy}Bqozy=n+Lv86>R!ct4A+EKgp&
z{zkqW-jCji^2<BuAH{pJ;{ZvAPmaHpJ&@sgDT}Yc4~}9;6vLtzPO;-+XcV)Ki}#8L
zh|d;F*>qfth~i+&^pTRE);;<3adG*$7#+o!D8{Z<#zrwA%K!L^<8e{^y&z+J6a^P%
z5RfxT@@GadIf^L^-6*C>&h#km9~aKy^roFMDK<kgO^IhoT=#H#krQHW6!W6E8^v!?
z%#UILBaN}j=#64g6kECcC>C>LMzJ=Eb=;d}m8DUvplirKm#|E7mP^d0RSe5=N~05E
zO%$sc&*hY2UDK<d5CoORC#;Y11zLq=lLQ+i-AJ!hOCfV}6kDR`ctQ~OkaT+#JEHi2
zK8<2$6uY809L13+c1N*C=9~lE-A|Iw39&zl@h8N-D4zQyo$2V{2{EF%|6mk{qWI>7
zAm^^6N253v#mOj6G0aYi<C30;;?<LaRTfItJsI!I@@eO+(@}gB#ivnxCMWthicch{
z*u+msRw?{>6hGEU`Bo;PFSsZP{#ud#ZsWk&D8A(8Y8+toD+#`q^c$}9q#*y`Px+b0
zzKi1fD1M6KY7`fwcYc)gqNG1CVowS>(KwQRDT>Qc{8C@(QY=7vMPj=0X9=!FaXpHR
z`h|WwoPHyUn`B0DJBq=F(_g7y=$0I9;z_}dzj6;23*3=S>|VcEU_`M1r}#aJKcYy8
zAx{j;&ien1#_4^g0tx<N_(k!L#9s4cHnIF0#p%TAUG@|reh|e&*-HGsDE@njA4T!_
zDgO9;!ZWe>bHit2crJ##F(k@rz8LaLz@{FHQU^{><L|kikKu(F%Es`;bfrKH1!E`?
z!;3L2KPd{uu>Yhe5(8wFoWe2mT9ZOhG=^ewsH`<9H9Kb(kAd{^NkRFNF%&o@O2<%2
zb{~5$i_9`H@V8WydG(YiC;928M4MBhd<+$0_+c!59E*xEyb?poAfyh$t1(oH;jixa
zyE`h!P$h;gUC^})s>bjdb?A)Vo#XHDydJ}V7zV~rEe0R;iNPPkJ25nmp?VBTEG`p_
zF|VRV3~$DeMm;H<;ja_J8xqutp|%8k-H7ipu_+*{DKVT|5U-}j;_vOS%w3R>9z)$2
zGGeG7!&_2}0`+3xdr$<$<@-VnB)^fQ4JD-x9Gn7~G4RbO4wV%{b__YPwQ&q@lh0v;
z2~S37BKb{YXeI&YeKL6OQ-YvH3@u}@VhG33Du&iE+{^H5F}xc?n;1IA&?$ztG3*KY
zJH&9TzQ0`z<4%e8G0Z<D2uL|dpP%xR=EhJu)33%5qIc^1hh+Fk$^TbstH)r(V8*cJ
zl;FEkeDR4*b_`AoJ!0VdORPp>aAWXd@pr>mjm8j@I(Lm>cD;<w5}(OT=n_MNp~(~&
z*}#tt8QmCB8#21bkSnV_>ChN@OX0pT^pjreBPj*$%jNfv;XR6F#MLO&&|f*|9~8s;
zF+7UlaSVfF7!t#d82*o@>wvPF`1%WrfC4{2kRnzP6$rc7_C0qOma;q;1Vxl0HbBJo
zl9!jBJn@f;3Q`0FR0PF>^j@WiG^tDPz4s!$!}rVhaZb)XcWx$=JGV{EWO^K*#_?Gk
zKgIEL9G}P0J&yiy42a{4IKGUdcN~3Wt-p$ch4hqo5Bch)L(@q4TGD&PvGgCoBzf*D
z?|vg8EreIUI7Z8jVc*6vQ0D(WjzMwk>Yl-Cu*^y1J4xB{k0Aa-97CvrIEGR(yJP>A
zeBvK5ERGSMX7c)vGCYovag2)N7X}A9T^zsD5njpQ?zj<BAb-TeopQ9O8x%sL5E&iE
zm^dcNmyV5N990=hD;raIjgNzHLL6B#Nu2p7QCTuGH?2*P$W#frTaN}XBaWGI?2BVR
zO(>2(<5(WYia2J|XX98D$Kp8V#xXCBzvEcIz_K6|$X{{HC!euW_i-c2($K(oEsSHr
z#Lz1K+eb&ZB#wV5Sou0`3tYxW8iaQVdEIE7wla=YacqubOB@Aptd3(t92?_U!zwgT
z*2b|;3gPt7G`@%>-@hSmy)2CgGi)N~(ps8z&tP(EoX3P>cN}}-*dE7@ICjc%_z3Ub
zY8*=A7FG6NvU^5Oo<c|Ft-W!O86pSbI2gz2IL^?t^3x7c_;H+whr0?7$8jW%qj4Og
zPU|bXisz9?gk_$Tlv6SriR6<+-uhRvdNGbmah#3g9OapxcAoxA6U|SfZU488u)<Pt
zIgTsx@tbj6jpLeh&+9borA1j3?Vs?5BogPg$uhC<gMu^_g;YdUJg=g#igXp#R6M4l
zh>E*ZR8&z(MNt*SRFqUvN=0!McdK|M7W(x)YG}O&@{|%1*)I1(QW{WET15plly(^v
zWmS~_BBQ*7_exk!!dgqiZJgn)FEZ{^!6cDz>*gyNe6X^L2UR>I3%OrK6%~K}P=t3M
zP*Go6%fo6Y(nnMfVSeI|N(%9+YA9YJysE2ERMb}SxQZuKJgJ7;L~E*{Hi^`bN%|4>
zSWCsrO9fS&Aq#w(a%ik%s;Hylnv7#lNjl49@);G+s(4NfV`i3$UX2wZBM0RWiO8gq
zuVkypQPGOxQp0eXtD>QbMk?y6s3(icQ{gpEYam;t`jRDvP1+2Z&sWh{#S1E$tB9#+
zqC%)>riR;JY4)cZr!`g4b7B#CAN9NFhw$@?E=xrV6)&o2$%?386Y!FXGQWi0L{njg
z`lrJH&TJiH%Bw0`tLUuaT@`Iqv{mtjiZ@lXQ}G&A)<kKqg4=_M`%+D>tLQC}MzOTF
zRJ^UClZtm#tn8lAK}APanKJ2~!DMN<k9XKo(X5HGrLjV!i;DMDs46tdA*Q@9>;93%
zKTz?ZM3|Yk;_?<NMLeNGSCLd<sBrT`%EYCD(E2Th5@1D4nVFk`9cEB@-ZgGeo@7|X
zD3zzyBT$i2@gt2v#m6eTs#vrpZ2+0Smhp*-ZYn-i@jsa)#r!k<GZmk!JZKs{D2<y<
zx|87rIbW(+uvC1ZV*gTceW|FtOgy_x^d!$J`l|Rw#jDFiFBN@MbYCWVtJqki{zuCM
zA0M?$ELbM`k)O5s7nX_sDvl1w+qO)!m&tF*<crEc6;oR%gCrcR;yX!X&y&~p)S&wR
zUtSE62=lkOqL_6uhN<{T#ky^2Kdbmn#qX5TUA2d+_(dYbf2FG~7ep3x%^abIpH83X
zlm3T_krE$yJug{2O5zw5V^thiaYDs772{QGR<T9J1Qioi{G(#2ib*OatC*`|o{A}y
z>e!5FDyEZRiC0@LNSUExCf!rTY`TM_XDt`JMaa9n=1Ah}%SBU3`Afxo>O#e0N&j2L
zLWwZv0u>+0JS^(JXO~EXbQZ|3xtFO}u42{n=o%F(XnraRWU_FnVkEATICsH?`1I&%
znN0g2bFD;3S*K#X#5YK|QNm3U_P!E6wN=G7`lE^?Dz>ZGLA|Ry!!}gJPKJVJ$}Wjt
zu9C4^#U2$z_NsX1)y#b~u;pUV@^BS~(;&4TPM@({bS{V-RB?!oRuJLETSrwKqmeYq
z_;14G>o=nRo1eaXbJj@}r&L@~LH(XqaYjYFu+nE!&c7<os<@!yqKb2T@WssYG>ik;
zd~eqkY5yUYSgGaWGQ;(&nRmaQM>dF@UM{ZEG5cp;laNOf5Wh*MX4KM<rQx=UGz|}F
zcvwRr4TUun(QucBhA(G!?w@7URMIu@`{*kxvx{mdrlE|6vKoqOxLX4>^tAHt(NJ`S
zD5;^8hLS^zl#s-aN@dkAlb-o-`a>&3xl~r6NkvL)c&=1d)(Wv~P2^q;6*N@TK)jrU
z<u%+Vk@~Bm)<YSUG*s5`fQAP(+^?Z;L6q0Y8qW|`(Qx4D3?hW2^jH;L(lD=N=Zr@*
zJf@+#hDSA2)xxO*w`4KGY8uA1iRP}#eq6&78WasZp2>Jp1J4tvDPau>&H52ic-7Lv
zoq<GZYsk=$so~uU8N8m+Q0ET*l!m7zzWU7^-g;Kzw_8MrM>Iq=bkNXI!}A)lHMG<4
znuZ(=xf)*5&{9KP4fQnC*U&&io`&_0b2cw++<N6dcyYbbP(!|k#u^%FVA7c!<=vQu
zCK}F+$QK%3ULl%l_;iIByh41iLU_~inV}hLx?Xuf!sZ%UNaRHcC$A8^^|FRm8d_`E
z(iB5xhG%-b!nYr*$?H`OZ}hD-txJ9zN%`OST5UCaF{&1k(ho(stFt}D!aQ0yH}#eV
zp3?9pO-0VX9hsZ;HWga7*2kr4@$a#lpULT@;X@4{X?RCNX9`EdBhSX(myk#o4ev>O
z-U`9w2NK^R@iQxg^I1lmqHd<B5)vu8Qs^3zl&X%7It&e_hJ^_%O2E=!YdEIixCTdq
zt6`Id%^ExnzJ@<EjMNZlNNMP&p}&TYHFVX`o04oC`9#D2G<>Gva}D?S`H!v?T}vw6
zG^q75Kc%u(3VxB@okF0&(4<*q4X>;WKN0;(Lwu#^F7b7BGr!g_ri?OurC7I8^wPqw
zv-y?lkd>nH!%82%{fAgz4L^OK`HhB?D@Bo2Vt|HkH4M@4qlSSR25I<SKJ`n}NYzzh
zFwJ9?_>S*dCA3w-h(&&oce~Zi?72z|)i6xM&l-laOpU+8i}31LLAj@Oq;A8sU+9Bn
zl;7yE8h)jv-5Y+Eez=tK^C~g$*}Okji4jy;35B2Hj?yq%!#^69l6ehdHB8qqgHn1k
zeH`7Pq%u*%cnuRY{Lm!QdQ0}^Rf6SA(lA-W*;Szsrf8T-+n$`y%*}?xrfK-3lEUOn
z4YM@-rC~mOt%CBWhS?fQmsQ?<K6-b7n4@8?hNFWsA1x5`=miDhiHSLcuNH{EH7wGw
zSi=Gh6H6)!B_#hJKd20jMk!LSd1MJS+dR^LYxXh?%eC;k{<R$17l;)aR%s}Zf?7$D
z4i7)Y{klM`*04sy?$I$SXn28`TOcZyRMzn=OVZX8R#G--*r;Jcfq1Z@!s~Q_*rH*p
zhCQ@%4cjP$nHf7Z?9#BEl5Z8+At908#g*k#@@E&xENB(kEwd5Xr(wT_gBlKzy(#&8
z_J9^P8Q)h(XU?^MMGmvrPtuQSI6|=$$t<>7@a~i;`OJKR=Aq%w1ZF32O2cUyb^=ZU
zXEgk)A(B8efwLOUF#;!0Hi7dRE|A`?<~<2q)No0|Ee3N*xvb&379Q%w&FWV)T$RLY
z5<d8C8XvhK@tZPFV@V+~ErIH*MX>}5B~UmKmYgnO5eXk0n0A*$ib{C3dl6>fRXl;a
zC58BcL1`uK;3X3%l>ibbO(z|c_TO8GFx$NeluO{r1ZpHuK7lS((;i6RLHXc)5>`l{
zVj_$!l_VrmSt9o*P~{GV6Zj7$@Nfc;$wywPmi9jsdnAEJ`O@Pxt0qt_0rJB$po+B0
z;G7lv419HUnfdVqo{$JB4}6<eQ{qocSStY~f!YaVB#@av9Z4)PD6P%6X>F>7%s(Zo
zLxdOU&m{QCKc2f&T2=xi{&)A+&x$;sKz0HzCh$@MId}5pCy*=gx)RotFi*nz67ul|
z5^0z~qdS!A>(d%1_~#TfVNtCzgrql>u;$z}ej>!DnkDc8tJW%`c>*mG;h{I9_?^Dw
zr)2^!C-8m(A0*H!fmafEJ%Kk8cvY6rHi32$X)R%!1cnU^Yf(i$OA)=6Kzn(ML>BmF
z0&mIWy9vB4kq!xTl*lKo(mP4yKTCUunjM(dSyE2OGP_8e<-C``e<J<x4kekuM-q=G
zpeCS6T_^6?59`8D9`r<L*x@9k%xOw!NysycSgf0Xm%t|p{4ass@{J_=GD9F?DuIs^
z=qfeU@7pwAKGiLOPZK;R7DE#FEP>Ax_$q-O33Qi_u!JuY_(I}!=KjBaKdqM5Gl8!Y
z7?8lX3G|Y8`zG*>M0!iuhs;Q`VF~>b=r4)?$(FpaMx+mv#P1{=l)zw#P%{59_I-lK
zR)=r=F@d28j7wlVwIlNkPvDmXev<glQc6@kjsI6k871Lw3H+W2KV2D-z{mvn#y=#T
z1yVt@5NdPu9m*JqjFpggCrD)aox2kgn3TX|ncVhm+7yXQm2jGb^;U<cbn==ZlQSip
zB_XRYhbDBFlIWE-Pa<=v+*0YJ@cJu(3Z*0S6Zl)+T0p;RrjSCoIDsVzG}n0!E&fSh
zDa}d8Lpqivusnfl30zNLMFJ}mIFP`>1Xd+bkigyq&zit$TJ>uF^A|f3Sd+lo1lA?+
z&-myUtHm~nte0>@0vjc=Ny5z%GTRo3Y)v4sS}-|uwV1V9Ocarw^uflF-3jbUfJrvc
zYgdasiLl-0^~XoG*(xnkYwu6s#A<PKwRm+{>`(%S8Of=L1db$dl*aau!q)j%0>=|L
z%}`lJc`Q-;ghWot@=4)!N>VDV5p3n3S|iRTaE{SFflJipr&;F{=u}Y|IyQ&+1v>Z|
zv95-4Ie{yTx@DCQ*NA1uYVIi=wrf`tc;J2|UPZZ)z|92i)lp8ztpsi-aF>pvI?{AZ
z8W%03qp*%?4I`hf5$QU9Tq8Q~k5=88Q$)w(WfUF^LRd^kaXmceq>Rpg9^oDxrF0x#
zBc`trC3Kt%a`@7cI+$E5iO^A6N5O+i`n?LXu~KPkMOhtN%Z1`9ucOLZQ9(yV9rx*Y
zZmr<O*1wXD&xc2f*Uze=huxUUI_}r;(pqu#r_2x6iZ9lR2XqkTjmvqM#&E3WQ#udq
z!XxB)t$0)qJ2_Q#RMYX8j_Q(FhgHz=gv2v-JgJBJVrIe`l2}v1S`sP})|N0s!v8Yw
zNB9UkT1-AeA?T>9qaNATapn71L`PJ|jI|<5505$-{;2Z2j@5%Rb9ChDj1RT5b+C^|
zq(~LznMw*_+UD#$9rbm@bTpx0YbXtLG}O^Z;_Jv>NhM!LV{%(kIlfkG-Wub9HpH9i
z5V8s{=%`aU?B+FN-?)Nu^TDw5dDlA8X?p&Pl$egUn4y`{Qpd|W+Ua;r594Pm9k1wk
zm1fX2>tLBkc>br3wmOat$ZVsde_9qPga<_)Da6~$r{2`@y3F&&ojeb$6Zan}$_#JI
zw?x;4!`@Ch-l15M$V;NLj(2qop$v6&(ea*+k9Bm_@xC6$B3(yP#|Jt-)bWvyxDHK6
zf*M~ZR2`qJ3&#TQt>Xsf?Ee<*2$%n!!-!$%aCLY(OdXbv-hZY4H;S=!IQsvOXxQ1{
z?#Cvrls6u!?du415J^cmXq{-;D&rF!|I_i6jvh3ORvF!NtgRomn4glvp%Gr6(Fk>P
zm&q@5ehw)H?5p>sOx~y-v6dC>spD%Ml}9PxQNL9B$gI9PzR|IKo#?Hjk3@*yHTUU$
zwDV^p{dEk`@%@dv-fNT2vm(Eh#6da+N`!Q>!EA$NaziKFER*@YjvsU^E}L2P{wU#4
z9mD9kI&SOuNypDRPU|?MV>nHVs?o8bb>^=+exoDz$T_UzcO4^i9MZA5{xgise}q-e
zTC8KF9(M3X=@>1MG4y)+td6ld#!1R}9TOQ7BtAih+Aj?3lXXndF;x<e-;P|nQm@d>
z2<bc5g^_=Tj+r|CmUm}STsr3Jn5Sd*+M=^*06o&@=-6~K;*H4RQ&T!d5<SxY(lKAh
zm~}<Z%M!ZXij-I{7U)>WN|h<ryGxNpI#Pv-J+?k9pNEYvk%j-GV=28};>&fckq9%a
zkjP3Ms~B)3{&|n|)jC?I72{nNvR21Bng^w%W0#KIIyRCe9ouwlr-<l->BY7%G%*~_
z41dH!X2=o|vez=L*bZ6dP70x8gjHZgSe-pO|MiIj@>c0j(wTXmj{X1Tl$BymH?7z~
zNue02h>bT&9gzw;N^7r>K}``J*KtBe`zp20?yq~222d&e6y4;NTD)@ZsYRRrSI2oB
z7j&GZPstgHbM&(Hg7`%}oF%xSgDcCIbX;aQ(s5PCbxEK1Np_Ljb=#~L*K`mj*Nd;$
z3+89$n|io!fk;{sg_6ifA~T7?Nu(!nUo!NgB1znpMEPXcnJk(Nx9i-U#63wAW43cO
zizmZgdS5-<+;a1L&9x<KeP6Uzi6pkxsZ}zGQc2wIn#l_iDJ@|c3CkvN@148lB$D%f
zt&(%ohOZYDlBk$Or6ejRQ9X&rlej<0f3>7nN#cQIc)%t*fyY13dN3I-QlEaAXTsyB
zV>KU^@DT}_d^CxwckpUl1-^r)f2BN;#FI(XPU7U<wOLe+BzPcI%_MHzQ+qfvY9&D;
zFXc`KPBD?bb#0S6NsK9<@obX+wZ}tei$0x1Ydbb;y?7=Wc5K$K7tbYOewm$>L?nq1
zPDG+InJeM*5@sinBN1jhv0fC}AnM9wl?|eP5)G2*l|=6(8Ya;wiT9FtKZ*P#|96FE
zNxYCmEEz^}1}IL-HA&)&OBqci6cRFd?O4s`Nwkpsyqm;}NxYOq+a&)T6IQBa60aoj
zY7#Fe(MnRDuc7p+pTV}QwM-Ielf;CBp;+>t4(YEY!&$QSNxUu*wNKg`vhdDH9QD%Q
zl*G3rg%Wr>i4J%0j!AU7gTEsYJ{!jEn#!{qL>Jb&P6m+=lK3zQCkZzhn)FAsgtD31
zwi@vynr{$l5?wY3Er~=D-8YB>EwZR_UFtn4p}}$_Lb{cNeFtYwHW^+LA1Bc@2|tM-
z37+X!{^!i!H;9zP=Wh_K{wGO%mc-{t{4WV6yCt!}Rz6K)n4`o$SDda&_hfi3-<L^z
zMYDM$@<kF4R#8SZ52swVZU{RMJ*b@$N>2&Dmhh2Bls-xHO=5BqQ<C^5iGE28Ok$8!
zU#X^9O)f|JCow?!&bJc2^ILc}DU~~zc33^~8wH!h_wv>cN%Suid%kRJ2p=Do_G2>K
z@-bB2;v>T(@>3E&-=Pdo;unekdWZ6I-HhLp7?H#uNsLTld=ifgs8w%s-YD905@VAX
zokW?<dFMBXHcE8nxLVjKc#TVf_{IaZCL}R22~z4$PMeg3vQgyjZ2Hu1wWcO9Er}hp
zoFt~pcWvj^FB(4^0zR9>EQX6DW+$;EiGL)0PLe<V3p4B*AI8afj4DaYr-gT_$&2Bg
z@NcR>QWi?M=+526$?$hD%&=6Jup)_-NfiG#V_6c*B{Ha629v9jC}7;^lEuH4td==9
zNXXZ%k;qyG6N#+9L-(qtZIt*X2{%i)<<4ELO4_z$*jM4Tonl-aj@ou5u{(*gGS8l5
z*m*dR#K9!?Cb2Jx{bZ?Tq@O(Eo41I6)1&di9a+D>lXED^pPb?d-6zRYKy&_;kjOEK
z98cneL{3V0O2X3;GS8VLnrswAc(JrsUsTQ|aXyJRHi`=p64~>zayf}Bv_ls!xVW0c
zHRiE!!NPT#RuVl-^fYlZiCa{Pfu#m+Cy{2LwShJU3K=MD;7J2D45S+<Vt^+<JZRu9
z14Rv#Gf>_@F$2X7lrd1&z}*J!F;LP#DI*+XmN3wNqxhwKEVWUr%a6jq*p*6Y1DopS
zZk?R{&8Fy>jpD0fdG{K4Xuk60#^_yhl+O3YN{vx?-DjXH^6ocK!9Ya=u_4)&3@qL#
zDjRrswZdeh$=QTe3_QTsjZuD@7}?3vn&dvj3<e%C@F<HNt2}O?s)1_cb42!o+my!)
zOz)e?(=DnSxUo@G+a$6#2_|{s$`b~rO^GmDO#`(IG%(Q6fMTGwfh+?N0~rP~4Loh&
z83T0;JSE?I^!*|oHwiIL>A6Y#vPtmqG@klm;Jbzy&lwmzM&ZTTn5e;j%HZ2g%2!h&
z*#>e9)H9H0AlJaM3bE~*L|p?5H;GZRmGhg#J)1?%%_4uZcyqI;Z@}Cv%2te3-VkkM
zpoxK|2J#IwmO_h3jU1hu{%3x)P~)gD(9FP#23|7IYnJkYfffdOY!=j7b4lUxGU+pw
zVbheB241E*`eeRhpp}6wld`MSk23k?*2v7)GG3Lpm{kABZfl^Ofo}}-Gw_;$_6BSN
zj)B(=ykX!210NcA)4*E>-Z9YGz}p5o80chR&1TWj0Bgi+=4LT;t@5+1)X~lSfgoyb
zR=OB?k5`GjoA>0+S)$z9EZ#RzX^Y@hc!Khgf$zsEnt_CYxWt1FX(}bZMO>Z`(Mg}F
z7?j2qaeZPWY2eEZQJR5iz%p=Xtg>;2!dkPkt^v<LcLQG-@C^h8x*6E`r;;-8F{NkV
z$A-CGi7Zk+A=|QW8fR*YU}-rMvU&GY1D_dq{I!hFjqnJR@3siyg-2$8Y2YgZU8XC&
zDP#k4w}_qwzBaIArE+z*LizWSGN<IpNufWLJ_h<yX#Fxfw9DAIMYQdm+26nbirT<9
z+J=FF27WQ{tARnZ99G%D4+cg|4vQlEj%@E!o*9`vgghG<X5c3p^CYEy!%Vu^P<qPP
z$W2ObtN7Un&ng*iVCt>Lb+-!Q^snD2fl0~;1AiF!UE<{G;T_6I>d3$tT2x-N!&Whx
zRoE)%y!KYnYn}4TR`GjYbi9EH2IjDi1|}MqWMGB?p2IWQz!Z87+2Fej?AaN5Zn0HL
zsUI_nk5&HMDjr*;lryqdPKnGkFpI{SpZlkQ+0t>AR*tRND&AZYJ~EHhnWp@0U;$&u
z2hqO_%r|g!t0=rpJg`kHG_Z&fV4I+m*4ZW&Q^HcD+OjaoT4YXCmKj)19hrE-#0mo|
z4O}vC*}y6T1qODLHv_9_lQeY$TMhp12kQ)MFffz<<=!TEn9_Q_qH(UfO%V3oCN?rm
z8Q5%K`wC^`HqmmuvSgds#;3L`I~nm7DBBI};I&PVlD1tuxm}RBOWyink+RpoJ_9EW
zoHDTAzySlt3>-I5`M%ge+NXiTWNCd=eKm4~weFU8R6-(Mre?R?E{HT7t(=engzEFR
zi#k0sPa8O6;Jkqg2I}|C{8uXREW_On<=`ac9A!vj=$kokyEwH(={+>PV2g553W~;a
z#lTfYX%l5lT$A2c#Kc`Dt}_f8xM|=PqrHj3CdO<Rw`qsvV`&nnMb(}bS+ZU9;<1M&
z#%+qW%#RZ9nIA1`qL_(NCUzGn2U&d+_n0VQ;_7yBH|b-Payvvx6Z5Ai%c^D6+9BS5
zA(uEzls56w4#9F*GTViFO_VcH#l!<9%A2^)L}fEH><T7YZ&NCop|^I~AwJt79-paH
zGDB|~vP00_?l*B`k}|(=)`KjtMeZXe9yLQldPwGZ*u?m;5r%@QCaRfu%tY}IqjPr%
zw_S!eP9bt|hp29Xu#L!l(nJjt?M=LHqNa&jChD2UGohHMZ6b?ywMEG=k!j)?6VIBc
zV}_RhG&$TDy}Cm@W#ajNlyW=8lRJg8OZj4(GN4yxy`ADYma|iI+$ka^qOy?ZO=O$=
z_XJq?Bcqk7jk0o0RA>~fYl7~;Bw_h^N_`UzOuWc?nP_ODk%<>fG&hlNqOpl4CYqZ3
zcPCye73*@W-n%QqCWZzhcx#rjcx<GZlz_KW@ZzoIi<A~72JRFT&gyl_6HRklnt0j7
ztK{EAD+;`4CXXh2MLsoir=ZO<*~Y}qoq~s<wKH*fr)W!^?h2EynPBYtzI_HyLVLr+
zn<gw1wuu9)l($U0XX1SmZ=2{~qN5px<#$YUHqpt%mGx0?a)gGl>}KP4&9HUuBJJe%
z<OnH@x*wSM(1dD2Gw~5svqgzZc+V7t_`uF-Pc+C)n9xm_w3#+JNfU;N@9v9b?-Bzl
z#MpH5s=iC?9hsf?O{QbQHSq~6W#X?Hif1A)kuu?%@Fr!isUK~#OLW~OK9)TEwL<A?
zf=Na#!fw(6KQr;UiBD<gBeK~P5-uDa>2Bf+){FAoC7ArULGD*%c$sqHALaHkW#TUJ
zwTWI-w}s~|^fuAQ#4!`cP4qSK4LPAlnCNGszlqUwF_Zs-!M7%UGVwFZG%?7;U{;DM
z-Xg473LBsk8=~KvSiVaPG4Z2`SC%P1nAp2Z>|Ux2rNNs>+btg0EqMCe!)0T<7zc)%
z_{GHUCPtX})#Q(9@bqrM_|Il{#~9_YmCD6w3S0a?OpG)!N=jht0)@s*?YyvCblNS(
z(%DT+qa5f*l;mzP!Nf!p@r_aHYm$k{bODpUkVqS`F-kAic7`oc{-z>R8CB*gjm^v%
zCT3C;vy|B;X3@KsWIWq2<4?YBmoi|ts4*&g^lmX@i!#T=Tod!?chf`L;6*wAZDN6m
zJ*=jQg(eo6SZiXPiNz+CFv6QyNr|=2`NzaE7C2j3N-?&};6?LhaycL0Eq3h|t4tJ_
zSZ(5sX1SMk3+xeHTZhY_Yb1p|2h!J@*kJPS-q>p5XyfQcTGxo|%@W^a;>kUNJ)$T3
zmukL;r=vu+(J4&qGO^vn4ijBk<leI}`tBaFep7V+#K>+FMEdU$AMX)EZr5W_+D8L6
zamd7eGwjcd-6IZAjFTdi;ryPNhxrx?d8@K`k2u2G?Gf9G=DpW8=Z~q%2@@w7t}Wba
z;gpHf4A&NlS~z3kU&cLl+D)7_an8ggx~GZrl-2p1i)PqSxnM$!S9b3aq=d;m;tF-q
zB=;(VKf~z^rE7;Yc8!Q!r&mtS=2d2|xJ9A0&bUo;vQT5MXw@;o1JepwC~P6!3eRoJ
z-z(<qQ{LDsideAshMfcwi*YD1S1D=X^My)r3wK+%$3ow|qJ)Ks6O=dGhLJyKx^lc}
zZYc|}P};(%y`qeTTivqOE>;GtQP@==Ud}>!3y)iP!oqzPDp+{X;_u$VZeG*8+=><|
zSy=gYq_Twvtg!the!s<kFoncNM`RPya+rMB!Xp-{QBe7rk6K|5oW8$*uc&Ha!Ct|0
zAa9k7@z!G&?wXuk-2%^ZyRlb1$tqiT#=^4}YFemeA=5$~3yOsadlh<O2DPw6sZGZA
zg*`)MpWx7jw*8car>(F_q6}H`y6KVo*C@|fSY0L-vA|GFrDs{;?^k#bT+hm}rzd7-
zTgb8SjfH*|axK)g@PUO7E!4A+XQ7>i*DTbx(7-|q3olw|XrYmXn1v=*cz$NSg~qgs
zLNQ((3h}7SR{KO#3&KJ(3olsVNsK)FkVhuk`^4aVg30ETScgcteG1`A7Ft?pZJ~{Y
zmo2oi@T!Fs^ORTk-cqpx^Asjo9a4xBQqj})iMEtX{pjj_;^;on-oon^-nP(z#ja4^
zpd@ER-jq-6d?EKOTFd@WM1&nJbh6OJ!h4ddcPw<a@U9j14cN8jTiB`Nh>z{U>+j~h
z&)Th2YK}->y+>j4BMWg0T`hcKLA9V+a9PLk3Xj=LSg<S%s2I~NBrO=yNUHA_<E|Cu
z5YLpH&}^8&mf0K$N6%M03%)EQkj9y!RQC&Os`BxFwz^-?V*h8Mn}x3}^s?}&h0iQ}
zVc|=fH}U;~Z)b<UJMXf4&!%>k@|A@i7Wzz8dRiE|U(i~nOGwI_1xjxVsfN*?o8|Vk
zP<w&WhkD->CBl;rSL_%4$(V&D7XGpDt%ZR!HgZBa&~7dKPUE!jorUk|eHMmW_<>Hb
zP5F^8vM@yAU2ZjQwN4pEJ+4!Jk}yn8QeK@I4u2R%ezEW?TcQ#%;`{asj$eMW!colS
z{o)S`BQ1=zFpe&1VYG!YOfFEm&WI46T@f}GM9?6YVxjS{2_8=uJ`gH*l7-1E$HHt2
zQ~2QGjO7h7XIhwQVVZ^MR@fh#Vd1$0f=GwImAu#UiL(KkMH4+BI0m0%VXlS0EX=1>
zl!?7_fFV?wXN7?}I3WI}x5`2mTi^(Np@sej#3G6FS$03z_h8ATUe8}@VVQ-UbTJFd
zX~`BgS@>;+veLpT3+pTfWTikByV}AUYN1?=ZN$g}V%`D4_F^qvb)B-2Z?~{PW{$2`
zHd;7wK=9(N%@(#W1|Ae!Eo`%}-9qJqVWrq1WB}YDjXCq6$Ui7{Ti9dau!SQQ_FC9y
z;edsM7WVUzSxWnkX*8G)2ZeJ`9FoE0^-a;g4~9{6&_Qw3!ZC&{3;$X;ZsFW~<%ETk
zGH&cWC<-4Erx@s_L{2j-td3lHA-D1&QRk3g06)vjl=;>$m|Gn0*N-+iBraOGMDf~~
zXXCPkD>N7z!)#o&aLq!#jm9>vTe!hEY4bm-xXEa2p^S~PHf~!;vr)oENgIW16t+>+
zMll=dHj3E%-&xjOHeQ^outxosDtC|1e(R9vHeJb>5Giis9y<&jciVVvZ1(u3x&9%s
zI+ace@0PLw8>MZW%!|e*Wz#p4?IY!P7v<f1ZIrY5cPBh#qr8p#Y*e<vE^7tyFeba%
zM5WeZrJ{{Wb{N@68E{CPYnO4qjVd;}|1a+WJG7s-^YeHy`7l|XsXSuiQ5$Sw>4QaE
zMQEQ@?XX!Ve(!5})ona(<9Qp|HlDEYq>b7(GHleaQPU2+gK>s>sbxcvHTvpr<*QOL
zcBID~5}7vY*m%aqvo`+Ot2|}nX&ZMVw(yYHbx2$}BzRcvb2hTbt&P>olnAAISny&^
z2NutJ>ah4`bmZsP@^ftD+GuE_k&U`GcwX_>>_L&4-kJ3z%#(1)ccmKGVZiJ>L1}ha
zZ0?!KQ(I$yD;*Atn2jbjd>es{rZ$9)4mLX4XlCODs=!8j8_jLBu<@$RwF$gv<0Ts{
zZM<xU%_3V&PFPV>t!y~ts#5F~8{1pta_GlSNT0)^jg7XH&lshhjU#<Cb2zRa6Gj8V
zf=Q9rZM;FwXNJT#DYw;;w^*Ig%Cy5`$6@id#F=ERJK1>0hGrvShcj%Q$yocyhc@1|
z(Z$BVIm&xB-na1q`Ttva=!INHDt1lp8y{Jp7yZaa+~$!ZLbdVr`0T?Xx5N=q{fN+Q
zByCtWY#Ti$XB$-0BE^*WxxbYrN5tDlMCFOujt%dK@NA50m+#W9CT3HWoUA)tF)L-`
zW1D~I#y2*)+W3UFWaA4acPam~@tKY1{!+Tx;ArtvW;+rN8)?rxZ~1dO9Go%^e@U5-
zS9;j!Y2&GR>0jCSv2W(vlOiqmD_`5_ZDaHi(Tf7#ukd0lrA76z!)|K95z)^^e;b3S
z2&vow(zXZM_}1nJFAA@;wc+W+9NvCs<9n8D<KPkD>`;ENF?md6h<vJ7LD<AR(I@lt
z_z3IulZ~Hk%%TC?7;fVi8)IyYwehQs-)JF=!+vk=wi&<M7-?ga4W5iW!p0vg>ZoAX
zsM=96+Q!z!IZK-67AqI~<!0mTqhg#LPUNziK_471aV96&n0N=DM1CYb<ql;kwR{Jk
zZexbTXWpT-I~qDd;Uyt6vu(_=!Pyell<+S)ES2J*tAoF7uDswe2h|-cB&&Sf##tMS
zZ7i{|nSqGjXJe_2RW=H2EMvs5v69B0pUau#6?S;u^}cEuiKAg_MaO4PW3`PnHa7B&
zQzL5`0Ou;}ZA^_t$;mnfhsoLWss2aB1{;%(3ZA*WiN<4N#ZhtisMu;_8~HgVj?hPJ
z?69%V#(o<+ZS1nK$42p~O2sm<*bk)+O;>i?_-L%cPX1nLkYs?jIEXtyCE7S-gZSX_
z%3(_WnBYZgC*&E_M{OLlahw@!oVIbs4(Iev(t0;VPf?-eV@z_Wm2)gS!n$dj3{Ir4
zeJ$ghjq?oA4vIUtVB;d=xs6*?eV@!rHm=!tq+jM`8&@RdDqDn|;@Ph=$rUqPr@>c>
z-C*EtpHJ6&`IxwEBhA5GPFUGO4hlOc;^2SB#CyjCXYYBXJK;1w`)`~WyxcZ_)aD{Z
zov>TdalCT3gL{ZOc*sEs2PGYpcW|GBQV!t2kL8we@cCM$w1cU~#Fk@%_`qYLtb=<U
zl#>~l=hSQYSC0uI6&zG_P}#x#4k|gJ9kS`KdR)*NKWv^`#X-~K;sFUcpF^iMj*Fhh
z#di&(4?B3&2}fIxICy+=Hoa-$aZy#ix|)P6im!g$!4nQ%b<o<ulMZS)sOzAfgPIO%
zIe5-NmIK8>Z3j;~c*Y4$E5kvigE|r)HYM_ugJX-8CC5dVMG6sSV07Y4!m|z!eO2}}
z$h}xUH$v%+QL-K6IEXrU-oeh};++Q3Uy9{%XwLzDu7ljcrHE{tqY&mfsPCW&>qS-<
zDh(XuJ80~np%aG6!@V;bIUwXLQ_R8MZdrDTSoy^YV?tJbRFE+TFFJV1!3$0}74}!5
ztQHb!E+IL&aa>e7A?lnEEgih<pp}Du3ls*=_uJ;D{!w0JE8u{^<i&rKHV)c4_`t!3
z4%#_*&B5CaIyh+W;B{8&gm}|I?1VVCS$V@jS)K*gFZ2Bq;w=XgzRY0b!ZxBKZE~ve
zu7fTPIyrd9!FMM@`E+(d@0)f)e7ZlJn|jZ|`wqs}&TH^)9{Y6^-S)FNA32CSupKxK
zR0o;^-9b_cll`0oOV|=l?-LphOa~Tq*EE;$kX;})91k^!t~nuUuE;)oLbwi6PB@F`
z(Z*<^Cq+Pca`Nq@AkKi?YL!AUe!{{XoN#c`K{p4VI+){Nu7l602ujbvPY${}_`*Sd
z2Ll{@NkKX2!vZ%({~eV*d|kAMgPsn)c0e2M<)F7jD9lF9a_gQHY~9+P6n!0hLt&21
zrV;jIrA~%T@Zgi;Tk4ncq1}>=Mam#q)4F?=H-66^O#9D|65&kOq(#aP4u(i={wU#4
z2|0A4y4gkf*}-rMlUi`_i-TVs{NZ4vgWnwdPTQEPklQKKl>u#{+Qi5Rig99u$S4P+
z9c(@+#?o`wDYH+CG30Ys*kfV$dmIbwl*Wj`+0=;+Ceg=FiJ3HV2UF<F4yMt^$0#3<
z%x*a^Z06X`PIoYa8m|<4s$1TflY&Aha!Sl{@F(f@qii>4)57nI@yb0V<~jJw!3OHc
z!F&dP2TL6+bFhHHU&>)IZ?XSR*XWzcar8s^xm-Tr8U9Ng{NsQKFE%2}9jtJ$%0U6$
zZ9+DiX|A}fq<khR@0<!3)K)uK>tG%AcuK61kc)03{tV}nhyGA%y%TmF=_8vc3J3cg
z9B{D3!Bz*m9PD<$24$Or9du!-qwNl^Rm<Qk?ya^N)XR^j1Vy)pRX8Q~@~KmTa{{zy
zBKu@=>NbUQRtFs%ad6ZLI}e9wUHiphC!8E3!g-Qobjiti$E7<k)U#6T>z;COnl|8~
zvWqi}gpAKFin=)K;GBb-4sJO(&*1OiqJv9xmSqZuQ5>k2+EV1QgDd2digv)c!K)PP
z=1`R!+MhcmhIUT7!2o+Y^n!7ll%;bO&h6iJP{>7L7ilgoHpqRwQ7%=M?xKi`XHJLB
zHv=!1I~j6my2V@+cX6+aaxU(6agU4AF3Pwl;bPtUMM}CT<%a$Cl?|i(heEIXT)5%S
z6nf`{$+B)Z3B!R5M-%+7LDSQsyo>u>q;HOP8&s--8?Fmil#q)cv@42;$o(#=xTxu(
zmWu~mJm`kQrRvP);$at$x~S^n5jXsM1uw1(zmyguQq9F<F4isxO`?6p*ws18n28GE
z3yYM;T|D99Nf#fU7N4FDyO%XwjFyPvqPB~ME*iPWaFOXE!s@uF<Kih7&$@Wd#nUc6
zkOAZw7rRU4ajJ*)Wjx`s0>>JD&&({!=e0b_{COAIF6z3d=c0Y1Ob(fIT;#fF*CE2Y
zgj_nzb5Y;LKc__l7d47xkw`(kKRJ)1o};HlzKg~#gp1z2Gh<ZH8BzU=XyS&mSf@+G
z2%Ea$+8?F5w^t^IPR(7kaPew@)&X90@sf+x9@cnh>EdM<_j{<~p_PkQT+DGXmpNUu
zcJY;q9xmFrXzL>GLM4YTUUSjWMJICZB6dc+<)UflwAWp{;evghH{Ebn^S}NNk+)@~
zI!MS~3TyF>i_UKNXNM16yz9c;t#onm9*tyrL_H(krwpmGDayVxqW>8&=8Pb|_>3r+
z9Qnw_<p(o}Xf6^iTo;}T-9?gYOi?Ts2KnrrX}Vwo%9*G-1z}6NxIwP%;`*6z-Pv)$
z#qo0g3g1QG;&T_>U8G!m?BWv_|8v0wJ}#B=>gs~+AeV9|)ow06b;JMEP?(W_#b*+y
zM~DBcanbT$@g*5JA$m2={qWx~zA?P_bn&%|UtIj^q8D}K;#(I3UG#CoS;TK#^rNiC
zDt(!ub>36svJ1uXKKoa2bkN_$0G2673LKgZaxvJ&k1mGNqRPj<b202+@dH_1q<l}~
zuODSIH{)M1gas}QkzsB)!T6JlpIJK_T*T)r({MV-;&2LxILrLa#qVT;YNEBc;m<Ed
zx)|k#J<LC7gr&n3z0oel&|$|Y<7g-Ox%Bk0E;v)Yb#nG+_r@rn@eDz;l+*XdCb^jG
zVw#KT^wycm6#3Lt7bj*YjH02bmyOMEG1JALE@o5j@<nETCSw|3#Fw&9yX#*;<ifvV
zo{PU+9OvV-0T+L}*g$Q%Sm0tIIdQSZ#UdArU951i(!~-N7j`L2T`Z%g&?=VXa9sAl
zoG^4x8Xs9MDI`{_m%GZv(q5T$Cq)X#YV%y;6a{0#S_*TFvW_0nBA2Xge!Iwe=|p|Y
z#u`?LZE~^M#XcANU2Ji&mExr$$Vt82Z7#OE*dgm%;;i_dJ50_B4wrUH3X#0CVT9b{
zVy_!Ef9zD#LOA?9;NqZ*BQB0I=P_}}#bK6N5DuT2JYGNg*mflviw^IUcFaYA$mPW*
z?4*lRv|bN|J)CCnXFzsw$;H16{w~hbg=d6MF>Y{<<s6;&te_<@tX-g|oE1baySU=w
z7WK&eKQ8*771!t&6mo$w`mC5aE^>pCX_$MH#@slU$(c))g=a;YheEO3XXhyFztOgj
zo)zgHig+mH0Uqx1P}B?m)>P6%F%QMPP?#k=-0k5W52eqE$Il7Iy$>7a?${j8RL}_7
zA7isve4J9+Lm3a{J>2J^tcRS*dF8xtYMoNL*F)|(L80-bbmR&iDth6Hd1Vg_l?<4b
zJiInldG(z5w?!^T0h}{=z{7(cbPq`n4|#algYeMI!y_IZ_3)I3r#)2l!oJ@V9-j12
z&BJ3d$&gjuL;RfJeuKw7d?Aq<9%_0}Jk*vos^x{=N)zS9)~DW7CBs9e7j^><bx5PP
z*72}zLo_s`4bf*jJnNyJhdd9@dC2ncyoYQLZ|+byNzVV*L>O%AN26Z&UmN=Gh9yc4
z?-nSz9-g2t><x)^Jq$f3h}8Gcz(XSs`5qcl!Yh<c$fHaaOp6e2?14K>I7QIJL(GFZ
zA)8v`Y9OOiQxAzg;q2%O9-4c2+d~HrEj+yFp&g~?;Uy1~-;T8M@CsW24=;P*OfQXa
z_1N%dRj+!OaV|9AHXi<Lo!44ckd|3+PPFy#`1ow*Y)?^-RjyA|UT0G>Q#o)>yupfi
z_~nmmx*_RrQ50*GYv)8q51l-G;Ne3L@31<Pv)`xjOwR7?;av}1JiO<j?s-8y^7mWS
z&kN#QU*;w*&S!qa4AT|WgGM#c@Wv<{WF6lWO?bGuN}2m^*q%1ttq?anm>z!h@S6wA
zgYBW0hu$6>4=(lSp_>QKL)-Hr<>6xwzK2iF3-%=f51SfhvbpT)VZ{3ACzSU12xBb!
zy3;2|XtAGq_>8vU;Y(_>Z0vK&YFK)A58s~`<J;y>JTD4uDe{$v9v;|7`r1QJ$>)mm
z;R5ub<)KvfpARQ^`*`Tfr#$@N;TsSAJbde6AmJvZzZcFX4WM03R5+PNxseABjR&!`
z4rzm>9kMz5j-GWv@cME}_7D$0dicr1&$Q$@%1|nLzA}vZ?VI`N1;H*8lZR(2!>JMJ
zFSp(+LQV#ijBy3zch=OyOb@d>{NZ7whe@;t52HMc_AtQ<SFFZ(80(==`~2}<IOwMD
zjFW6oAT$gHOx|MmW1`GV2Pru&GKICE<#?FtVH%M}d1c$>f3iMGPR7hqxKh70J&VTw
zr-#`d7J69ZVGhl2o-)tFUyLMF%C-nEj&b&m3l~S`d-&T6*8*}bgqz|PcnCHtZOg|N
zdssp@FCAUs;U8&BOFb;}z=^@u7sPU!cZ=M<7sB~@Rl=1XXxOVf6tKVorC>xhJ04u3
zT}#9EFu=#RKGu8Kz*ynqX&)PD5)5=c?((tO!xj%G8J#?A^{|bO?_s}(?H+b`*h^Jz
z&e`c<mxqbvV!LTnQ?nW92*2o;xyJ)nEh%=wNf$)f*$M~92N+Mts)vIN=Cc*r41@L&
zFC69{^KhJ@bxQV8)^4>jzfmS3{pAGt9~YUxN!NwSX%A;ST=Q_9dZ8(Lxai@MhjX%y
z4ErP6WSsYKfkAab_WBFq)=GB0KAIFR++6l>h0*E$7`sxZFNmvT;DWgCqPRhC@^ITj
z8mqrMY|hxFzvUt0VmRSh$VXuxlN(0U{m=n9SmWj{#_ES>MA*eG>Z6#CDn1_YQQXJf
zKFa#I*XOtMDB%M>O8aPbF<d7t>2vdNgq1Djhn}L3$u8rA^A#+UJhKNlW{OhIM|nS-
z{H)~Tdc)lNeB9s?fFDi|GTG^(sOW=`gQm)U*!$%w;r%`cX_F87c*w^SKA!aPu#ZQ4
zRP*r|%Q+*SUZ^}u;%cR;kLR{Uyo-X<o4;NZXJ60f{8e>7-1hdkkIzMJM(ey9vYNGg
zC=#jZ<B!o1Mq|eC+CDOTWcnB~s1#dmjyTwnsN;uoGHf5&cs=9eSs!ov=)f1Tc0OA8
zc+p41N7P3{AB}v_E1&m~=cB%lY#%v3a(&eGQP0P^i{j6Vp{esCLce3lH|B+dBgWVU
ze&~tEFN%CJ>_bqnemH`N`ABP+(L{2)cS^Q0KGM|3f@AfFQ0XuDXwIrFRJM-J=9(jg
zu&;9LB_A#Qa4xZpkC%P4^6{#V)_&N|zT$(Ec<j}G^i3wsDeaPAFOfY}>bk9uc0OL?
zOQ}Jh2YaH@C6ReaRCzI%w$0(sn?AT_@+}`n7KAI^#M#Vsq{@7_K0F`q_~`6I^O5lJ
zu8%H0PpHO6KHl@g&I8v4-uJQZ?IIK`@ellPrGRwC`8Z41EmWVsi_POeoAVWHeRLm5
zAGQz2he6eE3cJLXA5J2fK1NK;ZgVMY#Td;v7Jhe67>c<_<ogJGeC4ADx%Kg}kIyI{
zA6>~9^ZV%L;}Z(!r7Ug~`SMb@U1Y>1@u?p!JuJN>z8ag|-NzSxxMhO1qgXhu`O?Rp
zOJS4E@Ys_%ef0J54eL8By%(i1I(+q|OQN@rK0b)h#RyqV&eiZ%KOg=5a3P6*$_th5
zV~~&iJ`VU8?BhGi!N+tT-_sF%jPWs+7U<(gAHVwejr6g~P#-_}_}RxWDF;#}FV5k@
zC5JG>Sr;0A>2Qks?Hi5Rclw>eVX+M}{-6mh5512Qi4@dGAERV7>yFPJO`9B_J##~p
z%yUj@oR0}UCQ26`PotfXP5Dpq!@lceA5&=FW0g{u#Z>ayJa@?QD1X-3Ef%`=3_jvx
zm5%}+vwZyNW4@2Seax2TI?oR~4@1X9=1{Xfi14a<S^OpGFUF$0yTHdnA4`2K^RdXs
zVjoL<)Tk6=Q*!s<QWYjdvM-B&Xi>|v*nc2>*(znZj}?BnOvy^o-BwDR$yn>W)hyY^
zHXqx4tfj~K*uY4V7d`z=CKtF{T^8%<4wuE&Zh0GhY-0TP!9L6u2`BZ+B)(PR-P`04
z|M0Td;bRv~u2b4ha=1$Qym>BHW_Qyb*sN?)_R^kdU6RNo<^0)YanQ#h2D$+E1vpIe
zV3hN5)5lRC$9$aian8qaA18dAp**?zb6K49amvTa%b`6_z8r4hJME+Plu$MQ(v?;!
zycmnl)8raNFZj4fRqj$wUlx~qT=sF5JTqd9Q?Aer$0-k85k;;D&N?=_BDj%kXqnh`
zM$u*AlG808w;9O;+#Q5Pr3EM)AU(jcwmF3)q=^;@a94n0K{zVpmY&NMV{=R76%D|(
zOClt4s_mWtB?6QQP&Pox0Nf}zd2^A{0ZIj-<3Lh~a6zA|03Tiv_XgocO~!Wi`ubcE
z<pPYl5>~cCfQkXK0z?8-3Q##ftpG}Z`vX)7@MwUl0Uii2Y`XGLfQJJ-$Xjcaa#JIV
zu85LjB3xsl%pVCr$i*E-ylMfe2Y5Wd;@WwS1z0gA?ASjMfU6--2B;BW*A>CVk@Hss
z`_CZ^!rj_LY6r*&@Kk`OgD{*{;wnIZIuz8^aQIO5s^H8yyGhRksNFW>*#J-W%_RTN
z$t2q^5~Bg056~n)(*W54aso6AIQ6RJ2B;gLet-r6>IKLP(Cuot%$LJ5*C;JFL_1v-
z++W8k42ea#4XIIp`~Zz9!>i#uRV=`yt764faqy}rsF)=JG^2v9iI;=W0$&Kwg3~@y
z0?h;P`v^8<F9m2BfZPA-G|nX?Z@kz#w+irze3lImOJFnICP3Q&6H}O!Lc0L31vnny
zM1b}IUJo!jz!=IWz?%WS4DeNew*tH!zzkpo=n$Y|fGz>vV+D5??G)f$%K4gjCkUfG
zTlUV>*EK<eRbvnBeU?+8!~>`SJ_zt3E3#bqh;}tTn@cLhCzQ(50we+$l>8yVfxJ$O
z8lxo1;iPbrRf}tai*Ag2J3c64v&wuCg&DvN-~|W*q$rA1I{)~|@s3Z`OpA2BCc0h=
zr*1wD&{dZ9B1ZuMhF=r8yOb{Lqn`%&EWj5*xMl8hTJ>4M{yCXheob@_!tby+(=tCl
zlZ&T40`#O(0{lRp1N7qE00RQ_4#Mvs_FWU-1n3ihA9^s^R}!xv){g?e9{vHD|0e!6
zz`y{51AG@?kW`;PUdg#G9=a}y{1uMwxwVg?qniu~@MC~q0{qH1GX4knDM0+X;7ZCc
zsq0s+i=Szz*TrxNhg}!Me+%$?fIk9oX7by=6s|Uo2vA|ULVGUJH<QGX^gDT%op1_v
zY=ChAmeWn>o&hEVm=j<wrA?CyFeAXs0Fwhup}O1WQ?rbU^|mWh1567rU9!Qg?A$HD
zW`Zi_K1r^H%?j{mfZ0;l>;$q89JZTdm3aaF3a~K1B55A;CHy<Uo|}!QT^9?;!*#L$
zdN?acFI!AaHOXBTU`c>~0u;R=!U?5D(WL>npRn2u!Moh3xiY}20Gk4A4p0zaHBE89
zvOWlVm1~$YK<*8}l{k(R5*;Gzr1m){uz{-K#z?yM2hlb+gmy!039yxsA;4~$&_Bwy
z06XYP65k%6`;E}|f4U(U|2fz>HzZ?EfW3_E0gg}zhsC}C2l;G)vOmB9N#V|L&VAAR
zXh?^oD2Q;{`6$ioPvsbed_(NNA=oO3^sJKsPSM{}h^25kz!`?b6e^|gZ-BD_3Z+mu
z#WNOg^@g|@;8Fl~kj@9Vz$iCKDSI<C*UOB$0dDdZvjw<D_QokU7<{P58R3L8=S!cw
z8SYx&-Y$c;Sbf%=L$KR4&izVSDukS#N>8Ck3P_<eDJc|9p+pKLQz(`~@l+@-PKVx2
zKBp-6NJv{Hp4~6=?I}uwo1#<-?Qe!LjWd?*Z#OQJ3Z3`f6w0MSt1g=gH;ZyY{@8e>
zd<yraz|B0Iz2xwg?pYxPPNNa2oWlJnJe|TbDO5?}ffSxhp+*W1GD9l#h3Y9hoWdh1
z{*eULQsFPT`31qFDe%2t$hWg2#1S;7P##O6k6ayiJcSO6Glt$2Pf(akGN#`YHB+dS
zLPiRiDXhFHlvKD<bNQyIoeFJ(+!E5->!k4bE%6l9F)q98t#B(i+t6oIcrJyyDb!0L
zD-|{tkrbjSaJGk5T7PHs`4qBK$Vs7MyNs7_32x>|+zO*vZYrFpq)hTssGmZk6!KXD
zw|k}V{E4vt)-V-DNOOFIZ4-B+vGv!dWK&#CQfQjOCln+3Orco{@21ctg%?t2p2BMs
zdkQU541MT(OSC33S9vLgmMOd}Rlo(QRw;G}qp!;3D-tIgq!6;R-6n;$DQp>%(T;C<
zE7H1QZs&%XqYG!fp28a`bWEWW8B5_Usw@T01(DT}w*=!=z49@xTy#ibL8ILHx5SoP
zf<ux;FXX<HLg!RCML_)IE%9Co@26m-V5aav3LmDRu?i~{uB3b<SyEGoON9Ke+syC3
z*lH(I&{IgJFr`BpFWNbOjLs<(D+N0RKZSt2jaQshxTn;W_>c~1TrT%g;aUklEi89i
zq*C}e1*)><ZPDm<=mK3SuG_-6ExM)fX$k{U_%?;ls7FdKg>RTSg)dV0It5DpOWwUL
zlt$67Br@T)=#fItRM@g`0K#c)^4Tke-YG1<Ekv1EA8G1z3U+cB{rXA!Jb7F6=Zo59
zgp_)@1Icg-!&CSrg~8NC3PV%jaz7>ieF{IMFof^gq*P36_M^1hw`M6Eg3*9!y2Gf`
zvC2;={G1BA7SE+MBjgUEUsL!kg^?+YN`*bW-&6R5g>&egg1fm0U)?;d8BLnv?Y~(W
zox<1@#-%VOg~ygDoLVGoG+P;;!UV}Dr>7`w{*L^ev}Thj{}jIZ7(G75)D))CA3sKo
zk1?J4P2m(nRthsyn8o+fcT)H>h1n@AN?~ydb5fX_!u%Bemdc%%!e0`hNBC*Y=*yhz
zTR>HAi;PQaw($R$`V#OciYDxZ1j3b<`@ZiZn+<0Y5=an2fJPBH#S0Wf6h*-c$jr{}
z&b2!e1rhK<1w;W+QBm+j1w;i8<PyXa6%fQ50TKA$seJkW|9SeU=k4n1>gww1nx5U+
z9Xdax_{&OSo-p4p!*+VL3_GYQq&_Iahh_L~aPZg?pM2&H9XBm>D5Q3l;o~xVQU*Tm
z&O5<f<BR_ash0c=*Pi@cW%!(3%J6*|c5{1{;XoM<mSJxh_LX5j1HSBkUwQLJm~Zjs
z&o+Z^RYHmv$1k}Glk*O24<9PSW7p?>cva-9GJIWzEnfv+wea^5-!NkL=6@@c-!&ZO
zz9_>n#!MN0EW=M_I7*Y&2bt}?H3dAh9AWl*F^_<sy^vq4iaK6~UnE)vZ^%1A#~v#p
z;4_4LYUMX3e>zG7H2lHjUxtfi2x<7M41bs5bQ#W+fw$zR%J7c>p3-@id#WU7YmMTw
zW%#!Y|CQmqxSITPG73G$Pl{;I1vYI8^S*=mmY+XV(NI-G4GlFlq-jXkkfDJSucigJ
z7<|T~x(2@9y?qrmu!>@p&!+Op{C{64U_jQ=P+J4<JL+f{Uqzj%Q_PzVR_ki0r=g{W
zRvPMSXrQ5)hUOX?YG|Ydo3V+8a7oUrD(c4#d5yK;97rF&I3&NR7JU9pU{_HsG<Y}5
zr<y+osiw7tHX1r==%k^ohVQqA+iU2cVMP_yP7AKu1Pp+;swjTHz=sn$Yr#(GqM@q>
zzObIpIsB4Q%%@h4RZ-jyJv3x#xJtv-v_wO;hQS(!XozUY(U7m9zlNR~dTHpVAy+Ky
z&7nUG_tnrxs<e5{s$k<>tfE$y6z6ev6AJmw9X)*X`cQ!ep6iM<6ccC|Ku3KZ9!UGE
zs%=Ay`Kb#p%7e7v<HSqYT2&G7Ve+@u7u--)m1r2MVKnX6P^w`Vhtn`p10NLOQ*Hd-
zd^mm1CEF1^(!-BXF4b_E7Muz$*Dy*8F10n*74UNae*6E&<h+S%gU?vJs%ngeD>ckZ
z%N?s>9M_A}To<08VWNh1axc%1JNPI#DGy7`lasXIu4+|Pb&ZB=HQb?LwubBI{6pbs
z8gA4uS;G_!*K4?eYdUxUxAQppmBCakxbBw@3ob6xHQc1(Rt>jlc%!PCq2U${)5k}M
zZ>Ga9jv(NtH!~^lLcy-8iU-9bRfC*1OT+CN<~J+l%975}aHj^H9@B7_hP$=k(V)4q
z#K*mydnBmt<y;z-@@Lef^VpYBp#@iGO(;KT<tJnOl$9JqLrg=0d=32U`mPE2aW2!x
z;VNnBx|{QZgRTafJL2a2CTWW2I!3I+-S<)eQVdHC-)Q(&gRh}n!z)aN8t&6@zlJ9?
zJgH%UhJ_lIYIsP)0~)^E5Pnd@VgZYU)@V?=M25~zQ@o-rDjjfI4R~0?BN~=zcw9XH
zsD{V5{Tr6@xgdIybm8{!d*dVgWi%f&<=ymh2ET^2)T3dghNm<<qhU28Cr$A%vq}rT
zgqoG6o~8|HYE7EjUpx3dg=G!Bw?51VqSk46PQ%Mg>>8fe@PhDP)bPu`@at1U>!nIb
zeu(;#hWDr;P4Qa~4n3(#=^PbYk~V7Cq~SviA8B|^!|NK}r6ku{L(|d$Z)td2!<!oT
z2`z8Bzgl0wPck=a!50uG)6_c}POd6onO&!Ni-xTl-q*05maNO;)rxj*(@-s4F?xAW
z`9KR!&fHuqbk`0IJ2mXnuwTQ+8a|P*-z@`us^K#YyR_ibRCj&wr5-<pp7M6u=S)ZG
zf!aOnRg%Nt-z$O2TSeZse4*hWmxig2vydO!lk!V6p7#!E_=+3nV6Z8^7Ql%Yq^s|k
zg_z%TG|+Ka!w(wHXgI6kM-4w|_?2l#!x0TfHJqSJHPCe&^q7X9#kO(js=AkRT*Ila
zf{z*bb2(1@r0hyoXQiv(#k@Zmc=XK9@E;m_Tv@{3YyVBPBL?sy^$$1K;qWP;OuxLd
zJ1t%8boDRSPD6Da89M&ca9%@5M-?3x#J%+4MQ-Yek@Fk!cqQV`i(X1sRduB6;KM?6
zc$yxh5uWk*+r4Uf@J!LvLHYcst%i<F9sJjZnmTIfsI7y~cGltRSB{U^m99>tD}Jj*
zz`a~oM?D?&tEn%C7V|TxtZItCnrx_}k&ezfy69-Eqlq4Tann{ur|-f|b+pjYQb#jA
zm~3+~fDaJzr!K8@F!Eaq<xyuyHO10K1PI#cXs?66zPYNJ>Y$^e9{l>_+N!zy0c<B7
zq_eB3t~$Eu;E6Ct5AGMb>*%2)OAj9ZW|a{>^*}gG=KgTDj#M?ZqMG`4Vo6UOy*N{p
z_M;xT$?dJ9kB&F0sf%g({3f)ojy=^BAB*J|nz=f7ga7lI5&d-(==eK<QwbF67(nmE
z&@P67I*RBt1GNnl>lmctt0=yX;u0N$$&aFT6hm~B=y*lPt2&12DAi%>aC8jQF<i&h
zI<C<%LWj~ZM#nv4i%06XbwJ)IJ@_Z6O9fvhl*|j&)a5!x>$rmPSzWQ@R99Q}hTq&(
zI9A6v={{b^l^n6UnxJE%j{RebsgtDwOww_cw0_k+@7n6>S{>Kvm`VLQ?yRmR>$p*e
zUtLX+DmmBdxIyq#q0=h)jrNA8>$pkB3?0j>E0&u%$LfmzO-*`>j-AyN?Y~XOEFJgi
zn5$#@`uy8<%+@hS@Etn7t*&;RD7sU}U9?<gbT^l#cjR<+wRBwxL92b?g}Vx=XP%Dv
zI^sGKI?8lt47t5wgEs?b1};A{P-paJs5kE_jOzGgS_yGX1UhFZikZ@C3Fp26d2A(<
zy<8prGt?p-59&xVLUedKF3(U47!T7TzK(Jo_vyIy^?Wk#7cebD85wG6hN8ei5qm(#
ziy7*}47FIt5*;Vk=fA)hpbR&ij>mO8q~l>7kLdU-Lp`eFF&%YkDB|`)E5N`S>Iu40
z#|p;0j`20rZ8g-uktHkj;BUY=#Pd3y(y>aaPYYcm^cfwi1yF3n$^5l~pRMGqBdEk}
zj#a0TG@BN#r_DNE(qYw5tiG&cgINAZ4fRS5HSL%DjXE~z_>(s4cumLaI(F&!oO?va
zn>yapu|)@MeoMzY+!Qs`u-^y1t%LeE>-eaK`o2cskaxM1H3P6!$2P7D<Eo~5U&nUN
zrKZ}!&0AA_z+UV^V@~8>Qd3Q+sR-uORFvGQ<71j3m{m5hd@4#l6L~UsbF1q3LC23e
z_UhQD;~Qz(uj30HU+Op{)dM;X>Nr<ZeNs~$sj2GLQrFy7$U^*;nDMnx+QZSm)$yH<
z?{%=1)x!e1)e1VY`V*@XNWbeiN<Zuk|E%M<j$=A5sij!@{T?}?;}`l<$FDjV##h%;
zchpj4y9$5P!Fb-dI|ym+T<+OFbbNMZ;I<3ZJ|B?xH}|`ErdkyL=&1Vp!24>cGt57N
zS*4TD>iCy2SxcSMah_?PR{=&vEmi(>$s4uQMIE6i(xbsP{Ir&$Sd}Qg6HqmZv}n-L
zzqB}@)zv?>RP`t_Yb&lrMl@KF8d1~~K-{gis>9YO?u}w@6o{g36jw!YbrkiYs2@ds
z6#b)U5Jkf%Iz`brivNBc*eHrNQM8Ssu~f-vBA{s$%>*<T+M=?xrGQpZv=(qlZN)B}
zX}c&oMA2?fxP3J6!`3}v(h0Ry$0$bsGjN)f+a-#wQDjFEiK1H+-DzQls@Uv3qPV@b
z3P+I@4N?T1Q?c2ZJaeK!a_AdHKLI_X=oLlpDEdg1Vr*q`YOCBR@}fwc8A!E{*H)x^
zw1Vg_MFmk5MlmvqOQXTY91umRjKaPHg;ON7IEq06E)hCd=n$bLLfLm{6tABdNH8pl
z;n5)eU#YD|M4`BRwbhQ=iqS}LSrmtBs~7(oI68_^f?2&hinFy9LESp)3NB3@H71I&
z0*J>&F<$V5O3uV6uB^n9I9YCiI_jDzu8rd6C~k@3x+o?`!Hqwi{;Z>>L@||@For=L
zb-jQaNb9Jp>ZoZ_y)g>zTngM?N8J=fvW}V|W^;$q=9yIT$G|(Hm>tEfQQRigSzMPW
zzTX{Y)6;d-`~MCko)g8kU-D1YQ8hBvor3R*;_fJzU|+4H?ulYY9Yuj}>!^8A%#UJC
z6l<d>i$aUyktiOGLXRTKz>ebnXpnV{DC{VlC}L5>qew(yMuWu5tlKtIS%N9X49u!a
z%cH?n$>Ul_k((K8Np8=PnTnWvKZ^1wuFq8SGZpEAC>GK-2F$d`15x}wui(Kb7K^~5
zC>BYVXEW83C=O-@Tb_G-Yo>Zg<av#FIEp_qgM9c{6uiJKi{f#aGVv31QEjy%ij`43
z$!!R=TsXJ<R!BbA<*6uEMe#H@7lJCwGpx=lSk2w{??5t%Zyj0kY!vIFct48m46`Vn
zkK&yu-i_jgDAq^uW)yEl@gjpQidUo97{$v`Y^aDm4p&R{g}M~#MkuCq2IQt_kON<1
zphm%L$uD-^5Md@#rf5>iaL~7-LFRujTCkbRJ+g#l0n~d@JOj0jJM{N~TLf<vF)}I4
zuwQz<+6Uyw_SqlBM_lVD_C}FWH%LA^qxdw6&%_BI3;jfr6`OWN@p%+`qWBeRcNDaF
zGt@qz#1vpoW9vTIXf5liFQPcW6^Y`@C=OA+u3`eIViaVIDkfmMW}f*bif@?>#zg)Q
zI;l?DcZ^kTw<vxP&aYAY7{yOf{2aw`mVNn0qBzPl$p1>>GynVYk1-Q|AN<t%i$^28
z897)wfS)9spg?K<FQj|&PjbC}F5+zqNBK>3{!Yg(%DJqr`jcT9#otk!V)iz0zOMR*
z5fa74DEL?SXSk*-GtV(Y3OF0Zzft_QB$B^4LhS_SqqrcPX?2xRSCR8*T~)<ERRcfO
zRcS^b{AykGNnJJIXudf;r%9{4Y6hwsXk1Ta7^o>DvZ;oF?0PD_R_^F}fn*&6nFek(
zaGL=bsB56Nfj$Q68K`fdqk&Ea8W?D3poziP)S{7roOY$ZyqVwF2>uV8e}QNZiL8Af
zL}oJsZ4Jz*r<xmRVPNgXf|dqa8E9<;e}l<tn@VtCS}{5OZZ2+T@RupY?F}4$rFi0<
zB^?ZmzoU>%oegv`kYyljpsVyE^Wl1`n}LaA^Sf7adKie+Q{UZK!hfpVSWjgeh#351
z2bII_OLBS|IB+1uYOji_3LmMb`WonGV3dK&4dfcgGceRZseyb0{W-__YH+1+fq_B;
zX+t9e3=A|-BzW!vp<)Ar4D2`%Ix{pvt1b~^ZW|K0P*1VSGDNH@p)vIX&M*V2zEUDK
zVOa5S10!Szjz}X%3jb0Aml?Q0<mn3b8g1YT1J@e3&cGN0V@2#Lq2ml(DPX*qwCsV<
z1iFRB*UcMP5+QwdQvM_Z3;0KUlk)ZY>S_a|*GLzF$pU5=IC*p76a&{w^#%je4BTj7
zD&NXb5{b<znRre9lKN`8fv1K>ZZdG_*I->(SS7vLz%2$|tgmKDcXB?guVxvz-N0uC
zb{V+Cz-$An3_NXMj)6N3lpDCuz+DFJHlWcY1NRuX*Fc#OyasMAm*7O<e8H^FGqA~w
z@ZD!~mWB8Z&86~g!KeYl;4jKy)58Yh227FX>jl|`C1C`w@BFd8BIV0B9RscbPh^rp
zQzAe~zI>DKS)-UQd;)Urr_&5PZr}+63k^JAV2OdH1{N83(7<9Ncs1LS*(H1@<NvSW
zAp;K^cuX|&eQkV?-Xrt?UuHKr{HQSR?N&(nWd>3u;UAY2K51aNffWW;a$Ct;MEO=Y
z3Q&24Nl%GMd@tKG238w*!@!#c)^I~{vlw{Qz_SL{RrY<(!1G)P120Lh7lf`C%9kzD
z2EKERR=rG*6^HrS!3{DCg03>?Mv>fPVD6A$QY^0t=k-brZy9*oz()*t0|i4vn+?2c
z;5`HH81R<`?=jpuB)rAIRs$c%WVcDj_l@9XqtwO;5^R?y0xsx>M)00izW;QmfseUc
zMV_xBrKv2Rh~%nv!TUqG^q(8pZQ!DTPz-wv>}9TFcLVzj>^JbWfo}|a!EJ8fONOX{
zgUnj<)84QOvWEt9=javmE15OjOSRt`_>Kw3zz+t#r`h6m@+<sL@MEQKiBFx#J!;^X
zfqx8~Ht@57;|6{=@P~mD27WOxd^%3b6e`w^BmT-%EVE#6R=h`*HvB0L`Af`TmE~^(
zr=%k>m*$LtvrN&_@m~Yy4E)ESS{8VZ7Sdy9>Z^(+yC5>OZRy}}l^CkV&^U%BF{H(i
z9z$jfh@n~x)nlj?L+uzcVxT{{QZ-}2MynCSvxCFSKg+C$y*jZVs#)kaGzd0M-5Bb{
zP(OwS(!?%gQlOz!8^wYxR^eEhP24nwW}>-O49#Qc)<CgK%NSaSB*!9$%grgYj-ibx
z;d>7$LnZAg6T{9pK8~Yf44pW19QEVq97C5FmdCInhOX2Z!*wxC<|r}rh~bhL2FH*U
zLpX-K81iG-*ejeJL(dp`#Smd@14T|w4A%(g9YdcO_=Qt$409W(zA^OUK!xFXJM&iU
zDWD{A1&6qQ3<LOqPYjD2sDc=36od<7xaE8i0b7e=7$nSM8T19w|IL>nwhoD*B!+P@
zjE`Yx45cw#7Q-m%J1mCbF^rHde;ul>V)#@#j;sWiN)z>ye|Zd}V;D<sG*skY5kt*}
zYK#c{)<6wkQAiC3mgU^EvT#BS6Jxkmny!ptl8kjt3|G;BhU#jm(()5K^KNJuIONMO
zL#(n8Pl@6B81xvTG29Tt)EI82d<@fKV8_oIs?sNNZj51i3^&C<4KreRw4u@)1_n^W
zs}0r67;cSWP7HU(a9a$oFUz?-hC5=I6+@jvp<f%SnvK-WkLT1q6q-%tkLOT;^e(~o
zav@^4TY8ask1%Of=SFH?4D(|si-EYLk<!H5Y}(W>Oegoq4jVDVVt62iMKQ!<NW|d9
z;KyLn=TGF=F*q?;oK&M=%6cQ^#_(_>m5Sj&Bb5~VRwFfJMLw&4EXyg6;XcMyW3?cL
zzZxkH!Ex{B6dEgng<QnOYGOf{^g)J149jA8JccDPETuzYc&@Q}D2BTltA&l#!!i7t
z6VB@senbE{tUf08Ke;T2+CFX^n8fmgEZLJnk2F>*V|XftuVeUzTQ!EKV|Xiuw_|uF
zhSegoA%-<Etc~G?7}j%{2IM{)!#eK$CV@g~?$ks*$AD>~o);#;i_(#;*E9+2e~F<|
z5Pq4_E7ezGc(p=+OHe7fDTdc7abjg5`@SL7H-+BQL~V}Yofvk-@OcdH#`v$8!M^)g
z=$07Xk6}9v&JJ&l;lU<qoA3!fh~dK+c5s`=@KFpeiOqjBQ3nN3!^lXuZqxsH<`eD+
zh99&2mm$4hc*eOPR(G??<%{7Uw|rBzH-;~`N17_)eKG78CNcMNURE*bt2^^%W)*)K
z!=V^vHVszcD@H|AwL)aRjqz9c_#=itnK_4NejmfJ7=EVDo2tVx{1C&BG5o}_nyMqr
zpUu=?O%<C6j!KpII5Sc+b&{*htr5eJX6hHA1lKlGzcIHwk@LGGpW25)#C|iintEdR
zJBITy{;wKN(G|_qX_5R#C@rDnnHbK}fM)7nGM_3uM?070Fed+#Dmj$7$W#_btvG7O
zQ6(Pitn@gl#Zgr-t7&oExx6q>wwtvqr+OS2(nL;;IBLd0aK4$MHqttAWX4gk0TB-@
zXQ?al1WZ9x*dUIEam=CGI2y&#IF2jg7!ya6IGV;WAdZ1?G>fBo9NBS1;%E^MzJU1f
z=N>)cFo%a*#<660xK$jj1+<ByZ5-|5Xdg${IJ(8rLHLyEDB$<E(>e+0EVN5yEBTb^
z9>>O|A%dr03st>3lEtB$t8hHH#ULQHpNpg)?~xM+->lTLvTv_AdJFC&v~MN9UmUrD
z^Ww;lqkkL)QY{o(ZCEf6X$2^Xqc{!~$H;i_{nVg1O5?#F^<NUlVD?SR8WIm)wphaH
zSIL@qXI5)1YiOK5iOrh(TaRIJ45tmv)rdGA{Jx;9xl+y5_01K#j~bNAHy~UZ$7OMh
zisRn)d6&mAUC$jYm^YHdq+{b47ss`6To=dqI3~m~F^((g;rqfX#)bJO{G9uwI12NF
z>0cAaC&R;63B5WVyzhY3#m&{=2P2c?m=ebgaZF_-{MBRX^O5TbuI#~=5q#FQc*DNn
z^%-5qM5e`YBh858rZ^s2lXo*$-z}ICN1L|`SY6v(ZELP>i3jg=m>I{d0*G%DFpIN}
z!=0LbM;x<-^J=rScQ&O_;I26Cj$=g}D;ag1U>tTFP8@UNm>0(*P13Y@aEH$KHOv<$
zmo$x(#X*|>R=yq&{?|RWE)u1O;~)r19Pvt=5Mah(RdU|H5pEpGI3A7TF$sxO9M4P*
z{uADd!;hmpj{D+xfH6EP=l(br#IaB?t21WhY@1ZNxKG}qI}2D{B>V>}TNevh635a?
z&O-to7W#<L2GfTvlUY0w$IQl&WS_|6G^S4^G&y*Y)|0X>%j5W=x!S)d@>CqF;&?BP
zEpfgk9?!(_MjUU(ajLmmKPs|19=y3@O&n|Ecs7o8al8`8iDdYWSh!$b_&LVyyzuiv
zpS8m;2v{G-ivnH}N`aT-*dX{(E$GGWuW~nuo=rku6H5N;0y0}DzEWgo+nl##5#Q!Q
zq!(?D<DEFVv`|A@sCQ*WCbv*-Zpqd-K4@KITO99mHO~g`<=Gw&-a>M=apWU5F}8Q+
ze<+mTt~QY!alT48d+VinWi8YvaeNv_A^|gj&*Ip{O`SmV1U`>rx9r5TaqNj>ZyaC8
z@l722;@BU@fjADbwT1eEaeg*;SlvA0Cw7F|G{||Sh5F-E<jXin4{?*mgBMk>?3thQ
zEjK9_g-vmMFL~oc9KXbISnv-*e~g3gFy$KkBx`g;=ux4^g#Ik_I2T3UiFQ(YaRdGq
z$8CHUq*PC-@Xi*B)j#9-OE~|;@i&*dg*tpZpZrsCoNE!JEMn5rB6CIrIP|}4jpM&K
z&ND?PfCMgZ7R>nxR87G6vHFnVkx&8+TdJIvYRaeiX$hn!kdZ)*1V*$})e@+lKtb=w
z9a~0_-q2E!wz)sIW&*VnI5s>|D*;wndc8e@s_G>0;E~dc!z1%ss=5g@N}zE9^%AI`
zK*-N+z=0C@;L=D{H|IkuXGu%NE=>~H&{8!`U}sC!Wo5CIk#RnrL);>PmI(|?V0Z$p
z5@?-3UIO_XE`hcQWG4_wpj`s(6X=#eac*gc1Ue?rC4nZb)K4u{rvy4DaK5G5d!Zkz
z6d-0(R}tWcY26d(kqACj%Ss@eKxr!#X{DGn$f0mf0zDJBzm@8nKrhixX72>9Yo+dK
zr6}Jg0fO;I^ZF(5Oe>Wusy4S$?B1UqOQ0kXyeXzIfdL5&O5l<N_P0`8k%0*mCGeZz
z;zW>CS$_LC?_4W2I04e^){1lpT_<2DozObySjxH2Eq$m(WJCfgfx8m8JAsi2T$;d4
z#`)yDmw)bYSps7c7@Gj`s01!gU~~dCTV-8A8qOkfY-=^9dDb}EmcWf7HX(tD30$AR
z4GCN+oGC&nJW0S+30z&txh8>YEAe#+Os>RtkI%YqTZmnza@7WBO%wjb?5r_Ovzpco
z#+{zPO~RbP06X5}wspB=-YlG35}+ijw<a(<oON3Qvl6&Hfjd|gfpc$0C@`=`pnr~V
z2<}Ya(>6h`dlI-efhdDHfw>9rmC*ANm@nY$#<Vhy`$``&Nm(?h>Xpow_l05%p(YW6
zxOAD-TCr*+U?=br$4bCSz)fID0!wMw!R|>}GG69V33v(k36v+WAc2M4HOtatt<`-A
zkgj^Y;Qj<ii62N{Q38t@PTU=pw4#ZW9LhYDz{3f=kihx`9!cQQ1fEOa`2-$I{O>I!
z>sza32|S)a@0Dp!B(R#HzAVD>WCF_tuMoPjlK+%|RS7&@$$5s_S}S&0Bb>F&2FH6$
zU6%fA0_y~?dNZ{7wKTpszShhzKXqrMxpzihOyG-IxqQb8U(~X2;qVO!ypq6&34D~m
zs|jpOU~2-~64)eec`Jdp6L^h#ArZVn=#2ype;&L5h~>=$-m4yf%?Z52oZKR^C4qOz
zOknz@!B}jXGbjD4M>7eg^v&a2)Zb5FdjhvypEG`C)w`Zg|3L6pt<^`Z)#qy?d?C(`
z1WqRKD^o`zct6g^349{pQ=x}=6%eqC!wJ|ebYB8{1hC6q0oqL=;{AfZNZ>$a>p=lu
zCUEm>nH2acfv<)0jnJQjew)B|0=^e|Sm+Nze-z4&pC1hLA4%Y7CFhucpM@S5dLn^e
z1pL`rQMgB8&Tk3)k-(n`{7#cXxlhc_A^l4*LDe>j)E-^<PXedua0hQVIFrCxy41oJ
z3;!~iB=Dt)Lni)XCQRT~6StYT!0nd65ECUPLME!1=xm~kiK-^jOf)pn$V9q{Y9?x#
zsBNOUi3}6h6oqP<xcOq%_@a=1F{_4fs)xel6cvT)n8-9y*F-%NH@fK%Np?9^6rw<V
zsS-4(<g<y@#wMDWXl<g6iKZr+nP_gJg^A75N`cWup_V3+3qq}=<Dn|SaIM-XQkJ$R
z+MDPgP3=t3j0%276P-+Cix`<yLOZ*f=w_myiCh!iP4u9Ei3q2Eb0&Myo-7l8T+9l~
zyvWHBwSA=8(?l;5y@kW3GYdj<iX!7e;l7oe9;4FoOyrvwU}B(&0<ok&fr-1^batTu
zg(6IQicA!nxI{FwI>^MJ5owfRp&m*OHZi}jkkz3kN=@7#9fz41ZepT|D@}|rp-hZ2
zak+_m7lcNdxYWdD;;3SoFZ-^pk@p%MXyOVJV@-@R@n}(m{4pX%@X3PEWEpO}7)eVe
zn8>LTrU8>oTxH@~6W7VmSJPCH85{~1w^1CC-6xxvVuF$2E>F9jK@tiF!^y;VR0&Tt
zF^!R6V!DZ$CO#1l++<<~6`Hv7V%G4Yh|w!Dwo15BQREheTv6nm;s~{sR1MEEal46^
zOuTI34imFYEHd$+i8<_OB4NU$F(&RdQD#CjaSxq9kBKo{$Du``xhCd`<%_0f(l9Q^
z=r)SVYgGyBCZZ+`X??GtFlHhyxWe*abz};b3EM=uiTg}AB9JtZ;t&f$u1uD|6aE}o
zUtjR`ZB$Mue7|7oS!iMbZI<w(VGjtO_ONNOi6tghm{@6IsfmY7EHm-AiHA)*Qn^5M
z@}t~_qMuvfF^SL5WXC-rs-BdXr#9+bE}XmCsHaS<GVz>==S{p?6nfgkY7=WrJY(Yb
zD#6ed8rGV4R@P;+%y*r1_ws_M;|700s%wr`UvJ_?+9O-3!txC!UNN!9#9rz*vC+i)
zCbpaWo&~R&c+bQZ6R(Sl-ZJsFi8oBVDca}<DzDfY^u}fr@0fVEa=YbC&8#b<Z<Uay
z0EJn$(SWuY1Rt3A(8OmZcA5Cd#10cXO?=D@Fe=zPRLgmN!ktwV`c#IiaLeIP_~e4n
z=O%WWaEl@o<{szfeWZ=zboQCpZ{o=XLEkS-958WEET3{Rmz#x>dCSvE^9m{Xm5HxS
zTy5bR3*VUdmI=W^Zwud<_?~NIp}K{`CVnvSkBQSJel+ouiIXONHE~4jIcDN#6Gtm;
zYh5$%xQP=Iw7-ZG&PreuOwFvwnZI$pO#EfyZ?3!a`qM;36P?3pa@POXOQ%GDL2^dG
ze<seGIBVixX4i!w>ZI^F6Z8gi7kgb`=C@GA!bMJbV`zIa$Wc|TAidKSX;zR4D*`Xw
z!k`@`<Y!o@VWESCjuvWKsAZwKg%%cSTc~59sf7<WhBB=nT<cmvDu!rd$1BI@(}DHq
zqENWLg$4qM8wzM7w6V}8LXXSTnpt25WA~Qyc~PjfQ1)siGUH=uZ7j5vA=+7JZv|;~
z>cAi;Gx<=glZDO}!WObEbg|IYLY7!Xh25lA4+~5_-Gx5FDK8BC$+>f^h=tQmdXDwK
zG|twZR*=CeeBQ@GUkg`Q7-ONIg<K0mEtFcwvyjgrEEHSl&%PE0imB&|LWMHo01MR5
z6vTnfhK7=kX6CnW3A+@9hFBPE;n_CorJ@kGEei!oEKFaXMw95zVHSp47-`{B3nMIW
zrb^V(Fbc3x^JNxBSy;t%XW?>b<;v1CY~q5psS=)56dKFE7T#&2J{TAoZ()LktLVLx
zxf3m1$z?4LO_GiyWLtUT^C`x}&eXwleXWJ-EIexAF$<F|OtGL_h+4Sb!VMN?TbN^E
zs)cD5W?Hz_!i}`w!cC%()1i@#$LG`X8RUp_$hk!TThprs&cDsVEDN_=U_$1sx%Zic
z?x@s2&YiT@!rd0`v4U*Ojx6tQ4BcyCu7xs@<Ph@&(2esgaN-P!J(9#UE69rMVpxb-
z@TkN>+(N=a(n89DX~CkCZ_acq*rJ4^P$9d}Ji5^p=4shSw1@l_%hSp&+-KoI3yUq>
zF9HiCVvjwUw!lJ8C`=6xSXjgbivI6fPi@RvODsGj@=JwQjPkIBN5n1fP0g$?n|GOo
z$1S`<<1IX4;Yo&yg>@E|TUcS?DK5GU$L?Igl@jWl^3wuVTUcY^84>tVoWPh_YyH1u
zLff9R@Vtc=ExaUVydc5P&}C$<7f!2%!BysEE667s=rktefe}uh%#9W{iM5+8yk_Bb
z3vXI@%K}epZ&+wj9AWs;U6g!V5(~j+xrOxP)&(J2`;LWoE&Sa^u~2fWg>4qTvhlTz
z_bqI<Fy6)l8y_&kFnic&XyYRbJ1qQa;WrCAEqqLQ3tw}STKLq$UJLug=FcqbvhcZJ
z=EmIu_K2w!3s*t+Tlm7lK?`46!Nr<BJWv^vHQTBR88QzEllk)-3*TBeX5nY%e+%DR
z_|d{oqP%@uby&oHkScc#C%dw0u-OTYSUAe7Mq9;$$MCl5xP=oIPFCh64)jaqA~H5;
z@bqN*@AMe6w1tq3KP~)a;f#f|bQhOTgil-eN4&}|liI4el3sX$<Hn!aR{d+?yjXJ1
z!he;@*~%ciAbc9e8C9`S)kaMlwd~*$kY=O0jSL&<c5r#ECQKs~<^_~S){yGy+(M2>
z;o3Ip*r;oxo{dZ!uu)@rIs?0+l?jJ3yfjoK&-&7rN*dW{Y-6B}A{$L?G_}#gMwX3c
zHk#XLW23E&7B*ViXf0h@*<dtA7!S$xiWQ+h8C30Pp^eTqy4dJoqoa*Zl|yjc9aX{%
zb%Gb==-bssHyhn;jFn?y#mStlr;0*h8`(Dc+bFQX6CIUDY~;|k;^558YEMzy%MPxL
zy#@EN(N_Qk`U%Ljkypvd7f{w#723h|i`!>_9pw2r<MS!cbAGXnK{hV6ahZ)vYz($B
z+{Oqyh`=E>hT15#gNsfH?J0`zY``S^kCQ%3)bg}UC5jfxnPH@j<8rN}ot+nkM%lRB
z#u!f1#%LQ?P^?OrNB4>?Ok-HM=;OHJZu-R;nHBz=XyZy7Puf^+W0H-lY|OJU-^SIn
z-^T4W?yzyKjq7a8pba)A+n8cws*Pzju4llAB{zuocxs|~6>4v^F}>0!B{lPI5^pSR
z8{EO&Vq>Pr-)7@h;j;_xN-Fx!s_eB&j(@Xl+->6?%F{(6Ofe36myJhdjaa?c4)W4m
z@f+vJRywoHhGwJO#(g$)8&MmU4cmrcBW4HJ%7h(U5jga_MWHwYQv74usMt#D+A4b9
zv5~Zqvf+wV|BLEaE(i5w?!Hh~uPch&Z)1UtB{r7YLAWlo@qmp*Vl%7MM%yU)pr~3b
z9rFi8XzfEb9^rIsJS<FdRxAi@Z>tWpRgc+NW(P+sGFcuMfhUCWn6$#iN@hzAXX7bO
ziZimY(Z<s@p0V+qjpuEwwz0;>S{u)DE(=00C(|po^E$@ih~SJtlc<^C1sm&ayli8G
zSoorh@{-_+=&jf|XNp3v*ujyK=Pt(KCL6EWct?a^xABIJw`{y^|L=OoL-?Dbf$rrF
z+AM2SaUl*oZ{s~1TWo9&1qYRFHnxf|)!r_POPLQieH&lcIKcdGV~361Hul)qY2#yR
zv+=1NT+w(tUonf%Z0xe}xsAVP1RSPf?jv4e=u*yfuZ?};&;2qGXZ>5-;EsT+!>i#z
z8{ZX$zU1EIt$~<&$PNx~bTwtZvGFZ8mxFN*zO(T?laGV04i4M+fzx-8;owIbKQUw5
z_{+u-8%J%Nu<?tGbxcy(afyeYnQ$afX%gpn(#EegezWnrjkI=(>4Ho)QHGS|k4hi@
z&B@xhXd~p{9~-BIe~!*crk}BK*2ce*soKgZu1aAc^>B{=acCPCM7ZKEo`-X)<z=^u
zgLLPAC*G<K(wtyNv#C+LV5?Sh!2C}QH5}A*(8NJg2elm3c2L(rJtx>TbsS_mfD>fM
zuI+*wVVb?FW^jhD?*x~X1`ZlJ7}PHCbHh<-jieX(jh$fOc*DiC(9A(|2OS)AbkM><
zO9ySGZ!1Uc0vxmvKn)y)o1NWxQ6Oz6V(lGp1sRi!@J>!}KBOdV>s;BZn}hBSE*0S(
z4zg&2gJK6^2iXq#ImmSoaggJnr-NRit>VhXxpS1>4*H7OeMAE}W7-8L1dfvD1gX0}
zedr)xymzef+EM6WK&3pVPs<02mw37!<lqtqBOE9PgB=WUFwDVl2PGmu)Iq5eoYgrH
zON9+Q4_DlpahjZ9hFr^dS{~^H*9#hRnS)UdE_X26!5FdR3J25W-k(ELk{h8|Zpy|x
znBd?M2ah_K=-^5RQ7*KDNe-@ZFw?=U4z8x_*xkWR4z6`@or5V3u6Homfms~kMY+PZ
zO*d!W;9#nQX)<Dksl0Wfg*VDvnBpi&N6lbWWOy<U^Zd^xmXD#Bif?l;%fY=4<~q3D
z!5t3na&WhU*$(E=y$)`WXr%IraW~886_*Tt!gCLoY*ZRQL7L}az6`3#x^vtz8Iku^
zG=LjiXCTQ*Ddr&V-~k7V93(g+2Oh)5f#txKE=kejIB*42%!^8RE;=+WKP621yxhTk
z4i-3A=-{Wk!uzE!Z(ioKQ*JxO@UB?CicR;RgQX50a<JIJ5<0wB;2A1mhN0$%CBW#7
z3g%-DmN|G;2727V6Asooc-Fy_4wgH3+QBmpR?y~)S&aFo1gvCgqUSGWtr9b+nX0(x
zG@klbOYE(2z~eWo>l{4i;3WqyJ9u8?Utm16&DdTP;o7a2pn6f<#dxM~H;4@Nze1lB
zMVP~h3yLEfg}=$c&jp3A2_>NZHyym?U~>}hB=I(ZgX1nvxOm6GyAB4rD01<hgDnnz
zbMQN@a<I+8rw%@I@V<km+Ns9zoR1uAckpIA#qxoG4;}26>JA4xxn%~F{?Sf-%qjFM
z{e(HHy}EvEWI&U=T@F5XaKOPq2fH1#Z?E<^*vn1YUX5w5X0})R9BdHb{SLlhV2_QM
z?bT!LRgH&AzI1TN!3hVyIQUA$zGcD}nXesuBVcEH^+S7guD$wRs)w24It1S#{vg#K
zg;M8F4vtjfqYjQ$;-Be_N}Rna|D@oo4(eA2fA=nBN8$~0a{h4eCpEih<l-+jF+aOV
zcX3MO&pP;*R{@8gT3|>Ab;iMit@7CS>JEVu&N=wcLC8fF7w1L(BE8x{-Pu81V6=$L
zn;q1i4yvjfR8MqJX&r-(#MN9>cL5g<c2pVCTGK@>7c~U8?5HSH+eM#_D$~W(j;f9u
zIFQ~O*-@2sRBJ9T<tTMs)N@haMFTf@B;(_urRzk0r`36lT{Lmg%|&+?O<go|(bh#f
z7tLL?aM4<{tzR5z>7wVkeyv<=?Wp=q<r}DT$ZXR%w~YuK>Zsbg=-{H0i_XI7w!84H
z@AEpkfh0%l;)3#BslSsV2z3f(*XM9v4;NW3`nu@HG8JKtLJM7FyNI~RaY4=O-m{bH
zc(EUGZ_#r@C)LNra8W}2RFx}(67+YG=OVw-Y;xvzQUy{i6gr?%a#1H$>|&6M`&``b
z;u05wUEJhihKnICN?c5EG10|P7o{#nxwzcLF!A097fQfz7teMI%p2+AQWuvAlhyY-
zsaN_I60kT;@<zM3!o?UDV+Bx*Og528I?ly-7vFbM|A{Jgywb%aX}ZD1RW7b}ah;3F
zF1VGh5&pF<D8?@A{%haDDV&kZN4au_b`Cg=g=TkFQ(a7R`Atv|59Cjmz7#t;w3OAG
zUEJa#>cVg_)5WbW9}40pc(~2QEEjjUnC;?r=~6K-<EH}lTJd`5>dtD8@bB!b{Lbob
z7x%cB=VHDvIjMVH%ysc}XSKPrI^0?P+gX)~e>4}m%z}DYnsy1S%@G=Nk#J#(hPcq>
zuZJubwhPxqk{+XmEon5qqVFa57p7cz+yXAjxg4V8MxhjlcTtZCUf^P(iyba@x_H3F
zA{Q^Yc$r(t#bOt$Xrzp_#Kn^?mb+Lg)rW*q&%**95&Edm$6PF{Y<=9t6P0*ft6)J_
zxLE1pDHm^b2?Ahm7j>dbF#U|K>KPZST|DRFc^7M3tYzf5SjR{cud?s6eM;MPRry^5
zpN#IRUSOQNptoOS1n$V4A^ccZ6<t?C%^Mg1F5Y&r*~P0aHoADt#p@Cko5Un~@8PcM
zCF%8si#KT!hm(v{Vd{prOE}OwF5Y#q&Bgo7|1P$0cT0E5?C7eFc2(T+p>Ar?9fjLn
zeBk0k7auVvbW=s$)TD0e$gzAXncXe0d1687$1Xl$B)d55;!_u&x%k4x0T;VmeC}e8
zi@l<Jw=65WP!AV$pNsu2KL$)Ahb7fbt>~s+@1_pA_|nDKF1~TWDI9X~l|=Gq-GbC{
zw41unO>ybJ6`kJ+ZQebwq*r(KgH(?S{n5ow0*=ToqX1W=Vyt7r|5+$E*Do$kGGLN;
zAc<dH{Kh1Z#Ly&uckzddR!Ou@;!h@j=H4V~Ch<3uzl(D&{&Vq<i_@a#U!iAQoE7lG
zO*vO|S2Mb+nAq0bPCM`7f{Ut2q$P1tWI{<)N#fxO<HtlUX%svn_)>S3o<y}Iswa_=
z3=+l8?&?T)b)iB}57oA2AXY1h+DSA@qHz*+lE_S=UJ~__fOM%VlwzM{<o4<j%(_7m
z{$pvk_D~Iz7$Zvf!!hz%nuu`oB$_7COz>ep2$BUoREs293TJf>^`7WylSJDjdMD8*
ziFQe}PojGgJ(B1kVx5xcETCf&hkB?}(xpohU6bfW+p+>nx(h84%4${;*-1o_2usI|
z!u;#9R8A5-rP@pU!>4*Ex#n~cDc#jKiGE2GBvF_|u88Fe%@g|2;s`xY$^J=fJyyUf
z@qi?XlNgl5z$A)jaAD5eEOq|Ber&oViNQ$>p{n;otUi#XUaYk3qbyaL#IPi0Byn>R
z!;=`1#Fa@*l7UnbmnLzU;E_Tjt20L>aXCGl#8}~sPT~pyKZwq|j|91NToU7xn2^N8
zB+g~2MqxGUcwW!2;>6iHJRH!gq}P-ru216XB(9O_wMkr;#ALxVa*9aOIrp6|x*>_F
z!k?bRGyz=18wK25B?y?gB7Bo@9tf*jl9-vqyd>re=hh_dNMg3&+me`-#O;Eg3#;wY
zaZVC<CUK82?-EL#cPH_!v_3U)7$fA~B<6~5&xTclY!%K{Wl3mBxJe|F(36NJ5l<o^
z-Hjw-m3oF{tLw9aS(`~%N!Up^G)y>)vemH5O4ntp(7Iq21Q)He6oWa5@+7=U4O_F-
zeM#Ie)dh^bZ1q>Rsvik-vSdfpq9h(nVs#R0l31L?j>VBjl6W+UC6yYM3V2B9!$OBf
zRNt9}k0tSB63deyUMBSMB%TmJ&g6*V?=)8=LAol5l>(j;O3s2AB~J@}rjj!+qShwy
zY!YuIu`Z(4CGlJmo4CqjBhM%CLK3f3+OuB3OF~~{I@%FT|K%h$2xn15IY)y_&#RU4
z8|jTD!DOlGHBtDw&^%rRDrMdh@U~E1Dc()uy(DU+P&0)s+$>3)P2%4qwk7d?5?|7d
zBDr1Y{v<v~;=?39qW6-)FI7KJVyA#llK51>$Ltshe%AV#RCfto{!oM*mTw|zcM^M&
z*em>fLXRvBng*`QBmF`KIw16*P)>(-ewD=6NgPSyXcFI4@(&C6Hi_>lIo~I7Mg=FF
zA1XONCh=1x{`g|QV@Z@go&QS`Ck6a0^mvkw;0An_iahgc5`Qq^OUK`Y{!X_@Ed9mg
zFPzgtPYL}ei3U0Ui?p8?<(v^F%?RhHbAqd;!0LZV)LI%jPbU}Wuw39(KyWC9Dye|U
zg)7NX1Zg7w*M)xRDO5{=pt?|k3<0kl&8w9{?G%br7?eVt6f#rjnnE|}h!mQp&@6?z
zDb!10)5C@JQ)rY5VvM+fa2m3jqgZV$d^R;np)4o3!qU{{DYQ<ZO$seUVN0Rpw-WH6
zOtx(b9a89+LOWr$7y5!Ub*hx_oC;1d?8wqZn5#z@c9#)*r_d*b9w}r=HJn0@fb2?p
zA}Net9o$K=^b}?<p<JfEDfCOBFoo?oDp%C@7n&zDU+5{xv>dlUs*IumB0o@Qkx+L3
zCP!V8!r&AZrSM=1LsBS7;noyxOJQgVr72vM!qq7ZOJR5lV^SEK!iW@93ZqiEJcW@d
zT$;jV6(h>r`AAsBe4F%CqlM4v6#{zp41#1>Pc@EHOW{gk(mxYYpm`IeI=QEs+cQ{&
zNm6}4y0F(ZoO=p4q;PEt*QGF7TBitQ>y2`&^;}OiHHB#@+?2u$X}VD~Pfy|fN<BaH
zR5wf0Eh)?tz>^*|d_A)CoXE^d;r0~fr7&Mw??_=z3U{V3TU1dYg=yYhDcqC7y<Gjx
zg?G!k@aV|7%oVYQy%hPBEK5O4!A&8Vf}TP&g+vNw3PuXCRB$|ti$WgivU-Vggjy-^
zsAi|&q`=cG&xHJ7f!bK6^iru5ycF(FVS)7ZQz%d2zEp50HCMVX>=m57*>Rx=JdgrU
zdb~9wlQN`>Q&^J1Ybm^*!qOBTO5ynwUf@_MJi>@gVPy)Brtnw_Pl|?RDLkIS6N1;s
z5bp}*f&8F=<*DGl?Dt;ksT5YFuqK7IDLkFRGbyaD+ya@sRp;L7o{Rkk_6}}@pG{$%
zD11&RA12%~GMJ+w#}$J0DZG@z%PG7l0=y3z+dFX429A}&tHNa1Y!pELCRv4<A`|be
z-bmri6n3WYaSCsx@OBFCG0BVY<`mu)z*FcuoW69ShKya+x2CWyg%48rPz2uRHmTIV
zUc{!}l=D#v4Dub^2;DP25N5~v!IkKf6h2Miixdu|@L3AGQrIhfKTlzI3VSN`%xReS
zUT*34(vfsu3j28hnw>+Px6RHuBm9FYd?oT<rf^7r@lJ3et=~s|odVDE#NGR-@3`nG
z-0>u4KZ(OB{E))ui?Mq#eq?B+&}9L-F2Io#j;3Ih!!E}$MnVd$e6;p)JcSdCNe@vE
zzoc+7g**@W9)3;Xw-g$9Xz1bh6#hsd%|p6}Kbd&BvOo8@kiy?7oMOgil&0_xGjJbu
zI)yXRdUYQ~nfZOxiGK@@zc%z-3jd`*a9&y$^-<6FQ6JLsK8nnXDTKU0XBDAUg`%%|
z_}T$vR`XEZLmdy99xj|M$na3pLoLBIJbZh$fXwY@3u=29J1@Ngcj>DjO6qy2TUn^8
zq;FtVeGgalRm6=vH1^QlLk|y4JT&#t-a`iu%{(;s(8@z=52rpXY~i7$fYDP1uzGJ_
zmAh<c8xL(gwDYjFuUgPoO`DdzMwC<kw|!Md51l+bIJTslht3|lc$haPzpGFRu&`Qv
zObG#7$<Oi-7K8hG$o3HN&|9iG9(sD{CFRDS!mGRIgs#u7(9re8p#*(AkYB;<CtY%d
zp6;vqdnoX5wTEjw6nYro;W7`SJPh<u<e|jFP!Gi(26?!|!(fl^o=a!x8Oy9cKln+}
z5Ya=9-ypkQKUL~sn1>M_l!s?t$saDQ6_iz$ksdDfKuTO;VUK?5au2UJ%)Y|I7!RWb
z59_DCdM|UVhjAXR^f1Z8cn=dq+eDAgla$`RG3Y*OYhDE)Cb+Jjx=LDEz1G9u10pwh
znBn0%50gDi@o+u;;9<Il8$3+)FwMg!$BO6nQ;YfqE57A;At^bh+h-8`-9Cf(W)HV`
znB(D24>LX7>fv?|cX-HYk->7Chgo9PRdoZ0uWwpNFxvz91gmLJ-R!$O-0fj5msKS1
z@o=wzEix#3)f-nbUpQqRG!I`3|5QIke%;)F8XjUEc6#{OL)=4x!XDOoFg;ivmU(#G
zgYCibu!!O0!S#^zaG!_!J)}H%9()hwGQ`uD=QK<dAN;d`fJ1lB4JN+8!$J=aa4sD(
zHvCacX8X}4IVB~OAz18Ti3j3GxC?UCQV$P#cvv`FPW(@pN<L_t{iuh>=$sS9tj@Ts
zgy0DePkMOD!zwP~qmktdvv%1lJ^r&<`U+WSGRYaYIS8kx85JH@d;CL#(64&>--QtZ
z1_tS~9@cqy)5BXHp7Zd$hm9UK$&6m`@REm@J*@ZeqHs!NQdbGx;NcYyuX=c=eJ=Sd
zmhf49jRtsl!$Z~K!4|6s?Eeei_ORK*`yRG)zF9f%czDml77y>zle??;pI6*sQ~p*D
z|I98W-sXW-_SLuLk$&LeLk~N+;{O(%K3e*bShcB7&Z{j7r$z#|llh5<Pd)tS;k<{>
zJnZuDlZPW7KKHQO!&eLg4|_c9^>Dz$K@a=HUHiEK84OJeyJQyr+a~+5b;0g#T%+(y
z4=3AZ9P+?I4x1=L@QqZz_i&gw(8G69eOx@SDOdgA;YZ=Djis{-Ia{k2(&0xv9Aggm
z@Rx_5JshWUrg{%2nEWd#l|MVblyrBlBKVE@-@_l=eZnLq|D+7`H?yLLGak;$SpU#z
z9!?9MP%Ar<pHIs2uZMHo<ASL+BQJ=|3mz^qrTc)--(;bRk6J#q7e=c3Nb^zMM~07d
zKbUegp+B_9F2B5l+qPTV>^tL`(>&DhQB#_@&AC{lwSCm_(Y|{SS5&3H7pm){o{z>p
zn)s;C>s_82m!}%~7?7tLaG<7z!<!T?ZBp1sICs{~F45DQ`e^2(xsNH)%wP1(ZjVM<
z_-N_#|1i^O%#khmLq003Js{G?M_V5s`Pkv39S8L>!^h1&I{4`5V}uXoqmz%$KKlCT
z=c9{{u3~M(4^m<`A3c0z`RFcHa{Bkn5BtdWQM4dLJWISpzMH3VeDw6uOS<>=(MP%r
z{UuC$NSEg+iskyq^D)@R5FhzI`uiA2Rnn!vM<FNZW0UCIpq1`ESI~HTur-Q(4DxY_
zl!Jc<%oFDdI(5xG-1>i4nGzpEeU$pa)uG0-Lx<6g^FzaZOk6wkztuxI?)tvL?ik7G
z7e+4kG1|waf`=|IyiC9-v0>GB#aH+k<KtQ%*ZCOhV;q(ExYEaXA7?I94{gn#;N$co
zk@HtasPJ36c#@B+d|d708m?gH?9cKPTTv_fcbNq#*J3i4$;UJwH~P5V#|=IoiYT5c
z@)<*NsgtTG#$MC8I<Kb<*VAueq~$Ae{`@tM^cEj8eJu8|#K)~ZZu6o0i29i2<8~kS
z__)`{9WsSEKJN4}TX2W`AcpVqako?lHB1{KoU4VhX|9iXKIV(NSS|CR`S_z>KHa!{
zZLqcJx;gpE@DcOj`zZGj_mS{n`*3`08(ZS^%{6^kf|L2`+n0utx;~OVQa(K4_ni=k
zRcl;GdFo{Ov~TWxKJNGNfR9D&K4riH9}5Mrl~tBi`HJ*GVgB%C5Y_MGtEE03^6|2d
z4L%<B@raM7eLUmiQ6G=_c+$smMqt0(Wj-GF@dP()x7>;m56F~RUEyP;kEeXB^6^)`
znvk8#!dRl%ip%m@YW-Ban(p%PoR8<lZ)<%#>th`U9aM7D$%4%O>hsP);C1b<UhuKr
z$BRB*@=@GhO^{MC;vIt94lQ}b$E!Xz`*_F4MuxYKH+;M)nqL$8I^ES@dGF<wXXkwX
zd-yFMZ_{<}<*BpPHy#PL4>1Ma_3@sM_nCiuZ1J&`z7;X{dSq+fw#N%7{H|3>;SYpQ
zJs<iw|9)^qAd_^bkB_;*%h9bIpZNHc{wYV*a(w1vmych3ob>UzkKH~F`uNhv9v^$T
zr+gd`JNF6Q&kfr=m_BzRDXXOAbAtss<l`$J-}(5Sv_r<%KE7e7i$I^jC8yg5y;k&B
zZ}ktt^01E+%o2l3#!eXU1NT(>>>q{x<l~3{a*hf(=Hq7p$1C}~`ml9>fAy=6-+Y|)
z@vo2H8M;1B`S?dh{FCeJ<8LOV${6VR%+SAN=&_x0Pm9bMADIP#F&%}T^YNdLi_%ng
ze)@SI7eq;aX`LW6R1WH4m)mkn(#nxujt1puSdMDts9p|#)6hEQ$S6mRa?~ovf85bl
zrqMoQZLi##<#;(a_r9Fm+T}3yv>jIk-pDKm%2Br*^`z7<51e_I3`A8d3kp=Dax^YS
zn{u=*N0V|iEl108v?@olax^bT3u@3aZ_f<04Mp~>RLL_>_HCS>f8F*%p7u#wm*Y%k
zz;9QM_T}hUj!rU)HKTw69m;X&&%C-_b2<wk?jo(^P*3~m+1<<0qa0V3V^TS?$`LNd
zkaCoiBfA`tauk+hKsj>glXCPcM{YTKm7{k#`jn$@IUc-bz@f1v|A(pXfRdv4zD8L=
z#Jwm<az;RQc0plx*#VX?yFih1&N(9nauCT(=iGyWn0^WhNHk$U1OqB&L=i9$B!dA&
z{chLl|9t1vdFR!uTd&fq*WEQ$HC4MLg7X<K<_Yre<%yqu$j(V3H;EQW<R$Uq_0~*%
zvTJ0Yr@KV{;TQSE@yw;XR!QV1(I$!3Nzmcn(lttLo5Ul3muQ#7?G3VTJs-X4>5y$t
zqA-c>N%TmfLlPa6=#oU&Bs$6Fh$K2oCPymo)hqG6?Bs6joIFvvbvje;uN9~KT$8Mx
zN%T&l58JXhtrt5yE`~J7n)!61Zxa2I{9pA*!g47gP0H_xK}ifwVrCK#Brzn3p-D_g
zVqy}*k{F)E=p@D@F(QePNt{@dKPrhAN=0u+&4xu^j<+|=A~TluQ>Wy(B*wF84YTH*
ziTA7?|9wq<EG`DNPfSW;auQRMn3lwM)ncXVl$^r$#>Jk?Iq&Sx`TSJI^dx4m2}zKr
zwqQ;Eh`89YxnRDm>VrwlO=4aW4<+$%60?$+orDt?bCUS}Ow@-AWL}Wq`AIBDVln$U
ziG{M$7LhrX!SHL>1f5K?rTI(PmJ!7tO@a~zW?w7m@+4Ly@tK0p6|78R6>UR769ua|
zHIg`%#PKBms1!;PuP3o52{j2ViD!~{HVHimBZ<e7csvP{#*>7XgrCIuIcYX)n}nOh
zJ8^L=E(WY?*5KRdp?M=Nf+WHuQc0{$V&|odM^;1~JN!s)`y;tTR%j{CUdUXR#QG$j
zNMeI*4&_uu`eYJMae$8GKAi+%H_F7Qf6VWB%tclIOX4}s*(A0l@q7{+lh~ZZmLxVw
zB`?r)lL%_YILArv7#uOHtHnDv$tK;J<XNQjr?aBR%Jw97B(Xb*m!(74nZz#19IKVB
z^^bkmKQ?4*LFJ|CuO#tm60b?+)ONjpi~#B+eItoC>9LdeNT$A(#J(inP2%k&_Oefs
z|9%v+EQVN1u|J6e?5>LO50ZF~V_h-+eiEO^cSr&#C(rO9C$D_f{Ftdp98Th!Bn~C<
zX%b%~@g>JmYW`dn%8c=sBfr=AdgS)MO5$s_s9fySs>puGY#JJS;$q&BB)+AICUJdM
z8ly+q?HBXD=fsiIggisLdYLDZ_<?>>!L15@OyZ{`{^1O5lKpcMCzH6G#1*dpByl>4
zb2NY?&d}S;OZ$bxBrCIVU(UTN3Q1o+8&#(9ytE5RTukB;{qUv&J`mq%kae|T)?j{3
zoXxvRD^21Wt0eROmc;Lz^+`<cnJ9vFY8g#uBLC#LB=J`ge{+mZWl%y4lc<N<2p)MZ
zznFrX6rA2saI=Eq3epsO`FDwzcNg5E@IP(SN+@{xqhbfU<}4NQ|8<Nv-ce9W!EFla
zD5$HTw1V3e+@+wBf^-E?P*y=X1!WZ6p<r}Nai@Y!O|!@_%$MPRB_ew+ub_g0iZYc^
zhN4u$Dl4d>pt^z@3aTn#J*z3vLuA{ksLl-JYbvNEv)5L*EEZ?pwJil3wNo~{o)V2?
z0|gBg)R%k@uKz3enDwa{Yoy>FHlbd2Oo<+6jTK}_h7xK%n4LYoeC$+9k*T2bplAv-
zRdBC@MG6)xxKBYd1^pECSI}HRwt_+h9TeoSuN1UV&{kHpg@U+(mJ0F|Bp0U@nMx}K
ztz~My!ZR<?haN*=>B!apuqm>`b_&`nNKj8Q|K{KFVt<z?P*B8>63|gWCk5RUbeDRB
zq+KNKtl;8*D^y*jq*yCaqm}5PpqGN)3VO0XrDT3)Rv!hQWoGr25=PIKiZLmtl^CF4
zpn|CirYRVtU@%8e!59TY6bw}`T)_wh2O32yIl~lg-bnwlf8^~)DwudU?fbi9qZE)*
z(zR7&eq$AkW0HbN3dSqgQ#&?6!MB^EmU?sY86`tHS;4~DX;U~%y9*fY)G^M~=?Z2j
zn5|%rg8OB29#rs<f|&{)P~bPq?L8rnff^VdRxnG6zK_WB<A}8Ff%sen^Qc+Dnfj5z
z%vbmqA!!SwstK*c<hoJm4CU&Sd_=(#1<xsXUg14RSgOEP;3-(9V7UTCfvRAI%(#kf
zpHBhFGw-5SVvUT_10>l+v8>nSOKHjbvNQ#{0$YKjz))Z+uoPau5ML{MrdauZOW)Z_
zR9KWoRd-72D+m;9Q1GOJkaz`;D_AFsTdRQKG0A^gD)vb$LAqW61LaS!VppQx_(ke}
zO4|H03ZCWURlrZeeTY^e82+bV)!y`B9TN+i=hkVNxsel)L!;mg1uxKg)8j8G*rwn`
z1)CNA*H79O1+PBdY%A@sHD4;kYb_JaTZ`=qcCZKquPE5bF&!V<rC_&$E_cUrHx+bi
zE#7UKrH_mqemCb;1+OW1o#WUji?F|D=QH&U={d=~so*UIA1L@x!P^S<DtK4HeoEfX
zeMi!L3dXh;j4o^)S=7lcSqBunr{I0r4>RA)9TsFBKA-dJL-~XqRPd34Lkd3Sz}*x(
z{cPID3O=DTS(88Et?1d>wMv|-o}Qo1)KqKn1sxqNO2q>zzEbctU5bj@Dh@07M!_`&
z*A*OL>lFN=;H-l06daZ1o}!&AIHuqSx_T)&&I#38oRIv^)`C2X`$@siQgV_Sr0~7p
z|Fu}I1QKvsrk<h8&5!Ws6r5LZnGTH;GhbX_(N{Arab8Op0TfPOo5tu>1-~lzO~LO9
z{`xwyAJUdG^$!Il>y~6-l-d8JXQNM6QBK8Q3jXHfNku6&a;N`rOjQ(DQB1{6QnFiq
z1Ky|=OH*-+iV`YHO8Ly1@&5T@NRwzDJzJRQRwJAAHWj5+Kt&l9pWG<Hq}x@btN61{
z=FAoO4E=A96Gr(RD(+NKlzr5x$nTX`Q9(r&6;)MKRI$Bcypp5~^2J@U#Ad(bRaT=1
zJ;6*Ry?;r1H5JumY7I$is#y9!A?wD}&k~6`D(b2bDmtsEr=q@!Y!x{w?pD!2;_p+@
zP(>pZF%_9A?orWLMTQDDUocR~mVD8+arPT>6*o&o6BSKW+$-~5?2#C=B!8xS`629J
z&Fmt+nTqBT@SYUrs%W7ip`t)Vo{G4Nd=+g}oX8g~RkTvkT7r*^js^VL;`BZ5UvEv?
zRz*7%?IrBbd{HE<)F!IZy=_FH3Z+(NCrLY~=qNRGZ6hcoph(h1MOPKWRg6&4O+|MV
z{Z$N5(L+T~6@6qDf_tgx{U85xhs2~#(dhJ5(NDz$SsbGj4pcEn!iK6C%&9ReZ3wAc
zT`agY>h1cKV#7Gr!(+?Zh~~+{kt#+}gNlhNMynX3Vw{TcQo~pk8>D7>p1#>parDwf
z%fgdXOja>n#S9fwR7|Bw)Q(M)xn7o87(MhK!&K(IUq#s~85BOK;vp69s@SjMVHLAD
zh$=i4vsKJdu}H;Y6?18dPejjx1uEL+Cg!n|8)VH_QDbc+WLT);7pead6-!jCQIS;f
zD2+<R3Kc6=ER%&2xm+@>SLEN^HX4*w|H)TN=B?tfJxczzU-J|dstQwur9xA|cW+&V
zp@J{)<XILev-4HlR^doM5v&NnBwt0KVylXmRD>#0DxOjCtctZN9#ioIJ5$BuD%P>W
zRbuNok$2>lz9*WM2Ny?_(I-_rrQ&It)6U%V1~F_cU>LP6mvjV|(^WjD;sq5is(4<-
zMira>Q&OX?;7ae@T@mt9qpU%dVw+WLQNd_-TS0nod105fVjJhFiajdcP_aYBP8F}H
zcvZzN6}x3`yv%tgdnvDcWGXAl#~a=jwff-&X|Jhxonu`-K2`##^G(|7>crbB_NsX6
zzh2$CCi5M3!kWx|{|U3}#q?E?wI85QP;s3jtKxkXAE@|Q#Yq((syL|P8x==Xe5B%I
z6`!m4f__QGAr+sh_>5ipX3hdx?zP`C?r9KpR~eBY|0Qi(#n*KEbY&u85hGz4(o+%E
z=EwYRReY!7IA^Geqbk0aI*+k>5_wEgB1it1`-6%fRs2Nv(je;(DKFnn6cu+*J8??I
zX%!b$TvBm{=BMJEit{SY%C^&8)4jL+>EEx{3-s91w^K7!T~={L#cwKpS8-M1`Q7@f
zWVjUeR4nWH>V<!(xTb;`nY69Ozi*i2Z%~zrJ2c#>;cpfH(6MW{RYNfiH)$xYAx(?s
z*UcKbpNm%Kp4=a;UHtlW+AUIELeh5a1b=X$yp)F9G~BKsUCOI0NH4ANuQbv)piG6v
zzwt^h!_*0}A?>31GE3638p>&?uAzp8@){~=sHCB?)KF2<yEOhmZG>MuHF`=`(NI-G
zwf}@nda0fGpq==!ogiORLoE$;G}P512US~(mcdC|#4}%LnMrR`PeYHEne~}Hp4q8E
ztU>kICwIjfYG|b44+GZ>+@qnf21SReBSS+>!}l7FX~@)&rSa?-k{X(5XsThLhCv$c
z)o`DNLJb`>G}F*rLo1Cx86aCj4$IY$CtKk!j2_3ilK-onh)bp=v$PkL+KY}=qe;=Z
zy~x)vy1i(pp}mGS8ro`jq`jb|$LV<3UL-VFLt_OJQ}bHJ?)HN8rlGNp8aip{!@i9t
zgoe%<x^c+Z6;Bm((Rf@j8bpSxdvojUibk-9hMpRFY3QxtP<zq%-S{u<1yf5VB6{qN
z=%uKyhJHmEW7+*R43PXsFBC9T@0A#=VTgu@HC{A?p&Ev1n5bcrhT$4UuzDKCXc(!X
zW<rdT8AsL3v@YhClXR?xaT>;RXk=2$gkTa&{87?|#bf^R!pRz@XqchlehpJKOe21A
z+H?(l6XMlX`IRo^*QgtB_*%h~gqW$}0Symocu2$YL}VwAC&X@+TQl=eLJ&sDYz=cX
zEM{kFn5$u)hDEaI`5G2zSSb0q=Q8`tpHt6DCASoa8U><UvDgv~k5aRS6&ecO&Rt5A
zX4e&nDK&Ci6o|<MQHd*M(kczBHGJ~;zt0f@h-a#zLDlezhF3Lc8gva$YIsV6p~2Mf
zn1;tWtQu?$zJ@@9qrs(p%33k|=AkWr+#8J=SM5kcDNkuwtD$tQ_~@Z6`G!xx_i}A;
zord)qp3tyC!ipZL%*CH1NWZKdqvUA~&uG}9VXKB`3DdB<M(hO*&uMsG!$u98G#uO>
zwSw}irQ(n7&3R^9F8R)*VlQggEb&b3eLjQ2mo#kCuv5b>PNI|f+u7B<a(76|?G_9~
zQodWm%giWi#f=tvj|7)VU(@h9dyGb?VULD4H0;yxu7)=?yruCZ8s1^gj41xLhN7@S
z_BItxYL?5n%;<g%2Q+-h3Tt>z!}}Vy!xetOiJ2dj`{G|2WKc4C(0nA5KIY8IPcZKj
z1!A|<_Nj)?G#u9O4Qo;$KG*PthA%a|Fs>M*UrFKMDkZ;`HE&Zg#&D`Y9MSNtlpNLY
zon%IAh{lK^y+vYB$=Is-X~#93ps&!;RL2h*exy^?akGw}xcNuJWery}oYZjRLS+2s
zG@R0KTEiJB`9;H7PQX|;Q|q12FTyPRCF8t?3mPtJywNoMk}Q{bt8L5OFfgaosMu8v
zzcRaqzcl=&q2W8Ze`vU-;djY1%AZQF%Upj_7(|cGfvYmtugJftQ2edoA9{WrX7$*~
z73qTx#YrDJ6t7e$+SDjnTt}LYYC13az%4pT=(tlySsf*H+^VCrj@$KUVZW3f?f<z=
z$NWS2O$tTlLeb$&e!33mC_{jbDTQL>viy;!^Izwx5m#cb<zZR={|?2==_s$`E*+J0
zRM2s_Wr9f+b*wHF&lE;e?CR3|$~vm(=>AuUsyaShnZM|C{vMh1RiPlhhK`y#8t7=K
zqn3`^I_m4VTSpxob#>I!!LLGo<^47(kDrA6(0lEte10BIJ)1*e!GbhO8nK>S_MzL?
z!KHTcESGY^VmdN)Wa-ft=%qq2p-P+?i<I1}<31gObqvwbOh<Da9d&flk*y;~j~s7X
z9l1JM=xC**wI2Oen5QGIqot0oR>qY}dAD_l8d#@;_@qlBUxz;@t&I-;w#eTFhF{EQ
zU}`%Z?R6w{6zC|_(LqPpHG1Zfx+SGs=$du@a4w@lM`s;9boA8GMaMI}a=Ys2rh~sV
zkYN@w-F1*3+C7>hy>#@}(O<^^9es54m6(2#&X<$-bg#&Xb?%)Q$YJfBAYhOV3a9i+
zkWw;K$1okUb<EK*T*nBGvW}@bM(P-)W4w+DI!5alqhqX&aZ+=O4&uCs50DL?*+DES
zA5%Jri85)Dj>#OX4&tc}g71Vxvh;l&#55h#DcA9U1W+<V$Nf5}hp&{!I|ycZP{%_$
z9@a67mLPvIzb>;AaA(H|K;c{+^K>lJv7F7(u|UToI+o~IsACZ|dufYhHNt~&u7DL$
zRv;zfkLuup*i!bqO!~4(76B_bQaaYKKlkOVVh3_PkVeZoto-*a%iB;uShA=;GqW@u
zI)~Cg!hpfKrsKGd6FMv%wvHV-cIt3+xH_KG@w^U?_MqcQ9Z%^9ShS9HI@aq*=~%1d
zF&&RH`-$vBeG=CP#Txz)EmV@mI!2xLge-J}q(?HNqyi~_T1uXkl)`6pBrivAcTr$J
zoQRNI2HdFQMID><Xi0FBj-?-zctP?^-E}c<iw@FlI=1R~i3ZS7@I8uwLWb>967f2A
z>-b2=$2wlt@rsVUI^NOos*cxmyrtu99k1)yqvH)7Z*sO?k80AkPa<z)!JLl5=qN}j
zp*$`hVFd5f@h)egtp9!;2Xwrr<9!)@Pky?-)KMIextQ^%j^aZd2W4upPLT~z_=%2+
zoy3=%fI1G*ndrQ>tMD@&pX>NSA{%!Soyx@zzZyLR3p<Ig>5+7NtK&Nz-$=~a`mrOl
zy<+i~PsN#+u%mQ+I*xJTuSg$TI$q=PX6H8K{Mk90o8*7c@gsevfwBgE(($v78#?~d
zaZ<-A9hY@n;hfTOhB|dz;B2L_={P4Vvwiu$wlutxnA1tzF)-(%lwXoCy;Ibp+tZ_h
zuIl(z#~(Vb>G(}zDEwVAPqj>}=^Rbu>pK3F5;Ba^b3Q9I{H^039i<H1W}ujXn+&8G
zxWz!$yfpp*akGKq2KIFlT(oDPq=ZZ=Y2a1^jDAu-i;L}~<h2s<(gtofkZu458V-)7
zl`qb+NXy7*yTP$LjHvW48f7!}_PW{S43y`)w}Hk6Dj29}pq7E!2JSLY$v`y&)eTgZ
zS*jSQYM@;I=ohG)yG1Rsn`D2rrtqb|N|3K%pr(QPV<XqC-V~?2j)A%?)IcKx^_XPf
zZUYUZstwiR#hOIczEM&##FK8H9jzFXW*CSW$TiTyKqlL3;64M*3^Xy&l&zLZ-oGd7
znC!quYx95I#b-Nnn;XbB&|HX|q6!N^%#`u5u0o6zBF{kFKx+f}2KZ6XlKT0{U|^Yu
z#*yK1A=(&dYoMKh*JNG_`&5dv6l$QV0t1Bx)*5)sKnDXI4cu>Frh!fdgn_{Zh8XB<
zpo=WMpMkChx*6zYptpftbz<EO^f1s<rp`H=@oQd!^pFsweGK$v<@e?g!{`|ym^z|)
zR(}Hn3=EW6SeZeRxuvtH-8riBPy@pZOfoRpz;FX242(4}&cH|mqYR8TFvdVDiR>ro
z6iJ!!k<Mbgfe8lIcNP;Rh5+(Rs<t{&lx2#6sRpLeCgmsX8o3@m-M|b3Maz<_>tvR#
zllg#w2MsJYu)@GY1|BxB*uWzOW*L}mV7`F`Y>|Pv2Id*yFIIfLIWazW)cR(xb{1sH
z?<hFeDZbFaA_I(m)mdEVES$1&GE3Ns_05(V7+*I2r~wKarA1HPWs)CoHIMj}23FCZ
z8!!#5mim(h6a#ByM?KUsK@BCk2-SdQK$pVBy9-zcYBM@UGuJX;(;f^2R4W0l0gpzT
zmi2r8mespNl_Z#1LKY;mq-4dIH~ImNW@BKTfp-n;XMY-a!oUs#I}L0w@T7r_1~wUZ
z%D~eGo-y#Oft)Vl?3IjPmZV2Jat)Aq&cO2qC}a}D)!{Mn&o;?=!N7|Kwi<ZJz-C#u
zEe6iro0Th98d>zIH***zv(3PE31HF>v!nNxT^uGU*=yis1Fsl(!@!#cUZrgtc-_Dr
znqn6*S%&JX5^9%d^q-cLfVVjDS0&z-l$ifZdWRXih<#G?mtDjG1Me9)X5hGi_YHht
z;41@P8~D(`K?8>je98v)N_=GCV*{VaTt^EM?;nrm{;Segd}iQt178^U(!ixIf~k}f
zfUY7up3OkyVFTY7_|Cvl4#Bc?VvZR2mcFH{XxTk-M6dUV==TO#&@#D6fbtUteqeVQ
zIB(!bI)4MF4V<Cbw-G-ZIBDRN0d6i$bQMFpia%<`W_1-zV)Pe|1>Y08My*!6M(;@E
zFBrIJ;EI8(9F(r&lBAbqi@1u_`F{nZzZ!U_tN6{p?^3>`Mj@kA!qlI;it7gc<W#jV
z#lj5(e{ncWyk+8V1OITEn;2-Kn2DQA++(7#iJMInH&M~VT_(~@++rf#1Wc4LQPRY1
zCQ6&Q)kOPYu~H_tf5-Xb_+KaE`NJa*JmygTH!r50Jz3&*6aRD-&9CQ`F>!~9@+Ma7
z%)L|6vL?z&hIodWdvhwjlS5kLx4a5w^o+=?9jj!bvWZ$IYMZDch1E<{mrPX(y9sXK
zA+m;vlZVr4npjdl8ZU+x-9#M|btSTaiFzg;{Uf8kiMvho?iTgQ+>8Id`FyuL-q1uN
zHW{&3(qqp^+s-f%W7A9|Ok|qKG7&e?(nJ#zO-(d6k!|8$sr)_@%}o3(_pp6-GSYc*
zd+x!Cu^bb*CR&)tGqL}k?2r6ReRpIeWcG}VaU=Z}KeLsI)+V-ythOfq+dVDc#O$|o
z+nAUtYj`9tA?6kGW2Bud=$q+z1ttnjbT!e<L<e?$xmYI?!bC^OAMV$3>FGQQJIiPn
znTt^tx}uxtZlVX<ZlaHr_cYP#)>tpelObkLkCuH+^fS@_{}YyLl+9Eo5irQaU=xZ7
z)x;1JLrpwvVit$q#BdXnO-wN{!o)}uV@-@RF^X*;*>bdrF(%f_7Oica_+xV7#*)ZC
zj5jgC#6%O5OuW`jG_R2Tsl<?HE>dEqnwVx{rilkkOgFJ}W5Em)_si;$|E-%y-X3dQ
zCPs#-51M#LmdGeI5I_yHP0ZoYn^<aMu8Daj7Mpm)#C#JAOe{39h~r)+R;Ii7Rc?4=
zmImDg1DVSU(q5?>TOx}iL&-7|%T277k`<D!G_lGA@%i1w!0y7kD?UTgH71grI6p=s
zPUS2@GohQ<Wa0%Ah6&R|%EVd|mWhU0*^UX<ge`fsQj8MMgl{4+5i)caPY;ff9+&3L
zR5IyxvL7??xQXXYFuIPNY~l$M8`xuwv$u8^2f7PxS0I0-ZiIi*#8VPU{%OfPW8zuK
z{O>>cbCNl?ES*Jc<mfcZo?j>XMH8Djzq(|-LR&Sll>=d7mx-55Y%{Ul#17hkTvC|O
zHH+rTFXcw>#ape(Jlb9CrpLG~Huq@!We#`OtZUr`DWk7)&`tc=IqP*3drZ7xg4SM?
zYxn+m$MZSmdWg48?B(>gP{qPKCibxoCQg}nmlMjwXC^*3alpiTCO%=U_T;{A;sX;O
zapv|AA97M$%s9xIvNwlOjsm0Ix+ePZAb=b=3J=L#S@mO|N(q@SOnhnL7(2nlS0=tT
z@vVvPXf2sphfRFLO0waZS&1HkUxL)huwEpNnmC%9_+C;<hRfo%l!=`%@q>vUP5eY{
zv!X>{QvTXiv@L-vQ9si-dqg|NPn$SHe`}$*g<njZHSxQNKTMo6ao)rg6IV@KFmchu
zB@>rT94;MurgThXXX`!0m8RL5b>u^;bnI7FwNCbLbh9<HX+^})NXT3>aoxmUboDYj
zF@Ku4VPeg;f{i`I8~r2O{>KFI#Vp)pMVpkEkxGc%+e3WYL!?=_#ljsH?zB+CLP-m^
zStxB`St4<(g)2QoDJ$~Wz3<KHcUMfQ8Nb~^x&>G$Bjv}-$EMz!b*+7Zl&}YnMINB6
zg>n`uTDZ$Xc?*~8lzjbsegzApRG8i~8nsFmuGT5Zq@vW!w{xmmsAi$SLZOA~7HU{%
zW}&%-nigtVXlx<FLTw9mEHtpt&_Z1c^(@r4aJQ@pw*zrQ(P8;>Pto2Xe$+IQN%u&4
zch4x5Nrc5L{2dlFvCz~)riCmEtz@kzWZmwyz(C=B5;mZxp!~s}BHKcah1M4GExG@}
zLY{@Vg%&c(jDKt@;J%2K)MlZ>$XHQyxtu|5EVN~#HWjqD@cEoHy(j-#3tQ#p5DFjp
zD=#5asicF2juwVk7;2%D1!1ALg+3fRmSUm1g&r2TlZ0DMx?1QaoA$h{{Jx%|rxoo#
z>1E-!p5kav(Xdlw%%yvYz83mP<UkAkEew!>Nez05Hoe3wxiM*wg~3IbUeN$iILyLu
z3*#(|w=lxONDHGajA7ksMQhHZtjPHJs~=Ax(elSyC|bfTs1>VyOMHTbiIhn2_lwfo
zg_*4vrSFiFh2W_crg4;Q)UYw#!VC)sEqr9*ehV`#1QtRI4_J86!b%IPEIef4VGBzv
zJZfQ<h1nM7TUcOWj)l1v=2_7u{HJRCJ9DS?5|8#0sa|5Cg+&$?TX;ma>y;YuUA@Gi
zUV_YN*~UA1M=f0{Q<qD+jMgQED`d2d<X2l*W5HnGT1Z+@Ea)`mUb(7;&wAx*7Ss;K
z-#rt(AuvkHH&VW5S{7^z9$V2{I2K$B3#aEzUXlLy<h;SX#fCrg>eSBkWhy1z<`<?c
zthMlxg>4odv+y`8VBt9n>nyCd@RWt8Ej(di1MPu7H(1bmi}<3#=Vc9*^#w)DGZx4^
z%N{$IGxlhFe{aF)^A<K**lb~og-x<uFIafd!W(iAJb!2-xW3#KPa*67-K?~&k~z^^
zY`3t(!kZS}var*_E(@=*?G|=hc-g`$7G9Oe8@<KCR|=NZk2~FR_+3M0MClmA9*KN|
z@1?y(g+3yqkKi}g+ZOg(*l*zg{lCn<&%(Qs>Ch({kr92wqCO(%Bi^&{zJ(7gd`JuI
zBih!@W*~rpzw~X9;EyeQV&PZXyoEy+KDF?(g_9f_PBaV0Eu66Mg@rFI9I@~%jn=}~
z77knZMwYnsWV~=${{B9Kfoi#qP5PaMqZYoma7<zdpm5Om+!=pHzgKGiWKi;hOk(sW
z3qMN!xYR)X6rQqh+QJ137cHEzkg6Jcb5h<pJ_RhCrD06U`%{8<pUpYXE?rPahPf`$
zThi;&H%cY_<%!Y%d$JI~pFV%L@P~z4ZIrTc&BApHH`^#~<4<-n{gs7(WZu$8q6gDo
zl7Buo!RXSFEsNQ>$;R7vN4}cjYO~x5eMOp$5|j^(k-x=`DjyDsm9#<1(6q0(%|>Y(
z6>L<ral4Il8+Y0$Yok+N0UKp(++m~2>Zpsjn)-g3SoxQ8%bkjsv#~HIk@0vzd1jdq
z8@#UIE&2UO<}Ttn_wUZCWTUbTN|=3YU%~8EZB(=IX7j8gyK{M1j5=%DsAXfhjTJU(
z+o)rsn~m-^>e{Ghqos{jHtO5B+eVg+CN>(_SkzbCW23Q+hBg}6@cW8~F63?QE8goX
zGHk?bWJ(N`pXe(#-N>lP4Zt@t$TziduZ<iVxi;>z(ac738`*Yr?3&rBmXx`uhxA%s
z(ZWWa4Q7u^g)HUHeo<LWZC^az+D5*OgpC4fkR3~TI~#3T&$;;w5lr%AsHD(F2llEB
z!IqYZceL^3!Zb3meo=9qZS0<(*2P9w!lZ=4qNEZ1L=PK1ZA`K;*+wrLy=@G$G2BKU
z8+~mIv@ys=KO6mR46yNdx!6A|qGd6DS&+U~De|0yZ49x&)8#{L%#r$yeuB+;LGmMP
zjI=S%#&{c}Y>c)s#>QA1)bMUUalD_nxxbiRDZVZ}Uah}q)n81oF;QaJft0W}NLk7h
z8&hq}W)U`~(fQkWz{Z0%X2@{AjhXEEwu$}{Jfpu@(O=x$F8Wd9AsY|dm?cv;^cVa4
z3u3;Lu(>wo*;s7j5gYSuETG|WI3$wUfA24-kjNsY%mA^(#-lct+E~U8k*Q4wh;M((
zAir=-evbiBJy+UTW#f4p8*Qw%v4+#ZM#@IghGN69;o4AbXf_NRrj2tuqc;bx8|yZv
z3=r$D=2=o`+gLI?jcdykK6WZj#*>!7jn;u=d>bb^$M2ewa95=3%hT7|c+AEI4!ul$
z+{Svztdn&1wSRXNK4C}O23X=#HlDWeEK@nqa$Y|pkxY8BMvVN%*VD;AN0Xizjrb-T
zFVK)|yewfa+SqF2C7Tx~MiZZ5i;cMa`I7uL8#`_6va#L94his^XCJAPO-jkOTG?Ds
z-8j40D>h!W@ve>iHeR#wIz5byy*BpPc!P7<##@|>7owAZt<L@Xi)!KZOiEb9%2x}B
zdB?^+iCHc?fBAh`2W-4&<3k$<ZC;>+#%lil0pbIWhy+|pi~n>k=OY^*v+W1spU}fh
zk9vj}QidM}h|g?%&bEYT8R82YU)q@9VWNkxY<x{W<|5t2VH@Arc*w!S4vyIPmNw&{
znS<|a9JP_=;1&np+c;+9R~x_CIL^Vcao)xS8$a;!2OFntoU!qfjh}6tv~h|J85%n@
zAevUcoQf+oGH(nJ<p+wU1H~^k&e9}gH<q~(y)AH?8EIk7Owx-sF4?$Z<EjMQSv7W<
zZnkP{N7Y!Ds<9gR(R&3k9S4fvZTw;5ZyW!x`L*NM==p8juyLK%*gwWFbU^Gc$#Zmy
zBufXziaF5+_{BA{Z<fqW4tT2Tbme$)2OPn@b)v%>B^;D=P{Tn@2e&#X<)EyCat>~D
z@M)!Zx&t^U?cjC?qXr86k{{j?<6gKj4(@Ppr-NTA#pewa)<E&%z-Sb>K=IPK%<>K@
zIH=^HvV)4$@Js%W1I1kqK9rb$28y#c#j7}|>Y$o~>I{QK$-1$kZ5vdQJxFvLB+g&W
ztL31!gN6<oIjG}+yXfmXxZ6Qp2lbrDbiW;*JFQxr`>`9yRLUQymC3^zMBd||v4boJ
zO<0X~i3|rZ2bm6tFWQY?yISM`nbcI~z1Kk>DcMjrUbJbyxr1!B+QDcCISz6i^mNe6
zK??_Y4hkF;I*2=H>7b2+whmg!Dz$cy?_k`Zs5h1k5^E*1V~}X)puK}1=cXkbFgo&|
z$aD!H|N4sj4h}jx=;ENOgH8^FgU(VL0f(f9i-W{U`I{PZb#u_&K@SH^Wt8F8!D2~X
zWLLe}3I_un406!dK|cp2YGwCl0|&;+E=~XF@!}I|We;#LY<4k9$Pacf#KCX}BOKJK
z5FhHGe}(ukS#<TmqQ&4y|41i#=jRIvzioR+$ruM?9o+9k_eG3zFka%PIhf#JqJt?i
zI?2J>g=v!=Fnm}gwkj*@`#O=$PnD@;#ts(KB|pQ74ooeQd#7j8D!zz6AnAjW9<3QW
zyP$BEgV_#tIoR!Bj)S=l9&_-xgLw|-JG_?+YaA?au+YH@sdJHo#SWG@c$8x#C)Xnc
z$jUo|#Zq>igXIp$uqN#f#`z||C)y?npk$?kRsYp9ZC63kf#Se*;5kqoXbubqCT;Ru
z&e^j$`vwc$!BLr)QOkktz;QsHsu=oR&N+BEn#;a}z(I;#R5=!M6x4h&Jc7Md?k^g9
zA!n^Dl)`lm)|2Oib?}4}opyQB!BY+%S(Luvzu|b=!7~n?m01dwMGl{#+T!R9kmtOf
z=Nxyi#lcnwn;g90V6%f49qtm(Cnct6orKZn{w_gE$xBkcUD9n1ev>WQ;b5nflo=8k
zL&G8BWe2a&k{$fy;8h2&IXFaL;ox-#dmOy)-~$J5IC#^+J_qkQc+0`t4)!{Dhf`pP
z7%cTXI7FC|c|p?soMm&<4mfy^RUIPQua57Ra$<fOB6wK%LkAx@_}IZg&W>v(((<C$
z1Ij;Pmr7a`{mjAV4h}o`#=#eC_>ByPuN{2JPLr)Dk`UZuZW@J09DGY}@8B5yzk^~!
z1rO*QrC%B<(vRelp1qKH+`$Rf{7CK(9McPt4O33od3j{-X9p+Qs}BBlaLU1H2bUdO
zad3vdk%sNy0&~ftnem(hZaCpHkzwGl7@rOo9bA&B6<b6@U|h@N_MWQ_esyro!F7&;
zgWnzeL4zC?yH`H_`_$v{?-*&Rvavro-|NM0{HK3V*;wAtXqf(CTU?ZMajT1)T-@v;
z&BZM)io2-1s_@T#G5UW}B1^c)tDl`(n$Bkdf9&}4zU)$NG_P-SQCc$VgW{a~KX40K
z%gl^5fQvFNUUu<{i#uH0>0+RZK`zR=DCeTJi+mU5T~u&U&qaL~6<yrrg2#4hyQsv{
zT~v2b!$lPrRb5nbBU7ZeFM533|7Y}w>^D@*94ZoZOV)Hz%jG+d*en~x2SgngbzLl3
zlwPV+g0)(bEWF!A0~gI)G<VU^MI#rPF0x$Q<D#*P3>PsMd?fu|BeQ5jAeD?B8slp`
z3u@w`sf&AE+$XDXaHuG%!0$t&r%#z-5hmM34!g)j+(oX0QP@H<eAaLqGovkKQY#mH
za8O7I$CpeS7j4~W=W1UU?Oe2X(alA77YP>yE`*ED%;KVhi;gZj5!@%T>PE6$GTbu3
z{Sw>@!3`B%+$eN)K_LO$P(eTs7d>6{mX+z{V%p;9*LiNhC>SO-_KMy{`nVV-we^$L
zpd0D$Vu0koYLR%ZMPjgvAug7?Sm9zQ!7d(h@vw{GE=IVR=wgzKkuFBL80%u3i^neJ
zjCL_bmN@P}4x<kb6Ymd-${J6#F5X*|MoIGpg(q+1%{`wp*~JtW(_PG9_5(S*HDxO6
z>EgLsag`O5b-UliOcxKhcu=aHE3&Ae%;Y>?SV35sUo#k;<zlvrM>zEC0T**!%y+TC
z#XOmXrGM8l>UQEu7rI#FVzCPfsfUv6y}7Ip8TP=VE|$7jM$?s-ndG&K?lUR6)nuiM
zRW6=(@r;YrF4nm4T?8(YE)*9gP0@wwLUW<JFj(g+c{?h{(|aa(_0YayVpQ)$t6FjL
zwhPCF>%x=OYkDr9;a$10^T;sq+b}MNCPEh}7wcU-;bJX2*2Uv4)=B&w!v*m?<;@Cn
zYiQ#$87ydnOnTDAQ?%;gf~g4!BWCuw{AZc!VzY}a>|2R^-o-{Yx}_mf+bglj#S1Q8
zbfd%L%)-D5^NCMpD<_DH9WHjtjN4pnmkg7-ug>HF(jxpW7rUi=?C^gzjGLJEs*BfL
zz(W}iue;de;*^WiF5YnQCf~GOeB<IR7jL`x$i>Gl_PTh7M&jaq7yDei>ter)11=U0
z7oiMf7OX2EWf(L%M*4w^4_zFTnC%kt*>I6vCw^|Y_{7B_7hkye(#5APK9kk^TvBFa
zwM&hN)Ycs#zLLZJwHv+3G?Mp(FqQg`xcJt^F&D>aEpkBF)klj)wsuMK-*bkJ5M)lc
z_`$`W`H7!h{3w~9ByH9v!C&)9nRL<xh15*`jEi4f{NtjShqErux%i!(@8Z0R3ob6Z
zxZ>g>4WMn}lBCQvdW2w<4Cz%Dzq<I1tsW6IgpzQC*gitMKSI=)lYfmx)2X_+E{h|8
z!ljGS{&Mj*{mHnrGTU>f262YE6=OGfxY>(pRoX*w4{07sdbm|eZt*~CEa9QUxqLDV
zgq8Aen+#+arLcXq=t*(AjFL&0%<SUvJ3QR!A?~52hq4~ZdC2e(^HAPH1rN17)bUW!
z!(AS#d8qE8l84G3s(7gC;Ro3+YP%+x@*@SA$4+I`kbs&VYI&f9a-J_Jy{;gcDqys(
zhk70wdT8XKzO2UG9vVodnY@aj=}7V1(QIDeK+X4fX#8KDzgt}xW<)DsnI8Wlr?8oa
z<{q*<H1W{XLzj`_UJv(4FnI!qWEeA2WP7+;I^M#=#dXbcJmgBu{E?!;?Qv2H^E|x0
zt{M4O9$I_o<DsvId=G6rbn+lPw3S)fdq{X_=b`t_aRz6kDDY6op7+pE0w`pOn@5TR
zBL(>%Mv5CFMQ7H{Lw657yl5W|0bM<GllbzZM3Yg`c=hzqORDPa;mtAfE8ymM(QX0i
z>F1%phY`#!a}Dq?*uxMH13e7lNJ$M;!m@@+z%UQPJ#b48h4$shXEJaP&nOS0J$XHd
zhcO<qYi08lVywqoM54ap%L64ZHP0R|G5L3APx8146QB4v<YS75sT_SDm3>U}Fx|te
z9$xb>!^8a^QXbZNnCamG56eBQ@bI9Ahdj*pu)xE^Ui9`m+ru0WvpjHf#ntDdRhPN!
z&#q#gOzk)-+Gw#kp2_Wt3q36Iu*AcoGHI~~o`ijbHh(tnfm$&hZ6jUkVVP_!y#e!5
zf99>x`Pr2oR(UWym>yPpSmQzQpn6D3RRpu#?)Br$LcHcd_fRk^?cHX%)LBj`q}=jg
zd+<F3TyvO}=6G;Dc(SZJ!^}4i#F=q~EHU&jca#`0IggJasx?N5$2>gl;du`mJ*@Mv
z-orDrqLcY6?utF(;VHIgMd1byPkPuU*YTLdj2lOZr=@;IpCu!CBA=7U!TWR4cI9sJ
z@Pdc!9(H(mkyEc?Y>S7j9yUvzRI>KXoQ+jV68RF9b1qkik$-1Sq~BhYw$sBd54)x2
zsUMVh`M)Awk<9n<Fj1A2g|B<q<Kc{lUp%})Q}pn)hr=G;;so(<(8EU__Ih~7!+Rdy
z_pr~yyB_v?I3V@BHA=L)DNf43avA2W%s)CxeBj|jDj6lNjS}@w<yRgZrSjz3#~wcQ
z@EL8)!y!(Sw&H<#`8+Py;-0L}J$&KeOAZ0eNv?oVNB}c78!dR!jj(S#9P#j@ho3xr
z>)|^O$2=VOaFnxnbnJT?!05>7713^^#R(~4^asgI87;WV&FIf;+Os()J)H6|sY7C^
ztX|sxa!%8JMrTs8ZnQY-;T(Ohk2D|WJzVhc2b~*Tiib<G?Z0`r?BNPsjfY>Q<n_^F
za{b65FdUUSe;X}+mr0b|IYwOf@TZ4jK5p`H!^2;6YaafgTN@*~j}bK{<SpqLy_Jz?
z;Q2C!n|)ADFr5sAxA-XG13t?5DCy%?Up^yzl=6{&B<(gCJ$51QRe2xUxG~~(%6&XC
zChErbipTvi;tn5o`Y7k4ypOUzPF`>Q)TbpFI=vLl&<d3FNmTT4mmi%dp@gSJxXFqP
zqg8xV^)bW8{XVMssP3ba55XGxsOh7bkLEsV`KZmjKJM{R$46Zs^?lqeE5>CF>Z#|0
zu7($qH1ILt?(Bv#iIRJpWWOZq+1N*hk0w5v`uqdX^q7xKA6Y&YewY2=-Ps4mh!caN
z`%I{c%)LJD^P`n9M#m3|{U9}D`^fRp)<-)ZxjtI>Xyv1|k31i7A02<pZOQ2Mj0Z2|
zlirY7$WTMRk2W%ieA%&rLW0}-Ncbr5QRwsjsFDmtmuGg6(T<XCJQJrorJT2GcJ|T5
z#}FSweRTEF&Bs6=`!3{l_tC>gA0K^v^z_k7HoUi_JiN>!>anqcltuTG!v5?ZKe~~!
zaI6?PHj-a@DW4Zk4wBlaaIlYx7xNa36~lZC_c7MTI3FW?jAX0pXN_hzE>7d&!BPId
zM+m*KVvOW@F(ZHH9q(fT{k)H<#BVB?=wp(P$$oTo0B;Fk;GF>cm7I41P%_QObRR~8
ztfGqoSQ))h)=VD{_;}LCQ$8N_@sN+C55>pBK4$q?;^R>tvwh6*G2h1mABSsY&h;^m
zxoXF@$QFG#R-7Cw7W!D^V=)bt-Ev#}=5bMDtBn)nuhhyUlRHi<^|8#yN*}9yET@%@
z6_l@#9X0dE$WSS{sdmZLK3K#WwrHHV|8mZ7#3)yNXg)$8DIYpp;luXf_%Nj&ODZ`s
zEw8sMh@XM356_41Bj98~^x@y0_nltOA%LGJ+!V+9ul4bmk99uQ%j}O!TGj_Ktn(8-
z{_d05z&dwLOdlsWxp)|am3-RAGd_0u*yZC{X7RDb$5tQD`FLJxc#*~|!zLduuo|V>
zFc(9Xl1aK!Ucj}P{UDi_d~EZv-Nz0;+B-^~lrYjKPLz0gVHzd7eZ1`B9omeKSA4wc
z;|(8g`gqO9>pu2y>|}4(+7X>HUO7(GSyo8;mXEi6?DcV}dYk~BQ~vr)oB&b+-u1EH
z$A>-+`Z(a@Js<D;_(0a5sl+e~Gk#Pzi~Jko#790pX1U`8kv}fZitorJfXAgj_3;^p
zCV(E`b01%Dng?hS;7cE0`M4!Oi2z^IY<yhyafRN%#}OYtbJS?1KECsD%*SybM}2%x
zvzHg<bT}D#VBU?xYfn!2_<<$*_(|4n>dOU3#tF(9u8b4u<0CUW<>NFxypIb$&iMF+
zedyy{QCr4~i!Bqa#|s`JAaaPrU!<WTx^Cr?#EdM}rms95eAUOVKK`U*_wgHjf)8uF
zxbEW*&V}*f8vSAamJ7?qDP(lZco8obBmWoegpY#&HwXAfDkLoyL|*;+)`IuO3tl3}
zP&@!>T7aL%i;CHi7iF|$fLjAp4^SgOsQ|YHC>Nl7fYJeO4^Sq+9Rbp10F{pyCGU^k
z49V~u)|~-({bShx6f#trAh@terb2*<0V)TmBI|Hh5M4)ENy0b_nofw6RFyib1<}5;
zzvo8VBbl9=YX+zlph19!0cr=)9ieps)D3v|W+pN90@SD4HTieTjNF9A&1RI7GH;^*
z_XLOq;DPtX0s7R8b>5YmA?rYf0A4vuVWyNgTMC*6xHrIv03!q37ob@H5ukH`<^i$;
z<OgUIfIk%G1jq{z50D$6h0H5tRhiV16${W>(y{*uqk<&gHbA=o1px{Jv=6Z1);O~y
z0yq<*-yaFvG(j9+7w^Ds4A3dSTNA`L6U0?1q`YV6{4N2y2IwDPK!9!my0cLM`UdC`
zpl5(y98g)GhK;hmk>_No^L&fw3y9IbUMwgxQS_6@8nrSh87RR+0t^i>D8OL0Xkygo
zT_q(mOag{W`Gkq$5h))PV03_a0p<r76JTtB83FDOFfPFO0Fwhu2{0kR#2`BRGbunY
zQC#^se|)j%*}7TsJkB#Uz_b9<1H3a)9G7bUm?-X?BpOZ<GXp#jU{-+H0UiwSP=JSn
zXmylH)R34Yn4Nc!lAj~1M`o^MSP+MP#3ZpGz`_8_0xXyEMFAcOuq41@8P#uOENT?v
zT><s(DE?@Gr9rfxv*_gh&`WtM0;~+MCO}exR|Qxd;KQ5*12KHlBUNM)c{Kp(2YYgv
z%F6+a0A_%b0Zs+50@wjw53q;h8^8_lT!7~TcmezX>jJE2&jbhqtd-hQlFpqJUGQFg
zX@1qkg^vYzTnep8f|5;>#1pic08a&YI*4wAXTzVA05ba~iDv>l%L&38S^^MEA;Wi*
zI58uBBZUFB2iOtdg#a%G*c#v^nSHaQTO_@6vdEe&in4Fx;7*S6GTLRb*co6~fL8*%
z8en&Ts&~Y<JzDs3fVn?KcbhQe)`*6f!abE@uhGp`j^^MS0p1Mo8C@~$Il$Wi-Vg9W
zfV~|00PhCa&uYAt&Tp<i-b~*YfS*PDG&?}smM6d7lgyru2@0w0!vF^Zd>r5tSzBhI
z@FU4H;~@^QtnjA+M#<ZEi=to9`3Lwez)_CK9kH(h91ideJF{B+Yf1TIXz3*QJLwTl
z@F4nWn`*fOlhm6mz7KGMJ|w`g0LKGto-Dq&lJWfL%nv3<i~m2;e+KxOgF8C&!ep^w
zZNZMe@<^F_I=~tF&k*H9{1V_S9cF-HA<hLjAMm&?{s?e^wjJPdfGc!m3(_vpT8`wB
z;jS2#el@_aG^B;;zXiy-kii`?Jf%p=R7S4_xK7V}Pu5?u2mTCjBLHb#c~uDMlEzto
z%Orm6FnUvnn?sZgacdYEPw^19NG45EN+w^6yikb{9lA%K45dQc7NSguJ3^EWaeIjL
z5Rl+fQv?GsTZTlh5UcVMb*6|rLlnu&hFDQK_VX(Rc~gY7ps+%SiXj?@$Ov&)h)N-9
zho~d<R1Q%sMD-9=LR6KK&pIc1OU*T8v}TA}A>8}2zr8y<L!O+SG)3^o$GRcvg=iR}
zQHc5yd3T5glHs|+e}2y^y0Dj7TGTDcD|7FWNzBXI#zJI<$PSScA}d6b5ch_-FGN#`
zxqnsughnxjB~wJRFuD_uyWN_HpoAOS7`W9fH$?GyX)QwJh0)hN!xVX1t>_cJRfyIh
zo?nZNYmpzKO^C56j7y<yh;|`93~?|-`w)o`D?_XbQ4pe#`a?`)&xhz3Vo->|Av%Q+
zA^L>q8=`ZFE+Kk^=ozA`4BbL>55cu@wy4CkXpx-Et?LVV$<*GG`m(*0zcoel3(-I1
zP4eiQl{FwlzP$D}ly`1_J4F;lhlCg!VpNFHA%=w*9%5t|-3FPyIBj_U7?}|i%CDsO
z_JX4CqcLn<h;boyG>o12v;;2?-&wmP>3EJ#&Dg4w8IwXx4zVZ%pSDv%ObszB#Ox5$
zLQD_wV2Fo8%m{IRh?yZC2=S||Gf&O1+6<T~X8(5*pD_0D!y)dO8m-mL2{AXsd}@|*
zg6C0{yfmBVZo0<P7l!D?+lP1*SFT$w4)I8c>pOCngjgD4S%^nvG=Hk-J5|&<pRt^F
z%c<H*RBVzpZK{}YIfKmV5Nkqg4zVRfGK3Q1$q-M4P(x@T!VswtdI%$g9l{A=hTPGY
zZiV<DnK}QlXcjXpn=0H8UI;%#!1_1H3aZ5GJW=qzd=L3CEFhS$wILo0u`a~=5RbEq
zRwbsc%;beRk4+V17@i2he^K5*!&{k2;jhJ`mCUC@JVSd6u`$H6A&#Fc{GX(?`?Vy`
z@SHSkGBZoYHidYR6S+l#;RW`&yi0-iA&}V`;-wIKLc9@TTZrwfYUlWC99f2`VpoXW
z)H6D^lQV8~tlN_XFNffHoL54;%6?9d@jfe_vS~g(wwE_g^5(0~@z<q>@k`R*4DnWo
z_d+awvEc0xdqeCC@otEBWW_2RPP_f@5>d7JAgdPJAL4+NkBAF4fx_xF3z_kKnqr06
z2QrDwM<G5AQ6YtjDSQ&*5L0P9AwCW9S%@PczGb&;&;2~a*OK`n#Fw1!3(`NDDmrs(
zWf*Pm=Kvj+%r_E~A)=S1?<fgzD#Ym!--kFB;)f7FvP(lunODeb&rirYoSrHeC7zO>
zLi`-!qy$jTo6jj{Dw#91s1O%JTncfP&OgNY5Enuen<lPRFRVCC+$RI^43u=ACN77#
z5`sL#WC>e7P5c((_YfsgD4D_^Or?etN}bBT9^%iC8`{C_H|VbACaAyuW7bWJ=FvYP
zn6z8+H>GfM3dK`MOW~FjKAR>+RE$#(X;B@{P7}9Ma|%eIObWN9P&$S56u678)O2w>
zGxDbB6psFyL56!ONbg8t_CI-drcgE&Rinn-v~nr*UYbu~`4pzeL(_Ddw=6BZD}_oa
z<fM?BLgf^yq;O9PjZ>(aLbVj`mf5SPP$PvpDb!7&W(u`ZnEyeE+RSoWRKt4HMVskS
zqee~_^$55vUS9$hOX0+tu_NEb8>G-Mg>Py_pHz*c&Z_&O7ygV?bRlQc6z)wSmO^F<
zSt;;NVBXu=B!ynJGRgB6R?^=)#_vmk7sfVcJ%`4crNBdQWOxoPI|b6mri&IS<fYIp
zh3+ZDQ)rn&K?;Q_v`V2hy?qMph)khP3a|d0|FgW}X`Z~qVCI>O_Uun7Pq3Ntlvz<y
zhZH)p+!VUVyv)@p1tFWzv3jg>jo7pA<aCu$s%1tB*{&Wb^h{x33WL}R_IwKcQs_^>
z`hq?w^i5%x>>Nfvnl6g?0V(|S-%h_rhPND?!jKe3rZ6gnp(zYYVR#B7WJbbHO^<$T
zVnM6hC#Zo;u^D1?3JhaXU@9e4%hd5HOrUkGMcP_SOkq+AyHj{Mg~>F76x<ZN6sD#y
zErrD?Jd(on6lSC_H-&jA+@HeC6dp?9;S~Ovm-avk4@!p0Ph@57AKG$3yTmM7S_+ST
zlQt)X3Nu908G?7Ud8Z0*$a8=5Q&=F!aZw5jQ`jRH>ff4`mO3AOrII0C!t5!mPVrw#
zBU@dX!txYWu+xUbmPrYjl`=|Z702<I{4^dCn|nMvnSzpnk%B3aY6@Bky5u{}h&o}^
z3^89aRtk0s%f3!?Qux0lKC=iQ%ugXm;i(j!P9aPomHK}?T?celMbk!zK}sG(s`Oqo
zZ$eFCULXhw!lD!liXaHsP?6qy@4b`T`@OL%*bxLo>|jMfKtWKHDn%*&&)t0f=j@p?
zcXoDmc6WAf+ns?wA<rm;QV6vWdLh;}&ZMVStq`qy=k=SK#vRdXMhG5d;&~{uFm_vE
z6~d<RXJ+y_kaTXw_9&zfuN2}{>QjiY5HA+ur9wo7C@RGBg?NEoeK9xdVlGc&R%@I*
z@?rrm`D)C|mnFlF2`O7=q+Fhu$GxMk72@?mY@rR5OKfJ1jT7dz)KBC@er1ICVuW}@
zw))#{$+v07g*a4*!-aUa5bqV@(?Wd4E}h<GYau=;#EwF|&v_>)+d1y<q%n)P3BsL)
z*j0#+3bCg!j#c!bl)1YwKC8~$O45bw$Aut;o8dnx1S!m72NL<b5MLDH>q30P^`8~#
zZT7JPFQ+r@m2zI!vx$EtiTrc-Z6UrZ#E*qIP>AxSa=tIbel8J`vtg+mQYiM%5rW9O
zR`!^sr4Dk5lexEy6r_-Tq!2$B;&dU-a8<03{G|}T7UFmzj?%&_C5~|wiVEoFg7}F-
z{Kifz#Gi%uoo3uKpYSASR=;?*@{;hB%qq_1<%NR$vxPWUh`$T*kF586Aubf+Vj=$G
zYPLT%-HQWrCe28>#I=hXfhb=(87tntc%=|m3sFLe>AAI%*9vi+bEgo@-60(*a{~a2
z({Jq!3Q8(5z4(%1Z&Z+~ps#|56_i$RlY$lsS}G``psYeaim0ogoPzQSswk+cAWZ=j
zR8(+_f(lAJiSD5<AO&|F$twOJNw4_Ca~WJfL1oFn@9;y8WWC-uQB6U01-B}wp~Nn0
zShf>=TCPA%1+^4hXrES_72Ok$MXQnGi9Y!}a7|J5sIY?O3T{)-KtV$V1#jjwQP4=i
z%ohq8D_~lhl}REmi8NKvO!5$?C^1spt{`1Orh;#`6eJYXY?jDS@K9Qk2pO2@5%-ZP
zDa>u9ptS;_pu2)L3fd~TQ$Z&MSqichBo(w%kfY!Z1sA7h=E~MB`zw9SwD?Kj-Dh(7
z*3(`=2R`{L=%}F2v@WC!87aP%4n4>~W>Q$Tvw|+{GzIxoRZ61-=1v_cx+>@<>7;!5
zX8a6U<81syaW^|n*7$&e9twIYXp)nEpMqWrdQ;Dw{Ck!7$uQ%wM7J~9Yex#=EOo!k
zeQBiFIa2gd@Sv2?lF`8wFs>P+n=#T^KL!02%uz5`!6OO=C>X6^jDmp*9#!zPf@c&A
zQZQJ-6AGSGFhmM@Ou^%{0l7o(Ex9A^hmqp1k>V*X{xp(N;`;SeD)9eV&ng(EV1$B^
zvUtWQ@tlI;5`W{zc+j~^b`<+$)c>~2k}~sB`d9_y6iiVtRdSA3Fi|2CB>d;sWYfcW
zlN3x=K>Yk$1%pP#YwR=y(-q8CKo_;W8YX7YR20loaI#@y>uWiLy&ES8ueHe}ym=Ys
zDVVQdt%7w57AROqi&C&m!6I495_ZMJl*JsBsVT>$KWcM-O0j$S<qB3QSgl}%f|Zgv
zZ*P)`I;^1?>`ju+G)Zc;Ucm+hmI7PBMg^M`XbN-%g$fh}Dl4rM4;hamtsEs@kwu8m
z6RDxVRB&RH_*4?FN$4nWS)&rW)b<qcQ!o)<!J#+g9;Y`87W|bPD)FnUQzA*?^9o*2
zP)b9Jh8GpQ#IaT}K*h@nUQuvW!8HZ1DtJx7rwTq(@VbJ{3O-b@Tfr6uZz%Xc!43s)
zvPK146}+$DZ3XWrcvr!D3Vz#?GjU)J;f2%b&o|5DX&@$2n0o`gz$w@+d8&^VjORrL
zwsfcLv0W1G{2`@|Jhc0f0^VyrQLt}w!FwXPM_zu+0hQn32VYBVrnmWA!50dSDmbR#
zO9gus>{sxE0v^8Dr{EjTbOm22_*zn0jusD&7L+-1wD?ZJ_nZZz#p2Pz9xXDvCh6Yi
zM+FBI99D3Ia^5L8sNg4dBilY&@ZLvGiajiue`e3zlg-Ot6#P9}uxzz4vG89N99M8o
z!Fdi7o2lTGg3}6qr^zY!L&2Zy#zx5!-^B3^iSS!x$#dD+V+7xo&d4kxXC+d3drt2$
z!c0s2#U+tTIxC|2y`OWD3*C^!B?$)}jSY<O9|c#Kdo)Rz<LhTIS|a5Txvt<}1sN(b
zRg_S1gNm9eYN;rxqLd1#sGuT6#f>V;s3@z(OL3}-(kgCJF-#5(fB0_MoWpNT&x{e}
zR4})^iZsc2<&7K$Xd`4P^4zSVqKYais;am}MI{xLRj!jMbH@m6jNoT&vhfQxVKo)i
zRotqgh6?7A5=$5(z8E8lFHepUwN=zn(L_a4m9e2S>Z+)(qJfHfDq8##&yGzya)>un
z(MUyOsSnxgWIl6=OsJdDOht1Q36>fwZc}l)igXpdM&$B<N$S|RQsPX-2q`U8v{cbm
zMK=|#RJ2ynUPT8LZB(>Xafgar6%)E=W~s<lkwg08yw)ElJB$^C<D|#hq>2x_XYP46
zw;lU=Xe^mL>lbI_spzO8Uqyk6J0(vi6`iGoA!oAby^}(?N<TbSygDtdi;8<bPTr+5
zP*mK^F;Z2bqPvQFRotiIZk2(UGkU1#NlvK}Yo`uvrgZ70qPNVY4lK(w<nGM-RXm{L
zAr*aPFZEIJpbA#RTFCIwjQE~K9UfNEPep&~>HhC~1!XdemjhKis^SF|FRB=%Vz7$Y
zD(0vdqT(?XBUFr3@wkd7r2Jvb`Xu#9HU41!w2G%x3{`Pf`eEi{Dh~iYqvBba%S*~9
z+jFuY@!=Ag^kdE_6{FcS6%$pAQ8AW7P&qMP=8lt)I4LZ`L}ZeR$tq^3n5kllim585
zshBP~H&u+;mW>tMS6qzvV+9$=HcJKR(~UOV5<FMMJQbT%6snl7Vga*MELX8m#Ud4p
zX=ZojGwmEJ2sbfEhl-^t4$0BUo!y1R6)IM$SgT^4id8CBt60PNGA^$4+Pp4wvrOdW
z4H<9c=dV|>LB&QDq?7n0x2d$sBxmuZqC!<+sj#K~nhIToA@QJTrm5nW+cLY(NFl<q
zcQ(jyRJbZa6_E;0g-<#s*CUB~vTE`WXCgAZWc>D8q~duM?+i%fjuQ`z6T`-dm$>+=
z*w2Zk;uYG4iajbmR`HsO*Hvs)@xF@9Dz>P2OU2tN-k=%ZpZ}%`I%*@bxptC}JCh0D
zQSq*d_t=5sgfmWTl{)Ze4Qt<~V!Mi6w0{*Js9^366+2aYH%_o%+?M<E`Dcf4w~CKc
zlp8OKC7&B7_(O*bpU`Y*_J5{-t>QBkpL0#<mA{V*SFijpRD7voFI#agxA}NM*y(&O
z>BPU1MB<e2jf!tsBUi%Z_+E;lG(H=1R|9i@RB=GXDHW$x98~d>isLFyaFkUX=CV+~
z^idT@I4-~D{mfC2{ZIVP@q&=W`;QmLRQ#%9{CKf?e5`QMc=4Nx-&LGc@rUGJ{d<x>
z(3wU0_PuF;l72p&#1$<v&v2TkxUAxD73U=LUn(xBI4^M)*)C;XRB?$T_<c&s{q4S$
zlr!VSKPs-MxUS+~$$XWjrK0wPSce-Y2qu21D52p74JEbMY?!)BlgODM`b-edkw-(S
zhF3MbrlGWkn>6&*@UVt58p>*Dt07B6ISu7C)YDL3Lz)I?sIK8w4HY!ptf7*I${H$a
z;FqymG`uh~Z<Y+i!1FBGowBNEsH&mbf3-8W?yy{bG@J5t3~OkpsiDq)xwRxxTf@_f
z<BnxACg)9=nO0ZB#Mk26O#=-LHU4))LPH}BjWsmY&`d)UnSP&^#%-e9&`Zwd8i?Pf
z;dY5EoFM!O;uNDJNmtbw8ZtGs(qgwNEi`PCJ=RjzPMk!twbsx^LxaAtyOs31F(q3=
zj)uE5bk%T&hFlGIYUm_OB{j6y&_UwuBs|_HKTjeo*pd3nSJwj*1Rb(<*3fx(c7cTX
z8aB!Wjg&4LciLoVo8y*t(;zh5r{R7L-8I~;p{Isk8t#!T?eU*v?tdn8al3kRbS8>>
zHJq2txgh(YPQ9!LG(4!`Aq{=Bc%u~gNo3;XEe|CK`)TN}VWEaa8XnOwK*IzotYM&r
zM>RaFVHg$DFj&Kr8lKWHM8jhm9@p@MRHM;EfunhMmFf8WFL{#-GTTjzRT|1c)bNak
z5fcR&NMU+tV*HA|tX$$b4Z}5z)-Z+)8b)#;G>}dn@;BU4uxz3zz8tGz9J3~h@e&rx
zVU{OlPSP-0!|b|=`5LBZn5tnGFEvclFkQn84Kq1dOEZ=pjPGcK#mM^;#kUj191U|h
zhzm02$yU^suS@)>{)bk;kL?SnQkCR}sVRhuH7wC!Yj89yr5YMGaMUy`*RVpvS`F(o
ztkked!)gs{Sfl(Nb$X)UOIcF-rYIrb`qyhXIyJ3#jnYiihYXuE6l%~l7#b7}+_$W1
z(4;=}{!NEAWhRMclLWW!n;P;b2}@>C+VLLovev3e!qwnuDAMq}2A{cF?13jD^VAgY
z&+Jel<m4_3URLA(Uq1Y6cv-_MQq)Tlu9%fZo;Deo7bc|KE`J){n34IqhRw7P9hG!!
z(eMV9*Kkb3n;PEI@TrE+G`y`ba13^8*rnlJ4exO(Y1pn|tA_W9+@6_Nh=tOgDZkI?
zE(0csd+L||K*J8szBh8{f_{3FOd=m@*sbAXTHuhxN1R9e#V|zdp@mHPpXIEcB)BK@
z6Aj$_&#ccie4*h74L@r1(T%+tzR~cl9L;?izS8hD7otgm!_5b?9g_qh$M-u8-?QP1
zGxlrXYx2IST@Fe4<m7|U0SyPGgr7D1q~VZ;!y1lo#1AG}mZdID5_~A)%Qf4=f-Lom
zhQ;TyzaEkMtA^uTW_6U*aYDmy8ZKzKsNr`FCpDbba7M!)TqGxpKQ){pUOtgNS#+H&
z4o&YeXtJ0yS)A2yjx$%oUtF4&W*C#jJCozK@1HErPZo4&M&cz6mo;3~a81MC8rqo!
z|8TguI8TW=n@owNF}>2a-E|HBYAB(j^Ay3qGc3MqQvnrbUF0mKBSnvI2NiVOs3TQJ
zIUVJ7l-6;RjxsvR>R>!;GB8vMVY?prx80s~RG!T|mYJ2N1F|@A-fhXiyDj0(l2}o~
zCXXg6>!_lm6Lrv0RYx@)2^|?as_VE_M<X4Lb=1&NQ%4;gb#>IzQCr7j4Kr$$OLm=<
z*Q;ETNdGCKo{suD8t7=KW3p^1Kl!pcrj_!NMVjbns^fMY={lO}Xs*W_T5gk?6itcu
zt`IU6mtq!?@js+w>S&=OTStzLmO5JLXrrU8EXChgt#!mdv$%oh?o1;5&y^+FcuC?N
zI&yWi*U>@pCv~*b@yQhNsr*k(ANcfppQodv9=pfCQ^&C>qQunLH$D%tRg*}*jshM1
zbv&Y@i;lZ=^wQB=M^_!)blk1u9vwo*!m^3(61JQw?wKl{of@~IhYs)G+@D%z_0+Mk
zRXj$sW$wK??$hz0j)!#Iuj2t7<mn?dB=V2k+dyVxs_3iZVfK=a+nQuiEOVKdRnQ<t
z2Iv?_&2>Df<53-hI4(LK*YW(p)WJF!cx#B1`TLZ3Ac{kDm9L-CQU1q#O2<$g&*~Va
z<7vtEjD+NTTPnX#x^a6>2h(sJ#YDm{Yb8hN7)>*XP$$9|9b<L8;NV3E<8+Ltsupgy
zFhR#ew#&dF1CwYH9C`!I3{256RmVOZU+I{pW4aDYhpl6Vj+r`^>R6^@mX6sv7D;{P
z=$NZxo{srC-nk+9!K9SeswO_4n6iNVb}hB?gp`Fkew3a%sQHRg@f~EbEVx9+{wndU
zYPpUTIyP_!bga~|O2=9q>m<(>{sq>tM&cFU&)HTl!B;abG9>b*vtCCrag&Zh9hweZ
zhoa-#sX~=SI{uq}eyXTBEgow_Qb;!?(sG(08|jV?SI4_L-lH+-@O8YR<5lwL2su*h
zIvo+GcAaDq=iru{-qQqeCT^j8QO8R%>t!9+8fG$J#Hg|fLgtd~H65?(cvHt)IyQ5R
zrim>&-q68<WZ)&Yoy4$C@@;mV4hEEAE(6e9mfP%?zm~IA$NM_===fO2HXYk_?9{PK
z=ZAXikVT5CV-ar1C;x{!c5@&`b@@mK)gUq6qA%m!^nAYH6CI!G_)^DS*#n>H_*};q
zIw*wwz+L@>Z#2yOt6c_*yf{6L!D#x<Nc&pHH*B4b>+Dz^-|6^G$M0+fhfl{ZI*#i2
zfkUk0u#O`-4(K>YyV7w;*1|?DlKoHN+^rf1*5Nj%=_x;RM!b<jHf}oQ{?%hTex+^&
z;)I0cIZg{)7_S?I{I^bcQpX=U&gnR><4+x@bRHv$mmpWlKdr~x5_m~S%2}?23-Y-4
z;4d8)bo|X+9T#;B_$BX>j>{bJY2rIsaQ)i_yMKvS=_^tipRBG*Ha>=(nkJa_uZ|K1
zDjK-OzzqgU8YpL=yn#{%QVf(faFc;nXVY&qkZPdJ^w_BQkBJX0{G(LH0RK9bHPB>g
zO7q{+-?9owB$8&JYU9ibM(mxBWnskc`=sA&#J{nK49Uo>WT3Kv+6L+vs6u`N)eYQg
zU~=i?pwh`|5@B7u<Wouw12qlQGQg}hx%ng#E_yDPNL>T<4F1PNBLgJXH_*U{`>o-0
z!Q6IIVZz2#(!c}L1#z;Cnl3VHCYl?#&A=Q3a}C^XAe{^b`WQ$U$S}~!KxYG)23i=%
zHIOvW(!jl1n>Gg8vQG@Orb>kcJc&l)^64VWK(>J#19uo8@l5Z0!cWvTJdZ|%>EO&f
z;_VD{FpwveY;VAwE=cTX;Eic%Jn43)flu@T5-EAxbdhf`W*_b`(8E9%19uq^2D%&Q
zYJjDfx*6E&#PWZbF8){7mDIZp{2=d2e@_=ZC1-DHF176?bz}eBC+YY9C#UKRkvW6!
z1#KQQ@Q{I_2A($1*TBQ<bA$en(a%7C1CJV@ldDGz3@|Xz0Ns>zpCSHA<`XWwlKaFA
z!7uF;e&>voAqE~Z@FbhLH~F}M&)zP0!T@>tw~LwIxsuzqeLk6=GQi^eg8GbsXAMj+
zFwwv;1J4;4Wni>{;jGcX%V+XNQjNM9(`LjL$QvbNzVPlj#=uwu;|z>v!83X5XNcEk
zh>vCn27);@L-1C6b%vNkTQV@+zznYc2BsRAMuR+)cd1TB-I;N`7?#RD8<(BQj%`?a
zmVw#4YaGpCcp9GU&Y2lk#27U549urV8+g^g0=C6~$sRDU$iQL)>kO=CXBt>)V5Nao
z29|Lsr-<bSRv36sJ_1p5Ixrz5eKqHfWLPU9iHw6ot$NRl)!txWqk%#LinJ5@2-+kO
zvOPCbs0K6xx&gyLwPEoxGJQ@ST?{RlDd;JPok?gLa16Z2>D(^EHQ*VD3>0w!QjUR;
zmosBc=rpw$*(oodm-H75T$?ElNlKMjV)@6}FR_#7#b?G}mTFMuYX)97u*bm11~wbm
zVqlwr?KEQpZyI>Vz`Goja*4NSPILq(aVpkkmbh=0c#lSF;C&-@i$tEG=aOvHuvy~K
zZpnqS#0Lg;82He@ZUZ}w_|Nh#cHk`0_g>-55<kommuCrXx+|5F#<Cwt$+yfFpKweK
zd~M(x8k>R74SZ=}FZ<`MQeSX=n^a=g)U?}Y$4zG1XMn`7jQ9`Tsy#_Ir`y@=Zw-8B
z;70=oD2iS{4eaMUGSFWB`JHtv{w%=MG?~wIP-YS7BxN2paD=08VyTIr4gA9O!9;5l
zM-3d~Dr({;6TccbZr}ndHE_bfZ?v&9>8B0+Zr~)lf~iGjzuAK829ZCwJT}Z=b;M7}
zJ|D|017{8NYLGl<;5;XeoV*mWc(x!UKTp42GH{tIxrve{{x<NBfvX%%rWtA6xN^ma
zg9uYBgXCT}@GlLlohV_(MEboX<Rx<%V7HWs6w*yx9NC5G(-#W}Ys^kdl@#*uvW$tc
zChD1}Z=#%u@+K;qsA3|`1Wep)qN0fkCeHOvV`xinwqRnx=GRlVOh~!KL?u>{Cm7In
z`|KE2HBrq(4HGqGk?JOHm1#d4F3XaqmWkRX>X@i2%l3FZm&7Mu&m}_1{IO1?fr*AD
z(oG~xG&0fHL^Bi3O*G-?oKA0Q#&?IZb7D=l_RX$0N8Dzj%%l|N-Y&D+&k<MLf+w!$
zW|+t{(b5DdE!fOC;<f9!vmY(h!i#fBA-#=>wk94n(a%JdiEI;ho4ChBj)^-=bTo0N
zl$mStMGWmtB<1A;vUV!aK~nN0vHWZC%6ZqUyiO)Mo9Jqyn~8iA1tz+fxJ&X>xE>qf
zb-8tUnRGHddX5k#x|`r7apty=ZkAu`p4Y=fPg$yuiC!jpo4D7+eUfrPZgiQ(ja~}w
zH}QZO$FOGXTKYTU&VOzjc+kW{lCv*+uS$ZDl8N*;@ra4>CMK8|U}B(&XG}b6;!zWW
zOgwJl2@@;kh`}a?n0Sn8_iXq2O^GUXx-j%oI7jgENfS?*7;55a6CcbG2j+-#QteuE
z#r>!9TF(`9FE-4?b0$Wa7;R#>i4hbvSBzxG&J{dnNI6ty_DzXNbHx}bZLEoLQbU$y
zF1J{)ItJ03XkwCyIVR?sm~3K-3FXnmOcPU0Ofxav#0;wOXyW#i4)^_<_xXm5b#ujl
zK?za_XPKBSW%81_tZ|-+`6d=|C^IujTwr3M6v(XZZ8G@@h@}=w3Ptg9nTh2lzBBPX
z`^3ab6R(+g-NY&>RxzQPSZ!jBiM1xyN#Z6G>uEEGvo@I6C@JUrB{oy5Ls^H9WPN`q
ze)%di@zuc?(M;$jLKBe*!-Q$VHQ|{k@m`u`!ZzVZ34@nrFp>YWx#HMdLEM+QfeBKs
z&lNLX$l&p@A`{P>c*(@eCSG87Ey#P3^KqVNH#jdE(2j|eS0tUtt6bb<*4^{svDj>4
zi;3+VP!n%ZPOZe-Cf<?An-ac74JYT3{;rAlB;|bxx3W)WrjgFvWry?9-^|%&VwT)-
zvBShpYG~qf6T3`&XyPLidra(>sk{6OT<qlhV-ug4_*ByA2%Y-SjG0yJ6#WYmU$Vzc
zd@XxpuY~((s8Vw>^UO=5RrrQeqlfrbLY~PTdOCgPJh9)z4<<@mxXHqgCJvbR%ftl}
z2TlBB;x`k&n>b|Ru!&<_-c20g;&0*?F8gNu^~Sm(F<J&5<@ZD4e7R$cOTOi?(&Hvh
zNKN>Sk-7X{bkYQ~PMJ8(vL^mCq0JNg%*YQ%%spe`ELTMn=h=`Exy8<8_`!<*94WJR
zZoCcnqKQi!eG4~OxXi`h#8ng5O#EYlxmV2izaE)c9Y0_)j3z%=UFT9+l=83CggpG-
zMad<t_=D$-R$Qu-g%k^K%oFq@v~QkZaaNjY#j63eEn}gqg_;&>Stw_ryoJgZs#r*~
z01G!;sA%E2`DsiQWRW$y{^#fF77LXutdd*ex%c3AITlqdRI_lag&G!~nxDqg;yk5Z
z-9qa8*v5EtotHeWPNcSlIu;sRXkwwR1)gH4XQ94@-Ir5&vb%wWh87x0I>QRQQ6uhf
z@(?n&sfA`1np@!CF;cqENFnmxQjDupdREg!x`l*=M{EqRkzpaz!s`|`TWDdSrG<$W
zCRu1@p|ypc7J6A|W1+2uJPREyWLfbpuUrdB3)vQOta#`D9TvX%DUS#p(lVELI}05o
zC*2^ow{S<>II!J;g<Tl@j+@f&w2*J1z(OZ>LdQ5fL}!j>-M9%|EZk*5Sm<tnyEVE>
z*v-P$5=mY%k>{%t$-6DwW1)uy;*5E8>-AhB%q8q?;a&?*QnH2nEZlFQKO1Y|0Snya
z@}Px>Ec9Woj_$&E%G?su*TTaV`dQ#kn8%wYYRwmfndK79<qnwv76w`vY+(r5W~VXh
zQ451)afW_o@d-^cAG5HgO5$+~Pp~t~#T2`8l3A>R+77kww1trtM$zO7@}Hr}(O@h*
zYvDvzCRHNya9R5Z3$Msds9GbztnB$>w1qJi##?x>ZgMO?_%zKVGR^`67oM0KD^DFJ
z$Xqg?f4N|?g(>VY3$BH!7N*hsEUdOL-NFnD3oR_NFq1Z8VXlRF7G_I}rIK^VET6>Q
zmV3X`rls(5zJ&#n&b^V#Wo+xk7M568W?{L7rLrs~jJTT0Rxf`b-lM+4!r`l_D`i%3
zk^AS1H5S%d&@C7i)>&9@L9w7(*kEC!g-sR;Eew~(rq;I1d{%~?DuyKTpBI0DX{_{c
z9xutjT1*R;1)KBY@AQYSr`|F@t=q&D(*GKe@GSV8r|mNM4J5D-T6odIOElf%d69)8
z3(vE2=s%%z{=u#B?0ccO2R_WETZxw?8{I*?YJpj=$jhO%lf+-MK>rWq*}{c_bKeGR
zyh#fuC!1{HZ42*M_|(E@7T&e+o)o*Ac5C5%3p-fc!Zr)rCH(`=n(B$+^TmgK5*0JE
zh*SApGV9Lri4R%i!Nh|3f^=SfWMPlY`dGqG*o|_nV39ZHi_a~5L1`AgxA3Kfy_^vi
zzLuQ(B%CfIw9*g!H`Mc7`nM9YEb$;Uo=r^qx$;{$Ao+i=aN9$%J_p&ul}i2e-{rpI
z1*%`-h=rdm{B7YM3%^)6YT*wHe_A+Z;a3a4S@_+;aSK0f&$+o#@`Qy`^9A>!e|C4~
zGX>%#ZEtBtnFTSzqvbsJeagaV3x8R-VBw5~vlh--I4?Ef;qIhSP=A475qnpXaO@4q
zi(I27ce%vnf?Yi~UNd>gqwaOfCck_p_lkw97E0T=$;LGc*Lj<;QPPgz(f;K;Vh8|<
zGcFQe9_P2uFJ&Xe#*H>oZSbWmXMwnHLA=w6uW!#Rh<(D(SRl&SSbuwFIUD6|l(pk^
zc-@@5!UdwE^fXJz^F9@9+-xJuMz)QLHg2)e&_*L0m26bDQQJlx8&zynwQ;MB8g_hV
zsb-_P9WP&fDkXRby625a`oPTK<}2<3wNc9k>7{zcw~}`j#LcX0qn?fWvh1FtSq&s|
ziwuoNM-x9T5RGj#;d*W((?(Mp&1~FmBb_=l&uVVtHXGGsI51ukx%J@$iNq5U5;?a(
zw6M`qifv<~l|)+qhj8mSQ~sH}wvtYLj+{x)v2lkDVWYc^TpLLn1va|aXlJ9njgB_%
zw86hHL$9ZHu#v|OTqyb*@$Z|BDalSYI@`#%xtXVcC+=G=jDP*`r_4PI<6k_Kf0vDJ
z|JBvi#z+6f@_XuP>fJW(vC-Scy*7GCo}M;(*%&1s`03+?#hK{(^*$T-+jz)EUmFjw
zOKm)8W86aV?t=JPmnr4N_&t%A58LQxqrVN}Ocw_y2uCzbzBDn9JOgb!YNL#UvJM8>
z7;M95y*7r}c+AE;8}n^EZsQ4#FPAJEPuh6O#%LR3Yz(#Ww2k35M%Z}9#<Mnt*?7*z
zw_TGw0?$MR=3UHPu`nKGZn_&u$z78jucwb9vM}})zkOkRSbi)uw=u!SL>n*P9Cy)p
ziR_mJC)qp<D<=P!g+=0DtAJTkZA`N<-Np=>u8rBUyLdvJfk<ZBDBPVSGUrV89Es1R
z+A{toiOgESNnvA+jkPuw*;q^ys+qIO#u6J#ZSe7Xxs;Z^rPMNsP$fQQuduO_U9>dg
z3HeOIcZAifm+qZw<~+2z)H=>4mbGEq*kEI$4b6sbV-ppyq1aHRD7y5SG_T9yMoF%^
zgvTF_$IGC>OiD3rye7SR?vTG8)T)V$o!Jg8e`mHUAvx^^8J@&<S4)OAA{*b^*l(lA
z#`89I*w|^~1sgBgc!SHhjhEPO6l>#k8_gGqS8Tj$qwAu0M0gof^n%SSH6?BQBC$pC
z43b1Lyk+BU8(VF>Z{r=>kB#?a6PC;3WMJ7h<jD(WZL_i6#s`vtpEUVU6fP3E?K8-;
z%f^Q`KC|(;jombO8z0;F#Ks<3s-wI|P#TW}GJR^tM+JGw@2G@d*!Yr*iH)zN<h>H^
zlW^xEaY$<N4NcC*iLl^1j&hlJg=ZpiWsxB92OB@yIBVmajRQ6g+Bi;T8$WRh+xXeW
zFE$QyYG25G_(JXxTEb#cWp}dGV$pN4AmylyV>W)3HIhDD(wR%-Hygj(_`}AZHYUr1
zmM7Wa^-60p?)fQM<g|@55*b-CR*bH#`B3yi{fzTA{<86}jS>zn(86u}ZQ~ysmuy_N
zQQ_r+FRrALpGf7i>2(JuuGqNBmEXp7n(kuZWMy*GJL$hSjuCQ_?FI)W9o*<3)xqnN
zQ%X5Vad1n6($3s2<mcx3tmEmVmv(TI6ZbIbq)-~=lygwt!IKW2a**Z#4zeBOIH=&@
zW(N%%G;~mr(j3%wP{%<f2bCREb5PwusRbET98`617x%U;j+JS<D1JD<)j<shH67HF
z)fI1>+_qS7Pa}(PPa|Pn2Ww{KE$Gv(zC`LdIIvh;Tr8UJPsy#HY~-M^gA50m4w^V<
z>fkm9w@YaZ{MyVxbBXtEoXPk;tdUV)(<LS0V07cmhFUI<(vaA~K}!d19JKwfY%2$?
z9qc(0pKb4-9j{bm8*?}-%K@`^LV=feILLL-(?Kr>NeAuNKnGnNw0F?KK_>^D9ppLa
z=-^H#jv`uViD<P%Hot?owS#!9V}8Da0ta0j@aRD=nboUV;;AL#UAZ=Plge~=aJK^?
zQ`-)4ao#Hl?{UyWGR$5gcJYyq{@)zjOHmF6IJnQj{SF><@Q~!Wa4`9RgFX&6$y#_>
zVpmRI2M;^w=b*oXH<ySXmxv}yGA>I7`ty9TQIc*s2ReAv!4L<Jas78tWohh?bFc$?
z(Y)3#qt#MDNXp|5o^Y@uHQ9Zs7`{|c8uc0K;Asa-94vM4jDu$#Om#5L!7vBU@qey^
z@eYPN7$G$r>tLjVQ5+WsV;s!>FA~$2AH+AcozejviA)vvIv|ToaxmG!M2SCjYx0FN
z>13WF<*>+`vfy+FGaSruFxSCM+DVy?OtT%#qGC%0adHx8n&)7?gO8hLEuuZ&73;si
z!9qzP&h&TvxRV#l>d3In!Ey(N1Jl6@2P++HaIn$ADhI0_tfjfi*WooBf(9Ay|B&J=
z6;ytmgY}$5(l-L7k+{i0p##-{=0I`cttmY4%kK$H#oqyR8r9Nx^U14nXD`obS`K`w
z;lOs_a4uI(em6DEb>KNzS2f8{8rznNekbxm2a$v4o%p?#iEpVzoTSpr+(zlFkN8Ut
zUgn7Sc+STw4qkO|gNKqHUZYsrl8XT@HapnD2LKo4T)aV3aqyjk?<v;7+YUZ=@P&hS
z9K7pbw}X!yyyx(z6}CJ0z`;*T<DPuq!8QkfFBO%SiK=?H#4@qN!A=Le9DK-yVwvc&
zO!QwSrY#d|m&N=KH%#_8m)yh7ckrp~@M>~%<0lfQ1oC_)aU#6r>EJKr<vs^{*_pHR
zctH58nQ31+_}alYY*e!>rf($=gRnEP;C=@`I5_9vyn`RPusAs3;5P>cskVck9sJ_p
zkb}dVp;uCmaIspH$IbAJX2RGd-2MLQGI7+wF$ceLIyhjrr=RG;=qJqLsRu?s;onj+
z|L)+VgHsMpbD_IElS2M*@TU{UPazN0;PS#%=!}E2PV7#EWm!v)iFtGc@fR0=2PItG
z;Nqf#OAf9$xJpYqmVTN2>EIs+gXN1M<y1^$ezZ(5>l$@lCayd9mki6q-7Pc8L!`>`
zxNl3kDCMHGi<?}exG4A|{YDq5ZoH(hY|G_>$9Z^)hj7OSB}icvWn}IfujZ6@k>;X}
zi?%M{qJoP?E*iVI*+oScwOrJ8af^#eE~>k@)kS3&Ra{hcQO$)|E^cWM-{Yp8NPkRf
zGOtb6^yQ+46kd~M@5!%JAz^Z9?HG3pQymxeT-28gbzMwt9giAQ14(J<LYJF4N!hSm
zG;z_?MGF_Jc4jwo(cDG4i-e2YT&P2HZ+966H~zzZ)ATO9Br=i?qFrQ4Q7<kR#l(-6
zi<T~0Ng=IWJhwNEkjzI$cFA&)?c#11_qfP$afge}E;r00*G1Aro{Nqy+PP@&qJxB!
zL?(k=^w}RjuhIcB@jG4cvXhJ9$$ZAb_*r%W5f&+M(Z$7GvLJc7y6DCpbJ3lYKeMkc
z7Y$d4;*c3Eo3|n!#~v<vx_HpVLoRx`=q>fU-^INy?sGw3<>X;nq_?3%61ppYfVE4W
zXYBaF>5&zpuZxFCyqw-&(z#KA^nMa=-yxs$^zTy!x_H#ZOD<k^G04SW7Yki1axuik
zV=l(KnBd}Z7f-kt#_r;9FBea`80z9_m!aFmQ!b;T$J&zqjEiSo{4^z{_>$(D^<nmK
z7b9GZb}`1qNcQ~VSnW|RXvsvFq7`DSyd3Ao_Pnc1-UllLb7`m(T}*N@+r=CglU+=4
zG2O)s+6hN|cHT6~lz*!kb*{5~U}luMsx#AOx|l`F$&YP}q3a0ex|ru;fs0Uv@|^F2
zKf)@G?oxbNyGf$@)zrl<mavoy!^Kh;%UrB?vBAZ17b{$>cCm&nm0h=ry+mJ#Cz6m(
zC%7Q2b>U}bu9I|DS0yFM`Of8nYxPDKg)S5qT&_2<Gpi=~rmwotT<lpA6G>qaCN2x6
z3yVs+h+Nn%9EzpkRZqGuc%s~suvzuwnkJdtbx9;HD2e2$-#W9%#S0wDiFr)V(@0Lq
zKc0gUFG?c6V!h(xRTtm6_};~9E?#%>fr}kn|6Od6O?#i~zl%3ryzAmU7jL<EThiZ=
z@ZhfOLDzE6f0#`tY^>Ul@twDF4$8}$cV%yrY}+Ly1Gnq!bg|3D=Ptf*@u7>|E<SPb
zDTkZQck!`{3r#XV-xfarjLV5fs_vlpQyYne^-B|e=JL!%Y|LM}*z4je7hg-^2UduE
z61lWO%ovt?)6}$YXc)tCzm<@=q#yk-x!=VPE>62R<Kjmb2VDH>;<$^0v{Dy8yZD7m
z*-CN9#bHh;t}QEtyEL!+O7YZ6!2=YtRtkpAI_lz>Ow8K2QoO!0w%Zdfe&Z4`Ddi8T
z#_ujp%1bgtwY#vO_IdJ87pG+IXR^rgmEx?6bCPn^#d#Nhxwz!wGCP5Tcr@>|>!}xI
zE?pe33VvcD<!=}NxVXX<DJ^lsDpBU6Bq5oZd(FjlP8nH*{3SfJmk%&CR>gZnOL<7~
zu+77E4>x*9_3)^NK^{tbxXDAhhlGbR9?E*C<)OBRavsWisN$ijhcplHP|?FJ9x8bF
zr*h(EJ}^{Gw3VL}wzkOZdM$TKl|&^El|68$oK`l$y>rDMFspf}?xBW<njX3>i6{H5
z9>kK^8~Mn3$+xDbOr4ZM7v;RH<DssH#vYn@sOSA}HEZCZzQph7A9q4S4~<xbyqoiK
zSpP&*kMVg$a}T#kwq_paI^gk6`Gh5>q}=X-iF-<Unc*SR!(AS_dT8OHrH7=4b{<-J
zXzd}Jay+#0(AGnigp}Xmh7Lc-E#hYvWZb_>lslh&hX>-h9>(p+8M#VKekPZf?LBnx
z(Ah)2hdd7*J>2P`lhkK{EJab2Q#dYuwYOJ^0uNne?u5GW`87)TaFw96ZtNKkeLOtq
zp}U8>J@oc)uZMd)^zhKrLobg}O~uhp;?gQnaW&&wiVE9u7|xGD{qFOy|F7KpJv=~V
zZcSX+l1(;3vXwZK{g8*g9{$>q^9V;_wRqS=KM(yq3|=i5b%H|1uNI_Jy#XEuO5G^7
z#K%bn4IJ!Yh=-*fmU(#0!{Z(%dYI(l2@g+t80le@ho?LY_3*5RVIH3L@C=o|p2{;X
z`~XFnJn(Y&fOgM$817+&6wZ+J^IK&ymOXQsm^<3T81`y$)e`3M<N`O_uNLGS?_mNB
z@<0ypaJ67@Zit%fVTOm99;SGh>R}o!jUJl|3#NMvI2iA{pk%^X9%g%3;9;SMIUeSE
znCD@>$B=)bOd{(t`*2OH<f4;#cPxtkV#K(I#WXXi#$)MOq%)UD<27QrhZUrI2tBOy
zu*!qtLG`fO!x|48JZ$u^*26jv>p4@l<uLW1nU^6?b5n9St;;4F$r_PHKSCakH%dIU
zGl#h^_s`Hg=pJkjj;z=4V0y4PQfmYw2C{6iv~g>M%X-%c&x6k%TO%l8*mLm{&OUig
zIr32CVT*@1JUs8=1rINKc*Vnu9tJGMOEiA@Y2q!T4bKj<)T^A!9$xpb*#n8BydXQ|
z-S%+@G7))`Ssvc?@ScaaJ^Z>e=N&l_Xu3n?vC0qEi1#LU+3MkakD<W?6SG*B@B<Eq
zhg*Hr@UhdwE)TzX_?>JXc6<27!?zwj@~}s?`YR6~d-%k|mmc<d_|(H^9zOT*1ub7{
zb#0BHcih=KvX9Bz8HxKmOqO5CiXj;~&rSQ9Et*hbSfx_mdHCML5iSdI>Dce#M-K;R
zsQnW^c=-3;oLkn4gER&YhggNAx9gQdI+Z665km6(;^8P)iGJ;ldpPFdVBL&gDRy2)
z{_f<x{o<Px-<?nVM<Lru4}Wl(^-<c#pB_%p7(86@aN5He4;MUKWCwaU=ixjjrpG{6
zu@M$XNPOU0F=?$>y;fZEa9QU5?cvq6f?1!e6=WmwT{8cwhie{g@KMsobv8%#VF@3<
zNFEBLgnuM+DL<|v#m9|)ytGza7Z-24PV`zQ7?0^DA7y;p;-iv}vOdcBsNmyfALS);
znh!{XClq*ufoBki#7(9LxpktVj|(5g&mQyEiON2z_^9fmnvcJyrJSslBuuTHB=YMW
zY1MsPot82}K7-ZtQOk$$(cMRFA9Z}R^wG*kT_5$Rs*l@z)c4WAM`IsN{P;X?Lm!QN
z*y}{`LQ2TRv#B4S_HE|Jr+s(UjZKc}oprH#x3iRwgpcnhrSLMtk0oUKXd&BjliavY
zY0RRi);`+!xYI``A8mbP`AGU`=Of!kj*mNh<oft-ojA*WlSNpn^MmoYmtHU0`{>{!
z&qqfpzh1OkFZ!$(!`F-3+vW3+6nP$buw7>#`98Y%xJ%Yv;NxEDx}o~yF1r_I(7{(f
zo=5i4P3D$;BYW@eWbT5DyM5f_V}Or=K6?1*>El5k53#X6di%J~$NiFj;d*heM6C6K
zJA_%|1M;$uPiOma1GzDnn%uSweSP%v(cj0zJ|2@hi@tj`){yw(MR-J(THG`9Q6GbR
zJmq7kqzoprkH`IZ<M$Bu%;p^K-)5;NNOAF`<QZE%!RNr?XJbov+Q&0Ko|SZdbKr*v
zLL)379PZO&8(s<UYJibGM)|lkK#c&SeT?z3+s8*f#`+lNL-nEg81G|(kCi@F`IzWq
zl8-q)=K7fIV~UUIK4$osDl1C;B00?mAFjTUO+G2%Odqp+%$5u{Y!K1E=`}Wp?RSct
z4Pu^;`97BTSn6YekA*%K`B?0OTdn9aovpZcgBZ3Uj>xd7PQ3ii-yoLxSngv5l^i4}
zpK_RMbdLi!kYTltbw1YnSR<=jD<SDD{(jHQ4L&yd*yQ8Q?(w>6Y!HP$NLM&><pwYk
znWg(Md~EUYh7Z$+<)g^Q^E7)Ojt`$Q$*@1gmBKyh(?-0#L45BNl;4vKeQcYX7s)JM
z@|-fWDE0*(FZy_uP4n@REdDZwfV1hY{0cIH_BR{ilg{LP-N&bsQu<Fz+ss+x#D>Il
zS_*m7$9q1u`gqI7+p>yxXnu?WBXI^BDz`DN>wW6rV+WUdAKPWt2NE{iC>ZX%MEjVB
ziNsw#KI9aWrTR#?$H&J$&iFX%;}dG)<A9HY98({kOCkGxeBt9uAK&=+*2i8S`+R)m
z<7=5aYNKeKp0!+x@+9OD&hKOvYy6&y6=%tC8$bL<|4|~(Ws9GD9P)9@$FDvP`#8c?
z)W=bo`!gq?JX1_LM2au>Zxlq1`#9m_4=(aPe)I9WkCR+yHi>f^1w&N-+bB_fQ{3d7
zP2v>owr1k=fA#j<B$^(GC($_{=Y6CG^aqW<xR(03Mw9Sy(Z?kp|L_jdI`cBSv{`27
zMCRYL)hfxMJF=hHB;IY9yuuZgRkzCIWv52*>i4gY5&=>I+!)}70CnnRlnhWR09^z#
zm+6-Yc`5Z`&W6%e3lYxBn*x*xaC3l)0m=q(yv1?>%1eX{X#pVd3PBtyk-6MbNXY-B
zgtr8!6rgH=Y5^+$SG-C9<}xZ4>m^UI%<4fLkdX?IQZqoU00RR&8lX1y43HflCjd{v
z)(y}&K$8IV0@M%UyA{tTHVDu#01<j}ZWLhF#614+B5ca01;`B0B0%#1w*^QKK%b&D
z=zuh!7fM0Ag*=Iw2#_JOD6m&?$d~}F0<;OxR@Ty5LiWa;4KmIn$yKX(;mQi|q5S4{
zM}XV_Jp%L$kPOf+Kz@LN0PO>G2ykbBP64<TBriZmi4doTMRW3M@UTpcMCSn9G{Ur_
zOFms?b_sA-fNlXqfUZHj|AhNVs2fW$m#^pD1Kb_p9*TOP9pw~nJ0Sx%(!@;&@IZh*
z0eT0xS89GAM<>7*X>W>zUu+T&26F32fPMiU3eY#8%S2JJQ1JK0%+8{JfJXuh2w)9J
z4CyQwQI1IFwR9dB?@}lR1sEJ)Zh(0Kh6H#lz{CKP0z4kzi2x(GfCm^qFYU<yPX~A=
zz*7N+N=?4MlwSE*hs~P{o((W8z;gkHvz9_Z%EZEWI&3VA1LzQWwNQ-W;vZmafN=pm
ziN(2Nq!6wc#|y>y022amxnNmlUF(xyQi*vc2bdDz`<Dx52ACSej{A~t6-*Cs;E}|%
z0Gm1sI`r#2ATdMYbmccIz-$`WloS@36JWo*e-WS0o)4hX@B%ChuqeQ)0ILHm4zPqh
z&mjx2RO+*g)j0*+AViN4Of<ihlFl{r?+Gb%tv0Gl{+a-518fMektTgHcU^$>vJ_X>
zt#9Tq#br4)f_Uv!Bus0X7}y~3@2T{Y+vD#ZdH^FpQGn+Im>ib?K5GeJ2XF$o0X&*q
zuXc2Z%2Z2<qf4}w9m3!aA<an<k18Sx=+a6&S1K`15v!Egb?OTNUJUS(RG1cCY}+rh
zB1O>J$?#f$*Ev!lhKJZpE8>g}Q7yz90p1MoYk=bc-U{$`fV~0s1$ZaGy8(6w_$a`8
z0k(3C0_+Izet>NOw#$mxoR)3lPq_5uJ2O2-c5)U^NZG{+B^f@Dn&(J&i0!o8Jpn!r
z@OgkQ0(?SappDH*`z!#<J}BSj2oJId5;tE>r5p<UGC<9%xl7OHeih*B06)?I0(=wT
zTXs7~nL1ZWJTx$V&HRq`FA+AMmxMn^9T>g$APu;0;&6Z?0e%W_NYY8UqKJyB_?b&z
zfTID9aj8*b+hZ0X4^a~4OUj7=zXd1};)W2v2RIqvVt`8l{s{1AfU^P41@RG{Qvpr~
zIKxFxmYS#v9uZ=Svv>r6>p!O_jc`bUXP;N7f@cI+#Y?KV9N_N&R|8xN@Q)PL^>pr)
zfG#xz4@VO}q>AeS{-yphQp{VoCP-xZM-?SQlnQ|m6+)zhxG}^{A<Be!w|pY!`;^oW
zr6qp(nfyOLk00L3hA0=Je2BD=ZX5*J-t8gAAIeK;!ssE|R*74EbBKx|Dut*V#%^$K
z3DIaz2_ALi2}eTiVyzN_-e$PRl@ub?L);poV~9IL)Cf^CL}rK<A!>!F9imx?<{|2Y
zs2idoMTMvrqJD@5A)evMxYu(0=9zhA6UApp`IEYF7~d3{glHP#yFrN(1KKf{6yk(T
zw}nU#k&tY+hv30vK4@jgOFnL;FQY#P@omrimLXb&xFbYvh}I$6glHQgE2KXJ!APmJ
z5E@T5s~Dd`Bu5q>qlsl&JfT=iGDHVSY!{+^$dmZ-VC|AHFXU51!B3hX>=dGNhzHpr
zA@V~Mgt$AzJt4Y;xGO|AmVG?2?5C_#2jk#nUD@`YIqiSS5+S<FEXFUpqzUr$2+=dd
zy&>)k(Ti<gkKR(qV+XTXyvqam41adNEb>5zKI~-P<K%;7^FvuI&fLBs9uDzDh$lnz
z3(-Hspb&%E-Vg&q3=HuoB`4!&gNnMSy)eJ2E?O_jZ?B8AZb>?@9TMWP5RZrGD|5%_
zaeK)?_>}C2r#W6BhRQ_ZQe8az-{r872UKJJ4<sBBVq}Q-LTn8&D#Yjz8$)agF($;=
z5Q{@B2{A6j_z*Kg%nC6f#KaJjLrjqsW$-p6k)b{E59(rSh-o3FhnOLWGylweQr_SH
z(M1&_uC(rz+}R=KgqR;<0o!<Y{@f7rBr|gd%H!K4E)21VR=NV@=ORNPTyXe*YH5gN
zAy$W2Lo@CmmWSZ^rj;R9$V*Zvgm6`eujDtAwQN!S#Cmq=@Z5D0FAgq4xFL-9i7~e@
zgc9O~5HE&MLuetK5Ux~74`GF{Ll_}UP7~RLiSqeP<L?sr#Li2P_QNc8ENxHXgAFme
zeliMC6yo_1Emy`2(+%;~@pK|g%zY`u%Usn%yvg}>J@u6kuZ4I$#H+IECQI_ZK9T<R
z<h;!xws4_nP@2zgU6P{BfOdS^WHa9i@pg!JBy-c5Y43(8$-Cqa@lwoWpHF{3#I_KB
zhBy^sdx#H0{21auh#etzhWH}Hmmzj>(Fn08#K$3aOHq7z|A-8AGm8Cm5&0y<ry)KI
z@p%Zoo|DdxrNy=Ilgsh4NmBNP*calP5Z|)rr5rMR&9y~36=A8*Zp-^F#P=cghxkD<
zw3?s6Z?<GRCtu9Za@$Ft{DUEW3h{G@UpP9f&JagJFdddfc>JWeUezx+8sb=p-?+$g
zf`>THUNX3+2y`n!9ztHy<pLqo$q;}1r`29V{B8)s(;?1;NR3cB!r2h#Li`irN{I6z
z{t9t1#HA1yXzJYZu{U{aYucKbdHduRzRMxzUQPX*(^l>k`PUFU^m;YKHQsb0l#Fma
z#J{q-5>dQ7RySh?BCX6AGL?#u65+-O&z#L;@sECwU;N3|+Y~oNC=;P#gj*t%jZiKE
zB2<Vlzd)3akQQN>DL&;<W$DF>M0$$5nYpH57I9K4MW`I%)(ABsREbbELbV9hr6$`p
zW{g;x_rb|LLux|kw979o-A&YtP%Dc4PF$4xJ(yKDLcIuuFF|<;^&>QhaN&7ed>#!W
zG>WjS2+NDmI6{*M2O=Dd&@@7`2=k~+gys=$i_ky9BN1+okRG8RLYD}M2pJJ_BP1ha
zMraYCZG@}{EhDsw&^kh!2t%LBea{r@?#`sIPIk+z5xM-_N+df%PJ}yTL%uNuLwlc=
zt+>gGd$nDJ_7OTpxHH15{SzJ7oD#{rhzAx#+Q39dOOVLaDMIH6`4J{>F4%D`oxZvH
zS%Od6<hd(C*9iAUxGzGt2qMBg5qd;%RPpW+?w0kkqVD}O-ux(jKI|Ex7e{14TJH!`
zcE?k4lqHr}bTO3UTjKr*4@Br2;o%5<B0L!3A&HRf`b{x&i`(Mc_ve;iZa<ktSe!K=
z!oUa<B20|%XoNu=^a#&I7#v|pgeN0B72&Z6k4JbS!q?J!XEY?^xa<caDYh6I;b~e|
zglEZlDVLPOYw=uTF8#dG;b(1I4398^ejXx>jW9C8s0gDu${XTGGKwPq$&Mn&7A(Fq
zDaJ(@U)=NO(;vM#F>`*B5+<=5C2<yeAi}5H(xye2E-6zb<Yuj6WJZLURQ^cZWV)y&
zGCSffSurQVT*>Jl&KhdR<G3KgLRxZ!cOxu{usDJp!HKXW!qNyEB5b7XMOYqTb%Zq$
zRzz4CVO4}JS5sT8&0o7HIZMi+D8&|QBXEDtx(Mqd?z;Tn>@()&Rau*V*Sx$<H17yn
z1U-Tx)lem5*)JqB!yTF@(~Ssb1S`TRTaeDgkb>kPbR&2XUW)K?1fOMTT8?-jLKq>6
zP!!>LT8I<ZOW0f{G8|}<$;%fdGqZU43XPT;MtGBRFv9B*HnT+>aYxK>1R>crI^rFP
z@RC_?MR+^nE)?;DBM6yGp7$bbjj%Vuz6kF}*cM@TgpW7@PjuNHVMm0WoFF;*A8>hb
zV}AbXWdwv>5k8bWbW}?vN!b(O;|QNc_&mZV5%>%E(+F400y^#I&tFQLGpJpsrkP)G
zO=yz&CFimmmpYlq{IO>4SG36p-?HZ;d_#*ml*dGbkFTte@cRh+Bm5w<NFQCN^p6rJ
zEN1vA!XYjcMaV3|;Rr_}lqkXtMff?wFA@G?r4f!sIK~l)a5}=T5spVV8R3rzCnEgD
z=A@<mE~W8TdunFp=~H>T2Pdv>$oMk?&k}Z+nZ}Bkm~}?7osDoVLS4qNn3Hy%3tE#b
zB0v9_ntmoOcrn5yHfMawHOYLL-Ok>K@VC6AoUX388i9!v;!Gr7kMJ)oVM_ePm5-?`
zUa|<Kicq}>w-zC#2sai1MW|4O)FPBFLb)Q8FTzblC{u*8McA|!bkX+r+&p?Kt=v3b
zG3e6mOtwfXLY2k|Mmiv!LB4J-Ld7CfDnexn>72#zOqVuh+)@-ff+KU4BIti)S1m%d
zB2X0ZK~gs&43SWy2sMk)pomA+;^1Gkicq%*^@>ot2z81WB`3bicixj+@@F=Ki<NAW
zSzoeI4(W}!_!psh5pF9&lOi-NipQ>55rzzoN4d20Z%=*b-+1oKwA+i2UW7yuzV4gN
zii#N~OHEo7p=A;J6`_9-S{0#n5$-BN*CMnjLfazb6`^AhvWk#hgk%xg6=8gbw45T`
zQH0zgFxdCyP8nay<@BL?Nk;c>U&NguqU84M4pN^(NZfmGK7&X9A5GT*Wku1f2`iw&
z2MDMj8A*5c?gGNHu)w115(bbQ1<64&3IdW<L?tL95{#&Ta3|*(a?Y3#6$2)aD1zXx
z#P?0}Jf}~en(FH6>guYRo|&HRM^kt#g;pu#rQ$Qe-{cAGRde|5d)){5`6;v(#Dpmr
z>zZrib}7gybV;FW3hh(qkiz3BbP{A8DTX-NjYmn6{!7sdKKpl0#b;2ST_bl(p?eB_
zQs|pPj}&^Q&?|-BqVDRtaRB`8$E-U5VLnh0CIKl4^iSc*6rN7unG^=3FffIYDLj?J
zAa<6zO<}0uGx<^+%v*euHY|nVDU4t%;<vB8wUVQ1Wzxk+z^%PVGb)9#DU3^DbP8iq
z@m?|cmzv($+GTtS6H=Hc7?Sd1;hyJeC%FX;FDIoiIfc0?JfFg|RC@~3Q<#y$)D)(P
zD$k`bzDXVpyU<#>_S(2g%eC^%6lSF`JB2yS#m0Ip>b+Jj-B$iX&Y394UP$4^6kbW;
z)fDEX@KOr%Q+Qc$BTeyt(n(K%40Eoe*RGUYkiw+bu`q>2f`)h|GJIvNe64cw^%R!S
zNEAG(;EfcPGD@WIYYK0suq=fwDQxA4r?5N)BL$P@k;2Lp)}*kOE|$XEbdVH2NZ}pP
zsdrO&PXOFhe6^7FqFAxEI)x8Y_$Y;sMd`U8WAO^tiY>X;oXn$QRrxv=rI1QN5tJL}
zXRJ?QgP`9nSe>Av_7_l7&{EJD3Th>}86#(v{PcWLjt9$P^;(%h3SkO%3Qh`c3Z6jv
zDSow#mCV$;WZZhWbuzyiM=5Ngk<?9gshiv=+Tu>jyxg3Mw{a%fwiLFfa6E<YQrMBg
z&J>QM@M#LWQrMls{uB<RuqTDRDePki;*m`2<lf?7L4F5U#R(S&1=~X@9HtKYWn38B
z^o#S2i(Y6fuZ!jREQQZg_$q~CDSVN_*<r~q>E;yav{>WBU%DzLi`U8QQYq(a!RMP4
zz7?gz*2z3~hKJ6u3i<S_m-&4PCm7tG%O(7S0Dh#eRmtJyPc&n3mio^$o9Y=)SIPM;
zg_8`P3Q8$BmBQ~S+(_YO3a3*zlfso0u2Ps3&ZTfMg+Eg`Pa!wpLJEISW5tuR*2#R$
z!gdLJseImgE~Rieg}-Pa>*P}{;v%VJEEvh0b@JaS{KF7R_gstrQHSefBCn-zokq1Z
z4t+mujhBBAIJHi`mBMXCas_uQD4<~It0=4>O+i5gg_M|>YbTihE+XMw3W_KwD)4VK
zidD)r6}Q&KD=Y3%aIb<A3Lr{(YTi37@`?-i{?5(l{v>8%_0kINQ&2}iT?J(nlvPkg
zK~)9i6x^?%f`W&bK9L_#@SuY73J%oF;>okbTt1h(U|8}FP*Fi81(gMVVk%Y3VNU*8
zpU4ENapte!VFjH(k*h1<rV6ZEQ$Z~SwFPtTQ%7R5<p(taBugle6f{zhr665FQbBzM
z4HRT3$W-v+rQCW7UrNWs+$VP7Co;EaSo4Yeh=PU+_}_t%8yEGemP0(ZoNcV|SX(qx
z&|E<i1x*#?D0~YllVER^B)7sN8Ts(+-4+V^)+m~*;O$GfTrR>Q0xWt=K`R9-6s%N`
zryyU!Xa!>wv{ukYL2m_p6tq>)PQl{}Iw_D9v{%qUD5T5xu{U+z6%TPofjK55@2sGU
zf*uNbQs(1nT@`dw&|SgRrm;4d-&uG=;$HuaK6#Q4N58LvClm}+Fi1f^!Lz@DCzW_r
z4C_)4%m;}4@+WfX_3~f^LllfqFj9fuLmsMNn1bPgfR{|9XP#IuKSiq(G^0dmi}f**
zMPn6=Q!rP-^9sf*n4n;af~iWpQ}jdy&nTEA;HQ=NpcAf$o-8h(<?y|iPa5WIf=j8V
zDR@r7ECsU_Ojj^N!AwC(8YexrZBh=XopY#h9*g)Z2WjT8r&1<MU*OOySg2qTJAO8I
zo`U&Q9eb_d>(Aq<1@l+L<*N!7D7f7*?iZhqnKP|Am9tpEYYLVscvHda3YI9`JPL0p
z-17AQ-w$xZrGD$>nc_F4WeVO>u$(3_B-!Z^A)AvsX?@IX6)i-;ZUuW3yrbY<1%?7s
z!Fvkc7kW!6_&~vG1#1<oQ}CgJj}&~YV2vnUvR+o##}5c)#0Qi;f@fT$V7-D3g63y|
zB+bqB@l%7MKvkfLA_|}@s4h;MC4Bz|*-~ID*sNfS0!M+XAf$y0Vo!muAfRhJ*^DQ1
z&B%%6ueU+ID&9eDRIo{q@sdjcckOM=c)L}>HU&Es>{76uVPtmN4nf0GhTMaX=aGg*
zyu5SN*Iott6r51-6Nii;Lcvi5Unw}K;E;kN3O;2>vGZGRh?_o4Q`{i)eZpr7K3DLC
zf-e=&*Jf>qz4%>0!+(WH$tuS<vI>qX_)ZA$4c+be+;0UvX})-`AuqodML#I`QNgcO
zbBI*LZH`6$2Ki?NzbH7X;2cYtCo@kn>?`<<(mpD$dnJcYAHOR&EiTW9oERoP&hYW-
zvkmfj1s4?jNh?+22bn(<Tx4e#$4_T>o?OU>#FrKPrQnJXh8PyH3k3Mc^FIauD5$5Q
zzJ`AlT%-M~n62Wvf*Z6zHTKq<3T`pzsYq9Go55d2Srz3}6jV`2#l0$ut0=4@O+`@^
z#Z=rSYO!Jwl}|3Qx;l&XV|T0I!GcWps5rPIn?=P^GV>BDprW*j`&5)v<4s&ksi<~2
zoo5Mcshi3F=m~RM*D@-YhAu7qt$0^?zlsM`)KKxTiU(DcS5a9-6%`d!Jfxzcib^WR
zoXRaFc0nOPF<v{7mHTT}&Cc-@w<?=ZQC-DRaXJji>WG7x2-H+jOLU>GirNCGqvET!
zdE8lr6`5+J<OHkNjqjuvJ7p(TWT<GNB3DJGih3#<smM}MpM6o$@IP(vS?LjWQ+ytB
zPo~qC2{%@ets+N7GZjr#aGKgw<XrsBX)XB^!_-`j=d>&$o|i3EJgP!g(O$)4Dq5*%
zqoS>fJQevWTL0H#vThDvR<t{p&L7S0NZwA3W6RQh%~t)K#i9->I;!ZTqO%HO9#_G4
z8cfYoaZgFf;L}AE^-0NuyQ%1|qKAr}Dn_UnsiK#P-YN#F7^I?)X!i*f{Z#b*PljI>
z<n~wbq>2Fo!^`Ps<C_lO13O|z?!f{-gd<DisUH6_z%)$7a5et8CRNYiC8xxFTID^Z
zVw8%>DxOs_nuDuiyow1b#;O=6m=GXw@}<`0#J^e-RXnZY85NT#s-FMa*>vV4_*u;1
z3G+D7DJpoT<TMq}shBFN^VDzBOjj{O#Z21vQoPkLlQcv!XCnVOD$fbR*DAhI@w|!`
zSW(4#6)&oor(%VQl`39RF`wF2u|&noY(>RF6^ld@pESyRRmB3@ZKF7J7Zy9%ELQOv
zyDT;tAo5c&k0QYvDwe8vOT}_EKDYf%70al9@sB4jnMlmUpNI?b-oe3A@wSThReYf0
z9TnWY;XT@CwfK*%cSY;>r1HCMFG0*|6(6ejSj8HFZ?J&RX!1t_UX+s8s#r$@UJ$F4
zm(2NV5AzKwQYv<<*rP&Gp{fWdwhB#!uEJK~s4!HRDlEF;!^ztV;}NXdw^`52jn@c1
zu4uwj;j4U>kzcsfn6Etv{FsveP05jpjViXO*sfxeip``^u~kr#4-*vm)`iAAAC_>s
zBJU8~cB<GVXvl;}7Ijc$ZYsN1#Xc2ZsQ6OFeia8)98vKp<By6%l#p8n(UM=v{i$@$
zAVnrnq+rfeMP91NDMkKF#pfK~kK}J(%H5;H`BC=tgNA3^{9_CVw3)WCCG(PL*ZdOS
zsyI#?)^N9m?^JxR;-ZQ_>9Z<+RB=YdSrsQ#{G{Tfic>0nR`H99Use1jx-j3%e!6%L
zgC4)s^SA3>#dEj@;CIHcT1f(@Syz#J^k~LU`J_Cj;yj17Sk50bx#?+47if^LGKR}U
zG7)o0#bp)O7|d1tMN3feKNbI|xJru}n)|nkS<HJh`=OW2OLk<+n=$@h6->kvb3?^V
z26+vIHQZwGS5ZJiL5;CG)-YFHezY)m+qu{(2-H#KG!1uYD59aL24em`8<!Gzrbjd8
zRmH-Rdo<jup{j;z8j5Quq2YcF4`_gfk{a&QP)3WtsFo6WX$^&H<U}=+Ogv|nUtr5>
z;BWHfG;lM4R+pPT)Hri_-Q<HB%4?{op^}D4dmC5K@Q{Wr;{T(5mz%OKE0Skr4OIjI
zX(;pDL?+)SRM${Li;X;8!^0YCYN)Frp~d&>S{iC=sH1UZSH_(g!hLypOeE&AMm|cA
zM$%BAS`Oi)h71iO7R9VG*?P4k0|ns*8XnPbRm0yJ8fs{yVX=nSG-PRLtYMUf(HgQf
zG||vYLvIaDHRNdMprNCNW*VAnXrrO6hJ{noT4>1C@XEFl=R0P%Qso=>BwK2DR0#i=
z$k|*g4SD~;`2uJy>awVv23bRUf$SqjkQ{DQ&Kg-Y>w3@R;~F|?=%%5&hR%Yfi-xWm
z`egq9y@OQ_J(6{1eohZj+Ee6BYi4oH$wa}ekA}V)25T6i;Ry}>G(4$cfCjD-e7Quj
zzo6fAEj@El#y|lRIY<L@A{Pq|Lp2Q3Fp||Dk%tQ!iakQZS~Wg)e608^{*(p+UlvFb
zGlsB+X&Ro>FiyjGYIQ^YBn=ZZOcd3h5&6?1pZj=xKW!rxYf+h#H9V^^$jDP@+b!~@
zYWP-_`IFi+X>m-Ru3?6T7c{)6VWx&z8fI&lBlv7zj3#e^`CJX(&niLU=LP<<Di_yc
zznG`tB@GMMiwZ^Ovx6Km4X<jDG`W=~_t#{vXp#Ua`-;<Y7iw4}BqxTY%wN~AM8j4Z
zo`yFxEY+}%O=x&i!!ivYXjrY`Ee*>xyshCK4J$OP)WGd-RtZTK*!hzM9|Gj|E`_o4
z-_!6u<5IQ%AI;YV0r$-Lkglr571wI`Si>5@fz>mr$CTVQhdI;bH?UsA1`W0bM?*@3
zqCwYSXizn1qSlw^nr`gYtl7z2rj4)UnHnq&=ftV0<iMgk1g-{;R-s{|246#<A*Ap^
z9z~N0{4C&Gn!HIvIbGgNZxZ}7bh(utm-g3Vvh5mnaMUy$*RWH=E)9n@9MP~l=7xhB
z4r$n{VV{Qm8V+zkb@>flX3kq7bBc7cRL%xn&J}My59l&qfqtstGYv;Ie5K)Y4JUQ^
z3k_e2)^F+ZLx#*HPpq3|$XpP0OvBe2z7eIJ4f!cUe%_E*88PSYXd4=S*Kk_H4;p@C
zJkju*h7%fo((to}UqmhT!Z2j+>~zSG&l++uGk%^r$uMQgrx+Yexrr%vG39xtteNr|
z4QDl6)bJ;@s^Pqb3mX0qeD;|#x1l3Fo95#i)%d3=U(#?{!(SS%Fw$D`!<PK0B|mA!
zG_x&vxg~Q8yZ>qUhcQ7%2Oa-vxW)jeqn3{A8g9hO$Nf5P(m^!bqvKv3w;Aqqr0KXz
zM?oEhbfk*4EUY7caqdP-K5EH*KhI(M(~^tmD5|5Fj=Od6@<z9~sE93BvE{~gEJHV2
zF0P}5j#4^G>wu1uI$BmPy1<st-E2zYv4ZUQ{1W%+JgF09^*FS$ITm@M=!h*ppyNRu
zm2_0rQC`PMTV{GlM+J6A{GN8(mMiMu*>J@3WU(qbs_LjASdm*bR_T&mU0goiF^@3w
zhyN?(Wo;dGbTrq|LPuR42_5xyG|(aGNY`PnK!%Q_py!lq{_(V=8hc!(j(P&glUaHU
zO!8cwM|3pQk*%YNjz)KibTp<W#XoM`9*6&%kc_jwraE#2=VpS8KQaB%zgdwgISa%B
ziCn5kM;;Zf<53;l)SBrr0rZ%jM!1z8?}>fSf{fNW+UW5VTGr84$A#z8nA+($Hb1`C
z-`hN%m9dn&1$NZ&xQ;P8#_H&#qqB~FI{NGABC2=O(Om#tsZ}TT9i|>Sdg<sb@I6J&
zqCPtM>Ue@h>+>&(ed^Rt;*D9D>Whj`>KLM9sEz?T2I?3jC<lvt&)irlQckXsHB85F
z9Z%^PrN`f=M(CWqV~|*-z??M9%bv-tP`&7AfhQ*OOzt=x<8{2GW4?|FIwtD$cg)oB
zw2o(VJgZ|0_29^pbWGMU*oiH$d!5Ybj*Ox?Q*}(!@f=mB#|wa$Ir1i1-r&fjCmCT<
z&eAbk$6OuHQ~%S`hCGxrM+Ygt^y1sf3p!pDm-BQS5w#k&it94fy43V#9k1wEqT>yY
zln%Xrvqd@<>sX*;p%`U;<ss$OMsll)$=7teE|4X&Vh*Lc=Mh+{<4qmQb*#{F&XJet
zc#DqHJ+H7U^O8B?l{$7bl8IkMvNbW1MQtwRzN_Os%4Xp$3-9arfG%L7nu*mqKGgA~
zfdK|S((y4}M#nWBYjmvDahM&^v5u1Hh;(e!v0ldpTBZ(%UQeIWp|LNt!)IEn9M*=J
z-0be<`MFhVBn=&=4om<4FE}J%M~F|>%j9}gSBJ+@xZE@p-E1>8&DRkK49R{G&qVyb
z_O+9}Nyla#yL9Z<u|>yL9oyMQJ>L9ho2Yv%J(Ifw@u$3<dc4;<*E+I@8w!!n9vypi
z?9;KI!Rp1<gJz^LjW3aNfPvyx(}Ow=5pZQ<3f*c-fK`}(s^c>qr*!<T<8vKf==e^@
z_d34Rag^4m;~O1c(ICZQ+G9F6UFV$qij<jizUj9@q~rA8^YNFgj!(BH(4$u74?2D%
zrH<cpoY3);j-Pe>LVX6=B;c%`Z#g*0r{PgK<aUy=A|tcO+!8xqjU(Q*GwG*woY8Sf
z$7LO7X#jL*9e?OJPgkm*ywe<aZ6YP<FEZXTR{JG*mN#V}hRm7&rQ@oOzja*E<Fgcr
zsprZBnEt2ZA04tQ6T`%!>pE^Q#2H8$xT)ioj{6LhF>qT)0R#6KxYs~I1BDC}F;LWq
z<t%I<&A?p-Ug#Qg80gA(fahGfm_QP^TL8;lnJ`O>8&KP4!r%r(cxX=R5(d^>j%Vhj
z1Yo#wX#>pnyYg?YtlpDT)<8J}RSZ-$aKC{E3{+r61J_;oK?CIlw=$m0Rai++Ztckx
zMNuUKl?@E^xbuA0b6zYPQ~iD!)eKZOP}@Kq12qghY@nurS_WSC<e|GWC>Uv0?9Sk(
zOw*odw(W<Ux&~N1VL&oK=47IXoXBDeGcpWh5^tc5fqDk&8^|%x%s>MJj~K`@(AYpj
zBi<a6!`H|FpXoUCT&qt$*+#r*zlnjSM*Nh=B6<^-e3O`Ya|105JZ7Mkfm{PENjx>}
zQ6u&^5>!_5nRER=E9MD4yv#Q^$B6OtN8;NWXlJ0Sfo=w51MLlTGSJyT2Lm0A_$&G2
z2A<xQ{aE|V-JZ->bDK`)R$rap#X#b9<j+hahPMflbvMw%Kpz8r4fHh7%Rp}<UY5Wv
zobco)S7uzDoO@H~<Ou`)4D>fZfTdZFWOCbN@*%*>fd&Q{*lb{nfx!lb7?^M1W%kIx
zFawhfJZoUMfe{AA85nP1q=BaljHa~Wi05NVFv>vo!kF{@zC6ajSOZtYYrQ7EOw0rW
z6WJpJ&xqE!X5axa$D3q;FmtXkU|p_2m||e6f#+$K2BvX*4a_z$$G~(0GYrh+cnJ<2
ze3{#8@HHm$v9D%u+am6&K_r>XH9+Jr0l#Qqo}hn;V!xBdJ*EF#6a!4NefbpwuQJja
z_}IV#0}BnjX<(UwMFtidSYqG}1FunUvr2sPZ~E&-{IeDLGcEIFA|L1ZFM>HS$*tKP
zU&C7lJ}|J_z;arzAD{lY!oW%aulf)3wt;v4gWomqo`ByMIk#tImA>K>Q7)qXkVDx%
z^Yr|TH3rriFb!A+*0Dtc3O&ofdOD*oZ!nM&VjS}2qvDJ9Z@zrZmo<UZNh5%9|HQGV
zbRe^ofNj7r;2Q`GxOb|T%JB?b>>R&ms2j*!cn}(h3~V&8$-tw5eDPX(zaXy5KM^Jh
z;I%;BO0^icWZ<%a?FM!j_{zXBn!SNt1`ZiGY+yG#Vql+v{j~F&MVL<YD6v;G%C(LM
z=<+}19;5>b%zQ7NupK&;bHu=>20k<JIfGc3PnbE2zA*5mfusLj63G>t%yWt*nSX8Y
zClUN=;5P%`8aQs?N4l_q^m)188Tj77526(%h!-X94dfI5Hf?h@_b1B#dG61&9M%ow
z8-ZN>Z0_(m^5gU3aDCFiDFf#WoHy{hfzt-g7&vR7?C&{;Z!}%t=a&!TMU`2h+&Pr_
zUFm{>Kd4FCHhm<NzvYn`U*x`aJDp$QnX|=F)pP!$gV57Wlr(YGz~7ACCJLGOpMif2
z++dJ5@M0+cYv3AVrh)fEd2F?uAe0Gw8OmcuBrk;WEyjNX1x)<ZE}kG!R2DH;FQ*qa
zk!Ip<6Ze?7%R~_qMNJelV-GD7$xX%izXuYTWb$w%7kwr7UK50in<!y|tO%1Qi}KQ1
z5GZA$w2AU2Dww#>L>Uw1Ox$mRZ*t0-cs!E1BVv<C<^fL+h|32}ex}doLj8i`e0Jvi
zjQfy@iY6+Vu;;}O>HOwW*^Ix@R1s2f7q~w==kX(cbrUsAd}HEU6AzoHY2qal^G(z;
zQQJf>6TMB;F;UmVqb43RkuV{dXlx?eM7oKji3TPfF_B>+(?mTJ^-T<m;(g5KioCoy
z+>P6yt%&4?CK{Q@GWm~Z8h_}%R3zs>-)00@O1KF}XLQqMCYqaQY9fat^+OIfMkA6m
zEllK^VDM?l9!0U*xuY6eAwXm+6L}`uo9JL7-$ZK@ZB4W@<E0BFZWUqPM!?^Xk@<a%
zmrOF1Q>8V5j?|%vt|q#f=wza^i7qC-isCJd$eA)6+t>KnC*u~oo2WXgbq^CgO|W%-
zySW_6+>D4t6&7XmG11q=(<YuV@q~$fCWf0BVWPi@Cru18G1$Za!fo>gn(>1PQ-zIk
z{s-|()FCE@3gj><b7R~V$!e9zApyxons|zRH!;rSLor617{gHzb7ol(kK8CTu@>>;
zO-wK`(ZrqYPe~SY*ck7II?2Rj6EjWBGV!b#-}t7Pc+SKW6H_VJ$_!%2q)g}dUN)VR
z<dv8q$eJ(6VEVU{Jln(^6EB!}(ZpO~NTh#W03>)`$iQ`FchWq8pKv+-WfQNMP)w*M
zUNy16#3~bSn^<Uq|HQp+Vu^`GCKj9cdl|0wPZIf>s7v4t6H86JWn#IBH%%;~BfJjA
zv0MK(WzNL?A1K2Ly1>i1D@`zz@vIyMft4HOcTBu%;$stQOuT2}eG?y=_{hXBPW}gi
z|7w~d|7xk7NyAuDJG0%Kv~l7_NnkA%I4$=R6YJUNM0p+ack>VU*|oCsHke4!2&vL(
zxs~6^Cx%6u3Ejjl6T3|qCQK6>>DneNQkw8h1ST94u4va2Iln0J6BUJL`dp|kq>qat
zV*31+dsZMfo7iGvn~CkB=n=6*WUC2oeN%8#Jm@=2>=Z@h_JF|DD3r6u#9k9eOnfSe
z_L(?f;-HEB;<AAtW8Fh04hsz74gxu9ll+;9&*=hGsVHLprHP{g9@sW#z91VQei%Gv
z;%h4QKW@jPrpHZuM;o@#(8BlBp^1VP3R(Ek#0mPKiF1sfCVn>YtBKzjTRz5fGfQxb
zwqIz9GfOQ0F#n{9QzlNE=qPqN`ki9bj?MDU<(dC3&!_UwGm4t{$Hc!T{xEUT#AOqI
znfOzPdP(HLCi%!F`Sd2aT!+jn3@NlRhJ8lV4&vL>=2(GDcP7T9yk_FMiCZRaQ}`+w
zH%#25Fx8XXjFe=Y4-@7lrGyC-us}?u&2nK2X%;G4sAS<T3q>rHvQXMWQ47T^zI{Ro
z3wK+%$HKiV+THlUi|JXLW#)%oXnl2Wd<hF5=I50ZrDQ&IPaIViRmr)}LKzDWSa{Gv
zSqtSX+;7GEMBQORGVbxteWJ*ryoCxD{w|+<$O173#mO~yS|M3w3so%CwUDq-)j~B3
zH7(S#P~8G)YFK#K!m;v6?(W4#$&-Q+s4beKBy}wGE0<&|<j+gVLb`=|7V2BEDv}m5
zEM!{Xxj$qQV+02R<kP^4KSZ*Wmn3M!7A*{<kQN$S$hOeY!s8a2SZHb?-$H8(ITo5(
zXldb53(YO`+$^`SkSjRw2OsW|K~_9};n~eHPvLybLMsb-qLe#A^RQ07RA0PV-mqD2
zV}ZNbx3$pjj+_;W$`;yN=wN}sxXjoFm`FpIc_#~<E%dR_*FqNyT`hFC(8EGE0skPZ
zW%p)z*S*P}76|mR(A&bl|5*`%>*9;;6I7Rl{uZ8Or^GH>T$9G7Xl!eM1ujA>y+tOT
zzkm(4FvP+v3$rZ@wJ^-WM5@cea0??WjIl7*!bl5GSr}zuG>31CoZTR6bc3vGeUo`x
z{@;2BY>~%V7;nY@QBJT>=Y0C~E%NyvbD8sa;?Xs;p0O~=!ZZudS(t3$SqoDvOcgp=
zvPI?zmE^z_i?>B)t?3qKh&0o}hAlGBg(o+bk`?ng7Uo)b)xrXfxP=!iykud%;P#@(
z=UMU1g$t55{uVEF=IwyT(!Ffq6$^W|$mZ{{D-9phbfJYs7M56e!@^<<uhA-Im3Up$
z<$i12W{otYB)pWqBR&nk$w=}*4%bK!NzTjZfEK>Aan#023#({aHX7S_+rm2*PFgr+
z;av;wS=eD=C*S{A_`rf?!M3oP9>?BUNLlzuh`rXrItw3LSYzSmEpi1hy(jRAh4q5q
zi(5r_d25S&x=iv~qb$XOYC*H0i&9pMiG@WObk(i0Dewf+x5jwKf-5lFEO-`t3!5x#
zwh&kd>C_fBT4=LXZt_IDwc`(UGG{mce{RHVvADNz>{(ka9C$3R(i1Xs;<sCP+bcnQ
zNB*x$o3!w?g>R^53wtemYT+{r`z-9YaL~dbD-M7MgbW0@rw1z@ws1sXF1>}pLe3dm
zWxfny(dX2yg`=YM3%)=TrC$jq$1K#Ik#>h{LNB@SX8BtS$1R+&@RNn_sFtnr_ZEH-
zz@63dKMI(yG=D0b<dTM;E&M`@rSq0d{?IJrR|`yp*)DT?X9<3(|J}lA4!w<gZJe=i
z*1~NI1#FzNaNffIEc|2Pf`vaUT&Aa6xM=ZZJ1&W|n*v-(Z<U+Z<794ybFm>^q2w%D
zfxkIYTjiQXlQ$N&9`{EspJjNO(!Un2S-4^0rs(f=0^g)v-x?pWL;~YYkjX7k)cU2?
z+zq>+jY4+(9<Qj4!glQ1Om_(&P2}Z=#5yb@VE&$8%*K%hnLJbJZc&S;AQiV!!bW8q
zRcydUNgEH?c+f^E8~1IK%h)JuqcmX~b+^ft^W|xG=RCGeE@$Jee0jh&`F=rm2hY4b
zwNyE$qK!&6D%g0)MxA?-+&6~jit<!YO2Sf}1j>ctRc%zWA=yZ`QQbxj8?|iIw(+oy
znl{>f*f_O-?vp=hTP!~fl9)P_!A8QyYun;W;+fZO5)&kCWZ0;0qk-sYrj2?6(6-4t
z#ZTM>NcM=0hBg}6_;j0mdYfEeyL|ul7*CpP8%=D?u`$<1QyV!pdfVt@qnV9mH8b1T
zXltXnjTUx%L}spyM{PVN;Fcn9d@;S1jXWFqHd@pDFQ$`>YaO|wjJs0v^1W3VvA{ND
z8=Y-*vE$vU+uP`9<8d1uY-H9<_Np6G@_<fWb`op}lTTM0-E8!*(NlElt`E?i9Ih8(
z>BuupuO%{j*?4MJiMPAPO>mppzBZn)F~P<}8~tqbw=vYlFgrew^hq0oY#!>00X7D*
zbcUQMG|+atym}FMXz2%wFobo5w8L$Turb=k7#kzmgbj7OJc_Kg%d@u2E4Ir7*y8T(
z@>n6*I2+?d=}+6`fBq{ivqOHGofQPn*_gx;-yuJ1V~PMKQ;j?1zB^<hrwYt8TBf)p
zhRmnim?7%Uv@y%ZYymIaA%C<(-nK*jUeG*m;{_Y*ZEUddqK$brRxlLXc*(|m8;fZ$
zHeR;zip`I(SZK#52W>a<nZIgt>2Lmzx10W><a3h*{*b%K27kQeg#2|IOKiN!(dSrK
z&v?VeQXAioNWNY-la~Zoh45Q;JbPcxT&##Aw>E>4s~G%kd}!k%8}Hb7*Tx5e;61^-
z?VPmt1*^6@8nZ5|*on;5qF=oH*v3CQ<h3@|5mP&JjSVtnbNo&C6C&$o5+E6Ylnuqk
zRvX(mE;ck9zKy_!Zo{B23`#mQAsdzro6fZ!{DZ#0pyUsOlZ^%^{~VO$(P^#?&qkRb
zoA_bkw8YRxWMiX^O?FIA$_mwrlF4QpTLd?<C6e@CB{P|Cx3R;<ej5jD?6k4V#%>#X
zL|>lSULtpD{Erd`k@0q~jeP<?N1V=f_u%9~8;2N<=!`ZFiy~5TKS1W6%kpOwfJeaF
z_(JrBNUnJ%o{8{RHjZ)79lYq^Ya8Ft@f|$kaMKSQw^7W&-44E^l5JeFaoNTXHh#46
zyN%N}PT2U#=4VRqv&GLgezEbZjo)mnO3&m{ULMI>a;KaxmiTgah59QpxWV8l2F9H-
zzjU0jan{BK8-K9B{0d;>ybTiYsfQmv2#_bMTx0;Lob#s*;)z^YA&0<UHm=yXW#hJu
zt2X}TK->7&##?Lh|3}r$C{c5#Ov>qN@~_#rZsUfHo1(PoPMK_3RJKM2fi6P40uBl~
zDB{Ge7jjV8L7IcR#3l8^hcc3V_;x;PQF7KQ>ckr-ULBGgxl_K!!MzTuIH>BNxPuZ7
z$~q|L01iqzxX(cu2c?{NAUZBbX$SxQoj&G;+={Q}@o|sHlZ)}m%_1-Dl<#-&fP;z-
zDmi%2L3xK?C-IOIKNWtkQ)Vp^->DMrj7N=Cm{%4wM+IEXL3IZS2a<yt4jy(;+d&=C
zbWI1f1W@vPE`KY?5CNanFE2n{2Rmk`T@)OYv+3y$G8|+&T=tfqbTC)^k;=TDgZd6g
zKs<9UKIDt~h7KAz=<cA0gDeM)9X#fsm4j>tO{hI5yQPDs0?2XD%mHtat*53D-`qh9
z2f3o?xY%ZduhUt|qXSv`sKE0Chdc-Q4rEqz(Aq&82kod~{=>cj{27F)trH(4&FMEW
z3kDSKAo}>YgH8@Q3YdK?vP<slpo@d94!UuecEx&YEOG+eB#=3gJstFNFvh`H2fZEi
zaWKrma0h)IJmFxVgFz1ZIq2`;Ne2TQ9PgaX(+OFZTdiI`k+mZkuf@H)UvjX6A?$v?
z<WP|l$<jM#7heB4YlJ{P<zSS9k%HTjPVudLw18Qce7fwCS$&*?@eZasnC4)DgNY6%
zIhgF=X%6x9v}YXf*d|sSxl3->OrEn#epd9C$SD+{8F#si`$gb62h$zQaxj}?ajVD-
zK{nGt=~r`j_7e%-dO3Fv2in2&f;nq_TRZbkb;3Qy%JUq&<luyZpB&70@UjEbf#u*8
z2d_GK*TH)Z7SJOcem=%q4i-6B>|lw5HyoVtvR`xXx`UcC)3~GiAA@svpJl$3Otxgd
z$pP&l^EhngY>W8i4puneUHEM$K1BOiz08#kRtY}5B-xw0<ahonY9VF5@8ARW$iaFC
zs~vpkV6B674v*i;|H#3|4%Rpz6V3$4pY)W6m#sNNo1MnidG{yV4K!>As)Ll^{AP^|
z9@4EjAfP)iXc(>YSc_5-bLS9nn-1dOkb}bxTnC<mZ4S0O@ErsWHagfu8650;E{)$l
zBHGNJoO~qtnd8FH<YouVw>a3!5K%jm_!mbc%MDGg6@Mt~aIn+CUe<N6%fW63dpP<-
zl5MwUd%I+Et0~}(Z|CoKaKOPq!K8kN%<nEY9`{Nfxv{6G7G@lA@F}g7q1(Y{4nC*B
zP!$fo5Zu0Wa8y{r(4k4z<);}oQ7$|CYkJCv<Tnidlz(hf@|-y|xp#QXlcj83npNU^
z2S1SQ<;DeX7vUG2AF2GpIn{<Ie|GpH4y9a_cJZr&-#CsAt~)sC;FN>Q4*qiRyMxmX
z&Qk-T^)n96I$Qt%ni-ooQayft>Fs6{_`|`)I1b<vefhDxw$J4r-WAW3>WO0`b{3AG
z^shL$>fmn&|D%OCsP;alh(i_s5zI;OFO^w1vuSVfM%T~2;ov6Yyo;hPZV8%#E(*E0
z?Vx}gd(-7z@p4lFg~er>i@RK;uBMkOmcy5>1Xy(M?pV}fF79<v+{N84?s1X(PdeAy
z5&u-NWC<5=QBrWIzB^{foJFgO#cI6IMHv^>TvT^a)<roN54ou5#wP&Y@8Ut1AMwF=
z4i6A14jklJeymkNAbH3jkN>OWqOyxBE~<(qc#bUzx~z=z20YYBT-I>$uqdtTqNV_9
zxu`9GowL&FxTwD@-nlM!5t<6wSU2H95(Ha1W#98-R)&jA7q70mZ^5ej>XDxEEGt!M
zS*Zpt9&s5VOZIU}HgwU5_(w`sdZc8Qi^eY2Uc$Od$ac}h#k9kC?l79V+yE0F?ZC%7
z(9A`17hi71(amT<rMZ|AVrqz%E*>T9W2%qGT(ojA)Wa|jc`ou@9Cz`Zi`FjMxLE08
zm5a76+PQez#WOCy@}s?rCtVD1G4*1igNrUMy1M8nE+2Q%$;JFKQfC)O>Psy*X2fu=
zH1A2Nn~Od!`nu@uqKAu~E_%7}ax;6o_-a6U^On+TC*zau5`hXm)7|mX6E6C>=<nj}
z#l-p^>66B$e_2(^ypmX5T^i_Okc&OJg(tcg?D8j(tf4N3xfnu4T}?1enk)@>xe6lr
z?gP?z0gP}lQUFhhe3ZyZFxtf!0gwF;GtR~9jU*OLaKY+b`$)%HN(Tx`*9u9KTugQ`
z)5R=7JS9h3lqEe&O}dzvE-_6Nz%-FRC-UhcpFy)PE7ce)&2}+|qwHdVi@7eIcQMb!
zOD<k;@nbdVMHd|!N-rm+dk3epr>*j(`84~%=`Xu@g=0NgGWCpQ^`tfZ)ANR>XP1x`
zx>)35iHkQ}EOzl4HGDnsx{HGwGf2?1j`YbNi5L1xV~a>jUA*aHxr-Gp-oKDo=He|E
zqiRSMFDL%|Gx0!ssn449>}t{rW71EImBzM^-gfbhi>)rUQ3)=$J>)tHn5^sK0~g<4
zNu*q?cJZN$b+lpHn~P()64M$N9}Bqk>Z}Xn+7PqW1p&6Qo+hy=YXgmEjI>10y8Bk5
z>u$Nj-wDNq>OymIbdaPA<|8Y_8aUNNVndb-+r>r~n_N&Z$A#}AaJk_gJb_^cnP@hl
zixSUDJNl>Z?3aGBixj#1fSY0WiWRk4Sflz^VhfFJMHY!uXA|39?4Yh(9CESK#V!{I
z=tp&>-83!Mb&+;9vDd|x9I4`8iG42aYZL<&Zt|0T7WKx`-nSFpr1Zmr`InSm07qPW
z>f$pOpS$>i(clSb)F^4+#RP|yT_(VaU%B|&g~hXs$4kfP_*W8Rhf2dnq<<rj-->+H
zKZ);M{J_BCp{9o)U7TPb^-#>iPc9CRlCHS8>f&b?zcBv0_|3&R7w27^baBeX89{T~
z%=n!SLX&GJvC31sW#(sw#PC@c4aP{PhD#R&<)1Dtx%k7yMR9qDK7B>jWjdgXzy9OK
zicDntw~PNVNV>S;;vdGDmeMt$v43421e1PKN<KR{9+U^4mTofmyD01-&BJXM1w0h=
zP{_lX>xmmqJQf`2hsQ}b6Ui5L%Y|+vh`-ANHB&^;<lHU&-BDUNDE)2^_joAh;eHSI
zdMNIpl!wwDN_bdSO@fE#+QhOEF6m+C!1RgN6E&|U>W-G~^T1In>tRtzsf-tUN8^9v
zaeRG3`U4&w^ia`5B@f%iN##9cmX*G`oT%X8z1{Ld9*$I(=;qDJOY5#BDtlmF%|jIr
zRXu##Rq8WMqMTPNNDLR%Jut5!at4rE9%_4N@1cW-Iv(nJXyT!%hlB^oLnAMa80j98
z9_o3hPXS6vMVm+&qKQ%bDO3RePL&#Xc!WGX(AerP&x$yyqJ*uav}>{PWO=Z6%M_!r
z2by%Yhwb-EjiyRD9-4VvWrQ{!7GFs;_wbm9Rvub-$Q78D9v=0ORa0Whte@QeaGd9P
z*t1*SH$uu6!0cR!TDnlGWm^wR{!Yk3fxk^kZ|8w|<q_$OesYiWjvgNO@Pvnc9y$pz
zx_Ia+fX*IHmyWf>)XhUL_QFGV4|n~Q=;5KK0Jijyo==lH?#x>4Wb|Rh@={+9G#*8g
z@-pL!{XIO%fv7JHp$VN$3=r}U6!7*Q>4Rtwo3jQBB)f2QOBSOCr5)~JgoleB{`4@?
z!&B6!hfh3=@-W)Nd=D>s7~^5AhZ#cE<2;OKyF~Vte%vi@tt(C77zqn}+QTy*CVBX(
zWJ@Y@GKaOj#9&2Z=ru)pCLvAnFxA5}TA+}MHgngA^yzfl!qWCJ(xbJcrBZUHhglwG
zdzj<lMT#*>n(M*Kke>JO0x3Hd=(r_=on2hAW$A+PeRH0Nmpoj0FdpmKk0d$PuXuRX
z!<)2r4-05cg{6fY5xT(YEP4<x7Yk`$_b~nM#A_Y~wu!xFiHA2lEcHO<41MG?{ZVOY
zP3bKU%RRpO#ycLqXd$ieu##SRBXQ5@^qFO24XhGA_}J~lyYvMQA9?uL!}}gK<w+lS
zSk3PIk)T77?ZAr(rVnXRn;H;E^iL<v8V_qdbeSk^I3Hu0OqAAp*x+G{hpn^?4~l5c
z@t}IpXvP%dQbK2svZR%NB`gnyfK8DTNj_ahrgOx3+q%1=<WhScd=CLdVwY=6uauHP
z4rNs-60F$Mjg+&nL=5xIf`<K~n{T6=c=*}FFCKO<R(SZ*!%+{rJnZ&xn8rr?_psN)
z0fq}Nj(&`I`#kLT;+T0S24*#j0bU;BxU`e*1k6u8d`1qVq|Zgp>V&WCmKjCA5OCLG
z(pMgiF`j!k;o)l!-+1`W!}lJ(6?{m4+yeve9iHTWCno>kfw7um+-dhG50r<*#4uw2
zN|&Tj)sW75ILVOsti<SdT3F*L;XA*3cz3+iyoq$i!_DCmRlVa}f_8Gw!+8%EJpAF|
z-U`y4qSMpbr5BYhdAQ5~<s-w#UmmV7{Q6uMimM*}W+eAez{meYWZ*R8ngIUsu(_r5
zFP*4P>=)NP+@N9yNjDiS`%1SM4f3Q)lcnFEY|Q(9K|dbrG#_{Qct*=8<fE_;6p;v*
zsUj8eL8Va%Mg2JE5ES$OzrT0;@o-Qx#eJ0UQPoE^R`gNQM`<7T`LSh|^5a<?J@lRj
zVxKDGqpXh#J|6N>&d2>e9`Ny?AK$j9s8}u66TEGe_wmwrsY?}!@S;4aqK`^GD*LG7
zgHe%Iy?0_d=V@!kwxRsnuO=G*mDrnIxVn#8K5F}@;e)e8riVGTzL==#quCURKpj60
z!U>TRsOzIt`vL?c3eZGK_v1J`@oIwME7M0kA3c5a@=@RCzszXsqn(dOd^F@--A5}Q
zok~fKeB=rsOXQ73PJFfin)qn?A0|ft%|zZ@<Sj&A|GTD~+_v=NDej{p?=vKw(Tou(
z&qux(8csD^a}=t@uGhu~^Elws2Cn4tR{OXB+Kaq{kB$OZ@Lu})=~5>joqcri(Um|M
zsfQomn!EY9r;gNJ<kU7{A{n?k-Y@m`(Z|P7AH#h7R$1!nqrZ<Q{rGPCgpYnc{vIX~
z-*U7xz(@P8(jXs$eGK&D2_8i<D@yyuN<)0^|DVNi$-9wY#o<0i_!#G7ydMXakv>NG
z7)?3vm!9(DsTX5%w>r`oT7oQ%^>L!7#7k1ntSL?KG113&<D^MG7<-?lefnT{;Y51#
zjtl~yJs?f?@hmN>VH^Ng_Kovt>?Un5!0Z6iea!H2%E#|MW)kVc^Wl@5k2yY8`FPvM
zTp!PqEzO%|^LF|RKIZv2cp>qkxXdUn704)X>R#z3AM<^@>|<wpX<I$XC>CpMfschg
zmiTx>*!dzcOs{d^CP<5^oX28$UKbswLs7{~eY`0ymkY{elwo7WTQsvN(viC)`fQ=r
z(h46deSB72>T@nZJ=9p6^$rcg$0t74`*=?@wA#mqKHe8<q>p^y$CEv+U>tit^6{~c
zH9qpD#h1l;rLSdM>B)6|{Jg+tH)0r|Huy;S(0#52jmKB<<2yT5t@_Y>oK~}5xt{1Q
z^f~lF$@F3Sa5!E*Se=Oh+!b#7O-YHaef)lDY2(bmN9f~gAK&<hXa+P49|wH!HnGXa
zb{{(gyxGSV0c;idHj$6aOp<J;k6rBA<wS|AiQPW-(BFM<2C}D^L{r%-TI_hTd5Jx8
za*w?IG3lU>Lq0yIN*R>c1s}Xke<phR?ajoe|Ai5b)Up!NrE=1jbh<R@D;iQesm&hw
zsJN_^EgcgWB8SY77_Ywd@ry9d<1|0UlaC62FVy~{j~|4(dZownq7%YBf1)POCVmz<
zfs&1qztTI}OH98ByFDo`X~3s_oMDg&&^W+ZALke?1C$JK-p2)wAni>w`Ul60q29+u
zAAkB_M=tqs^rla7l>1*!Tw(C{@sH2ry`;Yx{DnpF;br@MvEvwH<9uW{iAH$c#|^4C
zz&!zO`nctzP=LY#Zqv0dCkg~87+}Q6^v27wij|QVQ6C*7y*Nio3vgF}q5+Bp;B(yA
z`qK99Qjs8z$(+VBkkU~33`o<xos<|@?hR1qVxo8u&!tNQ@#Eo<8wuv60+bH$aDbWt
z?hE*l2oD5!FhJP=v>!fN&V5`e7vTN?&lZ<B7v+;O@$C!6&zt1~R0!};5Z^>91*j~5
ziUGDvm-uX0B>-ncwA*R{ss`Zm;K-Hn?5lbJPGXsA2!Qv6S^;VY$P7@ALI$WCKnjo^
z#7{kmAfDHiFDJ2I^QTD308b>Pi~yXtUTh^X-lpD9=Z(025YO=%1b8HfJ>~9ni6hc5
zz^^wFjRGW}YV$%Zi87BGD`k^1z>@(61ZWx{C&1$YIt6GJpm~7S0onv;5g<1}UVzWq
zNiB(QDLod%PdASSe36^cCz0e!7+$stFepo!nkVH4@#7LZOM1Fz+W>M92hw%{stt(;
zn)j^s0XhWe7=Rk!1dLrHTTUQ(Pw5=QUf+*QvZO8nx(4x$rdxpSqA!=XXY~-6o+9rh
zauW0wKp&C!75Nh)@4rXxFBo#XI9LNIB!@e|xFEjE4-POiz_0*AXg22(e96F^x7XnT
zo)SH!R3ij1lD3qLdpat>=m4L$2RqJpP-8eEjpN7F@zhCuX)+BXzy#V=fTsgI6JU}s
zNInhSd2-}rfc8lxObIYGK>f>!=|Mb8oED(>Xz95ip0RLxMx)|<Z$^NbL45n5emL1+
z5StTVZh#^oiiUVTzzYGq0DgcM1I!DsD!|*6Gr;@+Zw6Qv;AK`1@ESYI<}M~)4dSS~
zFhHNi(t;p<QszBzQGmq(jz1-FTEa%z9Oqgb!6iX_2Y(~LQaVBviO-J=O2n{~H<WR=
z6K~N<%Sy`wtO&4@LwRo;s2TKl2YH9e51<541H4B=Y9y@*ur|Q^0Y0GF1o$w(M*%(#
z(0;1Kj`QUeX;4_=Wv87P`x;2=gvWgn@Mop?0faNF4FOU#!Y)$wiuBr3q$mGOOy0u<
z-jYUJY8VfJ9Y7CY2(Ra*8NecZJ3*Owx1#Sm!igH5E#Zp3H`<XE1PE!I0lo|n1=z^J
z3a~T4rU08MTUUv1!%n43bh<48wg%W1#5c-a-K6cp8mU0uCCPu6Al?^XKO5!RfB<^}
z?B$qVja{BiQ*|_+0|5@xPK4te4C1$!hd6N4W6S?k#DvdiTJ*$%@%)p$=Dd;V&rInk
ziK*cLzXv!L;OhV<gin1F;9HuvX!N*{jRE94(K~t;J&5i8KuvOpuO#?r%#cn~<O`*r
z0{k4{7siAjexm#>z)1nTe>>4WCytQW55#YuPE%vFnE=-q{{x((@Ref&U^*Y*YJk6K
z<O%6QfIkF4_@V&*q+bZ&@_+ch0$lkI=AisfxaU9QUsj_3@@454Ei(DO^m>3B0SbjE
z9D+7~laW6_0Ri8lC0tK12p0_T$H@2&PW?9-lwPHqlorNs=lD=_R~Sz+ITO3{-l<rK
zyF)x0;;|6-uqedCA!>#w9->5uG9k)_K!}oI?Ed$K;3SsQm|-QPQXxu*agZm>Ng7|M
z7W}wCxe)h<s2XC%$n*z7m_?+DAu5G<Fhuzf6~g!)db_&x(0>47Vk(QvDj|4zr?lkk
z7^oJadKkxNhT<9_md=uB+l&vjLevh?AjBgf>VzoA*?x%h5OqWFEh|$ZjOSnkl0t00
zE65Cy5rUJ<Y4=HkyT^U67sd~L^~3nVXMJ<2VTeY2fqya4GDKF0#vz)CqU;b&LNpDL
z6UNh|-6PT&2RMDA=9%+-0u82lh!!Do1w9|E_)N+NsOe`D^a4Jxv<i_IVrYnAA@W1C
z4$(Kn6Cv7!Xd9wSh^`^pg^)u$9>(v2+H<5@NgYBIx+{K_N+T!GF~q^=B;Gzc37XCv
z?sTc!`1l1{w-DXK`0Y(^4&2p554JKv>KWon4=L+rf_ML3A&x#QRjw)Z5oFc*h}v4}
z7ovX%K86eugY{$>KR+@)4+t?ZjA!y3Q##1rE*LDx_*QmE2<DqxO2b2p2r+>&gcup(
zsW1+Mqd4w6v&ey(X(SaM9bya>9>(`IPCv%6JFO+oNydk;%SvT_YeD4GA)W~_DU8D}
zD@H*M-<I%!myg(!X<8vTPk1U<Vm>Xzb0H>g#IqYQodSpWIl?ayW|AgEfd~a7%nmUp
zL=<9Uh`9{@A>Ik`E=?lj?=yIV_7h@Wh?hdV8e&0+`622}%6>USVr!G;i!%r_y&^8}
z01HDbrfea`EzVd(k9aMnd7b(XadJzOJM;utdIx?p#0tT4S%|j;u$<Pr_x~xE?2%Ur
z<f;&Fhe+*_*)A)R?Rz1A>VX<U3-LjS)gjh|SW7!RQRKrAABCV)tlsWKk&guj*4ng3
zUKiq%5F5xU#Cn0>oSAz^5^`4lqon*qcH7cK4`GCG>B4l(5LO5$1UpV*^0x)qd!k=<
zg)~<21%{=8kmL^MFvNky8Q<@bH-*?7;!B!Vh%F(uhS(coUx;lXwujgw)Vm|Z&JeqV
z{A`E{XWcvU>=w)~?~#e5@cUU5;z)>3Y3Csh(Uk-T3P#G}du6uHA>d`T6Gc7?@j2~E
zRBUmg2#d&sIlKQ=h+`ptU&0?Dz7FwCh+jhd8sgg!$3y%W;zWq=LVO?M2l{yL#LIh|
zRM{&Ncz16TraSOYv@TIf3<;PT?3I7xpocgU;w<Avh~GmHe_G^I_cm#_S7rzM30CAr
z{^vrRXFL&XCkXt-5PydFH^j9NmjwSSA+FMQLi{E8up-kdd*#1F{7+#15oGV}m5F3?
zY=Q*WL);MfTOn?}Tj1t@94IXbZgXTsb9?v7g(4J=Fge1r5z->u6(J`=vj{~Z6pc_d
zLbV9RBHSIJT!i~0+!Nv62&E#Fj!-;8i3o^LGKv+I{eD{}0;_V`FyA1x`F^i_UxYFd
z%9447{40Cq;`?Gvh6Qu$3gCeV4@RgMp;CnM5!&pND@1rma2vl*KA+jP?emFw`{a73
z^D0L;U%X9~2xMD#Oa8L)iMqw}KiVf(k5D5*Muf}=4@amOp>Bjkgjx}{Ps^wsp-zOq
zw&##?<39O`+1af1<>U;BV$aA(kC2S;>a$sYPs`XfA?xTq`O-f5lX-3HMW`R4QG~1r
z4I(@ep&^0&a?$-Uhr82qk2a4xNdAo@WJhQcp(%y$pVe-^%)SrYFHhSacauC9md|e<
zp+$r~5&A~RjnFbehX@@bJR0FK){4+JLaPXQ5%MFnW;a{qv+j3O5-a!1#(ueW&#XU+
z<<{Jj(JsRLchlqu?ITp_)^^R?O&iS3SUx;)WWW5~gsjISbc)a|LiY%rBXo(-HG)>D
z@anYOv-{-&2jtQRWD1;dK<*KtXM|o6db7m?@_+;K=fCGqJ0QPtKrVhdZ^Hq3=K=YN
z2>l|AjPO*1{t=#xFeJjz2m>Mvj4&v|VCwDdrf2`j|L%Z%^?+RJpgil*SSL+(=9hV+
z?XU>LBaDbp@1RUF3NIg&ha8k=9F#{z7#(3kgozQxL>L=kT!is7q<dn^SvoVZ?w~wk
zO2*!U^5B=Ve>^BZ9f9NZOoT}h3LTRDaoG>`Y&+ql?DB`?QO_o(M3_pGh>(gfEy8mV
z-iWX?!t@9;BD_S6G5$xG6=80K=NbPwnup|mhvYf5<dIo~udZr3>5%+_Fu4~a%oD&H
zhh+OuJc36=D=$ZQCBmWzi`nZ4mk-GcA}l2FKDor<m~8CK1Z|Z7(`yl4kFZ2o-QM!?
zP*U2Ohvl5Z@|zKsMff1X>IiQ|SRUb>2=7K%5n*M7RT176W=3;0W@T`&x*nF>z1nW|
z(-|+<%72dodRTs+u5@qA^WRH(4G-iGsoHkTVfn)dYa*<T@KJ=1BfNMx*33JHV_RKE
z1Dl)iNrd$goWn8=l3k{K9wtrHMv0(C*b`wdO(lXJA&Rguf)T-t;6?BwSP_3$gcHFf
z^H%vsTjl>Ex=gdYeK_`)*}@kB;ou>?_=uc&B-Tm0Bl4yQo9TuTc0||`VQYjQ_vUXS
zf8iZjMcNMNnKk%`JZE~&&Ir4Nm+g+QX>#JNsfk&F$#RkJi?E+&5aDQq0}&2JI1=Gg
zR+*4>D8gY%endXrqRpva^1nC|_wKU@pGWv2!i6L9Z&NbL7RmqSu6*{lVtPJh{wl(;
z2;W8cKEnSo^&L=B6wm)BM@BwKMnQsr=+4|8=&^SmCr7%28-jw8vmi(ike~zun30@B
zK!O1!NR}WQCeQ3HIp>^nk}UB5O!K|p`@h$(-lwapd#bCeYkKBxYxZr#{*5@W5eKRN
zHf3Yy05vDATP>aOO5Wy8<j6)G-H2lwaeO0M)Nay1Fgt8hCJ*xu-RAA7@!OPB8*zFg
z9&N<qjX1LrXE)-3aHMk^aegDNZp5{XxUdlysS?9xPcKAQDdT6k#Qn|~TgLy!PYF*s
zY`QM`-V&6;H|TOgX7wIV=HHFDEt>8KdT%4{3h;SjZv(R2=e`@7M(}VW{u52SD6dY=
zlZ{9SqHYkGK|B*go*-TfqGAw<LF5ghcn~Fm$QMNZAc_R>Y!C&4C>TVqmlB?iTquab
zL2sPjg%QHrln<&mDH;TVcuw$(1@XeZqRR()GAxbS2L7#*uzZ-mWDup;BxFhpS~iGs
z0+b12pBRnu&j&$yf`Zrm_XV?j5EX>jx-p*7Dg{wF2!9aCK~xFir667j;?*Fk3YqFb
zyevR9K`Z=}QzLi4bsu}(2Yv0C#V1<jAS3~@2YO9O0{cgLxMmQwSPddgFkcHIC5YNV
z{<0Npo!I4nJ3SD@(n|lcOxb7C-UuQ+h&P1{#p(o+k&77vV_Q9g%=tc%v|bSPgJ>5-
z`yd(!nVcY$AQ}eID2Ob<$qu4%?sS?6&i}1KwNs6n2GJ~tw}N<EG&TSK)~JQxRNAhz
z6yTj8-VLIaz`XQIy>aUx+Hid<CA1aH+1DE{Y45o`OP4We9fIh{(Sqn5M5iD+3z?ol
zbP=Fi5Zwjn8pPm_{0D{U-V36KU@qG3g(j96g9Gmi4sj<j<qt%4h@gFf=o>^of&0_P
zcKxr{hk`R8h=BqO5|kr+#B1eZ`u5OVOjr3Nh~Yt;3gL7JBZ3$i#3vyP4`Eagp9T>K
zAvJ{0g7{pxfuGfOzAu9KDu}PeAftmAlRMg%0%R;o{3eKRgSZ;RwIIF=;`<<e6HQ}-
z_#udKL5vqwF2^UM(|8Wym=lCGW&|-Yh!w*ElLVbC=oCT8oGQSyAg1SXmd?&$_aB2G
zof*VW0?Z2Xu@rLzo)^UYAbu8@GIN8tKghcx%Yq<&$>lfPuKX(SR~-Xv`aOt+Lc>3T
z*mEZ9pum3yu_%beK`f!u2B8I^2k}=B%YytNF#Zl=IkgI+bcO%<^GeZcm7ru!elcM+
zx885wWY-3<E{I?dp&-^%?b*H!LHv^|8J^?Guxt$CP%F=`!a+oWXj|1=<?^}Xt3fm!
z;O#Xd2s4PSL2L`c3c?N|9^}7>zzM<?V@4T{o+&^{7J`^y_Svqmx>;a?EkRW8^*<k$
zDkp9aVh5v25c`F|&LDQv6hVBsUD+i#y!77OzLe((&Bo^Jf3@)e!Q@qrjqp$Ux6w<j
z{fB}$9K?|zjtUE(2;yWA#{_2UafYDQ{*fd7H2W#RycopkAkJ{%`lp?xiMj;N37H0i
zi=GeSLJ*hR1lXm(AU`R~C2~Z^8qKq=aG&O6kx6~7GolK2CB7lFy2*&W!gq_F9K`J)
z?gVj{K|6$eA>5;51W_}y$rB;-Ac#i-Q2wC+|IvrHE3fqoJQmgMgZ*q`NeJPY5b}h;
z14Cj66-WE3|J8WiS6);7)>-*Ocs7L1QWmQPLMRwQp%4nQ%L-o+LD`G=i$MX>q9L^V
z$Pd9U7DCsbn`jpslTZDNhY;MZln9|@$n%!EzxhgqP&$M%A(RcFoM2WD;rS3=2%%C4
zl|xAX)KAIsAyf$AMIlg8P%`O+9D$&U;8YEvngB0_aCW;wKFi$$Md@z@FNaVggjYg%
zH3T_#1fKv>2#06+hCgadF|K}+VE*`OmNLIlvao#35Nd_+S_rR;YDx&}hbC>k;BAnn
zp}0168|B?l(n5HHQx2gUH4mXq2+c!i5kf`?Z-$T^LgNtXhL9OTgAf{qP%p%P)j*+w
zb)RfkNDCB6dkRYKP#T4hmD~FA4zHEtHwhspgr=ekTgfL?gjN)2CO8x$|E&<-4xx1j
zZ9-@nLMzeb-4NapG8~+jctZ@!?v!uKRSThG2%SP`FUI6(9fa7^0jXH$5XkHzhGO5R
z{HKa_7dm_x!g~U+sYeJsbMgBj^a^=Lk=}w5d=NsPT-;ZHej)VF<>aZEIUt0AqWho_
zhUJd)Q3!(t9wO*aLF=CNT#M!7koR(iU_=NbLs%Tb62|`!J`LgL5au%ehwym_<3pGb
z!WW|N7(v-(v;bVqF9rCDTd9K=M!pu+Zv_2T(C<R{UVyQJQsxH%#tGVdhcZ!ssUb`g
zU{VN^Lzp7)ug^5WFmKrDA<PJ2RtU30_%Vc;bU7i=a)9SWJ%nuuj?VMuHAgf(^|Udf
zX<i5m1#^A~3k3Kjgx>`CRnY1$|L;!vyQp3qp7w_Te+s%tP>y`OW!BOV{tCeg!46?r
z2+Kv2DrlFvc~^w6GK5tjtQMTLA*{*m`?mnCKJ#MKZ#xuyd;WETvp$3kxibHRuu<Tk
zprKrTIE0A6pAYxCvuGjcAs8W;xiYtxdC_>MQO60v4dFlt2SbR45EBA>1dR*2JA_TS
zy*7uiMc}QuoNWSZ4`GJ@I|bd9+d4VhJ1Q?(n0K$>><eMP0Oh-S%k-$EXU0Q<bDU8k
zgd+kU4dIvoTZ(xnz_yPYk)9A7f|CLi|F7{G1|sghFj|FiE`;-pbz%OG94>@#F@y&p
zJQR|bLbw&ezad->;fml~4dHt3Xx9WNS3c`T2sdfZT;DjbL%E$Rb1#HDx%h4fwfh8`
zv<lqM<<N8f3*iytb{K`icr5tOgpnr<YWpOFgfOmF^rBh!k^aOm@(O<b@c&NW`9zhi
zn}6{Zt3ViGy$(U)Fp7jxER5&Ecvi?174+NX-omj!RQDWjR9t|PVej#wguraQDJD|t
zY12-nY#8OjNDiZB7|)0CLKs!Us3uy=hfy(%N&;61<HcOX!bAL(b4PnAi~;2ns)*`?
zd)}J*b}H4wcsUGT7?R-E5cJhBUJ;=APUWedJUz;S;}<kZP&V<QhO~PxU#&1+3nMFx
z>@Z#rBPERVT$$PgVWf#_AdEg@%r|mdpB1JkJ2+5Ba54maGq<&F7?}ds%jMJ;pg|Z7
zb2*K|I6T8MX5%oL2xfCZbHY%<XiCeJ|KB;SnJ_OUD}L(9w+Q2{Fy0ozPoJcozw4Rh
zoiN@FV`>=F!e||4J_-y8V`vy{!)O=AdtvklqkR}1!ssUYb`-RWpq;|#EP&*^mOa`(
zeWx<$N&c>aGrWIVcL8{b`jrxThVedEB#eR7DvaJ?^bMn57$4-y^x;Mr^1r>mS{SXr
zX!?+=-y)fVu<&252Ia~R7T}{WJ|F2tNR}hZ5{HHHaTsI5_)@ff62{0dMujmvx7Ua;
z4vN7)4dXMx{DLD0@YE)2#JyuurG(Lf`Q_lWuLPJR=+|L<Bfwwd(!LeoJ3)E%@52}?
z@DGBH%jJ(3U_uxZb2&Sv`X+}lMN}7;NtjZ>JHbv5V@4P&!dMx`k73LVV__J7gz-}t
zv%;7c#{4j5=Z-KZ*WrH-V{RCY`~A;uFZ2j32;-M9eiuv6ljpCZ%WoWfpfArZC2u1y
zd~wsU`ezu6!uac{8iFnnly;!Ndvo(H<)T;j<d+FP!E*Y>GhTdK6~^i?{t07a7;D1#
zJB)R?ec8G;SDxdrx;~8lSF$#6X-0c`PM($!48sV+3?szQA%r7gXt}*qDt5uwrfS0Q
zstI}+rKfp6^|ivxNrJ6HhJUMa!f?Zga%HP}mr%vgiy$Th;$dtOV6&iGp7#3FyZSbP
z3APKcL(rY!|DE6Vgt3>gOGQx?`@+~yM~dL92oBI~xaA{wJ%U5rfMHw;<8l~B!Z^z4
z9mY<kNett-0B6If^S5+@bY;RRflmth+}G0SF!b@#87}2|Y1vtS|FP0|HS-*!#9Zk-
z!^kTh;7}Ji>))i_zO*Zh!(k*u@Js~P!nhvBoiOe)g3Xa`gmH_ZZ;V8Ile=}dM9lK9
z(BXC%CEFx$D3*I+M6OGnIws#2O%DWp7{-4BJmP%6^DfHrSa6;QI;2<LJP{;DP%VP$
z5#)^^Uj*eMcs_z*mXtq&0ugW4HFhb<<D`NS6pEm*;1m<Ih@cdBR)C^{LePI(CzAhM
z1jQpLAvh%?C@lc_r6SnSI+0_RiJ)u*1ou)B$YB%93lY2&L9t8z^11RA1b9)<iV;-G
z<yVfNiohdt?NBv>#s`{o`Br*a@L!2wh(D(W*Y~*e&K^H0$A2}#EHvJ{Bthi}lDOhO
zOJ#DB$n*<lvY<5utrhv7ol_#H9YN;^x<n9&AT@%v5wwdSErK^9s2@Rt2yWhJk{-dE
z5!8*K4kf>pG9q~JmDFs9wEZWk?k*)Wg6CrXdJ%6$=1!3OSDK_RltK%nhSXeKu2BTD
zevz^SCCC<_+2$tHtw{tq5hxKf6_PClCBK;f%_C@$%Xuq;w*_ARmpA2Bx%_tocvsNY
z5wywWmuZtQb*1M^?IYN{Nb10an<GvCS?U-8X{QKkG)W@p8bP-RhDR_Wg6<K#$7=1Q
z-Vx75dqmJn0OFnzyf5&rie6LeUCM&ZO+JXAkGNdwX{m1n?@aO(>lZ=)2tE}20fG*V
zU|_CRgCh7y;K8|^Ap#8CrLgZXfj<`X6G6Y*rHqVV?Ih_7adpa!itvlH(x(ypwoCae
zg3lu;-y(_S_&1WaMH(H!81DD|O{`tY)GgB25quMY8$mRJZzK3Ff?p!|HG=OW7#qRN
z2!4v-hX}?+FeQSi5sViXoe;sq2<X7P-1$q=qzEQQ@c4oB$_fAE@ltlp46gqEWtr0=
zjCf6E(4G-~cP5ji*>s7VA0vD-??1XrnH9n82<Ao5^}cj(mog`U(_cw*BdGd=^m7D1
z)=MJbC3+rgGCzVpUQbAxEG?kxPL>94lzxlg_Xz%qU|9qUBm69vC%K4XLPO#|>BGB~
zt+)J(IjOgjmT;y~X=w!VZY6d&vs1ju@(5PYRuKdvSQ+83m9d_ilsatjOAT^XN3e!^
ziqY1I4ZHTK!FPHW;{Hu_{r}Kzm;Lox=iGYB+egxyNudbBLd+2~!nNMu?QvC93A6}w
zfek^;T)riMEojzmWkt-pN-TnS1m`2T5WyyTX#{&B*ehhV(39s&wDZ;ownea=np_JE
z`&QZ|zz)g?K<4|)q}>c|-%2d|Z%X?jD053X5y43@&VE4;2zrn)K>%L*umDFQI4Z!g
zT>fzZ`YtSbiiV<xypwb;!oT~Y?`}V@bvA;IyOpPyx_z@mGN(%yBe)d7^$2c=zL%-+
z7^y-y?Meh!xzkTcU+z|}3GYprmd3r4=S%4(!?KF}su!|uMeuI~w?*GObTa|&3VKh_
z`+`0Yl=2TF_)p+Rg7)l|OeV_{QB4qIJ|k!zK@(Nv6+rr<D8&k>C^b=Pwnr+cV(ND3
z>^5ocZl#b4(!wf=2+%U_XB8@nsVJ?XjE3h_6j#wpMQ;@)RFqWFR7EomMFADbDr%}I
zqoS;emsQkIQBKA4Dk`g}qT&S=<yDM3oHl$_YU19s3Mwk9sHEaW6|8R8Wzsdf72jTY
z>u%-j`MNKuP-61jzvZd|e6~WaMy>vqN3WHutNie{*Yt|Y?~J6ss`5nvIv<idZ;_Y1
zmmsN-RV1l6w_ABVG2o{fE96b9Q>!dY?=`b1aV-_Esi>!-zKYjXq^QVH@urH}Dgr9%
zEKh%fqqX&?Qti!hnu;~qX*KrA#GfIPt?85zV#Gz4$kb%f5s%hYnPx=J6uOl>AvaLb
zP-WIEG*K~qLUJRTVvmv~@RQw2wh%kAO0Km>;nZ?C$34p0mGa7E>59tq_;Q}?wB{;W
zsA#LAor<?qyshG0l}B#*<z?wDRlLIy_9(4XythYbzeXk<vN*M1-?Xhu<<=_Ni1De_
zk8I_MXo=iSMRye)RCH9)NwjuVnI=N+EN~Y=BYPBfDO5b0^4j9`=lA7(Pel(EJw@yL
zf=)k}vs;Lr-=ln>qK}H>Dw9^BuZn&uzE?4p!*X3z3|BEi#pM(702KpO45IL6nbnU}
z6xypi49Op>7_4Fl-Jn<+*KR1yzQtR_VFKu_{hz3Orj}X$TPcrJF-pbPD!x(iDNRIW
zRE$>fIp?)Z4(wHYJrk<zRfxw3J-<}(l>kpxrE*eNY<b)kIeCTr(^7f6C4Z};L78lp
z?^GtwmkEBLbE;USVzr9#Dki9yrDC><i7Hwh%|BJeG!>InOjglouiSF4GKKTqt9-dv
z`FXE${eo|QkHqOJW~j_X=2@HNCzTnM<(VpeZInsy)Ub0@{H)@46$|OiDsxH6Z#eRN
z74rmU^={eh1uA}FFBO09Ren>^O_N7C@&|1j5q!E){zJu|DwYY$EaDY6$xBo$6=1R0
zDdglkDR0`V{H215{cu<=TO@P2iWMqW3f<1^RXW?AhGS03Yj_nEaTS}Wt%`Lj!YU#v
z)~oz;p}axGKPvyqDgU=u*|9ctBQ?*;2yuh&Q-Ugghnre!pYrZL<->i7szOr{rB=sf
zU4@~-R^f25_9><ci?dsrKH^MH&R=r7ZjFftUCx=mPg%cDak+eZatL<pQ(_!*pXY(x
z%bQi~<uP8x78P4nY*VqFJ~k4&DZ`1}&)KPBmx}xQlpmI*<5<p?vVrlLY0vNXs(ZNg
z1ehL|_j6aOIK*&tL_VP6Sfflb534w$;wZ)L<^1c)9iC)KuKZh6J|;M1ezPe3q>59V
zj*9<OoK|s0#a$Kmgh|gbwx~ES@ca9f3o0(ExW=lAOLTZzOoh5%Dby$J3Zv_OW$}K`
zLq_aZ_EM`=@(oJvS8j3_98k(EO?_dzd`rc@bnk8QZ54Ougr)syOXU|=r&c|mLtOoU
za$j7lVE2ULc>@n<nX$>8CMQ2q@tDqVKq;!>iHZab1vM1XFn6W=jD|!Fc{SwGQ0IVh
zrEW&gC8_x|<kv9Sl?!Ni=YaBj>1=96m+RUnv+n_A%mJmah9Vm7Zjn12PWyI$>a!Y7
zm@;K}U1%t#;r3QJazJ@bLvane4=5!xl+^I=0VP}W#7YTV_@Gklpi)*tISmzcRMPRh
zh8Hv}(XdoQc?}gbbkxvE!;2KqAZd^_RMJpcLk$hDXsDuj;k~M$1TP72Zn0cVfa-$2
zEa=r`-qu$01h~6j)jV%!)kiyYPasaBj49XAkfFh^Az4FB4Yf4X))3I}nugakq-e})
zm0l_=D~&Rmn(}Lj$#oC%^Otg}hBOUr4=U*zZmQm9d4t-%myq2!ZBKUE+b88^NtthI
zsH@>^4J|qN3OQ3ljs`_TJq;JLGmq^|tFNJf1_G9b0yNT)mCMN%ps}D$Gz>YYP^_tj
zW@2h@X;|=H0;j{$Ttf>D54NPTFnkqXk-D&rzu!u^m4<gUwB~ARUd*A-klBW6Yv`b1
z%Bh_0E97=!wDv;ahlAd|h9gk;_k&7j4P7*Rt>GIDT{XrT4A3x8Lw5}aTl;%y=&j*B
z4Lw9(-dKBTXth~>Ur>U}KPP^mp^t{brl%xJUk&|f&x76;?x#Ur?J++T3J`EQgEV}k
z;ZqHtY5cAMhG-bBVT6Xg2bG~3hH3a%1C^Y+R_6Ve-D$>8G(?%lW=-lyG0uOVCRRJ7
zTtBFc64k<ol+Ot?jMgwl!yAW`I&0-J4bylzE0+Ex7jdcl6_=?=207z4$dwMs-)i_y
z!!!-kHGD5zWh^hM;o1RD+i@DkbC1w^V*CjjCJMj+PNPv^lBmvKlC!C6>QoI6_seIN
zdRJt1hK3)xY8rkK7MrPImWJ5^|D>V1xEZZjF3-_GW6ss^vlxmTjy#V`c}STrD6d7#
zYyGO>cMS_Qen(#Zjjk2*6ezq&{zJoJG3=i-{w9yPNW+Si-d+f2WsEqa{KZRfBa0oe
zoJ|_`(8wBAYFMSg&|qp<%{d-YHfZ=q!x{~LYgnt{k3-5j4ePnAn`QlwGHQ3ul-)TC
zcc+bQl(vy098w}&Rt-U}vWBpRONSJO(;|mGO001gA69e?gW__lxJ*2^r=O9>(qL<d
zYuKd0(cp65ZIfe+PTAf{;r)atm*YrI+F@niMwtfLtYM3W9U69OSoC}PR=Ubjd7Hp(
z4lCLgc{`i-q|r}yar->V+O2ta(ypuJW*>V;MBYR9Y1psfyoL)J4$z-9oYHVw!yyfa
zH5}1!l-^Q2n?A|qoA@}VOJ>F~hC2->#iAUiqaIe0@8o=cSo!6!5<09LjLT;<oE08*
z;IOi%UdA~gnX*nM{^pPLi?jv}uHlA;%NnlGqgXwxT%}7iN*lO3m99uI^-PYkLSD8s
z^`?ef444e68W?Q3xMhwglT~jQKi#BvxI0#*?sw#S8t!xZ)7j|B2jnt3{?qV?4xj@%
z9y9oB$fqN}jszX`k0^O`B<g$|&Ui-W=a$loZ<O=u{I5=VXr4fqBg&1gsl)|z6x2~f
zX9jYaUC1e<qp*;t01G>^JS#XWvonk7cuq%2-BW-g7Z>A~5Z#~3Q>K&-j$c~$qBj9A
zS5`+k(dBs^FR+Vfnii2cNCh1u_T=5N&-30FbqqV=IecXuRdnppu~)}SI;!dzsAG_h
zYC5XxP;@la@v@E@I$qb2qNDvf`4t_q?j5vV)#1~zu3p*?N0jpQ(j*;!9Pw_uNjm&G
zl6BP7@tTf8N4*Qx(sAI3a`T9?ZlA0k@fNqzQKhzyfR1kt$PIL)>PXY^CY9H{(E5gs
zIyy3R^xvJ9u47Y!411GY=cv*<D=oexwe3-*<_0;F#upQ;$7^ly=0!UDP|m>hazh=B
zbY$sxt9eGYj>bAZJ*p5l5tri?b415Y`(@53alPD3M{^xrb#&9wg1tCX9UXMMt)r!m
zcXYg~qt{w_#!-c(m5$(1rI{*^?3U14M;je&bwnR!QEh(uxSfulI{1g4@No58IlFAR
zqwbyPI_qe)H*Y5$(`FTohvkCZQoGP4N@V}JMeeTSJso{?^wqKZsM3SiqQOIQPf?ZE
zq`$9w_e6r;I={Gt%SSys^A!DDNakTXVY}RqhSD)~Fdpuc7w$~^Q0FNnX8;#yYii;#
z<s%(~b^NO1HyuMLrsI1ZW9b7rKBi@Ke5T_Q9m92u6vi(z3cAV!1^yAjN<6?kpPe~M
zN5_U4JR^NhrjD;^N!q7K_Glena@D#u9>WoC=P-zoex>8ZV@m2VrTsDGTOHr&u$Fqe
zfNE!t&g6NiK*{VMbd1ySqmG$6#_O1%V~UQcIwtCvq%;3m>SX%xHkmP}SM!WjOHv6K
zh(?S{o~Gj~L!O~yI$e5P@>1Q4=Pf?PJ45l4j#)b9>6ou$HmBb_Bdux1&pPJN5BsDM
zQvuSsxz)e-%L{b;qGQeY<m%^gc$DS#|J#v&=SI_^>d@%bG^UQfbsXIyFQOS6WiHdP
zT*qP^OLQ#N@fT;YM6PDaH#K>{G35|XM0@2GI#%jfP0Os2x7^HG#VxZcm0~|0Q^?`*
zX^k*7@mg*o9qV;$pkL_->G(&-iet*mHR&4#xL7YOc1$^XOnLokPFP1oNADt;WZpl<
zgP*+RfUN5<bnni%U580i>xgs9=&*G-+{H0Dro&}KI<7=@yn0+=U-sHDA-Udh&ym_3
zS2pWdbUbIPj%_-&(3g%Y>$B3@O-$y48_#CG6Y}WI@(vw4bsYI9eHXoGFm?+(`nbXq
za>@_M`*iH*el(a!76-U|w6KA~1`g>stn>fI@h|0RLmj7eoZ*&PoO(>hNv_vod3R7g
zuHyt(Gdp9_;#AU8^!#<+k&pDOj&nM$a1-e`uj2xviXmUpy~Agvb*UG1>}#0DQfaGv
zSv0Ygq2QVhy`BFCLw7j+y1@5Vr5|3Aep7JB<lech<BpC;4Cy-V>KM%j)vUA!I__~U
ztJ3f5;G_M+72aqM*^8<kR|-r{=KW&Tapehvzkx&pc@1P8mD49DKV$HHU|@ZFe;&h&
zU<COL<Tr3`Vsb&ldsC7BhvZkrCl@fhGt#Ex-W{B`>>>u9HSnqdAA1>qf$|0_7$|1o
zIRj-3lr>P?KnVjS4U{tY(<fOSn|$WDa`Q?~X#?LpqdYvWlsKW3E1Es#aTbr?<#?^u
z{ud1Ig#5gqjMcSHC~Zq+zi6PMfvN_o8K`7H8ji{asu)mCC_Ha4zP)5%|KjwnD^rPi
zyeYie+ga5OylkL`fvzW%R}9bW4cq$p)fdi!my--;5=Od#ItG#q_zk2OsBPe_gzRJk
zwG1v6YKkg3bUYpaSY9{0^TY5H%A^xYz(A^jHw<vte@=Ke3p!q!fo=P9o*pdqh8Y<K
z-ZYSDpq>GSjyG4P?mnT^HLx=??aB#-deSD0FnMf$Lj#Qr3^6d2>tZ0=Kt}_e3^X>-
zglZUg+dz(iu?;g615L$BT{q;PCnq;E(82%#OLGCZarnN7)s_ZYaTW3g+8cPsz`F+8
z(i*Gf*7Wez-usg_G;DqEjY^M2>DgHs?F{hFk}Xc-9Sr_wpv;1kN@oLI4D>b7kKGM)
zGtk38PXpZz@7R!lOva7(=nN+n?*x8QX*4GBeFMD>d|;p#ec*(*)@vST5%e)If1liO
zX=?qGO0Sbje*+&H7-ZlcvWpt>00RTL#3yCq?;0l0=+>Cg`0RT5BLjmCtl2KJJXoGS
z%)rM6CK;G);1dJG4U9H0#z4ZsoDl{-HSie)j>sbgXOw}~&nRsA+(5Z~IlKRn+uq8d
zGkjt2yV&xm<{4ia49gg6;0FU=(=!cxXP^+Wzcny{bKfHW^oh4##AJRinvUJc8Anf8
zCr=QRV7!4N_0#^@;oX-f8vI?42c{U9YT!o$GY#<mJI%l!Cza{K6V88-cZPuxiGiu(
zlKI;3Cj+w#%r!8N@=N5|2Go<v9K$=VR4<dgKQZt#qti)+pw?gM^9?NEo;6V9M$Xo{
z8EYpd|7zgYgyi1)<Xa~dRu}R@^x-I8i{eiMi)aT6&sbP&U<tR63E9L_1AiH~Z{PtJ
z+Q4!HXAGP*u)@Gf`mllR238qZO`jQ`tkd`g{uYznNUaR-w!T5ob%L%Jl+2%+X8gmA
z+|JL^{cui@4!Jr#WFXAoa7v*~SR$NVuH7^NcqTLqnB0uZ(=7w8fv5qS)eAX}pafj3
z7=3I{UY<-g8;Em<o>Evg3BcXA#qe&d-1u8Li(5HAEtPk0qZv4E;Dmu)26h`b#?5j{
z*<)a@fx`y)qHiBVhuBTr*9VxeF^|&xLCzrq8!Y*t;1ir#D;MBn&flp=3>-C>^)xlV
z^S`G&j&{<(DaL^!*$o!UeBZ)H$kQw3(_${673t>;oTqWPKn5;|D8yGKR}Jq4=0!m-
z33^%3D-0KZ=4BIO)HMnlxItqsmwTL2)-6rv967sx4csws*T8Kqac0J<23|n>?36O&
zlyc8tst1`K{?B^(p@IJxicJ(Z@yNhqdW(r?O+2A9n8<IUfQe^J@K%+_#Ox<^Pp<aP
zV~GOi6_m_;0t`r0Hl9)nntXouPVB^mOpsC;eNp<JQwl>zQIk2Yy%@_kEijp>SZ=Vy
zJD_rWGE10v!9;lzB~6qvp&j)ORD2LFZK8~cvL?!jk;!>pfZM0M(+H~-OuQ&KRZM&!
zo&mY66;1Csx00Zh1*POmCaRkJH3!c#-pibq1+Fe=v37N8n0Up+tD@<v3w2u;OQVd>
z^j3`^$%NlT2NNAlB%7#dBFBVcqLzu*Ok|p<XX14eDJC*ZyeXzx?zF-%TiZmyM5>82
z%E#n%6Fk_wAuv6e99HX?$ex`}P}f8jUp$u1=2IJAJ`>j$L!BL;+{i=&6Fdp9G&DWm
zsC8P&GSOmZTDA$dXl7&6bL=L9^3M}Iv^O=;%*4AUTAOH2Nio#p-g)05|FlwdWoj!E
z{By(Gg0>V)R^Ks^^mi&>=aO;>+L#!1TH%J`NuaHXcGU2whufRzdD>gwPE^Lk$0j~8
z(Zxhp6YrVmVKM=@ce?0iqPq$HMTU~B()oLuc;Cc_CI*<8T0Og$iT(tq72@7pLBZ@J
zC^>xv=x3rt`%G3Tw&=9?)H%?^P`b*KEWXSiWa1-}pSP0-n`qiIfv>HG2!EKjB9#Ke
zgc#4*!%d7ZG1tUA6C*h(dWDHuCO$RsnTc;qd~0H0EU@Xc^10^&7;R$Q4tc=dykD6Z
zW8zB_muT?JG?qMPlyYa3uTAgWDc?eWXX1MklT1uDalw+un#?pMk2le4P5KWUgf4VO
z>3T+~xka8}VxoyZPvs0hqf9%aEIy+w+9*%q98FB44wI94lbue(E=m2-#7qHZnBHp;
za=z2#^^G$sHqGEu#%$rG33qbl2*7uVd@%f(Ueq{^k6`mnEHJUd#7+~xnE2I1$VAx0
zZzg`{b~drx#6lB)m{`If&rMe^?N1Ynx#`X*V?y#GvBZ3T$hX;iqF=Tr?_UfBCA0Ys
zpM~$lR+w06VvUKvO|0TLYvk1?4xCZ=U`V&Tbw(jxYhs;=4JQ8K>RaBQU0BxhDtQ9O
zx5^u7x+31L51J@+R=IRgu6|bes6%SRglZyYB2HyY=q79vjtRqrX~N<jT%KD0tapy`
zAC=n)z-YW?MXJj#rTtOUd)LI*K@{MN%}pjYbH)Fbx0%>tVylUFqVm*s{ud9(gU%{^
zOW$^D>UI-z8f1KTR;hU=XP1fHCeE2SZ(<KMG;!3#F~$cI`%N4+5jm?IFmaHvi@V;C
zn`CC3zv`V6YBb59-R7TF`b|ncLh}~Q+<R6zZt{&cPMJ8(RoI*N&RK=eeJ44=)pC_{
z%BTiu|C#a`6KA<<vx+`FlyZ+;Fmchuzb0<e-%MOKal^z-6IV=Jr6-?|uZ#7%CL%!k
zIfaD>51#+ox7|7AvvbNVq34Wq-XAaSn7GTW!SHV4o{9S=9+>#Ly`Sevb|K|Koz;he
z$pzxO?&ar{$0oL&Q=XVOb55~h>BM;~BwE<wV5@_?7V=rxXd!4Jzl8!8p0iNg^6~~0
zv`|z4;z9xx7PN?kX9XD0o?poIL*Qb9Qj%FfOIRpr;bRM*SSV$ow1q|%vMiLbP}V}S
zg_;)1S$N(;6$>v}c)>z>3vF)rDq5((!3#?t*GziRLiG<MVwOkeluAONvV{WyDY>9T
z;i?wqydYJ#@Un$!0yiusRenLLVc``El7${cq*pD}yIj;~VO$eQ>7GW;pUF~YRY|sx
zM8#J6$?;nlQCXVOS0=vMPOfDk&B7ZNUbDa~Os`u=u~6GWz(OiV>nSsfLa+DaC55H0
zUrSPF%5PPX`m~VJExc)=u7x@lGAu9G$K=*BlXWl!aVC3NXkdZ4HKttl)weLcgG^BN
zymI)Wuc3vWgA&-3ufCLRp|OSD7Cx}h#6pgRwieo1P`EDTq-GYHTWBh9>n^hV(AUDk
zTNd82@UDfoEiW5VOAD<m?EBP9V8YVAxwJ=-5<ik!i`F(==n)cAhmlrD_XIxkC$zWF
z$wFrfGm|nqSm<b>TO&z6uN=MQ>tdlR%}5Q&w9wtcdpuQkkrtJax+_xpG%xKZlh3rQ
zDZOu@7X=h4xxGhcca%pe(wG;dFS<#6EDW%`ESJQ6E%dX{-@=C$Gl$e+*<39l`@GUN
zK^kabkcE#d47M=T;=iI{hz0ABZ+c-bt<C+<CE`=71I2%pr(g8__GiLyu9}7KEsV7=
z(!wYUUt9Qw?om$q)WYW$zOYcDp!AuA*##tm(H7?Wl8!8pzqBw$U{+~%X3qJF4qr#w
znj~F#&P$5*E!{OoV)>3B$pg#{@`HsRX(Boj9k`S<-ogY66D>@#FpUdpVX}oO7N%Oz
zJIM9=NztwnGX*gvNVJLvzN(cpvmKUR^3AZk3__>-N<UecW#M-V3#lQ!m&!MnezEW~
zou`&Gj~ZH-%RO~G|LYHY%#XT&mN{Q^!LmjfA4*J=@$LKauNHo@@M3-G*Lu<)igea5
z{bAux3#%-wwy=nYe+z$ESVlb+X^DlU7PwM{U-H(Dt3$fn!U_x7ou!rZfsb=4-1l`q
zuP{Sz#kGE>w51wrEUdGz-ooD&)(XW2^_H6TmzjEniji)x@DB}A+Ea;zAY>tI;ew5e
zHX;^OdasS9HZ)p>5ynOV8-@kb!bJ<0xWpE0daQ;0790yM;}S1qA!;FJA#Pz4*K4+X
za;{vhgOs!?@Z@D_vxOstB<XdjZcC4|&EhQyyDaQxz&Wq%;5NDE+eyt^Nd#}M^G_Qr
z?Xj?zd$XBD%)b3+%b|Ai-NMoV3kNM6w{XJ3Aq$5s9HkSAoKZ&v=&?Y4u8&;!HGTm{
zKE@Gl_~t$IowRVu!g(QZ+QJzNXDytgmF{`TrYLMKkeOHcu+PhR!UT70x?q9)Esdqi
z7Oq&hYvG=Ss}`<VxMksAG1PSnH|QP@ed^#GcBJr4F($JQabzlR+rk|x>GP^5dVBP~
zg$EWAY&>J*p@sh}Jf^_EzDI&GZ7K1BY^g(e>4}9u>UdQ$^VmqVJux!#3Xo6Grvl`+
z%qJDJQOHKI@=~ge!ZwQ7sA!{-jc08XwNc7OX&c~DUh+L>qqyzmpD$+P_DAxoKB<J@
zXEB|N4OW>5sBAGWyG|J!Wo<lf;{_Wdi%8{c%)3~W9UrxjCZ1Qy+o)jUMH}qMF14SN
z*q0HWfSk%Us@RZh$TnWGQPoBb8?V@?W}~|8r4WDFhCW|jd|vq|O=^%P8RwNksnV;Q
zMXEHSDSS4_9QISdOp#IoQj!h7jn{0vZX?-7O)7j|sbzzGi)#MxFz-fi=)AIbzMNvC
zHU$(ZVB^|(g@ZI!yum3+n#N1p{JsF{*l1{@k&O%rH;^)I)U)xXjk-444)F3BCSFh&
zpX=LLQBh*fw+6zt%!4;S$*a=NSvIn5G#1@+-jkZ-3gp<J%u~tc?@G;VG`I1ajo)pw
zu<@3S;WkFtc-uxx8(nR5v(d`NJ2u*rQ^`yJ^{$OJRKrGVs#HN@c`@QAznu-15Au03
zj8q+LbhOb)^y+M*i|u7L`@OuEfphr>GQ}9ay4!fq#)mcr*yv%SC%fC|W8-}ry=<I4
zU$nQ43DX;O9+mTpU%D~GE6+}A)YnEo8>g@M`g6Um_*$;>zc4@0DM#v6Qes}mfi?!&
z7-C~6?QdhS4QAq^FkA0l@!jq$bHHIXKDP0R7@U1M?CKXJ@=NrUd99H)MzP7pL>r&l
z_{_#vHoms;xs5M4>+?m&*q}b6ZLlNdd1(&v**gE1HaG%x_{PS!Hpbfcfu3yRdrqgM
zL_MD>NgXJ|>NxsX18F?1lp{?WAagX1Gs(te8#8TwRuxlhOtmr1#&ia~I?@u=pRaR5
zhyQ$2I!ZHaRDSIHkq%Q+BFNiXTK>p4%f@UQbGZ?0%;ECYN&Hy|+<N4Dadv<mDLLQ9
z0_tz$SJ9Nr(W*&ooj#a<;tX({3VEf4HvX_-*|2T=X=9NMl_A&0VjD|rrYpzaHkR7>
z%f?DN{C~b>HkQ*BMJZK4;(+UtBo1}%Wly(NHdYHUs!b)yTx(;Ujel%xw6Wd>B{_=?
zHmD)fqp>fmK^q|(VTOI~;@JW6c_B)YvUT)GZ+u-WuE8~`E^(Dh_RC9an}SJ`IyPJz
z`)usD5w#JsvE9ZF8*v+(Y;3i?EXtd?1l6Q1Hkg6-Qg^9oy2MWmFdf!5PVk~{(rZ#q
zWof64T{iX#$=x=_43`p0OM66j_AS)S%k)^`f<k(LPHy9vjpH^BF$UVqALs=}2GSz}
zFmL~hmwn7;R_g-4%;-B|<D`u<bafl2gurQfrfA)B*GB;cTb6S+&WoW|98Yh4K_Q1(
zzb@IhY$M<x)xi}TR~fV&<Z*C~0nINxU;wvqoi1wQrj7m;q&tk#Dbg*QdBbpYc+Qpi
z^253EZJOvKdGHP2T^sjo%qS=Eu6<tsW+A&fQ05m6{<9IxksfhZ_Li9|{;{Y&5tL`Y
z1P7#yMTtE8J9y4PaR;1ZJ_iLI)W7ZPcR|VTpa7o^YI$dX>0d~N929m?#KE%;iaBWd
zj#SjajnUGO`iXGh{2E}Mw2eb0ra<J$oX4sX4oW(B*+C7*yLXpzP~JfW2c;d9aZuJl
zIS0=>c)`K3IWq6#ytCJzE%R<p%v(0^=`T8{=-?#>RUK4vF#d+GvV$rPzPX@qW45oA
z^wKD)N~%PPT2eI!)g8RjuQ3BVgL7trgwfI~4tUP@J4kl$sso<`$?@)hvV$ZCb1o>%
z8n^0#mn)L@Q{LrkI;iE~jb=#U6^lx*Ie6VczM@i>kELLiM8JbCZ@9G`?7E;ZgJl|p
z9em<oxPx>DbsW6wpf!z?N6K(ekCqhpO$T)yFMu=1XF6V<Pv+il;Gm%c9s*l9XyhQv
zL5>5(LAHa&4w}#<E+`CBjBkuKPs8bz%2HDY%_vi>UULUyJIn1l%lT?b4@XF8y`=rM
zrMDcs?VzOto-kWEc!#U}fy_%VXs@Xx@rh$_52=lVwhp>c4F~Ng`N-GB@w~mggANWl
zI_M;rogHxFkGapE1qHZy398ieP7Yli@bExqe$PP<2mKv<=%A;A_Z@uTpbr<Tg4D}F
zZ^ujI*y(fW&fC(j{Um}yH4`h}^YwMm&%y3~(%(g;{1+9<3~(^e!C(hN91NmCDoP)T
zzI1!aQ=s}qWvGK;qSwa`{%$Pgx#>$UDNTLe%S}x@!of%f3%RlmMmhM@!88Zc9en2C
zb6Uy44-UR?FxtV_bRK#m`B!~kI{3=L@vA;=pTw@IR7rVKmje##l<=*C?;LzDuC=C{
z^zUGaGI>i#6dp%EbTFC5aWKL0_U1$flW4%d0#vNxtN?Z9WI0ar<U|fN)d7ExxM5j<
zIU#2__|d^!2lE`vbi4<XSq^4X^Um^54$e20_>eM((;VVGs{G77^127;oJTv$^BpX3
zu;UZySJCkox^zJ=6)JmuSU~#C!SAB=v3ShkfPXqz<Y1kH^$r$0SmI!%gH;YQ%i%8v
z)#fHFcf2Qp4}VWsM#(Y~5Bx2PN-OAHDc<KWNLSMtmiyPx2tuAu3M^~sHj4Dd9|^_V
zO4Bl=4G#WsU^p-xY;+KGpgPbTgm}diDeNHP;FoSP&r3Wh@eD@%Nx;KAr19XSJKkA~
zo7Zw+JBT@mJK(l;9Jmgmj(1wCf6+T-@o|aWc>vo)SGnQqTTt3e!w&P#cx>gC-{xRD
zIW8hDb~xDSV3v#7E_TtL+|({!bFs(4UM`u7ye{@R*ze$;gZs47Q2Bs^lMYTfIOyOI
zSJS}}2S*v27y*vwUz{Q3tns%xo}c+Gk2C1?luuB%zA~%7-t{qG{b>hh99(j6*}+){
z=Nw#cu(_&q-oejz@-a*EDEe3x@6#0*1)ojrd&yTETy=2M!7W-(maaLt&cSJf$G#SA
zybm)ixbE9|-M8Vo?_USE9o%tnS4eiesPI!w%zD~Gl2T^{D7Jf$m$dnTga5b$4W)<N
zm9-=mKFmIH@Yul<x_t%d85h-LDZ$108VTH4%t_0v(Rp0(Gb?P(=OVw0N-iq9=uS6q
zQP4#pfxDNG3cD!cqKu2OE_3dosEgt*O1OZFVlFtx=UhD3Qzn>s-`C+KDXEvt`EueV
zU6gWB+69?uRV3!z=GziZpD88Fxp>~ii!RpQ_g(2Kzu=<0iwdrnVY2)hfB6Lg4=f1q
z!vx&06<zOZ1w$_?JT_Eu@u~}-i<ewf<)mCxckznrWdVKJMGY4xTYwKovmX1%nf<o(
zl#Xm5Nv`*_lI(i#B4igyu9rfY4<>%sOTcanl=-ot^|caf3W4Km{I9!6anaR9Hy5>C
z1Y9(A(aZ(ymg=Iei%b`3F5YlG^QH@$;UepEsSYP~#YaHNH(hXZ{ghv-=c2xg92ckB
zOATB!bdl|%v5Q774)#yreKyO*GmX6)E+3*xy(Kkqz56ep_ZOFt`nHqUOL4uFr$^d)
z8E%_%SQmHi_}aO6%f;KoSA4X2OBbzNyz8R1iys&~lM+pT;ybPv>zH7+jqAl&2ClY(
zGoZK^+!+1ZbAeoR<Z@T$8BFQSIbQX3;>uQ&mR$6XNnKoQY37}^y1RJK#V0Nk7@~*k
zowz=5(Z@wkA^g6JUM_xXB=zQGyGyUUnaDh%I~K})UG#G?(8VAZL)#}5<AZ>U4_yp!
z5vrBoT=l-t#9Y?WYtlz922+ii3B$PJE`QPE8|r$WN@?9)*7HbxT1wqByze@FESQ_p
zr4cShy7<P$w=PDx_|(PGg3?!P<u?UfeBolWi_eAKxb!_rNn=FQmoB(F#=R<$S=8sz
zuU%}KBM*En$-1a~=Q4#O#=Dr{Vl2(*Vw{VTon?NWgKx}8duB_l(i#(8OmZ>Z#SEAK
zJB=wWrqT~x)M_eC8sMc_=7E9b{ndW8yS(qB@}rBHE`D-B4wLaxhUt+#nYX=fZ_RP>
zvx_CPs*AZU=DGOY#X^R!`qF&Y%L)IRiv^s{RUgYQE`AlbR{zGV@{JP({-7y($b3P%
zm{WGKh|8T%;+EmPo0OZ5O@Fyq=3+e~A=B3<NXuRP?V@d3GG8LCaIunGvW&D!(A9#n
zx`t~}Od?q8Vx17?i`gMF<;!<{8yE_fHTuWJM&UEOLC`sau6F<k2}<WtU1%;g(}n0H
z+=DJ07p_pi6w6_|uv{?Kb$#ID5rT>_moM|XMqR{&*rDXaZgsr$!f`Is)7^T>H*`eK
zRu|hCrlKeu#dZdN7iYMsIVOX@iz9RfZu9)oZpM5U`>EtmX^)G&^j_6ZKKK3sI_hoT
zVMepM(m@ye9>*a;sWu-gxYob7NLboQI_Ba80}Gd?lXRTht)%zx!WX1vic8P=l1_2&
zBuS^amy@Kd!O}U#SQmG=C3(f}(ghb+U0ic<(ZwYfm#Keo>55o8es_uZ>P3a%x{DhO
zmA&Mi7kxK{>6i!pUl+F+74Lgzp+#>=x2b1sX%{3lAl-9upAjR9JW)Jw@zBM8tagzG
zBqt=ki#G3y6wodnyLduhYAYv1J<5#Pq%3(aDTz_=WSBq7Z^SEkqp03qV#yc97teU0
zKokW<6VI6x_`If6B#LLFcqxjiQ521O_u`UKl!^jT6cg3wqTUy^N<>jS>fPM^8|v^5
zKK`0dZ!MROq6}N3-h*@5D9S}qfgNi}&+`%-wu{{N7rA^Cd<2NC4)CFXPXq*I2PN=5
zOvNZFMZK4|uU%5uy|NgjilBS|=W(=J6iHF|qj)t*svgD5QPhay6;?Um6`vG^FN!AD
zeJs4yl2VLR7V-pK!Q`kH%6Mbt2RLd*ajBpD=$7yGC{m*MB!=NJ)Q%z$#pNijM3EXr
zS`<^Fm>R_!QKU!FEsE|@)QKV^inpU^8O58tbQF0@2bxAvtCc@9iiS}%ilUyVl2bp5
z2D$j{OG=i&O>#NeQKm)pIyQJFK$?@wR|HVsuG1`+(>#h60>33_ze@_`TjjR472q8~
z-xajAplt;GMhLfyqP?iHV}~d@=HgBQbdI8n0A2r&Up$qP??o{tiZ7$+5k=1^-j8}e
zQRy2+zbJYM+&hY2E-5S@MA0V~Z@i@Rk0O8Lv?rI8(NTOT@PH@=3NR>&;Q~<LBYKp;
zLj)Zv=rBP)7W5NAcU)2^%rZh$M+!PBicbajOi;FdPOldDypZQV#GX8!^HmgIM=_EA
zFmqY?CW>#P7|V5h$6w~Ml6+Zdd|CM}ito8c!i~CKR>=QBw2q5nya1nERwf8ANwiLi
z^3TvYER&;9FDnGoqL>~<gjHd>88ku^zY6?g6f>jvDT-O5I#1BqQOt=l&vU}hQOp&b
znh$H!)GWs?EAs`1ctI48FMF%}o8YX8;_oPak78jIrLQP|M6p`%|BPZ06;Lv-&G0Xn
z>0cbhlH3uNM)8-x%LHAX%U>bDN<mj~LtXK%(&UQL{fe?Sigi(J6iw@+*bv1(xxJ|H
zFaIP^a!P{dtHE4;NPw`Q?E-bQDD)`yM{ytuBMLK$tx;@?!pfD8M_~)>MBzpe&E>}g
zc&bc%VjW&$Qxuy8bBmzd4rH=y7uDTS>=0n5pt}TR>u@ohJyGlxoPD|ciC2_^Q5=fm
zl;9i|v|4)hu_%t@${ZDdHaQ*zn^;anaWWS--R&uGTF9J<;%siOb5WcZ_(Cq{B4dld
zzYArqMsbaiDu!2MxE{p~#?=@Q^EUoXu5uJlqPP{szfs(d;!YIz8S10B8wK|cefS>N
z)bbZlW&Q(L_=<9;Z5{sh<RL@lk{p)*1b9S`+L6X;LJZHuP$&laL!KCtGqQP=`~oBj
znpe<#f<8afUqGlqnSwD4Y?(;FQaFYpx%_7ZIJzaFSd7UHP&JodJmzhpiZPTBproLs
z1SP+;0A*q*o69K|!}GcL1p&&(P(gqfbNR=wD3!$cm2<CBC5D#-ejqGaEr$L+rFw4b
z%L3Gh;i-rCVvu6!7(=HR<QS4-$c~|L41P{FhV&Tf#88u6VwgIpPHK#4pS>lhE$Hil
zrU>eL!!sI7Kve0XX#%_<DEah|j2PaGq1R`D`hr>Fs!~^g%v_mz)ZwbPvl<97N;Zt4
zQ4Cq4+Nw|>>#9O#lNfSDmsT;pS5H#}ZXs|}L7T<UT!5}u`J3ppw{pjSTY#1^d@8Q;
zP7LqH&^ouZod9hFZ7b+>A=X~t4lyhf)y^?=iJ?ynePie<R-qdym5c|5oJphd@5S)G
z=tA5>fS!Uf8j#Z~hTgfYAH=X#jM-0c1__#4yH5WYK8%5YWdMCF7c*FWBxDB1Fhqc%
zF?=k*FhM!~88INk&WIRBvg0PCZNex{nI66gg*V}|7(S1oK^zU^_#%eUF&vKJNDO0Q
z_>yysVR;N+#qf0uKgKXKhHql{Hiq#rOo-vT82(B~{yv7W1eXHSe<^w=J@7*e2PXK(
z#c*nB%I1rKS88RC%}kyc!zB7l4AWw$F)v|q3_E_!oWcR;WllTm$*_9(f^T{ZGh)~{
zF(u)e(ym_e?%r7yuPHypFe`@NV)#9V*)hzCVO|XLsa~z@pJP}vC1q|59p+~y_DJ(R
z@voehS^Ju@AckLJ_>~=}q_A3QYD)8K$}4qJ+i%ER7{ebiERJDG45jV_{*2+?^pr)c
z1~Y$}o4NXpRCcLyK0xMDPAZ1_6SE3TPC0ckz*($_F*!5b7@{$(ieYsO!5Bi+A%?$W
zSRccN7}mzHj$vwA%KZg-1~;qo&AC9A3xVi@OkV3B+LrGVVn~^n*>qlJ&#5UiS~!MC
z3}y^g3~CHo40;TP7-3m@YIilW%e0i^J^X8?rsSWV^>I?R9Yc%Bc^%q3Gx@WrDTRe%
z)HxPIoK}rtXAGNS*c`()Mw<t9>&;2o5<`y<v$l$>w~u5#nv#+<HDx<D(KY3ZYs#um
zvUbI=JBIySxEP9#%eyCry)o<)mw2;O0qQ*CnnE2;?hG7^;qLochd9lPfp5BJQh%1s
zld_J+a4d#maXc5t@fc3fsxjP;;UwK4hRZQriQ#k%XJWVz!$odJTIsW_b1|HcVOMH^
zt`hZUFTJLa&YPU_%ZAKLG0eRisP%m^ue;)l<g1LvG2DvbU&j9!Zp5&#XuX>;w4ISc
z=b?t?HD$#y&xLNsa3_XC*Oa@$&VQWsG)(*_bK0dqp`!I3#PBeNd~xKD<G&al#gGuk
zGjX&z7kC`Q_Zu^x2=DzOlu1t>Gb$@j9N$j%C&rOC4jL`ktj-8Im0Hajn?=7Z5J$l{
z3dd0-4k|!Zf0&q3DDExIw0|<6jiYEBH?Jv$t}77TZ|?|jQXJ=?=`S8fi8x+~<JCAy
z#!)Jc7vrcHN9j1q#PNI_FT^onT1weC%Ei6O61!&tTrA=|vr@{(L0ln@#?w-&Tvsm5
zNTHupilcHIRpY1@2iLbs952PaEkLs@jARC`D;%ME952UFBMy2djYFO97f(AmC9B4U
z%%5ka_~MY_NQt9%95Qu|qh=hn;_%0j9LM4dfvyS3-NTtncLeC1lz%M_Cq4D`ICyo=
z`t9pV|Le-^`~E;2sd2m+N8LEm;&>yD-)pDViQ~gzMazGfc_u3{Jr4TepA-B=o=MJ#
z<KAQc*y~DW9QER;&%PG}H1)?9_|{IjIl<2h@rsS&4668zL&cHJiN`TGjv;Y0i6e&!
z#L+blC61<XwB~}w(JYSUal9Qz%Q#xZ@s?N@UUANkDcp>-3CC<jgP#q&6UV!pUC%mX
zu1pVbE+Y>GDAqQPc5!ryW5@Zx{sCF-<LD4aM_R8%9d2q0PYY)b4`v>%=<giIUxPFM
zxvtFeXLpOEdmR1Z=pV;>arB6zcN`zY!C<)lZlGrz@5j+Aj`g*&OZ7~)rllO6=`Bzn
zu_6q8eTANk7?1qfywHbn42XjZv;h90(^3Y;@e%#xnldO3R%vrm`U5xP&^U(0@jbi8
z@o^lV#4#q0FXI><$A~ySXLyfeWE`XD`BPIqi(}h$h2iegxEGXmH>-1KTFUwBO7v{q
zc9Z?Q*628%Tvu4=Az#Ju_5b7PI>4i-zHcBQ)Es)~ihwA|W}^@`O;`{%zz$ucC?dTp
zy(+y*?;TMDR8YZ27Xd*fGdsIGTW7HWB2uLH`ag5|=l6Z@JKuTt_51F<Gdnwl)1xnN
zcb3@8KCx4{?x2&(<Q~x~=13=1)@IDh$NYS(%*U#HET94BV@W=i=Hp`P+(lAnF-?70
z2E#sQPNS{4DQQ_gmgi#y(+n3iS!uBq3aFVz=Nzl^u_hnu^Ra<uoR4+X=UE3wOkM1H
zZ=^G2eFj}%V?I92$EJLIl#lRg*MkMFb?>?8@0{Vs`PfW3>=mxLxyFu}nI%_cY|Y2E
ze3<!&<>S+Qd`8dB$1(1HKDKjH^07A`JGh(q_$D9U=HttJe3g$~bhmu$%*Xw+j@pIN
zIZt*NX_wAOPLg`f%`nT!e3y^!^RZjpfkEu_(hLUJ2M3+~4?6edV}Cw=$j2dC>@~}(
z59H$@-K~#xjNo3=Jbui_;d~s)$I*OnBN&48Lrz-4h(#H@)@Ag#=H~K`)8q1?bNlF4
zD>8n`M}9t3)~6GF<UAqx;zAcA|AcF9jV^QE;bCl9mqC@1Q!PH)Gj)}ZNIr~wlpf>?
z<Rh4mW!K!>uelk1c^D1l<3jJOpRT!E=VWeMospZFxpsjoDwcodP}WIqWj=1?<7Pg7
z&&MD6IM4d|_>;juA7}FMH?^0Yd5U&R$xC?*JG4>`o%z_#<Mr8moXf|*oa(xafAVqs
zqGQ)tNAdm6Rt+;*bKu<ci}|>ek1P4ON-xgI{EyqA#9tN<rLL&(`X3kGw;}5qqia6j
z#Fg>aDCf$>F80j0dMh8d^AV?_kcvATA|DTE@cFpM>5X*mSe$X6-gnUXn`{}U^e7*X
z>E`?5o-pp^WU_M#=?koL{hGV5ig*=?DvGLT*4LGwqKFEX7Q5~~u{5K`bvL6~G1aoM
zHt)C^Tz7NF>+iGf?=7jKs)}kVN~uUv0TmrrTCY>c)NQ3zlu=PuML8A8EZuIK{KUng
z@+vB*){VaI>ux^hQc=Y-d>U)Jt&)n$s`YRIAFSXr?^RUmr38JiyQ{0Hp`xCO6xLMn
ztcn*@%(?Easp2^m&#S1*6TEM1e5|q-OLbdq6?~$Nsg7#hJWulT<yMcIT6o};ZNqi<
ziz<kFuk#Ni*i^i%qP~hWww;&$l8Ou0-F6j$>u$apC7tt6a185dy-49i)AR;1z2f&;
z72A=Mp`xKI%0boLu<lsqoQc^SUBw{{KWfNT@d~x7p{RyNDjKW!RK;g1oGO~A7_MT3
zil!=FRq>XJ9@M;w<|^8$Xs^PhB2R@|g`$F9(?Ufn6+E!Eq^cj=dn|KRx#2#yBxC6T
zXKNJ<6!e8QDr&v!YJ9`pR>ijE8BDL=aChL2sOX}itBTiDbW-s;^_iW?CVx$H@z6js
z=&XWv!UG(6Hx+NFcvD4p73+t)+VpgNydiVw4R`-c$MhTS$tyBmn(BI6MNbujRSZ$l
zOGR%LeO2^RvE~Lp?}9PQTwmXC{}Goyv2SjF6$4ZZR56H~)!XIaoNu_t4{<RnUM=G+
zf5(Ab$FjKep(=){SYda*qvBm^;GOhpqg-2tIO$VyH{DfZj*%)xsaU9Dk&4kALd8@S
z(^QOAF^=c<DkiHKuVMnv`KkZjF0Q@OP4|yOofB0oZkS2(KCO4D>%eelp%Km^t6V%k
znW9?Gdt$ze^O>$<hKji=K2R}J#q<k~*($ys?IfAS{hjC{nZp^*aDDW|I%>>QF<-^O
ztV~9;rn#BvH{A<V?CxoG^?N_pViikNtfK;H!z!rN<!q~B8MB$0JhCu^u2iu~#cC=|
z#r>ov`jU*Izd1<OstBVA)za#w`^s7u`34mmRcu!AiHZ+ZY*Mi`=J<$ezv+JOrke-x
z?kim%tElsiOI_+}WH?3y99y`GF|KXY#yZzls%5cjz|sub49~_tSFv41h@+_3q2db_
zKdCsT;!71@so1aLfQp?ecB%MI#rISKwWQ)(PW3})dM_u#HF4EV_s*N{1`RWJtJtGr
zFPndsIbx{m_-xmrTaNW>T>Dhi%yH!3bQ2G%_(8>!o9-j@3wl<zW8y!KAL$M&Gj30I
z9j0a`yEd4Pvp3yGRq!+^`IdXyTGw$EKdbPm@T=(7I`<b9CsgFC_*KPAx7-80IhE??
zsVX$u;Vrk$$~l=WZn+=)?eM7J?-7o&<d)mZ)$MbV81#r+?ttia>RAVOFvuv>H=V*G
z8=VmqQ5Ba}Tv1`Fh^hET#W@B*`USU7#VHlP)BA?I{!sBJt!{)XXTLMUo3lUDLHpqu
z!f6#}RGg)*7P}7Ja{nzlH*UEz`sSwp<G6Cmt;~1*tKz(h|5Oye?Y^MmB3F0E@#+X?
z>me?FaAsV8*Ckr@JLz-{x-f0#s)}p$eHD*YTvu^}abCq;6*oB(hJ~Q>HaBjVYt|h{
z-II>1<()mA*!yK>(g^RVc%WjIp2O3C`&3|m*E6@>4;kXhIV<$bB|cFRr|~;Vh}Xbz
z`vjeZG^{G?9NRGSx&6*Rb28WWawTZi$(VZ2UPQyi!cC~9Vj7BT7@%RGh7uY|GNx&0
ztf7>KB#m!BLoE%^P+CJ}4OKLh(ctfsTTVlH4P`a(JoB|tE}jcj&`?oBB@I8^vaiW;
zIBvV?GRYc@H5pxRyBEFhdiS=ws)lMBo@Eb<GOBB+p<%^P*E1R>WM;0oYOk_1WBEzP
zZzY_}*3_(@AsaV2=iYYL)=)=7x`vlDJg=dyhBOU!4KHZ;__n*Ah7=7iYM6P?&NOSe
zE0s$y9GA*EZ9*8?o~&{)yZ3EZd%wesIesYPd|5+%4VfCUG=4M+f3C~O(9lq`oVxa!
zjN0|>JW@L}>)f*XN6!7X-Psy)82P#Uv98c<cato~f4AN9vK$@mI$qK6YM~}{5T}MF
z8aiv}qM<2;8ro=RtD%{O<{DaPXsN-aAtT#S?T$N7L&6<*)^OKLcPy)DrNOPCwFd5~
zqM=)PXUjY8$A4sz@b@F_UmxQ->&<DW@%1}+O+$MP9W?Mr(YkPxb5EQ^{s`q6Y$pw`
zYq)%;@riM+UU%G6`?$KYHw|xV=&9ii4R2ECclePkOuFMve&5x;x9jrajJGuO(D3CQ
zcik)pEr+doY3QxtmpkshTvV2WK1HkRqk(=AU7XR6JE-UMr@_o^{%0Q-agc_=8dhsq
zqhW}Kp&F)Xn6BX+4exS)HB8hnOv7*uV>FD_Fhavf4S(EmkK*)N=e}omu3MHtWzqph
zQ`P&OgK`{ym&+QbfqOSz19|JoE?xuSDb{-$_OHwsbipxM!~0wat!{C~?K^Jb=>@JS
z8m4NPJjcZjX+m!V95ZMe8Ww9<qG6VX*%}sT*gM!YhlaE)V=gUCvwl01(>CU5n6KgA
z_bjzkJ>VpnA8;(B{oi#j67%4XJ04z_YFI{1YFMdZ(-fDv(7s%H+Z3>Vd97lHx80}C
zIyQ~4y3OmIwN}GA4LdY^L6_06LBkdeTQzLd@S%o}XvyLf7dJV1oZUpuU6|?OWuH2C
z-J7Yda#;*DpU`OcIZ3u@_*BDo4QmsNex_m35LcVK?$6oV3Rl)$H+iqSZvHMld(Zx*
zhOabyr{Q}IcW*m(YWSMlbl1I$s=Mo+Hrh#a@WPRXZ|UZ_)`7dipIN&#?9s4~dKNci
z+}O*R-*uN5>Y}Z_yVi9;!$EqwhNE}g%x)a%ir#fUpO*RUJ^Nt|M>Lf4pu7i1HT<OE
z47X3iF^xBG+uj>%`$NNV4L{SmH2kVT*WlIAcaH6ZhI|dG#&7<{4V+-pxC;wxdnVhi
z+;w|c?R^{5^$AuFJ`JXZ7`3E<Swk=&806;8wuOX;1tWs278MfLDekAawmxHRC+XdE
z(s8!m1y4=3F%`e(X3amj(Hc%k{dzs(Hchsj)^K*JZP%Rivl{-<a82WP;&6@;a+&Rd
ztgG}C+rKoDDYo+(*g45X4VR?oKf2^x+g1A43fpB3RX?y@5iIk*jq(ReY&SIA)bLQl
zBMrA?(7ROc3~QygHQW(NWRC680$b;awtE_`jJMs_@PIlQXGxAtuu)N)59B<ivpij+
z2PHk0W(s*wSV+7F!5OxVV{Hi@6cI`5j&X@XiV7AJEG}3=kj<&9Qo@r2Ay~Sgw2TL3
z3wW)2?g}1M^k9$&gFQ(0ppplzJ!s=WWe=)&km*5|2UR_&=7G(FG!M4VvQ_sW#e*Kx
zZ8bc2#slh~D|*(0njYj#u(cU$Y2Y~zYI#sw2CC!1^Fq!X%wZ8zUCF-S!HWemspo-R
zHj&+?da&>VTkWwny9enWI6Qdpo{dKMk_Qbu$naPO`LYM~h0tu6ZRkN{jIGyvt8*sm
zmQ%7?c|cQq#e+tin+KOB+FbYe)jx}{RbvmF9yImfv!?dl3vEq2mJwcCW+SKMRS%j;
zQF9rH5|?C2@;qo!z*~CIO1Qf~qImGZIID-Y9<=k|O%J+z&|W&}C`e20;6b68HWJSE
zH4i$89$pvhEZD_^t{!wN(9atl(4?)(9W8u|`j?_!9wfXL_qHsbz0v%7dMqPcFv-@t
zplu%^eFgh@&|k;^!GVJ8@afhJ@nDz-!`a&$+fc!GJa|_KB{b=dvuq<g80*1^c{cKq
z9!oMxaI^<wJbX{GJ2ulQ8YhNvZg<>x4=&EOjpyci@ILhxMaw8Ac`(_7TLx|$nBu`y
z4{msI(~D^yO!r`sj>S4=c=*{wJoey;2eUkw?ZGb|{OZ9R59WICg$G|!&mPS4V5JAE
zJUCR}KHq~4+cTGOA8A4!yivrq$b-c~2Cj%_c8Tz%f{*eXlq@H&X5G`Wf||ULa;{J2
zY7f?Uu-;?6C3`U)WO{nbHMwg&Sm(j#_uMrr+BYzHu#qF)bARZ;N75VlCXqz$xjz=k
zW)D8`V2cM^*^rLo!LEvqZ8Q=g<ez$Q@1C3FQt>om+52wJhiQj2r|>Hec6zYig9B_r
z<G=6z+JkRAxPLyS4`0!rXxsEz*0=2Ne9Ctol!+$Tq6y!7uv;X11X;A#gM9`3Q8eKo
zH`J_m%wwG+{a|f@?Y~nwhdlU^DmD08Bnz32@F-BgfAXMuzvdJkXF%wh^0Q#jpJ=`I
z--CP){_)_P2dW2}2ObY}>U?Ozh2l1j&i=g~ROn$3c@Xx%C)_Vcq2WQGfCq(qk&_<r
zAnL)R(#|u~=UA6X-?{JR&je05=D|ss`EP>13;yv`!Vdum`HO~EAUVzH&2X_H)88JP
z6*>E4cJuUve?9omgUcSA_uvAplxB9@KH$DPHQ9bi`1ju=QF28zcE^Le9$fX{ng`cu
zu3YSW_bm^m+;`uk!Q6N6y6+|@IeXuIoAVcbPjvNwk>m^eec}8x1Jgs=?Y>N7Qv4$+
zx-cm|PDddf&2%)^QCLU3j&vO_=}6E~M7J!toQ^~tMRg?UfR181it8w)Tf6_o%jqSA
zl+@AEk<P5KnQuF9JT@_xrO6N6rFE3i(e;$m{=nVhft#ePj<<!B*HJ;*R@6~RM`az!
z?7u`B8#bSmP(?>o9nb5it7H5FH{WYfO-FSdBQLa?vm=L>k80@FD<+=Nd8x-DOf_{p
zC%l$mZNWN%%O6-TiF!fDi;}G;xc`B>)t9zmE@z5lQw3SgCL~SJE|}9a>t!AFb!6yh
zs3Z8m-9Sf;hwcuI?EgM+Cp>i1upK&bb-bb@Q%9DLY@Od0w_a49qvO}5spN5u(zFAq
zsm<(-bhsb7o9ZBMtivgUyb0Srbd#|3RULPnj)$2}mySFg@9B77M++)hM}HjybhOfO
zE6>hx`>;113P<6a|8=~kqm%G9I@+?1VQVK@mbTZ?p@4T3(r;(N>pD8?=qcGQf^X<}
zlUpXdn+~Sl58Z6e)LlmpZl8{~q?8gCJ>{&%Y_I>xr6DDK#f19l_}P;~TOtnBF-XTm
z-FkufU>!razq<7?j-i5Mb&S*Tj_`K{hY1cB93ePTkWEJE7+t`}=s19E3YlvDRcyNR
z<yDvJO^{N4Nq*W#ai{vkH|-NQNylUzGj;wh#uOd>lI;v8({xOF=$=aLt;;5v&W-4r
zvh1OIhK^l9>uV$KlD0h$-LvTzZrdCkb9H>6W1fx$Iu^3S)Xe!hm_9q7LQZ_jpW+f7
zOKCP<IJ{V<W4VsYI<Dwgp<|_vn2wV=R_R!+<69ly=~$y<t&UAPKGLyH$9f$f(itzL
zY|!C*=w{kT(%yDK__J+o8*9h2^kW^HIRPD?>-a>+7Ea8OdhgBDt#p}dDcdB==ObDl
za(pVBhaNuby<Nu+9Xq*99ej-F3n_Zg+eZE+g`HEs;y$)XWe;EL)?MNiTUt;2eIuNY
z^KZYD^1Y7T+*}>M=$Kt5eUFa)+z1_eCA&|M^1SJGPV%6RA7m}OYjNZ5I7$xb_)#Q>
z1t~cq<fx9Hgd8i79~Z(_zv?)l!=ppjk<V~c&z4lirt0Ve8##AMW1y&Ni?z(GKRnG#
zGt&`Z+edDn&L5$8=A%}W2W#4bbmW@0u#Sk1knoYqo3kj&Np5Oo(uE(n|9!?*<B^+k
z*8EM!?>f%u_*cgtV!hnxzjXX5A!73$>peE7bexu=Gdh}_vY*xQHy!-lRy6gdX{g<!
z#XodaGnIsgcrNz5SkwhBWQD!cBlksG{v-D#?gjPs$eo>+N8wc+*BEcTNb=&kjvKml
z0KKi_rf%I#%Q;N1W51<?x1_Se(pQq2)J?ym<F1Z-^xVBU_jQ!;qQ{>O@&`H|ij_Xn
z@mR+b9dTaEXp4JMNC<hN7lnn#3nmoEi+EA)ymeq@D(XeC0y(?A@un5DH$8Hf^x~Bk
z@e}@Zz>CseBzsZGi!xr6^;+jh2Ohc0dBHncD|k`S3qD;^UXahOdRkhiA8$?rNo6mp
zc#+}-qia<!s(JCO7q=g|%}4Io72BHPY1O?T*6`vPA#+@AW@~!!oEQ9@J--QC%WL^>
zZNWNT>zjkm3zF3J;sxO^7D(!Oakgp#i&DK-1Y@!ZNfWetkuKyV!IuT=3$kVdFW*V~
z|E<2B7?<fqmKPJenCL~e7dc*Z_M(dyxm1f6E-&&pLoXV8(bS7qy>NQ1-&{pAav$`z
zHxbS(e?#$8P0hS$?zOz0UkK$FMQQfj>lPfVg1tR8BcvrwVv3`c7j7>~9J4biLRx##
zMo3%1b_Jz{Cp&t&Z5_Q<;N4!q{+budJJ>EZw|Da5buUPmcr5GcMK{j8cHC$$20clA
z!;5!huix~dyBBZKmb~cWMPD!8_M)d3y}fw;v3o>aTdBwHUS9MoX(PY!L)NC9x#a!4
z=<me<F9ve$kKJ?E#dm$|X8l244EAD(7ei?S7qUh@cF%w8-uBqdh7D?1&DqJj+^oNx
z!({Z~f)%r}MtCt&_$a}u?c!;BW4sva#p<f|ab7&ykTm9HJNbB8-D5Y&dtSWng`W%e
zVv-k=Mb*D}F~y6iUhMT^AJ6~2nC`{rUTpVbh8Huv*5eqfy_n_2Y_H{LE4<kKiEWM-
z^SxN$#mY&kbG`V$i;usvQ$CM9R8J*YD7(f-JeCVtB)C{`iQrPfWnOITZpCf(%*rdh
zSmm`|A@ZbFYP&M2$M|H~g_Jci?piO_d9hwvZ4msFZN2zV_$Dtt5yJW(3HjKI%>|O7
zFIxR<@nUO%WE-{J&Junmk`uM8IqdKvmYMpM7dyT9!iz6ClOfiV=^xj!YBKGTnSA5L
z*WASFRuS=AFTV5Q`=>?cQ}zhiEqJkUDqj=PVMOYFuXO@>(2Gtpa}EgS0d&~>xF1A9
z;UO=66n<Fnh~UwJ(w~GJ6Flz4&js?YcRC-<$obWa5k=BYc#-dg>V+m*N_<{;3b-!B
zE68}l(p3}k0$v2YIOWA@FG6(xLh0v!%>2WPu$Lbn$AlHOsNhL2u1>O<R1OV(to5_~
zo%e0O(Y5Q@e&?WX$FY>xo&NNK&Hoa#$YVES-5D<~dvV2!zuCVR|9EkZ@pE2Wn`HaH
zUNlU$zkJyGRmgPSiwmL|@{2+)dGTL?gf)kCj@#QX?wKjL%7%lS*95N%D$N|X7#qE~
z>%%=C?vT)1eR!8yFYYrs`OwgZ2VOk%qP!0ke0b!=V=s#PP{M~NG79gSOYkAi2Oc_^
z3i(i2c)Z}CM(Gq5@uBUf_Cz0wvWLfRa$+$b$~<wu@Wfrxhf+Q)8Ju0#ha?~1!~7=p
z(mpIL6Hh`s*(;%p4@72(IZxc>eAcPdpl8!7`jG5HH6N<`tRqn+4wTO?VcB_6rLxbu
z235s}sy^%D4>^&ut>MEnK0NEgrojnRT1}s2W2rvaggoa%Egw2Qan}~CBlx^vUBMRw
zUle4udOoBSaGp)2`C#|qzpFVf`7r2l;;seubRPotbQ0prKGgT&)AaP(ALgv{<Tmhu
zWRE@F;X|emP9K{1kmW<R54w@V<>bheNcK0)+*hPYt`D#HK+?#E#zOdup4p`8_NG3(
z>capZ2Kubydo$|6hju<R_rc{uo)0Z3pNQ5zwDh5s4~it7a;*I})9tfv`ej=Es+|&&
zHq`1kOW5SMtoA;1@S(2{ZyR}c>N`97(A|f(e0a@=PBOjMeds2HYV7Po7ulMw1(Jj$
zF;vOEDM<fi%^t%02)^w@Pa%}|64Kj;|8H2t#zFhZ==}vpJaKa-gM2t&I;+rX+fW|{
z`>fDCM3Cg2g>k&jz#ucshv7c#^kJ6|BYYU?!vY@``Y_6e(LPM^VX6;fd>Bi6d*Ytp
z!#EBq@rn;v9ey`;ybsrNtoSz3hxdHAb={d(H}`!XCiyU#HFvdQx>CtbA;~l!R<^Xw
z_F;|>O}nN{_hE*RnS!$frwmA8(Oe%s@Zp=@N$VQh=W%GJ#c_#owv(rvo+qjGpLIJM
z$MI*yBA<26v&o0WbPf7~kDpAkj=U><Sk5K)O3(N>V}%d@LrPXj1=d;Z!<quV)`xY%
z*B3}O_^?s<hl2NCw7UJshmU>OEE@R4hb_!*vDUuThi$Z2Iv25K>gFeI3jNQfo_;a)
zbGnreJD4t{>^bcCLI@v?|KW){zGmu|K3uGn`W4NrV=60r%_aK~^}+P<<*WG42h9hM
z58wN&^B?Zl2_JU*u*ZkJoQ7dz`bo$>!Tmmd^&1C;|KP)6A%_Hi6fD*!_i3vml08}=
zJSK!i$9?!&_%8*LUm3N+aV*OBSr?|5R3RZ*<GNBsbsxMw_<VS*Wf}BhAFe)e`+XQ+
zqDfITi+dFGA>>2YXZ;K;5~oBMSmKoSaf%X`dAm_=R-6*!ChoAG_Th|J^-21m5AVb&
zzx(h9O(jnG(}%x&_&46UIZoNf9^#Z!J`f+rDe+sJfBSHSgZgmR$Ip@D9BcY;fr_Q?
zpQ=~2r~N#&dOl^usd|^5Ph<8HBaaW43xvGz#Zt;y;hHS%HiNtmIrZ(=1#kFpQ{=Y<
zDW?)XIo^C(O=p!t%Ff-n_Zj?s*y_hNKOQo4bMk(?>&IgTe;;1-qn;mel$iAr{V3{3
zA-`oyh5eR7nBs*b2o@1+R7ff2M{z$&`H|%32R&0W67%|OOD*9?Nk2%KR&Gm$AEo`)
z6PIQER-ErrNGapT=t9cULJF~*pI;ugT(yE9HT-zSkBWYrZk?Je!b*ab1*-^F6|5%6
zR@H^@T@cR-sqIG{AvFb`^P`p!)?8LU{(0eiztgW*tTUOqe!L)(sn1*9k>W?HAMN~T
z@5dK~6q_G*Khph{Nv8=Gu4H@3kF?M2uN=y1%O&%`?Z?0S;_Lg-z>f?+8j7&FA1*%}
zeq>5E%a2BWG!~xiM~)D-&GqAz0^VeMIwej&Uj3iMkER9u_tNprgp;ruQ=ViwbPFLZ
z1zY*y7NYpkTFC$UZ{z3vW?5{w^K{O{jLZ&x%hLMz(btcTe!S)fA5`z;M^`_(`K`yp
zU-zRk_oAPziyy}dDYuKIcKX5oh99v)%A2CGGJ73-yq!wxF4?yPd-(CT5XyV{(Mx!5
z!QUHL8t&&ue?JEMai&Yw05OI^f&=}ySx8}`c~qN%&v)mr!Vo`(N=+UGP*@q}$8bL;
z`!U6j5q^yHV}c(O{TSu9P8G)ZasOHCs={bLn!j$5v3^Wnl`zha@wC--=`$+YR|xV~
z6-(dqqghM)`?9Uv-${P#?`v)JR6nNqvC)qY+1!sAek}K6g&#BhnB_;4a*kzw%=TlB
zAE&n37x^*Qj}QEOWvG>9n&8Qu$BB7z$x{j|3ku{5=^aONC|vBv5)rc6QX#BHIeV^t
zHEE?EtEjF|?dxcYJ)5ugTPHJX{k$revqq3Y9&o9p^?t<DC6nzNC@-v#q<m(l9wx`T
zHu?E14?gx|GnbH%`Uy4jYU=q1DV2`J{d6g1i{H8y#P<q*O1=5<i-BJaeD23~+Pr};
z4eTIcbAxdkU;6QtA8M&go|){VJ@d=Iv>f{Bds(|!G~AMW>&JI~3@|Xz!1pvH`jmke
z4eaq_FTKN$^R%(T%07-oZBx&F9Ps0yA3ykUlxp$g5KYdHBXo_C*@yiYSXk-!Yj$#-
z^p(4_>wan{3GKGB$NV_%$Imo?!pf4u%2$Pz-3@alZ?hjMteo&8-;anNQO?#6%@03g
zmmeNKbU(a)_^9^6N~ExIsj$Lbo{(&3&kqVK>^a~^(2tNGVY*DbGHPsg`I9-ENrP?n
z@&~h7xq7@}((?WI(~rOWIO)f4e*DgW=EuuYpY!2m#w(xkfy(UW@k*a~<rE_rP1ldV
z{op`j;}v!|H(ps2ublN;mp7UHM{Mt$AP40@7yP*BM+pNZ4P5f$KR+HZIQwzgk1KxM
zp$q$Q)sJg_-tvdr6n<vs(A(pc>(a>$I*|~rl)W96xf$`w>3HQHZNQHQ4Eug;8JxY~
zK=#~m*=&9zUg3mEIDsb&{sxK|NHkE$Kw$&%1`-SuORy&2;d6VH1jU}9I1`li2}<=L
z*=x4ii?Y-}aRXFQ?*wJ%7W<1Mvu7k&+9+ip$v_nYRSm#EX#?dAR4}Y*lrd1&Ksf`8
zr3q)dIYEhUn8PiuXdu}@B?FZWYrnovP^dIc^0@T5!e{BN8izCRoPk;fY8ZINz_SKw
zvSFQcHsNBq3tT%FMNZ|{Hc-dF^9Je~VA1cg*qC(4CYNM&^$euY5zeP522u^!478GL
zngP3kR}9_}gmeQh8OSt{W#DB4^$lbgXlS5;fyW6-=_1OhQ)yi)*x1RzJ(g}cw8KFE
z(UuKob3?b=a}4Afm~gQE>8aUV$jB5MReEcyy|DqOf#wEW2AUYSUL&iifmaP{e`^*|
zni-Z~JY5cZYf&jH&p-<UE!iaA()mk8tW|ULuO`I5T10Wn%-IQN(%L{9gZI0loq=u!
z-Z0SKKnDYz47^VAxt-NI8hDM$`P9z(Or47;oegv`&{f9e(2Mq4#>t_F?XWZZrh)DT
zdK>6t;4K3^4D>Y6i;^PB*dogOBFftaHWaZeuyNs*&3>}l((Kv1uYrD42&0OWDm&~)
zidc@!K3Qjwf%P);!3KsH7;4}h19J?_HSn&1Vf=sAz*Gan4U8}_o@z8O(m<eyGEQ2J
zGBDb}7>1qEX%w=<u_7m-mKf?8R3{pE&%pZzCP`7_m+gNRQEnAcN+c?i*}r%V=gB5a
z(+tcoFjHzy7o?JB$?nYNZtjbtHI|BNO0~1e2L|RDSZ-j2f%yg&(0UClHLy_TvxufH
z_RJ>inQe*W%jjQC<5)yhupjoe(!eSMYYeRAGLKl*Sb4Pp7X7c`I+;wZBRSO)l?}o-
z3VtZKN$?{<Hd(o?$tQ+&eEf{NU&OY>z*eephkYCU@#}<74gB<Js~i3Be#y)^8<IY!
z!h6`a^AI4F54VeNQ96^YzA~`Wz!3vS4eT=TwSm0`_8Iubz_(l=T_)N79k<D>$F!SA
z0qUWAQS#EB#yqhhu_Y?3!)fd{@S}ml1`ZfFXkb*$v>yx{qLn5p<kmdTr;sy|tn{~{
z@RDNt$-vJtrDL>>s<z{TB!|n{(q`Dt_ewZnAm6|l1AiM(4QK|U227dKu=XuH27iFV
z%f;?<_DfX!27HEfixlsQq{N^V(PDqL2Mz0VcWa^&k}M@*1G5vAh{5;dr*3Hq9(iMi
z^?Q7CFZ)UE-G!9j4E%0jaP2rIX8$nwsXj~2^p}BC!cPl6t#H=BKQti&Hw>IJ@UMZZ
zvM$y?Pa{vZUpDaZ_Jj+ZVcFD+G&3Rp2~xthUR+^VPPYG;XdUsd$u74qXT_YG+>Y}p
z;Y5WeOD*Qbaguio+%@oB2;YZrkAas?9Yoh49vFB?D-B>l0FM~E7|jBxAHWj>aRJl_
z;F$ml1yDGE5&@J9AU=SEfc4k;z1QqT0&<O7Fj0_aQ+3uQ6$_wv0K8buEK|pFMN0*c
z6hPSk$_0Rc6<SLNP$s~8$r8!=zx?=Ojd^u~Se~5+P&t4q0aOftS6#kXZm$$TvhWJU
z)0w64r?$3FlhUgOP%U6ta_vJ|6kbVGss})<o0J|u!~SdlDSYikz_RC>0X!E#tpI8V
zP^_p@CxGXfiYj?UmAV1ERaAK)fET&63;cw=g`<lq^`rvptSqWj=#XCfn%x#aTEP1G
zV-FxbfSHBT$-gYBkh~<>Wqq6t0>}tpasX2TXc&MafWB-JKxP100o>eXe=C6O0CECw
z1&|j&ZUCM(nT-Q*2Jl7yv{wRX6oC6)4uu_y=QiPpcXJY3yPF1Zb&xasIPuj0nz8?K
zxy`AQyE*yia{t_u!)%KHS_bf10G$G8#U26}STC(j04vMoDgm7T-qkt){*Y|gs5$u`
zJKSvpXcxfIqDqy0ZaP={fE5-x1kh2)Ry~gC%wG5F0h}soc^^~f0J=yidDj5C34fzN
z@@4?t3;6n_=n(+_xp-T!r(iEZ3VR38NBGiT;+XBvrOAKv_lqhd132>l28nQR0ON!V
z5gZ!8I|01QW!8=xC6b~W?85>WPUVlzVj2;^$O6tkO6UTk0~iyqd|}wS_^~oQHW@E%
zCkRfY-O@sYvl=HbNjM3!Qv=q8nrQ({4_KZ~FPjm-uCng6@1)P>_B}|P8Ne**mi(!f
z=16v~;0J>91o!leUl_n5`b7|hf><2D680Iu?*S|gU|9fL1J+NN<pHb+U_$^K>3!2u
zm!C^r8NjN5^=NsyV#;cobTMU(;99|Tg6joY#OI(t3}6$rR7}|-uJKU-9|y2Gfa_-x
zdv&yZBEnaTDcy@H%+hz}7E?ACQ?>>0Dd!o$=K-7ySU=3S2e2c6U+As0OwQcQ`aXc&
zLcR>(D<L}tcL}n>*HpFeZw0?AkW+O`djj}T)X189rD&hv{s0aLIapBt2O)<7*26@s
ze4v<eIDjLpR!m_!8o*D&j|m<xkpC=%O&IY`1dtzqD#M+AY;~eZp8>j?5M9tK=o4fe
zzYv3)E+iO0u$aOW3Lsp-BLPH(n+1}X5RSWLl7o8tBY-~xxJY*k;4iw5D6@QV<#YgN
z0{AC@a{)B1YrUiRZ?Vj?f<um5|Kfc(*!eHLHGm5NkY6mOR84ZMo1RDhc_8;cPNPcN
z)c~#qa5=!Q+QsoOdW9h_+0Os|t_N@<fcx|;#+d+aag?qpcWFi4Q*JXH4M@2YK=aNn
zTXE&gQ0rRdxVKX7aizT-BoDdE&!u*4nfioBfdE1+Q<)wIFt3(H-YRXq?6+_b@j<*8
zM7<yqf+!M1auAh*mV+b)Q7nk!tdMLk8btHr*72xB5G8{s6+}|dikYp;IGCOi1kt6q
zQXz=aQbb{yAj%f-aze@n!5&z|niYc>R$L*e97L5Mo(WpPimR>~MD?I`G^xh<q-Roc
zuunn_k?bsGE7dga*&u34<>!JJ%ZD4v<<^oco7WanCy3{T)D?U|aHnDUa!L@XL1YBc
zkezI^+k!|7@|h6p=+J3iTzU{MN#)YD<6aJ0rwa82M<=F{Hz?rCiYvS$jx%%waqX5p
zGl;ApvV+LIY|jnil^}A0*757B;)<UOER)$Nh*m+kgJ{gLI@+96RGG{sK{O5G)u*j4
z+gpgR8TBm0`Brn6kUYV{Ynrzd!Xem}S@uJ&1kt*nhc-d94WeBT?M3pMU<bi-zh!j{
zqTDlfHt7_^>p^r5f)bQaD7jhO!fu>%5a)xq5X757bPr-#5X*yjD~KM{a}eXGvD$HO
z2Qe^+K|##jo7XdlUZOf`ueXpsLG&$<^b^uwaDd>|m2rcGyvwZ*Vn`5uzKk0h#5+_)
zuhbr|#6QL1L6n)9N(GJyVubLKf)tJtGCGLepQSR}xrLL}#s@Kh^9fqPd}7c#?$GIG
z1o2)F?@M-45L1Gf8pLGDvI0L&G)?&Q0tx@9YEs_%Gv$-D=`(|v6~ycy$dAm4C(aRG
zuY~eJ5c7hVAH;$n3g6CI6hyNU%D@Beg_6B{IEli=K`h}eykaNsUP4(K#Ohpo+wXE#
z1hJBn4C417R#C`R1hGf#ZA}ng1o34MFTCPd8^pRG)(hVd#AYFsZxr%j5SxU2R3QIY
z$UmI9kS#%M4Pu+{&jdded|K`EAhrj=%FON%IXOH3Du_`fl$`qZT|w*=O;VW)N+@3k
z@eO+`p*+*Y`E3y2F*1};!X=ddN+{op{NU-ly+P~?;s+K5v0wJL-#qJ7ndv|f2Sq~8
zmmmHZ1TSHQf~ZkaIUK~1AdUv{lL)mS_$Mz*k4g5p;Ln1;2(su`At!>!7orx(2hGg!
z2-gL@f<8gNpdrW}0z!hEQb~o`a1fa#l}HfLAUc#(%phVxoD}|C1>4VMY`?C_BN<Rq
z`6GxwgE$q$X;DtC`-#-gU*hIh&Lp0p%kRs59@a0Zzk@g%#KRJ4{{-=`Z0<S14c)BY
zK14@N$HgEn1<@&l*F*R(h|59L3ZZrgS7?olt|26aaE<y5rC$%?hBW`-apKJ&ZgJ)z
z6ba$^DXF(PN)V5NxWkReO}$&7=X*ii7ydx-vtia=JQf}w!u|EOC&J@GR?sUXNK#k`
z{gH3&8<CcJu$?n8gkm9VDyhs{o?0}7hn>=<l~js{P=Yo6xgWS&l?-7+`YZQmq*9KM
zb$4QN2$e!89YUE9%7(DAfwNo)<wMwAQZY&@7fLD*df6+4F!FZe%j26@3?aUhC8-?3
zno9O+Tz(~c6~PbrCrAiHN~(*5q=t}ZLU^`7Qd7utAv{w`VTC$WO9<`|ln{#7x7Q8f
zr4U{Y;e`-h453~KDIuhV(5#el;G{D(gqyQdZGtJKlqSEWzFa@^%~Faz1Y&v!gM)UG
z`dm)!xSSAjLuepV$`D+Fw1y!#gl7t731$m&=5Gwmc}2K0geD<0Dv&pp4q1VT;gr}k
zgjYjghs_G=G!MZgJg-2~B7~L&yj2KYIy7g))*-YBF@)NA;@YHieA^J(g>e2#qi(Q{
z$n8VuAlZ%~o>|#m3!(7UMoA^z4=*?3-%Op^NeGKVSR6vv5W0o%eh8Dq2Hpr^40$Qr
zn;~=$;jIvQgfKLOcS3kOgq|ERWSx6E`4B`1y+fGdOeJ4?!+ObTaa(HN0*mS=q`%+*
z!GVH<1P2Qa31L7L>z)&K_-+UzXdBY`Fu~y=?CWdYd@?Eoen5w0bO;rmq`cidm2X6>
zR3UY22%}0V<3bou1s-ZXA%uSOn@{8nSK1eqQr?qNR@hcbSvNR)atQN6m>&Z96v3&2
z(*&o7Fhj^p!C8W{1?LFP75qSuJ?tEo-Ko88K?n;&FkeU~r|*;ao=;yA!qO17hp;1r
zWg+WKfR4X0gyphiE_Q{Gl_9JWvRZJB;95b}Sr@{3;Tr^>M$`}Kk0E>%!p9+O4Pjdd
zn?v{{gxjT*zc=R`Eu|z6Z@wi2BGbuI%BLZG7Q*K={v>6@vfMI)EMk`RzX;(=I_a>K
zSZ}!mM4gAwDoJTlGk#|XyF&Pyo|T(!yk(UVPgT$RHiRFp=8^0UVNVEG!?+g4UTzcp
zE(|4%{UID+t1zAo;~*=Ca3_SjA%-&i7{cig&V+C{gd-u~LdwYyj?y?oP(#o{I2OY3
z5Pl6|(Aex<9kYMto(|6bC4|bOvtJvUJ!(WYFKeF&AwOhY-*&%iWw*bV-ZM$@g!r9z
z1VYe5@KQfboBKlW3wb|DS(&5|DGY`X3c-`4m?2be+B_UWRO*ab(L7Q>SnV6B9HU3D
z=OpE~5PlEgj}ZP0SvM`53gNF1{!LQ;8Iw0_Oy2UU>1V1~x13e1n(p-H#(k0ccL--g
z_$P#Oj80t6`ILX@hK%!cG$<vYToB<U22v;&1?xa*0_%Eat>1Dlhd>+w<th&WAzY`$
zLb<^(CFIKBv|HSLD7U2(X33fMLg6);dkpU(JP2X*npB>^KMdg!_lW;)gz-3pCya_=
zln5izJvA<Dy}>&^41Of5kYM33>W*r~Y(f}C!bl8T?*lIy2H$nRxo>LK9@b0mi-mD0
z#UdrcC>2JTFv^ClgGf>srKLkY!Okpu=7)spbi?aoY~{k%ZJ!iY2&268_Ig?xB^6~j
z%9F#WB&{k7Qc@+1s=})kNXE{KyI0X(BMe?fC8-(4b75qJ(J+i!VSIg{dF?RjFk98m
z=dhk<&tbe6w*I%G-|^zi3!Fp4)W4yy^Lk;VgweK+Gc}B~FzjLLMgp7Q11RaV+fdTW
zVbl-fr7)7ebF#EzX=UFF7GY|@R;3ln9qd1hSHox)MphWvd|W?_reXAbV9yETl`tBG
zksHR4UiJmWZ0C#GZauI!4uj|vEV(a^d}v`?^N$j^@BCra{-4C=Veqm4mel<Dlr!72
zZhw}Q7sm7+xlAoMP-$h%-sU{(Xce|jbSHO=ZyiRPFcyWem@5jST^R3#@opIH!{`vk
zz%T}d`So_Z7RH-lG_P;(6t=G3bP1zt7_SRwwzH6Zo$TQT)?KN@ZehGpAf&{Xliody
zx5DTV2Kn1z^b|tgrL@vZcyGZz1@gXO^ef=~g$xLT4cUZ0r3cFbNqCKVNEk!I*2U`M
z{m^}?V^|o&X=8ii=Y%mLjFDl?=46W4Mujmtj96;=v@phmF*c0%!gxQ7abb)PThVU<
ztx<v-!y4n;@Y2dec2!zopqmuN<S?d4wP!zfQo<|MBvZp6nN!*djMKxIL8H2En<+R;
z@Yopl$EB54we8O(+q2ii&6Sya5XQVP=7+8Oa+wx}aiFxaK(b?}TasOi<Clc7Gz>Ki
zEsSMhEDvKt7#lg~v9=Z5eZ!WSlC?67Rbi|SV@((rN-OK6bECAfmV26PXX2{YOA$FM
zd>F>2Fm{HqD~ylA{Olk;r5d^8oiaCvu{DfsVSEzCmN2?3Oy{>6`E_7AKGVPN#q;GP
z^Ifle9>(@C&yL(*hS8^T-j1;K_2)0bXgvX^s^k?eqqHiM_mxy&og=T?zm{$KCX8=s
z^M{jYlf2^k9o1ekb3eoWiOlb1<93I!M}&I?_X)Djwz_!-cnFZ}4`CcDkRKBAqu}8%
zjugm`hVfGY=ie5`3;54MexZg7Bqzei7yfiCPZ)X_e}?gwXqbl;FD)$$Kf^^BzlZTh
z7=bV@%6<i9r|e~v4HfO7Fv60J2u20DgC;GlfS;tV74Q~G@p;nl$?W*<Wt3B4>t_^C
zrOt+Nnmbk8c1DooZ(45|g@h+*|AcWaY@Nz7{Ts&l0)9cr#V{@j`L95JIgBd>eCnOV
z>tWmoV@CvEL~xVF6Gr0*oDtj(<4zbQBPbQY-7xMkVn<Lkg8TH`FbYSk7(x?z7)CX>
z?MWDqXm8)gkv|p*i{c_E6hXJ-bP5-hQHb#o%hz}pUqZyXR9J-Beb%ABSOlMzv2NS=
zsf<!QVnvb?5zCh;Bu|O}5j+#Yvk{bzSn;1t%0#RK-->?{%SKQxg7Tc$v-S#tgMNu4
zuP8iOu##Y9!775RP*q5^2&xxIYDDl?8HGjc|8^OrW(3bgz#A!RMNlV#=Y`jfSQ|~@
zgxBnKBd|x19s&6a5xgjbyq=I0!Bjz;U|Iz2mRSv7l5D2n%YqcvkKp0(<_#p9A=psR
zAy~>t%o4(y*+Oyza|K@!Y()K(RqB;hnnchvf`JhXir@vl{4;`P)M^Bw<ITA=SHwDU
zm8+KCA%aeg)A9sc2(}b#6@gm_OBErlBWP0~X)B~%1nq_J*BPsIjNr8hX!D&SSRIRd
zBZAi>7*f&RV?;vd2)b~yD%iV5;3}(h6YNn|As<mzc{76U5$iI@TM_gS^0r`a!JZNH
z62kh{MUt{gp9uPjq@N&#{e=vO;F#`Ub}+|{V0i>9A{ZLMI}uEb;60jgo3wW$yzG-R
zEP{od<Banu<ijHvAwu$z5sVT(x<E2U$k+(R2^lXqLGa<U95#7Bf=Oc1A4D+iZpvga
z&bh*;2u>vmVd-=sGa{HNWLANEb_8>T@5szzwasO%vxs@pEjMevkOiExkVOUZ#SttK
zzO+EHObGv8{Bet8d}h|l2v%_~B3Ki_+6dM~;Q!n{^2-Eb?IF$AOLj{HTe)iyjCt9<
zF@k+%l@BA>6v0Qrnf*kHK8|3s5K35+_%ypsgrC!Sg?uKho>m}kXNVBVml1pw!EX`#
z9>LBCc12)B5QyOG2)>EnhX@Wu@NER&MR1V(T3*t2TeMI7_Yv%lU{A#Q3nL{reP0Bg
zvdZ2F&XrXt*&o3HhJ`{77TqYTB$cz2wj(q3#|REbphloYaD;=NPsx`^MRGKPpG0y@
zkdos<evaT5A-@WqC@A%hj~}u+fl<yAfgXXE)8?~>#TvUmvr|I!G4hOWF{wkIp8;e>
z>Ie0*f^;!%<*#ukWzcX0r$4dBB8Wt+E7DOx5;KC-_)HSIVPc`8tdrQz@ka!IM&O7d
zGm5_=I2FN_2(Ge+2>AE(-w~Xp>N;efVIV4}G%2V2Lz8|k>w=ivR}&rQB>Qg!=c(<^
z>Ay~Nu=JvoQZtu?{KtjVi@VJIx}WlMvD9l3T#uk^6y>70!QdZ3;V9yxxW(WfvF-?c
z62Tn?f5xQ<9z}4E%Z%WUUM(KbLbB6qbZJ5C_JO0(?DSn}xx72#aRg)MJ4o2p+b1(F
zYIRab@bz-mrN4wIibPQ=iliv6*m4u2C>BNWD2hg{`{<aq|CJPJZ!Zx=$tce%<HB<t
zWtuqIaBw*VQIwWeWu)@2ik&^oDyMM7_C<@9kD@{pwW6pUMa3wRqo^E3l_<`xOGr(&
zmr|Qmids>6eL3a(%JEgBs2;Wc{-_qk_mq@VjB?hk1vR30M&!>5))ahBkavT#LY*j{
zkK&~$UXG%!$X}3dS#+(O@}fxUMUg@xoN~JmTNG(R7M5^O$dq0nsUJn31-T8P$e?D*
zThnM5<%R2{J_~Zv5}MR4ukfId6-9OwuX5qU^2(lmEpnpBjpAR^(Y?HNU*#)NG>W2e
z6wau1d~6~}a<H%U%cyA-?~F=iHS*?BoX<<oi{ij1c2^Yqv2&+w($>oHR8FfX+)+$9
zg{h~YMA15mQ@`Q#Z)g)m+bDX+&?km=QM8ZZL=^c^bcmv36kkQLlbaPqC#oWfiBY^B
zMdv8`M$s>dE>U#lu2r)4ilSQ-Z$!~UvTq8$CCJk5oJkP}3DYNK;)!oZ(X*g*RC%Sh
z@IHc1<^6>Ziej*k0fGagyfY_>&4)xWG>TDCjON;-cvnhC2o8&4xDZyGQeHWbY>hio
zB=gH#SNZPME;>f$GcJm;BEMV3erR6Yc;QE1v?lo;2Z~~O6f5XHiH=E8Op9WA6q6-O
z$rK?|qgb8jV0K0nGozRn#eC^xRuprhm@9m?;Og=U(+9#!e3if<K9R{Rh+<I`i=$X5
zMJK+ro-bfp62;OemWgopf!sBf>|1P>oR1!?jAB(3A4TyoM~_-pKG#RFL29mvVr>-b
zgio$wH~-Fk+S^8vY!duXaHovkXF=TNC_af|YZTj}*dj#~GO;0b@~KF+N3kP{&!YI8
zR$Vvu?XO$?D$QAkHNS}B%P6Qf&T!xl)`+{J_*xqN62&)Bd>h3v$$m$FjAB2HQ>MLJ
zgnOds-!X}+*eh8!-^U19(Eq_Gj!-`-_8+1+6vdBH=dd7+ij|o-PgXc8)qawmnLSb2
zemshwE$@rF;7VsT4)H5XD_ca3LZhNgtT*9_LXX03BHe^H3SSftqIejEKMEs?b9BQf
z0#O9%FHxM1A{0efV$@$zL}(`+?6D|LMiGs|jN)#2rE~?w?A+qlyLrDw@p}}1(oHHT
ze@IPMZdyS}si2U&TS1v#L7Cd#ilt|wAlX$xIV(N?Ex5LVvSn7nKb%apyt<p6=cBj~
z#Z3nAC@wN$JQshN8i?YORQ`{%P0#Hy-@%?4X|G0cEsE=OkiV0d?S4A1?aXw>^BYl~
zswpJ5qqsvakbdq;4~)00ImjRPcLn7>m&137q~vzpmh~u#$Fz16<xM<^BF;oH6U9yJ
zTN+=;M1qMTCJLK)XR|Z)XsdYBIw<(JWwEP7(+ct=MNKRIKdhiss;HDOQPM<`37Gt4
zVgIO&J!MRKDHBIJw<yuxUfKjBKP#8zc2rc#m}s&st3^eH)i_)Q6BSK7XQGygWD}L7
z+v+AN3z<?;sb->zaQ0AD$bgCpHNb&tn0Us-vnHqtmew>ea!fj>`bS%9xY{P_m`E{^
zYT|im_=1TSP4I;(bxmBIo?g41of}k7R=2LAb+BXhcCQxyE{)&4A<1SUjm;}4-4-~w
z`!AVz*+efBy-n0N(ZECp6CF)tm}tn(O*A**Fp+5@*TgF_T$W&tiEJU9QuNz+D&%@Q
zYkG~S2az{6;WWWfe!Y|TO-0L!IFqI(PE=H0l?o&-6L}_DnQ&9do1LdBT6Z?KFj1m+
zi<Tz7ub9Oq3hT^wv^LR(YOJVCZQ^Vz&D#n7vNV4Co4KbKCbXCA{ff$KCOVmTOR}$<
z=xkbM|AvV!B5AnD(ba^xHH$w5yNQZuVC9mPH>DbDb~jNk*-}mqssFZ#@2Xk5&{Ha(
z=-r}^iM}Q#n3!mypNak^ZxqBZv9SRhC0Q9_VxWmZCI(9r+A0mES+df$t(|`?4yE~V
zfv57gG-ijJ7-3?pj5X54D3jkNc8=zDw6*hOh6X^jjA8%D%A90{I8JJgH}S$e2h~Nj
zzsH%I_`t+G6O&9#HZk4A4AXMbD&x|pkeJ{`b7|8=NI6YqrfHq_a9wju%#uE53sUmh
zjP$vTHZ#(PZ_DB+^Gz%;vDCye6APtIS6|X%leg1Yp2AHeE|C>+Ikev8CRRw%YQdF)
zt3(xZv(s5Qu5*huA|zicWPP%-!Nf+oXAFrkd}v~m3BL(LN<T8O%f#0vJ~px0#3v@U
znAl<B3lm$V!e=HvH?iSL?lu#jisaj5YgXH-la}_At?g%$6*XC5?E2Eg11Z{R;wuy7
zDp}Q1Dk&{0DQ{O&zA^EwiNkbo>Et^Tdra)59h%r}g4*Vmb=u#GWS@!sCJvZ5XhJz-
zZRLvgmhnH0AwNj-LxMjFvWO;q)WlCFeqr1&t+Uo+CVm!jTyXiRJPMiE$q5trjPMe6
z*j6>67xbg?C?K5M#3IFQxs{LV+LonFv!X=6M9{=V6PHYcOoUCGHgU#8ghS6tkC`|r
z!$s)@w1;ovIpVlV%5T!=A13}Z@w@P&>+K9^+xo_HlsCqt|7C)BN{|w!zopv0Ce8}^
z$HY0=<?C(jj6zSh;Jg%FU{tYN#`d3y%O-A{xI^<3kGpQ-2BVhnYbI`0aeueS!5z6N
zlAmOQR#sAOal5%e6_vXt?lHETh>PLAi8qh7dSK$AY$ZLK2bxDF9-CmO<OHaVa3$rU
zbW$jWqLr1xF>4>`R>b%i5@NWw$Z<x(c+nV&#gGw0!x)OkP$GuvG1Q2mWDKQZC>uk$
z7?NV3IWZvyp6Zh@+Lw-jVYW;R&sJ90ZTXmWT&NgBvXBbwu(Co)r5Gy5z$H|Rp^6lJ
z|AC`w3~i+J-Gi;@q(u7ZGwdpc7h|XwL(LeTi=lQ5bz-O$vpkMV>t9)+^A6qL>iHPv
z&Q7lz!wXXM^taE9%F4RR3XgHDoDxG?4E7jOrGib6M=NS3J!To<OEJ70!&3_!*xp`0
zW*u}I#IPnUmx03lQZA2Zju<jyaL1s;kQGCA42@%O#*h<3u5{QahF64eM7jp&M!%aX
zKg62E&{T@@Vt6%%p1oT%i=jE&*0+w5)ZSa7Mpq2qR#vFb7BRGpS+R@0*(wIDvckj4
z-<6ftR8$OIW9Sw`Tb}&K@OliLxeGCLkp4Tx!1;INo^H%~P3BL+emD?~#M+=HmO{En
z<%g9m$7h8%xZW7vis4OeaTQB=NMclv80cTUVt8BX_Y`C)BPToLhW3r2Ukv6+#7?4r
z3<F~D$6#;{F${`feGD677#zb8Zcq###4t2wT>%&$13xP9P7LqHFf4}QF^r*k3~`O%
zg!wM$KDnb}7%4UR^6IwbvnUxI1F->Ll`l2N3G)5YY&9W<iPGVFF-(eKat!ZFmP7Dv
z@F`Sd4AWzn5yR#+85B;7fiIsYsnp9kGlp3)%#LA>G~ug6Dd(HvH~r=y`FN#Ot#D4}
zyckx|4y!2hV^|Qw!Wb6CK>4y57L%;a;2Thv#IW<9#uSn-je+l#C0QQB3aPm=2EJ>T
zr4DZ{k?+r6&BeyBHU{!_g3YQZyPw#Z-N@h{`#+|>14@eG`x?nATmuGjj@!Gl#MxyR
z7?2&<r4&$t2uKi7NfITBBqdAEq8LylNi-oSD4-ySl7#K<N!>jOP!SMO)bIA&|NPE(
zPM>>jy?Rys>eZ{)J-gN2_>`R#VguuoJr`nUA>QE-I0ZxeTMO|Xo%T#NkInQ<Azu@X
z4+^nKgdZ|ENBH@90>1Q~uZHG^#v;uvQp?vwvxjYk*j|W_I9YS^SnOL#Eh^u37o+Rf
zPJBP=$6TSp_XtwBw-9{eG|4}seV-Jf*wW@CpBG{uSHw8~_l5YP5c>;}SuFD#PJNE|
zKp_sw41OudN&kv-`l$Og3Lb|F@pVd0M;+$UE5y-4e9Iv8W*wtj;@<Cg#(zDxZ+XU6
zQY;>q&M&_1;VJl<))R#|$%&|>$bTrrsY3incMbJ_P)U6y!ZU?9%c$1zw2pIyIM2Y=
zalekA3vr<kzZK#t<F*img|G|ZFt@B}t`{P}X%cP}!Ysr+72FSDuxic={t$C!AtF3x
z`B~&Bv;o;xA%3o;-WlL;RKe%$_eBelC`6JS?)Sw6<AwOOl49`^^XGz+mkV))kv7^l
z6>W3p=KaE2CfLfVbY(Ro$IDN&@Pi1y7vdUYMn?%9*9&o@5dRe7-$MK$9{ZEIx)3*o
zS2n%Jva<eS@D$=Uvr}co_wjaboz={n6`J55aKp>DcK^r8(!uW?+@Yg?Wi@$(pPzN$
ztAJ_0cU^8t9i?=X(@|bWX&q&Bl+|&kj`5Y%qRMJhWyQA#4=CUEE*&E)`0m!>UDW*V
zVeaQ4mJIVj$2~gk)$z=RtZftheCg|v%8FGl%=8b5=2p=0fQ~F3**YH7@sN)CIvVJB
zSVu)2wRF_hQAtN-9aVKy({agPq6+PN+0QfbqX~h^s=AIE^gv}*QwQIz&7S9c>EpKv
zKKUW1*P`YZRrxwPR&OX@Pj}xYU026lRTSUh%tc+!&TXipk&ebXn&?Q=q3L+4iptcH
zt|LQ-M@QW%>T;HM?Yia%7Wrqi%wqA8Dr!s>*Z!tDn(1i4!ScL1=2uaCG4(cY*7Ugd
zy(%jI5AUt4EFNE0Q7v`k=;)+F>B!a5N=Kd!zmC>Ae!9=+)6rH(8+tg$yI8)5(oV-C
zI@;^tOMsaKI6IeGdO3+a>5e*{4mvvO$k$Q8h^?ZSqkgNRm~(zMyz~j@l<!x6RL5gF
zy6NbyqqB}KI{1a4$8`*v<@&s<&NuMn@Xg7C`uXmys-EENR8>vp_<QK+siPO2pvxa%
zm$@(Ye^SS@kGbEY*^IWmMczlp>&yIgs;aIl{2Ryl`!Qg2yrbh?9RqX>)G<xRbWS%<
zr(=wcvFt&|U>(DB3}^n=@jMOCF+_J?F#bq(79+6szn=J7_ggSsXZnZg;EUf|R#hW(
zyr^T8j?p@njd8<ir0%}idqVlPeE&a-{IpZ&s_MC_YMhRjbWGAQnK7wjf{rR9eG_#Q
z7pE0{vV{7tR8>=SysYCD9VOrLy-`&$8Y!R35iNIf_<QTK`4Zz9I%euvNTH5dI$qT=
zm*>^-nvU7*bESU{z0@|7UlS-c!pEh=Zz8ah`Bb>+-Cb2J5HF2+!GFA}8z+l&EY|Uc
zj`gm2-X%KL>c||N8>*_7a$Gt{mJ6;BWN{@uBYbsAvPQ?ATOL-e<Ls|)&f|_re!eW4
zm!3Cuyu}qX&%Z&(+gvhnFTdEuH_Y?927I;qdpb7iIH0>9zImSuhyCc-t7DUn4|QzU
z@sW<rI<|<-TdBFo|94fzFAyCX?%yWDZ*#o&S5x%Q4jnsn>=Iv{*zen|gM<BMSsqWs
z$S40;$0s^I)A70PenMr_4_>}<|5L8n@&0|E`S$7fLI=NV#-LiT+Rv}L@NN0~xpq$F
zxNpeU@s*B)Iu7ahR>yZ@@Ygzy=%{c{+i!Fn=JKqjejn-M#hTaOqatS&KZA8l$8q+|
z<-mngO?@wIPYC}wBkQCTe-NY-PU-kD#eWiVTJVhSe!Gndd`b0r=6@X*bnry{xC4cz
zH>>AqFEf}<pKu`?c+`NYBf#`!;6VdH&XkUSb^OO=t0SW0ijH4&SUPO3zMWZ@7}boB
zo#`<haUD_Nb9QG9sOCNe^UsO&1m|UUR+96wF^B(2*>kqju&wEr+4iIK&0nSes^d2u
zw{-la<EoC|b^M{@rj9uW)34FPh3PkRZ0nVGU2t>74*bu4+eMjwa_w&^Sn+!1t5*t0
zHdzIK>o`9z^ELx)OZtlA>E!=#!ESL0v6z8743sr+r-5fzmM?B#UH`072EN^&UP7=W
zNBVs_&7*Q@17!?cb2<$jnAQAL`dtR@HgJ!DdkwUGB(t1>=YLLz@bZRx3JNKCVO!39
z2Cug1_Z#3RRJb95y;U%f`%zBmyjE9^q(5ZfVFS$!G&fMuKqUj|1~Lp(Hc-Xj4k*+y
zP}M*+180t;*Dze){&%($yQ*%uAC#H2GpnY7f1fW|ONwvp$fB^WfqDkg4D9NkRo_4Z
z1C0!PzdMUg;M+v2?apdw@U2HK(YK_Ry}yGdnv_s~)4WWNfyM@!7?@a1WzzT~=~a(-
z^2gz!KzdUd8b|lxzVsFbyaw7Cc*H=Kfoual1H~6)wlt7q;Pao-TXUE~TG5$3b6G_p
z(QKF9Myi%nQ!MgmYv6XJ4j)!i4PMWzvn{K=fjq<Azu`CVz~S_c20BQQ-utGS$~RD8
zV8;IRP6loT(woCaKKbLU#|(5fu)x4V16>SsHSnT=kp><&@PvVW2KpQ5W}v%)rwsJw
zxK5^*-J0IRKu_uINdvt&immD9F86(gpFZU&JwLOL;f7qNW9fZ`4E?Qu{Au>)6!5$Q
z3=A~z9H-s@9r6sLh&G(gZuVe@L5BMoor~4@DuC?42Ci09cUD&~82IdP`Va#{MSpGB
zjjLe>hKpC(!|`hcs~_wzg8ldKv1*io(FUd(c*VdN17i)0H!wjadYplm#9Eqn=aB3|
zzmJwrG%(4)%LYoE&z?+6I%H2Ff2J4-qk^+v_E36!S61Vn3z~nDKFz>%4%|Srpw;~g
zGpBu%KGVQ!24)+WWw`5wO<px{`CR(nJF?~&m}_9Z3}jZK4V^QOq1ZFGZgthFx=P=k
z)o!rwbpwkGd_=i{#Rirbc*nrI29_FFW?(HBmx1LB?_F7|B#c)WSjjN+wW8%uR#(K;
z9H8m?WR2nO)?0qgHTVq!8|Z;h`g#Lza<v{xe~U9)U6IgcBJ;-E2AY1IUUpCVdj>Wd
z*lb`6UD2V{`vyKRu*rba-8a9wdbhf|`(Szpf2$8^San6x@>2Fz1KSy;)zvmS_GST(
zO(nc67F$|=C)WiRj)4;fb{p7Z;7bEv8Q5#!V>U6cPom-zPOE_d2h+DdnfEEjzB!At
z!Ff4bU40=lyWhY80~d~_*E;Pk!15hiRS2gux(*sRWZ*jk#|(UJ;2Q%+4Dhp1m#Qlw
zkHZZ6%~@q@sH0p#w7G|m#d+;pm3cphwGa35@HlQ@)Rvq+?OUBR@PmPi1_}+FGVmia
zhJmx3U#GO%lJygF$i?*2V$Zp@t;o+AIB#IvU!{K*VU2sTc|3YCEB8eD1uoAM={vV)
z=>`k~rM^fHG5;F~h-T2hKcA-meIcDV=X^=d6gwn;e^<I?z-B@SpnU)iPtE*kB4i?F
zAa1z-nEuv8f=h$T&_oXtml$A7aVF}TxMJWJCRG#VO#I3KFz}awzZr4{emC$ZixWD2
zvqHOO;D&)e4DA2SdtLCtx1O6!5iN`59nT*V%%9yfyVGXv7Kh+?o?5L@c$)@u6edcW
z_}9RHOj9OGn5dtDVkV!v*X}U!@o)JxYN$G;3r@Ap*m>N2rl!GbT1gZAX1lzMi65_e
zDtWT+G*Q;XSAT1MJKwucqvS3V#Cm77@+M&7ArlXqxW~l3COT!ds$k+i6Ze}qxlQZz
zwzj5h!J{iQdzSWco?H8XiQiw>9yC$!AFX{2RgqoM$dy`k6O~O=F;Ue-H4{A7b9VlM
zSbnQx`GbyYeDx4L$#)IaFj3RQ<qie4OnkCKt8L=x8Y**vHZ`vKnxP&CXu@Zrt%(LE
z8k)#7(bz;IlRGxGzH_y7%Juv-o??ck@zfW5-+r%+tD!PXu-0Spb)DLZ#|xU6Xlf$c
zL`xIRC_L|LZlZ;WT5GjeKhuhz$@j8D6ZZ23_4a7_4;FBb0XxYt@k=;A*F-B5ISV!N
z)+RbXlCk=Gt&KRad*g!ISsCT#XzffqVxoZVGSS{do{0`7I+|EkL+$ow_)P>hYFlck
z15L8}p3o*8(TMpbXzHOFN||`ngmzMU+{9xhZgkD)LI-ZqItw3lR=Ze3@r+$fTodwy
zoVuHd-GAoOQOO3`Jxx4mVu6W;CVH88%ET}e!%hA_Nb7B4fQf-7`p_Yif2}=jqQ8l?
z?`Y)xO#TFLNnoiqpnZpDObjx?r$t^c@vMm#7Hfk|+*MPxzK~7+oQdbzTZ@b~h1%?;
zTCi(}Atr{>a>K`|T=k=e!8XFgizcR;c*Vp>2IOLGoQaoAj50CW#2A^TvGjAHhx1jp
zreZ{qZ|Rdc-o!)`lT6e$Jrj7ACp!G~a6zL}+GG=~ox&MErM0Z7UN*7lu=eE78gZJ5
z=_Xz?G26rp6EjVi%d}Tbbo*KxP*crfv}gr4mTAOlXSAs`)f^LZxn$A`=9^ekQ_W+;
zrP>>vO6;ns&Sn<edDIQa*V(^`4@_(_vDm~C6YEU8!S#OLv(&^26Dv8VCYE!`)@wCv
z&xLdO-_}&COsr;~CMLJYm||&L7HPff7Zlc1YehogDBZW-#G5AGHt`OH*%^$Aw@hp>
z@s_PsXn@g6waF*7cR5FWGT$??(Zuy1w7${&yVA2SUi7`saN4Hj-&a8V(8Ol06ceA)
zGbXm0*lA*yjC~uOd{z6%#CFc(dhOO(ZT_Pfl<bgzxmHu{rk$T_dra&V!uevH-|n6H
zu{7k0e&-GCGZUXv-^4)^`%HXcV#-SGOGX7VLoIcHS+16%Cj0-~a?NAy50wiJnfTho
z5ysVfTFqtJh4cB}m^duMXYs&CZVVqaF`+>gXPo$*iDM>?n{GPgamK{=!cU|mCx!eV
zc#4TDCI6|2a29sD`^tEnHE}LgdtS)Tf)`9&6jCUtn=ph7>{-kd5)eGFDxIB#O+*;#
z0o)yc#rQPwmx;ekI3}Vdt}?|jG9O8g3I1v#&X6#Xd?Y=|{4c_Z?bDxapMIH_045Da
z$cF{jXL%@WQ%jMv?QcvGlS`0X<K&vSDXqBa^oEH)OjOKEUz}Hr#iP^E$d^vFKTX^c
z9dh<_+r&Ry(E*eSxaa-XM6rOY`Cm$>!l7b!1Y9GF3ziUMk!LS0nq>vch@2<#`HQjn
zodFb`v0MP<185R(_rW57djhB#KrLx<ZvYPmP%(h}0=Qo!6#{rLz<X)efCmDY?n^&D
z%d;TQ?U09_SFDm$RSBSK0F{MP9?mOPEyb$`z~b!n#cHG^J!+}i0o0LVMgVn%qy?Y_
zP%nV`0jyYGtU&+`MSg3&oJ%?x=SzP!&pmItRNZqam%PXrk4Q2DXe@+1(9Wg-Gz*})
zNU{TH89)o+-T<;vYX2KcP5`X}XdOVVRDH9yBs=HPCV;jg@dYqjJek$rmA4Dvx+vrY
z;1A&EAT9*aA%Knn{1CvY0P+JU2;eog3ZPQ}DuCw$cp-pC19&Wervm65K<5Cu1kgQz
z9szXabno$fzb^ZU0D>DbA7>{Gd|%e{jcT3SEr6>JWY2D$+cN-4NO}eEWB^p&S=W7+
z;6LTcP~Iniz5xshfWoH*`v)*U)cOUuE6G=ENan~IzJWBUb?$0A=a~Rl<WmwweLfq&
z-~gTzeV&@iln)7DXaHjZ7#qN_04U^1M+PulIEy3XL@!E_-HwvxqXpSHmB$6}lAQ6C
z0LBL}A%H1TOCu)+Fe!k^(w0S<#3no`@nz9r^QqF7WE#USfEiMpB`)IWW=fH5UkzYy
z<18LDX-)uh1K1Y8_5kJuFh79x0lXQ&f&dl<urh#E0lXf-q5zf!usndp0raZjTS`s6
z^b+Zr{{MSUX0g3Kl4|A4@K_=8>jTSw@TX^W0BZtxBLMQXB43wkMFWbOP?NpA6~G3n
z1+XcAw*z>G_UNVGW8@4h&pxU7t~8`@V*u}q0Y#_dC_a>`%>ir?!gEodeQphaI#eKj
z6u^!Ez7F7<063331Nbz6&jQ#Lz;5x(o&Y|Us=b2Lx!5X~_=(h#d>+8Q0KN*~U;tl;
zkX}6y!2Y5R>w1csd|A{<<E%qM&I~M1=dg<8Z~#Y&0)rVwV)(lNj)~3RigLKF?>O_!
zLvBPd!f5~rj}rl$Ohplc{Ko)(qFNC525~xoGXeY+z~2F!4d7e=@c<G5oaaJgDhMDF
zz=Z%V1`yzh0w@eX55QnmT^|odV<){d`!rJ$o;1X4P|ICSwEU48t{GMUHt+nI2_<-F
zGbf$RV`5c<@@0y8qc9o3r2uXO@J9fbB{F{v;I{y-1n`TDk<S(tjpb?p?3|~#7QpYq
zSsYqRaroDzTlRKS<bSfb*T*7bo6&nqy5$*f2k;M5?q1(rLHrxQe*th^lnJ6(&?Uu#
zC=tXREQ$}gs7nUj<Umq7=&tcnLDvA1A|bJC5O)UM)xqX$#j3l5C?~y<mlu5mF~64k
zgw%aO+#lp$q_H!I3PC&&<R=NxKZpl|cqoXpAhaMJ4x(ZZHG`-XM5UnXRUS2hs4Sf6
zs7er3gYF|*)dZ^xcKW6SC5)MmnEz9)8VRW*3UvkR3DysyfslrR?4NCkY)ecJ!W%@E
zw9OC&PY{_wG!CMP6sg=?NYkR`f=~4HwfO&v*}@+QqJ0o8gUFF$ZV)~ptpwRmYawj}
zi_B;nM7vb&omWcd1>q0kNG;Wk`CsHpuwxMULJETDB&298?31k?4dSsNI*Yt(5RVJ#
z!kM~KnhHFg`2TpbAi4+9BZ!_sJSm!eg6Jirx8PHPdM(9<|2s=x5k4*Wdo48}h=D;Y
z4q}P;?U^9P1~D#(K|wq#lEFa?3u3tFKNrOFLS7JLw?l#$DtvuCcP>Vx<fDYV7{thw
zgw|4FwBQ)_EaW9Q#oQp~1u;H|2|-K@Vp0$@gP0Y>WYL)##4ABe5&p7Zk=v&UXP?uB
zaDX#}a6&mFucm5e3wbT2Gbbgd0Yza$<@rG@NXZupd0lXk;N7*=(jb-vu`%eT)8%6G
ziXc`7@lqrATokSn%{K&B2eC%TT0vU7P6%DJK8QDkza{vN;D#XH7V^JYem98sM8eV4
zs;%A^{(+pAl1)K;7{ulvwxo2n2eCDXZK>EO>gOY=<rK5Yt{`>?@m&zdg4n}VAH-Kd
z91P;)AU+8qP|deLh);v~i~|f}U(ij<UF{sokN5NuOC8N?SzCP(#Jknp;(;K(lvXF^
zWHMn=^N<w33F5GjuY+J!wT8YUQv5dPzKM$sj|TB|t6cWUD(0NyLHFL~WDq|D@xADr
z5d5~TkNT&A_%VpHtXh}-lW3j^f~RAX(<#CtO=ZG77sPpHzr8MJPP-UHVGw!<MhJQk
z2G1M9HzAm`hZ!t{2SNx25enjuAZ`Z1{2vY?!LtMr3Bn4(4#Ei{E=N?7A#-vph>qpU
zFp*OKvD%8r*}oLT<sg1zzLoTQg)v{l_p9(<1bKDltq5KByHs7LVSjlB*H+hpAWo{S
zZUo(1FFIs#ZS^P9HIr=!<?5)vg7`a#;vtj>;dT)JFvEx3&i@U%w}SsM8`t%GC}xlp
z3%Ny_w7<3@DJhy|LMR(TDdD9B*_`&@8FCln-8@SOcL`^)u(o1tc~OI4&C0%eQmyU{
z;XdKNi&}#^s%;(hU<eO|Fe!w|Av_#H#Sl~okA_ewgvudgg^(RWl@O|i&?tm7v9Ow8
z?GUO9;lOKzP&0&DA@_ExXb8kQA=C}Im$Q1J)_{DkufA}Oy<y0mGOF<{*+eab%n%xf
zkRC!t$h||RkmwP8_S{5BGr^`IcNJ4eo#r955W>!RE9Di=cxxF#P6&A+_(RAQVLL%K
zX%#~25Kz8Mo0P;CLfaH~-7CC($h~c#e!cQ#I*24crPGnIw;_}FsH`mrp;O4cK$A0W
z9}A&#$h|0!73>m1?-2Tg&^3g|LwG`jJwoUiLbs56LGLbppgwKpW%@}`pbfo3?)CR6
zDYBOL55&Gw92&yYA@mEOe+UCY7!<;@A|ELDOvqhF|7$Wh<lfD4AVWfUE`;Yr=LJDd
z99J|oX+M$2un>laFd_urx4am_=#cxXWTXssluRY>G^jR4`r*ngYBf%pzZAlFA)N6E
zLMF-psWT;nmqS<=!W$x=8p1*$uY@oygy|v72w{#$s6121t0ByiS*C=pW+c2OR?U`L
zo_ekjR?Q1xzVHQt)TdWp4`GoM7l*Jcgyq7Qgxo~5R0cxFu1M*x3Sni)y$564qIp~$
z!kUnq+182<r-N1NLwGZU9gKkx-jYt<r*DO92;prZ??{BaE1Z6KPsm0QvbZUP4@1}{
z!ifQF7P5u*OM2mL|5lOkM+B9(ivb^n+{9A!yI@xcpV22F><(cM4HM;01V0u#+3F5n
z1>|&$B^LKdEy))`iu&0vN#Fn{SA<`Ma8L-HL(M~s6S-wQ9Kw+hPKNLUS7jC7Q3f_|
z_(Rw@zT~$dXt&yYC#{YN76sDxA)E-g7bCihcq)V+L%1Lfe+uDr2<I4_Av{$_)%YZr
z$C(g_X9d~hXHIc7U&GqI{~Gy7Xw1bB3PbK~FxNXTQvJJRn(UwUgpm<OFoaMDrNbx_
zMmU5>2scCcGXyIHJA_LiTn@nrAsRv=gbuws#6tM>%M!=GY8q#X>*lF6pk&YPB}kGq
z;HeJzueeoLLii<wYav{xatMzNDEWJ{tgE8`TL>@JQPk)0I|HnaD%rQgjSyOCS$~Ma
z3omBo<z`mt+o7J8b&EMUg#YNAF#cu=ZJxze|Ag@VfReYFhX<78qo$PnD-GvAgXlA0
z^E<*Q9>&H2C0SJ>jFMs3&TG%0l#pd(bB_FxTQ-b4!>AZWr7$;X<L)r-4dcEr%7sxr
z>~?Yw$=IA>-Af?so_9p|5|sy(tTHZ#qq|@Fc`%HJ!l)1it$iSj#Mm5?O)|8H!#I}a
zn#z+>SeZS9Q6r3+VN{j2)dX9Mh1G?>H#TQzZf318YKKujj0PgC6GmMj?210Gm*OMG
z<TMPU5j!l**1|{=InPBk9tY|uI-JB4MrIh@!ss4G<1m_p;S2MFZfF`tvoKnQkrPJq
zFj`3StT4PXa5m(Gj^9?Eoo9=rYfpE6dE|!CT9oOZRzlhiDA`5^%kj?JTE1NvkA(49
z7@fmtPtSzind%gVKa38dpC3j?A^)?MvtJ;Rb!l05YgtOTdpdFK!QLIZh@@*6w<PK~
z7mtgC6Y)eC#B+62k1%?MF*1x%VLTb;mpbuG7=yxiDvaJ?JRL?q(d-jO-!N`G;VH6#
z<KjU2hjHpuv4PU(07lM$k{me0l{RorpABPh7(>Gt7RGa;^FkOy!gyXdbrwfkGYC1$
z<X6Y!u*2a}^`hVi!Qbkr1-DC4VRRT{!gwi+@gg5D(=;}WaZ+T!mmW}ZLKqXnc$p*W
zUSd)hlUX$`hcnKer=+|`!|1oEVeCoEdPUlja0Sf>V`dm{MX@1@Sz){y#sv!(ExZ=S
z>@Xq`SP{$#V=e<Sf~pbB3uAs5g<<GnEC^#EI}BrQ7_W!1D2(-Cycx#gFqVX|GK^JW
zEDd8>nBPdvS`o%_uAsW=n#WhWuDWY(-riF=IdxT+x@vV8Yr<F;#v6R5@1}Qc7}M&y
zyI+RXRg35P7k{2pHq*DduKK91dMk_#VSEtArZC<P;~lP9222?5`AZzBtIWFUUGgxv
z3HC-^b#FcO`bvNOdWxTzpI#yR!!S07u``TaVQdLwYZ%+Z_$ch|{(8S>iEUx*SnlWH
ztEYA_{_Ck>_0;ToieH&0-&jw5t$PpDQ@gn+&iYy}^nV=2Ct(~7<J&Mk4db&gz6#@D
znBO<SzA*NOaUhJ-_0$((aLW*8`hTsbiq}_Pd3+V?t1rXIeaY{suefLFP#9l_aX5@4
z%q^pR-_WHad{gQxe|<HmzFJXV@hkS+Nw}@P`i`q6j32}JiIEw`_Y6Wxva&v(<UbL{
z#bJJHwC`jXKhUcB?q00HL;c~btWbURSABIlj5A@J594Q^Zm|C>y*)Q?_}jj7Vcg$9
z@pyWIe@&APjT@*7?D_ue{08bGXRU#%nD825m`wE%l#L+3<R8ZGVO$F%#N;1FoOvwF
zjR)RH7<L#=7#0;?_fRsVr8g>7F~)yOZ>v9D36UG6l3`p5^IwGcm2=_oT@K?47g__w
zhAgse_ci|C!nn#L@Jx15D{jgvG1*Uko$E1-|H3F1!5?AV4C61R`Y`@v%KFlGi=nu@
zImwvpES`(|jc<o>ZjbMuF#hGVuJN<Bs6z^=a7P5iBPbOCPgf%1YL<+E``n6}bH^9A
zThpG>5qFH#zcYfnB6ui*hp84pxd>_u^FI)Aoi=?$X88yZ!95W-s0NPkG3@UZexD$P
z_eW46#rrqRW!ncMSTWpBGNI60QK~9OP$_~3p3USjeUN{21J%D+X0-^aM=+a<k!Osc
zChZaBS`pNa;F$;pMNlV#x)C&qplJm4BAB?OWc>&lh}z7gmpi>_K*I<ciDc-A%rqgI
zV7ed`GK6>pGb3o6l9ygmqFDsZBX}}`UJ-sqHm5}d?IL(Y6uc2+r8KjJw2UApg4_sN
zNzs?8Z5=@y;gQqsw#K$8`PK)@w2vS!f=45GOoV<8YJ|JnkVglRbQH`NEQp|!5Z0;)
zKE3JocI-7joz^*mE>hK1u!rE|f=@)yO$e2{N3ghb84?~nMOgGY@u!3jjG(uWJ`q0n
z;7;h%g8c>i31+TwUq3z|f+BL<boXsO8*$_RrHH#Bd~gKMMQ~!V|M>`pOA{)*AY_Q(
zP{Cmlj8NrSHA0Fn3bHs-$fyWL3mGFgHdQ;07VdG+I9|@hlTHvaF@h4_ES`O`XigD)
zS#YZ0D-lc+GF@<%;0(c;f(_m&&Te1jEK8Am*oo3}nfxQz7s37iwWMTz1dHfEQCJ|j
zFoM^4y-2zfv7mvQf|f+^iI}uBf@KjbkD%h)?l9kC%uAD%ss2|*uv+*U!L<>r6Y@p`
zZwgs2$W6R#&VzA6+z`Rr5xgV(-3Ycuuub@T5p0a${RlpgA~io0vWb3v$u)q-<_NZ=
zYB!3t+oiZGf{%pkNY(BXQvSg*yM^o#+?%TXSO|C6ej34N5xljeIX(Y5U9sFH{Sw|U
zBG@0nfe5~g;73vZO7KJkCxsl8R)-?^I)ZN^I4nY1_^ps5Y}-H`6{PSx5gtqF9B1Z9
z@mp^fX9WHb;eUsHrv%fU^OI}Ey+1{8TGY;P3BTnl3e>YqcM+VA;Ag2aQ~g{JaxsEJ
zA$m$~2#GCm(?~#gFoKYfa7u?Z*bz94b_*jcL?ehX9a(5*As#`3InzQp3&{vBMetVy
ze@AdRf-4bRkKjfGzeMnB1XsC&BKWC+`i&Qz<$gY7VUF@A8>r)Fyw@T)yV75>p&MNV
z*E{_Y!OaM6MbNRKDmBkvsiA7pQ2iMJcj?!jn>V<j${6jx9l<|b5f(~X_&0+8BDljs
zaSIc8oo%R!Sy<jsZEdIyHB>A3ipqv6lAd*$o&4b~WudHvJ1vy9P{zWgnQkt6wM>T+
zja1dy{<|!6&&YaXjsKyS{ZuY*0TyansAb_E3-?-h*g{1M_gT2#!h;qbvQWWtpU$}G
z@lAd<_W=u)8o8q&@}?-Wk>VZ5!b$#07Ajk)W}&);Di##aWue$$|0@IhbxwOT2l@sz
zQumMXO>3lTSnk6$?4k1%e{BnOENB+eE!4G8&q4zW4J~{=&cC{mYFZ(?KK(!3H^}2_
zWVsizPv_<hS>sQ$5c$`0?|A?2Mk>RC$3kNZO)UJi*xzlH|Hnou(}LAV{Ts;stC6}d
zP1PFiub-xxTWCSUEIew#Yaz=*I}49k$hOeZLK}ASr7y>Fuc56hw6?%2X|5oz`$Jl0
zO?SM!$nv`Ev)rBeZ7r<u__(#3YV9rLS$wy-x040Gg$@=vTFAG+r*(Mcee<T5eL6S2
zTvi1ZctPJ$$HPl`>ompNw#O`Vw$R%`9}8V9bmi<==wab;3q8}+6BfEz7@nqPrKz0x
zesiRcx0H7c^Y^syq=iq?)KeDTOjErq_j#E|p3CK(2FCdHiGF&luZ5>A47Tu`g?<)(
zNK*qXJVVc<ss0uQSok|lb(!raKA@>VJashpSqo{JV!-${)mKx`bEFoASQtw8p7pJG
z#s89~7HaB!O$}q`!+ni!cAB-qzh6@?S{TV$W1rnijIuD=!YT`^={*Z$c~5R(wuNyP
zUb67Ag{c<CGmI@vwlKxQL<{FNRez7~#qOTdH#$wS@QbF(7+!9qzdv2k`Mk4w#lkcT
zGc3%ch3RU#1>Q4HOjqsGRsVD~%fixhbuL{^9O-*MUA=07crabfu`rjRYhjUvc^2kd
zSYTnH1>Tt_(^aty)$~PQ#SHcCYCj)jXp*58TUf$n#hK;wJ)4_0&EFwIEoB7G&0EF^
z%5ZPgS6UdAp?1#m|1rqJ`}27jYK?`p7Cx}B$-+7dZ*bl%yklWKr^dnt3x_h)TeN?^
ze{fb7*ZZ~%Mb6uD-lFpk*`NUy-m`FIqJJYTx9~@XyS})zD|l2RkNVKUW(#{P?6t7P
z!d460Eqp`=j`O$kDE>^?#%cAa86LI6!cIofZ2xWxyBOr_a#wlOeSdmM_?zPPh|C=x
z^)bW7!lw)vrii+VEBDrLH~;WQ&G1$Jeudr!&*kp3@P&o_77kcA#=y4lrG>979Hx;L
z4st{i{9kj~F7bcwac|V8WO=`lfJ}PS%P;!)Yv`zjZ!LVs^p&ZqXDa^<Z*HdQlc_l5
z?=76LaMr>(3nv+w7EW3Ckz>#Da?OtVA!p1~|4$Z9TR6j&xX{nvT>Qncd#rzSrn{);
zW~y>yeOpKS&s+GJOK(u_zAW#CO!Y~oDzu=pLkFiE7z`2%zuNfCM!-Ul;b&vKjgW;f
zbB>L48xbxC3#Dw7wqaXvEZns4C-c9B7~_!5Is3FEk(OZcx6pKO!B3g$rFGhopFEc=
zT()q9VR=zo^kl(9*R;_QjhtUp{LSK*9dOOURZi9(tzA@0WUA{HZg6rfa1Z45JsP*z
zaW7(nX#Nk^JS^T~`eJfms^=nNUh0r>o1JWM_j5M$WKXMDK>i;ys*O8r6t~?fTBWbo
zc6VUj(@NNw*|%d!8~<jizN^!@%j@IY`DJXBwNc4NWgB<exXVTb8xPp%-lyPh8?bSY
zjdC{1+wjFbkDkbXa-mkWvAWmBeKzj5@#7k8_&jajJnitPf=k^y9NDAs#ia45_MnZ2
zZDjV#tWXaR+3xl*Zg8z=yPNBpH&)#IR>ekD8+BM^qneHCHosxvsbyp5z|0ypPHfd`
z3a8oRk2O}cZ6xMs+_U<|`&vC4)+()`jYc-=vw5eC1~#5=tm-x_AWm<rzWOo$-4_bd
zY?L^Vy<nD>VZ&pivyCn^$wp%vt!=ci(Zohm8(B88Z8Wnn_h;XCG|$Fcs-VO?t%VIQ
zCw+^?F>d%!dupjhV_MqCv5{*tc=GAM&#vTiljPJ68Le#m)iz_nmzvK;TN@p0bhOdV
z#+1!kdy?zg>c;93DGs~t&9k}j6%FE^J&o0jH#KfhJlk01+vvm>nA#XMM=P*#C_S6~
zKWgJK&RW#NdAydFLEmo7^S)XyyQ_`IZ9HRRkc}s7bhGi4jozF!8$E11$v~Z@wJh`*
zdER7W)zik9x!R16-QBspY@C^+U1^-%$3|Zp{cQ}e@wAP8HnvASKNV`}@%&Bs89n!D
zPa4{HF;At;><f#ufsCjoDse}_vo;3X7-8c@8_&__Hip?4ZsP?TLu^!OqK4A)_1eGJ
zysgf9etKIwU#g&46Se4f?TMw?)8=d3B|DM>q&+sq(v39>_=4`yG~<@m*7DH9U6*O&
zZ2Y~+-GUf<U#qfGn_y$2jW2BMw=v1aWE*R3tfMDwyli8>jRiKQ+IYprEE})V8%@+S
z8`EvfU|`J94)o8QX@ff$H~re?^kvrr8*3HZVQR10n8O)oK-&0po5sDzL@u{g%UnK>
zgKDClwml1Nyl!K;jTJV2IjAkNvBbtw8;d!=hqTuHGr2c-b`!OXIww2>&*cXz6!0Tc
zD;Yvf)GC{Q|Hqfv8RTnhoc3p2Td(#0M<Y4?LEalS*4x-dx7&D=`ZnIR@t%zhHb&a%
zCAwt1ZR0|1eA-04V`JZPZD-8WIz4-%jrVPAwz0*=2R1fw)v)J8TDL7)_A+f~IRD2c
zYDLgJ%gpPZyt)NjZN!==Zq_~ec!!T{?6C0($IF#<T-#}5w~akEcG>QZ+^1)FPub~A
zGNr!N_EKV_OjE@TsPy3{y5}<+pW7IhU2Gry|BhC?3A&y0^gZm>HawAkfWx$L-p0>1
zzOr%9#`j#pj078B+c;w5sEu!AI?6=y`)n?Mm@{(5-8jv?<+YotZ*6>M;~4YI9PQ*x
zjhmuB?~<|bgm#<@v#ENbsXA%n2M&{=%XP<`!yz<LKQZjLXnnV8*S#6s@O<ir(i@j+
zYY%B>>GqiC9P@cE-z-~eUZa4cyI|uY7ljSSMxhOz8J<2osnJ)44U@_Y%chDx+|W5=
zPE!>WYdN}Y4|&481TgSUYV6kH95q!uxa&1a-`coj<Fbu7?eCnCU?Lq~Z0li-`=Yhh
z8A--ui-PYe6<o1#?`zsGHm<JFIz3*nuc>0s#};T;nWDLr9E@~u&Bk@6CI?L%+_3Qn
z^RR;l9Ne_=C-aztk`8V$$=LXZ37l)h#%<>3jass)x@>Bvo2rNE;mr4*|7;X<P~74F
z2=b@=qTS)3YBTjs@66)O6!+W?SfHKDDptxtX$R#Tly^{u*TETDSqFDI7|<i5MKg7m
z18&>C+rh^(HPuY<iGW_F@8&6w`E({6-0R>z$4%q+IH;oBE%8T}W#8{$b4>fEP<#G@
zkHrTaJmjE`gSrkLc2Lp5l7(6=2bCODc2Lbhb+&cfSN2tP&|!^sX_t1rm+y{7+4p^@
zQL~1Fnhw%7yPSERYRn9^9gJA0af5WJ6<R$9^&Mn5@HlATprM0C)OYZHj}8n@VypD5
zNvAZ;f%S!!?qJB9TJB%@^>1hco2j9DwF%7>A63Y7z)RBfR+&v5G;`3|K^F(j9kg)J
z-a(!NuY)WHtsS&+u&9~JcF@v6j^n1*DrfR@9sIpAokuGnTU%uG)HPl{Ha1f}2W>gn
z1zO89p3av%y#BUx@CeO&Q{yq@xW~^?J9uJ8u>uDj9WWc0TcaI5;Yr)2<vZBlOwAtR
z>*PQ=c+|nUX6i;W^_YWA7d(t)X4i7fRaXa(JA76P{n?L$ZVsMw(91!0`n<X7;h?93
zPy2OTv0iJ{T)mQ!-RDZ1Zi}_29Q1b3*TK{5{HnK)gE7t3i7&LC%@vF41C7^rZI#BW
z^8g0}9SnBx9Nqhl_Kbr;GGF8?N)|lpfUS7U`AB=-!FKNXcQDk!3!K~;TASq>w|{eS
z-51Iq=3qF(DVRTkelt8>k{bE)Z?#blMmw16V4efoHpanN2jhe@o4w><yo0F@UU4wN
z!9)jB9K89ucI22g$-(^QYO;g79w}gve0hsvZ#P#jJAAuc_5-`LX%414nB{;o@~Fxv
z-Z*;(qkX0J_*!iyXLeKp_s_rT;5EiDBY9PN_s0t6ICy!z_GxoPUhhhq`3@Gaxr1#E
z7CLy{!D<I<7y}L#J6P#p((Yon6WS67%N#6sFzmPdr4DjWd3d9;g0uXO_QnFOUbA9V
zmuK?<oK;jisWCzQne?o6u#O52K5+1cgZ1>lj$-?E7W?-j?M!pk^w0b^9T49V+#vY2
zgLi~b{;rVs1UCvY$TvCo(7_hY$QkXmE!ySgYQ_w0vx8j=w1>}W`?hF1j%nK+e8jkN
zaKOP12Rj{n!tkJugWV4HIM~bhjA)&YYYTERKCO+@Ei*o5>|N5r=d^46GC8N8Irv;A
zcb|h}AC{+t7X@zGKXTgh1*f=a7Oxs#I{3=LcT{k2(7_?DF9(Mme9h^&sqwY>YX)XI
z-)rPY92|A<t;0<?`8kU<=0+x*V%;)kHOr>txJ1<V9FYUFOu++-w13{!%C=CmJlQ85
zK5dadrC;Wc4t{cQPZak?aoWKd=1d2FI5^Ao;vm9>@8CSwZ?Ck=UA-3^{4Bg?3q{FA
z2Zda8!@N5CcMxEPjHVe}KBGOkpQi<xJXfcM96qy;*QR+2M|$}6gi;@*wJ4YU><78F
zs9kaJiv!2u189gjh&w1XH9zU#hgY&6w)5Ceg7G;wn`GLi5|<oYcF^N*KaZ>ye2-$<
zuMU1^!guf+)9>TntF(56cj4XH{d;<^JN(w6zxwpFw!PEXocyMPKONk5@DF2eWZEqz
zmd=^ITBwc{y?-(DFo9I`)_czT;}}mLC+%Mb>bkU2QT)gJAH^L}H0<py9!2rKT<mFg
zU-y>~UQ&?4-jh6~qbL(a*(mOeqI?t+TBy6CxI2o{CGyKfVfXb6o|)ZsQ0B8QdRoTv
z<`2k+=#<!+M$P-8xIc;kQ4EZtLKF`~(IN_O6qhG@9*m-L6jh>lh&EKqemIJXBBu{4
zMX`0d=Rn^yV$~?BQ6Y*(QB;qD{;wHDtte^;XK_&rwe0SWwWFvLMcpWxm+I&}-mzX3
z^`kIas0LAtTJC%F&9u!e)R7kI%YObFEmT?*S`-;kc%qoO#5dv2?DQyxZtvK3ei|_|
zigG<XO`>QTMdK(!5BP7+&F($L(=3V)KTK;L#rD!2bFXyVes@Rq*0^(KRutJ$bc`ZD
zik4C2MA0saM`&IYt)dt|BFz`Yfw7*}Q8bvB-6o2~@8|CC=RGprvtf8PYuiTA=Vl(s
z@Ts2m)amN)5Jg@TEb{ORssFO)9<SQ}Qd&V2oucR#MfWIF6pu#v_ZB?v_TYbvb6P6D
zOB9`>;6R$anKt^UpTToaF@L$g{IB2X|8czc2@dTq|MuBwJ)-CtMPJVB1n-kk^kQ%2
zvxkmPYx-K+Q&IG0hf(}G(A(*?G<q-IEdTQHjt$;Vdpe4KQT+B?dA8~w1p~6rasPv(
zJ<mijD2j<uOp4;!C<aF{Hi~gkJQv0DQM?$%$S7XmjCd7o7#_tCdOM0HALI_Bwd1|~
z$oS2X9b0?V`C*<BJo^+6$*3qsM=^#Wk(r-4K6~KIv@zYhYe#x}dDX!MY4LSwwD!44
z-j{fmN#5~-6QYP7c7>Cpm=eWWhU+BH%TY{?;<YGdNAXG&hsJqkaMGig7R7W*CTAC#
zdB08byf(>meT;Wj6t9X;rh3)1(rtgP(sB2@X>+2O%UO$JNfh&<n9qSn@jAQpy1C-O
zr0fMztn#XUv(gqt-F(7>l9k>4T%KHyOQTr9Vie1wSRO^NWyd+U^Elp1&w5uyvD2$o
zN3ljo)0ea96E>fGGjC!y|2nb%4F=UX&-y6d<bS9ib6fT5;pe#Cj^Z8Ke-+cN;@v3T
zi=xXVbiIU)QM}J}okZ~@K8Rvd6gT4dBaRQF*vyHJ;i(w5aD7GbeH166*v5E{;`1o>
zMe$LTe^bTosJq8+XB4}l?moIMpX9Q5)T>Oddj4=8`5sZ&8^y;$J`wy>@H0W`l+1Fs
zkA4xwu_%s5v7bvIiZ7-1u;5pM2L%rael5sW-xL-9@{k{i;%G|#t&r~o5h=~RKvdvS
zElZt@;s=I(4DDh#6~&LtPBD~;;U^~lDB@8hqBs-9S>~TCWl0a`qPQ4Eq44v9KSyyv
z2>Z;vQd$=t6f{zDGm3z4_EU8BkQBp$5y3~Zlr4k`j*zHejPZHd-H)A&;!+gXIW;1`
zEclz?l_-7@LbYExO@*%h)s*D-D6XYAtNtkBQT#3Brr@7~w*+flDScZAJ1G`(r}dvG
z{!K~#<7!Qf;tr`TE?7daq+qESI2<<QUaYb)RF0ua40pzGm(<=J!-GP~#ZX=d1n-OC
zo*3>GUgVP^yk8_01RscjPG-*!Ns;8?7%HZCB_Xe5sj4wliy<?H#v-X6Lp>oi1ZxV`
z609v)N3gCS`{Xp$kD);f4O5bg7#hWp7K4_O&`aql&hfI9N3h7eCNX5k&{8B#1)B*r
zkAV$a2=@wR#jsX<l_SO0g1Lh1vsDaqI0=t7BJ{=FSSmWpBQZP~b2q%Tk0DQL{V{Zk
zK?&~=L&sD<`9cZ=i^Azq;g1VG7DHztT?D%d(v3Xn6ESp)p}R;}>>-5X?U|Brj@q?$
z7klp*`o#FxJhY9YZwybzuqTGSG4zX}e+<vX@O%sdV(v~+Di4(Azt{FXlj>(s49^N5
zoRaL#QZK}CVR_!<7^cK9B!;0<HB4}f;P4nmr1W2mVWjX;f}>ONV_9l!4CAEulHdfv
z@r+4{rHLucNijrZ)Gx;{HOAljSQEo5F-(hLP7HHnm@b;H3eHHinki%!QQC5Juf;H1
zg#X)PKQD%bF}yCq`7taILQN_xiea%7SH`eJ$O^%wg3AP{xm?H*+jTWtt&(Ch*>%4*
zhIKJ~7~_v+H&ot;VM7dW$FN?CZwkI8cyIRq<)3$?xG{!zg}f(NUuxfv;R8;S^t?&r
z>~l&j-<BA*N^z&)Ho=c#*q+j1lO4i~+U`opcMGA-AII=X41dRPJBCkV_$-E#G5jF4
zpU3c33<qP_C&e!W_X{2n{8EsX<YcQu!jGgRU&ruGiXRrj2tOLbx5B@R;drX{m=Id>
zeM)jdNat*IDuy3ph{up%{*U2w3_+<nBX~ZBpJO<iYIRNs`=LD-gck~4O!<v+T_lE}
z$u%p4^5?QuD2A{UBZAQwtQhQ6G*ZVYs?Aa{Aw~X7#&9Wy>ms=<NX@H4uEg+5O7g3a
z-vs%T%I_)pH6aXx8!`ML{ALWdQnh~yaYvMr(Bc2Y@GmoG9QEV)FNR`qJP^l&aW}^9
zh@(^-rG*!dqlA!>f|I0&GQ#hUqnwbkf_KJomyoHcI4mE>J#pMCLKNwUSML*EA&&cn
zydnBUet1YEw4r(&564k4j!Gh_l9E>z(z1@Ps*q|a`4`!$hVYtkz6Hx2MQy=4@&9|O
zsIC-Gr)+BwNAoyZ#L+O0MscLYp@~A{IMRi91ldnU{QuTVW=hgVmQRy7nx-Vpge0?-
zHzmmxk|mfOM@u0&g2h_?-#Tq2#ny4O5#lBpe)chrN8<P_j?d$0A4gssv*VZ(hd+)E
zal8=6kT^QVksrsCarBC#K-zYWql=JEaVR0|>QNz&3G&$xO1cW~9>?P;ohO8JqpQWL
z9#ZU?s->K*o{FPi9Q}p&j-yYiwr?Cyr+88G0dYJll7WKH2o6f=)Rj{Vj^nwM<oP&S
ziEwBf!$kOU9K(f-N$HFb@}l5K!BK*v8JQAJW8)YX$4erlwUgo)FMNXF#FU%?HaU(d
zQY>m%G`gvAyb{MWkxv(#6~~M?X2wyZz&?w}t8u)R>g~yvYOe5gal8@7yg24daX}nQ
zQ#uQUydKA*I2OmTM2bbHW}h##RLkO69><E5{%RpB1y{vU<gPVRTq`(Le6>D~H{;mE
z8~8Zh68XD=8wB4Ld`Gaz^7m4FqmcLG_#h=|)6=&(#diwXBDhs>o8WfAkK))Ngnh1P
zsdmM&TZ(()_(aIwRPD!cY!^GJ`Kbsw<b82`5l3N5buEtlaU6)_=Qu7%?U!+U6USlU
zU&V1S)z6_gz7}3&?U6W+#&If+A4T|W9N(ujzY}sSj^il_FV-hg{A3(Ir1)Vm?58-+
zrX;81IFsUReopv#!J=Guk!Ht{h$9(?9)}T!lhQZi2&H&HNHCQv!cvR~T7tG9ee!f1
z(G-ux5f|PqCAlQz*ElW<xgz+B;QwOpHz{5f{5`b_=-caYTy3dHZpQH^*Jc9!61YV*
zX4(WQB=C0}x48szROtl%iQ`|UksMVjf&bztmO#ZE)g;Hw5_crPhoSgX6nXK4n*mA)
zmJ}?PquA=1991TPvI*Roz+DO4m*AJb)ZL=6Do5>*e#%L)d;$={e(n)+ZvvybxHpQw
z<fuDy)dLAUm_T|083{a;aG!s9n8t`EAGoNLKxN_e5~#w4t#kPtO4S5f9(14fttM5~
z6R07iW&(AEu&P!9wT0J7Ns1m2Ce}~558zOzK>`gEXe0`031~w8r$z-&0+|UEB+yB!
z8YhsOK&u3rNU>=G%@SxXoXRbQv=H<rkR>ELRm*O3gctQs{niOQB9b;K9bW=%Q@q{(
zr`$e)JSqAU=#W6iluo`7x}vC0mB6D3Jefc*kw2Ee6GA!*b`k6<__&~J^T86`gm)M0
zk&^cm!dm{`e=31j>bvvBqjv&*QaXK8I{gzEkie`2UZrPpRo7fKFo9>Jc2EMt5*VJq
zvr^>Knu8N~F4e>HLS9H<NJ=uaNRq2Y2$>@IVge&M^}@#q(vr~$j1fLIB^e`^gO?H*
zFOms@6H~R5giKCg`Pc5BEO@+}z*G^wA~;QOy5J1KnS#{pd!_Vi3CvF5mjr%IU`_&a
z6WE!+t_0>KFh7Cy3A`!F3j|jsurPtw6Ihh$VOau;g)b3Ynv##pRm+91NJ&--sa4;%
zTF9D|e65gmf^P^;&vjSpTM2&D&t0S&1m8~Jodn(${=VRQf>hX;z*=eYK}xbI0UE$6
z9-BqDC4sF%wxx8oC-6~<??~Wd(chiGo&?S%a6W;HxoU3$2NO8N+5|ok<xdmXFXS`9
z&lA{}08hsgeIfW;>bwUM_);Wa33ib`D1Dv4H(aC%oDkt*!S50{B7~hB74mHYbX1Z3
z#}YW6sx9*2$pn5%Nq$J+l<*%@k|G06OYw~0*#t_ra=r0$0v8f+QkoZq1Oy8c(1jR+
zrXZWV@sMjqP>LbJuwX>c60{R|K}H>wVl07p0tw-4ds#?Q@Dh`rSVH-g1pXH-ze(+%
zf>#B97rd6hbs^Nhk-#4b+>|04^5BqfF;mHJ^S^i%kgD6f1PJ+;`9IaRXo89*-Dzsl
zN|i|RyHpsH#MmTCB~dzwwn?;0qD&HHlc<|Sy(I2T;;tkfOyZ#=?oOgy689!?UlQe$
z{FF29p?>RJ{#~w9D>bl{S}23s)JpXV`|eNTa4S_o&Sl={K>mP8>{jaGBq}CRJ&77g
zR7#?95>=C^l0=}V&&6v0H{<`dQq`nLNyXNxW)iiMs3RRxQacGMsMe}!YgN>wWp!Wu
zBpM{qJc$-bG)$sV5}8RfPP)!XOCmjqj3hKE^45q#kML!!-KZGUTD{y_HA%XU-10HN
zrb*P7CsLaw@$g+fK9jh)welvBl|*h5t&+%2qGb{}^hq1H`FAv<wYuI~H4gY{wo$E<
z?gN#+BzUwD&LS_nL_SseND}Rn=$pjTN#rHrPvVIrx+T#eiH=D;n#5yC<R?*(M5iPs
z_w@14M0s+SK5djrVoDpuV}BK2=Onstq_urJ+NgLfU)Lla7yr<nHEk5<g)_no-#v*Z
zljxO1kL3To_oHXheLUPv{z>$vPj0p8lLV)U4LPAl+o(tzRm`XQCDA{Lp-Bu&Vn7lD
zlXxzP=aYCQi9wu1pL$j>-KY2zKZ}Et?qmDyed;Nn8tYRpBrzn3Nq6}c`_u<M^?Fqw
zIUm>`&a)>`=u_k)l6Wx*u2%AcJ~c|@tQwtkpL!-4m&8j+e3!(rB*rH(A&I3)EK6b{
zdrsojBwnM7=#wO7Br!9|w<@WZlbFUq{nv7860a~;+p79)RjanDM_V<bt(s1?wrX8l
zH7kkrbv?V=D&q1qA91$$XAu{|k-Rxc%oS(OOX9#cd3<hkei93kSeWuKFUqeAFS<G}
zPGU(C7u&iH|FiA?W!>dTyw5+&C$S=ll}W5hVl{o(POXuK54BTG+9}metxaNG5^sp`
z?NtBkg}j->TPewgB&N4>dwwS+c{hpoQhZ|){FpUsHzo055??0qRT7)I#vk_WOk$U)
zZ4ulmxGjn8skR>_u_MJ7wo|)>e@0<DwMY2gRPDz?K1t%!l!PXIE_|Qh7b*FE`Ypx3
zZ>Ku_(cz#J4<)hpAzx4i@^up5i14uB5y7K^9LTpqavt^_PvZL|>?E8d*4FazUkoRb
zIGMx`Nt{aJ0^Od(kD~m0j_*c0^^@?^seaBRaW;u_QamsCvmpPcz(1AnM1@J{Nu)jE
zdT(bPH~$!-U<$GrU|J9!N=d>=L{i*hN|d(IBw|cumr(T*;z=a<Pnk<7amhVJGKrhA
z=q@F3SsGpuyejyM;ICW=LW=Hwe;3ZS*MwY8;zmmHhmc+g{3+xXk+U!SKf&9AZ2OOp
ze+3!U#l#rO@3@5j-Kmzmgi@DK`jVTnSXJf{%3i{QqIqXZ|GrDOOZeTFQ0@}S3%^$o
zg7*lrIgKx}|9+8FNXZ`%Qj)&{ggh)*F;!bhNM%7L+iI6k{nGzq>MNkDx}L9*5Garh
z#i6)MUV<iR9uOo6@GkD|4lU9a*Wxb4odTt}JH@3yp`{e9K!F0~`E?2K&7If#{eNqn
zwbwo~bLPy^>+hka7qwVY%8NeJ5$i>1FUqi_tQVD;P>to7lxM8KSdp<3W2Bi?yr{}q
zvaja-@A`tci-mDs#5>yRUex%Xg0;P<<3(dHQoTs<BGHS;1F|HxNn!ldi)1ElFX}O=
z%Siqswb%cj-frMUL)JF>ADcAh9<RMWQ>k>$Heqb)MYD*Oe*sBgPBzWGXyNddj{i1Z
zwDsbvAjSmI&WrY5obuzeA052tNXA}RUUc%Jvlk~x<wX}Sx_aSnB&_$Mn-|@^nBld5
zlBI_iJ-wLZ#bhsfdC}X8F^z;TX%xKZ>%}mxw;$sm#{P^07%8@a)LpzHh!1Ar5XPa5
zJsSzbnSAEO=U$9pKALeP<0wWdOXpOCUwHBUntfLP70bskj%6IjIG%9=BbiNPvaFFn
zF;DT@=M_6Sn5itE=EZc!@@r}`UslZYViwJRFXpgnr5AI(n8$oM<9sg`JEazQvC!d*
zyr7Dx(j|^$DU)T47a9rQFj?Vf$)1c?d9m7&tYNa&i*=6VQ6pi47aP6U<i%z$c6+gh
zRa+Q$c(K*7{ML(Y%(pWR<?i~9`A)~?doOnVkCtlR>&0O&D)zHCx_w^kXYB#TgN%n5
zNgLJJZrTwqj<Vz!<8d!ecoDfABP~^W+KV$@-1OoW8<cA-ob}=dFV1oHJY&D>_6T0^
z;-VLqSaOZ=GUF9SGPufw?&e*0BtJ5_!AMVvfAZqC7yo$i%8NT*{Om>j#=@Vh{e|%n
z<6SR)Wpa=4H^%#n4;ZPghfJy^r#xozgz<Mr`v()M@h@5?jfJO<{27zK8J{!0V0`Jd
zpM8_t*PJCH(ow*Re>wY>F~I2c!spody-4C2NcKT5LM#tE+QA*NO3Y<Og;8bH7<ER2
zkvz~-fDA9*dC}63R(`zq;)55*d^qkyCLc2UFvN$UK4kGBs}I$EsNqAD57~Su=|d?W
zqJ7BjLtY;~_Sp@|;X@3Qk9^3<B$p4lnM8i5ifkgcwZXzXjw+uI`I#5>p#T%IEX<@J
zV<8_RH|vTx+Q<``Vx0YivA7TP3tc4~`_ev?VIJ#4Ss%(VugqB9hl)(7mI_R0{#0@#
z#H%>GDwAqHe9jY_>|H*@u`u4TA^Vy>)bgR75AA)Z?L!?On)uL^4HA4v_QB0Okuk}K
zPo1*<tEqK;sOLjN9~!Z+K4SyM6vmlcHT7F#&Qc6%Oj3Qg|G`5)!<FvH*Ry3aADa8n
zf`uMNfsvjNwR9}o_|VGXt=SK`ZOamRgi5@F4;_8z<3nE`I{DC<RXu&^!lXN6SH^BW
z`pVue@-nM^53L6abJ7C>CcPQ|e|!6JcAyXanG9g0Qgm55$l-&Tl&41kJ`DF^s}JA$
z@EHw(5A%Ik;KK+XM*1+>hbcac@?o?OV|^IMrM_VNit$UDgumO5?I?|5N#qvpc;*us
zC-@MVkdrt|mXUci)rVOundZZEAHH_9GkpI&N1n+Nddx&cW;36|IG1rABTWp_F7#oM
z4{Lo`=fh%_FK1lBxRjC1micg$hwmF7R`{^ehgCkTakLcGYUVecc^J95y`F`e7&rK^
zkqJ##a=4js3u7dbZ9Z)G;UG(PFn;gDE+*gku#*W*5-Lk+w-5VRvWIamBgrHEv)_jU
zj-&?{Ipo7(mK<^9M`^aO>Vyv`X*2O7iyx<aIPJqdAAa-Uj1OmhxWo28FkbZG5|eX`
z=NT_BQioq=LNVN+-N1*doV~_)oiQ@LKQfOzM!f06EzbVLNDl&TGofbw%;XowyAdt@
z?6b2r@B8q;2cHjqA0GPf$cMjuc<#ev$MO#!o-qI2kx<Y4>BC=~ed@zACXvUxk^X<d
zl2<;wX7bX9f0$5<$l#5`-}>+`^GGSudTD#%o(%X9^g;7M_aVeKl2a<oL}dKb2icJ;
zOjK&f)&K5u8a`x1w2T&G#Q!@V-gEW??f-szCPapt2)&b#)sHAYs`(M?M>apA{V3!|
zVL!67WiCH*`;mh=7evng@et$4^ZNnjc^LCDe$1GUk;*=AEEI5fLH~bkFXBg07FP75
zm>-|`QP#03?nfzym++&c!|4@>(he`<2R)D_=akC%QQnbP@Y_d?$m<-H{HW~6tN2ls
zIlU!91};D1IGgH6ydTy5sOv{PKWebBmLIkKsOglYPOIZbf*;9_g!(_xPY3S*+VUyO
zEoUveIZLJLGik_}!bs6J@c*~xG;$=3ncVsXX?~>p(S)-e#-@%<GbXem1SZWHTR7T+
zsX}W%+W4{5k7d*YezfyrkROBnXwNp?X`oYu4vu|CKRPk*%-DsoD`PiCij%Hfdic?k
zv%UQ2$E3HT?c+yZ=KudHvOi}B_%YD2A=MB+hWatfkJ)|<^V?T9U->b{kKulN=Evub
z<tRT!ID8}%Dm$9V7k+%{|G(=sy0jeY$2e9^_hUShNsJR1De{R-$Z|51DU4GYr!kUE
z<P!C3&d%^-CX+~8<~TMBn9OCI=f`|UPGuK5d=Znyj7yw2m;3RJADjKy!txb<tYxy2
zk!oMXWVIh_97!aeb$+aOBpdwL$b6F{q42i)@vR^GSh9`rdq2`rh3(9DFn-6llQH6U
z7jvq2H<LYn>~$pMbH5)4ID3%sm>-86?O{KTFh9yjzm`T$jyu{DOiud$yOVInkF$PM
z2%usBKlpLZkJo;@@#DN77yS6eDRt40OMYDTqj&0m>-P$)Zu&7HRk-TMHOKNglOGvx
z&}QY_$G*jqpZvJ(Sl(gsvmf;Ak|Mn8$FD58=f_`6e)Ho#lLw4X7$5rahzS*W?6iXT
z?|%H@$p3W4l;lrY_{@*L{dn%j3(o%ISiYnUlWQl-S1hD}>Du#OKLUOPX}|Kr>xYj*
z>X_p9gVKmXal|PR3HcGGeJp@F$K9eI679nQ<Oo3a+jpej(aF3Y3cFSP(EQLN_4;A?
zVK9%3HPxQM*~nxj;fIJNJ?9M|Q@}n7WM(9iCGg+MiegDN#%RV!@s9$?8Neq2`_@pd
z0CERVh_x|{c?0;E2^jM*QjPhTkpBV!<Yyl7R?smZRbl2u7>hEJuvh>qc~%q;phN&A
zSzgA`mSR$xG1Azw%*zG-n}PJ(v!51AsT4rv0PY0va{yHWs2afJ0Hy>`Er8en1_UrL
z09OEU0W=DraRBk`B$2T?V~qf622hJRMOBAMZAN-_Lz0Am{n&*Fr6lUZ0Fnc6vq3$l
zRNcV;J=v)rK#C)8z@%XShxu7pY5-{gbPAwz0O_o16+r6%ngq}^fM!mq=1e?{LIC@n
zwbOznEd%xs=SJdb!;<!lZ3Ae>gjDqOr-Q>gI<a*Lpeqae1kjC1PsgS^lOBQpp6ii^
zUM%SyK;#);U(WV(?E5pJXLExB_T#Nl0sF50U=|JuU?`JejGr?OXZ(yY@<eY$03$gY
ziFR}VUvTzI#&H3B#bgZQSjNb_BKz?HOkfG|i2+PveuH~yY5>y$*bu-*7ETXfZUFNF
z_?ojb7-uq4*;!0xGtQyeSl-_8=5uzbW3wQDg$`fDWN`pX90?7?vH+F`@C{2=F|Kg5
zE16ISu687An5+$8og-Nvz)OyNQvjO-I2gd80Ja3MHGn+<v`n@``j(BqW84<Nb|yO*
z>EeqFDD4d3dzKL26~J!h7JJ_7$oJ7)Vt&Ap(0R*Y=BH_(131F`DC054<BTU5Pcoij
zq+00l?pfOWIeRmJa{-(W;5uh7I5w98xX3&b=j8yd1aOrlkq4C5{zpqbf8^{9#_ROd
zn8{C!q`l3An)XWocWL1S(I$vr1GpDJo*?oD@mm1*0|?S=WXlHu{1d>d03HVLD1gT-
z{4;>Rm^=yKcP8Zd5Au-q-x2C53!ew@%+dbMqyihfpz-3Yo3pQ(dl}y_lDB^Yc<XR_
z$JOU>Ka&7O&QBu30f+%)4I(NCi8g=Mz7IfQq6c6EpgLtWCXs?B^9)8SfXM6jRPQ^M
zMBW?!K>L4?_kTvxW}&;pP8+ka@FT|PAhI*b!5H}}At&=(LF5i1hB<ivlgK9$MPK9N
zAo2xKKZukd@&{2Mi1I;H2%=yRg@P!-#)TP+IUb4xQIvV)#rRK{7iWyPEg3|qAWA#-
zWrHZ=@JKVuah8It7(}HYY6ej&h{{1!VR;;5)gWS>Qq{<VbI;8cw4Y>A)$xwDI+GfV
zgVTiCLDXUHW=vpAVoYT0+9B(wOp+b9kuI$pL_L;A+SMS4hCv8H%-{}h6hsr&QXe)B
zB9(cXBS~ix`M98I5X~I9C-~nNCCwd43nncYTQO2~ZE0AUe;!2pAUXumH;8^gtVt6(
z2GKo;t9<Xb6WeqSq6-s>q$`tdK^%5wMUNnQvalCpZ^k~1_dc;VqW;W>Fb-fO;Xo#X
zf*9;bXmo}$AI3P`k$=X7Vt!CDeFXE7L5y;=qnUic_+^lOY|y^{Gd75EL5vRJix9>K
zF(HUkL7Wa^Vi1#pSQW(TASMSfC5Qz<EDU055YvK~8N{q0rU&sg4FNl(je1}Cl%Lat
zx-XL{y-5>h2Qi0c<7><hVlLavW6YE;6iOFd>Gq#TP@=CJ76q|5h~+_i6U34rmIkqm
z0_bNy-EN$2Kg;fxE>M<UUs(~fe+++R(0;MOPIPff&l5|etO;Um5IckTK8STetPf%<
zSqAY%y09ULO+jo9Vk6g1uS3({2W$yqe!9IKZRaqEZwq2Ot*ku4cR~A|OnRYo2WQWx
z3nZim+$7l*#BLhRAdUpFCy2d490=kd*$443UD(g4qzm+B0wF!3jcH<6aVUtgO$55E
zNNOU`gYTn391G%j(0=koS8ykS_D`&jX(F5q+NY*{ng~m|)R`d81|bKb1o1-<=Yse-
zh+nt~=YzNy#HAp1H4!cZalK+n|Ch-<E2mrz;s*E3#U{cPnwD&Qjqy4o1@j}5$djO(
z%x?wp6O-GH%^fC|FZwQR{z1GB;!V*03xInRVGz&gC=kSbws{c56Q|TeCXW~&GtxQy
z?@az+{FBihFD8FA5#%Pqvx4>r{>_r-LA+q{(y{!9$t&80a@uCOnhO3;QvMC%Z4lld
ze6%k$6&g3SJJ}yZ*eMkVBIxiC9k!e!xJX9<M^0B0Y7iQE2%$;{dJsksxkAVt;=_Fq
znVDE@pW&2x$K-twADCo{7}LLv^H+XZIGZ(us1UM+5Y5?-7_&3xV5DgKG!=3>oSejj
zfDkG<k~|?42%#Wn^D=%MLOw^EpGoA5y-*0nLnskKVHOq%p(vALjGr(@o>oUr?Mkww
zd<dnOlx8f$NKut#QZ9r^+@%#9c||5vBh3N&ZTYGpR12X=2u(wX4Z#&cgAf{q5a-w@
zh7cb@b<WmctQ|s4M_ViOfA=5igpj~;nkp1P5~)H+b}Z|K;C6W3(EmMQug}61Mrv0h
z$A(_QAt#MPNM%VHW4fb_^jNbH+J(@byoDgJs(A>l9GezQTK-Rjty$8Bv8@wBhY&i3
zFqnm%Lg>t-H)9vZ9wBsPLh*EC(w%WtQ=uo5UXGTc>chNm2>qD!XB@;hfN>yWB!0pn
zAq-{7un<Ntp<0HA@R`FuXL5)KaU}CmPUK&P@Kp#;Lijy|F(Hf%;amvkLl{S!e+b`(
zuq}iMAxsS6n-EseObB5zdsrC46vzK;CQ})wF-~XvnsEl>OvYIuT<0(-!Z{(#W#K%=
z`HTw~pR&y&=8GB0en|*R9lngoa>j`9O6D6vSmoHPX0nEHZ3yd_tar3on+Y44Z*nA?
zL)hZ*txU*xdk8y1^#8E-Z2XRKPY8QM*vb5RMpEr!vYUF(c~-cOCC5Y9AHsnU4my@c
zLOA5`!%S$ZA7ygPk<$isg84~Daw>$=A)KN4&u3PVC!s&EHnw02JwLq=!bR%a5Pl5V
zM~zD%Tw(3ykbQ4~(w*b(t08>SOrUg)*6AlHL~ev|lU7_a;cf`GLiU{#O7yzIPfoqJ
zL%8GcpPBp;LgZlaD`)R9{>FGega;u!WKMnZh^D2p(>`V)y$tY22!DpqD~#S@{6(RL
zP(O^6FrJ0*cL;^TC>+M~5MG4vK7<ccR|x-vAci2ZhgTu^nY?Cv6T-ht-iF|1LiN%&
z0zT&TJEpX3CIlRLFocl9!?arYa|W3uh9g%(P?>9tx+5Rlj4xF}uvn7e$lsA4R%Hq!
za~SiQ2_J`%C2Y@@=rFP~$r?r!6B1@)Lf3#f!uW_e!pO-aw_}ql{C{5t#jub*aLB_X
zFXR9J3ML<C^D`D;EEq-${<NV;7)8U_)J&)zMzJvH3#L+Gln&z)HY?6Z@stRoB=de;
ziX>&is1QcQFv>bM<(QNY|M%rfB}ZPBNoB?=;s5*Iry5IQ8C{HVjPYU6$1hYxjWBAm
zq*fS-Oh{OpNgc)nMrvkK7@vlb9ELlLx{hV!lNK7~dX9wpr$HDE!{`)7=P(+D(Ku}X
z`%D`)NDZTzW0}Szov{gHQ${*!c$f%bG-uL+u@z%WM%rmxJA?vm%bZ9%Chf!M;7B@#
z|2sCF<hjv><y{%OF?MI{!AKr@QZxCBj6Px9YbFc|V{jOK!+6_F=;zq<XEK0sAR{fq
zAz=&+<BKr93?tej3=8A83Muq5F!>xF#%E61&zXz}V<eMNjH4YbZ6;qiyhXW`G0ev@
zj$<6}XeWd*k@+M?GMQ$S$F6P~4P|Hhmyl;LnI6X1VGJyriG-cxw3%Vd3fsT2JUfgz
zVa#Rz&C;lOOh~>ojQL?Kpn>)X3&U6(wtv2U5p}6Y=+fLxxP&FcJVN#1Da*oG9>zB`
zox=8yV{Zv#Wf-f%SQp0nFjhN0*D(2#e|>sw7&l@Q=@(x&gt0M<&0*|Xp1O%@yq7T3
zWB;({vwm^JiQG#}AfH?5S0KXJ7Dj{hwYP_{BMkcS_PTpgN!4;{{QRVZ@5w_La{fF@
z{ye+G*hBua<hhw8&)zWhg;75PDH+%w#(^;YQSnN}!7vWdFv<8z#^ErIgi%mJAqhvr
zI2J}P5xqqm5934_nM7n3aWafkVLT4wNf@WYI79x!xEaRTFn$QrHw#s-g>f#7^I=?~
z*uuCFrZ-YzFVZfw1TV6>KOFIpP1WMA8t<a7gmE<t;wbLgTRDE+ZTCixQ0xG%Qy=!u
z`ePV7<KxNrRv16g{0ZZJ7`Mat_gLC5VcZSl4lSiHmV8L|RdD@!ENxDH*RQO-7Y0cv
zOO|b_xYnLbBPS2Scu3K%PwU^`_3Kd(KH_Le@;eO&P3bVaVf;y(Kkf5jyrAK*qMtJU
z9mbVOG0)h3^p4bp^HC+i^O8C+j5oA|52w8fV`=Nu*HpGe>ihPof2F0qZl6k(Qube(
zU@cM){F&ej!%yQ9h7v{~j3CXBFpQ%Jh4J8GV%%DUnNX>f2kn5Ru&oLmvb#$SLkq(S
zBZFhmsUXdB=FKW6kip_I36;CKqDv>d3uEETnD=3PAp4H4hn-zr_IU=EPRQ5Ub;2WL
z5s_6yoQQZ4Q6jR5C@P|uh-eYnMdTBaUqlWOABl(&0TDSx-1P{#MC7JYqdhAZd%_-p
z2-TQd5b}t~E7~LeF>Bw<Nq=|Rj(qfj^oUIX5rsq)W}AW{0`*eM2m%=pDI&tnoFt!!
zC@!L+h)N<#h$tzdtcY?VN{J{fq6`-=@K61=f-qbVW(sxyC(Y#YEUzG9?ChAI)_bV-
zW5?1+RavAT?G&nrsLF(@t0v;KAjFDrF(Iv-%T0133$nPXi>M*OBSH{SQ$#HhDIyw(
zs4b$7h)+c%i)eV*lOQ5dL=sm@*{JUm$-{F&umr&^qOOQ~BI>hN^~RC`$=~g=JE~A~
zfwB!nG!l^}B3(pd5!d$H2B{*w(HEP4bM2YE>;81m(}V`)`^2Uqnz5f6&4s^rd8q7y
zesRs33(ZBe5YbUYClM`0v=Y%qL|YN9X;tpEN8$4)QTgfb-e}tw(OyIc5%1SSo{%!+
za^jI0=|5bw1CAJU7ST;acM)AgbQSUOH+Gzq`ZO1MaMe8-U+uKz&(0^2hdv_uiZ~?V
zu!w#l`iqz@;%gBDL<|%$Qp6|`LrS>@i5Mzk81un|)MGKO+s)&vm3I>k7xB4>^QGfH
zV}nvT-NZ>gLIfGaPV|fx@r8(SBF2mOQp8sx?z`g0axh~^buotGsnge0^GH&JPY^Lt
z#1s)zMNASgnJtGlOubvdHL1Bh(^fVYrm>t<B&S5e86swiSSMn=h*=_Li&!FJsfalu
z=F&Kpb}te!PsDr?3q&kr36=U-N+u-j-sS=!Ws81?#att0mx)*|Vx@>xBEDha3Pvh&
z)?;^L3&zzV)`(cksyUbJ5xI9fsYyrAo#w&@5gSG95b+(&TM?T@d@JHc?f6CGQnrXV
z5f{Hz#7~K-zT7S<)hw@Tn~3c!54Euyb!%hoo#a-;J`wvx>=LnC#2yiQsa-}a8N6yP
zWNjhjc^_N6g+P*BSzN>qh&V`dzJ<_iOKq~TJ#VRfM8r`M&qVw!;uvlIB5qODR2Oaj
zA})%!B;ph;B@sV}I47cc3*n52vsB$A&!85<v=+kZ7Ix=X-i*fwa9+d(s-=Z+orN!2
z2$w}%5%D9nPQ+DO3nH#_hkRfIax&v`A{lQl>8`pNcP2*NWNp!w0?BWSxFg~>niwqn
zS;Q~2M=_s#F%wn#E3JsOarelr+g=NlDEmOfLlM7=_(Q}aHhwJP36ttAh5lcsL@fVm
z<M~s>Um~8eYD>quO<D?>GrNeqEtSx_rSM$D3lWxx3=uCy{39YPLKN{z#A^{=5k3)b
zMEon_EzO*kLZ$+)F)fANZ9J8m*&7aJ{j?2=2#N@aAmOvNb$7KCBHB4S?aj07zivr{
zEJ78bQP;H;es3u#l-QmO&a|tmi!el(BJ#Ados%%@{M5>=?1sFfRZknZgq#vSh{z-%
zn}lcynI&YAkX1sI1PUWks!=Pub)8$;gEg|19c^~Wjw*))GT2bhL-kTCa!JT7;bRH;
zB*aL7ggg@RO6b)(bpe;!(Mq7;sW>^L;`!O806U>9X>T-3z1T`9ETM>mYZ9(YC@P_t
zgs&uwk?@Ix;u4xjXeyzEgpv}fOQ<2Cl!Vffy|Y!7P)0&o2^Az%lu%AWc?o~E5(X_o
zxJvx$@%HfTeH%-{N)*3@DiTPjwGs%)tYcw&$yAdNE5RipPC~qd^wvW2{dR}vZ7o!5
zZTCQ*)<R7QwIsMD)Rj<MLLCW75<cY^5+o#&+iLa+31Nif+J<Ba<7UKARvnezpkjPI
z3H2p3lF(Q}ii8Fd8Zx0$Q(6nFxT5`xsq8k5B9U<Gy}h?kD%sF;qqQ*eeR4Ai9tr&=
z43Hp5XfC0Pgsu`=NN6dcorLxhT1jXvp^b#L5}vgdT9!=E*mIFKc5`Ync976fLMI8G
z$w?dG_~EosDX9(1+2;)X+6WWd2rJtN-6V9E&|5+u2|XnAq><&=$e7FsBlbiNv=RDB
z=*QZF?LFj>42TSrFi65k38N$omM}!ZFbTsY3}wqnd-1Z3@KYOs{Cp<ibIHz*pyAkL
z`=>oEx~)JG;-e*G1XI4C{tu*7FPEM0OPU@TcIV{J;~Gm{En&Tc4HCvnm>^-Eg!vLC
zN|?kI&6Y4(!W0Q#OPC>Hs)T70rqlc%<9Rnb{U8tbsnk>==gPPU<M(5xgjo_uJNQ7_
zz*Ku9ox`q(%;kc#H!hH{P{MKv-_VTB>|P{ciG-yz$rDo-OQ@IGeYv)WaL|OPqi<4{
zQ3Kn0>b3E#kg!t1<AScW5?0a7VZMg3a$y(AN0)LF9x3EnM{~QaU>2}v=|%~gBpjjB
zZwZ?vY@uKz?2@om!nYE3Ncc{|HVNA$jMxxG_Q`F99|9@2v%8Mwa7C}fP6=Y!>?Ef|
zlHC&aNI1wX+ACq7g#8i@(9-iJx0vPW(AMsAN?AT~&B)<;-m2~)35O++{0}*n(u3A@
zk4ZQ#;hco?5>7}sDdDVy8?};7NjNQGZ6((k329~Q$WP^W9WL)8$@?7cAIML6*Qa&k
znpJXLkZ@7L6$$tD;*x~Rw5X4y5#Q6%E=4?oS2@Vf+6q6Cf0`RITrzIb(xClHMrIj5
zNw_V+E5Rq>j)b2jJf&$b;TH*aCHz4ff`nhG7V4Qou9(%BRM7VS8@s*FNZAJx9x{LA
zNFFnJBH?!?GapwWGxBh0Le#jd?!Ra_a@v0WmhfD{KN4O^_+diS3!1}@hq-M9N@Vt0
z!W#+yN_a~H$9+q3DtprDXCi(H0SSr(RYFigh{j8TM2q@pa+tQhtu`5S)SmDWF0+b+
zwa$1n2|6thnywNIYBkLn2^I}aH<#Jf^{qd)R&0Wt#Xiuyr@qRcl_Vc%LyJw2+6sh=
zI=iyS$SR|#jAAmPWMq?(SH{OOqGe>4ky}QLj2tpPl95wJF4^9DH?>T9)I6z2XBS<|
z5K{Kv=Bbb|zqtG7GVVMw)>O3nhZ2!|GV;qPD5H>!``_BdDHUKpP5w?OEF*qm)Z<F=
zMP!U<liD;Pp012?wG%#(QCvnP84sGdOUNiGqpXZ_6y7nEl2KYl8OpZ%Z?2ZT>Z!-P
zyo?GmDzbB`rAs^Et9C+1J@(4?_Kd15qlyf=Dy%A_8ha)oWvL3!hvYblL`G{FZDdrJ
zQA0*O8TDn<lu?Tvek!B3j5;#LB&8;><n|7`IZDO&L>Wme`70@P<;Jw#NvX*)+$^ap
zgA$oh%F@u2BBOzfrZSqz^t1nHBqLqM!u4s5Wu#K@%aKN%yg7{|WIrJk+q$g#-1f94
zGTqjWT~axovK|?N3_8JUDbr6w$2XVJf(e=3H0zI@@2N81L&mMBEoI&0r>%^3GWyBr
zFQdJT4l)LHb@h<ZQAQ^j-DGr^(OE_p8C_+pUFM;BV|v-cx450KgL}38nKV+7gh)>r
zy=3&JR+LHTBcm^k$Q%1ia#TzEfJ>e)v=au%7%1a28J}~hK{5u*7$W0$_BK?;FqRLO
zp*kb@;<cL+c^DyMq>L|UxSyt+&Fvb+WHgOe9v7XdlBDL0l>57F?HCzjWo%XOt%7kf
z#>>c%@s2u5#zYw>WSo>SNycOuD`c#cF@-CgBV(?NsWPU?m@eaM88c<fl5sCJmG<5l
zWY1GKIxRKl!c0aX*KAf%VCRk`&7&DEW3h}SGR_J~3m6y52rotM7&l24aTUau(o8#)
z)}p<zT*fk5P3`T8TBp76jf}q^*;{nu1?j6~td_A)#(r8a)bld7%h(}fos9J|woub#
zY>=^0#wHn?Nj2cVH5DPscWFdMwHLmXv5n0rOKI%W6vDzUlfIL&Q^qbCyIK1^d!wo;
zk#-M<O3wFEH$F{S++IL$yEthN$T&o|ePkRRm+7F4J>xP_+PE7>WEg!t$GG58a?Xt+
zJTBu}d*OL|;gpQiGM>;t%Q!=wBjXlr(K3FJaZbinGLw<7Y}|Pn7iC<Mae=cWIaJDZ
z+2L1cqqvedI=7qT6wLeg(br}CDB}j#OWB)D60X@7N`!esvA1R1k@4^Gqz5v7rm)|n
z{7R!H;};osW%@fIVaKr4f*pkQTWbGCTM$jf2~ouVndPb3LAamSMV!h$l<`Q$W3oSy
zM4shO?7L5Y$oNx+C_|F*myD+}-cUs{p3ykUcp>AZjKCaE|EW=wp3~ORC?P4Q`yUzK
zZpAAZuQ}8&%DDP2iW`>Zq4f2lxVJLAGJ>>(W%wwVsZoA%A|vfm5^1UGi<gs(Ywo<|
z-IOge&=scf-3szR70EK>x^b!ujqFRi6pHO)3|-?~eiy6DFl7)i7~|i?5+}51TYDEf
zcvJ27GCt5&prE~iObRk9sHPxRK^6sB6%<rZNI{f>Yzkr&KtZ&E><T_okW;bOJ}rbC
z3W7X)z2)q6kxM~t1w^c}aVyHjZ7Ay^l1D*a1^E@Iy^=mwAg{-s_tE(jd|upLDmI>w
z<dh1q0c8s-D59X8g7ONADk!F)q=HfkK2fl?YJ718B`CsjZsK&3)~;r})Y{&lN-HR%
zpe)<OT}mVa5`Ov2-h#-of`W<)Dl4d>pb`h)n$AK~>=QXp2YV&bDREVn_u;HdL7aky
z3K}VhS5RF+9R&#rYAC3wU|$E}gD<6)g0UTh#T|s&3Mf0Ow3|?Emzt;`NkLr&^%Q)n
zAX$N10h!hCr@Zjl@sJsD!ukq!Zb?f~&_KbR4niLmZk3WrMZB?sR0S;*v{aC$AYFk+
zfuNv?f>#}crV5%V7!&QL<Kz1dLWe~u=PSi8iMCt)eYBfMa|PDr#9u1JCzo-zqAI#1
zwo%ZjjJvgh3v2C3)mFiR`Sf43@h?idJ1FQ#&7p0RY!q}>FhIdT1zi+$<!<Sxpqqm3
z3VJE%t>C*ONj((wRPe`UoA;TJQlz8ZjY%7#`mnq&m+Fv~I<8XuwgPrk{S|2Q5Z_T4
zq+qau&u9YB;5JSj!Z=L9jmwEc72JCr+rGGaI13M)NLq0sX@r823cgVArGilkMl1OB
za?Ir7t`)^yblym$VvL)}SJWE{C`+6q)vG2DAFp77f)xr@DwwEXl7cx3=8~C$DGI(;
zFhjvq1=AEvr>VZpo=EqlSWicxKR1VN%FR?Ti*05rnAuSv?Us&0;P)g-WIRv7d<9Ds
zETzs=uu#Dw8fyi|-X)9sJg3+R5wh&_(zaiwU^&&bAKxhU?Uac89-D<a3ab>X=6>72
zxQ1~ZO=%jMO{nim$acy;2Ut&IQ6quwT5nXaNx^0|qmkXhBxfffKi{d?reHfw5)~d5
zJ7~xhgcXQ1<;aZskh)sIE(N<4oKtXK!5#&BDRKqJX@)D<ui%h^!?bET2?rD$RB(Bm
zeVo$Ar;JpS|K6W=gsUTRlvb#k{B*B}RFplT;G}}n3eIrZQwpef;R<e2QSr0P$-@r{
zs0ca#=U5Vv3kohOxTWAH1(&EU1=kh)$W>fXa8<!I+D7Wy7o@43?0)OnNjSsDrW*=w
zve{QITT61n+q9rq_zUCD3Mi4BQm1+Ls=uq?E4KVi!F>g9So=W1Lj}(i{H@@Tg2xK|
z<_Z3yG3_KgQSdv>cG@BHxOQ;Cl!|tB2dlUi^vX))DNT|(3FlZv+2;ygD)>ji3#Z<t
z8L_V%{+h|dPC}UN|5fl-fmeZ#wo_L5Nn%Blp8##VodvpYP_wh$Q6ve`0L`$s5sCIv
z+7(q4SE116NfTH_HWiuzopvPJ(p4A=Oa<>0yr<oOM&wmW25qV(?PEF}Qp>%HZCb+B
zV!hone>{q!lvza<6(r2c*nm~}mgCi<C@K}LBD;#bDn3?`L&Zlba;u0@@n}7As>r3n
zKho2!v)%uc#&#B<+Me^Uin0;m+Rj2g75P;ZQBhPy0Tl&R6jD)GwXdP*l8VfT{62xc
zdT=#;mrR^gWI)+sj3g<c(v(9@6}429Qc+q(H5IWc%BU!-qN0jQD$1!Suc88BlhmV~
zg#o$Tw>k@X>ZYvQn?@2!l~q(xQI&&yv^|ZqgfBY_q;jc<Q&C+-Mrl{(#Wuz>Cqm)X
zV19I`hqAR*)KO7iMT&|96^Sa6Rk&3ov0F0!l*xr=?tc>!=wkNE2~l-fQjak*mkJef
zH&D?~MXHK46^&TcSVepVyE?O)J=4A%my)ic39Fi_ICRdQ3_Hi!Ga*6*70p$wQL$D<
z3l%L@e5T@a6|GdXR?$yIe-&+1v{lhXMOPK=RJ2#oQAH;e9aLPNZzpo~q*{DTCA(hZ
zD4zcs-B|_Qe0WjJ)lEfriZH5vZxuaM^i<J{=35tmQc*@yb*~gp*hfWQwv2eI)x{qA
z0V;;72+WHcsA7<c!73`p+wB@c(Xv6`E&@r0Q6v-6Cv_2qtMngUDW4^$j!-dD#atEh
zRE$zFTE%1)Q&fDR;!73dRE$^g6?e-R6=SJqc6e5F5hy)=XK%c*y*v|COjJRVNi=n(
zWV#Peye}Q8+otM`;-;#YredawSt_Qh_?lhKpq_c`R_fRuss-&6%csen*)-qk$IPLz
zUTVwdp0PJHI_}R`u|UN#70XpDRI!LXEK#vo#Xi2xl5@4)u~Z{H2w19O`yx-?_Nm`c
zNGevUSfyhBcc^>Z_ExWy>p`cwtJ%Z;^D!i8*3`XD#d;N&sAp7cP_a?PVHy-#FDf>x
z*rj5(iY+R(s@O)(DSI&OTUwZvTpgyzJV{Tb><$&*sn|(w+4HK}_WencQ<_pPuGonr
zB70QqRdIkG^-|c>QNGxB-(WxWOrN@Byfi75u3-re(W*D1iC<1ny;L#&sET7M&Z_u9
z#c>rURGd_CO2s$tqH|8Nj~6qR*=;{fqe;sx%C5IBKSY>vI_;c_^C~V<D+;<VFm9e4
zMSN~Sccb!gM9BDximNJqR`Cl*eoe(q6}MDe=j@LvZZP@fa9S~sZQo%Vexi8hrre?V
z_8o4kpvM6u@3hSh<F1NdRs5ymsfv3lextoh#bXu7@4m0%fr^I|MvQx37r|>L7w_b`
z+(mfQMR=m(cNKrA_>=aZ*D1j+LJljrLOz#Gx(bgw)}7kH^GwCxDxRx&K}&2()SaU4
z{I%`rP2?r3h*J^5*DBtqSZZLIfqzxJrF~3CEgfDJKAJol7Hja+N>P!np^1i|iV$s&
z8j5HLs}NOW)exmYQX#8&r{X>B|0+}!rV5MrqbN;<PMbgXOotA2D;IGS?&m?L0BBe5
z)H`bi?VOhrN575zz-E~>WYLgGvwMkB(?xNguENE|c9uvs4bd7t){sv_b`3c+<kk?Q
z;Uf(>8FO*LN?nE2uK(@-`M*sA3-f5mtDy(WzjCyc&99+=M*sPkR7gWX&A#NM3sM{D
z*zq)F!E&1y)lf`BoQ8M}pJ*tqp`wOL8cJv=siBO9vRp+e4W*eZC;wfAOHM82G?dp+
zfmOeE6+(_2-Gs^-s<6D81}e4s&*-Y0rP|}V39%Yn8k%;q+tT>0eV?tmh8h~&8tQ7O
zsiBsJL=8zAYHO&&1rs#%?j{V)<~}2MXl{4C>z>q2_*6r?BX%~KZAds`bM1_Fo_ZSU
zYiOvUkwy>q(?-opNzu?i!?)dpv)u$L_@JB6SVO3rkg6d~0}1Ixg<RbQ@<!z1JWo>%
z%{27W&|iZ`gP_rWzM#8?<{DaPXs@AzhL+StVr**-ZAiEttvE|<q12WnWwN(p2~CWP
z)#AyrqlQizx@hPc>6z|AXAP9@cD8o_(o%Zzy*(v*XlPs5-CLuFWr;+3QVerbdTF4$
zyAKzn_u=BB`nmctnK{TcK*K-{<26jsFi68-4I?#-(lA8BPz|4H_*}y<4Z~@|cend|
zbKBGje8L>bj$l6|i3mq)_(H>m?!s6NUuyVD!x#-)H`VULWhZwRN{{gnCkfe%V--mz
zYM7+aA4_4ThRGVHu+NHHF;&Af4bwGz&5{${g*)trp0H3PVdk?m%+@eh!#tX_|JqY@
z^P{La8v4vl8M!cJJ~iq97HC+=9^%^7B{|u|v*i*EOEo;x@VAC#G})+^G@RD(jfNE(
zc4^qHVWoyu6empp4XZV*(Xdg&CJk#ftkbZb8q1#Z_OL^mGdew2ReK|qt|jIw>F!b7
zwVBpean}~MY2MI2Hj!$ZhV2@5vXCS@n0%+<T{*if*>^4C`ksYkOp-ks_G&n!;jo5%
z8un{ANPV&?=EdZw)@|b+j*U8?VFB-8Ii|(jZ<=~U!%+>#X+3gO$24Sq97Ru!=?U@|
zGd(9XoTTa9L+I5*INhNx3D3|p*6@>t+Zuk*a8AQz4OcXr*KmP^EfOzL&zwxVNWwWW
z=bO4oLRm_qPo!Pda81Jv4L3FW_V0Dge!b^Mwjb9+AR7`+XzISja%u~`*h7*#8h$2w
z4G%T^Lep5oZyN4v_*KI_TD;@!!&BBHX>`n`>dthsC;2jNOW$|Vk2E}{>8;@p?xH7*
zUyqBTU~UQaf#y#Qe`$Eia+U88rmXN#BGq#ZFKD0CkweEz4gb&@*I;URrQtR0;Tl8@
zZzxpS=QRX0yw%{<;L~uRhp>^)?JMVWoge5S+&<6~<SK}V*q}Q<u%N7@LDrztHgzdc
z(V#NX$fmFB{89Vlu*aoDQV}5`5lcgchO9cGbiC8>o_2d3nRR<P&tHHKT+5x>3G|*4
zNwVm;vkb-7VaWv#NwVp<*+ckacUrWLv~V(A2ayd)KGKm>M;RSub>z~KTSpNcMRmmJ
zfR6k+3h2nABd?B+b>!2r=KHkg+{5b*+8vd-C(q|jo`O0GaU_Lx{FK-3-scTci*N9d
z8DTLUpXeyb2I(6?skn|3lzIxk<Z#!zY1^05QCi0wpWR+ci9LmKI?C&)rXyBI1sxT2
zRMAmY$NO!lq+|P&sLDDPCB(PxDdgcdsd8r67hII)E%3OwuIh|&I^uPV=qaR~w0o6E
z{<7I?Py=h*O{lG-j*eG4Uh7EEk*H&Vj)gjsbbP9#myX^#l6AOsG}qBWM_nEDbTrY?
zR7ZUsDLNYIXv`JS_%_hdP)D079(!&6TXkknAuu&6mHJ#qI@{dZn-(r%w|B`AI~YpM
zSngr0a={h~IyP{}w$#x|M@Jo<bhIY7I@;^llcPaf9fPa5CgpOs)3Ib;N+CU&9(fdf
zpFBQCgAO_fY59<!&N{m4=*FJA=s46<C^g;FT}KZcJ$0;}=Ajgcfk=l`oA=StSI3t+
zzS7Z8M}HlkQycHP2k026W2lZ{)B~-O22lVyhUmE6Q=lv*D*NmiUk>OP&Z^IJn9mY!
zoUmsjsYd7+sbiFm(K^0hpX4^w)iYtV=S@!`YcGMaV|0wwF-^yG9pk7WIwt9utm9mj
z_z60;T~C~-)5XPqS4<^)2_&DQV=DC$9fK;zlflJtDId0^eXU~#%_SXkb<ET;<$1y^
z9kWT;-R>4j3q|_@$KdA)^JuKa*ya9|`P@tATcyrvVYg+Gj>S68>iB_rSjSS*>e!`Y
znU3W;HtN`<;~O0-s2gcfP@|4wrH)lP=sw=0x*mG$6(MVNtkbcc22{82<_*5$$+kC*
z3`k2h&FXsO%JG|ZY@zwAV~398bv;{kd`pd`9=>Axp+p69{*ywM-*J#TxjGV3oaBda
zH_ZwiM|B+2u~)}F9S3Q+*?3xB_kJA*sL%7b?$2`*k{>E^SjQ1s6m3$;;3vK>K@N}W
zIHBXDj#FGVxtG1VDO;US_)qIN!}3V>f;;t`j`KQx({W$N1sxZ4+@j^L;}Q*%j%zxu
z>&S3>uIRYR1y>LAbnPYV?iV+vm++&G8#>-hin&R}rC7S*wy>9QYnX>rROxNnzI6Pe
z<F1aMX(jHo6Un!-w!`D7)4haWb==eOkR^>f)eTJXJfN(O7c@pCT#s}-*72u~zjQpI
zts^S_cO8Fl7}7uwWna8<_s(UXi9OZvOvm3kp6eKt&)vU4DlM_4IT}!PO;4whglx#+
zOLqGYEseYGWli00bo@(e-#}vnZ|UTpwn_s94fu5UX^+zJK}SGGP=~I=&=JxR)*<Uq
zXrNbP=W2*LBpT&6u~8?I!rTgyr*49(L*qE(bGg<QaM8_hle6z=+oxGXU8<vCZ@ZVO
z_ZH|F@hY3WpJXzS*+5PMxeR16kkvr6f$RpN43w!ApUuF{iT2_00KG-i$MsQ8cMbzK
zF>qsI6d6qG>ykfm-#(g_+dzzgyaqlt0J5P|k<xK_43z)T-L$troFwH(c=8#@&%)ju
z2}#JHkb%Mm{n{{M4HPj@lne}1Fi_0ECk9GWBnFBbC}E(afl};zA{T#mHF5YL*Nigm
zXU#kn!^ve0Ea{!KoPoMa>;UKi=*pw^N~vg|l7T7)sv79r%e8YOzTb$-%$N5T_Wl{Y
zw+HWgy<9E>aRw3%BpHY|K;u}`KrI8+4b(93Q1BEUo=QU6Cu<w_NqZdw2?n-*?b*{?
zAbB2s!FAYN&!+~G4b(S~V!&<SQg5NIfqDia2XT7$AXQH;_@liN=`Df=20FZpZfMx=
zB+x!jZ+iUETSzsKW?-m+VFuC-G$9)U9VsLO%?z|Q(8hqrfMB47ftK7S%?*5Z>%U{!
z#cPS9r$)W*YA^FvtfkxRZJD%ZY{y92KRerD(4y`{9b%xjfj$Ph80c!Chk>4K_D|{T
z-6(kG^ajq62KKE~!d@&SQln17gE=XE4fHcGz`#HQ{SBOsv3r%?NECYu(F0tA3=B3f
z#6a$O9uns6Bh=_4wCp4F>toN!;S{`quMNyF@VS8z2F4qhU|^(yQ3k#;Fvh@W178^U
zVPg8124<Z~3(vJD)sT_NBq1`^z~nx{I1aLY78eQEu;+=?u?D6Xm}=laAE8^Z?2`@b
zTZgwfTtD^^MqiAXW?(u=24;HJM<4@wNg$(-Fq5h<u!!bfHur3UUXsK-1M_JP%yrMD
z*v3Z{?Q4fU$e+Bxpr7$cUPw!3f_+1{V^LSqt5}jOrp_ttT4LajdFez*wcNlr2L3eh
zmx&byR?;Lf;Wn|#z-qcDKpTRAHRO#ZjDgDr))`oD;E;jC1~wSjXy7{oI}L0yu$iWx
zfo(K7duQEZV5>8lYZs*4USJRUb^|#UAm97w9aLj+yY`81-L}fWE(3e1y#{t0*uw?8
z@%4V~zCx>J_Q>w1j$-*i#unVtA$^4}=(cBH;fR5w22L0_NyAjgb<DtVCi%uiQMLf%
zDH?qP=M0=TaK^w{8Z`qo7kGxuPo36Rh#qQRS+8NY7pTcBxyW^q>KMzf7`STSk%7ks
zt{J#);I@G~Z1W>+N(OE*zrh&zGa;@?R^mSySllG*2f=Q|&jx-maL>SR2JRY|y{R^(
zU)lZ+S3%kP1|G2FAsbLBN^knwCl#c9V&HcJ&kX!+VAZ&&KMee3;3@Sd7wM|lt)N7z
z_yhKa^W4A-1FsCcHt>>$=~z<kNm2jM+~aLw(3M0w>3Z-!`VIAoigkQ{j8>?ZHh<bP
zP2@4*XU~cO)j+^N&_KvQ*nnt2VpY$5IC#K5HOgH%UN&%LFLIa7Uaf50_6~J513GQs
zCZbFj222C*4SX<Qals4&@0er@*yk`6`E<qAAvKd}8)P<-#k9XfAZ@08Ld51|%cN{3
zqD|y9k;_DO({5u96Car<+)ub!AtCPD#NcI*P5KF!rbgv9K^S9#Bnt+(()tNxkk`b=
zCd!+rU?QK1{3bpzQQSlU69r8aF;Ub+ArrqYM`05s>v>j;^w7=i#GoByQx(HjM=j3d
zDrWw7OS}Zxm?&+cj0xm)(QDpUC&!fHz=lsuZ#vmNRFySR&cxjz$@D6C_QnYXE4V6}
zsAQtLi5ey<o2X(U)`ZJMRSI}~rm3@1s+s8Ck3N4$>`}(vQaa8^kE0q*EH4u`wx2-X
zfRJ$9HFr%DwOE*BqPB@TCK5~}n%ElSDsVAr=HTQFvr?AS_RxKg)%}E1pCx~4(gcnr
zC#0=wqMnJxCYG3}Zz9D+e-i^tG%(T7L@N`mO*AsmnA_6aM5>826X_<Jn9$zYyZY-x
zNS_eZ)I>8A9+Q639kG02LaGQ^RMIt#*FH&Fm`IxIX~{_0HYVDd=wYI#iFPL1o9Jw!
zi-`^<b~ST%G|`FcJ={;AbgQ4evk`VRL08$`sB_rtbw7a;*;DG$*3-*GZxel~UHs}!
zA0{79$Q0dQAW1*Y5-;0d7-(XUiSZ^Tm>6tgh>1}qMw=LFVwj1~O^h%xoF>CgMDNFE
z97*Zg@gp0jhScPdCN6kmNkv#%OWw9H<qNj_%ETBGUz+e1w@+i#w<%*y{4*|UoQZEb
zCsy*N%!`kw;-s2rViL`56SGZBHZjG-bQ52jm}-J-$n7*HR2^lhAo-zMW|)|1g4{-z
zaDUOEF2ys)#9R{#Oe`dO6Z1LFdhesDI?_`5w7-yjzg>2bi8f`klPfB|)Wk9qhfEx%
znM1Le*lc18?f)iLnpkgw9=ohEvD(C16YJRL`ms@Km~7-XlP67&Aqh2v$OaP|O>AQA
zp#$hSJ%;2T#l~+n@vVv7CiYP9CbpaS&csgY_C@xq&XjggN0oEYd#&G_AlyYYj!${?
z)*aE3lf5SPnK)qLAUhwO)3u)osTv=*FKx(x@b+dLF>%zybrV0DIA-EF4Umb8CQg_*
zY2u8Dvoxhw;1mt(4>6}{sTOw^Nr<P*XTl%INwoW%iSrad6&G>OC{I#sJgL_7sC&u8
zWfRwEdh>mTD<-aTrD|XM__aMDe)_(&!%w10^>y8#O@=lN6ZcHqGVzm%pH2K?;x;Yw
z$x(MqJUx-zp}(+2PNtKz(fx(HCg{%U(~2%aaz&EgOx!o|nEIboG&k1ZA+1(>3rcM>
zIeptz_p<)N=$9$>`G4u`zjGLWQ1|v1Nd9Agf!sbd@r;(Ug{2n$Hu0Qx0}F{3UYK}k
zBCmyyE&OBR6>YF4GEBTS@y0~hglOVl6K`p^HxZz5Vdp+-cn$js>)nUsr;SsW_HhMG
zgsAt1+C#r;mS^@_duv+ii<L~sG&5;iFrjeSVuw+LH_W_7{r=Yyb=v<;n6$+ev-^$i
z^7VO_+_JuXo&L_md)mM)<h1a?L?#PS7P48$Y+=yslq?pqTJ|W@>&i3V*vpE9_N&XY
zQ=%<ow~)gE$w~5ee}P_aju_;!klO;i&6~%9GTakmf&OrUvh?0B;pilf*<Tn|!Cikz
zrhFFiTc~28s)Yg;3R);-p|piU77APV#6ockMJ#(!7qw7~RJG%umW`wI@c?_&2uW4K
zLP^%rY9-0YvT?Kk%UCFDp@M~q7Rp&DZ(-O<P(jkt0<XN!Ls-eOmorH!)6fhMs1zk~
zQq4lFh1wSG#l^cU#963rp@xOcE6{9w6s33zbIy8-XL8r%&dJz~T2vRm7)epp7$8u=
zI@B|_qKPC?+b#64(9=S)1-FHk7Ft=TYoVTnCKj4nsBa;~LL&=}*<k|<4Vlmw&ER{C
zbRRF3C21DYnLMr)PnT>B%f=BIeJQb-1&@X17Ft*!%U1l5ORzv%3hBeN7;^Z-BAi@=
z)|P#9zJrC17TQ>7%h`4o+FKak+Cz!#du;NMO(zSTEp)Ze%|aIo^lhO1c_7zL#C0L2
zyM>?gW&N|0J*l!SOz&l(w}lB7CR*rYp|6GE7Cy7k&q99-gDniPFu=k<>d67ZAPda~
z2tx)4(+3Di<=ibr_sIdmPz%2f5Qb4*?$jpNQWLLuh`d<o`P{+?ng$lWvM|!ZC<~)4
zd|{#2O3&K?0{Mv=D3l*4qztrq*MY(q3u7&eqZU~p0}5~CK!IElp^D}Xv?Y@)Otvta
zhSI_m3sWt8ZD9ttZkmPZOul8y{_pH_50cDe;VcWM2MP}c3eC@Y0t1D)7Uo%4WMQ#|
z`4$#fSV*BRuvg8?X?EvF53((ZP$Cs!*^=&M7M5EGSqNMB#=;639Si3ythBJo!X68I
zEv&Y%#=^H2wpmzfVV#9d)O8ltvy%-LeQ;`f>%{Fk+QsFQVt4VUd0S`#EW=jTw!V@`
z&p>a#N!d=zWRUQkg`F05kcwWCaV6Z@m-fAdT^4p*h;gU3Y+-j%iMFY)JEoG#YLm3j
z!hQ?KEu5e*PNf~NaM;2T3kNM6V*gn;)qZ<2jZ}n3sZk%fk6Acd#7z=<%6Yni`y@>;
z3blgkEKR3*DW@%*p$R|8lQc*mAtkDD!5!P+yoC!E9?_(=aM8jg3qM)7ZQ-(oD;9pV
zaKpk?3)d{r&G73MBHbIyXTKyVJ1hOBg<BSKEwOKtzA6_#?{(~m(e{<#9h#^XezS1j
z!Y>x?(ln#hO}#qD)=Kl-bo-0ml%u;?l%+2p>9x8CGzn=~@7q00W^~Joj!jQ2{BGg3
zg*O)du<$4C^A?_4_{+jmnxcb*XSA$}+AV57NT4hc!WR@O?fe#A(JC7x%x3vkCZrwG
zGIeW<q<?9mTJTx$bFU8DY}f0hnKs#Tc91~X&o?7rA!s3EO&qBx5fLp&7V=~uZw6#8
z_|C$6+I4AXv!GefEm%~<g2CEsdtp+;IRNrN&jL<Oi6SEK2caKmCiiq@%RqDnGG!oh
z2C`%zYX+h+P_u`teR;cGWI$Z$;rd*U&7OfA8OW7^+!^>N135D=aTUrAwp$$>B<w2f
z&OTTm5|aT!WT2j->ONTbI0N}IP&EV9GLSz51u{@F1En%hFaw1$P%MMK;sG6V3umB6
z28w3Dy(R5&>9`KQ#2ORR>3!Fa=6V*Djw_yl5*diR8B6chk_{c8OJ|@=1}bEr;{T)R
zI>4nSx@dM&cC(wEBVBrLFWL8~j|UHV^zs7Id+)vX-g^_Ih=KxAL{JbAkSfwt#0H3n
zq5=Zaiy*>g_rJOP`M!MTJ9FmFWaiGDN!cVD6GdX8XiSXiV;7@$*iX90uQ{`msW=sx
z@=<chm?#w!^%sfKF+l~F_Oa>NTB?>F%B5FRt(b_$M1`2B7!%1ccR0$#MA?`~VNS^p
z``G1}mo6G8&*TJm@O1UssWDM0CaSWS788|Yq6&2(CNB4}pY^dLeO(t7>uXo<Yq#m^
zDzv@E#`Gd&^_Zv;6Eh{ul29`yYQ@C)xcDh9YR5#Kn0U((s~k}`ChEn+V;Xd7e@rx>
zvN5qGCNg8fj){@f<(Oy~6OCe`OH6c)iPvMIaZI#{iMBD(Bqo~1M2nbc858qvXEdYn
zJ*zd3iRQcO(4(RBR1Asqa!o64PwSYVS8Rs#wP*FUbGNGf%betPG0{FII&f~qO`>B=
zbRrjR5}jF@)5`trEDOKLyuPp9Ehf6h!~m)!CVIp~&zR^N6a8YMS4{M#f^DnziHVm#
zRUBfUM0xr8nR)-1xZBrO`?<av6cdAEVmS3zPai@}y=M)jA>%#LokqIrNH(<5-AKwE
zL3&p=R!7Ign3z};6N_VFY)p(Jug1hIiqe>v5ED}=a$;g)OiYT2$uTj7YfI{9*Wf+w
zsg_CoU0g7AW8;)}HjDQC?CCKvgGQg<`TF8^23e9aJ0|9m8(;Q4CgwLzA$@*KEQpDP
zRQa^XgU0TXLX}J|;Wm=$d?O~7#KgNX@m@?UjfppDOk-kIOe~9u<uS1$CRUQ8j%JRa
zdivQL`q>Bi*=PIN_xssfM`ykr6Ys>t>X=wVjp<TV>u(q7ZxcxrixSdSwZFYKCf3p1
ziHQv{v7Y)q-?gWWa@+T}H^#)KnApq>CWUrEIHJG3puhdm(aaBHVrxvCj)`w#Vp~jn
z6cYzx;vmhPnAlFFzr8OecErRdF|j))KIKYw#>B3eD7nR*Ae;KzH|U*|uF*Zz&WXxi
zHt5&I9ShP4KZ}X|F>xra(J#n^RN<kRI2;pS#KbY0W&ELlBQf!LOdO>MAC^hVfYst$
zfBQ~<Hw=!)#HpD0GA2&M#7SCJo?8z8L`dW-P7;32I}Hr5iwv+S_e@ND8xz-J;;)$a
zE+)Q@iHkAuOH5>mX+Olo*_b#-AGn|w!Dzw`u$vCB&&R}1F>xU#ety~b0XDscNxP<J
z1qo@JJixvb6Tim9A2IP~O#DWZnk|2)aU9@U?i^r$Gr+#d{0glw^fXaSTxA=1p!>2j
zy}WrnCT>u8$HcvuxEXU_Pxw0~ZZV-34Q?~J!$@x&P%c$l?x96ruDBl)4=Jh>RUX6y
zZKTuNNsnTp&kXk#U)MyHCo%CfCTcsPjwAk!iDxlU%n`*M@n1|lr^AFJvN+;JOvGYB
zb%f>!Cnn;w)H}lOhy*SBj`)SoV`<cS{$)MjpO2|#*%6B4?vA#~`!mUgas!SCIwI@{
z!x6e8iVU<vY(r!fe?udEpdE39a0DDNXrN6x6>l}rCQig(Ei<blvN<BJBl0;SyCZTq
zBDW(-Hq6NBh+K|%l{d0XdMERPEa`Mlp0X&JhizsKv<v=c<#$8@+O;DtZ_O;|h&2Q4
zLXIfRNwOR<sV?cq3nmj5^+e(&s0K$=azvUVN;#smBg#6WoFkGPVLBq}h-62cPjzSR
z7t4j^h`rq46z<(mD@7S5O|wMlLip@JySyVRu=0_eQjtk2<I4vyDs<1Jdiw3IQ`r%(
zIii{)syHIu5qlhMbL(hTN32M8f9{mZq-Hpxx+7{i?t}F7KxqwX-fE>LIq*~^O418Q
zgq@E>Qs{XwN7Qq~U`GsbM14mza70^2v~xtJBWy=Bbwo2qG;~BGM>KXs6GwEJqP*^i
zE&L<M{-V*B??iN)qR=EQ(Iwj45iK0i$`P#{`rW}D<wBDpg!E_@y|AY9BU^1~q}IDr
zfF9gx?}!eL=;?@Fj_Bx!PLAm2i0+Q)O#KQ*yEvjN6Edca6x!|$w0p1t*^mM0^gd~C
zNAz*T0BUOW+I=0-&k_CU&^E{p46?OdnRBOQT7%p;q1=HKKNPO~DHzHnai}APIbx<G
zW;tTGBStu4f+Hq6Vx%KRIby6M#yMg%?`RBpc&0l9bTxgEpKlq@Iw_YE?(Lv61)`H2
zG1(E*95LMyJ-GfUj+n}3lLpy$d$=nYy+Aj^5gC&rd)Q#*AbYkW<~U-BBbGX1t|R6-
zVv!>jJ7PW;T;Pa>jv#N-%AYH5T9YnSAMkOCF5%yxh?*3khS7x^)%>O-mQf=eQFK_{
z<xEyOVjI6XP71vzPBuUAPTzLKJLICcs23NjDcT)z%MrI7@vbA@bHouxeC~*~j#%f2
z4;``95$hfCJ~f8hvw?9F<3`5D{OnNKXJRwOQYV{|TUht;)4$ss@sS&)Vy`1UcEol^
zeBy|mj@YnG>|mttklY$%tAp)bj@V6pSWhoI2ohVjt4dgKu>I0tpCdk_p{ZH>kRu9p
z%h>OT1CBW8h?Jx5pwt}fjwWqnaG3Z0w0$P=qmKB3)*?q-a_Ge+aoiE#IpTXqoN&ZR
zN1S%VH;y>vh%X)Sl_S1(M0>7h>c7^~@|pFO^lkU69GdN}6=%rFtKE3}mL`R5(<fg>
z4R-MdNBroBpB!<)5%gH*Sx20sDbEd{kJ6CA^1*h|RhdMn?9Yy<aZ$NQe(+j*a<KiY
zBYtzl6-Qj9g@tCp<0^kR;!ldksgd8go~6g#!6jaPqZs@!UGEUR=7<}Pxao+$9C4j(
z-f!rx?TZRWDfe$jRPGS%xLYh~oc25K=ngH*aUsXWT}Rw=#C=CR;8OoEK6Jz*CRD@t
z9pW+b?;p53ed6g)nf&XBXLJZ){+uz!_`(qpKL2+(Nd@C{6!5qdcm3vLd_LG#;zErJ
zGcK&S&{)h77dhi15EsF?&{-jS#6`&C;kYn79*GOVJll}}kN7K`%o3;Hq}&~4^DMJ7
zX;UOQS6sXr7p3B&G%LB|B7a;Ih>JX&%<I|bi;I_UUKC`dSX>-@J+lz=!k$f$xG2i}
z<wsPCdwPkuD9QY8+`Xfo<mu<eDxc;~Uo$u}8W+iNQ7$gZb5=@R^e>lMHZIC=vQ{T|
zWgw-2qg9BDiY!)-i`2NN6c-tB_p=^kFhA&?{G`Q2Wv~7!Ow!|`s;9ihq#EPfGu-7@
znwVLGlQlh?T1;v))`^P+Ke}zM9~TYcVrg8w85fyxVaG*}xab)d4dbFwT(pmi4sr2%
zTr`f0R&mifE}Fze)3~6=>08D{v$z<!JB_v$Oq$09J^x9`W`&aJx730|Y<fN+>+;Mt
zaj|lJo%u~`w~dQ-G$J{o6^GcQ_beIh7#E%5;<MaQ`gyDPvCPhK(KRl*#YHR>?LzI;
z(uvUfGR64i_wL;CPfJC6#YOM97#|lC;-XJn^o@%_aX~*6N;5M0#l-*`6eInyoz|bm
z`e7v^1LO1=$tv`Ck~}AQa9j+bAugIeG%m))#hM3|?o6yZEG`I#$HfRH#7D-(D36b3
zGKO(1#V6e=nOK*eiXV_WIx#LLktgF~A-8RE+`Tt7H!h}daw<9SANS_ZG)_*Biy2Hv
znaN}p<LtPY!-Rh1qO5roka6*bh|<F(^k4wtBC3Bz-8bUyqxg$y2!`0SeK;<Il1t+5
z=^T+|aj`ruj>N_1aj}9N9v2_S#rC*(D=t>W#fG@p7#E-BNvAhJ=^4eh$+CX>JB+It
z*TluUOx|Op+_g;B#l?Ci?=#ZVl9aV6E;h$SuTE9BQnTY?OI&<N5k4!kb-{ER{Q-7*
z%EIJdOQbZap1Cb9K8lM^zDT2QaNSK#v2NDgK}i~pxY!pL^w|H-xY$h%i;G>H%rP#5
z#4OPiy3^iqK<zyggeNMUZX5k9F80%?#p$$P+<Z`p9+05zK-_)inF#$Zb2u*Ov5mm}
zjDISmb;+52lxmBMZ`iBH;^KH*oQjJt<0AK`nJ38GL+pJAGfz^e46*4(B_Z|et2liZ
zMGTsn`E^{}u9aCB>61%GFHUjqZ=8vXZ{uRy?8tX<@k3nv7#H8i1-+L_n_VWA9^*V4
z7w4!`$tgePjZ%`xd&Sc)#Kq6lyM*{OAue)D{)>y}aq$cDOL6gQT>QrTHicGPT#k$1
zX&Sb5k86Lh{%2fVVRDu62IIB3_=^ddU1w7Fg?5w4-=2Pp`dirjF2~)txEB{s;^Jvs
z+~?efaq%cF9(a};c{zQ|$$uCRR&`HY^Ucm2mznY}HB66E{m(dy6v}!*)00+%glL@*
zPF%#}qIg1-NVqFif<iPQL_$aj;bX<05K2O*2_YxM{uf&PyzWw_aTXDSNq{k!5IU0(
zW0;X_uF}VRyfq&Qkv|~{B*ZHTktHFrCPcP`$j+9(4zas;tZLqJr(1f?Xbu*0GUj4@
zH6d~{A%i>#k=Nt-5~6A`_Y}HdLKI54_w<S;L}9A-q4jKAo&Sc|qf%3fBt(<DRfy1?
z|6&P2NWT)6<Ql3ZL^_jF2~j#Bl9-zbQ8pny-{uC7l@L)DlNm`#Nr*Dc$MUOr<r404
zS3V&suvn3?5@Rak241Msm{(@ZI@GS35U(XforI{%N;SsXj2Q`0ok<PGnvAsHT1@)$
zPMhv_$E#jKG)Ra{*6Sz4Km07H&B=xd(TE9sgkjM?*6Rtexp3;om(xoPwHuQMhT2US
zn<hjvCe0a1Z;=o!JzjID-6kR0CdBxJn2-?d5~6)V^h=2TTyqD;?g`P63ALvalg<gz
z#Z$T_L^qEIzY{%}_w<xrOnNi+Nr=8oHh$}Vm}>y@A&dhPVh|Jh+Q48Y51P0^J~SbQ
zCB*QA7?BX;5@Nx7u1{!<8p$@qM<v8)=3^MgdOF=4Za36D51E({lM-SRIVT||C&Uys
zcrPKQCd9OaSd^g8MY?rPPly=_F*6~Ca;aG?&SRX-NH%kr%uW3Ng-ufCQ<J>hg-qzz
zaMIsMh~){fA|aNL!BBfCXT8a|%(H)KxiTT%VdX7PU&Z8YM*2D&)wY`X8pd~NXgEAb
zU(3q6gjmnyeZ~!p8yTy-e9k!`wj{*I39&sPK4hKBZey}FA-d*wk7%@gln^8NGf>2L
zB*ae7@)PpXDfgU{wp|Iaaj1P@sJ$m4_ENM+XfI)3LVQLOgq9jwKxi$!n06*1zD<Y&
z32`tX4skt4Xs$6iOb+46LbV-DxNFz3g!sbSS2ih1%JGCa;VCDXoJxo<J>@GVUnj(A
zPx&SxioWY!=zW(E-zUU1PyZnyE+oXy3Gt(+oMmz@LI1DnI`$_|f4LN2<m9D<_=U;C
z&KWs|Wd7>e{Kn*RLj2C;55_+kuP|O^q-qNlmHtYI>zuri5RW|lCX>GzZzaTS>OS+k
zj1Lpy9uunJenLF(I6V(T3OVgDP5*>=;^}+(RC&t$Ur%|)<Uhve3Gu?y>1WD#LL_LF
zlaMSyl0X&ak&st{Pl8{9EJ0y0EJ0;L1|cRIV}LOzL1#j5h>$_+((bXwkPu-}FlJ>0
z<0}%fFd?&<g#+1`XJ^de={cF?lJKgh<d*RA;mmvz^0R14DB$HLNhrv?5MyBpMI;pU
za*InS#{A_g)wJIdoGi&$N<wMRl3pHc^Nt$>v{@|Hrmw(BC?lb^ggO$+N+>6xx@TWr
z0!3yu2^Az%l#t3g9TezM2dbeGC(|TU_Ux-jNcVVE39m7~z-tQ~tTQCgM*yf`4f+Xy
zv#33kti_xzV~N+5&_Y5>R_aNpFQI{itVRAmTQeot5*kWq#0F&FSi<YfUmmkaX(FMi
zm)nd<bH>ltiB_K8hDmG29DEz3tpxfSB;DifAfcm#F`U&&LT3rT-^v&up^JpB68cE!
zD}k<$x=H9Mp%<HVC%;up?ZHStCD0ckdP|_6;OW7whursm68cliE2I=3W=Dp(-K<SN
zhKADzN*E+zu!JEJMoJhZVW@=9g6Sh9(8mylNf=H__vqCz8MM)-dP#icMn>NA>Can7
zM@!iJUlsZ)DIrxjR>C-L%y>ppCNP;OVUnjzW->*>R8N^EVLI~}o^oq}m@Q$BgnWK?
zzRZ;{Pr^VS2Kg{w!UFP!gg+!Klt3%qI}%n)SR`RF7k`8CEeT5`JYFWc?W?j>!ka7-
zUnXHW^A(IM8EF^v3O3;?32%E!WKLv_gm)$EmvBJBdlJ@CXDOFjo|Ljq!UhQ&C9LP<
z`;66x*_2haN!ljzXMrevo{rvkc$}8GMZ$*?c1qYKVJl5BYJaWT+a+ZGw9ZEoKBnlh
zQt1^@O41Ey;yWaK!ZtIv*C9)~<Gq{8(!-w;_DG<UEBfTrt>P(rY5k{>qIpp(vvQLA
zg_bdP3T<=`{GfzG626o0y@bOOjz~Bm;iQDmB^;G-{;kYo5?UMSUr_PdwHvg|qyeSm
zan9;K%qD|V626phTEaIHzM{$dxAnCIYGlqlQQ~yNjrbV~^5Rk2zNK*=W)nGg(<1yq
z!jBRzNcdU8pV^~lIrlvCbBuI9hwOi1ou0s<xBo6mxFq3M3BO37ByI0(uk)J(daUa*
zBN2KYgPu_#@~4C=5_0+Qst;EsT%(oK2hE4SBwVMMm+-HI8xn3xxF_Mh1bW8!Zwa@^
zb+j@}j(j^X^A3^w8Fx90a_KVX?M5j?9?;&Y4NYtRL*wFDk0^v_9Y{$bexY*h<ib(1
zr0oe!8QCSzB>X2KK?}PN&n3K&;7I8HXX=t+cB=&<CV{@c=YE2(bn2F2c3grvJ@eAO
zG#?o!rN}<)C=vBDzjrZ>6onNMj}Nm0J_LO*e2Dm<`w;R$8E(_%TMIcY>_aU?X#s57
zx60LFw(tQy<nV#cYF_c7Q~k^=K4kTQJ`6}t`_p^w*?ibmHYK|c#ET8LZ>FZ?o0E~#
zhnIb!&mZOXA&(E0eW>C?ULW%L5cMJ1hx|Si@S&Iw#eFE~L$%>{VIPVxDa5#@Z<V4x
z(6?df)y0g?Q6hVHrj_uaqz_3xm_C&9p|sDP!X@)Z+YGmlRZP=wX3%~wew1nXFk-k(
zgx*c24;7~PP=>m&CoR>7vObjap@I(;sr!{{KN*=pSe`kRr4gZIhpM%21k>++n_kI>
zG#`k}8*US(`%u+~wm!7;;WcU``O1gdK4kbXF<-QX4<lcV(xa!<edyoNeGaE4mF--$
z9ioJFe4y7}Xp~#~P}c{MD_YNo`b-)yHet+Uw0&sEgv=WG@H+FxjD<@_Nu;eQC!6`u
zoJk8t(p&n_ig}&2>6Ba%NN+<s`l8b4Xi9q@I{47jhh9E(q|x-Ds}J3L=uG}Zw2Ke)
z1{pngM*Qa74C38+9D6WM$(8<Xxs<Kh(y3p)edt4d^dYrKdS4%?N&S4Ft8XHcvqv`!
zw}}tn-208w$Y!t)Lwxv>2WzMg!+hB5!#*E|v$D{KMKoUIJx-4DVU`cGeHiV-7$3&6
zIF)f6BaQfYA108`eVD|`WKVB5(Y^mRg_HDb<TM&q{tm`;R%S5HWPCJEnd3vzoYA>H
z%wt7cC+0Ju8WvE@r@1$H54>Ap=c3HTtgrInZ6Dt7VF@Rf`tTN$H@#BJm@H>p;loNM
zd-$n8s_Nh>@eV6%eOTwiY9H2clFoA8_2E6{XZYJGA19}-_u+jXHnT`&H~6s8hfN$;
zl%(ymZOMcg@A1c+*=!31m=9Z-Z}VZNSN0<xK4!k%Q+D|93G+k4-6Qob=DQg`W!%F^
zS<@ZuGv-Gb_cI>w;UJSkj7Jy`GoBxAe@@~3LffuKU;g^}g%8I#>$ndmd^pLRYCc8I
zA6EC?aQjFb_sr)j*1x7GV)6}5942Rc_?F3cK3w+UcOSm@;RjZJWW2z5mhqeq=b2E2
zKlzYrgxkBHeYohuFP{D@lS_>B#Q-w+jT=nl4;KGo{F9NyD@?93USp)wu<J~2_;8cS
z-;B2zZ&5JEwU;-g?@$czF7Eko--ic2Jfwi+vyMkTJZAf#AOHC9#0SX_pC3<s_}2%A
zvuN+nXaQ&bpQpS$34Gy0%v0#Le4Kg0Q|KLMD(mMRseZ^zNKu#w`W3)a0!&_3r85sP
zhW#)+8>&tC0Y6^xlvkN#@gu7r*_dbdBZnV3nbV{DxtP4X_}Wa*Uvb3d_9GALl+4S7
zYR>OR0Y3`*QOJ*VeysPSupdSIXzE8ZKZ^QM%#Z4Rj4qQ>+>a7|RONyt{V3%}SwG78
zQJR$$ujV8sCZoj|WlZ+t(boT87nETot#q_J6KYQtKPoV<$k^avrBpvE`9XxXG$xh(
zpmS78l6|@#H!iv-rL?`qMXLFc;Rn6JME^EISi_H+e$?`#wjcGWxF4s=x)ZjJA9dM2
z@8L*2CgnLwGntct?RT$78jY|U`Z3_SXyoayGil7&#E+NP+T@nzehl+txF0S2Xvw*)
z{OI9FPd{3FW!o@m>qk33+B5IK*v*fQo=qn|Iy3L$DP5U7%^mH|WE0<==;cRmKL+_R
z*pEJ}5A@^U7SY!$)sIPkYCMydp-BB|ThP7HM^C>G@nfhT|K6xeN!ogph>q}Mq#yJA
znD56ZE;Zhd2{h<_jPYYE?Q4WR&JX&%U`yrN#EE=$x5`96CiyXk?I$zR8@Mm)oZ`n+
zRwy}*$#g$vFqz3X%gdeZ2YsgUWvRJ-(B%xB`7Gevw-^`tv4{!1=Cjz3H<;5G`KZVe
zKbHFOCM(PQSixjD<CVki>tnR7^ke(WlYiFV_TwEtRx_vE<q>y*TI0vNp7Nd_Ynj(s
z<o*Wwz8@Q?20wQAv61zyjGGuYGk)O57AEvbWGeC@b2{tZ=0~fd(np;9_@yOXmQGPV
z@nfeSNBsEQk6nK3_Tw`@_WSWE+wAi!_xQ1wIep%Zs-=(T6Vi5ohTF55J;FZZ@xx5$
zG3=vEPI&qkejH<d+*9Z(hUz&<Gs088BscQ^be#6%8$X7GFf@cSetb)titlLi<9k2e
zR`8C3AN=@{hF->G8E5@CN9&S|EHX-WlFs{~$rwM%`pJ(Ae*EmmML%Bn5%c30KQ7S<
z;KyS>e)Z!wKOXp9%gc<{sgeoS@61X3gUO$MT=A5veq3Yzm#17`8p$=yy1~hte*Dek
zmLIoi{xZMoS&qq@c8~dePszBiJ*35Ou0>n-QPw}KFPLRLWAcRYDdWF>NG&94(tor-
zJ<^`j#2;_v9Bp-*YdL<Tjk2CBvivgQekA-jI?|G4_+<2M6qz^Os$AN7G2TV8k!2_{
zh^UN<@}?1|Y6CKY>@l5@l#q<D#|<VC8NyQ_<K0efd$P*NCZjs**=6LAQHq8@Mot;I
zWaO7oKz5t=s*F4`)-SMf%UCnYBBy;j!Fn{-$}58~pNuhct?($Tpo~H?ip#h&&MGXU
zh>T(~7EH8y%(jZk7&_X@J=>z*QIa;Qjd%$eC1tnE6E<1pW?M-zOc@UsTUBIOT%@dw
zax#5i7|DcVtO3)l6dB8ACDT@hEJs>I%FF07-t|(Nj0!R;%1C8}#7Z&_*GMKp+gyL$
zcSqQjsY$b}#*Ztd%cv^j)MD#3853(HcN=3><1EU}V6ttjRYOKi8MS28meEs2FBx@Y
z)RoavMk^WhWYm}Ox{Ss$8pz0$VasU9U8Z=LIm$Xd)_QleJ3x(OH!`zKw`NbVn#gD>
zqnV86RKtBOKEZl0(fWFsb#$rKLdNu#Qu*<2!M&rc)-u}2=p>`FjJ7h`$>>N13$6At
z?#;BQ!VWTaj<9b|aGgoRL>{2rE;72x=q97+DC^Hf7FnKJWUW6?rMrwCGT!EaqbB{Z
z!0Iid4>?)JFd2ErTYY8pmoY#_KOWXm%_XW~piGys7|iXbvJ|&n=UXq1WekzAbgcE`
zD7P8IWsHz9j-p7$NVXg$W3-G<Cb&HsLqjmp8Y^SZLW_do)Cil9lnF8pPPZn?pdhD>
z++Jm@OQy(}DkDWf83og*zZ6a~?#h@UW2TI+WPB}SmW<glK9I3R#vB=Qsb4bQp{iue
zm$6vJ8#D?O*b}UUG8WM&FLIqsQAhPxooVTFtR>Wb8Ovp?kntu(l#D+oxwEX^7^}os
zi};Z-)=C*~$ymklOdg}KEIq~A>#w`*P3zYY_G+37G$~}fPqRrzsFSo-#_$=|dyKvr
z?q1gM%p&Lib)d=y85?D6;?N?qrz7l_gP3=LwOK~tpDOJ<mhqvCtupq?*e7F~jE`jO
zlCfLH$1=8)KWVr*x~L=DHd#BkVMHj{s!n$Y;*~ce6b7G?tI4>Nlr+H&iHA$w2>eXO
zewt`9zL0T%JWqon<A{tyG{0!xQ3xHV^5IO^MW4%vjI;~YNT%s_X{<YOj>$MK<0QF}
z_qbrBHGGnFLdMu-Zp~lHpuNyWVvETZIp?&DZ)9AS@w<#OGQO2@UdB%{zLSB;){l(e
zQ=Ck3SAZXArjK?VPUNhNb371~JU!XEAme8lzsR^G<037IGpx#crEf=DHT-q8XUVx|
zSijO5wO9I0#swPLdF}#2v-l6HLB<UkH)UL*4$il(%D6_8V!kzbru7#q=jL1GrdgDA
zonm078`6KX0g+owsNiinHqEr=kElm@kH_&}8P8<gXHFe|z~muK7AB7w|6zQ>_>_^3
zXk`4KjOQ})Dafzjg^U=j#tNXop=Do2KtWJJLWZP3R-h>GDex=q6duFVkmmTtsn*&l
zmP&`t1(v3O!i*F$C^pirI?~n^tZONS6&O@@h81EYw~$D2*m_azh=OzDtRv&BR}^GX
zkW0a<3bHE5rXah5918A_v1nvRj;J?qf?F-kmz)YHBq&NLnX9vuTR|QLHAlO3(!k|a
z+%=85=BK4~fmJ|3VFg7LcXchOfELd}%xSGCs-T#HQVL2dD6XLWEUScql8SrmxYSId
z<3iR&?$IqY$x2dSDu{B{%flQUSu6$LFLw_&v?VK`HH}DF1?3dXQZQRVc?A^|j8xn+
zfr<)J6|_;%RzW2NX$tBqXrQ37f+`AXQ2Q06E2yfVnt}`kuTdi>x}BwCmNLr?c$z`g
z70jRNc8c0Y%XlpXwH4G+P*=gcajqqGoL1@Xqpa4;t$oX_dc13z<CzL<1<e#RSI|&F
zBL%N3Xv~hH2||0JMZO7*`(&#r7b!N$`f7<qAx(kTLc!e8Rx1Uq6||%vA+L^h7ff;>
z9c_uX8Ev&A?<we~pud6+3OXw2uAqm4P6|3Jc>BKAm3`ht0Uam{&ar3#q)FP1#PROZ
zO~;y^3VJE%qoA(>TI+h#NWJN<dyD2<v=Gr+QGBvHpg&Kv25_^7C>W|>pn^e)JKqN@
z?qZ&OjMaLI)pVpiOu=v(h%=%xFZ&}DP~cG?>2TI)lr>7hXzu111(TW30F6~J&g0`1
zOkh5dagwLMoHA1sO!bs$3Z^rk!8ntV&Z(&7b3B`+Oy)AqqY?D<1xyw)E@E7);0-T#
z36r6-lBsQPGGC@(xtF_w$w~!pdCDp#Jz7Ys6|A8-t3XomE{kUrd`lBk!CIP(3f3#w
zrC_&$_Z4hVu!Uw5n{A{aYawl7-XvFGvw}rqtPdDztjYOXIcuAOkC^lvY47MH(dpvH
z3brd)c%aG-Ix>#5KVeQ|v6GX|6pO@973`rQQ1FF<y$UwAkoGG$Kmjnr+Na<%1xIM9
z9OuT;K?R3sG)Yn110{)ML*xFr0zxt)q;1O#>zIP$3cghE6|X8MXvG+wa+2eRqU98I
zXSPL4&Dp&YEx!wzNuT@be$AGr6?~(BlC;q(^c_uP1y>YYrA3Upc9D@h|D%Gl%+E2N
z_w=6>T%h)FvSBlc&OFKZ7ccjcf?t{c<|&sI{LcIj#y=VFyy33E*A)Dv;Cu~tpsy>q
zK`Wku2MTT~_?xHR9dhFwcR{0G-%@Z}aZekvwvY(#Qb>%nX$IY+HE^zb+Ouey^-#e-
z3ZBp$9A!OXe5@d{)LQwk_Ef>YyzA!*o++3)*(x*NYBtvTk3~9i(OzCCh|&5_<2A)S
zLyI%1ImH?>#o9j7CIg>}+$!>@@T>0SgRDYPp{meSyrLqDihzosim(bpg{~rVL_I1S
zQgLFW{gTt!Cao>h9Xj8Ls1T}qegZ}!q-Ry#v#%T~a;k2GWMj<ENbzuNj+INrt19~N
ziJ8(|A~I^C+xWaH+N<cGBA<%<DhjA5sG_=x8Y&8@D6FE4in1z-s3@wUl#0?Sim52B
zqNEC1WJ;)@w$a%;;nJ~Iho$a`JvB8+g{dN{B3VU=#qKg&ZJcGP{}0+?<J={bilnHZ
zGZtDB%c&@@B3(sQ6%|xeR8dJqnu_ydT(eZwJ*m4o%^JGgt*SElZGu%rb<YH7ZSOeM
zdOF&z<TVx5RAi7_CRudmLrV&^kSzb2V%1bpOGRT9O;prYQAdTXqM?eqD(b0dKt5MN
z_Bkh7^;OVbs0+lYEY)y$NrbW*sd!z*FU_RaI!l|!xu;1q)--FHs%WO7wTd<>nyYA`
zqNR#fs(a}~VMa?Roy?S)>Yf$T<f3B@t-W+n&{jn|6?91YVy1f-qJvaN6`fS9p(RK~
zXBAykj8!p?`lzCtioq&|sOYYu2MwZ%zAAdExG>V{rJ^_ckeW&}ef@OnQ@&v7r=q`#
zfhq>ESv?Nd0W@Tb-9e{=5ncV!vQOs#Lsbk@F;c}S6<6N0$oa!nj8NS}FtwKaP;Ig`
zTE(-D5_NeDd!EiGX?N}a)W)lrpkkqlMJgt$m_)&#VvdT*DyFEIK^;`xi;Jl$rm2|D
z;df`c^~*^6@kpC|7#ihXK~Pn*RL~&O0_ct-4b$UFG=lRfq*c(^QA-MvB@Yk{1bK3?
ziZ@iORPmOICA13_%Tz2^@g@fh#SD44!YKR2LhJbJ5sI7@DpoAAXnNYC>{Tk>R`HJN
z9+%1UbP_@>Ay3j?R;!?cc)NMldn(qdII7|c73);2SMiC8ohsf}u|dTa6(6eD$gVg-
z!JvY?w26E;qTcm|?&aPGDz?scFF>}c*rwuR729db&}r~U>r_+eBNgQ~S+{4o{--wV
zpgB9*`hL87`msyJZWRYq98~eCiajd!srXC<-Pw?5yW3tKmugF`{oH<vE~=9}Oo!=1
zDh|{9Qt>%EkQ_xz5Os<!&1i~Qv=s1sKc?cOic>V)6RqR4!q8;rb3Zy#(>c<YDo(5T
zhNi%1>njysGog!px?rRggDy_b&{8(rJtZLJdlf%WwCEV2<3|-|DPn^d7sNRl1)6Re
zYHRq3!jBdf4Fxp(tm2{yM@5|Gk%~(y9#BB4_?3K1kK)j(cq{2Q6_-`~&io!DiGR@a
zr{Lt|RTY0Tx#s2m#pF8U4HY+;eA(Nig0$UIaoe-JqvEc|qg#}PFpZE|vT{m=J4ugN
zf2!hN6_1(kdEfd+#S>cbq9$#<M%m9)?8@&}8&mP0isvd)>$=Go6o<Q#hrURfn$Pqd
zm#8lZTIV&lJ6SahYAfbircZ;P6<LF-K_kw|pXoIDR?>f_+$^^l&=6!%*Rb|M(zC<K
zAq`;-28$8KQ$sDX7tD!($txPNcuLjnN;c-%8FOg(^seiNoSe+1;Z-KN8S^maWh9$?
z8rJNQh!oUNNJFZIN*W4lD54=rgQ+3lPb;dSq=r%&sI$emU~vt4SE~eLN_O*MJF7J7
zb%YtrX?96ei{>{i4awAzkU2TSjB2?2nKZPmNYPM+#j=bQHI!pQX5}?hVBTqfM9HC+
zJ5p&Hkk?GtP*p=^4H-pU*HzI_G@sdJr&1@o`I?3r8pa$+u12{U-pOO;D`b*hT?66v
z0%qG6Ni{VP-uXAFj)uA#tN@|`)YDL3!*?3K*U&&iriNh}hHGwE+T52$%o{QeI3c~R
zp|OT08k%Zouc3p6MlH-{j4c?OYsj9KLL#-WCD+hOLu)2&7~3*ZZaWPhye<>*KT7JT
zp*Qb>lASbk*3d;mSGMfw*>}^>op}$&m(kwK%gv{_d+ej($hB&HS?s5wzlH%C26{F_
zm<-Y|n2Bz=MTUC0(mr{FhLIX}Q{-qErD3#&*&61MV>OJ`FqvCO;X00sOwcf110`vT
zW~7kECTf_(HpGXow5Cv~aB>>sEXL^?W|026N!v^&o7cHzt7LN<Ggrd`4GT5Q({O2!
zIiIojM3eX;F1|rSyS(ON4R2^zqG73q_qZ`{YFI|&&V0Goqqj7yV7`)ZS|~ufSjGHp
z&*thNWi|6P)WK2qyPi&gx|aDmPg$?weUGn5b_Z^whD{na(>Sue&CA`w<U<WxJw?&*
zk%o^sxt(#Rh8<q+CmJ4Rb-TaIQ&xoodo=9T@FgqzG<>GvkcPt=@}|0$<gxvnbwI;G
zCN%v?Kf+$3+*2ApXMWUEzR+;Y<Hwnt&~VaI8dR$^tGheh8a7Y<O2gM&=V``o7|&?<
zR>QroHQLMjQ{8?2py5YaxB}1v?uvJodZFQwhI1Ou)A~<K)AmZCb7^-pT%bdMhKpR!
z9~%DD@C)-xj8yhl4ZnH(GLzpmNPSZ%>k22Y(Ol~#U-fL7((|7hu4}l#%54qL=@WBa
z?%x`2G2dOL64fw&ludZo%e|-JKJy2jvMQ(iSi?UW6139*o{&o)rJwFx>A8ld%>QL1
z@tKDIm><7VjgnOD3k@-^9*0Ss@$o#_7eLQ>l0N`BfU~=kXO)nY0O+8j1rT7O2Jpr0
zBvPK<aR>CXURJz@844gAfMAzy8f6;+{77%WRgWGVWk;yOoXI32fL8*@!Zt|(cd^RK
zm@R<p0ptiEX8^@Hms*%Bfcyaz2;fy#atDxyN!|eRF_|*b9Zi}DgtQe5pa|=Q7z;C!
zPJJOP8bC2m`Khft3rbL5SSjV{r2|;~uS!`aw~CrK<hYa^KnnFM2n10kfU*HB3Se;n
z<pL-la97c80aOT}VgT&|Xdggo0F?r096%GUHjUP5ul~vbR0$xRlT`z##pJaBss)hY
z+0+Q2y2l??aobrlfb|<(Qrpw(1W?!GwUXuf0W=68Gk|yLPjl!C47C(OJAj6s(kOt}
zJx;kBs+mo>c(VZB(#-y^n9T#YbU3*MV@t+Xj3l-WppD1d20(`)5<5@>+SR2Q_ep=Z
zVI2eL#1(dC?BcbpE0go1?Ct^dV3+m`pnm`ZSnm};Zzg>h`!e=plsmieKQMqn0nFxt
zg98{6z!c7<tf2vnXFe=|;Q@?bK8A55<0wY59L?l*HFK<|j0^n#oM8eh6Fq$rlgS+X
zRFJl*0Ze0Yx@R*ZfSDej6~Ny-Ln%(?1TdG|IgfEZ;{wKojAXO%nDj;fO9HqSz+V9@
z4dBfH_66`+0Lubc9so7+BQ{<UaL*9l<sGf0F=Dcc@ojJK?@+9Id`-YT&7cOq7r@#8
z)=|K4);7lX1K8|YZU|r_^G%-e^7QG00JeC_hXHJ5Zme_9+-UoGs`4=_+dZ2d0es@|
zodN6$U^gc}4PXzGm(^0)y#aKq>9%cu00#oNJE-1yiuRG#L2|{@q#pw~6u@CFa)j}#
z06q`kD6KG@JjqDKk1;vUc!F#Oxpki6<d>ce?eyyaP6zOfr+mlcOaR|{%FC(reE>gr
z%H^-LvjJSMY|?g)$&U|{ehOe#BI!Z^KL>CzfL{Xm)3d+C<o5u6W%8S+Uk-q(qE`Lk
zDRf+><dp!fvhp%{ore2M=?=Mq#T$$_DV74b#eCUyx02gr#^fH0|IqRtz<uTq7|G@#
zlSctO4&X})!g?7bJ`Lbsjv~E`J2#(^O%Q4j{{`?ofEQlb1d|w}!x$%nYY{3U1>M6U
zZN4D<%w<nWaE~-j8bJh@1Q~VDCKN=NdFlS{7)6-B^vNqhWC@~e5bc7<8br1ra*VcH
z2a%mf5U&MMEr^^!<O(8%7TX|R4I+0Cd4ukB$P;vr7goTW5HX2d+LW3vi2Okm2%=yR
zrFk!f7z+ncgbBq%Q6?oAi!oA@iU-{T+{-?e45E~$Pt7SOdE8`T1rha><RCT+w@0-1
zvO%N;(UnhW%CSNDAS!s46`7<mRtn<Yad%&p*`A722_oI&RfAYw*d#F{i0W+LfU!mp
z^|`+_Ia!O5Dybbr9p-fz>v?*=0B&Y6DPl8&uvu&vL`x=(f_OcM#-3%1Aeu05%Gk`)
zn=`q|9UPYIcC!^Lz37svO;Q`?N2V$#gJ%0626M7Q5FLZ)6h!AB=vdG{h%VITDXGt=
zn|;`zD`U4Hx-+43fF9)eoXI^Idj-+^Win^7&*v`qeS_%7mctsmp?f6N96+Jl)f^ba
zAlgeyllXrd+(l_f5D(}TupovpAwE2a5gs2I#3<&YJ!K4&pS#QBgP0J+Z$VrRVqy@J
zf;bq&p&%v)-5K;Y<CGw#1~Dy&=|Rj3Vtx>jSF9O9%n4#{5Ho|A#b&d~u{9+sb!AiC
zw360KGBdArzh87g5DSBNGl*qDB#*Wi1+gTEr9sU8uI^&SHz<BeT9hpEi(5mz(RR1d
z_VOS`j<#0>v3RsiqEbUz8N^#bbSvOizGbw%iaaSSBJTvTI*2tvyc@)pAU<UMy&%>H
z@qQ3Hwxz8NVjYWQfBjh9W25a2oV>p@m6VM^Y$7L&wl_0=z(~p4xvZ^0Y@<O8Vi(o_
zeuIyK*iID&@i8ZV$YZt6PPe?==1pi{>60K%42}}n9mJ<x|33E2`cLcbVX~Lbn#S1W
zR;CbsMk8B8+Ryp{Myf>GQTH(OZyApS@p%wOgZP4yL3|a&u^`G7v`z+bDv0CEPcTw1
zNT+e3K?&xtp45=O4k9ybeZzP<h~d>GN?sAx84AvAY16Y<l>9D;?}PXuh#!Nv$d+e=
z7*NnUAH+{|7l=7^kQCZVjj=DV@-rhTw8vk9xWrBUHHZ?gSZNV?^M(f3R;K(O#2-Oa
z(UGp>&mgV@@rsTtI<5wBEeKhMqT{b1uG2ak#Pc9-1aUKnzk|3%r3$AfW=1Nui}oHP
z-45bT5Kn{nH;B8mbWm>F=o4B7OGYmhPQ6cyXW>-Z9x!>x_$Y|Sp8gM$Hb*1PFIJ%n
z>B(5aXF(9sKau^|Gx{QkSP+RIBpnVFESpM?tHs&iB`3?yt)o62zC7uE9XnG~7q*YS
zStNBzyQr!|(;;+Fk${e%4uiR_gLXv4LprFDR705cY^~jA;UYS&Ws~V2z`K-Ag^p6~
z-ByvFRYx`*B}vhdT}KWbxpm~xkyFQ(vZ=WksU=h!C12GsFq=#yua0~=s2-zaYJMG~
zTSp7%n3I-C+pdQhgavgJVx=%+5ihr>j$$4!&ZGo4l8Thpk)$I{N3BOyC`nx~by&1L
z$cXAl(NRW6GABu)SNrL6J@k?h^|!1J`kVW5I?6Mtz(`6(9jVMKF&a5!5~=daI_ST3
zh*Z__nvSkIy6O1f@1$xvTIp!5BSS}Z9W`{+)X_r6%tp0qu|ZQE&6w2IQAbBz=Jj+m
zWI{F6XVO4Nrl;6U=&!mdw~>z5IoX)8iDyG^)She=rM8iuo3l5Fx8(iOzpk|2Ri}-P
zwmLfLxUf5|osJ?^ldFxfJL+h!qXQ@DN&d@qYTtNXjr2{;(mLzt!u6ECk+J?Q_gkag
zb@b5DU&jF5eW9bLjy`NaZ;13_rMHf1&n^19-o85e>29E2ZR-XkMaV!M^hU-I9Yb{t
zBD1LL_Q6ajmuefPWA5DAt6$3;ao>GwW2BBzIzFMGrNGcJMt6@93ux*!OCHNOn{gcD
zc*Y5g6B#Gzn9O7f<5b3JjMEvZo*7JL>X_vzZO7Q8&!Luh$~+zOJ%08VX`zlqIu`4A
zL&ruPn{+JEu~f%89qV<xsbiUr)jHPbSgvCQ@e9)1I`+0rUa4c1j)j-4w{%o^-hh;s
z7^;{24$ZhrR@zppSG(lvJ1V`aW33M9d+RHa@g9?*t&(Y@tkX5q$n1TZgEiA=+dyIV
zlS0a7iUA$l*|_|c23vG&)p7cY^`Q>=ghkuXF*YT)vG@_=$23Q_TBp8CqaE$gakEZZ
zuM5&H9lOcTIv(oyRL342-|6_C+OK1uj#E0mq*2zfU&m1$U+6fX<JHDh*YC9sl8Cx%
zc38v@={QW@*z58mIzIRK<PWW5G$<ch_x4-I>8AZKL7cV|6i&OXlbp3~Q<bl1*E_6c
z-&kj8er>hBrq*)h-{|Oh+S;_s>UhSQf5!S&$HjBX_><NTbn~BM<F<~oI?n01tmAhb
z=XLy~<2M~|ZMDj;kuT`@nTpVK8!I9oTAeOig#C9|zfe5yur4wFs^g_N>Ux8Evs3<{
z#h*MwlXrWiD>_b`w*Jy_oyk?kYdXe%XOUiDt965-dV8gXm#iJftlv*tf0N&iTD09_
zQs=UDN5@?q_sES0t^3r-GZvA~m$mj66x!({9glTX4dJyA{?YM7M~M(hhVYbP?^aSc
zME9=I{^R6-bv)DYpN{7`UQmoh%mht9TKsk7&uLC9Zr&?n+I}<6rKsS?ziLtlzK~mq
zpHX3yLzvgYJuOr@sWAo^gN!<3h>^_7bWMwd=y7P|4Iy91J#|M2xxL(1LdfFrtW2^o
zW@pU7n3FMA2(L1sI(PED;yfWN9Aj^$d3P)6=zCV(ie`Q`C=fzHCWROad!>qmP}Jka
zLMZO>&~I9)5K4zoC4}@4l0q;;s2p-HrL7R6A(ZEfpmtwr$svp{X;um$B?P)QbbA*<
zS+AaQWXZe&V?|F-4Pkz1*JHG$h4A>Fq`Wmv`Za`Z@*jDaR6A;(Kj&WPRSO{_gtj5H
z3!!=lH9}|}LW>Y;a*?_r)C-{&^V;Oe$4OLA9U9zW7LlI4t@^yX#v$xzWi|*QlasdB
zhK5WUF}}`tJ=ts$LR0d8YqMDhN7;?U>F0)G+}dol%$6avqLy?uFWyON9YP!4FX=<0
zW_zxrQwW_y=nz6ja^3j<7o^DP5<=Gy`iC$e1iCBOjg5PR(4CV<2bh%}yWZ%@dan?A
zGa;o<2z{CNW4yqv8tCN?VzTo<GTlxe9K!nQu2+YJFgyeYhyx=+7)iS}(9OW85Jra(
z4<ixAm=MO2d&8(6#yA?p5WWrJyAURDg)>5!8Nx*7lNcv6PGO{7Obub0$EP!)-x_9x
zFq_&C!uui231MysD?@mTW(OPeDJw6haSveuMJX#wyc!mTu$cK9j5A8Q*EmbP+&4p5
z=JB0H<m0cJE2zP@lIrF+SB3C)2=9jQUI?M5N$-TPCWPPGTEtg}@NplP&_oX9GR=dj
zYeP7pxn%S6q;+K9rylVQA#4m`cL<+`uqlMiRO+ca5NAUHwS4pg-tU$WK4h|$V##aC
zHYOi2ejLJfPv0FeKViPpQ+6@AI>z1;!pVC{he9~a%3j8O6aY;2Gag{11{|ab*pjdH
zLijv{uR?TNz&y&iCp?=km>gp~&PdnwCz+gLq<X$&a`LS9wWpkB@(tse(EqRZzYpOD
znmb`c!uT<Svmx9J;qMU6g>XKED<NDB;inKTgz$3+7ekPWnU!VpULW_jytkW}zmVH$
zESk9dQV73#{F>@2mqYlSl|MZFPx60tH><^g<ZHB~T+yzF@K*@=N16pACLv9S8zB%z
zKS;e5!fkGCB7{33+-3e>2-gaj_h|Za@;>7OM(XuLCXWdD*8M-8{)CPK%>QM4=IP2S
z=5vp~2+=8)yU06?aZe}TN@4iI@Q2;pU>J12g@{Z^R#Zk(v@in9kMeIor0ARsF^0qc
zzsoAZKp3UNNDAW>&U%$G3nP`v$|PGD*_q_<^qfp`h0!eNHXwHxdBVucVxchZcd_y@
z&+pk62%{kL(&gNUB7?$gRwRs~Oh_rlq<9!5Jf$R)Qek}laWWa0VOU|54WnEb(J+$3
zC=<rBF?PNb`RJ3RlrUzuw)#CwBK)$wNjH(27BtI;Q8A1*_00-le4oqwX^2Uf$_j~<
zn4~dQW~{=P&R8{!*O*jeBzyXKy+#-{!&n){TVd1+qjngR!k8RJoiOT#(K3uyVblww
zei)6zXc9()FkShgVHl0V?(Z_i`<N}OnKqTGE)xk%FjM|XdOeKF@21kWznbYgn%tDi
z?o^sFW*uwSe~{FiDtwUCg0b7-)Yk0Dfnf}yhK12KjCNtP52KIg?G9md38QNm9a-t*
z>7AKW-79zVlpbMp_xQ|W?$GoMqZcc^Jw0ixO?qEW_G9cH#sDvuYU}Z;Ihd0p8HX?q
z4P%&RGdzqD9;X-{<?+#U6bNH1C&w{PU>wi*M`gD?6T`Tb?#38xQ^J@N#@sNbvH>a6
zm`rD!5yng=vlwSHR`}IDj?W8Yei+NbSRQuIb{2%OFpNbM^GVU{iKNA0yb-2%l-!%)
zOTuX0+S+<6DJ7OfWGM~tSepn{Qt=g&^c7_AZxWq{xWCR+Hdlr5b{OALbcOLw7^}lL
zN(0TiUK7TaFg^_9-7ww@V=apt!tSXZ)wV8-^{l-A(wLu=*vOo6H!<1F_(2#t|1`Wc
zjBR1;3*)meKH{uO|0V5W@^Kj3ne1Tvgpumm8OC_N?@fGn7@xAf$IIPI6TgS+<bUd$
z`&m2?2JzSUAbyaQLyU*RIKt#}Mk+F}x_K;&<D5Jd#)&X$JV`nk#*Kris~#sc$!1bF
zJM!ZwUxx9OSL$mfry0LtJj3`cMQj_lB|p&OAI9x4?u2nRjB`|B7&qDGJgqP_%}ZhY
z#K{YcKQmrrq~gCYp&0u$jNihz90om&L#3{V@jLTB7)ksyj4K|$8pbt`{}smWXGt$h
z(K9ENOPl*1B>hc;Ro!eq*1kpSSj4Pd%e))Ly)gde-Sx?1-e>ZFB9JH1q<cvZ!+6Bv
zV@B7>VLV~})Ke;#F`qI2&r_Z=dBGS9!(p<pr~50aWWZ-2%|K-Xegm?B90qb4Pz-32
z6)+Gq=vx7nN=YW)Nfsq_10e&#01Wg^m?!5bVJ3zF;$#qE<Bn_PR}4&+EV9XFAd7*l
z1`59}hkRC}#nJ@5Qg#Dp7E4vCNwlwA23|E#!azv_xeeqoP|!dj1AkPLK1)r{YapM2
zN^9i;Z%F$RW`2XdG-Vbruu8Is&@KvdgNqs{!h|XeWw_NAGf>>X*FI}_!W^<zCZ&{t
zvIZzw+CY+lhY8a(kZd6Qb#052QSM8MWEJpPB&HZB!?|Qh$#MqD8>m1^_edqSA66){
zq5;BG#@TmM$#TS4yNZEy15FJyGf>sQYX<5YXkeh4feZt6c`wxs)G$z+Ikl~(fm#M?
zp3;c__PI2?nnbRntq$4vt$c4t<lA}%ny^k?$TZN%!0Y73glQXS$mAQTPOmviV*@kC
z+D#04dA!bsY7!aDu9i$Skh_{2XltOIfffc@vL}aCOQyZFGUyvDZdJtFaFaSzliC~T
zz<#EY>S&;ofiCR5b+08?t0s{_X9Fw7+Ej#+lglP|H_*dCia;5Go(6hR_akT?L2m<n
z3_LOLlxjB6&%ka2pBm_IV1R))3@kA)(7+%AQw&TsFxbEl17i)0Gcc4KYhWau>KnMc
z#2ikR3(OG)jvX?m?lOBi^}B9x$!G&3-ZIA+*fiEYJl4KE)_yY99&ca*?dWc`Ne13L
zWv=!&SaH4nM2gSHrtd=XpJ(b%Hc-lJ@MNhu&A@a6vklClpe>a)gB)mJ7W3iB4LZDK
z)@>eL{+$^bXU{b-&%h!Bi)pevHs>2yU|=EhMXeirbHGeHVs<)UE_=@$y2>2C-0bm}
zsC~#>N)0fu&cJ#D%M2_x@Q#7i<UIqQ?KW2$c#C4=O|#dRrZvu9W#EI9w6_g>`@DX)
z%gNoBnL}oqYYe<=;Lu8QEe*shv&%+v)qm!D2I%*fzSSGNmnt>1qwgEoU|_3(Z3Z@y
zD-8Fkj4cKlkFz&Zod&*KV*XaN!HT6O)i7y>S?jL(Aw}I?H~Eo)j}3fcV5foY26oVF
zU1h$}AX@E4{kvPt8yj7lbNftct+p&}7maMoy4A}!*kfQX?Zv=ZiY4j`?ZUuU2KE~`
zVBiZHCIbh_t8bWx4IJT?A7X61z+AJ?T$Eh(a|1_dGVU-d&ojHOHG7Y<3k+y*+`tLa
zFC^3EUt*p#aEhv0W)9wOy1zGlYJP3tH2KHCcLuIKPW{HfKeNm;2CSoI^9vc1$JyPl
zn%`59&os;DY_NQs{eywc^`q~XP8)sHJZIp%fvZ%|z)uD)P+S@K-N4V3OsV>dflCH1
zGN+`u!u-|1Z!~{rnP082o^H?BT%*DKJ+=3Zvu{?4{$b!x1Gm?jpH-2n-AcYfgS*<y
zKh^xFM)WTO*9|<NRl>jx12+xaF>u$w-xSY{qPM6NdH$#RXYQNS^6$sl*BUoiyu!L?
z;1<>Vi+P{s-8ysj$L4K+1HwlJIv+A0Q#YAZykz!VZqju4^OQNSW%OSI&uD3i;QV;|
zKMDy0*(1mi!3zU118M|X1P<{frWAoMf;fjwf^e}(o4VihM^L15%7fN*l?eK-G35yS
z<L#vJHYs0!V+JA!Mj#?U1bPIa2qF>m7;lFopuHOr%zekKIo=-ji8-ly^!0h>%qR6H
zq*R?U-hL&5tP#+7(VWc^abtDwbTehXnJogsX&vh2j38G8#Udyk!K)GEjv#*o1tKUq
z&&(4+-U#wVF!KZRmCp5gRZThmewFve+vMJYRMld$Py~gUj4s)rNCe{_Cr^0SEE;hm
zf%xHB=E1dQi3mzYkW9Oapi~5<Bd{Wfl0$w@&vnU6iolHE+H|vFxvGSJ?=^osVnz>|
zed`K}v@#JK8gCE0QNJuTEG2E_;CkgEpx%*k@Ih*Y2r5R98bPH9>P1jLg0u)KM^H0@
zS`k!<AU%TDBB&NYRoZ)}l)p~9fk9-}67$Y@J0pVX5!8r)xHiGQRH?z9pZ`bGb$~}v
zy#3G-{<pu|y}jMN-Kbb7X6`Q1k|QC65<|jJ1*D^bNJr_4^xk{#MNtF<EQq3@h=nRr
zMLO7!DhMK=e7_w&^6c|I@4VCAK69Jho$SX3%0Vqsa{_oKfZPB+ypgwbZT4G>M46xR
zY9&?sXo|?0EFL`_&ksNbP&a@&0gOE%=Ijy;j>YQ*@M_hh1_3k-VAkop`T?|VmAXje
zKiwkr%xcjn;HQE`iCC@OqDcTvId}jc1@K$|%>o!e?FG<0fEEEfAHWMV*)Y*EfHna?
z=!mycl-2=UZj`_57qO*$ep^a6P_p*L0NMr6C4jC0w5L}D@G=vA0DIPm4yyZ!$Fv&j
zM4N%K6J3i6KO&mWEkxIC(=f)X^uMB80Nn%V6F}bpdIa!F06hcfMRDjnnX!ANwG-1t
zktrhY*ZB3cr1`B=$JdSZrsLI(rLOT+8hS3NUjY66dGlYRAOq#=0Swul_fEC^(q=xL
zd0+s80+<`XyZ{EXDu77=Ob%dZ0K@2A0gR@HT*(_AK!XbDBb1k#lg06F`6Fr5nlU0{
zsOJDC1TZmxMQ8HH(W&l=@#HqCTKk>irTVc-Rb#8pi*-B1r|<gam=eI$0A>U*lm0wR
z44y8g1u&g<87MnEU6m$|Oz=6M6~Ox6;&TF+9l+Z^#u=WkWyTs#7tzULegF#scqf2W
z0W9RC^poM@tpFAWuq1$G0W2ryH}a^Kr2%ZcBY1s%B5y?iBjSlS1Gsrg%seHCH=ZIQ
zwPKZ1w3VEKA$%~u^pV8I1LEBPRtK<-3@8qt*pas;fVBa<7eLEjM9<Zt{0gytryyQ%
zf|%GKwjqG`16V_gSJsZ5%KIPy!h)yrHU{u<0DlH>Er3k{d=kLn0FDIkX#kr8_%?v=
z0{Dz^6u>q*LjYUIZ2-aT;!C<&t=umH$UZNYtrKMy#CH#rb6TWQ;mz8nZV%vVdS=_y
zXKKZm!-;&OiuCp!0qhK5Zvfv1uq%Mw^fY?%aPi?Var9A1SfZ4qtCy@6+ZVtOWZ+_)
z?z%sK0|6XlhUA8%RDQSr<+BUn9|PscQR2OWg3SCFz|jDH3*h$vexiT@oC)A8WqDT|
z58x!#wL{cAD^Aev^t}n<Q~;-G*7G81jh}?OoXNYjTfF<IJjay6=sqQW3E<ZN82Bq2
z#y+U&?;i#>$vz*zAB>{_t^_crR_p@t$>Jha)Hr*@-{KNyUy;FU>tXTS^hE!%>GIq7
zRi><m@}F!JyUyfB?P<_8+@O^MD5RmVhQ9;2#jGB{y#W4U>YgA5CFkFzCvyqlLhzlK
zk{KKIuBa&U|D{f5Bubq0LpVtTtxP{DsG-U6yaF1wofo}M<<*SkQ-MV^6xE<<SiV{m
z(@<Q)LmEnGm_6QKf)6hjEBED<)KGAc{GWz^hVLTz#CuK?18$2t!vt}9I5h0)pY+0c
zVQ2_xcvM3v4W@>$hGY#7Yhab7!O;-WFfu3CR&a3ZRF}2GgvW!CrwHR{e8D%O)F9dE
zg!p$?9{G7h!@w5#bxz00=VKZk*HBKwQyQMo@ccL8Ne!hnqz{tBnV`yOD68Q>C0Tr{
zUu5WAUno*E6!}&N4N)Z#(@{(V=iQc)AJ_aKIyy-VznVwol-E!}Lvx@7P*FoA4PR*Z
zQbT18X&PSFFo1JuNN8xOp_PUz8ZtEGYpA0kQ$tk^wKU{t$YPuKva4&Tp`rdDSxxg3
za<+mC!ud5d^!`=cESleOkgU)l|KbVpjD|N>iChh}HO%``bowElry=|I_`pGu8-r@!
z3;RZ%)KFJLBMr}LsK;S7G|<pc10TfAD45SpW2@PM31{iQdD92UqO(L}8d}418k%Wn
zs^Ry_Ny`uBO)Hb2L3>n4G}q8V!@I3gFMT2&t`n=ZKyXXRU0-VrZ8UVz&{f0UC8Di{
zm$<#Bs%btAFKTF~=<V5{eLfp(?2_Q>NyPYEysV+|7ST~dCk-r8|D81)`X{gch4_0E
zWQAxmLv+*7UBjyydTQvQ`5UdY>akZe#6QmAqI|eWKKE3;s2>ge=@sP?eKhpd{8hdm
z?Y>Otv!hJ%#g~iigXB+x<n=ejYZ`71lDk)nH|QrC=4)7>VG!-BVWNgf8ir^Xs$rCd
z(He$n7*6NeCPvVQ5677edY0A(){2d!=XcI0{n$b=M#EV4Z4hH_A4iwIl{a3)1h&5z
z-*Y&drg?a<B;-0ZS;G_!Gd0Z8FqIam8Jn(w3wOE0+0&@-yJF12_`@^B3<@$+<TuHl
zt>J9t{JAtSP4jgA94hmvd?FmG+a|H)7auOvut>u?4eK>5*04mwN{tVvVX1~?WKzQl
z4F}JOKevm@gJt%kT7$v<y8Nbwx0G+E&JumM3#O@eG_2CFhKATF-qm2Q@%L$~DaBNA
zdz9!jMf~}-SgYYZ)u8ouF>H}o@?!o54ex9CM8l^XZMyhC!-tee;WaaoHfs1-^EU~b
zH2>FG$H9{O(i=O(kB9P@)rSt2n>Bo{VT*>(IC9S<M&GrAd0XifC$t|Yizc`HV%bq*
z8wb(ACtLXp(RK}AQ!N_KY4}FNx0H@PLq0X^(6EQjrs4X;LR*W*cG4CacGG7Pv4cO0
zr{+Yt^Lcl&_+G<43cFeC*YJae)s<sa_G&{v5%UJiLL<ZhTIYAcEA>?Tu!bWVj%zrf
z;YSTeH5{Xc|IRxb)#yl!i=UW+Mu;}U(nzd+M4V)BX*i?de{;o+Bcj`%d5q%I4E9xG
z@85ac93B}fe%A1dhMP>w8h+LAn}$moF4OuN&TIHX!vzgwp2O~3Db`=eW1L=O<Q|Jx
z*_YR0t@x!-{uK>Znc<l?CW}8cT%)%$?F^P>n&vl8&%dsc2Iu9XKYL&N$HB6|-y)-7
z?3RXqH1GqQ{QBB$)%UJ{9vAK~leA6cP;8cz75h)aJq<~KY>|Iuu>5zqcrKdYb>mR>
zchAQ7&5Xx}$Ra?oA(Gz@U;sW_Uh>5z{#YKA8|!i~&gXIXU(+~{>fh-H?*qB~C#wI;
z02*KcHvGRJ5CTkqZlD7O{GI9}`||Q$NF8u4%56!(Wg-lGxlsJRFTUz<9*YhT0Zvy+
zDm7g&qK6F=9oLAvCq**wFz_T$8h8YFlpF$&gI`aTrGO$ICiU%;H0qmp(;<?3&hP&g
zZ{HG6aH!P8td*h+P!@O!NCC<L+{2T|SU7t&uip?UfGBk}Ld2-F;o{@{V%1^6pW)T7
z2vH;UG*BMM0iFRWF!=*jfh?dBP#H)7Re&^rzht|9CDMVz`F^(ao=LlVFE0aFa4nt*
zoP1yKx5j|qM1iyzk!nCTP#vfNkdxtm#pkERro^<Gz=-R@xg%;(v8UowhsgCqBvV{2
zP#b6jJPYIj`9M9OKK!+#4lM}O1ztHOR+ULC`Z>CPi2uv6*JjZGXb99i7acTHP%VFy
zPf(@w|0mkkZVWU9o&(O#7fk@(*&xz)^#A)|Gx$H5lRr<i1X=;V0l%{i&<0oztN_{q
z&jTZYQNRnpi~Mga&=+V2v<JEY-GP^Y4ghb4bOt8Q6)yuFflk!h)if6WJSUh`f69ri
zKNIf)bOo4Tw_Ft+tH%Dzi}j#5^u5ROdjb48`6|#8AoJ}PicP-?-s<^ni0sX&ZwM}e
zrIw3+K!0E$Fo@3{0<SAO4glV{T&=`V$)8$Nr5|W-C@XKBBnI=77{IxA#Bg9Jr<f!5
zo{J8He`BQKC!*X?$vYJ}L*)p%*|%}dI~o{6O98X#z`!`l1x!&4jHh(KB!Ibk0<|<$
za<4+hvVV?VUM~_iGpDlGbTJ*60hD=DOrzdTin}dS?{b$lR%9#^Gl8TF;?XLxIlx?C
z5wIAT2W<O2Z$ABp(QzbxZIW0>E2PJm+$Ic_&5vdG87h}h%xQvyF9VhW-|iB1XNn2G
z<#DSSS|{EF-Xf7g0V{#GfsMe&)CsT(*Z{l_ybG)b)&OhC`F62#sN6DCt~eBL+B5$>
zU>&fYK{rekI3RY86h9x2A08?XoQhu@DnDQtJ{$W8_>iGDjC(vu$fU#@Q=5QKfUUq6
z;L|?X415l30j@WQot~cfj4`-fa97OYkwmO^rTognWW8bXOUlcf4}48+oXPu&BQ%Vi
z-7Q-076)edcCWfxG^rN*hP8ELM0Nl>=`+A_U>C3(IK<Ec_5gbs7r+6AWEJguU?1=U
z(0Q0_TQ>i|81eb@sY8cJE|ia-h<~;xZ~5N%LEv8VRAz%Cz>mOBH11z{wB}K!uaSag
zBF?>Z`J-_zjwcw)j2b$R(#$D3+t=a@^V<P&8aTS$|3OE}$^J>)C;SZjLemVBban0-
zer0I9D_9(v7CTR`JC%0{xU6FB58#4A7<U&H@>R>!E5KFYE^Smf_9w$(SKeR14S?Ii
zYt*Nrkl1UtxC#8t*(ZtHz<@;T7Vr<PFicX(EVg?#milY_4oy}!*3``>hrIR;llQ31
zAg%;)HHZR16b$06AXWxZD2T#AR1P97h$2B04dR7ng|39-#eygvgcXDx#6v-p2tsGE
zb81NiiD(M>pMn7e$2Q}KTKqP=f(mKXt2T!+6dnq~3?i)XoL;rtsac#LB0)SEMCl;h
zAiN+R4WbnJ49Am$csPhh6hE(@NU%MJC7tXMc`S&>AI!z7Cs?eSerZ^t^M}&Q1W`5!
z5kyptQ!a><2Q8lpf<tkT`?JRsJsw1=n&tk;ta@6}*{pmJ71SUV6(pt71O222kqF{>
z7K8rt^HqX)Mj;srW(H9;h^!#01yLi2nn7d-Q9X!S!!zAJX={h%Wps~U8YYVlm$ia8
z+%=vPMCU$fg*B~cw|LcV@%$!fxk1zpA}@&iAescxG>AGu$RHX7(J%;(P&bHrLDW}x
z_6K<jy2T$KE_<G;U30i>6vVSZlpmGJk=GB;Y&l#u4r0xS%zndV{SleZ1<@>sR@9Qn
zYaT?4AdU=5w4~b4)Sfh4E}56Na=1(#k@?}s%+^7)38HNf?V6;K?QO#)5%zkKlpw|g
zF*b<yLA(@1zaaVt(IJSJgXj^&D?xNra!u)&+ck(zlrD%aL3}vOXNfXWd`{6Vh&z4L
zP7asdgCP8~N8(=Zv{!@ZP3D`V^$enyQYIBLx?7x-K8oHqh)KgUBcn1&d5s1QVn`4}
zgBTFR8$k?aZO{1K;c_5-V1yh*mm4A7UU?LUGg8U5M#y173=d*d5Z{l?<fJ2l7^%i=
z)-C>L*El(BIXrW;nu}9hZJjqRi19(p4q}cXP6%Rh5L1Gf$c|G2lN6E7XuhdIOjCkW
zuIWMiJS=lY5Ho`y|HKLZT~>Q**Z8a;N*>L;_w+M!gP0e@k|34_F+Yd}K`f?|{E*Xz
zOpcHXgIL4{BjnJLndRr^9cY{O-U!+2;k+Fq<gy@Ge3Jp&ExtU66$&BV@`s$-L-Q!+
z+d;e&#J53w7sRR{-VI_)h4`mItX4>9NH&XW=sZEZ7sR?Ca!1OIL97pA1I-k~@r~K<
ztCk-Gad(7d<DW;!uHABpm?Py!44IKW@#7%Q?@QmLTC(^F!$HwEE6Qg<d`={YtwDTE
z4;(4K2;xgswN1gAAvr*`pFL836~uNbd8CZxB?!OaMXwks*^5s&?+D^d5NCtf8N@D%
zc0Ofy5PNCCAoi$Yb9LU$z94=G;siSev7aW+$>CRU4+Q<Mw$6Dfc2KoE6vXY3^00zO
z6lC$oAdV{hrw5c{3OOD`l@Fd_gHsHX{)JDg5i&}rwH@z&vY1C9oKuuP6eQ*6Abttr
z*C2kQDf#9v^%I2u`R?;6{!t}Q_)lx!hZlml7{n#jj1(RmbD1%yTK*ZtwIDJ>s2alc
zApWA8=@_NsMi4h?DIK+S{2j!tARg24xQ>6wDzmhX5<2eCUQFpais<+^i2s=Cb-XZ2
z8l&XBATI3BPtqZ*xELi1=zj5kyK2=OB@5{wGJKRIEUIJqC|O*`>y6{1d*l>T?LQkO
z4~>$`>Zg@tOC1p%u8x2XO$T%YbrheNx!^+jp6%Ibdoy(%Gk0aOyQ5=Xi8MpOkPcHJ
zq=a=?4{%$@xcX@%ekIcy)JyYpB<px`UuG%Az{5JCqvazyE{&4KM$1Qa%)XP$D`&Li
z_!ZaXJi*2~D(gtoQCdeC9Til^vO3DKuZ|dreQG~HT0W&CMaTa7X|Io#{Cz?taD-o*
zWF9&g7}LIRT*vg$GF8W#(eh~piImr|eY7M}QH@ziM;n=Te6;*;v`p8L(2=d9x{fMp
zw5s<NYsE8kWYR8U<eYcX8?VaF7$dWEJi9niO-G|e2_nOX=aP+ImSxn?QBy}P9gWBM
z;t=L2{24VJi+MWob+pjYQb!#{tgoYi4yo|EI_fE;yXu};mEDk2=xD0rInKzTRBaPF
zLpSZvl#H=s<h;6RD^z2O-%Q7n$r)XS<<jWQsjl%EL|W-+t)r)oUKCbGTOBX!=&0j)
zdXbJ7b+ps@wpaB(>Zg7GSzz-R*<MXiU_@>QCH_ka9=x8rU(M1<M`!A1YQ`%%y6EVt
z8uy_0j*;DTbXUdTSb5*^sDY=(`g(X($9wy;7wk(A_SVry$3Pu}boAAcGgkK3@tO{{
z?5AVto&W_ge@MKp;|(?100keNka@XS^};`;bF}e8a|i1fs$-arAv)6cCCGov`f0;e
z%Ml8;87upal^;2U*nYH*G33@jR|8||oI395NHQ>9#{?Z;>-a{;L>-fKyrW~4j>$Tv
z=vbg*p^m9KrqM-p%%MB!n885MF^g)vn!<;#ri_(GQbp6Y(MoAzZO`bL_R+aIZi!;^
zbj)Y8=7_ap<yT|nwfEx3#>!Py#UdSxb*#|wCM`u_bu43S>hK)lJ{Pqrh`lAn6S3Id
z@&cFq$A+(um2c@-spD<kf3)w{+bQ9{QVQQr$uA|E%}#q)$7&s$bbLbh*0EN{`#L_L
zs&%Z>v0ldp9j9FJN`KM0k@#?ZJa8lBwJRw{pNkf}oARNKk92I*@v)AFFQ&{`8ttnI
zK4SXs%VJbLQF5GoA|gK3v02Af9bf49OvmTC|Ge22&iFsEHzsBb7R7I+Y|9pTwZ)e@
zw(0na!KK<<{Uz(_)s#m%Mfq^lcUMyCS>jv^@vV;Ubez-ivyL4)cIx<1$59=-bnIpn
z>o}lekB+@MzSpr&M{oEKR>ktg_OhZ#4RNfr=yW;d2bw9(M-J*Zq~oxTBRY=%l`?3E
zIJ_jfb937J=TrV#nKn8}w9Xel={QCW=s2z8c0qAm#|a%LsjfCYSBu+6%Vml^UBry4
z;?q9jjE=L+0Obo6ZYKs85qx&~@p1AO9lz?hrsKMf-*mpPiAy>z>o~9D4<=h37j<+f
zEi&thA^~xysNknj$n)w8DVv`WSC|Seq+HeUr;ZwB#Gcw>!$YE&BbNW2Li_&3<j*`$
z#&q0d_|R>1JhCK-PZ8I>nDSvmQRhmE(@Xq#HtUX#yYwX;|1nF4{im?(ilTrn_*naQ
zkBLKV#N%&>0tN~iNHdUbppb#W29gatY@mpNq6TyWhJj)RiW~T!fq;RB3{-C$En%Rf
zfv2~|E5&0R^Ry7Jb`<CDq-chJuV-E(Ey$3mD_Rc`-CBwdOu^@qYhOzV888hv1|kMX
z3>&Zv*a|N%#ga=YKVM3rgXO*wbq)VBIKy1w8Q>F`d?NRS*L>SOV&G8&!a&qODFcrg
zC~csO;oInO15X%u(g2^ytQ8kI`QlI=k=r|JOHtN9IRj4_NFo2NqE*JpM&l%3Zl%Q&
z?V`=gh|(=Y%s|{g1p^fgq#F3GbM$Eg<qga%%YRNqSLBEt?W3g&i9s9Vl_*66QQ5%$
zT*1dL>vR*TVKJzKNEoPM;8_EW4P+R|G>~hcwt=b!vJBKPP}4v)1KCudfvKq?^Usw3
zN{Y*s1)qYZa`*&bEdx0Qo-xq!d9fwM*XJybTw46rDq28_JOlX#>KUkSppF4);PGD3
zy42o+Xm*lV^=2BMF3Wn!*LDK~OLIj-1C0zcuPFG^G5ws@U)(I(v8`xgps9i94ZL9B
zIRni&oq<+tNu86=8!37;yJqt!pI3}UW1Fj`wl;9`G110ATPm<`w4v)iV)~vGpS~#W
zydqvS(9Xci209uT(Jk8Ez)J=?P)1MiG0tWQaqLFQ{E&EQOT3eTZ-$D_oF!fG4GZD}
zT1KC#C%PHvZs2<Z`wa9j@QQ&21{NB4)j&^<X<(#*UIuy_7+~NH1APqirFV^!uNnRm
zuz{A*eg^s*{7<?cL43Y?TQBiCWiKMiT}fGGh=B$M85m+<r~y8DS73$z@Y`SmYlQf(
zLv)yd(Vc`=NDMbnx2<^TddjJJQNDOSigcREz%&D6nEVY)GBDY|I3|As6AVl=u=8QT
zc+5%`jq8dRnnsVjA<C5%e2kxdb#HayDO5|l=$3k7<GqyW2L9<3on>IQff;lv#?(Mj
zw}#j>C+)?8Vvd2i2IkY5JBjzoiFwpvrP%0kl6co<(J8l6#%p4cfyLzCz$XTl(7py%
zQv?Ic3@kVBmVuRIGA33q1geWS4NR{jn)Zz{Y4d^Yw+*~wV3mP)si=N_))gtS!iE_1
zU&_;^M5MNO(-UhAyhmR$@S%Zq2G$$cVBmdrDJ>3WiiP83AVo~Pl2W=t>@O*pYCfVJ
zn*}x+_?R|oDHyg$67yP$2LGj;Y!?00z-F4;z_$iIGw?YrW#B6VTMTS9@P&adX>MDb
z`#7`7=ka?L#Q2mLqhQdgwA?mgyMeD6T-C(MUQxc2LVa@WcyCL5!#Me!fn5f68`weR
zD_>pqMcU4Ba%ms2$H4Y2aawjSBd)(V`ftjxa-w}n@dJlq)Q3<agaZZ+8n|ZQx`9JX
z6by3%zZ*DW;70>z4V*LZ=8cqQy~R-jKN&cthT?PD7i@8ynXsccq2NgcSv;kX(+18w
zpzsBmpAGzCAlN+mE4{j%;AmAFiq!J4T^Zt$rP1>S{xERKz-0p~p3^RnhjH?v0XkAs
zU3{BV?PQzi6`HA%xN7i&OK7nvv%_=IXr9PvAPPMuZkHB+8MtBKo`IwgZW{R8z#Rj3
z4cwxSF%vSHiuu`iQHLnqvi@^Xe);OH9%4Y2_}9RHbmKJtWrRI-#lecA@OW7ugn}Uy
z4xva0?s!=!#Q#%>&GXWj2jab>MMEeS!jnBj@eruetls(WyJAH7*uS?^Hvg4UGKBwy
zP&$M%Ap}CuLhwRJ4*9qKgCT@NutLy7FhU50V6x><KRQ~x6@4gK@Kuzg4QWeaA}w9m
zAvhsK$UulU;{4T+`HI^lJ~zwcU!rUD%cjwXLwF>FQXxFXW<|u;^P`W3=tbg_{=#b~
z9uMJ(5H8daPlo(AEV#ko1N?i}=Ik}a*>a+62<1Yk5JJTeo(dr)gm?(4A&3y7M8YB#
z!qYXyd;g}$4Dmvy*!@pR=^H6ehftp4Tu*r>#b3X+*7DtZmLn>KP&tG&P87n-*5ZvC
zBKUD8zoL)``5)M+5<*4@uT+RJBEG31{&WP{Af6RMwGcXm&^hG)V$BXAUm?V+hfpJg
znySbnace0g=Rxf=A>=;5Ybzu#g!bykW1SFW2z5iK7s5*vVZ5v#LW2<6s%8xpd@h7$
zAvAh0!m}YXR(KNyn?9g(z~%~X@qlvwD3+EXv{IDT3bs-3{_N!Z`4C=Elou6jcfVFa
z)>4)ZimR6uBzqmHfyI^Tj+e{#N4tdZMhF8#Al@~EZXtA6c#jbJhR}~XRK*)B3cngc
zPlfjip|?WDYzp*I2>TA~m_*n=gx5nD5W;JUezU7aBCl_EB;Cgcg)lgTjUjv-!jKS#
zhA=CH*&z%IVYuotC4><QnW*5%5Jo9vw1VS87^4u5IW~j>o%~68jSpdhqTi=XQuwr$
z@yYa3)n@90UeiMS5@~F@D$Y=Frh>;hCe5Megs?h<H6hFkVSWh9SQWwo)nH)=yOoT`
zJ0>j(;d0^F;t-aos-8Q1HkML9JCaCWp@{!{lKGBm_GSogg|ITj4@bxL??`%E)v`Tj
zWSdp0_^yJRcO<P<$OZ-9Q;;p!g|MEUSvdCJrT`%+@2jd06#P)Zj~JD6<IipiYzpzE
zZ~Vwa5yGb-Y!2bO5O%0GpD|QJ*rxE$72KlWRt3KZp~t2G2d`WtR#++Rs}Qz_@U^P_
zhEAfy|5g>*jK!S_-_MjD!Y=AZ756ZYbxQgnguM@1ejma<#Xoz|XWBMQC9<t!(m^Ju
zPDzJDIHX#Bp~gS*pckut3gK7?=R^2I5s!y(DumM^oKVG+3Z{;ZbF}kElg@<r(F5O&
zd7Ta6oWk!*M9MEA{2Ib<4`lpZ)wWY1z}gETTvL>b4@S78kjo)lc|f@u!k-F%S()Iv
z!W-|(WcQmP{LKI_gXU#$D};Zj0T)GF+z#PR2*23))yCZr{-tkQ7-`|Z5biNSg^?LX
zl8FK)R+xCxL_rgUOf)j_tck)VikL_-AxsoCQOtyABH2W76AzhiO-#F(Qo=+@6NZV9
ziT{}hnEwBIgC^g%6`c<j)lC1V4V(3=EM^G*CjfEX#B+b9w1^ASMA(F5Vn%7P?$fws
zf~&l3g1A}6{|Uol(qIuWL3~>Y5&tm$N=5OoiAPL4X5w)ZkDA~nq?GBuGRdDgtYz_$
zx*CxuOgu?8$oA4GCoN;5tch}}<tOb0U$48>To8FmNpZWTAcs*CF%uakGEKxyq?)K=
zVptdPw2AU2Dw?QdVr>Uec4M4lRxt5V7t!|9cx4l5CelqLOz>4%j>DhHgq)Q8lWl*O
z`$x*Qjq$1`vP{%6kz-<e2T{#LbrUsM>?g8KkcavKQPV`{^>I>a&GYv>9OM}jxhCqE
zkS1!I;9EuSHWv9bP(<XJ{x`LrjQVr&r(9hV^-MHS5^?S0H!A<h5cN$Ea*=IlqH31l
zMbk7k(Zs|M6GKfjr8!J=G||aKGZW2CylA4Gi54bWnrLI9t%+7_&{niI!S64<9P)qp
zau81XyondobUnsP+1S@71wXO1LVHD|a$aKhPvdOaK_M^GA~#ap^06`FWoHvzO!PL<
z$3#~X-Aue<;#CvfRo~dXlpd^2_h%^{68wlOk)9@cJuv7CS5kOQPZxbn^fU3gi2)}1
zQz6X*Z26kfCwtxLk;LK~CI(Wvs2F5odGjcZ!YXq6etj|61l7)0p@*3mZepT|Ny<q^
zm>6kdlnMIPB3q0$F~$VtnqXqAiE$>V4GMdoF@6zoyovkbhieuheX@xuCT5wKZK82G
z!Hw%w%4K4@>NUf}Op|B1rcl7|x{H#phzlKSo5jQ&6LU>0FtN}CRXWeae0pHAA4&`a
zBGtQ!MJ5)TSVloiu-6iXZ9%bA#SX)yMN!|rAC(t$rx&aGLG+f1l_vf+am&QpCf+e|
zz{Eilt4zFWVzY_QOsqDs#^f(?d`J%`V<tA3c%PAI`ZspgD?`wZWPn!>T@-I6s1siP
zTqZVBcIBCz_hS>A=sf9S-b3Qj^HF|?n9l#HvMKN9kp8)eEhfG*vBShx6JMD4is4}5
zOJ$&K4692iv=Jww8ks1*Ht`L8qoVj$se*AKJNRs{mMYq5VwZ{UP3%*SvD?HR6MLDX
zTKR3<O5&Gfe-QG?s3GMCHOPKyc)a9AEgdp(*u-xpem8N1<~DKK1VuY);wKX)Ia+yf
zw3|3);<$+uCZ4Y#D&9`v%_s%}e`P!#_ka4GGEpWWmafe?W8$ppe$K=%CVn;XGvV!&
z_d7?cbc%NAE@osDT5>OiKY7m61cvz2#5EIt(3Glpkzsf_<r0IXo!B^DURFg?t|;WH
zf+ssguQTtNxXGyOAZp%AY0^^MFfsZq|6Rh~<&sF`2cQ382ry5E@pu?_Ox$G-52IKZ
z|0>5z3Zp<6|CzXFf`ZT$d3E_UP%w-_Veq$VkuZ)gN@KLre1*e^s3gq1M~^BV#zSFP
zVc21m2%}^eS{Ml9e_>ROh`mKbAnY#<>`1&_o1~x`&<G<G=4&ZJ4<oiAjdxx6?yVX2
zcj@6U<`)+~*Z1Fy{;;-iI9(XYVLTj$8-~YT1^obF*m77Jogwo`7+gUf4f~m&lwtp*
zlnVQi!Z2a8C&G9#3_e#B4Wl$$ri+xYe?y~87-bc2{kax|@s#R9N8;7_ziMQOzhz=!
z#KWi%M#ZrIK4#N5cvlCFdWxqNEUzHHhe^uFVuD|Fs1!!!Ft*2IX<;P7zUQQ?;xB7+
zNURdZh~|EzTy7w$hLJ_BhH)Z{YGGuDF)obpVN@q?VYCn9r7&uSQ7eq*<T;F-FrEpc
zK^P6g$PJ@**iZhFN`67)g>m%fto$&3?w<5r>p-0_UT7WN+$Ebb)(xXx81=*W?s;D>
zu2w{N--dk~h4Czf3j3Lg;mms=O~QCCjAqnTMbT6-f8G=o+xn4GWLDaa4QVaIXvM+9
z{tc7XVYCTj@~h%`3h0P;Eb&lx(Kd`C@1^xFmC8kd*{oO<@nRV56std3{-hnkcsYzA
zVZI_NI)>3HjJ{#?3uAS~Sm!XhhtWgfUBb8?5naRR7RIje^2~Ty@^Z>6VZ0hfA7wJ$
zMCwTuIii<>kEM&=3OSl4?z}F}+)Ei36#c_^EsTM5#om6}d7bW|JY;}^7hm=7g;MbL
z1I3`Qf752LYRSgD!#0%85C(ss4G;To@{Xn9!WgM2qrw<NTWm;U?Px{$>(yN1WQJ3-
z@q{oYhOs`34Pi{8io#eP#)>eegfTUY1z{|t2w_YQV|EyGh@^`d${}acKT8M}XNB>{
zlC<3-mf1zj4f{*OJSybh6kY?G2j(lBMEdz6O8rL)mC1XdL>7m!L{XMfv6@(>a4LsY
zZ-()fa{l+iSQ*CKVZ2LKhy4}#oiJ8~{pEu=Kh8;n_Fbc_yp|RjFIl8D?<3vjN7se@
zJs9KY{V+ZV<6C-H7$4H6VSE|(m+6gRd>qE+Fg|0;EoqySX+BZ-kcUM7Oz|n*ION~V
z{5*^`L;R8NjF(#!zEwdIzX<!umbc@!h4Gadc6%7#aITKxYsEIRZtsT$@6403gBA>9
zUl>2ADkk||VeAfL56xF!><#1lFu3B-4frt)E*Z=@%pUv0IG~*2CnYB1<zN_x!uY#{
zI2^_is;IH}d~uY;AC<>a&qtN=iIC@GYD_xY$uLea$yg|D;dB^h!YFE?n1!=poa1O=
z++u8o@k^Lbt>9`HzlQM}6&}XLFn(8Qr+CZ2`LO@}0mj-NOvN<>^Us85#3g02J#EEh
zrNd3F0;4+$*8UmBwJ>gkag+S0=%zXTQeH$CqL`bT1-MwRX&#_uxp4o(u)UIUo5`O6
zwIE9TE|WjgzJ-F^|A%ppJAaF}*HSqSd7u#&miHHQn!b>Q!WN2H;Ic(J(-(Kkq;p5X
zVsQ%(S$x?Xk60*Sp`?YN1>N#z`Jd&dSw8(4;4B@)HA`p~XfGmkGxjwsge=$=91Eu9
z=P1hpw~pi?Y~iaHqMU`fhzlA0Fk->A;90&y-rqcMgk%d_)vME_Ecq(wQ46Ik|KB&9
zm(51MA|A8wxP{E}f;VrUu=wSC!Eh*Jp{#{xEi|@J&cag`vMp4%kYe$FzNloOGFw`R
zS^moPw1r#Cqj3wV7Ve9DKOCr~@)jyselo0R`FjkTJDKjjX3{LATgc$NRB4V#sBx;0
zcs->^Lx0)Y^+{$`%U>O`EL5}5PWb09kYWD+g+ft$s-lL4+7|LG)U;5`LXL%JEaY1L
zmbH6PKVx&rV@qyYh~!(SW1)eChE$-1x|Sc;^_8xU^$_(ef7Rm@dZs@ze}&PqjX3yK
z|He4Ig{KcRvCz~)R}0-NJZGU9xw6pSLUZ=D(Aq*9B|e?1rG-|Oztqm?<xibHEA7y=
zl(rV0x9|d$zbK7WFVd-M_&cRgOnh0>U&>#y_}Nc?&FZZ5z|F(U7CI`;bW-eblmE!C
zSzL_Rri*GxMRlhL7W!Lw&B7}dUbWEMLLUn~>5b?8qbqvRj{NO&HH9J1Eqz}y|7S`+
z%TFCdxaBysI7)tAw=lrMU<*T(+TXA+(83@K{2j{I_W!<_QfpHtw;b#;RH<bcTZVl<
zCmc@pYWW$1KPN}gfh}~h(b>ir3u7&uv~bG8I1A$~d|=^23ll6%w6M~`+ZHBKQT?K`
zEX=kr*}@bHQx(PG;V+ck0*{oMPBz$Obacz;s5wFM3^<-+#RIM8sFsT?|9q>t3ZG|T
zzJ=fW`6s3=u&|KMusLH-k5u;ML3N8QEU~cE!ZLbYzv!E+wXi~U=MhmUqx~aad3+=f
zk>v3!Z&|2vJ)K9ukiB;-yi1k#kFHX)kn-{1=xWP9)^Lr5Ya5f+T6oXGI#tVqnb?5W
zdR5$@;QI_Bb<W^N7B(u%_ZB{8Xjs@mZz)p!6APbO*urSFu$d}SM+bgJoeYoiY{Abh
zeBUUEC;jQeqF-3}(!w_uzO}H8Nx<??A^ci(+0I-s+&?*V>oEW9AvPY+IO#jpV0csi
zv`|u5wUZfXY;>1}-3pmB)z{}9x&&SNHUIQR*6t%SqkSoUP~7gP{`*D`SU70mkfI#6
z@RLH==7@zK6@FAfp1?)ou?MxsEu2tzuStbSKW*U*6Nrs88)q$?vvA$QUlx9*T+^fH
zE&O5O7lr?-;BN}@OsL;2|5(-jn=>xZa1*268`0<ldC|fp(k)!EaMi+}Tw;d!X9<1w
zY!bWhY@O!@_$PK<Q(fp4H!R$=5V7If_?wA~IoU=@8~<3i%_MB2kc~SQ?lL?r+#@GL
z{gZ=ue$c;4S45I*WKYg1VEYF$o}HAFKS8#hAgfP`7Pe8u_D`F7$OccYENY{ejp8;&
zw#j~Kl7GS@A&o)}5cV7&{hy71jgSq~hGzRO0O+=V)F#hJ;sHiM8#Rae#|{#H-7v|p
zG392QwP72UjbV+GY}J_b@r{#sgs!6yHsE1To{eN1<!n4<<6#?**m&H=6E+^TQOX97
zrh3eV9Os`=#Uq4x>Jy!xuq=-Nvr*bc8QVXHtKjoVJfe%IWihzQ+Bh^i%HxevYzP~v
zHlF7A!=h0eF&lB)KPia^5)tz7Rw6tAi+Fh(6>L<rLH#qbNaq>Em2Cf1SqjJl3e#;Q
zY&>V98TDo(!v;?@;|Q5Hs@ll4QQJnAjcQc5jp{Z&-Ip}+jVO=5WO$NT!$ywnA9z&L
zMlIVvYnXyiy;R^cHvbpwAA-ro6fMt2Jsb6H<lCr2*=_&$s=78<%Pxd%2K%sqjfOTF
z+i0SOWwS;$p0)k+<2VbQiYFA)A`CG~)YJx##bmHIx6#7(lh_M3cx+iqg||{TiLF(!
z4fWqI+SUfo>wI2O?q>rwc+o~XPGRFE8y##v%3h{IhDO&U=h6yPaz`6HRf>mRv2hn0
zU2VK+<1HKA$iEtDu7W+tvyJ{XMh%R<LY>>_Y5PY}(;<7==xw8qjlLXeY&5M#oUY4s
zx8O=q!q;rPPHw655z#f%0|RU@xee!-HU`=lWMi<6p>#PL4aP)y#M=<tKcS4LQqt3S
z&=?K<W5XoUN6^(dJLei49nIu#g9i%pTs$6INukElK+~h|PVw>aHYQL~8<T9zP|Q!J
zd)t_5W18(BHqDqNhdfJex{9*<Me2NU!Q7cPW+`u^MP}QWqo$*a_9~F*JwaZW9+*d4
z^BgNm)IYkw#zLFB2rRa-#Kuw^%WVHFY?`v9I>&9fjTNdTDNHHkoCgQL^ICMJjkj&=
zw6V*^J2qA+CcmWlY^=8N5k<4H#>QIPKM(GG8}Hdzr*NJWww|)9!#6kB{_$jNz!SlE
z?(+vWK2#J6Li<*to^5PWTH0#k6S}vJEvooyqomDB$)7V=7zh)5Bk}+~1`buq$fXy3
zp&GE36gtK>#*Si=_;!VSZQ~n-e5>Gh4{CSV{({A3yH&UmIc{SQL)gamHvhSdLpBa8
zpZ~$e0UHOYx3{DF8GtHS=o>FLO8UD=5`*H1a<FNWbB@~hk#Rb}KMjz_v;IUoPR`+V
zOd$;F6AxxTY2%c_Pd}iXQOH>Z&nfsbHK|U7{LRMiTq7bl7r}WOe^BT9qs=3@zy>zn
zckqFOOExYuW*szfaK*+|8xaStgFh*zjiL^UIk;})FJ^V#(kH_<ZZh-RxW&XZCoyh<
zTr)u)&q&pHT$hdEg%h{wffMA}3DT!bkpJ5F&qhH9g&YJY%GgAC&qk61_IhTbEa0Hc
zM9Hh~L^)xie0!oS?4XE)p9iLXIZ^&NQ4$t+@DTet&>fU;P}0Hw90VNvek1$RM1Sg^
z?qrvoB#)o1R^Vo~<^T@jlVpualF)Dvau9Z4aoAhgrh~qd<itsmc&kZr1AAqp+75P3
zl8%E@lVsgWaYD~QvV&9yPdj+n!6ObzJ1FDeQ3s_QJmKI;2LsaL&59<v9>{*o!Q-m9
z=bvm6``pPcI4{9#`b)WG9h7qrbr5s#l!Fup6TisbaKOL#*4dGpK2mg6f-p{=9sV2F
z$8VCc1KH&rRB#|2)OAqNK_v&Z9ppKv?4VnR+-eS}-lc7F(;N_{J4h&mcol_YD46M>
zszS09EHPQKLAHYqY4Pd`5~<;!<^#NzgB*oFqhPLrr6x-@%XdJ=s;0&3P#Z7gmh6yw
z<)vIw>N%+IprM0C4ysI+4IJ>I9(cW0EYWzfe3pW|l)G<sCh;DVWm5;wIT+?(xPxX6
zno}GH-5s=W(2~<R_;OI{2SpOC9JF=tyo1*C5H_AH%PfrlTqMET7aY9kpuNMJGq_J|
z=itD#OyaN3OR&xS$@1{51dA^_=;)x6gA1|jE^6e?3g`IiC(Eu5zELgNrH6x89Q1ea
znuAvz^rW9S=;xr9gWe9lYFL}2^-<FiIdz|zfvLm`Op&aOOp&isY6n9c40Z5^gMkj-
zDx4Usx(rg5CFitn=d;y}_PNA2RF1Pd5!Q}yFw()B?BZaQgVAj7V4j094#ql|<zTjh
zacYnWbRh@hA8^6}D^Kw?Gl~9lBYU!fQ&jC#1*a)E{XzQ~3Yn?k)i1LfOp$XO%&8pb
zIJ`Pek@FoaaIo0H5(f*F#{RvPJ!^{GT&CC}RUAA;T5}Rh9V~OOoMAO5!RT8*MXq4@
zsH(50ND8&m!P^X$sXqRWgH;aJI(W~)yABUJOeDF*)+l5(tz0ZoDLu~XuPL&`RJqQ<
zdV0lNpU9RQ6khgjHYp!E_{f11K_r5W4nB5p-oYOZHaYmj!C?lJgHIi7cJQr(?;L#Q
z;ByDtXg&v99Bid!$&U)0np5Q$bgik97e^jHRW4KbCsXBi2VXm=mmdFyL6;t9)!wOo
zD%-&<;b5PG9~|s*u-m~N2Ycy+mEylmmD?)C$>hIN<@eOdG)cTv<@hT_6VYkX-juVS
z{^_9BG<nd$A!dVrvN<w~tR?=VgQL`*gVW@;Qv4?eCzOGRA7hM6lgAw}s}MP<5aK<i
z$ukblIylEvsU%uCGcjtKTsqCy;V%w;b?}?gFtgn63~(jFeU-jHO<r(tk@+x!q7htj
zaM{5>4sJ95JGjbh@8B=ye+QWde6?RA=WTNHW+sSFPK%Rx!@=JUZm9-0m6nRkPLR&=
zcTST;?vSx*@;?Xn9NZ-vTxDh@T3yJzJ54T}<0DBC6o{Z;1ifx$(|Zd=P&k6rq6zvi
z1DOuVHeJtED;7cV2#g3q5j+$@i3qfa|FUk$2+Zm7e-VF~5Yr{`YSU#P0>T#4WspM6
zO6U<xo-SXTE}4o~OqYGX$TlMgM_{R5o2N@ov46Vc2)3g9p>Q_>FM=8o)QliGf`=n`
zI)d^MJQBg95tNCbYy_nucr1b^B5-F&dU(MZvUqy@aVm3Gf=GoK^2rEFM=<GZwUO;|
z3Cl(BR0OezpZsgjkSP&}2%-@@KSNfWnK=4o_KGjE$w~hiG9E#*bJd8XMnKr8aH2v4
z6(dNGAQ3?&C0AMmD`&{c3ZF7VQqrw6<hmQ#RU*iUAd5<fATxr)Gi22W{+J<&RGghS
zG&|AnM)pH9Wp)IN=;{%kXPS6?rtjD+)`}n};wNoN^h^Y~5j2RPVFa}!$csQmP&WcD
z<vBBDegt(Q;Am}T%H-k+68p@Q^&+Sr!OWSGt3N4(YiG(v5#BaIlL(q}F4ed(rFg&4
z>6!BHnesVGN}Wvf83@kuhbl8mR+}YTM9?zg?^0St@J0j!BWN8#n+R^~kG74Va|B(e
zw+LQ{;Kc~qMbIIFmsM?%YT4~0cqxLluVplzB_|ZE(`}aA+$WPAN6eBPBY0<LdZ!3x
z&yolFXOP%6f}V802)aekoiomoJtBBDf^TQZtTMT;M6mTr7K!BtXOPl6f<6)Sqfw}+
zD_P|aMIS$%+c$zjhoXhw$apP+*A>s-|6AnPEIA;8{7VUnK>VF6S%V@N9Kjb6d>O%z
z2!=+mN;Mu9!SD!XP;U{8h+rh$gFeGR7@RRGf-w<{jbL;Hwf@SwHcPI*?!$2rjE`Uf
z17Wsoay_fmY)NrS{hd{HwwxTn`@J)#MldacDOCGx`RZ&rZnnJhP@QvcWK56Xt=V!*
z|BUkYvdGvh#lSKJXGbtcA#)X+7r}gmEQnx{LKZ5>UiC`kE`ES7iD2miyxi|amn(dQ
zf^RDL)`QxW3VECQSID-5Q4aO4!dDa0UJ57i(+J*+U|j_3A5b<%u;Bszegq#V{6hsl
zdO+vwA3wl1Dddv~KA9~!;N}PP&lK{xf?H_W2lToN1KT3_DuR;{oQhz(qVG}g>j!PV
zp-Vi#zl&hU1AHgF`T@S19{5x`XWSdX_Yv$blfEy4BM)kSP{@7-4@7YA0sRnzRN*@n
zx9t971V<m#{-ls&3LaPRL<F~9%3-t95frPRJ^t;)nFywTRfx{qZ$skJy2Q_%`h3dY
zY!<;U5&Wu(zbSYlg5MQ#K7z$v61@K4uK<N#d_cLRkjoKVc|f@u!JiNCYYMp@!CwmD
zhtW6)r@I-!n-%>JAMyGpf;$o1jo`ML>wooPB>t=Lg09aSum2*rrzlAeC<PQ!e|J&V
z7IHDKR}x<*FY2P0i_ag!md8-s#X~M?yU24<!bM3JkGpun_3s$`PeI4Ukr(0t7n<vT
z6(XlXJm^AqVYrZOV!XHiV``j_1@hg%kPFjA*u~-5(sKRxQ*0NvX3I@;;w{(2ldh&m
zT(~YgRmCokxJc%_S5qEVkjQ_H1V?++#TQngQZC9r8-L8j@$)GSpGbPrMWd`ZKgyJF
zQQAcr7iI5Lnj{I=e@v^Ki>DMNMZqt3B(Z(eMZ=u5n1XQyQx$w#!SV{SK?Q|WbWuqm
zl^@X4T%;?UUmIXE&R&Ir&yg7}h-bQ}>Z05n$tz1C)m&sNq`HDN9@N%!QA^=D4=B$l
zBv-+@HB$3k)N#=v880V8x~S`-v4<ue>ba=zVvmcxE*g*%7c*VVqJS=*b<y9&Yi#MF
ziHmM7y1QuV;yD-3yLiDxGZ)QWv~tm!#ZhT3*m90+>7x1^NrV@XHZD5Nk!|T1_p<6=
zjnD6$NoanM^P-D(E?#!g(M5X~XJ5*BiR`%;I7d#OBOf`NLCWema?TqWom_Nw(Zxkq
z7d854eD`+Z$eD~U=1300q4fW<NJ;IN(Zhu^SN3-Cii=lW^mK7>j_jr2g*me5T)FD`
z1S#>kvX6_tF8a|Y=gNmSBofiwJ9n~PcQL@lco!2~f3<qU#ZVW+$Pa~`D+jq4>|zKz
z&Xud@N>Yf-m@9|77~x`+i_tE=nkz@TI5t;aoh!RlO=oe83o<s=#W)uazZ5S%Pd+|R
zR+%Ro%#$7F$+Z^~6WQxPbc&15{>z%g@#o3O3eK4)r@ENtf{aaP-w|mu6#h~)m)Dwk
za<+>(?8OjsF_*e^vC74}F6O&D9vUl@2n$_*fm`fiiHk)pcFdD3o|)(CcBzYHbZHk9
zfqH&1Q0MkMUm`01O&4#`njhw@bn&)}cU*+#%ar-D`rWLW^CdOka=u*cVvUOrTzu$a
zt(t3{i}j4k5ozyH^YdlVIT_5N8(h5a;_B-erJhWss!2INH{&B08(n<j;!_tNQ+4wt
zjkw9h)`1yBcoEr5hUZIq6cgh|^X0Djk`~!Q5nONq+RET{@g;E=-?;deI&`t!#n&!Y
zAB@tzhc8y+M9I<IUDvZ#4Nto~JdN)6o$?<Jo_RW#EbVl$i`Vt6-ArF)(#amXeD7i(
zQ;>(ChaX6HanZ#k7YFD?E>609wGD?{ynZbG7{&ZE>o60SiyvL&ABrAz@so>5WztX0
zmvetg|7*T{Xn~I$4b(aA;)IK-`!Z**&LKRlH1-=!wjptbp6}wEi=SQm;^J5G`F4Uz
zpoys&21|?n8IgOwhyU*4JQZF&^$!IvFp;**err@3_e&&Rc5#JIZ_-H^#q;D<7uQ|<
zMb9ab{-=v;jOA-tytHdsk1dclT-<c=w~NFA$>J>+|G22PK(Ybhh`+Mfi^yFU|1yz!
zDB|Hi7xxrzg*?y)k~|dfP|!oA4|6&%kb@UUM%L^Fk~rg$3NPxRnCE-%|2(|6Ko<8<
z!oyDs<U^{seSsvgq=(B3B(Ezas|P%2sy#)fQRw8l2g5_cLlqAp52lCG9?EzKd$2r|
z^86sRJvbgb56K?bg+`2caGBFoL_bw8yYNE!u!nnnGam8qsE3Ca%Cv>D{z5+x7!E`p
z^YFOmo8}1xpY*VKUnWg<-&kcml=D#DLj?~{c}VdP_we#UDLh0y#5_NTklP=JrxD)w
zH~Lblho@P!Au(*B?EXQ{`B7=h-pZ-y`L?U<;e)@jDtVZ@P#&6-k>(-Y!@Sr04ei>6
zzLRHo$n^LQ6ly2|&)&(Zs?_q`LYd{Enulyku^~Z8-z<~PxoUODsp%olL%xSv9&$W9
z<001rr>^ax(YgfLIJ;1?NaV*4a_V@H9_o8&K)D8I)TORGKMisy4oJNbX~>QqxG{d#
z!@o*n)*^XfKt^nlq|%ytc+SHK4<|h|^U&PGG7rl=wD5R#Ifim-53M}3_V9{_S3R`x
z(3VQ`(9y&59$xU!W07p{q2?m_BD*h=?L2J1n4r@V4qBIZ$wLRqUOcyZzl_m~<ibU=
z6IHiJcJ<KBLuZ9|QIN#X2WNEWfF6EXB=;_oj6OmJ<Mad3o*r&5lKnjN_t48jyF=05
z9{PCb>tWqb>Adb8^Wh)I(qHrNx`#pZuEi3I<p2+Fc*t5TLtS!78OT*~v1D=Ig=&L6
z4Drx?vAo?mcTDHpk&ESU4<kHGq4Rhc>0uPz9(5*q80}$<huw?i1P^09jPo#_hAWZ2
zV6oh|STc#-shfSjcxJKusBZQo&yP?NC)3<@v)N#phv^>XdsyIMhKHFR=Fn|u<qkQs
zJm^d0Y~^FO7fVu}Tp}};NE&*c2l^YYhD+o^4`1KTT1;k^$VCj0i;4cXv$`&kOFS&S
zPh29o`n<nHuJG`thc7&Q>ESI8E9s@wF!^61-}dmXht;b4J2Y;;j8)1rIn){tYZ=be
zr-$E`$p4ne4;y83QL~oH^&U2Oc%LD&RG!<LULjJa)>8RqG@Hmr9yXHmLE7hZlBM!v
z51)AWRN<Qxe08ZDaW`wThtD|O!Dy?yS)tKsyhbgRTNo@$C9kcVcd7hlsodt_D-U};
ze9r*a>TLJ$t%vXEoJ-}`9&WOYhi#u`-n@|5L4Q~*cTp%0I~7j7k)kb=Pb`!9vFtre
zLCa*-WpW>rKa-UbdB2AP9%e6-M?4(#aLB`9>Zea8uSUycr)Ba!K6IJ<(Zf;Ia?LW?
zXlFjV98)7~TPBYyWL>@NQyxxxNKMAm$vETTtcQn^Q6d@VJp4?SXnK0GhhIHh^KhM7
z_3*ogiykgf#zpeHhd(@AVDv5XU481Y^uHBCH=a;F`?80t9{!{TisxSOu%djnwp{XJ
zkr$D_XgJQ^FXI*y@9?ynp1<b)%~aDrqsp_{q;SRg$3xlW{{Dp9mAedo=7D4sNygoN
z8UHbndPqt})^fRJuvQ=$1(W@SuTZkjTl3}eoxvFo9rG8y9?NCXWM4}gm&-lNWwB%w
zPsXU_|F5gX%Vo)A{4W`gCFAjA1d^d8!%Rjv8K7GBN4v=!BN@SD=*jrLUj`{ZFZY)f
zI&&x)bUb>pl?(=;n+z`*b~2n~Fc|+^E+fgPzaWzrYm>RxU6<hXs6rm*6f5K-3TG^n
zUP=u@gu*_N?C0ll$#^murIQg|A#1FVWs*@g84IeXGHEwm;U}o4l97@Oep)V?j94<_
z$za}YFe7!_-7LaN8xkxMa;Wmj_&=t;14@eG`+8*wO1dOLU}A@vp6;F@&n~;b5|-Em
z0Z}p%B<C!kWE4;V5hO{FoO8|@L`i~K1Vs@uiU|<@x8MHyJKs5V?zwgAReJTRdZuBg
zD*DjahbBH$@}aU1Sw7VCp^6VlANnnKGJQz%A>D_yV>0;mgH@`^7&3g|W1U$xNUY|=
z_~lM@A8Pop_k7y?<<7nHX<IowA8PyDhhRe=&MtTA_)yP>`aWd)P*)VjJmdeya_8=H
zhXxIND6qnz!tJ20a2m1q6^_Hz>{YMX3a6<L&3tI%Lt7u7_Mthww89Moejse&!!tg#
z@}Z^A{gh6HA0VIg;icc*HyF?PuzExW-($4)A#yG)ez!WY9ZOd@?S1GVBjk&Vjy~|D
z?d(GrA36zt-shgfZ>?~s^K*MwAG-N)c!jg3Mb_FCZunhY;q>sKrw?xgF(ZgxKJ@ls
zW&pDS=)=LcHcR_a#*e(i6MgAVANu<+z=wgHyASXAFvy3&^sNu;d>G=xP#<Rd@RrZD
zA4Zo7As^0&@?oT8Ule@FhfzXC3yu+_<(fgsmpwk#hjAYNZG|(zhlz|p2DylD_%OvQ
zohIZJA6^wQRq)|<lMPPyY+e)cI-{jmlKKqE&h$!W33=1U-yCym&GBKb56eY-Tksvh
zd4e>U@52J&3q56#kY)?r>Wh6?;^|9;Ec4-APw6&3u|oJt!Bv8*z0x&8dOly6?X34<
zJHu6!4T2j5HwkX`VT+Khg4+cDY3t68X{QhSeK_F5F43v%7P5yCE@YplAK#dIQ224d
zLxP9B(jz_`6@JW9_6#U@!s91>IOXxvKAaK0u|R!xcg~0RefYzNyFPrt<4cOZ5xn5T
zM_#RqK3o!hS@1)_D}q-A+0@kz$&Y>b#D`Bk<(dzldHi!BU-<B)r>wE+ves8VT=$e4
z+*Tg%)FFA(hi@hOo!~D%+!FG=;BD?5AwLTKEclZT^IuJ8vve2nR}o2m6LQCg-#vu}
ze+vK4hlfJ`^5JhG|9Ce43c2UQeNTDdgE84{|B)zpxas^zk*!DZF(JA9NcEK5Le?xu
z$>+!8eiZlgCxjICBfpRWo?g(8Lc$9T{9lCdhdbGF5y7H<6ce&?h#NdiCH#0&l#+s_
z1fLRQX<%rgtRHg*n1N~O*ZuJM;rAopN6?SaevI)W<VV<##(p&ML-9lPqlVaPe&|Bd
z{D}Aw6<$Hm5RCf~6JiQlg6zl^^3+NvA*7tAmlv{YLn>`5`ccW#D+{S2m=xs1)4kHF
zeq?w&(~oK%uP$WUE9qH&)byj4r`PwRw#V!Ek?rxie$?~$u{KGLp@AO_J*AN!j>mi7
zE7a7FW`1<^qmv&`d-`*JH1~K5KU#YH86mCwcveW2fo|iiz0x*9+WOJXQ`-B{L3rPh
zuI2N7boQg4C|x|89)5Hc-c9fYPw(zWiFK|6dy3Lau(wy*M@V1#cBMm`{(cPbW1xsb
zJ)1#71`7@m9KF_UaF`#%{TLz2NIymic~Ow1n}#Kb_WIP9{CL@qoqp`{W2_(J{CLxk
z*<v={k5@eV34ToU_#`2d1*b5U*1O%k>c>=3rup%Pkm-Ufdd-j5J>GF~ZYneUm?_FE
z!B-`O-XizoT|btKIM<IwLf#gfC&;?<g)H!6p{F!i>Ad6d#X^?&vD8zR`LXFpCMz<n
z5OJO0N<UT!S?yV_5wg~g9^&owerynBqu^G-O@f>K*dn9@A6Ns-ZNf>m`?160+^4(!
z*yG0~KQ4>7*N-E992LG#aK9f1Jo|%w91?!mQ>IJf$NV@g%5lLHf+szjQ-1znwd?;g
zew_95k2u_u;RCPqoFDId{M7o?^TIE9%0)lwk8sETp(vku`V}Ep1wZoRV^9A?$fw+Q
z1Ke7ld-@kbz7)LX$5)<SzD(*3Kfd<k8$WLPVFq9Y@U0);@x%+DcmTKj_@1X_06fZW
z`|*Px|M4iBmd^B}A9wut-H)F{`PtKd5%Q}azX@5;E=l7*ywZRCxa;vh{rF4x-=4DT
zocXWtd!BONj|al{v~}Bg=*J_T{4yS9^91mi@LYnao}N44ev+X<UQzOS`r`pSA$;yY
zx3qw#7Zg%RuyDZrv1XPs6$zlI$9u^DN(A8ZlqZFh44{;dr#!v1kTL<3^%Sm!KZgep
z3?L+27Yqw3Ii=ImRUujc6IMDLKt!@pLBq3&33<_}YX=Yypho~b14sl=E`S;VWJzgx
z!8E}N0aO%HNs!G}7E&dEq>#PI208Oh51^`NlMz6s$EyWU-Q#NpC29sxD}W{eG!?P7
zV12<lg4u#~1E?p2jnfqkJl-&XMjm&#QXXHr(rFgJ(*d*#puLFA1)mL|g=f<;fM<la
z@|5Od6VC~6E!ak|tykK(b+UuUy9ChD<DCL{-s7DE|9e<>6{VY}zYsuokN-R<y;lIe
z0~i;;coF*u4iBKOkbVL54`6_2KRAGa9v>7yPJ|B;WvJjV!HKdv=${di9Vz%?0HXpJ
zEqqJ>FAJf~O97l8n;;o0O8F5kXPOYeR8b~+mXm}`4q%FqS3LbyA$$n3*0cboOZGLd
z^z{JV5I#dtd&)I?GvI#Hc{1o?>p_Xx0lY<b1u!>&w*&Ylz>8loFM#<090=ebT{PTW
z5Wu?uEDvB|0Ib5aNXR>aivw8V=}Uzy<EChyq}d9#eA8SnxKePH;A%k@tr4;|fOSGx
zh2n+)HU_Xsl-+`x1K1M4R^dAYw+U_+WR;wXJ0-hIaOSYY9wB=@n|%T77e4Uu`mAzD
zhWcRuR{}U3z>xrs25?No4+M_~a7G9lKM}x5;im*o3m#nQu!!lbWZw(moRIegsed-W
zEj=H=1yL>vUh+yW3;Ff;?5je)5d28+W5G`ZKNWOa3*d9%fpPA9nZ69*nkZj+HrE5V
z;qkA9{8YQ{w*h<?K%O94y_kM0fbRqN>FMNu0o)GY2U*|00{GFZb%&)M|2cqPg#YR(
zzX@STu=n4E{}I4luk_CVat!{KX8#fVSCCci1#sWv4}@eto4naR@i2f#jJo!Tl%R`D
zj|GuSc&cD-PcKoRZr-39f%$@XJcuWRGs_?1&o8`yrxXmLknqBS(P!OgEaH_G6;dpS
z;+|4M2p!AbO9oLYh^K-m9YmQRo?}rEWrOeqkr70uSo#H{L2wEI!C(*}AymRaD8khs
zG$DEr5h2UIGik7Ya5~WlA|~yaK~xc91z`(`2T?%?hn)zboX5+voiXmxGgTC^Qqc8z
zW#Qa(NzXD(NV;HEL2efITP=u2L3dMgrqzR}5kyuHH9Zg44WgFt+MZH}!}fT^_4Qe+
zo@DC>(ZJIi29a;0Tf}CaAR0^iO@e3|L^I*kTL$s8@aCS<B8ZQ_H(B(Ir?e9CtRVMJ
zn;_Z-F)4`2qO=R5M-V-OXz$r~5YjP-PC+~$L}yR$CZtOcU4`&#6nkNML9*S0c;mBd
zW_vLk#7iRf38Jr%5kd45GFXsi{e=t=92mqPPw%(CK1+uLF;tXco<3a2M=PC?LSFRr
zQ9+CrKE_j;3{1T2@v%XS6F%NkCIm6j<BwK4445gB<<h?*u|(z7Af^hRCOF;GUla1W
zVBs-|nL*47Vqpl2LU=QX*+JY6;)fvK3c3%<-GXz1m@DM%AXWykDu{VO%ok-r5KD7x
z2AB(jSS0)%!Ns1wB#4>6)@5r<%Yt}U^yPvp1W!&)XVGfm>x0-3#2Vpi1=j^p-R~Ok
z`w?+t5ZguH6vXBrwgkb4<5p2vI(ckjTM+*aOn+94cW_gzNv+Z=xl;^w1yOaV`)PSk
z5PO5z7sUP`P6lyGN)HGg3F4rTLxMCu97Mwx-S3j8)6$Q!V(xs$f;b+;i9%^qP6Ux>
zWP;>$5QS@|eZ<fW;!F@{gLqGr4}v%^<ecF9f@N1Z7lODL#1+Y261*(PM(#{X|4=wT
z12B8l(?2_!`HAo^gSaN-(;z+*^0{a8MG&v_OJ^;nuY$NCI!Ab2$fNNMzYgLXZcoYH
z@@jo6ll@MzU52NBFJ#y-xAz}|_$kQy$nZ=EKL_zk5aAG%5Ps$H!nuc#H-tMu{2s*p
zARYv9XF%eQApQ*EuORM9mM<kJ{vAXP`6q}UhbO80>nZodtnw;{;(x*)3*n)VM>4P!
zb}=9^cu<1KluNRyg1H5i=aTtCcs#^=I8Y?yhVB!Bg$476P(Vn*5DJC(9jZPJn2r>y
z&zE3b#wLn}P%MP9A^60scnD91P%?xPlBMP4WA2yMQX!NP<tf3^AuJs1Mka%*{{WXT
z)tOnyFQoymZcs=_aL}&$9KRYuECe$IO$JXz7ZM2}8iFC5&gc6j7Fi+KA=C?@ehBdp
z5+PIzp?V1A#H?Znm4uWJp@NWCI=a5C96}YzW`vLwk}k-iG$CAzszTTi#Z2Kfr<vq6
zLdXiCP6*i?^SJ-{yk-csLZ}@=_nC!g!<46!+fiK_3n71QmD3=Eh9NZe`pQ}HMj`MP
zoSa$<*QPcJp=k)sL}?KM-=jV)yt!vnzJK~3x9ZZqRS3_9Fe8NT2Pd8jp>+uTLl_W3
zn-JQD&?SVfAru~--cGPn2<?S*2%+GxL`UKI1}130^n3`NMIj&1FTI=a-hwZ1Qf!TT
zZFqVQQF?loy+Yt%sP_@2ZwUQ_d_2T8?!U?*4h&&<2qQum6yhbz?s$d>4hvzZ5GozV
zyN!I>HaRkc7e$;F!l)2NhcGdONurDiVQdKFLU>8CFMD+vRO3B9LCE!i>Fyqvc})&s
ziirHEPvw;mUJW6q?$i+S6>!ZMNYlL*UJK!M;cs{fx7ExLX7T(FVRi`fLYN=ITjKLM
zA<PxRCwQ3}b-4;mZ*%0i8j$ca!vdZOD^tlo<SVS3<~t!Q4&kXVN{6u|gry;T9l|#u
zEDPaXMn$jW$q<%@u!4&o!rl;8hOjDxO(AR!VRZ=nR}ZEQIV6O&A*>6bQ{Qxo>qUGh
z2Fz}hY;<b+79l%wstihQ6|yaa?LywIS2w54ogwTJWjD$21Q#Ml-xtCW(f12dJitX9
zlsG8aLm?dYbUs^;di<D>;~|{z6t2;!5Kf11My7c&gi9fu4dFe>o}<tC@?ZG-g0XSw
z=eY&iB<Yh2qEsoLbvc9&g?|yk?S&~<cv8usaW#a}P0O*1k0kqP1NUM2NeG{Y@EPNF
zK?<`>pG#@x=){*HTnphVX^QQ?JSzRV@Ee|Dv`yX&;oA^Oh0)@r#CIXw3gJH<xm;^@
zE$#ds!Ve+*DEzk&wr)!OiD$lKe->nqzwi_q{=ajNZBn@t0$=}fkN*+E-4Ol^;ja+x
zi~Zk%|MJX~H=_Tr_rdP7nCYGr4IZ6%ASVD%B#MthND1?nB|IL+V`1b9yQg}dFjB+d
z3!)``({l^i`>6i#aS3KwnpbS*EYAHz82Q8Q6<kF`DG)~CF!~oQOq+sX_X9(rFpj?9
zzWi(~?|X}iS&1;745MtHL@~)05966euB%JPX9<#$Vg5jk+X$UDJ5aX_jl&of#^^A7
zVfe%78b-G;0$~Khs2fJTFhXI3!$=DwJq$&fwZgE&P{Yu|&_yxAh=maeW9lmR#d0)^
zH(zq6vub6kDF!Q6IXs!E#KTC0Q8|n%VU*+S2Bi0BldQlQiP_B(?%0?rO14rMze(66
z!zex?eN`W~O&$pRJX1A{j4<kiku8>)Vbl;(EsW}6Tpr*qB~!De<+8%4$tC#BT@j{Q
zVbm5&@=>E)ardTF{zDH*{V*DY(JYLo!)WN)G!CPY@P!?djszPmnVN{$Gz|V@1hdUq
z6h@mc+KS#Xj0$U0TM2(g@bD^!AMKtM{+wXzFg_J`v3k2OI*Hg`u!A7=jvS1<k9}U0
z&VpV3U+MVt7sB{=mD4+nJ|cDxqemEBJ~4YrcJJK!z332Wp>G)d!WbOJ5Gm>}I4Fz(
zLfF?pAyYfn<v~&KOrxQa9lJVpco@UNcxOZ+wAvw#2)o~~XfsmCi(!0Uz3!4Pv&V$-
zQW&eH*2`gx4P$;73&I!|#`v)N=$sM8gfJ$C@hama>~128lcZ>}AhT11ydua?EYrf6
z9>yD9>1$!|z@!<|>mqUm$-f$!m>I?_QQj1s8^&zL<T%&(Ee<IR{&N^PpL%bHF^>c5
z<UXC5Cdr3^g<&k`W_&TZNUFah$kN3^mIy8tTo%T=Lg)b+tdLqO1zCNS5IS>B7;D89
z>%!O`#*Q%7hp|DFje=Xl*tsrsQy7~iyG4){`A>)2g!A)1PeLj?!`SVW?h0d_{NvP~
zF!qMA&(rsZ-H)a;KHw?c+9eN%aU_fvHH^}5G>l{12r6o+I3C7{FkV(LR>8?IPI2cd
zh$=W8#+fjF3FFr=&W7<`7$1l6Nf_t21q#>~!nhd5`@(CsO8X#;^I;@cJ8fWBE^J>C
zon}{rTxM)Pm-eCX=Bu5nVO}(8e<a!7s~wtsD*R>`--hv77@vpnMHpX(@l_btrRW-0
zWVLftj9*>t>?~{FU?X9C6GrEf_T_oyn7$DGTh0EC@n6hl`YDWC3`oh|4&z55KL{${
z*T}J9?<7A<FR8`s-?*AQ9~3;H;P){82;;vn9)@vO4E_$|A0dAV{uRdGtDRrMHXHd@
zl>1@a<Keu<(bqT?gRcG{%%7`r3DYAU`wCJO*MTX5j|o0`H;qbe1$iY)o=3qM{zmZ{
zC!Z*%SJZp8epY@31r$7~prnWe757HQA_@wz&0=<81?|>2dp2i&SIEv?z%Htwn1bR8
z8Z=5Pb*bLSHO`DRP6-8@3)*YeICrkrE2ZEm1px&?1*H{~QQ%kbQbGIh8mFufpMvXa
zoO^2=V)3;Oz0`Ylp^$>Gl&T8<?6ig=*lVqmSnD)f>u6HMMsy(y1Gb?crr;R`trVCF
zECqEGWGm=e*tQi^QIJ#+SCCLpPO4N;P*Fj71rydfm3~NPQ<W4HK2wOivVuixot<l)
z3u~QHL*r=*(iPNDc*TreRY8V=Y6_|=_<pVPaIKRmE-Jassj$ususnYIPRFeJ>zphF
zH5JrS(0OsaOV!KO=1A5#pA@%yU#-_SX4h3vPbxmGpgvtkuE0?+YMs+iLHD8Ynd=;m
z{OMwLV+HG_<)#Xn(70~ev2_lynZp14Y;(nPqN2I9)<Qu`A)l^uzFA)HSq0B2=%b*o
zg4PP!a12t)akf>^K|x2!wo}kBe_DG5ch@-#hEASMXCcok`0FX#_#~r?WQ(nLV(Xo5
z3SN+Gcfp<tdI+Iq_Ijt6@ZN&#i()?oD~h?1IYL2y1p^ceR4_=v5CuaOa8I$c^195y
z3OcQK$eD&I7%sKy7j?5tlh$R9RPZ9bq<|Zf`*Dnd(Fz`qxh;=e@4Td7_IhXXGijUF
zJL43LSMa`q54gk%CMsA*Pb!$CV6uWa3g#-9qTm$;Zz!0d;8g}gL3_G_*Mv+JoF-E^
zyWU}(zs{m3?MHLVg&L-nX`R(KXwOverWnkkhlBRb_0IkE&TPg>N&77YT)Sc$9OByw
z<|$Yvmh%-XU>pYQB?=abGOb>@cZ4ib_}?Dfi7aLuwn{ZOIE9MXOBK9b(Eh%x&2@QK
z!E!o8=DSM4Y9T8XEUA^olaLc%BkioE*{AiGJuoVhxIx673U(>js9+N}rc~S}I$gI#
z$W{eE%q&-XgR@<-I~3H0&BRdLtzeIWV+xM*1Sn$fRd7JTLE-xp>=#0Pa#{P3@WTp@
z(8*<Oibq*7JB@SfAg-WtLTpa+*x^$^_$dWFYo*-HP8+_#nX$n+tKdBaJYCmqa8~t+
zH!fwLlOY}1;G9=*frD4^go=xde+9QWY{m}{2L(42e68TKC+#Z=K3DLCf~yKXQt+{Y
zPZWI0BCcs^*TbJ|aPDq!(#qNeH#){fr_M&_O9j`Y?pK1R7UbS?rryY%sn-=;^x2&@
zI%79F-*Cw`x_kUP1vfcD9s-*)=a;gXb}q?%OTpfa&i69ZD;wQ?^rM2G6x>sAU%}4`
zevy{{RPd{U-=x_;6x?BUqr)zK=aIX~SvEf-y2+`%$+@eb?Ivf~Cil$$OTpg?{*mhJ
z{a-#bH#svmIqNq$r#Cqd6#S<kmx@%?4Y`LBcquBHU2OPB_}819-WMA_rsCly=PTH`
zRpe2TS4BP*r8ocYnes{*cQ-M}IhW&&)AFk*ph8ihswk+Ukcu)Y%Bm==@`5vzQ1PUS
zBC30a7gJGOMdi&-Q57`@#G7t*dauhIG`kQ}&&^Irv3W|6#-&tD*zC}lytImio1LA)
zeJTQ;jb8=paw7y)UXkW@abdGVB`m$%UzVn+&{b4oRz*Y%cptE>BC5hraSC=!L{r97
zWKAZ!`+l<%SCLRrL5j+$$hE~OuOhj{@ojMj!^DSCMJXj`?^Rf;qPi$)D$-SCsK``N
zl}_H`a2QLrIK8(xlbB`~VwGxQ$=<tXxQ~(=s{2IC5|PiW+A8X(xTfMO71=84s+g|g
zH5K(#)K}3<MQ;@iR5Vo4O2xA(8mVx&g6vC0V--zQG*z*8i&L<DW}T_Ie`%f=GBx*y
zTO5++Dt;EyQbh~ldAB+*luSIMVqC9sXUAm+wmQ$LXsx2NiY_YJsA#LABim2QYNw*T
ziVpNfN*bH`Gk03{s;uNzrwWo(XwXT;^D1wHN-{Cql_4=Z;{_GnRdf^HVyn|{tJ6b8
zPZf){I$QFk-I|y^WvjEYNRngdqoS{hVJe2JV9^srll@fmS1~}vp@+%ADu$>SD14A0
zd!as5#g47czvr`dd{u+we6F++Dn_ap&)`w<qKXknj#e>7<<+;zQ7Slcy5%JmFLTN&
z{=J%+ERr0n;)`~f?`?I+*S?c+d~U|xtjv7bnG;n^RxyP^TQ_r(ir?pE)SHz3ii%fN
z_;1vhrsBJ;&Qul4CT6qQ`&*qF%d_5im}K^K6>q56rDC^=87gL~SfOI2idib&R54%0
z0u{4Wyrp8E3~7#vSnjmBD&FQ=KbBT(8!xs?PRq))wmA*9xeK>7E4h$PV_z!XRq+lt
zTKmk!GAS-G=eR`0QWc%Vcx>$?tK6-bIeMG3T*bZinT?AiXKZs;(O$)R6&qBn;dnS%
zZtXgm53@5DW+m5gUhOkiZF4Tv%G{`8lZve>wy9V$JA<X0Np98HqN4fSj6>U;tJ|C(
zwmBI!GPl$JJRGt!Ii8&=YS+)qwcR1^VFaqUtl~oz`&8^#@qvo-Dh{YPsN$@O_qd2E
z4y!mrH)dxZQSm~}%!V1|h)hQ%dyL-#gitvl<Rtg3r<|sHhsJYiF?vgHcdCrZI;Y}&
zaVf{iv}r>21zEm}DlW<3D{XhW)Xi*IC$rkbY%b^(6<1Y!CRILC@v(|exS?bUBUfd0
zdOz!%)U;2ztr())9pWEzGCpUtsQ8kL^=5`2N#f}3&UF<xxZgEoX!u&iH$43`_nz{b
zD!x_mmx{kRO%=CP{KS2y;(OUgKT6BD>72*X9!$>ufqQ&XHu;?G&bIB&FDiaz)T#JG
z#c!-zAnlIene7hwjiO1c%DOAcpMp2HI~{6gmam;zw|3?~jBOQ<Yj{G#gYC{e6}dI!
z(NKDab6>>+o`HpvzA4%N@tjvd!t_W;isoh?6U-%;DmZm~c6^7ESHp8tbLZ1gXNS{a
zhcjY_^V$xlLCwtknj0qtHFpsUXc&~0Bnhs_Dx_iM4u_<OhN2pD4G|5+G!)km)DY58
zLc^1+wcQD5D5-(_u9SwSH0;Qg#<eT0p^S#I8usmQxW4RyOGfmG;uqwiu=K+n4jTz;
z_<4t;XizmQe=Fn1@!6?6-NQlCFgZ`!Q#+l{W@kh-7@B*eRL~I9U}`9*q5e*1R7#qq
z!PXGhkl5)QTbb2;a`xWY8RQ9mIZa8+?wDC#2z6#FYN({4vW6;}yBX6pBsJu}n3bj>
zZE`jPgZ%GynIwNz&kSd0W@@OWp_PVbHB{G7LqoQPx*D=H)a1l>I<+-)-06(i>CD{e
z)Y9;-kUE-sH1RxKelDvX$El&2hNm?&;5c_UjWjqK8Zy#qWHOzopV?SL6Ae6^=_qC?
zez4PNs-b<y%o{r${d87y4c$`GT54z^!{({T(}U~vjD~-9x^8?<Lu(DaH1yWcMnhW-
z9XK%dxXo#&p&cK%SxFu#?KKqI<&bpJ@I2e(B5LT&)ohU2RhF-d@LKINsc?;Wlyw*H
z(WN~#^bk%r=FgKxTzNXHkA}s$(gtf7qM@&bej55~7$D*x4e!^;9LRy4&-(hkEbEU<
z5*~3BhiVw6VbA335t@6p59jWCFN->plaj`0AE}|s><ku-)-XoH3LPtTyrkh}uCk7D
zI>u@kr{TJW8yd!In7|$x%o-+Yn55w?&ArEVvW6)dUeoZpWM9!RO+)Qn4vSvZFjYiy
zYnRhzmouGH*yT*y<-DO`<L2yH8jdweXXy+LGZ}al6D(qu=}j@1E!CIpa^`55tKn@8
z^F&#sVZMeUmtD&RqU@H63x!|U<utyO_Kt8~hPzb5G7YCRoMz-O_%-a(u$%Mc24pW9
zHfdPJ_{m>$t%h|PR%=+pzGh|K+T~u?OMPe{v0lUGbLks2Jlf?j%fbH?tF&3e77g3E
zrW&@gk^QOLG`vzcl?G4lcFky<*zK^Xozh^v{i%PSOTT<EbB~6DoG)XW`&0v!{elNL
z45>(k)embpLKkT`&OqAjth}5?@u&u?QTi9PvraJnYiH5^q|~B;AqHnOoYnB5hASFg
z-0i%l;R6llHJp>|`-0z8Ot9#JhKuZ1luH_B?{-e?cD~r{kZj!T{I%Pi{#6YhY51Id
zY4}*fCmLw;8Qb5NT4ayI^r;56MnXOBd+FvL=SvM=@$}f^T+=Y4Tow}zviG<S`I^Q&
z3Un0EaZ}@W6a3B1rQtgbx447$IKON7o(so_)$pr^A2j@^ffaw2(qVg?pM+4MF%x?s
z&e-Gprs0kht=!`r74Z)ZcRBJs&Yzs%rL;dq{7a_Esr{?r9*=z;pIuJ7&j$flRzr%8
zIkmI?)1d8jxb6=%H(PkGL!5gq{V^S>x;q&1TsqF*%u7PE+`8+5I)&2mN^ALaJg(yj
z-R-pHUWe^x?se8(Nh_$MkdCrCd^!s2_@#ETn2zE?AXr34Q6Vg1bd}J-Xn9IUpS{kL
zI!a0}rS$)WJq=h|T1Oe(ja3eVW0<tp@#_fauyio+f;vJvG#$E*untAXJ9`~gq{q0j
zs_r_RiAqFARL8l!PE3a(bKJJqbz|i#X+%@UtM8|?eWI-+uH$6=^llB)Ki!wgWi79x
z0tcz1ukLQ)iaJ{8XsM%;j><Z!=t%0w)=^hSnvQfGSvqR!sH!7FM|B+=FQsMb_;#;T
zO~?Jcvbip$ovfXe6U;T(SM4m0aNN1{S~}|JAg`^X#6EY}EHd{w{r9Jm)YH*Ohohsu
zjs{}ZP{)mZZc&F1+(V|Zj_c>ro9bvLq=_JVp~2HSn$tzGdgLWaCuz*?p3%`tM|T~$
z_dCz(cuq$L9UXNrcv{nS%<gmANcQ8!<=S#=`y7&?`<(VV-q`2l>6+-IV{PqZR~_AS
zJg=j(jxMr%4H~8&+~=&`=kNq$y0XuCfdk&>yp1fj$?kecr#*G_64G0cM<t8;>FBRx
zyp9Pv2Iv^5V>H+IVj4>aap80f(=k|g&s9!s2v_s6TQpq9g1+@eGA6~JBj~`=Nfvdx
zk~ZtT^ikppI)^T0Q)BoP(D5?Qe;wm=Y<)Si>VAj1f4@UcGEv7Q9kX=2sbjK^DLP)~
zlyyA2-{C3r3ZsQf{C@gWap`m&(<Ga-ab9CQyywP}dot*l$>`nh?&7yjB>L=kW?W92
zu-}=j<1GgE0cW9(4f~xrw9zq7_*}uvV_C=dJM%dyF}uFs`ES2NC2%Zj5rbUEVjW9#
zysNvX&{A0=9(T)xP~i$POR`)H(hfMQbgbs~jG%A?Yq)AUzUFq*d8;GV>v)e_gZ(mA
zbsW}lL>6(AjvYF7>e#Gf3%#Ucn~sGCoS~P~wsQ*{aJSfm1J2UR4SOGOcInuyW1o)w
zI(8j!_UPCvt9G76VoApy&~cDEhz9Sc-#*|voOOvTVpB)Crd+;qS*LXzXFMEqPU!F-
zbcTPB{zHTGll0h$1k))Yl@2=dGPBMIKdYnZL8se6=Y1U?2>(dOsDsXV9T#<6(s4nS
zVAes0;>Lr{WgS;^T-Cvi|Dky7<U!YmbQhl#^wq~YKGE?h&pL^&YdXF-=zPuv%FOyw
z#~%lsFGR_I$l3fvk_-A3qf0Em*p<cbxFNwwa#N0re|6mB_Sf;9j$1mu*YTT<J34Ob
z_<=imUgBpRKMMJYhsGg?N>H%PA?Ftzzv>ur$l<1&D&p@P0LOpG`A5fH9e>j2hg?^z
zIOO~#-TkeDoZg^IiH*L_OXK@G9_UDk;IRmPIOP1N<B^WMhaK{V9L6E{sNpAy{=3sS
zom>%AIqc+*AT@&A5#)&=Zv;<7z@mH+JT8P2XWH5$D|pxq=}CJsg6Gl;L{Kn-wd)g9
zTwMnuC=x;S2x>%7G=gFgs1axp6px@p1pWvX9(JCLV9Tt`ry>}8*eMx7v%^l0!%nFP
zcvkQLDIGzX2+B&SPmpHRX~sh)5J4~kK7-g!D1vYVI}SUF;Q7N&r8-&E^#~#nREnT-
z1knhL2r5L}XIv}-GXgt;cm!6&{j|nJr!nz(Oo&)M;vV?SmSdF$>HG{vFR^Prm?}ol
z{IfKENMP($kp|NvZiptuKWT#V>ZkKbS2co+2r?t!1GJi0k}z=$SrOC}rB#IYJEL|4
z^&+SrL3<iR@Z=GvZUo;RcCsUQc-SE+f5hR^G>D)f9Tjn(6pbQqB7l*v_}Hw*5j2V5
zX#1?D6puJvkGNIF9&z42;s(Rh9B>3JBH%-<rPO8hvhwJ8MzWiZIH!*|&x$`UT}*2e
zLE8x4jbnKn?Kq?ehL{*?qC*57xu8*GMbRmO=Ofq@!R81$NATNivnONb2eXUtt`T&L
z;059H*4r#)>K;K4QO2&bN1w8LMbJBfJ`wbdU^X2XLB9z4NAOYvFGnySf`JhXi(q&J
zuRSmaMKG8>woc`B54`SkNCd<=<*lI+e09X(oxdX@7#YEoN9O1VUX+pWQUKn?Ij4{{
zDuO?c@ON))mX6_c4kw(XH8z5A5loF>S_I=Gm=M8aR*zsJgR`Xd(V`?Tv6>VCuV!ZI
zz0AHh&whoYt!gc=YrVEQ`&EYVQHNwYhZn)j2xc*;7TB-z8ooZ(j0kS#vEGRACzvdf
z=0W#X;x{7*46=AR?0`yE{HVh_Pv=B1muE6J4r4xoc@Zp$U}*&NBUli@q6prhA1YZ3
zBe*lfdb^W*u>#3!t?k8hd%&u9)Zt}zsg<o|T&xIIM6fb~J%g;}T(5@K())QT>`(hX
z+bTTHS{1?S2;R7BhN`;R!FSAq!`vaQWAI1tNU_#Ouz}~p_T;vQCKKmQFHzsZ;oUa3
zMX)`Bt-_rRg*zT~c0{m~n>vc(QS6FfcLZNY@C|$Cx<qgyf|C*Ki(r2Q$LO?&7SjQ4
zDB*1%S_dQWRZpRKn2{!>M;N_QnxnJmxMY*nQ%*&2I)V?x@{Hhn5uB6Kvz`qbd0*Ph
zX^oAX_p%qn=3)ewgj|l`!w9ZKa8<I`BKSxMd;Bzlk3Ig05VrGK1fNIng=D|<N^=I8
zgI|ewJ%StmU+GP5UiveFA0znAo8v8S*57-Uw>{;j2!7_N8%6FYeu?1M2<}JlKq~&m
zTOGX??nLmrSN9JgcLo29;4dM6d!-!Pzf$X-D0Cwy_#Y1w5m`z{J@R^IQA*TZrpE+x
zMUi7qB~KK2qsS*ZMb>&eib9ele<F(f!V3r%6wGl;;pqQX79tjjqNtFZmP<tOWE7R6
zs2oMfC`v_PNT*Lpt+G-0q9`3j8Oi31Hm7%g6hUbxAVnNQR`ryS@UZBLAV;o7p?O@7
zBI5C=H#^piMPZ6gZV9mk<546$`*Kl~_jrXUDterws=}tC$cQ2{iZs!y%1GFIy4OpN
zH>N$bs(Ev%9tE>Z9C^(sYDG~ehU^$>lSFYSio;Q4M^QJ5$x%#+qFxmBqv#gJ3sE$P
zqG1%RqIfonMo~CXcYC&o;?s8V#!)nlq8S@Mn$|>=ufI;RbbQU^(@~5%>Qs9=y?GRy
zZzRcEM)BFx=`4LFidoIlYh6!17e#Antv%=Xb+Szq)tb8oZ6!;kT@*vFCrLU)@%vY9
z%N@nOQxwk&q0(7MmngbQs@yo6V)rO|aGKYX<D=*qMXxA^MRDt1jnz+Q_l{yv6oaK!
zpD6kY>F2f9KZ*e!A1LHhA~__Ai7nh_=N@&23TL)xi}c}9Y&q(Th+<?EFN*O?f}^|^
zMn^G5_!AcjvpUnuk{uhxI3bUVK0#bJF^Wk!#_i*@TyZ(?D^a`}#iA(QiDGILpL~^U
zeJ%NhkZDm&7xJ3m>w+}+qg{MP6f^1JDBg@>UKI1WaPj0XUnXZq@m3UbqL|Ay{WAG>
z6xCmdvqADlPWI>5T)g;fHbweyK@<z4V76MbbSjIZSQ5p4?x1;vmqxKHigi(}kK)}Z
z)?Q04k77j>r;a+6TV}6}VpSBYIgu#XX4%Hs-M&n2>(=PYY4wI)ORkOL4H2nqh+<<D
zJEGVb#U=(x6x*VBuXgs57TH^(*cwI4rY<jkGOa}@;dF^_=L*)&&Yh86vw8NeD0WA&
zCyKpMTs!JKJnED==EPfNx7paJ$}wkO6iu3@f72#T<pAUJn8S2X2-`mr#nC8UG4QH^
zV^JJu*c+&4;6xNBIY9#@4V;SNbQC{E@lzCMqBu+Ua*a5=D9+I>QCwot-{$*Kd=SNl
zg{{VYZF@tK<a`ttL?Q2LS(l^u;$`c@D6R-Oy)=1M$VY;&cTQ(1)5jcx=@Q;F^jQ=)
zqxhEIqfHcF@_hcmydK33A=je#O30l5OzKSU>`M7sly3y7)c(=@F3O+cw{Au8y%0Wy
zyG<y3JBlCZ<lAPy^-1EU$J`5>e&*pH#r-HAMDc4BzeVv62hiKP!yOmJpHbZIYW=~Z
zrl@sSkmPl^_mY$RC8ad@Tgb%}tM+~K-ze^}Zbm9EMLJm6`Y(!yJh2TFFz_gf6a#q-
z<Tcz$@q^7{267olHE=j--7I8HkGYuJ0MS3j%4fKjyFG5;2?O8fw#YvoZRIXvef^Hz
zcaT-kKp_Lg4XhcEQdk<ix6m$P@YAW=I1}%sDr$ftQ!ybNb_oMSrs_4VQU;zfkZGWr
zfzk%b7>F7$43stCGf?iXsTkmWe}2RL<P#JgFu<GQDN+d;?p07>DdnwOs=*uBElp52
z5D{|rQbUT@{>X|MFbyOPq#3ZJk#Yvg8?c45&A5Sta9-WcEK>yo6-D9YkIYsQURkh;
zATN`lo-Q4+m#PNp_Q~SZG7NNTW%WAd@Q%*vhP&dm4b(AE!$6jSng(7z=FmPm!Xl|<
z;G=;;{&epNrExZ$(62s8eFF^)^fl1WKtltK3^X^;!hmC7Ri@S0KobL@f6S@(&8CKX
z-QITz_ns`0X3UC0Uao}I(!etYdKu_#pcS2FxR+;jH}D*@qpdau+6rkc$grW<&OjFf
zT@AE15N~L8kRs|GIW^(W3w9R#cwdr5OuWyF*iFP247`2JVYY{XfStk~dm1=2+Pywi
z8Ep44+zZP{p0Hi)Z(x9dQ3jTEwFVj(WMI=V=S2g94Gb|b+`tG4s-bkX;ocTEOtSGF
zuDh6qeV3P?Y)2Xx*1;{U*w@;%+#YRUjDeR7_lmlS((=m&#u^xB;QnJ4(*y(Kh5P#0
z%=Rqhij%~0vLFXD#lWlqHpx^2(+vD$;9mpN4ZOy)%fN91uN!#7zzPE^4a_hw)4-bs
zW*hvADl6X@YnFjxRjk7WYmWTge9OQb0}Bl-693ONFwekzdP(N;;k&6E`A1js66=<*
z7BH4dSdZfFbl#B=de^{W152c3ic1aT3s}p%y_P#^Ef=#9b}AjRio49fZUcL`Jvqpv
z75>HC#<^Q5YYnV3u%4qWY4v%|CT=jWQL>u^Hw#kVB4jIf=xB@C?FM!jcws|wr{FFF
zy!VY+rmh97y$1GieR+~_^@q7v)9yFG6W{;?uc>vATz9{Hkh3Vy64&4eTVVRrWJr{*
zXPq!`lIM(p+dTgboaVkT@Uek22F@BdXW)GU@5y{e%}??|(o@HrZ`xQN(3y;rJLY8r
z7d&swFOZMzUzF@61CP~rJEhHsVtK{DRUvc~#ZP#!82H-2H{4u2{|)zQ-OmlIeb#37
z3j<$@a?QY3LU<ayS=zcToR&9u{*1CnZW{R3aPRZIB^X$0&$i;<F&L~kk22~5w3PKf
znm-u$#lWwId)w@f+}(ehKN<L$jURLR4sh=le7%+Rn}It9emBtLo9c892Y>#7`G>6U
zT^Zz`;?=)|bC7>Cl6~&O>mK9TKrn_-3=a(aXP`t3PsZ?&hd+<~81lt1rcP=~40&SU
zN&Z+2s|&mB=VJB;GnFW$+HN-*n}yw*(;tuFi5QB+z~##?SRjUiF=V!}xrJ#~C<YF%
za10+bcC)@eOvFH}mCwx<jiH#dSv-a*J+0^vi&!#-QZYOgL+Kcn-!-?Fu%7T)yj!_U
z3}s{Ztd|vtq4x`R+p?A~#^0s1{DLG!H)gZV;>Qx<7?c<)$515(H3lt)@-bA9j`SF;
z82`HuA~8fcc-t~!Fon>WF^;x^#T`NY^dS549Wx$--qX6#&Pv2kj;;ADet1}XAW2d&
z=00vJ#rQ}17K81{hVG31KISB2NQ)so#_Q71X0gox<IzW()gdc`&N=Q>=KyZj$c&*H
z2btR{_rT=+mDFp*(4wl96+=xiqf(3C0z6)`lGW>xRX2uaF+3dudA%6w$Iw7{!x)+f
z+4IP16vO9}3p+79QxJ_~=##5%-W0p3l-8(`!ivq=Q4Eipc)~<WnsIeF@fcdg@N5iA
zVptl(b1}4LJjC!)42y4@ZDME_LwmYfviy8fQY+UX#{b!sGFX(3oONrnQw-0?&^d-K
zF}x5%_ZYg0+q;R4uBOmM_g+t7gFQs)$x$(W-bi8H-W+NS{bLv)MWxl0zCvi+k3p-t
zwT7uF17rAfb_)9)<dt4~D`klAp@PE%hYOB~VPp(1#xRP_N(=l|aE@WLjEaQf%Q1|N
zVR{U&NtJOiOpIZY@bNKB5W=o!_O42tELl!}ijY?XUlp7xI8AU@1)IjN$M8nXy^!?n
z7-oph9^Z^%rtn#UIrEw={4K#bf^!958sc_3Pa2soxIl1W%)N+#uksef+}~P%hsH6S
zxou7<mqu|}4DZIUJLZ16ST5~sjA2s@D}=8UTqU?#a7_$rV_3&M(ju{5l(u<na;6O;
zR-K=Fv-CSee7Hrtw^b~+32qnMA^J|iUD7+>^35Mnbx#a?W7rqN{uoY+&Ve0ZgSX9N
zF&q@-P>grEx&uBE!%@$s$+pzSbKGavaZyePo)kPK)!D*@=_zMKIV<>{;5otf1$m7H
zTeuLzMMe$}5E<&F7(Nt2_g>~slzEX~iQ%f~9|?Xe_=(ro;=Z{VFrSO~3&j||jNw`g
zUok#A+qVR-3w{&BjTpY>iE-S?`7lqsDMjB3ekVwg6~C9gb6b=j1b-C#N$_VWr5X3g
zuQB`<!<`s@=kYQ>cdCg$WHA54@NW!vh5sq|SB(Et&fQjj3*pr6Njv}Xz>nd+*gTM;
zE0^-pjQA*qT&BB=Qv@F~|JMTB$!RLL=^h1nO!w_>Ug7zKPZ00rH&MVuMH7`w6qM4Z
zOq4cJ$V6eug0}$+VIxIM6g5%Ibe}B61?gDw62hPKlv18OLy@)0h+fV_Sra}Je4Xnz
z5fVZk5E2yRiibU2F`=5!Oz5JRo*oerHDP#4%)}tueM`(_iD;XMd!-2z`ST@NR9<FX
zLB_VXc$@>PY@&(@$3$ZjNqWyjw#l!JuDj9&vjnS}$PkigqMDH2YD#sP6fJ9r@=vL}
zHHFkN-3?M(cpX97EG?X<XQIA|h9(-Bs8=i>#RgJ3r-6Is6s?n+Sg@nZo0w>7qOX)T
zGx4;EuELv3kNhIp&O{5--E=KQdB#L56VIA>&cwq5DQ(2KwaNcz>Mji%Bxx&_E#7jK
z_WUORuH(k+j;8yyw2Sagg3k+f7Dv&5rO_6NZqncjg56E@FwxUQF9uA%)SSlIW^WUH
zL}5U3E*x8TC8eK<{!(jzMCL%@4Aem;28%+@5FKV>I77}x85<)^j5P7HiC;{-XkwHJ
z4&bth(I&>2SZ3l~6EB%~*~DxUZ<!ctVw{OLO?=cMYrKgGCSEl$)x<>8{UO#VrhDF=
z+LbZM#AFjBOf`<XSDCybMPqMdOcO$7I*0VLdzs5?p7OeoHw0&xnCa=WgtV1*eqEV8
z$HZI{3r#E%{cRKTJ<E9}uGTB(j$x^@z(n`s&e-G5m0zpB!z#y}rDC?&#1bK0CMIdg
zwC=dG+{6kKdra&#alcDqB@Ik$G;w!TVwEVXO{|eDOV^rMC*pd+S*KGdZt_aEnb<5k
z#Vsbba<ezcB0qj1WxMEXbBBqYp3N>HyG_u5X8TO+H*r#0J0N(BMPhSM@Q~nP6Gwy`
z70hX$ctYA?7dgr)6PcAVPn$Sn;;dMH;Mu<?<eZ83J%s}}@9_&lE(%`q#`d9!EA%i|
z-^7<Du9^7Q#3v>`=N>fisf@Pl=k?h8XHxOdafib=x~&kADW!Iy{!?;)C9VBr;<|}8
z6*F(}D5#vt(yyh;H-a|>zZLw>#4RD;o4756<NU$IkJ1h~yW<k%tirF{N_3!w0~YR>
z_}#=)7D`+AgJa_XYXKJiH1U^-$1LQs@VAM7OssEV|Hn<y(*Bob9J7gg42Eay&yG73
zS^9uy^$CaMp@~OgA3foWYiy@js4aTe6Hcmy+!pd!ZacKhYvJA(8IN0d!a_dF?P9c8
z=C@ElvV|-x5`|b$6p|e$oQo%%A{L5TC}H7A3&o_J;?nFbvFE1_cCoglizO|TlA>QT
z5*#y?G8W2Om}+5~1)l}Kg&G#JECehBEtI!V!9vJF*h18TVPX2u?u#bHg39s#U}_fr
z%eEpGbjebgnr?k0->k`F7UG_63b8EMLilfIS*rWlJ|Wq1g6rE`6)jY<P}xEiI=qC%
zZ?BDe*u<oTGz--%_q#1qx{wSDRXyeUFYZ^}Obf>y*I-2}tGb1q1FSl*YFemep}mC;
z^uL8V790zWEo57$YoYHVyTM&|QuQn}w9v@H=F0K<78(d4=ldm=hRRrbJ6LT8+D&Ar
ztt>oip{a#t7S0E(r!BM;(p<2GAoVV_E#fnh4a`qICv{s}*x%4v(#8G8*G4$AZ7sC(
zIKRquw9v`IAPa*nJTJ9+Tj*n<v&F0J(Nz>ye?dq$LB3G!E~JNro<e#FHrtl_a7Xv+
zKa;V-?rWi+h5k}BKrs77cOjSt(!&)}e-2qgEDW_U(!z^kFpM!Hr0Yia3B@$RLdR;U
zzTDO*3!^Q(Y+<YzT<v6!5z?)m^%AF3_kS&qvoO)ZBq<s%IKjfl7u?n+OZF8(W~T_b
zzuX=0s}>%ea7dV@TX@UD94UQG@O2AsSePNaFj8k)m}TKj%l%?b``JQT<hROv;lAOS
zYvFCN+-PB*h4~g%SXgOcfrv{iEVZyuIE@!sc*o<5E%){5yT6;u7(9>6<)XhUoL^L_
z(7w{@lvSSnS|O_~tPyg*jXRii7B>B5GOf3;!Q(TlSeqDQ7Pg4xb_+X%Y_+gW2rFK%
zn#!-tJ1y+Cu*bqK3(PV-UfgZ=Zg1Ctd&PL4;DG!%XyK5B-+72xIBemFg)c08Y2m1a
zV-`MOC~}WjIAP&E3+F66b<#P>U3t<uEBq9@uy97WKRxTyv@9AhRp?jmeV&sm6SYn{
zk3E}CLgj*mix#e0_{hQ~?y{54hhlSCu+>TD-Oh<CqO&QMer(|r3!hu)e$rtJpIZ3t
zdR~&xEYOlR<Rq+k&B9j}Zd>@l!gXowTN+!qVc}~=<4I@AN#`32H>K#ElaB9f#^#gG
zEy=Qx?}c!j9OQ#Ex7i;p{AA&03yB+fIg(#2{AwX*B1ca;zw!K+EEU>ZI_cav>D=Yv
zZ(&_atE7#;c=%f=Vk5dM@sEXnc}m-O+{Qf%_boi+#wl&hwyXy{4=rR2uo#5fnp%8Y
z&iBLW6V@XODK=_%uphJWK}Rds12dNmVycbYLdf$7$!lX`l~iW$r|^Xd3fL%UyKmj|
z3l{8eJ*;IFvH=@|;%+a6ZOngY&ep9Gk4%~sl@S&bEN-KOjdxqyx$l`zit=+O`?zJ5
zvhitOi|HvFx9^)IWo`Iud}!l}4ZqE|$9UDoR2xAXA=|xp_c<G38;XruoQ3WFiiK*U
zyp0MrG#k2&2-~+|+lbpRY{bOI;_RlH@3ze{ZA=^0;K1n2KTkSkGwLoIo=Dip(<i~A
zayG2#t_>3jf4QQfjVd;hHY(YuOb^TNY4FFX3Y>D%Y^2-B;-uPURke{}qlOK(mT6-^
z-$XSV)orM!9P-+yoGE=1Ox3$5n;gxgO-&o@wAhTS9ee86v5{?~nT@AyJQ$p)YomdU
zhBoTi;0QU4`dslR8gQEIw2=+RMq?XYPC3j{tlFV)6E2Npo67jfo6~RO%vM|`8!c?K
zwDFACu(f{q)9cT2o8r#}D6JAy^7l-(w$a8$TN~{-cpC$4w71d0#tSyO+wNVu9oeIe
zt~NT^c;3dSw8XemPG|a!mj(ZrIq#Hv4Q@9Z@11gbx2V7Ml+*F8^d2^P+URSepN(F&
zd$aJymi2pcbrvOVKc3FJLHpRaamu|U^siISlE>5gbDF1|f~VbEYX{jFY-5a#m*~UO
z&JY{J`GKDfKkW>)F^og~H>=5M_x{k4HeO^p?Toh3?X-J6E-(5VC7hRg@@7w3zHDPG
zBiY6z+r6}OoRm(mF<!E>rJc%;r}O&h$u`!Wc3zQrO%Z<dw8L99Ic6G6voYPqE*raT
zyk_Hd8;fkb!xi~3;|)e&BYUBZ88&9xm}TQl8w+d{`Z{a2jZaQH^Xbge<w)L=>>L|&
zg;06h#ysJP7B;it2FbERvIk60VdCedvW@J;HkPo*GtPD!OBrK~oIqkV1CM^lW9L7^
z%UQ5o25{%J!(mWaX@j_mJLQZ+vW9aJ<8?NgpK<!1an?(g)i(&)D7eYSW>4Q@W2?uv
z(eq~<8m~O#?69#@^kZk7+@;Fxv9Z_2`#ec(?6dLY+}wZGOB}JW-^KwO2W=c;7}rZ2
z7R)In=fAL1JZj^ZjpLF%CwM~eq!`oSl#tUl&Imax_@3YwXB--^9kzL1l#7BF1arEh
z!6nIFwz0l-8nahze8h7gjy!Sq6XVA=ezfruozGLq#%DG@w{e|eY2)nih6h_@eqrNF
zI(%TcYc{@OQ)isZ#nPC~AzyQS&pHcBrG01P8{szvDSpdM_jYzp=`9<y`JU&SkRJr8
zbZ(jW*~Tw6{<iUtjb9ldB@=gS{BGkn;rwHkQh&IAviAqO=I&s{tmIvuMdRGRL*$>v
z9QY@ppLOo!P5YNelZ}+P``4XcyqR&|#(!M;?9AfzGaqoVQqxEtio!pHd}O<S4#^fC
zizAm*=`klGH4au>nmdhuCzv;md~w)u#N&88jwj+M8;38B{BabBgWpMu#N98;tGcG#
zYLs0tjzW?xEQmNFKh@wZu0+}tjiXpxu5-O?7muTa*gPr7(voqM^7vD6l#Zi}WO)w}
z6Ak=vgg&%Gan%2<dLWL>vkp@*4wjOH<7m+&ONm2`quZpUCUte;EzUX-$wmbY!I+>a
zXyu^Xh?<C_TpV5E=o&})I4Z<ZCywm6`);RV9O-dXjiXW=l{rFr4^~Brl7h5J69Os9
zh@+NdGX<-~Q9X_tab(3&lXFp1xWrb;1Yi4bcK2?ZeCt(PEOXuxv$eW$bc~}@9Q8Qs
zI2uT4i#S>eX&6VNI2_@P1)B&iDVndTkY<8x=V>9$<ET<9FSE}`wk`jAXB@4BKP&j0
zU~9oPg14QDv}fXs+KbXb@O)ACP1N(kNjeLOk9J?$U%!*LTO2RMF+Pq7adeNPM;ycA
z7%nzF;}{Ufz&Ls_+t+=0)jN(pQq)(lpJ0DMmeR?C;usvqP*H{m@?{Z=*d5=2vk^Lw
z*%5J!jN?Vd<fXiPJJj}0-W)fMieq#fW2E9sf-f`D<ek!3$&M3rN1~=ojAK$9Z^kiO
z#L00?jbobdDT1%W@oL<CMMnFa@lTIqmK41v_`2X5f-?kZIa3JVd2)$4?6=~WBg!(t
zxq?gLcw5Lk!TEv<1lhtuA&Ugx$r0nY{a<x=7<^AihnGz7p9Xl2J=&YHB94`DTrG!>
z%3)O;tK-;~!1e^z#Ics!DuJ>ItczoP93RL3kE-v0lA>s%UD+kOdl5+zBpTSA?Vi}(
z(_xpeEU=}5WCWEcNfAk+D1r(Kk|e7H6A}d!6$uIm26E0h=NuFPdAC3QdFQ=z>fCed
z*4Ne5RbN&2bXV12H=UoIh#fN%D>5-J6Z13Cx@*efOf1O6$usFcWTIDI;5&|!t5bUg
zweJ}XY6~;bd5s#lM!i!c@M9)^$^^-jHEK~N7Ohb~vlUvITh^#0>_mBirI}ck>EE7y
z$>a|Ig?^<Ee3aDilN6SgxH1#JWnyh6)@9<rWvy#leHHs%BW-miei!mbCjJsa@lPSW
z*P0A#=oM>CitE|4dN`Xhu{jg`aI-;hV<v9jNoI6QCfK<SJsa4WiLIHqxJGSb@kC5r
ztC+My_?*23Xj65q+LMXBnJA{=Ar1RD5@zB~ChpQP()~`_Gd*x169+T7rY7@HCJtxf
zNG6VE;%X+Y$$jKlCeCK!TqcfZ;)EzCGjUo7ulE$4xq<)tn&C`>pO@5237ZQ-E(*T7
zDe1D1D~TwT>%y7CKbg3Z;5RezxA6P<-xB_BBK3CST>oX_o_I@|h9nISXeg+mkcP(1
z1Nk(p>yeUQL$X9u1gZ0_EYDRy!@<S=&$_}IINBH05P#b)qWSMjowaK00Q*5vQUxjU
z-=m<R!CKXMttxgeuegSXHI&p)N<#?^w@PYT`H`Zc)^n}uzNh-IwTicIDy21)(eQ|d
zuX2)^dLPScsGy;>hUYar%5A4LWNOefRMJpcLsbpcH2+_H`7Nx9hL`H=pRZLvuT_s}
zcw9reh71iIZfj3ycvAD7kbLM5$<>8_eY^mbZEICP!{D3R--jLY;#V|XLr_C=&3`8!
z;x*=KF%5=>uy95r8lu9}iexfsvU8nDk87}nSahB@lc+cvXZ>Z?(U2>|74$S@31L#U
zkQ#zD1#1b`7R=G`{oFb<tE-_ND^o*54fQqfGsOAFGL@VwPw?G-DNkv5TEjCEoxU-N
z20!kx_@ayCSvIAHCK|{aX<#bL#?VwlGqERU4h$qMG`?mJwA8>Y1)kI3K48v((Mp5<
zhs8nW1r0B1n5bcrhBg}7Y8XIER##r&`^!!{4eeRm8ais=2H`!~9Fl(z4JqqXCk>r7
zbYW`__2+PQ6>?UZzMF=Z#qt%w?t-rhE*PFm<G<SGz5HHwFAcpl^k-YFQ>BkveKhnH
z8}dijsjJ`Sy{@63C~pYzz&F{@Z>N&HrJ+|LC+pw9+pNiTiaD_9QyOUlH4M`5u7>wC
zjL<Mr!~1jw4Z}2iq+!dT+#!M=YWP41l{Xq|#GxAQlOfAe|GbqoT%uIS<JAMBG>m3n
zs2*To58~kbF)MR)V2p;bLdHodmGK%Th_b6sfYDDhe5&DF4fDiBKhrQp!&D7_mCz;&
z{xn)^aU^>htMqL8ml{6T@C7S&oyxeC6)2fa{7RC(7NpH|A>U}2A!KGkpT)a?@Hv8W
z6FR36mS1VIt=Tc>vmS0}3p8BrrGLjNTBicN^&d3+sNpFcPwV(e!y+E2BfpNH>6scX
zYPh6fiH4;bHfh+bVVQ<sG_2+DqTyE!oUyY)!%7Xy@1MQCKdSVeuKlLrPhOygRjiHk
z2E%F%ztiW>8-ECnZ)K7ft)I*!;u;Od>iN9Zv-)}s8(GLR=^N;N9~%?PYD7i{ykKt8
zu$7hBP&=<-n}+Qgj%YZ_LUzsEp<$<nU99kRYQZ|STf_qz4wVV)5x$q%u2U~f)c4Vo
zC+hnJ^NI!z(niC{b^hK>hc(<;r*7|Yh|Keth7(NE;CcFSj%MrC)i<3}8cwt0tXJnW
zoZ;BDUY*rYWxw+mKX^^lbJi>J`_YjjtqU58y`QmaT*hS$S2X;q;kJgW8m_VL+{*|q
z*RIpa*Q>uZ|1NohV|XEB%zAZG1Ch!<Y}WOvQDNhjhTnwTk-m^m_s6Ka8vbLi>6v*?
zL(vV2+e{_t*t=dmpkvy+-2K~fFRxe0Iu_?>UoW;RZ%_qv6x2~kM`ay_bQIR{h>o&4
zw0UL`9mRG33vy8%59&zOk*4Dz9Y#(a{`~=TjG0<5tF2K?$E@}SmFFtftFb{b^<g=x
zgkVX*Qi9B?w2(47_qg*vXP47aUI+cKq7G|{KXbc+j)gnSM+M8TNG3nqAekMxijJx}
zs_RIX%dDp3F&&Td@DK8M)W11N)w2Un=y*~>rw!^>wm$M3GlTXswOTrA>j>!nb3!IB
zO~(&GQ`Zp`h5Wt4X-o>~2<wRGi0X*x$dc5&Rmn_ZFj#UHQpC6pM+kMBwUk<r#7!uk
zki}1AXX~h;qvriXR`~fmQ!ShL>WkSqI`ZWOl#V(&a&^?z@y-U7Cs<EMeI1`}PzyIG
zT5i~&PHs>|)~7a2GauNfp3%`j$5ghaj)pp()$y8+o;n)oXsqLT9WSu?HmW8%UQKmc
z=>83{sbDkRA5WUIM~4FZjK!N;OX@mW>Hh7nwT>q?Cbj6SlM|ahs=ugXv#qz+LEc8N
zt&Vm=LK_vu4mvvOcu7Z*w^LqWBTBn;66~y_i;k|sm!e=dAukK^^4nKUdQ~_Zu7{3c
z?fpsk43+-2d+F${W4MkHI{N77t7EW^Av#{y(ND)99q;N~Ns2ewIx_c({iQ$8buXh$
z4ec!<Z|fK!<Q*LYg}gq>pC$F7;Cs5i?(coU<+Tj1<74#g?dAtMKGad+)98N(t)Z-t
zTG`GvbC`}h#|tnp`jLn<9x0W1CRgVWG)l*4-G7AmnC+$GGaW5Pr;HJ0tl&5u<8@3B
zK2h)!9g~FcsF&6k_`jI9QBBs-exsTq*k)ps{Bs>&u)TCF(($E^uh^!Wl75hO{F>g&
zhjty)`4d3L3>`f>Wz1wxl+=FL(`W0LqhlWH?Rt9K-wk4$oQ%0TzSTj(nRs=k1$fAO
zi7wFnnUmDN*Zuhe^pl0`Uqv#8b_jH9tNkdKoRXUSGsg`n{3;zwbSxGAo1Af(j^#pl
z>@Pxo73A~ziiEyW$eC_&R^2Njl2+^ZUB@3f{?xINO}tV4rDKhb^*T1lD6v+@IvTuV
zF>tJ4Afb3a%A`$nQ5{=!jM}KS>DaEL*28M6;H-^`eC0-UK*%l~yXjFO^bKJT$3uEi
z5N`&tkC&h$9)uml0UZZ*Bn9z65QlUeX1CRGTgMR{N99Uc;m34bnyH=AaazZ5;Wsy`
z6FP_|Ieu<ZBxmSL5p7jN^Olgayl+Odb2`rJxS->rM5$a8a!JQ!Ay)*iCQ|RbkW8EF
z61~Cv6Z+pm{?YMUM56&i?8W3e(m-_1x|>whe(}3H{^MxbFMdz3{3eyTN#zS7Ifx2D
zJR0<O1WgH|NDxJX$R9+3APNRiD2R5ORN<gMVvsQ0C)6Jd`n{$|w?JtjsX?R(fnYH~
z8axz4ap4aOmPqI&g_H_{n@-TI3{TxH!0<>AWrN^6*y@=X<$@rV7kqqjpkmN})n7e`
z^dKq)Q8|bzK~xRm^-b!rAgTpn-pS+d4o10^(=#))$Afqxh$qE>;?PZg(%t{^GJ^g*
zx>yiK5CP$tL1;nf!oz|z2nq=WVWlQB8j)yJFr}vd7Qzhr8)Yz9L4S#H`R-|4W6OO2
zoFLpF8U)cW2rq~%)-9dtz2wQ86n{=;2T>!4nnBbGf|Kp*2T?nSoFM82F}sz%bfZ=$
zh}<B$OvzZkG=tFxKgg)dqzM_>r?vhUGxoNw&!f1cV&NvGf_N&3XKENv3z9q|<nu-5
zvq3Zp;>94^1kpH%4zH!zVXaxvA0L_o(KP5k?f=v!g~)!_Jct%Sv<za*k4cO^7X-1D
zU~9oYHmT=>ctJRmPH$3e=@>zDE2+IAdA1LN)0R5$TE-{y6di;9i1CtOCth#2jLy6w
ziFOU*<sh6Q8QmoMbQ6CLKd0Ify9e=V5Iur;Er>q!ht0};scz38-#lPQPn&alyzY8$
zR%v&gA?dkXobvjzaar3h)$J!pGxGjHycNXbAv_Vn+d&KnA|-_UA-ogBK<3sn<#rH*
zf_RrL+c*Ai5bp)?eh@zeu_%baJQpuBh)F?w5X6T;{C+5Pd=Nu}7{>Yug75A=;%M+*
z?k7bIKK2g}`acIoh(d9skWqr81wW<(G_#n*1IGq2PI4gsu}t#xA@+nIh$(x`PlEU~
zh?zmm3gR=d`HF4yj6uuE5}gvnR3Xy@KNn=`7ec-iWRa+REquD*H-a++Gk2#k!`VU1
zmnbdg1Tk0mw}SHor<X})62pQZzDrnsAH>20{~?GUg&!$Yu*zoja}bL;P6lx>h$TTR
z4PtE&>)6Db6>DZ$5Wldei~Z_E4$FnC2x4VI`7MZ5!tbB`cj12|QvYP96TT*)+&5b<
z(QSeog4mcy-4w*;1m6<G)&ysrZx3RJM0W<UJE89q!aVmRl)db*!uKZ>rXG^Ez7WJk
z5f2A(B#5IN1cEp&%Gn@JB<xQKIT^(LreS@a4&sc6L%QeOui<k+oKM)Zby!_3H>*nt
z<+6|~L0lDbP4IdUH-fks#NR>uBg(kJetYrKh_^(!?*^P%)OWMGLnmxz-Q}Q~KjXh3
z?g>c>Az#R!NI>y{kU!&{Bv}-STryuEgn}XbHYcT02z}nm<C9XM5DJG-B!r?NlnLRH
z5FQNqg9&d3sUfr);eV(~3jrbjPEjm`l9Kw6L}^xBq7R2qBBAifp;QRXa<tNdBs6O^
zD6MP=<wK|tLOHQq_;g_ISnW~a6+_??0`s4ds-G<!_`73v<q$r3MdyK4colMrYJ!i2
z(712*$D93cVNZroJp?-hCxrA6mv!NZfysf8|J=*9dv;V~hM97d7V_^eddUBE!~gdQ
zh7b}S7K{i+Lx>46LWm3TA3{Q~5}Z>RseCXc#SOs=p=$`;LYTW*O}b@dg^(RWjSy;v
z&^m<YL#QRiU`ZN<P&<SiiPi}rF9an#H-x%E>Iv2t<m(F_!thiG4MchRzJ50SnGpVG
z!?&y<Je$xdHV*j@`Arf^Q&zk1=J%CGS_>g9S=9-fR(vihmB$mk5W<TbKW7KNZI{$0
zk=ikYw!+&bl=dNX5PrW5FA47?*jccPATumlI{D><C%npL4WT=)x~Tu!g!=<8doR!<
zghIm|hSx&qnc%&I^bX-(6Q`VRz8*rq5cDvDVZ0H-n;hiBC=f>f5Z(%5X9&AE{)aFi
zgoz<c3SsqT^-jqDx%X}e14H<>vA%z^8Wh5HcDiE)-V5RV5C(@ZB!m$mj11v}5Lym3
zhK4XKgb(TPTU3=T%Gjbl68+Zl`oj|>Z;PVks1QbnFfN2PThzxPjFHr_5`ANf8ns2u
z-lA4)QG2(j@gYnI;pP^_OqgftR`p2;pR!cXWwLTU3t@7|{{^urgef6R4PhlaV+hki
z_&kJ#A^Z@+7a@EpmH91w`_+uELYNuCtPsAI=ybtv1ZN0xoeR76Y~i$@8^W9fA5lAl
z$_KCeb9m-Sp7TRkAmls2?**%DRW$f9gpE})7KgCJcPF1O3gKtg>Suull`|L}SH#a}
zsT}gF;Ia^Y5i)9$!6b&|5?#USiuuO8^{)!yj}ZQ38-?(D$e%RDO+2`u>5rQJgTY@R
zYzX;J6bx%ZSj+B~nz4@c@SLBzo=HFWD{40;Z02-L+AI~gMUXYQHH2-#w+rqNtU4))
zNxSLfAzTRIVhDRf*cZa-5YB|4ZB_flMUM#{2;pD|OIuinBzjozh#&`$qeA$B<2W5M
zlKn?T>qH1Ac~KQDhEpLlDVs~eeZtR%a6W`9Thq>k{HM@92oPI6lzjbafvsoKFY($J
zX50(mGHpV*8p5>@{^l66Rb6LiUzmGCj*8bZc~st3b(6hjtG_Y+KXmm61GglVN&gDD
zEqEt{yF&gGe6Myk4U)omAdH-RM!qnT!$=WMLZ$8>Mun!SBn87L6vm@rR1BkV7)8QB
z7{$W=2wyY|mNu1LFE8+*;NY!l<Ul(ujHjDh-)vQU3&(ef4~0=YjEBQ05k`5QMOwe4
zkaB{h!YD1IjNl`JG%Fj%&*S|!gbb4wY84Xtl3~fO<<G1XM%6H?h4E`+t#TMu!dSXh
zjm^`Dsj~w!&!j&V#^X}XC&E}iGRZEjJsAdX84T5hqzh(*5fG9Y#<s0W3***SRbrc>
zStyKf7@Nb`5=JD9Xc+Co=nzIM3?q!XVblx548sZ|JB%7(#KW+|@WOa%oBHY#J+w_Z
zVUW0jjFK}cE9^g7lbqiks2N6WR(Ke-!eEr4`!>bY+vW2HZ&P)`$PHu0Hnm*D`eFZ_
z)l;nAF!I7sVN6c;-_}0)QVQ{zFdBr>DvbTxRKqZy4Wn@wO;`gjT8*S0Ha85s-Aw0w
zlQ+|*VKftwoK4BlJd75iv=n^qKJpzA3y`X}mgw_>FNE=;kT!yC!)Pbu@l>7pFxoMU
zm%{injK9L@6h`MTzF{U||0QIXFkTI#M;Kit+D(x9%VE5d;N8O*T)7~{*TU$@x(Z|D
zv?O-zUL4iKcq@$FVSgOxBiL7v(bvQ1C;W|s@+MpD6@OLH+hLS#qm5!?wMZWj#yepQ
z4Evw;2Mdx667p^s?+JN7q4TIAVSEtAhoTHm=tIL8mf#<S@$WXpOh$+@^8e9Chy7;>
zhL6J-BYdpjxchn{b%Kx*+ZFdWo)pF>lEbHTr|N;v*u=bQuKWt)3(?7^hA~aV&jqPe
ze<A5hN&QOjYe5!ix)A0wGmKeb{1C>EVayI=P8i>@nM!HghI(!o^TL=P_P3<|Htg@J
zYHe3N#IF|6qsH3}w)<OBciyhPXH#xh3&Y@E(<DEIu_%n+!}x>!G>pYz4BD<%g|S3(
zX6C=LOA23>P<|2eSf%9U31x+lm4d&8QRW4Q2Qr`4k{h>Qp0Hijy=QQ9VD37;l_P)H
ze<!>#jJ08`V@YJ@{Q599B>3FzisB}^cgesfbxq<{_UkYTMo=h%?P2U-2WOLou~UYu
z8#1cw3S)N|d&1aDmn)KaNnCMXm_O}tT=;&$1A+&`I3(n-;1NN(>ro-arzFi8tep^k
zPVi(Hr@}Zbymvf8%QM2y@?7&W4=u9KOO*Nr*1z!YlTAi1OJS}EvQ$^YxF-C%;JGA|
zBFDy?Vf>vK8~<UW@c%)&#&3slhr@dW`69T>o>)Tr`)BQ582<_XW4ofV|7R^Jg2UTY
zxh8?+i0=<2bFvFWkP^YrQ(5^1xj#8Mbw2nNj-Uur&!(4(pjr`sAT1gJXQn+E;RvRs
zM*P>pBxw>w1jU3rBv@SVVL{rI5K=ON|3)M+S~`L<5j+y{m#&nHphO3qjaXKqTo&<N
z&pK2dji6!#=bp#;=TRww$`RaCNO}rYBB&a{vmP3Gs20Iv5qxH0vW3SZc!E&_j~jS0
zg6a_*i{f|`=@G8x#f1niMi7V~GlG(1la@uGMR?c7m<Yy35R4!cLFWj%L=cW35<%k#
znnVzdAQnMx1a%`YA}}NHBK{+>CFlsoBd~?cZI{HP-fyH4T~WGBOwEcQJAxV#rCuw7
zn!=YY4lv44TcSA;)JfRf+pg+GP+y`ABFGc+bOdkD52y$ljrY&;6wCaxe>lZwB<cRy
z8?t7^zEL8#mOllWM$jyR7b18ug60vlh~Rli{d#h8%LrNvk1h>77x6!<wPMF<n^bXQ
z;Qon>&M6dmqBaq963ey`w2Pp91h368slOCKhs3!$3K_WGFBmVA`H*ytpj!m*M(|z)
zFGui71id5Z6G3;@8@F2Bp?XBP`<c%fO7BpwMbI;XUJ+bx=quIdX}LR8yB(@;1g}T%
z7B4n}H+Co{^&^o3-;7|?t-Suii`B>;y+aXe*VAV1Py<+`2nI&5<s0kB4mC)~iXHqa
zluhOR2nI*+Q3S&y7!tt;Z1g4d*YweE>`)&@Fs`9CG=c%GobA<};ycx_2%g-jNGdPM
z;e*GB2u4QGV~9SAjj~gXrf=-@OZ9OC|9-388fnmGTm<7Im=(e72qr`@G2+jln;O9+
z*27Mfyd&^g1fK|J^iv^&cB&HF1Ct||!hW$m&>@gZoF)f;F8GBY^Z7D@uY`XsI9>1?
z!5M-x1$!JQK;t>&5iE{iNd(`r-WvOFd*-uil+xx!FnOmUSs?m%B7QHpP>@MKMDU~V
zp9B{P{w#R^wailCJ!WOo`2Kr|Un2N5g5?pch+t;~yCPT_;mc}lj9^m)t60@#bN`CK
z>6NoOg5T*RsfPc+EIP@b5gh;6Az2f_+6dN(zFzQ1R`#NuYD0oE2byh;V4Emg1h*zq
znMC955$s@N$pbkLUr|us9l^c`_D8UX4t!f<*ehg7ihdx1gAp9!P)U!?7udE_F?3sD
z(&mWR9A!`0sTdt}TRX;big+S|lM$Q}epc|b;2A+0r|t3&IVaKck~5>1m=%35iVvc=
z62a97;!)U9T#KOa&eR(b++;_H_>bRrfAqh8{vE+T9BHF?D2iM3v<M!EB3~4@Be=uS
zm4hUW%VpeU?|V3d?_h@(%P7-cf9yv3vU(ZBq$r4dnVcL&O4Q#+F)a!j<QE*=Kcj$<
zf`Wwv3kwzzq-D`49!&65A$e^r>JZ*Je@5{r9*!a-%D-eoi6}}&Q7VekQT%o;oo0MI
zBbJHcktkHYjC47wY!p=zd6pAWUa&$Gj|!=nNUbEKaunPnk@-}O;@9+yYJwz>Me(@s
zCj_5N=+%Yfak)Wzy=AA2%qZG_9?+ux)*pW~_eDL5pybRg9k|s}D2j06jFBj!!ea@=
z;Mo)05;C=Uz=^_*qWDDBJqj<1tSFj9(KL$eC~8FUR1{A~Q8S8Kyy_?#{t~DiMNSmw
z4`k#;{paL5QB>Qd>PC?(Q7Tnx1?n-MU5cT;kfmQ{uYXH5+ok%&^5&d%I4nQItfF`}
ziUv{i*yT^Gy1gtAT<fnkY7|9dHZf-jR>`Q+KjWias#z2-yqwW8iszzeF1&@{-clL!
zItN-s(K?EkqUgj6c_oAEzn+hx>p$stxezRh7o+}enQa6~+6rkW*j})MV8<xF+@)y1
zl5~~};pKD@(p9jV;LC!q2-0%c$SCXWRbE0AuSL;Qs*%cDLV5}I7VHy6-$d%`Li!25
z5yhKA`X^E+?XliY@Bu>J5gZuBpoIQz6z?VY`$7f_@<IB;D27I{G3viKTK;|ZuqY-*
zF)50V5@jA9#R%ae1xE>v7W`Onj3BRWtdMb0j87;NqFmw;X3{57d>X~)QG5}_XVO@c
zd6okH>yiE23rvY(YSdqBHBFFvXR%<6ei_AAQLKn!r5y6L;Pj~f6X`8kX!eaLGkCfv
zW<@buqCZCQQxtQem>b2nqVO!=37IE2KZ*rHe&B9k@*Dhni7vb^MzM64qP|F?Buj<-
z9K~WGOA`9L{RNf@|0SXPDr7lFn<PKy-=bI*#cC0sNzJGh$mkI8x9<5}ls^(j{Tany
z3BD$ZwZhj4u21M2STlX<^Vm&MY>r|}6z{yAyC;ghQLfR*-O674an80Vw$tb3H}8%p
zb_(AmxLfe(7XS6~KH*<Ks~;7zU+_Q_2Zhk!kdVVs97!mAFHQS0Ym-hyagrsBVO<QT
zqBzZtA49Vk7Bq^V;iw+P)u{hw@2ucC_WCF;L~)Vbc0%-$h}(9lOS=?pF0)JSGf1vQ
zah;<_3^ii75yef8+c7*I!{1T-6GdtaX))ZQe@5|yYb3{Tyk0U1!|f>Uh)8}nivJS)
zo{*%NZ~s6H`Gk;PkpojCnqRO$3<ZT05-c1;kr;{!r~QLMI6;enQN&P8l+k_bJ|v`K
z!m@Y_564g<hLQ=TtdLSMlonDZp+6#oB`GJQd_u1v<Wa%U7b!elCE=B0sFJX$Dx{jA
zU&t6}8I$Ofg4JV4k0C>NP%t2vDX0nRg7+^iBs?q_5sV7*?Ds3dkf<4hB_y6mwS_o>
zuAmn~RwDKIzXfW>P%8!%!&5QTjv*(8x-ry?q1Ed8T>kU+O{Y!_xiMsp(+lrb<#+p^
z-DA5|{TQyTh%@BHP-dJ?@^sAi=LRt}jNutc%@O_C7??@T-KtRxm+Bj-^^9Jnti~}k
zi6M5^Xt7%n`B|rV3>{;5DTWp?w2WbZ3OpA>>lmIF-b!%qTgD49^x3UQ+QmS8F@`oV
zw2h&2MgMCr6_WO1+#w;-z7u&2^XdFCbcvyB48vm>5kt2aUXG!E3~$BoN(|j&cr}I|
zbm`s!?v%(b%>9jDyPf`8%pb@4#n3b6?+Zu0R}8&l|9gwrCx*VlUypHezMndFw|YYk
zc{7G#(~KjsJKWnb1PW#hjA4)%4~XHN7-p8r;MP^dcVk@Mh~kAZK4KvUX1pK6;28Kx
zni~wR=$=6`B!&+}A^%XwP{Cn>b9ej0VCPSakui*l;nNsCi}9T{K8|5r4C7<?<CHfh
zhTR<kebO?<N&$w+c3Xe$Ruf{l(kw7Z#EGm`GlNfJ%<YpHR!$4-j%7@aVM+{Nu?{c#
zdqqx-VOk6a<&3w!4t&l!iGk~ydB6TrGRbS|F9i5HhUqczN$(pGX9~`sBh5<T;|&dF
z#V}jMIf7K?3i&pMc?qTCu%z!|{{3!A3`<$1F)U=)-dEs<7=DUjQ4C3Y)Q{}Td;E#?
z6?dfm9K#Wr!?swCs#VdS&$cXvJ+8AVhSf3r62q@CEa!n;bSAA7vlVnj$zkGg`?nZ~
zEh=XJ&Pt16O$-;>rdHUI`ezJ($x+|@qgCCJ+WlY}bLen0mzk`OVM7cjIn2heF$TWl
zbxWDYV%QYJW)77|Zkc9miD4`I)E>1hhMh6&ieY=q|HG*rG5=*317BzDW;tWn7sG3N
z6c1TnS>G$E9SiyISIhjU_Op+a(hjilg^(W-a#-+43`d3VpV63foIU!c-;O7wGP$J>
zZ|<jgy)oR5;Y<u?V>lPX`53NqFz02){Dl>lVz|tc3ZJn$b#e)l;uVQr6THfScU&$-
zrZU{5Q|a12Y=W6Nf5-6P@2QzVt?B68TVh-_q%rkQ40mHlHIQcDzZmYtP}o2b14#xR
zFp%Fs0Rx3U4CFJAY#_z(-!vvQNs7Ig)Zhc3FgkRPy4^oOQqb^UNER}{xynC&9QbOF
zIx@ijR9Do%FMHI328zDu+rvOH1LX|Ay3QBQ<iC~`H}J55ZWB`&<-4hEn`@RZP|`pt
z16#{w?%bn@rG=LfWb_dOWrY`<tT9^N!1*>>1p|*twiS6TInL!hs**%23sw=VDp*aB
ze>KQ5Ji(Vg269Z)F;U$>x`D9<#u>;k5HQfiKvx5q1~db?2I?Bn4d07m1`Gp1;f#h1
zgbhR_8qc<(3Bn}PfW?~Jt8(s(#{a%G*ok8u1H3EJ(n}~=2C{|M5UgpyxntH6tSv}m
zD$KJEqn1We&p>?xjSVz0kZ0htP4%BP@QmTlOjd$V8Ccmr=dUyA4GesdrW&%Y_WFM_
z%4x~Z@+^B*BLmI$s-An*;JvCTxq%lAv@y`!@V`K{GO%c`YGI(I;m?k4k*1y#ok?Hp
zRTVbowl)x&k^8)X7YuCKtIqCK$@^6KeX6a2b}ZFCWl5Bzy@3v_f0jzJqS9FmItj9D
z%%{gb)y=@m2KpL!-M}mKy;T3lET5qG?W4PaR}J(q@Zmo7nt|R1I`z#Z?<q<zK`MO=
zjP%SI`xJRU18*33&%pZzdgi%r8hE0f`{uFw{e`?`;B5l~42)@^4WhdqtN)I0Mh6Pv
zA@3S^KA*wB)N{w`QyFYvh=C6bFgij~KQu7Zz%bz-(QO{iy}l=phYUCHXRkEowtSx&
zX<(Fr(FXSHQ&c{tuhw^IGseJENxm_~@dhRs{;#|Z1|}MK?aQP|20r1rrfVbqP5zYa
zYhb>C1qLP?m_i4xl0DbJR0Gotd}ZKk1G8PHrssT4H@=m{@P&{s4P4%*s8g9v8v~v9
zt8Wa<;JFOU5}R84Rf+w+O{v>?nfuiov7tRJiQkINJi&MOtM3eaProwon}LM}eqhxZ
z_|?FV27WT|vw_8Q8!_gw9aiNKr%2{Y4Db|71s933Os=A3ZPjVDZ?;^bD+J5@=_{)Y
zaB0I|2G$r@ZQyqUe@M=M8aT0Et&`%h9>{6Dmc1---gR=8hidsc4K^CsWMDJB)WAIs
zbSAbM*k<5}fujbt8`xoBH(STRPL7Ia(+iDE-bH^aV38L&pcdWA-fLi=fdd8(8rUy3
zZ`{o0(r>OAkD6Mg1L}~0!v_AH=J1gC0o84rpL)!|aRXNjTxEd`oTS@u)G~0&z-a?#
zIns`|8XQn(49xr6w|~>nNEYU|h!;2z9Z-W0s7nSe8er0SL!)w;UVSs0`m_V;nt|&E
zZt=VZZm@Tcw;29rTO3d~1veZ}RQ{19mNTneu4`zw4csws*8mk}`=5~G2NXGTe!xUN
z6ID!9HIZy0#Y8a^51GhsqJW9QCW@FSX!^(A&2LTl)GB21R-)OB>fSk^T1>KvGHN2t
z#DgY2j%qX`!bIyrR`G+X_w8&FW4u+|#KR`anJ90fgo%<S9x?rW07{uCZKC&`>@p@g
zm>M%=4nCRSkYwJ<E^Fe6JJ}?Y+vQd;QPIS2QSDKazhN~hGj3;BGEvz?`axCepkE%6
zY9<~t5i$`r@i-4Rk;%1aCZ6QrPfHUSCYl{ouO3vz#w#}8))cGKXcaKQ3_m=m7}ZVW
z-pCG`;PoEQZ#`{lEGl`#uLrm$JQFb!hKaqmvuzX4?lehw6{cK^Wg;$w<)QfbLFJfO
zc2LnK%S5(`nkH(QsKMe**0?>wrGrYlk-h7nV%71&pZGVswp1p|mTRJ}iA^RpoBkTN
zdM4VKXltUri9C~k(Tho?wT3K!iKk3F%~m_48g)s#mEU;AL<18flgensO4Qku^HQ3c
zXl%kcq!^kAVGaz<Of+Y~Qj8WRE|u0=3O;9|m5|mZUJ$~h=Y?GPI_1R#q1etudlN62
z=;XJfKN;Y)sU`>WjtTxzn%UVz7ZYPmj5E>IL^l(IOuTF2WfQNMc-=%l6W!@@z3TR2
z?U{I0cn`tX1bYfLJEUmSM|fYsmk+6dht#-3YUUyJh6!?p0VemRK!1t8Wn%du^|lx@
zY3CuuD9JlaHNohGLn`^Ode6lBChP{r$0i1w7-C|WiH}V5S(p6*J?gL;YT`rFf2#TU
zo>Bg=>Uk)OINZbtI`&~T+C;s>s^eibQlg^-D>v{h2OL&ydg(0Q7!wl?E1qIJiHX%F
zem60Z?Py|}iO)@Zdsux!S2WS6f$=FF^^pGn^O=dFW9`+4)xN`OiixRGhRcUl!6WJm
zI))f8F!7a%uT6YoVulzLdn9?fBt3dWF*oKjQ=)g%3X;zfo7sYM1m_BVD>%=@d?B>#
z(!lu6#P=o^n)t!QDmL^H^`m69Oz<bcMS?#IE*4xOxKz-PGO!rGnD|u`^5sHSa3~P+
zn_$C)<$xpV4-<cySSOA0mkD0}T2|2!wT8XEfx#C4<cRwHh++-zIil8^AZ`%cDDD1C
zK648Pe-phd^tQ0g#CG;g3$}$FY<CldEEKk|%fxOI7wOMDmYv$faT6y@JU=*npNWGe
z4w=|*;(#bkS{pkCrN7@*J8a^JiK8ZtnRsAd&ZQ%&@qgy*+4WM7s-A<>$v>)4=OptS
zlz!I4ITNQ$oMzA6n{&oQlcQ?E-kisdD(9%;u}AjijNF@Zo_*n{y1<@j*BiON?qw5K
zOx!kc$HY|=*G#M!l>QG(lCR!%6E{u#E#<jk;<@kYjXtV6b*fiyPTdw=wb@72EffEW
zeZIQ&`VC2c<V0Ow%Uu&m79OzhpNV@M9{1)vH87o<!?=^O^I1r?kYXXf1zsABnHx*R
zROVU00*hDB@{7mt*qodq7K&P^Y@v#U2Q8#pC}p9vg)|GWP~5`97FYwtEUev|^N@v=
zM^%r(R<N~EcVEurJvk*<jD0yJEeyJAo;j-2E2+~5rI)erh=p<%%F9t@8Qqt2V_-Tf
zmgT8n;ZX|}EmX3=Ys`O4F^LuR-oBjb$Ldx%rkGV#3)L)yEkrCl#*e=iH|0mb!V?yr
zv{2nbx`j=9a^lAnOV#|C;<0&y)B7Cr^Ut)PS<o#6E$kWWFDK!(k2<CnrPd2s_<Ta$
z1;WR_n;x|gv%p%lEEpC{erVp4!=_<j*feao2lnPLtgT(IWYZkSLTd}pTW~FSmjAq$
zWud;1Y{429YFfy-oUP~N)Dnd@wT0wZs3Rm-u&!V|LE7XWoSJ7rS$N9A)2wX^O)M0-
zo%JyM1yj$6Spy3V6ZX$qXq4ddw-#7)Oyz$%r>Q8-5_)qXEiAN5D9;ILC0O?T)Fn^l
zykManYxQ#Wi)>|Nwh?SA*u11erM-m?7CKsZi4J4o6$_m#EUb}p^qA^up|gc9Y{Zhz
zkf>4ZVzzrR`_3`djXqN)vwqCzZsAo6JuR$moYTX?g6zE4EQDgl%(To$n&p%^t|E7A
z=EKxJ7W!Iv*TQ=iUbp;3G;dny&vp^c=o>=9#})Zo7T%WVzhQq-%m54TSQseEAm-E1
zq!?{rj%;X>zi(l%g)tV!S{P#C0}CHn7;Yi&xcbn-xa0mR%b~o+<7$}TTgMgo2n$~<
zP8!9le%lyn;oIYio4OE3v;2*;KaQ)9g*-A*8)sp>g-I4Zv2gUbx_ewL9-~iSMRn9C
zTDWgk@`QgDhEFYI3ZG(Os)aQ+*4mgxhqUlp9IN8^!orspO2knzj;}0yZDEUrtrn(R
z_=d%>Fwepa3tUw<)50vC<y(JY?`#WqDi)k;ams`?#{&NWF!zN2Z*hE`a&}?%eAYbs
zEKk9tJ=MRn@S`}u_iRVYe;w5HLIJLe{6RREK>lQ55i656%W{`kSZZOhg`~7V+Y{=I
z6N=(83%^=eF5)ljhJABBKA~oxP%C%}!Mk%U+OLw+@#V&5I)H`WE&Ra)<N6v72p0ad
z@Rx<XC;ac}6z}6Y3mYtKw6I<*Z=O)whUl9tv}sqj)=Aa+q$++=RX?e^{F%i41h!e&
zZsEFx8yx>F?6h!Ju8R*UyDa~0{BDjLm6CbOBj3YwS=dLN1LN8BgM!o#SjZjzzZr>#
zEF2b{21nSM7LHjsF3Ksv6N%K57C6bAW(=n-oDu!La?Zkej-_VC1rAfglZIE*E?T%`
zVRVy>%NDM(v&1v5&<~R{F7?jne?I-1C_PUq>NhR?%|Sbk0&)Dqu`4gYg*<mH++x#M
zxXl_Xq1~}C?4&={C;zadzYi54`Om^Vy3I+I6i2=|lH+(Fj%6nmL*0^!b0l`0ROe2r
zlsI0jnf+v6y<prQxKiW(wz_nZLUDh=SK&B{2q`K^<v}6*YudCp5C>O57K`JdIEoA3
zGD{meLwh)m5-(^>y7QR%_GGhE9HrxUEsmaXl!@b!IMU<Dh@)&A<#@U{`hMzf@KQdG
zs&O!f3UNFd_aDG2#!*>Fr8pkX_FuRWtB7(xS}pEx*}?FbkjDj6PN{D@r#%_>A91S-
zK5|M0;>e7{iNlRUi$jn5o?ylij3X3BG>%x@f3+TtBO-(yXI({o)e8R$krBsZr<8k2
zH9w`wc6P`s_0_C6;&G7F$zR8g<9KWBm+8ujBa8JJM;m6_NXw3+VI0rKQ6r9;anusA
zZX6smY75dPCyqLz=L%BklV#DMo*2}RBTtADr2bSKPYZu0p)`o2$0>gx;<1h5Xc0%t
zI2y;%L^5p3(POc{DNVCP{>|eE_tdE{JQv6Fl25BdYU?;Y7yB1P|9qmxoZH6HE{@Hi
z-0pE4nXa{u<Fiw$a~vHcN~L2QFA47y$FNh1fnt|9y2kPCDb+2GH#Rt%*e<8k%c8s@
zxZ;#zp0Bd}k~#Ui6QaH1=pDy`IKGRc4}Bw!qZO@>;&?rdesK(m;{)av$D47y$71xf
z^6O^*INph4U>tA7xkrKdw%`E4Bc~LVL2)c!lzjJ;KiB15(JKwLslOk`!>1K987x^%
zZC8&oSU!yVy_kQdQ!hJvC@+V7r;NofuocD_!{Znc$H+KF#W9zc5Xa~^K92jdr@j;%
z6USH~6~-n}WEdyW@o`KLGBJ)xLOzLOnvhR<>Nq9~pCZVkcDGL^PL1Q$HYUmEqJQ!K
zr+yX3*P=`p{6=tw;7q|;g0lsg$sE>OGe0-;w3^5Ayzk!&80N>(;I!huf_@*z!Z?14
zV^JJG#Qj?Ujelg9EUR@ot(tZ8H}m;9?vIndvOeQj9LExgE{)?C_J!|#gJq(;ds=aY
z;H-^Fd~ZCfPhdqHe963$T}JlG81`mhbsWFbS8cSk@kbng#!<>fX&ZmVu_lgG8)>`=
z#<4Drzd7i|v7U`GLc77C>}vXkI5x(yi9Qp@MLFG;IJU-dAdZ9d-ZX8S;O;oK3)vw^
zeP<lIgma){bWhy><g{0CpWuE$uDGGjYdOSz%??;Ja9DJTN9c{hk0lh24=3U{8ONzO
zPK$V+BVin8g`bOK+!B9EbN_8=tW5scr(-aBK~nj52F(1DoZ@mEoIiXej;lh*uf=ga
z!FlXWxzf*0EB;~1Eg7o|*eGb@-#Bi^aVL(uGNwIX<G(oWvBGVCh#Mt)XO)?pw4zk<
zz)z!8^4UnX@yc5P@)WVjFUSddR0`Q>!yN@}+-#gfQrPxK#o*I{qBb71QLIT$uWL4I
zFK0js7`5@RjS{wh<9NtMaT~L8HSVg)ZB*xMP2+*nn&^DSo>bT<Y2#}5+zs7x%h-6t
zMs*wMHp<#4XQP^p$85YcHMP8rDmKQ{4OFo4sEvxYzv$rDgpA5IDhYpLSH1fR*U9pm
zY*icg_X%N3@qYTajqgvZCv5yWM|)C`uUpA8Y$T;7*RhdnBVZ%bMxP-Wnho2=#?wl-
z5tPdh*@z1X+xV<U9acreMpP8?m=HtIv|%Om$<30P>U@~vNN%p6C&<jRY-9_skx*(1
zsU=w3MvjnVQ>SsqWWBEKKZ!NAQO`zw8+kVNo>tG;XkbIxc#0)Q;DM>RPqTGSD|*iC
zVu6MtHnKteS>eUc_(_b?riqQFHncPTUbxL{f1lgtf+X2z)N?jk*%)NwT^p@!Ja40u
zjm|b+u<@dlq&=O%MqA<B6`bq!*rx4lEd5H0PEO|jPW*V$!A3`Ml9vR-ll(ho7aLvK
zrZ(QT(arX6#64_;me`X9YcJbqct*V<*j?~d8`LSjX8V8m9^G#Cw9$(#7}k0V_7UtW
zNbz+W{e-_E_@-e0L@NIXet?amFQu?1yPQ$)NT~)2vS3`Z^PY|OZG1;>u`$@j5F6jv
zm|^1s8y~VHHa@X2)W$Fyqivik;V)GD$i{HVq5Xpe868369BriFC_zS>_HaJ7@y;1F
zMsTd)IKlCPOqw8MqTu9`+NU;lG&ZK#m@4Em8{^KX$u@pzY&`j#G0n#3Homg)wT&<6
zC!vfl1xbGHTz6J+|MTv2n}5rm-1L=<kJ~5DeaBa3vJcw+s*?paX4{x!V;<dXLI&55
zaM#DVHdfp<z7-_-exSjm`C@RfZrc5iG7D||U}Lq7-`T(V27a`$@{C$(<0oc#MlmcB
z^0SS_31x|prGm=@e_?Y7SuVIjkjG|>)efIgzu8!2gM@+mz~4Tju0ER1e)NZpKc#2=
zmFQp3ZB1HdW4(=a4%R!^z#8D_;UL|?CY!U+`PYZIW@8J-2OCG&?l!jB*luH&joqwO
zHfR}br{q?5n7{t({5$^sS9@$cbXM(U*Ep;0@07KVHZ~5>A<wGM&#FT<UOuZ1(k0HS
z)+6gsIc%d#_c}|?s$({e+c;(8w2c!Se&sI7x$!5(L+Y2+>1JnGrTGjFR_AS;wf#Hh
z_{tgQIIxuUm$~%`X%}o<<cM0`yd-$p#uXvk&#K&zN&UKw8ywyp6moFW#@{yXaU65}
z(fA);=2yO3-s0J9+_rJY#)j3||JgWsR`vhTzAJ=}I;%ghsjt3~%f9e{g948Kppwr)
z&s;OvLHRO)6yf<DJaA4?EPqZ}wKAXFnO)dH5eKClly;EsL#L<%I4I`eK?locI;jrQ
z98@SB$e!zLoS>7iyRl#oIVkR+lRO7L?D!9gB?L<fG8#Fj$~bt$K_v&39h7xY&OzOC
z{=9<nj=yH7f`dmLa8d33b+r{m98@)_+<1SPZ50Pq9e>yE#~mE#mRrriV~+pZXZX&v
zj_3T}J_|-AKf!`cvY!;>C>LB~XE+G3R1P{j$aJ7NXyTx$1I{1N9ppNG>jWKy9E2T2
z9Ar5d@wmx}({G(qQOBRQ%@A{72saao<shEmwgX4Fn@~Il^>_FOW{Xloux28)mXO+l
zIS%Rw**L}j^O3p^>N)tjYy48<_@X;`^&JrN1eM@Z4xSc5{TT-h95i(Btb_6A)Su^6
zBT1TfPBl*096qO-IcV<Sc?T~z{x**-9M~Uft$Ea(oR$vm%+7hvK`X}}r5V_cUlub<
z77V=T;H%Loyp^<Z@YzQhZxuD$I%wyhJ)Pm9z)SR*+1VW!O$&4sT<}PMeAQEC+fsop
z4!ZIv2a_FibMUf*K@Q$^@QQ<5=lsj;=b*cTR~__l@S5Y_*LpeFTs~0Yyy_{@F*TAX
z_9kb|pI3byG&=8p<|cpL!Ntk}k~bW@>7c)Zw;a6VfU}<7797CL&nrgPZ8k;<87TVf
z^J?{Z^`3+G9Sm{sfrACj{C`*H-vSP1N4S#yS^kU<#UI8x80TQ9@L>)H&(%H>94^S{
z2q7aKj1n?h@Z&`47zYQ>E1F$DuX6v@#ygncpxGX0qJt_I%ugNM8?H^F@BOQN!t!^s
z&!0ClE}3JLKE=UQ2MZni;P?+e(;Q3}^0|XA9DM1ZWhp(Yl>W7Y5*O50f=f#26jMs;
z(^8#p9L#Vqll`K2<}3%_lb=bSEjUMz(YX%3P4IaR<_lktP`-1pv7JAin8*y<^~m{A
zlKyn?6FrJPUp?@%gB1=|I#}#r3CrI%u++h?LY6rgQ&amzkfiy*K<y!c<qq0@<dfgn
zfBObjIauxBdSibM$x}78-#Iu82>juI{MWYw+66^2;!*uC*3SjChMn<IeJ#g?3yNd|
zi|3%0i`p(W(P217xhU;o3u}pW?%<GvZ4S0O*zMrV68~|9!{829-PXWPL6TiUR<7|k
zNZjLKuY-Mb^>XUez3lxQSU4{2HPktSV?OT}hgm!a|I(kEryO-~%)xmF7aSaSaKgbk
z@sN`a{&Q8upPbVUh^GXpoMGQQZc{lc%76>1Ng;o<xyZie_<w-%HwR<~R~WUm>kh86
z^)L80#KjjBXYpO5Uf<w<yW9{1+T3*fzj`5|%|DXEEm8b?D1D=#e#gOG7KRQ+hj)?Y
zBFV)AE(*CQ?E2f_=W~(Y#rZPzHurauU2MOgQbhl2y;Hyiv7jIc4T`uR7IpC;$-w$&
zFR1VG*J0At{B@EpD!3@-qPUBPT~xoQs0^A`_aPV0UR0efsuC_fOvx_kf*bD-y{Nvt
zsCYPe85fVZFkM(K%DO1$qMD1xT>qy^c^4I2zkcqFP2!BEM_p8Oapsa&$wd{{ABQVT
zlnS?-uIl=GL{FKfh>y!reAJJ)oa5@}@Fa^QB;AEBBtwu%0T-DGuDSnvUl(){5;5$8
z)8S}#AEPd~^<2!wog(_lGM3@O5E6G`yKr2%u75|q`;L)XN~<s^!*l&^8+9|Ygp`?<
zk<FY_GHbY~$(r%B`<$5LqK=DME+=>(m)GLrJs0o0sOO@-i#J@n=_1dCa`B>zHZGoW
z@wAI(E}FY|#zg}cjaauARYNxJ=6b!3Y0tVK-scaTsn^&=6H#_vR87V5_<I?&Z{eb)
zi|3_yEb4PEUVox~YZtBP6&DpZB&0Z|ZhaE!FSuBFJ)^)S)z(Ejxzau^+Pj>JX};v5
zlZy`0aJ8#i9oZ$TS~J_#>C8sFq+S)BZQ4ahR~Ow}ye#|`!R~_hAIXS4Bue|&g!B~b
zCD_|V@RHvX`?9F4@JpO4W%Uz6eyxe#pA}NW$m7PLd4acFyzOFui+5bS>!RN+jUf^<
zi342>66I(IhtZ>3jTs}f!7hflnCN1Xix23rE=IW+?P4f9h3gNV!`Xa|v}Z4=k6Z*A
zIt{yIGde<&MhcEPWYFwmUZ50a9GmiQbBv3z>_;WEj-Tqp@h(`-34-s7+1HoUCoVp7
zG1<kZE*4)>nrZbbmOO<`-&p&~#n&#Tx|rtrtF%6M@dZ2JSbyDC#dmYRWEa-WFJ!Zz
z=`OxuZ`x|lq|NuqGw2mlt=QAX-Qo7eORDowd&pLM4*QOau!o3;Z(US<HSKQ~|G1dv
zV!n$7F1~Ydj;-(Fd+7o{_0@K}Sm@#h7eBiA$;J9ae_7;Wt?-{&W*19bES2bL!DWIg
z1b-3yRd6|b&3J$LD#J=qesi%($l%lZef@VAe~7~9pR76;Yb0v+jxbQ<!tiyjzdW3L
zgNuzE|HWXN;AX)sf;8Cb;<dFN$#zk82<~*TOUM(y1R0pR$HiV=U|(&Yi(^9C?M~lM
zSKpm}z{No!<cC}wPVgf_j=KK48Yc1B<8t5$!ILgdxi~HS3~TS6NrSTzC85rfUT|?)
z2>C@9mxM2#>+kVWp?twB61_@SN!VO>aYOjcgu>laZn^l^MY4w!54T0X=lZwiJ1*|h
z$$v`YUl0Gsp)A$^)2Q#c|AU9WO5xNc^?>JNKEdHb0{J}@@Q~?2^H9)3ArDnO+!$*V
z_E5z0|68i8hoU^Ta>kb(GKzb6kY|*3OcjzQ2oJ>)`a>S>|4-Ay9(V{t2@fTOml7;3
zSSFGBhzI_649&`U;DV#_f+Q6@JeuGYg;erTIiXY$l3O8zMXe?UeoXLj4^If8{-lTM
z37#$_LogtCFD*m&@ZTjB<Z9x0#zQv>a8IPP0vRFJ!}C6gdYG7!X?duXlF6SZF%O34
zkL{-5gOmJmGVa0l;CTK^n;g%-g}K5#L5f)(vJ<?9kebXeq0|=ArEk2Bhg=VJJ=F8?
zw1;Or)c26*;VJgnyZM!eG0&UkWyS9@l`gCGpCvynoY4jz+Fn)-J;Yp#zZrX7R!nN_
zp^1lbxhS8DrXHGk_^CD))kbp<Ej+we1Mk;BOApU^IG%+QS!m^<wTH*E@I)4#_wa&;
zWgdR<@S=w{9zOCgoM-XS&O=WRz1Y4UI(X>pp^N7)h#q`db@cF(hfW@_Ed0e~wKdzS
zw=(U8J@vbK=*DaG@T!NGJ-j0J`<5l&sOkQ7Sv^|Q+P}Yk4-c<-IC@!C+Z$L^#~QmM
zuwhr=ha>fSd+6g~01xrd*Td@``g?fGLq88wehA!MXujcryMHvBYo7Tl@Fsh~Wwpw+
z-e$e62{gS@pG%nUJd*ogb8Vo9K_1@sFxbPpynGKswp(jf1r8kul)R!k6w57hJa32;
z>_ZPjJ$%6Gnq&WUx6X|p0;?*hmJ0*huI3H%K-^m=dxXcCsQB8$bPuCEjP@|e!zUg-
zW*ae+Re=c}#(Eg%L7yKOPxrW@zDu*d+GsYpqJCTuph%mE9_F8|pY&7UQxBhcnC9Vg
z56^E1oZk_c%&YSd-4uAHfAUniT#ohdzWSfu%ld--#lu%D-ikoVuK`~8^@V{SYq?kZ
zCr_Fa_{PHw4+}l~;9;hRS<K(V0uQr2%<(YK!>y%(SLWGsIsSX-aYd1TR?D?(T9dA*
zR~H3dzfynZk^t*%#J<3H9=@joTv5BOsPil{Ys14L4?jz7mzf`!FgtK^QDCtYc&P`k
zuDiqoOHNN9=DVtX-W&MU!*UPTJY4s%!ox}r``9}?{N`a5M->m7JgoNcyN5L%)_VBE
z!=D^v*kP}#3%>`Z->I{Emdy;auPQ3*JWQQ$4$QSScv$a&28_;MV0NEx_B{~T>|u+C
z?H+c}PYwi%&9t|&u~>i$^;^|;n_pFR4hD95*yUj_PgEGMG%<H`#A~kY@wm)3kJX-A
z#~pB0@pO}~sskPldN}RjjE6%W4tqG^;iQKnbW!%Qq`c#-jjO(|9^)1SdjsQ(W^cZ#
z&dA}1CZw`)PchqTYDCYpjE>o7J)HA!g=b$9IL}L-!#@$lMGq6!2YMd~T=H<)gL_S_
zTAo(znrb=6?s2~Ug1LdV*VI)HbiByizzq*KITUB1XcqqV@Q;V2EIg2fTOR)PaEHSn
zJ)c#2DDcDgX2~3#r0+HLpZN1VcIpLz(bv@M{ei-1xi@dt&zFVdEELE>!7O--0{MQ|
zxQ9SW7V>9-gyGyz0ap0RrW$><P!<Yjp<c<{kA4miAIw5(7RqO#LKf1pfGm{CLg_3N
z%K}ebc9ZXu4`rcv7WNd#emDys)p2KCQ^XR&OJ<>cnOsK8WZ}%Wfk(1XR><;es$3T6
z(oMHpJFfZr`6TbOX!d9pDrcce7Aj_;QWnC$1<KX1zRk?Od`(r&LN#8(X#Mwf0dIl%
zSQeVhHxG_a<*|%DnT6_E=$C~zvi=WER{?ER@%0}(I^K`&ZZ3!WQ1rd)<8e>-fC|!`
zN_PmTpn`NrNQ$DMbT>+aq;xk3DvCk(_dDnRxz<^;_L;M1&z@bgXXe~<5s9N(9Bv$5
z98w(B<9H*Ev^X~G3b>8NksJpDP7TtJqh=foT(5A{_xv%30(*Wfj#xYhalBrSBjrCh
zH3Z7t3v6cMcBxhz>2Vlwn3QUqA0@_#b&?hjTvd)kjl;U<D{(q+I%}3RHkL1wTHW*Y
zI96&g8Vt2iX}#nwk*qjuwpx`s=$=1pi{!*Xe`FVa93qak6kr^6;;0)(<2ahc@n#%v
z#ZjNbk7NG(NpHtdj~dBitv)MpP~RPr5_d}t;%FGhC_SCFm*arcC=Pb_nikD}RiXf!
zGWf^QGLBYpG-vRS<LMQTs_&aIC3;EPcvRwUA;sRBo#vL?#PRt(zjK?w>AGj|+Q-o$
zj_z^vh@)d1@5a$3j;?XM7Z0LAqlKxR<LDH};Gd;c_k6~d1NZ#)|9aixSZ&2ljY__9
z&tKI#Vd>)3o^kY|J=^L1DZQm>?6h|red6dF54@hF`jNd~Jj#J8d+VG#Af!J$Lr^n_
z^y63($I>{4(1zof7RMKHd`JbwF_Ht1V@hLVXdIu!@o5~x;`o>vZ<BDKRq*|aajSz!
zGCYnE6nh+pj|R678r5Qm<Co8WTqljD>BcdM1CL`Y)e*-8@-`&#`-{?(dp><?d>oVy
zfp%M^iE-q;?@Ran$)R~njpO$Xl5yXkLeDL1(VZ!TZ41+;$1x+0uj7~(2WP;Uam<Qi
zb{xYeCetM;_Brt&{?Fy`*>G7Zuj<>S16ul5Y`9Zeyj}Vxj&I{w7{?;&J&tqBQWwPW
z9i?>NCtT8weNUTT8Vq6ZeShwKfBk)bF`pW8<MGKfgH5edm&LI>j)QR=iem-sFpeMM
z_%V)E)J_~5<Jd%}j$>^c>**}?nw-|UI2e;TO+50`X#h_9gvmcjSC&Y}?)#f*cn774
zd!;R5zl1OLO5+T>HI8j@?2Y56IJU>JBaU@{ySpjR>+a4tcEyn`pVfR~^6mS9*Aw0o
z$G=;pJP&-9`zVAbE<Y!-pKNI9Bz}OF?4;+-l(I*S9ggGYIL^m$A&w()9F5~t9H;5O
zaU751B-v=2a3YSY<)aK-RP?}=shlONJ@7vtll=6wbcSB}z(2=GMc{B?&n)?4jY@X<
z#W*g-afNLeH1<iCDUG9nB$;y17pO;4yGCbu;9rlU^{yy^CU*2@9JeSs8Ea(x%CHv4
z+cN6O_&tu>j9@a#$oM0UKN+=TWRr0xj=$n~LU)Vf?>PR6<9-|uIQ%&7(jPBL_rj2<
z6|(-WlTP6<O2igR{U7)b<9I}8p@NpAF_P?9nA*2@QiYv?X+4YMIj0608D%h~c@f7;
zN_e|8Xl*L3E<p~$(UPGuOHQ4MGBU}?EC<1D?1LbVo%+MgBICqWsiv76Ig^@QMh+Q;
zWE7T>Q${Wsd1U03ky}QR9ONpHLA0A=lb;`yR_v5WcHRR&+Y%|CjKvkL0y6T;X!Xow
z4f!t^b`<rJ>nO3~yQLyBO2{ZFqo|BxGK$N=sYLs;sXyO#3+<C${v?%>p|1=QfUnvn
zWc)5I^SacsGRnzFl@XIsUPc8ORb*6^QBg+oZ__G;^h+(4J}+c3d{vfF>!5VKZ9+sw
zH5th=YRHgeRA;HjqB3qR4APiA4Wk<#_$MCtSw<&&H{Dlcye8vy8L!HyDF?<wvH$tN
z&-&0W_0aFKLfWS$r^pZweFAUDNRwg6Fxi)kbQ!V?C1m5dF4vY3m$7w~lz*wT`iOMC
zQzn)8YD|;S`JsPgdk|+X9g=hzBOdw$EEzT_%cvv6k>SdCbCK&&+KVJ+iL|}En<PK1
z9Cl6ejP$xRp-s}8GTx$6GNs&o<dO(y!|iKQ`4x!zGTxE#sf^(=8pvqKPGxkF(MU#P
z8Es^=mC-~-QyB^8+*UH0QHC^z%~DH_XlZH-8FL@{oRL}nn!zK@wGaK)G6wHRBL4pZ
zOFJ1IWxOk+y^IbrvgWrAJoH)8N;z}ACxbIuCpqvP-d<cOIdXbe8Qo+Il<~fd?lOAF
z=p&=AjGi)RqL=ncz1Z(fk1(yPw~Qy{qXZ~{exX#^Z+{sBWKaSeBQHK3M6UQ$#!wkU
zWPBjwQf`^S^Fyldq2KACRQQqq^r269n2e8QJUt^7x$QC(lk6ulx}FVk9+o5M9WtiN
zm?2}Nj8QT^mob?xd{7!KW1NifGRB0roJq%q04KN!G_6PeM5^qOPjwKU6snBGC!KI_
zoROx;m?~qMjPI_yTmr0G9Q6BzjJ*wO%|0s?_(7T}^AG;;t&I6HX3MzNHsLE7U(1*y
z<4c-rqiD9pf#c7m*)NugO-SanK2OFsl-MJ`?IWKbZu;}8S74X4fL+k<WGo@)kNodt
zEDD*_AGr%dmI{U6YZ^Bpd8v$LGGDmGO1gIA==w+gav7%{`Mf^W(xtOmR>}DDk<XcH
z`1s`MO`~gNtfSW`sIFkWj14mG$+%C=%Gf01oQ(4_Hp|!|<B*KQGJcTpqm11$_R#)i
zY?HA=#!eaA84#Fq9OR!wzRIy=c^rH(vg2B57h~gNpBL?9uZ*8$9FTEP#y*-*ljwei
zn#X?ZvA^R-DZWwa``BkHHT|*Q^rcDQXBkIioFxA;xSBgE<2WOjj0Js?j>*AVV9jHH
z;EJ?ub<$}q`ycx^>ZYHTah94rDV+($a%g30g)4zl*6)=r$hauuHwJB55eZTqGOmYo
zuFzjrOIJgds_m7oJ@y&;ZpiqBk%R`bGVS37H_sO7rVIkl9{VhRl`*=5T<MAbXl2@M
z27iiCiTz92(sLQ^Wc(8by=f=Czhv->TlRK|C42dFbt+3r<}O3Z6aVeS!MyW;lw}l9
zP*A}m8INUTQIJ)^6PmP)3<@$TcqZdH4d6)@2Db)J{1^21+UYMD0iO8fPr3;T-hUFL
zVJs6BWK!VgvnU7ZA~WIk(HgsJZC{qknrsTPE8q{R^C-xn1Sv``1-X^LhI1;x4<~0m
z@sku-Gt($HE*_~kdKu~DRgh0XekJ(nC4=6^C%(TdNJNi5@e3&^te}K~k_w6_`2C4r
zOkv`Lq6*5+Pn*9|nz}@)zDmmaG+1sQSe;r*L1_gQ6;x7ChByk!D`>SMHII{C^{HP@
zL9JzJCzW*GR#2cm^?5aU>Q`1!ML|RXvy`d|sB|)agVfX*GvR7sedZ@_kEecAL9&8o
z3YsgZq2Lt-x&lMNs|so=NL3J1z^P~CQ~xyuuPed-;E>4JvB@bEPLeg^OzIm7(iGHI
z5LZBxsHI@tX(^qzPWqJnLBhakQC6TR&=hQY>T_Z8CHZ8J6O)<$^ca`S+3n8KRFjfa
z@TP*d6xa$J4!KEGD9HJb>nix7pyg8(hb2z|$4h{31F~W4c&rYYJRYm7;0l?1;=Zk*
zo`OaS8Y`%;pu+*Ffr5r1wRaTUyX=zemnSpP$4h;Xq-XY;DBz6t@@X)yHC2K%fE+Sc
zZ=s;2f?f)GQ{W0(6HP%^1#J|xRq&pIP72y7Xs_U11skt=9Voq_a^FKzM<Q>N3O@^S
zId0BOJrK;l)MoUV-#N4*&SHGT6jy)dcT><^K@XBj@OmnN^U}I#HXWY%lhjxr1$`BK
zpx{FV{S@?9Fi62*C787bC_!%gzJh^DFayp!?+$tvWG^3;wXU{H970)%^zRZ=CO`98
zF5)8v!xVh1V5owf&wQHhkzK)(ii}-*=4ab44OcLN>}e>i;WGsz6?iIq6{8f4W{(Pf
zRWL@uSPoXfCI#aZj8`yU!2$&n6iiewUBL_mlW6t|rYM-IV9818h8CMlxn1!p7P6i{
z^SPABaUwR23RS>W4|jnIJ`XlwW-6Ga;7bK_70gyJN5SwF67y=#O6!|M?`=yW@RfqE
z$<;pTTLtOQ{du7oe?#Ry_j^3|Y3j>HL@ASeXQc1=NWoGC%M>hBu!x)}=(99+R(7;m
zDlHDR%(2rr8x^qltLNnkRw(?*2G&pr&wX0;O0pN~(b^VBX=SU_wKQx-egzxoP-mpH
ziOJLgv$)yMgJ42mpiVa{*rMQ&g2M`aQ1GLIT?%$9*h<S+uwB6pD)FLJXr;uYj)8*0
z=fwK%Z|+V7YoGgHT#+~%?oqH;!B5<oTrH6k<`Vl9>{oC=!L{Y7eJ)9?nf-%w?zw+Z
zL0v0GHhxxcM8SCl7Ze;-a7@8z1!oi-S3u34RB%ec2?}I!D#fU8lI}E=GrjPcg;sgt
zpACn@A)HgfS7Me0DfG*gsTUPoVvh>0(=3(Xm)%!Fg)%#eS+T1jO#M<gHxyJp8M~<<
zrEgNN<!QgrYnG>R;e2RCDwl-6G0HLAsf?evt>6y@8B}Cc@h9z8!DEJQ1%I(?1@{#^
zQ1Fj}f9VcJ`d!Log;dB(|1+MRYf0+8(ETa5=)yGi%M|w^rvL?#k<1uKZ_3#|;oogZ
zPZc~@@Pe}dBfu_+>qKrHyi~x{D?!E4K}nSAgsUEJ8LksmWKxk=MLrdoRb)|-qyj3k
zs>r4yhl-pk7{KX|*;VYn>nbn&&l|>asVH*V&8>oS(`|0!oOZb=<I;?5<WVu={iK^K
zQfuv(=#}|Z6i`uAMKKix)qo#PmxWanQqkmv-{*x-MHEqk<wKXnQsk7x{gC1+CcN-V
z5P5tuZ$}liuII8!t0<!)MMbKLvMS1{kW^GxQC>v_6;)JJRZ&rew_K`B%B!VHYOsFf
z<`w17;Lm@B`(tTZgu^@|Ra3ETjkNBCfAodleo<;vMY4+5RJ^XDhKg5IysDz6iqRJW
zKQazUMK?%XRt#T|#?3=o?B~C@pZ@8N?v$zQF)60v4Ha<}vdWbH|7V$6D#$hia=MDz
zAv45WxL=}UDk^5@v2+!N3RQ&`-qL=!0n2(*g{8t#;i|Az{Px1n_|iYRHnqkt?txXQ
zMPB;M|Mi!C;(ER*fjTM{t5~9<u8KER3{o*z#ak-gR?%KX2Nm^H)K}3|MKcv2-16R0
z(NIMr6`v%=8mMUb(x)RZop`=pYOLbJ%hLWusZG=%_>WjGHCNFhlvQgLAHVcxzVutF
z{9y=Iz4TAL^uK;H<;6?Cjf%D^+OdlZF<L1}t$G<BpV#WB;$0QpRCHJIo{COtuyX05
z;#Ql44_YS>v$KlQrxS`M2+Fgo8tk;NZ4a79`-I*q`l#rsqL&(McW~jx@|6U^B&x59
z{wfBjpr!Q-OE*EZN)TLZ4pi|z<=H{*Ge3>Hb}WZ*$SPkx!DJ4NgHrLCijgXYsu)HI
zsQ6UH!mWXRKUTr%X~kpr{RA;3L6FtqG^D%k2r|4dn52d-mPXMSXp`(z#TXT1)gT8L
zuVS2v>5GF9%95LeEV&HHIX*gxT39UorN>zE`tGbdg}tcwQpH>q(^Pz+Vy22&Y_4L#
z>R=0fMhMV54t^vv_}pxhFq?LMP?|%h`$1~4TPk_kYgjntD-~Z8Q^j{G=BfCG=C?+g
zPc590NatJHLxNzQz>;$T7X{p7`Ci2$HAqXk6}1+sIJaM7KCml6aDHE^VwsAoDz4FD
zRjgoNDh{YvNkyyJN;jeJt5~CAgNltR)~Z;iV!g@?Ha7K!dm%xHt<sYO!NqK$41)XT
zAD#3zsn|@%%pkU?_(8>w9Hy4eTiO*}i5G$GDt4&2GL*YFpyYR|*iFH12(++^0q2(c
zGBGy%`(VkxSH({%_Nh4D*!ZbYtu4#bxN*9$h;>lKAr&W8oTB}x_?ZYC<_77V4B`kw
zoQh*AxbMWRx$Zwn{WA#K3=dgOsJMJO6MggN_0nk-XH;Bbjf%4ri;5GQrSnu1k33oj
zpR1jeL0lja6-?eZ$I%j4UVd&~p=+F%?(LNbv+}x%8!BF^NYL<$ikm9#s<=nvQSmDU
z#UM{dR`I)vDM>QzZIqXOTMfPqvLu6GP<{5|jXNs-Vz44J8N}aY-iZA}X&jPvW)S-=
znZQrscXZ>q<ohZfsCdFSL+?=Wh{ShGk5v>-k{P48$H=WY)-aY<TAIcQ`Wcz$Q!D*N
z=w-Ak#%JDU(2!9>4h=aqFqkB2$fO~&25n&~mqoR<CS}o(O+$7K?~h8(O3Vw=+|xl$
zIA^VNFBE1j4Y@TG)lf`Bk`@FFXvm`lJB{2%%Ny1({B~U<<<mgx%^#Kp!jiWIH5B>}
zF07$Q2><bUl#hyQ;EY^?HHRb~mT`BQw<R@{z2zM{87o6T!*3dX*HBJFc?}<H_(Vem
z4HY%i(@<YSB@LA|)Y6bnQW~micvVA94G|61G(<HdYmhW>ZAEcaC;uH1E?$usi#Saz
zXjF?UXvU}-8eY+GYrDjYv*c?UUe}PSA*La3Mv<a{Da5bO%o$gMyq(931(&A2q2cot
zsm;CgG<KR%5U8youEEq`g#zKRh^#@;pi<NtnDQB<lTqkeusg)jnR2Y(8JDwpdo9`4
z;AnVL!&{UpdFD5tHHZ-K!jf}J9SwE0;Bz#z!)6&pj&suQO04m@VDpEw9?Q2ioIW4i
zzN4XmhRzzgXlSURk%rb9+GuF3p^1iO8k%e9pHXn$Y)X^ZE%nSTPtPb?Xb9F{i=|c?
zT54cy=an^{PT!<Mwbjs0!+W%ZMH0=py@rl-fyGh>4ZO{9&*kduT@7>-?iJG*I<bq3
z5_6{-hor6?z6NIaLo{^P&_hEX4ShBA)X+-<Gh|v+{YFM_4a><@Zi`zV-0A8^3baWL
zgF<-@pgI;y12ynSw8!ey`M<^4YST7pFtxu{B5}eAN2Culd`Nr^+=b@ac9@2t8U|c)
ziNKOIZ1t&z;Tkq**r;IylYb3!HGHLEq=r#ctA@!MMr#;D(b?$}HH_6TP6JP_nc<Ar
za4@5opkd{r)SDRv;cSVbbfTCPB0E1MezHTFqG2le)EEpgO~V%)Y*S-8?e=s+{4Arf
z*Q2p9gADAF-bfTI>m`cW8s=!A{dZ0jyrltrNux~^a}veZ8s<?l8dhldM#Hxn7He3d
zVZMe1VUvX#7_7dd`K^||4`GIdoa2*OwqB98NW(w-r9y|Kr5e^Gie*}`)4T79do|oT
zzVW5IQo|}f(zw|Uo;A=NXl$!Pne!-o9VNrPsiQHTcrw7Q*TC{%qS&NivxcJ@j%nDU
z;Rg+SHT<LnVfjZ5+ca#aooo0tQSf3CvO~j84SN_yGKpOb2!oS$YhbFAA(JTOr#F4+
zURxC`Z{wN7J`MXd9MW(&;0Fye2_B&y)X+7P;8x)$nMC<r(JwQJpXu@!11~<Jfw#Pv
zejn%PG+fkhNyAAEr!<_=aF%|dfnv|rI+a_C+{s*>Nu1L#DT8%h!vzMP$NrN;sU^<_
zq2O#L!Sb+?zWSPUS;G|#S2bMIaD&#a;kt$bO$`PsW*uak@J;&oh1e~QR13aI#q@?^
z=MHn0Jwb+WTf-l8Y8`Lu_*26j4aIeo(D9dszZrFPWY_VJhJWcq8lG!lgt<#g)9^sU
zJ$lOSTD<1!=?^tL((pvXQ%bu-kTX2if`#F{MQJPxHH`k9NlaLo$^+aN8eTHO>&UDl
zOJ-3vvq;d9LC2muZbltcdZLaW%yf>OJGAM~+$=h#H!@xfPRgnyJ+mPEZoedESvhp%
z)KO4JAsxAN<kpc-5B9M+G;T*E>41*GS}cza&bfJsu!x=*yOTHAA;}+N7SK^IbC4}C
z6E3U=vqllN+VW~-e&T00y`nm}`eUnNVcU)`%#u1v>4@ogLq};HWpqSzRMSybM>!o8
zbyU(Z){whq7UgwRAkJZl=Rx(Cr4dL-k}K<|qNA#gDVc+8hv%@2P7Fak?Q}^;bsewi
zcwI+SN3xDrbiAr#NoG+)$JUD;bGFFg)LofHk=zz<YwF;Z<FFUz<;;R~`t(jBpD8+0
z^&o%aR_en;QksrhI!qlF<))*y4o!#7hC0qQh{`$?9nAFjJ_EM_8;wm?LkUm_9I2t>
z0abHMs-H!a$Rg6R2wR7vqiYr+bhtVWFG=P3nir07nVRnF7<k{MN5@;+b#&C#@urSp
zSp>;)Pl+cx+<vL2qrQ$$bqv?>j*bR8I_c=Fqak1Z(a}OjOO}VE#yXnnXhu=1u_k)3
zZ!<HCXinqYEv?BSxTlw-rW0<(M>;y{cvlb7{x&+=>1a<_50+{BvIv$RACo%hV7Ma@
zt~!4|8GBC;wibED#5k67jl=_mE*zAO{yGNe=tfh~(Mv~f9X)hh&mwy2!P@Ov7Evgx
zsF_u8UBHC1PbjFqIu2ZuPL%RRR?&}E;is24>kicMKA-9sO5U=HK{|%$_&^5_p$3yC
z_s6mZDgB3faD2>4!n4LF52Jx8xj!bWp{1Q!nMRA{>Xmuj%&cOBj?Z+=)$x^%kvfmd
zF^!g~W3-MjIzHDinO3J`oQ?@PChFY%j-6ken)9?YUPtBA(v4d#^;mXM+Qe1TBprOj
znVmHsWlUb3RZP*ra%xx}FBzS#V}_2|I_6M=OVU0&m1(AqSvrno74%{z9xZ=yzYJya
z>s2>THt{>_mrGykn5Sc@j%7N&(eW+qEt^=ZV?M1>$M-rG>iAB_<paSgm<u8T2N$H#
z^4~w3x=05nQ(jCnme7^R>M@B?bh(Z@M`J5>tfKUEQ1!gt$tG6Q%hpS4bgb3UCz~M7
ztR2$jB+HR8A)DC1;p@0$;Ie^DIyUQg%fQ<PwlJjV!Cp$bfgkBm3^)cd8rY^|JKcd|
z(Xm6vP94W}oY1jL$8H^mXy=SeI`-<=PpclC%<1)~P#UMQiG4aYWfQ#k!oY#>>A|p^
zq9xzSCVmc`>nQztaVov+NO;@Ll8@;~RALlD=Inx-6(@C^(t|k3O42#4<BSe*HuY>+
zvZnX`G?o{1T-5Ogy?~>mBts&<>bSyyNki3fBP7B@C2sg!3*oHu(|G>!3;We^ONW#_
z;FFh=U7X&Z#_oR8@w<-OWMEV>|1x8r8a!qF9R`0L4|P1E#2EbbU~lcdj(@40MQL}#
za^MBGdv<Y;UVp)5#9%#V)dzYow{jK#SjQ6`&vm?D+mQaV|AsR>yBPP#Wk=Kf^p~{i
z?15b+7~l$szOcVwG|@mN14RrJHIUgr76W+=wBq)=5k#%O&Pq8AWHXT62y!iEl{pNs
za$|OJb4hA01Gx=U9+#YC00#1eu)i?vNOnP--@-DVf&5{80Rx2$6gE&Wq>wpBfWsZ~
zYB>bEEAnP~F$2X7R5uVcP{Ke-162%EHBibxX#?dAR4_m@E@PmqfpP}8{kW|`Ek<LW
zdSAH^{MkxH1C`j9fsZyyoD|w^<X%uZV?G}dju@CTJ$E&O+huq=N3bB}Q8=aX_>z=8
zua#_|hJjZN)Z};<rcK-vw0gw|_TQ+E*9^SQ9t|wcAyN#ymFT5XAO`+POv&=x<hJu0
zAv`jNcsHb6%fOv{7O%ICNwtl@5#k194(*bp7;p`E22=x@0o{OMz&7CQikb$xk5A?s
zj}|r3Cy5){?0tI<;TZU^wS6W>u-qmZCtUL88xRKS80Z_GVAiEB!nb1H<nY5l$4=`R
zXk(yl$UuDq?-*!c@NYNK$UqANEs42EYHXlc2sAO!G$e8-M-VgliX)#kr>UHAnO3z5
zaahyZ2)4Nbv0MoSYoNV>Sq5es=wP6ufnf$dHt?>2_YCwmFu*`31D!cE13e6MF~I+k
z>}G(cU0p+?%APaOMd9`d)pClS26}}Z^);a66nuZLw}Cze_|C@iyDk^DoH~iz&j^m3
zxPdv)!286f*(^>SWCRgoNLUUIOPW1vKA`kC<eb7^l*$@n4h``c6L|Yc*xg72qYQj%
zV7P%1M)0oAXJP$&R*W+srIFA+VYGoU1|}K!++fy$aR$a4n7}b!4EC>x)5l2Wi!0O-
zuZh&o)?gcXvVkd~6@3vBoND00^0a9oOy1h_1S)5cUQQ2jW`yNT1KjXu<s1WF8rWfA
zr-8W!zA~`dz#0Qz8<=Nc5v|d{HwL~n@O@74oq_oVM&=X?sN6#m-&|^U-Q%1-eL&Lp
z1{N~*<`g_=VA=MuyM$UWu+qRP1Ir97H?YD$>xJ&A+Ucirihn|lP~cCOr><X;8fN=a
z&Rl_-)*9H%@NQronWQ5elQuB&8^OA7^$T-jX!Zmu=Mr4y{lMUF1p9bf4RG<>^Hi)w
zqbPHUZ3ea*NY5o2<PtZoN%t;FyA13$aKzy52lg1)OHVg&$iPnq_8Gw|f_#mwe=f1#
zzyU@H#>}OuyydPq;loDoHVYTIKT}-GQ@Ju-c{&r-am>JR1E&p~;qdoMCk*5~kao(z
z$?%pn({c%3JfS<wSZClOkvB=_DaI4A<+;QK0~=S$+>MDBuy}Yxf_rj_D+aEH-n7-k
zH3QcT%rr5}#0^S-9&JK1anrypMmZCOO#Djb=`RMJ(WngErZfyZGVq6iKN&F${7Z=$
z%=2Ts*u`HYPRoB`zPBXpQZB(QJHAqN*T8)P4>-wQl<v{9js>qPH@@k8kR-DSx43VY
z@_B~x*uWDb$iBFw%~i;{u|j%o@Po<7VIrrAmj)6{WHyn-L<ZIz4I*TsiHsr4TjtE%
zfzM=uCC{g_nn5y?-30eTvaw0-K>LK5M6t|eBDaZrCi0uX>zaS>kdn;cP!b`2p0Lat
zmPDpC7BGWQ!xygP3CRRzTCu_=ikPToLNZa*L@^U(Oq4ZI+(ZczrA*9N7`zNwk{s?1
zR_HvPFOpl7HgR}xA|JhbS}JFvJef36#SD%%DwwEf2F^%ij=j%Hsgeo4WkG<4O;t@q
z%wT~~dR^+`amg#zrABj$>L#KlVkX`&p?m4cCTf~^&BPxs-5MrdG4ZMi=F)sLVPPuM
z(br9+m`F8)*KDlZqD5{I<mCH;GYh_hk!GTniMWX|xkWk&>goM*i`pE^V(HfSWWvla
z`A9aQgg7)>-s&a{6P-+SHes5uOf)dj(1dNmG4ZB}w@m&Iqi{_K%AA|?$77xe-$c{G
z7Ox+32eG=2iMrua9uV;Tz_(4*Gw}{BaAhD3mi0{x-Xrk@ge6}eVof6xjZL&Q(auB@
zQZv!aL~|3|+dq|CaG|<(P*MvMEh&wqX>CljGQsSTGfQjM<Q9}O9Xw-_;PC+w+MDQL
z;$1V?8toXC+#Dl3Bf(<%URc9jBf?!wbT#p@iBC*)Gtu3|Ao6CShl!phdYkBDV%y4K
z1;?uw#kew!Yr2kg()&`mCI;~7A*mm|Z+U9vBr%X&nZfSaxizUQS;@U1mP1T@U<QZ6
z!)V^8r4MO-CWg{aZ@G8JC36c)(SlM=5*-dm?UTf(CWf1s{67hs_{_vu6XQ&bG%?D=
zqhovt8AbXhk)_e071cc!yIR!ZEwiujCMKAeWa4uZ6HQDx7i4HGc`;?;{t0C@I7wvh
z6q{mVsu>&^Obg5DCcdDK4h1iOeYQMx#{Vi82XA%GHZjM<N;AkDNbO4#^Fw$p2YX)n
zifS^!H_Ydm_}0Yvo9@IU@r@beD&J=GxL<waw6uU`W8!-g3r#FFvCPDx&<B@<CAXLs
zQ!=+)0(=dCCd5S$SGdbftT3@4NicOGpN$tvt4ypmv4-+oE^RciiM^Ou7v8Qn@p|v1
z4WZCDN010{$irq6KZd=qa*N5mg&=KXJrg#LMQ&znGqK&o4ih_ROJ?x*aJx+GrglOJ
z>@l&|#BmcRO#EbGADf#vM7>{<%Kz%}CA9q}4$$|1b-Nx8Y7VoDByq&VQ4>F#$nl3u
zq4D+dYe{10+5q90iHAvo$R|ylqTEbeF>%_&8H&!t1rujOZbz?_#vGN-nIJ$ulOQTV
zyoDf5y=dZ+i7yXJyl!uluA0Fz`C1rWY9^+<zf`(T7e=sL{RrY0P64!>ZArIG{7zfi
zCVg^5`qjj5938}Rh&>ROA#T$V4of8dCk@raU(~OOrzW16_{YS*ChnQIPp{O|$qe7$
zz8lK9c-`~|9L{t1A<dG`GCz$w|Bo3c>ZIr8FUZ*hBI6C0Z~imQcy8hagRm7C#!C|k
z7BXANVj+Wtj21Fk!3vSY6D=^&BA@(83zc{}V+t#?TF7Q0pT%DR2l-ES3pp%sAy4?y
zjwB`qIW4fvWg&M65KamKgk_$v%xi&(Js;(_g80vLorhBeLw*WbJea`EZAq`KlZuc?
zn7bAYfns6FBiE7^O7ZegnwNz#7RtH7cOl9Wu<*T&g*M7tsKDXaNVHMWLM01REKIdf
z*+LZytt_;*P}M@jf^NaEP|bp5A;m(fh3Xcf7HV2}%|fz;8Wvu$@G7N|M^w!t)(nVh
zc|^}&P4>vEbdQveN+!N;VO$>ZO&-xKkLZ<0#4NmFA#OpokY=Hlg>(zGE$ql6Hf^@q
zibUpp?2LWYnLH?J_lYSMRCe7sqFK0*N8J4nEmvN_O4EX6p`L~M7HkWSg*p~rZ-8sT
zv*2409Bhc0o>#OBfth_{AM{8WU)Fxp0{eQ)!rSD(MU>P&$Qumd%e-PoUhxip{AHnu
zg{Br7T4-c}3^WcoA)T{%Mg5aDk^jmonptRWp@oH(G=O}9HP!M7FQ4d`PyBBP!}5tX
z7TQ{P-@+gZ?JWKg3A$P6ZlQyPjutvw=wjhr3-4LzWZ^{tXF)!(C11eIm3-o1K9MKC
z=t>oDw$HrnP+~>Cb;xZG3q39LvCx+y?VZxg;%7+$c~;9WIGp%L!HD`<=x<?wg@G2v
z^o(lxMW_4$!B6rB(rZ`Gv0Ft3TNq+tq=iuyKCtkig-<MeO7pWY)WR?eA6uA}KVass
zye7$R${%Pd%jrN_!$X0Lu<)6MBl*Sc{Ng}fGhYGGd}bP-j%KG8CRmtgVXOs8W1NNY
z9IxY03)Kq*Jfw6EOl6XV&qGp^+1GCd`^tUJb_<A31q6pS&B7NJ4p=y7VY-DG7FJkT
zX<;UjEqrTXzJ=Kq=2-a3!q*mt7Z6`kDKpdN(s_HNkUq;r1;o5iJ`J9l-&ojLK#&Jo
z(U09z7FhVs!XgWc=_3RRh=mq7#<K;)Uj+njNnweFr52XaqiI_C0tw_SD5Qeok4}!>
zBV}S}467{uIs-pi*h<r)&sx|>Iu_PhSWkWmiVfiy^@0JxcgDmxv_1vJX0lySY_ae|
zC?Y=ET~J&oDC(Xx2ye5n-NGIVd+8%&+rlmjyF(t>DG@H#aW2db?14@8G;}DspDgUN
zu%BW-X(tp4SS?gY5JxT~4p}&C;a7{Foy5;nnT7LoD+@<09J6rR!Wj$4Eu64$(!wbV
zluz42Vqi#QY9Y}lzqzbX;NWNJ9Zya6buJtc4f5|l%}J&0ixw_fxMtxxL#2f)42Ffo
z)ewiqv+r==-8Tw}r-j4~3%@X$S-554>P<UeVNs>9PzsA?g~g|Z1u^Fp7Qb7#ZQ;I!
z2NwRY@TY~pE&OBQj)lKML*mfr6hDUe7YmDj!;bD+xW`t71MTD~BBUY#+e`DC4=p^h
z@SOf-;jx7$jJFn^Sul%;cZ-Nmiip`o#JVD)+XdrD5iz4j%1d@yL?qbAU<dv+|KGqY
zGZht;i;DXB%}h2j+h}g1g^esWvf6mX#;Z26*~o6Aq>WNGa@fdeBfpITHgb{3aWlyV
zY~;4FZA@VHwTp^8Hrf>xd2QsggDCgwGy8v!2oor1qmYeaHtuA#w<OqwZ4|Ll)W(NJ
z0~2~sE71G-7l9cRw^4%OJ*>I%mb0Trw6u*fHY(ewVxz2$a*XyiCXS7iw=r{0rV2Lt
zykX`_u%{Fi1W18!rI3duMMYH`w<km-8`W(@Y*e$ctEhPIgn2paHyS=owo$|8|6B)c
ziTtprIQ51}pr(!2Y}hs&8?W0)v7y*dN!dosMlBoZHZDw!yb+dZHd;Qlhm49O6$?gG
z+eX}mC?;eZZ;pz5`MUX9G0`i*ZdXhUE+#a}yj#jg{}_f1opNZNQu&!ZqnI#lSRv=<
zMn{I%cGeUVt_{z|+cxUi@JWzrniP4{#(`p@j*YrD%yEJIFWv}Tj7`c;i@X(5AX<GJ
z@7QQ;qlt|MHX4R)8--7I)->CF9yH{Y=epgLBl;rJ%;x`Sm|4dLm6>KljDvPd8?9`7
zW@Ds{);8Ku)HeFsXiHsFVm3O_HZnWyZG7E7+R;V_8}r{V34is{ewRud6X8W_oo#fn
z(Zfbh8(nEs+3apMy3@=;ef53q|L56V(<9Z!M0(liO-+r7e7N77)jeuYioDe=rJs%d
zHip>vz{UU@18ocnaftSQXa)q@rv!A^WN<jfX0@CTZG2?o6C0n}7;0mfjo+q4J`SH=
zFD6<~jr?6RX!5+6C|X<$w=u#7;YQ;l>U5V+`Dm1l(KhDV_{zo@8)I!uu`$)gI2+?_
zekjBE+{Oele9xR{V^T<Y>WrXadU3(0&J1}nP0n{lbWN#WTuig^1-Z2`%f@sY-`+81
za3GT+^OpveKf8OZazT5xjX5^Hv@yJRU`VWF*}1rQuc1?MY~*Vj*C$54wNYn#t$8-T
zY;V?@X@A3hr$v&cN9NmLxxmJE)JSo$xws%Qn=i7lm_l$c+`$qXOKEZriaA(jW4VoA
zY}~Z5!p2G)`)OJ>R@qo>V=KMe#u^)IZEUi!*~U5>>uqeXvC+oqt&xOwk<T{U$3i~;
zC@#{fn^{YUqnjgJZ2Vy3M+*Plp!f161d*2?3Pio##ts{MZ0w~gHID40aBS?h`L|GF
zP}hJUad<6gA30DmflKtCZ0rlAnqERQDj_PjjvTac$i`V4=WHCN#o9P-<AjYPWWHq9
zqa<a+eHyq!j}oFnr^v}G27!|{PLXFDXJ|hyB43mcB+jQw)5zKqVqXc7bwlJl9ofbe
z8&_>yv~ely_cBdxZDdK?$i)>Al6~AHLbk6_3pQ?0P#0}dE7c)*G`LCR!PbEJTQ+{R
z@zO?ugWqiYZsT7YcNuDEFyyUW<R2S<G7{SO%f{bfFU6{xQg;8~hQJK2l@MR#w@LGH
z$%H<a&3iWP+jwH*sf`CV9@=<h^JkJELcNb;qZT=<8bxNV4jMLZA8_(49N=>sFDRld
zcE*x|9CDbMn@1uoBN-fIbdcl#4iX(?a**9Y4hNYXWO0zyK{f|PN{UxX3J#}H$-n|z
z4s(t-iF|U~C|D{Xr-NJ$zpsTJCB?XsqQ<&_GG+3TVZ=dR2ZbCIc973Oeg_2{6m;<E
zmH;Q(F;caCWL>)mn{;j#SyxgFscxPskx<0JvBC*t`^{#N;tonUc-uie2PGYpa**mE
z=Ag8LG7cgRsyQg@pqzt>4k|e)PlWEdD>#8EUJh9$K!z(jsN$e1c_<~eR{#Il@~ot&
zTHU77B?r|VyyD<h2T=#f4r(}oDOM>ZSjwdWTOG|bscodDgV!9q?jXg%JEg>cQiAsU
zR}Py-NSr>cBJ)a#HyornFdbM9YB@+JDF>Q^+75pL0NH`!U|`3{v@~aPDbegllVtm8
z_LWj%b?1mq27X9-XP9enAdMplr3D2=1lxh*ppJvO4qOMG1K)ulaN4Ag5QoUTXuWrj
zy5nk?)JuV_kvAQ@71Akt+2Aef>yvE<T^)3D(7@rZCeg-0TL+CCG<MM3K??^>9L%p_
zHg(X<3H*W<SjG(I;u4)B^Qn3Vttjf!qBTeNLm)|NZ5FT25u>zd=b*iVcOAUvpo4>s
z4*HfBG;9vGQ$w>&Y4M;_q?5xW8C^Kij)8s7>kx2GB7ZiIlxY*`PD7%69K7$Kr-NP&
z`Z?%NIwcc&JLp4z+F2L5-YPP#bf6s?;o{O_fCJhjZ_SbkgZ~N~aFBz+4nA@))WML@
zL_cuwp@SWz1uc`-#ZJlg_`=RG2Om3lTqxlas-|h+LAOf>MxOP!X||1waPS!o(!p^D
zBOQ!#u$TeU!Dt6#9L#bs+rd}|;~abuih8_*2@a-&@I(ib9DMFzG7YaxK+~z0QauFP
zB?O|YQ$|d6FpUxmD<_;VDyZi4u<Z;7GaXd8^Z&LwHbj`?;2Q_uI{4DTTnAr;m|r`X
z$I3EdM~HK&jCd3Rq(9%mcMiS}(H4Yd-m(E33qyDjog%ztjVLRYGWb(I4t6?N?qG$3
zO%66YSm|JugLMwpJ6IhyT;pJE2y`ne#)cG@{6}YlgN@;%SBBRjSzbHCM_U~H=wPdZ
zAHt{0vdgE-ifs<IhZoVv*oOmyW!<cXDZ3o(c5u+ap%8hGgP$Di3*o&Eo|YBm%87>i
zjr|S|gq3U+e`&<a1w%U=)*Sh-{^t;A96mZ4!qpq3oN#cGbR0Z$aEh_Q!5<F(ba2MO
zSqE1gTyt>F!FdOl!X_8~qjr&QSTChsjldnsd=S0t;7a(YTRCx{ls&qfxbE;TckwHO
zd|3aBgPRU+Q48fn(VyJur-M0&SKH>!{W-aR4{>hO?~4AvmXEg#7Ib$U{OjPZgTEa7
z?ckrVWIa{<LpTt^_Z&QM@Gzus-$CU`&gt;cBU-Y9Ct*EV{X4A8Q$CQ)a|bVIhb{`Z
zc<CU)MGluANk#@28C_&{ktN(tIWRIY(M6^ZUOQb*3)^N5Z?n0`9s+Nb7r7clH%^l~
zl@}j{2)SG&xqyq@F8-LB@Ksou$3@-{KVMk($>3}$FUZx|@?yw@K!ycf6m?O|MWGO(
zu!|xtPHeRQxEBcIK}e*yi&8F1yC~tJWQdlxf{0WQH;b5M!dqgN4FR=+Xj~x}X?YhF
z!kUUMI=krNqLPcsE~>bw>f%ioZ@Gws2<a|ryQt<ua#7ty)WxeVYKD)JUDR;#iVOZ*
z<>B9gPmJy>m{NMrD+FG1gU^sooE%j0dfi1zh?W|b#E*r*8!poRtEuH;R&s{Op9ygn
zvJ2aV<3e$vy3k!1E;JYX+Ry(=(j?5wBr}=PtdJi9y!gm<gAYvA4SDcFn3cW@GAUea
z{Vkym>DSN1i%b&pZ5Q=iv~tnfMSU0VxENYN9L^BwUqLhoDYtY%xS@+i;Vt3DVNDYk
zP5-ND7S=R((c-@vc3N=q{|liFd(RMQ=b~-+boG`bKIPRuY}FwwJBH=EF5df(LZ|<z
zb#>8=oV(cOqPvS8F1~az*F{eky<ALiG0{bD7kyj|cQJyaI2Y;bVt|W*F8YzIi_sOt
z*A>K%6~uyWk@sB;axvJ&5Vk!PIaNXYT|qF#%3e{FsVF|6Nt`iwedyw&5FYwp&9D&o
z*u^LR)qF};D+(fi=3=CaF)qeZm}L{h?#L*1>Y{GNz}~u46d#_Aj0?v#-bMS}k-j+`
z;_#aEfjh~?=Ptf*G2O*vvb`fR&E@YhoGH{D4Xk@)d+*5Tih^bD(g{6!MsDtk%%HWn
znC)Vwi>y5&MK45F)-+dE6muw((h2=bC9v}SgORUXeC=X|i<K_sx%kG#_bwK?Acb$k
zash?YEiyl3tlD$?I~NBk3O*&zi(EXq5Lx14sf)#7FV`vxl3nIvSGUOWuq=Khz`S%d
za;Q;cm5bFbHn`a6;@h2(HDS4q_IW(AHl)9=S7g15ODBUSkGn-Sx!COD$B@qBvI$#U
z{6I%O8a!=rJ;E;5oR7>bl0aa)iyba*Gj6!pNqiS)T%2{W+r=IiKf5^MVy}yz$h?b#
zA;EoNkNbJMJJR!NBvU2vLHEcZ7v%G>izdI>1d3M@{Wmz<irYu2=xveX3@jmV%*ER6
zk@QO9B!#oVIpyMX*l<M8V3-}cM{2!lzg<b3b8+6qRTtM>TySwQY<rm++#VtQOD-Ds
z4)7`7D=v<1i)1(%sdpuE-Ng+Tw_N;63p^kBg<1$3c0Us7Qb`b>Xy_gJ&BgE3U6F+R
zrvicO{W+-o)5RSIWDmJKe%lj&Q$a2sGpP2C{Nv)Ti+e8q4R8DPiPXIuxlc#l7kS{~
zVOTk|k|5@tWzO_Ue5)t&#KlvFbPriQv^yLrS|;I{i|15drNClegl*aUWe6mA0jUfg
zGKN56Sh6Nl2xJb+N4<l=X7iBULk<teDv5n3B3~Yee7z^AXPMhWl81sG3VG;XCIKGu
zdC2b}kB7V-&h&{KEaY5$C0LadC>KP|0v;Y#5@~${2^98F#6vL;#XV#yno!ik!9oGf
z$Xwy_r&K}-FUW^WhGnxo5mXLFQN}}AGUFqsk8&Q$dwAsGv4;vCDth?L!$=R6JXH43
z$wOxkRXkMn;Cm1rA|9%Fh<SL!!|nPhl80A3yy~I4hbT!^7QK5#7Y~dkd;Cis)aV`~
zTw_4Aria%&yzXIKujufPqE&{+9yLuNoI*M0jHP<P2LsEriLy-dP|Jhn@hBO_{95TA
zYI}%>4L`Y;<yp_D>>+cj6xBo9kD`i)e|kg-^jnh1O2dQc!SUdR1ltdbo^6_9d0=UW
zWy!%YqIsmyC7O9)^sVtht2!R)dT8pQnTIz$yyc<3hj+qW-X_nvV)dw<9?|hFoj3YM
zzwZ@o;9=~yk%k@`dEn^UcaO585e-usQ&#;WO+v9yGH+Doj~CFwLmRRhR&u<&T6$>Z
zAtj64+C#(2BBg#bOaEv)5A8j442SG2j&$&_VQ@_Al|o_8X_4~l@YuT^-t$0!*N2rw
z7Y|)MyzgO<hi)Fad+6(-pNAeEdU}xONBVe}Rava7EI#X=(#zu;)HoBW{z4Di=^eXU
zS@icXz(b!ZVtN%Z&;zOn9!dCB#Oqapa<GRX9)@}N*uw`NR#p)oQ8=?AoEAUyf@$<j
z6>+zU80vv#o~oioRq=_3PdyCxFnv(0c~vo>su<y6%4UbawD5M6htVFkc=*A?7|PJY
z_Z}8fvmVBKnC)SXhY21glD>y&q}De!Db&Jb51)s(OR9=Vol>ZaDIT^yHL02}NUcwF
zx`!DQ#h~ciYBj0QnI6)HL}$^Amn4$a;$5N?<Ch-hdidJIJOb5fent5#Of1(RN@{HK
zjfZbNkoW@fzc7&iulXJ}pS5XVS$jsm^YGiyD5))?(mky5u-d~C4@*PaSm9w=2wd(P
zUG5=aSt5DkHTk>5)Sl6mlz*@2hMrMc-5Oe^hxH!ThWG=9#>n1=&>%OlI}aN}lm4S&
z%Fe2Sk7)4howq-7$R4hHxZz=&hwUCtcsS`{hliaW4$$#KTixYhkB7Y;c86+WzrW2&
z_=(=yJGy6a;y&`(FW_W9oqBkT7e{o+!(k6cJRJ4#GcB`z;D%dTrW~A~SafkB-Q*Z4
z4~V_eE7rDu?6`;YgrL<a52rm`^l*u$725Mz59er>15=Xw#kTj2o~KC<3qk?i^MZ%p
zs|o^_JzVi{EgU1CG6?)$+rCP(`6xPbY2vsZF-rRv4>yV6;a?B8X!9Qa@bD+)Pa^aq
z+Ihbqq^w;O@W$wo)IY{Q8@j{b@8NGottYvw4h_N!-6{w*O#>&o8>;V~hx;C=dTRVZ
zC@$)2Ywz3-LwMC^F`5lOIQhf_KcAb;4?aHm)C<aIVfoy{ix6PVOKLep$Pktp!!j`}
z`81P{%>ThzLLjRj(Bz}+;qBRTDYwnUTt0I9=<j2IAH1TF<RhPt{5}xg=JAo&4_+9U
zw_fUaEJlO^J_`D<NXkbcABBC?_7V3{#79vdReeN!6!TG>QQb#*A0>R0^ijq~SwA>9
zF6E<i2;_<g-tuKm5+8mxcr%k1e^pn(M@1i%eN^#L$qzmYaAKqM@Ruw^<5RxES8k2e
zWSzusq*U`E`KU=8AJu(CeZ1o1RUgSd`fdn5Ajz}x8X?S%ShHhx;+iwkoD~v(i1E6Q
z6d$QRUp@zW=UYbng$O_G@`jHzegNC&fw(lKeFE95<%8uH*Mj49vQcGxa?LH0>_g`O
zBSN9vF1e~7{3>(QE=lu)Upx^oeDJdp#5Dcj7sNb{cYL@$n)qny!}H<$Xyga)*wo~&
zfPB2=<82>xeC)U&)%C&mLf`bkubC0xm*_scBGvQJz(=;#QhgE}lK4*elwXMIdLq`)
z2j4lVG$fH_V;}tD)7~w?Z~UA2Xzt@ZAD!5dkCr~#ax6Yt`TVw6@cYf5*Gv4tZ0qp0
zO{f&U0oy(l2nXBIM~ASIZ~If`{KD9~K9upvd~2(-k1jrX`sn4OtB-Czx`(ao4bs6C
z!FwarP7liPjI?2J@OM{yajQ2K;iI3AK9ump<hzSg?@UN0!lEAoWHub=<9+s6D7xRr
zARmK$tn;zn#}JyIkGVd+^6?@0p<sQC^D)%NFm~!=gpZGXeB$F%-eyj%9T96XruIxs
zomV#bh>}eB+V0qAK1TW&#pYT{{fNksCuOvcF=RU;GQLcycDELRxs%hz`<US43m?;c
zO!P6y$7CN<eDFV3K4*`Y{m&wT@SV4#Z)Qy99|2FLrhF_qB5zGd&0RlA=4berNqir3
ze0&`d8zN$skE0R6>(7YDo;QWSm(+f$Y-dR&{?|U{k%EuKKECnst&ashzVnf_npkr=
z{zvQRd^%AzQM;P>-p8$+shz5cg*3Lr)cV!L&}sqMB|et=Smk52kNQ*6mW605eaxsP
zmit)YBjHnn*UD;w&G%Ll@xAgI;tx&9D+!Kbt&hvq#FJ`bgO80qcKSTsz$V6o`q6DZ
zw)@!ZV~dX;XxOygq?D~hYf)=xr{wSF%T*=eN}`P<C=mV!&Dy*vJE$y4)Si--)u^>Q
z)aD+Bn$LsVy*_>lYp&)^*%!)Wsub{lz{f!!hkP9NK|0TU{Ose1k25~b63xdkA17(m
zlnGLf(}0i2Cqm4!SyS&$P0Q81*2gVton|XZB=3nWmBc-z);S;NDF+|FvUeXBL;UR>
zGY#G+|C1&4l8-h>xg3@Ru7to<AJ_h?xgG*H!t$4}ycw3SPfPoap)yPAT^|{$i{DAS
zS*_b)`A1mt_RkQw<KwRo_&Y5B`S0n!K7N-3(e5!+W=g#uGDhHmkB4Cm;YT6x*vFF)
zcp8?^!gB7dI1yfitvGg?QwD*I0_hD<y8#jfG6}4xi<NbeSs)9KMCyWHb<Qe~O$0MY
zq%N`x<Pa!S2Zie(r$8=&p#sAMatkC0m;#mn1o8+-0@Vfb3gi<gDNsrvzrgJ-v7!RS
z1PTZg3~vhw6bUarDje2~>>cIBTVDJV-oM(U6lWJhBRrzvZMB}U(jibzpnM3F37?h?
z;bPTA1%Zl!nINhPa8<OWU!-za68Qc7$an9h*jXLIEqX*F0@Va+Ru^wp7c7^IiA4pH
z1!@b#1>P=V*5Fft*92Y>LEgyCt5-#^2T1sJffNCz&1nLu0@G(kS}usZ5u(MywnXF8
z!)44`AzFHf^KNxPOj&?zs3F6|Q9=Z=q=hvcqb^|l2QM8FvDv9WTY+{0u7D@dK%k+3
zFCYZoVs`>{1m2xyQ%c-HWm%V;2%HH2-<kisT#st1F5aO|yGDsnU!d_mn*dWF)->X+
zKr0cX+)V_U3bYVtDZmZMW?>T&B;1^G=oM@IL5v-dILkI4N7$rw*szU2t&PELdw~vI
zj0*G#>pKc`66j2Pf%n21?$2|ul|Bs8sxAUO1bPZ|73d~{l}LB0;Im-C#r*AmWiO8X
zOeA>JH^$1o0{sLA2n-bHFM>4}uhKn(@@B8-`vQXmJ`ng&V6eat%At6WlD+*=^nZyN
zfs?I*f!BOL<s*USjZ#?ivA`z+2L%oZd@3+pV2Qv|fe`|q3Cs|fDKJuCl)yNF@dBd-
z#t4iR!NTpph*;xZQRewf?B_3ubekBNATUv2vcMD$Do1RRz}z_zrs$v3zeYuPU2NiT
zZ8cS3-lO<53Vd*olN0`eMiN#MJ~GgmB`}+&BJjPy9Dy$dzUEVUQ#O09z*izzAh6-c
zPh$nLn7vCl-w1pwf_2TDYj(-;k@>_NA6Y>Ds|&tX!LsXYn@<-C@C<!Xh-p-@7t;&I
z1P9zKmkBHv*i3(691vJZ@d~ULSS7$^<7$C5BFMd&$rG7lC$+W2tS<Qf9UBBT3T)!2
zr$qiI5ZVlv4?`a3CfW}IKML#;*j-(04ZCLL_E3P^!g5_{>=1aCE4EXhS9tD!_KV1F
zfjt6y1-kF3wNGF_qfmA66IGKaXO4=oBi#eE(zsbFD#kCf%N;Zi3;ZnbufSb_BLYVS
zt_fThI7T#qa{}iXc6vll2%HwdKeW=<PEzLmQclr}qhjm$2v??Oi1Ukami9AK=IsR$
zEU7LEToU-ROUj0UDa8gvFAH2{lxvu>sG5C6U~S)6p+Qj+WX%nMUj%+<C=<9Ta7%y-
zG#bgT^n(5oite|t>;J(t>_2EE6C-O%;tuJH;D6r+eI8iRUjly%occeez5_~%;`@5Z
zDB+Spf(Qu0^z1BgcZo}m-80=Y)7{fyP;$;$f&?+6AR;IriedspL=<ztoE5V_F^du;
z2La)`_4v;@-#LBWx%H~L!b_EUcP7S;(tgGlkJ(a&oni8Xj*~h{87OVwl#bIn&N2wZ
zbjp)kn=?Ab&58XhI;BCbnNxU<Qq|G$&&Yo|E>eTL`dyGDId!k>pJ$-PT_t=ncAqi^
z${MI*psE3WdQr~6<qYx$${VO)prQeG?C7}IWdhDmjs13IKPD?nVV0-TKfbw`Up~M<
zH3PK_bhHYq8z7%*r3`BrsA=GnnX#@T3vU`9oA5zzwp-g!T_UJw;0gmz8Q5l^zJUe?
zMj9ApprL_A2D%&QVc<#wjSaLl(9XbB2AUXXVc;4AO$}wk%?w;^s2hZH=+j&{lnMKs
zj$&*~Z)u>FfvACe0}(@6sb=8EWQ;FzEZJ!>I%dp3fq~Wr+E5g?M#$vDT-Kux?a!*1
zY;T~0fzAfH7$`JQ#9<ofB+YTFTWo;kSuIQQEq;Z_7yUV^m9A2zL})jm)N=l+5*F)e
zpqBy1fNP+)fj$Nd191a=4fHcG(7+%A{iV+X3|#6Jo8ZIV>V_NyU8`J@ACPSHOA-c5
z14#oZ1C}(jG^SGvEWl5X?vLqd12$#L6RoBFNneTSpYQ9FG2j`v*1&ZJd;|Q=;*f0_
zI5?+&U|__O;-6yrU;`T`sX$6kVK5;cLJ3Tc4K*-~YPwS$t?-0l$d&4lXSjhUCl`+p
zI&N}ow1F`O?l7>-z*qz049qkz%fNU86FAHjktqfy8o1%HGLs~EqErd{M$4IOp!&N0
zbhN1krpa)oix6fAJ{i-gHOhRpfjI^i8(2d7G%(k|LIW%2$0`@-^9(Ft%?9QhV3JR-
z&wF1|H-$+pu-GEnRe@e_)1Vuv(CM+84csDNsR4$jn`mj{i^;!L4ES~fLz^f|zD<%e
zW(Gs%-f7@21DgyyYG65AH?Y>gIs<nbSZQFjfi+a3fmQN4U*U^wX7|5WDq(GV7InUl
zme0c<p%kW?n-;`K*Bf|%!ly|T=xk_%^z9*o7vIGX3VwT`>I0MNAjrTYw2EsBIcc(z
z#|%7fsHtkR&?kgGNw2YEG)~sWEIwNdY^641dgW=w*#iA(1KSP!W#DfE&luQY;A8fa
z-fCc{fj11iNy!*^-oVSW76ZEs6}w)L%GoFt`l8^MXre>=^P#}Wf0ZuwxH?dJjdGY2
znNgs>Zh&;d-hR6oNeoaX?;CjAz&n)WmI#xh7OL3tu5_4ve$P;6p#&dDVOH{?fsYLQ
zzNquL8HJ>u8u-k>HwL~n@VR)$7Y6nixV=DU`2CXoq`_1!-f?G{uW8;+As^O1)m5v4
z?+koz;8z2`$%{W2*lXY?1OGEnW^OT`9|b&Cpwr}jmLYg+BEN_QlEV=3yM)Jm^7`8a
z`X2`VWSl9`w|z2@v}|kr&tLoOH*kQa7)O;j4jMRQ;EaKP4g6!^uz?c>P8v8u=}G;p
z_EP<f=f^|{$AwaHZ0;1Jbh-YV)J{vJePx<ro;7gJK&d!N#}S*?`8<Q(`hFMa*K=b3
zG0e8s`I}r94dlg@wA;4U`3z{Sm*HxkEBrVv=lVa6@^R(G72{y*tg}KK{fqkZs{O>Q
z{uEa+N)JsJ4r{G1XsuU@s~_{??|)T|193Et<El8S#Zf(u+Hus0s}(|xIBLe#T)>07
zJu_l2-xaA9$E5MGRju{9aTP-v#L+OW!g#$nt`NYF80*JDO6IoKI#t#vu1sR-`$bpA
zab$n*cU$YsY7)oQaWs#kX&lX@3D(AE`28g<;vj7mSC&R_jU-zNz3P{KKetwsrWRLQ
z8$QuE@&%tBp?>7IAdc2?w27l_9INA46IVa-(k_lE0@}yXK|o;~-Q(!NAxN@VsQL+*
zI64XLoa1zfqpRR<LQ5|3`{c85&p3KXa*WX4La&RXPaJ&(_lqMPhb_2&90TGQD0omD
z@i-EK^*9W9M)g&7n!>c=ND7l2J}f|*5_+ka6NfKJS7=74C-hR`KyWBD8^>S)tl`@K
zugnm^ta)f0!vqf(Izs5kT<)kiMhh<4T$Y8$3LYnPe6GxdI3^07By@6)&sV0#F)fbi
z!dVo@;y7mHa%T#dC3JQia|B!;$6NvP;#eSnjm{Tv`gr*p1S}MK=6HE#@mUhb?ZUZH
z=u)BN-xSBqIebeTx90F|ajbu&3JcsJoMk!wopIbHczGNv1l%ojmC%)O+#`T5j-NE(
zUcr~@A?Ln09?9k2AIDn3>n@ea@gESdA&v)goQDK#6#8%+yE^2ts!ee`DxAkCx|Qme
zi5}0De<F@2b9i$cTXJ}798U?}CUop3HM(cw*uiL!#NSCg8^_K#S|-sdiRYwD1rrrb
zJkLhscp;7#<5-ly;sjn|SfF7i&^w{-?_P=HOdS8l@oF5e(O>u-cpM+Z@uA>1guWTa
zZUJuzeOo9?z7xm0Is9H6@8|I8*7`?rd>qH$aqN%d6XAc8%l$Nt&vN*40bj(iC&&3R
zj<4eQT9W0a$M~?JZzcI%9N)+B1EWD4e+cKt+*?1#u~+a<InI-xm;WV>UnTjQ(BFkF
zTwj)1tdq~5!r3SEFQF%z<Q)*e+#{R?a`=#de}o>6<GmFnmuff~$1!0Z7kWY{vrY;)
zCG@n=s%`YMahziiPM}Ew=i~T~VL5?nqJ;|#><Lsz;Gz`H6DI2^l|X61WrUU$S}vE{
zp<!Od9OhTYmkGXHXeFVQbGcOnR27N^WvVAoLvUT8H50gHoce&7Pc7lpPN0qea$fvQ
ziK|`$R|u!R&<45Oh6yyv;VTnpoWm>bDruTPvjlnw=jsHSC(t&*pSsTD7uT$?h48Nt
z+A@Jw0wO|VLN%dLq4`2D^`t;>YoTotxWr_I?Gk98KnLL$3hg4aNN8~a9WNy_kxl|S
z3w`lA^?g@Y!QB!l5zt-e_jwhV)l)F%N8&yS^i5zy0wWXXmq7mnhDq)Kp)BAF7?{AI
z1a!eh0;ybXJb^?Gn+aHglS2O~quSz=PQVt9lPl>8$O!ckxTcM|XAdM93e5^7b8rIJ
z3cgP0kQ{%g0P1~sj`KvFyio~^PGCj?GZPpi{AohR3LTd#IbOho1SaM<lLSmoV2XgL
zIsS@TeWvH|hWq-@N?>*Zb90<I0<IUzl?Hpu%e8ruoS!SRK)?+`7v?m(B!L?fcr$_B
z2`o+ErUW)7@Nfb*(`ac<Qux*cZcE^f1ePUmyKwr6k8ijB?<>AL6SzzGY`0SzeYxNj
zInLb)tjyti1guKnUIE*0DZ^LztdZn>)Zp64{Rynim0y>@dchCmI2!~!nBZS(t8lt^
zp7N|m64)fkT?sszEBRPL{b`IT-<Cg~z!SoMGJ(wrY!UoSuH;q$PbIJ|$9Y=7cA*Pf
zs82F>B=D>xcjn4Gm%#Hmd>~YI{(>Z5<SZcI<y`J70$xqvwH)X51m4Kub*S)G0&geq
zRRUiN^PL1f7w~Sb%zL!wHv0Pse30XOn7~JZKNk9l&`*VaCY1dd-A4aH@SX&|<mhhr
zzbM2D+;0;2Hi1(KoKE07Df2@D|4ZQe+`B8z_W3b^y$PJmaehkRAHhE-@Jj-}=J<aJ
z_)X~V3H%}8PoevS_I8wT`1~!&{Rtcpa8T$Wp?wyrz8w}!a3q1FIebjOaiJ%KCd*V9
z<EuK)B=E0r%9+X-&I-;maZUg^=LP&H^n%cfIm<64uap*AMkvdd6+mAupW|#<8oA8G
z<xE;Awou7LWfKpX*l41PiK-?NCQK7BQO!hwiPk2no2X&pN)wGu)HG4c#1$s$oA~QY
zNo^B#O{{LC*O4SS3)|@RO#HWe&^7lLZ*HSE5dIr&^oCN5{6;2zZKLzyTUVKAVxpCa
zh>4~qnwe-};u;fIn>f3=_`3?l&G`r0?PKTK=+)cmRrg1TnRQKDy`}KUVHr(uzR90(
zRauvqF%zBJ>dZ~H)!Ue8Yoe!#UMAX^Xm6s6iLNHzY#-}DIhZJB4R_`hn)u`25;8lQ
z=)~7e%x|kd@Ndbewt8gmpq|SIJ<&c!+D%$n*;emvqQnH7=)9+dJzT%1q=zJldz<KE
zVi2n}(bq&j69c8W&29Dm0tT4)y<G8MYl^#9=*A9{vI9o0OkBY0Y@$Lp_Qx`jG%?e}
zEE6dcX%nMNj5cALa7<ihVu%UXM8-sDB5T4k;j`V7C4q_Q=Sv<tSMq&Z{a9PQeNl`|
zg25)PW%)J5d@gUNUvpkDhf*>{vEe302pC2!v{SFJ0~ODe@EK{MV>{h!r;jl)*2E+e
zlTC~>@xt;!6!ioX<Jnw0eOWuDf{DWSRu@0sPM>08s)=bPX0UIoi`gII>A4sA?i=lN
z@(E^}m}BBj6L*=o-o#uJOHABoVjgv2qQU8s#U>V*xWU9i6N{vul=i2C`;tEYZwVFg
zO*@@hqrO;psfn9R+-Bl-6E~Z<#l)>98n)N}X{VQIuitfFG4Ulp&K)L}nJ8?p%#z7V
z#g>~`Vd6d$_nWxe#7YyZOx$ZCuYQGfL;LpJJLn#odbwia)dJR-Ag0i0y&tR?M7-7n
z$GhId1I!Y2P~e$+JCkmp+3y|npcLRM6dL&tn|Q>;UK2l=*ks~S6K~KMSjNQTVihl#
zc*4Y!CbpY+#>8e3=~fd@nb@KnL8ri}5!SYiBWkBVEgd6=ctm@BhlyuRJSW26$;w4v
z%%z=^K5t@|IL`I$RV94oMH4TXc-h1&Vo|S&*}N)}=MZQ%myG9i83nCtw~4n*d~D(q
z6K|V%hXQOL`+(AGufJ>JJrnN>2WyHySw4takGI!JKQ!^GfR7}XS)ZEt%*59wzA^E+
zi7zC2e3{eWckT5(CaAk(?e(urP+uG`>9;2G|1J66#1GQL?<7g{AoG7FeiSA#?Szy)
z|JlSZCN8sZxrJX%{AS{eiGS&v3<V|*v1Sv0n%HMzzlj43kNYEk3H@7Wr4Fjyt2*ch
z#hr<3&r*^v>YyJsam2)N6DMeL_Y@yBaZFwzW`Vm_DSFbxDF)lZ*lEe~vVF<izNdti
zb7x`fEW^Hu(iX~CI8P<g>MYfP3nnhoJEZA^P#Vv$4tgoc?X^O6psa;*7Agv-yihVL
zSh!otZxOm%XeA4kEnH)vrG+XiX`!x#dKO@znuS^xYFnsop@vja)56p<DxR>mA3Erl
zbx=l2Pa&;ip}CCWpALH4?Pad8(9l973-v8Du#^kX9~nvLEPSrC(AZLrqk2`SeC;Yr
z1)nBDn_6fl;A)}dH@DCthwnOD(#k@_LV<<W(yPXWx@IA2AwM_Ln1Cxq$g?XHx3SQ#
zMTK^(!9rUL<Mycj7ZvIqq*$SaqgPZYeP6LrsJ~W0b*ZC;P8POVc-lf|3tcSCx3IuM
zR}0-N47D)KLWza$7Sa}M3q36Kv|w0>ONG7I|H4=w!M%kJD^w!t%Wg=rzff`pSQwbY
zg9PY8e_K{2A@VUTSi<Swq5{h&Eigo+EPQjS<fcOX(f}O`u7$xCu4S$T&q7F57RG!F
zH|{A3<aPQoU+2RhnH3J5?$&JI>ns(@t}l!Yv2bu%8P1->Qz{k@w=lxObPF>qjI=Py
z!gvc4ER43WzEJ0!GS*VF=NJo|(Fiz?jAQxpCE@Zx6D>@lH?`5HT9|BsQ-9rEy{A}U
zynUunf4@-wy->~m(=2eQKrqw7EDLiiTrYLz6{!kmTlk`Eaor-Fug~Rp+v)Qx6}{>5
zmz??rzHZ@O3#%<Gvar~~Ei7PRiKQm-o2a-Vop0SptN6EMsZd5IGH<q!D$)sVvv9kG
zJJ~S{oQOC6+U*YM09#*XVPcWaDQ~%j74#YlD`^95bz;Uz0zNku>GxPzMIjgITp@5_
zK=H1zaG!;TEj(i3ehX_YJV-Y@SF%oOUeDJh$tF(KQ-dmZZ}A4Y>b=Fp4@uTWI-oRN
zWAC6%79O>*#llv4kcG!BJV}9Dcp~@8rCE>ft}9a0pT4~eDOV;>Nf|m03sC0UEj(jk
zzl8%9c361U!q*h3g`F0jv+$mU_bohcVHcIfep-0J!iyGOvG6L(7wIoqc$q?IuYX#k
zVl|(AMfz)$jNsP=FpDKGmDz3KZ42+vfQ$6EB$rn4u2j{!SUCbq)-2XPu<)UUPc3{V
zR{ar8cXjb6f<G3__<RX`F3dd^z7+6<Q06kEd?ju|ryyp{-&*+2!d?qMS>W9Cy@mfV
zxScQgL0+Li7>Iskv~Q;qkWVxC*}`uYez))oBh~2=&d9$?0T!nF{6X6gjr?h0pM)S5
z;ESYx3;*)vgQ%~A77o$rlBk;G_e(g;h|P{!IKtRs;j{$6V-}7xn77wYSvbLdw%1RJ
zQ_#Y%Jy}BUU=|-5`56oUTIgG>pS5sK9%7E}&^>DHbio2+Z<!>@CUKGen?$Lk;*?I}
z+G3rnZej|YxLgwDlc<=)Wm14y<X1?7lwN$fFe@cdSzaWQ&!yMd7LurzM583GOrm;H
zt(xj2Q8$SiNz_cDRuZ+7YW+_>4UC;9Cassm6-m@jqCpZfiuIMn|Chxw#0@E&cB*fD
zt8o%nCDB6q&?JebNnD)-`^NsT|LlA-0W8d9bHSTAI_c_bB8^BAS`u56cq)l#68TBo
zm&E-^#F8jTVn`B0lW3hpn<V-s(JzU%NwiC%YZBd(XrDxfBswS2C5gf$ijpW!qGJ-@
z7VF1~^(q~8eg@RHqyFu>g0UU-PD$X0yyx0PudX?8=EABscGQVW*vi7HJ(K8_#GqKT
zdlFCdFX$mOtTFKAx&wPBvAd(*CyDhP^%vF^@D(QeCov!iI|(O=fl2(_QBNdcvW6t)
zd|0IOFt$z9NFpxad`ErE`hq5%bSsHu60Br-|AJH!=_KZL(pPoT`!lOcA)g_gbT^3%
zHJd~>2`>p>di8!MoqY=^qE7nQ|GE*g{=t-C62ErR*`Mo@*!f`*Yv6bZ7HlXUmc;NR
zu1{ia5+jlrnZ%SNrY12eiP1@nPhvt6W0JVQ3OV-9Izfxh`nV+APSNgl29~Zf@Vd_W
zL`rNx!6d1CUT1x>fQ_A16VsBIp2W-~W+m}bXMIKzM?34yYw<573cl^E&rag<F8a5%
z2Hsw8;2aS`vo3m%F8aJA<|lD`5_crAAc-52SenF5Ni0laQ4%*&aq9~BES6W62xW3;
z7p1AWUG#gp=r_|;y6CqhajuJgixhaLi+*bo)YRTC`W0Q3u9qcoXA*ZOu`-FfIL!40
zE0Unx2$oB-Ls$Ly59P_ZCy7-_tYJ^O>h~tm|Dn!oXth*3zeCjTs@g5mO7^vnu1#WH
zQe93xLQ4>E@dfqu^#e(4NaDdH9!lb2;gh*BiD&+f%)Yw}@z8P6Nne#G*p$ShQs6OK
zSFYsa0$OcVUx_~{cykh4a=F1nv295_O)WD@a7oE(lh{QQlH?AmgI(n<0Ph0MMQT*k
zPELtFPdAU2d{$TMc`-8fOoaGFDf|*eME4&T9r{+)SCV*@=CMDr%+_8@;`JmxPU4d!
z-k^&$()fHR;7y^sg}x>9ZK3ZZ@veaPguXBI1EGAk$H@rkN0LMX?b9Sa<8YGvx&xmx
z+6*b)lf<pnG=eWAIptjBO9AA3mBiYv`qxQ(BY^l@0pBI@y?`Hbe73STiJy|#Q&m;<
zGfi=*_DhmKF04IKLn9_wTUPr`#{PQ}e=w2^)c&OOy6TkVKH<;2EsuDA5(hY<6y8hW
zU=oMu*C{wD{FB7tBwD7>Dup97ZwA;Dzof-6T7K0E7Z|jYIG)7ge@9LvaWaWhNt~ux
zvgS(BpXx==B=K(&XW7Ym(T}?7rCS#f@L}$GDf6GuzZxh`UW)&1TYVld>Gr%*DU?p3
zObTV$hsA}LrSN-Ky<7?v1rV1{p@QI77Ib3r#vQ%id#w0!Da`Vf1f1=vS4{ya)J&mP
z3inMYm>P+4u+>tio>CuX*Weg`8dRg3PP~3uto6WX?G);yP&b8oDKtyr>J+X>p?(St
zQ)tAu5(9Ym)F6dD-<Gs*Iv`x5U714T6bPE6aFqZSV6s&=owQdsy{Rw>m|SiQXrAJq
z77l2U!ZpGVy6MwD%6qC?ek27gg}y2NsVt%?<fqU*g&rxyQaD^U#t+WBrEtd=RSG28
zI)yeVv`wL%Bs&RhFO-Elr1-}s>a8N7#X>vga);fK$E?nh?2<y)9DnQRswEU!#R^lp
z>2-c7Pf_$tDYf=ap_hOL>1gw_<@==Y*8e*3xwD(zKZOA)q*Hh#zhEFO=kLg%6z@1<
z^!mz|YdUquz1#kXkwRQ>xmAUU6imTZ3dxi@733f7ri60|KYd4R*w&bvLMDYpDJ)LG
zOTkZJXbQtp2q?4^mR?a|NDA2$Ce?|3cw6k+6#phJIylAO8Q1-C(d$xpv8|dK>K3d2
z2V2T19!_1SFe`=G($L5hCi3~N)u<FUei0olbd1okLdOYZ)_4IEQpo!{kI6|XOip3y
z1I1HPn3lqHVrs2Uj2zN8y6L}l(`T@W5}nV?6nfs)iGVWPey(s)r_OUyxITrsG^7%J
zUJ7$ku>~p2rwU4RK1|+_;twC|-e-drO75f*eMt&8rm!i6M>*;gZlVpOuuMdKGfnie
z3b%@CZb{+0S37A(VjTW$Dcnwpm5aWfD8s{bO7%`!eo6)HyQH_vg{~0FZr`24O2PLC
zT_yD1T<+==*5vS}dSxos(e7tAO7yiUtP^3b7fLNZkiv!>eo(+eLN})HaE|{7jqUG&
zEKFfOmco`4wo3mWr|wdCQo6laC?f!eP_{~$a>pZ2rSMz|&!@00g{M>4PV*jKc1H@&
zrqJ=$PS2$9z}OOkohdvNFWkPo)AJ?z10_0fYHG(_DZC=Bzd)-<;iVMF<nuB^O^JR9
z?<>)1v9G4oZ1q|SuL~f4BZW6}csI?Sk)(k}{@W?MljBz#R_6T_K1kuKG`>#b!xTPZ
zf6~~H#>XjqLU&H1e;S{r@L384X|zt`^Ax_|^LHec#>(|or&jK~hn-;!DSVy6m1#6i
z<C_$|rK}ioQ~0fZ{&y+-N+9@q#^>hwKTx45{FuVt6n;wK=M;XSKw1|)ST)vSoeH5t
zXioguRx8$Mkwy#rJ%xQK{3X)<BZWUNiT&@$;V;TF_israN?|{v6E!}!ESU#|x#qI`
zacv8k{6~_DXO}(7;Lq5bM#VIar*MMakw&RBPNr~5%A8B#bP8uuI4jA2Qz%|vweLCA
z5TCOp`mxPb3C^eRUkVpexG2STy;0_yjYZ_|d!~5t)vCqPX%&CUrcp)!@ue5bNwU1q
zS@{K*rEz&0b<(JtMkQfZO#=cd3$2odKfV)Rua-vjG-?ZT(<gc4@TnomnrYM$K+d$S
zRjVve5~wGf`e`&s<BDAFqvy&u%;839oN8R*QazLm!BuIr%H=jmV`$xI(=-NFiZ-Ks
zzKC9(M)NdUq;X9e)31z8YaKiBXsl%#b7w~L(s`s2c~=t}6`C)U!kPDB`Nr3mX|uR&
z8xEnn-Y$*yX>_SxrfnL(R*imNJK7<Q!nFGD5S`Qf$J(8X(&(5*r?mPDl;X6S?C$B)
zx&J%GO}gthRVgg$u0O!vzeuC2yu!D-rBRZ@-39bWqo;sgY4lE`PZ~wXBYo4#O$avZ
z&Lf!HI&T06$okV5nO1*oHz*A|4JQpf4I_<s8i_Q2)>cn5cV~&2#=NI`fBaU7l}0j+
zsg3(4y6Y*)8rxlGvhs($7?fNYb&y7wMuwi{cJYKm3Ht(uHOtGUF*wb?rL8g~jce1m
zj=JcsSL&g!@2+p_uD{n^|Eaq^G>u_tbhy4xiyk_k;c4{hq5D1bQE7}$<IXhhN@GkK
zW7BG?nwQ47G{#dkGR6sMOiW{18Z&z6l+PsgR``=eCR1{<`el^HxrU-x)<Zv6S%Dc+
zY^KmzY0MTt{+u+f&*8agRBqRo%=u|7NaKby7N)`1mvTgD{O?5MMyY>sTJ52h2&KUg
z8%424dgwPvVV1u+jazc~)--O*;oH-=L-4X3XItec=Yr*Foc%lUZX0z6y&{df8G@+R
zOyr(4R#VGuW2+=d&b^W(Sd+$mbg>GB_oqSTTA?htPD-v9+NvbV0uQF~P#UkK@oE|y
z(|9<Io$PrUkEF3FjjbFPEr<U(jT%hj33>6cwE7TkvHT-Det+_08k^JDlE%%03(w!C
z3iJ7QN%2!@Y)kV;9`&cw*iIRyaqyo(;RpS9q_KB}c7K%tP1kGB3jU&pzWW~S`=Le8
zr?HC;_+WeD(>?ST(s(hAmlz^?>Y0jtUuG*`M4R>0izNA48n37E36<3>?~Sxt$?TTy
zy-Aa(5uMj4+PGW~mVYaa;RlP~PU9VU{avB&31#m40zMG>VHzLh_#db7=&(E%_%w~r
z(s;0A!RFZopNq46A#{(>FVo=v8E&*Pk52SW8sE}FY*exFT^iq~ag4z>jUOnP#Z`Y2
zcV2ob_P;cKq~hww`0N$%msRj{8o#75>DrQC)A&1${b~G`#_wtTk;b3G|BH^<Q{P9A
z{-`gD-T(0*CXWs-AwEFCvNLJ^xSM`R3XJTj|08eh_;}D^YVE_mOM2?rkNWQ7D{1WM
zsUPmC7F{ROxR^$sjgyQyZDXg>IGx6sH2zKFd>a4J>e#)?(WbrhPQ7%3bF`>ldhs><
z9VmT#Fa3h#4yzh%QBAGSOWBy-qp+L}?&eC{{FNxZjE$RD7L>KQ;nnV)(y_da3O0Xc
zNPnf5UeU&7HZHgESueekFbNL!(wR$8)dp-_ZKJu3YBtRK%3f)sv5o4i+(u1XO)=L;
z`!*6#%SM}ftJW4=M`&Fe^=w>WqrQy>>{Z8hEKj#x_(x%OLqS6uKRw^+KweR)-a0Fx
z;<zHc%0?3#JL{EU9BXQ$8K2(j>Xr{d3meziD6&y(qos{jHqJJVt*af2*lH1*Z-X;9
zfo7v)Z#^o^C%s}aW0F;HsQ~*afc&-s+SzC?po7ptp?_B@%>qkC7IX=VJKE@Eqcb~m
zH1@-s=$1KAf?C%XcC%4pV?h=-WYOJ54;%R&Vjg<h=*2#`=;WfejXpNIIVf?^*G4}Z
zZ`#;xqrZ&-HdflW$HqV#gKSK+G0BE*!?5wi(a10xaT^I6jt!T3T&S5g(l#DD8?kI8
zZG1UIOWD{oQG2C3_sE(`x>4K4_?8-X#~B-Kk3<3+A@x2<^Mv|B8FjNZ2D7d9+7KJp
zQkCO0KG)e;R9^u;%O^*TI@(Yh!!(75+Ze&}ry?V5jIlA+#_O%MQPR)R?8Ah9+(fg_
z<Jh{53Bvz=j8;%lF)wSVz4B&kvW+P=ZlWpLm}+C1jd?ca(<*HA9vS_!k~Yi63>!0T
zyf;d#Tpm4!Xm1{f%(gMd26L~sF;~E<(W>x=ha#j4Y}{buk<!`{disBnh3r57^0B){
z5%oM5dFa{LVjEs0|M9eTqs^Zz*Pa?3U2220|B=WoHg2_%eWB{zHcFq5+-BoW8ygNq
zZntrVjsHcouX<_AY_K5~CcVqXa;mt6cIKJbk*?Yb8y(&(e7LvPy0rF58*P=1dnpGS
zkJ?ymV~vgVHXg8XAII2SYj`}e&IXI!Z)2?h;+lU}L9td;UE}aK*m#&i>!v+u<KwZ~
zL-a%&A3ay~*v_gKx5sW9pgkgQeehgW<~~N}vhjkA7i~OY<4GHDoQ&+W@%y33W{%Fr
zHXB=PY-NA4QR=0vtugCq8{2I>V`B%6t+YDgNLJLmbCG9hgw3@kH8q~194XL>PDP%x
zvA?tSyi~hO=!4U>l?yZq_9cqZ#;YRam+5__wL4Elo}3tc{GUkgg!US(g5^bMrTS@n
zD7Uw4yiKdKao)x|Hr}=I1I0@%+j!r`=NvV4v?=-l2hK6tI8?3sheAJMP_i^8r$n`@
zHx^dk+WS*-7#t>PH(iX7?y>RgnaDRbzNJSWi+pM0EBZ?{?S!p;ZR6{~(drwc6xVk)
zf9^^NpYmk#22XqPVB|*|dudKK_Av@cJsiUCHh#A8i;Z7J3vbv_Yjm{jc<nd3(s<44
ztv~H(f6$#LYc(5df7$q(iWnO`%@Ix1_S-l}6TL<|K)b4@bu6RRf4lIIjelfxpPY{z
zmRuG%BH*adV>XWG_$L_ubNG}1=V;{78QK{e|FX_=k^5hYowY%l8K?bc<ARO44(d6$
zXd}<T<qj%2N+6{i?7l8q-a%;x&&8B4lyOkjK{*HA8)(aVYmHM{$01Rcso<cZgUcNL
zp9GCgH*J8nJfT%~P{lz_2elkjbpVHd7KiE%C<<C~w1W2fL~TMhZOBzx4F?U6MVbdH
z+OU<{(p((}H?+(5=BS{=eqQ0AzJu0m!a)O;chJf~#KGqMkwy+0J3Q{zu5{2VlgH!7
z1^+~tyh@l&95fZsOz71@n+t6rlqIim&{8m^&7|>1SIxny)>=%MQ3rPniRL?KR88d;
zIQV%-j1PU517U1w>!2Mwb}Z7~K_>^D9dvNiDJbXALQ0JH!a|FMc68v3C`)Fxvet#d
zxfr1+x;i*pPUAxd?Czk4gEt(!>7XY^<Y0+|8y)m^(8s|@2csDO9rSZxvnmJu9Sm@A
zbyQ1HATy!^9T*Pc?70Ko!F%~ihLj{-VBfH!1m#Z+9*>xgGB%dKregt<Ne6#b*XXSb
zvuQ`o8Vt*>gN%dg91L+Vr-tUy63$0L2fl;A0mB-#M(vCk70o&r?BL~j+Lg1lYuSN1
z+N$|l-31zbZKwk(dW3^v4j7|`%aFHd+9y}4wk~g}jdn1`!Au9U9E^1^jx8RJOmi^a
z!2}1(piOo#(ZTn1G)Cr0l+4M<%*xu(w6<h?bc%ziG}oa~w#&|QAk!Vp-5;6Zz>R7Z
z-Dt%?o9*CO6YT~EEHlT!^(^3Eo`VI_PiC>U`682V3be1TjTSf2Mqj3}-GvSoIao|H
zo~coK3>5c-+ENEMIk?}!S_d~fDjF<vaHoS?sILQ&TOHiyfSSFXHX}B`Xt2cBXbcC2
zXm>eS?%-Yrs~xNmvD_nXF)rQhU?n}Mp*E|t#w4p+<)Gk1gn+S~MpC+*wuUlaQ+OZ6
z(p@>lItS|=Y;*9mg9jXJaIne2qav{fsf*s)!ww#Du#vv$Mkx)(oO{~kQ#Fq`NJ(sY
z%)#RhwumJ>K`mV9_N0S%r$i}9%8FpK!=F;s7B$qiN*TK6Qw~N{(T4WawmW#n!3z#v
zbg)B4!2tf8Sje*ub_%FpPNTs*?_d{2bRyE=g{lk=tmGwj&%tXnxhD&mTvJ|qh5a9`
z@p;w3`%lL>f9(#VuS)@aRCKq4w;YslQP#!V4&I>yI{1ZMrFl~(4!-7FqTf&GJ0~NI
z>K{1x(7{Jk*2M@HEsQE3J7_*yJO6Cqrw%?73;*1~9tU3%OOkfQxrsJOdti{<JxKe;
z!M6_fI{3-KceFr9tsfWxeh_OR_@9Hvs%nXqg+Dqf{#>=Ykd#wDMLl@D0>3)=&A}lD
z|2X*F!5<P=53(LdEgl$S|8}sC!*tZ5f=$!R2>9-P2M44u%XB^(A^pCqw)gFUhZ!gw
zoRj8`IH0K<rFjb=KJMUz;FCg62|b<5JtN>>F+3Kowl;d6G2cO+i~k&45I5mWL8bI+
zs&RrV<)XC9Sy;_|$9GnxRnx!9xhU_Vj*Gf3D!9t0E^~3YOB=%%J<3d&rm?FGZk1fX
zRl2C`qKb=+rz2HeHQ$XI9pwP+F<Lbj)m_wZQPV{&7hD=WHD8ULvl2mV7iXgtxWaEW
zPOInQ3KvaXG;>kkMFTeKqOpsHF1D^OEL}_E+(heY<l?=y+M++JFiAtA%UtF14_CD&
zF3QbN)6LZ`n!9N0qMeHtF0OHr?;_@+rHfWBA}%yn1(RPcs`;^8yZopN_LdrFh~NUC
zQz?z2C~(on#fE&XwTsnLqC3lJ<qt;aFASa(X?qtPTok(M0*FF8S4yipP%Cm#?BesY
z%DQM{98qT%U0ig`pi>52U37Etl#6XHN?dezG1tXBiq1t(7uUHM;-VK9|1Mk?8OqQF
z7w4vn&nl}`dS4g)g!5KCt-p%_F2W6k!~<QB4sxLjFoed1CWJC~ZxhXOkyNiE?ZR>K
zsjn7zE46%X0c=<83%E>ucU13|ha;W~-$mBtw{{x$1$3yu1*JNww;l?h^>TGOm}YP^
zaxL3E72(u8)WtAL)m7dx+{Fl&!AhIpVx+4~cZ`d%6tauat~$;NCPnN27hyD@Fs-;Y
z&c%2ajPtCDQGx+&qKio`Ci7iaEvKK|UWMVBX36NvGSgg4cQM1oI~BFr(&9{^Y<iZ<
z-+$EUo(~vR=Fk8JYuCHD@JJ!Sd>0E`{+KoHV;L6<UEJy7E*FbjEOv2=i$4czOI)=Q
zTk7H_7dO({TWYi`a;(<MXD7AOZe~M{cCo2;tBc!Q+|E8MP*cV-dHoKTKLn|rs;Fk+
z*H%ZDyWrfn!o}SJxG-Dk;vT^TwKO`yDq8a4$Z8k&ieGrUIzRD9VcQ)s%KUy8Yh7$|
z@u-V+F4nthUVg;I11=_BjBIe#R9oqv$R{rsKIq~hc6hY5(Z$1b<Z@c;o?4?B%1SxK
zu$80rw8vaLPCq&x*(`c_!c|+s@%Kkxn%M727ynydNU%k`c&m$|e<S@WX;jeDF1EWk
z=;9Ey=3)nXPRnuetc#tD&m6mp=UhC`&M<no*yZ8{T4|`g>f%KgFS&TdMc3{cXSbVY
zX&t9%FVpspM*fTBb9=b!NQ6_>YxLRU5tezA0_>>0<*LOP!EP7qHf28KW&X2{=>EeI
zuIJySxahp?)SUIciw`7Zedyx!r07SYxIweEk6o~G0@~zfbViqlnfQjb>S7P=oB?WU
zA?J5?k}BZ(;VT#WT4;YZ(-_LWb@82xKiCr&-@Ew1#ZNANrhHufw1mcG(vM>ETqNuj
z@Q0<*W`1$;tE+aDzqxAp!NIcITonB-%rhD7-$$bRM7Dps*e|~Jm-PJK=L@;cq_uM`
zeSo@~t8x4JkBh^UNe1OJI6@&%wym|Ztl7nJsf0oA1kDWEX%}Z)oMg<YqMdTpGGNbD
zs<xenBL9khxgDnI9yt;@=i)pgKOMnEsSHYIaFMEfxsXvVFM|`4`%d3c$Y=cN$brUM
znT*;`mCdM?aIF?f1)L%)WKc1KYcgn=!DSg-p25|8HWpUOpmGLRX3#jJ9KT8iwKJHK
zuT_;KImn<|4p$dYLugH*wS=~GP)FY4i**Im6MBWv`WZA3&`>DLG|DI|BDhLG(+rP!
zwI+fm4A<87*12eDmciH&>TsC-Z=O++s)bOlBx!H0q;O#dkqop9q8U_}t#!yKQ_L3{
z%kaO>YJ3U=v=-V%Xxj|h31}~L(b_^5<L-v<GU63w@K95&IK%Uq=&@*i=M1`Juq}h9
z8UHirmcgwV+?GK}2Hi6lk-^9ee`o+bGcYr-GRg&dWza8!{uywM+B<_j0*L!&)VT^h
zWdJMBAPdc)^fKuCSRR*BTu12{aC=U(=cX*4K_Y{V-Ib@%u2?3SK`H|;1D~C7v^4wE
zU2`+ADGHjz`3NUgw%++NEkl8DpVD1>d728yK?Z{}xHhBWe8_gClPvsQp*jt?E`y=$
zSO&cdv>_S(i)Pg#r*$4sEGyK8Qwz;hmqukUI)ix`%+Fv9nN(#4Q!^NsQTxq_8E`u`
zK7$Dv#IIH!M7w4DnUulg494%O%FZzIlTOQ^Qhkk)VRi=7GnkRVOyMxt&dR7ABF`cy
zc7i#y3em+}N@=$C0q67$(c#A<3o>ePxHyCVMyj><4H+!VU=hW2K{d*_ZBNjaWN>2!
zOEb7BgPSwBh01y<#<LEt7FZQWI$S~%=l9#`CK=qH!P*R#WpHN(t1`GZgS#?Vp25lt
z?javq^D^3s3}zpW+?@g6;wqh#g5s)aZC*Fd&Z{%ndOUJp20Q^{bXp^0p-VDGap3DR
zSf9b889bK30~u_fW;1wLM7Lp0l(zjKN19O^Kt8OQ`u%Wi^bv8cO_c2vja4-%(jL#?
zi43-g@jsbS6DtSHh0SKc+~x5cW-HZwB(geE=BW(cD6Mu(+cS8Eu_%M18SKd5*$lp>
zO=hr@9mwEawwuB88SKj7<qTfQ;Droc%%}ywHAOA+=!Wd!OSGJ0k<069uhO00?fymv
zZ)Wfs#p_02r&CCndcL>*`}FAU4BpP*oeYTI63Zmu5RTQ+o}Qp0<og+XkiqA4XLg%1
zIUD&zMDbAuAB(fldh1QqinkShDtsE)XBiZ(E#yqikVSd!$$&BW%M8BCfY!q84<DM)
zw;6nw!LJ$oMnz=sLk6c$MSjWPe^O7^`P$wLex$t(jnWfI$@wXR*PZCk^rrb*A44;1
zDr^5egFiBAO?8OQlEFSoa=dnsGRfd?VmrE@rZq{U@J}6#te>RuIUxLt`5H?y$#?(B
z;4nk$Z0+_r%2bYJaGXKd!(|>$WN<Qra~Yh^;1oNV!5NN7;@izNl~Hk}!TtDI>Gr7+
zTIpkIh4x<t7cwa0p{%Ez?xN(<REYCDloBR!X#rfrQ0C=4JY7*ul;u5C@Ib#N^I2cf
z%RN-`(8$A;9x8jN;-MaE=2znKdUX#qJitTKx>_}sF|`x@HHNI39%^~0<DssH+8(&n
zp@C8IS5MTq;pODTWito+d1LJg5A{72kQ;btD1ewVdzF(B9zHboaFqu}m}@-#C6w00
zLvv3}3QavU^FUL-+QXFE>M(F>Hp*lR4;16bF;TjFOAoC)L_BC7K542&J-qMbacT7B
zH1+vbIUX^kv;q&UJq!w<2WZ27atJ;e`)KE(y@&fe-0z`-he8h%JxuaY<e}I@9}j&!
zbo9{4Loa4sjBp><*+X|v*;^M6T|IQ8-0ExGYm|84*m<n<ac`ZQrXCcvqxJN#Xtu^@
zNehjy_x99wiSqA9;9<Cj5grD380f+G5U__HbPp*HX-cEFW_XBuNO)=~%Oo2$Jy;%+
zRLb-yIhUBEMQ0+mXv+1F5#V@uXn2(TC2jI+U9UB7oA0syPFk~u>SQwXaIJ^yJY+o#
z_SAWuS|sd`M6%H#9)^1A5N4RC4z4fFu-yK?nT^t6M|$8MP<<BYVU&l_wB8vSFA=z^
z8RMy?8UZbKoQLrufeAwYjHw_tnM(9<vxi$eO!Y9$!}T8KdTIwT-NPIYj9r`*W>AtI
zW_h?1-DgwC-L<2&wJ9efZB`dDIIzq-cFe<#Vk(@)*x~{X!BY#Eg|zC?(Zzxn<(eM!
zUt|f#{$J#;-r7=mi#B-^J3lawfc?MK!`&WMdbo{t<-vG0b_d7eDW_gW;aAe`^l+EB
zL#LK%mV9`C#w+F(p1NpenR`5}lFoDMdatL>VfgSZ($$h&!%AY>+heq~9@en~9{%vK
z-opbPUi0v}hYcPc^stQ`rq(=c^zfvI%^n_Ru8o(6M<4U>h=)y{+9dKI=uuBCO{<qu
z+gpay$64pog--~rT3%V>7HOBV+Dd_lr!zWH@0^>qOV$n#&r<T9I_=~<NOkX|*?4%t
z!;7?yY0>AYpaJSk_>CIcE)S$!sK4alD|COw110&gr$QnD>8o_8*($8@l{Y-R>ERm>
z-+I{X;VloJdHCGJ+aBIgzKIXm0T1taD%3CUpyuf2CnJ;<k03tu@R5g)>Buzu-7)$*
zhe;!3$!6;ci9cmko1%-F$qtSkV1LB#_K31L@9_EBQxgzR9Z9*-`%YBzqldi=Ru?1R
zd-#Eh^RVJzgvrtMwU;&&{^WrdRlkbk{7h%8stxa}{lYqjX`I1-qerCGxurT)@UYKA
zc^?&g{FtBrmxrU&1;yxLzlQ@9;K=A<k;Xv}hdf4d6$v>D{KJ?$NaGxO#KVOi>Z*m~
zJx=#wF!6BK!$}XPsQR|~r#*H2@>_3xZGDYNdgU29^~nfNrOtUcFE&uh$A2Qgiyk`9
z)h>A8RJF@e6IN<szdT<tc|%d!M;RYwedXXh&?x7t7|T9zUEv*wRP=F~udWrY@Nv11
zO1_#OtNW<zql&Mrj`ma4SC$4J)qHg;N6aIAQfh>bP{T(}UoF6D`KaTgF6%!Qsm*Gm
z8bPl<+MhkNdOj9huDvi^oBdj>z7Ni2d>Z&@n8S^H&^Qlu*RJx>#K#jpp7hbwM>8M8
zeT?vNHJk7;$cOHug^z1|bnsE=qot2lJ_>xa_SI^HE5L{k%}3NnKF3u}i}~OsAcfDH
zASPFwiqLYni{b3h#z$Mme;@7H+`$O<q+G>uQ1k`PSw%jIeRTEFjr}|x=}39{%6K|S
zSI3T3u0+~}Bb}f?iO-*!LO&n<ee__XK6?A;<D-|a{EH64`FBxEZO!YkzCOl|QJzaC
z0sVy<8Q`nwY@m<1ry>MgV>7H7KH@&oY>~R?t@@nsVM;eR1U{Cp;!o1Yq*+?Z$BW(6
zn#%Fv`ncA|bv`maJW9sLU?0AZz{hKoqo0)1LLaG?+G_`^aA``{BW7o=+t-y7(_1NR
zh_7b1p}v}bc^O3e=VD`+ulAMH_(&h4d@S;@*vDueV|>i?F^hxpRrDV3V}h^3!Z@KE
z2rHTBV~UTd?5ET@nPrA+t=ns5&qk*C`1RrFbRRQ(wWi{dm8b5Eu?#i8u8+?4F~`Sz
z+K-RxMUq_NvX!~MiZ=6v5->E~!0z=|hm*`*D7H!y<??2Uj~jj5<71T=+frJEkK26Q
zB)vU2SG!r-y~Rhpr+P0gtF9Vvrw#kK)5jgY+BkE?%P4f0kL5n@rg1t^9x~9IR?s{e
zYOAWK32P+{wS7Kkc3!I9>ti+BlI9qh*GNMT`?$}?{XW+EYCHKwU)cq)hVI&Wp#%>I
z*dX*l7R&KB3RpT<d&I{k9~UZVtd_>iMfhW4_K*8&JItAvbhD2wJ`VUe=wqvor+j?n
z<7*$=d_3*rEgx_D*zV&QT9l7heC+V?EG@^!<_*!EKAxi&C$(K7ljns}^}NLV=EXwt
zUyztUz*D}LsKjmx&<<avZzi=jXk9+W4~f1mNgPrad2jk^64~vmP)`uwRQQgMcYS=~
z^TZPG`FP(4rzG0g2R=Te(T35Fe02%MdU%KX^FI-CK4$;(y6x1p&wPB&KFm`~+%J4}
zYqN)DMqit$Tq%D{KQ1Z9#MS2g8z0|FK>N+-f0o1dK7OXGp#4CX5sm!B=uP=>3qXH~
zs#Q8|n<s3nv+tz5LCLBt{0r^&T;x{?fW>t+#>3xz{NdwIUv13yi8TK5)r?Hv{M*NV
z;qV4(`?eShAM)`Jy){7X0Ec}X@lh&3=>SK4_2&jBeVn5ElxW9%9H*34M^8v{^R?02
zs%ocwobhqa$9cw+A?hy?{uQZGq-O<;Yo+~1WAJg&M_vG4j&OBEoBxvg&{5IQRRM~J
z0A&J{4Ny5il|aSwa)AnB6$6wHP$5uJm%*Gu;ER_9xI93UVQPz4DNy=4+gm5*u~OAQ
zSw-~#2v99h%OOsMyv63;yhebUf%05h!lEsOT+G)AP?u}$0Br-*3vfk%s{=F-P(MI}
z09Ubz01X2)3UFnB#sRLGuk^(;ZC1iF7Vhi0ePGT1#nqCsX@F*IqL0p_41OWNc3be3
z09t@(fR-|fRskY`(gFuU$E17mhL`hTet=kjf&i@p@Vt?>!7D$W?cBUEdabSTeBf1E
zYZst>fGz>L2Ivr=Fi@wmodOgEC=SpuP{L<z51flwjkVe*BD75IWjY6HFThhNQcC7q
zXx##o1nAE4feL5?0`v?}^>Cz5fW85GaqJHk_7>W(lUg4CK1b_RQ{z{l{Q~soi2CTf
zIpuUeFu>ghA{+uMF#^N`dIW}qNCYqgd>`P409JrxfRzF636Khq4ltYDrZxjO0mcRx
z7r+gW36KpiIDi+ZPZZeIFn}MZDI*BLedX>O)Ygys{kD~MZJ>N%Xn<jCF;MY;h)`~^
zxrrDaU_^k?RJ0xCbjDr(NNTW}HcBX&#Jo@*6M*v?Z{NlTm=IuEfaw%efd6`HlLJf%
z)KoZ0D0TgRz>ZE0RQMu?8sx%YMu3@tS|rR0u<@S4uFcvJPm5^R2bde+PU+RW0P_R2
zZn-(Yf&e!JSR7ypZH(Xl1Xx7tt*Y^%^>Q!3Iq}9o9X{~V|E2&-1vA-`cj(zDC$(Ex
zRe;<0;+DcY0<}fGJ>d5(>Hv^dy)59zQ5utlZj|?KcLi7;fI;SaKe{47#hTjPf!e?9
z8(g$1z`X%p3-Ee?)dAK7*c@O>0PY#@3$P);g8}Xjur|QD0JND0*!h1V>jg8Jny>Lj
zjCy&90}t?UfJXvs9}(qM6#ov39~f++SVRR+aDdclpcZB`JE-*oCo(>-OxB(ZaH5sc
zDX$^6Qm5=&fF1OLTIx=7oA~w9Lh0b!*_pg<#)5)p1MCd&Vt|(dJQv{k0J{Rb5U7hP
z9zL^6@haN7TL%%)H+gc-%V^5><p8fxP>gBkBRoK$63zM=cOP#Acr(B!0X_||TlDo-
zfVTy3YyXZ|+6MtXq#0M#-VN|xfcH7x0V)vjODEEgB<tfq?YUUy=t7P6faHG`;B#6_
zfIZ@64AImhLn5dCF9UqTVV;P5MG45!#Mc72sQWg+cQRxyp}AS(N&f!={KzmBqF#u-
z0e%W_GQg<-KL_|Fz`+2ASbu=uXet5zpi`fWaE!F5H|l7AGBVWF{uZO%7vL`e<Z$o*
z%{*;?fCIErbmxK9ta<A6mGSK#iJylh*3qwza0;OAgn68uq^LRb#xza}+&l2BfFbB~
zfHREJAu5FUH^5m&c={2IyiGpOl+G~@OjK*OMulZA(AUaqr9zYrm4987Xq*><OHC$u
z#a1Rn*$~~wX<Sy(%gTjdC}Tb3R19%hh#DbkhPXUbfvZx8${~2P#khB<U4E4i2vIFm
z_ER+kBOXni_SVqIs~#%z<EmrV6jd$jtR*$q4%GxvCse1A{7#SbiV*cfl&}vW8iZ&V
zB0oedM57Q_hPWm~OR2wch^8T$h1gkByDC%{xJ^Pev+%g}Y8e`Fi%?CJ%|rF|8pTBp
z57JvnE-h0N5DC@#lWW4L0P>kE2-TO6ZAe43mSO{Xs=2;hi1s0hLKKI}@jHZQT(3-F
zs9c_*gOstWV~9>6x`gVBIEKDUSH_*CJaN|$-9q&R4nqW!=kG1-5u#^^RETtlULksi
z=pSN0sE%#>gy3Zvr{KOJuhqa470#GE;APf84vKL;gc(97PHJ4A#6uV%_(8>zas9}t
znT?L0q*>J3g$VaD$q?Mm+>)=>ExahSLpUM45Pk@LxZ;Ltt|!Pyk|1w;VGtq|J{6h`
zF_<F_)hP#eJ@gLVbbobP`3N;TG{i6pilYuOJj93)4~5tmVkA`);?@wig%}-TOo&+_
zW``IXVqAzxAtr|yPc0vh&}-P}gb))$bqPogPu;&d7MT*Nd){dwriVCtAu=^oQ_pK|
zRfb<CXM~s;DzE321Y-iD%A62g`{?sR%nxxr`#fHKWidBYUs)`9d*Ff)H-xw`#8R4H
zYi(hO#WJF$uf!IG;Heh@<KYro@}UT)s+&UG9ICbJEumWYaT28Gav{X8O>QmLZWkNA
zE5z~;^F~MS2(c{uzeAoorGA<m-E9R&6yn}c9ns$%Vr7VXLcG*EpUaQVqm@~5sjxc4
z{UO%U6GPl5&hpgm7_+GKbs^S=pk6kFpg^eo2gKC5jve!K?7^JAxYU0*#3La-3Gr!&
zO(7l)@j6R}cr3)@A)ckPgm@yvll0lsk!>Q$%^|jg*eaO&si!EPcKL<>sXdF+M`zgQ
zKIQ2U+e17P;`UbB4%+9D$k;wQ@#au_F2wU8UJmg}h+QFGpf)FIFNJuK5$3$QedD5K
zQCy=!c`iXQz8c~+`Z7OvoTBmjKrTCJJj8D*yT$urY&+cOTU2@oiskK4-EHyVCD*$l
z_|fTm)W|GNJsYDRFm8yad=%ni(FHdkrTeO=MX`St;&Vpq5I?b!5PPVa5I@q*DaH`r
zhWL)|Q&U|xe;wkRP_1vD2&2gnQI4I9$?qvTJNiSYzTo9CI7PuplMc?<#mSL2`E!V0
zq?3Oz80OrEGwE+Rjr<;}{THqJPbs#KjxWRE;)kOib%l0-ieQk*qFok;Lj1$Hnnk57
z4u?3xIGjbfERNC`LY!e>r>R%gj)yoELc1?|BE(5n*jvRVPPLTb=}>JznB-0F*%0SK
zTnv$y#d(Gij^$+J0%O;y$hflFfwu~ILr2y8UPUXFMd>WcWYy=;T(2_h^VFBRqcraG
zHCicspNqiqS>^Z@vZ$EFWm)wZ=cPt@N?AFJDp}OeqCpni2yx@Ys8uJ6YFSjzs#&IH
zR(U8tx2us=QIR^L^VVX?23qZ``aY!T)F=ZK->REMJ>l>(hAa4yd>@^;4YO#J#no9f
z&*I9giUy6dxGJk0jj_5(7EQBgCQb0_hjO6$I6sbPuEJD{EUw8SnniwA-K4k7qE!}=
zEXHuT&M0a}c`d;UbQ&u6n-%l(V_6hr)h$n(Eck76>#VwyrO@uX5TO9c=haX9EIMS7
z&0=sCg;^A3p=V*Ro-8_M(KCx)S#-*xGr#c9s!Pc(S#-^!TNWi8QM-K3l{_b*^>RhZ
zBWN~#e%b&Q>ygDz4@C)jXVE8%ep&SAi_O~g&GK&{H6HcQ0=c-QBnM<MFpEK1ehm^O
zN1cc7D5Nv;tTmoRA`3eUC#$~uHECB|D`sI)K3Sd)sr5GhQl42n6G&&(7nod|xuP;J
z3!ek2qh+#Sg}mhqvIw(kbH^JBa;R})?nJKTi&>1zVtf`uvKX4hC>E=#4a=(FJUpwG
zK=f|n5for0jbFcy%z~dZ6Z52WH07Vg*sNL-P$}%m6}7bqSxn6G7w0iMix+owo|MJZ
ztolxAGVMW1uIr=I>e|Qhr?Gok%*d)W1E;f@S#agRQ#E38=45fb3}+sDb%i!JtBw>X
zB2Fk=B+M6KPCXx?r!3535u3>3vn&>8u_UYhO7z_<Zp>n77SCp}lQy5l&BDJ&=q*{?
zD&UPf)c;cEb6Xa-3y1g)0n3EmDfF%^mJ3)R^lqUnxsvtw(Fs;%aj!5}XYo)L8wIb)
z;ywZQ=gP0mVqFfe7w|w98w5O<<DZd#L;bKMH)rukj=w33M|1cw0gq?#gn%c7vNP-n
zpDkHz75tRYZ9<>U<!%@7Ocpx?c)uzMJeS4ubje(qU0Hm*P5s|#J}(IKMWHWc@p7)r
zD_Ojn!>`dRbNG!cS2(ICyM?}$<G(H7K&ej58h)hwds)1n{eL`N2b2^=*Iis#G8d2x
z5+qN}E_ui~EU-fmB*S!^=`h_xj*6HA29zLzh$O`Tq9hSSQ89q|6C-9sl&Atq68>9-
z^Pkh_om;P~tE;MCy{_=;754M%^Ih3E6GzIIexQPT`o=%X@_U~UpAt{NZ&}V~3j8<$
z2Nd{R(J!)hzf|BWDnkXn$?^|U+bH~<qTeg}gQ7R=$mOef{WJkTD-Q7?e$CItFB5QB
z0pedL;0X2DZDP-MQT$y0-&M?`+4$8)=A4*-lN0dGLL6L(Q&c{bt2^+(9r%;N&t{du
zrVLI`z!|DR7foE8oq)e5V7rNzP5d(f=P1THKGo$S?D+{;tYL|U3lngW`k&2V0_tg~
zui^3pT%k-R@JIqV2^349FoFIFT$4a<0xc70l|b<XN+eL1K=~8MOQ3oJH4-S9K&b>u
zCr~DVYZIuFK-p{@Bv4M_@`_f-^4~6riV9cCaw;eA#CGWcqpIRm%krO06_UAhcdVx3
z)KRon_HOM2Mo*Ai)p%W(fLM`BP%nY{Dnf$<nkLXJf$I|(cd0}}#cZT#<7^5|6ewLF
zA8f90K>`s4grZSJ^A%;BCrYA47W?@*trIjRM2`e|CeSv4b_waUq-z2f9*@QnXs=?{
zKNn%JgTfsZ?WAaDMY|{}Q{JA_ErIR{{8YLmgS<|Eme(tR-U-~fI(o95>?!qO`q}t>
z75KKT94zzJfCL665F`*Peo+ErS?UDhypBf(B`{d=N0rYVqQKAuZb)F5!Xp(OuIP=5
zGQkn56a=FbXLOc7CLt#r$RDpbmy=ODfe8vHvT-y8^aKnA%q-tZ;J4WW_$;qv0;w$D
zNx)UuQ`FD$)BL8rW$7}CGckcl%r>{o6pG0SOiAFj1a7B{l@U`Dn3lkFg{x<xGgSOm
z2Rq%Yz)VGFB`{loIf^pbn-ci8rc9sLT$W4m=P7z?HqI^k^LY1;1m-Kwor>O-y?eI;
z_b7U=qW3Y+ug0#Xd4B>AWMe+4z(a~INT73L`IQ$Yu!wb%!0!nxPGCs_FDCF(0*@xJ
zG=Yr?ypX_S*%Y2kV41?pvz*5jSi!cF<*ZB~sXWQ7Qk>NZtVv*P_U<zYtW)@@Ea&M2
z)+@}vE%Wnimj9dr&nvotU#GOZ%TCDeme{12oD$(+VRHgo64;r*t^~Fwuq}bUTJ)6!
zwqJcv2(G5Rtndy+naK3T<r&9%A@*tlyA$|M@n1{e^#ndh;6oMMqv$&cyrICGioT`j
zUPYPC+X_rrEUWt61m4T?_a(4Di{DS+U|;ED=Oe{Apy<chyPqiVX#)Staz0a_(&T=h
zC%EkkUuOB=B=D8OUuQX2mDNF2+utTIWV77S^L_U24+;FphOB}=D|%SbLyG>QXsI^2
zzbbG<Q9geDOy1E1j#15O$kT8<ffH1}8j5RjS^1=j_D2Gz*sk*hug$+l{!HMn1WqS#
zCV|V@bj~JlK8ycW;GYD}WjQUT6~CbHMMW<u`mdsUl#;oka1P(gEx?LiqbP%4oXIoP
zjz8jY2l7g4D5asA296g>t2k8@Eu*2VhH}}bDr+dOa0Nx7XvOT^N*YdNq>|@#t%fq+
z$>zqX<EomR5&f=BZuM-;8Vc0ZP%F!+t)Wg9U#Fq2!rZvW6dGu_UW28<*3eKxBMpNz
z4A#(CLlX@hHFVO@H2Z8z4b2p8p5;U|h%An3$XB=^%W0wEnLxg!mEyF{^4n-=t8hC-
zV~V!V-tC~_DafZfYv`hw{T1!1Xp2jcZVGhQ&_jWq8hR_xOHn>}19wL%+*i?lS$?60
z(QRbPyap)dKn+C-#Itc`ZLcsy!%z()HH^}5gW`|K-W{gEa7Axa^s0oPQO#$xh6&l2
zV>FD-;&BR$*Z$Kv2^G{7)w6L74W`1c|I&@wOKM1|;5-eE23NyP8gAC$Ddrak<k$B#
zq%{N@LJiZh>0}g`sG*;dQbwDkVX|UQQFLlH=7UOOPuDO*ab{-uvoy@k;yIf9Ei#da
zojX^<Em=O@l#$74oLd#=HVwBcaEFGwG~BJ>P7SaB85wk=AmxCXB6^R8do|prqAkd#
zGhc!GH9VlegIWGV8aN{3D;`#yM-*L{y}O8gv(ID=JgQ--hE_US>v&AVG7YCR{GnmF
zhQ~F$rD3mz6&jw<utCE{4J%n)%cH9_tk!U)iFi^2O+C5%y+*@Y%BqHEHLRofX?R-0
zdVWnv%a#$-qhG9uEvzX4FEVK&^_+$U)x`4}h&kvxGA`;?7cXeoq+zFqT^e50@REjY
z8n&~AYS^M-t0t{OX*G9COA)pb)gfN!DMmLDFKgJL;S~*w%ZOf9w11%-<8!?H^~mU=
zBJrvw=Wt$QeQFp#PwZCok=NzsuRR*x(D0@P26>BgZ&T4^hFIKGyshCK4L@l3QNz0$
z-eV#fKGU#I!+s4PY516B*YE*fI$nIJVbK&(RTFL6=5MJY&J>A5FL$Ob%_kZ@Wu0^t
zi|2{q|3nsb5qESH2Q+-H;TsJHHGHArOATLX_?q86A$Q<Lhlq3&aeiu)#r$b~Y}C{N
z-)i_ygV9!ePXWjmzwDG7G=7c?aySM0lZKx)9MSL_MTpMdG;rI+Vd@-i0nqT;O>(7X
z2X_ikFWoFS_d*r=yM|*_`x=h&BUX@{>TSdc)_h%YQt4PSIiH-#QJP=FU(~BQD(E<^
z;SBrmd`iPv4S!QeYKaRhdy)8uwKP(kW2Kc6pKUET&pemrJhtc@7r|t4QNtw-|5A8}
z*^P{ehqY*qj$%4Kni?&oOAUMt#|}D5D4eU~E!wzF6nQ$hg_Em+C3UQ!b^Xo)T9b00
zU}+s?bU6SotD~Hbx~rl`hDm83(juR$|IkrUM;#s4>8PZmG9z4w)Y5USjw(8;>!`uh
zX!)aPHAVBf3tnV$k9<wVX<1fqL#zI8q_&PWH3U;|Pe$tMsHdZej;1>5>*(Dm_j(--
zSvmdU4RmRBJbA6`t~AoowXSHa=<&HNXhE?#AvVtv&2$JIQ60^7L|D>U(vGNmL(#RP
z$k$PzqlJ!^%=zg^qkeJHcitXIZwY@75>-kHma&bFwmRnNxK&3x9WfnA9Vs2{b#&0t
zU&jC)9d&fl(MLyL9i4S_(a}RkPhHwlcGb~MM|XwKAB}K@nxFoGtp%jLSWE3hZynr%
zv3f=HeMasV=cl>cN^Bh}uYPJ|SE$Pt#JLORZJ>@3Iz}=z9dTWHb*S234AN2ZW-(aN
zA&L%F^ae$FYnTGVb=;Wca208kj?p@F9fpoEI>zeY_8d*e)<a##vAm_kGnK@69TOBM
zp`&r<0^Z`abbV~NB}Vj%ADS#o9hMH8`MeOB(J%f`KiMDa#pUVa5l4rsW1@~pI&z+f
zdaN!p8tACGHRkI`>!58LG2@dTs=FB-@6{6jP8O5-I#*27F<qAuK1Ih=#o4_wO8yMR
zoULPyj+r`U@w?F2W@428j#X0!+@#}X9dmWuqNDJcSjSuCcjSEL$aT?)`S~yOi_b3*
zx9PZD$1^&f)p3W8J9Rv&W2uh2blk0Dkq)kz-lOAQ9S`bwNXLCT=Igj$#{>MnR4G%W
z*jH#JD#XP<Wdt=|<9{LxbUdu%5giLD8>b`HDv0GvV*RR$dTsN$HIgd@AJ8K4WMr|9
zB{~Rry>&eDn2u#Sp472Q$8sHy>sX;<i&F2k->a~1bL^8G@q~_*tjU#8TCluOBzSi<
z8;g#ob*Y)TXth?yItqi1pOaB?N(j;IM8sSb<L0t;E%VpwnD$46_&FWV^LsrJeVYwj
z$3}i}9k1wkLB}S(lpk8hi#lFnw4;&DI^OIe_9g|ZixcnsrvEh0zg$vm)3II0%dEW{
z#o$Jwa$hm%mDq<R#p>OicIw!r<8>W-biB%Bi^Na63U=#wyI-9D3*y%(x4(8Jc!P;k
z+vwP<<1jUz5(64huvQ;=vtUL_j{4u>SEjbn#d|vTO8^>z?o)Kv0P%s252?p=e9VT~
zGxkC;xr$1sqjR5)akh}-P;S!spN`LT+-Bf*Lw0u$==e^@_c}gT&FTvs7bl7@b$mrl
zaw_t*j)OYBWyX$0zR~f)c{!<0O*^Ky*t|NLe<kvRjvsXlGcer1PpoPxC<AQ`9MbU%
z8?u3G4II|-tB$ie{?>7Xs!7L59jA2s&N|6Rmk7so9L?fmI{HnFUge))ak$+~#rZ?W
zU)eZ+QY32q$3Ly(jN(%jFy=ox&QX~gxW>SF9T#-`tK%}&<0M&o7j>|=!|M`@Og(8y
ziM^tu7H#TOPcp|qnd>FaHSl-8`1cc{Jl?*zff6c6#g%8Eq=8Z@SjIqE1xg!uqPk%G
zaw<qbQK7k7c@?Z+$bMJN!gxgkOz^?QeJUC9FGF0#phs3THKfU9H3QWR)Hl#TeU};r
zY8t4eu-+lJwjm8uuQTXJMHZxvAy)?3XRE6?WY$w)`L*JD0}Tx{Hsof&M(T0Ci%N{N
zbz!`T;ujUhx#zT*f#wDx284lDDi2XbnVA9u`B}_`HgZ}RXsI|{KxdFwYZW|}j<z!p
zGtk>W9|P?TbYNBubWvq=_T|xNwxa>g*mN?$)eQ!@7Tnc9cLO~PbW=GbpH4zpuAVCB
z6~>v{UWQy}B<O3PpMe1e1{!!RA_@)Am+ZX4IB|c)VQm+&k{L}ae}f@cZwE00HN{|+
z8hdm@RFFUGp$c$ugzxG!QQT-?gn`gN#=uCv&OpilEx|?`7-Jw|KvTi7hTKy>-oQAO
z;K{vm)^38r57ZWRPoXnQ25bY?gSo?^xh8?Sdv!pu@CB*Qr&kb316QZr90RUOnJWl<
zooB#TLE^LmfuiidOf)dbz)S<P3`{mK#lTbp(+ugQgk26+&e%(l=>}#P(q5O#D1Xh6
zMO$7NC!K9zj)9vE%r$V6A(x-{I{xFTMe~Q4(OV46Gi1BIm0zm3w4d3+YA-HoJsIP&
z<{bv^G;qqm9|rDHWqI7d3f6;xdsOgVMHeZ0pMm)b+;4ERq|_=8QW_O_NKtYY7&uqv
zzgfOV3@ps@_p7WfR>38TK5Ag80*@)WOwr|v9#WB?FtF0VE(5PB=931VGVrv4RR&fw
z&xP?d2G$yKIFQ#rzB(193+Q!h6vf1AmBe}j&luQhV4Hzw4LoPy1p}K5Ja3@f`q%~o
z8&#Uby!b3BGheTN{6)oo$pG;e>tdS?wCf+=q9_L)#D}jJ+YRh6pws`4A?>EPbXc&p
z;1vTq`IZ7{j!s+dU+Rk86j}oZ4SZ|hbpv}0d}!b!18?wi7<kvfd;Goz_8NHGz&i%E
zUx^ItALl|9Eg2}o-<J|Q4Z&a7J_Gw%OamWK{WcTH%>^5~ON*l(i6}=pTw;Fbnb^k$
zJ~8mQfiDbvYT$ncKBH*yi`SBd#Qgm&5`x1h_UP`N+;2$@@uh*U418_i8|v`Mf?I(o
z3@<elT&iQkUl$YYDvIx@#|->x;D~`A4E)HLEHCvxwXPOrwZFV1_Orqa^0?!}6u+k8
zV^iGJKi)QsQc?fL3gK2?1IJaZ{%(LjxTA`ae?r|YRkG+L6S)-G|8lHKIVshD8u*JP
zHF2Yf(+18^pO|Q9;w;rHe>5hlaQ>fSW+2Z*NfYM{TrhCiz!d`*DKq`!l#Q4B$1fT9
zIW8FdS235r7|Su$48NkqOnlToK85?gObm~UTt)d*2@`+3UU0a7oOer^C~cyG379Bj
zavvPZnJ8~ctCIN~5_-`#rg&~!!N2|E&vp?RJ6h31B@>lRY5&GHOLLSXUX)9p)S~zI
z5LHc7Gf}&;sB5CSi5ezqF=(Qu2?`Z2T0@=g*MfkGj?z`f#C4_=GpmZIIv}oHi168Z
zChD7LpweN_>g`GW$ZTYyv58J5I-6)>qN$0NCR&+jrXCk2q9&S~h?ufM*qM3aT!ep(
ze3LtHMS+PHCazx+(?>+pPsa+!$xpDpg=o#fmJu-%?M<{X(U#THU2rY9odWyKD1+Rb
z*ug|c6UmYCZ}s<3AqK?RN9|&wtBFDr{Y`W;(cMHZ6TMCJFy)6X`)8!5iCeh0aYeLO
z%luZ;MIRG=P58Hpex}?5!exaHQwGe8$?*~Ge+HNsXkxI5Ats7Uo~(^QeB=5UyH$<n
zi5>&u^iDAB?SYhDt~C#3p-c>8q0U4a4i?9{iLKSePpe|3$3#b%7-?d@iTh2AGBMi3
zL=%%tj4?6Rgk{2JF~jIM6A2TVi4g<h<4sI3G5xU^ae6@9Dl2poh6&Te9RuRr`E{nP
z=rTs|DRC^4G?8K{Or%XYZRnVADG4U00$RLPQ*0O|Ds>iAHS4Ysfr-$>@&WOTiB&6N
zv|i>Gn8#=ux-80n!DJItOw45!nV4!~nn|A<n8|FIvNcip?^qfmV1>^zG26tUHPM?*
zJX1~7>?fIXOx&a-oWjgt@js;L#XJ+Ynz+lv-IQJvw=@4H?qtjwqE~;xp6#c~r_-+b
z;?0RsCU}pDdzt?d;yx1{QZiW%)#qN0up57@x_H3EgC?Fb@wADDOe`?*n2BX39yala
ziAO27)x<&*i%cvwv4n-q6Xc{jiV`oxC?xc`G071no3&r6B)@kwpIUUeiN{$RCRUp~
z6bw(8SZU%(RgfJ6;;+n<{_&WN4-_U?qi(G=vCfpetaKu3#H5Q47WU@>@%5|_mT|1u
zX5v{B&zaa{;zbkBo7iAtBWu!>wn@L_OC8J3JeA~ci6}3Y@g+6~GrHNt7D`$_QS~ut
zzD}L_NF%Y8<?Sp%iJ{WUWrvAZOiWH<N)kIw>@rc$MtvKvn%GSdvY=ad&BW^_uC-9b
z!X6WEu=$wy)5M!5-ZJqi#lr+mSofNE$Hcn|zpW^B^?N4vnfQ>J%EW#X@0<9*#NH{=
z+Ks(^>grefOWV$t>FBR{RJ{0v?Mul3H3oaX=LW<-GjV{GY~oiY(n@@8;wuwhoA|=S
zm!`BQ`L#g0x#MKfHzp2}W8yp37(HS+BDatDy`uP@&$bd{Cq+3~MDT-&9~FoAC+d?d
zK17+%Vh%};nE1`aF%!qBLdQgZH*u8Lld-DL#2Sr@RvZ}TkMe|xlO|5FfG>CE2j#8G
zrR3Dm`sT97`xlkJi7O^@ES#b8XY=eQF0mnW7Jr*KN43wtfGO>eYjtZ+%IktDHx67R
z|L+JVlo)fyHR4|rm&=RG{31OB0X?x4vv7@tk`_u?D7GS&YjK}N`w|w4TiCuO#({0q
z?FAf{<&ob&N`7ezWh_*%01IU;l(SHtDI^80e+RCLl_)N5i_3{4_Pr}wsAQqC1$GxV
zUykq}%IP)Q<WoL5b6C|vH4EJ=bhps<c%-_8h87xGs9~X|g<2MBTc~THo`pIV(!&I=
z>n!<=q62wih^V_PR^Q?V1aQ0b^%kh~2zc>ZbINGenMh*`O)Rvs(Aq*%3(YL#TPU#5
z+(N{Hun^^|AB`<9Dd>l=)VT<Syzjs`KQtR7uND?aTUuCqMmEp>eFW{^+c2vZI#}pv
zVf3XE?JUGBw6`!}Yrz8kk7|fv9l0k_BnHMiS?Fw`i-oQ%2tDw$&1e7r@hW0OBAQcG
z?S`8sdRXXbVHA_H(91$^3xg~Sw$R5yUkd{)47AYCLZOBJ{2bg=RYmOUD5qjd9qLL2
zdv2uoZdJ61Wt=497CtH~D(JGK@?2vv#KKSu!!6us(L`C?z&y}-qXo*+JY96pk@Jmr
zSH%dvG*66V75x#JT3Zwj6x8iwER40}sDFY5nkaK)JFjsp$XqdAQFfvd7FJvGzf5Xa
zFfF`nVTT3Ff^Fd*3-?+`T1Z*A*}_~4js@4kR14EAcouvMp@j@Tt0l)Bl!w3qweGAT
z^7CEWTTEo-TbOKNiu}Z4j3M(tOD8(udSh%fHKT|oJ^WJBEzGnq%fbu`4E}pM!hXnX
z3v9o0EZoG;M5DOo`E2P4Q*K`P>xBZ!VWU4Iw^*2Gfs<FaTDaZ99hMxS+-Bjes-nTO
zu{%|5-(_(-Cwi`lj%X;@0bnPVpI{w5hFO?zVWov9E!<DpW;zxgv+$sWhb%1O+bt~M
zM@fo@Ej+@nusS+*V4SKo)?O@R{DJYVyQS)0V&P;<@u-D$1LJb?Cr@~5Vr&S_)<u_D
zSV6(Iu-wAqmULCoXSN`plozKfc~POQl3xKYSlDD?4F%Q0GZvm@f)<{#=mQz+sb-r9
zepz;1E}GGu1LHKtJ}@xeHzL;67SCDOU|}P_wJI;ObZTInvyr9Si#;s_cdNa~`o9#}
zVqvR=mn>|yaQfc}?W{=ogXV6{ZB!AggxR8Ke3Z_SrfY)kLtnA5)532Sez&m8!mAcO
zvGA#d-BkV--lZC`@H&-0YumzJ3vXCB_-)>s6!mt3)4Y5;2WvymN8YCVuZmFtzQam8
z6``SQ`xgtirDC6j{T4o?z+2#KGk;s}Tlj#<=I7VjRKR-vf9A&)IBFoDQ;Ywz@EL;^
zexS%%_}s$R7QV6Y1%;eV_;lne)jBwLcTcWZcQ$h5ymUlxkd=8h@~wsM_$`*irbY9~
zEL{|5KViYy&OfqoS@^}mVG9(kpDi4+z~2P%tTzj&Qn-JC!Cx&LVJ)>0Guw)K<;9}*
zEjSl_)WR`pT^prr9Jg@7!UYQ#DH0Y=S@_$+KNkM5@F%ssg|n(Xj^vJJzGAZ+nw{oL
zbEH6WlC#0dNQ0s{rym(SXW={*NUPk(Zx!FWvKM;W`N$=T5OuqaYizL3cA47JLXItM
z5jn}vHH#PimA2NLUdXjk+(ro-dA9V#@^B!!%oLo^TiZv_B=~YivBeRkZIrQ5#YR;d
zWo?wRQPD;v8|7_OVETu<f#6icroK8Jx$d|G&$k!RcA~P4Yi;~CQ8X8F*A=G|iL2SD
zZlku1IyN|IT*F398?|h(EsSZ;om0`jBGOIMc{h5UEr(`xZS3DA_w}<iEy#$I$07}E
zTu-Kr_iZ$^(a6S~Htw>~*hUi@qil?}(bPsW8-+Id+h}ehVxzr{4lL}^h_KPZMoWdG
zw%o3sZ=*ngze`DrO2%nrqqU8a6U4=_(tL=Zjg7W8+SxoBL-Ki@(4wTA(&=cUlS-|x
zqMdE@wz=E4LKkN8a)eh`8{M+Fy8=CI^i-giqSS|s)<-?g*L8VWzO<i>uWpmJ2Lo&j
zv@zVqjW&vG#BB^wF$dY`SQP(4#UU7MgZpbZK{wRK)-_RHH`o}aaId{F1{;2!H^Rn9
z_3VhoCE0yq;vc?LFviAM8<TBJu`$lZcpJWrw2cWiU2_ZFhG8S2p3-dT8SkodJZ_*c
zZMi|!r3~0|`@gMdl36W^rxYgBQD8Sc3?GenDv^dCmnRNvOti5?budE3&)5)cWx?5X
znZ(c0Up&g~&o-vnm}}z}8@ZFkbQ`m5%%<en;5@)gMG2-)5OZvN_*j(J%{Fez;%O5l
zhlX48Y}{&N%lsVnLvFKWH;FHzPfmi{Z8@uXhb?>24Bl<y9vhFcq&Dug@#j=A-^Tqm
z?o*g95Xo6%iwA5xY~vAIu8}>c=tDLZD8M;DG8fudWJ||N?{>&tY|Ab#S1Ok%aGfp3
zYvep;V;SGejM-Rj<8d1+Z9Hk?a51rhUo%?r2^)1A%dB#4gnx=vHeGgLqm38ji?CMJ
zTe>Lz{v5H+#?x#Oa|Exa6ku_P*V}kT1)o*)IYpmWly^7SII%QJFybb$$(H-My3(7d
z4F-9=#BX;tLZ2R6ZEUl#iyeFQ#_g;kIul^MO%yNN*cp}GFlO=<b$6$tC6T+^#%pY$
zpXa?}W9I(6*KNFIW3Rfq$Hr}Q#T#s}E23{I4%cYn$>JAx6}+v2w>FlN@UD&bY&n+P
z$9CPJ1pzPa!uWvSm(4kej!ArE<6|3t**MMo+xXPRw>G}B@jqMoT;)%e>3nA6042)C
z7d8$OXi+*zW0(F*^)5#EN`bF!e51f^z2w`k&T4*d;|Ci@sK;#lXyYd;CF;Oui_`lz
z;|!}QepZrmdr|xs^(_Cqhi&}IIA!Etm=*QAjian*8z*fXQ*n;78U7ie`8_8_YK@E%
zpR)0X4en58nt!S|S10Wm?9wXtjE%EYXh}3r;%^)OF!3bHCvnckc^f%N6iecQ%Em<-
zmlS9*HkShMuS)8&;w&$UUr|A(NpIoTB$1nxyF$t)K~wzVNt954D~2+7G?JH;+Onjg
zr4%ilL>UFH+M)4Tnn_eh0!h?MqJ9z;lc<zLo#cP#yH!@8W)jzCIaL&>nnblMr@8_)
z6z$ktTB_GlxVEBQ4|cjv0rKl6@puUtp+OSYC($$sT7xu9((kVHEy)JbD2c{NG*KKf
z>Ar)%V*-|fduqCO&ZSe$ND?B6Xi~0^v`(T;68Wk`*LsBoNzh)RMG`HUVXu%^D+O4M
z?8UWBB9@e*$kf^;@nVsjTWGI1+;B&JrzAQjVKMQNqDvB8ljxtsfF!yl(LIU2EJYHN
zo{IKJq9<!!Yrm+htlnNp^iJZ>_JSN<eUf;mC{FNtZ&8?(o^}6FCMA`JR~VQ?Q4-^l
z7|+xyu(4oR62p@iq=JK!7@|Pi5`uS!CUJub5>p6oOoIM}MqmAQ8)74p^iwTsfcy1E
zC6U|^<EI>xlv<J3SOu036%&$3BysVj;_XMuxjyDrQz__47_2vLa8{ISWOVn$psmWD
zOd^$plZ2bZL{@1iJjG|Vq!sWvS1?<8Z4Fc~R5X)~!`(EzH7SXEr^?~#)Fh@Q@ly&v
zr!YN<8A;@%P%MR+Nz6*(2bG`MNz6%NS5hkQo07OWiFHXlmBid6ZlRE{8k3lp#H~y-
ziTjecEh+u0+?kZt7q_bvShPEmJhWYYTr%%U;%;@9_#Or5{eDea%vX``Pl7m9Yby^Z
z4viicQ0f$3#YU8rJ6s-5Vg-wz#3B`3%=8slqUfWFGTKrF9!p|bmJ?kWZT)5eZ*k>%
z$L<1NPb5LQGKnV@Am(n1)#`Q63=wORAYGfp(*p&;(@CsP;ss`#d==-}B%V`XE-jQ)
zEsdxoOUi45;%{WN*z)_nnB<0H>`3AjMpL)8Cb5l=ACGKFg1=67csNI~J&Bjq-4fGe
z|D<$5e&M0K+xO*h>4$bNJCkx{>a8~UuO_iOiPw^NJ&AXdcu&20PZE0-ctcTsvNw}>
zD~pF;H}GwR-$~+)MuHc6efyHwpTz$tmPx!%HMKW~(<2`x@j((FQs?-h!}G<t;=`oK
z|Co|LS$x7TcqQ_ws?x8IM-Heoze?ikBtBR83q`+Fln-*S$(`EYB=K!hZrSE_kj<xx
z1m7j`y<)DfFN5E5MEQH<N6KW93+^~X4Z!xB#9v7qPU2V9b{OHiqWF;{j;ZvCe@lY&
z_au%g!2T_R$CEgb1l?`z_%M(ALr*4gN(KK=^u17e;yRtgnI!(D#3pf;%0G$o)cnoG
zKiQnq<s)BrjvCc&Pe8%AKn-&?a#7Js{CvA&400}rcX?f*4sRy$H7Vq#urY-fQYfB6
zi4>Nn@OTP&DU?iMWD28FD3wC#6be#kkwTdi%BFB_3RO}l$46*Zt)XHH<x{fVRZtX)
za)yB%MyQlRWfhZ#!3<VaxLykNQ>dnJ^%QC-P&0*E3eZrEF?rQi!8(dwr)b?2=y8I#
z8mM4XMH#$afrcqGQlPP-O|o}?>n&g1EQRJ-PDBBbLNv?CPhrpNa)jP8g;pu_OQA4@
z)+w|};ekq`n~K&}(e^2{%RUuL;Vxy-$_G27&{6R_DcU(3r%MW5vzTp%F}tf^j}&@l
z`Mpx;t#F?#r*BFc1u=4e#TlaL07VBXTBK-PQAQh-!r&~{N6W6u&=hXSa)v1|JcSz-
z7?I`w^HTBADU3<MO~Ff{ZWl2&^`EupxNMy9DNINqk%E@xSPJMV7z&tK{*FA@S)5EE
zrLd#u8TGI9Q%I+9cMA8U5Tp>MFfSWFlfpEr_Y@{7&Ll-AD>_Bdsfw~()<(G`JtKuV
ziZe6IpOwPwtGKx=KChcnxH)@wt^&6x%1-sI3f!jX?TRw~9SYp3=v^t!;K_9EP2s*2
z?(h4bOwLc?!4w`+aqg#VWS^}Nmtwgfg~eIU!wNj2=t4yoDM}@|M1e;YU8?9~iZX>|
zDd}^SU_}Z~r0`S<Pp7alg(p*3lfv2*I5)d0h1DrJeZgqMT<HMk%7MI=BgDECxX{m&
zdFdmXZn)N`@JtG{+<SF@-fMpJ*%UUYw>*~ugU>6<g>vGLm&EGV5}Q(ZF@?8NcqfII
z*osqV7>`q8x1_K&g}2nR+zGpl52o<C3T{u~<!sJ(r0CX6>V%z&?#l9CO<}jf)mr~o
zhkKZ-OOZEIcq7GKnb8?%q)jYWRX9}KOSMo*Y|>=RcT;j_>%J8BEAXD8ZN^96PvHZV
z;1{ZNAExkm3WMH~GbA6S@No*CsJovk`dJG9Q-F7WRxdh`mGGK{;_6dhrtnoZ&esZj
zlfuCizE$`;McLi`J{#wU6n<2A(ZW7V_D~AHq_D-oRtJYu_?0cu!4L;WQuvKJ%|UGk
zzo&4NofZezI5?KV@f6Oc@OKI)QgU(gj}-n);baP@QW!Wn+Gl{+mMb_j^H&O|Q#g}C
zpV>t`pNNW)6Fzi=yR}eo(DY9V=Tf+o;#46h2Ir|8Q@F?$)JC-FBxo_tQ7W@nE+a0d
za3zHt2lS7}3AZ@|<q8*9c{q2+4c)m8iaUUViVjLR$a7G}L0JbS9h7oV+QC$a4)Hi=
zP`ND2Y;bah9$X2^IVkU-0^_G;&!Nwy2&cJLuaqnDl^j%dP|ZPg2iH2N;>c-`s*Ic~
z-oC4VmQMexE!byhuDZ=N9NDR^>43SS9ak_^RNq=q$H8?D+B@jrpss^@4k8YOgZd5{
zIB4vkiG%A|A_t8e42#DX+*@?EsTkZ`I?n37qjRfW?VCDi=Ab!qGDzH;7Bmgz#nqhD
zwIa2>AnG9BL2CzX927Wc;h?31R*sz5q>~5w7~wCnM~4;*ri=1pqZIqL4vy1K)sZsE
zH4!?=kFnm4Mz|J6+R;HL2fZEianRY}`7F_{4!Sw$qVTPC1v%Xv^l<P!ogPpgLg}S}
zc6vizlq){Hn8{Ki9gp{Q(9c1U17@JmL4OAW91K)1TCL`4=#A~{geZFje5vL~;|>P#
z14ZPjAM1^DsDm3E+~weIR*Qq-4nhYR2RAwx;b4M;goBX|Mmga4daTOc(!pZ1!?|>6
z|9M9|PFIT8-z3I481H}vliY%L|B1*idI!yc?!a~6IWQcU4lD<@1FlPsI}u@)3d#v~
zgOiRt?1L-p937_|xnsy-LH>vk_zu#lEP;bcy9&6}_;ss%nv~GN0!Jbf9WK6Lwu3pW
zWCv3mOm{GYrE~B=nUVwc6ijpEe!#~^OS>HwpVv$WvzP%}a8o(QFE=$6bqn%ua&WVQ
z+Z^2PV6KB(9L!^39qBKK-;_RqSxYpvCFS}NpSr`5i==lt^tX`PbzPKhRB0*gj~4eh
zxYxl7@*UjgV7`Mz4i-~Fm>&lV96ZdopNc%_;31Vl{l}tf;_=+Jg5rJSis&N_D2fYJ
z9Hw7CjB<&5i6iaOA9JwG!J`hAQl#4mnk;g=0ex#Mckn!I4jt@$t$=EQn3<&Q`bt(Q
zZ#mfDV3mW_4xVCh9IRn}#*4KM*6~|U6Lju3Yn-^yOIm<)$$PznXZSh?&#?s+<kN(V
zGuTuPbl<@}{+w&&dhSLCFF1J7!AmScN3n^`;b?>&dbw~wu$fJ`8Wt4_e&TKE=$@`(
zn}h8R4za;Hc-fJ^s*fCeOv&L_aIn+CE{7f<<)Y!M4tBFeJ9x{%YYtv_u*bn0)P5_Y
zCCbaU?~2Dc&CbOg(OU2nn7t0(cJPjacO4vPBd932%Ye@9Sp#&}e0PpG-%RYI8gcMG
z+sKBT4;*}`UgRX?+TW9p#%N^7WIu86se^+KzGeM8_{_nV4!&ZVj&wr%xr1_aJ1|l1
zo*?+bksVipuN?#xd%V^R-#FllXc_WdJkDnI9UH9DZ$CP6z{pDYfu%Srw>i-I=qCq1
zGc(tT#)&8|TB#j&@GG^ViwZ8bmKR4H{N>=ZgWuTX9UNux9sJ>dD(JX_6An%~IOWJg
zNmxL-qvvYl+@y5F+cZb+S@@G8S14Kz6uf)J!C416E{eJM+rd8$E;_j6;2ev<g<uC4
zC`(qf<|Mh1;kh!R4iDZMB>rW#DFB)16$kV~$Yl;rMnyLlaP-08H7;^plyXtpMR6A;
zT;#bZ>0(|n*)F&o!^%Nd*_Js3Yf)L09-UjpMOhc+TpYSAC;7QX!-h{I_L4OOTvT*X
z$HjFnD!FoqQN=}77hIOD?BZHiI^!ZHWv`=}i<&NKxv1`<hAU5-;{Fjfobl7eEd@CQ
zwOy%c$)ujF>q?8hI>ki;m25p1^%aM&podcOuXoYVMI&yJemuH8Upz8Su*25WMKc$-
zq%kjz<}M;GhWQxoL%4{#c*Mg(5BV+%T)gk%0~ak^v~;o5#bYj7xoGXecae6{#zk8f
zgIx@9(auH8MK2e<U9@-6!9_P0-CcBa(aFVxps=fp-8_$Gb3tbpU)j+vF1R>F@K-$k
z=}dV@M-LZ0U6d~^D%Z$m#ojeYJk+%P3Sabb(bvTQ7Xw}NW1O>*LKpp6Z*LYXdNwv~
zy2xoHc2$%f$ctRWT?}IU3ZhwOxkmZZP`L}{!E&PCv;jk1+~6YNLSuPd40kcw#TXYi
zx)|YNq>E85I3-S9^v{V%aZ@(5x7te6EUsmbburGxcoxJ3*M<KY9p&DcK0kEg^byzK
zHi&%sw$fb~E^HS`e%b96Oc$0bJ-Ty!kY;;4T!yMX<<d11To;}z=ZC4Nxy6Ioqd48)
zM({_r{bD3=5%NJ7_qxcqnCRjrm+o{hiQnDDbQd#ROmQ)lxmA?2VN?Z0!=<n3!yEg&
zx1rBWX28X47js<DVHeF;$mi==pTovT!C0IWb148WZg+796RBP>&&91SZgaU<md_PZ
zT2J-rAf`={i{N*<xXa~<DslpF+35(E%($Yrq^e*`EV@SA=VHE##jfnQ-tXc8%8x5`
z^@A=Ra<Rb0!>p6n3fRd>zE!{<-{fO*zL5=?XDuysv4|qqPHyF<td<-UXCg~n9IPrH
zW%kNQzbngJEO)VmO2ftDE>`dh(iV}m=VGOcXIwn%@~?_jF4nntic%r+SG!o_Vl5Lt
z8TqMsJ~=n;F8D>{Ggxd`g{NJtR~Pwg6l4-S$2>D}pZkokK|OfQunHR$hfBbGoN+d}
zcv0PAGzR$~v$xqrel&k$Rk6**b{B8Dc+17hE_P7bRaW_~S5&TcDY}zY#2qdo|J5vD
z;;*@QT}9rb=o^Z1`CcABnlJXc;ELqCit?pzt314;DEUrOyys${i~TAB-MnyKwEpGD
zhb}&H(b+>64<Ebugi6dqo`+9e{LjT<7r(mr%*6p0-@EvMT8@XmxcHK7lTBk(^a~1V
zO?lALM;A+c?cy61VeGeZJi_asi*MQXc?zWBbF(U$KT`7N=iJ;o_h%Ok2E~7(bWtx2
zlB2&vD%vlK_G=^~A8~QY#UCzyqrPIBttOgI6-Qlk9TY#N=y63EJfXlz=Cgrd@J|<i
zx%k(`WtG}#>U<afxHzMNXIbjHvRTpZVu>eZ-}{`4^DZu^y9{2WAiX4KGcIL0+olb;
z;v&aGF%Q>xn72U=qPZ)OvYqS6$vRHlkyBh@208jD>7kT|#vYn@DD9z)hZ-JgdMN9m
zoX6>LS(&`bD^SrxbVICy2Phya2nKn#lDb=2(X%@`SMgBQLp7#WUE0Q1SAce0#GIq6
zrJ}L3eZ7a;3fEEeIz{U$T2ImXiZcBM-hZAY8Y)gB@4u54S&dCSH1p8XLn{x>Jw!Y?
zxn1D>H^1>)1tFMK4+Qy&@|Q>ae4G3h9!}R32OA4+4{7b8t%r7=v`A^=fjw2el*XAc
z4;?%Zv{#fTCKL1O=%JJ1@DIyiR}bAhm>w(--97a1Fx0~h9(sD{<)O$!+(T~<eLVE_
z&`%ZNsiy6zbNCis&D69*p@;sg_L3zBco?lDZJ>(DPTC+3gFOuK!2QLH&l%&jedM#F
zHs<gX4D&GDL&AgR;YRfcmzhR*;Fh}CtK^c?NDmVS#YcH^DQdKbF$xfm^)N1r$9tHN
z#WW1~<Uk%B^61R)Ey7S~a&ePyv{|tpW_p<AA;lUfQ!?!#@TBV}M@4fzc%D4S(pQv#
zOVy!=4D;Y&k|(`OaR5Rk$s>#>dzhl0y6T@{DjRjT_IwMkX&$DlTQd}8uaC^x9_Dzs
z)5BdJZt`%mhuhWNxt?6!qI*EDv=ZDx$yc0P6(#33)?RTn3Q+N%C@H1-ZV&f(ct~*=
zyw}713g4II%=gf_jI3vF7k$8!CrUi%AzUYSk1oi@c~}8y`{7}+hYuOe!x9gVdf4D$
zqlcv)9`mr)!#WSkJS?Xqdsyk=zz{hq=V@GzdsyLtfQF+S7eDD?m50?H?j9shJK_MG
zw8^w64J6i3qM8VTJ)Lr&^6-p@XFWXaVNH&>=cR)6tmG>ZuB@?3`J9JCV<dRqlO29u
zoT`1n!zK@VJiOuIMGr5rrH>G=d)Vw@3l%~W@tTLN4E`Q@d{F#V58D)GaJz?>72cuf
zD_Q<d54#jTQINxEymmA5gJcJQ#z=I}NTu5Uy}UQspgg?e;av}VJ<#BvzbaDpQQxMJ
z^bj1Oyysz`Cr?IrpV_M{ru-?#mHRzubwIFbQ2YaCevsUS^s$FeJRD|Z>VFUa^LVfh
z4zks=N<I8MD9*<FxrdLNNC)^|dH8}U4~l=OD8WY)rTf9JDTk*c6?eqG_3)jCA3Xf%
zNq_hp6|#H(y(f2Lu@o1m`I)AN%CYWuKNV$=dz}t>_=S-d_xWv--1>BcT7|XeqpFYJ
z*$_Nj^6;;RV;;WWm-mN<KPiMBoI_nHNGCj;R04BK(S@yLo8l&{zdW4v@V8=~_Hf3N
zRs>wCAZ3JqsO~&e8Z7@l=Tw~Y{Jt5vB6Cskxz&hwFMGJ+p@fe-A2~iobQ8t%<oZ-G
zU!EMt$k+H%>~l#Km^)l>TBD?oQoj7?6@8TUQN~Akb(b;A`k)yz&x|XV<y=*a6?{N(
zIKW}FN<J$4V5gDdcP&%fB&Qk4ujZq=kM=$~_^9EdrjN!xn)s;YqqdK_KI-}O=kQ;9
zujAu7mFC^m<+IFBeIE@Khq!@{>s2Ocbo7y0tZBp-T`M?1YwDw!kCr}K`DpGVq8`cj
zX{{~Op&gO%5%uNfvPVyMXRyErhwUvCCE#{TMr-Zk7hkkh&$dyN?s3{FW=v5IQW&A5
zk4`>%`RJ|UboSBJM>ii`d~jzpkI>~HvAep}!>0{@lmfuSdn(KzWxkJ(z8s#6iVjlI
z`uU*2%m5#SEMS4))n5TFu8}{`N0Ev^9QVOJ;{=1%<4j?Q0z(zOK~b7I+{o|l<7FQ^
ze2nxl%EyDO3Lm3=aBw%x$8;ZKe2n!m&c}Ekt`E;g*tp~bAG#02N5YpsP-a^rM;Y*#
zK6oM+trxDENm#yY9k!xLA1MXCt|1&>`qSer-$&ZVBp;J~1T1d_k@2O`X{d@!&p%wj
zXZjOWkOqOYjyO?YO!2Y(u_%A0Q+=#xB^&PyA2WU2?c*LFvwY0<af^?6%yS7b$CozV
zbeVpWkDGnD-<-P%=p1;i4^qC11FKto-0tHJAGi5fT2{2EDmqV#-s#If1@|@I<x8`T
z#)IR;R5JHcAcu<iKJHiGJ|Ej?B{)=Y&)ox*_S%A`P_&m|aDk79eXRAd&c`D@7P9!v
zu#ZJP7V||u9`mKS;}Rc_`clcTcTM_3Em<=^juy*&(2#gJC1-H_>CV!q_|LPECm5_F
zR{2=%%PqqzeLU&Q<J8F<J~&QO(lx%^Cph|z7zLikJwN5+X&*28c*)0lpFX|uypIh&
zx=)WjtC|VRNOx7wF_Fim*FoA@ZS=8;RmVjH`XBJ6YXWW&rG6&I8yw&4V=LQ!>wK!>
zExvS)L9mS<(GlBy>1I$`O;;7K_}J-VU>Zef?DFxd`hxA#*v;(u_}IrMeAdSvAMg3t
zN1fo~O&@!Gygx#&&Amm58lB6TfjgBdd)vo5K6~s@{s`XXhrSYN9+AG#_cOka5BZ6G
zaNi%L?gL+rvY7(Uo~G-7FD6O(WdHnAAOB;kPfPXnnU4efQfX97<8vQh`1seyWtGD(
zDVaWwFcC_!;(X)d2L%o)%GAD9;5+6g%i()}^zoCApR=4pKDg76k$+K~!&&}-^*O&$
z`K#dHK92f0rtlwZfE{F3k7r|^@NrV%Q(4Z9%F)xGKK@di(~6$S-aX64SYM{V>mMKI
z6#u-U7qW3K`nZ(EJPPWH!e!Gamqt$dzutSXG_FY__i9klQfZV>ATJxIWE$&6$aj@i
zoHAK{&W>CzGhNmE<<qE;<)55dyiyvK)2N<CjWn)Jqe@yfu4-w1JLw;rNmW&mYo>79
zxd_!GIW-mMx-@DjP+QSDie9xfs;h9lH0r0(Kw&=BIF0MGxS;}#6y+i8O%!OVXfs6_
zpWiN$hDal-IQfdwAv13kq|qWR724rC+)g6vr&ac;)(W&qqpbq%viw+DDlx|FkVeNe
zI;GJ$joxYWNux^|UDI@_4gT`FrKKHOcSQ-F8yh8Mx1nd64lPBmv^-so*O-;^{KURY
zyrL*f1I^HnspX0Lw#Dc?s()IZ8#^G4V*^EFwQ)P1#<(=br!gpv!D$Rh<KX_hVQCCc
zV<@j{#SMx&bEVF_F)a=4Mx-$^4eo1Uo^Kx}Mx`-2jWK*g&C-lb%fT#f%~=+sw|U|T
zX(ZB^l*Z&Vv@~=+n}(Z)k%pOum4?mfwGBC3zUkgg&P~y5HJQe@2l7&?iUzgl{>0!o
zw{Li9_-TZ!cA5aOl9h9wKmppIa)yCkXm~4=#@4~{iIlh6au4Q|G^VC8GmTkkOk-WK
zGS5Yd6^a?G=bHrWRrnygF|WtO>@?=2F_!{1IDQjz8x@;=>~ymNO!-n>QB0lS%$(es
z#%<ICA-)K4dm4A7u_3_50C%QwR~mH!To>T(H11(3()ccod(*ftjhEBdk;eQq?oVT7
z8c$NOypr=k8jI3coW_G`Jj9%zi!4avVHRp+^zh*L)swOxQT4DejjKI6*6rp4c}voG
zG>xU|)?;ZbOXHoMqW#eF%hPx~jTPztM#nF9lw)Mhul}|%_Jm?`o@!MZtJ8QUjc1vk
z>uHiC1@$RK*RtLeAZJ1s`H7!SW4+>VM;L?8rSUvv_;}<+mRj*Qrsd2k{~b4%7cVHx
z;3lSDO)B=6Sj;rGs7JP@u}uLUK)@8Z`b@fAasC|~e<h8bX?&{E+?B?wEKwToQvav%
zS{iSr@m3mltB&qB?ZxY9>`8;*4Mo{?A!hdWs>k0>%N0xp-x6{U^?Qo>p`!cJ*q_Gx
z3V)y|Biz0(hi>Z#czu+{$BO@nqF3EY{4b5q_{pwB4y5sA8eb{=xuRe2D@O!xeXZiN
zLwitxZxp35SmhycGQUsb2kN&#_J4j%<EJz(rSWeXKc{ghjZ<m-k;X4+bYGi$B#qxF
z<U`_z)A&^ZVxBkjdm2Zn16i>{<Z)^2V2~bD%7K76Kas{s_0r}e<cIq+jlWdzyrQQS
z{U?nxRF5O0XBGWhQU2h_Ij16UrIOEHNaG@Fi6f~EF<!LxznsPuYV`nl0dfKq3-DAK
zc?8}yf$Uio4^-!0;i27y<Q$D~lT^t7r2>>!cS{E-qd?P{qO1aplmD~q#Fh*Gn~WMX
zO3o=EK*a!+R9#gIP(48906eXRRd;QGDvDoKQF1s(QA1(=9cn93Ge9i`*r{LyUjLL9
zbpzB3FeJdx0QJ?|MSy642HBikAE2SajTCL1<u?h?RN-b>PICn!iY_Z#GCx2;fQ|t=
z1!xhVWg!1kG2Z1t00Fo@+a^G36(lCJZGd))&z@niHwrl4OJmFS0XhWIFqN3JbAT=Z
z`UL13U^x%f4bUw>_W(2(<P>y|06hcr3eY<M`^MZ$#W-J8mM-79KWp!+1*H7~6b2X=
zpeVpA{Y3u&+`%+J<(W%Y+}^?l5)Uvaz~BHo$_aYNp%)-diqf+*z0*))ZwN3fz-<9;
z4=_ByjRDdDf&e1|j11@=A6g)%uSW$K8(>_3(E-M=O6kMxLWG-em#&o_s>cUX4@?Nu
zxcld>NA^e;Sb6{>Kr%oofEmaIeJg;?>u99+kT@4^#tw;db1VD9P5?K67r>_sl#*uH
z++$8BT~r<O3&iXp@x|K<!T^~7vjWTxFfqWS0Mi0Y4=_2vrxznr0!$6$o@=fyv5Ghm
zad&=xg;S9k>Tcm*k(t!h`T5-AOv<IAIe|P+^X33^1KgxAoe7Y`>y`lX0^AzlzzkZj
z2pTgiE69I%NSscj@1XJzurk1t0q$ag0Tu>W6yTl!_Xc<{z(WD<qYMYQKfnW&s2o8X
zmBmLR+`rjwmfYM&!6=+A76f=WkUjiI0{qxX`s1P>c<yxO9yfNI7YA5Ed7zvGcr?J$
z0FMP&#=5;m3_KNiXHo3@mI97|eq0x=_je@!r5KC9A^<l$J`sQe0S*WL-C2-F`~Lu|
z1FYw#39v?eM1IGo0;~<NF2J_3JYy?*p|KRFrvvFaiTIY&k!J&WQ~`DS^8ubym}{mC
z=67##-^Iua0X9)HgeVr`#Q-k__#fLKr7pmh06PQh3gjqbtD@Wa7T)?jLQZ6qcsT$!
zKmK|lvV*c3$jK#Q(pOn;XCiL~cq_neKFG4HioPDm>5Df4><Pf**U2Fzhr50E26#Kb
zex?@S9p<pS;PoDhpztT<WN;tlAtC{3tg-ljnkT@=>O~)_^qJHr0jjkSpR#gV=QD9)
z(o$<;2LgN^;Antj0lo<EB{LA<yD`zP*bMo-0{lck&p!bU2KZLt+0V$WdEW*2KEMwY
z(Pv_Frid>GiIX$s%y9CJf}aC$D>tuS0_j!n5QW5+L0*R`KVBjAJXeK|sAqpu^mn$D
z*9u1W7smsf2=EW(VP^pir%&=L2l$IMlM$yV^MN$3ZrZU0$8<c8?=+S3mB`ruXB1%H
zjKRMHc~l<(gXaRASHTMbE(Q2k;fsMhLWsL6xW(qOdhiN`uz`G*7r`|lazms;1R;ut
zC=sH4hz=q0LX-?qC&YCjN`*YW5LH4{4N)dU*$@>%AVj$k<wLnrPZ4Fi=HUANRP=|(
zqZLC`3Q;-4wTwJi^q`$j9kG5$oc<Q*3a?Rf@%~^@EkyMY&z&hzE0nITYJ{j6N}Go-
zrwJbDMjst-70DBeYKNeAg<X9`-4OLcL_&xV^+PlW(I`aY5L`UEK14%itaUz@kQn4e
zscsUYX^3Vanup-AT;!0??UQV?A8qVI^CWI@jfTh%(K<w%5CtJxglHL}RS52`ZFjgU
zTXf4la><+9*4P1KSGjG7cFe6KVk})Z!F73h&86!G?)WRQB-SxRrx3$J3=h#cM3)f#
zLktMfHAJ@%y+ZU3(LF?u5S+;E$@+Ywh<)IN%cAFJ$+Jah@zp0p-w^#m6oz>9=dN6W
z6vrY|1#H5co8mew4>%hbqA0}R5JQ-UQX<aQdaD=|qEBzZVM_@^a4QO}Mu&#DLDeVY
z@OUhqkV2Dy8$%v-0WE|cVq}O>A;yImA7XTfF`?W%JC?YOD4agv!veW+`?Vor{~HAp
zLL?{~915+9F>$KR7kHpsDPe>#L!?4Dl!S><D})^)8Pd&fl#)PiiZoN?k;j~-a6@<@
zd{$0Q9)DhRD@Q9YY7eIQ`2-P$$nYD5crwJq5R*dO7h-;h$swkMm>beX2BwCX7GhS2
z*&(KfSYKbv2r)CnGwq}TxpPwiy)|+){mX1YW0*N1ZVGWT<DZEfOGmkjpA&TaJJ6nI
zUWi*m+!5kVD!L*uYhTW790E|<IT*PR85oGaHE~ynyF=U);@(jH&}p+YFD2)D>F2O0
zCS7fCa_RmM4}@3};?WQfhIlBHf6|2^7BEZI#KR#T2|=yPIUG6xAmDZ1qp?M-WJ<!Z
z$kIBZKlf#K6iY)q7D^4jBE+&#YLexAX((3->D_`srbf4u^qbMJrg$Qh3)8O-iLYX#
z2=Q`=9U<0)SQ}y!#URAG5Ko18mdz@})2yWsy9ZZzh9akln@5WBdkT7%6tw85YDJ$9
zu_44pieiX4ew0QOA0`CHQ!ASYj#+5%$>O{eVsnUXA+}TILu?IkX>F`&TplD*addS4
zme~AAK7%wz<V7X(N{F2y-V3oW#4ZYOh&MvK$vlL3jZzU}4>P<pc4SG6r&mxmz8Vte
zfu!7mL@{`avKr#;5buPz(pns&i=o3^Yg~#9s4wWz;$7;cmVy`O8TN;GKg7o&J_+$b
z$m7GJACgi|wo7k{9JbR^f~P>DgZMPW|M+FQi_iFpi_6;H^I!pwTs%Pal`H7!h4jl1
zU$O0H&?1AcLwrL?&Y*k-2Sa=t;?EF&Q5%H#KE!V!4feo^uOC7j3h_&bA64+D5I<8s
zA=fE5TqQlsf{%zE3FUGO!LKUF4%;6?;^Z8qp1Bk`9^yoZV@#o?;Jg<7)bT(Z`YSsb
z;uPOiDE<gRcM1f&-aHmL9pX%gYcj~q;4I~YdN0Ifs_3Edf7lQ%L@tIn7velW(@^OL
z<AS=yyQ~oQ<t|aoiU}SmcqK$m2H(#bz&d9ij8=|3=&)D@y&+FLES^D$4DvE4nE@B;
zDHR+nGg_&PTpcc*L79wPpyyH)E0YJp@;_BJ0~)0;wF(&^gZddX$e>~dl`^Q6LG27G
zXK-x>RWqoT0hgb+wYEw|PMA=N*rqtSS7BmK^$coc<eV+%?s(PAfRyj8labRPW1Yh5
zGO|v%{e)xcx*62V$ju$xtx0-4^W0c2-#5v~Y2=0(G|Hf{de@a1MJzIzO*3egLGuhE
z8RTbVzeOlI#Vw37{#cn4o=C_ay##&Ax6Ghb1_LuF%Aj=yZ8GSZLAMOrX3#E!P8oF0
zNUsG2w}^T}<FO3dQ-01wIw(reF@xC9I6;>TXok%_9fO9(i-w7slcU`;=#fET2K_VW
znL)1%`mi=w|E$<za)FP=gq-Rm;M#G&j9l}&xT%2uK?Yg#15~!Rloal8p^X>u3<hN|
zHiK~)49;Lk1|wNxH2Y`$WH3AfK1FXKoHDxmzM^3nxxbYK<jT>F8H`||l!u4c%k>zQ
z!D!aG^32S~$EZYheOWX<g9#bjoWa}-5*cV2Ow3?X26_gDij&U3WUY2+;bi2>U9&t`
zif?C-RDh|aGICagz*TV=&C9^g;@o%+H+}{gge;nxcgm;-yX?!GoWYa~W@RutgQ;Xz
z6w@=9q3%wjT(uK)GdMGYH@6qCfh4-*Qo4xwqB$9S^JXl*KkudtxLVDNvU*Df^D<bU
z!7~}$%C~3ma0ZWLaC-)KWN?254`gs>26ts}ZwB{eaCZjs3{XW0#@3e2kYIjB9jMe(
z$~@;xID&pK17~QQy{XUE<UXV@_2&Wwsuzic87#_Rbp~rPSe(I<43?`RJemPVLrX~&
zpmivNTty;XrZ{Ype8uA`@(M+tP;_MmPb$E>s}$h0`C0`y7<oE_bs6wC{S*~i4Z*8e
zLjFW}>)8yA0I`vh=0=}qYc1JtLk8DZ7xbpiUOH!oXj@Kc;ZE=uGk7V3Lo@NqOl;0z
z3lp4%;nT1+gKcbyQ}Fu~Y|r3jYKci0F$p`=+h5IKw*s$Z@P9mA1+-Pg*9RUY2tVnR
z&O7%#`cab7T%>vMDCzXwINjKVi3%bT0wO91Dx#!_pop!Q*kXXFlpy8zo8f=Iwa(gW
zpMB@fIWx0opP4;7wkc%0f*eY|>aHT}F2dtUEKPEKi#_E0B>E=tMiKT>TqIFBi8qU|
zkGW2YaJmTl*---%Zx!L~B00H;A5gV@TZHe5@J<m97U5k*`KSmV7vVjH^Fi+y;e#yx
zVG+oFB=Y)1Azu~Y(;^%qx2xMPvcG<=kZb;uClOzgH`GDu*NS*p!EY42;t~A4!hb2k
zuL}902tO+1Ck202@Q8w}?aH~>Z|e4V5q{6oj~3xr7XO2@>~Lvbe`YCvDdg`WoXAp6
z7J(+RtZ-GHI8%g66hTGOYwRCY;H-k@6#Tac=d=I1P=t$F{JIxP{-^NLN!cgG6eLny
zAtjQ?xkAa(ODW{a`<GF8*(9z?qFfT?vt=qKx%QK_Rmf5}?~ui>QOH||OIJyvY7)6g
z<Rwup3F;4-PoZ8C)sx`jp@u3}GyAVv3aOn$oh+qp64xsH3v~ujKZyoOG*p!4*)oli
zXsqxi3N}@+S@zeb##C&f@RnIhED53Tc$TuS3|b}8Iw`GCu1lhgqPNff+BS)H3U8-)
zqeGUSuaJ&ObW%uX1-oQ_?V7|%b=bi#Q8z{Go<t9Y^i;5yg1r^IUO{%|!sm<iOQL@g
zHz#pR5(APLn54xfj3fpnF*u2NNv7LFLY1GS;E*J4P{>dPM<p>#A*^k95+f8oGD{hA
zPqEQSj8V4*NsL#>SOv#r%M>bPIJ3YjWMY<1&-%$p+?d3aEM=xbrY12>A=4F{k^Qx0
z+niZhe0CCZ6h1dgSscr`DT`mRXDd>-Nd;31rjy7hL{pG0x-w7AB%&l1Bw=Ogb`nk&
zcNO9#;VUG_(!(UUEN3NL#?YAL)?o?aw<d9$D)2xOw<mE&689$MI^j-5q~+~B3b{+c
zyA`}|MoH4C{8^a9eM#J(luDtd3*;A;N4i(cw;og_A5!q)Bo--zk9$NRk1F_>f{PVg
zl9V487I-3wWl8*)#7{|D&tiEJJCoRz#EK+VCh<ZNo04chI=(8Ya<nC-BiN8p(q?9L
z5^IuJ%QmVCS=I9_lf|D&Vtp2WHi_r5_!Uq84M}WNlouOG{qtt_KvH`95`QVlKtOS>
zAGWCiFDJ1j``=fR*sAbX6?`pAug6pZS$qeZp!#_?g?|$7C-DJWO5vZxz9jZ1rTzR~
zK7DrlP0p8w(nh+&HMCHTzm>$DJG;;jccm`gR<#{a@ErvYD)_E~e98BcxT3V@3FC)~
z_(KvODdgiMK1t$Jg@2hXe@G#pDfqd9Unp3pK3HER@pTf1llVpvzf<sA1^KK!mCJme
z#jm7>+1n`R=Om6K5litz9KR&-E9F~C%EsSR$>J%LNa6P+j&d|BierlS2V1?hD?iZ3
zllU`<zmoVniGS5kCloxRAS*ekkW)#VR>&`E1@e!=&t}V<OM)h0EPOu6xYoF+=>KJZ
zy_Cddh3Be07mF2BulL_`C3A?RP%WiGKpc&gN};0qskDM+6fB#<RVkEHIRATf3gxr-
z<MjW{;+>z6rbkHO8bzs;rB_a&N*1r0!UPpJqslxPWuit3HB<PrgQ%54-4w1>#cC^9
zN5Sq#<afDV3Qe*#)K8&77H^nBBZW84Qm%Znnx@c9QJO2*Lcx~VGW{nbo<eR)8e(-<
z#JrTW<;YK=RZ6a$`NY;K##sB``k`$K?G)ZVOX-mMpB-t(l#~^n6uq;8U9x4mrf{9Y
zyJacffzmxv=&5ddDL6ER-U_)sg+2=DtKc97`zhEzg#ilTTMbMxWS^Xsf4)<Ca0&@U
zACmp`2ELUFPcckUhG*#`QW%-VcMeO8NueNx{4_eIF*b#9>ZiJC+1SDq9!cTR6vlIy
z6n$a}=@c?4OiE$0qTHCm>=foGd`b#a6*5i1=?czJaHfK+b5@F{sPdiXDhfSPX+JYB
z`|JD^Zpz|CDI~LaDuux+!l#ykp2F=}x{*SVLYRU{ZmBLTMYk1n6m%8z6y!twl#C!v
zgl0BZCP<`yT9Crc3b{qWTNS)bK^A_pNtruRxKrKUm6ChphZKHy3il}FUIiDXaGyf%
zPvJp@JfI-gX{;pivSeLe52vt5(Wk0hFps6MIEC+0_&$XtDLkISt`v2-Sen8UDLj?J
z>J*l#@+(rPv_U$VKAFPu6zFqQuBWWIOlPq&1;SMdk^_0Mb!$>so5Is6tV?05s^J+0
z`IpTptXKH6DLj|L^9p}K!426m8&jA*M%KS6ODR)ca>a}4_9X>hR&a}gucW}kO%~ww
zY6`C@BJpi0Y|r95QrM~R#!pKti`P@wlj0s<&YCwkG%38F!Urk5smi>Q!ia61SZrSk
z`?EE?mBQN!Kaizxjvq|n-IR2bVL*5$D|wGCVm>m}?H{J_sruruo{!XDK2G5ig?y^u
zp=>=@D{sWl)$JDweyQMB3VyBNVFkZY@LTq_a^e3Wg&$M6l)~i{eoEoz6wajZk1BJ7
zaz2Hl3jZaAUlsD3f_$F=TYDVK;wKgIM+(PN_+wb&Pj&m3f`4broZz6hls$YZOF6BO
z62lW`Q#hyac?I!*v%g+U;d~aqpb+-ewq=t4t2HU}AElg{=Ec$|u8<N6UX^BKEhXy|
zETv#+1<PEaAB~kw1BLQU$|*{D1+P}Hf`SzlWPy=~OVe2E8g*Mq!OCe=Nu#R5t0`Dh
z!RiXuP>`#^S_-MHAnU245PAn(n+7LTy)^2l(IAb6X|zlumPVsA8mG}LjpnLAlQf#9
zQEg_t;_w6&N(|Dw{dBBFTDsEk@0qUoO@=4v$|}-`r_nl%HtJuwY2>BRDveIV6I7Ej
z0q%}IB7PxOZJ=nIM!PiHr_muTbz<D+Pp7F*1+kKmc(>*Abc4Z~I;9zK62GSLTN+)`
z=$gg@X*`(5b!l`<Ba?=fM)x#&q;X>!Q_|>}ZQZamdZp1jjq9_NfePu9#`m3b`lit@
zOYg6c0Sa<72PtH58VQ9AQSb_b-JtNH3O;i~&hRuwD12lZ;}kMVLH6zFG{z{rAWIpW
zmVvYQ6R$!=9IxPnG$v-tOiE+2!rxE{P*`$m8Z*<<G;vxQ)7kl(@~Cg0p~^6^APdY&
zW45}T!_Q46ky7|v1?MR^U%{IcEK)F;mT_$O-?aJ*|3#Ugr(vYwrQxT+uuhcxW*Sx+
zw)zY8KXm4G6wW`o3Src&Kq2>}ariZ9oDizpD2)Ya+^q0h(zrt*{Pk9a+@|2|3LcJ2
z6O=m@epecID}<C?jdSizgT9Ijvy}T3a(`N;B4vSx(s($HLuq`L#-cPHNn>{!ucz^7
z8jq#1K8<J745No7X{=3SJ{@w?SenLaRml?yKB?d`1xE~*`xIWw)$NKjRw`tbf}}sC
z5FS3RQOK2lvD&A}gq_8@G@emUp*n~}noBVO-*aj3r1<$XHmJXBOyh+#HYuDuwmFR#
z)7YkNUs8}y*_y`73g42Yyh6TOD`m^8S;}i^Y|Q#kZBJuImcBEMT?(fuILlLcyC;oL
z(_nDLH`3UvetI*FgK4~*#y)ksU%|H&<X_%a$bmH8QOME1WIepzQ@8Jv{XUkurVrHZ
zhYEhA;KvH`r%%#!rjyat82guy&KjSm@nsrcafY5R{RLU;`W)sF`<mRs!CjI69XY>s
z?l)<9nnNA_x9XOZH*1RTRh>U%YyL6KFqQwCJ3ps!MB%?=DK-8n^?MpeDGf5vGB}pT
zACx&6w94Rk8h=u*W^hdgf2Hv^|B^we3{IqRGL1{BhEobs=gEW1(+WSM;6G`cP2-%x
z&nw7A{hR(@wz~^i%EdI8$DBW1&QktMqgY11ZE*#Ol*k|_i?9E)bj1atbVi!kmB~oU
zZQim>*$l4AmMN!@@(Nz9U<Cy$W_Xw`3lEusN*T1w@Ps|5at2j0sHzH7%b<D&T@J~S
zs*yp>44No<Ed}c<SX;q58Pv_-T7}nB@QM{E|9E?ooCb>0P{BqDlHNE2Mu8*JR8g8`
z>CH1}k;NAna)%PjKx8R#h2$#OetyZ;8MMh@Y6jCXXq!R13<hN|ID_^Xxj*WWLC*|2
zWdEC=K}Usm%Ahmbm8Ex6NLK}~%V6VPshZ~1Jxig1dan$wSGT=0V0dSy4B$C+A4Tb_
zU_S->D>y(w)-X^Z^M)r984Sr_e3pKLLPjY#G=pIZ8Lr?61xG5#8mOq}3C`#Y#$+T?
zpx{^q$0<l+VFo-nCc^R))E_5iFezKZWQE+A!4!ooS7B9Ha(V_gWy{RSV5Y)nWht{2
zGADz%3YnLs&(B~z58RmrI3w4D$t*pkkaR|dW#F%R21W)uGuV}ZnSqtT>I~LoV5?&H
zWN>c=P6loUUbcoi6yj$PWDqJmQt*}x7AWLq1zGvv3OTnb{I)FRc7-q$27kRXgS)cy
zyA`r<cw%7&_hs-v1`lR%zarA*jfJlm#SwWZgC&YiBanwP(x+fi29GG@Q3XkPOd*S}
zz_b*kk7uwngC{arrvAG^LDHYhVEO;!DwX!i3|3_+Pi4T<SQcBG!PAPkSwTt+64#Nz
z*vT0@tB5Zs_?&{zE66e%$fa4l&-{{`6n=Vc5B~IGmi|%(FK4ht-M*5+c7<$J@Kpt0
zQ;>hz#*tEX(ZqKsV$XJBcLuLhAY|}u275AiBZIFp_*(tCH-ir|*t;_Rrn=pi!Tt>1
z%GP#JA#W>qK*4tu<Zk+1g}kTW`wH@jA1Gwa@We+Me5~+KGWaz6D^00c=1>NoDaz+r
z`WKX43SW^cJB=3?kX$Yv&d}y0{*o5|E`#qg_&I|k8T^pJj}!<^#7}C<-2G!WnwK!N
z$e<~m9^aeyO9nfJCw|RHCp99h>fpM3R&`X>KU%{W4aXGz2R{KB{7K=TK_d-~HT+HC
zpFtT7Wi_14;8X^eGPs<<=?u<fa4v&?DU<WWiOS-i49==b_<5RBPV`%me?Ef?85zvv
zB5U)cYk%45qF6dkiy9_j;j#XI8I;hFqoJ6F;u?0h6pX39))YJ?EUC%(kfk(~<~#I|
z@%&Fr6;#nM9tEu<uF_CWLp2T6HI&zIwT5dnRMJpElXg25HSiSt(hWkpRvH4)-t3JY
zqD~)CSwj^~D*UTz((>VC9pN+(XBNqA;Q6gxYiOvcp{|B&HEF0;OG9l9by)snjH!s|
zo6qd$G-IQ8QaugzH8jxBkS|#%tte^K#Dme_`UqNjGbuyyqIeSxO*M4Z&_zQt4b3&Q
z*3d>n3r$M77!T<+`898;ZkazWt|3=Lo`zN$Xu!iG;QdVnU-FaTiC=~%Xq>}Dt8F!D
z+R<J^2ThuGw9{l(M0RYxCW8rd)X+)8&~~}BmSOw^CNAL-9+9pZuG7$8!vGE4G<0X%
zHC)e^pC)=}=&7NXhUK#ak2APc={+{ih}?`}-bZ7udC^xxKbEN@)4068F>l!<X+Xtb
z<^weh;<Gdi(=b>=Lc<UZH)x>o;SbZK++eRVihi-p`Q%j^iVSBnHH_3SN|UB^4AVj1
zC`L8mb;}%SEy?%^1scX`II78&z&H(s8rEufTEln^6WGrhZex#Wn4}@8A*Ermh8s1^
z(=cDd6b(}~%+xST!@AR@r)ik3VTLB1aqev=+6)%umc$266$Ovw&(<(U!?W$hT=k$T
z%>{##SDq#F(J+e#PlRbWag!!bkckv&AS9mFkkR03@YvNFbTZ!ZxUIp^U}~^56g(B*
z*d}-JWbsNYmu6#!2Mb!Hu#BV0C{oNM=xYc#UK$o?`0ve%%r6saGQ}Plfgv?+)?{=M
zbnS5qTe@!$@rhT{F<H>L?{*CfHQcA+4h_7$Q)3uX+|33uWUhvL6)~tP9@vrhCSBEX
za~b>Mehm+3Sfb%^4G*ejKBVDcGQZM#Ez<CahQ~B4*6^qXN|NV8DPf54#GlCi0-4u<
zA*`2bctXPp4J$P))9|DQX02MTf%&cI=lk|pnfZ~{StUj!R%v)j!)gs{$YWc(vYuKa
z5=>aY+N`#M?8H#^>&Ue14Gnua#j1<-WGx18;8>8WH9W6jgNDr-UevHr!wVWVaSHbl
zqdT{nvO^l(-CSP=Lce}P9}-{Eq^x^c!@If+^g*kS>a+U4qG79sS2et*VW);&8n$U*
z{-*63c4*)hqs`*{xeKImQSXUyX5rk;seLi_x`sUpVJL5g=qJxF8Y!4N>`e{(G#t|K
znTD!E#eNO%XgEm8py6#rIiO(Ppo)!G#ksqGm!qlSLk%Bkc)yf*U&9BSaev3S*{_l-
z7*m3V2On$rL=ivLq#eQ)V)tcn+6vMf=yS5GhHo@{tKm!bxg}$be$CfwBEF&|X)U+;
zht+7(XqkyZzSHo%h9eq&(eQ(YA2s}>;b*d<CHGT|<H0N^eO2Ikns?UQluuj1Up4%u
z;df4)K4N@d(Pl*A@{BlhnC@R7j%oNq!*LCNYG|aRv5vnecqxl?l-3z?949#(8ZK)%
zrQtODQ^R=;XEgky;jD&p9Qrdc+7;6>>c<v>GILxTsr;w)^#x9%y9P7P*hQAf7uT$f
zzuhwT>yhF=ihUh9y0qshuFDxmYm*W>Xp>3&#27gld6mrmR7OWx9o2MH*Kw7Oayp>n
z8Xe_zT&<&mj*7ZWJIiQtyl8*UJv-ye(NKrPN;)d*sKRII_}u$n8HW5lqzbbP3)j$5
zQ%7AL*XpRHqqdG|E8}%^X`44_M1q-Hr;bQ4KwSG#qMnZWIvVI`sN=d}GFQllG{B}L
z86lH0G;ApKx=nO6)zM2wZyn8aG}qBqM>`!YbhOlwt0PZGOqbc&gpRl_zazwHAx4Yq
z$41B`jIDIE*3m}Cr@QhQVQ+Ulm*!{eQsy9Lnf5w5=;+E9(2=jBBcF99)<u^_&ODm$
zq)YSQ&I(pvo6i6yG(Oyrj(5}1T}KZcJ$3v$UUX~Rj-mN@?6_!Ue38hd9KNtLe!Y%9
zI&RQ0R7YPO{d5f0k<ig!#{eAzbqvy__3yu-7%@|@Gr7{BA>W1(2}bPc+b*YVVMR`>
zAv*XGr)6eQC25DoYnYDVIv#14`_&vlI7-K89dk|0GciU-0SD1Q1p{MsjML$=XLR`?
zC{%Ekj`2Ds=+c;EqK?TrZqzYJm(CHd<O#Z7PSG({$8;StIBL3dbGZ2iF<nScd1foC
zHMt{o2s3riZh;-UZ$x6YjyZg~j(IvVIy4>gb=;(*NJo;5ol%lC(^%{BJ{c|`rOSV%
z6=dKt#-m_JF1j%5It(4AE`53E>Oz+;ONXt~UNrvA?zTKSbkxhU6=Rwf^K}F|*63KP
zBh(S;cu>bfIu?+<b=<3Cp^jU0d^;j>yN)}^4?1pBw~X#fA|FQ%xs#PER=G>TyA`BC
z5r1Mp0K&2b@td|(xQ}e0;{h7UoQrWLk};TrhKj_8bu7}coG;9Q(DA5_B|08wtH)J*
zOvhqfe(Y$W%4pBOpOX&hOLaV<gJIm3v8oEv?uaW2cEyt{xhszs4RlxPSj8c`UaZ#f
z6q#^};A)U=GSp@;#n{Tf<p<?y9qV+wuj2z9&*)gMV>3Hbb<VRoHf4M1IUUbu@eMjQ
zD*OcnZ-~h~7q3N1ne&p4Jv!dtTV=~{Ay4Yqs^e8f*{0xY3f>&c+4)wn?F!$a;7$d1
z>DaB1*EuDXmlNw}LYcif-X!<xIG|&nj{Q2`;w(NEqcCTmFm4h9oHF7c4}#y(aZu+s
z2=7r~))HgqF%U%jEM>*~{#;P)4`mGY4|RN`<8O*k9UtrXgk!4XJ5FjHhje_Q<4cNy
zP_ETKqiE8>sl9Bjs4y}?;#cfv9fx&%qj;|vXIy8&FDb<=GpE-GrK95aI)2dcn~vXg
z{HWt69lz-Kl@noa-p@K1B8hR;j;LEwN{tc?JIbI>G}Nb<I;!KCjz1~t)y(=smo~kh
zrsB*<cwA9Vug_-$3?AjT_$$V?oYZkj$A3DC891%u3}uLp^E&>~aaPAU_S>#JhI-@r
zd>v0z&&Q6Qh|wGUf{u$iF6p?e%b3O$t`aRrCiqEW@;G{GypWq)G%jA;KnVk743ssH
zW1ysgQU*#J=rJ<UYi<1cS<-ZwO+I)$R&Q3Eu2@$YC}+rYOXUsear13KoM9`N_vH81
zxlPB5iUwdXz9QBcxW+&w0}~BQGEmt-6$2d%<Qu4Jpqhau2AUf3<g~hhItJ<*s9~Tc
zUx5C<2C5fUyux+04QVD?dy=@;Ks^Hu44mwe^XSxgeN~d3M(-rvvT#F1X=I?WLfWWk
z<jo8;Hy{ke4Nx+)P(R(+v`kBdEWAihc^T1{NUniA18oenHNbC5D+4@CX>G_OVBWI+
z(IXQ#|1Q%gv@<|s&i1N?mFh^Yqk&EaZZI&^KxYG84D>c|y@9R<u2aRR_oIyBrlXsI
zn?@#hbyr9a13j~pUIrrd6Q9+`zyJdS)qndc*iXU!1}0=r?FShcqKJbP<i8S>;cA_^
zuA*2nGBM1+a08<aj4?1mb>k>Qu64a$VkC!Pptx_ea4L&3TXWc)0t1Bx#<K<vuBwoS
zblh7tzDW$u%i->oU+M{ljQvg{+sOuQG;phd+YC%GFqPFB$QYPrV7h_1>^fBgPk&|@
zn5ppEN_xyPFx!ydjyZ<(pd`ZBN>tbLNM%0z!9Wq8K18GxOd8m7JjU@Qg%^8XGoW)s
z4EP2N1Ev86`mhbOXi|os49h@J9&eqJnhHlfl+I<Y8h0XrfzXitYYX@eBjtcbstggv
zk-piG?nre<$8RyPkzH3s+)nm3u*AUQ2JSR)mx22YJYeAND>ajC6mno>f;CY16E0Mg
z`xN|kWa2>s4;ffw;1NZ6*kIxzDN8>(FU2V@x=lT5VB1NFKc>noR`8>}`AZEvVSpN>
z6$X|WGBnwUvVy8<mV8o`S*{>WuU8sar5N%l1HEFot65k@<RHGrz*<FQwoTqXV_-c$
z^d>5rc-Fvk2EH@!y@BTqY%uV)fdg#2ffo$CYTz{vYj3g1kX}eHE4bOf;ZVG2;3b97
zwUD=447_4UyZWuF3`c=yG`!trU^^-7a7Eu?V3$Hz+fG9sa}e3BD0Jc={zmrK{f4yj
z+-u-Xh3r$1A4d{d>@D>;BJUVDXyA~6&kWer#k-VRr(z$gO5P(^D1<(AA8;-!{G)9B
zRIYwv;GdC+PYt=WIMhnc=+6yk9mO{WzBTZLfiDewrONN$H;B*T^|iV^Y)C16h4NOh
z?nK^xp~nvfel&2_z&Qgy8Ti@2p9cOiaKykb27WhiRE^ZH93zEP93>fs&OYy4E1B>Z
zr-Omxl!|4<OZCOPl7jNNxhnIwffGtX{zIXs{>$>G6>{oIoq>qA5@!tQYepGGbrxf|
z{cGSnMY@R`6Bqab7h?ah5*2~%qWae*1uq*iemE;EX3AfA6<0_%KH5Yn6WkV+GjabQ
zQQAZq6J<>)nQtp2vmT5YmAFdXUeUvsH^Ftw)e25&FV`?IagB+ACI*?PWTLW(wkFz{
zsA8h3iRLC+n5br=x`{fyMMD!cOfb_>eG`^ycuf<vOwc8&wt{sOtg9f2*P5uO@R2P9
zZyEZpfqI!skH=YCBNL5PwM`Uksvzmj6!J(p!Szy06Rk~r`&zM>3BlJk<syn#o<ed>
zJTNN3+g9q9Y8>KiOgy$WpT1xeS?x`9FmWB<*_6iN`KC15@1pRICORpEyX?*;o*$KX
zX1?gEUXQ&81_CnC!$cnweND-JJr(S2qL)HQq2Iyv3ZK?RN<3an<Vx625&J7Rz?7lF
zNgQk<VPcet(I$qN$SaFsCdgMen9`qdsCq8v1s_eJJ)C78&mUo8q@vS-muB8$Ocby-
z6H`o#WqZ|6<y4B>LKBlrxt<@Neg6q2CMsO-D>-Mf`jrKkw`i(~X(ncwIG8H=)S8^>
z<Rw#@^HDytB$qKWDR#!md_A+Xwarlo|32TuP3$WZ8%z`_;vy4|m`IvPnMj++n7GTt
z-6k{>x{1(4WXk=BVZv6OPvwkB<}v>l!>W~D(ou9*LC=J5B2f5)kLO?Uu%Peo0`fpZ
zafgXJ)kAMq@D>GcHF29lZa1Yv3WJld70IqSlyB_zgQF7nn7G%(A3>{!O)NA~`^o(K
zO&PlUK2v7WA(NzY<r4G(MSRf2Lna+kB!zZ6^dR8AfE7M!Vl}s5Ct{D8SZvBIz!DS7
zO{_5SIQv#n7|iMkh49y9CZ5dV+{&#qvC2fbZ%T8k{#2HKxZApN?!3mtS`$yJHa=tG
z$f(3Rj`ASsll$$d9=u(zh|ijMP9Ze=Cvl^R7s$gFI$PLeVzY_gO#IHuO}u2{J@$qP
zY7SpEvBShp6I)EYV&Xo=8?Gw0nt0X3YbLg__hQAio1jnAsnfCieuBwUxR>#F<?S-D
z+r$B~)_n20i9IIvn|RB_8z%Oec+<o_&i(#k<k{Gc0n)WL{(L_1e~-q-r=$bs+pJUM
zQV&ex<xz=uOmsaFJ80rvlkrsqaaPNCh97Van)u$t4<<e`@iC_ZS>><TCnlY~@wtgF
zOdK-t83&O`raB1j$G^$TWq20)!hC7sD|WJp!|K;=hfCwNt~{iEFcs&Xi_K(tR`sn3
zI&^<$;+OJ*zHBs2`H@qpnE2VmPbRo#CWY__3n)4R!2W8Y>HdmTiT5Zbj+!`T0v4{Z
z@P~=xCW=`oZsAW8e^E#_6BkYVZQ_K9f7szBPMSDn;<Sk~oGAr@*}bW4s6IMztsydb
zGJzx4mgh|TYvMe`zKJfQ6U@^(d~|}E{|S*`rbTL)X}WgF#ARMH;*1r{P3wQ`_Q8TC
zF(oYISSVwmtR<5Om$bkrprtL8Qpn`dg0~OME5@NG|6gUHyoIYRl(VGk!Ox{+WD;H#
zEL5~WlhiJY@?X6eBU>^|aU~0tEi|{#!a@}bRV~!AP}`ELi)xm%)T&|OgAt;-CG%nv
zscC@`1E`wg_PLIQx)vH*Xk_793-v72x6pu(m?RkSzW3ZXqw+Fj5Wnd+{uQI{tFeV9
z7MfaUX5rJWVq`tR)kW`VamEDZATspC59{(<T8LR_XW@aiLRg4fGL>x`3%M5ZEVQ!F
z+5#gC+%#RJrwHzk_O*~l4{7Ch&qTCsExGrh7j1hB9W3Nq=x9lgGuFl^1hYmb5=-;x
zZ{Ed1R|}6>Sj^^F=w@NAg?SdbTj*h7q=iuydRpjZVUUHv7J6H_-a<bM{VnuSz1r83
z{@}g;i?NFuCdKzc@OFSD-Gv5P(gTs-dYa19H~bGzBrM!uVW@>6mh_3^MX%vu#5qPx
z2hW<X71XlsnJ@ZH6r_AUL5#LA#=;a1ge7M|frUZ~<1LJ31KHKriT%HJqa75Nof9lf
zWE1L&8`)h$#Ux9Hi`+aTK3Uz8^3WT36ncZZN}b*`3o|UtRL`BRAc?aq%(l??k^DK9
z{5+A1nx^6mqru$7G{v0Hp|@}gtF=&MA!)&};95voNL$d!foxrij!Vvz%2?1WsomOh
zCPwua_oSu;%Yto5r?xhG@;DIGkIi2erxg&7jXVnrMkfLbp#`7yv=a9$j<=rDDI(p%
z*QtItTewh6(6@S4H@O|=flkMNVz*hi-NJnq?zeD<g*z?W!!F`@wG($)xLYB_c~Hek
zO(gHtt_=CbYaxetdmfPoEIepok%dPjhvz<I;b9Apk4_NZ-n|v|IXwp^9<}hzKd}Rw
z@)k~s(`$a)RI!9*EbQb2wD56vvDCsk3(t@ZEG%OKEiAXN+QJ$OD=hg{T4muWi^^(z
z(Nele5;9Z^gV<2n&REuKEt%|<*V7hW9-Scac%e+!wcf(B7G5Hed`tX~*hUL4@I5VT
zpr6-e>5DBo<nrKelO;V^H<QS5X_Lz%Lf%rUFqz0hbK_eqhC>mrT1@(YS1fF`z^uVv
z7R9NKJ2tETHg?)TvE9NB%7njSEXnJ(Rq?6w;<?v~-7L%|aN_e37T(~PS~y@~uLb(b
zy*oOw-@=;~_E97b7F3|EEt1+!rh0tKQW?M*;e-)aIMZi~_beQ=@Gfg;C?h>GO)yp2
z3_s3bM;}`F$ii0~X!fUtPt?@-f|9|)Aq$^b_*`-R?m^;0Y4OYG1i6t<;j^gj_>#Rk
zJ<fS_@J7MF?1wFUXW@GenT2o3;j`i#!O>*|m&ZS_wogm*#Pdhaop!P?E8%zc2*ngz
z7vPNmzgqas!g&`LT>Ng~D5su-0td$^{5haD*4j8u;ZN4G(aXkP7XG$S$wp-xCoC+j
zA}(6EWZ|TRQx;BJIAh_gg>w{-%(wn;>>mpZbkA`2Bie|674bY7oAQ=%1xt$Nb)?>j
zifHb#FI)JJv(iR+8^vrCw^7nYDH~G`lwN6+EMX(Z2DMvUoG_#?VQCv>Y+S`++~g|w
z{_=eKfbf<!b#oibuMfS0ueMRq2IHu3?NPzT_Q&%XR0KAzvGLQz7}caaP~(TPijAr^
zTG?oAqneHCHX7P!#3$OQY2#WO^=#C#QQJlx8+A$fBR1q{Y|FfO5!dG(#e@Pu)jHXU
zi7o2eXkbfgLz5n$y<}pzw<n9nHk#OIX(MK%sf}hfn%ih$W8+})%qXc|yEHn%FAJCS
zHO3@Zp|BCRk;`^X71M+mQBJy?^vM-@s-<irwRUZ6w6)RAmf`8z*=TR0qm52BI@ri(
zLsrW)I*iG{j4)(|`DxMFMi(1hZCq!AbRLM1!H7`$vA|$kTo@;~?Cfr%hpO{@DZ!e1
z+qm9_W5c!4$3|ZpH*!#H^s~|5#t0iDZ49t6&_=?>5W-pULFy$3+wwG_?U)4Py}0GY
z4K{|_7{;FA-v<e<GZ`_4qrbnbl(g)wcYo?O%Eo9Lg*L|97-OTr##kHUZ1f%=O8(cK
zU$KE>WG_8YN~%@4l$~H>qK!#5Cfi`#hUx8dxx4vwhl~rv(`24(*6;>SwK2^`+D694
zbQ?2l%(F4y#!MTtY|OSX$431Uo#yNt#1K_KUnd!CF2|Rqn^y~VGH-9PQDh@&BV|kP
zr&W{U$KS}?ri&)WV}CBm=eZTXL>ik`MHn_r8@dg@mY`Q1Lznj`6qYURYHVA^TKQ~Q
ze#y#0#Bx2Bv2m}Bg*E~kJo#F{K37PnV5A@qH*c|VtBpJOcXmszxQ+DJirvmu|1A$^
zd0d#7AHT~6jT!E?aSvI&P|Us@yXWs1nQFsN-MKNm&&K_v+gNJj0UHn6c*Mq|>@jxo
zn)t(H1{-DD=kmx8<psYQjBd?!;A1ux+gQTslOvdgfs>SChjA5{l8O7xCu}UU@f3%0
zOoCCoo>U{g+?JmHv>{=qtx%Me3a(P{m1px;+cM;rKPK_Wn8edI*4g-vlik5HHrCtt
z%*N+7p0)8D`<X4W@w|-<HeR!_jWfl@3pQS|@v@CgHWmBv%{E@N<#Db4QvS1J5`1|+
zm)(A-09#nV##Z&*9-2sZ61DmXS{J;^N!M2*Tr_UCvBSnrTdpUmI@o1nw~g1?)w87{
zh0W}^D{p8+S#p0}vDe0%Hs0a;v%6Nt_t|*M#@oDVi~Wj1%{jxsvit!X7X}n#c<@dQ
z#k)4%v+<FQkI8apWAEGez{ZCPry&O^_x{|Ckj(apjZev?$6|-r{0Sm6O;o8bgL2Tc
zV^xm$!p4_2{-pS|@f8`s#?Lm6*f?zC8yi2^_>n^CWb9iT-`V({-ST^k0fneb=jkw)
z*0cqkSy)jf+__HtWMkC!JgRhlvGJ>oV>bS<@tY0Wmi%txD0}#cI4u@LJJEQZG&mu`
zljY--C*{SFGJ+J#6n|6r+qlU2UR|8DamvP78|U~@C@W6eIAh}<h0_$DDcX-sk;_z0
zCI0%ajq~gu%F=YaRawFCH9Y)fJTV?6TvD~2s3tD6@@n$Xs<?v^4upfagB%AX9n^GC
z%Rwmzr5#js00(6plyz`5zgZ@(a!}4ec?WG~h}o@jdEWizn8deZ5{#d~R`APM!I3$j
z|D6!O#z7?qRUK4wP?<F!ja6~Lc-rLfrgLQ`6f#M5KK){>h65^&sL5eWj1|Y_8Eb6^
zbsRKu(AYs;2iH1i=*WWr=3uSopuU3!4z|pd;`GTGak@cqb;^$sQ^T*mMx5o#IB4de
zxr6D|L{mqGVWib=3r8l%Xz3uP5T1rGye*?!Gno-h8gd=vIT+wzpo3NpT07|K;5s(b
zL0bp;4mvvcIj>kd2kjknaAY1OHi10w%%3stcX)!($w6laH`f+j98kz}1%7CGe8bxO
zad|QYTQ>*Y9bE4)gByA{=;@%BgWha@RiSOn+vUkn7#usA$}pNGH|c#H^mEYPk(&$3
zis7^4o9oI^-hV2#X{;FJV6cNx4!9^vI2ht!n1kW0li7$I3}tU~6E|AS+t!I6ed;Pl
zIC%eJtY$%CB)ht@?CM`*xisfsc+b%e2&uss>tGz4<|5xkp@Z=b-ga=n!2|~r9X#sb
zF$a?zOm<*9a2(vosvOL9FwenM2h-Tw4rY*x8p;z-4)=$}#7qaX9L#nwhrE=KIxBvI
zS{EcJ;%EoLVhq<a-@#1|(hf2Xidacak#vx9z;lYrZ3M&S6JfDi*Tgjkx&y<3=}0S-
zf+BJ6@;GNVSFIMCe4Q9_oeWq+QxlhecW|eJyBzoq0tdG^xYa@EAabyP!$kfmFXJln
ze1~5U$^_!nvG99zn}gdO+@Uy@tjLDUOUT1?1_rr#uDIL5Jq{jl@SwvCaaic!J_q+Z
z_;iY}-^k-x#!gcVDoF4wlHV+bNP5V@!{j#yk2v5ht+QIM$me$H{N>n#-2@N)o0b!c
z9V~IM*};nr9(S<R!D<I<*tZMB6Aqqqu$&AtPb}jcEGNfwg@ct2RylZzPtO+@=gRO$
zJoTf1rO_R&^>P}BwGN(ku-?J5Wa%~e>nQ&n>}@Y-Y`_+A`%F%I&cXA1D+ez)JWP!9
zq;&&%@>pziUCALVw#flsm=xlz*W|zC;AIEf9qeH5Ie5jvs}5dsuvPUHKRVB~mIoZu
z3KH8Cg-GGc`EEgib8V-CU3>utZ#vlR;B^Ok9K1o6<8f_SF=taAU43~D#fk7}LE`y>
z#6Ac69lYg$d7qng68j1gWCK>dVrL%BUEXnUknhZi=HOii?>YFv!H;Be2On_0JNU}M
zhYmh+aLB=D4nB793CD;N%8)C`OYT6%m1P7l`a>}r5zmf4ckqRS?+Ow(<w&y%w=n*C
z2l2Io!z6NC7^UibjFvy&IQW*+yrt}C>Q872_&piEfehrku#WhNBErER4vsrG!l_-p
z%r6dpbueaG{>EK-zd88b!BH;z$vN!=54C9|!{ydvyYjB$e0(&YOP4<#{N>;@yWPRx
z4o)~Y>EIMuw@}=7GA2!2=wDM+`XJC3jMjkvI5_LzoP&SarR(!4058oH9LlFR=JiX;
zd=ON9Ty$`WBHcx87ndFU=in+A<y;hVQQSo-7o}Ypx3h$c92X^BnTYd1i;f(ZW%mrG
zu^fLY<AT1uWnJ`tvE;de#9#T6NX1Bb7gxKe<f5{R3N9+TfQxJRl;MK;;AnBmy%<lu
z8UL`slsJd4ii@f)s=27{%9RzyCYp~;a39T!AJ!T!hQE@>tENI;X(Z~nsOzG+ixw`f
zby3enV;4<a)OXRqMMD>jT<N+(c4gu`hP$Nw=kjTBCU)er7+iYU6ZuVDG;_i9BFtdL
zfO1SE(UJ{x(aJ?@7s5r{m7JgJO4Cp~6i=_uU)MxDuq7|g1!0e|i8k!FOR=^t+PS#C
zNe(AYhmq2FwY@863TFrZ*wIBN7mvAE?4q-aE-q%cnCYUci|g1HR_>yki|*_|7Xw`M
zaM6>0XN4|$vGYp`UR=~MEHhu5+L%5r`nu@H_AbjWzAS%HD6=9`O~*yiKo^5t+~7){
z9PG-kXTrr0*56rbKIwBYud|eal?udAHrxdpPM+b!;g)%%i&2#AF2=JztIOTNXcuE#
z6u21c%FJ2gT+q;+>K#r=E<(6zVsOO?>RFRr+~{H=2hIhTItOjBd3Qb|?M!ho)x|Uy
z(_N`IV~kcli(&CLEREll?#D+^Svt$bY!^4XxW&aB7js=0E=(8mT+DZobdhp#lZ)jo
zKySMu)>c(8YbT>Wjh-XYE;24O7rHBLpJ;%=eF~$1^2`gx#EdcVc_W17!gk^F<y|Vh
zh2z3?;klqS1#QC^udMrU87q<#KV(bCCL$LLT-1CrUZ~Q`GH>97-FZ~0-Rj~t7x%hY
z=;C%4ceuEl!*n5br;EE(|4^sI%_h|~+*=X9NBz2{dn?A(xzEM@E*^66unUUx2l$|7
z;z1WI|6W2cLf!fa@>8<N#UreWuga`>r=;-`57`+A@mP*n!db??b+OOIQWsCSc;3YZ
z7t35c>EdY@>)1suR=9Y|#cCHT)hn%X!8~Z3Zd8erQMa@aYh0{qB-XkJTMNECafTB=
z_h0N8HIC1^GUqS<vfc&%Lao<xWWqB{q1ByVmW?i6aIw|Jt7QAbr8n^}E?%Nopx3Y~
zZH(y*^)hE=1F?m}!PlE1c+7goq&S1u4Xi1{;=Sf#n~U8pUU#wG#SRxc`9#9yaekd|
z-<ijkT;)gwK3SdCYt&rraq)(Wy)MrFDU+yvI;%e=DkYfQ6u5ZH#dj{gck#B111>&w
zamd9xE)Kf*z{Q6y-gWUFCz0xEexoZH@e$qRaXF*nQ!T(X)kiKqcJT>WqNddKF*z)Y
zF_IW{3!l08+{ITez9#po{`}HKdR)a(!^FrIa(Bt-6Ng=Vqk7<5zQ&q3B{sJ<G)LrG
zo%)s^$Yw5%yZF<^PcD9T@vDp9T<QnJ5!PH?{6b09QO2^n@MOH{aPhl~qb`oQ_=6Ir
zNYH8S*YQ#|^1H*;FH5GzCjN5qw~I3_{&8`FQ`p5R7pF;_5`XG!tncQ0ia5@cEmh<}
z09O%bU7X{P{T=()1u2YHy=rEh>5#Yx;Y7aZ;u0Cy$K5_IyZDbh=3$?QVjhZnnCoGl
zhY}ugJaqBs>V=XXN_lAL(QyE!J(TfK%|mq$Wj$Qwp`r(PDCeQPhpRnQ@UU=fg6wg5
zu{7pi*HWzF{8B>T8dk+MzXxhXDtREivVyOTO%SiD==_Oz4G%Rv)b((!hgzOYQB>PQ
z9S_V;%0SBPYm4XpiqY=n*JkqkrJjfS9vXO3+s3Y=j|RQ5ILeg&jXgB+(8@z=4^2HZ
z^APhOJTzx>-mcifLrV{wjMUFF5aQj81-ea|H^)8XddTx+2G!|Y=gf=qSyX?K{V2iO
zcxdaPgNJ+%?fA~aM0-!pI9d&{824O+9X)jNr2OpcN&6hehh&6jBHSL*?B_ZU-8|gj
zVW@}h9(s7V-a{V`J=xysGWvHf_H99&s+HazS7^CR%0r3W*F!%KgFFoO&|kgV01pE_
zxqE%|QjF5$ld%c!$$ZXtcJi^YiG+tC9y(8vLWXMtZvBRN817-RhZ{YN@G#QDI1hy$
zMtK<Rp@1Fe;qO+`hhmHe4jeBYB(bY0OsI8XwEXdGj)#dJCV5ihL8+cz9p@Q3vxrU{
zDvFOwP%ARU!&DD5J<Rej&BJsLGssRCV-%_dH^y&P8)TYLQfXgvT!K@6wud>Ml!^?G
zLm|Mm_k0gGd04_naOgcGJ>0?`_K;#@J-8k`4;c@d2g8Hu;pZFVK0;UAb+sm5Z!Ihj
zwg(yqIvgqHPMscSTlS0+ofsRil<++S9wIer9O94z+Dlpz(t3?07kIdtPk%j+$BsP5
z<S5+c;dT!Xd3e~v9UkuVa4(tM!(ATk_E7a|L6e@L%8&0J)lxQ=T9Nxa-0$H54-YEh
zA1~)oKF~Cd9+ym2$uj%qh((^<0zB&BF^)(#@rVZ|w52wKL~b#tz+ddiZS`7TEcNh&
zhZjA(<YAeICpkbKp7F5UlNKGTJUr!Lg@=`#i7n(;vSACs?5L|ftnskc!_%BQ*UKco
zwcF%MU&1!IEJg}-u<JcM>tO@m#KVsBvFFGnW5x4)L=8bl+ScO|%m?~{hfN+o1Y$FX
zeyWTp+cZb8Fw4-`@?}q21#I>3DvNa%TRgm?DE#`9{+fqv9$xpb$HR6$!oyCEEF-rw
zH`&P;bzC&TdUafUmxl$da(A<maq+?95^r!`G!}c=*t4Y=6IGih_!lY|_j`DY^W8@S
zA8&g&;Nf2n=RLgR;h=}_IOrbU<)rrTrH8LPyzk)y51)AW)We4!K2j6vV>18Q81=O5
z3U0<}noGSUN8}JWc3k2!mKiL}neornEh%59=|F^Y^J@>zxWqSPhFapVs)rKkTTcdS
zB@cI+8vnt=j~@Q;aNNUBWKIviag011@$ies49MbFiXD+l8*(m<_!^`zdns+gk5aC7
z&N)UQ@JEb3IGk1!y@7vv_{+m752radJ)9ticv2NcwaNYC63oT6c3gs62}U74<KZ6<
zXFZ%#W6kqHx}uDnCU#7ZbK%rirN6o0;UXor5BRv`;WCA`FZBukQTY2P?bB!<#eJ0U
zQOcK$S9Q1aPR;S9+%D;(;v-U|ZyT2&LKS*hA6NM(=i_WS(KR6#LWCbo6^zu%DCJlC
z*ud~pN4ix|f2T7P7sl84sP3bNk4io&`>5iBVFs)EsOIC)IQiA!e|gl%bF?;3=GXL5
z%a`l$Ykk!AQO8GJUrJhTABMKd<s+DTx_U)HWiQLr^O=Mq&edr{AB}vB@-f;+V;@a?
zbnubyqp1((#1uZ_KAQPx?xTf|mOl1Y6EQv=J*f@mMaPr%)En%|qXsY6M{D+jk31i(
zd^}PZ7Z69sB^XGjt&es-+WRuYICr3L9E)-5#~jnt95NtzM<1Ph^z+f*M`s^heDw6u
z%STrq*ZJt?qq{E^p447)1<NUavn>zidiWq8^6IrT-rL9ZKKl6R>&sNyJk96IjZ%*O
zH4{Qn<K;YhQVj4h(8mqzLmz{D3}#6mL)g+BM&|E-)eAlNtsi_T#=hbow<N_dAH&(7
zK1Ons`%6pC(*tB~-x7rhuF3hYBgMoR9|b;AKGHtM`WWY9x{nz?3Vn?CG1<qBJ|?IE
zo#<l{3tWh?6+h01bN$0(DSA9j@$tZ!u2X$X^Fae?YEd|>{1y`@GSkN_A9H=oW6e|!
z`<TOln=39nn$K?^RcFNK`?$$Rk&mPgCW2=}nv4}^3S?>wnh*?pDeu#HBI85zvB1a8
zK6D?357&q1!}MYKuzfgW%VeAaoLUH)2602prCP_w^Qjp0eFQ#29}!EQj<qi-RfV%=
z$neG7a8dh5C!<?@X_b1LkK29e<A1Ayv`xK(!&g^o7w=@Z?8)Ov4RIbd-s9t5vS@(1
z0T%kW&&TUN_Nd8qzmLa!EM~VT4t&tZLp~n%vB<}xJ{VPi6OfSCBfk8q@|IUWs(^Uw
z<9W^_A4`2a;p1r^>wGNp@g%GA@sy9{K34cx$*Nk56E&sjg?%zc%hgYt$l&>`XSI(t
zKGv!NJj9{30CiT|rijVZD8|GyKA!bKbFB5`y-LzYiN1%=v1t_q7n8&{`gnm%?qi#e
zO+GgJc*Vz7A20IFeZ0)E<3uy!OjO4e%V<xAr_N_=YDdP<dzBNmfuNk^L#b_kqN>>L
zV~3AjK6Wdv-pSUjjMD=7eqYcFm7lr!ZHiG+5qX0X)5qUFPWX7!$37p2eSG6%zmK<k
zeC*>B%6}gRe7xu5eIM`mILIk>CiX5VlVlr-(_(>;d38VV@ge8qpkg19`B%kB<kp4?
zL+X|nj*WlH>CZ{jP<-X%GsWAV`}o4gyN$)ieZ*aw_>x1}Tb?oy=VT=EHRsVxN%_{t
zcjQtZzx(*!#}7V!_Ho3=k9^evsf+%J{WB?EtD3}rS)Kn2Ck6TcM(I+@Z6ig^53>Yg
z)GyhSchtu*avjHdQ~rrUahz?RD*p8G7x}6%L36COYMus>v@bg8;}pepfU*Hj`#9sH
zSb*XI{vq3wSAAUYagMLFMjHA2%egj2aKptY_c?vUMGAke{C)gK>C{?KC4NUS=`%|~
zVN8|*?U^&0?wJfHRU$x6fRX`-mkLl?AvCU|xS$0%_tD%jT}5JmN&zYdC?7Dsy{HhN
zVt}gyxrAV=NkM>X0&tT)ZbKj5u6jM6J6y3Nze<3r0cr%O$)_BRRSQr(z{h_}y$5v{
zqYD!Z@?R^EZUww*2cQoN9Y~2YuKTqC>IJX@*a7MXXb@mXfExld4A3Y*et?bv8V6_+
zATL0x08Ill3-D}VLIh|YphbX|0b&8>6(*P#e1a}xUoR|7&{Bd2d|af(1LOu$E5)p!
zTQ~IK%eM~Xx3X=3b^+Q1pzfWE-Yc`UJ>R6g=%9$JPsf-bi9dA;&^bWQ0KEcq3D7l=
zo;y9*MFC?hOLa~60L+!Sw6mxX6EvURQ<z{1657ShX<e*$fa?SF4=^A=p8!-5_YKgG
zIOF*jChF9b+6EpP@|_0;7!+V|fJ6X}FVA+VkD|xxZ_dDTPsORUc`r{44KOUg^Z+vg
z3=c3O!1w?Y0*nkWDnLPiu>t6~F*?AQ06fQ}7MgRv-FbONHZDM603M@I@HU+-Q=ik6
zwEuW1uO<e#F~Ah|Qh>>9U7_F?pQjRpQv=Xkir2J2YF)TuWO)kPnE_@6xG6vp9~58?
z`=32CTg)Y;O)ig^sn=q9O)8y;&ktmzedbH$!ZjHn6F>`)V$FQp*>Q&HratrDH}mxX
zMgSTXngO`K;CcYZW7XTrZwgINoB%F4C%~!zUI0J9LjfKR5CjMV+!f&N08xMi0d5O$
zJ8Mv^cuRm=+3G%m+KDrTiPcnlHj*w>cLXv+*&F4=on*F_f|2T}w|^uPzbC-G0qzTM
zzhV+5U!cBXVE|fKeZ4?Dz&g*zE_W6WDulWSu2^WNv4}$!U`c?-12BvIqwL1H@x=ii
zQ@5$jdAue4CQT;sT*}@Euq=>ishO7U$pFg(tO#%qz57dv<CEjp)fY^S%7a&~$DRtL
zVbya1o@XlptO>9-z|*Q}&jwhhkY@s{4^U#VTu_mbK2RYdxpLSrMNY;I0X7DBCBW7I
zF9g^`jt%fqfX$rO6LKzVGFVC-dZ?8VF9-O!p4bvF%w3!bYq<5M8Furn`LqOkHNf@&
zI|95GU|S%q#b}ksi>$IUz%Dj3!0Ulr>YF7bk*gqfGL_q$P1IKH4e%yAb^#VHz`g+c
zDIX%#i11c`w>f+vq7VnzQqJ)ZtwJ0O@NR%h0WJr4FTneJu>eN`d=TKn0AB|<9N;5L
zm;j##_#(h30X_|ID8OeF8a3qUCw&Kay2^dxP<J31iK!O846yTb>905k$HcicrXqzK
zVa|(h$b<pD5AZ{P?<ip|%EQW=eyKo6l?$~2Ty_5#;3t+5GSkZKo?IUPLgSwRCjy-0
zI0pDVpv^Fj2RIslr==CfCysHjt`^Lel6oS}Bh)_w{1xEu0B6$D0FpIuMiXJ&270oe
zqVNxJHo!R+Q1X^m-2VjFH!HqzPadT--3tB<a6Z6=02lcnh$$tcBI}N%5XWM)>EiJ;
zSG@lPC>Ekxi0UDVhbR%^>JSw|@Jui#MClM^LX-?qDwIaEzdf5z%@SRc%7(ZqM7a><
zL(r7B+`Kp?Gfy#AtGx!d547^-ab(31l|obwfe_b(Xg)qc$1$D@^T4$G_(YWuRYTCk
z>+SJU1Hja-1>+MnLeva#ZHRgy4$T&|LevSRt4{3@-z|+>z9?)YSDST1EFL3Q8uj^l
zjO`PmS%?N98mikyAqF)UO+qvdks6<9|9uyh;dRIOL~}NCu*g-#T7+mBA{JuNU?D<m
zeKh}x@d-j+adk_JCUOG**g8a;5Ys|T579P6yAX*GLqfC<(IG_75WPa=hv*ohONg!^
zxT@?FqH`$iwfK^}ZF*M9=j%dr3(-A95B}O(P}RW5v@ecN92lQqG8%4*X&==)#PuQi
zh3FrmPbhai{Lu6bacMw;wwly&{The?AqKLIAqIz_K`-;i{V+bk{RlUJ_2$R94WV}B
zh7dzTj0;g1Vpu4HX^adpD#Y**BSM_pmDhEgJReE)5~D+m2~iMYY={Sk3MR)nQe1jK
zbB9vnLW~{GQ=ai5CWN>##FP*d$qzzI3Nbm9W-!EgK*l_e+(gj3iXUzo-H|?3{mKJ~
z86jqdFhf`&W`*+WFgL`!5VIA|ufv>BE`~{;AL6DEnGjltq7X?AAIq@k%ZvGiVpO4E
zW-iJKu0t52gfGvqdwK|iujCD+2`In3EW<TCw@7vfkBurOozR^SZU{0Mak8Hu;(k*E
z3KF^Chy@{T4)IZlk3-zTJ`eF!h}C@miSgS)Jiu-VaeIh6LfjeRt`PTzSQz5&5ch=A
zy?0_<o^>9M$*?LXI?Cg``$8FZ;C{tsoE_)JC+N5JP>6>^ED7;ASx$|}V+uYJ;!(ap
zeZer2{1($fV=?Q$7$fuWw1TI}OG7*vVtI%sLM#jA`7&)&sWn>sZ)`<~m1NEtVijj-
zC>ZB~%*JW*PH|}nx+cWh5ZgoS2=R1?b$r_pTS7b&Vtt5>AzldaY>4MVJRf2M+tpJn
zFNhy6-ia<hl<-^{-C+-`G$FAm#O4q$a+pGC6V+@&g1^#CuG(a22+Fq8Qf|+g*emSh
zP<m2q4e=_c?U@+&9sDr8vLwDO1V2?gxa6-pL+qmT4)IQi-638N@n(p9loDNg>|vjW
z*c&386CXh1{}$3-vHOGsCFFkg700x>c$<=^Z7$P0Qp+)XLc-jZPvSvJ5;E`r@d4-K
zJn>$L_sQz@<&gxp%+!?frw=)@ZE{Ije<Jn?yOHuOLYWAMLVOnDj}XU0d>-P95I=_a
zDa4l{zG8DIc|v?0(&Y``gfclug|Sj5NMm~j7*WARzo-1HB#mBvAOpXWzhO~6gVpeS
z>gNzgLi`@$C?|eT@eAcDCoEwzSpz2;TldJUICr4OLQw6KUm$g=R0_S{M*JD#FLqjp
z3nBgvaU#T-5dVZY8RArk(;;XP=lv1met}8cW=u%X$d-D3W}Z6B*&X6vmKh*U<>r>Y
zSx`Mftr4xnFH($9$VbSDa5=<(A&NyP9?94~98k)3hAN^So^zSG+8I%yWQ4ILIx(_h
zsR#{Av?7IjdG6E8Mz|`HT9GOd%0(z2Nh_wx5%^8HIzq(=h~VzXtH1}%m$q#*xxXet
z=0vPg1h#HVGr^0|VE8YFXQ>*=G>EjluNFxQeBw1D)Qa#<go6=kN2n9Qh+syj8{ygr
z!y}A{P%lFL2%REyj?jRw7a<-YH$tNbjU%*(&@w`k2u&k2i_km*6%@3LWw$#M66r=V
z`yO#BDq|6NN<w9?;NR&mH6~8J<;FIT&56)1Li-4<Bl(qS6QOM+^NG{2hblzoRitvV
z^YZ)-5%ME+jHEH}74uGeytMP-(Rtl2qDzFX5&A^v8_9^l*G1?ap@+h|Me^%OYs{Vz
zdPV3>VkC3waRtsKdfXZiCx_4g>?2F`i_kwpBEpae10oEJFet)c)t@{~8-H8|ndeLL
zIOD+P{DrM^Z-_87!Z7vbtbvMd=96WnC!Q`bj?>5pqaw_VFe}372xB5liZD4s0Y^MS
zVTAFKRL+cxz>hxHbvy;2JqFKTC~77|n8;C1h=(R5sHr9&-WXv@gsBmxMKr^Z_BpiD
zp?f|>&~$bSJLgo4%S*yKQ)N7;*%9VMNRuTZ%#GxR=%xro5#~jhAK}#v`IPX~9*|BX
z86l<0@NkE>+#~bQnFqKUU*lwK<Aj7B$;>8HMDTpmieN`r8{z2)4w;Z#8sX6h9=n=6
z5aF%}L4+{EEfH>w5JfoFT`Y)jGdb$<d`4HG?>tS*7($92bz6kn$y#&`i?Dw}f}dK(
z1E-D6;PcXA;qD0cM7Te~0}<|xu#gqbkKf0BSegIBgalPXR3Gu;t3DXvp$HF0SVT6y
zT565RIcFxu7d4d!C?D0AYNf{_ERL{}Qy{{U2#-ft7U4-UX9VgP2d&J1BEs~eF@|2`
z7l+^a<t$cOtcXx)q6}1Wc0z*Z+C0#tcJZkQtJ!1Q^Eg<v5217Jnh3ks<llXbSjPb!
zQt?Gj*a*)=SRdip2+u{>5Mg5^Bg1e<!_WQmWS&;JG#6)5(H9g8ZH{CH-c1S?GU5SO
zk@Mm&lSv}%;TuMHCBoJSJ0k4l2u64<!ge;fve-txeI_5@$u$^}J98vUYjwmf$`Gdg
zjqp0zV^bbg{T18Dzz95lXUV-0-i)x1-OeX|-KD3<`9GSj1G<Xhdq?Rdd=#k)7JA;x
z3sRDh2myou$<V7Pz4zWrw(q`uyZb;8K|m2u1Vj*21XL7JvHlRO*ysp$ktU%3Z^wVm
z*>lggckay2+_^J5J3Dh{zufK4H^_TMI9!DH**59$yj3JJG8(S5<h~oH@S`Gp%x0^g
znSxJ>@IQ8L3T{_$qzIoD;Ueq02uF)>tO(x~;rk+d#?HS8U(tTphy0WF1<kl><V%LW
z7TY;F{8`_0usB|XZ;J3Od!ZAhsrCw7l~gOj(;T>)l8euOD8dQ0!6KY3!pS0VuJTk7
zPP6YCA6?oi!ZCUI{t=Fxxzpra5zbTjMYuq#D;w!FSnzw90{ofs)XGePkN4#MT!deW
zaIFZ}i|}g^ek;PIBK*bvxd?wS163n`%DPY%gkuag2M#$})QVg#!W9b7id>bnB5QC~
z<j=GS6~bc{=}_zMBHUt!&$d~Fo9xYoXLCCbdv$)8{9A++1zf_!<InhWVc)B{JhQS?
zi}Vr-N-DTZL0tu<6qHs_SwR&AWfYWEP(eXO1)Mwjes-jsg7ON6uM7V~^QbjeM5+=l
zwydN8O6X*OD<UQgjPOq`1-Ku)s)A|?YAL9#;0`5RpHN*v4JACnk3V8~ab~P0pH6ph
z*Ge^Lmd?ElbrjsGfOFdS#UiJ7#<+CzOnRiAg1Z$oRgk9O9tHO*sIQ=b68gBiu`zm|
zf|1fuJkM@usGyO8#tND!;3f{*7^ix;Hh|sr@WJ7)hd&lY?yVM1Q$!R*6{It@Y9S}4
zfI~`xDJc=2+jYN!<_d<funJlzXsMu!g02c$DacgNPC<JGSqichJfNVBg4PNS{#d}1
z5OWpK7;+TwFhPP|e`nD38ISF5s~}Io+E-GZ9u{R=U=S(0@eT?eRM1hu<yUj(%N%x6
zkguS#R15o6%CIlx`g#7FE>KXYpud6v3WS1g3VJE%t)M$Ce`vIaf}TovB<Pp>GC5A*
zx?fJOby^aki<LeK`YPzB&__qOH?x!U-pnaDZuuFg;2{MMD|kdcaS&6U6b|!vt(_1V
ztY8T1u3}^;^FK4(PI6{el)rBn$|K`PQ1c4rD_B4?P%v7-WCc^GqO8am1>+Qqr~QnG
zj#WaxDE!2jpkShcNlbHJ*yz|>avdgnc>XElJkL}G(-h27Fk1;flcy_~p<pKK@s~9E
zO=7>dVPfRatu)T)&QUN|!8{grQzkVtv0jABp}9_vqd|HMSjZY_7g?g9NWmhBxw&bv
zf(h5tIM!7ZsI+GVwgOFouE0=W(qIOLLlj<RYlrR-x95cmt5yvbj)J%XmzMBwSdUyw
zd188$Us&%=kJ49$uOMIzYUrpT$*QM9RE$!wOu?fHt}FOk!EyyFII}^kR`8gDl?t{h
z*rwod1*;USXS-0aTEP=E4+ZO(rAbl#W?G|w=M;0P4C|4v<0ln7#Y)^Ct{LXbn)>Gm
zaD#%4tW!29CHxBB#GbHe$}>thO|dH{LZ1wD|59ym^f?7vXjFqEUAJd)K8o8t=+WhQ
zR*HhX3ic^@LBS3MFY$>APZY(A3U(>jt%UnN_%~$7V8L|-1XcFOqPt?O_wVL(eMP|@
z1+TJ64vw-LIru{kN1p4ZM)=O!ui!NWZ?Q!vcwNC8tR@9-O6y{`cAlr5uFB-j^c@>B
z*>Q0q^lce*NK&q_;#i0iFQs}$-cxW`!S@P&Q1HHj4-_0z@EPqv!AA=IC*?C5mf?S*
zj}<!RihjZjUkUB@ec6tVDEL&$kaJYQdCB}-!50d?R&bo9E{uFB1-@cU%?nk^X&?3&
zbddXvf^QXkr=V)LkiTn4NIA@-!^sm0PAd3C!LJHVDLAd*tb%h2&aizgj8s0;hFcZb
zV7d77yn-JUTu^Y4RXjXgUrHP1uS34bc(4TrW<SvsMdWAMV=&5Z3Vv5`Nx@%XFCG4R
z{!>yGinh(w+60%`u_(Bz;2P~=dgMs22#t`VQyvaWk7`_Ous#~Oq2MN4kcy~^TMGVR
zDO6Nb@vnju73Eb_P;r}z+f|fOQCdaGsVOB?+&M&)R8eAx;NB&U-uV(Q!yxYeQc+F~
zm*a9>C@=1AZpiV&t+a|NQq^$W2o;s2B-g9I&?Hn;^C6<LiYh85H3>)lJj#>P8h5Cu
zuA-ibyH(UsG5nrLEfuxZu$VPfgsZ~x!nk!*+@+$f8jhCll$5{rdhE>PuM>vy1$vK)
zdsQ@2(OAWOD(b6fprRqm)jx8$dDv!oC<aHWR0Wr3a9tTcF`B4osv=FrUoAt|l>Fm!
zvS(OFoLx^>5mV7cMOPIWDw?TiqoS>f`&Beok*%V&if%(h3l%L@w4%oPM%Wo<s$l<+
zr6L#+Zsiz1L~u0}F;_(McTbLrTs2&0$P82d0X5v1L!76gor(ulbX3uv`oEdR4zL4t
zGB2FvU{f`Rh)ya#c{U|qMQ0UH@6P1e?i>YeZ5VDedvb^<P*JF&zls4W1T&_hmx|sh
zx~u4+f<u&^D!2uY-5_^Wa})jBg%SE!<RGDsioPoPso|eiE-z=Fyhe#|=R1D@4OH=v
ziXke7su-l=VHJ<47_5e`V1A!+nGN@Jb8eq+*ug`i8wN&)vF@mrrjZdUIAwipK$H_Q
zug#3mhbogDtzwLdFI0S~VyudBD%P_gD#ojrpu$jLs+dT_P%&4<Jf@&xii#O3W~!K~
z;`?rurm2`tYpfbN#AYw?@({s`Lm+<P&QdX3#T@E$h-kbx!bMqUhlrYYghP?}Di)|H
zQlY3=NV8F~Sj7@GoYmnruF;z_+4}fh!&P%!`qg1@l-;<hLQ|p3XYtqk1H&Q@M#F#T
z98g&*Y+9y@<tiK%aTPx6S{k`4si%fMml7&&vejHnyD&Md-=u5~OWFBL8FtkCdBo)(
zY%E-!x<bWcDxOfWM#V}MkE>XvVznABH094eS}dnwxm%XI-q`2#+LF0e#X1#Fs(6aR
z)1%c_WpWJ6IU>F*!_ni_up8N+Vxx-JRlK2MlZt0l>{Rihif2`9R<TXR^K86Xk>^xw
zQL$A8x9o9<!u_qZUj9esUb*cmUQn?^T4TQw;X*ieU)&`1)5Okq4Hdgo>{jurioGgc
zV(C=8qGAu5TTz5Rzqp>0{Sv)2@IM;;5^%ZlJ{6xmRB6A8*HrM70q$<&E=4Y8*w`ub
zLU};Nn<_qF^|8IPYG`9B-c#|mibE>iVIP$quB_vXI_F!?jS08-@h1W;?XZgXWe(X7
zb8#boB5;cSBNZR3_*BJFHS|LHiHiTJIKob*OPC0|ai0CbZxA-0W6Tw8FH+)jHmm0{
zc>peH=1{?<=B%}^RD8{@OhY9N$5niz;);r^D!x_mor()8F48Pj{Gj5DinA(Cs5q(O
zl#0_dxenpnDX#^cBm8;C9r0{XT<vpC#d)?hHqxPj)8id~$f1h(g3fv@9IpJN;%61V
ztN4RGVMgQ^6~C(ZO%3-6vPR0Rk8&i*Zxe1L`BTLu_F5_~t6)0p+}J2M$H?V{oQq%w
z!ukJeDz39X*KoUrzg65|KQDXNn`~u0Be&RftKg0#zEvxhk90a1<Jf@5qwud^iiXLX
zqHNtIG?dg(Rzo>0T$El)Lun0VG^}5nd1geE+U8Over(=eH=JH8uc3m5iW=@4*O|jA
z4y1YD_{gDxgBED0tf8rfG!0cWRMl{ohPoQ6X}CiRzeH+lsIH-ghMF2`QGf@#_Yart
zE$$Qfp?tU<V`%em?xK!{J2iZIBdz&svGP~a_*qd;!`&L{YiOY19u4>M=`1gOP23&f
zuUl3ke>d}I8MiGo)X+#nV+~C-T+a#TqmI-Jy*hJyJ{KW#olJ)*k%)$<hD;4v8qzhy
zG~BPDxfW_ELkoS7Hq*j!^8K^J`DFU07`Z6YLPJXptu%0<3pf6AsXS+2If2jFl57pF
zHMG@`ry)l}u7(FRv|*7ehTk}!4-K8Kaxp)bCelJUd~K(NpKt9obkM>tCa!y->q5GR
z<=knfZjnwJ@->{(a9%@a4P7*78gva^H56zVr(wK?LJdO0LmCEY=%%5&hCUklvdY#+
zduZszf#~e6#67jpiya-A_GS*7hJ)>r>oWWCxzdNm01f>$aM>6g3-erTG6zz1v!dj1
zf91m(hG-b7;Sr5HXCs4U3S7UzSIjUC!!?Z3Fj~V1s!PM8L&e=K(-#dDT-D4S%7b5u
zjnOcc(f<y|_FSI9K`c*QEEf%be^1abQ^PC`6E#et1!|b0VH#B-a~pp+Wx<TdR1GUQ
z^)w*z-RMZqf7;H_uy<q#_;hZxpRHk@hWQ%iXxPv$<jiHMr$_jkX#o?_P$U(*NW)?c
zOEhrBFW-q=fI;PRDd4TY)5uX+E>`HlO#b!Y%rmE13=O7+of=-$U}>;5tkJMmgToY9
zMh(juWpTvS;A!w_ex)J_TH4~!JOb)m!%_{)Sh}v^eB*}gnLJjW)7oqx1pF3e<6WU)
zrH02fJjVR5kABJD*6X8OCA&()Y7I|FCI`UeaA)x=c^RCfU8mtm4VyGPqlHsvPif(Z
zYXjS+hNm^8HVv1h9isb-jnR!7KI;+r`loQ7`B@E{HEh%HJZ)oS<T(vnG;Gz7JuK`P
zw+$6!PU{x#)!nY)1vaRx$PVi8?r_?WYjtR={L*1pvrEHn4IgUwNW)8fw1&4d9MtfN
zhCMVM4X<l>m9?W`pN9QfxYe4K&IJHmrOeGT?+q0k#c`1m2U>4vIH2K8E!-!_&5v9n
z%N~QHqkx}O8V+eVOuM=#@(wL$T=ZQH?@{M1Bfs|vw>xo$oKpw%9{;|E4`i>!zaF8x
z-KLR`*=6y$8ot%=KMhCNiZy(}-b2Gt4acYx4csNy?OGZq^PgN3<)hD)j%?}|X+19b
zrG~FGe9dm3${Zff@V~*+y04{uKU9>O9jWq0X2-6P?=*Z*Yb+l*%}!FDJo1Bv6B<s^
zNK(T8s_U+$osyWhmxqco8qTt&_Q$@toHm_5_y$IQ)Np})f{r#iE^7FRy`qk~I)2vh
z3)`%YvO0ccpTPc#9k_<y*~w`5OT%Rif3l5C4}CCR(n7BnbW*`a#0>>kG+fniO#?B1
z>$6iL;O7a2IeNdL;iiTZ9k=PYrQsh9{FwTeHqbxH)k@rn$uB|9esk5t?K(>6D5;~A
z9&WK`YvrJkYcu%yd98n>v>yI^;nq3Qa>P2Iqq2?)dRS8xb)=G0AyR&rsHCIHeI+=p
zG`MRD=gsKnxr&aeI%?{urK6gTJ9JdnQ9}>g3;$rYXqnDN!C%81SaR1e$4Iqx)X{OL
zj&HLwxIu<9nfyP+HMbmLl2cE|-8wRKG}Cd9j(eGojwU)rH;mk;qk)cwd_<W@eaWG{
z@#1)o_1;JiSC$gfKWbAQ5gk!IY)5H2xC)MQs_F8UoR}Uud*|H9%(U<u_I@4B^>Ec_
zj*b>OTI$HwK}XQ7bY$wddL=DO$B?I@<Ydq2%C}F>z{u%`BCT~i@KCrKif&OEH&>>>
zuC=X>JRO5{JglRgj`liw>7m1`4muvx(M3mB9Ub-1tz|w_m>lUOF#$QeI?LN<5cz#(
z$pRfhM>idXdiVyscbMQZS{iM49X(iydbqBP_4`$;@biZk7pwQy(MLyLR@R-7{yGNe
z=qEAXK3wiXXW#>+5+0&`K9#BMj`gk`?q+>N$6y_^b<AN&bqv)pLB~WL!&v*&vyL%3
zM(7x+V-)KmH&UTaIGUnES}r-@(GPFk9^sOzu{y@-7|$pL5$@m2pBd%<JH8ERY?E|M
z)-g@TbRFExJ4NPUst$gGGX+je(LD>tJTr96)G<p(?u1Cc^l%d^-OzCcGFCA%SI0aZ
zMLHB6^K~p>4KhFLq6>8_(y^F1tQI->ZyJ9>E$<wjNx=bgnI>6$cayK`&~#WjY#q7|
zLx)Kd`ZsM{p9uY^^VE2*%A;d3dc1LT#991)5tnKl5FIx?%Kb|8yU4XV*T+SD9f6Mi
z9tL<w>R76ysf{!n%XB=dBi%sEz;Yccbez(0TE}x2(jH?S=~$y<rH-8DvBxD{MN8-s
zTP^8^XS0dd>R6{^ua12>p49P_ju&+7(D7T%*m@nCbUZ^{Q7yy71|5$K6B~8R9VU1!
z8z!FBu~|xP)$w?p*tTJU*K<0y==cw(*Dctl<9XK32Zh_2y<hXS5hbz)rZMrNEgd5@
zVmo!b$QofQn33_4j+b@pmUv|l9aJj%3XQo`bpJ51N5}oWW42c5RUN$L^#!Sp*K{1!
zaZJbSI^NLnj*fSA9MJJ5Im=QH>UfJi$)e~7LsRCjh`y#r|Ck+pTjwYx%G*QiwFajw
zoD+Rd$6+1+ll=E}e4yiF_7d@^H#_>Fj*nyt&F$#SB~f=ll&O6pCBIviN|_@%K4rzt
zjq-MbO#d?-Q~P93`MPPMUF>rmU+DN!$HA*@kL&nG$5#@6%|>*xZN}p<@~;dN-|9HQ
zZl_cJcRG0cy`+_giytI2ZMZlo0R_ZxaYn~k9XE8`)NxM7c^yaE#eUcEqmB!#3s&E7
zv9@RQqEy{aI*7*)7eCVihl^iytbZ`}tE2?Whl>Nl#p=l!f9Uv=`5Z1T>G(^>W!7L$
z{@+ZedhCjhYdWs8FJe;FV;CWtj1a?<C0<>a`M2bd*?xq$rQ;tRcNwT_;9ngn1}Ye+
zXy7&@ticinN*dU3G<v&%!6QVUmieU&WWAhM*1((*qO`<iB;B(rhx~Gq&!F-WEFU3K
z4OB8vYow@c00uH!=GHQ>%8XSuP{qK#k7QRhuziH6X5iMGT;ASc;KLDuS9Jq5B(7P^
zIa5C4+z9dS2(fidMjZnWj1+eoAnsJ9u%3YvqdVTi1ZB4GmUPpXnfEapS}e6oW_<&!
z*)fYV&&|$nV4$H9nmw;Z5;Qi@q?psxK$^snVouaRzmbB%83vjec+$jEChj-T+`vHt
zZyRV~prwHc1|}M4#WETY2D%yO^+i^efgFSGo-&BD4YW4UXl<<P)cj>v@^V=O18oen
zHPF#OCj&nOg?R?r8|WZ$I|JiK3NjC!YI~t<cGZ#j4;mmnP$pYEmYr{)i-E2Nj1l>r
zB_+SWKysw`eN29#eCRu+vl;!_k)peS9tOr3D8IC@Co^W?VFQmCaIfX{X6X#fxR%$4
zOuw+N#D_-;;{FB(7#L{aAp>Ju#Rf@%bNjL?T})%d??;M%MvB1(hOoSkWsf#6)W9(2
zYLpmhV7P%1RM#j$K>34L^J<I|1muh|u<nWMp`%2FRw8yeuT-h*u?EH&s6Mxl*&8oY
z8xo{UGBDY|O4b7F&cIXyI*Vywnk>a!1M>__XKoG5lpIE%ZD1BF<!atM`K&pT&xfA9
zo;TmX0s{*B+sk<inblEZiIiMqV6lN^qr?lN1atV_D8XzONr4|m300;*9cr>hm|@d^
zW#CcCw++l*k?k4q4LAnk1|A%q?;1!LxH?K4SeeaG(sx_M0x9|N;QXZqDvuUPDM?FM
zX5c?DMr=G<ESFDNL6aCQ9;5O{i>_s}R~cAsV4H#G4Lo6Bje#xFwANCM2A*c~q)i%l
zN-B^Q!Kz#@Yl^iqWpr4N)aph9&lq^tz$U4D)`B%!kiXf$b8PahLcDHtXl%Pj3)<>d
z13&pCn8WP`UNErNz&-;z4D6Ijd&R)#qs5B`b{lv}s$!Sa7&ZT&8VO#Ol2j?{dXIru
z4eTkK%~0O*Df{I^-;m{f&A{st(At@k0|scfZ_<FN>Xo_V@cL=AI7B{Mhlvg*-Zk)^
zffN(BnK*3VeFLWroH6hL`w9cc418wbBU<><!v7gKV&G$mKQZu4tI!C^zw>I|r)=rp
z7ao<g@y)#Ry~5ki4SZqXTLa%2_|m{vj3VQX%8Gq$;JAUi#t0@-a*SXi#EqZGX0qQi
z{|0iKi<7j*o+03M!odAw#ORjd6kE{a**{*(>oP{1HE_<rp9U@&IB(!b0~e`k1DkK;
zU6Ayb71_k(|7?JX|7zej1HZ^Ttji1^%BTM>Z~rhbQf7mE7V0kpmkr!7aMQpQR!R$T
z)xb5GCh>LlQCYFS`RL|?x67Lg-V)!EiT@)LEYmyG7$5qtEGE;u-9!l!bxqVWQPM;y
z6O~NBL}?RLNI4VbO_Y(itfafM1o`_{XIC(hYSQ6bc16i2b6Lw6>9+etWfN6QR5ww>
zL{$^a$sHy{%UI*)qM8Kjj^(Y*61=TxqLzs|Chp{eS_rDeTvk|{2C%e{ndj|YCdgqv
ziSx6?-6rla(Ttt5iF-}lXQGLTrY7o}XkenTiCd+zc{McAs2G>Y6ug)MnG8xZQ8P=V
zn~0f+n24H~H%737Eqf!6{DUoH8&0*&FmbeGHu=15ZlZ;WY!j_bv@~HH%WGvK(}dO&
zG%#MYsB^uLC4*Rm922=F+L&l-;sG<Xile<kO7r`V=9w6{GPj)!Vi}3af6zon6H`n~
zHPOjLzKQ-O2AJq<qKk=V{?6-d!XG2LQhO%4nJ6$(XkybCv44#CYK-XdU14_<Jxug8
z(aXedV+5m2JeEgl4bLw-R(yOt#N_lb(U(<xF^#yNiL6ZV<(0gF%#4ZQCPtVTWP+SW
zObj;hu!+0Jimb6>bD8WRCWe|AW`ap|A1lVli|H(uiI1cWm>4hP9$A??+Qe8B&yN+$
zDQ1Ek%8#QZ$XM@;6%$NMG;w^an8ey2Cnht`V@1hv;e+_}X(pzda7`pk%rG(2gknN9
zG0Vhk6J@hvi%ra-es1Q?GcjL+xso;?C%TRk3rs9DvB<>eabl6Yn9rJ5@`#tn{1-{e
zoHHrSgl@uSevakUSzc(+-b`2~R*Vz8ePNuKS0?)%i5(Mh6F-a#^U3SVIN`BUSSSjc
z2w0Hig-H`jCEyd6G4xd1M@_UJFDi`}jmC@rz+)y>$_%VA@wkcqG`ZU3T5hq5`X4W*
zjTcXtAm!za7i(GRqw+V57wcq+UKuaen|PYlVPTks4JJ04xMAWZ?SZDk-qOVTCf>MJ
z>RA&nnAl-rvx#!eW6znmd^Ebn#8wHmv4Tu&H}Svmg8XftMUVZ{hT!ygvD3thCSGSE
zG>o}9yG*>q=2k9$Vz<2Aw8`H?v6oG}Vqy;yIU4<7eExnDubS9v;_7%oNnZO*RGbjv
z*Gw*t$>&A9ePPZ46K}~_#BVYK<m}95A_pb&Z4-wict=w5-!<``#0@5h@L484Wd0@R
zBdU=mXW}apZy$?(V&ZeEbamnXXmV^&zqR?)#4#yJd{oM`X_R06w>F=#clxajqkKXA
zZz^myL6mBn_caaD#5oh^*#IYqZ%mvpaZ*PA*2H%*I-`6~8z{!^A8iIr5Ys1!QzlMJ
z$ulO-(oSSn89M!sHhlDtCN7xxl}2vjqKvzKg7`&(pG^EL0kz7+S-`y$#P2exORUpA
zS>*g7Z~v6^;J)0yB%eW)ze0txKb#;~zjONJU86!Ki0dZ)W&`Py_eJl#j-?B3nfQk`
zY2i)_|C&g#P~JiX3%6Nd4$n>yWh~rop@fB!7WnkiR;WyZQWlth%J8=9FWLW05M?b;
zzMQ0Yd={-}A=N^`L@{cjsAQq$L{ZJc9TGs&%92*GP?h}8q7;~Xtxa_cH7wM!K+M!?
zTA1`e7AY}7Z3$vh@-7Q?Ewr+bX`!BlyRFcG-|d@vkA*{P3Y%DHYT;fB_gSbfISnl|
zvd}<c3e2A<NE=JeuWJe)mAAY9EtO^=W+B5uL?-yAo*A{!*UC(nx7%*EX=dSmiCbED
zcB0rfQ8c$e+Cox-g-dddP883tF3hrUZlY*sp}mD{3#~2WSje@|#zI?*pSqd*@5BQ#
zDfNp&X8zVhQL(UNp5#=SB*^Sw;Xw<1!VI9Jg@%(vzJ<;fKB!R8iHS@S1YIn2rJgMm
zT6n2KLElMY(j-BkO%naf6$lHfCW*`j8QrL;1{vKg^pJqKrv$wu?JeofNur;H{uUml
zmVVA2U}2zzhb#<|DL1K5@ctxmQeMRE%N1OmBp$Ia*h0BV1w&-6UanZcAU<)pg%K9s
zvGA^ikrqZ-SZZOJh0zwqSkNr!7RFi_XJLVbnWYQHTbMv#VU~r77A_c>Q!Gqn?b8x0
z{O?+u)XAd3WYK1_m`1~+LMDqD(rg&Si}o{lvLKUqwuQMC=E+!dScDsG5+ZMYu`tDW
zHM-Vjp@l{A(Tgn<S$OTAHovbbTtc&%l}n&lP-*I`3QG@*F^D;AF)GHV7#2(mmId2_
zV<B$g;Ac^`FSbO|lSiYjg@gr<g`J;cOcuU{zyd*1(lzZePA?4kzwF2+WvoXnJVQgW
zuw1sR6&4<|u+qZg?7eBgvbS6%!8!}8Ej%Id8VhTSL)m#gF*)o@pS19lh4qsEbaCi^
zV!I}bjgqrTQuez4rM#InYvE-J&so@FVXK90Qec+_MtR=C4huUiY`5?Nt5QDYyUF4|
z@S>DtmwsuoV19PX+prtA@QQ^!v~UY=S$Ne7-vV#YJjUnmm6*5tEbN!~wPMce7ML=F
zD0aXK-xLH?`$4KjRue0w<KAr6%OP1=tfu!Y9JWx&25h{~^w~ME#aZ~!!bcXqwD6UM
zk1c#+;h2TbXb%>SSm-`K=Tj>AR-5Gua#jq@COFD8cXuSNzbJ>-=N7)8l`aS|nR8yu
zCjQ#Oaa!FJamvCs>?Eg%?=Adb;ag^#O<-?!k1_?M_f8Qf*u=^dP~fBmQK=wviXbLE
zEu&AKBF;#8GS6H1(ZUT2H)-$|E?W4DZQsIA7JjzyhlM{a{9@r(3%^<Tovmg{Xg0hE
zR!$MyricTQbE(+I7(@%){a2eS76`6cxNhO;XF6VG_gJamt0{u!NB-Xy7(`(*Z&~<<
z-MfvFcGwL6WzR1GwVh&zZQ<uBg8bVhvuJf;DI2A2l($jAMj0DrZIrW7cdB4BDLGYy
z0&Vk1$*Cy$t)_}p3HTc7CIu?nsA403XLbV{SIQSuwQ&~(Y*e#xhm9r`3#!|wWuvyl
zH6*QRWB63TpaoM!9UJW{7Tjrrc==SpUg*W2vRhUvsAuC|8}+`+y4%J*j8(3nY-+)=
zMLDFjtNUb7eH%Nc3d%IJacHWbIW@A;*akrp8{bM!zm0_v8&Mn8UDR-qZX;&ntc`Ov
zGHf)nvB$=%Htx64+{Pvw&)8^Tqos{SHWu4xWh2wZ!!{nVk!2&>Mi(1hZM3$LLnU8K
zYiA?Z2K`6nF_FRuPvLyPMjIK#(6$ofZY;^QdAx0JhZ|=)*m#hcw9&~1ms@wH_M{jO
z?4S%U{^I0HZw3(;*rDH&K{g7h-m(!PCA&%5-9`@^JtgiZX)j58OWH@$zLGMX>bHj(
z=r3;v*cd3mL&c$Y@WANB5gzn2*v1eW6KqVBK|^hfurbocFnK%NMldZ>Dm6mNe~6<b
zbBvAA61-e0!o&N<+8Aet2S$vSl>Z=z`Ge_JqpV3bX4#l6g(usXVq>br(`?MJ!{bG!
z%iGo$Q~8r<rsR;xzkd8*Gsnh489G<ed6LeTl;v7rhf8e<c>OY^^Aa0HHlDDt#)e`;
zm13R^&4zBnvSHgWY`i`#l0P$QO293RT&l-q%uK<t5x3#WSXtN75;i6`43B!J&p;k@
zPT*4yHj*}$+E{L51?T^ZbMmN6jWSn$O(lKI4);tEtg^9E;>RT=^X*~L)iPG!x#2GL
zwKmq-c-qDWHk>k%CvB{^F^ZlrZO}swkH)49w=MI}^+p+sOH#Q9oQK?z|E!J8G{4@l
z-8P<+;6)p|Y;3Wy)y6i-VQ4|w%;$^ob_rgvu|tBLk}h9Uf?~XWpDIZ6Hm8!lB!ga-
z^c6`<me1U4W1o!^HuhFa-*4kJ8~?L$gk`t!hK=`Z9JX=5#+x?YvGFd=-o`;%GTW(*
zQY*7lr-dKszm3XoSvH%qsg0(E(-)nW7rx1f$8myRXYbqizz#oMKeq9qjgRbbN`XNr
zlihxr=y*Nv@27G<kphp%q&}sV*yJVWn2pbDd}ZTn8=u=qzn=F6yE`eC)4TJR?47b=
zLsn!n@#Cz-X`;o7>~E;0X`;;4ytk(b&fR^-I${-P#>O@moHYA^m9jpAfQ3CNi+oDb
z(~_RCQLv*DfApNU@gw!%;E00@HZI!e?_hv~pKSbWqpcHK&M!88wQ-+=`VM}x@jH86
z2W1`nVdGC5w`}}l<C2ZPY+SQ(-Nt3MdUi)Yr(I=neoCYBPcCk`Fip_!BA4j=ZQ};J
zsfLl8HhPbX(3|?y^z?_PMJPs>0{_}bad5kX5)QP2l-nF|?G{(<GPD|fy*eo6ptKWu
z*XMo#^1J1S5h=riEXz44@1TZ*nhq*BsOX@IgQ^Zv9aM4v2bCRsyDsy;hcYhn!&^R@
z*<(7@9Ngicx`W%M3+_VYZnC?k3wq$poGxlPsO_MxgL)3?IJncnT@I!_6J;5he{RF)
zA9fayg}U3pJx*AzdmS)k=9wDcvlzrYH*nC<L30N!95iy!*g?cWl;ypd*2F<m2}Fw$
zJf=BK;(aNh?`4LjJIHX*%t1`@$=UjHjMx40cGKn*iq$U{Y3ZPqgIos>ILLI6<%D~d
za~$M!OUZW7+6i|q)A!)5=@G5~sXQvW>b7wIavKMvMPtIP!Rce7bGuc_bI{H~dj}mH
z^l;GA!GjJuI$-s6b<oK{zQkQ9@Kai62UAXzW*J%D9@7Om6f1C0=s-ANHFa~)-3bqq
zVo%Fkit!@o<>1V?&V6LAdP^BD+NYxWN=`pXxek_D9q8a82P+&r#;j7Y4vHKo4jyqZ
z*uiuMGaL+YFx0_V2jd(Jb1>Y&j*8LzdePq|q>pg0c)A$nU?dHALOQRp)5U1XB!7&9
zHjn2MjA#1O#Y6{_9BiL1COCL|x;Q>vOlARTPBTQ~8RC!WBD-;Ps)K?G(P<8dd6k^k
zai)V=4i-3ANd2rYIorWp2lE`vq3UJ`t9RBTE%OG=5VtqWn(tut3~{qC>+prNMGk6-
zEaqo1?fl7%)1T+`tQuY7U}fznLsd2b2TL8?_&8N}u&;eq+=1)BV9qN>O-YwBahVz0
zfkWXLf*B)Cu&|Y)+h&NsfhVyqDVaM~<tH7Ss~fFbGZa|nU_{O6qYjokI5b0)ZI@ZI
zV)XeIc`F?}?qHXL-40ecSnc3B2U{FG;b4t}jSe<BXjv(`*5S$T85<m|bMT~trzG=f
z2j9;SNA8NQm$w}d<?Y3#8I;`hMb0y_YN9own;l%8A)b|#3OQ9NT5+b>>R=lM9PD)P
zJS)P1zCJ6pax`tGusf%AnkimzFlt-=+Kj9h9lFHt*d{;g#_$+#Th@%e<ltooZ#X#M
z;1&6leGc|Zut(BYCEZI4nJH)<yk4U!QloQciq{?brt5g6dUV5G(Kl&(4&HU}9u0V=
zI7myNavZw5%;jz8PFe3rozD|lt>$&yJX0KY@V<kOSX0AeAF!*b5-m|R`k{l<Tk{Xj
z6kpC1kG07A*uf_b4^J0VGQ~!<$otg6QQB1;sd0RJA?+A@T?aq2kGhcd8C$M{FC2X7
z;425`9sDTyZ`LUBwFJi<o}Z3y9en5Dq~xT%mh!!W9~_);FuF#Jf9?5;oUcN5^0cK>
zY$>T__`~`%8y&N8A?>WB=Oj%|DoM`zO0f$LF3Qw?E*CB{W=?2MzfjK({$}YM{6={P
zS7_KHa~b*vbt2`9wniyQ&Lszbu@vRPRS=hHazny5$W;f|*n_P~p}=)1Pe7TQ4sJPM
zp~}bckL3UBASI4`FQu~^3SauN^lfq69><Wo+VZx9RMehX=_TVl);YaY9Hk{FBWYPl
z$uAd2+Ak>t6{P%<-X$2fQXGh5TO7~FQ8|t(aZHP2dK^{bs1`?;IJ(AhM;z7TXcb3h
z95v#o8Ami8E;wNkYQ@8XG>oIR1a;!LGmg6?zE{$^any_BZiy*LFG-~L$XoL7E9Tdi
zpaIj7C-+gNk>oU%v`HLIizU+}h)BxOczQ8E7DtA}%_O~F(&ojXEhK13895ZsiX%IY
z&c&gvC1@8%PBAA}f(ImR6Gz)(eqJ00M}<XhFF73~eNfVll6I0bUs8%)kCfQP)thoO
zTM$Q|IQq(<LP<p&-HIi<$I(OLo|5(|=J$?+i7<tJlJjsJkHpbm;sKHll=LA<DK<y~
zo+?N@SmJTClj6{!5)6xDcpM`n9x3T)Nk_#oY+(4TG4gh-q`ak53)1m%Oep3|jAK$U
zo-DzXIHpR_szqqzGvb&T$J23akjz<eERJJI9J7mK&52`fF`gI4{9?Qyj)f90D(2i6
zRH7&jC61+WEQ>>p<MV<@T!w1JGI|_FF*f6{B({q=4%^P)|E~o%j)dfUlKRCmfdt7o
zj%^4v!0S=TSuN>uNms=2m;?-6DZ%4$tSaXGr}HP|?V32&O0Z7SCnbGKQpQ~$$EO*g
zmUwN9<C$XqCJCl>PkpwSvpJ6Eit&~>wn{vEMfg3kJ&qUR_>9_!V@Di2WzeBGUW{W`
z9B&oJ+AYDWlD-tj%j`G)OnXIAf;|#&D>qM~-z#PI#j(FQ?rU+pUX0&}<AB6(7IWy*
zVchD>gK^M#)Z1|ob8Evpal9MHd&M&Ui{r4w?@RiDq#qWCeiX;Y#rTsrUK$(vEaG)U
zGCz&us07C({jU{#5yzKtlyFhf#aD4~SN>0N{LDPWaa@Xh6US+4fW5T5{Z7*FC1uJ#
z#BoC6lf|4<@zAjzgU%Fl&c<;rj`MLGsuX^a@%m8)U0|nIEYpxKtR%is%=uM<-z5D#
zjz8k~GmcC0_G+=rUvXS6##babRw;5#g6qZnza>bU9la^RElK|=4*fTdljX{!u=p3#
zZj<zONhhR-?Y)$X((;zL^H7wLxU3r<!A4Fw7v)`4kj#pbR+co?MI{L!DbuHL6^W}#
zT1`?i?{M*-Lx!3zYPtB-#ZecvUGPmh*u@YRbzI!(;w~3;U9@(Q<D#C6yIn+FL|xqD
z;$9bNE^?pGy3fV2?O6?7G?Jjciv})YmGgi5I(lV5ZethkR?K^6OV_3@nz(4}XB_x0
z${=19XNjrDqtRI+o$@YPxM=Aj!=>k(+@~%V-tVHB#Ct#GPS4!tE*OR2^jBG}Tx7b)
zaxwCB!GFv<wsw8;cr;sbD8KtiG}pxgF8aF|;G&I-wl4Brbas*FqQjPG2Nw^zXy>A0
znrQEW+57Z(l=Q7y`HbF?kB(<htdk4A_X)bV=<1@Ii|#H8TzvRdR-uc+Ejg3kk5Zt)
z@u+Yy_EZRZxajGkkBh!8n5ABl_Lg+@mgrB%qh$7zw~z16p*)%740J(NJUB}Xl8=6f
ziv6}y<+6gDhh03v+|Cj!{ER`f#84N*TugT{!^LnHBV3GgF`fmNH9MLXB1bi&$ow}#
zd<td8FmIASV^%o#JAu_#IdiIuX)Y#GY-P(yE+(`3zRBGAWZo1$+Udya`IHRC<*2Db
z%@XxjrOb3O%f&Vq&%2oIVvdWXi={5+x|ruecVW1g&vY83FLbfU#pXj<3#j2n83c=6
zEODW_C>6^na-q0b+%jYJ)tt8?8KYWe^u0TM>Wus$mvS^0x9VqX-Py@>k=i&t?!t9p
zxv*V0E>71;FZFiT@%)aT)X(TrH+}J;tb_}n^;<Dlo1f>ocssu%ANNOo$ADF{C%arU
zW0{LbU95NUw2S2~R=9ZF#VQw%x%lXXP9G~7E6Hq>L7d#3T_G)FwTmZQtYhuCSVMEY
zJAGx#jI}PbI_ceJ<d56YDVg7qqs_P7N>905G?mAQjJ1Jw8_Rgk#TFMEU2JmkjEiTf
z0k)${Im|E%wWm({@kj=XzinU^BW|Ta>c`H$oXz!a1lwJ_;Nn#md#Ra2Svy?3?BdkX
z(mP$e=;FuBj9o5Xk{Tf1EjhL8rT3qi&umkTuec!H!>Wm7yzy%GJ{SAh=-75#yyhZ%
zM*aa8Z@PHh#T&HeMj4MsGWZl0>Ma+4MKa!YaY*Lppe%BoJ=x5vH%qXv?@0c+bJ4?6
z@_iQ{us4{W_uwnp+h0lj(8b3tK5=n=RqP`-Tvf{qP@n&!9_pnZp+a8GzUSrazjkNy
zamQSI#w;apIDyYyeBq*60(T_vB|Co?NZ{y&w69$pckwG*x{GgUu~Y&}?czID$1@QM
zoOJQM#Jv5%#R-Xb4$b9liJo~B7-B`vxH#+L9F=cH-d+(o@8Zm*%pYA`V3WMrMSL1L
zyo_@)oi8#oFGqf2zjq;x*Uu9CLQPgL!`t6o{Ndss7yr8W)5Rqh*IaCUIO8uDm!;%Y
z=B;n~ppRl#T#)uyP)OSQk<P>WreAmQw~NuG3wO>EH)v`5BfM_Xwk2M8DaPBwvqVY)
zWfCZxz~Ix-+Y-24YM_LqB_(AxN=Z;!(i)c{yPH&McRE%sf$|BQnkBB!5^Y*{t&l*)
zV);}FDkV^@e+r{lmbX=kL#s;gYO9p$3DihHNkC1YW&*Vm=$k;l1ZpQxCxNU4vJ<#7
zfx8lDl0ef$c;IQ>1ny1Xz69zeaCahnXK`!TJqi3XHN^cJrqoY_Z|X(~G)|y_#N6G`
zPy(*!@3AW!54^oPN}84c=d{xkh{<#!2}Bd9I$Lm`)PtoX83{B?phW^L6SzMS&aUuk
zE&=^v5_9so>1@G+Dq1mbvqh$)1jnjHS|^Z`K!*e#OdvOb2NGzLK-)y<&V^f_xU+^E
zsF{Jh1llJ;2N5G`MA{`l%G0cvd2%`?&?y0tKsV~)dRo4uT_o+C2v3|RbA5iKYXbC+
zQjkEQ3?g$?y-4>2xJS500zDI<qnPxr5$?zAl?WY~PHB`fH#5>Zfj$Wk(6usY{{#jk
zFg<}82@Fi&p#+8{Fgy|Z!lhr|K?yv};#7+~lE9Ee=(~O}E4qB>c9?Xi<Q$wDC4Yoe
z<5cFPN@QdLqp02lN({|nNyjEIM&kP?=8-clf$<4UkXd4=+M&cmiJ8Mm5={Otw~}&8
zIAx|KLQio7Gie50#M}htB`_<2*@<w9a%5p-e$~hvX(3by_ZrMkU||A_SPQeof&|Ff
zd@#0HCRil%xkO?<k=vkn<abHBC`mw1V08jdBw!?9vS_zOf&{DtCS5P>B+zkINt-ky
z^fOEvPr#MAN+jS*;7Q8jGpiGK#OP&Z`~NB>S;fWAT9&}02`o=wMFNjWCVe0?4=Y(y
z^7e5_xp{=gkTrfQlSeGANnmXP&n2)WfprNynZTw5o{{$aR3be3jaz}%%Mv{;DOI!~
zfsMtOA78X6`oVZMfz3>$YGmMSK@03%HnNq^O5oK5_9pOr0^1YVnZSz)oM~7Fuf+J%
z>IG_GTy#eQ8Py{MyW~S(PQaNhc1!${q)dP6Y{9nqN&<Ui6%ZHZME21*6F9^QnjTi%
zYY7}k;LQYHPvDIN_&<m{(?cH})gy1w{BEQjl$1^{iFv&(Z+Q?NqrW2)c~???5xk$k
z2MILv(8$AwG}Hu2c_{7SV?I5BUlRD0HO^+javhDHO5js=I1+!Iz%dCvlXUyM913tT
z#^;G}J;@h*3rIlxl?2a>>UcZ>@0pI@NcnFi{Z3Lw{9b||Bt4P9$zuMqBU4T%@YHN^
zrZ}~;37nJod@<+81TGZgixT`K>Cdc@+2Jaz-x8?%V)oxM&EF;dL(-3Ci$4>%#8S@|
ze@RMkS%NDGTrK8Yli<2clLE}`jRbBolU#X{z=_%7pW@v9D?y5f+q_U+w@X?=Qr?#I
z@Ry9vAzT>`<vmpJ!l7MRNy|z4(^GjBC8+J8j)znal{`RlD0znjl|57`=2VrSnuk%#
z!ug`=^0r2CXiX2bit&FFS$BH4Pjc=m=GT>=o}_nsxTlzZuZOa81k<eVp@D}PBA27b
zH7i?^)7V2357{1CduZw*%|j~>nI0k@-g_mlnTLDlh^WN8P4^J<kU^vRJd3wA3bG0A
z_t4x!3lA+NKXZ=YE%}9WM41n>j~>f<qj@aL1L+4JW|QW4$o0_8Lw64kcxdCHvxhDo
z+Iq<I(9uID5A8g(_b_p9;eA0$2M^mn&3e$o>E<zl5g%l~(;;vBo-pX=rY-WRgdk;B
zy%?EKznasPX%5aR^ibg8*uD~DKg_1g$`7-J2g(p{`5?OoHSke(KMy@U^peT;W_~`)
z>cfJ6kj+?q<t;gkGHi~>-CH=&!$U0NQnXx(K^`9Vu-3;qACGt#?BOjB2R#h&Fw}$Q
zLH97s!*CCCJ<Rhk!ox_G#ls}ltcTGa#(Eg%g<DJdHOCkUh`D)$bkmvAmy{CYJ;Yxs
zF~I|G$($@@W_XzCVTy;T9;Ow?n$E1w&!tSWg6Pyl3c)Oo-cd@-mI7a&4x`WEb8p0$
z)O^WY;9;Qz<tJ8J<YBSIs-#OKRXh|)kUFu_g)-q*CMHPw;(-!|2h+nwX3T@-!S=Aq
z!)gx>GwdPoko4fnxRm!KNO&ljT7nljzT^-uEtXj(LmBia&9!HAxuh#3eN57o9v)|r
zdqx?`i-5vUcwl*-^suHlowX9Ilk|yA9iNf{lvyvq(;hZRFlUY+^BE7%df4gVMGu>0
zl<kr}=V6NkTRm)JOPBb+oRj{i-WMd3dDu~$bK+edUh?p=$0dc)-IA8ijlClCzu&`a
z9`<;6)x)wmVy}lpxs2!M2;zORTm-L6z@nX+Bi@ksfTV9q`raJDptn67Vq71dk9R!0
z%U<2XCv2D=4tw~3nW0M`N%@YTV-Px{=05HZJ^VdKd?YD>x+e2~9*(e$`^fb1sfVNN
z-+bKe<CurfJpAn87Z0C%_`<^p4<|i*>ESDOBObo<@U@5I9xiuD`G$q97NHAwzT<va
z9i^*w&JLZ~7yF*gJT3Br2l{p7e|8F_myVob6Z3G+!+8&M6L*HzSSxatZM;S3MvPuD
zf2b4r(ZdA~7d`yM#<DK@S#EfC16?Lk^22}A8f^^yvHa@cHxJi5T=($1hd(@AVJ~qx
z?N1s!dt+vdIlPrdw`o&bL@G`RkFv7HMtI8u4i5E+TxD@0c^vZnEo0sC@Q;TZ9&XB8
zjs&<*mh@jQTu8tT+9`erm|(L5G2WK&QPRg<KI-}?<)gHZsy?duDC487k5nI(e3bK1
z-bV!=6@Ab{2wjnI4u>vu=r57Z+v!<_c-lLaxM-uYk19-mZg`|7nLNIbE;uM~hmYz$
zYWb+`qlO<2jB6rN(+~IIHcbl;F(;_w<ME5Bclw||8D5kb(KnKs7OCgsZXZp3a0q^n
zk9&PI^wG%2eLm=zy}pkIKIqSc$769h#6x2vym;H#4;}kAkwGu@jBrmqk2)fU2R=o8
zH1l!4k978RCrZbBWcXlRvszidGyvj5bYw&&{F2(jM@vf16*K^b(jM-c5uJ%hmXB;7
z!+nhK(b`9jkM2Ht_{jC~0L$eg-$xrCZGCj`L&M1P(auMEA6n_~EC#yqB$J?SBs@yv
zK_BzhXLe-ivci4k<ahSb#YcgULLYkyQh1C-S4O{_R(3-sDK8;!yZPWj7(8v92V%08
zd-~|*W023?Ug+(kkB|O72Kb@<bUmNi*GE5zS??n&gvP)q1ARP14g8hHv&=TN&1f(s
z!oB&A_!!JWRf`Ohbci3ipdU(;7!W1%-jNYfUYjyXjAZGUc^~tAjP^0c$21?)eT?-n
z&c{R_lYET#F@aUzInrZ!CMjL|SDP48{*s>TV~UTde)z$~<qEtwyr-)NE)tmGW2TQ;
zK4w$TCra1flEPS{Pn2#PO_}3ku1ud^d6^*7Azk2Op%24{>0^<P#Xb}&$Hx-(2|Vxn
zVp@?;Cv1`S!z0|`%cC>dWFDL=G#@(OcXI^~Q6-;D%ZKg5@e!w~45&o!4Lmr5Ux==c
zO9hp3rbZs>7INtM!S@lc`CLqU+y_rVO0pF4md<dNQUkRk1dsaQ#Q1VaS4hg+$9$}m
zI6Ny*Iu>5#W3`OS4f0R;AYJ2!-mwUt^zoFBe|@9`SnuO$HV_}L``F-PqmNxacKg`m
z;~78PbNalGXMJq;!=1ugeZHVm-f&Y^)r>tSIa?$pbDIQ|*<CZX-Ny^8wYg%4kDWd!
z+%g&?eNp1XTtWO2dw>^8zA8B{%eb#dx<}I6UMR_=o}DZ9`q)RATCx3-5|H_Zj{`ow
z@$s#XH>LasK0cJ-Ep`Py-eyHNjU8g`_;^q9-|=y1u3(zH4*PgtGLJ}3z1MTe{K&`0
zKE9ItPkj8($LBI{N7(tZEld7UAOBs)XnW@i87sX}7&qg!-0wG){6fln$z0799}MkC
z{?}|8XL65AK2=1{cQVbhtSM?Z8vEYI4?a%#I4NaL`8Z7jIGReyYpEp|<&5Ny-Px6#
z^FDrL&TGZ~@^OKkYU#{heEjO;qR-8D_*qIei-ZMSQajZ4Z$5sP%uDRDB=}R(;k9IF
z&Df8!_^i##G|R&&SA1NR0@r+8XHO_`>aOt7R6FSn_F9c{Z~C|;gZ`0}rC`u)0d5bF
zkwmj3N(3kwU{!$C0ZIiZ9iSjUVSq9L$_8i@pmBh50m=uc8K72x3IQqxs1l%RfYcz|
zw_Yg#0+g61YR?mu1MFQ^V$eJ>W1fi36CLM?Y5^8}l6^;j>H(U(R)V-jfUlC78~1k|
z(>2z)df_cKqjrEg0qO>*7vQ_JTz{UpGr;jP`Aqz-0Op1~g1ZCU6QF*81_AC3I5x)H
zH4Be*i>1{p>~3Uio+sX%CwljaH4N~}Jh7vDEG3co<vh_OK+^!N1LOoq3lIr#e}Luz
zq5;yWfdI_{#8~k8qU+iGc|Bskbqljp|Fsfz=Zlu}#n=N~TLfqsATvN#fK~ze%@3dQ
zANaCoD7?N~EIZ&K=G=#y!OY|acpyLrY9>IN0Br*><#qw=8imY~IbY-jJjGk^iTme^
z_5rAe6+L4e19S?|IY5^HOh2D3y<6-(GlK<x?o58y0PQ#AF*@mjeL314g(5(=0Mi4^
z2+%!1j{rjg3=PmTK(7D;0t{r8oy_kYpfB?*pWY_`AEfk*9i1<jcz>DZ8a-oN&)7o&
z2GJz!j7Q{isf34RHhwKu%isXZPv&nsnLjMR@Bm{2j0-R#z{mij1B?m4pvG?IC>e|C
zpRJzFG+7Xqy5a&cKEQ+klc}Wu69Y^NxZ5|Qe2-Xz1%eTGjp$4pm>OVOfc$oO4=oUH
zQ6URNoo2aAVP=3?0W20F!0Z5X0xS%$D8SqRfAx&b3ou{inJFxw0%diu_NOlpd%DFI
z2Urq74WLPxBHGe?p#*66Y&P}aEeP#|8rB0C45F#*?@HsLa#o(szZuEhxIj1o;sKTg
zcr<_;AQ8Y15Cl9bS9k$8zLm`NGFk7JXJ>q|KqLb!l`Z0p*5NJfbLN1&<y3os#{<w-
zxpd^Q04rr?So~iWgwMLq%Y5w3uFTI90oKrZ1N<6bZGd&O@BoJbJQ?7r0J{S0W<(lK
zfUQ(`fDJUB0M7>49AHy`(}l6=C-R@6F`v&bvrtspkoQFOY&Nv#0v?;5v4zcNp`Z-$
z;H8<*2iP89XMh)FhF=J<gO3=|`OwnL+=YU9V+GyVll4$MGubP~OuiK0<p8e*cs;-?
z0rmvg7hpg2AfxY<bihI}eW73(6AQy~eLkU5_wKPR3&k4&4g`2Bz`+17^o*@<o$)4Z
zU|{ahnuTvH6x9D`k}gYTz7ybGb`Al)4)9)p!vX#m;7EY$Z+3m3r3mm5Gkl=y2h`F+
zQD%|&IKZE0@(&lrJ_+!nm&p`}+eLCe4RAETX8}H^+5^xO+16Mnnn&G5B5RRgHoge(
zCEHH-*nyvNdoL1^8rjDKd=ubIfU^O<Wk(d?M1YgjdFzbtX(5ZaftrVtim{7?<z?pf
zi19iVz-gUvn$*eMmyx@6QCR$Q0nP{biT&z3DL)4EdX#Y?z{LP}t;?o?ed=X0LFTsQ
z+5DfSRZvCD(r*EN4{%2k)sy&x<zn<CN+ofLb{^nnfLj4B2e?9Q1o)ecYf)ImR|8yQ
z-7OODE)w4?5^p9mSxlDY@*;7AU5b{$O#Tz#-vGBIL!FQLJ(pI&3Q9?W#$SH1xSg+n
zBu~@|tBhBZbNQu{D3e6RBvO-M_g*%MZbwqfC6P^;)*0oKsE`En%pex$tzNN8Ng#>J
zNmNOK2E!&yQ)k;@^Q@W-8)>y9*qTnoGl}_#8cEblA}xtX619@3oy2`f)K8*L5_cw1
zFNwR8VZGdyMBOBMEEXAN#-d&^OV1#4(CiH6{~l&Ii9v4W$i-s*V!?7XNTOj9jgx4S
zL?c-=f3aY!VIuaglga#SSuAKdO_O+gvG{7Sh{~eHk|?_*EJ%8i=kEx%!JoT^jr9H`
znkVsA5(krLkwnWR)FiYdS|yR0MBgO(C6PsiB$1y)=Va)}rF9YyB+(`bCX$mxZZhm_
zS@ooClgLY=eG(m*;E~jJN$gC|4aJ(r2<~A9lIWO3Cnml`^jjj>C-cohN|`Q6bfx~O
zkR(q?5d}$n-#sRhC`|HD67l2`v2RJ3ZOZpZqGvMfhkMJS^^zsx+loQ#g!?3U=!xJ(
z6YZbGfFvd)F)@jOtg<9VBr%fuOyc1r9!X*_%hfKAl5AyXmxv)r3{7HK62p@`MM6|9
z5~a?{-hN+By1eBpX;c!UlNgi4SXN)p*jq<Z*#{OBiE&AcXPp`ueDo+kb5v1C=M{-b
zNlZ>+P7-sIn3BZQB&H`ZBMC;Cmc*;k+&>bT#LZ9U&t!8*WX?)rb`pF+FD()~i$t$j
zZp_I%TqNctF+WKs>S9R}3zArv#G)h?C+V17{Ba_m&Ag8u8qd40cV!edjUrYM>#JLg
zW^;!knkYg~!bswYB-SKhO4T{kZ4y>8Z1}e1oVuD%>?V;&Vrde~l3_pQCGq$6m@hG3
zC_xfQ8iNw{GiM^XYzU7gu{?>DNjy$tNaC?%_zIu`DNLKJ8PDYV{nKZ&S0%BUrt4-7
zQ3NwaYh>TMHi>mf>`G#H5>F=aR1(jz(J@O&Je|bGBsP&Q5E~?AH7!xXnq_4@lf<)0
zY-U~jA5-4}<y7(gzeo{L_y|Z-P>~|;hD2~lmJJYEc42o=5ygf|mtMsJ(wo$Mc`vWO
zB=p{!sGxoUMFm7e6ahsLlp=OOMBx9)@XtBFbLM=`XYSmYxpU{v<Ry7;-tS>9I!ajT
zZR>dB-Ht059<-LLqXesH(gd-Znw|Za8RX~nnhAn@os_IELDx?HXO`q~ET-^NzNrM8
zOYm+9-jfd5!Z|9zJ0;jPLA+f8u9_1Q1o6@Y!9=o+F0GdLehEG(!FCy|3|C&)4d7+T
zWBw1h{O>BRGEs0v?_?v~^b}NA@KFgqX54bdOR&2HpOoN8367TF(-M4Ef-e}uB|O$x
z>?y(C671uGnkfFOS^T+NYtK&<`{k7JW0!ly(23$pI=lp5m*5-D=EU@F@Kp&8mGJ9o
z(48m;J5jU_gb$bCTQ2s;{hv$}rzeW*(yC)6_^t#$m*5OnTnUbs;3R{p1V5DE1jBWr
z_~m2)HQ8yENuuE-ajFETWuX34f)yn}e(W+`E(x}pB%YZh&X(XDy;On=B{*M_zA)qG
z2p2dn7dhR(mf$yr?xX-Wx51MHBZO|@&h{ra{}Pl@P*%a;CAe6EYbCf|f=ea1%-Acz
z)e`)}0ZNx%krOw4l3-j_c-+76hk|?Oq(2M(W57&G$K(wzUIn)(D6OOed)ui3c2r8?
zv3}y<B*DwwGn3N&a#Jd&;8q0{6;x7CUcs-E0~Hk9uHZH$J$Jmu=<-7W{dQxL;NrSN
zNq<IgVM0NRXTp^gR8erJg5Tx@YfVmnUQ|`mA2fF<=`EdvaXw~h;FA*tH5AlT&{%<A
zK`jM$D`=?TK?V0HsIA~$1^3DBxc}FYBv)>j_baHY@c67ieFYCFsHgCRv9#HN$)aeo
z7#>LPt1N9Gb$I#ONWnu2auoO!>~Q@@g@4mM1=-SO#zW-e$mPS8_}MppvIr>YZJcA7
zF+KROf+h-1-BZw1;lrB&j+$8Mr-Eh*f(rf@!;Tn23i1^EqTqsp=B%q=k%Gkv!t{fJ
zR}_p=&{9Dw1<&%Qbp;Uxtrc`p@T7t^3Xi!!X9W`q^4ckAub>mhe%u#TP(aV~j$cmt
zmQbOBPrlCTsGx()Qo^EFkNPfr<SSMnq-M)R=}zC5qkPkb(4z`|UhaEL!Ji-a9#?Rv
zAg|k^{3m2D+94nNdP+f8`r(-G83iw`3$ZRMKCQr5;bY@J%?@nb7<yjeIU(qwpr?Xy
zKlolyz#hwQ^u5Sn_{?Wb7B5NCofGtR-bZ_Uy%h9TFi^oD1=H7t`Y3prlcJz6opZv+
z<m;0~+|#y2e+B#2g_s5?>ARaqy6>zsSiw*Q!xRjW!=e2&ez=0)cliAK%GKZL8=+vN
zg34<{br<JPcshKP9#HU_f|vqT!Rrd%P%w>MD;TXHvDr7C<5e(5!J91FUV5x-cI}(#
zk&aV%teGI0s9=(Ushqoye9TT(_$zLJWQy#FeI4JEcJjGHd2cD0p<uRxISNj1_RUoA
z^)DTVb`No+v!s7`pOQN_Fjv8ft-c?7Ws#RCP#Au51LNAIQBx47VH{@nkWN=KDiWm~
zX{sq5Vo7{vRHb!0eYRBNC}@l;9q1{*wx*njq=J;>^As$k!`J!d%j^P)bQ;xuf3q~_
zafyPZ3f@=nfdZcDwoJil1#1*6m)R8(DPO5zRfey9GjFYebqZgV=ucN!n!R2@gTBEn
z3N|R%s9+Pb=c0Qji_Mb6jznLsQF#7H^lb%O6}-d9?-G1Z!8Qf&DzN(o>yPrcTA00E
zHgfz8KP7C9_#u}MBa?1q9MVf&gHJS%9#F7T!7lFq3O-h_N5NhNkG&k+&G=XFDHllX
z(vP{>Y~eEnOgEb%GVN2apUQ6b=Tc4y`4^Ixmb}98!Y>sZRCp9*^ec&%hZd4k?HdI@
zC^(_uu!3(D98qvo!EpwOZ26dM<a-6*anF=ZJzXz)v-c_`5$c>&@FUmzlI;2uvrjQR
z6r53TR@S07Xvt5K|18ZrHCZ$q=Vzx(=M<dhGMQVEoGt&#-I6=Jf{Tnp-U6iH4=!QJ
z&$abY@|Wapsx<lK$>NfN%iK?5XdS~p3a)UsjN!f*{#9_5dv6StWB5<OH3j8jxHX3B
z3T`MU6GPb;vSQd!CZ}ev0N;^UO7dGImX=s?inv+Y(wB2%X?y<2Sw4o_V(Ft1D{;rW
zl3gJN{{C4phTCJfLrNyD3LY?nEaD9eeD4ONa;X<{ZdA&t5<}G(?unr`g)vl%p=J!V
zVyI5iD^Nos32X5+ro_8r;5{~!RB4t*zATc$t3z|@#6aXjp!`$j{ut`UkQYPq7#^U_
zXS3_a&_I%U68XnO!x$cnfya;rWEYKM@W;~czh;{c#gLupHzx*PhBuC-?|h&F4+o~^
z!&2TvVpEBaWHfVQXqMqYdLYB=<|03aa15=a8T`?hwzY_%Wi0(3+XtqIWg~LVR8GH?
zkbjG`iJ@%_17a8$L%SH-$M9qfPsI?8;nU_hkIOcB&qhHkeGY%2#11iZl!THZNs40-
zl61<*AC2L$3=dBconv@HHpPD~x@7F+8&|u=@N^8lV*EQE&&0r&7Io>K^K1-DigNC6
zp7Wd}bj9;Abd$AS$kcr?hL<Goo{{v3p{L}umR0)1&^LycW9Y|8|0|n!Zctc$ZIJ)m
zk@T0EZEvLcpcn?nV8md?FeHYdF?4z|rzD19Qs>PW#!50=;)obVO7e=tQ4(K`;WfHz
zou94U`%}x;V|YW#N5?Qm5*AU;(s41A3FdU3BBsYMKE|6Bb0$cIi4rGCoGg*bQ(`=I
zDjlEGG7_F0&Fot-%#f0q5@%&fXESIepDVFiZn~}#LoAklxSPCNc8(f@MrUT{FvVlg
zGn}5cVz6V_6vO5i9NEJ17*@pK#^A|pB8K^ru&JaZDT(tWGL|S`5W_;5T_ll`#hk<p
zUmC+Q$$646i}?63SL;eCS(VXQ&G^sowUVrhVSPrjL6VIU-803!X>AK5t*7rpF1?G{
zZ%f=N@g1%^Nhp6$l5G;VOME|u4<zAJmQ<iI&kyzOjA2&{l~h2*M<nO6zlq^6!#IZB
zF?=E=6dvSU$I@pNekLV*B<{_W?u+4b$@ga@U&L@A!@rbdz!dRSMsg^IuQR+|2;atV
zB!+9;Dq}br!?76tjNz{szT@JJ;dBf?#c-S(?Ah!eVmKkm)#-tg6s7_{#&D%t<kczS
z_3tZ@oQmO{2O}gu$8aWw#wh+ZhO;r8i(y*J@GoqzPGnQ4c=3Ia^IRznBh@!WE-(hB
zh^+nr;%~Aw*7{x6{X^oWDS}=9&E1}*F<g`eT#`un<ruzg5hnRJhR09k|0m_cT86L2
zuxE-OVbQn?#W$q9oQhjjWT_~n;uaOnKP+AL<MyRh9$P19HhCEp#Ih2nlnStJc@?**
zsGvgstrD|YQ^oBn&tVfeS6bbnrhQUTVy&rZBkxpES;eC&9#c_8MO78KDw?UdOGPym
z_o=vF<soJwFYd3dqK1l`P(e)<cdNKZMW3mnmWuIHMcFRlYbdI%f{&Khk*H4<_ew&^
z>ZzixiU(9=v$~3UQvM)qm@4Y4XrSV=siL72o}4PE&uk-^eTXJaOH26d9?_?wiHc|<
z+*pNQMSz21o6`h!Mr_Ha0uy;t6>Vj$M`R<<O%p*CAqrKrQ?btQ=cx#*XhCPnY`%&S
z)5NT4f<-M=v{JF_bf}Grh$O95o=zEfwiQpv3@n@`KA0xn%`0fJG}NA!sAzn;xRc7S
zD&YbZ9aMBwk#}3LP~wqkqDbWtBBEGDs&}B`bkT6S5R!iu_fxXv*5Jya;m1{UR-vhg
zt9U|17ZoE_yrSYs6;G+?uVR3TgRkXxRq>39XH`6{rcZq0DJZ|)-ugKe&#UO6qNkd^
zJFc6G7gW3`d1SiiI$gY^qPvPg(*;i#*>xl|X}Ta!P8Yp6cPjd-;GssnRcx9rj#|Y$
z0Ef75x_DVdKNTcQr>CdyOdF_TIK9NCR18-6oO}BIw;?KqGEUwS!(@-$FXTP+mf+D?
z-Ph&O!qSI)ZEi0brQ%gtI!ncCj4``-yow2uysqL66{A%?UM<F`cvIyQzM|_}V$fTH
zWUPvDGLhHm?Pr>(VycR1D#$0Pn5<%oibnfGH%qOz#B>#JseDdW%#=7o#U7`a+1^uv
zw3fH(k<V5!N5xzQ&#U=0tztz*iENMxJKqxDz9nKRR4JhXg}Mqu+P`0gslrmRl8v+a
z)S#`xQQ=D7eQMBCkx;Qr1qYs#RpzT$pkn6E(kT`5R6Z^$`d>?*#&-Wf-$E5jR4kQh
zi&QLTod4C5r&O`D^o;*MUY>5WoMU`Fe}!zb#thMThFGm)jf!_wyr*I<qgTa7PM?bP
zDmJJXI77snM)a?I?PiFlXQU@?GpBflD0`vR+bXum?syyxd)cbu9k$RZV$2Xslx$P6
zUB$;LcB^P3BJZpCP{sdLz6m}50~Kc*hNx4{%-@tqAC0wxK`2|>C6SVkB-wDW<$vq*
zKH-X{^XaHBeV<A>&thsaE`KkBDx<&hME>U){>jqxnQ~vKIH2N7M!SlyWYIS&E{(}w
zHA5Uy@ipz4kv>(4V;nXha#$*SE0GgT1CFWqjtek}q9ndoaa_e#3-4I?LB$CbN*u8`
zPOA7(MQ;s#G@Md#nme0@M>YJU;%7#+it8%Qa04t;=B$cyTwD{H=e^pz>4fIzRs60Z
z=zHWB6&F;#YOwk4JIeej$!`)V=`f-BA6)paHvd!NUlRY8cv0e|jOJw(|44pC;=dBF
zO8ieETl>{*euLY-hI$(6Ybd4R77bN2RMk*gLm3TsXsD>6tcG$L>a@?gUBj&!wlwi|
zt5S5EB;_@HJws5^xka#o#s|{`N!6L6e<Dyx!{2YVzf(hH4Uo#q=7ryG<_pYB>nj}s
z9cPNWG*r_tdTjd#q(XHK_h_iCp@xQ<8fs~Lk|?cww}$fhzR5F1a;DfZQ`FHgX+iit
z4fkufR|9)IIy2qx-!nyB4V7kzW-SFdB~HFC<pmmOXs98gp|yqwH8j!?(vYX&Ar09Y
z0vaCHkfXsTZSZTj+`X`|hJsn?uE#d>`DTe;vqY_yqKSs48k%VcYIsDdQ8QQ8A{lV4
z6>*9es9&{+701sK%{Am}XsMx<hQIDAdT3$To+ZK>TF5HYp`GX$_@C_P$Sl!DLt70|
zcCDe<?`x-_JuRFqF3l2m&KAo%1Rk3$*hry<A`Q!OA{{i|7%7-KYP=m$u$^#@uUO-~
ze?n*=UthiGF%I^b>?b+KBH!bZch>NPhUO#u`q1nyQquQ<ET*S4bk*>*mcCIlon)0~
zH0;~c?pY1*&raV-Ncr;`x=EcEB)*u@e@T+=5_?GOsiBu7H*YEItKnr0Cp4VY(2p~#
zVTp#N8U|<>s9~0d*%}6E7|hAlFj>P84MR1I((tN=i+@IjG16v>5gLX|!dn`c<qZ-e
zwe+niuW&kK_B9O~)~4@v7_Fu6b9h|?Z)JHy!;b9qJuQ@v(eS2*v9e8OnZ{`tucdE{
znIMs5q9jzCqG2k1E3?x$kNql5XFSglW!81%?HLcw5pQvUH1;d0K-)QDCcQK>eSgRt
z4RbZv8XOHJ8Wat>217Oylc;ID5lg5X+8kkT=optmw#h+VsduZXVd9pKmWC(G22*V+
zlE-9^t_Dv-f<ZDTJ@5);gGmi34f8atnj=1%Bj#(k+vi`XVG(0M!{J(fw($KN!Dbh;
zi*4bmbHzoOU8Z5VhL1Ju*04guN;-{>VmlhXNe0$(*5-<Pdihs#J@)diVGzz0t>+2~
z*J)TUOY8hs#Ox*wn>lI?A8<vqi)@kju7<ZYY}N3N%+8uCW_8FLCGkBC+oW**T(O;M
za|IJiS@%N?J7p31|0LPL*psDH-lgHAo2_-oJ2h8)qTy2w$JljKf7S7k&ou1U@C7%n
z@sT|m_DXVPuGlBZ=N!d>P~{SFK*N_BzSYpZLhFMXzT%`zDgK7SgP}v*>%ItmE&0`s
z>AScoVd-HFXC4icJa(q|2zQJUaa032$#=5%@9D|5!Q-5i649+h{Gg$C$2{Ig{UbMj
zF8?^fah&GnPfOysD~_MppoVK2u4_1};T-o&ZVnpGbGKaLXZlscFB&c|HfV6uaR0#t
zH|4)+_+7&vQtj(U!c1v7!&t+WOx;Tw+@l5ma4m55n}o0S^b=zxg2I0_T$O77X_)qT
z#hY!e`l|SbhO9Vli=#purQ%?fTjD4k$Iks(Ol9I}t5%eV@^O@vrBo;<$*ugb+nvQM
z6E$y-<Bm8GPdC1!M6gyxSvS%&Tq%xG9U_$6DJ7NTX(O4fBC}09M5@J6Jq~{yfjDZ!
zQ8SJ@aoih6Eqd>f@I6xP?l`h!t+vz3ux{-*x^;-K>m%8?FOG-e$d2RwIO@jnfHdzx
zS&Itw;;5goyn!SQGnTWRMzWp1n}l;@5s6QhzVlPL#%!TUm}%t0{)c62P2y-8$AzZS
z^Gp1X#L+B{pe)Lb<Nck*bVw+Uyf`>JH?3_hOKI~>vs=W`GLF~dcq5Kh@$@Z%B92aR
zMB->2M;j?Ame^Jz723toe|YouaYUu0Kw@F0v_l*nB`?ZIcve8oSDLfpqj5YI$DlX{
z$MHBl+#t|7jwj;j=OSk+mAXj%XXAKIk|!lTC9!K9PfNl^o{^-(Vm}{|W0vW8dMu6?
z;&@RO^^y3J#O@M%NbD)Gm&D!@kCmj4dgv?p%M$xZ>@RVE#DNn3do^wUkT{0MF(QtU
zaSV&2%4^Ms$MI{47?D+moWtZVX|FJ};<(r<>$Nyuji-P2W5xFa=rX7|Ic+A6j$=$5
zQyH0YyeZqK&cryz#xX9An@1~9GCqz8vh*9-J0+9im@FkzGPQ1$i0K(VH;%U?pApB*
zIA&$!vn8PcY+;V%`+rOys!$?1AA(ln(Be3w<E)N&9C{r8#Bn7KBMvi;-En*phZTn%
z$L2V;#Nlwg#IY`p_3`wFxED`<pf9B5GMki`lE~6|am<%|fy5(k1}R(=$Kp884ai>-
z$MQH<NWN6!vN(8Z%`eL$E8~0|K3}`9V09d;;@EYufch+26UTkaBY6k%)-sSf1uH9J
zLmcXlVMfuWI5uWRJ)uGRd56JsvfhqkYaAcO@xM6UiQ`?a3yyJU_Iq(`i(`8n<$m)|
zX&T}~uS_J36fyQv_ydmmY<5Hu#2wsxxE0LG`AEj<t~gdc;rs2!a_liDS?Oa&Y+2v4
zidfS%@M#>M#qnJn-^Z~hj=fxWaeNa`KSE2L>;Jae7sp@8ywBs<AIBGQ9EjtWSnyyR
zUr{HH)yceJig;>Bdy-w#(}O(}$N5Cw3`HD{r+;z!HjX1y>nRo};wW3F9zG^bq9uF?
zow!xcI?m->FY9a^=V<4->>uJd!O424F-uQM<sT)U;-^5S?oX2Z%ovd5&z0$O;m*@G
zS{ui}9)6xCbb;R^D*66kz{l}h9KXlYM+^<#-hP)NUaK1*Kca{~X`Ui@3Q$({@ZVeo
zba>Uqdmjm2isLf9@ko$qSf9rKa%YR9ua1{>{1?YH?v^^TbzG0*MjUtRxJO5pj#4@*
z=(t_SxZ}QCbd;5ZytIxVW(CUV$Xn^#u-R8m$E`Zb%hKC){BKQ&LKdyt5+dHAqoR&#
zI;!iaBugvns3Hk;+$jmGEZyg;s$<W|bj7>apb~hmbqn&p6~Uq!I*2u?&^GUmn4k@{
zbg&na+B)j!XrS|#d~vUi`*hTo)$iA_=}fB!bTlm;*nhZVU9PN35%Q<HhU-bouWs|*
z|79Nkm20TOw?4%5ppHg5maPe~Yqpj{xsHgA)>6N*4!@3oj@*Ac(y)hhG|>^%5n>lQ
z=C#kO|AQ}A$0Ic02j6`&1Jr3I<t%Cw6L~tC>u4oQ^Cgy>8E7F%ShoK>byoUXN<KU$
zKK!#B+i9btt&V4OJgcLfj`lh_>v%#(R7Zi1A|1s#3UzeQ(NPD7wro>~<Ki%H5;iDw
zbkgydj>n}3Zk9eO-9<I}<ffdOU8Jv`($Q5m^`s6e(^pSRc~Sco%-*cd*?CS!cj>F=
zb##-XctPSzI$o57#<NX2v-<bG9y)sJ=q2Zu-smGqZ;5kaf{B{_boAG;R>wLW19S}3
zF;_>4jzKyG>zJftvW_7-hU$1j$7mhH=#c-4N9Y)-W4Po+pZc=C@V%mAl#bV=klE``
z`(LG_WD)Uo$yd$^R4DY1p=UOP#_M?WDgT=~#>(uti~{SjbnA+a6Lfr9DKb$ag;O}d
z^`YrH-qJBu$4~1*XQFx2xL&^SvDq0qHlFm&*3+kZ&6MFfOHL>U*la_H6EsH$qmgb@
zbi{O|7$H(k)nVu`b!eO>dR}^uwRBm1NlaK$&11B02-%WzEjW_6oUdd2-#jlNm6Mt3
zY-GNU1v=h-*1tl>LLG~^jyP*N=6vs4EOCjnoYqpZJtnBRT*twfpnn#8?_+kQj#WBl
zZ7aQ6#~MjK?&`04B0aez>$wbd9MJJ42hJ6zW4n&`b!^sA`Xk>~9q;JaA~~~fGyabh
zaqREvc#j*x_r4X!eA}ekxmPf|{FdMsyL=z$_)y0ubT~H$9XoXF((w^}wW8yZjlP|X
z{PvM~2lB?w41BEPo1;F;$=^HS+s$TA_||p}6F<|jPsiu<kB+^v?%L()>MYu?;|rMv
zFUjX9$h$1bCqJm;D;>vle5d0Om(^7NVd=WBxq}t9_(sQF=US1RkBM(}9MN&*sqp$g
z%dv%{a?-g$eXrxVj?+5mnI9OjXIrt69~rb8LMLSQq>kPD^C+)(%y&u$@uypg*!xei
zqn~AH(evkYoaZVqG0?;>Ixf)31~wY_RmX2!j|N{3g5P!gq2qo7bq)Nf<1g;O25vL(
zw~mWCu5mNhaY@Hz1_L*F9se+!9~46(|1u=3+$&r-wTej|^zw6hg&W4AxxK>`M_1h2
zFM5L^VW5n`16PsAE-q!Dw1JvugSQyypC4qJIXCwXFZ4q%e>nrU8n{w9PdOXhTN15h
z=eGPZSg~)of`Qu&+-0DefjbOTGyns48hC3^WcTS{CAKpp8uv%;y;O8m%dKpnih-&I
zvW7-HJ9qfpTq4tqNT9lb8V2q*a1U)zMNI?$8x*Z&fOSW1j2vtpEHyG(+dv%yS5F0>
zDk{F$NI!slpMgr@VE^W!Wj&(@=H|XLB=UfPdIlabkZYj6fd&Tr1_A~e8hFs)JvM%y
zfkp;?*&fL@kYnH>j#m{6PKRga1q(iiylX}Ss%WQ*mPdn)4NQMOV&sQ9TnavH;NJb=
zrUshGexqlD9ZRB*9|%6Hie?6a2BHQE41^5i8OS#fHqe|CSE==kYmwFYp}YEoi7gDA
zd$9P#py-#U!!*04G`^LAh$O8gwvpIYB6ZpsXrJLDR8eT4gMnfL!oVz5bTn|oh~9B6
zQe<F9pJ=|4J6{#ky-+6uj~bZJDSW<paH}c~tKu;OPmPK`ZlE(K>r#;E2?Jdue=;L^
z%0Sl)-*d(PtbykYOf)db!1D&W85m?>uz?p0yl9}0fxZS_GSJ;XPXoQ^?J9Xa=ubOJ
zQuo~mkzTD)lG~e>1k)i@t4H)@1N{sPFfh=-ALm2A1`7HcsP%rNd&Sm9Jomdk(O*?T
zO{+=45CcOEylUVz1H%lg=@TAqV1xmqa^z6Y=tu*v80e^pQH&N%+@lHNBbw-^iM`3l
z>jvI1FxJ301EUR$G4Q5=<0B%ko(+!I1ZVBV8~#Z~?tsC8@dnhafTM{C2EIQK9B{Gd
zy^F!|GozCYOfldXa1Bf~_);p&F)){_vLtspU41k-lM!xUhQW7#M+>#wPkTilA03^=
zFv|;`855mtfVe>uB?c4&rUA=9jC~o<7}5rsR?Xw;V85;1+&!Am4gOXiH4KpNo*3l<
zWVZ3}Xx5DO9JoyzE(ggyE>Z(a4J<Q|G>|f|(7+-C^9=ms<PL69(64IVd;<#%tV~39
z><OQk7A0BCfDebpUM^w_OStrAw11%__ZB_6+`tM0s|>6*u*Hb}eRuJ=+Qlmk{y-;4
z))-i8@SiL^*`WBz#-TEoi#R(~F9$h0>p7g!Q7*|%1~xNbOjI-30^VkL8#r%ZtATeo
z76W??yldb+10QlZ8`x%GyA0;{jr5N6k0z?b#gA(42VD3^g3SJUxz!E>I}PkM@QHz4
z20mg$#l;sl{2WWYrhcZ6>Ce}rf!Cs+ayoK~Ka;VsDj0gTS?C3c`wV<;;E;i@4eU4g
zvLPHW@Fl~nNA%p*NMYY758mX4bCAYQiGC$Fx|7%agZ?VIr+f4p1BVTqHt>^yZ@IG#
zjh-~{qk$s^o)uxHqg?(O{vBf`!;do(GW>)jXYAZ+|N2jHWBk{D&0jz)jEkSSH3dUw
z44maczQQA>#S$~OhM7xj`cC8*0~ZY3VxqK(Uk&_b;F5vM+(x)qxbqwMiz^~7?#e0N
z`cibzE0MnqT$G#4jzB?4T>N(~*r|K8W3$jd+^7v)GjN@=dENgnr+}p#)RgE|iA&?+
zvHHc2p9|h#JeaukSTOl{exg^D8_w0<;Zi1u2jilQ$*&dSHWL+0lr>S##CJm@x0<*%
zHd@}qYki}qn}=@G1+%xCxWmMqCMuh#Xo6c%lSajrOfblIycnsg3z#_LE8wE5Vxp>v
zJYDp!9ASEMbYMikXyL`8>LzNKXltUKiJB&AnaDBWGjX?xdrZ_bQQt&u6Ln0~HSvIn
zY&Z8_6O6|DO<p96`%Ls{R7`SpTZFONUl+mOi&o@@PMi)lFwxM&gC-i$t2xDw4GxSM
z5gD(G?RQ2VVml`9rH_(Zx}aM&_KP+);WyFTM81iDiHA)*Vj|b%1&>%cJle#>S1(7I
znzGrWL6ZHtXl5d4B4px6UGz>y*xJTzkvxu6i83`A7Y&<eVWPE(HYQ#$qg$&+TAFBO
zB4XmtYyK&tqT{+pxe&;=U-bWZHh5R>!0b1o?M*~YbW2x3fr&yBojF(&9cZ(O$4oqK
zqR0e4h>J}Kc2O$uPUT1^PT#5EqY|&{qJ|-u<%B+Lh-u#jv-3iIrbN4#c+$i(Cf`Jc
zr%a6P6Ygr_X%qANN68Bf!H;I*UpxIH?kRrG#OU7P{GL&I`+2JAxoq%76EB(QWumu<
z9){>nG|`h$aWNPU6z6o$8^h`Yqq*-z`k3fz;$;*4q)A^+ithV1edQ3`AAZWp^(oQ*
zCO1aW<gLIU6N61uw@|~v5EDa9d}88L6T?glH<2)rG%>=&NE0(n%rfzciBTrTo0wqY
zRTIk%@diz$4JKYUv8PJj$A<XM5X*aqwe!I-Cf;P}Pr<5cboa36SQFz+eDHFV&bMQ^
z%`OKgnwVr_8l%^Ql^>jJVv32WCN5dg#i8KFEB<bmf+Wq)1iAHHHpE*dX2=NS7R^*E
zKQ!CK922?;!^B(@B_?7Vnu$uL=xRqBm_p%%hJ(BS8#gPenTV$+RJ1VDE2vEKAkk#k
zCL9y}&joF1?e*{TKJZ8Snu3;dEUpQU4Ni(O(TtRdc_ub<`{mr3SYTq6iPa_+npi}K
zm{?(^uUi(ISjwWTz!EO8su3mz?J_g{kw@V~Q!JdDtD9maW2{l}x-Wy9O|izrS`+I{
zY%sBoQ8y&|-h#-ck&#{vi}y-nxP@-yqA>B3DPBAptT#J)!xV3u*lOZK6aO>uj)`|o
zY&Y>fm$oI&jE%l$Vw(x>w2du6$ya)`*W`3iF`Pc&pu)i^^CCM;>@@K)XL(~JJ}$b;
z#7A5Lmhg>;w6#Ruuqbz=-5m0y=&P3Ca{G)EZQ?f*znj==Vjl-(;<$;=P3$*u$i&yO
z`WGe+nE28JCt9(@$ez*nhDGkr4<6(!jEjCHadLL?H<BDRam>VF6W^NY&zeR}3XX7{
zo(=NjV7Vo_^^49(MZTk-`$Xx4<!bvMOq?)r&ct~WC%Flj_?g=sqjY%WRN6l%-7Bvk
zD{z`av&8XuE~k>g-}&K!vu65u!)j)fDbL6~X^CG<T;Mik;<_bj+JYYn0b4NYI@;n7
z+F+uLg|Zg@GVwQ8lZpShMKeTAT%luog)VbXI2Yua`iCo`S^A>Ox#Hh)!{5Ue|8lbS
z=g;pO{p6=s*G$|nk!A61P0{NnIB;%0yo@Ym;T9`>@$j~iJK7ev{a#es!m!~Hl5!Sq
zwEzouS}1SfHVb!HsA!=A{{bHox!ppbM}&l*t-SC!RV8n(EqL)<$-<g=?iyRDBO;Y8
zRIzZEg?mOuKeNS2TXZQEsA{FxAU^{Bvqd$FKUwGA?TDHdYFQX$VX%d}sc)f;g|-%I
zTc~5<VGB(x+-u=J3lCYyws60Nx)$nLsBhuHt&tXvc)-FTA8$L!^%j<9bTy#dLL&<e
zEj|VBFS_n0z9+)D`}4ax;*FAMjs>5ExfNRnEUY>oY;0ltf#A{M(Kg|bpS_1e-|h+X
z8g)x{aZ`(rfaQiP<XL#cLav2ow9^shKSe<cQysyrhI=ft%`N0xXknqH1<w(@!U<d0
z(mmSlU~sb|I{y>g?}%0wA{Hp&l}~HxE4jZ{jS$;eXm8;;3(s4KS}34rEIe+Z&_V|b
zMHY%JoN~mz;gOCOE)R~9&%GEF7M`sdd6Y#)ZYL}K{iu2>LgW=)mByjY7M`&1l!dMq
zx>$J9!oQBF<cduPgP*?}A@bww&!Lfbehxlu;Ta35@zG~3{COleIUc3ENV-{g!9p(!
zy)C?G;Ux<_EcCRHRC2pp;DxLHc7E$4!R6E2*LTI-yNh|*$xE_67W!J~Z()FimpMjP
z3|0IOUksA;lUb^D2owyYNv?RladE?qk^Up2Lo5unU|O&kffj~am~3H+g%K7;S{Q9%
zjD=S$jIwyBd;8a|^ydz*MqZ_|D_-MNy6FwG+t}zVGx~;w#jY6MJNl-Dv7A{86R1Bp
zVmrC~QZUW}R|Lt#^yiM4B%2!XXjl&vY;y&d&r}Q3*r0_H3)3yUWnq?u*^I#EK{h_a
z!b}V43rj7RsdQHByZ$K3`YFs$@HujH2VJ39h*>!A3d4eGLE{p>rL}J1^?~U<JZ^!T
zJVTMlG`3RfYTF}r)jZpRV_}(v<rZ9qkcEX77FkGGSX<AZvM`UHx4_RMUSIJ_vS%vv
z^It{tEtK=b0*mieY0vb(O05@L;5K!=Z*&P4QK{Cv@DAOGEVaOR?hp*E;Ci>P-oge(
zzJ=B7w0USPmo3+qCkoBnPpl{}Aqw7)tYa{HV#tk1-%ya385=EZvap$<;tBq+u*JgX
zO71!*_ic7(<*pqcsM9>e?7J4;<Lo;a;9#4D?d;b^4;$}u;nRmU?z8bBWA*RsqeLz)
z3p*_Clh|e93kwIhM_KsT!d?se7-O6)#_i;sPc58YoAb)1tcTX-kWlg&cYv8WdnA7S
zZO-T1D<<ZYUzxMt!o_<lO^f9u@*4lwy3&^x4q7;D;adyh6aQBhl-W6lq%yN#%f?B*
zk)>?*2rorEvAHB?%d+%;7Hso73*TG3D!^q6$9eOQg|iF*3n#4f|It5k^)Vzoanj;L
z*@BYOoGDNIBulq?f`4%TEcqFUpL=PY^A>)waKXZ_Qn)4@IV<JASty+lzgzf2k~#^I
zn-G6Woxdcq;@^^7wD4#m{eL>~9}8D3RI^dt#=jP>a_hEH-o}3n82(3Qr|}x2&cY2T
z$&wNZ^_gK}DI2$BB&8*}zg`yqq$n$SIU57ow5Qr_G7B4bN>ahbz^1|5CBH*rMTwPc
ztnmk_Us-0W*r+NA>SZyton7fJnWchKsc{WE{RbseZ7Hm2qn0F;+%3sH68j}Y9Xow0
z?}V*UR=i)<>S$w1wy&;@2W-@{QQt;08$lZlY&5jd)W+n0oAD;k2W>R6`7=fOT}V?B
zBHKm|ITc0(d{RhxV;f5o>DL?ir6iD%KWt<EJ6V)Bs}Z99BT`=Fxlpc+I(0)NAscy8
z*xE*ONqThg_vjpEm3$lFOgk+kX=$TXMiQ~{@ZogJZ8DO!lC+c9USd>Yfy6?I9d61G
zXBF8fwjpeEvhjqCE^MvH_o&3jY|M;hG0Q*29=FliPXB|}X-_^SPfFg^#?w;sDT(3k
z;u#yy+IZeZHyfwF4w`rSnVz%3KlqqluyOK0){8b?l7y`>yEEWt5!HIy=w;($8@p}v
zw$aB%e+G<={2KngHqUZT6Q-9*a{b-jDBSGkGCR=5AR7~HOrn?a{DW=0YU4E<Lu?GS
zF)UN-6&u5CjIc4%M%i6qrW$$vaZ?LPMoFC+Y%SOSx@@G@KNZK?c*DkM8)Ky8O^Iy(
zT%Ua3SHb=zg&!ouI2+?_Ot3M1V&TDrVCmU}n9NwRv4mk@W2%j5Hs;uv%h-#ArrUVS
z#tg~Z*YMA@5f~JhC5N-QzkkH=@NAkrrm*9$K_Xi#v7y+A*;w2+Z_}R@RR&~VziY#@
zq1lMr&~2RQ?YAWwHs4p9&Q|N=Ct5ac^Kwa;oQy((UE911Q7qz$PKcC^DoL@x#ypvw
zFOl+N>%$9eBszy0CB+G~aIy4{+Bg5MF@?))Ea$4UvDU^48?Uztt+cVq#xs5M$fu4i
zT+LCBE!_2b;fM)^&fgW+*;sF5qm4~AUP$uc)<WV2_B*NY>V@ED8(X-C)5%HkwhdbT
zj*WM1Y?a1ya({Dk-;<?Oc;Ci0$+t_SGKC*xO7*1ppN$=Iq&sbVWaH3<AjiH-HcPTL
zDfV7#^@)v7xy&8ZbMTpsJvOe{xNc*wjeR!G+xW%C=Qj4+_|C@nHomZNfKA!>+D3)J
zfte%2U()k^{GTSpK{k~XU&-mCso%&5Ic(!w8$Tumm5)e5epHfcNpVb)>M60u%RO%6
z2U=_6tc?>~4zl`B+;#i;f8^TX-jWhiW)_~Z5t>~{!gy$(5~ch3e`bU$=`7PFxAZw1
zk%0jwhR_8YzuLHH<C2ZG&HcaG_`}AZHh!0l-_j>t<++sj%f{bazbUaY&#%tSBB8ub
zfB$8hhjSMG%ca-f|BsE*GYYTRV4x05iK~na*~nWd;Y$4*HnJR4b#Rx1QVwo$aJz#$
z9F%rY#=&h4*0;zj>!6&2TOE8erSRJgVfu}Wj-9f*@(#!;r&<LEo&TvwQqe&r2X{L7
z=|T_=*e^Ao*che_pZ{Hvyt0ET4mPIJ?)@|+syV3cptgfLPI`<r91PhNuH~SngQ16l
z$5VoMw}X3}^v*DCOyT4WVTN?ieE)ALaj%2>ob;UD@1U+!;HX(tcAls`Pt<qNz(HFF
z?Hn|8@SuZc4uTFEIe5rHz`?@~vK{2eVK#QsJ5uWv0iw^r>;3&Cewx%ORDMKwX&?X0
z(S=PMaDnGKcx0YvN|c10n$#(pCqfSL97G)a90@gNgASg5v+!b%P}o5W$y-Tm>41qv
zOamSXUH+pYNoxl^=ZQ8F>Et)&iS`bn4xV=KjDrFPh4iq4CmeKe(9yx84j!YOtwKc(
z{u&YP<e->t@9P&5m3d<EJV7~;iCLz{Wf6s49BiH^23)TA6kEPn@ks|84h7vqL1I_V
z&ZNSohl0;Kc+Nq02R&%2^esLAqJwS@{vHr`L1KqKdE}gzmmJjJpGDHsK`#e=9lY$I
zw}U<N#Fjy61(H4-TE2gQo7>O9$$4VU%)&{N3b*$2lMi$-$U!R)5szP{FoZq2=;mT5
z<Hx}Y2P+*6r}G`W<zR+`kq%yQ(l?Dvb1=%mtDMJ*zR^<h8hzs64F}`D&pXgEz;tDv
z;QOlh+9~RfVW`g+Z#oz&$v6j{&gG4lobm~hOq4ju!DLCMNSrG1IDAx_E<0jtpL~=x
z)4?nUj+D%HFvo%FKyxtHL27ll!~tJ=)uXzv_T4^(ykm$dCJA2$Hho`3zFCaz#2x4k
z_%brXf$6}K3bt&M_OlA#BR1>-pX>08BoYpi4wg9ZRrbxU=1VzP;9#MHc@D1k49s`Z
z?@D9(wXV-MUo3L)F?>z$^DSn~%ohWz_y)`uOC2n8uw3@IQ-t^eGTQLRi;-0hRy!!~
z;x-p+XoG|A9DMI!9T$j$kJuFBge%v<hYtSdU=yQ=7xs0Fw>#M4;B5!*I(Uz(?7_%Z
zC;br6I})2#h>UJuOyM?}ZN95Li<l*Ow0`7$2Olt)>qnUQFw_nQQ|1e%T~fGHBD0I;
zix1|D-SmlrFC83o@F_Qc2cJ9G&oJXk+1;McPwiuC^Tl2Vhvy4Q`1sOal2G`Cg98rO
z>B*1VS6U#5UpYAB;E02x4!-98=HOd~@d9x;qsGUtsKzQS76>BESX&`-jO%Vo_{o})
z5ziDJckqLQOAanOIKilPaNfZ$4t{j_^&DrpS{Dc^b7-fzAIh=(?BI-pE_Kr5rFlc|
zi;xdlAkHzc7l;K5#03Yxaz%4}Ie4GOED*nO7jkfMf%wD0pR)Hm7YY{fF)lW~uD<`G
z1CE`ITxu90p>6*-xZxnn#TELTTiil%)xm!bt~p?7$A#j$B;@Zmh`doDU8R(ZTU?ZJ
zQPxejR@zO^EXPQGlQd`<F6V--yVb?GhLJr^9wilA-0mXiBIM!@7ZqLH>*7ADxqyqR
zF79&CXQAL=?{rbw#pzw`$1UU`MWTvqYRN)T%|&$=ce}X9MGZGSK{Z|MSSVOTomwuo
zJy3j%*`4jD)QQw~QO8aD|I)&=W0^KR9J=2{T^D{A0T&OrsOREA7mZwST=iWvbTPY4
zF$dVdO~)h_3C3QdMS?=|hg|-Zz!N;vIzAVTC274#bXz2{>PJQ`63Qa+u!|<L(_CqD
zQ#T!Kk4S#g1~y0+HIq7gb}x^kaPhc{Z(A4Vy9m1|a8c-@g^QLhTDxfDqLqt?3p$XI
z$uL;5NYJG1iv%6s)<t`E;i8?3Zx)HI9n;3saypHPq=So&E;_k*)CD7f6IA4aEfh->
z5-FsFaeK8=@nbH2UnH<N%{#kzf<s;`y13}-;%S$^x}e=+LCI56jlA_o?VpjxKkMS9
z#e$=FPG(Qki;%zI;zbu<(>9j6=<Z^bi`6cAxajFZaS?OT%SCS&!(EKv?7QgeqMwWY
z9CfQK-UIovi&-~v-aZi_H!lQ<OaojDq>ki+Tnx_eA(9N0ILyUSS!<+=S6sa2;&m7M
zZsd%TrLRgHDZ3c8Sg@%#T#R=y!Nq9CMwV}kRCrS&OUE*dC9kcdt(xd!l8X`-<+6Ot
zPL@S)xtNmCpXy?o<kSC8tr?lpnH*Gx&vr3K^0^tw<E^sT?6k!~b)mUf#3kk;?m~Bw
zkUB=DU(bapC03@c?ZT1V%}8dIWVOF7RH2lQB<Uh0<?|%Ym$*RULW%!Khb(ci)Wvca
zD_kC>l69dZi*vDz{(LfzgQaaNr7|1rCiU02SnJ|b7oWLU=VCpVp^NP<Hn`a6;%ygO
zU2Kw7wqz{d%=O+P%+{t~2)<U5#VLM=tDsfZqE=b&O3nAU9ZBDIXyt$3#Ro2Sy4Xd(
zm1KSB;(spwxRDc)z3<4hS$2Avk6e5#t52O*dbf*DSTW*fFHdIqIQ6V@B`dne#a<U*
zx;V&qaPhf|12Ql;QZ~Nd#TSegIb>E$n{-=<L;gxOdq|?USa9I^viHM`b{GG-xaQ&r
zUBq=k+gu!T@tupaF3!35o_oR*{^Krwkc3~}Pw+!?u{gv1r*eozCtds~i^xw&a$4d~
zE`H9)cQq|w>Bo!3c`5ldBmYH`3lcBC9QciUsYq*PHN5pt7k|0wUm>oz_?u){fKQ}e
zq8W?DMQ$4YqHCKXmtFj`Sfms8hb3w9FPHohag~elhw%OHhxwz#br&~WRP#{XLzah9
z9x8hn6)yO_NfA4`#Y41rfTXmS9%dO2Wj+3`nC7=itRS(x#M?YZNcyeNx63Ta9UdxX
zcqI?W@H;(-CF$Q)s>r^odKj=o+$E7@=ok4lJk<2~!z1qJrC_k2mWO*~-Mc;9<6+7Y
zQQO1Pe(mc>{_31?a*3c?i|U~UO^fPE%{++@c&H~yeTmr~8hCg|cHPj!gHqT?B8_=S
zlIY>A91lLp8+$lFWe<Lt4P-PQmgM_=Sxuz^bsmu<*F!T&f*E<p1Ah*pLURwvQ=$A!
z3t^8xqNd%*)Y8K_X;NzsZ9Lqaz&#1H_0Z144i7s$wC5~%nBZZehXN0U9(s7_>7j#%
zjvl&rc+x`=r)Hr4Q4fzvQY=w;=p+e?Y8FR%1NP${p78K^iw@gI`a65Lv_w!?p=^ih
zle3@l(A7gX4=;Fl+CznY!Dl=?>*3<vr9YgNy`fF;Id=MF@Ocksrsj=tB4uV|=XAo0
z9$xamMh?Ch?9M4(DyY+Nsd#X4HhC`(y*-Td@QQ~%9{PHS^$!k~?Yu1cKo4z~ihdsY
zbN1PC%jj1FI-I_%!?R1pAdkQHXAeDD_~PX3As&W$7)FVQ6P@tKP=ABj*}a3&5gt;*
z{8V7J)BnPwJcNe%$9Q<v!)qSSPVm3(;SCR?C0|;E!AkaMHT&4K4kMO|H$9A%HqdyE
zZk&fl_7;t&d#@HA{j6w`hshq6Fw7WZ9;SLQJy;&5dAzFuF%PPTw>->{Ezg!7nCW5Q
zFh5;Ai<9zNUVNz_&haqULy1&SJh(&rYnF;_W5TqSW)n3j)a78~9tL@ZzusDCcsvy|
zdv_?0XnSxx%=eHpE8F$pamcbX;qexc?1}3-Bt6tAUr16j6s5-~oG0gqK3U*lp@&5>
z2G|!zO0~tZ`rrzA%RDUSa`5o3hZP=HdRXsagNIcfR&y;&n>qCho{Qwa>0jevEj_7b
zf3#E({l2t48$E3D@bwV?Ru7v!Y+)SU8KskH#@k$Lv(rTRxR7{3fC2L!zt$<)+daJR
zVVj3fU-L8lH^TpcheKV0A9`54Dw_)Ar(W~_&%?2$qTQ|0T^>I2@G}SH;bRZGJsk0H
z)Waui!NWd=R&{^t<E=jPu$OUrXOMgk#}Wzty;MB&dE~M3w|*{l_DlSNYg3XhX}Kf^
zC4MFGkVH0Eewp|t!w*aHEsd1qn1}BqIpyJd563<H=)w4^xb8CX1LM=fubtC(??<P#
zKgkUN!F{)fD4{~_c41~ud-#dF!7ZUa<<s)BvZ=p3{LOv9!+8(Cc(~x<PY=zPiC<-F
zzj^qbGZhI_pNSn2|Byx0IilqgFM8;_Oq5FCmIN+&xa{E{4_7=~^Kjk6zYLq7TODm3
z{?Efz$vYeQl+ex}ONVZ7^G~E*SEEvpl77oXw->{w4~0u7P$q%95_q;!uxtY561Y8q
zI}*4xksf3D1RC65`rqTN$Zt!eXJPU(Q9%-VzG4EE5~!R&l?0H0xlG(Ci`Fa?4O)e%
zT=DDhN6Q3B)dXhW2r_N19ITc=^#p1p@aV0fnhDfOVACxjw_@6=o)g-ao7$dgwG*h5
zK;s1biS&=y_e#u8;JyUzm%OgT2NF2GOz^kpdI{90sZ#i00*xeTm_VuJg4G{NfSlx*
zQ;~S>&Oi>Wz1#1T$X~N53?%Sy0*4a#I)Nq$G)-Ve0y7hMB!S!no=o7W1ezrfOrTW)
z5e|8|2qn-wk^Z8QC$p4nyC;$_B@~7eXp!M9srg}P3R@@8h69)Kwi4SV&_02i$8=C3
znm|#eRzU)V8QwvXj-0G^#Z+S|PC!Uur;JXSv*`mm9!ucyjHGh{Pe|THV$sgD4P6s>
zI)PUb7?r>?oc9F!%hKl(cwUm;33QXByF^xbA%Pb&{H4rTdSoO$CFv!x{?BO}`bge4
zftNEn{Uph|P;P)E10@bhU~mFM5*RA8BP0%!I9#GGN3{EFrI9jA!p2`s;I#zCCNM5z
z35Bn7rs_uCNMN+o93$~fi7ah(JY8{o0#h=Q36e}qV3H)0C6>NWj%rL(6PT9KoG!^*
z5>H*IG>eg(z^(*7N?=X`a}!vXz<OC)!f;B!l3Yn3mVhd`CQ(lyF3C+}*oz^v3=BH~
zCxI0*>n7kOupohjGMh*sB?<MD8GZ733CvGm<&m_(#6_}bsl>$@{U!fLe^~;{W%gza
zq-!OxN=jBsTqAL<#O&qi@19H>WOi!;8ztE!akIoN5~=gHBsVR2CxLepcuz{UN!*dZ
z_5|LS{DTDkCkbnP$k@*GLb5X>zqw34mf3?`3p-2iPT-RSK26{=DcqmY+>^lG4Bsco
z=LvL|ZGIuM2QsB!O49s7rIrDFmB9W7BO@-9`zC?I-0PCKBZ+SlIFi5x?sy3t&D1)P
zz%j|c%SgVL<haBiGR{Alz>iXLDuJ^J@OPxsGW(OnpCz7=$We1R=Q8}fB)>@HsDDe~
z_XMtIO8<~eT~6T7jO4Eb{+9e=Msn%@#Q#4DT)8RFlwOtOKZ(~Q`l>~4NRpLAsbqTN
zx+RHnl9ZN6Ntq<dO3qMcmg!cREuX|~8J!AAOp<=Cm_(&yddO{(KoWN*(J+Yzlc+2;
zYa~%qk}645&D6b1l4?m*&q&6cPj^%+iMkod-AUY&MC~N%NXdN}`MpWpTs!w?B)!h0
z>pqY~y^N%O5)CB38IX;Vcqob7B$`QKb`k+eawPgBvW3Qy_$A(4AP*<eBvaZ{l1C&m
za)KFoSdvf@c^OG_N%DDYh}>yg$ZSiAtt3Vyw&q~vRzqwnCA6Vk674fQnnXc{7fRA0
ziAHi0D^5ai6f5xX3Uo^1(Igfu#=^yTEQ!aHXt@Bb7NBzyPbBg5JUlZGU6Oc`@)TO7
z@Kh3AlYH<Whgq7$Gf7NNVoEao>-w`v^hu(x<j+ZbUShW-{|7|>b>SD2_~P@9FG=h!
zk=Y)S^px03VsDA&a`AE!{gN1+<bQ?epTvM9h9@y1iGfKBN@7S7Lz5URyZB+bxUyWV
zT`oRdE}HfX(3oLK_^SJus;v+slXxYGSCe=x$svo;^9qVqh*3%OS|P@*5E~l!UQgnU
zB;wV5<oXIhQs#Ewn@NmilqSJnyvHRGYMwVCi3@+WTD3xqPvXU|3U;gzOcOa%xBK3n
z7y5RExKz_OHHm3SEKOor64R4-D+xUbBZ(PF%uJ#r2_=bHoV&Wd*-6YvqI@+UfAgQ4
z#M?D|Ol<15zgum-#}`XNrAbNfC-=jnv;J5is_v<%B|*YLQCPc*@3xh~Ou|jVOTuEC
zD}|keljLJc1^Fw*Q!B;Lm15x9f&?A4QY2}>O0i(2NF}j-rKqyEU|tf$`4SgMTqto-
z5{o5a=@LnftQ5<WSdqkMN$g2tWfH5B*qX#UNj?~hzgCJhNvutRf12<>#C2TAt3>Vd
z#hiupa&|~INU~AlCW)IRZsEWsp-ymN!MjPk$83^+v+}0&f(O>-eNo%DEs2~}V!Oom
zC4P{^he`Y|i5)Wgk;I)6cS*een*vt(SaOox41foHBpuJRI=d>|vZ1f-Dn9yweMuZh
z;>#pHPhvl#E{Pt=g6CEVYI4%;!VuGlg3v*_uCDJ;5??3r6=!foF%$oz$!irDwMv{?
zU%&>xP2vc5trV)Ha5RZyN&KC}Ma~5e|4HIBos-0IZX-2(KPGW1i64?Uk;L3p>1T2&
zJekC^@GV~@K3XMST3O6LgZN+1&q<s~;(QXnBtgfXP2wDT8Q7TrPceI?lJC1!;zAO?
zGAfezGl}1lc&Va~6@TY?UnOY#xs3(<Gl&*eUoE;;^ZmsgNs>!RT;{%=!mTO%Lsutp
zJ&7BvmBiH~t|d{rN;(=#EiWMcmqf?aqWfyWVN#xzLa7wWrts5h!5P0Lh0-aMN#V`a
z!jh5=68Ei68}Rzxg7PWcmO{l8DiQDWRY>9X6z)jj`f9;pevv4su}0Jw-k1*euMtn*
z<wFX0rckg(ys$>xx2~YU`u0^*xGRN+QpirBS_;)ucp!y(Dbz@zW(svuxHpB@*N9pv
z+>^rYHRA3R)HQ->-5OCl1$uz##2Rsx4W>Zv-OmQs3jbO`UN?o}wPND>g8C^mNMYmJ
z^!jR;!h<O^O2Jwy7@7TB2KufQ6V{5N&k7b*@#Uo8OW~0ea#QKG|Jhp6I0b(SffOE2
zp(!0w#doQi@8pt#CaLuQdV}usy&VWKl25D^&198e3ZWGKTPwDy!Mqfjrw~rzz0Czw
zW(4M^Q0@VrI;?Saai|5yyG}G+m)@x&DYQ=Ej}-n)p-l>HQ<#zBOSRB0h4v}DlESF}
zN7HpcNl`RmGAQ8#C1*jB?j1_Hg;P!i2jTiu5Hm;+R8U0BV9pUlB&py|*qPZ$OU^mx
zoO70(C8z)E{vYqnt5;Lg)1gvVSNH5D@HknQ;6^`QPM}Q!Pb83+z>^8IWxE_{0)mvW
za!?&=#*7gf`&PZ4)TOO6wXJu@o=V__1YS&Fn6EvZK>GyV7%Ms`NaPuXbmS~>oAR7O
zo>!2rX624-y-e)$v4Xpeof7Dr;D$c>DY?Irz>P5edIDY4?Y|4Ou2i7~S~mr|EBLB{
zJrd}t5I%iPA%&~Onvd1qNT62&BgTr}3KDrUfwykseG+*4Hr`hu1s=$HH-XVs+u5_?
z?~z@p?7F36#U5$Kv45DrM+tnMz!%h<1o|i7myUg!z<>nCj1`}dlZdrjpS!LyPl(Cc
zgik+9VEZSnmyQ)*Ch%1P-zM-~0$(R^^{tF=5+LjLE3V!gE57x!tBw=jC-6f8KPE6W
z%x*qTGJIjhSch@a-hWBp*92xKFeib52@Fc$AL>a0za=m@fxi;?n<E`3s0qI(@clT!
z%7>^X{zzb`LP!~=kl`HZZOX_5{=ALr<HRUFDiIr<z^QR!#yGKQoG3V6>b9PMk-&87
zTLRo`HWLUE2&vNLV^%`W<4FZ=1sw%l1yc!l3Xu#+$eD{s_3<K7MB`%1G_`uX7^C3W
z1jZ?3d;*gd!bcMln0OnXq!2oJ(x)hVY68;~(!O$x#HYrKUgO2g1ZI)X<Aof{ctM+*
zo4~vTHYKn*f%yq6NMKC@YZF+Qz#^)BnS!fX&v-GbcLp8QVmgG|eO{WtvfKD_g{(+m
zr9xKSroYu7_VgHS(|EBif%OS&NMNHf;j`n#9TUX52C-xHW11oD^xg?#3%Q-Zt^{@`
zu#M_L&!50fdVm_ShbKsh(@XcP7Ne7-pW!X9Jqa91fOGd=)gphBVP69K`R-tGK*56w
z9#W9Re-k)-8-HnnV2p7zfe$B$V+tNu@I(S96+-%{1WqgbjDo{-jl}Z_{Fgut9W`}a
zNZ=y9w~it@IN@HR7ouTOAt#8-30$E*CvYtRYl7G?L3CcJak`v6LEKE>7TubT<+Wod
z6U(QAFu#JQCWrzGA*J|4QAh`^tj0v?+l%TbrlYKmaystNaVLxED6ONojuJX@CyG)!
z&onk{G*Oh)u^=6%X?$KW)_tPjqcS=^oha_oakoO&jMeB;UbZ!ADcMNLme)~HM<rcO
zLltxs>YYJ}SJqKQM|DM9)HkC`_sps~s_An2=H&Hox!ACYV(dieo$k?5OUI)+9@9}<
z$Gtil={%@|I_$rW`*hr|gNGdI>3A(KtAURCIue%FW4X4YU&e}wQn)c489E-&@t}@O
zT~2M+CW?kS4)@A9I8prbcE%kST9Qa6mz^Xoy(^mNXsRPy$3x`2jw~H5bbLKY#97HC
z(VR_m%F3N2&Q8%dgZG>y6@Jtt@vsg?AQL8umI~qU$)y|}kLbAcW(M0@JxR3E(OSoo
zI-Vk{tH&PKaXmMyoeoV$8y!z@Ae%Jyq^*vEW3=rnb2%>`pCod12pxIUgvp}qI~jbX
z`eY%(c(cjkX~z6~G+DG~S0{@OIvQ+h!T4cYD!ZeOXGyFadrlR2Ih9MCU3yW+OO&R8
z90M=w=%iyAwM9o~9k1vZspC%_U37HSF+j&BI=bmRza)>lysP6?9X)jP($QN-PcmG`
z8#=!2ol!rjy{_}C9BmI`#1B}KGi36cI^NRJSI0YQynS@Mt>eeZ+NBjG8I^UPEV<oJ
z$7hpeK+b{xIa$zb-_!BFjt_KjYW_&)e`VrBGN(>#!esHrxa`kL#a2%i{dI7DKQdV?
z4db7(23D)%Cmo;b_(I1w?3IqeoeO?R!6_Z%iJGsd2BvnsRTevte~S1{$M?F73VzVh
zq*UzV4O+D+Qd^o%5o_19{aME^I)2wNM8~hxd66|p$8S0Y(j2CU9#h2UQv}CIzcFeG
zk6`h8?S@qBKXe(i3|Hlc>KLYsrP!YhCryz7%m_taH$||vzjXYqW4w+Dd_~7-9i9$f
z$3N6w9TrEYLsz;=S7zuqIz`Z;P3pi@v8Q6ptQzb7QSRy98MY2bhfAAno0XykO%*Ly
zwI$9_zu8p5Q3pCA9cl6tv5;~csRey9+D{c@bd1%px_iSRE45xzMYGM?II^)+jN#Kn
zou|k!L&r=VlXXndF-?~<)Kp!D`s5fbg=7C_s+g`^6U~_>JWI!H9gA5>iP#(+b9Kz;
zcy-LvL4Hn|D!KaiR2hga)UjczSftA-?8H=2F{QP8A*bochD%6M5}7|tD>6;8cZH6X
zI*J-7W?&V2tK$%*sbdZ6)UiXyP95uXtXEBJQ59~W9_kp{Cu5_IKe}h;Z<X~!<rtC8
zI_|0+BQv+^*rsE<dWC~xuXy#V8{4I0x6T7>IG|&Xj=glk(*!4oeX1mtlNvH|Y&M-I
zqm)YLi}0<3>QS?4;;@b*Ixdqxl$4HRI?m9RbsX1mLdPi`r<K!S>x^$t(&B1s#A(`>
zM{0S~gp<zhHBFq;abCxNN(!v}0`;G+gUT>Xs^yQ<1e+e^<<6ZZXSb_5uIb2cpn!qv
zI&P2;4PyBWRH+ubNo^!&rU~M&)`{)?su^)UrOp&IP{=@u>7s~%^V5WWPmJ+WVFMIj
z1$A1i)^u@)fjbS<F;Le)aTYdE&OmtsB@L7^aF-!90R|W&^`0(D8)!aVbet~A7~n0v
z9R2^@2H0*{17A-Uqo<337g|;@P|-kj12qg(GEmu&QCw96T*cpbHjA%RF=X^bgt}DC
z03m&5O#}BBxYv+Nh6&R}Ed#X;9GWgxOczbZNIyyZ+H_HVhNx$tzJUh}JZPYSf%^<}
zogp#}+;1ReAj3f08G?y|j2VI#^^N>o+bg4?fsba09SLpV4AICyV*||$WEp5;ps9hM
z|0+mE*)s&aI@iegkLSiYSOX6kc-TM-L+W|9f-`5xV!Rz2#y8IpJl97f`m|c?5d)7J
z*lu8lfyWHAGVqImUk$W2@VJ3@4D>Ug8E8X4Y@m~YC)iH|&lz~$Ksy7u209ve){s$(
zP_RdvtUQH0sUYc3DdcGd+bh^X!DkGtd$=JBQ2Em(V+{2>rn7nbf`JzeykwxvD(&1T
z?d%LeHgY;EF;jFl@QQ&q4ZLNb3mIsj7iDTlQ@VGi=*F?k6x|hkRlyz#_EhjS1zF&A
zg}h;4W{ntcCs|t6igGDR?doITZ3BHd(wXA9N3)oDAWW{3vf$kGu7URq9udTM2HrRD
z0YyW(8~AXh7&udWNYPY|IWwgp%$+IvQ?(3yV_*PzJ5yYoDLygqsR1IqK2yl&2EMpW
z`BEWYDM<fQdX}g^OU$|__Dzi#mHB%EKN$GYz=?}3=~RbyE|@b*{6qzy9@dH-ny0-m
zOQfb|4Ky&wz+?kc4E$zbumQ_J(!lQqh8XzAK*GQu?C>lx%D`yyjY2FQ8^!{&#Bc?P
zj8Mo(1Ai*yuiNy$4HT^(V*w5@m?g%VZJSTlbOQzzewHvPh)vqUS%Pk})g0}{EHS=;
zW*cw}j5RQhdai3O4YqWQeyqZ5kuu;JGRecsHxMX1R4`I7t>7318_kwJdAxxM1|}Mq
z#BR?P-Dis+of|FJe%2at6eAstK6$EvX$CeJ*l1w7ff)wY(*IP5%_O4?EH<#jK>yid
z=xj0DKzcS0c1p-=u7P>C@%ai_KnHT0vWWGpY0F{@XG=H5NMosiowLO<1Irace1$?*
zD!9tP>f7`+20kyOvA{Y5>*>>G3$Db?axwO5lL5>Tn+<F+aQf|x26Mz#n&BL=%>W}4
z4vN7Qr{+})w4DZa87OO_oQd5A_87Qg;HrVW2KE^^PQ@^=-@pONf*dnY?Y<Zf*)sY)
zXrTSR?6%Xj!z|n?>xhA)O6V`m5u6l0m?PMYW2!vo+%FbrC)q;-{~0*NE>Q>CWSuc^
z*1$O$#Yl|>1}v3st)P+hZrK>4sS5@!(N)e7o{@EtCV6jc@Eqx9E-SZF>+aY!I)7@8
ziDD*h7`SQRmVtbx3~@QLELPpfZ=!&SLM95EGC<`I(CwWg3Yu6yvLTW0s>F(zXfRhW
zin}sLV6M2s#GNL}n7GSCaT6s>eDrh<Sf>dlA6}fx!-{A<S0;kU`S<6F(k6}#Zb$?F
znJep3vAa!d{jcSqxq>(+tnwx*n7H3W%tS>Kl}y}YqLzuuCaRdIVWOsqswVuoqMC{7
zCg?)@w3G|^p4}TVL~KzrM$UXwCRX3jmdq8kO&pvn>YAu$@<1=@m@<T5Omb_kpxRWK
zC+eHHk8PESaik3tLSmzNg40cgiA)nsOf)r-H%~M)@t}!D3V%Ss$zFEvd4f@8V-qjG
zo59fN*SfK0CbCSlFhQ%NnZ!*rH^F)8&S$d<J(`b`An|My3|}8IF{xCHhrNr}jpdkl
z#Ka#KhFbhHUp!`FvWY1sT9I`ox|rx{;&Bt2>i<h7zMUu9un#7lRQMAn+L~x*V)Q(b
zt0=<6g}K@{t#VkB9eauu&J#~F`LB>Rk7so-@r;S*O*t!(R~=0}YvMT*qb6uv1#g)r
z6`uTTG@{`PCSEjgW}YZ9U+Plr`Ql|0olF@YGTv@EUv#EAm5aT?V)MnD^F=ok-AxQM
zG04QLCVEgGOnhvjr-|37QS4{&*y|?VF!7d&J|=pZ_<FwRZQ@OKZ(sKIa<S3##nky?
z<9s>SyltYdiGFNif#B0K^Tj(R!}Tokjqu(D;*ka7JrnP<KWZ!=ni%j{KK8Rvl^A8s
zr48}^d}QKtRbT*>r*!NS6Q3%CI6oQq!o-&*elYQ)iLclnlm9D?dlqZt#y8|A)u2?2
z_{$3fkL$lONBeMr_+AyrtrX++lZl^A{9=Lu5<?O4?N<|n7YOP(@nz*>zwy?DVZv0y
z|J}rJ6C+Fvq0mhXH8G6hZkRQ1fn3*+1O5WR7e|`dvq1b!p_uqniRLew?J^njY}Q+h
zHt~<iFh<K*C@w7!2@{OobrZyi)al>)u7$!fku))eW@5rN;g|?H(uJbaD$O;~Y-LHG
zqZp~BOuYSCjz=w8D2Vi0C;}x5A`ypnPmEWZeOM?H#p6tjR|-Fgf}WVeb;<-&&K(ok
z&_b#6`a-Q);YVo^Q%y{x$yjJ?VY-PKCeEAq&%{g<vrKF^vBTuacFZxc%EW3Db4|=M
zv4l!)V!j&hLKBNjEKoQTrxd|rg;PcMFBGd63axr<nTh4>WUq`BCax|N<rayCi^Trj
zSuDI#6{dZyF|pRfCKH=YtfMQVr>Yy<s37%cgDLa6yy&2qCTdVSwuLUPc5Iu8Zi{&E
z9#1S13@4b(AFxP}veU#aIx!Q+>HjGs4&TIK6MIeUGqK;q0Sa`HXu7s7m)_(4(GJoZ
z^vPh0huDV^8W+68Dc>WM&RudR>!>N$^~BSQ#L`9L1Vv+Mr&-S;agsVSN#k{j>>VkQ
zGbYYbd#lB6EE4BTlwB<PZ_zf^j9s8tF;U(^1q+u<TsBeELNN<h$QBc~Oysk0jSW$m
zE5vTn`f9{(nCRb5diXC>8bkWb#WI}8Z=ryNLKX^JC}>IlFyY>qwpiN!3-x2&*xX|A
z$6`^$lD;%rEbg#yr^WN<C}W|xg(Ztc2@54HFr~A9u_$FREug_d#U<j#V!1;{gl_OI
z3wK*6$NEdfnk<q2wycGAOGM8la*hAx5<z-J3zaO?u~64SWeZg-)U<Gqg{qcZyi~X3
z%3|aaQO&|ro8|hbhJ_l-G)}BN|I%t%U`~U{%-UqaJ+TQ(WF&vDg;h&rJYUa3eG3^D
zGA(H}4J>{cftZE+2+PEdFA<N9)Cw+@%3NisXuMS9EfujSPLJ2n!UGl_RAXlrqUtEE
z=TgzcLQ@OfExc+`aLBTdXW>Z;aSP4q&n-M=p@oGnmWqcgJj`Jhk7ZjJy;Stvp0B04
z&9U%^1#THkT`D##6~~uK_giF{Xl0?bg|;kXfv)&*3vDdW;oP%KXk<cVnSOl2;?JIF
zEtZLAmkH^P$oY3OgoVLNv~JTi?oDu>eagbq7M{28f`z`zM0*PzEm+G$2Mf>e_1+mj
zEEC+4W22PvvljT)bCxvfoG|-E3olvdY~dBwOhaBKqm<>3<s;I`!lq?%5y!}+i-m5~
zglDt5S~#&x6j?6VVHy+*_ptcs2R^azsfE`pyl&xr3m;f`!$L0${Vcp|p|>SdMsHep
zi$Yv3cTf6Qc$>Yo@D5o@O5NB~%SEr{g8O~MzgsR0MP!G0y=Tb<=EJpOGnR`FEqr9*
zV`^hvdCO}1TR6L1Fj+Ui0zE_FboQp@;xh}MQ~DMLQZyF6wD7Hk@7Sej;wuYZTL>1F
zq`TwoH&nUGGD0Y^LVR!G2Ma%2XthGrUm<?9uwzNdpQuhNq{vonZcz>~KKg}BTOo+B
zp+S^|h5Tk)uBU#ZGMA3cE*tyZf|#ZaVIL~S_=rA#n1$gM<|HvUi4hh?QZz|)OyW-q
ze_1$Au3Grp!YB(9Eli^RSop_6%7SMxfeGD0(t>TluwYUfE5s}dbMKDzTOp0Qs;70>
zq;U@})+ghq75t_Ku7$L#=_|y^#yK-q2%qDn2rP`X5L$@%l)BfW6zkc#LVSEIetv~0
zu~O7qDaKhCZ()Km0oKg5Hesukg4-qCR*K0MrjREVc3PNfVVZ?S78X-&SaYS=3@W*W
z@{?K{Ph|0SmW3CO#&`Xt5ueSmt1@#HBxRmL<}0{>@>R(HUtGf0EiALJT-DHBRXAX!
zSV3DujMoMWD;2&<!PU3vYpC0|@pTGWZ{g6r@)cei6=joxn-$!m;8q2<S=g=+3YvxK
zvUXWGV&SNT-4^!H)Aq?=6g_;U*lU3sg8Qg!|3}7%0}46Fwr*4YRmfolOP7!FI!5KM
z5#wg-gq4D~CoP<!UrnM+5~nSkp*K#VP!eY?oTG=gaM{9n3;$WTVBw+?$Lf{h-<9I}
zO7W1FU3QhMWOq`#VuAQos>CYsz$)>?D#5*jYc$4H;<|!2EZkHGDYq=-OUg&Q@+VP1
z;jE3fg_9_fl)D2f=WE<pWGDSFw`dZ@k|1)2f<*3ANO1*ABvDc!r4)pMEJL-tD~Y?4
zsFy_jB+4dHE{S`RsFlRfRib<nHIk^AM1>?6sq(6rL?wk+R<MeKRTZqJV08sIt<zYT
zHp}`Mu~1C4lejmDI!V+`;@zY1qG9&lIT}MpYV7ONG;aPfK5UT0eMvM+A}fjelZYje
zk;J)GB3dODtP;CciSu=0nTpa-!3Pv%fd>`RD2c|mDNPj8GzsP>Ss<Q7bK*(lCeb2^
z?4(Rk*B{XOp(G|gmeoqZhZSt8Ac;9iJaQX<G>OL)KBR1nk6PcRKc0l9@HV$8PbAS+
z;l)=AmSiS}4bgjxB=X3{D4W-lNj#<Srxk3kV29gJE9-@xP2#yEeo5ljB%V*=g(Uis
zX-T}8#7jxMmc;8y`Y$K(N)la?=tSPG7M+vQkMY|3kJdGbZb`hFM2{r8D~5MmEk<5#
z*K)NW^SS5JliK@A4%c6VovvzcB+)C0x02|SMDHYmDE?+rMq=DBVlL?I)q>LyNAY$N
zeUtcUwVaN50ETw=PEy7&)@t!y67MJRbrRns@j((FCNUt1Pm=g3iI0=$&-%xSzP&Q8
znQb|{F`dhxV)knBX%e3$@nsUVyX0(IEk38v%f!A&%B|j0s|6{QYQ(-uqUajIezMHB
zNjV{YpTrMId`Hb(BU-Exe;#T1V-nA-5kDv8obpprhC}?=w$B>r56g_u1|~6xgGwSy
z;<qFQ(~~Fh7d6e&eox{Ls(KPb$bTl3)(C5j7?#9vT6*t{k+i$2u@S051}D>1h1~tw
zv_|}$#Hb{UB+Mj6CuIQ8?^e4+68|J|g2lo(DYbTH>q#()I()chC6P?>lR&sib`7U%
z*=1vP5{1_aBB>-inq(5psU8{LFfk^(##)iJRxn>Zbxd}YM4C#a*g_9ECMo^oxFp6>
zL++AuE>|MslbDc{8I?6$Lar6>tQC`zn4H9vB&H@YJ&74fOiSX&wW2-K1*Kw~`;4_>
zCi!0?HcP?Z-^!pUXS48H!E51L8S|2upF~R=IW`s~v5?%bQP9SsBo-%eB#EO*EFp7}
z*hkJMu`G$@No-1Da}q0(See8|!e%*})(XN^Nt{|MRwu#H@mfPs-p1D{WPK7FZd3Ro
z%kV8;TR89}wkb-nb%Ga(gxizYL8qrEJCoR@@ZAdTxlP}z5WapOiG!5XBJD7_m&Ez8
zt$F=R{-?94B-R8`Yn|X`919#v;##-NGc=GSj#HXRoTSHCCr(i%6tcc}?(^$JwME*(
zcg1__#5vZM1XrV%sAlWLe@R@Rdr9K^hFO%|n0TBUC?l)I>~-RD5?7MAnv{9P`Rl~+
z=5Zp|lDMuY#BV6%W)in<Q}WreaDE%iffFfYqp*$IHtw}i#70pYWo+DKqnM35Y?QQ7
z%Ep~G+P2CmVWaGNxoj_PV<($lCvJ9cNLkO>D$};iG{Qz{TZU@9erOQ8o8@g(wo%1K
zIUAj3YvpZJuyM$gOQec6GS|yId?j0M857|enHk`!HmcdU#|B4N-9`-?Ok>ux!EF(-
zUQ~V{>y7n-6i!vOY<#_5j94$muNQS})MbS>8rrC5qrQ!pjce-#EvtdeFJVC!!JV>3
z?_?}lFYdRoZ@r+sWZ3e<`6cb-F8>2I9<<TSMi$3jF4o9KV;fCunds*2T^j^**G*aT
z2GMeZT!Y7LG`I1vEgee>8!v7U*)|@s!EJZq{Wi$#<u4n=@OYeVie(;QRUGLi@wtu1
zY<`W4*KE9QqqU94ZFI2lj1A338ymScge}eg2?g8PNNx~qDT~r_!)V3^v3Y~Yv!!7^
z$-|$vTydP+Ac}7kPutQ>wI>HQ%3UOmz12q1(Z;hjI@@@~#&b5FXIE{!WaFdUtndFS
z$nr1P__KJ7XBW8ueA&i_8$~A;-Y6qpx(=Rs=whR*jaO~-u+h!NVD+fGLMn969J5i3
zU)o~%Mp1QnR!<v5c-Vu9i#KfaqU>zEt9stsM#W9yEgS!C6mQzngWcLF`q+5e250uZ
zHr}E7)rt}4y6@cqt+^t5&&K;UKDN={#s^fP>ah>mZ5t!QIQN4X20XY)?CYDso)56`
ziH*-F<yL}zjM5?eluElvrjdJW5<CO&g^e$5d_|pM&uIcSzOnJGjqh#zKwp%b^_?wO
zi@PqgBu?%6(Z)}tu&XwHwlQLp_(hov5pGmbU87B65Vd`i_>By#AfpZ*1E4=AKE%c!
zB-;4P#!wr>Y>>AjZ49@udy^Pp%M^6`%CT#kgcy)bwY+<?$k;6YwlT^^!iG)*EEyYZ
z;~yK$c~TI(ZM#_zXS-BI!<Jq>cY)S@gO;SF*l6TQ(K|L=8!x-)<RWFmqv#zx=fJlS
z(7+v8CbSXR*l**2%}-e|#>Nt=jg7H3#!-81%&{@v#snKvZA`N<(Z(bjQ*8K~rIAji
zL^g}xHj8eXMZBKu50fg>ZOmXLi}G<_iKl&LZWc3b%(8JwWIeM^hGbhei@7%D(a*ER
z60!L<lVe)5$MP*uM#`O+g*MJ@7EJ1L8NQfJhuMq=xb|E|jk2+YR%T;`jg>Yw*w{!d
zDj8d4V~vfqY<iuxn$j;3BeITS)w9;q{I`hip;l^(7+kR#JFv;d<v?Suels7Hi813x
zoCdYc#&#RKC>I+$$i}KMZUJzLWT3Uv21P?;k8(jQyw?Vw()sLTquaD6wulER#SYS;
z(QP^?=HOo&hizQsz-=6{an!~c8)t1CvvJ(UDJsAg89$t`aZ;IW*Da#Z$E`n6kY4Dt
zQu1+I#5o)9J(BOdjsKMGY<oUy<rZ;hi@2cP%C}Y8=4BgKY~*)Pz`<3rkt$*1CMVOS
z;<}BdTSeWsGOBD9=V!%l(Sf(kdU~sPeXGdlNSs%_G1&zjx$-UKps<6_w~9Zv%A;#E
z(jpG%wI*&AE4PX}Sl&Se2NfL@cTmDXSqJ4Dlyp$aK^X^kIe-I>qO^k}Tcs;z-{#Mi
zR$O$ucDI8D+vIj_zHOqyHu1ruqCDHG80)-EwB9C5R&r3;L3IZ;98_`e@itM_L28@0
zW@P=oO;mHFwy-??Nlgd$IH>K&oDwOu9PH{_ipzFh++&@)O>EvK>Nu$Dpq_*J4jy&z
z7+ZJvO*9^K(8!V2eZPYY2bm6NaWMzyw@Ln&+%D>E7Y!-ClCcN)R?$aWZkOR`V+Tzf
zv~ZB^ps9nGwu>wWaR<%R5ZDJgx_7sW%6%I)cQA0faJLJ>haAk^F3xNhIm+A~cF@wn
z*6pIfj%>n5)QF1h5IoG;%0X)fc@Ca*@VEobL9WA3r_sj26As!r^3*!FW!utzdCE~G
zw0T=|hhXljU7kFcdZUome1~|-!PAricXibe+LJ{kVjUcLfR@NJ>Xrz97G}*1t>X^y
zyn`1U9AaSyFLGQCMmzY&!OIRhIT+yJ69=6gyyBpj!*93IMfJIxgYFKxI(U1Bi~)Yw
zAzpRR!@+9~UU$IQc<0iRJ^5}tuI~`MeZ#@j9fF$_Yj((^1^4^fn-1P`@ScPB9rR&6
z4&HT8X{S7I+}FW74*EHmIj%Ktxm9<R{d_Yc|4uRJk$jDI%2QPzIPxUG#|}Pp@DX{n
zQ}9gnzmMi4?5_q+k<I(6*{2+@gP$DyOffn5!ofEVKPtzU9I~l>r63V*oqVlurh<9<
zorCWk{NUh64riy_ay|WECeJO%t5l4XCr38?g(~D=h=V^UZU=)XBSugTesefMx1}c>
z?BJ`NG8Os#`Ie)13Z64zHgc$gVGc$*_>*SkV1$FcJH@4)V$4qQ$`WnGPSN~EyT2U#
z?O+r+Q!iF(mrQ~&P^rC3a^^_&Si*r$&T#k+3<suz$U)kH#dgWk8nM8E?Z9#1QB@pp
z7tdAtkfOTo5*>EQvm%_E?she5>{DyBw|9w<hMZ{Fzh5c7KE}aV2NNAkaxl)pcn1?4
z886XOap#fm{;*5t4->n@WCv3yR)=5NgWo$a%$v4Ltl1?~zSAAdU^nW<j_nfpcMEQI
zkT~1H90zM1erS)m^ftT2LI;Z+%yTfG4zpa0lm+bMZo#X=Zn4<G5(g_CtfK8WSmt24
zgB1???v`%zr`_V^9ofciG3#iY!N9EDqSr!gwSzTO)P)*701rPC+1NW{y@L(pvof5G
z4mLU1LmRm(wwac=TkIwq)n?)rT6fLZRt2{?*sc&#b~xC18{b7Qv0Ki(e4VEdd9j9l
z4)!}TT%lneaBz^?IHF;xJ%U%gJ>oDuAsvy6dM=JS{QMt9T@-V1+`$R@Y6sVpNuG3Y
zj+N7P9GrG=#zCt+;w;%XNqcFJ;OX&C`eb~thkvt(3rf?jIQ*g?mmFNCa6guxY1|so
z@RvQp*&`S$G9OEAJkDeP4sJNe@1lT<n+|R{$mdE$CEv(2t|sOO@eSu&GND({Mdg3A
zLM{rsn6pQ6c<UbVWW`t!m%q=ZF|vAE&$`3Koi56g;-a_<9?~oAqKu0YE=sCuS*(=H
zUk1SWJu(<0WSP5M-0jL$d|AG}SE^sNDzW-|MLAbWffpZDbWzDgEf=+2xf5O4MRgZ7
zTvTyU)kV%;!JK3@R=YyHq;OJds@r>9yuVlQmTwWEXSmlz9Tx-l$}pR^sl8(1UQypg
z0~e3F{0Rcw=i+`BjoBp^F;_aq2Z)r9Ww^+6v2(9Dw^uae0QZUeK5WgW54w12ncRGD
z#9@|>G09M8pJ?hL%SGHpGZ)RbXgT{tmCagn7cJOZSMEn-yLiaO!!BC7c&0(@!*??X
zpWP?=?vo$&Fu6gCc*K>T`TV#~aDCLuMQa!BU375qxC@Q^bdl>~`x9AhT(nh9KjDI&
zhlf{r^nwUaqzD&z?4FA)`^5F}nzc_n>4K2oWX;?s&g~OVD}LU&Up(WYqbs*jUUc!S
zE4OrCAfxt+=UhDRg84C0crlsAh^S6o$-0+ZJhES&&Fk#q6^c8BS5xTXqN|G?WR#0;
zB)S;RYRN_yJzRY3qQ8rt?86%I2CH@P8YNgc_PQ%qC`?Kd_IB|md*$Li7jL=f<Kk@>
zeO(v>S}!gUdwIXi|I>TF<DwtsRrFEf^^V3Vh(T{=yw9Gq6_NFkEB`O={r!S---i_C
zc#Wq(S^1#-Vt|WJT>R+bCl{Z(_{_yuF1}VB_}s-8F37!e=UdVW=##&6<xxPs_>GHi
zd5zI{O5{5i-@Ew1mDx^bzhIt<M`{})#{DM3pI!XoVz7(fUHs}|_I|N>zZm4oqYeXU
z*U#s$%x|uYuDP3ba=#eDCR_}2K{{Oon;<gO1rw4}CTq<{%VU!xUHs`{l8ebM{&MlR
z3ztE=i%~8{lQS+%SEkDf91#DwNVwn@o=!t66Js8@$^lU)m20_3x^P_F+c(3e?s?g4
zrO^SIA12@EMo9NKA{S#^jCB!EsSb!P2Snr|bmgWbH;<TP7;r$ODboWoRvhPIyo(7e
ze?ZW`wN7fIU(2C5CQ^cT#imBtq)%}%)x{Ey*Tpm!)9F22%ylutl@Szk0<&DqWaoF}
zQi5v_$SlEZr4mHuxtQ-_v5Uh8!~z!!m5dhg-AUSao3!;GwI)I*#(^;S=Q?Ydi{&mh
zy4d7mg^QIgR=Zfk5tWDy-j<#JpjbsGc2MfiS{LhFtaq`2mVQv=DdOt~#Wx4V@{+Lw
z^R>|j#k7NBGYyBFZ<Dq5po~Aa(sF5WN_I@|li^&MQjWV^?4|=xp?(T`T<mpGB!!|W
z?4uIW3%U5u#Q_%wsRL91SEd>carhjU!YT9<2gMP^kfSb$)5N$t%s_};J>lY{i&IKH
zO8eSr7iV0YrAi+X4-VG~9uid!$tZ%i=jam-N#ufyi!N@^rMtM~;xffYg|xLRF0Qgg
zs{J9+^^hQ>6Xr2Lxz}(=E_)dz-g1#Ig+eI|KP2*}<Q7$d6bhzfG&SwztO348K@&c9
zZ>(?%Qx3@;XS(QODcq4l<rJ!<aAyj|Qz(<dT`81Ep=3&CCy?S_@H8xy0>1_0UL<$%
z)*lk54vEra)W0H?(C$v5YzpO5sE|Url+=x0<28O?R_9+CT~}0;N-5C#?kpSQ!FwXL
z7!ssVErokisFOnV6l$bUD+T6ixFJ|Gg?m)f<RNn)@qgtmAs^LN1={~B7>&QJVBHk-
zajkj!y#eb_p;Zd4Q@B5cSPD&3Xhv@E{AUUer0^i?9}~}H4GJO7T`;n!QA+Aq;}p2Z
zM}26*QM8Ej;(9PEg?I`NrSNcyKjI-1Q(Tg?Na3e{W!5D-C39t?{}t7@Yb{gq(90t!
zJeopIN*>*0%tQb7SPD#<aXXa<l22{aCjBcOPeDuJnG`yz0k%m&q>z`w6ReG$Y!Poq
zcKs`I6~6Lc@ypG2`45XHQ+SF^@ZH1W=@icPlVNJ+VNvO@T-R{D(;)>;=sc_NYzoh%
z@Nx>BQgU_hd<x{%iz#$IEM7?A<HK@2@{%HQBKz&I=$yhUDRfQAO%0j}^|lLNEERjK
zc8u$+Zj{Sf5gnGy?~#&zZ#GAiLeCUlOW}1&utMys6uwU3jTCyN<fPv_g||}Zlft6I
z;>{HH9v1vMfb_Rh=$pbjDO@`&DjX60QgSDe74~Om$gv}W*Lx|ve;fZGg%1_}k%Av9
zxVJ=%#rW0$)tOHe{FEJ52<e|I<ck!(yiIxXi1;RjZ&R>RNT%>z3g4$NGKD`?=YL3H
za0*TKWW8}j{7A_voVP!x@QcEKy-gXI!l2vuZwirL0pF$!N#T#%_)vumqZuk>go4Na
zD9LJh{guLzDlu-0{C&IpD20qp;U9%0Zqs#z7%7;yDX))gXj2bU@KW$oa8pRBVYcm;
z@x>9rYX3eWCLIxF?6yG)VG0q&R7Ns6O%pyM4j&PdRrxUrj#Y463gZ<rK|vOtn8Kvn
zIFAcXNnzSzZK{IP6r8T$3<YQYpT1a|mEvBl#*%YWn3ux!6mFz2KZOM;98BR*3Ja+c
zw6YX7r?5DMB`K_-OJPGPEaST=tWu3Gr{#{(Rw&2>VE&_`%2Ba$L_^}M$%ms-`cEAd
z>!@-^#fB7m1oEqd_2g15ndjl{#uRvf?dzjrOA1?4*p<R=wl!AUmcoRiVn+&p9~Ijb
zWcFz%TR$pz(b4T8S4+qCrLdoRt8gAFJ9JcR9i<&mw{)ajm>*uM{hPw!6i%mbCMB~C
zM^ZSJ!toT2rjV#2(~^Wt88Hq&k;2IoPNk6ln5cA2Ja|mV?{<%gvniZQ$#DI03g=V!
zk7~I_Tw>FuVi#zPbPLDiSxO#irJ50^NxphaTuI?7eQfm@kF4<E$~9{KWclUb%@l5t
z?xDPgd>(%i2X}fX?#T>H0S|>e@Z5Vr51$<qLyw6<9{yG5j*56F>dBO5F%NfmC^b(z
z)V<+9HDWx*Nn#04hU=v~z(YxeFKL{^K$NS_(jLwY$iB-%89pi<>*!_ESKO_Lq?c8Q
zw?(Vqp`wRc9%_52<e{>M>g)qgY<j5bsUOHaB&vBb-UyC~MaKj`2qj)am6^MxMNJQc
z_jqW`Mc<Yd_j;(~;XV)dd*GHtT@Up=Ja}B}JtpdTxK8#SmkW>v9@-oim8!;K9x^;U
z;DIOEGCAauu`b6&LzO-yg*()r92XC&r^Aj5-Zu8o#6wdL%{(k&F%MZD;vPDA=<K1n
zCx!L0>UIkc*&f3%JnSLYgYeMOLym{XJ!l>t@$jgJRvvh;jgbb^*9<iuBdh;tMr$Im
zwR*(whL~V%<KYPpZ9O>$F;?LjCuWui+j;W56Tgqk^YEmHXFWXU;VHK6;Tcbci0wUe
z@MPX{OWD|%<8r^4IJv~FmX7SwfNWB@i}bvQ7d>1#E*2dZFL>B-TyXY(Nl{3oKp8)9
zUGR#BE*=JY807KyRnX1D2Od83(A~qU9(q$o9(s5<IHKX}s;fPz6(<C5UsJ^9e$E?;
ze%}evi+ngCx}FekdFbQeJrA>L#yGmSJ-p+gA9eDC=<CUOnYKoQde_7F`Vv21EB3}H
z?R^i!P6*zT_>qT?J$&Wyr$`W<5dA%TLW$IimEWKZ@ED0{3r>hnsV%J2!xtXD^uUmE
z#|hD8y*6=~ws^e^zb~8+-+1yX?{7VPr(P${>w6DBdHC7G4<3G`CZANtt}4a&8)vOg
zieK3Clj2vh<$!qUqzpEQ{N`b>hjHw%hu=L6VYSpB4}W+VN;~rK7duZLo)p|29^qlQ
z2mhp4tZqpeN!7A6_U&(l>^&()tHPty?Y(-#y|rWicp&}aNnv;}J)}H%9xM+@4~_@d
zgH1hrA&1cgx2p~>)5@F@^-hVLZCdM7LbB0AKtXsIOOAPRhc5DvR!FB);{8+Nw^MR`
z$|aR|N*;Ww!hP!b1t)lz=wXJ3nI0y2GHpJ^!&DEGsf67B+AV*wW6_!-^Y}_qo91CU
zO)sf&iAp%jlMBy<)Dv#XdzeF;^)S!F0uL8Y34U9#<CK_BgKC$>i+K#37Hzj@Q|^nX
z7`-zVd-5|$BJ}FZJZ$x_O<Cx24=WV1(!(m+i-$F;Gn?oEPK&i3)_d6CVIB3bOl;$j
zX8a<LX{(LYz0>lLXZPwdo5y1$n>}oym{ewL+}P~xGyxA+sXQKbde}vU@o>V!Zkm#+
z>Y(b?UP`k~)_xEB)NPm3f<OLnKoLpjn)eX>iHF1Lm7@wCQBS$=%uS_Z3TKLpsj8D6
zxKun#m#C0a9!_(Nsq8ZzJ~}N1ofdq0o?<;ME|L`<{v!`h3tksIaC?HMRxY!vr)3U=
zMs!8-gb57>a@RfFpo8^M$;V9(x9IbI6!($OM}8m0e7rY3i_W=#k3v2Q`!aYd=;L$^
zIZGDtQPjtot(xO$mre`%<Z_7h39|3-QRa+b(uNDz5<W`u*2i7GOevJ|0UxD(46hW6
zoe@u*k;&m#&&XedxZ6ir9~FG*#LB6L%B$8X8v5Zc&ItBo*crj6m3>t4aj%a$zRYJ<
z^-<kN4Ih)wh-y9#w#oXcdTjX_QPamgK5F@}YQ~rb=j*jqh1_*wl9RV}ebn>0<VJ>%
zf6s{eKJMed&x!`V^wJE8xmkR_kF8c)j=I`e`MpEavm(=%Yhf;ecy{GMAB}u08H1%`
z(AY;4vMxf22u*!7^YK@JzXN3Xi2FF<<D`$~K3ez~=wpzNY#$H#c+JP_J|6bb(nm)h
z&-%#m@raLHAHv6@l)}ZFRz6z$c+5wsWB2iv@NplSkGAZmk2XH`{FeI!f8^(^__lo;
z;w(cvb71bPXT{fN#ptsl&&QKKp7zn+$5TFTT+Ug3R_s43)?Ln-cvf^^e=g)a<D>4V
z%qND%FPs&>4$Q6BNId7`c^|L%=;GrAA20go<fF5XmwZ&q$}I3_{ACLFoLF@wXH=G`
zcTVJ-6CKZqH#g)wUnJhuM>n6py@MV;W?jqKw>X#G?yiRL(K#{boao6$&xzUR#Fz^?
z&N=ahk6u1L^YOWl-ag)>q<p+j`TFSNqaS(IEOYBQ@wTd=uaC3mM6s;QEf;g%q3k+q
z-*(shW|{9Qym(LT10Nsy_{hh{KJGX#4i=8rJumi*h_^g1`uiB*;}ai0bkYVi%Org6
zylB-;`;?;Wp%MAQ$Gp!P{^;W;A7A?T%E#9}zVY#$kMDgPs9SVS(fGHDSN+cm;w;Si
ze_;Rjx8z0qoj>D0`}jrG)43wP9+dm5kK-9R?_SOk!{WdB{B0R5^0C;*?>>h32z-P-
z{_ruBy6Pk8^LIHgociPAZyzIkbgzh!KK^9k^MY)2&Wq{i1>s{w;-h?w_W9rF&{cD5
z&x@T!;{VVJ&I@+K@NrcYHWhL;k?sB&uQfE+R{i&A$bV-#K3pH=N5oT#ND4<(=0CCS
zsb)Sc;y>|v)6B?6+Q)PsGiaVZ#`>7xW1^37K1LRak0-Y;<osMw!dCwYYSAPbqmQZT
zDGN+tf&T;%KI*0lOru^6jgvBy>fvK9JMUvQ_4!-OQ6gp^h7FIiSA2!nd=CFVu|V~3
zM%|*s7b*%LEupXQvE9cGAIp3!_p#B(CLb$&tn{(Y$9f;De9XU;v)acRnn_mXH$~#S
zZIYGw!pQhqnnU4u-y-oMSs1q=hxi5#wuj_%zRE>6`{1K(KDN;3T*|rHU)!n>zR2sT
zredd$T|Q=>%RcO5H!YDGLgv%4T+i9jRP6P!k4-np<h%P7Qs_0o+e1`T@-R!{vEOrR
zHkAd|yrLcPag?rjc)WO1ag4T;m3f?Q`PD4e&yk*@ylB4xo(^z^CcvHqs2bp$kMs1;
z0SX8B&&LJ6;^UT&BE#YreO#gFDYgH^B_Ed+k@V`r;<TNYI%(JF&B(z21c^74vCv+K
z=L;~bJ@N-A5a6FHIS2m}*ZvdzipB40kAeYC3@kX791Bo1K&b!-P%OY50g4AG5lBYe
z89+42Bs0lvB4l;VrlLoa%#wlR_O}~yN(U$tphAF(?DPJXcLgXHpnQP41C$M<ZqQhI
zcWCqKyquShXP3Dkm5P)~0V)Tme?gF#c|jT!)s;$8EkN}E%>%RuP$NLi01X2?5b(#c
zP%A(^z7inkg2?|{ZtVc~s`~2$ptr0W@b8?Yjy-ch^u8b(j>v8h;Qj!y0Qa$y5!t*x
zzaUs9BS7MU$PA>D<SlU;;DZ4g1!xkWX@JQWgf%3$ae%oOa}Ivmkp8g5lH6wW{{gmM
z%1K|!S$jdm70%nb!*a6&JQU#Z09t@;^Ku?$4+A_Bpe0#)?7l94<Q~2t)(^>jG(f8W
ztpi-YARbe&@z8kLi{kkMEs4~>DB1*gg4_;}7ocq*eHX8G0Uo|6nU<?4L`W<>ESK=f
zK-wuOBipxWAD}~kF9LiS;F$m&1N08?W`Jh{JQtu_fbIdF5AZ^OmjiSPFz9*?$Npk~
zm#BEf;+#kJ|B_qrN=|2%zbIY_(1i>in#)Hdmi{&Ot&5^-fUhnJBCiJg1Mc|ioD(mK
z9szm=crCz{Uvf#z_%)XZE2p=4Bf!*)qL+eX{#yb11o$Yx#{u3B_!DR77vS9h?{LWD
zO1jr_j$agOE{aZrbKeU<d;E|By_WNSfDfpXmjo$&hiCuaz-f~G101=K^J#$30t^W7
z30ZeFhm#!{UiPZw$>#xo8YTOV11)8T&x)@Cd>!Do0D}X3Lxl<W>uUHVz;^+@XUYEB
zj{&9)&h0-e{{FR`AIPgB@&A6yt$s=TL?dk`)jq4K_%*;lvMvBkrpYBaFMkjhcQzKC
z-VwhC7(ymr5`PBxBf!uABLa*J&})~J)UW_lq|;3@hX){h{LgsFW|`+2iFTL7Yp)CH
z|0kEkr~sn_JQ?Dt5dTm`X`2B~2G9c-0Tu;V9KZ}<1sE4#e1K#i{fR>^DZ~yy?$O1i
z0(b$U0O<feJ<0HRz`+jAC1c4P-iC@uPLAPNnq}TOICm_0QY6lSeB48Dq!R*63@|&u
zoB)$(4gqEc{0%xxp(q2)ppGrhofcqvfIU3~=j#uK##>*>Iq_%w_lr3rnr2e;Cx^wU
z(oKrRY29<Fw*eL^4m2qopRbH!(2(2-f5jIB{JWX>kV}FvbxAA<ur$Dq06POL3$Q%E
z`T!dOtO&3&z^VYNRVCk#pwAcN=N(Nmw_Orz0;~<Nj*j$_boF#@g)fWI8*(;MO9O17
zod(!UJ-?FEe@QOQlTixoahqy-djR&6t^YbVhmZw!1=t;6e}DrVU4XsHOY95q;^mym
zm&L=EMaRqH&CBAO%i>^wLjev`56O!2f)+ITviMh76T`Nn0gkcT?8#;M=>H~moD5XA
zr>F+>t|6+1I1}J(fI=Y(hd3AT*ZFXR0;MkvaDiq;<qU9<wl+NbQh+7Tv^jBEP@|~f
zmjiSjnoFec6~Wn-#A~Xz*Xcs9h&qMhw*uq~Q7}aGOq={{t5|&AlH3BJbV^OG2;$<3
zAaU!jxkW-04N)#c`4GiI+!6980Z}@{ogs>cC=sG$$p7h%@7&*#PNVPcTpAjUt5k>@
z9ouxjB4~PLLe#sO!`r(#kjpuDh4}7@7<EOI4KeeI*my<o_QVxYAw<OxmDsDRqUu$#
zvqeL`MJHBS^@<Z{wGh=qWQB;c@(?vc+#ezq;+_z-*hGl>A!>)XHw2^8ce`nI)QfdP
zJhnS`%9WfJSEUZndov(>v9s17lpg!O5ZN1Yp1CRrGeTsBXdI$Rh=w8Bz9E_oi$56R
zfe^i~3R)#2*l(_iMj@WRo<pQ*2o`7-V(eA%*Hy9kY7P+=YaXISh{r={?C`L7c8HcC
zazZ?$`olgv9Li|6b2n}ARq+Vf*i(Bf#G?u!y+79iAzFvnc~zXhD*E@(h_nguM2OrF
zf*m8@F6Xohv8t0sq}c0nTnupu8T~F!m&{WQovl>#=@9Khj1Ms(M28U1gy<h)K!}bZ
zo(<7G#H%5m3(;tQ%NIhtsF3F=(`({f6RAiqh3FEZYlxRabPA;wwdl~MbBI@1NtO)Q
zNFlOtf6H#{8_mCNQBv-`CVGVE8KN&0BgAVVURUq-3GqgVUX)IVx5)NuqBlEMIL;SY
z17DN@ysER~HSxB3g~ZLn;{8Ir8{+*CAB1vVF8E9vTFrYQPF<3#BvL*M@o^|)?~l~L
z-@7Im(r$mtu9tE?3Gr!&VIhWx_$<WdA$|$*YltsGd>P{V5I=<YD#X_zz6tRy8@inH
z<27;p_uSx`3}tE8k6g?7E(GD~YvRWclR9fZsbc>RbXoG}5G;K7niv@JM<6Aa{s{3~
zh`}L-gy1XG@c)nN_Ym}fERg@YWbaV&;iCAoB6y7md4v^C2sgx^A^r-XhcH4^yDt8w
zLS7gDgcucKG|g~Coc@iFD~^PE#HXx(QIWVA!U~a8T%s)KU~R<~E?9`O#Z(B7CLbcL
z80E9)A^-7N#&6_UNG5RdQjzljMsdwD$56LJjAJWVnH4U|Seit_iR43w10fEEm>gnC
zh!r7LhCHH)Y2-kN`5~r<m_bDiF^khyQ^8iYG!_SU<<6!8Ul(&i%vIG6Xd*a+vrbMH
zoPZXDSg888Jj9|9i$g34u`~pu%4&t<?Bx56<wUkDlo31Q>KBG*6Cu4~7FLB=9byL!
zC&Zc%YeQ@bu{p##)zJD78x-<NQTgJJyK_0}jiHQ7iEN=aps;r5j_R(lGuuLJSA~gp
zy)L`Qsef09-68gb*h_t*M6Tp8RQ~<CRJP!{*hfATi|<#E^EmNCH1iNwuZ#Q<4u?1r
z;$nzPA&!PP7UDGBJEcR3G|4<kWu{m8J@*7X<nTBV?LrP0>D!9NISZc+ao_ITb0N;t
z>kiH(P9pu)e<3b}c<?nbyHK3h``2?Whqw~rddQz=#DU*)ix!JhKd*+k7GlA5F`=g*
z+<INyq?*mkxkbA^p3P$UB6-WpnwwJ~Lcs`yA{36KCf^wWH$;(0#`DD@)W0E$MtJ0g
zAaX~9Q%yyy&Kf016K3I(5lTh)G>y;FK!nl}c1GA0p-hCkB76|x!w7drC>x<ogeM}D
zi%>p7;|NV6ezJs$5$=glD?+6Rl_OM-P$NQ>NQMDbBUFoIZ|@(H+vSE}gz(`FG4O_{
z86mhKw%(8;n4@6r2=_*KAmWdsqE3Xm5$bUWBjdxnXsqY$7#ObCk8t*eU^b&c1j73i
zykEhXf*BDq6~d<t6>{fI(I`UAn^F@PV=(Gti%lami|}xSmJzZd#3MA1&?1s?J|l`|
zH)UYYV%ZTMia<y@Z=bs<7+2(wjS(J;&?>@PH^rk7W(>*w=#Sj5ZVKMEj_`Pd4L5}r
z$>6Z&uG|qf#f+PRl=g+<Z6mac@JfU(5ppAl2+u_57~%N9f_V|1jPO(>1NFwk<4;Fu
zujJSvg7d2MIcIK4UQrY1LZ4-^2rrSb5uT4^l+Hlng$Ql?YIJTdM$#>pza@Rk{kKFX
z_V$)wjKNAeNBFvsOo?=j&@IB7972Td5nd%LhUNB(&?7?6NQM@#vHn{!kl@9Ye&1W-
z^$2f7Ai`_K(A?g9Wu$yW>GX;4c7%Qr-i>4c-<RFno%>EC{pT+o+q`+8<@ReioyHY>
zPf-|PGopB(O46|nW2%oLd>p~2K1AprVL*g|5e7y0gbEqq+X&x9_$<Qb5x!#QBTyf{
zpl&o095os8Wdw#CL>RhXdr*86q1d&YKW+){miRux4-tNj@C&P@F;*)2V<eMEKSh{(
zOEe#pOGtWuAEUZyzed=uZhwm~IKt=%|3vsb!jK3fB8-giM}(mfhOq+?&fOA4^X2j4
zN_<i$jjr{gTBQ6L;jajPlXac6n)&kR*dNN5$G(lCeI2`x7hQ28f*v6m!H!^X;LS44
z2o{^@sr6(%ZwQ7K^r&xl)*M=Qgj58NdeT#4hV5uq?WeA?*t-f2+}|>!uqf^biz1{W
zjG;D0m>FSggmDojN0<^}eWCdH2oqV`wVVm+_EcjTOHWd~;sSvjD|#tsYJ_Q&V`nYn
zO3sXtakes@;w}<@E??fP2(zh;%8=*Kq6^C<K)-x>bCr@)&zT#Ue;Z#w@#V{-y)TZi
zB*NwhTOurtuq?vr2y3X%`SO-WSjqnU8DGH;=gVUaguGo9fhjT~YiUQn=B{IJm3rG(
zbEqmCs6P=lMKbA1En=`rWn=b|j9s5EZ!7II!qI$rEX>>OES5iy*NzBGZxY!ZVNZnn
z(}<<9m&6G9(#W62_uaJp)LXtA;Q&XWwB?Y3ha>*7rBog!9tkVu&m%lWgN<-0!sQ4j
zBAldCqDn+^WqOKkq(ht2bYG(~8BH-yaz<G(bA9J2mveF|zd)W0i~py}Fx0uI3Xr~M
zP%dMtD-o{KY11|<;;Lf!HC2-D-c%)Tsauw(rLzfERUnOmX;ez1avFuw{9p~G=*H71
zl19-q?nvX#H0p4<ot9Zg@|OL4Ab(!*G)koLQvN(LoL9*-n67M{KacrI-j+_IOd5Bm
zQ8tZym2g)YoR2tJ(El)iVL(+bjq+(!NXs~odd~4yOruw!c;UkFdOfA*sgg$3H0q{N
zFO6zxR8QlcG-{>6<s`eoAg4weHPbRb$+XXV`SWV0aWBh{%B+)?5h*<eSI`tR3((Rz
z-uh`YNaMaVy3WnvEp>+Q$NYJGB_oZ@G@eW2`7|1)@c_q?MyoU)Orud6Ez-zNqj4Hd
z(rB7SGd}99F|WA%_uNtW^EioTrDgaOXMwED(SOO9q`AWXXe1s=<KZ+~rjes4TuL(#
zVy1#6$2Sv?r17Yta~V$h)ckp^(|A0MC)0Q;&0o((n>5;{(Jqa(`SX}se1gMQ;ShtO
z+%!ZQJ%+{e2%BWG&cpfh{vXb<%+qOn{F-Q=Mu#*~O=LRanKT&xbWG#fw9IU<lbp+r
zjEv8FP|(0%NaMvc-b$knWtzszX>?EH)igS#(K#&*zbju)V|`bx3)MsUBIZvvHOr(O
zbxXtPQ;O^EoB8v4q|uXdOrv)iuch&N8gEdehRZ00(M!1k(wniXq|k>De{n?oO)|Vd
z9+9`x=$pm|X?&Q*J8ASw<F^8N?~xA$^4?{a3go?CAdgWrbEotk@26#8!};_hjx>$_
zX$(kXuu3PERcVAz*zE#&3){EJS1@l@fxKM>@;*=F3#!u?)E|Q{)A)+RNn=AAUsHT(
zcxm`)e4EC1Y5wpy{-9l_@k1KFr15JSKc?|h8b7DOz>Ko1!uhdaUZZgZ8HI8b|6}Sq
zprk0ewilKh_8}vPAW30rb^wKC0g1Bg5{4)lL_j1bB_jeNCR9`qObB8QY<ExRG?*~w
z95E-593%+*PZclU`OoQd&#meTw{EIiw|aN(EyaDLmINr~ENq@bC(O6pBOag@P3S|H
zLT=OdZY;$^B#c5S#g?r(?7OKHo2kaC;}aKn`$#DsRrq5UY942Mh3Dr=9`e~*iftF(
zKB<uHrFcpqPhY5ihN8KE@0vQ`ZX>rBFPqc|FO}luQtT?lo2A%MiqcYKXpE)MN};PR
zhO#DZZJg`i4Sg7Y60u5Qmm<EPLbPRv3ZqV-ZYey~(N{1~FjO#7kln}SrfGE9QtZ4?
z^GYdRRrqTPzJ8(p4Nk#i!k)xirFgp(@0a3(QoKXE=#ctQt4<NTtMK;}oR*uuH8=fX
zDLx|ox#>^Hz1;N2YAA*uG`jBw7t_qSgMVI%FG_K?6z59uWhuTY#b2fPyA)qjvZeTu
zj=dD$a-7`s_oeuOqG>naJ5~HGH_ZTYx3Yz^mE=K;arn=r_=R4v6u+0^WNx}<xio{c
zUpdsP-I?J1LlMA4!JpK+a%t)+6H2|yrT3I#Zz+zH;%F)UDaF2094y75QtU6q0V;pF
zG^0VrgiJ{>m>gFwJ^GPCBKMa|AEw%rlm6;hDUNeSvZxfy#Qs}~&&#D-cf<)bV_YuX
z?v?KS|LuO7Ubhry=({!*vPhZ<`Rpl|&e2dt<Nwb`T@7V5<Z7s@p_(S6uW}kHX{fBB
zyoL&z^!aq5oV21Q(@hj#+4AZ0PPK}L)aJs5<<r$Q<Y}m(p{53CxSsK6`Sh#zNQG%v
zKK;|i{<Sn2?A6vVqkMW*`ShdZ(=_3F8tQ9ktf2|}KGgpr4GlG1tf7GhyL?(Y@O%3+
ziL}PZr5kUg;Sx>WguYuoO?at>rW#skXsKc2uwqWMw|u&pCe5?C1_p0Ln46_zyo{@>
zkY?0M*jhtE!y*lfH3$t!4Ffd{(vZ)EXy~HhDh+Kkv?WOu(w#N5({P1`_8LDn1Fu1^
z)MS2%7o)`KQ42H>5--%yQA4?D1NiVFfL8;ZG%)W(q;rKdt)nZKuc25&iH7bPdT6*>
zLvIaC95MXssiBvK2e0qLAdmsxa}^8u46cx#ULjqiVReOc9|d`P#h9wEhW;7`XjuD0
z|9%QKDHy=$jvQbFnAY&$<UYJS9jsx9hDjPGYZ$6wn1=BhuGMgjhT$4UY8a(~cEpDP
z$p}q`D4Q#!M{5|P@No(<r!-c>ixtv*&Id3%D@gmDpkbmW&wWh1T&ID-34<0Eue%7>
zYnY;8E-N+MpkXQ{PNr#?rpc{&y6W|f8pP<3sx`R}D`#n#qscIU_-swaKSVehEtkQ@
zd<{2hxJi@2-u?>d1sWD=GT}3@V!C!k8S-^daEXScY@^|MQm$dSh7D8<4L568q2YE7
zcWAgp!%7WnG=AidRb;7#TNPDzpOEnYAEvB%fy>#~YSN7mSy3@PrDB@+of_`auwKLc
z8t$gH9P56MhI=)vQ#gxESJEgLu-&J|<Rv?6wpL6(po(tA^nv5uAJj1a8o9cMG;Gqa
zO~aEKHf#KS3Ouf1izYKXk0|(<hDSAgR8ex9kawnh#g2LZ$y<ykH2&`b$$y4?EN<8E
zl!j+Cc~pN|lUI|BMhF>uGxtLHEG?qFJh#3;X=;d-a9`5!vIdK`rs0o@=^Yw$4TgqN
zu3ZBI5?&mftC)Vh!+-{r(ky1U@caAoF%`m*9V)qokTzoEdfZii?Z%r6Ujw)Dww2NW
z4YqvYnT`V(jWFvHDZ*}=Hz2EFr-oNZzlPT}yrJPWdYcX@reFG0N;4{;o{z7TURWu;
zi?7<J-lXY`>%%9v{eX8gyvt!TXq>@&8s29E9k1*7Kq@o(=qT3lk%o`y*>u#^@ri~{
zH5}D&Ov7gyKG*OkU7Ut5XnM4`a-DwG@Rf$IHGHq(2YL@K?O5tt4c}?tkEpJzlwQ?h
z!1hXMr&4-RivjOdO7Er%((sdpUn-?9TF{1-M=GV+g~%@&ex<i$#|3SECrc^Q1#O5I
zJ(1EEwBcMGM<xE&ut&pw4Tq@18vfC6K*K>Uzf!k-3i4I$Px`TV*(d$jzI&9{JIcE@
z%Ig>99oBF}^<_Pq@j0&HU%DL~<#n9UaFPn3;Vga8sKhA^r`1|W>iE7O{r{<Y(s@op
zj*harTq##nMh7d|j5urf<f>OyE2k^ysHmf=j%vCbvyy_9b*yu8SgfLo?8}zbb>!)&
zsXB55D5QoOxoKs|I<l*lj@r898;g9{te%egIubgBj*E0O&~cfL<bpO0bzH2YiH=Kk
zkpGQzT%u#kk6nn9nR6GkX{<}xvDj2cGaW5-$!a#^+vYmh;Ozx%x-DqKp<3!7^I6Zv
zm#fiQ>EPSe3bHb(BVR|Mj!rsKI@;)Hr{fA8Z5I^Y<>wK$Rrno#-jzDq>nPx=b#&0t
z^}ZAv6jn~3$#xo+?exO=#tRD9`+1#pbkWgWM-SEaDh0c#E?pIV{7k>|gZI?Yi)51t
zJ3C#iUiH4vfK!jHoc=#DN_6zq@u-f+boA5FU&kD-RL20FKLmr(I>zW2sAG_hYjh0P
zF<41wsDi8FydgU7om)t$4O2B|&BXl5=@B~KY?#N&kvf(wOSLUuaq+6cQEXW`{r%Fy
zu{y@-n5^S^9piOet7D>$Nvh=pD#qf1>vX(OIsJa+G;t0xsWkU!)102)RVO}0#|=7W
z=$NTvs+w_{&fgBhr?1K1rM>9c61I81dPm|nE>F$UF<S>`WO2h|-TCU*%ISGJ=Igjs
z#~K|s>bObA5*<r*EKs8@QjjedQlnPMbuCsk<*THLFVnGH#|j;{=pad~x#5ePo2jCU
z3b)QG)JEp6q$cQCt-7Sgb|n3WuPwS`c44)JsoQj{)p4JW^*V0Xafgn(sLYDIJ9YWn
z$6O`{;i}iE?)Q*g6knC}=s$}3sM&v-S2$sO!TmZO(6LG9FWull9UF9PWOvnt3nxjf
zzbk%ze(HP|{!sG6I!YI&K3-Jt2$ko#E)52@8Cxa2pi262YQByab-bize?rGr9ouyD
znVb6H&ccglrk>RCl#Zu$Y^T-CO!4QE2R@ebjE-k@Jg=kPO{xFpq&}RNx^ZN|bJV~~
z3h%9w?mN5i1@-EiS%oj_*rCJI;gbLz8u2j&7OjRBu^^S9#8;-i8(m<Kr3+I0A?cTv
zq)aO9J%!KCEVOkvI$Rx3tV}I#J-}4UudpaZ+5#P~=<>IlLmiQhSVvYzt1$&TX%~x9
zTgDgsvn0jhoCQ*Lud0@_8s?GyH+1Zx8XFjF;7uKG>8Na=ih;LvyrbiQj)OYh)$yK=
zA9ehs<9#}R9bf49Qt|df`h2PxcL5zA>-fA%dRC8;{Z-Pan*K~R_*}t6)pY-=>CHW*
z-tzfM$G1AZ)A6;AZ&U;R>T&g7dOwms;CmfEsG8mMQ5}oen6C)=3(JH*t5<*O_=|d|
z<5yMuO~>y#{!n=L{9-n{v8q(dd#a}YR+W2o{G*UPG~1;qzT&e_$9`2woKthIeX|M<
zsha<EoY8Su=l>MKQ60y0oV?KTxQ>76{8e#Zr=n*%NeZ8?nm+P)$tfMD70prA^pFbD
ztj_8<$IZe(1w;Dt90ki7_@khxjDf0e_Wz=4I@drs1Krn4l9J7ezqzEOqH4xsC55c|
zzBloGRnt`sR5Q@tKnDZW4dfYUVW6b}7^q>Op@EAH)HG1bKs^KX4b(P3&8%aft{SJ=
z@Klex6JP(CAe{PD?~5+X(m)|qs!5Ke6l`RmiGfQETw<WHdOJYX^S7$mrm2Bu2AZq-
zyoV*(lhxa0)zX(;7&G6%<px?AXl)>2Kp04>SDRGJ+>NqV=fa}%!b%xvW1y{pb_N3*
zTxsCtYUy3o(toSQY+0_lr0w~;5(R3I?gn}gF;J+AoeW&1kj@6WaHthh!})x9rgv8Z
z-N=^eY4&X}uHcQ)B|Q!FGSJUJf7Rt`14Rb<80f8vYcC#9w?k2}!b=SFH4rJed~io$
zyXxu7)+d6D)UE-l!9W9P^{}RJvz+lzwW1*gh8nO9I0l9pxW>R51GgC%ZeWCg83tw=
z7-?XXfr$nt85nI~jDc$nOrQZ)PmeV)&cJvz{*vnHjn&h-dUmgo;~Qm)JrrGM;Qi|9
z(<qv3;Ccf$7?`Ts|Ff}V3gxv*wp_a=G0niQ)zh`}($fu`sh)miPjSm%`aiffG0VVg
z14|4nH897(Tmv^5SYTkDfkAha%r|hOfsMn9L|(dAUb^LV(qOO4OD|MYEHbc|s~93H
z`&z}L=BFB8Ui|g&qGbk_8(3*zm4TZLtWb?_F>v4al3lmWNab{uW-|Ij?|%jttfp!;
z%(+#yIb5Si%qv`ymtJe|7rXF;fvpDaFmR`V4J5<BT?Xzpu-?G^2G$w4$H2WDmT&XY
z9Bo5mIV`!<c}B{}lS=Y{fp_!L50bsNN<QSD<v-v}|9w@_Lk2b(c*MY?1~wabSj}D^
z>C<`XE7m5~|JwiGCrchP@VJ33>J{niQCQL$>93m=@4huLZ*Ac=15X-w(ZEXvwi|fL
zz_SLPqmsvY9RFzp&lvnNR+{RoYvt7A?#z9j`u}V33l#T^)Q;N|Y}RjW;$;In4Cn?7
z1DBoYSV}AVwZCTI!0N<9w<e};DyEFsJ!8N$V5t#W&Pa_wnuBy(ooL>o$Ti^6hZy+N
zfNvl$@S%Z^41`oy1H0(P4a5er23|Gr8sDDmy;Cjf6$OW#?O6Psq?79Ox`8(gJWxln
zaUMV99F_Q~PSIO*{s!Kono)IUq~1|V^)9t^O=8{*={);>+dI3Z+y|T*=|)$UtV5dX
z`q;oH2EH}$9aU%$J~i-#fiDewX5e!*Z@X0S=W2?t418_i8w1pYp(A8uvKmGImMNe*
z{ZO^|djmfh_=VbQV7GxE4g6%_XEnk;q|4QiL^eEF)UZanphkK?jdZ2&s&^Vv@SB0(
z$+1(tzx!0G+_p7|zYP3spnL`uGT38auYnT=P8#^fz&-<q4IDA}6K^<R;Gls+YNh8j
z>bwQrP$RvvMw+ZUYT%fG;|Bhv9{$>&E9Ll<!s3o457$Vuai3MGQwB~O$jP8g2LI9A
z44gG^jt=D8-Ys4)rtH|I;*bJ1Zi%8uEum}%xfztp;3rk2f}N<5u31yH%%D;RH8ZG{
zLFEjpWKcbWybOQJxm?u@s%7L>!jY-Bl9HO~V-0eUK@C;EdR2lH7T=j5<+U@YlR<+F
z8fH*8gL)a%&)_1CSy{UAt7@jdI#EnU<?Sq~aa&?Y&Gf|?9GF<pYj*WU8PM?8Z|GZf
zlC<<D8C;sdrx|>fLDLMHW$>n&t9b@3GMJmeJhso^vJ3`iFeHP^Gia4Tw+y;x&^m)e
z2JJGqA_I{@GK03NFNe)1Z51jK;geF8Z8E?ux#w%VSjNd$W^mPo_U$w1Z~-qMqVPfm
zJ1N*%!7d6ezF0<~e7a`fEs?9}kwH)ODouTONWSfr!POb`R+TK?&@87&;e9eFR!B((
z{S?wy!Sl5BSNH%0+3S4ezzhams9CtUU}y%zGMJLV4H;aM!SD<wskb8(9H-#O3++c`
zFk0bbF4T<8V0oGUab|o5*Q)vn3SOt+L<NJ7E06#_lQXzp)ex^cH#IebX{tCYgXs#H
zk-<z7)9imdaU12l_)NL;eP^o%a}>OMM8W(FZp>g~1`lO$ld4>m!RibaWUw%UMHwts
zmCG_%lEG4ikG~{m${o^*`An;sUal&M->i@o8Qh|fl?q-~D&>1?25VID!3=K8U~LBL
zGq|4=evxy#s=qsfI}~!Kf_EwSf4Z?w74OO5UWIVL`~JTM=a>0F2JOd7lK5;;ZySYq
zn=;s(ft7)s!NVCmlEKytwq@{W29IU1MK$|BE<LV_t81p8P{?Lwn@=kI<qURYuswsP
zGI(0maF*v4@=ONLUZ{C4!+*RfW%Pooc~QZa6#PHgm1bb78cji6K|?`y%qZmi!ixsA
zaa7UE@P``VUTD*^NltJ9e<g$P0v=@$U%;~p*{R_9(Oy;fYZ<(*kT(?MjJq<pr<~Ni
zw=#G;gLg7`H-nGV+xMsya})XHq=S8*`miu%)l7dte%4HXs9p{2RP-^I+^6Uh1&KWI
zcjEI5zMwQs+-c&=48F>sjfu7<zRutq`XUomOnjTccNrYX;AjTlXYfM?f73`a*qy<T
z8T^*P@AQ)y{G7or8T^_7BiR3LObwV+a{VtwAJt5=xM6NdyG|v4WbkJOe^IP$N<P>i
z16@9(_RpH>qI(m2Gx&!tE`x&^ys|D)y;gc(2K(u|YNdPEN^jhhm|s|QD1%umQf0>#
z99Byv-s#WY(d?3A863|b$3z(u|7LK4em;XU8JtwaoXX%doyH%%Io-Hg(uec8rB?cE
z2Ip9Ran6@>_%&Bi^CP`Cw<_7YK2g?0u8Hy{DwrroR`8_UaDZ5sxT8by8xPCAWv(fx
zXrhvdO&3PXsa#yuL^TtQO*Ao4-9(;=dM4_dfQcF=YMH2Q%B{hxm9A-G&__jff!x+N
zH_WMHqOOUV^HSf}N+0i1^7Z(la(5*zGSR?9BNA{|qM?Z|h80|_AiEGJ<UxrfU1H++
zJ&C_JB`!75)I@6&2{lwR6D>@%G|}7yX|7f%wPIDvlFLk7ZlaZmUp6Fm-<LR1D@|Ct
zcKVKj5@CXP(@lwdQ}QIKimBS^lnIhrQaeq~v@>yqi76&-Fma`c_9h0HNSo+jqQFE?
z6TP@b6NM(an7GPBCl2*T@6IM>)lTm|EZ56teeHBt6WvU7H_^ky$_hPLxo4p~7ffy?
z>D*B}9nCMi+C*=5H&J4u$V4BGyeUDYYEoEqMW>?a+hxnXCi<Dkme1>Nf+Aqe(}N{*
zKB=AFd0%26`D|jei7_Syn;2qZxQP)ahMIV!plFzhYfQ{5k-ZMrPFs~Ed25=MkX<89
zy!}98l#*BLn+nKYvU;qEaV931xQ?ryR5ISgwTeaTMdh5mIZ<|VVxoyjCMKJ>o^r2~
z9vT!U>ZEu6UfgL#s#l%#v){-mrka>$Vu6W;CZ?O1VPd|Czt$GcB$rIgF)^2HxjQl2
zl*Tf?PWq3teb|d9*%fut&NT(|s7Mb;iQlO7fy!_b7q~R_Or7*16N^o(GO^mk5)(^J
z+-zcniDf2u)~=b`eYuHO>ZAuPE_koufVEvqZZYxLoYYDMAIT{yejveOpPN#*npi_8
z(6Q)t6StY*+Se+`1LoIt(ueD$$95^<k*Z4hlDkaYO%0^cnOMhJOoS#P6Ze|9&*aao
z;%O7>P26u{vts50CLT1g(ZoZlxPgk)EQe34wNm=0YslS)8LCa{?X8OoAEu;Kn@3G-
zSCx;M{FxqXQ8*hvp^)?LdaJ^>DflFtp&}c++<E}vGbWx@^|p!U6k?djn0VgA3##~{
zf(xojGF~$AvMTOSkTs<W(M;$UYSOuKaMOgPYIdzkRjQlj7Qjl!globx;hPB5TWhfl
z%Ny5C|8PnwKw;f<Or<sPor&*F?4(dkd~D(q6R(<h&BTYQ*Xy)g6CWu2HkB9JrSLZu
zd`rQ%6?{iQj{L5P_b%Y?E99YJa>fnIQe^T+oMn-;j!#W|X5t$<cGYIk4w<O@oa%I;
z@0SYsimp!~WN-68=IA&GTlRY==Lc%Oi9IIvss=xr_?a$6;Xj!ud!t<Muc}DoH-+4(
zDt|Ze$A$Vo74nyfzc18qqJI>A*u)VN`%He&B~@a-sytxgph6BQ_<!-nQ4_~Znb@SP
zQM2fkTGFCVm^f)7Wuc9QQzlNExWqzZ3;&roW1^ykN|yA-XHA@=>#$H+O>|z7%2+6?
z-sUQ}qkmC3g|K~j3l%QlY+Ttw6$`a2)V3r6Rn@C%3Nq7J-NFq^CByS9;6kq&7HVF=
z&res!LL*hf?YpieH}QHF>MP_T1sf>XP{E58{NzvtHsi=lEjF=msfEidTyCMMg=T7~
z778}Eps9rR_(f78EicSFq;9&Eh1M357itm~gu=V1)5p+T|Cgo7SCv=o@7>lyI}6uX
zcwl($6&9{k^+PPQS4ejYJuGyvP(T{07B1z9Rn>FSLWOj)(Ah#4g<oa;FYe;ouBxV+
zh1K<C^xN}7ul@?@W#MWIy)6`7s4r1S9}C3_$tx$-n@?X0{Vud2R|j0c(-sC^zz10v
ztnl+}XRo0ahAF`jpS3M9{6fnS7DiscC+#m9V_~cXt62@ZS&eZP##^X<0(mEJt%V63
z^Lq^W9@klzXyK(d@bVk{WhhLx@N|S{B3y4_3cGl?*24`Jrdqhk!2$=<EKIj>yNx?+
z%&;(%DrY0t#w-i7Ets6n!W;{8Ej(ypgN1n(=37`};Wi5&jS)9mSY%<bg&kAGO{!*r
zg-iZPEVS_UfyC!ii<ekfYVkjZV}*sgYKWV?yk!=abC&-S)AiKoy@~hsC2p~>lAO12
ztA$k-UTG`-KAj-E4?V_1d{<X=?I8{~6(z-DElIU-zlG=W#2psyv~Z7wd%3Q|iMuS6
zKayBy;cl*Oir6z#{I#Rt_5R|yQ)(y+^-{U(EpX&UNBCp$V)X#=>aoNF7NVQQtHYBU
zsm~Ukw6NX6nMD333y)fO%)%GwvDw1I79O!Mqq$)5)mozQ647pR!Q&RTP=&lM-xSE=
z6Bf2AKHRcDu}v|7%O6}@^gNb$%EF5j3T0v884J&nehbfAxNcmMJSm+fA=mqYg$A#t
zw482x(WCLy<jWRHX*d=J98c`9Ftn0bw^Zm9Twh^W$k2@}5xs9nem+sw7d91t^%k}T
zhcsLG(t>Njv+%lwH!S$1)54915<4x7$rGW4*g~CiiHM>ZEg8-!vKIId;b^Z|Ala{4
z`0&5PYt*PHRjZPiaU!wH!kZS}v+%x!w<yrliJKDQ9m<;Y@IQan5U-6-zH8xlB{6)q
z_^rJ7fFr1hK2>7<$il}KKB1pEoM>^KY<&GiqW>@{+|Mk0PBpkPzun;k;msq&R~Eju
z@E1j9q0c4a8w)>J*lpok3oVZ&hP4vkS@_<<2LlHXXU&fmeo}M&ZsBJOzb#1qYN27b
zj=w0JMXKDpmx$ji5Wcre{9)lwz6w(BmJ$7iCzBP$9wqvN77kh1YvCWIX8SB0pm(h=
z_FLEo(RiYu?oq^r^~GTeM=bnn;RKD>!Z8a}Br4vP`eOA!ahxhWP$C_VBu-jbRxBQF
zEXvrtE=irT_;Z$$?f)rA<cx*07w~fya%}mQ&sAe`+o$r0l(SLZMv0BSHY(VtXhYaY
z+NflsvW<&uG_X;{MpYX%Y}B-|yM2B&8>MFwuu<K{-OWUvjSV8752aJ*GSOp#sAZ$J
zjrz8v?cM@W$L6mBVb)wx*9MDU^b@6J#BHm@o-SfvjUK&DCmPzg*v4fxF1OLh#w9kI
z*=TNK=jLQ%8%=Cns&Lv!QyXL{5%QLhO4adrqJ@n%M-we=u(D{LICFzwv6YRwM-%^D
zD{h{aY;7Z9<F&mB+B<vE1oCa9Y_zj+g^l@1(Z<GG^OJ3Dshn)zX})0bN*nEMbhgn&
z)!z%zf#e-Y6xir!qtHgH0||PnPPSBIS}P%4(^WRQvb~L7HoDoE*;@3lrGt8XT(Y~3
z{zJu@nZ=bxCZ8@VuC~$JMv;v^YIgGHv7BxsZ-H6hPZkgSlPIR=94(?#iGJ*8V}gzA
zYz(lGwlT`aXd44<3?iSammO|P$2C}y$0ZE0G1SH|TRI#**VuTok|5HuiYU|yXj~&~
zj8w8HH%3Zij9TD08{=&}wOou<O0uG*I6g)6Um~uxr490VG)zsjG0Daf8%u3WwsF0U
zd1RoCDSW0Tr`niC+GdIyY{vfut!IkqTmnUJW44Xet;Fr;5;Lhztppc4Zfn6DD%;g!
zu8n7A7ZX`lRS>RgE#2~sTyj~lz{XAFXAfC3%FcUeg;;1~k&QzaiN!X`?Md)?sJd8Y
zW4VnrHl(<1tgx}l#>X`UX}CpoUujDZP<y6$(n_VhydR%TuC{S2X`3M`pG}k-F4*xl
z8*5cFwxmwpNvYX5Y2y@?+{QW^@7wsm#y#X48Dhh<ai5L#Hh;noPuaNN#sfAUw(*GK
z;e$#iAEIg4*l2@Zi^Sv@1@uUpY><<iDY8?E&n^`UHWoZ;<1riCZ2VDGJZ_^!Yw?7F
zTNGrm<Y0nut11r27CdQ#yW8t41!42?IZu;;Hl9^dX0zvPJa6MA8!y{<!Iu8&!>C}%
zfrLopzewUCj?5A}Xu>vhYVyg%{L_g^y@aNuF#4I~qDjJ_+LsYOnJGfchHc|@8*kX4
z;W##28=g{ZDwS^|u=(FR5!tx9NLt@FXA*?OW7;eg$wpR5oI+n(OT4OPq#C?-VQNY+
z=q6w7q6ec1+vwC<ylLaJJn@!|w^i|xF+wg@spUh{l3z?n(jU@yeQ4t&8-LpPi{iHN
ziH)Ca{9@x%cDM1hjc;sxZsQ9ZU)uPJ#di7Zc=pAdsJ9q0O|pd#@o#N>M^maHh<|V6
z2OB@y_(@5vaZ9mV>Hlxl#mG5g*)`(+4x(lmv3iA|E&r-4`Zoos|Gz61o$M_BP-ORB
zB>uLs$Hq~LW`AO@jel$$uyK$kTu-ouBkZ%~rn8?4yhnx;m#+|ql#~xE*nSkktp!Jv
zHC=ZmaZHK$xEk$W8z)HT2&q?$PlCsjr>Xz+IS#rzIAi0ijfM^`c5u!{j)M_X%2jtz
z#z9#}dc4XGavd-VD(|3zgX@Y#IR$B?bQBdGevm0BZn}#~94(R0J+2D-mKRkW92cUR
z8l-J6!QCp)0a!epsNtZtgE|gsI*3Q*vZj`UhhIr?8?Ec09>*Cd>N}Xr<6)j8yK^gX
zk%I=R{?DPJ`LhMhA1`R+;1UPz99-d`v4bWKE_cw%!KDtGI%vttsmW#zHdhrb6n=Z%
zbaMx<))PeNJQ;@3h%R%me7Llc)(#R5@*NqT2?t;Nn@Fl&71IOOj1m7Vm)ldyK^q6u
ztF{ifACUvZ%M^>sjl`7>IyfkBq~C7upyx!vwQ$?&$eJahi-ST3ogCgGfwKO(wdhPD
zCyUCn#Z``Uxm^`}XG^lzsALazcQDAoU<bV%T<xH*gMJQrJ1C+Ep35n5r0?y+83*U>
z+nS^i6_ctJqCs7uR}ysE{ki;UGNKshV0}F?z>!;dnu~h4py8PWBUOfNLr9E+$que}
zFwDU<4#qkd=U}*60#`B0kz3LT2O}NKnwWfHT#_5pXa{2)e7~iD3>=*ngyS7tOHtBJ
z_sWqcIGE`0zklP|e&RZ+&EZ6s<>H;ef?-neIB__cKgGcf4rV(b6NXP0q<<=p01l=*
zn86u2mm@d9N?HLKZa8@_jT2L+CAT%p9d@0VLzN&C=81XKA_q4*;H#PC1lv=q2`3A&
z(7__E$i+1-7CTtt;AaQFI9TdnnFG&(Pl-FY*};<zwmba)hq%ST-3~up!%7FM9Ng~U
z4kfkK4sN5u97~Xgw<=Dqab$$g{eltuT9P_f&_7cacPjBQxMc`;mjlAMhoE=5hw4Yg
zc5pAH-&)+K;Ccn`SCEwtDC9u}H#pd+kcSl9q#)b8FgN*#gGb4k(}}GP9&_-xgR1@W
zwos;5%gC7zJu~g%337g+&_{@EO6W8bivB4FPdj+d!SmGHt;uKD#=*ioL4v7!+<e*n
z1qUxWFdSqYyhO|5p+JfCWd}QG?`IMeB0bEIfkJbjlf$h99TD9iw+Yh$b;G9Ks;Jmf
zZ>el+<CLQ`!F52q<rVpXgV4b@4!(5|(e@p@>)<_QbXf<x$VLY{Njcf>;582G;0*^u
znuvqr1P?Ow|I05IZR!Yen7T&|C-Jo6w;Z`4zU|;0WuD{-4fA~mAJAj;7GJQETYy^5
z=MFw{@UeqW9DJ&JeWoB!861IIJU4pj7K{{~?U#y6Un%d$t?+9HM@!_M_#I8a!EOgX
zDy^W$poaY5VD%CybWTm{`-#qN2B^K;Hx~Tr;5P@gT-0{)JEtR64$eCG)4^X34mvnQ
z4mjB3V6TIJ9MIu>JVe}gG{J?_3SOBb=!f??*ze$gvW`0z3%Ze}wZ&lvM;x4VaEi3i
zU7SuFchIq>AaabFJXazd<X^?Z6ACg8-*YHInh8(S5T+&n<8qEBaxWF<9OSsD>Y|#9
zGA_!x(gRd-k?W$ID?>Y;jAjiM<y{a~RIq|80|Oex%w0KbKu=!TMHLqxHWn;4d@HBA
z3wwZcN;O^NsR5xNN3P-G)EGGhH#lle9T#<7T;bwM7xi4!chSs6a~Jmyk}7(Uiv}(l
zy13ZIr7mtNO*L|Hi7TU~CN6)oJK5O9;d)XlINHm%$X&x|B$|?vNII+X4;8d<(b7f2
zg-|42=AxA=9Vt!qau?hGO}sr-w08N!z6A_y*d^&ox7Nm$=ZKeu$aj%)F|>hP*PL^S
zwl3PanB7fo#GH$PdV3cgTy%HQ!$kqv;-ZU-t6ZtQ)Yw87Tc?RmE{2UvQY$*EC2&{e
zTds~sR~I}BcjKhX<bK-IMK2e9IlGIiUG#S48K=aRCRXIiQ(m#c`zUzbQ7KRcjZMbN
zW`i4w{w@Y8`Ukjj%jT1I<<`cia*&I`q{@|h`cMTKU{kB9+eC)D7~$d<7r(j~>0*?N
zhg@uOG1|o#7t35McQMw*I2Y4h%wTsH*SffY(^VG}IG2l~?Zv6`a$OT$T(8KR<YKam
zHSO}Jl^3%s2tux6ijo2mI<Bc)`}N6buH3Tei)K=_T+DZIBRT9!cRI%fc}`p4Ig!X*
z7xP?@tHjy;CKn5oD3`ie$SxJcr`^P27mHjxUN_C@ei)rx;)0dToK#;Vm_=cbNkQD~
z;x-p+U950%i;I;mRw;Rry{lbNF>WQ<9Na9RZZHTZW63~HdOKCl#X1-FxVV#(<_QMR
z6f4#8E*E#Z((q|tEZ*zlJ{J#?svhECSFzs318P7znfqO7eRLPJQ|jA}BZ&<zHo73P
zccSRtTx@pnu#3P&=;9F<kGgn~BfEG^5xJd9<^o-8aq;i*#1jf`Q*bMd=pu1!q#%4!
z;UCu*hL(ET#d9v6SKXg+@vPz%`SW&DneTdm5>HAGw*7E|OMaP@xX@h~E<Ua%N?mBK
zbQC<j@{l#Ug5U`vqm;@ft0xK5g+-mOEQextg?i|?aMcu^3(n#z9iacAfCwXU*v02A
zzHpJHdb@bX#k($Ep?bS`!^JN0>aDzk-E&`a@w$t*ruJqMhT`tJLcGZ$r>igCrXF^e
z_C;YaSx2NOPrT>ieTtj<b13lvJ%EdkxCGi!Gno_`buMw!B{E<jPEmeBmhMR~4?q@u
z=HlMN2|5t^+b_whOT`Z^zH;$3UB|J+H#A=6d|Z615VLNYmE0M>r>mUSo5*e#KPt7M
zmj2}8XBW(z@OZ*4_|>xFH#&d1EDw!6{NdtH7iV3ZbMY5>=;8<s$Hg8Od&%<=;sCX4
zsrZN1S6%#(68l{2r^o0kGi<CUa!?875S^YYvkJpjNYmIdR~&P3oPL%5=XipaNZ&%e
z{ny0_7bm%*Q;F)w60GFH>DEruoO_D@T%4gJZ7DX~BAr`~hcX^&d8qB7tcP3=<vmpJ
zr1zj2Fn3qZLkqQKSM*THLv;^%9x8jN;>lpCDv?%#`zblR_-0W}RdN;%4o|Z2lP02u
zCnJh+V^GtR1PnTxV8=$CMI8?pd1&B)cwG<mJTSVeuZoN|S-HEZc+c;`bY(*i7qi}z
zM!NCJe3~bj+{DAB9<KJ#+e1?i%{+AS(Ah(C66~R!hbu^chs!)9J>+}1+(Ro*rk;d{
zgKb1>4++w<M`nt+1j6$;o#zW9k|_@~(zYJjcwmuA_{xYR!|4RAjFojn2M+}vo|z-s
zdomF*W4ct-j-;nZP_+tGucEZ9?Bd}n58XZV@T3#&>dC#en+M8;(pgzaZu$(TC*Lf3
zdLSElg6PFXEt1kH^3cb_H6Dh0;768J(f%F=D5S(gUl08}ncbrGT{A{d_tG8)dKk)a
zye?enAP<8*sm5d%&sIZ}AgJ)ngme61o;)cK=h{bj80}$<hmlHxqZFj<D8~vX6O7)+
zdNPJjj8BeJ%Wv9IOyFo9Is_;PFww&#PUPbnACo;??_sxxA3aQA^54Ug9=3a!>S3CP
z4W7);O!qLu!%7dUD0C0AJlyEvCJ!SHC1!h=tB^S!7;sVw<ikA5daO(b&8L2DO)?#{
zz{5gHlM<w)CL|XrWm`(loJuVAu!Qv#s0x+q-y+TbW>3aTw|Jm*R;b3zO!mA?@Wf4T
zw%Wt39@crd$HN*Aw|Q9W;r0szP`<NU=G;O0UEJm2ZVxofI~Ann&{AHzUY?yl+|ir5
zdasB3JsG;+=V84E?_h#40|SYl_9q_j@SrERY<8j4sN@?xJmg`Mhs|oqTlgLAJn^uH
zM?E~|;SsLla>)T6cIb+!{1oNmig<gjpyoW`VXKF29+=ZUUP+oc_w=VcJWWgSkfnZl
zc-DjN!BATIoQLPBnVxhPr0@zeMdwdre9^;89$xma!$T=2?I|>+0CY_)wimDgpDC}V
zGD`6*54IY?RGL7lsJ)H{my4ylo0=q%zSKa3WS~;NZ>LKQWRi_sqDB!XOLtQJJiPDW
z1J32)H4pE2a%Xwn!y7E_O}yn{_9*O9lfFro))3~%WZRvo%UkBWtt^FuTwEYJ<%)Mb
zyyqcjEQoXP4?TS3;WH1PQ|RifDjmLuPdxt9fCOtk_3&XcnUnv*!<QbuQ;X$3^%ck2
zm-yO~u{{U>#>2O&hAx)}f5PuQ{NV8u%GA3~-Ul-T;ZGiZ_E6u)MLvG<@GD)Yk8(bK
z^YFWe;~xH{|M&2xhkYLQdoua_7rA#bv6nv9!ydH|Ccb#I%&Q=8DE{Hv$IFw>0lFzq
z=2(u=Gyj)3q*V8ahr^WSl;rwT3BscapEX9XcvS<zfc%7qlXU4m%KA9v;j{;yEY5mh
z{*8+CpJMDCwZ$0^M~)`;=E`%&In^e|hdEVzo-H8fNhDXtxURg93O=g)$n#OrM<pNC
ze9+HV_EE)`T0|GY6DX5HM5_9rZ$H&i(7Un?RLfdEYWt|6@R~k2ET1EGUL8_cM=)(p
zR`99oqn?lH0|kBi3&WEQd^GgY*+&;27yD@BBjH2%xWq?eUvBi5`Do(fQeWl+Tli?|
zqnR&H=yV{|ljgoOcADOo-NnI!37)W8`dHL9pB<UGy4*)AU;2U8KDO>l@UXynlRol&
zwD-}0tEeGTKHB-x-?s75)|c7Q?wbmZ&g(O}qqxGyl|HV1BuU*P<qQ#-Wh(Gd=%W*P
z;!72xSrO8)lMHTxG|a1fbR|{nsK$S3jx_CVKDztp;iIQ7<91rd^ZOI0&dM%SKk~4*
zk0Kv^d=&dg`xxk>#7AEr{eAudJ1UNs5kf!C7^dPyg6@$a0U5}8=6nYE80=$+kD)%8
zieVtZJRAK3oe%df9y8f%xQ`J&-te)@$4DQee5~_vkB`wl#`sv`W2uj^KF0aD$;Sd8
z<CV~_^D)tv7J98OV}J=hXw*AL=1rpW_c7bY93R*FnBrp^W$NPwAH02=>f`iW@oX1y
z9=_R9%<wVO$Iny6EFY}DZ=^``pB^h@+(N-FYscoy^)b)Ke9|)<H>zgr$TsXnxX=eZ
z;Ua36dPST}<LVf?tZOZn`B?5_rH@rUZuaE`@hxQavBV0s3MwkqmD<SD+-hHLg}3@x
z<15#FG;y0RPm8zvxWmU<*3U{>CnVn(h2H7oZeLz4<p%|KQEh^P#itT&%gWoOdwtyJ
zV~3AYAM1VG?_;x%hkZQY<3V3;pqt1mAGIn8JC#FHH~M%;iI1BCE2+$s`>yHY5g(6I
z{d_#{<1rtP``G5=NgrE$JVB+UI1-|E6TypMlEkfqMM``-X{JSt#4~JmI>FHQX<wyE
z4kUOdwQYOyS(?nm<VQor-FY&ABz(cgi#}fR@v^kIJU-`|39J-73fpKtbRWKtz=z=@
z<HJ$hX5>H~5}H0N#ZMmjZN3^H_G~S1RU6O8?ezs8T0yAnDC=XVk4WLvnV9o772IfE
z;UFjEdG>Yc5|v6>F_}s7SWn21<4qrL`S{nz2@282J3e;%_|eC^WSx&Me0=HSeHv_k
z@qv#I6-l)8kI3`Aa)eK4?8@GW(-J==i`WZ2KKErb$V2_K`u__9=nTK2n0$QW<69r!
z`{2bZY5UFxkK2qxKJ6oA^n(vZQ+&nZPgG#KscB*l{lAZ2NopqbC+)7S_>DGOPx9(_
zN`V8`le1IV25l(#iwj}?VW#-omvP{vk$HQ4{NrPvkNvb(A4hx~pfR?Vf#pH^z_)rZ
zxyQ}%5OrX#+~XK0yfI81^>K`5J5wB|Le`O)1md*ulXU*{mH`?EIPK#<df)&x1Dx@3
z)<^jO6#|^|!MnV&0hs5>2~Z}GMY4q%7-q(D126-|c(q(0^I*Irsu;*Kb(H{B15^r7
zIl$=C3G$&*em<Q^wLp5yJO!%<crsV;F)D}^Ed>7_gXYtueSWO~wFA@(P(MJOKpt>N
zFqcLy)m5W$cCzcDKt|LT2WSw;osMbVh5?w7J|DF<3grG+SY0#;aA|-<01=>RfMx+&
z1ZWw^-Jy9P*-J^$Gc#~v_;*==)&UrAUml<p>CeySfru9ke8ozxA{ofwp)I))NWYpN
zAQkZU#pIP7+mOP-rlQF(=~c*+D*{{@puJiG>*-qgQAEc8g#qS;m>;53fX)GS1$Z++
zmjG7<SQKC}*A<{!fN=rF2k5Sr*(<=+0eS@Jsft{_^!%q1y#o{l7!+V|fIb0=1M~~f
zKR`)<zKR3fFKGBYBU7m=E|Gp<0RQfVEvw3XgvBY##J~V;+lxc1#E<|(1B?hTGQhBa
zKWi?oAz{<R{I<E&>dvPs3=d>(nbtarf(S4sz}NsEwv+CZ+~$_bhtUOZlZjj#U_yY|
z0p<iUn7=N-4T0PUCI*-k$c>fGVRC@$15639-_AR1=P_hTK3qU&J2k+x0Mp6aI$}nE
znSng=*!vRPLFkYfMa<%=&&s%hshhdvXMp*E{PKr4?>CZf5H|(VE;!4zv&4b`3j=AS
z43n6Ppj|8pur$EN01pLN7GQaRdji}W;AX0KfVBZ`XZrw+%86A0RtH!~9rFvwF>cnk
z2H=>tk;9kD@z?NeB^g;!@px#uyRY0d?+9>bfV%?R9e{!Tx&S9ei7a=D9H~p(jtTDz
zu%2Wm#e<4e%9KpLKfnV4YK%eu5rVVR)ocjlDUV)yQ-ICX@Bl9ccsRf#0k+YCsCxk(
zBk={|2@ZHF@pynOioIMWPe43-zLBiBRW+a`o_spViMF%XlgVcTJQd(+ilC>AK%ODP
z^_1OC3_jcKIYk(0d!F`^lxNJB0=yi+3E&3U5uh}HPM!oZMx{(OC0UAtr{hcjGk_Jq
zCVP7dM)gbu6KPmpoG%i30sH{j06Qt!0AYYAKup7LA|n$9OGKD`rKS-dxmdiy@u|<$
zNo8wvL2SmiZ_tFB3g&9g2gc0By~P?bFhtD|?*w=^z@7km1H2dD{Q%zt_%^@?WcX6?
z2|X3HH;^AteMF8ag!S@Es;SA(0(?$wSA3(e$X?2tqWm(zS4yT|Q*(+%rzZ*qOiez$
zwC{HTzE_R^4DdsM-2r|M@Cz+^lK3&ePt@mz(gxEv3$~{b(ewWr@H-#;PSdU+EBR0g
ze~{FDG9g3w7pa{t$j`s2qI(i;$L0JJU>|*QfSeHf0~`qO{2*~Uz`+2AsAI}G91d_K
zz_9?wY0GvVkG&7wilbc1gyh=g@_6-c06x!OBc}Eq&~QZZr0T^FBu)ij@vAn{cm2m*
zAOO!AXO;U}+(l*v%7iEzqEd*;A#y`BZzL*&@*^m!N4XH?L)@IqVJhbOKBA(k=Xtj3
zTu~(iFFmV;s2-yAta4RDdA4Pjyih7FwUi6z*K`PFj;PlhQ7c645Zyv_4^byX-4MwT
z`623ss2`$9DA{#Uhz6nj>ZVaBJxRk57pr=@9e&p|VVt}Sns}ACBt+v7L}-14mxgE>
zqFIQ%T)`w#^H56gJl-OdX{DASE>p<m3bLjZX}*9b6e1KHUQwh%v<cB6L_vtQp*&*H
zvaSr#E|gcCJhNO8f)|~1uq3H{2tqnWDu2fig>?QQC|MRehw?h$s!(Q-MwN&zAzmFL
zk**=mCzJ?#gy<P!M2L|gdU2&828I|EqIZa*5Ce!T5`D<1ilQV$UxgHhNWWfiYdO&`
zME_8lHrvpNHJ+B-@OxLnG&?G-qt_Zt8bWz?z9z&_cC05uonf5obb|3eaefiUujz(|
zkRGg?7!_i4h$$g%2r(waSgz&o#H0}8xUVI}wIL>ipw5gZXL<?V`}2dh>nI57PkHGc
z`HBcG7L!9<A4(?BIdHDkjl|Rt(?ZNvJekhv=E@jmW{4S~i~wbHy}a)%a$u_9^RStk
zqqxKz+FXT@hc||}iP{*ULWBh&7KR8zL?ITDq>wu`9t*J~#L^J!Lfk_g2(diG$`GrF
z>`C0rRg4t3gjk`9e~ztAS4=JCv1oOOTSKfRRiXU0a7~EY6w|)EHc1ym?lCsFBgCDo
z3~{%5#VdgK>ZaRNlIbJvKFooCb+foP#C;()a^WGqhFBls!4Qno?ho-m2<8uYSf*$g
zq;2r>Hc)d;CRkiqS8NKgnWWYg_l!z@IIjA`As*op6uzUbm_4fc;~}<$c%Hfx;t4Y0
zNP-M}I>gox+d@1UVta_El;ZL9&DdsqHR<cf|2}mEQ;W}pcs9gyRO}0x$)85y#Skxr
za6`F?zZ_x*yN57Cl!nkk=phX9B$nSRQnDP1E{h+Q5b`9&fY4HE=7cyhOV~6G$V(+I
zhXJIgUil${5W^Qr2e|G^8I!~zvgAyNZ|EyRyh2YN;@wbQAif&nb@D32Yc!L3ayy=Q
zsr)ct7rg<6GF41%Al{@7@9KAYT=lor_|#sG{GQ_5$00rm@qUO8RPjRvKT?p~<3rwl
zs)}Ez(LPi7=L*(*M2dih`DKV6GsRa_)bg_UZHVva;zH~V@qLINLi`cp&k(zn4*wkD
zmk>XO_=!-lg$r!DUw-EFYlz=M{I1*)lO)tJ%8Lra5G9)sf2m2iqQBKDs9pDO>HJTK
zeIZVSI7$CcE+xdF5Qjq?2ysw3fkCgQXh)aS6GuWE4RJigzafr=pk?v<J@TPxQ^AXG
zhDOAvpY29?D#Ym!XG5G*6aA;)8IIOQw&BBVD<?vk2)Pl;MN-yfBk4Lw@X_Id%FkGc
z?u8L4iL4l*QiRbF#zd$bp-O~Qgf<bXMyM8{euRr6RF9Asp;m<2kvvBu0uvfFBh-lG
z-p3jqe-2Je60Z~C$7P~kB+nFeBdI(!M$3Z+i|^>E1`!%YXc^(M2p30a6rp(}PwtmQ
zXdIzwgl4KslL(h8gxbiy&FV`HWK`d%9`2u)Wb!8-i58K>N&n>$c$TC?ZXKbO!dc12
zi3lP>l9VUqwMc#>Awy6tNHP9t8=+l<;s_-Xu844Dgsu^~MQ9(PLnNJZmk0%9%QMN2
z5eg%jjh{VQ7CS}gOtK#@Ad^|-b9%I(g<cg&ugIO0Ur~0C&`a^5M})2OMNb8Z@Ot!W
z4j%EZvL%<w9!~U$aLGb>A;R#9c}t%6`$iZNVQ7SY5&BbV5z>(q*5C+CAPkH!NFf~U
z=t7xNkXd&<#jukDQc;IRxF*8z2qPk}!6?eBhP(?H8Oftor-|~k)h|l1<Jbt}BHSL~
z4zfDJwGn1Vm=j?_BtP!DF5-n07+J|<Y=p@Xrbd{?@BgU=mBf??H>d$A_b0DUl3o06
z|NI5S^awK|%#5UG<`o0AZWf0<m!NX;qdtDxH#fq(2umX@Q{&I4&yTP$!i^Dbiog$q
zNHE=U&qO}Izgk2ocaY9}afBt2%mmWeGU^~)9^vK)w?<eKVFkHVPppivitV>_z9m9M
z6}GL8WITp3(k{whnZK;7xGj<yp|z?RTXH(SBD|A~ituQJ$0FQK&AC!M5aGcH>mu9}
z;ob=MMOe>XYCxXj7;>{CgM1D`+a%2!B5dT^n~R5O6ptkzim)ldX4U@M8>M$86UY!E
z%tAjxLpYP*XONFa*b-qICu%Lf<ar{Jx3s)g=Jvfc!iyvG_#pwKrY9q8k7W4tlxj%{
zvi-9Wo{M0=0_PPxPjN)JGmE>jcrn6D<V=h;F<y?agJv6}PK?qBT7<76d>uiLU_^L5
z!W$7X5zGi-gosx8W{$-%BRJfSy9*vb7`nR=ya+xuzqTkCmqV=x$ne(-POi(L$+H+o
z$SP^R7Rlo_>D)<k<Bb3-Bbjx-eCz-g$t&6^^KZK%yvdbD_=Jm6UEYiEeuTG`H+V-u
zx`lTY!aro-37z?b4<ddCB6lTv111nYia`D|&%@yD(+Hm_k3siKTc8bo9?3hqFCu(N
zpVmr#D!_xuHxx&N;}QOi@Lh!OBm5cRuLwUx*iAnCo%l5Z=jz%>{21Y<2tP;og-B<)
z=bjfLMNi$>I8OW);r9rCC`IC;DArStCI61FC&GaU2NgH=M%bqiYQ;ZFH^?iFzn{+8
z&yz}iEJ5dXD8gYXPZe<_!ZEdqql#vRA0(SDv`K^$5l+&d$0!%$RD{zJ&PB+H@t^Vr
zWcb+#XZRO7b7b~_8cv4uOD$$R%EZ!&d8=MFmMJN!I-`{GF)GBU9HUB%im|*(U@%<J
zQl{A}v9i7leyYZ(79%ePVwssCG1X&id#3_d`p)De1LGPoYR2G4?E4@X8}Np%mMS(r
zm8ct|UW}_^bd6Cz#zismW29o4?`jaEX^dtu8nPIpk(&LI7>#3jN5-Q;lNi6&P47<S
z(6e0{OQFz{Fcr`|MvEB9SZ+WqV_X&^5kthdJmx<|!5^JO>loSLGFwYE;|(Lf0pr4%
zjprWCA|ctr59iv%Xd9zLjDi^LV)>oPFJo~<jB5|dkF2hY<++a?+bh1^JEa`&XgbE|
z5@X7<IfaUz(UX&%V({+{I>%^!os1-@Z~WG)Ta4};C&q*rJ!15XF*L@o7`<X#9ZS0&
z7^63r8KYl}{xP^&^odbIF7*(_vGi07su|ZYqu5s!YfTjcVwp&%b4#=DQh69;o{*l0
z8{D86gJTSdrN^Uhp&|TRH+@Zv7kcJWnj>SGxErqEh#34ZjETEZF-FH26JsnpHWB0K
zBF0Foq$+an;K6)+jNQ|cM6Qc5F~+<Y^J7ekF*(Lma)va={3q?b$>%BLzxuly5_3b0
zt@$#pn;zr$ieeVmek?IVE#X|An5hshc6N+8F}OhDT<Kg@&*F`ow5eDeV@Zsi^O85k
zSP)~OV)ddJv;LK-Ge(L0j%#U*Wie<GD`PB=adRwh&~AyPOQ#f8#4<_9za!ud#eizd
ziNvZHt7Ew}Y#$={=KwT~+hT@8I8DQeaeItAC}pa5j611U^pG*M7<b257vl*oD#krA
z?v3$Kj7?P380%v^7-K^$Q*HOhcp#Raot!Ew?d7+9@*d%nCW3zov@yn&{ClxEV&vEX
zn`1m2<B=GT#$Y&2d#4BBM)p{Y$75`v0dAAV#lDOrxsYoo37$T-#dtEt^OR<c?MfB@
zvkIP#@l=ebl|4Q~6`CUVQ|==?6f<A(Tnzq|4NZ)(7VZ5-(nkMJqgXC>D5jB<JTlOK
zG9=Su7%_qvA^9A`jNzy@7CB=TkQlDZCT*SMpI`AR%~kbY3_q4mhVc)XNx4K6#GV9m
zdasZ_)Ot=wAu5UR-ii-bR5>Y=ey_)PBgSVjK98|0#+xzTkMTi_x0FRwrf<jcY{k)d
zH~mhGcVl!LFOB^@)qr=_AJSm^%V6nKTKx*~5p62QCkkikiNO`WsAK~U^+k*?WBeUs
zPmHfPY>c01M_kT$@eQRgSL~+l#rTfuJyB#bsqbU_Kt5zrym>irwY-1fAV0=n{7GK@
z!sW~nzthRkHO2TXma#Mqhm~Z)sB{i3=+78`#WMMscR+6O-01hl_$S7{F;2wT7h`{n
z!!eG;I1uAtj6>9LwbwBCXK2JO++V0gM`L;YdR)CdcAkyf3dlX`43paoGfu|x&_u$B
zpHddY+0Vo{OQXx8R~F}D<YaMa7EQA#lSSDq^0Gh{xmlFUqFNT!vnZcMg)FLM<px?Y
zi%MBk&dRG~YBh6r)E`E4JkoNrsG5~IA3o>rL+SKr>4Y`1sF{^^*B~qXPpz!{Q>nUH
z)Xt(#R;HL_z&|-jSTBqES@61+neB_RpyMLWV{F4LE@rPRF3HNQPGdD1SIR%T;INGP
zny4E7wPv#{nrCrk7VWb#1Zt5*>nsvkw9MkNEH2N2GHR6tDZEteo{XjQ>ZM7f$f9jl
z=5~@<<Y(noY)TQ(CM&;#A{l&mo6MH&veI!~kww9o1W#KXh-6WiMJINL=%{+JCEW`J
z(K(AQS#(!RCgoRU(KQQR=#X-rEJ%DeE~<w3eTe9hm6tE9As?>JqBm*CVqz9WWKkA_
zvlx;^aTX<6^v$AQ7F#zJkQj23>fJvp6_xnFECyte&dM`LjYK{Nr1i~Dia}({;{`l`
z49#L#79%Omto-VXI}t7Dnk<HAL1cug%%5INoP&?fVjLHh#h5I{X60r_SIhu_e+DI$
zFpCLU?B3OnG4pvf=A@Idn4HC;EEZ>ReHK%=*eqsd<xTMoS-EXZ%VH{D^^qYii*y~+
zRsGvnh*??8&f>-_Zpva#Rvw_{WiekNbF+9yPh}VPrQe`aVz!O8vp{vE`7F%JxQiCS
z0aMlFrO%QqZYDpoSelie3-Vc(l}Wtis>n;vTe4V5o;+KyHj7nRtj=Oh7PqMZZ>8EV
zlF~^}=*abcFkc4S+<Itqx2rC9C}uLQu3a?X?kv`2@%B!<vlI7F|M_YsTI|GqS**|E
z2l9tHpTz@NSd>u~4`#6;i>I=9I*W~2Je0*_Sv;P_rYtsR@o*N8P`>Kwfl(_zQ=xG&
z8ewMdQFgpVkfbeHJdwq=ES}8DID~$cEw@rJ4kjoX#zovOm{Z!GmD>&Td(UL?Y!(?V
zt)6%;i|4a=Ig1@xWV?tL82_^wb!nQ6-g)&#-Q#qWV`&x|l_3iwEB{Q4M#@Sev=<7F
z56zs7&8)mL(k2Ke3zssY;$`7w;b-wi7Q3<tvIr^tEMCtd$|C0Kp38Zavy*B0`HVVt
za@G8@v|joZ`W*g!!S(--sV{-{xp@C4h2(nKw>C=XGxuIwuAOAPakY@0ELjq=B}%E3
zc5P&rva}Z^l)CSI-_k<+rfdn3Qk4H|#_xO1|D5-kGoN|S`<Z8+ZJv2%`Q$U*_;D4c
zl;_Vzi{)IP?<<`>w^Z6#zf{JAJ;f=?0GE@<^r#eZDLx}IN)eJ$>2ZCm(zFyAwP~*C
z*GSr;ou&AMl2D5DJUJwB(o|GiMjH8QS1G=rWh=#Q@};>v`#^erRf?}m@lB~5i%I`=
z!}8c1Hxko&P!7MR;IWlb{8x$}OYu`Fj?jFSVh@Q%D^ZHQl-^S^=)s4^VP7fst6uy@
zt5Pa`>0e86s1yfPzFCWcJ{{zm4oSUuXg(E|9Xw2%d_->DB!u5-xJq$cRsO7z9C!XG
z#b2d3S&9>-_>(4LyPW>>VbJDp_IkElApVDf&GjtCJg*R^N^zRTq=r0OLC5t>DavT5
zs-c>OvKr3OP(edQO$KDjY0{XN*Kn@NoTpNjJbiOMwSx;BG&tvLsH`DR!v}LkB@Gv-
zI%WHa7uV#IM^!Y*FKBZ60Y^Y$OQKcRP(wp~4Hs&tse$fLZ4GraX*p}DloPkQD#Ma`
z#7#wnNPN0O7im~|uACBHs^Q}Q;d6<GN83uQ8fa*!NuzO@CcO?K$%pF#S7>Og;dTwv
zG&IrBRKxWeZqRV0#+#PWSwk1%sUcrOTMg|r6lf^a&`QHq8k%WnuAzk{Cwg3}ChI9S
zOy_s++fo%Co+w)Lt8!}bSCtg;=jePM2IOKBO%}0juVLc(a#-ZkK|@CkofPutsuGgx
zY7JdA6l=Iv!!;VZY3Rw0jLq+^p$AE{GM|FMZ3br*ke(_xa`e*VR+io>J%5xGl|CB!
zY0{_dt4UMOr-Y>L(U%z(UZ;@cPVXBv^w%&(!&nUiG~C37Gz`@+kQsG8j;IdOFj$ke
znkI!Q4|@*NFkHjUnvC|0(0FBmj0cX?xL(kiJ^i>?4ho}Gr$(!EN3ozt+@fKeCQbdV
zn%q&(^?HZ?zlI5#)Fv`|q9&~tg@kn`X}C?pWQ~8YRWwDD>N!;dCpEOdJ!+RQGo8KD
zuv)_!4KoQ)!_yj`(Qt=`*&6QEFkh4B-R{&dSHoQz=KOzjxLd<K4fkj`YZbXono~t`
zhvtz8+^0#O?J+j3GWV<W0hKP$@Sw`D!b2*vP{YG2^N30xRVnAQtndW;uHh*f|3Bm*
z1&ZGym8Yjie}lwl`Ljf?x_Dm0Qbn2PG%VJzM3W8)b>xjfQo1N7%QUP|99hmzbrUDw
zDWns!QqgvmN~vN8$LGJGVXcODHEbbM*gFlcX?R`3It|@9%T{fzSNRPZHmVGjaZK$J
zo<Vp;k&6_2m7g5U&8=PXhK4tltn%ku8s65hS;IRT4jsrNN}E)>Jf2U9<-V+M|CGDR
zE7lP2Q3xl9_h|$)Y^4pUDYj|Y&H?dyIY2N<Kpokk;X@6k21~<78cInt4F*leY#B2o
zD2<p;&F8d><IDcJ#Y{<%zSozrH8>hvB_}jrB%r5AN-EJ|=(IjR)DTgjbad7cYe;Cp
zbX3%lYREMFO5`<stYN2yZ!~;M%ckK|4ZAgbq2V)9K*K{N;<*`e?$0SI)qIyCIDc|>
z$pMH?#g`N?x)v(^T9eKje||^G9LRmI;Ri)M24jEJ@RP!GpN2gee%9~{O&_^jS4sjU
zjiV$zG18X9DD(R@93by%iho4`1@fRK&(YAm|4qYT4W~8ytKo<OcvQphij`#6F%8Ex
z{HftD*4J=Clb+tI>x*b5?ie8$OQeTzQp4Yx+}d$U=@FHSp3grT=%-O(NjkbT|7keG
zCdP|$I?CwMVh}iEWo31oqk}-&O_ae3IuhsVvf6p74y%>dW%!YX<$N8Lbkx^zp^gi5
zRMt^VM|B;TC{1*pjw-s0$MRSxba0n-RRw3|Sm`|fJPtK<)X}Bjah_FEM=c$-$+$t1
zGTeH^?r_MitD~NdM+#)1gEcSGaj_1eBVWfQIxf}GL`PE{4Rq<Ea|!Qq9SwC{rodA6
z7>VLszLAbA6!MMFc0nB_rf<yp3<xm2Qb$gg`zJ|!^07cip^i2>+UjVgqq&aOIw+a+
zky_|zrQ<4H#<*JQpxlzP^dVV7%8({Sy0oH1hW<Q-hq~5I$A1?HKJ9gM(9uzsccG9P
zOiAr7I<D67kdB2Uk&bJ0+^S=ej&3@->ll|O2I}acqo<DRb=;t%m!f1J9es85)={kE
zT4t2vM@~&YAw57&%1U(f({Y_5-I_u9+__3>@Zqj7swXidJ~!&<uVa9Y9i5wzyf^96
z31l5-UC|&NgV_<Hs$;Z{F*=6na>_PB$4DK+Ri5iaRGgbtp07r!j5$NFFlgFltd3iB
zjMp(im&So%C<^&F3V<jWo|E1wxk*$flEN(tI<*tG>6olzwvIb>Own=w<zlLi+jTH@
zN^Ga;n66`{4qkFHLzf4x_x_XPStlaQqxX#1%+lq`#T~jl4@eQ3qhqd)`8w`X>|o`)
zblk0D9vM9%{~jIpDj>{LJSb_zgnXnh+^=JSE&~e>=yG+Hu}ua{$gBr-+_PQE@WUi2
z38iB#Th#HGjwL#tr$*?Y+&-b>Nrf{fJBxHYrQ=y@)9D<i8|7|p^R$lls#l=7dxl)@
zBJJLDWIgx)E7EZ<0m-;j=b?CclzWYi<vLdAaui<8?$h||Sfy$*PnhI;qrq~3=E4ot
zvuA7ZqK=nzyhh>Iu}(+Jqq&VbUe>Xm!dy-8*}zYx3Lb2vKfuZ3D@3(b!K*qxn<;}}
zj3d3F%YA@v>Uc}_g4<NsWwPLH9h-D)*71&xEjk+O(m#AxmnR@-FqzVm<RN`JUE6eQ
zXEhV=ns{Hw2h1CI*T4=PA5v`%6d3qOM=3d_<G2n@ht59g_*#cSwbJn^@zG)FuxZa#
ze<>=C4v&IFfo~vO#Tu$upd+N(>hhd5WuCz_KFo9AFkZ+{I0Wd(XeIiKog`_?0%kte
z!NG_g3rYP6_3>^guAeJ&K@r`hdQIByR$qOg<4Z+<?og$J#~qvBP~~;(W5;!Tr{jAa
zKk3+`jL#41+x;8c_T66PN1DDPa>Dqt!k<IuULC(si)%?kO>t$({2_9c;ed|ch>|is
z2X*|a;}D6~Sw<i!mSp`A%I(1%CvID3<<sRps^fQEPQzu`xwiO2#|c_a1GNqOspBu&
zPXp&0IH}`r9cO6R4H?({hkB=jfi>n&Q6w6O)8uA(@e)sGugd>Vmq+{<St@Jb90TPI
z*<v{Z=NdTAkf(13pO7boDRuNHC~rJaLl?1vfvtt&{h@NYQOQ6x1Jw;&V4$)g!w7i>
zV4$iYBMemxdCFjKp<vvS!wSbBN<JZQvjj<9!;orKlZ|ez!b}|lbqzE$aGAktsZig*
zMFuW5aG{|#IF(2xrS+h#&Tl4HzS#OD1}-(wzyOyjXpkwH)QihiFPa!=N_<qF9KXVl
z>ekqheE;B>oH$>pz>*y~L&nvGO1VXf{%xUwW(GzX7;T`rfffdO80cxBrGZukx){8Z
z3s)IvO=t!>8YnW*#*jf6Qm?Inb_UuT(oZHg8H?t_k%c3*^qdLgXpT0SbIfnrHtTGF
zDF@%K2CgyC%|LgBFo#9X?$0Va4{6dN;SR}O26`LlZ(snaeK=Qa;93KH6hJoJ*FcGZ
z8w~I;X+J{_Qr8(W=s_2nd1kI>FRF;wZ_dBbkRvZ2zg;<!lzU)qGBD7<Ad=C*a04R@
z&`B6#V5os%hSWQfm)j4{j?UbPH`0KpB5o#+{*~*t+#_n&6~l&MjDfKR<{P-rz%2&G
z8JKBcmVxmGCa8W*Q&gI0;5Gx34cuyA5;<N&aKW8Y%_%l5`4j_F4cu->>qnk)Fr_J`
zwde3L-H=l}J~IqC=F;ZeVPLj_I}OZHog%Gh+}NqP2JSL&FVkLf5V_mHJe6m!3GE)0
zr+>n?t1C$d?|uUh82r~rJY!&ifd?rY$8rac<Q_7x(7@vco-pvRfkzBHYTz+L#-r%5
z(`Vq=@oXD$?5#qEESP`Nz#;=rsR~^2B-7aoPG{(H^OI){JZE5?f%S?tiw!I{u)@F+
z1J4^+YT$~YdCN$;y5h$(xh7=<583@ZSFAL!%D@W-)*4uCU=5{u2>6P1hO{VHus)wD
zKlx=y-iroaB8gfQaOGvuY{AS10~-yzVc<<#0|T!Zc#VW2FPex~sXP4zZ%m>W$_4i)
zM(1;`M{H^C-ZJnu_1C~=Lq=|Cf*26v4m3L9FR;;5Io>|Eg{-8gn`m!htAT9>YMH2Q
zV!MI&4eU2?z`zGI{sulau#?7w#@~Qrz%@`xWd6z3zEM~PG&W(tP$euhsa!h>Ck>Hz
zUWGe~Y(oYjhRl_LDbIj!ATkh>yyW{B85bf-p&?Cf?OWP#6H#IyHKfCqDf!{Fg2ZP{
zx(YN7pOEYZeloDfz-MH!fv>56q(3)*8u-HC-!;l(9lNOucM9&1Tsupi`TB}Amlbhs
zy2gn7Zw-8B;79hQt@z%+4~Fz=IQ!!bglE@|xkmHap<G8bS^k;yDJS-l>HG73F~DON
zG^hIvIjN^=lhg;Ptu(eK&NFeyz;6crFmQsV__VYbhYcJtaMZx>w1mfU$4R0pa=*$k
zmHDNtczU@UP^jI18u-gV853nqoHXz^u`=)<8!~W;`qf69rc|%bf3|kXS%In0v<(Gj
zdMzm`XACg2u#A+Jb4*#eoCyjce^U1NFvIg=<xNyJ<uRxVCMudZ-$W%-p2xg^jrNkG
zKObf!JIabY6ID#Wgg-p5nu+Qrs+tlYffJ1yCTg0vU|1eY_)t(;&a{q+x+X3$aj7Z2
zpw_&#hN}jqJV{Ysr5BpG$OOyzT&yzOT1LCkfb~r@Ch}~nqTu$G%S>FZ@{LrwVT7E{
zG%?ZCL`xH`Ok8OqXM$_=%}fYW2B`B*6qs@akf9q+nmE`M66aHLGQwf2xhdVA7N(Rs
zDl&}{Im;!atB8h)A`@*)>4mm6W$c2|$W6<HP+^YrNIRJ5XyP^#lTExnsZ1vmec6zS
z&L+B;xY|Tl6W5yPW8xYU-Awc_(Ua*k(On@=))Sz_r?Ti}qPK}+rblHVrIZ<>$CP5g
z1uqU9#Iv7?>r9L^akGi*NjejQObj;hM;~#ci2*7@LiIO6$FF-gag&LGrab9jt<B%E
zsgQPzBPN;tab+>Y#84B%ObjQe`eKAB1Bp}(E@YE3Ja)=PIeLyVG1|l!Q;s;dm>6eb
ztO+iymUv}e94*G1m|)^ovhR3qqA5pnw#9F`X_?>Bl20;mYIQ!R6;n)1HSw5<$4%UB
zVw#D0Y|+GY6Eg@lPs}!P*?7UF+gVfcXPRI-%fyc61$U@C73WS9a}?d?QU+EP-EHD7
zQ+m1VDaC+}9O-kfiTNfTA<InMXX1Xs=ML4&#RDc5m{@4yVG|FU+znpD!iUJ*fr6Q*
zT8jFPyi<#<@FoXlI3{whHLVr{9Zyg@Oe`_+JRRUx<rbNErJ7i5;wckPn|Q_qx%sRq
zk7H2A$S;2Kocfua%#qI5jmck1y)&_%YGq<M*<s>EQ`*UuCRUkPW8wu9s}=ppAaa4e
z7CkG<z}cT`DXtsx_qG!+nOLW|$(~Y3D3BWo$HW^Z-XvBgUN!L=MUhH+L=LZ8hRXRh
zuTSA1OXa17dCSDxCN@*Y>&Ozqp}V!ol(AgKqv#5<e2a<q2+hK)7Pgw$W}<_Ijuy7l
z`8RRI#8DF;kTnzu(%-~~CO$F|nutu4n$S!*CR`Ib-!_u2ooT`_Wl)GzrK@b2uuZx8
zKnf5C(v9P(N0VYAARX$6|GLV{);R2P2RLsEy|G0(&RJp;33ZSJr#DD5b&<$Se5`bn
zYO+%)4zGhac_zm_V_ehu+{7*u-<kNHd_R-hZQ=_PUn<MM(S%KZWlC#IN%-2tH#A&#
ziEl}_@{)se_T+hr2I2=3zmPaeK7TavlZibX7S-M}Qut>R97njMzR$#d69-NFYT|&>
zVvZ>ssX4ZiM~6)OrmWmyT27+M3spWWWJ;?-XY6+q$EZFQF1B!-`fH-Rg$fo<nE2Dg
ze<seD_>0Eh#A$`_-zK<-@DJ5WK_h(W5I$E#u_5qYCjM2VSTjMCu`s&2oRyTbP}Y*m
zE6kr`fdT3prpx@f7S6Mz)>Axa`YKvD-$E@5wJlV#aDj!Y7OGjOY$4B*mz!0wWIU7F
zK_>DF4p{haeG%_b?A=`utLm1dXAMh6kN2tT<7%psDTB+A?{zG>2dthYC9SR{13Nr5
zP~XCZmfW+-ZJb1dX6F(Mms-fTP+*}^$8yVBm1|(3p@qvVTyCL>g{GD~_swoLvTy|v
zn=NVB*pf3EKD=D<N((s)!je{<DnK@IV-lSN)+CDyEi|*_T&bOf<`!C5Aa1QKv{Z<-
zvT&6px3kWgTg)jZ5##)kX_19CszO@}jJUD_AL`5HQ$%}9dKB(`qLYQr7Uq$j7P?rt
z+QKas##!h}ge~;7xLFR}*jWqLTIge;hibZ)h29o=TGDSX`%w}1S`@21Z3yk>>F0}B
zPCHB_8O>nYPknong@N*OTyNn93pZNmZ-K&AO`UdU=97UKph_s5l(az>23r_zVT6St
z7KU0FW=UU#z{yaK?-YBUf~4e+v~aV9F&4&JQbR{6j`JjS+cEj0EinD9fm9G~q@=KM
z)EIAJf`u6tW~%N?Bu7r<CR@0b@^d)Hna(6ju4djwBJ>usj^?IVm}<%GOt%x0Q@QDu
zJUBefl4pcj$RT)6({i&cxd=|&=2&uEyTih43wK&_uP>R%=_F?>bfV^3xXZ%bmYmU?
zz4L@xf3Jo47M56e-okwpISY?ic+|oJimHV9kR=1W3oJaSB!qHEStZU3Eg8Xn*phx7
zsqq-i-QuFhEj&SvkH{w){Psx;PZ15JR*NV_Rip`h#=^7Y@@TQxlJi7L3(4}FC4(?`
zP0A;HMh})+Sf&to(ZX^ID^#8#O2S;p-i;A!EUfw;hO1SE{v`SMf`zq;j|^6jl`mOX
zr{2<yU$2yCg9WrM*l2;*Q@m`+?F}6LnZCwq)FT@OyuRDQn-=z2*w1Pf-e$)wd}?8n
zh0PW$3pQzD;a!57C_b{Vg|?`+*hUJlM;rp!P*vF}u8dPj-=}QvDBQu%2TCjY0jb?w
zbZ=4cAr)2)TTEGAYC*H06M0Ks0?Efz2s5C>bqfA;Xi_YMR5#T@&yp6H#=%!V1C^2j
zZ~xFfCW~plSl_vpmN~VMDZ@f!r2juFpP_rs$9Jkvcv;G47CyJ|orUi$?6R=i!WS04
zwB)Ew;*gc{yaTPrM0vl*w<`0sg>O{%D_t#EjV6u<K&aPL@E<6y7Jjm@hsH3!%U<?t
z5Pl{CgYb(b#|xSW)@Q(zZ)sx>SU6~*x{Vq(ezkDO!buB%Tlh^$_3u<DWpWQ&IAY<b
zC1*6ef|4sE><)u4$CU)0pb?|gDG}YK7yW7BFALn9$*CM$q$&7^iesU?jS99j?9{B&
zq%#e&g)_v>Mmbw*Rv8;*Ri>zoSld(FaGn@`hd9^9dA2;8Nz7?Wx8ET6tm7$w5u&1v
z$~N+BoNuF&jSFnK=0&CB#`62sbtsE?5ZFdl8`W&UmR5_)l$=A+ucpMFsUmnBxTcL-
zHX7Nu!bWWyb!=Q@<6?s4`Cl8i-zhG%QICbZ!t_|KzRECkLvu|ETw=><8n@auv~j5|
zZ4{pdD#H=&GF!%w`CP6tJY&_^MiU!NZE2Hf6W9e(gK-!lcBKs-c+c4oHv04t_jN5|
zT1fadrr4Njqq&V1d}X6A3oDA2Hrm)|YonDd=Neb3w6#i$RJ!v{L2t92jrO*@JG7UL
z4mLX4xW+~|8=Y))w$a7L)i#R9$iavk(nw+I0@v%i+BlnMN-A}?(Zfbh8(jZATSDq_
z?SN@-1)PddtU7hAEtmW_|0=Q3&&Dtt!);t=<9ZtdZ49z;gDnj#N3{MnZnWh}F-I;A
zd;@Gb%-y6?Zu{h6ZB94nTrnMNV~CBRwp?T4-YO!%J%J+#$HrJ2x7fJZma!~u=43j`
z#%SLEZ_9z3y(VFqVLHyncpJCcm}Fyut)iE<+?>xj9TkTgkl1lLD!1|T24b=;-3*p+
ze*%@|b{o@dJZs}Q8`FuijRiIyv@z4hEF1G}+-Kts8?%W_T`|wboi^s!xXZ@fN+5X*
zYA(6JU1ZI~#7#vD$I46UD1nq!*1yNbz3M~GK>722(o_8l0A+*v{s1X<so*CM*;r`f
zX&cYjc$i$<QTUjR$89`f<53$_H10R%5Nu2qPuO_U##0p3_F@tFcv5Z>W^){usf;v?
zY?p2%;d6q?!ErHLwDE$CwKkr&vDB8A;jgl>O!0!(;;pc;T;<O)i2Pb<%WyZBIaVvm
zKUOT(kj3>S#a^`W5-Zzy#l{bVWn62WjrF#4t+}~<gN=>+ww$CYA7*IZXe2ovy=vn%
zTMkUz)iaG(z}a|<U#0jw#oIPEk^TXm3$WS7J5*Q?wLQFRV~dTy9sJ|qJsVreI|pMN
zY_qZ5#w89eb?`n-hm8|9{<N{f#)md`+1PF4BX-k9K%ugs+0bpcHar`K4U?vzl5lKT
zHf(mJb_r*QJZCy^X#V1B1aCg4)82h}UQ<Rb+6Z2g?o;2dk)eagMr<RaiL;T|NC|&)
z5wA(-!6-UN`dfv}pDH7E+W3@Rqc+*{rboUyQD1yc&K}D3pCpe^vF6YH#1}Tcv~j@3
zK^tG$_}a!#Hul)~#>Tfcz9)GVeBwX|-`U_NY>vmrekAwv3wT*BvGQ*gKil|)>R@9Z
zb&wa+jg<9gw-)?xKdCn}pLO_?m4CHy$j0wBj@kIl#$g*rY#gQbwULJbNd#u-SF<ud
zVaaiYGe7);T2Sl%%6Y);FB>OmlO0rY@HdHLql|;H4o=xPZR20nYeFCzEMfW|O`mFo
z+k;6@mYn0DoP+Zmly~Gr^;}0@oX&DS+)Goz0ZS@6@>`ymn_eJajXILMz(HjPwH(xT
zkmsO^gK7?{JAi|#sxmLcU=!>zvE?W13(IRbsOf+}2$_XMppJvO4lY!m)Ke*I)_3sW
z@H|%FLkJfs94>a`It9NitzFW<K|=?{4z6`@nS;w6v~|$VK_drOI4E?`%t2!ZO&sJL
z2uGgQC#a?lu5{%61_Z*U`yR^WJ9x=0Q{c#>D?g9PXC(Q{L$cB44q7;9<=`qu?xSw$
zfR%Y~Gm-i8P_8w}wWO$xBTwP6yvV`Qe)9G|c_L3qU3&*z99-?7gM*F^I;onS9r$l_
z?>I_Ez1Rv#Jz{ZDR|h>D^mK5IgKiGGtA@DOkvMQBMfa65%vO3i=&fEc?EKHN{CYLf
zhd&(*axmCIiGzL)u5)m`gEs$lzWjW_1<gG}q_Q)AgTv#K=+7ob<Wt&ja<KSdZh#|a
zWCT9Y0i~1=<#`BOIhw0nNet!NWAg1V2g4nVaHNorbZ|4}N_|549Hlx%_wQS+B~NgV
zb#RM=jSgORFwVhv2ah^<%)tZ)6CK>?V2*=ZDWWs;r#iS@ab%K%+Z;?*`6&)QuU$f^
zI6JkUMj>%9)4?qEF<<Z!gBhy1KkgDgUn1HpDWZ_vLBtjp&1SoGrIjFI=Q_B{!2=E!
zP*fbuqudS?_c^$Sge?~Lvb?dpv0=rKJZ9!QAj_Cx7w&h!xH|I>I(W#ziD7vQRpsX0
zr4AD3haEhk=ucj(-<!vFA9t|ucJYjZXB|A@;7JE7>kD4Swa7u&6H-*3QV^ad4tqM0
z-30QSgXIoZkp2#q5Y<lNc}k9hW#rm%sSEG)lak3b2>x8@V3mV)BwYuw+QAwJYaP7k
z;FIp+1qZCjI?K-&ypXEa*nHm0${oco5t9oA^XnaKph$2p!S6X@#jd^L;8h2^9PD=R
znuFIJXbyA-Z#a09Hr&B>2X8ren~)v6>&TlMH<2dG@;57yAP_#}!WKtP_TO``Rk7ox
z!TBVJJa&30N1D9v-~$IAQO=L#cBl$`OCTRAPL;V=ian1<l~N^JNlh^vm<}Qbu>;G2
z%?}*}4ji`Pz*7*&BhKImaCT*>Vnkz4n{xa~W`&BsEJ>);WKd0f%6?rbG6y?JD2h-m
ze9XQak$())?mnqUBpO4<pHbKpa4Iajz?t<I4!(47)WPo#zH;!jgP$Gz;@}$x-;xd#
zmFnU<2j4sR!9h`B8A2mNi34FSnkUnr9PFX-sU)dH4JC$q9qe;(z`;QWoEq<^5j&Xs
zv{D5cc4_||93r(3NQdD!vZjkTOjNI^uy1S|=8ve#tiPb0IOfRF>bR0CW_aM2z4(Jt
z>flc$Ie$@u984>bjtA`$qc_Z-q8WEE*Tr2f{&nylY3?H5#Tf@>T-0<?%SBli=eU?K
zQslWP=i*!!6<wU~;yhPc+An_URNe*q!h6Xoxbjv{KD^_dCZdunQ+kXnxxkfIO;%Rv
z<ffvE3%Izgs=TA7s*7qas=IQ-KbJ^qxLALaXls`-D@lsgc2UPg0~ZZl`S%=pE!1^U
z&qaM#nrN<2U+jXn<zMLHB3Eu>;KMTrm$<mpm4=rUn9`IH_+_j>3|(B#9&tazIH~3=
zZ|urr3r$u1CayFTwBA>`czIb-&c(A+B+MD7a|JF6U37EN-9<B3-t^niMJE@{U9@n~
z(nTv5ZCtc<<&88~xoGXmzr5j980GqwDROcA-yEO&|IW2j<?a7hvZ9u()<G4rLT9%7
zPp*s0+pDE+GEd5Pb>;t9aT%-Tu)J$rsom7C9;BFyu|(KKFOu5DU>8GN6uY?A#f>Dj
zi#{&;x+qayqdZXX=+knTBTf3bxK5Qbf4$1wpi-{o9jsk4z{O222C_#>ifA7OxpEn3
zUY^uVT2bbQx)|nSq>Gzf3@3LE=g7OlErm=+C~WB}6Y?k*qg`|voJT38w2yH?+LFQ~
z`#2ZlT}*c|gVN<<qKhdmrn;bN-0ETy#Y5!@gwJG!8(*;t6gIYUyQ(ma3{`SMgJ0BB
z%yco!#cUUMy7EZW9qj%g*)AdQt2wS5CN5lCbbBi~>b-lhxZA}%7w@=u*Tp?9?sc)o
z#S1RxySUE<t35&LQFGaS7Z1C5z{LU=50Wg$a}TNXmD*C#>Z^-B9&zP-_E8s)sSM|*
zoJ&%XdEVr4LO3I>-;*vDxp>OO(=L{}Smxpx%9x8KE}nPs9QEs9j@OKw`;Rn7i(NcE
ztQ<4dTT719L!(c-+{FqPt6U6ttPB~!_~c6URk!UO*r~F0N>;nrFi+N8>*7U<lZ#he
zIxtwL#QvGF<tS0CNoK8QO;`S1+D6LumclMGMa|0MRTr<ZkZPhl1QLO-UZ;*s7H_Z@
zL-Kek?JXB?lMWT+0{15Miqzh$_|D80GS0;hE`D^e)x|a!t_#n_b{Frv_{c@6QuYsA
z>`+=j6Tw|5AG&hf=kr2MXiB>c7p8)#E1U3LP@X7RE^L~h+T!v)W$0#1s3#oCPd(AF
zPKi%b;NmkEpSuWMMASqY4HvPCg!bx%{FLl#EJcWd#1VmlK~daEXv4&(N?@4z#KnP&
z1v7joGrL^ucJYmiZ(V%Bo~p`UDKRDl2Kkw?=GUrR{3<1lBhGiOT!vu&dv-P_4`To1
zVh_J^@t2FA$@D|HUtJt>@r#SSF7~<DuOJ*yJR-nqFBTC!0zXJazJbU8TmI(au#01)
zn2RGWjw*!N7qXHKvGVWiby+!L{^828mH#PoLTM25>@Q)SB!x)_59K}l<Kh(Uyo)j(
zPSg0ixK(|{EwAkLPpk9)Q}Aha%6d4*Lpcwm-sfxbi4wa*8$wfXt_NCa4%rnvRP>PN
zp^As|Jyh~=frrX0943a}D`?M2cB&pRIlqnc>fxcPhiV?Gdy*sbl^1lDk~KVOw`+Rf
z5XM215>833<DssHt9^9!QO`qt5083y%;Q;LT;!pLhn^lT_Hc=ZoCo3IQV$J0H1+U!
z57E$*I@L(!FY~bW)OlPIy4;h47uVUZ@X%P{*~F7h3pJGf149s35`pHjo3vE<9tu3P
z_E6-Z&{O{f;GwxEy=bZi_X9J-YArmp^w3H{W*;9KDXt>XS_qnVj$Ca#IeuNE(zYsX
zr_%N+?V!?*9y+N^XO*&k7nQkMrCn7@*6=?jx_RiXe)efrj@5d3=<VTF50g9;d$`ua
za1SFq^zqQw!}T6+@KEAm>^yNDX?3ya=Sh{}bL#Cv1|_&w&H?d84>x%j=z(GI{vHO9
zn@4ioc`oh0hryn-sQiBc#_flA80ujdX?`d-azb~OSDq;skK|7U|7H)PREE}Lw1+Vs
z#(C15(x)1$IDU&t37<hZGGaXO@i0-5j$ZMGwMBGC>8s!7VX}v59;Q<WkL9Kih{~`F
zQ&nX)&CfY8nc-okhkHHD_b|)D9UktYkgv?2?cq)jb3Dvd^~q4G483SJO_!VOmKx+?
zo`;TgN+<yA!ab_vl<NB^iXI;H@Q^3>{5;@E?|lLJemqAK@k2V*3rXQaxko(iA#Ztb
zXx_t0BUr+x`{~@{9-i><qlce7Jn3PPhYvjL@bHv}r#-Cqu)*Wa_ITFAG7rny?kMq`
zV(StQixnf-3JLo>rTrE`Mla>JwMCtpVg-@$@B-!8!zxcMnXU2gdaHuf9yon_x|y6J
z&EVlC-hNgjUi9#ihjo;M|2p%+H_igsQ+g2uzR|<W9^PT-#=|QfUiGkv3N<|MHA3_7
zmWQ`J8F}lvLEa$uhKDz0TY@*`GUcvv+6ua+)N5`8+N=o9np+f!-t(|k=@d&yv27l<
zdwAcI<25>o;q&FVNdi*YKlJbsHN`{bq11!sA@C5gBOVL|$|Y4*hM(9fV^PA31&2JA
zI3BJUD^G`c|EuGB*t4fo$4(;hz$REHQJGlT78(|cGz&lWu+ziW9=`GLiHA>>Xnmn-
ze&%79g7!HDqmx9HLn_nV3Nka&&-Cz>hwrC|EidKsCrQe-zV+}O3)QzjsFZ~in<_){
zXfXG9_?bq}M-3mpc-TwZ>)~Gy`#kLTaLmJT4+lIP^zfU9!ybNB5DqDn2!!o&d}P;-
zcsQzP`#V`yU0!R(SG1E9Z!WR@;o*b_Zq)zV!=I`eaX9JWFV%e#jeQ{(_{l$>^qEho
zl#VX@@}Gw@)N~&eeU$N0*2lR%&hv4OFL^g;XkIxV)86b(u2H#|mf2F&{&rE`m&UX1
zII-%{KIi+W<O4pc`nbSHWgmGys<5z*AmyoF95SdrY@MHzwr4?AQxNEiu)L;^T0UC(
zXyv1}k2*ds_tD5lT^fHM7yG!xM}1!!@C$uh<V&gMSJY^NVo%vM;&!Qz20j}4ph|We
zB2}JsxLR?UFIORDH6M+A6!<9g(ZoknA32`~$fb@`<C<(OywaDRIsd<vnsU~A&-cOE
zG-aL*HS^KjM+^3m$M6+vsPg4*Z^pm~hmWg#a80C(kJdhle6(SsK05g5=%XEf9?!K`
zDVISxm=Y!@nB}I6PCmGAp|cNqfJBuKj|0CqNydb)@zKr4ULX5>bobH2$6_B#eDw6u
ziyZMW-A8X9#XiRP80+I&AANib@-f&)UmqntZuHULM?W9ekzzh>AdiMhn($$U5B*{G
z<*aQSKpcDwq?BGH_O=r=mF)7E0n%&^@iElL2p=PT4D&IZ%o>t+Rv6Ab)0q~Pl?m-;
zAEQ}kh8U%K%Fmw@l9G&m+~Q-LFI}M9e2nMYYGR@<^{8-a{sbQjXB88rTgmaMVv<Uk
z;oHeRrYKNTNyd7DfsxzQPZ|@-^9&y|eLUb}fsa`}?(lIJCB(;UUxtF`DCxRW)u%=i
zJ_TT|FHe{<KhMWKKJN3S+kCHTk?>hQ-v{S?Y?=u0)%}FoNzR=g^zo37$9+6OY$;&A
z9OXHgr5HS-ns`k0?onUP+zE<pF@4g<A|Frlm8x@AW}fopY>wo5Ruz)k&#7-&pHj+3
zpZBrUN2w2u*i!s_tS6p6R!~rVtnu-Jk4y99HBhUlWk+(W6&y}F_&K|<*2jxJUQ!+8
z&voi8JIg%jK*Tosc-hAmAMdHcSA4wg;|-O6)yHc-{ubp(rHTE;n^XrMZ~NHf<17ss
z_#&Lm?52-*6@^J3t@71Go1u(WBc(~)>SLRa4}9!Unzda)eqT|N75F*p@aKoBe8Hf+
zk5q;b$X4BlLHhXk)Q9QA@)7xnRR!CJ=fn5muwBxmvSbi%&nVbjL~IE&@DVDMuGm(N
z+kx0nLN-zU_vh_Y<(ZF<RfdG(hkQ8r@-5TP*g+rP`uNVrE+4yneC6Y7)$SKQzNA%Y
zD4Sp(`B1P~Lipb(Xe{U3?^Ov4fAXab|H0?q-HIQ5IVm9D$)-I%ex?#FF8alnhdy{{
zh3S4D2WTh)v<q;MAJWhTxHP~aAHUHE2Phxlu#Y2T3Z<GDYAuiYIOgNH((B(zkRv%>
z4f=<V6F&a*@s}@ed1W<e8~I;36~#&F&Ja;yj$kzs>XeVuKF-k82hxE5>*GJw3m&Is
z9lDDgP|5~4CqTIX=LYh&Om>7FWJ;kWWPU~96#`TYP%A*~0Otp&6aWFL2Dl(V<p6mB
zssz&cWQdO`>z^I4n5Xbp3s5~kjQ}+RkPC!N%gGQf>+mhfEB*ffbpu>TXqDvuuF^BC
z7ofhvhr=1sVC9PfTpY-`1G_f5qo7CHAV9-F25MRbxGccs0YrfO0F44%5lDCR$^eZ6
z8TD-v$cuv69ET^4Q%wW3<!Cil<O00bU;Hw;%>9!@L4d+Q&Vm^>Zx*0=fEIzgp@rRH
za~!#dL(2f~4$b4p%W8ywRe;uk9H*Kd$rS}MF4QKFe*w$^qJ4l40mcWI5TIj#P5}l4
zxG6yA09^v~4A6@ttu5QSIzZO|*QlS}1M~>cEs+0ZN!!Adojq%N*?R8)#R2*SxGuo8
z0r~_e3FHt)PW26N*Wf&kVnmfL1T!-R=UpG*h5$79{S_ry?MC&JFbR#-_-bGv-Tol~
zh6XY+HYmX00E|e};UuYt1sEP+bbv7dMg$lc;N}3M$nGPOj~q>C|3CRXH?dg(17B>B
z8ZkD&xIjk3SaOR(?<2GDUatSr{||6$fO!G#2{4H$1(-$lksve0<N#C2vH(-mClmnk
zcUpky3e*gR8-Z}=Fp-?83fTnvK0Cmj>^r$Y0Y1~2h|LKwSIG(cOBG;e8QW)`V!&SC
z8(@Bb2Ln75;67Fh@Bk%~H^X-qQ(DL{b;lOv*oy^}@S#%776y1Yz!L$U4Dd*RM*}<-
z;PF5j1VW=c6Fzqpa)uJMm+7JaPX%~7z%x{<)BmRkoPrS=>yMo$S6CJYSVAd{aYc;h
z$?E`rgg6mmS%Bp<4k6lySP@`lfH*)BU{!$C0p6kP1y~c{g#fPycq8CNTX-?Rx<+MQ
zRzmm^nHzus+jR<g-gnx-#)d#%m$Xr(%uuKp9eRc69m>5*;Sc0eBjZl|Nn*Z9;s<z}
zLOW85H&ug?RW2cIQi`yd^7eW8aaV{f0p1HxN|>tMtpVN-@IioW0k%_dx{Dn{%h32U
z)IgX!0(?Z_SzJU>`B2Fr5u?hG#d;tE$VLE@mZ6_)%TfyH2Jiydfs9<yKskYoKhsK(
z=6--6Kp23_uLKe)QKU&HaFUneod(EgNJCTz@o|8i0S?gE2KXevr~E3w_W?c&@Hq*^
zw$$fzAa@1WO;V2(7Yr{$H;+>Em3s9JDPKp5!Pjheb$-v5;#*bDLYmnh0{lqK1N;);
zCuL{$sJHA3HLJ|vytAHCKl*h6_669lw2wxTpYP%=_jSduH2wij2KYO`Z#4b^eh+X=
zN!O78N2z+RmZ3E!K;GI!$vI9@32-97pNe9{lXAtGEG7T1Ku%Oi2d-dJNB#+LiV_&2
zT!_;F{ta*@K$#FbruO<z*<pToWRx5ksc2<GDecU2G&y=*UuI|%&JA&1C@nUH_H4C^
zA<hqRVTg-DR0?rHh-x9Kho~Ha>oR#Es)TY?nk!;tD?-V>s-d(hTrBJId=c4KBSg&*
zbwbn)(c@lGD@5&3t|@S`$@S1%hUL}d*6~BRdZ9dwz}RE`Q2v=9uNq@|afnMo<U)uL
zmxgE%q7lEP;tY}&vSEnJ*o(n=q%EJzLvW7FOydwuLR=Zj<xV2N5~fW<d3`jew=87u
z@<SAaXcgkB5QQO{g=ik4h3Y&1ACN>|Fjz2c8OrgI8HTtyC27sR56deG(I%AEl5og~
zwxQ$#$;Fzq3>`vr4DlRW578+^=MdvUj1SQz<loh!e~1Agx`wzW#I+&%gy^Ok?HQt1
zi0&kj`bmI{i&B<)hbRtFIw`+LhjLuTWh;F6ua|v8ln@U8<UK^c5Z9?ZJxunFh1aW}
zecFq7R{o8u3xq&`H-#7&;^q*eLJSHqIK<Ep!$J%R<@Mu)Q_m=5hCqfZ2rL<?G9zf6
zDoR_&y%U5#nxB-2F(JmPx0KcCf0XA}q`)oe6_?2-gqRrOz7Y3^xHZJ25Hmx}A~GQ+
zhqyh&v=CDikEVv8J9qYT`U(7&aHfZtL20~0dJa4QLaf;09hABdcZZl4;?59rLd*?u
zS17~UR55-<y73dvM#-`Z?iTlixL3*fd=h*_J_A!MWQL&F+yj)f5Kn~CO?r@cUL+n4
z@koe=$Xqh(HrXP>(M%r=@mPq*saeydRVNTWd_^F9`(%hkA)cc6g?J{!v!R?P@)hF)
zT(4(M<{7{thD$;`A3_gdgjh=BA7XQecS0;Dc|*J!;<XSfL#zt1HpGh|R#Uk`tO@ag
zA{2YauCZNah{;PK)`i#@;^h$Q71=jX@Mg#;F2$0ZB421gSb6e_{8tnO?0<8whj=5z
zTOr;iBUa?I&YOz4T$v?{`7pz0Qz+MJNvn55Yzgtcg3OZl*gN%#`K|2BTZP*~xdVrg
z*)*YjK!X$FLj}Avgcjl>rP>T~O57$3E;lf3$sr(w72>-P--ob6I3Yd_@fq0>!V3|F
zh(q`UPOX_FQR3$`EX;%oH~}Uh(hwQV{#k3*Prjuvu;$JXpM)|>eD=exEAsc27oUgN
z72@j<--Os5;)@VphWLs?K0|)U3Y2YTxVFw%!NNVASckm(R+%-LcfR@|#E&5khWIta
zPa*b%*cW0ybvDE=A@-89C*(pcC5mKceZ~(7ifFT({>A~eHK98hbST7cA%0hAlUavp
zf&v^-m=J$T?@<z`jg;hLA&%4D&XoQ$0aBv=4DlB^65)dgCqw*ArH(Kt!apHS(O^cn
zG{Wf+|I%DXs2t%xWuVGNI48mxrLgQ~nMhg>b8BI_2<Jwq7~%X#a{Rmq<s&czL^LYQ
z5fvgy9Ae1s5Qj<;h#PxH3iE9qe@3Vsp-v>dBSfegp;`p4XYupu5o$#8xIs<z6`fBK
zlSHVc3dvK74NY9#2=yY=kEARS$R#byT^Qk_2p30kgkl{w#0(#{+aN;22<;-Yk8oLp
z%Of<4&^$t;2v<bNu?rCzM`#kEX@o0PyPQCACjgnk{xZY037+f8k5CYyFarNagWO>&
zT+85FR^}$y77<!TXdR&_lJhTa>T9JyT@``Bb6IDMXfeD@n+S9u+p0Pw3(Ki59U^p$
zaBYM>5jsWa9HD!J9uc}kxSBMNa7`p{L}X<)M`7qjYIKwcu!I?IyzCjFSA^aXiX*wd
zodXTmTu3@H;%rKU`$i~<aASo25&A{Aj*Zq6H$=Ez@r$Q8&-Rosi5R~kWV*xyBHW~?
z$_)clRjxn{jxZ#`6A_+_Ff_uj2zNx79btHc5fLUvxRn4S+#F$Sgj-ZAqlj>XF_F}I
ziUd=(#i!zsym1l6M{;NQ1Xk`TXcKbpN&Cae5goQk5pIhxEyDB&lS#S=QzP6?PIZt1
z&&$%!!r_PH6uaDYO0O9aW=5D5Vej=-NNTplR~&Xb^c8nTm=oc?2=_<QnV%cs?g;ZD
zP<ZYlw(|sccia=<-U#y}^qeV=*t3ug(KDx{v6TlREQqi$!ov|BBtGTELu6L5tVXdU
zqdCWUB*LQ<trNM&DdaWrSR}`KLf~Jr@~Q`J86_DPMR+R0`Uo4yuL#dXSQ%kegl8i>
z7h!3HWs2sDBP@yVd;}^ogG=1mOCN@95fjGSmq%DZrXQ6G!f}?bq*tQ^Y;A-WRc1|u
z7ZlmwdZXy<hc87~7va3OBqIp0NUgnYjPP=Vw<5f)c=1Yv*CM=5-7gTYDlujk*eKcb
zMuayb>{1a+_LuE$im*Atdl9x$9;%3UB5aAIO?#J;c8{E(k$_|YO9+ADv@OE+2;8wr
z^70k2+7aQy2>T-JkML21Qo@h0JAy_9C-M<O0*qir@Yv8K(YmUzXr^Wgo2<M@?p|Zw
zQ6(;I+Df?&#cDnc)J0-Iof5J&itt&4&m+VUk_c&pEW#%=hU(8jF5y3kMA#Y0OYms4
zNAvGO>dQIBrxfN*h5X5R%GPE1Q>zKC^nDTG%Lv~`_<{9lA&=$0j_^$+Z|de;<GmU(
z3iqv|z<0{T(LizWg%hqHBe@XyGdox!eu}V%cBze&2V%=b#$QP1QDQH(o)jA;4n#N@
z;er^IWBeN75N$Hq5#hH8ha>zM;jaisA{?b`P<m$w{(08#5suN4UsaIDe==$$j+3Vi
z#Gyv=)d^LH)%f2}Tsb-!;S}|#m0U~un-rro^6#tiWH8}$gnyL`Od2f3jMk=1jIuG#
zi%~wtIkEJ7%EeM)InCjG=Ui37LZ0DbS|J9hbbbsnrD7}tBaDP_XsD#By|bk#FGiIZ
zwPVzY<<#u@+CYq|F{-JbHDc6^<;16YjA4WGsZDIC;7qPoEaStI>XeWvbz{_vaY>9z
zW7LmvVGNd2r|4E)6r;!HqKjiG1N=#RC|wO=G>pMTF?vCl5v7sh@>tGi`HFjnIhW_e
zwsDLmF&<6uSc0Z8u8a}KNMht-h#2?Bcpyf8jDi@0VhoN^7^7K?o-umGXda_QjJ7e_
z#pw2C_m(OxBCWUz9LsslRWat*DQO+cEj`Ro7uv+q+Az~TMu!-kV|0npF~(nms<6ME
zVmZ!I<p-;CSY*@HF|Hw4md7#@)%%ZJ#g~c*xx0ejL#5o(!=uxbsNOM(V_X;GdR5MO
z*0nMED3<kAX-O<C5{W~@)i0Lji@aufLyQ42Zi;cEszyxuvyU_Lnc>@0ZWS7_fibu-
zgMSM(B*suuKE`e2RE*&<M#i`~me=EqP^>)r6<Ikd#^@O1VvLV5Mm5K2{w=YLc#n-i
z785MpY`WqsXZ;B*jO8YIss_&p+!{+W!gD2)V@!#0M~vB&u^6|<m>J8E`?MI-W6V%u
zGo;)9SsQ-B1xFHjR*aJ4(*97G?~E}g#yv6ajWIXIUBolSJaV(L;ADXhX+mw~hqPl$
z>y*roQDKhYcHjHhS@jn`+)G*Q&F%|gJQ(AZ7_Y{7D8|AV&&60A<6*_tCu1y9nMYLm
zs7fDG>Ekh;P#GfD?1lWNVmz(%f);}qKBI*5SyjTHY?`vVgux$nEykJ{OJl4XBd^n0
z8Dm+D<rKnNJoQ$@yJuI#@?KopD85}4%PojsTq$0Nu{Op_G2S1a&u83({1^Y1rzj3R
zom&@Uy(%HKHz=BKq?D=*H<z;TH7ZVwZ85gTcq7J}F*e269OJDRZ^xKCs0{Hui!jFm
zQurN({Ci4(sfq8ZpIc(NOZ@FRC0oh6%7Q1O*{}Cwd_X*7n6ca&LkjGO@nMXuH;Rv9
zXfbq_^X=9`ih74h(wU^-(GBL1YQ?Z)_%Q<Fup*yabJ&n-%ZouLpCxR9Atrh_A^TWa
zL`pm;W5k4M8Y3h15;RZnag3eR)&%7ed=lf+82e)EkMUWI&trTS<NFx9V(gCbb&PK)
z;j~3G=`p^dDdQ3Qe8Ff*C$)k@kCCSPo}qc)l0hoU%~jeTV*D867n%|7{EX#%a8Hb%
z6%dLXsYK6#yk=y6FYQt{x#UOu55zb~gAn5+?SG6zF^<JJ9^<zdhhrQeyJ?_CN*=LA
zdd_?(x4$cirJ>`bjBWi9<3x-<W4RNXBF8$cOc#se(cel*PsjL|){+(2mr-&wr^`*_
z`Cp7PG0G$;OPX|-rj_!~w_cqR&My{D5VQd2CO9v_g$XW7P(DG01T_-WOi(ew`3Wi~
z$V<RQVS=rc;DQ9491#bGj0mSn0wk!Gpn8HwZ}~qbziJ}mdqj^>J6b=s%lpr3C8(XC
zUV{1w>LfDoPS><<f?Y%M7#qC$Nx2V!FuBd<&0%>Qoi9#s32k_SD-&Frph1F039d-c
zkjT^!mnYKnU6x4mOE_$f9x}a9f?~Ly($YAQ7Q0CTmT-$>E`dl;m`JfCKDj&c^V!q2
z`2~rT0e;TlEs-ST771D=n37;>f>sHxN^nDh8xyonFu#jvpP)m6B7UWQwk4s?<k}^2
z6An!Z56{Xa!UUZX6eqZrK+ec8RObX;68tekT%GW`gQDIEC@@`BdQF0ED#McQD$_%y
zJyqH(!I}d(zT(AV6Z?xk6!K~^np(o{t2}?!SKI&kCAcn;{~adB;zW+f6;I~+Cm4|6
z<^-b>+>~HoBHg*ciaUc68Kk8Kd0+IAV{U?>iM-@_Sb~vkbb=VJevVKn%Sj*3!YEOr
z6O2hPF~O~gbUel;7?*&&b_eC%lEB^9iE2)ok5`nRpwfl~Ww@_$5+O4Ll*loWYQlxH
z$%(v$gJ{sDzdgas1hW!MOE5i=4i5`wB<ciEW$|5|k~<R2PH<m>`xD%mU=I73U>=oy
zx`Z${k;lOAO3-V#M3U-EkCC3tJqhk5rzl9ucjYVED2}ZUBv?R6PVjJo2U+KE?jc2R
zW@vDjk}?zzE*{aKJ(5VBqC!2M;0c<V6fIIbnP5?ZZxVc);Hd;pQ?wFnOYlsBXA``b
z;H3o5C0LwbMS_(HmMB?WnqXNXBc;!i3uELT&@4~n)()xzSw_RicG(v5s}ihEq-9u>
z$d!c`l%NtHiql%sxuU$VWnF^x30_a|hT`T1(v7`P*ltYZ`UsELQ5RlKq&M}N>LzU|
z$wE53NqroW_jZC!l=G3|Eu}A1#?7jscM`m-I7J|AaZ7^tRHH<Uibf6M9`)@B-Y14i
z1wKfyBY{o<OYmWWj}#EPjz4%+N)u?RX)f*YHZ$7o<1{`AtOQ;HpTd*CQ3iovNf0-Y
zJ3zRlhXEY^3`jAa7f@^p6<C&!uOaCWCvq<nGiid1>X2Y(g53$epsh>rX@bv53N9Kp
z6rU-YP&-(e8%K8~;D73|Ihu$sDIT??!|-*2uM#;Qr^`WEqOVH}^Id}PNy!xFrT8Ji
zj|u)ta5BM93HBuTEx}>(F~Khh4kq}O#&D?En_z!}1MEc&u}=Y{AhBJBkx6zI9-=j_
zCU0iux*K`Ty&^{v9Ho6oa3aC)s*lGKxxb4O3X0-!MLmwo{7J*ec_N=bS^q8x<nILk
zBq)=jY>HC}PA52{7{}SizY2%{s6>UbCK<;$5dkvfP93Drd`^mTshoJSkPkEEQ&dP%
zFGc+n6;qs_qFRdTDJrG7AO%usdn>2XyyT^*!a938aWg7^azG~pb|?SZzExBCr>m6J
z8Yya~sFO;w!$FgCkXk8fr?OupIOhedUsu88UJ;^qAwNuUMT*8LE>3YtiUuhfrg&zM
zTxxuuTO(3wuG!FKDK1aZD3zlC_lnc1vx6iNJp_(xO;R*fjpnDA)4AN0DRL=9D#Ka)
zmYWI~Nn=f-U67)X{jDkC@M)G}R0rvzv`o<|#Um*mO>tF<)+|pkIz<r?NYRJwrf8d@
zU5YL#u4WffbWmwWl4X=sI!YJecS_MYm3#KsE-~jh#I7l>NzsdBPth$!clMME#Hk#e
zxk%kZWhj<hWMqAL`CE!>QyJkQsp%xM8hb%%m!#;I;-(Y>6$h_N(Lcq26xXM?A(fW7
zj0!2-m||f;0q->6J@Ahd2ucOHJSfHB6hl)CBmOhRkW{+XY>N^lEq{s;3TK7{N2<)t
zsf;ZXc~XXbVSY@Cu_<Pzn3dv|6ys9dnqm_3b;bA;6BH4+=aY7RA|+~$+`h<>{k9a7
zQ%og#szuUgN-F=TkzJ$fJ}t%cT*34dGbje_CB@j;vlfrcy(7i!6!)aKH^rS~E9qZH
z+|8edb8{&q4aHqb8u^n`LLMe%U*@G!M_4kO`$$vVm*RfXr-oepd_cW=FvUXz+gdD8
z(2N0Mp%R+~2l5_HvGY<<yP6E%@*m<JOYwM$4^r$%@dS;3ij65=PO&J(Qz=%aSe4>w
z3TleyQ!GvKEGd>^af&5MM2Q2J9huVUB@LMp`DF^3<tbLEIwW0#S`s~0V7fZRniMal
zcqzpTs+((7eFEX!nOxxgY+MsxmtuV?rw?c2KO0i%HuERbS5my1;=L4GQ@obq^%R>@
zY)<h;DyOt>rg)38p%xV0X8vEfd{2O!xH11uig%ToQ{U-6vBkW)C0kN3<=bt9a4h$}
zYKs-NQ$Fcs4VKK}=O3o{C<R%Nq$o|HrLa=iO49gNCxufP8K4}Rs*n*Lj;$01CxxFP
zQ0=-DgSo<^jI|LRUX=Tp!xT}9ST+6Y%VlV&Niou@U2~D9$Y^TL<US_Xs6iCksrfWP
zn-rl~^HU1m3c2NVSBl*f`&}5m3tzArsqqQk`~+X6_?q@@C#vqmHz~eNQRZWm{TSb+
z_?{Ay;m!;{r1+8MB15wbKc(11tC-<}3_qv%CB?}Uf2Y`+Vqc2GDUPJrpW;A@UsD`P
zaWKWFBa8o7C>qr*sXMaSuJ*-mG_CT)BjPvOhq@(vR@N#$n&NkgWr`CtfQ{Q8OL3h2
z`lWY=<ziuj;sJF_y6zRDPKZBK<S!C`5&m9r?DyVP_V(U3ve!Q}{u}}_oRi@+#nKk7
zo@#q0#lI>3OEK*;F}H5XqpyoWyG5A{FYIbdm{I3~av9FeP$5Ib3|B7|=ViF7bwT+I
zb)OU$4k+lizxN+qi<|83eSU_oSBYopmX!awaH}RNXUNOYAVb3pRWcw$?F@A?RLxK=
zL(L4eGE^tzlf5_G)U!s0e-;Sl`xUk!kh*DM<<G=h-*kDEbjVOI!$lb`&QL$Yh5Wfs
z3|}UWe9@)$adG+?ap8C3k_?w-Xun$gyg=OcN71ZhV#!AF{Gr~LWw<;;E`!L>D8m&Q
znq+92Vb2aR6UB#r?A@4P?-$HmnW4ikg{w~YZmaR`$`V4zC+1Ds?*B@hsasN@^2=Wo
zKh-U1o}opC{uu^jXqll^hRzwfWVk9r>kN-QC)#ItZCJCS3~e&B&9Gvd=r*l*W5;Ig
zGK^g%b~Ni)t6s?`E&H^nSJELv#|)h^cwGz5J=J^rUa@|exH?1E48<9)&2UYIZW(%H
z=$YZmSM$1O_;s`B&Cd_yKHDUEWf)nnWc8Dxx1!!n`+Adxdj|IGlc8^hei^P~PY3oa
zA@6=Fd}(6wu&2e`s>Ro5xPi~mW;YV%R<ZnVQQ;GD>(#|9F`f`NWf(|2Gu)D4P=>)7
zMzEC(Loy7_uw=0qmSM(H;r-jY{m1RE-Y(eU@C-zTnVU1L+#p7=N1up~mWrOs#OMrT
zG7Nu2TsOQKOWt@|jLR@S!{iK8GEB%YF~e;c_H7WisxD9<CuJzVL^vG_o@`z$ZYo&U
zq;2y{il=6{J;QW1&A0CeHa9K9s^5AaTPlb{?}cJ!hFKZz$ngFn^5?MUMcIww{(2=#
z>y^yOFgL@889t)iX1JRlW>}qJUWR)zJeA?;4EJW3pJ8E!hcn!l;r<K@2x^NMyRG{J
z#D8yZw$lBx-po9h;UO|*r8s$1uwS{A;*kuGW_Ucq6H1mIBk&)4cYdeLd-X~dk1NjI
z-RH>+iztED6wg~F`Yskb*9v?ip2_fRhUYUZ&G1}?t&`d=&M@ukF7NMZ+xq+7OEO$C
zxp+cR0n=p}mb2rfBCmc4OIBnsb{DQBxt<c6zU;lbUdfSqC2Ody8Q#e7W`?yHUd*sD
z!^;_7%CIiO`V1Qs@P<u_$9`W}E?0c)NwH^7;izv4?|)CclHt`1ud|6*T)kPWo?hlP
z3ib`ftG+Aj_n7$f^TGvxiMKMmoncFc_cCnCusOrKl=;8KI~hJ`UZvXaMaLc$Cq^|J
z_i<tK`Xw7Ti$%K&w`SN*8d5tt7i?3^?ODI%gA9jn>ghitc93FUcWHb=Jib7@-=?56
zgO=gD4Buza*})8HhAe}b!OGxg2r}3i9O}Z)g>Hu5PW8_3P`tK9@%Z{B)JiYIfo<Zs
z^&+I1T_B<iF|EXQ@m{s!?jMOHL%B!Aef3MI%l!FqhMgI9XZRw+CmBA?@HzG6Xwe-D
z#jFX%pJmwpaUnVT?TBW}>zC}xuy~a)R*5e&d`0tqp!YZId;R}M({(^eQ9S(<1Qg+Z
zpduhS!}aYP@mNVmW)~O{36eof1QkILGeHmulCvlZl9P&x2?-(!5+>(eaz-+O0{Z=C
z{vYq{t5?(0)1lH-S69!<EE!NO)29fvjghCt+r?6B=TUixAss%5BL{KmATHDXQvo@)
zgE-599mI))I7w1Bh~2wUOgty;uafz~HgSqQ9>inIgf^zb<ws>2|58iExq~>*X_D-p
zi2dzi7Y>5u7g_BaLFD)RNlug8xpEL!58}o_+++o6?ox42N?fNHw~uxFUHXes*T3<t
z{*77wH(78H|I*%W6t`&n+4zv;9h%}Ya=eT@f40aS(750GV(bb*{69+OY|;6+$fqE`
zf)5l-R&cL^0tz}RkQEeEP)I>71z8I2Q*gh6M--G)P*}kO3ZS5vf*PJwL_tvnnF_Yu
z;t3Zq|4`!QKJoQ9(Wi`DwPv!of(I2mq@e3WF`|s@?UQ)xVFe|k5>_a-OYl}H1*H{~
zS5QI0qYApr5M?7sqzub1H6v0^L3dw#kP_Rbi;4;=DX5~Ls>1(w5YzUF&o+t53f5NW
zz}BiMsLrt|sHxz(E!+wn2q%}3&$W!<oJ6~7Kh;(!$X4)}f<_8r3M2*f6*N$gqoB5e
zjHa==3hF5Ml%#7J8#p2(?~E8UPO!Y5!YGZju0SkTLEk504Hd*Ags+%FH$}N|9ULjS
zyK~#d3YsWrt)Pv9rV5%VXs)0I+gvWbX%x$2Bku{eoc~&akF-?q&3MsD!O;og<UvvF
z=^S1TN{O}#5(<(EzAGcQQ=pWQyQ~%M6`U#~|64}xz_}kxl=xj_tQTMLt*W4tf)^FM
zq~Hk!ofY&~FhIeRq@;qU6!aj?6?Eeqr;6@uxp=bK9MN{Yn0-ckG&O`h74+g<6!aru
z_a=HP=%diZl^!W8PrD=d6sxhXby<0il~`W4!_x`|Dj1}|Xc>D(!LtgUQ}BE=mp;?Q
zMm6!x4Do`31*fETZsLbIV%YKQLH&}06%0`@RKbiVVs*>PtocW+<SS16Wd*|&ysKc0
zf>#s_S1?+^>k39FcvZpPed09*BPoyzvQt4~l!6m~i1uY=8Z_(|L(0m37mU53VARFL
zn+o0{<#Ut24@izHE5EJa9R-s%iBzFv@BM;grvQvqFiydH3MMEF(TMRJ{Bl8rzm{!d
zgcB9KufRW)7`?dBf2EQm4@#31+^XB~ld|#@1ydF5Q?Q@JQShOH^$Ip9n9dm~_(;JL
z1v3@QQZP@!d~#&1m`%}ox5FIL{BN>b%vE@BOuTb7@l9EIfr5n;m9=8Ag3CWNDlo2t
zT2@{ZJ#~4PsM$2mTOTX<M8W3@Rw!6XndEc~iNf<4`>mY$;B(34ENm287Qxm1a$dfk
zI8#<$sbCc~Lcux`yisg5hy9-5+o#%Yu|~n;Eo1*o6ohmRJKqv33U=72V3UHM6l_)S
zg@P~1M+M(1_)5WM1wX76Uq|rg6XHy(7%zLB2q}4Cy4XVbRPeomijG8%|NDpdK>;OX
z@2}!Vg<G8BrNT+VpJ^f#{HEY{1=|(uP_R?MFG}c}ecvb}qnteNaAKE&Ulr_*3i<w8
zJ6-%4<hfn)mi#WU8h=;&<?Nv_L>2ys;Qe`_k2k$b@_>Sa3Jp8XP*W7B3IYWw>WBiJ
z)?lJ=D5wfd@_mo6N%lQr_&TwvNrpwObfscd+Oqwl`-H2&BkO6kHi@dAH_A6vTwNk2
z){dtY98z#h!EptL!>&6F{#YDg`)9JM-4RC>%>7i9EGOrblTRq1<v&RwoF2Xcoautd
zDQaRlxulyotKgi1JEV+)^9uf?jZ*NJf(r^RQU(-U;jeXWgKkAHMFzISDTxEPs^FS}
ztDR!(j+CL;m)Iw~PO%#bZYua&!9P^AKLm~NS8X%5pODU{#1H!tx7f=b={7Au#Uw@d
z3rqTs#!bcjDhjK(M@2pr1y%fHO8HgXt71esxquqJyy*PXi{MLqOx+|43#qtI#k;eG
zV<re`gdb2*MCECt(0UJ;8cIS@6`3k%-V3Kg`%keiuHr!zH&onI@sNs#RV-KWxr!1h
z9#PR(ML!iKRg_ZEP(@rtX%&yEsHvisiZUw7s;H!*vWjvl%B!fTVqQ79-vmJiyMl@Z
z-|&wY1z-Ad)yzj1iz+Irs;I7_h6=7|8gCZWR6MUq#5)Ygs~*d2m=)jlp-9FvvQ!8a
z^;IO7i)<A!6*($us~FHACPna}MoFsPAT?1(MO_v3)Nsku`?NT{T=3S}x*ax_lT))r
z0~NU{I_75RKL{>iimw)rsc6JzRkY_AR5Vf1Qbj8jO;t2gk*A`$iV4-?h1<lwIG5Nu
zJjr!L3l&_3teYzeRZ6}xNwikcM#VSzlI>KqCH3sai)V$)6C%HtlZ#Cd2@>r`F~3@}
z1G`qyUBy!>WEGFA=&a&N6`jZwQn<YQdF$Nc<>Y@xx4TnL-gZTB9oI!gHx=ouc)jv+
zSMq(HAoA2SvEj5t$G(S(o+^4#BxZ^CXNg34xwjg+$FvW``>6O|VSkcH#dsC(sd!q&
zK+24YS5-Wt;#n0hsd!n%bELeAK`I8bLV5WG4su%PYn7QNxNd#mYcWK{P!%t#pl_c}
zOY=5}&)yT0mkG+-Fcste7O$unuHx)M!3y+PoZrF`zF0qFq>520-k~U}cumD<6>q3`
zQ^o6QxU{UeOmM){z6{qX7prEzrQ&ThT(;aeC{aV%4)1<_P8y?PEPGM$*e_z=k0NLr
zt2kR^8;NOK#RL@-DOxHPa=t1isrXREbQK?{n5<%oim58zDleyJ2~vqJdi77mC->z1
zGFMC^*=Gxu&rmT_#T*rLsWR2$k9^Z;mWtUb{;isvwooiBFH>T<5SXVj*<Q@&uqTR2
zZ+F<YI)sZ<ELO2Z#m6d0ihEV?ZTpdm-4n%*^71Dt4n36oRK;hMqT<P=6wC7RsYLA3
z&thrY*fJ`}Y|(g32f`I9R;oCu;*^S2Dps>K6?;^yQL$FVcVsJdT*Z17U#ZxvVuOl}
zD!x!d2m9;&l9(^r^hs_~p{)pA_b<t&^77w`*wQaqlNG2h{c^sglv3X-$XOL+E@}Ca
z+Csr-97|S^e^BwGitQ?P(6Ff3s^Vvo+RH0cyUE35EVp@V%ZbD`ipMvCKNjv(@r#OI
zIZYJ@j%9QFWZy2*yl)PX_-t|Gltd%*8&xUt75A$6LxrQlRk2USevVUxu7=L@0Tqf0
zm2;mNKd9n#(<Bjk(bTLZ`I5u3l7<SC^&g8_obvaAZhztI_~UId?db7#2c)vM5^Tp)
zk)o!M!ql?4V(O_xK$<s=-Lq62QgK+taTO<29HBgH$UCaym>T-hbizk=OcJ3hPN#JE
z%+M-kAItuDy*N$Ul8h>@QmR#)Q*oKYIFogrCef6R=%I7<r-}>gv1{_83R>?=(Jjdo
z#M8B#uyVff;#%|+@#~RsBf{TbQQ@-{<i9CSR4WZHX}G20wu%NCay8tc_|b%FsG#9L
z3Y7+ED5l{a4f!<Or{R7L`8C|Dp`aET@OtOOq|PxzYEnQ8M?&*nNW+EB$@b&K?K7gV
zh6l9pT~Jg*5e?Hi#ps+LzA4(Yij{5^%ha&zka&2yD5gloH9V-Hq=r%&9@4;|Qwa@^
zXn4vH4{M+k&KT6moMewKZ40g|I_Doz>9{DZp{#~-8Xnb9hDgo$I~8R5C!q_vPrUqX
zxVR>dDr%^tAxq=mT%odtDjKS3sIGy&cU3KPt?BIb*d%yaL&IkkWE%5Y8fr#(c_s1J
zA<^Z<<j)o4Yz;9DwKdeyKnGRQki$;TOIr&ik5rI}JXJkT?W?OHqoQ1210CRc8lE{N
zZAsCo6J?&rYp5Zvp{s^&8XnWoh`noQt)a1ox8{lF8d_**qA^+$UN+N^7a?RfRhz#(
zQ^kraiIy6UohvxCQH<`>gI5!6G_=*wQG=|ZorZ*l4jSmI7m;I0Ep(gPYp|Ay6(5V?
zG(_XY8cWpfne(`YPMk<Z`AH2=Xy~kg>-y3aWqM-uvy&ySC)haS30)!<Q<b`t5gPhy
z7@&nda1RZ=HT2QYQv)To7iTeD<jfPlbV+K}GW%-i7gggd_OBPKZia(@TEjpMFK8G<
znsAU6<>xfMb3>2!SqjPE<On&&UzftUbayGJbXf;$7^>mt>*3mG2uIQ<hX{Z4Z(r6h
zj1<;Fy?8~#a1B!_T^dGcc$M;|VT^{68b)b&L&KXI7-<<*QGQLsXbp5Z7Q2bpHEgl-
zwmclZN#9}x@^o!TG&abH1ZnjS$#N?s+E@+aG`z22l7{gb-qSEa!$h)voERC;D5s0+
zUc&t_bT|ji5U<V=eRhctG#+CVlR2<;Vn#)o<x@EE8G?@YhZ?49p?9}{+|fWEb+(2%
z8fI#krQ!F|Npg1Gu8;zAHO$k%b?El};_aTv`Ft=XZTu(fsI(Mcs9}+Y#ZgnUZ;Mrq
z#5P}iG`WNv(eR0ex;GQcG%Sxuv{b{V8vZaO{yvKkDIU)Ba}CP|C)a3Lp<$(lRT>y#
zT}?qc5;||xO(Lr+${FXxS`F)H0j7$+bA+E8+o)j^$!p*>17B$PQp0*38+3f7VKaqL
zM^eYv8or@z(QsSCx1=`ZkczC~I}P7!_>Ge#%{Ba}VTXpDl;I`fC$d|^wurV{X=f&f
zlcmG9ojSf)?8uIn%a`2rxA=vRh|G89id~eDYq>;z)v#N`kgvtCipffg1cTdqH0<Tv
zDcGE^hJ6|iXgEj#ZV<Cvv0n@QG<sr-b_j*TtB}cORSjKsim%$lh;MzX17pqxZN+Z!
zTj@e3M}8&u`fNeyXmB;0(QuaWf3~CHC{<EJpdqE<FsE5O`NhbNX$^<SoqVBy{d_Ay
zgz@&B73Cuue%&mNSCo%yIH7@l$Y~8HY0AnZPie?LpLn50oQ5lZr7)0n=f}`dIY-l~
z;hKi)8vdkp)o@9}WepcKtgRbo0GYnoiTufl`=u*vr;=Q3k93u{dgm}c$@lU@e<uFY
zaD&3|o%mbB*6)Pzc=9IIzgUt#I+nv~$N!-%sw7i|?`Zg!c2Y+b9skjk=_sb7xQ=^t
z<kL||$9+2T>!5YLS4V*eDKbg$UB9DE=736aK^>h=WHS(VzmCE>is&e+hd%b0O7a6b
zhOHL-(Yd1RW$K|D20aWBKU5$&V1>BZEcT#|hjf(I@u-fq^Toqaokw((&_TC{VFwz+
zk~&K1nDCvTqxkHABwH(^qpXhdIx6Tm)I7H6E77<{vRw3R{CiPR2OF=XgEbk)n_o#j
zwpwhgBv;i@O-EeEV>+tqsG%cAM{ON7b=1<4ts|y`PTH#c$t)d0$EU55blw`&>p;W!
zYbAN=`=N!DIMl_0qFYBtT^$W{<m&kAVs1ShtX!XCm?0V#N)qk~@<Lq4n40m8M)>TR
zN^&C-M@LH?t#sU9S#F}Esg7n;pK8h8e>Th0(OgFh9b>;2!fsrtvRwUh!D>g&Cbs*c
zwT_>x#%*-8)$#oIBCoPccWBLzqDY@)J3Vyph_u(yLB|XoGj(*-A?p~TW2lbD$tDs+
zM}Hkp=;*BDDIGm@JgK9Lj;=bo>0Bp<5!BK-aWbnr`BF2p<%O_h-b(RQWx1!0UOIZ~
z=tEJdmN~4lJa?YZ&WqwRMPD6sj~T^XtxMb#7@*^69nb1`PRBqU&#?C?;_V|6<(3{7
zgY!+BhSAICb-bWskd8@}WpYZNB>Ilat?+>utb<K)7%%F0iKNgmj#5Wi(lJ`c>pEW1
zF<i$e9j6<{I&rnD<5e9ab*y}&1Bc4ripuimm6AVwDeMo#YdU_eEMMC!-q7);j<<EZ
zqvI_d48k*nTe*ME>xU$}viz<NF4%XSNsQ6a#E@zPqSd7^P(NPBdpbVQF_{ubrC2H^
z>Uf{DohyP<ViGI&$SE*0&WImNhCPs+qGKwlq2ogx8CB#`bsI7a+dCHT(=o|a^Uz<!
zbh7WKFvL1b$80@(ovqU`N5@>sn~u+P%+oQSI-+BVjs-es+!pC5Sw(J?FS(HN`Bg}z
z16QTRWW++ja_P^+$2yj>(@IG<FZKzCx=0Y2dNO3?^UY(+bga^`TE}u7pX+$>JF$Ya
zB41Vt-o2tpY>@cLj>$DTuGsP4JH(n*k=K%{Cq?fn^5`nzX46I;o2WGgYS8}c_)^DZ
zR;K;eu~~;gdeZ*u_(sQ0Dgrh7M&euYQO6HDw&?hdBRncTeIQ9)m{CRkk&;Zl=-8%%
zQHx2Qv{lE5)|nI1;&>o!*Rey#-U%XgNUW_Q)25yND~#*z(($W~J-kIrwYKQ~D)Md}
zzv=j$!psovI>GJB%T?qNJ=!v&`v(n(j{Q0sb#L3NM_c*;2Xq|NLr<0Xy;bF5KZwSE
zB{Utnj-xt`=`eJdI$RwdnSNMURK}{Zqr;{-ipQ!{m4}>7v>q=Qef4#QUPYiIrGqa=
z@0v){5YbL%C67?8s>+8WSbdHl&ien`a5=8y1cg?|8FKayagqjhyf_u%L|8JvbKA2z
z&guA*<D__;5l)HR^HlcVMg0?DeD%36GA>en){9Gg>T<IsHxsP$a>v+J9oJ}h4P+X)
zPIE*-HIUE14IMXi+|ltbwWg~4w~kx<S)pD1ht_YZ80R!*-1RnTwL7%5jG7jkDCi3Q
zN9i@f$Sv_!`$T>NjKmf&P|!dk9=q3IYP$H{lIS`XGH}0v!Upr4#eD{MLdDFg@&iW5
z)*=ShRh8K$W4uHTRFz?%n1Qke${8qb;6Vcq8z^DmAp?w~o~$a5uF;U*=6^3GA2CqU
zz@rAr7<jvDUMT~mBP39z_Bl=7jK^4*QB9`PGDwOuhF0D{1p`$KR5ei1V0a<%&eJ)S
z4BWdpqjl9}Wdjq}hCwI7QPmq(<1nl|I+imlXP&+-Y8t3zaNQ9qW0nD7poM{!2C@yr
z48#pQW<WBKW1y~qdeO7B4b(BPQc2KR?a(vHxP7%CF-a5k4Ky&2%W5;?ymSvpT*5cx
zES|`F^Pg}<(8xez19=8NFP727z?DWBMGGgJk|5(m$=5QP8R&3Kd|fj>rDLplRLJrN
zPb69yXl<aQ0ogzs18t2kN?EdA2Jf~rkTlRfs+@@6*uCM~_MOLL9imIRj@^^V#|?Bc
z(AmI~EUb{!?g$3Bp5U{~#iHe+ivc>c-3)X$(A5Z+b^KMVCe!tL<B(`mO(yJNpr?Ue
z26~gc1_o0k4D>ZHz`)Z6Of&EJ?F4O3KLh=Z(16cg6`GWR2A<)R7m4S{!JIhL70#SU
zJj(~G$wZzv@B(F~icI@Mm?0;J7#M0`xPcJ{UNrEM5&8_T7<k#h$ZBD=VFqa7X`}wV
zmb>AkMCqDVO=irKQ#Ou^S6R(K!*qf;MRBx&*A2XDVvLD547^G0Fz}aww<t>nzA^Bv
zfp=KJz()p_7#L$<tbrK@W*Qi0V7$RtIzBMMEyec?aBF^ISRzd@a3QBjk%eKh!TTia
zhl2QI15>C420k<})xZi0r<LFyG`B)Hyh826y-~)xr<2rf9+N0$8JKNgzJUb>=8(B_
z!`16N19Pcj?}uC1HBL*<?w44&(7@5IvBezikoY2sWrtXkgNeP|X8K%AT`WE}@Cg;o
zz<L8q4SZ@~m4Vd;J~NQTbOMgVz%m2NjWB9Nw}F1b9Z!^K5vy=btfaEIdAD{5Zg6nZ
zlW!BwXbrh@EPJhi9*0EH&an*!HX7JOvu}j^EVNXgeIz)AQm<xwY2a%EyE2kr8Q4sf
z|6I@yy!O7}u28|Xg5_Hbd}qMnlqnJhe&84k>@o18fu9U)H?YINRwH!#e>T8q8-qW8
zUJ$=mleZb5Gu-;$#7+ahL@obH4V@<98}rW26uS(hs>v6>6T1!k#x72Zr`pH3<DBuG
z*lTdr1C_c=9l0Us^Y1gT-@pMQboCD!Q26X@arK%Y<lS)}3oa0d>y%*w7L6WlQ8jts
zDN(YzY_sduv6^|Y59~aK)6b6=o&n#$83Shx1Z>K{F^Y$QLbnrX1BVS9F;Ks{e8>P-
z0gqRg$w4AVDbG!ljOE7r=A4LTdeXqDXpV;m<Z$8?at3lwN0L^3f;dMVG{Ttb6$5`#
z*bH2z?VTqsQuV6K6o5-q<QI}GVO9yFxJ2ktTqQBT6W6H4OU3Q~65I&BVc;gMmWg^M
z{-!D!C}pCwiCYG48z^F;sEIoU{xwj*L_rh(8OShkkBNLH-mNZkRI8^&aTQgJsFRuB
z#Jwi2^~j@lJ-@pAeRcVs+*lzK_nElggmO8YMPU=~bZ+~AiGgdx3vM2R>dY!3o@oLm
z9yIZgiDG7`)JzU3Zem>XWT(*?OeDyfBpx==c}4ybCLS^IQtKFFvn9=t>BDNpk2TBm
z>c$yweAGl46V*-BFj3Y-ITMvkR5nqb&+e7zV^=i6e3%Mm=#d81WxhS>mRB)Rl@;n|
zR5LN5bz8dY`8y^{>`zPu`i$+cO-a-=AxvbG2*;&bCQtWBS!U=_m+Y5}nUGB6n5b>y
zbz7nm%{v`>-LyrYY!kiL6s==|3eNXkeG?5#^fJ-gM6QX3Cfb|mU?OhfF%vCJv^3Gk
zL}L?8O*Aukgi16q`JsO4#HMhYl9%Loo{15?lg&+BuP*bFp7Z%LQY#a!O|&)9j!k)a
zl=e1e=u|VyCF=`eJMn~xq={O`vvZe(x<G{1qoc_Wv!FX^$jT-<nRwDf7ZXpIp+W0R
zn#_#TL}b>G*#%3wn&`%wgOc>^Y0#uCt%)!NqK6rVr{?#}>uH9%#=vQFJ@lOWnCMGR
znRwYmKNI~;JZIv069Y`VcU3%188Gp`^ocDy#4{$I<&;k*=qz!?{pa_hS`GOH6N5~=
zNa6fR3?^Cn=L|71l!U4w|9dspDv<0|L#ACiy{<KVa>iqanRvy-XfndYa1zSINE4&X
zFur=~y7<Lz{3@mQTo|OSXh^S7JgQ|fJWCh-g>7Nn^$kwM#M`9FQt@U4f36k(pR#PY
zDBdx#`ATlHg2}NIONuDf#Kd^cg|jyCJtfD)L`s*5PfWaTVv>mkCKj6bz{F$|vrNo3
zF~!7G%ASc2P3HMG{{6hP;B06ur<<5zVy20?^TW5sBWDsLYJ{=zOYLJ^^2{;8n)4#a
zT$;ITs)o#W$NZ>-w-ygbE;6y$3^M^}fxoIDe`I0_Rd1ExUGD4Aul|9deiNUX*l1#t
ziO)<dGqJ+NN;BLk*tk3l$}K0$=7`V9qch_A9<j>A>Ih$NVvUKl6tn4K9rbjtXqD0I
z6<su07Y1Y|ITBx~8_dx6<KE&ICcflII6)I%ar!B-nH;$<NrO+E$k#L!)56Hu7Ruxy
zvHlThQ%Yja0P!D8{AeODkutflh^;2}n>b+NXA|2@{Kom3*luEniCrdsC0yQUr-@%^
zwc021_06GMQk)w=lfu2%-DVh$u6RkX4lnm`cms0wn)ri4J|m1U5OUS9&jh_h{@y&6
zeURMjkz-OUX|GJECNz_QP#6@32AOP`cD~zh;W}b*!6c*B&23?ua7}n&BRG6itZE$F
zQ$uD2pS^2|3XjEzH%duq6NgNkHF1vBOdK(B!o*1vM>);o;uv+UN0NC0Oc?l8m5#H#
zhJ5xcw-KdNCQh3;L%CWn+RV=`;>625)%KvBM|j@EpR_F|u9~=D;-ZO5CN7goxtWv!
z?(N>HA+s764i#$3+||8Cqrr)A&zF*Ux!GSdGIPWY6NPe`u>Pl-=(<1gH%04=VAOih
zS?M;7zlmxVs$2M%#-AqIqGOB<3#IF37O+sz3fBntSjcA~zZJH2uZ3+-#P}BLXof8m
zvT&b;A{LG|NZxN@<wh|z$a}y-VGGS`%6nG|LT>IiKP0-|6h$p$TIf+zzL?A*EN<aJ
zc4XmE3lCXf-1reTejp4WKO9|_h#)<Xk`@R{Sr~R(@b^khxr~Lf7Ajh(WMM|*SUD?n
z@5@_ZrUcVqHfmA@3ze%TpDdlM%wC>LGSXYs!iQH9RoK@i(fYA4MS<qMhJ~6I+F3|g
zsAVC`LPHC23&KJ+=We04g_wm3hb75^UcUo(<(L#fnsEAcEL2G*>sx4Gp{|8`{LP4;
zn=0~mPqNwvGexe2)l%4X<)8VjD)E?wMi%l&84Ha$REyu=6HP6As|$vIUucs&-71q>
z*^J#Cl^)+KT3Bdlp|yoJR=7H7Wucl8hMKo~iOE)&CPa^ycDSvDUp0x#fux1@7CKva
z(n5#mk&YH*i<zH^8n?yc?9`F!HO%Z3-D;gt@Cgea)ReiKGne}v7P?w^%EFfuL^l$)
zZLE6)iKGodxcm>PhlQRNSh<%KE*2IyNIujymzRAl^s@jD#XR)4Fn|Pckn7-S3j-}Y
zW8+yH&sccY!X*orEj(x8c?;_;Y_RZxg+UyKg~=8MTNq;D9SiST7;51~3!^N&X5l3Z
zFI#xU!f>)+k{D)z5hrHB5ofaE2n(-T`11oX(n9@9x%nrHeE*7NHD#7C0bsO+7AM6U
z7T%1I*CW{FYWVIR?25N6ylsWciuUm&9g_6tVvL2c7RFn6&%!toc6i2t+zh&Z^bdE|
zlqXQkEWB@F63JCc=1zUyX^Bo98PVvf7=JRvr&yS3;bRM*SeQnUvoO!Xd<)Yls1{~g
zm__cmV(TQaX+i##lR{HA+rk_YmZ|0o1$PX&HDBfHFunP3O?iQZgJ0%fXkn2RE>4Tj
z&t7cdMosx63ri>%$0f#!8&pr$x}00${v^HGr4~M=)LB?#;WG=%EPQTZ1(kQQpu1S4
zmb{#T-62LV{oS;*l9cb8vx)-qLYPR&?AGjB@-uVAS_^xgXj`R!a-D_UQ$nY%_(x)+
zg-sj-SzzG{%87*?7Is?r%ED#~KU$1T;%f`vShzVnV+$$pq4<`xsv94;Mlk=A5##SH
zd{6SO5I<Ph{;go*0r3KJ#a0VHQznl|+bs0|TgbKK_pV4|M`nE1uibX4`K<(3K)+bn
zWnmu;0-3^5S@@lUwD6mSLw(y-E1o1niEyZUDO9y&t~dW61^TrkUaWt+nn$Dqq$I7}
zKSH&@Jmha(vGkHqtT3v~r(T*SIAz0vY2mPiBUb33T9k7OUWD5bbZ8RShV^|5frT;~
zMcN7@#`G{#5%SZ=A$};rnFBDsmVDI0F$-rboV7wn^tgqS7MO$0$mEHr8WRIfSvVby
zZBebz<>uXU7S2<uEnKjmEELB!h^aq`PPwsd)#D<_yGS_<MC(%$BZ^lnT&2mf@tBQk
z7Oq<;VdD`Se^E{>+-swNjhhz!X8SZa9LW~(kHruWZbvv{yz6Vp)dwZ-kfbw(QcFHG
zMP%5hGDR?hG@p%o?9f-ds0x<Q)y!{$Bd6XKv{A@LrVZG*&&K^WPSui&*eGmcy42(W
z8%~QP5vCAxwaCSC(WnA_S30Z3*ld<u+-3$#xGXA_B|j9Eu;qtsFmlU<cHJzQTks`q
zl(JF7Mok-~Z9HnDqK!&67X6nfW22mn@;1ua@I;(mVj@c}C*pMcUYsl{*dS!CNI|D@
zWlqONRko9e75+r9*=jbbbJ)woGf^)@82hbdBg;k|8+C1bx*<>4h}n>AWJi~CcM2Bf
z*m(YUqP7jjeu=!5B|mCQ^Rnc6HtO48U%7U8GJ@`C0~_4p=PGPdmOSxlZbKWy>0UOn
z(b&cSJ5=W;Hk#UyZ9HzHnT<Rf?QA4$G`G>hMr#{wNS`l7OPh;psg;dgJkGmbFiOVD
zl1liZ<gcwAzB*so6z(`DZFFD@@mPBsuck5?NjqbO5t5E%hn0A_T(XmmCu{~w(Zfb(
z8&BHkX7hUpQWqPktT2kw)yB5kapImPz5R*ct?o8vHcc|V-P1-d8~yBXS>4-4A3Kb8
z_O-*n#q}(?=4XQS`L5?Grhha$I*P@F{Irc))M+6Pj1Zc&=SV{vhin|S@q&#(HrCo$
zXJfF9AvQjw{MZ;u_StyH#=ACNvhlLbl^5vF4YTnIr)FcM9p(%VCw*)%8-dYghL_*?
zNFtmtQH-+jnvKymh_jGM6hv5u8O3jqK{npvtjV(L2_^<_elkYCG1fMD?SL3#W2}u2
zY)rN>&c=8f6K%X7weudK&3xCeeKy5riO?HAcrZLHGbyBM=r>NWF_kP(!lW0bQ%>VB
z7B^xhFiYs&%^)#tEV1#ijafEk+gM0pwlT-XTpRQG?C}Hzqx<amJUh%xV2VP8o1*P~
z$pw7su;{&CEWX>|N0bvGvvEeGOVnxdiH)Vy9UChst~UA#`7;~KNCy)C*(4o+<u(TH
zmYBCNUy;-~@s&1K*;r$T4&LfEx%3ZL+gR*09)461(!F7jdA*GdHg?<i&BjI>n{0e<
z;|CjG*!a@Mw>J0Fv3_9kD;r<4e2&;`hoR~JdgQP*UVal5GHRVJA0IVQ`pyO+e+()A
zXyYdvJ8k^J0i2Y!+IZuzv@ODaCLM&#!tGJvjtKHD*Vh|`yvs(tmYKgs0>*Y4*GW>m
zf48y6hGIjtvDe10LjLcd*iVCVGx3LweKtz$6J#-$FbBxlb>d(I8NsGss@c$OxU?ZQ
zrgV!Lv~N@vYU?av+OX^}7k9{!1R-;c=wu!ja<>*qp9*W`rR*?(A4K?_Wr9Iq28hy8
zA!mKW#!(w(oKVw`(TdW<ImqYWgpHFnuF_m{gf>pwxM1TVpPDMp*f?wBT!i1hTbz$n
z`%gPeW@da~%>lv0fF~;@FL9_@nLo?1D>j(GaM=#?#A@j6i=Pem2(Hukv&6<N^2ii7
zXl=U1ZrWj{0Y}2X^4~V9b&N4N;kJ!CHvS_M;~Bh5|C8`v>en36&=MIAcGhi3{L_7j
z{0{DQP|QJb2L&7&Iuv&BfP+E~xI!$QE#L3pJ_j8#3jQZ#<~#^nu&E*r-uN|?u1p7G
z&q_s|aMj6jelmt(Xa1PE`k=!PKT0JWJmTOXCrn&nzSF}F>eOkn(GVpa)XtVmIVc^G
z@$ci}Q3thlhJicA{E0ApSJpu}2jv}%svfV&yACQiOg2U(2bCREbx_Sg6(`*NXJsz8
z!%*jPQQg6|g0UJ74xg8pGD@7u20U%YjNB{-*$!g-t_|lqQ}DnY-6#Ge4u%7Bz?wNu
z_*$eFTGv6n2(Ryer;Qks;i8^Kn~*F0h7RHm+PO%$c+5c~2YVg-;m{RF69-crOmooG
zK{E%>Ie6Ydo`dENo^a6FK??^h9VAFA2dx~mW;+fTjw?Dxw27$E)&U*eFuQe1=z?-o
zygRB&vb_V@!Q*6ygN`IimE_WPIop`>o-K3tkiqj#96(N-`-a^3d(uG{2fZEianRL4
zHwRBS=;0tgJ-2MRI|mTOqWMyObGhj0pqCSdPf5(JC6lD&H7~EPgMRe(9Sn5PpDcF5
zYzI<!H~D)ltU%ZF83%7&5YI+jV2bR-r^7_q1@)6JI2c4BaquR^z`+m)BOJWyV5ox^
z9lY#dm=osSzvO_K7|h%t{?oFMkFRjR3&n6JjI#dkFd%*Jk({i9*Bp!{**E45ttN5D
zVc{Mr>w<XQ2|c>8*)rp_J7&b+a_~0!<zT#ncO2aFfq2)!7+#)~p7j!3M=*bw@#nEl
z7=>P(Ex+erf`ds8K8Q*fmz(I|eFsLqBr7l^cwxJk>|hG3HI32DV<CgO;~OV`$d*5J
zFx|m=2OAvBa4^%s5(ghUnB`!$g9W^MMa*$9*TH;VZWi;XU-JYrQp{|bZaHxlURWs>
zvTG;I=veH8KIcbHxGBI(;>=9=#KBSrD;%tJ@Tr5(*yBv`c{J-~e2P<Rl<{b-I8U+F
zQbWJ!&o!X~yowU#V2y*dl$k~OnUB%6bqwut);YM4EoZF}pWaD4yhhv?lQ%lp<ltv&
zje{>7eCgm@2U{F`<zREv%hwTnJ(2mq3Q=aB_=fb{5FRZ&c0~Hl!S@b+a<G+lfd0RO
zAE}|S(En#>mwX|v?Ma+GmAJWB)EwJkJ5|iV?_}`@VyA;&9PFY{MeR5KS~QA<PI9-H
zyxYNVRD><UO2%G{T44E}=qbAQT+Qusu-^e(6mxOF!9fS-9sKD)aiCK19US4~4s-{O
z1DD)%V6vAPVq#2w#uFCBsa?|Mm<J?z$#^nJ?NNrQ0%U=MfHaTEbl_QyA?5F4^1GMA
z`0#^U#UTfTTml?*aLmCe2d8Nz2zQEF--;9LC?-=*nC5YkGo2O2lh06?{XF95BIGQG
zG&~u)5C=j(|AK>y4(>Sk*TE$RmmS=2aMQsR8l?jTuTeo9TqRSEWlydZKYlfrLdEv~
z;(Tu<{>h3H{>`a5xb2|+e+eFkp_#o!QEVE!9FvPka;aNlXp`iB4l-Qa@1n4adtBsm
zQNTq(7nLQMq2~N9?sd_pK$32Jb195o7IM*du^75j+~<Z%MM@)mU0y!mqKF%=Tyho*
z?hzDq!(6XS7nF@2lFV~<BP6-Fiw9lQb5Y;LLoOb6QQbui7bRRg;-b8Z3NA{zDCMGz
zi?S}xeJZ9%a%mTj(wt_6VPPhIb6v?5T<1lioQuyTnZFY!npJcWrgpff;-V7A?=&Vu
zzj!*Qs*7qans;uyU6SeWvkn^}LRiy<aFOjI<Bq5m!7LX;{z>pM=0b9L1_X6o<hZC!
z<jJ<p1JUK5MC~()Bl{CP@t0|b8C=W|z97jBT;#gpTCatRhA!eRnz~?k`7sxbT*l($
z#%>s|W-16%f=>pbiHoj0k=MU5;kzx9&0OShkkJ^}CL3ojY^|k>RxVn*;d#S0F50@N
zTB!qZrUvnD=PS8M7wuiFXJ0NO4Cv_MJr@&P$SxjtG1SG2E;_k*f*d5*Ty%Evq>KGk
zlRe!q&A5w;ZZ5iWFm7m6^XUmDLO<n($xA&ro#UYwO<d&2bi8}Hp*Mc{SJ69aq09`?
z&qaS1&$xKj4O0pSL=^_QU~0$H5o95EdHB?GE}nNWnB*l}Z*Y?cgD5-`!&}V#=)YU=
z=uNAf@DMs9u{@3bl8cvJyy@aC7sEI<7mX`rj&?EJ#RwOpT)f6<c5T}`M}F1CNEa(>
zCh3Y-%SsN<k)L2_B}XpkNmZI<zV6};(x0iw^RvgQ(xx2wZ4%SPqPEF#l)X8EF3P){
zuZyuRSV!y^{SStf3CB~S{wT;m>mNDtL>KS7SjY!CFBc!UnB!uui^(pgxR~K$ri-aA
zrn#6-R!$U$XU9KuLFm^@GLhrH%gqSsb<ZM?Ou<bk-kKc>Mw3^AJSJnzb79A0+55x-
z$_W)DrwJ<@emaLG^nMq+_{hblE<STXZ*z%@Ph5U6OfWs;W9mrD*nig&OWiR0f_u#s
z(urkcE@|Ro6&1wA$sCyrv=uDzB%WsC9J^M^T<v0wi*+t;=g8dirMJ1(#nx7t1#dLw
zqLK(h(;HoEa&dw!xcI`wmoENrvCqX<E;f@mE_S;3n!>PNY;o}&3CmN8Wbu*2w-Ma)
zoA}<v4{X-O&#d`S@<%s}*8W88PKRryl4c0$VDph}F1FJS)DH8G{;iViRJY+TE_S*2
z-NhanjlJSm7fjpO%^@|(;3d7;-`p@pN`#Ao->xL~^46a4ARC?J{WShAOc$1mgDzY-
z#+s^&iK~S|x%wwMs^&tc#nZ)@Hc2Duf_c0H9AUd~T%=tb;)9_PkUSSYMe$hZaRn|?
zE^crK(3Q5V4^N-n-!jJR3+@RXc5&3jF;-?Y$z|XxKI>YzlX9GfPHI@Ewp_G-&fs+7
z6eq$K$UzrpT%2`rg}fsl$y^r~-7q-Jr`Z0VE-plKyih)QD>qF1xD;Ko!sTe>H0kuH
zuerER3CYXsTwCVlU$m$U_1BiUxS%8bH?4|?dp!K(;uhKM;*N{|T*T^U+}SVnIiL8K
zQq6_@lF)(S@26NipNIS&?)OmG!@V8~cwlBlAr?*+1-)=-^V8ALH=gllnB#OG%d?Wq
z&sn}qJm8_IhsxP;;zc}+tu4QKMr3;7c=)T@Gg;ijgHa2od_3ggVGsFy<o8j+!y_IR
zdRXM4q=!--dU)vRp|pobJ;Xh3fTE0tvL1woY!Br;l=o1bEqkcop`wQ>9;$k%#NIvr
zS66s|i05nmxzH?Vox5s*m^n>U^TO0ndcXYo0V9MpJ=F5TQ#00#_^&<kvPhp9;pvYR
zwPhkP50Zzv9_o3>VY3TFZ4Y%k%xsfOU)sEtV1#*ZZTWn^Bm=fbYs>XLH1N=?U@X@|
zLoeJNqkG90AHCwIKNpQWH1^QZgY2P+ho&A{duZdKnTI?NEj+a3NOD4_h-d4Xdmv;B
zJmhl7Nwgvz@-n#&JvdIZ_0Y~k(nEU|wofKF@jGDx(vE53)C$qT!{Fm${uJ?O9r;#m
znS6ZQLnjYiJaqN&gon-^p7g?{0neK8%MWF`wPkW<{W|h#gz3TEJaqTa{Ft<;ekOfg
zzS*Dh!kmyBb&|b2^!D(khqpZRVWEei9$q9p8T|L~yoVP&4Dj%@hXXef&w3c*<qh=k
zj0c8TN4+P0znIH&YX6*1JVzqb2^~3BYrjSe@<5Mt2nTjBG1vnGwqy+>8~j%3OCDbK
z@T!NA<mLu3%)=`lhI^qe@y04K!o!6x#L$g`{{NspIovuQ<>56Bqn7--hiB`^Lt2MD
zj`lz&_Us(-ZXNjzwlFC~-uCd0hp8T>d3cwk_At@I`;=7=<2<}aMtC^YA;u)<pDyK&
z_wZAvyw>x@+TJ;Zwg`qCxd41_gP24XdzkEnC+>N<x{l20Oz{}<l_=+w`42rz_b}JP
zJP$J{HXde^ZvQ4|Drb3Mq=Js+J(rr%#?B!VXN%o+<kroS^aJN}OXaXwzzJ>_`kZjF
zoD`XhJ$&TB_TYF};^AWt+dORd@QH_|9yWT|<l$2fpLtm2VYP>49+rFf+`|eFZXKD~
zyv%!KqVGx%^(!YgzSDs_r$e7f5?|wCEmiWQwBExy5B!G1r8;sLr=1xp_y#ZB`p^HK
z80{v$@bIOFEiCcym50q9zVYy_hp(we$Fpf4?m3+xQlM^Vz{#4fw-c)`H2dDe52T@o
ztsZ{lkQVYqFO{t;AN*SMHWGA|uZZ~1UKq>ek0IF|9(H=zPeJnVi-%nv_ITJ!iq(q$
z>S4Es-&ii<A3heN5B57{?36Ur5)4!_NB57YoqZ(x5-~C|W&BnH@q-=|+8htM2OgQE
z_p4GJz7M~su*?^#Ck)EKZprjOJT!?L@+?}Reo6AhWt$%Ea10ZK?;-GT&ck^RDGzB6
zCp?_=aER3YLptK&XoMW5nj8<4Qu_7Cp_6vZ!*Lp=j|C3~@+@1!JBbDv1+DDNQyxxx
z;hAf`jLvvCOG`Lj@FaEpx-xeU|D*tTxa#2=WxiSLqK8W~hE5)7yXBy`?BR+Ro@wH-
zYaV0d=JIt9e|h+uM$E$vFZ{&8){Ww(hufaizD^VFUw>o^BPV%_T<+2Kc4UD&*Oghq
z=p~)`f2o6u#D5+#{Lr`O@16+Z*^qmE6!7uBk4ZiX`Y7b1osWc%`+VH*qq>h8J_`GI
zz(+|RrF<0eQPf9q9}oIrK5(XwVm?M3N+7yq$<Vs;jQW}MCwc1RAs-LZ`1_$_`M<F3
zBYtQ+JDn9H3&vPj+Q*|lD)^}Aql}NTKFawh&%r#AWDYRD5_9RPww4utW^b4YOjyZB
zWgk_2RP(_v$yAvgufiA2rtp2rh}O#gowYwCdWy`NK5F^M_0iBrmJi{hj*q%NvVFvS
z<Zx<p1Swxahvehk<{_O){Mvqa$cR5pk$9S{o{##R_`u|!yTh=213x?t#(X*MjK_UE
z=A)U9JfBDYrA9uQ@NQkXv5!TylJq|()Rmk1KwA2-uDrNp{PHo;+(%0vt$grnNG*J@
zgi)8)K6s3-jgPiIzH1sIemyJ6E|j|R>AG^#M|&U7_;}Vw2Ok}Mbo2R549IN62mPWa
z+2)DNPClOS(b*4UhTNF0(>k;CYZ(i#iyt40b&0BVjo_dgVH)sLK6?1*Ljmy7(+^Xs
z=x6rw!(;nYUZx}VCVo;{`J2R#PW1Efw2y&4`uiBbS9v{|I|V%E&+j<V5v^EHemFXV
z^PG?8eT??;x{nup4DvC|=gJp@eGG|+_Og$mK3??kk`J?Ta^Jcz8I>Bb{c<y|saf*z
zEHQ4J7*1L8G0MklK3?@P(#M)JqEl8TJx}iY=hc(1Z_68$617?<_t%MYE%1hqH+_ur
zG2X{p<Q-Y*V~ih0iOH|JXT>`d<^efGs44W%$Fk+T%r8z!^d#T&Lyvl*4}O+`@-xBb
zf5(f%rIS6bCYW9Pfse^Pe(^(hXo}Cz+F&&YLvm5@d@S+tv5)CKX84##0q`-?$1ERn
ze9ZMRn}hL0lOVxwiST<J3;aapkAh#IVqBN<v%tqf3W<-!K0iSgj-<eE;_<9xiA3_F
z9yuS8;It%51>q;;8b9*jW4Vu|K0YN4O+n}IGmiP`97eMVKj#QFv4UgZ>A6O+r|QWo
zeXOER9hJD0qvQHmujE=E>wIjXfcaSOV}p+`e0=F+BSp&-vnzC1(lC?ACO<q0&Q}SO
zNxt&&HGAh=&WO#_m#Ja0`pDhlTOVWV$<h(=Ait}#TYT^12OryfY^OnZU;M}xri!gT
zexluod_pEB@g4Uw`}#FR9?!~TcEJuGJ0rp}^hffpSEOA&e)X~2$8SC?AGVL*eeCg}
z_)vZ9rPlY)+2>=wk3W0_c4A>YnMq9tD8up0gA~qMnX4a6a@D`7UKm5reCQN2AN3xO
zvCyC#ejJ*Js~-ziV<9QykoZ0h`#9pm^WpoUTb}aqaz-<{{WK<lAD;UolJ;?k#9u20
z4r|AQgxXqh)W<O&3|60Domt{I?Ug2et0xmOtAynzDF%naX!dCzXMCLXan48U0Br)C
z_wgsKT!8WcF8H`eOB>++0GDVGeBAbN$Hx^)rjHvwZc<2&N_;_I^KsqBUmQjmnaj6g
z_2nb=<iG35JOuGKwcf`qAN&;9)ci?i(X)P?PRVMU#lJrO^KowgX2q}K`ON_L1jrZQ
z#QHE5Ie&njj+9+rrfP7fqjE|r5Y;Rgfa&Fh0<^9leh{gC&CJ399tiMAfRaJ<{ht7t
z0T7^QbV)_))G$^o0C%7s4De8Z;sN^9mq#vdM4LaeL+s%ojMJ6~!ZWAq&q@_*Cu1{3
zDfSYeOb~`mc=ypDJn6<&264VSdM*%U18_^43)>0-Dh8+%pl*Ol0V)Tm6(B1J_b96b
zs2ZSJ5UyX!l+UalgsxYOfd5V<xbMlmo0`#F=zB2GB!Y0OB0E4Vz^zq+xD+5KKy40>
zU$o%Ye$Gma`ze>h^#0eci+Ta-2WS$YX@CX+asxcZDb$xKNDWD-AdEo~A5~wj(KpF=
zccbWT;|MZ&k2RYG$P3Ua!11F}^8jDgms<pA$xf$+Z<EYQ9lCJ$)|cwWGj}!1?4BJS
z(Q3<i1&{-@3y=tq48RP5+#f{y2;rvfp89f!0E7j1h{uD_I`NPNTO-nm9n}xrvnK;|
zA%o7M*jaQ9(2Y%<MDirM2Y8AtA4B38dXW18-bmri6nX_{*dyzM0Fwjsj_^Ja>>Hq8
zfc~Ugz~ltvjEX-UU|@jP`5=iL;Mo8#1Q--xaqrwWHs*gW!1K|Ae+|pcXdtuA!2yN@
z7~MBZdQ%!2;Kcy1u;jI@bz`NM0=yi62!BsJlS4Qxy6iYSK0K<!Y9j)?dKVuVVANgw
zwFntav3xz3)!q!?_spFTbzQcB{8oUs$+8AAfA2)dyAd1{!Lbn>7s2rX-iwg0M@y{C
z);=6Ay&uhVQUp2Wimypi0!$5XBf!l7(*k@L;D-P|2ACdTMu1fTRtK0#+E!_^Fu<Y!
zvnT@;ym8VTiZ}WGeD0-D(%b;^C=W&3b^0iamkTJmqa@;sp3hwz;G+Ob1AH1_Nq~<7
zy!oc|3FU31lv^-w$4F^k|Ezo?q%uRL&jKt9usp!$<jafk%fqAwMdEda$5&7jC&x<+
zlWL8PuOzd^NF$!gC0s+b3K+Y?Cek**!o^t|INu`ik4D7T2PpJFe9e=&(>~8CFjV@2
z<D^KxCT$7uRe;T8?l|e|0B6QZ8%IgCM@vV?#=i;hZGi93w`uWuR^@KemX-N=_dD`*
zg!Fv?DI3dr<^2?3YXFZN3Gj1(Z2|TNI6$eJm9;&<t^mIV5L2^uL?t@|{1TwR>(aW{
zC3d}=24SeQC&1nSzXkYfX~W+++R^cO!?Fl-yGYNjZ2SiYwzBcQ2yS>&TGBc9U;rh+
z*cSC{njmTf&D8PMW&qyRX&Ko5JBd|=6MSm-_&A{z;EB$;`p{gKJG2;MB|htNYMpbx
zpP3T`NCo(l#yLPbz@Y#q1DpzQIKUBd@OajV0Jn?8k5bpz>G7;%0eTFV?z!2TFsFDX
zVaZcjr0{8yj$IFx&PD_ue4usBUb*BKOV05v5Zwy#KDh<@=UxnOCBRj_1p<)H<=%>4
zrX6S?k9aqJEr8X$-nZkVzXDw6ct%PSM#cxP%YU<1u7A7X-?Uv6`xN3S+~U9jlt|%`
z6z&B0H$dSO9!R0?IO)Ft`BS(zg^U#5@1E<7lkQ1DA0_2Wh00j0doBwLq;R~CR4A%Y
zkmU_z-nuU;WcmFOGOmHlr;4P26pE!#G-`w;nGv%5gQCS#XjZjRfzi^#DLfbzJ`}+R
z$4jinTPxOQl}w>j3N=!wnL_Cl9!;S_3KdgGtjj7B!SX4TjS!ZUi;#^&6C>AV{gsud
zltS(C(sysgE2qFq;#E?pn!=upM70#Er@&jp7dMb6z9I2$trW8OND6gQppJ_O#!|>m
z!G1ZnSYL^SW432WDG=tQu>Yy7dv|8ljV>Fc(4t2c%j>03Ke|Pn6<C;?Lak>*<gpYQ
zrO-Epekn9gp-BqK6xyfIlypd;bqZ~wM)HUZ%xalJb6%!k_Ri{5GJ}wXtx~w~sx;<>
ztcgly+Z1LE&TW?pW#INJ5|t|v;k?||K<<!2#}vAy&^-k?g~wCqoWheSbV`A8@<a-+
zjg{IClT!b*88u2e-asBWM(UCROLq3m?V1X00)M4?=YCNMPo>Z!g`TNU-~T6;y;A6t
z!ujsGy;JyPjO6WTOr=}Z9)$f<7?8ry6kbf>=@bU0@O%m{r0`Q_ev0mQuSn0NKojw7
z1fPrGi?8PnN?~w>4<Ye~$7xJxuO1sA(QfeWODVjZ!f=i}g<&bY!q)ob(hl70nM>0|
zY5(>$>D3h6Ub!Pv7{yM<geKy(6h@Pqqovo$zE>rx!0O@B)iwG5Z6H6IE5DV(+Z3%M
zD18L)r0{ME2h&i}7?Z+SvMG(mX^cx@d<xeoJSn`F!h{qyrSJubL$Oa`c?zGWFe$|)
zYWN3&iy}CgOo<SdOo@=GDNMUt@?nHbPhrO0l9>^5rBVLb5i%!&bMM}rm%{uAUvRf%
zVT4RupRqWFk0N|Y1V4-5$7Dx@u=k}A@+qb9eE50%Wp~R5)ycmig_S9+OJRKqt5V_L
z`LV*96jn!ddhN>K<yU92)~3RLu`fI{dqWD<1UBAnf&VhY3b8f!e#r`?Z3<2bo2e`*
z>`dX86uyaSewV`cDV({L^=%4UB82#Z4Z>%CNMXm_)_#nTpHkR*x8&yt*%ra=5p2=A
zXro-25AI6g*Axy!g(v?B=f&Ud6iz(e@wXJZ=E}cEa8CsHrtn9EuzX*H>`&p}=dyXp
zrw*o|MD3^%)FQ}oJwl8Knh~_9J8N?P*O!}upF)s=7u~vWE*wBAg>-azjSBm;IF!Pv
z=#sY%N63)~9!=p`gdD$n_e6x8q_RXqIvrh}N#Se?=OX-41kXqC&j_;33lVaWbh!Qh
z6u6wimAiMZM#!>8p-f)AmUSbAn<*4e<H0okPT`*v3Zzjmjaw<)roJC6nm>&@(Ib7f
zN&iO3w@-@yQkdFYWTZoQPXzNtke8Q_HoZ5Eb!W3k6aGs=p>)_$;RxQB#{FsV&rMju
zU*{J2A4sD}I{d=_;(576qdF|lOf%3CKE+?L2>JNijEB;AIF0gYRESDSq_HShE}O<9
zcWahRqtsozbc8$_!7^z~h^SXCy1ceBS1Bnfrco)n%ub_ngtY4)_E;s21C_(!RZXK>
zR9-!e8WB=6f=%`m<lR~ko)tln=Aj0Og|RfGG;-3|bvCPBbc=<xBcx6mb?=tMzAVb}
z`q5>BG;;5jH%udb7k?~5)?6sqB#owNj8EgeG@7N6m&VXEUQDBT8ZFXzGL0^*ke$C}
z8XfLF+bTj@N3cyAZSR)1OCu5C$-5=(BjlM4p*nX=Lyj&Vk6@>}b)HD0bA)e>XxKHv
zyQR@Rjgs9m`QTGg$#ZEupGJ=e@0mugG<rw)fC#c$p9txjM!&ly{nMB@;{Un)bQ%Mr
z@@MYeeKtaF^~yi#p^zQ?qWcSJ42lW|->owwjsFqzr8Hhn<DIB{SQ@XS@%G(1!_yd%
z#;eg~vCd&rBRQiAf`9!+d{i2*-K{w~LS9efjk_gpM#x)f*g4^Yv~~O^g?IT1U>CoH
z`aU+QFfNUrS+Ufo*@P1~Dau0{tI~KsjY(<DO=DgfAEYrkjhRvXDR<kSnhyVarAY-b
zEh_mijg5n{r$_jVyLIdza%V;O><G?DWBZz1{!R}Q^V3+6#%F0POJiYl_tP|rUk~MT
zQ5uWyw(x&UT?cej#rF<`CI}xzIwHMfHycXWgaonyvLWr!J4){$y$A@>L5hHMDN+Sd
z>AhJHk=|55C0kzKw}mEM_}_Qq`=8%A?|kQ*Z|<}^cV>5!-I?{d*uZ?FrEJQ@mljXn
zR^TTi=4>DPHdb~JmbB%6$F@Begndh!1E)QCS1!KJ#gSYb&Bg9q?6nsr{SYm4TD-&U
z-*VaS822#lWh9$@O!hM#U_3}MpI}x?&*5DBHr(XLa&ep%PA<;n;zTY^vgN>qQKy)Y
z!RcI-&9u?gKg7@E;(JT~As0U~|B3OerT0mU&K-?kIC-9IYT2$&Hp~9X$_2)YjF)n8
znF-}yVRAJW)HEe;<l-hRF)uoKaf`Z|i}fCC@Zk4c{E>?U4-!4Nor^oPUwKf{gS)x-
zGZ#;C@iZ5I<>K#L=(z~w;vPA(ppEVnkhuO_Mh~Mm7d|G`oS%u9i~5bCDJj#A_a;W6
z`5j=ERXM3K#yvK@XXGNBi%2elxd_qfC}<9_;3_jR=~Aluxp<rlA`fWKEN*+q{1GFG
zbZ^l=%tMYSN<O2_KNkf(=6ZZVn?G;h`8{|=n?Li{=b~Qc;tg}!u4#LZ^5FOYljQTD
z!FJ~gTP*QtkGb<-roF<0QOVK73wco3W4=!);=$WY+BS}T%Y%_|(M3Hd#!A)*^RBDn
z%!!onV2RUIN_kM)gE}76^`MLg?|4w&g9_Zq{6o#_Da(3HEa$<-4mKhcJvj0vrm6?;
zc~HrN${y_MWUJ!AyR3U{Hp->vi*~kZTuDt2=Dmq2I@DI(gBq;-(!%s1iM2ea&AH3k
z+9*k4Jr5in#ChoFiso=)Jg{*Qy9cpM7FRaQMmII*u7L;Rs>Q{7(1b}t4;nEcu`wB!
zv=OP)!`wgVE*q!EypyGH{=}vpBzZ8#L;nFmGKn6v_n?CZ&AI*z4>CPSVeaxEl}QW6
zRvxruLKQaN8I@*nH<NS^S~H>7J~E&u%Y(Kwij$6P)^ivI#+p@ZZJ4AN&ThvxWLEP-
zTSpH%dC=d30UmVrpo<4RJ$RqGSJBqhL+1dXJ55uAXiA#5bvR7y;lWQXlYGEt{TO>O
z_V!>|XL}#!eHqEja0&(6*+x8#8R)?v4~Ba%!h^vc)Z1<!#x~Ij!Vo4y87FC3REln2
zBK(k*(G*u6;1k;@PLkfStKGBCPGp=1<2_hRq2<8@4<>pr%Y)e-Od|Wrbc6+_c<_-2
zFGtyg-U*~k_26R<W^nGFe70#Ge8QZvrh9O>pl!<_d$ngVl$^=>fOH%2IUdaQ;8Tu}
zc^(X_W$u&nJ+Qwt-M+wsRTXUA8rwb@8MTmY7BLPMn^Q!6M!`%5?EGaE=Ly0J#^sE)
z?6%K6=FUkvJu6vU_b6ty2Xuq*8V}Yo`Tju+CD(cI1t)3WpyWmmHhJ*IgD5Y)^kB0G
zS3J1t!4?m;dT`2v)7<DbTD%^7>%n#pdUv+%V3E506_cH`nwWgexZBF5_h#RDu!nX7
z57hn%dp+3a;XCXo;9;%^diJw%qXgj~XVDFJhscM_k1!s!^kYm0*0xbqC%D3sjI<$~
z@!)$8e(~Tu*Y*Q1>YqLMk;2S_vlM=lY}6TQj`kD6b5;*uNaj1PUpaY^@dD#nn`w5*
zgUg%@jy99mJh)CRdZ2l5!-Jb1__<5BJfJP^PY<2xjo;`cz=NSjOZ-9mKkFq5*(jHu
zJDj}BcsASiw+HvQa<2!uOsI)1+oL_q>s~TntbHED3@|s1nK98K>yihu2Vwr4MY_Ub
z@g8>FgMbH5Jb3DX;X%-Y$D9=+W8O0#GDbXjz@*yinEM`7Y;7a&(L-;g2p@4)rGn-L
z`wxfTw2n5q`|KH4_0ogq9`h=+7mP&c{<2q`^)KUVM(Wi!qma*w{9eR)(ZGvnFA8{3
z&WrM16!fBy7sb4Io5Vm&VK0h!F{PNTik?MDB5!fBs28-~QnI)gCA=u*MQOGNV@bx;
zVuf!EFe~}!aZDL6%6dVBo_D-B$%OcczUIVL@S=tnHA&C3Rb;H>MP)ClFn^cv=7Si@
zt?H$p>zZcO7>QJ8Ld(3C7xRYL=!x;7wik80sLM({M!LU=vg$LZTZf3-ys&$5W~#|!
zt+Ea;)>bu@hF&!CBHfGDUNrXN>HY#qUTiw$jQ6667fvr)6|yBT));Rip6EqWPSRC|
zbpInM$zC+`qPZ8}yl+eK!o_6DIwvJly-4F^3olxdCyUrfY{d$ZqK#q+-CkrQ2t+cx
z$Yg(>E@8{^ny+8kUgR*@H4K6mZM<mD2IR?1o9XbjoNVWX`2nGjsdQk)J>1pVi!NS#
z<;6}fx_Z%#CdErX&p~%DdU(;ti@sj;^x}OlKJcO!m+F&Xex|O*FL}LLnbsThLF{FB
zbME?4D_#tsFqmO0KQ(h88+_=+NH6FO@E|V+vqF|byco)Sn57K&VuZ!7#1tOo#b__;
z$Cz)K$bO6$bWtE(C`^1Tn~n2gyk$SZi-}%L;$+Qh<}N`v#fzz4tn=avFFy8S8s{$a
zVmgxrUVQ4sCtl3(;@~+mo@cT?i;<GEy_my%uBFUlGM}cB2TL{!Sy}4EA|{I&moQT9
zXG|us$E0Dl0}G>;v+_CP3NKb#maDv2ZSgfs)_Re*2d?MjCfe}5^t&)~`ZiJ^rJ9#&
z5mJ)gPSb_Io4wd#)v(ozZ5H3oWCw+AmTA1pi?6--%ZtCg*iA9!#d$A&_2OGEzVqUH
z4w5}Iz`X^Ic(DZL-m=$=eO7JzDbko9w3I_k4l_1u7=6^zk9l#N`3Xxo>BT9EH2#~?
zX%^3TF`J$915K_Mce~gF$z~^i;@q>0KQo@Ab-{#k7ngTj@ZzEuztJduD|E?=%bazD
ztGeRFO-^2Ayk?cU?!^s@m)q~WW${f3!tc!gu$0?O?ofX$<xeIF`yBVY$n_$h5BYuY
zc;RI|$_Jkpe&!Fo5SbW^5+n6l_CjH<GHRBtGYNR{e4qK32YP~Dgsj{!lL+H|#s`eK
z$D<y3@z{%hI7y|Rd+~(%Q%iZ~g*MEUSLX{BUwZM1$-kD(YbI}~Y<D|Z_NiT%-gQL#
zP_TflxDO?KDB#1NLv00#(EESJ!i<zG!sIO<idsrBCU5(2i6;U+l=NXsJ+o{n&Z775
z#7i?T<HI{l$}*Po{TJ=!IZ0-|1fh}-m3?^R!($(+`0%a|^L<$0LscK%^P#s7eSE0q
zLv<hGd}!c94IgUyP}fIaDMXj1(Y1W2?L!?O-inQWH_3cm-f$#p^9J*sbA2DuUKJc;
zx5aRC^pT&q%?Coe53x*$JACGcAR-NYXyikx4=sFX%te~`;PfHh>aC6cJV>o1P=_DK
z2)%L=eQ0XsCNW87Y{uA}F@@3P!vOxY($a@kK6Lb<6LrrAsklvG1M0AwNxF{??=}5N
zPlgYf%(E;dn@Nrj30+J-w;@L<&D%1zW29tzA39h(=SfUwtLz8lG3H$vyIFd7A0{r0
z>cPpLjPElJ8fot5y?iFpVEg*e&xg_EHy`@baC{i*qc4PGpjFQxABMb+*%ECVOoYYe
zcH8UXW<Q7fFv5qCK8&KkdlYlFRq+pf<`w7kG_7x=zgrHTW}1x}hOu05mJhRi7{`3P
z4-=?|Rx49|m}K#fm`rAz!WiPP{Fwd=z{%;1pD@l~oXL2Q|6(wQdEukc^L&`=!>`rN
zJ_MU5(CZPAPkmVE!zmw5`>@D|#XjuuVXqHMeE7_V)jq88;e2BBQXiK4@VO7mxVAG~
zb_MfQK73lzwvxiWysdN*b2BfHC{(LtTkA7#H(uw%7Zlsi%!yv_!v-IAa4AY|q#*2T
zzWpP<$%ijl-^{p$ajRvy&4=w4Z&qITiuq1U+2zC67T-;AZt-t@_|D?T`0s4{eAw^9
z0UyTl^}BhWcB>@W4sz!Y`Eb~W!XMj?Sf!5oaE$qJ#uJu)lF8apIOD_jKK$;(A3pp*
zbM3=L+BAIl$%nISbB;o^ukGr~f;7gTSt*fY`-RDQ#$OpJ_ks_D_$|$?zYFF4spm3h
zUGd?*%XZa=Yn;5!c!TjK<1I$2;WsAqZsE2McYFx@5b@zI?R%^T8UJDwefXQUltkek
zCvzF81`iW2y$V>0-`dS6bR{2T))gyPWuh_ai~&Z2w#35bw4NJk3;95wE^}JYm#Aaz
z`|!YrhisF(%KTU~vz)n`rS`J_<HHjl4*GG(kEcF7^I@AG+x>X%!wagxkM4fF^x+ll
zX?{5T_}7Qmw6XgEKi>Ed<u^AIdN-TTkNkcV^_v@DG-Clj3i|Qg4ksyv{AR2sCkk(I
zR$)JiFrlmvZ0E<An<qWRSbW=$;#O|UmoX*%DCI{rKdSpt+K)1RRPv*;AMf~4){hE)
z^BwGfStV9gx0UmwWnYwMrC&MojR!Sa(U10HOkRa`B2}5Z%b5600aD)c<NIEABJ|Yo
z!^T-P{iwyHHsj3oPRgz0M_o?VV<e@%A2AkRm}#?H{G&8moF5JRNcW?)9}WFz<VSPz
z(!-cHC2WoTNFoQ8u*Lh)#1AKPN+$Y|VDZ03+L|&S5;lt@Gk?;~){M!C$+i?fTz;fd
z=bg5eJP|}%aFWV)P83?PnC6F@$;Z4~X84imM+a7@|5<+ISUlU0d)-Yx2!6C-u`Ode
zzxlr~n&|eN%zIba(T`4k40{&S*^iIfno-xqkNU%HU0EcZZes1>M^8Uy_%YLu_x<?5
zk5PV%W*7DHV}Kt6nfGSw!`PRxA7g*&XAyJmsPaL64Dn;AAA`9Mq;#xjOP*>Q<_F=2
zehg<qd;}BvQ#SFD6eNS}M8^0r){jZlRX?s)wT<IS#{2Q-a5I1>aB`v_CsNFT%;cMe
zC;Ra+cY~BEeoSSXLxT%^9aEUPG|i9cBnDzWVH^6dB8jv7nC-{seys3gjvsUVSn4-F
z8qD)!J}m*O=L`JE81dh$FntcC`WO1K$dAS3K>mC05<fm;<I#!cXQk&hbG0s`Ksr!h
zx!-)tO39Uetny>M9~-EZnON<|T0hotXV&;ZAMU6>J9%_pP)`zthZAjt^ig!9pH5dc
zKih6%Btn1a+idYIer#n<p9r?OO>gY*<10UQ`f+BA+2>t;d`+#;NXOXdb!4|6-_m$%
z+rD9>KjkgTuzlx8f17O&D|;EqU>}qHj2jaL8aUNJ6(08EH$Q&&<A@(e{WwN*6fu2r
z(vRcJPcRmoX6mPCOQ9D{>I{$cdp~~h<2?K72S0waJp2=rvy4CcagIse%fYXHT%es~
zu<cNyaFO+EjF%WMGg9kUC{CC^37a1V>ACL54OVViHn(Wy-ZSUo4?k}E5%MGK#~nZJ
z`l0bk|C3yoWxL1r^iSBonEdTWS}PlpUAcaE{B%qlR`#&_IBW0-J8{2NzsN-LL$(yf
z50!b6(+mmPOmsg2+?L_ThlOoH=GjR$%8K}L-%n>Hp{j@nemtao!;dHtkGO_^{CMKW
zV?XFU2|e^?=_%_&I@;)6)-&eM8DB8IWPHW=FXL-Q>c)at+xY{Id?NCTW`xi?UixoQ
zG;t9HMHFJOJY!)I#YL20UWD;2#-fbHM7+&}D!Gzl#s)Z9hOwlGQdVwh5xe+L6J+xa
zi)9(hiS(T`b4KW?z)D5NN{p2mt1!|hp!Y<)Ww(`!vo#k{O+<CpYlw(rQd2}N5w)4e
zFjAd$nA8<fk4b&TB?AjkmW{cck&>|@92T!QzCZ&J4LR9}F_Ez`V?1LM5l$vlHi5~m
zusMpR%##?CMKoj5^OgC=CPf5w-o=>8*n*M7mP}fSNV60-lXQ{(M{Eu`Q$&^syNp<w
z4v|KVh&~efN)SY}5pi9_4H0ccv=gyO#Frx4i|8O?qKHW%I*RBdVxWjYB07ucBI13K
ze(;5^BCaM1+Jdz1^es^4J!7-me(ENrhX}%+j9Q}5OGIxG(M^T^Y}Q9aUn`4hpr@aR
zzx9}VwXz3@h;Qm_I?KJdX!c+cLqv=eF-k<`rovDW!$b@x$2Jv8Bs+hvoIQf|7<=}I
zG>WDIJtU46F-8QD@gfE{6~>BK-&7dK1~b@zDyQ5DBJxUoBx16N&qOR0F-4>wZ(^Q^
z`650RF-^oQ5wk^17x9UR86tjL<v!F@$b6jTUz<Z6rsPZ!mzxS|Q-Sy#5p&t*Ra2o<
zlBp0b5b>#q#Uhqa6eXEGUnpV`EsA7k+*Ef;lF%th7?xx@VbXXvIdGYX<sw##SVOHR
z37?Dj$ez7I#1~1z!6ad&h*jjGznvr!ju`J+D}p@m1r1ZgIuVa6WtV$W=t7dPLBvM(
zfS4puS2up?B5#n`{+V;Lhyx-Hir6AztB7qPwu|^y#CIYZH%Ztb;wuq5MZ8QBjEU~+
zPo29&luj0Qi}+duDfCc<q<kad#}cVTK1g=%5wTCiei3^qoSr)C{N>zss@3hkozz_2
zWPz$WB;v4$vm$;L=^z4>Z<KyQ#7PlHMa*31rsOdZ$5|&%^`8=PTEq_`CiF`rgEMUQ
zJ!A7^ffTYK%O7c%NJ#jJ3lcdeqDQho&t(z6h&V6eS5_{FxJV1UbmHhSu1g}qPgCe2
zv$1S^g~C$AHP)%;=bZ_gC`g`U-4t<4q@S%JM#66tROAy8uSEPI;x+}a2wlV-5qCxS
zMEFJgDdH~?H<JYq#WT%vvXCocbF$EIl<OWxI4OHax(_D{UJ<<}yH)Z`vLLc0m6FNN
z%>+qAg>^ZUq(>2<a)oEdxG5PR|C5JDx*v-OiU^6gPg^~8n_Ee5CPbJxnh8Cd3AqE4
zA95>?Xhk#=s8Pas%>-)q9}!Qut<5DIPenYVP-!MSC;vASUhqnxB-L=EneeZO*CHUH
zq=Yvjq9i&48HFX}laOCRw1ff@-4H6&|J;3WsynrG;{L0N1trjU(_^#MW@g|Ok?@v;
z;u1<oC@Nw6XYRKpyg$HQj4I?#Qln*?3vtcqS58i0zWd(loPD3VOGzj#p_+v163R$;
zM?xhDl_ivw(7L%$PNJ{og1Sfb_i8RwkWf)FJ5N036E_(UCsIX1RSEA&cvr&9CGLl#
z+$54)#x@t`Hx~$NNT?~Hj)b}rYDuUqfgGqd7dAFGhkvZOaHF~DMk@9GDtA2zQ7LAN
zHVJkK*%ERj#7b~TNS4q{LY#yK5)vi4fx_8PLL&)I2?-K5_IEdy5HF#fl1zJ4#T225
zMBfT_Hck-;X;;ii5omc1Oc9z&NRrTNiTjfjfp$5{YAzv#D{Rf^lF(8@D+#Hbq=s5B
zX&#fECSgXIL{iep)yYmbIeC@2MxJCvQ!;}^%FSf^EH+-9A_x-NNLaGU-BUta>Y;>A
z5;{xhI>yyrLI(*QCG2%%Q}?Kn8Y|qi;p|Bfx{!f{9ujCLyf)3<O~S;LIf1&_-6fn)
z5y*arJ^NmYaB`KKYJOkB2Q(;dr8l=*(IxzwBG69NPeOkQw`g%m7$9Mwgv}DRNOX)I
z21{5dVUdI(68&14ekqBMDbgeiCw+`-yo3=FKBQo931cOUWO0;)(Gu2;bCr7Lq`i@F
z49$p3Acb(81X9Q$RD1$;n2SteoGjrZa+gb>u$<%)rtpx@)yiJ%5~fL*&Nj0od?KO7
zYsU-;m&Umcxde*vnan9k&Y3M?j)b|~%6th6B#^;8#>+0D{hAzV{ZsN!Q5QXwTucs;
z@VSH)Z1WknvP{BKCbCPQ;VhT%!X;4sB~yi!5`Agh?7&6|t0k<VkxKZ24c1D?dhMu_
zDiH2jm$ROe8@Sq5sb<7>Pc<WLlY}q1!=DW|1B1eBtAuS5j!HNtVLQ$Ki>zG|zLu~<
z!lXfNdcI<^lLCICn{szc_(sAW@{fcHgWcb9k?&{~tTA&BjdP7o74}KkFX1rFMXGQn
z(Ro0^K?#T0=Kasic1fp)_z|`tgEy<)$0eMQ=pYgNOl$U9@<|D&C7h8kFI6~2lejvk
z>>4-e-?Q?Qgdf<9lpk3kqAZK1=FUm@MZy&cS0ywa<vvf*PD7UPs|5W+7nxm<(0zni
z)ny4Y-*Qq<h*SMEz-tn&OSnlJ&gbqM+&9YFlqxKXPiQ#Z9qn+D{=0-fBovYHmW<mH
z?nrn}Qy}54gg>bX2>}UzN%&iWUxFy%o`hTp?Hi<j8JF#$J!-t$E8$40;D7B{_*uM<
znoAXi_jLyooDyvj*OD~yLxMAuD##KP395u?1Cz;VQys1~n_Og&Wh-n*2ugS;;gN(8
z?Ig5oNw_cJK$UDVqqdr@$tlu8_<DZYdo6?q)ET-gGQs&+!aow8NO(${-dK0j7Q&q8
zj(n5dp8jsKd`6zX;e0aP-LZx6QbL!R?kL%u^jE~!x&Nh6taZO;e8a&&S>uXk=aZ3N
z#^i*AXc>iM<XlTGz{!G)m763`R;7`y!ZOH#RHUekVlv*9QB}s<GK$N1M@CuMtehsR
zgbc_iDVx(>N(O}!O*-k+fzmR{$mWF7SSYugjPkNMkCoZD0vlJ7QIQEvE0xVFNH$g2
zl1jZNqZ)T?dQw7l88u|ol~GSdO&PUVuOoxzec&87J+)=fytn-@j)p)<BK2j&uuq6n
zhsi}Y8R}}YOAZ-vGQOAb1NDanE8}As(_}QFK2z&5ddP^E(L_eNjMg%oG7@B@$Z*L>
zl+jd164^K$&&xZ$uHzV2-w`SANS4t|#>f`Jg$fSB=FICoa;3_c*FtD1qm_&nGRQKv
zPV%iKNRzRph46a|!7bxN3t??}$DN7}N@mE&q^Xf1$OyF%vgrLk4Y{RIq@`fj)5$EQ
zrO-yEYueCJMknfROM!aQPDXnf9b|lRD3fqfOS3}4&N7H}k<nE~fqj|8=~>oNAl^;J
z)CvwFJ!QO4y_GRa#s@Nb$rvPKFn6`LjD9lub0vLbeA80sE8}2!2N4>`02u>i)Hz^Q
zd#<JMAl9*ef94Pw<d)$wM#vZ{W0(wYOW|otp>!*=OZ1$+S-ew0=Z7+$)GYkZL)T~-
zW4QjJdkTz|F^*<d#uORjS)3qaq6{+2D|>|oMW2aU2_MPy>uIw>!ahu<Qnx!4Cxu2d
zo%|qUtBh?jX2_T+V}XoMc|@~h%#kry#%!v;f@5kcb0G65>s0b>=JRDNZzb$%CH&Y*
zSSVwWj7>7Wl(AUG63UYCxs1=as-kJaG8s#WQ^8ikvM=Md+Z`mXkWo8LSjGLHUeU2q
z1|e)_oUE3yhQ?Um<ZGF%lktV6te3HY`9{X8i=)VFGuN|42Kgs7%^dQuHEEIhj_opb
z&|J_8lJS*{oie_a@tura+&7A`Z)AMUd^aP7Ww$iJjJ@NTd$`UKLrWZBvX^lm1wfjx
zpZUTxx>Q;?l_ngPaYV)`8uHEJM`awNZa5q#$QyeykIVQo&Ga5|iolc9%Bkc>X~I7-
zj?*&Ea1qL-hsypa<0lyf6%<l%R>sdV{4zut=VbgM<2M<<Q!p2Fo|kb&##I@=@}yso
zagjTJiI#v{_;`i6d@i$6)Gb_-aa~5AK>97(2WWl8I-0r7{t&szNg8qoR{o&PU&cM!
zxMbX+Evu5FZ=K}7WZY%`CnJe#7e@_q3xCU?f>f=CLYE414gR{x^WB1vg32un-j{j8
zEl4tC3UwJTWGJ+;&}x+tmZ8y3a=pZTw-BJsM^D#j%RQ87`k}tV;GPG`hv{ZNX(}T!
z9?5vjW4}*hOcx%=c*vw_x<JW)Xyv90OVWj>6cXve6Y@-%Y$D|9XB3c3Udnhyttg0A
z@GnJ0x)7z9NQ?2c48k|G(Qz`Lg4Z_3PcaU{0*bjabmmB_8|%=HWENIXL_sYDwH3Uj
zps0dU3LPP0`n;F|DCPvwxZYM!TroG35}ZZ3C(Ai0S(1~qiIq|Cj)IB`Dk&(dn2Wc(
zf(i=CDY#2RNEgbq78<oS*Gpz=p-*d}G8e4E_(^M__<_uKneQ!=T~z_$dkU&CDO|@<
zT|o`zq}OCZ_195QS3y$+Neb#IsIQ>0f_TN8#~2=FoB|ss?Tn<yDsWi**4>1Hhcg=}
zn7AaTp@K$Sgq%akCfpOJf&>NK_nI3Wjdw$9fp*SBb|#Tz1<e$=6r{3oa|J0}Gg;2q
zn;CmBlSX==wYhRzC}^pml>%~OI=7Ohz^#B*<u7|O31uyvHqX{n&#7dx$x@K5pt+6|
z9XSdF1-&)&(a=UgTLpDg)K%$23fe39M!~lVIw<I<V7`I{G+7EdD;T6;u!5m)Y+V$(
zt_2?`=&GO_jfKS?3VJFy_Qv)_ii2zl&M#0a)g--W)>5K+E9j%(+0rOd`YPBow?sb$
z{b_V5rs86B_b)zx7Il<;pn@xJY#AwzAyhM0K2O0g1;d$tqF@9QDmY!ihYCh27^Pse
zf+?0hM!^K;V=ZNzg7M6&EHhiAXQF~hR_;d%CR_X>&4|T6W-^U&5qJJ@bH@xTccwz;
zf|?GQZ7Fk@%vF$Q{63HCQw0lY5h<89uf!q+ixqsKV7-DR3O-Ztxq=l6mMU1r-dL{S
zkJdt756NBRpG9wMD;2C#u!d$?f!bQ=6lGt{4Q<S4CrfJOmjwmV6Oz|a*i_3RWrKo^
z3N|a)LatWurGm#*v&f8UBd^kQtbQ-+PXFT1S_@khY-68qXUupni~Nra;VT6@73`w!
z^)F7!ZUz1*``5IhGX$FAxF~zM{Pyn@>`|aA2+-P5uus8n3Vv6xU%>&|nHBu3;Glv-
z3Qj6GrQooFBNQPDjw?8-U~G!x-VagKtAq@5yo2YK$Q$(uT6Zo7HF{dX83o@f_<;wT
z7b@*jqJHG$PZX9>_PofUf@?y~a|(V@a7n>s1?Ls~s^Fr6cb7$7VEeq-TcsAtYvu8f
z;#U-0Rd7SWP4@gXHoMLvr2&!|RqjrSI+GH0i?i}(^A82L6-eCr9omHy<SOte_*21O
z3hr@Ll{QCH@xN&W<+Ha<brf3`MZ=-uUIjh{B5kcH=D_nt<mbwJZ;mFVXg<5FK%s*D
zi__>-1sZLh`Rv3C<Tue!5LA#~MYM_#PuW8*PW6XrrPFSp-~ol-8yhL&oD$npqG-Mz
zQ2@{~WXsnI-Y9s&oI3fG$ukAdnY>_p$@q%#Uq-T|h10EbVw7qId_EP_+m`1GQ7g3G
z3#cflqMVBIDhjD6tfIJz5-N(Q_$10+OvT$O-cnIi#YG+q)zCUapc+C;qsGrKK$Sp6
zN!8pI-ceCX#g%@=ORFeDwME%$E-26^<TO%DA3hplMq^pl$5+j&prWFRYAUL$sHCE@
zig#61Rn5Sl>8`?ErB<l9s`>1P+2`+ZSz4YoRMb?lV`)@v6;GE&wTv>|TZ@a(?9kLu
z4fRyiSFu&aHWe`{Y%02|=%Hel9%EP0qElM3idYp66>%yWs7O@t&hf;CDjKPH9G~b^
z(OAXwnvR|sLKAXDow#@vpZ}aNAU<wq*VtD@V-v{WRZ_vS$#Ya!Q!Y!zlT`HnsW_2l
zDw?ZEQQ=b2mNsV<snn>7bQP^tv{cbb#oi3zVYk?;6_e9cOw176DyZ7rhR($q!k)U$
z3>BFwa#WmJTOv!vv$5&fRO(0~k*lM!sz0<-mjo4URH$nmy&feEdYyDWLujv}1Nl%z
zXB7>bI7{}<`n!&^ql%*mS;V`LyQ;@_Rnd(+UpD#8)1<={lYJS&>kOeohqRs)7%E1p
z7^UI^6}?mpRB^nFIoRGRPE5<{&pqrzL+BdYmw7)G3#%lP!2oh#BWKlWPQpPHOPRu8
z6+>u7R18xwT*U|#D`&a#|Cm77uVY%PDzP6@*mO#ZOG~T#Dv89=D#oZ-qT(|ZW4ZFF
zDn3>*PQ`c?6Uap>K2kAR#quADQ;VxUikd`G`p{1NL@npjSmzX)M{4(-*ugzwr_tQ0
zn5$wQ&7F!FDrT$LaKJq_V4q3z-XLz4idnX}1@m3?DkOi?ErGJ;u)%c0K3~NG6;$~m
z71QG5K2`C}9M?jcwfb@L;Y11vN-n0bsU1s?ek5_Jiq|`{R;pN~Vj1)06e=oKFsH1&
zm6O$?v0tyqTCHM@iuKfxinY|+CUIY=I9Dxs``q+(G{xV#D>R9F+&lK$hH)EdL8;iH
zBBM#%#mdQFs<@@vH>()bs~H9GlirDq4kjj6bC9^576N%vLn#ekso1IFx{4br>V4tZ
zrQ)E9Ln^-J<Zc>>if>hXr(&Oq{p6f@=N^hf6-VNo8JPklXWQd!0egd4E}EJV_P7Ho
z%2tmha+qvX{G{S6#gd9+Do(3NyYD)#;!<kbNs3YxPdcWZAe$yxuOhCi@y?x_-BbyY
zGb+AU@q>yVskY8(4cey7X_MABQ<#z|^#7pQ&*T9W7ifD?K>_)T3OUC0tBUjFqD;Yl
z->ixn8u!S4NyTN_UQ}EqAEu@q%oKJvE50Bx>q?C48U>g=j`~kEQ1YhfE<7cds`yRC
z?<yp!R>dDGZmaO9@T$0@;;u?pe&C*pj*Xmus&v?L(qA;Xtn5pfLWl0L&T7tFj>8}8
zIVr}z?-tv=y3<Ev=@u)hDBUfVZ2T0QZPO@sXLV=quCWR&Myf}JueMWDp{oeeR<B~+
zd$9o(2Km2+b7|LD$}QQ`#Ha>NM-69~?WvN8iu=qd>j9I8Djr$NV<w@w#h*|-znk2k
zO}4i~v*#*a(2lJ^cRF8EZ)u0rP*^i}xn3Vdz1)!XF9jjl*qm<|qcoG#laEP$4be;r
zSb9Mw)R`h0-qKK1Lop2!O~g-G)Mvt(HDYOrp}O;J4Lb_Nk@BdfvxEk4A6mQ}`zBK;
zt)YyDrW%qoyrZG4hT0nHXeg(lyoOpDo<Ffy&`?oBbqzH%RMJpcLlq70YACok{e{E%
ztZ#BTr!!xV*s2=d(@;$_SNZ~1TC=)N(vS2>u2tP62k$1;)KH<Gb4SnE4{ADh=5soC
zyC2ta*45BJLqiSqG}PA+qrs-Zp&?EK<=QpGYWTTh8f{0rO2kqS4h|*N3cF}iYTPo7
zNFxm;ipDmfUj3fjSi{3`LOd&14kX@N=WuFBps_zpNU0c`NQ24}$n4C+gk%lPG_=#u
zUPE&YDRk_nhAa&(4XGMhX-L!1Lc{A$X$K#;TGC)Uq|tJqBu$oE!}pU4wAPTJfdW2V
z!w>5mqdS?oL`tWnUGzB}Swgmk91V1!XL^=E$$nWv8x3u#=77C*m#p{tHd}c#k$49U
zYwE|k`own8K)Xjr#!ebKGwH)yN>>ftG<4U{L&N(TJ|K7Xjot2y>#1SpckbC|6R3Df
ztg{#Or(*KfD#<HqI4AUs?W>_5jq#>EUPpfo12o7Q6b%D44AQVg!&VK0H4M=(Tf-a;
zLp2Q3@Udo|Q#4$|2n}O2jOFBq8b*_EuVbW!QJQ%a8{O?oNBPm=)nrWKI1S@9Ow#a?
zhNI=9C(uY8B_`6uZA+r#;|R%YvW6)dC~GP;ecJX)w-J&~xpa!uG;V0RhEFuipmAxK
zrD4Obw#8hQ?)av9@~WDvVIDb6!&(jVH7wBZnTDmb7G~Q%)v!pzVsdhP)IzG{xp`dG
z*ajtzHHo78;FfR`V;<O+X;`jdg@%<HKBpqHZ7nVrB1^g_>z(~{yC_!Ez#EjHN~n8V
zKQ%kKEHic;7bm`fhPfx|3vO{e`TS`H-I2Oc!zK-1^0Qepuiv6$NJ;;4m+i!-wrv`=
zYxqUOd5T8b{52fXa9G1mTK*dLXxOWPI{CGRZ#8_UVYh~FxVi4jZFB)WHA>wkgVZCo
zQC*_;aTay>fQBXyZ2LJ$XP+MAQdei2_D5(UG@RCOhHBPuT*FDuJ;4o8CHE&pwOVgl
zo?>NkmU$TL_Y}+;e$sH3NB47l6p24_{d9gT@t-xEqflIKBYP@K4|VTX4Hq>0rr~!A
zTFpG@@(Q_y$t4Y!HS^9F+a24A7v^(~^_v>5Yq-HRlSuWD!7Uc4I4OT<xUC^qgGa+1
z4R<yCt<e?Xwm-QxviXbap_*@ZO^;uZc#opukU3wJ<<;P$-Q!Xrk-BlI&~KLtk?yCE
zevnZ?Ns(yxW2J$TqH+hKbmY^ak**=2!C>)U4M8Rm4fi#Kn1>muw&hvE1Llt`<ze2q
z*e8!Q{A1})m^{_+jLCDx7mP0%%|6q5KW{pLp4S@QuwJH%Ih_1DqIGjg+H@4qQBX%^
z9aUH<q@xrQ$}P;K2;*CfMH!1RzOAD;lM;+%4;>|$uYZz3$<oZr=y-=oSsnQwm^wY>
zbd=Xof%S?yDls8F*g1Mmql7%0cXiaY^r|}E)8V^ltEQtmi#2rAVp5Ya_g)DqRhxMo
zMoLn(^>ot-^>xIs*tk=A^xNk4V%HI?!@*)h%RWv=1B)NIZMv>eUMa?nxwa-cy*&_|
zIudkq4@}f?HcKF-DeFm$q$hK3Ge*jF=}6Vh|K<$U(LzT{(si`g(Mm^}j@CLdbhxc{
z({<!ptKdej<V@DHbYwG`UOV&f{fq;xVySOAIs_K0zOc2?(N+f$dY)$q9dvZm(OakU
z?$C)mpyLC!q`Mos=;)@SyN<59c@;H1bXN`?W7|VVPaW^;sF*D@$QFVpY{$h6!upMx
z_2RO{_qld#wDr}|kCQ`a|JN~qhWxE<Fgdeh`am6zdc_UWvFeWP;{6Qb6&Ks$R@rj0
zg~8dv`d@6rbPU%qLdS<X=2GiAMzUL`>6or#l#bDy9HV1`j)^+Pa&nxGH=_%X_r_E4
z%Y}$c((#dwsXBVSaikoNYE&k1vW_Et+*7EYO|Dtl!dKbR@yp{srk+Hy$ex~0bj;8(
zlN?e!_2gF9yG;{jnc?T0qhq#?KhHYop)ZhJn(8Kz?C0zFS;sjY3v_&{W1)^kI=!c&
z!$`4M#}XZ1=vc4gGaXB*6&<T}EYq=E#|j-Qx!Za5e6HifG1m|C)7EF3|IejoFYOPT
z^RHo>bvoA4N<8kO*5~$hO<89CPiljXjXJjI*s5cbjxTj=rsOf#yQf^aRUP}Yg-h8&
zjgf9DvQ5W!9bf6#NwZcjdj|!Q;*@CaO1Y?>8U5Xzm&I?*h$g;U$2U5T={T<ATOHr&
z*ss&~u`&5U)*c;Y2e|j?*sJ4Nw)sEJf^*#4K8r7zBOKImh~`(vz+vvg<Y67NR>u!*
znn2$p@=SN{lbta+LW2>mCH<36=s2n4jE?VhoT89k7)3oftz*cwBx?P@Qg`}k*AF_9
zC%9XUEB=#?8~qZ0q;QR75jm^lpBv6LB~n}E2*2n!uOqA@qT^Q`7j)dC<)GuDj!Qaz
z)A75G%Q~*;xTfPeMRJZXvXkQ~1y7DJH%B16VFo8|k>7Gmhqr&`Ji09Y#ZosVQ`g7;
zq2o49w~oJbI7_77(a~mEft^bncR5MQ&4035FQHk$@lvi{qg*dfxoXdJdvthpC^}Ty
zf^_(Gh&m(+3|Cyy5$=QBQ2mP8<g~`l1erXxES{Rybm%lR`hJBDBPW^ugM4#U{L$eq
zLr0Kje`r%@h-P_he7n&ulyTkH@qmIMK;O*7Lt08Y{?+kX$78BQ$8#MoXd6j%J|SEm
z|CC#Ay&}Hf4EHk{GLLSr$Muq4adL!LG@Bk*(g_!R5rV!cw0XJvjgF`Q@&(LYD4!tE
zcRVT!LjC|M#HG`-Z9`(g015@Lbb-5g0EGi662Myl6b;b%&(65Mu8E^v8&|rE1#qjW
zv)JnRw*xr()VWS`HWP&NbaZS0Un$PCNp8YY0hA8F8-Xu^G6B3pPY`A437}j6kpS)o
zP@dWipd%ek89>DVDh04?MU*Rm$^ldfAUS{@1?}$!P&I(WfcZh@y#T5O5Enp$0DPlj
zs|QdkfZEJ!FxF)J=cc_*fWjum9zbjWb(z;=tj|bUF#*_^Z=G$YWL7b|BY<|L?R~Em
zx_Ccl$mWEGmSqzrjRKhVw!JZ9JmaH%X->-~fk}J`dsFUb5@U%4$<*g&0rNyndYUsy
z3E;__1WKj`&?11A0kjGrCjfzqqy>->KujH{JAm{6(*7+pypgjtXGQ&6h-%B^Tr$XF
zlFdjTh1vwL`yI#DoAyh0quSCyXv#K3w-2BL`;fkR+HPF|Qplg31LzXK>HyXR&^3T=
zG!c5tiU7KkWdM@`_$Yv$0lXi;umFY!FsMe<2LbdApkDyJ0_aVXB?v3WCHAq#)y5Ok
zKY#%NJQ9S#R7wzL3&MIq7#N_d5?c=n;IJTE6@(!aNNt3nG-Yjs>^1`N5dnM{z_<V|
zwGl=JFe-q9Z3H@quYVii+3D6Z+6bem(K|6?0vOAL__{X2_yGKEgb4vWYa>jgplT~n
z@rG@M$pK6WU?KZzDkHh;bXM}mG+CUS&Nw@OPpsS-OlAf!%Tm%`nogd>$+-c{V=|v{
z0pq8P1M0+*+3+<576q`F6-q7%;4|h+EoE5%%b9=9ICY|(%vJ`liUwOVYLgx_tfu+X
zp0xq23*b%wcLVq$fb|?pu{*FKfQ<p12;gJ@n*#Wf{1d>T05%7(g(?i->j1U}K%r|d
zWybKf0RF9Nr{wkkcCb$TD<(S`cic=Mv)uvg<0guiw0{!-;kS(61+a$+DSMgxdM#l;
zTOME>U)4dy4|7$=19aa?&JkMvoOO(`eOuwKw-DLTb2ca8Q~;+*58y%oXJ~adNcfS>
zzULZ-wiSK|U`|`1c^&&twAU50pQSqQq|@^=lXC(5!sI;T>a*FDb&;Zlk^#h*H-~&V
zfSVMY<?L6uW>T&)xfZ~6CO0hIc`=c4Zw2rhE59?YZ!3^^n`@)hZIrkF8NgrU)th#e
zc1YSH$~k-#Z#0h$9rpsr4Zst?)kwBCfFl%g9UWbkCY36XDh5FO<c#!RZ@MH}S-TSC
z02GStc}ah?74Ea8#?|VKRDXbp!59o6Wa;4mMjk6p1`lZSC(*z*1CIiD9KZwv6Ak=B
z8wfA<I0H{<70?D~ppJp(0lWy{T?17OybRzKC66TKH}G!&uW7?K%(1-T5p~#<n6Wr1
z%0Q`h!s&{INpHF=i4-EyY*v7=pn*aL3L7ZGNy@Ek;4K414HPr*HjCvMiyJ6OwHYYE
zNihDt)U2>H^D+kBVRE=abXg{pRgOvhb^`HMj1>%2v~nvMc%Q{8RzWgrxHaiL1Iyb9
z)eTH)CsZ>)%K7IhH4M~bv)%24`o*(r86bRbQF2`a=SeZ(X(t@6Y_De^=i5Y5Vpy>;
z+8JXR$;`oomOull+(07(jSaLn(7`~wfhGpB4D8ZloaE$oLURKtoJ?R$WNgZq#F)(3
z%)q^NE-FQj%Rnm@QyEEV!K5YQ?MVelNn`FdkZz#0fecP&{*S?qt5JEiWwV%LKw#2_
zk+RwvXvh4}N2X;*1Dy;EHZX+6&IWptdku84?7JH1X7TO@dRTn%O>;l|z(7As>BXcs
zV;{!8jOVKt?$3nm2N)P=@j*;zUtOP-Jk-D_1LfNbWHZdbaLyXR_@QM#l8OIJ^k^ny
z7{@Y>V;s+TWSHqFdKrzK?btr7=_CUm8JKKfih-#HmQj!x_}IWS19J?_H89=4CkAF2
zm~CJN;Y#;R0|yqn>4|SIbZjq-XfMoZFC4m-L`Y`y49qw185M6YEHLn?fkg%u8z8f{
zo@6bgRj?q9D%sXvAf!@D44krM6ZxUNu$1|o_Co7=*`FI&VPL(14F*;kSVb%7N!D5e
zs|~C%@UXp5q=VV$znfgt5S3kL;0tb)8WNsmwXK!C(ZD7Hn+*(FlS5DCr&)ww8ptEW
zw-~72K_F$jfgKc<23{HX%D_(AD-7&u>DXo9YXdh8+%mA+z&8edHE_Yew+6m5u%G-u
ziXOAaFn<a}zo^}7U?1@g=59|9k%I;f8Tj774+ah!IAY+mfinh<(&*0E>wTHzACPd&
zzz1K((R19u3FapmPg(lgjnkWT5UxM4A*u1ARL747elqa0fpZ4J?Hz?TIL;cNEV}4w
z^=|u|yY+ve#cSaH)Hr&mV}v*7G`MJB{0_$z16K`PqAt}eOv%dz76hF{t{J#);D&*^
z&7Abe8POz?O|zi0SZ4HZ27Wi78qf^<Vc@oby9WL=K)H7eYz&(A?SjsRTMGQeHQY0h
zYv6A-$g6>JyL1pdoa?n(@fq+l7a1i+*~(S&#EfX&K)^tRMr6R?I;n@$7Ck}Q*n`dx
z`GE<wMac&g9<=itc+AFRW@JPYQmH5ZPv|AUF#nTF{|S9Y8_Q$!-{Q{=yr8X{|5Z)+
zLXY{^Ky(mi8aZAYcteq#>WB(r>TE~;AfjhG@-b49^g$hj0+cn;UNC6xa)p8@97K^I
zc22W{_4>V{-U^~9^I}1~9mK~Sgrn2##hH{~B<1!5J5^FL2x*zU6k}<|GK^!U*vkb`
zK8Q|1bPl3I5EX-H6hz}7Dh16yM%4?Veh`&|s1gKS4)Sgg?*&mUXx^JsH3+)bfUd@?
z9z=~G>I9+Qw5{$S)C{5)WxcQ+=paz?Y6qcq5E+YXV};ndL0taTMpx}TlN?leOc1sp
z?A%b+2d!g+aL{lbIT{8LN4jV)waffdB#{Q3e9$_Uu8XDnUgNn)%OF|>(Ig0G5D7sf
z2GKN#q#%qA0^Q+)jzZG)q~st46<k5ojF{JSPBt={2T{ADKu<~#$xKp%ICVdz1*7v*
z8}YOt+(C2*qGJ&0+?EhTn;=@#K!WBUIWvRE4q|vmfp`|VuA@K~Ddw<3;@FPq<+{hU
z4Pr#4OuFTPc)K77+Xq3{sSu&De;2XM?`U3I&?ShjK|BiKaR}Xl=uYkpp?U~Cg6J8<
zk3swt#QQ;f5X7<|mIuwBZ1)OcbkN))dI!;mN#7s_1u-~?ew?JN{y_|2K9Di*S8t>b
z;p7O$p^U>Ahf@sj*$W?XawH?!j|$>mWApctV}ckP#JC{F2Qe>*`9Vww(qh3(ww%N`
zm7<QxM~sshrv(2y2a+n8#>x!F>5QK+=A9mp_v7eUtjrE#4wJczR5s6M0VfyJELi%&
zAQoAi4pAY?B{b<53Vp`nQVQmsQS|ib7X5h;n}gWG`idY{2C<6y>LAuzHLPK>mT_GW
zUj)sgQSv&rfjH}%g7}ij|9h3l)*!Y8u{Vf)oVA@Xt_c4MIEb%k<+8FXh_8d#&74l`
zq27KI#CM$hmXQ?F_xukhWq%MSf;dUDZ|Mh_9AZ2i#1TtB8pJW?$1NqVl~Y0F47NYI
zW&XhPG-sV*{GRa#Mmi7kY!E*O@h>OO1@TJ|zXkDo5a)yVl?Hgc_^lu=1aXlKt_97b
zHS^9vx<pHxMXLWw5LYeU<3ge9%x^H>wDdfeb{SaUk05Rbq0sIT#2wD1pWogK;x3Js
ze?$Ezi+?fx9mKUdrc3F`4Z_2smyr}-5Ps$&qh#rF5G$IP>qWDar$OjJ1Zc0IZH-o+
zrH6vJ&pgZ+vGng+nvFi-<ijBTUw<6LKbFlCCb8FwKeLqQOkM=>lF2K^yfA(p#G4?Z
zLdX{~J61Y`{7i@!V-igmLP6$*LU@ZwVa6hiU22=3Sd0D-r{voq6c3?92w=S=Bk410
zN0<5^UM7ThLMUq~l|m?I@$yV6giw)5+XLqBb1Pf9RhYaRLRBX3F+LuWPBt|{s2Rf4
z5Izo}RtU92=n_KL5bA_bH-y$9WQ0&Jg!&=GhtMPh&lFos2oA1+PO_jH?2NIDdA|#e
zV@_EOLTJdmk)<>a;q2r8ey!{bp#|#+AtW+s8iI>S5@RxBvk;myd6$m_OkuvQqmask
zTFIN5mYi%ALYk$!LrAxHxkk3k5VAO#6GAqVkzYsAPyXr58LC8Jg^r7C!=!Bp?U+#I
z?U{67>=;5PCY>3nAgzdQA#@L6L<k?U*dv6#A@mEOX9%qZn-Tba2p@1(FRN5<CVld-
zcH#aZ3<!Y^#x#e+;t<Pn5R<`-)S01{J}iXc%=4DyNao{1m=MA!%Vso_F(Hh#lyOYz
z-z!9iOH*4DIXTJ7{V0UV7N5d|%%+7fJ%ryv_?>zf!i*4p4B<*^+sqJVh43Al%?@Es
z2%m?rB80hC4NF3p7s7l_E?`_7!lz6YhOj7vye*Epv6YX)&fAth3t=hSEMuhH<>X2J
z^*8aAA#4ia%Mey^?&=WMgs?V*bu=&hI!HEOgs{OXyPjT=U&YXo*Be=(lSsYY%o*7n
z!uAk$gs{c3+{$DdBdt5K`6`63Il0ra*%d<n$;b=x-64Eq>EDuv9k#evF?&MT%i_Ke
z4ux=-`F_R&Asn>qM|Ll9B!r_OoVJu>OiqSyoXH7Gr*i_SC#N_`vwz0YzYpODi_@_}
zKhd({<j;(^LO2(~FCm=g<PFR6*AOm*a502StX#A7%QT@DzZ!zx#2o&0OS#D>gxn0F
z&o5?Y=qb|Q_6NCcd$czMUkJBDxI_EK2IpNa;$i%g@vjj6w(7aZB$qL7LWjC+{t(0v
zCR%%f#JS-RWF|@oDibXPg9){+GYQaK@Zs%2OAlGf9oQl)-e-Ie!b8i3-f8?3!jlk+
zMo=t*ry)EGVOki|!+0LT3)+#wXc@-KkoktKR2Zehcoo9GA-vA3A^e{Q-f%LCllj8P
zZ|Tut)a3VF1z9N+M&U4uFfSIy+hM%LyeQ-0HRgIR&K!&-7)d1mlw|&U*xW74gz-)o
zC+Xd97-hpK7e@6kYJ^eVvVS*>3Sm?Xqf!`^!>D5Ed3$3X=4}*J!+0-@YT^Ih-Q|fj
z!>AQTgD@I~Q9Fz}Ts$U>x=iZ*Pi^&?)0+pnuEG|EJ&af@*Af2jJi0hm@@j4rMq^GU
zgb^P$z3Sv-6RXt!_bt&<nledZOb(+Nljc@#*;<9k53Vp$*&)Pl(%bkj(!v-W#+WeN
zY?&2CHj{M5){Gg9nR$v>C?^bod5m1VO&D#%c%PH)7|HFO!f4OD17k<VSid<Vox|u7
zMpsroZWY}<jBd;+YxY3={WzuvCwns9I^_5uj9y{%4x<lwK8!(O^tJ5!GwGLS&l}x<
zF#ZgfXRr(oV@Mdo!x+K2Lm7uLb}C|q;`qV%kdwqmGReCXU=;JGqwHhD$T?(IH7Sg7
z;s4Is9UsO7HkfFYrBnDm3M2S5=JyQS<S^(k*ePL5<=l@g8=9$4!k7`pjWBM8F*A%=
zVSE$Dw_(f<V@?=fvgKUHgi^NUOy-3#Ka2&;KV@9RxG?<RuD+O)OBg?6T*|nNk$P@^
z1hDvuFjg{O6~<~NYZ%vuv6jg?#xEGDY+ev<;N(WeO=0AnR<}8fEv#$}V^XccUoqbn
z#&#xDb_bLCouhYJ$}T2fhq2pId<(O`BX@;yp4=6P*&D{bFiwYYCXD@TbA<5#H5$et
ztJL8z3eGV1*jgJ*Jj(j9Fph_Df})y}rx+VPjJev-mY=UO!7zMp)o?b9ADI7WDL>Id
z8)k;Y&z5qI$uHsmPSX1|j0<60WbvwHbBW1i#w*tPy=LWJx0G99{1%25hR#{Phaocg
zBaGWj?u3!c<Srw1<IgbuV*WSdJxlLC*ygdgHw>S}{j^mULleGRK?*~*bR`Vc;(2>T
zAdClL`X-?{Sc8I=NyxGZGl?+XXQUW-6vkubQ4#zT#uM7rIY~7<rJbMoGfT;9<psS8
zSV~?L{Ts$>OL@bD^n4NIkKnB;=9`M>2){Zo7Gx}xr_d?T5fowmmZebHw<9PXLAwar
zM^GXHM35XoGd3t0LG=h~L{KV%hy9{UvsfmAcOoduyb@zM#`266BB&U_M;FZ36nf|r
z9ARb7suIDwOh~E9<UPh}5lm$>(rZT0gvDAB)Q+HzWp86rm$4pW{Rm>1fX^wVvUX0!
zM&O7bE`kP}B)uUMI?B5dlg5nkRxWwKY4HRmiHuDnNV0UYX&yleC$kw{5!^m#ZfL2T
zY{A$vVqWCbig{WD?g-MElUY^-t(j+7N+y${_X=HFm`w&b5eN~qiC{!KTU&B_f7`ei
z^FD>n6YO*#e}@P<MzAn~MG<t0pfi`9$k-)<ei8JKperZ4F?NrjM+7}1ct3*PtbD*o
z4fSF|BO;!MeIn?~VqVA%h+tp@qazp-!62IJH!<Y8VG#^wn<0!t|EH4S%ttVO$T*U5
z6yyK5GB$z<mNG7a@fOeP!<HJhNfb5_OlEz01fN7Oh51y=^5Y1mS$xz*Gp=StFxOIM
zGMU9Vn{f`~NIrvl9`pH(3nKWG3DrPDTO7d>PF{}Svj~<(uq}e^5iE;fIqRz#KWAK5
z%={bC3g#;#^nE0At*w|~;+hE7=GjEBF@jAIe8I`}jAXEZ3AIT4OXgb{H#2Twq?=hN
zmqxcEg0CX@F@m2W*crjD2#!Q>G=i_$?7Il|M6jDV*?$wkw-$dBYi<I2BRCMj!3g%T
zzTe8tTP%knILt~pzN&^k2vCt@5gd=;jAeNuf>RbhX&Il6;91ea2WptF7vHn^1LMA)
z=6S_ung7E0Gb4%TD6qT!w;P;~;8)f!FkWQ5#28!1>^4Q<l?eT37S~w3&UiP18xh=O
zev9#s2!3NiMShR`cP=0C+brH;%)2G(&j|h^g9z@i=%Lu=4`{iZ%;SXq2t*p%Lp*;7
zDFT^d-~qNjfD(a9-+Ot0cOF2CK&Pd5A6@Pv5P=avq5CL&pKicR3R2k!o<|UhARIv?
zg8LCXir{es4`@;M`ahno13IeWdj~=jNInFl7wNE@Y>={95+ERH5QYw+_uf09mr$ih
zuObM7Gyy4s0wU5B1r<TS28sewWcT&m_xA1ozRNHFbLM>Kn>%;z+_`gS_GR<-J&#1!
z`CY_+odw;w5l}tE)t5Nk*Q3$J|4S_C>mi-$T?92X?IIFpCM<2}c`On`>?F<0d<lz|
z`?-rsn2G%o5hhW7N1l(7NPZ^Kj0OBC$b{|@qNXB#yyizGKPvmNKiyN*k1~Fg^`n>{
z#r=q3A<0WHiS+|ax_1#Id_AwVq#vc2kLw~z`|(Ded}$X^;3E%RSC{jnydPh_pHRV%
zwI`$Mw~4Fh$M!CQ3JI(DQPqzwekaM_^rM=eesY2|KdSrr{{?>3BlqUJYxq%<CAAo9
zGv55yRfk6B`(25<{AkW{w;yqS#QWj#V`ox)Gd~jisP9J-x4xCv*Xu_E<_#GeF*asA
z-sOLHDJS~jV@VT68inqrCQRmPQ$O;#9L<Uw+%yo86qdJOY{~dGV=Km98{Iwjxzqi~
z@FUX?;?#voYd_liVK#_r<Hz5*?krX&d0Rh(AMO0;cslx(X4liv9k{h)o=ztwof+x&
z>{kh#?MHV%j`(rZk2d=}Jvh7v{pjgOFF$(w(Z`Raek}8&uOI#V&MgGFe)MNTe3~Bv
z{21uRAU_8CF(FSrgvlsBhB6t(IGk|=BlR8W$DCkuBBNO{hH)(8xICTletg@-xjlf&
zL_a3w$tN?J;>XlH3Ejq!!+g3QGnmX|oX0rJkJ(J-FwSKpn{+n<;e4(xU?j;xKNk6&
z+c{FRypOtw#eOW|rU-lTpO*ZNA6xv`>c?_FR`{`!Ti0`!Rm{oeyMC<B<7=3#^<!P0
zWYwSoq_csm8yPn-Ze}DOC^CE4w{3pBGcWx;+6aEU&#gNc_b~2c{D5&6<8H<e{m!i&
zGz68setg8jeT*d8&*T8@pe(QBMy-THwA@PE$9^1ULY#i_@rfVD{P@j}-~G<}DUSPb
z(vMF$Lrzc=J&*3ws8fEN_Tw8ruKDqqAD{c_ly=SR9&^S||J%Yh{CxXi!{g5Raha=M
zaQE|!w2{B`;{x-q7%wtj%4^N)<i5hat}>FfuW5(A;U@B}AK&@$D{Io%JIm@sUH9V#
zkG^&a-DjKpJvaTpe*Q=~@5fKnN{{<v`5ixQ=Z*3+6Z#VME|YtVyL8ttOiH=q$xj;b
z4?phv@h=_Ve$e)L;K!eILN<+Uyw~~N1Z}#%{CJqR*ZyYmj~|cnB#-@g!aSQ#p=W+P
z_v1{1_#y$k@Z&!}3_pT?=anKa{n#_stuy!g5%5D|F8iVQod@UA^U_I;ipp}$kBY}V
zRQ;oxn>vQ_rsEv`e*DndZTS&qq0JZ_aE{Oj^QZvwaWy|9$(^ed<^}U4g#swdeC86T
z<7)vF4WL*6^vWbEuQMqgKn#=E02()puQl9_07~TPycnBNk~uxwnO@iOMgV03csqbr
z0hA4(TmT6H)DJkfdX^8MN&r;@&cE*~1VI1qt{8CsvtKEI%1r40?^K;tEb+|%+|;X0
z9Pw%aR1bg%l^Oxm44@WQYX{(BQiriF<CM2N^#UM#rSBVBAdc;jsrUdq%+)q=|ILqm
zD}V+8BvFW3$2Da4yfmoaLw+{mYGaB+SLbt?goy$8xU~sm-L8U!$;8Wenld&EpgEJ2
z0KzMhS_Yim*CK%HE0a3cNhiq%?YyZ0qy?}(fDHkp2aplKWO6lt%m7*kFo<FpK$`%v
z0_Yb&{{Xh%tJgMwp#|dm1Rw%v7jW)dYtPs%fDTMLGLpPg0G;!AmjJrv@u;7ps5Lu)
z?kwrS*fX!S7n9zM|K5wDvHJ3ebYU=nR%DnX8OW_Kw?_p^Ig%j(EOf<9WF#^)fMI!j
zIFk_pj0|8D^U;js7{>%KmPtxiG0_z_p7{jEtgeDgQJKWmrR}1p1~4svc>&B1ASXb#
zuOoLz!mI#h1n^cTPj*+4(^br5PE~56GCP1dtTvaiR%{{(zqOMV1h9nWLP9bgz#{5Z
zBEI0o#Ki%u=_(F%6|btx0(d8YRRO#k!14g*j?P-anisl?J6*-f0E$#ir(S`sqRrm4
zqTR%5>K?$_0M>D@8r=jHYHI&DZe6kDjR9;5;Qau01aNL-{N@0*(z@?;6W_uTI;^$@
za4E|9iOPEc=OSl2<LJ|FY8rd5-cH_?A28B)EW4P{yN34!us47f5?V_5D1dzd1Oku(
z*dM@w0Imk`bpQtgI7Fia@I?S0b21+b;CKLs12_`EQI>qdn7+VCcq$~Mjc_7>lT4l*
zi=pbLtaFO-bO0Tz`$+S%06u5Q8OF1WtC2`e=L7gMfZp{JuF!tzCN2c9U`g9c0d(mm
zz6#(XlgB%<UQEg$`DJcBbTh8Rs#v-g<(mMm1@LPCzXkAZ0N(|0FW}s|d_9000sIue
ztpL8~AdvEp0sKI7=R5A`zUZ6GH)J~Z-^SF5za7BKH#~O&_?gb45eXzDB+1=Z^3Rff
zVap@+EVBQ50DsU~6u@&nm+lAfCzA)XJ@<J2&WwJT8T}Va9y0#TNH_5O6L9Y8dBpgb
z@d@L<j87T!wT^y4d!d_nubc2Q`7eM9%~D>{+`EbMZ+oe%tCTJWpaf7{LW~5J*6wCp
zC;&46jgFL79-Y>%o1kJa2?lV5tDhH0NcMRwI&cE81Be7rNJ3$WUJ&0lN}|WwgKmk;
zC*jX-;tJv--9)s63fZCnjZz|xN<k*`HYF61aB63wG$Z*nCO_1PBVJTOF$s;cMZ0X#
zFI&V)fP|V7YDp*|;dKesBvhA>Z+TKl3FRb|mrzQ=yR#GM!ltx@rTbIfkWhvR@v;&o
zWeXw|B&^65l_gY>u<Jl-MG2Ld5dUO#QdJ2r7G=F$n)IfG53|La%aYD!i(A>^Qom@L
z?8m1(H6-VAgsQbA)RB-Np}vH=66#5alknqy&&UA@E(wi3XyleaeDcQyNJ!OqZYAQ8
z@L#qd@|J`K6e|f$Boyr~8q#DXjC#Y<NW!zy9wLNZmLxJ}W=E5-oSB$J6YnmXOGsup
z37ax$CLxt|CK-t-5{8aTrlz+gw34u0!u!-JAx*+e39}@mOHTG?N@y)%vgXN<@O5eD
ze!Mo4^C{d*LT?FKlJg$Mwi1Mdb`si4sImEfe=m2C&{=Z6f$7Nlog}Q<5k-aic42u}
z#%_$+jNKWjOAm@+9;dfw_L0z6!e|L&B=nQeUvl31JyOB|wmgWMP9>-GbPtq3NSB3!
zB@B^Zp79KoFkHe23BxEWhPz3vav68?7cL@H=)0-;?cAdzJnZ3+u@c5n4$x$&%YN_4
z<1tC4+~XxokT6jKak|)8H^)sDrckxJ$dNEz!c^wd7-?vd&yYZGpeS0`J;8MCl3c_o
zA7)daB&?AzM*<xJb0w_Jh?^&2zJvuVA>nc+xe^viSR`RFR~v1LqNXLxmohG6e20;m
z?xshrV7@X>vWk+NIW>{OS_vJxi**v#(}8?5vC*x>4H7m=pxairN!TP|vxKc&CCRkn
zg$cJv&Ob7UP?<O?_B{!Ao268HScq_kgq>8Ca8JSqlJlW(l@fzCh=kp=BP9AMI!;RX
zRKi|5{3RTgaD);`a-Q9BK*B)@`z0t%J;j=Nnl$wsq9keLqo$8(FE{hN;zW*0_(Z}9
z%EoH(#hQAKNjT0HK5pvyZ)XDO6Moaa>1RcfPf0i};k<+|Nr4u+yEr4^tc1@ghr0{X
zp&UL(xmqp$3(ATEX+^xg-fzawO?F1VAmJ+s7bRSxjkYa~G@I;-ebwc%gew%B?qbg1
zl;uT|X~eXh$rO!mBz!C3I}X=1nq7B6!s`-lNVp~8wuJ8`Y#Ebqsk``z$q%%t$-_Yz
zHyMeHd6{1N&qAc|vxKW}d8j<-F78Mmr1J8=^j{?WDxrs&`9i{P60Gjx4+-}vIXlGt
z&efJx5;wHXdLZGEgvWGvQo5E+{)_P;BUS&F@DFneAXT66UM}%C<tgnQ<}_J~)iYXX
z3FEWd(DW;{OeON4gqQ5OUxFk#SC2HE04-UO!sKe19zrJ0a+Q%3G$uMD{pA><tta6<
z728!<62cM&DHyE4mJp$JlyO2vl#F~b`pM`oBfpGj8BJs)$tWPx%a~AA#+xz<$tW!2
zbr~gP6p`_oj2IcQGK$L1ubGO;C@#a(LoBVFN!7MJL{ljvVNq+ycvLp3gp7eb=t;b;
z+-IpP>!(G!yGqF@Eu*}Q3Nqf1QAS2t8RcYj`6i9J*Zw1wu=yvh{lT<{F_~9Bbybv6
zNk(NERb)Kw>uTBEb>w<luk)^%J;XZ$ox8rzpL11{QC&uyjCdI}WYm;VM@C&4Eqc0Y
z$*9d_Qa=|}ck~b|tG2Bt!zIH_vp5&~+0x9kml<T|R1ZO9WG|OTMuLn+G8)UMFXJs4
z4P-Qw@qG_5W3)5kD}2#IY&`DTemm7maiBpn;UhnLyNdM`ZSJI1Ipd--V5louMpGH>
zWVDyjOh$7V88R|uq>xuKTFFS2QLm?HDdS+}sJCUj-BV=UbNm^0GvkYa-ZUBMGN$!$
z#_iKnOg!(9)-tFmOGaB6ZJ77nmocTM5HcS2a}=hQjiNv;JCNByMn@UhGP=v?B%`y8
z{bi!M$ynCQ)rEOi8RPBLbv;GvL9Q29GUk_!N*n0vA)_ZRZXX%Fm=N}+GQms6jRma<
zsq`faJw=BTt^u^lWK+gFG6u;QEF(w8bQwcr43#mChLAB##&8*<WQ>+^xSwl;jFD{l
z!~hp9J+1ilo+71k)EF6KWl)}w{Xaf)6+Z3C>Fb&x<Iq6YBpH)sOeB}eWKbc=6d6-x
zklHjh^{l7pcEt%Dl@h(g44H1_MXn4A#Vi@KWz3T?pEc(&&Se}_Kc#Umk=;vdj!V0g
z;Uw(>md`%vS}0?YjKwmR$T)k#wN%E!y~(fa&*~+J&?+pKu|mc+8SlwhDPxt4bu!lT
zqP#0(jf}N2R`ZN@aF?2uqo~)+vJO(&AY+q^%`#{OH}XQet7UAFL90M+Z)Hz9UC%hd
zeYeYaU&co=_Q}{GW2cPWGCq{?fs9?ONu*$JXZjRRLb5>1y+_7g+C(QE36)W2UHfGm
zpjD7@gtCre%Y8p)q%<I%jY-a4ru-p1D&rFw$GG*4b**o(CnSH=OPrMPsf=O@iYquJ
z<Ft(5X*pzkCgXD%-^%z-#u*BojEgcZ$v8)0p&Xdyxj+${=sPdt$r9g}blTibom7Ey
zzK1u`OMFF+&GHqR>Y;L3#@8~wk#R-FRhq~s9}QhI$D6&(SNw2v-|YpcdX0T6HQRSx
z#tj*_W&BKW$nktH<3|}cW&9u`FwXPox2`6WJ=^<u$Bps*B;ytx8j~DrzxME!%St<#
z<GCZ_o{V2)++`=p!q~pvY4zGVIx>EvgR8eV-P23@=X!bX%XlC|mZ8Y_Q^sF1p2>Jl
z8&JmIbW+jOWc(we;waA}TBZuICC2&oP4G16E#iB4|CMnxJDRFb+4C;F1<i{l{zAro
z<SOl^xt^DFGGu$3%<=eTjOi_A^zk;!=ljh}leo2RPw$G}LY1LWYSA&SK$l_2uw;Z~
z1Z9L|ke?>o-`QKx#J|f*>p0hQZ?w;r;VqOxv-`BSNN$sMte-cZg8T{!DJZPq$KE1Z
zK>-B?6(mgcb!?mVgd{66-^=zMndGA&7g6w<f}#rEZ=KdV+ncYCAT?Sk;xP(h75Ef1
zQ2+%c6x3EwN5Sg~N-C(Npt6Ee3Q8*|r=Yxo3MVt(P*6reSp`-4h<y{h8^*cX8O@vY
zaW+@}3bD^~JQWmFB;TfbXo1R3^pL!Yf~pFtE2zQpHx=h&s2cO?+1|$WQ=V<gApM#O
zYAKKl7N*~dl0v~XnOl2#>nf<HpuU2)6fBtLb18^Z5U;?^-N#P$Eu8H0C}{a>OoD>r
zXJe`3#BAr#%Zl+eP+;`%Hd4@7K|@OTqmBh?qNsYw2eLfRS8;}~V;|9Qh9gf>kgTAc
zg7ylUDrlzQZH0c9;TUPIfTotBVC)F5QZ1?lji}(kcppul_QmoxX{id*6tq#0r665F
zhJs9mp3jdleZ<Bm&Q76>rA(%6vbc{(nd)h)K+uxqc<3j(l(9QFfK=_EpreBB3VJB$
zq@c5ct_r$w#7_4Slto<>Tv^jP<8DSaEytah8+`=%)2y;jo8{}N&{x6etDv8Pfg3Y7
zo{jCTpbxne<IL`Kj`v|7(O<y;&Xa)(NJ1I%VcRq!J^OiSnnM%}RnS01Llwgm3|H_2
zC76N{3Pw`?DA=K3l!DO;auqD3*-=0gOjGFH&={v+yn;yzCM%erU?NSwuagyKAA!E&
zevORUeZ`G^t|<!LaR(w54!Q>R6?+c3wzf{0u3(0OISS?~n5kfSUolI;Yz2G!ikz*P
zU-T7!zB1KU%u_I*qp^Tew4X@sCpz_WM)^h0NSvOzNWo$SYZR<iutdR91uGP+RIrS)
zcfac$vP?sa_YOGd8re^*>nGl9oJG}DEPPkNY6anau7hmwLXPWRj%#{c#ySP-6>L$k
zRlx=Y8x?F)uvx(+Ry+Jf+Wq_~zcJ4$m_eg#Q}7<;Ph8q|3iUzG<o<$2snTB@$#Lye
z@Bu|$!Dk9~DcG&xh=QXEK2)$r!2tyaY1RrpQm{|Ke%g#L(=rdbdK_?h`-_oNT^%}m
zJM|Z%`inyfK34GM5!Yc_i~ddoXsm+$#loL5^1Yq*2~YXBf)nh+F*0@7b?DQ~leCUU
zT%XcjVEKsyE^;_!aqF%9#qy6`pDXlgZ(LRIwSuz>&MCN{;41}RaD2|wa1?~rDaZPY
z+y6M%ez*FIK!0(OLZRR?r6p~sKA9g(^pxo44YtgnNRB(?DmOqhA0WO_aE(@EfVi&U
zTV4wq`a5#(fD@nQwbS|!5H}QjuRx;rz0Gs&8sN<6rh=d7WK&U4#VrN56}(j7SMalf
zI|?2u_*=nU1@{#Eq2RuPUljbR(EV@tohC9s{K!Tq>lW^Jxu2vd14PU~@j$_!6zW5+
zzc`CB^QS~zYeTC;k)#p-QSeB?Qw7iHEE*^tD|n*dU)F3fQ1lxpNZ5Y3cgjHVT)_*L
z|EFNxKyhTC_<EqYPx8!^d{%0JCZfPpV9_~0P{;~Y1)2hdryMg#)H;-*)4`%3s34@E
z?jZ5z4Ck{u>0_5YEBVEI&#CE7HB1-(3TVCZsi1U?D2P&>y+fJs_8?KBQf6YEwEQZf
zRp&$<Hb~4F<ixFzioz-?si>@?h>F)#yso08ilQotsetNifk5rF;woZP#H#eoa~dTN
zrPiiF&JLwTDWRhIA=f8^M5FQ<rBswwQBFm96>q2zm7>b1C`-b3GpXaHL4p>Vdi^m-
zkdgX9PX!efRVUvlq%;sESQQmjRn$}AQt>7YI!M$|QBy@V71h~uQVtFhq+d%#Z54G?
z)KxL1MaJ$Q+t75Xf0veX)HPtRm(CN~3vLy0DiXLO*^gK8?E#mECsk^&@D6q&P+!Gc
zWc<4{HOkj{u;?|{*GNTU6(dxPRN<w*Dza3xRpDbh%~hnRXu>>6MY4*fDw@$`Cwbc+
zgTGw@*~}R%(%L(ug^E@xQdzmBibJdMHuEZzJ!vY^Rb;AY&5{fibU4!q|FnzqIoL)8
zeO^$NI2F3C5GvZK=&qs%>$g|YNkwNB9k^=r^me4Rv;KF5+(kt;%e$)R#^ljd9}W7-
zTE5Y~o+^5&7^q^9iry;vsOV1<iE<AAzAF0h=)?mHeFu7Y*9{f}R1mqE==)-}XRwMP
zDu%P!!o_?;Y18F+hN*bQ*Kc(BRAqv<+nHD@qg0GmF^2-KVhrn#S201wSmx@-(c@GQ
z-k9q+Hj&m*#Z+#Z#B-UfV$V3orD-a1RLoQ{O9h2uy6QZwVup%)J-uI+%%JNZ(xHeE
zZtLrvt%4>?j?GgsU&RU)E4gWbiX|$Rs>oHbP{kq@i`h<vX`WA~dR~Q&x|5M*D&FBP
zyDucuK<g?MUd~mzG+m|QT@@QuY*MjW#Tpgs^J2AD#XtL^*RdvDk<tYonWA;sz>=ZU
zy_;2RQL&Y)zr62U+){bkD{Y$!vVUZ-pxC~zVh3fZhVL}&RPh0AObt~u>{79t=Bwft
z6(3SqRGe4wrHZ{OK2mW~#iuIv(N<D%RK+K>SSk*Ze4O_%;~^CvGr2NY^qJ~;I#?(Z
zy>wZAgbsuu4nL-1;!ID*D9^NczT+xRP;$QJD>}zRSbU1-=A496D$b}ltKzhZ&tA=_
zdejDy_Bn0gA%aN5A>y2hV6JcJLSKP$-Y-aVyobmI6<?{iPG^ydiz;Z)D=Mz4xI}BQ
z(05Bpy-d@Y<gDP=D!x(i9Ub6feb-dfIDv0zxd$b@`tyP2LY|u?qN(+J6+fuB!*2Yj
z;wE)bahs-atia(Zo}XAw23PgX{F(XLcG0wsG|g8rzndrgRmE>A@@dGg;dd2(sCcg8
zg^K$s9?)u1BB`J${Hfw0t@Si-#x&1g+_wi$`EOc!k=Bf!<4cpB=y{^zUvBL`(f5?e
zGYb1+-?1f54pX6v!2eXdRAEq{RQOc{=%k(FQB_DPWI6#jCZtJ`DVF1SOZZ{CG);w0
z8-IwHJ=O^nxe-!fs)(qF(wwxnRD@O79Df>-BvXbshue}dzJZ6MXUy<W1ZZWWH5AbB
zI(I3kp^ye>&N)+9LlF(dG!)nH-nm%Hgx53_)j;_`oa_+BXo%I&uaEa@{=1CGdqV_a
z2@Pe7`v$dhKIKblD5asahBq{n(@<V>&a^V5pkd7juju7G4<~l2@A5oP1q~erB~;W<
ziJke1y(I}LP%>22@TP`I8hs^>Y8t9*$kfnULk$fzNne9cLoE%pH6&=Luc3~Hx*A*>
z+#2d>*u2#>wqn%pLqy%Np5<?*#c7Dw;NgL^Ap%2%-ahT<niLu<p8pDdOG6`WZJ?nc
zlh+fSkJP?<U5zz(HOOx`=jwzjX~qs$6AekM^R|X$Ce1W7*HE!iR8y|HhdPl@(a=Ie
zONwDXSF53-!rjyvZ5*3~tu&;vlW7{#Nr8Ly<X-+Mp1DKC(ZZQ+G-PS$O99u=R)f&c
zSwj~M?O3^khK?HAGbfvw?>S%EY#J&$Y1li<(|()l@KDiJLpKdQH1yQ4;6`e;hQ~ui
zcMVr~ph)-3qQe|Nduiycp^t_EDUN$I!ErS+A1KZ@b^S@GVYr47JkUT5LzoQGFjzy?
zVWPz_k=-t{&K}oL4Z~=lVPXc`eDo}1q=r!%#%UO@VYG&q?J!2eSPk#80vX>&-S;`0
z;`%T#fz3|T@MxIW{m>cO8YZS_n5tnLC8UOF8geu&*RVpvbPY2!%%@3dn5kiwhB@4Q
z&Dq%56tTUoLiq}p94<UFJaaY7)9~XZXYJ|@7cGa2Tn!5~EM<KXF4C}A!xFCc816)a
zmWh&Q{BW^M!#mVET>SE(YgL8Jf@@M%YFNdZn`jnH)@oR%VKwEphQRM>JBN$2!^OSf
zVm&9r1`Qj@|Hm29aPefTi_DV!W4m0NHT;>LxkbZP>aIJ(wOE@%-fq|MzJ?PTPHNae
zhrfpX8V+dqfXDh!!yft+(6F0=In-NgsB<`!9^v@BSHnjd_R&ghbH%eHb%Yo&LR{bN
zI;i20hNBuj(eSZ`!y1lo;^l62O&=lts+!igW7;$|W9tZU_Drnfo`&O;V>>f@TuLiD
z(c5;r>r)M<G<>1qJiBpP!{-{#X!wk))P=UvG3u`297}ps$hgKnOs}5yrG^WXZyK&@
z_)5b?4VN@rCTF^P-=355aD*TdBtM6V8Y2be!`B+V(Qu7+#C#tK_r+y28R<-rO1qKb
zx`rDXw(EFb$M+h3(9lFjl8zrW+|=-zj-on#(r`<|3l0BixUJ!54G$>V8t!PgtKnA-
zziGIq;TH{aM~ape(|(@(zms|BNKt=*=XVW%Xt=LIn&bOmr0Do0W7Y)k*X+Yz8XjtR
zqTyc+e{1-Ma+NlehG!#1^e9npl;dY}#^VPw2aOU>sfh#foDyu57*;UleQrJcrSl!*
zOAUSvmWD884h^S4*I>{&LkFe?RfEQT&%QFd+;Q^r0x7pf33-$VvgMElQ$vYzZDU6Z
zYI2Vj)yrpQj25<r2p#e|3hIc`kxxf{9nm^Qj1~(<3wq-sd9r1+AUA$1opEfmD5RsX
zjv_jqjdmh%bF?!NB6>zz%otHjM{ylBb=1-kqa#*FSsmqcKt~B3rF4|m(XL?1e|^$k
z*HMymru)bybuSd3`G$@%I+muTU7p>#aU<t!A<epDM0p(*bX3t%Ri|g0ppuTtI{J?h
z8DqrhnLdjAPpcEC5P4HaH67J;)X*_+jI&;}YGfy2viGAgf_Rx2Uu_+AbR_7gucNL`
zcjRWcbhvd~93$%KppUlS$A~x`@#OPZ;nA_HU`n^wGm7PAN@K*L+}5W*%6Lmh1Ks%y
zP1Mm)M<X4Lb$H33l}=qq-e9cowRik~H8i15rx&g{8!%Z%Qyt@VOwiFxM{^zBb@b4Y
zqN9b5wmO84mO9?nk**^{M=KqvI#!JpX%x4yf+jL?tTT~uU!|>RkeR8YwT?DAvS{=L
zo&#gWm9c^*{&=jY_*HV$I8kAoXs4sSjxIX7>gb@OqmE8GI+MfWMD{o_VVt0hCC463
z^DQ4IYVLQAzHT~J_l?cwIqn@NE{$_0)l)|=9Yb{t)6rW;9~}d94AjwAM?YE)ogTX<
zC;|y{d=;X6{qANI9xuq|{YarfItJ?)LW?rqu_MNd*(K9Pj2Dyx!zs;ZEhc-%=oqPE
z6vuG1jz!}|QsayPk5aSJ(kSsLL&oYDr{mywae2I;JiI?%Ow=(+$1)x7=$NcyijKLo
z=sKqAn5JWfj+r`g$kcS-bPE0iQFwwg(_QIl%|~Rqb2De@n5|<D1#p6xJi&2{VnvC!
zYJ!-rV*#yxp_Iisa&>2OEhIa1R;*5lpXAvyL7bZ)7R~i6n(kRb>8j)UjnumnoE(-X
zh~+v~P!{RfsADB9oQ^d**6Mhdax6D<wT>ne#k_(kRVO;hNrSHA%qgs6y$<c$j6M@Z
z*{zwh<2LEo%<<o*V~dWhI(AGHrzbjo=1dfnr4(f1@98*PH}gq>lpQ*D(h}(SOUDP4
zv^p;9xT0e>Ww?${bR5&MN5@_rhje_b<0Ce{U&jF^`xuW-@*boNR1m|5Nu@_l0w30K
zM8{E9sLf~okUKFXr*f{d_qdJ|-1L=>lR7@t@fla?D()18u6)#KuF`k8q)%6IpL3P?
z875~L&*}IgPkvs<m&`BZNp1{}xybwy*`Mn9{QK0`#`~`7_?m@3F@B@tTOHr&xW?7S
z{8jCBogR^mA6Y^pe$V6w#v2^TIWv4W^IE%q=(?rjw(eYilJd_w?&!G7t*`#3zL%%@
z3zJ`U{FW#AUB@5H@8?M#FzNM=>!FUnX=QcjI{wk|h~@w3c&y_I^JhB#W%88q)mZfJ
z0P^9vju$Lk(=|GCy642NF)wxabp&)sELRxiSDfA6cp*dO>eGp$=rxz2BS@#ZfqVu+
zEVp!ob(qYPt2m>)8j*;t)4LU%1CV&pNg}_2XahwI=b$UVNTd*xf(EK~bQZKQSM>!>
zD!yi*sDWZEDW0dle5z+(jB^bS10@WUELx&e(Gsr{F;FYIMD6Gjr3{od&>)P4VZ33W
zjDad9s+uTkpqzn)K`aWQynzY^4j4FSfS%}8(LiGZUIUd3R3?3L#=ypfS+xx3K}K&H
zD0DlqI`e9bpPY%VVIXdjpw^l!nLj$cwt+eZ>KdqLz+)i6fXhH^GoPC@4ZM3ZvE?K|
z)p!GACyCW<eA$!4=^qm78yNFbVgm!;wDwVXi~RW_>lJTkpb^V+CyD*ne2E5p26mHz
zfhGo$4D>e8$3U`yrUpH;*VW2EGXu?;qej%0Ng~BSORlzHB%Sz=)85YGpG*>|2GR_q
z8^|!w!JwCYBhx@@16c;zQov<byBK#H!?^+bgyCAbK6Q32_nx{@!azG3x^+~|_~`cB
z`fDxcZk$dAIveO_Alty<;c;EKsjGn(C0bCGZU=ha$4xg8b?4Sz2FPX)13eAr&LS#J
z%Zf;K=l3<_XI}#Y3=E{DtnKb+pg)r<lSH*d_aFm<4J<LR)W8q}Lk&zeFvY+y1H&np
z6kY=(42(1|+Hh`eA)BKN-0kWn@=X&5$tKNfoPqHMCb7;00~0B{1LMfgieC4LqaGTF
z2zBpWKYA+Z^l{HIFxS8|133n!8<@c^k(|m*+6$>|XY;&fu`)%2hM=Z-TqUx|z<lNl
z4CFGQAr^8+`Y|jiEY8y;AC?(-$H03Awi{S(V1<FT2G$u^X<(H>f5{eHZJ<T#wlwIw
z>^2eVwT4}KHNn24-Rli(pfski6m%b%Utn7W_a+{KroY+17LGp&w~|nI5!q&dut%b^
zM(-QgVPGdO&8x6{U|^R4N&rd&TBG*sykut&CI3MWm3;>GGXKbcTDCx=P&5hmv*Z;&
zWZ+{1`GbfK;;`X7gzc1p(*}+hI7;jFZ`LOUjyo<n{1|g0RG!ysc#?&mGLodwHQ#3j
zJ~!};JU4L0z*z&|8u-q@IU3QxWlG?Z>2y2gc>@>eWN6j&OUmcJ+gvd4m4T^UQwAT7
zqe2pDx<tG6aN_Ti#1#WqDeP6UzNSrQfRK3h{zSrS20rVWLgc!E8wP$g@SB0}=~zf@
z`lErH27aLQ`?vM2lIgcwH2sM>mQKHI;AaEo+f8p7xZkpAuU1X<N#c%yU)Z;0t(x97
zaL;h=DWxtn%Coel=kt4ir!#G`_=CF8VKP~?m@FO`_|w2+15XV6W#FNKN91Su^z6x^
zRV1xQ)vUh_{KM`MpDCJ-Hd{9-mj15+8j);1rR^|TBu1r^59I#~io5~MfNtO=jZTY2
zN&6r!K*3CFO4FfU5_8#rVxaJzq%)V}7Ecz``u=1=-Wmpi1|kNcf{ybcnj?8NS)80K
zu1^-0fiRWH;`F7s(o=-Z7Kr2vI<cxZMf}h;CHZg?bu17>!64#-h^M9?3I|a(h;l&`
z3F5UN-U#CC9uJkGK_G|{K@<z3cn~o`c>XLz@<$H}#j;L|DdLsp>p_%aNy#8~4e-SH
zQb?Y!o3C^bgd`~w#0$4$w&mrl@<CJxqIwWDxJ$(#Dg{xQdDqKXRhYcVNcvTS*nT;y
z+~urlLHy#zEBiHrc<e^qAnFBCD~Q@u-4a8}by%77iM!YW4NVTXS>aw{O07Q&d4fm?
zqFWHzLDUc8tsveGqE!$Lf@l~-(;%7!(I|+<K_oTs_=50KK+d$Lk{Cp%DT2tCBVwtk
z2`R8nGUFm{8Z||{Y9+Pi+%YAH7C}UPp45_Y+Y~`OHHfqz+60jmM0yaX<B~Ii$P8lO
z?W~hi#EmJURi>wP5KpFvALq2Kci8i8uua<_+6U2rmZMj)2%=pO`)+4NPZeL(OYTUH
zkq=Wv*C0BxGhMh^eX1Zosq|}^LWM~8AbJEbC5Wj(^bDd`5F>&Z8ANYd`s|E;LG%xz
zPY`{B_-0B%*DERh1qtK#`Ua3=K@16ED33mfhZsyNI52~35<Xq(9mc{n4KX~3_g2xX
zj*{24@eqy*V!}J#F+q$CVl>4$(^KqfN{4cV#|1Gyh)F?ACI$9(B1L|2!j8{VU->Mi
z3UY~BsY+y85II5m9U11bWO@)Yf|wb^FrMSAAQns&vpK?BSVBQAI5Ku#kY3$_Yb?pX
zBw+#f&1vt+C2Q?HN2ZFe7bYwYVhP1Fg!UmU4Psdki6QtxcqfSELF^6UqaaoUv650N
z2wy+XD)KzPZ(|T&bf$H2kjiQ%Yl2vtCs`N7dgdGQBp(fk-o$)!o@5J?t&H0!Zh7+l
z{W8er`$6o;lk8;j0d1~4$!;be2C;|9%H1*4g+3bg(Fq^Kk)U()@P5VvK^$aqh-O#9
zofhl<n8H%Yy-IO@eSb8F&w}_oh);qz#%jldI2pvJ%ump)`Dfsyd5RL1g~Xq{?tb;V
z!ZWnXf+!PmZWTU9o&+HUAqR0jh%bZqF^HSo<pO0CEp(iF&@A^?K@eVKycEP`CM3BM
z#8u{B=SlvWDyYjf?)WX^cZ}DAxWR;4zYpRE=Jcy5s{Rzjtswpi;vwyq67JhP`mYp$
zr>>uaxWk0_T_*P!e_`wy<@{RwH`f0>h(GdXdOwH<%>T@j1g8qp{5yzed6IvaJYsxI
z+cr=BZxBzJW17>2%5ypfS@K_=&PyhK#sD3#tf>T{(h(iPozJ}*H-+=`btXm-!8}Qb
ziOFa&(vsP9!b}qpMj}xm<O?|xD)~c*W?q1?CkqROP&nk|Opy=}LSoSI_O%d-vXFQ&
zCdC<J7-K^i&)$|`ed_W$lae8nVp2L!{zeGJi@HgHlB8@1<w7VQLWK}2hLFISL-I-?
zyd81X4WV*~-f7~bQ`Hb^FnKdiry7&$A&icTCIu=rSyGF!He;O-=piK3MAquDO;-qR
zCM1aqA)dJ>Pm()L)aQ=W<*g7JFmISAX~d*4qnB|zPq|45BINvek`zL6$k|OzLueL4
zbLPjVi4+b|OByAF7R(0~bDoZ}y0QEEG|?&q!c@jIMyjTVkdenTnY0d}4U;U!wu~85
z91DG}`)KqIA#@C3O9)#-=oCWd5T=Ld$*AZOLe~(+gq+`xbPFLngdrge<!bj3281v$
zgdQREWXZ#6q8AfV?#-l62z~P;{X*!^eCxgfq%bH1dzu(b%QV<S)zUel#nQG!s5&f!
zQ8aE=>Tqr)$%qg}=JAF(f|^E$&~0hk!e}!#gmIKVA!Ox<DXcSr`NR+=(TGo*Q}@Z_
zYL3XaC5d#VvJcZJ=CN(4<b*ISM-Z7FmpC(o*&)mcVO9uQl9wd!PEMN}!n_cchp>WH
zB!mSaEDB+92)X3p>P8Dg=rc6!^hoDzDXVhC*E>^|(BV&KJ_Rr?@y>7FWg+B5CAiuO
zsy-OxDTNk9R)(-DgmodT58++bTphw1CL2noL@i705NflQtADT?8$#F^!X}FU+_XxI
z)5yZzu@1JeJ)1)?);A))Erj<%2!&vVuswwLX@Vh~4`D|LJ45(1gy*&5KL}x02uDNs
zB!t}|d>C?mFmk4EJYoOV$$MC5Z;sd-!bjY+FNFO}4lo{KJjghm-+J&d^TUis7~|iI
z-B2?5SP1vJH9a1}g&aZEGw(M#L4Gc1b25Zqazsuf=~M`(L-;I&&qFv9!ddPcJdsvn
zh4Z_uv{fnRXcts<9P7L=Wnr7-FUeF0zlQKz2w#P8F@*0ZheNnTQ7Y1c41N>B<q)pW
zLciAHDo^BV;*lik+pSbQ&3#-<^0g4Y<)*TuQ_C1hH$wP6gr7pV6~Yf83@e#T`ag!S
zwsQQeV#zlt2XaKrbWvxzAo*=NLPNM4!q04$Bt^5cnok!)&ZgZ9VR*gxUl@syGrx!M
zM+gr?_&bFAAv_4-FP`9sQOVt7lK*5MXkO%%ziH~>^D+OB8owUmSqP6<lP3O{$rCy&
zm^{ssFUTqIJcJh^{6{0MXhWK62ru(m{UHSMxD<lST*;HP-sOZ>3qfaz!5GYI?K)jp
zA%sJC%|uZXA6<&ELnwGD=5B%~LR)gWh%!MuA7g&TXhsqiU{cUTp*%@p6Gi@?|5K=#
ziQ*>8o2XzS#zd@%*G-f(VXsP$ukV>u-vbkbB~0W_7eq>#{~Nlr2~x;nH{LK&hHdVc
zF3OrHXMzY7QXn5rO&1lpS0xkQPZyQh;4yzPHN9z~8VzlsqJ`=vYM9t<;zJWPP1G{c
z$3$NfwN2D9(ZO_HbF<)^LUm2lGvP9Ea-{QZhTBA(i6j%rq_8$A-o#rb8Zh@TCYbnl
zx~Okr2)#66x@c&kk%>eTJ`;^iq!dW>nmF)73bhiaLY&GQGX#|;CI}aOpVHJsGZUF6
zTAOH2y-c(+k!s?f+sQ3Vkiy$0TAKLcLG!p7qT<tJl2B7)c*&(S6X_<t+?(=~?aiR+
zJZ?^$<ZZ~v4AG8_kaCuZwk8A%`^*s3G;M~Ma5bg9N$=1}PI=tCqv`zYy_1Q~OuCrp
zW+K}}R}*R97g{+(?42RHb5jq-V>1Nl_he3_7n9y5KA90k)qW=Wn^;D3FYOs%VxWon
zCKi|&WMZ(1nI>jYJ{)U3#KbfcIVOgh7-nL)33~DUI1}Sdj4&~htD{VeF|oO<XEayi
zzK$Xts*W{r=0OUP31oIf)FjrS>O>RsevKkBnI%&gr!saK5leC^(@hvN#OpJ~#TjCT
ziEqkz9?TH4P0TSdmsWhH$UNSfMp?Zh;pN%nc_s=Rb*hB9CKj4lVqz(+i;4WZQWu-}
zbwGjd1{8SpJFGP&qMyx6BBW=e_v)PZj)~<aR+w06Vzue~Fm{!RcPR<~E;QKmP+4{&
znhKFMrt^cuwI<e?SZ`tjSGO^4G_k3Ir*Q?(Ca!K~B;_qkwla=c8TB5M?Izx5vV(D#
ziJjb?^gqbcBxS1ZF|pS~w1ol|KB6V49(CEo6%+eR?5Bk@anQtJ6Gu!OGM!)0f6S=Q
z@Diu)1!AI)(sHx#qKRW{oaARs95-=-t0x&hWBioyl!?<!rb~rL`E%w(&Y1KwJx6km
z4Sta)KTo;M{DO(En3U-kLuwg~kug(TV&x^No~tzLe_e_RmGY1l)WkIt-<o)C;)RLt
zOkAgpVB(R98+1xg%4N6u+r$qhel&5*#BCEd*}_k>%Nlr$vW3Xnlp0a4vr#{rxI@03
zZSateAQSgY{BGh86Ti^9(+NOl#n~v*-}kR8_NmJoTZq2grs{n<>*#^cCjMgbfQ^T$
zdPqpEgk+p-(o3x9r3t4d$LD6%r!Q<Dn|MO!2^}EaUC(HP9EhV|+&|^M4GtE#cCS7u
z|3|xk2bE0tO#~>Omz=L>snCxZl`Qw*r>@%Xd1N}%_{~9@37yVc6A{XJ6G0Oe<?~Y)
z{eCk<8)s*nY2vjwcjvn9H-^TE5eReZgj<E;3cI5yH=erkGZM+igzlLop58B}poKyf
zN?Fe3L}3fZCnh`@o$|VcA{Jh=P}D*(3$QStv!~xoF>R(GEN&sjLXXnkSPQXh6Atc8
zTuV*Kz7iIwwdrHu-l=INspG~*o0GhyExchlKhiH_;nGY|&O%wPlH|ZlL0I0xeI}JG
zRHhszPb^fiP}M>o3w<rTX`z~hrWTsf`EQ|yg(en~EYxJ5dtFVeW1*IX+LrUPM|ywp
zmWweom%0|}S#Vi!({L6VSU9@b6K5gbf`@sltBDB~u0KhsZ((<<R3c=GNX_nv4J|aX
z;I)uQqjXPfY~lTrK5C_M=Y-Ff*L~x_c&ctG9iMDDyPgVdNh+b4qPc|>3#k^;EVQuD
z(sDk0TUmIU332*p`{u)FB9&<=*F~jU$gt4SLMIEE7FtulXNmR}+E`dwC84ba!6eH<
zrCEX`4Q7dUG%4npvjmZ8vqT5hdFw`2XA51(C9Zb0(6vfJwuSB%x-nnLz4p!$JuLj3
z$Is6aFJ_5e7J73p;-t{eLVpX>EaZ?s76w|FVmUjDep5fl!e~l^I`M-Ui43tYl=(2m
z;fy2lT1PS&#hCeDBI%D|KGwpxJe~0tCNQ7KIEis`UhCUg2~&CWKZ>>>AEsNFVPTVn
z%@$@_m_=?|SY=_hg*g^-EiAM!*TRo`eSbWNSwP7=Tg<aCpGnUt2~@3;okHI!EwT``
z+`H7mG7F0>42nx$Lb)_sq|FwD?^vL(uvS>kcUFUDi{%uJ*<#gfvA%<czFd0O!fFe|
z*I8I&;kW0>+j0~3&K7Ge+}q<j`cL}vsR`>XY_PD=!nxVv)@*TDPybp^C%(nPRtvi<
zwC(KKX5l>x*UmTiz`}M5FK3G#7IsqBQ3@p|)PK^9u<hg|sbS)|8d(MAhz{MNE6fqQ
zEqrKU4`nz@f?q`MwV-zLkik9u3+%UWz(W2oqQlNXbkM>x-uQ<sd~D&cg(H;w7H&{7
zTlj<mYvH_wV{`&o{BkQYTgG#O@l(c=l*x0PrwpB<6kU;YnuVV+lJIlt8|yq?=`4kP
ze`=$pN#`u*Sw=*@WSuJ(u3ETY;VashF<JfRh>Mh6a|D%37A`ZF-}h1VYj$90u=zD2
zbHq0m*3J<`zGXQL@f}TpJ^9|k4;Fs6@CPllg`0GMtWNsX!cP`%QEpqf!(DDuN~r09
zTPf=gr_zI-?ozKg;+}<HEEG&gy#9l)dRy<~IpVuT&Ks<#{AOWdJ8$~F#QPQ=Sa@RL
zUkiU)_{+lI7XGoYU_m;mJ<Ri`TG!-9v>lcwlkhPMU-8%5d7tv!2UaS4B-lJWM?@AU
zJ-6_}!hf{N7HrG;MD|+<FflDiG*E?fg{wqlu2yUlr{<k78WWw-un=St%4;n>S6JMa
z%!Vy2X&px-LPzLa5fyeYA0rWZf?R<x3WiZ9?7aV_P#A^7C>chnFp7koUz!(ZeEz%p
zH6}&FD8_`ENEpLBHViN+5ytCb_~tqfJxlr5O@&Bl`sZ&LmBOeTMwzhlNlK+`7?1M_
zBIUv;&%z2}RAh20m_qV1TYQ97!l)WX(bZYC$>A`ng;70>8ex=8Y)h?QHS+Xb?~Czz
z=p(Ww_w6)S)Cz-ehS&4X>MYW!8%Dh_Tw%Dws2|3)^`5ve;=^d#Fg+oRk#mJ7?0hN_
zA-wP?aVnFySh!}c*gsb^3ZrotDN!X_M3wN;CJN)6jW2BY!e|o4A7R`NBPopJFxG~#
zjx2}KER3FE^a`Unb)<3I#C4;14v3=vwzLSNWf*UVozL0dn|j)Y(Te6(FFuteX<@wE
zp=mmEQpgA+Gmp1s(k6_oJW1yZF@pJq#=dr8w9k`w2%}>j?-WMoJl-XYuFQuWasGtN
z4&#@up1B9&x`)vt3?k%SkqdFX!{|fRV=*~l^bMn57-Pa18%F;y2GCsQiG_jWujYz@
zVGN?QS&?*au23nFmM0GmgK$U~LzxU?93DoOHAy3AA}f+chA}D(@AuyF^Bn!rtU#v5
zg)yFdTbwY7W-(9Dm-CwkB~A!qA_caAXZSqv#e;PE$H(Nb^Ph+*VN4BUS{O^`iCy!=
znR(*wJTX0t8I-_b%nD<97%Re<9mbuR&L4gBAbr9)VHEJX=Y}zl$Wzz+FcvV$Wn99z
zFpNb^7BiCCt|TmFzKrpmJbA4_u`6jJ9oo`UxmGh-MGMD-gl*1x+G?&fVO)IfqDS|y
z4`V|Z2f{cQ#>Ox<g|Rb?55m~YYq2$qZDDL-PM?N<-7NGTkMe%rSlcP1jyUhd*ufI|
zI=9(3g?5FpJB<Cj={}_NPEObx#z*A9<)}SeC8Ep|sqQwE)%!S^$90URXCczV5)Xy(
zaTw<*wq-qs!#EOlo@_?@^e6@VU*EAXjx+g$F?PN<!Q^BZpVB6pFIvqPr@}ZL#+fkA
zhVfY#pNBDJzF0Y5P;2k`qVS<)BImdl8T^7An=j7K7sN^J%P=nRWWNeK7x@?IJSpou
z9rRKdmsxU!@#iqEhVeD6I9EyYd)mBt{97j9g>jw94aW3;ijdk5%ztFO$w<PV!nno!
zHX}VPlZ1C@=gt>*^K|afcF5zuhVdKo-x*)^dJx8+VYIN((#Bt5Jfw5dMkyPAhw%?(
zau`w=kLXyVcrK5683z3o`6P^IVLYb;C)e|D7*CndB?P_Z>;-fB(~_DxU5x&Zj;WM5
z`ZLo{M@PXpeZKRAF*yt+jN&#vTb-qbp@k6%Bg%#zh7pDx#-8GBf?<Thu)+w3QDT80
ziOKRuquSQuDv?Qr+B8`p>P=4m&1#m<Mt&QGY!tRZnyH`pqHPqgL9KsxPAq7HdQqWX
zMQo?_H5)~3Q1?y?L@^umj$IOx=Bh>BkqbnO?VRTm`=`e;fsGP2viqmM&ei8Dqp7vD
zjp#C-S~hCic*8~+8)a>jvr*ATr}FOnrQPLiRIr_Y3fz{Qt@_cM?!T+JE7_=Qql%5H
zHrAGR*RaukVBDKFs&g;m)mTE0z#`?6jomfb0vY_PZEPJIb!{}a@p6Nwo(-3cL^`f*
zxNXGI#5X22v@w5yh__MS##=T#HWF-XS|CVBt%Ot>u+FUo;uEem;*QkX*oK$+3sxpc
z6RsvRCfSI|b&NFSYBR?6`4dP&&ZMwQHFL$=Hd@)(Y-0-r*+!a;bvD-9NVkz;qqmJd
zw)0<)Oq!#O4mMibXk+7@>ds>Tvuw1bnDlGw?3!|JVWXW5B2?~qof9u5SJ*Ax9Vt+@
zbH7k$8(nCL>EZvj^XS(amE7I9Dl4vR8{L^xYY!Ve^LQ^C=h;+W8~tpIv+2PR=x<|y
z?fesAsEvU(1~DIEW3Y`A+q1gniuL_`q4%>oUTa-^R?^s9F^m;Rf4GeioH>*{Bbkh1
z9L+e!#@M{p`%?-`urblbY#VcIOkxY?<|IwFu`E|mcd|Bx0@cqqm2sMl93~{0&SVDT
zOvYI@rhek1rnxre*;rsBmnHw!PMmL};}IWOt8p=!@Pk~j&_?G?S#$}s$i`yZxfWVt
zV=0Zxe1(mb6o2N_w46zo5`|YWS(7J!m&s}yr*Z|Ut<95@WP^>36ybt#n;38AinqRu
ze(`<m@b%8ynYY^5Myq4vppExzY`2}eBlg&M-*%1;Dm$6%V0?9Gd|+c2?W|nS?mV3j
znMk?LZ5VrPd}L#vjs0wj(9RW=Hz!fkAsZjt_=Ix9#$k#{X50~SZ)4PnjZwtE-57P$
z#)lbkHMd3|r<JvFn$91J!?d`QHdaiDE59Ue{JgkNZ8TUCcZyDidU18<$4y@!_qmNT
zG!~WIxL>}HEio(Z+?tpQ%i{iA6?fjomo`R6FeZWvHome^CxW^WT%^1u$81D6CYR|f
zrR`J3bH&D08(-V_#>O2RcWqp=@vV&?Z2V~BJ924)`-V+_lDmH>?!Ingc|CV4xVtxW
zf6oa_Pk*{;qgkAr-sW)2#!t+tS}LtA>EE{TGnp#x^ra_I-LvtFjX&u~w^4GT_|?Ym
zHvX{j8&@ASamOzd_sQpHt_O4=RB{ucSDQJe%DNx2JnoQ}h9(D+#<~Bo(V}DGBO8xx
zJfSU2``w10hG^({YU8<$7dD>R2sQAOYnNERUE+T>Mz&9+*3^Z<ebz_Ma1Pk$u~4X#
zuI&>g8y7ny%8ZJQX$wV(4v8euxK(E)HG@fz%rY?<t-RJS4?${C5#)=YQUvtBe#-g$
z5kyB&Ac9NVvZz`xf<h6z9zn?nRxcEVBPbR@@d%1U@LB|=kEiZlD2j3uwSKWs#6)mJ
zq#%M45!4^qHa3EmyB#~UNe>@Sz3^vJW51^qb&Q~V1SHu!DC+(~@kRt?A}AX{xd<k`
zl~R3?kQa(r#*c!{DnyXHNK|Ab(rJ;X96^-`sz&f;1n&(<sTD!B2&zXAOiZj9K@BPm
zJS)p*(SPNrbjV2~`KU#LG;6c|SA&!5Mc|5{V+5Tda7RFIc%)0;<`H`G9pWSKM34}H
zH-bb`EAOozL4ybyM(`F_a~Fwiiv-CVakX&-|E4D#V+l2p{Q4r{i=asaN#t_`%~-8z
z1f%jLJX$2MSP&r#)d!>!rbN(!q7<QjZ6hOs%m`Z1K#N5hO|WcA>%}6Kf^#CJ|6<Wb
zOHYr0kY3{1nn(m~BM=eHtCErx!HF^{H>;%NEEa1Pi<1>n+C|Vlf@_P#!NsEZpp*^~
zJX$PruBL_;i_Q^rA!j1E(>=ax1l=O&9YLQ6vLomo!OxS@d(r|e5lc?R^oXE!g#?nk
zwM6ua;9!M>c1r|F`bH4dK6O9@10(1cLA#5IRQfZCNlqOU!QcpbbV(f<!H@`sMld{r
z%AHbYcTLUhlsd3$>M)Wl5ky9CmpaL*?L_LhPksC1y-g>l(w{|RBN!LK?-BeF!T1O!
zL~u2NuOpa9=@G%M2zE!DtHj9>yi2(k!ITK5MldacI-NWVBFK#(CxYn_%wV-KgWYqO
z%w(L!IGfa#2r@F4tMeG=Gm`MukIt9F3%R<8k?xTu$>Io>M6i@4%OY68<ednXlVki%
z>?>SJyNR1#*&*SY2-ZfhHG*vstczehE#KU>6B3fQ{2x=_0VPGzh1+?0@&}T$f*?D?
ztl~1e>;kh2OIjKeq6i8SRB{xN93|(RbCx6-BPaqAl#C!ENq<QqQR2R@FK^#@=hXSm
zSGR86x>a?nW~RHRdZ;rwCp<MLJdGhYsNNLvp~)os3T0O+l)Yi7Go3R#)cK}z@~oWj
z0Xm!$ei+G^%`r*NU^-PVHa90ckCQvpeU6Jo^BK%T9XDGrwkRjOEGN7?C%l-USTMFk
zaH-(&DK#ir!8zrA%k_RK>GPcMs+{n*IpObe+^+|#S#-L>CgE#x!fS=B6Z}GOz2FAH
zjZfr%CppRbW~sPEaI4@p!7l~B68u___P^mOn_Pk9(?izwobV3ugkOW{&tuj7*7rkB
zcqapOYx)T_=|?F&pt=*m8+m&u&k3JkkmrQ==7jg<g!liD*w0a7u#HRSm7Je*!oTE%
z59frBaE%v;9n1+I$_a;txfiLfj!b`UnDg)O^rH-T&db1>-;7BoHt$p;bC~naFy~jU
z_oow^W68hegiq##Pw|84Oo$RLy>boRmv>jcm~<v5{0C=E!Sf2v=7i7Xgr8E7Pr><|
z@CCZ6z*KONQ<D?EofE#36aFhF{J)&=)tvA(ZU}wr{GAhCG|ai26TZa29_EY~<{a%_
z>q<^|{*(mM?qSY9IpOO$;Tt*On>pd(?Q1vPRqNlJaNmJx7l%24;SR}j!yU?R<%DYt
zcbW`$?&gI5%LzZu3FmMp%n9>fiVqkqT%o&a-4`4z`pbqpk2tEs9j4R69YsO*i5kU6
zIGTb-!yQ$!B)WnsBb){!oYo^8i$#61^0Mei!lS@e;8nmW$fID$2*)R!MScYV(IF2i
z2<7sy0_5^pA7`<YwT35>N%AWwprE9JQVMuhTp<O;6r|6td}V2@u!17O@8vg`rLZWC
zY^?mGw73EaONfMI&Ispe1+$AMKc`@G@#JR|@at1)!7_r+3YJw+P6$hzrKFZuK(tCE
zCkcrthzg;wf`V8s=Z^G(^zlUnDRik|tfJt)F-j#~{85m>u~IN{zmlq;vJl!&Q?M#;
za;!vJx&mHLqonB@$^0c!RRLde%IAElDPWc_Z7l7Lyrke|1!XimtD(Ar8VVY#XrdxZ
zK}`kUDEL-EEd{j|OjR&VK^+Bk6%14`NI~!4tZW6ZD0o%DsSc5Pyd;&D>?o+OU|E3(
zQ-M5@*VvYVS#2Uc6}+LKfr2&)+A4TcK|=-aD`>9ZEd_5Y*s&?rM8VV7k{T%p_lq$5
zj%4Szj5Zdsy+Gt$1@DPwQx1_3etDo~mBOw*Qws&H7&A2@Ev1x_9{(gU`+*2QRPd1y
zN?HryhSN?#dj+2;;HvLH$9R)hI7vszc2dw;2#1csu2M?nZbCj5?9Ohsigx?ZeE`0P
zNIvD9dfcBsOua<XTd<E{U%`HY{RIao*fPR>60g|Jq`?YCDHzQlSMZsFp&an_F{Tj;
zh6x`o$RA%6j%3r7BP|O>$j6AOu?og1*moxEt61Ubf$m}T<Js|RNfQ)IRPehUnWW%e
zV>bZECyQi?;PDa8bOkfS$QA`NIdL4uj?p!oqh`_B3g#%7tKdZW2($A<jSeqYFkis}
z1q&4{65$dC?Gg8pMW)3H*2%k3mP*kw1$-N3zZ32muqza-<Ysj<>2oPsEqs-NU7e#8
zQsH?2@LE=9i{Z!@3iz*(4GPvP*fcFliM=MiQNgw@;Z1a`Q+PAGa5IUi@3o|@wA?hh
zO~IE6zEbct`%)xw-;8ACi%e4^b=yVwYPRnbY*$cJMKKjS6nxJyQE*?u4+?hj@JI!>
z6#PhM6#T5<7w#%AM0P8<I>Om6e2?Hy3ic{kvn{qykfhz+qyrqZ%Sp$orV<Y-IHcfz
z3jS7bSiuqQ*b2@mII7^7f<I`vpc^E|={$=XyZnTV#;*!a3Zdi_$1|6o7E-ob^o;1Q
zY!YFuRt?>|wC5FE;La}!d}Y8LJHo`LYX1~T=V;_FArI8ZCGHhhldf|FZYNz<z&A)T
zT@i9s!L?k;KSJ1xf2HCLL1UyFrC$_@+*WXh0}_s0s}w0U(z&bPKki6UN(H`#jEn05
z=TwEIg8U&@oPx65Baam~TQ{d#jsism3IFG!3eg00K|?UMA?8tGs|cwGtMIB=<8xnv
zGis~uQ{h(;P~DXq6y(}zd^Kr^Txf+z@~bEyB#&TT!KYN@6T*slp3!R-j}%l<NF;>{
zxmW)Rs~FoMQshaMS?<^tS5ZR6D=J=9QBp-I6-g>0DxOyHjEZMPbK$L|($dp1D*ioJ
zmDzrFgm2VZbUUf6igGGQn4S|-Ud6_a5oV(*DyZn37U8eCn2KZ-HMsq%cwWT|DiSI(
z#rS*M+$X3js^BlX7geOFsH7sUVxSR87fcmQ6Ra%wXSpy-nKD#V5ea!!71eV2Cizp<
zOYE1t>G)+8ubGkRf@R7_$ZJZ|bvO}1Y6;e+LhdX-xDd=1VLd^5=m@E=;seonO~vbt
zA`M0Oy5Jis8mM@agVrg!{NE&gaFBG!<3|2lD!038Z>wmeqVc-eJCY5*6X8|0cU8Qn
zVyB89RWw!6OvNY_qgA}GqPdDsRP<2MLPbjz9aMBw(TWbJXrrR7ivA;=51H*y^CK0T
zUWhVlr$<|Jj%FoePBP`~q;&hpdhLZQ9_diniIbw@V-?*+_*#{C7ZqJqbQ2@>`iE-I
z&!9Ep_L0u1kq)aXqnuAw^i(le#Sj&}RP<Jn9g7Z7(TC1Fsz$T@RP<Fbu6FX^%Jse~
zShv55?`tPBQBt^Sy@4tQsrYnnDlHQ~Q!!M<2o)n$3=<1QM>#B7SD@~2$+n)I%xsyb
z>i%A(UQ*?HV;Hw8K3B1dO{f^JVy=pLDki9ysA8Im=_)3vn5<%oim8mHLUrjz<|wDb
zD2MK`k2iNKG&n=WOck?K%%-NaxPFv#aFlavlru-gixa~b?QGne%Itg<3sfvqv0TMM
z2DXYNDjJS<=-6TvsiU1+y=!#uA7b{UD)pACAkzK{dNQ(J`GpxPWhm%I=g|&ZU(MC6
zVw;LDRjgI9PKJ6b*OZF&<SI6c&l_aWHnM}G9oD5m;^(8CEh=t|cKl-;@*hS!gJ&hv
z$*)v=tztVvWsLKU80=Fi`kjhzxrE0!OtsVNb)A<{bBwb?biP;dgLuVB;oz{=E)}~~
zJXG;W#U2$usW_+Nyo$Xl_Nh3f;x`rhRUA-pRK+nBKdbmf#UT}kIhA9a31gh0k?28A
zWhDB`3(+4_qg%!}w`V6GVcfnLJvzoYuHxDl=Y)!1Rj?>H)>$2orlmwrswh9!VX8jX
zIj!P%6@REWtK!|U&KXYVSSP7M^l?V?)3MGA9J+XP?O5l)Sm%O@iz;raxTWGx6@PKB
z80Y+>;(sdsR&kX}BN}D9msDI<afJ&i)y=l65Iq@l)2*=%6|RX|p>fW2E)#CEiD=$f
z^ah(A=lGtF5^t-xqhiB2=bnnYD*oeyj&m|1(H`TRQOVKu{dG2aUz~ivF&XDP80UN)
zi9S}5!);sxG$<NW4Ymfa22F!mF{*1YG`v?a%6^5S(c<GBQ$ywPj-`PTCXbM37i9P}
z_%#GH1U0-i-uWtD-L~W1K|57DnSDvC6b)%$bI6G1(U4a|VGTtz(7mTL6x2{iLp}}p
zHH@ehEg<qS;~jD;EJ}^i4vnxEMKu)D@bm=dY0aIf;u<cEcS>qlG2SU5_IHkVHl;^P
zY0xLQ<QdJ~Ug&3OA@r)O=KflVXozYkr{OutmS-=7bRLt!(skVu#0nZ>8a~&sN<*@S
z=QVWH&`HA!8Y;4n8eZ4%qJ|U=SsH3;sH7pT;Ux_(Ye?0Q#$ITs!r{_z;Y2i@<N0MY
zV}f(}qD4}>rBYQxH4O<31=d9uuZvFJ8?Dhw$+IoWY^H{dYh99eRPu%6(F<#%)iu<h
zsSVNDYoq&*M{8-Qt>IHWUSGq3UOIK^XsD|pn`1jF`L(RDqk*?;>uI>PK1%ZEMQi%m
z=qnmtrJeoJ$0t%-PYtGzOMXK`0}UT&_)x=}8X9VNM?+%`Z)qsIIr_GS`}<Q%o{E;M
z5pJa6hn1-`b!}{N6AkZbcwa+v#)kOcOt7iAon13QHTppRTWDyh;bL>8+y3Z@AET`_
ztRI!kQYL2E#77#AY>l?l&{{|v4Q(~B33k8Wuc<dzrnc8W%?=#QQ_++!-CCVBbkQ(I
z!&nVnHFVQ3P{SY%A8Y8&UURgMyP6wLL_g8cgQFyt`*NnfbnjpH)IjW|p|=q7K8$&}
z^Zrdsg*yGkNxC{fnqIs$I#|OHMy7_58ff;~s?^Uk45dpGoMAG~!!@+n8uk4a<yg`A
zQQ`x8%JCm93cQWpV1hGF!*~s|HO$d4LBm81(>2V{Fi9GkqG9T}=wuBv!o>NSDtwxF
z&W_W!jD69(C!#Yo6#q3kO9RJe_J(M?U!!vwtG`DVX;`dbo`(4natkyp)bPbhceKCT
z5Ph^c`t17P5)Dgf@aO0Xsx3)hCVaVu!3{I0_WYJ8$%8e~l^X7C4^eHkhBX@g)bN*v
zwHnrG_({WFn&l{I_*TPr923U*Z_&*fwrHR;8wEFs@SB&yTQzKx@%dWAmqIv1?9Nxx
zUlO*<(fdY2pEXg=GF#uSVW)Iq2N&|@==Y304O=%y{SyBp_eX!!z!=`8VYh}oGQy|-
zh;lS&nb!7c*stNJhGSeEvLbGsjvl1Jwb7q7{K8c~##Q4|I>fExo9JP|BO1Qi8qHdr
zO387~h=$)aoYC;Bh6g9y<@uYClY*x>cW0xNpVq)44lh^k9}LKK(Q_Kk3pvXTt);?-
zE^uMiOkCt*JROZzPir^9;nL#*{GW!uxozqQ=(wceGM5{TYq+A}s)jon?n;PWBQju~
ztvP6d^A9)YMll9$ts$|0HQW$|n}W9lZwpdktKU<_u2=3%blwE#KhA|+@16`4$wLi~
zM9t9gSi|PeQx8vY6x}5`oU92Bi7HtVO@}W0t($e2HFbCSSUL*6?YiNStS#u(;S+Lu
zg8T2|ppFpLbQBU{SjWY$)AQ+ojyyW@im>E?=u<ih{2t}Aui=Rfv-x#*<0>FX((H#=
zVI4(u6xC5oN7_C2%{xp#WF?A=1@e+YN(i3JN>EZt_|t;V=qN3uj37(7*vsj7PRC~+
z4E3PAjwBsdO<Xe((Gk_Lz`#NS6?DXOoYZkjN3xFRb+pjYQpXEAD(ZMm$Ll&?)RCg2
zrjA-VD(Q&p$e@#xVtfcTRY#49PMQw#=O#Lpbu^ynqzm3os!Lu)M^zowXz=w|Lh$q9
zA@WS&F9|aHvXJV6H3YK+d9%2-jygKBb=1?*ZKAU@U;KkU@wz&mtyq`D;qe-kYaaT{
zsIOz%MCX%IHDA#|d{wHip6KkI=)9q$fsQ63c~i%^iOyR(-j-}b9rq_Xc_%rIbiBi1
zndCnH#6-(;XJs_jL0o*M=DRxH)A9R$rK!|vCRk^Z({hsYzK-US-8U+O6<g`}K*tCj
zBXxYJ<0Bn?boAA+y+U^L{#mVcw9(O4M>{&HqhVUSy^an#I_v17qoa;a41*4dH`L^M
z9TI&eIUlyjA}R7|R#*02$HzJb*Udf_%IvOV;FOdm&C{k#azb6Q$b0DgphQnj(A_xA
z_R?{=dsfQ{DZ{oUdh6(w8ZTI}W<MSMX+g&j9Rt|V$vE#B4HQBPd^mX!$1pv9a8lOy
z6KZ^>V;F7zTbF#O4&ur0W5ac<nB)|mo-)66)+imLbu7`bRL2+{V|C2XF;mAl9ph<7
zNAQCTe!-ZaW3rBITM`p>9L(c><(R}F`YI7U9G{}Q-%_Ru-p}h6O_y3bPQ|a}NzBrD
zSuZ|MN@oks(c$?mK390*^4Zj%&oI_uYMBdlEEYM1i-bJRiTyOe{hqT-$8tKL<4YZf
zdS|WBu~Ek+9V>Nwu49#s)jHPc_(I1TQ7AP#u~x^U@mc+yjB1lp_I6FM)_NTqr1apJ
z6lM>MOId#}W>k)E*0EK`gA4I3(&(0_++J|3>dg&)rQ>TIKkC?};~O2{>e#_yWH47s
zrOtOc=7nP01xYS_m_^~(VOc+jot=VvhPcArI`-)Jg`=nACmnlr9MJKzj(s|Kvv0p>
za;V9vJS^EAmezk}lxd&Us9we)9fx%s({WtK5q9}t{HW*`4`u$Bp33y~ZMW755&p_~
z?Bx1CFUJ-BrsFg>2Ls6le%EnEM@a*v4E&+vELRPC&85UuV@A*GxWJxHa-Y??sN+u^
zcXa%HE%uj=|B1rCf`4=W5kj>~LM{tl5qz}KeE{H^j(;S3{r?l*5YEz@I&S6i+d8(K
zcmG>)SI2)k&QEfB7fsH%7Q4sY=~`?|vE+xGL{Tng;IWPz9ex7=1J*w=g=n~*GpPnN
z;kuxaD>n@olieOMc?{Sh_vV)RgwW@pfspWm2Esy~5`<tLL0ZTw<cY)i4CI$=f!tEI
zRY-VY!6LcxqC%e3DsG^JWa}19=D$>)Ht>vrat59g;giuTZJ>;SXGQYtyEQltWevRf
zopQ2RGHbOjo?PBQl7WaQR1kdnS}bbt>bHBjegWLK)ID$D1p^HYyk+41s9w=Pnt{p&
zUNn$mppt=2Ik7mypiHdPga{v{P8FWn*wdt%l5QYFvULTk7)Th%G*Fd;DOY8y8K^Ze
zh5RK0GoFet)i&_5@anme8bY!R)TFWjKGe!bxZR5bqF=`VKSp_XGTT5s1CHTd)8o?@
zuW}x5B-NMfD+b2jasLd$qSp+(Zr}|AABQ5m=0iyX0}EP4-ZU`HiY$&OZyRVN?v3Pt
z7-(#uzkvY;nizQ3Ku@-ECFwl_e2(RP1I-OIHPFn!)tC}|C;E9L(&=cZg@Kj^IvZ%6
z6S0(ND+7GuB2Q*A*YyX6yUaf{@DWQ5v@y`uKzjonIOC@j7JaitZ)bq-vgD1njs`l>
z+eu2PF>Vq6UdQ1j>0;o$z>8hQemB971-lD=BG^OlQ$Z@zlU|ICU7_CW!aGr>K0^8m
z_7mi}Is;{zI32^JgM$nVHZX+I{(bB-14B77TQV@&seL`E&Ap`N^Wwu9V3VBzB_ks^
zt!*P!COe}Hj20tf3`{UE(ZE=lf^mZ51rPn}PQ)YwlQ|kvaY}AHOgAu9_%s7st|!fv
zm(I^HFw?*+4sz4zYy)#RQzhKXbgQ3>G=6B3%r(%jgL@@^z5%AC^OM=%MFtkrzKQuJ
zmQYB4OiVPf%)oL3#Z8njvBJPg1Lq8!H}JWERR(@Eu*<+|18eAjfvpDC8dzswgMp1C
zU)K1-z<QecUUwh)`=@HvvNijiO&|BYzKLsOva^|%TgI~2r4_lF)@Cx#oWz#~zB91h
zz*h#oHt>ysZ#mk%(+5m;z8(^vJlXM9j5S-EwtTYtoY)Qn-*baqoA!eN{b=;my{hl`
zO8<7Uv(v!g$<E;R_1Nfc1A7b{F>uttPX_iH_}RcO2KE`)Z{VrV;s@x1FO}6N-l<A`
zy7$*)=j_t7g9Z-Kj)4Qdx>UP#D)oW4Zu7qBboiKo;|5N1V>fWZz^?{Q8TgIsbU`*P
zoTN)b;^iJ!J@BAv@1xODhocWT>64u^oM;1QrOPb`$Jr?==b7RR?vY+@igUrhMFXk{
z&BUJu{xWdOz-<HnGw`>8YX<(I{VC2R1D6e4G4QZ^Ivu{aGj^3LqPy!A`Q%4cyAO$9
zH}J248w{8u(E@AJ8cuO`_e#HM;FJ4R&v#GnFvYoJ;I4uD1|Asr&%iwcoPvBy(_ZMC
z-tl48FK$;o-z)v0fky^%3@9dsPjMa_c<pgjKJ7+cVR$`u@c!&<Du?G}>n02nVG}T6
zny^gxO!!TBOxPyQJ*et6F?WhH^0(B-gW@|LR%I<d;S(@%bZ|UqB4ncJH20aG4O5(-
zrZ}Hpsm8~I@|ehLBEN|OCVrpdJY^!E=}z&nE7dm5$-Xtk2~KqinkZzVsEJ}Go|)<t
zHo-wIVxru`s(Bt)y}Bli<NwjrY>so<RHxtc?2;x*nRt)QnRuF2Ok|pP$wX-rWlX$i
zBE`hBCd!(8fh%IPW8!$<^oYrqS>ibpH=4%E3z8(6IJhp2gsqG&n|ktY)p}E%WE0Pu
zc)>(PE|xy&t)@Evu1#CkGo7Q#o^l*Mo$6FF5jT-xqKb)B6KN(Yn@Be?daAQ<s?)GX
zy3wk}wy6#y{NPll?3HTD+O(=Bs+mZbc>RmCJH67AyQlv-)%m$~J)U6jvWe;@FaG0o
z6E#d^nW$?b+eA$hwM^7DQHNO`bg(Xsk@je+bEQvuzG+UcPt)^v%cy6<F;U;dD;(;<
zadw0{<9er4$GBYWRSv>5=gaQtS<{?1Of)dj$mAzJ-ZatB#9JobHc>dIYM1wozCF{q
zWLWpTX%2(1`mL&sO*Ap_E**H^$m*WXu;KdR^11V{>a-hGo0)juL{AgFOf)yq!bArX
z9Zj?}(aOX}CR&^Lz{KGp@efUWa<6KaY0j`|&a7$9?2psim}qOFor(4)*r~PC9KPw5
zYjZa{)i<5U7CV{fY@(ZqkEymWyNijgoY{40=VoOy%hf?ocHXbr-9!%)pRx(sbP^eV
z)I2@SxjoJCPj?>>O|6#bZK98fVGMo~eNFT;G0?;yM#bZ*{Y`Mcs&l#8024VMr<b1Y
zFfs?57-Hfx6GQ1hW^!;@T4j+lRvS!rKAP?fn(mA+F_Lw!WsEa1ij!_)jES-A``|eH
zc=)lq{}k+zzI#^otmzIzV!Vk7hohX1b<>?m+=}Imw9`#Y&gD~tOck8QWq2uR%Vb3_
zTVaNYnT)GpF{W82W(%JqIM>AW)`?X;>#}HpiG{RQJ9@#yA`^>Ed}ZQm?*As1n)uwr
zDq7}jR#R4TT`SS$oSmG=3KLs$BD<$M#Aa9H8TIwmCf1nPOu31*Cf1o)Z(@Te51FTb
zA>^DAeM61X$VN_j)z~HusS^DnHG}E*>3m`&I;EPj)x<Uv|BY3c{gU2RQ?8Cx*vdC1
zzBTa+7oCakOl&vtlZm}1c9{6y#BMH-YRV5LcAEIn#J@QaI=Qi$(nF1Q&57)i)+x*^
zRd<hY|2TyT?39|3vCqVQ5gy=D%E<Vc(@{<FsnPv8k^GslLySWcr%e22;t2OE6DLgk
zYT_7o2B|f2Na)XMuD49zk9EzSq`{m>fkceXGkcobmx(hnV$``i-EoEADL<C1`v<)(
zS@$e=&Kb@*!SjM8XE+!65g_w&{cC+wt>|AS{%7KE6XchO>1kJ_^s<RRHl=d<m@+5m
z|8Qn0v2fPHzuc)9hZee6xM|`RuUc4$TDWcE4mVW`1ufj=P@4!?2wJ$u&;7|M4^2Gc
z(jJp?-^2s1)2#_6K6vw(ac*KyG}UKe^=Da%g%d+-kf@R+(S+z03?XK&+!ErkVCPD_
z7Is~XvkI;GEhMF-l7uXTE#$TEl!XD6Q$hD`)y-q!tw#x7Z2xOq3bS-0pN0GuiciV<
zAe8yy42NX+^}2;D6t+;pLP-lnEEJ`Jh3YM{7Bo*QW}$QIEdK7kn&}*Dp0>Sz7LAv(
z@U(?;7M`>4jD^x{i%*1FC}W}KxUBj!oHY}(4p)vJsF3R2mMF^s{3uI19WT!zN=@ZY
z+6z-sk}T{QnRViBwU!?xSFjMX(2%ZLNVf32g@lDn3olrxXd%r)WeYD_NU>1KLfk^@
zeC~MmtsMVwh7)*{pg;c{&rY>K3}wXAEo4~kH{NO%s#rKQErrTdt16s7Q7IwL`ZfNN
zg_kY7YT-3@)<O*n*%s<q$YL)n)M2CX)LIrUZAsK-qdl{D-DAjK@#*7J@=Zv&UNpO|
zg@Kpi*>e((g?{C;7a{SAh5Ev8D9Mz}Il%K$vR}9GhJ{Z@XT52mfrY96)oq<8K?g{_
z7@Ji#Eq-o%*4q{uS!iY91G@B7;vEa`T6oVwV+&10vg5tP($TRQ6H=O5XlCKmKXtbZ
z&3fO$!T-fuSZHaXxrGgf<Naqi-+q{-bWGHar#>i_&7asGTKLF9TMO+hpngVc3oB<Q
z+As$0$9TZb-<=X1!}b=wEu7uaLMJiU!NT~?Sv|*P6;4mB(?4rN*Tlp2$z3gUv#`j*
zVhbNz=x$-8g;5qhvCxC#U||sZXrZTt-WK{;=w*T4KD-wT%u0=w&Axayu1!zrYoXY@
z!~hNvBW+eahEso;DU#!bv!~2(*vG*ZhFKVHVTgs#EDR-2B%hg-Qn6K5m1!xw%rb(r
zqa;tAlPEqYixV`oU)E>~V=VrX!gLFlQ&PuTm~3H+g>meNg$Wi`&2T2MbVkZV3tgvX
zt%$kt!wXYO55!5Pa&jxDR_L6F->J(cW>}bMVJ;n$$(m(hjtmPmXIsdVl-+G&%37Wy
z^jmy_l02lIGoN8LEoA}wJFEuNLI(B>hh&L`r51Kr_};=Y3(GBhPERbHo8jD<;V?c|
za4tA0Go8NaspV%nt1Yatu*t$^3u`U>io_Qd)?0jn2(8oO7jM<2!y7m(f5oHSvo<nH
zXFBymne%6*RzDoyVqvR=uPuCI;o5KUZ4xtIGN@)cyyU_bzoMOPiN@WtcHOP}E$#OT
ze#brJZr!S<;@jET!*K@WFL&cVSlG$Va-~@KkqQ<La294d9mmCXvtJf|ViW5V%yypX
z?6t7p0_S(1h5i@gOnV>4Hf1`M+PYEwvxQ$QKBJQSN&5uxu!SS+l!cQPxHBBJaGc9+
zPU4tkDS0#}K|CSTO+tT8$w;2I@SBC&f5wyljPnZNsfj7STR6i=I~C_4QN(i=&Rb~V
zK}!!VSh#2*$AaR)y?NT77XD}9Z(88_KN4x2#7hhk3lA+kvT()1Rqp2&?r_{h?S|}2
z|FDTkDc42vFL$9&voh;t5N}H9EkSNyz58a}Wq8bV?sNPnW&J0d*?U6Rg$E)p@pHzF
zlkvm(JdZg7C*x&L#feYX)Kw2O4<a5uEa!TtdjJpecwl&7dSH3bY+RPt1D^*T4|pz?
z?QySrFr99d<@X@q!Qm~5JAJd#dt?PY2ze0ppnHo9UVZho%PQR^Yh`B_^Lp@<2L(MS
z<iVstS@}HpRVFCE2Yn}{bl8?C;KAN|u}w3b!X6ayfI(8mgQ6Z3^Psc`k7hc>Jt*Np
zDG#3Z;C6radSFQp4$O2e%yfA1c2NuW5-Za)bh2IItrn@1`eyNC<yjBPdQi@T=XmAc
zgCq~~wM-r|CF@4V1PK$Ph&X3lN(B#M9=s}pknF+p9#r?Bh6gWrP|<^`9#r$-MGsOu
zNb{hw2mA!7<Z&-}#yyz7CGl`VN~&Zjr!d`v^OxdWUsXI9JuxN2<6fd<aIPsGD_%J@
zWlkdD!Al-|kQ&dVOS7B`vz)4j;xCJYLhhVd9@O-}q5r4iwLGZpakrps58C||uOqxJ
z6=t~)(=zRD5hK<Ud2J->b52jkUty!4WNqz`Ab-t+*FAW{g9aYF!{PPdO%ED+(8vRx
ziuM*~{J;3y9(VU<`k-erQI92vzDw~Y98wROG7>zv)-CJr_KEjAcyE@&(!#OC#LIC?
z-uIxnRDb`^`1aXu#a8T#2faM#EkpXDU<bjEJZSB~u1P6vJZQ_ooRreegS9hK4h^f(
z-UGEl&Bc*yUh(E^cJ!c=2c13W;z3srKJlOj@npOkW6Xn{J+hcSW-s!lQP_Q!)45;P
zryeZomi2aKGK)xhN_O-tr;jvEoBbJb!uttwj)u+G26!;ggFzk)_F#wy6Mu{E{oQ&J
zQH(-%hmv6&UJiv9?|Cu8gOMJLu`$-hC{8hB%*Jyz#&|H6OTY$fjPqbTSBD2jJeWY6
z9<1_UHRIod$sWvO*my9-gX>CWr$>ny9!%wGdX!*xng`QGP6yTu$(rfGEDvVW!sEmo
z)|%z?dYmAiE0Qg<9P$Moq<2fK;F_K7EM%8GSnR<P50<e<If<nn@GB70!C4NGlG!<l
z<sMv_<!sJLu;NOo_&FEXY=;)sa5_Br&V%h9tn=Ut55D5g_BghlQ|!SOu23a&BNxJK
zXOkdzcpBL(oWeOnv$lG$jjL(4^Rk-xr3b_bEi;H;i=A({4?IqMEBvF`4!gO-gYUTm
zc(6|#{z1CAi&N~uj~>uT-T<N+akmuh5&TJT;B1FuvY)#F16$2J<iXD#bjV3C9Tf75
z;OyBBCFIoEHrqMs!7&EE2X{R<?!gHe@ax={JUGcc+=GiAoMMEq7ZbDo@ZhwNBeR{~
z8E-8z#*fP?`zUdS%kxoU)1$;$56;nl;mn@rCiy5qwFWcm{prEq9$ezmn_2HK!T)ib
zKh9!y_@l&S&VmP58Cs7L&9uyGoajf1e?;w&mPsMi_~rRu4{msHlWS1RtTQ(2wg<N)
zaZH${klA`#=6~FRJb1{@9m(FO8*1j2+0LnQo<|J($1&Z8VdJp}IUZ!R%VHCX4b_Hb
zyAIGATYuu1X~VMNx81q(*!b>o!fS)^W7}>V)_R;!<~R%_pAAk5Nx(+X#xFUEkPThQ
zq$zTeJT~&$c-qD@HlDJP&qiSzMQryzX?`1pY*d;YD>BC^V7oU)3)-lAA^W46HCb9|
zj#Jb|F_D+FQCvs~8}qj+w_nZp@NBhL=D7DLOW9~O$LS-yw2d-0p0!a{l&8#bc$CoU
zIS!kk=F4iFX3N`1veCvyTN@D@Q5&^w)Ui>)M$G1Yb5ymFY~y)4W+P5JHmbc4d(lS0
z0<mvLD;0%|c{Mr3#;(x{g$*VssW#F?EoFjI*+zP95i4eh{Fw;~`G#7tYBmx!UgD^V
z9a_i~<zlsCRH!b>S%S1&BiBw%8?|yBU==FYwUKS3v5h7+>e+B?yl&$S(XTJnU&*yk
zv#;8CO@!oo=Qs^)ylLZY8;wM#p%lH9tIu|So8!Ebn<ZzjS@B&P@7ZW>qlJy8Qsw<z
zo6SU-y<=Uv$3*>>oEMRQVB;ejt%ZMR<Hj6^YV0+2m}tD6jrKMM*cfPYr9?Z}=wiF~
zq<EZKN6!1YU?<6T7UUhDt~R>a_}E5w8=u<fY2y=G7_IcMaqggd^x5qZ?rBTp#9lV~
z+33#+tsCuaqmPX<ueo=!`sP}@Fj-&SFuClBxHi`rWMi<6&uk2}F}g(Zi2`Xuq$1B}
zYdl)vzxao7w`UO-i;WSv7DftTDHB_yaVC;+HpbfscoFnsg6-ZnnQmhSmyhsCg4g>*
zC)*%S5u9pcnh^ef_Q;^<OdGRo?6+~i#%vpNY^=4h&c<9D^K2}$v7AFuA~v5Py)Ao@
z@C7z_`s+e2lP&3?xen!vZ7dOmrGnI_aD|PP?84^M)i$oZ96w(%)@Wba=Zuq+sjF;E
z*_-y;%ZXaP%r#=O(%!T$Y^=BOE%yN%8*FT}@s$*9vay+K_T|KvHnz~QUsAW)$eim`
zSX86jT&K}oXB%g8u2bdRRO;}30Zd;@#cw#XKc!(`+IGqAwDF_3x5LKwHmV0x>E{nN
zsL$%V#IZd#eiG%~HfWqhdu{BKwD?deyD)ODGi+ZP<v(*HvT@tS9d21R4%s+w<AROD
zHjdahY2%cQqc)C-wO_gLH)ro|V;r|}f}h~~)5>J0Etu=jfxCOto*AS3X5+Mtv!a|)
zHq3$gol#`tOX=VrGF)r+rm?fEa?VEieQ6}Se@?wf|7~2g@u!Wy7~$<|{?EoG8<)k@
z-?<g3d}OY}(fDw0+BF;h*tltfb4U4g(fOBad{mhIx*=K44ms!dmW*M_k<`03{<D!|
zL-D%ta8J}8+PH7yfsJO}>s^}b5Ig!aYwS;Z#Qk3!;G~>9;*PWGh3SRmg(lT?LCOuU
z>jpcLxi8J*h3$pci@pPNW_?ti=lH#Fj<_RF+*vD)B;-Zdi!xs9{yPa?<nf}o@KO1r
zDWPayFP`!upBD#<M2m<#zZV6B6!fBy7lpm}r%eSOGWkk8{Dja>QBf!+_(WbpcuB!h
zUOer^Gs3A{+KVSTPpUsF^0Ho(^Wr%#%6pOJMNKb~yoh)a_afDcs26qp(U=#>EGiML
zKsV+&beO{Dy{PELi(=#jQTwG_^ySsrTZ=_gyx6)byOI|v^BlwPDyMl-*^6pkBt$cv
zqxYs>#fw3Cq8XITbIygLe@qNk^`g~0r%^bX>BUzQgUuh-t?tE3Uc4-|o-Z7wTHkrj
z*-WK|7sHlj({e2@YJ1Vpi?_U}Lp3j6^Wt?cvc0J1MSXUe6XC_Ac}~Gj6^a#!u9@es
z)~jAj+o3NM3l&Sc9^O5Zx@(^EOts`Uym+={sDT%6dhswjl|{t2z4&9E6P@q8<ApNc
zX~e0S?@*tT#$Gg`hx45^fhe)57tOr*&Wr6{yzfPGFUEK=){7QiwDjUrFM6_%UVPxi
zM_#n{;t;>Nx${!Ny-}W&R%yI@3{)GDH=Xaa6+%fnFWL+5;6+CvofwL_rJcR#lFPda
zSt`fWeC$Pc$$lc(L-6m-ZWFz{=<UT&4x<-+I1zhX;b)9t(dj2hNq;W}<nn<+26-_!
zS2Dzl2XDIP;hdTk`Dt*Z=I4>&UX1i&lot!XO^jf`UyhMXuTr7hkjQ8T{IzQPRz~7A
zDva}Dyce6i*v$Q3tWEM_vKNg@I}<sTqayPj)u!1gUM%xsxffG8U!pc$aGn=4gv=DA
z<}4wz1?LFP6`a>lnJ;94AT<|yu_%`>_F{?frGk@ox_x0<;l+9{Hh6LCv&c#*`rM0E
zLRJe>XN?zYg|Ew%d?Dns`A)TJ6~67Fw9c%v(Tm>~MM$=AMM&v4T#pB1osLAdNp{r2
z^e;JF3)8>y;%hH%&WbFU?=VaI-+IycT%<$23Ol^`-is?<T=n7yFLruy(u-44{YNi$
zaRGX<e`<_X8c&Jrq1=nZUi>5qdj<CiQenRr2ZaAD_>17d+|ud|l_Rt^K5|?n^>)XO
zdU1^FXm^Z>a#}bcMZXHZ@JHk~FHU>$KQI0k363SG^Sc*kBuoB>kh6m4yf~jLzu?71
z;eX~z{^E+;qO;1j6_HEaXGXfsF<lmgy2(|paRc<i??b?c>t6iph2ewgb63y}{_3n(
z;elx0<gDe|ye;I8;9bH01n+rqUr04+@u6_qc_ieq7db){F|G=-RP#a4<@+itLsqyR
zsuk*3K6rfS(<s@_E%gfV3F4Pn(1(x@+iHfW&vaz3MGX4@A5uMa@(AAfCr+Nvhx|V5
z%!eQIp@0tseRwU5*ZHza9}4@hJct!R6!D>`4_*A|>PImjZ|h@)4=a5r;X_FuTKVvS
z52bu~+K0M6Wc%=p52bzX^{ZMwl=0zNA1e3|^P#K{<$Or;A>zYxKJeL+@;>BUUXSFN
zm!n(eJLCuFJ8!<58ucMsG;wvlLrnJJc^@kI5clB)A1eAVmS;Zr@S+d3io~B?;4o`1
zaK4(6!Bk^`lj=j74+$SKeW>h1x(^vXRH54)GMW^NH(B6xU*L>c;8gX2=S4Kgt5@@Z
zStcF_@sbZO`%uG&EFYFGaH{+8dC@rKI~O?2lD9AHW^4LzQuJ&4+?#`S1bK^)oL?;K
z`P^HI4#(kMU1sb1@QM$w5+|qUUFbCC2>bB5WZ&@NZ6OT=sqm(dhCaL{<iP@m!bZ8J
z@Az=ymjoqEe0bM~_k3u|uBoXlIJOI&W<E3*1@iYr(qUnOoQ<~hq1XCs)}``?K78cE
zXFd$|p|uZfd>H7%to*UIKD6`UQy>2KORT*Q^Zt!>@}aYk4uTzhICwHbc^4lZos4w#
z@qSHY%7h3xqpO?5-p7L71wRq&;luR&9xC({%QW6gNN>SDKJ*pRPq4q>q*;*xJ`kyV
zYe{U755&PfJZK&p;=}hpE6fgK{0E}reVE|Ga34l67{aOiXE*=iJ<^9!KKH-gOrwR2
z5gaQxPSA5NK9NoMFvEwLKJbMslYN-x!##ON%oLGKW&A93STtR-Bs1UFXZbMOhq)XO
z2K>sbDthK?3!OPWw0xsV`w@wc7CQ48Ia~#`YAj$Fypz39f?<&$qhhg;B|faV>z?wr
zOtQ;;_@PTStMpyyeD1?4hLazrAFHY6!!93ovqxoOYq<;ko%D?l>wNgahxI;e@L{tL
zTYR`%KltUs*hU{V`EYzpjg(os{z{Oz)d%8NK77r!Q!Q<q4_`7ZjQOgi5%1-Xv6OX5
zzV+cdab`P5nEv>%L$W-rmxt=F@mARBL$ghFNq(eP-U`zfI>bFb{N%%VA1?T?*N1&v
zYu93VOT_m3_;?R~msR|;55M?u+K0nM6JIQJ4sz|#|Ao$=tn5P+3O^!vRFFl-gd7(<
zA^58xcY{+xeiNkTPYa!M3*BAfjI{NK;90?Qf-G8h(z@uwpFZUHp!o3@V~jE2!wv2L
z+=Ui8mwdR)jcAcWe#M8YKK$cDr$x?liyS_dQ+1JZjXT)zdW{x2*ST>ma)vE(_*~6R
zh9yVdhyQ%IE&6<1;f@b;7CHGFq;6c~KE1GKdiFgZ9&#H$8okeH?UnvOkk1~FQ~1b-
z#~ims&PCBz{q9d=-S7V5*8Et$DLv9LqhBlcFqX%Q9Lo=nA7%V_)(_k7Zm=Og!hU%D
z@cGedK!)Fs839i~@X0UVpx-?YfgFB!Q!3_1aX*edpPa{!yna08cc=1lh2(sGG-;8Y
zUvvrx78EQb$clx96!D{IuB7c$ql6zN{qA43OVcGi(!}Q}<;T;0JmUxdWlzZpUxcM3
z!_y+)_lvY`pqKTd6J0G3E9b{^ew6nk$&dPeyyAB^(uf~%KT`dON|ureLSll+92_Ap
z2v!t)Q82}iN<w~8(_b{wzc<s<{CGPj=_SF+g3P81$q=mKM^z!!1QUXpf^W2|%*P3+
z|FUGO3)T?K60GS*Eg`l2sN?4k7G(QT&ksk0Lt3U@R?~Up`0bq)`&sE1Gt<i(>Fmp^
ze!S;LQ$Jo4S6>&T{0$)u1m6^F=*L?^-u9yrgTar+oFG5m_47_a<?-q1{f%@UQGUKj
zdgrs{YrGlj?N6nhW`4By^H;X}P~!W3G#3jk1X~JH-pY>;gn#JAM}D;Sqm3VJ{b=XM
zkUQ>CX50!mJ3O1Eb@$4AHQ|glm1(epA05Rq`8!1;o&Dh1&IK2{ul4Na$H#tr5y1KY
zy8H2oAGfLLM-M+f^<%pqJN)SBM=w8k-DajAr?1mn3}$nF^zoywAN}Y<_oV)UJxaT8
zfF0n+Kt@`_+Vp`qNQy|@lYjh}LQ{SW^<$VH!`bxTNu&9-<feNZ%?Rn*NWoElJb51$
zi^ljdR&>S*ju)hSf*(6uM<z;kk{^?E<viSPnjbVcU6A9}v9vNnIG>57d=`x}>&IL_
z*7~u|k9mH~=hEPs^<#k_3;kH?$E4{s7tv;+sPEUBi@7KkJ9QR2OSoEpt;y84P;@t6
z->}$O;m1mjMj*O|>pFk*b3eK-uDRNeRa_w7)nxiO95wdUY2}YzJC(sIU-+@!k8OT@
z=|`8EsT=&*<i}<|HgcR7I~!h3?et7^@?vL;AN-}c)sKsHQVW-iRyvlxda-l#T-sND
ze9akj<2K6b#8DgdZ~gerk4JB&>gzHnDZM}Vy&pgLambIu93?+~^dpGqK|gl+vD=S*
ze(YydjCA*wJ%0S;$NR6l=NRwxBmb;m&lLBW?E|upk^Jn(!{r9aFCy9TQ=FXE_AYjg
z_;J*a>)hGijT~d}9Ex6`!+sq1<Ah{?^@E%389z??F}hpEDarmOcv_I9zx(mzsK7sR
zC1?FOC;YtNpNric`%f`Q@;`nGa3|!WhKv92xrKlGaY-~U=UTYp$5r9i1pmpE`<6KW
zinlk|Xt79ZU*x7Ax44viF7NX=>8>CDah(RxFo1i0-1j3CKsbO090X2%z`eBo$dAYT
zh!4ODAcwo?5=RL@4Pf9`+2mRPdH|_Q97FJxB@Pp_Ok8pE4%H!g0<Z(_GV}^=+ULGx
ziba009}o-%P$GYv%@KJ*1p>$uK;8gqv~y3aeJX%_0X!E#`2g~>p|_Jt3KkG7C|F34
zMTG+>BD`p>q?nN6Y$8|kd^h)H#HA$rbO6r?DJ@t=@L9pKg5?CC)J+N?La#&;4WL2*
zRfNX`X|qxQ$+`S_AukA46nrs&l-$yL+d}atTre$HUO9mDT%N&s*%qSNs=1PCLK1?R
zf-eQ|a&Bq$+&*RnP&0s9BCju4Td+>9W?doKg7pG$ggj}B&AlSoR|Q`S;B_ICzY#!#
zTu$Y;0(d)si2+Ospiuzt1n_<U%>!s0K$8HP2Hel_cLVP3^j-k`dPdT=Vw~IH&m)y)
zB0u=Adu&>Z09rDl0vHrPs{lR-aEHON$8m1&9|my$Oto$Sd=x-ymKKP$381}@wu0>h
zSO1>Dq7K4IItu9&KxZLc1iR*zDy@@0&gI>Od=fy9T*;>a^vvbG0_ZKg<r0Tx`v$<b
z-1c1J^b4Rr)s{E|1WDMb!BRS0^!v9?9zvbg$)5!<RLC$v-ZiFhgy@XSZDo{@(Sl<F
z7%OC);CMkcJt4sV&!&=04q!?Ea|4(cz|?^Ic)(1-X@bm77cxVTk4DVOmCqJ3hifp+
zeL!V?01E<G9>9tK7IG4o@W@{*31Cscy#~963;9^hc#-IyCC<_SxF;`T@AlW(la_XV
ziL){QUeNnIfK{TLT{ybhm4GKRuciHb?uW&}^3fx0Dp0a6;O@p{5#12L#sKOBQ8$Q9
z0c;N7e*yd*z!t_v0KW%tCV*`Ld>O!LX7@+G3gGJijs<X>HUoI_@~M3R@Ff@D3Vs*B
z_5gMW|2}{p1K1_}2f>|!IXf%v7Q$LT1+XVq$Sl*|T+RKtItK#yS@<u42L%u1mL3k^
zi14Gi5`H?I5PmX%Qvv)c{E4f-iO)|s+v3^96OTsoHgeB``y+sdOPmV<oDJZdER)7X
zJm)!{A1F-Z7X$b+fWNpkEp>YR7$q{LFLf>ja5;cVLBxZ&62R2}o)4nsQs-I#|8Q>%
zqCn97c6vR4y8-+cz`p@EdxHy8j^Vu-z%7wbcsqbQ!jt&AnM+CcxX=Rd1YwJX2U4U3
z@i2f#!XF2qND-BDI8!6s^LA8`JmLD2QbAMD666t!Y{DA^2}6OkNPLp@2N4K@r9sJ3
z9ug83<ZCIYoJXqU4dN*w`2;Cvt%5-m3L+9j#gx>-A}<xh)4U2Kyl4=`f+#M$WNxhz
zLg?_5UOy8=X^|uemJxhT@L9pKg5`q$x4&$+yhvF6i3NT+ps<1<Ni2xuTuz10vSKgL
zy`cMB>BS(JO%WuaBsGY%AhJZiauDf3B!b8cA}6~>Mi5nl_&uw}xL0db31WWv_+R&{
zRSRN3X8hXe_>$MtUJ8N|rs_ewESyEuufd9~DxCT~zWRQ(nz^3T3Zix{FLo~}JBWHg
z^b4YY5Ka*FgJ=@OyFvFW%_~7P2;$8kUX|=?g0Bm*^o<}ss2(S27{psaoD0@$9K_o}
zGz#J!_T^BNNzF>*yN7x&b;u8O3(Z;TY+35O7evz_dIr%eh-N|e_uz*?d=$j{!kY`W
z5Ns((g;s1!c<E^h6D6&K=pd3df^7xc39__3r&8292GJ>q&LZctkzInQIm)fxRV3X6
zKNjpR$f8ez=n=$$r4G}lLH7fTgcH=8{W7C{g6_A+^CIaR#G<X~Z*{FPAc%oM%nG_+
zYz74}IEa~Cm3!(83A!Ir6M~q?i4J0D5G6+_!-5zQ#K<6qODPrjc|jZ%#F$*k=pY^}
zbw6d8#s)DiH#<Jazt*}tKhvZjCI>M^suX!er(~+|8G_RUrwh_l_PZ6RK=+ofjLl}J
zf|wh`Jo+ER;vm|uip>vVK@barXt64`d!7CSDJNed3QL1nCS=J%<^NY$8N}y7d>TT}
z5LN}TI*8{&C?CR_Al7oxg-|?%b#yz3UxGLo#QGpM1hJKiD2QElbYl=(7|9P}n}XOJ
zME+$?J1x51ioPg>a;7hX_#ud$L43viP2P$2HHSKve;dSi!nfy2b_DUg@X+yW>i@`w
zxQ<>=-5<nmwreEMzhDvf2>(ft*}X#c33hxV?LZLp<Y&q9i30LNK^zX^P7rs4I1<Fs
zAT9)PF^FTF@uVoznIMh_aYC}c3YMs@bV-Vy6n;wZH^I|f&O%sgSbhDEAgD=x)?G)g
zwez{9l>aIGYOdt3ApR%(Z^28s^2_`b$mP$7wQG|7Cy47p{uR8Dt8-JxEy3G@&o7Vu
z7sS0Ff+5$3`?;EiWFJWOVGxgU<&TBr1fhrmtEfUWL0xdlLdDE2wL<U+w{s<4AwEHW
z2mvA4%N&{tg%Az_BFQV5N03GDio#PN<P%B$TzLT@1qBO*P*_Nj+|r^UB+pG|^%5bJ
z41re(N{3J?gwD&{|KL9z;t40|{9iwJfM-Hz`kebLXqgb64PofwSlJNDNfq+?_w~*T
z6jo0PAriu?A-qPN7DhCL`XP6Vs1QPoZH4fB2<ahYgz!QL6+@^LLOg_#%N(9Ad#Qf>
z#SlnRxN4R;%%+AwtQ^80%bYafyF|{Hp}aCJy-EmGLr8>>8A7!X?k{u9ap_0Lrqf!U
z<<3hXyc|M3`cojbv5;OpgzC$kk|Q%}a3v1QjxKkyLLk-@tR+}mu#RBe5VD0(=Sf8;
z#7A^8OASwdMS8?ey|>(XJ%l$X520lU4MKP`geD>P^R6MAZe=tU{#FQYhtNp)J0TpM
z6RmL08jz$Pz2=@IS>*-yL;T$khP)SfFNDi&qfJBLA6i@Hk2DM6ecEgtA#ctm@<+~Z
z&S(|F2O;!eL%~!&uJ9qJpkk~;$bF*YqYzpPX(LEUTOsX2Xy(goFPslNP`_gcojA)O
zbdl<mbS0nb{w8JWCc=+H=q}_F!2!$N(y7bc=R<n&)cFujgz#$!eM0CP!paan520TO
z{X={$Ek<*HTkZ@9VOYrhEE~u`s_Z^@I*5VCo`&4RB|c+>JSm-$vS+#bu;SU}&Tx^C
zk6=^?FFZaa+9fe2gs~ya3}F^SsBZM$a%Wr!<3pGrb1_43qTnRK$%0b^Ia5=GOcR_g
z_~dd2pL&|jdFfhXu9%$@!ucX~JDiA9GB1R4hZ9Wmg)9hRp^!y_iv^bmQfFxh%Y-k_
zm8=j#S679wI)tw|hTQ){SR2CT5Vml9Lii$tO(A#-rd=u%o7GZJ8>OsgsF#Ut2w|fT
z@;oaX;?lMTadjtSYY5vy_>ya(OzbN`lEF=5EZw$E|2BlSk0ZN6*d4-m!nX_V5M<H!
z+)sK}_#uRyBKc8}5*F<dzBhz@LVgk)a;fruA-{xhFoXlbe-_MKk<40$gp(W#;czZL
zBIIZY{7TQF<GFHvZ8#aisSy4P;T|V91a)laj}Xps^!Spd5PlbOMzBU7qjn$T9A`up
z&aDtG2>Dm=VhDeR@R#tvISwKG?+I^PnXBotaFQz_jBDdcn68TOS_uCLxi0wsG;f4(
zGq={3u;;e$x%sU-LhcIQ+#0+e!UOJ*VLTni!w?>ELk<Ic8A}K`A=qJf!%)Id!?42G
z(krfop@;F!^yF4Ek}v0rO`4HhZiQonk-5S#!+3LrL*fae!wP59xY(c-jxP*<7=f^R
z7mxZ22F41#8SMIBDziZmh6JataPowaH;nvY6bPg86rBn$j^``0kuMAqCbnLXH-Ez@
z7Dn+f3X4BQ!`PiK##AJXN;8v5RtT05`Iw=4$uKhRq>efkYMVcHY<luDVU!M|LKv|y
z%7pQ37|(@KKJ3m{*)Yn5@oJUWq|IsPGu&ToDJ4A9%T-7UBO(gdU#r2QXc&F3Mp?Rk
zg_9h{^K>talrUZhqaw%QOk8<7V}DZOseuV1s>CaW5fAe$P}B$`HH@?{s)dnYAHzrw
zqe>W6>0uZ<E@gatBfa*H)K9NO&s9q1TO%niSTt?il_*mt)gGk3Ogp<$UlL_1P>l*%
zVblzxUKmc8_Zd+;4C-fxQ74SLVu5xjq5jTN8PsPYsUHT@D`7k_LVQ)!=mQnr2%|w5
zz4M|^Uc4Db!!ZBggOk8pVZ0s2CqNINQ5f%pu|JFhVKfe-Nf?X6SQ5s&VZ0Yc=P<g2
z(KL)^VKfh;1+)EYz8^;Gfi*iVPdxbuJ5)d3GK`L4_am~E;0GLPUIG&QNU*gag>8hi
z6>Jwq`&@YkAvIQ|Ql}GrDCE9Fuxl9I=w}!`!uU9hvuh2fXskOOHlyFXp1i7U$m37_
zG|Z>VVnf3COi0f#dI_PhcNl$y_YI?882!T-5XK;p{ItTkvcefCeAWqt%1nd9FjqPx
zL&LcFU1gFHLWYGgTnL5Zi^fKVF^cDLO5G`8Obug<@Ua|uA*EJ2<HMNnf0()sC@G5P
z4IDwjao^1D<gkDsy1)Pea|<UN=q-1IA?KWtc!8XgBnc9fD1rf$oO2KnK~WJ=F(5_|
zP%)w+2L9i)Ki>P_>sRlao}QlW>Z<DM>b_aZ#^zwD$a(T^g{<?bG<;x%uUjE*JtHVD
zSEgZA8dg(}M9whLk~IRi7I<wM)}`Tz&B3#2c%GWxq55-opWP`6ydW;$+8n${IZwlB
z>P{LqreRYW4yNHy8aAh4OB(j2fj_m(UrFAYh8=0xnTGE+2iwxHT>$=`GA~!|YI3!>
zzl-K#OTgbs-pxLqPu-J-y=mYj)1M2{_NRfrp*-PA+5sx^mVo$h8jhsl6$*A5j;7(a
zUo!U>_m9)g2>i03i7f&1+iwZ@BL2|xt7#w@G^p%JQS-1Z!E0$a#nIdnu!W@WZuH)u
z`FghY8TM|Y_xzS%aPR7G3j7u=)pJFd`A!<nvGHm6p807wpN5NR_%sdgrQ!WFT%bbz
zl==bH_Iy3RU(sh<_`}ZETbEz-!!&;88vo^doCfB9LT)Uo$29AFy-R8MEDe{_a3u|&
zr-5gNzf8lPr&7L1!<?s52+EXCe3gc;MJDloncs+#SJQCqZa#0lKHk4hwr>f(6_nuf
z@`)R1_<_~{Xn-&%_am8;hTk~~Wvc!p=+9~RMF8gfD!@%a-`*1Zk%n8ea=`t-pJ}+A
z2L2Zp{|DtSHh4?;L*9RL=t;K((XGKh;ZJhm4(&fs7-4=<LHSKkeyxp{O!d|ljjRiQ
zF`S=*;C}~}X%znIHxoh0@I((*?ra<bO5ZK7vJ8+aF6sF5@4xb#a|nux$0dPfAR<8Y
zZW#rrzBOzllLqL3A#Ry~d$)`Q*aACubJ&uZy;Jx|InWe@fy(kg1#$P@yJac@l?1-;
zZVp@W01yY7YgKED%qoD#1~6x9P*u=sg8#f^w6lh&yh<{i_16R*yjxE#FyIruJ*`oC
z9l*cahIHlwbw#myz(WFL+<hud3fq~ru4pFE5EuevOiF14JPh>X|HU@+nH~|KJ@D1@
zUKWrPmyLmJAO~myv=TW@@0M>4Gy^tWN@x17hJd%k-IjODut4j(xDC+uE^a3P@AAP8
zoCO5v#3?|4E<kqyx(eD&&<3XyEZjrjo`Uugv^UU4fWH5a{wkW(U*rq`1`6<~po0Wu
zRf7d6(YGw|P+-{I{NV!R0(k=D3tAxP2th{*%BMyNFdB@01iTyvjOPdfJAerYz4~du
zbYLPvXJC?`lLeh3=u|;zb9i?K@EEWNSPaYrW&!hn`M_*o>egWO)?f~>Tl02pZ!#BH
zbvT1hJr3;O8rrS}B4_RLEaHXW(fTG&0M+ixc=Tun=@MWm@C>jPJmpyJNnkm!0(c5o
zCUSVTq48hg?~F681fB-gutEyS@}kUHEgE@ME6&R)_f=1wT$ErP@GP(acoBFGcpg{}
zoZA|({uii>m8(7QLQ~>zP9(0}3{U<%zP9#Dz&26UZz<I`Qf%1HwYBN)ZU(lndDr7x
z1+7*g+~O&BZ=wI%vlBQ190hhETr<wP6W<N&0rmp>n0Y<^=h!M|-73yDe?Pe~vf2UQ
zpa8^&fWrcpEna2WhMLEKmw~QNRy_wC2VMdAv*~ZM@mVPZgH9JZ0lX?QPYU{)pq$@N
zA)Mt;3;H_nh5*btBfy)$TX%EHZSc+lr0)pIeByV3^FT1V>U+Qkzy&HP_cf@76RYxv
z$>vY0`XTV)sH#ejLc||Y(`Q#*(#X3=`2l{Fa8tr1;4==2gl8mt4tzmbl`vewmsC}t
zqJ&Bkz6LJSU`i+<;R^5#a1;0qxC&h3C<8Zu>%f<j8}DdZ{rcA6Ti`nyp9LOs8W`0$
zC_ex{0zUyi183%WAK$FEqnr11UcFy{L3#Cl1?t~O|74E$du}~~JM+EYfj?-*B@~fx
zi^d=L2l$svqwxp+29(noPt5l^%=f%W)%X0EepRb>e2#Yqc=JS}kQ9DbWNzI|;wC?(
zr)&#SBovi!c(&Jhu2)QgyDcbF-g|CB<9gcy;(H{Nl%Pt`B$Sd+T7o1&mQY5*)m@3Q
z64E5J-4>)u*j6#4<j|&9e@riXGLgG2fQ0c)tMk<n2~i1(gp)BZzi+jI^;v5NRwH2f
z3$Lf^5)27330vOCFeO+LiVv^nO0Xpio8ws@WH`JvpxUWs)pHhjq<n-0%1J0Mq1C+1
z3KH&>(D$cw;?or~Sb+FG36&-EmoPxW{SqFKP*p-T32{E9dS&`~yFMsHP(?!B6(R5>
zRA(g;`iTO}tRVnz)s*m{gjy16i=4)S){)>#{K^>;;__kEL#|556qgx-))(|4L0Qk-
zZ9#*(c(~J)ISs{SBMED_1-yJjTxQ)Zla#Pe<Y!CBk<dg!Q}$OvYf+$?pe-ac7a$Py
zv?$+F;Q!v$hC?Hvi-fKsvz>$v5;{s~FE07gkHjOLBy^U*H-0NFng92;pqqs5qF8SU
zJp||}p%;gHd)V3vf)f1K_&(%@$RX><-v78dP{N}UhKgqgNf<1+J>)LW`RsqAK>8oZ
zm5?XlNeN}sv+^YrNO(-bObH_-jFd1*!ej}TCsrTD?tGUqR>FJ#HXkivjL7VDJhSQc
zU>rqG!UR!Z;`U&ogyX+w_S_!4_)6x^Q_ZGGSh78sCSmug#HQ`RR0%hpO3Xi=IbFhu
z?E&kYA>qRIfSI!-%$D$kghdkONO<*?%*REYr`u-FmGFI=Y!;p;VZMX~5<mWsSSaDC
zWr+(<hP5qvCG+N24cN}b5}rSvxrD`zXMQj0Un(jovLm2@eM$-^rezYAOZco$(-qXg
z;u$MN<|;u~3;ML6EO}y8>RJiwBpj4*h`N?n^jYeKgsl>u<BKG`AceshrcDyo3%o(l
z7w_i3B)~=q=8iCE!?an#%OgbSM#6RpdnsK9Qg%q#DPfls9zJKPwj-!^qe}LUU^nGq
zN3cgix2er0WmhY*xXM0JX1|~ZB)nEWU}FAZ2}dM+B;jKTM<pDSa7MzLd>4m9!f6Sw
zOL#@X;tN$r?Fe2Y^9APRt27aJ@k@uQo?^`(gnLpvjQR%E<U$i}PW|;`lT8<@Zky$u
zOD5iua8BY^Rq?ijv*gJv?;Wb-`Kqt(2o~%JUfdC6U8s7V9Lq|4KxvVXb)m_pJA(IV
z*mndyL?ss_^!cFahk`Cw8h;|;B5k;YZzOz5<4-#;;VTZ16n?Mx3wGpa_z~mJC7yK*
zzi7=*88hc=3H)R?KR8@xS_;8s2@MX0AMw5_;TmO3!VeOzOL+R@s{DNSccQ9qIaw^K
z&S$@u!f$$K_DUyZg+EI8g@)*(5dS3MXHmH0_IkWzy11$8ZxVi|2Fa)=;}05t+F==~
zGX9isTS74z#brGBZ2Dgk{*`ctw(HsSza{)50ROp(m#<%s7m`s_4*h556qZp$Mwy*K
zij0RlXLc#ksKU<Ro|V;km#5ZC$QYy*FD2t1mapkCr=%R7W+$HeqE}jA#y-l*Sa+~c
zIT__;q{)CB{-3WT!xli65fLCNBe643WORHXodr~JsR^nJ%DaXPQ(#NbRyzY`valn=
z6_pUj1bB33P(j95&8s{hBQE1!85PB4B|$68xK99nTZv`v7ntr1aTOU=$t4-n?ypi!
zh9@)LRlSCwLv9wYE`yXMnaNaB<nt&O9iCb;YRjSLQ%6t&Uq-sX9quiZkVBQ>kA-Eh
zF+Y2aWn{~ENDh6``Z5~G$P~DtjQxvhPu&@YlpBehhXs8^&@4fdf|e6sD#(%1M8*U;
z45T-e(M(1MGEhcy8G(#eGFr=6`a+fOE>~S}EvJQymNJHR%U-oJ;3e}{eCh4l8MKkn
zRz^D+%xq6-IaejQs>+tHJr?LB^Fs<4BxA6QE;9IFPZ_;rbd}Lf#;f1w{5zmYcbUd2
zhpC4E(&{R`W%Q9Tkb?1O6TYsmjQ%plH>yV5Pc(p)zrHgVz|Qt)Lhz^zKJ{OdhOmH)
z0vRJ@3=@sd6_o89F2H9ygFG4eq8_&Jx19m$NJ^lLF*3$d;CBV1Wz1S!<>Q(`rCkBp
zUS(O8acqEiWbTeCYz7};H+xrNARv9Rj43kikK%zSrgGe6OpRb#1k+{AV8bGiBX~^4
zOc}4sc!M>|m@Q+yj14m8$e1hRNf}SccwELj84G1RA*0H?IKRR=U&fv>-U1nw=Es#Q
zS^fOvA{hsQG~QY&W3i0KMkbcXs6W7OQlt5>Gg<j7;v0wg%VaE<@wALJGPaHKR>)Yp
zCca9>bGhD1K|8OAug^`a=1X(q+Xv?K`6&Jj<?!+Nb1X?+lTml1SEo$kSs8mrCMtLE
zNyl`LKQH42880u4GZk4Lf02VF<DiT~GB(QCBx8q+oiaAFgG0S7GJmcP?$r2>PqO&z
zHW@EAO(S61E<+vR5$vLP=XrZ&?31yZ%olg}2+*cUa{Q9`es-3U*~jlQI<aD$KcZjw
z_+grbsopCxPRKYS<ERX>h55(WHW{TJ^^cRceRFPg@$0^t<mIa@RyO67jMG%c0r8VE
zUZdjd3W(W#CbFg8$i#&WDQ9H7DdT$?H)Ome<82uisVOqf%6Lb{2Qn_mI49#>8Shg&
zUdcF5v9Fh1_KEn<x!&t<WxPiYRBPUTSHQ-w@htG6jOU+D`$!b7T(dcIJ{G<EM9|9X
z<CkQ7CgZA%Ycf8krZ@7xlJT_wU&!DiUs8Qm#E0$*9uLwkQ=E1MR|I<rzLBwVS3p)D
z-4$Gy@vRIc*E>7fqvRBw8~=Qy_nnX;KK_G@A7$K@@t2IBWc)1Scba!m8{7Gdj9+Ek
zq{fX-{3e6rex!$gVYs)pO08QPQx4>Le8nxk>)%w0*`GAyr<&ys_5POe57je*k`eqX
z<Bp7!2#Q8fD1zH9bNEOR0SZS#Vc;W_qR&KYi$y}ID-l6)ajQ)A<}ARRm(C?iMNm3|
zvJrgO)-MwYyOSy~0mYb^X@!z$B8TA~UVhm*Ng9bD8i5}{Iv<HZji5pV_eM}`cc4YW
zFEUvX=;G24^g@+pW(3ae&_db-Z0CK=+z84=P`!6%j8&Cw$gjTh3ufgbIJq=wo6Y#S
zn~D)sioj!;2<~IL=-(f~0})h?px1ByhoAcVu$a;>85g&zMo@+MsSV#9kmRjuB6CNF
zlzGdOHQ300$p<6oX*R1F0q-)s&>^K(1mV}EF8Z}2cy3&>P6YY=!jF?ABB&cdn+V!Q
zP>+qQ=QoU?Q3M$g@C#iJMZ)jE6V#8OK?IrNl238Bnk65O;E@P|2wI53SrKGMkP|_Y
z%&*b7u_!!nac!1lY9cb5MbK2dMY`iLvv~xA^OD-K=A<n}`PPE+`%A4NAg!}IU;`%1
zNVbchJqt%LB!UhRbc~>P1brgt6v3Nbvu+V|kDzk|UD%l2L6`UZt{musWQl~|cX!Z3
zlwq-+5&ZR=zhOzTmng=&EYmlFei00aU|<9+$-Cor2mJ+LPg&qmfd@rUbx|^9e3Au7
zhej|gf-w<{jbL~Lxe<(rU}OY&;$8U>u#*3(V&MYO7}mzjQEcRU{^$rO084j=-~VTU
zaS@D<V2XGVYnTuLGbaf;QIu!nCyPheX5RYmE&PAL=@A@?;BW*pI0bMNDDx4ljbL2_
zvnhCV(IePczuBA!w(kyjIag#pF6g`n=0~s~f`t)0A#$FKV37bz1ZDZf?2dSFsmQr1
z@Kbm1UcOOwc?2sWSV_k24pv9-G!<k|uu8nN#-5<ro?!dFj5QGu{8hHuGi3FiVBVhK
zSqdS$6TxoQ->8{YIrI4lUWi~lIS|2?2)0J>BDosN+!(>82wtKv><Jz$l}Y;Ao?tU`
z?C{5J`_yap*`8n<dl$h@YS!MckALjpk8?HKAsT7z4O;CD2JH>@P{N(e0}-6t8|;l>
zA7{_K!G40h!TMO{n!N!p4~o0j_XaF;gx2QUcv=*Q;%EfNB6vB1;}Lun!PgP+mjquC
z1>O?$L<Fx2z(-CB@LB|?1UN0|>w>-^=ovv-@=XC|bPE3u<?RU0M(~cvITykE5quEA
zyW;Zv-SY1VU?^ev3lV%8!6hpA-Mb$N@Uftu2zrsKeI=EJnLZOaUkLg+t;&e75~eRB
z*gGWrrNYbN*3Afhi{MHG-$Za#<a{saH9=YIx&YtOJPJ^$^Z)9(5y204%lsI@PXhle
z=r4l)D(Hv1|JR=1$<i~$Q=|AJf?ML&pAq~c0N-+(;uOK(yj7|MFPU1zQ~r(M4()#w
zg`?rnl#Zf^03`%X5wxhF#RM(>U(UDje}0YMBXCJUO9}dY-SA{cnY(4q4bEJnRVf<<
zf8O*uKe5k~pHV3MSKla@FGq2{LG?%!Q2~g1-i~Wg=uzAk1%DOPh{BAbTomP_u%fV|
zh(-BJI%$rm-@W^mMb)b`%c#OnuTN-HWyp5#^2xFlqPYED@rqI0OIF;7vp|IjRVv*r
z|JkEeD@Vg0Aw4swYONOw#iOVa#h56@Mo~2yp7d)LMe``CMd3wJJ&GDp)QRH8zy7RL
zzh)E<Mo}xuuRW*p)OV$F;eox{;wgec`vT_sQKUzah@x&3^`b~d(Ks3&GCw2v8BshG
zMSbzOwl6#x*g)V+K^qF%NYIA`eMC^!nI%BZTbbDc)Y=y`jUp$CCgO6h<p26qJr;}f
zsm@zL6fL4SP|NET#jPLHT1L@ITz*o^yBegoj-pKz#BHPKAoAOZ%l3jY|4xw3XFEpG
zN!*=N%j+CP7lFG9+D%ZF=^jOoySS$S4O@rL_Ku=Y6n&%Mv;CsrOY_L0C<a6^Fp5W`
z7#>Bg$R8BNPytwGa1`rmc|*h{9~>rt-Xfj1*sA+_rtof`7U}s>6htv1iW9ZG+AY&Z
zML{|;itAry5H#FcbTmb%Mfxwbym3*CkK)y+_}Q;0CPwiz1uu$8QB02F@hIj+F@<BK
zdDEhp&Q*ZGylk29NM}SbD~j1sJQhV$GJIb!GYT!?5o9Dh{_Zo&%!y*Ic&g*vY-Y}n
zVnGzkqF5fq!YH1IVrdjliUNx`QVDNKl)tE(u~^WRKl=R#dFPiF?Yl4NnUzv$fcF%6
z*x##H+glOE$|zQeN8Wt8cKP{X<>U4R>-r^Di_A@Z(w~W9Z4`T>*hjua@hr70ikG5z
zE{f+l?l)66MDaot`Tf21;*q~6XV1$@St1(G+J0P}vN4KHQEc89Y!fYHkJyIIQEU;H
zTg6jGn^bmldlWmw<<2OE%*r10d+IJxhPQS{vF9%S=7ztYU5N7k1@Lkd2bo{nJ3><*
z#UX*;Uzv6|ij$%Zm-YpGd`;bu)yJdY+h4g`k8vyYgm@h@cMYz7Qj8!2K0S9;Jsss~
z5S+4c+Qu7EoS|hfU>kUoHAHbu#dQ^LM{zcaOA0<y@J<xxqUf!lkAin;XQFTv{$CQ_
zi{gD6lPG?R;)5tIL~$jGZ=(1xijSiBJc=(k)>q>nNAYPCgU)7s62*#D@rzMBbve%T
z<Fz<5FGaDjjsF>CcwL-#%e42tjN+>(zK-IxsU972E-^0C8svG;O!0^xn3}lCMn>^%
z6yH%|`L1c+<!&Bb<$4pn2d8=8)6TH7QT!a`Kiej_VtS}h;s?rM2mi+?-W%mrFG&2t
z2d8?!(qv6dm}5dGoN2;H?|0g|C`v0Rqu^E)e@2m_ps0e|QT!FfohS+^s603EcNG6b
z(Qml-yjk}CF8;sNk?~=}SP3%=E2uHuTQSY+GsP>Sge@m1ri6ZbaRnt5)ESdtGiFW+
z7aI2{D5;>7f>%a*)5jz>kM%~F*~F;|$|{H|P!yyo+<3tJ7vd2Gk`i*S--Zk_s^`#z
ztl%ake`vy(=H2S-s|qv)mI7OWuAmYB?Ms2Fpyld#e>>&F5#EB_M7?4D>fs*$VY66I
zpMB>tC#Ikr3oCe7L3srg6x32sTfw~wDk`X=psIpO3hray72MDEmr1a~ucjuZO^rW5
zNthaE>QX658W)$T`-5r<JOwosJg9)hstd}|siEM<-u@#yb6A+e{e1_Y5<&r}qrg}2
zkb?T;n1Y0Yx(ezkC^jS<+?qo?_BTVp)XVX%{B^cv*<9<@+#fVhkf~sGL8768R;~TB
zFU4~<$E_hApCXGMQIMseje@ock_s9tXr`b!d6<`)tsqB169onN-djE67d!h+6|gaE
z;e{ZLAW+bPtj>+MCij$3dg~T=1IGESDE6bg8`HdUqrDP&VXUB?g7yl!D(I%5gMy9<
zIxFa+VC#5~Qqf5XBNff|2W5Nsj4c!!8_F;Ro6EZH3VJB$$u>+*aB!KX42&oH#CwT>
z<5Ie>!o#0<PQmjE`YRZ~suavrFi^pxd`iIxHcY`_1;Z8ODj1?*sDfb%TI<PS`-27f
zp;C|@YwuGLn3<=93YgE)9N<$OdTfZ3`6CsKQZPZmL<OT2j8QON0Xaz?4(j5MRX`ma
zr(oY`Z*~u#G_QHu@In401(P|Z3OG7@HpQo~zx#vrTjEm{%)USQ#QxyY_V{$cUTb_}
z201y^Bbddz3ZCSpf;kH2Dp;gov4Y1H%v11$f}I2W`5g3~K8Ij|f)kzn#<|{<<MD+G
zNQ<6`xAK~^VM`P&rF0GP{w|ZCT9K=@)`YUOOu=%>gTixkphm1v_~i<$Vh2Zgqo;;y
zc<6YXF%v538lj}mC|IjtQ(mIVsRsvp%_&sfM|kTLJgeaE$Ky=Qc|pN?wnV|J3N|Qs
zQNb<+yA`~oV55R<3bre_)W+MSV6%cP<ld6_$rbToi{fMp8M2j+Zwbu{MP&y&s9<_Q
zf&##yp*~Vp_bAv)CM!6~I#bj4DL72~)85;!;DCaIN@%HykM<4;X(XoP@R9|tjmSAB
z)a_+KsgkGD6I83?G$sm`T+JdrwLdti;5FK91?Lr<QgB+qn+o1i@VbIG6r3R+#(39e
zCjQO~?Fo(2?`zXv*R#vtPJLV0oU=lb?@aaHp~`HIpA*L9#{Ph>dr!gp3O;6QxhPO@
zLBU4~DBd(XA1Ww)su^YMhY{X`CCWZ<EXkgJqTr%}PpQ`vLt9OrTxeLU?532@6@0<T
zMMYl~Un=;DMn=U0D!!(4(G03cQ*lMXHwx}3D5T=5f@`$N3jQK<6nsn5O666+34%6|
z2Kl9Y?}maO*tRbI&onH>Gk+x8$0U9dm@-U!pnE{2_(j353W^kXH))wmCw>!@;CBK3
z;4E-A=T8BY8Hv9Y{G*`o?Npi(hT1r+G++O6?DD<6n^Gv8g;f++Q9?x#l}BMwR0U<P
z!`2iI8CzIP4Xp~nJt|77D5avb8rpU;imIB`!KY=eaV_iWuUTc((A1==xYI7ogbGPT
zOhq{rvWkcbLxrg#szOnrtDq&PGOB7g1X~_xPOPb+de*tsfa=V<mKvH$S4Fjzg(|f7
zY&D#892Hw<B?xHEsB7g_R8VoBXe7<-y(%iIsHBFI9V?-(Q6s1?e;0U_RdD`l-Y16v
zx46m^iAbtwtfDIGS5ZfWufkJNUB!bcYN@E9g7&1QiVxcQoI5DP>$>>Fh1>ZwO`IcY
ztKn2arAt?lP?4#kp^CaH>Zy20MSV3i3yTN&oc=OYP<P0AT5mqvKn10Xo%&D98mV|#
z#Up%hVrXx(*o9G{Y}3}!`VnWV$WhTjMMo7)R5Vr5N=0iG%~Uj35vXXPh7%192<;@B
z#9mWDTB_gxvHOfjw^7knMLQMk#Te1TQ=Qoca-J=ulF|X_q@uHmt}42zp?lCp1*eY@
zm(r+ioN>CV=%J#gieBXZc#qn|-rYYl(OU&&_}((v%?J5ZM(IG%Pvv?F>s4%E4Jrnz
zn5AO2ibu&$6=PM5Q!!Y@5ETU~MyMF7Vwj5IDsstBMzaU`ck=v~D<u!)R&Uwa4@UTT
zYUq>X3%Yh_Vx)>u6j2pp$gz=$y}5qz4mr}_*&lTGm*x2{4)RNM${DX>f{JM>rmL8!
zVpC^-l8VWc^A0)tmgM~WSYk}c#A74<Db(3jnN!L9%gLKxCugX5OvOy`BK7<1eIxyT
z?foY0eW!kM%}9Tain%IQs934uaTW7aELO3Ex<EdwSVYxWkV>vDRFSnl<Mx&K6O{AZ
z&}@=>9Eb%&y!}OzOI18cS*21;@-i-ERXGqW;~>7DMFAsSF7Sj2iB*(*imQrsDxPL9
z3KGq><*ZS|J%V@a6f)r%71;;E8S_~c&#9r^c!4s%A%hl-?&b4Tv@xLy({rN~y{O_P
z6|br|sbV9!q2i#5Ln=0_*rH;$iai`tR<2@)ik&L93-u{B#-okxb0DA)?jq|(d*<G3
z4*DaDQYprJRqUhDD4p0(IUnND4<vOaBo5FU7c<w#8&fFWhgBR^aZJS#HMDzU4+NaK
zURH6Ox~$@aioAl*^Wn_SnUs#!#lO=Td;hM7|C)+ZDlSlQRGe1vx{7yIoLBLNiZk@~
zRh%WCJNPs>Z?bKLOXRfi-%_#kKtMp@q<X$XA>0z@EPReuB|il3siBAYfnX!S`{MG{
zfOz)eI48u9$VS?86<?|NM8!oF_&WP@+JQ0N!X7!Fvi)Ndf0RsKQt_Dzf{h0PQcB<#
zLSVih>wT?aO?Ur_ikIsoFRS<_-|N}kKXxGaM&w+jbdB|qo1ngYtKvJ_NezW`e6QjL
zMOwpX4L_*(k%mY^x`v-<7-=mvC>nlI@hdH}hGH6Ss`yRCUn>4q@jF|h;!hQ~LsM3^
zsP5ll%MS$SM*G{xWFLJcqiUoqSwUa-AFA5~uaJhq8h$<y{7W-}<Q+i=PK_7QQ2fs%
zJ^5;VtEXuEqE3Q#n6$Wt5*ku9l+|#L#{U5c%}6N?bj#`LeAmtAghG)ht%Y+$8P=TZ
z9T?}QX@CYv!-gRVYHm1>6wcHxXUSS<Fe|n3BO0D*n?s;#&@|kup`r#|gTVqCVj4^h
zmIg<|z=f%NyvH*|X_0IVPu$E}Jvdcc9Y4A{UXJb5P(cfKz6#&UqLh|<K7M<cN6XKp
zStSkkY49{u*HBr*{TixjsHWio4et%{OSJZR*px0Yam&&<RWyDMD2H9RF~rZCmEhgO
z1&JCOYHD~;168m0TS*EV)5XUUwKUY`pd1WndAPQ!qk+oHnJA&5u7++Jx@!zCAVWhF
z4NWyXq@lisM>J$<Xh44Ed5ttYtRa&vJQy_8LYJQDo}WB=QyeTR8r{F77Op!QYsl6@
z_2+DuS1)Jons|-|QYJE_nZ|>xXs4mQhCo9L4Q)6;8b1@7*-}F*Et~`^j`CT!wT2q|
z;vCbG@$A3LBzoPGbFq!j$)baX9J^3w4PCU*U+pMpCqeh04A&-f%Q>5L)iB&Fq|{Ba
zh8`LQa9lL>)X+=gKaV7OYv`k)FGv5e1Q|kB^wZE^3q9~bn^SmsYI6#wl1DWjAwaH%
zJPm_24AC&Ml|NJqy&am4`On8+9g`SF`Mj7loPC**$QkF6=4<GBC0?Lm1ZC`U{LPNZ
zit95Pd=no@mR^Z7Z7r1?qhYLu;~HMkFiyjG4Nq$fHe!N?i5lipTs2J6Fj>Q68fLP0
z8m5w~8fI`r4hGXSaNONtzBk_EWy%15w3AH-GILgwSsG?*m_wdx;LJjm8Qj|6*V=zv
z!;1cXdgbKP9sLIPCFg130;EOd<U)!l+o@rhhD90{Ygnq`Nvds6zw+XoB^v1VcNymu
zt&wCU90>Z8=R}3eS)qoN9L<BlxnBM%j_F^?caO)1_wWf;i_6Ef=FezYt6{T-EgIIb
z{ayX%HN2qVSq;x=m^abO?&5Rha=(+9KFwRN;U%_zSYm^QPp3C|QP5iB6T}-eygxj#
ziPEL}1k~lN8n$WJLv7Nqox?ONu}kA&SL~nw|C+T^!=Ez}^t(v^9_}gm-ukxw6LQ&o
z8h*W+JfPvAhW%vJ{%q#ASd`kNZ~TykBN~osIIQ7Ho;RU$yg{X$=<rmo8INgTB}^|<
zH429np3v~BhKp>WhLajzWAlVbIi=yWhPTOH4X<l>gJQF$=v%Z5-Qx5Un9gW;Q)mj6
zg|>y(m=hn}ymz#4)qh^&x57f_fvWwk#t;975s&v+|5R^Q#pK2@{s$T^X!uYIC(uu5
zOxk-NQGS-hKc>|2Tcg+GoX07~wAhz4e8v}P_({X(8opqsG<>7sORB$yuQgm2qfGyh
ziNe6c09@bEVsI%zRlTa=TMge)4TmSLX}Hdz$@iF8IqCNt)3M$SGJI<aSFb<NN|a78
zv9&+b_-pt>!z~T;aOimd$|*n#V^B1<ziHs|CkzD9yma(A2mPtxwuXN+{Hq}{CQ)&$
z{};u6B)y%)-!wG`0|M4VuZD}h(3{m!M8^Uh3w5OED5|5Wj%GTF=_szFs*Y+pO6a&p
zhoQsNQBp@K9cg-aQopp0GCIoYX!~dCPoqL-GF8XHJK1ytXwb$EO>j6Q9kLEpho*<k
zi0Dvs(5d6CDBn9PLD%u~Zpo>QYLR2Qj(aO6M~(6K{*y}EW$FBq6)G@O59b$0M>!qk
z1$G6E2})6?pF_|2-+Z6$Rz)3^blk7w0Uh`0=y-3EZW4Xn$~qVam_5QHrNGBI^LFs#
z<<r>ODmq9RF!6L$*U>;nrj8mqYU)VnsH@{a9kq1$I@0xU*;1Q)nB2r((S&TQql5JE
zg8`XO$Ab<SC#-sU=;7BV8;5uqq&<DM{~<ke2?%(i<I;pgLmiEDDj;%nJgnmp9a%cw
z-kj2Jnn$1QK!HbdN7I*NlV&Fx^SuRLK}VlX{`>v>#m^LNBKl6_+?@Q>F-XT?9W8XU
z)X_snPaUmv##PW+M;ARjuhNFYq@x`hGbWU}_IhZaxvuP}qXVCskmy?|N!m#dmtcM0
zZ5mFFqr9#<y6Nbyhw{mF6NflFtufMD-NWytqqmNJI{NFOuJzH;mmMh|o_OH|O;)7l
z`2%ze<cQ~bNAeSlerz}xP#GW9LA%#%Q_2t>Lv>8jF<Hkjj*gB|I!5crC9B(pi@O3H
zoMiJjnqB;S9pAR|2uA3ko6%;HH&O>F6>5x*u{tK`n5c(qYI<4Y?#kGB(Q=9zAK_|+
zz2M4dijJw|iH><<Xr@tySHx%Qn66`n;Ob*KX6pF0V>oK_y9KiZW=ohehdt`-&!yzw
zPBJx~>dn`~h0?oA;^Yi-*x4s^EYfjC$D2A9>sX@Wc^xn4SgPYm9Z&06!?);Irh~H#
zt=4i5*|fwew(4@6-sTD&D|L+6kV1T=RAM!C@VzXi<&FGjbgb2}PRFxs#<FY%$|z>@
zL}ZUEWyX!4qpp3Q%|*?69UG{OIu7Z0QO8R<cIw!rW225ul(h93Tc~|QJg#e~9h)i7
z+1V81tva^p*sf#$*qqa=GIt2UAm)<f$iZN@jy)6`-X$IBa{;xN(lySjuppI~#)QIu
zKnD+y5Kwpy>o}t06&)vZ9My45$IE(n$mC+4U*AbEts9j%E^-Ja|C9Qvj*~i0>v)|q
zFf=^PQdKGY8Z+~~Q-ZS2AkQ0qB7^A-8ZQ1*RtNtrYK@LxI7T|o>Uc-T=Q_U7aZbm(
zIzG{HQO9{5?@{V>d`QF9!GE8u=ol`_NI%fQ7$(6-Ix3#a;>^NH>SHn|-&^}bXgWBT
zeX8S<j?eVaN1}CN;u@1_PJ#EOj;|=0I=<8KHFbv?-NnDA;|i6X@5)W^^4KKrDy`pG
z|D%He?M9s%nb(C3Qx|9uzSnU>$4|^*%SU=Y=%9U|N&k`BG(YF)xWw8^S-h-1I>E&S
zCySdpexso_P|U#ZI{wh{w~l{w+@e7n>-|M;cMgmFDK2jddFEtCM}ju_Uy2<0W+24?
z?F^T<Ooa>-Ho~0+&Qn~%bJ52)ay3ffFK(cO0m*=D;2r}d4U{ra+Cag3W&6LI<a&0@
z;T+O32ETZdon|1_Kv@G_&m`#yESZ!b;D2+`CAf7kxNou-F%UIEt7{lg*!Z>Sqju$J
z22_C$uFRx{>IRs}#J8J97<&mPsdm0&z%}rziJK;32Fh^*$b@5}ynzY^wi?)G;9dh2
z4GcCg#6Tqj_Zetnps9h%2JSbIVc;PH4;Y9WsA=FqHg%#`#lTyme9s6M5mg1PW?=F1
zCOiSf{OaOv4MC^ZPu5~RU3{Lt^9^kHJz3ibC%ZZVe>d7sH;^z;mn@p>aoJUm9UtKl
zPZ}Q5`UV;pc*H;!d1as>-<9jr-)LljYc7fzC$EPMH18CKjF`hUe$qf=1K9?0K24@v
z&0?@L#|RG@(%9}OpGICaV|fF;4D>b-7-(Ujvw<!KS{i6&ppAjHWXmXzL-Rx{zqJwi
z&jjsQXO}R}*@3N{?6o)0t)oxS(Lg5y%>STk7}zK1N={ymcQ^3LAitY|$6EVL#U|zS
zFv1vn*+W53^6*gb?E}sG80c$YfPsNV7;LH5+3#nBAurAX{SCxg`<&lt>*z~AYG4ps
zxH?V;n0;YwLk$cw_=RmOGBDggu7T+WW*EpbkZ)j|f$@|#10yIW<Gs-a_~1wbTmaH@
zUN<8?$^dDn{BWCWjDfKRs=m{dQy4EN7$|csYpQ`7!x9q>Ofqn?esZ#bDF$lI%wdRf
zbqAk0Zye2e_e}aU1OHCUAb8BcOg3gzxR*D}z-$AL8<<B$c%y0m8HqUto-Od0<_bX5
zbTZGMZ(t$$lN;g%l*2;-!JM`}a~2y|VqlGdXACSg@FYjUz%oi;eqz|X#ID&1F1kMt
zlFKR5qrH^|R#0vydndk4GFraMz-rOcPA|l%L{AIN;@!3EvH`B~H?j=|nx!UQps*Qu
zj`FYj^t+xn!f*`%cMvuh;R)5347_OIKo_4ml)6g&Qn_;3#Pa8|HnWB@38pOqJbWnF
zZeWLjuMB)`V5fmy2HrMs*1&FxABDld2}&;q!oVQ|hYfs@msr)+?=r#L&sP}G$|Md_
zH3aB#C}^IaIAVaCDKE1xEKuMbqmCa6nCRFXr(Q>MXdAgId6ffX;Ix6)sizmSmmdmV
zGtjex|H`4@6yJL&V4V34BityVJ8_2lzxh7HIHYe<LxoVa9OyG%`VN_6;G%&~4ZLgM
zyn&Ald@MNmo+$PK`!&FSpAx%0hoX4Fz~|$<8Rc_6G{6(K1fLlA^2PXw=i@5}_;et-
zQodxMeGmUjD&yw(lsx}4K0?91Kgslk0QC8Dx5P;=8@NIPYoe%$Zwy?eaWn9Tfole?
z8~Ba}(7?9_Xk)1tTv76M+=045)idx5O&sseOZ;fyCnH?xSD5M*wDp<uvw_I@rUVpA
z=HH}=8|VE-GcIg6=igff{xnd;1jAXk4NPYE&cHt$pn}9-?6rs+d~qoF*8q1^3z^}%
z`wlg3WP)=LL&Sy6P)>M@ZXrQ26U9wPCS(&OOx$B4)kIk{TpX1&QA)h!rN<MzENy~I
zi86u`@Y#v^e)W-lni(1^m?)W-cq-pdIUGdH&>z-J=mcZEs2T1%D}t(mayH2w<x_O&
z`x$1qOfXGYCg`-+`zHJB6wjscH!;`5<0i_{_?zfpqN9llChldAOr)ErXrhvdnkF7J
zai59GCOk6?joxp9QC~XkRZMW@_<*2sK{?k{Wq&*5RAc#fvfaZ0@ywRV>TH#X7nV1n
z4d+}|%S3Gxj8)b#!x%XCAQ*HayBKa_+$mwAu8AflnwqF*BEv)@6A!beJ$<faNFOp$
z-$Vm5+|$f7(a^;7vsp}KVoBzlniB5I9G9~nF_C2=Y2wc3S=lD`KAZFHs6=BE&)sQE
zz^`}an4t^W;#PxZCYqaQWumnSM#}>-p-grQ6D-ChUbI|VOERQWoIw~)8Es6oH$zvv
zE&1QoXKE(^Pcn1u!=+g#6P-<rG%?CV7ZY8{G!y+zbTiT23=aeJX5YzDE2XE2UZN^4
zkpEkx5HKXz$K-FY#`}uG{^6ke;a~upYGSB~VJ03m!4niLKg7hl-^2$AI#^J~aH!F2
z0~bES&2XN|H^Y+{xhC=isL!C^)zHB%FvHES5hfTNDm~U8%`xRmO-wT}*2FjylTCi=
zF!b{|1&lW_K`?ou3D(aYib*E8r@+L=r?3m$aTcMB=_Y3Iy}9wn_`1tk+*Ri`&8o@X
zOcS#xA!QPbKvGs`3n`srh6@m0&NDHeVsGL#6AMf%G_k?Nizc2hvB<<46VI4fY+{MY
zFHvKKiKQm!U(xS+(!}7c*{>AKe98<@gV3xkGef_WQ_@Pl;#$^f6HlAqp4uui+*6~|
z%cWVL@@X{J96@^5YfY>(@vMoy<#JfyIW{2Q>#``7t}K1~=P9%%*7LpXL-(FX-$`FG
zvC+hSii(L%CN`Vl#?3xTTA%n96WdMfVDrwE-D+Z+$oy|}pKicT6T3|8rp6_6c)7;}
zSAR@<scU0>2K}fSyd=jGTJj*JWwh5l*E?q7kcq==VWA{f#HXKZa>V41el|Hud(zq`
zc-h2p6R%J`$9u1mX*aV@2uxjI&Vz+=m~)DcnE2GhB@?fkc!Sbn;=GA7Cf+o0j+)XT
z42isD;vF;e6&XQ&n<HM3I4fwI0*@SHHyIfwm)<k+zKIXXbM~lF7=n1Zwf}(`dZZTw
zrC;<h6{>Z(gl8P-6RMAh9bGiBZ<<H^nTgM7)j2dKz7QSx(!^K7(9s|6IW+OLiK8RD
z%PcP{xgtb`CV~QU&BS#RKTr!y99&fWTfV4o^&3<cGYpJ;&+%&O{}({x6h=SuClkNN
zb2u?EAjvNL%x6b<ztF05ir>>G{u}R7HY~hv;SUa_i9QzkTKLn%ZJH?ybu9cvU7$Q$
z&@KF9;$IV`EtIiv$3!6u#VwSuP}o8d)=)CZ)j^6CssKIDq883}54f}>E@pw05wm+N
zl(bOF3VlL)&b-T!qT9?z=(?m@C~F~Nq1p&9%>pb)R_NwYcjzS3<)Amhu&r!`*6+ek
zN$&DQEhrY&f0H#Y&r>as5*rpw3-?;6Xu+~zTPSa#f`uhKVwC4Q?C<b|Yazy_PW9?`
zFWY~5qMQ|OG!QUo$yRYR8AY#T(Nf_73vmmTE!=N~L&?www}g1kf#Q0!t6zl$jwP$I
z%~q&%><BHeM{J>{h3ZxqWMgYb91b2N4+s0TEVNjgLqNLxa6sy_S_^F~w6&11P}jo4
z79O!s&q9WUObb8Xmn?lV$#}>^7V2AIM7Q5p$p&oFFUhw%#&;YJnvL=sT4-e9x${XT
z`VUzak`|g;Xl9|Yg`;i#H>)R`SQt9V%eIgs0P*XG1BMQ`AZ>1i%lUw9v%+IP+{q$u
zTUuzv!t_-J#(AEhwZOdm>$#kE7TR0rYN4Bj4pz9;+u1@FE8NrR$i9#9I*|@fl-Q8M
zwFCDqximOitRd&G?iPAm;6E<$y*(`SwElOJsuu-sNtnq6`~Abceir&$SYzQC3j-_+
zv@p}cEDMjac@{=l7;Ry&6-JeZSr|@nvM}fA#83-Wuf`h<PTh1lo@<3G*#ZlUlI2-p
z1bbBfAfMvYqB;TB!Xre1k>VCF$5<F^VUmT(7RIqhOiSX7AW?<MjR_VeTDWpJp#Qdb
zl6SIm&J+t%EzGb&i@`En&ePOSBLin7rVAAyc#Lfp(WmXB{Ml@wg(rE-!dwfFlUEiN
zT44xx9tXX^n@@i7Bl)uvT_=0oC49odA`43ef4FnBm_wPGSVEy19_OHQZOHW?*W<J{
z%PcInu-d}Y99C{FTUcpfl@-qB^eAYuXbF9BhT%*ppX(iNS8*A&*1|dqhb$bn@GK?A
z;%^3FtA*z+ykKFIh0Uy?i@#nd%Zt<wD~y7!8O#5CNhRA~63pL7c8yQ)a^;+Gvw*y%
z`fRhX-NG&lyDjXn!gE>NC)#O+a}Wapv;$P<Jr?$|ehZ97?&F{gNigx&e%g~G!OVd^
zDQ_LL@bOrm-u@BFu!S=g-n4Mc!pjy;Sa{V!kBLo=(`bzH<>6sa@fD6{51(fFq=na5
zIag0({hI~;DS=<NKzy3=Gs+|2-8U?hI}*?ne#^q!)GQ01EsQgaf7S{YVsro)rF_T2
zIS$ZBkKr|H_jwCkZ`M2#@Sw;C7A{bpZS=A6p@okuRI+iOjgKvSLVIZ8mW7KJKBc5t
zxIs~5{T41$kSsh{H(6_(|G9-PtnmNiz7+Ip3ttJq9R5$-GcyweR!{#M3)d}tYvHPe
zYZSSj{@ZgBOazSBe@8R*PdXQ~?T-Yva*{t-_|d{ov>P1R(c$3%reUQLzt9XWi{G@u
ze=+-&JX{zbb|jeoRQxwKX}rhuJDD&$LGY)A+ZIx7l(q4fg}>Ql8^vw>W8q)oo_-M<
zcPtdL@zSb7^t21x;a&`PVM?u!6EGBzVuSt<C)T2NIK9#*DPe<RP|60U^?Ph&Oz@aW
z3c!;>G`6K}l(GM34MukJ)9mnjJ(dmIhGavw@pMmLvk|ewkVrS4B@-YjDE%na=Kqp=
z^N$3Zjs&_5!^S8h=jw|Y{}xS}d`rnp0*Ce6m@^|$LFB}2++RMYoDCK`^lsB`ZT#}Y
z?`83lB5|*cigvhq`muYsR;tXxHXdPjY&>8iZlkV^dN!)qsA{7o`)i|`4bKik;x*W+
zX>mqZs@tJS<lZj#iK^r!I1$vc!C;rq&W`eG+u`nNwIZ2yZ0zY47D%^|J;Y;5*x}qn
zkYVE?8})58uyLwiz}@+#XOon}Ogr2vZNw&BiF5z7p^fK?Ws(o9<YBfdFA*)0nY7W^
zMq3;0Sgp-nTC}p!+C~$m_I`640XaNA(bNW~#b!1>9hac3ruww7!#H_Mwjno8C;vYq
z*2WG4L2ka^rESjroqQH(Z=-{a-qYi~Y;?3SduF1GjjlF2*?9Fxz|@&y^JkKP4eMs3
zhmFSud)@7D$<{)&wx^9|!%|rTyU!TugjJb+$rBrkY%I3X-^KtNV{DAIG0?`NHgav`
z*%)MFu#Mpy<&9xXgKH>i^bi|E$@bg?(=Y+pcrIhf^L!fxlm{E5ZHy34(Iev8{L+zN
zq>V~jvI%-`j&u8u&vMonXJfpLnKowGm|$a~jVX4x>q;w4$7zy{$sFa);n9@;!podG
zr`niiW4etQZ2YP0$84xQbMh9(iEkYV7SvA8rr=SWY&>p<QwFyexx-F(VjelLEr$ml
z7TTCkX|cfrb*z~o9n#T%B%ffj{|LR`B{r7Y*l1&ujVC!YHrCo$XJeU-<u+DRLCD_1
znJesY)1RBs9JrM>znq-D$_^K6++TQnb-gYtnrxjFUt@!Z<({$eeJlTg4#{WjFc9>d
zjpr%D^b&Ku7wqux&r71$>uqeX@uCn&$|Q~kq@TQ!(WsBV)JoaRs%#vvanQzAN{Ef!
z6lOAkuJWib%(&gg4jVgdFoM0ATNU~KE`bU5+Tj)$HHCX3Y~DT&_c(vQp!8i2**I+D
z6&ojbVt<Txgl!n)AG2|kquDW>_()%-sJ|3HE+_$g#aC^9S2n@81m~TTHs&?SevP`8
zmOZ1lPy9NoqM;~<?&WaC#+wu~7fW2cW#esj!NDO1XKlP=Bi%v5!8sf6(zwy|**I_G
zJsa0-T(|K)2hql7Ha@p;fySS@W8;#Ik7)d974yTbrB7`1`Xr0HIo#-J*Ui5uj2prE
z6B+a&x!1#kJzv=P(#AJ5JFNMeIK`62;VT<o+qi7wij9~5N=_^Y&jVBScruL!fewF4
z|8VyCmOZ5ru<;AW(Z&txUB1Vo0t~d$UU5tP2TFpCg~yUiKMAnrO7^cdZrb?G#_xik
z^c5$M^{6Hcx%^?{HWh7I_AMKKQlf@?jN~wJx2x}*l)r48`6P>m`d=D<8fOQRgF+4p
zJ4kU*)Cr}Io>CDf^zEnplRmPIU(7*q2c;a8cEa^I*R3VU($W4sP8i=SDJUa;#N2x=
z;~>omolh1^bx_v%-(0{my>y`&9+4eH98`2r$wAbC;)FXXjssOZrE~0#$2BJmtx)C1
ztSn?WFhv>5fh|DY0-wGU4^)%74q^_<IXL-YlBt4&8b^cj4tjr>?0hu1_ilc%4e|RN
zRCZ9E1svS(guZUvK^4B2|Nh|M=qITJRe5)K;=!5mYEHODpabkVXgV`~=8>Gj6_Yg`
z@K$Xnw4V<OTuV^8yDU@3f!-|X3(CD4;<^s%Ihf#JqJs<v4>@S(puL0o4jMRU?jUfG
z>7b#5CVY#7MoxJ2=n)554jy*GgSCv<47Un##!NcMW`0M%v4hrAywOJkX7VzJBa$0u
z{FYmOlrHZ2HRFp4CFp9lU~LXsIrt<uJn+wBQB)|-U#%Ui>*aqm(r@E{yX|es@LoR4
zba2qoK|crm9dvTg*+F-Xf&-T1f{Rh6E)Kd<5<28?rQglL;-djGX-1|`_If(#<$#LN
zn<Aw9eFg3#D7}L16B9fuHNe3@2YC+i9X!ghb})5>Kg<bt_XbngC`AR~HXk?sh6>Ef
z{5P{%X1FMs>x7{{UKThQ;b4q|u?|L(ha-4ICp<38kl-i>bl|xY7n<Cuq2Iy<AcIBY
zobWiucn52{2LzKGOePZ?JWFw6<>aA*We%n}n9jF2nB!oEgU6iE1o0Ru?fguZAC;Kp
zh`_?pVBc_$mkc7!b+DATmd77=LWg0VgRd9G=L@<(P+l%{@PxpN1YLYLe~ADoPsT4@
z&U(@TX>vjQ$z}274puuT(k*m)SFp`P6DtK>B`D8KJ}vI9aqtY4H#NzUYemlSqXF@A
z4xV?g)4?tWFF085V2gvT4*cHU1_v)W*y!Lzamk$Yr!(0APEwo5%uVsl6tfWtsuk%r
zCtMM8e|EbQ{zMvccJT3hzwM?J(%laBI5<Fo86Ga@_X=?(x4BcckK=wid%vKJ+c1-k
z{b2`39F%ua!NpMr#~j>t@Rx&^9UOP?8AZ{-D-KRLIPc&+2d`3d9h`CSCe6i|1jqC>
z2d5mI<`_*5m!fY7@VXPO)NbU54$qoT)82Bz(=zWk=$n#!+X+{WX9eX7h?vWka}M66
z>b;-E9c|M0IiL<cq>wwIJ9j?Ur&+teoTI^*>&c)X=VK1;jQFRt5;NkTIJhW4j~Vew
zZj$+z9Q;$E5HG)Q@TG$vXgnQ!#bI@D-NCmGF4Ml{dRHCP$@8y>s`%750-P)GuCdoV
zyFMm7TJRl(?TI)OU7+tdYHfX{8v<~b=O+h0JNV7P@0`~rCw`$NT#%s0c>8GZD>->I
zxaou+f*@eX<qrpYS7cHzs6n@cD*ee`cMEv=Hycd*?1tad{MW%9s<Vp{E(*CQ?4pQ^
z6c;?2MT5+seK|8{;b+N<?R}=AET70O=Hg_9LIn4?DCr`*yI;l)1G%MKly<T4-Q?=)
zS@af2|JzVYby3y@ch;Eb`A9Bg7lsSd#iGX95jPA}YA&JzC@y%oS{0P1Rf%;Mjre27
z6$)`mwOrUP{+=Fp+%QU6V~ii;sk!NK*9G^RV&WDr%LyQz%f8n|MHd}ibaGM2#eFX7
zvuiFYySU#)x{HL12VBHmJm{j93l2vWH#`<wP2j46(y)6js=KJ+qS)db#)@mYp-mv@
z+$~AU8JuoFZ5MUi@bt3pg8O$|n{!`=alE=N>bb~p@sJy?SZN;V|Ijt!3YS|RTz}C4
z%XHDuMc|?ZJL}?M7foFp85MuTMV5;kH#`=?^?1?^gI$eX9NL(|7zih?Y&V?3n8^iu
z6E|FC5Hxe~+enWMXzrrFkwVbYMJpHWU33uDwsz6R4L5hVtxWHo`x<RskhT+)&0}<w
z(=M0cY+h#<U0jUgi(GVd(aptR7eichchSQ|9~XVy@PI*27bAikM*sehoA+`-+FMXg
z(-a0e2L0F=H~deH0WKbO!${6R7YsGfLFE}jUJhbsJNg7eT?}(ElBZtz#_RFnF7i1j
zE^;X_qdcZO0m@DBM!0A`x5-EsF~-9OhR3`K+MUiB?PAwppJ|MXu>!9`;@YbC1Q!!s
z%yKc?#UvM#T}*c|!^IRA<%WbuP}qQ}0#6f^H88*3yhPVOvL18c=7*<iX1f3TXN@^7
z=CWZt$<LwB^B;G^gHk-rJI@W5rSk>dRx*>g#fglCE}r1)CVNba+|VcyEOqfDWhRFF
z7@l&mjA|IeJuxhIvBJf>F3yuhlx-LLT<oV3xp>;eHW%Anta0&-i}fxxxLC`fpB{gX
zd^i@Y6PTCJ3Q)gn@_83i+xbi{P!arQ1TVUH$;FL6{$?ty0A^o*lK}J~8O!CZEfm^I
zSxj367*Q){hl`zTIln0+RCO0S_*jA(z1zheH?&BtTKims(8pjUD|7t=E)KeQ&BZB7
ztc$}gj=Ok;66k_Q8ji6$47!qa$AYEfz5QC*m#JcR(&>bplFD*}^#sSIb@JhS|5bK#
zgvWH!4Nq1RoOba#{d^a1b2Nu~Z%`lG`ZPpm1R#EsrtE<nf)o7%#_L$;Sr_lPp%-*c
zPy#wU?@^&#{N&<i7azE|;Nq%_Yc4)?@sW!!`8r{IK6ddbC6-Lf_djuQQ2^qy4bwk!
zk-0wpxu66!hs6t*&G~`?_ED0TUsF_i`d8fWzu_+5EyGpkH*UC#Jzzox>2(+1y7+-6
zl<c~b&GQN0QS93$x&QvX8*aqkpq70UC*V{?>p^{Kc`W$F#jmt-F8*<$wD)gP<z4(v
z`DyJxu^|2jyVKUcO?x%gyG33d4sy5=;D!-nMvr-T<}dQ6op17l18oZpehfupC=?5w
zvBI&?tLL_C>!oSDEFv;L_%OAY$fs;@N-7>hh1<y;BSLFdGKNwyG>YNj7)r-bCWgu}
z+#f?~3}s``WBiRdq{V<3G7iR-82CQ|1X2vL$jMoh8WA8W=#XOp@2asd_DlPz@kQ;!
zb9!bh`~XxehH^1jG1#&2(^5_h1;3_k=@Tb*Mb42uAub<7#TdHv3vq=Q?iIH-b_sY{
zDTe!Em~|}Z(<{zI@IVZ4zB-17VyMFR#!xGU+A&m%VP_}5Mhu-=B?-J3s*9X6BXf8;
za8*Xl7)T!!l-81aG#r{bG5E1?jh`Mv-B=hKNr=lFo>ciG$*4}fSQy*kTwgzi1~FvD
z(2y*e=5f``qb59j!h<3`hbFiu$c{e}Lskr(W9Sk?G6sHPyKM~ZV#tmmCx+%R1Tk<S
z$z5!o9%&K_cN3Zl+KdDGYPd3L!NNQN&i?|A;f+E$En{dUz_#NVGsk&tV&Rq_6JN*B
zUwd|z>>VEO5DPanJI2Dplg}OtNZ;w0!~Cw~Y7Bj1=o`ZXBc(h0Sm2F(A>Jc~o-y>|
zKo`V&|3AvhQ6u90V(1^k;24I)Fd!y$u)rG_Lyx}kv@ZUmvCwlK^nWy62b2^=6FxX{
zI6i_Aac6dBc6RdpB6laJ0?Hk+SAq!@BSu7miDW=QKtvS8h>@gX7PI7>bIv)6C^`S%
z)OqjCtM_$vb#-@jbx)_+70TH!@#AccKH(FI_zw2WE^e0uNdHY_bxp*dm+GHqllDm9
z$pnrja4dnR5_md+@7Ovtbpp>O@J0e}CeSm1UJ1OMK>q}Kv%vJ^1h^;PH-Q~p^3HV0
zdp?2ZIPmUtKbK?Z7uXPAxFfE}BJIcIR*}O|IssCiLp8p`9gx7F1P0T8m{AvZpwPjy
zUE)_07?Qy5neOW}=|=ap1cplR(#0-=M>aKO6z>cSV|FiwoShC&U_=5R(!vS;TyqYu
zkiEqyw({wsw-fQ&`~$uP5_mU(_vj(7x_sVG;Nz%y2__iD!mn;t)T@B>V_GkPu?dXh
z>!V}dr}W{M3izQ%-*wGCOJH;YV-i?(L(#z-ib%;EPfI57O#*x;ev!bJ34E1^?}toa
z?LKsQjiiKrVHJ`2bpl%ie4B_b_VAfBS^bc}j|r?uU}XXm6Zk2CX$eeE;O7K>N#M@}
zCeb(A#-FnCe$lT9?0hosw*-Dq;Ex1`Kh~T<KC36I$q8({J&z9;XneCzNnk3Q@9FS|
zO^rxru;~+6kifzOW+gD2#k<p;x7eLSC+``~V>fS7L@<}b&MhIqeCqF7z=wPefQu6G
zp83)Q7AMffF5<H!f$W|I1k2ciCd8L>mNWKq_v~b~DuLB(vIO=duqJ`E32djI&<Qz|
z^$PiHq=mn7*C&wwdh-nl)S03PHYKo`_F-kGsBJ>G3T3cYgGRiFTe(8xom5!2S>181
z_^C+yDQXw{!W4De@J4$R@q*%D0)NphAIsa9h^GhpIYP3R-IjNTXC*!J4$&G@6ifI|
z0)I<KU|%@QrhmdE;2z+=36LHUy7EQ$cmgLlNNUhEoJ`;p2VM;|HU6qL&LmJqLs<=H
zS<}Y#&n0j^0d5*_F3MdFPLM8e0H56|OZ#sP(lKhCt)ZNT@){~=@fixQ8StJP-|yUZ
zsHmZehN{A^q{U5EStu_T@lc?eh8!*4sN`g_x)%F9nKiU{Q;QQ<@@r|Rt>F^NXsDy%
zA`Oi?SHD<`Up+hsqdadub4|hBr^~eX`$3LimuvCNoGY5TTI{7)XsD-w`}|jGNC@CW
zi@|Ys6?t95qy~dJH8j>>YOpk1rJ=rtlm=Uauf@}tG|TX80Wbe^H`t+u7eoGefTw}y
z4#ZzhQJ;)$6=(>V?`?UJhW}|e!Z(5hX)!XVO;O}rt)YR2Ycw>ZtvZK!8hFEv_r&rw
zeEf2Y0-;CmQyf*eOfJ-Ly@oFyh`%kmmdbmF*9m<*5g+w#n4+3!xPclpC=EAiXsV&P
zhV$L?I3+96P^^KQ10}aNo3YII=PeuSlD5#|^+HQ6KIr7riW=^3PLR=XlZFl&?$FRi
zi%(A5Yq(iMTP<Env=hp~pZFFnUPIkR$vz>$ty(-iBe-2SWO8Q9An&JfT6L#}C*EyT
zZE*9uHQYn*(s4$|y&CSL*>#vY?$>w`1yeLk)zC@9gBm{4;;TmwX?R#eKMgNwctpda
z8lKkhjE2WFbk^{shNm<<uAz&DZd<B%XD)2Pqea!Gs@$ontA>B4sBS`6ZEZ^Y_@bsg
zXp^amn(v;fuAkYw*HkrZs(MyKPYr!E^wrRd)}E@SO;x>F@i!Y0ub--VKIA^9;du=&
zXn0Y>KU39+X>O%yik@Ihi?zLRTYQ7`Wx6-LTEm+f255Li!>byG(2N=e(G9wX1E#4)
z)6^Z))H@HkgQbFR)^En-uW8smO}(yR{4_OG!vfJcjE0(~YEM_B!!?Z1@V16`*!t7e
zTeQ-2_55@-k`33cC^J1S!^r9CT@9l&9NypbyXopZ4W#e0T?EXYt{D7K!>;M7{ES%s
zV-25Z_*BDZ8ot)>jfT-0#;^<;KIeciLye^mh~zj8G+_P=Mf!z?<tJ(|`2^a3hWb({
z@0Sjnp}x{UI&OygmN{yesNpBJ=?wL~hC5#<_(8+^8S3y1^`n%Boa!^x&l-Nw@CUt7
z!>=0LnTpSEbY=m+mvSDO86Un+(lD8AG&3$djleB^;%OSDYuKt`n}!)0W@=ciVU31a
zG}lZupT^Yi!%Q_>!yEx~x%od+%@e$5rs6=cP{Se(OE{QFi&UPa_)*4U)+^nb87*Ud
zHLRfL(^qFH&1!wqs78ge)G7__W~ujPsfn}Hv$NE|8qL;9@=Y8wXRCFrtcGt#wAi3w
z@ho*<mfEP{Z}#!q-H#r2H*46Uq3&!|I9uH`TRk#cZP&0vL$;1`I(D*+=(HR?H0;)}
zN5fwl4r$oSk&Ocpqh_o9>=d(OJFJ|o4ha5Ww)%dysyat4G@H?B=@oy|6X>fNoH?rV
zoVc6>YK}Up;TT7I4W~FT&QZsu*eB=)bJUIeZfH)d_OymG97Z%;D5=zYEzYuYEidA8
zPQbhA)@+U}9c6Xwo1+TuDJr95nSk<h)s=Hqc^wsW)Yef)M@1c#^w@7}>Zq)vijEu|
z@6T0L_1HwW%~gHoDuQY{stbp>!Q8kaHFQ7+0iOp3xwUlsG*>N}8<+4R9T)4kTt{6U
zm*}`u$BDUW^2J%Z=Bn#nZGM>^TbqwxrqLBT>gkyBX|sfm8uL^zPhF|w#(ApSJVmPM
zcy*rAb$mQeC4~}jCT!_Q=@_ZwZ5_7G!(!a8;{hFx4*pe4k&a>=o(^9}p^j^H1gxNr
zt93Nc5$VX)@jo3qmK1TB`RhE@V?`0G$zorn$HQ8Ep)2O83-eT-j&)rNg83?6M}dwn
z78X(98iJ{+p-_TL=Bw*;T(9%<C>}FqHPX>oM-v_VncOB!$Z>L}x^2F?;Q{sJe08Ia
zrY!k<wWOQNhjX@OI-2XaS;s9pTIgu0<C;#@Z_?39M{6BQM@Gl@^VO>PaVt>U=pijy
zoN4;kd{uRUYNMmAj&^K?_v4d=_BvLdi-#<8fl4fQZ`E;|jyrYSrK8~jb-Ru}3seUk
zw=Ph;8h3{T4}H^|%#J$l=9sVJJ{|Yy_+Wwhb%9#9ARbbP&n}2-!QB|rPC6dc@w|=~
zbUdWvVI5s{bkp&Ojz@JouA_^N$8=n@P|*WB)8-46TBzPB(~Otj9$%=Q5ZjJls6L<D
z;`N29yN(_@p4HKl=F;($#6F{A(L(jK)S5Zc0Z94mS*UvH=uPW&b)RG5#ih?LRDC5C
zhl}Q|iWt-vsT&um7j^X0F+|5}I$qN8vW|f|2I+WXbXI>I19ZH?axPM*CN`($ev8!m
zi`4gv)RIMNFkOy4eX(MX*tba4U932M4%P9xj^R}GMx$Z0z~JU@=y+4|)f3GcFILxI
zXnN0L)hk&vLdRP)`=+Kn7sth}^r8EXj(1s99m{pR$DYM*qT^>8S;r_H<8^$l<3k-E
z=@_kJ3@v%8`o}sx(ebGsAGGnHmJg>QpXuP)Vy$u6q~wg%F;0(XKKwyuo|V)am(BCR
zFLZoKC$CoUgN_M0zS8j>&8UN4HGa*`%T6)G{YHZI_+t*;LO$ehO2!RXKHMSX9fKcr
zOcW*Le?KAn7s~6Htz!-gpyPM;RvlAW_iiD7O8O5Sf9jZ|$CD*)GEWvhG3(9~!)d~w
zu44w>V{udRd3fFTRP~v9d>?@AI7?cS>!7(h=Ftc*go~)ZNA>x1X(=Z++ZTvT$xT}B
zH7(Y$grgQepnIZ#&r-oWUSFYOrH(y1_Uc$wl7yX?JwosrJ>Hs*_xHMo>ve3<u~o-5
zDc(jY^CmGSEx>wh*0DvHEB|fE;C3Cqd=uZ7+sQ#gw6Wy;_F)%C(PzTldVG4wYq6xf
zN4k%Ln~uXe_Ukx6oqBw|ihGHN=z(1d{t`+Kr{8Q`9@_q+<EV~fI{wvhL>h?u!+cnA
zp4%SRaZ(3&eOdAo>@3~mFA7hwe|3!kDeZigLthe|k~pX1yp9VxvXZzeiTX*DNuq2L
zS0qs{iR>iGC6SXvjU>t^Q6Y)SNmNPVsngY2$BIc*O2%7x$*;4ytHTSfRg<WejDIby
zdNQtHd<M7E<pPjjQ*xETzvHTz#KlQml8pVWRuZ+7sFRF$^68ToCF27oZaX~QGyZ6o
zAEL%9g=GAzM|G3&BK@)?E>Fe>(<R?`Ge=hE$|Mp=*h!?5(2~%Tu#)lK1&`s9$#|cZ
zPHQA#CgX!SZd3C{8TUQNPq8}BgfqU*c9L+Dai_>l!b{5i&m;m-vS(~|n2a}dpXgc;
zN%2Z>iQoP&DQDJw3a(~#lDH{}Hc8|qk)OnkNi<EOAc<>|xGst7lW3TXzvaA^oE~9e
zGTty}!MK#>0*CI+B~_y&8Yj_&_CMM5Y_)<LSmmxR#dr;s6H)qDQ4+;Tw3LdJFq<XO
zJc$+}NnyGNk2_iSR>}CM0$U4JY~_AoMlj7we%mD4C2?C4w<pm)8K1C^=$OMj$(xh7
zg^k{);8rm*yE!qf-64rPlDH>{dzp3HygQ{L9R=Sdl)tZXx0s6+WbXGRaeorD7@L(%
z`2de9?vC%@KA6NqN%T)*KoSop@kkQS&{pj7QvNPXLJKF+If=(<$*;2MHgw&$U(X(p
zsL@qw%{o4nM7JcmC($E`E?KR<U##9ZSNz&y^<)yyO)4UITAGP9T_R)Yvq|(!#<#Y5
z2_@()ppVeL$@q5bb3&gN`hw6G>B9nE68f@GO5V{kd?ks2NsLWmToQwl7@WlWNqmsR
zt4Rz=;`JnkCGnb+mP_oR0`7l5i<V(izQIn^IUJG1TkJK-c%U9mZFk2$$@_I9lkxTb
zx084$i9_SESq1tA>APZ|_oM|^yx)+VQAvE5#HUGomc&QmOCKlkiHQB2h`+Yx@Xm&K
z>Qwde7h`l1W7yW+<J*r+%Wg|LK8eqh_&$kamuG*G#Ft5Yo5XjL#ROJ%Z_}@m;FO7H
znqNzhNxl)l1t1%RosqqX0zYslxIBk_=SS&5Jk<C(iC>b~csDlPjbD@ajSgRohQ;_j
zi9eF4o{OAZ{F%fgwtgDVrZG8*DM^gBFvh~vB&KmdFmRE9=}F8;;&>7#lK5Y{aAp!)
zlh~HTtR!Y9F-Mq-l31L?T)~u?m&AO*3zAsKsx4Mz)>sl#K1-5VSt_|SiDiP9C$U0+
zCt??B<*h1}SuJ3V(6vddE9I|GVuRp~rJPMkY!<wwlrwsF0dwU4o@`HI2L}-0?@MBT
z61xQNE|uIPV6V{hW%&n^7(O<iY5%1?1^-27V1E>Rn7vFu(Gu1Eou-uJLvW;2+ff0>
zgqG+znZ$)8vJ9LO=4qj4gq{_8PAGFcFW{afs*HiM25K6y*|QClGf>Uo&zI$w7fxlN
z{HK))M*L4M6%AAp(0hp*u|!poSSGA0fEFOGE;z?PjnY^c_)ZKSj47yPptkTo72%5w
zTw<W9i6Rr18o12BOarqFTyCJQfu{^SZQu$6^$fH$(8|D-1`-D98@SqlW<WRK8t_D6
z(tv5e5^M;ayF{f7*ap%D9O3L(qE1Ok>MT`9>K8v>RLlbV1_A?-fn1TPx2HnLV4LjR
zrT_WT{|sCuQ52pqtgyB48yLtlaJ_*>2J$7gp@BjJ1qQA$@JMOe7X>i)YYkjy;B5&q
z_ivY~#s-=gC^ArN;06OX(hj1>y|48r?}YP8B}<YtGtk^X3j<Ty6fSr$I=EC-Sr!+M
zptS*I-~j`j3}g)4WZ(`1cN%D8psj&h4BTp<oq_fSZZ^309`}yqGS#X_M8M~|W$HEq
zx3gWI%j;l(E<xt)qWr2J5t(-x=xE?xw!0MXZnn#7<?b;+Q}htAq07|$rS_q%=qKZr
zsRs=_WZ(${T_x&a1CJVb%s{_)%RM4#r!G^S4Lok3iwMj^+!6RZUB7s(s3q<uQ9TTF
zH*k2Fs<d2r%T@E`>PZ8~+7#ZqTs>ppSp%aDj4{yDKraKs47_2Ww}Cze1{iq7KwksT
z8F-Od8+hKp3-ZtoFFzRdT&}*a73cesWc0Fu{$ipXM;op0TuA=#<*_ve8W?0?h=JD(
z3>HZ;UzH*e+}Adi<TKR3>k|8=q#|e5a`mQx;RfC}@PUC52Hv6%7<k9P$WlEUMEH}o
zg+*(#_`GZ2J!$15!mqwUjWX~dOC|Cj(P7qReJq7!$**1!7q9gS^{Ii+M1UnHr_%~G
z*1$LeKN^^5V7!6P4SdUPXyA*I60!*duqnSX@U?;YgLA$S&VUu_Ls2_XC<UnSdjmfh
zxb2!6#C#U5P(K;?*}$I$CK>p}z^?{=FID)PNLrO*kD~A&!YA0fLQQ7X3{2yIZ{XmN
zSo2f^M~0N6BuC>C{WC;9Yh_%u*#_nqC~u;IiMa;m892a%EUkeB1~wSjXkekpFEg;*
zz#;>S4J;|majAe7;`2XR`6~>pG_cyh8Uw2&idi$4gyglBW6Mgl&cJ&5>Z6T_uUV-|
zq6jt_*lb|8fjtJc7}#oHhk>02wi)p|WjkGTX*~MfB1yWhRDX+Ra&}2Z&t6@)x3pCI
z4eTq$os#)QQ<_rjF9U~!dDg(+bS(oXB>0bke+3+)p-NL7HE>tW*l%B#k{=iT3vY#A
zu2d&E_)GA#finV_H6^Et<T(T94O|d@853nqWSQ~Ezgl7mvQ3l|&fmgeLswp<Dw?Qd
zqMnH>O;k2f#Y7zw7l~L^6FDYon5ZT}YN&1^xk?qTiklB6Y6-ul36`h6{$C%jEzG0W
z6klALs;-Gk_zIBVWhO2+W3RYD>PS6J-VU!Q)x%)Igl3|?iK|WM%+7>wA~5;eK`>3&
zCekJ>kxvPw<1y7W#qntGm~c&a!oOV#NoMp;_>|yK_~hgYh)i^9BfZ<iRl*r6VzY)7
zHZYNAqM?aG6Pp)h<(nudP5VCq*O+KJEbc7Vnz+tHBNL5<f4zxGqGaqU^=zVm-MNX0
z8%*3Nv8yENh|p@QRk4X?G=+(yCYqaQVd6a#@0)08qLqoRCc2quZ9<v2+r&L4GA3>^
zajS{jOtdl4)<k;~eAVWjX+YY}j0a~HDYaVNY~mJ{YISUxZ{LcUuMEt&-NYRx?v#>r
zFwtSPns7z_T_!r3ICIH=ZTIAAwLovFO)k8b+DtrR;!zX#n|Q#)gC-uL#U#g)_dC^o
zvp1d{y)GF&ESlS29XG^dCLTA@ML3;Jd@cekUP;0yOiWoF|J_@66Fp1}F!73sCrvzM
zqK}EbCZ0C&j8vzWiDw1$H1Yeu9BN)C#a>uc%n3<v(f{4s;d3UQH}Rs0ekNWJCM9dE
ziK~BHvVO_L%O?7pV9;Kpn1rCQ2n;ka$iy2a-jsxcO}u7esEJoi3=vL;HL8b5Qrnva
zHC{I{%*59_TQSII$Qm`=#0V2_n|Q~>TP8-*2iB+;`)4x?|Bb>ilJ?!wQnA<_&o*Gf
z4@`_QG0Vhk6CaxR$i%lMzBBQ$iBD)T6JOBOCO$JU#>7|?qfLyvs`!tAIe)EDt3>Cx
z(zX~+b6tpaaspX?t@_f$1e5>M8u$ILSX3(fEsNHEenLDJ)ms~zrBCl{w#)Y>elYQe
zi9bd7M-xAr_{GFT6F&(jZ>`#6w=D6iUrqeRRuFz0QS!k<(W7hC2BYO96O&C$Gclbl
zYhtPi3Nx2}Yt;v9)lX~Vwq|gKFlW-KBzcq93m2_bb2#|3mzmgNVxEclCRUhOX<~uN
zy=5#hu~e$L$i!k3tPb_;7KP`8E;F%Qm<-aNFI}ge8K1w(#A*}kOsqGt#>84`4&t{P
zi%Js_<gQa2Ol*{dn}jxB7n|h)p?%izuQRdD#BLLNBzC)rodR|UeM`i431+IV)~UTF
z_L=z0#32*=O&pLi9~1#AC;!~UMq3WHq~yYN>TeT=P5fixUx_`Rj`=&+#U{G$s+N0-
ziqEc7$LOdWVJs9`IAP+Xi7PDBvv7(dEk|h!RV<t_an?k(g>qJGlXE66aKIOQo@4m>
zxH|rNRmQ@7>s46`Eri2Csn>c{-a-YDtZ2oP#zk}Ep7rN7#qX_Gl`MQKl2t8KvryYY
z9ShYh<XG_^uGh5Up}vNst+qkUTdxkSR~-3k38#gD<Oao8)kPLAws4t+%Pm|YQI`rW
z*q};gHGL|@lZUz%x@?Hc$>-(`>Pia<3wajuEoc^W3$6vvLehdE$!!a!1xs+s0+TRd
z*QE_fUlyFU;8-}iv*D->if=~N$hQzs-ojNDLJN_FYfR*dhF>?RW#d{e-=OwO+Lm*3
z>RY(lLIa5{yHO=J{#Uk!8&!cY3oTqr4T70zLjin;UT5)=EgD;BVxf^0&!(u20#Db>
z=hXKG8lOu53-te<3*&L4!$!p!OR<G!7O$qDmxbn(v2eGAdn~lH(8|Is7H+lB+Jdss
z)<QcA84EXA;9I+m#sA38=d_BL+PZI4ZHL7#vi7uzg^hn#Cw_IK8oyCZ+Nf@`aJz*&
zEZk|KgN3gK#|4{yronot-Cd=1>1cti!>GHj$UnSM-AlKz@HiXD!u=K=u<)>jM=W%*
z@Suf<Bo&t@lpnk!ADa}HEyRz~W7lRqW}&kMPI1$l6jwBjH^pMt*Uf*zLRSk<T6jv5
zceBvlLJ!t@lj<chLs}P)+@!wVq@K3$jD>BR)U#H+CYmj=)N_iQs|$Nu=wo4+g*Pnp
zweXyUmo4<S@Vuyf(Lz59F9@!=InJ67OGWyU_zW#Sz``pQUbQg9!axgyEDW|l>-|_d
zhp{&+8j#6fvoO@c>!OYQ;s#N8r%<~6o5Fv`!n+oRTNq*CEej(pye<5vMC{j2QHMHt
zp(-A}S-ofBeG4D6(^>ey!YB(LTKLGqH=EV`x57oGrQN+*T@akRHtSPS^_kF1x2T0O
z&lziB97hHlCvA+k@VSM_DNIS>3kzSe9aFd_g$ZnH3kNOyW#MaPLC>+Un7!M=cNTuP
z@P~!(MJ+A!Go6;zm*7O9KMBp-qB2`z8~!4}UoHH`))x+$0b2fPVUmSe7G|>yY%B}Y
zEKC>Ssci1H*%a$1@-u|V;7kD@2y?dIa*hP&S(q<iF3T@7mIYQkw^=C6ievtppZu~#
zEwQlF;w>g@wXn>>atrG%Y_PDx!b%IPEv%6w9S7yC62Kgf-`jev;B}>(<&yi+Eo!51
zHVM6Ue02)*+01d~W!2_DJTh;SsNEK}Ti79Zr_fy-47dL0U2oi&x5vU>3;QH$zl8$=
z(jw4A=-%SuLl*w#pqfJU6b@VX$3j*LWm5Q;orPmNhgL~-)WUH#uHa)9?kdgYq;Res
z5Sz63R&_>##OE!XwQx>?Betp|=NpW#lXsyscEVOwHWj}hDhka`p<D{(1(R7Jg;}D1
zlh8^jRF<eJDO43uZ+!f^9D3q<(wr1(q;Po(btMWZ)J~y};F>Aa5>O(1Q3@AJ@KT|d
zq_C@hTx>qaC8Nty$k`TK?}`-arI1R&PT|TF5-B88FeH^GRA-b(HWF&4U<rRy|Lk|f
zPj26)2+}DyDKtnSF9kORFNNlhH1$*HwoUyuJZe2M9I{OXDU92u_=EzY6mkXpuatk4
zfchz1Er2^(6wa6Ij#m4x{0%1;HcX)~g%?xkm%_CvT$jRKDRfNX`V<<8aGMkwr_h9D
zNTEdvH>7Z53dIuDRA`Y<R)6L;_4<}#PDhEGrLa-z*fNDyB9KYp$Trnluo7BzyZYg1
zquUx5lirj<e_4aKO`%;1?Nhiph1*iNJ%xD#b8boD*3w)?UK`KJzv@=lA%#0q@l5_s
ziSo9`P0(b!x<kO-DcqAnj})Fv;ocPPOX0B;I;U`d3J;|4a0-v4&|z>+Cu&IHAxdsn
z!?r8VZ`1qoKi{q<bS*4DJ+{*KD=Ivi!u0KG;e`f|r_hD1kV1FK@d=?_QyB6}YfAFj
zyj?YucO@~WsZXWwbP9b^=$pbbDLk7(FG+G-N=TWW63p45dJ7=O-VxX0ISD>5l;g$=
z0-8wFODVjZ!si?wX|WUrr0{kM@1*cb3IkIZn!@WT3@X+3s(`^lJM2(HQh1GxyDz`{
z4)xj&HGYR0mckn;3{PQ13U7*7MqVx~1Do=#6h;cOgihI^N){mRrtn@0pGnmFDSVK^
zM=5+P!lP24h7VKm+Jv6aXn6c4{X`@`6}onZIxH2**{MdSFeZhu^v@K=vup!%?45D-
zmyeD|$R>in<lvve#1wu?;VaR=sP6=Pox(RMd`k;_7*81P6#4HZ>W375OyMcv4BM$L
z>KFZ7n)bI8ei8hu(4Mk>`8|a{B>1P$Ni342og{Q>3e)H_HXgAtJ%t$@H*D0kF_Qxh
zy*h=XDa=k`P70e-*pk9rI&BIoQdpV7{1g_Xuq1`0DJ&G_i&9ve!fMgnqjvtM?c%~8
z-l>*J?DAB+QS)iHs7v?QbX9k$RTNHPT?*?(V2#kVLakk~xysbc|8j872KKlVHqr8z
z=TFNkE(%+6^3zBJwo+#bds5h&!gfi>R69j@M~XjMu9(-Z6n4|K9*mxpBtv$oeJSiu
z;ZO>Hr*MGHv`ZaK;ja|9*q<aae{_pWSh;(2IK^L&iHGHXS@9Vy2-1&4kGCsaEn>%5
zq!hAkl(TUng_9{<C@sUO6wah@HpPF-jgy}gd4h8(oEOfo?F&n`J^Su#m1V~=Wo(qS
zamntu;(QwHR^@F}uu;PXY*e&S$wn0$RqeQ_+}Wc{Wg8ihuV$mV4eod4h^ohSa{?9*
zCVbX)jcVGcW#eKhw^7?h9g(@n#@ehr`VVCWi;~{8^Deb<nH}#ja$}H2U}G`1&7+O3
zuu;!Ov5jUnuC$S`ag~kwHZ&W$4abISBWc61VcAHDep4uC)YR~?=(mNFw(*+;d;0N<
z+q2=@2yBElmJ6SgKw2ge;apNXZoB6%&p#ruIeTLJTy3L)jYc*a+sLz#Z=<1&LK_7(
zu91Wt_9$*Fr$qSrJ?dH;*V!1nM_n(m-S?;|Lkro~bdOK>s3taU5Pnk|H`?*sm|4)s
zq#uc|7TNe?kK!(Ia~mye+-{?Tjg~fA*|^C@8yl@9IpvvFu~BTS+@lWeQ5E*arEP1Y
zosC;;+-jq}jhpRww~Bmjq+hvLaejXFUUi#jD9N<-UX``C;T<;a6y|+G@3L{XjeBf#
z6bC4A(R(GTv&<s6jH1r_Z9KqMsDw^79<=cgn_G6*AKR<??~SWKnMZ9rX5)JsKiKGO
z<8d3W*%)f`!Zx0;(Z@z#8(nR5v+=ZzXC#a6LZ1}c!$z;HcwxxrDdD_2GJIA*FQGkc
zl<>z$^?TbmxF>(oUiF-f=WX=2F+jv#u+h)POM+jtu||YnmLN5|9~B-J&MU$h#OAXx
zQ1GJD4LEIh)sCkt+CDXey<=ZouY!H*&JpT$8^dgTY~vFfZ`gR##yd9Nm4w4N(Ct%i
z*%%?gw)<3$*K(wdw^<C)FiPlqHr}`Kp~z6}2R260&1S_-_Ol2q75WhyLcpgsJ`>>y
zHb&bRV`CgA{5G05t<EH4C2Hd72D=}OJ{SCjjV}dowsUq;Jaa3*KQ8}QHoms;jg4<5
z_B(c~j|#7psJ#6uBj86H6K!m;vC+m)Hh#7-&&GTkzu5TI#uOV<CGBrE{<Ja4#_x1p
z8;|Z+10?yR`SBpewwNqp#GmX}(>VCsm}O(OjTvm6{faAsne3<g)iO!t2XR-OV`HwQ
z8t=wInwoThjfL#FHdaW~BB4u!E*83PzglWznc%t4He(Vmzj&ntSF_P=tP)IqxdUpg
zjdfD;^)%6#c++z9ZE+Gh(v=6)CUzVf`)wSsu|-mCv$0*kR-v_|&+edO*w`(cog5Gj
z#O2&$W3P>U9GwQ`+<ZVy-4b_}ZU@v*i9N`swDFIPe<jr+p)|tZHV)h1tb06@h~yE8
zV%p<2j@mfJHY$whMe7f!qhs>T6!@I7ahju38jaI9W8*9b$uyE_oU?JB19ciXX<V>z
z=76e{#+&2wv(hL-POZGMX_Oa`Ewr4_iw-JARS-;2Q9y7|RZfGeQ9f1Ds9K7vrNLz^
znKjZt8ds#_L9AvPwbHmWjazo)*A@<$7YnE(^rAG14#rlxq%@Z6m&-(+NiG*qSLj^_
z)l&ymy);O#6q*pK39Yz4-$=tuqkbA!iz+J(Hw{m4N~kR~orWWTnZ9{Y`GRvxIYAm>
zDUJku$>IsPs+7;!V}o?Omp=WVYADP+q4`1!gkF;d7k$j)gRjHFG)S*a<2nJv*Qfc_
zKr?PgHc8`#H10{`-ZXAZqiGs9rO}2q5hX1pm*O<G98`Ro31}{~MH;7s$t+q?o5(An
z<YdyETEsrwHjQ>^bQFI3(%23HZl+b!xHXO2O8K`7sQp*m9Nu5*j#B=e0`6i7C5o|k
zr*Vhi`y}eoG#*Rie%|r;OFdAUs#6*drty#jA5P;D0o$&M`!Anif2q#GsV6%skEhW^
zf={H;J&hiMyQa}i0OcqArJfZ0R4E6eYCJ7?rj(>-8oknJ>!F>8-f8qnV|E&I(&(GU
zb7_pBLDG0WjTh2*HH{&X@I|4OmR9JO#!G@<PUDp{R-TWy%KHmvfKawLnFA$ikkG+t
zZ2U`+`C2;Og`oWVX$%$N*V9N96b}>nMjC&Q3>kbgjp4!}9+Addf=8Be-WKpq8t;~J
z-b>?$eJ+JRNMlqQABtw?@@X0$3I15<C#C%3Vua7q7%iM|e02(s6Z~r$zojugjnC8g
zA`PC0ev`(xX>cj=Wf~I%5Pv1$YoR%Z)OYE4<9A|7F7JfjOYjGwKMGA9Qa_dE{&O0?
zl;RqN#lKVFx2*35<xEZE58?k=8aqkAWT8`pUVkX|w`plim*5PcGlk9)IwFdFW^Nku
zING?V=3;&t3)1N6pqGP%X)L1A9M}#Pr?DiB(;WKJSenMNH1?-)AdTf|tVm;18k^a6
zX{<_PZ5r#+SS@Y0Msi^mw;od64=HXgtxscvFgHr`y>>{An;gF@`HVZHwxqE&jh$)i
zN@H6Z+tb(~!qX%z2cnHqqsII4cc-x@jlF5?6M+fi@=qO7_&ctz`?pGVix(*e)A%cm
zf73XU#vx|MF}8p9KO+Cipd1Pu7QDH2{MP8WHtVPaPo!}&jbmvXXF_q;B2h~jdgG}y
zy7tayUAQfFmV<v9)f`lJaGuK3DCeNOgDfW=pUVm@<HT>Mj-?v19rP4j!9hh4s4TRS
z^WRj22_3Ix6$e!v3>Qgmp$rdN<~XR~;4%l7JAi|l4lZ(Vv4dI;YKw+C4!$kTWsZPd
zf2&I*iaIZ)wxH!X;d7c-*TEGIbO%WX^&DL3AmKox&cm?*X=l>@AGXdvkpJW3#SC(C
zXgDw(SS1P%s}_e9`7PxnF73c^aGQhM9k>oW2aOywcHlb*ST6_p4nhZ!gZd7xc92`5
z#KBb#?vosuUC+a+U}+vVySRDCAfE;f-jLV=k#FdrP{1_~CJ6sp2iFPbdIt?;uk7hE
zd9x0y@sGqF)x^OK4sLSL#=(sxIr0ZQ9W)iZ`HK7^2Vd>VFLuyO0C95xEgZBI&`N0Q
z(pYXuWhCtcnK-o-+}^>>4%#{BB*kXdw>Y@fL5U=5#FA_|9B+JeaBzo%M;$!o;7$j3
zIk=bAchIr4Z1*_0TX2b!m+ar(@8AIk4>@?4SvYvm!3n85x7{8b5?8ZiBaU<Cs@x-T
zz#MD*qdGfy+(8cqPde!0;0XuaL^G#S6zfXM49ao;iQBrn@Hvp)Ai<{`JmcV5VLr_Q
z|D(3N8F5>fl116*{*UVIppS$34i-4*>)<&DA3ONO!SfDYa4?Kb=HNvK{TvK(Fj(}w
z<ltoo{ROiFvI+wnyy9S>aFQ+K-uIg1PJeq<m_r=ACSY;h{B{Gfhtj0`^IsRv=l`g7
zZcCczO}ey$_k}sa!CMaAaqzB#kq+J#CTBZC_Y_>(CDuRZA5~kJ?>X@xuw6{|frC*F
zJ`_G>J`%9?A5~8FHa~UnnS+TAesVC{!59Z$((xRObudmOKX*{FA<VSng>(8J^@V^d
z{*7(>m4mMxeCObM2j2*vS%1s!AhEX#{h^fqBil$gOgQLY^|OOt987gE&B3n@esl1r
zgGrRBmi@bfKO_|;7mm&ERuET^R-G)&DMCN}S8<iW_0)6+GaSrzFvr162eYL5l;`tQ
z%VNru;JI`dx8=OJsQ=9(5|#57I#}f3F9(M>{ySLWV5@^|4wgDt=3t$J^)z@vjpYtj
zIauvrg@cu%hi3m>>az4-wMNRbmdPvT?W-JjhrR!*4Z_?kbfbe!0?HnVjmBQKMS{ea
z3un87Jsd?H>~OHt!LHKS-5g9rfRe}0#Pf=M5_Lf6exZGr$csQQ4fVH!!w$;0DC^=M
z2md-a?cj`qBMy$TXE``2lGi#o=HR#kCHfyM&E*uEz7)T7M4feTj`ox!9Hr08Ai(9}
z)FaA$t!b7U_Zs%BHIgLTMFkfXg;~yxJ92r!hmWXA0w`SBMWv&PPC{HonA%ZQ-9?Uz
zuUvfXqJ|5&xW&b-E^4}{<sx(uxv1@;jtkR;<>Dg#Kd_6sF0K#_mk7N~=%p^MJQo}4
zau=zc@gQGtRMjKXMN$M3E;JXq;G$izK!>9;N*s-^^BKY?^PjHq4pPcR+Jz%bo4Ly<
z;g-tyE<C}5MFZsn7d(h0$R*#!wJxp`fva2;2&nJkY8MS$aC<P%MZPdg_7y)7CBGb1
z*SKgX{E|(TLctxi;_F>Ba?!#?OBan@G;vYnqF7>YaB-uHrh>UURQKlCC6*mk`;Mw+
z!feijvZGb$SX^0N;B4ihwTm_`+PY9KGA=gP&bx`0Ii|Qp85I>z&dM9pBJOwXnD6-N
z?Oog~s;)Vv+KG}L$JCHx>NXd*yXfy?fQt?;?r`yhi>@y2ba9u9hg>}DqN9tuUEJ^D
z0T(=TyvN18F76X;`((Rs%rP}X=184{8Sy%hfCeMONypTHHieH!@KG0!31D?PyX?;B
z!d#?Lc(}}mhq>HhU3*M*bJ5*J9~XUH^l<T{i)UT*bn%oVf7%8AVwxw&hmWaB$CY+G
zwh8O&n&{=Cx5zX(uI>_k&*SPj7taf`pNkh<Y#Uwhq6C@hoD8II9#=29cv+ZVN~&g4
zo4(>=po@20yes@cE{3{z-Nj%Rud?mdW(^VkYc6I>lFdSgxp>3H2p4ZjEIsN?7sCY~
zKdx5o$mc0G^Bw8pZ5Q!v-VyOYSLZ}rh4);%?_#WraV|b^G0Md!E<R<i+^arx@sW#<
zU2xZqsopM(*LQrbI-x!j<)dAUq2tLpd#e+QHG1TP8gN35ckwyh)r~h@KRThlkQQV@
znu~M-^~=Wi$DN{YTzu=IoQLurzH{-tiw!O|y7<AxkF2AMIW8u;_{qg&7gJpP?BW*}
zzq$C`#jjF^37=K}<wQJ%9zCM)58?djViKEDro^17@^p-uE<d5Bx|rr-CN+GN#W&P+
z0W(;;6RO6^*c6vvl0VBui4rpBx|ru;g^QJ(|I=<Rmbh5zVxfygE*7&nvg4tQ88H`9
zTa+x5GAtK*!$~zlZljTM#9QTJwTm^9FZDC+S{LhFtQX-sPO3Uv3%ljTrG4_G+QiP~
z;xGqf7h7Cxb+OyU9y*eX?Jjmo5@uRbh8=X0lWOcq#Z}lY7k^4g_PW@|+PV0P1MHxj
z{gUJWvpcEERmtOfhZ!AW?Hv5=f`D&2a`^mnQvFL;cX8ImITuG=9Ftm~cKHVZIN{=?
zi&HKtpHiF*Cr`x{X?RMtJEd4hZt<PrAT}VI3jvztyo(Ebt$4AavOJU#KqGgSRBScA
zskx@e7Cy~Y!9zt4o(JDUB@dN7)b((MhbkVbdbn7`s(GmHp_Yf*9&$X?@Bj}rJx~>M
zdHIx@zoTH(DRt4VR(#L$K0w<+Ig?MRIvy_au=bQ<HNW4RPkM=mOFdlX;c_poKGPmK
zrK+4($<uL-_|)^DdC(=(D}^S!coT+gm-JwGusx(bm>w)IUjC#+hE<~-29C}zJgo{U
z=Q$pDVoq(Y2kx5@v={w>htR|I9vXRwJmh-F^N=qZ{^y~-hpRpOJg~-9!g=(xYETlz
zoe)kMMMHsyYeeQ+iE8Mfkk*j-_Q$9HTl6uz>pU!~5w~n(5xdbtQx8o%+#qS4;WbLu
zl0_bhJv8(F^Xgx=#(v1zLgzgdnoGhKLR)%hC7`uXB{U<H@;7;CQ;NAy*xtj<9#>cx
z5#SaNw|aQe$5TFT^KiR|Qyxxx=-}ZF58rtB*2A41?(*=8hk+hCdbr!e(;lAjaF2(3
zJv`>2Gwtu;eh&|Nct|pOz(c3f9Dg~jmYr6-Df+O7M?5_0#rq_@U&kineN^6R+b?!|
z+(Q=+-8^&`fhUA^^|)4ztyK1my8MjlAv&M*@Kgy%#!*+FiJLETMm_7Hr-v6jyeP4~
zJoNF<S8#6+4~y7y5`120zccYE>dz0w(*r*JJiO%LW$`8MT9j<&^!G5p!~2r<C!vEp
z4EFGWhfyA0^)ST4TOLMwc+JC54{vyQlXj2`sIPk%CK>%YxscBn4U3;!n>AcGBZRIL
zg=H$`y)D6aJ-jF29S@C1#SJ|`^t|uIn<@uI_(KmLc^KnitcQ<1eBxoWB%v`s_3)YC
z9`jpOJgXi(-=N;v*fPAvMmo;J7aqR!Fy6!G9vYlgH%TmSIZp8K6<z&IgRiCTylF{!
z-i>@j1itg|y@z$|CLVt9@S}%09_D(O=;0?1Q#?$i$FhVT{_yaphhIJXCdK$&v~6lt
z{Nh>l-dV*>&L7SyUdx>1VX`#te9?d6;b{9=HO<3x4>LT>lqeeig&VWk3bRDjY@w&m
zs=DVCFE-Rmx18r;zK4~<U%)}e!x9fmCAi4LVgam0{d20-IrYFfwM;n6J**JW@0@z?
zoTB}&lIw-5JggS}8lh|1J7iCW8p5H48$4|Eu+PJOiQVL3n}_WlHhb72b=*qJoQsXd
zr{u!w4iCFL?DnwJ1GAWaPVE~W?UCerJ)9Ha?dQ}L%i^Pu10D`~IO5@`hrdMTZx4qB
z91?obdG(I~7VlrGm6umsw)1hO$2^>n*yBRUxuHz_5;-Zs;`8c^hqD}%d^GfNjvdOw
zB|a|oalu2DANvM;l<`s4M@1i%d}Ir=yimrL6Y#)!RYAaWl4)fhReV(Ukt58iLaPaV
z_q_T}WNJu|8cLSr3(l*WK5F@>UCO^mKpmmm&Z~=k@T`RLrzQDiJ`5kGkIQ}3^>Kxd
zdOi|9G?BlO<?o-(Z4k=8JEW=Z^HNa7qz^vaP?~<?dRvZHEFUQ!k&j#-wvV(A&xbD>
z9HB0YbRjk)_eo~#Z5RlX!H{CYZz}YEKCbd{wT}iq>X*utl>D9xDo;51J_-apdqEAm
zpuW7I2)HsW^l>dmS0A_gxX#D*KH7*_BOi@@6!|Fj(Zt6MKAH;uM(UBdDA&#`3E$Ve
z;YQHRM{^&oeJBxY;iILGR)V=@$0U4HbD~m`Hsj+aiJB$lzhPW#sJ1@Z`DibE25<3k
zv*3Lf;=50`mh!n*)4|6bJ|6P%u#Y=^+$B++e0212w~zaL-0$NaVcuJss(Mz&&dN|N
z_wGtAaXsLJCMAc@gLD;n2|nWEQ6Eo8s>g(O5!%_u<34T_4cG1|xGyWi83Ge__0dfP
zy8GxMpm$bgWLD+}k$l?6Gd@oEIO*eAA3c3c_A$jrFCV>qjPmiJk3K&7`gqmH5J~==
zj~9LP^YOd{FWy%D1t0uKka@l2<7FSO_!#J;KYeCx7H|3uVDn9jH?I~*js$~z4EAv*
zE3-{FT&IxvnvbDA-t;lt$Lpe*%we=Z>3z00d|X^6!+Q}Ue7xo39Ut%d@ta~Kt;+LX
z7PxjE?|amiGxYa-yzk=!(UV&ywrWeE_X+*T$HzV<`1s1lCq6#)G0w+$5&q1_7y<3;
z<&XB`yBU4UWX4JsJjEL&$v^k;g~;5*8@BRc*OxxH%waBH`}oGkPd<M3@vV>Ve0=ZY
z2NCAgj*?|8#eVcLQJBA$$t;(rs8jTdaDMagyN_Q5Q<4S#!^fWzoFtU;hou;drRk>n
znC4@<j~zay(_B7Q`B?2^rjJ=Z7W!D^W40um>tmjPIUK3VW)fv%v&{FgK$ye@WixGs
zx!A`NAIp8LV3PjXe3trH#?B(PeXMNerLviorKvvcoy{Wg$a0O3wZh!uW1WxnJ~oxg
zZ1Azs$7AEGA8%DW=SU$BH|a2&eY9Ph^+DOp&t)@PMRHrI{ED)foj!K?_{+y3AG>|*
z@o_+6_X^!tDoLwy(_lY`KIHQb%t7Io+|6K({`T>&k0U+~v*&h?{_(*Tbnh804wcOu
zr4h0-$9x>;sF<B8S$*ecXO<1l;kT2ge4J+M2e>J~86Rgk`UOY_IOpR$N8kW;0$lKs
z6`*Q>Y5~dwC>x+cfQkXK1C$F;K8VMho3b-qvtv7#T(=&Yov9R{a)2rlOa9pG%p?)u
z9dZV%2gnIfQ(|kB%0K|Ww57nN?96X-b7}=RCaEq8aB+Y{04=~J0WJ+tFNn{ZE(>sZ
zfVu&$ptf=u-t^|(l9G<b&#8E8g_p^%6v^C&Bez^e50I2xOrh=hAwclohh{gH%UA(Y
z0pj~$a+|1Qxr`IQ4RCFM>jHQId<qA+TG9pqq5!!8SR-Cs<~4GDCJ?)BfU8&}3(uB|
z4Kl1;hF`Ze2#^=xng9(YZGM0P0b@nx51|yMszTu}6VCMk8U-j0&@4dX08J#Ssn8n&
z+$dm=NYda;UL>3g!f76$g#=p(Z7FS0P(E{c`OIi7zjXjEu4?TqXj?um9<Qdi3D7n`
zmjF)$XcwS;fCnYv&7AxPxL5G40d5O$XMno`+#Z16WpoH|heWkq+K?7_xO`lUTN)I1
z3~+aVdxCh=gI|a|S3bkWdar!uI}x}q!2JOp2+%2rzy4qnUW}h#KJ)OR_*;gD0z4ex
z5mEbCfX=kQo(hi!;BEGO&12tqyd+1t`?RBcrfYz10r~{!EBx*Oo(k}^;2z?HPYRxu
z+wvI!y@Wm+pl5)yQXUrUvI?2r!v9}|xC+k&cs{@@0S2;~0bUI7Qh=95pn`mi&@Vvi
z3K?$w^%v#<q4!tF+*&ukw`dp?U~qt;0bUm)yc%FgfY$;Hmsol!KcD%sLZ;xZX2Sx!
z5#UYHFtb8zsErjeB_9K_f!+!*GQgA&Q$xHR;2mlUQ5@pk0Ph7j5a3{d_XB(oV0wTV
z0Y(M*Fu)H1ehlzYfR6)w5#UR9fdHQd7!zQuWb|2p(d5WU^wA2LcQ4JqxMF4;ojJhg
z0SIy{#&&2a^uCH21}8|uuLFD|;47hhMBv*1-v#(S0Pl{LBpfb$;)wx%3h-xuNdbNi
z@QbASUFfd?eiQJ$2+tS#hj5s6$u-o;tUC+;Th`ZyTHY})XKH|H0VeKhxJ!i3SIo=|
zFe|{i0P6$H4lpOck^oBs%oRNg0xS&ptrq5U0I8G-D`mJ0<N{$)X)cRt&q|qlE5()V
zGrj4u0Lufc3b0x-UBSg~rOe78-Z$t|DPxY0-{5NkOsJGuD;gF`LMkMGLx7C|b_UoL
zU{iq20k#I%CSqG836)T6cco0(%9-r}_#NdA4quhytQ&k3f3CGVz#hqKe}KIK_HiVU
zSVle5s+jT&(i9B-72r^Si$Yu+;_m>5IV^|B4)ITbe>sxVu>%|la5TV)04Jp`#{wJ|
z<!_G3Zz*c;7kY|)Pzw3H1m6;RF2H$VW`(#QfQ2mamUp-3mkHxO`>a;{P326v5amNu
z3sGH|6+%=BQ8`3K3D%z<Tda!UIYEu80@!w!42{>Vd~!n63{fjYjSvW7Txh@r>})9m
zt64iloe*0pXZk!Guf9(R|B?`wQcsAhLR`jw3=Uz1NQI~y;))P@h-8R*A+8LO2%&}i
z?mJ%o*Qg>*{BXntuU#e6s7l5N(Wy$NZ<UN0f<f*Z@E$Ukw|0m$*E%7B5PhPSP6#)I
z7vildnXjtEC0Sf0!|zWo9$OHGh(hEF-7Wf=5!;B1;&W9p^+Q}8qA<j@AsU3S3+0C>
z2$2`Y{f@zls%EYcgD_P?5h$9US5P(6rfTN85Z8yeA;gWWX5~zy5RF4L5gC5>M-D%t
ztR^o?rlm`;{7psG!&NiQLNpKYW{BY-T7+mBqDzP;LbM9eI>g-}?g^nnWJ25$;?@v1
zg=iC^Z3wRLUZ|Sk_gtLjQ7u1HYA-r(7CN$OW<u52hPQ>dT{w4!@t5fxLfj!iM$N98
zDfyJ?t`HrCc~UO$Y^<8OmxT}Um@w}T@j!@&LOd+NPC_3H<6BQu!slq!49^7~3Gt{z
zkyE2uoHal3?p(@wTmV0Z?;4_8i04^&;dBr2REVbq_XzQ1seGzh=9v)ui|O8M)(|~I
z^pYqZ9yJ!_)X$${=vylPoPdtiGEY{^@VMv25dA_74)JP;mqNTOv9E;aUn)N!#1PTL
z8S-b<G6O>llBkB=qbb!g7}t78h}S~A9%5LCp&=;197}HSGM4xa;V^1_wan3KnGtlk
z5Z{ORA;d@y{vpPO7#HFl4*nrN4DnHj_eygg72<swP=Yn8XZTQIYH-fw{Qft@Cm}|M
z7$dQthWJc?EixrpQ<%-&NqYMD5TA>{HzB?V@nwjwBuJSF0yw>A9XZ4NT7ox<o^L~Z
z7ykFDU`f?}l-OTF{3>8#h@S-fER@>rl7zqUf5wFKyU;&E{K;mLsF6Y^3;!Zn@=psf
zJw)FK&qbIKVkSF&1Utg45VJ#^32`>WoDg$EY!9&`#JmvmL#z(5Cd7ge3qvdmu{^}0
z5Q{@B39*#pTdlnHZ3?fxx$ry5Zb9|TE&(e-tdy)*2`!1ed2-=-iCr6F9qSun6NjMt
zs;?KB4eZ+8qDyl!4RT`pZ|2w)Vrz(Pe6DJFQ%>f=oJ?PdVvZDeJ14U<#I6vBIdq5E
z9b!+2{UHv7@y+(VqH`auA@`#Bd1g4Z>A?_xg*e1vKg2hpihAbfWcZ^8`~j9bFOA3B
ze?uGzaU#UY5Jy8C3vpaj#gbE-vUptX?U1zm;hIw+PO}N5%b(84@R~Qp&V@M7kvT%G
z2p2+RMW_^^a)dHbELko>`3PkrWK*C<T+^G|75X(Y54={cLWEDJHLVz-RgDY*y{qIy
z&MFbAN63j#HA1xrtT<EA@(<R?)QIAazy}dt5N$LyD^fc`od{P%s2Aa)2p31VJVM<F
zmqfTU!etTOuaRM6mE>NcVS!vx=4z{!c=DAI5)lm1uL;#7BqL0eT$TylUn5h6KZFp$
zioh=`spnNWa!N;VBHR+;)(CC{FGAx8O(OUaf(ZE$3L=CNq6qaPTpb~o`XgKwq2$BB
zqBr99HIN}FM5aN6JShP83dnDd3>Su6OI{P9VT5ZVTt`bvnMYYDWCgb<uG9|9&7tu1
z5gJL_9>~0kxV|?;xRDl)&^kiX2t^T^MQAQE#X`AS<hset#IxlV!f6?SJ~<khS)xHj
z$V6xxp`FCuB(zP0trE)}04C(qKEllsbsiad7dcdNTZG#qJR0G#2puBa5#inl_eHof
z!d(&W7Ws}ej%*Z67@TuS&A7~b?vW_Yd+(3%K!gV)JQT%#-r2z2Z-<@4XSh;$IKm?$
z$<K9}>Z+O<{s0j{=LnBScrwCM5xPWpLS(u}=qjL_(B`FibrR4cLSF$-M|dVeuL!+G
z?AZuC1yJqCnwf8EW)|1X^byXUni=k~kk3zOpQl4|oQW_q!iy35MHm}lT!fb*yc}V8
zgb@+?M;H*{wFpBayb@txguxMBjnJ)s_Miw^wc@&SR>OJ4#7uGbocI>R5Xp$I?AJ@n
z@J57Tf-e?%%DgE-e&+vHgpm<GjPMbAO@w#o_7Oga@U95F$9Auk`SI&8l!W)y%8ZK8
zr&eZ!1i7WG9xePh!Y2_vi!fS}lt_Nc1}e>K3<YE%FhMxuBYZBBe@6Hs!j}<#i11^C
z2@$@E@J)noC6>y+<~S_=T%}<#3;Z4X3x5J4!qbJtoZfIdofVlF;V1U22){-6Il?cr
z{NSA1*JeGrtAH{TsPs-#{<H<b?-BkG%`>DJ8*61IMVKs{DG{a#px9J4hZ&D@e5OY@
zCc?8K%#N@l!p;bDBFv4jEW+{#^CHZTusFh!2n$5RLi%d^uw;9m8WwSE=@*fcQ#-?1
z*;0`yvBruBD<f=-uqnbS;jdxu7O<Kol3xi}7hyd|JRVdDKUF((eeJl#d1k@$n#~cm
zMA$A-TZM90f13bq^;7KD+8I`-OYO|A2)iSkjc_i)o(Ov*{2k$NgnbeAM>rVauhKR;
zKmjjqbSCG+q8^ecIv9Vg;-3irMmQ1SWP~FTj?z96j!TZO)XscVJHti9&$Tm)YiIb=
zADqgbioi0Tj&Md~>Tl2I^qy*K-I2eicIG?>{|FUxQ7IQ$xhRv1a=CHWD4UDyT(FMy
z<h4RQJPbNtJ5xRv6>`B}1>vu_@CQ{&N?2KvR25n!7Z=z0ujJK)Lno<`3*_QlA<h?~
zW-e;w!p=iF54CeqCl`(Cqj7y)#Dux{;(z$^f4C$Um*!$kF4pGavRquAi@v#dE*Euk
zaYZhg<)V2m>gD3fT;wu~TqJU#QD-jFxzKZw%!QSUiEHzXToe~wYv$sE>3;n>8DfG8
zO|MPmV#qRo;8g#XIvFPyZY~NJ`e80Q{Oo(V|EK9Iz^y92w=W^0$mJF3?i}ttyL%tv
za`fDL87w4JN(^j8L2Oi1QtTF!y40nmJEWvR8VSJ`3^4fK*}wnyJo}kv?K!h&&#am?
zYpvM_B87G-JTpbyS51zpCa-8y%&WAT%uk`)G{4~%v89^SQ!r8pQ;1S{r$m@3xG8uk
zSSi@-{D6D5nyk_za5$+FXGDSPb859RZixs|;CoSBp4cD`mWnuqX4Pf;6gnh8njKb`
ztm&9SrxXfO=$yi>)#a<@3R#YuB{C@tD)p=OO#gDa%`?>{fouweDfCUDUkXJj6sOQD
zg_~38l7i%bQ@AOGt|?s0arVl)K85R2I6W!bX0P+=x7oi+{j+~%Z%E<B6yB;XJC*vZ
z|NW+*dkQ^>4PIq3jZYOGo8j<kyFWX-y1aF>xP?PX;hS!Gd#X!opVOcyy!Vpg-YKx`
zlaxeV{}gUZ;qDafNnt<=x2JGt3YDjb4XeZ*q|tUU<8a}RGyU4tGk2x1eQ@sId&EFa
zVVWp6U)-C*eJMPW!lNnNpTfDd;-M5CPT_$R9!%k%>hh`@lI69(WZ&-?4obRRom2Sg
z&TNf2&fpY=r0`e@LlX+-)sTEwVL|xy3h{UfPozM+5w5gNWNOH#W{9WREQQ(RmK2^%
zVOR?9ky}!DE`{e)cqN5#DZG%v@DxUptSP*h!p9e~!)wTwNk{TzC-?c4;_e!9(&M=!
zIQN}yyA@(uyYy&sdq;On3SZQalTT&GCbz5!ru)lk$XAK&6y8qZwG>`Y;f)lo-z45l
zN&?TU5=UnF9Ov_U#5*axOKk5KduqsEYRHN;<=}(jgA_g_JEbrsg^yAgpTg&S5qZ9*
z{FppbQ+}Gl2jlWTp`gw5tF0EFC6%ndrKWtMrks$%L{heLCjGh3!RH+klTx^Hp&->t
zDBT6&^b}^KFg1m;)5SE7u%;}jDM`DTDd3v$a7{TY#WRDVl<zHDxTdB&UsJMjZVK~K
zSdqfYgue4r_%elsDJ-C9P(UtZ+4Camnb~4V3QJQc?dUE}q4%qm2`o$D(sB8eqZ+m3
z?mKdqC%2gq`KwY`ox<i6wxqBog|)=SY-b~-enkE{YA14d#$BJn2I66c^VSr>ve_!J
zW~1mhS!^PDN9FS>yC!dI3SXzNBZZwQY$Lz1hgx#Neo@#l@9FLC8;is%lO0ZQ?o6?Z
zSY04?CqlZfLVDp;e;-+$3P(d$!~PTw5LX(iYB)$Fr0{zRf243Yg(E4PN#Xkxj;3%d
zg%c^9OyS!UTFeyYR&ku;e>gXPh8P!z#PccYiaFvtN@4;S)icXxiEC=fGnw>#KWBeP
z;l~ty+bw=e;U@}FE%`I~me}qb=A^4odpuW5{;Kqe<i*>wN#k=#xw4kxkUvxSi^^O>
zSq<k&$2EC>Q*d}yD87)wzFLws|B}kn#YL)p4QFe~|56yZNf5YdwzK&Q|BBjj-z-s1
zLwOCCX}Da&B^qw}Cp-JU&X;PapeZ>b+^V*$wKrQ)L$@mKBj<}MX}Cf|u7)ZaCVwRg
zYRk$R-uOxs4al4LmCp-F{VUV`egpD$9u-$<sHP#MLDNuOLk$fLH8f)XBlBx&sH35-
zhFTg5HwZFAZ4G}P5u((or=h-vwKwH8&|r4Vv#Vy_Xzx-jQ~z*OjWsmU&_+XB4NWyP
z)6kM#Z57mG%{8<j5vPa`=ZexP&I7ZZNuT?zG_>Z_4iu6BSZ?3t3JvWvyi;3Fn&ag0
z6&JGk8g~9sG;y=I>Zlk{TRvM`>KY6U9W-=g0}YmjKtrg()-eA-*3sZ5D0=E(_Oi1@
zo(5k-*D2X$wIwPRf4NN@s4XK6v4*{CMSBfHXF54wi?oKBtHkV#%aP36BN|?r>7?Px
zOA5&_S8FKH&{@O%>&3a+H2N{3Q^<?Ic0Z6y?N_LwNW)+aLo^g?=%S&IhQ1nYeRS2(
zLqksu*J`*<!wnj4)YR(Mv{RL}N5u6S)^`tfR?T!H68PX@QFfx=T?6&}J413=wp}e6
zbZ~oV_;b3$r*6@3Gf8$Ld)@U8%Ud<I5b)~FvHg=J&`(2u4FfgYt>HEe1Nh$U;!d(b
zPVwy;N>+$FH0<8yYE%8nbtG?R%yjP3u%L4livK+t?$z*+hKDtj*;D>L_Nn0k4Xx_P
zTM9#79qY&kIrjwaS4R%g@CY$K-G5ZWvvni^qHb6FkQX`OF(OvOSPidecwEC1<exp_
zB@It%cuK=_8lKniG*O{pn5LE_ivP13K2N*ndKHXXATDfn-mD`R)sa73%)X#uI9Z}7
zY}YU6&zhMR6PUL>XN#9P9t|Tk{x^*nrD1de)SN4RDPPR-j7f&aQSDeG#%Xv}!-pC^
z((syw*EPJS;eBF8!<!o3)iC{tcuT|E?3@T$EuNg%Wk(&keV1U#pXMIRvhqwFS?Oej
zacji~8vmPK@cL(_@H@EUHGHb!GYubW_=L=Vd%Ati%z+td9r;|t7i98IRVHefko3%c
zuBa=gPxskvaDCn+4SC(tBll)YG)&d-sE)xprg1#9#B|isF@v0`;h2VRHI!<YMV`^H
zLBnhfb2O~buu{WZ4f8ZC*1#2fKDlnHzd*y68rE%fpB#|4kd(coc#($NH>!n(FmXb7
ziH4;bmL&}NL)u-QJkE8QF#B1hVKrI$P<EY$H5yLN7i+1A<~h`;cg*%{Y!I9sjTW~5
zO2bACdniyEHfh+bVVj2S8n$TI$}!Z=d`*$8EBWf{>dNy^<dW7TF$HIbhFxSx3OL`D
zqhxLDf7xk^#1~7-@glH~9IoN8h9hiH;_TNz#yCKxs+FPcJ*eRj)#Luc`uoHOzZLQE
zqZ%5Nh)WiU$Lq?5^PD!j#c>TMH00<gqvNE8QyR``_+7(y8cu8YnTkTg84cfS_(8*u
zl-!xlCv|1DGx3tnA=MEP^%Iq9hmhARyWI74<*yq4s4LHs)A;tfk~KfB5%ufIE!)H&
zlvDD#hJQ5tMX9fxxuBt9iGN;$S1H5Wn>&S>Vdegv?fk3ZKfZ3Jf03%Jo-DsqoG1}R
z^(1Q!9~5PEl+#gJN3M?YIxf*sQO9MvQc$liRd}nQgNx>+I#x{bZ>yELe5ZT4j+VRJ
zD|FmePgc?uxu4lpNCon4IhW>E6&+P|T%`j#>K`t=Qpb-y3;He>Pu7#wbfwk~9ud`b
zq&6#U^Hx1sLkG+E`Z%?9)X`C(qqB~>I_j~F4vn4YXrQB&j@CLF>S&~+xsDb(8tWi&
zo9ft7BFc`+Z=!=GXVgr`ebfDM>jcYlhqI;iWJ?|W&u2+Ea#0%{Y|~Cho{qLUgpRN3
z$&=ZTMkc43uPZHgyq>axXfxk3E??JS=m>O#I!qmwj=vWRUx!V+%@-~u=%Ao_bduYb
zP8NDZ;A~-z%pdbgez!7(|J9R`j#x)0oqt9z(>nk7UbffKL5DvspZwhUkm#s`FS>P&
z_<M#kx6~Q*h0py$M#t4UZq?CS$2B^#I<D7ogN{NSMLIn=*jC^c>!?1>;RdHm0z5o8
zm++X`qN|Q;b&NY(w0WkJsV}e7)lNj#%G{`<n~q*OZq{)VQ93%mhmM}ac6+ybQr<t+
zd0@V1(KC-V71oMsy$Wt&gUXr4Q+&cN?sfX;=&R!{9RqdrBUZ@+ItJ)?r))8?LB1j<
z-+4^ju48-Jy@SZPBJ)DW@Xq9xHI$nDyT#ok5II4|J!Bpo^LMzj=8ALwc7C=*JfP!2
z9S`YvSjQu?#bvpfF~<tIq3c&)4$?8AzI=qdIz`ZiWDTv&Avzw@u}8;V9Yb|Iu4AH(
zNjjd;@uZH|biA(PDIHG}13F&T@r;gVbv&=*1s%h9J4HN4B(D*(N|ct^U69Wjir8=+
z)Jrew7(U6rVZEsQXZELU?g$+tDGNlbj!`;B>ljNs(`a8K%B>M&blkB@JiAFe-P`G~
z#ku8*%)65XdE-@bZ;ANj$#RW1i8pk-spCT(ACc#EyshIs9q*IFXF2cacvt7&qsyF*
zd7svokJT?~`cL*qrz*7SKS;*;XgYjis~Atb-4uMH<I@EAIQc1>>AY4m^O=q>IP8nr
z3fb^;YVzrVYu2cFVuG$rxG6KlWF1p<tkkheM~RN9I=<AgkosT8bRBajO?--iuVXgh
zjv>wCQa-Xk%p$i;bqMgH5b-A}<Y9}&JRQxx5%YD-+9XI6!V5@<`jWsq-3u1!SfXR8
zj>Tk;?ghNagv&VV-p+E;VvTsUOorUD?vLyW9W4JilwGZ3jgGB4zSgmpl{z+1Jaw!m
z!WW2<1IyDg;qqOvbCr!0_KE&xio*=CDVZQQ$UoMXTc|On`ZO?RoXt{>wvq94>>#D~
zWh*z3+;i<D`QmU_LKNQaPM$s5G>?0VeUyEwJ_DB<*stS&j$d{BrsJTFL)7OwPEmE}
zIHKcQ9mjQS+$)Y!7oE)>({X-KF8RN8tqgC;LfkZ+NVF3b6xr!J9jB=Vb^N4b=R9#n
z$M>XELc44^d&_#od*mEGm{XemnM0y-+b)_lkd$!(tUs&coR0r=T-5Qqjz9QD9TzyN
z`QlINhX(Sm1m^ylR@RBR;%`d9<GJJaI(-``<@QhVu7639&T3bZW1x(I3I;AUP;O{$
zS(XOMbK+O$aUmlqX$tbX#84g&0u>F=9)7HWe6@j`F*zGHD5_-O3Iojzv@lTFK(2v0
z2I?B9VgPJxpqhb_%ZslxP}SgnNy|5nXUUD58_4@-IMof*Fi_J#Ed!?;$V(f_n@g0z
zdF>9DK*NTzwgHx2Ls`#2eFKdQG&a<}wE^EXMbM~jXdr%~+_~A}+H!?W4F1urJTg@@
zHSj<~`BDNmGmxDoSlQA*D+87R+dyjrZ4BrJ3<GTq2m^Tr@(tWO+2`Ba8H$ZbQ?&<~
zB~k`70|)x%w4*C#mgqA}{PIm9Eeg}X#|18v+o*g#xKP0{;3lIA47K`rNm+hKu5W-#
z9&5%ol%avh!03YX=(HOfxaE(cL+b>~4hA|Jm}X+SiB1Lz4E%234+EVIWDLA(;5`FZ
z8@PreG;kkhWT24U8t7-B$Uw1y8w}iNpo;-%;5q}3l{)kT<ldgsl{hh!a@*L);dW_$
zLwUV{L5IYS-wMCoB)S>6iNi2(tD)BP?gn}q=w+aXp%lfWgW|wV!OaFX{#o?QrNu1Q
z{*-0e+dv-!^Vca!?>9qm&1K`^WApnPxQ)+_&A-dwKd4GGH$A|>?FJ^!>=Mis?;aI*
za4tv1od(V}lmrHn@zx4ncPGF-3HEl6$iJWDGw_mumkm5<;2{G~a|#9?=Ew~UHZa5h
z+2avI?Lc2XP+0Y7;iF`s${B7>A2Tr2z!L_ZB#DoT$H`Z#MZ3-}VGisma^n*5;VftC
z-t3<D@~Ez#H89Ko+2ch6&lz~0^Xlx@njxrcH(bcRU|=|zxsmdK@oLvSk1dJJ5e7yY
zc*VfDWJaS%Qv+jIc|hb%cPKbLug*JmHaph9>=n83Z1Jjr*9^R6;B5mVYG+=jl+71!
zByj#8**BA0T2QQ{;c@dc=N&`YGaRs+ao;!afq^Xswi@`*z()q=@K*!l$$pe915*ur
zV&GHa*}x<NpBebIoc+0hFASxNxDeB-u^LGZYy$C?Y$2~}BqtlVYl)!V<8-DZn5Wxh
zd8t3mzzhR34NT`N`sR?b0~^UwDugnHvl6)&-bjAXNK!y%C%2T5c|@9l<zyiP3k-Z|
zV6lNE2F|S$3k}?HI$lKOP^wl>cCxUMWX;&OD=($a8JACg%d&*`&Y#Y%G_cCRIs@ws
z3^-o6noM30t|2u$DtmZsa!Z_WRps)rfoy4D6ZvGh_=>cc>}+c!H&clE=lt?^<)ek+
z|F*7Q8`x&xxPcP}wj0=C;9w#SI}PljP*Zm`mb(q?A;%i{#^7Hx%6~VBy=1u~%3;`H
zm&;qO-7NPfSfZn^;}p@Nu{>npFgeG-QOfBd@hv;dxUHh_7_qlXQ1P<7bdwl5BLAd;
zQwDx8@S}n6$dCrk82FygK5NqhAUe4ewCV$L{zr?jvHZ!v&(w;U@GQkJnbEHXeoNj?
z!>RTR|JGgwG^cYnI_C^!JU{SVmgS!Y{-XGs=xXA;feX}@CK{Xg+rU56nI@{5_}9RH
z1}d7k%mi15i&Xw5$|i75QeM70Th2sz6PM&<DzG$BFwHsqM|R^e#n=-o7hh_E_~%9O
zx!go06S*da?8{zZ;)ceuvZ)rq`x;BSooO>aotvp*Dz5^Pl9elZ<XvT=nu(ewYO!)i
zF1HV4`|75$QEQm!lT*w+0*&F?Cd_%Fu8BG(j{aFx{=Xt_wd$FuZ{mfkG7U^LOaQ{<
z4PH0S7fnnw<x?gs6U{gh6T(D06YQ;pi8dzMnrLaFm5J7-@=wyg^v!JXL&klrv0T(X
zoYGiQjjwDh^GxKM&`r$yC7UvFps{S$py;wD^6rkIX7XRyWaH}{`uPnLtJ|gN=eJEb
zCOVktXev$X67AbXY{E0)n+Qy7`>!Z85t+*TBg~5frpuQA$DcOUez`pn(lsQ|i8wcr
zHBo4SR%mAvSDU!TM8;I2#EZ{XyxS$vsEMR?!F9RFM6ro3r1cE7WOI9EH<6nr_$0x#
zCayCv%*1mht|yI53^Z}Ki5pFHGjR(^VB#hd-IFo*;_9<UtrT5mIX&3nET^Z5`zHA0
z(wj}tdZ9Mx@JCT^lF7vF9FK{<Ca7Who473j`k6|z{j^YAY+r@-1Cq+Ea}}y-h2Cl6
zE>kVs!~X01(<}M6o-d-Ub&rXAO+0F1FyCe3e$IWGc-X`PCLT0FmV2m)d?=yUXY+*d
zVL91Eau|b5JYr(!BBj3KFU3z)Geb-~X5vYb+r&`v$v(mD+v6r4?i8NgrJPhxm}*1E
z_D_>cMDGScsiBwqS<>$IG~FhImygVUo_uBET@&w_7;fT46Jt%hV&WweFPj);VstWv
z5hg~O7}G?#7b=#B59cU*m_&)@i!n)qKJ<FEuQJZWt0vww@fHQ=h}iaxc+JG?rdnR#
z;FR~Pco2QpWYK#!h__9=lduqX4eYk&fSjs(#rq~cF!8yGFHC%B;v*BEnE2GhcoQF!
z$L0v4CHk-&vHDWw4C76icPmr0E3XuvnP^m^LRVe8gcD3mGBKI>B&9mI2OsheoXK8x
zu4syhRm*axnkX@`>uk}~CUQ*^*>6|&KodE`#7q+dEZlCP)Wj@m0}B-_%r-HHjmexQ
z=2Aw;y(ZS1m~Uc%iRC6%nD~<1K3^;}vB<=K-Sa4Gi%Fdo%0sf$#FB(j$^Y-J612>h
znP9o1Ti!|z#ze)h#A=GnH)4NIVa3V**4^1P3F^)@k!wkjvH4pLiw!2eGO^vn4wHWu
zB{!PbY+{RvP1G%`)!O~TF0s|b*X)Oa(^Td+RlY<j7RIeEo945I5fD1W?jM`Kll=_N
z{bst@V`4AqV&Yd5`^YL(J0^~q*iQ{W+1Vrxn>a{9O!5zzn0leYtxe^!Fa1u5tM*9J
zfEtp`zBO^&#2FLclle`YG;zwrcP2U)<o7z@vg|$3CG`h4mGoGiCPy`uqbe7_d8qIQ
z6F-^wncQ-y@JFgv`cD??RKIh|72h}@hi2z*Ce9LdCjOxoGV!~Kzo_at&ccvu>mMfm
zG%@0l+{<<szLp8OEYiZir$n6D<z687&T<I+OL9;`Exf)<>CB5Jax9dwlt_NwR8m4$
zEE8odRP7WtuaVi<RF=2!X;~DP1r6*=EmXANS@11fX5n%RjVv^_P|3m-7OGjO&VDT9
zT7ZQsEsWnIxR0YYsAA#E(lmjpmRg-pHkDT;0AEV@zowE7w;C2|S*XqWMWUvK?@FD9
zyWKh#>RPC8p@D^Z7WS6<wVFw7SD{=iSTgX(9vUWt=k4wDoF*2UT4-k>k6gM>X@+JN
znp<iCYGI+Jg;o~k_sm<kT(q{(#zI>Q!UC1s<CC*&!=Lh-DNC<pqcZmLEu<`^&m9Yz
z#Xne)h6U47%b#xHzYfe5@GVM5Gih7=u52FN=_D)L6Lu|Z+u^>{Oiu2UA6N)2rV62}
zg~&o|p}<1tWY|<kX$$Qwbg<CTLZ{?)^eG)aAQ<HwJv#r9hjZCs#=_MWvK9(iCidrJ
zQ^hq2{82Oc+KFtVj&2c0$WB&^X}Resll?B1vhJFnEWFmjbrx>2(A~oI7H+VxxKjF_
znc_wZ-H3z%ISjuNjf^ti(M35Pdsygcp|6F07J4P)x!J-kr1&)DMq|rc`P5#gH|f4j
zIjQ<2x2&OH(iO0@nH)LI?{DGc==|F(&{Of&CUJ*_J1s1=u#BU!Fwnvn3u7(ZZQ&l`
zlW(zbuZ8<8Ji<pT+;2gr`kE&mvhaX~2Q9D@BAgeo@vsHDI0li&$`-Q?%faktrXa$H
zS}I04#KL0<KyAj`$1OZz;Ykjd_P+({!z&L9mV28?md{!kMjqQIMp$^x!t)khv{0i|
zlq^;n^#x1W3BxVCaWH%2V3rfSxzvBj!pjzR9x7zS>aNoCNQ?i_AxDvE?<!BW8J+N3
z<G#)-7RFil+`<<YUgelAyl>$Hik^k<JBM#uc!%9uc+&!H4-)Y$ODzg~-DS<?xnHvH
zCdhBvTxArzXDMrqz=sw-vhazeOq%iRp|)BI{pOMz^N-2TtCh{kxqO<;=rdBhx#aBx
z3llBOq#CzW&ch@NB^IVyn9SaGm7l^Ftx}Y|ueqFNVLDlQqcSR(t1yENW;i4?;X#v~
zSrjV^b1clYP_|PQ`dbDd!xelU#ft3RC0uM_0fpVdLQX1~4lR6QX>+N=l2hY#;B>r%
zY|y=6cyoEx#q4qmD=b{37}{8AVHF8y;jo3(7S<5S7Is-!Yhj&*O%^tjlxxL$)*KOE
zQNuKs8!T)Y@62s3S+mgs7c~M~ENo2}V7rB{2{)H5D32V~azSIJcd2u_x!hqXZ|#Fu
zhb(tn*kj=v3;Qi_W6tG+A*#I=_F4P}zNB%^VA%m`zsdeVGIlm>)Iy=1z)v;pBb0p$
zKXbAcj#>ED!Wq)n!f^}E^4yaaPFXl%;q4=WSrc{(`CWpR(+RN{|E0Xp0LaNr|3IBk
zkbiQf^CRcDRd8AVq^tcCY2DT4kbWhPSvYUuf`zjd&RO`A64XNeP7=3}y#BEG33R#t
zWR@|+_)EdC>|YibB>lXF{5xT!f2p!86_xwPLhp3QoihDw?0IPmS?N@^jE%B3YTBq}
zqnwTMHmcZwjZ17)u)%F_WgC~;sA%Id8<*SIIy!&Z!9qsXxOCbDZY3LgTF5K->%Kxx
z>ZcZxWv&fcFK=#CM5owZ$;=;H`KYVf;Nr`gLj!WEvBp-G7}>8z0uZK=T-!z+8x3qU
zv=wtM+b`<csAr?Tt$f`?CLgcRQVz|8jchcw(cDH0{?)LJ6?2?swpz~GwUkXc)G~$F
zw3NY{Rc?N@_~zTwJr5UhLHyyUXl<j7jk7M!xoB%c*m%*wOAgv`Y&H(rIBX-|M#{!$
z8)Ix}Hgp>|+qlJsVZ*eM<!EhKHf$U1ZFI2V*kDY=w-MNIZG5v#xyw9TB_s7|DMMSa
z?wFP`vN5Ek;-Btkv$2h|4FbHVT|3(7WUF}P)iyrr78Ka%Y@=__f~yy(3>g9$n_u^p
zv|+BXK_42|>n~f%A{)gvy4kqNMi(2>#&tHXx6zfo(f+qF`)j4{Xb=)$wCMaSr{!U>
zwWYkl#*H>6|C&AjO_m;^?l#)46FqFu?N6cLFnZePW#f}-YKOIWhW}kld8>`yHXgC@
zsEs}xn~i&I+-IYojs7+UCWB|=+icu!;|?1GY_+_yhUJ|k)7k7@whA%y?UBbYNB7bB
zvtG%+n~0s}++*X*w95fEU7bgDdcTba6FPD&d%)($X%)sEvhlEuL1fMz0W+*>wUQhg
zlWhhQr8b7yc+SRSHu$I0Puh6ORxT9UIZUK^oXEGax13G8`nz3)y*lMTZDVl9Jm$JQ
zW8+yH3_0noB*mNx{COKMkn5(1mx;{n?r<ASj(X9?`BC}3cMHNV+2Cej&@^X+jghvp
zE?V!&VL6I2!r0AbG1kT_HWu4hVq=_*S8aT5;|m+F5!=heJ2u|6@wyGV5x73SVdG63
zZ`sNY<TCd*S*w-g)#+l<dp6#;@i9qY;{zK^VH%&5ACf)D8;1mIE|xkhZ%!hHWQkA7
zAqj8HD-8Rzl0#ZaR!*=n(Z(!tf{jTWgN+g!Q_0w^B!dEjPiChO8z-|}_h+Zsm`<tL
z>CPab4+%=~y2XON#F;iq$yB9jrbE;?BzjlL%prPhEFjfv%wxB$<b1NzYh4JW=Q?Bd
zi~sH{zjCQqNc^l(8sL)&{vsReHwkLdr8bsPkZo+Yv79n%V}p&asQ+!Ova#02-EUUr
z+gDTJO!m9xWY)0%&wVDSG%Q!_?r_(!ABxxxmls)UBPEfZe;b>r#HK4|`|Cu7-IdZ?
zsHTXngzl{DJJVm*N|GOT*w|@fA0^br+a29qHYUs#yLsCs<n12zToms8U)f3$4)%*z
zN}c^SKg%f(P$eD{2dN=jOZxg6ww6b19Hj!G>Tqz(#<v`^gUcKow{gP8A2$B9ani;q
z8$a9l#m09wPE)gWaDSw@F|wbO-zOy%1#5mt;M*qoZ1Ypnl9j*OU@pNqTkUR0(BG)L
z5-JnkUAg#oYNXaG1V)7XMMkx8k#gtY0_D-hzZ?mZtV*1J5`jA2(IreRN&)<j!((dS
zxco8>$~q|LpuD4YltepU+I_Oan8GCvw$2w79AsNdZbn#hsRJf8vGQ^Ul^oP_P~X87
z4k|m!5UTAU*FhBr)g9Du00&n(V1(`}2Z#UdOmm{DgHQT8H0B>@tzvoA9Dd_b#aL@P
zc;%qrA;?+|W}nWEY%S-G&F^-h=*#({j)S_6vfO4?&#-LZ;9=&QIcUO42kUMM8ac{N
zqbr8<YU+TFnidXPasVYxGY7?ov&|Fulh%^a{8kQHJ80uzT8UG6Px-bE%5--79msBP
zEf?@wE%G=)2e&x5)j`UE=AeUvjt+DO246%JIjFcokVQ=gmIK?t{f7(h-6tGJMT8rl
z%W?zt;1u6?5IBe&#12j_&pp*zhEC#kYb{?Y@zV~NjK}q^&cO0*7mD@{zWu`Ia@om2
zfrBCr+d*ds83(i$3W>(@_SFuqNdTI%yggbwlXcL2jDl4^ZDbb*(m^)|H#z7^COjst
zb8tP!&_-VC;Hrmx0yjALa&MMNN;f9;Y*Twg{(v^JyMy27h@K95Ip~qV47sxAW(Q17
z{37u?{kB}C?(}xhha_+?$U$Ecmk4)okAwaWZgX&lgF77z;OlM*ZYOnWXXsQM-bVRJ
zKJK6Mej9n0gMpma_bLic+mfVT*+$;$;Q8Y40S6B{xR1Zi689%1V=jEK?!&pq_lV7V
z#6yl^W^Rifaqy^v#~nOD)}1Z}J9x}dN_$@$ImF?Yqa*=tfroNgUoJ>2X1G1c1`eKe
z@RWn69kr+6u9k~(lR4tf?!hn)z`+X+o+Ig#T%%r>6tV$>al;+8|GliOtT`(GWd|e3
z04{tNBOQz)R}()DMmreeV7`L|4#tv`9em+nf`f4mUUl%UgZCV~=HPX{*THoq;tdY_
zc=k<}6MdS&G@hA^LHKP4?>K5BK(_{c+Ke2%@8AOmA5&@^eCXgK2ji2Oa<WAOa)?qQ
zuyc<*KK`kL&&aeR@;`T!4lkQ=U;ev@)<UYSLd8S}lN?MZ2RfMSV2XpO6afcA_c^pZ
z)_15<;(%#IoN2sI3`<wJwyjE|o#~*|!CbcNpEJuri)sFxL=tB^pnHmAxPF@=5YwV)
zFwAps;|zxp%r6}*bg;w0P6vw|EOxM#oZw)IgQX5uI#}gk8L_uOP_eIYu$(edEkn5V
zY~}c(L+sqa#3n2itCPvDNlJ!J);rihjpX2K2VXhZ=wP#hE#$hkaub=Mt>nhP$2X$Z
z_t`V;-Pha7gM+#dIQd<?&B1mOXot(x0%D8+H#NH)>~_$gAUxn;PePY(9MqYok_z@Z
z*ypIEL^`RcTe$DuPi?kX@YjPBocZDq|IV&dET8N%{C$+lpMvS4s*7(achmz!CV7>D
z@8D+=)WInS-#Pf+!4H&Z%3xaQ;p+buF&+0zf>Hv1?-f6idx@*Ik`a?>ZRL^<Rp<u)
zm8#Xj9}fO>aF()GBF<4lIl>C*3C9XKk%8a4M<)6-QHZ_29MoPQ&QtkJ_uFi7E+pJb
zvR0ZS{&n!5gG*dgaB-1HTcxa{vMzF51@kJC0OWbrmvdDTa(S2EGLi%?by3kpWfyef
zUB+^rbGeI3tQ5*NYb4|qY~MYPK7^B7#Z~*Wxh|@>cx#$)g`~EDtMm_nt6Wrb(T0Y%
zi|Q_FxM<*_p^KWX(&2Sn)OA%_U9F_7os<kd)^kBKwLV*J5jQ@Odv1<Hrz=^#k&DJI
zTDoZEqKS*+vz_KHzq^j6E}A8`Ogm&Hd!Bq&$-)gnmMLFMi<<Gr)-ERhl;u8-E(_tJ
zoeRx{?jp|x8%#MMQk>lik)M=<o-D_tbXFQJOjlXyj;nUcmJ8d(-9pk5<Ly_OG+|P~
zB{t40KY!pNbn&{2H(W$6Vi$M1xXVS_MSB-Fy6EPjgNu$Xid+=C=;VS?<*bV*J}lSS
z#egZ!_5pcUyU36<mliXt_L;Kzth~m>a3T2<d8Ux#*(*9vce=Q0Gu73_wJr`-PD>Y$
z&vnS9MEiBF;)fetT<@xERn~kYRPv;l?ce00yNli~`nc%fDkGNOn_ez@x++{qgO>EY
z*~Kj!^UVdfy8OV4q`u-s#nsnEKNq)goUXFB`;$YasJ+9|d7{rhooQ~}PIS#vSrB))
zDm#nUzw^aFV$8);E}nLAkBfU<3{D=u&&B;N2JyWm&I2wUbn%djfp1r)`l2#q1{ysx
z%$0hWFP)|U+6Irfc$9KCI{)}y!P_A&9&<6&#n+wPCpfP$`H#CQukwJ9?sg$7r=N7e
z^2FW>&$xKj#mg>6xESW*ITtSwrNqxB@zvSv^De)vBJY@)-m_3}4SLbVOD;~0&1XU#
z^(ukN?Ih<l(#2>OV_b|%9;B7a%CRn9aq+5)*IW$gk=MGN+)@yZbCm;=`RBwBl{Qls
z#?>!+lLF#mg^QIg-gfzcVoY{1#l^cW-gEJZi%(q;UGKa2z{Q8jE13LAx7$aFuzbv#
zc5=L{yflp3d^*J^pMU1!a~EH@n81D}s~r%B#JJK#3R;P>9vNtxL_VA?2DVdnSBZ<M
zWC>!)#WWYwIi7BLvt7(^K`qJ#vs}z{QA&YI^eQW9`aa#M3V)hIs=1g)p4p^go!qSb
zFX;JY!bOW+EFrhJ;A9t(E;IeN|5T~bOI<8;m5w_8X5~2*ikG`!Jc3)WXWGe$?c^#K
zt6l7K@r{c$F4nr(N@`Me=8JVMHn{l8#qxG?y{iIJoW(|pM(1#oi_IMKbV0aun%Lrk
zp(6UGxYV|r<7}hC+3W0LpY6D%!wwfaNuY1Dw0>F7Z7Jd1F7~(>du68O9?`KzW^dBC
zeaHO$E)KZ(&c$htlVauK7?nJEzJq(1!#g65B;)4>`Dk*>xv=s$)h6{u)yzq1uy*q7
zi9#MvsFo*BC4?iHzV4ZK#>Mw8esb}%i>~`BFdXxPt4=Vr%acD6fmdai?RMEfm%hGV
zT>Q%U_AL0##rmnDAWz;f-S2g=^Y7$R3W$%pef;U-FOtv03=ijBT;K>j4Dj%`i+@}Q
z5A8hs>*7BbS9+-GDL%i*g}}q59&$XC@le(S-ACm-l=pB;o>F2A(*1OKF`Y%1c*?l?
z?O<U=50`n07L`5pDM(+Ql$DZ_VLR4bk-%)6>!FILVk;^R_*)@749-&-4p(`o=Ans)
zrXH$$sNtc3hlU<%dTP5}$3tBYwLH}J5FS*Hi|HN0ck*PnbJ=<x>U-!};?K;JT#nzI
zD#q_AY~-P_2NL?wqq$^A1{!Ffo?MmN%tLbztv$5y(85DY53M|<h|<3mQ9~}6lBHJU
zEj>~1kIm;=+}6W}<+(&PZIV0>`5p>AelQ9t51NPAL)wGx!SG;va6IhDlctA@>xGq+
zpIn;$F;A_7t_ROkc|m~(pSaDJG(Q^V%l;2!?yQs!i8@a$bBs7MDq8MrVS5i9JY+mv
z&53Lm9X)jRR8~wU4+S1xoaMjPBahK5mQ1^%aM62zjRz{aPx|L%J>|^jb?9(mv4<`m
zdJsQEqlc~@ZuHPCq4KpJt|Q>#fxeELFRA=*%9qsDH+bMGKuX=vxyldI{F^*5n8j^N
zcMrd}5AVyDy*%9P;Z_g56AW|Rzr_P{O1WRAlyMe)JoNQ=Y*y_(c|L+Gaz79KJ!QV~
z`e0Aa?H=y%@REm@J>2QxF22#j(;fzTxZA@+9v=2^kB56X)Q;f;#CGTKJ`eYkD-H?5
zO_z%|OVf-Ub654Cr$R7nHps&x9v<^Blt{~jk9sPYHQ3`3T1jJmNOH^di>@Ay;c@a+
zkGv;5P$%5-x&NexAu{AOGhfop^^Aw-J-p!ISr5ZF5f5)n7hDqum5Pc}#Vbb(E1%8|
zClx&GOT3+23JGk;mm@rk^zg2S_dJa9FxtbLL=lnWVXTK&J-kNIL*^9^AM6w3IPoQd
z($Q<EisroTsfF?l4t_!6#vGadKj7`8{`^$&4tZ~b%FLmD=0x6SCmtqvnCRg{4<C8>
z)Wc^U#(OH|k3;%|{N~~4D#42)(Ei`fw1GeO@Wjq+vyI{lBD2If!}+$B%mAOnDX$cq
z`&18;Jxt+fcV<gGOx@)YD4&wccDmC%-0*jnK0pRgW)gK2SRd7W%<?eX!?zxedziz~
zdRR}Xq0;a$-@|ebD?BV9b9z|fVX23O6uq8#;ZAq4hecE`6Mdss-tL;pok$K}=JEWd
zWaO9UD@otQ-xRL&u*$<44{JSGDY@EHhaG4z5N2W?XUA~)&~o-V4_r^LOUbW1Y$Rzs
zeB)u0hs_?gQQ=TimCfJcVXKF)6PTEP?_x|}7R%+E#SRZUJ?!$Zn<O}uWz;XXN-_PD
zdpr>6Tfb<p2SxyInBbR;$!E=e4+lIP^OV<`*+&OG9QJU83X^LAIcJl~_`T*#_Te*G
zuJuRBU_J5}yk2mzGh?YINF!=s5C3>L<>5OIXFZ(raN5HeiV0O*W68Dq`$W6`=;5bM
z;SVJ742PlNpFI5RDQhaVCwo^)t<-G%tB2o`rwB7&^mh+`c=*%9Uo1DP6nzF9xf3MP
z&U?xoeStlvB-vp8??pTj@UMsesK9+(?&BiWzK`-gF7Z*uS1&5-W84byUP@{HS_N*o
zq>`?@3O+9N6;D=7Y8Zs&6_qKZe6d+2Uq#<?eN^#r1$(1~<EujfzpPZ;2p?DasOqcb
zgIId(RF+Dc2?meM7FYSocgifg8a`_Jh<&7e)bdf=M{6H#eAMw#*GB^%4SluMs^_cd
zXMGNa=jsm%o-AXZjeIorG5eTk?xSMAoF=^8E}HtFF?{%v;$}V`E(}}$T}1uaf}`SK
zYG$}gV*6IfQ&UFfxAh@>Wn~3E+WE-yVfwI=e)4&C&4=zI<tv@W6`7$Bt}i^MWccX*
zThYs<KF?y<J{%ve56{Qkl)N+!@7yD3MVuXz&ytt#gBC^m|2l`hN&=bkPf_Iagriz7
z+WY9><0kgTHa<G}xQ5g8QNStqm^mu{Y9Ak!FJ|Wa@bZNjqGF!IP(B|#Gcv!>N0ATd
zqpOc%AAL`%#M&-Cj&lr}eD0TQ8%<uz{xx}nj~jhl=ksKi<c{EaU+oJ>&~85d*_nOg
zboPykX*%DEzRmXV(UV>I=;x!CkDGn;_SJHK3rWAHJaZ#?1c0I5TYYu1_<=F`eSFZ=
zr)+XaLp9mo$L&7u@Npa8MVyp~PrIdgRlYjB(^tWFh8XTjfSf~FGC5iO9v}CT+yUAK
zxX;J^KDPMS>f-?)5Biwmqr}HUq@$0qK3?%L$j2jOCm+xHc+|&WA5W6>v&9e}k8xf;
zp723oC-1$ntHMw|qDe+KCTI%Vtmhd(HhzkPNS<N}(CnRs!+bpF<7FQsd_3>t1s^Z^
zc*$4EqQjGtL4U&QHF;E1XDxXKmOC01?DjF5gWs+EOQU?8*Hq+dOj2_tr&c1y`FPdG
z$38ys@tTj<eY{Q7k<+^8y^-+Po8;{yB0M18N_dQWOrq#rAMg42kfbO7mx%Y1@&g}@
zGA?h&OLc6vx-MCcPb7<iKojUwAD{V{;A5h%mIEq*ij$qseSG074<0Wzn?&@MDCg~D
zpJ!eq!vtJJayM6)>SLOZ1wOv?G2O=uqW$t>=5fvRQR-tJS#gzMt}+j(&Z6M>YJr}U
zlyiM-ACSY_<%d*gU_QljlVEB$@xRc=A|Gpgtn;zh#}XeaeXJtGkU&0Gkb9>%yq1&g
zbrp-}#oNBR<SjRPt0_=(1OfVj*06CVO`%@zg8|u%J~sK-Kqi^x@cJqNDx5E(gO?$p
zCv~}*QXoU`d-rP}+o<b&<OJC6V~3AZKECs@)5k8Ng^2R8+s7Us2S|uS0q*s|&D1vu
zywB$`4M~Qf?C&QhtXA1^qZrZK>rB(-As>gy?X!Jm{;)j8M`nrRK2G@fmV&ufcx%ON
zYt=UgPWtMg8O4Fxm`d-ok25~b`S_g*=aBf`#}7V!By!3WGbiLHA3yu})yHqX%CcC`
z1wG^blIULM@Gv%gma4L^+VK&|!RhQDH2!`3MfT&oboK25?loqu%Dv#@Z)!H5XANYd
zs+oVN!++0yHAQ`zfU7*=|EN0ls}uBP0+bC<KR|;3<pPuskQ<;%fJ*{Y2v8}&6@gOV
zmj<{j0V)Qd50*PP+V+<xHDoFVcP1?q6%1LKT^VwHjf`nX@Z%2wY6YkrplX1t0#pl7
zJpfNdap%QQAhWq@1Ykh0W`GAa*bE4=<gd&WWd>250CfY@3z*_AA28(oACwzu$S(}Z
z#P5cII+8#!Y#yLdfW`ru1ZWz7q3~vbigYtAoRRMDqmTh{-nIzPGQjYCqE&#_f%@zN
z<&L+sC^`<v5dqo-m=IuMfV=?t0qzKJXMj`yEkHql&H?lQMgTtmKmB6{Dwbyjumfb@
ztxT=>!=XZl-Od)P4Cw~&5||Fd+y5!*#a!M1XRZm;0on(M0>m7AQFz3VG&q^W(jmal
zONFxk18kh-&_Caa-_0=8wvlBfz|{e63eY{kHGCas7vQ=;ea@ngm<iB@ubU%^0?b(}
z?xo0>QnJH+;<j%Ky9VGbuQ$fzUmxIx07b*fiARdtnexT}-2!HE$^uhvxjJMe+xOtG
zSxJfn=oNsKw+86+Nb$`9ZV8y8Dc?0E%ekiP9e{oE5x%Hjfc^mn1WMuWH|1>s^V1{~
zmFGN@<|@M|=j|MAQ%T^i00RjJ7#-m50QUrVGQd*-?xpe%_=On^4sbs?A;3cc9_C96
zL%MoKmWl@hwJUkBT87?_L1e!GG?nR_<qE=GXJtzc3Gi5e$H@uw^E{dR)e<o@081L%
zEEiVEJdrSJ8%sV-Ai#?OUJCGRfMEfi=d3GdxIHJfpG%r`wIp|%FOXpZwYX5wxKd2r
zC0-6NBEU#a!IFn_GfYrt#@ZlDa*&T6EF2SHY=CzIycgh=0ON?F0B;6(HBdJHYXM#l
zR19=kS(^va`PG86{c@NU`4(AXrt{)X_w4{_O~LO3=vq*P8x{)w`vDd`n)^wBPXl}q
z;KKkP1sG2bypa7kDd{ce2zg7p=+tDvkj-br)g19fpp3fD1LVw8<7Y}_&ADO{`8L4r
z0DA&V2~ZMXd4LrGO8Yod1I#811(+6KdVm=LX0o2VH$0Dv4!1?@WP&AUB{f}6$E=?l
zU|xX50hR=qA7DX%F9R$jKKtj;Tg&#>EGfryxST(-i^#gwGb9#AyEMQuzNN(BDME%d
z2{4w;a%F&3BpF2@!0G^N0;~<Nj{LA*tg+-FOZHwM){|tL#0FAru?o%5l<G9kp%Z>n
zfXxB6QOWb|E5()oTLXMeVimZ*Tk?TQ#btUHa393%{T%^zQi!Grs;^xEKE67nNycqR
zy?t5kANK~>7vMCdHNZCk_6Il?;M)KP0&q1v7~l{|@J?l_j>8FhkMMSf%j9!T_GkiA
zPqOBC06G><CJKkxJHZzvk(x6L#Hj$^B|LV8tt{>Dsbm(2UjqCZ;D-P|QWZ}Ztoexp
z_)7eowB#WXw)`!?*#LhA_>1zD)c--wndTonl>I#bOR8Uf9Dp_F16&C3cYuF5Q|1bu
z$&#5_mZj5Rst~puu`7F#j1gjR2Mp<eG9k)_cp%1uG0KG~AL8-|l_FdcqC$v*5S>F@
z8lqx|C`26MGBya&EJX7Vl|oz*qJD@5Au5N+4N)yb^$=A;AjFlS%2gwBxIl1Q#934g
zaaE{RlW=#yi;2@ULevaVCq&&4wL;Vm@!?GI#ZH%t3u(lQ%PSA;@DW-*^+IKPFf+Dc
z(sSbwO+vL0G~$Dq^qA$j#Pb*1)$!7%9PKn^^Rx)jGK3Mr4ACk?>k#=NQX$%eXd6O=
zXqSwK57MK^V_$h8I?i^s%~hc&j(k}ADnpaNiWaJbd_8IWZU=RG&I(~Cw?PPp)2G`%
zxqbVX=vfwC0{fwg*YINdFjPkc=|`oLkmhJQd89*#_6fj`{ICa_mmNcJquMD{>Xf0Y
zOo*#PObjt8<hNLm4e?lrp&<%G6ou#)qJN0u5M4ra578rp4AC{j4Iyp}Rffa0A%6Wz
zTo-~GfE^at^7;^T1yC57X4x&oO`$p^{q=7}KmJv;a<W6$V$V?7dpC!;B}A`KMFF-z
zog$}W?bZ-|LbWmP&0lTFge!J6*p_{h(Y|lX+d>Qo@lc3|L);$X4)PC=sD!vP#9blo
zCN@I;iGv&%s)MBzZASfQGvCWGkO@y@?+-C(ceejuMWwc6NQ>AYP8hg(kQ48$!drtv
z^);TsA%=u_gq_S(h<!8xmUjy(9TDdai}6#k>umXWh$ljf2{AUrljN2V&xLrNm21V*
zBu&V~3`qlk*$&T=F2}^MP^GxgFSliE{tF?7hZq@RREQTt%!{kM6yoJjZ3CG{#FC%=
z89_X(6ZHG>s280@qeJG3OG@q~j$}^GEBuw58RFd#uZDOn#9JX~=hM0LdWbhdycy!V
zXVP>HagGd|)_2s-g5UpnJH&%~iU_<H;{6bxg!q&Kn07x1@llBJq54|IhaA{8L7nz-
zh@JDq@NxM(>-x|P^;Lw=Lbd8Sj{JfxLwvhL%*>=&Ga<zE7xVtg%{)4@%j6JKINA^g
zLX?D<8e&a|wIQalO^5{{z6>#gJV2~+?jcG;%p&_8RH&X!0i5H^AwfH<bPJ}cUhBxa
z9XUS)1N2NMU{)dV!&AKrLo5ohjLaM=D|azz;mD;SmLzh)lY{JyEt$K%BE-rNt3s^i
zOQ#C@2k1o^(Km-MH5G5EzSf0UA7TgR8)5_J7-CC^tt4E?P`lh5DrW+LO%&(uc?7sW
zRqlnj$~T?UB-7U+a=yuK3$Z-`2=hq(E=qKWZ%C%1a1RA%yStBSa80l`f$4c>P188s
zFeH~o+QAv(V2DE@ekL1)I2_^#St!IQs*%;=Xo%zNe3v`;pU%gKcFx_ATOG-KA)53j
zLX}y{X5WQ4O-T%up-3m{8RCCT{`Z_hw>&2N&<(}y%#YNZiv?p(KPAlw{2Jmn%4~@L
zLYyTA7KuMX{2Ah00{@<rtYqNkuMp=${7peC4w)A6eEH%FRKn%$<Br;4{S&JADf31+
zuZzS3HGG5$5z0g;8-eGh%SX5=8}>OU%0()R=5I$<btUx@;j5;JOCwZ_a9PAqsr)cW
z>*AUy3i4?MT@j&jg!K_NM97U$CBpp?9*BSlS4QX<p%eR$a8-mB5n4v57NL5C1`!%Y
zs1c!NgxV46L~32=?8@&Jm#Y<lgu{_+-K4T!g!+++K(PVKlS6VZ|3*A@s<2VSxTI_x
zp$Ypu6OVtpGK0BIBb6@IJObfnkxJR+Nd$E;@N}D25n4wuBUllr*xN)9oKA%2UD=jX
zm?8+|MaWO4uSFQ|G9V@QyE4UDOco5~=n;&FVHe5I7Z6ufJZVR8BE%8W5nN8tlYWFC
zLcQ{ZUZmD0)`Ss0<;kG^B8rp_xtxxOJ}OPFeWbo;#fxsG4v`AyUA|G7wFMD6b7~Q8
zjgX0Ob%d@Fu8q{r^qL4o5sD*ZlUvplCO~^nb|K~$>s-YoXUBud^z)Z0XVG=+IYN&J
zJtHvX?}i9;T6Rm|8<Vn!CvW0N7&5M$?w$a%HVLXY?!<dVxS3?yA_#MP{!NcOdJK9;
zxGlnf2z?^-<p_u7{?)<l7vb_%%5UF4qKjS<zCFSn5e5>O5$=qXqkgm}?}~7tMur&$
zJYz_W*PNe%nI-OtaBqZX=c=P^yzYzeg(sO7^<adDB78(bM0hyDAkvfrX8#c$jqqfI
zr`U6WJ2=A72#-e?LUJ=;+A(}A0u>9BD4t-mg<`2E`DH4mx-rS&X(D!9{&OTcS&J`?
zz)k2WPaXam7J&yS2-9SJA;RzoFD6_;1N$WoX}kL}MPRl#yxrwt&ntX6BKeiT=m=vX
zycgm92xB9>!pTN>BLWXukBjhXgx4ZmvnR{7k|$f6`jSRI$rSnW%?NLkNg}*O(eov*
zdwn^|m+vOG1bF+}KIa3{uCn@;%ZD6c{~TIVv?^&DeH`JF2=gN>AcIBtjB_aw(;|Ex
zse>w$BTV72BTR@eF~TG^u9A7CdjVGyy4+dvqzS({P!eHkq}DRB%4fc0V3C#6Bg}{}
zGeT*EIT7YYI9#Q8R)pD<=pF@2eU*nyfV({UH@5wroflzMQ8>P50o~4DMpzhOImt9z
zEQ+w0+F)${(g+NCE+HP4lw&Z9n4!yvLa~f^p5XHY)`|!#*$L^}Ib0KAZKNWet0VAW
zFY}<*C3@iN)#|GnN=ppN|B7rMp;3&+F*Zfm9N}Dq--&?;TZ#Dy$N5G+PEA5?Nr&5s
zWPbJ`!Y-<#Jz_^va$CBaqCG|Ijj)eg&9eX;KvT(@6TbZ0myGEX-XGyWgo6<dMX-;F
zW5h<%=aC3U6QEw89-%(u!p+WU>&AiPX^RsPPDeOHwoJx<idvDMRhcioi<DdSz5Utm
zBm5BI*GPpse~j=G^#l7{C4P?7PWHAy`b18*JO(S7@XXBT-^g++#o0t8`3Q3e|A_D>
z)pCr>WBf&~UMc>K@Lz=U6toC`v-A2z|3u)SdrI*g+uhz%M4ziN7bE1vC`*GsMwuAY
zW;9*6wIL6vg&@WyF)GIDt6#@vIsBSUg&3E{AWR3v6M<y;Y9M(_CqShbSH-9n<BAxS
zW91gejZq~AV!Bh5=Yd{=D`QlRxuue;0?AuemJMa~7&T(lj!`E@%^0lbRV$`Rub!e~
zp&$Y3#;6~wJobA3zYYBrG=&?)Xc*JNl;3}wrH8*sjHWTJi*bF7W-*$_Fk+Z7TEu7>
zqg{+VvdVVRD#pf+Zrd2GliN12T6B1EV=j`P`0EQpbMs^H1eO+q;y@sk+%jKl@|77q
zR>DHt)rw)q$i%ohh7-e$5ypr}h>gOF5yXm)esW8ImE${wG$-O1=@=bibd1&Rtk#Lb
z_OUX1hJ`AwUA$6sB3=6DbdEu|Ao+;^f0`J|YxqbE8KY~A!kCBb3X9k*X}>O%eCoj;
zvTWHU2IJ$0LwPM{w@PI}(0@pvLI0c^V%!*`Z;XC1y2Z-Dcr&SB%9~<zkI^GmiRFwG
z_arH&D1cY580$vm6SyVDtqBP(gtB*xJ_-DP^o<l*`;#0o?qvP{r__K1xILyBpc?S0
zyJFlO<DM8B4rT|k!_9&xr|yk$ACZ5qh%vs0qp(#Z?~l<wl075I<1i1!c$jl+k8<rX
zD8?iFDUA+kJQ`zgjPGOo5MxM;$6`#4F)hZ>7>^SJG2V*tM2sh6j3W7BJQd^V7%#*a
zPPD`-HFQ{v=VCk?D^<gb2PdD8)dKxsBv19r+1a3oD(*$Lj8#6>h**7s@8y^pRq|V=
zBO^%*WN9Qvk`_Gs7RfO&#>RLx#%r<q9MCJ|lbDJ~@?xxnB|Sf{Q$S)cwVT!;<@c`d
zv$?a>Dc!eYyc6S-7@x*?H^zH0K8*2EjQ3+@k<x8K*8L!X&qtE!Ud-qlALC;pJPG?!
zoifw@nZ}vVVth`yi!q7gq*(RHn~-oI6$qJ}Oh`}8<QP*p!X={VF#GRcib`TMh^2d8
zeaeit(__qtu`R}S@?MP67|UWTk1>lf7-M0KMKR{Ym>Xk$j0G`%W$F%3fh7#{Bvas)
z2!5f3$Iriv!H*m8C&G(kEFo*Tl73gN?@K8){c^b6H{36{SzZxiWsI-L05Mj@SWSM5
zv7Y@O$gYX8Hdfg?W-OUN$dea5tj$Qo2GU|?ngQG?T|!1oHpSQ+V@r&!6be`Q@tFI>
z^6MCMqFx)zJ7P)ujWs)B?4%weU1IEtv71VX+K)`TN9-YU^5dU;WK90v7_Z0j{sSt0
z$I1gS4#qf4PP>?$A4|q|AOEZ95H)0pPv8h8J^6{>R;rK<+2(kR6EV(EvJQ!pF;2xe
zO>EfmJIdXzY~JtL#sz7LJmaB5PpI7uKZr_1{Yb{3E={9a8b6Z{$@6KHORFy^{u<+4
zjNi#5CE_=ZFad78Er+*%#P~DDe=#mn|Hn8V<L?;%#JCXuUncX`SbkTgkoxoAgtwVh
zaynKAqR;Is<TgJijS1a@GHJEtub7r}rg0lvK8;J#xGas!)9CSNZiO@|rqO6vxl7X!
zzZWsW*dQ&fw4@HKlvewT+%&4B!3?x3D41KE%1KEZ4{5dCzA~-SA&S$I0THfxRg+2r
z)zhevM!Pif(x{mRKeEv{jV5W-N~3lfb<(JtM*TDzq(N^?y|g+8!ayDq?|B%6Mq|UI
zzEN7`o$~l9f93azo2Jn$jsM5gcR*)Rd~XAxSRi>oiVCQRN?Q{}%o`J6`@UNz^xk_%
z1?kek0-}O|C{{qK^rE7o6cuTT2qFqLKokq0AQt$Z8GiYn@0>mN+?k!7a@+K~wRP0d
zAx3B1uHz0JwRAlCX&zmBS?^>}mFPpYw=OtOtgD09RW#P2b#^@kA8(b-81AO!=(tNq
zu8x#0&G_9q8tC8w>G~?jg_L`Wkb8A`6pHL4%+qn7jz+pXrcQCq*QGHj(B)Bl_LvQI
zdE{oAE|%${u`aK@bF{4Ma+pNi(qZeEtz(W3N9U9u{dEk`;ps@TjXE#x!PgP!XsM%>
zj!;LWqlu2Dx?KH>btG)Ej@A{u-MVt_r;FpdC}d@H(fwVmnJ!O4Rx?BkT^^5Yu7ge{
z|I<YSL#{lu*5!(2dmSCfaUE@Sxh7m_2u8Nk<t7)`mbn<kPNAZrVP_p(m~5lgM@Ls3
z-E{QSW%o+m?@o48PV79cNN{~-+8${E_^OwV-YN~v7lZWc+gF#KY5VEYU2R`O4Ae15
z$3z{IbPU#Uzm8E96&(+-2^+MbH269mR5+(gLv%SCA~H<Ja2+Fc>F{TSF0Wv4l*pqR
zM7WMe$c5rDI;yqHepts?9o@%daM@>^E|=F19nr?KL_@q_hzYvv4H?5WPS!C+$1|Dw
zOdV5oJfd^{jwdKZq_CIwn2yI;(5e*iX}atviTCmHIHczli5WVcq}c4$ct-juO3|VW
zTD+$zBx|MVYqg_*kQ0Gfx;&BljQX5+ALi<KR>vV7U+9>p<2f=*=P7YKuVcQBr8<`B
zctOXDI$oioQDv6qZ!*M7I$qYX-E2sS-De11Vp^bcfe0*OF=b=Fwuq%1(O#n&*`(3l
z5@+NRT~4(qu?LT8%XO@v?vvd*Uf1Pqnw2_M>1g<GzzvS`hG_M5zyq9FrdX?EosJDU
zCUC9nJFR|3&Uzj9nxg)yd`>Gi>e!@+&sSU!Abd;5W*r|ePaSXTct^+kI<~Tz%cVaq
z&QIUfu|>ywRD97eD`}XRg2*-sk14jZ)jf*wf&)*T?a<|Qa*F6kQ+%Xjr;Y<OS?jcq
zsV{cJT?*f5>%0xRTgO*l1$_1>WUqqzDD4XQRKfiUGR<eC;Zcpq=Q<8jzxK$3ZND^b
zNO)Msm(*MxXOvYuLj9FWgs-S*I*#f%#+3=GzmBI&(fv*BpKn5LGV)67cRIe;<!zBA
zrr2tV#fJlKL7vcYk{O!f7ac$9I7Pi)uKlcoj@l?WKT*Nwl_SE))1>_B6vc+p{;T?g
zU;U;Kp6cN;_*s6X<D!mpEQNKjvl#iOj`KP$usJJJ-7@8l8&As+|C{WfBy>p?Gw?5o
ztm85@E0%6@4}2S5qRJdjk*a4+@mJK4@l=Q62IvxpNJ#^w3~V&8$v|lXWejvS(8a)2
z2Cg<>7%&Z7W8hi?H4WTmpsay%1}Yh-Y#`G>mI2-ztY`p+9KBp;$U{x#4OB3s9p;Aq
z&l@!kW7z6wOa?tQanf4F!1V@hGH|nj8w`08sj7i$25w}b>!d1i(p{a|PRrp#>18Gr
zEs<x5TMX1Nz-?UOIji%9C2lq39qM70xZS`V1{xT+*FY@;wGG^5;BEtT4AeDnr-5t(
z^$a{|i66fRG(*baLW}dkh77)C$@7GKat!RZ<Uw58@cIVsG2}&t^OmS)3*MY+WQ+UH
zM7aj?4BTg6>Lx8^fWCQK+9KaTfg#UMH!}GDQ0WVClr0*PZeMCo*`l!louvCx<LS*M
zw%BS5%YbblF(3@-|HLtnHsBj_;m9@MDTIAAgM1qphzvPz4GnqBdu{7%u4l$%({&#8
znv>8%15FIHFwoLKQv=NmN{hS=dSbM63`iAgZb+Hu7JMrMtqrs@(B42B16(3*YvBD1
zdA^JHwzyo(eI?`Ravhjn5%wQjj>-9SGEmVGyz<c1KsN(34a_po-9Qhr!@wv5Jq`3S
zFo-f>ptpfOeD#esz(8L^&Qkl6*L$_nW?nyqy!olT|69l#ulHe~sv9>+?>F#(fuRN-
zGVq{*eJk>ZFrO9qKb#CWFk=ntIl^<qFayI4j3AX9(Zvyb)yc}@Vec`H7;RvTfyoA@
z7<kygSOen?F8zUL*v648YxHn&{;Q6>hCk7eeFwXSE?tWenPlJ*JBRh0O2ohn$_b^{
zz+(oc894ECz=a4_fHM3zxx7u|d9djQo*)sr$ki3vcBXmCz|#h}%)-PpiCZ1PQ>;Xu
zF)-V}YX%k@m}6kBf%yhrFz~D)w@aQQ0gr_96wV-vVDNcEo_HtnqJftv3<ee$c-g=!
zRJ!G<i;mzy_b(m6W1QUdj7MfJG_Xj~nZvVR*X46H`^fUt5(7&OtTeF7z%q*B0ePTn
zg@NVNU#{(YdE77}^19Mr?v}1Luttf*j~Ve=1M3X%BHjiAycV&ZGE>E)L~(7Lw@|ZO
zc^>Hv18-7`P26naErYHtaMr*%18*C6$G~R>4zRXsw08~cFz|taEe77Buo?0o%2os0
z3{0%x@mCr=#zVNBt>YE%12XubfsYLAHn7LQPKwzV+Q$ZVDddcqmHmaru^G3ei0q}D
zP=lzp6ct`GJQm*3CH)DB{EbEr0JCotbYaKHOY?cm5(n8L1IO7S178?8N@f{2OfzWU
z2-VgAPpMH&2)SGRH7mdVf21arS|1JjH^MgtzB8n&x^F338)PSYmn*(E<RR5T#ltdN
zv=atS8aPe%8Tiq_DN5aL?Pmi&k+5bSPb2eg3l9Taxf{YuL%$mM_V3^~1HT*6ZF1Tb
ztpEE*!V!N4XZY#{kH{Yek3*oGNgvTTZ{Px_#-?19_{+dWT6>x@5~p+OZ;CX{<084S
zNVsZD2DeZz8MthqxQP-b`niI~`FI1On2DiWlxrmZT9bd_tAM*FoWPbeQOZPV6J<<X
zZQ>de<6S}9a+N7p()i4C#kD3bb}v@el$M9)h-+W`Zv|gvnShBKO;j}{bIY5kXrhvd
z3MQ^I<-R;A$^9eB7*(vYiR(?|?$4`YO3Oeyz&$=548FmXmt-lrEx4Sn5^!^zht{gI
zRzbt{uDHcS4HKS;w250y)HG3GqM?b~Ox$jwo(avw9VR$-Wd~H-lr*Vjf;;cjT*lPl
z+ZQwHnzDPM1-R2hwu!q<)Hji1%5|aRU5eesuUx@>I<7NwpY9$L4NT;jxX<L^2e~Zz
zk(`t%b(0G$?3;Mtfi7n`9-~(-2J=lYNcs~tGBNXLz{O|7lq;f*O{^G^sjGtKpAAeC
zmMITG*(O|;@^}tYIwp7&iU^rPhY7xkz(hwAolJx#A`@*)v^5c%NK7;{(cFY!Wme}G
znrLF;Cs**OLn%+XMQuvT^VmZrk3VE-VWOpp)+V@A-pWLEPjv9)np?^fKYyv+by)sp
zrJafP<ha_o=AwEBQ;u8cB!OpXIJ@a=qKk<ECI*`5$_ndw-ArDJ!Hr%POX*>vr-?o$
z`kLrPf-lSOZOS`G*S;sM*(6VP{k$2`k9o3^Mjkgz3Hh+NK_r5S2TVL@VzSyHy`QaC
zHD_~%m{{tGhgi4r9((7ZCboOBr)CGu?t6rZktXhU@PLC+CPtemW}~=`F(w{1k+P6y
zVJr!5;(&?I**X&wOe`lOOiZNgnRv;>%PiN#6cf*wm~CRJiAPLKH}QmtN15T6jA=~9
z!=e<hw=_PFD`d4gY%sZ1!3<NLw|tWNXo9x_IRoPMI<3>wCOG$;sUVSACU~lW$Q%=M
zO*}_ln0S_a->A(a^-4(b;|zLkC69KM_<TyKDVO(Op!g|YI;0^5j4`j6c-6#W6H82a
z<A5g_ctB-=DX;S^G%;pz{vs2vnbMY0F$tHNa`BlDN2<$AIYs@_lN#~5iIpbaqsUQc
zO{_NYhKV;#tTD0H#G%gVjV9Kq^y^J*P{=Vyr=PLkJyBIO99klG6AeXLi2B)tZ;>@S
z^WQe{4s|mvHdAHFdjm7_ZqCYkmwK0OxP>JBD_HVZz#%JF9=4j;MqM+pn;)7uu_E<>
zi4RFGg)^9+79W||NfKr1A5;G6p7%L<{gy7~7{gzg>>&Ypy4A!d3fZe5y;XclJGNQd
zZ{jmj<LwOMzrLPYr0x=uI|tb`R@=fg7QQfXnC&ug#^i_{M@$@N=_bB1@wJI>O?+qK
zsEK1_vB~}JlBe~CEz=_IR*d3Doa-A@{O@TV)yVb-TF%{ar;ol>$*hwmPEp!T{7ALk
zu8n*rgI5B7rl~m}oTkp2{MSkNKw3;o%kz!Dn)r>>P77X{-(D)-y1n46iE}3YGwFN`
zf0+1_hS$X3ETVD4^W@PG?!kd0p9>^WTKt-p4CVS2N0|SZ_?JEMUg>6#o1{d>uFJnn
zNw!ehLK#9|6t|FJp`?WpSAw<0z!s@e7OMM#mmruG7bu8R@VFSowp?Y&%eM3ycddo8
z7H+a|vn6j1ma|a7!gUrhEo51Mh4L19ZpolYrx_<?>9p+?EmX2_y@eb2;a;t>1$rB(
zqHq?(K`A|*-e}=q=aL*aRkKjll7lGv^1U*Ys&1j7FWz34e~X107BmZYTDa9hO$)Ux
z)Uo6(_}eT=<U1_fu7Zr=IzXE)saiAw%Qe2L%L)`W<c-dH3Spx-Y2rbbYzsLS?y>lz
z8Qf(_HRN5tyDf}-UHgISKbAZQ!G{jt`08E@xfWV(l~;S{B7=MSbi#I@g?tMyTX@An
z0jp|ZkcGh(8d+#;q0mAT3%UivLdg7mVX9KTT$xH+uq@aXn)|}B;91~ZR96KV)5jNo
ztWG#S_bmjLbUH_u_=H@ZiY)wNHH<AJDl5NnmawpHo!nynyJmJ%3(YKaw$O!HS!iLQ
zorU(SwuM$IeH#naHfy|5+uGs{M2%B6;%re{OLm<^*g19}87**WWv(xHu(Ol(za2@^
zt*eD@7W!H|Gl1?EdRXXfp%3}49*(<uSx6lViJZ#vIQrt2#~NQ;7@5gq9{ow519<~T
zoK5nA8-G+WP~luHVa)v&9<VUg!XuWvYx$r>zdaakVTgsHtc;mO)^HX5A!hQm^w&Lt
zY_c%k0`KRJvgkTk-i#h=fq(xQV`1{T)Wa6|Uo$$b;%Xu91@P@SOCDSyGQq+`3zL}4
z!W2tR&G?l6Cj9h?9A4+)bJ!P;T6oODEDO(Ac-+D?3o|UvA2Hp+6O{Hq@Ki9B<#-F7
z1C_JBc*+7V!pyY5%K}fcR?FmnzIZi&tCv4~8O*jY$HKD~=2>#MIM<SQShy5<dmt+E
z=IQd(a~9^a@@!ooo~K|e&*x@AE5G53l=;_FFEM6~401!Tbs%1~u)xCS)EWy5EiAI|
zmW9n0UbC>+!dl7$MVGW)omyexbqh-^EF&2MF)I*n24cCwDcCD1uB%e~>C$Qos}z3m
zs65htG!Sb@t2Gi~x$7-#vcUU08!T+3_1GbO^wG%x_aojQ3zlndQsmy(xY9+3jc>D=
z%e5V3qJ?)z4GUXnZQj-1x3Ja1g+RPV>Dr?)W*bdMC_UP3R|q57^|K%O(85RLxP?zy
zDD{FhA<-=E<;m#}2a~%M!by;H54Ap3`rlw5ZNi0Mh?Bzv4YTt0Tlmbv2L6SLnOur^
zB;fv!HFiU{d=>J)REKE%E&OcZw1vYKzNDO3_};=13tw6I+QLz4>rSm!C>n>NRVe6G
z{22MgwJb|6h)wL8`j*1>w#J9|+ITMg2kH*<Stsu`9Jg?Sg=TrZ4;Bmx#g7(FkwJ~b
zPnI0~JRXY2D|)<D{fmWPEnH+JS8Kmfa>$@Jv_CDJv2fPHA4-<aDaqs&zgI&+nWTtv
z*h!%}PcpJT{qp{z*;$dFxubw5D5$xAOUob^Vg9vn$--ref2or}?nQD1X68Qa?=|{c
zp`csM5;ihyY_qZ5MoAl`Y_zq}&PHh)Wo$IG(a6SCHm<gDtBsmAu3>Pw1{>vVTx+AO
zjdC_JZFxX9OT8i~n1Da9sJBBq7m5ltuCsByjT>xKw58HjvQgQ_%s(Qsn8yyel~aXT
zMS@S+vfhn0s@k~8#?7`o!&A*hb(YJwCj+{zBf{f7x3E@`;8Vkve~zHLyf!L$n~mFT
z+-2i#8xLLU-C?7)&EFy6p-9xS!IRZo=B;a^p3P-y+-b`z>idj5Udewd64^F#Y|z;Y
zBj1cf#bv?KNbufzeOvBjq-^BbxW`5V8&l2(_p<qyf?ONF^vUCO)T=KB4AM*3eKzuK
z6tJwP<V}Zdw|hkHnV3P?*oJN+vJu<35D9~%-k5T2m^Lg9R@*vs>tWld5c6Meo@2{x
z%G$B;Y@}_e@4kYef`NkUSUF4LE8Z7NY&5gc+=j4GNG`ZpoVho#(bUGI47ta&Mg7^N
zg^iXrTG?oA%ONH05??((KZB5?M;<I`W212_xIWOHO|UV|#&jDUZFI8nfK8{$vg_<@
zqlb;2HoDm8YNMMiFRXD#;6G)_yW8?&K23Tr8@+Axw=uv*A0o>&o&#hleQorkjKw1T
zzBVKlOxfX`jDa==+qA$9dDm%>EjwQ#4BoFIc_Dp>jiELs*qBIe+8D;Mz0H3zVz`YF
zHkxF`oPdwCF^X;Pmp7WyxIud&mWpsi9Tvud3*ht@J(iiXhHJI)HrK53zAx+1Un1|A
z@E+VG8&gSkmdH$&=1)=8Ai~ofkJ{V<29KX@jRjo+)6_g}%keWU4A(23urb5N0vii$
zJZa-88_(L9XX9xKxuWx28?z`~Uc+Z>%qHoE$V=-S4$(K%91`c}padeC3)YrQdCtc3
zHeRyvvW=7PYx8ZqXoGGpXoX%N1>V*ed1YEOlwMDd2HebjMOF1x1?je8k&V}Etg*4y
z#$p>wY%H^}oI(0f+M_My+tHa^59C7h3LCH6SZQOG`nI51idP7Eqmbv^R@?Y8md?+4
zEQCh^*V$Na;~g9C+Sp)Yqm4JHJ~sY67*bHr#$uC_SO(v+vDwDkDmbBZ%$RMh9lBwm
zR9}^dEjHe>v6YQlm8zDA_sPB$nw7|F7qeH$Wl44cJ8XPFm3MHPgAZ+dWaB(l#>P$?
zAKUoO#`iXM+1PF4Fe^!uLL%Gv%*Fv5`=|o@^FFn)pY1XmenK;{S37?q?D9j<JCP@0
zh<tA2pp8Q|zOdzSDgI)B+eRE!(r|H8gF_t-IFH!)%I4ZBzP0hSjiXBAW+j5FYR9Nk
zTeW6gQ^einDfZoD9M{LV@%@91<2HV>@v};E!p4s_PSHHB%|EH?!wS$gu1o~ENl3qW
zr)~U3S)wH&r)rB|6(kaG(aw<Od$m6(c>A=oHqOzIu1oR%hIE(oVIuytQ7bb(nuyXu
z{AJ^!jVuRn@VAYBXuTbjaqzE={}g9SI=E!xvW;R6iaXL5sJu&6-s6Tv2?rURI19mz
zjJiVZUtE1OjD*ykQV#gzCnCIwe3gT%9bDsp7n7TO8C>h2tRtOlXFB*;-TN!2kZD59
zE9Nnt3&rIfRB&*kgQ^a$bEMmxN)9SJ;9u=3I&!O&p5>}I(%aGv4(QGJdPi<sEEICO
z!DAJ>z6q;2sP0Jr9yJ{LYr@S;=E$W&9zSM}&lN&mVCPcOno8L`%6qFL5A-te?GEm6
z;5!H$)N)YULCQg%gE|iCI>=!Y9K0t4eLB^1pgHoy>75GJ=V2j*@E;b8yxT#22lqH=
z;9&An>9mc{JTr@|yw{O3kV}GdvT(hWD@NYuAm5R;%XH+BuRy_uq<oh5g%FJ#G<KvT
z0{(|fcVIZuj{#4(aSF-)#d2Ufa2z@C_8eZ!*NC`|?6dgO8RBX6ik*JwAac;oL3;<W
zgTz5I2hAM_hqs5Mv~z8?i9_+u;W|K5X2rj=(P7sef<YoJ9JF%K+L7D7Et#x$Nh0+p
zX0&n8){z&YIceoi0e{FsbJ4*;M>5VqFUkxv&&uoUpbNk1oc>javnPVC4!Sw$?x19$
z;I)fARdRbcXi_LW-LdbkTPS!*ytjjX4*K(1t@Tl`uc8uz0~}Bb_zY6WK(dLxf;G{*
zPz-j!K{#JM=wOH=jqM2+LmfOsj<{&xVi<|(;0p(b9gJ`=k}Y-cI@f<3jCL^7!7K-3
z96apcQHKkU80*L#lL?d`2VCqL=U}`e@2yWLlxts;$YKXmDJ1LUsFFfO-<VSzZ~)1{
z<RcCi6pAK}T#<gKP(1GNZ$5a!!88Z^3q`tbUfrbO3<pm-a(4EVY8}0;lG<6k1)wT_
z#bMer4rV)8=wOk9IS%GJc*&vL5IoDeIe3mtVQsslIM?P43trzKGT*@q4qkM?EoKI3
zHu<A8zT&1l@AJMw;=ijcaHMaLR~5W|mG)8BVkZmbiQ?BBEOD^Z!D0t@Pmr#yIm@OD
zFLUIWws;e1g_bKRC9;x==HPt?TOF)+u*SjL)T2$>T1SpcH#penU>y~3rM6zRh)A_2
zVv~b69K7YogEU-)ps#y6&v}!I&_tf1*{tHZal>^9?#sO6;9Un>sA6}D_Y{@rc!xMY
z+~#1rgI|hypE}s#-~$J{9PFn3=O<>?M-Fy6;N1a^1h_N8Ri=+gN#$gi9=Z3BkDIl9
z3hq_ea!HEBXXGc2oC$K!vfsgH<jywjfP>E+-sq8%#yR^T6-k`0_!AJqFC83lP{Kuq
zi?1Af&00D5l|16LQwQHW_(9>v9DKuXDO#Tg?80968-7RCXd-wFkBfW99sKCv6x*^(
zJE16il9JB_y=}5{`N_d)nkF;rX9w<@6z72Kdic9Hc0Iq5whqoY_(RDODSw7Cyh=MO
z7dE9+pe8S5{ORC4?L3?2fbI@1IQYxKMF(pyH)fE|-&*|}@Ddq+xA8AE+Ch~}y|{}@
zv=y29We3Gv>1TsDR|qKslav^6rq30&k}gWQfQ#}jO1miIBFhDDS8=KBDi_zdxYm^;
zkgHvJe}PDsF_|sLWR`VN&PApx$AP30|2fEYu<B_!?Bq661sB)3sO_STi;6BPxwyqe
z4HuPN>A0Q*uj1k!wGn^4D;Y%hI5)Vsk@P<o@~NtjY6@0Y@Fo{G7rkxsV{of0osi$|
z;tm%zUEJp4r6%HyCSq?B>934-qn1kWUlVas#nfe*ZJOrdP8Ym=S<gjJdhg^<;a%jo
zxZ6d2S6Z9%=L24@xyzOFQ(m;;@iXq2a2U^5_qxb+@wm$q%SgG%V;UEoT-@g(-$mMm
z@1np(Ll-8=7&L6;f@k}?Zj*~eja}#@7ad<W6^1J{i=%E%pDh=*3&+LT(HYchPo;60
z`Eu!%oez7fz?GhA3SBgD5xR(6&`iZH5*I?HXSaA?Q#ps~+Ei``Hg(a=MQayrT)6|%
z+{M4!w3Z5Qp&)%qaKPEhl~Z!BZFXB%jx^f4=-{Fq*`!Ig2E3BS+SdO*Ty{L*J(tcd
zy0{qZ;(ixhU37EN-^BoubeGoM#Zyg1Zx=mCQWZllpuH3_qN(&o(#J(#7oW{c);AUX
zT<mQs#~6f7-K>GE+rjXe&Gc=TH^{~Drg9nc0T&Ot80T{P2}5Z7T?}_I!o@>W%p0T!
zm0_;@mFMNAf`?amCTFCJQ7*=~c-W;IdBHpBqg}a@wxU?fz3jWc4GHxpbH=(LQl**T
zq0<R2Cb^jGVxlV#4`eqJh0Vki3WkeE*@|7-Bd+|p03V*6AneslJVt7d$so?HpXt;N
zm;VmqPmM9d#gi`o+>J$~gNvtK%ysdsi<vCK6SG~+aWPBb&nU=9iWciY<`Qx<Zk~(h
zT)apDcJaK6`L0|Xqh+SsA`TK>P%NImRvv+SnK?8Quef-X^jW6y1U}t0FK|KQpSMO^
z)=bc2=W8w&yIARB728XJq1mU}x>!nLu8|(3$yUl9H&0hkkX-C;CU<APZze7^6RTb6
zsBNu_buQMhUFuK->#&~U-8YYy%{RDUm&cfmq}vBt<>rE;nm1j%<zhcs>|(Qvw_UvN
zVynx44&tQ~A!T3-E8J3lSHbM&;ynud>nR?FZ+TeT=3+aUMX@CBTzuf-Ll+-W)AwrJ
zj!!oiJi$)<i|qwFU5s6$Z?SV2+|B0G<%NrVF7_y#UNIT-i7VG+KBZ#rkmqBUd=pf*
z^N1X9@wtny$x{~xT^w>b_LE)q7i7)n(&+^Kkxsl29Coq(V#EWDM<{6&@{0i(RPzzJ
znE&cc(J_AF;yV}LkjrKsA07wg|7*T?r61HETr{0mu48ja%;OY*<r+5%PrCTg#VMB?
zbNG$s#l?G9XZ`Hrw2NP;Ze=~59sQLV-XplH&hcBDlOgdlv<9@39)Ajkb1wd%arRK!
z!=EnByZDbL-NgkLf4LYKH2m9@7sP1BFY=QzF{cl_PD_VN|4_52GR*}a{xa;ci((!!
zJe2fM+(QXZ+BcrkoY7qH??0S{vH#*y;o>2gJY6P#({>=QjEAxw%6YiT!_^+H@o=pt
zS5rCp<@~PXFTrcg<*olr4_O|{d#K=n%gAg#_d4O>?dGCpiSRlPqq-EU=*er{pEVcU
zvnE+8u`TPRdAZ)>HD1*AP{-p=BC2}yd4d`qat@WQ=HVs}H+$TylvR~|ikX$ST%KVj
zZ7KG*dZ_8)HV?OZ(z({@=JKC+?04?)q-XnD9zLEce~m;}#&ym{ll}?nGTuXd5BGS`
zJlyHwE)REm$Yycs6V5;>(%ja0eyjF{-H>D~*+Pz#INfXD;a(4U9v*0ydiG+J>mfz5
zs9QN4oAIgHLQrQZdj%dEdT7uJ_qIYK4~<E{LSz;~_h5L~7+_NX(}U&V86UHK*d81Y
zwS3g};d<~qbV;LYnsWsB9=`GLt%txv=;2up^E~=RLF}Qchi)GJK2<mI&_W?XLB<p+
zq=|>7MKR43(p<rCTSiL{tvs|=!NQFN9Td{WLtBNkQ;_+z_we<pOd@<bdgxRX-<dTm
z!tZ-8qq~P59wvC0=%J^FULJ<4x4k{|@$jI+`xd1i<e{I!`zts=!GT3@3tEW5Mfm+B
zwZd5hD=?%eeyBno@-R#xY!2U!@Gw#ZM|l{lkkJZ`QSe~}ne0m9aURD1e=(Da@TWXX
z_Atf6)S{T_9v)HnqaGgf@VLUKDL7kE<_cuaPk5N2;-6IT|6264hnXs77TJB}Ll1L2
z%vCt+bEQgG;By|HSMggs%vZ=V56eBgpm3J*qKB6}yzJqXqL{@Bc~!v$3NBP|k%F%&
zxar<3e!E2BOR31elxC363J+^Ntn=`?dc~NP3R&f0wL;bu#b2r3dJk`@m<<YURB%&K
znl}{kCM*2q|MK6gV&3-fPEne7X?zsj-t+LjhpisAc{t?Z3y*vHQkZvAXBD!;!v{rQ
zeW;L+6s&zr3gj+@f8t@cLiQ-QS3$nrr;saR^QnjZMe(00<bcQjHp;RN7R6usDYJ&6
z$zc_9%#6PDaKyt`l>eeM$2=S@!kP1x%)j&SJ?%ysS{griI8Jk&#`S5O@Nm+@1rL9D
z_|d~D^&x5aQ&A4*6!No&(;j~D@T&@*QSi5-G`}n4hZ}WP^{j_0CH|oz|5Wh2f@Y3n
z?nQ-Xq){@BzZK5Ne?0u_;Xf6;q+szhE-R!MlPMW!(LxX@k;avnQfZV{uPP{5M#0Q9
zu1a&4pZ^G!UzJV&uQJ!BaYZl~Sx(^$W~nq#u)Kne70a$uctr&(DOg!Sep{f3e?yvQ
z22eAN8;jzrrcq7d)fK!cjhhv6OByv4@_&+i{&ePTX&ieghq>KOc2w1`;CHBGwbH1q
zkU9!7P2KeWr1Z`-vQ=|Bq>+=xU1`K=Bx&58M*TF5G)(o$Jqi}2(Lf>hrjeUQO5yh@
zn0EzNmWui3|9_Nes9rTnqp?Et|1YJb@U(*b%1*;kxT~O76u()ijIV+Lb1sUH6he&<
zX%wc>GL2R$CakN!d%NC5;Z4(MrjX_evXmBA(kQdpI*kX5tU;SJ+NxLW6l|~H|JkvQ
zD%eTE&S{MOC1O_H(&(PXk~Eg4(IbtX%q@)}Y4l2?cN+Jr#7x#lA%m2p^;LMkH2N!K
zKv9~3X$(^M;G&rIcJzS4ugKWYG#*mH7t<J)#_%+ztKf(<Mk-`#8lx04Ucu1{j!}?x
zcvvB0(->D2!)zxge4>JrisC1yF-76*jQHUr3V&3=#}s^A!D$LI0ZH^k8Z**(GL5Iw
zm{%14bQ-gZ@R<skmBuqgF;v?*MfhBWJgeXpHGfXw&!;iJD9sB+67^D=9&Dr<zLLhP
zMQ@i5E4iQuUzo<CBK);978l_(%gZSC)N~)keXL01^)wEr@nsq-(^!?p)-<-Iu{w=4
zX}qJpTC3n2MLDcXV|^MM(%7hCuGq{?MQ^VJ-&Dc3(%4)S|F%M|wCi1kZ&C2QG~O>t
zLtboG_yGlXr1615K2&gzf*&ckGmVea*mVUzk-1w5@RnC%5`@p*H1?@ipD4(fPt(}1
z@Xv~3=KLsokk8XNSQK+8jW3FDw&F+{U!`#_jXzZ6*9!iW#!-bFOXHg~zD?sh6+D^7
z_X;_o;13EOSMW-cSr%LOql!7D;1xpsoW|)ieo-;MDfp{`PS<k$<adP=IirxXw0K2&
z`lpKdN5S(7UP$9Fg<MqdZw3Fa^ncU%?@Iisx|bAkxk#2u_{i{4*+&&0J5QG`=}WoF
z^ifJ7r4?jM8HHTs<7yw*DEwL<<rGp@!B1<;PKwVx$1<~23=}M{U<C!QQ?R0fOj$`G
zH*YL3f6uH?uFUm5Zcs5dDtL>JstT#5Ak$Y@$W02~?Eg<gYpCF@MQLg(<Tf9-E94FZ
zrzkD1<D;&RPCh#OsOLlT;c&3+<4zyhKJt9r=Of3*T|VmjxQEC+sk;@lT4faeQI5d|
zKJNALOwVlMd~$uf&_bkCnksqOd>G94v7v8vfzP8#G9~dwDnVl(x{n9cw}ubXM?s#<
z$MUhRg|K~WX(1RS&WE_?BkiM&kG4L1AAygiKAQOmRc^w^)@kWT;jxdz$A0xWb0AXa
z<Jt!bnkY!5XW#7RK3cHQ0XaL@6twiw%I8mt|JRDvq(hbLx}8eiG$T#q#y;8Y$mRJB
zl1i!eJ{X*|wxENLjtXb+=N6)ikFGvO`WWS-n~&~32KpG}qlb^4KKl76bA7!fmFxBL
z(T7u;ta`nDFu1N_y*{Pt_4QHb&U(`qJA~Hdy8V3&U=E$*9$r1d!9MQyQGT8_jI{Fc
zppUhu>JIhsZTouH81;tu5G!(tEP1frL+aJPEd&z`SNPVS>yGg8-#m>mqkW9=F=At8
z$)D;z?1ONekMTanlFn!9@_FW(dJ}w1^fArHbRUavsW-{TR3DE}LLRI)nbM^q8J|<B
z-lHmq>d)mepT{UL`^ph{oDBNDbobYbJ>g@9k0*UR<zv?`b@_@<uR&Q)`>1xdZmr?<
zW|DC?)O%rYy{VV$&SHBn)V*#&?i?R;eKZQtIKZ<$=J`17;};*#`FP&PCLeG3m`?%o
zvCPMEA20fNiJ#n<z0}9cK3?&$h_l6ll=Xn#ZM^%ckFQSEop&m00hMT8gN4k>NE#i<
zeT}W~QR3@drd;BqaH{**?;&BkQrdT)7F*%tb&8*l9c7bdSLd$uv4&N>I+xEXAFF*-
zpPkKT#O`QqQGA7#V!cYwPd4~yH!^#pf=6f6eUoOSZ_W|c#K&7o?>75*+s8W!|6IX$
zNq^>iTlSfXdDQ6le7sLd_OVU9{YXK^Z)Xt-|DY)5LxmhshH<Blk4b7DyM65O@rjR5
zee5ktxz9(-B0G8aL22jr`}nNrEpwRrL;e9DgKw7h>Y$20M8f`%|3y)n!#=)L_!avZ
zBll|`M|~WlcvsH8_CV%06i6RG_&Dw(tGxE0m->!U(NcWx<F|fy`Yi?F>BHU$A3sut
zz0^rE_prxj{0@)7Q$F27;-gb_f2QQO6nq%@E5G$|OMn^yey4$|oLw$JW`Hw3&iXj#
z;}5D;fU5%h>Epc5g=KiJ=ohG%g9`Xu_VJg(FBZl8?c*OZqH@l^R0<!L6wZ`Y2j<K`
zbmgmJ6u-(j#T6_OAS1xomVz-QRZOV>Z7b(oNl)Zz70I{P2DnDyyQ}0dSXSXo#xz+0
zkHg_qOL21m%2@dT6#}elDdx5m_ui0qU4V)KDyf*t3i8#bEd^l}6}(=-8x*`TKvjiQ
zQ;=z@E99mC!^`C`nB17nf@+@0zBRz@0q#&G)(mi)Lh5yK7QI-mR)E?8>IWD+tyrA^
zcZJ%Gt%RnKx(e1)uvja>S9b=;R^R6E6UHb=<ZhLQ$j?spJpmd7Aj0R~0J#cJDVV3=
zeG29)$TS53Px1XPJ&Vu-7_3Zy`?>xTzzR?pph<vQ&9ZHBwpsR^R-$TyloP-ue@TG`
zsdNB8K%nsZPB&sq7$6D|2RM6Aib2szBmsm<z+nGYVvNe9X@F({+6U+mpm~560a^!W
z6QE^)m90c8=FmKwPv35tgcsk<U>(}B`KmI+`?ruWgdJ7NE&;j**mh5<Q-IDatAp2|
zt#`h5s#}2W0eT1MLn{5)=z~_GM}VFRXSTi6w@yLM@9n(40s5)nAoZ5X`Ue=GV)!8w
z4-9Z{NPh439?MOBj~)o{V1OqA%m^?f;E_d4Qi&f5Ff70rRnOr8Mg$n8;zuettVIU1
zYF&`?P|b+QXcbv?X#T^LZH12uaITe@pz!f3ldoHekGIsH7@$mRu|?Hna)2o+!PEec
z1b8&SV=Cn|1^uxZk1K@rJlNKouJG!u1%popcq+i+080Wq9bjgFmjb*TU{-)<0z4Ps
z`2ZyK>;Q8D+})*Q<&6$2IhS34Dz1KOF)u*bIw?Ne+k5i^I-$*Bf)^F?LV%=8Nybo4
z;-UGks89HIp+a6&Z~;Z7wO}NlMFC!;AocP(wHEwpX@F$`RtH!UV7W@XLcv8{N)A__
zyiUPTG5mH_fX7wjCvWCe`mfYlsvhO1AZLAmH#es?uqM6IOg3{!KCAi$BLnCWj0kT9
z*c{-Y5W_;e9pIe+l|xhs@os=E0e+-$2=HEj_X8XX@I`>F6siEb1MCT~J;06t9|hPM
zVDvEUg8&}}c%ij;YNp0ur-@pH?YgLx_c8T-oVF_fW42Dw*0dIxGn~Bv_67Jf!2STA
z1XwXr`)|BfWuo?BYf*W)R(^u^8TtND^mzc{2Lhxg%E*J%&8af;EfciE0lp0ILxAG}
zjs*BBz_$Uu3-EP-qXCWubW4Wg<F!Y|YhSh&Eg#ih9<QBwx*Rh(GE%ELT2}9SR(OWC
zs#=~lTsyuwpD{lU(@q398KCAcZTeJ=@jtOdTG|jLL!1uq3$;GL`2fEL_>DCT@CWUG
zfNMu-b;oFDY5x@|Si^UxYHZY^30mv%+GEqT6HmzCg#dpAxD?<r<to760saZ_FPYe^
zSl6NHbFBr_@Z0~`ma(#iSx;)qp45tks5n9^9^&RlwN1md8Pl{9A+Bm87C)>JmI_fi
zM7fYBa#4oyA+8B=ZHTKwFaarW|9Fka!)EqPZA94+Bt>o;QGB|_U{(l(U`wwHB?ni`
z(8`CX5aQ$4csVGWF=SlD5S7&1CT+wgqqRP5#PuO=2oZz`L);jmYDhzkyF*k9Q9VSh
z5Vb?x#M*|qHAKx2yT)s`gi;1-gka^#k#SSB_IIalV`K;h?+B6qs5Z8ZnA1iqYa<>k
zo;TCXt`nkeh&w}Mho~2#>ojfCSWQ#umzddX7ps?}GPj0n6c36GxmiENJt6cEMu-L>
z?q$v)3PR+DNQKDbFK$ARAQXeeqqKLXX=7(e*0Vk&c*78lLNr#?X6D~Klzw<>HfjET
z8}Z!}jv3+>GusK_hL|%$v)Hs@njIo*oUDnbg6R-`2nuK8aoV&ATEj^avSLw)I7Fuq
zokJucM2J=)T8AhM(IiB(5Y72^qEvyVAzm!uogSs#@ubG$T999=+**^QJTQiBZxf<z
zi1r~phe$bTr;27<C?w<>o7OSJkkMMrmc_nkBUraCq+W=AA^L}4w%tPX2+=b{cQWXc
zVyq!~(JMr6Rfj$y7(-!RGD4E5Z;0PUXcTYeGa$sk5D$d>UxVc1pirvqU{yNn#;@)V
zrM7l#m^UQEP(_(ZRm$)~3IJ(!=uvHWh!G*a3~?mH$PlAKEN3Q^t`K8F%qC$&JRD+d
zh{sut5aU9O4>38!6t<{@HzCBt5R+6r87x0Z^G8cI5uZw8o=er~RO~TI2(y}{JxU5I
zA*niDJ1|Q7b&57UM4czJCqq0HqWELl6KsVNepY_qI4J;6E7^D^#LN)0l+6FC2*_qq
zW=ggdb3;5EVqu6yA?Ag6F2qYAUJmhmi1{I?zb~@YPiilOAnTbSwUt2%z!Q&YuY`D2
ziR<o(lDUjrpvZOKxzr79#cR}7Mfs(wbtIz}Vu`8`NylfIqBE8E^$;sVY!9&`#HtXh
zLu?GODa4u(YgG>GROP8GmxpQJ4cFF(*r1x(ca~JWdq!(-gm{xu8sfbWZ-v;*^uLvU
zn~Kv`=)aXF(P*V<x8GqeKv}Jn$Ep(2e$qa_A7X2WZORsH7$?cXwopet2=QTvPebev
z@llAKA@+pWOG}~*&aM!<DLmt(4WtcW5wn%X?F&I0`w1!8QRhQZVOihJ(mrGLMrj8_
z913wD#OJF1RC7xB8?&`9LL63h;E(3T_z6Xkr2gj#?W+)9)A~g`osOd+j)k}o;;#_j
zP)$PoOamU`yAa=pI1%Dxh#wTGN!#NzU(;p9g0_OeA48l9@skn&=1;psb)Xhd!WX=q
z_e+RhL!1e5R#E#m5@d>2VzhkqyZVGwIv3)P5a*Sl_){rqW(kiLp7o?^7oRN4x)|c`
z5G5jHMEEDfzacJ#xE$g?MH5O6NkK8DaVF!6MJOIg!?jUyhYHJzm5fj-LYW9xMJOF%
z)A4d6s^&4CPmi`D9Gbp50%^rUS@efbYGosoi+DI6w?)W|kQJeFgenmbp?rkvBAhAi
zQB$T@E>j_rW|_=l9aw>i5h_Jso%u}es9zu9h6vRo+!V>S-^kA=Xw?*6HNt&$r2JHz
z7O@&PN4SM0ep2k#2&3DIC)<h|ku(~7^;%oO9)ZogJ;EIk>PNUILahk3BWMxsj8I3l
zw{C=bk?izo|Cw#`X2qz&r>Du9WJkz}a91QPCnK3B6WksBPnKHGa2iCom-UH|A0anF
zD&lXWVeiRgFW=)4DYvwxwHC{6g*g;Nyrh7}OfXez7|E`d$h4v94MWqL+lp$H^2`Vp
zGfa@1z>eTB+ZY8g+z4KTw<Ek0AsxYwFd@Rk2tkA}LZ1kIBSaD62yG&?jgUkT5t>J6
zL4ub~6-H<pp;?4a+lnR;#+FEp_@?o1ZAIyJqFhk!#S*EO%+@Su6`?h2)lL+&6NT+W
zrw!4D^0~d+iFOg%N9Y!zdxQ=VI<h8zWp^e`B0StqaQ?fhotWKD9GIANiO@B|j&|ak
zc4FK@{rbzfJtFjs&?`c3A`A5>E4T0b)P;89fx}Vx_Ttx_`uvPkzX<&!42du_!hi?^
z$&?5WMEJOT?w|;RBh+m#w9H%vnX}hkJQ(4>UAoh$pj~@eI&1z=gkj`<gfS7;W~7Ek
z7#U$ygb|d$*YvHs_4#E|b0;QD9Goi{(q24FB19M;;kEW+T6-~0HNUV#&i5H92AS;b
z_F__m$q`<O@M?r95vE3XCc<nAZG=Z7JP~0=gvTO09${L9=@i}eV)jD)WP5R`y{Obd
z+}S}~mo6X$o{aERgr_6SjPO<Il+!`%s+lFqq`GtvERki+Ql)P>7R`w;H^Te~FGM`I
zjCm9@k|HBj{i@W%9b~PT{`m+m&C1_fB1OoU7a5H3eg`qLgIL-@9O@umjzIWJ2eBZ+
z!U!uPtctLREse08dJ$o9ge7Fh?EIxv?T*6#Ag|g~=d1Pw%OW&fq*w1K?(Qf?f2<E$
zqQA~I*2vj-OOBP9yE?*}2pb}7B!wfai?BX|dsX8P7V1Y1rI?JB*_xHxE+e%m!W&ev
z3b}7Zc$4zkQ4H@Wm|N$L;?H!!W-_{Q0hvCdqj)#M7P2zJr3mk_6%oFR@I7@rq6bkN
zi12xY?G&d7dm`+O@IizRDHRcR@xx-Nk0R_ONoVFS>?pQ$6rXhzg;%A1?I><<TyS+K
zv75p$C%;6o)IPE%!mmxU_w%cr`lr;vPJ*I%^4e6*PU5TG`ezYVmq`&hNYXLG2w&5t
zMK~Pc%Lqp(mL*eU92>~`f4nAY-bs}0P{0g(8U;rq9E<P`WpAfW;T*j#nsKh++XyWe
z=zQKd+4zSD$0MALa4y1$2q#&S2){-6F~TX@oCv2W{GG)3zBxZpqdSQ^^n!N|rPent
zC~X&%Yo7fJ&1v&&()o8PGVSo3{F9x;yiQ_8C$XoKs8J&IM}$8k-X6kV5zZ^cJUb_!
z$u4&i<E-3^5&ov-kMM7V3LOh5-c>q_`kh7CSzLo$((vl?xtAjpi*a*|TVfQCQ6fh9
zn0Jnl5u;>`t72Roqg0I2F-CM2WL&w8k#7`q?JUZ~p#HLMk2ALzWn+|!LHyd7e=XOE
zWX5>!zuc@Ch*2*iwQrYB$e33<i#I!q>ta-laYKw7V^oS!IY#?EdX*TTGUqw@KdBn-
zZd`DEjM|eNB2{Bli$Ox&6!RiO!Jgu&>M@Qk)Uz5(UX<!0X;>r1tugM5ksYIEjN4+=
ziBUJk?J@3%QHxnIlP<Cq-)@Nb)klpAau@4MyJX+hMUbuaVrVgfE+TJMJ|&qtlDSCF
ziE&qqd%5Hn<L(&sV>F2Ia2N6GtbAJ0dtxvpbLiPcJkv!gX^G3ZwGO3HG4f(8>mnZ7
zrQa80{jtV3FVx@dA{xeM6k}72H)7taf*xZy2^+(RVKOTcA%+#hj*-L=F&rBI7(Qzi
z;~)!dn(f6%$GC5{l<fy;R4Zq*;UO7!IX8-Nx{Ju@D&klQB&{^HqcBF37%gM8iqSMi
zvlz`|w1`o)tEk^qu#MEj#vke=Mch@^zjcf@v9$0#x{9_jC?`)mm}dR=T${=(7Ilcx
zF-G5*e#Ox#M&}saWAup8MKQfADbrQda0=pudbe0wX<FlFnQe?-l%*wl?^srNRaY@6
zGk0fK(TA+e%4MTEyy5hZF(Af+F^0q#7-LY3`(r#1V{nWUUB!Q0MTKsH2rFExo5<G-
zPIr-C4UO?o43;=7=8=_x#@&Q|vhhs~^ICTkgS&~5F-FCh6Jst35@Sq^=`o&QC1Z?@
zF(t;-7~?2ZF($^CM0swSeW889^loATSym!-zEQ!e-NeHaoyjqNK3mYxDWFb0664Vr
zk5Sag#BQQkr-CEh#My3QT8xpGa_{RdX?RU{QKP$<5#z}ivtm3$7IYU+#dtc#OtN5R
ze#1%5l0`acOFGaH%_a?trP$ljgbwH~Xl<U2F)zkzF&4*oF2?gQUW)N@jQOl*ckx1u
z7pXhzBeFio&!N$HzPtExR{kq7UX8I(aeqO~W8S%IyNhr4>c3pdW#)@weB52sPw8yt
zk{C;4td6mUQW_&G#)=rPlhobC@)-Gz3$7`ZT1nzqxvbc#7?-;XYTWV93m9BWQpec9
z4?oe@$M|e@l<px)l}KIRL*(=jYn_6PF$ig1-i+~9jPo%r#Mn%sig6&u=P}-i@h&S9
zV^@qVv=T8si1A^J_hW3Obj?p~kFkw<XGzt5utUMwg?iT>;@s@~9Wf5woHMM4_$bCs
z+NiGL;^#8WOD7xCD3KbwW9*>~iLpP%UM0Pss0^R#A@;@ivt(*%5AjZy?0d6vKV!{1
zio-nw*}Aod*t$qR$joE>L|(`EBF5nuCu95=^VS=F?;(DOaXiM67+=Nsnz~sgHD<gs
z<5KQXg)?|eA>YLKwkYPi7~d;=?s$g@PAD^2rl<HYBlSx0)Zg`D8oCZ<L5-f`6wO6X
z!H)QJj9*w>j5Cx*s%lR`t@%wM96Jr@DaQ8{XJed;@dum3y3NX;-BWM~M}xot0JURf
zPx0@%=&u+TDF6wsPw;n)e`v-NT$A8mY9;BGpkyL7@e*x*f)WWX$0(M_K_GLW%#a1+
zyn+vV3fh6^cjWz3Bd1h?(h15Wcz3O|oV`k<u1chM&=h~wQ;t2ZO;9!g5|mF+E&;py
z%mi5pXcaH+)z9@5btX6zLh`6Wg6k4gN>DjLMb@g9sL@N%Am6o1jt{3#b}H`CEAQ4>
zlN%D;nBa~CwGvcKP%Xi&32G*&p5UegC)Px_B)B<2K`+s=mlQl|7VF0N8VNRyb4tw0
zxh+AzUgGvdc1e?aiRXKXExiQ$!P*JxB*;#XlknU!>Ls`{;eR=Ev;^9yghKwNUO<HQ
zlS9O&`}DgK+@0W5FL6(T`Uw`TkJy)e)=M-i%%zdf*bp^HFtc=O$+0MvAdfi<<OtlC
zAV0y11h2D_2^uCCl3-|pMhO}xXq%v20zH9|AW0w+m<g-|eu9AG{{&6~k4#BWyti-@
zyxFmU=5*zf`1;<mBgpM79-H7ipy#qVAsd(=PB0p|959qUl=@(H{?o`UUOZKpph<$3
z30fs+nxI*N774mu&Lw%9vwDTOuYVgg=`9-X)fw5Zw`iS!YThQnl-`17zxyXT>2S#@
zXrG`%f?f%FC+J8xJHHdTOp(aS<=ZaIGeNfm-4pb`)uZkg%g<pN3Q`YBT7vbe&hvYV
zUi);`uup=%2?iz@#8&Uo`%wssrTVk6mvi^_7T@<41Bh>kF7y_I$rrQWfdmgGxIe+u
zU9umv3OHV6dgf1SPf|RTU|51D6Fik*c!CiLrY3kK!N>%o5{yqUfs{!wCc(oA#wN(@
zBMJD7TR;muF2U`6#FE$af<Ch6I+K~(w2zpWU{Zp~3HtOA5BCvQUzM7Y;OB1|cXJCK
z_)wqQM?9L~u>{j7IT<O6N2MLb9w(Rk2uk?&K4N-;C&<t;DGtVt_7OAK{1Pcj<I@z9
z1TQ6cIl(NdMuK?>o=Y%0!5r#oAMq@C<P>n|$T8mBM9vpzSE(|mZq0c<!F*NR3#8TM
z-0S+vsZiCQ3Rr;`ReW||@k)YMDVzyjOTcbrL4t(|?z<|*IUUC;VP8R3E>5r{!Lo$j
zHFG$!T1qDNl?^9B%nk*#3Ck1E($XBQOt6Z?r`RW0onTFZj}q)mur|TE1X~ik$95&y
zK*>z-R)URGx&&`f{hMdgvJq0ESdB8@M#MKKcss#6G$08$BV){6rBh6>c6{!rzS6co
z)mKzlki4H@TY~Lm_p!!XS=GK`OJ6yC*pc9a1Rtu*e^?hWTguo&Z#a6%)W->SB{-Pi
zP=ehF_9XZu!KVrKk_%b6`x2x|q=<apSB~3Xy_~y0!Dk5$sH}eJD>!ba2665{<MTQ7
zC@c5&ozWKw4k!2~!M6#%OmHN@(FDiHkp!jsiLVnmRLJ{8=ZuL6Re<KD{b4yU<}~oT
z1mDv-kp&5UNH`?R<{0&Of?JT=bWT3oGX7Y!2)Wg>a<A)_L*4m_qDAW}P)6W%f?pE+
zmEa<aNbp;Nvt$R=%`2$UPyC+X3^mRvNc9u9&dMk9M}j|@c&~n*Hl&}R0q@aI%Ju~s
z#&&`ah3D@C|IorGC?@1^?qBk2R{o^~|IsMT%;yw<K}tBkDlYK(y;&IoC53EY2_XmY
zG$W-1M)wod=H#<GAkt+>&Q$_e3*0Pl3-c7XR^WPp8wAP<loQAl$P$>@Pf)Y=nNqZ}
z>5^6Ozc2;aHF7xGEH6+&fC!)K6jD*aN(xpMs8aNn7Vk!ZsshynsteiQ?b8dE^^>EW
zYd(?0zln7~?pD?68UnWp)E1~CP*dPGf!hV{U~U@|>e11D;;T9N6rPNQdM$yohf){%
ziD6x`>k8Bp;24Q>mMS%JG=Vz>om~`goSE5Q)b1~-dY8c60`mo45U4M}A6oVi=qu1b
z;9h}5KnUatqy%gMM<9>JpG^?Z1@igm1qA{P1$s?!^!}m|iB={xxW8O6Xw_ei7^i1t
z{9zOr0;T}T%h`q{P@^!HPmB2}SHKf=DuYnq@sg>uz@82TzQ7~>rATv5N)trFMgkok
zabkg2`U?g*UF9gQP@suGJAw8BO$C|>v=nG1<ixo-8=jGBA@K7Ahm?G)zu4bjbjr%u
zx<_v<&_-av0{vuv(N=)77(QHb=^)Tipu0d1fldOQSzCdw0>uW18wZFt&4LC41n0|z
z14K8$TMXqmoIbEqADS-c$+iphCJi%E3pz@XU_6^iE$%1KUtp5JWPt$!0|iD1j1(9o
zFj(M0fgu9-3pre&t)L-&fcXrNL>oUq4C3^h)e{&d<lJ!105P0xoS9GY*kBhhG2tjm
zFW(AG5Evuyu)tlDov{L3PFXcTh!Uxt1H?Fi;{ybH@c#zLIrv}C<nK!|CJJ!m!!h|3
zfvEydQ>00Afky>q2t3Ia?b9C<m?kitd{HV>aiAPv)3`k$pbZop8a3V@aE3)Q#a{I(
zMvh9F4CJ6Lo+a>%z+8c6DN6$d$2_yi@iM9L1H~LRaCZLOfnuJJ9mjJ5&kNjCK9?h$
z;gg+}1Eqqqb9qtVC4mFfS%H_ybb-wRZwtIi#tEztcwJzjz#@Sq0!sy6qb{6myjWo8
zK=DhN)VJduQmpf2XBow{r#LZCEEkxvPv?r0^P2weK(SI_mB2=UO#-V0*03@H8wA!0
ztfR3~!>tN~q;`-O^#%z}#+^Z;>mV^^kW|mb-!y(h;7x(IgzVfoo}4vE)|}(*cLd%Q
z_*h_<z!n-AfgJ)L2)r+_Rbaak%cX<FmO+Aca+?4pna!uHa-jYp%?O(y@Wmier(}wQ
zJ;r~0tT9K_9Q^F2Y6$ET_(WhYA4-}klp{I{{IINyPX+c1d?w`Bb$C|pm5#6UU~%(c
zaZuopz!_QwW-f48;CsQ}2jfeDBLc?+zELvvmB7~mM+J<UIYVyEp#pw5)w$<Wo$F3q
z75P@+I~u?RI!jzI*&#7GI6p3MLf}V%Q#6mwvrkfHil<V81?L4M$WK&23Xi~VwEr|j
zl>gUsR*YtiByBQS&@%k4q>GC!jQnm#9%If4{2_2j;4<kWa9-e|z~5BH%efaQ7$+P5
zMJXCAN8RHFi`j$4Ka_{TbgYdJ1`Cd1{uLmk*<Y+C;Kd42ybxCx;+jG=Rw?BDeUvIh
zh6;W^STe43A<7iuszNzUNEtC>%0D9O|My@i1J@Sf<SxBzp==;mDkuQu?-%T*vkHMi
zJl71*H$(YCR4BynO>m|Ot}8^vLYytcxk6MbMCC#ZE5z_ZR4JrO8Dtm!KdQb1N{T92
zdy%9l>_<=#K}8T@cNl^&yTn1<VHXy9I#23AR+OA`&N)jmq8Km-L{SWwFc3uq6a$Kw
zML|Fm{;zA_yz~BZ`qcSu-MV$_)~%}U*`3>i=5bsb55B|JP$)s&IIfGMUL5t~m>+GP
zKTNq^K<jn|H)LgQ6wn}!o3flqUCTFH(YjF_H^(vZ+EQMP1>7REiO{BT<O#?ZN|}&=
zW^wEv6lJqT94+HW#*vDnRUEg*Q4~ikj@EIsiKBfS9pZ?@Q4mLA9Bt!h*C#e;P3*r7
zJ-s85c5xgIM=Q>cEgB!Yc&xDc;#kKxI>m8Y99?++i(r`Y*DKMlro=kOkshY(3KeYg
zW4Fig+u2Slk4Dn%d(Pchuzy}rS9(5<o^dE~l*G|3j?y@K#4){H<ZPti=P|MFajeK`
z9yn@z?6(y?sCLi#9`QI|zW^%^I}R<*7mddBI1Fm|J95pL?q(b>eGyqSOtJGyM-5ZH
zUEeb@Gxlw$Aa*8_5C^_}u6sI;OdNN_ac3M(9Bv%Fmc{zSF}hEoM;ynOkpg!>%xBkt
z*!)Z3-f`5-?cAdva&=B~a{9*6FOL3ke1AU7A>(qI4`3Ly@5$bQaoiQh&^U&Pw!1~u
zkT?c0ByyT_mchcOszYByYEO<)?eI9LVHB6MKQe-QL=O~1xa4E|BAjcq4E!)weq0>m
z<9IrbXX2O;$HX{R$FU}kNpVb$V;;jMjwx|Wjblz6mkn2XeG!=!$ILip(Vub5;Ch$0
z-ZV@p-#4~tN$b~!DYN7FahUS=l-SA1u}_C7bGh&@B70kQC0!85LV7-qm2oVJW7@13
zucdL^*e<d-jwQmm@LlAU>d|G)jsflKSL?i7m;`L@THkXOLug)6$NiD<UqtSSW38C<
zL>%jwIB~vc0uRTrA&!l4JRtMl8^@O6vHRk<pZT(;$92P%N2bNd;ni$o&j+RVA)$8-
zi?x^*;{qRv<Iy-C6V02MS?gNU^2g^EwK*H%G9Tye%#F1ku26D|$UG_ZDWMNk3qKpj
zbBqUWP#n+4@j@Is<9LU~f$<Z^_BdXPV{05Q$FVJrSK|2jq3FBgVikJD?rBt7p?PWV
z!O>Ua81+iKfsIPJS+B>jBaXM3r1Og2U?h)^y&1<_5^s@V(H3XBhZ~npJl$Pi-Q)0)
zNdG3K@5b?79Q&Azal9YL2XTB7$8J`PHU+!l_*g>X!#F;owe1S(uJ1wqv`E2Q)jD6>
zJGO_}+NR*>xbl1BXj(J+-|(n9oL?C(I1tCDaU6={^EiJvGIEgBuTkk|jJ>`EqgTZC
z-&{IiZmc9ya5#>m457iXBXQ&}iS-|@+%lm3eH(gqTogMN$5$+Rah&9;?}~jL$3Im&
zACKc30pBvfdc}TQ+L~RwzN3fZIKc=UuCPfwZGF!lSq!Un{w0oI<M@eA<AKl-vEhSa
z&3i|W504W3CYt|XiD+N&yI@8L@hL7gTw1v>aypJPari1<G=ab4ILkGv$Ww7Hj`J+A
zDy~-XPaGFm%vDrU@oyae(Mu}ItGF0PgF&%!YCtbZjaoNc$&n`ai1^bp;kTNVvVsv*
zP*HzojLpg_E>{5+)m2=fq6+mdja60g!f@qE!B?rE{Kvx;Dj7H=7*b6IX|B)#1(6ye
zM){g5-aZ<6vRNrL)2r90sIB4#6*sD=qvBf8Q(r}08F-x<#0ibrJ}gR5PYrGj1lOzh
zCTnT~8FG_~hBAb`jnts_-mIdrir4Z>8|RhYLPrf(cr{Vc`)qfD>LZjrt9#_D2&ssv
z=&GWbim-~dDqmWH<|<mKXrm&cqQjP=mMSjIjoqqZ>VjA+6^zm*Bb0xdmbO;$<g!@9
zMX>^UCa;tx6^b#<hDXZ{4-9V4;nH=RijFEesfco-;nA<65jx?g@i9hzXBC}CD7<$R
zp6lL4#qBB>{6#88jZheG{R;}xBa~tlB`P!(Ivt{-yNaGF6cwc^7LHIt2O>RG?B3Ik
zp<XyF)@X1nu7ZH~5tRxD27pbj+E8JtNT^7vu%zp{UNKt*1s)lp5cBSH-;7vFg`>iy
za}Gq(LNlZzqO1wjQ};-OIz77gXk_ZpSZ@`5RBTr9sEWQS`l*<vV!Fz2=XUO|Vz7!K
zDh8;yL&g1HMDA2^w+i0c2GWL&J?0#a+@*q)U4vA-J155d-7!KLs$!Um@hT>$7_MT3
ziqR^@s2C|@Uu{z`O2w){u?2;ZVZ)=1Y7~y8{P5^F75^=djb9un;k9o-Y@&)uDtM!u
zqJnqW3e#d7J6XlS5z5v};i)P(>FumA^NMDun5kl!isfR@EHP%0irH*(Qn7ZPiuo%3
z7@<6HDa=_G(D^EeAM6!tJ0!*>a3QQhi&ZRP0I%;+Wu&rH^sN1>`wBW)#Re4{X}K`h
zsJMq-niN|tW_+}=2fe*k6s{8+sF^y~3x}HTWoWf2xSvfG_c7W>D!15$T;_u+9#ZkJ
zSjc9FkqRBVN&G|bNOm~g^_YssReZuwQSpR|Eh@G%K^Vg-o>K8V(^<vSDxQ(qpH;!B
zIq%`}!Nxr&dX}B(PCYNGcu55xU0zYKRmIEV{B<=8Hy)1AliZqZT;}0mYuJ31`?xs9
z9e-WL4i)dIcwfaED&AxrP_dIatAY+({c<}BQ<4MUp?}n1Q|J(?D%;|h*7x{81(*Dh
zSi-JdDn69W<!}mr%)}WPWn|LkJu3FHM5y>y#XhQ1@i}XP3O-RB;O?vVOz@{t7Pjtg
zXOC2dj#Lgws54F4ZRl}C#Zj(N#n-Gkd~iJ*iTvID7z@JR-M^IPUw6lN(cxuH(!rx+
z$C=}Qb^k%dNfmU+cPhSDaY8U9*RSj`d!+IsoikGTMa8cwep2zX3Z@=|lT3o&7;+<n
zjOOk$<9?@b?<fcUsp2n&pN0h*POCV>?9*_IhQH|n70^&!!_E~&=U5Y(mR8nqp7oYl
zd`syC)-Dw}8vf-*ERFpq%!@*wUmBx8IW6E<)bP?s<uVQBrTM_}SOo#>`f6~jlHd`A
z1#Dif;R+2U=fhQmSyjW88s<)oy;fLomBwG)itXbXM=I4c<ca`sa!KnN8ft2|PD4En
zTk}eH6%>%x(m-&vhHEs`7F<WewHkVz50k&TMzpRl={gG6*KoZCbw;eAh8r}@8Xdby
znm1~wQCQHSXU_&24z!I_9L1k4E}${f=foOmxLE_iq$#obqm(8ZnrbjLSQ_#)<ZI}p
zA*vyyp-W*wOAW0wG}G`;<I>q@BVhr}HMG#cCYdzjRt>F%-%djt4UuY{3#B)rp+F1n
zP2_AYEl+uZw$gRq?sn}pbkNX|<{c_+u)4?QNijY%(3A94XAQS&DAI77xUS78rHcky
zd&BW+F%4Zc^w7{#x{8H%qvy#PrA%oXX|W^PUBfqnVx=0`9N4yiyGH$r22F#mfjBNy
z724<i0z&}#oSoJZ*cuWVhH4n5A*msyp|6I18qyjDj#7Ae0y07!4Q^R;OpIMVcS=KV
z4ScftYiF1rK>A28Lzlh%HIQ>BIRXX<y+i1scyo5$C3s2I&Ub4V#Otr_gSp+If+2!=
zui;Y@Gh(=g5gI1aEgD8@7^Q(j#%dVNaOxE!=8!QO-fLVsZIrTMSil*lVcXo;cnuQ-
z{B*d0&B^qVh8Y@WYM818**aZRP1CSul(KegP{Vo8BAvyJ(=d-)b0ES@oWt<ef}Fj&
zUu^H$$Wx;fe&DLMKf>OH8Ww4&rXyF!VrtXyiN-e?VX4NKAmJ4auWDGXVTFcAG;G$e
zQo||@_iDIL!)n^Ir`<go)(Tjo;Rma5^O)E=4eJGO6#mIU(Z1p62JTBZ%3d}(s!spd
z{Td$7@Sw;vK3?r14P<ic!*o}V_M3#yArz+CM>RaA;du=&Xn0)16B?e<@U-aMqJhe(
z;YkhekBCtThfvQm8lKa@>7EraDq+CT0P5uRqA<4#eMzQf*UK81W!p5|xu;#()Y~<@
zMztC~klcJ-=$jgLXu)B$H>5e{Xf>woTN>VG1rz?eLf?@>!N49{Bl@05GH4IJ5M}yY
zxjgoDz0zG8KGaaLU4++10zQ@;WOI*(z4RgN*RW5+ehpt~_?k*Ie99=gC-#Mg@6SdK
zGJOgP4r%yI^#41p`Lw>V&ovy@a74rQGm)brd~{rpEc0qcIdFa3f-kv2Z3~WR_yf_}
zy`$f-cJ+>aPY?HreJl95(C>u4JxZZ4uM^TdcW3NJ4L@l(tKpo6pEdlV;hmMSzi9a=
z<yS6zwDO0>zr*8qF`#eLQtxPl2CN(sJ*DAK4Q!Ih=4lQ5$nfCCf-}4eFcLNv(BLMc
zmGdl68p`RoOb-MuXt*en|7xHf>i<ugob-|a%H-&QT7vRAD(JXe#}#^DPemP^sIus(
zqzC1TOo~ysijFJw!1Ag(dLeq1$afj7u!~K4k`(;okB+pCjE)*QYU;REM{6DY*j`IV
z106T%xLU_GI%?~vqobaV`Z}%^0VY>nJ@};0r#Q-Arw0!q1iY@NwWF0AXu$H=rt3;K
z&5PZr2Y(uxSP*Hbqmhn09r-$L*6~YW!7U<8na0wjOcNa+p6=dM_-s-GH$9}InU1gy
zVvcGqGA(qp)G>avLV1dP-?pHY9@L8a4+Lhk(Gk&6qNAIR0v&}qZqw044+=|L9qn~=
z(9up0?Dw0ruRkHyQOEM(v8b$$pp%XjqZI;%R%c=I;pBE5MIsi{QMpg7$B-z8Q>?2n
zi*=C0zfEyecO9iV-ap&jAX7(A9lDMuR`pbL#09829viKkYgfPrHa-OUIn6a4vq!`@
zmVaj9bCjvW(qZetgIrP!NQiz4a275wr3X*=1da|@$2huzPSfG*xLd~{?z<j5k@nHi
zR|hBREtJap>FBRxfQ~zKT&P#dKj82QJh&Gyy3TgLOUK1aVS<4I_}3v`4O@i=>lnfy
z$?eRlK2$Uh(=lAfn{$iE8NpzX;bU}+(!r;9UZZJMPV@i4eF_Q2>YysRbb^kFIu`0!
zq+^nf$vWoh_<db$ijG4^Bhz)v&@ok%PouV8G5&3Ybf%73^lGGle_xud2ltmb4AGqC
z1UVC9w3$=P6V7}c{G38JF3@p4R6sv0*0F?p%9Ig-rQ9;nzf8y5qZKOQs_CL}cgI%g
zSgqq8>E-HZ73msje%&{`Hp^cprhZW+x>3iybh3$lChlV*=-6!FQ3DU?cu>dRI?i&j
zV?qz<_(<mq+^|W<!#W<Jn2r~8yr|<*27`{Lb$mWKv|wiFaUEMIJT1Ua=pg-cX6Q-b
zkolAV9)x*@8BrnkSsl-b%#!O0pJy)53C$i8+PgaR68%Oe=y*d9juE}AW1Egw7<*a{
zoBU4ut2$oO@j7>5dT2ZCnGxa%1%54mU-{fx6>}HO3cac0EgkRbc#kg9gHsjn=qMf+
z+DYN*!4apEi$W{;7MXFO_jRnF8rntq6~TA%KVY>Pt?(?&DdwgQo(m)Y6CJyCe5>QQ
zjy*c|>gYTv^bHe`sWCouSjQ0^`&q;oS~?EuNX-g;uH!Quea3|jQEWko;M?V)#^Xc8
z9OA499p#>0SIFxt&Zy%{*0Cj_V~jB~=ggAe@CBP+Gp)u1m|{E^!%4rRPv(Yx(($v7
z?**UGgYVe$`a#D@9Y3-bO$eG?3y;J6!gY-f{l@sz@v9Dgcby(1CG!s*f9m*4$0<5?
zcEI7+;7L#GJS7^8;#I-OIickcoMR~Jm}6kBfq$5K^niie4E(F(KL)dbdIm1)xTN#X
z^{8eb$3Qs)l?+riaG8M%6R8Rnjo?I8c>}#B1}EAcET4Pl_|U;|L8xF-=yC&B7^q@^
zn5TGnIO0kJi$;g8qLMMenV=xRCWLY+V4#kHYYkL4P{Tki16La`r-rVX9GqFJX#`*U
zZ^z>*M&PR_H-~B);J`oSJN%hdp+yrzKd3o%4g4`VM8kHE4b?Yry@7lKAp<uUxY0l(
znrfhdftw686f+n?^bdsz7+}G1Cj++_XkwtLffas^J3VmwJL5x*mlQRb9$G&slxN_|
zF`?mOL(L3?4YW4U#z1oeEey0WaH|oVMBwHYjtR9iz>urFGQ=YfRKh84w{ju|3JkO}
z(B42Hoii`gmZK&H+se)DJ0>)8R;Yt`HELk^giuEVoRn850krm;C4tAf7`WX)9|L_2
z6d8ya&<z*{x*8}pctjUH4a^@KDlyQ_Kz9Q?XuuOIw1N9xDz2lFO@~Vr191Z?^~j>Q
zO^s%Uc25dv!lA3lHw{<@90RTqoPe+mBn_k_01`%U+K4;LGf-&*86(KbrqhCSAZ5CF
z1_sRx`3w)*b6HpJIQNd;;EH-1L3yz!g!&oiZ}4S<7-L|7fjbNgHZa7%odyOPxXZxZ
z1`dr5Z837%jSoUSy&yEmz`;3z9wz(T<)NVlh8Y-PV5C^Z>>h3eWrRm^NIOjkjiSJ`
zV51ox_l^mTH89S=WCK$Sj5jdBz(fO+IDAnM2Bgd;Zhe<&p*a<E8BS9TOfxXkz$^ni
z;Kt2mxtq>WV?r}HYD#eEqekuA*^&$Kxk1%h`gd?{aUP?{z)F#vPqzzLD0Gof$}Bdp
zMDS9f%Y-f$T32#pm4Vd;9^{H14XrV7kAV#aHp>34HPCpBvQA>P)!b0s`Jwd&_Kyj5
z9;47*_Zq<|nEOPM%=@MJv7Yk)T|GI7d@6iMJhMsY!$KbsF}mw91CJZ1YvMW+PZ+q*
z&v}dCErx9|@T7sK3_LB(mxOXH&j@%{=yO7!7y5$G7lr1SIa>|9EO?vH*A2WP;8mg9
zg}x?~CsL_)hu}AazA3cO3-~(?yu<Qh;z|?m8hFpZj|P4+@V<c$3>-Fa#K0~CAF_HF
z*k|A)10Ngs#K3OJ2x?$>Fw6ExHDJL!=jP0w8agyLwBNu1#+ZT6WV%l!R<B}&w=7^#
z9g^JqoEag*nMzdk^fkFh4SZqXTLZ@pd}-jAfv*gF&3ZCD&^&%sP+>@UhU*)S9iwm{
zi{W=haJKP#11Eyz<PiVBuw+de9n?(Hlbm-|i2M7qfnQjw8RQ0jHSim=&%kL()!$kA
z44g8c)y^$v=KN`Z3*iB0Y9nCepE2;afwKnAart9IE2K)(ehQx#1KyTXY@HW}{x$F)
zOOT05CN3Jd#L91?oEcPLR;sEMa(T*$W#KXt<xNyDgDmK_u(ZbFP=n73crkY>n?d$n
zZh~jfID}>Y3KQdMSLWd<3S1>aII5P3s)DO!Ik_f~#nlDWFi|th=}`q&3%(}HscoW8
z7GEoXM=$G{sBc1%=Jh6SFww?D#Kesz8ko4nL=!W(72YKDW|Md4pxH<$0Sj!0*`dbL
zWVvW+g17jVOo7><JQMlS44DX<Xl@3cY$lv$vw{bJ7H05xut?A0**Z2EDy>Z1YT~Zh
zq1I+_Se3_$NjXb_iKvOrCJIfoHPOz**fB~66RaEU&EOy#Wq91LW7eupW^lrn2dHl|
z(Zxiui4qgHGx8?{vvd_uBzqL2k}<&%X`XFlS2q*gP4qB>^LLM~2$h<_{hGMx>d>hb
z!2#i(BEVCPaT6*RSg%ksVVg(@)=d~Dw51_an(Vdc+p7zCo-}D9Wx_S#$?Rzpj?6-z
zWK5jba+pV)h{pzf5$I)NFz+l&gJZk|z3D3xd|Kem^r1ze{w4;Pe6b1oS-69I6F-^w
z*~CD4&%{S2J~nZ;i9se7nOIC!CWe@pYGRs+p(chgz}Pi9G~C1pI+L3s6R}W_G%?By
zZlj}3j4{EZg`AyD0v>1P$va9iGRK>kz?d;H$;4z6Z;T5~5npW{!>@FN-Wa2BExfZZ
zB&M5~X=0Xa%?y(%AEfqd6U}%tGBMA@9KkHG<jm*PQ-kDPDB2d7!J%Mo0XLerj3wMG
z6I)C?X=0g)<tFYo@qmdHCRUnQ$FU|>afpd~OswSs=LEUT+*w1P@XYmsAWnFum__WN
z?d>+0*l6<YQn=5=<FkTOw+tAX!Q7-DD9KZk51M$$#3Lp)o591<CStikJj~^+2#(N_
z)_FPSQEFh!n|RC&9<&%9G?+I91`M_F?Br7>o;I=F#A_y=G4ZU4mrQJxEqKnv^CsU<
z6?{_Q69umqxjXYid=gkRIiP&#ec8k-CSEnMjae`$s1jQj2NrT)0;eqsy>4QMiFa7o
zxfdqhH1W2Hoo4XZ`IZ^HQGt8iX+`j`N2}=14fP87So@xd_f70F@u3+!eX;s|zzQ%g
z(9eUY&sNOk?0kmd4f+!%uZg4FJ`;OPoZ+cqldr>)gTS0oZsG?_R2ftHnTbOT8^H&K
zGOfthw48sYhM3x)n>Z{vencoaC5wVR`qIRAQiYBQ{YvQ9LcbA8nQsLgH-jUzY<@4z
z6WQJ$Oq|T(9|hFl@nI9cn&@DmqlMp0{LWfrp}B=WOq^o<v{2o`pC<mIP79SRoaX9G
z{A=Pr6MvgH%iJ{aj|qk!FK+HR*5MT));A{R1!|rhxRk~m9-~||ammDG7Rp;e801(%
zT+un@tl-gt*QqfINAZcVf`$8+2WN^&D_gi+<f~b@!V0#miiIn!;HJPtyUGeawN(`X
zj{SR7DQ`x+Mdk{JPpUPnoEjEtT4-S5CJVJJTy3GQh3hQrSYGuS3w124|GiReD~MQL
zjG1e#;C%($Wtv^jLVXK2Sh&#&Zll**;6oj4Am!(U1x60@k*}WMy||%;Mi!b{$m2CB
zbh8yay*IXk=;DWtTP!r8hi3;53Ct8eK^+<$s<S*N-$IDj*x>U{Gb`9NUc@apk(|FS
zu+Y*1&n&mHaI3|i{SCJ!wZNnIZKSz<Vu(z>T!OcQLVD5)p4r-2Xis^5cv&2rcg|lP
z1TAqV3vmmog{Xzj7H+f9g$}e(Vu4lVb_+!oVqzyp@y5|rrY4wS<&bu>@bkP7KMV8}
z(A`3*g&u-=il0NS9IGhw^H_!1%DmPr=oT^-91Dg8(?Zfh%7SGDfnn3<qXSn^VS@Hd
z3hkU1;u(3?r8Jj6CwK&<_h^`F!L!iI!mnq;K7l+uG#nEmU@_sXp|^!T76^FpgK&Qf
z11y}k@DJ<1g*zEe79OxL(866-@VvUp!rc}I(cu;*Sr}|#2xDVhXsm^y7KT~)Zdqug
z?Bj3?Bc#baWvp`V*fq++XzHQ2$0`gM4kS|@tBkXP52xcTOt6Bi=XrBp<V?2sRx2#z
zqAX0cFwMdo&OS3Voi>jSB4M_L8Cg8j!Ys*%bJtWZ>t(RbwJ=X&Z$1NC#xhQ-jxHTI
zHu&Vb*uoME%dOyJ8r3efu*?EWD=}~M{20aOs1+7gTEQzvxCHu^lB+GO;bNzS?y<0e
zPM8#0Yhj&*t7eBznmM;G2(72JW0fjr!yBcS0{05IPnOA(<_}tYoj#ti@T>*ic{f>j
z)WTy{aPxZD!XvT@KHY7$f{%pml+fdnw#@V=te~RuhO))NlT3~2q0;%G8&-y%lE8SH
zYPYvzggj^Ac?+M>GZtUrg%_Dq7Is>A$--6(uUUBA!pj!6S=cUfy<*{2D|ja1aJq$+
zq}Apip;!m_&Y2zD6bo<4)Lb>wnSsj6|CZz(eZse4ykp^A3wtf>v+$mU_eJf8tcR0>
zcYx6H4}`OeWyH&2^CJr%3+EFHdj#+^)NTu_#wzT6S}4JO3kNKGDgvyH<Q%l{t)$6o
zGeaMYRX(?Hn0aL37Yj!$9JO$qQD@-`3tv)_n?5sijP9Kf`bx6q-?0h@er@3tA2Nkf
zCowN(`u7%2SU73%HE8_L4o*%AjjE8#IHXIttskxmeDaeOybpoCYO*TyD^s3z-ojrN
ze&=E>q-*D%vhX)w^D;lQ*39ASYZy*^j5%%L4EYw$TERmgKSWarql-IEoy6z31gYU{
zUa(NXMnyX)@Bd1A{%7H$g-cw><WP={%j_U$si&L(GRq4flTRa+Y*e<<%tqM8<u<Oc
zQQbxj8&&LJJF42j%RLCLl;%}JNBKF`gwL*A0kCl$%SB45X`_~n1~zW8akY(W$hT3?
z4&uMIjcaYxwNb|oGKd$MEH4aNu6oC9;rceNw{e4w8)@_2918Hm2xSO3gkpibjYc+_
z*l23wW*d!deqjI$YggtY7GsPhonizG#XKANHbQpriH7x!ud^`A=W^}z13BKJ;8~rU
z)!Yt>Nede-Y4&FYt%MTXY6lPh1Q8nrHV$O)X$FOKvJE{6BZ+o4+H-6I)f4Ezm;c+?
zU}K|=PBx-86dQ3Hoo(D^qq`ma<M{Wh!(D82rB4Pn=XJY{A{%7#irMIsC{Iu<y+0l-
zD6!GaM(;%VUWxM0+}obROGQZ!8$AUKU(%Z2?^11OHu~A<PpfPgHWD_HHcT6qjcu!Q
zY#T$3LVjIs$l<2VW`-a8F)ukhoU)PTjC3jYU6>g=cyp#>!?oer@a^D?KyRTuq)FV1
zI+qs_Tr*DLQH3Dc2ezk9enotMjXP}2u`$=ioi+yA7;9skjk|2zZDWv)!L*@s?g!T?
z`Qw!44V58m+8AwP45Py4`&BxOurboca2vb#g?QasK0;dMbhnG$I*hWxfdoefR#=e?
zm(lSyCfJy2W15ZAhr3VYDr$C}#E^Kb9c3m<bBa)>dk1z+w=u)UY@2UA>OjpiWuhKA
z-Dh#gWj%P2$*$YSDb2cfAehJaw6TD3Wn+bnl{OaHSZsr{x6J9WL?&8h^JQFt@KVOV
z7`$B6l1Xi=Y^=8N!rst&8*6ObV`H5($ysZI7eTsWchWMzA!^^8du`lj<8>Q5Y}_w9
zvdPB7HXacCppAz0@*m><-kM+fPafZW`iPCq5)9ASc+|#YHedG_L>m92{kRSOqv1)$
z|AEL8LbnLz|J=!cN_zP}FA6v4TK-uZ&)ImMRxxI5yuzz`^hFyl+1P4h(uC%0zHn#o
zZ!BIf%M|=S@~Z+~6S|$zUOmd|<2z$rYDOvchK)CE{A1&Sjkj#PZR1ND$87Ah@s5o>
zHul<hm%%npd7oQsW7Ih1JsZo%DObM~-DTrL?(8^aH^tgDFKQM3$i~Oamsa5?#wk0;
zDW3>FGESk)mE)CtHuiIO=;ZOr0UMv%_)G*2+Q=KP^c}Bs>|b0mUg7XVHa?fG!#0ix
zAajy*QSBF^Ve5E>lYT`PF+ExC7@{`5weh1E!>;2tPT2TCn%@ciUg)0j%1Kd0ohL<k
zg$c?}Hh#A8iwOLdo$*%z&H5E5`xjIAl#M@aoMl!{Q2t_ln-G}#w}8_&xWF@l=^64n
zO;FCs@bg)1V<#y8+W3#RfCMTfaC&q2qK$G1T$aEkx^Z)uS55+-w`@;PK7r-$=Me1N
z6VM7GU&g7NK$Qfp6wc)dTp{2>pD=r`5?oCv2UZn8K5=dWWvXf<P&0u834EGBtpu)4
z;OPXON#L3UcC-p#n?PLwwG*f#fXu|Vm99&mUV?8jME3;hCvbfN%@PPFa6<yWOm5yV
zfkp}3m_UOBZkf{jCSkT{TYkj^h4pGi+wzp*b#nrZrR$aink3LP5mYnsXKs(=3C<Tv
zW=H@BHcy~M0-a=3OQD4cv`wH@0_?q&Ynjr#wFtM#j*SQ?$ZDYeb_q<L(!7HVZ%-Sx
zM~<~_)=^BQg~U<m>YTuB33QQx97R4Yxm}t?3B&}D(=~x&!6jJ^Eh$Z)2e&MN6$$iA
zKuKUaElePufSSOa2@Fg?6EpM#44L}DgE^eVOu$OO76X<|2__{okw8+Er-b?mqy=Pz
zIznlQn}C<aAEoli>6PHkh&L(p75>YciuxzeFDvtSUgZH<d`ALwJBM((yAl|bz_}e^
z;=2=gDB7HxI9McyBrr6AVF?URV4`qF2pubQq|i}9M+>FGF$v7^LIk|VB`{w26SBS2
z^U6;WJXz=zp;NQH(-L?@VrFInvl3V;ZkbJm3CtInx#B~5X<h=P+)D1?rOC}#7UwSz
zfrUaBC9pWFbBTZ(&8l48G8sj~Rwl42!B<%Z(Yrc<H3BvWy(fWn0@ey;fH8PD*LrU5
z1f`0d&mkKV{Ih4E@V*4@Pv8NWf=+u-cD8Ko4+(Qq0uKv#B!SHW9u@k8(8q*6E|gKk
zfm;%IQkuk1C9vt$V2_?n;5k-?t~skqLeD4gLINKpQ0=F@7ZZ3XfwvNPJAthU{8zD%
z%-0imIe~55_tk~3B(R+UzcKu(G?Qx!$)wC{2^5`=67brQz#EjGpp3c@eKP^ly6Xye
zCh$%I?<Vk`4F7d?A(d2FR{B1({!Db2%=L4#=m!b>eysE<t@uOX(13gU_xL!0Po%j!
zfxQVVSXR16tmRxiT8H-~u%DZFM~?}SaJ^N9H0fXhpRpDtadi@hxJ-^s;9>%Y6F4Fz
z=u84f6WBdL`8I*$!uf)BULXFFyP2&~UkUg+fp4;$HM2^;%i`Y?_+IddEawLSClmNF
zfu9oiIm`c*o1VodCMdsUu~W6+j|5K9)gKoA$xN?W@K*x=PEev1JD(O%y<%rJ{}%au
zdkfAAI4AVH(0_zp5c;oB`&^|<tZ&^zmnBg?iJWAB%Lz^HZpT-PS4g5_GI(!u%_J%%
zgO`o-x=KK05xYEzE2LRP=#^QSniG|(f~yJ56$+u%g|?Zf)JWoNI8aFa7eA|ZO%k<}
z2q)1zi8@JKo5U?iG)bav64xcsAc>ojsF%bS`@;2;xL!bFqH;qL)tBY}Gc*7E-jX2`
zl^c`zZe~6~{ptA)lejsFFIVI@N`lP`t#Zz^%4wX$@yGHvEDVM;6+S_J5;J$@=Luz#
zLqa0fEQzmbb|a@n5-pP`O`=B<t&+GkiS|i!NTPKTzt;})YLnzoxi$Z3d;7Ju!x3Q?
zBvF{{ZOcyqg3m9`U0WyIQ7|QolISEjDzvjuYP&6oE`o0tI%lF%HcKptuEHr6S|YTY
z(C$JhcD`Zd7ix!lCZPyt$ATO(<4LGVkiTN0q6v7rNtjJD8QcL!r!Xc3D+xP^L=wp)
zYNk*tg%r0wiHDPTB#BHCP7;%nm@GrwB<@aPP!gUr{UmxN(OWPT-jPI~Ebc3ypV0n7
z2PE<2#NfWn>rUYeOyVv9<ot7>(%>Y9Brzh1kx9%i%paP>FnYdqe%Jc>Jv-zN7kr^y
zJ~^Z4kox&!lNgu8Xgd7%$QYp=L;1wp?um>~2EP|DF^LIDoUE2_P0WA2T0S{{Hprin
z#MC5~C9zzlo+fmD64M3D5IR%nETOb*b`o<0&lNf^%in)paPM1?#KJ6Rk$}ZXED^9&
z=)vDAQH<A$B-ROMrBHHK30N(3jnI3NSS#T9n}V{uUhsw_HVU{mi3bGSCzJyB3+TTf
z=RpAvW%-)~+?cMmIf+M;IFiKCBpyrR@gzP>;-e&<NMcJ8&m{3IaqIlmE%Kj~Ax|Z-
zxqbfALKohePyC$lUru5hy_(hkLJ}_uekse@Dqzt0V6m?xu_K8$l6X~^+p{vSCGoo8
zX3qsbo$zK7ZzZuyIByGmFDtn-iFdO2T><u~y!W%54<s0<VT&K!@jp)DlOzsjdv_=C
znczKH&RzlglGrccK$ichfP+H!G|oSi#OF+zn)%2Jp21Ri%@#-UZ>*dDg$SHa;vW{4
zB#yB@B=NN{{}TF55<f7~lK57d9DAG<DT}{P;zSm=EDd7j$0U9e&QC&r7W#|OiMuNO
zn#9g*ru;6<KZKqV`lrw%B5+#pnI!%eK+R_boJ-=~tvPI7NaEilE=!?&3jZZ>k<~th
zaw)uhviri$`IpG4ny=lE|I4ua6BCu@m*-F38s0fIzd{NXQ$Pw;?hf2rDHW89D}`1T
zdb!XmgjPwR=!;;}uS#Khm-1DGSxsoJ(Eq$#_EJ@KQCK5|l0Smx)hS$)!Z4AkokE=y
zx~0%vn%Ab#G=;nr>ZWjA3iX6ZB@G4CPvLq2H)Q!Y3TPnoCRVUJ0w?ooB%GUtHWqq|
z&?Z6$zf?6pg-{9wDHNvAEQN3ity27p7Rpajny1hrg_bFF?3{mV>t@sI<)5mPKm0--
zY3mf)r103#oJfi<)z9BsU7mq&uFM(Nz7=kpLObd_pI4FsyV_Gj3Y}8uK*REy4Y?G=
z6(yr$!|f?_7I2%;E<)LR{pi4HMbeC=&{aTjwwIgxY43baQJO-J6ndr5JB6MpC@CaT
zNTv`^VP$?ZOXSrQ-*ppMsHLC_$H?k21+aS9DIDDqPF2n&rDTe#?2ym>YSk>ALPo?K
zp>B4pmmM4Hncx3dU~Qii`lirN`1RWb<*R=RcW31X2)IM&ok9l+y-Vmjrz;KO7Szul
zEKQCblEP5IG>^^Uf=8s_u8NEldRycCQ7LSwn}6oH$dmg+V^f%#!n72|rNHKRp#&3B
zd_!!&nUv*B7BD4+AB%&5(^Hs{!hsY%O<`sVvr^cY!o4ZXPGL?8i&I#V!rT-_U(8Qm
z%%7jayc7s(cFcL9V-CTB6c$P^1r{-GJLV89O<@_gKqM)%JO#>=&uc{r3ohnIJLarP
zVRZ_pF6OUEVQmWQc=PR;b59EFBA^})<h7n_6fxq3>4N)GxIcwAQg~DJJU|a$%zrF}
z2UB>69_W~}NhW<Hg@>id-mfp_Z%*M+X;KN5(}2fQcp`-@bcJYmS?E(KJTKsBq0b0?
zRw(s6$4u;)L-2xdUd-}e60kMfyG@#}WP4vtVS5U%rSN)|vm+~6rtK}3qZB?#VRs5U
z#rO|W*p<RNDZDE_p+nwF;eF}ikk`d~T*!whyePi<D20!+UZr`I-y_2Ngi>;^^wQPr
z+Aqv*+j0)3@ENOO8W+<zl)~rC_cU6j1AiV);hPk`6@!n6{87PQ2>mjJV*<VsO8Ku-
zC>75fPvN^1E>Gi%G`>&aL<)bWa8|^ANa2?heieLD=#MG<B;aSE)N^acoZkfhndSVR
z!XMmy@fdr{Wd2Iwv<RGGu@YwOjyYxETnd+@>wH$jKPg;D;a{#)I2W`0|J9ZwOD>nj
zWoeWb%vmZ5s34S*mC~r3{-3$Z23C=-+G*5D<H|Iyl4jL3Y6+;8My>z|ts%6!P?}2p
zH3gTcx;l+({!jB-!PlqxE+f<xe4WsGY19|+zl*(5noZNlOQS&=H%YT$8aJoWSa2hu
zoaGh)oVSU9G8@Rxmu54eq5snr7Ti3`p=2vAKaG`XtV*MG8g0_(l}2w7h@{aejc7V3
z3k7Ku3bSn*?b2v3nDcfN&>@Y8ET0@ka_2N|OT$RROruL0x2Mrl#EOI#3ylfwD)fKH
zmPoUk(C%rJ3g{uUOtX?kJPlPix=>9hHE`ZCJysgFFkPVup(&wBp_ELgkx9dmW|`(P
z>SZ~8R<chTeFe`<qhA{R(-@t`m^22YaYq^>#5s4SF))oGX$(!{E()hHScVJ|`hWG)
z!ZIU=N!Rf7|5P5zkUugjKPv0bv1yDG=F~LC3z#Hyg3yUVxf~9kESO-*|6xuOJYDDv
zp`2w_8ne@wlg8XMmI!m6P>x-c#{4uEq_Hr|DYLeWE*2)ITbjl)!OPQFk(Dg-Kk4c;
z)}--N8c)+#7xV8)<K8sx6TDW0*QK#uzy_fkvl_~>=KeGu&T<||<3Yg>3Ed>LEKMHC
z%4|;K(KH^D=Hpp`Cj@NC$~>9P@n_O_HjU3%7}Izzjpx(&P`X}7<Ha;~iu_AyY)#|!
zG<HbyWue=$8tA20(s)&v+l9U+v@G@5`$igX35WR2Y}eaa4%hfjnlBZ{d&2oZ==)hQ
z4&k*+nw0z~jgQm#M4AVLvUhhHdj#(lmy)wDjs3zYv*FXM<iRZS^E3{p@pBr#2<J!|
zU#Ia+8b{OkB8@Mz@?WKKEIXvk5-R*wINzsnLcnpM-(|h=gEW5>${{DS{GYO%GLwEy
z<F7PM3-h-$eoy0%G)`q@{!HV4y+?2+jlZSqpES-2I4|^^P`af|nBanN{uRpE$+?t9
zP6p`=G8vT1;Ia&=W>Afsi}~d<sF*<|!4)#W(+HV-V5po4?u=Iny<F%O8B`H)rBL?9
zI_7Ndn8W*QZU)Hk74FCvJ=HU~CWG1{RwIL&S@~KSTrHT1!;Gkt!L=DQ5Ki5!O#KY5
z%i?-j;p+w5AoRv8lLp+BK|^Ua5_*f!n=@!EfC8L_w23sE3gwMEltHr$ZqJ}7gK!4T
z#pbrs+aiP30$K`fCG=LI)I+n|2##b>PzFSQVdj78e7g+V3%`TVsL+lXbP`aep>qbe
zWza<?Ei<pIjKnhNnt_&qo<VU2B{D?Gpj&oqj|{qJacSm%DrC<rhf3mEtY&*Tqme-(
z%QppBLhb(}lguEMm7z&a25tuTWpIB6UIxB&P0FBG2E8*FBbN8cpfC9u49cLNa5&eU
zBH3T)fDG;sKz`XW2WD`WaLU$8{@@Ho2xmwJLo*mAc=-P>!?7cUL-|nxMrQ@a3K*B|
z9iPF3ES{K^nVi9t45nr<ErSIaEX-hf1~a60ZU!?2%*u|UVY3C#`9B=aJ5QSPvmRTN
z!Qu?o3v)>ZO9iYFx-5eg0+wfm%NDyb+gvTZYlPk-bgj^JLd%3V2<E&S1>7r?eqdrg
zkim-?yp+L%89XHXO&L6v!Q&Y`EX_xRa_nXSkIL4RseK}Y=Y+W>gC{e1O7Js6pB7ps
z_N-uP;Ec};ej(dS&Q`&1WbkGNFK4hVgIBWhuVwJ6;O(;5GJ{_i&JLmEP%W>wGWaNi
zk282XgPqd#P6qE~@V?-8Wq6q}A7rpgm>fmUhgnQjp9tQY<?I%)C+la*@5^AnFgcK}
zJD9;|blU#V6CMs_@HxZV!vh`;XK;i`=fZGtG=ncPSnFV&gD*2U#%kc8jf1Z;_&S3t
z98_`mo22+QgEJZYox$-8zRTd341Uev`wUKGa594*Gx&jlortuZ5+2ws_T|LFYet4^
zj|l&i!Os~qNk=-?FZ{8fxc$WNy>8^U3>wvmoXX(O41Ukxj|^_u+x_1m;US|6Z=F%N
zF%kJIgVPz*oum{b^Pcx3+vgP?SlaDu2IpAG9bD$%d<Oqya4~~R8C+li_apyi@E;ZC
zlu*OKbfn!RB|S-bW>R5}gH3g-oo<lx*zm}`<09{r#L7FUI4)e#K_v$j9K8H&t~b4K
zk<+uX1B!9R%bmcULwmXtpDT%7>EJ2{H#%tGpsIsv4r)87;~>`o9Mp7B%RzMqH5^d>
zjc0Sm4JstywR>v#YGH007QTi9I~R~SVv<sGLAPri)O9dpO1QqmpBKbm6)V?s@Z=<A
zr7Zd5(%5x(hp(p@4)#q_Xg04(W5PE%Xy~A+gFIP6BL|HgaJ@G>;Ob6KQsyNhw>W6x
zp!oCR@{3BY^CPb$BKZzN4w^e?;h>ol_$usRTROtIDDY_a7<Z>7^_<RaMe3l>)bKCk
z!Zfwdnvz!rl~8kpt8g&D!5t0?9kg|zI?x=nbI{&F%t2QN9UOFY(AmLl4mwfEnv$r4
zGf$MSI$1fqxs*|H(&^d7!R-!;9MDCL7Zox*noL%n{k3@7$jISAg~bj^9Q1I|(?K@}
z-5ro$%554GW?XH)yKvw`#eI(!uO6DGI9PcmH%<qRExa(jkk&G;x-2Tx9T*NW4jcz2
z?VJ)$I7m9M9N4lEj7%~)F9RUufCJNI8#F!=og4(4>%eo+%Rz6MclOieeE~&@NTq?1
zJ`Vai=;xrngViG<j1VUg;Rb0_19$y8ypVR@>0lr&cQD<-T@LPcFv`Jb2ZJ08b}-z*
z2nRzP40SL}rshB@Ip{`qZ0i|MMc8cfRQa9tE01(grjW}Y<6x|VNe(8{bq>ZmnBZU{
zH+r(dRo^;380Ah@xST1ImDLl2B%0!YT~i$}mJXN1sD!yN!@*1kiybU+Fw4Pg2lE{)
za4^TgTn7;&JkQ}f_5)$6;=p}QPi8Saw$Q;M2d9RHCyom1`6YDYJ(HEC4wgAsMOQf3
z>hxUhU<LO@0*vAJ{A7hO#%Mn_Sz)p>%hou!hmu2r3P6J+-D2w<Y+x=s_{YIU2lq1C
z9qe~-pM(1yyyD<h2M;)S(7{s<o_6pMbD5#;;BngN;1LI#9X#sb$k6cLla)ayf~4DY
z)Bj}Ou^D+&&lf%6U<)(L!5hb8?|mHmwO8bz9{c^zqIy%5XB<51;6(>7Ie5;&^A28c
z@I^8*qF3bAUXh>sMJSdrVpP7>!NMQ%US`(FmNl3dPW_Pg(j)E5_YW4b-N9=P-goeU
zgV!DGaPYQ+oeo+}DtyDin+|`)2GeVnyr;#KF_A__Y^oOf%89+>;9Upr@zP=~E)|ec
zA!k1}HOv`zIrz}wyKu4F!ACMFwS7$C?}Ifi`#9EkQkX{Waj=(pt;aZ=qi8v8KH%U}
z2j4mPUOaQq!RHPR3;xXEZ|I=)lpxeE9WOfK;3(_7gRi-87JmoF7zzIt&C((V)<u6&
zBVQOXO44}F{*8lg9UP~y7Au{iykW)qZEjDQ@wH+n9Q?rWaPX&tlMa4lW-)pl{N&(g
zhTMs~oVq!rmrW>q;Y1!?_nU*?Sx=@Yf6)1lwC{Jem>!^8=vaE-neX%da`3l<vn<H0
zA*{DQ<kdNuw^WTZU04{uzT_M;v~5YJ6M1d5$cfFx7aaWS;3gLhUHs?ZB5SgXS}ra*
z$Z>JGiz{4|b8(rA3NC*bD2SHwE<PU>?A`4@<aLacuACID<OY^hcJUN~CG)z{h*fcM
zrHfn_aB-E3sxGRzn6<u`Um&Elj1a2gR#teYc$^Wd?(&ytf(_zD{w6)pbG3_WT-0@O
zor~IT;5tTB9XANGz1Ig3a;-4wfqE{ur`Nl<!9{%+?(959*Hu+wyYH*OkhsxB0~h0O
zD5mCeTZ*fERouwM%`V!z=)i$4ZgJ7VMN1b=Tr_nNa?#91o(qo6cfr7;F{F%>xl@#|
z3u<WYf(s#F*bJ1cY31Tp7lkg`x@hg9jf;qj0vCP96>_gPT^+m4ifxkM;qs}fooJqZ
zchxm7N2&klvEq&{I=SfTqS!^$MQ1ly<LxePbAvGG;^N`wav$gwA!g8WNRf+}c;k&J
z3YSm+l(^{Tq9--G{D~$0crzFeJ%on1Sqn-ooyhxqin4b^xYK1NaTlr!&Bb3+l&@>W
za;HjQpUAuWyFAl{<>Gr6CtTPr5-uKa@gSG%BIRPTizzPBE;25Lx)|odq0e3PcQL?)
z=kiw`(1#0m(Tg5P=Jj?lqHZ<b4T*Ve85i#7g102%0XGHD4256C?r?FZi@RM6k|6_K
z+$A7ys=}v;+r+lPZgA(~ZFh(ZKG-xL6KLSgYdH0b@B|klU5s)u#>H5dj~Ue{z=w*_
zF8BmR%v;hpMuG^lnGv-My9dsk=wcEVl8B5K=2REcTr6|3T!g2)nB!uuiy7PthOsdF
z@h(8$P6{-$T$9doF<-hC^T{w3S>R%!i$(Ot)bJwyH2cs%l6L{pB`%hVBn{)Of%m=@
zT%B<4b+O9DY8Pu=taGu(#iqTL?vbuR{}!<F^N~XvQn=p51{al{D!<XiHo1$@71x}L
z@wtfldCRzuJ6o~x{Y;{B!2%zm9vAPs_<(`r;t>}wb09au#iK5s=0aqO$6Rc2@uZ8#
zT|D7p_(#PYyH0%alq|<Noy$kE^8I^~|Evso-o*<po@2R?V*A8Y<wfDY<YFt+e`w)e
z8GchD!u!|HV<NA(cvS>;y4ddGH5WTvyg}!m&gC=Y>)g%fEBq!y-gNPni?>CX)A7-i
z^y+EK>m!3T@_NU`yQ~{-aJy%dl+UQUTzu%_GZ%+s;72a@x>#{0_hT2IaG7<h?RK$;
z%YQbPk9-`Zeifr_`&{goT|407Qx^xtZ)Zk@H;gEx*>rff!G)i@I4nB9VkM+7ON0x3
za`+1uU($@fa_Q>gbmW22g}iH*S;+AF+Qm06zU5|(2_JXyod7-|P=HUZq`B$H4=zr+
zDDlwE!;db0V$t(Z&%@6yeqs6bP~O9@E`D=y-o-yIes}SQi!(0%c5%wZpWJH~r^);^
zQ2YAuo>jL88@HJ6!A<7v+MRb+%s%I$Xj(91c$)G=tsaBFD7xU{Ul%zZ-kqlW=i;L1
zxx_@Cro1>dym*>&$3sEdJ}#rmc|kgVxwW{0hl(DmdC2upNtl;=xWYqa!JCSLAyqtF
z>ES95RXrS&;aid=<)$l>YXlb7c)g?vU%c+2x`%5#)b>!rLro90JRaFVm+66#>FLUx
z>B@uC6#_Q94GCOY$HTQA>dHjU`gYr-t5WxpJ=2x?9<KM$(nBi`H+Z<wL!O6x4-Gur
z<e{;LTRb$R8>cIcJlsr!XDE$lDAt9*9$s85X%o@hRA_WYz}Yb*67tZD18c-ucnEu7
z)k@7!n$u~Y7g68~^q{YJwd$ICtB2MeI(xXyLmLkf5A8j4pf(SM9@=_n=i#I3!HnDj
zQu^V~A(7EDltrydI(q2Dfn9T>9yZPhHi!bZ>?wYAhO(}tq>GqzV1^R&aJz>h55<1o
z+f7TV9w~mRW~?il9?s5CYSt;HpKHuix_c<~Fv7z~4?R5e^w8Tw9}kL$xCh%q!h<S0
z4G-y=isnJ5g(D(;-zsS_Q~9h$%=BP+7&cQ`&A0H^>GAwbCFvn0Lp%=gkn!Mna6NGC
zyJiN<IW#2lT$Labc{QvN^F8!p030cP@0X%)W-7x@#`=2b=kd4gFvvrHdeXz49tMie
zJG>x(Ij}5r3GVW6dCkCA44cbmDT6%>5y_$SYS-LvW|d4lUd&O$JPen;;Lct@OX2WQ
z9!7gu=wXqEF&@TxnC4-+hjAXpi-sv4CU}_WVUmZ*+%Fl$DB@gY0Z-t}Ql?6r5Koz<
z%<wSN!(0#ZM8hl(vps&H6ip5mJvd9*@MBT&$ii1=DP_Sh-@^iN%crxH4sDB1%?g~e
z*uxSJYdqZJ;po|-r5;vzSm|Mzhvl@kOAray&Q`d6t2}sJb06=TyV}F6+l!~y=t1Sw
zuvVsC?_q<7b+TEn%qY39O>x0&Wuu3CJ>17VogH{!1UYqj@Z(<Ot~`Ee|3MFrdck-5
z9}-HiNx;L5jmtVe;$gD@;&fpFdmr<He~3Ts;mc=(FYRw(lgfY0d&<M-0-pB3!ywOi
zc-F&n9-jB`hKDyjyuej^*yiCC4=;JZl4?c&RiY%XtsY*MQOl||>((&5&@a#4%0o(D
zrLSfy+daJI;dKws%vN@AQ}#!{ovq|1I(#@=dCSAw9zJB^c-YB`F(Kz2Za3Z7v{|S8
z<~jdWde6iA9zI}F{8#DjR*_vEzR!!cXjpkp>qyPqW<`HQKlbp6Onrc^>s++k!#-)g
z@qBcThrO)2Z6YlfM?-%^_Y0p&Mwe^<sfU9eKI0#JZfSnV!-bs%yvhJMhs6&^gdP=o
zW5XP}=$MDEIBEnAjlkC)zVXoFF0{N0-+DOCeC&sj{qP+vWO3+&f<8Fm;Rg@ref;C&
zq|E+_kKI0g^zakwzlUEu{@DSYef;X-H<mIV4SlTKR`9!re`uA5KRlfB@TZ5rSOMt#
zn$ceU+VjO+r#+nU@Hb2JkxD#vQKLq*xJGne_2@aOZ5!dajPtCJg#`m^MgR5iA2-WK
zbsrZ!T;dQPm3`#+DCgtU;Yt;JT;}8Z!<EYW;FYQwy=;y`%EKDh&QU7*!K6<;R&cqG
zD|}S-QO!pcKR5<*rH_iWf_WK5uk$T%e()+tf;H8n1KUM%eUOsV{GU!WeAM(&+YjC`
zSj)%Neh{wLhyVdq(S8D|t>c3Vuk}$^rud^~^g0o)CzLYv1za!m2B9|!ZQz4bQ=pNL
zn|-wO(aJ|-AGi2u<|FK*iI1i}o~aQH$rO1$l$wS4f(xog`N@0m${2fFAbLgh=!iRG
z&3$loUM+lZ`E<ywK3e-|=c7GcQ9atmM}dz*!4V&aKWbkvKgQP;w(1{yYhA3Z=)ZN2
z!WYVQ@X>9K($PmB*`{VSqMc+EJ$##wE<S%}6XSi{?xV;@l3U;-=A)}0?4TlBQ_Qh*
zlu{ohROLhM6XP4zy34}pJ+8V3S6W(?pr?5C<l#u1Vm>rkvf;z@q5BwGGfE3dKd2G4
zd?bAEJ)*SS7W?^<Lt-v1?IYvkPO9?Z_;7vnrU5=Y+4}mmqP=|h^hU4nq&W&*G^Ki!
zF-bS}^+Bup`{?HfG0BTNKJ7&N0X|6Y5X$$N-{s?OAH#i&V00a>G|0yghR5mdjN8FJ
zXdxZW=1^e{6H3>O^g#<p`55hk_R~2B4p$oEV-BKYxxjfv97PYTs}-H#W1^2oeLUu4
zl8?zgmik!cV~UTdK4x=>cxjrC8GevK(<RvGNtV-@K4yvWTo*ZO=O}YIuaAX37Ewd>
zC>O|e&G-4sr(iNN>DZ*?VhL;lUQ0wF<A1r&7f<0{pYPkjN*}9ytn;zn$7&yIB=*+&
zpg(Cg_1q)4Od%&yhebE|*eFa+!Mq@oR^9L80Uw)uJnZ8^iGhbihI*KKbU3wf>PLKR
z7E@^t(~!)!mbQM}#}htY^|9T@7ACBZmwaqxg!_2f$8$bEe4+K==rdG~=(Du5MzqYa
zY`);5O|9sQe(<7QYU7bEh6;Cq1?Oe%qwEg(+@n_*jqM|Rd*?SbqOUPAeeCq{j*lHa
z-Vl@CmQZ}t$6MTpT0zut@2HBKPRqH9cYVC)<3m{&d*A1d``9IFsh?(0o)_^)K0X#F
zlodd_XpfJ*oXZIRM&+0C_p#T<mp=AObK9l-13o_WanQ$S!ug!RFW?YUW@a@rCp4l{
z_=u0AjL*3hmUhaa5?-A;<s9?zm5=7-LZjwZ_}a%eK7N*g-}*Sts?J!-2~q4jA18eL
zAYI@4h>C`jKKA5<oK86-FXelk!fS5m{*%bx^K0b&j^QfNoL_uYxGeN5t3kO?vP1jd
zS$|{|r-c43^iLmu`8fUmXu1wCC#vteuuEr`BTYc*(z4lE%91QB5Xxp3whTyb!b~zr
zrX`{Gj`ZGpM-&A_K|w@8MX-RVC|G`gigXJWI_m$-<G<hczVn@T-+k@A`)($a%$vcu
z&FoD1_Ds)LGi8!<?Q(vZDc>E8dqS=3V5!tB`QczZVlYwAU%@{N{tPt=Iw|;%!Cygj
z1vL~DQ&3z%vVs%^i3*YwlvGekft}_qp&**-ZZJzO(cFF8?JljL!z}q~hP$kSGHi2}
zJbadXw5hwCg7OO9Np)wXx|ht7-)!ctpn#`>R#Z?)LC;k8u37RE3jS>F{^Mc0<Fn+-
zEX{IPWskGvDhe*llJCxvS@%f=)fBM0cec!aDS1lat9v0S;Blfg71UBtU%@kMbGBSt
zK^+Bkg}(l%U3|7&Pr;G}h10fXRhnC{{Y>iy3K}YCqQJ!oR?Taqps|Aav*od$dYP@z
zC4J-8tW=I<W4c>Gnt~5Hr|+9Bf5!JbZA?G&UBd6P<;rv9rV3gqXsw``g60ZZD2#aU
zDtLENcJn!MO9h!N-8}HLbZa-Who8(#>MrF=?o0(lV?%nDf;Kz|RY7|NZ50&Gk*Ca&
z*UgdJ3C?U}j=aa?J}^h_py1m%GSlc5ZeC4gE9kDEhXTLiT$tqu%oWINXN4~;cI0^i
z^92?NEEFgUq(WB(-2{JDVCA<mDP-!YptpiPLfA`ib)3&>aJsKAouN@$Ggk#>2Phb*
zAX|lB#d8V<DfmpmX$6B7C<@jnSgSx)5Ku5)!2|_C1)73k3Wh5PDF`dD=tv483ch>j
z(-jz8yL$!Jy@F-U3p$p}tajgL(i`W<B;U6zh$@IFh%0FH$Y<Xv7{a=D3Ydnn>pPAl
zej)$CrmPVPhAhq>rC_vzk%Cv6D^oH?!OaK0ah$S8A{i^PyL;sFVV}|ueG?VFn*;L|
zEKo36!4w70E102Rs)A_>rYmsIl@}%y{;y=_&lA##%<|RmGZoBIFh{{$F@@O*R+r2)
z=gQsZ%Ej*Z<|!cOBSl0eR$QoHk%DCkUxA9n^#8f?q`C4^L6#_>CM8VOS7xqIuu{R&
zx$-Inn@SayTaeH6&pqFJ6Vq2KSm=@X1k*YN>lM7F;B^HXxL68aQm~Wy3N|a)rhv*X
z&6P8}64Mqsr&rp_O?|I`gWOL4UoX9&V26Si1^+p*kdl!{eZ-d)yuzK;u+(k^yXd7J
ziA|L#kx9&ZzQP_Mc~!w)1$(pt%`5SFtDPCrJ_Y*~9A&=>-r&|#a7e-13TWX23XaT`
z-%@Z;Wcf@Mn;N^qK{k7s@qxQW4EWs#z9R}cKk#w1Ed6G#OnjdkP{D@^j*D5a!DEaV
zb7hhW^W+l>K2q?Bf={_{$Mc)alZhX5S043|47izfQo$)P#}B&YGMhb5CVsBq3tC=9
zWffm4IHTZq1-BG@rQmA?KPvc1;rq35j$4n5tAJI$=<4}K0S%S)uz*(jp5F3PyYq}u
zVpRX5^AF15u%Gz5;GzQJ5A@9CnIu_fd}UfnmsnT94LY8J%baYpf~yLyDYzo4mup$D
zs-^V%I%l!23(2?dIY#(wasDp~er1?ilNp&OGy9vumvQ?l26H%uKWGO=W)(>){!;L_
zg8K>{D7dZQj)HsKdh=wayTY~$!Uf~+`kMdLjuKk+p@K&W5>ymZ@sEOk6~0|G^FM)m
z?)u2No7T_cyQedYt4<Nqw8X-F^JEH3s3@tTjEc7#ma@+HGVc0HsVJ@D%%53jm*t<j
z@B26CEvq^nSWX~Gc@@b;JVix?A`U^GP*Jf+^2t28ii)Z#GE}rwd4M*msc594F(qE9
zx(fG_{HG|q@2jDr#mdY@Ycii!QBws;Efoy~sV%UMz`6qK38YSaL7q|3ph$9Qo=kb9
zc|j8uE){7iBo(Qu^E{(l#iM!hPt6KOJo0f~v^hN?T}3k$eOG2RRpGnTj;Z&Zg615I
zinS#QnZ119SN>svM}=2KJL;&&RMARBYZY0X%OhXq`SQf(1@8HB&U_~_v{9jDNK9>2
z$BTv!DHwal*Iq^c`En=GQ3n+rMNwAsg0%ZShR0!QPL7IP74NDzqN1~kE-GfJn5`mD
zMZOAKMN~zBibBR`6@ygBD!QuZt)h>LZYrKt(L+T~6*n5Bzc4thI~TNUR>7b)ZPL>z
z+11R!UTnNk`qTR|`>N>2@u(P};wf)>tvV7*DQ6m}qImr*wm`|%dRc>2C@LZ<bQP+K
z0H>xRBpRo3P{qGB(_TH0d8dAsPjRY*Rp)-f>9T2&#%YEMQ?zCY{q;&(jZWE*d%4vj
zJ*FbAV!Vn8Du$>Ss$ztSkt&9%7_MS$YEI(;X|sLVBWin?BK^}wsTi$d42ziN%S-0V
z*9Nv>U;BO8(;9fji7L!at(P`Y#UvFo*kEms*)MIfim585(PQg*rU)D=^Qtn9T})T;
zyo#6S%hY6+!kMBLvutXPin%H_s@SAro{IS@R;pN~Vu6Z<Dwe8PrlPjmW|4}M-s~k@
z(0XZ$1+EyH$LgKO`MO=tay3d{&gozC{rqhH3VP|_w5~1ESF2c~@_irJz}Eg~y;jBh
zX`Xf55xuip_D^G7-tpjl4C`p}qVAaoym^~dY*DdG#cmZ_Rcur7BJIpMK9#mz#ed<n
z7gQW=ncg7i)ZL+?`8NO2`EvK<w4I!tiZ`Np)LEC8^@`xD%cQYrkBV2BRq>{Zy((T)
zv5!u*DP><BPw%p6udBE+UuLS1>Y-Wot9UqHCOM$uAj51@+F=!Msi?9*KE$}8V*129
z-fZDQxEIJB7s!>Gc#`(}-%-(~k>|*Ow4;m$Dju*A&Q!$*Dt=ONNyRZ0A2QCU_)5ib
z6(>}DMgyw&NX5r0cI?YM$&EJF_X)S&th`S-r26U1jyT~B?904VBkh!mYcq2Cb;|yn
zBe|1e&hvetVrGl<+8=noR58b&ePC$LxXbM}R89L@#dj*cS8-OwIhwId);B7?r3HR%
z?fJm_Scm%mW9&VUc|pZR73ZH$JFnu$t2v!prqh{!AXj14Pg{S~`);+gDf4_B-p?v7
ztN4@QnqyOORmDveztCsi$h@ZFI^DHp9{J*?=>tx9Z>TtR&3E>tykAxPrs8)Mw^TgS
z*UKX66f{hG>9}`I<+OHt{eP(NG)pJ>Tg7b^_ZVj;C*NVq4bnK;y9}P2G8+Bh>vqf=
zxR%p*fqb7ks88PO&!jzK@K;eIfTsfZmyV&LQUH|$NC==<0A&Iw8$j^@5(6k1;IZ>a
z3ZO&)tH%0fWM}W+?e9}Q>&2XGW_v%GRyu&!DyN-!EAPk3Y36UO%LPzAfC>R1faCyD
z$oFTK9OaY_sV7A}*#j^7$e#$HVgUE6roB=w%R3{7iM&bxRRgFVK;Pu7TZZq+0G4#l
zsusW-sV&CM%pqT_rcF8MpHwmH=>Td5&?tb$0n`ehb^vMjT0axOU)}QR1W+%4$T2T@
z-2iB`X^qp!>j!Z0gtuhvtVRE|ZV*7L1OA2qDCN?IERdT7;0izrAU%N80JiK)Neke7
zAkEF`r>DR2p_ly<JDu=04WL;783D8mfB~v`04)M|eV4z}pRKET()Z2Ep$^^P+v8qZ
zhE+1zQ2--@7!~BZAd$tP22m%7HUYE^;FSP&1<)=4UjWYsFe8BW0d(M~0#F0!7(nyY
z2?YTZ2GA*hY_7r$mp|bA=Qb~Z9Fe6YH-OH9cPWw#{jo{DP^0FR>#hgaU2*_Cd*^-?
zscV3@iO{IK^lSkA1u5tubr0|~X{m?6o&od{q<4Vlb0+o?ysyB10%t9dsmvAzi0T6a
zcutT(0tXA7ZoLz!5C|X`z;yPwCTUNxR4w2H{73*HI?`5uSm3q=@`7}a9)J<R<+od#
z9CiRUjn>3{Zg9e~-%CaV7!mmY^Y>x_#04KBaA=Wym>|RHZ%s<^prMf>J1T(Df{Y1Z
zf*@lBQeoU<Lf<G%W_Dr#lLDA5gj0)jrf@Ixbj}}UnijxZaYk`$cS^BU?wJA13SfBv
zD*~7uz?=XU1+bVp0nB@BXJ7h!G1&zH{M{^zvp)A)%EACnE|7VG3MITtPy38)CM}^m
z`PwWEU>SE@u0)=DwaZFcCV&^&LIA4+Si_sfeO+9>wE?UP@GNU-W5Bsnx}KYNS-}S0
zPhKD&Tb04&ALQFa2d*k@7Pv*=R)O0DvS@n%F9^P)Nb*Lt#Ae;4M+@Yg!hc@tmHskA
z!9tnO<L?e&5BqZV0$vSZZvZC(_=x*GfFGYM`Cb6;)A_kxwcYzj_zBDH5KSa`LuB6+
zcp!j-g1i;Lp#X-ZCk~vH`gQ<^h47sKjtKIuz=<h7R%bdYvYv%<`%-C*FQ$ADz_9=(
zK9R>G0=~TN`Y-_Eae))cc|Q)|lK@T!@Oc2A2EaG)eip#`D$+@gEt1A`N{~-VWj%gL
z@fUQ$6{*}8T--0kN^y<O1n`yMUl&Qv3UV%hZv^>P;CBMQ7Z`fU&x#iqSOWMXfIkEH
zftCs2Y5>=SF@F*()w;QqGR=QU@So}Df?N^Eb>w+U6PKr658!41zldgUFq+jU#g=~!
z;6_&JFJ;nh3G!P2zcYsDsiEXl%I7^QxucHs7kw;%hXFha;O@!-{)oeva614V;Bbc$
zZu1g6Im&&H!B+4G0^{=%DEx=PpW_UoL=gYc;e+^VyK^2wu^?Wmnp!-FL_vPInOyll
zSFe%og?Xu;)k-ZH#IT`Kr64K`QYwhjf|L<hR$w`SR4X4uau6vZTOo)iisT65^HClu
zFjW-7O<g)y31VlC#8fMYszv<CAgUGd>Os^f;!g?kbPzQK;jACmJ+~yGZV>f?=oZAY
zLDc6IuDhfl(t~&=hz3FIFLa(XZx}?QAQ}g8>$;1kNDVsCwTVENz`TXBTaYw?pO^pt
zCy1Lek_V9$L^C00t>!_rDB>A{v=rzG!YfE-QE96ndWVu&rA-iRgXj`OUJ&hq@CA_*
z#Imp5?StqL#D!Dt>>$qm(xqb%odh8#8Fk)G;umASGC!Ro&lR;g3;buFH~D2pAwP)1
zARm|Zkr#;StSbjWh1^-`T}3+!zIO+AOWlJogRp|=5k$`*dU1F`1cC?#(I<$$K@1K;
z38G)nxpB(-hl7IXFF3OUf*2_Hb48NBw<QM_%2ZQ>SXn3Wy@B4F1HH^H=^<%CClo|D
zi0KPu$|FLe2Vn%UPEBNkOl*P5FRF=l5Ndb#(4e!;Nuoi-goHdE#E>FBrEcc1AchAq
zB8Z9o()*-#p+3olC8?u>7!yQs4T&1Y1~D#(4}&-!#P}d41hFNEt*jEnq#%~kdO=JM
z@<l(G8^pXIrgB}%xgQ)Wm>tA4!I_;N#PfpBD3Z(!VwT|DD!QpKCkR$yBA*|`N7r2o
zgZOh?)&jxjS8-FaNJth7Ttc5blr!+%oP8$>mItvysI3*aQs63Ddsh}~F|8JoH3I#0
z)7AyCK8Ot>J3H66DTs}NQ*+Hid2<j~lHGe3%AYQjw*|31h(kfV9mESl=QV*liu7OP
z1}Wk@gLt`!zaq%4Aa)C~N8qah_X^}^G`o8}h<)5sLUJI8gMz#f#G64}UMMp?UCmKD
zdLrR1#*>QfpHke!FKW0C2XQor_ktjQN8r0b91(<)zcVsfE12TceLsi~M6<^PQgU&G
zb28zHAbtws5`{s09K<I<d>X{}+}GWm>ywi~d|kv(1@T!CKP|}T>`0I=1)d4wD@F`)
z-NL#hzso#Zq<>D3Z-V%?Nb;Rfe%#Cdf;cba7X)4`()l5X9|gC1I@dx!2a&Ky{ws*T
zX%?;y14vrut3mw6bxCS}Er{zu+~DAQd437v*C1{(&@GZ%ERrc9*}uY9DDZcoe<!K^
ztswrO7X_g&lBX_`w=9z1TqNHP;tsbtm*b6G?-JkLAnr2+E%DuBur2PtS=>*2AS4e3
zJ`(sm|J%95$6@@-PXTU_r1ne+n$t)z4Q%|Yr1nV~N@!@UAxlF^4W%?x*HA-4X$@sG
zRMb#OLs<>wG+cQ#=?M+xHN4Ty&9fpI>yoMbT2_jNjj=SQ3K~$v$JfZ?h0WKC<bMw*
z)aaU6Swj^KRW*#7CRLf5UQKiUlkg<RP&S8T#+kz8GlfrScv?eq4J|a()KE)9BMpr;
zC&<^<P*=mSNKzdQw-(7|7Rz-P^Og6mdK!rJ1wJFNfrf^HP>$Z7CK})BCG}Y>r)qF<
znv3NR4@$)NV%e=BO#_J}FkK+CO<6_oSwbyCLrV>r8d_=ah}J%;EU`_mhE0oQwTE<I
zv2)PP>BVxv5%>PenQb(*)ljHG*3eFaPeYD|Tn+6tbkNXILnjT(8>VkJTk+bj_I4>-
zw8_sY9)jnmk;}T7Hhi4lSwj~M`5Fo|<Y~@DJ`KeKsi?W{YwypCWlES1&vAFv&`m=x
z4ZSrytD(Dw9vXUzW}CTq^oLW0<Ltjn;;Qkoq>qNa8U|{3PD4M<xr+FAvCQ843qC*t
z(?5-}DCfK?FOdgn82LaNtnt@Rs9cVCLRfP?QUd~m0yTlWf(;4M|8QbNgRa34+0-TS
zbDPpl4VDI5!z(=DLCD!uRAgf`xQ4X_sVo{&M1s4Wvmi#WcMY2(*b>1g4Wl(YAHs|f
z#xVG6s2oC-5XNa3ui<qK`!r0@Fp-USmo{mbq+zm#xf<qam_ldMFzBlDFRy7DzPRF=
zp*fe|)7c=GvR*<BPa%==nL<uJOT%mpbGT~%m89mO&mEkvVS$E~8dhmos9}+Yr5cuL
zSWM&ekUB1r`!8|4Vu^-?XYz(j@(o)eFQ-Ft7()J3&#bLWWb#8x<kcG1X&Cc-BKaB(
z#I+i}Tq56CBCi*%v7HUvP=Xg<>NFeTR{#xLG;HO@%+1=S;Z+SIa<jH;ctPWBWNBuy
zX9xH1Qh7_qtQWah8dzngz?TIw`wDlT;Jb??dpL|8J{IlO@ES+*e0H;?GMf!7YrUWQ
zUBh=8zSr=kh65Tt)o@b7K@D$dct^v#)Ynj9Og=vx^PVn6@-{~zB;*rnx{qi$s^PeX
z6B^#5KQEP!X*m0B!TW+omdYPcxl{)d3O^J@$#8$9IiIs^^JCh!nui}Qp9smJ4&Lkk
zv^}NaGYwx;S;J`!pVMx1<{HjJG3y3-s!h!LLIXca%u%j08otuN|K~5Aka@nll)J=r
zP6PjM-2CIb*i#84-)Q(&NNNsrG5bFa=QaGO;U_xGQhD7{`2q*f$#ao*SStS@uwaEm
zeu;nn(NHXe;vrn-&ed>3!%Z5bxwPqXFSqJd4L>Zaa81K?u2C(?zdif(Qu!ARzY3i{
zH2fyyzcgv_%)JV~3w}%BM^jU%|EEy9)Li;Y!`~WiYq%pMZ2yslyMo^ncwgWHfe!^z
z$GD#VPZ9rD!+(M&gq-0q{dg!bF@&TLQbMQ@LWvMOpJaa6(N{Kvk|C55Sq_ZDC>=tX
z5UwtjsX#0zTF6-9DIY>|2qa9SPGutG%<&0<#g@tBOcg_@BqZcDmdRB^crt{(A@mFJ
z1*WJTLYolUhEOAfr$T5RLW>Zd=BRGC>V;50gqnia5?EVc9f5TPQth`-oWqEo5!uub
z8VJ&`sI-wFjYDWsByolC_=GNZkt9tJNnm;iO$BLIRN8THg^Und(i+QT4+q)PUA=O8
zrH398ZwQ6U<jfG>M0$9c+$scO>kzU8p#rl!$FE%o9YW|RjOGiWy&w~p$!nI$okGYC
zp<4*ghOmE`><^){D9s7si)C`I5MEy<lXnqv>f{NMFR*|E5QM8KhtRc%ms~D)=OQkb
zdkSQ&9-^uG%jI50lHMWoDH2kle+UCY&_ggn&X=ZvAq)y(u;9;yAYE`%sDz+~kgzK?
zEHDs4P!LKkJl#bT{DbAGp%92CkEc=|5yF?wRWL)aLYNZ5RAN@T9YQpO7==9(m)>mK
zHkKX_VQ2`$LVVAiG$iC)=CxZc6Z<|W!CO+p=|Ull6!K95#|a$GPXR%wIX1-KOp{2M
z#)mLL$R`$+P7-8t2*(EGP+?jK)7j(4349=w=|ZInOe8Zym_@6GA%`(LggGI68p6pC
z=7unj?T4^2g!v)oJ`6uqSBJ1baAp^Vut@O50+$F}T2#7BkmVt)5M-smRYj$TgGp;b
zSR2B+5DrgieW1OxzKF1w-~X4jDTK`-><VFb2wOtf8p4YqycEJVS}d6Q0w=Q7y<PAN
zbyF$X5yH{7sT5v&*|Rf*m$}`%sjr04sbp$hZ))pGsozxKd5NhPN~i7#;Z?d#2uDKL
z8^UW`pxn$uA-o>KKK6Ao^8lSBgdWS~H$;)WT%P!q_st?tTYgMBDAe8x@l@?XCRTZy
z)BM7Fn8D$U_ni>_j`*f8cdjmuhVY)KNVWIrBq1CR;Y0`n$M}wg@FDj|rTh)2y*1kM
zkBIry|42wa5k*HjdOj9e5+*8~3gNR5N{3M<jME`}9&+xRJ><p-;mZ(y3gJ@7Im+@(
z2xmji6%Oy2d?m=&0y{2~&V}$z2;YYAT?jvh_=-&DUdq{;-nGl+@7WqxWVy_AUXTj{
zFADrY;Ev_;d&_0kIygxBIfMtI*~=kZ5#%aIQbYPZglpVWwbQQ)A=|$p$W4L22>dmK
z-voK>NFo((h44oRe~MbHc%Km|&;1w8$gL5=9U=cE-+fn*aT#9f+$$1N&g_Ys`4ww9
zmwAtbP5u%1ufYGfAH$BJn2Lo_T=2vqNs=HX1eOe=RFS-Km9(;9lndj@FsiZEwAAup
zAnbg9Cr=I|MF`0&2w~HH=}&}FF^oz=UO9{^LVhSGC4F9MRUvHCIc528omr)N7&XFZ
z7)GNoo(kjXFzST=|GrkuFn;gisU1cwAxTPh?BiOKO{`m_Q!kAAf<F^>4Ar1W&YNJ3
z!)OvlW*Du)aD|Z?W|&6PFx+80zC}h%E7F$)dECWtBsLS-<^o%Ukr768SW;mPiK%56
zo-n*&kW=_mIEmwF9Y&T=&I_ZBAZ$D*jJ9F46W#fQ&@Zrk7##%ZD3H}Vg^^vvS&@lz
z$rTkjq|TzKi$G>snjc1i$da>q*D$(;aUhI?VLTf~_b^@#JKq<2gwZpM1z{`<qgNQc
z!x$6B*f9Ep(Kieu3^R;=Y$psQ3^nXrC=L)fD2#!E>@V(pE)3%E&dF1Z^ub|#w_K)L
zAdFy`@2!^fFtjjObScr>a9d$W)S^OIkchwrbrLtemUM4QwiSjgY7M15!}zd$Ry>UB
z_0p*y3uANzPws!7Tg&AkVGz{{o?&4O=SUVNm0aO;IzqHIQs5}+3qtwfaMHLi#)mPB
zL0bqXgfT6Q>4HxTV^WdkWI?6~oGS3l!ldWJm=VSwDIPX8GmMrMJf$jlR#Zsjtmpsd
znM40vA#<khSMV%2<(nJEJW+AJzzi|4ypFy_VXO{gO&E*A;04=~FqVd~ER5x0L{`Wv
z!}#d5mobfL1s7|De6MW#RbfnA;anyW*M`w4*}FN6En)DYYh4)Y!~cJswjqp-f^RC4
z%uBDZHH>Xx><DA`3i;f|^zC81AS(7g?Pc$)RygsNMK214mjvz<$i`m@V^<g-tdMty
zu`i78SIB!r_EmwD?+xQM!Cx1+=CvFOskT3iH-tX<o1E-xIV5j|aVQKag7gU94&!hb
z?{J)AckpZbUn^wdkuZ+Z2{$Fwir~F4-Vfty7}wZ%7{|gm8^$?0Lm0=y&Ug8*!}#l5
z$rFN~6!?+Aj|F}b#;1Z%lR@lM7@vvkX-1eL`R8H2hTCb1iC+WH6!EXZ;O_zyW^)zd
zu5ZHlHjFD_=W6pi2C*Bii$e2z!I}M^Am_ulP$Xf+AB4`2Vf-Y>C4ra2_*oEMCOz(#
zS++oaJ&YS+Bu1QGZgPz{hA<wIlu2W2zj8Y;%F*FP^*i*#F#ZhVZ;|EL*uq}|9dfSZ
z?IKQJy<5cZg>heSPL^tH`SmFtrbl7?6UM({g8vCDCWes^!I=8aH|yde`<N$1P$Gho
z5tND`If9gk^P^Ac2+9hbG9o)am_lJWAt_%}xBlvc3K1ZJY7tbA;E4z-3gxO1=gV~^
z!7B@#T0eo+s|e18cv6s)O)4-^UL%61g@pX6h_h1EuNgtP6$$M3(+eeQiyrGlP&a~l
zf^!P42<i*|Op&BP1PujmB(Sl-CIUP4bdIS^72GW_O&}M7@}?2zw@6<E?IUOwLGuV&
z2uaHbJQ3$t%M6j_>wdfuWJZt`K^q}&C9t)?l$G+sY0k@r#*T5fjX3Xq;wzlU+p)n}
z4(T9zd^Upa5p;~8)8hd|AhWxSG=Bs=|5t{C$q}Z=ji7UpO}a#oSH$xLDG*o~ao&<f
zqjim-mXy{l0(Z;Q?N6mPUMcrrYZ36A<TVlWilBD{^F?=k1V$pzBj_990jiF3_K!dj
zgnWP?10#4&kU>TA!Gb(KqEn3^P$UluqD2rYl7t0m`+aL80yBc?B5Mg88sU9Br$<|0
zRA5YCT;LFaRh}s|Jc1E|PZBsXf^mY35;$5Q+ZiLs*a)&$Iyd5&#tX@W2v2}_I=V8+
zIk1#zas*R^WU4?)rbW=@MQ1NCJs-i02xf|+Spw%oFk6tPsyUv+G&h2ILK1k_)8V#j
zK?DmUSQLTbOI<GHiv=zbxKto(En~k8oEBCTNmdH7DuUI5DB?KTwGpg~;N_TmeFSNT
zJR2j}5OIF3V`5*M#By^ri<d~<8o@R$pW$q=?Ge1daq5_(V@CupMo?ZyvW}M`*crjM
z5q!rsBX}i(BM}^pU{?gYBiJ9o8xib@;8ivo!M+F&lkxDd3!XHxm!lo-c`br(F1bjW
zyz9?;%f-}us`O?A2O>DcP#?jSW3IK6T(gHs2RX>OnQzfDqok(aW*?5=(KJ`<5t)aM
zx(2M2--+Pe2uPT^%IWV#@O}iJMQ}QT4<a}g!N~|tMetz+$0Ilqah}@#Fv(x5lfP!R
zfAmWEqX<5Z;1iB>a^|NI{PKDB>XkBivz{JuK0W=ypV{SW`*(KtY%SsYJc2V3d=<eL
z5p0|+O<UpmGJ@Yq<$kbI<}8xON?%9#J|oXrf#*0uLB6=^-!NJtejmaABKSRmTM?X(
z;6emHM{qfUixK<~!A}uf5?1<AAP=#j#kMV!)(-IW_`p9l-~XvC9i8X862a97uF?42
zJ?csS^$2b-HV$xp54}l44V5A*bAJ`&mk93l_dJ&T76Ii8zsvq3f<Gg8NE=4*SA^f5
z@a{zEZUpzIWYVg)BbYW-x)X6e7lwRMvPxX4GfKM0(g+rhl$aiHv@2zje<JvoAzepF
z9sfm;po7n<m(@MR1WDB4UFkf%Ui`6qmCS6C4xXn`YP4t24p%81Wp(h0>E;u=l-5y3
z2ML>PrFAZ+WBs$9rlUQ?6de_G<mt%Q0Ub~1Xsn}&j*2=e>3B-V(=1BPtgNHDjv6|u
z=%}jWNgdCR$n3@2bUNhenN+C1N@n(#stKi^^DtE(=&7lrmX5kQ>gl+-$i;&%YU^0>
zvqS1|@H}JTR3@|S=ep|act+=;$KY89jdUE|@0^d(kbB{(bNT_Zqn~rRbfoHNt@9Ul
zxOJrI$k6fGOD;)Ax{hmWU9@de9nEy`q1Wa*ZVl|5n39r|l5*CP_#kHs9enVU55~6C
z;bHGOjx2NyxbDgnWc5f-D;*7=N~9!fmE1;0TOGMNI_qes!>1!#ho7Aem)h&-sH2mP
zc|)WQI)XWV5+3I8^3N_}LZi-&UU2nTC7(ZBn4_cAk}lRNdB9~?7adaA^+R>A{no{E
z3v?9fuysUfJsn+j4A!CO=%(XY9es546;pdR;CXMX)Llmp9X)ky@8+3CBkSm`<K<-k
znpHBrcjWHQ{dDx#oiji>U3Lx7!Q)4Gu*P$O3>0`}XflO^bmz1X9!sL?2yh|dE?wt&
zDgL02kdCkpjZ3`K#dPrLgwC(HBCPwIzwGSHDI2n<hCPN3Q+NJauz!`TPIFm0h^JP`
zF&%LoV|0wAgUxUa(J_>2I+l%-?p7=q&KXtnkJO!0sz!(^tW|4@Ym|=NLp-DDhp|i&
z;yAjoj!8NubD>{yP0+z(F~08MDgVGfk%6%qa;8WN-}O(?F`e!TfB&)4R2|c}M)$KX
z(-gy`=XK1`F_Zq&(?3ffN#uTZ+n#=sxm+?Gi3XAk%-69%$NM@y(6La*BHC8R3*0+8
zmgrceW3`T@oPv(!l=tw|nJ6vJ$z@7hEms*Tt<bSj$AC}#vk&AZSH~J1YjteUu~El5
z9o4-4a>w(N=D5yxm)3J-GyDaC&Z+ZUn{-gJg|nOI+RUx7S|-`5<Iynb+f}Y@I*6>b
zL&u9c4(K?@_^)H9j@NX&uH)3K%sCreFY9<k$1WW$Hn?`{*ds{kDblNS`?LPN0$Z+@
z$(agP%YDlDctX@Z9s6~>K|dKQy*Wy1)u`Z2!T&hmqvS0ehiEPx@921&4UY8;n$U%6
z>w0@etagqacvr`J?01ZGgzbnY>yHYux1yifwX5Z0IzH6#la5O|j_Wv~<19y_<0Bm(
z>pZ<j8g<vt>YwO1&1Kc`sg9G3NJ+j^^m9S#SI%XY>23r67dpPwv1OR_mB3>|JmhC|
zkYx9E_}BEY+MP+hq0#8WT=d?a^1Y<*Xki^+jFFm7lfI|-PLuv8@ND}Q<QHhtczW$2
z(w(u=4?2F-ab~2%ihCzXKkK-x<8MYw9anT*)p1?N4La>;>6*?r5_)d-@bG7d-v@hc
z>i9*+?+h<Geq~@RpZS}Py{lysZYYw?fBXN?@u!ZzXtWX1)xWa8UM)ZPFT1SIKd!Hz
z!QqaMyE^`5NY`;s$9*0Dh^WY-CGQkI(D9H<Q@ium9sT5wbdWGRX<8<ypJ0HWM;vxB
z1CLhA2kvE)7dODe=#o$QOBg6=ptXT41Ema<Hc-<*Edyl?lr>P%KqUj^43sxe!2k>-
z8%Qyb{X$mdHS*6>vu+OZEEp<XeZj@gqm9LUU3z(*F!(xY9<Ao9Y@mvPCk<3H(C9T6
zBWhIxubZ9@eO)C-Ny$Sz)eY1zaBWs*-|F~nxb&2P!^xRX3nX!^k!u^MV<6Rl+dy3d
z^$avN(8NG}10T-GWIGKFJY!(RP!F>W1j$_^H!_e>Dy4a;l*tj7%YZ-N>JoH)|HwPz
z^OVpUIn97%prrwifph~+4d>${!*EXcX=dQ=y3Q>OG#6P)zUk%PIZ@hMsxv=vsOB}W
zdaWyyp<ug<1Lm+vS{b-<Gneu<2HG0PH&9?ei%IPabTrV(06$fI2HG1KzRlIaz}oRy
zOyk$c-*@+98^|$`%Rw5rI96)^lB;?bKb@_!fv)RZd7Rxysf*ylYoS5dvvQ4GXh3G0
z1_o1Zpqqid2KpIz*1(y?>D>+V5Hl+Mt)JPR2F{Mi>@A9V8R+noBkV(CUd*NZ)irYR
z*v$SkMM>X4p)-J<P(1eq%|o|*j`obZPOgy^1EYtzf}9i`Net%CHFCf}gO6R5hdBMA
z5)%UvF>HW`n?(dNYZx#&9s{<4x4E(gq6T6#f`N4g;s%Bom}y{^fuRP585nC|91Ue)
zgn{r_&nN?n{>~n0IG0b%ay&PBO5I0hj;60pag7o9<pkGw0}~8PH}JfHi3TPKH{*p9
zH76S&PBnO|${}Ue%EW1cll)n!kRLH;EYA#1-}3M<DB^4ba||psu*|?*1M>_lHt_kg
zp85O~XzJfRPFiGO0sDH^vyjFgDv=QRJ7dafSE*+`ON6lQT6sAQNQV*GZ|dc)G_Yr+
z^r(C$ul-gT&J`dJ6j~!ne-&M?r_nf513L|DG_c9Q4g-HYpSjt<76UKPRpQcC+Vfe@
zb^|XOo^2e}Fo}u1GnJUwneE&h=y_2rT&oe%p08Xl8+gUQJ_Gv=>@u+1z-u&)fsvy<
zdkhr2mwjPpBIDbu2KE|GpkvA%E#2AV)uu|R$D3E3?s|jUSu}Xi0JHD+^Bmx=87+};
zIc7|j-ZDTu#68v2w`Ps+9Ru$g_{YG%296jwYTyS0KN@(?!22AqfiDbvVBna6lZJDo
z(uefq=R6-7_}IYuKAz(SPSCZqWOAP8Q(}ql69b>p1E)BlvfU8ZxN%auwel%3q|fLr
z<0Pijg6toY`6buUz;^~;(}}MPd~M)c#*JQ5|MAjUuH*0iZw#C>z${OoB5qmfJN+>G
zrj^-at(?E7GrM>r?)jgA^9C+(OVTs@d(?3fk3V7>x>o+lz$Jz(22X=8R`C36;4+)N
z>KqvO-FDX%1Ah<m96RT~%58GmKXQ%hhJl*~ZX38`;1>hGazQzslm6dmit$;$8@R<y
zF+Pj@&l3K;F`iXx<(X~#e;W9UOSV?-;>rD+i*>=z#BVWo={9u8QPKnY=libr{+D~7
z5$3XsiD!a6WO(Ozb|mr|yN)XDd9mO>0|_RcGV!#DVkU~4s9*vn5=|tTC}pCw36CoA
z*uxSg5AN`kG;yz=r(kEIJ;uXq858A96b|>4HSuMQ+#$oHrm@WOCX!902swXnpEX?i
z?!7FY^O;o5^Mr{iCaSXWYMzQFa;m0OGC_B$Y~uUpGfAElMb%C0|K7!HH4`i<J4w1&
z=&xa-#w|bPHBHnq(ZqzyMCW{eZ4>oPJY%AciMl3Et(EI><U=I=mBgRd%8%B{FASF^
z4D&QF(a=OA6OB#0v^IguvH8E;Q+-?sWpYWFO*P>*k!CtEZNMZc($Ay!<@20)W{fA@
zM9JQr6Z?4@j?HXtqJ@cBam<b*!$eCHuSBsc3Xch|i98$mHZo1LGI5u-GSS*ZmWgd9
zwwq{UqOFOMCPtaaINiD(=gujZ@R?|D;?q{%ABV~vOmsBS$wamZKTTv}&{BU!Ywu5A
zdOD7j+a<TJvrgvi&An?gy0AMFiV4+3zKH@8Jx%nY*-d<PDxsT+XHCc^w51u;?`k?f
z?p&xPUBB$SCb+wa*GBky2;s*|9EIK{`j{AK;yI3LZbDxZ{Y*@G-Z?;E((;V{CI$%Q
zz6&!-HqD`M5a)8$Q+GwdU=u$G$=d~4%mz#ZP1q))oErb)WI{J#m<X8&ixw{3a83+}
zm^gDTzkNYg-^EF$iQ%i9j+iW(Zk^2YH)1B@CWe|ACTjI7$Qr^q#(b|%PJefpJlw>1
z$vG-v1P6K9qulm%T_=y9?jLPpjEQxk%2*TQOiVZNJe5sMFfrA{?DYJJJg22`{uC3D
zb@H4|zDXt?-Ipet_<3ys2@kLMU}-kbTbO1dVM#{mbl(gUGfgZsv54!=7ECNKK}*gt
zksivLyD($kV`5^{8P8+Md=uAfAB!fhlQ;d((`=G|v56&I<#idQGChs6yj>*UQo3T6
zcbUND^g2N(S!rUG;Hw3$DUz?{ir9WCtmlrn;n`qfBYPC3Tg7-b7in%0WYHkswekLP
zasLY@c5t~(URmMl;tZPWMQ#BTJB5`_-tg=;@v`8r&|_OWr$g*Au`<s&LgbUB8G9HU
zYUICaf_$&Q*dgCO?obowOnhVF4HIv2rOtTHd%Oos95iv%#Cs;*GI2;Wd)UO=oZvcH
z`&Y{TDdovY{^W4hJ0{*0r98!g9UT#T{n~=}O?<#zY~nK$$4q=^;)IEhL}^}XDQX@!
z@$CYsptbj74u-qN#7PsI|C9Ozy?kdekBp#>d$HqAoXcqwpVQO0BTRfD8u?OS@s`ds
znYIh^H8<~s<g*NM@A$fn@fUcVM!q%iorx<n8lw|ynYc(-H*ucIbNu-?Js0Q_QUAb+
z{*0mW_F&eJJp6}VWP*F-&T!u)6MMu~WmAbu3#zZlxGailuJm6saoxl%6MvYvVWQ?Z
z|1TzfHF1+WrL||&5XT_DndrWvAY-HNcP`&3zj9wX->#6^KTZ5);<kx9Ce}#KPJH91
zl)q^%(O2;m{!*ekx5IrC4@^w6Fx|pKG3zHRRJ8EO#6Kqf6_P~D2@C%*j70nimV->i
zEEE^KN<uobNft_2C~4u3o8B@O-v#E7QWi=J^67nv+2Wg%%UMXakYe$bzKP{6)J$p5
zmMe(%Nnqi-52PIvoOMy(@>Q}>*+RAjKlLqCwa~~yV+&7OsAi#-h1wRXTc}~-DGN`F
zMhYvJ>b=IPUQ=ZG00sHnOlPI)Sg0$64J_0Xq`p8FJ?`-t3oqA_4x0Xk7Ir11Z`{(F
zMNKTYEVQ)X5z46+Bn#;lCY^5WwvZ--3@p@a$`RhqBWW&#%`7lPFx$dH1}AbclbneW
z$!j6gLR$;%gk~!Xtu15;zWJ(W)<I`w+gMn&(IM+rX80_$x6sJ~!%hba9XXiOS+8Dn
zN^=s@FRzo0D^9rH<xkA9kZWO(g~1j&Tj*k;r-fb?9*j@UvmjgOY9U{ARA8ad!V<5y
z-HMFg?zTH#nAOcf_^_|Lg<0zzw|~|G54U+!ag5o+!b)M)-WK{;7+_(bXr!-&esqI|
z`P4Zpf^&Z%zZmtex|jEy;Ip?Bzuh}=@)sV(f@)#7g%K747J?Q`3zh}V!V8HATZjn#
z5N)+IgKwE<o4Sw~wAGg$3Mt7O;kSh_ZefUpsD+rtv&z#SkC_{MsD)t`rW9uNnUFkf
zWyWR08GrbuXQYKu7RFncU}3aqf$}ky6BbCuS{NsU|E!bg0F+GR60@Bm&B?-6l$Rau
ze6UUxa%Hi<d8N$fEzGd+tA*bz%%t@!9JcU|h1nM7SXg6Wt%bQ3=2=)lGg_E$VS$CE
z7M599DB4+MVKG-{ywfk!O9B59Az!wyklCv1<&)!+ms_~+_3l`ekrv2YWnncpX;$H^
z$^Hh5lNKho_uR^xao598w$8$K+S9^%3mYtKw2-vXx7orLK{i>qILt@M%@rApu3If^
z6Hayhmh*oPy7UeUFIw1R;Z+MSS=h-PVc`|}(iO+Una+otLGBX6+ime*C0U0vy|yc#
zfordY*DUO_kQ&T-ou-z2N2)uH!Nh}odN#=4Pj76H|AvJ(1tC9R;h^Ae2|QFJe_N0l
zpS6D1!VwGKSoqe$Q48-`_>@a#;eBo{3&$;-pedT=v_9lJX5m9Isv+N}ut$t?#`%$j
zkA;v?rNq9%Pq+~l`9E)#le;YAl!ebMep$m;mh%aI+QR1+zTnPUFEcxEz5J!9IAXng
zE2TZJ0ggz%ueo09<+B`;<lDcZ;2hW2m(E@|&hIRIZ{f0qE39SVyoDbu{7BDSAZ=Zp
zae-#1!%z4BHrr3h55s*O7E6P!dw#NTi96zA=Fc?ydYLh2++shoS1nw#a9s>w+!asy
z>V(|ed2hP%Z&<iV2h;sYrvDdF%DLn$&G_BIEej27G_>&tJGD^325kJr1!5$(@Q;Pt
z7VcQMM=zphZYh43F1p_FWL|sZEcV|S=KFY_{{cS&7-==fbUYR6;m@9bE&Rt|Zlj!y
z1RFp7>-b3-+u1V3Y!nwHQDBn55&}yKq)sV8O56BKe1MKx@Az|h8_70OY)rZ4`82=q
zK}Fy3hWT8eiQ=>12^$q{)U;8{MkO1SZB(~W!$uVwRc$<J<NoI2y+u4{Q~l3)s);VR
z1k9dEZa;d2KW~%wDH~s|$atF9*eA0{YTKw|qrQ!2gz}MypKDiF@Om}|HgddlQ+oc<
zSx&gVmC(MCjmE5Nqm_*&He5EE*=TMf)rQ+fx~Ryrr_yXlw9HB;E}26dqy4tIcvBmL
z{>UTeRV%TD4UY}4jkm`7GepIfHhQ*o0xXYQo8s}-`aN%O<x;I}WZCFsBilwB8*Od)
zY_zw**|npszVy7_%BeDTku&nM>*WqMI@;hzfRgNdfVzkI{5Gbp$;h>_y|?p`mt*7f
z+5(bb)Zf{rtNXeLWJoWtQE20Wjf*xuzLFx_P;CTkbhXjV#<RBb)A=BQ-EH*XXl?YO
zmH3_Ig0HuYQ+0iPZ1lC!p=}m<KO4WTmj~Dgp2#NYFS4ok+c8^agM931-*cj(YiGe=
z(WWAhU1a`RGH64yvDL;l8zCEE8#8UpvJtVN+ZbtMlnuj%Y2%CAU54ARY<!U4CTb&Q
z!?saxgFNe~yH<XitPOJ9#!ESEhT0fnV`sG-%8A1`s%km&{B3${klDfr8|x<f!pVuF
zZN4`Fi~q`>YGbU8C;DbjurX1PaU8%=_jpl}WRi`^T>UA&<!`&U`!Xq+Vq--AY^Ld5
z+Dx-C-Ny55B&Q8qn?a||Z*w$FW|n{Cm~CT@4dtkNm5sSJ=GpN3GMCzz&xvf17ur~4
zV}an)Hpt_TyX!ZQ7u#53BPY4wh%b3*P8%i)m)Te@>aMV{lC^ev*KCkE7?zT+wz0;>
zTCUx#E}N*?H+!9p_4K8@HXCg0-ym-+G6=22@o%=VYl?4+&G$lPpWGmy>6^XX#tSwM
z*?8N=4jV7huWanK!6Ch5;}vd%{5GwQyLZ|+_ivY%g`Bh7WutaMo830v=_>CLI@JGh
zgG|lW*sqN{8|2q*=g+{D@1t%1?Lz*BjW=!H6V5!q9l@QF(}w&Y2h%_%VU}Y%%r@zn
zHa@ZOu8ku$-sig8I4X>p)m<{H$(;LpHi(CIwLWI!LmMqh6?|1I|F~Gh6QW<PJ9~U$
zqx=!KaABJXhuojqIBDZ+8)xap+z#|B1_~RuD-`4!nWN=4r@8w5vOl*$PQnSE;UJAn
z_eS|EF<;Jweno?v<6h>LDQxqNjc>)ee<wWWdpdL5Hgp3b-G&P1g<6M=@((tCWEhF^
zIcWT3<C2YHQ528jXB(Fpn%t@PY+SK%m4jy(w=pcod(FlT8#irS=c07+*4t5m$n=Yi
zU%AnQkZR_KIrncC{4T1nh>|}U{J8`+?y{HOnSXPR3??7u_uD8l%S7HT(??=$l((wV
zeH-07Ne^s1wDHKsKQ{ig@gKLpUs}^YbMBIa2^-~vsH3xPNdmE6wlpG^6{;#FM$sUO
zhEXI%Q6h?xQIv|JP84;cC>=$aD4vSq=_txZ@xQ-a<)SDbMU{?;%Qwo`AG(sG04wqZ
z#}8d8Q4lLc5w4UvwQ=ebLS9iI6)HthnH5F0s=(?3pNyiKAg^q6{<%>@aFSE5Qs4AS
ztr>OR9b794yK(CH8?Kjsan+83*s4ity(sEO@k|u6DmjntcB+@UqFO2k&_Bh&6C345
zQAkm=+9WrQqDd5d54($fZIazwyNz;c6!)K${@Ey}2_Z{aMCJ4-K5s8IjiQ;TOHN@%
z6fL6|7{znE{}Y8bihfb&zor<Uo*6|}6m6&+#r|>Wtp)yZTOw~8MY|}vM$s(_Uli@5
zD2QT-;pq^?>|Kex`_zR^^>uX=*hye^6n;S{&k-b-7ATVNoa($Np4}wpv%5*s{UMp;
zY_L!?D@UC>TFgEh<+;k9o>BA?6}v}KW3<#m;O?2uz0=-N^byLuJ$Uc$?7o8YF6-5u
ziKjZd`$sV#>iqvUx=ChsP!xlsSQf?dD3mDFC?-cSC5k{4!6-&XF)9iziV#gyK64mX
zUv$b}(}oHXi9#<LzY&EQg(b3f6j6>digLA`R|YV}qqx_(0?Cjf{b&BJz;^yu%r`uW
zLH%89e*~9Oy!GbzySbyIcw<E7m?-9Kl9?SF#b;jUjP!A$`gnm8qL?Viq{qTyrKm79
zifK{Ik77X-)1!EvF2oh#)GDUV%S@jU#rb~jnM5h=$^FuO-93kEnwz@k9nZX|^KR(5
z!bRt8_Ux<eykdT1!&Lpr)P+%yFfEE=aTJ&9Iedu_E*1DsuYwiaLDyYtqgWTk$|zRR
zC!-ke^{f&2RYBI9pS9+fAWGIpo#zW)jN+vzHVD2^AcdO**&M}|BFWY$wh6vn;0pqG
z6qWASB(v5|k$w5GLbXI53PIuSDE4saV^|r(t5NLbPLJW~7+#Cw^(cOe;`b=_aqdx^
zjp7`w9mShbd=kZ{Q5=ZkU=;61@j(=CMR6#KBT*dXM)<|^b`<YK@op3&UXTt8JW{_@
zvn@$gyCnYHIk8b257VX2iSLObN-lR!JQl@=QG65yi;fE<Il(=+C5hyZ&WW%8;`vzU
zf3ittvnQiC6~&n-8gG_Ai{krD^5<0UE}a(q`i(+YR{BSybH9k<_9pquC@O50i`UBg
zd%O3mD2QK2(Q&g(vL>27p{)0tD87y2JJyZj5`#HM!mm7ZfG93R;o6kMEYrm(eu&~n
zy85gCFZoGmE)1r8DHN!4If`oxgHc=&MU-6S;*N42b7r~`#V<wjoAiMl%^u5t6~esD
zg}0*kgON6daxvV_k^YRLSj-6#e{tBHOOA9~V1g*UBlunJ8bR(0d?1jT52JV__&);w
zEt3BiMWQ#I3NP`0m@AWti}n)*CJAJBC1NNkc&Q>uX+g>e)JnJ8KFvAUs(cK|F{H#$
zA%<!(Ct@ImCt}WD>#M|^@K`a1$}udi;H@O^#ZNu`H_O8}%f-65tHzL9!TY2@K0QHR
zU9`Z*7HY(>>$r!cW(>7r=n_L-47FpZ6LUUjTE$Q|<~$DEBnDRu^#o_Oz97#CY!E|3
zK^h5cEHF0J8FOk3?if6xsWgG<9I7CaK)z|cSq#l%XeqMnu|*6SMf~yq9*I<A5tCOG
zWfs+K9Ya<OZDMH4JvA?>a||t(NbO?SwkEwp489orU9;K?Bv~;psbdU$l$fcLAlWP`
zlH>@I8$*e?2~^;LCnWhX-W!J*bN<_37(?0RIW+sA7~~kbifp$SddJWwhG%2w9z$AF
zsfUpFilL`StU@6ZN#7XyiPGn2{1^trKsBa6TUKD{KvBe6<P;JI$DqWZ#t?`h6hk<M
zn<H`#RZU;8Sq{edOE<ojB&NHP6p7)*&GOOBvJrzWII~-Nx~bf*YPuDJ9Yd6}h+#|&
zV`JF*paNGX9>b6rhQ=@~hEs*!Q85gUVFdXh|41R3{deo0Jl-lX?b5+K3Yi@p1CPV%
z{(R237{<r2Aclo8Oo(A(3^QYx6~m+$CdV)}hG{WOVPB=&^DL>_`|?P54i#~F49~|f
zBj%i@#ip33(5X)w;%pl5UhBC6=fto*A#2PHr)XXb^M#NSDvU0dwulCAlC~s<rF3;}
zf#j@{SF-dbX`kk2Efd-0F;Mc|W|>74u8LtbgKZo&<5&~J+892I;dBh^V*E#w^D*&m
z3>#v6rXJg4cp-+}2c%6gY>r_|3_natJd~8al};4{Nry|x#|9_f-z-yy*&VcY4Eti(
zPq&X@XAFDjiZTAD6t8gMw#d6;sJKNQ-q`KlBIj(8$83>z$58d<{H1+;Ond2XHQler
zkaH^MwHTTSIVCK5BgPk&;q4d>$8aEqpLXQz+#(<3`tB`QyhT2`MSd#=;vs=~eSPo5
zaE@J^%9)w&O|RhoV~c!*MKQb=!}~FOOc$yur6zhmh~dK+-xnhv<7A(cr*-ut_mIvF
zl#g>4`?5}O7YGtr(VE#$V)&Gn<oc@ed&6>juJ@i2?XW4<{XB**XuTND$M9tgvs*}K
zW6u9f&ItY${gYc`cM|1HBkq?x7sG#RUEeU?Zk4I_Z4BQrWUb9^yjA`_hT|I?av_F`
zF%*v@F^(T%_>uk=!>^ov43}cK!7UKO&oSIf$=P(a%e5FT$8d#<___OP3<r<7r9EEq
z_FLuaT!<gseYVOJ{=K)5%H^x(xXyO@Er#D?xXTt|xD`X@m+mjWcK;Q_A4306fvhsV
zu+85L`!Rg5w~z{VIKi*oL$=Dq`!rxn`4N}<kekDJ5W_<*_gRM%|B2yWPLqxEw&Wpq
zu{aXqIDesw-YbjPVSYL>DUK3xRE(oi93|r@6-U`P%EeJSj#_Op%TQ9m!{=X$FG~+?
z_u0Oz@^K```6eK2-73%BDyPJqM`qr5!n5^1PlY)C&CVj35s{yW<93pl3s*UgDsfbc
z<KR{~u&nj#*;!TNcrp&()pjgBlHkqv`l`oKgWI8k=fnPT9eAFK<MdV@L+Gg$N9{QB
z<0y!uPTcuuZXQRAIO@hxFOG8)vg^m4C;ijocqWbpaWsshQ5>!~QsZbW6q*PHYEq4f
z$1l5uBrOgp4rZ@xm5XnaS;PaV$w`_Dg=PY0rnxiNdk?7{2h5qq;fcc=M`j#t<7nb@
zw~B-3uw@A(X&uL<4sMb*LULMgW|w3qw2wQVlB2d~{nazQLmVCB=p-cB0&8rOS<2*(
z^A8@5X0E`_0=o#z6PQrm!%|*#6vh#WLytp_qbto)*ViqM-f{Ga<5`jIF0h9{mi82+
zm%!%R<i3IojN`dD`U&1&AT<XF(q)@WJ}8cM7gIuU436XfXu1k0tEw(MN=nTKf*>Iw
zqCAEHjA3LHP^XZYgAx)Ff(VlDz1#UH0Vye^Q@XpmySo%Y!U7dZQUC8A{#om;z4qN_
zpM7?nbKkqM&nJ@JK8)6~iFbiIgz;%OxZ}j5V;KE!79sLyrFxwtCy_2;bPc0h7~R9r
z>n3aaYpXK^f35Whqh}b=FqCkRoM9%_{DkSV>kyAf%9#1VN5^Uyei$)H(Zc98KS2+}
zkf)}E<gvoACGJS*O6cXZHvT4#JiVCD?c<){y~7wXL-dgheI@KC;TID2mvBHB1J2fF
z$3bBX4x?ifpG7ewjG;`e2ofR~7RFa$ZUl)x!x$dMh%lCgu{?~CVT=l6QW%rN7#+sf
z;h?<IgfRb|VdJcz4${~##z>r}#Xd@&K0}O?JmZ;-vR0DucKSp~SvNyW2?rPPnPJQd
zV`>=F!k8Y$*&2y6!eF_%ZzaytzdIxn?l=-RJB&GDETX6|%XDC#WSGy`%?U30YR$xV
z9>*`p>9tTIM`wr|GsKcGnpO#Z8!QduzZrtZE3Ip<2xDa!Tf^8E#wyOxnPNQ+Y?8P-
zj5VCjoP(#6)=5=am;P0@rUtd1Hqbgr+(a107Kt~UDIPXS{B))ug^<c`5A%)Uz?Lda
z<9CFyGmKqf?3Q-1^=KG-B)(U|eG=}M@PLE|B|IeIVF`~&NP+BrOyb8S<mrhpPUhgJ
z!Z<DQGZLQ7p`UwlS|jm-L@sij4CA|;)*E4bFY(I~{vhEM39m}{qlDKaye{DreQrve
zI{YM&pC$Yyj9+u;ze(g)7`JmMze|L{x<iCZWdx-nxEsd3FrJB^Km_#U{V<-6AXg+<
z5+8)|kaIAMzvT+~lq8b=Sf2hP;lB*4MB-#C6NW!C$isU_gt;Tg9|;mQPb7#4kGvAe
zC*km2g~`KK!h#XRM*u0Lkc5RLED~Xzx`3gmJS`px@`R_w<ms~#lA%Nd&*ktx8S(iD
zXlca=u3yeuTH<9SB(ZD+<#O;BBvL+t3KC(`lA%&0m{TuCP&tB^BB&C<jcV~#Bdm^_
zSgS|+%d+(q3K>_2$Gm^zLy{7kDMro|)gwrZAQnNd2x>%7GlHfOG>f2C1g}Q$Rs?TH
z@LB|~OK;bS;Ef29B>rXuwWS;mogBeCyBdBwQxHG4tKo{7V%QJKDbkaq&|`I_vF}BK
zSzJ%z^=0cj5nQXBz~fzs{5PgXY6NK!q(_hufry|{1ep;mDU|Sj1Pvo-Ao1tM)*yvP
zmORalpj+wS^xjX&OP^2pAc7AgXu?1gN~p9Xd0^E99*rX){Nq$Qp<gKBqX?Qu&?ADL
z5wwV)rBrO+%v_9ks|Y$p&^dySb8?_{1Z^bVHiyzqBA-auK7tMs`BcJ=5`HEjrR|$3
zKBtnaQ|N@Q5p<FGqCKgkbj#uCE)gcloSlUk&2R(}nKsb~eCZ|Txx#Quw`&rTqDNpz
z+?3Fg(3a4VkUXwLJP9eEiw~>M^^TxV1P3EH6hYqz`cb6_mdc<|;V&ZSAHe{+D}qT8
zOpf5o2nIzkDuU4w431z3vukSZ5fKdK;vd0R5e$#u(o8}BH=Ue*vrNMMnc~@5Vq|=P
zjN~*ansBRP0^!#Yd=tUg2*yQ%(sOy&W~prpkBOk#EJ5AIM=&9RJd0CmEXtl3!F|@f
z;jAp1aJWMaZ)Mh$2&P6bJAye8Op9Q81T!L-836;z5Pus%v`P@%t!L^qm=$O;D}tAo
z1ZCwunI+~%FfW2d5iE{iKC>cReL;kGY^oFKHA`@ag*5;91R@*j$FVPa9jltKEQ00I
zCtK*Eq6sbI6IMj9GJ;hRtd3v<Ge3eg5v*mZj1ucPFEVPcBY&I1x2q%&rySB*p>7i+
z$Ve&G$IcRm7G`IcOK|3=pB$C6HG*vsY^Np>?2cd$(|%fR_SzZ2E-HU8YsD;)yI?}<
zwA}R7-U#+Zus?#5i?a^S64z#l1Dr3Cf$;4mDTgCC!X+h&l2IIu;J;boaRmQFa4dr3
z5uAwNWCXuP@LL3@A~+qv8KxW~SR&zZ#rXUs5=ze&=OQ>C!Bx)mk_iQx)n>WB3!Le*
zMU&a$BIC;mCGqbh@_huCCGtZK{YnJvLY^O`1PZw(k?RuPknpC2KSl7fM1GNwoXIaI
z+=}2f*WMBdk0SV;Q?GgL@NDsr@s&7F|CGp`2>!~U+?B{Z3GYkzK*A0s69&%~dVIp)
zOqkh0YBkD}{;y2Ad{N|&;=c&uqIfDABw?;7a!2vB#A_Bx*fv{`m`9%GjpE{L(f+xF
zisNhCnJu1)qCgagqG%KaqbOH0p>PyMq9{B^6pG^IIil_yF``Yb_$c}>NNF)gEKjOO
z9xgS-q9`7PGDi@9Hj06z6POIdOGGhrPM}_?D4vg^b`;4`l#U`&DdE*<@V~N56lLXU
zxhPI8PI)<s7or%mEuBeHK8gxav>%^dQ9>e>B=Vw!m7{nmhh8NbES_X|C5oz1OkI)^
zce+mAN(rGT2&+k$AYpY06Qighk(v^cr<O$Ct(?F@g|9{NdK6o?=XxWGB&j5cJgDuP
zQPiQC>9s$JA|;BqqDYS-BZ{}9s2jyQQM?;Py(sEOvGi&dOXP9(acYk*nJ{~fcrS|7
zDAJ-}jVw|&O1CVTkggO@I6g;YM$sUOrcpFwT%usFCJfnJ@yi_1FpA;LYiCKAEun~_
zkwi%UAc_xj@WxR*ZdjYdGIIl;e<a;Pq<IvT>eg6)B&!8OFjw$s8AYoc{9}o<mavV4
zZ6$0cVc=M4a)&5BmB`=i6K{8|PA7DVqH`4E6--d@c@$l!yn>Gubd9206l0?p7e)6d
zdPJc|VMK#pGCe6F3YBnRQaFmM_0l5}MkTCrI)(H_?Q?08S<DT7MpAz>8vODZ9EBBy
z9fcEx8%3We`qG(E_))A~loFH1em+-h>RO#EPp>F?N3rb1guZjdunGa}7sVHnXP|`r
zWv_8_gN1Z}q;N6+QX+#SWM4K7VFE{k<$V~P9L0zzzG9RsCvYt-@j}8#$vHZTuO%`n
zifh}_xkNDZ$Cssk!%U9y8FBRvt5PX}3!N9i_$cm0aX*R)(kKowF^Wl1Opam-Q<t+K
ziqla{i(+~d`=Zz%#kWz+h+<t7>!X+{2V$=UQOuI~>?r0$`K?4S1?EdQFNbG$e8OsJ
z;KC>tMX{LlC{{+Xiup<BM6p70F3;i5ogOUd^A|QeBzvvqx=}E2!Wzjye62+4ObVta
zj}1|5%jvr@icJ#V9L1I=$fjiSY?XMmKH2oZ_9%A9)16W5lE`ie_i!So21D<ar(D*E
zACNeaBT*cb_#p`oOUNHlY&t6OV^QQAopfB{C!#o+qc$0?&J|~hC!C4mrffYM#knZX
zM?vBh2`_K~l*lCsznAbk3ICldE=z>WKSYB<tVFI#IX_DJH4>w^k;C)ip~B1x^86IV
z&r$p$Id4n&tAy0&H;LSeqQpGW<K4L5<>?<${3($;QT!#5gn2<)-jz5JUa6V?52AP!
z#osb*9!7&7@Fa32f6OURDB&NDSTb0q{*|ZyMG>dqDFsg}cu7GO1-TUDR!~$yF(u&7
zBjGa&@=C-nl8{e9eg(`Kw%$6_pn!sc3JN`GEtCL>6qc}vg7_TzYd<HGKXsmXRzYz|
ztfZiXM9L~Cr{FmSB^8vCl+ro9o>$QCy?X4(;mRm@y;v|Pj~5h_S5QGg+j+sIq@v_s
zw!biOE}KtyUQ|#yM~*d5ysY3A1!)S>6;xFal1*<bs3wuuC|p5;g6awq71U5rlcz-!
zMoam3mZnl>Ed{Ugcrl*%Q){va-%yaG;H{idYAf7b7fWTAWCi<Q3^b{uAVo6duaK}u
zHg#DW^yN`kK|KZa6}+S1T?MH*a^6#d#sASf@q^?iXYu(WL$-dH!;`6?fr9rHG^F?B
zwN=QbECty)JWXZ?sy0&a0e!wCtKPztC*w9&&?JYasYI&H7tIy4Q1GRKK}xWSwp7qt
zK_3OJ6nw0pwSqPZ>m8vdeXgLLf=&uLEBHh~*7vnLDEL%Cdzvsm_^~mqXhKKoRxshM
zqPae!+gsNrUUq+Niv3(c7llR0YjjhPTsT+T`J$@=oxSD@ZDTswx+@qVg@hGE6n<O=
zOF>kDqCg|368uFvS~mC{qADO{mut@@{1C2gD12Ex`1jPYV-Z_{L%S5jq#7>$DUr#0
zv#1PzVzE~*hM51P3MPF1P8{nGQ|-P?HYK?F3{>!i^8Xtz0~9QnFZ$Dpb{Rxo9GFCg
z6REkXOv*i2!4PVzU?gYF`nV_morfwIrr;|DJLU`ie;KX>|DE|?hH#XE(F(>e$7&|>
z-{{v0zEN<qLOr^LcWKtWT#xuz>3mYgk#lVDRB@t$NeWgeSgl~Pf+-3XQ8xus6--kw
zSHV1mU$)9SLJDRn_*RZML&1glf&&rWo-bxApfYnLTmA)sVxuGJiz?)rFNfpl0tE{>
z2ZyI~ME(yVq{2&N>vAP{`mj{NGAWrjn^q`T$<U7s?haLu0@o;5t6&#b1_kRBte1Va
zDcGQ3qk>HeHgoE|kkG$O@b}^L+4L<^rL9t>9>1lupP8CCDt$ulBr3L@-jiePRKWWT
zC-S6I!#xzJ;Glv-vg1A(Al_Fb&wd5uIiTQCjYJ|;zS*vZhZP)A_z_%iH-N_p&azz%
zk104VDL2L!=HLI55<kUMTp)P7zd)Q-aE|u&!=-*WPai7y-NPRqE-JXh>0qI+h3^!;
zaEl*wT+wlv2-8x7q2Y>xtMq`1-70=$qAF;n;v*H;72II1s;H#mrh=ciz^cfj;%5cF
zD7dfSfr4KZ{HEYf1$PwOQgEB&D)@uyMU&et5TCx1aky#HfoPJoK>YYd_QVC^F9mlM
z+*7b-f%xdx)bG9uvC0I$6F;>;{4y%^kgnh?Q}CaHzvb~*!9N^gL9k0TkK79d@mhtm
z<5WDQ;%QblBhoa9pZ}LxDC*D3d}E<#v@l>!dz6+}MLreJswl1^zlvv66jo70MFABB
zRkUo4LTd0x`sX3Zofis!p%}eT@Kefo6;M%BMKKi%7Y169XJGy`TC}TB_6MKV*tJlU
zQ1P6KGAhcdD5;{9isx07R&iMl&4LenHHF0-rW=WWFBJ8vXOvU%f{OAgD$tpWMAjSG
zZ{5o1&?fWEMWW*(@tKm8r(5ESDk`f;QSp|FmsC_yQA0&d6)&rJMMX$OH5L9MQB_6L
z74b_KiHz&1;}?kpm8BSvs0JU<9ato4<;vu^bhv&vqw#>`S}I;ukwi09Fc7b)cwNOC
zDt=ldaxE4W7ysX@Z!Qj$OjhxxiaILVkv=SWr8K!o*$i{Bcw0qX74NHPsG^>V`YO^?
zq^o#G#k(rrQ<17-<YF<QUE1u$f@%!@Dm21tuvyB_P?4#kfeL!ES~$7zmDDSX13&+>
zSd@K~k)`rmJbb94F<rVu2o;S~d_c9Ah+gSwgbkO7=al5nmWY~3Y4m3kn$HXzk{nwi
zzR)taXJs^3(L%*=6(bl^6|Ge0Dhw4Lt7xs_a}`}wv{BJk#iuGd(mEBNsA#XEgBoNh
zgF9|Xkf=BFrSaogT1^LjrlOOI&T3E!h73oyWpHRBi<bm8c2&_$MOZ~dMRyfFRP>aI
zbY#i@{drp=1(u4a3PpvgLR0b0{EP>KlPfM2Z?b6fQt`pkfVt~ZVXClH^i%PL3R{Jv
zqL<2&HE>mUjJS#zeX>wA*^)iKbtXsew^U56pGluk`4lblX)m*nioPl)E)~oQCf@p`
zqQ8m(ObHc3RSZ<|rHVl+21_L==j77BUM2|@@RJ&HLJgDY@fCCUaj>a<uO*p8=-!bk
zMyZ&uVu6a$D!x`RRmC*gqGF7S2^>_#SSfa#it$X0!J%7AMc!qi+A=}KSW$tInxtZ~
ziYY2Mc`2M~PkuQtq;2!e=_<ZeF<ZqP6*E-KR543RdvBR&cqgOdGSPck(B($a?75OY
zPYyxHrq@oJ@ON65T$u}1EK;#f#d;NsRV-1lLd8lIOI0)<Rd1P!<tp-4$zbkXPf9!8
zJt=-p76q<Sv0B9%6>DirI5c&c*tJY}V=`|n6V#0q@^4^zsMxAvn~F^;9xoG{Rcv9F
zD#_0+7qym)=F5XQ_~PJDMwz(nDt4&Y$>n8S=;AjarVU-e4@=eMVvmZwoW&Ym(Xda&
zeiipsJWz2!#X+tZDt=ILi2he`PQ`f@M^qeDaYDsOruv>tYI{t@aTRy21hu|N8962O
zl#0_T&Zsym-7;voxU)WkO@y<T3*}7k^4J9x7r9((iQh?{jmt%sAJQ%{6^%q~W@tH*
zznAp!U6Zb;xT@k;6~A%)=Q0&ZysqMgifa;IH7OYPCKnCPJI-R+YfRO&<I984oGO$t
zV`;`u62GP5wu(Qgs*2xL{P9Hoos3*71bO&Wn*4t;B3+a2s<<axb9D=dFRTcjS${q;
z^iahkuDu$HY51Ey=K`)FzlMKQ{L6J-!_yl6lM*OAPDAnv(RhX6(`^dLr6IRQdy!W|
z=M|#w3b9zy*)(ZIpz7Kc;u#GEG!)WMSVQ}Y(iKKxK`ponu(V4N4e=VFVaXq<H1Na<
z;m-&>$+9Yh&uS>Hp`3;nG?dWroQCH$l%}*vsU<a((ojL#(s^RQJgi$1Eh?i0LzI>B
z>BfZ}LVK&Gl_#f$${JqMP*DQ|QAxv#THyBn6N0|%LLw0!h05isBD>#~CREiB(vYPg
zTSGMs2^vx~yrrSKhC~fX<dh@U(D15;*EH1BP>U9=49sT;2pPxMNk5bJh6dV5(`aUo
zfyo>+SwkJ!Jzt)DZ_>;X*_BrcdTHLt)VDR%)$p!{_cYYg_>o|0eQMq{X#$d|;X4wq
zzf#Z@sT$HWWNK)jAzj1!RnvH6NaTq{2`e(*m!}-Dp)@Vuq>MMaCGk{fXvDZ^=%C>P
z4IgUwSVL<KjWsmU@R5e*8k$N+HRBKuQ`seu*)5nOEi|;$&`N{#Pe#j?f^&pK!YyAk
zxLYKHzHK9wY^R~E2F`^I%`zuXNTms%Xo#*9gI0=9HFVU_O+$ALpUF`=F_EN(?Ebli
zE*iQ@1s1FnjOK=uX}ea6t9ygdduZrMIT{oVVGSIy@+uM0aC4=2dX;#4m9PglP^BnM
z!qP2*Wwzd|AjBqhX8!1SUWcv0(Xd~`0gV-|;AxnlVWtLOLrlX64I?%5($HJOKn-7N
zVEK_g8v1FhK!q=BrS;V?wpkL1A1}&W*(asHh5>T80o@autO{~qkcPn|c269}UI$W#
zNPMV<d@a)&xyjvE308OcO2cps{U!foYTiC`l!nn7CTN(b;cE@wXc({Y)1JgJ9FB8g
zL*_U+%Bod@l9%>PIj~A}`6Yv*sKz7>lQm3}45UoaFjeAIrp<<ILK3HI_*N2ctrE|y
z4)mO*VYY_V8rEo-qhYRwg&G!Vn8&%ZTFlqLUSy;E1sZy+$>!-BtHokTU#jst@ql58
zgufj~U9Mq;hLsv$vPF-Uf#*MIpV@G==(Jk=s3yf$i)wQ+*J@a&VXMYUHCQj*vVnO*
zKS+F&gqt;N(fB!ABF&@_dVn~Q?HYDy*sWoY<lm`bm*gkgfqp5!e-&iNUP&RcPa-TY
zvqQ}!JgDK2hCemj(QsJ95e?@xT+nb-2KR)9lNydm{J4gO<Kr@VXFe*Maf%d4JWKbk
z7H3~g<5*`jP~cN~<~fbacu=T^!(G&HiKiN_Y4}d#CIYw;ETKu4HLw>`<p&xieNN`e
z@1$MjMBATwakco=$h@xMhK64?{Kiby@RNq0=~5Y~`>Vx>_k;DML(^astP!uT5w|ql
z*6=%XL&J%-0iDT^**Hi@;{AFgwmO#j7iR~TXdU@<+|zJhL!6GMbUe`TkTL3>_^*aX
zT>LdW=CUux8ah6s;hG>Tc>H-bCH!?gmSg&l%V5RKj%&nEEz+LWgNcw^M;?jf(&4P(
zmvM=s*97_8vquoG{5qb|0Ubqk6wpyn4>F{Pj-_h^O(>+Ju#UzDgGGa`D{?HY?tiKA
zdN4#SE3=r6XLXd&gVZgq2N#Q9{|d5bztrkE9VK<XeI3|%qEE`zHKMeRGCE>9dg&;u
zqnwTgI^Nguf{yY!YUy}YM+F@fb-b+O6&;nN%olYQ#^Da0q3L(xU(&&&ilkHQjkcj&
z)q@eM>Imtmt|L)4Rnw7>!}HG?!MbW)KMuT9Lq|;=^PY<vQzyth9_81H*L1wD<82*v
zb-bY?NynQy>ae?%kSt;AXwsjb1pKwv1`bb=#J3oob&}X3)OM|?r=z}(R2^wLSgq(C
z9q;ORk3L^3#;+AG%kEaEkkcxZt|LQA$ke%gWI)-nR&ZO2`mI72){2I7ua1s7KGTt{
zL+EI!qm_<EIzG_RL`PE{A5z<8p~gB`_3oK&p;xwKJlK#yyqS)VbTrq|g8yX41~&d7
z6(&+*ov6M}q^%Pl>u9ax6CLfP4sCR_)zMDk)Pb6xOU-P%E-<r$Bz`L4`Hq35`Z_Um
zo#>>avkpy%uH$nZU3B!+5!TUFM>ieab@ZU0*N5&e3(>mDT|&jTgz~Koty(8&U_?h$
zhoVE3Vt0*b@Wt$u&Z|O4<cJ*oh0j6;?b6}u@N`&Q{OLm(HL_6$9^|>XPN=_U_^U#t
z)`i@bAzw%QdhyD7(OX9!9ZPjA)6tjdr(>dyNjkpJ(O<_`I)>{QpkttpAv%WY_)^Cp
zI^<6LU>(I)gvw6In0zXAX`3LmIM6U1PY~wJSM3AJ2puDJjL|Vx$0!}6b$qSk8-{+p
z_^(Cii%$Q~tHqOpMc~KvL6>nl#_O2C$?{Bc>-A#b(TtMK)6DgOhbQZpqGPs>Ih;f~
zrs<d=-7;OmZzZHpCP?N#OJ>Z}F^h8{Cl#4~bLkmok&Z<=H*gPzo3CSmj)yG+oX3jw
zVzG`TG8><Kh{0HpKCEWiavdvl?9s7T$4VWmbZpkKMaOC#N0x=w=~%C0jgGZCe*Y{~
z@bjR=BC~FTj*U7tN!`A0{{K-<uNU{El3S^UjvYF7>ew!M$eFkyFt*qRu}jBp=`Nm9
z8s{c6ir;<g)3IO2Ngbzj9MEx4$1xqpbsW-hn9Arl%9L9bs<}E;>~7##9!#p#4PwOd
zP|b32er7!L<OGv{L#TDf&}kiKbX?GJQO8-jO9t`0l+bZ(oliFivJKiGR&EfNbbP1d
zdrlS|Ben#|U#xSW809zW7C?@8RmYE9luT4IaZSf{CY6CN4BXIhQ%5xe2?l=B@w1M+
z2J#vBMaQo??sIX_@tclYI{wsgN5^d@UiV<h{e%9L_>Ed=@65?0g%{JmbljChuFv=M
z;8(<xD=b_2fy_f4k95Qtc*?-vIdcAy$Ybf`r>bWDtK&aO;Y!P1RQ_orSd(*0$g58-
ziSR;6VjctAwgf*j@*8-@Kyd>lsCkp50tN~jC}N<XJS}8^b>7Zw2(B0Lk^%!o+4@&n
zq<>~H1J4@4C6(}p@|m|}lzEMK&Ok{66%14~P|Cpb2Fe;JXCVJZQQ82nAY}}^xKU)*
z4m4?KWxhb-Mp52C&%O;>ZWPK!F=%6uFqOz=po)Q)4OBKTd!yhFo0p`7O_JfT5&WWi
z#Xwa9Ap`n|Or92zSJ?9#1D&fINHoyeKpTUb0imXWGy~}dY8iOdz*`31Ht?E(*9{~a
zc+<ce2D%_QiH<Vx=SH#5$n5=Z?e0f|lyiGEs3RSiV&KWey`9vbc&+{^bq%~@;9Udt
z4AeKk>vHwU8LVEr`9Lbwcu%@6m5yzj)MsK~b^IogVIb2$69Y{RG%)bK0b!sKeRVyp
zp@A#|*)(dCII%yK6n0_#J=Vhgz`%zF8XIV}DHvkv_)Pvvd3Tf8{(FYCNi;L?kyNsk
zgv|}KFwj!s6E+1d-74Wb9|r<ImUNc#YippLfvyI+8TiD&+Vz>A8tBMy^hj)P1iw8x
z7#Q<kDiP+@X9hYOK_+*SexUj1H;K>bHv@M!1&POFRR5Ij26`B<4A_)oAZ$Q2_@@sM
z15qPLZ$%1u)F^XU-xO>X>`Nk@uNyE7n2gBgKw%yvG6an_3&-GxHt1!bH;2=bJOjRg
zn1RnF=Ku*8ZWcuP7|3-amGSCpVE1Nm@5QWoTQa}fEc$a$1BVS9F)+};mj-4ruM7+_
zFxbF&0}~A1FvL&;qYR8TFwDSLoYeg0&cJX3BMd(94eh8H_uyin*rpSq+gC#Vn#?ji
zLtjg0j+O8my34@*UsCT&l?D&UyxOVoI0GN=4i(uVCK{MzV4CEd%=tz7>9nsK#7~u!
zojpPmO2y48lTkX%+obrGSy3u(27S^aG*dG4IT0GxBgE4=2Id;rU|^$xc?RYiSY}|k
zfdvK@8dz*#iGfoGLW@W#9~aspn)MA5?|~NLDP=B|GAU{WLu_CT<8EM;fz@(E%5S_y
zWY?_s$E+0gS|^7lvfe=XXejAG$cu)4jD|KD*lb{rfxQN{7}#oHyMY}H{gxnhQ%l8d
zGjQOg;Lg%c1G_juwuN>Z$h|%A9*@J@LbdJ(lWU)W{p2)okZVi%xL#XBPcBu5<hZX?
z3ceo<M?wR)h@%FMaSb%^*uZfECk))=@@wEEjWzJSfy)L?8#rU&f`N+$&Kh{SV%#|c
z=M6r)46%^fRH+;BEnCDTcDx+=j(*!0`eBQhxg+$~77@Qy{9xb;XX4J#b<V_Hp{rcw
z3|y1=D_g~TTg8E;fiwH=4Bg;l-x>ONt042woaW4JE*%DbHSnAC@NK63*1#LAq<u@8
zb9aB}ciBWIzj`iohtA&_y2peu@E0c$M>!EXzdtl&t7zXN@X`YV4-Gt$qt}au^7LuI
zj(J}Trtm)o{^jazqJ)Y648)lzXrhpbr%XI;BCm;jW^f6}Wg@r9Ql)5oIS|-t`Twt>
zbGM58CY~`-z~q;bp^o2&=$3ZZQnzgt9D<yMO%yRv)I>28@lq5_yi-1otu38QmRx(~
zQov?Zh?~_Q{#g^}zYk7%JZGY;iE<`NnkZ%Bd6OTgqKuTlUV~*y{CX@jUk%*&f}|6v
zV4{2u-ePyq^mD1W7fn<)@tcWTCSEd8#l%-8hMRcV#49G+m}qOFs)>+^_e`XksAeL;
zL=xqgsBR+BgwiAFH4`;VRx(5_6R(nAO}e;MwEnUIhu~3Wb)9j`GHZ@#@VbdNc$H61
z`=Cb>DQrqM@urElP1H3}$He`uBE`g8Qpt*ALf9r=-X?elo1FDb)TeVyyenHXwh7+z
zWc^+?om`&LcAJ<tB$Q?%ol!8+#AK~JWSYn_k!_-ZiRKyc@0)07;)jzNeYXYAKFl#e
z+DzFdgo#EbJ}~j2l-#30@|y>Oe`M9asYl3z#e@l)QizEbCYqV}$V7KP@sC154dkKM
zQ(Ky7W#VHKtxas%CN6CYB;VgA3f)bc(mnV?IzN)!&cr7sEEBeg_9i+|f{7j`J~h$N
z#OEfunD~sI9~SClqO-|MK+utoDoSn_iQ5B#T}^bOUEP!TP#{fGNbI&hqo;|m3DtyV
zB4Q$HV(-Y1!q{yWx@4n<!zH4dFr<y9iJ9BQ&h4VX;lR=-4-Om?u8A*9^f%#|@J(#a
zQ>3qnn2BB{dYkBD;>vdM^UMrB_Ts~@iApkWhCj;Dq@R>re1{ldVxWn^CWe^!k~WSA
z@fgH8GAPvci_C-_!6Ow8I+T+_b|Id=Lu`68AdWCGlH<~iCPtYUZDO8@`6j+L@r{Y8
zCZ?GfV`8j{i6$nQ7-wR<i3v>3`+*@BQ!+oJ{Mu>$4#5X}lR3HiCr{xl8y6b4L%cLJ
zG*;d>m~P@*6SGasF)_o$x*cMsiCHGj?FcGD-`OD;)&e^NpHG;an{Y1Een_asPSJFy
zSYTqIiPa|7m{??Dv593SmQ$tDac$JZB_@_K5IY5*-0@(JtuR@!8S{6FRrJYDQ9e0%
zl0umeie<k$F37I6RKUb~6F)DF-@Q|8FtL%#%Pz6W#EqTeukj6-Q4<C>D7#BU$Az|<
z*hW3M6qwj<Vuy*NCXSidX=0a&{U#2W*ll7DbHKzt>0VaOe0`U=`8cDQmf3JuFm%UV
z;-HB`CJvi8!U<S7ZSRKc0lR|dm@{^X!}&5c>=Gw;iQ^_tm^dwkoRp9@o|4GjU1G-G
zjH(kGoH22htI%%2;*b+-1QEPo;-ZP`RNllT6W=jsOk6eby@{0F;xZ>7=h|-3d3R7e
zmigoF4pjP4iY0Q*#FX8l|B;N1lFrPzDVu&V@e^HSqWJa<64f`;IO~6vO{XR2Z4<w9
z0$ONe;SUpkas{*SiiJBS{^BBRp@4<EChnQ|$Hc!}YD_#Z@zBI0x#afV7rMJ!+&don
zn=5(wxW~-BQgQKn0^LZg)id;;i8u?nE!I)TQx=}Kz?C+a6|Dc&C0m0%f>&++0LW`0
zpT*~Wq5QJ7!yfU?=uB^qh(8h9e=$_hLLm#!TPSUzu!SNPp0!Zi;?|#lg`yUUQSEYR
zP0okj-xuN)lO2m~3;nn~wElRggoWoUl(bMvj!qtqKJh{-f7NXMH{$~>bo5?o84G1C
zRJ2gZLOBaBSSW9yg5)1jIOFxpp)pe1by6(5zi6>;Ctk8pMUH!ZkLZ6hwan#Er#&H#
zOB+X>4OO)evha?DcP&)2kYM2r3rQBLTS&A}%fhP`erga@9;jiVCg}%5_p4+@eh95v
zlS%lRg$2>j>lS8tDSzz|1^0@|dqr&v$rj$S@V13FE%4_@9SbRx)-&`LTe<4)73@o-
zu7w}-WY)7#U;4A@Uh%@QfX-w1>Ck%?QZ0O7;X?~)7Sb&=w2);X!$PKo1{U6zc8%T^
zI(a<gNXadup|2&9Z9!OYpU>6E0$VAthji)Y%2_nOv4tiUnp<dLp{W$o%)&<&mhTn(
zZT6ki?UowiFUgh`T3Ps52A!8(%ApTgUzeBr0?RVml5U|VZM5(S4V;_nQwtp}w6}tX
zfE}!0myLQxqOK>-?w0(Sg)SDlTIgiS;?EX7w{Uo`m@6Nfvc_*Wi+_R=yIbfX8S>@L
z$L&@(Esby0sW6L0m+6)mv7lQpEGW&BqJ$Py3uGXtW?{?HAWY;mEm#&}7QSqrWHX~0
zrnwe8=3%QOhe0Wq{CC5&{c2Li*^JVj@GaatmC^J4v|d)Qtx0dH6iGbRCUc3J+|R-n
zOkEd6UG%pwz(Rfp&o~%J$qa;zY#W0t47PCH!VL>UEDW`<nVMJ_X5lLfGnp6`hFch6
zVS<H;7DieaMdw%;!_2V~M_c%sVp}7%c@j4opu1?oSPM%^7a3<^yi|!7qb{wIXfpZP
zI*HD)FwMerW>+krOtCQ4;yr{!mcRb4dD6j#Y2PSGpKd7ft%VsD=z02~Z!D1}&$ckf
z!ZHTh!dwgUEG)FJh!ND1v;T^pAE<;5V}f5Vt6K;E@fS1qdL=Hgu#~CTJSp`;#(xEa
z=V;sr=IUOt!oo@m>nyCdu*$+}3u`Q_m6`nCUO_d;$>ZGYh86dTKf;OJjb(#{jSLxc
zxK+{uE%EN=OsZXXUoa`QTG(c>z&?&!*luBmg?$$GTi9t~mxVplO-tNufkPK<9V|`j
znkO~gC)j<j9C2e-+5rm(89oa~f~71`Zxg6=h{m={a@r-WwUZM6ia%<hjO<Qdo#524
zaEY(+SU6?jw1smP&T}nYkn4=hle0|MeL+xoEZvrIf$#k66Wq_`qJ?G~1OH6eCzx;F
zTevLwf3)y}g)0)jN^k5FJ2TUc?-MlqXNl9#*XSaaC|8nha$(_WX`{4_pDp~twb#be
zHVwpY7VcTNZ{e1O+l=yl@t1|)x%gZ7lgmDX_-#gkS)mO#0}tokFUs#1H72I^Ihl6X
zLW#0*E%uA(e!<G{4=ns`;jx8>79Lp`y<c!Elll8atIpZ~Soqh%e-`3w?Ak95yA87A
zGp_6x5B3MK=<-RB1G#MEwo$}Jyp23I^4ch1qo9p^HuBp+2%fP~{6N6Zqt*d&d0Nn`
zkd4B!mBLx6{@9CY+YV$ro)&_QqBcs{cuuw!v+*puOMKAYj1~t(^nmzMLTX;p4l3K1
zvN8RDC^<1yWNkg3ma$RR#v3-0Y?QO{f{l=kYBtK-s9@tI8&zynv{A{%i#96TSbIR6
zJ0R9g3N|O=!)RV3?j8`u4vLqh@K<b9wUKx*(0|j!5S3(U{b8SGCfKNMqn3?V*=h$H
z>(sDO(+;B0?4al&`3D{pr+-hQO0P-%U$;RAPCY29)y!B!1{=vX-nH=_d)cUCqppp5
zHd1)HsmNP4-j=<_H_kjKrBQ)<2St55sQgd-9UG5+Nh^Lx<nJ8(PEM7~88$L)q}fP+
zGUA~??SfNM8+A@<VB>uo4W&^Z91{IICvl6D&WA+!vm`;Hjd?ca+xWo7hc+x5wvEO%
zn%L-KqpOXkHk#RJYoncwk8CuzxseAxw$XwCdMcTF<+QZHU3ECzwft$^;J~UB*V;xK
z8^wm#^Q9WI%}kcN|HMXn8=u)M$d4}T<2u;*)J8`es~_?rp2Uv5uZ0NTlcG9v2)+Vp
zV`T9(7NxIyJv1V3y>2$T+fe8S8$GB%G%;)=VxuS1;CiUYxJ+)@LkTzJpZchccYX@x
zy_}}m!M;Db4a3I7$+`PRlTF!|+p=6Po>p~8uwFSfTpOcpd~L(C;oBH!<4YSc8@+7w
zv+;$E-ZuJ3QGIQ2x1HwK1C!6(3_ZFQ8hc3Gz8Q?$-^KuPUJGq%oYwDppv)i}gKZ46
z@s$no46!lP#?nKAW>URfhs1}sQit0ZK}&6nva$O^`ClM!@c)b3`cOW{BL0nyF*c^y
zm}+CJjd3<6&>R~pD#hKr9%{KMZM@X2`}NQy8w|>lYoW<Da($M>itcpp?>~m7(MvXF
z*_dtPTN^W^hi6L2QOHj@RCvYp5cdq4V`DB8BX7MAZw5rhf(#36EVOaa#w8nzY%I31
zlZ%6mCA5gM$!3v5EVHrP#wv!Dy4hH1V|$|v>cCVX{O*ugR3Pn1fY#W-UOAmRXYNJX
zdK(*TY_+kCL>rrIY__q5d44UluRz+pLqhu?iB`OjD~+1$z7}HWx7%oWBea77dYH<s
z6V6I6?Y6PU#!(x`Z0xnM&&EL;hivS(akgSc$rmyY$Xul@+?9hu4ojyod5%ar<MNA_
zIpjv@xQ!Dw&ajt_lU%P3i&HjE%d}xa(p~fkRbq(G**Gs}+y$;MhXq^PUQVlXIGBA@
z>^qzLao|rIcWhj?@q>+@xR}d9uh_U|<GPKjHh$z%a4q!FVX^O@+LX*RyFpjn2;G#D
zul7i)Tp(@U+U#Gr_}jR}M3NHd#^_=38~fe}k%t|Bm-IhuP&X>T%wdlGW#g`me{B3K
zV|~xY1Fl*&?lZn?vqv8mC3+??){kubZR4>GrU4Ugdbhx($7D+UXCux*ZU=cBJmuhN
z2Ue4`ToN*`7!i)e=n&?0kk3J*0%?yc#od#cOkYul0uBl~@Eyb)6mn45!Fvu;9Tag8
z@8Bf|RUE)UQ3qullyy+dfzdm$xPuZ-@I&!g2Y*$JBl4Vsk`9ZYCO_|>>*8FjX;#V!
zb{ydTXm7<Omv*qAcVdzC+5bh7$~kz!f%!~wMXKE`v3kp-@=j1>OuHLj!Qt2U$#uNM
zN)BFhz)c4#I~cPt7wh>GziuSI?BEp#Z#t;spsItAgIW$=b%OH#)f^-^s7@s}6j{5e
zNTP!pPH?5GDIqKW4;v7yCp?}tlV5Z2x`QM(N&TOg@CNm17x*gKfigI`gOU8&h9W%O
zu`xSE3aKmMTMpiKKm&Q4pOTxl*K<%`HoYU^yAsmCo?QZIX%5mIeBz+JgA50m4nB0y
zSbC2<4II4hpdp>MC?nf}aFFF-)X}_;^vuP#(;7LT)gL&)9t}L!$?PT4#6eRBEgiIS
z&`h>AcW`KACYwHTK(_P>!3DhqBi=IUkG0t!OQem%PX&`&JHgf@<Lp4Uwhr1!BBR6I
z=;-7Q4nAdwr3oD!eC8nRAVPZ`bav3qL3anAJLp1%8H@hOtNSDp(pQwma1-{BeS79O
zfs_jqGbuSruR2g2XwrM6Gw87j@%twJ|BjaKU{~)%(oH6?1KZ)=A8;Lb4%Xg}r?(j<
zwh|$Hg7<RJ+rd5u`yKRg(AU8<2h$z&bMS?O5e`N==<i^FgFy}kI~cM$ZlHr_m&Omi
zoA@OucM}if&pvus3~?~j!B<Q_NhBmsn+EYl<t#D`m&7aiv&lco;TC3?=wOnAuNg!K
z;~b1<mO3Cm6&vfI;xoZ7O!ocpu(-S={_&D{jyu7@--iVyOm;BE!Bpv=@0Y}rfkO}>
z8+(20V1|R$4%RrB>0p+F#SWG@nC)PWgZZ3Cvg2F_<ew+;Z}Vptd?uUfEtEvk7jg0)
z2^KmYq%U=_%)ttWl?<_*!L6KC=18CzTdCnHsX3LWZiz<(Th}s$9Bgy2-NAYX8yswL
zz)?0j*hI-o<2TDwa?(=vN<SiqY?WRbBE7W3!A=Kzq#Mb$OE&Fhx*ib`so20HVy^@0
z#@1;^!~q8f9o%;CJJXmG-@zpZ-#Iwq;HZPs4$e3@=HR#k`syTCAsN9F(iSQ}-58@&
zvUT+lan`{(IpReL3oMO4@8AN(9tr%<gW5hZ|9c0Q9o%qmQ+o0T2Ui{ZDDf+@@9O;7
z*W@VIWo|H4r~vIH{U--MJNV7PEv|bG?&Qz@RYHzJoCi&N5>xt_?)}5TpAO<&JmumJ
zmmLQW9XxVy*TFqG;(Z5C!piVb$p@0izQpOMza9MJ;9sfCW0_;rfe~T8{U?cZDVd*k
zk;_GX7tgrJ?IMqhye{&&V1h9TsSgvIwo~SlcolF_&_!VvMcg3gc@%O%24)n!%F}o^
zP=*v5e))(fMm86{y<llA?xKW?oi28{c+N#h7m5qjMJX50yU1{n>7ulYGA?Slc-2K&
z7v)^M?BW#{FSsc0;zbvgT~u&U(M2VfcXAT*v<~r2jGJpRcdrhz_x(>ot2-5b$wi-%
zaaG*l1sJ|ZK?XKebrEt=-9@5{YHpwpj|3Mh+XruS@V$=lXET;O7gxg#-Xp5%;@=~J
z$XkB~O|Q9l-NoA!=;93*NiLFIyh&R!;`!D`Z5MpKBw920y;sM@j~zlOF5YtSTkFuA
zl9^?XiYKqQJT8}2&qaNz?czPz_lXYgxcIVMW|vK&R2OM(@LEMWJ={G|kFSex&$59V
zGTL_vHE{91i*_zPanaC4mW!q?nz_h!S#Ta7x@hd8k&6$c{tupud*i4$bvd}7OcR>8
zpeU;Ppn4kZBJm>^&0TJLgpXacaIu+Iv<S6yv0`~}At3YB!kO&Y+C>`|ZC&uR<krx_
z)gekCLzQzG?Ok+m(cMK47oWQ5=;Cu1T^OLu_|IH)a?x43g0}Pc;Ak)?UpG3lCDhdg
zVK*6qE!ETbJ`CTfIP-m4PnusYE=<Mvc0`%1h>IwL-YW0|89qNMG#9#yX)dO_FkF}}
zhPoK$!g67|=<A}N3x~0A5p&TiNS<WRMWF}rJ~J(v$e#)n^}UwZoBWG&^^pqnY7tz6
zctoGc{(?7u7z-DJTnwPA+awKi<ty&pljqrq3m<0iPQqYG8A3}r!H<fs+Gg^0$6_Kb
zhPxQ+Vw{T+E=Icenw&1H<s^-AF<MHSTevoNq>8G+-rU?Fix;LbE>8ALp4vT7Y`kQi
z=wcGBa1tl5OZQ~%t2Noh6iO(YZz|Q3ca6w=<Y@4<0^zqVX1G}AV!ex*E@rt{;$o?b
z*)Ha|Sm0uzi@DO$c`oKlgg>hm>xoaS=59^AsxES|*bR27qPA_qiFbI<O-<ynjI)DU
zxmeD`pjVw_?#=YmQE|~uUd@R)D0z*GwNGT$uT3XV=9@}l?qgzu%T27X#l=<^o21$u
z7Uvq-EZ1fiG?soynUk_j;@e&9a6#Q@=77aPIb0h15V>}{*u(kmp|Xd)F7{D97k6Fk
zcX5EL6W1IU2VER;ahmDm@?SZQxZFYu$D}@sOU3=TEePvz7boas7pFMmdW72V42Ubv
zhc;dbRXipYJ|=qa3!Qaw!No<+9T(?0kB*7=r>5HS!Q~|v-?_LS4t-TVj(3tPm(Lt{
zHtq9c;s+O3T>R|f7tRi*x{DhwZo0VU;)e=x-Act>mzunNG{iRnhRd;j;<VirC~&2G
z8owj>l}m(++b({0am&SPCqjgL)=UOIl>b9^|C5WqM7CDUm?MR-b<xR;dsK<J?V+%T
z2lN=1aSypY?hk^$xpr~ByLc=+@<I7O3`9=fHXAbIJUr#$X)kz6OKJUX1dk@$%?Y;0
zx_C_F@sQU;eh<%h!RCgq-HXpBSMLc&f+x8JBu@T<65$K#e@e+kJj8n_?V*eZcqr<j
zxQ7xRib=L-CH!$>U>cA1^)jFHP|`yw56^R;<DzKo%tt*E#}o<HmO(u-8%;=g>9{EC
zp`3^E9x8Z9IUWRy#|u(am)|lfdZ;Av;l~AAKRPbB>!N*JyyT&ZhsGY7czD^vD<0nV
zP}f6M4<Qe4cu4Y4%|n8RnjUI-pk38HBzmaf1$UzO*qYBuMAz(k%L2E&>ftpHyjA|X
z9P1U8uU-c$B##AD$wM-A^YE4zyg~7%hv}u_>Uenebck=r*J=<*;CmDW<RhL=rQ+&&
zsP7@eLnfW?;aw>+%>!ffp2Sl<Y^OP|X7F<WevOju1-n2}$ob=<frs}!WP1=E8hWs|
zg|cK9e)>U%Jx4;py|q$tjXZqd;X?+ZXQ=MvRKk7}0*0*bLQOq1^U&2pHxD0qXzt+?
z5A8j)@X*pj8xL(gwDRyVW4Aw}wT%8#CxZK6%+>NI0{^#@Bj$Z7AK%b;OHw*`_|!uu
z51l=9^w6_R9FNaDaHmlwPh-jRx$HH#a#k0K@U8yv2{G`5=<cD12g8HOjvm4uR1cbm
zh=-^LMKb>|C&YVP9D4c*;ol4V$<YaQ+3LKXx%Pyx=nW5^2j7Fk?0qU9_lR^ooIN3a
zKOx+WK`$OL`q@ME4MjFjtMmHV)MrkLkJ_g7@zB>pKM!AcSmR->hyET0c$nj1u7`mh
zzVz^ohcO-oc^K?rgolxG=pi14dKl&f|7V}b|H{K~*~HVQ=LE0B@YeSz52HPNE$L7G
ziID#Hg~EjFIF?TKFv-JY$uOSTm?Pnd*opF#-|J2BFjeBSB|Nesep(LabcuZHVMY#R
zrpKpL!7rS`EW{&i=h{nTo`<C#mU)=ZboH<>hkvn$MH1igD42jtBz`;`Tp5?sIUgsj
zl#~?`=jpITfwWZ~R_93I-o)!XtoQI8GuFcf4;ww4@NiNxZ1S+n!)}Rh_OQjnR?dPx
zK@sw8ITE%@WQT{H5~&*(M0t<I_vP^H^>Ddrpy7T=IUwP|oYq4g4om!qhocgybTUZV
zV-i2k)#*&&_EYloqJ%s>Es--4p7n4phko9}g&chS(Y)lmloRXA9)9p}!^2I<a7Dr&
zCA`XccQ5#(bS<avb&1rw6#B`-&mL~c(_bX~Rl@7?kJWDyU%WZ6?zY5<44j<%PY-vv
zeDy}X-uTPIT@SZo_&tVu9`18}Yn(VDh6f%Vdf4Q1gLpjh@V5uuhvDO~hkv--`KayV
zUl0Fr$@NjnN1TtRd=&6e(8tq0a{0*PBd-s;N#f{SHSSDF&h2C7>6AhT-m865<nxi=
z$1{XOQ$9EuR1vRoH?i|cLFPg}3i~MPqnM8t={1V@i1)GNVLEyGzno44KE6CDK8a;d
zl^vh;QQQYxOZa$B4!7>4_+v=QbdfZ8RLb){O8cnlBjlrukFq{q^ikPIIUg_hDDR^J
z^{i1l&wx4{`k#?070EfJK_wqovy&3~*P*tjPl|~{>%8QniX7z?A1|}}sH763QocTr
z^2bRr^>`hQUf`6d<|DyJO&_&<RF|4iW(^;SK8}kd;<xhEKXxMJ%&K~?`glz;yy4?@
zDv-Z^=#*IfWu0;(>JZ+#mqO-bA8-0-<>O-?b$q1w$nufx<1HU=`$+eZ;iImPdOqIs
zk?P}A|AzH_yz8@se(F2&loZMtJGXZF+}hsoIs;D@P9uFtpzXVZ>txdQL3Q5u(a=W&
z9;ZY{n($oW>X88hy;punity3M$45Sz`}n}ehd#RYNpI?-v2?}flarhH$bF(g?39>v
zDu`V(Nq@AuPPuwnvr6S6rG<}{K2~Q3=F<r$n`gK7(Z)v?it^FcM>`*%`RL^16Cdq;
zbnx*hEj`g-om8f8|ArlXY*~{_+zk@o#3}LUl<4fE;>N;#`=);`eK<ZVsrcz&^lm<1
zJwn7s)W^w@!H7M4^z;#yY<Z67?ews2;%Sk2T3m0MqWDmKXg+$#@OAm6Hu*UOBX0Vz
ze0=3&_>&;|7$6bHhwH=h;ZxhwqMszjWFqyZ+kG6`S+D4btd%?K_3_b{vtxRl4<{!V
z6-hr0uJeVD{tW1#I(0uvc1{bX#6YI8kI_vF5AreC#}FB~x9epMWmrE-=9C%cW305R
z*Wc+YPm2*gM*5iQW15dq?C4_xQ~Hef+Q&CO7};^0P=o6nIxWVqqmQ3X2hps&paJ1{
zsp`{b1mix@$0Q$<eN2(_%Q+LUy>&)>d`48!GN$|ZmebA0QXfMH)S2O9j*q#Vxjtt3
zm`%^D3DV>1Gs2(JfcDPwG2h2RAB%i!I3rG+5eqo9l=<{ou~_Cqo}qOn$gCs(G9Sx*
ztnsnd#|j@S>AkaJwPdRw%U&fBdhGb%I{ik}dGoAT$I&CH>nYqv)3c)cS+V3{-FXA+
zZ1nMDqXEwJEk3r=6)}{JVVjTbK7R4>tB)N%cKSH)<ARS}K6d*!!Nl;f$H!hDhkYFJ
z@y~a)_xafG;{ey9stG(j=m+&icpPF}&IVPjl1eAcIxCL)c(r`OarR{)JBF`x!j&Qk
z52plWLy9!Zb&9!HKH)59O7Vo#TptdnpP^fhClDb#M-9)4b7w`#LJ1drT;lTL<3}II
z-mdYTkMDh4W}?=r&0;>kpA|pIA&yQ?XHmN=)T%^K2kaUr#iHyRK5qKB&I~M+P~e=%
zNUQymj}m{?{+ZcTCgG)X;*V(7qX+5pPZj>n$1N_xG31WnwvXR^JmfO&;}0Ky`nd1o
zfsZ>r-Z>XkX1gnqza%V-girRS-{Z=2PSjnQuALM8PX*OfMw}CW`(PQde|`MNs{q}b
zRr?>N$2n25PV&o27E7tjES3-#!&5O-x|qTuLhXLZdO8LQ^g7hY6GPq@ipB734EbWn
zA47Z$h~b$Scjg7l4Hb@|U<^A;CH#6Wy-*B!jx}J#IhOp|dQKFP4A&aezHm+q*pyr}
z2G;$cVyy4<{gJ#ZKvX=2k};HuVeF}_60yKJ&q;XqoOnKluA>VNJXE;K`JlW{=@?G@
zSvUT?C>O&EF|>)HZ4BjOs1W135U3MFMJgXdwHOj8tx&>?F}xB()fg(r@KOv_Vn}*7
z?qz0Lv4nTdi<akwc3uoQFK8o6!GvPyaWuWvf%F>N)2qjj7{jYEycP?p)6|HeRt$5_
z3(Bk+!}yHa?7}0rmC8zeJ?hqYJ%%?ZJccdjMQwJ8;q3V!_x_TQ1@~B&CMAZqVrUpc
zRt#^)P&bCu7}8>>7vmk#)OTWdH-`E#6uBUdcB%f-1+ivY?YAxjR=*d+#}Y}8AtQzc
zF}xo`W(>6()Mh}H3xde*<LO^r5Ulq|-!`sWBRd8W!$&bRkD*ZvAH=Zlf@mT&UwlD)
zC=puGI2M$?A<{I4W-(m3Ao`V0;8<j4C|ktPibKcn_=0E|Ly3!`UEzd3He|6LQO5=8
zttqxxLJbmQ_#_4^20MoKF?5I_9780APh;p9Ll;Jn3SShT#n3s13+GaZcOvnkAo6((
z{V$4H7X{}gL(q*Op!Z%5@b2tYFk#n4LA!d!;3g-N7>z-RL5o3`ttwON?HV-U+C{Ot
zV8eed3M;EN>uwpbp!${>3kqPif4{cF?lJU>;fol&7=9|4&?knz%&{0^G4zVzbom5U
zBI-@$OC}I!5WBoxgVq(inw&5_tMiXp{bLvq!;lz;#xO7ztRaJ97#zc}yLG=La;8r4
zOXA)5py*chOQOLgF^qbq2OBwk6$2r09>XdBlCUp{kui*lVRQ^%$8a!)Los|4!<ZNr
z$FPKX8w1OCPl;h_4C5H77$(FpF@{N!&L*dEdbvK;CNHe^)QM`7V|co6fD~_9Z(0n~
zWB69Gb-0i@BZl>(tC4e73^SQ;qpQ8wuiB_fV!<Ubo5?KM=Eg8DhWR;?7sjwa;tyVr
z<3KzX#jv(nE+R`~SQf)Z=4uSfV^|Tx8a7Ghl`*WA$SMgR9<4_H+Hb~<o>?t_g$C=W
zMhqKb_;7qcfA4nP`D3c}SrOoyIbUR#{V{Bf;o^#FyXEONiEo#X#2pgZ8N)7#9K9q+
z+`}9jSZ%L_`#2p2RO9LYnEDRzD604CKte(bIdl*Zl%iypL=m!>0HGz6gjoRrk=_Ia
z=}iQ7c4xNl&Po&My%zxyDGG>SLy90GAiekA+jr*0{eQpbxzBmdJ@>u+y?1wKXXcKb
zWcGKL6yl$1*)tA%nPnV~jl({6t#%Dox}QEX4x=w7k?;65=D;}oH4X>qnKLZ^jKg8N
z$DyRZ$KenMHfWiDFs0{-6k2wkXgR{AH{Vieg5@YToC%ipA<OY`I3aai7{`+raB3XR
za${U?IZbjqg)KQV4jEG|<jeD!Rg<5iXNpK(>-FXrS>1P*OPuI6=73+8(yj<z9fxZ|
zt_v1#XBylZhud8EA0)4E;LbSQWpxg~fqVS&&jvdX>%aqk`5%X8-1joAe6jo^*2ovI
z3pVOsg!~CtG>v=4kuPgxeLfB^#(|cMGE0mDuQ#&haUi{s^=6N_I0y1Mkl%p<4#Yd~
zQ)6qSNlfpom;{GeY-X03tDx{gf@PYR1{4cBkmx|=hSnmYzaf@I9Vq5Ne+NEwptu7i
z9C()%IZ)DpQVzWBKurfqJ5a`f*VqgP+Ap=0b)cLB<sIO039qnsLtEa7X;DGQs}5A;
zIK;G|$WXOZHhCqnJTt6iWe2J_V0EB|163WU=D-^cyy?K!Yt1XIvUWM#{MIpL>z$nH
z4kSBZp?)WaiYZ=e&QS2UlH$ORjqAQ8m@373hPAx%Y7Rx>J8XQR>@)`&H?B)kOQN+M
zIMJ|f!m9M?+pRVS${uV{N19sYxRT*OT?g7Y@V*1}9LOn_o$WwV2kJYJ=|IB5^ac(z
zap144y5tQ-X(ZTKuvp`|Tl1!6Ni#^AIndkz#R0nmEjX%;>t?S`&t<U={L|PhVd2xP
zmJZlrvI{S>5#Mv*N><(0tnRon?YBCu93WC@cU&R1b)cOCJsjxCF?Zkt2Rb>>*?|rY
zd>9=Bmf2By=Wkqhz;T7$?BamuxYEsm?hbSnKKr;rW&Lqw-*JVn$7i&c1HB#in9Y8g
zGbl0pBM16A(4}oAc^?Oe8LQG6WtLB*g=|&7C>h|uKnKP<FoBj140gcbfa<^y2ZlN@
z(t%MjGMxHh4xG8&d^kPlP;-V6LZ&vX`<VlyrMfZn;fgudZ_+=Hl6h@2$2u_10e0tj
z$!tysC)eqK%Yl#sVFxq^bO!=5P;T~42*-`X<#oWvjKT*kOQ*LG8JH9lGxmbfODnC0
z1F6|{Sr<JaBL46Ny|Gkw=zh*b2PQc%)4{uBF<D%FDwkN3y4h_rzjR=VG>mQgN(h~w
z12xUTGcL`J%#cDzE+1EBJ1~a}=Y+D%fw>OMb6}wZi?}B=s5@VZUEshkWwSXxbQ0oX
z2bMUn)B&!7*b~a-+btM!R#_{YP^i#gxeVs9p)FTBu*!k29a!zaO$Tl{u*QM44jiW&
zIPi@F>m2yif!`eX)`9g7Y~hTYP`-0u1J_--%*_sL6hgkqft@`wi!IG<aYAAAd(nRo
z>~caG_j8l24s4^RIWWIm=1-g#Th4Yt5@y`N>=ON%eGyVMD~Cx*g1<YkiwnnrgAV-R
zz-|ssR?dFGJyOL!2lh&oRlm&mr!;l^3FUz3EQ<Qy4jd?#dDMXmCzL~6M-n~ER-I6e
z2wy?_a+!=0{}tt!1J5OT(t%SBT<2bQQaLT1Jx9)w6n<8aJz`%jIFNKwx$M9vCzW!|
zb1rggI;mXZDn6;?>y>%Mfvb|_JE^QZsa)fLXXX5QQn}&4vy)1RQws4mH$4X`sCbpv
ze>l+&6jD)G#eHry4!m$6M#V$!X{VIO4m@$-y;I5~mU&9iPAT(GDNosENxjlD^O*yi
zPAMl&DKws{=iWJ`<WUi;B2LB0Uz+4q!TBnDS{dCgGoK1#eiiXT$P-j_X_Qm#v{FDt
zK^4r);pJ>HDN%)%l>-$;g%nYdq@uxTrTuAzqgPBtaTVoNoL-+%LPbdxWmJ?^G4Qlm
zg6FhSN(HgB;Ih-oD=LUgB9;^W<7tKbsE8F+R8nD4VO8;(iq}<CQ}Kq1%BneZRaDcL
z9-dZMIHOfX{Jvb~n<|Q&QL3vjIy9w0a-*DN71UV^^%^QtSYWx#cU7dS=vY7JEtLnw
z{%1hFriypOfV}D%vu(9h)Q&1?Dr`|+M@5zxq^rmfu`WC7&aEe$q^qPhP|;9Ddlx=%
zp^=Klj5^WCi6+d>fl_fsMYf8jDncs4Dz?;2X{I7qMN1XURX#SD+Cs&MGfIvi$;<|s
ziV8c&U&Yxesbi~J_PlN$O8B0NRw`PnXv3knl+4ge#rrDSO0=Dd4~4W>QQ}2%^ZK?A
zB-%kmzqgV+FOoZ|=p;&K6<vjNQQ=g~l9}3#?MaR8uA+yEo>Ibx<;*08m$mm+@sWx?
zlCiIf0i1LdA4~KT!G41MReY-QMIZm=o%t|%kcz=7MyeR4Vu;ubRWVG(j1I9^p4b1{
z8e6%%X*`_WS8+ZimOQ*8<}>;#9YBRcvV5*$EIU}vGDbz-+y6D`W)0I=Rk7e+%AJm}
zE_O#n|D7>3;Gpd&W0~3^mIJ7(aMK}Gcx60&D*Wur(j+D^1XKh?e|K4?aYmuS>j{R6
zh>D+8{G#Fu731kYDt=HgLB&KBi&QLDF-gT__Cm!>6<?~DqM}h9%TyI#aR3Whg3T;V
zTUbbz^tVh?F`Zo=WZ?;?>tDCj?Pi&!Vz!ETD(2JkZI(GI=BgOf$8u|oWoQM<sN2aM
z-mWqJ_1IB&lNYF1$kZ;@0UfM`t|x!n&$>j#QWa}BEL>13@2ta06{}PpAIt|OEa6Vp
z$m8Tq!z}I&)~{6rnp;+LOg^-%D{Z-@nt}Wq73)-dr(%PO{EzZ|OMkXo*0Z#$$;RE}
zQ8$t+l(KA8u}Q^dmDfBijK-yzVKdCIc3s*Q&i*C~!*-QNw_CQV*d~PhM-|7%TgG)t
z{Yh+gsMxhMaVI?|t;YQuX~bVu{H9``ia%BS&c2*cb~Ep#<XtNM;DDb|j+{|$oly#(
zRro&DJu3F9An8{zfw*7A0TqYoNF_7=;?TX5dWgG0w;Bhz3cA(!TgC2mSqt3RZLVAY
z5uHioM^qeD@vn+w+#4nDaTO;du$+oLY7iNgbgywrQb`y+tKyuBJWk|w;yisXpY^(m
z8!9fSxG2#}g4a}B7IKAanTzO^6zlMGrMrpDQmkBR&3Um!E+^kqaZAN*Zni3(a}}4h
z+!e=uMsbAYp78sEbm<5D6i_kkUCX1W@|bg!V0j|Zrz-y15ks?<A1Cp!!WSxHoXFjh
z#xryC=Ck}*$`b2DoD-#;DC0yvC*qwb;zW`Y`_fYroG9Q#K_~J%@u0A+NzIfu&MMRk
zIg#i@L*a!biQ?dMi9|S2lm%W+F6Bh;6=}tsDDK3b8s_=D+pZ>+aH6E78kH;!yIY3Z
zOnu3~n6gg1;zSiEsyb252_76-(P<uAOj2H=6`Xig$hF3%SjmakoOs=d%3}6u;}jY%
zZee9ohqLB4(rQkmIFaf!PnCMZi8r07E<D+Zsik5mGFU{h3f2%Dd!PvQx130Kny<ip
zTSO`~g}mcLEg`i9(*$jTbp+oP+%PDGSu%vz6|5&nvA&Q@!3IvetgbOPe<#j5an6Y>
zC$gRB;Y3d-|06>)&Xf}^ooMbv3wGb$WZV^N;}t0!G=>}*Nk$bX>`r{>L`NrvpH<#-
zqMZ}%ooMAmYbRoPGKCZGJ7JtPFICmw-JGPYM47bstn%YoWp@SZ2Tt=H)E%7QyRS)(
zo>e+I(b<VEPTW7MY<(}Is}saacUyK7LId*dQLz`N+leDi9ChL&C;B+?ixa;((btKO
zomlL|5-0zaKtCtKtlEkGPJGH5ISBN<5|;HZk_XWJCZ`Q_VvrMqrEBctNGFB}9~xDL
zv5!$cg5#EGy3i<5K8xz3o%lS;n;ncF=Y+!v)d{B)tmxZ9mJ?I0N#!gqvGGSOH7E2a
zcRS$`?u{xw_9e9j>k34bppcN@;Jfh=C%)iV^|8!!V!RU*oR|@{oG4_f6O*FKWFcQV
zF-6E%Q9b|sSXMF3iRq&7m{CT5vRIDywa$v#%oZ}oiMdY9bK+jn1lr7xrY>+|VU#a&
z;+qQQ_$+l|nG@Tc_{oXoPV@Uf<9N$jCssJIQjAwQVJm7Wa?U(}`)emwM@v}4X_Yp7
z<HR}<zjb1x6Ptvucj7xC8w6jTh`L$$Ho@-&S;7xaY!SXy&}?wqMB<N81M(eC?35_S
zuxne(&)jy}Tm4q^MCRX|=AOULi9enA-HB@F6!Rm%i9bZ&?L@tE${s<Iz4ZTc3dw#a
z4mfd`T|TG$<-|cJ4sk(M&m7p)EN$R9<!{dNIrDhCe?%{pox{}eSIyJwc<T4RP8@gQ
z1b4y)DaSaH2W|hfO+4wuDJRa*w@aj`_id-?SNClN+9f_+(4<vK^Ay*!bK}lCalwhV
zU8w28MJFyfQPG7;E?jov3LEUi6Ry^L)~j4=LddT<aXrd!2)QYE%Zb}jed*R%THclD
zJ$jmu2Z9fyHjkV*wk3vUPn~$it=ok{E<AVQ1@{3L;#`PvVVlfy9v2Tq{qF?Zye_<Z
zIdN4U^Vsx!F2uW#;KKGR$=zH0w?*f7;j4j31z5u6WVLGS))tn+E+o3}iVNjjDB?mA
zv0-c}7a%qzsFbr5b)lFGL&blJ)8IyO<%97op`@hJ;FWxq(k_&7fd{*nb)o$L(^p&P
zH_v&m_fb-L7hZLl2g+A);c%LTfyZsr;JxCO*Ianrg}q8_br<gT&Zz9d{BO<ou~(63
zRTmCS&!t|?g*RM?O|!iz`jfM16q8-BxUjTaiq(Zw7phi@t>MDo=adu|@^w>qiYSxb
zqWw9AhmDfQS50}xg)|pzF4S_N@Oh=S3)Rjm3>oK@IvhH7InkV&bQdyQXzoG_7wWoD
z&xI@(vf0$H>(qClA;0jukm*7L7jDnU=AS9;&MPDdD>53pFyOq>gw3dEeR42&(9s-5
zo4U+%nwq)Lrk?rl6**5Z8J=a!aUs`*RxY%5p`{Co3v16S@3~-ifyb}t=ap&a&3}u?
z+m*EbdR}Sc!uu{9Kd-cNp{)y}cjhv+bPF4cCFlPL{12#u3m>wD8X9Tn=t3tKwz#m>
zh0ZQ?ap5!Oa-pjW-CP*%!Uz|-yU@dBeoTMlLX&QF8qbUE=`yco_Y&+aNS#U_7y7zz
z|Ge_C3;pN=7nDyV%Dfc&OCg`K_I%cA7nA`U*bB-)!9jw9T^J%{s322^Nfwg&7nG%K
ztdBBNN4hY|1rmmK7nILk7~?|3g)dy-A=hJFP+f4kcvq4cbqJCiyP4vWdfhH~T+m#|
z|4D`}g|ltzI@j^K;Bz79LdXR_r)H*Y^GsWSGsSk!wE1S*Xx4V7Ezjz>unPvqc9y9;
z{yJ`Bla$~EWjvRRlutgvg^4aqa$&LyU%D`b#a>We;{TC*ty4G%QzgqZ7pA)~LmD$v
zaJ37wT$t^`92e$_vP^KE;3C2KE-VnjW-JtPx?-KhLY74JrJUReaWr69F5(IoRz_1-
zx$w2{8|7QjV2$v#E_@?oo!~|nz7?|G#lzWSzhjdwC^X(6;s)WHgl~4?dm%s2A4I==
zLD}ZQk6g|!9N`W_4|m~r7k0U@LpuJe%RJY6rwc#3@QWyOdL(jKF5AuZ^_!$_EM7xh
zmGy@UyT#28xv+;@0q5m<=HD*tbKy@H{*vg>N;UFcRGxOv+3y1JfD08u*(CXLS{!tt
z-9ziE7nQ2@o4oaA+CNeh-F3q1n4>OKzLio~L!yR%T{y<I!!=&r$}`+ga;F+$J;6<&
zYYfRL7fy?EhTDY@nw@pwoD1hAdVzbskc)zs1pnG+=Dp&=RTr*_!styGu1EO|7piwL
zZ5VEGuMquCH1&JUdXHTmX}#~l0}&s(kVi8c#_&j#$1Xf!mtA<q&7XU|q_&bWUqs7k
zFvj|_mb@Bb#UM_wfQEb;;)N$@$S>rjWv}<mRuvSb(EsQ~G$d(wL&KXIprNRS*ELku
zP)tK{4ejftRnoBh-}E6Z6H90)siBmH(i+NZ=Bh6vNb-t?vQa*&r8(*4B-*xSQiZ7g
zs*s9;w0TWKMa8=FX!_hOF;#?D(@^K4!n&$PYh-kBVrq2_$r}2%s%z6=(O}h3OGCGL
zwi+5zG}P3P_ey%IhHJh|y5Czuw)Hak+Zylajw5MXzsWlqW<R!))Yg!unU311a}EPZ
z9S!elNEdNv{)|iw8N%xd(x9G(`cb}pT4DnYG;2Pm7O}C0CK>`7f*P_kWNR3%Vc<9B
z2sG8uLqksu%``OE&_Y9whISlM4Y?XxYG|Y3eGQ5RJF{O@S~2OOGJcfu;b`SO7F#oA
z$VH_!>%FLKy{P<qQK{FvX<H5VFDgtTr}%+}4jQ_0G&J)U--q1)HFVNY=92kCud{}C
zE-76!^VeUFD19!Og|K}0C8fItmOt~7LhPlXH=C_tkcMf66F$=LiH3d}_@$+fhQ1m;
z*5FD??N-7J>{@>fpVCQ6rwq_A?sPiE@=2-Lu9T)pwr?*fFF#LdHdr%1Wrk>cp>d6&
zg2M!vG(y8j4Wl%CropFSJYq-FCp9=(k%qmOlrb8{vTzOOE-BA0DGoZ`Wkr=}%4Ma`
zgmeab-c+Kd!L7l=!N08Nl9!fVA)_uUEUMdOg-Q)A#jjzakdTJ3hGld!4F)#~o?oe%
z-;N@57&b=31dfA->9p4{NyC>Krf8VVESHtWyK;A4R(Lv3uer9bG>|Y1d&5ecs^R2i
zg?xsFnHm;I>MS~*hIzv0MD6ElcqoN1*DtGb=d(Tc>c1>xp@waTGZu+u(iO9!CG`I*
z3d2%*g%BRYx<bRFyYU+|tkked!`B*CYp6ayW4(qo8rCvgQNGd8<%%-qib8$L6=j`<
z-B*-vHC()+qy}=Sd?#7*Uo{OjYS^UV_>q{+8h+QXOT+gZlh!FeXxO4*D_bSeUp4$F
z<Y&R{8h#S8L&HuX$7a`Iu3JqLiNA<a`Koy&_iw^UVvffAA^dN_-5U0AvNWuJ+qz$n
zWS@{fHPpSTbZnh;K%##MwokVn)X?^-g83ON>W~!jkA}lSjtH`rqa5L*@g&DJoY0^L
z;SS=YhEp2;@L;zGr!}16z`9{^<E&<W|GB`C5pqt$c_A&9TKE_6B@LI^eH}mQxT4`I
z*Qt&VbX?PLT|-qJ)pXp@aFd&-j$%4)X}Ha1=*Xwzj)uEjo8_&~G~DCjWve)G^!!{K
zPx%~tRe3=FziR%ppMO<(tl^1<rySv{3U3-YdR3X9W#hdiHP_`n*YH9^j1JeO+*sYb
zw;_*?dsh{Pyt;W?6bWw@q8_g!K}R7Sg>~fD!TW`HR%Ss)uPFrtc}ElP=Xvv*lE{|B
znxuorgf+RQ6w$E^)=t+H=zM-HW8^i(xTX}>Q9{S7Ix6ZYsiTyRS9Fxq&6|`;>*hU0
zWp$L1=)!B}X`WQPO%o?A&;IF}QeFp@3ObHoQ|?|<3SL(#>3B^?WgS&?^PH(lm8`Gp
z<_#ooUN=uh3uLD{XC*OuzohjI8tBN@(Nsru9mzW0(NRl>MaSNi8N6d8Rfkna4INuv
zPvT8JDLQ^{YHN7iyiMpW9dGOAT_rW8a1sU{A6Z*RnvRA#8tJg<sKe&zsITK)9X#$T
zLq}a59j`0tG7cp3N?NNg&q+9vU1DX+OdSn$@O(NR#W?c1GV!{y?7H&fb!A4Xt+9?K
zI<j;eyRL*!=H9!mB;7FYo3gLYZl<HT4n>EZEx)0((DBg?C71oWq2x&0`W3Ub)S=!`
zNI22&aV`p5dACv<nUq$7t#u?NG~^t;FAZy}qn(bqH<TXhGB@8)4&G2Y==e~_cpVei
zejS~3jMOnoM`s;fq?VyNy6WhrqaR&GM|T}Pbo6FpboA75^M=xklX6qZe^dFsqP6}_
z<<XbfeRTBI@v)9ibhH;`$W3MGkQxkQ7iR}=D*HENf2w1Ej)6J`>E=ykOj>YLnKnIp
zu=r=ol4(P9^W<XJ^z84Y1kUU*9mAzbhi)n(=w>&S#9PW|I!4n{hfl}nI>zX5a7^d`
zx0HY8H>a<T)iI74ldKJHDV=U9PObtSx(>GvO~=q%%C1@2)>78Kf2W6UnFrT;bS%DQ
z-nrMTs+Grp`gH_!MA+FP)}W4U#jOls9U(f;E#>c93U2@#538Yr<lZgi3$aYPt?bO7
zG*QPS9ZPg9)iGJempW$Zn5AQiZr)fmO*hYH{7U##L5kIHE7NtfT%0{a76@0wZ;M*a
z)-gvWdLiddN7;(jc{=9n<{eOrR%I;UjFh%!-&S%<TOY+YBwxgmo7)z%CAXDh?_`d<
ztt`{AT*o>c-*UO#R#xa(MH?L}bv($mt-WooJ|5z^TE|;ut!s5$E|jx|&Hf<s$nxA@
zZ!6#E;Bq^2TUoE;JGw`%?Ry;?#NRe?fxlt8-$se@MzYPE!HwA*y63l*A2>=}<9C#;
zvRx#PXp(wI+5B<lb{#)4qZ<|7*r8)5_d^}mb^NU37agZ{oM9n4e$(-{jzcmyzw6ko
zV~>tq68%H4*&T(0*6WV4SI2%G2XyS?xN*3uTNm}K@!Ia@75C+Sen<IB$C^9JK~BLP
zg*TC!n?@(wKROQUczj1WuHy(NrLgs=j(<7A+hhN@qwwC*W85@KThFh~K6^(Yxw0(d
zgpQLsPU$FmS7G_QtuFbla#mV$j?*E8cQcmUnR`JT^`g%A{pL2gt6buca{p()mMB*R
zyWTZ_s(*f0A-TbI#Qi}>j2pM;*g78ScqC1_BW<`x@8SY{#X9+}LcGr*Dq?-W{cU0M
zwRe@=6?Go#cp^^zoXu-%+kIEz>3C0dT)3+|W68w1*`@E9HRf?6uN!dl?ShDPBhHP2
zZWMAOpBulGvc|iS;KqALV#w)8`Q2!7PbuKWm~*))_skEPMq9EAyV3ieQh7*?B5r(H
zr%s|9&U?z*H?35X+;}!Mo7;6UH;TLYA1GdNql6nX?<pnSDCNd?_mpy%ayyQ0Qre9&
zZjkK1r_jl-2-f~HyPO;4-I#i@J{Mr#`$`2j#+5O>>y`UTB{yDkqng`1di8ZTDzg`*
z{yPG4a>E#Qt%@5}+2BIv36jJ&guf}sXmufn8pK%LsKMYt3WFP|ZVY#0gd1<U@iuMT
z$Z?~l8}GQ0=|%%LYPnI{jSM&Hx)E%UlIBJow!Dpv+$PG~_my|uNO$uqXbSb=k5lG5
z((AdASSqbPE7DR(DyivRAE#vBR~ov}$c-j$WVvy)dt75TX3cLh{#+vS#%d|qV&6=X
znhIz3o<B8jF1+2cxVFpUa@}ajDJYflu^WmTb~ie?(V4U6Mk_bky3x*!c`wphyV1st
z_uc&aFRew*q@}$SKEcdf3)kgzzOS@*qk|hCy77S<!|p2#w!Ai4`tB=zCZ~6FgXo@=
z-o=fsZuE4cmmA&O=<Y@jHx5-yW$L{9O3KIPMYH#3*cdGyXY0*eZuE8IBaYAEoP|gm
zkF-tq6&n0?UrEZJ@QEA!-01Jdr)~^(V~Cpv%rzb0#>M-}AU6iOabZ{Hq%YH1=A(ld
zZ0%4EDbltt%p4~D9rrBl+Vix+hioI=7)59B;B^l^b7Qm{f3sCIrlY#C&W&%~7)#G_
zV=`UT4F~=Fa<bbEj~l9Rryxa_5KT}QOgNk9ji!d&@Co-vm4J|-V7Wo>vV^c3hD0N7
zeBs7;;S=1L7`5Dc#=P9kFv*P<_sz@fQ{4E<jRkHjq^r9zO)TdNPIqIrkQstBo+)IO
z8^@)bIZ=HsXF1CMK9g9gN-B*PiLyMZFBY;yaH$*1gwU9lE8JM=#wt<P2vYo7$ZElt
z)vXo&jUY3w=Moma*NqKsY~-dP(M@h_=1wl0<$UkPHsL=AZV}un__A2q{3y}wf<JKv
zqocIbjh{uN%`a~J8s#rD{_e&uQT`CzEx6}@Z1xHNQ*eJ&KOp2UH=n^VJ%NGM{o}@A
zH=c6Ka^nbBoEw+ixa`KiQJd3l920(A@I+KU>Bgxjf7z-t5<M$;PVhXPS;$4fX`h&`
z!f?fn+oD_*ye3Hfx*Ioy-{ePt5SILZV|7QAyKdZb<GvdYqPZTq@lg27(R=L1lm8h>
ziqGkC+=M;<^*Y9bcn=ah$P-oa3W+5~m3*H6KNtBufCoiAC=g98=s_V53VV<!N|Im^
z!Nx!R*T<L9Vj`9jEG}5WgOWnnU#>D@X^EB*EGzXE8~JXzs7-kfDhPj7u%cik!T&}k
zF}AV?)jj6bq$(a%6;e&`O%LAim=_RA&M+^hFuc65knDlQgKctA(JGb$gE6VJ^q`do
ztvz_#gPI;R^q`Rk?|4wlgSsBn^Pn~xbFNMu8njMfNE2e?;5<-j4oQ92gLJm!fx@H=
z53(L8T^=YS9w_z2EYpKt?`2GsR2nq!;J~0%lExl1@nCjEr3JHi%s;GGK2Wkf$lpDN
zyr~EK57uesL30l_uE{KYsKvdmO&8jf91n6mXz9U{O;!fG2Z{$jJx~}Jeb0lV50rcb
zbIIFy@V*EAJ^0jvwjQ)&e?92vfn%AqJ@xq94jz2q!F#8zUoNu}+t;g`=b_TcgU({p
z!-Fm!Y(8b}PGz^X%0s2A2i-h4G%ba^|H&2<6CULBWbZr}wZ_)lgFYVg_246B|H(?_
z<l1!B^|1$^c+gMETpLNHa=ceev45<kd&La!V4w#pJXq<$AP)w6FyleKi5?8`V5kS<
zWUhw^(pyFe8ScRdAtMD@8k0T~K3ec|L5gF9j1}Y`kq!@351bNpd7ufY`%szL+M;_9
zmMFQ~1ENRJ>w(V$zwm$uK@T6fLd)MW*KDa%ZCuLev=mw<F0&dQ^MBQd;1`191t$pd
zOFmO4c`(_7FFlyT(q7iJKIXBkg0Cbx)q`n5*z)N@W_bSl2bRh#QD%EE$Ah`T=XtQu
zgGC<9m*@h)fqTvW^%e_XCdlX#50*+G|8$IXx#*LAH7!?p@HM^5gH0l?_TW1YI>ej*
zwXI>}qa}PJWSs}!3Rxf3U;aV7!GjHx&C)h|@I778gB>1BEoA;T{exKY-{CDDY!$vu
z@W*Hg+dY_dDfyGiX7-&P{2bMp<rm?<3jQYeyWlRtQIchk2Ycy1KCJX%p9g=^V}0oA
z!+tI?54w8M&1+tu`-?k|7p1&7$W4Y0?7=@CT=C$l2ZueT!6{zS@!*K?qk{hm9uqt+
zctY@`AhUF`<Pgtza4xEx6*Blh8ujxYT#)F+XzC>oE(=fn%KX3bng`cC`2B8+LSEbu
zJ+CzNrU$n?xGl<k4;~1)BY0Qvo(D|>W(f=rMS0=DBM%-6f8xP2AxwQL<l@*Y^5?=|
zIg%D5wd4_`{%B6#SmAMA<P#F_MS*B)f{^@zY<9sYnNuW%c?(N4QLu;?NkZU7Q6a^=
zC?TY{VDqWD%<__#_M(gz^}WdSqO2FMcv0PpWG~8zWrnZG>t2)>UO|u<U-hD5lvncN
zwJ3i%6qO}f#fz#@y_%3Wym(Ux$|bN6ix*Ze{F$kzTf{P2!;5z$H6@xWRmfXjye*_=
zRG*&}Tg!{uUZh2pbT4ee>j=Ip*gD%RHX~|NS4cfUwzGkdc7hGPXyip>FPcd7Juk9^
zFnbFxvZK7I7tMq>k1D>od1;g5MQ&7SDMazYF65xqbjwy=^ci1^q_v1`ym&uq-`0y6
zS!O#K+Iz9^UfKs<bdb~!1v?6MirRPfqKoj>4;5zV?nMtT{^C;dqNf+VyjbhSH(vDi
z;v+A<^kNFD_M)#BBfS{q#m8QJ;zfTiK4ofI>&Fk3udn3xV;h!d@aN<JFVu(1KraS#
ziJksX`C?VhAg_60aIhCcycp^=uT?S(7cxwc59^H(64x+>NuPN!nse$!z>Ckl7(+jN
zr1-qp@=zJ;MO-1P*Nbst?_ga*oPr)fm!Rf_E`$ZTy*T{P{He>(sX@%$hvrrEYLCoo
zgF!E1zKxA|@r4&5_G@DkhOifgaQ<Rtbi5b!9x0PKq>s!(CP=Xpy_h5<YmRx&`>;pK
zk?fSOyqN06d@mMwQK7VTnin&@n8i`OnLC~1!z_=KgxmF(KT>M0&K=*s#%wR<(8FtG
z&h=uR7snnc+aD>sX!Gci`MZ9h7mK`D?KOY@@}K?1UgYrdju%V3Sn5Ub$EM9PX~Xhp
zPge-xc&_roaWnU8uX+8jTNNuWC$90D7lKkBE5n^F*Lm@+7e9OPix=y?_|A(TIJ_M8
zqOlvi*yzP3c9y@mA1j+V_(iSXvkQ-vKVPx(7Fk<4^NG39kCm-nOn$8VNH?gTx=reB
zRK>d8i=VuBx}xO{FIGHOb_&lOozZJW9bSL<)r;S}*hhcx;&(50N!R}1!l`UNcFOMX
zgOy>o7kj+e>&44U)4WVa!r@{G#Qk3LBHIBrsfZc<+lxb9l=PvL5C3qYy?DY(y*T2<
zQ7<lgafPnVvGwAF*Sy|x+>7gLa?6g+V0A6!$|S{;UYzpcv=?VMgQcxhE_!iR_&G1m
z3%MZ3r*3KR%VXt|j0`O~K3BcC=EXgF(G%r5H-9hgcyX5tr?B;=7q`5)?Zvsr%CpBx
zi6@HXiIVk1p&NI5q8!}NgxA<dJyBLPin%Xi_(1TX;3F>{3mN;Xxh|f0@!X4e9};|c
zA%hU>L!8eXjTj&D_>k9UHlEl0nijP#exl^_nQM&~x_J{INxkp0^ZUT(os0O8<U;`;
zwm(q{iVaf>2`Ma?C`d2j@IuPxychLh@7!!!7L(NCK9msha?O_Zp^OiWd}!=LSsz~U
zp{5V-_)yMguKibisOUp^;fz)gvcGd;B_Ce%;dLJ>vm=G9jfdoNFb_X5S6LM)JjI8q
zLaO=jh7WHFXKMBTsXAG>#RqFNwT92U?~!H<sUp7R!`so+RfAB=huS{y5%0P_r1@YI
zp5a3sA09k0uY0EpdDn;Dg{)LY45`5j+NGYF4XfuveIKs9lgWQ!_?&pA4-I_g1LF)0
zg?#>LjV3;1`H<^FOCPeOUjF05<-?h3%E2#cZ6;!KA6i6PmE*%-v(24E@xksxYaiP9
zaQ!vwdp@)h8!ld6;cV<|nfg@Wb-ed|=pcGq!FGb}1zE@k98cLx$v^a=qv)LkJ4bE!
zFl;v;y8AHMhcA8T;X_X!hWjwWhhFTs5B+@T@54tv^S797x2>-aeSA>%radc@M&)B4
zKJj7kuCxvBThlArsC??f03QbVFxZEIlGN*|^6vMx7EcwL4e?>96t%Bg+%O?ipDG`E
zQpP=1_MeF#>BA@=d_MSn_{@jVJ~(_(#q4Rp)X#kw<HK0GRy|wW7HM&%Q^)zR?y2%P
z$+nk;<g+?`(0xd3mgbTy71ktbLZ(ep+&*~Ns@ADYW$=pG#ivSu>*bj;-iHZ31bqmx
z@MlWchluFp2Hm)&mE;Sb`KyzGwX?1z{o^M3aN|sT?Ptm)Y3<4$xl?@j%7;bt^G}OR
z^<kRNe9&^1;B>AFd4zL@MEP*#Od->LiJ$Gmp)4z(-<;#aTp#B7%*Q|Hb2&7$F7RP#
zL+hta&D4dWw|S<p%*Dc&FjWYj0A0ov)X2JAu=tNLtGHl&I1|9xfO%KLYWh_G2Lo8+
z!&)D{;kfy5$&br^eCxw{AKLrzfgj)bu)&9?K0NbbqYs;y%ZGzLZ1&-MpIOc>AAS%*
zzC*|sAGQkFCir7Cb-R$Cd|0?AhQ<s#efU|#Uj%=RTK?w4@4~a6#J{xsL!!F{_i)3B
zTJGbH5#{@RI3T>&Gv#Hjzqx+dWez4k0(>|ewLBr@h!01F{401&@VH=WY2iuXrvzDG
z-*Az$KAiL6UQ{{H^)CE^4;O`8^5Ke*%UtOXi!hfejkzjfkGE5=(?fi?DbZVke?K+N
z7;bZS5{3LOTfX1y`+ZR!MD>S49tl1cd?I-5dHi#3{`5>g%J~uFM;<?l_>tr{=P0iq
z@qQ%u5i3zDaYFJ5uKdWHj{JTUl4yabO+i0cERz@ti<l_babgifZAuC$>PIml#r-JZ
z|8IUv%>1ukr6j4eU>U)(eoU2NDep%GKkE8XPxM#)sOINe2T@U?mHc?kkJtUE>_-(*
zPE9t;EO@|dRaH?)dcT_XrXSV)sOiT$ek6--^`nLmi(tPgaVb&zw}hk$(pBDOmM@Bw
zuA0H3YWY#y&o{%EgO=upO-LO-T%*jpgBXgAj&Z-1K$0#=BpE_Zwys;>k4)k3`OzSn
z+SHGR!W;R~SV$8;LNc>i63vcUvgBrdG?!=#!5lx|l$FRTawXa_YN-gZb9wenWhz4}
zQCj=aM#%e7%eH>B6TbWvv&|j+_|T6ze$4fwqaU6880*J4KRWx-Ma+i#(bbP`e)Nx)
z(A|%|QQpIko>AUQNN>T9{OA+a*T}Sf?8hgf^o#0=9qN86e1IPVg$(jzSTuF8kRg5y
zjVgJO@X{?uM3s?3MhSlA$7ms+3yu+F2fz9}&LR8@KgJ7D{cv*n{LuW+MG5%fj@tYE
z@I<*+h|iDbZIW2jiesja1vy!Mgrhb!WEc%UB2i_2UvuqDpg%{IiGECq^2tKJ^ka&U
zuLN%|H+^_o)MmPn8G<tfXZbN(2wj4f^Zc0a$8Uc8?#BWyE<ZN-vC)r3ew-;)g9a<b
zcrj53m8C+K`LSHcim3jXY^SUI_}Y)vBChdceKd8gAKygzIw9Zs@k4Yk{Z5p1qhdA*
z`7vs_*^lpq{}5HS__0;^wy3gtWs&W|e-hjg)prW{S@0J>eigEIn~hyy*yYDQKmHW)
z4?lJb*(11D@P@3T{lfnhJmAM)ejF5jM3CkD?Z+YE|3sC;e!QForXKa<*+1s$KIX@9
zF*qT3R`8@Br-Ymqq}drEFE_?>ew>f$7yP&w<t+S)A6K~^19)FPZLj(9lok1LU2Jan
zanp}mbelKK8N4UrZNWQ&cm2o^!qodh9tb}4<55(9?8g(~+>mMZ+>aN2lnS7905JjN
zk$NGRH^8@1nR^;TtdO_>@<o++AqfHG7h;c=Ur?fj0w^pbQII7R5t0=6|DWSU11Kh9
zalsN%%aQ?b<7JjI0hARnCxBN1C>KCl0JZ?i2T&n^w<PJ+04fT3Q?Qa?6~Wg6cwI<k
z!MZd4+l{MAw3^@>g7u`j>H#E6)DnO-fEvQtjMM;9gmb%Qlz|)j+oIGId`GaBAX94#
zIW4z_)(IdpfCi$x8$h~{jHqQ@A@u^NA6155vNnwJ<^ePk-dM0n09gTK3vU{=S^0%I
ziOnQ>;F;1w$f1#DPjjO-Edx-Z+#bMt!dpd^)&U;MVD1=g185h(q^RCLfR6+CB!CYB
z=pf>U0dyDAF>2FENap~$2<aNty9F>|q1mt=QKhGlUV^;^KMJ6akiLQ=-!eay`Uxj-
z2GBo%PXibbz`y`L7kyAPb-0khf<pp)isU~p9VR5$HFkuMk%FTHKNB1+$nxLZQD=<s
zv4Z0S9fGRh%Q18Xpar0d!d!s>+)?fcz$@GrRs4bfzI_En2?Y=iz=)=f7ZM5Ji>T7&
zo;gGlBsx)$U*0AM@MQo~0{AL`ts+hhU|Imn16UEjbWs)y&In*;0JDV86J%+#1DF%#
za|3w!K{H>J1%eBssf&bM<wh-JX#mTFjI5tnaEjTml~K#p0jv`Kwcty~UK7AtiGCBn
zcL8h&U|rPy+W^)Jf4L`Y6#l*7rl`&4z<=LoSkVswY!UtC_P8y89|PDPz)u0}iQ4ZF
z@>>8qh5Rh|OEmRYAuqrB{vN<CiT)wDJ8JXrdHmie-zVfx!To{<qV4%RfI|Ts3*dMF
zanH?%7x)|PAMQ3StcL?QB82>?kbk)si4Bz#qMQ!kq>xjBwInt7xzcKNlXC%_=TZvd
z!yqmMaFH8Y5aolo6u@Qft3kvEaV3DO0krCc#{pamnExd5ufyA1cYO0?05?RrDR@he
z26H#Y+!1~^s@x0UzVHW8<)M&Af~%*;CY`rE5&l&0Spd(4u(TKa6bK?ukS{*MoQ*ND
zLBs{kW{@-dA4v!ze-I^uC>6x~i5UfgW(x}jk<%x2&Xkm1&y_+!5DN#9D1^L-kR(9}
z77e0UG_|;p5`w99vl|*2rGxnRam!bNATJX{Ss~<Oo|}K6PI|6X2;$Wsng!83h>Af}
z3ZixpX+gXe#Op!4#byUlIfyDj9&c)PVa0RvN!6;ts|iwkL&%#!R1YFK2oC1UJ`$}_
zn;Jq=1XBgG{)wr{!i(De>Xlk6h<Ad>+S=r3S~it4D^n=if~Zyn?}{-8q)rgOOS991
z$Oxit5cMRfG0C9R3zAenh)fY12(keUg*2l5g?L68nuwAmm>on@Aurq9f`cDK%OI2>
zaz%gqyd|e>YIU>k_8{I1;(gIu1@UQ{jMhQ4q07BcW(`i|+#Md6`a|oC;$zcj+%|}I
zVoBa!$OnQi^w^F;bPA#;rzwceL39bCM-W3>SQ)ws=^jM4sPbd0Sn6CFMDpH2d=$i>
zAO;7~Cy2g5Y^h-D&sh#)cQb20L6T2|q`Xj=%Bb=}`IMb{p$rflC`f$>r#?GnXb{7M
zOe|Apcn~9ksJ}jw)r|~dR1jJa!z<d_t<U@{2p2oGK9gZ|5T8f+m>|Xq9~V^|L8wvg
z6w>pBQth8KW+bvSPY_;?fPr2Hd_nkwNDbqyFakjYgBTsc=OKiG2-EXJC=!AZM1->+
z#I7K|2x5E?D}z`S#DpLw1~HGzCx|A$rB4dtt01NdpDg$#htZQhMUbzzofgFOAZBw_
z1~DUunL+cNx3k!Q-_mJD{u23mUXr;%FeAnJ1DX&Q1hFuP6{0K(VsQ}5f><tv&}>N%
zON03Ag%Ww85NXes%@P@g{$`fkGk=4xgIFEJ_d)y+#F`-12Ju}G8>GN*qz&tXSQo^%
zoKwG<g`se68j)oZH%fapNsVkU8^2jNtJ@O9)*yZiV!QN|b<utsM>u~2n*9{Sjv#)K
z=Dkc}>P~j&h4Ql?qrV368wXh`Vw8jV2VE$L`$0SiVowlzgE$<-ks$U3@n;YRg7_;4
zM;+^aZf?AR|42-i+SUd(>p_YBBe>;-@;BFuPdUT|Yq9b{fFCT@-2<|Za=7MX91G%j
z5dR8iDwPvrb~}hWLGwX_lR=!4a!v<vCWy1bS=VJD=LF9SUJ$$}c!|a@%x4*{Nc5`U
zwIHqsaYOh`K^oAKcq@o!Vt<#5qOP@MjQw5^*+xt9#Wk#VO0;+w#3OFhAruJV?HK#x
zAf7S{C(&Yk!eUdc3vAZs%o}6pAh5s}!WoSTnPMKnydlI2p%NEDKH>3EB_V|GOSfQB
z!I0VULV}@GD|unzePisst=93s#PFe#q!187(GZG-&@_Z*ArudxL<sMOkRC$G5K4uR
z8p2y4ln$Xx2-QR8?X|qOwrmI;%jSP2Wd3zErlYM~2<1cOpAi)VUkl+?Ayg`cP$|m)
zNKAM=gvt`FB3Ly9iZo-W7Q!1Mz8SUWCGOXzrY47A5ycwSYY0gR{dW!g?GS2)kQRcC
zq@wj5Hl~cVRtVozG4Cl|wk^B1w3DRs67z8bhB_g5V(hFmBZRskWQNdy-7IUZ7ef6I
zw4&yf{FyO!zH)(__6<X56hgSC+27cGMH+|DB!sMJd#>+po-Mp%(O8z*oYjTUHH2;<
z<b;qLLQBq$7_djY4LH~|(JoD*aTo4RC9UsCYO4@hhtNj&`yq4?(pHd`?S!-s;e)8s
zQH}jjct^obf}NwOb&JN<kpBX@htMO0k)rnup;ri>L~VM9%-fRLs*gnJBiL8)<ERZ&
z`w8zK!lxk&5I#(BVAN(%2!n+W5gaPWjBNJssLhDze2ofWU5x#+5cbLx@D-h7LKqvu
z&msI0!nhC|A$&_;4M7dT8N!MXR)*l>yo4|{glQq@A-FkioDt4r2;LBUA^1a>F}3C8
z82gJDd#OBj5=$O?AcX8Zc7|XG6?&zR7$HPLm>j~FoTEJUFPJfpeIk7<k9~Xy6GHgu
zfOU8tJ8_a2%*kWlkjFkn%)ScYLLRg5JrY=2t(|qIhcGXM`K&#JnIX*L8rfNAb_jDq
zJZd3(fj6bWz!r14PCu-Bc}zBu(FGwa3}IOag`Am-LRcKa^J})HA^b46MV`F&CHzSn
z!iHaM<?`BV=CvQ4m$mMOZFvYi2e+X8st~>o@n+PNwIQqy;h&haj%946{z&Uo)V4;V
zB;SOvDbQpceQ$CKgOb<ITjstCVIy^xOjqZ_;Cby!*QcL5lfF5Gts!g+f&6>H9|X6E
z8O3pV?LUUFog+iHf1J&{%UfG_gg~60*S=H8<A2i`{WXN&Lijg?V<G$=!mbeh3}HXl
zcnG^g*b_qDb><HlKF`RvW%BLHdqd{$#94V$_l3;wt0V_P_$!3-U&s9&!a;5$8Rn1B
z^?B`6UP;+IJ@F9T?{M{h=m~4H`sZXE4&g`$Bn(G|-26E6cnBv#c*Y?O;baJ>IHw1!
zkLW7ZY^Mcpgm5N=v+N@)3gN1V7ue3c_KP80V#sT^9kpF%Yh&#^tec$Vij+fgErjdb
zy<_doV(pz{?LCj#Zb}KaLbx5m9pS9&K?rxF{GO2eQUa46Ms+rf;j!pXLU<~KO8MSR
zUW5=6#+zY$e$199jJ#o#4x>yMv0=o8krW2P$QMR@*z8wf!GtghhLL;BmOqRF3`cFB
z9knraSggH}7`%)o3J=EGi-a*R*3Q(TVH69aL>MK*V02@wy?EFhggvqLx0Oti(*E2X
zM{K1eqy4Cjylfbi!gwu=SHdV4M)@!}P!+;x_OFeEmA)#R(TZ%jKbPe7Fe-;pRZ3<{
z_RP#-s1gRT-Cx#fQurHToQt(H`qdFzb?JMupheIs$N{Ml2HTJ#QMT~yFlvTT%0OuY
z?}Sk+jJ08W6Goj-Ozkkz!mx$0YEazCDk*iscsGns!sr)9dKejDv=8HhFzSX;FAOCN
zdl>cE&hnP*Fq(#u8AgLJ8ivs*jI1y&e%Ac&*6&u^X1>y=aTrZF7jlPipoqoa%gS8M
z!f=+iv<M?dNb@k-4z~_?k(?`0CbbNs(>M#sYXePuFN{`Uyic<*TC>@glG_Nbuvor|
zw=8IDSvbH_thS|H7^zhg{`xlU<4p5KOdZ1bFpM5y^kmoWBzKf7U08A$ox^B3HLX`e
z3z094=^942FcLajO4T&q!`3~FEy<RLTT*(3kzK)ZbbzIgkltZ@#Fo4jOR-nBrEeG`
zcEn66Z~2&BWVMukl-xgzPs8wr;R|Cx7z4xjER4}%3<_hg)IO3!^dfl({U?m!VGNaw
zM@m`vx;DPBZbTT%dE;VVYnT2OYi-LY`t$ANs}GU~bWQp^j4>RXFkDj3*f1PnO#U~X
ztsNJJ^=$p&MJy_PBguTJ&aYo*QrBpcX>o_mH&*Fk+*y&PHcaz`arkO-!Wavy^YhC;
zeLIZ#VFbeng)uFR=`2L57%ylDMg&>r7eY>2%u$*kd}0`r!sh$Cs7w~+%P^)0`AU%b
z)G)@{Qb}fnF*A(0bd`I_d_UeSaf~@(%ofYBZ7c;#ThfbL`i!-39QM3wmboB|C1ETT
zgN1^N!dM(FnN!wlc-*ouz7AtGM=y*OVXTx?4n<nOq*YPNtRj{*!pGlF{@{iAPCpLL
zx-h=wT-QwbC5-i9d?)SsDU1zKkKHC@V;GyF%H}Y>7yd(3*&<}CVDd!sZqFaX*#19J
zDmx^)Q}AaF!upu!v3Az`YZ$+U@p~A%!uW#=hpV0|G|s*|jALOO=c*55Zy5VT{73N5
zF!s~W<Ln2*_$!Qm8)edd<)1cnSDl00oyw;DEoO(psJ*KWlNb(jlZmq*3FBxOSF67>
z?A4Ti#fIdBbpO2I$uLfZaa#B}!83wq1=sY+WP>C7ZNv+rEZvhsemRUQVLS`tISUv4
zq2RSJu7`0WjP7xEhC5;06n=|~aZ$^^Hs#!w=*T$x-7xNjabKbjqW0gd&zT?@S;eC;
z9!r@|1gSjbK<zVI@*<2F12D`<%wr(0fr7#rjTI6v7$=y|z>+v~*b^k0U$B6I5xeV9
zEWO!QNR+~YiGoE8BpKK)xoA`KjRay*1H}v!H&8-ssFW1a>U2DL`$7%M7$|EX*?`5s
zD+bCLsBEB$0cVfc@&;aKGx!t0z^g(k8mJ_M;^{51uL=KJ{_83J!u%Rgm3bYpZy0#f
zz@@FWY7%|7Z7Rd@ID2&i58~|ox~CL##99s1Fwn^`@3&7ekZSN(6`C4&%fQ<P>KUkS
zpe8qe1GNpL8RqT5wFE~D&iZ<wc{8oeKpg|=tSg_L(WduW)cPXsUFPbYg?#o519hWG
zOidV`m1%$mjSMsvy@7#ly)qg~nT_(<n@BWgRwl(EeY3J8T3gR*W}vx&b_UuTXkj47
zKpO+^8^|@#lCzo5&gv8cb}H$%R<s;y-k-_vo|Ifc%c9=efL6msveIgMnc9|DHs<F2
zqp#VK55)3A1095%nUhJeqwvEyiR7IPoa!0dg|o2S%FvZ<6W-l0pBm^9)t4+t?`_~C
z11HAg<aqQk(APlzFHqnMd~Dzo0~rz2ji8@_{s#6K*lXZZ0|N}qH?Y9KKm&sec-b%m
zgAEK}e+yYP149iAGcd-$SOXpN*@x2!4U9A}DxaNEhEWDSGcek~c!}D-$zGn%&O4?)
zr$ZLCzH_+_ah!0c0fzxq@^1J#V~3bA)n(wAaNU60fQLhoWZpl?A8TyGjHNk#0|5hk
zqVOxjd`>yYx(rM(5Hb)J#bB$3)QGSb%X8;W$tM3obdrgNdAl9Mmj)(9`D7ut4rWgg
zvVre#nA38qfoTTvRj^JsFvGx11NZaU1Fu<U8JKNgj)A!xhYIF{jSTk=D^u5GlN61&
z&oe+|Q+ey=LIWEOY%;LOz+x^C14|8jV_=<uWd@cTSj8F*RG%HU!Z3eduQbf}NLb_T
zJ?3T?nVVhW=iJo>))-jJ0WWN|tjHy1$D2QFyT{wV6>+_R?+kn%Z+D-{m=JHL!3NPu
zmdD#S3*TyBn}P3z{~)+C-oAyt5pRDOZ~u`S1#36(n*rWv`jdg39A54f3HBWZ-(6{M
zmSCsOn=OAakg_y~Iy-JHYW>~79|m?C*hRCVrZWC;E?+eeY!s8WNMUrJfj<qzMUXFo
z{RR#gxMkqBfxiqKG;qeiSp$C?IK&w@%mY3c{xNXGz)=H-Md52S*pYvuse5ZCF-o)J
zY`lT43HFm*4hBwht(7!&BHK1P!A^e8z<C2#4O}yDf$P1r^&&SSA$)Y26Li_Y6}rj~
zxswy@hhMjTH6@h?Qd~E%I>F8tcHJ~^!!U1B<x3U#)`e-ia!Mvy@5tyqGVoZ)T?6;%
z7~IM@4hi;${EnL6em24WEWw_V-`+I8{fU9624W(}6TvgXd~w7J1Jhr%l026v2bMkJ
zU7hs&3$x?$M$9`r8DfP{jE^88f;S>~GlKjP6o{Z~1g}I;FoHr6Bt?J-3P+F_F<<)-
zC~k%#5fDFWoJs7G-(EC=ViA;zptRT&kDx>ZB_sGezdf)tdrE#gZ{OX%G@JJ8^4tH+
zZ)Z7WBDluX;?{Bzl#k%`2r5U+S5H)kpi%_2mSwyeK}Av6_|vO%3l^|5^|c7dyDU|z
zL|{8*-k@8JH5Rs3jhMb&t$?{G7B-Bj9zk*hH6wT@0!su93fQd?)QDi;8`ef!b5kPd
zP{5uV!CS1WlC{yQ9IjSg#CSV`Z@<nt3DeC67qHigAdR(fa1LhIjv!pXUT%r9ynww<
z1nCj{Qo#Oh1dKA64#UUri&*PLP(OkR5loCAll4Z>D}vq;G>o881T7;_B4`{j_lM?!
zO(MvOAX|7d!KQ*V$orO!cOY}$Xdz0DU~V*(57gTucrSvE5p;^6RRpagXd6Mhh<Qh7
z8_wNfg?Hz2G~SPx`zoiK*gk^11??R~`9Sbo0sDs>4S96BLP2}y2)abjQ<Az0vb63(
zx(TKiw6`y4??JC9YGu;+K^Rid{!s*dA{Z9I@Cf=w@Ub*<Pz0X{`83+*ejLMs_WqpH
zg7%Gr%t06s!9YpfT+qJ1pnb6LA%a6A=-$M9Imy+6_7M?`jKCFv7Qv_pK8rw&m@hEl
zOFu?OKpaO;6GA>l$k+(FU9Q6@(IHA~A-j{+oyr}$$=n3=2;B7H2!auKB6ziso!9+*
zbcw=Nuk@7b)X&eaLUz9Afk`Kltf2@Z5q!a3h_e|Hd{D?fxR8DJ$_(BW@1tb|S4vyW
zJG!^$PKsbMorIPVd>O%%2$n{$EP}5hm?|BdFJm}OaHin&2xdeuzmR=fA^WjH_E{0k
z7JW_x^CFllfy2(g`?ME5Z$acMEEYttFoH!9uwS+YX^SIR!sS!Myz1C@buOP@SRTQO
z2sTIXeFQ5bSQWuK`Z?P`|0!l&E4Vs>H4%*dBbUmfLUtm<H<HATuaDq6;Tt2^@G{q%
zR!+@3WlS@MO(L>kKSZ!4g6$Ff6v0*znfjxUZ8B)33Y&%hurO&y1UtE<!1{9pDTVDr
zyChPNWp;Tt%Wo0<9>L8BZbh&wf<GcS7Qyid{vT6c0&Y|F{;!A<_kPUtJfCx%V?6hA
zaSeBL56e&yDj^w?%wtF?rQCh?y!YAX+(a^mC`m{(lSm^)M5H85r2Id7^}YY+_dNT)
z&u6{sUDLbX_g(9(bI;lbi*cwJ$BOY;F+Qd{Gv*iLXfevp$oWLp#tUKi6jt(Q^Hc6U
z>iToXNf}c~d|r$%sQg-?uQ-E^LknK>|4aW%+EOKdt@*kb$7OD+l3*@<`P*WgEXEJT
zIA4rY3_Ha*Q;hG6ak>~6PQ-Rr5-k2<T8Q{818D_uj={4{=)i>-HOAQcX(e%i_CS9u
z_WyDHVzK{Ig^DL*KXJZV`UTm~i<QJB8AxxfEcnZXUyE_27}pubWlZ}`(yPVzod#Tt
zKN$}zi!PPLUs98|_KXg$>_?t!QjA0Ro3U<P|4Eg_zmjv4f}0gTHr|lQG76rmEVzFl
zr>ufo6qHv`P7183EXu#`ulp4goL!N}+dPQ53RhHcyMiwie5s(4g31bJDVVJwO+mVX
z-U|9CfPyLtLJHa{sH&iv;zye%l2%txM?qZ$H5AlTP)oti%6@#Vt>E*@g2(bT*A<c0
zQ&3+)Lj{dwsRmMV<mWL?8HM>YRxoX<UoFq%f2}N<Drlylxq=o7S}SNHOSM$ciuKeE
zRZJ6Hg<GZhWdkxR$bP1Yi4p(DBYf^n6JZ4r1zi<nDQKsly@Dvq)(!FLpm5WU&I&rp
zvPa*GaVk4~o3Z~u89LNE8#6OXB{LOtDaG^B#P)ijZVIv`hqycINelH*V5W&pX@UpT
zJr(qlb-tG-PN#_+1-S}FDHyFFPeHzdAqs{nC{R$SKqweMVFg7B`cd0eLZ8mf;o2Qj
z@Nb%6xF)B+<P$JCP{AMtcPO}1!C=YHdA=O8_|!`mcS#N%c0#)7kS;{JxLd(61@|bp
zSHbYodPYdVCTecaA!XV7B)wnKk%}MO$b2f@*DcjDM!~}hCM$SA!B_<kDj26=qT=sB
z#!E`E2?~B&SG0ap5nq({RgKU?3MMHaUX?B=wkKUYqF@TGu5xI)f~kuCjxg?&_&bPc
z(lQwnzDoBUZH9s?>0+khUk}BVcaDO&3K9xD1@jclryA2j8jC1cpx_AwOXNf>lytFz
zMG`zFCxzXhZ*s05SFm_xVey*uC+Qjro>Q<~!BQ#tjHLJ13_Y#jf)e2-VVQzwY3lID
z-WuZc$~-!Iv4XgiROk*6toa^@SrDoM{sxNEs4FmN1G0Ozq?V+6NBbRiB(8V3(3O>}
zg-9w$DR@J{E(IkDo>#D0!4?H86uh8dt%7w5Rw`Jf;6(+i75}>`PRj9<G19joUXlj3
zM$Qy}3Bu<ai1i9KDA+_(ujAkAMahi{{($J=M3_vgB3_pDaEvXhh^-2?DcG*y6~(_z
zh|hnYiC&d8zpmgl1v?bvRPpt2?7K|TkyXS_1$5+jRm7W8?0|xI6zo>8NAW}AUIqIU
zysh9ZIZPHgx1!LjA~shM`xSgtMVzZ5xa_{G;5`MOC^(|veFYyVIH=%|f-+UbhZIv#
zud4Xo$?M)S#1)wzl)BB!`Iu&=;6LVg(U0$UWA0G}pDOr_L56-^)nC48`NtFttSXpG
z`Ddo2k@-+n@s)zF={0fO8OL!2Cm65ds2j&O3cgkF4}DF+Nt&yI%L;x~@STFw)UASx
z3eK=y1?Lt2j;XVfo>TAx4XLXC(TU7dRq=XNakQ$SwO>$hsj9fWn)rzt_#opFYaSJ8
zSxx+`fOOEsqF<y_eDy;S7sM-c8L7r=oNk1ESMaBTzZCSWCjL;+V_MtcLo%+)tgq(f
zjHo8~OCO5;EsI>2lpUB;P28aB;^0uz<2dbBzA29Kaa4%oX5O3_N4Yp|iQ|K6;#4)E
zR}*<PL$uz_)x@oFT&pH3#&LTbwZ4qqCMn}yrMSPrZeLwgj-y6(!EavrRu>!;?_sPG
z_g9%(aX&;?jiWjR;uu|BRHK%w_(An0Bd?~+UADdK(ogc}__bw`2KD^Ks9qfP<LDGe
z=QtX~(J+qIakPn}Q5=oq{?@dGq)p;zCPC9U79WW%sxC;IvtX?dzlR<3URO%Clme|J
z9ra>iAdaBK?Ifk$P$nFQS6#G?V@GvAkkSPraU88K7_QsL(IJjY)kViRD%KGDax$*$
zj<FuzXp<2~ZX9`WWX91YjvjGj$I(>|ilgophrO?CRvayAh#ob>h#I1M9J6ZpKEkJG
z9KGY{6Gty8KlRJJYx`s5UtOJ^BRRayi4iY9j)FM)$3c@VWRXop)F1!)#<6{Dwo*f|
zU@VS)aq#}J^|Ep{#DW9jV5Axx$G|uS$qL_*{BNX;`)=jC;usRg^Kq<*V<?pn$AUN(
z#xX38;XJpAV_X~~;<$(P#4#$4d*l9xh>@I#5gGTz@sF&BZ$Er$G@jjFc61zLq$bD4
z@qlcOhEb=cU=hwHDR0~wAIF3^ro}Nmj)`$R6vyN^9+8tZi36-D9wx3SsC>#Z@=T~H
zro=H-*2cF+7M_mr;~4of;+Pr7oH*uEpB(#3d9&qUf7?*RtFHJ^jq~Clm`{t6U`b7X
zWm&%|Gg(v2I+C|2j>qD#I6*X<I3ADVxj2@`@kAU;;#eBT)AWVgLr+Tj6g$~8#3bpC
zn&O!_mc{Wb6<$*mzS!?&H;;S{mRXeHQyfP;4mA$`x><>1<h0nunnH_1kHd(=q_5Qy
zwdHfmrmTnrEVbCpbK-F2U`yiup+tf<8AnpO7;hM36Dj&atx)i>ez~>$e<7e<HQQeH
zg*aBm@n#&m<5(5Pi*am@V~cd9)p4wiV_h6C#r@CzYa}JOx0c`?ckAQW5XVN^Q_T>6
zrMpRjm#NrV{;Zv^;{R-rcj9f0;}xmHopEfF;MF)@i$kj=wlhmAd`H~BUhH+5OSSV_
zy!Exj+qJ|SQjC(j7(Z(Xf<1BUjpJ|}pTzN29Q!!BINp!rZSt#y4oJG63Pk8?Em5tu
zcqfi`;~;+ad}g4wP}cSTAdU~?I2gyFIF8s6n#4y^o|8_GU?u!5?Z>hnCVSNuN9f3L
zd=<ynQn#OS;^O!`j$=|Le^Vy!?qjJh;`mZl*kVmlr!9FKdAwFbup7tOb6Nihx<hR-
zqqfhi@?9qBsW`riW44Al8cxS?hQn8JR>k*moQ>mQ6_Zt*i{l3d5EUI&oR8xI1EY$n
zDt?UPVjS1$M{)c_&x+&sIR0RqiQ^YKNUP8lNiWk%c?&25%Z9A>8)Hgs!K~jH!8XL!
z*A_f{`!kNe;`mz%zf)UWm4JJ79@brxr3iS)$x{Euaf6{=#jPsJsJKbREvg@)Z&v-|
z#Ih>NsW?&F|LoAq&Ld@%CM~bxuiBz&9nrRqxJ^Yx6=^EcRot$kl8VZ*hU?SXvWCJs
z;zl%kOdT<MZGWh!ek3;Wojg{;+<A3GHF8umQ_);S4HY$2)KgJkMJ*Nl$Wuo}T@|%e
ze>GuMMjdgwN&1F5Vt*acIX|O;iiRrR!igp-8maiEj^OU--#gN;)e+U}3SMy6RK+Xb
z`Y#u5S67g>P|;HLKjpPm(Mp0gDgr86s}OYs`4j7kU?~ns0rGi~DfwX)5!FA1Xs4pR
ziYMxd&W8(mFq^0=4vmU*Qqft(02KpOL{(&{=%XS>MJ9DpC6uM2n~E+f*6odTRZ*vY
zh^L6;cURFvMKAS#Cv4d&dP>Y(p1{!4NqbAqT{Zl@bgqg#6@66{smPZ#bCX}d*|}Y8
ztt$#8=i|Em;r8$~MKKlqRSemc*RQlrRw$$<O*3!b#I}P}3|4WUijgYrP;sY<;i?}-
zF4PrwNpLrds~D=H)7yDB)f3Dj7{=+4I8slHkYe|!xR)KPCqCMjN11!-iThQIQZZiI
z08M4IiU(AT<@_G+KSss1HAU0wi3e3It0%^(ST!r>1zF*^2eVmx0@bei+ues$d|ppX
zQu($u!5ROxp5PsckEoc!;i%Z6VycR1DxOoZT*Y)1GgLgzc~LP_#VndGTURlgI)}gE
znX6(>DXv&wa4$4ZMfl|yvlggWsNyl1yGRAI$m~;JaI@5^zE~{zBkPM@UfvQFPqNz-
zZWtQ$THaGCo|bqi+o~_D`eI9c@r>krR9~E{FDUk`%zFL(%Ec-a6)&n-ts<^MRpF>`
zRcI=76{ZSHT9-iwY#?Z6e0ZzFvR3}-F*!EX-at&Dy{Yh2Jg;JfilmAZqe}Bo35~OX
z{~;xPZ;TtW{03rF17B$`s8~r2tC-us-(4t@$t*5;FRA`l73);2mtc*gYw2$J8RYZX
zAUT^<Y?RFDKgW1$>&x`D4-1*gt5dhqxl|ld@v(|+Dz>Y5OT|9g=k1|aRlLE8Q}LRL
z9V%Xz%$<@lmmTIuZ|+^+RIyvdUg>D-8;CD96zx&*j_e-yz1-x}9^Pg*RD38q!*&m-
zc$YRzG0ACKBUEd5jQsay@&ifP&zru9ooXP+|44EUs<_%fkbhXkCz5kg#Ss-pRsT@y
zxQb6z98>XyiZ3PSGuoa6)f@T;P`r3H+)#X_qIg5mn1<qO6+djtD{LtAIXTs4<(y#T
zp$Rn<->RUbD~phSO2v07PRn|@7vjLVdY)0`Z}6*z&ao24E)7jIoL6x{MFkDFYW^A5
zk1DRH_)Wz{6+cm);S`}?Bqg{cL6hxew>K1*Rs1UBB+u>`Eq_<>hw87|Wi|ZC_)J^U
z{F|1q(&<#(U{;mT-zu)F_(#RRoSK)j$l=3?LCO<C|Bz7PGMXQ_h;NpFsyozBu;y}_
zU;ix{%4-<$T{a&kd4_qLhTAn%(oj+JKMDHFM9olT4QU$cX{gUiG(bZQ4K+1i6;&jy
z#;n?*sv5X2J>O7NmrUmJ+@@A3uC3w3#!P--tfQf>hH{NWhn0m58i~wCf?t#{XgAQn
zueus)7~IJJR;ZEYe`mx1(o{n;4FwtsH8j`ILPG})9cBMpY6xiH3sYLjWNS$$H4<$k
z;49aI1RC1PKJZg>L_@f=KNFg!x6{yG!#9)K^3(B?jRbd|oiudT@LD7zTSHVshK4N8
zW}8r^hAx_KEi}dMH9}oA-`;2>FEkQ7_v<EQ)*q<cUE_<nQPa%h!%{sp^wQ8<Lmv%!
z><J@(E%EEgSdNBV>S}!!zaKezr3d->8rJRc7v<L*iM|?&Gz`^nw}zO8<rCYEZV?)+
zp`V8SoRmr-p<$qg9~+4Q8fLF4`m~YY`ZY*H*~Wqo?^C@)!<`!LqMjT3(VkI)V2Fm+
zEAl!v7Q-|Q*Dy)L!<>2z_h=ZS;Q<ZzYPe6sC=H`EjMQ+y#tU%rxL2pG*4mmEYb?e!
z7K<8-Xx)(2SZr(TZzRTQ7^h*ph6gnqYAm=dIk~22g66+sexinlG=KZSeJm+oK*mGJ
zSKo^90DrQEsT!tfc!V;ILQ^#GRqsEr^G(Eb&A%FjW1OjBhQy(bnRlJ-KT8grn+N~Y
zUBf)~Q^#l>^Vx)kzcgIcut38?4SO}brD2hV$27Pa5*ik3cwEDC)TD+dG%V44&wWP2
zlQg78p{Fz~W%1SNWb%1hng`Dc>NXLyie(x&#m`Dp<UtBM@b0R-VhySWO@pGLQxpHp
zIZoY<$QaN>=o$<SwuUuL{6KAT2%7(Iy2MkO2(^i?G|D@&=_Tv4JPk<=8#QdwkkU}1
zVU>m#Y2FtypJ&sWzjIq5)yP|j`F%HwuhcMMMT}szhL<#~=e$=9t<kWSCM5BmCL+?$
z_gsFX&G*E8)<kTO75>shRBS3<*07ltu3?9UEgH6J*rs8-9Q7;GYp4YFwpmm0s$^2(
zOez~QdG__X#&^(Tx75ZP8g^;^t4QBu&*iB&PxJUq89Awk+tPFQX#O{71p73+t>Ki0
z?=<Y!a6rRn8a~(Xj)r$Ne5B!^9N>Ez-q-K}J*cU#x(_9DYE%ECE}x-I#UTwJ(`z&w
zk#Xj9xxB;w736Pn%jF&HUFN8UW3tbmYW|5LA1dKlS=$#HzGVENvupTD7C$b_el788
z*$Th-W<%Y3mtm=IW$sB1_Hutd<ecVUX*n7$Y4~2lSq&F8|IG6o!-51CXnRflz;&KY
zH1%hS2kbMOrvJ#;)x!Ut_a`aFp-oWmi-yY@e$((f?L0m7E92(}83ep?>Wb{rZ%xG?
z43d0>Q`gLPl|p|?+#``k*SMzPZ-yovnL4i1cQn-2QAfwW8g4Lp>!_rojE<Xhzxb_^
z-b||F7KzL1xV@S9?*ngn$*G{DNhv3znYc|dS+=6?Z`W(C=to>xM^zowbfoD>mjcjH
zMaQ*4>CFAMc4*Cxj9Qyw#MO1wDy^Z01U1?8rYvR!iZXaHeq9~)bcA(8bU!}S*U?l*
zGaU_dG}O^ZM`OuvqN9H^UyXct6imu*XPWD1p(CIpsH3HhRytbiXruez@9+!R|NkWp
zlMgi${4$qY<&ciHIu<t*$2Mg#nQG>L(bG-`FXZp2qmz#II(9Y_9dw*qnNBdidqjO9
zk5Q;b!%$}(q){Elx;%m|I=bo@tm6(HSvtDu{wfgD(OpLm9es4<=)SXO>*%SYmkyr6
z@}QNREvxhB^}Tf*YvxClTpf8j3Un0e$Y)t6!qZ*y84OAL>OL-#^zh35EXYbOHxvD+
z5S@q1euNyT<AtW70XlANE_iuV<K|)zyU{X4CT;Rg9e3&e^-A~Y{+kGf=(t<QFdai_
zGtI@D?^Py~&u|_0NP!WO{=25Xzqm9P_ewF&*GSzzqQ77F7y5=@<&AAF#^`u}HS0K{
zW2}w`b+|ebI>zZ3uVc23IXWijn8?{dXu6JvBp{wF!6Y4vnu~`e=09>gqGO7VfATY?
zavoRYP1CXep|(tR`8<ywlvrwpl$@z!mX4?TWq8fSj^<*nj(Iws(Xov2pQgge)$zEF
z1v(b$INDr1ru!SMMG|vuCH^fZWB#bf<ne8v(6NM7=~$}cNofN-?xT@YhNps0%Yyt^
z$358DxAP)AC)Dwr4xI*|W4VrE9dR8hP38SO7EyEz+!33(p@`?AG&xQ81H!fy=`_@P
zHWZnhDH>R<kj>uaMe-VkK3~zFl+8K1|Lch%)kB_+q>eXr?ADReQKDm;j_o?0*Rev!
zS{>^+(K=S@cu7aa7UE)au}a5_I#%ocH^1EB3_1}bpSXpjYiN5d#PAkky^ak!Ue>W$
z$3|Ip6aDLU@o@VL?f}^b%52fGRmUrAv4vnIb6SYW2Meth;;^iW_VX%TLptMYI(E<?
zTZq?bu~kC<U7|Jae2h0`y`f_lU3ga>_nD-7bnMl^OWQuw@s^H#j3F}lwxkDiyu(?R
zxO_|T`tXc*8GIyQl26+^`)9Tk?@NIX=xZ&-gqGqX#<Y)Od=Bb3B=N_R9+q_OX+P_z
zj!zl%4BTwsn2yhAx|}8*pX>O7+Lm+urH-$3d`q)z6#AN$&{7bbU{*_UoO+PSZ)7ev
zB!^`3q)eWY!r!+P3>v3(oRPJaX(hhbVQ<JJ^9LR0b^Na54;>fil{G>?>G+u%lbFei
zI%>BPkyhf8<XqPAE8V}9_=U51DK@&5xKb+l8&!QMk9WaQx6Jxe$6vbt%D;c9`P_`F
z47ob~miX}awtUFBPAAeax0Ud3!;_TqH@FHIe!(@Zgz{xpS;P0@YK9-u%NcwJE6N*w
zB&lSevVjT)ZZ&Y5fr<uhm;BwW#HXzU1zxKax+p=K0md0}V1O6Xr5h;QTGVSTsz`bA
zt4ctRs4iRK2DpZSnyk4^h)*p8wI!}2X<bR{Ny>9P3N$p($UwJARk}~A(%3)~1O2O4
z5!I_SHPFmJ@E}45(cC}_1DChp*DYvipp}6ItFUktS{rC%U`z@Rq!6I6fhS!&<sxLD
zt$}4Wp0yD+5HawNiGNMBGtl0^T_%Q@=wP6ufj158HqgmHXO7Om90O4U83slexW_=I
zfi6^_fg%H44P+VUWuP~EYoNP<9tN@vbZ9L$4G3q<kFA{-E3+*6e3wY!_jx@HtbC(z
z+<<T&133or4CEWgHSo!T*zPWog4SY3C~Nk@Sb>4fr}GL8q(2kAzqKF^FO7a*BQs{8
zANy%w2(@8A7`Vg0ogDR|*Z>2A3=B5#{esv)12=XS68tnTHnX+39?W{KwWuh<St3k%
zK0{f&e|T4GG0ec-60d44$T`+p4Ci<k#yXtJyVt;d1|}MK$iPSg_fww+9x(9!j7Ybg
zIin;PEh#y5mqf<08^g1R#~FNs0Df&Ph`*f?8E;^M0Rkp>x5=X9Bm)l{SaNsPGy@+!
z9i4385d%|bcx^<#!<CN>$-Y{gKC4#IR0GZ1h-XjcO*b&Zz)S<wAv-yX9z7(x`P^7W
z8^6zU4a_s(8AuwKZ{Se_&ly<G&KOw8Ryg$r78!WVz~cs<ptUTEveaS&TMuL}8W0}b
zMvPe)`+Pu{nEXx8MV~UT)WFm1WE=5Oy}TPsqtDQ03_Q!4XU7(|5pEly4+!%~JRT`F
zpcv2%7zV!SAC9w={lcn&VY6dQYO;u5Z5v_I9Sk@ITmvtJvktTo-P&f^5>p^yVEdd%
z&()bTo0Q$$HjDj987MKZ$-v93)4&P?YYnV3KqGm<z$ybT(ocIuSJLnviyfD$SZ&}X
z18WShlTR;*^?xE#@l+nEx7;6cgW~k{1~wQ7)GFF&AUr#ExsBL5G>Zb84Qw&+n!(GQ
zvDLsU2DY(323Vv*KwN$!=hyz>h5>PUVeD0Up9p_gvxxQgDG0wV$NPqXowTc+g(G8O
zqgK%_`iN|IX_v?z1A7@sOjI=SmVtc+&d@{+ylr5=fg=Wv8aQC!9a@5cgY27<{w~7>
z?aBb_XSY8v@FBasq+IzYA{_!^<f#1q0Wl^Z*rh`TJ~nXJKx|Y#Rn5VEVqn*qJQmzL
zGqNd|^(jq-wrAj^fzJ$lZs2PJ#|?a8;7bE<1;kghnSie=BOulV1PhXRJRnYRHaXJb
zC^1_kpfO}FPd_Dlb=tsp(rbPXh_6rPRSb$|L2=f=IRk$f_|w1-2F@FN$yemEfeQwH
zH1HFX1}@6t$M4RfGj<D#xjVa_-Ia5RE*2EO(0^IUuAD&w!lOf3zZ$qgbset!n}OeH
zjSFItC6OnBf;LY>{mZ~r17%FyWWo!IYX+_}lo|M&jt~^I2U7a-zl;N%$Dp{nJj&z;
zK|wpY*+f|r6-?YRCsvNsM0wLU^%H?Cn);cb*tsB<S`hm;DC&m9ttL8$#4mlrx0|SB
zB5WdJqOyrJ6ZK6rFp+KoCTf|eZK8^aswS$NsKMzL;aEsiGcmR>JT4?iYnn*ZEb9Jb
z<V<n;?=vFR7f0%tsB8MO{K@LfdM0QszYPf2|2}UpRVu;_O*Asm(nKp03|x&(G&Rx8
z1cPT26LgTrLSoLNvF0XP$mUqdgsMfmPv#M{HvRY(FcCD-#zaxyFk2xFndtRGc3Tsh
zLn09peQIX5f2(j&QMjFn_9pU7<TL)8=xCz5i5@08arh=OO>{9)=c}}+i3}5`i^4sF
zS+|_aBPfi8yP9}pK`hHeH#yiEo5J%4hSMThjP_Gb=4G4cX`(lWDVy$Pf<64AI7%O9
zPnJL0FUJHsoNHo4FzY}_eDqjk(cZ!W6NM%QnHX%MFZ*vom>9r8JrRkS=tp4U>yTjb
z>-jOgf0%)>;d4<c?YEE^$gKIX+uHg8pEciM;!fGb$tC4}6=6oFqy54|P26o_lZls2
z3^Os@#8cEi`(WZ86O%b26J0xm?=>;n#2AV1GcnS{{hZ&$k%mLEsn1a~o+4kd4{+cn
zCYYFL;z1J!b`_47)5>*coC#8LK091_$}`cXqw*gzF-hhUv+TnXkM0|;xhy)x#8eYA
zOw2SfO*T5+^k2JkA(9oT*O&bvo@HXTiG?N>nV4f@t_cq3QCjBG=sa0uzKJ7qVoY+;
z<chh#^g|+}9PR2c6N^neZsG|O4XGa)qna#FUt;<p@kvRk(j9YS@5aL9u*IiMJZECL
ztoa#9mr44pq->?wgkoZiiM1x;CR7ua3EPBbLgyrYpJ$pVm>oGF!UmIP@(vgHTY^iq
z!pw3^(AP>#JWtJkm*>(!Bp~)ANJ^TLv~A0*jJD#z`7zQJCSEYHk|xnstTM6gT;59(
zzi48$1e6)yR@lKTX00=^-sIbRV;oM;NY;X1vNp)hZ<O>NCAzS!*lc2piSKCJlDU-~
zGx3IrS4?a(@y-4D+fBS`;x!W~X;-hd6+28UnG<`R#xppBNm?3{yG*=k;$stsY3C;P
zn0VL3dnWcW_?y^I+c2?DTI1U$erPKme<E_Qtsg@FZR^M0cj&NTLC%wpM{0(}`zAhM
z4e_!cnV2^!pZ0vQF#Mqj(w-DE`3{|OTuBd6W<~apu=s>iZ{jQ3Kdr*VrzSpQpfGW!
zdeM7D;VEHpjFDtc<ms@#&G^E^m!`iLVhvnAR)@vzusCkwgo%?TPI1&GzLmy#EG)Rt
zbG{CFnOyWM4hUZii;+#r8j0{36W>dXT{m&o#5og}O#H&3nK*CaM|PEwHX<^H<X@md
zx<qI&3j<l)82rR&S*Pe{w$eY`C?YyX#Nz5jmt}LmoA|@TuO_aT_{{`c2`!HFkBFE1
zhl&3*@fRb*{Mg?NI1KD2t}#F@Pp8W_o)=rzCX1^c=V<f77@ei@9Dc4x84Fh|{AS@M
z3pZQ5fejB?C~Kjdg%%cCTDZkRc?<UFj7AnJSh&?fH4D`(KQiBDp|XWE3l%NgZu#5M
zN*0#Q^Zjc=M3AOiex!wkDi#L)l0{tA!s8La7{~>MCdW0UhJ~6I>RG67p_Ya1Pe-5s
zseBy^wJkhcy@-;Ou_B_bh4rWM2&k?G78+Wh;}g?1Hbwk3Xv(};V+&0zG_`Q1XZC@J
zZ!^s-n7?E-xA1L55VW$;+Crg)z82b82w3Q1p{s?Ug^-2L?8#e&Z7qZ?w71ZK0}p0J
zINo-morP-=@li1A<)ScSJB_WQ<;Sj0EZ9!uw-c2H`sNq4kU?#TaHi#3J^@41w1RM!
zg>DvlTIgk=yM-PWxUtN({B?>}%4km$r4_}B(+PT8$gz-14NCzU)yO50JPRY(kc9#Z
zPc4qUG%(DEoXwB<xX41x!rc~zS?EWdvwjPASP&KlSQtp<TX<rAjQyECGs2Z_Zabm0
z6P;@pt!gLkWbT0Q5DP;s+$B4Iy>?Npr=w&dlvQ62b~szNFv`Mc3-?&K*TQ`ke=(F!
zliStK*E2n3q=ow}(D+ZS$o{OIxY$mNvG9O}aTdl~{=Rptg$JeC(3NO=oVd5n=9OzN
z_RjYAiW4k!`aX}1PU5^<c*DXj3zIE8!Wpz+S(svBDvgH&u`tcTbPMw>JZfQvg_#y+
zTbRSFp;_;bPowS4qB*q}1gvnbh4=o<n@2-E>(?KAIvQ;+7Fbwl;V}z~EwE`i(IQDZ
zai1R%99RCL7(Yi)V@oVNY2i5w%c*$_+*mHP@U-PehJ)d(XK3&io~5eW`+8_l7-lQ1
zjcVZrpxA<9LA9V+h+E)fwR$E>U5#xoIBPnGJiuRt4GCC^>+*v3!nWX8SZiUO1=m8t
z!b%IPEO-`@7FMun3n>dF)GGTU!YjY?4U*nO<76cqBU>S*N4(ZA{Gx@`7S_;!r$;#5
zoQRib^BuxmrfHl;d$FaxSZ`s2g{>A|v9Qs?CU(`r7CBijOV4GWIXVUzw{{VO$$Ra^
z#qaVStWmVh!fO_G&}}WeYJp*vHGkV)PzhJt`+JPnE$p<w8K+_J6D65%GHKzIh3_ov
zv9Q;|VGEyFc+0{*3-4R_z{1-W_FH(D6UX}dg%2<&b&0&gWKno<Q8>MWC_6h=w_O%D
zHXKfi4&p-#A6YnL;bRL2Ww*I<u_x^FsQ%$W1ARcro*l#y3r8({Y2hmipISI(;WK)f
zv`?A=<Nt^bzHzeWEb;{{t-yETuPq$6@D0NV<K&#k2^#0JD6^_A_G2AYP5qp-zz^~q
zCX2Iay6tHOA`9PJIBVfYx`u^w7JiW3J1?D%lSM@}Je_wzc3{5}WeEMr!p|1?S?N~`
zmn{5ZVQw(%GI77~l({i3Pc$uZxKdmSWzmX$xA2FBJRA8o{<QFyg+?|S+qlXZXY{sF
z-p1c-^zN*GEd0x;W%-}P`S9cR#hH=BjK~f4+{R5dZnja*_80WmpN*EaG4pi)kCsP?
zsftaXl_9NQ<5nBhZPc)Fn~jP#(rv)T?Ka<7(XWz?$~L&Ioz+34+5S-gi>&S-_@Vx}
z4&uIE*;Q;@SQ@Qr<DsEh+$2}C{XPHG8IfmJXV$b)%SJsLpU;fcwh@>SVR)}=`&L(n
z2QtI5mM)EQt>3mhTHi(k8+$qkO7dwai*O)KY&5kIv=Op#tb=G~qeA<v);3ztj5N2=
z!bVFQTi?lUMSe$7bUN?ZWznBH2v*pJ&Ds13VU(D(Ef0TeWZCFuBVwbSjm|crHrm_h
zV8a`l)k#ur8auMZj-qQvad2qXppJq#!v=ejX`_pc2^|FiDLGvwpMc5kHhOSeHgara
z+y27Z(?%~FtH+cj?kzct3B(*bDW6=)q`<y}&nd7`Xk)C62W|AVQDj5d7-0L+j|z#&
zAyeD^Z1lH5z^BEo!htph*%)qPgpI*cv3J=RBEcOt?v#KYeQjg-NF-~h?QcGZ+5A0w
zxw|>(3u2rmPUymp;vO6K+8AYHG%L5U`TM+XL$j#lkv8tP@%+-L(ot;aDDK|Vb&Ra@
z0ZC7ttjw(rM|5>bxp6ke+n8-*4)tSWqK(Nm9<fp9uKb5=JS=s^xtL^wm9VN0r4FB*
z5t(9Rx~y%gq|@Z+y3Xv!0nVVg+L$Hz*E@;}ZTz#QvmM1;8}n=|w(+=)`8FQ4!HviH
zp;-%TaHNZDJZ58|#7xr0Ixmmb>l<D>Gg7OQc*4fZGy5&E@uZE@hbz-l*#D<&a0Bp+
zjc=bTx75bdHrC0{kEAEw$)+lvv$5PpD+jF|6x&c}bv9nH5x1e*;EgmZY-kb?m)Ov4
z7&c5B7PZ$&q&U~Kz)m7TGoxEc9P1=p_Th_s_v66hZ|B}VJDQ~GI*Em81y6MnYJUEX
zPU3kEB(0!uSHZ`f#0xf7G8%~7RW{bxSS#_1lCGBYB}qFb1M6&@?Id2NQ*;*VZEUcy
zkvg0l-DG3`&H2na^g-_Vc>&_hQf7;!jXMj<Z?m!8#t$~m+jv!uXqSyQIkWc$UXyf(
zjo0Z)oyAU>d_z*^ju;czUsSN$#(RtsY^bPUkBz-H-m-D<qkj9yv2no0+nnFdg3s*E
zV)(+$cckRIHvb7ZQ2#*x-#X_m>0a=GjSp>nZR0pyn8oS)Ha?RwhirUe^PfWTv5muw
zZ0!nuEDj_(i>pfDD0LOhRb%;|GUin7ci^R1a9Ln`XYo0s#Dee_Hom0S&&qs$SajbH
zfv@QM;ryqr=MZ;VoqvK6l1gI`I~(}cMza$+r|2d&n0wO3jnlqZ-lFhn8)t034kmD<
zv-r8Q;9P$%RkZtT&N;@+CjxwKkBSR6eq=;-P{YAR8$U4)JGj}w&o(a6yQAVy8^73C
z(y;8WHm=ZR8s%S>^)!o$-)#I&^P5|+b~=Jv1A~SH{;)ChbPhqAF@e9h1kkV<{MjoT
zWgN`yTflByxA6}n-mL`_qhd)^{L9LtBC#)@{aF+B`}t;6lyy+fK_v&39o*ueyn|~|
zQPDvK2O}30KAjBQ=HO&h-0JZ4d;xM|3kt}j%<WRrSQJikknW(WgK7?5)(R(C0XVpI
zZ~>nx4o26F5lntIP$NS$pAqgoJ6zL2hYT?|Lo{?yOXAuN>PS%6L4678N!qA<J|!DS
ze5_*rm<u^9)yP3(hd(euQwQ@{r-K#_cHf)Z%)$2aIRxRcfeJ@+DcRD2o*}CKp5Mkn
zz`^GZzHkt95OQESupP8@5Oy%u!GjJW4%#`0IlS%$?b)J(UJiOY=;)x6gA50m4pw!~
z@9bdd;Am9h2|M%ol>C+7#X(nxU)LhrL6(DV4r*qK?he*vh_^Dt@eFY-Lqsw~QKlG^
zDHdmno({ZB@#{zVq<tLZILLQU;2@U+85KRWCa`T*I8WlunSz``2Ynsf7#eslQ<Mzv
zSLA@&_;^d;uJZXz_IDs0-09#h2Ll{@mnpW4jSiIHpG+~x!C+2J7jcJ!Hf{6wUCn*w
zzChb9B8q-P9E@;qkAtBO?xr%=<PUQ&+(GAox#sHpDckzzbrCn73f$}9J_n;Xl{5)H
zT?8ffHp#!=!JIB)>k9$WF`R|`{1sEf4^US_16micp^IR0oP+TWo^i0u!2|~r9n5#|
zsDp<bOmZ;Y!3+lvJDBWXs)K0`9+AbTNcwgcF>p-5g)ZWzuA*jF(Y>o^@LA4`b2&2|
z%;KQBirKWl-GMK23bNMbv(Y&;d&!?iJ3N?cjSWy{Vpp-i!9oX*J9xsuA_vcQ6^k9j
z1G$em*w$4X>nbjG<$*#zIZGTo>EJ0&v4b~{2CClcKYNbmU!D+nn!<1Nr?&sx61XKx
zJnP^&2Zn=2Sz<?n{N)Z5*2z`C!EGhwj?M^ou9V5LDlO2#hEV~H7P2QWV_3h$PdSyx
z2gosH+1jrMN>1cB4qW!x!DfPJe!{^@8koeMgQSC$gAzJmo&4t=tdQWw9nmgX!mOM2
z+Fv;@P^+!;S@1;%ocfm>tdU?foqA4~ZaXkbtYtUY;WL35Sz?_7a@I@wY?cs-z(xjv
z+R;t4!&za1Ee^Iic+bK64qoBF9lYUS7yZk@iyW_m*B!hn=jb&mDoY&85?8WB^=_hF
zH?dRlIUPg0i8pD(4)!}Zz^Umb_Bhz<;4O!jr3ch*VrqK9zW*kgHFp!#KTGKu1#6P!
z4!H&Iuq`c{oOh+n(Qe`c2Om0!eiAtB;3EeI9enKIr;|A!M*M<*bQ6c9WXHLgw_VPy
z+Fg9&;E02x4nAdoni@Dpf83ML;_bVOR#O85yNk~l7WVYdJ`woR!B_M?7kMtec5vK5
zT^IFSoN(}sgMaCI4!&g=ba2VRFSOF`;*^6Q9Gs_@IXLa$jDrX64xDvxPJ-_xz2mV$
zV_e{stp!WFi&S^9qr14k{+G}HkzML8Xag77f5v~-*<DoaA*$V$N!uX4?BG`ie>(Wf
zL8~6(ii6)B{6QZX9Q}>Xes`2$#v$M4d-m|d_*FWBgX<1oypBknGGls(3lB#Bc0juE
za_&MYv#X$hxQvUNT-@%Wl8c*NFx1@QqP&Z;WR44zleE)40pbcSZgr77mQ&FM!^JHl
z0%i|!o9oArmo^8Ej|)s26R7MW%|$gA)m@~!fQ!F-h^j8M%ehrteAYv-MdGbJMAnm;
z`lAIkT-0<?+eIB0%W?{8xxOV3@L~5zt7MBvwjikQqJfKUE-&O14P7*H5pmJZMPnCD
zT(o94T;9P|(9}h97cC@iCTU@|n4T?Kx@hI%^=w}`PPRCbEw25QA8--mH@_T?3v%26
zxj$!%sy#*6MWClBzb=1VPr-#!^c3w~ba2td#m9f=baXN4cur>*Q5Oq)icajt^}Gjf
z$<A<*>Eg$pV&}<xr>EH3Q@r0(Fxk~b{zLt;BqgA5cNaZeWOJ}CcFhR1>Lq%);LfDC
zi#`$z`8S8mxfS!dS<0b4Z_BK(BarW+z{O-2kGLpw(bvU&E=Ia2auIVe#Klk-{ao~S
zvALJHgH7}jf<5e>KhVVhnH<(j%<3fuxftx?`*#bT>m``Gx?6sQ`msA*kly9uU@x(D
zSiienob4q>u#>&TFo}oLJbDW<oAnm=xVYEF>WP_Ozm$KhckVX}!}q%w<zj-1i7pnu
zSTx$jSZdqM9^)cDEBXMt*IPW?TRhoYJm_K^Cu>>ec-P-6Qf5VO!6bvsp5B7bLoUAT
zEhf1z`sF_Cf}Cr;#S|A)T|DN3EB-VW(_PGQG1tWm7c*Ipi*qjqX1S=_NBn#|=kU~U
zs}}?H{>o|BN08sQkC^A8N{ieDF6O&<)WuOH@<1QKZS&$j0^JH0(onk<EOOz<<YL*%
z<1U_Xv1DQRm)U_OE*AZg%cfnoV5y6zU3`?l!33V6(YhF(z=#B%rDa|S7%of~&$(Dm
zyRxIjw0y}|B&9&yg(~q}Cp!C5fEVcLH0HrU0?UO>$4Q_@0uD{r#WA{!i-Zf0%5<@l
z-d8J_bg|0Ci!M?!$%_F?Ts-e$1??fbtS?Y2_=1a-{|VO$zIA74wTqWr|DL_AF4nkM
z>-yIKZkBW%vl<6C(*0M2)=RoU(&&KLw8G#f7caXY7*Zxk+V76w78>C%f%;v8uejJo
z>&*#1c_Xmh#jCRZXh!fg7ds^GJUdwTt`Hl2gJLe;ckzLXH(l&@vERi3&a4ZT-6tu*
zUKekb;+46<w@dM;-obZV|8l=~+0|=-v`c}>9fMVF3cklVy(xI}^}vUm4mu{?vrRDl
zr@#$2dXRCfVepWP5qrY1ivd#J6L?sv{S$gR4M5^gCGGaHeCK$2@N*YmxG0mrO$mJI
z;wu-wxX8E~pnkq~@tw;b$>KPd0I85~TzpGIjRu>}3zG6V>Ee{+h$epW3|-8{1qKA!
z?XxZ_-xfT_DehSI^xZ+?A0+2IRmZnQ-xj>cd8r!w*~KLnKS|8n3(2|VN?>OwxUNMo
zv^9L$#jh@|xcJS*KeBJ^-tUYUF0Q%wLvsFfp*#{I|F2T;x8!riuS>9`Uyv%L0H1#)
z=Z2gwCT~ulYyuS%;5~}v64=p4R7l{~1a3*-hn(PwIl=M?JlZ1oOkuEl{orj0@V>!=
zeZ=(P*?)Hn-kw0E1S%(xCX0{X9A+iy2~?9wNJ>tX1ge%|YH8C=!MA=7)J&jO0^Jkn
zkwEPP>Lk!Kfo2KRO`u)^w7P}~-0?=Ze!{m~CL72kIZXB(6Ka&ez8?dP6KEpAfNDV|
zn<w!5kYM`+IwUafT=y0Uv`nB?0<C2-kU%hjHWIf91S!BLB$JT@+Dbr9Say}5T>@fM
zC~{wj`26T##{@3r$GRraDS^%jL=(v1b0yG)#*^<~z?hl9`M(4ITn~^^p7%y($s*k(
z-QOz6;@JuGOkh9)0~6?#@GUk!0UB`cgda)z$ie0$P&6pWCpUpSiO=^DOco?iC<Xdb
zKMCJEiV}z=aJE@++c5t<-D}zf`?JppEN>i){1*6UY_Lp@7{u8r9~_dv3q6B_C8qn_
zk-(h^+{MmJ3=W+b{A#@KwnL>1#qLgEn8Xjv4bHC|yeENs6Iek`0{0~_GJ(evcp`!O
z6Bw1iLkUbuU^FK#M~o-P5n~c~fVqRiW7+u}@gPUKJgY;FARZ?<%$mUQR*X)RVz*j3
z^K!()2~194K8-DbM-rHlz>EZDCUEiZep3_Ba>Vomrg5<U^x!kFIIG>?oym;!&9?OL
ztORB!Foy+C_1l~y=5jVyWfIRzfJr`lHN%1g-pdhu)4`&I|DuG2l9KZnRq<)R#WG3$
zCr_uH&Jjxzh$o;X@MHo{C9qWXb9n;A2|UduAc18G{GB7%w`XP6<6|Sw(d=_YC|8gc
zpXtXAC<!$Dr*l)jf?-NTOF&QH`2>C`%r+7*6L1qq$fPC3Y)RSYH-_Xp36Qb|kM?}F
zYchdU0)uh|aS1E2!W84!{{yU$`dpdt??~J&>8b=?Oki~a4?os-tK=~2C4y4CR)Tdj
zAqh4}x>3?ilD;hI<^;A#@Zi}p6My^PoBm!&V4GyJ&g}`jD)DQQ?vV6#Nq0*6hNQbB
zeN)nMle)6t9*GI|Ch(TT`${=)C$L}Q1ErjI5_nhQ_auG4l>dPQAJT@`MOf9L1U^pS
zUk^7t98Ta9I%5JC5;&5;(F9H<@Ld9*CU8tT+VKQFlYn0Hr39ZR@I@(Sb!Ox%iN7x8
zRId;`k-#?zd@DI8OZoq;Bl-8GpO&2OB|TG`+qg^cti<Oe{Xx<ezX$#p5d4vboxnm5
zi#+_4z|Ra#9zq^2(IglxJyi2>Ie}jjxSqg2baOX)C4s-B*Z)SVNZ^kI_I3{bnZQqz
z@(C_a3uZS9QjB5YY6912pDZ{w*lbepkz7IMzX{x6VE1sFhcgX>WjvJiP|m|m9&Yx~
za6ph32){BixM^_g77yh;RA6q^;HJ03pH2+EFfq7eW7MeaUobnUR<NRn${x}@-0q>0
z=f`J?9j+3*Wm7cW!&A8e9;$f$N->egRD3Jqkl=!!11%m2RrgTCLo*M}J=FA2%R_w+
z4LsELP{%_(R#i8+=W?JftGzRgph<?GtbZj?X>zEchejTnN}0!E!Nwkb?i_65p`dDz
zdjLL6Hn=lw!IeM@4=p`>(<Io&Ln{f0hYm?=EivyRzL6IE<AGp6CI=4*we=A8FwDbn
z4-pUTJoNI=+e3Q~9XyO!7|im}(L*N>Q4bj&I(y*$s!Q46dzS)wtKj1;gGYJ<Gd*<S
zkUji0G&r%1&$)GUkh%MJhr4;`?tz>h9<n|3^ze`uy1!en`xw6l3O~9q*vCVThyEUf
zhg=VN9{PGH@{rE~%Cd#5zihC@aKA#UfAG%xLtHgtlF6F;dHy0&lnfEG!T}xzdbrcW
zT^<H`7%XeJ!$Zlq;Eh4S6z$<sAigI&E*0hIhIkn2;cgGF=L$B#hy7vqK5iKt;o%++
zk9e5k;a(5-c^KzmyoZq<?)Nap!vh{p6vak)7)^nx!9%&CO^@Kuc67s#;8=R%mhcl5
zf)CP8ehzT|kln-IMND9q#snYoFv-J2iT8F7mb>N)JnUgI`+PaDzGK@dZG+bmA>yeX
zrg@m*VWyn%sh0!OX&#e9d<KiOSsrG4nD60H4|6=sr3Xz9&hzkDNr;y7YSUovOn+tU
z&?`t`a?%zB7f2a`$2=_du+zgE9v=7bga_9{!ov~|PkMOP!*eud4_Yv|%tN<2!KEIa
zrlR@;pW#GL4n8`$%+4PEwyOK1LFO*^P)uPDx(CHW+{31S0xC^qXj=Vp!Gp2jgbBel
z&CA^OZ@}<idT?0Purd}6?|Q)YaOiqq#G6qTd2dpXbkEQ<@;whp*5l!24=GNchZjAp
z_VB!i6&^mH7hLJ#1y0=95TB#l!WYJddJK=P^6-7GI5j-@z=NTeJglKF&kt_!uvQjX
z=V85vi}Qj*I|f+;3$D8uAlN8#S?bPt!Ey+0_ORUpwY`NN=iwF3X4~L42_}~FulVL=
z;JiZoRS&Ou*ug$9AhZwCRjK3(tuv-S;(P8c4{v(-+QV@VyFKjTFg<+iVK3F<;XM!U
zdw4Y*+~;AxhXWqorh(lS>^&j$S1`LpzcTN5c-O-pw+5}1(OqLg_e}^f>*}h|2Od6>
z1wW)W)e9a=@42>H@E|$UL%)yDuQ@1q*uy8Z0gi~4&qmt^`Fu)&3F$`}e^!LvUKr#y
z`xwoyeNgS>=YAo@zT^O_2PYM!MQQ}UlAMLN22U_hP-6_#9=`Q((!*H~=RBMu^UuI{
z9!`50GAr10Tt54DhWL}T?>X2$LH4}xl`wnQ>0;mq+SR<^1r}T%JufK(<ByU#=Xw8*
z_n&E&9IS^wJ^VtOZxH;|!xgRq5`UT%%p4p1jh%1X_IJr)Qv0IlmUg~*|K;JThie}G
zW`z8)GRsD$m%EWGu1m>(Bqj5nhw`7gKS)p}iJOw>l|t_nZcd_X5;KyRnMAoHZb_nZ
z644~eCs84ZT1nI<r&8vvN&iH*ViLC{VN4DXEA=ao-kwCIBq}G7CIzZVN`ATokhF@V
zRg;+gViv!4VQzKFsUc}iNw+?dRws$NNraMUD>?O&sGmdwmTFdpMffyKqE!-4OwS~4
zBxM>)+9Zjl5|H0ag62uIkf5ccR|flMgM3;i(MECtl9CflB7H$wf*#GghLea${%=kE
z7TcA|w3nbm5*;Pz^nYYBlE_SASQ5jN=#oU&B(LkjfF!a?%N9t`P15d?_DCW-iJlVo
zlC*ac`qpx6u}=~?l9MaxwsskL5-=-2iOtRZ*IN{pa{4AwBymjAeo6lp>;9#=O^$>p
z{7U2Kz$6CADI1)`9h~3$q8X2bYZv9-DJAbJl^>GC&{BLir+$a8E}q7WNaFq^MkR4i
z689!?pOhJyMDK~++R0Pm`gvmiACb|riHDPzoWz(U9!O$r5)Vq@iIR?!0_*OMjxTLx
zLJ~U<muD+{9!g@8<o`DpU8aX0NurDv5F5+Zn;4!Vv!+TqEs5#>M{*X;BZ)7P_%ew(
zNz6^+#UxfIF)xYvNjOQIU0?RmBo-v0BoR+yp)5-SUM9h!Bp#DsaT1Tyv?P8;(j}5U
znZ#2`ES30aN!i=6O?~rt=Sup2y(NA&iRVglmnTsy@qf8AS2YPUiFObBcB{!OT~Z^7
z|16DsOLFW|Yb3`_B9VlbM3OVR(4YF01k-qT1HVU3;(1wwc!dNnB(buTvnq-H3BQvs
zC9x)n*Qx3x*2*b(nTC|aI*BQ;UKZIP>Bb~BNzn8Ye_pnf%Dg6-Ta$Q20%mPXVtXlm
zRf5bsu|vvld@_^j?K(gFMiNJ4)~+PpOk%gh%=##aJxT0M;w{N}The`!{-?41NgPPx
z9m!!^?<euD#P5}I*3R=|(FZd5AuUZ#$H63D`GJom^AkxAOZs1(|5@5m$zj<~lQ>q2
zKa=2dNqd#4@Kq9DCs8GZswqFv9Z%v4rzwdONqm#Uw^Hm(66<G&PbM*Ikw2%WlK8H)
zw$l=@OW)J>k~o*d51cj0JYOpFV-go6{;zKrOZh)Z@Ux_sO2@_eFH6p^l799`T8+u!
z-(?uQHHANt_*3%#V)Rb=YPp)kHOcv#9+bjODO{IHX8n`Izoqy_Y5h0LQe`FmuRs6M
zTO_Bvq%2!Og1WWK+{RTyq<=XqS}}#&OLHrwP`MPRNsyibBp9<boyDuAP(6iE3T;!U
zkwVQBn#x?-KXp}$zs&k1x3*MxofPV(P*3JIkd(#ir_ewvT?JBTB>9a?bDN|PztfN5
z%}P1VQ)p3&TT0MM($<o;;jh3_2uggL=U1DYhj0p!6tX0<ouoyTGP_97UeXRJbWEXB
z>VNA6OLdm~sH7PwWc~++1~{m$DXiGt&$pkybGu1?cS(Dc%4Da|Q{w-$-6w^d6be!(
zOyP@2`2AI7b5qDm;g<cCnanR`GTAqUq7?4uv}$EOp6m<9Qs|e$w07aJn%6%Ck-~r!
z2Bt7V79W(t;1uqb0(VGym#mHQccw6De`NwzGDKz#O<}KWk<4L|Gn}J7P`Q7eU~~7R
zaIY*&`TJ5BS&GNziBT!=y>Fu>hkycOQ+P0idCz11^B9-H_!OQm!HN=0NMT|M=Ti6~
zg@@RI6n3TXW(p6dFgb-1ily*K3R6;eJcTDxn96RX@MsDPQvL!rUDA1y&X9Cw3bQ1b
zE$JLd=SoU>r)F8w`7$}US($|?d^QP-Q%K~Ag?VC83h%ZLKbAt;Pk97<Udt2PzU{Fj
zh2<#}r|@J7PtiDQhL=h@=KXBqr&D-FCW)7&@T|noNg8dMMW#Z7Ou=O<DX5%<qNtXF
zp2FcgaUo9_DVQlZDG(RrM=hFS&9I%q%BPBuFMd2ys5Qzfel)_|P`>a|n7gEFQs(C7
zi+l1#Duo&OqTQl?eD~Ih6xOEvlb;u;>X{+ymEg)0R!RJ#q-3s6;U$UJlydGsg>@;c
zPhkU}Bcbgnyqdzs6gH*sathDoi_Ix)q4E!9y_heyrtnG%ZI;HirBLpHoHz2tPp7(m
zk}uBYiyQfZ#a~OIeSz4SLhS;vBZb!`Acx5}QdnK7CuJzVJB2+dyr04cw6PS9oDX!Z
z6@Dj$w^G=b!rLkERb1nrD{~-){V7zN*PqEX6SDY@FoJjG7~e}_(a5r$<xA?*E(AWL
zK2zXJdq0x72PHiuDHZZDz3G?Gs%V5iYyBkU|E%>$3P)4;H0A%$^;imDNha}UDSR%O
zU!*YVdS7zBl*v<X=CRb*QtWsNCsOz(g>Pk&{L>PgOyN{1=R4|0zL}1>XHxjSlz%pb
zF=NumJkJ?ta4SK*68xCLMee;zP`1Rk>YvzRfw-K)&nYyi8NMXxFOo9Z#V#}U!K`0X
zxRSzeDcn^cey7)j!~N=p|489a`bdH3^+nNNDO{Dg*HZXbg5m=4Hv@&l|8T|&1k1i#
zAa0~^ra=5tAj*`WMxnT=1mQwIt6T|M4f5YY^+(sxEhQ*lf(j+LwZxySv=aVH11d^f
zS<<X8vTm24QVE<DK|WW%D`?xP429E6fD%-ZxyOTPnbEdnRxLp_$*C?WIW<a9vlQ1V
zL2ZfalyWln1nZZeK?w$wU|@-F<PA#@EAh|C8<n7O37V9kX$dk*(4_>;O3=InE!qDP
z|2(Qi2~K=h=JheboBtnA-vK5?@w^Qj8G)B586|Ufy9)?=%Pp{ow+HOrG31<cPLe^%
zISG<cchb&=nOT(#qDV3!qW;8$ikT<^B0&YeciR7b&(lvmZ&z1WS65f{%+AjCR?c{D
zOh%Ik|LOuQBWM*tdIT9l=BWs_y8^3gXJk@;vkYPv{UDegL7NHMTu`>Q5WNU?ZT0dW
zoxU5C$$|K%NZyF^zfoC&@@s|c2>cP`M$j>WHW9RqASVKTUTzmbAOil))}d}0?IYl$
zb$(dhT`Ys(X;JME!7~C-Et%{RjDVlb2|7ibCr+Is2nj%eVMQ{+5x8n+@SmahaF5kv
z2h;K+7_vOOO9T>w>W|!TXNiB4+C73E5v+<}bp$;l=oP_@wmEd>${LxyBN#)SWipBT
zM9?<^f_{P$^p9YGzyk|7gCZErAtD$mIKv|tA;2&?u!5IeM$-NWMi<CGoRGJpqwi?c
zJ-M^Q*0Ex&al8aXFd>48qPk4bNfFG5U}gl9MU^H^iD0V0(+W7#1$dTo>Fk^UGfPyT
zFKC?|!JG)@it4-w<`?j<oGVV@1)};KL#3&6e9b~pT~r{mID#bwc&Pws=QEcJu%dv!
zGJ==HxN9O<8^P8HwneZmg4de5+WZpO5W)Hgjy~pE-zWS{GPp5<-#+rw$uC5(NrdiZ
zL0=S<{4MN0uPDLx2zErUo64C)5$x?O?TX-?lFnD0e73N#R0eVVQcm^d2wsVx@Z?N#
zA`yJoC$oH+j4fBw)d;i*8p>!SLysWJrU))ZU_=m$;BW*-A~<~}GtO9wz~ll|bteSf
zo9katCd-Pzjvy5Q@gmdxYQ(uB3}5PfJ%T?!&3ugsIMRJ%d-fjM7Qwy<_D66qf<qBd
z=0F7Rcb1B8&!*(wJ8h5ukiB?y-lL`7bF;GFpf^OSz8Arp5xf<_$p}vI2H-&WSOh1S
zo}DHB@zdK8kRFdXf3rnE=DTl)Pe*X8vhS-l{&xiUu6N+w2v}tyem{Z_A~+MlhukP4
z_+JEPBlswSjn%y$M{rJnA1b6JYkA4(SuyPs!MWR6s!%cQvk1;d@HO)>!Y73If@($U
zmkh|lp29V~S8_cB|G%$sB<mZRDq5+H0&F7vK7t=2C?=!0j2|QTiK`!y?ndx)1i#Sc
z2yRF4YsC4@#WhYXf=dxxj^IkfdBOfFH@c9-Lja!MP_$)8BJLQHeq-);a{tc!3Q0F2
z;M>SEL(aR?H#yB}&JPd&4twx|>yHQsSnhCj3UHGRu6q&OkKjQBe?{;pf`1tXA?MbD
z<?jgoiQpkOy{hg7sT|%{gt~f(3&|)VBTYtO8BeUvJ{FR`2uZ$Ad~7Nz<5ox_XuK}F
zgzWq?W=$EjWR#RqN=9kf`9AS+8H*pJmyz+9jIx6B>b#7q1TxCYs1TMwDx;#n-`q*B
zB!l1iR*`v+m&w-3G6vmFCukIwNZD7Ool#BbeE3Itbs05em;*Cd_?))3j5;!&l<`k8
z=fbd}=kzq!Qg>aNE#u3!0b<g6GU^Kf{)=b>8I>32Q<$`|j3zP$%NQb~sf=_Pon?e%
zWXQ;r@wDvxrI$;FTSjvkEo69P=NG1FOWn<6v<pkb^{aY^C^?5KgrAb}$M_ttpe<#z
z5`Y{wk!FdiPe$tkezpL9LE8x0R?v1b0s^!b^uO*MWaqQnGcs~y1Q}G~b7e;Xas{p0
zz|%>{^bR|(Glga3$<EEs=8l>9GP=m<E+clQ_?fz%tEDpgeVZ%E=qiJFVp!@{0D8#I
z)w8Fd1ifVR7PwCVr>~5D1-QQe0|Xt&^(x?REfF3nV;Jx1WsDQd;j(je{xY`^oj*bb
z=}19G$rvrb7(rKuB{q$xtGm0Wi!MB0WrB=}GA7AT!_s8px|vgD91crUWPBWU4q#!K
zCgT!gCgOQk#tg2b=AS8JjsTCs(kvOX1+JARdDi636__&f1Q>j+%X2cGm(fQ>Ulj{w
zERr!m!9WFzWh`OL$apAYsf=YZ-jVUHjO8*`a4(e+m9bLBDjC~l?2xfq#u^zf%Gkoq
zHa)yn#s(Q1Wvr9o&y&bmFT!cY^e+FK8+<`V$Im)%mO;FUtCJ@YG#>5$by;xyieU54
z0$XKllTl@Cu<g2_e`0WAp0ra21zwR6k+DnY+%4lJ87~V}8)pPd*9=pbYI`;e%k-EG
zO$M<d#%+DsTdh%;VpO#)JIi1^$T&o2($zxDl3~k8$Vf7|xC%|e<JJUedBz6Eu#}8f
zW$cx)PsX*DS+5EDI(;%MxFk;^XOH0MBmDb?od;!bxC2b34Z)hv{@>K7=ZN6HDdQ~}
zZ^$?*j3>YFw18vVh^%8WPRKYZ<82u`^Q7Zk^buJzHwS4yt6QFT9CAv=X-37aJYr_(
zdotc<49K`F;{zFInD{cjlJTL8v-Gfx&t!Zg<D9VYQ$~)A*YYH~i)K^9Co)duNnC>X
zm>{QoUWk1mruMmv@A4#0grm^HSAQt?wTuh&r;KkI-fNtdq7qv5os5ezev<LC%&+6~
zznAfY(D3idAO(JuQLlkB94S}i7t!>q%;RdEDN_mkc7<su<2JLN2FSQB<KDKs-(~zJ
zgd+=sH-usI75VIPlRg|Cyu~QZlgRNj4KrHq$ha>!#DB`TD?;d=pyV*d9&kl!hbjD*
zjK9U|P$Adok&J(3_!P8OP)I>x1vM1ZR8T}gnt}=nDk><dpqPR(3SSJv-+5AT1trPP
zm)_bND4~FqULq}}ptPtGj~*H<tDu~M@(R-PC2LNQ@)Z7ZWlqtdK`0nEFIaC^u#$r7
zO~Q{WNHqvoR!~L3l0QP^SLL9dFguQ|<fA|}Ay8dVj#W!RZK_p}q2QN0p*jlcDtJOc
zPQElaUwTqOJp~OFG*U3XQMkT>1`4`Q4nDs&_@B<1`BGzrM~8s}HRY6N1UU*Zg;_?e
z4Q48EDR@djO9gHP9tADv99OuRFuU!hU~{3l`bsAV*XK({s4QD)XDbC>1ySLdg$=@4
z3f|0@IA3}rTY+CeM+Kb}&>L+O1QfJa(3UeD>NuyJf-6%4w4W||TER1%j)D#f{^L+N
zK~O=i7<%^CUiKoBbLp($e7@9;b5szbKl7!qf;<KJ3c4te#N0W@oUx9>>GrN-%CwyB
z?V+HjFu0%SNCSE)=&hiSg1!uZE)wU$A=rz;)X-nd=)XlAMB5acQgB+q5CuaOyrLkY
zV3>m83g*#H1tS!UR4{{{>>`a)Fj~Px1(OtvQ7~5FiIkW?mvY4PFxQbj96vS4d0CCZ
z&0XQ2!}+zlNRt&zQ7~1(G=(p0<OLgrIr^|k0kcVXI@e`#fSPIBv%)O|Gr8_Q?<@tg
z6@23g&rvW}fDdYgsg{w+)&&ZlQ?OaViwd4suu#DY1uGf4Ka^XfV5x#-yb36&Jj%a>
z0njMS((GPH-O=(tu$&6{l}Z<Bm4ej@)+t!8U=3%~MPe7qkggToDZ}ap1sfH-AUKPJ
z%qD@UL=)953brczu#8<o;Wnn*>fm-U^xNI?cPRL2YaYvlhGEj(qWZFemkRjasR8oY
z#WgJ`D~KydC{Prr3XZu08e^bAII2Kbuzf~g*R}GbUv|qk1V5&LQ=`F21*U?13idNT
znOt|hu^Qo56_DBrzIY*+V!o`(q0O%;cwIrYX#rOExAyK~m)73BLXzNsf`bZ<GENxn
zO~Qv1yrJOjE)ts#3k^qvHuimPtmiwf-Cgfn6i{%S){1c{>;&gs?+FDb6&`&capL5#
z3-LP&k8war6{S?Xr{H}Bmzg*UK2UH*!38djf)5p(Rq%;|PZfNm;GBYw6;y8$F4Z9X
zPZ$27goIk**p|FVUjF|Se8w!3q_3Dn3O?rsrGTxOl0@Mz6#OwP$nx{<e3r*Iw&cIN
zeogsl0SbIe+Z6oBRZwtI!S@P&V3bz$ZP=MNN{rP@lAgTm{kUoPXKqsp$ebogkG}K$
zs(^ISp)Ar%Oov^071jr@D!9hoRlz^ZL<PSoxTWB>f*V5kcLf}p8Yp>_`*S7V|JkPC
zj)FlG1NRmD$uOG{r1AF@+*R<^*WTLOf^6bNiUa+)H26TlT1om#!Ofaswmzh0Zayl%
zi|_KUf~&)WoN^J>v8|Bm3|ClC&NNMhE;);GN|K7HD6ZmbNh+b@h9tRi)7X*PN~<WN
zqNR#fDjri&R>c!4o>WmzMR^r9RMb=f6%|xeRq?oriYkgQQ&dz@QAu_DyuNz)KiYbd
z<8b2N8-{yq3)0)wRLAGl1?9rk5}=MSptivOEy_<#!*x}Z=<1kSPepwdE){MS4OBE#
z(Nsmcibg6XZVNV1;qNMOh{h^7ZsV>zA3&n7GQ{*V1sx+ebT}R2QPE6A3l&^VI={IX
zn(}Pr@^LAjQbAgOUC^r{OGQ{ko(i9e)+&N3a#dt=L>28-o-BkmD%z?Ds64mFnPWTQ
z3IY~tV6k3sN(W(T4wXy_KBHoBSBa)FR_Qm6)lo%f6(M0sCl&M<#kiCN^eX4Lb$edE
zic?*so+`SikW_RPBlb|SwX4)kMR(QN$0$iNDv$J}x=M6iFRJP)^%j&PQd>V2{Z-7=
zFiXP#6$4dVSMi&QK`I8T*sbCv6+=`ERWVD&Y!$;)3|BE$#W)pLGs7cPj8?I6Rj@=i
zX{6wcQk|Xr?ymepoAbt~sM}5AW<FlU1i_z9<5f&jF^w7;geR+*BDzmiK{0PPiK-4w
z3Xrl&ramM1tZ14+BZW3LabD~=N5xzft5vK~F;B&O6-!hsRk1+Db6hXFlz0AXoNe=Y
z0xrtBAT#K@LLR2Ae`b(7#{Nyt>Mv8VT*asD^K(Y{SEzg{m^-4Iw34gbO}hMCaFvQ5
zAGulDm2JOP#X1#R=wZf{iVZ3@t9X$q_O*ATiWkV48hCj`@cv!zCKcC~1m|~iV)f9p
zK$<(SyLJAz!-CtG9nS}MsMx6@{zBSzu70iXhHersk-Tl##c=x5n-INTR`H68cexF!
zh^UZN98_^gg`z^GLsVEQc+aB=YS2+CdTk1p+nyJtmnH<Sseu@WP?1n^vYWJSYL}$y
zT!_ExCb1CMDpD%;si@OkdR4`1D)y+j-A#I(Zu}!ec`9MYk7hb|R(n;H>@HDqzlsA4
zgGtUkAq!O<R&hkd363Hxd4t|i@s^6C+#I&&Q5BW298>W&ZJraPJskbG3ihQ=-W8k@
z9k(|KpJv~DiNj4y55FU3L7Deed_Z9p7gd~5@gbu~#b+wcs`yC7CtNrc=a{+Nnz~DQ
z-JPj%ro^<I`pIFyke*lZId?V{7gTh*>-|E|FB#0;rAqGbS7Pp*GCNYkH!8kWk(?Nu
z-(8|%lzDGQ@O#naC+3duzz+-z;XQhTca^^|KJ%r^Dz2#bRRw!-luO)LzV&YHE?s3j
zi0<7a=LUvN9F%HrsQ8`xr-qsuZmPJ&-BLqk4Y#>xswk?Vn1(wl{^a^@2o}<CSH(RQ
zf2sJJ8MH8XpAon%?}5Pcn}pTjK8khR9{h(}oQi){JQPjjkKN+%DMP?&VGTtzM<?gV
zyQVY^c6Z6OBd@rI5*i-UP*y`p4JW!wr8RufT`HyF$IL7OE;?x$!DN?m8hoBWc@3cO
z{ScdYUspjxMNuW^dUuI5t%p=a18-~dCIzUcss@6`1&7RP8meo~X7xtd_Uk4EYH6sg
zAxs$!bu`q~;MI_&;Ry{-YRJ^!(oj!BeT~lqP;N=Efrf?}_VClFpp7(q+Av(LheS$d
z6Tx)%kciVYWN3J6L2&9v*&J?~C+ybX5dtkWG}F*r!&9O<Z&I*@hWCDLM`7aYLxQ<N
zLn{q~dN@v)(L?fSXsw}xhG#TnYw&AmtD&8SHyelBXxP+4D!({5D$DuTb<%(a?mSOx
zXs>~z(`>3WdPr~dkSL#{p`(UQ8YmgmkgMVOT49zBJMw6DXEDu?u$<c1J(>~D*U&}7
zcnuRYNE*7*Fb#t>bkopXLthR3H1yEWQ$sHey*0!q1~}rFyMAgoHZkyN52=p^a%c$^
z_UGm=sslAp`F|GHof7<wZtNiq(J+*@X&5bJhG`hCVT70wwNW!CMKDshj*cqaQyQaT
ztcGzKsA1jQAa!yqUWS@9&mHkmc%p_W^n->;8YWZKM`2#w*o%fu(=c5F!Lwr4HF`?#
zP7QLUW(dDg302M3Fh|4R8vfBRmnLa=okMGwuVI0P?HYDyc#b~QutLL14GT3aViYY6
zF4M4>OFS&NR8WE?!g4lsni$|mkL7|-+`Ol>O2cZdqlV2I)@WF(VZDY8LeDxbcPKn=
zYaTz6@I$5VLqAh#Q&!eS%4cQ0!2Esa-d!vFqJ}LRwhEoMrvyISo)_vV@pH;H&H2<k
zq^HCWZph2uso`Y}uV~oCJj%<T+f&-D;U!L|yYymDiQ7d)gRCLOMP#1#loSmblUD<W
zP&IrzC9vnkyr>3)YbOjKhfORrCZQq8UK&zD($wI5R${b&>t$bdVf9s^>NU}qz5X+v
zv)HR)pN6kAe63->h65T-YB;6gAQN_F@Q8*txJDIyhcp}(fY-9tySp6Kz|V2VG`!7R
z&``}4X3D(9WZB(?;JD^o0Z#}GjG1?PI@v^Rr!~Bz;S(mWhIg5I8qR9?NW=RYxF>v|
z;S5LbCh>y8%gTq;Rx8Y*c}ZgR9QUhr!H+fk*;69;wx`4)sP=yvKI2ZMp>TdayK}7b
z!k&`7q|b%H1h0qlzto&Pxo$7%0)s)r6%AMED~7j*AGq&v?%#MXYWSXM)k|vKOWIPd
zJ(qiOFaGr>PR|K)#9xI0KWkXlOZtV|+Miy6OBya~JccEY+Zv5w-)kDKYxsj(y3qNX
zhTnzG-Myq6T;iLd8B@F5)NqUOL+AIBSdQ+_<3JqoPYvgrgzss%FUGnnD3w>)7<?d<
z{6$}J^j;FJ{im1oP{SkcPCA~^@vnwLI%?{urK7NpB09?GcuYr{j-onB=qRb9m=4|!
zRc{(Du7l4iiFxbDYAH(o>@Tf@pA^XCC!n8q<&l=vQBFrC9hG&I*8v?Bb?_5J1>O0S
zG;gGzv`1l2wcZi|`BijO)lpr?{5v7z&(PyMqIpfQnvOzK0+uV>ytlM?dtSJ=R71z`
z-V&>|b=1+(Tt^EXb#*+UBZD^Rcv43_9SwCf(jAA;b@g>L(7|Nn#OY^(#ytF4M^hbK
z+&R6Sou7_nYr4)K_vI6ix^yRInh6;$qMOtI#_JJuOK+Z=8eW<neo9A69ey2cIGoSh
zN=KFspAN6?EVSR_d~PLZts~W2qVuzL{I_0Yw$;&2$J08_^p*lT+Uw4v8|q|iP?#Ng
zo5z(UCr3w6$1qM@N3M>JI(q2nsiTvQ&N?I=e2N&-5!S(nrCkKg(~++`kCDk?YvE}D
zVm|!jb4Y$3?8;T17U-s<y8vurwU>_GItJ(%sH2aLzPj_+xxbEny7N4in2#c96(2eB
zKABxu2I-)-!MgM0lLHOW!H3KQLxl}|L@+|fNF7tT;zHXf9b>r=I!5alqdQMQsg{Kb
z$LpA&W0IK5L>=3`Jf<FeX3nRki*~h~OwA**rf}8`!|cW9*wb}9t79IcMaK-P(lJK|
zAMMW4K|5*BY#qP!mbzzUotGTWT-|wU%7^3}i%wV|Eaw#1<vHECHW4q<u~^54ah#1~
ziH@Z@-i_kDD3<A1uH%Z1t2$QbSjmvku}8-$9jiH<?z{-GM#owmJ9OvGt962I)bWA<
z>jmAQ<7Bc6TQ}+0EI3;QeUX+3P+@B>TUqKicW<Kym~p4d^7X3ITO9sQ9lLbw*6|X(
zE#%33S%80fOJm;;^VKX0lPL>(6dkG#O<-G4UC^iwLx7l$qyRKNE<l12*wA?;gT)ja
zOVGoW9A-+#s|E6}2{657c(0CqI?n3&h<Tyo025rtX&nc39MbVN^RbU~SjQ1=0)3>n
zTDV!>(D5dd^trUj2eXcHQCheO-qLYQFv($+t;a<ZTTcjZl8Gal-r=GM&WAeQ)A7EJ
z4+<o+)|G$#jkL66QI<1;Iro#S|ElM7e5~Vp9Y5&!L@f8`I=<j6xGDYH`hPk;(=noH
zIA>Pyyx@?z)}Q~Sj<0m*p~|;9zGk}hk%Cvel{N=2aCXCe-*A6h5@e8*zp!ceJDuMG
z1TL}*Z(_SkpZ*yd-beb8OdUUq5ic=X0v<-%FFJnZ`o0pF-AC%Xq2*;A>-$KxceP~G
zH7)_OJBprB{KhGm?mu+g(Q!lI-vuS}rU17Dy)Ec8wa}kB?sBg#?!10~Pse?3r%^l}
z#RDCGaVv|WT-5n8@o(-?Jp4z{)J*q70mym8s{l7!AyYVtVo?;2qKK%nH7$yw0`pyc
zR!c-tQdG+bT1wE;g7U@1!9^S!9uw82tDHA5%L}~t-z>iR2!SgIT2W96R1%<a6jcg1
ze5bUUz?lV{>QU5)qGlAeqNp83W5KT@XuSfNx&k~A#ghX3_kM4Efg1?gP*9H8NC2&m
z)TDsZG>UYAGX(wb4NRB7?kGG_G>f8n6gdU*EeN9UiRx2Pv@GDaioz@Kkv`6MvaO@Y
z7S*St@C(qcK(b8~Z42-@AsmRJeF5iEAE`qDekO{Ug&eO2qsWb-V-%gD$S-K^97R~*
zPyuJMaC=@9y9MYHg(RA~M$t`xm&!ZZSh`1@^F|1IMbSHo$x%#+qE8fkqZks!&?x#v
z(LahoQ4Ee^06iey1Uq`(Jur&swRZfj`OCuT{GNC8bKb0LS%2{zq$q|*F*b^EQH+S<
z%pYwF^_9j%F*54B3py(5Y__8XW%cd|_qd<3`_C#mK8gv9RX&Yb>Yf-yle(_zeI-vY
zcap$`n|R5Y8pX6IUXNl=6w}2lmU45B;@K!>&_7Ykieg?A^P`v@1;2lp6UE#pHnz&D
zyQSqjlY-KU;If&)r}{eA)&&%ZVo?+~?zMX^isywr<lEU<i@AI+2bR#u+nwtj@#v$@
z(~RX&tcW__Xh))08O5q7wnVWtibsF7TOGx^DAsdD`buk}SStYWp=UxHXh0O3Y2o$2
z3lyH1vnh(shk|4JO2h-N2ME~oq7e9}Z)jT-+oM?ASK1xL4pDYSu}g4v^_AF>blvp;
zySx;|%N+N5;1vq=mG<_PNUL@Z$zm=_6lxSlM;GObJzCUxy+`MIMPWppUx+6KCnj)Q
z&_|~WB?ORbl`ussyI2C)f~KN)Re;wDTB&Dm6#Jq$8O5n6_D69*gvSX6OtH*Y_^Gz4
z`(PA@qF9ZL!-5{++VN9-6uhP!74%I(S$#`@V}iad=y5>@cgj&e%`AT)gD;%$J)F}~
zyc5MoeWeeMwU{)$C<l5!iVvbVXyA~6Gf{jPMJoed17|4~#lONE=c4#HiVMV1d=kZ{
zT%-2xFN87cLoI32|DvG5pG9$AFh3WR??UYV%J-!Zru<g|d@bmuzS6g1vOh=hOBCM;
zd@+h=e(`-D#Sc-`|F_knzS56T{1nBdVD821Ar}53o9Xi_6G6ydisEt<SE9HY#T~(+
zz%_>DKly|HX;rhIbe&fL?s)yA8-o5W=uJV%yd}WxDE<)OseTffe+oSu<!%)B1ioLu
zc@V{40(bke5C#4bm?J)9SaLt<ClQktGEmq+5d&!kY8j|)U_?KusDUyD9y2hfpH$31
zaRVg`Z0skMG*F75x|cFs9fHyZV*R9Z9Rp<zlrvDpKve_f4ZuJJ0~HOt-B0>L6w0tv
zGEiBlBBsI{{Up-I4OBBw(?FB{Qgs8(8~bY*pa5G-_IH$%!x5>fj)A%cTn5|*o-pvF
zfu;u14b(GG-#|kHjSMs}5MAW&-CvsAUuxf9`VTjzas!e6(yIOvn@FiGLyVFsMr4&^
zv5Ar%1I-MyG{8AFH?ZkQR^`F&r-X0|K`Fd`dm%C@K$>O1XJCebnFd-L$TrZyz%vH?
z2HF^CZ#W6ktB$9wfp!LFf8fpN;Zz9%2D-hGMewwcq1cHJyg3Gf2KpH2YarLa+#c?b
zfv|y&209t&EI3=v_*Wb)%cj>~$j&p6Z=i>P7t=glM5|<=tAYL1(yI2$r%X2k-36a-
zbCF5T^*nD+1HFVyZv#^MJTk{E$tCSaOAL%OFiLb8U|@)Wp$1NTR(7D^3^Fj-0N*L4
z@cE6|q{9S%gn{7#kdwPSJ6bJ`GNTQQF)+!%WYIL%z(ir^IAPLw!JJUgt7+H#a*K0c
z{H*L0!I>`T^AFlhH89Np0SlEsTOdylFlT2OFb!CAEW?$OnHh5ptTV9Qz&r!<4J<J5
zoPiYvR#J(9g$9-ySY}|6fyF|;<o$I1f|75hEfLj14Kk?Y!Pv~@qRN+biAUyUtTM1V
zGh?-ZHHP#1P@alIF}}36mSTUVvou_ov4OE|V5fmy23}y~FqZD5Z!@sj0MD+WwJ$QL
z{!TwTI%A6g4n)pY0|)v`1ltWfo0YM$QpOINS}Eg+VVS!PyktOUJadj$(_c2AGD)*D
zUSTA21KjT2bT?h*KvOe`6~U=pHA6E{^kzEG0wVpazhoFlkaIPiC1xN_4F}zsB{E3)
z)8HgsbTyq|{!+JXU=OQH-7F~qUN!KVf!76IEO*`^cV^RG1N#K0?=3$s-}`BQL6xnC
z4ID9WDTd22ykX!d^C*T^F}!KuEd&2E@R@;Q+!mN7kGnrMaGU{_lXg~APZ&69;1m<b
z=k9o??BhQ7X~B1XBVgd&0{otV_Y3d`yb1{XVF8EQJ}SWHxI6t@p50kK5o$jbO|v7O
z^9DZWz86DU3||=d(!d=9e;WA8z}E&YbD0cWFz}6mI#%#!1K%3>j(bR5*N^n)A>Ty<
z-y8VBfL70aa9VErMxGAMJj3_;IyCkC#F(EO_^F1g_p`ZQ=jQxk;8!}tKn=HN$=txL
z+?<wf&sAn$BhPOJZWy>`;JN`eJzw8_Ji{~ikL=$K+%$08K+n3aTcW8{re}MGhXU7*
zXYroo4{AH;`;U3oz&!)^c?DdNyClQ&z`$SJj;7}pj^S?u|1ig!xc+7QEDO+phXx)o
zPxtz$s?dq7(SzF*ia7!_*zB9dUOyZtTQr7ZF+35&lQ9&Jp+pR2V<;Cx$rv~(4pAnC
zQUaG2l&Z+zxYzes3}x#03ChQS7#@$IS_~Cps2D?)7-)H=7&f2EsvJYzlUW?J*vYJq
z>U-wC7OWa`46fbCRkpFKdJHvUs6&|;=)IaT)QX{Y49^_!?Yx&Auj~Ih!;^e1NT1VJ
z9GZpmsux537+f*9V`vaV!x);xFy)q?t&PM48^=JLTvI-Bz(?;jjUhdT*r}{3({nRo
z$c$l04cG2hgQZIQ$<gY#JTWwn;jKeHda0S1ru$SD*S$pyPYM3#$Ftb#jUg+BAu$Z)
z6k=!{L$?^Z$B-R^KZcGmbc&%(?EkW_eGGgFwrvdUVh9L)a%d(wZCq(j3z-+%W^@qX
znHX{e2nw1j=%_V?n8KZ72*n`9oI5L4!yK_oMqUh`2Qv6Oed7EWx(FumoSclVG5lOM
zgJ)m(wW2*@=ov%*7zV`9OX%crNxg+C9-TpjeFW|+Xg@*A7s?nI!=M-j3;FNfFU~<D
z-#9c}HjQ*x48vnsOb5m=B8HJM%!^@u45MNg9mA{`X2&olhOseBkKtLNWLyl7%4W>U
zOdHQ7D3>uoP=bj9Op0N$08<M1Q)8G`fDh+p%!oOg;Y?v34LGwVT(M-vHz{|Up&4^x
zm>a`O&7FO9a)pe2_tWKX%MYuVv4BHQ$apU1oQ1-psGg_6yS)ozSQNvsPzEsze|^6+
zhGj9l5<?`0<uPQGF25p%l`-c~tfLDuR>iP7hO6I~e<_AF49;;GFN*1`6`0j^0<0Hw
zLkt@QctOxjf^HU+=P*#XVZDqk4AgoVTVvQJ0P*%1b_l$)fU_%x-2(sgD4hZ?bLesz
zjb~?&$}uQh+!%g|L5)FUoX2n=2Axi*m|@58@_|AGQBgGnjR_i$At69gP*YG#P|EX+
zvXq$DtAf&#uL<xv9WKCLLH7wd@>3@g4#sdOhBGmI7{g(~KhB&g;jF?DUIhf_sGx5O
z`j((<Jtn~0f}R_maiV~KGKNzEpN`=j0p5+_eF5GR^u;pe+5H27Kh1XH@GN(&h8gFX
z2r+ylFstVT_&A173OJv}@IQe+E8tw;=l&uF9<#>sod93P@Ra~x3woiT^_v*J6_`ij
zQ23(2-wXOffy|Er{KWiq7orRgKUwe17<StGs|eQ)*V3;rgkt<lZp@A2S`62jCUK03
z<F^=YaIc7?Z5+SHaFg3$95v&(6~k?s8b|Rs{)pjD4F52UWB4<MyD{94;Q@oWo@-Al
z?>$C-KUe7n-kE(}e=*0Kd&ln!{>`jx=B?kt`zBl&eO!-X_&0_kaiqmjc~7uV+z~4*
zaK*l^Tm2<!_@}h1XdE2|xX5WTz(r1pI7-HWI4Z<(xlO249A)BojP^A5mX3qUkM(tx
zjiY*hSGhRK$8l*-kV-giy@p<DKyz=!I4Z^QcpTL@RvcC0s2WGOziU%(*B9(t&%3Oj
zBgS4mT6j5bb)ojL0aB$tu3B-_j-z=TE#jyXN8LD@#L+a4C*pWAjs|fwjH4dq<6!r(
z&lWA*-$l*z3Dq`=qj4OA`Z{xYZ&hyN0n%gjy)){1)8oj9!xe`+jv;+qnQ@r)ytjoV
zta{?08PwKH=%gMhWXGrCXel_}I9gpQ-{46vnXQC|ZEkOtXkss49IXYW53}R&3(P|p
z*wikL0F?`0wU6WJIP&7i|4%sXJZ<O{$1?&D=fn{dI9Je)1^lyKZ|68d!vA4LNPmfo
z@=e!J`vFpyI3%I1n-K0QY@<Avo};sLk2}%AMd=wwuQ+<g(TAb+gqLB{H;#>cTm$2H
zbUgf1Z&$xK`o}@QGC%-!9~8$Pua~wBrsg<?#xbnGs!?$a7kGrABMbQD?v&d%rx3gF
zVfENJCd4r@j&XE;GdIh40s0M)CdHj+>C@wQR)EQIjNFtvC61}0IxWt>p3i0Bb8nUz
z6l><58OO8%62YuEW;3ETI<3xg@(sE3;yl6{(Kw7a7R2#f9NXg99>?=>ER17S9INA4
zL|4RdA}g>W?)?6D^#Ex}982R^7Kc1Qx>2&kt@pjl1!n8f0n&v5(#kmQ50Li%uk4yQ
z*2b|pju+!t7svWIHqd)<?40D8c_a72S?>iiP;;R40t05Cw26s4Q2OJncR}f_E(4`4
zainhNE*>aRW~;!gju|NJVD~tbIMg_H36oxlBSLT@uv=7L67=Q&@IZ;?(J&S{j)Maw
z0*$^JD3uu`(F`ir85?4h7}p|>_o(^P%tRbX%ExhtF(2mvUqxSw<MlYKIBXij;7R82
zpU7Snp#C7K?I7p(8hhf{8^-~rp_0bxK03UtXFqqU$K8}CCbP#NY1|;`a2!YCI2Om-
zalFBTw4-sn8FzjU!oG8N7A4Sv?ziF~y&ldy&LxQBbR6&STbM!8$v94lp{e$zD$X&F
z|Jn0SUEjM5$YPoQRo@qL`9M%k>Wlyn#}xV~j&pI0HZjJ;$8mfTN53TcC-G?<|6?#D
z5KG{*IL<Q-6KJ2n=W%=y#}9G*NY}-kAG`5~Z{No8RUA{wgjl|g<AT872>Q|>sq$xz
z%y;zIr<oT8{XUL;gPb2hv-}iCp#%yi@N*o$#L@YD=CAZp95=Zua`TMiN*q_?xWPSb
zr2ASN*SYi4T^F+WaP`%%vm)E_qZhK~f9rr{o6A$?RvfqKkT@PP-{ZIw$2|riO^u_`
z^>%j!Jv&IcI7qrXNFwKf;QSTG-*MzVXiE)`4VDV;%s#m)Z}yG0oZusF{^v9Q<(@fM
zYCBkJwlMocJ-<i-X$d@$z>^6SO`uo;6%wdO=K0Lx36x5pbOI$rm7J0ZOqi3+AAl2=
zNuX>3<wVnCg7Vkm<r7%7BOeLJpGDsAcONW`9xM@5O5p1u?rI5CPoQ!FRT8M0z~c#6
zgQb&$rAhbO&KoRk8tizuMgm_AmTD$Yize+3|5>Aa?F8y1_@4;jx(WO~SbF1QfAOL2
zlRLsihDaQxUIO(K$V$MMK!XGtCg4iIoj{`m8YhsE;FoCmO%kXvL~5EqdIBwmNW^5i
zUJiE>ATxm>g2}2Ufo2J`OrTW)%_*F~Qwhu%BC))`GfcXAh!hdkcMfD1ouBPZ;Ls51
z;~~=3AySc{QtJfTB=Ap<tbN@A*$Ma)$oakP$^T`Nvb0U09p^Gss&cdKv|DYTPM`xl
z@M)%+z%!Ig;Q0g=CJ;;@H-Y{M3`n4(5a^UZ=LG*arVxcgf|DmGtKkIpwf7L@7jU{H
zASKW>fo_7+r-0u*fgT08rvSYY=v~0E=VbR4xL*N>!wnR8ilBoM7)(bcFf@Vjf-_9e
z(Si;alxB<&U}OTL1labl7@1=P9$O$YE`cVOi<3V=a3%^msi1Xof_q?5woXl8S_0Dx
z_;Un!mdjDVnVG<>0z6v)cAP7~yaN7w0Tv|iTmgqeFG^r>0*c@)NnmLL+Y;EGz%s$v
zP$0QHffWUKB?DXF)d{RgV6DLG3tHDD@bR^Fw7G_>JSoe@1YQuWn*`k~=!=4G5tK4p
z1^6|ZPi%}Rv_n*Pa{2=77L+r3NdU^cEWj&*Mg)}wWoEH8YpAmkX$j~FgojE|K`Y06
z+y~+bB$zu)q6Cr&m<ha_z<cbQfStgJ1WqQ9O5oK54l<q-crAg~6ZkEoJb%0W^6Bs%
z##jRT6CmE3z)u<F2@WtpCgtwhQ?}t$sKeZ(hZ8uGz}pEJL!~zoILZ=rSA0-@*ih-s
z1l~&ESOUZqd;2IqW2m%rsI+CMbewx;Z{NLum-LkAayo%`1h}-bY;9lQYhecQ`w4u&
zZ6tvU37kpbL+<AZoKN6vfvNvX;G+c23Bx$_#|eB=V8f>ZkXh|?n5t+1@#lj1l`!B7
z;-S))g3>~^(xh(^_%?xG68JTN?+P^hz{v3iE+)|HbohIYI8^#&sPrS<A|}pR{G0$s
zVfkyQbSZ($30xOLlpiKt;odS#;^<csVD*}y^@d5r?D(4yyCEo@e=C986i5O|{E@&N
zuI%CLQc3)oz}*D?O`uTHd0cicftkZ3J~6wWz=MSIZ0)ZE9wjhnnDn=(lJk!M4+RYl
zli0+LEQOOOnsmAl7fE8{Feyz?R*NN3Jc%DRcYJ(d#}WdR6!hXaH<_iAD3iovNp#v=
zlvb5XI#>C!N!-2ZW|f6^7ZsAIm_#_~oGDQ$iONYdNup^IRg$QhM6D!hC-Ha^)sncK
zomL}>%X2&LdBa_uCS6V6T_c0vCDlwiCxWs}`#Zf(5_OZPmqh&}o=D=AndP5M!n~IL
z;rR01>SpjkE_?CWsiLPfNTQ)o(n!$8Npw5l<^$W$Rp--UdJ-8)<RlSHA~OjWeV9a>
zB-}}?FP~AjY=$oh52uqvbJ3mWn!bFhPz!;d5|m0>3eYMEZviJu0EOpg(g|ZSvIXT?
zj>K(~FosE`+h;tJL^~lCNIJiUW@(?q(*?ML0DPcPVo(MT4CL{Qxk+@ShiOd2+n{L%
zPeJcYU!`Y+lHh>=UrfxrecVf$mqdONU6PQJ=$S;XB)W3SN&M8#+k;N)lG&Y(daKaK
zT{F#ZvRNHc)^mKA#5=d%NqoN9-6x6XdVAh$>+PEaWxgLK{WVM)ki<YvA&GlQ3`$~f
z5{HvGlEjdtIHx6v@ktC#Vp!72@!^7wOk#upiAT=9!7?g|(SkEZ(6NG6A1<+JLJ|{`
z*pkH7Bqk*>If+F{EKXud5>u0yo5Z{%rX?{wiJ3{vN@7NP_p_u)=Xd%nnZu?0sU1<v
zOWaV+=eJR_8MoEFa|GqLHuLF<ifIctH9BW%$9RP_wmzT4LLqQ;mw#SuFLe?uNn&Xd
zYm!)-#IhuoC$Tb#Rh;ZMz7;~4eTg|xZfTw&U$kQl?`p0~4d<+Yb&MIxB=G{Lw#&aE
ziQ!W_wxH&kj$u#L@NP=tMWKY%%}I0^E?G6bG>=W&lFp@HOG2khlh~2O&Lnmv(RpF^
z>TUVElXxkKND^`qFEiRj**aY6JzSbJTv{S1fx?&>E~#8!!TEH!M44#Pxp_;H$-omh
zCMcQlBoYPq7d@XGiz$}G-X!cKQc1j;#A`{sE@bX(%Wr$V-LKp8Zx5G#ota%`gtRY-
z{YelXWF~%}%clAxqyt=(IoZT4heSt$H|UTgE+p{{1Aa&Ln@OBX;xv~-55Fbou_WGR
z-i?sRIiAD`!8|D_IekY+?<DbV5@(b6D2ex&r^9_8BylE*_Zi-Ef@k>tz;K^59v>!A
zV{+iJsm@Q6_MOW<#~4oHizL2G;uHFCSb(qMyrBj@75IOGenzjBbDtOVb3s{MR2*L=
z@iiB;dbq`?;G_}K-xC7gk8m#@A$^;~cU+(m(v>7GCh>g|zt9QX43qdViJy}=IK!3q
zM6<)?iu^=Vixpv&lvRTN=p`X@nTvQO{XfoCp^!SS32<G|-;%f?!0!dEH<P$kfN%3E
zP=N0U@TZ`YuZQm^@qoLci6>3`mBioNnN5^6`GL+ky`lascVW{34@LEnp#KV5$i&Xs
zt^boLVj|51g^LPGP|QT}0$f6Xl7f~pQM!O%#>Acx5{1i|C~u;!iS}<5;&<pU@%@N$
zkDI7qqN0g+MmT3FR5G2f<0}jL?BTR3CN?a}t}5t|zueVKR2NM(OxzkF)iP1j1o<rA
zjF4&zW*tGvp+MzQo|>gS^=OHSUM6~*XkenD36F_pCK{Q}bA~1+nhMZZ(2=Lgrkltx
zoo5LCky56K1I2P(oX(cq;v*$ux4?BqO6=R*L<<v7o9JNTDHAPCWSj7tXl24{LLVs|
z8!2U(SXv=->PTtrNXciSwTaw1nY~6ztvY6%|IydR#NKF^b|wNQ+M0OvvCOk|GWTB0
z@|8{de5CZ-NU1$NJW3+}85232#ZSI&CW3V1D5<lF5Ve`;NKhv8knR7tR%R#KFiK*z
z_b4fBBHu(86L~^_9P%X-T}^z}Gi%i-X{z9muB(#S-9!%)Jx#naO1d^mYTKdE;Zf4Z
zqoh72`kEL>zr7#sXX5NCUw;#`7P<NQ7V!Ws!93rvCF!JtObj*=F7N$ee|U(Ap(YmQ
z`iGeqDVXFBH!;HG55e*tF7y@|EsZMRFCEcktch_Z_NQ<lh4CgPm?&wZl#PidCYi{x
z;IlB<#1s?%qwyxDnwUm+nRv~_bS@Sn#KcAuGfd3nxF#0SNE5S7%r~*X#2gcIO~gO(
z&oj~Z`#|MO{>uA<HAhP?lx+V@pEl2#AZ6?Gv?1fEJN}$zqb15LHnGISN)xNNh$fbq
zSV8@TopXCm)^RU4omXy-r@0pCp-!C6XsPYIqN^F7jGwc9V^01Wj(8<~?S!1i%K6us
z*z_QKy@_&JIRr1TYC<-lnAmLMMH9PCykugFiLEBKo7iFE(!`u?CL(vUpBpXdg?JQ?
zf8*-FP7}LKyzxrQU8AKNh5TQHLl+NbSG}M8G8c|3btn74XzBAlZEg+-M@)<=<3BfA
zQcY;I#6*HIX(DPOM#-}Nt2DT-i+=%Nn7Fb(*#6(lAD4F-F1JjYFvSol6PAgIVZU`K
zWYhVPmKPhj=9X-~FOt>iNRZ%lrnZTbCQdPoP3&VYlYgb^+0W_7Ef1PFB<6d-#4pQ3
za~@=q9;O>F`;YJ;%!<G*Z%*1PE%#jx95wN#$yXe4%tYZa(g_o9n|N5?bDU})Ww%cE
zJW=1ZdcSW-Jy*3cQq{?!)7&mhbiSE&*2KFe-ZOEAw6?24P1n4T=Y58271s}!azCKW
zRb9g#W}mF$`cMd*t?K&znC~MK=lBSS`_D1oCrsY)*`JzNF9)mme4a7Vr9Hm$CO+q;
zWTBFUFHC%C;&&4_O?+kIYtF^wnX$NF;u{k`n)u0tueASL6BoIfW3%t=bblwn6+8cX
z6F)F4*SUiye9u1V`g%$>nLjf;8u;%n^n53U%9VCqGI80&H51oO)SeT%!UQofIwz<5
z7^zkvKflfN@Aq{t>-x>a4d%rd>E7m0&GY`HV<d*wEfcp*6tR$I;SUpcOg!NBZsJc9
zcTH4j=(=y>9<y?%`_XS%bpk$nj5ML9>&yw?syBjvbMrUx$i%-UP77`CycK%Lsh#kx
zDC}xf(_hHKt=v#y3pDcN!rYeGIZLKy7qw8#LKzE>StxFygoRQTDmV2n7@s|{j&IT$
zcS(x}IQTD)kxE<Waxas8M~}-cYhiy)7cA`ET&|pj@)mY2$Ys;wQ@(C>d=+T?7#9mI
zd~uMgvV|usJZYhdg{l^|tHH-D)UwcgeW03!>J~2F%vv_aRl`C}3l)y}sHb6dm$W9Q
zw#BdGQP;xi)`9sY{B-;0?`6$g=dNd=zJ;eOTwIvjz(PX{=@v39eEA?V{#@Bc78+Y<
zV&UM5Q1o_IQ^B7xGjw=THmjKyTo&9GJQm1g7nbkpx=5SRBnvGpw5#q^YmRf|OILU8
zZsKYw#%g83YhkGt<hav+4%}E7YHcCgLc&7Qg5N?L3kxhfXQ3^XSm<wIfQ5jC_7=hx
z@+>@Up@W573mq*yV<E>v(89wp5>t}9(+?%WPv6OY>3$}0Ckx!lI$Jms_Gh%osWw*n
zJCGCN)E@J5H_PW*Sm<e?mxcee&5<m0wb0GN^GAZs#!9u91-e`4Vd2e?pC`XD$4QBM
zTj*n<uZ4aVUa91Yck*8z9%h%LZF9aplI<twO8P(xgDgzq=4@fGg&`J3Sr~0$sD)t`
zmj6?HIPD)Rad+jeTUu^8!oo-kj~-+X9xKfsD{;#mV_~d?i57kyD~+?Tp^R(1g$Z2B
zV5s4d;Eu7<p0U!{Wq}XJN{_}$?>xw!VqvO<*%szlm}X%**Tuq23(s2kbXDL)q~&j&
z{qfbI>f@wY7XKAJRR2Jbc9MF=NoyaKn`>b{HLNH*&q6gN^!g=#=W$Z|N0}{@(DN1+
z((`|1zhYsLg~fEKg-sTga1kx6w6KbET;pHHd0AM&;IHo*F;4omnBRXm`209&>R{Ju
z3u`Q_=PWGj8R%L|508`9S=c#FYB9*QZ=A&HMlQq~j!9!*&YOHclR3WG!i$t)Qdrnx
zVXK9040{V_seGI?Z;<P?V*V22rH13BKX-+8SU5e%^~`u_H&?KN>m>^>bAiT7=jypC
zy&U8yWrw)<Hfh9yOov?dD;A;_47$RCW<eJdoH1V7`LGLT%F(&|#Vo`H|Mj(QRtw$C
z>N+*sv|w5I%EH$cY$mmZ!xoNMc-6vd79wT+2e>nYJ+E`7%xeqd#%41U_laD-G&Z~K
zT6fjff&CUb-N+hz!gr7<R@cR)Ipj<;$oD<ouyEAE`xZW6;8}Rf!U+o}>GS?=j#)Tv
zf!opB^mAd?Gw=I1+{rvT!O?$;(`S=~cj=<>((;B*5dM0^@h7wXJqzzG^sqF$k#)wx
zhx7mgo}RSuk%e;>KBmo!JOj3bsO{<Z{ItL32Y!3J^oiKzJ{&Jy=^FUV!sp!fEzH^y
zI&b0jc<Hex-Cqg;ZYH#0&E)J-6Qm0kzOit}!k-qtweX#VYZfl$c`jP`-omfM7Jjhs
zBLmw4_p84Gc|TboEq^l9YK%)M>mu_PdVYih=<v(zwa$Ho>2S^Y2b`;n>ff@szp?4M
zh2JdPu<$$gWSYd}iiU1lDEqs!s}nz(m-`0;ua2wn1W9il*t;~>`)24a_pbZd51DQj
z?g@O~!UNhsRfYV2Tlk0ZP{>c2GDm}-9|%s`8{%g2uZ2Q3irHxQTJW&kvapRJHqvY`
z<(bY*<aQIJqBdr>$>}#i;w?dO8zpRDsPBbgE?)XcOWP=8<Ft);Y&>S8tc__lrrRiI
zqr8pQHnJ&iqk@g5HqvcWv{A`MeH#sIRJKvYMlBn)ZB(`KxQ!Y%YTBq~qdJ?4`v1=K
z@NSB9LwVPhsiB{ShKT1>bvSiw46W*a!p4&}>e?VP7zvVJ&&KsqE&|Gre<etnhBg|}
zjEjLLHX7Sl;P!O5l9}~;Cc*JJf!E*ib!hDA`+Fe6hTDe6My3sy4Tn?S#Q?~!;crH3
zuV=Tg@sy3`oZtj$L(ecdEp4>2;kA)vqqEyHV@`lWQ{lc$kIzPzxq))a1LbPDSoPaz
zW22{yUN+j&+csXE5X!d^u+iQ|&_=F}JsUz#+jvF*;tn>R7#<*?sW~<d?Dw^5>6vmT
zyQ7Vejj)YQ9MlFm+$Wzd>*s!$*W8n5J9nYe_xl!)3oV@>b+IAY=qiTeh}~^;v+>;J
z++7nSR_Wm$qDj7#+1o}R8|!ul$8qj9`q>z6V}y<VHU`)jY-5Oxfi}i>%o!wx$SK-x
z=F-sX6C`%YUY)bGp=YR#VK%P0JoEsWu{nW}Hb&VPBLaq2jka<5?W|+_d^7j?W_dkD
z8hOTwCcZN^UJN~f9|3GkvN4(SvN4r`6wRTk&oe!BUk`N|5&B?)bmM}r>AP9a+L&Qu
zr;S|<P8+jqthBMp#%xA{jfFNAF}muz=i0b3L7H!aOFYlUYj7fG0X-o2r|Y?&7emly
z4z$?D5*sUQ{5wHfYGav=<u(pIox?D=aL8Bru#ceKUzx3{czLkr;}fOTHrCkKWMi|9
zODD3{+StHB_XOA3ST8uYdgTwf;A=in+Gyhira(>qtkrJb7UqB8f6>Mk8{4^pyMtS8
zY@_q{26tEY4|q50$5x)A2Ym!PL@QUHGP`ZO#2Bz~(8kL)Ua^s|k+c!9A=`-BFqmIg
zG8G$|4f>y0rTsNs4tOc3a}j+x1Tiuvg~*TFpfkBB6#ln?%d}xJ0e|-GwPD*xQHhQ3
z8~B@6@V`pGQF#Rix44z*=&azMeKD}d#^=pE1p7os_TA42pC}O=vT@kPF&l5&`1AM7
zBQ}mQTU&W1PL$qY+=g<hFqdn%-W1HYY#gcYI#|zj+{Rl^x=srE_fy^zjDZ<pzG-mE
zcHTB*z;qnude_E#+(uH!Na1}>!Nvm{f7v)=<3k%i*!a=LSsNeO_==mDjdM0Ww(&p8
z?DwslD1Bn%Q-*geC{L8U$>5te0>q!$IM2D*_`=4Q^yEHY_g7l_8hRcq40Ssh;;wRJ
zqSQCi@`8<vROR-3W8+(@ohW_B<+$KG*geG7Wxd18hPC<L#?QNgU5B>$iNMB98@Fuy
zV&hjESD6~zh<rJhY{XXkFLQ^i<yyDT3Fa$w@4HzyhWoGE_|3-eHi$D{2{KRb)O6io
z^@5L*Oek`0+xWxAeY#G~y2Jgpb<SNu3H}s-lJ^Ao-vJ+)-`vS0{oBSrWTsFqg@-mC
zaT`y8`TMWUM>oO3DHKULpil~TTKW#&%uY+8XbQzrD4s&MhMq?A10U}9F<PE2?^-j$
z2`U11FPTCqc1+>*NU%%_kEKwjk%tDb>B<4$Z_PaAQ$Px}QmCCmg%m2LP&I|eQ>c_e
z<rJ!<oD1Ui5#f{Fa;B7ZRVe4OYr9?>6{?m(^%V9`3LQG0_Wa~<4K8;Bf6Wx$ULHuk
z89Gwdb+TosP6~BXXqZBy6rM=o$rS3R(0~e`bk$4o)3nsBgLm23Y*zd9Z?ke?E<Z<n
zyTac%g(fN79iQEl^O_NQZJm3_G2gQJp|i_FKg+?)6kK#m3bRshr{GCpKnep>XqH0r
z6mnDOm_mybo=U-=LYov?rqC({Uka^LDC5iVrkotiN;x6))#?y2H<tBt0@*2~i>tr~
z<z02F``f0_E`_I4=pf_+DQwTmX;07BbWI%N+U@r6L(nrEIuc~b5#U54Pf!5rB(qZr
zom1$ZLXQ+eDZCObmzP3*3gHx%KIva@I%}3MrwixO)ZdlUOu=g6kp$&7$o+)zIjM;Q
zdZy4Th2AOjp|@-JKbjO8dn!cBt85JQO`%^3{ZsfbE2qdLi6;GbX-jYH8I;1{6eg!I
zC50g=3{7El3S&|jmcsB9My4=|x!KZFtY3J9=uQodCrPu{gs6eDV}y)l*enc<<HH|<
zp&<%PNP+1yF@;GfFwW1cb8np%Vi!)97uL61d8VfDY(vkpDNIXYdJ4SUEP1{x-Nht2
z{JVQb%DKL?Iy;3qDQu%lQ<$5=ycAZZuquW5DJ)1~VG4^<&UN;=6u1`8r@%`#Hz@Ay
ztS(MrNeatT_~b#kI!}j|GN^86E=z%LCReZH3QdykPtRSEaz1$#zvAy-(X~2-H7RT)
zhx9<&jCZrvrm!vrz5zb{YUcVBHZU;KJ$zmHtEQfL2Ys7T*i6gmqDj(=DQrnOcL?|X
zA5GT*Ej97=X^Nu2k1o;#mG*YuQkLE2EfUJh173@$h$0<CkluUmpn&w=6bt1g+4N*7
zQba^h5tJ%|A_|HKQdRhVoA3P3nRCyb$&@>{&7H|+=W-Thx^J97<`bt!Wwfxe0ILe{
zK>@ZDV08i36ktOEuD8!zOXkdtv;O)5%o-@IE5O%#qijN#&ZTW*0X7w2a{=Bb{|8DP
z>xI@1l&1Zeo){>x?T2hj9VoyK+DHL@7$|*GfUO0%#UGzH2-WD(jMCvExUB#TidF|g
z1qG04*JM`#6wYgncyv#+YFem!T8J)=m9+xse&ss@C1z>$r`tEP3Se{A3NjQp1#qb$
zGP=v~3Xr5rk@1L(odwucfL{ynTLE^{s0(nS0N=5z0_>&26yQh!_7z}%0Y2wM=skJ_
z4;0|D0vx0}nw`z;ih4mVkxhCA-<g?3{0r*d%Jjn&_pGc+JH*+Qf?a~4qXqb?0LKdO
zEgjAd@oS2;0Ef#5Ti?hi-Y`UD)~a;2o%BcG#~Xp;q@+%W$oB;}$%$LB3k5h;kosEf
zOaaaoAksK=n#YyD1YW5cKS%Brp!LD%^nKCJ=Y{hW)_mbdHoOwQUp~mgs4+$37Yp!H
z0e&vPCDL3Ye%bHy$-1FmsPo-}41ox1)`-7aDR`v-SLu^EyPm<PnuLC5Z{>rx3h+k(
zt`*=<%Dn(L3UIRke9F0xX%hOY09-Er8zcP9*<B8N+$7YXN$86zaaOopfIEH<cMEX8
z0RK?Utk^xO;*Y{l6@&l!j5<<1_;l;c65-IIdZ7mecu1dCH&{qc!6H5^EaUIT<5#)|
zi~3pq(w>hVl~G(qSVj{WkI8sk#xpW%$|xb@2^r;ORFLtcjFK`+%YY0X#Ldjiymc^I
zO2$n^99$__Mn+i~SDy`*lkt33=D*JbA03s=Y~StT-?CUyMkN_lWmJ>#l#I$Uo|aKX
z##{A6tU0e%dhTaYR{L^#R{Gv3yPefIR9!}HfmlNZJO76jGBZEaVzp#ED<e%tK*n<%
zNJf25CoNQ4#<l~|x+H96dL22%?Z<ltDb@;uq<S)nAf9<8z%2tKlc0=rIkkapC?h0e
zY`xIzVOb4iEUgecRUtUJc4$|<P$L=38ipFn&?*Lb>iF0GXhcR-#>+COR52M%Wn{@{
zBO^mbT!tW{g^Xr1vYL@m<AmliULf(GMTgB6*aJ)0NlO{6WMs+^WpFzG-*an!h_bcP
zSs_ErRBNPWTBSg2D<g+J$Y>`cTgL6mL3TxLB!9@#JQ**_XfGpQhD5g4O6Q}2&joQH
z%6_Vk6<+d3-_;<*N3Y1}AmddT9c6r6C-jDl166~sQQQqfugjni->nf34U#&^c=J+#
zv+FFQi;S*v>S(vuAc-Yy2T8<x$ml8KM;RAn^peq=441K;tz`6(F-yj5N>fH(8KY#3
zmeEhf+cE}Gd@}mW7(ivyVqNw|X~hF&oNt}Fm4IgccemgW8AD|ZlQG<{qs`9R)h%U2
z-*gX-kTH^)vqM~0F<7%|e7zAXL>r;hWK5PZMaDQ8<7G^cF;T|5kr3^!Sb@lD{Jw*5
zl3&OXIrOhRQvPA8jA=5ab9S7&435IFMh8Pho{e+dwtJ&&K1aq}8Ea&$l`&7od>Koq
z9x~oxZ!#9icu&TWUxfuS7Rump^yOOdfF0v-#QCAkxJ%6!%V1Z*9pd%Ip=C0b%UDHq
zZ6>Ucu~NqG_e-(Ki(PXFN$~cDAvRepBRNOll-J2vFXIClTV!mIu~Eh*8Jnpmv$HtC
zse>dop)yae5#;v#eHrI^2LHS!Oz9c?P{t=RPBjjFL_y2k<ch=gMj2PLA$#6RE2tf!
zkJ=%lfMm<qFGH50$gpJCGE|o2Wot5YA4&M|pWWH>HiRjuZNCeKjD|gerVqb-I_Su7
zN#P)AH^+K9=+X1b*d=35pX{XX0f<m<shLFRIrqr;)UW?~D6-c_*wz^&9gy*vjN>v+
z&}?OVF5{?-uVfsO@r8^p$!ZyohC+wQ{25s};nZ{}&1Rv{Q;`s})CVqbUsL5;WgnCA
zjSOa)crx=X`x%s499KOZuUjejos5&@4;7|b@OwG+ozb_E&}kWGWc(oG^2+odD#g!I
zqpa9D89z@+`2m((9whP5{ye8vFT{oyW&A|1sNe|&Kg+lz;}*?R#xLwa#x)s#%J@~r
zZ<I2X{9rWYY3UVZaL3p1j{w;?o3AZyq>w*kr1bys_;t4JBoMjbSNqHN&-=#;H;MT8
zy|{4TnfP0EgH@uTJ2D>1D5T)7jC(Tf)0xQlSH^#I%iUwFFm;D`n#YE|Ajo{W3%bpY
zS($|u6jAV~g5nB_Dk*RIh=NHk<`naBa`JkQAkPgL*ZsMn)ME-BS5mrEXt2~^obXx0
z(4r=xCl!=b@Qi|*3Yy%{D5ao`g0end+K1eMR~anvQ8@+W6`Y@uRaHR+1r-%MrJ%9`
zPJ#ZJFK#L+sTG#U(@M%NswfB#mN-qJM39zVw?eSRWucma>I!No;EG1pv7F0XEjGN7
zQC~rtf@j%Q!Sf1gD=90etKiGVktx+9>+@rE6nxY%$Zcjl1$1s~(y~^1KtYfLkyHig
zELYG-L1P6Inq@aoQX*)`;d%zSk`Aj7|GRF=SSTzSHSI2<Aj;`C&D5J`{!~A;wpP_*
zG14|Gi^>^S&`iNY1%*_+pzyQ}+Z1e9ASh^|V7P)23R)^?rJ$pN*Ej_QnF?|g<SGyq
zWbx^Ep`C(XxeNC3wo1z9cWw}>@OgA#qfoY=?NT-PSG`c4l3LwfQt+~Zd<Bw%7fFUL
z(jm0>k=xy3SDp`X3S16eQ83$#y{e#t0%n=K!tw4_j4J)Qf=&whP$&xCP|#UH4+T9H
zbWzY%!5^8K-4%3G!20w~wBNrgq}D-(G^57}y%h9TK;%sy(zy7Pb(k3T^i|ML!5{^L
z{ikm$=&xV^r+hbKSdI8V1+2yu|6avZS6uSAP!3TrRKYMM6+cvbIykX*@a_3RX+6f?
zMk*MkV7`KP*qeee3Z^QUreLgsaa3SZ-XO$II*6I$DM|$s75uHmsQDM3k8+Xax;a_F
z6wd2bsUG8mfve*53Dao{{AgQ?%~mi&!Au3S*k|1!n{cwRdcn<N<{SlcsSk}p^EgC>
zAlo*p!Ck8Ou7U*$)+t!8V4;FV3RWmsso*^Yixn)RMbt`PqF^aCe{Zy}EOL|%T>Zxj
zobP|LvX)Z`XJwJ*Repsv3f3xEO`Uu;xNcZh`{#qDDg{}A_1VJ)1sfH7pkRxFO_cbx
zfY3d-nX1(=#MmaXFZw<;DxS&ghg5h4pD19Un7=Q|l8@PNX4dwq!OE>Nw<=&fS^FK~
zRGrWc1qBMeQE*IwtUyt)&lioVAfaHVf?WzU1-b%DfvvzGlm7^;-4it_$7fTKIn&sc
z=`3-m9tx5QT+U)o^#2Rzj2DP71SN-gq_$hZ9tEHJZC@KKZFw{Jx|BU^u(X%r9xQR)
z+^^t(?-@Q*aF`}c^;YmXy+`ZJLw@-eN@|&=?bCZa_$d1bh1EFpm4dH*<fso%D&pft
zj9-<upOk%ftnjUZ<FqCPzbQDO;5+&U1wSaDjeM`*H0S<%l#B04x;O=l`RSDS=!{=}
z)`#Bg^ilg_ocMVK7Zv=Z;74-iso({l8=M*^*tL7npXoOgP{fxM{6bmO3vs^|_%(}%
zlU(&!euXMc<5h4+!S6IHh0!wJ9V}f_@TY?73jR{S<>~i7(|H8C>jUxMc=iq2-P740
zt}97=<$xSk{#(H<zZK6<)V;AygQdGPA_e~_xJShpEZy$Vj0Zuqf`94W8;0nw{!{RP
zF7AmS3!64d8AxFjMO2JdF-ApE6~$C!sEDh0M8%^jo>lRjisC9BQ&B-hMHP>$D50XX
z3aEHO#gi&ZsyL;^_z~{Et4eixDwz8qqm-KZJb6g#On$&yMnzc_1*eOZQ&VTubpF?G
zXGC+e%X6TramFe+R;-eWr&Lr|QA16g3RY%w6;)I;c_nAdQ^Be#wsZ^DY#gelB70~y
zaqb-$#6F{fi&{+<ekjsBiPuswFp|kwov+lNS5aF<nu>smIx6a_;D^avtoiLT%j>DA
z&%%y5EaZy+cI{A5MY@VG2UQVL(LhB*6^&HzgKmB%%vSt7xox%JvEMTqtFWF9@<V24
zuoStS!S9hHDxxaN*|C_4rYcHx57HhPhj8Pzt4FXIoxh6CD!Qm>u0l|et0GTD3l%L@
zWT|MwQHa+{Z>=Je6}ksM{wyl0sZYYW1!Fl8{yHLaY@xO)a#Vb;$J%k$YHHKLr`*vH
zAzQdo=c|xZbWriCN>3=hsN$v9gD<OSPlO$&h4`8CB_qa<!Cz7F-C${Yy-5AE2>oG4
z6|bx4q~bLd+)Xg?+@pFyUXeaLd5gb6xs;6W`!CQ{MK=}wRSZzkT}2NSeN?=q(!Ys4
zRrFHPTLnqwN7LjOKec|-&l2bFI_l`DlD;bXQ6hSbg*;$+n;q5)5*ess5V_PKG(zQ9
z(t*J$hN>8*Vu*^3b2FK)4VET03~_0=P(C=E$|Gi;87GWXF^UAdmdA!n&SUYhD#oes
zR3uf5S22NdSFuRNL=}@%%vMte3zNz79>HVP;!{;j@o{Ej+r?=rrmL92CRv#?Rm}2{
z$A(DUNU}tDD&F8jagK_)D(0z}ui_mQ?^0LOLtHmcejxJu@v{T67m%b#hyeo^Uyk*j
zip46ntJtApiHfBv-dFJfIi_N{icKn7cMYyku~J3lUfCN}tYZINgC+h6@ZW@ptX8qc
zFInrubv|VIdKDY~hkvvw#NSj1{!8J_oM55&b3>#pDn6vesrZEad@H3P40t}G4%7{H
zzLCMeZ>x%Jw3k)!jy2-{zXEc7<YH8yLQ|oukX0xuR23|wYfbnFqmBVHvbfwEDoi!?
z#idJgP+_ZZXl~)inOYHkv-x{ojNf(gGs8n^5q@3xRn7QL6}wcNR&hqfZWVh}e5K-R
z6`!iutKu^i2YovC(eM%9PkqbIq<J2o?LQSf*D$q%`&`8#DyNDgq^(O1b><5dhgJMG
zJ1z{7_FN6{{{*PCtE<G1s;Ri$dNy?KK=d0G$LOFa&Bmc`RUD_<(}L(~_C@I^PS8?@
zXK|-bc(rwQ*CEnL+VadSzIxzOHX%>WsyL_OXBC%J{Gj4IRqM&%MHN4)xS-<ho{|fm
z3G&|nj!X&h4;grD_!Hgf5Q%k4H_!Zql&H9>;&&Cl`WDTeuaIWC#Bhi-FQ1Y6r-+bM
z@(&f)RQ##py2{t4*$=M;a$9Coqj;{kV2D)bsz5(^Q^nsZ3hhGST^M?y-YqsU@TY;>
zD(;XH3W%OfM|~alRs6$j0{0X6SH*u+>;z^c@Ib{ws$2q@2^318Z~}n@f(aB!plAZm
zCh%MW#S(ZVfhqk$H4}&}$#~~s<k19*C-4|6mx|O#;F$y-_wf=5Jdwb*A<~lxl=YF4
zK4eKLA1R#xe5B0(%1a<p&d19qP$7YeK3+M2rxU2;<4^gJ)z}GB6+c@ofvP^jlHEh3
z>OTIxUt#~^4F2r!k0H_{L#0{?D8-{C&73}yGv^nM4izHLCr~?qItf%BD%DTmQprf&
z1nMQw!p<yup?QO$QjtQ@v;-zh$s9H-GiRujo<JypNCMFW8YIv#fyN1xYZI?oJlZIM
zN0;TN-HaP$BJ8KfP$`^1lLW>Nm6i;Z7CeZ=5@?!0vjkp9;PjG=j0Apv7>WD%j-irX
zBsyVv1_x@MfItEgm^(F-ZCfVLDgoX$OMLF-=FuWiBHa=>VggwSbWGs21llCfHh~ut
zXrI8XHt}`|<R*}pz|2RY*$Lz%aH2`+T1SQbL#3};#@qMJ&rg7eltAx7(KapP#78|E
zeJO$ChlE!XcsYSr*s64-i=OktP^m)#gtvVPdpwN1o<OGr1|%>rfj1K9oWNTN^i7~k
z0$mg6nLw`uHnxs;OQ1&rvr0yYclS$54wH_zjx*akfj9j}eMouB_<KGLwTDT<FzMA{
zQm3NPehKtv^M@%mzD>E`j30R-$}ELGh;1vTGmY_)!9E<~!=VWb``^>y35@t3KGH`<
z`EaxkpMR$4*#A8p=Og2NIKhV#eK;wB$v!g0hf{sXai{snb4_z*ataCTN#N52W+yO*
zb4*|prIx_F1ePYSEP?q6ypzCtKDRjwD#p7BTx*}cAc2LXc9^uthlhqq3x`QthDnQQ
z4pTFiB(T}YAwsy^7wD=4R+A5<A}bQ8*(ZNx0@BRPHjhTvB(OGt4GFwnDzc9BWX2sO
zXMF-&^qgr@gd>uH7l%n3N<}s&@O}bn0*M4ZV1)!eNnmRNN4vy7OyFZ*+{8cfOYRSo
zb{`UomyT>ppww__M*;;2Y)_#6aEbCFlqtAJqlypPJd6;}{XpQnG%9KWJE`X%=Nbuo
z{zBYJz)m2)c+~V^kJ1r`x_Ve}6YzY5ihZPOKAp+g<rzsDRF`}ryEv)K&3F4wW^d^T
zpYBayAN7-(oB&JqCvZ4{FB3SBz-I{@<X8y|9xi>6K+ECMtzywb39Jz!R|`cu4VO5D
zOIh(b!=*Pr5RPzy39$UD1ine&SOQ;@!^NT`mD2e(!M_d`-Z&zRM}!O{{#^p!Cvb&L
z5;&Q_sRS-2@Dpv8w)T~9j;4{onFP-Itk^U>WnYA^7ml7!;K%>@4Q4sw1%F&}>1X;G
zGO9@QS6`;T_%4FNWxDK_ke=WC3Ok3V+`{h({E@(43EZIaB=9Fyu1_)YZPWD3>m+Zu
zRP93ZGJ#xXZzk}!@5=6QQa<<YbV~8|wofe)dNZcG>}q*NPE`1Z&Y!BNVUdRa==>9C
zu0hc7kj`I2O%1g)6xL8gLn#fVSyDV&RKuehifeeae||9yJ#WSz(U6!D+4EoIF%6Gv
zcv8b#%Q8x6ctXR{?)i_8;0-0AWU=UsKKa*&OC{OK2<d!UF6%%;84Z;*Jf)$mhH@H`
zchf6qXf{2wyoUS{Qe;F*-v}#e=ruxGWaLN#@+)h2T0>P0)wGlnQWbB%5U--~uf2p;
zZBnkRx`rBB%D+t>krD^fGk*57Wf{+Ecuqq^LzHb>#-G<vPeXkz<&A6mu#SehKC*m-
z#KJTU0Syf_G}I8(kgg%5fzv74BcIbL_Jy$3pIxUn@*8R3x)avW#77!yc#s)q$?&O}
zT!s$y$p3VN6w~n6qtUdY(F`AH%ARLr%ANA#8d%uOheTfRk+nsmEi|;$&`m>k4Xre^
z){vtiS3^egc&3IdPC<jHfeYE<Lqgd^4p*PH<jkzhc3Nt6W;WZ;5@%r^S*r2(BzTPy
z3`8XjFKKw$$6wUY-ba=-kA1vFc!fgj9PdC8Yhac*mqH>;AN|<;bq$>~yrH49FC(&%
zX;hau*QPESy87HZRw_b0_m*ay8X@(dl2AGt#!`qHdTSV_VYr4jHT2OiK*K;PjE24x
zXz9q?8v1G2mB<;^IexrQl*o$387%Klk<HA^DHJ6>NW)+aL&%LnQ9dp4wZNx@Lw#7a
zP;`WbksPjF$yqZq&pun4bw+6zt)Wp=AkLl%$7vX^VIH}sVS<K<8m4KOuHpI!X%e}o
zVXB77K5tpVVBoQl(%q#Q)kjL5TgJyHa%O0lrD3*)nHpjvrFUA!3Fl~7_H607<V?#r
z)m!MFPlOGrFzs2#*Bs*SYFI#qkCftzGsZrMyr*HYh95MX*RX^pqd}!Xu`3PBHGD)7
z_++fmuvWu54J&Dng`%s-fuhmX8rEp|A~W7|Nd_5CWW9zB8s69NfrgE=>sgtbG;Aid
zB_s4CjA2;Pccer}#oMCs2m-4|O4CM4gt>?iexhNkh5`+LJcw-5uw8>TQabx+bO%-O
zOJQ{B$Va6k%SspJaIywYoQR@<#?>q{u4&MTYdEOE&|qrtXw(`k4Yr1%&z1hNdEC)J
z$mEjFshLC$j+6*@Qtle|Y1r>qVBu~Jdo+CdziN9metH>UlXHH3;vD+5qrw3VxBQaN
zH5}6Lordqp6Agzod`p|H8TwMg5e;8!_(sD~n*T?_SM*M!BtBY|6|X%?qUR@GIV*ll
zORZTijFMg-B^{@l`E^cEPew@(#P~^CA0kX=G#+TA@Y6m#Sv*SotdF15uw|5VaFoQt
zA2nQ{uyhpFaZ$rhw0aFUH2kdLl7?#<{v^AKM1Rrnn}#b?q$L@bHT>!$)4Jv}dsV~l
z6a?Lu5T_M$aXis4pUdU_&hZ~cNtDa_BB>zux&|(qL~d$4!^A%t{v}T|+}3c<AL0&e
zEgyHaRDef>kcr&8Pcqu4GnML_{~ukJ#=r3qX4lVssG*Ra@*#zFH0_oD|Fb5-l8RUI
zi|Keo$5T2g>v&X0aUG>}l-BW>j>mO8p@aXJJBYE$luV~oq=cUG=hRFVKB=Rm|CBgG
zO6Vw~qoR)6qolGr%IPT23NNQG|1pQl3KQ29!U}#N@ymyWN`7VHPwS|n;~5<_{SK?@
zsHUU(|N1{Qw^$7wdh>WtjF%ZL(P7ro@vM&8Iv9a4`<#yF^^_xJVuhezr;h)W73%s(
z%g*sM9RbeEz~csjI?{D4(6LZQNJj%5U37HS(NISt9a%cs=xEG3KLp~OvW~EhCM+K<
zMaV-kYF=o`i9l3GOa~FB&QE5QY||`*G`DGXWnSn79d+IfbzT%|rSq4=(dIe?9W8X+
zsg%`H$Lm_))7=5NAi!*E9ho{r9fJ==9z2=FCN+)*?i>lU)zMDJOFCZWDBA+rI&yU6
z>gaGbQ0_ut^436}4oSz0I`VbARw{P)L@^e&*U{&J$i$L$N`S~KY{Cj0l(cOP+&vb1
zRYylkYFqRzF}A6E*6_?wCr<5ZyEk-n*70NO(%FXszn^@R@TuqWyN#B*>FBOwjE=G7
zq>i3C-qO)mM=u=@)<(O`4ZW%3R*Po6b*$MNATsJ)pbu%zihaL2y`PS^bqv=rLPvic
z19S}0!3s`hY@m)oI!=F)!pDr32KzX(7ZcGPUSOz>V<%$6bWGkCI5<B<c8%1r_pf%N
z*<9zZRsut7<&%v?h{ze^bd1+AO~-T{6Ld_}QE!a2Q*1Vg&8hi1rc&0UrOmh6Z936z
z`)KLg#d(KDOTUbk9vLIe&@ofTd=kGPB$UdXrDI09thqX7>u6Omi)oIJv}hF~d*}I2
z-w|T1$4Kw!AbeLxg+}@3OJyz6@t%%@IzHF2m|CIZBOM?6JYT9~xsDY&=JhMKjDi>=
z)oB%4sbiIn4LUZG;4#u_9cy*0^YJx0O8ni9g)7ELKaI#^T2H;Lk)w=}Hj%JBfr@(c
z1Dzj~1vcw^(-eJQ$F@%crIU@e==@n4q%-Zh+{>ANHul9B=@T7Wb+|e_*3q$@cBI45
zv4f)*%2ITwI+T5Z0<zRcy8aMgcJ;&N2_1hN2xvO?90_dst@))f(id{n)M4p3f4iMS
zp6m~FITEmSzWd8KCd9JDW+f5<KDuNCl5C~pQyn{X?9zE|k41?9>7*#x74a%9VtaKQ
zpox{w-$%>ZmFj9gZSY87*2(B+6ul5z_+9+MzQ7?JU+DN%$8S0g>-bW~4<vy6+!{Ed
z;~UoW@uNDv(($#A2leRU`5_MXt&Zb5PU<+N<AjcfW2EnW_?-{;*34%K6OHS%jx&^9
zGH{lB)&k9nWWRVZ#pLV1)j#L+f!QB*%stWWqK=<*Tp$hS0#A*VCI|C>)^Uk8PIG7(
z`%nus5SuZP^2=oP$>^sY(pPtjUeR$?M<D}+4gAgy>G$XgbX?Q%r;fjMWS_{suH!Eq
zH~F+s)(twPyE%P#27Za;XMC7pwut?>J<x7P;K1R)Ege^~1ovw8T^;v)?b>!Ya9_ti
zI{u?Q(sjQU|0Xl`FAdzc?xtg<hcwvC*y-c3?I&XG$4WH$A_j^Yc*MY?2993{w0bvG
z%)suOIj5@SWGNZN4ZJ;8I@7P%l@_rj|K=>JmQ%vO69xtt7--;010@YKHIQMTl!4L)
z>KUkS00zn!sAizLfwBh587Oa{0w0}>{{2~?{Qkhq#;9nZ-KvsL8K`Wak^xSK9KO)2
z=+j2Z#Z@st%JYxK4qpsZHSpf?b|iJn@fhu{hJl&}Y8gm$On-)bO8G48*e?HB1J4_%
zZQwbBKjR4~JEC9g44hK~bqv%su<!XSrFCrowkVaV*segDfq;QV1{!k;zqJdpiGc<N
zNLac7N{Z@7z1s6nPD9fFP#phN;N3HUiE<!ppzZ$jh=C>sZk)?zTET0~{6f087-?vi
z&kAt^%?!L`;AI0Z7--JP8pt*v7#RLTptXTagYVj+Eey0Y@WYV+Q!67S8X}^BEOuz%
zw;h4Y9~R4+8){=fyBL@`Rw5*GSe|1bm+4eA+A*GIq`c^h2HN{bz5&TcDi+OV`J>+j
zp7<s(=+!tK{woGL80c=Ghk;iObTrV}z_qejuNipVz#9ht9wD%~gV2fDB6x5zdUA^J
z;Mx31-xqRAXLT{q)qtS{I+o93wQeLb5m>S-(9=LK1APtjGtk?>gVI@V8t7x-V>eKy
zQda%EX5&8#wCNXni%adjcEs0@l~xwXecM3JWd7zh+TTd66sr%#1{oM^Krx^i7-C?k
zfu#nP85l;68JK8blFz6S2F4f|Yha{-^QCh~8QA_>rZrX?ZKRxG{H63EC9}pE_~N@l
zoG<b5MrxD^1{OSMSG*u&vVkcE-euOnR0Got%wj{T^q#<UPJdruCY5$uV1~~MA}pEF
zs@WWa=fHt^2Il+7Tpw0D75H~&#y>v>-Z4PPG<JT7YO|2)YGARE@?eV$a0Msw&FO%B
zKCr~V(XrCDcS99_2rM_S!od3mJ}|J-z$)^yO>C2a)ntf)Hd)Qq8yKD6Y^?z@ZJm!3
znUd3Nf*aUi;Fqz|MjsMk`SiVk&D7+*fhQJ(wix)(z*YmNwZKOdgaIy^pU^H&`wIM3
zplYXdmQcO7k$dF18QtM4m~5cH&xTv2v+!nCvwy})2|gk}4IDP0Qvqll2KE~KJ_VM6
zod$N1-~}PufX6x)1C9aL08N#J6v6q!fuw=>nN*ZQxZA)U1EjX($>{I{fr{g#np-mH
zZ1)-1Z{TyvqHi&>>wtkyXJelkDd!*TnEprW&_M%)?Bo#rRg2iQxgo+Y4IH5?s2F6d
zfv>35TQg1?_?q6sz_)a01}>C}b;}fv8T@W5(0gk%FitvQ;5!4~Q(d=4TaJ_7?h)ND
z3QNBT<n&Ibr)98oimWqmhED9Y%xm@Y_vJJ@OYQ9!qk^4hKQv4OR}8$?J$k{wPX>Ob
zmuubZBCTnhbT*KGi5j~l<FbKYeI59PI&d-N^nTxwLD^AQD?<5ntyd|pt%2WtOJP>s
z8vVmBnV%WDZs0GfsE36fZWy>pqp*>%@wb6n^dS~nSh#KA4y9~jn~A#y?iqN+L<f@}
zKHwjEJQMXy{A=Jp`d$+iOgu2~ka}+7NfU)k6gE-J#3LrAtj>GkSfq%Frxxc9;r*m$
z>d!HFebS>QiklcVPAXyIF%ylO=RI!X;8gKMPw^lly*?>q&Nzt`N}4ET0w&6s`0u@N
zX%nl*N!mDxa8lFA=i{WZCc<B3lrwQ|ob+4a7Q|Z>Zc))hB@;DFJj0<)R5nq~M0FEw
z|H^*aL=_WNO{{#7es`So<k~1N2pbm9J2yo9X>scIoHZ*&eWOs*L@g7~o2YFfG*P^p
z5q;Lgb3Q)vXhy%4;t$o+S-FmhPgjY&s;ujo$mK=h`X<s$2qs#X2$%?(XlSC5iC*oc
zbhag1?qru8FFmp@uK^1Oiv0hO`s1a>oPvqCiDo96n24B&nP_Ta=dJXpnYzz0IVAsP
zx<J-tj+cU^TV$|ude)MwkuMg9pIsS#!9;UTs$7i!C^BJO>e|^eL&cURTA9c-k!SL^
zXUH^>WulD<(M0z};uq6JVU>8}ZIO6e6YWf7o5(T2o72gJw1wiZzGCOz;+8@!I**q|
zjhCu4iRPP-OuT4f-h%LRWn;_6OYKd(OoF?MFPZ2X%py0ojhB8NDK=jge$_-r6BA8L
zGVz*;*G&vCG0;RO6K|O4$+?^8Y@!Q^p<J3q%EqGm#!FpIbR*eAh127u5_2+n9r?rS
z**(~BbuMoZ?rq{t6K|R5Yl0K(W8&$&IPYAe!Z6zwLO;@P;_vZNrAAqVH3x|OO{^N4
zPo57lG1$aN6QfKFF)`G{_|@WYYM?)z!}roBmTJ-F&A1zleBCf>1l4$gRHDB)r9swc
ziZT`%XJQPcKS3HxmJSq{W;_(e`^roSPVkZLMOsXz!c(s}sEMg2rkR*;;vEyyP0TPc
z%jA!v5St(c7KvAzMrN8gF)W`Vn`2@w_2jrP&qVvXk=G_j9hZe?t;u80EPU6*0uxJ2
zEH(LE02ZvtU1Z`t>hp+vGHS7ja;01FLP=it{OYj?@nt5Kn^?iAO^_%W3Z>dOvC`k!
zW!8kpE)-XrSYu+diT6#cHTh4@*l1#tiS;Hnm>AwuT;C$^gZ@IXx;Y)Pb2{ISJW`|u
zN&2xt7Vnn*z{D04ADQ@=#(OqG%0Fa3L-OBU5+2eb@A5;T_k;Acry`%2IR2J+;ZkI~
zi5(^$wNTtbfeG2fSsJOy6#=S=&rKXMkuaf|*kxk33EhNY!ZqQUFilt{920$_k@HK#
zHdS{;_}5io-m%L|pTBJySvp-zvcnR>PWq)q;XW&J`z;S2ZW<-NhbC#_fQipIuW905
z6Z=f;r}7LI_btw3x;-?%SGv$<Ntl<oE!&8LWWwdhk5k3beZ((J95!*x#J48CG;zd4
zzY+OgQy<nwk5W}8NMD(#8;>$e{M0((U`FH{HW{9}ZT2_?YT~4cQ#9xG!go~cuj1cR
zQca_4mWSuK0`1~yPiQzvJZ*wjwr+!P#>AZ4*+hOYao)sDYOjeOO<XYXtBK!CTx3lX
zmrVRZ>8ubxm>~U339b}xEzQlHB(5GWR_QLDdN=(tJ;1WCb2)Ow#8ng5O#Er$cUs@l
z@E`Qgg+lYcjm&D1w`+n#{JM$1s7~p^4c~bG@C52fhmqp+sp3D!BDYN3Ht~>d+`=6?
zfBJkA|CksXjoxGZ)#2|ZNQ;LFg~y8jnkd>d?*YBsitvBb@O$Ys*5(p+{Vh^uNp4{a
zMJyDx_@h&-94yM|IZT6INq@w`?>mKQ%fnBfjxgJ=jPRI+$1T*ikY=HTg(ocj$Oly{
zJZYh%g$fobS}0|qw1u)3vUUluaMKaWSZI4MeS0JtEhE%)1#+gGh4L0Erwd+gyptyM
z*ez7DAn=M_7Fyuy(>4-)J0tJ-x|C&oc_mWSLNyD|T6m8A$0OA(JY%7zg&G#>tr9;T
zAkep*ywkkuZlQiGTFU}2YUe<!=VX@b6Mx=9Z41=HIu`1(zLk>BY+G2lPS|7%W%HzK
zG;<3<3o#2#Eu>orSqNJw6OA^o(9pvAMd3yk8qdlv^Dvzk6mIGx@)r2U7G{@?@dnIl
z%f%)ZA{L?+%<dvDucSe-ZHC38SD_hwzJ<7jE2pB(d`P70l5o2w(dJ~r`Pj*Y;g%L!
zS@_4ozZP0s$h5G@!e$F1d1zr63AWINJmkDAbhXgVLbipMExckO$3m`!JPY|2Ha<-6
zH&49SJHBFnhGgMI3+*kuL^39bTrB8YR%S$sO_aJW&HeXYIyuw9!mAcuv+%lwsuQJY
zS0WurQtwc?I}x(IlZ7`dbY{ugJT9OwZ4~<bk`mU;+&sc=7P?#LXW?xNJuLLJ@Ro(X
z7J6CeZQ)G|eK?nX;@-n?+7xx5XL?TOzT&_|;mnEB@g~u-!RW<#V%f4ne+vUF477L&
zU@Gw79eLM6S)J2z23wGphx<RDGnD<W${j)>@;=s<dG`X*qT|F77Dif_MG;sSWnr|1
zi54bN8^?-cSTa!>XQgiC8*8E4M5)1@Y<iFJR_eC*2~@CE;iiMc#f3tXEljg8oxFWB
zKE=ZJLZPV^7EYAtEoX2ptHTc%+l)xL<(brnIpR0N^XFKYOB=DU%ECMg^DQj0@ScTt
zEWB&syA`57Tv%X%H^}qG-i1EGfru-s!;38}vG`REmRV3PMR+k8Bd$s7h2<8w%B--^
zG9G0K7l=#u(uuFOu!g#4VS|OW78*<u*Kuk?gtCDg)_G#ESaqZDaz<pMmAZ`nUYQv2
zk0wg*Tlm1jmllp#*h0};@GK-Pd}QHc3z`Mp!Y3BCTKv`tiiK^QIC)Yxr@+DvYT&)}
zeU89e=})B##Mk8H#ph%u^5QCO{68UKr5yO=!6NaNi_#4$Jkvzcq51q4aaM*c3$}$v
zG9srA$7ykNFN0QzE=BoV4!OG1!Y&J+SvY86w}m|x_FFh$;ZqBHN#sOnpM|5l1TIO0
zxkXwGKOb9hH~X835?Am`V$mysoX;ui(~-j#zWFtB$if#Eu1=I@Eeo$*6{fs+Yg?24
z;!z7<S@_w)B@17(riF7Bez0(iPJmir;k1S07EW0Bo==D8e`oOz%F;u>M2b$5{z<0(
z>Wz2Qo}_&h4%MG5CRU1PXts57&QewC=WyL5&L!hKEpbWsqJ^K>+`<J5_ZNzcDnE!t
z$NrVg=}%mmcW8AUoz*WEE?fB1!gUM3TKJ7L)335m3*%PhKGHkB{Y<2NgRDZM#Xm@)
zEmWN(U9&JbDHIwnez+pc|E&AV!VP+O3wP;qmxpg!_}juQ3x{Tkq~Z9j^rkISe)6`3
zMw3zz%RQ>uB=J5SLaEd$pEF6ST|bBLKPn`R+D2y^4=oh3(ZEJS8-;BYu~E@RB^yO;
z6tnT9jgmGVvGJ&l$8D6bQQXF3HYkzCO`;6IvKEO<;f&~oS>mZZO`ot)Z%H^XOt`yI
zC}pFxjj}d>3<+M%3>yrP%GfEpqk*p(BIY;(Z}+}0<dwI<b-99#UXxM_Gy~VCSk1<B
zHlDZfw2dk@s@texr{aOCHmZ@%axt0`uW)7XGi8!wtj?u@KVze&or>0K*?86l<Nt5E
ziOiBS3%d#j?_}4uQQt<IjXE~!+NsMo>)AN7Bo(3%r#}qX2---ufk&ivy~Gk%B8?-_
z&)$rmnIeW*bBf6QP9qzQZDiSKV<T*%iH#R*G`A745w+3OPVs!(H<5#vB1ad6V>UQb
z4v}FaZljrv3J{oh-{{R1VJ@bE%^x74m5tVRD##zVNNj0i)g)<DuQ)G!Z@M&`Y2%rU
z2>;=b{!`@Kn??&JNo{T3B#0Mnw6~FMBgaObjeHxqc1njCU0iA!E!|I?y*72lykw^?
zUgX~xru9nQ@cxpGmu<Xiqoa*|lcbu<a$m7=>}9Egjh`n;6*mZ!>}!5MoosM%q~*SD
zgD|mBJewDv`!KzWjjlFk*qCXf8_A|V*cf4>hmD>#`r8;lQQGKjqpyvAWOY3HCV919
zc+1E8*nIsbu#oW;)pgZOku<+;<NhRxp;7s?oPiw9#t<7rshP`jTlI+#wsEt+$X#27
z$<o0{bQnj^&f)FGypou@J<`S~8<T8IwlUhq7#rhkjHmjQ6UN&3sjo=&`{cJsmq?VA
z8DmVaG4ahfSEY$$dp|KaS(;*Fs*O(Zyy-SRIvSZq`A(L88Y;}`Epp37uQGa|Fw4el
z8*6Q>voXiUTpNpQyk|rIHZsq~J5(o5p{y|9#?{TK*$rA5USQ*m$r4x6BIhCtskG-J
zwf_?q+gL)zQp%j;WNE35Wj2=Em^WEkb0u|4b(Im~q50wp8z*jO6It!E>&9Q%!NuV<
zw8REk>|BgT*4x-XYHfUMW222tHa@Vig$!RQZnklBRXDy<eBZ|A$r9ZWiCH>8+;BGX
zA@y^B$aK9>i%)E9wXwrSfemgnCN2(dv$5Sqp*O{mJ!ACST!MK=Hn(iD4aJ6cD?*D%
zQUsSG8YfOuauIN0*f2S+gSQ=6Hf)-YgE9^r8?KFu6am}XNRlcWU)k8n8QC~!<8vFk
zZS1kJ-^KwOpW4{VfsRG?**Lu~y?e<PGw(!*Fx;xG30Z@M&*+Pmi~W0u*A|BD+2ZlZ
z(jgm%ZG36t_sP;1bUv$6+w&vT%%d4E4;Qbl$z?EEWQz2)jc;t6q@SUx+w`vBpLu>~
z<2X%bkZ^(?Z;C|Ezigp6Uy>MSeoyN@-Y&mX3syT#!?$tH#t&4;I;r(*ReIK0THpQb
z?)TDnFA~q&sV&csRJ_5$$34XhHbU%eiuBy&$j>$|+4$GSe>Q%xaoNUSHg4GX)y8k6
z*~T9>xH>er8sYBd3N^>ivgFTo!ZjOz+PF@|SP-V>Ov#JiT^(i!L{H1O>n0C>=;CbL
zvvJGDZ5zXK<Fs6Eky_-&?~wi_VJ1?Wn-RTF>w7Q!4_(cgFtupcu>5wbav#w7Q=J?X
zcTmVdVF!;mD3~P{aZuDrZ9x8fAQW@3wR-yKk}Vny5{PIFNYZo8uMR)v;Bf~f96aHG
zTeHH!tUzvj_W<EZ2P=n*B^{J<AWo5%{nm_$61jgVQrZFG`CejK2jv{R;GnsK@*K!P
zeTTP%qN0OJ4yrq-;ovC;bPJUoJnew~^QF7_RUA}xF!y?PH3wa%q^@J;IzmW~!NvL+
z2Q?i$@1VAWS`MCd@SFp?obci_vHX+KQBx#B24IXf>o}<Ep!b_%JqIk|{ot2`JR04i
zmARZ(z(LSK*g+EqYx|1n4jMXW<RIjrfs?wp`PEh8v6bPp?y<%W)T6P5QzY{9n`U`a
zBGHJ0sDq{sG91L5lpp@-N@^p_(1kjDy_~SRX_S#?+(9!Z<;|#F-24g-S~z&oL3;-+
z9kg<g?I6cNYX_MQ+LE6S(nSZGr$||3%i>%bGDC$nKF%Rn@=4pG?Huqlh9?QR4)Pr2
zJCGbKFC#F>&l@Om;p4`QmA5SnGunU2!OIR_chJefD-J%1MqhQ%(ZTxJVh2CVSoHDR
z+0GQ{HS+&lq|!u@@C^r@$u|dY`eSu*(9J=2AMfgb$8jW}`&(iU2R$A1A{!Tn>#qsV
zi$%zDLLS}paqyPUmc9<M3Wd0W_n06OQhanZ{T&Q&@TG$z4hA|HM7dK04hB0I;$Vh@
znGS|J80KKCgK-XqI~d{MmnqUH(h!V}bnwj-iN{}5wkr$5KMog0bFAUQ7zf8Dh+jWU
zAMap-gDDQCQrqWdPNV`qmowSHBsT07XDsosS>E2RLgvEoGzZh2)UJWz?td(DxNNM@
zR0&mcW;vMcV4;IW4(3o59n5#|4mD(w_||*jd7RyQVW!sKM&5OBy;KXD;R4cDR#>(s
zzr)HfHSj&EoP%W)jgz`!c!`6hl=aofH)VthQza(Kh-Z>3D0J$-&nqtdj6W&m)s$M{
z5L1Jx(mD!@>P-jhV1t8=4tCIT9c-eWIQYoH#}3|i_~-E0;^0Gyi4j^}ykoEEw3Q-{
zO)4!6^XQ}12H_K0w}WjCwmYfAjoG_|%&Ah_9%7X{*<50{l^)~@vIE6|;lQNAJ4jG2
z%flL#XR5^Ia$U1LLftQ<|KTIcNgebp7$PuEAi^2B4m=0@9UO3wbg<LGrw;Zy*yW(z
zr3f`)kAvL~MoyK6E(kB2Dls*_k-d-ZC?nE$PH0ZK)CPowpE)?_;E;nasQkZ0K6h~O
z9dYYasp+qgp|)_CEPXe1gthW!_I4{nULqcK@D<&fiy|(*rj$8H2R~CE9DM8GH0gA3
z+`$P4-#a+z;5!HF>gTMw6yYk#z0aSwvU!TgnCBEd)v_?pUMfn`SqJAR7Y7#{{NSL=
zXpuhlJUPEOx9H;BNmX-rDSY{E*iy2^MRM$6da?Dwj*p|4sHhHZ(N#LQ?BG`iR~%e*
z5V@Ys9nEjl@Sy^uBc6=?PL)U(7~Aj!ujhv79}ccLs8>0M=}#ZI?!&))c!O@_e^37=
zSEov>cE`b82md<wkLGhKa?eS{+xLC^^i=5|A7MGeT2lVN!9$vZi(e<ECQ`YF$Y_uY
zE0Lluin%D~qP&YoTs-RH2^UYgDDL7h7iNpR$6a_sgx%=^_sf)W2^T+?jq&V-u%rvd
zY^7bmMJZO>ES&r=JrzzY46pbqql}BPE*KkA4~wh{Q)eo;sOX}mi&`!!xp>M&6&F=q
z+?XnHn_t-{?`a?A92ZDxH5b)g)Nt{P3yPbEpM3jJYffh8Iyp~HlNQ{H(1She;yD*}
zT-0?_XFkunsO^Hf#I*ftgmCpBv7U>6ZbhD-CULE&y4H77Yx<Z%p`eR&4(H-G7a<o7
zT+DSb&qYHQja<CpqO*&}F2XKE7g;WvxQMuT!9{ZyQ8%@8##}UY!L1x`6>m08;yFNu
zi@2Lo3~tYxaheOmJjCFhT5!>V>~hiCMN1bC9;Vwvg`Pi^rjzgZpU`2NL`h}37|~xK
zay1-n<D#vL_AXv>(auG-iyRlZ<maj|WAzIIQYS4GN1ls(7m|z0y9BbGZyY`;)q)E4
zA_;4mSN&|{Wf!lwc-2Km7ab_v!lC?fu}YIfLVBCmT)ggL)qCOL)1(haiBo2Xom}up
zjSI?_VfkHLbagSr#ZVXBTy%HwmW#eFdbsH6f(P<_T=a6$+r^u1%3W|PN|Knyo{fx;
zMglv9qigcGXYA+VZOZyi_FxyAmZi?R`@0z6f@|ERJCT7z*k_X{L(mCB^Y;%HDAsqT
zNyA(WcQM7qRI<gzNEc&WjB_!H?42f!b}@#!(K3&VFOQcCmWCNVF}PY*Rv7PMqRT%)
z#RM13GI6nB+%nn4)eQnS+Qexr(_Bn<G1J8?7c)rzN|7(ED)kUHj}^zK3$tCcDJ#sO
zwy((}GJ1r_mt_N&i1S^%<3e$vx_H;c0vGFCtaq`{#Uc*pV!500vG2K9>|%+FE9p7M
zmW9V%jqI8xO?fZ8l)RcDrlJL^G&%2LHA{vIj7g5%%sxI%TH|7^3ulnP`2U+eB2QF8
zZ^nP0CT(!B(ZxqDU$0}6i_IK&gRq5#rPAN05p5Jc;FP<IYntXUzU6#x4;Mb9{_yO*
zY4j5pTV3pMQQ%^m3;Mbfb#u16__D8fJ0n5{GT^^<r}>-#!jfMivI|-nk%SA)#c>xW
zT<8q`UF>$Thd#lDMd{PtDV<BHu^yQ&*`%4~BZQcubH%LPLej-fR>+HwZ!giW?)u+T
zdizgZ?4>5V_{zmT7yDft>Lng=allQTM|Hmyp;3J1<IEm(@wty5^5GZ%D?jWbU;2>y
zlz24SWvDo#eIA{_*Dk(sag1v4X8c<h42u3MEfA-t<u>p;7vH-$@8U-nCtaL!amK}2
zZg6trQy-7;5b`wL&UA^<#W~7%i0}iwNAEbJBfbkG<jDXJpf0$$NI_Gv2Zs6#5`K1Z
z$;B^p1%rj(W6_JpB7E6Lk}lI5M57cp<DV;3Ke`bQZ9M$$;tyJchpHZ~x%iV#*ux_p
zuDke)Gjj1Cy`qboE^fQH<Kk~tSTEe7=ojZQ(ad=!Q@m;Pu8Vsv?z`Y?!I8^Eo>qki
z3dN>~|Imp|mnd15KXCDogn20Jr6L4Ik9;e{^Tr|`W)#ojS$9znf5sw2n0U_isE6Vn
z%6cg0;V}=7dnoCll!p=?swIUdy_CCn!b5VWz|?Yq_-i1G9;wud+|nMhf;r?5Z-6V~
zq3!KR{^St1Dv{}8c@GslRQB++hqqSeRrC;B9;Rtj^6-?0PfNAPYZ~Dj)xWMr`4)pQ
z3Dt7daG{!q>K+<<2z#jE;TaEgJk<42(?cx}&wHrt;aLyQc~CMUeDBFK$<3GIOx)G>
zUK|#uOKk@Td>dQOLwyec4?%XaCjX~hF|VJP=7DgyCZv1lHeG7qp&{!m5<^5LiA1>9
zV|>E1>qZ_fz85aBG~C2P#6xorf`=%l;34jznTJtLqD@H*UjcZjHHcXf@M$oIN51>{
zCd<Q))p<NVr5kDCp{0k`9x^?&BJnH3JQAd%{;YP+q}eIwDSEgxTjZ%4@y}O^Z9TLj
z$2|1)knJJILkAD9ddT(gU_n^&!1r!>KF(~uj~p8yyy)?YdA#J|We;PfOG~CpuXs2=
zP;BG~+4q}Mh{Qk3h<5bwhKJ6+8ocJ=buV=~xBYOulZWloB_drsboJ27LvOOkL!YaW
z9v*s9i+r3}uJU}>zjwM+Vo>T-kR=p1PkY|<K-h=kUY*MjuAhguJxug4$wPk+13Zi*
z(>x6HFv!DT4@11vJ72z9Ep;ryefsxjB11h4_b|f4Fb|0(x#tE8@$8%(uSliJ#?HMW
z5oa3hVH_J$vGelAco^&9;44zosyT!cJQOs@s&qAyu~Ar4HRqG|(qs=)NR@}V9;SMj
z=3%CXSyb{(!gO-L7a!lm1<MMx-xCimO}($_HdCDK;p}v&(BIkL%@K*r^HM?DJ6>wB
znD1fTok;7&x$k-@CrrH8apBtofkm8k5>=9T&%<I5OFS&~@Rf(JJuLIEoYV23d063L
zrH2nad_;rtu$rBC*yQ2nbZL!;SJDD&=@1$PYRr(<d1yLAT2E=tkOs_<Hjsfcq|4y|
zpKkW>frq~*WE$&2?|aB^7GOiBEgnWUP9eWk$o|;FRu9`eeB!}u7+}L$jRM;}%$_01
zG#n}?AGHk?_;5_wY~m`pS2mkz-wf&f8PW&eX6POa+Np=V?8JlR!KL|lI5$J$D0gQ_
zHcfS=<oJ|tXcS0#_`E}#J=C8@ft?<9d3a%Fie{$W9y-pHCeD;L&y+r$pSx$Kw9mr<
z51)Db*GFl;hch#!n=_?@9;(cezVL9EZD&cJdpP8mkUW-u=~H;b!xR5DkERK)&XNYt
zl8%zd!%-sNcsS<amWSK4M-RtoCLVtCaKgiP9)4m!F9g2#aFX<U_`$>cS<)%inI)a^
zaGFAyB{6+DOS%>coTZsZ0<Aa2&U<)rwsev9J6rmZ+A>?Z;KQ4-0C5&}nJxWH<Mr?h
zb#k_J*=NPd+0w4r66JDowsge<Ir9e{zK5$^0(|*ChzCB126m<e{`4n)-NRqBxLANS
zOGE=VC|t7I$8XXDM^g-Bmhg^;yL8J*luqKFhx;BLO`>=b|9JS<!$S{+lK77zo1a^1
zj?}(c<mPPYfd>vmBz=xlI0?ccKI}M0Dw;$wAAiJ$lqsLyXcTxXiE(oz((`ySrHv`7
zl6WGCQ*-mHH3=-6BR!c!$s`VJjxn(Uk|>izg(NB_QGH`fpCgq`qFfRqw4(8}K=~wC
zGWVTa!b(Xzl}ssNt+`U=WJ=-xm?J$tSNe92M21&Qa;?FdomjgQ)sv`^MD3lZvlGuG
zQ8S5cNo-G|Rua!9@iN;c@mvzmCy|y!Ac><5(`qOAfAx{NNgVsDew`#5hl9Ou)~}aD
zefIfu+Dnh6b^TGO+$Jr^$tKYviIz!(l4y`bG>I5laixC4BpR_{5;+-Z&F4ztB$}}N
zdi_Weyjy%*=d{0G4ZKu2jV1rxtlu<=j3mlGtiNYa>PGc=64#ofHD_0q(wZglf{zgI
z)*(&sAMxp|hxJ<}(K?B|B=VEUOhQbeZ4&L0*fl=w?4-1;B-$iF<oWig?3!X}*(Am<
z;f-dUN~H>O{Vb8zrPFRyOp}s$DTzyk)5PrD7n5K~dmk3Bo;Ki4{h_ay>X5{%NsLco
zLJ}Rxx;yo|b2>@9Mz$17dp(IxNmR;7d&AFmPU55c^_lIGMAsymRZctdb{b(fGP!sP
z>6t{YB!*MCN%SVelNgZ1z$E%4@m3Q3lbF{ot#1;%qmAk9B>MUI_ip6>OLlcgqbyiw
z5c}B}VBrwI!eAdRiH3%fITh1}afoOdk*};$Ba;~A&xp6et$s0$w``A2VhrV8Kgg17
zt>oBb>WcPpWa;(@k%>u6N@8si>ymuGhABzBo5TWNL#C3vB<3e^zKJl+htrdo;UhDB
zILn88Iy;Fu|HJ3{NTKJ_0^1{hbPK$b#K{h6Q>&(RoGVSbR)1j<i|F=A_LchgUn{*h
ziJhg=irlEbI*BDd&g{}8mi-T3p2P|tU+KeD|10Oc_G^-`+ouhiD-o_wVnY&}lXyRg
zjhsRxEmtqODTzHzQXDALF?Hp7ukvXhByneO;KL+-yjFjUufrex{pd$Ye4NB5{-ZO4
z(pZ6MYZ9NomBvfxb|g`d#PK9fB=LVVT?cd&)%OlXkdp9;v>#o%o6UwIn<arPB})<l
zj7aajN$<T#k=}bp1*KXL#FD8yJ3BLL!v@j>3y2i4V}t)U&p+qPx#xR#?z`{4`|iE-
zGMSxutq`vl!YPDXh&Kvxf(8`g9kB#&7UC_Y|1Z9ig*a6RhHkN^yf|;w+WTDH=|YfB
zsge3_A>QK@7{G-Xb;p-hBDIi#Q6=@{J>UK0RJ9N*R!CYQZv5@ryF%JtGnGIugdsS@
z(L$IHajX#5Lma2I4>3KTD8&0*L0ZUvbp=yfJefKvl=?v-ew><G{b%1th4{D-XPEef
z__UDUkn$BrYVly|ysjSQD06=BeNl+Bg(xMXw2X5sWlWhuTw~-E;zA)V72+~8@viUc
z$W$H|3qe{?H1#Xy+ONLfpHBT+fGdJtrTsU3<i|#*ep85VSqVp{K3z36<4@o9LVV9y
zEyOQ0o;lJte1~y9H}!`?+$_W`)~nxq@7GP8wcmeR;I~#t<osBOyR1Tg`hKFj=6m0}
zC%)X@-!78+YaxE;Iu_zL#`A>K_$2=`EmF6aNWE8x`-OPGt3V<CDn!RyzQ0-d>4(Qs
z{}FUcl~m%<VUO~^Zb>qV$tW&^xQL)d1#MN`%hP`OsgKBDHt{GSqvS*UD7yr`uQ8U9
zQC3DRmSP#nGE!vRnwVNc#^uqu<z!Tm@jn@De)B=bW31jyQhAh@@wmVh9&#$msPqt5
z7U1)yX;nGI55Cl9sb^M5)dXg<x&TjJDp6DR$|=X<x<4VKj*NOT%8yKa_MWe<jQUTf
zzfwDOOmVMSpP#+YPks9F)M4#Y8_9T5#&j7oWcXyH%IG5F85ti}PW8)ZDx;aeX)*#b
z(q)vn<KrnFjb*%WGSEcOdO!J|lF?j7fsBqaf-*8>w3m@flVtC5lO?0204)T~6m&{C
zFELxmm{&hFB4&|IKh#PM%V;eCaT@{J%4jD*&O`ptGG1!4<Ey{>uC++blaVi@gN%Mt
z^RKUvuJlT+ciTtYNk-=5sgjJRWysS~J5x_NFVtC)K1@s9lv#`)l<X>_n~YInQM$|M
zA!DG7K{9&E=p~~sb;{^1qmK+m2tO`aafF{~GNqcAEU(o}?Js-RwE?nsEs!<^d++tL
z&<&QoNFFL<n2aF|rz@HFS4a!OsZ8^OkChuPCObj~%@`@@**Ts`qh&lRV~mWk3@RCu
zWvmROj+1d_Sh)!@#>-%La(H!{_;B?ruau_9m@2~^;&+ZEO%wdImC~Flo^N}!C^l2Z
zEE(Hnl&j_i#%vkOWGt64N5))wUdDVGOJppS@gP5Sfs946cYz>YDC6^Xsn5w+H$IhM
zF?Sd9Qn{2Jm0;dV>3Pn#w)Y)UMiJ+=f~Lw?OJUmiz&B{6v`WTmdV8c-+*UoAx<&@+
zp314~Wo(eKNycWz<igaAGN!GR=v6N0<Z1pbqC3CuNhMnaCfLRZe9Yr;MmuCs$xabJ
zqf4jmk+E0CB_@}QeKPjTP-SSGU3St7GLFeOF5^WRFUdF{<DiT~G7iglnJb>;&nfDE
zMaGTHtV-d)<m^D{BL22X{?9V9j>vfXLF!N4LPuqge()gmRT;0zI8DBc*JZrHxjaZc
zCF6vQyG8tOGB1QSGEWN3=G#U5RQr~U5=s6W*@1UtyespD0J5`_etMAlo{TBkNuwX6
z#@<TeSTfh5REEOgIPQZ~_i9*|VaWKDA@?AarbcC0GUCE8QwB|n2^(m<EyE#)4q*(i
zXoLd^86Pc8+1D+^v0i8uc%NfENG+0;^%31DCjN=gQ*(XN88PCr>;MO)ou!u*|BQ<+
z;|m#QxxSBPTwwhdQ&_uFIxpi(fhX=SM&ZfJihEvqka|%liLOifO2!o#KghT#<Eo6W
zWn2^Xa|-)cO5e!nUMk~TUQ>$rPpp)_6SMd_$<MRbWqdCrsqKc0Q>_AI-ujOt<7XMS
z#kh9_{gE2NNi^WDXg;wd<rf*h%J^HxKQf{#rQc-yDNOoZ2>c<VQ8;i<#`WAz>_uuV
zFaDSC34P9Gnh*}q1OLjnxKg^$EMS6UdmP$XR6#KXY7ANo#T7iFV2y#b21+O>so<!J
zV=5k1P)fmb3Kl6StstY9ud;$F3d$%bs~}lHih^<qpdj{2$F$zT#^Xcj%R;$h0*@)E
zB;?C0VDoW7D+tPFMFlfTd17}~O4Rv31yvPvRM1I5H3iib1ld<X4Fxq7)K}0zLHkmn
z1%Kw$Qczn#<7XmID5$4ka?fBL1)mQIwqEJ0tAMoU#;`mkP=1xvP(dRF?+yw!R`8?(
zp8~&vGzI6b`!bLFQWZ>nCa5QJUnm|9D2U7ov6-&m`(+{G)K${<n>kGsG*!?{!BYx<
zoQO8vBXZYZVYkS}xuG2|XR&#Hm@lNDg@SAaVVdzwWY>V;o`!ju3c7WOWGNtSsi2hr
z|4a_hyw<d;Pq3YW9L{K!)J8#D1zRTugM$O)e|X3jQE+peFOO&GD+SL^_YGPl4S3l%
zc3vP~K?el|3g%7<{?s7Sd3w<39c<Jq*ja(3V2pyX3Z7QbMZo|C0~I`@psRwu^x>pn
zHwE1ln3Dp16!cKglj}Y>*jvGZiNP)3`g$pNaLvb~{lWnGGe`JNO$|}FpMw7#_Vwpt
zt&#>G_2m!fG>8gs_(m!irC_jvAqs{n*mynXj~DWWE6}F~hA|RWga}3`Ad|<ARnlk$
z^vt9EgKheHE_znMiNzs;aSFyOn4^Fnot&UxA{Rx$G`{DGD@(_Y&zr&k+wPk=HgtS;
zz#Qk>**8eZw4z~sR$w}<;-d8O{WKx4WNK)p0@7IuW()8ibFPAU3Qmv4d<6@+h-E_y
z7-=)SZ(M%Sy4i-&!OF*qEv7t!Tt#UWOBFn?AWBCmSf*gPf)^CLs9=SHl?pb~P6ewJ
ztX8l=!KGDF!7Sez1>ZWkYZZ)J?_-mAo#3ojaJ^jad#j|v9>I;A?~A@o3Vxj&B-pB8
zn}S}G0(%r}r#-zQJzD4O<iuwLcW@o&dXZ4^LB=ix=MVUHD|qi><mUOvUIo9clJ+Us
zFZ!+>jXrZbPo5KaNx=aHZz?#c;Glw+nYjv%DR@P}Aq9sO9AV@a3D;UJ4Or|Ow=6{0
zor!l^ywms6mb_1g2ahXwRl#fY<Z5ZqYU#+2Ij<{dQrPK)!jH?~z0V@#oaq)IXYn=P
zDZYj5&z!dvyrbYP1=<1MY39glojWY`5&twd@U8+`!Hy4n?<ruj=8rjr3a)+JfmmV4
zv5Tk)OnF_w;?+`G@mzz}F3#hzd$kl(_;oOxS8zc=T!F3NQw5(Xa1^)-K2k99lrO;r
zS}pY+9vt{ogy4MzA1Hi?6dRul?cAC7NHnj}iu{iiT>UKfjDm}+rQcRdpD3uXMryo9
z`kZOCM*8u4-&qA;2)uo~??28t1z#%QDIO#L%(=+*WdJL<r{J=JuN3^i#8hyFniYJ<
zNh$bR!8crMkyd*b1O}{;-rwn)dcZqsPY+xd%XE3I?|Zsyefo#<LpK;jYx1Y8ky^Z%
zcT2%-#sk+>!5xlEcPaRpHFIFz>NV0`j`E6c_xRB9iNQ@X15;k|jog{_3)k_Z4lD@2
zGtu7dbo+Vl^Q`8?V6`53e=7J(!M_UbD@dIfVix~RxAgS=Luan^bwFhER^I~!Nh*q~
zctk}J6{&}OMOCzz92nRmcyNtWOvM|$f;^NpQVA6$Rb;*6dsM~tSwVgiw(8U%o98&e
zfxa>-%BtwBLQ;{eB1J_b6;G-trvfT!s;H&%>y0R{q6)!U>2cMoZ#*ihsPGV*MrU#=
ziDqR%e_SK|PeoM~)l>{S-noW~{%a+6uTE3fN|CkFqP5bBSYB-vP4DN{RWV?0{u3%#
z2I~k)z<N?oMST^k@^c%gcx#WZp^9ElNA`XZVZ7~IEBUBOMJA`F!mlDtMNsuhRzO9%
zig(sZ%{cKH!Nw{MC1*5Mv7)c9iOPQgcW(TaZ%_Z=h}ZI-Qqf#Uwj0rj@?&TCGE{^(
z%A`QSwBXII!4@jIP7N@}TdHWKqOFQ{Dza6CY1pw``g}=|aBCGGPY$$EL0qLE^4a(h
z&C5{{QIV%2pV!>}!S*V0Rn*;|yJk{=&9VD^&$NhiP|>=NucL}iDhdR?cp*Yg=f$Bz
zlY+FNaGLLF6<t(JS207yGc-oUNEM@0bW_n?MPE)wMGqA{RWzOv>`lv6ygetx>)NfE
zfsdyLiTkKHvsU8S?K^$9)=K?V3{o+eVY5yepkkl^HP%UN4q+IK?=(!saMjxw3{~;e
zI*D^%S~Se&f|0%vDmt!{?!W09t>Re~YWK)g6=PJ4RWV7$WEJC7j92k_|KJ1_-}Va(
zTPHEtIFWhlq=_mn?(pqgCrwdNy?f;PiE?kOldMIauc&95(6(kmXr_u;D%Po3uVS`}
zIVu*@u`1@On5W`7mh=UImPw)cD(>|OE>y8VMd5(pkp6iLs^&97cl+gW$FfL8o$i6#
zV}eUnJg;Iom!6R@F)-}8z-LmqWi)kusM#JLkClur6|2RHztttUhGEtvxRz=1TwqC;
zATdif@dgzeRqR!<PsJt`n^o*ku~Wqs6{GtEx2o8t;`XG_&3-{1XQu=fO%82W@!M1n
z>{9XRw7_l^)20Om_74*8VaEx+=X(S>_x&nfP;pSj%PL+}@sf%IDrVM?P~hmyz#}sQ
z{e}b?iuGp&USSxkC^0>7gz+%W7c3DTvLJ9+1!;?^f$%}!)H0#tDqdwc>FBKEH5IQ@
zm4;aw-cWHuMI{ZDHN2_fq>692Kq^jgzA6$b-dAy&k)y&;5oJcGc$bb<Av3n82N~G!
zsd#Nc=>2sPn+gN_s83a)2_`Gpk%^&y%7%22xmy+nhMe=6jH`h`OGR8oOa)6;*8W_6
zdwS7x-o@Hh;Rye@9Ob!C)l<3W^{hrULLaF3P{mml=Tv;ep;dgwaAE+f_=Ij$k<%mi
z{Z8M-MfpiBBd4~9>yHR_oD`zM2NQ!|u+F@k#jTO~vF}S2=T%%%aaqL$6;~#PE;8na
z1-a|^#K@{yA&(dCub4860#{UA6{pB~wo7n#m*Cf|drN#gZY=kGr{bE5e^mUd;<}3O
zRs5pjR~0u@{Gj5FiXVA)k?*F8TMPiwnSo}rL);6EE9}IrENj|b)!T9X#7ecww^rff
zuM(R-b7~9oiyrs=rs8)Me=wLC<THaCCMC;#gOED~W(WRM@t2CfY1>gBw-BE!4xMGV
z?#iT|`zjtVo;5tGAxT3K4aGDR*Dx#?xltZPHB_1%cx=7&&-TubXx`rP$@NkR4Ur)}
zZsgjpm;Bd#r8Jb*01c06XjLOrMnhQ*$r@UI8ELjCl%k=Wh9T>vDj5-~>iJ`Ym%rEN
z2g+;UrniEIiUK??XuCghdNdDn+qUdnq~*WKRW$rhLk@@2P*p=U4NWvO)lgkS4GncQ
z)YDK?LoE$YXt*;akU!MN;(TIRsI~_6?@0DbzG5SSbu=#l>(-0Z*U&(NPeZDP=N9@J
zYG|b4NezR}=Xkr^33(qb2<+SAW8(WYq-jXk&{)H=DFOcF^5@39fCdVjdLgewkG!6B
zBdrhlD(~_&)9@5$tsz@Oa}7ZaEi`0m$j}hdFlAVfiCJ%2fch7H>*JtVns?>B{z_I$
zYCGg3&MFl?(bE^!&{{)V4ed0TXZdufuMHDzM35VUN9N^8yL{x7tln`(e_wkIx%8)o
zp&Ifu<ZI}up_hgZ8VWQ>8lKkBk?u;)>!hKx0N+jtrZnkzx>02Q%)pv4fi4=J(a=pp
zcM9ywn>{<g3r$xI{T2q!%?Q>~IxXxL+_K2mL&KuhdEp--y*2dFFhIjVdj6WPFC{hf
z*Dz*QVA_eizHVfF``q@QML3s1Vs?WW0Nn#@_UW2et4pwCm*6lB!!=CQFiFD*4I?#t
zJ0mbo!zc}-sdIb&7!A|^h)ft4`h7z1Sq*D$dVAWRmW0M?-u8egIbOq(^%8qc;Pm?k
z2_|dUxn7#8LI1jdIXH!C7y3r+^07IM+BD1%ryBPQ>g%N*w{m7{n8R^3e8(`>Fi*of
z8s60~U&8_o`!&3vVIc!U!+H%HICl+;HLRvF99qLtMuLXr-ugzK*RbvJ++WvA7uQQ{
zuF$ZO!}a&AVlZ!zW>m^;wn4htrxQ7El+Jx-gS1uy17Mwo7e9#*@It(3R&b++O&WG^
z78*8FfHS39hTOQ&@WmmsRfHRc?HVdvj^w`GspIJ2^bOM88<Ay8L%THW(Xf{>uspPz
z)=mqw^hcI=4IW6#J=it4k3l{^K=7i5mo&Vp;WZ5hG#u1$Ov7;vFKc*3!x0TfHCz}S
zJfz_;WABi!f63gvMZ%0U?qnF)xqX5y<_GTOMRpGiHk%cs&-sVv>x@YaZ)rHqoZ9I-
z!TPV^BsDw}v`%-*Ses|B44u-vKWEM@$#45nhqpx}aLPw|dmDyDALhKLp^%ZU;Uf*Q
z21P?mgGK)@_NiPi4Tgq>J%SoDx=iTBN5WAJj31LWj|wiG73geay|Xo!4vcHCHMklQ
z8XQ)GRuS%ntYMva>aD54j=h5KGZ_a5KG3jkgT$eUzn>iVSi>0&=QMn&;S&v?YWQ5k
z7aI8Y>}L$}S%EwA0!_vQYEBJ|pAc#_Es*kVr?VO+ObZ@e7&uRNX}GN6D-9Pl6zvz}
z!9iCy%ezE>CPxlD9poRvS2SGJ@HMOGW*^7p!8B(8f5S33KD4`G<eG--8mj2{pU$tK
z;s&d(jv_jK&~Q`3uNr>Sa7)8&4R<yCq~YTtk20I?X!w!!s!y;=-{9jjLd{19f7b8|
z<MV(o=U~<k-2z#20&k5EkpH`eKQ#Q!a!RW<NcS}Sso^gc_HMyd69Z{e0zb?QO_~z8
zuq5=ahWi>GXy{TU(&59%u|IPOhWPSGH@)4dsE%Sfl69o$D6ZoX9i?=X)=@%-(mhyG
z$D=xa9`AX8`_<p~WpIv@y9UeXxK$~std8f$cul#V&)6V6=;bS?gMX(#rlY*h_ihEC
zdv|y)X5~Guqk@h~Ix6cpw?V3?qff0o?rFK1*)t>X^6!y9N=3N8Z8SbmRYx@)K^+-7
zs_UphJvw|kYU-$^qrQ#?I%?~9LdVhy9qZ|+L*pj~pB&Svu8zOP1*qZI4HEB@e3qS;
zvQcWNgLe!X>F6{$uV_+;7M8IJh*Nd=bu`w|M90%Z)6;YWbfoK8(964;bHl*>ClBsV
zn(An#<0&1@b?~pGMKeO&aB_pnC^~#5@?J%JKP4}uqlJ$4I&yVn>d4a3T1Oilvj+xS
z>S(1STgL~>Lk;Ez!nCAsMzt|s_a_&I+CG=pR!2J>Wv2xqI=<=@$<ZMPrOJBbwP``#
zzF1u*^h>W`o{oGS^*+ui(9wZwG%&~udZ~TIYtHp?XLa%KNJkxvipCEzBu+<1l7S)y
zy6AXD#|a&8>gcMY8)v6up^ol4dgypo#~2+wb@bxAbPVFUObzzd(N{-5F2Q(TA3^V3
z^j$N3{dEk`5n1DVa--CKLZIwl5&l^^SjP|@!*z_%5x(Rr<K#7M5gDpum=1zA8>NFS
zA|rK-(ot@*uibaPlxf~wruD@mqv??15rVNg#_5=<W15cf-bw{0>X@Ws0#oLikFmi&
z!?|mntb3cQDLR-G-0JZ1!QJC@h88`nV-CID$2U{QECz6uVDq)f9Y4#NGbcnkm*$;`
z%+oPn2RD1%NdGx8#LY0p_=m=GIu_~Jqhqg*#X6Sg*q~!0<BCzOW0j88I+p2Ju49Fc
zl{|K3K3Eu-`gD+gO+3;dk2^zNQim3ctkJPn$9mn{vBwq$*6G+a*}K8QWMOS7Iypf8
zCLNn~?BppOTXbyIu|vn(eY`N+reiyq6MWqHb9cwTLHOrD)}@?#y@Msogt!o_2D^3i
z-YAWq8rr90zmCH?j_7zn$BQ}+=s2i@+y0kyY}=Q+Z)}J+4H|tNd0EFRT$kyALpt(i
zd4I)l<9cd>cabIYsE%XY?K4`c7UKozxQ<tK@bAZ3C31P6;R)U-=;eD|#~V7nS?{|)
zC&W}`Z9l2wl#Z{-WW4D(t>b+LHYcLv9UW1wppJKSyvNd^Llu)M)V<rYvJTz@nX*yh
zwVunmFeOFPq3bYoXsdj@am4+9)1^Kh6O2eqho!^T;V`v>5he?5j_Wx4SW5D&0OeiI
z=%_EjOqmj>F(<TYqeM4;sN*BXu#PWve5~V)j?Z;`q2m*V$4cL)IzH2}FFkK(Ew9O&
zGu%aBLg=h8jQ3A?5ofy5$n!cbFcWoLVUGNjd{M_G%COwc37l~=csF3f03YKyr)Tgg
zJugb%;f>PgZ6jay34W{NI~~92_+7^}9oKdIB8tZMI&SE=qvJ=`e;qej%@+D@vsN_B
zJN~>c_gc;^hTqiC%`qYJ`%ekn)$x;vA}&2+j1f!lv+i9NstpX5do1!RmGtu})gL<U
zF^uO27)yULT*rm}*6|N3A@iCQdwP(Ze>suqzWc23+kL^V0fyNF-P@G%;HA8%fno-_
z8R%}HxPeCuG&RtS_x}x)H1N2A3I-U8j~Xa#pp3w!4DTK$|L`em@Rd{G?Z@&4QVefW
z+y}xyIRi(h26)`u=)3ex;4uS*Cq1zGT2B7oITa05GEm<@0|S)}R54J4eM!3p|7W0@
zf$9dT8ejzK8zt6B?!&oV;k_5Gek}vF4Lo6>j)C82d4C$;9unkD`{qt=T?6$D?99rQ
z(mFC=2)KJ}XrPgSGy?$xPa5zUNHyR$z?(TG2m3e$Zh*O_kBAr}NH_3uzer;PO*s9*
zz7}1Aj5OY{sl(e}_1iyXpt*rI2HF}38ptq^Z6ItQWT1tCmIjvf3BLB7ujB+@rh)MT
zg6B3$Sppn;vSTX)Tv=8FQf`=A8{nh}c<}C1I|Dfe3Ji2K5HZl66Z|WZZ-Dm`at(eu
z5RBO3D|~Dc@Gs&H2AH<<zR2Z;pp${l2A(nS{MdkGcz@<U&EiiFj|j4Q&=|U|w;AdC
zN6wB3!LA1WDBtn!MyZE^o(AR_m~Wt$f!+otaVZV-G0@k*Py@pZl-(rtGcdrwKpJmw
z7wzL8dc2iA$iQHlIw{m=lSEe!F}&M`%%Fywq}H3H;RZ$+7-L|pfsqDA85nKgSuWi4
z0RIf<9}&YA=d+&kKMVV}`FOz{M;961e<CJ|MW0}JchUd5)AGq~A6IHz!^ji^|LdGS
z+rS*U!oW06)4&V^GYwoU5@t<c;PG#$ttk;UXHieR_5^boNOL=LL(4xmc-0_YU|^wv
z<qY*tbDlG>$iPzi&EOl!yc=#y7=E)u+{@8v1l$#KYr2e!+r_JX#N6ks5PjKwrGZuS
z!?m2%23l_ne|R*Hu2^SaJsoJGpNS0yHqy>0W<;^cz-BI)fm;T)7}#n+H((gpW?;L4
zR}H*oU<aeuz>5Z6GQgiB?J}^}03QkN5en`$F#Orb9<ECu%;rA9-!JG3f>LbqCh35I
zg9eTpSh-1}*vkeE3stWeVDpfHQ&T$gN9cSw`3N&qbmYUy$HZ9*@K@ygEin5UQ#-$I
z;3VZa*%rY!XzJ9?Ck(tP0Dt<F9|*r?;IskRfMVcn+AMm#Cse&7dcA9Szfxp(YA)n5
z-SAPfDr_Ur44|Oc6GI}6l`v(Z222B&3|ux4GrXS~eQe+iEi@1}z&C5z1`<q!U<R>c
zz!gklzL@2G10NXpP@MgU^<+|*hjAg8HYvPkbL11D?VN!x4SXu_X9hku@CBnZBY0L&
z4oCB-JkX%vJbjoETsA6l(ZB^xuzmrXlqCIgY~(9)Hc8(Y_}0J`F3ObfRmRx)V96no
zuUQ*6b@ZmWHu4>-$B@YP2CfM}vFn`I^ASq^{7u#k13wrbV3WeP4cuXMiozGgj|T3t
z>PAr^ik~RMf*eJOD1KqdWe#Qq9~k(JrH@(6;h2Nt!+dO>`U(Ct@Rxyq4cs^Iw{ZBs
zlfwTPaQqqk6;I}_j{NB^g=t}f3&9}^BS}#diK1u}#KohYa)M$}@aJFzl&m-`Qc|2P
z6Gho5%4c<YG>Uzn21`Zp(aw&gquvwmZ1PBsqFfXZGAZILmE4>jp<$0j!JnA%*Bs@e
zUJUS!2Nk2<ZyT#eQ6q{<QB;ni3I~m%s^Dk82)?VWXoG@ai;QZ5Lt%ET8Rdt2P>(L!
zB-M`Mi74tsQ8$XSo20C1k!n*SNuwfdB?$*mr9lBX^`l@6G>D>M6l^vUP3j>gO^w1I
zML*6uinJ&KQM8VtP1O6vO?ni~qIfC_{s_Hs6iuQizL}pT4L22M$!s1)Fp5@DWJi$^
zMJS3EQDjEJU$0l&EPXdRLKz-eWNwyP3O(#jOlCNW!xO?!JdS$|up2(|+eXnY3Mq=G
zqsWOO5=Dn73Pj)bg62h$D*!d{rx~RAQQS!_Am|uH^{NF_+ez3)+*vr8L(Kmuvr81u
zMA0*fUc!d1QFIr2y3rv*o?<<OhLp(>TEc1e7W}?ZkkdzCf?02NqU3-m21YSHiV0B+
ziehjSBcm7<1>d$YB#L2C43C1p^BNjOm(AV_Rq|&==xY8_ctjMxE%X+MbaWJBqac1Z
ziZM~|b%Mlv3mlaYjEj1|(;u~2ni$2TD5gZcd|$X(ddyeAA9zmYTJ(^Z+EWF8nxOO{
zIWwb}6~!k}d>X~<DCR`*ViYe$F*k~NQ5*?`cSkWl%GY~ha}-;mSQy1~QLKn!Wfc6u
z?;=5$MzL6cB~hGSp0m%Z9@6tsEECN)H%rR}ATzO9S{23WDAq@@A&NDk*Sd#i*GA#V
zln;$so<quGqY&5>^?pZ5J()8jmp4mWqu3V3F1o96`|Z3yaA{^nb_%+K`Mz1=)X3@9
zDubAmv)B^_UsAD`IVb?}egR%!_HFUrUvVIcgHdQv=ux~J#Vb*qjN()jhoayw!H-Ar
zD#MQsp$Fzm<Qyef5;+$2UODo^kPzu>QN98iC!%<hF*7>yhUmz58}hdg=KA7wCr3C1
zzA=NZ;CqYnje<Y$SD4_;pjDCgq9|m{aNG~QAO63~g0@8>V8{PBaulV<Mkq<9%5>h{
zkuR0vDI*Fy3MYza6sFJ_V{8aO8H<Uz#q$O`{>Jwr(wV~kkE3`$iVs+AqTWj|J`_%-
zX3F#y@-&;%<Z(ufHFkgavnW1i4KY#Q#1||bw8uml6X&A%GK#w_xlz7}0vDqAnvSKP
z(+e)L6psyGj^dJNj^83J<)osx62;_d1(+VWO5ytf9&COa#dlHs5XH?Xu0?S@iW}^;
zMfzUI@Q3FV%T8`hz>cT4NNnC>F0-Zyf!i#h(<6y3(*2JzDaNx`w@5!T7+9rE6f^NF
zQz;4t!#yGSyXeI(f3OxMw<chhKZO8g{$e%>{Le$qzfs(Oh#v@$WTJ@aDa>nF@E<L1
zqNM5lK=={Ui%c?0nBLntDDbG@-`gUUGLbVhD|xF_)<m+2swS$LNHIaTKW?IeiE<`3
z{vL#h$An~gifxssv%yxWpo>&dXs%?UvI(vldsQ)UqPl0m|4h%BzfOwK0|Ydnx)81{
zXblrJ1t7nc38oT3&Q|FO(|b=>9TRm;FP#}G%+LlV8kz{1Xkns}i6>1oHqpfNa?mGe
zx`|X1eiI!Fl9})1r<n+tUhWf93F&~XQd1MnOnlP1Q*#qnzb!X+tMrtKTNy#VmV`1v
z6B#Cmd5V;;p35}(5j#jGo;K0aL@SeTM@Kso*{1hy77DaBK^hj6oHi8O){%gm91{`I
z>}aCBiCh!;COQbt&aD!~^4M#umkS?`37?=dP5eGNd~I7tGCK*e&Vo|X-70kv&hN_g
z6;69bEFTx5y8t~+^fJ-I1Xr`;@Ca9jl+o4OL?0pW@2<|x$9l2R-^2heZVY{57-(XU
zi62eeH8I%45EJj1c-O>G6T?ibG_lIWa1$d;%ri0H#7GmPOiVH{nP%`oI1|s(U8eUi
zVZZF8u_nfu-ZOX;OnjG-#YflTtpejskajKNFH*bMMALgr(OwvwVq&U^875|OQbqmK
zOz)Y)pB5LJE}G=5%*dK$Vz!C794k98sk8U|-W*zcJIE$!(Uw_1W@RlfvCzcxCYI5Y
z*@5RwEH?2^cHnxE$Rg8w5b>L>(r;U(C7fUp|58DDb~yvj%{h>rv_i<xa`ydoRPt&Q
zYfKz4anQtC6YEUuGO^pldT#zrY&EgX1RuTIXkwFz&CH8!5{KXum@7vo^Vni~k212k
z-Gq{zlv65W2csp)zwLH#rx>WtHi?efV`8s~mrPvCPTD6X{(_07qm%awnNdX|2TEn|
zX~`E&@0rP`wn^9a70cZwy-dfNc+JG?CJvc6Y~q;cdqhmC=Qio6$!(awZM+2i&!;*k
zZj+9ic+~^}k0slrH<*<sPBB@SYoZtRpA<IJImEvG#ZGg9gc%oF1!@-Y^I69~f?0gT
z@jVlTCN7w`XhP=fm_a5!HKCf&nDr(;GNGF=OgJW76HyZ;*PVVY;y)e^#7tP?Am-w3
z*(Q<N;w+U@=95P=62kruOi<>1VFP2pTR|u1V-alZGHz%x?L5PH4hQ&zYJ69@&rF<U
z!8h@_kYRLv!JvJRS|K~Y__VXKz7$>>ot1T-ah~NVykz1sbDyP2IDuWhGI2$WUa@tc
z@Op`=N&at4d~4zdI;W`rJFyVg8DrUjYXZL$%%T}wvhNw6r7~`as373ump55VOx!lT
zM@H|MxW3MNVs-%^J>>(dCVpm3i=kc&zp(hTGRN>}48Jk!P5f)(zKK6f@Cn{OP5fno
z&%xefjE(lD{I^iZM`sUilm0QihhzCHD~EVsB8ks=#=KDBQ6vVsrC1C_1!vmw;tQGx
zN3{w(A~+>t;PGctgu<m_C>=w^7%Ih3CWf*xl#B5j;`k`ZUu%D{<QV9~l$e*Ww1jc{
zn9xum=7lu7myh9b!FhX|#3q@{(8@7XiJ@8y)noWy%zHMtDo0H6yG8t`c9r83&O=)T
zYQ#`esI47?TB~GUcA!XhpjOPw);p~N9PWu2>WEPmhXd|5seTL%*o>iF3=Lyw6hreE
zf-yWPl=x#vi@_&GNfngCZOu*!#E=;dG>hRYCS44TV`w5c;hG(q#=tKy(V47KY(7Oh
zw@K|quw@9Fvtno&Lnww8F)ybm#))K#Q=DllF-q$g1}rPSbzM@na6&kSSCjn3wo7e<
z80EP-IWa_H=nz9e4DDmc6&>?q_@qdL!JH>LQvb63#i(}B{$d?t=)@6Y=oW*O9q1fG
zml&9X#8M1T)1})b9&A1%_&e4m@oaalV-bI^m=~XXIJ`#;J!4+YB$LYN!@OD@`o_>N
zhKVsuilKiD_tqs1iD9Vl`2b<?z!(NSw0tl_qNtx`hbuCSI2;%)qGEUqBLo;J=qTZT
zMhj!(S=yZB9}~ma7{&=aLD2Dn{+Z<GSuNXp1bT7|Q)1X1!=4zX#xO00l`*V}VR{TR
zVwfMp0<O+>X=V(wW0)gcG>aa4)GLYXK9_@vc@fWxfeTHrP+0yvJrKilF)WH<F&&<f
zwN&tz2+UcKLw9j$=oZe79hb+j;$h5m&rVuRT(;cW7}mwGhViytq8mB8^)YOSVGD;7
zsy4=uv#dCa3>9vo{oO;G1^;YzV4E0mM+`e-*e)<fp=Mq+nq_3M%dQyoOz+CLH->#N
zycxsE81~2TLJY?lLc*9A#eyD+;iVW3#BeZ%mt%NEoT3}sWo6as>@5wIRIl0La12L;
zJWI{d7>>of+Q>!c9D8n;m`$$<Gfu?tIwO!*ffzc^FIHo{=Qp~P-XJ|iug36B3~zCu
zM>9@~m1W;i+ogB8IuB9{1$|FYHeXnmB*(l<s=`@x3sI6+c0C4zS?R#%AR2?oQ*rE%
zBgSCn>@2)$As&Ox<g(Dpf)j(w+GXJp3yB!skKvmbzU7L?@L>#J#&DjMs$%$~7|t*N
z1pZi1rGEJJdVx=4_&kO$V)!hEZQo`lc7`Z?HpcH^h1=E&pNsMJ*I8uF-!74VA%=@F
zT#4ao3}jvsdM*nYp8ZMyDq)vOC&OQ}yj)57YF|1zr>~@Z7sIs}evjdg7_QU3^k)n|
zv(m=!LkvGMty*Pm+b-RVVMopI?HFzeaD2PO<{g0vsQIqI1on367uq>GotE6%E)o37
ztAOB86$S3mycq7s@IV;$R}BAf`RWDARSN&jWoj5^mw#jMUrAy2kqyF07K&IXN;mEd
zRZ1>NNeV0};vK~Vlc0o!k`@|RXlUV43#BYnvG6|&r7e`P@R)`27Rp*kw)g~NdO6E8
zZ^Y#kDon9JSNu091pm<;(&H8?Sg35_`Bqt!uV{H5t0ekzbaL2{8py0_p_+x77HWyJ
z)dj5~=zm6XQnf8SVWFPo&9RP!3AMs?1#T&pl|$6oA=S5#xkI8rw;fU=3r`BMkOiNG
zR13{4JY~Tz>`AxK*zzJL%|ZuXIAB4(P=cU|g{BtND=AdSW6@;~&<2{?Ty)G3z6x4k
zfPEyKOyL${piB!{bX0Q5nU_;&13|Whu!Tt$CR=E2p^b&!7W!CdYoVQm&K4vKITj)o
z@@WS7wZiQ!<XXtHuy=6s$_phpH1%_`^mFs%k_8rOB$w=Dp`(SD?*(W8DaWGZ(-yi|
z=w_k2g`4L~&|sc=M%dZa;_GLnk#)m8Ec6sBRUx_Lq01?~ENt8%X%|YEEej~z*FrxF
zLo5sx)9G(vpztuAKj6QxIqBupAPa*9pP0@WW?{I6u@=Tz7$K}0X<?KF_i_q#j<&qK
z<1C)F_))wtBjjY`j4>8SCtgVzFVs%7z==!{m>!_z%vN%ySeR;InT6#RrdgP7VS$B(
z7G_vpc+a-@krd1nn9W%hzdaYGJ#)n}ku%@IJPYp*PX4lG7Mot44o)U`PRwqxg+&5z
zprXkomsnWJj$&Sizv;}Wkx$_j7FJr=ZDEgvRTfrT*vc7MSYu(Wg-sSVTUcjdz2znN
z1`+w30?P}hOwLBZKfJ@sUoy8?Fn37g)1>VbJ{jI=VV8v+q9ZM&izw+_P9doAdGcNh
z`{+^&uUOb`;RT`XB?~VKXR<pj<UwKTJRr^<6!h<9>4z*Fws2HPemXdr0u(zUn*NI6
zpDKio2~5jh<E$+dkK>Uz-mq|j@nhkZg*UlOti~2>3#Tl+C6-CCa9RxUu2|W(>3`w0
zE0<HQ*7J<vEZ(zFD1uoQt3y6bRV`>1bRle5h>Ap`lRG4rG%e7cm{>SU5?jJK1P%kq
z!g&i97#_laGZsFv@V<o)EPTlHNiO-Z=uW?VBnBm5M|$8>3!hmyC(`_L;o&cY0OOgX
zaGB1E=8_s=)`2fAa8U>@TDWB4TMOTb30}5v#llr)jfhWbW_*4vbbcdrvhJ}L1COWP
zUzXl7x#Tqq*M&*n3wpysiLX+4md6jG3j_7Gg*z7R^Sbs`3Y$M#xJRABp1bU2;b(z=
z5%hNpzY0K`e-q9p_(O0wI`Ln^o_|C<|1A=MW>D?F76v`viR0G&Joy2Kj-yE2D_lH^
z2~bqf0hd!)WXLQLN69$a#gP-oqj8jqBN#_U9HrwZ6Gyc;s>e|_j^sEh#8ENs)z6eT
z5XWP2l#9c=%8X9`?}}DF?p<4XX?t7%8bf}ixOd4IJrR`!lekJ8|BItin}V%*1y$qV
zrRt?v4m;L}qh=ibIMU*%MdhsjaXb;n#@gWv%%+p!I&oaC5w08eY9^cYM3bEQ0yK!D
zp#Y5peNs@Lpp;1!fTIWENROjg98U?u8pqKj4lZJiMqWZSjpM}{Vak8kF#Lg;)0~n|
zc&?*w=ie>}#qrk-Uz@mhJ!&B^yJQNG6-P?}S_zsRM>vkw0=LkLvDbf;2DIh4C&QIX
zha+*ck7H6CljF#ZBQK6#arBNOKaLJ@JQGLPI0}T3o#N;mN5{BVaNHi@-*!k+98Z6n
zNjtj`{5QuQVRDjpO2=Ci@ZhO#ada1_dc+}rmC|yjL}t%8>I={(j=ph>iDPUW{o?2!
z$DlX{$1xxdx`L|clYzoB-atJ(=de5L$&fgP#=XKmOwi$ivN?jmAn+(bM?d60OU*ka
z3XF?md>piGg0PBV>|9BqLng*CbEmXvr$jm>j;V31j$=(6)8d#O$NV@J#4&?1am<N(
zdw^NOC$ohcscjyM-p>CowsYf{7YD!X&V#2G#_?Pn%i>rb$0EUB635aw7RM3YDN*LU
zpwBa~%XwYyiYCE|I93Vym4cSo<q7kcRi|KW9P8rP8ON?T*2l3Sj$gwC+Zm;CY!bp-
z<JcU>7P@hl)O?r3F2m~-P(Pcb+u~?d#M84wbff`f?iL;C;k^RviGy7@98WQFUSLed
z@o^ky;@Eq`_fj0M#BoUA192P_fc%%)t5TpVN*<2m2y;9RHIAc<rCrkY%7M4yI7a8k
z@ha0WjyK~t$uN$CrxxszPH;x=WxXNj;9b%OC-ceYv2&MniU-sGL_WdkINpxqoj9B-
zf%gP`S5P+JtQ;teBe6@8A9A)=321TXY{ucnVbJIF(z%p)9Hto8V!_!h-Pt9@;vnU4
zwRTJ7G)@iJaggTcc1kb;neS^l?%Gr?v|H-BTl#=ev|IX6P=b#bv<<QdK8fSgIA+_J
zW8<?pK98f0jk-3zh~q3n#YPbu=i>O11t*T%ah#9i0_XB#<hwX7#*zJc<f}NY#8JLZ
z;8Gm>DrQ|~4%QA3T#e)0>ydBb_%@EO>G>Nz9zDxu-TBF1YC(t7CqnCXOV{GK9><==
z;qMvtaePxX?S^QQGj>V)n~a$s{5)QNHF778ALIBfj^E?B8^=#{Y0b1>8Q3+`erAOK
zkVWu|0G~8W+fzC1iDv0XV;O(MaW9U4<G9ZX%&NjgES2^TtL69YE4&l>TQq4^+lJ|X
zzYzJNar)+;Gn40pA29xpM|e=CsEuMa%G-F{MsXXD*eGiw*+vN)C2gFplUCZsqc;An
zn_kLBpDJlQh-aS;5tOm{x%SZA!D-Ehq@~y>XCtM0+OO5pp01Mx8;{ZF2P3ObhS($}
zu3)30jjA@P*{DQ;w?g-8q*bx;!NT;)HYS($l-H~s_@9m2P1F0QrQ0>qs@te(qn3>t
zHrV9E@16|RwsB;)^n{HM>ts#b8Mu3|MBeQ1!TBBP*{E-$vkl2c0~-x(1Z`y4Xk_C_
z8%=C*b$m8bZ3Jv|Y>>voZzE0M^@F|Uf1Gq1jcw%o;3sq1&zYo6Z8Wp-l#LauIyATO
zj6c1WKb;`tPyhS-aL7gr8xb4rZDiWWveDW`8yhWcw6YPlv1Cg7*G`8{HA>6o#H*&U
z`BH@}9*rudwdDlcbeLEt(2fo{-r=9^0n!{BU)2d*ozy<pMxKoV8)xdL<=g1jIKAeq
za0eTk>jsE<1e>IHq=s2x3Um?zSL<gyZKI2gAvT86R2yAwFP;b3=w_q4jlMQ!q^0+u
zH*ECgn%cNDB(3Wm|A}LfUN%NlP5ZS}7C9x-)7QTpVsqfzp?)^{+gLaxt;M??$eF&p
z{Xj-Yt*k-bf@Tc1vA9+m!7v-cZH%)qo_cIN_iyHC8_(JpX`@Hwv{8cAYMOqvLfRNH
z*;0RGj<r$ysdP?%L{83v2I&(hKPYXYjY(p-^8?c++n8cwI&Bt`Q*BJM@p1k1V@=Z8
zaY5BAuY0?knKowGAd{!uYFTqzcBuVF=3E=|C`|9!m~Uf&jW=wZpk~@;W4nzVHWtx%
z8|!Us;4;}*YGaj+)i$2Dv5cWoJbR^}%WWJSn6^UrN8c@VAC$)I<H6+G{+)jfl|(bv
z*=XLO!&*Tz8>R1vW)wdi+Gyj=N@<&IY_aiW#k5T}V%5`rc|EeFN%~eB+iXmzly>!c
z`w5lPE>-uyP8+*y9N=&^KlvTnZDX&EeKz*6OuZiY^371WlcD`KUa;|^=uSO*OQ%t@
zr=(KaOO!92M&`>lUa@i9#;Z0C+4yO9r00|AM{OKt?y%#FkwK~HMuYU~sp(qt^kX(o
z`qOWfN_)+QJ~RBfjlX>9uQyD)P%X2%p7Cv$f;TC^Q#K46r<hY6JG^V-JsWSaMA&#+
zaNZI0@z)|eJL{I8v}diXLK_PGTp>+nafoO9`&4?P(rKOF?VvJG-|e6YT5CvJ)P~7A
zz-X_L7PDd5aBR3-J0l~`#Am?&oVhuc@wSoCsY3_<FMfWxCBfl-^mE1E7l0fVy$`u?
zI|5dd^p9AwW`^$_i+p0^QycefJYfB|@wttgHg2*0+c<0EG82uC<<i)=^0WV<jelyV
zowsp;$y+OnD^5zzyas8PgaC&-R3ht&jjJ}U*|=`wYa8F#_>L9khW}d|Fa6?YNbGBx
z{#dsHVl$LOs|wT7zqj!N>zJq;H&`lPkNj6dSWj--xMSlF8~1GdXydMppKbhNqi}iH
znP2=T8@~?>F{H;=&-#@`vSJp?(Qgd(>S_Ps-$fa0JUjd+yQHQ6ZDV(xG!~`5M0Gl_
zv_1aJ{)emZX6Rp0YS>J2P{cusgK`dvIw<C#jDws1q!f4Xh=URiN;=+kgjXvT^C{)h
z9(C})nrWp4<pPy*FsDWu0hxnqq!m1sUe-af1D49&gVHXJOoM~R9Mo}8*Fkv)kF%qL
zstzhRsOX@QgUTE(Exp#@mOSV;I%@uH|Nc4QDh`%d8S8KPt2wCdpq7K$4(3)&W6IQU
zP}2be`@c9RV6-#rpK!c{V)~F%p>Cj_gNBY57{v8CV%<Ok2fVxzY}_7bMB&<51gQ@E
z4q7JADuFZy0SBF2bas*Mps|DZ9em)RiG!vNrZ|}DpqYcG9CUTi%|UYqK?k`G@;H!#
zkb^c3+B#_AAk#rB`ZMOwa=>q<^Jpo+q&^wMe;4|*9fTdU7BUng=VQ}P(9Xf3EBO%z
z+2=dth_l^$WO?%EJG2)~f_zUEy3q2R^a2MR9dvg11@;Vfr%uvNf)XDt8k8LLT$lc|
zgI7NAzfi6{yF9~%7*>p+yMrF==wK*i9Q1N9z`;NVy&d#%&|g^CSE%B*hWk078B|U?
zoe~`h&de=FN`XNR20OUOz1dMufMA$|;SQd4Fvh_MG0l+<ZnY2nXCA>Q2fyu>M$>6W
z{cMhPFwVh54!R<}*2?tp4!*kRpFmIE4Do}-oEj~kB+gD2wEP~4lG7Yacd*yNJ_j=#
z%yh8A!Ab|S9L#pG(7|(zPlq2~&zS3A9y#y(n-)u-F97iZ2d^f#CzuuXrnbnzVh76{
z966l1MD!y6c>$L4*7P2UdMHN9F3W{C7WB+n<zTgg%?wBfYaFa~uz}-#?SCtbbu=$r
zZoPxZ9_e%#<j{3IwbAkLCLu=7RtMW0>}F^k&fhME+u>j*XA$-c-u2Mh5m7&zeT5l&
zgjmzpGWR=pf!Z9LcJQKuml!-;bP)^(9K0;txTJUBpa2X59<PXapi7T9IO^b}(0|Oq
zanb7peZrI%_ze+1lzd$@xgx}s+J&g(O`(LE$tip@^OUe>#vbWy2k$u09T*PYb?}}8
zg&FZ?#`k-Q6*`a|>^b3msCw*`4g?407E{Gpax`&@!4q|0(vy26hZ!nzA@0C-U^)2p
zD=$q*JE|UFEHP7D(J>(?byD+(4nAUpyQtveV+Us({Kds`@QH&@9lo6d-#Pfq!RHPx
zIk@cL3kPQzLcIeQ9Gr8|_p1L(df;$ABa`1vJ})qv6u3w|vm`QU0O?l_t~%bgl_`0J
zwdJi0_WfFLz7dq)Am*2#uQ|Bx;AaQFIJmzs_`QQ4So9p+VD;-2;B@Rhfm;r4JGjea
zS((lu?l|~SSn^trEXwepX4>!*!+2%7*UQ2FGa(*-GLIbm&bocY{|6W4!;E_Z6YzNN
zs-Ki%|2X*9L0K2cF77*c;NVdg{PuK`iy|%_aZ$oWQ5VHr6nD|-L<ZBOO1;jkJo5+T
zvRP?lN=X--^-FssQXcMG8SGxl1upqZ3sq$VotF|$aly|<bI@`w>OL1F-ghJ)E*^6|
zBg?y(b|s%@<vmhGc5xAOk>R4Uiz+UBE>d0m&qY-i4O}#Iy=hi+`OpPw30&Pp4FQgr
z-Vi)$yQsr~Ts$H8<P0(c^<30<vFK}WARg6Yo-n&Ka*_2$n3g~3;^&<nlelHg0>6ti
zn(cb-<$?xWG<I?Jf<N5_m*D>LbbfEWiHoML7bjc@E>klXTwJb8bJtrn_F|I?LoQmn
zXyu}X>wN`Ve>EeMgSvRHbxXzx1+ra)U9@+ROKnH;Tf1l{0C5`^Z8?{Veq#EHG)J6@
zxM<xroy|Pqy?hsg4(HR2Pqhwpa8bae5gby=@D!=!;%OIWTzul9i;HJm%;oIp>JR;0
zU5s)u+C?`P-Cgu>(bL61YTzi9+xK$O&&4;bI`?+b$3<V!<$l@r_uj~4Ukdbh@!1|}
zfQujYNIh4llR4PM5U$<1jFCcksEc7Ph6`=f(`I;>@*{*iyO8t82YxD~{If15xR@yV
zj&U*81y7B0F<t<Eot#JUz0xEXlU>YlQ8L_eip%%ar%!V+-NjVVaY|0PloOdVT+9?r
z(pfHM3p`;>`qZm_4zy-nIw=pHn(tzPi^DFCxLD}oITzbq>|nIGSnOi0i*+uRxLE39
zrHfTAo_E2yFXwQ>!~9<PGUmu$i8CT|1=sG4%q@d*m#$4;?P86XKJm6IeljV)-o*wN
zn_X;ivC&1Ny%L#UO;6b*Fuw*)&QmMXw{pr`lRo^)zl}k-GM!H5$KrRo*u{{hi=5zY
zuF>lBJ;J5zMZA}5Et(vQ@@&4~;zbuPxj5kBw;oxq2zpS^mt9bdz35M#IwY6`RCUzF
zF&CN(-NkViuM)3Jml^ghUS}k%Pk+<J8}zxLY)(uLlafPvQqWT_#y!!Q$6ErN7W8cw
z?+Ebj!?W)RP$($-aumgdDu&zMC%`6WVYqNyxGthDOfkC{tx5^o0$YN{S;5M-r!e{S
zRYGWB^FsmNckzLX?7b2dQY~Hj5w8L+2zbz|pE7z`wGwzNfzMrh;o^4&8<X9|ITtq=
zr7pg7ao)vOF0OFZzRSPB?rYO8GoAk^xafL2mP>;26fsX-b@8=}?_6AS;eR9J8$rJn
zbl}`#<d9zHimy(myfz}`d(r*Bf^d^7{#X7T7e5O5TQ2_Wo^@LYa3gfr#ZRucf#k(y
zb#nM;7o@)l`ir2yinC-=hNbKtyR(cZP&|RZT>Q<#zA`;2fs8Lp)Vt!<qJLccO9wKQ
z)~7#UaTu0#_l9rN%5*l1Bv3Sg|EBinpbSp-k%Tv$QVEn!poG9|mQ3JLfhq9Q5r3Hk
zsCjSqtds;6-^ea2XmSD*PGqn-X+y_y3D1X|c=-e#XGd<c6R40t#RTfIZvvGPpaC@#
zsFgtF1ga$PzXYl#P(6Vf2|QV@Jx9sw5va!QS3N+gUG|f{{d)mv?F8zGQ^Ze*UX&+h
zU&cWF1R7CE0u2&iVm1`?v#Wk$uOK9ln($&{mJ6>;UG=m61QJM3U_iKK_B;N@2{cKd
zMFQ7~c4(S_dcog30eY-i0$pFu9QShOQwfj~2kGPlLJ1rnk;01wWyn0bCOuR1%@Wk=
z5ul#z1j3y7`>6juS|`vZfwvQQCxNyJv`b)80+SQSNg$Fyf0~g%`vh_m=$pWcIpMqn
z@`V9i1nrREKN<b~_euq#*-=mq-6?_253!WM)AV*un0(S_9`d^;(Cs1aE<le2dJ53%
zA-{J5eIDX-LyPsJd&4c6M9D||0}~jOz=#CaeBFVuH&}=bNqDi!wH``?H*_2(=x{;V
zB!6TAqlDz>1STd>_DBY;dRB182s&2KaS4nUfM+KN@Y}{t6rQ$Mnv%fO1a>B{D}iYV
zOiy4%0xJ`kk-$vG9{u)4#w?nV({f${^Anhzz#P%+v85cDa|PxOmSPJMc#bk{(-%_1
z@G$p0C2~WQStMk*$yvf^N#OYee7uNU^)DA-nV>w&Ehy=#gtsqUpTLF$R?`~^tQ7*(
zzfS1c);4f<XMn=gurYzH54CL)U~>Xn9&*@)GTRc^{*bdH;r(Gk=I#V~q<4NffmagP
zlfd2t_9d`CfddI|xAsB;PrMO+iK%qi|DwR$m65Y%Lq~Eba8QVGZ+0kw!|Zq_bTWY>
z2^^)z&iY?Z;27gJfmaiFjd6IypWmo+yR-gP$sI}m!{yKU-$>vD?SJ3@rl8~#XRc2_
zB^16TD3|y&Z99_Bao<hgy#y{Ka4~_x1mpxhV6G*gFpm;QB=9~nGyy#UJArtQEF*zv
z0%ig+F69hq9i#ei=K2~1Rsv_v``fH6SMR)^AfCX;uRY)-@W|JGR|x<3rJr3UocAw1
zmeFBVdXqBYj}ka^$^S(H>n`~}riKJQN#NwUjG=8pp9}D50-p&$CM7ps&M$l|^X&ie
zbRAGq6i*-J1PQnN05O6@N#5R};N5u(9KziRd%%z-3n~aGh+;q_sUS!aK~zw3lALn}
z1(BVc2L%x%NRX`L?>BvazxV3ZtFErDuCA`G>7D7BJp}I%d>XteD`4XCGp@fBBTXRv
z+aVlbYE9sQ1dblU?}u=OvwsN37?ZuSPandWL-^wmjvvB_L-_L$PBC>n3vNPq<vn=_
zktNLt%rm@faS!v?A)Gyg^M`QZP<SzA7UEXw9MgyrW+#gMeJI?IU1IzTg4a9hxy+2w
zE1P={R$V)U>xXdr5bhkpKO(dJdk8m}NQDNbvYQMfFXI-QFHPg#iJbbsrLeENl$TTP
z3C!I^p#*rXye|>%uejpwPlPG1u)yRLAwPjf5_mL$2NNikK<Na^Bv3pNZZk?Ikeon?
zL}(Sw<CU7DizGr^DiL10DMK0wbQ8Ni7Rx43PPBa}5$+)g1w(r{f$BH&spqi-9#7!O
z1S%%*L?Rplp@JaF3(NtMQ*%h9QUa9|sFDbsOisZzk3(azs$h~+J%Jhtj7wmA0yPt;
zl|X(1&8a7WrxVCXATxnOjWbgcsFT1miSSw<O(2zYc74)m3EcWUrTwod((){Z_p=Gq
z<>(S%@j13#mcpxBK~=ga^0G*6&nGbaXi8oJSqa1vsGmRsW_x-mfrg?BUJIx^ThP^>
z%qQJAfhKh3i}iC7_;W|r`rZ*<yIIUlAn)_Em9r$$FDB45fjK#u?6(<*Ga-%F^tkAk
z7o8RfwB)E07)bLHXq7<s1YS;{bpmY?IMFz>TLNuG7abCKDS?OnYS>Qn)jol<UpAL#
zNgYLP=LEWl+D@WK{>fQVS3%PfwxTfed?U9=j|6%q&?|x73A~aBe?9R>)2sB@hY~G(
zO>p?Li1h0T^hw~&MEL85wS7fZKOxDVPH!Z_q(Pu${{#jkz@M(9`NN9M-%jA21aF4m
z;{*mJ@NNPhCNLy{j+4^f6SFfofjhIL_Y?R)FrQnS!79R{FPndqz)&GGf;}ccFAYzG
z7b!;g+Z|GQLH~Gr*b#5b%<q-`Ndlu2_>6JhBjeKqMkSCmtrWe@R$~Nntgw@{+`<(r
zo%eYH#<hHEn~=c71k41i1STc$MFOi6Sd+ly1inmQVFHU1n3BNM1invTCd02<%dZm5
zrTB)f+m|v;VBL*>o51u0KcSiRoxn`~Gq_l0O9YCMPdqCT-bb1%l+5N>a_Z0F0Jo>q
zn=SGF$-D&SivcbWm=`qyEnJ+y4|L!kDJv3KlEBggmea_M8HB&ar7aU7#Jg?O!_-Y;
zr4U{vFk6+Fl)9GQOCXVeoWS}7HYBi>(?o&oDH{{mEQn14lfxc~w<K`ND?)mE0y`4;
zC4rp+b|tV!m`BfZ@5(se&BRhVj|4e;6WAy0`B7kUeiFoffe#4$v%m+%@}U4%+@S<`
zbM=)-cJtYi!g-<FJEW@g(rk&KC7=uX{-07=WT!(mWY`Hf30z6wY65NoUIHg+Z~{K_
zQlre@6F8PYkicQKotXA(0!Ntk6ZlOO8{NsJ%o48%@uO#(5&x0E@dUP)$mYeU-MCVt
zf|L^pkp9{$@@E3Pc#*C&IqfvpS_0=1IK%76;gs}0QvM<*NNKzzg>BC#aDlC8$?^=g
zx=6=*MJ|@ezARK-5_(vCsbn@4UQ6J50+3N!#y<)CONBCu$heWf%>?cyaF2nJKp`#V
zHZwzV_WRrd9Zb0+XfnwuB;!6Ag=MVWkix`8Pu?$wIgP-*Ywy`ok|>fWD&s*JC1jM8
z`Kh7^_x8nP6qmz2f0JV=q`Bcw7DaMO$%y<%s~b`%KxP>kWo0}j<8e8>x&4rgaxxy4
z!ynhYP0g*>BQjF_BEx3$rO}i}<?vP^&3Hmac^Oa1s4k;|j3;GOl2KU>!+zFmsiGWS
zs+e}T;jbd2svNE+hAZ#0@pdKCV>LNUlDrQ?s3D`49H#o3#LNRnQyBTR<?yEv-O?rt
zQ5mT+R$s@O>qwJPhqfKVjbnI5#<MbBchSd1T^aRcv@p=pz;iOvWgJxTi;4_7ibGZ~
zO2P9ovdEY5i;S3z`Z9*d_((<r4qQfi869L~%V;DcUq;(LSue<FETfr>0i80M$lzn6
zJQ**_$dQpNWBqK29K!GCvxujsq&F4(L$jshvn4i(%Q!GTlK)DyISrH1Qidd>4K>SH
z79_P|kNxAVh1y<?b8gO-g1=L~Ii1%|#;LvGQ%hnByd<Nej5lPwDWj8&&N5z=@tTY-
zGP;VkJ!D?N(Ot&NqR561^vgfFnE!E{nYTao;DX$qGF}l?W#)tiKRZY2#U^j&^pVk*
z^FjxT+UBBmXt73=xws>_pO7KF;pw`3irt@qBx4|5!G7zc@c|YlMc$V2j*RzZd>~_x
zjCW<cC*y*jY4pkJGe?@yB8>z!kTZ8tWUve}Ka??Hjzof0DTSg#Wek%sL&kS9h6^)3
zl`%>XBV>$}@iDt785{LO<P$;gcmNfSmhqX4FJw%XF-FE%8RMx|#^<8pI2pU=NL6m8
zESMu5og>{8^h6nxWPY+Eg&b-ikoZ!@6d7O3_(n9GD&s2|(*!;K)zl`d;t$Q0Zsq6K
znHx6wRz}9<$aF@yVD=Ks@3|agtYa|9m?dMjjHR4h8FOUJm9bF9A{p~!%$Ko15Dku`
z7xaEFKWE92^h#1Di;LN#j3u=2NIL3=0^{aN^_u52=oMWqV}*>BGFCBMM<$VG?fx5C
zr6xyK%UHwwAmiwbtbw<(=FOEzY@aK!c7u$Kbb^dMGB(NBEMvQj9Wu7a*vi44&f6yQ
zQ(Ez^L*xEjiKjBI%#~U+&e=)hzn9L>j_hJSnI~15ClRx|n;SCs%J@;nPcrt2hHU$A
zowWT7Z=vmH!Q59kjhcDPV_4&yvkl^hWF(j$6jWCr%TQ$8k#SdsDnpZTT*e6*x(q{x
zFC!4+GG*8@96?(Q_><Ys3j<skPppV|f<t?<kEdTgntoWuuQHBs_%eQz@qCx~(KWdw
zC_v(O8OLP&L9^TDuvn%_ltjCE(znf8koZ%^Ng0=9T;^JnaazV%8Rul25zYT%Bzs9e
z)lVHDdVjBN{&_~VjK7)F7-l7-b;sq5nI{obro!hr1;iB@SDBZX<Yiowah;i;!8uQw
zDU@s$1XY>yq+UxRH)Y(Cahof;P5n^6kfG%iz9*xQf^rHTR&bw!`xPWBh$twmAW6Z4
z3W_OsKnaIgL_tvny?eyocq)vUl)Z7{KYGN9D=4Ah!*!98Lagw7iB-otM3?Ri1xhJ^
z;6J3Gw1P4U%8DXonhgvEmiCNQm><sjvBeSM?Qi5iqTq1_Pbhd)0gI0bJibhnba@38
z6jWAFMZuE_f8d~!(AJ@BG-JNhX1?@d$NE(A)rMTsRTYq^rl8Ti6lYjG_F0U@8VYJE
zXs4jPf?5h{D`==7Tfx%`QWXB?LZ*VKf>Z_1DyXaA*0J<71$7iWBj_^I;yb0x`mMrs
z^uq7y^#uPp1?dXrHxHStB_<RXOYeCFF<~J&Sqd(_l+ReIub=@v+#<g~l0+i~FDQsB
z$XC!<K@$ae3SLx@^IzLsnzT8$Kz@L5S5r~dOyKc?Q*~o*a|JCFv{KMoLCgQzN`heX
zW_?3Hw-Lp*3PxND9lmhBWQ!vT9TYw`LLUWv6?9b4Nx{nsdI;gp3c4uhN-vd)ZdnuY
zCq=AEMY}2JE;yIZW>-0yomDwZl|2=_s^B#RuPEp_A=JN1*w%}Yqu_OVN%VDfU+5*$
zB>E|ML&5tBK2Y$cg8mBLQ7}ls00nO;7^vWFYD<c3*pT~gvmCZM{Yw6&c>ew0$G!Q|
zy9zGPm)=t_VPZC`DCYf>(z|nfFauJ-aE?*I5CtD87^+~H7)z-IQgnf&$Mf%W2(>j|
zAicIg8mZu81)nIWIz7&gPLIiB)hAh@&W86#M=SVDK{XXmsTiYRtO8AeuHbV8;}on^
zuu8#r+Q88%SfF5{f=LQyDELmn7YZgTn5N)s1z#$dqF^e+QdqL+Qh2o*F(d9&j*_TW
zBc1d&Lf~5k(>eUt!w4C^Kyv40u<G^mS>G#|sbIE(IYL9L;mNZUtXrQ;DAzt5&RoHt
z$AQlX7Z-t5zZ^?nNWOw43Kl8+8UuE;$^2q!gutrtn{t;bSf*e(hc+geMZyX$+X)d8
z)UYTozM3(4AY;9P4GPvM82LtgE&Jshjms-FKJVc42ss-SY*MgK!H)_yE7+o7r-EGy
zwkp`hCCpCghXqpA8S&K%q<7!QzgI1KXn{lyyEwW)+O1%Zg1rj<T_BZNC~fPPKfYgn
z%0lVIh0;$7_A5A~Afe!Zf}a%}RPc*}Gi~C%7fK@*h8n20*Pi${#TrdpD9H*G1*(G8
z3#Da4<E+|orzJb8H#Q7WLxIV)tl+i+OM$K6G*u~Z6u1h0S8z;$r@&Y6tAgLSRL7@Q
zo*oGl92UNPGCQ;Bg^Wn?=n(}+ImRgw3S4_H43*6XVx<32a9qJj1*aHPYr-XPLcyP+
zZC;OXQVt4(k1dpL1W8o;7cD6sy~yOC;H-jk3eIyn1{b=Z;BN)*t_i1r0tLilHKLal
zTv2dc!9POhRRz}sL9v?)rH2-U-uPE=ZYa1(SSURsm~nw$TO{34a92Tb6(v;MQ&30^
z(|a)$_o=vF#RDpesHl9l$cRN!VHHU#7KnzFDIkifcu>X8MbglIVE{LbhL?lqRz*6@
zkCarAtm07>kEw{LD5au|in1!8qO|BGIxP9uMN-!#@lyNZRp#bCq@tXPhgCeHg8bt>
z;+<cOvUcX_lxw2X*psoxRXm}hqKZl?%B!fL;z^-u&()MhMWd1H;qfXG$&01RDypcc
zDr(830P*df`2|FE6*W|hR`HpNnks6kXs@D!irOlkR`G(0#w!0w0Z|p1DxO!7sv=EA
zT^03I)KPJ_ZK-EeJgeeLW;ls2wa%%znEy8su3Rqa=TxL~^RME~lr(Y(Nw>3{=R?UX
z6)_dr!m9cz8mMTf;$1GN#o<h)CWSG{#MOPVL{1|iMxu#|92Lz~v`~?&B2PtA70pz<
zsN!;!qIbNck3{ne{qy6TuNjeiPReC|>W&{Z$o^7Px%u&yDq5*%twK_<bg{H|u{5ts
zej62SRSfNt-%bUK!D5Ltanr52Z1R$djw%MKcw0p$6`fVQs^T>jT~u^c@v@2@D%O1-
z>!#vr&9v@nc<}Pd=doAoha>ID37QzWJt6Xn8lIioSU=u0J*@4eqPL2ED&A1>I=%W)
zQXdt4RZJg~x2s0zuC^_6sI&CA*qbW)s~Di-Esi%mZPV$LW<m*NSS-;tpEB>L7^GsD
zis5vliuY6uR`H>V4dWuaDyP4%;sX^V*ra~pMkI!)_((;uAEcqex0e=66Kkdy2t2$e
zK0?L5J1L(CJW|ESO!7a3^Frt|tKO$7Mu}EwcT!j+bBv0yDi*0&tm1PO<5YaFVy24m
zDkiA-TE#aiCaRdEVzP=aRh;`G%m9QhR2)2>Km2UU6ctlde5GQV3P#aHaTWNbMrd%}
z4-#cad`r*ku^B3+@Hli{e7cH}n{&xw@jGG9=?z)4RBS94o6AX5F<a1c1lG#MPL+#&
zmzp-8E0^OMl1(~sFS1b3EWYt>{09|FRBTnTje((JnToZXRu#)ttWdF9MW3Nbiw3t?
zsbZDrjwZ24AhCwsCCAQ}2_ye@spxuks$!E0(i?>E*+%irDz*sD<VoT1S@q7?81Z%$
zJIF5{J-`IQX`)FgepInr#U2%V|Lg10kKqr}!8Otd1@up%YCqME4lm6wd=%!}pP8~c
zN1F{wT0gkZAr%QGD;*E$kX0xudTHpbL1l<C!)SO!gRa6*aY4o3DohoYieoDNP+_ZZ
zR2&suxGFpqhnbE<(N__0In*e%KQ(<!i_D%sNF;t^)#PwoM}*9j^Pw@revp0_MY&2*
z7LThqp`y(ru`??E6vRmtrvy=YNTKdcb51iQ4k@&yY_xc(Fa!Lh;;f1z!;;Rah>y)a
z&*@m&;@cmj-(sn(y{O_6GqZ*w8ZI*h(T6JTa1E-srs5wJ|8iN~Nx5}3vg!xvx(H^r
zVqo7;aZ|-D-kSJ9di&+*@gF2I2_)_^`O|?K?$@xmPFf)?yb4?!mG}Es@vR?a^RRAV
z4M`eUB%eiAktnL+K@AZNr8E@Nkai)fgoctDZv7w?7aDFY%&oI1m-N@I@{<KVG_xKw
zl-5vI!$TU%Xn1E+ZULr3(nTBObQ_oSW`3-k24h2by?a!{V;Y)h$kFh)h9@-C(eR9h
z@){~=sHvfrh9@;t)KEo3RSlIid@w)K^26-P!Uq5II3Z<LZZ!>0X{fHDhTxysm`Ntj
zuM$(B;nQiPYioE~Ln_B2l(6>{4N)P_Gtb-3rL0Em*w7^M3-GfV>T0O3p@D{a8ZwK=
zGKe)iry-qVTp}GEk=M6kxH_KKkfk9;{ncXRv_F@@?*5->s3BYQ(pW<y4PQN3^aX*t
z9u33E%n7%1WD@6U$kWh4!%G@o)X-Ez3k@wbG^6Khq~{A9*YI6Wq%4u@U&wCGs^`*k
zE@qRKG_=ytPQ!hV$F6x<tu?gK&{jjYE>SK+<*_jK{^%T9%SF^)!x_QpsG*aF9vXUT
z=&YfOhOTVFNokrh{+|frwg5<X*YGmOJ|VB?*zEY3(DGL_e(ERVRSmBRB4v8y$8nKO
zZ|4zM`?`ic8rEr8uc5Doej3JV_*}yq8m`82KF}~&!<!oVYZ##6EryDQK^*cDX`lwe
z+rnck`j@jdHjE#e7<pI2dm7#sG6(+&Hzcg0fV(#PLk&YTjL<Mr!$%s1GM2_?52sa(
zt6@n^hb7&R!q^^rGleuc)iZNG*6^u@QB;_j^NEJvKFpr>c6_ubex_lJ7M@b37=Z+<
zNQ~1kUc(#>b2UuRFp)8@;TsK;G<>09iiW8gCexEkq%SpmxJ2THWL3{F$!{zg{Yt|$
z4Oc$T>s&NSSavOiVw0Ch-)fky;d>1;HO$bk?em;pzleOt04o-XW#0-nHa{$pW@(r$
zpvq723KQ}={F}nsc^c+xSgK)}h6NfHa&^;b8WzzBeF{-O+rCpYdUSbw!pg`J&Tr8u
zdn8Z;tCnk6rD3&(6&h9wZ|@dO8lOoyJiFc+!C5P?w?xWGYDnWZXxPX^q2ZW@O&T_9
zkTob8wrJR@;U^9IIRp*cHSE%`Tf+_wJB5Y^K1&`irPXhl^JiLk`P-vmuZDdZeq_k?
z%P%9AK!wV&Yr+5u^l6cEK*P@(e$jA9!$G0st$SfA=5+6#o?3HdBq5mH7Dw2e@t|tZ
zG<X_(=6|La4YmeHgDJ!;`X?>DN~bXX2@kE!bs2|M(hsajdbDPGdZl#Ifri8MWTDs*
z4HpW<eq~e$g7P~H#mLEP7H92I4G%YqAKR4shlb<K(wtTeCp7%2;hcu^8cu3BrQt7z
zkcLl&B%S73W6<6SBbM)j5Esy7mi{!E_ySi-rS!iwT%>PDB^RlbPPjznoub67Vw0;H
zu4%ZV;jV`38vdbM_GaD^L;F|54GlM$MGwYm{+M|yKip`Qej-}7Rs1$3zle}Y&OHr<
zbbb#l^L`zZGm`HUG=)c1jn<rz%AYxf_3*k-ZmCp6M^Vx`mgsm;M=>28biAaaxQ-G!
z>gjk+M@b#YI;!ZXsw1MKl#a)BJfQ<RO6zz?M>!p3bhP|CrL0iP2_>DiG>plIbv&Zu
zQ5}!zAb-=+aBZ@d1cRilkSVXDf{uzhD(UF*c+nNT3q2_aO5PovS3p-59BLq^nvSP*
z)YkE|j_NvUaCACq>G))B<S%h|;@e?K8*fLxoFDmgZWu)=I-)w#bkq^%r3yT8sWeFR
z{)~=ib=1{C4lmq`mr8p?mA6zPCtXK|juxUxrjF-zG}7^cjw~H99SsD(zK+%7!j2l1
zElhlIsnk$Mwy4T~F=u})wdulmV;xO&G}X~eM~;qM9eFxl)Wbb3H?9P>V%rCo@tA!`
z5aK%Wbu_1EmPrLWTN30qPfc&BL(<Vo$Mns)ZFRKM(OO3v(c=$IW4AA+5cl=Nt6O_A
zn}(MIN_N!INykSzhU(miqKl4xI^NLHRYy0`_H`ZIb-b+O6&<hY=pmTHzl-$L@$mrZ
zy9-%;_hk^jrt^FIAip=KwQ+bw<9jRQXO#~zi+yzTEimRxZ8m&UM}Hmf=oloJ19S}3
z@wSe)M6uAu-0_3Ls8~BZnUFO$^<5qB=@_izLm`l{OnP6(2ZAoQKjYAZ)S)wT$s8g$
zkKZoBjLqUOnxx}P9aD6S&@ocSI343@IRit-XdR#F_*67uU!&-;|NJ~e5My+V)$zHG
zuSAi!Xw`82l9(V`P15m&j_>alnW*EZZvV?IliB0=LKK_5G2G!yWpf=fb<EN+O~==q
zARRMw%zH8C8=>S|TJl8Lc8%!eJHh;3M*$J!<tWP};@LWn@nF7=1v=&m8Qxc!Cy1{{
zWm6k95EklKq+_v;lR_JBiIDl>x=h{}S*l~1j(a)^8Cb4kg$_-Ju4AQ+Rg5|vyBV}P
z*67%%W0TOlR>yiB8+5GWO21o#s*08mBWLW$q*Y%=&?9rRjx9R2>DVshx9T928xY1M
zG2aE-Avin#W0HU0a%qo_y*hr@aZtxT9Y1nj_GIkWVcv=m;v)+GL>o?~EQqEZ(6M7r
z#)N1Zi@)eN#67<bMaO|N;gvB#w^s`7dFFhIJR(WeLC)%L!;LhtL4`Wb={T>$(qZfP
zUB@vUjt*DHVI9Bf@N|@4F8MkFVSlw3b4K0GT6Z_=oxB|4-{`Rtu_HQ;irRDYbGiGa
za>9(|xqs+5uH&?hGdfP__>(@@af-=scbISan2h+9siFT1R|$>$O9zRwjO6nfB<d{>
zRV{5Bzo6r99slU~SI0%s(G?w6bzIVMSrjE9*-zkWf^(f+pNf%B%wLN)bllW&OUG^c
zt!T6gf86yh6xk5DLr%~9yE+K({+&&lz)tToaKC}d2C5h+Y#_-%DFZO@fPo?gN*YKu
zP}IPK21*#{#oOaO3Kug_-1y&3-Mm=5TF3B*+x8`qR+qyp7cs(X2PJtcn9R}!${2XU
zKzRdY4Ll@jA2pE2N5BRiHt>kxoP9KQpmun5J18D>K4#!?0|!#lYgZIAn36tvxm3Zx
ztg6w927Viw{G_1gjL9aal7ZFnw2ghTsv4+f;CTaC2A(od-9V~=Gy^pZ)HIM{Aog&y
zmVw#^p5}OWCHGmC%NI@wd^POOXL%%^SeY9Y_RP-7sbk<71L+1b3_NR~u7P@d?8~vN
z%>CxW?46aPe2J9?U#gWxpayDVt4t$&o13bLV+QIQXl$T~fd&Q|8fawT1=01CnGp(S
z8=&NnKO4S2F+#N;FN{R5L~;z|8fa>u8NDQgUo`N}iqN<0as7&1YNqjV1NjD;3u_;V
z#UqbI+svvLv<}z4WT2IS-!1<0DOww7W8fPT-<oJ^pq+s$2Cf=tZ=i#L6$Vxsc*#IV
z1LF-$Fwn_BXLe^`kby1+x*B-hKpz9$40Jc}ih)-Ryli03a;b-bo(5*O$$7SVl*OhO
zQ-~k#UjH@5i4f>5Y$MZrJ^#|n*(7LNUjzLN^fxfTz#9hM6f)2M6M0V$*Tt>u(Ehg!
z3^eez!8{+{{a{oR-s~8!*C?!gmwW>w4Sa0ieFGmD7;0dcfx!koG%&=#M?&Yu<&yh#
zyj)U@1X~f5<<f9bJHi0zGs~sOiR}AUgtea-_|(8>2F4f|C7P2t+CT+S+i-={X@xY_
zz~=_WG4ciTU4h35OtFauCK*_0U=ahrz+?m88Tj77mj<R7_?lB-V5)(y3{0a-hbOli
zo4Tcc*4`D;`P8%m;#&jL4a_i5z$8AhLb|y^s<2WbJ(B@%V6MTx6$^il%%+DKOPQfV
z_<HHJ>R~7n<{MaGfE>Q;Ur<GS{jIFURQ`BuseuUhga(!vsB<Ah&4{n45M9PgfT-1n
zB~ylY6&I9&Lk1EC))-i8U=OV_u+G4G1C^>qw;R}CV55P}2DTV5)5E?tab~Nh@%8Qb
z2QsoBjcpbDZCpVsCBIh4C*EOTr)WzhyA15+5C(-mKnPT_??2D)7sQVO|HPPF8P3rG
z13wGSK?A=qepX6nJ`I0+k|35jrv{E0_``r|Kr`SQ2n^^33<Hh<m-ZO24A`_mG-=Tw
zK6a%vf2DLx6bqQ10rGDOPWe^RVFSN1;czAX8!4{gh=HSASq6B=qwcD(UlJ_@(Q}n_
z+`tI~rwp7HcK#{wNr6vUkrq=Ur-mn;G4PjxzYSdEJQ_G>;JkqgLMC@oHlv+7CzXgk
zST@Qci34*ZmkeBHsLzU!!-eoievGx(3|wcfGm&ND9|Qjyc+AA(CT<wG$#iX^n2B2k
zZX3AI#Qi4j7>KTl+%<4d^d+y0=+nc8K}q~AVB*}Blz~-ag-!k=1|Bd`#0-UvMPcoZ
z;Ymf!Fr~MjAEuz*;t5)D6D3TPF;Uh;NfXH?N}H(pdwRqKp_B=TCLbP6ztSa2egV<<
z#lnP#Oq4S*tZw?FCcdtl{;-KhM3MBztE3mJgdV84FhY33M0u(;QOiUH6Hf}A)lF11
zQOQIV6ID6<+u>H^nHtf`CcHc0PGH-K>}n>SGSNRPTpd4D3=>O1RSltG>*Z3lO+0O)
zu8DdkQaD%>bxb^CB9(b^RhY`sOw@?wkYL+_A_-PKD+Hpg;?J2#7uqsSWC(%+?gvT4
zn^s9A2r(1&O$;#cmWc)?8k*>6qLYbi6OBwXHPK8oe8EJHiChznO*Ell3&XwQ;VR+P
zuu6qko{1MtJYOM3nw$b=+(f>K_9i-*XfBlKtE3hth~IiQ|J*96r3p#!Tm5HSYZGk*
z-B#ds0`vY46|&V!qHTfxd(B#OHqpgIPZO`0=xU;y8GaF>2hG?T?{0$Mf_PbA%9Brg
z_2c9M;#Cv9gyz=-ZrM5h!0K?B^fvLj;E?Vkh`s{%Gx5fM{5Lseg64xTiVZaJwuz5T
zd}87q6N5z6a1-yEc+bQT6Cas)-^2$d2AlYhp&~k3Tr$?+zF5X;sr71U<bwDBK@2s)
z;xM6s1fj^8(3vAlj5Lw?ePn`Y`>BahCMKEq!o+A3pP3kI;&T&Y{<Co4qDb@Z;bDVu
zCdQkXU}B<)UkAs@A&}sej+j8P$tJ!uG1bIZChpG2O`95-B8WDxhYp!$f}F1fp7UnT
z538k)t>YA%Zej*Q%R+{Q?@WAe;-raFCT5zLWn!<1eJ1~X19MEQHnGOUTodz5EHkm(
z#C#JAOf06gCKj5|8pH{U*krXtV#1Y_H+$A!BKS)MrWxcDQ-FAdiB)2xD+RvrR>&-%
z*P2*oVw;KWCf1wSU}B?*O&t4bY0kt*(>?KVSF*0JmNuK%Vqz=fd_yLg1fJ3%&D!34
zAZuc$iCscDi&Vbb#2$v$j5vWm9*G-QOa0NrPmD$rhKc<q4wy)oIJzn8XA=ia9O4+G
zX}_2lvA0kGK}=Qr)$sH9h-^Y(HhU_na)5$(_}}m+C*i{f8<{37sxtAr3EPBYA~12-
zgv-=n!spbNh?bp{{n#35-Z$~&`Z?W?XLAejE93umk>5-l;X?i<&OJlDHQ~;II*E^&
z_`}4X48PZ-$LZ?UIVYG&W=BX+U|93CQ*TPFV)3+zGbSFgP|m_%CeE5DWZ^yw=S-Yu
z4ma_yi3=wFHgUzoRTCFYyt*!O$;4&hF`j)Q@Dv|UQng+q^;;udGjZL-z!|AOHH&|?
zCY-F<Yor?{ZZg|5(nPC!A0^!~ahowC1bB3c1Y6xRQF}yE_-Tu@(0lh=C~P6wLc~In
zg$FD=XrY)Dru`xoidtycISl)4?DXf@7xm)BEfANmP*TY3s~2~Ke#($v$^tBuvG7dK
z_(j1lZK3)%k(?pnq?i4VF1}WJ*uo<gs#>UK;ZX~ZS$NVyMGKExc)~(?3l)U^vZrIg
zkTA6pSVi2ceY}z&st8O@Wja<oS0z1dVdN?HVxbOguu#K7O$#X&qC&Wqh1wRL7If0d
z6at$R`mZhZr&>s}z;kQl6WTo*dsYb7wNTH3CoFl+LT-=3$44Z+_)%zBjkQvyh374d
zw(yySEDJFUuUY72p}vI%7Ft@6=tc|K7MfaUW}%UV7pTNSo)tb_ZET^5g&bCi=c*^$
z=kw_&`Fu_~fRBKM0esT>_1G}*;%s;+>#b#x<`x!|jOL3X`Qu+M+(JmMT9n(0n|}*k
zEOfQd#zI>QFIng)YTH?8Z=r*r8?KcaUH#vcrOR5WlZDO}N>xs$%)4tt4@?obn}zNc
zdRlnJ!povz4}mGLR0!}E$LL9sR~gS=MF>9$W^W6xTX^5X2NwER=xgCE3j;0mv+#z6
z{uTyU7(O{NWmxi?g5Z~<R+oxCbEio69)-y~IwkV9g?B6rqA?cFaK<Q1Og<$kMtIM{
zY0=kU3m;k-VPT|&Ar?Ne!f*8q7kDUVAuVl~FqljNzcxe6Rq(NePb_?DVUz`4vQx%K
z4lj-nb6orDW%7{+nPV)BwXn&;W(%KN7-wNV-ELvLg$WkEvGA>hi54bVm||fnmxhJO
z7VcjseJSwjr_!HXClT*#9`8Rc`zs661boegPli?ZkIN<wiFML+4%5Oc3$rc!e5c5F
z7QVMIlb3^ak|bn$tqUjR<8>05b1clYFpsN7C?UUqU|$O@EV8i5!fFePIdBV0EiALJ
zL^y$8m$C;ZB_5AX?U=FL0>6^9!oo@`{Pq;T!ZfITxY$YWKAW<}!deR(7`nZq>nvOy
zlC<8!(4<(K<ml2Nd7sV?_bP;qf=ObFg{>A83#x@}7PedX$-;gMJ1p$9u*bq)3%?YN
z?Xs|&%cN%7o3BT|Unh|hDH_`+Y$N@ns3M;NEFPdMEF7|s;M#mJc90r4Umqp?UO37k
zVcj~3MOoC6xLGt-?!lO5LFa1aLbhO7FfG^?9A>k+X<yw6H;onpa$iQxT4}BoeroL5
zX^|$;wBv)b=k3V|EF89wSt<1>Q%9||UoHG*;fRInRbvI0sz$AI#+Hkft(MyUa-{l%
z>_03VXNGYQb#TJMpNt0^lWd%{aLPhm8})3Qws3}7(MDMte_1%o<Zt7C8|T<NHCy<{
z!UYR|TexK5G6%a(x+w6yZzF%KlQyo+y<&m%RSVacEnDYPfKcH7mQSYtYvG24I~ML*
zxM|^*h1(XoU5QYJZQE8$CvihG>36rtJqv~Gu$Ilsu9s@B5A_tbkz^y;M#RPgHj3CN
zZli>aqBb71!>n7(=C|p>yFG*^>!nBkPKk=`U)uFZNgMy(47E{!PX<fbfQ`~N8ZF7?
zZF6!mz6c+D5BWOskd1OSYS^f0<6#?**m%-LMH`RWc+5t58@X2^k5k(_dBjf$qM%1|
zD%c=%Z0|TZm4r!EY*e*TS<r1ii9aA7SXZ<0l#S|w*+~qIeAcp6EgQ9M+&LAiW8-NX
zDK_$NW~JGP+DNq#+mgF*MAAnaa+`FIu6`i)+|4XXc6>R?;xnT5SsU{Ts%)g&c-ck|
z8yPk-smDfh8_(Ow;t*`)QQk&<8!y;sY@>mVhBmV45F5)nMC*2|f2C^r$V%zEUW&3v
zc<1T#`qSf0Y~%=mWU>Dze_HMI7i~1P@yUqfxQ%8UY^`YSlSP@AI2;NvN0De@qos`w
zHeRwJ*=S{>osIT3TH9!2qpiR>3qlVN_%<wYnT2sy)vl4oBF_nQw9!d;tecI_g6LwS
zt00<)<4;?Ahc^u0T`zUF@x^-SG@pj7mwMWG#l|}}2HAMk#%nhE+ZbS@myO<{Z9f~Y
z+vsDXuZ=f{CGQf`;hxAYAnf(h8|2&AAb#CAH^XZ&;VsejZ5smxLCyuy(7POY*T#D`
zKBhx#yl>+J8$)djvoYAlhc<@T_=t1SHI+?HRSSQc@GXEUl~W(w5Jq^138}+vjIc3M
zsQu}BO7#s=?uPJ90jq!3r#410x@>%IW3-L$2WEX{V~mijc{e5XQikk@H*)vhOBrWl
zyp5^TA``fXgl6)GY>+5+_k6||HYRhu+c;z6OB+*c?6I+z@;1J*vE0TA8`ErjZDW>=
z**3nh@vV&+Homhl{lD=h-6>L{aClw*-o|qeMQ0Y6aU#2Zjr55f!*Lz<lIGZ$%Yd}8
zb7a!lRT1L(Hu#X2wF{Vk21=wC3eF;d7gLEKmI%C5;AH~yU;u?z+E`^{la0+bR@+!(
zqx<yK4K~)=SZ8BB?cX4gV~B?oq{C4kiSel9Mj^?QkXvkQwXuUHamXUQY_qZ5#{LeW
z%?#Hy8>C$}4)uub7EJO<vx@wEHh#46n~ftjeqyZ+!-i?&fQ_GRBy7kwHZIFOXyX@Z
zuyMU*e5w>)s@}XWT6$;vkrSDU4b_HbLl^Ekv_Yc$wMDty4jtbht*#Z?VA-&3xHdc{
zqJP4a<#4dIqEs^Zc8YH!uyNSNuXKC4bawH4>-tnu&=HHjbjv?#<98c>+To$5V>bR^
z*euIEA$q*^L+)`=e6m=K>8{|&1jSC;I3?ss^BBfoHqJ6VIw<4doQ?A~?%62h;DU|6
zZT!QeXXB!cOU$=I?PVKR1aVd1murSM2X1eWE_If6bqNP`oyx^@+^}(z`HhY$9=*j?
zuN1m1Xnxm`TcGs1Y2@E!$O%^v-{;_d2PGVobWqqql7j~w6m!CC|A2!c4vIRcQ#1Xc
zjp1CAApWFUdT|HDm&Zp)#KnF4vB}Y72gIcuL>z3tnNsp#jF=n<e!2Ex_9*M1f`ca=
zJmjF9gNGeF;@~j{k2`qOfm%G;<GHlDQzDN(m)0PbGigQS2?ymJkY-!rG0&z^prV6H
z4yrn+=Ag2JH=l}Dq3ast5Zcbh!<QpHi#2-6L3IZ;9n^AAgJQL!PYg}s!&d5<mmaI_
zpjDgHryXQ9NS!_*kNBUa;e4e!NOQ2)!9I@K!7~nqIT-HXSqF6;w06+OK|Kf0IcV&l
ziGy?p85~8Ov}^~N4xV>VpVm^X1KwI8#DphbOHJ=qHN8-s(0l#M7T(n{+K~D;N(_cZ
z4*2p5e<r^mB&jOLL9T;lbgY9s2LpTOHx>9rA<#@r1Tl;G4w^e?=|FOj+&ZU)gG~*R
zPwdO!VPj%)T5&fbh@KlI7TY>#=U{+?w;Z&0(7{1Z2d_AI$w5a4T^)3D(8<9E8>P+;
zx;Q94r=IjcZ1P4a*qX&V^B4Jx*ul#V+73(VA&lWm78Ka9QEIm(m&B_MUUSgLL0<>G
z9Gst*(c8i6>~u>mWx5rPHEI(lP_mzcH#l()`a3W;N|!cD6rOoH7Ae-~+ddKnsCl4+
zw;c>|!pEuaI2c6391M2wE+?gY^gRdf3md8@$C}lMepNn7LYWsQerajsLkEYZMoMjx
zDEX0tp$_<1mYDvhwh<0SI#}djv4f8p$qv47FxkPU4n{c`=U}{p(GEUy@I<-7pNm$!
zB{ha&?BMBo;UqpQrt;V6k$shlP7nfQP85^=>9E3+7$@R*$(3i)zjQFg!Au9U987ia
zm4j~`Om{F%z}F7Gaq!fpaB(#dm~`h&67dWN-#Pf6P7p;3jQLMswu3ni<~vwGyh)nt
zU>*aeue5!W<ZhBKZ<4;*noB<Eg+h#N!`DC@EOD^a!8Qj=9V~OO!NEoc%N?w6u-d^I
z2P+-CH!=yErBw{eY2kH5SrP8=*E(3o(J{!Y#%gU2ttIpo$1+=OmNs#&D;C|%CD|ag
zNvSAzCWI}bSRlDwxM-KaI|SY-@ZI+LySbnc=Knno&qRg9kDPJl2N&gB?00a$!D$C)
z9Q^Fypab7Q;NTa|uLH}0?Sx4<;Xq;b5ISYSd45w|bD%pg7+`|WV{epveY4c5aypOG
zkZ4pn-4Ru;15XeITPb;H5(&=uVF$lD_`|_*rmPp@zX|-igCh=(G8+t!lS$xql=v8x
z{1w{2bbb5;2h}8g(!rmCAhT<Yv{PJSHPX5!H6;Ga!C43Q929bKj^1-{&B1jhF$aIs
z5A0%D{Gx+Pg1F2Hst_fIFF6tu_&{gwvdC4+`<dBa#s6{euY+40xPu#9aYOTNI^bS~
zua{Cdby!+tWZE5}>aM_t2V{{$J`KCi#r-adyC~tJu!|%YMO+khQEgGAf7j>(E{F+~
zB!}-nJ?NsC3scG@lSRH8RnkSW3%Drl;-_NS5f`NdunCKVlxSKRH(YwGD(iwp(i3OL
zS@p1sM_gpPXyoEi7mv9}b&=-caTiaxsNtffi}EfixTx%+iVLp0CtXx@QOU)}o25~m
z!UK(DhWtwDRcW@1r(9GQwFUg|Dy2X6c<kHF(mUdOcr6#TT|7-QTzv3SI4+76+y<XB
zGMU9FdldIr>bQ8uMa&KFy+6yBe_f=z$Z%25#g5yN=iKlx|F#bGQ{Rab_{LDCi|OCR
zpLdbvV%=ux=gpG!Mt;fs{NtM?zFt(H_E(5CaM4h>qH({hpALq%^j~n%*hNPdov6@7
zj*FHqBp10Z@?11?5qI&Ti<_IJrUIAV60W`yKZR>E-$ip5Ed-y%{xw6#))WGiZ{?!3
zi?%M>x!9T<MrIoqhsLE|8W&y!2k**k@1lc?m)P$XY3i=b(N9Is9*LD67~U`K?4pZ{
zo-ST-(bYvaIw6+Y!$o%&^FB)Ah4N)LOv2M^M5pP^SR_IItMovPXfGGenC#aCrmAjR
zq~07(<tW7lZ;|@C=;vbouUPOa-f;1zi@QGV`RMOrfQwBY-+9MdE(S7GJUry#Z5Qvj
z*y&=Ii$N~lWfv}HxOmUS`!2@1_?+|TVz7(hE=CC7e&}L|i;o1&RXo%Uuf<uNqQj`9
zYM8wVQ?^JW86+;hfrC*(@)Lozs?ouFGZ|E)U3?}4#?ZsNLk?Tr*%-Qg`=8n4T#R=y
z$;B6<)dUw41;N@kdW5IE+TMsvcJZZ)X)eBYF-6o)b@7#pC1QfUY#P7TGQX4*Zi-UJ
z;Tsp<GWf@Z%cNHKIBS1zQ~x^`-@91hVx^0jE@rt{;9{YREpzJ4b}^T8;o{7O+&M0`
z&8oM(LC$;*uxaeaG07C5o>n!Zi(D*bk1m$F=shNR$%v#M{<HIEVa75S%jwB6$>*De
z5ke?CA-;;U|66Pw{pMn|i#0AzHBaNgLLLrWE1L7H;06~P8CUF@v*uzmt#a|8I0nzp
z)VHn>vreZF`c{aQS`^vNCFA1w7U{2E(Q7r*PM%EpXMFZ<7kgYBbMc3Zy)O2-&|K&)
zeq<VPkq{m27x;jSp9RrD+|xej;ul7;;QT8_(XvM@vNc>6vJ1t9DyrIi5&l3faWK4J
zVK8O6@Lc#VEEhI|(}gR<3XTC&rm;9J$s@re0vCr}9CdNT#jh@Y6GZK&(+P{uW)oN2
zDisjFi&{1(^SFx>E^fQH<Kj;jCtX~0af#k@ahiGF#d(hL;n*1$f4Mlz+(ISo@-HUG
z%FfJfC+G`Yty`tP>5yrW{#&Kbw@P!jN}IPzmt9<O@sEptU0ii>O;~=NYiD%4LPngD
zgUUn$ifxr{FqaNZy6NJUi^#UnCsnse^|wg}OU2r4lkU2>$87JRgoi>N?(^_~haw*C
z_mH$OQkdAo8{4GZb19!~lWtCmlgL_-%c`Ot9`sPm1DU0xX?!AoseKD7U$jjs>51I#
zp_Cw!1-@`98y-q~DC6NrVFvLLL9l9nyZmw<9`?}N!|NU%@$jgJY!8h*Jm%qX4|O~|
z<KYPp<vl#*p}L0(9-j12RVc6Mp^}Hn9;$e_u}yMgIh%Wh>xgiBR=r+b!bRG8eWaR)
zR$s?iRl`F~4=Em^9%^~~rVySMdUytdl5532r{(1^{!;}%P2kSG^T)j$u6l|+>!GfP
zOb^d{sORB14;dbU*7e(aN$LO5k8PL8p*(SxhnR=@9vTQ$IpQI8g;CjrhN6m`y4%Cq
zdBH<t51l=9@zBIWj)xW=T6)O!kVj&>6!-9=ho(YLGr?i2R`o;6d)~~VK)#3OqLwr{
z<Vzg5hxQ&icxdgRjfb`#+Ig6jpU<-^yk_;=F7f4A(xbOa#4ma1=waq|sgno3W=jDA
zuWlQ*hXP$abo20<2PSYHpz7|SCwp9(`?7}~qF*xEDLJorc$K3QMV^W3|7=<>(W+~u
z@P}|84}Cp+;bF3eehf1YLp==h@TQ0U9$$yYdmaWb`FnUrs2wQq{>72EJ;>XoGux%4
z9ihht2|nK(=`cP1zK0Jy3=tew#ivCEd-%}9#m-?2@WozY!bglB(RR3p5gtDGFwVnB
z4<CE@%)=NDpLqDx!zd4<J<JvFe6dvlQKETvrT62vJI4857@=LY=vdJmnd3cds9bcS
zhe;kLco=jg>$x2gG23?C5k43t{iVmhHNh+ovpr1p@Rf(}JbdqAnuo7FeCuI4$G$`Q
zhJO1yd-ACGWMStF55NDNMNA-*RWm*CB|B<<OFUR?%$xr-)x$Cm%RS8VFyF%>4~vO+
zNDDkH^w8}4P=3b_>G4Y$#<`5wW=DSTu*Abs4?CB|e;$!WK8Z@=(cTIVD?P09_?<MY
z^03;&8V_s5NEgqGd%~&%yE3oskjm@~XMt54MD0d_zb+aspZlvtw|Lm<p}UWleQfiv
zok_q)86P{?smCt@;k1Wc9(H@sJs2MLc-ZUVkcWhaeasae_Io(s;U^EBmZRjDWU3|9
z*(v=jIy&g#7bc3j;mqa>OGw-slP8N>#e>T1AzGz>6%JqXKp?TcVUFp+@^Hk%Q4h8U
zhfCPQVGk~6pXWb4_(HN>;mn3(vh|MjYu`>GX4_vq5Pst#DlATN?v(f|@^=r%Je=_G
zr-wg8LrNZJ#;cM#WT*7yJ8=r16iwLnm7NlS+Rk|R%fmgUUms^Zobzzq!#^I*d${1?
zvWF`k{^m0ICF3F&BZFk8v}&hx=i~U&kK;cVjCW4t<WA|ThigJCsdaq{v-V$M!%Yvj
z1aX5|eOEYBgxenOc(^P0j|e8;w<WOZJ|Fk{DDI<#kHS8Zd=&NZppOUq&}oDsKD6>N
z{!IhvNRQ~&Vev=TM2h+7vpko7Q$k$QN3xH{&t}0##7CW75^*UXiR>IQ*@}c*G<s=m
zq^ysJe14A<nLf(-c-Ti(AJu$3;^R>t6?{DD<1wo8@r3BTcKK+*b3i`wEANB!!hvC)
zujq#l4J-MmEC}+e{AcZ+OX2fDHhjuQbste5sXl7>sOjTr+Ez2Y%~R>Me0;k-x3*})
zB5!07^Ilep;8TAZC4D^WqpptyLDDlmuIwq4ekw((own(zw0ff9b3W32ti6yzKACLw
zZMXU)p7)XEqq&b3K4L!V`)J}L$43Jn^*ZF_?~)q%Xy_x`$1~z}Eq(!jZC~)wSg4h2
zhmUtD`Np&9xjtU>(bUJQyQDmhbeA->XRMizxR3X$rsoU(H@l>@yQCw}q>p?yoy?X#
zBp)yN=;))BkJdig`DpLsqc^hJ_-HGLz5}!7Pl;a|oBH;Y_~44EH5NxY_#pjb#njI_
z#)Gk`oqTlm(S-&tim=$#$F4<@Zax|<iX?VPY)GisrG5_|J$)?qvBJkIG{(nBA0PX8
z%||aE@6t#gy?wkc#`O*Z#z$WtZ*r^eqo0p;*RtO5L0Ee}yq2*@Jiy0WJ_gbr{wU}a
zFM2KOuU!&x(cMzz-C;1lBF+O35)D~=-^T|&UPz7&6}=1=_(Kl7a`+D25RO-H{ydXH
zAZHle=)>8VJHm&(B0?g4x5Ul!Cq6#)G0n%<K1TT%?PH>kNj^UFF~-Mu9}|3x^^r0%
z>2n|Bgw9sGrEhwLi{jjX5c3~WyqS^Ar_zX*4$1z)$Cp08A&Jq$lP3G1B*musaEFBn
z?JFOHAC8f^;qfqSe#5}?G1tdDAJcuz@G;ZJEFa(b_}<6$epw{=ql1!##g1jRD3UXW
zo)m7mlo#4CpW*6bG0pR_(8nSlKMqaio0zQnbhor-cJ74la+mm+IzF=0$1)#Zh#!m;
zVD0q@*|T;_D}Ai;VbM80R{L1PsrRv)bHw@bvDwEKAM3^NH~QElhz$(p&%+s{sj-=1
z%3V7pvXvPip0k~4Ul7}T9NL*l&Q4wn7RE^ox)&j)@E#v~ecr5q;$t5T_VKfigFb%p
zaeHKZzmEg7VYft@!rpG_+HMJZq+h6z8Af38S^NJ2)%Qp$Q<e|Yhv7pPMpA|}amR@*
z2_y)tayTPC&iOd+!}H<$_`}C>AAyg<K92Y}%C&qq>sKGYiRPpW+Gg*OiVsQp-N!Lj
ziB|)zh=-DO?q;3v@u!cIK2C`$)>4wKPWw3H<1eQD|5Qc)&Ek6mo%cu|ln8fF@9vQ<
z`21=d{_*jzkBdGo`M5^^49L3dW2v8X#m7}<vwm5p){5s)143g+U-z-$m3;DvZ}_<B
z<BpH6m7~3u=H3#0-4?|H%gGP#&XtW83UFV5R}bU0!?-^{;Q*@xtO<}5;DG==0`v?}
zBtX#s(EzCd9t=<{K=}X_0u&EWB0#wS4+kh2AUQy(00<BXaBEtGTPgN6aZk8lO9v<u
zplpDL0zBI-$~~3-cdBtZwzg}ubD8LpJreOF0UixdIud<62pf`kOc48ohCTZ-pAf|p
zd!#1=R18o(K#c&E0#puAHNfj*QVCT8+%Kk}V*k)B)dD=ls-bz0jLEwz^wbPcD?sf4
zPjg)DO7RdQPc0Vwl@*DXc@Q)RPd4%zmlmK-fZPCi0iL1R0b&8_2dEpMUV!uf838Wb
ziabZB-HF^^J&k{)^?rI<W`O4dWCi&3<78eIjb*vSyj*Ur8YSHz;D_(<LV(5rvIFQn
zqKyKuil*|~N}zC)06Ai$)He9JG}^|76`o0ZF+kG*Z346n(2P#rCN&SxB0xMqegOVR
zthiSqGoy60WdJEas{pNO^WO0HBf*$eul-)>?Y+{Zz2Wb~b^+Q4=p3L+fDQp(3eYh?
zrvT?)u0N$zY<I~Rn^0`AXx^l2yla4N0lL#U0r+!OTN-EW!M)Onz0!?W!d1!QD-5In
z69P;O@LGUg0fq$lC_rycL4dadyc3{LfW86V4A4J7zW{I0rB}mrac^%JCr|8?NOZni
zWI%wo0u1Ct-v~4I^Rw!4ua#FZ_4$3$paAa%_#nXG0PhtzO5jNU&<w($N})fO-H3cB
z_)@c+_WPuv0fq$_9pJM7!vl;6@JWDA1B|4$bJ?Gc$@`erPK$5qSf87G{#Vy1I(c*M
zqw_-B$R~45fUyC_1#ljVe$KG}Iip+ou%oW!qWn_9_yENCDTBpH0lo;hXTZV$lLLGi
z;QIhG1561pHNe*azM%*5V_yZB#-%hSdC)$IZ<6wGBR}=<ZGh<kW(4?-f!9npcAs=(
zQ|`sS+2i*~YHx{$!)FDU9bj&Nc>(4y1|~-c3yknI3njBAL<ncw<jfbt?<VCe;*<qg
z5r|_O0hR<<E~=JN$?)XmzZF>~ii`GzQ^3E6BeQ&=*h)^~{)|;z_>V_<#)Bt1)&^L|
zWqufu!&o0+Lx3Q_;Q$*0YzlBNz%Kzd2iOu|Uw|JO*a5Z$*cD)RfbH}TU)>6@lfk)M
zqHhT#u6B<e*e9`ek8t>2QA;z9?2}mglQ3+5fCEB+GOYSps3Jk2l0yL!0gM1<06BmX
zK;z1yll5ek#;=M*SL70|W##;jUKP%%6~HE3N%1(LjE8Fx(k|25{LttB3Rn0ARsUqM
z>em3j(SZT32RIVoXn?;0ezX(62RIhs&j2R_{1M=|u<!(Dd35|@-Lw~bh7oeKNe+oq
z0Zs=v6Tsge-i)FEVb}Uh){;2KrN?mvxJ*6IrCkW{cYuq`6;)FC9R>=p2|vX^Otn`6
zTooPh%MAQ$GXj<T6X0KFzr!ee7&ijk3~(pFU8dpye7oT`Q}mD053fca+7n(ip88R`
z$9&r;Ug$9HI}8@d%oYOw$J2E{S5bU@kr)Kz@sp;4QbYkUFHr;%@}faaC@;WLq$vVY
zRI1nk0Ra&OL9o!IBZ`Gy?IO~VE_Hj~eSj1}I)1;M{Qb_EbI+YSckZ-1v%9l1_dXbl
z-+V4RO{Q&9l$KFOM!Jk=HcO>s+$v*);Ox^UPMOm-OXMVfSsAy<_;qb8k`UG>g{732
z0T~TtG?H<<j0!U9%BUx!qKry1s>`S$qq2-DGVYR5RmL4M?vyb=tOob@h(Gka^jpcO
z_ZX_lxLd|Oa`Y2$=;d76yI8qdBE0onZcQ1rWYm^%pNxCuNIi-nkzJxP_sggw=$lFv
zwGI+AhGuV;cyH?g8F3kzGV05CP{!9+Vi^JwVJaQHWyxrKZ=%8Iw1;IpBttrtLC=-6
zsntNnBSIj3S(2gU?83$}vSlP?6v@bu(L~0RG74nm%1Fq_m(f&4-}$jT8IQ_%Ovc<n
zMRi7Jv4;1L$uIt7eq0E=dMxb;)>b6(c}Ipq8O>xU=QCQ$XfC6L2#i+Gk2Hbd`eupr
zGm~SjWVDviSw<HbZCG0w9b`Nuqb*C%E@&sCy$s{_#OEb)s%()e_bkfXBDL5eb>wq@
zi$r248H9Pg@{1X|%6M8v4;ei<^fJ21cvePtcGnhZ#1`q;_~<Q^$jmJgr4fHlWbY+o
z!xo95ef7k_Ez;>NQePR*^SwerNd+&+cu~eG8LMUVlhI$scp2|;#AOVW@rH~yWek!r
zSjH<dUX`))VvO6`FUc4p<7GM8;y&^~sjSjX=iVPD<a;~IeNFTmk=MyHA;0IM?4dG-
z$rvMJtc>9@-jeaQjI4r!5i&-~k$HhpRQM8+UX|S%)%-pIN3(9N3rP8{D0&@zM~EHA
z;S;Iv{#Q!-t<w84CdimCV}Xo`GCq(oUB(O<lVnVmF;&J#GCrh+d>os?-fI+%^4Fgv
zzZL%kKbG-{j8A1ulhIB|3=+Z*`WeJGakpGakZq=nSu$qJm?LA#ve;)b_zpl(H<l!M
z93p*bY%UwpJ#U_jj~hig(4tWm<u8=6h}tXT8xDkw#WI%2(Y>%QSk}u)UIhD6#+Pez
zh||m7RNfb3=Wms?oC4zC%2+C6xr`MucwdZnrI%4oP66#;Fyl(j)93Pd*KFq(F*1{3
z4HthI$7RSe*2!2eW2=m99C{hw$@ode&oaK3!E3WW$oP>9h<NXvvsL1SsnP=fg=>Y3
zO)`F$u~9JmMkVLx_J8lyYqv_9IoYYPyv)Tn^Z(A5e%q&LyNn$&_R82t4Uw@+#%>vV
zWc(q<sBO<^qh`kZ!pmbK6=jsEg!^S2ka1Y1M<*PV@u!SKoYcefcW#vk$9K&pERG%(
za*k0OucwpJr*<X-5k-b7BPHX63{8eE*nHMdhAG3L<o!{JmW+Q}Cv6hN;F5TCtK`b?
zxHufhXOxg^0q4}*Sjbr>zLmO+Zgx_}DH&H}T$S;cjMFmC%ecU)E#s_=b29!GCEm47
zDtlX`y^Xg?ZMRANwnaMpkBo~lE^*nH>Af+VNhFTjCS5EWC!8;$6mpGP#OleoPOaFG
zBwMkln-r8#aG`!<M#)dH%$}y;76nf!=%^rFK`90G6g;5dRt2RMR8mk`K^X;Q6_i&1
zC0clI6R@0s-KRy<GbV5vIlNsU6%<tbFSW%@<;gHm+$O7{;0^^f71UC2r-Hi_+^ygq
z1yu!eH4$AeYW3dR|GOvHZ9$^Cf*OK>L`Es?UWK;hale8(3UY=f?-P)8z8DkM70g7)
z^T#&H-zL>p@SuV`1&@lP3<V7oJfa}3AX7n>AU>qvVS%J=mw3yS*?-!c{d>Kvh6)-f
zXrdrjL1V#?&Ek~kCTxop(P4>QZ6fAJOXkd&7j;EK@Kg{sFdtKpub_p3mI|6Gcw9k&
zf<guBzfPka*C!M_sYC`{nTw&?cBz>{AH-5~0f~@E*mAp+R8XWqQqWdGD+Pl;jI~zK
zhC@>;-g~<=N^lY<KZ)%Wv{%qUq4!&9f72xC?+YV!Gqy{e6m(WFl1U1>DCo+6vI+(&
zcv`_T3VJE%t)QENXBG5R@SK9~3XNXIda&z;rM0Y>IQVGP(w=4GKX%Uh=}P&rL(?+-
zL>~oxx#lZ)QNe*#X=I?U>gPo#5Mi{Rg8m97q{{cH6Tf3nB;n;(lY`g_1#c=Cs^BHT
z{EC8C6%0}EGWF1-J6dV$_UIJ-Ya;b^1#c)&MN6-2m#XcMvUf<*4r!Qz;Y#$Y;w=ID
zepOifwM)tf7V&j7KyND;t>9Ay(-e$RFjm1twoAb~3dSiI&mj;+?D#zPF00f!*>6YG
z^QBJazAxw#ICgi&NAHj(H7Q`yBn6Wde5_#ms^o_XrYM-I;3EaU^^Q;9A)Q&3Btpp4
zV&w0$u}>6`!u^)%3T7yntzeFVnL_w11)ouqKZ!Kw>VgOs<9~0>o~vMif`tm^QQ0^g
z!i)^RM3}Tl0b#Y(u|<UiMELgpg@P{?4AL=J#}Z2BRMl|1hOZTT!=X{pPsO(imMXYS
zML8AA6f9S8RKYO?D-^6$uvx(t1*;USR`8>OpA@W7u$D?PK>A+6Ix4M#4GO+fuxWn7
z_T!qZ-61iFp{MwjT#Wx9_%Dr3{;c2^a*8(oD&R(TkwC5%C8|GKP@J9Z9sGIhcgh#%
z+_oy%reKePz3g5EJ2-!-UB5+UKX)qFB?7bjAqI%V-T$RJJEVOI_A5B3;7{tI5}ihS
zd_q1U`H37-a99wJD0C1Rjc>)B(IGS@5kIa#W|t~BuRx)iDF_v$6le;alfqWuC@>V5
zoOC-Si}U3|?$q_k%B`~M@06T%$sOyGt^!YiuOJ}j$I1RXr3XLECxhK3Id-S?^3CzH
zX^9gGPAd3I!D)`^PHEq#u?LE>PAO=%KH1>C%roo+n!QzUPQed5qZ*dIC0gq!NBSUn
zLBT%?ZdOrJ#YF{|6kJzuL&0SQSJ)y2*Vy)*(wAz2lFjj%tS2)vuqOX1xJgCkl2{3q
z|HYCdvPzV^tX5`fr<A7R78MV7%Pg%TUB&dFX{A)$N)4%%xpaLpy?-u|Ra-LqO)My*
zqO6L%3%Sf*?NDM_nM6!Qc@;S-nyB;+iQ84wR&k$-3MwkHEEUyNR8mn{#hohdVnMs4
zDk^5Zopy(cRGVy`Sm52g#Gs;+Gh<a%R8w)ciVoxQ7o3l_bgJ))DoM5)Dr%~@SB)M$
zzmG3R$WTi}^L9zMA4>}^$L?2AM@5{?R8dz&Jrx-$<_wY^P*GnX4+{PcyCf2s{r{2l
z0YzCV9#YXzMI-iuiUukk5zGzV$shMvv|bg%{=1~cDi|2eR>3Hfq+QV;id+>56&+P{
zV*jXkR7DFFEmb_GB45Q5DxOr)RK>iC@w+=GA6MyTN}97v+OSJHuuCdXQK+Jsisquw
z(<13)LGt&mMP%OEDXCq^NUA7O(N;w}6|GdXR?$X<B>2g8+aFO)cuBnOAJXH0NbQS?
zx)8D_RXnBQWs%zTp9~Tw3%s+6E-Ic=(Mv^F75pvOO~tb+o>qAd1i!zW+wyEQYiK&4
zJ6kj<vxkbFf{llW7X2adA0h+)GxlbER!YD8Aw936kBYu3U4BT42;X$iV|YQuz6A}5
z^j9%J#YPpssTinYkc#;#7N{7k;w2UDsd!(-5LQ*i2o)n$yrSY&6>q8-s^T^3*js6@
zt9XM=z9qrMhX#Uj-cSCNSMZN$&M+0jRlKF5*2HGqVtwexLMD-i$52P9cw5C-74NWn
z{lsV$V+6w1F^b($zl~GrDnfdfgChE~)ozJ8$<+Ql;JRCypkktmX`B}-K2R}9#Z(m^
zsnN#%WECH(^f`rRf@lq)=>{Ij7%60O^Z#QNpQ!kh`jDOMJ}8%vJPhQSp<*U=QbqKS
zV7D|&#b+vJi_(jQkpJ}(35uOdoe^~I!jYM&3so#qv0TLp6`!l1@vbjbEK#wTIxlQ_
zeIfWcreCS}nrps_rGoO!%GfsoVI7<eQDv6xmYBLs5dTajDsReOsbY<awJKJrSk0lo
zBR+UpY}6MqCaqJkUd4|pep0bP#dj*cSMh_2%R`DLH_lpiF50_eAWqn}dl4_({Y-sO
z@v90F>6*MaY0R=hdMDpRHRB4P;)IILq5}I=>{qcx#a0#DRBTuAhl<_onFX;ODt4;a
zCD^v@mZ~%@AmkX88eFu83dRf63u1fuQ0tm^O>84nT32{L#X%LC3SGsYDh{bQrsBAY
z!yGuy^xT4@)c;b6tZMP*r4o!1VYOF{DkrN@RH%Z7R-nmK=7UVaw@M`p6{ZSTg{LC<
zV$xD!t8fI)yvfH4f}f&Z)pkohm&94IKt-scn0QTS#a(+MeLJb*l!|{<+@#?z6{l5P
zVmGQdqvEWJzg3)9aZWVWKAtw^gV?y9d5`RoE~xm2E5D#qu}S2~YDy!*N9PqTHN(@c
zskkl}t_s+GkHpQr8=P@_q$b1DZVW8QYLO_R;bsk`HI&g%QbU@CbPc66to<l@_qaui
z*4SWUH2rTC_@v3PdoIVS*UY3Xud*6$(@;)BOeAGaiyaehEX+GQnJBM;8UJb$EtnNF
zRMfCh!*3cYX{fB>MGgHlI<3PU8Xnj1goZmc+@;}R4GlC@)lf}C9SwCg+^yjr4Yf4f
ztD(Av8X9VjNUJGId~sa<y@QIl0uU)FW%sz2UR%R`8t&Kdj4%Yv2MS9k4?T?3)9`?X
zObuBY>T7sVLxzU9hB5cXyPVG@KfRL>&uP%O=-KF7lHnmy%5-s@;N3maBN`eCN}h&B
z8X9Z3l9iP!DA^ivG&B)7iBE|?Yevf?afXCO<LwfWM>RaAAz!djep7+`xJP1O^hpf`
z8ais|q@hqlGYzdZv|%Tl$ZxKprG})278>d;OCH!G)od8etRnVC!>m>sPTZX!!Xy$U
z4cwD&r=h)uwj85a^xD9kd?Fn*Jf(p+mz@)Pq++DAhAtYqYv`e&tA?jFbkp!dvfvpF
z?z)__XJf{-^s~(hjz5_7tcC&NEYqmknLRZ;r=gFAz8ZRIFkf!gTkwB7E?WJ*SsA@)
zKd*tDF9>POer!!n>5MFj>Q6ZuW@-3L!$1v#G>p~oj)uV+UefTUhM^jUXt?-R+AC~}
zhT1#@q=A2^{W6KyG`ueQ?F|h-PLJBl-`0c-WEiGlI1APAw%~b7!w3x{H5__1dM*!p
z=6@qgWVA>cBiPdSM*TmnOoFdB<21ahVUmW)8pdmQPs0Qa6E&P1S&nA~c@pw{EjkZL
zen#7VkY8i3^Z|!{uSDX98m4IYRKqk4Q#E{~;bRS-uuCuG_FSLjn^L>I(#BKSe9dF_
zL3^d?8fH)}i?U{FC}toJqkKOk!)y(6G_2IHO2b?Y^E7-*eb_0@r#fl)Lc^CD7HU|e
z;d2d(wdk8-++Jz+Ug_uF$wi9`H;6{<-zzO)8~Nt1;TsLRmt>z3bRtaZ-@KsozNqa>
zH7wJxTvTI)2EM_PnDv6h*G1NOwT3kszUMfK?pmv1ord)Suf0#&py4}CrQ^}JUcQjl
zMZh05{G{O*4ZjM`c18I=bI1h#(msh%@)N$dPuis6cTRsDRdsCEu!X&?;gp808n$UT
zu0htYowd@iSHnIHJ2mVQa&`;&2Nmy^=smDrDw4TJ5Q#KT<?q*UK*M1TM>HH1^gpQ#
z?7Dr@Q&)3;74;-1ql8B_9Q!XXQ;Ug;233Ql!PcN@(3!V=j!7kHT~J|W%=nL=QQ|FE
z7dosAmp%=l29K)3s`gCq;u|3^yFJu6I`5I<geCJK@NyiZhxSQiIK5B$OT%dmx9TXZ
z<BW#08m?)$uHl@9zd0Q=T;g=zFP+zLLBl_s7yF}XH`y<>+b<p2oK57@?s=EFE@`-`
zVP>lWzfA#&-;8U<5C4%J3vOumm+QQaG#xkTD4~P=H|zMOLjiv%bZDEy9Sp)Yzh~b<
z9-5xkQA)=r9iyEMa<VLzGI+mKMn_p4m2_0rahr~EI-uir9gFUY$8<F8P*7fn+#y=|
zf9xA4@x$gNE9j`GWA8^X(ythe38%ErsiI?7&BhFO>S$B5@f~{98$@opo=##l9e3+^
zOh>+sdvsLSk*Om~M-3e{bv&qJQ=P0@I_}kRzm7U0Z*3j%Yw7pt*te`TMKyajpE^)i
zM?D=6=%}ybikH})%72#~H71`pdB{LWQ5noDWHK7<lyd#o(MU&Q9S`ehAml&7)(M2E
z9o82v*e`utl$EU`N9TYh5&||6FjvQ<MM)APi(9lyuj5fYy2rs2_=n3SN}bAXs^f7T
zPwRL_#}hi9WDn?&bQI_))X_pmOC8O0Jli&}xlW^n(wL&;cVf8z+Ak$_6zOQCqqV3^
z=>t+n@nLe)$Rs&y9FQ*mlhIa3I~|>Lbk@;cM+Y5G>F6j#QBKYQiJW&&EMP`TCeGAK
zy^>vYbQLmnVFcjM-;>=~2OWKM^wrT_M-Ls(>FA}yelB@qMy#h`Zqz4QE-pQuJWUf2
zB8hn01Jd(4UeM7`M}HkW|G-dgc-o6PXi)Ldnh6FTs2HGQpdM`+k9{!f<(dg5y`*D^
zj-L(uV&G*Rujshbz+DDj)$y8+ozxi}uj_b&`ljP^9dGIws^dc)Q*;c|F<i&HI>zgG
zOUDQuV|0wwF;b^fPQ0ySG&#%07xpNcFe6Fi$<BGS@xsdARx)SrrPw<<j?IpZ<8XA&
zV=9TfNcEnM_jOFv@qrF9yfQD=WJzp-X!u{FlH{MHW3mnsFW;YFu7L+6W}m9#BOSAK
z%+c{NCy|cnI%aUj>6oVD@{<Mc78G=7kVS;0k6vClQ^((Jle2Vu#yV7vlm7hj!Y3=o
z=f0Cqwz)dy>6ow6ewsAlfJB_R79Wrn=vb)JvYB-1K(rL39h4U9_(I2Ob~5Kh-}sk0
zzUBnyE)cV@?YvsGx{#KTd86T59ZRW`I+p9v6$xHZ{A^q~nnzwCgs;@Gikg|0RqJ3R
z`O~_M+f8i7=vp1?bo{DgqmK1DHt6_K$4@%G<E$Lj?0X$Qi0sR!B(o1nbNl5=BKyy*
zxuBCmX(aaTmPz;<XPk~LI<|_`-*x<ZJZ-bU-y9O%*rhWp!fiUX>)64@z7$o4hdD{?
zcQ9i3L&t6%=h%BX-FaiL4xh@#6+p*+9jXpZ#{qVcj-%{Y>c5UdIu7eNB1#!|Q2OGa
zByGvrc<_HmTj@FOxE?u@lXWPRc{-b?-R5*J;z^PP#a6iaV^@boJ=bCAFm-VAhd=KQ
ziIzG#Tu#qRF^}yMo=T>Rw*~U>>nzlf(s5eHiqi2DI!@|1rPJ7sv~FeW)Io_3V;dh$
z`%A~~t73yo#tYl#oe`X5KFbv>%ph`J#|0fF4Wt?PN5@4S*LB>`afwQ$<C<vH6&-V@
z#;yu{g%v$<=)!=Ifl0HjxA|8G%^KWfplg4Lh7L*?xY@wcXXEv{$9Yb5r=PgRK)Qi)
z24Y5}X{8L5Hc&?3w+dMKkw{=!14M2!_~$x`_7%kP24J8PlMLK$;HQsb6%14qxdyaK
z(w*7LZke_JjK;Bwfjb192%}6Q{D&u#4OBDmx`8(g+-=|<14#o#2C5sVVW6RbMh0pc
zsAb?m0~rSHHBj3?9Rqa@x}=Xp-7nz6FO%H9U?8QQpgdrpzCd{XnM5Y#4veOM+(4#*
zhYUQ-UVSMy%b=|uDOarIT*k@Jz`!F0`n{OT_57QOnH~R>xckxAK(>J=3_NKd$3PPU
zk20fyTmuOMd7_{pqNS7CMDL%AD#UyCPv#qFYT$7Le|z~;|CH+WPc9Wa#K}-#pwK{b
z11;FDdRf&*r8N@>4W!Um3M~$i*wO%ThOK`}tqim_(9OWJ2HF^q40JZo#XwsF?F@7<
z@RWf$lVj~EaCkob?h&#k9St7mOY3BS9wF^NC3@u}{ox_WuA<IQ8+b+_e~R;pXXg|$
zBZ=J&^k63#=x?B>f#(eLHSoNFUL2IG>Ael~F=$sL8rff^tg45kwqHeE_kw}XCdOVg
zP)r=c&zX5i;se+U11}jEVqlOcZk?Mkn5q~?<HhsIw7C1SfmgWl8+gq?10k77NrCh_
zBr%LQB)w^1sDbGQW*8V|U^ugUQ83xSTLwlLc-O#q10xNLGBDP_JLI7W2m_-Hj4^1O
zA*yY|Ezv)BhNhD;n|u=+XYgia8l&D1(O1lS2HqFd`#``60!|e0)Bd@%`Or&vwVNa;
z{KfpCfhn9mOJh?Fe8eKySK<fmCk8&{C^X8NMm_oON;{Jn_^WrOfmxh`29~kA49qt0
zxq-zTI|Fk$4a>wA8kooIBh%&^SRg1R`{mLl(}yqTesf6bIw5nyl-MFcFZE>OFARKX
z;2Q(qidropH1M^7`6sh!ESHU9UIvQYd`O}Zc;0*3xHN6KffWYU8dzswrGZrj*0A(f
znyog#Z$P_hyrVEQO2|OsdIK8_{6J;foc*0B=z9YtmPT6#Z$6ZzioX4kD}aHL_2Rs|
z@BWoR<W~b5sXQinnfT4XCIh#bC}-k#1Dg$a27Cis3~V)U$iQI(+YD?saDb{(J-)-h
zP6LCd$Mzc7W#A73yAAB&1bMOOA5q**TXM=@$YAu=1%-DWmi8IgPt7?TjWVOH4oe3O
z{K=Vqb9qX;abMQR;b}(<95tY`jRuZ!J=v5zZa_A8bv<%x$c%~s)qrN8phn|2TC^sy
zSJ$Gkhj~X^YPl%e<g(KwX>$!Uz$gQ=I0jr1U4K}rSvf&sU?4Pb*}xS8DFY`s{SBNq
zaMHjj1E&p~G4S+^*f;ky`-^WoYh!$co3|%%*1$Ott^Y)F_eW7>7`8u`TyZM*f`N-1
zuT!}U|4`rVN^HL;e#wabtc|S~pL<9As)1{qk0wf((UN%Gz`q7s6%^dyboe61mx^L(
zq}*(xq=`}{ZZ(l+;uaI>Ci;sz?7I&~KZ}VoR6UhZ+C&)>Wldhol~PRFkxhDuBU0ld
z5nIeec@qsyG%^7bx0|@vL~RolOjI;cjk!!zGEv#Y9VYHHQS?QO15`y+kB8DZWOtd-
zi$qmHDL)`u2N>4;ki17wYM7{LqPmHut73D{MEzV#(22agGA12~M)^Jy_nXKt5jRoC
zL|qg0OgtdiGK7Wd=O)LREsoVU@t}#R<I8bV{f>bJ=gTIRUdzZdk!9i`y8Sh=Te$mK
z_h#C!2V#Av#u}IydqjG~q%Yv8l-B7*uQX3KHj!<jt%-Ifa!fQa@uZ0Y6S*e+$KWv&
z`6lv2(O1S5J!*nK#1oYhbB;(vnwogr#1kegyNFI(NXZeF=!pD#F}Kh}GZRU6k%@h+
z3Ywc}VWOqUyOt9DypX?BlO(UtvnH)fv^LSkgk++}nS3%+4tXetI2q=j&1i3;gNdh2
zJR>Uel!;CzIt#ob2f`_0^}3jmo5E)Q#JURl?jzFd_L;10HxthaN>2g1vlM|)vU^0j
z<)}m+;x&&-y-oBnvD(BM6MaoQZ{h<Jlh|V>UNkY>#9Jo%QLjwAX5w`d156Aw@sf!l
z9H5oaqA|$CU=!RSNgS1Uu$i}{UpDcIiC4*aRO)b4+FmP@zpIEdi7!-dn0V8~(EsZ5
zq1b|0aXf9<f0Xe@r4c4Znt0d5coU;cylr9(htkB)Vthw)yjmvcwD-sx$#+Dqaje7W
zl6*`T^pB<+Q{OXj@cZNh0l(Xn{l1Cjosy)?J1R{SM6yjb@u7+NCKi~OLcKD<f8w8+
z_{hY^CZ?H~Zt^me^a<O0KKD}-C*Nr{==(x{U;&XCCgxnqm}z2`iCRTP#A(vx@$<Rl
zJbYA|%~TU}MMe_mQJ?2GBpc6&Qo=$Li%fiN;u{m6n^<gOiQxP~z%NBLP92RjmSxdE
z%2y_siyNM#d~0H<iDf31i@N0wOS5Lim}+~86(&}iSS7N*o>$OLn2SjiMf$eZ#5xm4
zOdK__o(gGVyNMl~wkE#kdTwHqi65AeJ#69^&Q>w9KQZZYG{hy3NxxF1#pSGxqQklI
zb@wsei;;devDw5{6I(<evnx()UJ-XUw*5Dz9gj&nP3#iUKLz~5#2yoS1-@IrLC2(h
zCia^+zyT7J%ffceJIAEYjzzukoq$9RaaK~=l-OQDIcDOx3EPBYLN<|EE3TWM4=Kfj
z%F%fse&A}lMuyc<Tb}qV(=cIjJ>-#|^*I*%vtAaFsOBa-6MvaFZNfJZm^i^fH+jA{
zEi{qh%Fr`jx=f<(%EFtTi%<P7$2%rHJTXS%DN$Pz&zLxC;=G9qT*Ouu=6oDGXX0-z
z)W@a1ZpJS?qFnz7ITuYdSd-JJSF~qH38Y^!>BJUwPomyQTr+W<LOlHA;f9HSsi+R7
zIJn6|2@CCPw6}4yg_0J&vhcNqGz+&_NLnbekZz%rg*q1MTDa9hX$w^?RI^aVLRkwH
zEL5~2?=!bqh*>Cap`3-{Yt)1c5UIBd`1f1U0iHo8vnyGsY~c<IcUqB4CKCBdQ-!7T
z<jkfVQtlEsiF`TXKbN~L++(4(1>Rn%ZlQ*SmlnlpS*R)4c=Vc%<d~Odv+uQ#wK_(-
zjy#Fo;&kqP7VfvO;ji49$0fpg79OzB#6qrx`W7Cv(9l973mF#T79O(ju!T%3`Yo6x
zVB)yc>A1vyf}|7^8(4V6;_>x}GEqR5+t@<3g&mJXgYJw>%dznN-?8Fo!a^R~Xu&L1
z^r)z9zJ;b%<bvTb3ukX+Y`l@tc68d~>@*8c3I_UPI=A_MPkDNVDzwmym0{BUL<<Wo
zEv)hr59Srn2X`^7<R@BLXl>zT3$IvcV?nae-9irwZ8^9WI$P)>B)7NF!NOAl*NdIM
zSm<O$?~{EW`(KHRj!P9P$Gcj1+QKues-K@JoRM{7|Bpy}R^)AZN1Se9+1Q>Ip0n_x
zg?<)#iKIRj`da91fxAE}o=d(uF8RC#I{SXX!kFc;HAVUK13pk(k?wC{0LRh75Rq{p
zd)2~Vf%CaW;TLPgJ9Nt1+&aRU^wV+a;p1tqT6oREhZd$-c-_Jq7RFk5$HJQyhFTb5
zVWfp&7KU4RONe@EU^LSi4j-4gcTeukOOCSewuRBGj|Jnt#JS@V|LNZ*OLb(4QJ#4q
z9B1KO3-4Q)z#fpL@$3p&dQU(eB6?Gn{<x4k(ZUB*NDGq%y?M7H@(g!!K9!}<5YM0A
zaD^;QweXRJc^2kd_}IcH7G_$QW#Ll`(=1H4FvH^cNr^U}ZCSc5OY8l7;xxxc_?d;-
z7Uo!(Yk{dhHZG{5NDnI#e*x22G&vt9Vqu|$#TLF`^Q$BlS@_(-@vmaUJC#T<7umkF
zaKO(eWeI1rB5j<UWI?=r|BZ!jE&OZYCL2pFEVH1qLo6(}u)@N2>a&HFR5td!g`X{~
zwy=g%$-;LQ)>^1EIkwKidWO8@(ucE>Q<Ah*+mY^=(-YrY_<^F%W&B8eYg0ht8|ewM
zov)Ww_+8E~7JjwxyM@gbHd^?N1F<%?i32Kl2<cjsS(yE~z1YJ3v9OIpnV#USXA)To
z<vf#~*vTcu!k-onS@^@kZVUS?>=)(kv2fd-*j@|dBtM;vvh=q{rRCm8KVadYkj59M
z;))%%aD<&^L8hohv7;7_vBwt0)Gpa9jyyyZAy&1ZSzz>7-7MCVsV{C$&dE!f7Az{f
zg)<x}3yy`9g%ez4gb7*Kf@i_!>|PWLEQCTWE7puFbsE3eG|51Zu~)9f7*2Aga9yGa
zPz#I>o*6w~UQnd77S37t$HGPG?FadPTeumC3vB*~wDT6Gp3JC*#J|_mZ@!U!$--p|
zS1nwl1PlBUT(v2u-}fb>O{YQ0EhEb@dYy|8`&^NT>+k0CJFx^8e;W_jsBfdBjWioo
zZB(;yi;Z*}<!!)5DI2%iC~M<38>Q`N(WcBYc4T0m$dv5~n%pmEN1v!M8_y4nUM<>H
z&$+!?^jdhkjS4oZ*to-vR_Tg1D%q$kaNfJ@zA0KZ>8<Sj^SO80xXXrKC(c)tQ5B-R
zeE%W5+r~XM>e~EklV9CN4IB5_xZg%i8?|iQYooRedcnIdFaO|#g3F0$b7QMGhsiVH
zb|QbSBGnPak=|uVVLdxK9LO-dSMos{88)6|i)_SgWZGzABiBZjjfZSBveDSa!!{b&
zc*I6SA!MBrEh+a2_s27WW;CA6Xtqeo`LC3nid4*yu#smY-$qj#kN%hXm_X>}sjiYU
zV_oub8&BAgpC&TUixVjn=qpm8jb=8AY_zh`+(ru<%P;081tddDfo!W0rxU#wYL{YC
zYa4BB%y=-Xt&I&;<Jo`5UOJnQY`iMGrao08ZXHPPVB;wpfsN2cM|K)(V&iKYoo#fn
zG0w)jHoDq)+QtwYFWY#=MmG+qjTdY@Yooi3=WO({F?wFiS{UnLqo<ADXR;5BY<6;9
z;lGO1o0@Yd(Z@z#HmYl$H!yeE@Z<;QvYE88X8c7P{cH@R+Sp*0{x$}%$;@>oVjyI@
z1`FY@E-ZY>24xbdqDDRZ3L9c$q>WKFUbFGKjiEM%+0jP&8#dmwad1qzS@pAKuZX<x
ztf~|rZsRQ*BScrzvk$Lzl<ky93l*;!`P@-|o2A$oV`D6PLwNbTjs%f+M0Crw7!ejq
z;&>bHu@oEAZM<(|f{iIQrrMZj;{zL$Y)lrMZ}ATDtIej4E$0h|Q-mMdku#KEzRUT@
z#?D5KKe6$tjgM{6I|C)()u=HI6VcOmv<W}-rWrP7+L&u&o{d>HKC>~KL%FdWKjfLp
zo%v$xLvw8Wa%c38H{Zqr8;fmxVPm0<MWPO$3;1Y<qK8z8u%#-!s7jl^D*V#M5}T)<
zqA2r{lHRB28ynx+*lJ@N*MA$!I4NxWK&7&=g8Cywt+cVq#%ddDMD+Nz^nF)jhdzj{
zwXsf6)>9?A{_lVKbRqoqPm<q>Bo_45v9uq_Fevv|8yju>WaDQM<$)*?e-Ug%ezUR3
z#_u*Z3na=&AB!CeNF=gFz<S~}U^|uPuJ~aaM{Igk#!ef%Z2VzkpN;)CcH7uvV=pJ{
z^>kWb>v%GEwWtz>>{g`%)DRngat&dNROy{s33{<4Ts%3NZodgrHb-q7v!QVbvT<Al
z*@hx2;0RHwjX77NWtricDj7CR8?Ft{<|lkqTib?1<?Ij*aqSL8a~DaKG$})qYMhVx
zg5lb3kVuA<jT2m69ArB<Y2y@EMF*7~{AJ@b7i0$|9h|Xo*2WbZS8bfL@wbhCY+ST)
z-o^zk2uot^=fq}<^DSG8vKmdyykz6DD5dq3SeXscY&voy<L-0W*KAz3ag&1*4oVG8
zW6#{+yyFUR@_)N4#S{{Yku(RlIJnJ0IS1*?;-IvHG7fHaFu8hWu|K;fG>JHim^&x7
z>Xl?!2ZW@=9F%u(yMqc2(v|}b{#chogmC@3oQe*<znWf5VU$P}2X{EA?chF#yAZg`
zK}{!`I8_}~b5LF2jNVOp?f5+oI=$Mgt0obrQ??o+^@)eFhOI2D<=|cipH)i~`Q>@{
zpA++b2X!1|Ie5rHT?h3XWH^XBc)*E9s=k8<1;XoQjPiCEVb|^vp6Q^$)!6(`W5v;j
z8FkRm!A}EnKRln2vA*OZ0w?D?XR{kQk@pbN8O?Ff#K8*=UUZP_AmO0BgANYz96aiv
zg@cw39&?cI;7JDs4w^c6+<|{O`w0i#w<b<6j<%Y)U=nY6CcDr<GY8E@Qt)2poo_WG
zoeYGju6aoZMGo3HkQ}sfKn60m76^G5*0;{;JU7->q_%UgP2A9@lI$3m`;>!@4xXiC
z_NRl+4xV=KjDy!Ssf*~7t`7Fxn;1MOni_=NM3fY!lBZaH4+qaV=;h$e@#T6_F|^3W
zU2g|{9Q1YYyaPrDitU20HR<TZ3|huxVBUTlH3y>|jBzl)!9YrIFx0^y2ZJ5F?BEp#
zFF6?E;Ji3T)OJYGkgK^<{>|8=Nw2a34qkWgh6B=L??%shMO5kkqr)5wcQC@iNYNHr
z^QLL*w*<~h#G}}&H8TG~{B1#D60_5w_gDw-IGEsIqJwb`-gWSvgKsNG`cQBwcRW>e
zSQ?RCOAFuU*j>tPB`$I@b>zpf4;)Nl4+w!Yb98xev_w>ymz?V0BkI44-7Y?M@QH(a
zTvT`Qse@?_3<suz=?-Q%SmR)=gP9IyQHX=DsmTszJNQD#oa11wg9Q#2is(EC^93??
za^^)%`uN47m>vzvA_t#4Sj@g%mbq_Uq)YX5iD6*%oG%6c5&>(JiL~e&w$8yy&c}-J
zr4E)kp#QiP)RyIi%N@{mQxBTEk&1{A#_8m%Vtkc@)l{2#N#aME6s&Wwo_ghAyMql5
zzH{)agN+pE;0J1W<@nDIeiSAC#Fkcy@0pp&f85-2W)gpV|H8>$J<k8#x1P)R&B5;u
zHaplP!f#@u=7;+lGrGmWRw3j`(MBfiaIn+CpAHT=*v0O3u-Cyp2fL}IB7Cr+@ZA3V
zV|mfeXM=^wD^p|p9UO3QkQ$rHrxuZ+yO2huI_%(x1KEM%;HZORY|+ZtaR-YQN-xf9
zI9!*=GfkHmRUK#!bdgkC#9iMf54@jG9_pdxz;^I2H&xu|tJ!gIf(yF?*MY}5&eTMH
z$O>1AGXx^a7ZMUv9L)w<d|y4q#oxgN2md%Y&BforIR}4pEJX8ni%V4_ujLkdP(3e*
zwWq~Yan6t}z3AYwgDZl5iOPR1THCKWxaQ!xgBx5+Yevg818*=9(%*s7BYOAdn_&qT
zx49_i;${~mU8K3V#l@{IO1pUURQASCW9cqR3H<#Z3m-h4-Rw$c85f<7CCa)WP9o(j
z7hM{2QQk!r7k9XTi`!jPa`D%KEb2@J7Zv}*9}*^`cj{7Q@(jO;yCpYnP2B0?E;lk1
zS<OXNH&Qv?+;MejwXot&p1WO;jazUvT-0<i)Wt9twOrimqJ@i=E^52D&qWg#xi0Q^
zQOCtYE*^GK*F`-SaTl2`9&l0L#e*&~*lHzb#eifvIj4slb;ZBBM7-`GDN7_hYDi?L
zWki#!fs036G<K2g!kiZKX2lx1Xe8K}N+E>(#II5!Ijq2h0_G*2aPhc{CtT#Q1KsG+
z^O%c#DhX>fKgz{GgrTb;J?Wx=1zpQ+=EAL?U+s%np@@<~XA{i@PJTv{E{a_AcG1U0
zD;KR@baBzuMH?5Aiw-WHa?#dBI~VO;^evm<#g^AaL+C>B_<}aPvBhXd4x)?B?CKyv
z3MKP47I&?Af9Giz&$#H}qNj^)E}kXQGSOYspI3Dl==_>8ry3Gdi9hF}mkUa+J})|r
zPcL<ST|Dn%u#1;myx`(R7Xw@jbkWZRKhyfVk$>|Wj}>%jQox^F{CuNl=RqzQ{P{65
zkUqr4%PwAX@w$swTuf=3_jCK4SDC$i4!`Wa7R`Bsba7ScO$z_EaHrXrGTD&fF5Ysn
zgcWu%!o^4zA8`?OG0Mf;F5Y)BL9}JGi+5a%b1}xnSV7^yrG1`Uxia~#i}5br`;WNE
zka|>&#%s)b32Mtk7azEo?BYYg@JYqQB!Lt&OcD6h|0u=k(WheK6E6NP=DL{YVw#KT
zE@rv-Ot9@-9h>1|Ch<P`^Mw<H@xLc$lQKMQj>|uf5~JyR6UE4U7Ykf4y4b}+7bRvU
z7rFS{#j9=eNSsqDzOhgAWXx|;@P&&n1!wJ>6C{r4()w!`-?-T5;x`xHx>)LBos0D@
zmbqB&VzrAkE>>{X1c{X{R*Aax&dj=INTad~wq|8j`aXvSj^yuhs!q&b>taJ@7IBuf
z!Nm_8Qy1S+okXs?Oo=vL2!C?%vx{F`{3__fPh~bVrDAhWtxSmw#rP%{+g-ddA@g?^
zn_X;ivDL*kE*f)U{Y~kD79B4cZAO!k_zo94UF;J4w23rFSh-=|JudcAbv<<Ru+PPQ
zE-4<WdN@F}adFYbB^Q6XIK=to!gF!h#SwO|3*E(07so^m6)uB(3Q#xNCuI(kD3oxe
zDXD^CM(L(oOv&I<;KFv{xUgL0ywdF3pUZt-J<h-6#EJ0#crnFy5x6+*;*5*XMasn~
zu7pC=2?0-X`YcZJPDe)2ta$5#=2&?RgpEDx;+){QAmHCF&I^P|1FJ`ma$QvKA2z|1
z=(g#yiz{5ZJ(Tfq)x|ZchliUzT<4P5J5DPQ|GKF0aqI?H+8%i$`^0bZBF{cdx@1aU
z*32yF;TDhAEhFYM4?C|swr)_8zJ5x1*fi{>TRk*-Az~(EQdtkTd7uM=N*>C2h<Ui(
zLj@1zJv>5VgJFFLIYcPDa-Vob59h=+@J~mUqYz4{?4gQ>JA{xsJ#gEk*qs5hRF$%;
zdAQp{o`*+0+~c9Thlf2h@KD1;O%D%x$na3h!@VBrc&O{){P48e6v9HisOu_P(d|p_
z)Df@zWnn!pIw1Xkhx#5Cp2%p~D*8+#<?+=?tEgz)ne4bnQvg|69x^?Aw=L>hLQ)=L
z(~7dl@Q8<o9-0W@jXX5=aPsZ6r^P3Ewuc;ca_y|dx}17t;)I!2q^r3e5+V?9VM&j9
z$oG)+P~@ShhsTAe<{qB#@T7-AHbh*zDDkv-^CXY(^ubMlW`dJ;%Og1gZ|QN@Ju0G=
zht?k2d1%juFO9Vksgj4^_eGtM*QTJYpj`M`>fqri51l=9@u2*Z(NVxoq;yV>u%!1o
zN9$Wx4^N9g21c1ggz#Ap-93Em;TsP<JoNN1#lut&&#@XF-th3Ihu$9gco^hiu!p`L
zp7+qtLw_$aMDPOp)<dyT0*a-clQ=+BjM0IDXV1oL5^1~OCDMDxU-s~dK!$iY)i_C&
zd)32h?4?<muM53u&@}mxC6P{Ms?$&p!#up>VVsBI9^UdW%EQ~FtS%hkal2a@DT<@J
zid~jOB9YM^#&{Sj=$0ih6w@zR(z_nUdzk3q0}t<s@V<u$f|G_}3#TPheTx`~Px3IC
ziv4BmLu$TF6UUKW5jL70@qFarV-NE^ED(7=@i5)P41s^jRtsdb@O?AW1K)2y^Dvu=
zZA-I6Qhv8Q;&VLA^)QcWV@sqkM6b>D8uzoKdru2JeC}Z}wekM=B2K7Fxo57$h<_m{
zOQ;^n#Fql{Ce&9RPF&9=4~gG;Sju(M!+sCTJS_LHk#+E}!ox}r8#oI*l)e~S<zbD7
zwH{V;mOWiGevmY6Zs9tSv|dm~%q`^DjkP0fT(u<jy@ww?{KT2qyx<29bdOFi=RbS+
zMc}`3Ser%9Xa*wux+mKvsw-C;54${U_OQjnb}w?Yz171uPVisL5r3h67PIgRf;f>K
zf`P~%9(H@!<6*DpF}^hZ|Bde-`b9pc7(L+Opoh>y%EO-?4tY>LXdVuGIO5^B2iZf3
zTBVM1pl8O8aj<NO-&VaQXY%WbMf`m|TFn%8!s%#VMfYHMust}U#0|D&da&4&q6gyl
z#viSf>3Z-y_#OhTCw<~6TYC7dX3Wk_@*H8N>{drQ!2x2Qbc>&3Updk#KDNG2p5`(_
zTcBL`9Ek=z&v-b?Y3oS4ZsanRl)pVx?wCB!S>{OHVu=#Z#xHufMD++UKg4B^N8Hgi
zK)V1}JzQg*eXR3woj-p$@qKjl@vn!Qd_3TzzK;?<ZuU{d#~nUO`bhIp&PUA0Ek4qH
zl<`s4M=2jir^jyfQQF5R!iVFYHPKp8c78MvB;Mv@MAgXRA_Gn3l=lH26@66lal4P?
z<@B9T6jboRuN5MMvwqJeF)g=%(aJuGiFf+A%SSCA_p-#3xmA7K?c*LF)qL!j72`PG
ze`lQZ>ON}tsOj@-U1F3M@Oc@3jvu}7)b?>7Q(dX9kNf>-_1oo0b$l#wBF+5Ek<wkM
zo`{l8%7Z>Kd_3XfNgr_^nLe_8<oL+)@sN*4d^GeicuewP9}Rr;_7k)-Ie1VJDS58+
z$_LFp9AB=HkH&svfAT3eG9%ewQnHDUTpy46c+5wirUeNfd7>sP?wwoX1Kg<Gd_if-
zj6O&tg@FdX2x*bBz(=8vHa;XD&3yikMoadgj}{`=>r-Mxs@G1u<4S}@K3e%`EhzI{
zsqxcE62EsPUjA+Cqn(eZd~_5U+xzGs*vP<tl*QRuVkbfDEZ{L$Vqo^CeLUl1w2v`9
zy7_q4#{eG#eRTKH!$)5q&-<8rHNB^g=X~_?@vAte(N5UA=*@=v*m7^?h2HTJKP71;
z=>?8sop?VVd^PHPTjE6#EpByxQMa2mWe;Lk`*_30n?7FhF~r9!K3?_lvX8%AiLiJ5
z#uYq?@HK(I&N1>NQi|n}KGerBA8%0=h0Ng`1@YBPhE|@$=tv)<e7x=B=lAl*=H~Yk
zdB<GLVCq;7gpWCFl#g*f-u3aJk10OJ`*_dC2R<hGc%RDuY<z-`iKKfH%@`7nc``Y=
zOCD`OGl|j3KE9kABZa#MQ+<5oW4ezSK0an%AD{Y|Ch|UcGJn1&weBL3lh?<Xy~SW@
zrjJ=ZKJzh~-F|zVJoDP+{k*=ANo)dnY(Fv2$9x~(`1sbx0v`)~e8CcZED~Zr_pz9*
zTVKc}<rhz4l~_r_B^*lHG4}Dbk7Hg`9EH=aH7iW!r9PJVXd5P0`B*OMzrx2#L3w*Y
z!;7MqSO=QpTkT^FSB9a<3cmFCKN%1E{Kbq7KCW?j@$sFH?|mHham2?DK7RDER}92Y
ztdfsyKDPV#g{tCXlaJqhY!s=#aRR1gUGAAAWO%xFd^45D$5xTr%9ltS8ASIE7|!<0
z+rj0+#~(g+3kI6Y-X#!r(cQvS+G`7Adsu&QzKEu?_xafG^T$f#13nJ=_){>iX&(7#
zIOKze;fs&Q8&2b+>>M8{A18bq_aReVeK<Z8E?hozABIo!hH09Q*RDm6gVTTIN2hnX
z=b1h%4nfy!QWzcGD_*)++~o=|rkw91@ZoU^k4~duNisa&J&&;Enw*f!sW`E7(#I(u
z=cwmC{_=5}Gw$nTv90DaKF*2?GYd;(5ls4Rc-na%|M<A*;{un#`7v%tGWC*=%WRR4
zt3Ftbm+pv9Ety~qX`^`L!&%Hr$_+05Twnv#4scU|5&<d&s2t$t03`#I4RBk4v;emR
zxHUlO0O>)rik1@a)I(X%`;jV6nHVkpWd!lZ&tr^^@}+VCVgbqrKtQ9ZY3=&uPWPow
z7H$tvfe)j8xfKH%EsU}k9|StHpdpbe0qzKJPk`zH?hK-1Fn0y0DkKxH7U1px+zR-2
zZH%X7n3sXk-p}UM2v9Qsk)g-a2x|%axl{SX?+b8$fb0M{0qO*(8z3`4R)Bf|9tiMY
zfQ*2Tq}=+Vlpe#<zL=cPXk0{JIF`m!aBD;}9}4&tj0OQ73DD;ALQ~k$-7S(D251zZ
zv7oa`#Yrh&BGM#4Zh(RSg#rI5A}>IGfTk2~;?V$)iBi&n|E*eTt<1;S>HvgK26&c!
zz-hB6ka#?gXCR3;3(!13QGiwfS_Itm&TYxc3nA&RN28DvNF+X1;<47OOaO_kn;YYO
zSV|_53=E9656~gNnE+=4JQbj0fW-m62+%1&=K!Muyv=?N&^5ro0D}TN9ngpY`UZGD
zKsQz_z;gk51?V22M}VH90z8yL;jWl;L^_K`^%gvR0?^AjO+CEUEjevs;)MV&2Iv={
ze}K`#f?Pjw0I3)<?|=Y@JLkPuF+MoJO99>tFf_oB051o4HNa~DUJ<w_P7AcT7-_=m
z0p1YR;Q6Il;)RezCIxS%4GZvAfGwwUQ*WjX4<bYQRnFv&2ryC*hXfL%WF8%0On^xN
zCI=WB;EzWdzZ+nDfOiBwPC&AGk2HQS01q28ObqaTfC(ZxNVw6FCnY~%UoDPZP!nYM
zFu;@mvjfZtFg3tO0j33*9^m5upAcUxeHxV*jsE8XF0P)~6i71y%nUFqz-OXGRv=vu
zq}rb)c|zd6enoeMQf4U44KOdjf&dGH=$ycODtsvMvOn2cgpt5S0X`3+g9MA37Yq+2
z=KcA4n=b<_32-35K}rtrb%37&{2bt$0N(~!A7Dd(r2&=&SRG(ZfaL*J1Xvkh73&{L
z%R<S&@)*67&?GF2U`P)WYXhtk^(4>QAfJ>iq5|Iq+(?X;iys60ASCd`o4dOk1{Lw;
zjR@f{0e%gzJ;06t8w32t5ecw0z@`Ad2iPpKFJ2S9RhmL3kxFUtZGukRIiAZX5r&-{
zpa8oA><Td8bS8K02=@fo8(?36{US>-oy<&~)Fb*XyA(=)1~?SJ3*b}h0vzFbMI{Mv
zG{CU{#{<YB@6ao;iQ;U)qATT<0BQhD&`V#8l;`%8)F>78i5b8O;Bvml;x^~zsB(_L
znM6udV!4RU5CjMVoZ?(aWU?z#0Zs%s$w{4(*g1qGvd8YbBk@;&)1oX!DS_}@fWIj`
zL{W(I0WJin7UJ#@{{*-gpiGFeAua{D%w;@8T8Jxr`44bCz>NUc0yxLh{t!o_DeZ-n
z^e-3x5G6uhw84heIom&sR+6_<(o8oa_DYfn-Micpg05{!g}610#xz~PVwX3>ONS`-
zhV$9l!rMZW3sEUV<q)wDe78i1+e4HO!Piknnf>l*u?it7hL|NfjgU!eQ&N=>+&{S^
z#GL}!ye0dt5LE?E$n6xS7H_cJ6QX*EheA9YqDF|CA?k*x7ot{(dqv&u4^cbBeIeSE
zOn-M?tl@}eoy120-B_~%bwZr^CpS83axwRT5D$jPU=u>@74_MWoqX-@SUf~#h^!FD
z`{(kPI&<+{3i;QxY~3KlBO&rbG!4-(M57S7Arfq0i0lwKA)1If(BUktPtz&ey{EEQ
zJe_y)WHx^d=Y@DQ#A6}sltc#J7iQ=-CZFG!yn6O{h$li6hG-@v@KE}bAqoWZjg+);
zL8N2NL$na7Ed}h=IMTqy3#3smMM$d<twRhB@e<n}LJH9*MBk8abZEz(4Dn2e_8~fi
z=oq4tkZ{|dcq+sXGo$?zN?_<5qDzRbBDLBHY3`up(5(q>t&pKxh-X7Q7ot~)?jd@F
zI5D<dPr;c=CeQbXPiYwSFtZG)oha;CvN!wcgv2BgpAYc@dv$a6zz{En=og}Yhyfv|
zZT|UMrFu_{5n(7sNFnE-5b2}Rs%*|465{0$6GBW3@k)qSLyQXXc8J$PydGj$h~XjL
z2(ht$?wcWohM;Q_mRNK`8gxQBH9J~E7JnOiE5wKpBSmeO49>0laxPt=@y9)_7>y1w
zCd9Z9?~2s1A>I)Pr{OalqRO*-$A@??#QTCynX{|KKRqEa@2V3~Ss#R$6k=M4=^-YE
z_%OsrAwCW<g%z6>T_v8%8Br#_>x9I+#+C1ne-cL5ikb0KA+So5=m6eNqmna1%;dxg
zF+0Q`8_UfS@G~>o@eWT&q!6DIVs41uX5$hkrMpi`q$~)rFvR{84y3Rs#OGA$6yhl?
z4)H~Z(^U8nUxru`VjtO}67hA2pF{i-;+qiPhFBM3eTbzYmW5auVigtph4}IiD=2MP
z+QM@2#K~+LYa)?hb%-?~)`mE|D%x}VxK?HlC(@8pnOUsoh7jLVqe6VgG5R=qJzmfz
z`J-qi@t-($OQJ4iXna!om7^A7ONgx@e&a0eT(l{~?;*_Pg%3}_W`U5nbasrCOT+TF
zh1ecq7rQ0Iju1PkknybdN2eXHoj}hV`g1SeFWF&MY<Gw~oY9=WwG(vI&Oe?sF~lVD
z90+kRgc?E%@n?ubqGJBYw8J5egg6@F7^g|qQWKZQ?h%K{k8?5E3ps=$IP)(>uN)P>
zD&&!DB0AT`5MhWEs~W-z;f3%yXUTs)!wKOEB>!qg`;(EL47i*z;G}f@Xj;Gpd~amV
z_uZ2cIZyo8KPNeP=R`~WsStk&;;X`3<h+y8*%0Tr-lk9{g}=G@bKOqi<`gb)@#i`p
z;%bPC?EH%HOWge7!YjOi7e8$)d|gQ78W++KH$wc&krms^ENIf`wD&}~DTS3E#rUZD
zsdl1d3PIzn4JV~iDWs)vi-?}69VeciLSBu;bHnp*P5tlBEQOR!;kFcNrcf(|aw)`8
zxHE;jQYfDSQmB+d<rHpDp+XA#SEW@<;mqnt2MG6^lo<ZHDN!W_A|&3Cik>pW1Cd0$
zY6^F!aF3u@6Y!%JiRvjl^GRgfsfM6TtB^1^6q0^#3bj+Hn?k)5?h{FMQW!Kbc7F;>
z8byV6|2sFUYN@Bo#~(<cehM^I^q@fc?2pP#6F<jGeih41AuEM3DU40wp%flYp;HQ-
zQ)rOFBPldbp+yP}Q)raJV=3gP&^U$c6q=-vn*u*w>&%Pgr100-jPz5|-$RoLc3LXh
zI(syQ2}7f5kf%-WWbK|2-ZX{BQz%HGP*nJd6rM~))?#a(l4vTHXBEgpv$21zjM1)a
zv(*30%(hG+nZi?I6pB)4l>%)Jv`e9N3T;x5Qhc4jfcGQ$3{6f+Ozm(=ELQ)=)0Kev
zRK0)882fiV)}$zkvdoN%F^o(xqkLz$SD{^0NE?wtwj%qQEoDup>`Rd(QmLecl2Qnv
z@7?!%$M*l+Gr#`NbDsBk&wJkUp6xyFJ@?*o-m_o2FNOO>Sx;*cU7UTqE!m6GrsQ{M
zoy#@GgDE_e!qX`XVq4hHDfCTo%LE=x;jt9@r0{qOqZTH3)9d~FsuQ7nB81ejCsKGa
zg#iq=<UA#c=r7<@acv@rWE;p%sFF$i<Gy*%u#zdflER1-p5sWR@L~!>Q+OeTf#cH#
zr!a&9AIsz-;roaFw}g0iQF2%cFQqU%g_mjZ7R7B`T$nvZld3!rFYSo)<JCx3GKDcI
zj7{NHQHRk2*;6xKht#Z@mzK{JPMk!_c)>t~bf!*7VImcV#1!60VNwcjrMP0j<P@f)
zFgJxa*@P6Pr7$yvSt&YfPkZ<6#Pk$qq_E_T{3gQd_##c3ouU&1%t_&UP1>SKgbb8F
zPZYN>g+(dMPho+Gp3`Da_;KC-yXz|cfRn;IY-0+mC^?0tDJ)N6h2TGYC4HGdn5C>P
zt^5xs@rHGADGcwWu!a@xnzx!WXhwYQCg;QWfk?^+DSVj1-W2wwur7u5DeOpLX9^oq
z*qFlB6t<<Xi8g_H<+t2Il{lNfr$LwZ?@ltxa8&NVuswy3QutUDeXTC>$m)+%^GPSe
zC$s?D6Q8EAJB3{-@W?9ZWcVzFQ?n9#Qutitx<ij$lyuYM3O}PuU!<@<g@f#|6uwO1
zs}#OT;oB6xX4_XJ4y3>nn*8p{pBi-O#;pjm=EpxczN3nE&12FBUGqB4OqBE6AEG@;
zaZv~2qt_JvB+44nvjd}qM^gBOilJbff?rcOnnDW&EfxI6Nt(jN6fULkdkTM~@NWvK
z6pp9xXA1vt>a{EQD}@s&{GGz-6iy1UJbiyEg{E_|cnpxO;7R;5g5GCQ;;cZHe-f+c
ze7pU*6wV9EjC%`cs4obdGL;n66f7zdO+mFxO+bSNL?Fyd;`D8WW(tJFofO;@f)qm9
z|I#AvEAR#KP|pGex*(2HAf<!~BU}~}mOA^roWd2FVg<DnTuq^jf~pFtDJZL;oPu-(
z6&2K;lwV#!nt}>Se6u7gz_<G;x<udaou}nhQczimtz{Jf_dQ!c{?d;CM5-%D2s#v$
z`K)?|!n+;QcoXG5@x-j5#CsShirH%`sH5Np1ve_FtKb@icZcCR1;vw+^%PvI#9tUz
z=n{+GtxIX?dB=3=dIb#>G*n>gv4?rOJ*;L(w;EDsLu#a;v4W-wouuI=1ve{bqTpPG
zJf3!W)QGdcIwgO&A<bK#yj8*FFwsmwb5Yij=VPNW*N`ecBfW1(nF_KLJgndm1=$K(
zDd?=AK*4PaZdcG=L7u{8Em|vRqaa7Ll<xRijf_3=wH47^1??2v{YvuGzPRg(yT$Uq
zFr*F&?o@CWlN59mocRLs<^3;13XQl=Itj|IA5i+nSId+N6?9P`DUcQ1qu^czMXa`h
zzn3PuDzOu=B%`7TW^ZZ6Lb?ed-36o@F*=DQv4?{D6!cQiThQ-U&{N?XM@#O4uJBM%
zp((Mp4=5O9N)IY{NQtkgW)m2a&r27(CRxKr6+EWkSq0B2=)=+B$SN49ps#{{3Z78#
zq>#*0A*JCd1^t!yiw&c%nNoZzq)KM#)s1gV>+&?q68voGGYTfIi=A_FQarEV1qCA%
zj8rgK!4OJNFieTBJ$g|AZ$9GTU%6ZM5>t9f!EgmHD|ki0HdEs5NNgtQ8&AYGeE456
z93_f)Rl#Tu*0HoYVS<qK-J26*L{g82UB)YTO~GLWM-;rSV1j~m3f8kq3f@rgmV(6!
zCMlS#V77ue3Z^KSs$hnKnF^*Un6AW&y}a`{XiA@n&$C?bb;wVaJC>GpENzwo61ni3
ztKdxq^A#*mKqC3)DX88f**Vpo&~99Dp@KyU&YIG;RQpRax-bjt`L=?06uhTkwSpxI
zmMU1TV1)u+qL=n|Vi~(=N!mp*=qst!$I{+auu8P6jwQ9-mSmMEq=hA|QLvVD1s{l1
zR)BPVB*_<Fl|NMAiW__RZDfOjjSBWE*r#BVg3Ss(QLszF76n@se5BxG_BOj{M42C!
zmEX=`x;NS4fz0n4=6u_=V22XB585e&Gs+?ed1j&Zzxkgk*v+nBmj;P`Q}PFHO6*ba
zx!_D%5*Y{^tt<RO!F~nbDLAO$O9fvkIH2Gg>X;?HJ16nA0=lyKT#6-64P&=9-wFwJ
z#TJh56&zCVqk^9l{Gi~09tC@jV(bTrS{a$ISkhceI@`G7BT?dKrnb(Ry*K#_jlY6G
zL8#y;jlY6_6{Hj#Q}DZjQ=DQ7{!nmS6mgRJ!27=x{6z~!iWPV4Sh=X)szSmmbGnnV
zP%b*H;EaNQXn91g$Nxw>OLOs92L|$=7sLx3WtzK&IbT@P2}>fPC{Puc999LI0$qWj
z;H3j?_tdXA^`rQ|^DWzRtB*}<xG`aK3MlXt)UYL2!Mp`YB3IYMYcSu65nm)_+ft;U
zL_tjzwNzYGaEZ2E<?mEnrb(x%S5aQYRhnoOW!2d2@P>zq2A|JgUOkU)f$0f>lr$9;
zR3vKU4YH+fcFaJ$NzKekDk`g}rlPuvDk?~+s-l1{XKUqkE}us~!_1pdk)Z-AYN)u-
zr-+`4nKZ$cme|toy*sc7^3+yQM@0h_4OP@tagB=lDy~zpc4?xXifdK+r{yui!kxDC
zlPxK>M4ZjMUPX^}(%VJ(q~D<8Min=+4k{X{XsqHU6-=t&#LRE@jScUOPR!g?#rxu(
z1&X@%u}m^FQ_)<-I~JB$XrZE|im!DX;Er$=St_2>@Vtg>6|GbpQu%Iz+f>}HVw8$k
zRotPXwThl94@#hoiX0V%D!Qm>t0GrLM-}-h+No%-qJxS%Rm|&Kes7!X`faP{G3rP>
z8@_#X_4K8QYf2K2EHAuE#oeqPkG~1nNx)|prFHEU+wB7Ot)RS6CGQ>;_o|Ro$SS(3
zNUG?rqPHV)pL3ClViny4Cn*ff%fO`Jj>Oa+D(+KJrgrB2<ebqZWhdTgkXK_|8UvBu
zDjrbrjEZMfJgDL!6;G;oO2xw}9#PRp#p5bAZB9I@;xQH9{ferKlQTpS?>SOmQD{FE
zPpBZ#5(j&Ekd~$I6+Hb_3{>&7U>m>+hb^6{U49iw8wQja#1e&X*ymI{uVSc*VJcow
zF<8YA6)!SXZ0zLg9&Z<-%+hGauELj83|H}riV<wu`ozmBrip98$>WP3Y9oaT5o)5W
z(JIEMcvr<L6=PM5Q!z`$Y!%~GyryD`im57IS201wM3pb*s8S|l!<<BuF=_ODG)cvW
z<uWEyOG^@W^vLIlmA);qS<o~U)7fejGgSm*(&(d%;i)$hgfC2sA&GNT%vG^S#ak-g
z6rC_%#R7rMQ~BYYy%9gEhHg(RRI%?U80C@D#nfaKOI0kRma<Amq$MgCD!I~4u5?BG
z6(U@&Vugy8D(IT*k@-m`5mFkzF}|l_wTe$w>{hXc(@Mow728;@iVsw5<bbkKD%P==
zRBWKSy3#Y^yg)C36pTt<|4!jBSDLe)2V11gDz=c{mCp1{nmr0Ck4o}`z;+cMvkBDm
ziCsS8405H5jk9)=^M=e%RP0j0Tf_LRfSjZ-5cy2S9&)NUpyG2CdpQtIv-b<QPsJDP
z0Xi$Fm$$D)c01vh=1Ub{iN4AgL>~G1M#Z-(4zf$9XWhJ`?RP5vS(zYy$9H+Wfbx4P
z!;%D#xA2h5k1BqmNzrh<hM!d&R^fA)R2)(9iwZ@Bs^V7_M^*f-;<Sq2R2)<Br;5K+
z{I22;6~|S)Jf%xpqh;MD@o*F27m}l`vQMZusp1q3!kFru!c~Qr$oWH(3~}eHIIH5E
ziu1IepT;-t5&lETZj4+|@vjQr&z=&gGpps1fsjcTcjRg+bQLZQj+SqzNFP{asjyX;
z)U=C<tV(&VD-j{x5vfEvXJmRR<}XZa;3{HaBBXE?RW(%8P(tHRQ?DUS!zCJjT6+z3
z=OnJs_|qC_vDsm$;l;D{WpS;{p*}_B1P{;MgnjcWXh_#kNkivDc?@K$DDdW<)XkGB
zYp5cG{Jcqe#*^Oam8`BIp`o^hI)a{|p{78fp@u;2+!2@ch9}h$(M_UgQtFCmJq_0g
zgp`AxbghQ^BKnUfF_73mLqiQ+H6%6Mpz$LKax}En&`3jL4J|cfYPd<m%^I3&xJ5$~
zk^Pb<5lQWgpCGqtXr`gLh8AoW|G(@kq|1H!z-JQK2<!V&7LC7#+cn&w;pl=yD~-bu
zi{itpl!q5j^B(HfLU<dE8$yzNz%lR71<70u?KIr2p_7L88uB!B)R3>CgN8w3H^QAF
zSBpb=6w=m@OT0@1rLjK5>Fc1gh5`*;G~B~c^Q1xzLr2D|R=N-;oU<fxuLimqC(g>t
zzEq^4Si_?l9@EfGLw5}iYIsQFg=LU6^wiKx!^=yOJv7{>;eHJjpNpT2mxQlQB7=PC
z+l`6dWZs;7fO7n-e*KeOm&BU<u!gBq3m6{J;#U%`&-syu(LNd;*YKo<r!@4{&`*me
z;}aShgo!TVIs3@c1Op}X*DyfC(`>tj38Jyz_h~y&!}9(`^1|dy?hDmm98P~$!?edU
zBXJCq@C6NnHC(HszK$UpUexfFhOgNV8iuhf4R2|9NyBgrlQm3X>omNgVVs8X8b)Xs
zso_-(qcw~YUD{9V|2es(aNzd#mXqMkL}N6J6-nK<w<n$TWO$7=)G$%Qr&|-RYnaqJ
zr`;n-GSi;C!6=smQ?f{DAnx9s$_i_ktznLa=^AEe*quzyV#VylN?)4EnruptvfG!A
ze4NYg0CP3GsbPVJA#Z2RBfryfzNo-&zC;QgV(>_va%Xa(2I6&wBo}LVTf;_;e!cLH
zh9#tHSfgR7hGiPw)v$_vs9}YMl^XbmtMn(AIwt<eL&)>jTkBUOe2?>GU93EgFRf*X
z8rEr8ui*nNcK38Q{RN3?@b?yZb`=+p!ti==!3K?Q+3|0(%^J37*u`$qct<m~F>lwr
zof@`l_(;RY8g_7wPe_u;V<UtWCU)U13`De#3;C_)6RObbv1hH_8a~soPs0~f!ZB%k
zG<>en#Z!DC3$I);I~0^&yh4O`uaLf9!<Qm;)v#pgg)9d+O*EJqEDhgk_)fzK4JS1m
z)cA!BN2#J34r%y7!(k0aH2kRHCt7}*qfc@t7bf?Q$|tgPa-L?jC-RGiUpYtKEi5}b
z@m)sd=8VklBjaza$2iS39M|wChirA?579r3enBm9IP@<OrP=Q|E0Gbz^YN61zcrlK
za6u%U*6@#pa~jTQI7@RBNSy^65i&n6ASwUS9BEM5Kn?UW|H{&Y^{}K+r3C|{llnpD
z)DWq&g4iSd`+;O@aA>u3RMz2Y@HCXsQC5eqA<%G<=0ZcLA)@7vhfn$<_}`Zk7Tu^u
zCMlOST+wiq6|0-a=xI?Lk%<@b_~E6Tj`BLvbyU=mrlZN_^a^@xXZZbuzwe3gYYf@$
zESpzmOd3n6qNA#gS~_a$sHUU34(O<%BcUUM$fz<_oA~{O(7!)^yQd9_M2R(Zv`Dpl
zu6ArQ>*%Pf;~G&ALTS0*zMhVim(xG-+sC0+=5;!**D*rJNF5DyG}Ljgj;=ax&~c-V
zRyuCe(MU&Q9ZhxIqT?nV?Rs>$ne`Vki68$prZ5b8GjXeqW-MJtOC8Mx1M6U~OOz4!
zcN5Rl!K0zsgrRhc*xFhOi$m#l9e3!sQ%6S~t#!0vK|0#&$kD-Hx@~pjvU(f4aWO{t
zd?@j^FY!Db9mvd+eZS}O!bcK$TM8NSb=;++Ku4jDZ)Yd&*3n5vXZHM*SPvN{h0=@}
z`TS_vMaMllp1Qxo))8q-!dQ_=WHhOxNXO$k`sygw(M?BB9li9}vvGGFvW^})Bpufc
zkQfqY^Y7DfzeugPD9I@QLbl!_(eH6@9S`VuNXNrEek#m<P{+1VI&mcay3W)`bUdo#
zF&%yMn6hSMvd@|PgQ6PeLy4kTpME-?(D9s(=XE^Es_Gb^V<78L`V?UQtV~GL3V3Gu
zX&r-fJfq`Tj^oVuMDyWEN$%Tc5~F{Q?LxK}bPU$<l8)iD|2kgOF;vGeF<4ha>FCI0
zy-4Ce+|phmKV`nG;}yZc)SnOJQO?Z2@<!=+RmV~t%XEy^F-FH+9dGIwt7DvwDLSU=
z7_Z|s9TRj+q=b|Cr9UfQ*P#!V!e<NKV4q}UPSP=%xz;9^bS&_@$L(dfEt00`n9lyx
zF`EsamRP$YF+;~p9V@05l>X=>oFgdJKS<D_aZwbH9m6~w3v?{hG5<deG~Z1u((#s#
zw{^V3&J>&*Mx-sK+DHF88^yy@JS4S5WLXeN%UO_)bvo8_zOcux$y}{t4aZ2wDvn^?
z%=g&j+p_nFvo=iqv~1p59Utf@sh#;gXX~N_c^2H3{h<)Z)KUL*+@NElj$JxF)v-y(
zW*ysgd?XmQ=-5iJI`&5r{T{FtCnAZSFu76ZW1arBuv5n;)aM&=!bs{}C6fqwYL*C2
zOWLjTQyBK@*r#I;r(TKlxel@wHqI$1iRF;_3kuiqrH-#?5E|w@St7k!BF!z4J}8m)
zlt@QPq`mhSeZ$E@RX5Sy#CJLla`+6qZs2<zhdBKW+-l$l9Y5;0q~kL6S;x;hQaThJ
zhjkp$@t2MhI)2gdtBzwje%Iq)5=V9XCYssrY%UMbJ^xnH7B&Av$8jBh(x6?GcJ=CT
z`cg|W@NdY6S6iNBMjij?IH%)p9jA4i(Q%fx<)YN-qV(K^coq{UWG?ztKd<A0DB@qv
zCPDxC(_~(`yhpCI9DY$!b!fEYIs)pR4nwB_hoi%!dGXs@0$D5`(|0t<<4)-ze*0}+
z!qwq%*8A<N-;&wTZ_gj)yd@;0VQifpu{V_b6J;_=bX*ja85iU0Lii{BijJ!^+6L+v
zC}W_kfvN_o87OC<yn%`aDj7&KP{BaDfuU70TR)kcJhV&I=Gnwg5ACw!rtHcF4lPeq
z5vjAc<&sD!tuL%@AYlLoY8cqJIzj#ngV#M5GW!oVW!E%N%fP4|xeKRdT<sKp$0Gy9
z)-`aAfg24pGWgDjYYkj)pn-t{O*88oxX!?P;>~)k=rlrF@`eU(FhHDd*>&>^7|wMp
zXl&pn1Ee%Dz!}F}Hyi(Z$04z);BQkWhq;;=Xl~#^0}mN!VW6dfyA5<QkZB;xK(2vy
z2C@ybGH{21)<Vc_0^Tm5_Cx&S;vca#BAR2MtpWNv+t#oP$NF1QPkPjEZy?V=M+5on
zjk}W_1oNE+KIvU_=Au+`QL1%Gx=Rr6SsAaEDK`5Oe`lb;K(T>t1_}*yVYk%COd7by
zz`X{#3fSe6^u#5Jbmkg+Nm_JCDiU&t?|UNIoqcZLegi!X$Oe9XutN_6_X&pWmn248
zJX-YQrC2iwdl~3$-~sl-qecAAMoQboaqEabY~T?CFBuqa;86pQ85m^X83TO`JZ|7A
z1N{y3HPFw%69%3%cpF7Liy3w#i{AW1A|#%=Bn>dYFwnr$21;7QJme(ujotFK?zztz
zc+S9J149gu^1Oi;*v3_fer<Bd#_Z&0^hGM0fnn6x%Q0nEqgYOZ%aYnH_hln?p)-=I
zWyEfFUJ=m|?DnQPH#f?8)xc;2V+@Qn(0Nk%-gevh3lhf4B*QoZ+=VrsJz%%Zxhxfa
zByr2u1OpQdoHlUAz#9f88Q5ZAtAWV|rWjah;9Ub#4NNnzz`#NS)2VU><`|f3V5Wgt
z24)+0{<0)pmIx<YmUxR+jh*pR<4pte49pj)jFvJGd9h~^ITsmt%fJ!?OARbGK;qj5
z-VvilpLL8bzbx&hw9C>m1Ivy0imnwRl}Qvu9!2!bD$W-J>&akXwShGTK4j-l%3o`M
zE4TLzd?0dFxDv1W8efq*T#;I?$Roo#j_ehQJ9Rf2IAtX^vC}TZFBHT#8)&?;kb%){
z1`j~t00+y!M+QDNu*bmX26h<ODJ1Wvh8x&r;8P>Mjg(n<^9aN3O*0u7W%$g9f2Wq>
zdkuVHU_U!{Sz@07-mh9p|I*<0U3@KM@@f(i8;HM|b^CPqmIH0zR|7{49Hj9#@S}mB
zXp}fEk7xd1pziXnUHcaiHd~N9xFGqnfx`xl82E)+G2nkk_R_yh@&w=5E3rC}`8NZ{
z4E$x_gn{1;dPK)@1AlUquSgrNNE9_?Kzz`TI4ML<vX>~ff6?F6w`Hvd^)G6*qBXzC
zAG{*5#IpweF;LS)EfePqI(Weq16K`PFz~Mdmy^Xn%79`(H((f0IY(wEuppsPX1%<v
zS{C8CE0SrzGGH5UXsEAB*It!KZ*^6gXXYQ_X!2UsdNK43ga#tfR{^cZ)woe51}?I0
z1}@W@osE~`e7h%P_;6FQ|5XWoRv8mzO;j;a)kHZHTs2iNk#3^Ai8K=hs|!z#N^*%s
z`j+Wg6-`t!QP~7t)6gpy--YR^hMOeGP|ZYj6B#C8B4MK5+QblENk2A?Wf37f*RFaE
z6AX;<nyT6+>X>L_BF98s6W5ry!NiTsXyRHE4NNpNQQySURf+3NTyNr5;f7_M8b4Jh
zUlVK5`G@nDeU!_;<Xx5}8kuNpqKS#7CT=o8$JY!uo3ZY#u9rErFs{J*>oaemoc~gJ
z?JSAS1W$7lElji&c&322naC0dd9qEk68MGD)fr{DT}1B?u(g162hr9<u8B@2I-6)`
zqP>YbO>{J|>fJ=1i4KBo<+9d1IKwdhs+4cyE;BwybGM0s$m2PnGw(}`USB(pYy~C?
zP23xIHCE0~@DFJh6Zf!}cmU_oOtP^WNfSjTE-g(Io4D<vnDUMockU!1gJeQBp_?#F
z^e}OsiG?N>nYiD?+!1Ndnt0AcPZPaN^fvK;Nw3l9YvMr@Tdzuwn0VC0Lna<JF?v&y
z7gA6-JrX=-g7}H6QXhdFxGH&9B~tpCc*4X0HpIk}BIzj;{izRS<k6qU6{F0X%gE$^
z+Qc9e&#*&;Z$mPWP6<pZC?h{_;sp~EOiVN}n5tsp6%!*&yl7&miQy*ryKR{0Ny>bQ
zO&FM2b!Zp<dRzQ>2PVC2;uo>2f24^~CdQCoFu%%Hn8<hHhiqrzz~SLC@;DRYO}s{Z
zDCH?5GnJy~2dq>GorAq$Vv>p3Cgzx!Y+{Ou=_Y2FnEGEGrkUXN>&(c&YuO2BvY=&&
zS%Trp+T?jYnADbYO}uGho{9OK0%C6-IqPqaGjiAK0>R8zU3$fT%fw<6UzzyY#M>s`
zG5L2J+f6LtTrjc5#99-}Oe{C?E>+9KH**s6%E&9IB&6`#2yyG~R?(LCOsqC>%#ImY
zP^ly9_gP^R8%=C7@u7)zCf1wSASyt%@5;#kR?IwKMlN4gZcsMPwb{fLs)S&uP?UUJ
zF5uM$<fOC=spumUADj5p#BLKi%y<*pP7|N7+Wq3Gw@cu=n#9Ue<)3^apPATWVy}sP
z9OYXwRu$)dZemuW%s=GZJyL9-zA&-h#Ftc2DYx>Ynf(NjbVd)bu_k^u@rQ|Tx%fBn
zvx&nd4pQGt{9xio6Nf}S$v<pnJk}k`%0CH872z#`Z{H*y5tLs{{3;M@P2#9Peq&#8
z?B*x=1mSBtA^)%t9yjr)iGOIuP5fozgo#ro{w~cT4zQdw!HcJhC&#Asw23n&|Kp=q
zS$U}Fz^MY(Y?^c4#03*66N<?DFO7q^(*5qnS+i%vc~uVL(u78Z6c=QVY?fWNoMf7?
zOcYz_X2CY$&=^{1V8J!v(G**#V!<~N(2QFsXCdS$n7Bx@AWA7Q<Bb9Dmz8-#IyWj@
zHgUzoRTE__v|m@)q+%vRqGD_bFMggRPNckrGz&G4rB$?mV`&vEq+9V$gGNT&d)%Br
zSjocvvhvBYa($(JRSVTD)Ur_9LUjuX=CV-3LgOpx85VLECJ32j`1}Ii8cA4FB$0A?
zV__W&buC<L@wQp)Xq<VCg?a*ED(AwSHrcKFbRZ<1(d#S_XHr88H&|#(;TCSR(8xkd
z3z-ya;U)`BE!<+^W-ERb<)8N^7J{;Jw=v1AWH;W|aI1x87Mk<7uc#G0W_Oy|opg#N
z!ayX;Lbiq5EZlCPm4&O9(#cPHDcc<uT3cviA;-cst#X<-jTfRB<>JZ0J&m`NlWR50
zX~*uhP-vlxg**!#EZl9OlZ87ibhMCf;VvQY>VSApwf9XPktx+P>0yKW?K@l8@K&P0
z!p8$MJFF}uadBGSS8o^IBeHb0khE~Gg-RC_oyy5fEfVxnxVUF*Qo37^EDX2svIW^f
z4-5S*46tyYh5Ic$Y~c|LJuURI@Suf<EcCYUfCcVX$qW)ylI1TXd+Pbzn!@N~<z(B6
z=kKEy9<#U;1O2Rc|4AQqc#wG90(Yv|6O#?|liaxSgoP(9JY~fyM?LvqVv;*y?w#6&
zGF$j92U>XA!iyG$S{P*E84J%@c%Blhc(XURe6y7KU$y0H><iR43w*;JVu5eFr0}Jc
zFTZ@fJ-I&lew*wm8xq6VYAQpU?3XMI6P^Exg%K8}T9{^Gq=iuyUbirTEnS#+)xsDH
zV=aufKo`(M#qCi<##tC|;WaDv0?k!AD=?#+%<z6WnO1tDg-I4BvvWR7ydikF#^!~&
z{ERup`ri)`W}I$e1~t>dTnjT<;Y;lqW?PsgaC&f}*mvku|9JYF7Uo%4Xkn3s`4%?b
z9&645YGc!!Qr#=LG3PA{i!ChAFL>L+hyA#rF;>WZx5b=iyLMY@VHq{bMF$tlEv&Fm
zV&kHXl@{LRSlj4fW0i&XEJRGQu-d{J3qM;pY+)^X%)+M@c3b#>!YypGu-(Es3+pXx
zwy=eY$68s~#35donEhSbj0clnioQKnP7VdKm6L99;?moR8s%e!XZVPU$~kL+ME;iA
zDe`_|VV6+L7UgB$irYyrQ^IE!_E`AV!gm%vx3HH(Z{aHo`z(Axlfvoza`Mn1sb6_{
z?HBR=Q$26aB+fO@*A@;~_=ZDVUY=84=DB0~>*Jy6Cp#w(TKL|=4;Fs3Fy%@*t3-H+
zjk+!N{QMIqOHTIMF!92VF+yj~M=bneA!R|a@T-NR7EW?-IiMDfS@_Gs2@Ahl_`||+
z3xBes{%h&4i;|@m0v-^Q^IoE~2Z~lE{<d)1!Z{1)Eu67%mhF1K@E^)wL@xpP)&oUV
zr*%15UhX)e=z@h}u?g*83m1hPx@o0Tbk%|;dd#)r<KemmlRas{u)x(|&9u0;Z3_;g
z^Ap?~Q}kFS4{MXilieO40km==d&o(hCbvwJ3)1A5MXrk+8VgNqG_`Tr!WG(T8?|j*
zwNS=JWgAs&l(kXLMg<$`Hp<&rAhuMcQJsqNTZw~~cidf2GfY&p<4Ib{#*#Go`nwC5
zv?EQfYNMKsgpCZ5THOW%*-A6Q=58g_6ciHA*U9@u)as_G@w}*Gqppn`Y}{z$8XNU&
zTxa8Y8_Ho6&dR^mMtvKni}K!VkjZb_yt<-+jhB}t?89hi$6vX5MFo@i8<)p68`-$Y
zj?Zs0G`7*LdoIsx^8Dt_Huxce_$@YWwb9W=zKv!!n%lU;Mr#`_Y_zoT$+elSY}A@j
zCeucijcglx$0e0Cne?;@a)S!;mS?5gY}_t5e-wxDb1TSgY~<KzXQRE1Ki5cYZE%}P
zu8lcMlcl>Um_5%%2hsdH+0VO^WK%M;DXnJ(nbEs!+-)OiqsT@l8=Y+w+UR1(=H=~{
zvB$guk#}$f`5qhh+UP2xq;sFf#0vkLgZz_H%qH91Leo~VaqXi2X=Zm;Z%}*Iv-jo%
z@%wDt&+Ilnu+h^-FB`Afc-`jL4?JMwIcB%<ppA!YJZa-88xPxf#Kz+``r4qI>ql)o
zW}}Y{^o-x97~ZQOpU%$azsr6!J5QH+g7OcczxcAZd`o=Oaeo^FY&>makd1YJq}@R$
z(n3h7ThV6({;Ul$lQL<GM1h1a*ci-#w(*LMAvRvLG1SH|(QtMP!-|=SmqZt_4#RDH
zT0x%Xv}X--s^*QbG1A6p8)F3jC;?x!aj1e!k2h~s&Kx%}f2@sh)VJpf#@n%Hk5=L;
zG)kbfa~0$XHYVD5he~ea4I7he%%rl}m~3MTwQ*>dX~c(inaaMsoH#ToUJkWuo;}^h
z3{e&tN{O?n2AoPZ7TTC=<4qg$Y|Lj(c1!ma70sBLf2D#<ycA{)O)j$e`xuLDye;H>
z+PedZ+jdHqcNG$;n=UulAT71Aj9qQxJ$9On6*k@#%&dcB#e=?5L|doFiqVX&mTauC
zu~rZpw~5bpoGPE0{%YEvQ{!rX$U)(hVU=vGx3R&-9xAYnjW#yf_?Q#N#%7Usi;b;R
z2I1Xhn~g?4V!Mrx*aMX_xuL5^x=cuaeS^~Fotz*xcH8*O=D(!mE{+Z*4=BUp$V|xF
zE|~q5f8r2FZS1pgz{XdPWv*G?`U@NTZG35C;MnSPa{K8!g<skD+D4NZiKm{*B&E@S
z%!yC8|Hj6*Hog<NMjypN8xzvy#p&{>J<`$iq91JhXycrX^Q?o7pKYA5ani<N8%J!u
z5aD+lzu5TI#!+gKjV+?PSQ%c+dqCiSr^~zt^A8)xIj?Q}Wg|?NJ7(t8sVJXlnNwT*
ztsp<yPTBZdbkSJ>Pun;nkU_0;$Vtdseg6@ZR^LdZT(I%44bz52BU4dM(F#o~&}i{&
zs5W@@VNpeSSf$vo>oyD;PvIYuo*~OA?QI*54c|s!!{yxhAVIok$37&V?^r-iA|dS?
zT|`bRh=gQ{BF?;*X#6>g9lYh>3XMO_g@f)6$~Y+Npt*w<4$3(w@1UN8YaOIHsNkTQ
zgX#{_9aMBs)rrTel7N*RRB^yUBc2N3p`MDeoR`I09hbSW5+)pEIH={IwgWhEJ!?3q
z>EMqZ9bT&_lkKgF^5%-Miq>&Z*TFSHX4!%9H!G$dtSD0;@%j#~bI{nqO%ASi(7?eB
z4sLXyt}ATl;LzwaUff2uZuK)6B|_LpAZIJeH#@xhCa0-`TO2fT;&)6kbU&R#;;jyv
ziB#ew^2O6WnbXoirh_~O9UNpi$aZkMgF76w5&|zAOS_FtJ{*@qoUpZnHV$%~_}pTS
z1Fli`j!$bVm`UM(7A{=dIcU$;HOb>291_WMr-P0T3LSKD_&EZ1Iq2k|v&c1iYvOJ;
z?L_{wP2$xc*MtQQ#%xV6%0T)(4(@f()j`sUzahNPHc7}C&B_!xD0a|tdh8#GbW&!t
zE07$>4u&~+$w3bX_c<8gV4#Eh9rWa&IOyY`m%|;Tc*w!S4jyo@J4$p@@SuY;;x6^l
z>%Sjyu%RfMsgF7s|3uMhyDh_?bCQoc=<A@LgC|7&>9B(I+b<``{G@}Y9Q1ea?v$*}
z7rI<GzDrS=Oy*_9o^~+E!C(hN96Td3K1W3o$g|W;G4883CSGvB126R|#cDwKA_t;P
z_D~1Uj!hdpHjOw#{rzQzJ9yc_8xAHpc*Vg82V)(Kb1;%xJwNfPgVF5XjLcC&K6fsW
z_(s=)F%Gub8E)%bxkDD^k9RP^!9)kIIe48F>mOeXK{}E1R=nD07CJzf>|lz6*$(D7
zm?{L$a4^%sGzZf~^rI(=?h`l5R}wy8Z?7cJ67=?k1#=y|>0q9N`3_e77HbhhE#6_l
zJK`NI6hykamv7CyQGD@O?BHz&3iZLkI}VmO*y~`QgQX6ZIoRT0tAphZRybJ8A{?w_
zS36kkV2vnom4o*L!cw}4KIA61{^CML!cD!BA2|5X!A1w09ISJ&o<mF(x-FhfEi+?y
zwnscz7h7icuOy$EmE6qv(lUFT5Vg(0b_cs0eCpsMs@9<PI~?q!PSTYG+j3qah2ayC
zMBguT@WLoJ<nMN{$HC`R!s3F@sBb;uRYWQB{rd?<zi_bM!7&HFJNVMUSDfPxesJ)$
z!@XW@zj5%bg98puy_sZm``TomHHq&W9CYx#19yKeZy$K;x#XfsGDF7R+#enM<lu;d
zUmW}_B#?NR^_-U^LdYz?Iyma!H`=ScxjQDsbXJLwHyTj>9}bQ?IP2ga2Y)*F%fU&O
z?%)J-El6-%JDK;3PX~WHI89DJafVHJsAy9q`G-pKkusS?2+uh<FNWh^2N#Hlmy`$R
zC;k=vIlgaR%E48EYYub=2^SeI3{C;6v5RspEC;rO$U%t%hmCdMI|v+jw4ZW^ddJcT
zPu<snFWN+^txx1lMM(2<HlLJ>4lZ$Ku?XsUqrA(sKYe4zM|CU5lPkNj%qvRExUo+1
z6n{mrEHCdO-9<$~Omk5|AY@2ZmWz8ARB}<pMO7D-UEJ_?g0~Hl_<ka@n#)h<`PE(A
z%!4q(>jmj>QNzV8E^c*E(?u;8*Sl!oqPB}VF0OS^-$h*)*SM(1j6CU|ojvctw(XuO
zD)q2&vT@d)av9gT2*;-NZd`HJkoXzVkmb5)?BXUDH@e`BNR3=@hZ4QYoT`y`&!pHJ
z3B%1Unz(4{;;yy@>1Ff!4~X*;zo~3qGZ)QW-0tEI7cE5VGF@c3@rR3+E}jrQGg;5i
zcF~IRUGPg6qwGw66`>H~twpXJ7j0d%5%>s^E0=P17PfP_p*rr;d6nfe;@=;M8!O9q
zy6EU)q=!)+@>ww#nhV{<-7Y%0nC)VYi_R_zTnu#aw2ML)U0gii;z1YpxVYDa<U)4Q
z)kV@pv5RglKAILkbBjcA+z(8=yTD)O-ASTKUk;6lJzU)HqNj`dL@FuXbID%+;k{if
z__-^I?Sx5u$i>4h`nu@n;t>~*y6D4B;I|hZdtaY?%;k~uSoyE&Eekg%9(U2JR|kHs
zdBVk$F8aF|z>G5zyI#$Iik0M6@K^JB5`nP)511`HkPLG14Ew>wC>PJVc+SO87sFgU
z@8SijR>Qo(0<s8(Iv*y6xOh=ib(<BxHV)>7NjG+?@Un|nTpYeGbGVChm1R=uPtPC0
z4jhyA@vkwR%&)o_?P7w9i7v*t80%uZi`RrS?t&giH8>NGRGBI=z0SVQ{+S&=Qb)Fk
z7dCIWnB-!bi|K4pgUrb;rns2O+NN4EN(RE4&b8drEPIBFnH<Dc*|XeuPdnXR@(2%;
z$n)j!<XjhTy4dOB6BqMb%y+Tc#Txdxi-j(h@nepQMK0cQ@s5intkSB&#l(|&Zws74
zh?B@b3h||aPGp6Pl`dAf@z3rDo8}z%67Ra$c4H2Ih@W{X`JTYHUuw@NFS%IjVxx;q
zY`cpOT<+(`Iv49*Y;eJUM)j-6<l%)E3`7{JKc2bS#TFOasb(&QTuSGmq^*=GdZ5Do
zwrpw5dU+&%?Bcgei5;R>d1~p87THYN<>FJ0j*BBMcDwk@#Q_)JxY*<3a~EH__{zmz
z7yDd%;bK3#dSKD{P6dQKv{m-joZqJ8eRoUFSfypVD)QGZ)Y*xdR{PGk#guPdeCOf^
z7e9&;54!l?#UU3?Zju>$SCNNSk(rnH%5J$ox%ing{ZfK*n0Iy+ne<;={OaPAi@#kQ
zW#wHQcezDB)`Vj&es}SQz|GUKzOAhy)0Gx)sQk;t2~GrBkIe}l$zc-D8;*azeZ2|!
zT;ZH{amK}Y7Z+Tdb@2~%(gm};E8KnX(o*v8ts--g@UM%M3x$nx!PU|FkK>s|gsE%(
z${X`l7Ab}cleWb}jt9$yP2=gIwg-oU<s!{P1rMGJpH|Do6&C@GBqyeei<~<hvLaSy
zOuT2C?lJl5x4up8B^R4lBuFg0G4t~oal5X%DC?n|C-h&y<5gtR%X|1{X`=N0Q(lUi
z?xCWG>K+mvDtV~vp(<-tRd%b$Jj`3g1Fi1$RpX4^tIE|pIuenXn&AN+YI?YQO&-s2
z)bNnmDqdPJ%IQOdsdYTm^>CAin>}3Pp`M3^9&Ye(t%v#^uJiEIHJLj`q!A~7)jPAU
z_s~EPpA^M0^+qqAZjC%NX5Nhn9+W$hlfCyaIyK8C-o!&wmg^zQ!z~_e_0Y^ib0Li{
zvokg(hHXfczMQu3(2{LzSHN2;cp{1SQ)GK+<>7V@cX+tXiw`cb4kh2j50Uh9aqqQe
z&4uY8k*RGx<a&6(!-F2$d1&w99uN0=yr&HvM2Q6+?)1>ni(O}QqW$-9mxsHV<-<hY
z+Cr|_c_9LmUaBe+p@W6a%)7R*bS+vaBy{n>ZS&l0(A7iIgT$zZA`itLx_RJ_xzfwW
zM~nYT-35iK0@8bUxX(i`w!*{W$<^=o&{GJ!YjCW1bVxg2^e2-TCH|0yhdm7NFwnyz
z9v<~Tzkg2%_?U;sJ@oa^#{<2**1joA(pugjN^EwZZ9gx*b)A$a1@e@K{?wM`h5VOF
zBAK7|Fv!C&4=;Im#>2B7Uhpv3!*lE<Dff8+H@1&!#c0W?oFN`wq$ojWltd<xfjHrC
z4=;PzyD~Ati+}pR;-RzH?ns`IZ)K6vkIsKQjHcT7d`H6=4`V(2?BOug#>03ID?F_9
z@EWsw_#!jsEe{hsO!P3z!)y<4c$nm2nuqBgCW{`M;$f<XjaB7CRpo!G%0#YKl^a#a
z<Ga`l4>P_0{TE2oi(ewhGsnYR4+}gjWWUh`oQHWH=6kr<vxqxwtek??&ld0yJ(;uT
zCAdFl5t*muF}$;)^<ocii$dQKaH)VxI6JDvb8VT2<$_}Huhv?rO*Q#l534-vq=I>P
z&%<gD>pZL%JZn6xB_i-6mlOP^^nt)XWR?w*`Ec^1hm*%vNgLQSkGo8<-NPmin>}pt
zu$2h%RvRrxXJvm>KaW=cwAt5oQ{_xjJ`zGc_OL_nd^jrq*_V>4_|Eff>+D?~KJ{>b
z#>B&J51)D1$4=%n?3%a7!{;10_Uc-3DyM56&mks7yY_qd(!*CCzNYe2lg9}nv%D=3
zQrPxyJ$&ckdk=?b1MS2?!AWGDaB$JAPx1#3KhjXpTAs^aa%YmcHdm9`$+t>HM?CyO
zx(C<8uO5ziIPKvK2hPJW4}W<$A!g|B9*%qXQw-=IUc4)to30-pSDo*J9BT$v<0MU=
zhrdN9jJcG!Ma^gGnB$mmDRI`rKOS@shKF+=&U;9CP&{1l@UIBW{=H}mk;Q`~m2+xL
z+Sj%6G|tdLv5_H8Xwvw5usI^Hq&bPa)uUsRPWY$5Jr6$Tmyc>b0uP~w@;=ghL>@{!
zT=h`K$3>6Fh;Z4%m3U;^)0@hLYBC-F^3H|w)#U~cCwWV0S)aZ#Kzar}ARU()R+n?C
z%lB88EBHwFQOQSTAOGGLPrZtMJRgUMFThLgjLii@6+gDmBv$v4@KMu8Eg$@woFQNh
z0pZ6cwDgZN@!CG>__)?beIIpwTq7jZ^SKovHnYpW_}?C|oNM#06G_+mVCt9l|8{+o
z;RYW!`WWo<M<E*dXzcUWa@^zNCLcHZxXs7yEZ0X<A1(d(n8__ZZuR3YC(Q-qQFQiX
zGe5S*e2%mb2)Eobn&~6UN4AevqG;wFTs_u0hB;G{clc=S<4zwPeY9_s*TzS#k9Iz{
z>7uQV*cINk{4KBN&wo9?L8H9(KJt8Y@UgJEY{~^YD&MuGx;*yv{Ci%{&-ZbckIp^{
zeB3PxqWn$*xiGoQL~(6aAqQo07sAqL*tOtZA6<Ps;`5*ul0J%j?*2tDAH_bp`MA%=
z{XV+;kbKBKdayTE#Pf@=_k{duoeK_Cml@7gmwUdGARFmKdi!|5$Adl|5~Uy9o|s-X
zgMk?z_VN4n#J!)#L*HXy=3_qk_~`FrfRD$0^!4%Ne>Lyt;|c0vw_JvoPUSEVVXmiq
zOqFBGKp#*0c-F^rJ_d<g&-mb@v-FXgYMoOiAwTbf2q`c4xGoX*IUy-8`WVW-_3@66
zVLo2+@w(3gWf<<`WgoBl813T~A0vE>^f5||FY_|+gAYIQa8{0^yG184#>ZG6<9v+w
zv1fc5!zW&XkesFPwYWcH9h>Om4IguTyeX<W$;V_LQ>Y|=rI$*c>Z6%(amJGi(*)0S
z0cZG_DUewLl6kg|Isf7G6g1Drd>@N^yd{VW52r7ndI)@YW==wQ#ZR2XVjukI#8gs<
zEb+0_#~L4NeJt~_T&U|RA1eexrG3}ON`b%DI+rJINTI5~=VP@X62CAtpTzfleBh(a
zH*GhF5<e7h9mSqb-|-u=N2RS7lu3)THc~Ug_M80p2DAx9d4yYiZ1ZtT#TvI(tg+q4
zN1S?B@#0l{>|+Oq;4;Qs#!eRJV_*rMF2ODzpRxl(%nPyG$7eooFU6(+dwhJ(`4XUQ
zfW1EU(PRav5a0_R`+b~a!#UG^eC6X;A4h$B?c;!tpM3o6;~O8}`uN_*Ax^`fIFV}p
zosWam|Ao1Xwob@|KX3{pWODu}cm^h9M#qVy#R>Vak0U;aY)i<$uuJFXGL^Z0^Ks0_
zDIb4R=Y9Mkgq-kkoHi}h{7)Z$327|oyM%lyA(P0ACj}d`6Tg^{Py74|6w4%jhI*J0
z6Pe{79}7ecFVK+ECi}QVRrjIzuzc7)RN5#X25nlKth52ex+s)*?=sy8Z#~n|r2Q<@
zjfFZsTpuBgybsTZPs>j$x;~@Y#o|)tQnpe^IYdfm1LqboZ{;>wmwl88P&U97&c2ad
zt_t}1wC==PWXNx}DJ~b_f%M$+0SYo?B9COq=>aMRXcVAvfJy-`gTOTb>IGQernpJ~
z1gH_9YJh5jQawN-K!(6yx|lyKLndTk=`{n?3Q#*h9SZD`K?>;<Qa1pRCIh>~c~i~n
zFV4L-K>Yv>1Kbecx&YS;f#jJXq>-nA;AGw#h0OmK#d2>7aC3m{0IdQv3GjY~+&n;w
z08Inj65v*mu~~qT3vzd7$b<|mnmyB!O>2{tC19q2?3OE)atEj9-WK5Y0Br=3Ja+`t
zy_lKh*6NW_%FM1Ke{O(w6dqtyfc63M*qH$y4A3FKodLQ9=pLYBfcyZ30lEaZE5O|W
zSVTd9P6FvHAcd32K$%B#GKkz0;NAd5VqA`7$VP_TH9(R*Q!$sg)TVf8|Kj2RgcH(p
z(;!O$<N)^v=oz3vh1?zi?h7z%NHMjG)uy&g$|+`2FVP{Lg?jWBcoWDE1$a2XvjLt9
z(DhRBBLVsb=ojG80FMReBiJ6NaKy8q17w!S3Oo_u$p8Za3=Hs8fWv8V#rlgH4uf3E
zHV^XC0R{zlMo4Bxh7FLvfIRn7@$&&*2*6w~1t2GNZ*YJi0bUfX9?JTQ22xQU9a2oT
zKOnQE!vnk=;FSPX<`j(xz?!gDtTq{lyc%G1fcXIy1Q-)wY=FrDrikGi7hpnwi2=q3
zcrC!zxkaxB@uVmnSrhUbB0A~6ale0KMk(7=L75R?ra-0%I9+rL^HR>N0CNJ&4KQ1X
zC52+&3_v9zGEeXm;oy>gVSq&eRt0!3z*_+p2Ur$hd4RVAydxBKiGUSq$W-S2ZHkF3
z{ZD~OSrOpf0O!kgTN&W&Uqz&pDmIbT0oDZgAi#$K)^aLQ0y|Jl3JPJCQqFaptpPR&
zIm|^iGBcG^V{?El%oyVO5L*Lm3-E7%RDkUPJ_>Lkz&8Ot4zPn(J;3Jyb_V!FDDY<j
z?h<gffS(3fF}H}C%t0Yus^@zH>=UV91|YF`OZ8SY<Szp3|BrddoH)x@g6C@%F|9kJ
z-v;<Dz#jpQ2RInu`v6A*{1V_$fFA<<6yRqu7C#2DIW4Lomzq#QT0+{=!$E8niTo;%
z-vS&9z<F_$^Q%UzGfyqZ{hbOgaOR@%{4>B`0sanfI>3nloRX(RmB@UOrly9>TCx6w
zXE+K0&angkYvVtH&LlSff*^9}8D$t#LskN)eEfw-51|Fn1NZ>~q3}ikGk_)LFK4J7
zz@gpdmlf(&4S98qc;2}IcGZwumFvbyakz#Y28hTL;A+6fUvWu*ivccC^B3kas@9M%
z$3~-=I78jJMP<U6jgPi+A<7Dz(LY*el@F07qGTo;n^`eLr4Thk)Cy5KL>0m|Ss5X!
zhNu>zx`?tx><#8+E)HBGj1`_Hl$;O@H9~Z$)Q!!r9imQ%dQ_^pMRmjfO}cAB_Cs-c
zO_{TdS*{hSMCymQcYZ9SL5PMSdWPr~;)W16hG-iiH$<ZljYFQ;MRtgrM75iSxFwA3
z-pv9w3F9XVhxpbI%|f&Y(K5t!HK`b}t!N&`k38a;)bo<!el_K5b{5=TQ%=^DTZOnS
z#2q18hw-4_9)b;|mU2uvnr%YlgmIJ&r*aaO;_X7T4{;Bx9U?D8hY)v%=oI2k(UANQ
zcL}5;v$x4&(?+!^CWVlA=aB2J7%vn&M94$PdUg?XM!T|yLv#-zg(wolZUPpIEUX6k
zDTmTz0q+aJvKZ|l`hgM{?iUmyz1jQ_!$Q0i;=vFPg?K7N{}2y{cqBxh5RZ#o?94~0
z72@&nSO`8QSf#!p`i1eFdLpE6?YNWqh^Z75KS_Z@iW&Hz84zM%h!;W(4)Jt|K_Q+C
z@qCD9gxF^VXK6+b@uPE!SVY+#8O%$aCq5*^i=qgMBHK{v+r?r|Niqx%@p6cXA>Ih_
zN{A65#)KFfVk8xBTK89lI*k%IqvLAI56mqZ&Bo3xV*d~s7h-&f*Mv?o`g({7B9%D#
zsi@>6GAYF55Hmx}3Na<b)DY7{%m^_}FjFjR#l9sovyh(%<;)gh=L%7C1YB5CCfnwk
zGTG*bSP)`Jgcl<$46!K0rI4Np@m7e%A-)K)Kg8Q1-U+cj#D)+{LM#ojCd67X(91%s
z4DoJ=<s!NwL}!7p=v5(Df7Wnyi1+?$5ldv1ST`=N-e;5fL<sRg2%~it7e8Oul-G&r
zS^9X|DDbTzkAY*8z&D535^~3HJS$7*=JpUDaaAAUvk)JL*b!o9h)<|O7xO8zZuxkn
zx{H->Q~YU&KWoYij({v;kDz=WVy|G}Gl*ICg<vkS5i<H^h_6DN3h{S{uR|ON@pFj7
ze3jr6C&Uk&;~~Bc@m+|6A-)%tJjDK-Q^Xo_`Aw^mUP~s<=LHu_RNbFAwQI@GKhfn#
zh+jhd9^wySrhetT4)L2X8nl+|AJ*ZR5ZJnw%<Qy>$3y%T;)LM;GsL<}#ib^+sFuud
zl3KSgm&oZ5XV|5j2qDgf_$P!y4N1>sI2YnVh<`(zr`2jx{B*5&X`K?Ov^IS&6_ZG)
z@)5vNYRa@ir07)UTCt5HzZJp@;fJt8I3gp7?tk)WuYwRE4QU9<VU%S>qAW^SSWCVr
z=qz;h;@m4Cu7+q6Atyqa2xTMGjc`qbauLc$s2rh6gtRDrF3|F)N2nlh4k%k)QQ(y#
zu)Ul_Y<SfO)gmB5jR@8M%auWyd};_b$|+0r4p1|Sp9{4j)D{Q@l7~XbP$vQ(I*itf
zaBYN}BQ%LnKf-kpZj8`~wQ7@feS`)P8b<Lb)An*`5<-7&h++k!&Ty2eU5z8$6vgj5
zv=R(7O-&=*5+N%>c7$6aG>gz8;)b!@4YlH#%Y|a|2via-q+3SFjKF0lpQL2qBC}P5
z+alZ^;f^R?2{V<;RIV_|Pqx+(%$eoM$%k*-2)PlY2y%pW5!y#6h)@_Ik6lr|TgM3b
z5ju#f-Wj3CtTLslepiIMBXo+;Il`BsKDC0lIi-+|;>_w2;hrddr7DhaFRQ_U<En;z
zD3C6~igM!9w%jF5dbbGOqj;sn*0JCC{Ou9pz6kvyIu^kF5qd^=D8j=LdPV3R;lU_=
z8=~fyz70JP;drh1&4`Oh&do<6JR0Hg2wZuR_*fJ#GW$>~YW(l*iF6YC3L(ea6h9f^
zsR)B2JQJb6ATrm$2m>Ne8gr4K6?<AF5qVb7pNsH(6hA)5{6Yk)mb|lUx4{w8YsaOK
z&Rjzy3}c5gHNr~~hDX>KVN-;cBfP?KiSTBG5fmF?N`$EqMn!lv!uSZUMHn4nOoVX}
zSXD}6O~#6b5TRr)iCN0))QSibBfJq|C0}zy4NLhaMVKtQh0Nq+U>7mhv<Nc=+w=%C
zqIkv5BtnXv6=8M+wqlOxD^j?$X3_H^%#W~wMMPLY;~!y3gryPK*hLZEim+G+WQlJ_
z@!KoIJEHT6G^`y*mqlP$9>q&^Moa6%=DZtW6|+S6Ai{eQR#OcUGCy<>u8FWVia(g#
zQ9F+E^94Ujd?+aEBCHn(KV=k))D02%&E$#N@~GPK<_KFN{J?n~VQYkK5%xydC+6e!
z2s_xo2p_TYYs<9E9}7CC=O+<%MX{~^Oi(`M5J&MEkE$3i3scSGrvOz{q?SH(NdJP(
zjPSi6ei`Ab2;W5bmc!bn`0EG<#K3WF!?HfC9rq-Q`!2#k!B5HiYs(Zu8*)fc__QMN
zrwBhs_&dVs2!}b%Bm7QN6XBN#zp~F4<{gW0lp|YP{w<36X)cIU4soW^j2!2jjc_8u
z$q2OArIz`x2z+U!1*UPPfjt$)^isonhI&QL2ug&1BAknGA&S4!IJL=~#c*CUgfAEW
z3Ob)td>K(W6U%hdMUp0Pa+1g3Y+8`Zz?#?*9GasN++G4Vf=7E>f<y`Y2tkCaH0C97
z6S!mwBSh@*2p1z<7B;!2fV8xiqWJk$sg8U_7-x1@Y@bU|t_0~Ns91vXCGp}RtppWH
z;)O)%%7NyEhMEhcN+t24qDl#>mY{M;yrL*w@DOr=QLQ9ixHha4uW&L-fD+tTf<`5%
zQG%K!bf1WNC8$+`+9jx45-<Pw!v23uy$5(y)$=}n_x42~^U{0oyCl?XNK6(HB9KjT
zsfvmqpoj>Fe87gFGywrAN>Nl)Py|7W1$)5`qKJr!1$(2274~lVzxU+J@A*H^dFFY~
zoH=vm%*>f{?<U!>mex%MrIi6?y(MKiZJ3lsNokstW=UzB6g~$w;ZFInk5y1m*JGE@
ze$5r1On#2RoBfk@1+9|OI?1mVkqBqi^4cV&T~gX7h0$rt)%Wz}_17U8M5<#lxFrdA
z)h6l&apX`mDY;3>OA2q~&dK27ra%{^ic#itQZl<IrAJbRCS_PsdL|`5DWyrdC@Ha|
z6eOj0QZ7hJucQ<vr6d_t@}gw$6m))4idC1m>ccJ$(Rf}2ac*{90hxWcqonjrN<TG)
z0(>@Wel~bWqX6GN$mvgCC8azm6-gPGl(HoMB3Kei12q#@&Ei^>N%4|0C@F)JLOtYD
z50!J#A@sjdUiCai&BM9bq+F4dQOc#4B;~TCTu%M}B}Q<G+TNwf;9+1~-Qe+cWKxEx
zTZVz=bu*goO3K)zj7!RxWbk&thkqW}vFcW0m-}L-U6qupl@jW?wXQdT(PtW`_*)q=
zF)7#4Z@ygM%cP`CPRapFCS^)eu20G{NqIIYQ<HK-QtnO4>ZD9d%KwrwJ1Ms(WqML(
zB;{5nYEo`Y%8DMjHznofq`cB2LA*PbxP>XI@ZEL2Ep@%yl0wR%DuG!^+1w*>V0qac
zNtwgx6i&+Aq|8gof~4HZK*w_1cT3Dq%I8kO$({*xORVaaSjc?tmROV&ziWd0#R^!f
z3-02PSzWM1(WQzmOUm5}kiR@Bm#i)#Sd|p!>ODzG^vI<KhJy+T)+A+ZQl6lNNm-Ya
z`;zh~&stLMPs;kFJd~6TNm*5pXf!zIfuuaB@GocLe4IPkJ@GKR*#z+;Tyb5&^nwH>
zNBtAul$6J~$E5tcyo{X3lk!?!&*%|IvP)WfaL!gHTT*r;WhYbpzxcMKY*(fd)8MBR
zCaCJ}O3Ln}Jk5B`&#7Wo0s7&&r0hw`n@M>qDbKSG^vHdgfk;Z)DtJM8^2MaQloYLz
zL(aG!xfFOcDQ_rAa$ZxCuPaF>Ke1PJe{PV&_O_CFUk$yZFz3FTl=l?p_1p3qe^<gt
z?Mupj#rZ(ZO|B^*^P{93WU=!3&L|%z<xo<7Ps(wIASs8F@@-PSOUkE7IYQ@qIbSE`
zGsZe8i<g&unUpV*^8SjlK3|s|J*RN}m{RI2{U`nvgEFR+V&5o0nPW*I<wm|w@_T9G
zKhft&`5`GkCT0GLGIIJXFC+LRDZkR&cEK<6a(+{irHqRoKXFgN1!v+Xl5#RBDK3|k
zQ%U(FDgUs%C*^cf{$$PP2ECk_D!u<w+0IO^N^dg%OUjv~Bo&`s=J}0DIm>v(63ljA
z@hRM;AdyK*mTBpW?ThBi8$EJEzUT_%dpU*zBi(XS0e*^G6iaBa1jQU*!iwoCy46om
zteP*M)%DmYQ^S{<KEDA;qCUSdNyL|?zBKa%zSQ!io-g%%sqF`8##YytI(~2{Myv@Q
z@JPvQ;7dbankbn@YP7MU6npS&kdUiKl`h^M<X&@MTKLk=m-fE=uY01UFRgrO?MqR&
zMAxemZG73>Jwe=7aZc6sh$+@V33v3RlP_2GNKEsBA49y}Ju%(Op#cnTXJ5Mc(%qL_
zU-Eom`jOei57M}+9~6XN))o-=@TDg;`*OZ7`M$(_De$Ei#g>=7-ZjC-Q(5Q>0Xb{B
zCblYOu^*gMcH_R3DEwX51UaNU%YA&g(3e+zdCix;zV!2DjxTe4DfQ(dU&hg3U;6tp
zz?Y%E4D)56FJ-=XzC4hhNcd9j3qL%mq(km2AYiLtIDYHIQDQ!s5AtQOFJwBbA^C|R
zY9fV)`*Jbo`utidVR5*`7Z#99eHq~g#e^D2FY{%gm-AkJP*|?;Wt1Nj+cCbh>7E#^
zR=JV}#B$lCi%4r1B*rq<1wnng+L!TkJJtGfjV}{e=Y5&%%eDUhmC);andk@g@PR||
z!K%Qr9@d$kGsTywzTDu;^)&TRoJ`7GvbKQLW*WDtsxk2lUvBherZ2bod?JnC<jc*z
z+~UhCCO?idZdJ@n2j#H#(l!dr@@2L!cPKt}-mdK5JSd0wNcRNA2<G`R-<J)(JnYK?
zU+(nf9$)UI6MR`jxA?MLrRZW`mMAaXrSgggnQ6Avmt~AsESG+p?v^vMEZQr4IXoz5
zCHFEYhn!W+z^}{L<{gT!_GOJP)#`Z<__EfQb-vv1%gbI4J^aE`IXu7jF|T3?9^Um7
z>mImtY4-$+$%DQ;<OkJ;jon9ldDNGkzU=a4qc59$+3L%azC0Gl$Zg#cTYQ-pOKkS}
z`VfCYVH!Yw6=i{9+omL+@@2a(PxQ#8JcW0h!(4i|FHigOf-f)n@{BLfGC%)`@1Zjl
z_-;@RyF8w>lkItBFge68F(OKa-Io<VI7hKu%Dm2c;!BF#^kuIvZ~F3$FUNd&%a^x(
z`N)@ps^Gli%lp3U^W|M0y;$Ns#iU8BLM&V?LHm9Az?TCo^=3id{G1P&(r!5mSL=En
z>Bqht^5t`1zVPJ}hC?~|GhaUSg*MQtBkGt}d6<-(D*jPlzVhX3CG#aC+atIFD8S7!
z=Sjcy<vU;g@a42G-}~}|FTeWon=e25LZAP{GNOD=ykbxe9sA3<=#TG~_}!P|zMS%f
z&ZoCe_;ON(CWujwTvBe3Lk!cOzWn9O85NpBFXwMx{!zi=D8>Hu<v*o_I?3VOv%VyG
z#FVy`gL0^$YKe?5Sytne)K7_)l2A&jrR2Pn6xQ?flvpXTQ(~mVOv#XX9!nDqU>Z9q
zVc`m=_(4{jz)cB<uB{h5#NOUDQ9UI!Qo&VHOVOGskt*<8r<|1hU=?r(io?f}AJ4`a
zzS=3NlajiM$uP~U=kax*K}s5?B$AS7N*bl4aY|aHq;*P~q@*dAUR%&2CCyUOJSDZh
zE+efUORTHs5p$>|4UQ#t*7JHhC2dmDHYM#+(q8E&pJJWo=X6jLJEo+Q(#DB2jPh*n
zQ6MF`DcQ0$r)x^`Qqo0X7S99of`VBEY7NRE=#i41bXr=frzJlnF-oTRVkHGB>6PMd
zO3PIGGbKedDJ4Twa(+sRQ+&;lfhj3TNjxQel|Or@<XAngPb#=6E>Ila6ua^h7b^VX
zx&k`6UrI_-a*^WD^Zir7b08x^%(-PLNu-2@Yj8@+6{t*!my(K<tdAvl#5nZ1m-FEj
zr38agLckJte5uj-Y<yTshNt9;l#Ehdx;P~xQgSKHjwLQh1&4^vxhy5!b{YgDmCWUe
z@~rX1@mP&c$(1R&mXGl%8IzK+DY+^oSEpoLDk#OXyc|-NQ?58ZCD){6LP}@@ndFdG
z6=Vurmy$_pbP6+Yb-`pssf5;2tZK>)DVdg%B`H~&;(y<k=_$EAC3mD`Mk=_MZ%WC{
zDY-Evydd~sws@y;OG<7{$?Q~cce5<dOv!C2nWc0xX{nhW;6ze-hWt57azRS&Oz~Iv
zWS;8ISG4W?94e`Lz+0G-#VNTfC5sq4zB1=0_~by!MJaQ(p0_L|cc<ij`adPhQ~bbC
z)}&-@N>=hv)c5X5$-RuA!d#tsyINs#*yVKE)}%*pjjmI!zVDpF8G;8=@?c6fresq}
z9!klElsux$quPg4!nvG9Gx+HHD2-&6#&YkyqV%zpJe~@kLfPe=!b^E`N}fo`pWPBH
z)TF#Vo=nNMl>C^IpHi|tB~PW~gOnUd$&QrlOvy_rd08pkm6B&t@~kp-cS<_e_nuaK
z?&7(W>`BQB=hl5*$<Sur!d#aEFRBwqQ(sBRt0{RmCGVx=HD-QF_NL@b<;*wev@xZ8
z>gIJ%Z@-n2w^Q;?DtNT+T|d}e@WQ3`Mb7(5m`m(a0vz41yg>mf`7k9PrR4LJe36oa
zOy-mvPRXZg3Lokyd5A&raz0UZQvQgtyy}^s-Op5)s~k<qm$WTNx%gM9;DP6Bg?WO=
z`Gyrt4}RD|{<kcNO5l4|JS9UWFNmL<a;Egp+&;}qNhT$~rsOyJKP7*q<oA>uPstxC
zIn87KPy9qGxQtG*CU;Mq<cW^u5>(wa9OY91uN!v%Rtx=`lK)cj4|DZUoW^juGfab&
z_$f)HB$)~x|H!0~6d-1!7%9717XP$ZX|dB1N(Z|$6xGu*Vq__2@f?w9rUNCXRGoCv
zvb9^nP0JOG!l0aRTB<1yA6>|&SPcrN<;t{-NlQ*zBrUPD6r=@dsg;&CX?~})R3DsE
zJ1q^<(kLx;(o#1q_0qw`(LgQ4x4HTXTvFc~-!s^I<FqtMOS7~zPfOFZeBCp5<+xIQ
zYQayod9Acib6cfla(%C*ns`fo?%T;kw^e1W(?UuO?b6adE#1{9jqH$?NLr$4>8LoJ
z(sEUPZfa~PX_BAtD`t)S+}w2Vh|89zK$o<1J;&*$z&F<<dZeXiI{1X7-TK`8w0QZ!
zZv^r2pjTQ7({e#t`lO{OE$62t&K3EJF|w2o*wvPo6{qFS`d$egxV&t_cO{(FTdmt7
zopWJY`lh8KEtP6({nApJmW$Nrmik`*bWq=1elC%U4^YfE{)-Px%WkWnOwmMI$`v4o
zR(WX|ln!pRA<4vGC4ZTsTycm3LlqsCmf`347jp@PN1WqaN;}nK=jCakdpUO`bKu<Q
zsI-h$c*0k~N4sOwGA=FGrTHD0@>+fGs<bT2&mEtZt5uhrCifJOb4^+%s3Cr)eXRl$
z6=fz&P6rixYFchc%M^vLPs<neJuc0Uf2T1^)4|V!ZcfYew9H7$jcG|N(|Ad3N(Q;j
zoAf3nz&o8{w<vt8qC8FH%u35_`ZgnbGje-c?nukFv}{kyoOJMO%q!BeQh~W?nWw<~
zv@Bq}(y}lucPq{!MHi>#uC&x{?Nt3n=n}<Ts_0+!gI``<mX>~fgFn7ou9yU?4`{2>
za!*>;r{#gP+^hKO{@-X?)+oGI(OH9y*Xjj-s(GL4-mhrs2l8NA9^$!6%adu@kd{lW
z=woTA(ZC~kSaly!^if4OD!Pf1HFGIIvB#D0=CnMa06AOI(q&*UG%A@}_l~^ho{OCt
zkpEO#cBEx|My|=o&a~{}iOz^*WOrJgPRkEz`7tfeq~+PPyqA{u)AAgD`7<rA)3IrJ
zJ}ob#<>j=zl9m^F%pWiK^NSeiOO$`GtZB8_=^X{tXBN(wpZ_Yeg2%IgxAVomTR(}8
zT3gn1T<+eqyp@)>)AIeTg>O>lw}k}n(A!_e-sQPy;1xCS?)k6y)Oo$b-E#M(Wq(=@
zr{&YMe86HdKmQ}vpIL<m((++idgKgTIWci$R^dM%M-QguV`g0g&o~@Cl$K9elv2g-
zuP$Fdqj22uf+K19jA@pZqs)W`-u(@{&slKB<qlm}&b7Ww%U5YRmKM%^-l+VV&S~I%
zla{Hy^Tr&GzSF=f+gb2!TE3&r+|i=MxS54tHSh@X=I8&EmY>sdIxT;u<(IV3lHbzu
zyHfRQTC&p%|7yT5C@Vak=0AlgIhB?ZX=$*w>||P;h8_(d<&-~YOhd1GL+`J&{LPA;
z5j`XSq~+hVq<BWs@?Tocq$R1;o~4%>dLOrojcw@Nu(o`_?81XP3w-A4g8W$xy$lyk
zi<XgFzlt5GHgF}?o-7)?tAH(hG-hPPq~?#K=Vipoh@BBPBjF7H&uMJ(-13Qw5>7_A
z-+MoaZaZGEwW0S$L$6wfzr9dQTs<Q-GP3Tb!kQV0CyU>`web5Hg~yV`$Vjb>6lLW6
zjMUCZos6{1@C)LkZbs^5<mQQqCK);LR6+fWG|Wh&j5Npuo?mrK;fCKz@@5o%*3fIL
z#7;Ey>_%SGj5NzglSW?ijI_we{pInVjl65`EjQN|KD()J>x{I?NSBOs%}Cpfw97~|
zBb_tSJ|i76(lH~QGIGbKWryeG7q2caZ{%Iw$ouN1!U*j-R?6U#a__krX+1cemytP*
z0_V5e7c+k^p`*HGBtIjujC9XPj|~6$LeadN3VUXRl#Q9dBrnKFuZ+CW$XngW+t$cq
z{uE}U=O4LWHu8!yQj(D&85v6dWTbaS24rMlMlQ%mpNy1d<f4pRn3292d2&&rAKkUO
zY{%O2{|3cJ%qZ+Pqp;D*B3js=(P`w>Y#c;w+f9XK8A)VhP)0sqm}uWP$nElsRAho9
zkh!t2G9#XfW{X2nwu9%#2GfSd-ldJb#wGD#85y3Dkr{sRuUxErJ|ZKRX87BZ#g}Ac
zO5-5?nAn$PWb}@L%QN!JGX}f!8+$E|7mOk^BV#i%E+fZpE4(rzf81O+CL=dIU$DNh
zM~@XBFS&|-_#_%WQ+#zM$n)nKdp|x<_Q_KP6EbpbMz&|<sf<j_$aNXHJ0r_8GASdI
zGcqe9vorGktKFt#WO_zsaEYxouBWNL7Eh)Aj7(!R2j{ZO_P>n0n6e0N%*ag{nVFH>
zGSaw5>}IC70>rl{@KIy$fzc)>e%sh1T~X8cr?GcClOZE_X86@%GAAQ*Gcuq49FjXv
zO}RD_n>f^9H)mT7PFX-}Rd-QF7H4EhMwZg@CxfB8)GSKQysUJYGS3?xOx&5YNLOTJ
zWkw#&$i|GUqI)y)Kt>+S@VkYBjjZL7$;fJj*<GW+%dN}qQ#$KhTDqP|o{?%zyz?V5
zcKdIuL7fjNu?-n{I3pi^sF8Ek$r_I+X4TR(wRm#gCgzgT^H@e6&+y9!<cW-I$;eh_
z#o*jUTLa_A4>vAJS_DV*Jko7S{?}=Rblnaf{O&O-f0?&HMs{W7%@L)$m2;kE8jm&^
zrf1Ii`B?>?%g7!Do>%mRbE7Y2<fU^sV^qG9kykUaKt<%Wb9;Y1BmHL?wBgN+yv2mf
zO0%rI&4R=H$%vMfcQf){Mt){0GD9-5FC$-O<g1KCrWEbZ$frEEO}r17!&dYF-J-xp
zihiu<K}BDCFpmO<GV+P)5+7Dz(o&81NJc)($eKpEpDX4U=VXp%<hz4`0Nd9Yp(^V6
zMvWfJ$hRC-I8~U(xs>@nBR`y*`=bIsDM}^3X5_bw{F{;gGV(i*kK+Hs8kmujETMa9
zy!~O>DaHI-(La<urxpEEaj5^VjPz>~T>AgdD%yWWjedV|0c~JAn~~%>d7oAK98PB>
zqj1&SP*(J;)XPf!tPE=68CiLd-*T`i*UXBQ6+0_VR%&J?Co67N!da=2mBSm$s%2$T
z6K{PJ@4T$6Uspa);p)UqJU={ecN34J`<r-@mD*XUla=qAc*sh!iC0U}oTgrzre58w
zv^!oxz*gAQi(S&GK~_4(qm8rDFe~G~Eor1^S7zzACFD0zqqSexnrEf3TW+7MT$q&>
zS!tP-R#|DCl{h*5bK7L4ZB}AgDagu(@?3H#+%7Ba)o2Gbmz<7S>6Dd->P8jqmX*#5
z<SLq{Xct8(-!&_1$HoZQx@V=wIet$C^0V^%3WGyju2)t{vhvxSyh62Nk)r1-TC6B#
zep!-FI;5%BTTQ<}(eX3NJJl)ct3tpilx3ygIb52RixlpEjx#`kfr?IRttGNjo|THM
zRAyyxR)#3Pmz9Z4y~mg4?&9BYWySoh(^ZSLp;;N0l`FC`Dl5aYa&cBJ&B|qr(Qo;e
zWM%W1ej^m-Ln9lzZtcjv>rHC7JS(Il6@6u|HkyC_lkG%1$1BZOW~H=gWQ?L?vobC#
zS1G({uSWjW=kPUInUIxhxkRSZB&BL%R+bNoUZ-ezy$CT^nXHDUDBAz0{2Q_|Ei1Pg
zm}%gDS(%=dJ|SEf!i=ok$T(_<Xt*gWH)kc4m2_5ap>S3n$;zWynVFT_va&EMi?TAm
zsW&SdJmJh%^s%uT@$Ff;BP(;VGG=c6T*aTS=sZQqT#%JJv$C$Kx2<XLNU*o5w>T?z
zW#s`Sup}!>6<C**W78AMva(Wj?^a!MmMgGAG1*;}m3tJvSJAbKuFlHmO}#Y=pHK@`
zuFAVlb?;Yn%;N>?vl43NwQg7XpyE8FDDByhm4_8R@6vePX5PlEY-0LRVOAc?%Hvsi
zKP&qf*{nQ~l~?GZA+arrZqLe73T(~FlL~B8G<C9=GCQ)eGb?+T*o*@CCyRGy<>{;}
zNn6Ann|V)u9DU(*@iRdh@H;<?*`8Bi@1f`mN}ggbW#z?lc<Slmm(O9!yqcBQvhsRX
z-cZbUva*+8NbGI?W!dTCHx*|0En0pmu&3+cXrE@@yIFZp4Ly9i_{%8?>e+wJ51(Y^
zgRC6L%7<C`NHIUo%3Ed-ZnlGpGjCGj&^d5fGw<-Zxu0g`NLHpa^X4}5_-64%R*q)n
z$E^IM1isA5w+ei9PX22JzF}m~ar769zEk+)iHYyC@<UeEH1o)udSBVkS@|U^e{(b|
zzh>pPtejGkzn`0XA}hzUvR%29l-8b9L)WY;|064>v+^fP@tVRJzm@!@K-G@O`IpuE
z#Uft`|Cg0BSvkwPx28O)IBzxch$%q%wPQ7cOjfe2_8RJIn5Sek4IvG>215hIax|D4
zEDhB(oTtH7Oh*Gf!%_Os)ezQD<yAWK^JZRkB~!P#w{lm(iDq664K+1P`m`+6+@pYK
zfD)*sp^gIU*Ou4T&{2)nRUA&F@&+0js%{%a8);~+0EZeY&_qLVbFZm}LCw8p8m?;Y
z)%hgaLJhUl&`Lw=bMidbH#hf|HV<rWtD&9Zw?8-9L4l5nPW-kos-d%n7d5=3Ay-45
zhQ%80($GaiR}EKc7^9(^hVB|hXkZ@p(9l!EMH>2R=zFR-pH^uo(Gb&6pg6rW6e+;b
zLYAge#RTV{<1k~XB(7BTQ?$2+3lt!~4;MWgy^z9+Qzcw_Ztl?Q5(5;!TtkJ1f#+tG
zX-H`Jdwve*QVCn7hGA;dqq`IstmsfhhbZAH$*P5hYq(eqk$K7gZ}d{dyiC!{HH_47
zg~Fr$e=?&LhkG2WVO;R{@wk=Ip-&on6Es|_;c5*hrd>2%!<;)4EE?A^QiJ2<Ow@3l
zhN&8EP{Na#W*S~@?oC$Rjm<r3h?T^z*T9z%zOziz@IMVVs?q6+QecJ}C188v-twC?
z+^peqHJ6+}ntL-f+@|49B{oaLYz=dn{K}ZyNj1FvY~dXm7OgJh6922-o9mJ@pJwxY
zb6oBMHIbG#I#EFV3pG&ZfQtAcwF(86XjrOYgNBDSEK^CfO2a)G?q<S2Ua(xl3JohY
zJl#8wZ^w2EudqoD@x2;0jqAHs!#WMCHLTIlsD;<PMUc{o7T$dt?pGE*q+z{=(Jj20
zExZRc@FR-{6y@9f@)q8prwaB=PxLwz-Ppo=M8i%EyEHtiVI!4mcud1q4NoeQ9@ntH
zh4+NQn>Fld5gd&z8n)~$BR<x`+ooZ=27VgDv-6Y^qreUYYR)hJyM?!QVPZFTq2YPj
z+|+wU!?QGONStENX>eP5zpgDjZ(aEw4X@5DWaFm|6njAlH)-j;tl<?6XEh`#py4$Q
zKWg|%!|NK}(D1Q_LmKvKcvHi>8s1}tVO%u4!{gA>`{KXib~nbC&nv(B!u)<Mz3=?u
z_ciR(@S%o}xG!ZkFV+JZK2QeJhqP*ix^@pTX<G(y-28qlcA}X06Agzoe8%u;pv~0z
zsfHSp5>s1xN4P=0ao<?@g@&UVj%oN-!<QPqQaSLohQ>qU^OZI_?Hk6ZW#ASnC*aU`
z8hWiO`(DF+n@w_lPy!tNnKfi?{vR4nYxsqWYWVG(hfiquoq=oV9p{!?dXGO<@Oew`
z<hjvPDoMDPKQ&xFD{%Ec8t(Wc`j-;;ThS9Oy?@Wi|EItimh@IZe0?5F=2ZxdLr81L
zXs8}SjS#XLv=H17=%|pQwxW6nh5}{?RtS+<HERrx51o`?n`RHBuoFTX)g=xq$!Z}?
z^^4C7Vd?oXGHWVktq^J}kfW%CfDjtA3Ua%hUrbs@@#}|BH-x-aUcC@XTX__qa*j4o
zqYV}1x=li88bU55LueL4^AOsF&_09~q2R(|YZXGv5Iz_b_$Sslr!|cX;rW$0RikY~
zSd%IqsT|TF6nHP9CUy*=Qz*!dX|4Y6xh@()=MeZ1b!RKDc6p$!O9;I}C=8)%2;D+K
z5W9zvA3`jI9;!=D&k*hzRY1VDx2ad4loRmztw`aL5aJ>5@;yI<^{u?(5Qd#Csj{s%
zpJ0D0xgZ1{IzCA3Xyx&u?;AqD5T4YrO-E@67lp7lgf~OzAHskTo(N$}2m?bX3t>?R
zi$h3+P#(gKA>0%~MF^E4Tphyr5WEluaf2aT5yIdQhJ-LYgo{HM8p2--a`*w=un_q9
z(zhQ+cmG|y?bgCeLKqRkr6F7v0y*Tf@zYVtTpmLBP$2g5`!RM$g+Tt5^ne1RX<jSu
zn^xXfc0=H-t3p`k4y;nLeq<%*{?*F6CWHyhmJn_T;nf`l*M@LiS>H(^OeCO5t-SME
zdo5dg6rLQy^7CtObV>-<D>16#lxZRSj~=5NM^;W(O7dHKT#lbKl9IzM+#JF!A<PS5
zeh9aQFq07vVNM9Qg)l3G+nGN#2UfQB4zDTXLbFwufEs83ck$?~ny*ey%%uZcdz4(D
zR^jRkL%37n+gf|<(g}3qT_G$9;eOhq0=+bZ)gio=EnXJF-Q0r8kbBk83WZlHx+)ah
z1@|b-oM9#~Iajy#)~LChzLwro_&!A`K;{EV5Antj9t`0jHGKn<p|$r2<(qmBGf$d&
zyr(GhsKT$b_BN?mkDZ(QxB{C)__%dYAGU_@Q)};q5ME@yg|IDz?IG;^y<is;K!K-1
z*rC8q7LC?kgEk&VpH`e_LwGKPXR1bjFZl4bnjG2_LKPr>o{<_7C%DTV_!50(4}4wG
zmqU0(fmapn(#Cs@R&|W^Yva8U!sTtesck%V-wNSv22{rg9q)wjZV0DC_%np})E2%|
z^!*U_g|MGzKZGM8d=|n18W6&v5IzavBSvRO!9i|T<@23wf>e2=jmOx9lf{P_&B+OJ
zK2_<&?0UA1$GrMHgfBw)I)rZ++1`0aL-;a;uR{3YkupwXl2Eem^95BYcZ}K2WK*eL
zHMDwi;(H1!^L|v}`<+e>;b(<^3E?+p=7zFgRhMC96qpR8$3r*~!pU>|KNL8{-L>(m
z(tuO`3gPb%+UjVh<DU@zWnI-#OUHj9oZ$)8QBB9$5H3i>4IQSAWC*@GkKFIEHeO2M
zw4xbBvx;hZaArd~bOngdw(%@IIHazQr$<)WI(S|juGKa;o}Joy@wR~<&Qqf`bkx*?
zf>2$@t%ss-C5v-(3~lT2q==45ZM_9;1JCnt)z(o*M-v@Qb=1{SPe(&Nu(rOA21)~U
zvMxQWrf_;AHQHFm-tsubsHB;W<~mxbbzf-fwb1chTd$>#18u#BH}&O2($;FUjiNN3
zQERWGgN}=I^w-f*M<*TmI$}B^I-)wd=;*4WvyS3N%IKv$9l2`n)XANmZR^!&=XKN3
zT}KZcJ$1Bf=W(-bl0ikHHz>fyRSI<U(s7}VzG`}*a%LYLMXF2T^A#vov_#RkqP@9I
z1(*gDqZ!;OK|e;bjaRBX!;O&h+2q6k9Rqa?(lJ;^nT~{xO10C%c3!z2ROt#G70N=|
zIi{V*B=_{78dK*G#zieeJWR)M9T)4M%#3zHfY>(OTu4`QcbDq8jM3CFQ^(~xM(VhZ
zq117Oj!`<U)-hhkXdPGT7)$f0M91QG9v__e$jzTUAyfQdJ8ze2SLt}aop-FAcMXMa
zF09txo1nnI?YwJsygcn9wuuU~Ywu0gF-6D!bWCT4e;mDD$5b6R=xD#XytutLsJ-{a
zs9dfxP5I=Fhs$Q@xRG|Y_imz}kCnc9s+gnW+j}>2`r`#$?iL+)x96`16yK&}mX7;%
ztk*GH$L%y&$6Y$^(1R!cxjN?Qn4@EJ``}}ZwGZaaS9qb0H`{v)6z0&Kl({oOut*Qy
zZuHTWC40-3=vb;_wT?A9mT@^9D|M{Wv0TS%>EacN61=^kjB^QC@d)nGaW8YPP4II)
zQtDi*l;5Z0-L>VXHuYVngOrkdAtL7i9S`c*qO?7vV}p*zbSz=c>v%+gjcOz0usy0c
ze19R{q%ci=oV#F&Xdf`2KU4e!UDPo~uvGyXcC5X(UB^>8Gy@?6J9O;S@wtvKbnMcx
zTgO{E-e$7tct*#II$qN8td8e&?9uT&%^nf|w|($%&Ja}V;L-WyyrAOJWLDwJI$qK7
zx{fz=uz0>oo$b8W=&M}?tvdvl5z}BVz0G86=?$2lPZ^_n?_M1|e#-F<mD61vyw7yJ
z$8^&1p^lGq?9;Jd#|J$ADu4KMJqC-a82ZEM;&R&1!Q&hBK^Blh(Zf1ER)F}B0-q>4
zvxE1k0!MWGda9VCI31K_K9U{P@uiN_I{wu0m5#4jZD>5p*WCPXbR6RWoSV-8vHLB9
zwJ`BShu{&HKZg53$Im)`Q91mh4sw2C@!VMcatH5M9lz-~sfM`9?>bH>e5iwWoU=Lv
zpPBd_JigYQ;u6yn<p06soRr{u&|g)vbo{FaFD!pE&HgPWVEa!;N=I6)bw<&%tp5u5
ziqeLew-xg3M%z)4(UH^9%j#&;(Iep1tQ#;4bT!b;fN8)oP}4w;5u8C=(Q1l1in<2E
z3Jkxu{OzGND07~H>WWiCQ7>zeDF$Gmg@KleS<65J0}Tz-Hc&@#>MB~#z~a3|K}WB?
z>hb}Ya~mn#)Ic)>jSX;=r?QEG?<WM0H~e6Yv^i6>Rq(n>+{!>}1Gxr@Cnee#XltOe
zf#9{#K!;!KP6i?d+7lb-NQFb<%#Fv-7W37Nm^5kxuXuc?Tl7aUU+6fL=;-Cq&QGFy
z*OqmmH=Kdg+}%JA1H%nmY@nwRd?<0DfxZUv4a8`q0e(bKWZ--Q{K<7M1BFWFv3dDp
zI(k>$T3Bo#PA90}b0{%zQ%8^Ty$xJoU|C0RV@I!#fwG&*DM{MTK&gR22Kbr7MF#pC
zs8HGl7#L_EVW3=fIa;P<CY&f{d3-@R>Z6X{(lzC;4UShD@QmQY5SmIlSV;~sFx0>>
z0~FwN4w0T39KXcC2m@1?35TPX8o12B1OwL^xZJ=<1LF)_W#9?}qYR8OFxJ3mBY0N4
zQc;G0n2n%{Uq!DrFkT64&ID(wO86Qhcrs*nq8gg4y4M+)WPk#kST&ad6uaKQR0B5{
zm}cNcI*p(ItGLWCkm~47H}GS};LuGvQ_L)?-6_C)Z@pQ`+(MmaiWx!5+-6`Foo}I`
zh1mvfH}HyyS54euU=9=Bgl%H3fq4c#H1Lsu`34pkc-p|b{Bf9pg$C9bSZiRB;w&?8
zw*rd|+-1P68|~D|TVjB8DV<X@=<aA3U2b5dfoh*u3_LHof`L0P`u*X;RR-=caIc!a
zTG4%*OP{J9W&5T<be)0w3_NV$5d-%dSa0AVHSqxh-_?v#!-Gt@t!0@f%7}mc(B436
zn?!3!w6v4=sDX_Jwi<ZSz$Rw<wz9|R(oWuEN&{u84U27N4$zIAye(?!7A>O0)UeIK
zb^}{FdAkg(>f{YtU;31RV;jl|b}&p##r36Z*SCs3w5@2jfuAnWDE5qjXAL}OV2^<}
z4D2<)T|7_U8ff)Y!3zdnH1LvvdTa7tHgM7JiT68s6Lu8++{rT|-mA*0*9^RFph?8*
z9`Pz7-h_y^rh4>E1Mkp018>po)uV4KN^s?mW$zhy-@rZt`xW!{h_^Q4y|E?n0joj8
zJ7C~za+*fpiFnV|j}jbI+x&rfV&G!~hYWmT;IILD<68rta?29^oV9`lC*mD3@R<T!
z%c~VV|7gWg17ET@@K7JESXV##H77>BV@fB%HwJ#MA0>#^i?)q=-zl}<8(8{JNf41{
z(Vq<bY~XL|H1Lbs?@0rvc(`up{HuZAI9)N18#uVT^wOvok9sFqUg|_2sT=*nz-gub
znhUfQ*LD8Wz+X&;ZAEi-7F9c0L9>aO1OF-wArt=@IAh?ffuw=7fecSd)bmwD>Nbm}
zRF}~qGi!jHB~ec^18`gQ==7Xual0V9bQ6XdB<jINQPV`X<^ga_xF)VMG08;OL^TuV
zn<zGMo{8!vA||3HYM7{LqNRyeCUQ)OiTWlQn1G2|ChBk@6BqT1ZH{`iDPJ%8MgJHn
z+pE#wq}1a9e5sV6p$ThyQDYNLOf)jV^TKV8$cY|}dQD9<H_^hxfT^9EnaGUEBZwl}
zZA>2RByDYCeO|1siFPJdH;lG1adn$Yg2D?E?M-wvF{XZW;YINdCP=OJ(N2oPK$G9u
zM6MZRem<w4t;jRcm0LI#>tf>Xs7L>s=S91j=x(BM)987fJ<=W~dYVDPbEs8kk2GeY
zptDzCqL)%dZG|R^&S6THn24JgZsKASy-i$T!ZR_*L?06unkc1<OzfXxvh_8w_6?(-
ziETO2!!4t&Kd8}P#f70Mrw53Y2fnBqEu)6cUP4g<CLU!flyD^-_-93{lDxs@|5cBn
zCWfe?Ydd=s8)o9{W2FT1JA0Ry7-3?xi7QQ9YT`0wK&oX9M`_9BCPtdL!o(;OJ?cld
z*Nd+2>@BGq{jp7S;D+)sCdRUUB053Qaf;Fsa;{<&R3b4(<4s(n@Se^dyVsid>c+CI
z+X^O{IMmr2zp{eGcCv|;^q7e$CayOz)x-^~(kAAZm}cUCCT`}p@S2!T*VT&NsOZVg
z{D*g#yCFu-O>|DPN`e#J<F}faX=1jLxsCCy9`I)|hjYC)xgPOl7Y9>rR|5Nw7R@y=
zkGWxDk%{@rOLr=|K+*EY14ps3>Mk~Mmx;SgEH|;l#8MN>7};FUs1;rJX9d9}xgIG`
z7TXGXY)es-TG5$Jql+hWzQ@G9CN`Sbq|~l9v4*ZTvE@X9%Ga5=&%}$*ls;_Ye&(}@
z2TVN3Q&}rIZ%fe)x!%TF(TBKPuD3za>zYS@Sd+&t7kb1*v-Z(PnNDq@)UYYnd(6b+
zOi>d%Ol&ssgo*rz%xzrD#8wk;znWl9^0sR7P|lMkUd#2yG>d+b>wPq#^L7)YJg_@W
z%xVyQ+Qc&^{>}AvnRujqbhinfhy!Et7~*G5?BVg3;0}7u#8vOqAb8%y3nq@fTVuzQ
z1?;|P;-zykFPr%Evr;n63$)ji2i`D)OZIg|3u+j9O}uIHCyaR8MAC$B;vEi|IA-Eo
z6YrUL-^6DoJ~y$CX^;~=XyRj@8WSIwIKYCF=Y2@y>DB7dChx~O=XsPNCjSuk@?0VZ
z(N9f$V&brg{(0W9>d_uk^2X+QM@;+}uG~ARbE7UX%JVpX!7Z5hl38lv8#5^NU(>hF
z1-vxrVS?Ft-u-#r)(xfK@t~PFVdA8TAE?K~Z^{7r_9qhu^SobpKx#&RrW^A-g5UGJ
zUlpfEt?2Kps23)zF5YnyPwy_}(l?aGPMP@A#9t=<VE&iJPMf&4U1ifQ-tBLdvirAU
z{%7JJ28A`Ji#Mc;S9CDJp))+uCdPO1=5+Dab@9kanMj+cZ3UGoV<OA^w@}T3W+7z3
zw!qBckZ$3<E*^nl!BkAk!VYS#QAvUNDw7?>cNM*Mm7Hgxx&^3i4Mi!LW1*%6=0CB%
zql}c_7n3?#F>goN_g%bN7Oq`YV^WREI?A59igM9<7V0aU?h+KzMiv@daBYNbG_las
z!eR?|S!iaVxrHGXhFWN0p{0ca3%x9~vhXqg?VW{A7Ft_qW1+2ub{0A)K8GHDD$?G<
zlFH5v=0s+#4BCmeBM}Qx3tcUABiJ9ISZ52l7V<1~;od*ZU9&Ip<~NaF{*5gBDzfvg
zK%l#Yo)+>g)a_KWhlRf?JNN!35<9obH3xH@Gl5v4g(3_6ER<R}-$Jp4J{C5v4TefA
z^tNz;g*bPyJ(Bx#?%xX{)z?PiTTKd(_FoXW(89$7JNH#;2`;kG-$I!Me*fcub88K>
zP_f_MH(aC64)M<A?D89SEDW+xX<^mR5iAduTk>*1&Fv8kDjjU${y%fseWcxhVHSp4
zm}=n$uEls+xJGFnVc}8>V=RodaG8b6EsU}-+QLW+S6Ha6mizYIKqnhP6^Hmr3*Ubo
z@W)xWN~s!e;c5jqR8LK;{z)M4SIwLWOaluOxvvG0$rh$qxX!{PB}@)wjx3CDYhSI5
zT(7oCPMxmaGz<T;aEFCC7N%R6VPO^@<}KW4;U)_+nSmB=ws4DuTa~I{t;){Ve^x*`
z^i1ScKT=ZInM^iD_I4%n=8+t>*?-t%&b2Vl!U79-T9~g!sg3-0s{)f4bW*m33M{ff
zg;cx5!cq$_S$NsPG7ERp$rjdISZ-m3g?lZmwy=^BQM2x`z^tp%(`={4rD^jT#aU<J
zJ_~CVKDjJdkvU9CnUW690~Q|S0byENc*w#A3y)cN+`_{a9#LYO6n#|DjTV?xoJ$9e
zTos{9nOB=FJYiw0g(sEFJ*xxe7CP;oKyn+;&dvaAXG$nQ{Nb08ofdXk*kj>&HEXwp
zr!73AFaz|;g2=NLo>N_7PGMupy`VUiJ+!K5zG&gf4Us7?L|&oOEc|HUCkwAxc-_Jw
z3!hkc!@^z*A6PhG;Y|x~S$LP_$imwej$B;&?UowvDDcO{rH>bNZtzpd`xI_nzR$vb
zwa|}0mXQDC{@iF+kKp*08XsEt$ihJ-#_2z7sqwMW@aR690&9LMIc(um3tw9JihK*7
zS@^=jQJ#e(k<ZmEuG{U7NW|_;@b{J)RZD+u;TsFzTKLYwG1iScB5aTBvuVtttr5=s
z-U7i7$|^2Ie&4R%&lY~MaK^$}3%^?U&B93wr<BZv>x|zm9JlcGipZHB+MZ#?3B^CT
zCGv-b(~P5qf9Qw#kv|pxFNLf8{LjkBu`BcbWpsua|EbZ$;UEO1Pezg!e3o|`x{V*^
zMp72i7BcFTv71%GnvK?rBMkcVIs?dLoiS{fHY^*qjg>nzj*=fM&LMTEYEum=XF#v&
zc78P*=h=AF#zq^}ZPc(a)W$FyHErbB=xU>z4Y2_mEp4>2QOibc8x3qUv{A<nvbwIK
z*X@ZI!w1x}QD1dYG=M`3qXms@G*+DEtp5r$wb9JR`(4WSm2@8aSY%{ZZ~1`WEVodj
z1l!*V_TJh?M;o1Nw6W3FMmrnrZFEpFGrD@Cdv>1PU;qyVCI9-H!9~<Ymvb6A+sL(%
zXJcO50t&Q0+FyGza{pZsQg$CXV0X9C!^VX+`r7DeBi}}`jS?F%8wK3vsJtQ@gS%_J
zl)^$AiQd6>R@EMGZ&#1te8q47WhAb^1&Zz&uJyKqGWg+Bk!G(LeH3#@vVT7tr8X*T
zRNA<R0yfI1(8d5IP*A81v~i+yU?<!23j+(ws}v41+Ru;N^l5)jb;%!MV-O9qgB<(i
zjmW>J@{@N5XP-mEZCq^Qb{lutxWvW?8`Et3&&H)TF0(Pt##J^hw=vSjl{UuMxWdLL
z8>5xx*6;PF1~vk=%lAjdDt^sKu<PxS@_H8r;A$J!DE@fr@q&<b{4g@X#<ezn$reu}
z_^m&|bxLNEqLUS+<P-(2w=q?L8_w}pALu__;Tvt-#MBzD&9E_FT`@P?xW&e8HfGtl
zRmsd$)Osgy(S#o&C2t3S_tETg+CG>QnPX$Fjny{RF#1$wW3kO2Sq6!^K+%PY-l?d4
zZ)6d3dvoN91(D~vdP{69wXxjB3N^Y+(YqCGJgk%&#t!Mc(#9$q_t?1C#;Io`<2#nO
z$O)Wt$L`3%uHNN8{hue-+PKfg{c7$y9*W^wvSALz*4uc{#zTt#fTCmH&D~(*VH=Ow
zXnrR0b(iyxe-&Y)F!xBh$;M+`%f=rz9=EaC#z!^|+IYgo78|eHc+JLE8&BGJ#>TTY
zw%OQjW2cQ>HlE@sINg7TjRX7a`;SDf{kQ+GUA?A5OLwcKpH_6}>A>c)p}_{9v$4m<
zOEzA%@w|-}Y`kcr*Z$y2?Xjw0@378VH?Lv0;0Un2Vq?M6!9xqxlD=-^4IA(AXe+gQ
zZM<dUZH3=d^z#G36U#dazpLn7+v4PGe?HjeKE?UK#ybVtepantBl?`k0UIAG{;55Y
zzb}bjGN|-p8;2C<M;o8mIBerf8(-P@)W#9T|6I{F!;Q}rSg<0}=Vasy8%I^Q@u9%f
zF5SGZZG2<nd&N9v<68y3Q}p!rfjy5N4Q%VLHv5B(iF*U)Pd0v5GQZgP&BpIGezoDh
z9$_Im@K7LdoM+j_NhLE@&22X?;7|KL_q2^aSz{g4aPXInzm<&c;2#B&)MMjc8~@oj
z!^rlid6rr6R4|uW(c{Meu%&EdY-H7xG%MJf|Hs#yAj3n7{&1q?g)Nc!n<It;(}Cr{
zcHlY)J8+Z$C99VQ=ePX)fKKUFvzmkR)X>V00)>~)jns6I<Dh|qhKer^YMq-41v)&V
z)pk(FL0u;}w)Gs;cksEgr|YAUsaqqX2L~C|$U$QVEgiIS(8NJgHMfO>X5@^@qd;@T
zslt&j1D}7?v7EHEgEr?@<Q3M|K|2SxDwjI5%Zx>ljt)9Gc%TLztbvGwsDo>(VPZ9O
zc984f+c3ThBhNt>2iqMy<)EvBZVvd1{f|57?x2T*Ne(7E=;<KeLBc_~gP4N?2Yns%
zbI^;z4u*WH^>I+-;Cu%cIH>y5fMN$F4&n~>+>)R|%8;`4cCf0O$3F+CH7BvXo41$P
z!C}QIb#Rdb4h>MWKONhol--33^OvmD2nISRbMW5uyi}x!-3kYl4n{h-!hz>tkb_Gc
zjBqfRCONp6VZFBIPzS>t3|E^<-;uZWg7|hXw{x_}{G#UfWx4lH&-<mDcPZt+sCk*P
zoOV(_?Yvw~d3ss?C<mh*jB{|6gDVx2OOJIhhK_wZzG`5wsmm7zf8cPn(sPZ22@b|9
zNi-}Ab@#4Sc%q^duJX@y4xWirvOC4W^$wOhSm9u*gBu*&=3thCY092k)vW(HnC@VP
zgBuy3?%vG~ZgOzD7cAYld*IBe$4YNek~0Sd%$W?<r`j9$=idFPHk*<T7C5-m!5t3f
zI9S*#Z>|!)enGHP?XLV`-Mx7Z<~yK^Dk^eG7dlwv;4TMCl%#%V-eMJ$(FY1Rg>9*W
zyv76XcCgIBncN~ansGySk3%aNVl``%gL@p@>)?I|>m96iu*Sh!2kSUm9w@2G3Oc;x
zkD_mH%)8G)waS3MxV!g&g9jZv<e-12B62o3c-X-s4jv^_t#a_Oz>=4`d;GJPjcU0%
zbMoGuow)GDzK=OzaJdl*Y*uDJ;b4n{t<2t;i6@otHiap`M$QfgI~{!J;v*Nk9PH-0
zE(W-GnqhLFxd^#<*1>ZQzI5;vvzpOy@PUH^4qkBZqJzB--gNMigO?q=>fkk2Ei?Ae
zs=`;8IrVZs>Fz~uDSw@nZAk7L4vu&C_Lmf`dMvK>@HqOGgSQ>L%iLDNPwTNUxA%RA
zWub@n@;mW5AH?5xu+PDMI$>hPiA?_Ucl7;oW#QKw<C7naf9T*No*)OGIylH`K+Ai0
zpEx+A4ESA(b?xEZ@In0c33*fF`IBqrA93)RgD)H$Wi8^Fo!fWINAa7EmAISZV|#cr
zdw45*c-I@T-P0?-cJPgZ6An%~IL30};1>tKI{1$6b?}peS9X>C;P6w*7`N~v%gE@8
zt9lnr8B_7{k=V~_Bl@bm%K3f&?p^eogWtJp#jJE=Ki0_q-iRH~=HG$*Qx5)c@UMga
z9GrIWCo8{$zZrt}<5%Y7Q}fjy#{Z$)?O>HA7Z$D9A1}JJ;*5i{4pPimo|IO397;Oy
z9o#p)vP$gg*?l+n@G@$}EQJpjy{cUOe7s0^VYq1PqMZxVh2^5Yiv})i7mkY@7vjQo
z5q44CMGY6#TwHWP(RpqV$G3VH5f5oqdRS?@?DI0ZtEP)_zZIPvlnWQNT-0_^M+xg%
ztns^c?;PXE=-l3W`qp((Px0wn3f~oqHFVL)MROM|Tr_rZqKDVSMN=1>B>yTm*l#l>
z->#?U^z<s6SW6ePmzk|xw0801;iB*r6`e1yXyYR9?E=QPsHdl2UD@762N%6u6uRi>
zqLYhmF1ovjxQM#QrLfZ3*~OmueTVe)>i<>LaB5|yZxNU4;-ae>{d#I8!}QT*6+K+^
zbP;n=;3D7U8&>Rq9^=xqf7kA^e`i!a{Y?qYpihciobTcS7k!k5VizSY;w~PWQAW)>
z<M}r)Gkd#8?Ji@R($l-pMPC=sKf^DR2Q#^!i-hEF&g93<Sc7c-MJ`@ClgrlqV0@s9
zG8d~|tf7pHau?UTnCha!MWu_;F0ORpxftYPgo{gE40bWZ#c&rFySTHbH`K*2nzS+g
zKu_<Po*s4DQz|ZTabq?=V#MC->2XmW#>-q>?&1m;qg;$sTcFt&E;6}a<{=L<yWI7k
z8{=bKjCFC1iwQ1{_4LNMxZ1^dW>gE~DprXWd4=&JYR>d4>Y0=OZ%>c2u5~fd#dY*~
zpQ1t6R8-IRCb^jGVv374`CeI0e%q2FhM+7K=PEb2nC9{q?J(cP|6ELWajT1&E@seX
z7dN@M*~LHU{Gxo1MPS$13YL^%kH&9t(NYER%545^E@ruy<6<ro#>MR}?oc}#e{W%>
zp0~5Oh|3MQu!z1rTUvC}Uq#WH`E>pQy355f7k9f@=wgwJ#V+o0@yED|^-k=IRfSw=
z3C~F1B37iOF1pO?OMGHS88^7x#R?bqxVYEF(0p&Di&ZYjXDORGx#EUCMU(Tr_G2oz
zyBg1ym1(iH%ATz*o^<*9TDZ@}{VvwK*vRB}@qmj5T|DgK5gtJP39yR|E-t*Kd``Z1
z(YT6r`CdyWR!#CBb@9bL6+C5)`V{drJ?7$Z7n@x?;er7jHL{|K7E8|#YRDF<dZujJ
zf%wjR?@05!Z7#OEc#%2g;wcw9Ts*_Tx!B3#?_xL0K21VC?Psx#O{o|W3JxQ|v`~!9
z=a{!HUQoHchk5=^oVoPo%EAgg5MyXwcJYdfw_UvB;#C)~x!CLCO&71b_#od~`a%2+
z+VgM4Px(RdpRg(Zmhu&qu(0z8r}MpcUA)I#P@a;bYP|1aAFcYP<Y1>nt(f=L=0wBN
zqN^nT0MmYTVa$m|V_u(_chJSh%*-$*gmK8lCoY<V(KL+1E<SaUbm6-=;^H$Gzq<I%
z#piUOi|<@~@8YP7FL@GOeB**;?JJ(CNfjevUQ;*5^f>0?Tebu7e+JZ`!x?m*3%cS5
z79tlvv%DCAt2276ksbSqXH&W2`k42NDxRG9yNly4{&Mj*3!RGoA1+RF<1S7y&0_pn
ze6007g}Y0OroI#0R!4gm{ps@W1!9|G-ajt>b#cbUSr`A&w=u8sx{9Cr21n*l%)5L~
zU%K&?Oc3ali!|$Y7&XGkxX7}?hhc@$@aZxw3_T1ZjAkwJLSg*7DNe9)WCgDVPVCpG
z$PU8^BOFGxFx)T(6y}|bc_UlraHkYFFC5f=yC4V|H(q&fVa+gd!l)HSZ8ap};KoN7
zf37ZUTo9c4cJZP*Vbta7VKfS(UKnlPE2|$ygD|=tE91H2WmNy!aw@F1KmNqHif54D
zI1JWacFAlOM)NQ(45M!tEy8FSMi)*Dqg5EK!{``Br!d-3XBh3n=n%#m`{Q5o;;5I~
zE{ttcD?f}Ebu?oI1s?AR-X@VSqRP&^a1h_l%GzA2bz*n#DjQVbT~pvaF*=viyM@s`
zj9y_BhS4L8o?*noC<r5;o{{{t5#u%~HfU3vnLn$*yN^EE7%vLr{4jclaX}cxVU&ci
zv%rgoG3@H#)ZdtsKcZ&-(J>W^%~+o>>W`}613=A*74*`A8u|UgC=KJ{FfIw>qA>c0
zQ4vNZLlDNmFv`M6g!y+gv3_m|&*RvS;%wz%XwR0jDAgKS)OJ;0FN{H93<+as7$4rz
zcW@Z*6?okH@zJ?m?AS0`?!<<N!Gl9%Shc<_@U&juh%hb<V{{l-(kEeDuKY8K=JoPM
zhH*tWC?j2a1rcYsN$FCS=rLi8SZ0o+a2R95Sa(H5|6U%i_^ZSCCXyIWZM{4Oy34*e
z56)~g{n{{=hp{4ziD6t9#-uPNhcPRR*<nlx<N7de4&#<EriO7t7}LX;5r!R&O$+1a
zD=Pk{tXkVE$f%vYyk&nC-5ADAiusOGe&+VRKPyk(8pds5KFY>ss_fkvNz~d^#$fS&
zxjl?K!dMu_qA=!!F*l3_VcZ!8?(92{HhfxRK3@iVd8uCBX**V@&~v9(MhiVA<Vrin
zW3o7myTVw)OwePq`{XYTV_6t?hl2{wGE2{}RULUg8m$atRTwXX@nRVFgmG^ekB6~2
zjMZVR3FDzKHiWU3ehcINFxJyB<lh$tL&@XJ8>+=e@dwoIsPjRpnq0x+*1um--$L)<
zFdpF+3cXEXJQ~KvFdkNw`LaUq`obVgIVD987J84-pHnNJF7%!VV+->zj9p=D4dY3k
zi!ioR!ySDuzo6(~q4z%WpP~&$aJ%iGPkt?0@^l$bC2PX&F#bQLz5_a{;)^>FTHe0)
zd;8josEDXQ*dXF=$U-)RkN}%(hTeM-kPf0C(wnF#2nd3r2!dUaB3(hGDpe7|UO}<`
z?IPdr4PU<Voipd2-`sbn-MMpTUfH`Fv#=!#uX7oenVYh(S@!DtJkfkYaLD8#ZL91y
zcbQ6w;LQ9^rTC64?99TuG{P+GqS4aivha2m-pIn6S=gI}w`3)(@R!r^J+#u>f^JVO
zHNAvrm<aZ!{aHAWg~PNxj`48vU>3N69+IV6CPePBBoEl{a6M+Ez6r(eF=Ml<#)*$*
z;dmB4$ikT{oS^fk&(Fg9T)Z=ixObnTohQVYgjn}!KAStuY>nz1<HSeuID;Q%;Vj(_
zt(Qyh?c8%&_(;xdBkHhn{QaXzZb@|SlcyDZngx31`3XV#MHar~YE{r$;j3hPorUkR
z@I5V-yU*nY`S}^7-%5O5(hHIn?yuHSH7>ILEHqG%t>DKj{6srcU@7>S&XZnRL8gLV
zv+%zx{GEk==&9(gv+ze2{*;yU%+FwY{c?k<bE{O#$Y%PBi&wTt`Y%0y7B17;AIiAI
zg<mOqc}8}I67(uBKckX@{mrAq_CAvZt0<_dAWMOwpqhf}N>C5^7az*#^<-uZS&H>g
zKBPcZAo4Rz1)2g~L5oV+<a4C=Uv6-7GHNJzM@q6dnPCOCf;tLrP~a$V71UI4wE~X~
zWn@Pb?0qQ1SHQAAUvAK8TIN*>)+Pi8b<M*WwG>>VptgdK-UvE#E%7Y<I$7{ax9dKf
zalOp8&W}={uEaMfxLLuC5`QO0!Am6%Wz>_L`W$1WY!)Q5p@OJ_0uDhzj)F!C@)RT#
z+@hedg4-0tWRY7XZKB{)SzE1#gOSD+<g!#oc6mXRy*;owgZ*zR6_xCi+f3naud>O{
zSNQwKR?Vps%1nz<QAv4eXtTsmQg7@=p@NnQiWIbx4XvvYzot@lvBbPurE+!~1#J~{
zRj{jZG$koP7X_sXwkJfHg0zBiPKts~e6D3A+bKAm5FHeBRM4KLl@LtTn~5izC0ng2
zV%Zks%BGj(c2;n0Gr{a_l6F(jT|o~8e<}q-WGg)t^it4UK_3MJ6bw|*mu(%+?XO_`
zHBo|o61?<AN;DH4h8MrMB{fLFU<J1;SamG^MdK)e9f?u+#L4(j*3c&Rj%H#;GcjDj
z2n7d1I2gi61)~%^9>NnLj8-s)O+O#~O2JqK;}q;ru#>GQxKqI+3KlDvpx`bAQx!~8
z@YDJF%bJP16--nxNx`el#AF5cD%kf*@*YWd7dO*ZM5ictih+vzlsvv6&g^t~X_kW7
z3T7xMY?(8Yb#{&Rd#?@Y90hX~eA!Gqtf1-Hw)0r6p8Jr3=j#^VC+U2es|4gcpx{A?
z7f5=rnILmYVa_W~@xRqd7b>{^Q1&7PzdROYSC=SQs$ji>XB9lEV3~r|3Z7Q5T)|`1
zn1Ux2tdM<MNrfo*XGeBdJ@*L(;m@*}{%t09yp~7MbwSSfbGc8^Bo^c_UCeK`hO0)w
zGYS?R&3<B4`43*~8NHO<E;yIFjuw6{w{&;*bL^pl*A#42@c!}K7Zkk0p(%J#W@q$^
zzoa1JSoX`3`ptz?l#^&Kt~!>zL28dhPPfe6q+qjxEmHGWcaQ$JGX6Tvthv~xV5<UV
zw-@G+Ui)tLb_K(m3xZt=cGLb9ysO|11#c>No6bkU9y+=;Rn9aQKQ$M76}-jiXfF1#
z{_Tmq&Bf!*#g97@2NWDs&?a9T;nUh16Ne;S=0){<aaiJd`C?vn)V?WtRKYO?A1FAZ
z;JAVl3Qj3_k4pBUJLhMdR4^!COv@LPd|xt8v!Q&kudr-IzSuQC<3}(0p@OptKH)N#
zHJ_u~VO9B}$`GARvojwn_%>fq@-qd${gTW`iZ2y>F7X$VlG(9pj4eiz;%f!pP+q}#
z1-FLKB!mkJzEfa^fDpb{aFL!t!QTpg;9PIcSTd^qpY#BFgC8aRiONy1Ex!Rdzevun
z3jQa-Z<78lDX;!Pr>X~HGpaOTCI2Y+m(Dx{27bAuz^K_EGZfJOBqq2lL55^j3Zb$D
zjgx|xn5u*j6Qz}Zsn6ooLbz6IP(6eivbHQql@LN9s1lDlnn5upO=fjT4M`WTY+!{j
zc1*NZ2-k!VmP}hxM^aZ(mi0pLC5}{Zu9Bdpq*sTq|F3+CT^qu6Aspz@pkWBLL%3dE
zy;;&alGc^<h7e|-$)@~`GJBJx%(m{BNm@^4>xa-lg6xW`u_X<6%*>9`1)Z;-6G9`|
z&@Ga(#l{jaFwSjMP6*>d7%vOPLufBSZU{{!$P1xRf<y?-LTD~=zNAgRtHus6B||8X
z9O4!sw3HnqZW%&R2(3aW4xuE3vJlcC{5n7Ac55l$M$)zwWm6%PO57nSD8p1PvmylT
zxj+N$DkO_ujCTm3V+frjr+WxJB<LJM7YVvb+D+0+di5){^$cNP2!lfCCHZ9b4xvv4
z?i)hC3fw=00TK_Z=*eK29TURs6*5C47#hN`5bg+JxXg|WVN?hsDr9Dj&t)rDvZF(|
zk|k%X6o~27?hIi<2s3#pgu5hjs-$;U)G$$kNs`_p>EsaZm0*gbLmzK&WpvYIcDkf9
z*bQmPvqP8@!r~B?Nd8<&ACh#Qr1wcWU()+ScpwB?#e*`tKvMtg|6LIehp<p`*xaHJ
z9+7y=!Uk+;sl+R2gpGsFJQ~8X3d!XmJXV1@-jz~@VjIraU&XdU*b)K*ggzC*>JXj{
z;kgi=4q;6Q&xEipgtZhH-*84!Jf0Mj!m(bXbGY-~Ga-9@2#v?)Jkee|U`L-1;e`-h
z4&jv${`sl-iy_=PFk1Xd?n^RD4u8zGB^kuSc{PL$ArSEAQLlxtF@#Ma%>TJLBlGY_
z9|W62_+++0@OlVaL)aF=_7L6-VNVDj6lW}HoxLN3om6J)>|G)3mVkKuw#*d;+8Zp=
zI(x~|jJ+Ye#WgOk?vwQG5EhkWPhXxxVFJ5H^e-n$d?<v&AvDww)o>()ci5te?JC|4
z;b;hVs+geSSO~{MsIQ`diW4E64B>JJ87fYN@LmW%gz#es?}u<Ygik~GjQtGZ4A)@m
z=*J;^7{b{Q&V}$1#j+Fs6VbD!QND<A_q6GDU+nJ}gX||E%$t)#`6rv^d>+CVA$$|U
zw;_BP!dJ4MuQ^RkbN0^;-Y9)PA*XNulK;9U_<rX+{eKAGv8zeJms8(|f>%7Vx+Y#}
zn7GL0(>7?Rb?1_wLijm^KSTH{#CLhse+l7#A^b)^K;=8R^Y*l1wZDh(2fJDtys}}(
z*j3`$-GUcSe~0jI2z<5okL(Nu*nvwS{1*z|X0l_=<*TkrDk`gRRd^~gRa8--snAta
zRZ&evmI_4;bW&YK4HfMFl_4`s*_@d<A$dua^qDz18=Mqt=Br6Vg{i_)5mqs6Lneze
zfmM}9*>hrB1qbe^m~ExLND96yWY$*^QBhmP^(wAXQB%dWDy~y;wTfCQu2F+g|C0>f
zZSn0`^_=pmsbCiP=8lvv{y1NCWKZg<xKYIoYA{T;$k&l<@g@~FtEi`9NRL1{4feEQ
zsj!>NQDm!VsG?LwnaWSZk)tACMN&m06}PC!Rnb&MV->fm!E4r-Y@&&*{5DBh16wf*
zl2dvl;wr}8nG?JKRgq9ZrFHsHzc5VarDiIctKbx{^&ujf(Yd5RMGF-}k7tyqD3sN<
zR8b`B<ZH@Sl2c3_y1DFXqZUb89ktY2MH>}u)xad!AKDcwOsU|TK7zE0autJA45omJ
zb}G85=&qu@iVm{EE-E^*S1LNoEPKvUGzLy6CwKI`7+(-~RY7ayd)^)@daCHdZmXDB
zy*ed(spzfZOy?37WT_k{)sJ&sknFEwfHaTleqaLwnaxhHPMR^Ze7$?SiV-SCQvV#X
ziea4k)yX?l45wX9Ddi|=jT62|Q<z|siqR^@$sY2(cDO){p<-1~EnI+)7bK~3);XSY
zS|FBqsk>C%t>Q5iE7(sJlT<vQ;z1Sn(9BfKQ88ELN6wg{Vup&DbO@o+shsiM+0#_;
zMu6GrGFwm}$mHRC7S-M=Ia>|xDR^QhuDmb$>w`Jn&*jcjaUZo^m@{9+{VMk9xx`%y
z1SQ86hy^MhQn6I!$LDxh#X=R2s94M-Ywq%Hd=bs*Y+JU-137O5mT*wJve$NwvRxk3
zm#J8;qV-$R9Uaoo6^N<NW#hNhN)?Z*cuD2=+jv67Div#0JVSkE=02$+ds6w+5<eyB
zYD%_fcDhf=XMeX@qk{B}0<n(rdg-$&o>Q@2VrJP2)AK4WZZcm~@q!B8Uof@Ump!$5
zY2r-VS7<8D#cL`ys_1g5)vGEt&{yn>+J)&>&&Tx*d7D&hQSrKp%^dHi*&h`M%Cp;B
zRZv${J4f+%f!Lv9r;0CCe5GQSirp&Sp`%v$1A&~6JLkNi;!T=p)$BE2R@<XuF9*0j
z_btgesABp*(S5X;^|^1W*w4wTo^wFb<r^~x{u4ynJfz~V6h0#9m3ofS`O`{Oe5m5M
z<e#M5=Pn@eeH$|=_MVFORh(Aw0Vh<}c7^^nKZ7+hF?*J7r&-Q96(6a%!nw_jeoU>Z
zxT9Z`9sWecr}EO3c1b^1@x}kw%GWBsQBg@lWewk|IIrS=?7xZ&D!x<kgNh&NY8odJ
zw+88ZHrGO2q>64y5d1{pXQG{2h+kCvOn)L}@>+;rxqe#+ri+aezpMB|#lI>psrXaM
zv$nq__=_v3ae_7M+MxZzrPo6I(?81We_RnQM1}?mT$YlBbE<TmQ-w5BLlq5IX{f28
zs)lM>&}fzx)KgtU4K3);suqIu!}<oPq9LR~)xeq^Ni_|+1cs!R22%n^O0m61Gr|?v
z*1#;89IvavlYGD8YNX=o)f#GPy!*g)8m^IjShzo<XY1tF7NT+MB#YOU%xn$UYpA2)
z23Z5Uce4a_CB0G7n<QoNdJ@!^lr=PvfSozsLJS>IoTH(UhItz9({PK1#u~;_2^wzI
z&_qLb4Lzu$d$MoS&|E{lhM0!9hWeAUb2Y4Q5lv`lDzoI|Ne%&1Gs)aCB|E91K!ecG
zPD2X~g{-+-x=ce$4MiH-XlSdUm4;#stu;I_C;PoQ*(Dl!Kal;z_!R4Bmdq-1vQv^t
zeyN59cV`ojPs-ZT8p>t0#B8y>h7KA!%MP%Tj`C6`4ZOsTkwef$cD1X9Zu~e(HbmwN
z6SLW3PYwMv^w-c!_J>7!OVCGF*jLiC6SD_s7^q>ChIRL557IDL!%z*wG~6z09-?9X
z%<L}Hf);00H6FM(`wk7mC3A#^O?@&lGL1Lg>XS2#ku;mh+1dA}NJmpwle5QYNZprB
zuzPOycnx=In4w{&h6x((FNofwVX}t1G~BI$aqK5b<|GY_UEFYHlmeAk7u~C2iiT<O
zQt3-ouJEU7=z1bSf$5T;F*Jw#SrX5dl$Q=ZnK?(|xf*zNVmpn@`Q&JLOv4Hd-?b1A
zXjnoU=vx0lPJ{+N7I;X*BN9BUVW9*(w=a@_SJlGc(ZOOG(wa=Br7S+G{-csE<DkMN
zOv~B-eF3Olub9u}m{!sbQ@I4IG(4%{W)t;HJf&f^hK)Kl>3CYh8mdc23mt1UJfq=r
z4PS6NsDBM7G@R7%EG@ZF^hFIXX?RZJ=OukXQeGOkLVH=mD;nO^ut&qI8a8Oyu3?9U
z*VqtkM#JkG>K2MkwAgxy%^H%0!IML#R~9C=O6E36dDT1-C+$`!c52wAVYh}iXd#7S
zUZJ@8M0|Cj*ik4(Zi%xjE7_~zEe-Ezcvr(d4R32Wpy42U@_OoIq4>H`?AJhAsinAW
zK+xPF4Q@+uSW<!`8uo8a5;SNjj%qkAv&Xo;S_-Dex29O6cS~`KcG6OOqG4A3?DsUh
zui><Y?4{X@TMF%D^aF{{XbA6V!1SSpvl5?^^dm_>uDE)kL&Hxw<Mp#Yqr>c*@xuD-
z;p?+kpUD1F!=H4p8ouHb=ZUX1d_(`Q;k<@l=t$R>UXc9nHC&|qaIoEj7e+6%6hF{H
zH2f^D?rSN|wiG`}`M+BVma>WjYx|Y%P8Ru1iv1z+?-EnsN>zW;p=q#mgmwI@;gSYT
zhpyv44VSqvzl&w*$k0(q#}AXstLmt%W5wuJnL4WI5P!GLE)wU?*FV0XiSuZyw;yX#
zO-FSpSwqt4S+Ow-ny}zFC8g-VgRMe3R2?Uq#?HLal+@5sJj^tCNk^+9vFz8j&ozm&
zLhGx<#SZ1R4o3&GSG6-;9iEO`bsX=X>tA8&sHvlVX<0;OC!LK^@@gG7>9|>PYU#K}
zXB017C$qd-S4Zs%e7%l365mk4nXt0#Mu{KlouqI*9rq=32pY2$9SvkQThc~48cINc
zs02BZvNN|-@E=>$<dPB8(?rK@I%2ZsW;&Ymjm9fl%$1<2jywqxk~W^$ilvyE>&Tbm
zWh+S?k2Q^R?1eg7>X@(NejP<rnvUr@W>AfKa5QSIqm7OdiLXTMZmT1uW3Z0fb(HET
z)6q*uZyjkJ<vI^?=*D@}(N0Ha_WWR8dmSBgG&`NHG_!bOhv?s%^S)mg>!_oX4uW=%
z=aP1jl8>&BQ@*>7c>}8S;ItlY*}#qN-jdl<$FEQ1wtpg*#rx>!tMm7a7^s8Uev<ar
z@l-l?`h2qw@5_6kZ%Ngh_#jqZ8YAdYB=)9alpLbt4jsdFkU3PA8pbJbqg87ZjL<Ps
z$GtkH=oqDAw2nzSUOuIbA^j_#GUIfN)p1XeU}AA{#>=vI>X;zGU6S4{=|o8>v)0eN
zM+XPRG+DMtFqJAQ&RN~eVE0)0G|69HBxdTErQ?r5$=fFspY2y=wvL5n=6$q^nbA2q
z=5lrlg56}EjtxbEfLD3x0UZzOV0@A%bu7^FkdBo)9@p_Oi|gR8O&`^<NXH{Omg@Ml
zNc7)Sv{+}Lq4Fhq@I!lM4@l;)NeN!1{4yQOWx>ZJC1-_>-{qx6ALvi$SfwNMQk4s>
za`+&6&&|<s^`cMdSWW-0V~vhixTfxHwN~euAJ4O6()`xx$e!HlS=!r)*m~O1)(n~=
zInPP{q_1P2FKqRqj+dk`FHJZfds*Vb@fx$Q$~rgbcuhxPI9Y#5`SE+p*~(@eTWGfi
z?l<tdj;%UA)A>ttY}2uwgVpiNq{I##J9WIJ^Ii!&@bA(QZJ)hI$8MQ@L((_tsalEq
zp3KQ^CH6{ANh?9&w{`5-ae}@@#{nG&<+L8waY%yYrGZghNXPoO5=V5rqvKs2M|B+2
z@nS21Dg~b`$eYwkEN&%^b6qTo9&9B@PqBOV=e;Lu_^g$1M;HCoO1!V*H0y6Am_E>P
zM&b`8HHyVqszS#{GW)TPPbwtq7Yim9nRy~`Q(x%#Qb%0_HyZd#$Jca#1}p>L==he-
z)<9(gpALwgXH`o}f7Ee7$9L4yfav#<UgTOnnqc+^uHWIU?l=)6{z=ErR3ld(J-Loc
zI(Cgsvn{6o>G-W;zJ8bB4@v)&^e;*Omh>MTOSa^($bVGkk|vkw{EYw<_s{Jtd(KPq
zwk0zSR51{eovdo0ngK=P>IS+jX_95&>M7*}HE5Bmk^~$DIqc*ZD_510ngQK_A+afG
zVX?U8XyU4o$+8ixeyCABY``}VF;M!IW*c0F!ZENgo^&Pk42&rj%wA=nrh(-na;`NH
z+nd~fOY~|3KNQ3WY8hC-Iwf6SEUuGcwI!we^#<xle1oL_t5KcIn+)7+1UD~p4Ae7F
z-@rXa@a(h!2V$VRfgT1L8i*PwGSEt1$}!MPf<}^3_!a|=4cuy=iR9!;dRxWSm;`Z2
zYaG=n-&Eo}NfQR{c(e+c&1IG#UxK880ts43T3B(lrGc#<RihYFv1FzVlvG@8ZJ>?B
zZ6!@f%Ad7gkuNjwz=@!2xdD2Ub`|_C2HIEP4ia>fw3C6(75wFo1wHR-pqu18JtTwK
zo(6gu{GokNe{V@|uaNI!ps&RJDmeWm7$E6D1A{8~gC+ROZOBT77#M0`7<D3<qbp>F
zOEAK~$O_IV12d*-EW$L#z*xy2S8;W`1Z^e;ik)EKt_uF$5==BOse*I*t}2ryzE{#I
z75u3ZOp|mv+p6Htlwg*mvkhodf+pq~m}lTVX-Kps-bM0;k>CLX4;naY;2dqzz(WRJ
zG4QH^hsil#|4D<do3YTqA_I>YSZrV!Ez`gf1ACX1Qs7YoOX(#pH+^P8a6&k+tkvk@
z$%*G;j~Q5DV5I?DjW?RsYHzW4+`uXWhZZ$?f@O;ZQ_i3Si#)hAXSIQ+4ZL75S_rh8
z8oEPs_%>mUfwcynF>t0>tm9Y=JS%bQr{d2U!PcXfi02J3`@iBKln0}%EbI{FUCc{z
z;H=?gI)n@L+w?a#7<kRVJ_BzX*l1vrfgJ{R^6IdL6xb}qwr~qDf?u0H{Zsx{16e;d
z*k)k6fy7O1h?yFeh-n>+T~t@B!Fn{<ZQ%Sr_1}>6O-c7ix>wS-B&C3TV}tz$4j4FU
z;FxUapb<Qm`~7nKkb(JI<A)6#F);gu=sWaj_h!B;ndk4#B<9uQWEyzS!23pUgLcvg
zKG)$#T*Rj&r{$}8yv;mq;6plr>l+e(U<9|HXAJz}RwwwYc9i^&418?h4+DQ1_=KL#
z!0((&zW+7wxq<Htd~e_jBe?bZ%D~sugAu%c;oD@&6fe&F#=y7oDsT5FbKbxO0|P(J
zZqPTEw|=})y-5GYaT)ko7NiV||HvU11oyDa{$k))+MX=PEYri&tC0R?1TUTlT9%03
zCE_mwe{;y^>(}OAuN(N+fNC;22QC@-&p>q(HB4MKkin~G5>-uXUY)9BBGW{bK}8cw
zL}fFG`9@I141#$wEi4gzHx^YhgBTqwa_GC<?59&%CSF*QQcO(vv3W@1Z8yfr(M=d8
zd=n89rU{q`o3Le_M<?W2CK$w<iH9YJ{MU-slnB=hLh_QcvqX3%NXcg(t}=18iCQN3
zA8<8IOk$Ys5^;@*lAoG?S0b)8aq7|3m(5GBW6xU)Cid-mGZ=Us6E~O`vP-XP;wH(t
zQPLkjNY3~=_$}e0>9P7I8n6Zn?^(z;(a^+fU=9#9kz?Ybi62ZfGI5KE<t838(b&YT
zCVHFbW1@+P+f06$k1`W66LAxTCR&=vHPO^Wa})U{@=PSm;1iu{?*;d^HCu~GJ5$Xh
z=Y|jC6eB-rqQFE86OV2W?o4@COVFsbC^FGX3bZw$Z%q}OXl>$SrJ#gkZ!O%mxv2@I
zly75#MXnS~$(qSen<zKY)kHTF!bCe0olJB#(cZ*g3rahh=sThGr&I9`5|EQ;Bw0fj
zneEwH@an5iB@Z3W?QWuniC!k&Xe}nR77xhO)5JO{(_m_{=J9x66a7rwYhsFt{w4;P
z7-r%Q69Y}GUR73bB=>d`gG|gjk~^5pHo21vlca8y@*yVp>*S#(_)*Z$%kzet7-8Zr
z6L*^!X=0R#aVEx_7;Rz<!8OsbCcdwC>rbsktwXt_B}xIaW4CACX`*dmasn;$X#D)K
zIQcaTlM`twCe$4nlTGX^$z^d4@E#K{9*-|6Ojd6r#FF$>6VpuGZ{h(H(@o5vtscpp
zM`LRvX3`Qkt!>0C6MR6?cT1{SulO7jb4}d7Bpo}Hdu2lJGg0(TQ2Bh>!++Z3-cp!+
z(8MAWkC<3s;vt&49Q#5RJRC@}Hl}lh$;Bp?m{`hrm*cwOPow{#+#5p$%VbsKHU}-T
zCr@ootuV3D#9k9`nRwj96DD3V@v@0kCZ3etTW8{$J;|p`tTFim8I-pXt4%yj#ZE~K
zY$NVzBc74WLv6(8ZN#!RVpAKj-o&#egPx)0fanV*KHZ*rUQz;bUX<0cpTw_lVeU?C
zHnGLTt0p#>c#Te@jo8SAvn%z`i8$#d8t}NX5hvr!zHVYG?a;(-6Wciawz)e^EPgAx
zUDl&F&)s2SSxGM13No|XiZ{q_Cf<~_y?T4Hpsm;=YwOxpjA$$NnRuIKZ{iaZ`#Hs2
z!X{3dIB4RKiFZuAYvQnpBb=;5xl|WtnR=t1xrmNR#U3+pTv|vlacu-IZC_Q!p`9}E
zo}9i9`Sk4dy!W}-3u7OcI4!f}Om8d3x6VDom3}I*vaL94;+&NENKR1U<`nH}?2+70
zO?+nJYZKp?*wj{hPPLo(l6`9%bf(|&c&*1v$^VKnZN;Uw;#(8vO?*dZ`*>;k@zM))
zfGI%%ic$W1y6CoorFiK_6F;%%KnnQT#4jeYfrh}ZCjQ4#fCKzy;&&7BD^dJm;!hL&
zqZI~({>#MQ!JqEpKl-TS@qg%uwx<4-l-bgSvE#?$m+7fKjMqyEUb+G*2cbGq9jFlm
zYy*S(@CWWJOW`Xrq)hoK!K(yaLIu3a&zDrd0$8mksl4L}3Q~sd|4Jz!sD}-8P6e6?
z15FmjScJ8?fCpRyTnqR>-QmS7ay1YEt^#Vxf-FMjxsqH~Qmdj)HgO$Ln?-;df$M=f
zzzyI>ECm!kl1>ayi4RZ2TbzjRe<O91<lhX`1127ici5V$50EyH*_kQ9n%6f^E>DRl
z!$$!vfS0pkjR0D86W}(0_IZn>jS(3Ct&-C6V?dl;0-8zTT%aieo1ecWPRdI15bOf{
zz_PjIk9;vBDLMJ9EhSigf#lz@JvA{WSqQWQia2n3IiNLX;k|e(1RF%LWD*=m2{O5x
zw2}2NTMCo`J%L_8nz}s|tb%SpIUr=V9R~|^l(@a5H0(}5XW*lh=ps2>@ARlk59fAe
zZKncvdZnK3QWZUbeT7L@+Z*Tui~+_1eSv-mJo9j%KQI6o4BQS3q@kw7AgX0gGE^$A
zFBOy_9s)281%@GTJ7nGg?A@N?B~m7GMgSv$QL<WQN3#-HocM{8@o~U-;2vNya3?SU
zm?Q=60`BHi0`C{b_^6o*?@}s8l!~^?qVr0Hx3=ubQgJW8r{0xfng&dfeVZy3OO;ZY
z(}5Xa{5s5H=XVBTOxsGu@ltVaXKF4m4=A+I(!zbfeBevqE8u?M0bmR8Iv;`p3xKDA
zHM9iaVer>dSOF{q7O^2YmE8It0lqF3OK7Vf#uo$G<H`bN^W;+CzazO-cBYnb-IWT0
z<-jW?xomwU@Hp_4tl<e+aFxVvSuoNk<+x}_?C@$iA~IQgE$|F$pqT;d7_0(#K{n0i
zo|Q$OlOv_@^R!-he&93q7lD_gUA-*3LFKS-l-U5h25gqCvn^_DBd`fzk@U{s;XF;f
zL7AY&wgTILBfvXAt$*8Y2i^eQ1a<&B*^MgYyMXQsN_TUWm5FZ_rF+Ox?4cz{`9r{4
zz_>E;Hn5*o$39O=f7~NU&H)Z#R*FRqO6G%Qg7uJdSn`=&S0>&Cjsj<Z4}oL!9>9CF
z3g85SZQ>-CtsLD$ImtK6f*pZY{Xv;HO_^<(AF$fxi66=Yk0tc*9Q9e?9Pk<NIadns
zG4KgZSJsgET$NY1XVNSwW^W75Z#>)ZWc3Bt1rJf%GkH=X^K0N6dNvCY3*Q3gfxoF(
z-~#X+@C&DarVd=BpXU@WDE$GrwPmt)TKp(Mm9${?CyBYy=cUDp-Kqc4`2&9fm$s+K
z{2llMXrC4oK4>IIqy?7}Fa0HroZw$d@;g%ts)hf6%k=OTs#<}g$goh^3XWKnEO4hI
zhx_C7;l-I2=mE&DW}&);EGt;%HLPHx<e*4-sH2x)Qe<%oYZi11wgtz6VZpRuSqNLf
z_Hdg#|IAAZs-2jJG}c_aJ@XIAcP)4<yQ+-ekh5~i@ak0-YFemgp}vKyE!47bgN3>l
zR;9%?7Ot~U+rqV0pev@0yHnR&AU&2Ab*#YOzMdA}rUkP%S|Dy#E^e|=sa)JpE;^Ts
zn=Onf7ynL5H{jvlLfk^Gg@zWQ)QKEUZX+Yd!YvjWTWHWWw~-tIJH|vk+$xzIGRJb8
zg_sqbExR2F&Ug=$i>4OxEaY2AN~I+%G_$~hR4I>n%_R;#n?ICWz%dpk?_X8cZF7nO
zEo9RKMHX6Fm~Y{J3&mDo^PMepu~1^6wS_ho+FIyfp{Ev4StzwoZZQ&Ou<4XZnzn*N
z8kNArRoTu0cOP=vTR7S}m%9x28Va*`M_EZH3;YhB*{&A4Sr}_!oQ3WddRQ1>VIXBJ
z^s>;`3QqMrl=haOkA-ualRS{u-<IN1T2n6i$^Q4}paw*#ib1UHNbWFJZeg&6+c}ln
zQbVLBhf2-xwI+>?bhw2P7DmfzN6Jg1<RtDa7p#h{u;3VZl^s}kD0jStJ1tDLFwMdQ
z3wKE~xYxqn7A9JlWZ@pkxuOBu0O$SP-KqD>#bgVlw38{)T7u<PE~Z<UVevaO%&{<2
z4uMnL?!&<NXVISJ4;DDgxfbSGASJ)vJGslUV)sc*@PLH}S)qkZ78Y=REj-2ET6oyP
zLJN;sSYct2g-0wbweTqC$U-$CUY(Ly!hyV=B4$_j{gzl}VY!8!b&a~m;#ZgiyXqRd
zPQ+JQc-+DhT$MXgn|GvE(f);ak~QxLJP$F!?^{w&TUcY^6)QNRthLZoh-WQ4XW<zO
z>$u9c2e+c@xhmHbO`4Tr_Ia+Xf7`xj;Ux)Ppj`<;4ioL+<txltDVhf>eAU7RS@Ubs
zY{;R^W(!-`nR>;CxzH?ZweXgOeHOM^*luCBg*Rj+J2;`zl6P{hg_tD-TW4A!n|ss3
z9$H<QX!J&kP1E4_vNj<o$?V$}4$89oEgX=BaZ>WxD@q=+P^DM$q7X+cykp^AE4ZmV
zVc{gL-NG?xrN<?u@o-vctMt!wbnNrhBlY(!oVKtdjGbY8VBri`Qy3zQ4=s#5Q|~Ja
zUt2iK;ub#Qis%sMOP|jzly%Ad*up0kKBdX6F8Yifshz0SPGruEl73;~OA9{_D37%h
zEJERLxS*<Lf6M8Upo*4x!NPZRl3^f>?=4)kkP!|Zwf(>al3o2r3qMiYd^R{H_;~wg
zj`2eMKPCOe!mkqiPtxBc<<;LM_`^b~-T(ap{4dG*o8F*8=3fh!xCO}UuP3WruHg5R
zMJmY-R1PCkf+~_$4Wn8Z)vs_a)DKBeL((is6-j&iTUC{SJ<-C@B{n3zQn?jIIE=h7
z5@Fbqe?u5`C2+!U!|=lJWww^2tS2JDRbkYW;OYwgKh1(KrLPI&+Ayw@%-WLH3FG<-
znHkj@{6Bo7WHyxaCP{CWv|bqXC17n0B*>O@L_5J-6f$!pZ6xU}VKkQD)-d7{P@qW|
zw@Dn6bfQ#auEb3xeYAe?#eOr1TS?kn(tJsik`_qXLQ)DBhS5^uq6*Hq`5DC(xFn3$
z6}XKAZNo@OP+Gw+3nN{D@BK8dT^Q}dxHpU`VRQ(iV;FabF)@rzVRR0oUl{$v=n_WP
zFnWd2JB-=wM7J=yhtVU9w!PASF3w|Ui{6KmJ;T`AE5YAaGJr#$FrH{9`i8+DnE&-|
zl0Q&gu`jph^r8V_3=Cs@7<Yy-D2%~jj0t0G7$^UW-5w5pggZoHhA$W@0r|ruxFd|=
z5{#(ej|^i}1s)v+e;G~TabYwoO7OR_8`}x~Ft*lb`4hst1&-Yn#`?8MwP&L3(DadZ
zf_M^JUy-;cjIY{>Ms2f4-Jd}^nRVVD{EPS0Fs6mEiT&rTSr{|Ic$^~&qt^5WGsAc|
zjD=y$qADnMAvz}<JXD+?##{-A=Y?@!1rB%4xL@K2Bz;iQ1(H4_DdjJ<6N|!lL}nRx
zPLlzw7KgDUjHO{b8pf^ZAfOi0vM`oQF;>g$V-l~Bbfu)Miu_d)uMXqsFrMV{xh>-<
z$!XnOzf#W{DkO|&C39^U&q%ONQVOv0=fZeCj8`S+1vzl?Ukc+z$*KK=#_Y=#{8uEi
z?x_YFDr$I5f{l{q7B-|BH%n!1k@R(%iUj0ulVE!oe7eZ&t}u3oaUqQF!gwQ$H^Vp<
z#_=%rgt0e_qg>SUGu{g0rdApI!#EHI|Mh#Hq;GR|7iN=B&cQGahw=6K`iCT4Sd>A0
zB#d{$csGofTW0^ZGUK_z?Dtz|67$6kf6se@wiL!^VSFCODb6(m%+ldY@Lm}2OF-tW
zBQnp>`ExCdi+&u&q~)=*VVsj-!}<EmGJV8}8x>&EPr~?AmL0|4W%K=S7-z4_{U(fW
zCHRu&C&AZr6mHaRFL?EQ7(<MlE0m^4{CybwUB<;QexOHMAKhr@{ustjoK_p2ji1B#
zC5*~8GHv`C#{a^&6vlsH{1(RVVf+=w-(fUanfV8?6aACS=D9r|Dk8llKlh(7wm%*H
zH;g~h+UW&F6kzrWxEw}?9Tedu7O!Lnk_6;bu~F3y>I_R}H5)Z-WZ7Va)oomtpGz4g
z#fDa{u@rGgN~+{YK&EcPsKBNTRA5Vjoc6-D;n+dPD4ch7b#~IX5wVeNqoIwfY}6#~
zU*5pR)i!F`xRy=ZxW-0tdtuBeyQ5ML0qH}LSZy2iZT^j5fUmbv#|8n@4L0gl;2Uk+
zRDo}npdQuRzldVzi-UsZ)v<!^<xv|sHX7Tw)kY(mH{F@6_7)pGSC{o^FBWc#k1vQ)
zxQUIJjkt~5WL4YF<&rt^kt(@1hzE2lZ)$_p=GjQtXeKeUEhK1eBfo-^l%PQNp8|z8
zTG}YG(aJ`uLZ(=PHa1EsIIU%)lxJ!yndFpKTrHDeJu-!jb{tM28Wp0wjSe<GsgF<V
zqoa*ZHtws9`L)s6=ATVqV@+(TiLN%f(cU8XC4%lYde~^-A=^Vw8@*V>MQ0biZS=9x
z*FirAeQor!@s*9QZS=P>z{Zo*n2mup2HBWyV}^~vHg2~u*2Xv+Lu?GSF~Y`38^btX
zHilEujWRmWm#?K5z>0B87}25~-FxMDy}3oBY>c)shLZbo?`ki`Bx7xUP5infZ@i5=
zZA`Lpj~zsXVz`nCHtw=<H~VA6CQ>==#Wi=9Gji0^>yupjlWp8<V~UNbHlA%S7*K_Q
zFBr38;KAfH)^i{^bY*<QwAjw}Vy2B*HWu1gWMj6CIW``!@t}>lHs;xwZ{vO&?`=r2
zd-u^A&DbA360?s6O`L2mN-oD331k6VxACwIeu>A392eS)y!;@PN{tRdV4_ECEVl8O
zjTJVQ*jQ>~nT_Q(9;IP-5V?=!@zrFENAM1U5gvwh;M-C`y3)quHlDDtiltslakph!
z)<N_g7sU8_rGwbtL9Dj%w2hrMcG*}%wb*#o#s(YD*jQ)dc^fa-Sa0Lh@9Af4JV(Pg
zn*6APIL3b->>!Me;z!2+vGJ0Pmu<XagV7!s>gw{uvcq+ZduJ3eIuqmA)afW*qp8?<
zodPyC+1PBOX~!T^(-s?4Lg$%9)X6g&Qcml{HZF56;R}gd7Nr^SgCR;7%4P@0j@Z5H
zlDloZVdIRA4{f|@V~>r4HV)a?YvU~&`)wSsv5yvYEcrIgzD44hu_YZlib^uB1&2JW
zqo4*D`Dao_{IHF8Y`kmZh>eab<7D#EQ9Fpra@xiR^e{aV$7~#zJq$Ji2~JWK61*qr
z`xRF=$>YtV(}ID-ho#TjIA`Mv8(-S^$i~MuKC|&T*QOEs#Kxx*5Hr%tw2oqNM=|!3
zd`7Tg4?8T*i(ZaB*HOILQ8XBt{>H|)Hg0rqlY{d%F3_Vo$a3(Vjqh#zNk44kBKtrO
zZ{vS9ezfruS0XL8)MWe_8V2c^j^Y<P2m$wJN5Mg%llaZX?_3M77tw4ez%W67aLslS
zH1EG{{9_}-K_v(O+PGxnvW*s<MDm+_+Tnj(-FZROuWhr6dUO(u$5q)urh{q@synFS
zpsIsCYm;L-1vYk9uQUUmaACex5=4|bRGeTiAH_k)f$t#VKy{!w2s^MH=nf1gct2q|
zfk~JSSc-vSe%52BS|(;EV=P-zEzV1h6GX}Lq?jx5+)jcVp7a>U=_&^`9n^Mky@RVA
z)N*jGgX<h@nOby>EV8nbU{6>NPoAU<#6eoe;lsMv4G!u$pw-dXXz-gliP!6we$YwW
z?4X{5A_uJ;)OXOpL9T<QlyuP0!L1IOIEXsPad3-+#ts^BTpgl24<vu+B)<JU&4?(K
zI}7cTe6My+a13_vTS+43AWkK84kDIBI}66WDe5dZgsBCIJO|AjG<T42z?dXV3wovV
z9V8tTI%w&jKn|pZ6GYVM*;%mvj9E9nvtZDe`#TE;F{93l9h5le;Gm;})(+Y@NINKZ
z(AGi9L8*f>)?YRL`MzAnMQL4-U|gp5i}Dza>iV7u;h>#^_73PXd0J+i!}3!p<C!G0
zwbv&*Iq2-5mlFh;>EfWPgYFJ`IN*9`<in>ri*D3XuLJ>y*3$u<Bv%&kAKlZv9h@AT
zUb{cphyAG>C+P2B0GSR>IT+|*kb@NtRyr8$;C2U79ZYjDgq1iL$GLVe%)uQFMmZSm
zV7P-34o1>udL?QZF-9WV)mfZbmpt8BaDk6;FqR!VlN#6}XX_(*8NCx1I|~L+yVJo0
z2NNAka`-i7;w~z)len9s$c%G2RP7?}Je<78!DNoe!4wBG2c&Ct5wR|!Z5KhAdee(I
zkbzyqbO$pWJnUd0WgN_MaKD2G9L#nw$H80&^EhRv<CD7xx|c`0i2IztrOcPML6fFJ
zxOZ@7yPS?c=-?p-{I-OOTHt^kAYhhuxX8gH4wgE2)WKpoBVY7NEOCN+BJOSs8p#Mk
zb=L+Fu9i7i?%*-5qx{6u;pvyU2+k%0nmz8|2?skJ>~gTm!ILcO;8h1tIauxB83*gQ
zBp=Cp+QAwJYiTem<NLY@2Hb0XB>7PnvG720y@O{RyyW0z8h>W|Ica_`I(S}Y$$3Ez
zilAAgIM?a8=|$}PjNS=GaN6MDH3zRd*y>;-$LL@)7bCTl3^r?u@!pWW<*r#p^oQIm
zwmI0&rF32H4t6*m?0t*}wXkoL+rjs<igr7A!@&Uu2OYdgSL0xxgSQ>*b-)N_^h<Ba
zzA=IjZ|>+z*`@vTB#VOm@%Ju*Q+de2VF&LzIO^~VnH;XoBM#o7NBuOP!4<g@)vkif
zV-AkX)wjopUDs8daPaph`AhP1N#AquK3A@bt6ZFR@PUK>99(vAhAYCsHx9maaMr;&
zx)cYWJNSscqO17W!6#f+to-ldPwD!41_rR_og|gO_4|c`FIi7f;wuM?8Aauj|7@Ar
zZhh(3H2$vQU@~^z!3CO-gFl@hoa1*6{zp$jzce!aJ#DX2{Gy~kNcy9LpClmvX9vGX
z{HvsNO=SMg&MeJioYIwD1w$Q9?<)S{7#;jWw@){CFvY#8?vONNUY(y>^!cGA@8vIX
z5|fEnyNV1Km0aj93>TGMWV*<5p}45xqN<DPE@LFdtC0@PInq^p-8BfrL|4=P)l?0a
zU*yIJLad>i-~crjs*8#L#hh+}wCgwdjKXTVfD6xs@4|BVJ61SuV0g;0<O(fDe`32>
zyD`Q6{prPdu8Xo^>1a2>zH#Et@mIRtL`@f0yJ+en&qXa4*RZ(D{|>{oF0ONNlZ%^O
z)OK;biyK_jb-^8ko8aopu{thD-?$Xx*^+_Fx_1*dx<M?>(cMHn7xi5{(@ii?+cnK{
z@9!2w_X<rYZ|EZGqKV5pHRQNx<l+_=jj4?`8Utt1uRh7(kS^ZbUyTakS#(!7ajKh$
zx%hmg5qFX6;_hdXM_UB3Sl16t|JY41?rXwDGZ!T;TDxfOBHu-ki&id@E()mj8r2J_
z_U^%9rUeJGF3Cx`s=H{?U9^;HZ{1yV=$$ThF}qF<wbZY>ps#M@qOFUxi*gq!4vKoC
z=DQ0n9L~<zo(Xyq0xFO%*W0<lF5JNdx4$0m1n#K48-z@}*fZVH#qEpo7><v$i;J!<
zHn@1rMK>4S*`kX%E_%4=>0*?N(Jp%N@bB`tj=?VaxajL*po=@MFYf1JL3i<XcVYEU
z>uZz!T@0XlIf?^GQtIj~2gu_8#qMx1+{F+VL){>}*f1Brbr*Fi#TS|}Zm&Guv8y9o
zjCAqz^df&#ihh-+sWC3bx|r<ZUKitBjOSooOmcB2O|FNi(?i_lVuBlZU8dVdrQ<!s
z-88x034(jvV7<313Qn_cjxC`*OmQ*Q#dH@lsJ$LyU=J~k!#R?C|EqMrK554No9Xgb
z{PC&9iCLVH>T&+)hIFordF-=`$6eg#V!n$-E*^1lKb1Bu_JE5AC1C%#mEYS#EO7CV
zi-)E1>G!H#m$Ojf+a?D$3yWPWak0$Ba)KU#Z(J(Z1((L75-^19V=lM}zSKjkaQP>~
zvB^vG9$jC$zlV6j#VV@T#X1*Hx_FAZa<Rt67d-^cd$nwZO<bKe*K+oUq=yYoGt_X0
zWa7UbV!exJUA*ApMHkOeMVnI3b1qiKU+$jfC>ULN_a~{BT)gb!6&gup9w9`vmWhvt
zrM0o;O?!%0-5_ou!A5G^#YMK|VzY}aF5Y!<)Wz#Awz}Bs;w=~3Tx@r-o1J&D!^KWo
z)Y0TFH;9#2vtPPVVS-DQYqRpNi8oy^I_n-68Pkfc95{JCWL(63F5Y%=h}xb|-l3=1
z&-L<5@&MiSqVyd-#X&c4vkcZs=3y5{xX@-6y(7(FMNcuaXK<Q2=HfUt<Kj#DD;FnS
zeB|O|7pGjj=i);bXI;F{Zub;Bs>DCwE+8?p$9jr0>~@tn(}kYma!+wpFL93Z6%&jP
zeD9*XPgu#p<Y!#_5`4-<kv7R;th`3OM4jGgI)SfTd@b$#JWaQ6nhT9Vo4?^?^-6y$
zhs^8+7vH(~o@yBu1c>Ijf;X_Odx;-i{6x>}!SL|2%g<18nfmeYtBe29q+R^Owd3M<
zcJj~YpDzAj=daD-_R8Bj-qmt8>4E<uzej>$glS+ydWnBsT%vn7V<%rp{l_KHOQfe3
z@jz9{LuC)uJXH6P>ETH2oGKm|%y#OUBtv9Zm3Ub%!8(UB+OY@4L&!sx7fdCOXR{fe
z^v-hC3l>6)o(atZvpfrtnqKg6PfZV3d$2r&J@^#sC2S9l2QCxW3*vI~B-Y}cByTZ1
z52Osn`&DtEhlq!(ydaP)0}|dkt*DlVYdqBUaJ`3XJzVGE%U)vYk~}VOuHSch1!wO%
z9&Ye(qlcS3)b&7H<=E@?7Ib%)dWoC8zzuSh)$@W=V)NbsuI~j~QkUMMp@*o4r+uvP
zk>jC}hb<mn_i&4c#vbnWFww)U9{>6fWggNVZu1cHkn~VMRd~qt(9A<~HtK<qhuOD0
z59@dqI?Q;cK|D-G9ekjFI-g=|lcReJIx7PDy%rt{J+$&r>;)%S#!IB>w)9ZMY`Z8E
z16r0)Q6AcQNO@3C$LTzo+IWE%{jWz_ACfNhf{5Q-7u=_~HJ5u39{PCb>!F>8_8z)%
z$R0X)=*aGQ=<H!`Z}CKLv9Y%}(pz-lyky3^QoTh9#>V`tx1d%z1wB0QK;F|sFAsn9
z7U4dE&Lq2!SW%Sd?FF~z+z0!4{8vp3^)QTm?jr_xm^3s!*uy{%gFN)>BgmZFN37~2
zR=%3L-NO(XTgzapBE7@Ia1VFU>iUQg9yaz7BfTJ|@m(8Jyb~YgVf*4drqLe8RN%1^
zjFWV{hdV3y6Fgk%m!|MrpQiYbWRiz_sCEyJd6-ON^KhSs`5vZtnCfAMhncjWK4O}O
z=~B;}4*LJQF2|O%)@FH_?O_g8<nbqIvG)oSd>SyXj&Zq<;C@uxBR!9k)gygXUva;O
z2WYe&9`W#?hXo!U_OOt4(pQxB6%Wx)D#w|)?P}lTf3_(#?UNK=mn`<M#KWT=zaB^b
zzG5jg)>rUgyfHsG`Y!1!7*Ctw&7bWnR&a_vtoQJ&hsQlULHqQu#=|NPPtpR7*lG_?
z(KZSad>q7w5A*=UjDftjuUPBh885iG`@OGN=ixx}1cT^))Hk>zAb!rn^PF_9Ru3<D
zc+ta49$x0EIhbNRa6SMr`-xY)z`eZ61;s$NHR9ot1W(aitqi!jkqe|SvDw2WcIj}E
zcQM@P=>TaYTRm*!n(~qDV>@f`@VkdUJnZza%flIV$-{0BZ+Lje!@C~d^stBB^Kj6^
zUJq}1*iZQ$2`)(<arb$6+e7_+f^LB)?ddbhc&vJRO_H}8hddmnN%spLKsE0tIDJPr
z>1OPQgUO>Fj(Irc;XMz>J)H2sXIUqysHTA@=dodEKS2%`*ZcG;h&?^4=mQU@J^Z*X
z$;Xe37|hVM3`>62!#NM%dN}XlBM%>Y_}s%6oNFUC<x=bu51)GYjC$*y=1S*-F9P0F
ze(B*Wsk(1yZ~esA9vGgK`dQvjFze|to;ELd{5MJdSO7nH_?|1pjb5Z3(yf^>uDA{T
zf}3t82BH1g!!I8G=LG?HpSu+M)dL@<y*MO@aQ<R;X^m0lZ(Kh81Rd$0T%;Z}AG(jf
zJ^bULijS&3{^io(Q`{Db%0B+1Dm-NPsN@HpgcHi64r7_}c==Vo;0}UM52`ImXZj$$
z)K66NQQZ$br0S!Fk1RiU6BqKq|0z&>TzS;MyG4dFrYqnWCk#wq)n6DsOdnVKsO1Nr
zby_}LAD)k}ANVx>eFM$X_Tl)rwZBOB7lUUPagAKZ2TDG!@`F2$h>wB&#gzVnk#B2C
z4xi+Ze~pi8ebn`FqmS!+)b`OcQoW9kCH)0A(CgW;zEK_tNV$pJ;A7P{`E*$~`MB9f
zJwMR%^ZkR!%%dih^VnbCM|^hC$&D%ANj3BlrGSsY^#48@`Do>%*vBnC8vAJGqd9x)
zqlu4PA5DGS<|F1~Z+{W@gNII>6dq%^334uI3H^Uf<oQVWIM^?Jx@YiT0B8FP3gr7p
z`Y80#(#MH!^66#^eEi%$IIgsyx{MeBS8)-wJwWi;i=7!~%_Tls`{?4MtB*E5+WHVa
z+WAQNDD_e1Bkcz^$tNc-tuMWPfXEvlhMY=OtsF1+k>5YPKQrE*lQlqe^wG%=qVad&
z0J(mz%Ne>Z*+qt+?<|!}v+w4kyN|v;`uXTV_4?@Lqqh%6%%;bqFrPFIA0Xxo5PhiL
z0fOnZ0iwT;0e-L$26D&)M4=x0Y=GdCNe1NKJve>4k0Cy0_?YQqsE=Vj#{0O_#~nU~
z`xxV6td9{sM*0}#W3-QROY?ZQzM^WJN5R3B<JFhu@j$}Zyxi}`NfV+@{vIIsZhC@`
zyL{Z^W3rFCeeiAq1H~jC6Q!ZjR{8jXYm+BB9(3>ZF_pvg`G>ZFCGaf7dFK@H{%$%g
zWT0q1P>{~@G26#t8kLVZKIT%lJ{I_x=i@#f_xpH&${Z->`$24Tu0-mbPto~=lMiZW
zqI5D3`FPmJB93&RSm+0bF5Z;UCK=Y7uJsWbj}hBHr|6&6WlMcL>SLvk$9*jGvE0XF
zK2}fzi}JR%Nbm&Ce)4hL+<{`nK*5{kCuj);iB&$Hq@IVT`Q(BBC-Rh!)v^`7_~w&9
z`e$0vS|87F4MtEaf^~Ad>wP>c!N!5&IUmpaxZvYEA20ZL(Z{<!j{10sljvi&k2ie0
z;^S2xulv~QV}p;^d~BleaMYJ#+z~eVI6hD?H9wl%!kYU=`52k|F9Gj8x6%3g*y&@J
zj~%Q(o4?bE@r?|Z0H2ld&kh(MnwtxEy*GXA;aGee;%f5omXG~D4#-*F=LcU7yv_Ca
zb}nxT`P_yYV?7M-Og%GLbcaD{W)J%~LVwjV!RN8ezQeKu16Ov8J@oOhk59PPSe1{{
zK0e^I8kwhjyho+=(WoePhDv^)i>PwE>L78($A>=7ati!l8>%xXII8_SBK;8;{vc6*
zTsdQ>KfEbL{3#c{kFR`u?en)Gd7u0ElIwa>*^S@if5B1z86_Z}Yrowf@r{r3Tv;`$
zbLzkK!D(XCyd|H%I{m$mi#{?Vs1m^sK7OS4_VJI8pXeEU{ErIvgU=h-jbPM1e)WTw
zR@~|M4EA?+(#M}%J9>;Qs_T;0(`7sa@;?Ip;^bz;c_#nY$0Z+^ePl%NA5G$LlFH|w
z3s9bGs!{}Z3=)+i!QYPXr5I1D++jJ1RU@btK{&!s;7~n+8WCub;7%<o0)_o-7gZw&
zMKF6%u(G&2GYa>LLE>Wd_-liN9)S^o8DaQ~;QvJUH9w>7^F=^(Xxd^u9ijwI1a1V8
z2(F62iv$78{RsH+2A$YjGm7}Y>hQkYaFuw?NU-~`iE;S}X0M6h+6ZPuFf)SdBB&if
z#|Sz_aD4=IB4`#t^9XK;pl$>WBZx+DV+1!va5Fm)307;rmI>;-2cK-S+6b~)ylR|>
z3ZB*u4hqg}Zw*OP&p8n^iXaw2Jc3&yXdFS42yTmje|5oA)~ykIHb^l2Hb@wQgMb?^
zFUjK@%-jgpA4oQhAdhX8Bp#Vtbo6lYroq8G%|rxQ<IDMoBR_&<1Z^WoMNkkyiwKG$
zXeAX}7(r&gbjwI^Cv|n-^zL5i=7U9X1SJs+Ff!Xj(0Q;JJvjJ}q}Ecg^eQg@|Dum5
zji4-o@(2X0HDc)qN*~Faz#WkPhEpR>@6j%T_K{!>^6LD-fph2(0gZ&=**izjC4ynJ
zfe5-r&@F;K5%lHz-w1j{&?|!85v(07dUCRkB%i1p=OZt^a^((1KgP$xG{}At^p9Y0
z1h=!F5e$rgo5&zZDYk8J@Cb-o^QpnX1F<3O$v`obBi)o5xjxCeFy0glk6=UucSbNF
zf{_u7ilFD*qVW-oj$jPOV#db(AD*rQI*RK3MtTv*MFe(tc4l^W+LB3DMUo{6gc1@`
zNQPbn6{PpxJE$N6N)-gL0n&RFqzlqfdItdo6$>H=ivK&0U;gL3bI*O>>)-p{H*aTV
z-*`~8Rti6&(U;az%>9}M?VtBNd1HrP>X~&iXOIVjJs9S}a1VxX2z<?~Ro+k!E*^HD
ziSW+Y8_AIo9CDkKksgfVw7!{sx1;-Xc(lj85R744ye-+u33PIJb8I}Vn#;k1tscDP
z!P_2u?7=4<OrVu|Fx`V09=zkhBoALRz<VCN>%nA?ySJR;!S}uLc&{d@lfzHC@UhpH
zGVZg0_t|Kj#AzPz6Cpf6o<C;!3e!vvW_j?T2lG6b?ZF2g%=LiZJ(<IS#3tVBkjD)b
zZxPTK_^6KSlsA9od+?D53pm}Koc$g0xajzhu2Uz6HvFjvpLwv-gH;}U&MEU?i3dwL
zr$^Hk(f`w6PNfX*<jm;ge8Fz?&gZUgYbR%!hp&sI9Pi{Tr~RDF;q8<a9(P;Fc_FU$
zV2uYGJlN=QA0e&vV4Vl+1rHQT;(mkolevM6cF5c0!Df%UZCe-2__34opsU;YbM5oK
z^kAC@r#v|A!FCV6^5CEchdkKf!A=kMda%!fT^{TfK4Fi?eE@W>fBx8f_vSD!rhJJ1
zwFmn>_=XEP&GqfP930?q$|W-JDL*}fyW{fUhzBP;_*SUys0YV9IL`TM?LHs;uam={
zC!FQVo!#G|-*E_qlK4aKB=dL6vlpe+3PsL%aF%oD!3_`2d2rr?OCDVI-~tDAC5M$<
z^tc;K`bmECsNMABD;`|+fZOKl9#CmJzDaX><z4fDTTMQ*;Jnja-}K-XOHtb%{NMqv
zdZmgc{p7)q9{14zf4|(OjkQU+<8i<BK*ApK9e}%ZH3!mu_24(w&o70|OlIf#W0_l4
zUhM9%2^RO_4=?U>?&vqXXy?TP4<33@$BVjN{O!RbuA_5dzD)SogMYXI@Iv<DUpjve
z%6d`Gi~l@`@uHX)#l3jOi|&fe|MnK~qL3Gby?i!p&#7b+UuqXA>czZB5)Z5-mhhsa
z7tea#e~u6A8(+$cA7$GqZ<qEWt+R7lv72{xKQ~{-%h%D}PuRzL-9K?v^rDg%eLFkl
zy?D-x3WD>4@B5eJJ@3V@UE>#ZcG&tmot?^Fe8qY?JCYY3FT7st8kW9hXbe+*UcA;W
zq34T9OZvu_{ywUBp?Z<vMZ}AM7eOzocoFACuZ_`=7n&Ek7cUv{W=i^@ymZ40%ZsoV
zWm3{jFLGZ^t?@Xy{;GN;)0?LM(b=)R?#Tw*_9n#(^1{W~mQB(beZh+ty{IXweaVZe
zUL<>w;>F8eRP!RyizF(rixcSLFn`r94l9g$@m;5!>Rzyk>@Loky-Ck3&tEz|Bb5>_
zo;J!ZG5^xW>1kfn5|xi=n$Dir_JT=wva{2@{Em5iV=tO`QP1oC$DAR<i%ix)ja5qE
zpUU?PZIH!@@N(mnK%T>Kc|p=ZAW5De`J4+u8WzYKd9h$)b!KSl#o(n0Exc&yMKdot
zb#VrFahiKEwTn|{dIHbHYvpy1^=spG&&_zni`IgWcfFADDyKuFzAo@|)f6}X>9TKl
z(cX(qUTpTFgBKmW2yIRJf|YyG*^9Dws!aB}uW5DhVxSj;yy)u1$6cImv_LO<w#whq
z#p&V2(Jl@{PeFPK>@Bd5z`kDe6QsXD<{Ti1r$@?QFNSzAoZ6#3coK(t!S}U>dEFPW
zp7AAK@8Z6`HPVX@+ZO(+al+ePjPhb-+rp#07~{oQ+Fs)XhBpNnCvd#LKR+w;mLQ8o
zLFSp@#Y7=_N8luZ?+RpQW|%@Xdhs4R;Kh6|KJsFk7srz$v%Hw?#dN`Ecrnw<&v81G
zGd#Z`?E^37uzMnPt`|yIC%LQB_s6{W_L=0&GmqmMlGn7Wvw+KROzfv#d`1O&@rfwX
zx2v;fa2~ULE}{#)SS0FaD-=%d>MRz7Jm+@a5-*l|v9@*ma&gSaGB1{UG4yT{!wNxG
zda<fNvf7I^g0B_0u0XzCkPQMidNEl}VDT+pZ1uVaC2`q)>BTl$wHJrI*iQY>2))?r
zbx#u5;l)m|{K*IBChhWKNmpl8R?==Sc64>#Xqvari?5lJ7VgD<8h^c{^IaW!p3O(I
znE#*`zjbx4m$m6Y7~bd;8*P+w#EWma0BH|iFnWyR^&%@=yhoqN39jWv3D0(O$WMB4
zip7P*=;oXj<c=3-yf`cPIWI1GaoLOWB6>mKMS-j&;uI!c@#0p2<f<3f3ix$Fz884I
zi<^Sf>gKQr!w(|*BW+TUvoVPj{v`O%0)G*BS0Iyq75yh+&i~3M-s2kd;uRlS`*7cj
zzvzg3Nc6eKj69$_YEdQZ!$V#Iym-Wg>4o9L`iE8iq4W2mv=7hv+}GNlcwH>+!+(Or
z2;nmVDK8{QVWJ>K3*^OoShUeS&%A^WC4E@?#64u5m6!6NR5!aut++Bil=b0qAWrh}
z69aA&j@NxrKUQ%5m6yD{56}5fp`gynK0GgYMS+zBj*WBQnP>2bs8^s*pf<0tUl69s
zJ}82#0s{hr0z(3sM-xQ%q0zo<MosGKl{CwT8%5)KB5p;Ga#ehY^TGBZ-iH@`c*%#~
z?<XX%|8g|q<9Wix8Ra{=FYw*So@FUybkdO+VpShr_Mv4rhk?-~AEG|AqFQ+Dj}OT{
z)b^o{4=Fy>ot|FHhmX2Bz4OyjeW>9>O&<n#bJBd+{7D0n@=J1OCFkrC8S46w?n4tF
zn)*=BhYTOGeaP`4(}(&#{6Q=FG&zfXu9z@kN!r<NPLZ@+@?0N|y`Sv((9nklKIHju
z^OIys@`aqFLU$+9-O2ehxseZFp2=&>IzLTjRm5gKG=4j$LwBcz56xM;yK}m5tu^l@
zxAcKRhT+|v>D?V(AKUowst+IdFvo}2e0bf5u|ACRp{)<?eCX~&4<Fv3CdVao@S&q1
z?R{9;q5)k&ClT!?u(QA}KCJHUFm&}{z@r2b7G&n0KJ=o*hk-uy_MwjteK|Fa5)O5D
zR}dF9@p^ZspAY?o{E?6kq9OHg2Kz9Clh`*B>ER6ZVVDnNeE4uhLS7GNxDO*l{*Pz7
z(NB6uMvCYtfum`+M`Bnr<;*|chc|tg>T`DmTvKoP@U9P&xn5dSdE1BF`Bf(PU@ojO
z(T8`0aFW0!)pD4j&ftXkZ4#&WP+ZE@PG++Bd!imz^}Zm}e3&lCi~{*gA7&Ns**^UF
zjC<G-&ybw!!^b}N68xbL^L*&s!<p|xd7e1YI{IDdS|9naz{fM~Yi(~-hWLpOpZeUF
z%s=zta~~FRF;<L>@8K+>Sr)Y$@FgXYx|j_K35831SSt83fy)K15V+EZRf4P*xW<QH
zj+K3Jr+aKNk*%zwsZ>mu-^1DH!zP-9jJYy4`>=)P?MIp)TWM)@J`y%a*yh7_;iFbc
z_{xVJTyYZOCG7NJ7ggs&jD+1j?D65c58wN+*N1%^nhz&^_}Yj4J{<Aks1FC|d0NLG
z^x=>X8+$n4(Dw49L$4(s>EWz@E8{SgGc)_@wZtJ=*)6_LJm$l3A5O4_gv3TS62E2T
z*Aq8=pE&XRMC<#+Ro4?wvFV)j3+$K=r+ql%!&x8B`EcHc_LmYLT}>pGx}10|F432p
z-r{oNB^rqjSAF>8x8y6dtGmgy8m8y8i!YL#{(7}Yv-Qzy^fPJ#$qg<*AO7;;fe*KQ
z_`!!?efZ6XAAPt@P5N+`-eY{)9Up%3;b$KzH;$${(I0y_PkJ~U!ms&J^mP7f6kT*Y
zzhkrXxSr1MKHQ^W&;zil{OIo2-25*!j^6iy<YvQYdQYcE>-dL0{O!X(KK$#$BOf9k
zmOb}z*~g-*qiSTcZ*{Z;;+#E6<Lt;2cC1c1E$tZzg(S!l6bXeT6p;W4<s}rAP)tH;
z3C~J2W|WXnO2UBn#2xwRRC`GYy>p}N<fNSFv|rMw*fJ8zN+|bKo|Df0RLhG}!?6<b
zcjv^fsK=RlPC^9<l_h?}98)eQJ};r7ge8{~*S625wizl(Xxuvf)t-)5!uH&#Pl6=j
zz#n$eyY@3yqMyCGYxlpJIHadD#!gfv1SG^s=zKjfC?O=llF+O{RFiPHYN9T|kns64
zDQQNcDWO4LbX8C1lLpZlJ)QTA#IS@aBJ<k~qWgL}S9&^Zm-Qq_h)C!rp}T|^B)ljg
zLqev6mn2k`P=jO9Q(l%(O+u>V`UmS?Y@+1aSc-@y35*J?E+JVEW}9$2c8;BRxnBC%
zd$Ekxl#nK&mW0|8(k0ZBP)7pQSXaVxy_`oq9rlW3bA#xeob-l!vq_j*UqY6IHWFTy
zkS&47WHjXvB;;~*5*!H)C43T2%ws1dsQJ;K@}jq@Cid<SPhle}RsyZM2?y27c`Cem
zHIdnJdO6J{w2;tB!YdM5N}$c(znsW<;T+NUcV2d<X7;7T)?%`(2HCGkcwIsV2^}TZ
zAlpjdbiW~?ognj?rPDau3ywxnCUxQ*N$4u!yZmUUUJf&Kp_%pMhr*)FFr=5O{2mf|
zO8Afp=dU4Jk%TuTyd|NJguW7nOBf-cpM?Gr21yu9Q{;4Xi2v?V;y?-S^>W%)b9-3-
zQsNK^LnVZ-Bo33n&hH4h)<wc0Oxuz_Qo<++V<n7}Fj~U9f7oLrEPEl5=0Se`g+y8o
z<<vGM<C)aU+11N=TfzhhQ`wM&i4xwCFj+KF<8tC8RwChkz4VcnTy=f0IiEI9GDQNL
zW)I(IZ4zcmm?dGlu%8(cZe^zTS(N=yiKjWuJdrh9NIsA-M?&?~1PbShoFq^4^s1gd
zPr`f&A4yn1qvAwJ_?Xiz;WHY!gil3tF%?rdp`6^OxKP3(35zA1@8xh#Is3))qtRxm
zw1=e<e(&Whm#{)8e3^(+dsO~`_StuZCRa&VE#btE?#Y&GBzKd!R^U2;kq_JxL^n#<
zL>rLsn}p30wy-S;7bI+z@TG)rBpj5mbXMFpE@wJ_2^+t+gGuo_==`~AB<z>4i_V{m
z_no+Xw9j#IdnD`?QSveC;(p&3$D{-AyGY3ak>_wq7Wsq$F^6a&@5ddJaGXnC!V%iW
zuDGKTUhWrDvTqDIvz?Iet%NfY&Wf_%NjNFt6m6h&CR3Nb63Lwx*ZkeM)0~~pT|(iP
zFU9Z_yK`Kdv*KdM$6b_gNx}^YHziz_a7Ds($^EO~rD<_j=@olB_g{}hCdFN&>zEWL
z*NJD+_acL5U<~;!33nv?B;f}k{83<uR*~B*dnuu0^{mFF5>uDP{Vd_nqjA5mpSkgO
z+4PjS<x&>$cL{&clKqhUxF@;C%>G9&{a+1|KSlJuz`rCs5agjirv5F+BMFZSB>zbG
zSMVnVl0|RC#Q5=yABFrV>~||K<wp@gN(d|}u$Ujw*$s;O(SCd)N#Mhrl79U4aSlVE
zw^Q1WXGJ!qvW7B(m-VBZAF+Z%U`0R53&K3l`B6de=L;n4Nu>f_*$<E4-U5mIV==!U
zvLCjPD1NAdSbhZj2>PM<p$kb;Zztr(j$dmql<c2r__5;WsObm4WR%z2>9{ASeQ#%b
zzs#^7Rs7g}(vI_E;OZ#Plw&ygYmIn668wnx@q!;!{dn1r7yTH~+j&V;&cp85`Eh@`
zSj~?_Ka%};p9b))&69}=pR!4!e)j;q>H=Nzot+}erm~?m(Ha65^>)Z>`BB@COMYDT
zqmCbS{W#>uVL#ISsK;vknC3@@ADMpi@}svO_5H~5yZ=Rf!;fq~as+?Hj{!~NbNy%}
zqD*bzM_vKX_rodR4F#FUe*qUrnh4TVU^9Wu{b*5;+ES2KemuX>{WoZ9Kic?lenieM
zTjCgfRiwTq@O6Q0{b(l$Q`ri!y@+-Y*wK$pf^_zyiyvJJa`y0}o8a9Aek}g?%CbHE
zc*^_u(bta&BDJ3%{rwo}$0!jUz^M@=cqw6^AA<xRERZz}5oD;qVSWtvBWb^T`rlLB
z(cAqat#@wRXpvzIr*EP=uCacM6O!=)-xNssTYkJP_``Y0j7}_&zvIWG0{*TalMDD1
zL8kigo*++kINgsKetaz?GyRz5#}Yr5`ceF0+-xEISl|Z&=lC&K5H|OrAoB#y_v0f$
z76?2e2Esg_i0G$&d?v`}0v8Ho>LNiF3;aUhFQVWw!8g)G1z90*rNC7JR|{MtkoBw;
zWSzkEerza^udkQO)J=YD_G1h8|9*VQ^;M9%O%P7g_5#UQg6t5u(~n&R^3By^_6WYW
zK(bGer^c{f@B@B)L$4K%9u(MfW1O`q?uZ{p{W$B#IWFF8`<TF!ejN8h$+Iar!LmX~
z{+%Gj`#7frIn6wMoHGJRM*dOkJXha_m{0QyUlbWG(0KYd4f;5~Z2RAT%3bl}D!qh^
z7i3(cZ=rLR-QD2#e%$cmZ$BRSanp}mel(3l8Xb-K!H*yP_|1>s{kZMN>~Q=~e*DZ1
ze~@s8^7YZ*+Q$Flhc7Aes~;D;XES=2^0x8JIq&s&l0QW1eR^Fk{Ffv5MD$OAj56B;
z!5@m$)JSAln^e~J*pGi`*fNU9cqTEDST*vmA5Z*lSN{{;C?w;nw(&7c6@)!ul&MLB
zixibnOm>fEE6*3Csz!>-C?%t`j1nT}#!~SmWvpFZk4ewUC?oR3$~e<Do;8$}c?$(Y
z!fuP~Ti({}U+<<-{+x^oGCZP&=S30ru#$|??cyuSFgVin(aJ(j&VpVUk)HV+zE24K
zFGl<_WEqMKRR$HyuCm&IjE=9S>N0|&W@;=XW5D{TCPP{mWhV_8rVL9|Qbo*ESn#LS
z#tF`<Y#H$)l{`VllT+?q{Y4os$!IR4g^a2)UY1c?MjaW|SZZKyvWyfG8A&ptLc%jS
z|2me$r0TMJj2lTRHF+wjYagekj2bd_-6+N=^Q6h3kmqaFk};}}d#YPq8R;@|WaP?t
zT1h<_88R|u)R&PZBU{Eyk#j{KXHOsJLLaw&9{b6!S~QT6N1e!MEF)hAt94}XR2iN&
zHt<Naq3nJdgM^2MHIZ?rezckF9zn)No62BqOyXf*tgWStRx*al7$)Nt8LegXk<nL1
z8yT<4=p>^vmHbk|Yck%D(O&S^WwaH9@^*s!COX+cM)AH*M<Ne>5~^TxT{vnPJ!u|&
zoo+I^%SbC)Yxlt@AMy6!0Q)-a`Z`iyr)poPmki2#%XqJ^!_;pdCiIit1Jii^*dUqb
z@VJ~|fFJ{fk{M-@!J^I~G8XrBzUu1?moY-d+cGA|7)e#j;OTs0Xmv7p8YlaFs;_&d
zC=d1-D`T9D@iN{NdETO;`Z~-U)6c2g?|)<>lVr@|(kNPMl8kp{Op!5_6I8Z1&n9~3
zT(QYANXmSd^q!2_8`Gw7E+`S4a!UA7<^!c_&EQnZAYo1h$~ny0GC0f+3WofljCt&*
ziZLqY%lL?fr=YHa1u{OCaX%v=PQfQKK9%vMjBPSLlkquMrHpkl7Rp#8V>u_6dXVwk
z2)oB{dnwIZ@FfDD3YW=X5(A?vWvt?$M%ZgOK{IU6+xEKy?A27rK$|BaA01@BG0<Kw
zV}p#!&0;sp*hniH>I#{<N$`n-Z0|(3wk<Nqw^Ci>>@#oM+i4gw{*ZA`#ts=f=__QM
z<#OOG%lJ;lNf~=&?3Hm?#u3gb>>{;e_R08KMnXSlzYIQe93$HYxQGm!;TstT3-}>H
z_;g^zvu>%QG7m7fk5MyS<BwCx{FI5nZw1!x=RR;e#bG{gzbW`>8eVCep-VsKoQ(4_
zZpyeN;{q*2#`iMcaJDbWxJ+*^<3!kIxFX{!r)G8f$Nd~eH}!M=E^A+x-AAAKr!#IZ
zPq`uEXg_C9Zqg6^oF7E}Kgzf*2y43|<0m?k{?4y5ewOizjJTE2yE1wQ?ZW+?BBgB-
zPk)EP-(>tQqtF+5dHtRC{hczg_Me=38P6-IsNgRd4`dWpP(;B)8BM0f{!7Ot<8LnE
zS}~7gJeILwRmy|MdH>Mz`@0WN=Ja>Z`u>k=wxS)QAZpqh`a3)b{}}~^6jxUa&(@A9
zs-T#H@(SMXm&=F0#T8`KiYcX_go2U^j`w#qeVlZ&zw@ZSQ~Li)2~tKu*#b#9L1Gp6
ze9xyfb9PSDh&-pb3a_B>3=sSI0Zt_al@)&8&ej!p6nGV=3IYmd%*pU6@GFo-en~;q
z0Z#4!=j(O}t39@&@TkTp!!}<&dl*y@QlKelKfoO(6~*V;p(ABR4R8zvrh-`m97{o1
zLE-ZD20fp)R7LOyE2EWGq}YnPpyCCRBnT2w@PZ&ODtL*l3!Yq%=Vb-e1Wy#0R3MKk
zs9wN#Jt)T7QWT^XNNNaDQ(&6FS_*0xq&~V`C0#*11*a68rp^^)D)@*?UO{~YSqg?K
z7)EU<$WhQv!5a#46*N%LLP1Lfdv>MeDR2}tRQT>(ZoYyScc%RmpVmmhy1CKD3YsYR
zdr}T1@9s=%s-U@oSAI%qrhrj~l>?lHMWQ6FC|B^Bg4acc)(T$bq~FhNBceBkM=DIq
zc`ze~lGk^p?HS;(lC~lPNqYqy6!cKgQ$a@sofLFd&_xvd>iObqddI)HT@`dw5GfYz
zF66)MN?Ub5jb)=vGAsO*+e<-j1p^ceRM1ECtsgtHs=?u%X?;1y0S-xjYG!)QjlvCB
zYLJ3k1DwGM7VmN^Vc*t#oijvaV05^G5enW?@V0`H3PvdyFB%=KV2py#cBWBFV--9e
z;BZ{yL=tN*KhPZ%!<#ht?`yuiD{X>;i3+CEEET+?V3O$Ad$g#5&btaGE106-+^)25
zr{%EJR0V?tsV(YxU%@oa5p(WL>nS8NX^;x$D445Ywt^2>Gh&~%NR{qwm`T2PPV_?s
z^F@~$?9Z7eCb89jxlFoPEXrfVK31?*!I!)WDEO3PQQW)zs}=Oiwm(;}P(&9gSgBxH
zBb!N!h2#qbO9Y{0sUXV~EEi;jz-=SkTm3AuN)$X&-)4ntM73)Lu2ZmHkPQkpD%hl8
zGZ*Q=6lU8Z<RtTF6d`&`N4AMNcW|*Q*si#{@yv2bUnw|SF?uD>-lbr-f}<kO_<_zI
zj(4E5S48;*MmD`q0r6{r`vo3Q@Qok`1s)Q}JcpkW#eIs$=rOu4IpMfKk`oHPE#Th?
za#F#Dfew?-urmtMRMb*&PQiKlD;4EcTu^XP!2`Nh1(y_DR`9ceUld$Xa8<!gTAhMx
z3a%^oUcn6oj~1lRyiW{t_^Lx*lgxERqq{~#R%NICpy1cP(rzob!x=0Z{gEcrII~H^
z%(;y+X{$f+nm#+q@b2WCinF74*?$Fpu!w@+6f|m-dH!))?7KNtXGQN8Yj97&pY#>%
z<m0rT20DL<MvDw`SS?pB+x?po1w~a9Q}I~AKMG=0Jfq@Y1;)IDCkp;k@XS=VHb$iq
z(N8{zDubLtD!Sg!Euw<`XH|t&lxmV$ZII({nAv)eQ(Q#}6=hYFQ&EyhDxOtQMuq&?
z&CF0*#frw6NsTjSPR$uI$jNz-#(`5lsfp;k>Nef@e(rNBDyWE8k)Yyv6%|zkRfJSj
zQc;<;sZdmSRCrbRRj?AJNhU|+Q(f&bNTME+^ui4|{Fh5aRTTk|+NVk8$-i@%H1N+{
zO?8!Qs4!LNVnkeY1MjC<Le2rksR(m8cdC$AQNgZ~u!pva_XatO200NGFQ|yBsIKBg
z6?u&_Us6$3#Ym(0zR87m4RT&qQB6f6%MNlb4sw!2AJ`}tEE~GuWG1UT|2LYVB2{#t
zW8=)f201lU)Ksy*aVA@AGb4u@JMl2Bwu(9`URTjpMO_u?DzZ6t74_KpQFhx&HZenR
z9uk$QqQ2l1W~q3;VsVmO6%AB0Rnd%H6{(E`=Bsd2<Tj0A9)^aTwZYC)-dJR4LM6;_
zlbUlZwG&#gk_mPT70DCqmO?`E{*?4rRJ2ynM#ZZtUQ<!!Et}bx#K2OFGEX}dZ>Z?6
zVt}Z*y^1chD8W0Z=qN}h6`e^2I~ND!vC-Yr-KM*#=%b>qitZ|UsOYJpmx|sZKU3LZ
z2IfpF=s8ExPoz>vK2XIV6~k4G5S<^aVu*^NDxV5P`3*|;kc45FkaVA5kEGJ3q?em&
zk5cjR<n*jbIm}aWkUdt#I2E^4{GejIiZ@j(RIy0KTPogGu|UO<Mr9_bu6KP`#bgx|
z1!wdf6_W(NH`?`?Q-nEjey6KAk)Jq~7R461dtVSUO~vXdIkcY}_i|}$d#~4=p@KM5
z;4Fc&ReT@_<#SZbE#M!jm{-8(3-XcbzB|NhAFKF8#i#6lhlpM_>2pCoD~L8KnYhDA
zS*+p<8lH*+oZLzYOH?dXu}tu$gPrAEyehV-*sfxwid8EAA%acpt%@}&)~nc{VlAg;
zu(OVfw|<o5t-;PmgB|iMgPjwDo!f(*Z-=FAR<T9Jm$b$qPSGKbe~7b{ogCt3t0u7H
z5a%nd_wSO<9gOZ)u|vg9s*4IA;w%{AP|m=bnYxF5_+WIeihY8Rf6dB85<lAbbM1t0
zR2)=sNX21hP;s6Uq~fTGZ&iG!;+Tr#9MQsrALf+VG{iYUJO8^Jqo1}-sPK2WlPXTB
zkiJPitKu{(8RDFwH;bk*1Ce?BA0(47=LHoPRa{eXUBx98msMP)gKC%0YMJd^QrZ=^
zp5zw1Jj5Y>FB-jdwb)G+e++SMs3<<vVNQn1`*MC%aa+YJ0kjU_4&8zZUjR}7Kdbmf
z#d85v2;eR~iHiSJ#02o0ir-cIt>O`DqqjVe@t2ARD(<QHlS{k2{rjnm`zo|v@&2I>
zqYt@ehdO*4>eZnR-;-=G)OpOcFx1&S)cIG%KQzUmPGC-C(NO1!3JRH%_)GwW0w@+h
z@c;@3aCWFuB!Hp;d{fa*Kb0(PN&oj~*3Bt-tgu7?B?EXifHDD;V)uqR#fLe^B1xqK
zxK+kx*t$2PY=GYtwRtYTUC}NVKwy}&G}ev{;J;ZBlJY`+XI)11Vb1dbv?!m*P+5?Q
z0aOZLNbB^8ixY^o$|rgPAbJDXz9WUiAAlS{P5`+9C;_MeBn1#<69EJRhy?IL0HFZ1
z0L%ca0LuNHw{~cQGZkz-03+c3xL{y6@`pL$0OA8k2%t)VJdPa`yz4NB*~ScWSoVWq
z&VyL{#Q<Ik;N<{VRn-924|9H6oX4cc&)R!>#2*^wR1-;w0kFvEFEXkJkQ_k$0I~u|
z2_Q9q^Z@DwP(vtz9r$~0Moqz)KTVXX6+mr4D5(=b-2%?c*M~V70b~Zy<%<k<;PEhL
z%<2?oJ2@?p9k{tGBb#P3+=(0RGzcJ%O31bw23$Aw^q|Z9030E#Gu%A}vqtZfM(j!N
zl*R&^1khBFW&)cFWNM25S_<AuVDv;5g>3?OHGr-GbPM3Mfct`R+W^`H@Ol9J&C+_f
zL*z?VZv@aubb!2lz<uefLjWBGA+NPG!WUXPGehJ0U08fVl%#tAJpvdQz#vu|K(7G$
z1kjfT#+P#2+nwj7_vX+RCv-lTv;DOQ+wB){Z(#Np;~Ee^&6yE~p~IcQw4Z?cve4TB
z3=LoyEu=-2@c|4M<Vy9-5rVXvUu0weqiFEG6GjIxR**3QDcRK}ah%{JjIxF|MX9#}
z*z#V4QPw{p@W1zkCI#>=XFr6qAxsWn3dbHq=OCsA@LmA^Amkw44`5mV=K?q%!1MrS
z1h6}RJps%NU{=6=O0rGh>;UEjFqf+!)Zl{v{#+OLR=RsA=!XG(9>7A8XI=pF1^Gze
z0)Zb3WX?|l_%wjeXj-?5G5Qo26{KzuWHD72z!Jfi(%=PIR*+}8AS(o}6xgq0k=25%
z5x7?1I)Up2vZ2$bqr{COx=G+>fm;M_75JsVMNJED7vwA2^ZYo59fIr>xJ%%c@9S4=
z7PB{i;{luqU|#@V2he#;+<tl_QI`CGkeF|}&ub0};UR&C12`fG<wpfM7C_slPm}`q
zPDu95h&xIDwm)v#aObQbrvf-F$QgmO(x<6EJgk2qfQ$4bLBs}eiIX0{9|7DG^-O3J
zVJlYxxEjE<0InCbdnbVJ3;2xyZWi!c0sK(Fe-z|)0LzEF521b%(VqqWBJi$2CjH7)
zAo%YBhl;WM8Nhv^t1>~?e*O|kMFoElz{3Fk7LrG_1VNbRaRC1a{%?Wgi69d`FB2mQ
zGS4%D6cSiiU=e|Fi`>V5#eyg<qU0q6DJig&z|sPr4Wh2-Vc8(=Mp8R>%p#g!73SAj
zd_hP-ln>(3RCm^%6ZtCy@w^}v1y&MRSs?Rxg76Cd@N>5Vs}H&b-~7TwB?vW$T0ztf
zA|UdFg3tsB3Y@(qP7lHeA}NTdkeESK5yT3*&+h+8EE^8uvj*{lQ`}V+7lbWR;{{TZ
z5JaSazYxTW1^lHTstW$Hz-k5ZL_w75@sXKv)q_Y0V&2d0)5c^vgiCIpAH5lu8U)R+
zhQOLZqzOXF^rW(NsJbAU2GLB^lP<7{z<L5R1ZE1XA4FCV*@EW?%oms&L<2$CT%I6Q
zog+v?fsF(<7RVPTm~F_%E;bLMMG&t9(OM);X`Dr2%OF|>(K0{&%j)r6s%5niN$se;
zWpP`V#=RQEYeA5_E|8?HApdx?-U#CM=>&%ML3AkK9R=xksce@Zx&{#pAr#{ALFgXD
z@gPnF(IbeSR9X=8gXk6HjZh2^VuWb4PY_GKjGHwruCIvp6WCwi0D<i7KtTox92~@u
zAchJ)EQr+K$~{x10rL<?1~Dp#Sp}s=3o<!~F$I#bL5vGxd=PIING1yMmcX|KP7pY4
zb<8`0OcMC6K(>;$tO#)muL45yUV;35L8b*UU62_9XBMPRon`aQli5Lh5X77y<_atQ
zFo<x?T$<~zo8z`lj3fUjhy_8c2x6ru_;C=Q3-Zr}`k!!dRm%D_2=dPavLJi1P-Ivn
zaIwHIs82zdx-^Jof-f(SOm9<eRS>I1bhmI&YXsjZaBUFlf><BK1`+*I;6{P0ZBr1N
z3-}g6whDaexV8ncT|~bs$g?8|UKChxR}j0o9EAKEfqMn+E6DkE5c>=G0YTO*EOW3x
zawv$y1^kF0M+F`WqTg5IOza@O3*u%Fw}Lns#Hk>z260W~IZb<*7I%T#8y9ybh_iy6
z6L|h9a&I#(?qU#sz7=;Vh};7Smj%Bf@c7W2S+7T~2XS;<T<(dunTz7S4}y#92F>_F
z90N=J5X6r`6b_+C$o1H_MZ1rJxD&)rg8v-EJwbjEcvs-B0-67}AbuD8j{-@Dv9W&&
ze!oESR}c>h_(MVd4q~Iw?c)OZKZ5)l#FGNae}cq_UOf{+Awizb2;XHY8ba9+$_ZgH
zfyF~8Aqaa_GK5kEytE+ChEPV38T;JR%Nb%rP$tC5LdXwvl@H-L!7B*#2z)+-ih?kI
zB|$2O{`bxaC0-%%g&-B=@rTejuN;$<5L8irAcXtF9a=lvB5EP%A+!&nLkLC)W(ZY7
zc$uv<i?Ku{VS)GNxvQf}2yr567t|jgLW1Ct0?7-4yeROc5WKhD))}gWkR3u!2#Fyi
ziPUHawF*jA7bIC=iojHXHA1K<2x~|Sq5Gl#>8iF6))81Ygmgjb739niBr}Bif@BH&
z?&Ta-!kNkqp;-t+uDVy81|j4Xl*$*x5!g^*BY}-WXd(#nHx*>&)%xVkLuetQEeldx
z3Gzw^twU%d_^Sfj3VcoA>!E^GcDqVDA$cS8zqe&NhR`X5c_GXXp>qgbMCx#XU0Esw
z-w1aL)J;gbhtNZio&qWFB}i|9eM0D4Am_f6sr^NCKnMc`8B~xun5qzbXn|yyAWuE>
zh!94GFe-%6A&d!OW<j2@f=mrzTnOU@e=~%M1*vZd^0vSU0uMEdc}I{*A-v1|zu@fE
z6zczQF{YA}5Z?>oeUUn?AkTC`W^g%(Y_kgFvjzD;;G7WV7RWyogsc9e5Eg{+WeD3s
z?l$IQA^%+PPeS-q5XwIjr0NJ~VF-&vp2Y%J3j9Lg5`jxYSSHAFf$Z%HK_1*Iwkm|x
zg0Bf-qabSw@~jJCz2F-PBu|~jCK25n!j=O0RzawZ?SdTTBp#0YD#Vv#u~SI)3*04;
zt?v$DkKlU+?i2X6z^BSQAUJb=BgjF4he9|k$Ps~CGlb8-UFBE^$A#pCz;B=8?JD1e
za8mG70{JHA=@8gShI1jD4`GstcTHRf;bI7jb$p@YQV5sXHw}9=TnXW72q_v;HCzkf
zI(>o$pN8*4xDmo%Av_2nSS9yn2tS5!o3md#dMkt<LTI_po>nR2z5Vu`5K68{{w0LF
z^gsLUpXgUR7x_7aR@GuD|22f)Lim$by3}4@Gxqlo{s<v+v+bD}X*j~UC*({jUNiN6
z0l)Qb<Y5SZhfrKY2@Q`zcpO4u4MjBk6T-hC{1-xuh9@Dc{jVm=Hak;{*y)U2dcFOO
z#!uH}6w=)0US5#T(CT8e@+!NihC^rVVj38Ic&f<4EjFViHI&luoQ4V-N^5vlL#)Qn
z!l8_YvTpvQmW5)=Y3RH>nRRwwZ<}ZA7G<L;7i?C-hRSRB_(ZgaCxi0mMT?a+RMb#O
zLvrnCtvV6n{MGi2AF@0eh|l#+mNeAdVvks5$7}FwkTob8R1IMbRYVN|4VngBLr~*M
z0vRC<-HYaSd{VE(l4L`Jsln2)B|XXxbQ$5W-8vOBIMU5~?KlnJ4l2u}dg&1gZBg5l
z5l(`Jh=vz5yr?0n;n=&8mo$8^%zjxzH4Rk-XH@yxPSmh)gp;IU;~D!*-3U1eZ(OiQ
zb&g1sy|LOJdm*a^N1<V&hIcfiX{e>)4Grxz)Yec(L%s$_LtPE&8nQHGYxw<wT~9-X
zhD^b;zp*KaF0-#riqzLYB&U%2$<dH2dfq_8;EP##8osz>w>h1~=&$GOh8h}aXsw}*
zhQ=D2XlTg^)zDOEb=L@|xyC0TPBXT<+$L!uq9jz&D;i!+OI0q|&bKzFfc#a_(CY%3
z;Wa@x<hB~xadfA$m}ketNQth|4jMXY=%=B-hEB8xP6}s7!{f7d7Y*Gs+-#CY-jxcu
zXp@v^8^a2lXQno|V)xY0OG9rBeKhpdKq14JZSHtUMjv)@fQEq@MrasGO{T;S;@C9|
zq3XV|OP?#2urg_4-PEBPhH0o?I%7EdRyTEU!#wgSPqId77_DKvhBr0*(lULFhOrvP
zX;{%bozb^<+8LwMu8wfXhkb3orSW*Bj0qavW^G^F!?)UBv`Rnxq+ZD`(McNKr2%MI
zq+v1_5p7$;CmN<|cu&JD4YL_7m+?NQ`(kv4;L|ir7v#*`1STzPmN1heJ(Kgt+=LG_
z%+c@>t$Kd`Tn#(&Qs-%yui--u;iqV&774^tbs{5QO(Lg_eVU%OfUEmz7R!FB;o%79
z&r9}aH0gn5(^n*YPW@c68LF?h7t<s(tktki!xAxNtLd*sI!iSy)3BTa*D&|Bq)D6Y
zl?5|9y;9ztTG3S^dht%y8Y;PVG-YM-f#xaeHEhuErG{;6G$)m_wo$_-4V&4@=gC{S
zI$9;{SZi+)E1jhDRr_|ijO`k}(y)`(Mccb*_jy0}@l|^V{YGZ$p*qoU%e391!{c&O
z%cRA!+xs+pO`Ft_tz*B2101P_e>Hrg;h=^eH2g?!qv0^etKmBhM>HJOa9qO)4r-UZ
zATM%E!|F+qQke;F7RfGrIy&`K)O*aH6O(aL!zm3HHC)ngTEiI)=QNz>Dm!SKSL|WO
z?6dT2C+wKxHp^bnaM#G2v&U95qTQC+m+Aazx*BeA4bu73=hLUvO=Y+)2o3D3XA)Nr
z&c9J0r_aB($9|z+D#Ok7v9~qc(eS5+`x<`I@H73`x}<xwL!s*5+5Zhmce!#kG`L)h
zPDWm4|3;^`%r09yl}Uey3>+Z)xodsW<5fw2(c5!bX?Va%%!oduO{PWv)=+qp{n}dl
z?pC|>4_Vz-+t)$~t5zpH(eNJ)Oh=rK7#+{(sG#F{9ffoh*6~g4NI4xvbQIO`td7BJ
zl8WgluA|ISyR?oHI$j>>l+;m5$E1tVAJ-(suTN4oy5T8VQzu$RM_C=UPemzVhW*>@
zSl#_bZ`KOC;^4B`7t5B{@th8><&wyF#>uOwqmm9)M?gnq9UdKiw!SfmUG?ht`IPO`
zG4iU-4oIRKv$xsHPeo-NiVilxK{4r%opw-1NQb54yM4B%L)T$)Xxj@vSeaz#Shp^T
z*~p#rXutHx(^6rbA1leYa>%w>m5yW`DLN8#M08Z;NOjEpujUInUesZ)NFuMf&VGsQ
z9<@_1*(2&ktLaG8-HSq0#}92|KC6*R&yb`ezd>q+R_WD6(yQ;6VY{h1YUrq=qppsc
z>{#t`X*z1@n0Cyz(<Ag|{VzsqQ!Ur*C$%FL>qgUcWK4`?=*SeLo{r`VlPNhP{C|BN
zC(dLqXqiCF(UGg8ua15?8tBN=(LzT{_CbfEqnQp~+#Bj>q@%Hpp$~IPEKA<C!)C}E
z=`;}%3Y+S9?Voxi&2`LNZZmL2x6<*7jyH6)*U?%>hmp>!%qB=19k-w4P{M4l>u9Ir
z^Ld5;S#7sv2Zj~iwkmmbYAi269dvZm(N#w`9re#-{j$&Qq@%NrE;`8TUAE~NNVvFq
zy`I!vM^7ESbo9_saeY#WUG|=bS+Aw1_14jcX1T{EAG#!q3y{3OjsZH})A7EJfjS21
z?qzNw%~i(`nwE~S9GZ?{I!5VOSv!?sxQ-DtBpr9xB{Mp9q{DeUQ#aalMe>%k=x9#s
zb(>_Ij`1wD)P76Hn>r@1b9XP->y#rY@|FFzjtQ)xe8!3MHm{Wlm+g1B5OlnCHtAg*
zQ*?B?owaD4Jy}PaBX-l>Wv6n9l}(FlmXI+wd76&tI_Bw^uVV)FtmEhb`vV=bbZo5}
zJDWNj>0I7#zxhS-pZo1UzqaSl{HXb89yf<Q57-}ay!-9O2keiipDp$$IzH90K=4LI
zb3Yd3#u@uF)<bWZn72sBj*-qnn%R>aM!9eN@|sPOcshHDj-^zcfoTSo=~%8K)^I<e
zy@I;Zab3svI#%get>XYSuVamlwK~3Hg<MBE*6Y~9J_{{v(6LF7gWK(mg50=nZ)R7&
zcJ+2XKJQEFvsua)g<`i+|Eugb7bS0}W2ur$4HI{A_)G1*I`+|AuiLwH?AEb|2K-a8
z$o9gNaP3UHnf0}fdl{+wb(|jQaL<#!JbC!6n1ebF={Tq3ypF><j_5e4;}o^3gHv#v
zYeWYf{xLeMlhOEH_P09z9_gGdocNs}t%v6G64S6z(rK<!PhQ1kN%YcZIB^&3w=+}E
z(h1Z_Wd>uleStfF9hceq#K=XuvQf^o%ULHk+E;X3qaI$2y($LI{T>I!JtX(KH+0<8
z@sEywb=;zJ(D6XWLmfYI;pq5-!x1KZhjvThsI;Hx=ycp@n(~W?-sM6|PrHi@;;2Fq
z;%~x#{w`9lm5u&M+y2_Vuj4O~lYGdFd0ZD$S0=Y#n)J8s?nN1XPKy#BiRfd2)L!lm
z`w1Pafno;!qkS4~=4T8PHo&Ap1~%1;PJbtIG(B~~>8v6K9<50$ywAS0#x8E4)J40r
zff5E7<yE^RC5F3L$lVDQ8Oj(aD@ghgyPP02Jf@a6@En^k(7-?i1J4_H*+4Y|6%AA}
z5Hg?{?y9M5z;8e{+#Q0)fY*S}K<p)ZRkM_emu-ppFWcX?kD)CohU<z02Ixst1NHA@
zagQ1_+$;WQPhRo&BDw*?z>5YC0)lD4GGH5sHxM>Z#lWJnxrO#6blhW4KV`=mAbO9x
z{P8wBfkjp&zraqWM<Ry1Hw%w)xFzFmt*U|i<|(`uf7T(bWtof)g<=y8BpFCHkYa%9
zjT)$K;7q3?CAnTM*@v#%8&=z?2H#jlI=gD1rqEcLfm(vxEtR{wc3y1*>z>rBD<pLU
z=H%tw%5t@uVIWgT+O>^Yf7Y&VfS4^XOUOH2w{rwx=DU>=^Vmc7*+3ryj)8^-UNi8z
zfkp-z8)$Bzg@GniuYqO;CZ<QTM!9aBVf?7HPZlM!ww4B3aV`wJYTy;az4W&h$h{Cf
zHr3mvc>*ypJ<1)?rj`k94YV`RoqgD2zhR)gfi4{87Q2Iijs_ObE6k03C(*+<Mme1g
zBwlx$V|b%hR9Rf4tATEY`>1!$5?9#6Ku^x*nXFz0;`Z7!30@u2UQg<4pr3&;2F4ob
zZ(x9d;RfE?WDhhj$iPtc@Jx}G%aR8h7-FE;CYxFvy}|v>GXA-YVWRb+Vx%L)SZZvt
zM{-g&*`o}M7G%iHEJnu}m^I3I+rR_^;|;tiqHh`a<CiST8CH*SCK`B$Cc4a?YG9Iq
zcSYq>43s}>PZoG`i%lL_n*6nBkwbgWK=H$N%tm{<ff>wW;yDvDS-F8@296t;ZQujW
zseug!<`|f3U@4umfe#JLGw`W_&scDBWWIrqIkT;js+>*w$iM;v+@n%y#BimIPq?Pa
zrjdMZ;N&%XA&uO?)lm*-aIt|e#K4yrIDaxqNz7ka-1#is?EY3gdct0AU=`Pn!GEje
ztT3?B0EO+BX01E!dJI~{8Ut%Z4G%^+>kL#L?Qr=tKbo|W9>c&613L|D78$-Yu+6|0
zj%BsIRUk?KLW!@pNZ4-RD<++=_cu#nbkK&_$Y^Jmf!zl78#uteEp>m(>@g5IQ*5t+
zI<?B}GjMlB($@k>sw3kYuC>GVAp?g6IcVVKGP~`bvixmwgx%%>L<WDz@aGH(uQDeL
zd~4vofxirVN6i@c!N89OP8m2&S7zWc7p#G^2F|eq2KZBjj%D?V<dJ1FE(o==!xs(r
z$JDhK^A;CQWb_IZYv6kWH@K#zMy}C{4%=5pC-Mi{b++|dCdo|$x2V<UGWdhksGc|d
zD|<-c#G>i3w+-Ae@GEUzSk6xdei8oXXL^#DjI7ZPXM}fP?y^^N6G+(Z@3cSz_qdiv
zJG?wyK4Q<yOFell`%h8u$5Yu43_PTbnJ8i6Z#r!Qg-lEz?KH2D@t8(px?cJp1OFO$
z!VXu+_)p-DdpYC`56foktCshSiNT|tn$M;cHWB#N=5i=vqFJ+OQGvw-)>&$oG*QaL
ztC#JvCQ6$)vM~9`A6d_u_^n7T`O?u&8PmNBRO-B4BtNg5iC7ckj@vN7O#(y7mI)P1
zJa57=(a=Oi6O~LvOuS&CvI&m~$%NlT-a8Sm32wA}CO+z4mi=dFvdNZBC?-r3mI;;p
zG!ZhPnYeP%4w|6%zBJm|JKEvadj8rZ-9$7aYM3CWX(csJ>DeqLY@&*ZI1{!B8XJo+
zFhjhFmYE6k{0V~WT#`)xzp_lmizZ$&QQJfv6ID&TY@)h}WE0iM`E#;%YShF(qn$((
z1JY8H1ZJ#G<~<E2rI<)HU30Bz;`d8=UDP}#)nHY0?5mU0L{cq*Uu?CRt*(i56ZK7G
z(M61L>Y3pFC(}fRiNzBmIZKnc31Q6#9~H}{@=w^gCK{Od_pqHK@XYGuJQMus<hfid
z-^8-X5xQs!zdaRgWTLT&&L+B;XkwzNiB=|F;hdWIA)MFT1h>RA_%gd~8h;Dw|J!Iw
z6Lr@l>-Vx+n`mR=4HNCz=#<E-CMbN}bXUr2)MSS=7I~p^URx9GIFFU{7^dkNW!ENm
zFwxOOClllyzl~mdl(lwh<o4bK=I?5vn~9OMOcUKr^q}5M3^dWxL@yJ4O!PI;o71<<
zR_jE$f=I5fP3mX5JI4Md7A(!$SSw0S!p;96ny!hVCWe{laLE4Rh1ek`4lhck&F~(e
zGpEdO6WOcmj<d^*5Nl!Qde@xj21nC4O^i1&#&oZAV+C$mlSa<p!f%>*+r$JDZ<+2-
zV+P76n(og=>bz5W^c{BiN;U(FOg1sa#Evj_hB4K|dnR^S*lpo`PNIn#7HV3UZeoUs
zU%6Q5|2Y;D`%N4$G26rkCYG33YGRIwxh6g{@wtf)X{%$L`CI}f<_XRyf2u4n@v(_d
zO&mWM%Q-5Zmih@LkFp-FNj`eTt~16N)I4FKn4rbf=QoMXCr1{E*_=@;`h^Kxu_>H9
zHL}daauZukd}(5ZiIpbSo7g}TGSU3q$Ql!CO*}YauNLUe-4|J$yLBec?oD}WDr|kD
z3AVf0#3mu<UCL(lQ|ZLEh$tt0n~Civ_L$gf;w!3%nlZ8aX*VWEcCzQolh`Fz(*K$}
zDGY3-<rrt5iLa?ie-0&#5=RWq|AwA~>)pgv`Weo$iEmAOXCl6N!VxOOM8Ac}M@{he
z8pAO`xQqDfudEZC#79}=yrP{namvJL)7|tos1>C#oH226dts)MpEYq#*vWZ;lw1(x
zqKQj_To%}>y?e*<nu+Ts?wI(=#P^)XW%ezuDf*CQ$u|Vv<Z@na4{DL{qe#6?FMZHv
zHd^m&-Y{8e|7?Pnn_o<{elJpQSrWC!;os#tt>OMk{he-#zR`lm!aWmzvbcqk7Vew)
zi*`~YwUC7eoB|X7ncxkCzfC-%N1{WZKjb_fO?qWba=kT4ZT8vRJk!^aJTcu3FbOfn
z!ZQ|Lu9HAjusHYsg)J1ZP}D-(Q(46<6t^&VxlPXdNZgbX-(Hqn%0g)iuu$H@?5p;(
z7Rp*EXYtEo(J~hPx|L0{*;hX`*1|PU1_=Yl@|=YV7AjhNea`N;Ci!^_wT~ust&_^T
zh`h8_5^^R{;<ezjP?a6CAX)HRh_hf@kS!<{bPI-s?fH4Cg`kCyg@A>^qtiy`q!Kj?
zJ;ykBl7)}*IyX-z=T9WlLfAqT3zkSdT_bg9<qXOvj&U-(M0wLD-a>+fmn_%AWYkNI
zSa`w0ixze@O{lQf{$Wal=Ct8K4v`tIw~MJ}A<;tALUqf%ynZ^y-AE@{;159ZWD6-4
z`u8o%yKt!%et#{AseFJ!<U@@#3$-kau`rezuu#WBKW4U2*FrkgZlRrpdKNNRn}wDZ
zGA-1%kZ-}UkYyp;LXL%83nSMh7k@5e)AFQJYwe>oQ`xr$7Rd7il5ijmEi|&w)Iu{0
zjV&BmkxXF|&dVExxk$;s9OE=+wJU7qr-VeV9c?9QXk+133$Ix2Pcw$rPlZS9C(RRH
zvv7S?5-&02uUqK8B$?z53+*j*wb0E%2MZl7bg}SlT2x9))hp%kE@&sVyT|TKvss-?
z!iI?5E%dO^+d>~2-dA={3%x{(;|fQqd<GWx)r$7D+%;aZYzC`hX9idpXn~vUQJm0{
zxq~bWvoM^tO2uxohX@=hkWs4LI-fPd!aFOH`8#nW6=>jMFpu)l7Gln4@s{aN=k0M8
z##{Kv!U79#T6oLCR15D}c-z7R3zIFZT4`4vlK*IB@<a<)F4^x`m}G%l<@}{tjJ|8(
z;uweI!5C+X<z7%0WT(DwVH%B!%Y^>lLhLqs-ywUZg&BfREs@KcZwLOZN8tw+=2+Nt
zKWDy$xfVX;YC2(8%ufCDT=qPR@APJKcDVm!>%4>4s#3<s7Cy1C*1|f=y#w~Cg+&$?
zTlh>wKew=ueHiQ9TApN1jxfU)7M568W?{MI?im(-8|BV<spamU58lh-Dp+A*HGA74
zVI@auVa?tYKIYKJIwTaXp-DGNAX#r=gN3aYzO=BB>+W=PlZDM}u4%%i;e|QsEf#)Q
zVn0}#G|0;1ZR%~zRxA3I!0iIZuS=qYVTXmCLPEa%{oFkk_Hr495eZ|Tg|99ANk?a4
zKUdjU=d^`077keW#==1hhb$Zy9^){r+H!X+$G8&r*lqoJ?88y|nIm@S?Fi+)_NAPl
z9a{L#!jN-GCoS+s5ck#eGpEGjr5P}K*1|apx7c|L=b8EaT-I~d!UayNg-dLUJ((1_
zb<DnE;dOt`q1Td#41Csbjmv=xEk5sinoyn88-l+w*10Lnfb}r*j}~rQ_{G9q3!H9B
z?pR1Y8U2Z??ENx7)0WaB>1)%pLw1RE_OBLxqu;Q=E!<1H?LRo)bxAb)n;YzVVs-E~
zDWiYU`Eyl<Q96u=7XGF)52H{RkLW<sqW{oKPl-$_llz#Jm&sjmDE40qPdI(6?eAWQ
zCH^OPOxTsoJY*LRqe$3wfV>G@G>l?llnlEnEiQz-W|atI;q98tfK^GW_t+Vk?jG#f
zFv^5cISfx2Wy9_jFg6T?aeS9uj!8@Hok#5QVLTT`g)p8Eqsve3RgeAW?Oz&C#V~kZ
zw^A5XBct!_vd^wb_J-jLBN#>~3@HqM7=f_sqvS9YQKuTliZ9*b>|XmD+1w1X&Sj-?
zc^^*;Ll46WBOHbicJEg4x2hQifAGE_uJ63kRS6?53_FbYFz!x`^jMV4Kr?uyZt9&s
zvibC||5)dRFkTF!e;5P8cqxpkVKfh;MHnxKQ7w#&FfzkP3?nIwnqj1c5fwvD4kIOu
z>Vi`Pyp`R0d*R=9+o@sH2;+|(Hr?i+<XHB$mKaE#FzSZghd#B#IC?TWFC+SYJY5HL
z6;;;_B+@jHjdT<&puDMX%9|OIKqx7MgfMhaDbjoI9Rf+{z4u<Fseqy)(m|z25fBut
zh^Q0=6ye`<`S{nGb=JOT&OP_s)8^F~zR%@lIyr<C+V+micNux7ymc4SPwZ0agitqx
z3<hPRk}fDekID>T>R7*NDEN-MU2<YQ8n#=>612Xceh3W&AirS<jh^Dh0yGhH!&v{1
z+8({yB7`?WXdgm{5Z(;otq|T0;aF^H%TVxnQL*L;twSJf6#_ps<u2OL_+)S3Pw5=)
z8|$|Xp<M|7epi>@YzCjOh0rO4eglj43ZXMYA42yKdW6t5gz?jZOKP{LfPFq_{tQ_Q
zjfp+Q&1$zko}hOKeM0CP3a&w^EwsYt>h=ra!dRa}(t#li3SmYFGea00;w?uojtWB<
z8p5y;#?aw6(}#yJB81V5QMNylPU8~U!Mp4`WBu+&mAGtw-n;S5v;FvA()oUKYzW!h
z(M9FWO)hCp2)Q9l3}I3Ty|VrHzEtw)2PX5S^t^0;b+&&r+n*f56smnWby|qev~u`?
z=TuJF9$ZYn&-SM??z@!1gX-J-{3nFj%-ayQgfNFS6~gimZ`sEi!eD*~duk*u3t>SB
z3qx2O!jcg9S@)t4-n|xl=>1Q&Pr8&FY@vCq#Nw%m6*8K)aXD+toMJ0OSQWy$5Y~sV
znnfDIS|;Qs<;|<XTPJ?C^!zwK`+9Za9_fi2Lf9C>rcm&)+sPK%W=14E@&ASYI*_n6
zgl!@0W=4guowkjN+d(rz_<D2_zec~2lK5T-J44vTz7Yb4E1M*(d6=^BsMqR3`r)#v
zg(_xz$nAviaR{G;@DV)_n|isXm$M_DS2SKOd+&(ng=|+`YPFJC`$G7P!V*4`us?(Y
ztQ`sQ5)OuND1^Hq{1w9C5RQcKLkK^HaFp2?!r2f;wn;l4!siTD2&Y46dNARO5Kge}
zSVydgLG^j?wMS%}pE=Iobw0Ry^7tx*Gu(USRN{Q^xb4RI#OFdd&)qSvLb$?45yC~%
zZ<KGuDkr{9zr@X^c%zynUuIrW;a;W90qwgW&y}koTw@`pCC=lwmK)NS)X4gtopYkj
zW8*i<Pa#|{oOvUJ-$Hz&jbAtnVODAqS7)~WDlp&FlXH{B&K9~`xgEkEqO?m*iTP82
zOHp-iF~i3NNxONR&t83pf&MV~)x_T++zX+&gy$vP58*)w(Gp@L{6pJ9$S2|4vq=v_
z_%DRV40^ppem(st1h%+?<9vQe-7}`{<#B$L6l^wbeSCfiNBBY3odnWnBovVNWes8_
z6qHc*Y~3QnpD6@|BovnLZ>`{4Zw5VhQy>MO#uF5kP^MDW6@G;;p_mkWRyllKJSjPl
zg5PGGIa{}cgpv{}OL$E}DG8+|l$Y>=6r?L_zYN!sP)-Vd_3`uCm|i<v@`+!RP=TvR
zcu4}^ZvXU4bvAQ$o|h&5)C!d(JlNs#o%pK~20oX{zBGT6!eQrBkNnpqRFPmvFeQW}
zND|*1B=R-C%pGl1Gzq!{MS?1Z&wi@R+~&TuIzB7~U()e=w?gCnyW@OfOM)%Ik>E<;
zE9VF;ui+8YIuKaMp6p53doJeoIpx*yK0nV%kdP>$zk~r2s!6CWp^=2f5|Sj;pjW5s
zzJ!_*YDuUgAzeakDfq54RSLcUN*0*I6e=0-m%NpcCZWN2fA6)rWlN^km5@PKq<Wdc
z^S55icp;`PhxH_6N#MsXh;bOK`XXd}3B<3D8%XFk-ft*j&Ul|+uQZX+R6+*{9qDQb
z%_X#y(27=7Pi!IKEdk!3t4}F!3c7W?zxZ~>$?-k~T1#jnp`C>GT&ubEwuH6<%zBvd
z$9VtYqpEzL&ey9v#TqYsCwTwfNkUf%-GqlbOXwm1KSgJ^>@J~)gkBPQOTn*D=*CZ*
zB=nSmYaBrz34Lif^QwL#4}SF%E#9y*ODQl=!XOEYB`lFJSi%qqQzT54FjT@Y3E2|H
zNf^$|$w(Y6RvaN=qy+xLXOtAYnkBzg7q1O}0wiIqgfRs&Sz?n;DMfR9z7iNOAy2{t
zdbpUE!&wr@<ZA=wJYR}bOG}(6VUmQ&^uq<0AtU8+;AlKQQky1W27Mx7I;US#c<@88
zSrTSTm@i=gqrjxi@#iu<t}6VHgyl0&3O)zm=VSbadZ84&tzIPI&i(ZLl~akSlb_fu
zm9R|0MhTlFEN2Lk6IV%CEx-y1D+M5v8glt-Gzse^Y>=>43cd$lCsHN$a{Bm}viQX}
zSLBzB{2*wvgm)yoC*ggHN!Ti3yO1n;+@<g~VPRn2cghYa_~hqZ8s8?3fTr%0u#1UW
zQ~yB1v)|P1`nJ29nf#8z!&(>rp@dJ4DK(G9m#UTcF)^o0!9{1Ugij@W#dX_8?UV2s
z%W98uoc&+I0SSkt;H#gSIsQQjhlD&aUlDQQ&28~V=(h?PM+H45D2L59xSvb-f(6T6
zYzy9@pOkPy;M5(#cW|eq;AQP;I%IV`0b9ozq4_K`f2w{?(DTeRu`Vgsx**}Akh#Rt
z5buA#k#JeUh>7}@r<|5K{#6Or$aFE%#rG0^;DyY<#|D0s@RNj-I!@{MS;8-D(JD%)
zxGv#WI!(rI88;;S#-x(*mW-PcerI=*A<6iI>q;mjqp*xy5^hU~l95lw9SL_OJe2UC
zguf*G&7RM`Ct*c3tw=s)T_N|LgwuuGM){O~SUyq8Th*ifWzWf{jLY$>SC1+Xr95H}
z>=OH!zIrV0&MDe@c{FEndVV?J@Q4v0TG0E`qMngaKt@3sIcqXGz23Aag1$|>A~K$p
zQC3Dd8PCaxl~F=QNf||D6q5lN#bqqa@p~m{aWZNhE<hWGCL}yBLz`c}Xim{`QA(G`
zGBT1%<yT6{C@o`k^{C|hO8?v#u2M!u{TdoUc^NOrcvVIv886DHAmb$&FVkJsqbky{
zDCLR$uja*Y`<(uYjD785$={sgR~B1%O~&goTC|JhHmk_^B}x0yP3T))<1Q#K%TQ$0
zk&!M#rEM}2WF*SaWrSroGF%yk3{!?J=2~*#OsXQ~bownK_&eMLYW8F_n^&JMikDGU
ztll(VO25Z)lhM(n)nrtsD`eD`ktBoDKhE)KY7HSt&({=S_q_VaGA>VvN|ixVQ=XoE
zznYdNIAlgQ@#@lf^pXr;29;;Zs3&}wyF8jY3s<b0C4^~b0~rlvG?vjsc&r6uA>+#&
zp9dFhN}K5)ajLo49rcs{bB@osZwP*yn+`qJQbsEo6J<=2(OO0u8U1Apkny&RwlX@)
z=)zT^ly)*Y$ml4eJvSSr+<GiO$njIEM|Gkz+r^%UQpnu>Sf*rG8Qo>{pu)#;HyJ#2
zWVF*$MlTt?W%LpJ`07zFOb_z5FAL$Z+)u{i&anhX@?x$DJp*M7k}+Dw7#V|Q43RN{
zc``kUGI6;+=};NN#9ZRxGR{}m2+oZ!I+6vLPZ=d6x4K3!Rz^0HoI~;-%j0B>m$7VG
zRE1;7T%DYs^Q90}&h=?+9y26LnILE}H(|1jDRjP!H8Q5km?mQZlV8Sk88c+e5vy~*
zGX<C}_BD&%5aw|gJT;f$%Zr&uh53~Ef@bCV#EWDsmhopkWreVO2~84<E)}-1f>!2F
zSuXrM@1{esl`>YzpiXXT{K2>?N!nT&>tt+|u}!SIUeGNvHptj0;<ZV5{v8>cMXZlq
zO`?AoixSl}?lE7N*zGcQ$ar6*8J9RzU3*u?d#sDR7&_-zK84FM19vjPMn_l3r+gse
zL&ieE5CwZ=e8kFCP(i`RGCpBv<91~1mGP;JbKDdQR>o&ca^|Fr{W6Nw*AB`!Bx6yw
zen7^NtEutzw8I24j>$MK1Qr&=QD%sqK;e8t^wFQDZ_m`yN@je{RQI*^x&8?uc1p%+
z87Bq)=C?qY$5&!_R>m0_@utS(37-?cmT^JG_cDHvaZ$!48Q(scE909`eW`TDWoFu^
z>6Dx@IP(h4p5kl?)&EZB{nBww*h7<eYFw`W#I_&V9AsP<N`8{@vjAMK^+5es=FH&C
z8!~>AK~*&4rqJ-a3{K~et58Ytv6;7I+-9>?@SK7>GVbz1pdi13zhwL^<6jvMW!z($
zEz%a|`uBwr;s-MRdCJ_G>)$Mr@p-QQAInEZloI&%kyw;~3k{VM+)({%xqh^Q7zG6s
z6jbnxg13IksJSwU21iYDE`66eVPs|@B?wSq1#^u0!6^l&hh)+ZG?;gND5{`@f|3fp
z;Z;BZZ{bJf6pItHxUb?0o>y?*4}89^L9oYC3Q8*|r=YxoG76dv%PcE|SM5okJ}Q&S
zY2gbB=zLE3UQ6H<E>}^(OA6{K$l|Rg6uhFqRp2RjRY4^Mx`MER$_idnAoDhY{PI~r
z6$K&c5y~It`aBw{2|t$fme<p`1npPFDNO+lrbC!@T#I}|7;GxA6#P<0WA51sA__Ry
z5vStve1C|}3?b*hbf>C<cm=5n(i9{pNTfmqwUi)Txr=HFstcT?pav!DX*{@MmAoM6
zq_q_!D`+w#^N)I3jXXa^0d?{eV_Juf{VgF~L0ut0hh#7ii?mFIpC<(QN!({xCUd5~
z0$;(~3fd}Yz$hqqlhIVrNI_!-Efl;#4GLQ3`Az9_CCFqZ028vgSi%S={GkMyd~|@$
zRr=)l^ioT)+15h1m4f~YW0?;OWgB4wJ;2r5DQK^tmxA63Iw<I<po@a8!o1q0GCC>f
zEOL*#;4$aZbk6EVZ)o*<(BL6@cLhg``UE`{ygMie%EUaskAl7m1}GRP=Jw;#3g{ea
zU_LN*G=7k<is`yM&ri<`3TLQ-VbrGJsDj}NMkrXTV4Z@I3PvfIt6-jj(F(>Wn4(~+
zg0Tv+733<&Q!q}!cm+8McINrqAWh;bq>t+acme~L=TB5HNu&z#WGWe)$wk+V)lcO4
zKj-<=#71T+m?a8iy4c+eL8*bcJ)2Hbz&^mP#UT&k`3e>&SgK%|f`tmmWd1Mat`$)J
zzcGPuz6t&k1r_!BOwr{ERw!6WNd+9TRh|pie_qt)Y6WW)ux#l==EJt{gD$#W!3J(h
z!7c?G6>L(lUBM0on}sBIw^iXoLW5a6wy+*2_ypTTe0f%z;J+*I`+~Bcye9xNgx!YG
z->u*S_IU-LDELqT)8iviCY-xRgp4xW6w73<f=`*)3JxmR$JmJi-!Fup<i^=5^=UA-
ze@J9q?K;|F0q6l@di$7y;|lJw4J!Ct!50dyD!8WLO9dw=so-k`Cl#Dha7MvdMnM7X
zXZQX}_=?3s{WatS`i(k?&j}0Jlo<32tO5m>6<icKaEUb6C!d*lMd3Hq_>MZO)c<#v
z%RFS<2{@#+-z)e*!LJH#a4!meV#<xxe^Kx=9c9$7J;5j7ax~+*Fk_Sy81Nf&QcC!p
z22e83zbPnv^{1H5E_7SLEisX2TTk!@PVn!rb+9#s6aH3kPqf*>D()+Iz)OP~Ec%av
zf0;819x<Rz(;kXk<*td@ZT1Ywd`!L?RM~c;K6@8IJ{6M~;z4?}iWn8os3@QYNys1;
zRKax%sn|8aUpB!f<?5#<_>62370;@8PQ~RzNwF%5swk%7=L!Bl6a2h_h*MEqh1wzk
z>i@2`p*`tU2I_GW{gNt5si>i$riRig%Ba|^;vE%bRg_clri!;zlvnWrWmMEu@uG?f
zDl`?kirKTJiYi`HabUjmk_v0A_p*vt1b9_NB^8x9y_rKk4}$WoohlRk*Hu(e5mF(k
zP{dqW#RvPdjvT1-MXvX-uSQCRsyIa)R$-{9<JO5+VN$t@9W@<Sg{>l@!cp<VAgyWx
z=XP95%RTjyC;A+|(nRxA)QwB&G+L@Ez|7&^sh?94R3xgXCbU%-G)YDE$I0F&S)^?y
z`n6QlR{8xA8mUNDk)k3~MLiX%D$=Nj5t$%y*L75+t0=uWnnQV#w5X>xr<atWg0y@$
z?W0ysmWnL{0yBIS^;O*L<CV?QpKuz`MNPDE{k_I2ny6^5qJ@g4f*E<vYo?-LRxxgt
z8=<y0m;l{0@=p$~!{O(Z(psu$rDB4LiA)9+ZB+DE`8*)Jt)i`pZYsK~Xs4pRiq0y!
z2p@J3w3DD6Rc!1XxR;Kl@zhzeYD&5OPFG=k_nux48a&MFrJ}cro^--QKl5rzk6rcp
zsF**%=_|wtp6llwsFu=C#V>ue*PA*6RSZ%wLd8fGgH_b(8#_eBP!)Uo#+K|AIA@rO
z;VQCs)MM<1yjU!!ySAviHcG{472|035beUo=-s`wF)B#M3YsnG`aT*t<5lFS$Q2>W
zdlJ6K$r*#|44mlGSCdpsR<T6IQWaBFOjU8CkuzV#G!@fX5e>CDDrQjIV26R2#e^A?
zFjG(leYS`WL&H;ZRm>9^+p26)W-l{#fr^D<%bdH2wbR2{Ea-z5;)s{2SgvBdiVZ4O
zs933DEw{fZ`go3auBWz2cyG0eH8gCZKd3;;u8IDsiT*kj^e2x?U7TlHJ2Z78WqNs=
zSZLh>Uk&I`Z;OhpD*jUOw~B2lwyQX&;yg2-y+Xxd6-QLOr{aATpU}xFcCsg^_)x_j
zp=7tPc}C&155$maf9j*Ty|s@7fB!qtZw%2sRzdpvME_G2`&1kh8GE*oGqG3fXDarK
z$VTp0Kfo%xU%l;fUXe-uA*N8Zl#<y&=#Q#6rs9-}(<+X$W0Z{hT<qdW_I@Gomx7)U
z^rWEN=FTy}9>3xzFr&3IG_P%t*k{?Yrb#1T&t&d>t>S`;?-?K!7ulWqX_r-8QE^G-
zvvRa=)ZhVdoZ`3BnNHuTxTb;`$nbq9LUxs%;e0Y<M<&I7RPmFFUzrkOI&<%5ZcX^%
z-vQ2b6%TuA$;}+n-<S!4e_JHj@04fxzg&k2_J@i;1(VpC<TGsu?g$s%RlyE0d|J>4
z?y>o+cuB*{8Xl<lhfP>RoQ8k73R{PUXEgk$;*pB{8onBn@R&Z?EHU@;X?VZC7p393
zUy@l+W!7Y{MMP^s1{U5BP1_1+fxC)mcveF}4TUrm)=+Pf|84)knSZa%ygMv`VA+B?
z&uNI&(C$>-q8jFXSg(EQqI>#!R0|EoHI&g%R>SieN@ziYDy^ZUh7ObbL6d@RLmNtI
z=sGX}boI!ZY2`GO*HA&jZ%rL?ekvEuEP6r1iy8>1ft1hStEdI7@1vs8uV{ExLs)~M
zp^^qRt|}Tr8Y*jeP2)R)V)WAMLb&%-i9Ns1{9u-(LDryXSkm9o1XVRGo#b=4dy=mU
z&Xhjd#Yw)Y!P4MqsH(x%Fr$kT(csW6hcak@D?FBPIk{-7ARk!5tgm=sYBeq~NlMU=
zsG(e1oy@j%IIONAN#jp0wM~PA@@I0^(okE&T@8O}NY;>|VWEaa8d5c+Y3M@dXsDwh
zT|-L^LmFvyHDqXLprN6LOh!aQwKK6<;?!T0{J6<}{t<EYx%6b;*D(8d0*~Yjr;&!n
z8k%WnE+i+dulG%c(?mm44IlSR?mjhs+`yz38s5<GCU->swD@sT<N1im<jFqio0I*t
zKVu16X=tsXjfS@wL=C++B(>F0y{XquLwlil_+&qOdi-n8XUv}LZ<*|O)X+&oXALJO
z`|1=wWs3h`vR`6~-%Uez4U@U$45x>No*G7I7^$Hbb!r%-VX($`2k5JzpN9S#5L2V&
z6rXD8f!s5(12hce9!qI`N2gYu9#7`rDL&~C4a0>QLp2Pe+sk;<ruefO$J%-EE%P$A
zP4P!*7_A{kL#~D~41|Vp8ltu)AD-f8Ygm<=@!u5x+7zF|@k0Ni8}7Lq?uM>0c^W2a
z{EMG6LGUZ)#+RDv58skJNyD@edcstHiiWAg8m4QQMb9%;G_;uNzZqR)rr2ig#CSer
zb8L;wIU43__+m=@eC~0o-{C>({`0BxG@O~?RLykgkOe~i+o|!3nTKMz^Gr?+%NQ&T
zpJ-UFVFjy6!&VI|X|{&-8a8NH&7v+7y;j3I4Qp78>s_umeX38Lbk4@9K`1wB*rZ{z
zhIcgVpBgxALvG+ep1LfCtIs8D)3BWhw$%Gj!wwDaYS^h^mxlK=<eL=#zJ^gflJ{pg
zrzZvziFa%GfV+;??@jePFY%}_r)TmrIq`egi>3uje8gg$=2xHQ@73_BhA%ao(6CR#
zXBv)aI8IA69MEuB!x0S!H5_7gJxE=V6`0KgZZgep^m^)1=FBwzSHXNU+3(a)`&>iz
zH2(`G*b;Bmv|x9X?^+}Cq=r-Ur-rjk%MHn=MM`|7;UgjA&rPP}f@J@khKtkuc9VlV
zr~a=sTp&loB@I7n_({VzV&b<NzSD47!xd)TN$>OV@vk0CnvmsOWmlOT^Sy>2G+Yy5
zqQSSP`9-G(TMkY4=bg*?S;H?H{?PCz+o^_MHQZolV-uL}Hx*)ir~8Yh`!_ZG&RtB1
zuXZqr!)J7t^p=L(!mAA59Xfxy|7c45iRu31oOl-R-x}^|Xr-gIj{9u>Y)U#@9sjWT
zv+L?8tK%V?zlI_@p4IV4!($CGI-b!HrGpibPe*<oKTHq&_V08*S_jjQmJ{<4u?2J#
z420dnItuA1F~iqq_{eg;IFLlV_*}-wzfzym5v${Qp4CxQM=>37I-nzMM&N<e@$v8X
zNWM5Bp7s~l(Pw7DxzVX7N7gH;qxTHIw2m{)>JgM8nBfp`O6&3Q<#d$SQAI~c#|t`M
z)bWarS9Mg-@!JfiqK=pJpyIx-=g@3sI5+aL*u^uV4^+}oS;uR7&??KWjAz4nT@M<?
zk<&?}3o;#vLmiq9U56sXe(4pX>OpDWSmM1sB93BV9fpp4*{QaUTNC0<`r%r2i|bAa
ze3duD=kWUZtcZ>k!fcPzXKJ-|B-4jF;&mkGNYqhXN0K;IO;9?MVhmpm9dG2-t0@-U
zJ;OgcExwkH(=&YbObVpvNY&9uM`L<YM;#qml+=-~qvE853>}#|>gu?&)Z?)J{P^oL
z{CYaZjt_d{h^6Tq`Z~DNhGKUF4aD%Z{%JHmdS=jqn&@b%qnQwRai-r~M++Tq>Uc{>
zm$9i7dqbRJm2p<CR;(q@&I|%nbEePaZ=>UF?p?=99c^{A(=k%VC>`x}bkNa@@zv2$
zM<*TKbaZEQ=EZcTW*uF}q?U_ySUX*H^quK50Z4o37&bn7>P)|<h}7Zr_2?p=>O&ct
zp<}3yemeT=7^GwL*5m;~Y#<HDa<<L%ALV2mnd$#9(;v(*&GKKE<=eCTX0!ZZI)>{Q
zp`+(4f9kBj_;+UcZ)7<~X8EIajL|Vu$1M6yN4AcMIwt8Dr(?X1JRK8s<mh;3sh2DK
zaCMeH?pDJ6S$^DXKS-q6K^hdE7(ZFZ6dlub%+N8F$v@klCTy!UJ6JAAmE4R5OFYJO
z(Vf(<)+f!@F-ONj9gBq8xjN?Qn9ur}obYHxe5I2KoW)}Sy)85>*0Ds#QXR`^XN}A!
z{gxMw<+MCnrzAZ<{moPLRXSGd_*lm$I@ah|t7C_bcXh1Ov0le!?nSJ)fu5Z0Z)8wr
z#4|BA(Zg8|Gn}1=+P3J}rh^4eyj94v1h$JEF~#`m;yoSj>)5U1106ecFkN>EvB|<A
zoOSC=(uX?s=os8G_Q-61|Ku1l%YT*rk&Z31ecHcQ$ERFE$Co<x>G({?K^=#5#LP;#
zI@^E5DPp+;EcrQp!W{pwjw3oA%!@fL_(yddqYcF~SW3Uub?)V6(8-_cpcCGl<8v?X
zoy+3&>jb@VE`bNz^=TbnF$av`(M4x;oTW3vSRTeX9p~8u!U%`)wT=rq9<woq@zZtb
zB3q4)n>sG(_(sQN9anT**YT^4Z*_dfZ*|$7l9a3LGdB``q^UKPYl8E=9!%%)g8+Av
zl%E8jocYO7zX&|9dJ=~V7DrJ-OiI)ZCQovJf7kJcj(cq8I{p-rw^`%tKLYok<5T9Y
zz<=rZTj-BTjorT>hWtt5>;rN3p`iZ=`mdlr%t@dOkN;?DYV0FH3G#)JKa7%LlnNs{
zjF>QrgoAxO6GnkB3JY9N&>@G@Cmu>aQ$r~vh6H_UDkVD>eKw5e!iWu{Xc!2ico@aP
zfj46IMa6}2aB&o|HBO_>4;I8cFXomI^kkCqz1Vf>Fv^5ch0HL@ic=NBs2E1MFv^SJ
z3xd8F#t*35vSzT0x;2%T1oIWH6~@b9G)Rq_)4k~BaayG?Du=Okj{hiCSv<#oO+@qc
zFo-LqDUmc~^5JwTjHR^|S!j?Cr@z`rQ^HWg(8AcA66o)EIGq6^Ho`E&Xdgz0Fsv}_
zFzSVo6-FcsCyW|l)C|KFdb}{I3b18yRD2i-0#_4;QQ_hmN@5tF&GD(Wx;RB<QW$3i
zr&buX!)U{Og^?UaN*HNj)CnW?spP`L1t`xDyhVRD($WS0UlI3=FgBft<@XJlf=O4`
z55o`REir5$_SHCyCSf$Bg(*s-F#0Dc3<_h{G>m3pv<Tx3hJIgEr4)rn^Ds!6x1DP!
zOwnKF_-_gy-kamM45L*Tt!b)oVB2tzw{M3rAXRZvqYk7h1ntBrx_3>A(lLxqVdRF9
z7e?nWx`Z(}j3Hrk4WnBay~5}%jO-ppPXTVEDn01fnhL?!qB{D7(Kn2NBBSVmenPCj
zu$IFCg3rBdsHxPvQgl!lW6}c4hlVjMj8S2X4r92OGD5ib#JG6QqMt{KJraxwV{91X
z!&op*%MN2)7}JuYn6yFk$LNjz%X+4Uk`qRuxjqHTBr6lbm>9;aFlLAGOATdG7*jbV
zjLBk^DS~ndx@EdpaYmRA3JX>&Ki8ibM$5%fK|{DM%?V>}7>k&eVayY5<gA4P%oj=)
z2%m2k1=4s<!V;EPEoGDN2_=_?!2)FRtO#Re827_?5XP!7R)=vcjN@Uf31e*-d&2lA
zjCDfc<}ls~WBpSLH-xeADc&SfVn?#FMR2x<u|t5Zf^HKuCnf6LFy3Q<h%9<PjE|F}
zc8OE8XQu$h+@L`v&-FhLG9Oayssu)al>Co{%x7VI62{&zJ{7}BVuSmh>baU6wLgpl
z>>Gk}IE*7<ka<W9366&OJNckhGED4>qmz`+!}ubMD`9*a#+O3u49hBv6JeYT<CNf>
z7L>E7f%GdeTyVa?IRP$)aY=ylf_^RN1(vyJnBR!u<uImqFUq-$ESDzuj)sMCGmPKE
zxE99uVf@ULV2={=KZ-PdV(L$V!*<PCJg$fFtKiJLk~)MblpJ+K41W`pE$)vn{uKCb
z7`MW>9mX9oe6sFrkpnb?s{RV&Z;>-pa*vf&<9{3cCyal?@C;Nn@Gy-3*hme$VBk?0
zkD1H{3LA(rM4uNlpMm@aq7B|^TjvpD;P^O=orIXH6fjWGz_vr_#Gi<Dix_y;Kq&*I
z4LoNc)&L9?H&E0-F#}I})WuYV9hfxE02>zp`^obLN{AI%0&BB_i$X~QtcWIa{W5}2
zPFdrBAujinvneI&MFSNK=mx?DDjIl+rq1;h11}qR#XuEG8hBO6S2pmP0cB1?B_rrd
z1g}5ULoldHkczziG7}^NvVodnj~B(hKAw}H8ql7~b7&Ya4MYSdXK~biA!Zq{1!wr&
zpr6xz$ABv~LOge_A8#PRKvM(F3?v$;W+1~rrh)1Pk_@C6NHtJ{OY^5<bNyrkY%H}5
ztexxsb;F^;+5(fwvzfJ&Gy`>vph2Yz{+DxoUIaPhQCDc-6bjcf;2UUQAWPUbtbcrc
z%4cf?4e6XlS`)!<Wc=^-Nn-=wi-e>@coA%FpoM{U2HG2V!@!#cS{Z1~Xc{<>9Mw|H
zeUgFSiZbWLv5kSYf<Iwv%-aI+B0_CXns5ik$Uqn2mW~EGJq<Kn)YU*Y1L-#sdKl;~
z0B7-fL{5LcA`(h^iC1gA4fHY4*FZl5%MGj$%>D*)4dgMt1_lbwAOm9s7|didFjU|%
zf({duFZ_lJFhbCg21W@m`srCds?wg}P%PWPI0NGa|K41m93D9gpE$d6S-oQO{0Rmo
z(tyvsNsJ4l{A`WM2By&Y*9uHEFwMYp18s`b;KYOvGG;IV<^_6YGAlmFm?bE|Yysv7
zI@iEF0p<%@Wu8xgg$5Q0<)==%P3HNF1zsZPQUl8b;A1Pf`bq<<gu%)83#>M<#=r++
zxYoeG>HcOx3Dy}{Z(sw>tLtqP%uRxpKkIg%=l>S6DD#eiEe5u--o>fif^HX-XLlHQ
zSK#*qeP7U>g6<MDd!A1*9$ezXr@q}IfcbjCPYmp3Gl`&31fLq%XP}&g@)kZbu%ESQ
zVz3E5=jZ@?i;2=E4jMRQ;IP3T2H-aXHw_#$aE#S7fp=rTaRZ+luv%oDHSh&{T}U};
z;FJJg8sO6^PZ&rWtdQS!uyWeK)safeMDHsDXPCExl`3PDkFtYP=M0=T@U?*p1}+=8
zV&I~IO9s9X%K0E6{!oCF3yr9$t*@z>W0h|Wd?(KC8mW{R9Gu!bM7hRfXcYCmfggCx
zjQ!ET&jx-mf*t+DTpg>>fa?Z+HE@G9I5T$An1EApmO=r7U4xY04g6u?F`KiAKMmY6
z@RxzV4J;h4+-4)nRqhIWN9>VIPP{fHdEf};o`HYpe<OH!(|vLF0XH>3@dhdnnJ1%_
z|DHH)q*6O4aL6M{4pH_EQ1Y3`Z=#rqI1|w(VoVe=QP{*YA`mr(D+Nt_GD0a}qW5Tp
z4+dR0&)+`JFJj_Z6GcsIej)WaAsH(u?b*CmIV*f#X=Gp?OcXcqyoukkl`^}c$l>ZQ
z?TRX4g3jl#qzOJh^wt2SjES-)I+^HfqMV8HCQ?nLnRvm(izaLn5fc?mR5bCri7F;u
zGV!tr`mmCTS4=Q848*G@z8jD>IVaF84Oc3gcumL@DqW0{JR340nb1t=CS((eiC0es
zR`F1IYPgcwFp9DMZ?qCNVVE#YSYm6%XGBpgGhuP#I0{f3Gr=+8nn*HH!-Qv|s)<As
z)l7cbjoRY^ot0)P%)kWl#|Pf4Zem&MC}uC2d?;#zR#7!g)Z)g+Damxm1SP6*)UB3L
zwN0E6Pfbk`6Mt`>MOAf7q?>4IqLqodCNfMkG||XJripqcXj=mlS+r!h;tN_|&`Bee
zB?A>YpM084v0F2h#wJKxm}p|6sld%lG&fOwRB)E5*lKJ5-Z1f|iG4Gbw}cNVKxUQM
zN^3JHpEf4mHZe20SkHS}TLzIHXcfg!a(a83ovm~*F{^GIE&q3z(vi*yDNTneT}*Tp
z{_IZQ<|^HUex5obqR_)cPZO-EUd%TWeZ(vd`wE2v#JX8cqWYQWPq80k<3<Ng=B5TR
zb#nqR#Kce&M@$^$Dq^7=6S*daKUp+e8DV0iiBTp-3*}sToQW|e#)@IKpfrrnu4RCD
zcD#vWvjdQ4VuFd4CRUl4NQao1!R?!18ca4Z#l%!Gw_=_$%>?ImZl1M2PnkGWnQmfT
z!zglQnV2nP7Mqx3Vy=k>UeZDn^Gw`s8O7F7e5x|v!~z!M@L(eAmmXUr#E2=p#Kcmj
zkcs6cR+u<2&u7lx-We4eDo8*h$yse;jfov5-Zin7OPkn2%ekEa%6b!<M7a@fFtL$#
z4hUwEZZ?DV_zo-Xc7Z+91Fvp1v5h%dsvzfX7aG)Yfm_})@xF;q88{O=83hx2C??#y
zTcqoUCO!};-DhH;hkck6ng995DIc?$Fjq$eUH8g7f3JxW{q#Arl+R4;H*v_sVG-g3
z?EFF@%YlBQl4~=9(qNg8HXNcHGjZHRtc9W$J~#1&iR&hQHSwj16DBU1_(u5oB<sk;
zSrezk@U)=Z?^goQo^$koiHo9qW;cxb+QbEB%V>p}%thHM`D{4$1U`oEvWY7uu9^7W
z#J8-$$-(90D!Yx?4u$W}^Jz1c|6t-rx^b|=Ec(gBAGylUf)eoTFG8M=NapYcyP}E5
zCZa6dH1WHMyC(jkFq=P9f<5GFfs*t6TNE1_I3d(3D(Q~`pX4Zagmc(E{x)&X#J?sU
znz(P`fr;m4#&({j%&e*L`tpyc8d}0){LcjU!lUoZ*hgYI70UB{(tH*QTPR{7zlCTk
z$o3cu1uPU4_!&W&kcBLaYnen1yb$oXT;6-u3i6!!&j@zUQ=YSe6e6dXg*Yp?>Xo$6
zXK2tWVS!ho;ua?4Pkmm{5`w-qO(Cb0h0<2wx-u44<^+!gBrZ!O!<Ewml@~0$XhF9T
zwo$=CMGHGDyldel3olz}ZlQ&RS1i10A=N^fg-RAGTQDtH7GAUPx`nef5>;+zO?(v#
zvK9PuE&moJWI?im8yxZPbsQ>I@b8|K`N1E59;78|7WN!ebPHhthz$XFS0CF##6rA<
z1PhLZy*JZ63m-H|;=kcsvC7xA6RTR_A0cZGi{?L5xLl%zY8LqK$eabSy<=0WTS&4{
zLvYAU7NDk}wJg+r%71B#k|Hnx#p+l{w@}}LZ=tS*GbzEJ?=mf{dz7AG;hT)$?|Ahr
zkjcMfW?AUHF`l@Ag@zU~il;WS(8xk#Vd~B+Sxv0qKYje4OH&Kq_pf)aU%m7B9r}U)
z5Tv`_pf@axwUBM$EekCz46!hj##m@=p^JsC7TPdaO_JJKXm8<d3*XjEY|EI|POOle
zNZP^r-+ggA3DD6(^%AMHu(JjFhoJp@zng{b7JAWC3q3?E_T4Ym(}HqTp)rgLH`T{N
zUkgj-`-3fvn(z0sFhGF*f|4_=UgAItgP6Tr6b^|=-=FW_u9G#4X`Gxm!oo-k91gco
zZd4q_xWQ2tMq6NXdYy}*48a&HxQhb8I1A$~ETAVX<XFhHFx|oo3whj~g~`mWQmNbv
z(}|&+XkilVk4@$O!bqoBm}-H}{A#{Wv1tNxvokHsvM`TH{%q=O3*6cqF^hm1HP=F!
zcjI{nGftT=WSE5W^Jgxyu-L*H3v1~Cnp87!xrG%LmWni^+GQ4gZj$u-e4n?ITFG!&
zSj8&X7SB705wEs_TZ$E0;IFf=-oiT;wpiF;VWWlqO}$MP=p}lCo}srlTi_kh$tQ;j
zw_4a{VY>xlF2uk0l5&q+?mbSl@Rx<ZE$p<gi}_>W2To^dS@?>XY4N6}*dv_(g@unS
zd~AVp_Yt2@|3uJF#Wwc}|NM3<gM8A@EbM0?FYpgoI4A%y?IAtHf_ln1V&SO3$DVSI
z^D6KZ*IeL#Y2gIjTO#$Og;OHEqrc5!yiSXpC!Ya2YvCNL#=>Qhw5=ET=b4%8DqEBb
zf?gD*&A-ZCV*mLzi&HYTC|9iDF0XXORVKWJfeU;F?mG)T``2Um$iGH~{p!(a4CRl^
zDA5OgVwf!aV&S@leYF#BTKH9f8=M$ZmmC%>!Ea*7PV)PcvlTLU>Q4)|ESzkTbXzp8
z>+dMq!;Cu??$V_XGx81w!+RF)TPS6tw2cQA{$YC9C}iVb3lG`SZN%94&%z_th#m9?
z#{Dr9Rrr=T%0@o>f62gMgHdsmVNpC|2R)PNL|niIH%L&}4yvZ8jbb*6*m%~)b9T_{
z$cz=I7)NFcIlSF^oQ>ygl(0bzL5tf#CUD6Ak`r%U;Fq+6e|i#>v4j5xzG{P+U)DxB
z8|CewN4?0lZwJlf1sl{%la5|augJCf*L%grOE#v?i+$M+Ixvq1-_{+rMLD>@uVkaL
zjn{0vZbPym+xT{Y->OMc6&uU0WQ7DJhgh+}eyGwg0Vsnn-Frfq0)`FK#yT78ZCEyJ
z8(nR5vk|f3*hsTc$A)Xevr*GVEjuXfsx}fi>)Wh&8v~mJf0<9<>NSJ%sb-_PjU+p`
z)^IO17^7N2w<P|nMq+I{=np(frzR%bND;GA1@lQ?<-P0EZPev-8*kaju#st_iH)W<
z>e<+v->GlIw~=KBeK;~Ij<kVrcq1E)1!yRiX0R^2m_gf^P6W+tG`BIaLI#cJt#PU6
zBvM=0c*6z(k4Xm;TH0u3qmzw(2bI<~+Sq7kqdomFD(=g;)VJ-R1lrm`>w97<<HaV~
zK?IJVqX;hRqO%<|YHq)a*gIQscN;xyOt&$EN^JD9G1|r$8@+Axu`$HPP?39m=}a4g
zXn>9W-0Yo<0fI6=d2l#nR2=U-z;y?UJmFfjWSEWNHb&Td9J9|5jATA6^i%k1=StQn
zCeIdy2e05`ZDiZ{y>{Xh8{=$@rvvE_8#xTtLZ3J8W0eu)iea8`0*7?PBpa+jg300(
z#ZsFjO%;Ysqt6%m3_5L_X=9d+1*|?Bvu(@~QJ5>7!_LFk8#Hg8C?AGqzSu9pA{&cs
zEM=~WfG!bE<_6yw6<2UeJl9=rW0j57HdfeJ$wFA*v&Ns$3pI+dtFIAt&7xi_0Gs~?
z8yjt0v+=!+O)NkghgiQh-m$U8#%|V;jjcAe*?8B+dp5S)V0=%`k7d;8z#UxWQ93X2
z@7uv`1a^tAvN7&tHf~YKsa!Obk{{aGW8)KXmM;=M;_#qC@G<Rdl0=^{0ruMX)W$v=
zpV`QrAA3+J+;8K69rRlk{-h>JR9NXs7Kc=R#Kut@r)_-2gm3B{v+)IO6Zp7|&)M-R
zX0S(*y6m*?C@1XTQpn?^jZ*?MA9^nI&)9r8b=CzN7j2wnhBrw%$I#SFJa6M`VP~21
z>0R$-(BMm=|6I0l#l|-xx0&9xAE$iF_~v)MBQqm0WmFt73+Jk+{q|dwA8h<+<B^TW
zHh!}4GkY=v7gP5a8`o{zwsD6$wQ<A7AM}rn-&k1}(wT=h?cgqv1iwGcOy(+&TU_pD
zI%OoTbu<00jlXQ%w=rp<|3va{k=6IukcF?PgzlpJKP)jD4@EZel>lAwpYQ{nKs&j|
zs0f~k1h(ai1RW!P1kn-12+YFdW+_H~a5;zs{hxiHa0EpnxEsM=5j-2ga}hL)pm_wb
z5fqKUiNKBE=h6j=MGzMOBDmdJ`{ue-Jc8#V&?3+yC=tO<LwO|<Jf^l}1f?RlaxtoO
z1TPCdPnC(Ftia_2E&r7NLIf`gTtU!^Px&tiaO1f9!D8KAtiLKWR}!?cpsxwa<z5${
zN(3PRBtd0Cl?Ybs4IbgGis8@Sc;N`%nlIZCL?SQ*ek)Hl3G!r13|BAoFI&-kVCdh4
zWIn0Zi=b)*$q}SPu=%vIwoUzbIxT|42(GP7rRJIuREyx_p~=-FNQ&T-g+BRTFZ62&
zfg4|@*NUKa1Wz8_OZk}C;L&)gLR+H<{#fXzMNlV#^a$!kkipn3^6LruAW6>@p!_1A
zOdeSg)E69I&<27w6qIK#M`tyT1aHuIG!dX_1dWRq<gf*|AHk6bjz;h%w;4fh1bGp(
zj9~Hy(Ssux5<#m7T1U_(g12dH1id3@%jNRx9ZG2h=f<~-pnU`#c$CtNMSkWYpP*v|
zog(Ngm|X<zDrl*?u{_&N;O-Ih5TK`^<PUk|^bwl-M=&6Qz7h0`pxq*W_#*%2*m_)X
zU<8L7`GX?(Y)w*BtAtsL{59`o5D$%DbiIV^2*z=D5e$!D)l~c8OnXEG%*OB9X(J;T
zB`}AhBN+1(j}@TP%ozHAd;~cn8QR$Hvc`HZU*R*9CqytYf*ldO8^I*{B!Wc|ERJAG
z1XClJ6~S!AYmq-Kg6R>=h~U?EllCq0zh30ej06u#zFH|M>b<1thvJSe^yWlBI#1BK
zf;!(7ogcvhI=M*FLczI^nD9yEBo3EEu#}o3_-&ETzg#VgU_%6rGPLE)Tc+H(DE=j9
zW#oVVvRNg-YC+dTuvUO|g02_z$-iGW3T>NMo8{|LC+Ry8Y@x#w^{o+9SnO|O!YmH{
z?6W<>uYH5R(2~9v!TbF5K7xG_c#Hj=5qucIo(OhD(5<A#V>i3O3)%+}_=|l49v?C7
zneY)D`p2cf#Y<67_<JKL^RIiOgvKKJjD^-X`d|e6*@Auzo+W)ifKH43XWo_%G0@EU
zc=@6$Z~9d_M(0HEJBuQM&m;IEf-@1EjUcm;_GJWLiHWIiq@IX?^kf951UM}yITWM*
zSLa8ai{N|&Ke1&+@O1?Fe@MT?1c=}Q)8>%ETf|(XH|iy}E0cPeZHhk0NW99-|5W)l
zg6|?2x!6bZ<kd;u%*8&R2Xsvcd@tw^f>QoR0e-oaKBa>G3-cj@8xdR=d3AVwT>eF|
z4>u<N7Qs!y`J=Q(F>=VCR73ldQC{rdqJ=F}ZCAS;!J~rm9YF~;Hj@92;2yW{;7bSh
zBX~fcJ80nGp9n5xN5?sU6SUcXBX}6Wf1DV>;|K~kDCi){K|Tlh9Yj0$V6mUN-sKM|
zC)`c#zut{;@Qj07i~Tc#|G06&nLDY^F7XRFc-Fyl4hlOc;^5UKKKa#`_>GtNu?{M3
zNb0%7FXjY4IW8)we<rJ6Zt%m};trm7pgRaVK>?O<@S=kX4oW&W^_oRaDF>y+sWO6+
zQ`SK_fy+PTyx`!@U5TeEI(W%}MB{HuFFSa}!30Hq-NDJy@~aMZl#^d`P@|h%Nzlp;
z5?ja|lE3aBsfvT%J<^I7l0y!%V&w)EW!Zt^Ky|RBw5&OJTvYD-jQq?prSe}=A5}IS
zm=5YY=>NB7Ij|k1I!JR6ao{+p>7bSa*MY~i9ONwV`@N)lv2u@1PE{vJ<9G)N0wfAb
zPBj6l3z{To<B3sAc1H2k&d1WU`A%(a;kv{lS%4JoD_!QW4p)hl>pIAAknSLNyS8dr
zz`uI80BNR!dP2T`FQwQUa+ZS@u3V(Fe7|9IcR#wJgGLS}JDB32v4bWK1~?e#ps9mq
z4&HXq)<JV8c&>UYL0d3w9K7k^Ee9<HXVDU$XLkrnaO;sw+S)-IaW=c7&LK0corBH}
zx;SX>po4>s4h}5w$?xRgk^pxF?aKUF>i2f=Ycsu@NKwjk7sDQc_H@w8fxOgDUh2QK
z)TdY<2Ytn<euDNFl>EL+{Xq`?O4Wus7$(4A2SWrPv+Jkzhcms~#f)??%E1WgETyd}
z6HPjrNv^wN9E^1^b!qT(>yO&Ske}^foP(E}BoL1mGC5)vhq(^&p5h4tOmr~mDd+o#
z#ilx#=3t?NMGmGj+v_T`9L#nw!@-uN{)V0LGZ}~!?aJ09{v3Lag9T1dW&APcT-J+&
zBTN1H4*1*hYutE-!=FR*>|$o7gS8IUF%#nTrGl;!beV(Y4pul=$&z2{KQ|_h0wtFD
zq^pI%8bLWMQqWoNU;|y@;6n!+9c*&2&B1mDn;pEv<SCN6)q%0h-{N3Qk<<ap{FG(>
z+sk|czL?qJ;9VN9%-`kUJqPboN#WF;%$#L@^OYG!k<>0lQfCOf+rfS@k<<4$_=rR1
zfP;@6eBz+ea(^E)ZDqz@2Nd|!!MDr&hhnX`<vx{sMth2+7J4@Ipo2pWjygEz@QF6q
z^^JQ(Xr^s7mit`st>r##o?9f9^tiD9bM_N4Ji%Q%DCMHGi&G9x)5#8QJNU}M8LsHy
zI|pYSoD+$6!NGZ!VQlo*4*D(kW9vAJXGAUTl2Cn)e(`B$USbOp__Cl^p7J^CK_l&|
z!>7HtKR8If>Rn@rE%(0{bW4u&ql2Hs*`HZx3!^Fai-YTe^Q(iK0+4yb!EaA-pY_`B
z0{<cCpHKPQs=0R@+;tG^qNt0%9IRRH-*@o9!M%L?-=q$H%%`9EAd2)K2mdm4T@-Nf
z(7}J~_Ac_d*tOh$#KK&qJ*G>S`^T31-!1n!<Z)Yo{BCeI+6DPBE)KmM|3sjm3#{;q
z2wF(U6c+Tg75=j>o)ehbIM-X@7juKh94DJv2^Vn!Lr^k{yLevUmdkVwOS+)g(WY^v
zWn7eX(ac42H|U(@T&UUFD=x~rc)`Wh)5?o3UUIRhhE80;MMW2NTGwBH%;oT9!OvXb
zm)(=_s*6f4D!X`%%3Y+mc-=)67nTc~%Dc%S7YdcTVAqvge#9ZmE(Wxe2}V?wHL?2c
zKP6(_McCz|qXNF+!W6hv(O?*H;m{keM4#!cxGwfDR}#fUTJ8x@RnT}B2~YV`ipkZU
z;_3n<30gzYnu696w6=>KF)~%9x=3?T*F}bl8^vnWp#iS$xN^D}p6e}>ndw3=E;n}3
zMC_=Z(2(V#VO6=lz`lzH0yGq~k)VmYf_E-Fn!30$K)(L3)Fw@?HbQRU;tdyXx_FD=
z8RftCqubJ})!ddYTDj=!qMwV_F50;0?4pZ{3tuO^?V>#sz(rdZ?OY67;hz|nFl&Wh
z`9i|ueh&X~+tEcQ7n@i3Cs+8CZ`NHi8arKGba&B%5$~>bqYYy-T6NQUGH@3XeqG`B
za>2QjC+_W{j|&1GFYV0g&tSP2;$o<asMzR%Zt#j?u%LqkjW4Yckn$KNz;Gc+G0KyU
zaxvP)qy$V(z!(=}U3^j%d#fVb#W)wMJ*@FC-bId!S3Oknkn19knq6FWF~P+|7u#HH
zrv?|3T`Z>CT})x1J#ChY*)FEKnC4=-;LH$o!t}KJ_hKn9(?w!V8V#G{Vy-x~z{NZP
z<_p?oT3Y`hX_WkJRrEr^StRJQD}6GTx>)97ql-;0mb+NNDp={S76L0>tYQV-kL^7_
zijrSV4d@ydYhA1p0vlX-EB*B@&UB3DsV9^i;=X+nHoJI7h&5R0Z((Ft`dbAhSW;En
z;o@BvdtH3$;yoAdyV&F6BPQXk*qtsuaQP4Ggk3H^9+I}(#Xlp`c*J$oJ`@TcE-1z&
zcvN3ve@s`?`73>UblTD7G4FTL_PO|sCb>AvB64xS#Zec>TpVQc5z~*jI8s&XbU*g6
zi}ZpuN_!e9wN-sL;kb+1XPqxyELiCieD2~4!Kv9n<M0Ga+eNt|HEwwtk5g<rA{oAV
znj6`R?Q>#@i!O3IY3E&h?SkGL-BIIlfp&J(xE$BI<YMbe|GlYcSNNm?7yq)UvO}^d
zxwz@#cNf=q^EaXDR~J9HymJ?>i{Vd#{>)-&6+=Ds?#BKiI4h^8b;}8&Y}|{zAvnK@
zP?B?arT>SEKV3W!{9A(FWy5D1ydQhp#g|F$9YHDl-Aey&#$`$7gO&b0nzYjAabEzQ
z{fF(hqgM3qAo2cl@rb?GLkSO$Sq@&1uFrYM=OMp`LLLfxi1rZU;TaDFJbZp9c6oa*
zZk12Uqo4=Uv#X*>|Gppl+A6<@hi5$;8=JPKqn2Dc*a&f~hoT;edGJ>GpN&t0hd6=z
zbkN$j^NM@u&_yG^*IB2ehf*HOdMHO5{*Eo}q0=hAjEAgMK|-eg?vR%E@PdbzJiP4T
zMPYCS5An7(TF4Mo6vI)L%Sg>%<-bCc=B5!dh?PCO=Ak`T^zgceDjsTjsO2H#LGoaE
zusz5g6c2_6)5EDw+U8Zh>Ote8%QJNkVGoOz*u*=#>(t3qZ}@Hk7o}k}|8OE691m4#
zfCtyZq%N9A&h{8iq<ngNj}sF-99-pB_b{k~m*}CI0JA%2msbTfl|+*|Xf*^S_+yn{
z+e5O4Mjje_Nb!*BA(PRms-=l-KHJt!_fSXR0;_#mLQY)|8QgVS_sOsx9q8fG;I#T4
ze_ImF^~Er?UjmtBSNjb;99m@W?w~dC(9}aq53M{j^FXsBxoIst{G8-A=SEih1aDB=
zYM;lO9-l?{Kg@l#7O`mS;j8Is9aj5oJiJXmulBj|=pkwCgae6(ul74KtRBX(oqFi(
zp^Jwh9)@~gK6Lfa%|myA&9hDq4?R8f^Uz;xu$PBftNlJ6dV9FG*yaWo_etpM;YQ;u
zHcxh&0Sr))8dq<{<~!>Qq+>n2v)WI{P9q&GaNp5sG;f%Pksd~Q817+&hlfe-!PP!b
zb<Iv2?O}|Ev0}OG`B7WC>19p?J(Hfy7R<ekvvSz{J<RYh(?gyxb+U&k9wvC0$e??;
zvfAen8JET#5lnrW?Zex;(>x@NNt^DW$%x=AD`J+1*&dd7Sn6Sphq)dWcvvXZK3MJl
z&{>=3VZH|f78GfbHU1(Gi<$px{FiRW(y+ueKAFo{j2>2aSSbQQZ=~G~YMjR^!QpV^
zoV4uZ=(Qf!d8k|!uT{l*4;$!A58r#(=wXwGk34+rVKd$3VXKF29!BS-ZSiomgO;_%
zf9G!O^t`m~9(FLLJ?vtL*Z8cpuW!Y^>)|~Q!`ArkGkgDV2uOE}r9bfSA+u#jTA#mS
znWbzLv}%usbMb+BpLp2o;Uvq=!>1nhc{t+XsE5xy>}O_rxOF#{1#&>-;X%5qgO<O8
zHfxPfa9HS{cR$$aG1|Yz|J=hD0vr#vqaE+6A6Vmm>EVP20``!WzdPlJq!FKHu6j7{
z;cJ#yY3&SMIyvo}z-Q^kzhcRZo{&a*K`_7ZaM{B}fyunY8WCsxw(b=V-+B0BjsLAU
zdwGpd0UlS`KPRO9(^>n$!;k;R)OA2dQGM?~BB+?ahXMjp6htA*Mj#}ancbb;*=d`E
zFd&K@kX}RqL8KP}=}nq+RC@0n6)Py!hKSe|kdA;T`v2y}{h!}C?|kQb_uY5jd-vUU
zXExcLVUEp1ih^IbkUU)Ay7KUw%>Va1oXx|jJe+2xUF<vOjL54m_O_3A&hgYw@vjT#
z^Kf-`>Krx5+`goJ@KPQw=iyH#%<Jh_ME?&e<Y8ogXZYuSs(h<M-nBeTT2OeM>1eUX
zLg9@({3XiFhkpzCb58cnJa~(}f22xMLSdFbB?WgYNL7%g;5G%fE4W4RFAyxHg_Kgz
z`D!}j`BoA!&Iy-MaEF3B6|BGLZ%Vp?atinYHu4MwWraLF*-34mS6)GtPX4hSHPj)g
zu|c~_K?Mbsl_1Y`MIo!1T`L7EQ&YjPiB1g#RmDPeL0)w3QBY0z+3V@uI|j$}^Bq-F
z!M!59Pq4OvT0+<~Y_XptPq$YeQ1GCF{t5;tsH>o!f+h-z6l5w0C{Prr3hFBeD#%vQ
zSV5M8hZHnYFk`XTV!VGrX^^zpP(hbD*@4e;7+q@@dpQc;6>sDz;0xy->yWp-eIBv+
zE<#ffQeY^EOZTt>ony%rBqEX?{hX+RV~ahOn2<s>Xe$0~m8&43z~W2n6#qWN5&cIx
z1Q`{@7r1<p7YY_g7s_YPFC;cq;3;UQpuK`-3O@+oDFsg}cvwLT1uZ#G>Gg<$N5$+X
za<9ma=NEenxyKbeDRTPo2?oOwuXse_GYVQs)3fx?Gij|Aw2>;;OXb%(1lgUWt>WKD
zaTOgDbR<{MLqR76FV9Trs-PP~h%;R5bxDp=bBV{@d`>}k#lMGSM~?NpOp;aFJk}w|
z`@o(GdMS8OL2v2!vVuMeUMgNo2Y+17zc1a$n>VTUlP2D5(Aq!+gA^=Kuu#EZ$`wpg
zFkQh=2AhI03dZvOKRKU~LS9iYA}N`7C4H2FSNSoaMG*%Yos_>i-WjK0yn?ABnV?{z
zkjV-rC3U!E?DFr+&J;?Pcz&U;q;<5JI%`h$3<Wb4%uz6xs0OpTWzACXx`GvBofb>H
z*$TD|a#mKzWs;dEy`EEo^Eu~U8twcz(7B=n7b$py$56or1#c>NOTj7yyx(5T9q$}m
zreL{rTq3ws@$&}zJ|{CFS)pJhg-bjZR#z)nqhPHluTwC8i8oy$giTd1rEgTQiBnRr
zy;woIY*w&E!M-J4`C-mh=Do8yBs>f3!syyT&Ed{YZmx9UZ9l7TD|ko2H!4o3cvrz*
z1&^zELdAOu-dFIKg1;4fpx{FVKPmWG;imw6tl$d;UveM?`xRX5oOMXSC*rhE6&z4-
zctQ#t$a|0PmUssh-0bIMb_#ZBlzUjg5e3(lct;g{rudhD+n0K*l6<b9?dB$&(pQX)
zLCy&U-!g<0e63)1f9JU1Hwx}s>aohwaH)4vLElL3cM852((GdT51c~}?MGSNXP46N
z@8I7>e9+(dMZvEME^w*}ep7IYb7-IUyMohP;Mp9O^|Q*-QD+nopB>_yRd7y0{!;I}
zAg`W`e^xIkxUAs1f<HOirQQ_<S7}PYA3P3A{rj$YorApfB4HW3)T94zC|I=A`>uW7
zmxCQvZz}jl!2>EDRPnEZ6ctcWUPTENB~{$2;x-kjDn^*8x2Pzk`Z+vJ#l@#m&yR9S
zOI3L`x6C*{Z20->hs)`=tGGi&x(Wtx8P&hV9kf9^`>K<nV(U_`tO~tr7M07X*n2K#
z^FW7qr;58&R8?`0iV7-te^N=s-6|S4Pp_zA!?pB`sZM1Xi>s)j!uaFAyPB>Y)oLnY
zor3qOxKBlO6*W}URQ+69eCP9aB$qo<OC+^b+^_n<&(=CB4lMQfQJOPhmAtNsdMZp6
zmWoUj0TsC_@>JBP<!90!Qqe#~Q09;&$c_({jy5E}nx4(6s%WI*=cOJCZz0%vbE%gj
znrnynRfTg<5mFJRP{oI1oZN{H7xLX0XK;tShzdqplxv}XR8(B%rFYHZXG}vZ^c&^G
zg|uw%|LuY&*H+=EXriJ><gSW@ihK&Mr1MUU*Py0<q|eiH3sevb1$k|4s=`z8h>Ay5
zG*i)B#lzB_)BApklfStMKZUgr2@gvrUgd{7r@LmgRMBIQA1aTj{`qAVdQ!zxD%Nvr
zR6MQX8Sb@;*HyGq(ON}!70;_^qvBZ=omDW}+p1`%qN7-5K5wt01D(0d;{xZ&T@5*}
z_?=Wg%aIHo>vU1kRYf-y&#7RQg_C5+k-Wh9sOYQWWfeVD^b)hV6Py=S|HJsg2~Hms
z#NOP>W&US#mX}lzjbTnd75!Dbs$#T?0jmG0bBKzeDh8?;B-IZmID>_->FH(OFh<k{
zZG?)Es@$juzM`VfGLN?_qokFeN65J^#4#$ys+ghTn{^sHj#Dv7#bi+%&j6?toFF(+
za6ku@I#X0klj@{p-c%K@i8A@}Wgc6ntJooArbGyXB)@|?+jkTet5~99u9SHy=JQl`
z&Z4&$aQP|@FZ141QLBfxNbn75WtC-O`@FYAfy%5dRk2LPYI;xgGuv_%s~8@OycH@|
ziiDnLN@Np-)4OId^}W?8xK_nFX<gqXizTB&-bNL4$U98hoT`e=Dz@;*tJtYx7mr?t
z;5HT8*)%(woS)rxsQwKM3qSMr`Xl|qGH*8x&duH<8%pxFR2dR`nfz6JqT*8(g~QU`
zXHfA3iP|S^^F9*7`-**B_;}}I6+D=n^L~+&@K793aZtsVD!x*2{Brss6`!m8=z+s3
zj;J`wIWP7;V{6weW~AafH<I}`BgGfi7X~}WRD7+X^m6|?$a2dB=eP<Yj~i$Bt%{Q>
zYz>Zv?^Jxxgr=c_h96Y?sN!!P4bx9GKdCsU;ye=tkCII9R~4s|^ZZT4sU*Kg&po5!
zcW&_j=d7eS5*GUE0(13v=ZcCyn6D}YFRHktLK)z&TxM=mf+SZ}@Keuq6@N--UE_8P
zbeQOv3~#9TO9j);ZF92kUGDKBNFz5@{KNdOB1OY(8gAG8JYPaXs)jTTC8gS2K4JN5
z*HB7BX$`!BpSYfWtA=cG%e)0?#iWdeJ2aHn{J#UFYsk=0Rzo>4LIoCfxo4DrqQRyL
zxhFdZiFb+uZDt%ysi>inhQ=ClG~BJBvWB`E>S?H=p{j;j8fw#m_TMLtYSQtItLbla
z%c`z{SVOR;hI@tFC&=O0v}krVFSYk;s3W}|(D0xJekkSzjtX=Id8USdhDMtIv6mk(
z>uWf9Dg7Z0K}tFVc`Kf!p~-TOgeRhb=I54%ntx<yAzS<JFU-7f=W58)plgU~P$<{1
zZiyG>xEewlF6`A>E%#XXR{|pYM!3Me2@)c2sA3u{nWUj1uK9ayYJLXhK9WyfkjBda
z?>bx!2@Snv+<XlM8ro`Tr=gIO)bOZ=mKuuKnjLJWp}B^p!ddl%eAF%LVIhws<t;Sy
zUG9HG8ZY>m20p0u84ay8Ji*v_%X^9;q4<A=cv7mgK;@@3|Bqdix7N@`Og+o^VPeeo
z3!5rm^#4-PUPA{BFKFnYfl0d~H&H_u4V|P*UD4^Pp__*88u<60#Js|ZGgEjZpVRz5
z#%9hhe6O$byvA4kdUJ<3Jw@k54a0`{dA^s1cRHwZy;R;oG1U7=h`z+-(0HZb%Nho9
zuZ8#1&|e7U1BCGJTJ-#2?s7k8h`4=|8YCY|<02#<uHhBoBLqhZjuL!TaI_#b$7r}w
z!|y&`!vqcEBbX4uL=BVZu`tSnF<HYDjvIm&!c+~fX*i+bTMg4ROxLiMp`u}ihM5{x
z@(iY@^1INpG%V4uRKx2UW;1?H)tjSXVz;#U8s=*LKRYOy$MZ5Lg@k2+tZSi$MT~z9
zZ)$i;dM&26JEVSoJY`E!NfK&~?B;*3X_<!Q8dhkyGqY@JW?5pNhXddISc<qxgZE3R
z)!fjE!L%j8HJs9tV8Jh?)@#_nU|8Ypsg<))!zK-%YxqLLW(`|7^CN*H8n$ZKreUXs
zT^hEFaOJFm9YQ+rdi+nAYAm}o>@99R64)c;ZNYamyep(|PI|HCdm7%?@PP<F<Q8lA
zRKrJ7{aBD{`!wuN^2Kda4hTOacrYnHQMoKN57VC^-||rnpK18xNML5$l)b}pF1^*{
zi%$~E%LP6<Rqsm;UvUV&{6)jp8jdq-A@Gfc2i9ntmV4x%Ecbq1?ww@v*H9vak|BK0
z<WDb^%Uo>)f7I}khAT9#;b$IU4ZmwR%Uv5E{8hs#A>_X?r>*cvPHQ;BKuU5-&S^L=
zYL^5rXt*fE6rD#_c%6k@W`YuOmHXH{a9zWn8m<YSMtL9ahK9eGAKokYN5kJ5R<H0*
ztnjEwa+5Ay;gS3+3MnC9jZMVV5Yj@pKZH6V+!BJ*JaAhGw})`^;jB_2lompMYX~Rr
zwZCm1C=<dRAyf#VVhHIWWQ0&I1cY#7g;zF&ZKdsumEIc-^d}1SIxD@xhI;uB?hN5B
zQ8-_<Y{sGjmheiiQV4g4P(6eiA<Vedt{g%&Ayq=CN)MN|?+N)a)-IGzJFGr-t36yw
z%@FPj;ocA^AqH;sn`#LmuPt(t2SVsj7-$$mqYxepp>7EELTFMLXb?j8m0l)C$qxiV
z{=Yj}>I(^mkR{|H!ADp6Ut*cC(xYZ}2#rI?4IwXtM~~!qeXVRYHz$Ozhc+!7WGNxc
zi#FM@NFO^Oy-bO$v}^gH5W*qs4q;CSkr4C{#)U9GglGt{5c-EOAOs_XcnJJ1LGuvI
z5UddLL&$tyTe;G+LvZPhD!~IQJ$_Go%BB?Z5l0IWA|xpg%|bzTX(FU3#BcHW7FawX
z%|xHoheK$=`S5WNf<3s35L(h#Qf(c=A0u-f=c=Xpq~J3lJSF65!R1fovO7zw5Kgc3
zNZN$(ECWeeJA}|Ngm%IooRii*gcG0VP^VJ}S66ynLg*SoXKAId(NV3N@aF{kwsI)!
zF8uirUI^jB59t)L6sz?Np_jD27(#C$eL{Fy2s^$cq;Cit-YjC3rC$iG#pb{e28A#x
zgjZ!l2Zt~`gjYfsB2{kg&=7_t`P?D?H-SflP`-L_WC*O1+}<^V!qFj&3E{ii!8z?x
z$8z~XSS=<KLYNrB3WjS4lS2OYsb+^TN62LEoe&DAhVYv3X-Ua+Au|ML3eFOIUC`-}
zHkWZl9>TH^=7+E#gf~NYD};qSbgMjjmA8oFHV<U3^4<u6RTk!Rmc=0uD`u8mB80q+
zG;M7WSe}&psg+$7!s-y#g|I$^W)*^KI99E^wZcCfnR@$s!9K%+8+dYS1b2n-hMBri
z_$I;4f^6Cn!dBtil9KI0c7(7qDPdn~65kHt9fm{**FtzVguM)me=;wH@LmY-hwx(v
zKk;a+@;(UR3(l%a=?_ErD1?v2A^QZkjLh#_khNd<Cn0<q!U5s*@Mj?$O!7lQ4u^0g
zDLE?S_ks53LaMJwW0x-(QD<|%63Ojba*y#uhj2WEZ<4*fWh5v0wiBgJ3ja><d%+))
zt=`;>pF{X1gw$5KzlZQ^2)_wG6T&IROb9bqc{he<@;+oiMvyuUng@B^CpjC!xe(4X
z?CFFd!HZ&$^7uXViRYRHDZH{ccsYbCEQ@{qhmdW*l)4^*no_R&vAQ>Ta8?HYq{D^$
zB}mENA@E_vB>#l)FC(W#ASH|vVU!G`S5N=OAT{jgz`;}e;Acq-`(I$YC5%#G1e*s~
zN(;F)jN6iuowsD&5k`6#J;LZ2Mn)KA!^jOIFN|_wAdJi~0%4R7V||<4a$au5FzyWh
z_x;|xgj5iGV`y5XFzybcau`*@s1wEmVN?y{{u`w@lY7Fr??$PrEdteKhLltnQbVw2
z821XfFWFivjN0s*>`r~!c~Fdy)TQMXzNDV$_qvfoh5B4k*gvp2VPu8<?=LkBqmht@
z!e}7m&qJ9jS9#xDsh2HtZXAYJCG$W7|BE_vOPBqsus(Y!VW?p=3uE5JvRW9SF!Je{
zdVz2l!`o*u@*}j?JorXU|0wBUAERN!gnayYju8ei9)>Bz5~Rcy;t0Bei7;v|4zg+5
znSz2a3d7j)cYYH=lA<u0hVlL?&kN(bGX)Q8Wr@wh{=Ln^VYCS2kuV+&<JmCUhS4&N
z$HI6rjHkGwwMBccT94B++^Hkx&K`N+uHtVny{E%?CX6<;w!KNKFsO67cV27unqEXn
zjn&@u$8(g`UekkCyD-{^(KU>2VRQ)N@*KBQ7@Zjj&*ycdhZ_d}t?o=~=^kw9j(M-B
zOBh6s@?03*!+1W77s7aWwO8v2eQ>F0r`6v69y!fQ@qg0wNP30wVi+|ds2M@;F#6DV
z7+1o0DU7~hd?^ljIgEZ`J}w^bhtWTb0b#5OV{I6nvg!}y7KHJN?A;*2!C^G1m^p+I
zd%50F;lsEW&p90{XO0MCWEe|CZB!VqhA}IQ*QGi-j7dVq2y*wwhA~d~_@rb)7!!pz
z*_K0v$-<`yP7UKVA=AQ`A%qIkc@oc;C7GF&th`ccc9Jg)V~+5-g7cE{`9c<iq1|7a
zeHSI=Z-nt?lD{QnahT81^}q48G$~&e#&Y2+1Xl{KO17@%i7w;YY(FMt9aF@mdOLW8
z!+58B=8Mk-HgF@J3v3kJ6vk#DTLiZXvUOV++mn27h0L8|c^BjS{><HiBzwYmTlhPI
z?+Wfswsw9X<*^>Y4;bxX><i;VMrn`WM}muvSiO4(Gv9UgGp^osJ`LlOFb1#o_^fzV
z4~UTDU>JvlA5Kb+2ss+YXF@(t%D>?1PSs<VufjMM#@AsSXK9l*xm+s0hyP6&sl$Um
zg>fPbR=*WIDfpe>_kuqN{wR2`O&T@%4aT3t_$7>AMfh9T|4!p+;itqt)y{<RyU5Q9
zUI^oykitdgd47H@m&z^|MfsA*@BgtBE&mb5)iB@Iid!SN#)ES(<wh8Pg>hYS8o#Uj
zXV`xXILY5(+>}gSDuPC9n*I|;N(3b$_?JPo+S{<&`)IXSGJ@0ypNErqO9ZnY%k2L^
zW?BR(wKIp;$?V)LGrA-A(fN8OS9^g9`fU;19zjL~4-82y6Y=v&dc^;w&m9qeY4jK|
zJ|i#VbiJ|>KhL-OD_AZ9L{L70J0t$}rK%vwT@h4B@`@2uO7goSsGQ_gA}CmzN9B8x
zl4=oDPx3c^Ds^uJ_eIb)f_4$qilBA`W&~CQ_eW4C0zHB#ry9Y75j5oTBd9C0t;fYO
zjg-sb%m*|Jwk`|?xRz^neZin$Rs`2qdk;~+S+IdfsIZN%rMo*bJA#O;u5kpcvgAaN
zD?Cq75mW^=!H^&|!x0R<$M3?Eb=SZ3_;-m|1bzSXe~>b!u)YxiF&;suiJ2sJ1Wp8Q
z1c`|MmyOX+<}ph7%-(#uMJ7;hX|OPYk^k0vID#LiWH*VRD1s`tWOhx<Y#Q-H+7l#c
z7D032P0RVe8fX#0BN03rLDsB7{z+lwnVgmpJQnf)yzqDg&j@)!kdh~bJQcyyNy(>^
zQd<dcE!ZY0f0kP?t}MH>kDx;Y{UYceK}Rl!W7SG|IfBj+|D#;5i2sfKE}ZilHbbau
z1l=OYFB5o<em+&NyCBK)5xgM0M^e&LNM3sCi^&-1Eu>EbFGc*@6^2S*kre-Wj&V33
zf`JhXiXbPWRD5$T$Niu|7UhE@7$QC#8o_YJ=NfOAR4bLujF-)PMI<8x*)&qfs0dya
zGCC<A6Tw*F;{@mN8_sLIi4jbSpq`FQ9g`!N5<zJl{AthB2wsceXat`{FfD@V5iE~j
zMZ|BK5y2ZmW=1e8g4cNrrMgIPj^Mlq<_hU>Fppj4N3eiSKA3mf%33J$)YWN}v+N#|
z@+SAUlm1o&iy7)`yd@DVjbNFm9UWhmI!}F-K{b+<5v+>fLpnBs)e)?TU|R&+MRRQg
z8zR^k!8)m~k3jjkY_GaO8f3>!5o{4T`DP((BHtQ;AqqPp*crk55tLb-wkv|&5xf(@
zyAkXW<+qc4t8GaPsvOJ?1o!fcM6kDS5%nJv3$)f#$OrVBO#9;q_C@e%1P7%1{s{6a
z<$S{ZUE^g$Jo2=)iQ?%UjNlLl9g}i6f+M25fqw%$l1`g{jxYOp1Ybn(djw}Ad@Crv
zis07>ev9B(1Ybw+T?F4paGX&s9qHr~+`Bbi`ufC4W}9&--*N}nB{;X{oik|g2k!X%
zEH3|NhI9l!(KDrTC}(;8tBhZywb(_cA~+pEn>yN=2sZD~PVdmTa8_A3?Q<NCnVGp)
z$At(kGPg4e$s8{6$Oxg$%Mn~*^zvtP>l3VAl_@P);|*Dp_%nhVqIQ$(nqjh)6Z<QI
ztF=o1E%I+(Dx~BeTDzokN+ooZ)G@PC@D?2<R;Q&(pr+~ACT<@vwJe*su2MS4Y3)`W
zx9PZDM;RUWi}D>h_;&Y7I_}nyq2urxubd7@Q(3XhfoP<>jyrYSrGwi|JHM{+D(L>K
z*ve`}j=t6pDwfLB(NSGT72S6fB~{7SdiUsfpni~{QbR{g9kpeMhHJfhb<`40&HHq4
zwj7Ro#L*e9v|mSBAJFlj?)$vhW?gAzmw=A?lt-~8ilB}x9q;S-K*vKm8t8ah$1^$_
z>S(0%eZ?r$k*%Y#?*EoEESMu0(vhnpPq?BZ`o5{^xcHqu-7O&3M3PwRvDfi7=@A{e
zjy($tqdIKqLU~MwAv`W<3R=n5{Jp78lDj$*!t;|7<?YlaNzTVt6bXN&L{?KFo{nZh
znhQQG*g}xw((<E8-crb8f{*KXLdcWJ)~D#Pw^P}rmCi?1;}snvq^XV02TG&2j%RhW
z6-hfCU6Q@p>*yf7qhP0`ymQi8SCMqn@tlzEf;|ME*YSc7PLkuY^yL1Eq<AKMgi}6H
z$4kQd3cf7ZFWK6k(VOH&=Q0KfA1pXTaA>l1n2_N*YHZeMcBGC`IyUOqq~lc`qjk*E
z@w(`Y5u7AAR>wFY>@r@*1mP0}i)TJL**ZnXRN=2BCDU|F7d|5?nW<yN*QID`wvIVE
zmgrcjV{Wo_k&t<U^92{^SeR^$oXlXyH*~z2l)R;5agrCCU8ZA=NS6P<T*pe`tCEt{
zI#Lq_G{v%3gzI#yPquE*QM|6rBH1mtCE2=F$Tl6@lad`eb_(Am`0{<e<vq#Pw{^TD
z{9VDlg6|0y@A8K_KGG47!i?f$9s8JGq9`B5ejT6aILFhi<5NDhMaTC#evpm_b$qVl
z3mu1~%Ha;{IFjT?b$lk=`p{(4m%_hEwtgk#n2xWLlH*KzXZ;;HA(C$ePYQk~SUgWE
z{HXIK<9>2r`ANvng1-p<nvD5VNuAR|&gl3(DLJd-UK#5G6NrwRI{wjdDcO2m$7SJH
z1pg4cDtJwh<31=c@F%ND$zMYLW~BY*hsVD<Qlcmm{coNnq9~Q*C55C$`Kl$q^_HZ(
z`R{(m(ox(hlG_AtPqs4Z?hszHik==thVZh2<&rv8PiNd2#a&U<iy||M3Q<&yqL#E)
z60DZgyjw`+D5@kSRfXImNLN=EQbVw&Am?^(6!#_h#B&+7h2Jk&NALl`2L<a27RT^Y
zXG;a5XdFe32<!7IAS6rhA;AVwG!)V(ifkd=BbMUhmMfC5V4fi7qX<!>(2|l+^uJRR
zNlJ7fQNdUghLB>LRupy={i5g}g%gDv#WPW~iXtI8%>+40zK{aJLcu0c6bWf6NF6VV
z&T{E#9>v2VY$5o#;3H8yn$&C=#bZg{=w!wd!k<h^o)Yr3AlKeHif<p)J4De@By9wr
z6>J+tJ0Tpsy%6qNrzjfTt5edQ^GUXLiK46UZi3GV7RUedQM@449#QlW(o?XPAnm*;
zq<0jT?(@yQl$7_4@<Hf+^e&cY9}vaBDE}#g`B4mtVsI4GqnHuJkSK;mF+7S_M0r^B
zzpL9&@zsbZMn*ANnnoopj~DW46r-aUBYdpjIKkrVT8tB-m?*+Yg2gMEBAgSO8pUhE
zrwM-ii+{KdZA+giRR$!hv!Zxis<Q>>2vR;*NKesOAbd#_3xzBad_(qynr}+=Ey2Zt
zzx-ZmZSCOFD3(cec@!(6SSfr>6l<ecC49Bub9OlzVObZ&Mv;)O7qWp--J&R^bJnJ$
zocp^qifvIo=L+A&usw<$Q8bOgi(zLJyP~)|hRQMQj$%&~KS%LP6mLu452N@<$UB1X
z3hs^KJt6N4a@-H1=<%!XrH`Z77sc069B2NI;uBH$T<}xD!%-X%a!`<64n?s^BH>6<
za#YA?QM45~b-sw=%Vg_ULXHV?H@}IZ<+m9plC7WC^@HtOt~848qWE6qKMMYk)S>Hs
z5?*{=_%+H`Mc{fAe@1aCiqq0`N$^Y*zYCdm-e28W;UwpToR8vykc)!v|K#73uw0hv
z6~R9QuSRiA$WNzyJ2!;?6~*5|il=ciijpy;#_*2_{}oJ$`6s1>;AH8W7Q-zul#QWW
z45eZyElqa_-WtR0LT(deM+SD8|KaILo)P=+9tI+*AXr}T&ZN#=G0c>+MmrTnSSi_y
zk}5IOiy<?HsxjOXL$zeDT0*J|))1^IcyA2%31MF@q_*(;1?wc`55(|b40WZ-6I7gO
z15(Y2Ay-KK7=l8w1Rsi_fslrR*)cQ{QhX)lSdC-<T~*2RVu-|`$DoJ~C29;>l80gl
z3oqV|sBkj|D~4E7#}E=1EWSM1#XJT_h%1;7r2XAz{OvA~YN22g!J-)W$2vAOi=lZ8
zb7Ghq!^1JOh@nReJ!5zzhDSxSvtY{@o{r%e;g1PEF8D+YPYR)_r(!7139UrZPOx>d
zwT+Nx1=|WXkdSU4LkFpL6r`O_F>vcix-dWdq>^+M(v9{--d*tdr2Y#+_Qn01#$GXu
zh+$+5FUHV2hCb5NKZXH9UJ~pZ!^=Xb-%kkd=LaSwLt_|}<bz`vLW7Q<=!%y%EQaC9
z)>nl5bT(sD46h2GA~-sR2|~sQvhUa!#t9!U`2U%6Vhod#I+MA}S!JorGBt+RVwlFr
zk=9vBof$k4!i%?_ny*WBc2YPmhWRmk9K*gC7Km_t3>#ut7{j6%-iYDN7*>h=EkRmX
z7Q<rUO9Yn+7TaGge1+i3|B<uT>KN9DWUU}2>;6Y!qwqa3Y>HvC@GUXy5VBQ}`rCwT
zk746kKSXyX<-3IJ7UV&ATgW>xyenj{;0H0hC**y>;z0UPI8A*dr1+A$KZZ}FT6{tL
zG=>9GJt+8P42Ogqj^T)qqk^9ce)d1v<_nP&U%S5&ek_KsV>mASn;1^~kHWXY*GcaB
zK87EdCk>P~@M8==#c(Z#>oNQs!!I#his9R8dYxa2evRRD3}<5aErtuPH$4@@wg+^U
zHcr7RrQr7%&c$#(hO-Qe^BL){H!TPkT#&vb7lq8>Hw|hBec_|}<ruES@COg<gZiMe
z1y@CZpI8@F)Boh$c=oI6sfMrlR}BBgkYey1D+PbEmtJs_`CkZmZKZ&ZqAFpaq{08Y
zX?)m}emdiU^wLHRJ<Y&}YrR_xeD|SALW8#&xXnOK1NR!Z-9Q-wcNwT);0}XtCc>TX
zo8=AAV1|Km2Cl93POkOJat_sWa!wKkl=}*nIR#w)oubJu6%AA}P~GtF45@jyfvN`X
zF;H1LQc^`$K~n8OU!j`e`-j%ZYluM-n!V3JEdzB8)T3q2ZJk%gzyk*E7yjvcrmw%w
zBVN2K??D6Y?<?TNl+{cF0R#1AxE&`mf`*@w{6VYv!{w~=8W?D3U~5ZkYl%h%vT3#e
z4;G-YfgA(*HVSOy8pt#7dmLxuPz<OBJ~eQ_@c+-N8JJ*TqJfZsX>K5FAYwo_5H--n
zKvx4X1BQX-1|BvLH(=7HfdT`T0o#CUAVCkeN*OcUe<rqL`0qR5>mK$G@vE0!4pcdm
z!q-3)8fapmh(nAB^m-*gNmIjrlD22~Z;o)s`I2S^*pZ}#fkzCqGSJ$<qXt?U7||#2
zq=BD@1Ri4;3<*48;Bor4ZXoUPqNeM-RkxJoBix@d@U($vM9#MZR2mjIG%di6Z45kX
zpo4*q2HG0_%L3Yw@LA<U0(<%f+8f|g*7?|WA|K_Qc)V!XtAS1iI@2K|0%u11kA?4M
z;5h^R4Gb{Q-N5q(dKl<w;GwaB7YzUD`fb;F^O~jfERomC@ZTBHn+p;0qJe(vJW5_-
z_dbD_4NP9=jq4xi%P5TnIsbklq42<fz(50o47|d{8faW0Z?J(O28J3qJjQ=I{V?v=
z_y8Yceq(T8xPet%HG7TsojlUOXai#m@GS<T47_oy;8k$~Uy8xk4UDBvh6TpS1o-rR
z^6^~qFrQ4~=mu7E38(5!F)-D@TLu;zm^3{2nt@r|8t#{Y=>|Sp=glxMlW{maNY4N6
z@xOi(hN!a*%rUUQz(VOYm*@0|I?wR`7uo7Ya6T8(GH)fH*nC7?WPoIEn>3a=?aRGk
z;7tSPztLD|t@FQ`OBf-;Ggi>^|7I>Vu#C}_t1Xx6N1AqWoww4!g>_!qdT*5oD@229
z46HS<&cJ#DyA14RX&Br<&-0Lep1aY&CIg!dY%#E%IiXKs<@MfH1KXGhdwP97&HLw*
zywdyg);f7R3<TGE74!4r>;0GDbYGRShmr5(eZ+*>F!(lO#=yG<_A=q{@Rrs0?azD9
z!21R+?#tVLH21{eT#^rx)sGW-RQTAyJ_Gv=d}3hU(cIy^ntZcaKXoYg>XF>s#Z3+x
zIK=hFQ545v14j(p8pmyMjH?|y%A;-Iq=C;2d~V<i!xyp~Gw`K>VYP!_am$XRkUTgp
z<?CeYaRc8Z`3VD$t@qgFI|JVvxNP`u?EQgjVFoa8*1%6ZN(Rmt{*$KoP^n)G{AQrn
z$12OOhX2T^&ssJ)WuV)7@3etY>%E2Rz3uD$cZq(s-a99~F4E3e^}OJPWM67tVnWdM
zteGnDij4b*fvZfm2Cf@OiTlR?G;qVfO#}ak@xKgYZ1DazaBjW-ge#Wd2Jc_ynGODk
zqd)dvu}a=*gI7YjmlRBmBTdLHf~Df<yTL16EXm5{Om2^(OdNI`i;e{Dh$B6Y9JbC6
zWW-T6jtAm+FphF@|Lae8#&K61i1Pu?DBn1fUzF|rR0{w9czeV872>EE|L<96tWsDh
z&Znto-W^9}kynYMY8>|nuPIn94nC=dn$@LRL-1@c<=!~%i=&oQ?-!&_Z6UKBPpy-b
zjHy?@ZXEUEcqonrBFv1VejLF#0vza4y{x-3XO_y$ek70;$HcDwJXs!(XEu!c4-0A}
zT_)sb^8dEk!W#=NEARhDH8+ktsVZ^A<EZjzfI?LynqWvUEEtJH7ZMeuW-Jav_~?(y
zvTDZB?4eAHYSVKv&ex+gy4s1u6`zwQ;>Z_XAXu1`SKF4}lv~g|I6aOTad@;7NAoxy
zj-yW;FU8R!jz{9?5J$&29*v`A9M8njDvrnEc%1GH=}*M*+6Hgs2JeFn-uD~$LIgY&
z$DbR#J2!ey$N9}eou%GJuXP-a;`+03w2h-p93`51y(bj@P*!gjM|7jtUNqU|iH#oh
zX|_`wo#W^h$8&LXks+83y2jCSqep%6gCX6|4{`L4<IRoU^Kl&5Q^4|qkRH@bN_xfd
zVv>*9=xyKV9op!zd*3)l#qnw!FUQd@j{b2Bh+}vhuf#DhjzMt@j$;UY7}m}FJnEm?
z=r3w$9K+(cx5z8G$)lWwoUJ3`7%8iugsW%}*6-QGXG;5Na4eHa9Ao03i|91sc+s2`
z$7CTB7(Yo5aQR%|lsKkx)p4kse1|mO<V_O=PKH$uH#3e|aU5dGisSV-W-}P#*bv7Y
z#$FuD;#eN%OG`07jyLEZsvXr9#IaDwx=AXlEQ_SdHv+%KBiSx(372q0?Yzlb90%Vl
zOgS}|vR6?KU&*~9j+NYwBWmsu)$HS}ies%btrpy(7p{qe`cxji$y>*vkEpC}jAK(A
zpVI$vY>s1#D8D1PHID6Z?1*EVR5=0m<*as!9ahPA$qaW3?up~=;t6l^*z|53d*k3_
z*o)=8INq1}e;~+(d?@52!H?tEmz3`p@<|*_XjG#e=R!J%J19<|<VYMx<M=L)@8kF^
zj?d%xI*#LUd=bZco4hKUy|3c<lC7IOmekGOu{d8k7R=u4wb<-^!zj8v_e31uGEVmD
zV=vm>HhZHtdy{kZlcM(KX77hMevISSIDU)cClUU>*-PKzz5KlPGuOD;`z4NJn?2e*
z6~}4jz3)q%DIOv#xAqoaPHXIPE{^kYG_~MaxDdxh#+b>MA>vXTm*cQZ*e0&T@kbnW
zOgv!XY8=;?U`<poah-=Wj*=!)O|%@Jbt8_Oas0yrK0fO&!N23EaUj6zzs$_hyc82f
zW3pKKn`K!o!H&_qqK3gV6StViFj3az>oZW=<mb(-J52uCsOVM`x0$$IBs3M?;t|<e
z#>69AJQ9|46W?d#B~}H>nfQBepu7pHu?iDi+T@blDH00J%0(4TWWE<Tz9RQN6O~N9
z1`(A_R54NAL=9=G%B8K!t!84xq^x^PJpE|^X*rY-?|Ls#Q(8;wp?giR%E=IG$?|KP
zczd0CzX=*=>2M_PK@)XN<eJD6VLcNKO*G;tCITkvn>aT*>md`3zf1{o^aFt`6Ayiv
za($gT^NC;s@zq=F)E+BxvrW_<={0YYoBnPfbRy8$M2?KubBo8SVnQ{cnF!JBs@!dd
z^C&EyL)e6FB5I<2JTD@1;Iuht%tTzqHB7vo2vPFI=qyu4jIUF<L5>O6L>m*&nn;+)
zr?*W!YNEho(B?HY;h88D-b9eXA`=U4B)E!ZCd!wvYy1#+etZ^5bE!To*g}vl<rcIw
z@wka6#Lth3Gf(G~d(y;HCZ7K|r(HSwX>R)7z*Cd5TA6sp#Q2F>9EBb0eU;nV#Eb29
zlC~z=nRv-WU#`(a2NMTY=Jqnt(L^T`(^@+(nCQ$fFhTE~-e0b(*z7LYO^`!8$2G1B
zkgz;YVJwSb)5F9)PXxJ&o)QBjg~xJV<gTsA?QNou33`mB=RWn<x<xOW7-C|miGC*f
zi%SQH<{%RT#o^TCkD;2?EE+8K3)%&Tnfx_6wyew@W#ScC{s;*_M%su*<wgqUVpsIe
zcvaM>Ia-L<FJm0N!4qoYvWW>MUmuK}Cf|*VNhV*8j728DEsrTCrgA1GW}Ez(bKz?y
zW|){spGb8&yHv^_v&GAt%U@v!%Dth@GO^6fda8W>l>z4EyYlClm}g?XiMb};+TyX$
z$U9rS1q?hju+T)A<0-6;td#%eQT0vgm{@CKor%RJmY7&>VugvNOdSKvZ?||g`TX_)
z<}w+Aq|437N)vqU`f3xaOx)Pw-M!VD-n{I~`*YWrAhKz_i49z@iLE9!^5AUsHqn`l
z15{&oZ>zUis?^+OqWf0w{zck$6Jxe|<>qBQI<n~w6KTzZtIOx_HnGRVcT5pHo+jQg
zaoEHW6YrYXYvL0VpPGExDBd^m5x2&~n_ImPOnhkaS#W_pTfJSGfz>$y@_qDhX5h+J
zugrud$F_R=>72{}$pKl^A;E)!bYthaS;ScLvPVsPX5woeJz4MPJS--@68?qYo;hjp
zg?U`XF(!&RSsB|ra+YsQd~4#Q=$tSyY>`G`y=@-NTHCxf+q@r4{3yfy&Y8@~`pM+a
zU<1FI_}RoSCVrKUL$-Oh9#7#j>bX;|Z}U!>I4!F<Bg)k0iq0}Vx$2|pc@r09AdYpx
zM9GTzBrLnOc~?yQ!Q^k@K?_$+Tr&X+<t<z{@u!JfE!<||hKaw}%R;J!zfIgU@sEjr
zX?%gk4dtWqxw9#jzv(3`Tx;!6xM*A<tH-x_X%=p={56)}?k}*Eh0+#&so;m!wQU{=
zWAAngWh`vkpG)7~VIkc@SqtUFV1|XRnfg0p3#mzif$e@5h6;D>P78NgsBWQ#h5YSa
z1q+oeRI%{vo%t2nYr9v;!rfwo9jQ=Nc;S!?R$1<`P%YW|%66}&#m80zYFYjfxL5dn
zf)vi%?$x&Z6Lh~INgW}ae_adpEaX{y6FM?21S~YL&``|Qw-B_DWns&9Z?Bt0pTD9M
zK4hUqX5h$nuh#;t)<Uh3g~k?gEM&{_C%IX4LdQkg@7ujxF*0LL8mFpS&@99)m=;17
z!WMK3Q46JZcxCiJL<s$P?+!0Ug&kgx9p2^PO~0CxWmx`6d1QxYaV^JFTnh=y4@KL8
zBTL|joK?Ps0t-blVs55hXrYOPE}<OuUAjP{2gn<R0z7@qEHt<9j)iwEK6w}|ENtY=
zEj(i3Q46artf2!fJZ52zg}D|UxA268*DOr4@TBGcq-cnRi+=>4vhcKpXDqa`Fo;35
z+-z;3jfI|~^Q>S83mq;0*G6rn+Rj3IAv7{}hu0~|U$D@bv$gQX4zH^SyIHv0B8zIz
zC3U(BdEUa?JN(}*_K@nbhXdp+y)3+Fp*P18d4CH7EWBi)uT=S)R_eSgyq{qG^QF!w
zawr_%MH^`0>mB}YqXtXUBl$T^ssx8J;4KWd@QN&Ul7$gMMp<~3;krL%q*TAFkTqJ!
zIKeT3V+H9V{-|WU@Ckww1xMZtvWaD~RHq0|wQyyJM<Hi5oesYxFx$cm3o|Xu;ue(3
z+Bhxsj(hW77yiwbASI&`{=(;3m@oRPINOfe0t>XT+yYw{T3AGvS{U<H4lTcF;Vlb`
zWjI!sSy&=`sResjuyI9yN{@BVD7({JIW@R~f#C&KTIiJ@c(x!={bH%$PLE%vUCU_c
zqerKtt+V{^*19{r^%gb=XZ78E{tst1Ti9h`H&2bow<cS+3E6I8hmf6u(Q>KmSbj$y
zagRvG?8tkYNuY`UZiT%T-ecI?xXs4<7CzvFEnKqjp@omQYZi`M_}Ice3(t*D`NG0}
z3!hjxV&SNTPw7DZM$*DT3qKt8e<R7c9kOtkv09__U-#rw^7gze3i-ugj`f+ik^FND
zt#|sr?)=iiR~C+m9ojFpKvUn)=Uvi%wD6OK6BfR;aFY49da!5DwC^o^XMr2ktz<wu
z=a2Y<h10kB{AcD&8TvOdNISnKEz|fZs&W1`vd)O`oJ{6-3ulGU&hc~FdEplX*@eQ(
z3>yn6HcHs|y&&)h?OV9Xs{nJjM8b7ue)6ip*7<=yEo`rt#m8Cy#r*8%@EsPk@Q?WX
zNwM~?aJqs{C}|_rMw*RVY(E+~TaH-l#^Rw%iM+J!JDHN(ZIrQ5!$wUTci2d`akq`i
zHV#(_X4t4``#-QMYonYE*eGw~F6n-!4Ni;?6Yjgyd*NA=1F=-FarL0a-{)3rm0n3Y
zzTGr+ds<c%avS&9Am{w~R+QpWjZ>YSUY)Z|PbIn6#(g#(veCdsEgQ9Eh7Z`_*57aY
zal#4Lu`yw%M?!qiMqL~AY^)W@k)2+qa8?60>I)AFW+ipl)X+vF8&MlEv6(HSG`4w^
zGH8}1hyMi-VV<BOs0y-Gvk^-2u#JdtUGU|*v#7vbFl@v{LZ5JHrg+Q}v;`eOS1=(+
zP5PwJMiU!N6Yvr!BC+v<gC8AuHk#R(=U~2r<~AO-QQE<+4qDiF#Kv1T7Tb8#MoSwn
z+vsQGF&mHDc;3bfG;ZTb8y#(QvhkFSr){*c@vMz!Y_#H9UN8K1ro}J$w`Q*aO-Wez
ztLL^h+S&MZy4BuBmF{{wHJ5T$JJ<;Hu?DHRks__LjV|<|jjgS$t~N4T=WWl;>1Jb7
z{oL8pv#CF*wN*{Y?QY|XiD|6%u+h^-=jqvfZ1l46qK)3R|09K>!CAycKj#o<jq@kN
z@{*0dHs;nVxS=;;wZDx4bg7M*HU`=lWMjCES8NQnF~r6&2Is&2%ZX;pPbUs#%v38)
z!a_2_#z-5l*_bB7jj}P?#uyu~+Bo)gPHI1Y#EnOD#@ZlG6&xoxUT}hqi9*;q$;M>i
zQ<4((wWdqP2ibIGr&n6Z-Sc(EblZPJP0vDYmJBzCtFZC9joCK->0o{Lkp1Hw|IKZl
zjRiIqirRc0!(CqSoEOo82=7ly-sEgMTfaV%x5UO$8~beRx3SE|avNLde;X@otduV6
zY^<`engMU)J#qUQTASqi|3v%$eA}a)wcf@CE`gh6Bm1Dr)_2=mn{8xO_2*XSdJe1G
zcwlLS3EajG8#`_6=Ej}ObH=31ej|04jj5B;oEh1pua??l<82xJ9iFV&+3yO!G(Jea
zmnU&bHVMssVB;ejAB*He(K#|R`^AMNyLTzK$W48`Q2WHjr#61J@r#WEHV)eO+QxD2
zCex9P&un~7`F4HN4;e=o(v!1UjtUtw!MFbf(^m)WE3y2g&8NiVKHW_}CRMi9RC6lN
z%Kpa2cQ(G~(zfa+r0HA1lY$=ya(|F@{m5MRuQH<0kG-FSvzjtF`&S#k*|=uox{Xsd
zPTM$d<ARMdOyf4r+R$Xn=1t1(IbY8`opVmi?&+pqZev}vamnV7W$@E@t9@?nWh&?9
zUSUQ(nb&b}R&mFxOnoJ?KKdo{$aeit8#iqHYa_+MUpD@x{~t{~GQhg7=HBE4)ZBk~
zHn-^{{m$gHX`EZaK}iQ`4sLO<>Gi_Sr*m3P%T9Gb?Az7a{BN*U!(b@~RKBxpl<T_9
z!R-zT927bz<KPYl4>@SyAl*TRgBlKMIw<R)oP$aZ?soj63I}&OxXVG+Yx(6JtZ$-G
zSb;{)<cy!1eWpvfZ>t9@ie{_fO)ER7BD|VlRR{NQl&<CC$1~V#AM%LR9n`z(AAEMd
z*TH=b9&qrWgIW%1JE$Wak8aheaKCWvRg-+f<m}h`r`Hupz(IWnU0$&2Imi@Ac8?<J
zbe`t_7%C`|EWwrg{n<8j(8xj5LCit6gT@ZR(wgHS*MaIllWLv=g$Z_-H!vgm;cM9>
z>>HA%f@?VqxA{|gv1;jvgV_~Rb<W{bPX9UuFZA%`h6CGy;~?(9bnx?){P1yqjh1vj
zb-+JvuJD9|Zelr~)0l1*H#Kok<e;a6UJjZv`8#OsppAoOO#TiY<%T+V*um+7^hd-<
zpT@Z@gv5{LEbZu@@yDe4w1a0HJnrBL2TzLRDZzKe4^*4gM03UYkH1;2m4n4o{X_Ju
zgSMQNgXbLFNRPI2(B8rJ`RNxXrfuzFb#TzpK_>@BZ{NvXg><I>g-}>}l5b?huQ}Zv
ze#hQV>@PTYUdH{PjX$>vova>Gt=YWXiw=4_80TQTgFX&kaxluls}A})c-g^F2g4Yy
z4*EM7<Y2Ia0n%}xAWa44``#|uICn})*7nA^Lmbfmd?VPG$8&}|c*Vi07mG$X;6dQS
zJt#kslRMG@$+eu^l4|bgq@A%GXqPv}L4_IrWyo?FnBZWdgQG87v$*`+oJkI*I(W^&
zWCv5Y*baUyv7A(Mo9@e)=3s_{nGUA&dOanZnP<h}oPv4!xry0)EC401Gfo^VoR&R@
zyO|!HOAlYpXO$NAPc2-)CI?^1d=~K(FG%0zV7G%eMDnJCx41hFmN?k#V2gvL4wgAs
z>tLOO<)X8ai*>L<R#&T65f3|Gk+#~wn&cWUZ_`=!O1fC@U?ZK})tb4>+u(qjeN(bF
zIas~RdwZ10{IJ!*HV4;V&)(r++SYP+waa4q+AfkxXL5E5Ve85ie}DJL5bq1VE%=V$
zyAF;-o9q?-9(~)%dbOLsUmrO5(7{I{|5)%#2m2iCckqc+sdLo9rw$G{IGB_i;;JY4
zZ+u`mOv_36zAO2Zd?wY;9eg3=)rBP~9C0n@y<Ofh2VXllPPv0~yS(~6tP?!rg-yS8
za8gLq+64==Cf_magZfN0=X(dNvV676`-z9w!N;zj`hIcnE5p)7KNr6_IK|ZABFDvP
z2WOZwU1YfU-N9M<)4@%S<>0)7KO9_@DP3@I$-!j@7a3R2S%<rnqfO?PE8GZ~?VgU-
zvSv-MG00Dqz3$*oX3HuC>kj1IknU9eONjTZ)wo+Zo~(Zy{Oh2Ei;^zR-&H!r#ha5-
zAMa){ky1I;MVgD!E^d{{-{PYFoF?t2WS4UPJC#Se>9<K!85eg5xn1!7`nkjF70|*U
z#ZOsfU6gZizl%C9;G(>X$}Xz7_;-|br;AE1?sjpPiwYv))tvH*!aL;Vtb0*E)WA-W
zyN;?Z?r~AwMGY6#<c_PFi+$rPUQ#(qO&9mNsO93E+=AZc;__bqc5cY){`I%Ei$q)N
zv&Ol^2V6YpBFn`?F6z?%&C1ntkts9p+{+4ZnJ%Ww&Fa1>*+CaiJy1}-r%wKIi>3`+
zG!)Hj7lBFto%BW`dFV{eP}N^=u8TYuEnPh3LUEzGC~#5eLUR#vVY;wfgk3~j7%ocf
z_Ad&$SctmdA>uu7OsbS0nU)<F-uW&+>}}zW3s=bYW2F*8s%>bJ@1nRDFCtU^EY-wC
zk&B02v~bZ>bUYW!7M9#xui$tOf7;DlG#7cLf!2j``XeqLmFjI5{IhT|Kef6{>~R-Q
zxaj8MITugT6)xJkXy@W-7tgq8<KkHtty~NmYxQZXwH6E9FLGY6&MeaJ?pE%!Tus`$
z=-{H0i_R`OiW*0GCBGnhxA)hPoK>@|w^IFJ?&6}Wi_ImXEM-b$b$9W+3%d737cX$9
zUeFJoFV)jU58<p9Umbe6IQ5+GpWZI|xOmCMuamMj%EyPkl$`Q6<-?&?e-{H>yep#*
z<eXhBbg{_AU>8GNjCC>2#ZVW+T#RrrlJ1g@!(H&s@D)Ll6BmMyMYBfn2vFkURUTfs
zwcrgrZ$UW_XUj{#co!2~%yRL%i-|5Kx%|2prn{Kz@>MmtQ(R0Hk~z^jP(OFWl<cEQ
z&TB5Bg&N5W?(Z)-9A%~p-X~KSpW@$#%w}x!T0l1*ROh&u>tY_KdO%H^r_Yx~@$&-J
z{+W=?6LDM1)HisXU957k+QnNg7IQ@|mb+NOXm9IlF6CmyOXR!{Ss~|oC3h+}=i{~(
z^H`;c*;R*FYh0{#vC+jQI&)5wbuQMs*uW!yQ{ObqYO>oac_L?MFF&YqCS-4R@s5l4
zyrx@RY<01XJ2fGjrCwnZ;&!R-aIrHf-z8+X;2sxm3*q&S%Bz|;bvjymWohqmr)Flq
z@8Sa&XZlzly7<UN_ZC5ZE})!b@r>+!F7~_l#Kot~Cka$Y;DC#RE^fH^%f%rVhh6;O
z;zt)pTpXoY7bjeN=Hhb~U%5EOGCuf)3^(PXe+s^2mtIBQ;hZ0P=wGvMJMB1wU(N+v
zc}x7Qi<2(CV;D&Ky_A80yFL4Pox$+E*lD=1<WDYscJYUct1f<FWHMl+={LGj$$c{~
z_owoCr-ZZ0g`D9ffYIK~kL|OvQ|B0;cjlcJydZc{kitvMa!Gzg$n@RbHL?FE{UZT+
z-No_q{&MCG^Y`d)7dM&J6Sy^jf0$;O{1g0fA5s!1k-&Shy31XyHM>0~AL^$ia7)6!
zc$E^Y+S(d1-CFQ#j+>Kv->c?r3EZAQ*#yc-YncS@NFZJK3K_I_NB?7EMgoI(`X?09
zR6c<_6F9cp<E{Rzss60E(JT8}6%(kGK;r~*61Y2o$_dm;pmqXP5~!L$4e5JN0@Z|6
z7i{)|RcVlQ^IA@Z#@8-KYbJ1S0-d1`e67iS37nVZeAdyrKY=<4)Jq^!dOeUp-2}$F
z{>{LH3EZgbU#({KD0=IUoInEg69^`dC7SgDe$%g^CPvkQheXmSfd&ce{3WNMAW5C$
zIoS#D7*dnV%uOIK0V9EU0!jjE0^tNAbmJaB)oTfa65yu~9<D_*tPPzkJ%MNfHRq?t
z65vIIIxJZ)`EF?yC@>SS5-3QZFabLOCxHYf{Bw?*K*jkwW2RWY`Sqgw1ph>kT4#g4
zyJt}onQE1VC4VSYx+sATXL49RIi1rif#w_~9}V*HFz3df=O?f&ffflolE9-0v`nCX
z0s|6wEP=-p=$JsK1fEFX$pqRY@N5E4CGd0ttrBRRz%!gferQQ*&XOM!BvT#>Za5V1
z+NL~RGUveIK-&b`B|u>Z!IA6L_CmIlv#I=jerTy4>YPBA1YSy@ZvtHt=$1eqdcIcC
za|v`$VD^oIUI{#(0Eg%y)fa@<*yGU%TYDyuy~iVYkuE(H=$%0R9*=~r#D5Z@zyDEQ
zPGEF?s9ypUa-Qc71<JXhfe8#sU`_&a8JP(TNnk<(6B8Jkz%ZHQ=mf4D%O9S=D+!E9
z;KN=ST*ydzo^M(gg;5Fg`!T_4t34i@SRKPXO35Faz&M%ecm`MkJ@Z5UJo7`75}3>l
zqI;>Iz|;h$Com&{*An=sYSA<%tHZwQh{Zmne`Y2?oFz;9|LSb9klD9r@*a;1nU}y@
z2`o-vegX>^a(#>H-)XZfOkhz0Z-|83@g{ezWKM@r(d+*fEJ<K#0_zf3&&aG$v@C%Y
z39L+Dxl}2k-&Q5CI)SyaqBRLT;D*?J$sVtmaG4xhyOP+Dz$Wp-My_s;$G&t0n>N$i
zBClJrkY3uJz>WldOyDOTnFMwv@F~}uz;2$4|6}SqprojpaLJj44-f>&ncbOLB+L#Q
zSkT>t?RckqX1Z6BApS}Yk|jq$5ffPi6+{IEB&mSpoO4d1B1sTQg24Ow^7fr~&OLR$
zTerGy-Kx6P-4nWB46tp@#(If2WMd=o<UE^XceBJ4*dn{+6K`WUSSZQ|c4T8$Hg-#y
zoszSCavt*cWb;BXu=_Ke!sP7F#(`{{V8M|x2eWZF8%MHnDEAPm<x$U+AI-+GT&s@L
z!u5hmPG#e?6h6;wm5sCi-+>(EvFB)#R6=}#QIi6{X5)%TWZS=9{GN?JSY{OzP;faL
ze`e!RHvXePHm+vlgYCY%*|?UC>)H5+*;OIy26t9wYQlEkt!(@yF}pV<nEg`fbC1=(
zxj}aLZnLZ{OQu-b1>c=)oLetMi`0ABxKGKm%7bjosA&9~jpIN2{#`GKA7=A=lXS{F
zX7QJ}!Un<il=YtlVTUhgxsS%=Rlq6oDWD`ZbE1L@3Mt&|sGy**f+7kwuJ=8s;FIrt
zMHQ4(5GQdl1;r&OAt@I^fl>-eD=4er!b_=aP{3KrC|L5nFJ+~#_bPA3a#Egrn)>A`
zA5D5*K}7}i6x3HxN#Qd&QA0sZ1q07zS5`b1Rh5TSk=iELH>ycybxD8N<SpcvRlZsZ
zNb4x5tsvj><VD4_!7m!kH;B3l23=G*)IcinE8tMP#56cTfiD+RPe6_)N=h;6;ZOb=
zDXc1(q@b~aCJLG=2rB5L;57wF3PK7D1*U?I2a}p9NLSE8L9&7r$w^g^reMMb5!oPm
zZ4mj7BsHghRtO5WRPd65Rtj1x$UjG$yFt9HAVb0G4I)!PmV(2SpQEvReS^r8mY%IZ
zQ9z(8P-)D;Bx8=IDVX=EM#&~~w0s-I0mGAI6BKwkJ)$72pz=mx(a1SkaHFsl{ACKx
z6;%*Z;3#kvv{TSt%I7F}bE9aZ;1$_@w{^(aD9CB6VDI}HK?lk2sDMBC{QQ0GRfX5m
zAr5ga(#{HAS1?+^7zO`R@CGB&C@_RN6?9QBfW~hUT@`dw&|5(t1>F_&P|#CBFRDG5
z#KjKZC_a&^ApSlj-J=^tUj<xOe}&&sqMw4D8$Gv>|NBP4qv)K0(kdP}NWowQ&u{Yl
zaOG3&Z3ROW3{x;%0hc^dLE<LwSW1pyl5F(+FiJW<dy`;ytPI(B1)Vo}ze*h^y95)Y
z)80{V%=9!5-6Y;s@ScM03U(-%tl)hGvlV=*V2Xkdm`)0&D(LDIs53Rshum2+3w*?C
za5es81?AcY*k)`J(-cfsFhjviIaIB2%AqUq{4$8AX+EK77WaZ1d>Y@1k8PZz;4@~0
zf*-jGhMTi=FYp6X@zeaD)7!NJOBH+}m3*mSz61*tEap-2H_Trt-Vd!8D)?H0ZzTOz
z(nXST6fYO}j$7~5!1t0ak(AxBjY=((3i-6dyhBSZXJQoetx&L%?PO@lp+c)9;NKi-
z)J^|M!OsfTC|JwrXLz5xK9^7DQ&xIaOXst;)+yeF<u6jhdP%8jg9IBT-6ZK|1zU1Q
zw@R>0QhuGcQ^76;zbp7d!EOb67!C!;nVAaqakD5mqF}#*OO^cm33Sbu^BhocP{APu
zPsiuqvPtkMrmgNLE#4%03Exp><0XR;p~FvZ5+@X#RB)bEi#xYMfG?fo&?)Y+lKD^5
zYz1fO%(~vg9?wZ{^eE*0>bukZ;6=G8K3DTs#<54@B^J6(>Ay)@>$j9go5W=We=2-;
zJgTX<qTs56GAhcdxTfGbZMzbGrAopLW*5t*3aGfL;1;W{id%NV-^`ZH;<kc+SRS8C
zI2@O7N5NgDYevHFl|5tbDR`vdKLz)tRpdO7;9ms~B`~`eAoH=r`BX0hpU@k!n@7cz
zo}Lo6ymDxr5tm;AkEx=d#Dyf~%g4#=>LwK7f4LsT7gbSA#gO6&#Kl#VkWAu|D&izA
zmCIS2knrsN=Fceqfl^Mz^C~K;cus}(hOfM&6(nUhezPzpB~()Jf{MyiBD+;+%*g!D
zG|-H;n?-dMHB{75QCG#cOY+oIy$r8WK2S^bTv}UFf`V%s_1)}UhyOIM$)c<A4OGOd
z$O+?>FcMVwR5UY@Y{IW%upMZq;zbn!)%)*8qNLGwC5aoUXsjYzhoYki|NNyQtijR{
zRFS0OjEb`=LR6(<vWoXrB&$eK@rH^wRivs&qr3`BMROJDDq5*%t)hjBmMSt-WO9vE
z(je)}&EjQh*ev!IRrrv!QYDlu6_XyN4N6Vg{~%4DtrBOeP*m^f<%SBC9#f&KI6N@9
zXrlmMg}ipNAU?KP+}bQm6+*@Is-oZ)k#9{3fvqB<qMeHNDxxZ;9`U(!g^HL8hvC>F
zs#FvWw}|X5qQe&Pii$QW+H#7&QU+`hH-1hDzMV`uX^S}7-t3^Fql!){jNal^6`yYr
zU-cHRspzcYe=7EE5wENGElp!vy+x3&n4n$SBA#p!T~u^cF;c}S72Q;HSMipLekyvX
zxc6ULFBQF2^rWlD1xH*=-d9W+JwfZEqTE)|SH-q@D!Xh1{Z$NL$e4jD2C8`bY|<bV
z3r;7EI+aA)I=@LuSG=uasET1K3LEK1h9zGgmP{`Z4_7flGKncRTE!R@`H%W0s2Ho_
z(tzYMhkfH!j8pO6($JQgqTyCC;(F*{YSKF@CNd~0PK*w|%TapZR^afHv~jc4n&b4p
zMhD-Vu1-<$fr=F>R;u_=#YZX@s`y&P$0|Ni@u`YAbiRsdDrTyva3*QGiW&S<VF`t4
z(6XqKy;U5u(#s9fXQ`Mi7e$#<r;@nF&s5A+@uiCSDpu7N^XPdMUr5|(tGFLdAGTFY
z-71!D72CIpK8LawsQ5|+!Q_4^EvBpgo3DPu%|Z>2(w3>9wTo1Ir{a4Ri<t=nliAL0
z6-!hszmrzCa;c>fe7+!q-J{c!Bh%C$RJ>YUESIrp{(@MgVzr8$Dt4*(kx>|)yk5ly
z6+fx?S;ZO^YgMdM@e31UY_RFAK&fqkdt1e(Bfe7GMEz}o%#A8Gsn|+|+$P(^W))kQ
zoZH0PyHnWhA;Gw9V!MhRDwb{Y);L>IE_1hvJt~f<II3c=Op^U74p7yq<bATsRN<rt
zSqivE=%qtGcAMQ!J3KVG`e6?rQ*m6yDXDq;HgSRlVNmi(73a1I3f$Qy*yW_BRd8NR
z)6c0m&$6STriKeDE;45{6wvT1b4JBKD(*1tRs62<_c`d$!Tdvp^-q?4R><w*vW##2
zqRId}{VMCfY_X!s$GtRi2yQSa^1z!a{+57BZn4U37X-H@hg*sGF87OyM=JiKZ7TjK
zsxTb?s(2u=*WE72dB}8~rp}zFK34HWMIH@#HB9<D?I|OE$oKWlw10~$?B?Sth9?(X
z7UJ%(w+n8Hf*J~Gh|^F?19wef4MjB+(@;di&f94e826-LaSaQH#g))dQbV`xf(kjs
z;EJWF@X@Wb(i))Q1r1bNMnhQ*<uz2$u&YZ}IStQg7`<K8D4I2^hxS7c?Z>WJ&ugft
zp_0b0V+3O{W4lOGGp-CwUbfxqR@P8OLsbp5dE0hTT|+gA$In&CdF@u<>~>L0Lv4*;
z(;!tt9SwCgBx!t#OJY3@^))1FXsCe`HPDct!KZ<<$7}efhjwSXX#7`-Uqe8{#hGfi
zLCK|d2;)<=_k8_D`eAx<BMpr;d|y>Od|G<T^-vQHO<DXktSGM3*&!10niKPy<@1`!
zI|Qc-X=tXwlsH+#)6+>yP9>#jXs$ugplV3hycB&&!^@gixLRml;cBU&^A1t{bW(<f
zcZ({mC^JvZ)R0Bb$9W0E^dN1mA)Bf;t3!7P3VdBpX!PU+?Zu<MPwuDb8VpXY;gcO=
z#||N+lBGKY1(*Z2hKPo98qRBoYKUogN5e!7js{o5Kn;U5<Y;(B!y6jj)NtcsavKfp
zHFV%nJ49PLa71!D4R>~kB0I&abl^_WNyBRzI&#MQY57aEIC(wPnV#7xUe|E5cnf8x
z=(tn-Phxi8>6+C=Lst#`7@h0QyJ_gIp_hi<8v5@PJv2-%rt~DOCf?gAT0Tm<GB(&p
zLth4KQ1V+Em<HUK^LC0dg%n~kX<>g21Ei_MD|d=%#j*x#7^&fxu{x(1LJw;gs$m!t
zZ>JcpVT6X^*PGv5kn!Gv43_S93n^v(OB+QWGKVK>V>FCo&S>7raV+=vPLcXUh<=`+
zp$|*SF3;x=c8W=ik%l!I)@pc<25b0=dqKnd8m4IYRKpw%A87cHdNfSa@Dby_Ec7wG
zq~TS*XZJ<#*@8UJCJ#*>aIJa6U1B<YyGzW}FhhcucL{dcW@(r$IqO<^-On`4)$qB7
zFPJmenzz{{=4s%mq3<p+X_xp?!+i3&LwAX}yTpTr-YhG3iHo}g!PgqT(XgCJtKnM>
zi<r+EmS|Y4A#Hr{JMPxq;^8il^l>6vp&Oy48kTAJfg3GOskdA36hJzyr#85ih<>TA
z)UZm!PfVn3;>lcfwFE!X+q+Z9SvWnJ^k;6j4rc0ZLA;I;(Xdy;J`L-+K@R&iY1qu}
zqqGeg!n?&r4Ps$P3`yRiVJnxwcrgigi)|Wq(51V@b`1~rC9#d(Eq>fB_U{%GJD9tf
zz#Ysz8vfiZ^6&9D759k!8V+bUq2Z*Q=%9wf8jff<#9XZ?N;MEnfTOH48jiE($fG`+
zuUG0|QiFev$^v_ek?IgSqk(U(S#&Y^G~IPEnVhqdL+0;W0~c5;c(~3Vui{q?moz-m
z@Sld?H2lt*$(+=@OPW74T%n^Lq+O={i@evM{K@TBB#VH|s~WDcH0=?4J7=)_7k7$=
z(7m*Kns<$NOT%pzD2e}O3XKVt9UojdF#QhqAekC6_Xu{|?-2v{i2E8IFc~@o{$<I1
zQtBbsK3ZQ;Ldp0kbmqUb#~Plnp6e*3<Ee%`ItuG3q9d=4e8epHIx_9_{5pPkE2V&r
zn>W&0?oO)GIq-7>QAkJidueNjB~RWXit4;{%qXs-gzhCwF&&@p5v%F*J))$JK3%oE
zd&Qr71Rq^pS_h}*D#}w*M;RSub(GWboaA$ew$Z{$dj)Zi2Wd>g3Ob&b`WM|#<Nkd?
zM`az&bR_GjqNA#gcpV8kxM!>BsK@DQi|RUR=wM3J)KN=EZ5@sFiq?BYo4ulr4$`_5
zlil|ut*>MK($IpvqJfSLd&P&XginWGM`K>t>j==oBfkIaq!)E0>S#!x)E4CM)OMkm
z(n!aZn`tNZiof@YraE{v#nWYyj-ZZL#|3$bm8z$QbSxa0On=f{DLPWALHACeX*!zg
zcv%`x52x#Bse5Iug>*PMiFW#&{>d-t;8jPlePY4j<P0unpO`vT&(g8(tyZm=X<V9)
zI-_;Aw0%O=q3K965Hg_aFmx={u}p`lL+E%%$3z`r9hQzRI=bqxbwqTu)zMDJ#Y4U*
z{Wd{!b;PKrQMw~3Uzfud_t^VHj*eI8Kpj2ziP8JS^nHS$y^an#I?GkO%Aj-(P){cr
zvW{HHKCx$?xV%rirejf0?a@B*I=w^-KTdo@$D2C79TQ}f%j_2k`vqw?9o==jtz)Q;
z9-K(W03HARmDWo~Z)ssa#!g3Hso^b|Z_W3MHxBz+yrc2(4OTj5@2`Us{q}`AP{$x0
zgXMukB<1L?1sNP7i0l``xLzG&bPU%qf-~+HBX#deZ<NG5q40Wx%(0wqaPo%7Y2$T_
z<01RS)cs=dez9YQK7q$xZ+^Ey(j<C7$Co<h>)wg%JsltE_*loL{bI6?_jOFs@qvyH
zWr)x0_bzmK(aSRzXZb|ORNdR%^K@QOV!DpmIzH7ggT}WKGj+_;!HezLEfT|reKl$c
zHrC!bI=-2zf2L!u?w#87`hwf=?tXEgfnXG<?Q^N~3+}H2;$A(mK*v{-^R1){CAANT
zuepg1c<%a!33))!Gn1}1U!-HPj_-63f3IT+!*@UJZ7aRY0YMJ8`42jl>$t{D*0Dmz
zN*#N2?A5VK$7&s0b!^k|qmG|w8~2xvpLMKZ><(qGmHxRq!#fw#&UNF0>*U56aX@Tf
zLhcirCEX|~yPN371A>5U3!T4DEIc5%y6w__|3qzvj-4{NyCmJMgCXuzSFDqZ+NWc`
zj?+5M=s2L`ppFw#?2wKN{k0=>tOSR3Y@e!rS4A9?htmnibqsu%cJP4cIZfYv$ahl5
z?+3&wxr7ySy!)oJOcgS9{GsE#H0C19KDDug9`r1H?x46tf%*FO21&ospND)a=j*(q
zWcRX;%X3vO|B3{E$^`rFdWf8>auao*s@~A?7ptFviUw}#xJ9)F@)`JB$8Baf_l1ss
zSR8cR*YSX9)3HF#eEqJDdt6I{Bu@0_jTCbJ)p3buNohd*L6LP(kk0p|KV}V|ruIK5
zp6YnQU3^e1{U@#N?xZ}1cia2^LBZ?Z{00gbC}E(afiDk=f(FkEC}N<Hfwc#P`<i+1
zpeSmfnBkSa;s&nNO?p=J&P~%9P%`5Tlrm7(Ksf`Y4IJT}t${KIZX6T^4vET##PHcF
zTay(T&lxChpn`!8hXm(pdPpdTMCxni+lRy_heRa<FBnKL;4@I!KotYE4b(AE)c|d%
zZt&mwsAgcPJcJr*8u;jkP%Q&H4+&mHFtW*GgJtz}?$){n>T_K)l6k#X&j5FEox(~3
z1M!l1=8(95NO06|c)R{ZNx6`KfkXoh<w^@SPiJ8#vyp+u2AaqNn;Hljpur^%3pQ$~
zT*<S)nSo>jKNwhUAcX=3UZ)ZRX$G1bXlJ0kfph~c3}`Ic23i_;$?#4|Ore(zWEf~=
zptXTa1Km@TvJC8<pz-{8Yliw(A*DgTlxzcv0afyOTCa0hkVydoYM3%6Xc&kZh#4>q
z2m@hyuXBJcB7r5TE$M#`(x%=>3zTT#7;p`=F}y6zG4OdE!4E)QG5D)R!9q0kdWe))
zbZrgrG9&G<=wNu|>oo(NC3uz2uP8bi=w#sDs|Ct04R!u2g{pYt>CJmsykX!?1CtHB
zZ=j2Tt_Fq}c-ufXuF*h$1H%uC9tL_E=xv~nfw7fJbv-P48Q_xhbuhU=g1+n;=x2bd
z9x+p;b574t3-r<m2GB6WyU!hDV6cI6*Ssrs(vJ@d(xC>18JJ+;9ZqCmgn>~8Ml*=L
zv@w-Rjg+3Gd!NlR#=tj+#dz8vXCEgiXXm7}gifBwtk^0lAN9Q}qc%x;i5C*@G0zJr
zi{H^U9u`v!d|+U%fq5LIa|{ev8k%k3V*{TUm|<WhSK2jws)6Ye5KohUiS!Kc{%#ia
zzfh`kZ|{zSAG~~OU=ELcspMzeO-n)_jMdGL6Pe_n8~B1Y8~B!c*6{8t7Z~`;z<ln(
zt%8>gCl8C~ie)V{u=-5W*9L0M)Y)~vP`eb%T4Z3cfhF8W2EH@ES@OMVes6$>a8laf
z(Shm93_PB$GXZ!W{Ohn-VPK_!`vx8uSVgtmk_HYL_|d>m2DZ`$13w#BV_*yYJV9G)
zU>&Q<(Bw@9e&M1FY%s8q#qEgLvOI%)Qnu%hh+0FFe|;-uGmRXYoOncVh}XBg(A~~$
z%N<lVYY#WLfn5f6bDP{sV`Y2!h=}`KCAc?FC1<aJeFpYR;R8};_pLPYdF=X|X@^;n
zShWmXHE`6xF#{J2Tr_ap0B;*laN!2d&lL;jic<zo8yIs$oS};j`Emv%M~;YIM+7-%
znP75=_`C$ukBDClTr%(ncaVYKxZin$z`d`h^RA)nEOpTl!TSZ8vH6G~{gb=CxI)9O
z8MtoXj^W*0+%WK$fm<y2^xN``sgKicN<W-9BE~MyphIpO_(u-ilzuC4)brk5dF(w&
zsifkXlz$C8WNkE2-NYjU|Iza%N}70V;0f!w>D`q-HIRp&cu&;wn|y2w*7wxd@|pN=
zK=KPmy)Dmf0Vz;WQc4yw(fFt!C}N_hR8q|J{8QWnZ|Yke70yJh&b^d46QxY=)~TY2
z(k5V{oQda5lrd4(MBk&L%~9`TB2wZBM@4xP6-@8G?|Bp74N7J{GqHI~NYJjPsAS>=
z6O~O=F+G=7H9<Gp(^amN^s}SF7@W+bYMAiRP7^gv)G|@qL>&|LO*D`?>zb%%VqVv*
zokf(@U9t#B<4x~;!DADo4Cmr!q3i}sB%0urPf+q3a@8i9n0V1dBXX(;+E(vL+D3lV
za8xuk(eFm+^D#OxDOa6jB4mO$i46Vjqawvbs);!Qp9$~{R%s@dm{@9}xruZWEljjD
zG0?;y(;I!sMA(F7;$;&VCNfQAnJ`S4CR&+jZ6e!*V&av-fs02)Qtv>96I4xTCcf_<
z_;Xw+Zc6+M$(g!|ZoLC+`HqPXy95V}4AhJUgo)wxG`<?iHW4w=(L^T`Q4=u}?M$>c
z;h1nu<WRYZVg*|d8JD6~FMT~0q{24LioStW0|Lv7w{B}<$DWjZTlK^3gB?t~YJxf+
z^$)V!XNEWXYbH9I=wYI#>Ah+0bw<s^8&W5Yq~_*NGu|}O#Y9&Vm5zySCc2wwdQ7Ot
z#AkamIvo?YHfFAk1$&w3ZDN3l{)_YXVcO8o#3tS{G3=Q5>X^`Hw*F^h3UR`_@l<={
zr&hxoYG(P;S4IW~n;2qZE+fu3niy*0L&lm1(g`LeFkR{4`xzrljAjCx7)c8U21c1!
z&@1%Q%ygPP*2Fkz|9BGzFK4b>ppsr6-1_+i>bhfMqKQc+-ZL@T#PZs$)=r84e2Vcd
zy)-GFj(Xn&<v%cS_?Q^gRG(sk^z|_zb}9TZw}y#NO?=ZMIMu{76W8qEOcT?k4Kqx>
zm?`tygjQS9G8>O;eeIZ-Wn#7rDCNm1a9qrhGM`CG;dKG+b7qSZ{KCYS%<~2D^uT-*
z6_1OrIg5!~ADIhGd?mp`Ny!=CJ@Bneo5d#96llSt7Mal7Br!(cNe-Fcn|uS2L9ook
z58TB9&j~Cyv4VTh#2+SBnpj2um^fr&wTT~1Y&NmQ#7`!EHnEm|Fwy6&K;VDz)p`fk
zFoFXDGyfMH+bi&kiH#;c=pSHPFTn;Ds}Ww8ZIj72bG2f3tBGwU_L=y)PhdL}Pios^
zVyB5+Ca7oeyCI5g930p!yToKNe0v$<v7v$O;`hsAYxfTvU=4XaNN||SO`I}u+Qf-|
z!J{T-%!)t8jn*sBaCG1}nI=9P7h3mLpnw0sNgh5abZ=<r40p7N5gX!vHF1u4*gtUI
z#04(!tw85do@B*u;x9^podW|&#|0%Xnb_;Z|MrabiN9>(PgY|li4?nH;)cl|VBo5W
zDGO4rNt!qzbX~6T$nA`qjFgE7CjR9XGjZF*UFPRo-je?@aYrt2cHa;=Tq&9NB!}Jm
zGH(f}q)J-mL)neq$TVliKQ{4%J5ivxz*FXrKmmb*Y~2ER1={rr<QEv$GmuZ9Rkr{^
zt9C&;r;zYm#P-XNdY63}g$0TT5U>@MLj(l}1xg5%7U(o0P*Na{ItK;1{T5$Jf)f1$
z@dlq~<c*SFM$T1MQW{@gpn^affwltA3se+nA<$BwlE4cBJ^{Z#Wq~RJwFT-3R28Tu
zP*dRTeu3%(0@Vd-NPM_|KpYpfX5}HDt(L$uTvwo;Kz)G*)HyJ4tY_f4UV&!e;E<2v
zPgKeuFOa~|SAqpQcx`ImU_c;IAXy+qpdmjr6$r9)3mobg*GQm=KvRLn0)6`gtiFL~
zlpKPplR~7&X66YAG|Ls}a$Jy^Dv(BB^$(^CG?#}{_?Zj^nwAK0=p})d1uTI%{el?+
znT&!!YvEPVxb{KDB1_^w`UJ8C6ahoP6zDcIpbF^H16;Kxyi(vTU;04^Xq{RQu2QPU
z2k~KAULwTSX+X#p{IkEOIV#}Nr6c2G0*=60E5IUFU}8Lre~#>)oF4xQ^JHQ?K|6u=
z%n*U$0v!Zi73d|<Tc9H&EAS?>g6`@TcunA_9ehKev%u@ZJ2!D6w*Sc)Cj?sO%!sG+
zyV7`po^lqwcc8lfnLX%%y$ZXpRd3z&LGz?~nM&!*K6IwQAc4UGZwd4h7$Ai^MS?5)
zh5FM`?Sgmngh*LS2MWx)lSx2rLj;BjY?%@Nwp>Dkw}Squ>Fk!MRC<KKNP&q0lLSTy
zukw!*7|+%{Fj`=Y)H#;N_71*VwKX-facF|T<X)k7q}a?SCCPc0$ulnWk-*0S?{QS%
zeSs-b>_a*9fyAT~<FTa0yO#Wfu3$>^34AIrO<=mfEGfp(8B%hl!1X}^zE6`JzVDTX
z&(0ONGCR+L*ILizG6nt?xGnIxz!w4=1U3qMDKKAPwZM;Dl)zU4Kd@-iZ;EfBz#@Ug
z+&+fyYsvXW(r+cb`%(VyB%tIH3BH%K`zHm+St_thc00aXn%ycDLn{PU3M@P>ny*TK
z@3<JYDt#4mV^#X?;)$)Z0zU~nJT3@+7FZ*&{kT{w@Qc9t<6>`X-#X#_eCU;V#(K#i
zGb@fi$iil3j=(Xxotd8%*eS3}PP$cK8<hy`kX;(E?3X;G{i`MI7T6<jP+;!cL2BMB
za6s_C0KR>a?w7Q}32#!i<s}j+c1Q{z7C0h7lM{l>;{qoHf4YgQ0w=jiSEXMNxF~Q+
z;IzOQW~sMc-+6E2c$O2NlN|MgApYM8@vFckf!_pv7vOUE<08_IafyG(?qx}bagMk|
z^8b|G*(by`Y2lA2#9xfK#I*B<z=&{uf}4!v3Bh)Yo{``mfjg{zVbluauE0GeK=H(~
zVcZvZAW$rf;$i$t=L_TsBX1awxD6`>9t%8?%Ku{tEs;pg&pbo$RPt|}5c$HM-wK9N
zD2)7J6p-EY5{ZGQ2Kj|$x2UB1R9}%W=uCp5Cj}LjkbH`jlAvVRn<Xxcj@yE@Pl}I!
z$x}KE$e}Wlrl0g8QZ9_=!YCg`g)rVaDXN6=d>9qOSW`Ul1#<Y1kdFeSmBJ`mB9Wl7
z9CA+z3RDfFS{QXt1m8U=s!KpzLxOKkirO?F3?mGaoG|Kz(L9XwFzScVKx%FpM!W=p
zFcKw52*VeKU*cUS1*iMtq-ZD=z8FTMFeVO6snIq>eq;LQl;Cv4O{DzIaDL*T#7UBd
z!e}NzvZN`JQYJNwG>MBzRV^fbIgAVmT88nG1kW~IW*A?0O;IH$D~whWv<^d&d=6zx
z4gnjLYhk?hNda9l*`>jxLUtpPhQqKVsCr7+VJ~x@ts)vmEDR@%jp6+JswTN%gd#q+
zZq<|8gwd8kiK0>z?ZRkJ`)xG0(IJdi!$`G|W}#ykox=Dhj5{<SjLu<vAI6d}UJv7c
zVT=l6bQo`h@n#tP!ss7H7e?oG|L_~WUSV_%qgxoebNt=I=o!X;#r!=aC5QOX>;8XU
z4E7GAPZ)i};31p*!MDPQCMFWIHMpEUAdG?XkP%@F3S)2>L&F#rM%C)U->L?Ogz<J5
zk#hMPX6q$t1%GH7yize`I4xP0*{VUX=_~%^9REmp_#1=raK<rVtSjxG6UOP9!LebC
z3uAm36T+Al#&p_HBlu1jABFKT^C65$VZ0m0hcW-7m}lz9SN!jVF*yu^_a&Vo=?9XM
z`Jn`y<r6szCz={Y$(lg|DrxQy&In^>7_-ADS1mY8T17tPFU9;6`&1tOO!%`f=7upZ
zjL*YZ$b1Oni!i>FW-pL*bIl-^Fkj;Nc~icU+TN`0F~14p+c3V9LyII`%<O954bf?A
z1Z<plX&B4G*b>IpFn-_$xn!;j;}`DzFjj=IGK^JW{2WG++rCZz#I0snKa5)x^ZzJ0
zWd6it2m}e%gh2rgtqtR$<0lxK<6kdL+7!lyFxU;95*wL#r-V^8xLFR-fKh|;Yzt$1
z7-z#c7sie-cD>@?7smcDb~41b3bDJ3`4h&TFc<<J@_it<ml+uF?7wDZ90=n`7)PbT
zgOrira2V}s1t(QbAw3qx@i0z?aVm@tM22}vTz=U61b-RWQ}i=4PKR+O403ig4VH2J
z<n)eYFniC3aUqN=VO$O4Vi>=M@dw4ixD>{3(vsi9m|}%!1DBRFuH^n2Dg1HlpR7NZ
z)4!MzM{PgX4t8CUNt>^Q@mCl(!??~e?hoFO78a}R*?%jHzr!Hsw#?WB$4@>FAt1dQ
z#=S6Juu$3JZ<FwV#os~+3;)u|EdCbqS@^YS@KG2u>iVBNb1C(h8IQww63NJ{86^K{
z7<nwrtmfyU*yW`8Eflm+$nrL00gE4Bgt$$J3tK2EnMEW$?)u*-=kbeKIO}+zq=h&+
zRMA2y%Zn*2l(A4+;+l1W@8?Y^YoVNl@)mw7>wk{&O+p0kSN8{sq}*>Ds$c=t{Lfpc
zyRqbuP6}})sqoCElGI<t@}8rfV8Lghs^$IgxSECP7HU}hVlktp<ZyL%ccqrZ6sT>X
zj>L5(ttV;y+|dRS#7nwhLrK5XAF{j(z=;B~n`oh-1TRWTej^DQOWMRjQwf5SCP}(z
zP#%gkvp^RmOZ!vkgf@P5>Ez}X(k-mE@S}wm7Ft>uYGIg#mn^(&p@W52Eo4|&+%%+F
z&@E)L)$nIoXl0?b<Y!w@EdEF-|J0_Q_ck=kpnxjH*flJe7IG}SVnJ94TZmYQTCgm9
zKP|3oDZed^ynHhGQjUM_cJqtMDKQHUXD{X7(>Qp!UeL9?3f8WT|4iLr8w>3|Q>eC`
z3|U*cIyJy<d)XbAok85u!se!-E*834=w$H$gNd(M=xpJ23;(n5hK2f<N++iU+TTpR
zH8VdYGpqaGl!yP_A-$W0?iTu5c*{Z$3q7T~dRypa;r6xkudI-LGI`ajDGw8ZIW>ZP
znCkDOV@RHU(w_q@46@LlejZqW4j*8l%PB#7o<uX4Ed+xt46*o89-oYqF(>G)f@Tc2
zFv7w-3!ihD7JgrzIl;m^7Dh>vMq3!ebhXgno6PZ&Gw6$?aTaKNSDC9N2P+dTOtLV`
z!fXrgT6oXGCl;n!m~7#F3m;hc(87}<rD)O=xg3^m+QZuNk%f=xjW*t9VQHG#C`kOq
zEB<K~rdyc75OZHYN}inP$#YRNr2%G7g<I)U3!hmqzRl#&9D=GrGUr+-F2h0o7cvUp
zT6|s~zO*pk!U79lNe$ny6tvD*$hb>i^&eUC*}fx_KKV4;D`<-?EVZzV`{i~2cT5!v
zOK56h@WIClw?CObNL7?yZh<G|1tPS98%Hu%(Y8~9TX^g#(YCt(CksDw;T9fSSYu%=
z>w|@JQgWSztroUf_{G9{>6{G~c*sVH12Y4gxC#qfa_5Tvo_=FOIw#$3VTXkS77kk2
zDObJA!fq*MZ7jLR!d{8@%QPO564*!EP6@VWwPoVwl7}oDws3+8S<ZjN!chy%{Nv1L
zp6_Y|k69pP%dQ_};8?CtS~$fG_(9xh3um}hYXlcH47PbOxV~19A!8KIGu18Jv~Yo&
zk(JiMB@0(9T(!V7`;Dn(;SUS@QcALWSuXHTN#kArr#b$NTj??laNWWU3j<{d?a|iH
zvr=8dOW^)({I@Lp&3Z1EcAGhNI&{~<Jqi9{A^j<Ihf%BNC!mY&TR0|t^?)vF9C{_)
z3ohG33y-9RZ8CwMSa{0xw!K=K$3|Wo&)Fz%BcF{6jYCCj6t$7xMgbcIC8v<>)oQkU
z@xlKVW)_y+=_!F?Hj3NWmJ%pqqlAr;HcH#LlNyM#v4_b}!(YnwO3ImuSquTiAV;Z(
zGG%R)vq70=se$U*8E1>9RIu^9jcPWk+o))xl8q|4^S&TKWgFv86!?C<@=ddhY9mWh
zPgNTeW(C@^{@bW&qn_;*hg!CG+G4A1qrd9`wmOnomj=k4SYIk^Q?>BSdj5DD33AlO
z%UXXhXv0s#Y$V!fXrr->CN_Ba^rDSMws+~mE5Lth1zE}Oo=AQtq&(B#)b_&H&h;nR
z2-#>RRi)V8**w|i2kaRu$0?-iU4N>L)W6cx>ju+pw6KvDLGuV&+IY#vG8;e8V>U8u
zykX-_o4>_EmW>=6uh?j1qqQ{KwvlZ^k=`?HT-Fj*8-|UtLODA#pxL-|O6WG?iureM
z3Xw@lKMNaSd59(H7r_)VBQ~NoVls$suD2bT7%2-gSpezeHj-a7JL5GQZEe(_6=-Lp
zJ+J?5ylSJ9<dAtce<E8)8?{#_acXh~sfj$QGt((M<8?{@XJc%~)Ste{d>EhD#l|EX
z@7m~UqnnNHHhS0?YGas<o;G?hb~Ya(3ZCG4O9S4r(Z@z#rd(<u-@W7|UuB+64fK;k
zOykF=#6TN^Yz(oz%xAtSSJIb%s}Gg}j53*T%b_!Oe8X*wpe0Nv8zXIuVyx@<$Jhu?
z$<wT9h}uR=$-W`w^OAn2LE?C(8O^Jo*kOHWKqw>meEK^!Cd#9ZHB3AlNPM(9^q!5$
zHfGwG#W?;Fdf&#!Ha@X2#l{EH<_~S${VMY#i5FR^c9Rgx`&4FZLLz-Kov9U{IL!vN
znbJQqB!~NYwvA71d~0KojX5?xV>a4Yz;HJS&b9HmjW2A><JNmI_@$n-yG2HW<E6QT
zFKzESx!_XsfAxZ2*;vSxzT*E{MwVM(u*g{G_`hKm#e2z2%8QM~HkL?teP`o)8-JBc
z;dz#gIj~gn=U+%~tgFjytgulig2EB3w6V&@SsUkUtY+f<k+Rvw78^fO-p0>1*4Wr&
zV{nlcYi+Evu|dlGV&i;W|9Ts*T~29vC;8Rl{&h;qgtUx}lu=T8j#8+n*PZ0TX&GCY
zne>T`BQ}=S^>1fkv9Z_24hBeacG+0Ju_T9f%PzM+@je^-Z5-QN@}M;PS2LAYDF?W^
zuQD^|r5ut@=v&w;Xh)edPm@pBI7xY0wL1AYv%0vy)4V1vOQxKnq=gCPQcklr#s|$h
zDQ9dvI~h6OWS+P2dhwJiHm<TrGDFJxFWUH(3$)R(Xp7%%{J~vZCgnF~&QF<?ylmr7
z8=}5n`8Syptxe4!m|7;~nvLr=9@zMo%IS6+|FBF+%WvBJ^B4Z6Nna#!MjFi1E9q?(
z&(j{@b<|xO_gH7-qJA4zfTcC|z?b@aI>AF5k8I?LAa4Z!*?4T@DN9NXKl5-!5kL3Q
z6Pb;lRQB_dtm8ZBLyM>6i=gAv<N^`TE%_t3UdP{ivN7dpa={2jj7?`8i$qW~g2V_K
zMo=t*;t@V`KBG<qB_b#pLB$9vMGzN3sfZW!auLs^r6Zn8%R~@v;D_Wt^Ke=6vr{<H
za}kt}pn@EFK7y)g8EZakLjTmC+oa7M-wP2`j-Xlu)g$~ff>MP7oajk%cI%YLPnj>&
z_h0UwQ6qwysezgi)QVvCQ<I*l9YI1VKP$kRjeHWY7wfta)Qg}#T~W;cZ<Q=x1PvmH
zk9a4+5j6@YMDWJ+I9})QmVu-G2m%rBtVhh#&5IFCt&=FMK(h!MMbJ2cCJ{7^ASvP%
zG?oR91|uNghV}iK6_R`ov9KgZco7~*ku+7(<IOTwR!K>ZphX0SA~?+YAHhozjE`VK
z1TROB5ka2_`bLl$K~@B9B4`^ys|Z?0yy6y(AUgsj0wV%50+k_%K$k;_SJHU_z_Wa`
zc}BoarTv0#k027k5}tpn`K<_Sxn!=3-H{bizDo_T?ol!pfg_dt98Gm2$dSwUt|Dks
zDSupHKQp9V1nnbuGlDK$EW;PU>k*8p=5OE8-!X#MBIrzkj{Z)JS7rvmmci*Gzt8-%
zrvL9PN&lmVx!B9T0fkaV#V6A3l~#wkM$kQi9?Y~wncbveDJw%QYX*8o&^v->^`}?F
zyQ*P1s=@pjlIN`m`q4A<QpQBkKY{@fjFhGhWYR|Pb_7G2gkwq$j$lXx_xfa29h^>u
z1O--yDtGh`qcf}fhjXrNNncj=kC5HsX#p~+e^dkuADN@+2YFvJR>o^w#5*-`Mm}Wu
zod_mIus(tf5lo8U-3Y#m;QI*Plg7_t`b97~g7+hs!gQ_fT}e)rLmx!&p#&dEO8&<Z
zd?M)-$GhL07QuAcoslauGlFOLlAki?n+Cs-{5g_-mMb$if_b_4^IZ8aBbXn-f?WPL
z5`4wg<#N8xmHbw67D>8T(jyDwXv~rbmPW9SCZz<}T^7M=Ir>AyyMJFU@d`;fx>ABw
zk}^i*{K%l>j{Y3Mnq0g#g3*J#o3&r0W|kxBPkkJ>F@ha*djy-L<mO!YEfH*$c$=i#
zbNLy=3UqM%yO@fXOlsR5!5%rp`xJKfMzBxr^!>T=2O>C_i+Scf62Z|3u0(K^*%iU@
z2rfnNTLdQ}ILWFN!G#D;MewL`@Js|}BRI`W__}m~6`3`2{0kg)^oq=L+<FazJgbuW
zPm7BTdUgM=5fHP&a6_GmOZh#5KO%g=bns+x&#LJgN?vBoT$}l)Ja&zfO6E0bRk0|3
zSe$u1f*TS1B}0=Z>XoLO5!{O4?+9*7u}2X;Bi-ZQ&t1!%2=3<MdlIaWA3i*Y;9uE&
zDCx5-`Y%`VafF}$czW2L=4L|PDDp*-KZ?~g{e|T01)|_B4_m<~cpFYoIEo@s6qTdT
zbW+34i_MEiQ6h?xQN%?tp}haOC`v`)e~{eD^loHIOL<BniZT+H&E=GfdfS{sJgU4r
zwt}S3OWLea;tNq!j^gbYhQ?4OimFjmkD*2k)d-^K6-DnTYD7^pio_@yMo}w@+EMVg
zG!3Gt6ZQVXTR+Md@Ock~s~h$HcwR4xE2VI?6c%<XFt$S=K8pCS0|}B6_-J+%fhd&X
zzF#{h@!!N`z8FQLC|-@CV-$^}XcC1Ug%L&5D1uRBM3KoEqX<Qj7De+Ynnf`&UskH5
z$x)<4@mW80;(I=}Us?tljrMUgJ&G1lnExcb6h%u3h!+p`UaCmI_OfJtm1AT@(JG1s
zqkU==ttGSldp;$KY^j#-A6z}$$59?jszt#=IGq`Vh~kwf+C&kK!iwUBw|x%d7)2zC
zsO)kIs^U?6$zzPOoEDU!o_42&8$}L3@INj3o))AOAipg+JVe?sQ3`j+wcHu$>lDSf
z#er^7bdTaSi91K}dKCYQ;*BVue3&pPF5%56Iy{VzE0nOeRYDhu+3m^zJ&q^n5%u1W
z*^}QjnECtm^PYZowRV6{4CoU@-zfG*u`i0ZqUaaJtSDwj(Lag-QG68j-at1nia}9~
zj$%v{gC&Q|;ZY1>^2lzdN$SvC{xAt9{8(~?1S2IKmCNLTV<nyx#k&%Wi(<S49GVct
zJGpowlW<0W%=dCR??*9N;+{X2B!5aS|AQz#lz8YHdB|t`IEqhlN2f+HP2%a2&X9Db
zqzB8EqVT6t%!y)s6dM@yDCS1-9i0}%yeK~BR+5sQ+9>Ad;x8p=FU?rMtjOgrl;D|p
z-$?weq>G|hEWxuGmqf8Nigl8+jMXWMpE<SEwmgbetP)YIkfSRlr8A$c>qpuBDT@EM
z(q}_!qF5`3C`LWMNUV=4!0twgcSNyMf=y9uj$%s`FYQiwrgN+0Z<BPpq*T630t)Pj
zVz<Q0cm7}B{#~}z{wNMa@idA&F&vEIP!xaX${&v6WE7`l_lTrNB|RqT@hDD6K+W5C
z<~hxx5yhn_ev9I)<e!)HT&~Q$ZgG^n5XD8w`Bl<q?)_cjN^j=562%`9UzU{ee@akt
zeu1kJT$A*A6gQ&yD_7=L6gPA6u!4RbwQ5@8?I`|<;*R9sjpCjJ&&2La{5XmS68sy*
z!zdm}{GX)Mz*wBg&A=y;NmKL2kS~TJF%*p<f6UuWY=tB!AZfuEUdoMcVaZW`ELlu~
ziZQ<B5XECC5ktus;w1AqNlV30MuO6$4U?!7G3?8YQCT@uPSR)0@-fsb=&v9-&&M$L
zwBR8x$Zj=B*{#g8KrXHt^L96xY=?H{sTo797@{%6VyGQMoftA=$c&+G4E17Y8bdIK
z`Z4f1By5Q>G>GAsNqOR9NQl7~L&xVmzF&f?nTf=K7>a#gfS@54QYiRh42@!F9K%j2
z*(8RB34v$0X`x_})SMne3kgD!Hj5!yf*BP8DH5bgnifNI3AUYxqyE?4%R}0dPL5$Y
zZK#{_at!|#49<8yFuY<QD~47vs4-|Uw2pzJ6jowbHz`kc3_qL}>{9>U)8coD^%#s8
z-U|dwIfWJDzmJ88q2d`4j$ziC6arfg@xVw7Go=kq3@+CmL#G&WILnv--!R)YhF2v1
z`!%x-eMk*w1o`clCu0KbW9T3O@vAYsE{9h4^S>5DuNZpA(3#8_QuiePFNQZ`=n}&l
zva35GGWl}bt}%3vp+^keVjy$K89~aa8}%+g+B1f!X9Pi?82ZLAAclc49RD@_tr$+E
zrT2?ru^jC$yA<OP+n^W*$H158KG>b?9!eP!1K)m2@b;L%uo#BN@M{d0Vi*y_$QZ`P
zFfN8sF>HC>$Hs?>@F72=V;IBSXcX9S#(VhB_!uU{uq1}1F}xGQ#26OD@Kp?xs5yp@
zV)&Tej$uPuLgnOy4`Mj^IDRtS_)^0Al1_<X(Y1JXIr?D?6-s$vV(ElW=y`^NYoyN7
z3DaWuUuu4W=`qZZ9Jj6~re`J0W(AubTo;${DZP}HFeipSK9B#I?9P>RUJRd0K>imJ
zd@1RCX2_LzGP$&cw1iHJ;p-T_;a<q}nBDs%e9K+=VuG(}!gn#m_xF7t!=t<jX%X$W
zt_ev?y$9edqmmf*QjGZ-!wTje{lg7aK4E1HKgIBK469;T9m5Nq68?_)ex%3BCb02Y
zD{Ep{8^f7UBF*Ufx-U;{@Aa>w>*+DNJ%+7Zc-e%FF>H#V=hOI{Hxe2~6VBC0*i0q)
zJ#hAn*v3s4!>$;%$Gl609Wn2{sE1bsNO#A)r`dF9oA7(hggq=ooqRK@de7w9AHxAA
z2E)PG@5CRB;b;uUVmK7T;TT32NFeiw9Qx|VAaSGa3A`*}J5Kjr^Da?N#c(>t_ow4L
zcZ8mhx0Tn<#6Wsh((|)?7wC|33BJM!JpA=Zc`kC&?1bNpgx_NLow0WCyyIPF{}IEr
z7_P@~nKSZR;25sNa5d&#rqa}hhgE{Yy#qI5_>0lG692EHHzj=#!>t(pmiTrIcVf63
zL*+?%{*fG`a^Ri>KP?X2XDk*6=AZVzP`q*c&_wP;erxuS(Tw507#_1kJ1FVk2@3)p
z<#?|q&*LDkgJKRwoXL~VL4F4X9TalB7yYD!0tGl!I9T`703Xd-*ujJ|d5SnF>flb^
z_*>T-Tsq<><%_QPg6y1AO=$K%XGGDnBF;f6x$3eGO3PW`pp1hWX9Z_$c2;CcQ1z2Q
zIS0@2rRrt<<sGyy(U=;(x!81E@%V}kDmj?$V1|Pi98`AD$-!$5syL|XAj{#`WT@t#
zx`RXqyqvD#pr(VP<9&4;yg$gttKV9(TRXQ)W?jjtCn+WCJ7|!L;~gaAVxI(lNdr<j
zg&T4e#C-X?<fl2_tHzr+;Pre{Nw1Cf1tlOSNrI4rW)dVznj&ecq`YFMSaYd7J(ttM
zK}!c5dP&lkC1p25f=nsQZfghG4jc!r1I2;LSq2(02b#nBiBx&V(e|u(v^m{yKx#@#
zARL4xwj{MBjYt}mw4XeR+UU<5IbB-^?Hs%!F_~>7cqY)^!K)5BI_ThdHzph<9aN$4
zEu}Q?UwDtx*}>}$`a2ll;C~L@a6o={2j$*X-*osqG_Tvm0VT;HWw)DyJ{1ZR^l;GA
zK`#fr9lYhBANg`>iuIKTayi7LG=TR$oSpLybTG)lWJcV<U<X6!SO=3BDF;L4;S(GT
zlVCWrT_y&DNImOEdG}l+9gLE(7%k}-Ng1ZG5{#2{yqulPcO;-IsDYt>*TMLLE#8w%
zcBzf|Hbu_$k%NyNd_VyQA4)$za~Ey?#KBYt)1(-0yV$5LeyFe1fb{tBzOn7nXF8bW
zV77x#9lSi=x6}cda~yo`;0p(z$?jYS<p=uaN&My%-;p6ccE5D6kQ>m!d`8DX_ji12
z-u8VZB{}-*<cx0|d@H+)9h_{0x>J0M9DLL=K(VI-JPqGD_}&2}mq@W{?|4kwu*|^^
z4wgGu;b5hMRno9o?b4}X^gEuwY6mw5c_4X;?`H>V94zaIA39>KgLMwNwMF-~_{G6`
z){q?B&A|o-8y#GAam~dh2b&$VaM9Am76)6o*<Dm~vCYAD8sp%SgB=cbIymg$h=W~B
z&Vs((4))NJmgy{6?Cy22-@yTzT`FmxtYdsT68Q%m9Fp>UtrCaGx!64YsDon;E-<)8
zVw<C(;||U^{3#2jed{|x&p0^c;IxC$WwPp>_w8DeH1?&`xA*(bIpCW^*|J)N+Mn~C
z=iwQl$9sHKa#5-(`K|9a2fsV`i{5bXhl9%wt~=ms=Khp6aQ3SXu2A@_`0}jx-Z2hc
z<I?7*5VYBveZv9iv2Jm<9Q^GdpNssice1$c;I4yv4*sD79gnlNPl#=L%iw(n513#M
z{&VoJgM%N%KXkD6tl00gCf*kbZoZfKn6B<0dg>sLizlq)>oV>2`mjNvgJ(rv7gyg6
zoqd>j^Q<U&P84ua&_y{H&$%e%qOgmSF5+Cwd!=;|7e!qZa}hWvTAvfUzcY%vxU!>F
z2^ar6Cr;kW98;q;f9ze#MQImsQO3ovpvu2du#Gz>oR89*t=G#^{}gk?lGa*Ny}XMG
za`qQoJnusNr<J)sv!aVx=fui$V%2-CE4fJiqt)?qqOyxBuD3L*;<~u}>aLdq^;|w9
z5j9-z)1I1=){?Zgq-54{QCH&QS5nz+;Nszx_%s*IUBr{`;`TY=bJ5Vni!S_Jnv1`m
zPcLy^B)Z^FeiQy}PMUFEG;-05#<*zgg54%Ano1D#qT_McVt>bzhPdz|2?QxF+EP!E
zgjF+qsS>A;(bwFG@3$+d?|G5#V)A*h-Cv6IB^NKd7)p0hm5WRYyJ+Vk%f*f>@lh8s
z7p+|HgQ?aovI*!b7h%em@M$h|7p99b{I|4=A;=#W%}>eh)qJGF1(^gzp7U8QY!}OR
zmE=)p-Y*^D;c-4<$HmlXd0uh(juIa~gmGQWZ{^F8v}v2bnAW~Fa_F<HJnda{aPg*#
zE-pTgQ(tw_bzjzN5_goelcf1itDWT#M_*@dxabq7zTx8Q^P<(JEaI*%y1D4<;w=~5
zUG#9#)5Q{a7v6)*2fpYSAm~M_`iS0=_K}p`t#?!Ux%_h9yMTGy#Y<(?0WJo*7~~@5
zCw0?#(R)uJPl@ZPI(=RYanY};2YQtcy!dOO;VwqFSmk21i;*ryx%k1wau=iNJr|$4
znB!usi*YWdxcI=uco!2~yzAmU7k?bfI@rMXj*E#@Ud~sgg740GG06q#UwgAByC`)*
z#H&ek>HAEfqgm4``r<E$59vA=GhEDc@v)0fTugJ({z%q=%D$Et#8g(i3!=~B6!(Id
z&Rw=F<HLex-z%Y6a*A$ce6yMJ4Sdr}c%dZt%*9+6-?~`D{YY24SV(X|d?CdqUJwgh
ze96GMXfq_EFWUuiVN{U(ucShES;p5czL9D3^96DEg2-RSx7fvZE|xO+tNLzS5Z^Np
zE~;M?jepY$UljXRY1?LHE#vO1;7hqENO`HY!o^BPldr1?Dx_@PhZp$K#ZRo{E;hUP
z*~N*(0NX|vYh0|A-E}V3OYlqXD1)*g7Z+IQ$sa9IdSAPgEiMjlMckhGleRK0`IEM}
z*iNfT2O}574i`IJ@Uua-T`qR#;yn`Vb+Ip(v!A)~G)S>SE)Ki6=;BuwM_e3b(EFR`
zTpV-xJ3X9bGIUA&D;zi>r#R#CH<^KxlAdyLT7sd|lF4NI`bjWxTPWYhiRZZyI_B?j
zQCyJI6`E>Xa`7AO%%Ak9i{F_r^1#b3zgG>?@}{MNRf;50!%76NxLA=diIQ&~QLnqW
z!A#4+gdF_k;wCF$4l3s07PH93Qx|!1aN9-Amwf*)*(9iRIGz8Zz3Y1aO@6}qcD?yM
z7x!iNfu#RR%F%}sJd*T37mp?2U*<XVRlgMei$8A;^5vj#4vOR;e~x$WTp$Mpb1<+(
z;SWmZ=bbe<g>t<6Xzx~fWOC6Q6w5*B93Th9b5J4&rE(D6s<M^LLFJvvaXH8v3q9ko
zdp|wcE0|s;2W4|WTs{Zoa`2oyq~XqFN|HJDqTrS%s32u{Y^5B$kb_=1__1-Iat^BG
z;LRL#$wAc|RLj9jIe0k-)pJlI2aR&jI0rRzP%8%sIq>D6b`I*~pneV-<e+X2R#)<`
z?vqt72mgnu?|_b~`2G(hbW%Rjl-@+izHC4+8xkNWVJQj8TU2CU+uhf8LFoztiXc)%
z5Tyu+AfSNK{VG_n1EPWoh=^T!@4f#&Z}{b$|2cE+`OKX=Gk5O2bKl#yue|qh?z;Q4
z8n4UkIV4!EVg5>Ab|%FdW%aI;HTQDfqm8n%!pIJzRT#wnFsiJ}C1@RnaXyc)ldYbg
zx-3{YeN&)q7!QV#A4Yr1NZC1Iv<qXlFFO!MZWwPj_4jL$J?*jf54XzB3uEZ0g3-<V
zXM=?u!sr;ryfs}qg+T=hxVj<1PA#%~4-J0p%cjgjLYWupW)+6fh4u-fcNqNdG8jft
z7{y_94WnBa-NWc1=6!2@Zmp38T*by<VY?9pJ;NvogX;APqcjYeMr)B33iB(3g&hBj
zk8`O57klA@+()>;Fphs6Acupn@8e<g;WERBkbaZIwS>b^!ce)QAwew+J&d~kY!1cl
zbN0$y^|DQYXc)0D>@XamxhV`~3CxixPoueE{Nc-vhryMyFV!G((!>I0jDBG}5&pmb
zp`MuS{Vn)p82!T-z%#?z$>f}<k|hmJ8x+RiFow{QVT=f4WEf9{@pKq->qsTdN{2B3
z*5(fn;~4=utjS-qS3b}*eeKqwa&wYK39&I@j1A*ifu9Rw^Imy$7|(}sKD~7RUb&9x
zXRjAT>x+Vp3xnM`{y!&6#)q-xT1mM{8I+t9#!F$m6~@A_cj0kz7&F6|#jO#>lrW}-
z@k$u4atG0L{Lt#|v}s}d{e}1W(aph})B7u`W79~dhcP3J>w9HBhgEl<{5l;`(?2il
z9nNNlF^39-@dkr`WcGJ8{gu8<W-9@!{Rd~i8OD5iq*wj|8ftKMV4qC9h{}ZVQy4!p
z_81%gmaGlq{V?9)UZ_{FL{OgaEDd8BgKD45@-Fv+z{>?)QN~{x#wvkVmvPpJ0omn$
zVSEtAmvjv`$i<8gxvjW2xhvo9xh{<L0u0zE*Q)H@=>AC<n}!s9#_hSH%co&%V3xQd
zu}s+~lmB@bUkCxGVNOxk!mq>lMpS<YV<Q0#&YhLqX)|N~vmW1yCRUg3lUZeV;_t%v
zUdWKc>eeu}h4CY|N!LOu@X)CYiV@H2k-t5R-C_JD!fc12I|cnk&|QN5D(Ltom3S#>
z55qN#Kg0Mv>|I%6NzX6%i+&8_2>p8@lNYsi<|qFX#=l|w7sf*|-?BM5p@g(oV4n5u
z3xhKI1w9bPK>-d4dRS1lPHT~VG>l_(eHbUgILq`dnoctR3o!O-<`MW#3w)-m7Y9Ed
z#^(zpj_`gn-?y84^t+mQi3u}|Csp)UaV3naVeC@ytKuCOt}#O@Xd>|SFm8l#GmKkd
z+-B-laF^gGDX6BPx`I6?JCqZg@(Pj_{649eB}G96fh!7Hsf=G)fGUDkRq**fnZo7f
z=A|k~Q@nS4@eP^3?32?4&JdK$WBcS9Vv0JPV!vEd!Tm=n))JiB%KyEi=FPc1?^bY+
zg1QR6e5a^B`3mX@%-5rl!}rNFRJ`|zHB!Kr&ehv5e{-?}t4$R&Q}C>U=M*$oaIb<=
z1+sz`3hq;oub@4rQ_xaDD+R3;WRmWeeF`K6qo)-SXDRS2$X1XuD|gEyUE5a9o$^(|
zoQk>X@%-&`avxC8M!|t+v)d_XtKdNe<Oe7$m>*Q|#6tUJ(p=F*uzO9<JR0^~F#)R`
z6m(S3T|o~81qwPT=&Ybn!4v!CheVfUb8{aq>pOA3-28fR7X{t8b}?*FL09%#p1o|p
zOu9=jixgCxmD^K6i2%idaxRwR`(+k_kb+(c5(@e%ctpXY3L*-k3LaC?TY;uPSMa!k
zJ_^DL6a{C#E?}=&ujl&bdW#x9qbT`+tO~{6e7U5>0l6Kk$MX#Zh5#`IrUFL@u*nj@
zRxn(&?zvG+VOQaO&RydQUO6DM&>;P|a0NpZJf+}C1^pEaQZSeTNj(QB7^t99<=k6W
zJxy3n&hj+*s8?5(Aqws|<!J@O6pU1`{eV1N!82ms5rV#RK-MaIT|N~$JbI;gl;9t}
zSUg(6^9q(KSf=o<NQ_l5UBL_mFDUrn<&u{b)UTX7PQi-`#w(bhV3LBD6iifbL=2U3
zP|liC#F5*~^v0jesF<0{vNWmZ6a`bMzk+EBURCg#!k<*0Ox=U>#v8@ew-j;YlcMiT
zHYu2|V1a_y8HWeuISS?~cq6&zY&v3?Oi*-CenY`L1v`ex>}Vd83EosN?x5_OUi6m2
zALDpi%)Us$<(Wk^!eRw~RrECBq;n3+?<iPxP-es~p>2gL-&OFQg0B^P!!4;`1$U5w
zkGTOU$>l5fP{C>iYZR<i@II|H!&@l}W9)yl)vaO%KtwRN9F*57`17E=UWlDLC^LGi
z9r6O>69u0#Cn)%W)7>uKAWZt1g2spBHizV5A!8kqzofYi$zL%}1m}lui@55I3N|VD
zNx{zwHY@m6;f<`=s$h$Peiw^5#dma^kY@~hFMPT|RJSQ$ko+h(I|S$GA^G1>*X=Z*
zf}IM8Jx?8ye-S>Vp46@4VR^TL-xM5FaEM!#2~EL26jtyDS4Vp)_*=n<8rh${Bn`^R
z=P~;DBx%6!ExY`X^K@(fe+u?;`zv_&%j84b^J+Yo!=`--_A_N2mRTM=ER&-T%0A5a
z;pS4kOUFkQ98-{`!mr{u_l1InDjKQYUjru<lv7b&#VG}+xf7`XudDx7F-gT)1?Lo;
z=dQWsyT+!YnHL1UDCi|YFAI7_(5r&>JS<cGx{$vi=uJUy33^-5UbB)o8YkkV_+%9+
zD(b0dFxFQ=MMV{rR8&^I7vu98`PgCk-@g9+@A_W+y=4^@6Vm)uRa8?^T}7&jyHwOr
zk)|SD<>O9(if0eY(+|r}E%EnX<=^+VfAS{*e)EFV11f5%sIB61yMmHs{+E{dd%Wwv
zac`iGin~=%;2uHi3R*Ct9Xa)>m5Qft`950eeLv{l`u@f$nyAQB;ZxC6MKcxG#`*43
z(Okv7Dq5&G@=r^O-H~5@SmysD{4e8v6)lCe`<=<<|1ap2J+p7N#4h#yEjneljY}_`
zteCB$m5OdEx~pid;sF)yROG2>qhiBhxvh!^Rs4NezI0eleXb;j{3EjVb(etZU6jie
zw8jycIA2A36%VWEtfGU8jw%XNbmGWI<meH3_z`*j5qX`EZ2DBUhq#KTy5+?Dg(|wJ
z2r?3mdV`$p)aAz`^6?{bSHY=!R3^WNiXs&u6}?mxt9*G2Mjw@B6(!X6sLWSJl&bjn
zovuBO%8nR>tqYFIkEnQ5MQ;_4t2i(;=kufTV=4{_ftA&}^%0u$RUu&&HwDxDwy4%I
zSru`ssnAszDk3WSs!)%~Q57*2jtW<WsbbI=Y0E2;rQ(YT-qmbd1*`sJGU>Rf67La;
zt4N5UwvUp!9FtFsl=_Kro)DA+Qf7dPfhsPlxWoZf3|6sA#jh%cs2HkZsfuMPo?;j<
z{8UU-F-*m96=PJ4RWYZI{}~k{IfaS=$K(;J_b)k_&#G88F8w*0h`LSo{%xmKpI5z`
z0eBiu%6%Q2nf!u^7X@>ipyV&fNM`r(qI%$sE|XO6w11k4S5>^k$n;E?`Lc?sJo|bl
znetPF<h{S;62C%2E%R<FcumE06|bw9tzw1{pzuuE|BWteomDp1_D=qtM>FTBm?t=M
zRlFepzYR*Uhxhs46xI1E7N~gUC27hi=`9sgo|6{RGNYwMf)XrN@pc)0N5v9>j}FLY
z)4M9(Q}G$iqGGv<6)HYa@u`ZHw2z8)s+U!`z||_=SMfg;YiPz^scRYhExqZ+50liH
zp1D3y@!yyn3V%pD9FrgZAh2Eq|8V?>A*VuF>8+Y&@iF;iIyR`_(s<v3q6CW0w){fa
zaGQ!BReVWJj>%t%b$zYk8_{>8iXT*LRk2C%Hw((qzGXNG{GFiRm+|RPsyBa_lsnA(
zFOvQu=O-0E3xVw_b_nols^{*V^ql~|sMvi>-givit>QQOLd8MV`zg9d#UCpE6!>>R
ztJO*VO8~b1qk=yATU4J)tHh>%X$lp41!td%{bgPF!{Lh+-mSBT1m_r2y^6!kNM!=k
z<m97bv>~O*9Ey@BRGehyr?$-YD$X&^1)ubc%9n~HQ|7z?pH5D`AjTn+I*@;vC;!Zx
z8t&0>m1$5#vW655*Hzq5y$f--xuY2gt-LF2w-~OQQt#jjn^KcBwAq}R)yiK^18I2;
ziSLUDDrl&vAzed;hDsVLYu-53HB=E|RW;N(F5f;TQ?i<9Vr%wsIaRc#Y2I8c-Hyxu
zJChF$H8s@IaF>P}8q`_Ae`W^BuP)~0bhXPys3T^N9+&HCsHdTah9V91H8jxBUPA{B
z4K*~P!W!CYXsn@$hWj=AF-@*LsIaMqW*VAnAnx^29^Zg`uZ9*HW*nD!{2F;&UU6K$
zPvg6hbI56_VastjQ^T**@+j=nAZZ}T64WnfwxDFT5}>u94~Xf={O7p*AnkKPZl~e9
zodr1>Un-ar5HwfNOPp>>UY>@0A=dJQOyQ0i3N!>Yyw=*^Ny9^2R6%henJ46jH5e!4
z&J;$`{+>D1x%J{af-V}i&+tEgLS~n)8Y*N5x@oAswR3kd$eSnRV$J*Sqo;-vF)tU$
zYN>`DCuB#1tRY0rH9VrhWEoV*)<-o&G(<(m$29a7;Bi6w2pSfYk_!E$K@(M7P(uSJ
zWz$cmi%9ED%A=|=(e%*?`HPqGEDhF_d|S-L=`IxIxEkU@pM(ak=;#~y)UB`J^wV(R
zgk0~W++V{0Mu>qL26)yqP{SuWKGiWu!(a_V7*QGyX*jImDGg6+cvr)F8ir{Yu3@5v
zNgAFZsNox};lotl2n{1eb(Emb3Hq#tms|RFp3S7#mci2V8pdcCtKkI=Q{Wq~VVs5+
zMfcb`KL`17c+XA8GUwIxP0;Xcs*f^czNBF?Ew5oZM`K3~Q#HIoS6<9qayXSg%sY4S
zWyxvF8vCYc=zci$Rnf$1%}Tx*8fI#EhauV{ZI*`DHN2r=o`%^P=5U-G-}JfCTn)*C
zebVD;tIK&ez>xW-hWQ#6X;{ovOif>);VlgdHQc?rkgfF|_SJsC_i@ORe4AoTJ>0pX
zul^I##<|iG4NEmF)9}sl%!(yxq?vC>{ASZ~4J$NkW0p9Uxl+R_&AU_Rdkw2KtkLi_
z<u$C;@V<smHEdw3h7UBX)3Bc5)XMjvhTZQb#d`SOt?gs=BMrnK(`6c79VC&{CY&~-
zy^lEfpzkvcpEKrl-&gcnZQmCfzSL08@O@p|M<&H6KeC5!<2}BO8a8obYThkLn*}BK
zmizsrOweqR#5;$-6Z~JgCz11mP&;rnbE^QVmi!}IHT=viqv3aMRmPZxozzytZyJ8l
zu#1VMdD5>M>bB1M>q6$?O=*L#XD-e6^*Sm4mFe9Vv`52)fxgA(GKv4x@Rx@FH0;&z
zH*-#k?_Uj97EAwV7}z{%dmZ0@eSDAg_pNJ}ypMrRJ73E@sNn$pRmYb&m3gL55<$PH
zZ*+gJdPKuf4gGZt&~Z$|apoKySvpQ=ILW-KqpFTm8cu7tq2Z>6GaAlvIt`<aWuDV;
zUc*HVmqb;2+(+gG4O^e_0Lx_!-3BI+f4AfNqNnewhHDzWmwlTLr(PFb8l1?S9`N1L
za9dO>=t$C0PDgni$vR)kn#4iMDQQCk-hi79r;?`VC_a&SNb*(GQHjDznm0(KxU!D3
zV?42HI;!iatD~NdR2^wLYUrq`BVEVX`aTHS{vKb308eIgx=Vlq4SjPe`fBN@t>YdY
zw;u9QxQ>pyMQe+%{H%5v?JG(3@y0pg`Z^luXr`mNj)poKi7riaFJcpq_!^7q2Ms*o
zraJgdv`;(wX83&f>S!UFTI#q@2i4$2_fyq}eZ=9;o>-<1pN?P8W&Sz9t7g~q`E_LL
zi0FvwXr-gIj_x{o=y*U!8yy{W6zFKH<3SzmbmZyC(Gk!w|H-6WuI0m=mFxX8ihLhe
z_mTcn*;gr$oX@FsbkM=-%dXU1@%SvWYWX_pct}SVom&GB>*%b*?3q-kL%y0x0n&ZN
zo@Dt3zOFjDiPnv^e2ZM^4wKUr(Lp+T>v&v8PaP#Xdg*vXN2$)YqIolh1eFC%^h}~+
zwHHW_>Ud0WVm*^)4DqI@;?Ls9eRPC%s5&$q{~b$Jbbc}*i7K&6(tPRHT%WGP&@sgC
zb?JXnCX>3wsF;qpjs$Je(r4*#sqI}pTZhBAI-8j`#>YayViozW^zrr8@q`Y7eu92?
zI+K{?Nu6&8^1wi*eI4U<OwciyGwOI=#~2+$bv&hGxQ=IZJgwv2gs*=m-!L5&-%Xl)
zCbQd_%&MJyBXo?^@vM&LxXg~eQFP^|q!X7jnM=<#@$n0Wqq*ZQXI9dED>NU$SP@7s
z>fS>NjHnlMj1!#a3w#&4`IhL?J4aF{>X@YC9UV(_RH^TKNyk(jujrU8s^q*Zz!X6%
zoX?!5<5eAVb-bbDHHJrzq!~J9>X=Rkwf4PqJ@c`?zF9h6*D+hi92((&{(CQGj#IoR
zBaU9r9DBcS!b!Q#^~`xX-qf*B$081*V}XvhbWni8cO-dr`m0u6m&J7G`OM}GeQ)a+
z-B)_^q)Y)0xKzh7E{8#TBJ*7x@99{>EnmU+)d1ge?y35|l{$!5aO<tiAy}njwT`<U
z^vz50op>&L>~p^1`M$L}-WN7uM_!lyK*xtV*6E1-SMehqAM04JV_;U6eJu0Cu&=^^
zB+m8kg9ZBs`!?v_N%ajKH+6ib<8vKfFeG&RrehE1)$z5CpLG1J;~O0tb^M@XtBy@N
zHtYCS#}?hYKX66UoE_1u-)iRbQNHiEWt#fGXF9r=N5F@SNVn<U%YXRb?T_?JV?Xh|
zH`4hS>2@7Ebnn^WUn!vD7be*29r={8-8P$a7xn3p&%!Bo>mak%cLCDhb^M{@w2m`6
z{?zf8j{Q0g==hr!=DyIemx-=w)~F}){?$RsqC|@JQQ@>K7CuqCVsqgAlk!0whnVMe
z9M^G}(M2bwX2lw0H5(F~)+pzwj*Gd4xmEM4eiS$%ti*r%P72WHt+uCh?~gy04_9?L
ztK%H2Ixg#2{CmoI2KJF4t$KkYFa<^1Ki4|@?JWUPK019x$8{PrE9a_?Yhtu(HNB_L
z#x%&UQ!khNTRLttN)1#skYsq~tte<YLCXu8Y#>E|I}c}7Fgzy`Q@E1hJ+W0;P%>Gn
ziPkg&)dff`6TZ`$E~*)n7l6#;S=luW)H3j21bZW>ZJ>^UzYY9j;BEu=82HA(Mgw&X
z)HATaz*`3D8)#r4VW6*ph6WlLc-TN^1C0$dG0@t;0|uHJXl5YOfX_g4153^YS{S&`
zz`X`uJQHBqotl5Y!9M|uS{gW<$XnYZn|ML9tS1}hN(QnFWE*H@z;B>emmdA|3R~Zo
zMG#5Ln%_6Cm)f4?zWoJl474?nZ=k(_2My#HXh(UqeZas^rvn|D_;aaA6aR;&0|ig!
zZ8<6D8Tj|4e0h2g4${HE+_!snqABWSbu>_5V9!<Q&=h~ouXDT1^*>~w<@fp5PRb0e
zLIYh4C<asmK?7Y4JZj)E1Knu1Q*w6$J*aTgteqzUt<D6B3=~uOss6N0xp|ZPKi<ge
zX`sXaL8+hwvH&5fD!?OxzW=f(+}pt82KpEX8z83{GV1-BU$~^p)^GEVoC(zJnccHf
z4^quQ)IiLDZon`w`P0<N1M(sUMper1@UlO<UY2RVGT<0+4cG=YHS)I~6C_RAoJ-2r
zK~TN8fgM}&_l^z{_cQQ>fe8jC8hFw`e*@1L7{N1t0|N~VF))-Wz2uip$%70GW;qua
z+9Yea(Z1^`IrL_irwlx8U>LnWD!3?-_f~E}^prf@z{!{WoTB4BStAYnc`oprfzeb_
z;4W!d&l=b;uS<o0^Pe{`#=r{(#*t3-k2UbplX-2Q4Q_LKXbbaSq%z;;4@}J(Z}6*O
z*>n(bz2l{mC}!X_1Jh{%11}4QPBSpYz*Hgm3IptvyyeSWW3Hccu$9&F-IP}i^d1*n
z>1LHb7nosSrh(Z8<`|g8NUoayx`A6K1AQB1`I_fn`Z~AP)E;vUykTIz!QZdh^XT-c
ze!f-XP413S!Fi`-R`)f?VpGL_c?%6JGO&z0%fMpB<cZ)C16x}A-!|~!Dft}(Z(3c+
z+)kBR`<EKtM``7QsqYzBZeT6lZD56vUt?hN&is`EQ*xDo)dGKeF39SCeR{Iv{|tO!
z;48uZkgGTq{KCNTQ}Q~2*9-cQplte>*+bw@1>I1_|4e|-X~RGP#l9??vC?Vz>oS~n
zGRPaZHnD2pJHxw)YqNoGxuP$NSel)dzc=uMfn5fEHL%sdHtvOS{$Ci<+=B*o8s1f`
zp9Lk@VPLxupbV?TcPPP*S%qZoW;U2rxW~Zn0{li-KA%U<9|k(SU8p`1Ail7;@J|DO
z86aR6a{gudVlYH7nMusRKIWVV?u}r-fddArL{K$?g9Z*6Jd-TB$&n4jXXPEE#RTVw
zfur0n+Y9nf%S*NtoM7A<I4_z`8Tg-75*?a-*1&0j&j>o;-GV#(a~z)^9w{HVAmlmz
zMFB1edRfpb2CfQlP0;ItQu2m@+S>{UZW*}E{2u|wDIY;{1mz;$yl(kG=(L;?L4^n^
zMey`#nVM9LfJ#=iN~kcal_Q`So4BHC5mb-ht_W&GkQ(t;#FD|RzO5iFf^@-o>9qW#
zmJh+K-7|x|YDQ2ig1QmZyThane=4XW@W9=vcSrDLQs5q;8->5RnZq&bN6@%z{00Iv
z6tt0`6l)?tQ$Z=;EaDlQphX1tMNkw$aRm2A&@zHR1i2ApM&RR&!=(ozkRr$uIGa<C
zmHZKGD<5Q2`ZS5vR-&nO1iTS?{nSG8+eFY-FdvK{NATH7K1-L=728FS7eVI;_>k<B
z+Lg%6kDz@79U|x$@ow_(6ag<+wmnzzo{3UH1V2rcc8!xBis0c0_Pr*Je_p!hMXC98
zsW5^r5d<UX8bS96dPKZ?xp`-Gw+NmeFXfGpdMx!WvyYx3?d5Iok0te_#UdCK!Qco=
zBakD|BG4lUkuzL+G=j$>=q2=gM9@2TclVCq@d&~ZC=obyD)El`zB8mgG}J69V~oTl
zEIKW#G*OQX&h^R*k`duoP2tkK5kw=1(clr-5t!Ty<D_BFd5Tf;>!+oyW26sG%SWD-
zoQU_g*RqjPB7(jV42WQ01pOj-B7%%(Ju&url53wKank+~u$na4W72ekC-_-D8z&8k
zU}yv{2m?OF$P{2Sg(Dcw@gsOPf@f&+;nIi*M$!c%yb*YL+|y^GcV+mw2sTcVemE_Y
z>8qbh{CossA}B~sr&Gp?0l9qQaS^;2!T1O!2<F5HxE$Wwzw9~b+z6>S6_X;~Gu@PY
znF91+1V2YGHG)?nSP{X>2&P5wDrF*gD}vV|m>$8b2wsn1Mg*(>lRhcT-BVIBGlIlp
z`TZ^zk<N}_4kdR>^CFlV0R{fBl1`nL-w>G9-KXU@g#cyd3$O_p3nN$*!8_cZ5ftv0
z7K_2F*AA|p;D4JDzPo#sGxAc}YHiQ=B3K^5GU~It`@0cbSlhGl8JRl#{ZIG68Ts8$
zrQDs;Dt6~eBlsqQH4&_(Wu|3+9>M#}3=w=3;g=lI^NjpK1nVMTmk%jF!Oy{4ALy~3
zA#p}Ff9*m3ClP!q`fiAL$(H(zJ0lZtw9iCGf-ktyME9>EVBt7#osmg5Mo_;~$+r<~
ziC|L%+q>lM{8ic<0ZlP-x3n)c_+12BBcR&fGw1Zq{~-bjunbyU!sTp>;LYvQkAhOM
z?GfyV;P(hWiHMyM{1WkQvf3l)t_U8gnREBvRC0b5oZVFWjQkrXJtGtJ8l3&yknBGr
z$Zj7zenzf*R{l$1R{xIRAA$cZ<232hbsv*IR~<vA7!EM`b0IM_h~ZEKhq>4&zKY^V
z1V_2oqEMnZ7Qyidnnlq(iW3o><RK%9YEhhu;B*AHBS?y3QXBu72+l@uj+=K?O25*;
zdHRmkHvXFtT;wJy4O|oSQUsR;xDvrt0oe3M8$YSi#(!OKZU}mJNr22-+_`d~(OH>y
zS8|qeQ6xu^5=D72DLKWFWYP+vS}}?ikz^KfDn(IQFt3ybszmv<vH+RYqezXSVHAgZ
z2GXKPCqIgNqR5B>LbzrWZO+R7l?Lt-T{vltsCQ#0HDvc%f>}GtPbviJ2>JGl^6Cme
zPJIFD2};cyM7>qBFKMGF8b>|LbP9QDG>M{VSua-arP@(+i6R)qeNo&WMIegYC|X95
z8HGQJY$5E6g59$OmZCf+CUX^>w~HKTB@}BN#RGI%8$ZR`MA0^i2Zat4qYf;$1;~l=
zdm>)7U6en{&{<d`U(f<U+Y8!(D#?M40&@hqvQrcfiR#0&Qq*%U2VqlTnGBg-qv#ez
zX%w>1vwIXhq9}?Y=anR`l%+U|o}%fF1xf@apDKj}ek_XKQS^%9ktiOG^3xK59%p6R
znaa?ZobK@``b0sGaHZt1BdHpN7R5x45QQFv5yj{zo{u6DMKp>5Q4EYC7KIr_U)m&!
zg>C#+6mbD;K^;L|LD@=MB?K;sB(vJKH1I?ePtw8%iiWiDle1%Qe*Y+l?X&WrC<Y7R
zk>m(4EQ;Y#3>EmPD4vd@$)Y^=`bP96h^<N?eMSh35R^tBXH*o=it2Ns%e4nQ<`{aj
zG{Ev=6k~;zUWoDq{(*5(+!>G-7%%t}L|-adFOvLH6qBQPCyFIeyd1@pC>BKVRuog&
zH;P$NydK3gF%Cz5RZNi~2VRR}x)_8^&ORdwnqsD)<WyahH#-W_xlzm!fH)jac_WH>
zQM?(&{3uwZ&g^x^;}lpZ1|;AJY+59$i=%j3j35b9ERAAW6z@mzzbM{~;=L$V39;o-
ztPr}b6jjnY@*L-mBUVSTMl`Jzlzh78gD5_X;xo~4T@>r1_%w=9XXTHC#i$tjejLRo
zqDuKp;hGIXh9gjt^m7XA&HqA#x9_vuuPGcwg&6o!?u}7wisJ7m{-L%<GdD-^V-!C{
z@of}a1ZTmXl<x#!>-PfuAm~;>w{cP81vo!Pu|0}EqxdU|9inNspgRR+-(LjS6~(Ut
z+<9%zZ&A!RE3<V^6u*~A{=p<B-cduo?~?cI!<^#6f0?YJxDds~DE3CNPY554Vt*7h
zClnl^>BKk(qBvMK&LIH~3rZz_I4jTDTzV{u<IMkMGG_!h$)kV(r^|#n=~;o#33^^o
zGO6~ZC@wR53+r7G{9A%vjpCY6X5U%)dYSx<C~gWYovX<1w*^j$d8TG57ejf0lg@cY
zND+8-UXO2&Nfl$L6hq}0st9JS7^=olErz>dxUXMc*FU_Qx2u<plPW-34Cw-72#T`S
zI_KmXF-)!Q-6vc#=9%l%;ey(twN9DL-2&VrXx$j<mGPJSl+-YWMltU=o)<&o7@EY;
zGKS2U_iekTF?2sC-zRXh7+zdZ)Lh_u1#KZ{>vQt`G0Z)l%hG*(jxPo&hBh&@jd^#>
zX2sx~lUoVw7c@KOeVLt2tz&o~hKWUmU;Y^&XY@Jw!5CgYC+Ebl{G7~h>hVd6Kn(mY
z*!JTcb7N>16W<qWAoD9@`7yMQ;gjjvDN_r#o|8KW+%bmPGyRzh@*j%f;TWEbp??gW
zV<?P4i9wB_OANsn<QPIRbd8}~45cx|9`Sb<v_}j@0xX>EFOH#S3_oUP{4yxJB!>Ox
zWQt{-m#?3bYn_)TEKX(VC4~FLu;`PdM`C!C<DZuwi{bqv0SXiMj^S~^yi*MedHuXM
z6#pXBV$frJy&L{JU6FUbMPi83Rx!9S?-sRL2Qp(ZJpW*hDd>0SBr676;G;P?d=8y5
z@faVLLEjkopa-j6?=R{X!xJ(7<Z0VxLdiFO=8XP1k9a@~17jE;!vrz%AVHrMbZ`tq
z1Q;slQ-X4+rv(@m!*BtfDdUe2V5Fd<VtD7(WC}kgs-w$fo{wQn86F$M3uSm5<454v
zd!(}0#26;gbe{5fDTc{0@Sgn1(~?PFj^WK({@H>vg@G-=D=|!q;nf&kV~_|AC8rB8
zGlm%gRG6GZCd;fC?%>-Kya8F}Fht9Gy%EDaP7%X=!Ffy21%j??<jF7m|M1&fW(;e^
zfJ+2_wV)JRD!?*sB>~<Obh)4_80s;;Xe;&3?5kp!Gu~5UO$=0N%%#8`evM{@AH?t>
zcSHh96Id6+`WSk<c-+NDF?<}uLpC0^@ktDyGLu+Hwy=Q@|I*7Qo;2}!3|~+&6BSK-
z8N*jG?4|d)Wn%ayhTme?6T`+BHpTd@CHxY@X70F8g5SmPeGK1Ha%pgjpakbe=Km1G
z));<@;pZ4qs!7{u@bmJIF&wEUJ$+t&@4QU#<#~B~3_BQgYxBph%>CoMJg0$l@x08Z
z>UPE8zaV$NAkS+k{ThRHu4H!%Yq|$&UXXu};g1;pj^Uq}_tfN{F^s(+{}n@OhGbum
zr|$~(`Y0Gq_a3fXa6$ezhQk+1{^O3mAYYji+|QH$7|z9TK8Axl`H$gb45ug~6yt-I
z$70xZK|T`0=?n7F7%E<r`ApyO7*53SYy+uQL$9z($<r~MWv;s@bG>I`*l?e;I#tTK
zD3@N8FT`*$h8r>5jNwuYmxcT<7v(E-;@#51i}LjtuEubU>#A8wPQQ!t_=|F#Rrwn(
z%D3oKv6k{Co=%sJU6hkdkg}9B5p3vjxawpRDJJfDN`A4l=gpL0B@>lRv^UYgL=_WN
zO*Asm*yIa0P~Ajr6Ln17d@PV^BHcuWi67b)q*3gWe7_cG#;??vsA(endGIb1HB5B8
zBrBKXicO`Vm*gpz<XR?{3h;QQbhn8$Zv-21Y7=!$zEK4AO*CNeG?qT6q_9uU+d)=|
zcU_WCUy_@cXlf$cL@N``Of)y~{AF1(aj%IMCR&=vG;tr*zAWE2r1*Y{RhJrHmIIgN
zC+bQ@xS-c%*=HhgS^n;5=I8ygvP{p>EPfMxHw6h=n|Q!PI}@Lc%x`02Po&^M6FDY~
zyK~x#>b%RI#R4XBDRWuA_ukU4J}V};`g(Bgk&b!7&iR7=dRgvhqQJzXCLS}<$;3k@
zx|`@>;$hQs`fC|d(8Q_Ba%U5TCc2p52o<i#8`cGte~Y`CxUjOQPIal95dOZETx6nj
zU2?IBo*bl_RN$9O$T1Nz(TfhcBFiQoydoE0k%<{Ud^GhD_AR3en@GJ)JZ>Up!Zgu`
zeylF3CNw(Bgd(cu6}igLEIuWwoA`KTe$>S1E3#oCVxmc>oVQlxuc<DP&po*Jy%LKH
zX)evWBD*GRy0W@Nt2!pK7Nrx!X=hs1L_ZT#YDx1imh`SAt+*m@yy6+Zzli}fAbo9O
zpou{yUNSM+#9$LcI4Rv~Vkm7gDWiC0?r;;%#geB?{CP!wnh{d9beM^YSLAd^&zKm&
zAiOG%WE{2(K5JqW75F3HcU2BvmH*c=_#D@JRpuaLOpG=0qKWY)4mOv#M%wTNVaahO
zhF$gC%BOTE2y0I=`Dmmx(e$3iE!+}h)6}c-%Up<wcT6lXG1bH?CT5$MV`7?#R~dEJ
z<UeXjubG%`Vup#C49E<rZJH!OT6R^QW#XHw^6MrpU6ud3Dj%p+ntDy1SXY{B;tdmT
znOJCIo{2ZbjPp&nv$Ie4%eo%(e={q%fcy`FEDv3im22Lr7g6DB@?sNjQ<H1*_P$vx
z?_86YnpkFHm5J3R-W48MZeoRru3ZA}nYcPLgP`e}+zr>{U$4n4O_0`D7F=Uut%<|C
z^EQ}x-^Bk+tT*wIi4RPCXks0m(n9(nQ$Cz2pW6|vJv;m2HM!b#`C}8GnE2GhgzNyz
ze7AtP>kehL`E{8I_6sI|6Gu!OHSv{+uT5;{0%-~p8%=yqmzmgPV#DvjZ%u3=e`xV$
zK_@Iue=|G4blv{C{2f!)LxJ$XtolC$wwn0K#Lp(S4oTT&;z#PaFc7{jlRkA_o_1Z9
zYJ0hQr-@%o{B7bN6T7%f6Th4I!^CbA`ECJo?;fU_y3%ig(nrg$d)^=0&~p~u{ig`~
zzfA98e8&I3CjK*VfMLU(lI}eTzL%MBTk$><`%Qd%UH)oONqlXPlxgaah#&gsFc&f_
z*l%-?^q7g`w7-dKCQg_*$*s)*=H54P+QeVi<ugJPrs#cX(t>9S&zd-A;(Yt;Uz?R4
zuOpo|ad(>ZtQxq)R9RoTY~l*L3!S&$Cml+a;&ZaA-;l4HxMAY9i6jd*nZP?G-7;|}
z&Usv5cr?G^Ewh{jK48w^9KJKiER<rQf`#8L{9&P@g-RAiS$Nh$WeZg-1TA#6P}M>;
z3ymx^wou(ds)f5O)Uc3dA>9IXrs*;)FB@=J1}Xt8??_Eh(?Tr^%QK|AEsVZf@+aiU
z!R*==>R9M-L%vi?nzTN6kA=Dx>RG67p@D^l7OtjAkKd3NZVJBeMsRvfsq?nt*=vix
z9-Gs|LQ@M_7W@|I=w=q~vv9wK<`(X?@bnG&^1}2M7TzlgY@Z*j+(c?=Vag5JXF(Dm
z)ABMWIm>Ry7l)+m9hk)fM7D)i79OJh7Ft_)z(S6NfQ7m52isU^YvDnGNA54C)5-kv
zlt-=Q#km&#z9DzA(9ZJGc%GmH`2w^Tw1c1>1uYQtn;Y^HznA1M+>k$gD3Ebe?rfpZ
zLKh2}H)ZZMmZEjV-7Ivs(9gmX)Y(Fj1=WIPq1ZxC3y)fOjIOyUmspT3ge;U=Ubya9
zk<aj^(|cKX#KOD{K{BUa>^Qe;V5@lfLvIU_R4HuXaSMIum#@4S;L$mDQ&ucYc)xJz
z6Io=Ax+&`x49iPm&-`A@YQ#d+@{)Yaf@winUG&;b`ErJ2(Uq?i+7_;_3_5}mxEA69
zCj{*)C@s&XCoS~1V5ND-^Z^zIT6l_%voOfQU=f)^ILl4>qdL--oAQC1GGle9h1kKO
z>o?_LjJjL$GZscz7;f?Q52^FcAZfLQDg6dyW!;iTT1eUy<X(7=!Ditd3rj3KZ()pu
zITn~v$69#7!YdZ0F~Vy}<G5rC6KVWg@{6?0EqT1)H{V$NKqG0Ag_ju*jii?Zoh;~j
zNaV0gp#p+KT=lWQs}^3fFvG%33tKCv^Q9cq>7e07EL=G4Hp{~645Y4s5x3;&w`79Z
zqB^`NFxSEx!Y1=9yk%jb#XoZ~-@=MpUXov6;hS4BQ#UD{waD^L9u|v8?zgt+ZJv0q
z3;upf<~hSs3(G8Qvas30yW9m9KDO`)z09F3tfxWv{s#-IEWB^=A3&_OaORf0#==_R
z=-)>avbwTO0n5kDOFyvip@kE3ve${$>bGUKj%(!Y@%wJeT+v62=O)s_w`J|N{HcX6
zEPP32EPQ6+a|?gH(|!1DdHOp+X4)Nfr316Gzv4nH5PWT+jZa>&ylCrt1sg3)zb$hw
zuevRNYheqmXJH$I`L_I>h3}aPu9oD~l~`SSkMx7k<nP<^j~1Bsc39YH;U^0}b9dL0
zwtF7QV8HXtmh=}3yDaYrzQ@9^+{GUi@3!z8b6P`*rxT>?@_lXT!fpBBa+v`+ZF$O{
z+|d^Pq4Huk(au!tUkm?P$glw$dztPmoVRd+S!j3hehbGe9Ot4e9Ax^cD;=_MM1a>(
zdYG9rDMWBoaGEEDA}fkcFs0P-Uh#2SfRlor5?Pe|GZxNry3T=f7Q#uP!AYTxNg)bf
zv~bD7ZHBjv%NDM1Ls_^%<A`wWTiWv)<<q5<75P(>LOhPVlN7osIJcP7ek~sQY2d4*
z5YKPR*(h(LnvLo<l5M2e;$1N|D%hxKds(`YjX#q@nW+--27Z%%c95WojjA@TB!!wh
zk;TGzPPM(0D3){^>)e7gQ9W?JgaGA2ciE_6<31br+o)-ymW_LC)V0yFT&U0I#kFm8
zDi^9_qj6)2<!&21w<oA)qrQzs<lB5e7)(kHZTz^Zm_;oYV)dzVp(Zw(+PK%o##trJ
zY&5s=^1sC|mkTj7A8%C3v`o-~%yOYS%$7DXZM3%W00*xt@fV8EhGc_h7g;v4ZA|^I
z*l*+Qav^f+9W8EEhCeG8YQtWQq=1cF8*Odgs4qQeBge+C<w8u+#{_L>BhN;GjT=RQ
zd>id;bg<D;RJR`}zWsW3Quz=;{qmul@*!r+UgblbYz!zLBIs<RkT!R`yxqk{kR#jJ
zZKJD=ZZ^i*c+p08I><&J8(|woHi~V8Z1mz3%Sy)h<es*7@MS5nF`;~@)W-bsAz3gN
z?kb?09<lM5?WK!Hg`>%F?6lstm--$TbWaWMO+ktc)y6;@gKTIvbQ@37L>~kV8xb3p
z4ckUk7>z^41h7{GKP(?IZSeQ?|8fc(8?KFhtlE(8lHxWJHu?(uQ~A)p>C)8&*`yrv
zQ29`~<WS{}#jMs(4)v#PlS2b+%vv5~b+C;gHb#q39BSh!+dBYpZ$52fn2ixOMvAo;
zCx?dHc*aJ%hXYh;+uOmKivy!<JZpo8)aR&ns)U6>w$f1K@J#Y~8)LY4R_Bhj@q!H}
zImC{ncffcW(8fv|t87fPG0Dav8;fncWMi_888&7LGrr7#vGIzH=aWNI82R<Q9}z6m
zgn3`H`G{QLRh!TDhCXQS@u$<6d-4co*?66Hql4HhIW*hGT#DJA>*v_mmK-XYo&A8B
zJ<mqNl+fhCX-ASn$tj@)45!ukZ*iF^p&M(88G#FJ^iBy8+_xtGZ5!{{SZ3p08%yZE
zl+ar#A<i{1CA8EA&l?{eS@@n%`*cdktRpR_Q{n|HXrh$Ru9VREwT1N5YF2G*u(8I*
zTJF0#()-lV#(Eq7v+;qADiuN>3V!1Xp*6X=JWu$DA(1A1Opl)~p?6NV_L~i*Pw0+4
zd3hB=pV|1_#y8xdHg<H#{=!C^R)Mc<JX#_2CBvgas4q{>F3VpN*OgwV5ZYv8vyGo^
zY`5{PjV(5Qu(6evvGLz486Q;$eNUrR2+gc5)%_^QGnp-`i?=Z?*!YRtb5It4RFd*w
z%G5`?gF{sa{X+A04IF7G?G#{FV`-NF9E8HZ+1Nv^9JF=tyNy4X+#FPM@TZNxY@D%i
zR>bY!RDcQJ#y?bSRW5(r{VRaHCb*B=6VgE&hivQ@u0LSoXoZlpsF?OYY~u*+Z{vjR
zooOEx^ca_RQ!an0<i9yVUYI&*<CKllHi#*6hw^e$ymO#@#n3q$=b5HzOBEeluyN7G
zO&hmtTw(y*xMt%zvoSN<utHy#z*VNi&w_Ns&N<nf-DoD&tr)t&Gy?BPO?ul#l7nOi
zDGtgxU{YeTD(_(VsggOPyyG~l!%vlvU%~P67z>*!Ii3P6l^s-Z@L<Id@li<C9i%#F
z>Y$l}GzaMp>N%+IAj1J1-0gU=ahHP{4r)25?Vz+`s3!UKN?)iLB6TZ<7E}!N{h_$r
zd%-%67jK`nknRz^>I%B9Vu&L&aPV-t^kc<PBL@u~e6cJ&w_`Sco*%9lYV4qi0|JV5
zXdyLs_!&E7JKlk;g@gOJt_;cN;C{zDS<Q6N;%Z4tj@I1!F+vUtw@>x0#gc<82Yw+x
zcYSfWN+E8>Rt{QIt4g8X>yjT3WAfCFXD<&r$Z;^t!Egrw2e}Ty4ipFN9OOADa!~9b
z-$8o^ogEZ9=-{BEgH8?}a=-)_s1z!oDJprHuwNywdf{BfhaE3fvUPl=(ELiFE)Kdn
z=;q+#N}-^G=Np!?>6c2O<CQ|)sfhyu$}^FY_H<C<;1LIp3MET9l!FkL+_oUEadL9y
zP%kQ0ImDlbjVgy&eN2cwE@*EDk5vxY-+6hdPnlTdx!I}%&B2on`a94a7!Di<u7ik!
zC|%>gcD$>IF$boDpHn={lMNPR%PeO%6tj>SXFU86=<A@LgFP*zgo8nqLz6Fc9C}aX
zCm2+a?mt;Fb$H>+l|us@?<{VRgTW3KR}Kvnblbp`Ar6L$V0c>4PT!_7!#w5Slgc3v
z%n8!<&o~(2;57%+9gK7^%E1c`#yNP_@zV11B7U9|>mBXjm&&12l|%fw$0d((FqR=*
zB~<(MAP=1{(zA7?i4G<?7%%YCTY?kBL7DuQ987jF)xj$cUUtyDN{D5O;~jRtODj!z
zrZB%sXqu?L%8ig-%2Ue6tArkyojs^ZXoiECT#<vf9n5m@x`X)+7C4ygV2*=%4%Sx*
z@sxXFmC#%VZ#YOS47^n(^v#OgjjMCt6s<p12_38wddmU*xX3}UQ_>4Nix*P2+w#pS
zAs+RZ<=zo%<hqs#utd<M4(e3(js-05I@sJf@E-T$g#a(Qu5hr@!72x<9aMBt$;BE6
zYaQ(6DjdA;;C~LbIr!1R2M#`Tu))D+j`v%b+iD%Pa_|vD)bV~yed-`7O?see=o8_l
z_+Q0s?~-n8Nj>;e@N@222j4i@=-^8SUoqL%k$ziLQcSJ-6p(%`MsTZ!Hc>qXTev6(
z-!d8-OUElb^m@Bo&r?-HJc@nq;0Fg=X|bxI*tX)2s)hz{EiQMocxTnnPmDtcyB+-I
zi1U93yM!h?96lr9C4@}_Q+{#K>K^H2)sX*-ATR&^>VUM%&|?0c+T-9a26IC%C;aZ<
z4;})TB&&tW^9}a(J?7sI{$cQB$zRow{&n!5<DIfH_UcvhlFxnz2OL~+aMi&<Mlx6A
z;0&XvQs}UQW8AQgcj|RS(4!7`xvx=b=?MoX9h~CU_@gAJTBzHZ;vvBRult3ng?P5P
zv47TCA%DTaIS0I`b)GitpVhxwhzCuk#ET9tIk?OW+|;{V$)nOgdvmWjxX#q=;HHBy
z)k~S^##i&s_HQxUGxNLNMc^bCi>ignx!7GT^jWnKW1CAT?|P9;kRoKdcP^;l!tGpe
zrdp`7iz+T!y2x}<)kQTI^%*MFrRsv-<)Vg*RM*R^X)e-TXf;YRT);(2^^pH!3C}l3
z8&?n2bWzL2J){k#+Ag?QmO27d$WOo9MT1syZY#N5=Kuxjx~L~4J5&#?SsrZQqM?gM
zE*iUN;d*D|S&x-8ana00a~Dlr^lMRC?s$>%Uolhnqt!$Ax_J3a3E$Sp%SZPK`TGU!
zU){5<&xPcoy^9VmvRwFGJm@0F#rW!>dDTPNE?T*;SLU{67Z+{#KUZ~c2eoy*leAOS
zL+K}qcU2GZw`#z}i(9+%$kon8&AO$z)Gb4*kQ!>78p?Bdff0e!5L-)9Lmgcdxai@c
zh!Z`W)X7Dmi!Lr6qTO8Zf?j7ac)2%&#PnCtMLgAWTsIdqNLN}oLmDGE-38`ZN3n~Z
zE_f-PG07`zB`!iPdbucdA-kBD8Y&){KglV5KQ;7-i$`4?PYpfh;?}z*Kc|LxWam+y
zKRqg?h5EP%yBHS7@Hi9~s*4*gZqkn~bQd4H_{4?bB0~GPnBXEx&mPNs(e++;7IR^`
z-i-v7i{UPwq1{|Kj2!CkVxVYB2uhj$F8T`GuZ;7A08hHOy2|_h6w3g?xw*%?wP28o
z!DW&|TnsJ4Pq}!y3=gBiOT4}#1ZP|sf25010zWJ0bApZ*^m#$Y2s&2K7X<YN>7E~Z
zuaw`5?6EPKFHh@#GQVM3XrhZrE?#mm*~JPMD;ZiYrns2zVgbEYGk2<s*IZ0@@rtNU
z6O{Z{1+d5E&2TZ(#T%kJtE_d7i`NC7E$EUL^4Mjr!2Qe=;(29~Z@L&KIB&UF=wd0O
zw`T4l7mMk&nz>6j^|(BOw?*|GL2JD0C+Edi3n$mirSLM*<y{x=2|&(r0sOBPu5z*3
z^=>fu$o1~8SmWY-0f^Vq_1~otu>8-(2W9*ZUH;Pdgx8mGx+G`xI-MU#3w`QhgNwgh
z{O#g17oWS>?qY|FFI;@-;#(J6Tzuu?YZseouDi3oak0_GChozeIjrs*<@ud}rG4|9
zNd<-c{ML6azIX8>C-t@Y!Npc;dpqyz3(_|3{j8k2r2&3VP)-X?eWrj<LjC08XD+jQ
zK0iB7y3@sgw9s$d>2K!!;$oMJU%6}Q`gaR@pj#>NOKBlDp1+5lohSe9;tv<rmcl>j
z;`T)ZPc|)Bm=^j+#Qc622VAVr$o|*Ge<J>g_X^HFLAfIix;W(GsEcDR_)6r%f*xVa
z4DyfHGrInj*=j)U6y8_t;;f5vE>5^O$+@1EPPsV4)s69PT0ZUKzVg9|W4w2RpBgWn
zcX5Gx#Kkoi7hPO(amB@NPfMvECGq_pmqqsnCVIC$^Umt3JCZnB`|;9s!9Vh-SH0!p
zwu^Rg<i(K`N4Yp!#*rCE`8bl}s24~5I8x%M5XW6{)QF>E9G|9zD#fuoEp)k_pO~O>
z990CTY8<;tva7|tw|`U@G*!?vLCH*yBST=s!9orPsToJDIPQs~dXwDMy|ZfzFlkmY
zt99bIyNv(c$Q&~3#_^$OY7j?5<|V%HIgUngG>)TL9L?isLWPfIHWkzv>3!8Af06es
z50-lcvqc=fG>_k}Qab7Vark?AZwo(Pn#`(?)i|=_km9(o)So42!2|iXW~8=?qjlW7
zza<dI197y8quu|KAB>}I9BIcgYlhOlY3olU_ax2{9D;Lcq1-sCriXstnZ_Gk^5eL2
z51xqQ$vE1_(IJkGaTLUH_M*RU9G&8LD2}dibc^F*s#?v<-d*D8T!sq;;2$EvGS0_q
z^1H{;BaWVN?-*1R_fEQs1?7SG)sb@3^bk2Eag@d(3z?GiP$G^{9KGT=(=G5w99kTD
z9FL0XV}kaM<MBB92&@Pi7BsOtk6l!O399}cBsJo&$~ciYq5{VRHOu&mc6gF@98MX>
zjUz5_ZhDAK)QT_I<cl%;#nCT4M3A)7*FO%vEpu=j1L7FSC8s9eUnF&$l{_ep7t=#e
z?<wMr7!t?OI6u>z6f%;YihDQwKP~9=5z;epj9};{P%(j#ag2)N>o~rN^IKGSE{=t9
zEQ(`v9M8uw<wa>u9An}b8^;TAj1zJ7W_pOPkq^yHe=+`lcf`FC$9RD!2s%;FNrJv4
z=wv~esb1!o0#6n6&Q}h}pBBffWiqb`Fg=bLWt^FD%o6x@L1&lo*?lhcKbHAM9P{FM
zGmiOjEQsSR+H-OegLeLUkFtE29?G8M;l**h9mnc8*2M8n982O@9_P2<rBy$tF@TqH
zqJf#qIDXuFwZeOG{C>BuG{r|8s^D7@$Is~@mX!jm5*=Ax8^`<HvvGVZ6#E}{q5vNV
zS};153tT7gdO=y`ml=7u{3MPIaqlhbpT==GJybp;MEY4ApNr}jf_^C|E(O{2RUBKo
z6%lNVV-q!`8gXon<6FjgMu;zK+QLYV<NG*%5W~s`@;LamiP>A@Xpj;5QDh8)ZKB#X
zBXsn)G$s?i$$Wbp2jVyw$BsC5#_<dDRUCUMKPdm#IF44y8L~d_Kc=!c2+m*a`5U)9
zpAn#a1o$J4KLz+p(0>H|JC1Nhh+_YWDgj3u%1Nu_5bP6!?-v8IdWg$pN{M4`|7^PH
z2)8PC0jFkoAIm%@D8cbKPL$!3ahwwPuU!?{#Bw%{bAogE{ggYL^P;LQ@?VVOQXF5L
z4PK^Y7~vVAD{-v99+;dFx*7**^V2~-#CJW88#Hoj|4l(}33{7{fCS1VJbtpE<pupX
zBSa2MN&>qCu9QG!?x_SuB~T@SstFV&P@M3d@3_{;UoC;^38W^FmO%RihP~iVPaq?~
z$Mex50VHr&0`(H8pFoWSY9>%8fx8o^l|bzTI(PFAc_VeT>{q|(KEG3ewl7G|JsfIJ
zTHOS1!RngV)BneTVBQ1%1_?Awph*Hv6X^C+u3V{7qXZf!_+6N;?7pyF_LF_`ul|<S
zEP>_;C~u_ho|MyawSWBLf~4ME?@QqR1RhABO#&?w$Q1MX6YwP<aZxX1XK^jzd=5(m
zs+Rh{EAn&9>;zgRKuncR49jkvz~pZJb+vNaCh%Yaxe2sOASVIp77zon%lL3Ug)=%8
z<Ry@wz$dRIckA7iiv3yaX~;o3B+yZqs33u^0(45?)6yIo?V$u7=5*o?z|IL23f!fP
z6HH*OxZ$vykUyOf>MpwX5VWv-PR|5N60j2BCwEH|kP~<;f!+y(66lq{qX{pkjri;V
zK7Y;fNCJu46@Mz1sWxua{`+o^C(tK>(I<-{Or8jZX}|<jx(}gY4;N_(+-hI+PwxUF
z0bO7+7dI%l!(^|hV8#+K1t6!Ce@Z0aB;Y0xPhe02gA@Ocr|*E0qWHdEa*|yxIp;V%
zyNiIkz!DV+%Mw~d5Jf;hrn{$e8c+ljRDuabK~NDyg`Z#|OH#xDDrP~<5tSfW@^`EF
z`<>IL&g<&xsu%8i6=xb;jZCFrrm%c>RV@WQ1w&@?Sjbp2H=P2vGG;+#F)IZ-g}+;g
z?Hh4Gu1?ZR!6#;Nl5q+FHGgekNWoL$U!X~I4UNZLm_7qFlftr-Jtk9ce<rx<vI**4
zDNLnWQh1s&(x%19X(>!k@hdiEYHRs32!q;r_oZ-u3in9*UYX8JVOC1~^Wogf#Vo+|
zffQz^@OzIwi=;AF-;p&Zg}IWRm%`(ccu=Mf$&?CzSQ3w<@Ter_%k(jsHs340)xJQ|
zPso(FPfB8;OmC@Q;i(iBr!d4S=A$-4iurZ#X9$ex1Nkp)>*|(yHie}rJeLwbfaUc(
z1y5n?w64o#N+LX$_a((QvR`C{DReS$je(UZtV-b*4ZmvmUkWc1bsDbIusVe`DU{Vv
zPQxn%TMA#M@Kp-0rSN(RJ5qQng*Q@Io5Dr{JB33~56l{}E`{~Hu1;=Xfw?6l8qXRs
zes0O;6y8i>n|xHEy1Iod(fg{a6YlQA+mh<)&i?r<yqzGau0Bv*eLIDnDSVW|$0@v%
z!Y-OGg%48rx{s**UB)F!T3yW<kbmOdA@|Q5vRl@?Cxs8mOm#Jyp8a`sb@cS?!_`$X
zus4NIQuvhUN`bGe?4Mt&f7MDg)X!6RW=_c$^4*WDzHMu$ti0(p_&SAsDI84U&lL8j
z@J$LoQ$;BpNa5QQ;u`9YbnqJLcPadk!t;emzV&?y)8>|tlhHL)<>`F3@>2@8{XKZp
zp29n<zP}PDvX$Q$37^R)V@&zhA7o(jP!fL;-YJ|;;S4pI!eP>LOOB^-B!w+?ijOiJ
zrSL=z^}4#n$B6Uk*?i@z8miu{;EfvUi4;!q{Oz7XwOaw(J;k^>r-bysDV$B=atc`*
z&ZTg?hI%1|i;|7=DfE>LRIRB#|9Mwh>XNiqyP9e#4W%`qWPfQ<pPFhJ4J-R#bWN4?
zt<{UmYp9^1m4?<DDr%^tp@xQ<8Y*k3qM@1wXt+v4RSn;KllApoeX=!7uBi^pOXg_k
z-?fD7{k^Af(cF?NjaJvNpr*QB@=!}dZ4HezG|^B;LtPCGH5{v{8g+{6X{fJ(2w@Fm
ztbvA4YpUd#l|0oo*+_C*xt7{gLo*G{HMG#svX<JTmayhTna-Y9(ozG<^O{ymZKI*B
zhO0Gn(9ljpLPM^`8CJHU{U2zPvQ9#R24y9A8uB%?*RZgby0@14XDxMYEtPaf4V^S}
z)lj728Vv;+x{&|c>Pt(D3N@6iE%4b{L-DdAR#K?+>|9&Dv9{VxLw60mHL(63ngC?F
zw%SX!*i)t_@9H!4n&j;@itn$j5+{8$T(4oNhUYZ&)zD9aqrs&<H4M;jtA^2RLc>4}
z!!_Kbp+v(V4XTD4Gz_LM*DW5RVR>z#jazQW87k>3x5G4Ssjc>ZuIL0A)9}uNgQ`3<
zXn$>?+YyqJTQrQ+a5HHMk5N)T*>yyLDhINd-lk!UhDjPy8n$j4I#$Ct4Yx~UvAOXC
zN!R4iI_d=Kd3jN89hLM%4NUKlX{%*Lng(6AWoj@qq{&_#b;m5BcB78^KppjyC1t5V
zOM|U}aN1HwXw}o;YnY>9u7*HEs9~zcKe|Cg4mS*)tYM0VSi`qub;Hn%tp7|M^-e;!
zW^uLUMfK~dWb7^t`)U@mp=lbw_ksH<MO}4<hI=GbW=dhTr}I12Rqv&t>#C$@X&6#h
z<#nGV=w*E60S&X|yR4I(&(rXrhWQ#Elg52Ww*H6)hJuGRtf^l7>7K$zWhR?uaCn?v
zpka}Qr)1_68t$#DF4XX(24aR6i!ohVSKYp(>|&|Or!_1qDp{fluisQxWr%o2!&i0H
zXEhNwNGzioX%P+ED2s*_8eY@zx`r1tyvR7O;bjfv;Ux{LG@RKqbfqT3*Zaf!9jz<E
zI9psTmC&rK@Uk`R0_1JYdg`l^U`S8aQ{T8Eg@z3p)=GLE=@g3V350Caut`Ivdhr(G
zv!1$H!<!5d&*UFllF$0t3KcS;o_efSne7^OXxOXa6Y5;U+ZuM$ABiGjQp3D@>Mq$R
z-y)c2F3Epa!+RP?Fz0;@A5ahV)ciRmj58#d`Jsl7871ZoBK?tM?2~#beVH$Qs^K$6
zCk+QQe6HaO>P^Gf40^Q%5?I5R^s;C2JIo%uj|_AvVT)AqehCH&^;bRhTUp`v8h+65
z9bqu9gfEt@ul}gvCx*K{g>+uN&S2HBzWOtR%<RD|@SBF;X;~dJb^M{>AQ7eG8XbRX
z_={mvM|B;4YdECgl7`C~4r@4~;kbqq8jfoCM>cv)L+AQJz~*DC4Xdy2Tar)foaCdL
z>S@|h!zs!&YshQ0i|^}@{8z(S4d*pnVEm^?)K|$H_21yWAtWv`M06{lI}o&w*H_oo
zSF?1K(otSV1s$bzu$8Z;XP4DcM#pFMRbGFw*q*|2IzFymtY7R=QAa&SdmUAERMLfm
zSJqKQ7lFER1GRYrl_?#ZR?gOuql0}e>#U}uxPdyMfncVFj+#1J>-^OiYU!x0qp^-A
zI_l`CtE0Y-2D%7J?11=UJyvoci^S{(YD4BXP#fuZv4IH1A571Fc1eCy9nEw!*U>@;
z-Ac6eOg<z3+jB}<>iB`o=pr1^{V6yFX-l4U<mt%Qk<g*&Nb1PdLG$gNp3N9e^`4b{
zKKkIG8V%L<I<D5yQEDdHP-U48ItUmx#E3Mwp|DGVjzS%ybljq&vyLtlmSuEw)lsD5
zIvss<bkh;kD(<19r;hHr=mjP<RGDUJ=%u5#R3NL`U%U8PNmHNu>lD+b*X!u3qn~_b
zmVAXe@2}(8hN7Dopo0S&zF4ATkPcPH4LSzv!olepV+mAgg3S%pp*k4KNDR|)qmJP^
zZj$fbv#jXLhU(FV>IfYpb$r(cl^cm}lrj=0H%sl2zE#I)9gYrH$89>s=+Jc-I>zc4
zr(=SSiBx7I^>#jOq-Gka<0*9`wQxy(qD#pgI_5W0C+VPiAMBpI(le%{N;R2oT9VHQ
zpVnc^+x+R-rVdL7t;TD0BcbH?8mXQRU&mcE7L}=krjK=Gbc8x0T?DkB8i|1o6*5`J
z<whzAs%VOiJEckq&O!b2so1+ERHo}9*iO^Y-tNoS>oitp$kypf_ekQ;(Rs6U+^6G!
zj&F6`uj2t7YjnJ#W44YtI-b_?jE=cF=CLXr3w1oG;~^c75z@1UJgnmpS<ieOkLu{q
zSV(c=KzXL5k6V2QH&!2Kng00;bUZ=X8><8`ueq}1A{|f3*I9mLV|8YilEpffFp_jB
z;q_i)^;sQDb^K2kBb?`SETdmg!^Gj9!sR+v5d4i*($C8rmU%%(RulFbYNIA<*Cv9Q
zmH*Yhig;+EI!)A<rMXwjlw&zM&Z|0J)A6p3_jJ6j;|(3#b?neFqHA)kj!il?>sZHn
zWDe`xpkpJoy|n1B=ZfYuQD1DLzNv#_$Spdy>S$Opgy?NuB!cHQYHv;nuXmcLzco?c
zqIXN_-u{oPosuZiRM>Qv6q8-m`#L_*@hPK|j@>%;&@UL8h`@SktETFQj04XV4QQ$|
zWw6?-;}i0;OmLEJsy@(EUEWj({<)5?bbPIg@#+^kzLfIP*EqD^r(?ea>TgZeZ)km`
zCqw#f`4-dfbbPO)hJl&}e$erwj?)C5j-Pb=%t)@|kd9w;{3<#BQ^#-Ac{7!>l|Ll$
zyG$F%oP#<z<YV_#&`kYH2k}7Su#O`-{?Tzv*1&-ZL)K9pLz<~ZGxa!Cy{GVmOi3{3
zq>fXBTr&}(dCTF!zdFw9C}*I&fpa>}vqb}?3|t^onyG&@Q!naxznMxaT%wOK`fVOs
zy1Cl8xfoxSHc;h459+6^fii{&o4m+FA)g+|s=yorRSjetBGRhO)k+2`^A$t%0#_M$
zrH_a?q^W<#`5Xh)47}Q0rFUD+)hC+^&BFlG>V_C0kf>##wt;2_nj5HNpss-<`N<{*
z>KXX3x!TY`BLnpf{N7w`AXC0Vx@rrxu^~nR>|ENm5VuW@|BK1pZpdk2prwI)1MLm8
zGSFJKm@v>r5*+ZfGtidhTL^wQ*k-_Ilu!&L4dhCx^9)REA;ya2d<r953-xLP9Sp2%
zA?BDgSw{m8wou6`Y3i-OK%s$hX_QZ+vw<!K0t2Cet_F$>SccfJ=w_h1f$;_=80cZ3
zr-9LiSP$%FptpgW42&>vt%2(d6q7gksE>i`4fK`tw=Gl_?q}ehojpnL>Th6xd_;QX
zXGL78D=|<YpAM4wga3OvL=r;{sFJurro&`<qfA-DaD)GWJcLAxUyDY{%$p6IY@zaY
zl!2U<Dz954ajQ(*v{Y{+!!1=_V+@S_j~-{>c1bJq^G3H+ClV?KbOVO0bCOIoLo7C?
zWE!_r57nx`cGL3Klm(7d6gk@t_ho8J?KuWq1D>RPna*#iQmd<4s@yDy48#UrFz_OA
zWneP3WZ+%{Qw(UAmAec~H86K+nL7=9bXi%HmCP@dyqoeG__0UUfl|q72BsUR)hn-0
z=_CtO?wNICR&u6+Sq7dq@Qi``4BT&EzJbRKJYZlpt#9BV19RwQS;@Hu=1Jo39$D{C
zFJR8jhqLbQk=JZ+nTKWmBL<#4Tu`}Gl8+vhIfL&m^SFTp2A(poSaS6Q%NSTl8GGa%
zEh@^-N-m=BG^sGGRPyJn<h?!fmKZp8Sz$fzug@YerKspx14|7oH}JfH=L}5CO7<-*
zBInBt<n8XmwwSWf6$bdq#><M`Gmp0~aq-8%P6O{4SY_aU1~wab)4<CF<bh<ltiEp;
zSZ!bp-I)v+sC07RYX-hLG~k1l>cJ&tzWAy5`;U^Z8(@0y%i^_k3IoT#O0Jh>HX7I<
zZ{M4n&&*B#75jZ&{uTpUWfRkOCUcGt*e2<>3~ZM#vcL{H_`Lkzl)-PyM^E+bT>jnU
zE(7lx_|?E~ga-vN@Tq~%418dq-^Sz~MhTi}e{wh7c3jr9RmqPGd~Dzo14BwzJMq85
zz4ZFt-B#XNX8fk)k%#knOX70_Ul=%G;9CQi_7#3<;A;c>-c7RnSG2;<$z?N!?lZ8T
z?e0r{!-({7{&znnN%P(B3~btv?6f!eBSkZS&B+COl0Q)Ss|4{A9r@+LpQ)2qle~VB
z#ADl%zZ>|2-elku1Krx>K?6q({A1ux1AiI#+rX0j$@BY?hsgY$WoEsaJj_N7Fo(=k
zT-lWb>py1T1TFi$ppP@E6jmca{=Zq1JZ<0%BfNo&2L5IA=-cz0fo;DRfB0(hETwo=
zywYWD^1NhEyk+1rBYYZV)5uDrR9f)gV}G)AT5z6To2<B~YOja#N!NZYN&deXp4aW$
zWQ8;;rtxSR^V6u5M&&fFP2;*Ws-$sM8qL#ak;b+syH-sjCyi<>_Il^+H12q%GYO>e
zb4#^G8a30Xo(BIXf!Bkr3;C#48uiksFU!|XqmCr%ropSmpq?zik`2;m!WUbq4bwQ=
zQf-t*V@bSMu`jOf+3xC|eAHAHXeLv>^7h`LEz?M(p`_6&jn=$csb?$o<)b!|fwpP1
zlf+*K3YnQqBR7qrG`gjcmqvaX9n$ESM)!)v?bFa(snc7jSEtdnmC9>aE45P^%qe8R
zPvePJ>NWDVK+<KtO!5)`Bce+hFSEQ%N$hN;c2DEmR_gf4U3;a`L()BEy5NhXF}vh=
zE46nTOef4N=#$3vX;^94Y4L9febX3{#?UnSrO`i)_8)W|kj9o3d4tm^PGcag&|1Av
z*pvAsX$+DDNHd3JUKl$>P2+|%Zck%;8pG1KF^yZ&xRs{oH#*Z8k;X__+fA~qr*{qH
zTQ^h5t<_O7|MwrulP<ncJUWfr(iq1^FBJc=sOp$B#-?$#*_Y+_7xv6=t&*Nz(31=^
zXF?hi34k>29Xo`#lhR0~VWg3kuWQt*tejPmRTfC@8u(m6Pg63_%q?Swuqr1Fm%2@3
zhAix*F*%JXY4~XbX|OzB4AY3xh-CqOHk3KMGV-=pYnAk!M0gs9m7Kez$eqRwnVRO`
zeGIu<%1eS}sK9&3Y8vz8i!;-hmF7Q!ins2QIV^L38ol|EQ(5N&GLxE_lg8ZtXqIVn
zHs?Wk`;bf@mT9AfT^~u~tz82t<6~(&p2lBk{GG-EI@EhvPo}Yu$Vubo4n;hEu>SY*
zOc$l`Y#K|`;y}VvX)Kn+k~IHjT;yb3Tb1cEk`DX#e2#(;NNIeR#_}|tPvd?0Xhj+?
zq`{L6yV7_ujhE6`OCOhyR;KYv8s~4%Tb0KD2vM22TIR6koqMzRXpOwRLcc2M*JS#-
zEc}L~$^UwJ`?kE@kjBO|Hc5KBOgGE)O_^?yDQn)!SRv^TKkvy~UOVLNTT&rca(1Ti
z&VS{}!@K{{@1?<m8D#Q<G<M6T_oVTOe9FuZCGn9=KbGm<G_HuiYClcmvot=J`Cp{5
zUlL!Y@l_gM%c}Ot!W4>CUD3lgGXH=q$s9iVK8+vJ_*3RH=STVIr~f$rS>FEgU-@4p
z@mm_dr}0M`2j%UR`k9g?){r%#+94v1LDfVR6GzfG%3y1vl8Jw4HU4{c8W$Pao*Z~g
zrpMDbAqnQ3l*FktPXCv4MiT$Z^lTdE{>wj4XKbzVl}l+{=3vznpL)qMQOd;mzk8H5
zQQE{AwPzWbl6ZC3P+lbNYOR(t(R=wo-c~U2_^zrqTGjY&L8l^qq=R30;a7F8GEvn;
z9TRm~?Y()~GOcamk2eP8n5bp~CVp$zb3Pd`QNu({6SYiiYppVq7q{|X={oR*)+)C?
zCp=ofQ#9j#FQ{jt`oYfJ?5=O3feC(#p`nRJCK{V)!un0*nP_T?J@nQxZ6;IRHaF2i
z(k*4$N~Tv%P4H<O6K(%1*-jD(6Uu)%NfQTJt1OmJh167dT_cJ1CIj97<#aI7@jtqg
zi7$3$T`5^0GYd_0{_klQ6J7tKizM-J6{UxXo+f6rs(w$a>b<B~6R$7D8%uGmiR(<<
zH5*fBqmPN}O&p$zBU91WL_ZVdB9xEN-^2hDce=RCMX`y2CT_4X%tnccK_<poxZT2F
z6GKdVY+|p8p(a$56Ae7Yk|u_k@J#q7ZZt96#2qFknYhWs)K<#PCPta~tcNnf#7LGI
zpgjF=;<nqBTTI-_noZnpVzi0d$axE8tStG;7=?dyKgPrZxr*O3ztq-(729*ho0wo?
zqKUEnl*`#ljV4NVd1ZDrW##ZB3!k@@lnK*>WkNHdld(7R4A!|dCv9SxD*l|G%6xoO
z(x%8K5|?w8xgC|x%@oJPTh$fUM9ZW?A}|q}m}TNV6A`)kCozR;F~PzyRp%%f6O$=^
zedWg^3ATP0Wi&C}6rbm~+r%^z<THIHF`=(wmRAPVR@PtYF~h_?Cdl)>EIc4<CV?uM
zU;Ap_W380?DW-{sOgwC2wuw)hD09iusl*(aCN~z4o+s;MwGW#3@=StdnE41@#>4^>
zkD8b-3p^&%hyJX}lIL0}Pskdcl$m^m`3q$Z+hu{pCYG4kU}B?*r%gO#;#Cu`nRwR3
zQWGywA_j^}iRVl_Z{p-YW$2|I%S@a;lvqwkpG(}Fr>ro+lt+nHY|eQ}>S{r6WwnWw
zCRUj^aWe6qoBW@NmnD5NRCZ|!GoQAVHEhvVUXkg}Y0B#+_%(qyOsr*v=Mx?NN$}Gr
z{G`G<6Ae!!8fTRCM1C{n=NGd!nb>UN9TU4uylG;Ki5--P^s@!g?aEfV@TBB66Wgg_
zL-{pGc5N%t(i4@pC3`a~C_7E;znGxy7F<lcYvMf<ADQ4+THZJDfr-^8614bk6MIa2
z$kvZ1__>xJyDCiYY$I?RT_rxtLNI(nOPOe9p}B?6Onh!4%R(s&U(i4%{xb2miLXq2
zZQ?r<-<#M+(N-i|n94WQPjzKKZCy=#!X`eKIKU7jl&^g7Y92qo`-6!eP5jERX5uFk
zKTG8NB2(&<D6(UL|KqLI-x&r?95nH#e0}3T3Fh;A4a6QjXm=@PTy^CTot=T##J?t}
z*dr#6nK*9ZD7yd?^)Dv27bv?MDPQ$eX1<wo!o(?wWUA;Sb!!Qas8>rlEi<Fd1!tv!
z&YQSE*=s20=&d_)Nbutq7m3DE$;+&~nR1DA$J{R$=e?hsOGA{lP{sl*RJTypLOBZ+
zEmX2l-V!YRygW%aCs9G({xPylWeZg-FhASk_xO5VW#OUiIaL{gu2m|INb(a%WG}};
zH48MysBGo4zDj;YrG|wW8**w|sAb{cs)7dmP?d!`78+S-Y@y$+N?i-oa03hVEY!Ee
zhj=zVUNHY}aR{oRg)bKt@VcR-gyJ-@(A2_B#}cIZ2@L9!nrvaArG=grdRb^?p|yoV
z3!N>rvC!5+zJ>Od_(W7Y3yOuL1@BlQVey+a$sJa*>ZwGog*;0rhrUl(cH1Bhh+a*R
zEp)PQjfIXDdbd`-9Fxo*FCLX0t~42@ygx}PutaQGVfLf3x>)FHp$CPktrSTyDQTY}
zN;eC84kvhZmqf)jD)Xtp-WIO4P-0<_1xk9Ig+3Opr`~Q?_+g{IGV}K;N`IPWlG4u-
zVU4gEV4>IoMJ5}m`pQ5H3pW%kJDwP9@wf;^TDX}dEvOa`@GETP1`ETeE(;?pOsK2e
zXkj?5+%dOVq4M$SKE&jG;|0`7Flvp6l~ERMu`ouO_*M&}C2^Z2A|y?~s7`|17T=P?
z_%oJJxs+i3cvf!VPYZupm}qgS5SuJ)wlK*;%EE&LiN#}4ie@3CfEIKMhJ~~R(*h0c
zli~J?Wx=uFTKIKyo^7F^uR_AJgfpJ0HHc~BHYzPnp#rHK2DjKkhS0KbkA=xHbBcvK
zCAYm#3H07&;cg4lEKHSxe58xlr%Re5kUmjQh;y%nnM55yVu`PK&$5IEQC)=e{ju@@
zd7zs#Rpv@&uE{7}+Ng6Z)NHLVbTgf2;g!vK4BZb~c*MeU7M59fl>E>-78Y4}%);Xm
zDo@CC=@;b}SUirX+!`w0rW~T~NelDF2`ey+FrGhUVX=iJ7M`~7jD=_A(*>y{1JR;U
z3bE9AXAaY)Z0LBRPrkC;!t)khv+%lw6&6^@8cXz3FGxu#=8KYeNv10;tokqie->Vr
z^y>d|sFqjcyRTYU8YmQsX@mEAy<uUUh4mIciJn|bdo@uSEib!4LXk$<$gq%`MObcL
zl4Sa(g)J67w7BPmtroUfc-z8G3)^XkR>B1A<#)&y-?G4tiJzLf?NHTsEbOvG1pYvZ
zz-a%j1&&7Ev+%wJVz2$JSrv10+0p-=r|hOTS?E$m=`t?K^kWNqE&NEWTKL4mr;Pj-
zKDR{Y=qHqq8;d5sU?j1y-@-Q*o*I?&m4&Y@?6dICKZ(NAi8fOe`Z6zC;Q;+5R=%aM
z7G4My*3aATE&RZs(L@<ErjTVw&~bjY@Cy-38|5nO=@>0VpKFP3=r;?$Tlj-D6e$N~
zs&C4n#UC1>{B7Zog$6bn+Bj_C2))(9B@0K%jD<56{<Uz75y`>{3+KuyqpuRx@|$AR
z6+6U}7EW0>EwRdQ!Hd9P-*=Xtr7Pzw#CM5XvT@$R1q-)6D?Im|%{iAXWZB5Jkz=Ej
zjnXzM*r;d=6HrBEY?QT8PF@V-<!#~h6rAtgeI!wdFP2xXvc<r!vW+UXPzA#;3-qm}
zRJBDPN;Y^~%?51LwuLFH+XSRi)5aaQCu`WkUUVNqop!9nrgL-YZZvTn8z*-a*R@g4
zMtw=sRo~f?$Fz}+#x}ay=x(Eljixpf8%bNp*vv+A8!c>p++4YMF459PD;sTWp@hWf
zWNTZDWZoGj1_|V<t&Mh4B1%EI5-i*y_x#hzT*>D(HVSOy*~quKIf$!mbhOdQ219NK
z8+0*N#kbg_(dZWwxdbprFNHQgO0IOZLG95%oox_iU8FwwEw&<R=}3YDn-wo)^{~;?
zMqeBKB<H<sF|zF=>E1T3l>{ZaPAclSm7LN~x!%T}H}k%!t@O7sz{VgOgKg1!esYyk
zY=fw#Vh2j~mXO;u1-zwcm=2MdL#3rusSOU;KE9B+(Z+Bx;Gn;Qn{14*vCqbS8zX5u
z8;fi_Wn+|$TWs8E<1QPw+8Axau#vWLn~gD2Q7Ic7%#5`$-o^wQ<80h+^MB(NjwP7#
z(L{=1W0DQ_q`WTnQNGbcoIE*P=<qjH(QH(W6x|l{j@nytOdA%(u@Q)d6k^7<;n<)B
zU70?1w{rioq-TQza?+uVNanL-Y>PlN*~Szb8EIVFh|PVXictZfRa8ltYU6Gj58HUe
z#xxt#ZT@Ofx!=YN8~51gHK61^;-rppuZ>wYkBcazXWIN%oaDVDl^@+CIcJ$vCFKDd
zv*o*UY&<Ac!FuM(oOw2=VcwFZhp4OD6#|m<qc-MK74?+tqavz2X5(>U!v+EQB#~p|
z37Z>pVlu*%<E56C!m$~(wAjWH>e<F7fnhvj<7FGGZ9HpZsf~wDCSJ7hoQ-8RUXZuT
zZ9H#-P+uWMc=U9FE@@p(bf2nlls;}t9{qG;RplkJZDW-!2DC$KDF35pO%man<Lxyx
zqK)-7Ht;E#yqI8_H>d~dwx7c5b*k}5q9vn>*>A0lb@b)w;scJu!zB5k$FU40-E8Ac
z8z0*E$i@~MTW##J@ve<+Hn!7+r;51)6}7|0+ctL63#0-W;+RRnssE`hm3Qca+w%^!
zREYNX=$NgP52z?9Dcj20l(Snp0-x@Y#MQ?Wk5?AR|JcS}8=u(t)W%mf?)xa`GaH}V
z_(EcXzDzyzdNYr<VCVQH(Vi`wn!fxsO*1N~Ysxn^4lq1AsOI2X8{gUZ*Tz}e*TxSv
z{$O)7pN*ev{6??8kocKl<Wz!O(e-|@G4`VPM%%A82EHP`>_(jbPB-Z*;`5(2{<3l0
z#tA9%-!_ieIBMgN4Ni~`%apwXf0scOwbXL{v2n~6qdrc%D%TNV=cIHr&X`V9qL#`j
z;;=w@ZGHBTHtHE09DDBwa?Xi*P|iVl2N!Hyw2|eYlq0^-cZm=>kvMlLLC?Bui!m^<
zUD^@uz!_W_2dOqHzm8Yd5%3skDD3zuIH>5Ls)KAt1l39osyM=J398Dhvy33Fas)Hv
zlQgU1C*&CP*p0$LbqDPnBplRmP}4zu2Mrt)4^P%|P{%=CM~oh8J7DLlY|Nn!$;PvX
z6ZIT{WQx|%K_dq(9kg=L*g+EqEgYe94xgGjXy%}~gVGlg43ZpF5RgP8yCh1-*EwgQ
z@>yGJ2W=d*B@ej@!}uQw(c>r%k`6jk1P8f}nCav>$fweJD*U)7n`qBW2OS+;?cnB}
zIYoDh9)ulSCkF+NaKLLEG4g+UV)DBYN}<f@{=9I6t}?&7gB}iw9CVYnFJ=pISbpwg
z5u$rK=;ffdgKHi1aky}S(Z>^nBD=-wBt2_u-nw#1Uq_4y=@e7t7Yqkbbq@Y=@VA43
z4oVz6<KS5bgB%QY;5zUe3~?}&H8{A<f$HD}GEWAY3T+Id9V6u?8gxYRMwt$$O(!Nf
zu0CE{8R3ZE%8g`I{LpPRWpP%IQ4Vf#a4Yq{tl;Ulb2y~rLd_TlV;!U&m=4A{{H8D_
zI=I6T1J3adCO9JIvm;n{SbWNm^dt!zjj1G3GUZZ_LH$=ycvYz{hG!&Lm;;-_6A8<K
zE$d;9BMGi4`3?dH4?FzGEJ6p7gQ*Vgc0kT!2U8p@XfLG5IG8LmNq=F8oI4#ceYlJ5
zPE1npX%414m`PUaDl;71Bl)@45eqvUVo^W_LmG$xnC0L;M=VF&@1SAr9IB4=12Si}
zOy@ZKMW-k*Po^XuBn%{7dV(nYsDt?q7CKnu;4ue}J9xsu!PNzXE0HjIYqbRw!Bps&
zPfDNS{Fkk86@nlk8&5e{>|hCB9F^?SUU^!2<(06!)WLIf1P6N^EOW5j!6pZr9X#(~
zg@adE(!mSF#uEjsa3ulY;3Y?lC5R=;*e6m}IryK0mmO$>mDLW`P_e_4><j+6Rm^HR
zJ)g9=fWE^~&1()`mk@fx!8!-)*>o9YtxSol4U*VMHag@oZa3*9Qs%$uU<<w2!7c||
zsi?`y+br2!+2&xogB=duk|MMBXE5P%A6EAv!E2|?uWDw!OHeu3?TFr!0AO%?Up``)
z4;<0klAvYxIQY=PN7VDM65h^eqtfV~(4Y=}cJK>daqv0IJNSWN%E6a3kb`d=eC6P4
z2m2gs*imriw1^@1rjwjX@RnLSAhrFigYP5)7fe<7lx66TjKgA~Neaa|=1+976-lmF
zs2g*Bb?}=bKGXT9gWn0W3SzYL2Q4y2xPPf%at_LBSr2DSg!dr_haGfsagB>34vw<Z
zaRC?qI5@_j?V_}c;|@+Zxai=LgOhag^NBMIh8g7)<F+G4V&sh-1iQ9>9h{|f1<E-G
z=NbGZ&5~RX<hrgqP7&$(1X&{6mt`ecZ0nx{;a$c>Sr-*uRB}<y74e^CD!3vJmv;qn
znA7I^l0iEQD!bsS=~XVOx~Ss9>>);3lQ?x^AK{Aeb`CSkE6m}=kNH-2QNu+O7foI9
zrR<tAtxvg<xwTx>c2UPgU3tr#damHV<aB~G*>2#Xp^HW?7?Uq5xeGg%Y3z#mBf~h?
zTbj9O?xMAeHm>OVTDSt|)M`r?tz1FSQcSsU-PT1r7ahp(kwn6U;v&yQzKf(Q#y`0-
zB{8|W@?efKaZ<8#Ri(X)?N27JcEOytsw<=!weI>pr=u&rK73!6QsAP{#f>h8yXfqq
zi;DqVoM*c(ipY<PK2o>c$kn+-Zx`KN^pH8fR#kes=q0tv(J4R7y-pWh!?luUs``4_
zbU&%6zOFzQwMs!KV}DnCWt(LNx+rm>y12o`AQyKVNe&@~xESn;9g|^W#rLe4Gt}km
zGK(V$YHyfS9cxSGi`s5-F~Y?}7k9WA$yQw4>S8p7I+37;N4dDg1(#LXv-ch+)>p~l
zZL)^jU5s%t))kI3PD;V@e9Es~k9RS_1;;8}5@9dE;lU&qDHom#--YHvr=r>^whO~W
znmBP`$(*-NiP0w0{{2MCXv_fUxNzlDhAjHjf;KAgb8)Z|xCo^tBNwrYj4Re2DbZxs
zb~$mlW9}3hx29OV;nh8<Or?HYZ1l0o$21qyxsBpss)rda?s0M6#RV7lx|r$WEf;UQ
znC0R=7tgy`;o^Q554d>L#e7-$Y!`D}%$260hS}Ua7Z1zk*o!^r;vs^es*)bcnW^%K
zbcc_(6zsi0dCbM*E}n7mtcza{Cl<I^<l-q8Pq=uJt&b8)=74-5U#}zP+KXK*p;69@
z0X#KB;%NyFidng>ved<ME^1B@PP&Y2Q)BD0m(zJKB}lXL;)j)AAn;tQb+OI`YktYa
z|6IK6Vx?q$l`EFz*(ldMSG!n4mv`}+1kWoH1Kqldb#=<fj*Mf%*9o?A${SRdtrQfB
zG3t5(z{M69TV;h5YNIQ9;g^miHo4f$`dzU$MQ(YKXx2>G=3+)hcqP|ew=*no^_4mq
zpB&dz*~w7j;zt)hx!C36T^Ap@_?W8h$OSR%Cd^#CPac{mA4t;^kc0}wXYW8MJ|tAm
zCs^}d#tIi-yV&RAQx~7PVx{y;7t8NdK6mj2p?ECOet7|xOj($2^%a%2DTf4?bf~)h
zE)Gx$Y;i}<H_{f&B>kO>?_K;L4N7qG-GhAuMEUe*7r&4t7sqH>7r)WtqypIrtNmS?
z`}1t&4;Ker{3)ZyUo!pWX60`h<*x+e$sw6TL5|2Adh1ciIm7#L7uUAU8GNwnzb;O=
zIO*b)e018y85yYA3gaRB7ji{{hBzzZ_BqKd9p|EpOAI(3dV9F+BFjTV4~;yO@=)4C
zB@dN7l<`p3Lq!i<Ti`sdoQFrQ5wkhc<vlS0tRPdGl6Jg#e6os%t31^9P{%`6PxR5%
zJitS?ha8UwDw4D~$105E)jibkP}4&#=8sZ-yfK?$K>+edf+-g_sK&Y;>dE?PZd$6o
zC)Cow6FYkBo;drajEy}s@zB;oI}c4gH1p8XLn{h3PHFC;h2&w)Rsm@Sc`l8%_C)05
znhX^(<gtP_9>h{WD<$DU@lfEQ&_mKgu7?gDI(h=wd7fBQY40Il-f}L+O#1TG9#-Cz
z<Y(eLdAP<Cb1pVCqrRA~l0BxKJ#?Wy`zbv<bY(*xx_hE)X0dM6q?07UYe>gj3d{06
zJ+Yuf8Tsg157&9nJs8ZS$Yk5YC=Y!-^z$&p!%z?XrF118xE(OSL$QZ+vJ7FvYoI6k
zBZh@R9tL}22DEyjV2`b+9&Ye(lLxK@_HCpL^Dta8Px?mI-$-c`3jP^hMtB(MiN2fs
zFeT@=c(~QW1P>EEj3#44lrbL0O1W+$VCpCg{sjLx4{hEm81ISk^X;BkF6I&qHADBj
zL$-VGu40YMdq{a=sK9Q5^-sA`*)(2ErqayxP`#oOd$2s%9z2@B!`gon*IrJnvlYjK
z>w)e-mN-h`<{Ehph~7{Mr8Xj&QUlaXMpiXhrc-2kr%bv1#LuJO?O_@r<fEyN=?wlJ
z_7d$L?jbBatRmz*%=9pedhqa!hx<I-@8K~Ik9&B)!)&U~!$ThCc$n*9o+p;?zK~-o
zN<>KWV$Q=fw}<)iDdEj1!Td*QuO&$i9XY+F(iV7l!oy+@OFTR&mATNvB2TO|Qn6fM
zp%tEz=HR%I{!1_)t1BKceU?i0@B#sED$jXXM*Soes%yC?_RXL7u!2@zpH2F5bEV0q
zY^Du1W%I=sJ-kF1OIWruL{*IcFMC)`Rz1A!VU34ZJZ$#xCQ(#QdDX)kG=zuOq&Z%f
zX%T~GX=R=C4!Xuh59>W_AWMD4Mh4$v<|cVdy5(49i-)bA7<4h8TUy&ZY$vWlrJ9>X
zlkJf8yxU5=wbR2p9^UuxfrnkRPDZ&ct-LFhaH)#&o+q|Df0&{?*-+U{=N*y!NQQ_#
z9zJ9=J0V8D9JkOAgv!UB7}Ijb{i%n~Je>4!%ERX#zVPs?hu=JW>ESC6KS+rfZNB!f
z-@`ZZcAtm8Z_1%Qx#D!d!*^7|BxPWc@-4O0Qt94B;ROGC@@Wd<M-M-FVr%bb8ES%1
zxnorJFRcGMVYS~q{K48h9P)6Gq4gH!PbrSU@#<Rzf5`~IE{w|;hiQcqiGMsC^Ke9B
z`>0IW^AhLBJ)DqHj>9%?L9!K!$<T4y!x@6dM-?CcdN|A2?jg$u*KN+xWjvf#gtMIY
za6yKM;if{JUt%kDg@fmB%PHlfw2ultw)9cT_$ce6yrgLnny;KMU_jH*j%<<MSJ6i$
zS%7S_k~>c)uJTdUM|B@Hd}RBgW>!T8a(q;iCE<%O*m+@+kC@i<QOiet9}Rre_Mu#-
z)bUZ*7m<fhXUdThZCB6d#|mYmzKD~Jd=dBfItw(GG)KbBY38H358p@NqlJ%_J_h<I
z@zKghYag9`bn(%~M_V6BAGto-Ne;;#S4R`%xrxG^U&Y6`4S8gb`FTFB_R+ydzK{04
z*mmLGD4m7tU<_6reO%*<<+x6)xr|t=p;H(5DD*|-XKhURw5yLIAJ>s{AKiR(_tDE2
zD=<B%kehRQ`eONu7q`W!MpnW{y?tEki)l4!ZZh&*%Jn|_`RMPXuT;+3I$|50su<vl
z=?}+;#cZXL*aD_b2KgB5W3-Rkd<-Fn#DI^RX+9q}_#&1Lmz7Y2VLop3MWCQjxLw6}
zZ;}OAW`qyMYC1Ue!1)N(JIco`K5q3zUrha60p1uNV|{2obn49)jyB%M1RuAvQASj0
zzKK5Wkakb`n3q?E0g8k0Nz`gh<>TfG**<LbGkmcrX8Evv;V)^KnpD?Rg}33T90pIv
zhs&C$SEIc=(n*D#0@Kh(<l`|PkNb#yWH_p4NcS<>#}tZRL%G`*;o?py+FfM$%^coN
z^~Ef*;`$u!-7uC?z!^U7@$rC<**^Xrr`+pfmV9NVkN+P$?<2qxVhnJ<kNYksc${gD
zkGXW53yDW5osS14ARqRzZMgD~FJ}6K?h+X8`&_{zzE}!ib2JmTist*E5qDooEb#G!
zkLP`?@bRR4eX)-vJ{C&m$=f12nyEZROAS?c%7u>nw2$?d6VLg0#>cZhmik!LM&$sK
zkYoI*Urt#jc^)`WS?(iennL0QqRz)_K3@0nl8==>){s3Z&MMl}$IH@uoTkyZtLZqM
z1l#llIvSBiwqNzZz2@U<^6nfjcBtR*#lePkRFN<CM!AW`MVR$IHV}1>6>yP|>r~tt
z*zDs?3Kigw09$-)B{Bot7GRr??bKU<G68n@c+1E4K7R1|ofqt+W_*0^;~gKneC+Y@
zp~U&SK0Y9l&nMpV@jkEIT!NnrPtlVE^KQDZp)iwck01HiE5-TP7fX>Ggb-$*`1n-f
zaM_szXPuOen*4%D^YN80Htenp6iIyTV;?hnD*JsL@bRsWZ+uRi`z?4qkD1@exWV%h
ztbs1WInj?keqwXX_wlojUx*(chkX3%<2Od3fyzN@fN?2QKD#N0bKyUv={Ygvj>(@s
z{*tVo9+C5TQ-$db^_0>RmBT)c$Z*H7a8!y<v{2sTK2G?!Kx>{$ob++Z$9cm3T;jBk
zGmNF1vd=O8`{3CCLi#M_x{!!F33ziElbo>kcWdQvB7D)uC21+D?y`@p0Hp!}S5`|t
z8#Wc;rEGw50eS}L6`*{83IUV=$p94tR0_}}K+^z~15^o6CqUf*R|TjVpf(M<Ca<$v
z@>)aD@nr`%pQYpkJaD2^lPLmJmqZPj)|4rq)(S*#MZzd6_GRh?s2_+>zqqF8;2H${
zpjEPA0CwdS$19{81!ycYD>PQlc2)jemTVTFb$~Vjng{$3lO(Se0a{ABRUn*{Ia?+q
z+XliDzfUFG1!C!*JCdXm0p4z-mKvz!2Ew_R-zh*|fcyYY)lk|8xH>?G0NSM<>^I-3
zt8@&o=tP3Yen@j#aZP}N0EGcJ!jvunx(4VhY2Gq|aWUkPG0CC;-2$;h+&vI$DV(B`
z?jdukEl&0haBYB_sEq*E1?UrCFr^D{eIPcb`v({hps%EP+b;n3AV?Gk7#LtsAmBQA
zX|lzpoRR<}7+8qUE8}F|4h?WafMEgDKtySR`Gs}aH&TSrS;J)xOEQNkAB_yaHP~AM
z+#29!Nsl72LUd9IZm*ll&ap{ebn`I*#s*j%U`c>+0d5a)Pk?&^j1Mp&fEmCFFp)Z}
zsoW7@5^a$b<Aj}xk_uo1U?mJGT7WldDmrhcDI}<wbbx(1g0KTP0j5x00o(vyfEh0r
z#AJJv;s*!<gpy8g$sukd>ZFngU-ZghT<CkbAVXEiSFYUBeeMcycYtXDrUsx3uq1a0
z+4W3kF=n<>ICkaM8#5{F%mA|j%ndLvz<tz1bHUzh)^H?oKapQYc_2XB4{~@rhn~XS
zt{1Z?!h-}Axgu-=JRIPWK&){+7KnKwr+beEVl}m54P`$4sD{F&fX4$Ykgq=x;K=|B
z195bO!QsLa1<eEHAQZ02)4{1aUTo#*fFGU5t^n_{WWY%l))BD*o(r&y-VxxX0Lvw?
zxpPezKQHMO0bY=Vdn!?GoRWWaZn;Uxl>uH3usXo1K%73J9{xw8hYIO6j0OQ-3-CG_
zmh6$M(j#){IOO3C3Vt-PR;J7$%_%3-4FNVXwg=cAV3V{jJLoOa?wbP~9h-cUtS%Jb
z*(&Q~RqyV|`Q$1g7x$xg1bB;XC?D+%@Xmi_IKZQ)u*`b_-Vg9K;XzzgRXzytX@JiH
z><+Lez=r`o3h;>x5g!NGD}hHl((4&T88;qTBqqWH2{S(r@Fl$_5E%G^mGl+6Jft~g
zAk<%*nA{)Wn*cuq_>lo*L(u`&b~5p80FD6L`}i)v_q1#ov1GyZ4QAeRsRs>2d;JvP
z=K#M*<@_qs-{{fT3;lQ(gsu)U{t$#Arib_|z~2n2A#y_;3UHXH2vI4-5vnV|=>TWw
zo&k;p;Nl52!0UJ*Mm47boCt6-5c3@}&m9w@m;C?IMy2!q8{ixRZ-BFmOC!YbDyA2R
z`2blVN`<&2@f?iGxy&%TDVu`?T97?s=@4Z?lnYTl6l>;XL-68;%b4N+SD-=&uGJh#
zaf4Oi0#4-+RYEil(ImuGA*zO`7ovWM><~F2YKEv4ia~p|5dHs2AQXCLE7e2P;FT-v
z&Wl9t5F9Pk2~jr`=TYB!Hpy_!k~9`mVvM@wE=hwB4MWcN`CZ*4AF=Cag-t^Ns+J*I
zg=i+}<{?^y;EP<BU`mEthiDUuwUI=Kwjsz*yO93@*pJJ|S6X4Cy`3yYa>#1)Lga_I
zC8Rr`eTb_=3<yyiqC<#|A$o@B6@vf1*omA_Q6a7gQ4pdq6de|?&LOycaE0bnmz!us
zA-ab+SXSv4V*B$296iz^Jwg!!4_Hc3Wu7rpdWXXIuMcr;i0i1vo2!0YRyp=__db$y
z%GftVKPeYwU)sD(e@T~2N)8NB65_@X!<jQd85Ck@2vsU`u&i?k8ycuwSX*#IDEh%+
z)W%x{B*+5=C!B5yF(TxbZN+qBWQYfxth$~uDg-;$n`O$vEJ<yT4slxuCxjbf46zYn
zQiv2qgEB4@i_bLZ?IFg8m=I!Oh&#yA@dPif8gYQiloxMBWD8-0NQcmAyIU0f-vrY|
zYjeyHRtTHAEhBcR7>>AO*yoNUX)lByA`X$E{_BX1Y^pQ}vFcDF3=vUkSJ~=_-ga_`
zDIunY7?@G+48fB^45}PR+$Cv_32Q^SJH*J#iD4s>oT|(SaZiZ%Lwpe8-VifGtO@Z-
zh*=@-3-M%#g(2>zW<op?itc-Mh&j@H4~3W;@(+9QAQ^T=1nB%qL1Kh*?fFFWI|RZ>
zKOBOJ-G5W^(Gc^=06`v#o#?mHO1T9E3qm}>rYDL0Ce9a#0m5TZh^MH!5X(a`oLfvg
z5*Xb0NF|q0_7Km=d_tN4W9E#(%2HY|6hm2FtmJt%aX#@P9hS}|=@(?mOdg0@NnJHj
z{ukoq5d4S9RiWtO3%BL1mIQl14(~hViD1Z%{?!nhLTnE48lf2CjSy=YB~B#vj#4<(
zUl(FSh>i4ULs`!_b|z6pcC2;R=g@*JmK3}hVheQ@;+;^;@3w~6MlWC>>Zj}&p2Gp>
z4vNnmA1ZczHuv)STu8i4TuoF+aHP#gyQt)jVut%}i1)~OD*4{)c}#bQ*c0N{5Wj`^
zFvLe8z6<d^l@MZYh_6EaD>6QzX$q7t*t8@*rH_aBTtbEU9XsU`Eweh55uJVyah!?n
zurI^`3F-YIzM)y$i8bosn{#-?nz88H5Ik@@@>Jr75I=_ag(2l=g6GMp*w2n7equb#
zC_l@$e(xf}J{9$Qh(AJ{3UQj%hWL{aKEzSR{}6vmJ+KUiE{9|QIZOnO5=-J&j`jY-
z5PBhTJQPRZi1}k7&TPykvF2jpM2M48b<`ELbSA{VjO`&V(?`xF&W2(*dLhKQ5a&ZN
zWuSX9ioSZ2n7?176jc=^k;_>&M;ciXN<}Cg30Eo`iNa+fp*P;rr}zqUDnzIlVdZ43
znv6;jDo1FMLCXxPM7SzK)fm|^Pn94$!rTb+BIHD<7U6~n!y+I;^$1-ebd69WLd^*I
z5!y$n6`^*7mJwP-s1u=XgoY6s@mEe<`H9dV5@U4^+UrN+K>pe1liVTYsHt&;CS<0D
z(mX=bNc{ebS2I?UQn+Q-y_fRV@MMb!pFm8|!fd5=1dj9DMraqIO(cFyAr>+INl>~(
zBz`)Sj6~>AA`lPE%#Dyog$xvsyZl;SP6OrY2v-kOI<P>5?$2labu`h5L@%NC!bnV=
zu8G8wS3x9J21szxvU4O3LVQ%B6h-J334{;fD-n7`=o_J5gr1S;^?FCRHp0nHO0P)l
zPhD)I9<J8wI$2vEYOI|Y(_SBeGjUptQ*zq0e}v))10xKG#JrNn<k*pwQ2bkzK@s+^
z%YOf8g3DQhBQU5ET8sv4eJEv&K<)8-FJW+FgyAd@!H95Egb@+ON0<;{WQ3a|v6Dj7
zjf!v!^%G%CBtj_nf4Tp1YlP8}Sg+$%?%5<4QdoE_nUC;NZRPd|``U>a+@#x-i>(VM
zMj}u!=BFauA%&VG(bck@KoldDCU3bDmyTdYm>gkB1Wt}DrV+ddwv>wuJCPWBa~sH~
zHSbWO2(csrnTC-VX%t*caPY>$WIiKxPS?0I!d(%jN0<>|Y6LnCqx9VoSd8sXlP^-e
zG{HTQ=)u`7-XG!K2s7pFEScUXm3gI4XS{tN!t4lhB6%RZomfrfposIq2O~U0B}e!o
z!ov|BiSTNK*CIR`VSa??2nlL3!s8K^M0i?C%0-(65uS+fWQ2tgo+3)C=U{~BtrkU~
z>Dl?}XA=$GlEsl&!J`tMiNqjqX(YBXpOrNGYvyprhlpBE9rjaRpkgCDFX<JO@q&n}
z)X7V-{3@xOm9$7LVOGBTzX&f!SWSCv&sjrAv#npcKYfFUkXO1?MuXQQyb)n{ggty3
zVO@l`BD@`8eS{4WwnW$(VI%9Tt89+&W`s?W=IxbbRh~{Ehn?4FQ|-*$7Gb+&hQ}?K
zzas*N(>y`CGr~I&-Xn*M1O1d;wAwJ`T`H|(?mzhok9U&i57@e{a6W$XAh86>Vep3$
zK8nPT7Wc~ZW0_K9cGd*OClNlC%n)@AZY%jL0;lcd;mZhL(fcBtitsg|8{w}Af76M`
zOoX2z{2bvxB+lr58{s>;#)>3Qa(+)Ewo-nSTBTq7z<}0T;g3G9L}SK$vhhoVUnBfR
z@W{8GU6}lXKvi<DYpxuWkefF$$sYethS?mk8o*Z$MfitI5~vyFFdeF?awNi0c{{MH
z2r0)IOGk)-5QRD+X}SZail-x-VHk{2F2=tR&PHN>bUDJg2<K&6mm*w{Qe2cupg6V0
zCwVHB8hB9tW+W>{saUMpGT@YsQ6?5+QPOl?%2hr_g&2DlC(~^erK3_Y7J9xaMx_{)
zV{!I?_-XxKc9mE}iN1F7l}@>=Dkny@7!SvIBnDzskD<o6Aw~_p5~F>Lt7FuPQ9DMP
z7;R(JiBUI3vlz`|)QeF+Mxz*wV=(?Vh($1O7{l}x9`GQ3cuPQ%|0Xe-vMQpYuE-}s
zT1Zw~%d}-Iy17;|<zZAFj^&0Ljo2<mB1V2J7POTZ$yf}QMC6Z=7mJ|E!4LaTZeei#
zNMWBjFMe6mAx6g-J!15X(J96?tTslMSo}t*CWrJfhPKTqWL4Fat-S=FL#l}mv}-Ju
zvWsGLi^Zt5JB6B*%pNOtG1ySA7`<Z=IS0kKHpX=^`o|a$qfd<MWAv4kFB_Sp2Q@k*
zcFEaRKbd*`+j+$?2F561yETL=*!PiOo!orn?cf+gq(vw%;Ww15wi6@FVKHuu;l}V{
z43BYBj8qIQ=0Yz2s6RO>#x0T<Dbt%{P<AqWYmCt`?vRSQEykD_x5pSCV{D9VMasBX
zZ0&LBvPtRAym;D;dKL$7SV=5~*)!@Z8(nb<eG=7PQ&BgG#RNTuA!T=Bq{(eH#UxIy
z5$o6-0`b<0VaMq3M&4gV3Xh~xOVp%K1I3sYV>+SbB*Pe)7?Wc}vSb{C$4!X@>S0QZ
zJ6SV-Te>-q%bs^p<YS4c#8{y?%zt-`yWh$A_i|!>?LjkQ+!JGtwA8&ZW=ah|5MvgH
zG^Y~x#kil3x+w2W>O)uM>0Dxu#Ozpjv|Vcu1Jv9Y^J3AV(*?-ngEZeD<)IimZc6g$
zqcP?akTE`_MPfW2<K-BuV=RdA1T{=|i}7TPg;M7{Qn)C_Q!&3aDG)MbXWn8WCl-S`
z(o147lf7+o-Vdf&9a>6LCY5C|md7YuQ1Be}aFsZ>_Q?R{dGZtE1^U-i5hP!vs$;P<
zx{~cq6`RP+Cty~^_@Att1CJRE1>o1jcqPW#80%uOEcPmOm@GrBvfF))tS(Hx9^(y3
zaP?zsA7y=v4Kdz|@pg=j6!UQ6O}cH2O))l0aMn60%)z#{5-qXlAa=xJ%(Go$lALgl
zqh?!`)?wuY(#{y~#&}P@`%WwdrMqI3Ef8v_Andr`kMRM`cO+3^P|0pt6_+V^YWJfU
zAIG>9<1(Weg9hyw<F^=}#`rA8w=uqp@p+6dV(g2tKgO3*imzgPO{la{*gESWd*qEl
z@|#$Ugbxt;S1COBM8$HAh4l9^eu%}%mY?aT`O1&7z)!L&zQ~Kh{zB8YS8gs8D<{9l
z_#?&%@)_e`j6Y)>iE%W>Uorlsm~QeABU=ygB3ma9hhx#vH20Ex^p9-fSd8OR%qtv{
zD;DM}r(&Frae+9DafZP^#<>{hW1N+WWz#IiBNm7Ab4i=M#Gs1=$86+{7YD9c8I;PP
zb_R7aD4ju>460_3ok7_Q%4JY7gGw2c&j_Pe$cVs5cc7VAEw#j}at5b1<W$LspOvxZ
zt1=?Uut(4<DmfWc%ZNinH8Ma3)Kc{fC=RP)NmfNf)y#m0+j-T>;Ma0u-dZ<<dKsbi
zrWw@Fph1T7DG^{PTEmP8bYz~dH_8b7aD2{3O)~tTwkX5nl+7|2aw*X~BYI>OYn4Ik
z4C+osy~${kLE8+Tp)47+%OF9XGZ>wLl0h<q;tbackefkX21OZk%OF34_8DBAK?mw2
z5+Q}~BhfK~P8k&NtqLNHP>t7Q@J*qx9S>|2X3#k!W)od9=$aAZDAKb#i;jR3itZWo
z$l%%xu9KSSnE_`s<h)k~y)z;@Q7Ec~%Het}^ZR6QeFl9gAgdaq49K8=M*QrHZLuT`
z%Jd2(N-`M4b~CskgTYinMvMW5%KB*$p1=KZq=-u-cn!-)aAt5L?Nvq@p21BSjL3j|
zj?Dbuys!MB1V?~mdz36pF>jH^<;?fC48~-T$zXB@V>1|+fssKvgWEG0pTQ)~3X{r&
zj5q-}QP#%aBvN&(>JE9kVtsZh!@#a+8R!}CmXDaSjG2K&J!IgsfaHx;xsq^X+F^SR
zAw-8|TnaLXWGi6?{K-F6K?VAC@?wbx5>qm`lR{-MCnGxgyE3>ZgL^ZWn!(+Y$!W6A
z85!(dP%u3M?oE`frmzX>WM&4-`zZGjGhDenmY79rwiV{SKZ6G(_P83u$r_C{H-mW@
z%+KJl48N0@d@v)H_#UBsxdJa$`mn^qm&HmVOg<{xWr4?K(+e_qf^TgqAoEXVurPzC
zGFVKVnEe*XbkiMTBb5Q4Be9PbCYMms40pK1jDtB`{#u&Ba~XV{!M+TZk>?DyWUw`Z
z=lOaDud;GN=<U20GFU|=(6i+2OBt-ph}D=W!*l4xT#<V@gVhp~TxnU85s~B-x``ps
zNZ#04GkraSH!|3i!Di`_Yo&_T(}ig){_Duds_dZWo63d^dUeR%NS&Ap7rpuO{9%oi
zH>ryA;#cZa%QmVggAX#;O=xBC|Co9cFdeJ^e_UopwlQAWl6{SNo|&=Ej9CoDSjKi+
zL&;VoNw((Rx95KDXH<w5lom;fP((^3B%f4B`ywT~vP3EA|2oHa{@3ri&h@_D=bZO_
z&ilN#vpn~?pB-$iapWWE-5<zjcS(F_so4ILz1^kwkS5Vb+$ZAhat{T?FN)-fBNxuC
zAIp}htbL{6kqh5QB>oAzm>&I<nk^N3G)Arcr8q!G<~^)S=?5k9xrB!(hw}0-CBjhu
z4L!OPS4;74DZVSk_oX;finFEop%g!|mr@)r#bL&@Qv4zrJ0eYjBKlb(6dDuV^M^aq
zj+WwA`b8vCZG4oFBR#=!$stn|dnZI$a*9Kk7(HDI3W~^YWP5Prd?_xJ;&(}Tjz-J(
z6(=U~%;6%tpn_z-e0zi!rY@D@GROOL)JqokfB!5+vo?_f|D<0j#owj)M}|c5#-Ks2
z2(Ojmzfx3HQB6e!RrFO+MUsjeBu-B!4W*r|;zm_&sRl<<RPknYB~_fv5UH$!A3&(0
ziZhTv7av2Yu7aCTsJKZ*s)`zHjqh)tNo_eTlBV*543U~DXbc;dM`^ljp_Yo;D(a}H
ztBNV3o`iHU`Wn~IY>JcnEh-wQyf7k8cp9o`q@tgS{wf-)XriK{icTt;s%WMnLq(>F
z<|<mKXrrR7DlYZ3l(4mmqiUp;Dz<F1He_>jx01dMzeOMA>l_?rx{8P@Y?T%pr5qj-
zGb4j4kB+lcF%xxA@wO6ar=q<ors<T~;<5?Lw;GYoDza4+P!1|Sbi|#_92L2$SmE$3
zVveGViaZthsyN%>=vczo-c?1Bie40^if&TElt2#^-BsMCip2(J|JzluFkqq!@RypN
zDvDL`M1>2UdRsI5sOT%D$}bX>s9c>!?p++^sXlK$5*eUkpo#}oOjj{Tg~HycJ{5yi
z3{f#s#V8d+WxupNwm(e8a1|p|VW@Y|Dx{(ESc%BBb{V6ka9A})#hs))pI$N~a+iu=
zWRyYmZVsVC##l+i;Zwg8D0UT-R7_TJ54BS(LIP59U3V`TyOz$w@cUG8Q*w%m`&AJ$
ziBF|$RZLUC-=w&I;XoK&DKSctLVJkDqry?)l5G{UsF$V@Q^jl*b5v+5HjIrttcsA!
z5tUMsm&7Gde|@H^B4uqhPYhVDt1u)b%jsxj$)dGvO|zxxQm38@pTbm;P{n*f6C#Xp
zq$=Xnqf{R~h`WaSibR8iWh&;%$H^oK9#!#}ig_yLt9XvSP&u+d6=!ZtOI18hDbWsP
z$<q=(q2ft)Ix&p|tM86JB@64;h%A=KlJYFyi+D!jBzsoHGKsVIcUo0=Ud0P4UX*>Y
zyO&igFUMa}u|fr3d1ZS3Xd!D?Qf{(#l`KCrGxG9X(bX!}&_{Iqs^fJPYuUJlLmJkp
zSWo-WplEnQ#hWVrQgMX>RIyRT0Tl;Tyrp83irqARN^*GGW)<(M*h+tqF0e(#I}+i7
zaPf{bD)c=S+f?jO@qvo%s<^uKzABFUcm~3y9e+R}6zhMAF-;)57#|SfW}k2mnQR>S
zpS0VLB+ec5UUt_b(wbkuP_a+NCo({N$~Y#;_}d~QFim&ADk5<IHVRGpa}|eF98vKz
zgP4jhWmDg&_(~P$JfHLYpTgOm#xu-s$StpOWJkVb2+EFd1}6jGtN4MOOM5s>NA4Q=
zNd<pgex*i)8{ugqqrb306=zlaM%%lX{;P_UDo&|5rsB9X70Tg+3cmI{r?YtZ`Lql&
zblWpD=IW6tBO}}U3NQX$#W@uhR9uu6$ddE2Q(7Qx`wtbDR9sf^r)-n8TxT+Fb18M*
z6iM^9ihoqJ)^MwatBf8h8fs{y;TpY61vK2Gp@N1RG~B46vWAKpk~E}fsH6#NXQ1X*
zJ(=aT#g9|m*v@<^yT`t?kM2yZqM@pWGz~R1@M}>mR%Tbz#G<9TgsBqNkZ@8Ph2@NI
z<cdL+FZtBccw~h7w5ukOIvVO~sHfp(P5c&5`IGGWR*QY{0yVP~$SoQgXd)Cd@s4d{
z4NWw87N?=9hGv>rs_~L|b6Ln0V+#$u=guhFQUiY+=Mfp#PRw3gk=;f^TaHdczJ_!S
z5jNX2(pf`P6TdNKX=o=I%aAZr!;Vo=^4VTP2MwJxF$;Ip#1@8y3{AYMU)WF}v|+ZB
zt>MGUksJwgCG4WXYNN2QKtrL1Vhz1Cbk$I#i9p&z6K6r)H2!oOy-niXHStk0?%#PL
zdb=#=p(xipJt?9Y0_m-xkA{IV+gC%0hW;7`P#yKe)JabI(OVlv___l3r{WhwQ;3vP
z1I>7_h9Mdf8p^2p%8{Xzl7{i@h0JKe<3?y0t>I1$cWC0=Y@{q4B_V6;-<>n_>F8Y=
z#%Q=(GQfDtH5hjUV=3q5;=qS}P0%n=!z>N6HQb}&UJVawn66=xCT28VtDmZ2vWELK
zOrfz|OuwH)Fd|uXB3u;{;Q=Z4J`eDbooUm^%<KqHlek%+`W~Wowr5h#Go;pLQXMTL
zd{=gkhKDsc8eC0Wv@F%2YcMpZ8u&3ZjaHEvnKrkCxT%TD9kwj7H1K_9zTwQ*eo{Y8
z;|J4tW!2N*vk^^9Pt<iFZ8$FNif<*6f3gv>{Zr{g=F(;~Y}W9$hDRwS4KHYTQNuh9
z^EEu7;Yo5hB*H~0cU}uLJg#9O1+pdW$fU?3?f>4o;hWXm13snU84b^Bcv{0^*&Tno
zS)ySnrSzBhJ{!N7#2(++n6^yAbCQ5A&pQRrOPp0?X*nH1!x{~*Ygj?fHLRBWucWv%
zysC-!Z25gH60ahAZ4^F2_?nan<;+@kRIjhtA+FW1kt#DI>olyVlXi%_q2Wyp8)V^*
zx`L+l`<aBSdP^2=l8{*zZqe`#)ve(p4ex5$N<Y%@0XwZ4c~8T3O}w+QO`4D}&P|y!
zb0Y6EG@VJOnr<wO?3DJri##kBuQKkYi9Qfv`jBy>jzIQmVkP!J4IfK{zjy4@@QH@~
z(n9!~_@{EPpK0Rm60;OI2Y5i5%|U54)HQAC3k_dVBRVGO_)5dqj59hK>i9;(w;KM^
za7Dv+8ot-?tA=A5e$eovhF>%s)o_@8R5Nl!!_OLiV*DHt{Wmj-kiJHB-`_eiVst;+
zDnr(Pts|@3D91IN&~RSE1q~+|4Z20nXgDj8Qxcx0@odbzWq9;AX_-6%J*VM!4Z-LN
zG*o^mh<jxI7IRU<9~v%mj&3P7Q;bElgiD%OnU5=o{Hci_?^yU=Zsc!jRzo!%)pcCe
z@Gsp>M<pHCH2lX<uZtgCD(K=E?FJncb>WP}nHYjD52(T2Zn7>8CD<TWo;?4*Q5Qd+
zR?$&e7rijq9W$!xU|%d}HdRLr9nf);F7_k5h><1{;x%<~&zB*hmX6vwZq`v>M;%?<
zJ*=yv9<y~KY=^V?q{&ehQf^#<a}98d?2Csj%r?@|m{}dS>1d*(sg4dhI_hYqqq&au
zIu87u-a<!99c^`_>u9BmHQ}wg*bcPT@y5DLE=4#QG22EL`+|6dNJJM?2}5+Ij;M|d
zT^vwPU_`1dE){0!Xs4sX#_ZH8k)Cg47k3Z}9W_1LNk?a$?_rA568?^vts_TAE_=Kr
zj=}k{zAifQbg{MJ292*xa+AgPnhJCj>gcMYNEa*NZn}uulpCMo07*=x->##F4n@ac
z9X)jv>*%MWEGmxsdP!yV)zMoQYn47ahO`l{JBD*h*iMOTje9_{*I&l~b|LxUuVeJ<
zK@ul2M8{AaqjlV=W0;QNvT+K8X#_=~W0WpT>kb`nwH7BHWREt$F_OKzbc~U;6Lj3I
zW2}zxQag0XakBlBwS{|@{+|B*#x(v^Jy8;~wR@y~2fUm;S;u``XX;q1V~URZb$B{_
z8cgNLR2>h|-gG>`;qw!45<aMdhX&In9M@O;J~&fHTIY;X9jcC5I%eybql+VPp7TGf
ziyv@#nUs-Dd=XTKuEW;h=rDAclpd9y65+81Unk&;>l_i6p!dI*#w7<2AzhBWhPdLv
z7usVw0v*rlSf(ScBh>MPjwf{_C@vlIbu7>^SH~kd9;FRPA@C@eC-#-Dq;tGHah<1Q
zQ9*=R!pC(iWR}d(U+P6R%1gfd$OE%<x2JSGO$WT1zEsCzX{*%564@p{zCrm<sxMYw
z&*-@0?KC3K>3Ckpt2$oO@q&&Qb*#|wvNQ$`ZMn|hg~dve2iiOh;60R;y7&=il`b|l
zuTaJ9Gni)Z%56Jgd#iP<k#6{Y8-?0u2_NA)ZJmzwIzG|)QF^>V3G3LYW0#H%IyUOq
zM!%+o=-8y=9X_sOvyQiQ?0CDz7F{gtDbMTTCC;@px04jhRvAy;(?Nj`>ndp8*YW+@
zOs*nm;X5e*>Cq1)B*K#2y7=ta|0Gu*>ewUW58EM=AL-aD%MZL9UE4l`q2ps6`#5m<
z4K)5x@)>=fQC-K^(hU#LBVNw_LdQWJpVKuKW%H$-L%P^gvo*5%r4AmI6Q|>U!`LW;
z$uBy-BZoSE*2Vhs2M$fgVS1mAqz}Zq^xTEfJNT>U5ve%(%c2>PW0gc9otmwkynWy?
z9mgp~1D_c<q2r{EZU(v=IHlt>ebzuV17~z`%5g!*MP2-qc9sS|B=Vb%-({BVoYQe$
z2lp3D+-Urv;}UJgK$0O|9=pteNDlwh@t2M(y7(=RcMSj0F`-)IZ-$XZ5l)4qyvjJt
zucOqBT$A+walX5lUctZ(hOj`sF!O!7h`LP41}Yn<Vu&?uiUGS`|4IgKB)7k%lZWL`
zWYe4&{kYB~Qr$qRftChZ8K_|(%|JZ^HyfyF0EQ4<Z9{Ajh%nt`h+m3p86wUQVM!fB
z#KXFhl1P06w-{(*ps9fd2KHBoFf}y9Z{l3yHZsuI5WkXhlBHz0r)wr@_(K@q3TrNL
zeqpSIfxH{Ur^Z?vxYa->1Dy@DG0;}_(!oGFwJ<IcHIQK-Vu+0-Z((pR$yqzoKs%B(
z72Ap|<NrQs(q5MEQ&iWd^^P2GTk%b~Yy&w4y0AM#ysgJjpG#d27S}4-CQI@SVS9xJ
z3Jej=$T?T?T@4f&V)Gm4-S93E{=|Qqf!hr%Fz~p69tL_ExW~Y~28s>zqDVVu+-0D*
zfj$O?8yI1ruYnSS|Luyw2KpIXMPmTPNKV>D_+BUzN5^P0$Plv(-H^v1{Ee9S5J@&v
zmQw}84Dd@(e4mGqzqa3DV5EUj?CV^5W8UE{jf|Fpx>L%ZKEjEZKfI1HaJPZ62EH$e
zFpW3(Zgymx<nwyT1X(gsLNY&zV>h50&<xyXV2XhU4NN!0@`KKPzk#W&8X9?k3c6o>
z;DYnrG(#-&D9MKm%rG$9z#IcJ4YA(n%HS{gC(d{CIB#+w4^slEkx~QvGz3RVoWDit
z1`GoU17!wGc4xpd;2UDSVH@HOh-<(x#L9s)*Vez&DJY(a#S8=n;#8<9G{|>}xpUzg
zblvWcgofA^5}7NRf7HNZ1|BiMeGor?$~VpC(KuU(Td4C5Y<elmxn@x$gV}{Ndjnex
zykp=AwoJP+@REV23_LBx_@aTu29_9DX5cvkOAS23#<L^O8sZfKF0E<s6c=A5Wo&t#
zc00TV2l#>^W<BbfkSF={CMseD-Oa#S1M3W|q}>{L&A@5{BxYJ=;8nWn=>L0!4^r1_
zXvSO8UN`V*ijZ4gEiv%*2Hr6676)SBO#>SY@vFf`a(*G5rwxR+FOe7gCkwb)HvYEs
z0%rL*?S%2+T>~E&*hv?o?hI@*u-(A>6r&tnr~kV02Vy=;U2|MKQ6av|z-|Nk41B`)
zV_*-X(>-FL^^qaI9mMoMiR`5|lOre8K3qP1EK9aWGk8kFMG+xiT-;C18kl8bwuyrV
zKBwMI++yMo2V&rYfr|#dq={07296u}+Q2u|g@GUF-OIE2lQ-M>*1&gk)u{Lhn2_Z^
z8aQI$XUeL5<gkICB+_Mal-XYl@eBA-1HVdyEl|9BH;E%Y%H)KBla%w7^xqi&<?zoM
z;#`YbK1~zNjhta9E{X8XD-MB5|6SJd4D+0U^Admi^=#7rVc-&jzlmfMmks=B;401D
zz+Z;An#Tp_KL)PQuchZwQ}lYiOhv`fO(;gb^?J>~e+DX;qIU-HiY9K5_}ZPBTyOBV
zRC1eQqLPW~CQ?mt_vc0vRZLVh#Q-at!Ukw{<h+_J;rfS-^G(_sCelpYWTKXdnx^<^
zgL31{0#h8uvb(vb`qnm4$3#67H=C$yim$HGVR@;UTMzzp%SnMJ^K75z7!6D`G;y1W
z+f6hw(bz<$i7XRMOf)t5ZUfqwVzt9&o0(`%K27n-=vF3LOQfYKK7&Jo`_^ajyG*o6
z-lJ@5im7dH^Q5SWbQ2MFaZ$Xc&RVV<D60%p9IDskvA>D-Ch|<=o8sl_4kkLA$d-cY
zXo}x!I+@}-EfgA`${}u|3u{$zlF2Z_ADg(IyxKTYV2a?z7P_&!+o@S}HBn@WIdMX5
z@h&A-uoPx@DM@nD!$eOLV@-_X_y0}wGBMP|FcZB^^f58O#6S}bUdZliqMwQWCQ76_
z*dvF)GY2*$ei}QQKFEZ^!H$UXdKXU!2a{)0gcKUsJE}M><f-Ox6C+HFGBKK*&x+n*
zf^3ZBkgG&)n<lK6_wMgxBPPa}xZA{Cq>qZvJMe?Ryjn;CcE^cqyom`WrkZ%b#6<F=
z@F)P2O|h=Hhl-vNxz`jY04=IS?vsU-*c90m$9umC-ZQ14lILkA`03#3CLSUu<0225
zc>Ij`s>2LZe3EFU34Q{aVVQF)TOj=$6AznMYhoSU;Z%C5gin}IDRUFL34=yxVy+3(
z1mEF_nPUBEnXpYbCR`Jq313!id$<oZLah-Y4fR48(2!^kl8lrI3g_i0+aV1pA2IQ$
zi3PODKhhsFG0((&Q!H=z1s+2FSkF6O{>fDG|G0^TtYT^v;UOyL2rhN_1+6DdJZ0i(
z6N@P{6EB%qVq&R@WhS08#YXQL6TukqVlz)=pEYshzx3(-BhRz;pY#_@yl9G5hcP+I
z$(quj#3;`dG%XXWOuWii*D|uw#4A#moIyCvG1`;tH502%tTDkg5|<_PJMIqn?CYjD
z&HHjpl;!J9ykX))3dh8oG>OTP%_iP9u|evB>ey)FEfZ&(iurDnES#JY*+LD<!Ve^T
z*Thy6@0s{wPa4TcyiJzBFX482&G_hZv-+@Vhiu_GzSG1mnI-*h3f73+HX-_viM^Bw
zg<#@;bQTj|n)u4ZJ`<mqIKUuJhrN*gsfo`_>}Rl&_vN{U8PHPP7v}fwh<{F*kQs)f
zju|u8W^w_^r5YDt^y05ge8Y%g;s+Do(yj8uHtIVXNoi!oFtN4dS>lhBm=-xK3qQG6
ztlU;q6!2#gznD0~h{TsSO#Eu%lx*Rcw2k8?PB0}$xQHb&U&AJHlF@Zq<epZd<TQ<N
zYLp#uis6udH*wCyGd`a6ao)rQ6FV$?VBsQrr$<;=XyForKf{8B;THZh@s|nyk;(uI
zSBQ`e3vDg@W8x~Kv4vU|{xxxpj%=Zdh5t-cu#jXS*+SpT#m!n5&AF}Q1`8D}>>gia
zoh|uscu|UlK}YkLZnRLzLX%DT#8W=(QQ^L<p*I&*wNT9hEJUt!t!`mTvyxb&q8b)1
zztk_)!plvHh@@GlY2mgeMfIu{eLb?*q}D}e77rwSZ3}fQG_}yoLR|~>EZkzDfrU2B
zi*B~CXZ@i17QSqwL>m-o!;5ww&2MO-k%f-Uil!eas?(#SF`1Fsy2T~Twmvq1Rn0B5
zu+Y*%D+|}U<F_`-$4hftb}4CXVR~UcdA?O5pZr*(dRt{%tD<yrZlS<Jp@pc0PdDYa
zx6r{thJ{QES(5mC?cBr9XSK7y$K!?hM_Lwjw9v^yu7xfZI$PLrcmP?-kw~_LZ}%zT
z!1)x%Qa|XIXJN~&MNIh;xwWm*)k2YlVhg=2bdxRLZlQ;T?i3Wqez?Z^mYHdFi>e&1
z@xS3kJuR%;l+V!-|E3_nw}n0y`cti8R$mJx66t5*^)4k8ESX&1Nc6>8Ch|ag7-$Kr
z7-T`Q@J+Xp!4`&C7;2$sTjlPyiqTdfLS>DxaEFDN7G_x(X<?Lwi5Bj$FxtYM7RFlO
zzx+JaR=LZ<xYqf1TNpz@wa$ONtwQ+w)_fL@lO^LNoM2&by-cRPH)q~!VG_;5!u=K|
zTi7<Y!hIG#YO7pH$tFR~TLjHi+5R*O4_bJDN=(USVl6wJZs8$WJK@m^%rece@Jm~z
zYR~?&Ww~lWlikg+@Njv*r4p%-u8>~0U|Fy&7&M!7#gtV<*nVER;&8C(if6&K@au`<
zk7|{$(6<n?5J<}T7WTiJA1`k?lt@CtG7EFd%O8=*qY^%5VP1JTg|k4m!0y=2A`5fU
zm1iw1v+#t4)Vi5ZTKFL?=_w0O%j{wam&iiaE|uA5Bs{StDdW}5=PW#LVRnlOTQB6l
zVBtjzuUS}aVY!8u=yw)YT3A6<w##IipRQb8RN?C^fxp7q$10#*<|_K#g5p;tBr@#%
zyfri-3vXH2WMM5$PCovIh4m8Q<FD*WWnv?5%90J#>F(6bg~c1`EDMYCcc*T)@V13_
zEo`+w`YjT^BjNnrsZ$pevvAqG;`ij^+d2Gs#oH{rc`l#G`?8RY?|r;@r-fZ~VHd4k
z?6&YBBZGqm4))Mys3RMmjlCBBXCd20j*X8k>|-Qk*s<^lz1YIfG!F}(QRXyw3*TC3
zKQ{S*h2vXt57B)_3^-`va|_>f%+W^{zkICl3x*mCUr{*e%GYGr!h7ioaV8?)S@_<<
zVOsCdq+17PewwcQV1Y<{Z1RtE+x#rzKUp|pq2G{9(oE}9lO;!KOBPO9I89c!cQ_{D
zN%A0(ug(;nkjSs;3Tx;7opQ#)SqlS?)HrY9H(6CUE$bZ3+rlHq2QaZswm)ci(gjWd
z7XGl{y_4IlZO#*ar>yRnL;Oz*e=*40sBPm4U7iu!#*M_cCH=!_&p2b_DyINOp7uH6
zu%v5pyjSEfZ?LibL}8MRWSd{R%Bv{h!kKv&I_6Y5TbN?wrh9uak)_Hus@O=iQNu>n
zh*H%Sqh@(E8`W)G8l1U*OKy{hLYQWwCLgqM@<btQH0YGWQE)gNBMR|BrwjW=lsY!*
z+GuMd-9|kdH`{1tqq&XxHg2)e$VOwySOXiwPZl<`aaTkkpZuN~vrS}SQwb-YE-Z^E
zgsg30qos{oZOphP6w%5?Ye{p<njR!z$+C#jh6IB%*$7J_HljA#*=TR0L#G_7Bg00f
zjVv3ztt9IA;`kbGL=@6rZj;l&hB-5@lZ}qD1r{2^2js3v?QHWyB6(j`%*wUV#l{#L
zciYIbk<UhK^s!N3qtHf?jczvn7g4%Ox!vEV=26*lcN@3a=vm(8?Gl-|I<-f6$<L<>
zizVKxyo7e!*G7qrkv2xLH5>hH47M@E#sHh2&&nHQgA5O({6`iuaa@XxwBv<;MwFc$
zbB5X&CY!p0!m&YhjIcp<b3|!TrA1UBK4)kWl{>n;N80wClI^=>NtdXQ$ygiXY}{{S
zs*UkBCfK;w#v~gRMio=Mw9JWoB&ytFgE;k0HYVG+&&CuRBl5GD9TQb<I$21@W<-?-
zY)rE;$Hv1p9<(u?vfAEZmW_vKax?RSs4~+A&2ol>G*mL6pD5&DXWLl9-^@=GmfBEh
zy<?Lt8=4KB%9Uh)q~{nm<{v9GZG1l?kK<Y$RhYGHIOMP}t^c`_foBRk{+r_4h}rnj
z#$g))o3gRN#zq^Vjf9QmHeRw(W@E06Cu}@v;}IK=vSk|!Y&=#jt9cSxHa2<j)f6)M
zxXdmpuU%;4i#a7MCjsG8HlDWetc_(h7E1{)r5x_cq1Kj23A`Uwo{>nNmUS?yJZIy1
zDd7$2IWNfa7iG&Qq9T}3$TwstD{Q<>ncG-n^KW;uR@!(~w)~2XRT8O{p+qti%HcJc
zEr{e$9k1J1YvT<YZ%X4?Cv~*mMvn|-@`=Lqe^Z#)#T$R8Y^FiB&w0znCL0HBd~Rd2
zjkj&=w(+5jEjHe<@xF~6Hr|ySZng2AMCeo7q-POsx4}qA2@K6p9?VcakOT~dJ0$@-
zV%kN1B4S*7Xw{7NHugz(-Yd;Do}v6tW@&7+pHF0*`OL<CIjB!1Z2E03Yo8<K_6`SR
z7gY2is=&s#QqEtN>*Z_mLnr-LsEjn<Fs8N588%#m{qJaUcjZuA-^+e~;J`D4kNjlg
zh>deL&fEBzqdr;4UQXNi#l}&Y{nbYC*yIy7j@dX)DV-`L4W}N$lQvFCe(0xrC3}4K
zjE%Fhkoa#B`Q65Mvi5?Fi#AdmRC4eKgRPBgHvXfgZ2W2CFNS)lFU|#wT6DK6ql^D$
z%(wBcjeq|CHZv3s<l|?Ox~@sBJ*v2ZgBu(qI~cM$wW0$?l}~nOa=b~7h>%P-WGXjh
z3Qxb$L1hPZ9n^DB#Szm)bqA@A2q{$^RCCZaQ|X$iFni#hUNs!R!A-1nP}9Nr(Z%#N
zLRQt{Y~CrSwu3qjx}PW{PVEfieeO&V)oH7g#?21uJN)`$9=*QlxsogQ^lIp!k%L1H
zzHrdkK@$hF9L#pm)Il=`w>#+Jpt*w<4%#_r@1UiFRt};LG90w#SRAA~h&b4NIsb`{
zIc><>y}jBx;5@~&H$A6SB!_)bznlUx9b`FpM0zeu8232sQUV<ubaYVUpc@4>Ho237
zT!;UBfzFPYJ+mF;IG_=7qG8s|RPr3;J3{h>4hqT>)yhP(C+zBga8ahh_PaZ{%@J#i
zwNl#KGsP^~(?PL=F%Ir_(91z@2Ll}pa?r;?Uq{Tm{U!W;TT%%T2c1S1vyf^f93ZQR
zP|=Em!45_^xWf^X!VpJH5W_f}e^Z7^9=^yF#ys4?TgM8CoXS*2IvDMUFh0rwvrIJI
zJ00BR;A*BqBVo37mNM4CI0p|nnC9^NY?$C+vV;2^F_lboaIYgK?xr^GalomTGw&n^
zM@|+prDuso>Tc>Wg`;*bRkB2B(ETYrvd7iegAS%davqXun$CfrE-c7W=sPpWdDWbm
z)X}m&9N-)W4?B3;!D0uc4pcd!xC70B?!a;2IxwU(iboaO4$N}NSdMU5HpoV(0`~4X
z2x#6meAx&~ViL(YSJJR*HU||tNH{2SFxSE34i=IJ2R{rS@R);n4jz@GAoB-L2sfWk
zp0kt%vKJ1S3LT%NEOPLKgQp}9Z2w8JeKmzubFxH$qHpedCTWR-r4HV9u*JbM4xV+e
z%E7Dj2nWwOSnl8@YU*kVBlhzSUZ9=N$a_)BYS*u+bTnpH&_vltdd^A-N&NA#LRN94
zuSj~D%4-f*J6P}F4F_u+v7TJ(V4Z{4rH7KG$Fh{`Gh_JJ0D8@v4mLR0<Y2RdjZ!Sh
zR{yu?R`-h41#$Wa?e@hig%(0ndB?%K4&RH$9tT?;yysx2gIx}`QOIMHw>x;B2D3VK
zbC$Bh!6#YD2bAZ`JT4}Q6IuLD?ruj!U|Q_4EQLn?*=H3#a<G@g4n8FV4nB6UPev*_
z4nqg6W%HWUuh*n<n4i&XWYy==tqwRiNEeXHbxwAa45dNh>#qH!gTEYHaqyLcuN{2j
z;9CbL9GrCUorCXbv<`lzq8<F`VAz_}pJdC29W0RZSF4#~DZ)s?sQ8P6He-{?z^@LD
zN-cN!Hka9B<yLoGB3H7MQw~l$xX57c;EaQ_jFU8&;Yq(qf^)J9Hv79&$Mr7IPK4qM
zBwH=UcuCUyNzS*4rP^irI0+~;W{Ldmpq48l`9E}92md;_#_7YwjV}J9ce_Y(k?i6I
zNwaT!4L-$G(M8L4Vr`J(qS_m&lr39eB5##lRB@5&qK1pA@+p>ACs{e3+fLc_Ri*3n
zX)fSm^|hKcC1kYk*G{=fQZ77QIJTWq+ZExcj*Geyspq1Ri^eW)c2VEOEiM|!@`e)5
zZl`cAApP8S3Sko$O<lB*Rm?VX(OlvUX5}&a&xt}pKHkz5L7w=nF50+w-@^_MZC#|h
zsOTZdL&QbY#j`G!xyW#l>0*M5i7v8Sv~yAHqL+*IE;_i#cTwP?qbmY$XBXKnIx&qb
zrl-_m@aJ~*a(=FhE-vW!bpJdTrT6yYw6dX{!d31I?UX_nU0vMnqK7L?vEQt`A{X6U
zbZ4{wrraha^HDp6YYz&L4%Jik#bqsnAv=BKTFu@r`nVYCVwkMz>!QDl0WM0Ib#dKC
zs3sE69Wh{_i-$)HP+Sah!7LLuXoFo0alu7C!z|&&;RA+~85d(*-0k8H7b9JaaxvN!
zyE#6>07dV<(**<IU9MQL5g~gl#OXptm9egH+wm^O$+YF&oPtw@{l_MspOJTui+f$@
zE({lwTugQ`&BcQ*?sNH`MvW;h?xzyZl~90;ndF%+Jk`Yma%fX1pCOskT|DGsHtAh4
z$<A=GYjp8U7p;!eU?Rb+>vE7AoQGYglEYG0@cdmn5mCviCbJ)(E;L<OE*>YtE^HT$
zi_k^Fg)0es7cmze2QD8Z3|yf{E?MKQn6|Dfg>9Bmo-VlfobTch7mvDl%*8wx+>diF
zQ?0#lQZB$6wO1lme~xZ}B<5b5k1TTWgzRpy<ornqpO)|`8dZCt=+C4lE^)C`n#42g
z<@kW7y_(brk>^}I?_!UOk6gUq;zbvmTx@o++{H^S*0^}x#R?ZMyIAGoRjJ37w3GH?
zMM36Yq5Whilm@3W8UVX{jpjEiZ?%h8T9nWx*Sc8e;tdyXN<P=qBif6AJY-rHBQWDL
z+u7h^ql>p_NXH9*9AAS+D@3@jeA~qqdYOwI6rGEAU2Jvn9?gDDYKIX6*gGTSHpx=T
zks54jJA+S#^3EACIetLLADg_BDt5uG4LKn_jcqq2)-mTpMuSdb3rWH5C1WmrqEcLZ
z>|&pbFI;@-;u9C2x;WtCpo`C>NI5#Tv!9ASSt!zD1K8>3vg#1cUhZ(|H5}SkF1~j0
zor~{Xa6!m*AlIMYxcFA;jt)rO{ovw9DkVMVF#Fn_IdXW?lCjB@8~JQKz1Pn!esOWp
z#UCz?y7<+_X%}Z)9CLBp#VHrupq*fBkzRAs70U*iG})sQ;olTaUgY*Hz1YP$7r)66
zK|{)!-irqd=c(dTg%_kQm?dwly2Oa*;$Io}{&evdjj+A)kBckPZ2p#zOL}qA)m|*{
zu3j&Z_%%)eE-H9pc6j${$_*a2v=>V<F4DM&P4<xDVVsBY9x8db(L)yxc^)czsN$iS
zhvputdZ^~1zK2^pRQHhT0UmDh@Ns+Pz~3n~JfwN3>48gY%7<>nJvi}No)A|Z4|OF{
z+r#xkuzHe{n?0drI^EIs%GLG?J*eW?<OUv^dLrsJ^w7vdV^3`4n|L^LrcgUp$UvIb
zK_Siu853G~Xz3x#Lpu)?R4Wf{81OxDQrDVYc>F4I9*vMN-4m<Rh=-``dcoM_3{QkI
z3Mx|~FH_(hbDDKf+I#5Wp`(XR9BJDehAGZ64D7V1&K|No<ZzfrYRuw9wy8(1hdcfj
zTS!Wt*?bQL9)__m4}~7Odg$$;kB1@;-8|e*#yqha@9yC?*|;TrpN+3tliE{?s927@
zl{_mT!@VTiY`?FE5)X=p!4%r8ynY@Aco;~|PZ#!=ke<TWHORw#GE`FRojWLGp8F}v
zYKRB(&E%n;I1e1$K^Z}|J&f^iw}+7)MtK<R;Z6@cdZM&B2hnlvlEjoGPfKo+i=44z
zleyYt8cX5GAUwgtL=TUX0T1_hxYvX3!SFE2!(<N+d6+?dJWTO0&BKG9@PhkgFAsQ_
zN|t8kF_jeL)<0T_LYOWkKz%*%dMekMTz1a%Fw4Wk9!fpTrX)uU;Q0Vg;kclhBPB^h
z^`Lopb4zaLf?Tcy)?ZB-F1IA62g^g~A>qOH;CS#n_)@&C2MU%p#$G5i$|^<^I#C$+
z5YWP{{uAZiiUj1O%)?v{^Js@29+6Ky>WR~1PSC8K+(CKF6UT1U5jp20jN1!5aHGe~
z;35xCczE5zS`SZpc*?_a4=;Im+QVWG&v<y21oEtG2@Pgi)>2RGwVe(M;W7`DJR5vo
zcKV!z3p*$;czBUxc_;U^4hrGQGleV2kB3zrUiGk2ns@(ud(l%~@$g;;g^APjYf`qW
zJrV9WUJiT>wRTs|&uwxD*LhgaM#d(;<B8?v8y+@#c#A&8(;*KV=-u)Fkf*qxc2G8X
zc-s@3KAxy==2OQCiEQ!2{_)oi3gNpRw#x3_^RUgsb~;5Q=hg8wII}Ra<^P+)L4Dw1
zC%wSO?LKyS*zMt857#_==wXkC6BMZ&??)cK@bD$sW`m429`<?I@8JML)9B()B+X|Y
zKBcdXE@lZ^W_nNV?hne^LyT$P=6)`5BCP#yb?R3hzV>j0rs&}t58rzD(ZgXmsP8;{
zFA*NeQl~#idGbJvI1~3WOh3_1#wL^C7Y|1z!Er`5dUuAx!YdublHeF!;DiV%q$E7$
ziPi645}sx>^KjO~Zyqjs_(K-{?%}*d&Phlg=QK^#T##96?UF<;OW5-IEFePxn<eEH
z4}W|3=Q>TB91>iWINhHF|4}<W+W8{>-{6Z7RM|%r9~C8@<RjTfio{t}$rtk-5vChu
zVa<+8RUg%SH1^TNM|B^mKI-_W>!SwonR)PWlaDkXHGS~dhrKYg61MNCRJ2jcM{U_P
zO`S&0y<R;ZH_MU+KI%*4772?xinYh+jtY^6J{qyj<At=S2RjOpHucfWM;jk)eKhyc
z!bd9~t$h*3KlnSPrEGy@eD+o!EV;TSl~wGt#qq*)9}yoJk|rwQ^;*&g9hFQUS+bDp
z_GPlK_P$VG2Ok}Mbn?;JM^_(3KC*q}_~_yzPtxa7s^zx9n2_(Iz(=91TF0@--yqIa
z%;J)X9d+~3T@qYB3chYaEbrl?rw_-6>!a95FCX{$m?Fp3+s8;BqkQ!7(bq?bEF9!R
z@zKvme;)&635Pk*$1A4`iBMdGgMAF~G2F)pNifvMFqz%eQ6bs)9TiSzlr1S2xHayO
zG%OkI<4zyreN6Cimya=WAme1qcT1ex4Kh5|7ZWQHrn4QziPl6P_flfhvhI;&#^_>(
z$4RoJgvUhWRxbESf4`3heN6W;)yD&DXL!;yAOEgN<(`OpPo{@_%<xg_L-oZGS*1?O
zOdqpkv$K8id&(U76q_Rcuxy!#=8GR43}%m3(*GY;*@EedpZ_cgZAs6p=fn3g-^T(U
zF&}}CgpV>GT=bIF`1NMDcL+Ilu9JskzC1R0u8&82JnD-$Nx41dV;&8%gED7SF?YLM
zlh9upbP|TjP9LX8eJt|vgpYgpgN2VLWt&eEc2b^_IGgR<Nm=ZRpOg3$MX|KJyvx|+
zWj>zs@j`$X13XW}$I2L9iQz>b%YDp_VNMJ$`OxP?H~V<o#|kngvnzeP>f<$X?qijY
zmJ6e+N~2FMihlZ7bhVE)KGxHK+eRPNqerah>ps?U_;aF@Iw^lXp1RJ*nIRR<nNbqF
z;p0so8)ykubfbLaEuZfUMBPrxKYDbN55n9z(JemS@zFGfW-+|$W2=wfeVp_0o{w!l
zzToJ5Z1?d#W$R<Vj~&$Pkj(%2_*fzzNVt=;fJAmn_@RU(+ar;WB-~5Ccxw;~_m$Uv
zLaV#dHRWKXPw5Dkisw4Tk-C{A$T^sIz{f#Z`^(j|w{A}Q+{YpLRM~*+MM+s-`S{w$
zaUUmqeB<L=A3yl`kz-tt_nnV*SGs;LiTNNC8$9geCm+A~IO^kwtom6t&feK0;lTmf
zHQeG~8D#2a9;4n5rREIF-y>^J%ED7VPE$d$H5{yT#>ZJ7zxiPMUj!v7mAmo5X2bGJ
zx2B%=alyxpF;tG>qK`j(T&08fxa8xqkH36ekzMaB$-ekp?w>xERL!n_uo9X4TQc?!
zZE{%tnSR;VC3DTke~j%hREnWO3@P!v8)B#!!?v<Kk|o73{nesImx_~F^>f!Hos=d0
zvOn2XL}s>5NG7*Ls>Dz=hT1XIiJ@8y)niDDp=JzAAIW2<lvrv^D6~cl6fCol*;*1>
zSGwL51K~p}Yc|`OO0v2!)T0eQn%p>sn`5XSLxUI^#&Amvmy)_sj44?;Y=@Mmm*rBY
zQ{3W4F%Yt(Nld8wtCI!Q`(-zep+!tcdsqxDV`vpaW(-*|U_f^37}~~=E(d#S3~gfA
z*h%5QXRXSK$iiq08Irx{vxGn>$xk~e>mE&R7eo6Py2elx!|$Dx4kXUXDUiK)B+mn~
zJH^mhcA8BIbXIaC%$2Z<ge=U9A-^2IwX;$f!|)IL@Y$}Nm2NR~kD*5lJ!8VsXr;Hs
zaJy`fJg_e+lp`vRp_eQq9-C9tTjG6U=o>?c#0N>(Ps08Z4v=u5WSCFQU7bv*$il%f
z43P*+hSI1u2%Qd(VMGjf#4s|3$uZm)!>AZW$1paAaWUK}g>zR7V`6;MvL@*%{JUdV
zUXVtd7E3rjh6yoY&%~J~#&8d{Q%-+oVgB{<NiitP#Gt0caDNOB#V{j=sWChd0}YJL
zGEwr=V!{!KKS+a=z1MkMSl3L66JhNviL<H2Z{<B4Lum|4XoM_`L5tx@nskRuJq9C&
zL=0sym@yoAC&`Y%p#{b;t8r$BTW_3yFz2UtOWYU&Nl)C1!H<CmQ!IwY9~2Q`Q}Gx=
zNt3@tWDjjCnH$5SF+3K-BQY?$p{9UMKF*yN!{ae5&M%rT%NJ0dofUS(Di$u3Rf{Bi
zA_kVT@cI2YPsQ-GY@dxUra|`3CGrdh(mVQG3||*lSlBE2Yz)ijt)nxUo_wmp^D(>-
z1Iu5eH5OM`A@SwpzjyQ{iGNrPKW)l+nRfC_5|LFgyh^VOu>4^3wHQ{@G6NI@SQEqR
zG5kS~qrPHT7sE#}?B(d<(e*KGieYmMZ^-PM60&>)ok-$uNw}(eCJWz|__i3f$FL=a
zcVzb67~Ye}RtZT~l$18T-i=MWXTC2>cEzw;B0D7fAO^O!GlnnX(TaMM_=Qas_|%88
zc8`PwBk;c%K91ps7=DalUksm6L@|65L&uQ=K8@i(3<qQQj9za<_s96Z2_<8^D65$L
zJcci2`5_6vkdWo<g6XT6m_R$MjD9OSV#)V0^c!5^JDKe>42ipiSPs)dVmKMYDH@gR
z^w$`U#qhJl+0idC9F_RMRGf}SkC*pC&QHhza&()m=;;{F$d=DZcs7RL7;0pX*IBwg
zb~12Y5?qk*qJ#r4=8%)iG5pDB9H35szhbx&LsEd`0Ds5u4<mfQL-^>`7(XQu{Z~RF
ziJ=t;uf_0R4D%Y~+MN}a+z^OyRSeK#PPECQs2xO8BwjT@wE&d@+!$cU;0ml|sw}Ij
zNcdYI))J4;>rp*GYJeI6&M%B202@h@cufge7=1W;Q-E55knnwrMAljqts9_TfVKhB
z1Kb>-et=d1f7yxN5}*Ma3D7jaD+{9y12mFI{gDHhZ7gvj%r+~>TLx$zfRruR&d34N
zQ@WAh`m=1XwQTm*0Bt1ls}p5mBtSGkR)BT^G6Ix69IgAXFoR4fH~05Sl-|CI#q9%h
z3eY(K@eUGpl#uJC&lW_p1LOwi5`cJ)gd8Ac(tLk~-AQSA6s#F72%?1nx&{~<U|fKr
z0NnzV1n3u_dw|;l^bT-lW9IFFxU6^E#I)i7&!j|p1mbdQ&w&41oyM2jd&z9l@F=h6
z^pW&@q;G%|y&^>V2N=Kx`PJ?K18D=N(z`{H2nR`=$ho4(U@9@d&;Y{%j0!M1!0-S&
z>qlBOkK7SpL?FI&&BVV97#U#Vsr12>BZO<$WZxO!u0UJ>C(cVoV<gV(-4Y?s<EiE0
z(U}2e1(+avoEYGq0QUx%6kvLQhXU{=>d67726%m`_!888B$yPP65xJG&v&iKB+~<d
z_`vV901rxpjWc`cA#uNEMu01iRJc7&+=?aT>;P5(JHVU(4+r9AO=$p)1{OdKz;Aay
z-C5zcUuLF7X3ni(1mKr5%>bA05x2v-j_&6Ka04W$cUsQmUS5D$fFOWRbtgw|=@far
zvr=nhjkshlq<R0D&VLXSe^qlTeQtn90xSsdIQ7dh^5gu;H6IIbvZlDa!z(TGq_XA*
z;(813BQK<pq>9^)3x-FprHUJBPXu@}z@FTsr>N@y&jxrp06!|iZ}%+@up|(l2jmUY
zr2+VX+4nP&mIZijM6~I+C~sRl7l{8VdR{^z@d}aU0bUC5M2IIttO)ROfUo2DCXSW#
z4h}O8FOF3KUZt_caeExE1y~*6j{uh#|EUq$bAV3*tPQX(z&ion4X{4I8|1Kc#>N1v
zPNv(N`@YF&P?)(v!fKs!iN8f20&EWOc7QFEN#*?S|A;<aFaPt?c|=xCEIQV;$JPMv
zaX7Rz`ew!aZ2{g7up_{BwtsdIlV3SwOXYl05}9(L(yjozDT)Al1K!_>?nxT-A=wBp
zrMn<_e`3+zfd%B}f2@72=f^aF&3)Ic?Af_aHi<u_0|xjhz>xs^100|n0(=wTAX^()
za45hR0Y0aSD`)JloImM~{$H}?&dOIbq=`i=sq|SsyJPLQ0lo{6H?H7E_9EHfpz0R&
z_(9^4w2bS+JRD#{NzviX%Fh9Qp-Toh8{lYwU+I-Jh5*N8%jEXBM92e&Ijn1sQ<5Kc
zbeh61$V8J2(y;5_0{l)_3UGlztap#A-_$%8U|!P<(nS2e6NA1NIo`H{dFq8cTn_MO
zfVy$ii{meP2V->{H^%XIfPVt~8{iu4s$Txp03*-WoP9p;!ukBI)ieGJP$7;R;;0x0
zhy3^}1IZO7Kp7^*!Cq40NRES9rs01@Swaa{j^k2iB{hy3aa4(;Y8=(#U~6QfdR)kX
z__JMmFq;;~Qa!n59EfB0g)~|P+rNnxcrv|C9JS&YRFGL)LLz-`6{90^a~$>KXd6d*
z9Jj>LAdY5nG>@ZU9F5{=5*LbQ<Bj8DMAfpDsY(H}P2<A+njbDA11;ic8ON=0w27k?
zAJ10)Fq2!y(XoHYis~7Bs^Q!o6d<3iJ4iemi6a_EP8_*$WW<q4$~Zd7v1G;3E{^tb
zVSyY}2RU{QpN2hVOkX0M<H(lMqhx5A)GRHt!!td*#E}<AVH{oK$d^sAg@QQlsyK)o
z);pTZY*8Gw2jk9W8QtST``rjHq+J)n%*y#a;^-O2*f_?;Q5;9FI0jNybm8wyChY0a
zJB~ha^o@f!Q-6t+NZ2oq#a#u>0GXY*QxGU|436WDI7Y@XB#xnRab;t;Bp6oy6v^fc
z%<A<|-w|>Ax2wm^dwTHx!YE037lqlpXmlKRN`&~n>@>nLaojBlx)<g%JDyF&F*S|{
zWZ^^#wocKcIPQ@Md%RaZPUN>|2TYFRzBs1Daeo|pdY7;Smx~G4w<wwx$AfVgahP#T
zkK>^@O5;%Dm=VX!IA+H&hx*D^u0Jx126nlaEj%2DlC2P*w5tcJc;!L#n62D#q)3ZH
zkK>hs5+*%cv1mncIB^`vR+eNd6zOL9AerHVTp0Ut1aZXUVv!t^u)>!W!Z;GtQ5<W@
zz>?&$I39^}y@bu1bLPf*=`ZQ$momrvnDZFrAIE@h+4CeMGG8JKBz#=Lg>ft@uYE!y
zPsZ_-M4p!LM7F{QnU=`x(m0-x$g^=QlgM*%ycEX@i9a953le!zLO!)TjvYVbTyNp!
zI9@F;Un!ASBwQt7*FCwfNn~|-b`6boPwt&HYx41Rad1%Yu>H+B>m|V(al9#!4HA-O
zV;pZud{cSJ<~ZIi$G6ZVWK-`lO2qMA9NT1@2jbW+X+D(jeF=9+_<@9Md1oBE%JJRT
z34X}gBax5d*c-?HB)+el=3|L)?0ohU2|tzaGYR)gczs+4CH}dDhvM92h)2GZkjPgO
zp+din<2%Np5a}VlkK+eAY=}A`evIRA9M|Y3ar_j=5t>aLzcXaj&;B`%V{sgh<Ci#&
z#_>nCQawj$m81L`$I0R>A}6TIp#P~jcLX>oA7Qpjj>2cp$n053kQVRH^5)}uoQvap
z9Dg#f$8jN!i*b<bGFz6!ml#rV6jHt!^nWNvVRskr&u3Ft82lx{zj6FSyUkIq%ItGF
z$_7dQvF!0^j#44S4IwIrs1l+gM_NCdDJjH1k{~%miY%-Y;zo(o&sBQlDrAp6Rt-@t
zL|XY%)kD;fcxrhGDaqTYT%~3RgqWSH+!Tu8*9t)f*a#EFQa41s5G_Kq3~_VFTW`_&
zA#MrLe@=8onK*T95TZ#4o-wwxq7AvcnO)K-6vvf~L!RIXf~FyM%#Jn-xs#1Hmyig{
znI4@T<x;#=h}I!)4aL6W+{yGd65$Cavyl+d5bZ*=50Mdyt5TUEvO;lZZBDO}bydZ6
zs+BAHy^yPP2+=XbJt6K5(J4e{au{Mji0lwKqz`d>h+Hy820|242(z>DLgcf&cjkow
znS@M3zO2wSL{W$hUsiZq>sNJPX15T8-9v23RUZ1OnD~AQIYiG8y+ib&<lE;Lhd47Q
zt5=A->y<2?kaH$ic{`dvGAqAthzCaImxQS8Wu5b~*nU3>(94>;GIwBzK_NzjxFduj
zc^DF6Xo$fQFSsLrPO~J^4+}9o#Iy6VnZ3^B>Bo{sh8PuM47-!WqeC32Q*sx1=#zP8
zh)P`)B7C;OBiUm^jH3`@Sre&({i%ZoWsVOqA;jSzE9zx+>oAZdRemXM*hQHXVsZ$F
zdJJ)2h$$iFgm^f_{UPS|&U_%mv=CE6tgl^?(?wZ3DD%M(1G^{>g_t1;riU0dt|-wZ
zYi5X9w51TSaL}YK%JOKw*+qG}i}IM+PmAQ2l9>USdI%$g8bS-P_Oa|n^V8yf*6Upq
zQ`TB6Y&(!-BcH5k%MxZAz1PPJ;j^z0kBG)G=8^1L^O6%Gf)M-WWyeE=a-<vQWhb{E
zNLa=pJd(YruMowfAs!3SW=__E5c5LJ5Apt-tXJm<jr{vnjqC975DRHwuV*d_v2%3(
zwUSKYta>WM(;>c0;Hv}{hgcHg&k%owSV~jx9esw{k;u9Cl9q*dF2si+_Jnvo#0#{d
z5F10h7-D&dH6dOP@e&vRAzlfwD#XhnmVK79Qo^ZE4B*+6c_@d+O)Pv>7QPmu!J&L+
zSF_DYMLW7EUw2WMT}wqs0@AMwakh)HbW+h9A>JhY7vk}xJY{jO+_z}7A+~d{l6Z57
zcS8Iysp#zx-thiRTO=~5V9>iEw$iB!i{6t2+d}*?sfgKUhxcb|J3@RAVi%jbEt?Fm
zFBa~UZKi%My4x+Q8ssS-h1eV7M2M3i{>L!F$jk<*pb(#g*dO9Rhz@zmry)L*kMP-7
zKP`E2UoN?N@<7hP5Z}pWKc~aiDq%Vl;tPp?DdATVel6iQ5`HToDcKYoDaliQq<PaL
zLi`-!G7k@F(!FxYC&x<~j_8*VzlJy#;^_Y~1X3QCS&orpH@us3D#Ym!7byyQ7KI$*
zf)vYdA%2%qIxp$jDce6MtH$Rk?1iFJ^MsmMPW)0R&N(k%hf=v$XlAs-1m-7rQ507h
zwGy~Dfqz3>3(+ls?g{)CqCx_<B+wv%8xp9PKuQ9Y5@_EbJ1K$W1hy{CXNry=xG+z-
z|As7<-zW>~Cs0`;RT5x%)dZ>~P+j88)=nTbff@;<$&#DO%WFym626wF)G9Auaja6E
za=dN=^~&*^uOn0Qi>uaTvkenylt6w01+weLvNoDP6N!+|rU^8YRm~G<A(566wvn(^
z0<9%N%3BkdJ5>y=tt?3|FOMY9`vFm&k--1*luQY;5@<)6NIYA@4ia{hu#<$HCFCPp
zoctV#=a!drkw~6|KjbNe<)bS~plbrZOTk`;H|8t1C2)HJLlPL8z_d{Vdn7P0fk6rM
zOrSV{&zI)+O5lsB`EB!+-m;xO<*oIVNQs2~B<!ESfb!Zl4YL)A56@So<ST<|6(a{0
z<tv245*VJq_yi_Mf}a~?k4WH-1V)xWJ4zy6zOp1=8J)nL2@qkrOCn<uxLYD)B^)PV
zz41LrFfoC3`O1o0vVY1~$nZz`%A^D)C!i&uCvaZ^QxbS6ff;N+fvE|xI(ksT2RQcY
z*>OEs_-DgxLZ;~n&}?XpGZUDVz?=jgmSmUnmD!R>(#-0XS#4^5sVrA%hXo3=EFX3#
z&q%;bAV?sdfR%uqfS*7t0f$X3@1I|wxU!KJ1&T-OZIsQDmG9&XE>I>F2;<iZlrVur
z0*@r{XaZ$?>Z#<p@)6c9C{TvplthH-F^ac-_L>IStK@?V5_mj;4GC;aU||A_5?GPI
z%LzP@z>^6qOW?T#o=V_piY|er3G^M5-Md%zsp5f)6O7~~M3{XhfoBugUZ8xkKbKji
zp9_@d6L=wk<#e<{<?`mdzY3HW6XHj=g86w<y7hZ00haKW5fZOV;FSc{B=C9ys}gvX
zl1yMVU1@&aq9(;{3l(E+kJ}2BafJ%IBLi!xy9CxJ@CH4iSN7SUgakz1r1}b#`DWI}
zLgktLxl0R`w-VTt!0rS-Oki^YZzu3x0^1VU!T|DZ&b#!i1l~#D(?aF&6ZtGTTBzh6
z$h}&qU{Ln<1l~{Jg9LUaP_x&-9kQ>^U6qDi7523&0kXtl@+UuX#WC(l;G+aSOJIKj
zY-C@P;=Ob$`bbyh;{-loFJv#s+m}GovOFUE?d<-pLIT7OBycc+LkxQHyw7Dvx1?rg
zJ)Xyoj!y6K+na;FNPvB@_Ui<`Ngz^&Xc@j`gT|nf37kscJDTM;ZNE?8hXj61;IPad
zmGCDCe@@_tL`YV*W!5hef3R*Qv%e;AOlFTK!15F2RU~8W=>*O&WR;0K;Aa!~ErFZL
zP^%2TCvYx-8_Q6+4CfQLkia$apTNZg{z%|Y>NkN)30&sTTIXCk82w{*zgw>r&N<cf
z?7H07OY^QI@Hc~h0?bZ4lN;-*tT`Cn)qK!Z&H@P#VPbiOGTcyxpIQz|DTDQIVZ|~e
zl_9wdOC<e~gVCp^^;`I6?gM`nRw}~>hobJq!l?y0Z9dDXQikefNG(IvGE^(WdP)CO
zD`n%dlHFaE8fB<ihJpzL)5^ds)3km?%t96(?yA%-L!B}-DnsKk)Gb53GBhXyM?oh4
z?y6Mjka=?%h}SQ}EfVQ-VGwH@N*W^bYxHeWMn$7J8=08dtPICbcYXf96jl*AW9G4N
z;m)L%<gjjLt1`4M!>wg#Q--!>NG}5~(No$?*OBYj>P5B;nPs@63?s{sRfcwD=wF5b
zWoXY{x<|T~;kGh#C_~3Gbdn{7W$0RlwQVAu%aBdEol4J<FjvAZ66Q(Bs(g;U9A6bl
z<5NZQ*>19MSduu+zNtuIN4J-uxD36@&_fc`7#Zm)k>^gP_bx-9GL*>dtwl=LBBk&D
zN7HveNl|odBd93(0YyYGA!&eF#Gz-{6?=j0-DM+9&N)iXImhXohl~*kVgQvOK`|>5
zji92EQIS^#1XTW~=R5y7b?V%zuCA`S`QEDCNy9gbn%wNsgmV^gNuo@kG>QD-IbG6q
zha}`Q&@qXwqTD%&PDx06bLKTJV9lPxmpgE9*YucfNsJR^HXrX8{cC-+XA-@V=$%BL
zB!(t2EE%4#_f2A85`)rkza;u6F(3(5l<&|ohp$O2TUt0c{b&feOU+~_d-&Fkw=#z(
zF(QeHNlZ%O?c1}TPGVFNqtoz6vP2glt6Bb-B*rE&K8XoQJTJ<7M0s2iPY=$|Kb`lL
zC_iDAyy1(NMY-m$d6ScvlElm;+GWcXv*lAO#i>b5OX8H1KRt<?j}%F2KH(XpKA$@I
zdmb(7oh{EvVlD-I1)8nEyd>r)G1$Nm0}GN^n1rdp(y%Cr#Yt>Zuvx*9B$g(zi;GNR
zSrW-4mQz5IP`KqJtR(CtG|K7A`Om+b74II=lQ5F}bD@Np#0)2Ld2)2?bCL2D6TS9I
zeCi}oeq7W|!b`&EYP02PV-o@4v626SQ=B>7xiX1W#6S`+kO>ziRwu#NpUallB(XM$
zb?H~8_KEPtXVUPq>6*>wNN%?(fftilpTt{a>G9E*lGu>MXIo0PB(ae))wqZQ@<v8C
zrQyx#nw>9m{QM|^SCV)&iA9qVuO+cHiEU~4^&}=w71;SklD`iX<qXp{mwPh}Uw87^
zvptC&N$jKqUC3i;J~hhv=_!%jN$jC+QE<D$dnVyV4kYn;68n;PCyAmF!n;X)n8eYs
z!u}-QBZgN--cO=KH|c{kygOSyHaW`XM@e+H#gEhVC+YEg<<m6q85P3A5}OB;IF!Ws
zBrYUzIEf=kd`IodF-aUt;_D>7Nute#$QPt<WogTd=$A=+MJDGz;JOg;Pe%xRo5Z}%
z!s|nY>%FQRPl5o;32MA9Q35|Cagy{Un^9}cNc>2&7faUU=uhe9?e9ed-VN&{tb3>0
z=_Jl1abkpUHi=(42}?#r&!vI2w~1fu%)3Z9i5q0pBz{feH|qH${z&2yWk-$tp2TJD
zVsYZGKEnIUBV?q{mnK@YlKxEc_mm@??OGClQ6F*=GjcWkN{i`{(YuR(Fv9xpB(C%8
z*)m~$eDt3r{!QXm5~q7d|D(VTi2U|qIc}CKA5=yvqu@3LWflG)Y~<4lLY=b_4tq!z
z?oe>2f^G`BD=4qvE(J{$G*fW5f(i;AP*6ufMFo`<R98?#33<4(f+`BCD)={BW|O5_
zx_`jtNQ3DKC?V-<wUO^paIb<|3hq}htcOrj!K$vpeG1$<WrQ~J1SPR}ZnQQ(`bhzK
z<Jk#OJ|$3B!Gj9wD`=qLAq5XBctpXY3f`QQAX~n^EQ0z{z4R^~<Jy+DzdkOpZd8J#
zB=aokDl}BkIQ_Jd0@CP}$x+s$rU?-RO%(oum2mf*_O+)*qY5$<v{BGjL30I<D`=%4
zQ$Y&_Pbg@~cNOH>k(d%<o|CMc6J;~5pixhOC`~9h(O2p>Dp9SgK)K7})+QvLQXmph
z=X0J+*R9ia$Jx=5)1x(KM6(qvnkKYrEuEhbZKohdL6L&u^im~$OF_PZTm}8w$lrAr
zX0?&YsO=RLD%jOuC{W<Ek%`sqSMzr55A{!pf>H&Y6?9S1K?w!6qk>Kf<TUcjchBF{
zMt-l2ynJT#v1vl5%)G7&+IJBi953X&m_^|0HgXRIJr&GWFh@Zz1-%uFRWMFL9|e6C
z3{fzYi{Um`l<BWvfP&*=qnF#r<=e^w6%0}^Si$Sv1+FT?XiwfF53EYIAEscqf*CWS
zqZN$c))b6Xux66*Sle*%B~t{B95XgCO2IQd1p;G;u@@tS(<6L^3_qS5Q7}cp1O@G^
z$`ch#O5^_<y>!jbc_hSC1=Bdcf|*>v{OEL|eN1$J58)X-^5$4!)3^j>Y8D>}(uPyg
zxCzm@3g#)Wi9H4L6)aGoC{PtFRFJhZvY2XL358`5cRe;*>58;e!7_!v3m^SwLUeJd
zbbB(ARPeDawr(r49&kX?6d1(Va6u<d4oED;?`D|_ECqaJq8qt5Ey1U*0#Cte?wxX>
zAW*PE!Ab@H8yih2SWcmMTDb3Aq{)XZ2vE$c^c9YrjjU4eS%&mPvm)x=wF<uMBs`;_
z_2lR}GE$c)%U^csvy{`e@`)YA&yh4cil0x{FQn@i)Af1<FQtJE>3U<j&g&y^@XHFe
za7ilGs(3}gtCTMl536{Mq*QQT!370d6>L**NWozRZ&2tIe5l|f1#c<XuHan-`xWd^
zuv5Wq1$&6t*@*^oqOZ<P>{9SH=bW2hIdXSmuY!GKs(I0Q69txcs5(j{jwH-_?y$&v
zBw~-q`;@`%k#TM1qVB>6l!)#^mF1C-75u2T|3ty3q|213G%)g+f&<h={e=9@5h~#c
zorJAR6Q7e$Itd3UHD5@t&50gSa8$t$3Qj6Grr-;bX=?O1(MY*&nE$ncZ_>b53Jz|F
zu!r@5l@YGzTLq6z7XF$boKWx`@iR^MUcu+xB01dz)_><qKT;#ji=3gvt&04l;OF#8
zPLXrc{mlkt)O$=?-A}mnSngRashe;vU1!aVKCvcpkqk_OsNxP4zbg1m!A-J?f=dd1
zCuuqgR}@?(V<`Aj!C&c5{6U@>FYsG#Tlt$V67?Ikbh)9z)kywT1=rGQ?QgR2xM-s>
z(d!Csq<a=m4;5YXUFly1|0%ddHd`6l&{l3XF*@R4jx&jgT>5F@TV++0Q*q$#Vh&*a
z{^+p2Q$=|dRaI0|ahHm_Ra8<@Sq-&)1r-%le7?Eduqnc*XCm6!9Kstr3RP6pelu^!
zgi!XQGonyYUB&(ER8d34Ju2i{Qq6RIuZsMRLbrMnd!Cks`&86Q&%EnM!TE{#G?WkU
zb6ui!RXnJoj*9vnLmeB|V<V+M=TKA$Jfh-J6}?pSR#8vIV=A6h(VBx*G*Hn@MN~z@
z^t6ptL{vO;Z&9OklfYZD&_qR370ES``zj@<u~`nZl`~W{S0Si~t9V=uJ*X#C9F~O^
z=@(l~2#3YeJuTDqB3a<mgv$Rwl{mbiTxJ?*l^)EV!RxcK(lGsvr&Ne4ic}P<$X3xt
zMUDzdMOziWw+)SEI~8}flQ$lb>bH|8Z^_T))~N7R6mY=#NFFhk2A(<_Ve|0xd?KWf
zlhc}?jy%;)E>TgcV&U0HXB8cYWEExyp;LN5$8>#mN`haRcRKR>{K)&Gg)S<(s_3R7
zI1}kXxSiZRy;KS#hq2jH#prgj-cIhLGAoWbD(0%_r=mamRg6(FK*c~6PphHRJ4nUe
zD&>Z#7^-5h3c3?q)&G%cn2Hf9^d*UnQ-$FwHde`NHZVd}zoDHxlIWTny<CzpO2wCb
zgb&|}j8!pC#blK^c8n)a_KQqVF;T@k?c}TL;<LsJlT_^PD=h6Rux4|rifJlls+gr>
zx{4p#$um^6nBATOC@*v;2-7IjRhX@UUIEKL?c{kX<`X|EEENlgG!@Ip2`Uzm`ctD5
z#z&W^Se%AwGT5_}n;jaOq!ph>6pD<BjuWDW8rn6D1f3}8)Sr{1FT5AoP&v-#*At^V
zZ{^u49HLi6N`<S2euAeWcWiX|bb&AdKixe3Zq{-YD^#pj@plhlCDp>TD9b7}bRh<h
ziH_+jP)v5ujPU6?vM~ip!vh+gRq>pP6Dqz_@w|!`RJ^NVzls-CtXJ_W)wqh6RBWKC
znHJqbtWJ(@RI!<IT`{qVvXdhZoi4C`Sq)A3lzGvfGo!Dl{9*U#f~kqtIr8f&wyM~n
zVyB92Dz1(d-cqrhoUkqL4Ha*yu%`+fe6e%1uyR7UQ{-y9cae6fSlLV1tzu6ac$>?c
z9(uETRqW#$h7`XxQF!_OYMpcBcZm630?VUaqVK7Ap8}=gh>8zXe5m3Ra*>LURE)}z
zKjtH<njHCyF^TI76NEn_Z>ao9yXZkRG~6{8MyR_!S3?!IXnocp75^+Rp;OmvX9=14
zD7j0;S1OLB<^78^pVRf4cP8>rrNq~1G5<zIt4X2D@hzqDhO}dB#&Pa_Y{t^XiSNl*
zDsHJLqv52AA5~md@jn$mk@HntP;pVkDHW$xoKtaL#Tg2?5@9*Z4d%!M^pU)+7rFF<
zbg;9~VsYfabCF+2WfhlHtmz}<oz0;eu(Xl%n+n!jmPFY3yNbG<1Ok7k_>+vG^8OqC
zQgKDa*iq4zl@eFeySSESp}hIguSQ1WMn0M9hKifqzKVaT1lr`+e4twM1yNeAuMZXc
zM_j#>HGXBuvTlMszVdAv%4(>o0srKc({Q_nDjKS4xI@F88Y*b0sG+=uyENRbg=Uwf
z{8WK8jU(%CYvfO?omWZ2%I*R~-O3uTTPG?`6Id@>n5d?qx`rBB$Xd`qXN;XKM+o<5
z$g3sXtAQ{b{zlyeYJmIFYp9j3?@!l^4(_}z)zMH_Ll+HQH9V-{Aq|-tvNSxb;Smjw
zYiOb2Q4RGpG||vh!($riYiP_(EsXR!6KSBKp%&VaXGaQUdkeb`<uu~%)<<U9A_qh?
z{#jFmmb(94`OUb^K0<~DdW=yGwc--Jj&ehan`>B|BNKQ+!-nxfjLX(SFSo*rk)rX5
zKf4QphPZ}=h8bn^H=T~O;tD4vD5tm1Mn38wJgK2I_p2da<6nJ7p3=}xLyiVfL$(HE
zuSC{uL*y(MS=w^gjOg}8(xVj;RVPI5TNRNs{w;PSR|7k<dq&!8DA3SBgRG%YLy?AJ
z4f~8p`#}-9RikD{OH*QrhVv^UrRjb?s$xbuYWT9PM04MXDURGc!sLg}8tUkYys6P{
z8oFzktYM0V9vXUTcv{0q4ZSq<*3eHwe=b#t^dYV^P^Zy>A!+D=ESQiOpkbhfp&Et}
zW4(mJN{K-l25Y=}ml&df?h_ShIWO{7=g?{o*RX44nab0n^q@whw=4{Z-s&D1rD2SQ
zu^L8en7LA1-A(vyN#e;rbH-_ypke9gP<4#g_<N=TJ11(GIw3MCT@#?AGF8Jg4f8cD
z&@i1;&@fxW91TzO6&gFGc|C=h8fKBJCq&AYNf5DfHFV08{{Aj9x4W>XlQ2)i_q&VP
zvyjOj4LXUUVX=lKWM&OXEi~&dU(Z{rf%R!BuIqV<2314Gl!T_C+NnIxi#&ISNaOY8
z8Ht@e-O_rM@<{!HYLczN(eR%h2EVQbk0{mAM~AN=AiwFjTSrR6at)U>{H|dIMM=Z^
z8a~jlij1e>RSmCcSfgRBh8H!g*RYNpI5qK{hUYarLldAOa<qUwk{&rdBl?0C>dD~S
zysCAj?`I~s{g=qM8a8wN8aAex{J0XK_qa*JzX^%ufiV$HFWtgv_ZGjBmQxBW;pz8C
zuWQ(<VYh}o8n$V8L&My0!gh|)@D}SFd3ReW<at^6XH4|)gy;@(2-p8+WS54w$yd>Q
z!e8XbpRdWglq2ueaPRKOyBhYVfqfd@NdwpWMA%<mk~<8_Xg)LYo`y*s1p*&x_(;RI
zR3I8Y*6@jjV;a8D@TrE+NEZ!<$e&$>0~$^&N_<Z7KNndo3;kQ=-_amHH!k_}qKC<f
z8vjTtK|4jX9M!;F1Od8OUuyVD!`D<Vl6<9QVM{4=z`mg}nHS}O8-2nP8otwTM#EWh
zh=w0D{HWn4ezA{mk}NkW(RY4=j_VUM5<hDoXVPAu)^JM0jy}Z$=SJD{V}pFw=O~XF
ze%0`shN#m1f`*G4ej%ZI2}~mOm1J@_OXCxHl%PsCBnk+px~$=U8vY@TH2k6APwqm)
z4ayX85>H&C8ETt<B@MHAH4RX~vh(lsBWh_HGKL$;UXhz=d<r?zj-JA%9>RYbZfPi^
z<2D_4=wO(6`<FRob(GUFMUv~hA36R)<n}borr1xoQ->kREalU{rah4gIx6ZA$kjS3
z>8Pxuu8s!@cZpWfQA5W)X}D^-uBHQNfH6XK9a|-tz`Z(Z>im7xL~R}S=_vXl=YICg
zi0&U7t)=6u`|=1di^858dx{^>@y#Tmj*fL1`2-%)@vsis&<q`q==fBU8|Y}L<53;G
z2MYCcJf@?58fKP*>C+>fqwFUSG|~~#(L_gMJ!FadOEQRdI`b6praGE&J@*t*8`IH>
z>KGWwC(vBS<2u|K(H1&lI(lr%Pp!*)LI+cA@2HWM>7K0%6O8c_I$G&yucJUmrj9Hf
z?R4Z2ZkYe19@>kxI$G;^D%~UM{N?&+n>3tFZNSK`Vm{;CVJovpdb(<oj$9r2dYDl9
zaa`iLo?@Pk)ngJjV$zGPq@N}Ez+|D2c+=5QM<*SOSc`R(=qOFYRG}S6paIcUeT870
zAnRei=wC^m^g^Vwj{Xx8-E?%<(M1n^kFM#O28(bH&QOxkD_s*gJ#|n~oEk0AMzg=K
zj($3x)A2kf(J_D+)3JoO(lJQKG#%4*4AwD3$9NqR(li>XW0a23I)>>OPW%jtjL`8k
z%aqV&6;2iijMVYJ1`+|r{$q5EC31QS4^%E*J2y&TT)IgOGm(!*Cnobl^(6w6biB7a
z^dzU~puLz%y*e>UB~N&Uj+r_Zkk%U_vvhoaU(swGb4W)gpC&kCk}x;D<@v-F`G0wY
z<=2_f9WxW%?iOhr7wTA~g9$fEB5m$c9m{k$d|gLUhoZwGeb-0cuN<#DPEd7dI&_ZN
zo@cOsX0+FwDA|LUH%Wp!MfPy8t%oKaJBmG$TgP%8D|7@pj(i$V>9}zwGIqc8>SSTe
z?IJD3N}_#l@iRJ})v=0nPdC?)|I;GFM{9}CWc#|g^5$vL^0Gk3lI}t2RN=uRkr#CS
zt7jbM%sSTVcuB|GI(F;Wpkt$sS9QEbdHg4j)@qZE%{oqHNhCD!_OgyGdT8hgzrvAo
z6Z=OdUZ=oPG<pa-Dd6)W+qetzz`ndU(oJ<rl#%{hI<}`fX*D(|i5)urT%FHHd~25u
zvK)b?hYI$PUOL{_u~)}F9q+LDbIy<jiFb*ID$@VK`*kdQB%jgH2Rc5~@d>4y%=TK|
z`(H~RQR-_;&z_BZtfS815@!3UqCX>YWZ`o?%-0>z!yFEQ*VX)k)IxVB4p9jVju1Gi
z;~00!VLHCh@uiNFI<ramipuAeydQMX8Tgt?M#r~0j+69hM&%<OvYgOSy>EnN+tz$?
z?Ds@Sw~%$)9x8YuS7!F|CmlbN?Z3^V&S##707C{Q?a%1Aq~muTXLX#TuxyUFdn4y{
zT+ne*$1gg5)iJeZ9!HkWOjK=DG^0Y^Z|NR(cD*z2GS}HhxT52#9(o%8)A0upOR*gv
z{flbku}u2^OazfA*SLNi|4_$HOmuU^>l|;ir$)V@<ED<nTzNpQoN6O<+E;vOV)S3G
zYGQQp;VQRulreCdfwBf3H_*aBIRm#Fc*MY?2JSF$r-51q?l(~0z+DEa7^rICZX-l;
z{h>moG*H1n#WYamO4T<uMJgNk#j3i;s`|#%Xf*>caF2m|Ic+VWx)B~;&_L8kH>v${
zYgS=6P}4x?hb0Q#eFlGjFv<f6*0l}%u`yD|z)vql@=Wmo1FfHnu&1tp2f1LLyfFP`
z@NWzg4;!GxWFf!Nde$@0*g(X<V+QIQC><^|FwoEdow1|kB{mzSVfjyqJxvTWHHa%v
zf|?m&#C`bPyeM(fS!m{qOzkp|Y@U9~Pg8+EVIXFpgwq;mX+SX0%0Q-pI#1-caY|d)
zO~ef(xYW7{mh(#!Sq7do(9S@P0V;~t2EJPndCI^$vlFv(Wzj%37dcdDL(C5;W~!tu
zXI>R~=Y>f2h6ob~5;vGD7aGVlu)Ruto`HM=?F|&95%|iAYQ!qzFE>~Il}9874(H0n
z2F~TmEdS=p9Sq0@`WqNvprgSbXNmSAhNnk65#dIdujpc+tATC?J{Xr^6Y>1+26}Le
z5jv~)<jIpC%cDofx=EhQ7kj5)?_<z;mirp$XTbU}kELe6d@2pf>_7u2XXi7Z9%O*^
zlstK;fnf%Yx;W-yxPcJ{u3NZa;b{XS4J<XW%)}@Iqsc-B4jC9@V61^f1{NC_XJEX6
z83tw=m_U9wE=)Es#lZ7MY$9=9yKs_$xkrTMnZi_qe+Da0BWY?Rl43@S>C*Hxyy%w5
zo>>NFb3F#;lUR3_f9qgol`LV7fddzXxuoMY;Uzs<{Ch#G^TGlH3rUpfi36sz_F!f?
zA-;r*G_c;lO9qx1NE%2PSZ+WupmO^LYy%qCc0te$7-`_!HKJ+Y?Ge((JehSfC)UP_
zK5<5H40r~71J9kwat*L&U!EKo*fhWN-8JGPqol_h6|!@Mft3cHG4QN`RR#ujEnQ<^
zt-))$c&18py&JpqoiN*p-8ds~r|S%S>crT5E<_7nFz_N#F+ptS6salc!QTtM7$!A1
zA>@|Hc=MvL!N5iXdkpO5M-6N?u+6|523|I>#lWiuUgP$oxvv<wTunSbTl)OZ0yc}{
z!s`aMQl=7d!UIN&&94Z>OQkmryk%e~S(MCapx*M>Q<bxKaGk@YQx}CF2Spbj%zWEG
z-xI<wQ>1$;#doI{*3_2-BestsVBjMI9~*erz<vYolL-wBKa}|%70!y-^mtrup8HLn
z>|Kt2$W0v=h#!)P)6QQJ`^3O!Bp>%~;P?84)5>JbUm_J9%KF@(_KxOXkN(^=-q$NS
zY~Tnrn~4@Cjv6>-;D&*l2EH)xCB?+Rc>`Y=_}ZW^hm!`r;p>!81K)EOlcnSA^kOFr
z9DgrLR3{E(t*asax<_37e7QB(godj#f24LYaN58b13z=lMun#gOfzFjLbyzBG-EAl
zBvOYmf9q5_%#NL<tQ{2&^p`FexJW)R@F!Izbq=>cgd6zHz$L1S1*NlxWRX~>hD)sX
zZWFop|51voiT@d~^G$QlJz4yhfx1<)uNb(>{_D{{#!A<yi>?-2rzXsoEAHv=H`(TG
zap-O_bC>wZV(A|P|5A0EsAl3nYCkG-6L*^^W8yXwx0|@bM2;CNYlfIFXJW?StlO^@
z{P1A((R}$%6Xi{;86^F4J^DlK!jHyDtn*T_3MML=sBEGNr`jc!86sun%au6i5UF*f
za6(bmh>OCC#nN>oV4}K-$4t~WQNzSNCLT8Nh>5?3WZi4>zY)goGx5!}r)u(1rTDS9
zP|HNFCEagg_{tbd?KJQ}x~^lQZW?&-|37^w4ZOEg%ve$MsEL=SNsG@3gzK3&I9Vdl
zz(hk6O-(d2(a1z&6HUxe@ZVZh95Jz@pY*_Jv2(u6=KQ;b!?&VQ6B#C&rx9}Dw(QaQ
za-+#5l)=ZUC&+tGn24F^W1_E#mL>!f1ttnj#7!i^S0I^aWg^qWQzk?cStkGCRcUJz
zi}U4wtBOyW{LhUNd5MKRS5+z7L>m)rP57pCHB;c2b|&6jBoP=AkKYiBbNRWUQl5!?
z6LVS#V{3>jR>t<95ZarVeXU^1IFV|q$V4$QX`+jX5)-8+WD^}tkYpXVSL<NnxqR6e
zCqCuJI&oostYoIN?mL0N`>9x06WvVoG||h%8^?t1e7AXSk2L)8QDNwc7{7kWDe7$^
zxlSYo{)~$9-$FkV{Y{K9G1kNY69Y{QH8IS@AQR8;Zbum$Y+{O6l;_42BQ}I|ubSOs
zuQ=Sq2osT8(NQLL=F5Zsi#}~)B&qPUwEA12<1^yHe0j8qGx>7Obs~2<&ct|blN&cN
z!Nf!p)5)ABCYhLQVk+UYp`M|L-KZ{3G4btjfxyjtiXM&}%p}lZfi%;^EEC^dh-?@p
z{rO(BWTHrWG1tUA6AMi&GJ*E;d=m@ErOo1837bvIrqvhuuuR6)ITF?Nk~BgR<D~hT
zlr*83D6&v&K{cUq!6wd{&`lU7cAMB^!Zcx-c+tdq6SfJ*#BviWOt>am9~FEPfeFvV
zU?;|Aok3E{#M<m)l9EzPAZxO;(!?qg&zN|Y>@-nYo!;GA6TOE^YfS!A?!v8urDtwM
z*QK#X;5ic=rb%^oi!YD_CWz0RL0N3hTNHM_WMYGfS53TTVxx&oloS(N(i_}N21`jK
z{p5j(+)kyrtBX&sD(0$QF>#}EHX?<uo7hU8H1U>+Z6<zA#Jf%`d4m|3BW=4L9X+U&
z#I2r)ZzoMn?BaTe$wWMPD|%s!_%>N95pUOCt~5@n+bZ6qy}Z}NJ`=}Gd|~1p6Yo+O
zO?+-*zlrxud`JN?`RiR0Uw@xl)}tS!>qo{(BU%X`oA|`UrzSo#asF~aRF!J)6ieo2
zOdlrQ|5Wj-XP=^hILOyYeJXqtR|iFp43!R3T5m;3SvH$h%_gvXjrgW5eQDw=GKPuo
zO{N^Buer57;&JLC6DO|<KOYsorPy8zP3^puu@fdP9L%H;{lKRtelqbhMSGh_B>!mg
z%317=!C6$8z1z#DOq?cn4U&jM4xp4#<j--zCTdx@-@*lw&%`aNN{e?$@T-YGsSHj0
zM%^+v>vt2EO<ZDKCA;^)1bc?oDf}NzSdGLV<p1_^7b`~OTry)<xIq&)Ddr}wnfROZ
z;><flmh04b>q3AI!_RiC!`Upt8wY3oOa0I9{#EejNQqnfDkag5+-9Myg^Cs`Stw`W
zb_?Y#+-0G~ir7bIggY#3ty6fXg|8CA?N3Xr;}?Yw%4B>S74N1OH#(z&g$E`|^H)ff
zEmW}p3)L<Dwxd)vU01Vk^Qb_3VUL$mYsDHC?y*qQLi3>LUJG`6`Nj4!YnJUJ#Y(5M
z?z51)SFG0}TAR~aXlX&PP{%@D3ymx^w(y{Zhb+{y@R)@aMWqj0=yY4gqZWVCh`wU%
zz4kJN^ubmF_1kyt<@y#HSorOP(9MsHf3mot1*(h2E2KYniV+J<EJQ72SfDoc=13%2
zQwz;3%&;Vua!yfm3y)iP!a~eq0$<`rT3EcNoilZkMCJTxox+#PWYBIl_KM;b5*FH6
zXlwC5`5@E6*Ho|;vMj6`AUzpAiV}PD#9CWe<4IS?m;BLQ7A*`tB4nor)9Al^LTG0p
z$AUy8SU6|J$o9Xl2;Hzr&z8-z(B49Ug?tNdKPNux$6iRpS>HZSDzwmbg~Sr9EH1H7
zYT<bcFIebcLAEf>!gLEAi6{$$Eex^H*+Lf!eJ%7T%Ia#N8vzSFEtq}99Rm|BSH`+?
z*+Gm9(~DRgCH1z@C*AXiU(_ZmermkPPS*V_^tUj;!axgyEO0SvB8B8z4kHk(kf{8J
zS{P<wtc7tFhFch6VU&f@7ABrdJWU3O$46TDH6;<5y$4GlpM7eKg}{puXkbe{YKZDF
zVZ4P27A9Mm!na8D;;czziQ0w#E|O{tOf2zZZx?0d4ouv7Ja?*vhciT)QR<l)7G`pO
z3yy_Z7G_&mMnYSdV_~j^`4$#fm}lV|xmXw{UYRG|l_3&XXkn3s#TJ$jMayFY*Tr9-
z6pC;cTUu&`>ZoY6*fml}iYOMgIWg6OX2G~3(5UGIELax4A0RP8F)eJjVn@yk6e2dK
zTo7s$$gTyCn6$9k!j>VDZy{x2Iay+m6c9@_#3%n2Ixm-2kj?n$?}FY93!7RJ9q(1k
zB{tU($>heh;#v#qEPSR&&yX|eRbCWmYT0~_gy<`hmu?QudeOpq3x_QnvG9_G4HkA<
z*kxg(g-sS-v+%lw%@$s^@QQ_3EmXKD(9-2LE8IfVT@{)Z$O}D*+WQqRR(q<nmHV~u
zR=6ol+$O$Z;Y|zNny^M>+%%_uqSla5rR<=Ji;6u)NSv+utyXVa*lpoMj<m4H!d?sS
zTG&qwuuj~^JsuU_A=1W)Y~DLqk_zPaD6k3P0}Bfyh3{LTuhPFjUTej^S(-x<e{A6s
z3!hs!XyH@NnJG*zkPi?K<e8PB&FY?=@zOz|dU5G5WwWas6{zhGQOB0euJo^X)WR_f
zr!AbZ@P&mhEu5q_pjxB!SvX<gJ2C@FY~eUn*5It%CyR{&`N@?<%}0rB?zs{jG+H9?
zy@ekr=B1?>Q>8{(afT;9rAhF!g;QkI+0w8<(!3f8E@sPyIAfo)p&;WA3x8TTPvuW_
zWZ@E>hgQNxu8qu}h8Zi7aMlHZ?$+!o*}qef>e6L$*Md^&aB8jpSz+|IxTu)*Uly)d
zxJEg8JeR7Hfyq@1@4K;~{Uu_65!T<_$UCh%*Dt(j;U6j)2g4lvYvDg~f{hI}ZdoW}
zqlb;2Hg2;~)<$C+5gX-f+-~Du8#Qg*VdG94m2Fh9QQpQ~HY(VtXya~<xmNJmL~+=v
z5(d{>HK~$~b>*tPS0JA#kY6g0tCeI`wNZ_8))1@PfQ=@DvWO7+2?Ty9lObgZHEjN=
zX6ZdP|BXqs(c`)I*{EgXAsY|dxZg%?8xPp1V}q8C%uKl()~dKnGN-PM*QZMKOJj#J
zAGE=m(>`M3Q5y|xG_+CA#$z_>+o3I>d%U$(yn0q~(^=A-wc;NIG9~C(E1^)88rhgV
zJY#y(coQ2<ZM3n`)<!cMQ5%^yvTS77XwLa<w6yWKjTRg>L41O%>MxZqlv(I2t~f7j
zHKoMg1%i!)jaD||HaI^ELmOHUQjOwIAN5Hat!;=lvTf{d8!bOhe5g=<$_9m+!Ceo(
zG`lG4<?WdazS`Nyu~BNHgAK_>u8jg4g*I=TBHu=P8-IH-YG4MWXGTbjE7^RZVPU(X
z;v(YH4udI1G{tu4{j&4rUxX3-^Ku&<`N&2Wo3X$2+4X2AJG6s~u1C+bil3Yy?xsg)
zqnnNHb{G(4%#;{xQi_S*UN(B$SY%_djXpN|+89UN+URGazm1_bhS?ZkW1x+}Hip<Z
zvs>(%5GebDY<zl5m^nf0lo_g~3SNwwq`@|ExQ(Z6j3l!amyWPQlTqVYao;d$l#MYq
z#@ZNdV+2HcFZ7zIKx#QfG_~aU2{tC$m}6tEjY&2p+n8!&8Zloe_jRPVB85|II9CN?
za=IOQ`!j9KvN0nKbCMI|rP*ni?jPM+dbxb-;Y?wkjrlef*!U?Pr!&*OWt_gvLK}7e
zC?HJZyTry)8>?-sv9XK{X~VVQ*-&h#HY^*q4b6sb!?f{Xan`n(QsG+BAoH(~CeJVB
zO4{ajU_X;WYbHn;L$Vy3zu{8)Yd^`i5!guCSZ;&v=wqX$Tqm~uny?~GzLG+Dl^y!n
zD{btG3k`RObRM|iwUjmDjg#1TCXK*@BgHwH@pngs{Pw(!7i_#pR%sch8_zVwYiq^Z
zn&qyyL8Hv13dd};v5B(mprV7#HeR;zgN>6mw%B;Z#z!_jw(+Ws*KE9PV>czv##YLy
zjqNtJ+4$$8@FrEnjp!T1hL}-!O{g_qWRoyAyCaR{o&4PSknX!UvlpY7PyqMX*lXiG
z8}HlLXX70T#ZiHJ^<65Np;;{ZsgXuW1h~k1oLIS?;(Y_ex3Y^r;McQ@KTOwj5<Veo
z+4$1NS2jMgalpnQ8;8mN6U94{Qh!VO+{P!F#RrL>D$%xy_z@dNDVS`|mT0P|Ov+m^
z##~=e^^F%Pt%D2YuWfu|;{+FP<69f&vWi!)h#e=t70N-Oe8rLo(8#vfDSl5?b3!<<
zTiiBW`jKp7<4+rZ+4$MUDH|7TT(ohTg1|{^oTrQ|mClkg%Vg{*l*cTOF;((;p-c`r
z<rjThP5i~iuQo2*_#ZXHXIWhEZ#FKa#j{<#gi$&BcPgLh(i|_w_54AWONVI#t`%&0
zFnYztRc^sSSqIms8Auu%|Ju0DudgauW=l71+_2GZgv3I`GD)&@b^JfBxlq1kql^Qt
zhcU~ILV3msfkubvj&crecW|eJ@(%8B!ja`>NOaPgHOnP^?{cscVG@9-prdlP6RO!Q
z*9s~*sO&&=knNy~gQ^Z1I%wpengckf?cf0i)g9DuP}9MEPM8C^hmUSW?{yd&$MOeA
zb&KTgMvU99<=}o=t3eW<>fK6-Hv)AW)OGNXgNL1v<sNjxJkKvhS%ewiJ>uX|hyT?U
z^&Ql6!U%|~BG*+oArR)622N-k2~fFRSER-cA`V(Q5F9jd(9}V52ah{w=J3Z%k>Mc7
zjPGe!$c=NSjUDM#RU%_E#B1T;2?sF;Ge(E;GP5z)gg6V+eQ^f~2bm7C2o%Y!9FWQk
zLx!y^Hoc-J9kh1v+R7OH)u$W~W5tK>{8*Qy3&K6egf<S^I_T`6i-UF!avT&pC~+V;
z$aT=(L4kuj2l)<qtSY`ZOkyNRkC&zO38BzIk;7bctn|F_^$CG0m)rbgkd%K`D0Lt^
z=;)vWUo4U{W=pk?hu+1cBDoVu;Dw1DZm_F^ZVvi7=;xrjgECX49u9gsSTs3w;d(h?
zh}YXeA1Cx?nV8yqM9_U{>MV)P{tgB>80cV-1M1j%nl$~pP`*xgC}l!#u!G;fE~F1X
zgzWU4U=+#29gJ|$!o?FVo^~+O!BGdt9E@@>+QC`}>&TN1#`5b97CRV626Hge!7K+8
z987dD*})XDR#tqH16qx9gQWoC%a)|Ov8fKGIhgKX?r!nN=D9N*u#>JMlg|Y1om<Mh
z@oWckIDjOM7SeZZ@UJ+}!2%~Vm-C5})$z?mvN2LxNc_)~s3KS|aj=wJ>hRzg%gBBX
z3<oB0?m%@ybE!L_xzU`^q%Le0XSV-(Jid3JMDNRT=&8nR2fKEN)OFbtBm%VEo&(>(
zatAB8{Z>N21wdrZB<0}n7_qk@v0h2SttnpRV6_t}F8Uj1u1EJ5@z=7XHROLwBJhlZ
zXDO1L-@$VZo+pnvc-_GZ4qkMy(ZMDM>mC04L^SN0*ua%v5eP6eK3OCaxVc;0%&8o_
zLIqMJZ%J>V!;vue#lqazt7OPy0<+f7O_#PhjCb&+gSW_&gCwe>H=HoRNZ`W;g}rA>
z%vDktw-YC1iFNT|b2C`K?O?Zq4~bg`dmQX_u;0OZWU3|7J_qz6-=V}!m1g`RyqgAS
zn%R7x8o-WGBYi+D{aL{D5qZAs_rk{xJ|RjS9HI>N6+h(+4i1nj1}5$;lQDK;36syC
zJ7K!M{fZ)HDGw8|q+OW|8b>D25sx$A6;_vg;owVZITz(!eC6P42bUfG*Ghcj;9Dv^
z2S0NX2Pa5b2j4sVFZZSUqT-oDnLKD<D(MFYCy6Wa`~~6uMunUIiw<ZR8dh_(bjrbL
z2N$S?9Gr1**1<Uk=PB|V;yahes6#FeOdOwI%JlfSRYliFNmSIoIQY%MB?rG!`jR;;
zoJzVP+`J<EPJOa0hvm#)1%EjBlLK7b=Hf30R~+0V{vBK;?HqJHC){xG$5^p{<?O#5
zT&GG&#H$v|Z2l69vu0>U<@2wD{~X-n2JH~%B~`MCa7Ii=24$6XLlM5+#YYpQa&CxH
zmaonVcetQ`$WAXR-sR$M7mv7j)I|js6<ySHai5DyE-JgI?xKc^DlV$Jpwxd=C7bEx
zYA)c?*^^mFQ%b?z{O6ZS@jWi?<+n10nQ?)W(_v;Nq?U{OUDS2)po`ir9&nMJ5bC%n
zGe#UTR$^iDnLP{`AL7Urv4>sI3J}omFC@S?qMnP#Tr}nvUDS8O1YH9c4PAyyQg*T2
zh|9|oN|s6g4V6YLm+1O7anaO8GZ#^=r%Z-_;YsS2Ax}%suTEsRXzqd@;5IwP=Ho7o
z3{0?47Gf@1x>)F9kqf~^+(lOx-CQJGv~rQ>BHu-(i!83+MH?4Sx?yU%wTq|R(0)aR
zN{pLC7b8z4n7XWZTSi4&YU`q%i(XTtTo?0-vxvYP7d$<o?vh+=nN%`sMn)ot)p<s2
z@1np(sf!LS3SAUYoeJ?17b~wvjagE$3knO%_hZGjca+v$D9J85y6Eg;T(M02cj8k0
zSkGd4{S@i<gwVwW9fMdaq3Q^!I|;{Cxftc5Cl}+Qzl#Abdb{Z3qOXg79PH%mT%F(n
z4Lvl5S5ywv!xhI$16>SqF^q@2E(W_8;$o-^+H`VV#dE^Or8%spw2U)9|Lp4cvRxu0
z=n=F6B=k;^%cwB1WVDMhE~dMf;bJUT>tdpdNiN2_m>CuM`UE%3O40Ai8!ELLElqYY
z#l>$|3#O4AD`RbIh*NpWyh992E8%XxsC=vVOc%3=PZzHY$vRp#d$t?;oO4~walt0b
z=KsX&P2;u4i1S@6aKVHgl{xj>ltEdGT`b{?E?#x9)WtFvYhA1(1zjjETo;}T)rIE5
zcJWC(uDjr=jp4#{!xT+^HIWvF2XOb>F^lYK$6|KOAtCA)jv5qyVNjOuB5<*SgmXb|
zOu1O@f*Pjw+hVd<esqlVT?KKKi`6XO@@PKJ6zlgx!hGPGG+Xj4;~9Q;s`R3Z^)8-u
z@tlk2U3|Awe1WVO#0Zc&S<T{RD)y3#4K6mh*qnZ4BQe>k*gYX6FBdQ#WG>=mO7ZIW
z7B|dGQ04LjaQm{H*Ic~r;vE<7y4dPsn~NPTcDi`O#hVn~3gR0R#m}lI-g2>>9Ii*#
zjTh-5<P8fA?q{~Ni>kxL9?DTr^tMZ1U79*n>N{54OI{i)?&DI6v(^>Mgn53jpRC0(
zE)KZ#)-dN#=0`3*cJYCW58cqVKH!y7CGvon<r5-5Dt_vMJsSo}BsV)hcX80g{8sV9
z<lbY#O1FroSBF9tisk9j#tXucwDi%}{ldkU#A<*w0lsqaHRac*P~aQxf@t*cyocj1
zPPmXf<a+qd#rM>B9x8hH!No}zS6y7=s$Bf!;v%(>i=Vlv$t7o9oO5x?#p(37&X9%t
z7#BdPf1_BYt|M^X#f9|Kh4ZD+uC%&Y{8zHEi~qU!!^I^M*TrS(ijpkq&l!8f&1*y^
z052^IBlkaD@Rchr9`0C;z+dSm=e%-6pdtR78iU%>!)+dJxH$i<z*qhymR$Uk{vur?
z4*sdS_@9eg=}+_@oV9z8Sbnlp)<ZcDcYEMDJC9Ir_i(3&@?NN~?jVr%2I+j><)Ot8
zi7ZO^QbsNlr-%HaN**eEc$n{csN$ijhgu%)_fX9PJlsosmXucaP{RukV$O9*@c8n<
z?}WAw6yD=eTgI5-sp;W9FH9#MD3+Npd3J<U+rtAM>Uwz4!<6yT&&6^b57Wkqe;3O=
z9w@9@B0uC|&vAh<0?h&Q9*=sc=b@R0sE5Zq)c4THLt_sOxUZ;K!;vN#Qo}UNCSmqO
zJT&pp)B|0<p4&uv)FUzl*2n0Ccxdh++d~@<k8{f&T6z$;om<f-JjA>(%6M@?37gE0
z@-4z~526PGoFU<Xb*prpnXa?a^^+c2rvW~FDm@zkPQteiQYCt5=YfaOY&I^DBXgx3
z4-;A!6Ug(BPuRmm5A8h^5R)GIc_{Qy<e`g)t{#d#lz8aqp_7MF&J)emrb``&RWHVf
zm2t7mNk)YXz(nzr%VV8A{v1i^f*?kvM+WQWp_hl=9=dzz;h`tjIZkB$ji%&u^#l_X
zefZG}LP@K5^0w@}Az6g`dl=whgomd+4D>L_!(b0XJnR@RQa=;VOyCUlFwDbnFLZRX
zmP>aw&!x^8YekuuVl+L{!zhZ?Z5iV{jP@|b!&oo$+j(lqR3S56Qi;5HfLL#u#J9$K
zprxQHnB-wHhmmmP4G&X2Eby?9?BQX$huI$Hc%TP0!^14n*Oz7zS0(b6&ZVr`<bLO-
zDK*c-d~(s1=-Q=HD=#+A4_!p!XOV}+9+r{$JuG3dqT|Mg*&6~&iRV_r&kH5R3*9Zv
z12?7eyCpIU9}S!*F{@^Jusp2vu*!q&!SQ&gffNx=(Qt}*sOovxKdFSUPmwtqss+}|
zJ*@EXV}nA5W?c#j>9VrsrHIuY&y29v!#WR}8x_(VFc(c@`V7S<D4H;<bWG<c?ZUHM
z%(5KzyujUgxWmVtKGu79$-}o)XdX6r*yv%ehkYJ4aVigQdD!mZWe;0CZ1eC23EGkg
zf4u79H4<)RF-7v#XyNN#cp|`~0m57PG+NmAxbP;W;JonA>LPl!yfeTY)D90j$u?Z-
zvzb)OOgpgN<$>5EBkiU*?-utEx90@<z^vc#@UDkXJbX%QczDml2Od83@IIU5Sl%Y;
zC($b-aN9(Q5j~USA9-N&<8*y<r1+VK10KHi@D0_)Xz_CoUs0$hii{l&k`t<AA4=DU
zJse2`>^YhSj-~4_()E|=nzv<me4NM-%@VnLmoRZxH;_(H`Fr@y!zB;jQ~7&1?cogN
zu5sZ>Qp&?m9@dx07si#4y?>?{PAoZ<u6g%>DaUzdgtH#bdHBV{ubg3kbe>3~ZnVQ(
z#|5&nFA-pq?ohY!;+F#@=51VhL>?}CxaKk6i~sR+#aVxOxI&im@TV6Zi_n*@@Ic|U
zpokd0%4Jj+Tg)l_%q?Qzf1S$T!z~YGeB^!6{-%e2Jp4-vP7v!ii_?Sps6=M{ADJ_V
z-8Nmi%|}@uxBGZ*ZYeVf<@_+8z{76V$4g|+&;Ig0?(z}!k>TTR9~FGm_VIv^iasj&
zsNv%tAC-Mn@xf#o{Ll%h>Z2NGo>xkNEgB;}(y^FR(P~up!@L|bnfLnP+2VaZYWd)m
zjGF0sMU4c*N$RWnef+XK#^eLfbL;r1>!X2>hCUwj@sQ7CCLZO0So~ohi(QGs7~n9!
zQO^%UkNQ5w?iFbr9^*R8WYckKJ2Z<&Y&<k?<fDmCoq)zZnCXr9VRXa7tYe??QZpZy
zOXLcrGP9a*JR>&u@wkt6K5~4t@bQF?EFVw$i1}#gBkm*N<Ka^I$~Z|Ns#7tRS6!)<
zANuVpXG)m_;&Enl+nW-bt$h*>**@C%5dHAdOQKY!!r?J41M{{%R*WxU`EY<VX`gs>
zmL&Pe^-=7jgp>QoCymyMg?@Mquf30gbaTM0@QjtJfRBoN@ID5;1)eyU`sm<8_R-PD
zo6X|%W|?TBlIi55vmbg>)6FpX!$&M#_#sOo(4E-hQy)M1=;@=E58a31qqmPfKIZwD
z@1w7eek7ca2|oJ!7~o@skEeYM^fAcCP#?q6^AGkhgk+i|PCYKXeMR6Y6+buJ$C)mr
z%m0fq$fCjJ$>vBOqkN1Zz5LMk9!;!5lv72#DnP^ZR)1-nA12lL=>Eoqyh}OJ$0Q#!
zea!MHJD5UJ^03~=R3FoPFvmWfYv?cWnj#C2@aXLm;22)5neAhakGZ5;hRD#MU#Wc4
zkm&p{O6o^D=wqQzZw*U1=N@qp`HISOmPFr`XTA&-$5&4juZS)4p>oSJB*IBbiVyl-
zgn4gG^RacJv}Rox&X_(dlGw*iAGQz2$4fpo_;7uAKGyhH>%;fK+kh#uy&vWV1E0So
z7v9JCalW*|$4au<cLH5>Hdpa0KA2nMGMMG#J%M!;A_}aJ=P6>7OPY);xtd+{tPj@2
zGo^_}?FAn%asgvR%EfvgoBE0@gf|lQ@j6%QW3vy&5nFt`Li}^7E2Y%?nSZa0z1X$f
zt6UYy?MQ39(r$yo{Kg7R+C~{4ExqaEEgx_A;nfS~rdV(H(K;R9O}rIl;l;mQKHm26
zxsQVsF&}$;yibYqvDe2wAMf~h*ALH;sjJ^9DLt4d=EWzvK>NwnjS5-bO9PBdKlJgD
zk57Dj>f>Xg<$9Dyy{u^*>E4sRpAn6Im<=Gztm7tKYSpIrkdMRk=gAU2j`%q0;|m{O
zQb2}F#LO|`HZx8$%`=e)4`qGj<Lk6iq8KtUMeW2W>^Q%>I{uxH?|qyg&zH$ylLmrj
z=m#>}Na-ZmpjC)xmT9H(&pu93S_6~>I88pM$_nscfU`c%aW4Vx2youV1=7gJH6ItL
zzNl?{{Lja)<htP!8UB)w-?--E0<8}{DBcA4odTGa@jpl@AAk9{l9rV4GQc|VfLKiJ
zao@aBW_xa)7XGHf@$sLJTRv|1xas2`AODg}6D2xPw0)!$Z%1&0R;kRKXPE%E1t=S!
zT!5i*;bdkQme&4WpxE9!T=KVP(%HB(K=}YQ0^Aeet^jujs2ZSJfC>RB2B;LEau6bl
z+LeVjBB}&<sZ=IRe}MN_8KxmX^#CVFOUkU$TR|wB3|dJ(-nYCrz<mK~1$cX?R5QTq
zg~iR7QVYOv=79ip0@M!Ba)!hJ>XjwZ`c$mtNNInm{B^1PP=JT|D1Z>)kpPbdXcizE
zpk9E-0yGW~2~a-(!=DBL8gjuUS;nd&>fx!?#lPL6Mgds!Ds__}yllC)d~VZ#T25l@
z^V-Wf)RP$jgI2T%@I-*e`IVJfJ)9!mVdE8`lY_$BL9qZ!W=p?cDWLmzv0-66V8o5=
z0BwTMy0r@MWPsKIG6Q50MMJZAE=kj{wK(f3Cai<-juW%@;|^vrQTbb`d{UL#251)`
zKR|mT)|PSt#QH~b12DnOlhd*tWTv5bODZqG{=VYl%QAQZ!c<s6fWiPp+|J4{#&pMs
z1opozmImk$U_yY20ptK30}Ki<I6$WWodfjXoI!Z<-X%b{0Nn$04Z=(pufI~vYeWmV
zRL)lYOja+VB|yIb{kgljQXkT5fXIW7zCoDu=G~8%g*ZK*0Ri4ESB=ibz<@uQUCMWf
zgdt?A08a-P8DJR8s*>RWMg$l)x0L#P<N&F=6{Yqtmr0`nj1Dj+z}Nr`5BYWG#~23k
z3dFbo;~Au{E_wB2nAo90V6JIWfXM-t23QtgN`R>W<^-4<U>ezAd?>#&$wHPiJqTU&
z89{hz#_NI`<MCMm|0%9CI{;k~0`mgQ53ne};s6V{wO@pV0snqYqWWUgb2C!Nlm!oQ
zct~BVgS>>F+a=O&CIct|+yEYD4xn+)09F7!K$&KRM!M#AdDzVhuFPiJ0UYXt>Io_h
zrrddzr9}ss*53~h1XvzmMSv9f@S?zLoQ!R$;kn0^Bv5~871_*>HJu{yB0-b>2`Zem
z0oDb$k;2Uso(b?Q>6=2w6rKz4e1PkG6ySvbF9tXq;7EY=l*a(O1MK0h18fYiHNdt2
zn*wYO@M?h9Nd5WY3D?U3wgh2d%L@{PT}xjfUyTu&R^^4y_8nxVcU}*|<3C2nZ*a8%
zcCg7s@+(6nI?Uu8>h0~s%n5<OF0P?+_S-?|#a+7g6#q<vDCMQNy#e-7V+8m(z&m7{
z0Ph8OpG$IL{W{3|$pcn&K?j)`@(-vts*5~;_>iACm`Ne}W(*VTu}=bg8sPH)2Pxn|
zczx&q;b!rZb0l6yC6{s~Q?CezIRDZdvJg!kwfE5g#{!(8LJsgnfG-1_AP<wZ0(>3d
zn*iSi`2KRV%=}UgzG#Hk73dN1PU&%yctIErd>`P406zuzIS7pubA2aC3x1AtTv^OQ
z_u~|KK2>y@dUcZY!bp*sH?D#AzRpqk2e?Ej3vhu*4)AM$-?*e!!Y}MMV^^1lS*%nC
znQ8f!+luel*Wvz|(&YgEBPR#AN&&wr{1M>K0RR1vpaak_tN1T!$T_7f6t`;usQ-EB
z-*$2dXZt%nC)xgHfPbhSQ>d51zkHXPFa@M=i(Hz*ohg)0;kHzG+H!jeccenIST==n
zDZJi6W?6MnV5;P&Q4;U+F`0Q+3U{YaDTT@@eAYp(kV3^2<_YmlQIT;Xy(aqYj7_Sf
zu&qmJ)fD#KU&wfb`yx<1g&HZ;PT_$R?n&X^6l$e#e+o5IxGx26oOhu~xN*%2DKg8a
zO3dsLc&}M5Bh5M~)J@@`6dq3DkzJvG%Pl{c3Uj%<u|{k>k_!Lkg;yOo1DlVfP(Oty
zIUt1wDKtzWBZcNEbe~n)D21jeG)tjz3Xv3=q%d`~$O8x_vKWwZHVS4m1>TK0)j?+N
zdT?>p<0-UAA)Z1a6;kR6Vkw1|sqmPICR<2_e|d4w;0#`muX&|_@bwOIs}!<Qs3ObE
zqh_XXew4@y#!PbN3-PB?5L3ucp?wP3DYQvJN+CBD=J4C5&@L5TEgOGKxYLtz_?2q{
zzrvcaZ61l$Dqijxkq652cEk%(C`_R^g%WO|a`wOU|M_~oM9+01{ixCuhzBN8+_ORl
zPTn%!lvj*?5jv&NnU7M~l0ughx^kx}EKZ>tk(0vHDU3{^M+!Yt=$Ar&GRDf{UMciW
zp-(EjUd~kQ_d>icv9}_WGKwT`V-84RV2W&yVPrE|9+bjhHseCZS%FOwWk?FFKT##I
ze&M6ba)xuNvsp~<j7Z~<m)l3BFgk_FDNIRWObTODm`E(ia_JIjTq?XRFg_I?H4a)S
z5uT9ZnWjYRFp1bR!ppHAX2z$cFfE1IDa=V>dI~dA;C<tn1eQs>h(g`P6Q5bB@FM-5
zYT;qWT=H!S^HW$rO6}=zBAub-(e^?z=P}_AJ<8CM*R+}*6PBc~H1+?O`VJ^5imvU2
zB?-dvAUO$=r)Fn~Ls(!zSYX*DG&$#-vjP$n1wp_7xINv|Jsn3-k)TKh1$m7G5pxz3
zQG$pB;d{C`{O3QX&ONtp-%2-i^{wg|#PXr#<Jo+y%*XnCY{<u|d_0$rwfT5HAFF9*
zR!Oc3*5u<nvW9i*!NbP<XyS!@FxtOJ<K)1YS6?3ZCXd0d%SY#HUHd5t6~xV;m-C_K
zgIm?jp3cta-0w!1E#cuS?#k);i08x0ho29FJdE@CaPx!jvl5K|6s*>i$taqiosWBa
zWXEDnKYueg?Z!vOnW<UHe7us6SM%|!mN#ur)<!Dp@2;CT{<TfHY-6zE(W%$+gEtWt
zu5I4P$CiA2$&s^h#({hs$;bclv7JtxkG=WWmyfsdu_GTm`o23KZ|7rYK6cTI7YD~w
zxTV4q(eKa7I<h>Q)7g_BoQ-E++$!2nAI#|VPCnkv#{mWhdi46Hd{^TBEMNByF%%@S
zxKDaGKS=)Y4A_HrBJVM1bX8U?$$mc{ALQd?K0eFGhxzy@AII`>oKc9D+^YE}`8X;O
zzW6XlRC+_x-`8{}!Vg1EP-}-ve@Y`~7Ex`=2Q+iVJeKh3+NP)IJ}a`h*7`gjU*rcb
z#VmY}_?l*!k3Z<P`S>;;-{s>M&LSV*=i>*mQ3x+(|HzPKX0eOeibCOYTY1a$?4PBU
zdAMuKwCrEWHahcn>ZnxYH`<A!%$e1_c9mQb&*bB5J}&3u3frHVeJ&pt7+7dIjEAwN
zhyLx#oog!MF9zh5*?9%qF_~~FKX}M;WpXti3=T}=U(3g9it;zd_DuGO@1p<Y<9a^+
zWh6P6b%SAz$1Kl9i4);->NbOaKIW*HtKtrWKZCH!U&us?iUKMgR8dkzK^3VgimG_(
zYS%(43ac>w%c8RsQJG9`$`1(__Ugf4&c|Fa6%VK=uA)iXZY5N_t0?^V;z;dW&V{MV
zQYz9^lvPnq4VLkxRXn7E?~hP<HYuB>j7pbjN+d|NJ)1rJne6f^&NXXZK?Og;VlJhk
zib^Vf3OoDcl&s1s_#p-}<UCtaO+|GT-Bff}@vw>-Dw?WjrlO{bM^p$EVKvB%)lyMU
zMST^uRn+06Qrgv3gH+EqibDL=rp=ix;T{|p3=P<VnH5s8YekS|Oji+6(NIMrHAqo1
zH<h7+`2l8@sKlPDvKw>CDlREX{lYzVP0cFaOJP${70p$2QqfsO3l%L@v{IQ91`k$o
zmCMgJn9buvxLMO$MH?0RjBEx*!nP{1<YhYv+e=9LqY~+$qT_u^wnTW~;YvzI7Zo`w
zx~lx!?jC&Wr^V)~!Ap7`Rn{s>goQ%rp`xdXQ7T5OP*n6%F-XN=6}?sTQNe=;167`H
z4}t(6xc$}O>%x92YV}fxFbodhq<Sg&wR3qymfplY-y!Tp#c=jgu-#DVcTC2KyIFi{
zk5Gd>xRDYvvT>Qs%P}g(s+g+sfEmWA7_V}F6O*Wm20`AKS&j*6u&>m$PmjqQ;jvtv
zC7VLEzSwl>)C{KYlwJzYd`?#}Q^hP5Gl-1IW?}mUV@;j>?AdDY32>vu**u&-PsL*@
zK2Y(YipN#Vr`@VBRV+}kkd~(61r<-ISVWzwSgvBRiX}9170XocF}hR@vT8gMvu8uo
zCshz~Kl*8oJeEDNmqJPM%p`}pLdCNbmx|{&a&{5QO_`p>x9Of|qyNkfmh`Jt@KL)~
z#nzM2H7d5v$|k~0)RJDxiz;4Hp{j_HN5y&-FRQ`Qbc2fgUdm_lv$=4(^Ix#g%~yj@
z@ZK%ejwuC=N>>q=g5?{*BkO|cb4f|*F`t=GVX4@{?o`++92Kvq*r?*itf;HPQ{hwE
z3$l5}?B1uiN&3;9NU+HNHo8g0t133D!8w7~RK77~z0pf~o!Xz3&3qU4T)0YqLj^zZ
z;ZwWe!K`g6wyW4nUr_NTM@T<av6J$=9zD`aS<DZCRq$8~^}dS|Zr5!$$1^{hg|9r^
zm)}EQzTTD#$o(n~sCbXgsNx_cpyH5<!;<-33F%Fzu0^<x<!jfy7I-F#=j;B*!El5r
z8GJ2zUk&zah<v2tV+u#*FTCLs6-QP4%sHw!rsBAYZ&ZA%;)IG%ReY}E3&w}hnI~18
zqR`f5|FSy!GbvaiOh=INCC#;q@)bLxd8`UP-J+oAwpFHQ^}X8lI~Ctkwkm!i!<xts
zG}@`ze4XU`8c#wN>Wro{yU%{A2fwsBt>RaP2o;xA{HEe}Mm81aRZQ-h`-h4%6qJfT
zRnU=1;W7A$bGj2@De-bsez1H&#b0W$|8<eF8kNm#)!)5>51N=gxT4~!ihopGXWU@q
zXLO|^?nXM5ElT^ORWR6Y_%uq3`j-yQP;)ZM%*jm-_&`q<uFwBt@K;eLhKFLf%itfw
z12Ghjp+F1;V<;L!u^3WgC=?4mr7s)<B_AY?)&-w`7KsIEXBNKxA6nLfU&?Sr$|O&T
z7#@rvEr!xDl#B%j%o>i*E)@&T(!?U2_`=K0DZWP|7Pt(LH}fFYjq2^ok|BnNW2g~B
z`4}q1P&I~XF+5$gQ^gn`f~d@9=Vb94AMPUz5xHEPSBV8i#g$(5Sg=D)E%5tyPKqBy
z)QsVg80y7PKZaVY*afv?s1pMnlWV!UF>o0W*Yda<wc<b)zdmTdxx^r1L7t5%9cC5k
zbq}I+3!alNQZy1nMhs6FSY)7K42@z~qGPGfui?-n#<V_KYG@imvlzS>{1~D!G>>6W
z41;+$hL$l*z9ag@&?<(^7?c?1-Vv>1XcNPuF?5iZZDYt{l{<o^L7S9zF|?0?2sv4{
zw@K+3Lv{>#F?5TeQw*JBSanC_#!$9RN|zXNV(2Py5?M$j+%FL}nAIkQki_mW^oXIS
z<RpbW58a9o=@moo`@Q#xp|8Z*Z<97D{Uts?!h!ec$J(R}iD4+U6T>qx42xknXA$Gy
zAYw!eBV(AvDaSA>hS4#Mk6}U#V`3O9XUe&-<=i$Y<K!jhcyF2$V>l*f8kG!FVwf7k
zOxfeK7^c%6+6J?@H<1~VPW;}~X2mf3K4lKAuD8Nlk4efxDlUe{@86vt!vcx3mwT-(
zqBi-n|1m7S&%-vKlw*4;hM%PT%eGBfMz%I7ETk-tVMPot(~4qvHinfktdsn!Vt9@Q
zAH(yqskhpstd{gO@{+Um1~n&qA%+*F`YOnoQVTE9@_Q@P;CjhVo((auI*}50g(|BX
zF~nlfr0%FnU2?`HynIK{z|0sDlGBpViNU6Qwn^c1*o7Md*($b8Axy^bN(|>>I3L5t
z7&gW5c?@5~@M;XN#qcJ(j^TCL$W{qA$M8lBTO@u@{%nwA*mj??T~3D`?U0m%F}xGQ
z+cE5nVOI>hW7r$RzWesPho&y4#_3mWld?aC1B^eCLTjX9u#0zNI26OjF?<rkVR`qx
z7>>}h+N4k*|GVFBQ2ma0KZXyai%|$4#_*BE$;nHa)=|lPiq;jw@fg@X2Y*7!jSQd0
za59F^?pI-hByN;r_)-$Tm+&h_2HDOxau(l8oU{0j&T?1Wv!x$m_>l%9Z~YR(X(^MR
z?@Q*_7=DZ4j~M=x3`1lWztgHELZdn(#lpFtm184?<Gc{VMTRd8B{e2vaVds74AfL*
z3|C^f5yQ<GuEy{;BisEU(PpkmoPr{LUE*x^Uy0lsDy4nvKK*tK|NVcrQnVlnrD`ao
zp@0_XrJ$sc$oUc$)=*SKF-a_<1x7`;eLzETEr>`Zw7`qmby6~upLSA8Lz;$~8XnP5
zS_8Bo09KQ*jD`vtDzYODWi^zO)p@tPL?|VygRqi@${MOlBHRD8O-dCF_hd+A-HRKn
zRb9iwve_CEl0qA+rJ=S4p&_iHj)uA#8py%(Zapn<@cNRO6XCEKWH{iE7FZewpROUI
zp|OT08ZtP@TaiXu5X^}*l=HnhB9)i)vZhiL%~(<6_Fo{DdzRc>vQcytPAd(W8t!UH
z(a~B%8x3PLjMdOqLzadC8U|`;r=h)u?izY%cvM3N4Y?Y|b?VWP#P>>e(J=KwX10c}
zG9sNM>?|Q~k-}R!lA)`F&%V=&lspaHG|X-o$vD?@_$vWVPYr!E^wpq9Hd1<N=*_{r
z*s1*Uod|opS90FQ(*5M!{t}W-HkLsehG`fsiG!&E+51olkI(N$h7oM}omL|?jFLp+
z?0V&UB}Z#$)>|Rot+%rK#nf>cObrQ**(Cm^2PSHmq~RG2%PC$BQ#35l_yInqYM7>B
zo`%OXOxG|&!yFB3GWbKa7~5N!Mfr4zi1IByO}3aVab6xD-JE~>I9Fcsza|e?$hEpf
z9@jv~GG8M5o{K)AVemJlmTGuX!y*lfHK^&COEg@o)OF>GDDfwh$bzESQLe>P8kT8z
zTEp&S3yz#!^j)4oe1(Q*HRQ9RhLzN^h8HyMmf|@LOL{A7G_2LITEo(wkp_EnPM6Pp
zUc-n{omq-j%x%>;^7y=rmoyw`nNhl3)&>phG<=X7SubIJZ-w~F_v^9+b{eByX)tI8
zPiJTvbPeC;MOfafm|JprA+|%F;y-t?G}s#6XFD1k4X%c58n$cjH24}eX?RuRAFAdh
zHM}B4)b>CQF9*%d*ho7WoXLT`rr~uBTiC_ij8WYq-74m8*6@a`_5L#%WN!RTsjc$v
zvZpi1^QMNkG#u3Mj)ol?-qx^J<9`KWr-oe=njB~EnyGWU_TUKlFPW6U9vaE=4F2IJ
z)x?q4b+Y!;9hPStkdSQeYB)r7FV8rlp;FaOhiRW*q_FOL8aBL>Lxu_~qyN+JgZvX!
z!Vfikq~V-~^BO+Z@QH@g8natC%7~%i3k_dtIIiJ@hEFw|)KJRF%Ba%y>9uLc^GkoG
z;gp8YDed%N`h*lX4d5Q~m4>f1e5c`i4c|!Zd`sKz9^oI4l6huEP~`_X$6pv*oGfbO
zM@E(V+WDFG)-r>{&D3dc<u?t#YiK?JXBi3G1<ZeF{8e6@(ZF`9bd6N+pT&PB{jImc
zyR33S!$l4MXt>V!PZemms^M=b4GMwfvW6?N?yu6QJ}j4e;_KkwMXxcEBwMgeO8Z|8
zx8-<lXt*hrev2V!Ppf*XqU7vyti^wlc!v>K{$niZ1#}eD(OgFh9jQ7B>8P)xfsVpD
zis-1W<6#{|brjQ4M#n=s9?)^8w^BmKgE}%VMvCjG(nlG;BZYWL9cemB>nNq;i7FW^
zH7`cMid8cHxDaXHM<Mc3m5j1F%IO$XI9yprdC6HpM@5OS;?!zE#Y#Hn59`S4MgEFZ
zk<4trs_e0vgk7s-)R1(xQ&S@U?MU5qy2v9Eucf25MCwRbS3+{ulL$FOI(qd{n#xO|
zBYdBpt|Ou&Lq|g$jkxTWbPgk2s5GmyG|}<<iB|V;BF%I}CC}Qb86>h|OFj6T`&JyJ
zj)66!#9QlVqhpee$vWEV$kNeUM;{&SbhOveRY$IlM|E`2(V1Fk9PKDu=p=Dg&(<-c
zkFv6l!ds!bQNk|rR*nw4kFu+eLSmkdZaTW_ApZ7<%pN*=a)LViLK&ne?7B`+mzTWD
z!ppuo`so<1V}y?WItJ(%#);_otdBBK$6y^pbo??RlN3S{-)I~iD(~Loxp&E1BXx|@
zF-FH&_R=_7pni1peT0{_8b`<Jn4n{#&Mjb^|F8SX;_2u6C}bN~FJOLkWabnqUB}#7
z(FHoD>6k8O@tA}&bj;E*TL){+l+&Rc=8##(JRNMDEwCcX2R*uWuMsWLS0U%))Y0nh
z^C{0!nKx@h7s`sHJfUNe&VAL)#gc(jApWF|r*ym$$Hq98>3Euk9Y@JHp3$*f$2&US
z)v-dyvpOsaoFmb(N=Lp9RmXEWR_nn(#eZ-nv_{8T9WOjtXoHUDiRgGy$4hjmv!T&$
z>R%Nie(3<N)3I|f*3&k&<nWTI#pl{ZUZ%jk)PhGMxvw^l=}_84SPUJS4qZo_qdgNM
zbKQ0stV`t5nUJYt4!@JugG;vW=x}vx(XmyB$NB2mq~lc`Ngb8Lk(zxKj*y(MNdApF
z@_I*3o(cU_J80@P9j|jb6(XA@e1o;*P)TXiSJ|dxyN*3N_Ud?32iw`HW0#J%c=>tr
z9h9eRvt7q-jkoq>7rS+EJc}zu*vO>~DWvR^GrIU}#zA>&zYeok$pf<1jS7*SbJ902
zOFN|Fu#TT;Y&zc4aYV<LI=<5JKOOJu_*};q>{`c%I*#i&q2nVRAL}@(<Cu<5WV6G2
zl^nY&=<en+K~eu#FZ15zr<~o%@Mk(WQ{Fwv2!<>o^*W@UVs~eQF>|yO_$Sd;C)!26
z*71#wA9ehs<69kl`zj>1s1W^5M|#~%mhUC<gM`!jDlha^E~Euwp}0=#_*KVM9e>Ly
z|EA-tj&oF>jz4JpYtsJYP*<l+tq?t<W5bh$xTinnr|@|l7bp#mP>1n#1CHmSl<j$`
zh09V<6e(@s3f-YcDlO{KUn19Z{KHVJ<F1bDI{wvhQ^&1)Qk4e7j_w&A)pT3Z|6^oU
z10lo)2WFEJM}ats#!)Pef^nqAQ8>;Y5fW5fp?F{e_o_GS8m6p@#DgkN6%r3fgo7y&
zNAY-I-W#Q0d6z#LSt^dSI0nTrIF8bBAdU`kbc~}+91q1&FOK?gl#QcY9B)>L)QAU4
zDIZ6rI4Z|cA&!c&arPUG;cTc%9983}E{WCR7}z<&Ud+;|g9bHc#YTnFAC9A^+nU6h
zaXb=7tvKR+6_&aZsU1fhiF{Zwa*xhV8^jTcqgfnL*}I4%BaVh~gyTq;9Yx~&w5=%H
z{4&2|y<U+<lGr4UrV?q)DR0f0_f+J-s+1*zv2j;nj<b0jE#hb!M^+py<7gE}>p0rP
zktwUNslBCB`FHa~?#=7}!FF-9kK<7(M$Ve@Y*isLxqOtI*>QA=qjwyA;^-VlmpHn`
z(LIiwIJ(9`o21p{%J$h>o<!&Z9Ly3gmDbpUL2P?YFUm)%Qi=2TZ`0W9?!L-reH9{o
zWh4D0r16u|U*ZEKWcvdpa=x!JB#xnRJk5|8$FMkt$1yvOIq@Lwjfi7>924Rg8ONwN
zUM(9LEk`m|!ZEa{enDR><0Pd<KV@PZlj4{f$Fw+__ftN2D0i~FMV={f(7=dHmy{V2
zaxSFIjANG67jc%J{gk=!AWqJYV?iAA;&_Y}^?7sNdR*4JXSxgHcp{F;{gh>Ke&yO?
zQ5;L-crqTuy2WuUk(|Zz8k?^MZ9WwTW6=}q0x8ieUu&GV@OswrI99}w&nj^|D|=iW
z$C@}+(kwfqtm3FbVV374!e%MAwQ)Qj#|u*I6w!-uycEZ}IM&PVmi1Gt`!d<nPuUR1
z%aVTYH>l}KF)3I#4lfQZ4xI)ZhY?324okL46`QgO2g#w@aqw3encIJDW&oWyu8+;;
zaaj(AChF5ND@2o$pUgi!o3@E+isM)u$K!ZS+S}WlcpMLoiM$@iW(q2fE%K6-H{;kU
z@ojNzkE3S!$g15f2wSQtZ^_FYG<Y@T9%WY?yXoM^Qr?dT$HVr-@t#!K%);q=<JcDm
zk^K@LkdT)LCGt)j@7|{zlE`5?MWJ*u9EoGdFP&Ka7Y|+^PSIfE_>d8%aQLG*KH*dQ
zOz2}qhVmJk4yKZLR8k6z%p(0n9G^1U7$|4pB<(+rzvH+T$Ei3zkK@lc&d~2lrhXB}
z*BqW7Vf8O%%U?<Q`F_ebaeT|U$h)WG_%)92CH{kiKT2pE$^A(pKTG%vTWg+GsJ~K8
zZS`9mb~NkvIEYs~lKTgn?XR$~ud}qDHXSd??#{)rLo{JIAIAlWU%XHGOCmSVgf2_Y
zD-vFn@VlMCfd8So8LtdHXyD&CZp2Z<Kv4rX<G2;a-8fPV+>T@PH)8r8@n0N-C$rND
z@5HfqNCpuGe8K_-3L0=fj-(nWWI*{S^8HHzy|BbdKcDQ#?j9?dQOpR0Kk?y=2Mj#i
zJzU&C#r_JBl9HZgAT~9ll*IEZM|O9Nlr{hZWeha#uRLU+dw+!tpX_KgzQ01eynzY^
zgn=;IF;K~XwIj2(fy%Ol+AVV*Hc&<4?6j(ZYD~*_4c6h+4NQM7g~+0oxiy%sZ<$-u
zz#|40_g9G5GVqc_>KLeNpq_yi>mv;$BvRi%zl+_@-|9v@WZ>$ZW<=5rL<~G`V7`G2
z_F^E@Kx+eyICAz?KC-J$dJ_X*{Foax(A+>%151C*Wobq^cv*8l&T1hkM}E$2WuPUy
z_%V0t&VWuH!Zrrl8W?6^xPdGK?F@e455+)x1CJW$Vj#yr2Ll}qbT+WNzw*CgqS9N@
zYy+JP{Pbqz^|vESUP&R6@>cYRVq)-sa90Dl2FP~rl1QF`ZU$yW1o7?$7M>0DFtDLv
za9Q#J(aS(zj><r91AVCO+o48pMfWyLXFOpG{S5@|7#LvS*E!*V28OE9K@$JFuOMZJ
zWEd*p#`2=+`4B6PptYP0O)@Z2BBLZ6E#Vjmd3UTt#z{C{!U+Z@N@P-vhGbxwEH9@>
zI90-F5>7WT!@x|5&ysMif!Pw7BjGoV8{cbTp1gd_K%zt=QWnr1Dq$fV|5C}9I)^`6
zANincWZQujiw!KHiJH(%EH&_?fwAQyFPM1Bz%m03OoYr}Mo-fh40r~fF|gdg3Iorw
zW!c3_1FI-i11}qR&cJE|&l`9_-dbbe;|rm+67P^EzU;5OTSmM{Q#8=4l29&&sF8Ja
zheuM^8z@^>@N(rZZTij)=NnKB=mz36^%>!q0gYx~MpSPt$`liI<KbP3__eh#444Kk
z^j9+e4(XKzk@nX@mhA4MJ0aV^=L1SR2F_m(6?;hd29gHO8aQX*6$2YNHUpm+*ks^U
z8km7S23|Apx`Ay5wj0<?J8U7g7}!dqS}NW!Q2TPI-~fd)>aZg^Q4v4X6x+{)-ZZe&
zz%H6)Gx3&z9R?2Pink@~cR56Sk{!OgEkX++ve&>q-ZJo>f&B&!7<k9PyX@{v=%9hg
zg~Wocg0M%;pm8F#r-?&kracrAM>q@v9~k)1K-EIQ-S-V#o-OuH>r8yYoe&N9BLnMt
z3l>t28aQU)8w1}OIBwtsr9p3{xeg6~YT#CD@tJ{t#*32%YEBogoeiCmM5=(ddbJc^
z8vK5QJF20tsH~O&r9-yp-at^8-x>Ixj$q(7wr1c*`lErL*;+9{{eJg%=#BqEzZlr^
zQ>z*+#c2a)ZiRMT3h9M{N&Rl%4+DQn19<dYXi4up!k_2noM9saM6a>o=}p9W>eN7S
z6D3SsH1HQq*T4+}mpETWCj);QU>E!5=UkyY=jWLH!&L?-mn({Ebmz;V>rxm07+4b(
zRLar?B5jbk$=Ml5F;T$8Z7TX~=syE@45Td)1q+MZR^qOdfAtAr>VlUAP5gH?RMbQ<
z6RC6o6NOE@do47wtN1S>Mwbvp<YmhSf|mS3GtvA;=m8U}9ue7##e*hFny6x;s)<r2
z7S<CFnJ8-_%|vMvF!5_)!BR#dKaUrS>I9eNOq4fqvTa6X6BSHUG*O9l&xRh#&ik`-
zFv1z*h4QedkS55pb*ZRkqPmGkOw=;*u!$Nb{_Y~GUJZReR@5|6vw6_wAH4#fs%@f<
zi7O#dkK;)dLwg9WD(jjc!n?iNi25c7DHCBLY@&sUmL?7~j-;E2NQ8JSr$xqnyrGFk
zWE-H6-q=JFNpE`pZZi{6i8q&!70K4>{@qC?GEKBL(Z)nu6MaqeGm&MYorx|ca!j;0
z@u-PTCgxO+bST-pgNe??+hv>RXrj*m#eO@N@O*<NJvVgkEP0O9PGkFBP2_SGCMFF~
z@=SCy(Zj@sN3*({c=_WN*FSFY!SUv&8%GN5&FyJIF)=XFZSBz(*<MHXQthJ_z1g@4
zcDH$FE^qZWF~G!N6GO-;>0}$kk>~ZCwKtU&+vK(wYGN2=c(lb>6T?l+N^~1(Vw8yy
z5`V8)X;Ma;sDHBg7!yxCnng~IhwUu=xWzaV<4sI3!HJYgbem}6OEY7coY%<{nUhUS
zF)`J|G%2*TCZ?O1VPctyr%lXc`!o!;X<{}dU}8Sq<k9F{*$dmz2PpF-&Q2eb$m6mj
zUa~CU^uK9NHV$u*i6spCa=?ov<anMmK|uu*JlcZDQ*vxX$p4Iqm9i<~%T25>@m!+Y
zvnJjepm3V3yNVPOtEFDn(AW~)jt)>bWp+o-Pr7G5PerfIqrP4=@sf#kX7IRKFCh_8
zsptlYzije6VQ{NXjZ{@47nR7qafNgfaT9MQ@Kyqb3DZPI0u2*Ln6T(gCVn$vn{Z6*
zr|3+$COq<UgeH6wNfWP{c+EuY&74<ET=oiWq9iLuHkz2XCXcTJe3SiRb>8bHHk)|E
z#1<2O?aLg#E$8<E3SS?#nz(i)i)FhRq&~LETBMW0iaSia&DMTPBW0(FU1soBRjX6C
z-E5>nq`*LBuZcYpFJ3sxTl*M`1}ZG<;-HClOdK<DoKeNZArl{%_|U{*6Yo($-=>iN
zh-~nGCf;Xc7^v`F=7mJYhHW{7jRq<onfO>T9F_1B6I}-?V+RJquC_Dh35lFA@u`V#
zOngh>e^u(FiO)@ZVd66r>jx@Z1}dlMfD=mH%j&#8P$BZAiJu25UzzyY1UtGtP$B$I
zcJYIWA5DB!De^syd23FEK|x<XnfOKCCH}KSUT&ad4pL4_yx$<@cN2dwmL^anfj>>0
zp-4^qW8$odb5bLhX<#NUNdCWQ*b-SK8=o%WrF*v;MA*d@iTi_;s}lK}N|!v>P5f(O
zWW`9q1a5GSgOvYF+%a*JT}Xyod<vL&aInI{cJ7);NucB4;N85Qq>xx3fqRo8o|*`>
zSttSOj%-B}D3(CY1RhD?0TL4^lfXj>l#pzt5=cwn!30Xm%W=I*9$FP>aLB!uD@IBu
zfCL6bBC+i`Y_Mzs<r1ipKvj;mLZm$Vl?W^HlBHq-l_aIIgru;wYO--6)f1pGaO4l)
zr__+h-ty5}3Diy?lz>Q}P6Bl$y?z4qBtqS>I?LSO(w;9IZ6Jx)cIAW<NKfFU!Ac~7
z#|A4qiv;PHqIH9uz+Vj_jS^^_z_bLWC(tB;rU@ts^h%&v0?`E8C-7(j%@b&mK&u2Y
zrNpR+mI*xmRVkYKYl9U|oSn8#piKhIG`3BkokSXnNY;JiQ2hv*J0$S_V5MUM*@+;_
z<b@-h5?~8m5;*!+&d-CD&J_EbIczN_5qMeG1acF|lX%ZWV6h~2OQ5@?5bq%ow{&Xp
zNQ8HLC(tK>p$QC2pl<^G5*VDo5c2HH>@Ta+^#&yPu)uGBcA`5lgET0C+xIPm6t>A*
z!xI>hz+|>FL>Zaj?|orh0^_OHA<F0k!b6lX32^Xp(<4i_<cv)OUPEMp>}V1twkB_)
z#My855QU<q?xsk#sS=W(d7&8z%uHZ?0vi&1++cPB%My4xfjJ4xO<-XHPb4spDogOc
zp8`u>JVbdsfdvV?JwzcsKLJxBymfSlvPe$wsRXXC&Rd+o5~=;$LzJa7zo81tlM=aS
zA?*E`1ePc8d{8S8^@;?8KUOF3Y=VD<fK{~2!qLDy1}a3<ih+37B+wx}(qpKymNqj~
zVIlEF*)LmoNwzbI9Sv31B|w1?c{zc6$|?b$<4GXKF*Cd;pe3L)<|lAAJEN@JDTpT!
zAF9+#j}Y!0svH}tScxEs>dJ}O37i|MIMU0C3{!|#9~MMfPA8ebmISsY@Ja$36WEl%
zt5oqYWwWgKnuM=&rZP&Czuhq94aq>9Y_o<bD~Bm{x94o5o7BzRPEYwNh?zSmXS#!h
zW)^lPuq%O!oL~aG6WEi$Hwk>3z}^J*C2%N#!*t0lJ@>P(ijf1<;BP^a?O+1$B;atI
z^va5ncN6H*JZ<+d<-G)sB=AK7BkKm^|6c+hCh&2g=*eNq`*O4&u-|axX5Gj~q$lu+
zB$D%Uy2*X~m_&{zaN<7Y(*#aR{4)tp-KSp|7KFrN!<8>-dkNGU9*ie*xbiiHzc-Vq
z<L?sqo*t3F?+N_CS`{NdCh(I)D2JbAJHN=wUc-Z?$Z%R-{+htgn{(*ee@GiROC3q(
zKNFZRTscFNZV+ktTiUeMDd(y5IuXVVy7>hP_N~CjFC}m}fyx%DSh$kFRmK(zB`o}%
zz_kSKByd-@@DEKfft$3b;mY*{{*_&@x;|WaTaM=zT{waNB>lJH%9M$vc=y<FCB;Gk
z3xzBcwouRtj69WaUuMb(g^zghJR6SCS&CRFYN40~ilR^9D9ZyDDvk)G#6q42EtIrS
z&O&*~Q_4aa3lCXHlb5VjS|X6}2QEDJWtO$T;1IO1FO$ATSb=R?s3Zr#-h)uHFOw^l
z=KC|NTBv5BfrXHT>J}ch@Q8(47HU{v?=>y3%_buh;tV5fwzh>j7J`s6Lg8wst`)3#
z>d6TbsV}==<K0Ing45rc!@e3>SUExoTS&JMv5;XQF+yo5AsKd#PzXtBOoqCdO)MNA
zp?q8%XGbVe3(YOeurSj?3kxkR46rcJLMscI7CKw#VxhH#HWoTsc=PR?widE1w6}uC
zD+`}Q?Id1!q_Sdl%A*!Ka9$$=E6N<H^cxujkZdam?42a!DkaB4S1X99y)5Kf$g|MX
z!m6D)-7IvcKt?Jw+SPC5&|!OUR3jCZ`0ik<QL%!(CkBw-7W!ClM=E_S^tW($q{1-L
zPqs;f>R{u8EDW|Vk(`C2Lo5unFpAYJ46`s?w!;Qbk5ooj7-=!n65#i2<`=X37z<-9
z)EuQuurSU7A3fu(;JHSmCl?Z<6ymK$DSQe{lI>5nFhwF$EliV0?@`J<OPek)XO2>4
zS(t5MjfJ&R4s$FlweTdZ$ih4ek6Cz}TDI_nh51(SkX>N$--J_$+^AKQ!sLQv<tSy5
z6+G9d%EeUoD1~K-M9A=zg=H32P=FSmw(txMtW!5WplK%*{&HzNZ?_E`mSrUcZs9qp
zIA+)R6reO#%S-zExZ^FJ=O8V37JLgYT6oDqKJQvsCwVqlc-g{ws$i6IV3hLpDCO@_
zfyUED2apS-m<7v%EhnN`&}HxJA}$d_LX*aMpT1cxVjT;2#+NEAahI;WEl_&W!YdXw
zS$I`;y^&Qo+I^W^0ft5^uUUBA!WIi#Eo`QJN}C)pTFD-*ykUWm<Jm^Rj#geCt<YA9
zkn)y=9Tx7Ulu0R2=4}Rl3+GPY{0Z!`u$xofh2$>mp##z~Ux)HK_F34^DJPMi!~qKj
zEp&6y-Nic=-esV0P}adA+M$IJHb&Zb&%zN#4;!Uz{EwDn;ZF-^EPTKKV&Q8G-&pv_
z!p9aqvvA77Cmi9~&~XbVEF86P%mR~>?^P6QGsTWZLNpPdS~y7?>nRqt7bDAv=Prbf
z)E71Ggg)n#%Ze{8d_fEE5m4S5BuM#+m&3z(Q^Ma`_|C#F7EY6LCG@?8A1(aEfJ5Pw
z5;aE$tub5pvxSt};@5N$)uY<h=<l_}uNHo%<ZFoEsQO-|%4dk&OwsUQ<PRF{jnK9t
z;w*(`;XkU(!g&i9Ec|2Px`m5WkcG<(_!e#z5NwL&k`*LyT0bV9Z!E4d{#&?a;mbYI
zU-HE7ee)V$3RSNo8s&=91I51<Zdka<Kr|uzz)wXU|0{Hhk+XZsZ3~k|h_9!Jq7_Ac
z32~PLwo$^ygEk7-C}^XIjiNSEZ4|Om*hc4#(QTuZ79+x(-2=_VV^PtofGB3;0ULem
zq!zb>e9I%V!d=RU+}uC{?ay{S*eIp$JW<kyXe@}7vO!23Hp<wD*vPQ)kd3l7>e<Ns
zFI3J(c{@lk)v!^)MnxM{Y*e*T$%a-`uvE6uy?*n1_$N0))ogtFn5b^!VK!APNQd&0
zclUJ>w~C0GHXgB2%SLS*b=b8XB%O|pR>pJ^pFS*l=LLhLa?g)e>f2~wGqWK=Ho`WK
zG=#4g7sAHr?a?~LMY^PXtcOW&XrqyhJR99?G`7*iMq3+MHk#UKW}_7wu@SY=+(ru<
zEp7NyJJ*>Y&d7{<PDOF7tVrJzWtMO20P*}QDXnd^v4f=F^?yPc<;3^>MLQeqZFHiv
zZ9HnDgN=?hvN?qdp=ozR_P8+h8yh4tuZO&Ap-$7oU2Npo=t}8Pq;18(=A!Tz<*zv+
zwWb)@D1Fk{@a13HbhpvNMt>UvY)ns2?`fl#jouV>DWTZ-a-sP8T&NF~$YEa%^`kJi
zM8=K}*SQvI_C%0pE>uPwIu{yfW3Y`OHU@EOB?HlkG%?i1FdM^VQ<XZ4fuZzjrA5^-
z3LP!2Xs1y&M%&n8W2=oZHpbdmWMi?7aW=-=m}FzJjcF-j0_jasZ!8uQX$C2R6v8(S
zM5fr7Wn;FDsbsT3%5)nuY|ON=(2suiMue2sm4ZCvk|ybMY|ORs%>Kv%8}n>DX5(=i
z^KIn65_K1fHdV#wTruWsXnSR``ma#4$HhV$PuQ54C6FmzEiNuL6H9C?wGpGG*?7{%
zQ#RJxc;3b`8&BI<X=4@Jx3S#D3LDQ-fRn`5sbc@32q9hm-7=!YB0)!f&c<q*?(NVT
zno6$NP*H5FC6-nf)%pl#=3lV!qKyqUUbgX)jdh&+@U-<bl`#r!a&wl@3k&9KSM(3(
z)9=oPuGADN$MdjQ@Th3qIqz^Kq1%Ylu52W27&d=b4VDdCGAHP^w?nO>shJN13UcJ7
zCvQ=wt_>Q`;4unsQOK{@*l6Q58?W0ziu;8%r8n7l)kgZ=z|xLAA_m+Il^&h?RhrmL
z;oBJ4L3A%EYE>17h1h0eJMGrS&vXqNZ`t_J#z!`Guqhh{Y#e0hs3>;Y*kfa_ja@c&
z+eq0KeJ3MGxAwdd+Gk_GjrBvsUs2KHaOB;-;mb>f`flVMy1$LX4EXfu;o(CR=Izi#
zCrY?^tT@8pZ{vL%AJFFehELBFT`q-Q8y==Ra5w7mC_%Q5ZG2+mD;r<iIBMe<Lxhc!
zHjYzDkBAdCMr4YWr3H6V7y+2lr~Q0p;|n^1jZ?H(M#8Z8Tq3`vh&f}FCo2mE@ce#a
zZ;trJ#`m<1LgHH+-*IX=;$T$JsP@kgKiK$@QfibwwTP%XIZU2k7(i_NW8*p_kB#4K
zT(WW5#_u-%uyNkT1si|bIAi0ijdL{YbD<%L=!?_C7up5tORpwM6%mXc7iCCv=+`!$
z8>5`45YX+2xI+6ZFaD<Qw-Q(ByaytO%ZXw0gfm%OW2gUwLPNv<+PFaja8TI6O&hmt
z+_7<&s(&i&HvMQ_^glXgzc4p7xY6_WBO=8?0S5&g^lF;M%cha^n;rAoeA_D30RwyI
zu7a?LgI1@C6m#%^6PRdG34b`!wYY;44$szN$pd0iu^<nhRzf`JK;u@U6KqQIGELqk
zLurXX!ZJ><Z$e@@2jv|k99Rx2IH>4gvV$oODmkdkP90=AsN$figZd5{I9&OMt2ubY
zK`r7A9(GW}L7k<7^qTVS3sc0#DS{8pH62B5-g0<G7n@oOdrbKG9g%tth_v{r2=VFV
zx`iAF2TdF_br5!t?to6+$U*5b;fR9_2Mry3++FP76J6Rq`uJk8H8-!tsPMxxQyNQ7
z?yp_S63ra6aIo%TDC(fOg9Brfn^QV-XKIleZs~xQ%**8|qP4?6FGf!Xii5TevM62$
zIS$%6Xz!q-gKP(nIw<~6XlzbO2Z<;R#e~YDT6sZYCkLG!)Vvt_ro8AnGYHYQwnVx*
z$aT=oL3alwuZ8lcm)w+*HALY$L9Lf635L5KPOwEngCXqYptpnJ4n{cW<DjpDfer>a
z=;z?CL(%>Y22cyPLfi~8Du^=kbLkqBON+q{hBz4NV3>m^4n!F0`TR1*hTp0n_y}t~
zP_&qpGt$8*2jd)!=Uh67(GJEq7)u!z6Xzy}x%>8YMNy$i@YI{&fIB-A9ZZtQ*JBiW
zbnp;od48Ih>R_6KXB;f2X;l`}9n5#&v=cKN%yclz!E6VQIe33&c#ea)4(2&9dI@e}
zpD8VpUB$eH>0b^J=LY1xdOq~HgWn@UbPx+1Eab=?EOPLqgQpxUrV%<=>VUC&QyFo+
zL3*D-VtC^KCuN!J`e|w8Tp`?(16PJC96aklbr5r~(!nYRFF1J7!E+8)J6KCoyc1d@
zA(0nr2T$#L$n#{Y9pGHNy+o5<C^pbw9ISWnMx$WoJ$5+q?X}R$4)W<Wb%KXi&n%Hz
zLuhO~Tf`mQtt)hD>UQYZ?GPcCC<bl2xG*JLlq+mXiHde`&4KH{b8yVTaR<JGq=S79
z_B(jR!A1vL9c-gVIC#~;j>2NIgV$*Pg$2v&4!FSJUT5Y6al5*B!@(BG!zUDX>lk>q
zJ9yK<E(g0Eyv17%-gdB48hP<?V%(_k<w4<k??$<(;AU=%nu5q48f{InmzFkO<oy#O
zaqSc0fP;e$K9G+24qeH?dk&7!1<Hy;4i0nhg~Wh@EgE(dT{??bYK#9#O|9sj^1d|Y
z{$s+Q4-a#p@}Yx|=%Efiad1?&)?`@V_(SH3wQ22Aj4&Plgo95V{OsTt2PYkT<^&=1
z2M4DdeD2_D2j4jOf+n{=@}+~XB;rpK)Dh!3qdh}?lcwq4I{41P_lz)+bY2$gA0AUq
zJXkzfWBllVNOOpv=>7*H#7{f;)xkyjl!M=BgbvO+IOpIG8oYxu4vL0SFO5;SGCUQF
za*4>b;+6&crY!Zmg9{EA?e8=Smgvtc6kcDERz+NLaMb}<K9?O_p;D@ggEPW>D0hoR
zd#x!=`ace?JE-QOx{H4u+;C9L#RD#GI=JOvPg_yQ#ce6WyAD!Z{O8~fqfk7Y_I8Bo
z=2mh67X@APT_{prP))5K5@#=m{wyV`UI}e&DcC|`7e!nYb%TBLH|mSWuY?%hi@PY{
zqKu1&Ts-LF(MjP_F4A0-bkY3Z(7_I(qZ%c#w2MAJ6@iO(!$pU1`UmOh`EInVi*hb1
zxv1=7ZN28@T~u&U(G6^1d3t)AcB05wrP2&xzZGGr;(|-Ks%*T9c;#lW>EC!z-oq|x
zup<{OI4T#9xQMvOa8b)eZ5Q=jG;s0DD=Bqc)OAtM#kal10SLa+WnK;)52gQJM1<Vn
zNQQ6`c7p>9H)e;^B|>6bMHIT*mQTsY_{!#@v5O`y8d1VymFF4+XBC=qNG{$eAfhgk
zo1#-wgT*k{$#vg}l<6i~x@hI1J!Rq|)5Xb-qK%8TE?P@`K^w8RhRC8oT;$&f&AXP#
zu;Z+c^65hl>foZIi!Ls5Trd=5yXfSiGZh*Zm79uFBgNlMgT5GwySm7wzFa)lPLvoG
zo^OS@8rgihZSlzg-oxdwSbXi_8xIO+O0jsT<Doaz;o^N4A5h~i`nh<S!*J2x#Q+y`
zT+DSb(8VAZV_b}NG1$cr7sFkQa8aHDbTN!FAFFKH6XD?yE@Gd1FZ#xW@JJV<T%P(4
zj%V~3tNbxB%u!9;6g@vfjB_#G#dH@lTug8=(ZysJQz+F-A+E|EN*9yd;GoNQA@TgP
zxqMDdb%TR3(<CG^aja6gUwEdASuSQvYniO%EgKswYxS|p&auio7mra0E>^pE+{Jts
zi(M>nvB1Sb7f-lY<Ob`OKW+rC19LOPsj<qndg2c~+9FFVb@8N&l`dAfxHwkX*HJtr
znU~S9+X|MaCGw1m<@YHoB=W3;d?~B2FsIizvEniD@IRq79G;7pT&#2Pyo(p8agq8W
z$8$B*b&3$9!;6cHqT_;*e>OF|-o>?{;SC&i!}QyeM9p!^lX*gQ5p%K4#da5(3*E&=
z7n@wfT^KH07oH2#MZ$&c!lCPlbc-@CCk|d_3L?su`F=OzztE(K;sk_G<8<)~Exd=A
zyoLXSB|aV~c3lef9wBx=CSG;%nu{&8(iY-%7c*Ok%`|D6!O$=%T=Vb+zyFBvtx@5v
zF24D`2rqf+<4qTDx!CJspNkzX-ewMGQ*@7uoi28{*zKZld-3a@$k2xA>)(!yIS`q@
zF*@dKsO30?tMUCV4!Af(FLQB_6<z%AV(49()3_jA(0`oLah^EUL~I%oe(|5sdoGTU
z!37`g{~m}O?<Jc56C&G1HTt28j~MG*+;H)+i%-bo;;f6KE{@UWIa(LTU7T=n%Ejj{
zK4t8xC{DWg%*DupL3HKODIRMXIan;4DRz$wf8pXw7hg%$msltcb`@RsMJUV_`&)hM
z;yV|=x%k~h@A~3<wstG@-CJqIe{k`mBohBgB0n?c+^3wD$gebp#exj1MZNst;!nn_
z`oZ&59}v*bxj66Qs*Ar}TwqA-EdFwFiPlK16&1552d@U3YNb3_F72|5D>RJC;`@Pt
zgHycMT<}C0%XJt3+{cSrVNy<w?|jq6Ek<Jxr99kb*k{-CbBcJl<Kiv@zK2u~DINxP
z6MX$I;DJvuE~0ilD8?@eIxXa3bXif@!|W<z#Y4fZqvJ$T55+t@;GwvO5*{A(@N3C{
ze?>g};Ph~zsGyO&+Ei>WB+@*T_E5n?MGx>$#zQ#|U(65}GSVONFtNBO>tXx$NKOqA
z-rSKkS>8j9sbMlq8>dwAP}xIukB2Hz#Y0sO)!0b4Qe*lBugnE<Mc;{{(4|oQY*E8Q
zO%IQFsO1IcqxQtZBoY?1qW@bg(%dj#H0pY&=V76TCp^^m(7;0<4}Cp^JO~eMJhb%?
z_K@zOS!vPSL&QUdhsGY7cxY81cq41*p%JGuAbetT^rHenI+5~eN`4Pf4@^CI4~h@B
zM;QvJvi4fIg@=|Le=OR{L#Bt;9)7qQI$l>yC@k(Mf=Ihz;VcjBJmh-F^U&VIqaLz7
zbn?)_1K&eCdbm0|jZU<AUEtIs>xs@Dh<EXj<AL5yVpk8f2L(vpFtN9JD)DX}x>KrW
zLcKV_iK2&xo(%q8kR_n`aW!R34+@b@?NfVu!6`Lmrs(IPzlRA_3Ylk$0Ukd@!VnMV
z7m9(BGDyN_x{0A4hItr8!|*WN!;_Q52oEDYtRED1u7n1j3w`u%<l4F*|2f9PSP$bo
zjQ22YRqo;Qp>CZ7&Ex%k;?{Jrd$g!_J~YY0WDj#Z%=IwE1G8AuJWTg6l@F=Wf`$Au
zJk0bki$*9JhED0cAQolx<{LLVJwA#D!-B{0JP(h1_@tJ2%;Qgp2nOU4eZ%uTETDu7
zif;ymxfbO@bdiU}6eCT=!x9fmJv{H>1y01nQ(mx2U+o1?ie(;_dsxAyJUk<%SNM(S
zvX+8R>Wd@Op7pTO!zxy<lgi_=Bb$onB+rFIk?+&fX?|Sruc0yD39XfoXV_l!@RA3|
zgX>`(#pNO2gX&>}7rZ9FOr_UOWdI*(M7d6Gvq;4F)Sf6b5AQ5Vi%$x&h`JZ7|5@S^
zF(fo4Oh{-+XiLaX7(5TYhm9UK$r&X*yh7d03zlSjSLHgH?{TkE8XpyT&BN=`W<G70
z&U8~=d(mi0X9meF9=3Wo<l(S~ZDjDU+ru6YZ+by${VfkWJW!`6tB3`I!f$)n>0uX{
z&xfd41~D$xRz*ZPHM-ZsJ`V>x9HhZF5&P-RS3^gO3g*(Mf7|LEIlOmi(*K6I!nsl<
zNX_x_@t%hx9*%oBK@oX)-^0h$F9%#$eBj|j4<FG!uZJj^X%Jk;GROPFgz!<1zqA}>
zLgtu<Ud6<+M(I3i$k&-qJ)HFLIpdE9<}^O@aEcBxr_fi;g4{Ki@ueDxFFkz4!Aws%
z+%yPc%G;6plRGo-{jG=ZC`=zoAK%lFsVpBIef;R*Ck7=SWqkbX;TI48c)0H2G()0?
z3mz`gkv;tG;jD*q9GKMgpL9Cv{l5?syhGPV-+WjwKhNmLAhT>r_~Q}cJcS$<YiEeR
zJX~TB@bEX|!?n<lmBnQbS7_&dg=l6R<U%8Q<&6k08}v=R<^_vD;{STM!CCky?Bgaw
z6QjL{yHd!vCH#-3b-FE$yv~g9UyagJd=&6e&_}AzU)~6R5sxxv-tnSb`F}Mgy!}o{
zc|a8LQPjtSK1%v1=Hme$#eJ0U!8hFWZBZsSYPS>5&d#}cx=ocqc|9wOQa;jrlxDNH
zL#h43Bg+UXm#>hGtmqRZ#X~;I`Uv@4ouHhL@;)B+QNu?C9~FI6@ln-BB|mV({w+jh
ziM-P+hz5ll3d(0;JyFd^bsx_R6RVZHmE#mHIBWXY{!XN}k2*dc@lngiAA`f?hKn|1
z1QVfkebn<&-$w%<*QbYTbq`+a?xu?=*F)_l3+@O+7KpHqbRR8zwDb}2k>R7Uk0w5b
z<cNko-t8kA`Iwy(WHY$SbC-!SAI*G3eKe;)wqzZhDUNmyrg<n!dTV9D-HKK|GJUl1
z(bh+6A7j5O!q>y|S3>k?&MwPGJBrAPJ}Mz8EbV<T<`c=B6KuO=`{?9jx{nz?I{WD2
zW2BE!K5~3?_0i8qe;>I%@_h94q4?<Lqq~nDKAx1RX|G{AUz54GqACma%IoE$w~szP
z`ub?tR4~;rJ1r3GYv)4D7af`&CffiX137CBgC@~b4DvCUgKw1je4ji%R{Fmjy*Vq)
z1IELA4EHgDQyVRA8R7ICapJ*XqlZCnw2v`9rug8d%vc{sBVxRd2|mX8Shp$qRT*(?
zaCjm$J}+&OkI6o=w?%6`AhwPQU;R6fz>de$ruvxXW5c2#g~ignwwUQ-mXB3Fo}(6g
z%<-|r$5J12ea!Q*z~=@5$oZI$$9>FacNN6VM}@K}ns$LFx1+^Iizj?6qG41Li+%9v
zQ(#!|4C0CUYI6h5Cw)9ci}JDD4|3znd_3*r_@E#O&mr-AHJ?O1GSXN0c-F^C+C$$k
zllI>pi12{-=vJcF9I@KR8hV5e&Bt0F&vUXq)^j8?!!P)Fk;C)x)5XxD-r~iBk?$W6
z%-20TS#0p}vX6WpD&g>8WzOf?gVO{zp5B}tF7|IIIZn}i#C_O493O@clNMD~SU&g)
znV<o*5Y^g?V`h|>YcmBs&h_E>;Msfbb=I#JoP7R#s3`eP<P{R>UrAI=Vv~<oef;X<
zHy^M0c-_bQK0ffV*~c4fnY#0_#m813JALf(v5kXIDZSmto6;X|<%!#F^exKD=fX0&
zL&9~r0g;6}EEL*q$+^epzd=Pa-;OdP$E@sr9|tHsABW`KgFfD&xJCv16=wyoPfu}J
z-g?i+5sC1dm;XtGci9CY)Ab+v_{hf>KECwvv5!xDobd4}jm^g~D$d8(<HL-Zr*DV2
zvBHI7tNP;K{^658KJ#(P$LDl}Jh3+x<*pfx|A+qJj3J_UeKCHl_=<IX{J`+;;~O8}
z`uL7vpN2OsOk-f0?n*fQ^R9wx3C7!oiRe!Z{yu*3ahjq#5aFY3=B>~><CH&#h0A0M
zz6urF6#bpy$j4nDDM|e4<BX4g7>InF^>NO}B_Ef4ocD3T$3-81QQ$dwr^YEfiqC+_
zjigb1#G*SP!Ye+m`uN+&HJZev;6sdMgT#x2gH4Tfb%M_*&W}_6^>M?;9UnE#=uIED
zs2U&t`N2Lc6Fx7M2{Qbx+X$t*(B6(d$xZ4x;Z{$j6-c6B5@|`4P9imlLP<Q3MDZjF
zCs8DcqDd4>;>g6nqHHrfxmS>Y;v<r4iSmsFKW8YB#DhtcOrm06!Tdw1B=|UE*-=6;
z;1fX-Ws)eLM1>^c*9$+CMA;<DCBalS6Fyh#HUB$T)JYAtX(}dBDT&I-V5i<s6Gw-M
z@u%C=X`J4xkzgjFS`yWh7@ow4BpyzpMiL#8=$J&!Bpyj3nnd#?Y9&!SiH1ou;xLk^
zn?xjuj3nwU67`b7B1+p3t)Il<C8B|ZL_!h~NrWYmexF`+yu#gt#`_{uiv}^jaS~0E
zXqrT`B)B6}wy5Ac>5%?GHilE+I0p?EEs|)NMB5~?l4zAgW)iKFXp=;bLgEuQ%q4nW
zQ_+5;;JfgT{RD~al4zgAqsd^S_VnYq#ntd*H$(g+gxS=Z<CW|rIwjF7iQY+cPNGW^
z-IC~@L=HulL~as!obq_(w*sPJ2|*a{62Laq#l+5eJ*di>qGu9HGDvhcztgs6Zr%qC
z(mT%$dhe4&-y{Z7AW8H~qJI($g9At$uQ2<{QgANMng)qqdfeb7h9ogGi5(A#S>u&q
zN!&Oa`gM}{$qTO;uMi)Z#Hb{mNMcbEqmvku#Ec|nCNVaNaY;<3Hj@~i#DpX!CNYV9
zb<Cql*RC#xT?&1_FTxk7<XkbirI?z;G>U>#-qV5`h3uVHT8-~pP1E`QGAoJMNz6;)
zu_U<3J0}^u>CC0xn+M5?-D3hFJf6h-Bo-vGki8TRY>)d9bauKqU6NxidoZ#%i6u!q
zo5ac_mL~CJ63dg=J2m`N63dc!I*DhJ7@RH^jTQWWiyIuwBy)q6?ei(QA{iuY25#=i
zAiOGx=aP6Ki5HVtoy3|X)+X^hCD1B(6f#%O72VNE;$|IjAS9TleJP1`Nvx+jlGr~t
zcyN>(7hYW@7$h?Tp^4$|Bk5`qu_ShH!k$gglF(^s8<DmV|3}kRKucA9Z@S^}(Sm>=
zIcMI`L#K2PjdXW+W1)g5Du@WuzT188BLzXg?p9P3EJ`{B{@<DZ`mHtVt}}OL?wq^N
z-uvwM_P$%P@FsacL1zV9v#>1-=d*Aj3){1>gR+^06Is|vvSh)^f=vPz5WBM^(m+X%
z-^xN31w4lgo^&16MCBHc1)b7;J7#3T%#vZ}h1X(4#V{7l-R)SEaI)ZXCRx~@1&^f8
zLN;0MUM$E$NKVL-E-f8NmOgQ?wurQU_;ybg_GY2v(ZrvH#Wy!&Jb54s2ea@_7LM?)
zN$p#)Ls>XXPHQC=l@Lm8K^tt)6u}%QSNteNFAK+b3$<h|5B=q}>)Vrn<@1X7vhY6t
zGz-6G;e#xEn1ye%@Ld)@%EHH4_#z8mX5o`8e42&NcspDLJIT5sA|hy_(6waPmg@Sg
zrDA;{@l_VS&cZiYcx{sWh=vNa(6O_zK@9{w>+iGhV-|kO!Vg*CUA$9QMrlrF;b)5T
z;P}*9f+tC<Cnt%l=HgTqextDG5NEUS*D~>Y7S3ehk1U*~I2093tQU=mKlu?ge-{49
z!Y#8smE^kq@w`O^jsLgjO9&19vU9wtT8()f9xrC$Un(~RRTNyx!sRUFP>@r>l`LGP
zWK9tFvT%)jNHHXnXW>R#UT*T@{Og?J=^b&>pTR~NPStP5?xvSx`K0)N<n~H(nJ%>y
zqi@9Sr!Vy&edINHN4XT_R!~$yF$H-P<W*2mK_LbC6y#S>K#@TkVvxSL6C<+d^v*c*
z7d*rAvBC=Ih!s&}DunnVzSf*+nW3P#f`=7UQ~(7f6qHm@idQBoW4Op@DQnP5D_~lX
zwgGeQbl%JGts=d6zRD?h=zrt#=|P3`aoQYFNdZ}fugZ$d2-D=ICrEfzRRxbKXrQ2>
zf@%t?E2yimM_;^#f|?41f;eBjL@foi6~xkGra0HH5be8&`MJcP8X{AXPEA5V9R)3V
zOQ-<73_1uL@Q3vjghl1HTVKH&CFR;RB4sLxrV5%VNGfQopy~J&3ox5-Vw;kOH^vDh
zYtBn4Xse)|f|d$eDQK;rjRHF0w1n+<6S+#sjgKxf)iv$I#}u?z&_O{*1$<j|iD3Ng
z#yA;zy`NvY?d#9Rx+v(X;B5tm6m(P2UBM~^&noDlpr?Y#3Z^LNrJ%Qhp$dj6NGa%}
zV4#9Q3i>MOr=Y)r0bI3%$sEgNETw&>pkG5A4p)cteE4>3u!6@G3?ZrK%0wOmRy!x8
zXm8BQ6vGvaP%u`(I0YjWj8ZUK!59Vi7I!(>P#im$7<xEiy%DFjWQ23ygw%Ki6BJA&
z|0uY<P~_c^ByNEkWADZ!zyEv_L9=A4f@umCDp;gox`G)BW-FLO_PY_A$v<NJKYb)s
zd8SftF;~Gn1@jdwP}tl+Udk;e_49ANMfu_4Yns;gVv7|lQLs|M6AG4+m<pCFSfL<e
zU-K3t#n^J9)MCL1B!lxbFn+Eto>cIZf~OTc!@DD*X<u_%RuoA_N3YG3j$5(8;yDG+
zQv)m5reL*#H40u;uwLOaWxBnf;6)A;FhR36edI~H#_JTktl$+cS%2w^v6i;)jySVg
zUrb1CQ1BXAj_jm>>5p?0QX3V#PIeNaO0GJhQ6`noW(8Xmyf8K6P5xbN@%lRn?oD*-
zD8&pEY*(;Dfvdn%uv5V<1*!r~!EOa_DacZwknx&GUynzs)3Ho9-;eQFcXv`(U??yZ
zSme*^G2SLq@H7Jm%&>U{ZcHoX*dfshikuTuzJfr(UIqIo2nr$v*$VcgC3^jvaVCRi
zjS?TcDgD-icVwz%zk&k_4w8%ZXIvQ+r=DkcVaSYlvW1KR9#-&<f?p`13XUi^s^BvP
zpDTD*0kecB6ud{mW+#p*IL_<T&EzgDvxf>kP-Nui69peqMNCY6M75wuOMqqo?<@a8
z!JK2>QG#~PrwRy=Ynxx3{Wtc7g0B^Pqk!Wt6?~;guolO}ynU<SJB1HPNuE^jy@DSU
z{HWk3D!{8TLgtoVj1435t%x9aX3D@g&-|ReWq$vDTX9OkZwhWGxT!GPh||2jf^$>_
zw_|4%{FT-}e<=8q(lj%EV}uML(w_NS!9V1~3$fK*WECwn$$14A6kMi~C)1vdU8LMm
z`BTP=2?lu>Eb_+186o`TYU`_HEd|#}oI-+^qO`6WBR2LFM;@0R$}NhRf?O(ctH_LJ
z-l0?~xUb+YZ;+fYEdIuUM1diKiOUBHa;V@nbE>E@H*O~~Upkney-nAE+3h?k@~SAP
zqL7MwD)Or+pi0&K++0~K%usNyD>3G~nVKoAqKJx{7h*+es9cC~gE&W|$AuV^q0G`2
zR{<4&sQ6Pw2^A$(EK{*uMJW}fRYFYBSw$HYWmVKsQCCGd6%VPX&MB!VucCsAM^sc%
z@vw@DDk`a{tm4E#Ni-rx0wX!PooKi{K6*;L&cswz6_2X;v_bA_Dk05rrUNDxl#()h
zws?1BoPmg%Dq<>xidrgas~8#+9VVu}?j_dEjK@hX6$uqgKhatv=}2?R0?k66si&g8
zie@UBt7xENPT52w6-gBhRd7v-L(5Kx#wy;KE}E!ls!H#hRN?})sUW!S#|Ye2(NaY_
z6_2TCrJ}Ve5uU3a#27nbeyvUVEzh(~4+c+6vF$^96&+M`R6!)b?1{3>pYdVBCNE8n
zcTv$*#aI>NRCH6(UBy5ZgH-fT(NjfAMIRNtIH)XotDwa3Md@Q?l_p1D75!B7S1~}9
zQuAli^vUj$f4IBR)|#_1K3K)$Du$~VkzVv6q?L+c>G7(GDZ0`H*(!sgw>dsi#V8e{
zRgB?eCP?0>x<Mu^5@BM@!0xo_X%dWAF@Z!=F;~Sz6_Zp<S207yWEE3XOjR+B^KT;E
zSOPZa5!9P0W{;7UTk>9vM#4-LvsBDhVa<xSm?lF^lyq*#w66I_^HeNOPi%hr$TJJl
zgM}&<sVIC=#*|7Em_4$|5*0iyO&|X{m|US^rHV*Jwu&cIJgMSM6<bw2rQ&H7uc&yH
zlvlAz#TpeasCZVzb1I%!v6?@bm>SED8S|v;muq62GoMmJ+~_UVs(4YwIu$Rgc!^A2
zM0PV^FAmB@!&A*Z?;_S-iFpNOh5mYyYjuu|DqdHyLB(q-j<%5C@YZz6TZm06-cYfb
zX1@yVy!4})=jD-@DDK5Q_9Z9XZ?#Rub`_cmUBwO+J5?DsR#fa#v0KGkDzYfT{bVft
z@^z{3%O6iNHAA1B;c+_GstTr4Up^l*C@d;m6&@+9!d7u^V#-nR<-`<QC6t^)NMU@h
zl^ndcxvwHn5mG!SisBo3{83fpoRpe3LX@ABV$f`lioKLR6`!ft$I0-HRJ^O=fQo};
z!V9s(T<Cn_Z54+oWrvcq-zZ-cE^3T-R2(5ctQ71q!QKT-86Q(|T*U_}J|un0i4!W`
zQ}KR!Wl25ie;ygT;NpIy;$syjXNynxg$dHnqHDIWy`Y8m?)LcSD!x$hql%w+M=HKj
z@vVyQH~|XFq|`TL@=J0H;FxU<#!X6%^Aq3m9(#))R4{iy`;8gN4ztBc6+f#u#gi(2
z=~3(#6~9tDl@M)f2oma{juKz`yNc848J^*aj1s-J$Cph?^&J>zL}<(A<X<ZO=AUZl
zso@_LXQ|3GJfh*8it}744f!-&P;pVkZ54M^{Hx-UifbyaQyFfFUsiEN#Z_|Sg&65$
zFOys}`}dZFH{YQ8r6|=Fx2Pn`h(BISQti-qAf$~=Gw!PRPel$5IW^o<abLv)6;(&a
z=@+k`l=`xxAh?3iZXQX@TpDs~$fM!dp~RpgNkZeOlqk!7t;YE^6wpvoLn#dfH5Ag2
zp`o~j!WxQbD5{~DhEaPYponI}`1##v*#9|R3Mt_|&~SKoobiMb{Nd~I18+1V&amEr
z#-%ls(NJDP1r232<o~lJ`M(?|z<oSDen<n)&@|<lhcys{SxG}h4ZJ}nc6pq;K1l#!
z6%AE2BsDbF@Ti7r8tQ7Or=hxr8XAO#xQ3b<YH6sgA;ziJ6Xv88-95(h$%F(D_Io=)
zXE0MkLPH%*D#lv_*d<AZu#Qhkec(wT)6bJq|4kP4H8jxBFg?jeod1MQoErh#^tibf
zG||vhLt72)G%%piOhZcztu!>(&_a`5?Xvv|PME>=d;1fuc_SJ)4W8_}J;_gbd`v@o
z4V^S}*3dyiM-90qrwH3%K={vkk`DbJ@7^W7KwUL-;~$-iak09m&%Dx5PUE4;DW2)2
zp|^&oH9VssrJ;|8Ng5_==&PZhh7lS@YUr<FfQBI&hH4ndnP?cS;c>F%sQ9WJtv<Ed
zSDY#@ICYj_K4N!LT)h_?MlKpJhLa7b@d`+bi&+ECYLtd?8pdlFtzitgVsw102HMPw
zv~x@cYC@V~6VpeEeBH^Zi~Wdq5>qrx)v$nzt6`dk=^AEhn4@8ahM5{>k#9Q*8d@}-
z7t|LoUXy!zo&RF%HYMk3n5SVrf0bLBeAIFjjWZWw^rseSSgc{Wh7}r?XxP@f*isG4
zc(YrQT_&fxK4`@jD16a4U#Z~<4Nq!#N|Q3nEt1%YCwhvy1L6$+@V*#3TBYGx4LddL
z((s&y=QV85@S29z8rEodNy9pF+Dh?)hP4`A)bNMZ{$`)<!}ljhoW--Ht@W~oS2U(S
zuwIi^C0BV`XVLC%Y{Z?|L#4&--SJm8#W!krUBea)Z)(`Y;E#sQT(3#8#DES3cS9};
zRWW03TX{zswsXSd_MYPSt|apXoM(mhV#)a!Avc8C@7C~^22+Ej5uXM{gQh{(plTBK
znOBIfjwTpjq28w6>sB;(`@;!?jCVLuHcZ$W91VenP=ia!8Xfm25or<TQj#o812Hq$
zY=($5WNX-?VXp?p0hmBvI#GUs&J<l0zPKeF&~Q-04IMXiyshDohORog={T$rID`T^
z3hFqb;V9{*;ZF_kl9M%jso^UP$2FYL@UezZG`y$beo?{KhZ^43@Bxqi#vYp>{%k8x
z^7T>r3w-;j2Cn1h8cH-0e0`Q45S{Wx`aH9}-IC&K4c}<^EiLKaYWPmWj~ad=aVCrJ
zHT;l1&vYuY;g?3m*EA3(HT<mM7fQ|K)YY;*sCDTVFtYS3Nm@p*RO(cEKqwcL#_t+V
zYdE7xyfmXd-}e`l28h2j{H@`ZhTGKt8qR89&Bb-<e~O8Qe>Gg<JPU{moFv7+uuR#!
zIA4Z?j%<rx)^J6`RSnmu7B0n@=wY&(DwF}J(`<rNN-Uq8x<T1_5WAT^GWpK&9SwIW
zZn_Ls{71PSRP=#{96IiiP-$AVs4Vy*+B2t)TskNhxphh8j-|!G>5`;8L!&Nl`U?4U
z<kvyln6Wa(fqBhBItuHE>&VnmL`P8_rF4|mQA|gMj*>baWJ)kYaV~wI?j>|Um*6Fy
zVa|~$-S3D5ULu+o5@mFh)lo%9RUPGYJf!1c9Tjzy*KvS_8~m3g(wt_-A#+lv{fk5;
z9hG%FqNB;)jNg>x$tHD(KH_&sF-GYh)lp4HEgiLWRM$~MM@=0}9MiS=d3&52F>M3t
z0qW`)?|PgN<i>6?y29`LJ}1unNJ2*)9nEw!*HKpox6uYV8tSO0qrNU<XusEzaiN5Q
zM!GD@OX_H>%Pvf*iSb?yGMngVs$<AZVO^ERCo|5B!nNQP`o~-AXrs#vV@vXXQndR2
zaa^?3(N0Hu9UXK$#{XR+2uS8{+12XkY|&9iCmo%2bkVVFg~X`$A0Gdev5P#Cn4C5X
zk-F>Xp(E50>FBAW7r&`vxekW=dg~abW4Ml#jy^j2>gcCqppHR0`jaxe&OfmMIy%mY
z(`942kR?uobv({n&@og8F(D)l4aN3#Wb`RfO>CH)qFx%IW2BC$I;QCurDL>?aXQA6
z6Q+w-XNxg9#_G6KN2*Z1?r%&^&@oY$ow%mxU><Ffjwjq?_2!Am>9_m>Pcl495bSgv
zGjuG}u}B9IK135Sdo@$XEdEgoS<f|F2aj{o$GJM@r3drVN1k7h9vBnii*+o~v6TF&
zCMV|<#13)r(SsOmQ98~mxRg3x*RhE+(eb2?HT<EDr*u56;~5>R_>TvZjCW0%pFuz3
zSsl;mcwWb95_w9TXUgA`s0MR#>gePYzs6fztK&r-ujqJ{)V>&dNyj=JFYBO3+$7b#
zz`KbCv*JX#Ff6uS#|9m*>DZ{_U<J7ZKTJ;1V`UtbU*JYYwf}~W%{q4LcuU6?U6#&m
z)3II0n>w~q#BvC3d{p>l;+Z?h=ey!Nb?l<-T#Yei$hRyjAeMl4nx#Y0Vd}8RnOaiS
zp_6ZQXz91_Ki-%pxkhvBM33R!X{_2h938F>kFq>c{B|JmT@NuhAs8jQJ~_p2`Z@w#
z8fgTO6rGaF*0D#&uR2cY*sEioj!(I8I`&h3b-b^Go7X`qfAW%!W7HvJejV>n?dyE3
zb8_8)I1^`Nt)sf!&iG~d7yrcM)~4fxj`wu@KD4NaWinpM^NjDY3WnnkbbLq#*6}g<
zJpC_JS#P%yqL@&MN#lf<`dr5sI!<y*mBg1izS8lXj_-ARO^KTv|ArIL!Ppe-d@2M6
zlN*+oHX(`sgN`4`nUtMgf)*O3o<|1%87pqTAmit><o=QtYF_y_&X5d~L;S1bw2m`e
zwf^F~jz4t#spBl!>Fop~V}I%RTgN|ClAQ(ZVPeJkN5n4?+<uPo!qj$sK{y0MD;IQJ
z<iAgsxgl<0mvmg_Jh@~o#5Emj+l#B|@%jdtU4jHpUQfT}`CB?}>v+k)Is<of+@&BJ
z7-HZ*s(q?N12F^lshM?@F;Lb(4g)z26f#iQKrREh4dgSB-#{J%v*IGJAuVAJD3xoD
zCW-c8+_Hdyg6U7W5aeV!xr}2JF;LV143scX%m85(83u|QV9I_&TbXcVkeRBR`ne?k
zD6c4GptQkfh9+5OLG^OEvD9M>c9k>m$gNlf0}mT`$N(|S+@Z>IO2Z_cxuSte25K5I
z(Qu-A4$h6jQknBFD;_aW#Q@E9zN#8{G(E2Nzcba-gBt1E;TLLghGj(9NzmjI2I2<V
z7-(zAQmIS>4GlChkT6ikKwSg%4AeK!fV2HCR(ne7P%m+`kXSZXJYGyN7|6XcX`r!z
z<_20AXky@{QyEPSG&3X?j=KO&2m;|Qo{M#PC(+VCD+7Gn+K{DT%xLpSZ;n1ln<=Sw
z1|Boe!$401?G1D=(8WMk15`2{4RkWl*+9uDQdbN)+m&Vj@knGCeR{l`f#Fj{cLNOY
z)*B~_Ny)3d4D>e8-@pI^DFb~B^fl1W0A+{qdH%3r9=VmwtDbvE2U+Mb(7+%A%*PEj
z5Z;OnoRT8`gtp(;)g;7jsDWVy78+Q@|1vOw^EWV=|JYZIG%(7*==7N0_ZS0X4O!ne
z!N52J;|&_CIf#lR(upTIATD=e`U}}}B}{jUfvE=OaeB4HGy~JgS_Wntm_a5iF1p=`
z%}n1H#|$<yd^&SVYK|dGgytGxlSvL}MUac48DhR65v>ah&==s<h-F=DV1<E|29_9D
zYT(Hrv5dDlMPdS%8(?^fFTQ<(9~pSg!1D&4GVnC{_G0WA1HaYI<bbi4LVb#@GVm<v
zFEY=FOdekd6Wsd8RTrxbtTFI{fwhJ-23|BkU_j-Dne4ereM0KR>xh>Pyh0f?aF16u
zu-?G?20k#b!N6<eOas{lHX3-{fM!59u*tw12DXxPq(cL-*}xV9Z;}Bz$^DefPivnU
zJ^tMnZ^gG8*kNGRl+<&Xf?*jBcBbF%N*{L{cq={N`7Ew)daVBM%(f{h!+>ePG2j}o
zs1q6pCcA9|M99;3qixB09M1rOuRdp9NMc|(haf!;NwG+_AmI5u6c7W)3>-JG&%k~I
zhYh@A;DCXH2HrMs$N+0yAI;1hI7hI6tH;&Yl;QD?+mgjriX#S&QeJqq;^Mhk9T~w;
zd&#1zUZbVLrwvSe4qqn>yhrXTC&rhQ>6;G?d}QDc1AiL$*uW<Sejt03Hw=7c;41@P
zQ*tlGJ~!}%fiDdVzANqdmnTc`{MH)sg5MbU*1&fLzBgoAp9yPbyQ)s?L@7IRJ;v6Z
ztbO~*z)1tA$P5O4Ht>sqU&)zgV~m%wl8EWW>0{%RPzv4e22L9|V}RM}6Kw_6CU;?u
zDVszF{$=2A1OFPhL@woQJBf1!&Qmrki?dX}qvI4hVgTkB5f?~p{^_+CO)37x3wGkN
zfhz`X8n|WPD%BKcO9`TSOo`|3N+x7nbk`EWz56#OL9V+^<xgg-(fF<*tE(s!{JU2e
zD3~2*;PgHPhZ@pEH4`~Z<TO#nL|GHLOyo9E$V6eDXCB8yJ`?$QeqNWnCYZBhRJ?!*
z1~B<5$gf>%O{`aS`q39+MNAYmQNlz?6U9tqm?&-nCdMt6n6#3Q$w(AyubBKIB9v;U
zl!;Qk1Yf01+1a)5<rv5Bv=rq`JY>p##Z^p{H&MYvWfO!OJ#3<)iAw456AufzY3H`a
zOFf9OM4fKb^KtQr3Az#-@V8adSD<uMH&MexV-rnG)HG3xlYdk+Fj3n?%tWS%gb88d
zm1%;nczQr9j)ApN2NQKn)HPAhM150w_Zbrf!~TpsoXcqQ{xn(R&pd2H6OGc>Os0>F
zQ{5jIXJ?P5CYqUOZ=wTdWuk?N)+XAJl6l25gX1ktv?AHJB#BJp-aRmfXltS!zyDwC
zF;gNp?k<up1`96uUo6G#XrhyeZYH{$=xm~ki9hm-uBNO$W0eP!HMAmlMx2ZFFhObU
zX`+{j!DA$6R=N`#cO=1bP9{qFnCNTbIUmpa=x3t8i7^hwIv8MLpou*e_F5RkA99`+
za$9)Z#1IqvO&l;W)Wk6U*2MEBhMO2+Vu6W;CPtbVWnzknsU}AAg8c1&v56)h%n=`J
zg5W(uo;V(tJ~Q6Lg!BM8<;h8=l%vn|<YbfPVv^Mj(@ab^G26r(6EjTAB=v5_W|>l-
zE4{k2fQz=-w}%r%aLqL_&jib_=99cFrT@!fz5P>CEW)Cty~xC36Hl9X#>5g6OHHgW
zvC_mcetDW$Zc07IXc7|&E!&9G3%fl*R&OnyH1U)PmUs}2GqSy4xH6SjBGOlxV9H~`
zeDSOamJM>i7prbpn^<FFhl!mgUNEuN#6}aZn|RU0OXMXJubTK~N@^W{)xZ18WR*W!
z(j4D;C6@1eY&}_&-yb1f;}xpPP&WULI*kNjuiZ^1-XQTW#I~B)&O#v*TTHx}9<#Ww
zK{=7NF+P8MoY}x_JV~;@8RwT7KVP^#xr<~WZ<ugQyk#QGgl0lFp>U-JbSDR@CO&8?
zitlN@Hbd5}7+j__XIi9^pQNG1@B+b3yV}e2qD#g$kxlk6;hP9dgeD@&W?n(e9`g(I
z%Bf5F_C^m;aBzGt`Fx7lXUa{M3XQmhZ>~s-{h*1rP5flyq=`e6ViTX3_|(KZCXR4E
zCO$NAluE|LaT6y@95d0QpD?TE7-uGF>M-W;9yLr%yw9J<#Pue1IOdDvk2tYB(ii@i
znq*4+|HmABW`fOmzBKU_*OcpCCo?`Y#}_7;reO&%^TJ=7_|C-lTq6_TlI<Hy4awuh
zDJgERKalOWC4VIU@KFmLdU0!DFN>c|{9@vYiK`}lHF3(sSrg|>{AS{JuCj^0Oq?b?
zMaCHlDJS+%tkV#w9$AUc_yG0Q-zEx9P3@m6{z*$Zu~=->JnMRl+4=J(E}Hn)#065O
zs$k5Sy%*R``V#q{AF-=*+a!Yq{3Z=%)|6c{aofZl6W4iD6#4ryCvua#YJwrS4Ss@J
zizvIhCjK*V-^2q7MLThiLa{_JUd;`Tv7H>2Y`>G!VsKb?q98DjX&p8p$zvfeHGqX7
z7V=rhZ=t${8WsvzC}^Ryg)$ZjStxAb;W{}eQ$;KkwEznxESaw<W+B5uaZ92am>Hp>
zV<|o1&D>r~TBw~VN?8~qB>1Y*)D#mX3@4VgP|iXX3yUYmAF@!Me_BpdvQWVS6K4-w
zsAyr~Vd*jPEz{P2=MgLru595E3)F%Ck6NS}uWI2@OBNtkv%s|MM|uuMj9H9a(?Tr^
ztt_<W1T4fXG_=sjg0K*`P}f2|-r#(ZX(3^uPI}Crf8ZwQsgd9fr>5##XuxTd5wivt
zV|^=qA~xJ$z9Y%Mv(Vf^3kyvwFci?#LNg1ru_?}61+F7KdIkYnTF7y}Xvd5;9foH}
zKxtdi#zI>QJuLLJ(9XhR7CKw#Vxhf-4i-9E=wyL*2s6t&$4XDI>(taKA?R{ei;J!n
z`pyvDEOh5GU5K${a?T@lhzB6tor<fMh29qWTNq#=WuXthY@wfp`-Mf0(lUd_O6rD5
z=?id=9u_7BT2dPivM|`fw%3x2o5^yLb#+7^R*a^^Pz%E>Ja1vOh2a)PSeRpBu7!~n
zMp>9h{;@EcYieP<g$bnUx!70><1E?jf%9QLVod{?;pN-<)pHO}dvsWQvV|!Yrdya{
zVfN+NR14EM-Wp&2ZsPfr;NT9Ezm^1h%;Fb#*{QPW{nC3<NckyCe&$)2Z(*f{CoE8t
zFR-x0!cy{yg+*!JW7cx9g|BDE`Qpw<!*7{|<rY?0;3h)2%bdny`P3ADOAF*l3r|@f
z;&+vWr_%$r6M2S9a3ywoXq@XvJ@%}H=eRm`M9uDk=Q&to;ROp@Ni+*<Exc&qbqkv;
zykto!e#OG87S>sKncT>(JB_5dLYl8nf4afKYnId!1Y9v@TkEyt#`Jl9hyKnR>1Eww
zQJ;v-=`qzi7y8Zgne98{bji0{*ul3JEDJj=?6RP6<`#Bac#Fihl384%dohN}xoaG$
zCRWzT>^UH=k?XF<bPEQhpr6bnR+=SPoxyYut72^n4rgT{u&{rWaLIwg;+`er8>5nv
zwGw-qhZZ9K<CR!8zcW|R*x-h~^=^zN5WldGCoQ~U<5e36EF7eW*~ql<wuM6$u3NZa
z;jo2wcx4N}QUzH!YT*M5A6gRM_^yTH7EYwc$1Jc^d0=+(Jqz!r&oIltoEM*hK@9eU
zapEHjA6xjs!j~34A@wYLMvXykIh-V62{Gl~O&6PiEC%0*>HUiQVBs4J-%^it5pT_x
zLOODFFY1=>xEzzDf6cY{o*Jxz_`$-D=>f+-r3WX|$Dg^%Q&T*7%3^y@oV9Sy!tWMN
zTlmw$Ulz`gu^+^U4Ecl7J)$vF(qqrYc>LSKKV+em87xDi4av|GOUxL0I&a~Eg-aGL
zTewIOyA+erBnrrZgflh8@yem%iiN9bA-!gSxB>z#Sf)qorSBNgfN^FEx2S<_l(2Ez
z!X4^u8~JVAweTNx5jBsEdui6aPbG6nt`u?R|BMmrvy{_DE*p7l<hAieZ^0tg+_r2m
zLR*f<_ok*uX96P`TPR?opp9ZSGHevGQP@Ti8%1p}fWUR9KhABAP)q_I-WnFCdBZF}
zg`Fph+jvk+1OwwGZIrU{h>a>XO4}%7qr8m@Hp<#4$7$ph57~HWUKd&p-?kRi1B`Nv
zU?ST_MH`iDRJIB7OnzEV*4q+8OBIo~w-B4+M3hzKM>cBOsAZ!X=Wk1xXboF-p<&2{
zH9?ba%SmEhyta*)4Z)eu7n>59{(%HDHN^S<IyFUyBEg^77;9skjk-4K+2~@UtBv|L
z8rW!Qqm_+@HX7MzYNMHrq>aWlZca@#;rAN~3TE5k8N{e?%dY&c4C6N^#ipfN@V@TE
zmhh1cHKqB{+D022kJ)H%qpgj0w(NY>t8H#31nK;C87<CDOm(o)(MBg5oo!hlN$^kK
zo3Y;>#2D~DR#OJw2-)gpqq~hkHU``1VWX#wJ~sMN^p=ZWHhSAgQS^><>s4HAdk|~l
zCUZi(m!nlb8~tqzurbgEGg;@a#MqCkX<eB%Vv7l8C%YxZ<2Hua7-3_iEd%dEZ49$9
z+y<XB!kc0$hxUW<Z|tO*9A#s)O~kcaKI#wxt{7xvAC-2UsleNhw=u!SJR9?EOtdk{
zmJKmx+w9UApKN2Ajp;U~*qCaAdtA$=60*XG;tU%zZ5a@lW#dBeHhk2@y?sgY1ET?i
z?ai@emV~LFxi)qTkB^ufUtnXQja4?D<&|wLwy})2W=k(=372oGSV~e161#_q5<LW4
z95Au6!p74!p0Tl#%zst}(w|5Vo=hK~;&L~XwRrbOHlhAxz?r$f=Qt&<l#R8VaBs1i
zi&#Od;lJFAQ5iC?%F4SJxzIM&*?8HOu|BRiUmTnd6AZpFqJjg7^)@!x$l)NTgV$_q
zwDASWV&ioin`~s;*h5LQvDt=h!?3Z%#+x>F+jz^yRvX*M-qTXMZ18Cp+ikG!gKu|`
zfax=g*z<g`?xIlr%rV>JSvC|Kstt{D+DukN@-;gl(U^45XwS^4C`=oc4bO(pdm*d0
z6^;#;w|ONtdsv*=AAX;8zN~5_`Y5mw+K9-UrA3`|(<EMm{uEhauZ?{+j@dYFV?UL@
zjYBpLr|DUDSMngY0P^z?F)cgE3(g-c-m!7S#!(yZ+OiOgx`G)xYA5no!TT|Gvm}W9
zgpK!Xd}QNe8}HlrfE-AM9~Q4xn{kg67D-9T?jwDWPi%Z@<1-td+sGQ#i#^jA9$_||
zi}<RLT{PL;<|`XtlcQ{0wDFCNZ*BZ;<Ft+MY<zFyXB)rR_`$}HHh!{k(v~=IZVG=D
zkqwUMP!nLltSkM{Uu~SS@f+t~Lh?DG5msq&po1VMFd%lu#veA$lDpnc{K-YJ@wbhC
zI53h71^1hlV&IV>BSyM<nn|`*IcMX%jX#GA_S?DsR+47Yzcwz}xIx8Y<1(i@B7Vij
z)wJx;T)AfBdYY=^^JP#o(73u;P_XsKEh>L<=Css38+WMuZTv?K^J_D1{SEHK7-{+P
zk_6uH!6^5skg0O}3r>K6roNR#E(f_C)OAqLK^_Nr9X#xyqJw-6@;fNuprnHW4$ECp
z%t3~OLJkT$DB_@~1G?v2&B2RgiiDxjWz_@?6$ZeIJF=99rY0N^ox(>5F^2g9L@5Up
zz%mZXIw;M5oGF`$(QPT`;2{U)9aM0nV?u#qRWb#WUdf=&;$D04!un(-hb=2n!$D04
zk2t8};891?nHRjXIbPL~CDLRMYNu)rsykps6?Y02)Adb>S`KPEh&#x1aB6Hui~*3+
zLO3#R%pz8@@v9<pL(Npekq%cKQXr2k3?b}<!1ekL8aU|bpqGP&4jMUV=io61Ne7J`
zv~bYUK@$f}Ik#Q$W~34u1GX0IsYUi^PLiIDJu@xEV=D)(9kg-K){)(E*bagW&uG=V
z-DJd-s)iuj_6|BY=<1-GgN_b5Iq2-5i-TJK#)u^#PZBlCG71J3vZkfpnU>;RT%0Jn
zJLutn?LB{+mSVDox6|7}%E2IqkD5gv2Yns%PtT;E1Kw2f=X{*c-2C0hjRPD!5z9R=
z{V7lWH!bxz*UrIk2O}H|O`jj;fd5N&rPqJt@$THJMmiXkzKhWgxUFm>g!OD!{=8!m
zS++3F!FaB(hcX@}IGE_5xr-JqCOMew;4=rGJDB2Ns)H=Dkb`LsraO4f!SfDgIGE{R
zse@$>W;vMcU_O`9!5l|!>vJ8<<ISF>nbeAraC$WD2E`emTj*esgT)S(@Up#S^~8k+
znU(v>wqRYS#7j+2G3&A1!3qaYlV==u;KvgVo^<e(BO{!&ehKHGqe_>Sg3MkSr}s2p
z<=|N^?!%(~^c3s4vNHuEu8&m}s~xOyu*tz24qkAu*1@X|)|0RfUZQ~f+UykyQC->c
zg7(`w2QNF)gicMD<{S$jUTiKlQ29I9=-_p((XjYyhY~CU;is$)Bey?QL+;3%9c*#1
z-N6oir-ryRHsehPTS=?wsl|oGHvXx|<cr~bl6|LxU7WyZ(T{yxxroEN?{@H(0}l9l
zdU{HApgGv%V6Ow+f#JY*;5aZHSm`CE@+ng$gTLjg#S<B>1J6O|AfjeyFMJ0<TE04M
zOr9tpYA)zPV}|0EO=2#QF<v@obw@SX=U~5s6J!Yo2OJ!9@D9b<!P{iN{Nj*<!(1j+
z2Kh%b8`VXs?o-XgQ7(alV-Ai}?ygFdBk>-DjxdJ#T^(_4v0!ACX3YBzK6LPrgFk2t
zP#EiE{@7A{?BEjzpOQ~5$5xGtlQGx}ixx7iR_c&19DGT|<)V;_uN-_$7IJXO!8Z=R
zb@01`(+<9K@V$eR4t}Ntr7!-YgP%wure$l0!aW7UBZ=jLmgg@Hex>$s@EaFptV9AZ
zC&-`&i|Lk?l89fHFP-5Ps8t-CrH;BE`_sW+4*pJ$ua_4rlwjR1s}UK;IOpKJg9}tR
z4%oDW5psG!>^DN1FhoF{8>xEP!4)o|gL@9HI=JTGrh{7!$llkfnakzAK>?p21}>1!
z7mv5oYjlUwnqC*CkcQ6f!Y>oZ$NlBLg9lXgF8kgihbu3V(?u><Mk#w$kqs7D5chp;
zk%wy2MLrk#T@-M^!rq*GvfHf~3zLc3rPiWmBb2eQiy|&+xTxu(sEcAQ9&%CMMTU#w
zE=s#7;{q;9xG3qORQm7oRu_CG7X^(zNHjxC9wdm$DC>d|b&6g&s))+sr|J?2@y7I2
z1s4yysKOt*sOX}Si^?t@aiv$wjaXXLH6@@Z-bhfF(y)Bgl`!CHE~>kHtVxnMSOQ4M
zY5B&bn24$6qPB~ME*iOrxezWAF6y|5yOMJ<T`(@uBVD*egc8lsx-ROusPCeI3vLkS
ztI0NBtka~i$2bfrHny#Jy-tp#izY6bx@hczM(O^&&AC-E;J~1qaW2-(mEGGoZt0?x
z3)O|@qP2@QF6OzI@1m`Xb}k0G806wH7wuj2bkWO22NxY(baBy@H}!9<lPe#~*x5xk
z$x=eRo=?_JQgwH8(cMK4S3*Siwr)F_R%V|Z#yNYtNV(|iqMwUCE?B_D95Ds<<LN0H
zf!s>^yBOfgR_AQ4%h(#DJr}2^2D^BiTH3{A7eh!!7o%N_;n!RYcQJy*=foO`JTp>6
zAanE5*t^D+P9+C?F_JLW#W<JGNWw%H<6STg!)OT=H7QnMMrz=kE^O~WcZP#0E~dJe
zMf$s###?YP!^KQj#&cM#P1A*K7@3lzzh7;nc!<4EiBxehm)x7yQD4uOWti0J3tTL8
z@sf*mE*801?BW?0t6VH`vDC#%mvAF2bFrKZ5ECoN)s<wanrwN|S<G)FSQ*Xm#ginF
zi>F->8$f&-RX3xNL>Fi+1-+GLU95Jo#>I0ko+m?&mbHg0m1T(d1s8`$#n-xc(Unk>
zMUP0Qo(4AgoL${scJYdf%`UdMc$Iwa;&m6BTx@Xhnv0FDRAn-&TS*Y&OFQbxJ`ys)
zi<6gle1ptfKa(flbg|XNP8YjeY;&=loReSd;MMX;SDkJb-Opw{MbQOfw~M!2WVujW
z%!!F%bp(MTyeY2QxT3Ofo27-i3&X|lE>62JDd6NW7azE=T{tfGyEx#&b>X>)$Z{@x
z7Xc|lW@a2?hFHBZ&Lej*5})zaJ!HZgvAr(#xv~(3q2@LRB&M3aPvaS>gD&2taJhKb
z#Uav)-*Iuom2nJWUs>)!TY_<NE-}M>f43LMTpV|C!o_<orgWEi3L?9HIMXtJt|oK}
zxbKj?KXmbti*H?g=i*}*pSbwK#h0YNi_ctqp5_oL1ol*<IZEGzsZZ`rU%B|&1vmO{
zT+nAB-PkLJJ}(<+oXIP`ckzRZpI!Xo;z!EV+1O8%XwtBYjEXaYMEyXQilK~OxhNCG
zDHp%FU~rouJNmrbEEr@UKI9D7)Wv@;?oqG0_{+s57nfc9?cyI77hGI)ahA-`SDbTk
zp2RttP#%#>&*Ir#GX?h)W`4Q)|MK?p$c=#3)D;(3UEFYS)5SFxqzOgfIxl`Z#_$CL
zdbDzHxw!4(j*GkGjq5Q&CTKHo2jTU(by7kZ-nsAM0k=XAg+1i(kkdn65BWUgqMZhj
z+e02tg3=kBr=i7~Q#v@Scg6F2DBz)>C#`FK#55&$6V91);Bpl4P}D<l5AaaTLxv}N
zt&kdJ4<^Q5jj<I51B@j+l=M)_lT6Dn3-L2-9ZXd7*t0T?Th>E44<CE@#KS`#%6pjU
zVU~vq9v=44+Cv);6+Lic5+33nDtV~v;Smp2Jk;<|(?eDMsfTJFs(a`?BgN{=q041G
z5iM0tm=S>LGvc*8)b<ebB*caOBNvOc9wf`887b<hOb-bUO+7U8P{%`E4-Gvu@=(vi
zm~NuJhXx+Dv(r&KS=vB_Mq_}rt4R-yJ=s9Ji6?6<xmf)2j*)R9%vm$o+>`yo`D*E*
zg(q`W46kvo;h9$HkEmzb@`t3khru2m^U&TyHxJ!C_QpX+4_!Q&2JPhG`I|8cU1tw3
zU2jgZGvmp`Xjcz^^z6<rkhgny=;@)ahkhP<kq91AoR}xQcsgGMxslu1cWdR06q~Uu
zXej!77~o-`$0tZi3uocc1T9+@86BV5apR2C;~s|a#yyPnFx0~^PJlfO$pAxh5BD%4
z{gwr)M5nVxgJ|SY9!7g`XQXI^5QMN}aD1GH@w~W)DYXAR=~7MfFv*i01@nv+AIwPA
zyAr#anMq@q<eKVXnuqBgxUsU?8snl|pc$Slf@Wp0BpQE6`g_>nVXlXH9-iYIJk0m7
zz{5%pPmmNj#6k~CJS_FF$ireXMt5;+WCqXM-NZ5v%gNqnV=H)_d3iWsSr%g;zt51y
z^OGL(FBMOFc*et19&Qg2tQjPTh&prB5V6X`vy_oi;^vGL$w<87Y7c8XZ1C`!hZjg>
z59>U<?12#U7r90ren=H#nugTiv1MGm;^9>fH-uPEHdrW6viCj#0ADwk&hJJKuY1_y
z;Y|;lJnTD_?+p)|J=}T_tG6-9m>Am&FbztTwbhfY2H0L;n<t&P|4)N*)8FY~mxnzb
z_IlXu;Vln_2h&3q`Kqx*@Twl1NkU1#WnTr&gYMz@Gl^cax-(Z54i=UN+e1L<;5WIH
z9z0IflaB&nB9eDaTkHD_*%qGqbKUYfQF=|Y(<G&OWEP1~>H-Zj_j%aw;fRN$9u9ao
zNMefI?|68d6T2Qe<l!*csct3}7Zntbd?G_twhi2nB>LrD563*b=i&YIWsiIE87L<_
z^qAd+Ys8I)#}7Pw=;0$yKK&hb>t%yPp681(=TAL+=Ao94+CDz_@P&svyoiS{J$&Wi
zHxIviV65hA58qLrq{rW+kKcM&QCf`8PW<5EM-RVv_|?Nt9!`4rnTm*c%(Jmi^U8io
z+_M-o<69~adfBJQ32nrht#Q^noc3_W!v#{t13QZU;o)x&|Bx%VYE&=F1v_Z50Tg4}
z{Pe7ca~{r<hsVeHmi?ut)srRXzckGJ*TW?b*F0SJaM{BZ4_7_e9-JvB{v(599Ly^w
zt&|%cZjw((WL~YZ$e1Zxtuk@ROcwiglKoi9^q+@&9!mQt<Kw<Z;2aA2DC8rDkDNa8
z`pD-amyg`Oe6~v-U#>V?zp|Wx_sFCwo3zNTp2J0c9|e4A=`oGY%6-OQ3;QVIqqq<F
zDC&a*Ddr=?mp~MH3dA+BFq}H}Qo7l12_GeWl=5Zlx6aHI$#v~`S0;adnH^_#tgMd;
zJ|6Z_&c{PO%KISvkJ}A1GE96kBv{c$B_EIasOF=xk4Jn|@llmu``<$)*o=|!Sau~M
zSvvF()qT|PWdyjUkJqlYX3s80bomh<-!NfwGUh}080ce=kGPLaA02t)J`z6a_-Nsy
zrH{Hk>iJ0eXzZiDj|M&(`e?-e%~gj);5`!5P2245U_r*C4cWv;Qy<NIG$&P=;7*F!
z+mg(<v7(=j>b?HmJIzeB^3mEyTOaLwup9PAV={PblOB`3AM?Rzc6%Qke6U)x<=Y9q
z{r@9B?d+qAkCcx-KDzS8eW}fQbIxI+yN{kedifG0+#`Ktw_!pqX#m{KAy^i~cocCj
ztdi(U{EshpB^JeSx9aa>fDaBv%uMmf^Midn?qi-WmDLa*Lw!u}G112`AH#i&_A!Q&
z^uaY9>0?xSz}4YfJ|u;hrMdIOSYJXk$N3n~FK>@Ce8)l+=3D7RvzT!b`NYR`A2WPR
z@nt+`s*h>B{s?Ibww@O!dXo<Fvh2i6AG3VS_A$o?;bDwB(VwEt$-AEG!<-#wO?3CL
zDBsTavB1YdvX+l!K9>7f>|=?Kr9OV#kz}`OK4YEH2DU~aJN@!<dqx*m_*m(KI)`uw
zHnL`M^b<aKeA35L>A}<KBhNfTe*WM1S!$KZt$A{_k2OACh_E)o3qID8h5>Sfc+tm8
zK6(d81z6|fWgnM)T=DUWk5_%X>*JV@^*%QEFn9~(OdlJ4Z1=Il$Ll^e`FPWpS?@P|
zZ1%B*652_6BJ3QsXl9CcL6eMD%~l`VNV>U#w4$xZo7(APmyawTijUns-tuMgomz`M
zMo6>{6H{4sLM3C6EN5eSn!C7t5a7z=&5N<iD}+U1@v+~>0UwSJ*GK3h^5Id+CU){k
z0UuLu%7@g@*QT4ZerAgHWVVkzKKA<9M@HI`<fr2&$rd#1yhr<xMlw-P2YtNl<1iPI
z+&fDg@?q`D!yT6U2ra`Sl(IhE>AfEHC47j5W87!?psV9PPWbqNE9m1r3W$#{e0)i|
z%}jmZ<6|G6`1sJrM?Q|uOc82A`0Hpj`Kgc3xJFcH6XP^aSg07fiIX!^5`)3UfVsq1
zKECnst&gvL{COuv)lL4PE&81=Ykt2cRgWgwZ<D4t>n?xtagty2@t2REef+}j`1swI
z(cNEtobqLunl=8sM-JF=^fWa|MRCT*ALPR-V(OmeJn{_xonQFd$3H$U__#=IQ(Bz$
zagJ+EB2SjJjl>=GE-5E-a9XE-sp5*twu+a?JTp`D+E|86gxFOd*SH)39u07v63Uqb
z$Ov%L$1N)G0C@u3_Hl=Lo($>ZZdyhB=i^>_P@$aob#t5^0iPGfXItb5kTa0RaIOGM
zzEBdG%4by$HUH7SyXFm$FF>IHg#+XdP#}<4h=PH{LlO~DU{;E6Ia?ZyMFJEJ(5PK*
z8h**@qSo#>KOzvicmM==C_woDB?3OU7G(mI4e;jB+_d^i1t`sHs!1Bmv<WBgkZtA4
z1z^5_53J!CqB1H3csM}C0F?r~+DROrAmO{^m<SH=NPsH5R9TU~si@mkf}M8Wlwtg*
zcE_u6k^!0pXda+OfSLgk0qO*(6`*zi5y+%xV^ucc;rwF(*#3y)c!10R?H<J9XIinq
zjgCXz0QCYS12hg$KR|;34SAaZ_>2iUj4a0I2FI9uvZG*cYW4<f!nLTGqiKNt(?qo)
zarROmMu>$TEdsO*&^bVt0IdSF4$wY8hX8E?wB<hrcr1{6cab^r*<0j+L;b~>o`T#s
zmViK!*)af*ozh1Z7QNj>y2B+!X4e2c0-W5Jqg#OPy#6I=-dC9=J2UhQ&?^9OYrMg=
zXIg!6H`XUWU#@k4C_q2XFu<w+&juI}U|@hr0VW3+6ku?GQ2|B=cs#(60K)@}2+(v^
zszl#nLjw#8@Y&|%rNc6>&C;PA3p28}$_9@k$#`dDZ1y-Nz}Nue1G&YI3*;`qo}WxV
zQ5O-QI3d8qKw=CS$ol7&^hT!yn9Ah{u!0;IV0wT#0p<pn5nyJ3SpjBqJ}qP$H(CNL
zrsEBg<_xOvxAOwbPyZ47?eJ}nS*e|a;tRN%0sjA~d5hA6#Q~Q5@66Hw%l<c}f4VZj
z69Jy)oM)w;4A8Nnd|uU4oOUVcHNUeqQJ{>>UOf|lNh^Ydo(u3i=O18mfYkxk1bBsP
z$xj2UP0wUq05+d_F_0aBUJB9yx3bbjV&?kg0NuvXeTb7F>jP{E_)K=GieC$`F~I9&
z`#Q3k#v3ECo%DCeIgGK_4-)KDxrKZlKntJ;*cxD4fZYM!3a~xEjsQCY?4q1biPP9%
zB8*S;U~L`6fiYob;b~uG@!|ngQf7OSh*l;_sFdE{9p_W7i~wc;H-Hzw3Sb9tcnd{E
zu8M+P8kmw}_=pA3ga9$8!1I29fb5zfnCqcG!jk0d0DA)b65!VWdjsqX@CgYRV1IxE
z0geYa5#V5ew*wpra5TW70Ea1_xy3tFFD!F&lT=E)AZboW!@B{N&Pp8%Wb?Y$W~FFs
z_gm0~UFqHn@O~g2pN|535a7cA*{AZcd73pV#ox+_{S#x&!p8x4@?385S%A+2d>i1q
zw6K2>;Ojt^rF<FSs{r(;=n%1I?7CjE_~jd_xbiX?@qK_FNYb(KlL3CDa2-ngL`|ES
z$&T6lEe$G;`RUK(&(b|Ajf*qPdn&-i0RIN~Ex_*qPV?dc&QhEM{6S6&@OOZJIP(B}
zXbS;ge9RUHG)md1jfoy&@QzQCF@f^|E~I&YF$6+ADNXdLF9o>F3G@_q16&Dkm3ltF
ztpL}k{Q1A<VmHW#3E4@5c0Tj1gu&3)<8N=LS?dnfP8->yyL(%~$29Od|51koxF5)p
zSZ+y-w==$!GeoWsKZQ6MB6o;9A?Alz5F&4gd?8wdXc;1Zhyo!V4N)yb!4QQ)lnqfX
zMBxxcLLfwm5Jf{23y~3`I4@XAFxpH}t=nJhte?q8Zt<oVWGES;REW|c%7hZWc;c^?
z^7#u}l4Z8aY&do4>SE%d5amNu4)I8c3Lzd2Q87fN5Oj|CDN)BfmM9<?&tz1b?ji5D
zN+>%3R}I1TI1E@(l-O*fdWae!>V~KnqGpI%Aw-CHDD&(L{MHT;<J}FGk07M^`r&Aa
z!Oje6OQTK*RzNcmvub#pPp@NGtitwW{SXa8G!D@uM8gn`c;&((8G=D+Ha1^&su>^U
zQ#zM8zeF?*Wqn7p5Y0m{P|4}h>V9vQ3^Fij(kevj5JN%?4bdh<+YmiN^a{}~#A6}4
zgy<TgeTWVrI)>=PRoIX`u`@~Mf)86{WVLe$cFg0Vb9{1Es#}QeA$stbu2p9Z2;D=*
zNckknp({l15UCLTLktMfhXfDNF9gjt5|FT1B4Oy%Gr+>A+Q1NlLJSV^IOp6|n%^%D
z6qjeESYcgmVE2DY3APFu7Gija$swkM7!hJ*h_NBYg%}lLH0OUVHioM(O|U;OH%A7U
zY4-D$$A_2@Vq%C%p$wTauSz0pDk#`Bg$bZeEEQ~&IhBhWVs?l*A*P3z5n>j9QeOUi
zW(ZpEEG4F-@Ga@U;`g~B=7q8o)X3(7_9U}!%xe%@urS1;5LqD<-bIKdw8lfc6k=(J
zWg(sku`0y!5Gz7FMY0zaY$&%f#1kQ&45e;iVG*NbtBKouNZMKqR6ZSI%k$l?lo8Kz
zhHb?2Ay$W2`DXmN^s(MNu_nX|A=ZWx#z`0+vpmf8aH>q?v3_%1h?hfb3h@Rh6JpIG
zu|C8GuKtDCtLY=JK)3p}5F10hPRU|>-ob)sgvleNr^CXc&744p?ICuAcr(OSu2C#=
z8<${sTz@>yTt8WzhCN;BogsFG*d5}n5H!y+Du`>HWp5LL&p#FoSd32<p@z^x91Za<
zxhRAYA`B6QFiC-Y!U^GqutM1UyG63IG=s*$1mW@SLIkAk_V{DHy6?y>KFKeAG45+T
zlO1ADh=U>C4zV}Hz7YFE93a8_$`mKtbJ15KZ6Dht`^)j<p%8~dyc6OGx&09-%e1sv
z2E}9nZ<(>g0<%-cLL3kAd5AB#$|2qh@iAp8#QPyW2=QTvkGQhUC4`1C6K1=1CuL;p
zDz7t3d`ix|7W*s&n^|#sd>+dCBc#^-GQ?LQz6<d^d9{i7I>a|2zD<uSyw~Q>gecje
zdvWFf2gpaM{t(JOem{~#=VTogcXPh|Im9p2BoS&w_%+0-5cfjd5Aj=w-$R@aaUsOn
z=7Kd8r$d~fMx8GHAYX;}J3an0&2kKM{F5G>4RJ2516k?Tc!PY}&QIxnj~7Gy%YP4X
zo!TtKWh$-?;wtH|TwDodL1pp1$!{{+@FWL(dn3fn5O+z>5`qsXyv5b$y@w!GSsFv|
z49(Q9(sceW{T&947c3PILga{0EJ8+voDp(GC>+VBjOC7yCqn)R1tR2)q<xYv0(VJ<
zD5<EWa$6}1(&7Ct#(LO75m>yyS{TBj;&)?3B3TexG<_s!nd9OS5TRm(N)bv#C>fz#
zgoh%OicmU2nFwVgiM`>M>4uX(iPE7<o7uV!3->4^<s(#x@Ngs_9K$paYq41t!T(};
zROJYdM5q>_dW0$wsz!J;0<+uf#6=T}i_Sh;KO|)=h)o`9L=u@vvE@m=tsNm2VOWIW
z5k!P|gpLt9MaYbhh|nxT^9XhLlL!qXG>T9!Lj6cKuV@fS+yWCl+^q-*VZS44q-2D~
z5t>A3%K6kz!{ko4WV@}+Ia)Pkc)YW8Oj<-}8KF&twh>x!woAlk8<MR__Wxv;a>4*8
zQ0*c-7NLEF4y4aw!OE#u(pxz@#?0&?_+(r1dFKdSBJ_*UKSI|C-6Hgi&?`dsNOC)0
zJtEn4hyCsbpNp;DmgJe<5&A^v8zIG8UZ1QoJH;cP_eW?1fej@qi^-G4fCz&lJRV_S
zgh3J5jCW)w+0cxEDc<0aNIpGnXoPKNTJ~uvxsI9H5fMg4m>XeUgi#SjN0=00a)dDv
z7{DACVSIWpHj<CPCSshh)d^&b^hu7t*qHpbK_;6ROo=cx!b~z!gzPz8rbU<@VFrm=
zTc&JyWOu&hb>-u_W|Li4rW>M?;8$bx_^6AxJ<X4>Ai~NBPefSA1&XjV!ZI@6rZ`i>
zi^;>h_q<Z8GuA;B#KhThe))E6MFavGS;I(LvH0%E2v0?LHo|ieo{sQLB>kyXk*r}M
z9ECX%!mSGpkaeBUlOKGnj<AL+&JLdg;!J(AK@%Ui&~|p}#RxBP9rvKa9;}P-GO3h}
zdD(a+!mE_5Y!t}G`Uo2$9FK4!!fO#WMld5-5nhk5DZ-8jJ0rXiVRMA7BzuG{5#Efz
zZHR14Pl|>gD^Lc{P6f*|wnw1;r?4<&#2oRi2)iTb<hMOCN%R)!A3>#1pN(auk9<Hm
z$69(!ko<2Yi+`jf84)!&?bnlwI|)026JcM3{S>GOUWABCLs^&sKSB^8<V~HAm7N|Z
zD2@ggAHhT2wTCNsH%60eFDai>;t=?FYkDFFA{>nHPJ|;7-i~m;sW=qjFz<JJoEsDK
z<Fww{d~8KdaWulaBvA{d)WHh7$&X5?Dw`Uyf^1g@@m_@YBb<$JF2V;9K8)}U)k1`i
zxQG!xi|~0QEfDU)pG5dHLisl(laJn><kQ5yi11~EuOfU+UAHAkKp?+XdW4|;$z!{^
znS_Xc7vcK|XCnL&;fDx6M)*C#X>xuf6A+B?vZ-u%y5-3TKa&EdTmF(h{+d4W?WqXA
z{ck*Lc8UfeyY0PjImTxk{~6)02!B)2rDsK-j*$&skaesy!n-Y$d)9dhU4+||;s_Tb
z{2Sp~gzFJ5MYzm$k8qV@!UrdfkF#FvQfrAgr2$Oq`eZk8BfXS2Biy3!K8SH2mq4AB
z5;;$<xEtX=-gP!|W#b;{AK^iS9N97@#C{7D5H2N?5u5W0qFWF35V^CFCmVUQkuMu;
zGe|$W?e!QRgT*6b`%Lj{nb@&lHVS2<RW@2@qi{BgWTR#_YGtEnHi~7Vd^Rd%BO@Ed
zvr#%5WwL>6l*mTOY?R8DCIla<+t^K17%gR)!M9dJy3_10n~ieWcqki$xHG-NAojvC
z5|KhPl416Tvr#b{RkBev8<nzAIU9+^;*o5uphH(df|1BbEc|4Tmq)WvEgRLdQ6pPg
zS;PgA+ld5bOHww0>D*p4-I}bOjaW94*=U>%@qaYE2ecH$^Zt!uKos!7fTChVacA!p
zMJ@^w6ch=Hs{$rK1O)|@oK(y?=M0FL^H<%;dFGmP&N-o&v#9T<_xJwK*)wPE+}YWl
z?&|95s;8c+t6JCYb?s4C6OXNHx4L@P&0Yhk<^%GaBSkr}3Sj@}RX3V;&$@ck34_eV
zy=R#lC=1SUueyN|_N!|jx{<PXjbq=sp0UlO>(3~xsgO#1?=HshX0t!2u6^q|g5juZ
zzq$t3b#Psy>Kanl{&fwnYeZcK)HSrO1M3=A7r@<f4lxKH$}appZ`jD`Rmiw7s;T|Q
zj&fvO2k~2JGqadsJ!OxkL+Yy4HM*`bbsb9I(kE-yJ-n_<Csx@(U_4(qyGE4?vNaEH
z*9mra_CaIoB2-H5=TY2T*Hpxyu4C#NSJ!cMO{!~rT@&g$wyueFQwoY06RRP0hncew
zuq>Hj%I-|A>-f4(sB21{f<&f<;DdLz!1jQNe#QxgoX{X8>Y7&9$#tDl*K}ULXA_?p
zjB+2V7&8(G1k2ydx@OfiyRJEPeY&=Z*HdGNT?4ONeQ*ea&f++~t_5{{Ue_0OEkwX*
ze_apPwYaWR>$<M4>+3qLuG8zfsIH6aT7uZrb#7hf)pcfFXVrCfUFXy(=TxQTxB;=y
zz$rl(g`1s4|NOcxsO!SUxU*>@M$DaTw3%p!ZfRXYXQJEdx~8tnkjy@9udM5;x*pxY
zy1a3`qA}?FiPMZer(<dSwe;lJkxOTrEg>9<OD9!tsO!eM?yT#sx^AlL=DL>EwY;ud
z>bkYA+v-}1lrC?<`OlPrh6Q5}n-+qs`+GIrUe}7c?x<@eF9pxl@g~@WFBCR5$obhu
zF|0ez?sRuu_tkZOUH8;=Z$mO6RHOlfVjrmML0)ifmD|{=KQ_BY?CJQt`4L_LiK^?_
zy8c(!V|9gfMRh%1*AsO)b-9h_)a$YvA6!Nw8WhkUFSNY6e7bJ;wn1Yivdc#2w3}6<
z_6<;+xUQtGvaZ&;(z-GxPF)3kxRC{#W$q6Zvh45fXzf4K8Z@~|bY|t+){}KTRoBx<
z0$`GMhUatNJFDnA{(P>k=j(c-t~cv?p{^I}dZn&c>w2j%YA-X1c4~X^Fl)vfV<Tnt
z=GW?a9Z_ksG1TI%*R(u4yGF18{qR;@ZzBnHeO%W&b-i2HdyN<TjFH;wAo_|W>HWr)
zo7cBKU_|^rA2$A6GrPuu`w4BU>$AGv`lLVG@M~uqrrZnKTDQUfP}f)JLtC5M`ns-F
zXydy6t?Qe*zOC!Gx_+-~bzR>v$LspJE>za{b^TD+k0`X&6;?@*R4_2m20RkH#V>WU
zL;1BaUvLhyLt%gV2h**tHK?ya)?W=B{x|b<AA^6!&xXH_z1Y<6Dmy>Z>A$+#*xJz6
zMz+?nwYIJGZMC!2*48?<*0r^sE$kxt7JnvmH*DK)ztv><ozbhQ|IuwWu+`o+;gZjq
zj9`;*%XH{qtD~*Xwl=ZV$=1fUWE=bv1;y}(&~mC>5K2a8ZrZrczotIYf-s;wyV%;o
zmSwAIYfD>QZEb67J6l`X+H_8h{EKaDVI*&D3m%~@Hy%`(Q|rcg)jW24TRYg=+14($
z!9eb4YbRUXZG+mvCkCqqxev?;JgYry?P_b}oLa>e(H0aA+eV&%_n3=Kwwi72ZL6=X
z-E8%=wWqD#wsyC*hpk?=K_4NCm>KlsSv{=(PT!46KrQqkHK1+nWg9-L-qcKAU70tt
zI+11vE&XimV{4$TLAId^1k=^u)&Se&CSx982@}8A*VcZv26K_(Q`3eb*ehy=pb`-R
z8gYQFp|*av^@ptkZ4I+^r>(ne4YxJI)=XQocq7}835>OMgsp>Y9c*iqtwVT6TZh}K
z**cWo=+exuW3RHX;`iefDE&Fw))?Cqq~lLS+WMw~az4`5QMM-AI^NdNwvMrNtPQ!V
z#@QNg8z=b$+km(Z_nWB%&7bE_H6;wNsgAQX$=2!#RsN(%J<Q}BPp~z`)^uAlY)!Rw
zBCUPA0~tmq*(UOf;emC{$+X5ZIXRgIPwe#8oOMpI1qC9b1FU-CoZ4(&!PaG5v^Ce(
zJX>ekI@{KKTMKNRYU?!HgiROPT4ZanZCDOy5?=@Z4{o0z*Xg#F*gC`3nYN)81a5c7
zF!TKT;^s}}RDsjuEkDQBxwbC0b&0L>Y@KiG0$Ud%?Y~tBVdJwRBk3Yr*UYJb0S0Eq
z$?SR6d*;+GwS~2L!>lS;G5`-(VEo&<#n!F1uCjHtt?L;h+u+Hsv2`tdZmYE%PCE05
z?glo0-Pn;Z1>I=tCR;Z*Zo4}(6hquV0d80zI4690o2})xZnw46)-nX(Frx_pvd(HU
z>D4Q2-C=8G<Lhu+p=t4=v*Crr?{35o0k-wFt$S_VXDhc=aHp*YY&o`ETMycL$kzXC
zJ!b1+TaVZRtMjOBq8P-HF@DHuq+SvfI*;3W0&%rv+X9@AdxsswkWt3#g?kDpOFpOO
z(aE+FTdA$UR>;$A#R%16izNxZ2zXuC{1O#q4wB71Y{O1C28sV>%wN1`b801BWa~v+
zFCmaySx?&7QF_+aQw*+cc(EXcCH<40c@E`Z>jmaQ)p`nUtF8vAj{53G641%k%eG$O
zy}quzVe3^}uQkqJXK??kkORwg3gK~NCNdG;M3z=nz#+V2>s?#lAXK*Av-LiD8<G2?
z@`0@nZGC3zb6X#w18sd`>r?d4-0F3(xh}DS$yG)KCo^uz)2aVu8;A3kw!UKW9%sF~
znbqd;7ECx0>`Xf1$g5DB>sdT`wQb0Cf3WqVt?z8nMc+5B5MU*u`jbtBsLe07er1~X
zvVLYJ_O{5U_>Ep2ZvAkK#nuTR3MYTs`ir^m=x|4W+gf9*hofB`{bTE2G_!*TN&neu
z<EX8pbsR$|2hN$#T8^P#SlbcIa$H>3(Rz;BJKE6E`i|N;+JO7fme;lXG^Yj=3nup!
z0M1vo;Og1PQ3ppI9aFCv4T)V!%n`2+Wq0JLv!m@CZSQCkN1Hn8#sjyoHgmMwgzDyw
zsVfBQ6n)->8?t76R$DmYxMkzmwQ=0a(bkQVZ5l`Zi>k+p-j;^_Q6Ye`gQFcCb$7J0
zV+ytG<mk3T4f{H9VhFB}9Be|XyEuC9we=uU0NPh^WI5{RXdg#aM@<fdqDI3v(<(=M
zI_mAHr=#5+?cu1GV*s}}t8vS4vf<ns$1cMSj}0&Km8=#=eH;@x0$MhGs<rxtD*lbV
z9aC+jucOT-Rl&jbcQnA!fsTeb8t7<{qrr}bIED&-Uq|~nqKFBMjyRBiJ#i>$2>Uyx
z@Z158hB~Ik_k7@3KU7#mww^VTli~E6qk|odVo*9;BRN?->>$U4K8YQ(BoWv;#8J)B
zp^k2xW!&jFuUM(MnfNvT9qnk0qq7{H?P#o{BOIOV=oAOIzK(J<(a~{^j&^hmL$=tO
z;Aotq@eFZW%fNcKu(q39`)rXx&mQZT1Y4%?<(&piax~e|R7WTBUXD&^NY@nJ?xgCV
z2^Jqt2&}N#Jju~CN7Eh6pr7|M#7z`(-Qff)?cax>6~c_QGt<#5M++P+bTr#BOaEL)
z^Be*DpF?XWn>vhq<};4yuC+}36ra^1#Msekj!x%Yc5iz9K<iXTki@dHzyidiU*hNt
zM`t2Y)2iIShg~6F2&_9?XXiM&(9uPX&gB)xRL^sCK3_+uhFTC&(y;@NGTnPIqeI6!
zy2;U{yr!e89bMz-az|G<y3)~Ajv*ujoHl7glMGIc_$PL^C?@jYK<ipZ*Ezc0(G3k*
zg(8D|pBXDnV}MK5dK!&=v!h!at#EXQqgxyEZaD&mR6AxDxwLUy);RJf-r(e+W-?Eg
z-`WD0WF<q^z=vbZgV@AkyxY+|j_xaTf1!Ih;W?3(M!Mh81CHkUn&<05M-MT%JazH(
zFw%(RxH`<$qmKTEu5h)EtH)@tqc<GA$=f-qBNEu^j%-Jcqu5d6$YrD)g^mFCvK=Pd
z*LM`~%9|M%H-Dl-BFBI*AAPtP$R&QK)KTH6bd)*Dd07BXW2@v`Lnc7zxz*8=j?k6}
z2EcMWC&zcNo_6$%qh}pG=jdfeuQ+<%(F=}Vbo3JPaH@q1h#wlakx9rxF?z#CVrjhU
z=-BS-zvk$5Cg3zPRc}uWW(kDe-g9ejIeMG9=IAF!?>Ktb(U*?CLTNa9-_a+IK6Uhg
zqYoW@<mh9xM2m&*i1h-@|J&bIu#K5wh}mb3K6eB|>=#JRCKj$><}ctw?%6$U{@T$h
zN8j_zBdgyy`qt5EN8dT7p7Pt@nCi)FtD$*6Y;KL+D6Y#N8h7G>fkNtMN542)gEDVO
z&aaMscl1Z&SAJ_8`TC!Z{vF-%FO)z1@S_2`zyF&-#uCM5;?v-N(f^LxxP}{nw2`%3
zoqATMwOuWn&}l(G12e{j4!h2}uGVu^ab>w$-&H$T+kaQt#?=O{+Pm7=m0WG;Y9rV1
zB6f5Mgf(|?1wrDEwT@i5^(2ZYi6cCU5bSs6HdkF-ZQ*KDSDU%o+%?HKkT|{aV}+bq
zP8ctc$y>VW>S`-jTf2fin_6a|oqwHG#a6@s;~ZpBH&@%b+Kwi<>h5Z1S39`c(bZ0_
zv1W<eVi$pc1+q@1HfkR2(zxD(Uv%~SNK+XNDmH%Z$cZL9rs}H6RbN;ATwQSD&}LUX
zUG46g`MX==h%<Z-SG`=dxa#9-Pgi&$`1E!Ke`ZsUT9*+f@p&&-dpG(4uQfeDHDsbT
zZ29+b)!)^Du7<f9;A)_&A+Gj!HOSSzuJ&^^*wsNdwXkSnhg=QR_Uj5jR+37vNuJrp
zI)GQ(+8XNWn*jzV25&q!4|g@f)hJhoxEjgVT`|fByCUq1K7jz4P$`BDlnxh7u7U@y
zxh8%1x~bKBSGFAPYP74&RqkqxtFf*wb9K3^BU~NnYPPF6u8!i>TupH`m1nvd=W3#>
z<9Pj_E8|^FaCNL}^1dH##0aMJH)trZ+>=~Qc6Gd~6A-H3D&#Bx00s=ekWo^K6G(MV
zbaj%eQ(S#Gy*AC&bXPN6o$MM$XwXfar&#~%Yv3hh0bnDs+{|<}i?7VBfgL?#ZtdE+
zwYje5xjNg`Ij-irTHxw5SEsvL=xULx#r(9Z*G9qV*V6q+tItg>IHrKoVef&|TH@*q
zS7-8buKsth)wE#bZlrDQYHoO|w{^DN4_oV8SLeC9$koNX<6o8YkqTEA(ot38F($!^
z0s04k*4-_a(1xQ-GRvh17~F%$Rq?t2jlROwm9Fk}b)T!NTwU$zHdjksUE}InS2w!4
z$u*IM>s(#$>IPR2&aDA(eQItEXDk~EB=%-kw{ZUw>sHtJrpTj*#fa-|w=-+*GFQu8
z-Qj8_)8uC(61Tfr!3a{-;)s!u2Yx=ccBiYmXuqp_7_5IPJmIM$tiR{hutx4U)i~ba
zM!4VA14y{5I&E<E5Zaz@VGvhU9&Q{T;ju?l0V{sk-Y{7`hHOl;_&n~4XdoAR9AVZ?
z+m+)ga22|8U3on4zlu*MC(Z1>S)tG>6hrB@j}^I!T_vtkq;80bj_uvndZED;&&-8W
z7asD$Rq5&jB*Zn9TU(j4u3m8Uq^qY~J&nxtu%6}OP>X7e&$!~qm6vMPbB&AGkT1G=
z$<^Dg-f{J^t5;mT?&=L!uOb+{SJVs#7wY%vLyRec0)NvrtQYK|-l9v_w)Vfa<-RAH
zJAPkzm-oHi)LnXy$+DTnIiL4kafKpHAG!M2)nBgucJ+y?PhEZQ>IZb7tIu71?P?Wm
zbM>XGulV{+)d6?4;J72w4fKLwC8)M<=tftoU44hV{av~2nCd})RH#kXcDnIta~qD(
zA6@<A>Ni)vGeB!uKfC(H)vsuw<|a~K0lH)V6N7*jhWYphYxETBPju|O8lh4G0qw?C
z*SPuz1@37BPyf35&sAGb>v(G8X)RA{d!o-N1qJWl+CUjsRhSV_h^*^rJ<ntpuJ0M9
z5k!c21i}Gz-D6&@y{8R5ZR|;&HuBWLQ%6soJl!$GqEa5YfshN$XltdL8xChk0y}%!
z#M7ppHuHojPF4%aP^5Jam{(&5w|<X47)V=q+R{_$snt_gPg{AK<!QF3tvzkyX}G5m
zp1OJ3)>AJ}dwSZ=)ApX4JT-gT!PAbOdU)E^(@vhcd)nF4E?l2oC8mrJ5<X_C;()^1
z#A{LUWO=H3I&`v0ePYCM)|tHi8C7BsyLsyAnL4MqtoiKjX%ElTJk{+jNEd>~d2dfG
zp7!;$pQk?bp{M?y26)=rQ(sU0JniF&*N2CYbp-R9&^hY}n~@!7SOYx`YW#QOn)Ua3
zR?E=?;c$Robg(CO69;%2>S>6l{b|O27Qi+TL=^W#P!IGp%#%ONyaJX6+6kR7($hhn
zCVD!~)4`rbc{;+=k)96mRP!{(6F8GYJssxha8IN8b9oC%BJ7|6h|-u2zgONKQ^ha+
z%!$>po-n%bmR!=yI?B^HPvbpG_~{tWm~-r>2ohmMfSj4&iCS{UdWOLgdNE?4faoT9
zn#>PPGHi9ndpg0>G*8n#P4P6<(}|u=@(imF9SG4kX-9MpTS)fB%!?VGPWE()r<us)
zrp69|M|b~<p;WqfvQfEwYmTS6p04tAwWoQW=6kB&SUu0v0?&kW7kfI@Gl}F2JuTv2
zbE^d^Wy;XgJe|%Bp3e5P#M8R-tTQ~Fi4;NU*4AQPQ$GT>0qVJ*<LO*}eQI^gyxKIT
zK(8ij@{=zfalWSuJY7iRJzeJMa!(g~y2R6^2-vBnSTJ)9Gm^MAAR?}8Id>i4%2#;0
z(i00A+d%$=sPh_{=jlFA_j|g|)AgQ~d0O6R>J6T5@^mvDwSje`C)^0^hHmk6tEbyM
zE%mgf&u&z{JNk$!6gtGwa5y~mz>sTqv2ORY!qZ)z?q>FRTFEr&(DqKx@PYz31Xl@8
z22+Pc<Q`A=GD%lgK%}>}vsg;NX_J)kfTssNxt=^v4`KX!dd$<~o*qGr+gp!%`X5uW
z9F7whBgYAwF)h$ePta^nwkO9Eo*xVzs2JYKS~fhzpd|_Su;Tl?2y)Jp_Y``HJjI?8
zPd^-Hij0tbMlLNA9~2NDlpDuSAM22NDm)!K#DZ{@>43s{($iC(D!wdVPkVaC(_fzc
z=65|k=jkI)AEVGZTNEXH-qQ=7Ui9>mr`J5a?&)PuuXuVDWmRd~@vfHX^J>tkq3sEs
z&@EhigQ@N5LzKqvl{XQLeOumY9N+fzPUD0t?>0`}^Ys4zyF%YyIBz5<N(N<dU+WW3
zpL$yD={pa6sXk{Sd-~eb7l_SS8=w7jn=hFTn^@#H6Ln?kt@8AZr*F{`lRDzb;o`UB
zOyGt(^7z%ir;9xO;^|jUKYIF!*@q^a)L;fap#}g3KN}z!X4!9^e)sf;r$0Rbk0A;V
zb{8xq{$7CD_>h6?ukrK`TH03!U;ldgkA=V&=5!lhYx!Eo*Sfye_O<aX)wYcz7R4{4
zt-r5p!HYO|rnR20^?kMT#r_>#+HrSt@w|C8+QUQI``WPav}=ztCVEF-oqTokwJneG
zC10ES>f)=juT6Yy>T5Fwv3C<NBsSwrI=sZhM<^+B<!ybp@U^9{uD-USsY&ySK^6uf
zokkY?*1oAH0{C+qUt8Q(1=z;<cD}av)!o<5zOmDG@U^3_oqSP&ls~}-as*?{b_UJ4
zi?1HOcJ)oD5k<$mfH!98yxOK1ioTkB4fS=PuV!Dki}4)x^|hO?o<30??cuA%S07)!
zeC_Frk`29m6J+5|Oc$)06>Cg2PgdT&e1V$V+ZXoX>g}w&j|J+lpRav<_4hS^U-vcG
z*FZYc*VLO@_Vopc1iLMwA*eD`y4S{_gNFFp-`4@Y@pZr)%i_g^#ifb1ALeVguVZ~p
z^fkiQNMB=ojrDbquY-LZ>gzDt;Oh`yHNQbZJ8xKfYOzflx@wx?i9%gNzIwQ?(LNPp
z+rS8V-S*b?ceV@~Hu4BxNBTO(*EnBC`FgdZ#ph@qezG;`H0%Be)o1%!<9)Nk;xmEg
z&oXNhmL92y$N8G%!&s>4d~rK#vacz;ps(Y7ozS>Kw2?L9jAN}6eM64Q=Oo`Cu}Pia
zoW*yBuakYvrhht_0z;?xn(1qnZ~U}W%j&<<BwgaYp)B2;#y!kC?ws#yfv>iq)(N%H
z*CJp02HG#sVqd5Fddt__zE1OXI$h!GF<(o3o#E?7UpM(W)7M$PF7<Vpud{uf<Lg3S
z7x_BZ*LnP|uM23><SN`{I4)Qw=04WK6vLXuaJ?AW*w4Cz?+!5qK;3zUn)Rq1tjm2}
z;p-Y-*ZR8B*HykLG;lS&eWEGjcn7Zj(@ouBa%rza7!I_q_jLne|G1f|z!gYVdJ>+`
zChKPA6jJT$9$&Zmy3N-L#>>}IU(0+g_jS8(SmMbFM1fNRjJ-L{08RSb9Y)))^mQjc
z%^Y-EP_STxhV5sR1|g4oeck8lAzu&sy5H9Wcz%36wY>?XVuA48{g;^Z3i1{o@xjP-
zVqJTbX3RFu>X+x$Fi;=&^@Oj;SM00Kq}al8e7Ow7UlkkuJgG{MktM)m#_ewfzI@-n
z7rDZpp)YWZ-mO&{miS7UZoXddmHEnP24DA8_$v8|uP2!Wn;P5T>Iow$Ob-bg`(n5{
ziD6-vKI7|IU(Yf6dzwG#K-h0^&9R99*7c&VR}eg3FZp^IMbyuDpP;OvoXu;#UibBe
zuQz?e;{lrSs<;^}6D4aoj#*j#@i^-pU+<#I0&N`VJzwwp`pwtxzCQ5vp|4fGzVY>u
zuaA*oU!ON7+9$q37{z&)_7+^q7*rSrU-<gc*H^y2W`<7a(=xU?ZETfH)i3AO(D{@h
zc;`gxTVJcuZ@zx?b@@!|JGysW>w7dzTayGt<`;PuKl%FE*Dt<)^#v6CpT8>ij;X>N
zLaYSmAx9j}fB5>7-Uzf#puc?m%|!FnCeRwx5#Qa@`j^(OYf8o83ixkc4GjjU47c`t
zuVt-3YX|zMufZ2V{sYO_x`EaUv_YWuf!L$1ADAqdc8znMfWLS1`LzuLZ4{_OppJov
z9@1|d*+ii9;L|2ei54nQ=Ri9L+9l8?fi?}aO`vXpHVd?Qpe+M+4b&wtv_GIXw+IZE
z6p96%L+T<{E^w)>0&N`#c*c}Z`;(&zp1Hf#Y1=?M1llpsc7e9%;Y_Qp#w5n$$~pLf
zodR_a#4^3s2t(h;e|rSlHPD`cdIze|;6S?t>KUjSs439!JK8n}CL4}z0?EsuP1vF1
zJz%@Nd!Ri6^$J9a4MAtFzc8uBQi!LeB~Tw4PxAup6=>W|)xLqLJj(`W??4=1ol)(_
zh&1xkN9D}}0s~+e7-$wWar0{+od*5C|Kh(L9B4?OI|8i?w11!j0?i0?a-gAs4h%Ft
z(1bw4XlkI*fyM+H5olzfLjxTa=%7Fc2RbBBjR$tNMg<}SL#ify!k?t@Lo$YWzzJqN
zA(F!b9d}MAR5wC9Hqa4)K^PuG7frK{40KeWqZ<vQ77P(m-U#R0>%$F#Vq9R{dZXvp
zjtw+1(3C(^8P@+Q#|4@k==eaB0<-Rrp>WE(eSaO^5$Dwjf#E~uB1sk}A}#A#Ck2`o
z7&+&h&*-ro(KFL&!}jLSQv%HlbWxy-=_tBA(CLAe1ez0QZlHyM7V(hpEAs-)540c<
zWJf2qH}qUPbTLZI>S&#Dq_sHEsew-8Ti3Tde}dUP!TAqoMeEO%GXk9%=v;&?&{=`b
zMk+}AW%xRo+&XqBB$80N2m<8u>G>Zj7X-R6Fy!+9>51#D1F`La)&?`IOPCaaZVYr&
zpvwYX9_Z>o*U%mWFVIzp&A!G7Nw?3LUjyol>4I=x8|b<~*9W>G5LjilTIjB)j<!Go
zv$%AhS-oz4?dCwY1X>noIlUd|wm?KSmj+tB%+&rv?W1AZ?_i>z_?d4Hv?9>mi#p*5
zB7K8T^G?>Cf$j?QJU!390^JkH3*-j^ZhbGuKo17GFA&H^#^rwGYCs>dZXXKtFtdQ6
z3G_&yM;XdMk1@?psj_XSst8BY$AC|8WOGyxWCwBrxqPdG388kMQNt@(JKBUnxtXOW
z2o%!(Ku^<$f#N_}pga&`lmtqVa9J=0vkQA{e(kwW`xk-AK&^qEWYX=~gf;u)C;i9I
zH!fE6KV9_IqG2q%&#=&+RDCYcvrN5@)+5ZyY&zoXPF#F3&`W_<1^R|r5a^Xa?+5xI
z(5t*}pf>}(73g&)*ZS5Qe0_e6!Z!>qwS;j0z8&bDK<}dVQHg6RtSrPJ(Buflw2dw3
zCRj>7L{$d*JkS?`J`VH=lRD66fhhe0@gT48-Kybu``M;pR(&`hD2TpdYVT%!%~YLa
za-8vFV-k?*NnGh$hBeUdf&K{eU7+uo1%ZAJ^h01AO)O781|o`qA%XEmuJkW~ehmzp
z#BX$FwF$f*)T68d)GO!yKT-aH{t5Iit)c_~`X4pBz<|yEonIqmzIj3Izd&t5trcqR
z(D)&7IkFSKWVu1DlgQ7XPztOYYQ0cjh59<w`k~rkUxiu}YJ*ViL+u-Czfc>7+9=eH
zp>_(@AymguTZZZys#B<qLv0dj(@?kcA1S{3eWi0K3~#(!;HYN|ur>>|d8jU-wrKp9
z+z>*XcqG`@a5FCjOl7N3TZifvYTHoTgk}lDu@CeDO~vB1U1(I+_MvtNjWv!W4<;LK
zw#hywWvP3pokQ&zs&}YeLiGsM9BQ{vyN0TSvO-n)>}I?lo9$#hcC4|Em^cJnnnHsZ
zCpo=msNF;D5vo@xR$J!U1uLp|onRbR5FNLkX~1|bq56c{CshAXdxhFNRNqkjLgNS9
z96a_A3l}t^`}$yuis7h^0igzl2BklU?z*;RVrRoa%@T}r<B1cj!J&qPnh@&PQ2U2E
zAk?9u4huCj)PbQ63UzR(VWEbH8WCzFo%2(Lh}ejJP{OvD&@hzja5zu1Muj?rw+QvZ
znhM?(G}T^RtadQMZDK*Dad@cFp^gf5bf__*#)di~)RCdtU@n_wb*NZScB5esDsoW?
za32$DT&VG(*<`)^S7pfVP3)fVKivD(a84$MI*$Gib#kalp(cl#8tO#EV?pisP$z_%
z5*q9iNiO(~FoCY?U;;fSg@SfqTBzxm?wyUF6Ws5^-K>YER#*L4IVIH0P;)}f4K<6-
z->D4)J)1i>wqC!ng>#C`qH5-anjdOGX#A63o^CeLpr_a~0_Is9>eNsVg?c#DX`xOJ
zb#18YLM;h(MyLxzT@>ofP-lgZ$Ljo0XNNi`)VcKPw-tB{UYJwGx;~|;X?W1gGute&
za3pfPfKk9*e2{f<s7pd!5$eiNmxj8G?_Sq(Ig-%d&?6A$z@td#fJnJ2)YYNf*}8@f
z+{x_muezt@{yr8UQlfI#hq?i23AHlRjiGJ|bz7*Vp>Ag4AO^owZsira85K>frD9bD
zbUmWJEY$K)w})E66o#06Y?VzeMA;NQq*p;suCtGIXQ;bE-52V9ewVIWRk??r3<ctv
zHv)JAwH*{Iz?fOf9tibdD9DH?1i5n2u-_~*MvsJgG}LpUo)7iEP>+R*LnWae5A{SS
zFO(mu9?A~o@PeV(@IKYmB8F~|?JXvHMc|u-BM23Sicl9_%@rh;;4IlO`~*(6G*lL<
z4AmMcZ?u!^1zM%rmJ_I(CoHIKwnN(|Lp}Td{`*v@rxDj?>zT%ty&K7uV3@i8g-|b|
z(?Y!;>ZMRGhk7H_o1tC_^(rqI>UBhJYXeRr`IHSQBo7#wAUQFU-U{`0sCPoWOW!`;
z4Co6q1xo;s+V3B3AtRFW4?=wy>eEo4h59Je$Dux<bH1*S+Q9mbN0B)`2olHv*5{$V
zKrI~I=1bmXYoopAET~~Z!$se#ueB=FH)y9wy(4`~*P%8eZ58ReP~V68FI1aIKZN=b
zO*_&06Ga#5XOzGXmETc=p?+;B!{1QLW2*!Us6<B60Wo4KW&gpr4>tuXx$;-2zeBAF
z^-rjOLxWvs(@H8gJI&+vGrnB>cxy#kJ5r}e8%JszX`M(LL~0*t-AL<2T0c^|$N-br
zqM{1GFyoSCWbxh;rr$8qMv*#1>KN&)gRS1DS<D&?V;s(J3^IrgIR6!?bEM59b&0e|
zq)j7j78$lcwrS`qWP8Q61`vhuutg-Ymi8kE9+|4acizyl(fBGbHtKzB9ckA{l}Ot}
z>K19+NZUo)G15+vwx|7TDmz3PILF$EJgI>uO$<o@0?|Fv&XIPBghJSH1EbA=i}Z+O
zZ1N2((toT-Ra*W>WsgWrk(wiuwYPg@GAVXzocD}GG=z&t!n=31fTrMmdqt+$BH!ZJ
z5~)w5NfALM?G<V7NF#W=NPQ#qi?n~F10tg~_n~=_21V*0X+UI90dVIcHtbmUjkI5+
z!I6eUhP4lxdS(zVEVwL4^(DuFee2NZ|F3^NEYg9Eb5s!FnBkG=B~CaV6zSkdV`+S(
zQIQUbG@8+AZ`C3l8tJe|hew9l0P~L?#xA84@;6h4lG(>Ej%nOEu#H8i;>buxMH(Mz
zLS!N}M@Kp)(zr-ONCD#Fj0I|P#ey2Kl4B!HjC5RN3}b*^B$(4+zQP{uE|h<y6X@GW
zXGfYsk42grX<nogBb^lKlt?opO^Y-=(u_zaM<%?&I0D%Cr_uzn6x2GKTxdDxjkab*
znjL9QWVTN6$`+hX6GofO2!{InNDCsJ8c}Xr3nMLJta*4Zv+LPnP30P595=Q^EE(Hd
zr$<^6>5NEcMy3uXZt%~h4h2c_;LXPEhD(<F&xv$yq$?v`73sW4=Od7jE@8YPT^Q-2
zh-BVQ^@{NugHU3J%k)9!FO76rq{|~+5efcqtbLqyFdO5O8SM1qgTZihq-!GG5b4H9
z*D}jiRj!M4eWbWynBl8jcXEvwI!obAk#3H3OQc&PeKXvGjOFh;svC?L$y#7)Rrfa}
zEz2S;kMwY=M^fD$X$8`os5#Lckyb`JI@U3<?u>L7QzKT}Sa(OdC(`SY-iUN>r281z
zNICeQNDoA+N3tV580n!%|BLh(gY|Kzha)`_>Cs4(nPU#Z|Id*kAdn3{9_fk5a0tA$
zphku)2FAX@9+TnkjpRlOk%vfLBtKGsX4u^nCc`*K=i_#ub3jDIk&;L$!p!?Z?e(o0
zYrxg~i7G21m64uDTqCtcdXi&1>)A+8MS42YGaPTL@<7NysJD(TBA;l@coQdjj(cF!
z@|#~oT$$#G)*J%~dpR;__E(q)$5;82BdhRhjhjKR1GjrK(p%`>NZ&_#8}UHWB7Mem
z-qm_H()$Q!<NQ62vrJmzhmk&t^l_w58rPXnc;Tq*Lu?(*&kmZpQJ+WpBGT89Rz>;}
zDOzN_B40I50P}PH&n)X3lz(JGNUIr|UQPJ(nF6FXpLnoI;QArbkCFb4v?kI|k$#T!
z8;X%J`nvK<V{ZP6i2he$z5Z)K4SwuDBK;ZZFEni@3x?ZCpAY!wrfT<JO`j8X{0F@e
zsZDGg9skk8z1m*3#H^U?S<r|4?pm=?q=srQ*1EBFj<rjy^<u3bYqMCJ$7&aAgV^Be
z5!CjvHjK4#EXCR=R)<&}V|9wPQ_m(`-{E{ixQYQuNSzG@IG@h3Hi^}FWp&fo#97e8
z3^cDvdNp(bU1Dt!>!*jBcZ#)Ttgf-PjkR5@tzvB*YnxczVuOLC--u2^UIbeXI7y~0
z8`3L#wB0_|4zYIRw&m3Ut1E=6aocXZum*mwdu)n0^JG%{d&Jr`)}UDX#;U}!VztET
z6RR4lDb^mbdc|svwOg#7v38F|ip_|=W+8)&g(1cQBvFx_3)@C$N%oA@oA+H^nda?<
z#%3!)d}Oa!{bKDCYwuWnV?#N@ZnV?-2SCHZsP&IEAlAUxj37CH9N8oyz<5RWi#0gb
zs91-@8WL;&Si=~pSO>%!8tcH=XpDb*HUSqWOhfo=-3}%LXhf`$u?~uLFt0YP#_*wk
zfZgJIWYCvC(Sjna#X2<Bm{?<D9Tw|wl*8O%qhsB7lqpKidW}&*dI)vdj)-++tfOej
zgF{%_*cgJN2K&wGjMr;itnsnDSbnStv5t*(QLKw&O^kJ1teLT9#hMgra%^(XXT&-_
z)(NprjCE3MEZ8aZ=YN%{u^zo>1Xl5ZznBg=!_~A#Z%n7t8n_zb9b7*-HqPWz8b_W+
zNwV1pUaZq&Er~TZ*1TAYVlC#at)}_0{yw?Qf`;_6tS^iO0+!e)N9v89%8MUcJ&pI>
z)5K8V=fvM~MyxYqofGTa*svrK;y)|a+4S>J6BFkHCDeJb&X09LtP5jk_6?u&E?XJA
z3K%Lz9~s6fxFpu4v6jcWJ=SHhE{}CXtQ%up5$noWSMx<aL#@xA>2wuhY+0P6Kd+5-
zT`YFH*T;qu6ByySXIi@~tdZRYQQJ-Q|EQ6-#JV-s&9Ppd(22YTvQTe}wKUeUSdmQb
zGht;u<V2%4$e3FZ>yB6t(bYT?<sa)_UOCoXv})5%cgMO1f$wGf<k+znOf+5b%YoMY
zu^x!^U~GtD-o0=H)n?JgxRs{uYOv*xFj%o3kM%@s*fs#7|1Z{KyxoN(P^Xl2V+z+}
z*|D5hZbL-L)<mNs(!(I-_|8NV_Ly!3vBFqCFokJ+tT@&ivEGc8#7bj57wh?0S*$$P
zQ?Z_oRm3X!#aK@wa`TN3{M^AKK^=f_0}{y<j?ct;Ha1&;PFq=|!Ey!AEa9yeV!asa
zHH2Ym^(A^Q)+@1IWf7cZ5yv@ToMAepRm9L)Cfbr;9E-gq?gAXwZy~y|zKHc@taoC)
z8|$N3AIEx+dt!YM>qB(i-3DPx9067q^bcNT_M2o-eiG|b1TWU-oUEz9IS+XeFjRtT
zY$vgY@dbSq>+4wG##)U4{8L#K>l;*JZv&QK0~?%XQ8wZ`bnL&C?_&zOwHz|gf~gEc
z5l7iiv3^FuCfYdBFR^}&wN|3F6a5zJ_gHIU{S)htSbxU)i|K%h`_(XJQx$rh{|1ot
z%*u<g4OE`%|Hk?+R+~iR{*y!Z-!QW&gSG-}Oxr~3B-$WR`$X#|S})Q1iP|NC)h(D~
z0$8*PR~X0&1{&DghKV*xh}EiNVmu@uh(I0Sdnf2jh7`$?m`O_1IZ?Mn+a}s1(WZ&E
zNVH|5%@R`pW%EQ`8Yj3$CzGo?xjNw1DhqnoL|Y}=I?*<Xp;H^Qu!g9^!vlTRdrK_*
zC!@Bvwo9~qqMZ}%l4yrSJ0{vGQTIfDecB(rjRdmA#vElA&)UHjphu!z6IBvfiM|_U
zkr_uIW^lFX&~{ceG3jiynR6&NcT3bW(I1KaOtgEVJrZ4)==wyx678AjxI~i@^`=`A
z9h_)XqCScCN;EjpkVJbY>YJ#4q5%m&=zjeYLlU?T@A6Xxs1G<F45xvK1|`}z(SC{G
zVIZV6eX2<~#bPA23NHcDzJH<v5)Df<JkfLTztO{^s|O|~(f;U#we3$aRGBP-BNB~F
zbP%I9!}<~;ky8u@5r8g&s)r=1B|0L}k%<oF*vC4Y&TO0<mgv4QBXJ60|Bp#DHZi<~
zWDVnayLLb8#<i@Y5*?jrLZV|69g}EWqVdSa4;4I+(5mB_BR;}NQH_g>F!)VO4B;dY
zk>9fslM@}E=*$H8pH4_LCDGhO^Ab%>bYh~D6P<$WC7PCKdZHPL;g`VuHT?Su5I$B4
zB8<#0RM1RbHqq=va}u#a5pvpOu*Lq4wHUK=+TIqvj`@ieBswk8>4_F5T9jyUqEl)1
zFNR5v9SzuT+{K6%X|^NBo4LOv(HS)3zY2&`K-be}nTqgdCpst5MTss(qHd|4o9O&R
z7bH3lp{2&kca{IE{7#lAUg!%OeaNi2B+;dbu1a)uqRSFpp6H51S0d^UH(%DtC}&v0
zMh`G1C~N~@U9L%VEh61uBBcQ=)8GIJrreO|#zapidM43LylkTXC3-B;Es1VTbZ4Tw
z65W<)X`<T`tw^+t4qVGHcr0g#x3#F>`p}9N_HlP4df>&5yyHqH!kO06DTaKKdR2EP
zx`%%ydJrk1bNX5LCAvS+o5z?ciao{|v=!uL#N8fB^l+j_5<SY?Kg|p%4(Fq1TBE1b
zVE;f<5sH00(G!WHL@{%DO{Jd5N#ruQDwfR@7-irPULrqHkSI(5pESdcg=B)iWu+sU
zkLKKq!lq1(M6HRQOq3<c6BUWd#Ows2Fal4DM`e>H<3vU0z|fA(eBjY-I6jpa$L51S
zSDs~RB>FJXM~R;2B5#!FEnbb%(urP4^lGA)61|)VSnuAu)ZX+=zWi&A8(vTJ2Ewzj
zhGrw5=*opPkiCRyo}XpCjZ7wbFVQ=RN&LZ`^3?a0+Yhwfr)`NTzzwhXBWD_a3+Epv
z`Xte}iB>22G|^{?zGN;iQj@EnGi6p)zMvl_S8)Q|+|Eo)=smwqv?|dzsMgKR(!;_^
z%pF>u`xn-}OY}V&KGCm<en2rM`YF-RyjqhXqyi6r&d%01n;64}9S0o_jn!|A>1myQ
zPfV<w?&XM!=C4G5qh3-CPPK+1K;Nd?Jk`I<%_-IPsWwdYU!pdt)=IT@s`XN>pQ>%D
zbyBUHn!shZM_SPEugx(Wvsd5Vk}j;ZOU<&f0nd@KfnR;RnF=)zw;8Zest&1eD0NQN
zF%>CSG-Kmbof_x-Nhc^37rTAYpW`N};TFcPvT15C*l@{qNwr0)T~k$3ZJDZTs_v<F
zPPJ94ty686YWq~%q+0UKdfifOo2uQGW@Q{YZ`i5(8n?d*{H5A4HJWy()DU|TKE{m1
z>rMf5>>NOwyQC($3<D48>cLO!-o&3)s%om<sajHzSJITKC-0uBIn{2BE10Ylr{G_0
zN4D7`Rj*Wgrlyi3;Z6*A-fQEUdAmNT_Da=1)qqrcr|O%kU#flh^VTX>G%ydUlS4ua
zn*?Sy)X)P{4WctsW5AfN-_(Mm1_BwZFZAk=RQsn|m}*g~15yo5bxf*psSZpvEY%^Y
zYN>{&8j<Q?x@B|ogpsMSt`AC$ix1()y|&4?>ZrzlQP=E-4o!7fsxhg?raC;;=v0q>
z(P90C#!<|eB3fj19g*tDR7a&cnuaZFAsqR{_>nN_@q7|IxsBuaR1;E7Pc<Xev8g7e
zIzH72hz&m5k2@WgYEr7nsczc9C>AcVCAsIM>XcMdQ%y_FMxKi&(pTM#J;wP-jqkDp
zT`|ZcaGjj$lvHz4%}q5k75l_lG=?UfVtjX9wlNq#HudcuZkb1i{7{*nYC$So*|>1=
z<jh!o2tJ}`*0L6-IyKd`sjf?PTB_4iU6kr#rb8!d2_u{8>{Mr@T6ywNxE#++MZANP
zbCA+h=cPKo(bSPss?U!%s53rHXP$gPDvlQ-Y#UgdT$1Y2)TEtWMN?B<j%=j5GBrGe
zs422<SgeWn;r^w~Kh3wUPIXNxSj#?WXTeLxNL`=mhEyw3-I3}>`YqLMsg|a?In^z+
zVXSp)s*ew`w#!?94)P}-Ooe5smgD*1-T$h<wEXY!Rj#uuWGg`p&6TO{Om%On`%>MN
z>dbD|-Kp+ju6<qU`1!#&-Z^3a2*d6DsUAr6V5*0h!WE0n7f=&2)A0-wvSFRYEBh#4
zOtnX@Ub!Ai^*H^O>C8+|AacysOkFeCshm{brTRXVo61Y|W~#SR`Kf|bPo{b*RhTMD
zm8Ht*?NkY~mEN$L(1+}u38lTeutvT!y;`IynH@V@tu$=+CXns41UV<-2@Lh=6p|CY
zkm^O|LRahARL`Y)KGlzn4HOcEtqarvOXj6iFQ<AX)vL(TL58p6#&M<^2p)JcK46G?
zE!FF(p^DmYQSA-dGrG$8+o|4Rlv90{>fKcD(f`bsKRUgi>Vs4trurxqT9Ggc;_>5A
zCUp@ME=1E*9AgfCk{ZM>K!VRxeUa+xRI5^bnQHv>HeaD7x)>`9_A06~Gv&WY^=+!v
zsYx~BUt9rNKu8yO7)#_2ycB9VQ@cz*rTQ6-ovKZyUsC<bOi%SUiZs>lss2dyCpZ6E
zdH2@}!Vk~YnTyRX?1iN*VC>hROqN*xp#1r{amMpW%hAJF>>p36qTJTX)Hc&Pnb{Gn
zor%O5F0Pvy8h;k7^)eBir~lc6f)3gsQ~L~EYBbM=nKsJQF;k~Z;F_51gW-a1oMUxt
zoJpBFXJ$tON$H{g$JN=>B9RA-$EKM!%d~l>E}6E-MBONM=-?}$7vl)s1aoAoOj~C<
zBvXx_%hWB?fJ_53ZJTMkOqEPlrtLHBkg0p7of}PJsogQtPQ1=4<Db8`vjvuQmyBA3
zEj=>rnu+CX`0^H1F#%at)twgAs+pQH?UiZoOwE~zQtg(hXC@p47>B!aK6WHa9uM3j
z6J&#YdS%+Pao+p?U1@2Y^l2PvdEZR^GVPP8e<pf+%*|$>)qhb9kPn3X0BGSr9+YX{
zO#5d#fG+*5vL9{kYz@v#+G+KeHk=R1bZ8d~aLdq42lAXu2W1+TX?Ug)nTbJ=l8>Ja
z|0-rcx~$5eADjuF4^17F>8M3DPEazvZ*Do17tb^!)5)0*&onyIv6&`j8k1=(cV;>|
z(-E2OnA7P<2Bo7BW|$u5EUF>W$7C9pX?&&$jeilT&-b**O~z^h+=5S-IeT2DNi-?b
ziJ2zz3Uqj;DVah0FKaS}I(wYC*R~K|9RA+`keo0uoP?ZYnw}ZJEr$K_xdwxQ|B8Q|
zk{NY0E7R=E#7bsnI<158UChZeH`Ag_i!;s3G(Xb<-j^9s4#!CaMglA%L449Md2zzE
zr}D*2r)OG{nGzlkj5QRL6cP4&HsPNqje<HXXJtA&)90DK$aGGob2B}V>A_6rA^(|H
z&?mGZ(}kI?%XB?&l<DG3S7f>p3CVP6rpq#2PLocmV$9=wyS&luYla#W8HD*)Wx5*i
z&U9@iATh*zNqt2LU@zeWV3BR#!@42UjhSxEbX%sIGTq#e-dmWJLkzp`@9i!8|Afx5
zc9v#ZmT7sW+cQ17qXn5T$YEH{(EsE}f@Wk*#9UvQ>8?z7XTrgFXXA(`_MS}CL+`nv
zbzi1?k?IZ24g%t)`<X|*%n8SbGCiE>*-X!6dW4_Is7|FQ)BiF(mdVNFW_ldupQ(=8
z&kTPfPG*kOpC#+3Zx6HU0r~G`@-wru3o--uB^r*}>AK9M&tL<@nUYLprq)bprYuuV
z=VZoiXSYt_RQv|u{~<>r@(9rP$xKgWdOFiHbY^D@$kU^73(&rvu}SBlj5}-A^O;`A
z^cF9h>BUShWqKvktC?QTj4ueUY15+}28}ndp4T$Hp6QKDZ}O(AD__qX*>${eh#hu&
zb=@gd=x8ua-=XoDKFaiQruQ<vpXq~4AEF;-oBb5R47Uu^1g{139k_r#$@D2|ihUvi
zv#181fy@Q|<gK~$%S>O<51HEJVzc=*5=)mZv{q&MCeyc#iT{13A2O}Z^c`||lyMZW
z>iNi0XX{7wf2N<&22(BI2lxZ6Jxpp9PRL&~{g&x>1PlhqOn)=Pnf`2y3&9jH^IQiH
zvnJC&nf}cTcORQ61_EFD(GM9~=CyLIookC+Tjpw;Yn@!3a&4Sz-CXPC+A!Bfxz^9s
zF4qRR+UM%Jr!k>PDn~QybF8V3*96(}@0AX@I_72tK_)Tp0aC)H52+&-mvU{AYt!6V
zU!5Drj~{M+cZD{~wRx^Cxv@;ho@Sqp+V6k5DFfX#*H*c9$<-s**15LHwL`8Qb9KwL
zZLaNdZJ+DloeXC$rr>?u&DsPh?#l~I1+JZP1D)-jYiHi2-i%l3&eN=&=L|b>=*Y1v
zs=MZ@<Z8;*oXg^5(#B+`R&!%&&bzS%N}r#D=G}5Z8P}7a{<-phiR8OC&iRvaT6^Z|
zo$J?JzvXJl)hE}|T+4Fpm22-@Gjq+#)t7<Jb$G7Px%SD`Ki7e|hUFTNYal(4Ye=rw
zZ>SE+wQsKda=qM88uvWh^8KP3iXCa(AB$^N^?+PMb2E?Lqh$GJR=m+50`ad5*ll>O
z5xGX?IwaS~T)Q6J<{&yG#~N?O@&V)t8y@+C6aud0Iy4s~>WAe5{rD>|hQ&2}vv>wZ
z?rV+7H8$6AxhCa0BG-|*#^;)l>!@5u=Q<|WxLiN>u@1JZjaRmin+!uQ5FqqFZV)n3
z5&mOyP2??ptr)1SEUI8krWv_TL>TDCLr1bHgC6RHTvKvQ%?;J?tv&hxPT*u(uIY#z
zvp(0FldRJKhBa<DnO^<5LT_^qZkF3msLswcC)Y)}F3vSK*SuUya-ETDey#<%PR(^%
zu7$Z4<yy=$7no;uSzLpE8_k112Okbydd4Z8PR|wovL0b&I_Jz>XXQFC*ZKTtu5)so
zo0}S-Z1#8RW{B)CI01TLqe5JEL9PpP1B9UHIdy^2z2_`#xg^)6xvt4|E%KA=as+jA
z>#Bx4Uy*Ci(bX#%*=?<>elyh2@SyVFs}bWF7EAnfxvtN3Q?8qH-GGoBY2C<7oLU8B
z2*)+vODeJ6lIzx7xA7}$Oaj-<hge8BuV$2aZ)<t3+jGSXYpxZ!?#N~5a&oQAb!V;z
zb3K#`7wBEN?#Xp;<NWU2)cWD#eYx(Z<@dHckn6K<7T5{4DsUya2N-Mi;ardKgl9TE
zp6gLwhkFjT9?S9J8_rt_36Vm``b9mOCvw#rBe>TI2F`?~!D{a23UV>ToO_Mm^_eOA
zm{OZmGz)V@jsL=bMIa-k&vU((>-}7Lt|He<bXu-5S8J|kb3K>q$y`t6dOFuLxiOU=
zX=ivpoEuuUn^A>7nJf~5^3Ugbf!iinFXrG{n?Y8z-=hgXKfXj<=&$5@HP@TD-pchF
zQ!m#WjbZ9`h}r3&|FOC$z>Py@*?*O{bG^f)%Y`opC4A?}#sjd!MI-i}T>Bu`hq=DY
z^;NEqa(zt8A8P)b4j)(jB-f{O6wjYo-El3$NzPJ8-o*XvM|xRb<Rb5kldp5F%Jn^+
znd_Te-{xAK>pMiK-i-hGvbC*I$5jD^0%k)iqCbDk^;52&bNzyRu5V1oi>_~h-><`6
zE#$6xbFC#mSANg+2kNEJ@Irs)`U}ljs7Il{nO5lDLYo%)C)dBI^g`<w`Y%_TLhBZW
zz;>-dYZq!;Xq`f99XXN+7ve{lmCyz;3o`LJa$DZqrd^>83Uw&du~7R$8x}@yZ^Uz!
zRd4Z{iMl?zf%W=QlW*Ip(8h&SsB@v)msU}#Wb_cV#~dQoNf-jh>}G{FFSKo;?Fvyh
zs!O4+g|;fRMWHQe*lJVuivl8eZ<sY(7uu#!w?d?T@FznL(%Y1gU0L0}5E=J7@|8k6
z(5hbsGV5Vp;$rv0khShy2*(ARZm`5;VeeX~Qm9{{eF|BHs)cqhv`3+)LV&^co?6|l
zP;+5Y6sZbC;&9Kx6tCw`j;!gu3bhpKQ)tgZy$hrFw%*S8M%d9{%k5QY??QbGQ{e(T
z6ZM6?fkFl>O0)YH8pKx$4Pc~ZRR<PgE6NAzp8X2rRvJ=h|3ZTcfw3IBm&L~6fI{fo
zp@j}CbjNXq+n+=^6Myevl5|EC8d+#bp)(2{ROsMB#}%4XXjGv?3LR1C$U?P3hZZ`#
z(C9+cKRT=sT}m7oDhU=oPR0}(+vxBOj;(S9|Ka>!`yEy2=t2_;9ZPR4t{qcoT%qxW
z$wy;%Gx)OstS`SUud?k$AxxwhQ>yt0Gr=#MH*#{J;|t9!G^@}Fg{BlbsnE1SxF)6+
zI<e3j15IF^m?Lonq-%Pi8HG+RbP7XRGg60x8n*^Mfe+gZSbs{5**Ck;97ey;qC#^E
z%_}s&(1Jn`qEfrziIL`~!9fAz0SZeZ-r_>17CNoa>4hPhgLDW(k(UKb4npry*JMhb
zS?H`nHx#<D(Ahky(B+Imp>qqJSLi|-Q|SCc7Zmzzb%peS^V?XY2z}9PPz@Isx}?yh
zg)Zamb~L$u@eNg$m>#=Wlu8H1N;h6v=qd(uaqT)psL(Y`9KtJwp=!s{px+2>bKL*Y
z7HV8xUl{IFPS`8mRA_0TWrc1obW5RI5vq|L?;hXjw!*L+gCwLREAHRrOs+zA6}r37
z3dEz(%0hP*#%N(j_W0c`@X3%^M@TDqxCLiE$9ou#i#pv~7)}W`ZXn`-Mm$jHK_2pq
z?s-NJ6?&LAdQ#J#)FXu+MUAv-*H-<n&|{2IsZ&ZlUg(KJ?MiJ>s$R%0^eJ6LS9iCZ
zLeCX?zK~nUE94gn3dMyI<{*mVa4TvwZ^=nD>S&X7#p|bqvO>==`wC6o!a947sRo!A
zLTML`W7#;i7J9OA@>JvabmO?!K%?8QJ;UnW-n#UNYI?Z!LZKH6y;JDjLN76Q3cZfJ
z6?&!6t4J?DvC8mgf>{EhLqr2D?JsNL;+uuuD)e@vk!Ul>b_is{dIy`qdxhRF42JXL
zhQ|A#(1&zjAuzYR5!0W9XfQ>K_cK`iPncijaJHGB7y6>mzlBLi|FY0mG`P@jg}yGd
z3YkR1p!W)WTWEEm@8~_RnSo;-Vd2AQffbGY03!FtLO&Jyna84{VbMII3WSe3ebgv_
z2?N%$AWfY+&-xwB&jc^@N1+jibOfaUWb5xjYta0Ku_Vv-n^#P>?qOGQruh&>{jX4)
zQfrl3yVQDRgUMuZt!=4wO08R(Foz+EB$?(+Q|Nj2;@bM9S=wj=M8xe&ZCI*zsg_b3
zmFiGxt5RE+VjI}8luC7OoOfy*H*Os9m~B#O(^6eZZBc5oQt-CnY}vdtTq4XDwys3?
zw&aEp#=X|HG!^dPk>F1l#<nTdt<<iiDy6n9wOy$lOYKw|pa1ryb|{4_o(}n}Q4DDC
z6svowolEUfst1BP(Zr_5wy|#d*-)3?zJoP*e*>knXhW%<rFJjXRH~V`=xps)iW1&z
z-f`Vi*PHi+>vE4$y-Mxb=mC~UTv&9)VRk=iL87nvl-jG*=u%@!?Om#GsbQstm+Dt)
zpHf3g?O&>YsR5-1mKs!=+<bN@_)o~?feL$Hy6)!+lbZAWXv1;V;KmV~>VQ&1OC4AW
z&4V8xn{E7!7cQ=06~oIqqSVMzqe>mZsI96T#9M4*9b6g|BA~%b_O}S!*Ge5)>abFW
zm+Dv>i7Fd9eJEQq?7*dqYcJ!V9%+p&bwsJjrH(IkWT~S{9b0N*siR9BQ)+yv38esJ
z+KX#1F0PF$#j)EH%{YHZ9|Ly>h>QL8al99!a7&d`CK_|s#8Hr_oIu~svra5^QmHAW
zrj~~1htgUExY5$nN<#%dqtp)*t5XlNrgOt#*7)fL&Oz$R%u=(EoKkO<nq6v6sg<Sf
zEH$^(yi%8!x}wzlQVU9*Tk5=03mLdlOG=$lYH_JkOPyBgbVeW0&Oa5}8J$!`60oV5
zxtyFyV@jQk<d<S2!`6vl9}W}ZHLMZraJlXLQWuoE6d^y^y0Fwmr7kXYNhw%dct`9a
z99)E1*-!wae`{CkvQjJrn4LS%x2`O8RjC_F-B{{s+7IOpLsROS(il!)P%)fvYF%II
zi^a7~rWp<*)W}VxZZ5T~)bdidl)AOlZKaknNnvF<u}T{9lYMqWLmoM`h8r2qsM|}e
zD0N3EB5~aoTCY#2o`1YSA$B-=<T|I;?kaV6siIU_>Yh^fma<DZrS2<rf2l`GJ<1T2
zda%?(jj_Xb)PKibghgOCdbkvO5W?}i>HkVShUPEz1i~=0h6nZk0$X%f9XXk4sBtk%
zFnHWjUa5$F;7#|jd>&FNY@CDh-1gKO$@NS<dLUu)mdZ-yyxkgu!n%C8DYy)zhZDk-
zl;&*Z^}AS4BYvfxY@DMdo<d`cGyd&oOFdWW<x;PddcM>PNM@;*kmRVDjRw9B#(M8l
zYv>kI`2Y;O%KR<$dZ{;19Y<F|24ZQD-UY0k-5K^qK7ZKTrQRv^PpN-Py<6(NQeT%^
z#gKKi-Y@l0sgFy2z;tdToPOB2&iN;$J}vbnQ}u_+XLRNW>vM*+G0=w|X&G1=yK<s?
zCz*;HU-A5All=P)FH*8z=+{!KOMO@BCuFj#^*!3PtMx;vADP{|HBl>*Ay_%U;A*I_
zy!4|^KbNNBn={M$jS1`Y`=ivK=&?ImelLY9_0Usme>IfM-=)?tWSdyKEHHUJc!sIS
zGaX-asWz?JqE%bAYOPkS-Kq|)>e#Bbty-s5?OL@#tJZBbTgCNSwSMD-OpSFLRU=t3
z@g22q)rPIwsMS=GHPo+t4X_+AA&QZLjGbDwajQ0I)uydFYnPf@HSP6|om&k@7P~DF
z3t%%gYt`nh>e6b$wZwC~jWL_7;S=}bhJ~Z7uC3atRoz>~;=XmOwrSP&t=gegr}t{x
ztySB$YCD>}rh-cZ1_OL$u%>|I*|F7x-TCa)YWSMShU19y1giX<TLlDkmsX(B%{;Tx
zDyvmbx9XWzRa@0WJ9(E@HMeTFRvpr+TB~}tYWG$h-@zK$sy$lOt5pMAHK<j4wyJll
z`nIZH>;Fg7dq7K3Jn!EKiWm?c6m!OaJIe)8FG)ZYL6W#Apok)%fB_W{6B*1oX9dNq
zUvtiJC+C@K&Kb-YF}<JO-}^u3o;|&LXJ@CotEwwJRi);-dezmtu0D0s|MZIP)<eHl
zKze}b1tSN~8t{KzcJDU*>l(nKeP5ya)}Lg)%&YMVAb(I@``0z3uAy}uP}ktPN#8h-
zIX>J3DB7xY!?Xk*gGP5yUBl`cUe}1a@m66^p+d6=xJTe7ZcE?NQQYBl>)^WTWLNEB
zjppJp7UMB>9a`7Sx=ya^u)4<9HMy=SJab*+>pGHUsq65%j;L!wU8l`78u+lso2W)Y
z<sv{V{K`>v9bMO?x{hIe{xpgTl}2D30-gL9_6MplwXS39no-yBtXo~v>ISShox#J+
zxOSJ!t3ij99m4~80wht_Np;hK_lUMe>XJdgm@7xEshm>Rsdde(Yku7nikwx~T&}EZ
zc3pFLJf=Uf+V#3-Q;^}-D&sTiI<u~`>N>klDd2usB6x9OI-+Sb^ZIe1sV&1%xS+1Z
zb;F?x>sr*<S?A6wS(%3)Wa<WE7A>pm97w3HJL)>OuJh`~K)$7}^Xs~xuFLDXqOJ?;
zx`+qhg4rD|hF?(08n3v8VLkML|NG>!x<QovM`*aNtLnPGt{dvQ8hVBc>bkCOfF-{j
zXB;mmFt^OBVbuQsT%o;nV_i4FkH1%LhWu7EUv#WR1wY<`onQ@bW$y-9x7D>A65YX?
zwYtK?uVC*EGJPCYa@)F|uj_@n?t+l&dKA^Yu6ydbx2^|S%)0KY>wYFOsrmr4K?#CR
z7L}!uHmBZIC3^BuT@Tmw3kz5`g@w@#mYit{_W>sW$o+U-Pt^5HUC-9_WMkI#yYzHj
zPq8&k*55~u1Re<~e$mR>uV)*qA^x624jf?8dtZbY>Za&ry>1fCUasrax?ZabAMz_u
z$du~!+gh(94eH=Ro8GLOj8|%sla7aXmy(#2rd&D4vg>k?2H#c~(~;BXGTz$S-d0#w
zRM*#aeZ$U9ug0*|f0g&@O6p4M%IeDNYN_k3#=Hu)Z<JNCDQ!*pKE~951>662UGLQO
zZe7pKtAQ{?pY+eRhAeM})Zgdf>-w;+kLvoguFvZFxNgk<w@z&J2|V?@v1JH#(H7_P
zy1uCE%eua*>+hA#_n&MkSKK+EJDk$%w+dtWZmg<nH4A8KJzL+_^<7<m*0r{-@9X-Z
zt~G2yT|croJ6J!}^)pg>gefG;Tgobu50%fW{aV*=b^Tt~AF%dF6B7Zshs<Hk@y655
zfs6m*0g&ExwX*e3U90BR{$&BDo1hX0BJd$FW9!&zZL5tf)EMxDxYzdCs~a_=Kqb+c
zy{)bFZEa?&v#oZvHn6pctq!&}w6&3~jcv8JO-un~BhyFp;R7V7L}-c9e;sYfRwrAV
z+NN?HatWs;mm#%K_yO&Zv%I;jEo^OL8-T}_wzjghwJmznytto9j;24(cO8sf|Ke>`
zZ0c=oQ7(f##~p0#XlszI{cVGK+R0YMmSt;aTU~7JVw*VoZnk!}wQFOHP0c4=ZIfc~
z)EH|I+r+IvpHg~=IwVzF-E8&ZN?T2~y4%{z*50;yU;=k-v!|_|wz16*T-i**0tVFe
z2b+#m``Bu>MblDTA}>!g#}G&lP~v@T^|dv?HkI7^v9R-N``YSn8_WQFL|BCKM+^pc
zvj*DQkDK(e#%ySg^=o&p9bjv)tqH6K^RhL>))-rd+8S!>AX}qs9c*iut>Lyt*cxfm
z-o?~RM*MQj(PtBL36=p!Hrm!9wsDKqY}2!hhIbUxptu&{D*T6s*&1u>a9c;%8fR-f
zb6-=zlm^lUSPQ*~F`v-IgItea?rxrF3xDGzTgTWssxdy=)>S>*AYJ+C$+o80I?mQK
zTT^Y}1Ur@uZTN?qHns*{*Np#sx~&<uj<<~;8_(D_^J~O<u&^-4@OYnOYo@KLt8T7N
zwsi^<bTq=zskUa>`q<Vdwr1O!W9xof57;`*)?8bc+q%Nm>9)?Wwba%!TW2y^TMKP1
zvURqtdA8=;TEHsJGX2wknQOg6-pw=<tn4|z2IOgRgLu~bQdt6>^z24V1O=u(-a5zD
zxwbB{b+N7UY@KiG0v6L2sx@ipq-o<T#%o8Nz&Gf6e1vt0txIiP#$z8el8msH<yAu1
z7!h-*FibCd*2>nc@RzNtZCzvQ23t4Uy4Kcpwyw8v2d$593b9F?Ztc_kOh@dEteYS$
zsAz55TbK?w@HG`=Cg5l6Cfwc2ZLP3%m#w>P-Oi5KT50P}+n5!YSG1x=iNZNg4Q)EP
zkid11t$S_V$NC>$B}18Y0F8`%129ing9mN>&z5V;gHLTeZ0iMh5aPG>sI8}LJ<XkM
zJ#Om>TTgO9s{tH#kOu*^>Om$I<<aA+gw&t0^{lPuY(0;-7-n2;cyUn-5U{<*8GI>D
ziI<=dTd&)C1D>T3B-6L`8nc*IefB7$940lRDq{t_X{&C_w&mES10az;tc<Sxj32cX
zAoHFU3DLf-z}DNg-a-D`ifrXDnyuJYVk@<k@yrv9*L27nQ<oJ-G<8-#9A7=@>3*Hw
zXfC<4t+(KUTbfbW@N%HyvL+NmI5KYkuC4cNeZaQPuf4}=fUka`8ASbuFyoJvk0AT`
zHG;5=i9CL4>odfcqpcl%ZtDx=t*w7;eQE0}TR+<R34wsvv9%h34;d`7)@gJ_Sq0I~
zuOSt`v-Q2LA6W2}Rq~i<Ld1u({i0yPc5|(tZLP8Ohpj(t{bK7^Tff=*9hw|&Q83|u
zS2uGFxnQ_ox>J&RkhK=Maf0=it-o3AMHV-tKq8eBz{pX^@jqLw9Bt@mBS-5vYVBw}
zM{OMe_ie+6^Q?6p0||gsC@4+4$%FT>)_2s-(FTrDc&Jx~w;y#K#18#oH+IzCksNh$
zw27k*j;U$i(J?sQ%cfZEH!#Nmeii(Un>yOe(Uy)*9BJX=?(CRMTdI?7?ufTrG+r6p
zc60TFV@$+$8%NtZ>gi}NN835t-q9Y8Dvow=w4<Xgj&^YjAZI5>JM(s1i?khpE2tk+
zPOR?gXg5c@JL>8f&LuVh6;ZLD8G$ii7JE&xEJsyGV@Ozb)Xh<oqwbD+IHqG46XcxY
zkRs=INf%SE5@dTlZ_5|=cC?S9fsXcb)a<C2qrQ&%IqL1Gk7J;-RCYyBfJvY`2I2dC
z9rbrKps{o~2XHQZ_Hke86;P#__Ctdl?eFM7M?+ZNe=7$xUI#mxJKn?&h?Ve)%{A1~
zL5_y;v>O`iEBF8C<|@(#4ChEkqa3~L=oLo?I~wii97pFmI>b@U(eaK>;9HIkb#%0&
zNsbP4G}h4(jwUz)&OOf2cs2sMeXfa3A9Pa{;Y`V2#_;2jjwU)f$`RRoSI)2Hn;54k
zI81849OG!Rqhr}_M^hX<_3wbG%w@GnRsz!w29>3r=9m`M(;dxlOcpkeP4JO51So=R
zJkilfj?Q#+mZO=DPIffM(P@rOLHIkG<!H8JTti?}F?DDEWb`YP9~52IWUiyB-&Rg{
zbcSOvnXm3|v7rz!f4CRUb~Mk?B1elI&3BAzdV!;bEX4`d;D*~7@o3MgQdM<{qot0}
zy_Z2|Yb%`E56rJ2NGr!z5zFT}I^WUlj_z=Dfujo@UF+yNCgtd2N0&Rg!qFv;E_Fl;
z$ji9kuL}B}!LICP6d3%{SF*^Cu6A^dBO=S|^)TR{?blZJBTMwB3TQU~PS-oS!O<;_
zZgq4cG`YTYlcSsA&6BIB2M^P%aD0_Ym4qp8W5Llg9j#zPM;e|w`G_ixP1q1G#7fw~
z(W8zYb99%ZyB$5?=s`#KIJ(!-eU9$u`FmJhZm&L5Go_r+%sJu#4xw)S5B7KTu%kyB
zg!=mY8mb^gIXbnoRsz<dW9FeFA9wVGqh}pG=jcgx+|kpHo`L&jSG&DB0yF&AqpDY*
zY$_CSgdH=s`n;nT9KGo1B?ldEKiZR#W`(~6{gb!v%&%b|z3S*SM}Ii_)6wgW-au|R
z`pD6nj_Qt5N0}p=rE?TG3LUxZ#qSl*k?)A)4#toZuN16fc_T-$ql76;F;#!@c;i30
zn#ylaG(j`Dqr%bKj^05gIBG%eUEBN?%Ens5WhOQLAj9mal<zuv&(ZsiK5)cAM#;wm
zH!)QTX}ApR2O@uA8|!07pEz3W=vzmhLWGXKbo5nY^*(3iS5>}%-u^VgnaQ>xdg$mI
zN2}nq-AoAxK(?sOsOz^}Gy<*TJ4fF;`q|MMs1dSnkikz4=|mWsQ-<m{9C<&?ul?fa
zS4Y1&`W+d*pM_-vEn%eNgyhbsg6Pa^SsVnit4&?~?dTt7>Z+})e;xe?UAb!QisGfM
zTth{i<~Uu^h?ssGSL?baiGu~9`R1OdnntwiyK3jEy{k=JZQyD{R~xz7n73aXJp0rB
zFc-;pgxKa?ZK7Jo?%j>^w1caTuH=eZ!EpWbqpkgqsv=K_%WvkYv#T9l?c{26S6jH+
z#?`hwYBy_3S6jK-nzuh!zN(n&yC|7pw0PZ)Te;f7HH`*_Pwzk{)6SDj1G2|nF_zcP
zuDZC|&DHL%=`pm6EA+HoUDFhprY(rd-aA=cUG3qj;>vPOX928T><d&ibaDdjFc*bJ
zn_P8w^|`ArT=j6Zr>o0cUGA!<tG!$u%gtTw?P?!aqg);As@YX9SNpjd<eK6Yy<PQn
z)z4KQSH$%w%V6sNyXx<1fUAMrbAQuAis~7JS9oj^60vSLkM?(UfUARC4P){7uB#!g
zhPuW%hRrzR-wHY>9mWCG_x-*Cuza|y5w1q^gx5DyCz*0sFO9Y~*w&gbdL+a-+SMVh
zj&wEARn65HSL0lbXRloy=4z~~kNdQN$bn}dqIsmY3u^c5XdUkAhz31OfHw9rY8d&d
zm)tX$L-X~$yMb~)%GD%S$GAG$)umorC<Ijs=;>rvQ(R4TO=Nl1a#PJ?<RCMzzNc8z
zTupa1-_-(FGh7|-YObr(U7g_SL|3P}n&s*wS2NN4U7g|@dwl$yVMJQF2>~orUo>;#
zO|xBHUuiSP)oHBKk0vy8EFJOa)mR&eX>*1vte&$P|2oq(0oERqd-KWJuI9O>CJ%)%
zp$CF2bSqovYKg0*t`@mML?h}Ky8@!ac$uqnTwTakx;od@d9KcPb%86Iwh(UxYRgl>
zFa4_)3EjX2FNPXf3Rh3>x;{vWNfWIPcQUHZckA@#47!5bLWi!Na&?uft6gKg-skEX
zSJ%2);p%o**D)_wH@mupxx2d26-;*%*Y~o3K~hx)Y1!qLW)y&1UEKz6BK+Bce=0;R
zQF3?-GKW`=tvg)Z<?3!%D_z~`8dNPuC;k)M0{5`9dv?3mMI{^fW>?c1gBluNpuf3#
zz}16H5KeLRsH=w{-8L2-LLY7nUKl+R6^MA~W3C=|^+aQZ0g+<FVNN0p$pvORo_6(&
ztAHPM^{lJsT)pP%byv^3dVxiD^|GrMA?BBwSiO#iS1I_$O<rkC=T(H#`sVz?r3p=v
z(f@|4H(lAT9F|w6>j!^z*r$t8J6%_vD<A1`Ppfc!Q<HzJjNl@<jLRZdv8#7jYFCM?
z)K$Tfy2>E?xn{X?#K_tTW3Xzx9W=Ooi>tQ~2yom!rbyuS3u=@`!Ap6_XZ_!E^*+qv
z>JwKVuzC>2_0^AD;}xXa1;jvy%CT*XKm60iTs~vvf30whf2J{|!Qp@D>MJ<W(?m~S
zyZQ!k=V?n%t6Z&S;;#O4^{uP#T>b9q4_Dv2`oY!DuGYAwo5PQ;esYC9zR!XhB(c@3
zDm7c6*k4@z>gqRGyN?x*v37X9iSm79ojiA9?N3*0k@>EPn`|-9yyAlXtMT@+uDxi3
z_zxRBwVL+m*2>d5o;LQ>-cxH&Z9J{-shuaxv~@kL=c%nHfN(g$KDI3UkYLw2XE*SK
z%CVuRjXd!$kjb1QoE>D(A*DC*)WK6HPn&w`$Zh{N89?$(pCAT+-YI8Fh;TDcojq;t
z8J&<_AVHGY+*YqPkyf^qr>#Bh>#4t|Z9Hx3sk^5hp0@L}y{C#N%hL{?cJ#E9r=2}v
zo=`yuJqj5PCJpnji)RkCT^g?pcJ;JdW4wFgwd?=;e2>Q9;03j+r*58_JQGSL-c3O*
zs_WpWN8@FS_w>}$Q!h`wJ?-UbZ%_MpYW9TvOMb-61-0`R)QG|}3w+T4llpk->#3io
z_xEbE=AR15ynsDWTuDhIuX%u{fu4qW8t!R7PlG%i=xK<j{XHGviNe2wd6-v606t_o
z^ta^`%z2`^dz{c=sHcNGL3j%{w3aWZ5fm8VX{4t^Jk>mn@^rAL(d<rxun%wD8~8CH
z=2p8{loCQ68snLSjtR`#(`K(WAI5WbwZ=AH8I1EZzA--h|9x_Vr>7Rw_!pWd_dJSC
z^mL}Dvph}mbd0AHJe}xivS*4W9qZ{hPg6XTMmM$bO6EJCPxJnN3Y_7YI!Mz!Lwm@s
z<2_TlAzo19^(0R-JrkXo&BJ>-#lv&e=D%Y*;PgJ#(=5+KP8oCd0g8L5t2M{dX`beK
zI=w+)XLx%4#^!IIXu{P18W|TKdvUg>d7iHGbiJqfo)&nzfZKYc5NeU9rJj~~qW$P%
z&q&lIo(bBLg#;Q9M8`Rv&SkAUozH^*SedxInZPS593Fe@S!j$3Cl`6T*wdAsuJUw=
z$7!g`JYDYT>Jg@k69@s59qAcO4@fiTAOo_Gul9^Gc?~QEkF>LB^9t(zh_kF!)2bWK
zuHNA3MxJm@<xWpGdAixta!)Hf-QwxfmDO84-NvF-EIOM5$-rtxT7vGr-P0YORx)24
zurD>ijK~L2xcHet(B0*ku6B2Oq5~Z#DdYP*-S6p@P_Kr1z|(`!TcD-@w5J|osePU1
z>tRoic#^M9z8>}Tn5WNqa`wp66P^N3p{FMy4_L<2Yo4C=^bEV;=>_igW`}1zQ+M|{
zPZScw@w?NAk$7ER^z;(z%uhqE-&Z)iFuriW(#M=Q``!07qY1z6=?zb|C&$y9@H<u9
z`RVT}q((9>CYxg8t|!lv-`JXO7t}b{SnWkCo4J5UXyhq|^*numbn=u!obcCnR>ssG
zYRZuwn^=7}HD&IK#+bKdW6;ugeXH^McH{LOPwzGcT*LLea-R=9edOsgWab7Ikc^L!
z1MCh<^i2gl6IG3ko_DKJfw<tYCz`*6VLi3-wT`c^J$>WpH&4GK|2?ht^rNSrJbmlw
zJ5N8byf;@{FRXp<iTvV~hmPWvx6mir*NxLU#P>J<++dSgcU0GS`i1p>yt#90>sJKn
z!W!d0JpJkEZ%_XqtddqFN38Yq7yHuDBA3V1I2~*K>j@(Qn9YBlakJ-V4Fd{A3-8vx
z+W4mT$Hu<a^|hX_^?kMT)z&vL4gvv$0|?xsL2cj*8NQ*fjeOyHB9UtBJnN1VtsZ+D
z$V7WzoA~PBo01Xyb!^-ds3CtCo}2pG%+~;41ATSoU%r}rb@#P}uPuFb@wJPut$c0m
zYdc@t``X6Ww!ZO1f!0F?qS+pQM>FR04!(BuwUe)%eNmi;e-R;iZ?W~tea+x}@YIpy
zwX3h)_^z+2uibrh^|c2V`$8CE^CG=*QO=!Ys=(nE!#Rlth2N~3ultT9!C@f1CwlnW
z(^o%MV6xTI*IrD@S1(_L7x(tHk8eP~Z#>y_^b{lfJDghU?W>P(8U^<CO%F|iP`e&o
z{idTy>%-jMw{f5Tz9@6eI=|T4+K*3sP4IQ3ul;=;;H&0qjIY70u&?31M)(@yYpAb-
zd=2AC=2?H;T15)I(%od@<6GdB(nBMCjq)|x*CFiPs>;E>IsPz<V0qr+e8b$PPY?x0
z4)t}IuW`P{`?|14EAm{%vdH_JR9w_`f?S9DI>Hy+N+=l^ZI6XD6o84oj`DS^uj70j
z?VA!?lYAZHo8nposVDoI;%n;vdyBcvA61Vyml;g+HJvH@I?2}zU&s4kaXXygo4zf7
zj5FAN<l#3nt2l~h`a0RyEMK#IfoeX*7a<iQ8jMf%#gz=6>Sp`~oJWwvTwkaA%6#R%
z&hT}nuN!^c<m)V7XZyMYLVBWkp0D}7miSugYXKD1h-fVGwa_<ZtZ;zyx)_q!&OmFh
z?w9#G$JYfcjxXXV=lVL&*ZIC+pMHB<6d%U*4Qt~}U|}!vO|#>ReN#=2SuiHe<WgUk
z`MTWK6~3<Zb)By(eO=}2YDfZ7?_@$SWX+Rjdf>tub~nooJmY#_H~0eEPo5w>0uUxl
zupO-fecj^gNtVmkt-fx9IDOskYq_r#zV3tqc{U!^*GlgHR1;f+27+A-E}AXiCU^U~
z$Jf2=;5E%OS~Ydumsck(tPv;#9r1v#2Yo$)koWaJUk|a)J*<a)W2HW{z$EVB|5>uI
zcHP3-V~r0VhrAmDKonOj?2b%8A^*2#J?-lmUvKz&)7P_XpRbppB45w@dVwAH^%7(=
z$@*Z0>5s;dM-U2~cEK(dm8M?xO|bhl*or4vSWC7rN+uLbKar(C7kt^i0$(9_@a6jQ
zeEGgG{6Wu>N{QylxsUQd0uh*{$XDzuVKLc6a?{pUSZd%v!%sAcU0{RxV&SXw^$!H*
ztHsw_NM>K(_<GydJCMq{)~D>LulIa?<m+Q!@B8||*N48oI?|-Uj+$@aVdwx8POZ{&
z0lN~I`X`WF!&Ctm@fnZj>kD6BHtzNnQ@gPW1pWD8W<7ZYi@wU&YG1$j`qkIB5R$JS
zef`AxBiUwFDKYc|gV&oMYU)Pi6Uua;#{cYVjW0wBdK4Q(opaDx@ZfL0{`9rh*YCdm
zXs{;>h%XLD&|kj(Mtb~c{EeVuXu-MfA`?gc&sVEJTL#)H&^m!y2ihc1hd^xtts7{A
zKpO^HFHqY+>j!EV$X!_L-r1sjI+bAnyJGmiHQzLX*(lJ)f!g!;dj)+D-sJD6302sE
zgw~FM`RPpqZ5Bv@It8ZI4Sa;1!dZ_l+BwkXfwl-ljN=Pva?fty)^PUDr$TI?Z368Y
zXtzMy2HGyr&VlF(x_zJ>0__-RCobq@QclP^{H>iS%EwZW7Dt(vE`fFljF>v&uZjVV
z&b4+A)HTo^fhtUp+8`6#ANpl`Izw5!onloR&&gZtP#zeu(>+j+Kz{`KlV=OmGtlxt
zD+28mXzxJN1I-AuPoU;NBLa;K)GJW$K!XD9AE-~DzJdA&8o(!m+xH8!Zy=IhDRIEc
zlSfS4hqrjh2L{?N&`Gn551%gQB&r+`XmFsRJWrql1LMLP5|}#4e1#32dz2w^Xb-J^
z821c>i2i7tv8OP9Mg=-J(1buo1{xjckU)n88XKq<XiT8(KW=*{i*||$k>G4Zk6Lo3
zsZc#G(D*=y2Red%?`46PTf4AE$awcwCb<|;9EnR4105A;a-b=Jjt(>_5COGg0ujL7
zY*Fo{ib2&v(oA7$pko6a7ib#9Gti=7EZ%thmLIk=L37T{ow{1b2Rb3pvOwnqI+5uI
zIwR1Tfo29eInbOyrv*AC(5ZoD1)3cw-_(?o<qn87B8hA(HZQ%ux9DKa4MZ5_bSQbO
z>4<?J8_9VV%Mxf&pv8ga1)3jdL7;_!0UA**;H5K$v8q5>IJsa(2$izHxOSHWS{j%N
z#;hl&Cxm)#pz{J<73k_f=LfnV&?SK`4Rm3ki<sRK>*7FE^?{N(@iFvBRz17Fby=Xx
z16>j5N*<%XN!OyT1#Wf%Ua$s!NCfOPfvyd7W1yP?T^FDgx4k~l4S_+X5duD-t;u4*
z<8;pL)tdv|66jVaKM+5`B2)W?fAI(Em}GzOmbVAGBTyVD3A8fMoq?VX^h}_;0^J?x
zK@|Hy_dtqN`S`VRf1rB<-4~cD*6hyUzs-mIJrIZjl2kH$DA2=!o`CiOJ;H~99t-q1
zl+(I9h+N!m-A}Cz?q*W>U%y}kMm;p}RA6ezqm{u~#0Z`Z^jx4f0=*gN`9LoOdL_`S
zfnH>$Fw1f4z6=NTw~nFq$g0YFU-T#N3PSRfp50yx^m>Cm5$WEm=7jBfY_%T9W*-Mx
z0UV7W3giXyS^1I1K}|yq_HJPhbN)gh_}s!k5!YYcjA}=y2s%f-NdtWx=#xMh<P@j~
zR0euC(0hSe0=*UJ?LhAYrUnS0Zs0Lrz0w4n2}5tuH1m+}2l^n;hk-tV!B?AUA`Ed(
zVsMeOLqr1w?^Bop`U&)Xpw9z+5$Kyhs{(xqi3a+bWt`rD%wH4$_!o~2UUBZTI*_%f
zM(FBW7-v=G!Ka$gbLf=uL!ci6{SxTcKtBcgncYXotf{<2g!<ZMfGdL+8M}bv@;9XG
ze-$b}{2pk?*TXTm=+91=du^b<5Cx$ohWZ;;Mf8QTLj8*n4%9i+=Al}JS|`*7p*9Rn
z^|scb)(h1(RGU!ih6Y!I#|AgZ(2cD1`D9h4U1;1mD70u|bZL2DqP0<|jYD+|rBLnp
z%A?Jjgz6BQ9ut_iE9MLXu)4`H7S?O0(D*ht4YgUQoo5WCme)2EmS1F@bW0U)?G~Z7
z4AmvnE}^yxwRNZ+LhTr8n^4<^+Ah@gp^o3sqANP;4W-3V5_tV<UyBBpy{B0_anI1y
zmLU#EHBp-S@z}eD=JesOYpC5q?aqDXnm7fj1#W8o_6T*aj6A7^>K1A!*N18f)jd?-
zQ2j#n2(@RZeL^*d>KSUUP>}cDp^3m!!-qS=2)N>LrQ+!86{>frKB2HisVa8=h6dyb
zmEybDH&p*ngF@{eYCx!gq4o<+Q!N~xG`Yt4&!$t;9uNEhp$4;zp@xK}p3h^?H({ya
zB0FkP4gd48vuenYVWEce451DU75#7Uh)|<K9UN+8NJ?xI(epDF)c~uH4s}SV8a6(q
z&!$`SME;Z9(vcP^golM18|v`J`iu(&+F?9X?rKCRZgAWzxKoY@H6b)wH}*U3cl;hl
zvHPJe3w3#@NuiDjb$X~XLQM`eCDaL_P7F0Q)Ulzag_<4;^W^HDZH{YD&d`&qS1qa`
z|5x3v8EhpRx}y5(uN4w(2`-!zYG$a}q2`1-In*hkP7O6HG_`FB(}0S<Vr-QsfgmZK
z$=lOH%?$+~VU3zXVGz=3!$3Qn8S1Q1i$g65b#|zE>;-EQ>eCB50FIr{&UQAaax6sf
z2?SOag~Fx3>kJdBSQ=_ss0%_}80wr*=kn{J&Tp*1`7bm>X85j=lTbcPF{Yh$QK*YU
zT@vb2_UoGF+71SsGiqOx2tX#_Gk+Vr*%hI#gtJ23AL^=5SBJVa)NP@z;o)J2P&b9T
zjt^-B5bB0d&unb9eWV%niSQY&Au8wJ9O@QW;O7d52wOn59g02vsO6zngjyNu&IZ}f
z>TR+$Zx3}xC{$}$^`S+zyF%R^>K=$3vTS2ohyv$E10;Kw)nH7qpa)=8C@s{}q5c=@
zp-_*7dOXy_p&kkKC@Z<TJ@yDbZHlE(7M1q&y`OD<BGi*?_rp!-^I$yOMKxeu?7}ml
zo(=Uvs24*$7wUQL_E^)7ldI>x*aSNOJ4ax?gx~4c%FD3Buco9AX%t)lGrkt;b%-a{
zak1VA^(M;_>9$DqP&TX=Y41o*C^ys}q5cfzh4Mpv!sdnwLWQB;3H2@<5h@N<gepTN
zq0&%UsJubyfF*{`HH!l+adv?A|9DZYr6IN63iURO(985l;uXIo;rs0dnb^>Kq23Sm
zK`7dTBJ?1+4?}$v>f=!Oubw@_Vr{7_!qkYue-`TVP~Sl|{FlA^eZ8+keG}@-P+!3j
zM^{+~>=8`(PF>op3bi`aw=6O-;(@0B2<JXnHLSuPLj4%(mr%ck`iW=rI{X}JO(@cl
z0PY^uqZ`%)sv6(=Ei~2Fe{XQvkSCgdT~yn0w()_l4fPkYG}6|Q{top|sEs0R9O>Us
z|8a4o^&+*3v`(bfk=jIB)z3IXpgoQcQ<Ju-8#OkmC)qaA`jOg2+8`2n8MyUW9}vi7
z&t+|_4I`oUFn3<tN7^LPrja(|%19j}DN-i}*N$5D=I|9XbLnI;=GidTNI&cxY4b>1
zMA|YkozXtMwMt2O{!1tapcjA#cx{_V+eX?wQrAe^McO{nPLXzwv_oXhqu+*%+%Xaz
zdjSk@GSUKy*(K60k#>!=TO@jYQr!ZO$;OLognOu(j<N)s>=CIFsVP$TNLHk3B*MPk
zB2$+D6%nP2aw3>cxF~OZs#T9jdq(OR>HQG~+pxnyBez}G{1B?bK9QOuoe=57NWCKU
zj&w+*TBJUa`bIi1(vV2~BJCS#V5I#b-Ec~W{*eao<Q=W6W|~ZJRB^_GBJCgPfJlQQ
zfi=2$nu$kO7S|9XWRXx`5&1AQ(m|0%L>d`sSR_bgcqIPLm}pV}c#8@;D$>D`DSbaW
z5-3nsk|lyfF_CaZj)`<=q@yEEigZ|{vD_rmgh=Bez1rFuAL;N&9~@^QhOj3-<THAj
zh|iIcCPsQ=cJ(O8plh!Vy)EznV7!41^Wia(CPz9h(zHlZB5gR%ni}cY$V5xI1Fw|M
z1GIySY<i>_k&chFWN8O7eDTub6{o_+pv5(iz$ZnT2_Z!~C(_AGfq6wbGt#M%W+4Q|
zSLa5W&7_`hniJ`?NYp>Uzs+0DL@JF_kYwcC4yQvHGlnwdvm%`xX<?*Ak>)k%WPYRt
zk;X5sZF=BH`Zv*HZ|0rV^Di1fBd5hY5?db`E9}kbRal8GNJL=KC(n&^UZkrdT@&g2
zNEbx9B+{jkE`;PF-Ezbxe@$qETW>0DxKFSyj>JK>;N!lRMY=rFm65K3WtzJ6y{GvK
zCbGE39}vg=53hm;L$|zWaqZej*D<L`H%Gdj{r$0WL!=v_w-wEZscfo=bRdW*gGO=t
zTabk9EPxH$Ofi1H<&jpvZm~MVx;@ezk=}{)Zlslw?u_(8q!%OI73psFBGN;V?um3S
zD>>bIAkux2k-f;V`=Nnn`dz)EN>5?XDG$PHYbpeKApVCVJre2ZNY6xiG}2>{9*^`y
zgLKKU#nR_8RCLNmaF{;HX1(0>6vQyxx^r>u*+|bta=&T+d?XS8fs+kvWnD05*wwR5
z<*}C{y&Nfs6h?Xl+GAdkY<Muz>rh&xH(9Q`stcZK0{<WXQ9<cFbb&=>224?h+eY$O
z>IS#|Ut-!Ti)(mp$%_Or$nHmx;z)U<qOtW!q%=~-?#~$pw17$%@A8DCg3cLMMrw)l
z7EH%}eOtMykF~mug@T8+gMi{(WAGk~A8AdbU*L{NA4d8r($|sLppPPb8tJo0A4mEG
zv9pH}?35p*8!Y(w&m(;i=}Vpg{qwr!Nj)t}0V81FIl1}`!Zy-(k-mp_&bC%V&yju`
z*NOx5W6LyT!K?E_q#q;w6zS(kTa6h>z60IpPH$~Jyt4VHPNv$xW@lT!@-3uytTwTJ
zkMu{Re-Q7H{*1IX(qD-ENYDRL!4tl^XSW^NTddOVPc;#C2io@^!ao*SQR~FQqfU*-
z)rXJd0ub!Di`R{{UaWSpHi!)`w~e)aELIzM6_ObR^2rmc8^+ow*2b~g$EJrSm};s<
zoIb?>{4nL1FB*QwSc=s@)__=@Vr|NmvAV?CELLX*vpZ}XYxCGh@-1U+6>E#em@^kG
zclxItwvLT#-zGK)c@$dQhSa>>F4p$3c8IlO<KmqfuRks}*3d>vY6M?U&vuEmYpfoz
z_KdY#tleW-v8u7IpH=M|YmZnJo@#;h`FbY7`L)%?M!4X#YPVQT{Fc?Gdo0Xwpk<tN
zEcHnfjJu#`ti59Oiq)I%zTbB5So?4>y2_RYo@9yzZDh*$gFxsLt8c7+vG#4O9t(oo
zfx<id3gUW1YbzXS5%e4wYj~^?vG$8KDAxY54v6*OFKvg$B6nkOtOH{WiB0f}o^)Hx
zGwic#%|dfHDAur8lrN*K!IBd!mpX*(POKwhO^9`HtkJO!i#0aZA+c()#>6@_Hl1HU
zYya|U)2k<0U6#}+G&<EX$x4qOyvev&<6|8ji*yX^8erH|a;825$J~+pP^@EOO^$U`
ztfOO1;%O(FY92@-a<$MyfRyuW(DsyAQ)9jQczewD&(E^{I?DpGJ}uUCb|KO3iDp1-
zvEo=stP^6L80(H$D`TA$Yi6wTV_gvI<XES~Iy=_9Sf|FC73;KEb7RepO^EG+9&P5t
zavy81^{`0YqWRJ3vCfEfW~{SfVI9-w<+-!0aF!7T09`mEz{<{#wIJ5gSj%E9jI}7%
z;#f;qnLZW~(!Ix4k7#RNNf+V|$4Inun{#5F8|%DSU>-nevUd<6MHJbK3n9x`*FjFP
zE{=6ctSe((73<Pim&Lj~))mZgit(^Dom_=B(2i(EK%q{OKCX^UyMb$BUCVbr@84+v
z$UW0Sg%bxf(G9U~jCD(_TUo{l2CQ;ZteazV@V&RInHn&^+hQ$`wF0rvrq3S6hah}V
zWkI1}LgG3guytpwyJEe_g2cKz);%m;tjA;B8|%JU55;;o*8Q;_fZiZcSm}=nk_T4?
zjuaG$XQ({CsfA`jg2N-R9*wp4$9*9-c9X$_R<|c&JsIoSSkJ|JD%R8N=AV^knAD6a
zCO-x^TEw;|8dAsG`FyMwU~^fm=_v7wc~qReFUNWX-ih@lGvy}#RbGqr@~KtypI=Vu
zz}wejQMQq{^;mW+KUM$>?_)Xaek`vs24zY^9B7Yy@4uu5JBJ7^N<hRyRf8bgZEoV@
zX{;>P8g3XXk5#}^+^vgM#%hU8{pwF*y%p>2SntRBAl5sv-i`GhOtGYfJDO<z#D&Jc
z1l9!@IjNl=#`-AM$FUfHHMJLQ#3wgf-|c5ej=Oyt>$6yBiHv#uBG#9&zKZpAtnXrd
zAM2Y~t75H=^)1}g(-cz1l|eNsOauH#B&wXer1nFsA7lL#>t`0fsT+=qOFJ0H5uM$L
zSRrpwZhwvS8{#+7CW(HJ^#=z*qIDDfi2&i*Vzo;2SFFEd{S)h7gxkg@<Cq!!c8K-l
zZU)^=2egZp)W%Z(Gg0eAkL}flPtZ134mPX0UZS>%HcYfpqV*GvuUhRAZIBobSTWif
zb(lp~@~OQ?F>6#=3L83I+H9N%?+_BNL!yp}wobH7B0xf&5_L|rd7@1dtz1&ujNkgk
zAizP=qJyDlZjorqL?nT3mFVP)M&O9R)BEK#Q^X!CW7|aACE6*`&WW~9%-ZgdXvaj*
z5}qY+4p?nG13%p*(Jm~)s>-g3p%z>#6yHO_M^kGEz^;k*;9H3<NmOAw6OBo9C|4%x
zmS{ktfr*+Dbx+hU5lMeN67892pG53^&qRAA#z(g|7tn5Ob``-wKJ~lDn_g7C5(4h(
zlc+DZ-OIGL!Sp~W!jXb&=%*>BnApCF(edyX^-oNf;VCPc_e(S=(NI3;naLPRbU>oP
ziODHLZNR5`V4}4*SBE5`+&6t~sGf&*F)Y#WM57WNoM=R%k%<-!F{d87E4JG=+nMGF
zkDStBbfQBN)e=3w#DMnKySqAiU4x<lt9DqTv8;2VQxc71XA@0jYKaa{bVQ<~6HQ7q
zA<>bECMG(nu`fK*pM5P<aYDMNPh_^<_fzGVM3WOuX)O4d8OBl5vZTgpqaJ`tJucC-
zM8_vOAra^7bdG>ChRsM!<#zgvFb2VUB82yM<)lP28-uNyP0PRUm(*4dF!kk5O*D(y
zC0d+lcA`0n&PsH4qSF!sfSjA?^u**rj~HX9nq|kCa7JP(Gn~l{$+lZso0n*Qq6LW-
zCdSQz6ot`nB;o+UY5-*ldSOYTrHRf@bU~tJiOxxMZld!bxo=HfN7#SG5Q{%7-#-xJ
z6RTS;tzFpI!HW{p2N^PES=g*g6J3_*r9>|$x;)VpiS9{sZ=x#`UB#YqF*MxEx|%0U
zbbX?05?z~^9AQX>QjJXfgH|1HNOWVOn-YUdN8#s3F-Y-O;Q72Y(QS$DfP>hk>DKZ@
zD-zufhu%=7$k>kqt)5G3a72Aq>(0cq`MxXB-HGX^%uYdyU~Dj&KqcLm=>9}cCVDE-
z1Bo6?^eFt8=zobGO7w7|M-tOEj>D0}y-o+3#QZb%HZTclr9KXwY-y0UPas=Pv2Z^!
z-g;d1X|^~qUi#+~lc@@x<i&gSY@+9&@J4)rsP_wrUQ9H4MHK@Fb!bPFqC~GIYDx4~
zqSq3=p2$xWu<0wSZzQTGvLW@QwKw7V<Ep@1X+Y*Aaua#nc>rxpo7h3Zk$ALdeH%hr
ziPA(_qL@4XT1g=6`9_Pw_J8_XlbD>dv(*1jR5F-q*a7DKXq-ieil%{YL+Xh>O7wA}
zcX_J$Cd&CiqW2QL&*H3Oai|eNzHZIH4-+j}VEzk``;$bUCi*JT*NHx3<r968=*vW?
z+?$OyvK{ik7{@nDp`Pa^Ti+mOI(1mZvn{Prk&FwFsQB%_OY}XP`?c=;T0bQE5psH8
zm%p!{*hDC^Md!3=O`>1eyIfD@`ZdvSiT2IZKhy7t{(v=7%}ezsLIYuyYVTBkCHfly
zo@(P%L_+{P{FCTk_V@NGSttJ`YL#l8RIO93pQ>G|HmTN4wO*>Wsewk*yBSz1<i|rY
zCNjbRNwq<0(zQ0^;*J(>0nBRr?d?--l4{#j+okHjU|nm|RGX#hm`bS#Q1VHq#^=|}
zt}^bNYV%ZEr~0(3QP{RfwPmWUQX?b*<Y0;-&v9R{>8&TW+9p-?uL@UgpK1rjsk)`w
zG1X3~c1yK;s-07HNwrI=T~l2!$NKxaW-<<N`w-zmo!H=rDnhbrsy$LwQdy~K|8e8%
zO>K6v+O0nV%bm?-n?TW{nKz~Ck(yGajJu~gb7>7lXwOtVQ!yX_fyK1N6HWW1YUYzv
zho$P38c@*wd@EJ&RDDwQP1P^efK&rh?VAcW2!H)kv5a3IU5$5Z@Xo5reyIkff_YId
z0rk=Bo-s*<gHsJ<DN-HC>W#OCq~b#wXYe{K)$mjYry8A_mM$YwjZ8HvHP$yVcT95P
zo16vg%OR<1Ea^~dOlk_EA{>aua->3UXkueijY~Bx)$~;3QyrdaDwIHC7n_yp=v0$Z
z9hn+b$;4DgrNX$wdyIzg<er8Mh?^k6j^TGxO-YR%bi>jbTSh`6@qKFh9NW0tagA3N
zhdcjpOmzk;4=JWPKGg}SPE2)DYHXaDEZ2qx<pop{(T&P|?_t)dsb-}*E!A8o`HT*;
zQ_bO%zl<u5WJYo_&C^qz!5*bLD>br|((CxUI{#7u@?p}=HnKWTtIkigAk_z{K1{VR
z)uL1nrutv1#i^F0x|%trTH09Q^C6y8%Tk@wczZ63ypwfaW6boie_uPLdSR-IQeB$r
zG6(=SG8}iNbxC7P(G0uQ0O!nMm#4ZS)s?BPf+VWlIL)bp3jBtup5XZ(URraO)~-!;
zU8)tSZclZ6svA<>oa&ZT-6vJ|@6+bSR5zt!opGFUn4*u}n(DSx%Ts;)xQRs2yA9Uh
zG)HeIm~uy|m8tGYbuaYR-@21^p3wfTRCo+voV(NizkleJS2y36>hih6?oagqyFaB0
z(EVcIe}7lVd&QUd5MN2<q;gX|lIqb^FQj@g)nln1PxVx)r&B!vsaV#NsaRXs1Z4*O
zgy(rC)w8LdOZ9w%;AzgdUVD>6WRA9_HC(U6O<qd%GRy+OF#WrlUtw)iy#^)pF+_#k
zJ#d1BSx1%KH&fM9*{R?-O83*$i9QItauiZP)l224DpR$j3Q~os(o|Wh2<qC)ic=;0
z#Gw|CN1dE@Q!Nr>fxiyx-UjS(o~l5G>|@F)uw{6qC_eC3s&`Voo9b=$cX=~K1~@Os
z-+3?9`>eoz79Mi0U!RHu9ryc)T|j(g+9J~@NU&6Yr}`(=XApC$AK>UzU!?jn)v8ph
zA(i3QSE;^E^$nEMY@pz1-Bjf3e30n{|1JL-Y<-vN`&2(KtwB^wng0$x%l!8zK1}sn
zs^3$sNp;^-`X$w`knsi<ogKh&Jv+p>AgCz&2c(#4EzH6O-CAXj$ad$T<n*VT8xj~P
z{co!OI1Vzk&(tc@I+@yLT0c|kOl>l)n`ymFfR6Cr@)h)OLK4sq?j5Yxc9}NFv|*-=
zGGnq)ev=?C7gMbo+k}|!g*W!?`a@-tOdT^R6XOnz*X1*;PMJ2%v{|Oke0OIH=k|)_
z&6J^rg$a_PS7Y$zJ6c<2+9}h{nYPNbb*61HZJQbEa{J6^`}ZEY39s8_qJ+YrRl|44
zv?Gtbw?%<pd;%l@cFD9$rXHF0%(QE!-7;0UIMePtMrN8#?2!rACG}_c79f9|iU^--
zrf!*<GIh^P<uvjvh!SEUzTdk$dyS6{Ktj(<du3|Q)GN~~6FTgji9&PxFwNVWvmq8$
zNui?Nnfhevo2ehS`o#bPSb4M*yb9mXu;^{^*OcmjOaocNTpQ)uFVmn*_h)(_)Bc$b
z$TU0CoJ@l=9hm9pOp`JV$uu<6A(?8K4$3qv)5uJtG7Zm6i>nchSHNAc7@9f9!NHlx
z7Z{xxKs(-mU1u0k*?T8zOr}FK9iHikOowF}n`vC8@tG-TY#f7V%YRqUjb9jSn2Xx=
z6EYo{X=0|Mc$i6506(Y!Py#u^{E**y6xSb<X>z6+nU2piB{S;Zv6+s`4AN#QY6&Qv
z<Eqm#5lVQQ5J0B$PB9Yu%-5Ql&Nis66Ee+YJ2IV^=_CkaS{2#upI+mEPswy@rdgRl
zSx^{xqf<<}TzQb`>Gs3)>S>wgX1YAn75o<W&$J}d(oAP&IxEwHObglfqpD}~NSWq0
z#`ISr-Ia1=SmkW}qD+f3bL^tig1X6mG8L7Hhc3%>PNoYpU6kou9yrtanJ&nTx%$~-
z&8>%67zHpI(iq6-qZ?QkXSyWQrI{|vOr2+*eByZXO4yoLY(o^kD>Ge{X?dm<P++EO
zGToTzCMYe_b(yZubOWF7YIIA?N#p?e`!E-zf~dJU(=C~9&2$?aifgfr>1VX|U(<7q
zJ0sa}T;HDQj!buDx*HzZ%UYS~PUyL6z>ql4abn+hXY)Oo?#*;xrgqC}tOKcGB-UXv
zLpEp~4`%vbraV&t?`L{A(`%Vt&-6&9M>9R0=^40bvGrJ{Co(;m>G8%}KA{fw|BV?u
z#bfmBM(X#onV!q^5)_!}`Ajcx+v!7JY>*|mnl~`qCYctlSS7Dy#&mr(Giie#Jkt-~
zDKeRVy^-n7%$&Swrg|njQ;;dl<YaO)d71po<m~^SH9fRG9QQ2t7l9ijUX&@$lw_t}
zA65($h3;`^&6Kh+popEUta0Zt)2uR6OQ!EKeV^&AOmAoU7-0^NZ*IMl>Ag(vBTTB+
zy9gPY*bcNl$n+r$`$Er;5Ggd*+uFo@cd3oU-9h`IPcwa%>FZ42AQ>`!k?G4!Um<y(
zYC2}9MG-Cb6z~kmIItvu=T$IB)mokDTO{zG6|7MzAz&8$wAeD>PlyxV%=B-jpIACH
z{7ipjTEkjp`Zd#UNQu8Ily4<O0#Y4<#H);BXU>V%pPANX`YY4lTy}`Xe{nzJHwHxj
z)E_C$_&<byuJv-Y&9zRh*16i`S~u4Y%W5d7{877`WQXs%cLObtk+ohAYyDj9a&3_7
z#-?s0KXMH{g$d&ldD%Eu`&^T99g}O5Tpe=lm22-@9djwy?zy_=>Xd8KTwCSZIv1Xk
z&2nwg7<A6Hd2X~vZpcBvLvEQHcB8p7#fY}awQa7Qa_yXJyIkAzgt>OiP0j6|Ct0M)
zBVEy3jy~NmCU~tbxpv95Yp&gLlSF^qV@)UkU-mIgz)7n)?!jhY?R(^^<fflU&s-KO
z@NK1At|qQ;j6whM34h&l^~kknZq^VG4o*=zDN`p3S;2QPp!UhtoNH9BgLC!D)jQYz
zxemzHCs*HG19A<_)i2k+x%%fK%7#EdezKA{AGish?3c^g+JdhK<)RrhQkvvw6!pQm
z4$L(y*YI3Jat+OOP;Ocsambo4eqX_Z$|(j-j>t7KH>6JT1yNCyPjZ37Y1U}2&vitu
z3At*y#^gFI*H||C=L*ml3S}Ici==)+D&ulfH)DLR!*fxvf)tyr-!!$6(X|*H*?7XE
za>I-h8?(S-;+c<bd_tLMKA)UxO0IKqottZFt|!;CPR?~ou48i@mm3*7E!Xk6PRKPq
z*Nj{+KEigrhnk6Ro|x;NJ*<;*&Ex@SKGM{Uvx7T;^9RCrYOYzi&dPOmuGzWn{k}3c
z*Xg<D<T?$Km}jCYWP2gc&uIM6nGngh6%=NEl=WdekB!c?r19Sc&|9uWxfb)<*&6kd
zDRx0D7&;-gg_~vdjM~y%%OJ?<LrLR8C~<<Hm+Smox8}Mn*9EyQWD#;*lk1{f7w5V>
z*A=WAKe4rSX|BtleCjz@tUsS_M$acPdD$aPsK;04#^ZMtk1@Hr>=26xIAwgU&2?R_
z8(=87rmgkHa~-a43>f$Ss{Kvy<EqNdxo+Wkx|@A>CiKFpV#=s|%X6(@C3D@M3zEK_
z-OP1oV|)ip`tU%g{jOYhv%IVu>p#%&*A=Il9`1j<)O6-TLrYx`v>wRyV6KOAJ(BC=
z!>#}2BCz;SZhSkSk*Oof#gD>|xgKW<aMp$<sRw|{(Cdvm1t?wj&c>2`I@dFBbg3;%
zJ)7$}cE8YZg`Us#0`ys^eW4d~y~GppL%Ckg^-8WRSDx$DT(9LOODoLvI-($#o6F1f
zX0CcJ8wzA14>b`tdF|`rC{!pFv^s@r@Vv3ney)IhIkw7}t%r(eSQ+Jt;hpWQ1ZsJx
zDQ%2N;NoxYSgXiY=BD7-`?*?j0d0Ca*E_l1;`0N{*5C?wHy3h)e8cy0VYp$-kev0;
zVC#e2*a9Cy%;P%%siNuCC%Hb&^>42Ka($NT^ISjW`Z?DZ+#%QMT;JyUD%aP!zR9(U
z1(`V%ZxxAef3>x!vxmJ5JQz6Wce%dL^#eqLR2gEOK=nKf|K-hi0x2<#9zOdlYfY|S
za{ZC(Py9cKrrczC|K8Xy5}+7U29Ql*yp|7h{f%H@YO5<JUo?XJ3sWj^h&lZMc%w+P
zDzr|a4GLqxwl37B(0Ya17TWE!>T%DA{E>AF^9mkd{le7My!^?gc7;f#r_niMzzL{@
z8y4EAFvLTd`cuxZHYwDh(B6giDb%r$3Uw_+1BFh7HZ8PGp=}FoR)~^=n-|&wB6+o`
zb0I4BV8&7kY|BDh723KGoq7Ox<6cAV@r&4o+ZEcrP?tix6xyNCj)itAv~wZOUk;A5
z`&#{$)eha>xQqxqfoa^8i4-Otv3nt4T9lsnVrTPTN?YJF+@nyXkX5K!sC%Ivg}N1L
zD%9`DR?re$jOhydZ+?0W&fT+6&q8}KuN8)WfnHOpg3piI*lI4+t5B`bm_oe^^(k~<
zp&^C(aw}$0Xi%Yj3-vEFpwK`#;y{ZO7<i}s1d{;8lOwLdi0)qq9zUSa;KHO=qYR^O
zLmmh{SaoQjg9?o*ba0_zg@zXzQD`I&Pm!?>7O_QaMh3(<zWKvs4~^z|8hx%0DNM<)
zMKm>DTOn=a(89FoJiO2mg$^q;w$L~>^qb1~#^<QnoVjQS;FBj5I<nBDLdO)ESm>xi
z&-`6Ex-eE4C8V&L3AJNW6Wy51cMB77n_39R-R)-?J%m$?`dValO)E6L&<n7Cp&5ma
zFLZOETMC^}=)^+j6gs!iNrh$>I=#>tg(=-|a-mZT&0>PntEUvYVD3nQ-LnhLDRf$)
zxrM0~-g&BNy+^tweVmy)F@=4%vd%1YR-uK37C{w-<`tS>Xh9)xR?kkWV(Y<BB->JF
zn7`v*Z(3YvNui~MmT}pA&8YO)K?L!S-O{2^KR8}k^}Iso7rMOA6%fgA>w-cT7P^S*
zk26N%#Vl{3OAB3A7#T%|5rGoq23tutZLl2J(N`9_s?c?XuIItlv92z3O`&TMi4#o!
zR&p+Ic73<JdeP3-4TWyxX@98PRG2b)=t6W7H(r8iraa57g>K`ETUrknT3%=czgXxV
z7?Wi$bY~$lL~z!vWb2PJv17WzjagQ^tMNHLD6+loWlaWI_ZNDgFk$HXV95haF5!cP
z0T=zR&_jjk1;ZF%Guh<?rmHtJKT_yXh@{Ztg`O((bYVPNPZWBx!Mtex?9N_&%`Q9x
zqZN7%B4;D0ir=jpX#zYj9c_-DK6uwtO*-UDOs&vQg?=vd3fo=iokH&xdacmwg`z@n
zp*IS>S;#5m@?eF*qT5WWk16Df2kEq9YXqacLVls3P*`aEiM3JBHsjnN?9OGl0ZCw_
zvPx1YEmSaB_HJ)0E0h<;)}UZ4D%0HY<`8Tt^j4v_3j=k=3k|RV-vWLQ1P;3TdxhRd
zIu-h|&<BM+Ec8jCPYZp7G&tI7^+fZ>g~5=M(Me*|%snkCt<gj0GnTQ?<kqHR$nnc+
z(Vo^<g}#Pv3w?(~DzvIF*6wO({?~qhju<anRzt12VAhcD3;j@-EbkwA^3m4HWd^N;
zqQZfWUa^MfFVwnJn^M0P`VA2}!a!1gFZ4&De+vDJFfX*W&|iiAMpSNZ(XIm28EsA2
zAm(-azXM3?`>#-|QtOnaa2EUyqv7Ehw3~&e0yo#XrPeFev6M=+Ewz5BjY@4?s$HoK
zN^Mx0G6KmkqdlU@Qy&uiGoI)6r8X%IR=GoI^!YhEc4v_pa1FlSPNnD?zgelyr8Z^U
zWc8v!*a=ne%$qmfa?0@G+s9V7Dz!CtDD`HkZMb2nQ%lV%wOy(0ON}ixuG9{tb}Y4T
zss5#QDz$T|?xlK^>QZW#QhSuDl-jk_Zl!iF)wMK|ghd`x8+rM!{qW}i0z|}d+*qZm
zrMi`BDot#c73LI!k-^)O9ZY6A!g<e9Jxlc})w|SQrS>khPpM{>=%HpTQ1p;VbE*^}
z!Hz!Rk4mwN)u%L?Ti;UsO0C|(q&bk^@y4nO$)Ow>14<1nO^$G_)PAJ~l^Vh0mD<15
z0i~8y+Q7w}Xv72umnLM1YxlrXLzw%D>d?k3gM&&9`+wu%+^~zeY*eX(ON}mdNNHjy
z2!U&Rm<D;=4RjN3K$^0RDRpS$*AFX2*gbvFbW@_g<oHsDmzv5Vlscl+1eWfW>f};K
zGMA3lQKgP9H4y@!H22F*K*AVIYP>y$yB%V}uOIX@2=ghWunqa{)xEmY!{WG7(@V`L
zHLX-qv%F^o9M_p?9bZxpTqi*ck2IZ7ns$>UAkQq#5p!~>Q%d3f?Xs1L+(E$5Ehp6M
zQgce(Uh0lgr<Iz^HKi^qb$Y2YShrG3OPyI7b7Nkq`K8V(bvD;D8;cS|5JbM9)WTAW
zN-ZwMPQeSi>}RT9f-~VVa^$hWmz6rF)cK_@D0MD$&c3X!EOlD}T}Grg%{C5`3t75S
z7niz(U*E@U7FIBcNGG>4%`1N=H{>wu@={l@eWh+Ib!DlmN?l*-hEi9Tx~9~%rLJQ-
z9W0<Da5vZ(^dF=yCk`k0jiqiXb#tj(cz{+`VC_YN?EfBZ!V3XT4-XIN&m<r(FE!~g
z;rd{_qOo6$SC+c7)FY)HEp=C^yP?}PmH(Bxr_{Zr?k^358|230W82S~Y~6<p+1>On
zc%amSCC$PBnpmeDXi<vcq0%&M{CrCFVVL?D>)3JDW2GK1^+Kr^OWoJWdIFv;^)!;<
zVC%_Jlmz6%XHfo2Jy+`aQZsQoQ}KRgmF)PJm(@^rK}J9)FO_<^)GMW4ElqFGV`)m*
zqZ_SlUW4WTsk~mAg9#Z<WR~6kU<0dO%7))tv}22$Qf{fAORXv8mGVoyU+RNWL8-7*
zOR0CpRijdIsjO5E$w31{trYgz&KfjxD5wLDD#rX3{7|X2FB?`Rc?87(vV5!5+uWqo
zyKL^?mG{_)r%bjHJPtYw#2^`SAC~&4)K{gxF7<J#PfC3W&3{w*6j@s8^HN{HDZ>oC
zA@@j019HGLc?{?fi<Q@JO09x<*H(T&K9u^l)OV%6XE%GAL^ihIvqwx@M#uyCKX!|z
zA4~mIidF^q4G4`PY=2?n5X&uU*P`Fp<>A&}rT#AUd#OK4{mH!e?|jp?9^(Rih6E)X
z7yp#{w^ZvEwQ14YqeuQ%s#S~DX%P+_l&H6snN}cFssWa^Zj07y(a_;m+ZO$Nc$G*u
zDJR?ZHM$CkmK(Ha!xnXJ(dI4Ms6`vMNG<BrqV_G?q(vQC)Uib{3tex35h9uv>|%lc
zr=%pJW78I4gmNHm)?zTj<h!AlK1~1j7H!$0ZCgzFudP~)t8?oXZPTLfm(_M7cdVVY
zPe-#0>rJ+{Yti;CChkUB6Xf*ThSp9k+POvJS~R{zU0SqDi~6>xUyF8a(QYm3(V{(D
zw0n!Xw#aHxwMBchh!o>Wi*Tfvg2|6GBQ*M27M5?f7B#h~J70XIiPTP0&g-ZueihcR
zXN&gYcU#np3p!gQmF(T3eOfe&!al96*C={9((2tJe0P0X^ko-QN`f)LEE0nDZBhRg
z9n_*>EgI0Gfi2p<MF+HKzZRil;ZYpaBI2s(OQ@9Or4DY<fh`)s7PJ_g19fRY8r=VF
z1<=dX5!U(*eCF^LjcCy!EvmI>WQ+bkn$81CimG}02r4GP2eT+93{1~1D!PCOqM}H4
zR8UEZiUb2nFpCKgFlWWA7+-VFIp;W?bN8sAV#e(EyYrp@IdkUp_V#q&zPGAwg{P`U
z)-|fG(fn$nwcl&43+C1c*5lY=(nzv{0uQR|;JOZ}YfRnj&fE&ql1_gZwivu1)wdsD
z9ah)jb<L`4c3tD@8eiA3bxo~nLR}N<I;yUt>zY*85p^9|*JS4E42%7a><PO5?Yg&R
zz0gL+7Mk-hbxo<O95sRhDLe~%fxIDnO4I6^Ue^hAomkflsCQ%QxVnz78y;k?SW_6E
zxn=X>Uo-1EiRrBi5e>qm-_FJ=M<EBOKc}v_+~N1ixpkdV*Qs@#S=U*0ZP?K|t*+DS
zIs+2=yTU50{-^12R$taOh5Da$&8zF2=4G5@X7D8Z@W()o0W)y7^XfXkZn`Ryr%9Rm
z1$8Z~>rPk8TwPe#qPqUI^`EW9buD4?ZH=&X5yPvi;AQK&q^?WrdZn&c>$(g&uj}r*
z?y2jFx~{D2mbz|*<m$S*t{duFTGusoU0c_6&^)C6_8?dru0gy%IK`p@Fr}Zq?P1ZR
z=Ek~is_SNGhDLbb8vh1`3Q4u*;@j%Fy{=_2&ivXPb(7u*TJ_Gl@cf@P*y=dHMqbig
z&FQ6-E{(kJt?RzJo~rBVy6%Ve>Uy-U$Le~Zt_OL_4C|4)9)if{*Vw{5>W<b0K9)v8
zz>~i0Yi#FvGrK%q*Avh=ue_S|!JSpGa1@rII5S$)Gj%;%*NafjVb$lFOYnSMFF-cK
zEzaCK!<fBz;|F!KUgFMh_wE*}iFME3_gY=A*Y$Z_UqGLAy;;{M49v3Ls_X5#-mmKe
znCNWlox0ww>pjT+WNYO78bwaf!!ezpA5a+|*7Z?cAJ;{*RGvsZ0m^5g-Y_$FpzYMf
z_h-#-;2&Qi7S6Vuy4<?z&11Xy{r-^_=e@f8y5hPLrs$|HL0w^85mN3{qi>^)^S+=l
z-<)oxb!Bzs&>>FI>rLNzj6R%8^zWN=Yqe3=R|q#-o7wuhu5VZlTWi=_Ue}7cR@L=;
zUEkLAU0pvSY?+g~R<a7ysy{$K54D0u#@%%F6jKj>&l9Yl>-wdxUlIGf<1fbQ=K|{a
zP|=9YRzeI{pJV+|*Pqa8UH{efS6zQMMeaX!5yT`~0m>9rAJ_nu1lrkJ%~pF`9c<GL
z0eS-@Mp%bh6O?+WtzovUHEngY)z#Jpw$`$>wyn;#y4YIB*1ERVv(?EqHYqX$O#`Rv
z^8<TPQkYE>#b$lmSPHUDBMC$(xz9*i79CF-j>HXZZDbpd;>NZ%u>}VE?BOOufipBs
z*xXh(Tf5roZEFi#TiWVrt75CWt*vbJ;D@%hwzZ9|ZEbC5i;yJ+huJhK_<-M%EIB@`
z#SXT1w6#-nB;TxWsxj~SS}XNBi0xu|S+=UScDBVH)MBgERxjIFn#ACaonHf>wWQVh
z>L5e;09<#mg;R9PrER;}+TGSZw)VBvW~+~_J#7uJ)z?-(TYK2*&l2x!tV<H62n90X
zSUN}~6!L+#_Odm|*50-b8E1qZYX@YSI0X(mGT`W;z;q3^wZE+)w(-aA$IDJLI`9Fu
zhT0lt8&d@|1?vvL41W#>WY><gHOkflwjQ)K+SY-#&ari_tr~A+YnrX;whrc@w#M6<
zU~7!6u}ph&bubXnyAHK=m~9j=02s50%b#tHYt9?ZAP(NinrLg1t)qFmts`t5X=}2r
zqj<`EgD)i-&Z;rtY>1G--aA-RY#nQBYV#Fn->{gPnLG7)ViW6{P8NQl8McnIHQUx4
zTgTgaZ%gY$TQhADs6D|piX3Nv+?-_VWLvXrgFa#t8NI&QYKa0fZ*w_m>r7i`**ewM
zX|_(cb%rfia`FqUhqoG489&dp^9`Va5|L-yW~0HTo5wtiFkpU6by~!pXX|`hOKsg~
z>jGQzZCz^XGB|>FN7~z3V(UU%i<rg}yU;BHw>d#KP>%i1wJx%CF*DiHatUlQ(MSfe
zMX3Ib8H+pOa$8rx9k#Bub)~JVY+c=)UdkX7>mkjD0}_xiPOr0dy{#Kq^eqi|m;uA`
z+yrMemmz0vg7$3PVe4jFx7b3LzSTAez1wVY4S(`Y7W199mf5=3)_u0_g0>$Ve7CK8
zY$H!dBZ50ns;Q*SB;RlAf3_%M!=IGxngv2;g6UKI5WHZ^VF_$KV(U@c*mv*Qdd$}2
zkczEWIAiNcThG~g-qusLp0@Rjt!J6E6AefPAOwP!drrZFx_b-2^%rct$Y`6i#282u
zpjI%>L-+z>c-7Wxw%$g(AjE9F!3x@X3xQ*`fO(#HL-oPC+E`QK-B?2uVtU8cyG@yc
zYE9P_xa@sfAK3cP)<?EJxAldskC`G{pW6D&7P~)|5pVI({2Ek>9{^`HI>wj$%U0vg
zHk;Ksr^W?@gx()zQOybOrDw}$9(r28*$Qlhw!T4V+lp+(whCLNt;AMpE3=i`0!Z9_
zS``O7BuXk71LjSsxzw=r6>NJ?yRUiHn%0Dhal)V&BL+VkXsxjIEx)z(ldbP;eQ#@}
ztsk0i_x<&4)MVi8XfA;B>fD>F-1BE!zu5Yf?*pvqql~^p3>qa9k2e5`RknU_j`<H;
zf7<%1c}xl4zai;UEI$7r>xP*Fa&vGnwsW+aqxT%W@2I__4vwZen&xPAM{79h?Pxbg
zYdY%aXiG=k9j)bPZATk8+R)KDj@EV5*-;n%Ji}VgF$HEjIYQB5w}mnZLapyej=DOg
zU;-eMdq<nXM~kV{J$(ockc}K|>}WGbn>*U1d6P{YlZwkWffM-lNzMFUM_V-i)e@{}
zFazUF(I;wHZRKcdN0y_iqiq~*>u7sNJ2=|TQ4dbWUEp*+yFA|qpCP5jc679pqn?f`
zj`6(lFQT!y!bmZ|=?4^+Ku?RKR>y2ryEy9Qn4N3q=AQ(WmanWJe}0%?Y8LJ481c)Q
z-5s^@YK{(e)W=a@NBcS2-%&qDdpO$5(I7|t9qs98fTMwq$eBI=>HagevyhM=)A+vh
zQ0sq3RQGnYkE4AZ4dz|?n6|ulMW{r?rc+znB&1`A4RLgUqmhnAIU4F{n4{s2MmVBM
z4<H|I1(qJ#Mo-3xQ9d}B7aZ;AKpyIdy&i>x&qwoXBoy=dhd3JJXp*BN9F28!C~N0v
z9OIv7f#N%im7QrWLoSVXG{Mm>Q>=-O{@2IsP4M6@KUIF+(O9NOI-2b0XePwbQI5WP
zK`Y<v!o_SK$W@9IO>uNAt6XiN%td2<jZ&y+bkiNpaCE(+8yp?y=y*r-9G%mA=n0Na
zb~FnLTwXcR(M(4t@$})Qi`HrjYFjR-&2}`$(dmxPa5UG^DUMEcbebdfFPt!cEv@2y
zM`(Zwz&T0%gfksIIIYWBj?Q)rr{mEDFhg+j_vxlP^SO@Bb9AwzOB|i==mJL<ax2Fe
zhVvaQfCk`#<rP45!^W7lDL7t08Z36S#L-2L*dpnQ#Y%xK0n!F0lZg4HjxKX_wWDhs
zUGC@#M^|z~uK%ur^~#4b2>lk+qTO14y{e6q*E))xZFe1%vqy)$D<=F6N(3cpsiPYm
zJ>uw5M>jdT+0imbcR9Mn(XEc|aC9fMcZ_wLquZNP2Mrvwphi<>)($uL)>fBk3u+wP
z?dTrX&d~#o?sasZqx+jHg4YX)!3S&Nyb(s?u}lv-ddShkj;Wp1@itQ^g8*E|nL|Lt
zJ?7|fM=!w<j-GJzq@!mYJ?H2tM^8I~HJ)kS7OsbGQ6u3aEIzVbo_F+uqZb`hEs8=1
z%o30i7AWo6@`|HZ9lhn~Z5ZFt>yF-V^d>^4YHCE2PC}MqeNy$qN!InRw4$%R;|Tx!
z(NE}Ic)7)FE@Xd`6Z(Op4;}69s?F6$jy^`LxoYp~6Gxx2?og(q&m4X3C}g%Bec|X!
zN3J8!QQeX4=-bESz*)=ME<fIK|EU~4*_boWO}2b!ql?A61T5>K;Y2)XEX$@DBQQxE
zbCfwsn&e7T6{J?)JT4rSjyOZ!J>7-ehug5?$=mwc(Kn8Mb@ZE~<&IW3TFKNwgqvI6
zI{MDh_lVrq7Cam4Y-_wdsC>w%A07R~-5mV_sjoCO-#(gY0WbWqk3~ayW{J?lDo4LN
z`pePZj{azl;ZInvwS$W@r&)#O`%|rd9Q})!>SVQZ^`B$R2U_DzuUYdJ)Hvo@J9e`=
zxLVy+cUN1vTEo?vuDZI~z*R?AYq{#=s<W%LU9ID4U03V5!nqNhHk8UI6ey!yIkp37
zv$N(_ySQ54m0Y8E5WytOMAvfEgC{4ApsmJ+t~PSDnXAoRjo91T*wrSkHg!chKWvL%
zh#A1^2mrO4Yox~(uD0a4tt~%{9$_$7-Aw{AwNSQpwT-K)s}@(=y4udw4z6}|)x#C|
z|Lt9~c3|o_KK?)}Z*T47s;8@pE6X+ghTs$&6rknVSlPRAHsbDUb=Aw&uC98!+SwJG
zEH~N3HT~UcTN%QpzA-B3ZmxJ`R0{wz2hFkixa#ZbI9JEJ>gQ??R|oSGSN&b>>FNMi
zLtPDUHPF>QuJ(1cm#aap_ICB+TnkVEF9q_A`aF;p%KTtg`?=cR)ezTcvv^_&8~|k}
zM1p&e3Jk32Fc#?N%1BqETn%R$T@`zp7ooHQYQtz(2fC`cI><HIWSmDE0YbnrI~R~w
z&Wv$2*3}WNj&yaXtHYW%oZ#wkSL0lbcj*Y(j$-349ynsyj^>F3zM+$et|qx+EB~Um
zVNa^<O?GvZt7BbFb=6^O>u6WUxSGO3oN7@>gq?znRK8D+_uz)pAg9ASPiM^kRIu0X
z8&jR(if?-Po#5(3SBqUOaW&J`Nv_Uvb+)UMUCnZJs;kpn&2}}%)m&GnFlI`A{cO4z
zvk-i!Xa4qBtKFk*r@K1C)tODo0XqQ@8sqf5-z$%AX{tiab9IiZ3tY{2b*`)PAo%5#
z^IhYkAo>0FBaLoA2@b}yz|}%LKdu(JqVP+no)$?u&<x;k@^<a#j8b}$tBYM->*_j)
z&DEu@u5@*ktIJ$n4v);Vu3)Ignl9mFX}vPmkQ|YktN)L#u7O8RH$oVq`f{Rmy{jAG
zDOb1h+s&<|tevZyT-`a?=&L6*J8j+U3LF~vPrh+4-v%YSy2BO6Jm~ngk-&kFz?bgW
z=Pp-wyZY7BZ=UX9$)E>M2YI^B)%{2SSM5Cg&(#C2VpoZ)2jNy%@3?x`)x)kHarFZ9
z>FQBekGXo<)ibUhclCs;CtW=Som5)Tnyy(;gXGxPdW<v5IfCw4SI@b6zR7*y1Q0kq
zk2Cu|<(t6m3?6E|<mz=-Z@7Bd)hnz*cdIhD`l>5Z%wB7Lvr}_SrMNd;z2)j{n5&Zo
zx|`M#FbGxF5ftyadf(M&u0H1{u0BNCHwl>RiH}@;?3&gvSni|lY6JFw75^z@N%H2H
zDuVqBS6{mFT=}l*u54G1D;NG<->Bs@$6;SaqhMVK#sLfqT!qXqbTzIDVC<82M&qK~
zD*}xqFVyeU)pxGGca^!y;Y3%Zt8ZK_chzXl!&k1p<^pQFZD{hfr)^>|B=3J$S>fti
z2zzA(A%oV3+hpg#CMOYtZl$ZAT>b3o2Ui$?ocYl;Li_PUtG}?UuKsZKr>ox>`SI2&
zSHDAkzZky8?4{`&+Xu&gAqidm<LX~1b2saz#ltBiMZ*pREI<^dg7zq@d1~)z2TwbC
z>fmX0PaAsL$kQ60*7VfH)B2t|dRoiVx}Mha1Wb2r&lsxfc&1kch;EK?8L^9X^3>Tg
z9)7$%C{b8d*l76o<QW`MS5Ge-V~|Ch*`RsM^lt2F6Hi-s+R_tzx~XU0ar5T!X3cN@
z<kQX5aR*u9p;mWKTY1{n({`S=_Dqi6Hl9fJVsWvR=o*jDs)uL9I~M5np73|&`2e_&
zB;1`m_4KqigYi`HWO?fAsh_8+rxs7Udg|?|)l)A|JA2y2Go6?564NCL^9t3P@{$;L
z!&X*y^R&CCHcx##VLK4?hwLFXHYO5RS>geMtUWyS_p}$&_;ZDS?dfTNr-7d7zQnYn
z=ihW=8(v&2{Xw3=9HL3$O5NAfU{51Gjq<b~lk91@Cpzm5@pOQvp`M0$qTn+g)a%At
z#A~+Mz^pPKwvQ3bD_6Uzjq7n0?sq|#(ViNAR#>kCJyVu{<!fyRdpg9^Wvr2>F`mYH
zI?dDRo(}cIAdm8Nw5P*79qwtIr}3U9c{+ks;C<J(K!i?gUbayW^F-hrM|!5O)@09c
z7B7PENA0invX1dI#nXwNW_kihe5|MGo@TI2o~C&Qi-qkudrRXqKF-teo=)&g3K-R@
z>6L@~jz~I=6waLF>10oHJk9kq%hPOTdrT+(1tn9Ai{6)L_=xK>-(B+*Pp3kq6V2)X
zxkLb-;hCr$D%k>0XL>q|p+dtOSm$^;*V8;mcU6V{Q1^@;ah|91SprY<xpKKF#em8&
z;OYMOjd>{?KD_Kg9_?w7r^TKw@^rB$3IYQUL)~4%nr>=}6$5U$#M7nF)r!i1EsSn}
zGvuF2%N3rk^z^o;cRXF?>1t08dU}XodAioqt)6c4be(5vZr|W(si*5bku3|*1@QTe
zo^JAVv!`1;;emv5F!>Ru&mCoa=4k0N4!3UibO#dN)4iVV^t8;=U7qgtOs^Rt%gm2)
zk5jK>QWZ0bgr@so3M9X$2Ve)Qg&xFcL1YkvEXBjd=L4(dVNZ`hPB5vbN0~`aPkDOU
z)8n3=@bqMJ_7KPqEU3|16c;q!c%qHZAS<pJ`K+hsxZoBeKM%R7>TYT_FVwIXJ-y`V
zH3%3na$LKYd1X(pGA%7FZ!V}k`9}rAA14n1BgXuOr#C&l<(bZpONcUTXaNZz4-U!v
zuBZ1rC7x1G?|b@yXK|UQ4?TV4>2uD|SHjaLo<8;T83Jv&si1<h<=0b&!VBbtB4){{
z{DLL;#~62jEp1PZr>IFGE>p+)A{IuQ{#@Y9`#;s@BbVUlr`q^@dH9HP4mVp~%sT$H
z#**ud+Ln3BJ$>V8ImGO#L~?eszJ>uk<6Hg;d9{ThCyqHd1`t<w3)Odpr*A#|;OR%`
zb3^MpPv3i5=@~=>i$%WSK?BU{07Cf5)6brM@pQ&8<00uw>x#XNS@H2TZFkhHRi1ul
zU3@*|>km(VA})Ll_4SvhzgcBp6<_~&`j-XrC13w}YUgWRU+ei=%~yM09eu6ktAnrA
zeXZeZP2UhCr~}v;4>S4uDETl#+e}kpYi-}W)H=R!b%K;e{$n~(@4b_+&c2?zsfu7<
z9U!Q0nzJD7>C@fS*9N}2``XIahQ2oPwVAKYeQoS(6JMM92F85BEp3>h+#f3&O`D23
zob1Mx`&(Q10=-FQ6aU?kL81Up?XtD6ZG7$EYe!$(`r6J{4`18+CIO1vsCN!CIL{QP
zK^N=k2M6O#-O1PA3u^2O@IHcz1Irig_ddS*`l|YB@zv_9m#^Nwc4P3XDm(ky#n-M3
z_0~2F5Prf|!sfy;Y`(j%HeY!2Aaxj%Z+x)*xTh~dtNZ!t?`uzAd-)pVn}r+TYoM>m
zTN|uC&IFJc)N|O|*FL`XWip$$0y#s_?YFgz^{0h3zW=*t@czES-zr0z-`ttwVZMg@
zI>*<!zDD>O>1&#=>Apt!8tv<FU*mio=&R;yjIXi24)S#{^l(V$LwwD?uDaf&Dmn}{
zQKyO_??ZjjjFKW1hw(;zEL8n_u5ZHuJKom>Uq|^m+Sf#1lNh{j0)<ETrl1h|53W>F
zxsUYq{yl9Rz`OuNkMT9d*Rj5)`lj0pGeepW7c)5{Uo{nO@p{ehb)2s`zUKNm-q#7f
zP^xG7I?>lmUnluG**7-+jtgr+#d`Ck{Q=le0pP<)2HiK?H+aQwc5VSJaEh-}eVys+
zEMKQFjQ=X9Gu6Jqz+*__xZvrS38+J7Lv=%~dA=yxhIHkaf01T&p0D$LE%kMyuM2$5
z_jQ@C%Y7~Iwb0iRUl*}zRAKV9$k$?i{zC;l5KJ|xbA+VH?zxy1Tv55i*QLIxa!<(-
zzHuDk3ghA{d|m158eiA?Ch~q2wBZ|=9KB}9N3(hx<^MWJcaU|xuN!=IX=kQ!;KCZK
z(0=Yv_OhFN-R$cgU-$aD#n-LA?)0_H*D1fPahtE(ecizi|E>J|LMz<>(IU_aXhU`v
zj7*r)Hx(F|d=jGB;`dn1y3g1Bz8>`TkdH3W<$t~&V0~|^Vql`c6Tv4h{$XE_uy(#4
zgYQ-|nPO;nYfP<vJJEWaG3;Q@JmHH!$1JSz{WQ}8YX{mo(6dMYU*G#$>Far4FZi;3
zIlf->^^&jmSR-FABVK&H$vXOa)z@o`gvsI6UTnn!OqE&+Wy1v|8es6Ez`xDA9Adr0
zTKBgu0#{tM-fap2PVRADmk)e>=<8EopFx(sNe=zk*Cz;s&5SSsheK6o3XhXG{JF0$
z;A>y?rkG;mMpYxYMj8w7r<cw&rjzT-<E?!)eEGftUx}|2*7Fr1rWi0~U?-b9!|$*s
z-^8<Sn`33Za$g0nHns}57u*8XHmJ@1;8&*5(^tNh`&t2y`})QgxEHV!6sYm<ZUgM}
zt*`HxjjP(g)q_X@RZDBLAAJ3YSPryypr3sGjNJCsF3>N&enrmv`qS5MzE(9Q)$j1m
z!W#LikQ`&f3P8#H3yFv1_w}zYbTdZFVzJ5MgaOY(FqA~LpSoGA1zJ7O8iCpe>cF$Q
z86E7fUyV};%IAB{Kpg|4PyxmscvF=!^6LazH_%3bHV(92piY6-52Qey18siO`c$>*
z5{N<v1cetatfAU<4YWa^kAGQn!$AA5XEi2Sgon@=w;N?`Pz>B8(5Cz_P`AJ!_BRU*
zLjl18REAQ$MW8L4=ezTuUyUw->;-s+4*3f8NCRyfXnddvfwl|OBhVg!`Ul!R&<=ri
z3AAgV9RuwYs2ZpxP|rY>Kvp1%tDxAULn4vTCu!SCIjPn_fS`H>+Bq=jJDPFNKi8sw
zE&CCO@!o-U3)Cl2-$1(uW`k%8j0wOCqUf^9#Iqg>*8JhHP7q1IKx8$t7JCMijMD*u
zh6WlKXs<x~1{%ye?%Xmc(B2#bqObtyUzP?B2B4|?x3~6VqL`C$oriGH%vDFF#Hu2R
zkDlYh0u2vzV4zx{5rIYq8Wm`CAT)on%c*Lj)eKdmLh#wEopn$klIX_;2H18m!}!ju
z>><sAF@eVZ-<d<32ZseZ{Qu4%duj7W2EoKYlbD=9rvy48(2;?T4|GDH$$^dvbZnrh
zfsPJzOrR;u9{rDAX~jtb-h*<NsD;GArv;iGXhxvp0%O#mKoW<=l{aYU2w<q-a#3tf
z3^bF8I?9?I=%hd=2WI!56_^++iODz+0MWs=Y*KT0;>dOo7<=)lfldo_UZC>>oenWC
zubdU=>_BG(I<xubdxuu3^3mgtwt0ch35>FFZu2~uUsR3-w~wP0mboC%{6LEWEe^CG
z(CZVb3t3-|&onI?NLa)2>U4@h)h-Ei5tA9{lEC;a*=yF=-uR*op7unmV?X1+y_|mq
z`Xtk*nXU|URiJxf-5cxbK-a)5k-A2@HqdoUTBs?Zt`BrWpuYqC6KH9m8w0%)=-og!
z1-d!VqcC8gTLRt6eFEKU=6TKA0^JelPX4>LbvxX*(j=KK3v^eYy91@qw_b3V0q5hW
z8P(IGVn0K@FVOvg9t`wQp#KGWpt;agbweXM`=~06&-nTLZ$;(dK#v6asKpRAXGkr4
zJkS%YU7!~NJsIdJq<wR-aP%?fPX~G?5VZ<vQAg&2LFfghj6ChUS)&&Ny~LCTdLz)w
zfnI^;8RRFOZ(UdeJNIgHIk?HCXPI^na3!Mn%|LH6$Q6~hSk0$em)&kw7E&Zi@?N0#
z1C@aqfj$WIVIU`v%V-fYfj$rPMPPbpeiG=@K%a4w<rQ)S_HP=D?76RyP!_1p^xj;x
zn~&z6+#H+$kZ&|PFOUzN1WKC!4dCTK5j20YDbjNB&MnU_tnqn$H!BU41<C^zP3c5h
zC6f%qkxU#a3=mj9cV_J?gkhi`0{sZV>}!1!=-WWw1zH|x1*>+rDVYNNwPj7~`#>v^
zV|TaVSt2Mi?g(SrW3&7e=;uJI0{xEs5A<uG-yncjTS5P_-Aul@jc*in(pUe0zn*XX
zGtggwX#GhV0%8g_VMrS;t^OP6Kg3|D)==$2trkk5x`t{Wsza#G{JEO7dZ;x*tsQEe
zP_%ShGgQY=YlT|1wo%I|{EJ`#Q$2i&wJtyWyRu%WPN9i2Vh*68v9H~`vGKfhY2J+*
zu<M6<s?tJCXM<21hT1CB)}b~EwQ;D;Lv;(aNvKUjV{vT86aO2?B;yUkV#VujnvR9q
zGF11_w1olz$WjtS>u|gYYZ3+6Ce*f}b_}&ssO>`a2(^8v9r&iJ1;)b0Ci!>$8D??4
z*V<kkQ|%e563Ply4K-?~J_Ld>w;!8c1%HdEq?E+t9j#uWb`CW>)QC{KgxWRKUZDns
z>K$sgQ2j#f5o-5PZK3*v>KmG@E{fL?TSUtu`Hom5rHV*D?;mQ<Py<2@4E60vrculH
zD=KWzI2n+u_><Ao_71gAsQp6?3AJyi!J(nm{X!k~Y8y@-ifz)Pjeg>!?Q{NsP(wov
zYhJT(s_CVUb%QS*wjIgq@T*XVhZ-H~z)%N;I+&ZUr~t{hr>9k8*gF}R)*+$Bgc=*_
z&`=-mU}2cx75x8pCHfUY_@+74aiPYCIwI7Op(ccy7-~`|`VmlrsK<{LzIW<xz1z<e
z9+@2Ks8C0T!sm=J)pyoV@P|}fL1uOxX&oDCYN%zQ?g}+6)bvo7g}OY{j8MmgI-lR}
zV;vvrgixo2Iz7~hp=O4f6>4^<lS0!T^yE-@-e3(Xgn)7(`Fc*MxuH%8bt;t8#hNvB
z$p3nqBFulTVPa1wSIsVb1_T*uUZ``RiY=_Opso|Gvmw`?Dt-Pisp5F*&gG51sc_~z
z9&uG0C-GWPvi^cl^Fu8NwJ_9@P#1-|5PI0!S`=z=bHHOJRSEUNn?z)|!^NR4Vf;T;
zE)7jW&3dy<e+pW)ZZdYnSx1bx0=7EW`fa3jeW)u#T@~u;P{+@-&bV^$wM@c6);0W`
zSZ8a?obh{I*Zdc$6E}of8tTSSH-)-2)NRbwL57BJ4s}atvgCmCQR&XaEJEE8>Q0{0
z!CJp&5$VI}Hyr(8q$wtRcc^<pd7=E!6urDR)H9);4Rv3r`=O#x4}^M@c?k7jsE0y5
z9O@BB5ogO3<GQDZ1u-MSk+|I;zsEy80WXJoI@FU8|IY?jK)9a+dI4}HO@XnA0G~ex
zQ}D!4ABK7%)QgNc)N7$$3iUE;0h`lTWw=pMfZX6h!FSznXY2J)Z@@BilEnq|PlXqx
zs@0pJ-eN7<8T`-Nq26g8zuWwN@Bhxf-xNe#@DU^(>WffchWaGbr=dOz^*O&<Ss}*+
z1pq`hX#XpESYRineP5}EvO_tcTt+x<M15h6C=!8hOl;m4{ba^;D+m=rA)$T?6@`jJ
zEf2LKR1zu;RfcLXhZ}duSp85%C~Cy9;$V7t3nD&ze--NMP~U|5X^#%*9<-DA_{KI!
zXz)-|G5Fh1--Y^-|AzX$Ns}u>{eX;GQCYdL26zUGyVou)pm{r7So@j#!{8?yrx121
z^w#ad+Nw~$Go_K%i1bIOKSTY8c#rf~sJ}z~6Y5{YS8oF&2fk>6`~3`D0bK>J_-c{b
zN5-h{5DBLQ$j>jYGibn7zg0-&Tr*O~Nb5#gFVb3(zC5qX+L6|YbSj15mRIop@ja+-
zFN&yiiqtt$7j6=%_k}f+jQncbTC-}4`&tCoxQv?l8${YLQWPnUv{9suxlg3iB5e|B
z(@6V8+CS1}kv5NHMXE;X7HNw}g9dikA<~wSx<}e3(zcPdicDj7xNPgl5Fy8Ck4VDp
zA_MK~5ovo4x*M1@;WjjCx`UBKuw$g1BK3?+Bib=1Sd~cV5;IP)zTeq!aZ9AuNPQ#q
zi_|O9&b&pW-6G>^*d@}gkq&*Z9gq04y)l|N*gaAkPmhf04gBN6Qw_!y{}me|v9LWN
z^^dd{gJ)VsSbIjM&NhV#2Q>fW%s}R0EsKM_BkdDu-$;Waqp^S)K*{7*-P%kI?GIZ`
zj_{C32Sl12>8MCUBMpl*mhnUy9%)3RgLv6UBO{H9REzY$v@Wk)(ux{0Ix<|=bzJ8I
zBT@I8W71#|q=!VNbLALFWxR#s_sun}|2^CPwOQ6-kq(bEG14SR;_u41NaG_-;O0A-
zncV$=5r|MSp|Jh2ZjOj_Bx4?JkhEmb0EWa0K04Adk&cgaLL^F8O^Gx$(zHl3C<GLl
zTn1VnPLGU(ZbqczB9jLPi~+18y*4oXxygx<W=5J7X*QqhswYLJwcN>(s5?XmhShv@
zJ8Mp)xsguc?b-}@k`8X*^td@6Ji4bxI)h1w^kAejBb^oL>PXi_Iy=(5NQ)yaVcjF0
z8|i{b^La|&4(CNWpI-sH?PbIl2Vb3SEr_%*(uI*0MP^4PV21&M0}wU%_5&<r*R)<O
z7e%@_(&dq^h;&J$OCw#zD<5AS`bsN<Ar%g3!%V_xS4IXbfphFCuG!eS^C$~E75RPF
zM!GK2ospJBx*l5MvPic^S{ms_xH8hs5f1I%6fi^r4|uATn(Z|G#IX-B?6yd^N4g_2
zz<7#K0SQLIfM#Gc{91QKx;xVSk?C%EPo#Sz-Pa^$DrS&k0N2zmtYKec^<ZuN54t+a
z`svlShax>3>5WKl!eWsgjr2mK7b86u>2Zd)w)G6F7U{`IPeppVdBa2RsFHWE&%|o$
z6RpTtO7Iaqd6r3|tmV?`bCI5hT$fh);5dcRUW)W;q}L+79O;$FpnV`t{Hs{suk)a9
zDny6~s**BB;h?u7y&dWENMA&HC(^sjMx+l}-(S{zFVg$)a%YQ*OfVqNg~C6I^l_w5
zB7F)W-BKmpn|_zf6_SeL{GV~F&K7z*-(N<mNAe>1k?cqg#NWqqBOP*}QMu9L(1eN3
z6Fa{3!Y;QK1A<6lWQw1I+9loftvlM1NGU83Yrj}oq#V|c)g@LDsf6R;uSktZUq$*p
z(#l9*NBSnxw~@YM(T}i}Lx;UvRv@gV87C?ZLsRQ-idBEvw96U)Z<ik;{TS(2ChEt^
zPmz8`82()O1rGhmP!v)Ej=*_>^WnEhtD+|QVqKFBfm`WMgg@IstTki(9qFG)?P9GK
zn_A!hM*0t?u9<2Wl;R}Xj;oEQw~y5!*6OhuV@#R=MN{!5QdAt*ZpT<_#p)CrMp!%6
zI<eM`wO%X=Q(Q~y;p?kAEvwQ3hHd4YT`j<J+>I;OkEK{WV^v~xjkQ6n?y<ItwPCD{
zVr?F)Tda*^ZNkBAZJWhH#U=2uX>7o9d;mF64h!i={p~GcZOH&uQ6_E#A_ykM0NFa$
zHnDod+CDZoqSIPiwvDx2EW%PBKHZ<f(X8VRv5sF=*)i5mu^1lOBW%k7Q%Cu9D+Vm8
zKC$}7YKhevYu8x4WA%!)bF5vs`FEAe=2}#|1hK|L`QSg<E!OVM+qT6zqA>uFIj>A!
z9>wrk!G5v!h&3?QUa|VermW4Lu?BF@zbpN2X<IsU#PB~WbZ|pM7!+&oSo_4<w|N=4
z8<(F}177mpza}w_R=)_h{bLP@b!M!yVjU1`XspSxj*2xb*6>(|#2Ul9#~K-HbgTno
zjf#zP1IO>nhjxLL5ID712Q^O~%;R=2<<6#FSmOfVH`G`j8|%<m<6})=46zQ6H4Xx%
zm)6Uzgkq20(4b0iWl%zDVysELZ>%F353TD4nod194Pd&l+qXj#26BINtYc!G6zk+z
zQ(_$(YkI61v8;8vOpQe*;I!EEbNPGrP_!fBdhb7~<Cw`<CqNrx&8;Y`4GiGKSR7n?
z(1@AMgRACQvtrGTb!x2BV$F%Q;KJJ6Sf|9IlomIn@gMpO@Y>onZKuaNBQ}*<QRYDw
zkpYD322bPJvF63PGS*eG&WUwytR+xdtn*@>&kbWOjCDb*m#Z!FxdU53rDgJN#_z%X
zFO0P))?#LI9n*ty?n%`X2AKo?h1Gs>tV?2D5t|lKmofvi1&nn$Vqrszg~lub)5S49
ztF>v@dtvSBSl7h5E!OR^u8nmaKa6!#tm}~;=U6wyTG~8dHu!)LBmIh{yqT$k;QLs&
z!lcVhn>Lt~B$pnPUb(AExzsyiEsJ$mtUF<)eawWA?69;MP`f)edoH$8`wgx8V%-ll
zrrJ5x|6mrDHPI1?9*p%6ES9KqqK9KW0?ouqVm%t`u~=`%dMDQ7v7U(ae5@B@JsIn%
zSkJ~L%J6iP9iBl-{9bwG;Wl>3`XLs_&&9@lM<~<0NUWD)y%y_rCYkx)yX}=&uk!QN
zO=RKlX*Jxi<X&+l$8W@XGuB(NNkeA#I610^aT>$6@5XvB*5|Rli1mJ~4`O{3>*H7u
z^J(*}51W%ij>aYN9-qYelqc?Gea4tCtPx)1J~Wo1)E?z2zKm6m<;C)w)MCeSV!0g8
zv`F1r{dQBp8KaUq?dNXaA%O5!R-#y8^Zuv@+zJ!E*M?S#@Q?Kea~>;)cVc}XYh|nw
zK^kj$tQE1oicLW3YseLP8)15^P=pN-9mlw!q1A6=*%#KnV@j{DZa=e%;f5yjL#!WT
z{Sxcf=0ksC-uAVAj)mkW5edD530X9(^KY?M#rmDcO)?#pu?vuI3=jYIUkHC@IMJGk
z{)zQ(tagc3OLWEyt?Y^a!SdU7z&XrXv`>UB*&)&DiE$tCTbkMRd8CzIitNiB6RnkK
z-NdZ*+KE|H4%SJ8Zye~|%gfqKNU?byuzKHPtuBeyPqcfYwnR$IuCZ03trK-kv_YZ`
z6K%xBi8fD6bZO&6n<Uya5$V7<A4qh?GU8xW&z5e9wn(&PLi<{^?P(#GU?}#!H>Xzd
zuFUOa^`{MJqHPnkBx+5xU7{X|c1qMUF^a_YiFQb|BR~JMLVV}d9!4|4`on`);Z2uU
ztVGqsP)_$LCQFEQp>U#kdZO<xtnHF$*F-xfV#mRpzkRaRJE0eb`4gjH&l6094ua$x
z8tap2aH9PZ^-a_-(H@EVCmNJ!??ihh8jxsUqP-IR`b>Z55JE+;0E;zcXC7^1kKhi>
z>OP6~O@x-t_D5k}EWZ5{4M}uJqA`gMNHjFjs6?X^4NEjU(TGGNdFaSyR`?iGe}LKx
zjEz<u<Z&OEsFvs;R+h=1TxB=JF!`s|BrIcAGe0;4#wI#6(X9S$6A~Sk=<r125{-vi
zo@?c9pf6C-IpF*MLl7q>21-PArnMH;j!ZN;(ff%$NOV-9qZ3`3=&D4=B$|@wbjU2x
zv5BT8nw@A)qG^eyCpsa~iHT-FW{LVNsvXaC^|ZELWYW)RbV3aT_-<yRlM<cGz!KfQ
ztwlEFEGp_WEhCcIQI@D74+YLmbV{OAp`|&iGkXY}jbGXWtLn7GRK@4dGZUSa=)y#c
z5}loB9)nMGej@NNto}KP&gK4(8?gXX;M=o%T>wcZT99aAB7)<%T<~OKIa)VVQLS&g
z!`M)Z6D>(}Sz`J!Uj*?ax+Kx1iP1Li+tUK@jFZY_Z*?^x0HpNgiLPK6oeW<PxuBfs
z)rqc2^ble;(Y1-LOLRw~I}=@>;Hc?xQ=*#_-H>Q0OWfWXwWu~}mUSayxr4>QEs1VT
zbQ{A?j6TC|#X6eWp(`s#%&1OXRD-;iCAuroy@~Ei^x~+_cQccJRqkQTCmOrJq{N<R
z-49p7afp3L=qw9tGr3Fj(k1m3<~sKb(@yJ=M2{wVDbdStQ=-SA%tX&6dV<0KWA>(}
znoRU$b8P(iG^4^Fb+q*igf!V4JfG-=<~1)SMt%Zr2SShYipUq&zmn+HL~kZ~E71k_
z>9s_!CwhZ1lj}Ob?5${DhKtX!-cIyRqIVO$m#COi1&fPT&%aQ&E@^MkA({qZA13+;
z;g+g>s*e+WlIZJ1-z54p(PvC-B0tgRiM~kmWukhbfBRXWYc#it58sB(hgnV{u*&$!
zk6B)E6M=r2eVoBC2Z=)Hfk!9GW^{=X#fg%{Xfl5e9+4&j+>SoOMw~T|Z-1qYGi9Pi
zqOV}y7h7RH7@UsSG|BSGNTSS6q7{jLK_Ddh7HN~{heSUn`aaQ0=6Rw;x&dzowG*M{
z8;8SBiGEJ>%FY%Ie~A_1q<XGu{RSN-`YX}jiGD{0o;LK4M1S(!gDjd^<53^_cq>!{
zzyHH4^HPc0rP|_;3Pr!M6mX5wR~kivcR@;bNVR&Z%~N$twMMEnQ*}+XL8^|a)=ITr
zs!plaPIczDm330B%f+~W4lqQHLz`tqIq96LORDu#DHTdM-i)utS7~g@mfC)bkvUN8
zhN(8<hQC)fO^uIh<5c@T(|?mx*WKC10qjQK_RUhEMesrY+#=PMskTqGL#pnnwn_zv
zecM!D+|agls%=t@ow7RS4DLt9gKu`bR6SBrZ~35Ito>$LlOAu|G1X3ts?t(T)iYIv
z=khu;P4W(7Ms#5OuK#p@l(d#qt<CpB72%E8C3i`+D^roFW2WAzc4M5Wu1~dls<u?e
zrka|nPpZDDMy48-s$Z%-Qth2;pH#qN@kRGfwP&gUsRpLnE7hP>FLpL{w@7g%Q}xBZ
z7TO5=J`w+YQw>fvB-H^-^{NViq5V?rpK3zIpv4R?u%M}ir5c`UM5?QMw;27QX0pHM
zEvms>u*}x4w~c1@QjJSBJ~fz=TB<`*jY)M-s)JJ<zOO;@vw<Ru#-=(n)nS}WMUFpy
z7_&xD%g=_vi7fE*38^NgIx^K{Mzyxpa^LEcQXRn?4Kh`WalWPFM;w*v=v2p~nv#mJ
z7s^R>*oXu7vhWyS&VvV|qQbOP(^H+F>Vi}=QXQA-)KsUXIzH72sph1bo9e_=GgHk<
zH9OTw&4qYiQH^GiCpV87($$M<RH=G>QH|1za2Cd$yQqdg<djr!E(fQlIwRHDsph4k
zG5whg_2e#RrTXW95#T_$!^;z_she5nq&hd%c}z%mlb44YLj;fpI%gkj%}=!;)upK}
zOSLf7g{hXLx+pcs<VC3#r+VsT&2J*@>AHpFxtJ&JV|-$l@Za?<LfaUv$E|L}>E)@e
zOm!7Av%GQz1k=algX8wOI@L9)u4RD^tNyg8hH?wO5vd3d-jHf35-imxscuYlQ>rI<
zBD9q1mQ?qox;NFWscuVkXR2i^++UU382~|?)a1CK#eu9q)ZCToZn$`|$-`oqm<r%D
z|DE0IzEt<8dN|c1=>Mr6NcCW<hgi*irhEjYeqdFE14;#pNae;yQ$3dI@l;PVX8@ZB
zWFv7F(3n88kQ)@xcskWHsa{L<da7qrJqLxSdMVZOsa}A9zaI8NkB&q$*#W6H0(pR+
zc{$Z9sa}O9=UBTnd#X}Gkoo}g*0J75^=7K~QoWz*tyFKPdMDMpsp@pS2kZV_h5D1A
z3L8`)Ue_e$@$MfWZ6JVDl$eHqcP|H^nDG>x-k+xWEY-KEzDxBvLL*h0Dudd&VJe@O
zf?`uSsoYc^q`sboUW5To#GH^2D+0i~|1MUTDoPcnN??Tc*2m*aL)eau0q9!b0Vuyr
zbLu=*k?QMI-=r#8j?`cSzT&pittCGg)X<q<4IsM&B3zzo1xq=z9cmTc14y^?E~Zk-
z_o-H<`aRVjsVK|yL#m%r{haDY*kn}&2mXrQ)-S1kP4!!<Rmg#VOj#JraQN$`(Z+-K
z$?3*P`)8`ZQmvM$eWt%5{#5^^YL^+UhG62qsUCf~jk>aYQ}Pt24X=qCze6U((dwDj
z$V9U<;_^RlW?;r9Cu@SWR;INx9hK?mOzUJ?H`Aa@duLiNQ>RQjWZE%P=S*EPZI)^C
zOzUS-rVTS~l&NcG_Q4G@5%Ga$&;(eff0wmwoN1Fxv}PdD8=u(4vi{q_+LT|dXW=dE
zmT8Mj+hp1{)0UaKXWA;$*4(653$?QhFl?-$((Mm7p)PzK+hqcc+=Clt#^@lY2A?ei
z_QV}k5|DSw)Dsz=X}3(3Ojf4WOuaHyGa*b`GVO6i7n)>oH=?C3xfq$I-`}=Nrd=~r
zQ4Ipd&kW9)+747=-#t@Xrv91s%+x1S-%S0uLuUE}U4?7yaEty3)yG=<pJ~t_>(cxs
zGuzy{ahHLaXfb^6@z!3M#++&0IA8?d`|#gP<CxE1D}yubm#LQNpiKK`8j@)Q@5LB0
z4b3zx)9_3bJ_3${$BZ~23At?LrXKiu)+i<?(}9`Rnk5i8V4K<C;5a^Hksr(|@UM-n
z!!kphV=|4+bZ91iPSGlwCD9L#4@+}+rtMxc-9Mq#@tG!Mn%Ep0!#g6=q~<XV_yDpV
znQ3ySBPW>tiC8X(xMMO+$#g@erJ0V+G&R#Xna<5Ljrq(pJJXy@Gnn&CGc%o(>G(|8
zttVtUF*7vJbb%kEOV_2tOi#CyGh@o(@12zi>wxjBwYc`+&24itos#MFOlNS1Rh3gS
z0be|g7ks|eINs-)QtD@BI*VUrnwOdQ>{h>3s6+vN{=Dr>H_Rc&4_SX%+j*JJ&vZ$q
zOEX=NX?~_fnHFbSkZED23n3&7>Ye%k6oE<moosOOWVI}T5%#ez%5-ri_!`N^2a08Q
z&#tOmmg(|LS7*A0HSK0y0sbe`RhdBsV&tOTL9_%rc&}^W(4Q*TWxAe=|7ixJN11Y_
zc!nv_e`BVbGCiH?nM^llx+T;7j3?8rnQqIp3_{|qGu@Ht&djvPVH1I=(Wzjc-A^+;
z>+jBVPp11aqpID@v;MB|p=>YTY|Vt9Xe07KrU#kiOpimo@b5X+!<imw9$?Ntn(5t{
zwQU#Ia0L_fLw}>r{}Y*>%=A=d;(&M$z-ALJ<YHh{&oUvI-pKT3rsp%gkm+S!9Kn()
zm}k*`>m{CY@Ce?W4xUubd=+A55r<i?XS(~kDiRybr|53jnIfxiWqLc)dzs$P^bRA*
zM7e1$#wB~+X%>(+!b~4z`jGRPK1MWI1}*&FY6ggce}F>na3Y%FXPG|dHA_8I>I;M$
zY+GnRp?W4e)3v#-%jINpVd`9ca(S72#9FS-xdP}j({GtpWr{MznU-f-ktxZPW-4JN
zq~Gw-8PYXVfxK$p3#Pk%;)o4iGnqa>P?+tnGJT!t8~)qJI1Tvz;-xm!w#T=!zRmPq
zrXMr?1pPCx0oKY)KQJv5s{^`Q^hTeW51>;FeDQOpUl_w$)~|?SilrZ01-rsGx-_Y6
zzi0X*Q-@ru=lT<R$n;;PcDcFX-<kf&^lxSy+JM3M#>>iw1OChT)pE7Z_5c4xIBD4!
zYmHoM=2|<~I=MRLLNNdvvsUwfAO)c}B>B3z=AYi>{&6GL%SAd5`ZJf^ySvpT7sWlg
z<=P_G`ni;=YpxA)ZJcY9TpQ-1LlYNllpD|pwkL5YgcYAnb8VJu^IXgf&~fwu3@cn`
zzq~nY%Us=a^~_btwN<XIb8VNa2QN#|XQs7Hu5EK+%dFAKC?{mfY@e&cVV(K!4!I^R
z?}XyY@s7FnT3p+y`Kt-kVb4{~wR5gra<$|p0MweRS8jZU1RU8ENcUs=1I)8)uHLzJ
z%e8xMieh!D7@d}X?Rk!=_eeC20D9kC{c@d{Yi6!Ja`n$u%XJX*pKCy_{c{b;bxkL0
zV6H*A_GToxh_)N&&&=vRx%SO9IM;r;(Vtms;&kwc)5Rjim27>$>IdW+nrnEj5xIsn
zUx74mc2(Ys-X$Y*jmkAT*MYf~bu*bq6oO+DL_t0Ct~T;DI6gSnA-N{!Ix5$gTw`;M
z&ov>}p}7v@^>dBO4djNs5<co9lh93qIkkx}u_rQ(xsJ$nBm>yn8huL}J{dZn&cCLO
zJ0JI4U#cS>4SD36mTP*hDUd|2skxD#AntIF(BKu5>X_vf6qOmdj>~m?t`l+{y{@4{
z<SG=!E2Av&rz!rE>*QREbCbtCE7$B?XXQFO*PL8)bDfs!^jr^}ZB1{t{wcXm&5eJ9
zF574q$j?)jv^yi$nax>xeA@p0xkf5dHDz9|b8=k(-R3$sH(}-Ta-9#q%rTOO(p5m4
zz*Jz4Ey%Sn*M+$j<@)NHHcsw+R~5ArToW|OpTj2iU6SjfTo*IKTvz0}5_)DBxh~H|
z+92a$<a~H8Z$vzT@&Z@ox*9Ubb<*P6;>ERpuWRFmhVOb>*XOz+*Dtw#&9yYwjk!L|
z^-->ya^0Nk>0Hm`x+T}GOlhtMa^05e_FQ+twz=-eb!T&3mcgz4tWAbn<O{PQLRz#_
zzbDtdx$et#KXbCF1$h9R#!*c06fFIjdmG5&gG^?w$8$XajWq^5oa>QXkMg+1wWk)>
zh>AXjFub}A7(n|Ys{Hw6uJ;$$puMLcr{k(|^Z4zPYtQC-F4r5m-h`KjSkLEr36{zA
zLarA%7-o7u5wWEw)GN7Oh1X#ACch7vYaCOU9`F|jl|zl8^cFM8gK~YqJzr{lC)c~V
z-fJGuImvqV*ddf+!@$AtVI<E_=+gDz&cHK1&h<&I<#1DH>(gAH<qC5}xjxVJ1#&)@
zo9oM5b$G3LjXSl<B(O%@ipk+uUM?TW&-&hCD!Jj4B<zl?zG{1GN755=CArF6ja+H2
zELRRK<)$(@fc9~tM?5^;B9DVwH$WB{*jETEM_(fq5d}~8pZao}Uk+H>(fWOHt(;d|
z!4GqNm+SlHV1CZEGS?5ee$4d~D{^QRLjynvrCq2@xa`+fkV_P2V~{w?e#^BAVOVIJ
zLcizw17TaJYoR}L{grEtLTeWKJJ&zC{>#;_&__qt{)M`pYU3MqWwR&RRx8xLP=`XR
z7sjnet!5%1%s;hm_@*i~MF2V$TB}f}LY)h(U1*&`>lRwCF!k`ch5#u1f~8639aY)E
zpmr&YO13`tTwdAv);6|v)E<sMdc19eLYoxYw9tlyHY#*o#k73gxG(`bV3X|BV{dBP
ztk4#Pwk))Hp>BmJ_sun3mec@Pb}xj#ZmU9%+~4k|CBwt%H6j9>S$d$gZK3h>VK1~@
zp&o^{FSJ7;t5CJjj)itA)U!~fFe*22dU`0I^-?Rfo*1^ViB?ux3bhu(-`lG&+J27{
z%{^(E$~q2uzIB&EyB6xrD;MfhsBfX&3zG@L6Wa=X{#q-NoFp2sK>Z5sQK)~RLB|=N
z08wl{xJoGAh|W2%&|ZbSLOvH1+Pl!rg>EUdPoaGaO)E6L5M@#Z7do&|t<Zjj_Gc1k
z0Z?dIq2Y|J&`>6}tJQl`3q1#BA5myzp;3iKbNxJX{<?Kdw9(zA<<~>aH3)%&nBhVb
z3Qa6@2$N8lOr>#!#uhrX&|!rRFEnmjgRulhF?CuM=PfZHf`*s|TsgjZeeqpoQlTRX
z9aCsZp(6`TE_76(qoJ#9t^H22s0qM$zU$or3uAh)FC5#X1c+g3Au?s~e3II>`OR%J
z3LVFr7CN5`3Y}1BPNBJlPAoLDFqDa(;iN(*7n)UQcA@muR#G)734&rkhW?m=2IN5Q
z;VFeqEp%3)vkRS8==4Ho6gsmI>&phsU?}WNm8UJ9ZauE2WlS?lKomNs(7D{RXA3jK
z2bRa10Sx1ULh}n<Ug(NK3koeP=+dr>3td=fQK7|!mhhk+h8mHgm-aU?R<`~Vk1_dl
z$4={VNuf&%UB=8b|3$rABpAVKcD*YLT?Mrly1vlWg{~=dEyTH^f&xr|BQ_m)2Q6{p
z5!D+CEiH6op_`zJ6$V4ju=(C$Nsa62v<TAd)<U-xdIbt(t_s~z=$S&#7P_<0vO@nW
z^gyAz3f*1kK1iaobq_Q7R|O)!m+Ox)`QzLZmqq?><^Do^6CisK_Am5Up~nk73~?^0
zJyPgVmUuS{g&&=h)r1&6-O75R(36FpD)clXoKbykg~8L(s{-IRxiFLig{P<({9IvD
zBVUB-Zf$$MFfEB+XdY8x73zA4ksNKk-25h1^4KWrwL%{k`UD0q^hTjK3%yn7-9qmb
zCV2gJp_Ui)4)>vc;2_h_f;_(W3w==NL&&c%IvaKwD}p8ryRr3<v5q$wZ`h~&cKQ&z
z&}XnJk66$8qR^Kp|Hzrut=&$jQc?`R-xX)o;CHTc3b}B4YYW+Md<TWXLVK1PP%0`E
z7uulIhNTinsL)>s*g_f8h@>j?10#gg3oS3SqEMsISIk49Z{VPo7P@8trGs=als3BF
zq?AHS-xm6=(DyLok{V7JN(O;D;yk_Jix%rgUcb<9g;o{%xw(A56#A7r-`U3W&R$ZZ
zgZyU$&FcJK=#N6c9sh&|mRHE38~L;8g>>7g#yj*+p?{IyrPe9+AD5L{qtu$ERx8!M
zREJWlm&UvMaJzxzfl|T_MH;GO=DY4^bu0}T@L8+WpkoYgQWl;L5$l#(uT+;(>+{=E
zl%IkaI+vzqAdVxB+x9mKq)Jg$scWgd+L>%1QqKTvZ&YgIQoTx3^Ldj}o0i(9)V8HI
zE46v4ElYJT)vXl3&Miv4_*6T1fi5|qR;U)TRcU+zRCC?B6srub5>O4*3%4uPqg2mQ
zl~UW6+M(2rrFJR}g#(?!jXb%lMW!C4IPr<rb5^sgQq@u|rCLh?r9j}HH_GxiGJPQr
zd~vW*zk6Ccm)fP&uBCdH>Qkz3sohHLUaGAW`99x1VfHnI4C!MRFR4NQ{Yq0bdyi86
zOVOU5w?hL&wE)_Ls2Rv4lsdK4Y0PA)y_vL9lS=JVYTr_$OC4BhaH;)D4J$Rg)c&Q0
zlscf)P#(RFfguq)CLae`&5PrEXQ4-whWKIgk)^0PKn@_sqe{`*n6cGL9aQSjQiqi~
zxYQw~#*`Y%PgYbYfK0s<s>%ZtA<BR0)}~nW;iblv8eeKcX$tap8*Gxl=#2c)>?$!4
zk`s}ZN0d6U)N!SbhcHSVRqEJMQz4|EDo2+(hE;1GQ+tr!E6@q&X>Z4TPAfH?d1INn
z8}9^u%h{W>&h+=#W*h5-QYV(0Rcbb*xV$p6)X7{n&M?ABrJia=Y02Tj=`@Fxol~7#
z>Xhb{#9>cqZ%QKkW3{j%r<XdT)Rm>KDs^V5vr1i9YEh}POU)~FeyIyeom1-EQs<SX
z8!0LfO(8MgaB^bluy4MzjWxg2f>H~4!ILelc=j(!_K~-Uw_$OqC8aJcby=y4N?ly)
z5@>9t@z?-V!^K2K2@r+7u5G&<0+>?0qSTLFEk5VZt`d!!GuOJh)HS7UFLg($YfD{M
z>ZVdR!w98rD7CcIjS%EB{XvjYxPZP$NL`fA7hh|I<!>o<YpL6qrEb=^ld4olr>Y)y
z)7Jl1uuASMwXD>=rS2<rSE;*8-2?p$GlnYBuGHFV`LWeyOKJ~HuiamY?djlP%?FwX
z|7(78C9};_9xnArsb3oUwV_AhHAu0c5e+>KYqPQqb!g~G7NyiXrQR)t0DrpFE6~-C
zm1jylTk6RX)^nv^fOAVd55LefypKf>nirPTkRC6UdYLC4Uj47LRqx%>b)@ww1X=3!
zQg4)ct2FIehJ7v?wIF=nM0)Jfg6hlh+s$LN-}g$rU+Sw;Uzhrz)Q6le<(2xV)W@Yh
z$H`OblTx2Tim$eQ#($4DJ)vNH)|UW%Woh-xQuR_cgGW~UT0vW*L&uV#M(7c|{(bxi
z|6I#26(C_)$5J7}zf_FahZ(oFI(9cEHZu=XvvC-4bXYYnRg@}AHA*9aDOiLBO`GFc
zQ)?*g#QS<pu)cvwOZ{5vw^A!geOqc}sUJ#x2f_bU8Ad<K=In8N;T=_M{~wVjrG92P
zO3d;q><<Hyu{iqQ3Ms}cI@N<$mHNHZKc)UH^+%~cOZ`>q?^0wm6N-BN24kV)8^p1O
z`x<ikuT;B+R%@8FQ?PuTq3PaTx3xk4=vS*Zv_?a{8``a*H5=;K&^8Ti+t6AKt=-T@
z4Q<@eIt{Jc(E1Ijq4gT-)KKS!x-^XMVmO}CZB41?X*aYnKiGOi9J)3{#iR`y+OVNd
z|1#y3Fn_+DX*&H;FKCm7Hf^X|Lt8YoSwovQ%uYe!3yL<NLE#N%<Xbk>y`ild+M2N)
zWi&~Y%pv0~YJ5@W79i`k(}rx<P>+UoYN%&J(>AfTZ+`FC(6E!MJ2XU>UQY7a^nrGj
zhOCBqHMDa>)rMLcP3I49dbF9|OOLV;HEh$b+}8${mBhDQ8rrpCn!@AHN3}qv?cPvZ
z!_*-k(lC+7J`L^BQ2&Phx~8pfLx4H^HH2P40^ptv4QOZ|e%{bPUag@)4ei~WE7pZ{
zGmIu2T&x8?Pe{GPU~6zg`!%$G^P2jS8temO(q5T3{!iOj2Q<X@P~NK{Ff$xuwv23O
zR6}<+bWcO08#<8pZRm7H*w8@@9n;X1h7NA%kcN(I2#?m7hQ>BDzM%;X9oo?Uqv<Tb
zr>MUFk0K!|@U{~hbZ0*w4E%s1h>9YixE6v679k}eVt12viwbrtHg<P+*G~7$TB!fm
z-QWNFJp1f3yE{8G_uO;OJ^4O3a}I|Hb<-OWPY9zPQ`fvxjS5X)NKD|P>Ka=o-&L&H
zKSqs!P$X57L;>?4fsbik^VqtMtBX$4Y^I%CS`efY>Y7+L8BHfK7j>Ob*YvthtZQ;z
zQ|g*p*EE>z7z_CyT~=e~?Qo#EBZIwL){MGl@?dq%M)GtrNF%sRsmHlyN);uLsQ2+7
zcbrq#$uP#m>fE|;&Vwra(o~C&r`2_OT?^`3h!7iPox!;3I;XBPd4?_)&C$+6vK?3D
z_}seAtLx&rE~)GMx-O{e!n!W1>&6ZSBbsMp1#SM&9?TAU3sZAxU6(<by5`r7MhB<`
zt-fg3jam-pU@97+UDsl!hKtm7d0ki3b#2`^C$EGt>bknFYwAX3LPORIf21}9W+o)W
zK5|`M*Vj#Q5p@kbIXxe5s_W*uZma9|x^7`|yIV`@y0vb=199Mxxx_n3GRUr_buFvw
z4tSueasEu6Y@OcAR5kLE{r&E`?y2j8x<0Jy-n#B%Ug~<LuKO8pJL|!^9;zEe*$3c?
zZQJwB!;lC$U)K|LJ<1f+wVZ>o20?vhS>blf)YZLe__v>|8(a9P=HKb>S#LG25)PiN
zYeije*YyrhTi5e-y;9e!b-hs6i~I%o19OhAlIVh_(V<!42nZXg^%z92)%AK^Z$M<$
z(dGu{7ILx7zXi`{u0;yUTTF3KA#3Yh*qcJUvDW)_z1KVjXAHxHFNqYB;_^{lKh*VO
zT_4x=NnM}T^;unC*Y!<ZpR>f6i@LsIXl~`W-HiK!0u2;({@8I|4F?V%zpd-Ly1s{R
z|EM4tCXTl#X(2$ol!kF|eqB*rab3UE^=n;jU0z+k)m5*{uFGMulR7xoLa(M414crt
zUlLZpob;OlCqOnLX3sFl*pm*n`u;nRa^UA_0md2`Tg_N^OR8z}c-!^{4m#&)r<w!a
z8?XxU$JPh7{;2CuR=2HVZ2g5Gs;j51Uba@&^$)_?R(D(fGWMgaRcx(l>%ZnPx^X+(
zbSCBd_O@2DwYse?wmR7AXseU0&bCmw@jnC41ui1#h2+AGea7g$YuH-T)>^i@+6Kv=
zm<!u08S-d-M;}^6SI5^UTWj0e(AGw_*0F_=$ZLID>)Kk+)}yCb<F~a)A^2-nbpzYL
zM}v^Y$Bk`mVrvUqTiV*x)@HVP*xKASQ3iBfUI-sdjKMFo0_uqT+{)J0wzlChY*Ri!
z2?JP;kdYT`v&Fm`irjX#wzsvHt-TqMEz4G$t-iL{M5?xW+uFfai>+2$C>!`}|L$m{
z_l~x9ven1dF1B{I#innzq@B&~-|dN3H~||0QtXse`q|pm)&N@rZSBTIY~zRD-8L3C
z?Ok@8S0gfouL+BC4_kw5?a3^hRl`+CK?lBN66BsZ$lCX*w!yacv2~EGgKh20<JlTv
zYkyn&*&1qVn62Rq^LG;oz5EF4vCS-iUw%e8zpJhNmev8bM%p^iRt-{59FmTyQY(Gf
zvg)DpYLMmiQ5H2{huAvQ))-qy*gDMCC|ify8f_bGfl3qLi4Z$X1PDJo*ejNGq^+ZD
zjkPt-77lh6?0Vy@->zx<_U1PH2B3TZiEyl~<7{1P>pEM<Gmo~;vUN7|Wox3XnYL!x
znq=z)ThnY!w>8<;6z-l@rowMWSLqgnjX*%3*crOtiMC$fwjHu`hHY|;Z@P3iT15B5
ztFvvLWb0I0r`eig>ttJVZJolz^)VU|aahRv>`>E4V(_UJ;*p*DbX#ZGI<q+!?6xfM
zdycGrbII_=MC%+|=h~WYYk{rvY@KiGVq2GRM_U)#TH|hA1eIo(#*xIG$-yI1L&fE#
zwl1@cxSMAizr-UCwbJ08)e6=wah8R)7TLPe)>XC^+q#^AbhfTwdD5-sG^6b>U)`QI
zs2~WatDD!kbTd=2bq%YdiL-jWts7VuwjQ%}qph24-EHe0TQ}Rf#n$b%mfBjv<nC<U
z3Tr`-#K^-9XBpQAvITeFGFx}py3^KOJjSf*mQjT`KEjIZChDrF)PPX;+PcrygSH-G
z@m|&T^)CbOxAg$apECJh2J*gnpB9pAscL!H)+6w0S(!7h1_2r7a$AqvdXa~>^@Ob_
z;R;*N+Ik9({k?M8yxP;S({WXNi2#^WL%PD&b8wff7nt<!7SKumwHT){fp`qSb0-^#
z@v^N~Y`tmgEnBbJdJVeSdV>YBva-`u1HuMO?x-i)*yd0sr`}Y3+txd_-nI1}q?m2N
z;avt<q=k^WLpB||Cn=5}+WLrv=4ekxAKUr_QRZlMN1xjI%vNYCvh}&GFKqp6>la&J
z+WN}YcecK_^)(C-Rlc$Ht!+G4<SssPT#XiN7~stE54L`^^^<M(bY5(-1nUt9<N%;#
z{%Y$tcoG0WTXkEuEytD%!MzH7OQ9{kCSF^&v;ft+_3D;yD?m6`j4udz!Zs8mkdfO+
z8(S%CX6tvvJGWzTZD?(BtW|J96w9NHRaNr$-zyD%A~_!;i?x4G+h4Z+w#B4V;E7_7
z+TU&)3tz;)h<#h_9j)dV<-eVyRUEDA2rH7Rb8gMN0Bk;M(vS|0_HJ$8(NQNyEfbBO
zfmA@kM(hIf`t|POXbnf(INH|HnvT|Tw6UX29CdZn&C$A!)^pU|ksPh<XdTChO|qLv
z72tWy4%oqzxUTrCvc97Y9Bt@mBgZ6xd^g?z;6ns5rAgApDN3t|O&w9jvbm!z9Bt;P
z2Okf#U?H|7=3+}nTRGaAA<U~G?fEY=f--RX$_h8_>8O{Z9USfGh>lm=5!!S_GSK#p
zDm-mR!-P<8<dvpbZHuE;N4*_^TYmTy6R3he+3^whJ2~3fQ9nn!I_l$S7e{T5`Zj4e
zZyyUt0WeP>FK%Iq2vF^I<06g*I@-e#*>`Me%=PY$cpu>C-WOUqV0WOAJrappu)UzR
zqnVCoIU4L}A4f+!I)-O<G{n&%jt+ISpQE9U4sbNm(J)8D9gT3bzat)%I#W=&D49g%
zW)f+c!Nm`BRC9EYqk|o@6EO<Fb`F|gtvkJjioRlA4Md~E9F1~xq@$y_j-%0z#yC2n
zIj+%nm@EbAoe>xKE&!IHO(B?>pUkU`bu`Wq5T<yCc9>EnA&PwLV;vpuXuKmt<#Ek-
zat<drn&@bXqp6N2IXc17WJmMIv_r3E)N}$OPU_C9;X<G0Xu6{l9nEkI>LVFbWK9Ev
zvd%su@EeSpJv3aU-)u)GIl9!*WsYceKgZGOj?Qp&vZJ|<PT}EKR!((v8cV*cd~i)0
zUha2~?uVqsS9YeOvmBl8=mJM)J37bFxsJ|r1bq5Yrw^qgHcm5=nL!Rj)nuEy(9uPX
zE_QSY^qFI^*?~@mhX*=S76(Qs>6G&ri=%6~h@%CL7CO4p(N&HXIa=)Kaz|J2Y^z#3
zt!QPuUu|g7Ae$tIezg&7CBX1r?dTe(*?oIu1<xU}4z9i)_I7lOqa}`Z>(c2)=<Mib
z$3Us~`EfU-1iEqSSr%mxw>rAb(d|6sQ~ilw;5UX`;8y^7&F$`RbSLC0G^fyAj_!7J
zYoyyE-2?l<hraIhb)TdA9c|}ndruE=3ux%-R96o<dYD!0YCTtvIC|94w=7Rbk2zZI
z=v7CrIeOgD6ONv9^t_`d9X;jfzwO$saP+jJXAlli<yrW_tIX+Y^b?8;NbJ0zlgX5L
zXE&=hsrmxf|BsgLdePBKj?m>!@`fQ~Kx86g>J`?)-xW@Hory+zJNm@Yn~vUc^q!;l
zVWivJ-gfkkqjz}^D<H$8Jd;*Uo<lLm2&)eqedy>T#Ko=EHRjid!I8E)yuZ;iKXvq(
zqpuu&4Fg#1KX>$nqc6GUzXM4`#IZvIBSbO6vmY@9M@;nU!$-jXVEBLU=m)0E(O-^!
zbo7&>&{5>*XGgy{avZsies%Plqq-y8F)|;ILC@JkaWU=Rdk+j5z{GebpWoxkjsniy
z)fzK#2x*+S%1s>P#A@s)fhLX$M=2cTRWi=}y+YSrU~f6VbyhlRIQreu9}a~iyOF<l
z{(%-M94Q&M)AN*O6PES2qm_<2yIS4VKaT!I)Vpf$>eXJ>e~#L@TE#V}xj34T4|rp!
ze!>s7nyU`3I`We%J=;oLj8ahG2#{0+^-y345q5F4hO2I_y1OC}zox6TTy^EWVzJz4
zxPue|bRA7zuGV(7j%y$$hRm@@btdZ!R_6tJ!1}H>aJ8SSp{_P`wUMhGT<z#;V^^EF
z+RoMXt~PbGnX9c_ZSAUutIb_);c83Q)IpcMOkEP$n2_bUK_>APlYARj+q&xMs+TKv
zWb|zW9fsBVM_RP5?lIG(L;?U+aaDEI;u@XDazzjU%KvkHwbfN`$aQ^{%0w(RCI!rd
zom}ngYJjVOuKKvz#nrB^c5~I{sxNnOHU9p#{SUD|A7l}Z+2@fq@|xa0wo1ZVf7bx7
z?e6NQ%Z8KpMWQ&ha(lQM<Z7_1eO&G7YA*&j$J*N!NyQ{qkwpNJ*&wJ{+t<|)SNqSb
zRqNVuxk++hW@$1t%++vL$GSSs)d)^-b-1h1t`2ZD($yiZ4s~^)s~UHAbucTshY@Z?
zA0y1!Hz@-LITn+RwRV`RQLb^_W3QqAlb6N18{_H-S7Tj`b9JPvmsYioa!u_C6&bj^
z(1&q2AMJ`d6eju@*L1UmVjNGMWE~GRT%G7@hN}s#Cc2vJY6`bFsOu!YS)mhLqsDMD
zV#@r*H7(kwxti`8on-Q#6?{8%qQPor|DEY-7M!+;buxE>*<8(m^6QwmHmLH{E`c>i
zff#c-*EJ@*$zjMUr@1=a)pxGGcXfuVGhN;5>ONOzxjNg`wXUvnb&jiZU0v$xGFRuh
zI^WgBFvA($E^u|BtBZJ^cBb1nPW#5_Dik13X>=3N?-JK!bv|)R+dNnEU0v?#3ReqU
zEp)ZW)nev)qD2tD*Zdj=0&GCt0n3UnuY}E9UG3@`xH>nH0<bmkFwFET*ku3<d~uR>
zy{j8s0iAc3s~cH0u5NR6yQ`aB-QsGAt6O=mv}`o4FM7@mB;C!g;i19=0Gn&6t7We4
zaCIjfwZ66eQ6sL{$O7(|7inOu7iw(p<^j+~n(y3&E}8ecdcf5yhy_;<!YZzwb+y9P
z!w7#@Pq=#05LS=5TJGv`2uQ2qgH8S$@HGU!;Z>}D0CRYrr(8Yl>KWH4#&12+b|C<0
zlZIS5%V63+=jwS_2ws9{D-CWuQR5ewowcm`1vMCH@uAh1A!C~<cOqi`nyc4cedy{V
zS8up_)75*h(0J=DS8uy|$JM*=LtpF2`L!wy4M7v40p(1C6)<~#?R}OK({ZweqaKri
zoSctced6j%S6{jM)YWIMK8MJx!Ic%NELRLR9#obd2v>NtetfL;Ygga6`W99hX94Dk
zCW-X>bykgEiI4o?>PKXnr*%F3<mzWvf4TbG)i17obrrdaUH#^&?#grJyRw@?#&P8~
z4`6cQ{?vZ*VwnRIiUTTe6~d_Zw4rb!2k=@Xu2NSGSHHW;AgQauRmlc@YZW9G6i%82
z5KL#IoY`U`bbq)8bmh<HE%>S1(kdqKOG~ONk!HwqPn|sd>*_zq=&8LYmRLJat9UXt
zX;`6K5GZZvT_ho_<`Il;*TEA&NjxDDgw1~$(Am@Kp1OJJ?x~BXH9W29X)RA=AwnPg
zfxr(E@Vd0S`Ab(%?UtL-$<x~0>o^M#HvG3pY^t7(|FEmIo~MmG9Wle|d9t;>rwu%j
zyS1Tbwx>tw$h(uZv8PQuZR%+=Pg{A~+EWitn|s>A)0WLYlKp<{`W96xf1YBIf(V{D
z@NwIC+SXG~PrW>&Z(}a8A(D;Hjlf{}^;GkC74GH9^W=M~dTQ}>p{I*HwK5z}hj=>F
z(+-|?^bA7Rex7#nXa%L+Jq_^Ghp|VMzMlGd+Qn0wr<V>f9hSkmM5)`=({7&nd#1<>
zLE2%CaU`zT&qP>|x&uA!;c0JAgFOxM^uw0z_w=-vXEG}LKHrK>)EH--bfOWY`*_;d
zGh%s&CmJZzy&WR6y|R|se}{S+=4m*8Y(7lQqwqlocpB;HK+oha5#T;!lJR}PPQ=Ul
zUfsqu5At-dXFL*MKELb?BdU0qr%|3x@-)ZO;hsi&n&4@or!kP%)6t%e@pPo8qdanG
zHO@2Pc$NSwm&f2?Sf^A)oep@Kr{g^IJ&pH7q7J4IGXk9fh<@<-R_fre>?V0S!P9h4
zCwiI;VLeUtG|e*#Fux)vk>uULLdh%qi*IIln(1klr`i1LzY3>O??6W?4gk}jNiJWW
z>}f7DNGZLiQ#_sO=}b>&c{<Glq(WzK998fmeKoy`M`H2(8fp9}A!mC!$J0Zn8SG_5
zBK~J=TZYDU&V$;XE@)m8;2pmCbbRe%PnURF?&)z)mwLL)(@makW~83xd%D)skCwH-
z(?ZsZrz<=y@<g5WV)*tH0hUW$9@SOQ|4I*CPFH)n2A)~lgibaYGlHxJ><jW|kTBGc
zUgzoh<^`F%8$8|EoG<E0`3O~S@wCK4tJM9TZuNAVr#n5}<>_`$OFb>~bO&s+i^Yxu
z*4ak;TGWGM5|Xue-+U9Jyqgu_>0ZxNn3C8@mpAk!OfY_W_#Ep2XyWN%PY-%#Cq<=%
zGLLYKi13U^N2-u>vZTd=;enVVTJeOZCp~@a=@U;+aao?$(;J?i@${^x7a69f6|4nM
z&wF}-E4Q}ba7NX{u|_>UZgw_qlG|VQ^a=~#(`)cyPj>beHY_AFY=CV`+6L)}Z+d#m
z(|exY_w=@>cRT@}{H|wEO*oAnNxOr{bgK2`6RjV3`q0xyFfAyNgRC7^HNSFS?0OvC
zpL+U?r3aB2>^auwp1$(*wWlvUec8Mk4}iAM=)Upvt*7riec$|^6^+(GsS)-mm2}*f
z@a|8Ze)d%NWPADrc{SMj)zfcC+O<sEqeC|})5@8I4(Ymh=2_hwPcC%$r^0_<+RMUN
z3p|CMcJ;NJugFu3fb}I`39@KhbtSyyDfN^w1)d5|f3Rdcm7W@&erF)386-5C#Z$&e
zGQ(Ggnxu}u5MpzOvd{jFoH@Sw=aX&7Mz+g;J^hC?_O-gNcD`2e)zLQ&@Kt@a_qCd@
z4!*ISNzY)*2A>>!2DU%cPBJkF{B`nm;?4$L98<1~uQh$G<!cS!sBJJj_EA?~-Fy+w
zJ8hY%UdQXszJLH++t)h2w)3^UuXTN`=W8=xJ$$Y2YXe`K@UKm*4Sj9oYhz!F7j$QX
zgWFkFe9!CujyLtqLhDf<u(_`-d?OpT<zBwF^0l?EZF~V;4qqWlQFjrf$9olCK=AeS
z)yp>!`goiG9Ah{YpX@vB;A=-;I7O?zQqq2WwKNZSY~p2n)4TZ*^n;yz?d+?sZ#tgz
z@wJPuHpbF4%BblkUcg37QX(mK{hH_Sk&K}JzIOLD&DV5a1AGnib(pVF+|kz{UqgKj
zgW5i6ej4m+AL#E@_J&Zu4#WvY{`T!ttbP3^47IQQd>wOy$#g>3C6gStDh`3+zDD>O
z>FYpW`}2ewS_k+7)sP-x9CJ0oa5Y~C`8vecp}xt=AQ$&wUrY)wj3XwOG6!;j?%KjS
z+}CJd$NL)ZYmBcWe2w#Uw67z59p!7RFBBDM0$LYKiKIR{5#Uog#@DgFj`Kyu9M`mV
zwwBB^8~yarRTkF-UlW@@O=0%q$|PSW_?qmCKjM?&8(h2O7*qSqEKF_Q0sxQ`ea-MS
z-`4_PGkwkSb+)f_e9iWClCM*Jo#tzfuakYv^>vDGtUUaF><h>!Ug$#bFjH{4uQQkq
zUuSWtRjulErm+;=-cgtl2=E4;oO6Ah2a$bU3^&R;-`54cE`(dgo66;<hK}F>bp_;v
zOMG1l>3q#&zJ^+B?AjaZ@hgC+nE7n7ON+`vUyFR*!~kJqUzhv3#@DsJuJCoGud94r
z?VDydkchAmNe;bUYP;=J6T8F^xDE#Pb%U=PeWSM^{l-olOthD60uo_%@#QVPmiSuc
z>kePH`nt{6?Y@@!Dz-Os!3#AQ7cOEde7Tiy54!iAzV7mMH{Kqv0<_eRyP4A<5q_lm
zeBJNs&p>|#dcfC%z77vGI?zMD9%e}f>K^D3Uyu5-eL21!^R?X9yT0ComwY|p>qTEL
z`FhgVQ@)<_^}MgAeLdsrSzjw)&OMD}=5_6+h9#Kd%26ia<OPVci-BRGt`==%Yv2cc
zz2fV2UvD(U(W|~*V>zJe?AU_um*_ubTyOe%%h%h!-to=$ibMsRVY3TszzZ-D?BL7C
zSnvD#z}GjvzV-E?uaA6v?&}L*AH!O{KK1pPZ#?ZdJuuMNf=T2cxJk2JX5mX16{;qc
zubZ?&$$_OYM#!dK1;Aim-~0O6*Dt<)KoB*#`X}FDVNs-m)sIok`Dli}`uYtP9cI-z
zXG0_WPv6s+7%da3ED#r&aJ1F%^}8?6m+vd^6(VPRWypVDF_ItoT($7<Gbq}BFmaEq
z+l=%v(Fn<xT1#K#u9IfQDCppW>f7(=>K{xcVm#1lOsKEFef{g}Kjvt<wGukau>NTZ
zYM|6ni824%1qSwZl|ZWo!W8}MMgwBTG%W-z{EoH`fjS225@?M;U9I+=0(B0wdLTFl
zrZvuuS!Pa&YONU{ODk(}TA*tWFyrM#7#&K!Jin$uYX{mnP@h2S1X?#R-u2#r)(f<L
zpsfRK6KI1#8wT1eP>(<x1=={!CV@5$%+8J;vgZxPf<6VvmmLf)H2dl1fwl;=WuUDB
zBl8IW;nqHBnrXYhU)Tb8-!@QB9xPBbP_IDS1=>DPB`}@YL3Kbj;)JJ6o)lmF{Iq#`
z=&g<|fm#Ezm%)>0xv!mIiYRel?ht6lz%<(4srf$aj2g$g1ZoSkZ=fN8`UZOSKJCWP
z0+Hg?FVL=madD6~!~5=m1_T<!Z~_esv<KAa-TuX(8$<@t=psZYh$w;f4m3E>K7r|-
zG=5tPNku*$IgP6fH`^IuTqwU^py7c=1RC0$h+%=ig97&n$KC#c4hVE`phE(U40IrK
z8t5SCTo^AL6--E4EJxBsFmh1{4-NE6Yx~0jjS6(<9E;Y#ILZdMm_!SnYD}Ob0^J+v
zzCcF?I*Qu`S{P_-pmBj_2RbRx(SeQ$G%XPIR>uZ9F3`k4lNflQ@eH=COn^ie)G!Bd
zZomwvPq;2m2sAm+lt5GAs6H)Z;gTDPWFv^S<f7VIb1kQ<H9gRYfo24n8E6*s*v~Y?
z!3#>_D@qQN#U1AaIyumJfzA&!H_$18&Ioj7pi={#7LXaD4^J{MXdfJ8e66JZvRDw~
zX9YSt&^dw54TPLDnTKPlY#+!Fq#}1Aw0%LK3j<vm=(0c;1-dxUC4uM{y!_!-ny-<_
zLFX6vXX2Suv)1MXI`*Iu^8-^hi=gHfrwy>Gy{$!XW}q7aEe>>fpeq7h$?6EizH?Qe
zs{>urBoTk1%AS@D42olvMsmrngQPne$L5WJunTSpv;+=Z-gZ-<o15RPe@m5*w+6Z`
z&>c)4Gd^>~?SYmCTE_DCD(;LC=$3CbyFajZU<}?B=<Y!G1j7B!EKmp0VNa8eg3W$E
z!avZvf!+)BAj@h?>#0CbvkL@z82KOQ(Lj#}dV(potj8Ea^YP~0+V=hY8erx;DqHrG
zfr%2rIUu7Bno@fv(6fPF4D=HGu%5Ld&~t&FZyw_xCQFADofiUAK0ut5_m|<uK(7aS
zgH`Z*hgSo=7U=C0sz8*mU(@U7qrWO|G7Egk5LiKU8v1p><uA12YKE_7U(-h3I|uIv
z`XJEvfqp;+{xaZ0R#TwQ1AP?eW45!JMWWFsfj;GglWV`vuK^_lb`9I&7lFPC^fkh8
zW#vm|-)xSRZvuS_@n>4!1qOQ!ZyUNa9MWw;4fvfO1N{`p4-^FYInXbG>VfP)zXl?W
z^OiAd{l+zU&QpyTpR|GH1abp;%?U!4ntyneE=yqV?ES!CK!L(Q5zCqR4HO4T0;Pd6
zR&);&vPbTrd9r;Fs730MlUxRB1o}PDAAyP9GU?QNk_6(VmCAw|Ip@f+zXPp=XrbN?
z^-rLGS(u?Fg!(T~yHG8mT0^Z8YSmDihT1Gt`%tTe>K;m=I)v&Ns!OOfLemkuQ>f0N
zRu9dZLgr(#k>hvP4i*I|Yld1YRM$}5LT$N&xi7h?MB+eQAZeVegDY>Xt{rNfP#c8W
zFx0x-F{`W>YW+|E=y4I$<`WJu3D`*cjY84RVB=7mgrf5Zzhdb>)M83?2-5WkwRx!R
zLTw*v3vL%`+fY42Z53+kP&6ptCN$l^O_9s9t+*x-cc60h3Qdv#Swnao190j0s6nnu
zsA^~+Z5f>vifsisz%lsky+iE~YDlR4LhTr8r%?Sv?H+39P<=x64b?ByE}`+ZwL!5q
zBRVKZ;q~maDr<AsP_(hwEi~*6a2&y9QYi+6bY0P2q4o~7N2o!e_H6!_v>(I{H{JN3
z3b3?zW_Y&2q4o*2ZzzJEz&qf>!B~b$l!OlrH7wMqP=|*a9%@9WTBw6U?H}rZP$NSf
z2;KfNi7v!t&~WIzLi=^xCTLIxhdLzGp`i{7_0?fjBL4SZSmW0CxX>{GRX{x(9coOd
zaiNY5si)JCp^geQHZ;8h=6x}oVAea&wi3l7%aK1?-K=9m9SikB9nVD2@9)<E>{EEC
zNQlBekEVUm2G+z-lS17b>XuL^gqj@c!cZ55ni6Vis8d3n8fsdo>7izaIw{nNp=N}d
z8EO`z+uYc3(3V&XI`hyCt-GTN7W$j_Yfh+>L(L5h$_h(^%s`t68aWI_<+M<zhdL+J
zxuMPob!MouLY*B7Lxb=uN%iEDkR`%=ApqHZ&I@&Zs0%`4BGLNXrD|-fQLD(fTYXdO
zVwft_6)c2Mmxj8m$xe%4fKc;8EnvDsgRosb(q<mx!B*TjJR!PS`>`Vy^LU}D48`@a
z+X2SIb5*FTVZ2Z`gt{iwwV|$KuAegVe)iEu)dUxXerL2zIeObpJzs3SG1N`0$32ZJ
zkFBS+1KESRHPq9go(XkZsM|w50P}}h8fsanyF=X*>dlGP9ii@o8A4T>d0$lN0_h)}
zUwderb#JKqST(0x_rua{&2p+Wjjqd1foJ2PP!ES%4mCof$37D3(NK>yp8<ykc^dsG
z!JAX1RQ!ohPlkGm$vwzqTd@~_oV?fJ)icLam1)%MXG1*~>UoyW=GKblJG#>gp<WF2
zN~l*uy%g%@P`@_gQzY<^UP8=~a?#g9y&mcf2Eqv^8gwjJnts!;9}=4?vvz0EenRiE
z9wYUO^j@g<5m}KsMfxDrhoOAP9_ph|ABXxr)DNLPVd6r43G;{gEY#<rzJT((x5sV!
zcSqB21vbM^OBCkoP~U|5Hq>`8ZBq+<=$Y1jTbgtcEM;)vNDuxo)K8&)3snzw@gw><
z)GrJKN!Z>ZQJ=zCGDR`s0CKcLIicK89t=6c0-gx=fC*<-&Hg*->HfTjp`uWKB49(s
zp^{K#s79zXR2C`^RfGoIe%+B)_dAS_eU;HBJ$|1BHT;K|`M)=3>JJvzA0~l;3sTAZ
zcc_)2+C^F=(m$d8g*Vo>{^OiKD{oFS{7F&OZ<`uDVbw_OBdr#xLuB$~C^q5OEjG4D
zq~y$QV@%MnbEMTHZ60ZhNL?a);94irx{=n5v{t0q54LuX47_&NNZpzrsa)nGEk*cA
zk=Aa0iK)wrCA?mw^&@Q(Y12p>MA|UYMv*p-OlK&1i-5v(^n%*S3u;7~&|SBfRwc~A
z+T1Ksk4WVCT=hgNKeb#oa?40tMY1AQBW)dNn@HP5M%r&186RfPNWCIcQA>I)39iHx
zKH0)V47ZO|X?}m_J#Ba(5yCBzS|jZgY3E42BN2|@A<~YKfEI_C;GBStMH%>_1+_kr
zc8Sym%XKmd$$0qyzUaE6aVY@RyKAJ~BApm%Mx_3cc8_#uq{AW&h%_+Lut>ur?Gb5E
zq<tWDWO#eeNP9)vJ2IL-mJ9qaxcNPBPaK0UF(lG{k%lr%ztS?)8tqqBon+4Bb^RD?
zM5O&AEI1t$>43<@*+)h?uz7IMDrT@$Qs68i(syvALz)*M)O&?rq1FTY0^*E{ba<rW
zA{`%Tbfhtn#zq<!>4->w&R*@vNJm9vK@7nk0@4e(h+zEE@8)QR@JQP+k&cZFUI%t4
z`CZ*MF~LD-GCtCTNGC*^3}2xwM>wX8Fo8Mw6)(gU)2u0xrbe0;X*y)bVU<(}VgifW
z^=NBZn>mdT@XScFB3%^eV)!T0Ns&&EbVj5(kxu5yN#)c?b0eJs5k|Bl=K=5^bV4E~
z09f(yw8-pAoOWhJEI{W)IzQ6ck<N)s6!Kgc=5T{>4#Tq^dA5x^7>nS7NEb%NVZzkI
zuE2oI+t0cr(xnl)kgke!S)_T97DZYdnOxBMkrqT+2+OTzfhmNDLsh<Y_E4Mymq+AP
z4!DBzZ>hGs*~F>uSy217k9BpVYa-pqG)1~L(shxpk90#Ms^A9<vhdI2tK^+$;0324
zb#IPzOQa>7yoz;u%?K+pH%3jUrDf&zNK2XhR3lR@i*!e%G*%Yt&PaDLkFk!7bvMaB
zEZbOX#=4i$u}omONcZ!Ek)DtALZk;HJrrqqq{n%xan{3(C=zK}Xf=<p9G16n@Yw&p
z;rk~dJ;|Dlv?9_|k)Dq9Or+a)=|+GC@OA_yfp6mGuP&$|L!M)8_A>edlKh(mwHF~>
zq&FkI1-HXOkzSAVMx<9Gy@pij*bU%rIGkZ3d}wO(P_@&%m)pp|q{qSAk=}{)KB7J{
z6<+T)x%xc>NC%5>Bq0wJ><=S-6zOAx5>GXH1QX2*7(m1V{xOQ0nbyxEeF3c^Ws$y&
z^i`x^BmEZX>qy^3`aaSRk-mjKyR`p~VQyhkRjF$r{f5qfKSuf~($A58X>t)v&ZE-2
zZ}@lvQA_a%BdtfWSv!#eMCE@KCz2b<i$t&wDaR{WP{UhG=d3VN6e&iyMS}BjYml-+
zAuanjzD=GSiIhhwBK;fbKg200K#~4ng+^*b6pRP}Sa)6H3PYOx73uFtD-rvV*)?!7
zppx-aY~Kh{8Y;2%w~Mt(td6ld#acC1`&g^R>JSUEKts%Sd?QeM{_<8dJ^Xc@W33*m
zOKbv&B$I%h!T@muA+?UWs%@>9_H)`fR-ahiVs($TRjjRJDc0JtHjcGPYyu7I#9A-b
z`mqp7>&7~850kaHL97j9Z4?W+#JxyB#Z}1ue&`7%TX@r0o5f~yYb{leSewV%BG#6%
z=rct-8)$`yet$~!qOk@F2|SQ(Vr?7aZPxZY&xRH`>OEsoZP6<>sSAAMxDv~X)jQS>
zv8u6JVztJ`zfCI9QXFO1SCMiDZfxB$(J<1EJZ)^s3gBC$C3`n5$ajg=7HjWVgJa{&
z>>I0ptlb%YYfHaayT;lr);mWVtOGjW@a2G517qRk*fZ81&4WSB_YZoS!VtXuh{U~O
zO@E^+=kU!wvG$F%f2;$bTde(J4R2m>XlxSoc@2vN4+Ge{w7V&_8_|3W4!GAy2pj9L
zSfgUqVueMALt-5oH%p(I?+3@Cy)V^IG)F_cAd~>WIXu?rSg2TIVpGZu3=|@f<WjzY
zbB>BNHr6At9%U|K9Ubd3XcFs~SjWaXjj_Z!F4pm}PK-4p*7#TxxL2&neEC4TiLk-`
z)+Bfgkw~|ovhw}75mRDKjWvx?$ELd+tPX-i`>7_T4B!ABFy!9MShHfC9BXc@*|AQF
zH77Qb8B>U;`VTi$2}KR8S#+R)X-|oDYV%i)*H~Bs0gN-xh(*xkEM`B}nXyTv{Q3lg
zopMgBb7Nf?>!Mia#X3LM1yF3R>8!z%;3Q$LSxO{MUmWX_*tl*kjfIMf0~1dg=$H6F
zDE*!vYXOor)?KWfSc_ua80#jcBi7}yu8DPRtSe$&8SAQ8SH~j7f?{FZ2s|Y64L*P2
zT2ttXy?kA)>to#zH|><Qj5Uh$7Ws*Rb2C%JjK^9U>xEOhEs1q&tlL;(3u|O|gK9#X
zW4z*vcCwbmx&v-J-THPTYfo>O3EOSg7hw*nz}*lh*8QwXvLM(6Soq@&&57XCc;bOr
z4Cf*Ker?->%<qym0=|s&;aIfWz>a$iBE<Tbl@jamSWm=ymq(5DWUQxRy%OuySWj~@
zPZ;Y(t`=)WtmoiZ7TR9M0B82`sS<<&K!AahT?|D3OHHnL8U9(r6n`OJ=!^Xtat5C1
zY`q=pjo4JUzZvVT*jQ3{$!IuE2|P(1h}?Hzzad710{r#dxNh&qBH;c3&pFU~aa=c!
zKaBMe<hs3z=bZOXV|^COj^)JqJk}SnengnW`m#CvulakdubRhuEUZD0Z)1HI>-$(g
zu!z7GySBP&2h+C*IY2i7Y&xXh&#``q^&1?usTn5I`YV%_Rgk(E*IcCDoKt>vV^a?v
zBP7F$7t3cvtk76dY=9XrYB!Lg7~BOw9D`U$IbITrI^U7Y+VP&pD&Vd}Hzg`#H4r|D
z_DS@6tUnNOi8fF4XKY$xt(vHPqQ7GO9cv{L{uJxqSpPK-{%M{7U$sk&S96s_*j#LC
z{ELrR7ON%dkVuKvPSi0`r$lQeS}RfKM5`z2l4y-Y2W(@uLUvxVJ8-9;-Y`k~s~=PC
zny6c1GQhhhqBIX5Cc|fz$rT|NZk<HyCfX>`#);NTw0@!u5^b26+)LyPJ0{Q2yR*UT
zo3g9<xJjZ-6QKxgmWYoe9~P9)cQN@qqZZb-NVH|5zKQxJ+A7i3iK>ZO5^a-c+eEz*
zZI`HLBBIq)SyIa|V_^-1w@n^v-9Awzk(G!Z$1m@0(PM(tAl#(X6t^boooMGoeG=`E
zXvai5C3@!+3qyur9P%H`1awrIQ16ncEm7mrZZFR_MS@5zxB{NsHPLQ~jOvo8e_||=
z0f`1CBHwBE#AF5V6Y>YmaF0ZT5`ztU>B1U933<C$qJ1~BNN(Jli>zb#eBVSv5=~At
zB_XRvLlcclj9oJ<(QuwW(da}Y678SpphO2VFNsDbIxta<E3a=>2cRgpA4!AR{FPP;
zGhcsg*dd7yO>|hIQHgNPT|T*rSCgd&S~#{O)x<<j$$uEbt&gydOmswIIF`&V`kNe;
zXl$Z0PqIk5BjpJ`KRVGdiH=QlT%w7ICMCwXcYLDpi6$f_I@W%iVX9tFwAw4$5Kt#1
zCWQb$hH;7fQ>k{crY4$}=$u67GL;)x(-X~3C~MM*iDo34nV5=WUb7hQQB~9fhL2lj
zPNI{!exfrH&4oP@oto&hChvVT*O;qhwj4CT0E4g#Aa>47bQTjz@=v0(M_Xjeqfn6z
zejW|co^3rZ(fNrMBwCp0f<zZ4x|AtPbWx&<VbSr{CCuiI2K|ytp^RZ!U>e}-n3rgN
zV%iImRs;=+dO(v!i54fiI?*+WE>Cm?bcV?}ZTl7wym9#sx~z84Bnz-6VuCbKyEf5v
ziLOs{Ln1s3aN}(YYxppc%vcTgjxjm0Hz&F!QNhAbv?L)+sW-S_qT3SPp6KC3k0e@}
zXc-GIG{^vVB)T)veTnW*bXTIg6Wx>O-UKhVv4w#jho#X2S+?BnzH!xePO~0J^kAZg
z5))lzn9Ln;9}JB%A5HWavgH)(*+k0|J)Y?4CVP-t`9z{86Fr5*xV;MY4yg-=+*Bpt
zivkJbJ;Pd<YCKmf5<SP9&b6LT^g<&1`CN_n7n{c%yp-tW{~f=Q=+*xnzn19r{~c5G
z`c|U183pVO!)$83!%vAmPV{b~_nH&&exeT&eV7=V6swJlN{ZRh!7!yiVLc}Lg4wyg
z?X%`PSNI%pI@WZi;~0Gd#rw;|_;48YH;KMYR8M3l`VL8w=%++KBVM{#KP37w5!ucZ
z8?yX~s*pVSOQK&B{nq@RzzzN%$f!{U(|DhX<s@<wMTz1>ULqd}nJDCG4>AfTh=LFh
zgPJZ6ObTh(3F|IVmMG`sfhLP}+es$X_T$8KmM7-~JhTSFABmc3<5Yh@*tGI5>m@PS
zWq%_76aAfNB~KMr{((=j%7kN$zXI6;HQJ?GCDmG~x~5t+Rr^$(Q>~tAwNxEabxhSM
zHEHm7OdIk;yMgboVfH(A3h?Vt&tB`&sY{9`qcu}h!3r)@0HTRxEd<APVXa%L?y1&E
zwQg!|DsB;1)=mw^_<OA;nn_4#y;SR`+91`2sc`7wMJE9mi3fk8Y`{fu{wAq5O|?s^
zwp5#?>XE9F%1X6)sx4A&lWN;kTc+A76&;zkPK5`LB?&e%3e~8pf&1v0s#mJ*Qf;5=
z%Y`+9JFI%lig;lS9S?<ps<djVmQ*{W+A&pYY9Q%)r}RGV*lX@k+>talq@-de$l_IY
zPSqzh;)q3on}Xd9tULzTH&wq>d#4(lYS&b|rP?Fapp;0rc4yS72Bt#W0r3e<8+nUo
zo;o118R^x<-}g+lSCdc#3+$d2t?f~4_DQvGs-dZdr5e)wl{5E)us2pm1eFepYAn*>
zTz|ARBGvvdKnJ5x(cp=#6ZNT22kXF8wNy?fH`76>4rUfIb<1=}szXyfnChXF3S5m!
zbzZ9TQyrdabgCJtW~LgG>WEawr8+*<k*SVKO>?VbQjJYDju}sl!*+w^t=tr0_zIA=
z6!g8+$~nh2&t&@;pK3y?DXFHWnwV-*suNO8P7No6c**2~WdTbg&*6vlwy~zAnx5)J
zSYk6{s1osKB|`rnqYA#+S*d2HIy2Qz|5Z*(H7C_6sZLFGa%%8J=R)K`76KE2#sPkb
z(^8$DYA0IJrh4g=8r56OHH#XgqZ^-TJuB7Ou=hRf&PjD{^P1F^vvyFor~tYk)rE{A
z)lI1`N_BCnD^p#S>XKBKrdp6{VXDhg&Exyst@-c+d6IK2_>HDlP#)jHqEw4hU7qTS
zRO#8)noU?sa+Qgl(Q*Pp!SFoi)i7JC>r&lvTJ4%tgw<H!FL&vLU2uJ>8@S6*V<Wsh
z%0xGA=3`fDDefK4Pqie~t*LHfAuOuho(fTeTEf7;8$QCHRO8G$Qr(&AUg(qRu2e*>
z?@o0Ox9e!8tmB^*j7P{$O~?I^XiW71=y0I%if}Jd1*o5WIMpMmzEAZ-sz*~j#$8gq
zn`(Kg$5TX&UQG2wswY!Dn`%X>r&2wg>KRVBz1s6+qxZt7W?m*#;mqfn-{Zo4p381+
zve!_hy6n{QQmU6zy^-oo9x~Odsa{L<I#=Gx!h?jsF(v0GS*U76*g>3li<u>ni5c0;
z3YS#*@~kPw|L|U__fvh6>Qf%(`058d^H}SnR3A1Eh{PemK8DZ782|If`&gf)`aIP)
zaQoktFAxr?zDo5qQ-8WiNkXQf+heLg)s;g`WaQga-$BeHjYE~tEvxTGD3<E4RDY-X
zIn^(zqEs<UBh_!I+*DqwdMcYW$TU6I4U@q>(@=Q8);phlQjLI`pPKZQAXNw_{8<6#
z`Jcax__}N42#oFo=1J8^^?Rx;Ri3IyRq~OE-rUGZWF{hrGD))3a9y$_*<Sxh^=DIV
za~e<k;C9wZJ|faHb<FfH?24$*1XyLeOsizVSGH<qBBu<Q{3Wy(!jZfq;#SK{1`hP;
zl&N#3H8S=2w&Q=jx<Q}SGj++tR>d(xz!+aM(^{FZ!rJ#S&9y0z?4C)PW@kDn)7qKV
z$uum}@J#DwS})UfnYPcgex?mFZJlYGOdDp}DAQ({dSu!-(<YhOJ2uTkK{o(O#JI_4
zLjmhS61ZF0JTsW{TVzHo)6aCvOk^DK+A1>$+Z;^mWNn+NXQp16!6BsWBQLxGy!fe-
z$;#9>Q@>2rOf8vq%(PQx@)BD!_0F_IbL^{6vj9uSm%G}braQyVP$1JTncAB7Meebh
z_=yuxT!&oS#yPuY+AY(-OnYSNpK13@12T=CXf0dS+Un{ylCQ|QBC%n+YuW~Ji%h5}
zdu2MOhcQ4ld#H^xgS|7e?eZF&X`lZc@0-z;`~QExU#6k|J7%&*WZFN|vCL_v12T=w
zG%C~KnGVcUL)vFL6#1Wt(B8q&`EX-;5Jy1gp_T0$-*zOujl_n-*c!%|F^<kOhLf4x
zOkp?ch)hSq9^ZCEsvxeZF@NfTws8=jVJ@m2lbOEK<Q2d5XxnzvhEN_(O8IBQtm89H
z%rq&}_)K8(OlZFMXl>#6giMn&P0KVr)0E6a1PDq_&Gg<_i;n6fkRZ=b%rqm@%uKT~
zlAR0&<88;8`gD>o2{B+K0?Ilk)5$zoriU`k&4BmU;!KyrEnG9xMVT(nbb6*Uplzme
zd6?cUXJ$Gp)7hDdJKInL==_zpv}`oPcvjELbbh7_GF=GI+*JK}SsN}>7A!BU2{cJ8
zg-bGBn(5d5yDrRh855Ujex?PG-Li<p{cwGCKXUvwGXR5E-qXgyM3^t)Ay+ju3s+>i
zGSjV@Zp(C4rmHjEkm<%u*JQdj({-7y&rF+pEC^&H%a;5NZpx+lHYzv4mYHtJv?Mc<
z?aXZ~{O|`o-5+I!&?N6Wjz^2o(oA<}x+l}JOm}3uGt*s6{pkkE34QPQ4VwsTld1$R
zDT2Q@(|wul&-6g1gBR5(ekXJ_dPig3a5DS&x}B_tGd;q*WO_f-qnRGd^kSx$GA+;a
zc&2AEJ)7x?OiyNdD$~<2+e~wpV1@yB!LCGI#6Li|YDK2!GCiN^1=zBuNt2$ksCJJt
z3{{rSDaY(?I#axy>6J`xAda|N&3ZM{Ynfh$RsJv`AzZIZ2OIU~$cpt=rnfV_lj+?|
zQ=jb51@W$c#>20aP0_R$|G)>CKFsuOrtdO+l<DJ4pTmKfKFRcHhPElPyKyogRq*ej
zhx|g1=5?$uGkulm>rCIUxMo`P>7xh<GmR*WcY2MOFOHq>GyRb17uX=vk4)%E)=!y!
zhHXx_=(%wJm&1>m-j(S?4ZsuoTc&y@8`1Z&K}_NzV5ArOS--zL+{@(i_guH-3Rq~!
zid?(riZaEVpKIM*2}^Pl>+eh}Go_ibOgXHZsgdb-CIU;dlT{)uTU&snrmo?S=D7aM
z^cT!O%6La{eZWx|Vz|-%LHK7{Jy(}p|7B{IYqgwyj#?$xs=3<dhU`qoyGyHR`#7L5
z`B@hoo8NcJ)j2mIQ8Y1fawunJQBcvmMy@q;b<5Q~*IKzz^7&WS92Y?aLl`c?=cC-L
z@wIc~T}Su~A!&b-aqX^`YyDh3bM?x#L9PvR;jGvu*G9QE&ebE==D9Y>g`Ki#uFY~i
zy{`qd8felWy-*)S^4=D?w#>CvuB~%{ISkF=UP}HSS>2e}tR`}_xaPLGDFQ;OY?o{M
zT)X6I%T>u`<=P?Fj=8G2T5`4K>fO8xV?Te&5Z);RguB=~c<h~W?VPJma}>02f)4++
z7$k7^8U#4ufWEm1QSF+G<9`45K5OW19L(v4o1N<n$Tcw6L`IZrk6eRtjm|YD*Pgld
z%5^}lk-7HHH8|IPxrXK@YO_zSeRB=T4dyURPS1Ln9QH=f9F}W%t`WKR=bFC^U^*z1
zp#?Ke4~T$zgG@LuS1s3}xem*9P%b>o2j@B@*WwvfQm>gH%*=ytGiul<o~n1txr=It
z=SG@QuEkFv!yl3B$XpY0A=0sqkAeqs9mD)GS-GenJMH>5W*Mx@WBFqa0*S^$C|djV
zHmb-y%i6A6R3jor!tm6Y1~!4~oRDjBt_yQrlxs?^sk!FnIwjY%T+?&S$~8OJiOr{-
zk!vQ`?9;-yC@Wy80>`wlzjacsIk`@Te`J!bN#Ta0&_mD_nU_=Hw_IoEIw#lZxz2!k
zFhDNk^Gg_*HKQ~F<AaI8+>w=cZm#okouBK1T$r(V2**#XQjX1rP6p0%i)uvrF3xpH
zt}An0mFv=6m*rZRYf-Lwx#s6uz<>8@4>$}#&uylgwGR`T*x6<67U#Mg9>@j9Qjm+5
zMKUUDlL*4qxvt4|L#`WhU7PDVIHBlpeQt8MV6ew0TL*QvKD?>=*LBsKa^0NkmRw76
zy}z2V`k69RAX+exlRzah<y5!lTFPQ9v{s>Ix$emIDYKUAPA-`1xm?fZx;xiBxt8a8
zJlDOs?#uO1u7`8o&p>XeK9K9dT<pahk0(vYui(ri=k}3YkLE_&JjUdnX7;8vuN;g(
z1M(fRKauN6R!y#FIE|KPUl<Ah6hdZ@b>GD5v+&-sYX8aB3g*JAP$_fKM61hI)(g2_
z%=J#Lceyf*l<W0eZ*cv~+P#wN)m*Q^+l|Vrv#LbaQ2w{tz@je|1bH*pTe;pw;2d5B
zq><<kR@*j5o6@THAWp82b7KkONdF+$hq*ptiLI=#AK}cwoet69rB9kNjoBx>^?9x@
za;3SlTwmt;D%Y>Me#`ZBu5aKOCN9^vx$*CPm+N~(QwM7#p!a`OsO86zTRYtPDc8@4
zjx+QNLX75a8(1BG8-ObqlY!Ifx$Im%LOz$1%gyDn25&NW{%Gb95RVqNCwonZ@Xr+^
z_K}BYnYu9gj+w&AQ5IN;*mrC(d9DKKovU4;GFKzlU%CF~%0sN*bN!L)PiDcbFcF+g
z=oU}lrdeeroPfI^*T1YLuL80k&Ra6y$Wmwol~oF@TBu{8PKCfIZeM7%LLCZ$D1{_p
zQzNf~U>v$l=R&I&>QZQpLNk|E@iVX(aWbPlo;|_rp=b_W3w0|rtkCd6-3zHuwNOi;
zwF|9Ns7ImA3$0s_l&%d6ZNwc5ZNSNGR+qyJ$Snjp>y=jfxV{?~+N98?g*Gc>h_k2$
zb^*Wgf**M8(%ssk(3XXI7V1@Kt3q2B+NRL9g-~KiqM%&@MGYGaw?6y5g8slhzFnd1
z3snkPg|XwH5@(_?kd*;GHoj;y%+`W(X6;^RK%pH9?O3R-P~Sp3723H_pF+D7CYy*Z
zV}u1^zitCeZ%uM6d!AtRE3|8&-3s+DOnu+Er&xbjdmyXvbCU0b3l89~fra)cG`P?{
zg$5NYdF@qb??Mz`P}&9v41rg+Y${tRgC&D&-$FwQ?N?}MVfNq7_p~vhE)xtEE<P^A
z9lP*|Li-mwzR>tW2NW7vXiT9a3LRLeR_M?|hZQ=AS(s2gxX>X??nDFck8hk{7Hgb^
z$!k=h!wZdWp2owkIm`Uic_X7e9$Dxp?q2AaLNk8VSWcU0jVtu{1T*hM0nlnb+`u}v
zQ2WKT<KQ25;a5y5FN(y3LK6{66>FUXx=t!|LZRt}PAoLJ(3C<`3r#CbIsr;D_73iG
zs<&{9&3L7a_K`DSvqG~9%`WutVMfC9%#a1u6ziLXLru-eh2|Ez=uchzCm<3!wa|p$
zHSu?yR_OFXpOyN&)ER}&gz-vkQR=KhXBV;yIfc$)Dj7wgCkmYhn-#jb&@F{7D0E?=
z#f2{C%7rd2G_TP7LYEY}v@j*5mldXaEO`s;(NKxd5038pzSe?53kxmcnj<XGfaxkS
zZCMpqavCUHQRvD-*A}|2&{fcLdF$1Mt|^S4*`UgFHqiu1ez4`QFLXnp8w=f37~CNw
z0Ok*{OK^U@qmg5{BbF4pwa`6<?k#j%q1y}H3CK@#UX~*N3*Esp1NYb21k~`KP&5JJ
z>tVaLAGE^E&fTn(BdT~}?<;hFp@$$Z=MS<TfNu*U>yQ#)o-h~C`H@187J97E@<N|Z
zG0#Ji369ED=L{vL%u1w~=*dD)75bpihlQRl^h}{w3%yq8*+MG{y;$g_LeCY(XZU=f
z7huZ{#$kw3$~$pAHb=At%CcTA^a}r)R;8^5+XUL<>xJGZ^md_lcrXOTaBIeLy~W(^
z+4kiwre8e!^}B`MEA&2MXL>t!_Ix7~SK`6mILsV;ROsVE-xd14&?gL`&=-ZigjUTM
z$7h8;FLXxpOpt`(!><Z`UFe&FcAtXge?QS5w=Jm)6ys2;z^=hfe}EaLwEMZxFNJ<A
z^b^Bx_F$b-8$m7DuZ4aqR4=sg;u`GAMObJjm;JYzRi(VeE#x5#ORZbVFBBB|ljRRg
z)1g*aC@K^;k15hg3Z=;TLJfrK)BUqTd7+{Z+W}IGN5VKI)s4&kj%Zq38@9Oi2V#&M
z<FtZg!;JmA(8@xcORZk&AD9+VU#fkn{|dD$jat4+sRREVh^caA-`+hAGdeR#_^Xxb
zF|S*PQXNatZ4GQ&b}P`j;G9mSE`8i2Dt9ThMyal)x|K#ZShLiJr&?>3!c0Sfgn1?}
zu5~Y^Qk`DY+NF_Q7c8y;pRxn}L!UMdJt7qAmD;Ej+9Sv7bDg!V4Vv#8Hs7Jx#?4<h
zDYa>7%!kcN<E`pZ>ddG6!`m<qA^t5(ZN*cSx~$aJrM4+`RH?BgnBMAHYEVfbl6sZe
zu2i2=yOi3#RHan!QahBgN>xj>lxi)-Hj&Y&$}=cTP;c@%22ApK8H;|$QahE}xip+f
z6$Z7pcaJol3izR|RNqqlOYL5&Uy~HOmfEcpk{s6%!=#Hn{!dKf0i_0-hpFsQ8l9H1
z2=?e7x|kNg6gloyYVT4bnT}F}OYKu?SgGNq_AND})PALgmcoNgLI~h{{EO{)@c`?l
z9j)ExS|dvBUm9ijfYNkRW&4;s*`g0DQKuaSTQ$BcHL4`ot%FM)QtHrBhn4!cz4iSG
zL+17|i7sq9tdtuT*O=MSrN)#xqSTR4_3sJ<;e`+I(Zx0P8Vbjt%s3_#{wZ~OsbfkV
zTWWf#6H6V(&`O<9YI3RZr6!b`SZY%9saUY2a^bY>e^M2pgu{WHfhkb6Ps`L&(@J5o
zp_!n_9XH%~D&AOJn^9_Jsgq01W$dM9mpZA`oYL&?c*W5Mar{D0g3DCLP-A{diTJIY
zS_<e_E`=V>M*xD(fMH5q0vAoGo>l7XQWuoEu+%xF&MkFbsq^`Gy0Lb#l#u|h47V1|
zF^h`~H`vS_)$SrDwA3$)4c0MSharQ8|L*;oS89H#CrUk8Y5{jIbw{Z?OD!t3xYTu}
zt}k_YsVhodS?Vg*`@|uCTBhL<-apb)uP${>scU(>b&YHXr}3U%77^-^TUs}iy0O%)
zjHT2~rEV^DOQ|KL@fNb=c@agTOa^}ljmrT`yq)P7*KKL3Wu>0Fstxb@)*D%5O~Yv&
z^2%MM?uL@bT91{w2U3@Mu+&4PC~Uv4)cugO6ikI2pnn9pQXsODp7e03M@l`)V|N>b
z^BiYjzX_)4D%CxR+2wHNGUGgdyfna2B-}p5BD${a_0qTvpDy(b>!s8Rvncd(spm>P
zU+M);hQs$Z-5bdpq?*I9L~5G80i*g#sSXdey;|xuR%mB)0y`{T9bUv(-(dNddaKmi
zr9MF5lzOMsyQSVkOd%iWuhGTS5OKhzSOu7z9Df9>^J}S3n`<0nnRqvzbIcsV92m|(
z%YISnODNpXl7_x2^)<qwp&c9grqs8kR&A(#L*JG9zEo5yhE}D1EagF&Qa_dYxzul^
z>Tn3x>1GPse=YUz;@YFj+ZgHchg<DZPARuE&P;GTC^yEM##$u#9KaJq>+H=8m}da#
z5UTVorETRoR#GZOz!JJGm6gg%{a)&iQU#alZk44Pr7%MdIIPMj*gdIm#2);!)L*6k
zF0~SwaCxoenKm-L>6bBiYcqE~k>Ay=f7t?>S8mtPDh<)ZkoFm5<&hrG@oEiqXlUbx
zHfgA1L!BDx)=>9`5!9U<>eA2}4XqAM=nS&2@nunOwPwSp4P6_;3SO&WI(F@RdF|A-
z4X>)9wHsQ$p$!_MAZVS2)@^9Lh8|jK#6JImL}2oK)T{4?4Q<rW<wvyNzNaY{Wt(H`
z1i)(3hBj-cXG6Uj>e0~V4Q<mfR^Ap3ZQ0OP4Q<^J$_$c_cUCb9ImfSEXjIT`dF<Kd
zOFnMb(Dn^g8)|6?3%b&f)esI4OjO=^(WIueVMH`Je!UyUD88JEv)xT?{!R_;+|UUP
zO>U@9L%TFIvY`VTYHO%(Lwh$gxS@Ux?aG5SG_YY(hIVVHKeTPA^DhGs%Vd-ObZZ+X
zEgs!H8XCln8rqBhjvO(pmjyb(Z#4_UkWvCNNvLh#r=fit8rIP8hK4l6BkkAF(1!k8
zR>kjB-OsdjAUd<_r0R%<_HUTX(gPYo?W7o!WQHzNsyGH|KvQezpoWfWXe@(m=#YjE
zZ)kKwheEW;)?p2eYW^1$<&1wSKipQm^!O@$TgEhW1U%oU90~E8-3O?aTG_(_sSNQo
zuA!qFI=-Rt4Wqpu)6lUE9oH~@>Jeoig3dj%%IahG$ts!9(8Pu&LH3u1lYm6rob(AQ
zj=9d1hNd=jaYL6hG_9fO4V}irG<0G^Ga5Rnp*aoBY-m<Pvm2%`^UAYKUkPNwwKJ=v
z{;~s}+|b;HPHE`WhTgiZI{fk)D}u~SYy?F55&M|dif1%*W<%#Sbbdo;HFS1E=QMO~
zL)83&QPzKT>${c~^fVqAn~vz`1r1%;&_xYh_mZiC;Tz01-g#hn{?djnYv{^`u7X3D
zz6S;`XlP->=+*NZrb=|$e%7Lf{vS=(0VPH8^d~Ne!0{_kNs1yU>>dY-EJqTMJMPF1
zh#*lB1QAIBf}lhbMsm(UG8i#|8FN4pF$)G15sWu8yE`-AZ~Fh;d-Lkm^mO-hS65ee
zS65d*PEIbvLduhxDNeC?_>SyEdr_JnH|P+1$yic`rDa%IhE-*;MZq%ut_&;KE(5xA
zWlagp)ijp|q~~fy<TYinyJ`Ne^OdoBlXK?vW!OMYW^%TB88)#&$tPvlT!t-Wc)ASF
zlwoTbo+!gU7C4pKR)+2DgJsxVh8=8<3*))XPWHzNspYR0(CU@jh#Up@i#_a~?6y~@
z$ZV8U++%H9EA=FqxmM~a1!*1qY#E*_!)s-Dy$t(F%rd-Oh681Ip$spUq3lZYB^LO#
zG+T|kc&kUpI~rtB9??BWDwW~Yve-U{QvIG)ZMYbrsOP2XZ<OIpN)k3@8Qx;8$*3b!
zZ<pZ_b*zttp?l}bm13H_$1X;u>R<H(c90-RvlHGM_`k{atxoFWGJH~opUdz|84j1>
zQ%dqOe8WF>OMO;`&&zO>Y;aEM2wSah>V?j!FUoL?EmelENUlthD?9owqdQFsa4I@D
zE9M!TZ_Dsq8BUbp$1;4c3id-8j+1W>6wsuQXH>}mtPTa&Pi&NBY5QiA_JkMYrHG#_
z!>?udw+#Q4;kPoJqJ%8NpJn*H45!QRM;Xp2c}Pzz6kI%LHgZ*(&UHCJPzL@*GM3>V
zN|is7x5sxKHlZ}*(Eu*GIf*JOgIk778M37O;FL%Cz-;q6aF)Ug2g%Re#>$l;P-2bZ
zl)aUrgGw{%!!;MWi$WKzTo^7)7j<1+=)!VgyQt;@E)p&(xTx%+ii?Ua&T&!6#ku_Y
ze44ueYm0j^!?9O1;nh*p`EvnV)kU5gUt93T>3I41D^k4mmCFZlQQbvN7qwi}aB-fC
z^Icrv#=gRuo|obkR1{^`+?>w~vbj0SIoOca=2)a^yQt&RXdyO*<yc8w)<rJrxoGSn
z>EdD+m$>wVkIP&H|0L_XxYR`hH{LbAp+~%H!*iV+5xTWbUGBz*S)P3Zja+bBggEI;
z_ns*i`7WBdxWYvfH@=vrz(rFx<~QOTn<$ytC^Rg&(nWI@SGj0GT21ake*#o|-S$%K
zdV(8X+?7i+=i&J+733M2)-Kw(xZXuS7j0d%bJ4{`R~J{iXz%ibJBnR&aM97lH7+{2
z@w}Z!8oQ8@n#2kjYL+;r)84f+=|3Y?;-Zw4FH3Gt$HxzOi8cdinBC1qcNY$myXfJf
zr;A=Lu61KOYR)Tos_}O-_Fu}(`CPg>-N(gsF8aC{P+)Rq$fY7RcszvI<BfQ`v%iZQ
z+<1&0#t1G3x)|!>Mi+xzJleVYU>8H&Si8vkow?|yfh83Ye+^6B<i;)>Nl*H->i=50
zIX5v~40l0~=p)?NZ`;>n<NN-ooFC=lR<f3lgpbi=5|YA02ai{U;&vCGxj4f3F2=do
z<YKdn@h&EiLtH%UVxo&XT-?KKT}*N@*~K&}dD!%~rlz>K)5TOa<?{4T6CJ8M&Ka1`
zuE#0*be7EpF9y2X1wV20;mt31&x{uuJn%Kk#cUV%xwzlO92aw4%yV(C8#^K7EOCq*
zdkEouUSvpmlH|rW*SQb4c+kas7t~c!=}J$woL&ErinUUYkV-CAx>)7nF&B@!SmI)-
ziv=zgx>)35u?tEP#=NJIL+MSeAl2!0Tc_w=nBr@hi{&m>Fq1YZs%|(b;zljCA`c_A
z+Qk|dYhA1(!~B<|tq$R$HCXRr1G$}Tx;meJ7&w<EXWqELVXx;1zQx5>7caVa$;A^c
zwz+uL#dGXUE_S%s>tdgaoosFwyIt&I$t$LKDxr6+SO>)ch>(L6d%=@zbQe#%c!m^i
z5!aVWA#M-R{F^E}jvX8zXpXyI_4?;s(Ab+Nab94@RF{?TmerSC9B}cji}zd{bn%Ld
zH(k8t;#C)~xp>{h8!o6nq{Ua~!SS?>J&v-J50`a^NRY0nw_Uu$Dj>xj9G;ot<)^$I
zd(@fa`z}6k@iCLT_|U~iE)LgAamZLXFrTJ|EG>5o50k4$rr4uDWm`w_xmU6}*Y%&f
zILbcd;am@2xH#tGPZxi=_|nB!E`E0Li;J&aeB<H=7sp+E%QkJ7`p(7oq~vY+Tc*Sd
zaF&geLwfT*;o?V<aa8_Kl&D-KRZVd{&YLDkNs5t^E`D|Cz!`tI_|3&BR_AQ;cSX++
zUM!$Uryhex>AAB0?gfpX&bT;BvJXjdiFeK5*yYIIF8*;5x`<r-OGa|xlhiKCNX8Z^
z*M&zmHe=lsRdaOp!$4{#vo3O!jV>KrS6L|WvYPfS90h1B!~?CG2i-%$Lj@0p2h)S)
z!S>LpJ`b2DxvZcjhiY@~>2pd$73EzEoQfXK@#5(U|I)Zg-1M|Ws_dbPhs!-Q@=(=7
zo`>2V>UgN;0UpltaJ~oeP~Ag3G4sHNCjaoJ56;lG<fR^8;9TILrWZF;Eid*{#IF>9
zyB9c&&#j8O9xn87iHG_gF7o1uZaohdd*HU$k>;^%p&FcXexBmI)I$Rg4Lw}ufsMkY
z7B4YpbM&s1;<S*mi_sc;NP4)+LkkZn5BVONdAP!h??Y_jp}<2^57}|Ciw}B@Cau^L
z2`3H6yV65*5^8c6zVa{{5o#LK9$I>6<DspGLN8Xjw(`)L(MH6Sp-zuC0@JYrZv<%P
z;c5>L&v%%d(wL%yQ`wc*raF4K#={m5TS<8jMII)2nCPL{LuU^|JPh?v;-S<-Uk}%N
z=;EQPhh848_0Y{jcMm;0^kmL|CCS)-*NMIDu?KPV=VcQ;UPwD0dVA>O;W`f-0%+b(
zKj+*&qxjOhrOxY;I=VUCkL2<&(8D0Mf){VYvG)yNjTGsKkE$IzjvmZEwvI<njy@Cu
zqj@IL!$=RKJly1An1`D^3}<o=w|JmS6W-CoO<VHwTMHZxYBVXNV(?avMji3uah!+S
zDEvL#?qRG4dJ<;Sb5n+*l{+$v*W}YH3u!oBMP~eO7dUr#n8ccTc*MhG4^uqM@i5oJ
zogSuoxZA@$9;SJ?i%jBSh8Lf$ppu#PmbCMs?vCo~e-}6nuWdTh!z>S#7CN(;<V=!|
z{o4)5|LCH4!<v(;c_jYg^nD)g_rL<&>)}}A*mKAO9v<{CpRMeHQySKYXVz%5L_VBd
zI~D~j|Dzrr^RU9hN)L~FSm0rihsEq!r;-aj@bLbBQh^dOz7oR2QV+{KEGOx%i5ZxT
zO`}InIXKVfkq~nJDi5nYZ1Awr!x|53J*@Mvo~_@s$@G)$*bRHkb6V~z*wZn^ntoIx
zwMlW{X14Wet_qVZ4-KWdmUe%_!!{3Jk{}+od)VRORS&Ou*y&-Hhvz)(_psZ;9uH5k
z${zN5*yn+6nV<CNxh}~Ye`sj*UP*V(KRK;>#*1Y#rQfq`{SmR}WZKef7!q6iKkwm1
z4=;Imf$WOZ{DQaxzU<+Ehl3toVg9@)(T%T%qp2#pC#Prhw@>7C4{vz*$m2yhc+<mM
z9^Uovo`*vo-u6Hvw|CUP=#-Kp6pwM8X_0#Qj@0|?YvWQMc=(WAeoB0ZiL+38rD&oq
z8~wz?VM-ehpHnEE8|$S%_3#;G)D7_nQg3eor|TTkk5c}#iP<|AI<2NV<UQ7r;WYgI
znj*`C>%sHzt%vVC{O;kjhwnZ7;NfSIh@9ZzgohtJ{6u-egDt#3_F%z<&706Rk_PRx
z386=qlN44Se)DjO9lTTQRQ%m*;~h*AmN(>bM#t*>;o*#je?0u_;jD*0J^bb2Zx0l+
zbdxpWse<?ndySaR^A++R$wD4$7jJfRvCr!rc_xLbIp0HuBHDxIBTGKqm*x|A$Whvl
z%_n~M53LD9%D~e}-pf!WnbQ4uhtBk2D1^Fe@-ss$^-4ak;G?3C{yuK-agL8lKAQQs
z!pFHjD*L$5$3=|kqpA<_QQZeGv&-{Q&5zlhie>6~h(Ns#pKR6eah{LbK1zN}obTg-
zJG$`e1?uafKB=01?De#kf<(A}tmDT6_o0TgNyc_b5vk|nVjq|JxZKB-e-oGZsPD(s
z(a%=lC7YM3tQz<+vo%z(WROYxj#Pz4K9W9Cemqh)W-YFX3q}c$@1uzyi-KxSd{nAH
z;Y}6fE7M--qq&b_AD#IlA1!>e^KrG0w2ziP+K_a1s?bL(_3K^(s<!q)J2x&vDE(#)
zif!JgDQ)Xx<hu#}vAvHDKCbc6Nfoan;nes7Upo2WsRXhO^?OA=*q{{SJQz~qqtr(a
zA3c3^@zK=>k4Rs9U6tD3#JN!w*3CzEmgJx0soUZ$zg|ABRXO)z{IT(YEZWgIK6-QF
z?Zr47=sFdluaE0}^iw#mFknsja78e{$3P#q`xxtEkdMJWMzQV}riS<!>SLIXn|<8K
zEmvMCK2E#I$IC~m^27>Vo>DVE+{XwXoP%+}&YRGw4!y+(4}6VOkO&LFtZrpteB9=P
z_2uj4!KpDmw!EPcALnDdkGp(K_c4KWpOQDp$7CN1&aE(!byqc|E{NvJQ+(X%W11@e
zn&-5sWQjT{j$iE-#(No@Cv$B+!^hn|ckMC92jkqsk{`;WYn{g5CT9AerOhnzl`<Y<
z!nr=yw#Z}Jd8A?W6rX#2@RBbg5BPYH8_fY82r%ErLq2BZFgu5beLO-EWiTXzM}0iz
z!}H;@UM#SW_k6tXW1){lK6d%o?PIZzB|g^s*x+NSPs4AlX2E<c_pyR>^RdbYjn8>z
z!7Ymqn^WIK*E)nZNvh96XRVKQKI*Jb^A5Oq8}dsA#p}e4J~sK-#)|mZOfve|>f;Ii
zf<A|9#N#RNj`_W7D%B~)Id=Aj*nVJ#kDWev=#RpOjm`n+#lMq#eC%aw`Z(ZYA1m(T
zIUoB;ULQ~Uc!uQiL5odhvgDF@8bd~<eBek#d#dMsyx`+SA1}q7B1vDwRP0l2$gKop
zR1vKX2oF*?_;}ODTl}?;*L=M0;|(V15^Iv_Q<~ZG;pQgCI4UF$`FPvMJ3ihet!|B7
z@{)O2WlpPT$j!S{sCoFn$A><CQ(f;PA0PYp+Q&COKJjtb$59_&`1sVvXFiVj_?(PA
zF2A61>Ye`ag$P`Zk-}B_bf*c*F&`J4oA;%Uuh_*dPw|dX`ikVL>b?=NE$g>FzVq>;
zkDq*e@8bs_$9<e&#~+nXRSYkh=V;5t8t0<iHRFNwpMCt|<D`#Y{doDzxfxr5Qw6dX
zbK^cHJtm#<@w<=HKK}6Ww~v2(obhqi$Dcm_qFklQZeqO9=8}-B9vc3!DLHih>*GHk
zWj<VTOT{=t>L)v&7auL5_fg)?S==L)q44)nkU`T7a_o1kS_U;U2z^A9+Zj~OK+8bS
zAdx|Z42%rS46F=n@^I(wY*xBKAWe7-fi_@?(@EY$%uSPu8Jv?rr3}b3oD>~9(eAc|
z4y#7_TqT358At}zGsw%JS_a5)(?4<Y*8JHE<LMtyUQjRb*Bz-EEY;Bb^D;O;6MG}1
zqJs@hgj*Q&DqJgr+8H#+pkW4eGN_xu#Ti_}vZYfOW^hpk^;m#gV$Ci2gxOLr6cZtx
z;td`3Gq^MZ-txmKAGc^puFEpGJcDEgsSFxr&^QC`w=yz0jVe1rk}f|3Di52eUoeFC
zQ?omeubO3WMFt%*=$MHQ7hIXaRT;F%#8*@_C*4jb7tF~^XV5Z(HW{>K@>9ve3|eK-
zI)fkgx1j|%o8y{hP2wxqW~AC>aCHXl73^CfKGnh!Qhu`Hw1&MVgH9Rr%HY}ziZUq9
zpi2f_Gw7T_Nd~2)=aL@jq21qV6dU?-VaxpjnjCb?pnC>AGU&-#H;nH?IXg1H$B^z6
z2rLXkXkzVT&^v>E8T8MfPX^az(3kbifW|qTqI3R6w`n9JTY)aoSfm>=7?8oh3<hOz
z=$<%)Mq<@&FDWgFX~j7zS8YQxxG{rqS&Yx(rVNH<5RkPpxH*I289b1|gBgra1R0mX
z_zX_BGH=OXWG1!%VZlbJPq!*KI)mF3!tgN)xn04rEJiM_#e_^ej`PUj%nVjcO-;<;
zjtnMcFu6R{T^UR%$M00g)C{JThqzB#%w&27Gs;8m&fuPMoWsGaOl(vzyF6r026GiY
zPr-W?ys!N0{p=uB;wsF~;Gql-X7EY|50fQW$PAul-^t*y4Ay0^UL|>4!KE22D9>SG
z28+t^#ThIq$G<(3w=9F@>UD*JYZP3W!77EUR*=8G^S#7cg&R(HzHTTF-=>g_8Eh&K
z*_^=^g>Nknc_IT|Tf<b_GuV;A&J1>C@MQVd-5E?*^OHR)WN&%+KE_o0J}cCy`b>HF
ze)iM+)U)dKxeR`okk5(w^W|S(P{@l4zNFyG6bR*CznGQxY6h=m@F!ViSNe4o{(c4@
zWbj4?Z)Wh83OS@;lN0eg=WT_*qu{#=zNa8R@fxoWGx#Wj@5tC0e5}HcWbnB{K2h+n
zf}bk*StgzdFd?6#8GNMziGPv7F@=9w9#S+W=AW-K_@+GMTZPn^pZ7xs$20i7Jp4q4
z7T~cE_))>16#TjTE2m-nbTWfqRmgAU;iuR=C&e7a=d=p^L%}l{oGp(tJ8Axv!QUDD
zQy$`G@UO!EQ?N|I%H#fDZ|132U%`xmS&jk<;a})jDWdStB0q~JS?F09SzMgOC0UqR
zSXtD_;=C;EED~8%$)fwnINL+pP=Q}nIV&pUoGdDphn$;5<#K$EVxg+)H7|>5<>63>
zC|F&=A#KgK5~=gEs97H8f^2+O_?T;Bg4D{Qc6oT6Eb1!!LIp1>53i??pLZ7>dJ^>&
zp3I`wB<oUzH^`!4dCbeQxV#*1lttrm{E{s(8>F)FjD;rs1z9xB;`%K5Wx0QsY?ejq
zEZSsoMHW|PW2;U|?B*)%RSLE!&nK;rmRS^*hqPkdl~YIN-<CwSQ(dxXm&Mg8Li;R=
z6w*P#jtX9*U?&BcYWcXlVug2ButdSq@~`76<#knfH@1;NdSu}!q^E+t6uef!xD2XY
zdS}t6Jmfls^d)UCjtNdN+n=o;C2z{&hAakTF;GR|;QnESIKrST2A8KDqL85q-k8O6
z<KsDV#oP0TWpT3#9G=C9EN)TwZ3>Q5kkLjd<W>boXYqNbIP)>;^>zivD#*a??<FQ=
zF)@qNS^Sa39a&7u;)yJ_WidI6DOo&}#lxzl?#yCZHXbRas@JD#r@npV%Db}odrF-7
z^ekp%akt9$o-FQH$jmHeWieaf^UD7?CyTiX=XqWx<a4ijy)PRd_W57P16f)|#eHFZ
zc`DNOkt`lnuS*qtEDO#~vupAnFORc8Aqy2;q~PK#mXv>`I9jIg<yoxAVr6;w28FE3
zVzolnWU)4jbqZf!9;fv4SUfU^jVh$sq`Xa8Y*zS|@;F<w*r%lT_AGW}@opCHWwA4h
zT_jg4^QA0ytC;UCbm;wKkHYsdNfu9*=kT0Do>K7XES^!wv*llTpEAp^U%fuhUR)mj
zBH2I*keACt4rFmKi&wIEwLIj_EM8Oi>*XPDWRd*23Nw65g&fM_?JV9=I7L0f`F#9u
z;{7Z>$l{wUzRlvpY`k9kT*djQJfDxV_@o>^oW-XK|ExUZ2$|=JB4%||g?yplvGT89
zX7QE6zb+5icRcUAa(qT7^ZP7*$l|yPImynFvzgV2EPhlWKPmXLg1;!pud{omepUEy
z3Z7E%_wuim$K;*K;%pXeb7+^tpIQ8sh2&5@7c<-6S!g-vIsB8wzghgJQiTeZW#KBs
zQ!tl>uMnonWRWe$IgT(SP_M@oGeiofk>*3qd5{n$f0RS}$@zR`Ogo3l>emSc8B!sK
ziV8nR!Aj-f=jO0jT@%ANRa9VA1@jcFmIKOT@=#2T9L~$3Ne%@$oUg(!Q}BWuYUWTY
zhuS$@qC)DFr@A<Yx(dIrJmjJr>M5Kg<xl@d{Q4^7QUx0**ib=6=x}ZY!pqfbqZ}G5
zB&lFZ!F&Z7hy94BV4CL8Oob5V>2ii&k;9cLq<IckDWt{!A}E;7p`}6?^E)MJTdCL9
z3bx7N4@K~+N!}a=<uEvh4(e0S9D3!@QQ_Ap*eS<r>EaeI&Y`P9h<8><Ne-puAzc*0
zJ9fJ%q`QJW%D;v;=3SeElOtQkS@l-1fBDxw3b{_fzByd4kbdP~sZzV493P;NZ9iSj
zoj&@E8j{1%9B$2Fv<km5hfz6Dfq9d9<(B2J9B$5m$Z!QmD9G1a6f#o5yypsNq(t+i
z+f=HF3XV~bMZH}iV-*~i!+3>EDF0fNv+u}ZQVx?<$aDp#lz+WbAyadhrjWbJ!+9#1
zInPk9cjs`ALS~kKr5<vQ!k6c;B8R!TSRp?zhkJ9lFNgbcSeV1293IHw!5kjRq1De-
zYK<zIPt8vbY-{2Vk#9#8ai%nPSUe6sn!{r`ygxpkIzFy)UQqro&ULH)+;edb%W~+q
zTU(OD(j2%|&6w2Tb8niIq1tLC36(=$fNB9&=ddP+BRPDY!`d9y<?uodFXpg5hYdOG
zX7U_1=CFwkk;AqeHs`Q~&y3Vo^;0@irI$r6Gr6fpWP1)fa@d)}t{nJ@mgHP_AMBf|
zFg1?GSH|3%!@eAz$>G@?p3LE?9G=d>9+fwxb9@ahw*tAee7|R^$|C2v9C&@${v4iX
zoO-eAY#O;W;4Ors^68cCr5s+);hh}b&EY@}2XlBMhc|P0C5KmYcrAz5bC}aR#k(h-
zsS>X=xh>226)i&P$nmWl4zX*j&wo1ynr6lRy33L^=~lEP#WP&*k-Ry4oWmzMe4r}J
z+&;?T!(6<;|LoN?AyYBW!#RAK!)Lkpl8d~;xPrWugW-JoX{n<*e38R{Ih5saEQc@I
zPjfhv!&f<cox=|~9M9pK9KK~k=kR?l-T~)gnXbBGlho(i&;)|6len{RB8MMy_&tZy
zIj|8)pPzC_k1M(1rqs_l{E`C^J|}bdRpGythn!LfFGQw0TqdOZ5uV$kmiufDf93FZ
z4)g}|C);tlbHz(7|6$vmPV)IT7klaCZV2ss>MwHK96U<z09F7$hfEG(4p9!-9M0}T
zE{7l&Ti|ndnA^VGIijHsZMn4odO$n*q!Gklhh7=GN2bpW-n~dqzjlB`fJy<*4NxIK
z#USRWa{>%{*x{Bdoji~fe0Y?ja)2u8Yt;ZWW2Tq>){7jrVDClFM@>=)AOX4tG}A)$
z05t+M4bUvWc>&H3a7lpr0WJtoGr)xbE(%a9K<xl^0@P(3WqL<74vWVQ!mCxdi^u!c
z>jmI0&!-K|i-Xu}%594r?yS*I>7@Z01ZW%}$$AC2EWqUf8U?XGI&wAHk~%%|82Ox=
zYt(_K0^|p15}+Ue6*WA{6n~<2WpNP^>bMB62ykV9wgK7&;K}0V0n!0l2DmCfiy*#R
zXJSEocxUy4-3kM=3eY-08<J~p+Bqln;?=PcGW|92nuAImQk+s=9iV-Hq5#DKIt1v*
z{|4w3;N5}Uc|{{@N(*yxW@{cG9T!`bbPiAwpfo_2Ahv7bCwgun561=!f5(PuWR>m#
zdIY#7z{mhS1M~_oAi%%?*9LF`^bK%*fZhT6D571*Xd~!6zliYbS@FN9UF;X2e}Egv
zKc`}MB0Ob44yQhi_Vaul6ku?Gn*t0|tvn>a(3oN3Q;Jk|G6#BPp+>8Jlq84T9AJ2W
z5kb5)@ce;-!y_F+s)D&^H!8rb0VV~Q9AI>S+X9RWFh0PT0JjGi8^pVc97;$8ZllL=
zTI@Q8YTgL}CI+~J+;S#KXQ#}NDzzBt(tS#RI|IxKFqiOP-c<5KfZ0JjubamDDrCBX
zGZegA!Fv>(so<PN4kNR}7B!9ij?!#{E(_)bxHrIk0eCkM&8Ya?nMp2N<ZylQAeH|C
zu8Yt&!b8k~g%2?{#3L+!04;<b;;{ga2Y4^Q`vDdNSQv2Sh`j+81y~$l1Di6yk^oD|
znH28<mIYWIU`2qH<R3lez*Mpc;m($^f{qlXz2%w!YXhtcus+~9pd^)_+&ra+aO&kY
z6vVu`XOXihz~%tk0&HhX1=t$ki6FL{r5!1&K=&y;Ji<jTJL!%9I|J+ru$yHY6?@fS
z*C2mxZq|ecohTvMW%iNb0~`o&Fu+p*o(`}-!1L@Zl~d0Ics9Uu{Din?(Y}HvRYdsu
zLVy<oycFPNc9~Z34bBW_KcWVSmJi&@qyg|N>^K453UDaEYXM#l@J4_)1AMr@4aYu0
z7K3}r_uLw5Xvve@>U}%FJM1PT^7weCoAzcr!b#qc_Ra@P7~t0czXkXxz{df;4)9HY
zPXZhc@Oglv0X}6FeoKB9;7AbfPSUKG8&%w{q9qJv%NGHT1^6<+R{?%rn&zdq)LOIT
z)V1;gH6|pfzYXwRfFA?=6yW;+KLj`)-~@%+$hd+m3GE4q{BlJMdD-aC6o!hWPqI`s
z)Te^@GD`aHW`t7#eh=_(fd2xV4)8~SzXJRn;7owCL2Rz`Cp+xE0$N+~x^Q}b<zUJU
z8uC0ZEanjW4?8SPh?}L#0=NOP0dfI63V+IqKa-gN6!JXW!9Ga;V0;eOO9cVK01-vg
zz&PZ{lvKU3B|J;cZ415{A<Pg3A)1EqNo^~Hgs2|E4v`2^Aw<Oxl|xhsaZZRzA<hls
zNeed}sL|yhNVfxH=XWCyR1J|AqFM-qvF8)oHSwqjeK0c5R|ch$+zY6isuAM65Eq8H
zD8%_8E(lROM4b?0s&$~fXw49{!r0I18J=wFn7U|$Q#Zuqu2r|Ui+xp*e`twOFT}+m
z@5w-Zh)Y7$50MPfs#)sN5Yz>cO5~XaVeDMGp@Kv%3vs!^8<mGNX4;l9XL6&B@u@N3
zJ`S0`2@BsQ#g%)r5Lblg8KPH+D?>C7(IG^~5Lbn05u$a7HX+g>T81d(-$T%|2UR6(
z+;QsM3VDnMhumIl8=_r^t3$LWWwzwg4CdWM4qZF)W-&&N50s5aT@#{Hh%O<zhA0YA
z9HJydX^74tj^CVr`xSB7xWz`CR$jZ$i?1-_es{Mp78>0{^a$hYS!rJ0Z)v=T%Q5ls
zrZhW;6JltH8$<LC(I-T|5dA}3$2K}Q)i=cT3Yk(l_98`FM~-fs%aM9FgcuNFASv7;
zw(PBXMQTtOyIgM7I5ju~?W`CwBm~Pt<fahALW~SCD#XnphKCpt;+7CE_s>5%-(l-h
zy~#avT8GlamsWGPh8P{<Ha0iK<}D5>PYUoBFqVOxnl!0(UTR#3@odTvzl4|&Vq%Ex
zA$EkgBgCW-4^!BZCCFeQW`~#);?59LL(B+qcZg}^hv})i$i`tjBjq+RWe5qvAJOpU
z9+t3XYG#O8A$PlC`y&3a0UZ+3uw+tdZismy?ho-mh<iiO%=JE2^PeQ$MDREg@3mp%
z2iZWm<opm1u^4$N`st;!3p(^8Bk{20qZIxjR)<&<;_(m*LM#ojEX2YPi$W|8u_OdL
z3(xcNG#1Y$9I6=KUd_WkbZxPmtr=ovh*hjz)fCUV(r*Sk0%rm=m1ncEY1W2V7h-dW
zEg{y2*bri4h)wL3EmNH<$Hk+;4<WB~;oM+Pqtw<APlVVOf(EfP)ZwT>kA=*$;>L75
zzJ%Bn;@uGMh1ks=%~lI>AjIAf`$9Yu;@J>ShIopU4DrM8JRT^cHSaBZ(=^QcvwbY~
zp9`@+#PcCupjfy*ZbUAfXod13o2G7xr?xq!yrl5siyVd=4Dm{cH$uD_;?)qZk;7Z0
zUJv8lD{cXEA~E&+_?QyK-CH3Jg?O9fBI`CvJ$iXd-d9df4x}^rpLOIZzxP9Y5aNpv
z$3lD<;-e6shWISR$00sZG(5~kOg3q;GX3veaT5Aoqn9%h;Yf(jLmUlb%Oc82u2v|-
z{6YD=toh3jUxoOd^$qcLh;KrC8{#{1_4{p_4~wm0c<%V?hADb&rR5T-aXiF{5I=_a
ziSfs#4orz}oPTFvJRtJUV*ZP#2v3Iil@c$)MG<}raVmrn!Hn>Gh|?@X2sgwZA<l&O
zE5zRvv(K9}raBwqPsPK`gd+%#V{o_SAIg~!|1o@3{?aXJ9w_7PAt^&rdm;P~xe!5!
z7dx7n5LqJA;=OX(mGMR%PA9?;Q3x%99>o?@<fzt*(u6!+n^z~rwHOCSD}o&%FG95l
zi3k-UoD-o^6i?6o%-4EM>{2lTjlkVS&bbjPN2n5^Y7|R9aw*TPu)nm|Qant}IV7oy
z2om9f2sI;AkEmY8c@fU%^l5TF9idS3%#w5Sk)48$+;eNwwIbAxP$xp&C|;H1)9~q3
zd=nzaDZ2mSs7=b(i*Rv-!U(M*ToR#vg!~9iB3v4wL4-yT8b@fzA9YDx7U6Q1_Dpi@
z@O+*<p<yT2J2aMNUD%705mHg?*PRr2v|sG>uOLFx2+bp06`@&#D<WF$Ca+}vEmEAr
zPy8#M4|D682NqgHxNvk{Izmg*>W?HFh$7;{?y29rBuU*mLYoMs5xPWZ8=+l<Ya(=t
zaCL<C5jsTZ7=cqVIt*dONda2cwY@Q3RdH5R6rngm=LjVv1+S*+ooaesJbxo$e;O9w
z>&*)zx<=?0p;v@!BXp0@gZUSxdPX?@QUPTVPgT5eRf-{;&^i%%N9Yq_@atgU+HCTJ
zvCjYEP-t8qp&v=7Nr5K)Bis<-K!k%421FPbVLqq05e6}BgmDqZM;H=eXcP;R+t@l0
zZi+A>!YvVoDfYNI!f<9dHm(#Y+;DvUcN6oU{UbRt!l($hMi?F8&!(}$flFq#Deq|J
z6zk(*v2Z3|jfrr3#3KWEx<-obWhgFK*$ELQMz|-!%m{Zxm=s}ZglR0vpUKG)rbM_i
z0#82DT!H`XG%|j;GP*0m^awK|+)Y;TlKey?G};Ng-LffP8G(mwXGNGD;ogYWWtbCT
zZbT=>$$3%iO@)Q0VIjRY@JJwS1@DjW06XuB^n<MF`ZU{uw>HFfyp`e$6dsQ7NQA8s
zo*)q-JQiU^gq0B<=d&WcFv6k;3lvV@Zk*pPj<6)c(g@4Q1C3geXUN-Jk}qdr4iu0T
z`AUSt>#7K=Bdm|GA;Ov{?#pW<tYf3xlFx&d^Z-l?Ud{t~tHs6$n<8wEu!Wpo*n`&r
zbIwdr+1HHY@Znznwg}rJJVo+G*b!l8ggp`VM%Wd_SK;g?FYyBO#_>T#UNP2XSZZH{
zCrR_$;-fv(_ON$XSsXh|dxiujts=ZYZh0$S6h9YXzv?6Z6*l$yb-(=1)Qb^bB4bof
zy&PeApY9|(pN0cdSFg@zFMB1zs}cU8(1`F_gx4c{8R4r4Z$x-A!p9LliSSm0LlNGK
z@P351*_TUG??iZ)f~YLX{<5m5`yjdloe^7Ee-MF^;ll_YMfmpR0+x_#BKAi{<Ery;
zgij+JW$)Wv^jU->5k4mm&#B7eW|Ti%o|D?-Mvk^$L^#G`oS$NW*&o@mUq|>R!Y>g{
zGUo{2MK}@R#|YoEHQS|rV0WYZF`AOR%z;@^8A7AwpHyG?S+OX`HQJF9^3sQ2Df}ax
ziEuW;DGGnemI!~4J<i1ZdFqz<-WEz28t(FxJ!L+n%AXPbitslJKQhHra#Rg*vc#DH
zOa5PkGKy$Tpots7i(qMDYvM=9L<l29Buj)GnKPXVNY%^Yv6wnQ_O(kEJ2a8iG|@FN
zG%@48pX5z0$M+T#OpMJ@NF3fg$k9BZNd-+RX>u+_#678snve<4(PT`cn6}Jn=^c5M
zHL0RWRZa3V;puf=Kts*gjU}n!o#XS@RA{tW?1(1SHMv-mOEjsW$$6U8)})Rm=WB9-
zCN(vwr3q`z%PXle;?W!Gwb&5|DFNzga-k*{X;P2Bc%cmkSyF>vd3>AfM6%bBRDDe@
z)ufRojWubYNkdI8)8ukZC;&-Y%70!%##Z1|ioQuXg{B{yq$Vj%@-^X6Ai8v52V~Pz
zN!Yt$s;MT;G})}l7S>3UD>WIZ$tX>lYjTw)y)?O2lNOq!HR+^DktQuQDb%E$CRc0H
zN|V-_w9%w3sWc&;x0C*ZlBsUJW2F;!6F6|U*QA3c9W}Xzly9CQNr%&1r+128?5G9m
z);gA8#hP^1q?;z)H7U`gRFf{6bk*dQA^CJ8#=3B%AlFr@pW=nBq(Bc%$dkOyttZ>)
z>Udc}k4*Gv;b_uZlfjw{(WH+i*YS^<+@MKcO~^>sYtoN@X&8@voGx-M#0v*`WOaZh
z12v(pV2~zk<u;XK>TzC2w{q{_5GyE#YBEfdn>D#nlbbXd_jPM>FC8PyzBDyllM$NS
zqF99lzxmvF;z7eCvJ+3Y-KxoGO&-wXK}~KWi8Pt2$uv!F*JP|FcW5$+xoI+9lL?wk
zWFy`kSCf}&kuo%cq(xJFY<y&DvL=+$Q#83#6MB%Q=Y;WvJ*XI=%`F`h-KEKNP3CAa
zSCbi<+^xwys=ky7EFtamXf{8Sd_@b}RBDzcv&-=Ti=BCz+^flbn%u7m=jU8iF;(Hd
zbbM-NO6;w)%f+ernmnY*GEJ6i@~|e4XtIzD%pz&>7#l*91)5N!vUN`ZA(P+4tE2W5
zFbCp`NwklvEM=Tm3YPHKetgjk2X_uMJUzEUla-pR(`3CSt29}y$r?@8YC^Urw-fS?
zOJ3bhgcW(PT55wPv;g0z$tIGt+W!Yq;X_kH!mXM-p~?4}{GiD;O}1<Dx+ZUEvO|-d
znmnh;eoc01vYW)w<Y`UzkeHh6)8t8VTBq2v1l5CF=8)hV$GHc@RrWKA^3Q6*MH4-)
zlgGFR*I`Kh^P0TC-lWMvHoYb<v03|8eVP4bQGB|P?rnJw+Ea~M-rgbgiYBjW@|q^x
z@ub?B+)FXeNi1*Eqpk9rn!KgSr<#05`fKvGCLd_>p(gKW@~$TDY4Sch*PXFs;JlGb
z16H5ICC{zXvEfIWe5}bQnjEHhk$8R0<G@_bb0|z5Z+*eod@6R1X!5xxUuyD|CPy{-
zLNV$wlAR~njd+qk50jiE@Q&%PDL^#&R+I18@lPlD3;OA$MJtv6>^qcBySU$>$q7yV
z(d1uEeq^I-LN6bGYVxxtzYy2tv?eDt`BjtOG&!Z1u<O|*RRmm6SFRLa>&BCb^oRe4
zCOq(aMw7Fe(88aB=-}vl9$ln4_kp$fe`&(GD|IY?Yci-`JdgcPlQJc@bCmy@coale
zG|BQW&6@b6&kd=Jf_&xBQ?Xw@zw$&LC$WJhp<*Y>d~%Vli=oSj3*^TO#MH&oC9kqn
zt1PxI30*cMWMe`q=u%Oa38qXm<s4lq>C)ej8w@#Dm&&?)q02E{s_0TxmvOp`XAZhl
z)8%Si+Uo*cM3>8Sxm=g(y4296t}Ykqa-J^d>(a7+vW_kn=u%UcTDsKMB{i<F!~7(l
ziHjY=Q<DqlFLoG>&&+i3MY`0}<x*W5=yI_xm*`?YomXF%8(u7Bgbj<GzbY5=Ik4EN
z^K{;+eR*Szstt8v2){PcrLito>e5`7B!8s--c%R;x^%uSO>`+xxYaC<{KaA?TI|$Z
z;xyCc3VvD=7lz@9e@m{?rG+l7bZM<iniW4$)KZs1U1lsTEn4Edk|`d%#F@6l>7I`B
zX`@S9UD~OCEm`91TjIR8#92R}^f)urrK2wWNK9R>(WR3vU3KZEOOY<cDt;GTI_pxR
zOR0KIEOjni8k2%0`F&yX_!T9~YHO{RI^A{Yp-XRF`smVAmtMMDtBa$O6wfN`yVUvV
zm!jL>is|#rsxG~sE4@yazPenmA{c|xV^p5}v~;O6U|PWqx(v|eW?hEsGEkR6y4<8<
z4%TIeE<<&>QN8Y3>U5Y|`0mn};7s+0%7nidMiyEY7jlFyx9Bojm)mq1$<|-yjMC*+
zU4DMO$NLk~tio6S6_G?emN{cohPUf7mOS%lOypaaIS(##)-7{L+X=c%Bp>RsQI|V(
znWW1Dx;&`MWL>7{a*r-Eb-7dJFin@c$U;x&P1WUqD#LU(iY|AnuL~YbezPQbVwqD}
zE8#DiKA4=P%WPflRbS^QI9Hc>x@4C*b(cHMmpk2;J2x+P?rPiXK3(qDW$tok_i|@*
z-_knki{|U{kS<GfS*pv!x;&ziFVy8xT^`fraa|VZ^5Ol3cRbbe&E+vQPCZm8?-aAv
zZ2CpIELQP<Snhbsof<2gWx6caWsNRtby=ayN?lgzvYP$k^`1=2r_~DQp(zD@CzbM<
zIH6#jE`wJ%-@ROQy~=0A#PsA9&dU=DH|erjmzQ*TS(h!kY}IA2F8g$Of{eY#+@Z@(
zUAF16U6*x__IiAUvwMY8`<$3DcImQPmp$yr4|aLBMX%ID$wMpRVjo}OJgLi5y6o5G
zd0n2?<r!U`)#W)|GAo>mRysv1ouMn^m?X|Lg}ha_^aWjBR0UhI(%Gj1KUnD;(B+^m
z@9FZsF0bhFsxEKoa!8lgba`EuH*|TEA(eYDs~UrP99|fA{8KBP+PRo$418OccXWAI
z7jsqoJ3friyFqDCSo{G=t;=CuKGo$TT^RncE}!Uf(JH5fid^zb5ufW;IiKlrM3>KX
zIZ6^uC?wrJx-QMG)a&E;FWvqr;qSiG<txf4LoPJrYhAvfgfS#x$hW$Dr^{Jg{?z4r
zU4GEzS6zP7<v4|>E<cg6S*h8{^>dRyvcJzu{#Cj3$gJcqOmb8DBnvYux$5;2!V4}c
zoqSR8De~T|<Y`_0&}G!kO@G%Vx<9Ve8FKY1=Q$_Mn6rbHgn#Msw=Owd0$u*m<zHRO
zba7dcS;_wtks0~XRn8|93p`zXwhI|pmu7>~eZrPk-W%un=vPJkClnC*=icO5t3s%Y
zW{7Uc?)#FF%3;eY$1ub+r0<Ps%ZO$2%ZhHpYL(dc74kJVCt1M|7$SyLG~^sZDpB|w
zQq_<=Ln<3m#gMy?mMoc*{AHEHGM^L1HN7loIXY;`a#l0s_LoWy%}rJ};#yx|NKHd(
z7;>H=UM-EO&Nrm>=z?*xlT~IXgH=u~L+YrQwGCl`Ypixy)c<N}BbSz3WJo<j+8ffr
zkc$nu#E>S26c{mi>l<>pA&m^V)Q|>-44Ip3Xh`GL&Si{wfAR*eh!wf7ZSf+lLSq#_
z-;kssDMMJhMKjtnhc&a3oJ8_RO$}*gNTDIE47oxPq`4ti8FHn<+pTt3<`#ye)n8f~
za{X$D6`Zs>ZUsKa>X)=Oq>UkM4QXeHR$KcY{g<wGs?CdA<O{FlYC~T8CKf~;4Y|gU
zo`&=?q>~{<hLjr8#gJk{_OEtI4C#7rva=yO-!DFXx@2C{;$aV%e8!J1=xRuJCV8@S
zL)+qRhA>ZN&d5DfA?JQwbge2L>vf$Wj>3Bz(#MeexiOdS>=t+YzAU^U3ok7_Sznu4
zU+bsRPHs>#z>tB4WDLm~GRTm@hHNloBQr5%s38v;GT)FJ4Y|pX$%afZWSAj0vy}}Q
zYshdzMi_FdA)^hs#gLJPj54HbwX=G4T;ESt$Ng8<#PBvlR!(oTe{A6xX1lJ0NX@(3
zG+yJ>IJbBllT0g^Xvla&CKxhve46pQs#JFvGKpQ%EH$SWmSp2R?=)npA@?wvA=6aC
z=`6+?hdJD3$kp=-n}5)C23gdQ!w;9fVw6r><BZ#1GK)NB$UH;tWii$`a}1fwe&H8A
zyT%zfv+(^jP6w;~eTLj`$OEjt)&9pd&S#euhie>}6Za-r>x`a~e8`YRhAcMZVM87<
z<WbgoO7hCt1&<r@m?6hz7i^o~<)=Xf3rJ)|TYloh<b+EMS!T#`Lzb#k_ph-UA1r3_
z6^5)fWDQGY$SRep%gGYIW65RvOV%2)&XDzn+_5$$V1a`D6&(Fy$tFWK8*-G)V8|9j
zwi<H4kb{OiVaPT^o-*WVL$({T!;n3O>?KnfvWt=5DA~;hUDbNkTIcn(PUM#KY+F)#
zb;&*z_#`WMZZW@(>s3nlciWO@40+a&=M8zmkmppK{p9wSs!r|@x5dnMC5*=BMMGXP
z<Yhyc;oG%}a|dJD&Tzt440+X%_Y8TTy}*#y4LM}U+lIVh$eV_|MaH|d^np30?{_RA
z!uWr#igP}-)_KQ}cUk_c;=s!5oS*KDDfxjR9~$zhA)guYks%)&@(CMS(Tx%Iv@anv
zYs5LcskrEfAuoPf{5gf#sC270;z?Tlbxz?r=a?a18uE)FCk^?E!k_KlC;g)#-%$9I
zPsSA-H{?4*zBl9tg)lkO^4WH8=>-E@Htbe%!jQW8#l6<WP4oEVf}afeStaD_>JPjA
zYRGSf{AtKvhMY3wcSFvQ?XORtR&Y$a;y+ZGN3L^jncjv;&axIKi|;;qE%Cn%`Nxp|
z$lK)eb<V#k=F<&In4Dir2B%%hQbT+;`Z}lC^khdxXNL1NXGp*XGNr94A)CXH>Za5%
zMKeX`eBP8wW-Rj!Q*4vnD#lGy?z*eMQuwpu(iIfK@QS9anO=>^ustT>xu#S$rCRyd
zDyCFb_|P$hCw5r<_LzC599ZYv{!l!KKz$Mg4-8D7XUh4eTy9DuQ!X&2rYRSia*_I4
z%aq!t)G=k+9`nslk}N=7Q?}Nw%1rn)xw&aQQ!X~;Qd1h3a)~MRP1!xT+P@Ri|MdI+
z773qd!`FtUFzscg5U+4&`qS6j?3rB9*p#FxSDDhnl$0s?rZh9<3R9YxQees*wM&|s
z!h9H?KjQCL045(irQk|anw!E*wx82u!1S2$%n?1(EU+nss@M!^x5s2!7Q2-xtxZ{Q
zXZj|IdG+m<h3!na+LW%QbTg&Bir=w3RR>dM9jIC{QQ;a>I;p@SQ%V$4Y)WT^99`$s
zeIzDhsVQAd>E1uC>DTiLiF7xmhbe<i8DdILQ+k=w$CT?-s%uSgOzCaPE%mkD6AK>S
zq}8ig&HE(5w0%vv-jo|m8DL63Q$Cqmjjh&SrCQP>?iAGy^cZN$AXE1BGx-(I_gFG6
zrvIGT1w&1_(Uj4q+-Ay6rVKM>1b<=5&87?|wJ*^ajRYJzIQ_u9LehMsDWgoem8tgS
zar*lB*<yaGbWZ_)!Jm#X<#toXt6!6C#+outWzzhv!m@QO8I6(oRDUw>4pSzXlCdOf
z$z)Teu=y-$V#%GROf}^rQ$8lokabPjXv!v2rkgUul%=LDGv#hm?lI*dQyw;DCJAoJ
zy{6n}%4}2Sm@?Otd8WAQoU?<|b=EueXB9kLr<jlx>A2px-;@VTdC-*ks*uCi#~pmY
zq2gh6;>P`7v`0*N)Rcv$EHdRWQyyoM_09qn|DBPg53WhJITDMYwd<Wn)>w;8S)x8M
zB)77Z50T}jtT1IQf3zmKQb8iC*|HaEt5oEhUM^iz9?s0ynX+DeZ7?~_m>X1_hSLf*
zo3h1}{iZz6USrA=>>Z};F=d-6+fCVN%4PQy>>x9z;#S_j-ueB*65_j<s!#gE^$y`)
zHo7TKoAM0%!pY(%O?k?cV{e!Iz21=x4wEw>qdm(y?k{;x{g(*C_s%SQ!IT$GdDE1)
zOnJ$amrZ%alvgPSs6FVDK1eCF!D;bMk4rZ=12@EEe2pdiujF-8-Y{j=p&qjjcb%ZZ
zAKKvT-QXND<!w{mGv$3#-reB5V@man&bunBzf?5l`2h>C(fLpX_T1=<*y#LwX$cw@
ze`3mE$}~$7mV9c;XQrGo<#$t#nDV(P-<k5gDMwBD!j!K~saUtT%Cv%GrhIA2SEdj@
z`(4ok8yzBRc9*W*=zL?!w<`SEjd8K}ZEf>|DaTFu#gvn#oG|4_Q+_h#XO-2FjgGg`
zxqC|7tbMx2u;wP`S5pohE@^XL;ct`xo1Dqt6%!x4$vJJxAEtPw_@<mO<t&-sl>bcm
z)0DqV`I}8(3L`U<_I*odZE{v_a+r{>FKlwkSX!+DaaXm%*=w9n`J+uv#*{22yd}CN
zIa2~kep4b9C$ZUS*vV<I*=fDm>9yGzwK>jh{$|Ip#I(e+r2g{ulX}PECE8kg@l6H9
zD_By|lDd{$XvsO2RI&t?h$ZJ*!U$C?scH$MRaS8PHBO!-TQ)oVRLzoOjk-U(yvxDO
z4kJ{zq=qFmEvaS6d6t}S$p!4oo1I5qE%|D*b6dO83N3oo*y1$Z;`H6()V8FKC7Vyj
zy=M9rr&HbHC0m?}EU9Nn14|n6*Om;LRZ!oOD*e-!Sn|b|HhZ@?$L>sDs=`0r;tc($
z$7NQ`b&V~dcJ*>g8d>q^_Qw|IoUL&q(hmr~Zm3iGKaOHZfhA2XS!Bs#OPX17g(Wvy
za+4)jTGHH-ZkBYn<SI*ASkm5-4wj^up(SlBX=};a{UwE#w6dhN`pXqtof7qzM<x{9
zxYe1p#+q_|aXU+{w&bp@&Z4bO{R@gqd#5{Ea*ZXOEh(|2lO;u#{I=C8w&dxp&WBr_
zUegPi+<wBj=!v+%rIvKDq$~4Ruf3jdMnB=47qz_a38#l8JuSK3l78y%y)5Z%NgqqD
zwZu^&>r|4SueZ5Qy)w7H3VB|IAAZ8=Z^;cLoh5@U8K6E5ERT8gwt`uI785en5b{Zv
zyrInhgQDO2q?sWDhgov7CDT|nONLuA!jiF;jI-nxOGa99t0kjVR#)g1ywbc;Btlel
z-<X26!%J_oWQ--ZTf%C(swBafg6i9xszcJ_Etx<$Z^;xklO=bsX|_3&EU7-D@PWC7
z4Hb(PZ*yk1FTT@~sg}&2Uuc>Y25pN8_4S8^leRh2Etz4-1C~5!$=#ORW62y#=Bkp+
zv}BegvlafxHfK=d?sqpX-XSHsw>k4Hx!02WEV-Y}eWYmKq%>P$+QWs1w>h=O#C`dP
zN4m_n<RMEQwd65Ne%<Cg{J(rGVc}VFb9-EdM%$goEm>g6LbjR;$=@F*XW0msShCcT
zcPx3=l4X`Gw`89sPg=6Vl9iThBIjGO%97QVthc!OkTqm5OV*J&Unv>B-640~wcWX{
zeen{NGc#<`xwNcN$wub0-D!2AWQ!$RE!knoPF81O`zI{fX32I-SRHFxDeJ`~hqgPv
zZ+CWCvfGk9mh83U#bsR>&NWDXtGLa|7%#o6pyCeaDKexbuUPV`CC^y$tR*invL&aN
zXwO-)-;(FqA9uvHPAf>{pZ@8WEP2_I1C|_Qx9wB9zfp0Y9ZvI0OZYGXOZz|MHA~*K
z<Sk2Hx8w~=svYdfuanF3Ib_M(ioAE-+ve6uv0R$s7Qbi7`<5KH<b)+3Sn?s|j3r-M
z@{uJUTk@GDM=be7r8-REuaJj!IAoj6JDg)z#<KKtmVbwHlybw8&v!V_sht1V;ru?c
z^wG(sUs>|CCEr={y(M2Q>GF*w-?D-`9d_6XJDv1R1uQ(f^QqFjA5`XpY86-RTkxYL
zKUq{+$e)({Y{@T{oU-J1OHNW&>~wx**H)a*zmM1%(`u%Ir!D!zk~1nF2HtEIFJ0Va
zzY!O5`A+9AOa8XxKTFEkt+ti^W68hd<e+Ht-k6s@8dpl(wZv1&eYXBi=k`mw^V1tO
z;|Na8;vCtM6t?9pTS7}BONQ7o)E3Pa-IivyTw#l0i)l+uTWZ;2*<#yL#g?kJB=}4z
zsA$VMwp92ZzN@tPoWe@BoNLR{m#bE`<)fX>#2Gz*-RXQZGnNm0&9kMNEj4U8&lcEH
zd6y%$RJY~tALDj+#uh$)q{Qi7{QQ9Qo6nY>Z%h4M&IPtCnN{G=E&Q%unh|Q-Qpc9d
zY`NT)y0%<s%O#9v%SE=-v*lu2+Fe-q+N6TZ9xmjhwB9FO&kju=T+!uHTN>DM?;f+E
zEzIZh?!^bHm$si$@WDCp+H>rr!bY~FY{|E!u`Nkfb85lEgL>?pQFvljVG~;lZ259b
zVN+Yy3{J0^njSDT{q+s$7y707iz{tuZc7(iy4rG;EiG(mZ%YST(zdj;rHw6ZZ7H;6
z%-F(KwzRf||6Mh)u>Rn5$6XG~#@915d$zOXYFlm?RITv);xD&$tA2N3c51q#E!Wsm
zY)fZbI@$7%U7<+PdGIc0?aYGbr=}n1moBlT)E4jJJg>BP@-Aoiz%-w^1Jm7X>2Aw)
zw)C~7hb=vAx$U;XKDP9-<yu=DTYB5_*e-|kX;3r0b5a3`_Vg}?)%j>w%zka_R=eJo
zezpv-WuPrhrxf;Q@oZ@{ApP8+9;|ztuEoC&il_Y*5)}s7GT4?w3%b;sSvav@`pwef
z8*RDCmd9;bV9PLDZnkBLEqB^7+?Ej}g)O(+a*Hh^Z5hpi*)qzOWl^I3gete%LWS68
zE84HWF}>`=o|P-btiEiGb?AfQv9^q}Wuh&2*s}Ysg7LO|HLhR+iQGT=^mU~_IK`uS
z7f-Tfrc?Y)|MX-wcc0<|e;1wH<&3ISJk^$Iw#*{~*m9RG(`~tjF;&`L_m|GF<!-ji
zw88~7;@`P7if7p}+m<=D%(Z3P(Gn`|Dre$Pe5&h(EZ(6xh4<NVzby~h@-R!)EAIhY
z9<*gXlk|u=na{Ku#S8z5W$7cfJZj61lf{pzKhAT~_0ReL-0C^$g|;lRWv4B>Y*|cJ
zw`IL88`y(L6I)i<vf7sAwydyaCHoo=VoxZT=@)6cow|LCNdbmDbTYZdmbJF5v*nZ%
zi^0ZWXTsXM9Y)@0%O+c%U`1@%Y|9o~wzB)oDELIhJbi7NIN^6Q3%1+RYPYjP5mw(>
zGV#Xr_EjYe-)+ktTlU-Xye)fe*=NhswmhTi@}#2AQ*7uO#b172Od9gP&$5kPsrH<T
zz*iE))=RpMDSW|}7j1dPmRD_g$(EN%b6XCoXfG~o-*>lj=9?l{kIPTGJ-4LGYqq>@
z%Nr^}v-YK=TisuhED|ZnIEQR`n*u5!S0>~gTi&%Lpb)d=JzL(l<tJNyw&ep`KD6Zv
zTaHl{+48Y1pV@MRef)=#Pi#4C%cr)C-yJjjfseZq^11Is$>-{iM-_B?6*oK;|L(!v
z&X=T&E#KSngDqd%@{KLuQkbY{i&rP_KUUmmMwiRCBuD)bH+odB<hU&-Z28fal7EXf
z?RMr|95Y60TQb)mMt-s7WZbFcUt4~)<u_Z-*m9OFXv^=moVMi;isjwT36<NE{nJ0H
za#pTa9PD=fR6qTTVv_|Joo>3SXjVb-{olv`J#UZmpDks!WZ3Sz9hbs^%wI?IDctrr
zZC*$|x-D6}#~HTAd0>x|wIxT{(yZj#83lYk@roh}|Af>`NUenE2{95<B_UN4VkX2&
zNX3MllMp*02|jv-3JG~?V{-i-hsEQs`JDT9X{Cgmn~=&0Y1XM%+s}Ibvm)7OY(cAZ
z={<7_Cv8sVC8SzHY9!>mgdic3km`xJ3ukUGXi~5EhT0|1?}?kE&DP|Qt;zEfvV3Lo
z0u|wl&tjqtA6rm6A$1bcAR!GCQa2$NCgkFTT#}HB5>hWAf9-MXNd?FDI5!_DTCle0
zXi!o=Az#+fT3uXxX+l^G76yCcUtE@u%M+4HNPa>ZC8Tjek_kCpM@#N?URa&%yf~iW
zTtH;6(<C7U32Dk2C1l)Qr{J5IAL?FHvgX&~`}aC)_d2timNZYuRS6lHkWmR~k&tvk
zx+SDLOP-LzgtSjc2mU=FtrOBFA#D@#veM2?-dFPcUZ<U^;MECgY1)5XxwQSM;!pQF
z?YAU5CghrgbWTV~LOLa+C?Ulv=2fec-Pa_4+xvesT?dpEMbljb-{f>>ken5ClvPBZ
zizth-kM~Fm4N3+jqvV{Um_S7Y0STglpaM$HIp>^n&dGp^sQh=@|KrS=)33X_y6RR{
z_iQIbjyaJcklvMwp-K!@W7zmpa>wPYSK8K?cRgW$6&A^xsu4qW42@!F97D|*YQ^w+
z40U4=G1QKsP7JRRgdCZ4t;gnwrI|G=NVW~-yIu_SV`vaVL&7*W*}Z3a?|+g*Wl^4C
z(O1NzIid+AkD+-CEn;|s%6=QZ8AG!e27MiFIT>L!q+^PX*Z!$g&52>l7+S^9ItB{4
zV2(KXMrugw$a$E4D~7jY7#_oj7}~|qK8As05<`a=I>yi?hOWe4I$pg3X`Sh2n^Omm
zXH_kdSk^q%Erwpx!|pNkkO^9uJbO~G>EYfvf?m`shThVh`p7qP`o_>tru+XdXMjx5
zO9#g=B!+imcrS*bF}%YN=n)?#!LMH{K}WqgM<{be$+_bF7(R&M!~azz+nmJ{mF9|a
zXOpewijQLWIEHa7jp36RM#k`245MTCG=_zfvgW-V9~HxZx%>k#YwDcjn7Lw144+F@
zV`I27A#|&y=&^I>3bd_}XG3DmwD5}<CdDv0h6yoDWQ5KU@qGz;>GrvzZ-KNgW0(@d
zS5nU88&Qu$5H8G(oMdVY(`XtE6*YVt!*s^A3R}gD7`~%@6*N@veGES^%oRMWU}g-n
zXz>`1#V|XDA7fY>!@3xLieV0gk6}>^-?xa*jbT1*-7-EehMUdf|IQV;TErK~bTCga
ze{l>;VpvXxmr^Z_VVNwwuqMG$3dZ-!7*@rwI)*h2w0WXImB_EQwum=>@B$NgTE_nv
znz25H4KeJDVHZ7|9Z{3`mKe6iuqlSkWZtiQVxDL+FVb|rk=ho+b~+fln$l6H@z;Z_
zCz?fVvDWSw_QY@?hJ!KerECRK`(oH11M3#<ANHCjM$Qv6=84D7Bo4)JIEEuJ)R>-R
zMKW2#CjQDgGEXq)cnl|~NDQ}PI2psK7%s+eNvd|5-AD}QVmKpzPFWDCLp9IGa6w{q
zYn~u<%p_u$X=tg=bxC}co!fkIO=1<BAE`si8|>WrN4@LtzNy<W+==1O81AvJi{Y0T
z?#A$Y48KYyzsUqCsW_jybCNX2e@y<6_9{1D{1wCf82*jnK@5M(hW??N61pDEYY5qB
znt~h(9#W7~0ihs=PV>c{e&x^nk*LrtF0vA5vl1}{ih}19Jg-1ipeZP(ptu5EfuZ0L
z1$h*h3M>Vl0w_@@Z!2&VxC-J~5zmJ!MehTZ611<c;NYu?KtXN=NBUI0J~8vd`J&E%
z2s#qyRgh0XAq9mM<d>`pC@84loB3k-e8G3&IVnC&6p_`7N*Y#Vrg1$Q7E362RKZgU
zN>d{RB^5lb;0XmcDkVxuV(K*_h?-*}RKWL>3ii(zRQ8(0gw{`2@Qi{o3Z7OXz|$5)
z26~q2H;I2gqkLJaRyvt0D?x88xIo0oRzXTZ6$Kdz$|-n7!K(^hR8U^Q%WOiyOA5b~
z5_E&b1=Gqdh`i!Vi+HAjY70a~C5nZjRa4|iudAdWOEy$lLA^?egaSHws|A8>u{23w
zuO`&|DN0h6)fET@wG~unP`8NJl-Sl#kS#T3=#7$IK^1CAndx116uhROE}1L%&;4Fk
zIPNP)<|Mx_o0?WBQD4EbN)et+H~J&dNI_!-vlaZPpoxN}3i>M;px_M!Zz|}hpp$}T
z3Ysf;OTpU;S}16#psf-O=p1WWDQK;rjg+VV0x{N(JmK%%2^PJzE35494$0a{;tulN
zo@lI1OkW^67D!`JX9Zmp^ia@~Z52pkC*PGwD$zFyJL>M#x_11~odhX+QGi`pO!QIE
zTfxZRvW^vw+Ul#IpMta36CL*@HY^aQ7l?rh1}PY$;By6o6%0`@T)_whLlwNE;9Ujp
zF)<+=##UnB2hZ(q!pZ|O-dFH}f}&Hy59u37J&-PO;)^i7Z+fMfDdvBq;1jm1;A2U)
zWMpdOzU)sGj8gEKg3<q3<Z$Goc^5|R#9@)|i(TSl6^v6bRlzhOpx_GylNEfaV1j~)
z3MMJwI7P~57K(cNB8^ssk@rqf@RfqE85)vv-GzdXKEFHb^a~jkN7wAWP<Y>k-zu1{
z;0Jc{3T7zyj&LdXZK3#hp_sl<tXn9KFBHzANSIRcJ&U&Mm`>=J^OJ%(3Qj0EsbH>x
zc?#AkSg&Bdf&~heD_Egmp)}cI1xpkxl18B|G8aX*TS_mICZk2_E{euw4wow>|5XZB
z%Zemhqu_plG>(94=}3zN6T=sYf$M5)P_R+K9tC?9Y*MgU!FB~Zh|(glMZs1Eg@THo
zWsV<}+VVk-6^q2Zt;wMur*<k}VwZy53V#1N$)Waw1e~qkZXMspFjsI$!C`5j0}K|4
zE#W;>D+2cGD)A!<jw(2&;J8F}vD`6Y_DUXJByKGd4=)xa7K>8~PP1Dek_yhywG>=s
zC@DCn;JkuM3N9<SK*YWYFUmJL_gj&yyjZkYEV^G#jQ!oYBAGM)d6Brzu1Udd1$PwO
zl=-(LIB#r@Ml>qeerJ^UnO3MD|3wn?T^yOLU5?DVRFi|aikON&6#S{+qiJDI75v7&
zCn^78<jRPnm)=+KH-oEh`akl`#J>t2{4brRMnyT~`ymyR7YqK(T`(<|8ujO;Y9$mE
zsv7avRcI>OOo*m@*Po4K+c6<DRG2E-$0N^dQ8c-Dv2awlDn_u13Qq-8)KT%83SUK_
zqJoM{6}eSBqT&e^p^7{z@~SANqPU8DD)Or+tfGjD0wh?KD5#>48f~jc8x$Up>a!s(
zz86&y4^r>djc10*TZ;v^7L-tN`PZz+RFqWlsEUQ%qd!z1?v<`C5v5eTxI{dzqUaLA
zEdkws2xAqJPpWu|I;zM}QJU(jcveMO6;G>pMnxGFf0s&d&wyAWCY6euq~;e%{(MeF
z+a=<8wyt8xlE@q%l#EIbl}d1DNI5p7;$<l?MJli2B?;q1NjYzc*uF$i$UZfliYi`F
zQB6g4DfX)>5-KXIs3axNk{rmE#MC`W*@mQ7QIV1frY8(cuc~6s!1VH8B}q_2jdq*V
zQn9~B`j>|i*(95ptf`{Gloz?z#qOUj_$k;wy|x++BBXy^MO_sGRSZ&5PepwdZ?Q$v
zt7xd=O%=^lG*ZDW1Wi;lRnb_*r6nTA(n#Mo)M)R-+CJ$7pF1cxwcA`p3l*(Yv{s{i
zJFL}G1xvTCOli3?xyh%E3U2RdtD@8H2&-c2YxH_J(T;ATqPLW}gNlwSx~b?+8Wo*Y
zbWzb&LRZ;LT<)8}H!BVunBrF!cN6tcqfI+KRrI3UEEU|A!_rrmiWW;nw8KY5U!r;|
z*-u4(6$4a!C?)@1zBz!BcreYUf}3;RSEJo8LsbluGQT6=lUKWxpU=DU=X>%^%s-F{
zekk9=<vaWN$n!r|@rjCaD$c7Isp3-_QN<z^qf~sRVw#F?Rg6|KM#UGDoTk4Tey(C1
zwN6icejyyIV(U`T{?A0CtKoPR-(3l>TnZ<un55z>6<;$dX`0L7mnx=^XOQ5G(58za
znJmAR#W&O6sF*6@V$Lsa;?z>ny>VhXKmJwxL_Z-<72m6vrDC><+iTK(P%)DT*L1dg
zp84-m!FF?Mi62$`a3LCT@-B<;eCl#ISH(OPoaS1fV!nzmi>FN~p7vz!1anx**)U4A
zSj7?*J5}sbu~fw}73);2SFv2h3KgqWtdWAfJUq2h#VUIE#qisf@nhE#WtIu*&b?=A
z*$O8{^aS%asMts}RBTgu{sNonmdnHzx}p^6+5Q<7E`{$b6JKBAv6RGi6+2YCb19Pf
z`z1A)x%X1ITg4s~hZzwnYU+u-Dh{YPsA3;Ijs7sM3L9Ekz9th?XG8I{k+tH7NPi`K
za49^h;+Tq4Do(37uHuA>lkBoCg@Z4Kv9r<O*kEOX>F%}S8#=_#u!+mzS@u^sBj==E
zMB{>ri|qF_K*J?Ep^AT0{Hx-MimNJqR`Cn*zY<<kaYMyTnr3JAb(UTV=>W9CEtaad
zLvL9o@?Hr~8cEJxlKBtI#IGuTV{fnGPZf8iKhW;KtC*W3$#&@meBa{`pyEFJE~2+g
z&>83|tj<Zo6)odboaqND(llrqbPYK)JftC)hKDt94mPI-n(6E^@yhFo?_-$+B&I>p
zplYC{eyg3}eB<3^Vw0RiH8hwS94#6q_*gPwYv4p5Wu}KP^SdD7YT(o^)4qm4L#Xk;
zqCsvAk7y{Qp|FNL8uDt$uc3g3d>ZHvbS-X2WEDoo@xUcqj}&zaYSH|ywOka@P*lTX
z8cJ#?rlGio5*i-Wz_$Kc8%_0dI+svTWu~chDGdkvxQ}aiLQ43bx6tU5_ay(i7(S(;
zw1zl~G^A^ITElaa>=_MZG(4-JtcFGxL&8W0xN{*S4m3J*=xOwy=QUKQllbXkn4zJZ
zMCoM>FKQ^SVep0UB@HYZ^HIk64sp5-tJ8BTNU}$zEnd;^s)j>44(q6-A&cthD4`>v
zp|XZW8Ww9vYDj75uVH|ODjKS4XsMx<hH4tBYpAE8zJ?kavNhD!P)Cc_Qfq3cr9lwt
zB{hyWN^#wa3qxEg;wsg~5mjE(@VbV&8k+o);5uE4iizg4lEs&ctmUGChK3s6(C{X;
z*3g(V8k#b_TueEY?6O>Zuv~n<Jn9_Q$agah%{8=;i0LP?t}GYI3UR8ExFMIHT5D*d
zp_7Kr8ro`jOOmzM@V16_#I1PsmsW`E?(t$P1Q%GBwoG-<&{5JnG&J)0dMiX14P7<#
z)X+;qHx1ooX%D_9W$tL4-eH9pxgrwg$!W>n8v1DHtD&C;e^~i-L#yrGlU1Qd#OJ#e
z;_lt73q#5e)G$cH1Pv2u9SuV?e4=5bhM^kX(eQzW4>b(a@UDjUG`z22P4VP{BFPOa
z#MKpo&~f1}*Gj>^TZd~Hq2VJ!O&>0kApgQEMcH;4<yML^y;GU1Q~R67Kh-cw!x-9H
z!)F?5YN^rk%>+dfD@Es(Vl0DB!*~r}$fDsZ#i3h?*(*i4KNDqMi&uF)PMS#?CTsX!
z!w(w1)G$TER1MQKe5K)Q4cAwSZ#2v*R(-1;eeG;sDRQk6e-Ewpt%m6uW-uriVyhyE
zhA&FKv`XmBQYF7k5u7sPQ!`mn!(0vXG|blUBYjoF99CH&?levjLn2mtmFTcaaGjCr
z&zImY(6EqLtrFj@6025;!>hz^lK&D7OEuiqaECpBhUFR#Fzz(0VAyKdtYM3WRT@@n
zSg&CNv1Pok7Hc)E)9~x8)SibD@ztXGYSDbP5X+)Tp^bE{%E?W#Q99MT6%zwji>(^A
zY1pk{kB03Uc4*kCVHW{e9qG7gwcwtFks~q=%b!+eYOjWU3{1}dus1#st<v6<MI=_&
zh(j6<Yq+4{qJ|?Hj%qli;k1Th8jfo?q2VMa(=w9fOQ%+@Enj$zIQL1FfjJY;tr7Ds
zB+h6!tKpo6^HM^tWph!OZ244Q6A9B|jkv_#Ov5#rNy8NlSJ}@rOJA}nk>fyC|1}~b
zPh#vEaYMsR4YwF~+!*t2`IlSA>9pJ(@#KsY6F+PCg?+USUB|B)e$((kLz<4e8h+RC
zmxlWq{vf<*%AXqUk>Fm`)7G7kTChfJTO%&#OWp4g|69X98vfOAW{t?PRxpP&k#Toq
z<<Rkvj$Aq(){#?>yfn{R!8dih^>D?Q%u#fxI-V|@%>QwfvTMa}=Mw~kos6Nw)bWUp
zJUT2Lwhrj<bvQa)JsK1|`L4BAbY2?)lCx~8$?_Umjl4hy)y%Eqbi>4*r;;PqMvL-!
zb>!1gSVs{Z`E?Y~QBX%A9n;o|qGyvtCe}W^R-;sMNsZN#TTwkS>pyEnF^che`jNGQ
zB26n={ZSo{>3CPidpb($D5c|d9d&g)uHy+E6?A0k2z5NEBTn&jJf)+wjxsu))sap$
zbv&bkqegGptFxb{<m|)Q=ko)jtd8e&Jg-NiA(!ODm8giL_JNl144L_&j`9>tkGg%X
zY<Av|;&%c|U!ux7I2^O${SI+*tEl4@9aVKy)A1@he;r)YOzFsC=dYu(j-(EbzZ|l;
za_2Tl<yj}V6v&643S2p@qJx}|bdOipQA0;99YRMo?WIR+rvC|iuy%sY@snvP_kZfB
zqvJIy`(xy#%ztn`>$~Z)o7GWYM@Jo<bTrV>P)9Qz&2===!6nxwI-2TeOug2L-V-x#
zz8QamKGVc~Q|fEhj{MEO82<ZwjTSmu>Uc}X+d5k5Xsx4-j<z}o)W9=Ywbu!LV&!ZV
zXVdd9Mc=pWbhOvOaj*lSxEk`ylTX<z(U%NA06OdFqNA^lemc79=%%Bmj$S&t>*%3J
zUr_wW;Rh1Av2_B~TL(wjwU@&_Iyl-=DrR!5@2_J3i*yXpF;Idwh^%6nB;aQ@IkaCV
zhU$1n2RRIrb>CYTx$DL{k!qDLhwtn7K*uZ{vvqu^W4MklbWEULIzG}dTE`e2AM5x;
z$0&)(NJ4ita*R)<|MNSFiZkak**XR0_rT}>qZy}TtgOX+Rv|3ob?{4rpiR^<Nyk)%
zfR4#JzSQxRj<2c3N}CQaMLG;WCzy^+uJUi;oW=U3f1_i%6#iQ#bbP1ddqzS3^ch6#
zm&o_%WBf?|LB~uTm;1Q<)*@ClN~IRBi$2AFq~GdTqhqa(IXdR*Sgd1-j(IxfOTQvq
z3v?`$j<HC`-gTnoA4z^_U6$3^&{7@CbgYuvEoU6jAC{%9WZ%*%PSuD*<xgw!p<Pz%
z_`7%-V}$Ll)3IL1E*-lGk&cZzw(8iXW0Q`}($-t_=noUxg5TIgiC<Q9q3t?$=-4Su
z_F$d(Lrc&rC?T2CCHCkz-Y&II$9~Ew(|OhlelSzt1JW)B3C@xlj~$GxtbdSkM8{Fu
z*T8TC$4Jkvz`!#GPUtvE`3>YUaEe_P<<W762<Xu~=S3Ztbez?3j!~Q=^E~6IK-vYF
zCfgH(qCxqxjw?E@>$sugD*MSE@oU7nSMtdIY)-0>VB?21IQ?}~$1Pg?gJ^4gne~we
zCfAFfb^M~^KCxo|uj4lzzw7uz%Fl_%Eu%8;GUz1npE~a8_=}!AA>!G8y%@7z%wI2#
zk;!`T52JW`_%FK@9TVTSIMJ78Acuj!#=8$0=<t3d=Z76qltkYkp4=cFHV`wA&p>_y
ziUHMtYrr$08PE-w1}r0*be+@2y8Lx$7!ed}zKuE)+kj)>mERqvt8WmT3S$BWd;>c-
zh&%=Y1Gx=6Vqn4s(RF`<(ze(j-q{f8JC}(GVO|60WTJq9f(A+&C}p6Kfx-rg87OYx
zpl{#XAc`0$YDA-qvr#nqJhRkBQNqBZ21aibj~Pg86iqgYJ{v{vucPjcY#%r9gb~f8
zl{OF>cv7aHGQj;U|1E9L+!(EKZ`df(jc9fLoy$r7EMwqV1C0$dF;LdPa|WsysA}MO
z191Zt3}jLU0~rR&8F*3h<kT^%-&~R^Z$!3u$-v7@NCi2Idvar>WACkribTmk7DYAi
zs-)ziY9#}lnEg*+CMp|98c0bsf7>WF9gTeTzo}qjlc;8(x&dLJwt*Uwrlx^f2C`+E
zl$`JFa5-6Oli)lj=k)3rc+Eh40}TwkE=8?tpdPi@B;HC-&=u*xJH82<ZW5eYZ)l*A
zfu9OS==I$swiSt*Zff8S1KkbuFz}{<X7m9AZyRWCpoM`}23i}@JYh>Cih}=qn{Uq8
z(>>Z4Xe$N#W|LUHDblf>f%XPE8|WhQJFu34P6jx^eqfWxgA}KHNyghRy0R^#a%~pf
z7?Ma`-y}HwUg`79o(6gu7-V3uf!+rC80c?AlbI~-YoOo%a451_uvUDt7+_!^%`qXI
zQzXIgVPc4+f5*Tu1I!$1U|-!hrG3}Hdj{S&@B#Im7VUZ9o3ov@HVdy-f@umig321$
zV_>g=j}3fcV6kj*q=8Qjd~0C3fl&rNGw=nyT^5a|zZn>7U<`d}ncaG`;K`um#^_Jo
zaSS2@H~K_D^wDOq^`93e8kl6@YXjdHm~7xn15*rqCHe3K(_=IK|7&ypW^rU#74u3K
z=l7->*wVblG)Z%0v$(xE0&s?b?+pA%YZ~}o7BO?CfgcQzGPXtVXw@tOvl(JrBKqW(
zs(jC(he+ZD2Ik2G=lbTeuNV;N&eqR1t+CL+B3blbm6x}OB?gunSY}|kfz1@gzzPE^
z4XiV;-oPpYs|~C%uvYSUeT(>IN7Z(+(Q`YizPCk8mgx-!HX7I@Iq#CqdHuo_Tg2Gj
z;Z_6N*pnF8WnjA`NE=XPhfEyWB6uW<KX=QYnfW4AtII{zeFpX$_($d+U<bkgC)5TG
z88~d<w1G1Qju<$~-rm4T2HnOq9>+VzU}PuLGnz)=b3uMKpOQ>?9`Lc85&mb{SsA!!
z;1WY)QtG@cy<p(x7D0`2Z;kN0Y~YH4s|K#o1id3x<+q9luf<!)(iJ_zep|&&S@CBB
zzZke>;I{mEhy6^xv}QacyEQs&_^W~64E$l>&;MEEu7Tg_&s)UMmy)kmisZS+F5SR=
z1Ao)vTSfMO@|=&&XdC}$d}jVZ(G)sq{$+?6NHdYcgla-F@sNp}CSvCQ&*W5i^u=7f
z0>Z?ht%CE(ta3|=s*rx0P)j9r6NU-P1XUweoQ@`qX|jLLSllO7Xq&LfYMaR3COi``
zvD(8L559@O#CaPRY~(iah>39)##_i^BCm=4CJva$XCl9eZYH{$C}5(XiC0ZjGEvAx
zVG~c8C~cyMiJ~TWWcvxWXrj1@$4rzoQNqNdCPr@)m*+W`y&B_t#M^HZ&W!4%Oq98h
z^;XW*<0fWr6Sd#V;Lm#VvO^O*nE%PD#FHkLeo|A!GSf{wP03AUn0SV@Oz<fBb0(fO
z@!u)(vJ#>u>r$u~#p&}V;wCn2i>!QAzRQ_-(L@CknI_7cc*(@eCcYb<!DHzKrzVfB
zE#H1X`rE6cNveuOple3%?cx>5v&71%gMDhd$TE>I(bz;26P4Mn31OnPiIj;dCaRgJ
zZbqlqtD2zXf7SDNodSoj8YZ$$)HG4c#OV^r?X$DfMu&u``gSp6Te8*utTx+49TTsa
zsAr<SiPufkl^7;@L&A13pm)aS+XWB8H;}?KG||Y!<WiB2OSVVa@j19%G&S*tiMA%*
zl6BuS(ZWPa6U|ICH*sfsbW6sRr&C)tq*|F^qP2-OCfapQ-?lgF+r82BDW5VqQ*SfV
zL`M^yB*N`wqa95AJvaM5nptLzH@dl<O>{BQ)r7Z06qsI(LZ<JCglX}3vWJPDCZ?JA
z)<iE8y-kcT@sWu>Ci<EfYT_Le{Y><iSPeEYz{Efkom0s{vaOnu&s#ghjOQZQhp_Gr
z@#&(}(j8)$iFZxBZ{h<oDVBQAM6Uf=hjs{ONUFr}(BGH!p^4l(#c&gU>=5*d$IoRw
zwNrddbC?)Qmo_od#HS`cqbt&NcZyL2ZKvq5Q%wClMZ@vJfiWg{`M~G&x*cNNPBC|9
zq||s5UzqrkxS5z>VxoyjGy#7~Pm5bo>pa*<%3a$M+jokuOnhzP8xvEdM)YbH@s^36
z<NtqLXk(|Qo0wr@nTh3eLKEMcm}6qDi62bNH1VS};_#d)I{7Syh6!Fzaek-xN6Pb)
zENwR~Nt@0yG2g^O6N~7O^3s3>vNYHgNlp+Jn^;11q$C-;#A~}m=Uw8xU82;!tQ96!
zn%HJyyNOlo3QTM;dDR2fm{@CKor(3-aaVMI#S+PF?ySh`_U{reUP^8<vDw5H6I&(c
zUv~-Gg13SgyG7C6LLV1-3*B;uiCrdkOObYxa(85xJ#;M@x%*_@3v#_Odv_!-O?Hr-
z8-v%v3l<KWIKtk~f@0yQiDM>inz&`+xQP=cE||Dz;-raFCeD~R%lKk|H;Z!zOGyQ-
zb_;HqILD5$NjzU7ai0FxuRQloa5ECOd|YA=Y2qsT8537%^aY~y-sH~wIa&SLmht>8
z;@3^wpp|!vU|f~KQa0{Ey3J5Bai8H}^6nb^V&ble-~U6v#BYRdceL$_BLa7ca0}KS
zCjK;W&%|FQ4(}E>cZ-Mjh&J+YH1|Fg-y^uy<R26NvY)q*)4~JEA<aS#3+48RT6;v>
zJrOMZ<@=Go=@*|&<g)Ov1)jnt!*P4W>^(xYpjjwtp_m2Tf??qicHI_C3zh}ff@i_D
zK&7aoV}ZM6xNnDS3s*|Of^Q+PklVsW*$VTky%ISp;d-f3BH#C6UJLmw6tqx?Of3Ao
zM--4uxE+OydfHw=&<eBly`qSP#t&kjt&aSJPsUzR+(HQpPg;1&!lPDXi&7RIxA2&S
zk`}78jC02h--PQ43k{2;xF0FBz;<c78?Po_+bc?2NVo8;g|Zf&wvg5`{)~k(R<w(W
z1S?KtQGow8m_0|?nn#;(o~QHF4@ZrwLR-+{83fZpTMKVlc+o<63)vQGvK0$2TgbAI
zuu#E5riE86kiMdYSEPbud*+$y>q;d5`7Ye?XtI*jog02S>=l)zE-9)YDU%jRe4}@&
zs)cG6s#~aGfoPB1`~M4|&yUNz-!y{d+r6Te1!19yg{Bs2Tc~59o`w1rUbFBzi?R}R
zEl{rmH><7K8<~j@?bU$zP&^`RaU~*2PdMH=&eh&oi&DEb)}SMi><tTVT4-sZl?1by
zh2|DoNHpALak|stz2aJ*aKgZF3a@~$(8j{4c{RAknlUN$%U)sb6K`8+XJN2~Ar{(O
z=wP9zg<cjqTIgh<tA%bBI!l$gKdOtg!qx{_e-_N3w{*AAgQ)Hkb@mCPf7Bm_W2!v5
zPxQ9X$3lM#0|?9XWM2#Y=$|d)tTO0qR?mHr`RG&wEex_io6dbW!HrlkxpFtu!aEj5
zSop}oFbnTm_|S^BsJ%y%HH*K`K%g*XQ`C+d*l2nNFH7m+!>wpzBr`v@@QH=bER41=
z(!!?}MoIbE`iOmz>(Y@}i&e&0_*|NGtc9=kiTxE4OZJI-KW8y;xR>t>3ll6PZKP~W
zv@prSO$)ayOt$c)g{>C0S(w6#7Uo!(YvF4P-&pvLZCRLVVVbnUbSqlR`_|%(A`0>0
z(FRT-a+YQW`?r09=MjFeFw??p3qMMFZoi-Thck=r(Ix%YeUXWOvhYl=c#pZ!U-3-L
zvoPPnN(-wjEU>W9!V(KhEiAI|Yn{Ym$t3^uq`hC1+#gk6W?{L^Tw!sEBpP9xy_R@s
zzu<Bn)2l74v9N(%frYge)=6pCOZv~2rF<jRaKGp>Gosu?jq)cqTiC+r&YfuHB(5J#
zzF98Cb--T-W^cE!!@_Y3CoJr=u*<>$3kM~i-SWN9!X68I=@t9M_j?nS2d7g(u37JA
zoXXWVHc@SM&O;mmXl{ZdYaNsC`%dDE>E+oXX~ygqC+Wi$E?KxNOHW%kYvG)QGx8^C
z$p5^>OaE|D!dQA_CeK8?E#foxiyw_>Xr>9SSh!|Ii|<#7PnyCb9+c-gz0tz@{o>8r
z(Ff9CFLB$#9Sa3)6twZPg<mYhY$!H<weXvT`xgGTaM!}`vgv#BO$+{E;ZFu;xd^xC
z2LAtd)L-mmUXN7x$HKoB9<q_s#sl_mHgece_w|LB5MD&^?$YF?-B~1VJ~<bE=Cbjy
zB%liXIpt)QYD2T(*?<k*hGD~z1f~tkhHXcNo}ovrk18L%>2>rR*XC`UkrU3YlkjZ>
zHuBiWD=X%<@rX>Ud^s8jj?YNa#QAJI*V^LG{5E(7=f6edsl_u2*(hw|X&cYjC}N|i
zjZ!uqm(`2ec$BT!C~l*KjW+ip7`Xt=zp$8KAn;vMQXY`b`Gk$o##8eBq|B$GNn`EG
zE^Q;-#*O`Ah_w4d2Sgbg&)O(&<0VO1)<&EO3Tfkc8^=#2^B;&Dp01T)qnsTX_eC4r
zQ&IMSP})ZVl$T#AFWabK<5e4#Y^<;{GHq0}@rn%|fgufjgPS_|W}5j~HWD@}%NDaG
z|4Y*&h<fhLs$!$6jWISpw^7YTbsOz$w6{^iMz)PNY`kfsrj1%Q>f2~wL)fUzRvNpn
z+nCqbtz+Xg$yPrdG0a&t+2MewYoi_||0QeTx8-M6O>!E!p^Zk8tf`GnBGFiKXd-id
zo0A-IK=9lUC!EQlnapIOjg96uTG(hQS+%m!nnHGpmMZv=;F(EDHqlnnzh&cXnV=Y4
zt>Af|4mLX47+_<djb(4fJK5-Nqlb;oHoDO04_@eMNAuX-q&!T_)FS!0w9(T>ZySB=
zXw{>a4GPc6@b?F1_qEZ_Mt?h6RUsu+%e5g%dZq{27;NK18^di3u`$%fyEfjFt-NDL
zOCH0Bl@}en;<5`heP3$yfoy_D&&YvAJa;z2#z!_r+W6E4k5GLq2|lsGhWN9(Tp1zd
zC>x*I7;S?%5CP_JDTi_rkg+z#5nCIJZH%|^g^iguX4#m)&fmr~8{gWPWMi_8DXebe
zO9=u6AfM}UYduZ#wT*9VOtnGNd|oHPQ(ZI}X}J0`-Np<X-`n`X#_q=McjR9+`Lw)B
zg_yIuAQ>O#%>JJp=iB(v#!oip*qAFdn#Y)xYYL>KUTm6)1(LqW!>NTfh%HfCVq>X|
zU2KRJw6WaA1{)jc?KW20SZ!mCja8B%O+%3Rkk48h>ujvIL3g5ACmj&22WAsG3Qu)5
zNy@D@w%ORsu(H8pfHWe{{gHS(y|hkZhmD<526AI9nwwF{_Z}O2Z5*+2)W$w`CN>V)
zAOZ($9F!F|HIA;bq3{b22+|YV!#1c04Rnm5&8BUfrT^GCN&DJ3O%JJ^;Ccs}J|d&?
zKNE9Bj8AsY_&Ldz)ffI-`J#<WHlB3xl#9zYt}qrHjCF9;#x-^n4qkL{on4I$-$CHu
zrj1)R{vi%@HXC<r{AuGJ`+pn1*tl!sch>5fzTmj^D-BJb`7BklK|DB@?D$sv4|aMD
z;^X_o3of@6BjZ8m_+RXeJ7xUMKB}+F7`#tmdS)#AI<@2vXHGHafsHf=x&y;O4hIi8
zc-TSAiHLJL$mK*{@$UhV=b-4(EB;SKp*T<-Ja<rN4&LvU{%xlWHhS-~RP!TY;VyC0
zLEYuH?Z9zhIZ?Z8vG<Jft^?0O!SPk#U`5mTl1@)Q-z$nf7BQXM!6ObHb5PPj9tU|H
z6n0R=K|Tlhov7a^<lxVS@d6GyoJbaQz!pbOjMnU`9u&+URZuDFfP9KODB(o++Z1#7
z*K3@*x0&od%324bZkfW==oT;K;Bf~}J9x&y&%-jFaPXvqryPV1(AX{YVMdcq>96*6
zA8wak+CjR5&tzRneztAAjDu$##2r+BD^A7B5(fe$HR5?^J{0wb25~ZZ!9j*pKS%ov
zg2Q)t2QN8z%fZ_YUUpEyfpAdUL8gO>4iXM3J9x#34(%oz#w$7K)7X90!FOGvGrw7M
zi7pvD!b~la4pJ1rK@A6098{G>)g0WfmZ&f&gXffawE6vpQ7@P6pr(Ub(t?xZZAe-5
zB5uz=pUHE(bsW6r;0*_FI(VH{bI`y+LkIO7WY5T1ZeV(SiZ>wrde4Z}_kGeEIcV&l
ziG!xp`f%2JuSCN-n{yh*zZ{hQmX(OtN#`-=W)509Xyu@}gBH}WV@AL3=|i_>=joc>
z+Cdu!ZK-Lebfs#fOQc%8I4klHaXSa?9Sm_Wl=h;D9rPv$4mvsL?4Y}Y9uB%V=t|Cm
z(!0?;_EcTcC!RgB%8lOXP5W2*ylb5KJstFN;C9O3<kg&m;^MgM4F^SE2mKrjbTG(4
ze+L5`P~h0?oT+LF+KcDA`5ss}3V%L>DZs$=$-U$6I2h*OQwLM?+wVGf&%tm9BP1s8
zJNUrChm6^t(W!8{%71m2K1hB<qdWM-!AQnY@AOZrC3qa3$HsZCoIugCq#Q-3a=?T0
zqaBQq31(h9D7JNrznmjuoP+TWPCGc`;0p&694vLP%)vwllN`*UO(%wvse*&)4rVx*
zLRWY24drxjVPZI7L!#;viLV{xJS2DufW*@rd@E~>Zx!cR)Pk+zb6dy1bMU=`Sq^49
z_`yN9so|rC#7uhQBEc$=JS7r8IxwB&Pc-PED12TzBzQ<6HL1#62lE*Fr?cieSm<Dp
zgH;)+1$61j(S2@<8Gt{f*3M2Yaj>^U;@;p4{+uu&wVYw%V7G%k4py>?gN+V0Nx@b-
zSnFV&0}8gr!SUMh{)Zwl*2~fj(t-0#47nn9r$_o`2U{F$bFiJIZ6Z8ZEVs8xn$vyK
zcR1MTV3+*)_gCTPhs2yif=6_Z91_1A5_=u&b8yJPVF&ve_}_&G92}Gh^5L_iK(tJ7
zs(9jvRPY#uad4F4%}!Da7M&n&1JX}AIOSmZh?)y}rY3w^bLZ3u_MENbXC0h#aL>VC
z4$jjY4DIj2I}R>7xFmJC>EN=1D>8kZ9nN9#WYL^g9bA(FKbR0cCpDt(HzduqR`FXh
z(eZcZHgTI6lHtz|esS=t%)jg4cZt|<vMmz);b3*1L~=;RpALA~;mO01?XFI$a^Jz<
z4syGA#Kk`j{$)4rLUZxJL7I!4E^@ixKL5>Mg*jY2<YIdN|MzN&^stMV3&jQ1q->X+
z=yQvTXCIDEt?Die7mf?ph3Ud_Ve{v|(TBm?hsC}dQKXNOVt6j#!gmq4c<aqnk35M5
zGM{pi=EPyaL>?D;T@-Us+(kYY`CSxtQN%?77X@8>_erV{OYcX_H~gIS>*2^x==OY9
z{@p3+MxzzeJj7kX#iK4BckzUa$6S<jQHshQivF75!Dqhfl}MOJB5*<%^qg|rve#~p
z^vX9Ry|jyT7k?8d7f-u*#>GSzlU$T>@vMs$E?T-M>*6^V)m&6}@w|(;i%b_4DS(R%
z7ln$az2u^tix*v#mr`9>6K>uejyafEy*cdJAuM@ByzHWai|o_k!H!|2BZ7%nT)gU{
zvWujwQprV@i-b%!Jt78g4ZCehUfdb>IU-Uns<`-kbgHV0PmhS?iSYQk#D#|=7mbfe
z)gW6J4O}#IQPV{&7q7W^-9@{iX~IQq7j<0R*c(1L8O}H&)*KPRk;wV$x~S)(NwKv0
zRBBf^|5&nK=dkgPsOb0+(a7cSh&Np{b8)sq*u+Is7jL-e(<7{XCM<M0i^Qb-`qApi
z!(oG~$shBkHFrTxa~up?xoGWTkc+`C+PG-zqMM8E^Z^%dyXfGeql-qH!gen9<w<K#
za~ukrbqLp-59c1w>g1xci!Ls@x>&p+e6f3Y=ZIii=Vm8+bqYU|lJ{UkF8aCX@1mEB
z-jvEkUvid5$P+t4Dr+5$Y%N|%l{_j2xLB|&94LWhg83J^gvE}9LtG4X@rjF(F5Yo5
z%;hcm81CX-7w@@v-^B+~qnD0~G9AO@#N<y~lLb14^G<{#dxRrgd?XouOzk!$Uzg2w
zJ1RP#4ZR)7PhE_1G1kR67oWKp?P3hgM{}<Yoo<l;v(6{S9u-Bpg!Q(CJL`qxU3}r<
z>%3_bT+EhCj4jzcm!w7>3McFiC%gF4#U2-XT}*ND6_IhVg!C@HA-#(qT}*W`jq&2*
zdl%m_oL$V2;<2q6`6EARaWp*DDI_>QxR~jpRo=8&E;bw$8#;ycPll(DikHuZ*E)tj
zxtQZ(o{RY|=DJYxrBUTmJ3^&XNVi$wVxfygbi%HY$?kQCbUAf4dhhu?YpIK6<mqCg
zi{&m>xLD(2t&5e6=wfNBT&#BS@}98FfpA)nu&lgM@a|EO@0eKUV!aC*<>JP0&dIRs
zF+q>o<YKdn?Jjn>*y3WVi*tq3wlS`|hV+LD(*4+O=G^2?#%X_dmy6v*X+vcFVckQz
zC4rsPJ>2JFKfl9WTyb&0#X%RR=yEO&xj5|Nn2Y0#UwJ6+h>N3i+O1)gW8%~E;m1<D
z6SVIM>!buT$J&ssv(YmQ3K!=ovjikp@w9X7vd%<BEsu$d47Z|bmt+;9M={>n7`Eyd
zUUhNJ#m_E&adDkAE^fQH<Km`^PMyPB^!&5o!o{i5J3^X%#4*veNHjb>UOa8uG4ZR5
z-(39Z;+~7UE`Fz#3nc$wU$-?}c1(<vPBoxo6q|ps6Dyi_U$%bjOgQCS7R~y2p~S!J
z4;g?S+IdLxki)}s9-jB`kcXTe3VJByA(w}TJ-8k`4>1pl2h)S)LG_?{&^;Jl)aC9!
zCJGPB?sX~ZKXV)xE!L*a)KA&6h&hgjZqrf~2BqgcE*A7k2N!=m<nfT#L;2$(@Q~ZX
zBOYEqE>cKN=$=vN$5eYsna{)f$3=b*1w1TUo}4@<^}}(&D(jDn(S6ekdnn@J2@j!%
zq8^HQc+|sV9*TQ7Ff6--hik`0Y+Uk>q1ic4h<qnRNe`twv_Byp_ppCxcBYwp_JpW)
zLVR>Wu+b+yJmukO56^fg?cv0vRJxR(4J~=D=ByJ@?@`9Xvof<R336B8a6**p8b5bJ
zP+2M%XOV}R9%^~W@KDafs~#$Oc#&#)s3<GG<l$ux6+C1T#^uTTC&Ys=>75i$o)i^N
zMoqLER^=5B%PU87t*uXrEDs3}RXkMnP}xJjrf$+hO0pU#=|>fjWARB*%|mq$H9TZ{
zm~&E4yf0Ewn2%qR*nd*|b5eZuTutGjwuh!3-tbVz!)qSuduTx9J=FD3&qL!0(I*@s
zB5s9GiR`T8^QS~Z4~<ylp^1k9NNo2KZSq!ssa!JqlpxNe?{rGM>7kj2mL6Jp_~4Xi
z?x6*1b&5A~t3Ta6{`D!b=#*&9{~y&uTMut}*nKKe_Sz|t^R#HRDv|7#QTlWwVS5i9
zJdE=2nTL)ZI(Zo8;av}%J#_KV+e04@UFl99dU??h*4;x7FB$=R5~5Dw-LqlowbAq)
z6O6J3y<MY7T3_PkVUUNx9{N)S4+E)nZ<nJdJC+NZ!&}`rz=cOfr-pbK>fs%_{ra%T
zzVM?-Ddtz-A2z*`MdJ79haJNa9zLR5QcVvZ%ADcyUG=nJDWBgPrZ`T0?BNp+BR#A*
z7Y+CI^G4m~r;?K5k$AL+F&@72@V$r6J&g76rH3gV#?d!Uh7&wY^f2DT7xE`NYG$%x
z!K2nB50gEx75+SbILa)1I`Nf<uNku&!f!o%<6)|YzjlSwJj~k~wm2>NofgX3kbmZ+
z?+&MXn86lLi+QJ`VYJky@COewN$Fv}hglwGOYfTN;YSZY(U+vmJ5LJ^4TSXZZeh`#
zkw&8mxVuh;3p_0Ju$1BHVUdT$9-jOsxr7dOG5SKgcsjB&iT^$=mJ<pOD?O~DiT5YT
zD)$-Dv|)JNkJ8VaiI}hTu+GC*0lp5f-opk4k&hRBZ1k{+UIBatZ1%8)5elROTRm)}
zrXKEl*zRG6hYKDqdf4e<mxse1j?mLQ?D4RVAushBz~iXR;(NVl&5N=f@W9<l2R$6}
zz%4N)hK37XteHF`Bk_zl>fxA&QyxxxIPT$2ukeJ2lai0pCqlktyxJ&9e8$6B59d6b
zC%oIM&XAd#&WQ6e@z)u_jXjq<T=wv@hhIEg@o?3{O%J!&O?kL3dEW4Vv(aK%>9dgl
z_0LANn7GZRi3ax(4M`txR`3~nR{ZMWH@bm`KRn!()yL#ZBmKOy;=gT0e|os*p<16%
znVsBmR-BML|Bn6xc02;)0sf8tGe#KEmK>x-|1k@AJr8eg;MM*)qZ>W(FfegU=Gfk0
z<-Q@oX}dmAd`#xCdx_uA3LfO;-4Q(2#%=ywXQYt+xk%<G&WXzBgcU6dME`t%f93G2
z|Fd&~%JF16X_}rBy(IC1b0Pq81AE6t`Tvfovg@4q^<1QNULYS(0(cb25B~Q(C<GKn
zG}aUZs3{YV_6}cqDp3R|3KRp1Q<(GO(et8j&ydQFW$AhGnKaX5KuKBmNuU()IPe4z
z0{i-hY^(lx(e=Dwx}_u@eqOZtBKs*|+IdlJe)4JH8F0fPngeBkXMxH<5-1Bi2UGwu
zi2x7>$^kF36(ECn%464Dj(@IKWWm+vMR_T}OTf!Aapt`E_q@n^Ap$LaK~w}@L1e5f
zSxR_c1uDrjIW)K+uC<A`ZW~YVPsY8X+XW7kr~<qW)CH=tB2W{k1yl!W$XeNm_U4h2
zh8uoCOuHaP4+sTN8>j=k22k<#as$}l-r?#CVr<_~860N5TC*NdA7}zJ1sVVifkvDd
z1CCq}BR<ch3`GZo+*UV4Ue!Xw9q$#s0lX<0QvO>Pgnd!`**9zfv;=wseSlU#Ysv$3
z1lj<U<SpQBDQ8>Yv5Vs9i%~GP1KNZ4(ko973JFf;MbY@8=mc~Ix&hsRE<jhBGG7|~
zzsto4y5Sc^yECGPWYrVs1x&pd`OlpSDT=yA()0!T0q+AJ0R6!s3`2mSz(D%>U1tz5
z7&v-S{HM{~i-H^E$oU;$81OFe9-aA8gkGsjqT;2f(FT{q&`VLAeh3VgO@9K606qey
zUlJe7oVWXhiEUL$yjE5j3498S?H&GlCyR)2lip~$F~c1=2Yk*V0tl=G#sTAj*}#v$
z7r+GiA@D6D5tsx_0lor0ekL&)_!9VQcd~hd8YeD^-!F-NYZG4s-vEQ!gj0di&BIrC
z#k9OM;Lp;DDlNk4zzpDf;0H<b9dNKw_;jH(l970(6r1T;bjA81t5A66{{+kd76VIw
zxxhTeLhEoL%_PYdkl`a~Hy%&1(MH9RY-JJAZV;X>RQ=?fkd#Y-<&rX39WJ9&H4M$m
zB6s057OetS1G|9Tz#3pJuo2h<tYg$)7L;MVY>UKyE(kXO6)#8NZw9u|AzOw!*#86D
zfb9TF^VCZWn_hlRv1C@=#5Z*#;dcTv3#HY)ES|lYwTGPyeVB%3)C2p0LkuOlW#O~~
z!~y8rKKx-`*z2;W*FLN;H>}t&eC$_;@584P$AII&DO&KdV9p8PBpvdND6Xe8s4?Qr
zkm=LF8S;^!6>S$4od+(kYxQCIxCmSV?gM`Vmw_w5&%iIhRp1(M6SzfWYNVPyh+PM6
zFg!<PPQNU^IUH%R=CWwqJboLvL-Sq8T7DpLR^sq0@Eh<4@F#GW%-^r_JIGoLn40|S
zax~@j_!Yt91NZ18(z48{enqsuB5*1B4?BN$?>=Ha9<a0Wk;BJBestV`&+sb|&Yu=a
z%jqMR4_@TOpL~CHMHJtk=&~uH_|SalK2#sariFYKUx`{YeBLJz)je=U+`S@f{`678
z$D=-6AD)kVKJxp~sNnm^?c)*2Jn+G`$p5*kV#?%j`a?<{9}TXGygrWCOmKdQclUL@
zDhl{0=%a{_qJ)%xm|qozd=&OEUA9OW{=0>biDEvA`zSj(Tz6F*y()gYDjxGu(#O+2
zp7BviHu{8*(8qT(!pHq+ObM=uCw)BSqqL87nZrx-n9tVvE`3dOYZ)f4i84N(^|9=l
zi2G>KH>0eN=X^ZxqusSg>vyk-N!KDARy9q$;3Grw+4e}X&Ljz-kC%Ly0jvNo`>5dK
zD<5C`$n;UsM+YAreZ1o1RUh?y)b~-zN0yK3K5F<#_^9loiVsf9ub$&1eej*~aq^n@
z>zcSbIK}Drsy?du__IOWzb;;QF~w=^Y#%j!)b>%whq1u<sz*jGAHoM$C^-E-xLf>E
zmvm0fzvkn0A9bn7b-`M^)svZ=wdRsR10M~2wDi%+M<XANeZ1l0O&`4QlNYWw@zInL
zUKcr+q`XgRa=N>j4_;E*oZ$G;s!j8;sd;b2Ny$|VR%z{{jgPkpmyfnS-jevV>z_`+
zh+fO<f{FHibm1yz@*B3c-k~D=<HAR0AMgA4z(*G!U48WTF~CPRAKiWQ_R+^j4<A2w
zO7H2Tmycn+<Cm)>2uO6rYr}ZnYKfDxb5`k)(bq>m`at!>`0IjqnR3#8ppQX5-eDCV
zgMAF~G1SM(Zt3@jL>JFe2Hq%36)5?;KHl?ji_1FoLn4#;Mtp``zxdF{a35o+td9{s
zKJqb=&g^6Eb@8!}PyA@9BKP2IN>a8@d{+PLQADqa`<ai?K6YFeEWLPLywxy1@0B>)
z8tY@6kBJOJALD&|;bVf2ZNEB%l*WqP5M1e?FswD%$Cnb}DL%MxK$W@tQKe7xW<%fj
znCj!Ok0U;&`S{ky3hKp3@iD{49EwNJ_wl`tnLcLu=rlRk$L-SnLdhSbMR*<bY#%>T
z<@V`6QKL4MCrwNhxglP-A$UrZ_kPdwF`tI^vDC)`9}9gf^0AoCc0+W!5goZD*(Wyy
zt8XZi*gqutbL`Dx?lK?C+3pQ-U}^Lh>#7@K72TK$`q=JcjgPhb&iAp&2hXRk^Rb?8
zCgtI-^&>aLy09`Y@&5US*z9AAkFE5*cIn3C=#L=WjQphEUs*5Q6gzzE^s&#!ejmGh
z?Dnz8$6m>2Z}0R9A4U5s#7)7o<V<W^lRV(_01*yJ0_OC-DOfsEGA!Obb(H;^k2~}(
z_C-EUuqXF%$&b#|pY(CY$5|hze4J)%=Bha3rXY;#Z;Eq1&ilAPCx1Ks@ZeOACsL<x
ziu~Q<d@6jJy6oeMj~hO2`nW1VzUJdPJI3yDLYL7Xv0zyFceZDhD^>meO>xV|Z68cf
zw!F8*nw8O?+rRkumHoDlv;e>Pxa;FD()jq@#~<tgeBAR<=9VCgJj-A8R#f-BRW;hl
z#NVW!Z2jZoU#arwTjIxCqE?y2fRzazUC$BVp#Vw%H9*b)xdJ>KAQoWcfvjt#l3OH)
z^YYF6)nm7X7C;YR1StDNf@hi85T8A%WXap&iLse>04G3`08In90X&igcrE|}_yLLq
zC>|gPkUKzu00jd)67ZB?JYNu9Fp?)g-hhAnMk64%s8zTvctdRdAnL1`;8RGF6$!v}
z;UKyN<v)U=0baiysazt!qXC`@P&&Y40ZImVQWBR6@OXeH0)zqhUwx61*XlmgB*D#B
zQ=CM*+k&^w@*)(<F!Z)a5AaNYG69|rqT5lL6pCDz30`6GY=H5%#njx1rNuLz4|w|!
zss^Y=2?JyV$P7?1K)C=f2GKscmjjd!z+GhJMEs?Ihf0zoibtKvu7MfFxfe*%Jhn9X
zN`O}bBm<-ZR0@z4AQ7N)0E$Fn?g%QDp6c%=7TgxR5%*@hIPcb|A~D%5RX$NCQ9VG7
z0QJZ)Kz4wd0cr=R6X3l*Zmj_PbBlLekQGlH^WY>;P`*aE0$jZ<>eBAA6_)Zs51uCG
zN!11c8U|<_L`RQp-lz~H8cEm*HSbKOIhc4Oz?%UE2N)8dS%BsNx)7@XEdsO*@K%7g
z1GFNHO%kmGwBg_NyaW8N1oz#M8^vx*SZ)iNuU&xl0Xhcg6o3XLXSUdZu2Ld{X+E8q
zZf~)OIArEdbPLcuK;HoU0`v&bGZHMS#a(B;0`v~Bvz?Xij^OqxYQ#(y(Qy3(3<xlY
z&X7C78;N;Y%D^DH@R>9;E;+a5Ezkkp2{1OmI3ge5-2fj2_?Q?5ct41?X$=qXL4Xe>
z@>`AM{1>^_89C~wmlHe|JtDx;c#1~<gn>gJlZbs9xoG6xpUGM`-^-|YN6@QTi|#ij
zz~@v!?v12xFmpVeKfsp(rUaP4Shx~heljV*L|WubR{cAIM|~$#Jb74{H|G!*;>l-P
zANQL8Q|a@MpyVT%7T{Z2FgKdy#`FL)0^AAkGgS`oeSlp7b_e(&z{~)v0;~=&E5Pgk
z3j-_)@MD0Vg6Iaz`2pqxm>Xc86rSQ8?G&NPE$+N4lKWJjG7<}95w|Wc4zMJ^@&GGj
z&QkeaCf|MUh>P>09($$y$-j|Tb&PX2EOXWbSQ}t-fGq*m(MbYqlr${jj1Au#h~%9J
zE<T$AESBl5gjAC42(Vo~5y89JU*)d;ALY&f`|gOFcf_6mdjp&caGp5<_6Il~;6#7}
z0S*Q@65uF1tE-7a0S^DKU8=@y#*h3gc<&;wWF*65vS?Dx<Vl%WGT%8J;FL^nkavEb
z32;{a3}1}sZ<bD72yijLb(widzOOLcWa2W7-YI;^tA0)X{7+5R>Q*ClBf!l7w`Bg#
z`Oa;bDD$)Ed?mq2@?Qe{8aXhY%8lOw+-2{Y8(wbw9^eo5+qsb|H~tK8FTg(m{$<Eh
z&F@n81N_Yn;b-xGG+hbYjm7tW@gnQ{`tt1ibFCNG+UwdPz1O{#7kA1MQnbiYWXV?6
zM95ZI6BSCSgbGDTrA<jnNm8Mr&A#*hKGXmA`OIfN=b7isnKNh3%$<9lnRD(vk^Mu4
zJ-uODit%W!RY8t|VhV~Yk(?)-$g+I-iR_jW*>6rn0)K92QAq`*6qHp^PC;n}*C{AN
z{G8;`6WO00&g`&L2N@LdWY#^IEw7-0f{F_AB(+v2vv;11h%hb^qvx;+VOo4DEASNr
z3aThj6qpJu1*!r~fv&(%F!p42*|ZF!2rWLDt@v27LQdv2Nyk>;C~y^cl7UstJMTG}
zJ$^FFkVCnrvV3IlqfkLiL3IT+6x3#b7&1IDQBCqQa($+InN|!5R8v7M1v3`3i<6U6
z5r^z}2j1yBmF;{gTUS9sL7{?_f_e(-D`=shrGf?u8Y(CtDFuxbP<o9OTu+v6E*N?$
zik-wTH`7mL7fsJ36*N`QOhI!6%THy=)#g*#`rk)JQFdzosq7OunHv<el3cY>&|1OC
zQ(4OAMpk(=xvgvzC2HLC3`5e~q(pvQSgWmqw1TVxp&+B6oq{3-ofNd^aGcI|P|%SC
zyJmvZ5d$}#jyiSc=`07Lvw|*46iJGGpL#mG>~u7;H!HYBL3af`6m+Gy#wQpqsvC#n
zfyA4qvqU5QtqOW7`0I4GmxB2ZCt33Hl6Lz}N5PB;_fc@Wf}ILJR&a-cz6$0ln5Uqh
zf;$zARxn1vT?+12aKC~f3htruJe;^!!2kvQIXbK2OfT>0G*H1H1%nmbr$iUwdEd75
znTUB`=1pZjRKWvEbgz7*f?*1VE9f>gIfC6klfCCmcD%${awa=wS+fTfjN;(VOt$VH
zU95ZkOm?h-aS9$)FipWj3LaK4Nx@_V;}uMhm=hK3I+HzlCaa&#(u?xYCt5W+o1LQI
z5vqN$(o-qGv)TL3Ml3z^MT#yE2~4Lv<=8z=EmAO3!M|>5mV&1w+PEfZUdE@}c4E#}
zFozl*PyM!{@YS=~kI!c3D|kY|tL&_TCs{?ovkIP5ut32=1y3tj#-1uztYC?Pr3!vN
zn{D4HefU!0`Lo#$2h-atrmLLGmN}7nhN`7tg%nHUb6IgN%R9>_-!0nkU@~%gsbHmo
zH40u*u!@Vnf)^CLsNmjn5m)pEz<lbt?586#^a;R=`7cwunr7B2c!f#gd^kJWEi-*Z
z$_idr@V0_?6s%XULBU%JHYwPs;0-B<H@W7V&HlD3zVEpVg?VGYXjR{=U<-eG<e?gR
zVZCrJ+rMr{`Xbn>V4H&N3f|{JaX$MlwdIr4dz5n`k}V}Uxl3w?f)5mYsNf?>Uq6td
zRiyU$Y-t%el({&c{Y1g1l)Qoy3O-Ztxq_b*9O7sy_(H*61>Y#(l>bt}9!X@kg0B>u
zte0+jt?jV$+3DxAU(53U!g8_cZxwv6V84QW3cgeD{P{>qOh3OJ|3Tp=Km4fRpaRC9
zdiQ*G|M~1)#|jzd?9};ez56nx`Llvw6daQ@e^qc;!S512qTr|mev|n_Wikv?MY3FQ
z=C6o;DgNNRyO3>gA$wfGpPX@=)EBaUEBHsj&<oioFJ#}k5Jev&CPS^ARB(!Gnu;<i
zPAfR0;HrXaT>llEQ*c=}abCd%1s4@uQowF9QW#g2UZ19zUTBdC%O>|+h`M$~A|ID<
zj*8+cN~kEN;_J?N#V%&qwOkb?Rg_XuT7`b`|E0n8q4(y@%BNeUz4Ve@MP*f#Q&B~Q
zqN2Qt3Mwk8(N9T56?qcKmw9CwWA3JlQFr*3A0aBMxU+WZj#-^2?nw8#m{nD1DlCaS
z`eIgBVW==w%(<9-<6?HVY`x?7%&d2cY>DH@oTOY8o`n7Xl>{n63CI3dQdI&xE?7fF
zO%+#ETvbs^MO?*P74uZoR#8Vq9~HN&sH-BOBCR5$qMnNSDw?Zkp`w9`hAIk3N>Xd2
zqOpqWRnR6zHvU}@%@_LNKXEaeRMAw$fge)MRODaE4#|(UJs;f@=~9hL*_JA9P;sM*
zHY)z<l-Ej9Ypq6W2$zo5m$Hn8aFdEc6)6>MRftR3ftRv$*WbHwny((c6nTxH&)9Y<
z+N-!(#Vsm2sOYGovx+V%=vuZ&MJMtwsNm^Kk+e6<oWPftvRM+8E&g#Sdrg*iRnbjF
zPZhmXbXU<s#jPra{#1cBH2ZS436q=!_Wo3F6}PEab~(GZY{i=|XP-Zl8hSZ9^>X$O
z6@67asA80gejHX6gH#MwahHm_RrFVJFM+`sZ)oBk4%X0w`aq`tioyZ1`(Iwp4&*3*
z)oIh^EMc~FpNjic3{x>&#So6dg~Fi}GLc6V9KD<!y|*yuN|uG{mFx%=Cx+*j8<9U!
zcJ`kQ(I4anSF)p3j8QRF#iJ_5su-tYqKZi>9#ZkJit#EYsL1^x#ijoFM>BaRqTl7r
zm8faPS(vP13Nee7end*CN|jWn6&c#}`bdOnDyFNLrQ&f?wsIa*F+;^niTUr9LQ3qF
zQt1g2bG9s;qvD8M02f}#G7Japoby#Yq2f~&pQ(6K#ZxNQsd$~EredLr=TtneVv&l)
zDxOiXT*VR<OI18gv8y<`I<x*t_A^Pp?5a3bi=h@6uY{_&LdCOc6wiXau(U|uPF%^Z
zRIy6MODbMgv0B9oDqd7+v5%%_*{hM?jM&xerJa%X(!B|RwJKgw@v4f~sJ)Bh&96q@
zq`O_sj=GwicQx|fd|#W)dKDW~Y*X>Bij6AXP_bFX78P%D)U2GhRBV#;`&3M=xtjfm
ztz3-;>upY@rG@XP*ec(ix*AFQt!D}w-d#Ye@_Q<_tN2jGM=IV|u|vfN5{<tj&HqaO
z`DwIBD%YZ)mHZL;J5_wF;uEPD5A#=bX(8z|Z*VR9xr$vX4pZhTzEJU{iXYe!6}we@
zrQ#bE->TTd^-XHaUfD$UTEt$7LD7P|K0mon#dj*cSFxYdVNd}>HuS&7Z$sJk%M01o
zqH7V`KdLxLQLFex#ZM{@sURBX+J<Y{#RCgIy_Thhlg|bt@_*&<<tJJ3-lq$Xs`yRC
zDK6S7epm5_ioaC+O*+@I$5b3w@uyr#y#7T_Dl+~vmE52Dhsy$$T*XPsyicm+yjG=h
zM7112Hn_Yn=i+ll#aR^>R9sYXPO9Z^PvxAKy&LpK=0=Hpi8I2=xhxA=i=ib3$WR^E
zRODzFs^I|*#WWPxaJ_~C4J9<>YA`ie8cJ#?rJ<4*eKszw;W`cFHB``0MnhQ*<urUY
zy#(W_HQtk^@3p?Nx$&bD6}8AvmZu?Ki}dZS(V3rbjZR$C%vEf5rm_YCss>F%6%C4p
zaXI3q$&t12@yQ)@4Y%Y}G}!c0t<n=CWj^(Fntl{*4UUFd8sZvU4W5RWhN>ET4YW)K
z8bS?sNPIR;hlC4q#Pxd%t7)jNp@xQ<8h)Lh@gGjmXC2E^<J%D};w?wi)=)=7eGLsX
z?9CB%H6%3D(-4{U9!Tsyocbq65GY$r{5!vMLk*2IG}h4V)53AjcA?4cvtxyH(#Re)
z(U8<|Gx^uhR6{cjZ8fAdG}q8V!;Ko+XlSY71`Vw=w3fXl1Jy~kccx7-L4tP`6QpyK
zhR)kM6>3OvT()N)mW9{qr-IK57Zej24ec}(Y3QV(y@roQW;$r-sDWstR`_v>1S!Ue
zoztB)bkUI2AT(@|Z~OJmFo@v|xhV=~Ap^|ih_392hJG6E)X-f+4-LIF+@|4H4Lvpd
zJ0icAhC{`~(!bJ;=5)#&PG2r2)Z(I#hTAD^4SnVK)-4`2P4|*%2@vjET->GMZVdx9
z4AO9qhW;Av)i6NAsN&+kV3CU@@@vJ#;S1?AJyU}<+^6Aw4MViZ{`|w`Cd^Aco>@9L
z8m7;$7Jgb>4AU@N!;2c$Xc(bkq=q>f=4yD5WHn6EFj>QB4Pz(`4dXS8)$saF>2Vq!
zl6+R&mZG_m)DFw08DDRLhKU+3-<M(FzcwXOJsysJ$ERp`M8jhmW@wm7W;9IGFkMne
zI++!xBcGfM@5m^G7mEwCgqW#e78PE@Y>j~t(>K15X*0P4$C0T<?F^CM+uCWKhWQ$n
zXjrP@2@Owjh{q)tX?RM*0uA(>xsX$7R&qdovUB_N$5)$B-x`+?i{(7x^x@;v8kT8z
zPQ&vWp3$&e!wL=0a&SwCF}n*pjmr@2-V%|bPLcUa4XZS)rW#Y_t`%~QY#f|eRw5dy
zw@L_xIIR9v;Y%7`*058<#~RjZctyizs)~kJHN2)_qlPy$tfLGytk<wX12yoA5|N7j
zRw7c@c2lE|0@PK)Z)$i;!zPX4WuqpTs^yB7xuQ?5cw56e8n$bAU&B@n+cX|i$9tR_
z6EmHbXE=jK=SDO+1z5tRV26eeG<-<i=FDv!P2_pGVoh!|ok@0QuHZ!eM8l^VzTw=b
z+%$ZyVYh~_H0;vwg@!LRMuZf-ucSG<Ic@1il@)1|e<_o<N5j{g=A5LhqC%$sfD#)z
z?bGm`h65UY)bPEA{c^;A;LuM=zOkqk5zgldCRRD9;U~@u4L@u6>$6C<zq;v4B?XnX
zcFCwOU(#u+h9g99c~ligHT*_xG%?P^?;8H#0%G95){n_n=Ic1F;ZIW2@HfXxM=Krw
zZ~|(ubvQasXgJ9gSjTlbPElbrT&1WroY8Pr!$l33G@R3Lo-5C9g%>2vbjgU-z9j|I
ziSnt-8mc{;zQQ56xnPQXMSuu7I*REip(9t1UKM8(8}dkmaQ7bzOX_I9A+MB<g@+1{
zlua%wDGnbkTvt+*(NR_hbX3++PDgnic{=iSRM4Y-RV20gshlzluNLtz<YXZq5A~_Y
zyb{qCr_YoWRdgsibRC8cRgc(4)r`iTmQUrE5=~#}M4;F=X;X(KX_C%UFQx005{<@Z
zTpgYc9u=ysGgOxFbyU?+O{Y8Sbf6>D5z`p}OUyc2IIfg<s+6d%qlS*2JnH{jAsz43
z)KN>e_)00k$B#;hgQY|r9d+4|j--wRW%6o?209w*sHda8&d57aN0<mS($QGQ^*Rb9
zV>`PP+%dB=UzIQY|2Q>Di>C5b3z;|5(Ok#-L!xzziEas6%JO%QM0=aoI&Rc)zm6d~
z+UU4RM-LshvR^t<Iy&j-tfQ@tw2lrsI_fCiyC9>Z9mj=*rN!;C(Q%~(Q>6+iCh|s{
zB0aJ(K3Q6H(UH}0i;k{3gnY%fH|vb&5^>AVi+t>+<Jh{q?mE7aD$(<7>ci54;_9iR
zmySDi+@*tp>aC-Xj@u=Co6L!GhmO8F`ssLJR6YfMsI<tvPG}!>`p=Qk-8$~kF;K@K
z9sPCOt7CxF4evU!rERv&b^kB1p4SOFei^LeKAq101!LS(hGg%%`R#_1vW`b|Ow}=r
zZ*`2*@sN%YI!5Xktz(Ri2j$S8c&pVY9XBlLL^Vh}m3`tmv8`l9vQ14MtJ4d;*mzy)
zVIAXjOw=)nGTe~Iz7t`Bj&s|izYk24bxhI0X~Mo-T^=ns6W-4}s$-fQvN<}YODWCJ
zF;fDMQ9X`EXtN~3<2q(bA*UXX?~~t*zPe8Qah;ee-x6(}1aj+Vp3w0m$4JKl9e?Wh
zi&IR;A|3DP*sf!-jwKu;9k1$Gs^e)Lt8}c^u}sG^I-b+<ypH8MZkrlkq4Tl;#!Ca^
z(=uPTKjLSlPH*#~!ld})GIqB4Z|VgdFY0(n$IEPVb$Siks*`?da$KDf?|MhU_5<lx
z9*w&b<7;&sD4t3GQ23gTbvm|CbUI$wv0ld;I^NW=LC1<I@guM2ZRF#Wc%Lb8(qaCV
zj!imUvWv~KkL!NzFn?+!Ql_s5Cf;Fllj7Sb+cxQ~RK*gRy%VEX@3L!?qIL_*i1&5u
z(DAK~eL6nS@u7|{bbP7fBON<+e5T`b9UtrXgncg~KBeN75#!4UvYodr{koF*<k9#p
zGGOL>@<@Dd8Ic;3+*C&F*722&uXXH|TwN<8^s-_Pr*K)Ze^2`*R|>C$Ih5NsQkdlD
zJ00KaIIQD{j{Q1*&~Zq|&y<OdA9Wnm@so}@PyD}q?2qYD7nXdSsyjX2y{!0!%2`(Y
z$|dfRsC;Evv9+xD<aFUt9lufKCdQ9R9)8#HhXjaI{YvEH`unotIF(^?RBQD3c7Jp6
z=UQr@qJe+8B<i@N<FbyET>K@S^Eys*QKH`JxKLJ{)j<K0zP&y=J^qWlp?Sv0xuD~s
z4%^IWzq&bDYEc|ls1-U&8YpGp8fT3GN~wf_Vg`yE5$3-0X_OPswn%By<1g$<=NkBY
zRHkk@aZ@=_+Ta}!^qm|pXP}G`aa&gYirrC85FS-dRFM3amxZ&-i97@O20{Zd1C@;E
zSf^>gGEmt-6$82f!vM!lF`ydI4E#JT>i+6-;)8P0m~u3!+lR^tcCFgLgl)hv;2ZR=
z8GTA{4HOiIXVAf&`1#N1`yDkZkWDM)Mg8)ks)1?-Y8$9y@Z2D37^r1{T3XYHWc5T&
z>AnSN0^tYgxIw3C;^35cl^4@>4I~WIH_*Vq1$owVY)<KVQc6*y6XOkuZ00nQ4Gk|Z
zZarT}Zm%aZEHRKY@TY;l3^XO522ZQvDFe+7v@kHhz(4~n4cuU$n}O~IS{Z0<puK?(
zlG=?13fYi>HU@5@Ook;ND=%IwFX%F^t${S#HPDV#X2f^N!o%f7yQ!IL<%M1$S}Hpl
zC^8@n+-#tefzAfH7|0svUoTC+UQH?pR-_-ZQq|M9R1o)75V;Gpw;1S39a|LN@l<^9
z)9ELFNzJVwdKkFX!0iU^kX-dNaGL~r8R%``dndD@g4k6-9H}7s$nqo7T}fX9{p904
zMsy4NP6KxtxZ9w!5usKTbt;ORDvFWsce=Hr=x^X&15*}7|E5P(6i-(agA5EdFwMYp
z1NRxY-@sS{;|vTjFx0>Z10yBn2Mi1|Fq|s%X0x{|id*Kk`^o6|bw!a}7=O^fC<CJn
zjG>Tcx9d|S&HO|~Q6W!^ThgjVp7^$D>LCLU8<=EZvVrjiCh*bBnP{N#hn;?%8z+&u
zGb8nT>~w01fkzBXHSj34v`Olz#qquC)14oS&zK$Wy&%50ZuEumG075vIR<7Jm}y{^
zfyWKZHW-g4x6k%Y{kNqNrth4dIXF8aJJ-NGS!F&IAWu9YVFI@=$=;qP78qD)V26PZ
z3@kFR*uZNB){&Hfr3O|SSS9hFHn7~l3IodwJR?iS=0!ulG*3Kh;5h@&llX=_>dc#Y
zVozQ);>YqtiF~ozzzYUmHn7&fi`1oJSYzNN&Zd0P;Z(Z!#Z>EjQEEZ<-#as}7&!e@
z{8dT(+<Tp<4-xYh(ytp>Z(x&w&GOX-18+!Rqs(j1jNhIw-ZbzQrJ64qHcdU5FQ_V8
z47@E7-ZSuyfvpC%8F-g$<cq!e;#|I{Qc2XUB;NU`6EYd<#&!emQ->>wA(h0jmFa1f
z#D@kxGVqguLk4yl_}IW61792X#K5Oqnhflc^lx1h3HdWQUbQ-8zA*5mf!zka;xtV1
ziiDU}keTyDyw>mnsswf8&T+}T2EH+{-@p$BzBRDVz;{${14j!|)P%VYwIj{9cBbE`
zBz9GbbnJkE9}Uor<Us=*(<7AxUlE52Qw-u~$p(2iYTy?GzZy6!Nga{p^E;*;i1%j3
ziT|5{-(}$+296mx&NTso)1f=W7>M~0Ya#wN@DG<w6ID(8Yv6=|k|s)-IBDP%=M<N2
z4wHd11}+(RI$Lnoz&QgK+2vu0^VGvKDW(fV3o~Cp5bj(ib>G&Ce0!OiFra`(Bd!?H
z>6G~oC7I`#xNCLu5+>}U@nU9l%A&Z5;}Cq6Yer`_h);($rA=ICBF{v=8PzQ#^YSLj
znz%MGQBFR-DNmAAFr!w8Q&9pGOC>Wp&2N}6O;k2fMYf`u&<+<Kn%7D(p_<Xz7&5@K
z5bZXmdDcQVaV|{0HnPAXV<vyr5twkyC?L3N!ZUdjFhzX2Dxw6)p*<_Z4u)nV5IP3u
zahDI@YhKMnbrT&-bTm=JL`@R~CYqS2Wg>2(zKI5AbW^pqi8?0gn%r;a@G)WHhn{qY
z61^&3SrBFyc!92=30{888y3IbL?aW8&FBte!DrEpNTaei)-G@4@OaWhQxk1W++?De
ziRQ#Haf68#k{WN1esEuO`?67G(aOYx_u{Qh+-TyBgYk(!w(3$@@Vei(N78o;i5Hqk
znMj-bx#5{f!A9H4)@OVi@A`eVor(66+y8DJbw3^bnSEqqrig_m?lIBdL}wFSO!PI;
z&qUUQFww`v?IvzEaf=z<puEjQS4xA|^uCU+>hOALHxtae%e;q)TP4s_<}B|ef!;DF
z{?y;2eI{=n)!H6sNA6&|JL8nqom7%xab9D*+XS!n+-0I&@67oFaSG?cxAA*T3@|aw
z#BdV>O$;(|zlk9x21{hpxlaNu{w_Q>B)Z8p)Wid3bp7h+2l16V;*%<ib#E8#d_FzG
z#7GmPOpK;rCBl@0@fs&n=SRd}ejq-^1g}8yHWn{Wu@?D!h$SYb*m%T_x;)-Q!a_X@
z6HH7rG0DVa6JMIxO&k-Cm{?=tB@<IkJZfSwyKG{biRmWhnV4_lF%vUP%%)PUiqAAL
z%f#axYk6LpA2?`LCd}0BnZh|H=8{6?Xd&fC2j=`z@Pvs4CKj4_(!^6HwpA8;D~nW}
z49_qhuPheHK`HN)m^`-?&C5%v(k7lY@tlceRJ>*JXG|=Y06#<UvG2ar3cjV$cy;{K
zg&BUxc;3V+6RS;pbxUHUiLo0prK*S*B)4SvMNS8KY@2YkD&l1mYfWq=8=PDwUNy0i
z3Tfgs6YET@|6i@wCBReSthISnyn1eG12yVOcHz|~Z%Sr1nb>UNEi<w<PbrE%!EZ6~
zHr2ad!8_FCDv<>GRT2D@K#%c+-!<``iH}U|l%m^iVuy(jOuSE(kfA>*zz?bX<<jq7
zY0J;?406r7ADj5Z#AhZxmr^1o&yasg1`bAVNp=?pks;u@cpguUts>~doZoT2GO@=*
zaSJ6Zd~ISc*B=vqnfS)Uw<Zpm_}Roh6W?*-n>b+NdlUQ3D7-bl;4l_8!z(YSA{KKi
zbxYz$69-NFL>VrNnqzuRc5P=B@r#LHP5ee94+&NghfN$Yaa8hoS>kAlC{zT$5&U7|
z80Th?f84|dWbRT#o`|e5eAW4{!oN-YW8y3qK(7B%I44b<lE4X>GcNgQD#Pz7is+0i
znWIGFJ#@P8yon1Yu9&!L;-c)rB@>q=52GGxcllV_+8!CzS1aP0i5v^XEHHBSyNcMS
zh`$xVF7pGy@%^b>3neXR7IX`xER?p8Z=sTf&3~q@vrx`Lc?)GMl(q2ffz&?-QtQ7<
zRZ^o~RIpIdLY~EQXc0?H6k2Ol@FOX2bCL7P7OGg$WGTUe<^2j23#tWvwz&0w`1h;A
zuwYt<S*U8kvS3^AEcjNW7$eFh9Sg37AyqTv_AyoPd_G$VEQA&a5P_3|krbF$vryea
z+(K;&H7wM$Fk(c0EsLMS{+~B~QehQ-rLALu5ytCUQQTMtie=$8RcOc3^({28u+PGG
z78+V;WMQg>M=dnAaJ|J74(MZ{fbCl7V4<TGIcZ5+Xl0?bg{Bsov8NVVSZHbC1`CXV
zP9GiW%J_GZ0lLCCp$g_VT4-aTt%bCOn=BMsNLd(Ov*V6b#?T@TiBA_9#LQS|XQ91C
zLw8i(K<1q_v2k7Y2~8AP=w#s*3th>H6}bVSgBM|;i-jyZqKW=X)01`;(f<a^Z?^E%
z`$c4?n}rP%Gd(QaYN5MDtFQQ46FXl__awrUOfL()NlK&9kEXV$QTiBRe!GP`$RtH-
zp|6F076w`vWZ_N=cUicXYEvWKR2O$!xW__&IW&C-6m^jl`s-r6E{HHdqSZW=9&F)0
z3qvhD5RG!QhOmhtvKGC3l>IgOz&cDma?#@}-oju$(!zrl9<uPTg;A7=#V@lMC(*{p
zoQnfLG7^)C%EPqZ${EjP-@-%-lO)dClBK)4`CMTpTX?Qm=_wW-k>w0!`<&$V*#)gO
z>0+9N=@!;gRu&$!FvG$!3(r`XX<?RyCoDW^VQquV<5VFFb1fWMlbJ2)RDLHj&x&01
z%$GSiS>3l_w=VwB#Z$6mp@l^fSRnC>8)C7AB^H)ic-q3c)9JZa+TK(@UEL5Z4bjgK
zbnkO+X=b^F6&7By@Un$x$+?BqRBQ{+TUcpD&T3XkY7Bf#n2kQOsMRz>tSg;)k#8;T
zw8e5m6b>jlV2EpmSZm=G3$I!Dxozh1&NR{JIp<YQA5+|DiggxVm(=>3qUQ^l*oyQ<
z>WPI9Eqr9*O$%>X*k<8fi(%HW*}^-Vxg!%>xY*uZ;QmwiHrIqrtw`B!m*(SEIZfz#
zg<QQS$-Zx4hlTADX5qu8_`m|)0nxn=UDI$*nXBVFxl&p9(!y>FpIG=*B7b4wGYg+v
z*u{3w=5dK*^|@xGrCc0dGX-OCFcQaC7WQz0|Brq(1_H3KS3WkCA#3-_D&JZ-E`jeY
z?B}9kqmGRqEF9oEX`{G}A1xfTaExeN0J|oBlKEi^hbT7*{~~Gr8ZDj?55(~;am2z=
zE^!u5n52HU@P`E+l5c7WzJ2gqiiwziTKLPtSqtYZ{LSfR;iQFA7XFoFPsltoHt~KU
zy}V^cRZ|Rmm%A|Mw1qRW#h#X63F(}-aKXYA3s)^%v>00%mm_VAnBiA8p4A^N;RFAq
zuW{*SIE=oD92+06PBQ`^;TJ4X!bYwQ)rMxHq>WNG@@(YWC~f098)a>jlRKy~JXCCn
zGB(FT_SD9XTvV`8(T<{<9kIl~3uyvOS1iGAD3xqfwo%2#t@As>hHpo;vU*CfaUqvB
z>eQ~gGt6}xh7H$-XT!9kawgk`Wk=UT2p`o`4%s+Rc$1{y+X!q_vr%0lhc;q1s@goM
zC5YTd=4@!9Eo#`PX`_}6UL;=Htze-o=Iu`X{Yqxy)h0z7Gn;Mkr7h~(NZ9CVqnnL-
zHtO4GWuvu?1~wYnNZM#>qmism3fD`Zv5kKvCj}IXjWSNuub3m6I-;2kehqJKqXmV=
z52lW2Y2%)L8KxU-jB%n*pH**+M*l_|ZESS3Q512GLK|uJ*G9_5la6R><E@&}2lUs=
zCkbqFL^~VpZJNO|9mr2C&BDEoSTs6$&Jp>p=wzd_jhkgHzUo5B*bs8mnz(`i9J{&^
zldOIVhwoIHK?8@nqPvYAHtw@=KgY;MPaAiWTN}M>^tN$_jlMS8?oHihqmPZ-$?C?;
zkx~)!GbJ^CY3*m@P8$O@X6~{vw{7|bSG?1$phs@%U01NMzs>87?FQNyWaD0<Nq+J>
z*E{SA<|REbm~(Aca(*sOG|AYW7-D0njR$Rvvhje8-(G0WG{VL(8^dk<-71yz#4oui
z7LtdNHtM#`{LnZvnu4X+ZA`E+*2XwW$;QJr+O<yg@x+5()bYo?=o|D}2~V`6@Pd<U
zOt$g9EFl7sk9y+x?_H+ac+|!R4nA}+&Bk=<wu2@P9<wpS#z7lD*_df#mW>TIHrjaH
z#%vo;+gN5}4uxQ2p^Zg0=GmA}Md}%U%Eq-G@h3Q}#DBXJ;nKcXR42ttuM7C!WOef|
zH+Q;lYkV=;uA5q7V{7kts$YEL!cH}Pv6S7}p5hhYXKXCD@v@DzHdfep*2XFut8H}h
z#d9{Ex3Q8EK3w?Cp~3;a7+N<|vUhyg`uGbrUbL~s#!IC0PxS4HY0c(%{Ws%1`$X^r
zU%X=DRU5C{SZ_1v4-)spFQ_@|IO09yqi&0j*b?8?ui)3g@xOmcZ5SBu`cC`}8*ke9
z$i_}8n~hC2-nH?bjm<W;ka-*1Y`ksb9jf=}L@Os}sUOL|#_REIzUVV4)AH>&uiv)b
z(rG(|PdVFotXKSZU$}QiSD1IOR-Xv?P?qy@ZpRPPA5&v(d}U*gjZbZSW@DF)FKm1+
zWwo|nB(BZVGi3rnhQG9<8_m0I?5>mAF(}TP!n{iSwT-<tzO(VYjc;sxD@SCXjgdX0
z|13cu%5RNRbcJts+E0bFae&J{Cw?Gi&{I|*D9Pc0pwMOoV(z=~LpFYnW<AO}_{GMr
zHqLWFvvJtQ5o)Q8e{3A3_S!gR<9M`$rhd1hliq)@{6uzyC|DVY&jY~&<bT@ui~TCd
zyjnfON2Xr_!Q<Bd+Bjw7w2c!sPO`I0GCU(%Jd7lH#>QD2=WKLYleu|EN?dEZ^rNEJ
zp3PPb#dkG3UbJzEKU)q;IN&+_%QmjEvuu5D`U*w5EWT-H5%V1C^Rjp`nJ@T0O}IlS
za-Ha8cu5DPB+#gKijSoo@G$3f4tVN5;#_`OD(9fQgQ^ayIjG>Eq65Q$=^)QRz5~U9
z>Y$Pn`EjW1po#-l92AO2LP3CC;Nki2Mind#g(ex`5mVj48=<IFEydHSUxdPPU_0;~
z1P&YrXG7sS@JKKwYQ_W)$9_3IGj&UvN8d>;bP$sacZvxfq2Kpy>YkXW?x2Q)`VJa6
zsOg}VgE|iCI*7{_Ym@Uai3zbt)JzLvqQ}fi2?zBYY>0`G2UE%0Q<Uv4(ixv<D2X@z
zPbM<wX;?ONy@S7Eg7*=U4w^cc=wOnAW)7M==<VP(2Q3`5bkNB`X9qVpXyqW~psj<}
z4sLWJn_Hn1neW;-xQTU3Mn*i^!RSF6b6Ra5P(Y&=ZHO5M?HzRB5=75zZXPXc?HqKG
zHaFVAI!d^R(yl5JRRzBX@s?Q^2U!Q*9CW7%(us^?BzTJiZkBXdLNDuG9nAbaURYK1
za3TxatqyuRv>v4P94zeRMCLvk0BPl8ySuXmeH`5GV6cPx9R8@GuM-&n`#b38;7$j3
zJGe*oh}OBgBsIFl=7l~jKUM5}A^S!8_c|CL$<odEKnH^)%+G33LwyVGcQC}kC<mh*
z40Z5;gJBMalm4<?B9I!rthdNZjc_p1!GjJqIcZ*D<848=Mw&k12{-og#yEJ$!NU&5
zIvD3*U{yg&CgVX<)U<YvcQC<;gv<+Wygm26ya+bg!4wD2I(W{(BMzoInCD==gGage
zQ$7x6IiMS>=?=PHN<AiFUIk*w3<nFV3IdNim@Uia{O@h^wt1VXin;QU2qPzVdcxsv
zI-Yj0%)wI*7C2b!V2MOnDDy=Qeyl3kM4L&S=w^zwmO5D4B}3qa9jR3(3!jl_D`dW0
z<{zsac}3_yW}bJjl7*Z^^3^Jb&JeKH!D<IDIC#;)8V7W{^pb<qRYloq;`(hxY>Vmj
zvdLE*yy{@RtoRxyte#%y;B~1d^{NRXkcTBBqMT`iEFWGu^`?Wj9Bgs$b~F}|h&Icd
z{M7j|??0~Iaj@0Fdk(fc*yez}c$b>rHm`d%L4RD6s)^Or#O}%++g0iKzJnbO-mfO;
zFOm9IN9p*HgPmMbTv#qXcJPUV6An%~_|(B?4h~RU4nB9V%fZ(UN)L^k@qR&_c_8r>
z*PkJYFFCWQv4fL6$0g1#Z?cD^MkRJ^$eTByV6TI39DM6wpM(AE`^dzwaf$CJnPCOr
zb4}Zu`tf4wu1N`A)Bb@t!xJx7XhI4H9sK0rhic-ugF_B}c5uYOQLg_KZ-pkmIyg+t
z8BkDuWTNz}O7lh)92%O;)eC-e@H@*#75u@8UncofQEL6P<fdT>GIorbFeE;^Pv%c9
zBOIMUiN9sZzwE`h#6MiAI;C2lFWh^7lHEB)_Sj7q*SR>u_0Yj(2Ui@NlT|KqModib
zlKXiF^h<n!^QcU+=G4d=^CgbX)`}laOk9<PCETddYYuW;6mvnp(5zTo7XCghIbcuw
zaCkD;MM<VXiBc};_xNPB=tpOhlyDgrc`ou@lyy<g1zj%pdoWqvMFkfXUC`h1o0Ad^
zdl#|1*@$E%H*(^`=5!a8T~u+Qy3kyFb6dfUWAm>cP@uTzE^pbBKHWqgAC%noaO79n
zaB(__{_oo^92a9;jCJ9<@LY6o(b0wPB5+aQqKS*pMa)GV7j<1!by3YlEf;YY)m_wZ
zQPahD?_{b}7Y(XMy(suJO$#1#Px`W`?M9Z>{5LYp6E5nxXvh*5^<B*Fn7QuzR0B7%
zeNC#D=D*SZT$?s_aXs7Rc2N=>P+g3#E|M;qx+rv!a?#91a~G{$+~}f(i<T~KaM8-e
ze-0~HanAQCS}7M*7bH95$5a~^>#K{Kcwnr$So>pYS9NhsQf})a?Sgi>_AY3O%(z%y
z3hgMv8c|2c8w+W&BSMjjPA=|t>D~mLU378L%SCS&Sr@`ZHwxLs%`R?n@mu%KT`8*?
zg61+3A<(9V=wCzhaB-`Po-Qt=Gfcb+#Q)Lss(N*5WNo|6MIRS^UG#HtyNf$qtl5x9
zlNw)9ZWC%m_Cr42>EbSz0V0!p+_@q;xXvc}a}-v^?{_hT5^yoV#XuK>Tnu(`ABS>Y
zX6ZBW7i5pN)et||5X@O?sEY?&jCAp!i(!(&a8j0H=b`A_n!>3mn$#5Zc`}Lvott74
zqvcyVB#GQ{&_95Shg__6@rsLwU5t0J$i-q86I@JmG1J8?7n58}cJV01>tc$FN8IS>
z{!~fl^F^&llm0zOs%uR_c)E+nT+EPfX+Ng}7TUva85O_3rg)s%;$pswCtS>NG1tXB
z7o~Da(*jS!@8dPahMM9tGR%8eoDMD)xL7FZthv6!k(%O4O`+Ek^=pZNPseHeU*cjZ
z=bekyE}nL=%*C@Vo^$bx8yWVOyI3KCPPGIdX(1um1s@dgV#4H{($BkCDOGym*}{8j
z3Hn!gfkIvuU2|ANAgA<;@^NY{@sf*|C0uG_W_hiMw^v=f=HgQqpSf7);&m5WU2LOr
zy4c|2Ef<?yY~+gJ;!PJH>`QHaI?hiI3m<NEX-+F1Q{PleY<985#oI34aY0WkyK9LH
zSDMsc+G_N^)bUz^Gl;;uRB0C<y7<V&b{Frv*g<MsZC1xi#O2V-Yjjpzu!-hz@%6P*
zJGuV5_{2q5i9nO`(6}J}{J8ks#V!}$y4dI93m0Fy*yG}BE*DnLZc53;&{+E41L+UH
zEo|5$(u&Wzr}j$ue8X;bPnkVZRN&X*;yW_z;zt(;UF>)9gNp-lfIf<gKjMNeWr()>
zP?`tzUy#RaesXb0B5d7~z7`kUod4?LF#8_hod8ETmpPk!^zy+*e<MF0#(DVN#UCz?
zxj4>s%tJ>Hf4ca~h3Uca@VAS9xV(EP<MCz?PPn-2;);utE>5{P=i)q9MK1mvg;9yK
z)M}(ARLrQg1)W>=e=hUS<je&Z7hPPUH102GUON&dF>kId2GtfszRKm=MR5-$Jmh#N
z=7GP_FVz;T$hT8#i$8xT%=J*xLn#lXJ>2j?h8{IZWF1mOu$!iL)E4=-CCYjz=b@4Z
zcqs3I4l|kZJXG*d(StXnfE$J!wd4NUg5~)h)=ca~pt6T59)n6Jbq|UM)q^G<d3BnF
zY=!y1wWHls={myj;Ma-xw>>x>8hB{v!6k7I)jibkzzve`A?Bf~hrmPVAz4S<R!3Y{
zIoi*V_}DtpzNMNM$?C~EqNayh9%_52!+uRj#69e(Be)x3daI78>mlKxo`?Egv_+wh
z&0bo^%ik3qtt0a5iduCeP8xY=?4gy1)*i0+P~f4thZY{1uxaw+p_zwNUBP`zzq+D)
zrRccG*RMqXO}Muy+b6%J6x0pGrv;|2nDR~G^19+i4{bc8J!CxG<e`uhJhb&d-<afq
zJ~_8G%zRK+{8(2^yFdEV)Xu{>bZjs4zt7*mjog$SsZEnQ6?y37;WiI_2s~KO*~85q
zZjo>oO6;LT){7#!2$`3=ISOvl)r(@L^zhKlLwAYEh#M?nREt|ZMo9yMv-I-N+XF+5
zM8P<+sWWv2<Cx#>;SLY?dAMIv>+9hz4|jX$=YjF)N#Rb8-J?kY_ju^<VUQOEVd3Mw
z9tL<ADBFExNfdg91Q{)b4Goq!L}OTxAs&W$c+kTr4-a@4=3#_nujwn<;a(Kdg&mw!
zIYZ<@R*8|EL?XqIF)SP{DKnDD7>?t$CXD65Ffk8#c-X@`9=3WI?_q+6r5>L4Fww&#
z4>LW?@}m98WDk!@U<#FUNVJoD#KTls!bk3lrg@m|;V}=~2iCtoIYYkU&XAZq`1ClD
zCnV;1nD1dWb#H89jzoB5L~<^t_Mil}g+zElR$t`dNxqfv0x#M+F66{{Fv(pg;m>c6
zFZNJvW(96Omw0&p)@a<9d3eUds~%qSu-wB64==DHJJqXzK}DbS@SKO|snSCVR*~$G
zf|VX7PfFBul5Rq*W?K^zd}R3=4=;KAFP!8inI$hv<h33yt;{DKR)0kzADG;39p|Qp
z&1`gJV*P);8&&XzhYe(4aB`z8A;6x#>ESJ|Bwn<|Wooddgf%v~addJEO9m9YE%O6o
zl7zQ;c$ce$kBUCt^RV5+A0Cdej~;e-*z4gN4<C5=(8K2*c2T>$=(@zm9zOA~lQVsH
zVUt93f#p*wn3?&^!?F<t1ipDGTdz_2;^xd39)9Rru-n5|9=`NI=R8G;=+?j<FLHVG
zHRq|Bd1rG`|3oyM`Sx26`#c=<@Do+n!}nA|HngPGe%5^;!SsWit;hQmsDGxJ|42pp
zU-d&Ce)e$0!%+{vc=*-BVd_;v(3w(dW;E-kB!oGq(;Er#n}<h66#Oo8mS42f&%ED!
zcS0QJ;!nwYxa{FCF8&_Qa5!Ys|9Cjz;iQEB<%)D9`sE^#QyyL(k~z)hmb9ucGs6<*
z=lD23b5Y9byoU>t=VJ*`qMmT;MLp#OiYp$jddT%r(#JI}{yuO0WQzMJ=Hsp6DGIs2
zjM7Emt|hHX_>p*<))S?Cl=e~1kEC&(AIY|ikFq{^mx^S&))SQBka}W9Jwb_;_p$u%
zh|fG9`TW)Mk@Qi?kDPVZ@KMu8Wgk_1xIR1|iVxL?;luQy`B+s?n2)#9`S|$%pRnc4
zBg+SyuzfgWU{Head$K!CTc#S%ZRPt2d{p&O%}3~iJn+s)%*W65#JnFOBPaXyVlJxt
z(a^Iy!y9ET*AwhuEgyA#BxJ|qK5F}@<40<y)EABGi_Y~$J^9$sM<XBgeKhcK|Muns
z>x)P0N5X9E<9Z(jex!TP)E6ZiM{V6dIT8pRYBlxI%tt#P?I|T6Eqt`~QL2Gx>Ei|;
zZG7D1qm_@=K5mq~-c&!jxx>22&kMh-FJ>Q1eYGG{=p!Y&d|bB3J4)<++6PrDL*iWv
zf(GK(TM9a`#E0;4vyUR5M&Rg|rHhX@%AnJTXwm4*hK59pQ9ZI`pn>RnIDHGHDrM5c
z2j$a^n&9I<KVZ~eB7d|dJ8@a=t#Z(({GICU<2LppKsrDlAGcHH0jdSK!$)5qANu&n
zM?W8T`k3ouo{zhH-0fquk1;;(@zLMMP#+KYk)`oo9|L`cB;Y5)f&o50pOJBHE*R|N
zK1!G@`RLIgGV2X(AX@*K`tS1lm;(_o%*SvaBYccxE(&NMW&T(LK@TAh`gpQQW|WVW
z4I)!2%Rgu!#`+lN;}IWIeLUpjVILEGO!P6{$CY^MlM*=FK<sZ2b#`7nHOa?hA5(mk
zZzyO)t=mwHe=Nf*>g^heM}185F^i(`F`ZqYn)#T?&NhtdPG~5WH56|&6rVQ~o1f1f
zYba(@_|HZAr8z#zG>UM%MxtpWG2h1%KGsmq<krVioGCt5_*md$p^v3Lp7ycG$6`5x
zODG3fmmUMkeOC0(Z3ROciDf>X;XpV!TS}Iu(UO!GOPptYJV!<HvD(M;oVL;>*Gfs}
zZHe$xqsV&s0%hJ<yyzpham1A>?+d)_W37)(J~sP!#mB2Y*8AAt<25-P>wLUUooO76
z1*`OJEY_`V&av3YKKgi*(?_<l>*;91PCZt5X=QedBu-$9kGFli%SGPDI}&ZHk8M6|
z8E#{-M0-c(+kL$6V~39qd~{pZj=p6`?c(Y5taa(%K8VcnEZphiV;|>zT=4OUk54(r
zef;9%Gpdk}Z+-0ZvCGF7KECp?$A>;O^Q8|uJlV~~;ihOfzHKZxSl2QIU;Eh0SCXZ&
z;}d^L9*A&rkIZ*IzV~s!$B#btOLe8Fe~_3oo0q&klG{NaG+F=T;}8Y4Hrrd;Mg8kV
z!@>-`H2mu0u#dld{O#k2kE1?*_wk314)3LZlXQ+wFOj@n3~HG<=Hoc~Qi3r8B3}pJ
z#Z&thw4<fHmu%%9AOHF|?c<D(6FyF|(Goc2gVyGUB*N<JqiMp)a@NN=DLPKB8>B~q
z7oV2`^l^!caDYkyE>q{Zj0d<bz*R2(K1u}04Z!Z?1Sl4uxP*5}%A>2L{u4XjmXzhC
zWKO>j^s2$aG6Bj4s2CtGK)C?r15}U*eD(X?nIn=&nSw}G^uxoPi4HgDthsUkCx9EE
zN&qE*9>55|E~^2w|52!2AoyW|JeUEjAeybVe8o9SI{rIFYu|`?VDe;n5WtrJ2Z)7X
zfLIVoY0_8iTT33Q2dELCMSzw8Y6hqkph19!0l0sQ2dEoF8^78z=O(94fX%t3SwbUW
zB8av<^@tfnHp5#B#DC?D*j#{QfW}-8^#Z=Sp8S_j76hm_Ey>+rQ(2K)#0yiBL}(U(
zw!7v5o*bSea6^DL!z#21a8rO*0l2|qVQYzVV-VT9xS?W0g+a8H;`S^RL{`nPYvPV!
z$xMKD0V9&*kpS%jbO>-~fV%>8B-={<Edja)C<@RiKxf$_(#ZzsB4JX#zI;+h_~ro3
z9!iwFy<pgksI6`RZVk{=zUm&JM*zNJ>Z9iOl7)Q&+%AFM^3`ntXzruI@Qy&*8*eY@
zD*@uOuwQ_C#uU)%csGFnV*-o~&_BS-6BC02+$SmA8(=_yfdM{kpZ8x|gZ@YA{s2P)
zjO1g0p#dHUFg%D1j1{*O-ThLDVUi99y3F`?Bsd}ft%WH)O@rYm2`_jiceDhEz*jVQ
zve)ARJQUzzsuPuPRB~c~_a2U-!m;}k$YhxF$HW9JrIP~C8aX+Le5DeY8sO0Y&jeT=
zU|N9bQUVKQ{uoCm!2AF+0?Z6Bi;6uiIXl3d0FO(Aks}j~2ghiAr7ooA2KcjEK@@s#
zXoA2KM4%7`MevjIRVg<@SRgqepiD_F3a~i9k^oBsJRM+JfbV-2G<>B5Wko|VrNL3_
zJvM(ufM)}|9-!OW63+#AKER6s)&%%zL}I1PR|i-{g&&mQ=rd=n7o?n@I+MqddP%bS
zDn%M#t<=5$hT|1J*6K*)*CYa)UPsA{id2Q;zCOT)02>3m5#UWKo*a>(!xC==*d#}a
znEcB_;ge6MEi5dTBuiTZYzy#n48O$iE{A~gB^Ip@+XKAM(Frj=#Et+T1gIXOMu-ms
zd=%hJfU^O12KYF@j{yz__=IW`;F|#72KX$%=K*#H_=@WEV0>4AF9Li?wUKk5#3znx
zzO+ERb$@aXxh)W1bD{-U*)qMSKpc}e&E#F+eF46c6!y!-B>iDdt!=6A1KdzG3XSnY
zfCB-xuIfOTtuS8mPXP`EI7Urlj{^J>;Anu~0tDrfzXmu=;}3_gc{;a=xNu{7;FffS
zvQhp!m(48||KNa@!$Y67-`YA_vR2)h`7^*@0Zs%s8Q|{#{{;9qz}F)atCvT=T>Dz3
z)3+5cU7OeL6qmaP6MS_#z`F5?zt^X`t&Q{XT!8Z=9wINqg#Z`1yoV?m;u05s%0EC(
zh!w?=`*`vSe*(Bf%+B09x7FD(iK3ZZiiIHY;vq_e(QtT8qNUrvKhr`2r9zYrQ6@xL
zrh5yn3*lUcgT>LKiCC~bT`r6Q#Fr0IK?1DEG(ES~15HG+3x)Y1Duu8@*kR<Uzj6pI
zgdU;_nf$!D5<(3zQ~qW>*+jhFMC_6+8X-){$+Ts;vvy`r$wGG43E_qaL&QRO62T7<
zNZ_}>(?&94`>WrgpNXonNA<_WtI4-FCdF;?ZOst1LWmGIhlq!$9pZ)%twPiZQJ0t@
zk|92?ol1mg5Tap-dLimd3L|Cpxk=F|MB@<GhbUl`R?+aC+K}EpCc*T>vO>E~)Oynp
z%_IZOL!2&-+q)HzNdhfGw3O8D_@q72%Ku*2I>e13I)vyLqD_dKLbPQ?GFCcO7=ojd
zl6k2T8NzFl;*;XYglHF{eTW?CXWlnc@4lX{)G}SGe5xo!rx00+w_J)U(K$qy5ch7%
zcK;{his@v@6i4uI@5C)3x`r4SVo-=~A-ad?6XNy|Jwn_XqF0FCl22*{neQ3m**h{D
zs;1eC_mko~3NysDq@bwp2+=p>`icG_`h~bN#9blo4skJ-(V7af@n5?uWzf%k{WAAT
zvV*r&91wzX<J(d<q^p%k4-Ro(h|wX&gt$M%kPst6j0`a}!~-FQg%~a?Ufvc(kgwM?
z8tAq%AJRG63_K{`j*@w`4(aryXm30=jAqcd5D&3~|D?ur&bz;<_^LRZo1%6ngqRrO
zyAa=pm=t1ih?hdV9AZj{M?yRq;;9f*Lp&N{c8ED4rcu4At088Ec#JGPkeES)2?-{e
zUr3NY;>*TGfmR7WPKj-cHm-B2Y{L??gv_Ui*5%Ekh&rWaG!^`1e}bcPXFY!4TM%L)
z@k2ZpVo`|2A)XGgEX0x!OF1aF74%w?^GQ*PEshN{+y*=oVmaq>h}#}aFdQmd>{YgC
z+oq!Ytwp>#{d|a(AztL98=G7eVzmTbp!y9fNRNuve_D8$uWBmztG6bMb|(Ddwl>5o
z99%BHAzlsfTF5gPcr(Ph5U+>W5MpD9^<-vn@~-uHgA21QP8E*+E>2StH&IJ^6_Bg9
zLTn20PKd1`Hiy_k#VdigS!-HyTT`*Wso+kVi5seIA>Iw~UWn~s^c9s-y7lP)>&fm1
zBS~@x^#K?E5MPA&GQ>wAc1k&X7UE+n*rdcKAwCUp$HS4i*sYRbE%xZx=;Y@ic7?dw
zR8VM4b~CX%#8>QNh;Jl?JyZ!!-e%Dqb8_-T+bnlhl*6|nSbZM{eMtP~KT=(qMLWIy
zWRJ5fhGH=s2=QZxKSTT#;$VoMLL3fpB*dW*^SYM!CB&~%8GdH>dqpO`@iM$}%L^6e
zb;ukI@f(-WQ3c0B{LXc9Xu*UY1%Jr42yhTDZY^S!<B~)6<?j&xaCzh;3h{4<6CAq`
zXF{Bm!ZeCiJQbp-SCe%UlLMNGXcR(TmBM)r+{nbhQArvPNrVc+K_PG{#AP`zuCgz$
zmSDf?mn?lH1Z{EoU#6*4*SIJZrN~C{7)r!o#$d&e8$-z$D#nl(L#Y@_$51wgaxq*N
zi|nFhV)#}@RDYzIc(z$Ig5_hV5W}?lk}odH9eH=rf3{PqM}7>ISS1EE21<jGT`I>=
zB^G_--rP)Z^r;@K{&h2<#h}MP9X8n3_-OtzoopsJz69(ToEU1vP%{QM1}}y%hFC1x
zx%n)qk_lp%^Ir1`%|*u^(a=|op;`>hn~Ul(G^*P%)?D;2igZjg7Y_|9s1-vz7R{`>
zG1QJ>)$j!MxlRn!3NlZa_s(8<G?|ED&-i*&jQTM&h@l}##W0%<#n3p0>tpC0!)-AX
za1RqhCWdw~Bx7hA!;LYtiJ=)8V6S7iA%;iGp+yW2m%{fvh2C6@SQ&2>!_?-24j5a<
z!2DSWA3dHXd{Yc<DWVt(V@Of>f2CMR=9~VUo?9AkH5a|gVX&8KA47*2Zi%653>{-A
zilIvk*;sUlozCSt#n3qhx})S(h>^`@-{mX9H^=aEb5U(h;(T+#x7}hmwU}Ws(SzOW
zTe1I==tSkMG4za~R}8OCj<bZ9Yv`i$z=Y&$E8=}9x)>geVN?uv#Lzc}K`{)Dp<fJl
zaztY2Pn{`N`mPx6mb*Jr`!4`cUJKFxY~H;w42WSM1@&{(Ssrdbyst1V{Zif+!~HP~
zi(z;SLt^}9hX*8u=Jhl5Y<b~>?3+hZtKZ1-f=13m`6FT&Dc{nA*&*r5?5|Ck(J_pP
zVM+{-#4t97aWPDcVNwhaQTQ>8k6}U#H$4^I!(yu4LeSS)n--#bi%5qjv-RiV>))<u
zY)>D2Chq&GsT{Z%rpNG@Y-n068a}3DPqtb&DKjI6nK8_Y;c*ggA)FaSkF1EuGA(T(
z_&MHxK0Y^wc`>{l!#gp|kKu_JUWnnv7@mybsTh{U@JtK~Vptdh-KH&#VNnc=V^|Wy
z=PktPH=@1YosH6Owh(tb9?b$e^L#pn*B*=D<uR;?;rSR=#_($k@oWs;teodq@@C}T
zjR==z?^a39SIhjKGEqgXrC1ZgOEJ7o#f#zP7}j!>NjAnfJ&C)Dm3}3Lx6T(fYAHIj
z6ze$3tK%)D`mrwI4KZvaLJXTE%{O8=G`PZ>9C|-}S4%<vghbmM0}tMBq3~Nqg5@Qw
z#S+*W!?qZ{h~Z1_|6_PBh8;0{!0}oV=PCW|QoIz}`!Rg@SkYtmWj>7IqZmGo;j<Wa
z{vS_Y0j5Ru#l3<e2D|z*5DQ_a&m^(D)GoE~4$BflH;A2xt%QJpNJ&acr-Vq0iXz>e
z5&{y^r2?YgZ{Gj+ea|z`ea_subK}&#_ndQQ$jq5w_tuj=mdA7JE2%HC5@_^HEFhc6
zZw(lyhi@xKtLMa@Hl5Ke+?L6o5n~@~rYsXzZE|;IVs|EX62l#n{L<{k%F&)o?B!d_
z)5)}~?Yn1VEFG;J9mvGNOdR0=ssA%^C=)mC#^Kbc)3W1njZP6|M0zgImGG7+M|wOH
zCo-{30ds!O#7WAOf>H`jW#TlIs)9la&SYZD%z_s(agl7mnTsm-RrhQr&ZPiu49}+k
z)^I5kmx<~YS$8P7LOIREtxWuriEEj-o{7KNC91?0S%0R={6&ROBr)yPM6v9M>6WJ+
z;J-QeZ|<9v$M;<R9h;fAGw~l8uXWbHWV!AMKIMNpa^7>(6kO`&@*fkdt$-5$z@ngn
zI~Al?DaRL?-mRdpf~OS}S8$JldlfvYpr{g8b)SL^1rI2=UqKPRqQHAE!QW@|QL(xn
zD}PXl|I@)r9!izx&%JodK|QSCkyH~|4P%ARe`-Ib!2Be^AB8`m#Q!uYrr_~Z0lv$>
zV3dEyeNw?w3J9?Ce1+J1MuDn8Q{v&2P*73<N0g~RN!9Sb7n$k`j8x^0g0ro%Oa-FE
ze<UZiEhWZ({Uf=yLZ@&%SoXo?C=~b#h_p3VGnn$P;zU<z1!WX`s-TyGvI??@D+L`$
zZUqSibrj^YdkQKjsG%TNK}7|X6jV`ARY7Ieuf(TfbCmdSako^2Tae<V?LS!~4qDX|
zR9C>Gul&U!e`qMjt+_wes;Qus0{*P9wgLvlB~vwoY-^_#W=H%-A%Q#+>lf?2;}(w?
z*HutYK~n|ISZ1|VUqPgxp%R}XZlLg6F|mX;QqWk54<I+;qxX~S5-<MMlsSCbTtN%s
zQ$bq=Efut4=ZmMcR`6POgrBWbhb^{s@4X48JaXGkL3@RtLXB&<N3FwO4W2n*J*VJ#
z1#c^Ohq!&idO^X<3WG55q5}S3_$39yvZIWj>i*rynw1^Bs^ATU2m0`ug4Y%Nk{un&
zj`+vhXVf|!Q-gg=L8lZ@ZDriU-W{!**%5(viADvT6?9SXeyRX7KT`04f)82YF{|a(
z8vpLKzWd4gIMogQYk2oYYsxXJtAbAybSDNB@I*HMoyt-7P{7|u_EZ?vkVZ5Hmum6H
z%KR5?Zv}l6Ojj^N!DkBkDi}*PR`9ukehR)&FjztVR6PfdSOXOdQ1HJ$;b!DSr1BsI
z^*6>RtcNHVs$hh|U{MTHFg(Qr{6lN=x8m0K9k>2ln;fZNl!DO;#*pn-)MfsFWAR^x
z*>nCUw{7aDpI@cMLaa_zFkZm~1rrraQZQM;l$6?O-#V99k@fLgY?qbrXU!}>O#zQl
z^K|x11+x@<r(n5)uNBNDQ4}mxpyxz$6wFibje@!4=iRl=b+m@9tIHGa^A&un#OL3a
z?ze6}lk8GDmsKrF<t(8rB$B*cOe%DWPiik!u#Bvp6V2Ua@zJf#*7pj2P_Rb9T4H{^
z^`nBHD5vCSs*X-^mul^^R+98Yqk`3`%xBlu<sX)39JiKfbvCSwQx;pNV7-Ek3O13W
zj?^HTHn7o^7EdTN&xtlG*plkfR)ybAw7%II|C>0yqm{oZpFhUku3(3PoeFkQ_Ep#_
zb}QJUprDF7RqR!;kD5WjIR*O_98hpX!BGVVNv5W`he%UO(>Uwb6oxzH#QJ~wrdlo1
z?q&eeZwihPw^Z^9jw?8!;CCesWEzkYhbOUQ<>NJabxKali5`D4?KJhjf<MTgsgDDf
z-&5<yoH%f<P+D}JVy@tZf}091QXwmh(ZzLYODg|VyH`_b*B*&IIT1ttuI5Cirdoee
zV^G&o)uc|K^EY9;hvvL|yC&N;I)}Fu{G;Gs1^<y-3gMx;wQdvnQ>^=|M2s=x(9%@g
zp`w5qPgo<H=GM9vpU!5C6Vtm?6jJeoiYHavt)j4s2UY&J5BI3JS4Fyt3>EjKUc6sL
zkrcpSExyQsGZ>5jKPJqS@o5jRiDtP39#ZkJibquxRq_0d-0@GOb>kPLNsBN3@9Fr*
zR1{P3c&fHC<74byIun2Xl)zIeo=)YfDvGOkMun2P<+1b<DoU!zOx=1_qQ+HX0`X#C
zA!GR%wx_Ak)i{{bP+_XDRJ>g!8c-#gn=0Aj-sH|Ik)y&@(LzN_6`l%TMGY0XDgqUy
zR8&$?Sw(3TW!Q>}gbD_2mQ|6(!d0WIRicNhMzyL&&sL4ftEix&q6(ho{-|p7uoib_
zSk<U&!5n_lc6rq(TSXNWRaNAuXtyawb^rV%KjB+VjoGHU8vkBxd)1hE`0?|aDr&JR
z74=mlRfH<)sK{4QJ2hAaq~)m?pZZ~0)4K7}g;!m&_d_^UHTqvzU;`DAipDCMsPPAo
z8>U`tL<|hiDO4>gUM*rJO;vs_vQ{${&DGTZ(K?4CC&pFrIy&BJrJ}Wpw^Vde(MCmE
z6)&rJg`HQ?o^(|4f{JHVbWrhJs%gH(kLokcsTMJOl)#HB$gwY_n$Gzn&dGQ%p21&L
z@tTS^Q~9r_Qf9tE8vPsdA>(72^6Hp+bWe%sZ58jN;La-ERq>vR4^(`Z%6UJPk{O<_
z79*S(_$Zb0v5GF$qP}w)q@Rva-9<%L;(=%!XAQ3weWGIN#=5p1%}n*Pr;1Ni)NF%V
zZO}_aZxyqvV@`GSQSljxUJ2zZp)X0V;-j+oxGegq=&#}z2df+mAcLv+!o*+`g9z|-
z9es2RRxw1ySPkPe3{^3V{I8*?hT$qksMw)mr;0CCj8rjS#kVR(sTi$dDk-933|~|+
zQN<(`H?71t6<?9ul$UqXwp?{5sA$?>Mzr(N_a=H5$~({{Z!(MZlrmMqDMVDAknpI9
z@$GbyRmImF4tq6NMhuaeDrT_*L*&<*&ZS!3FT-R`>d`zE->8^Ncw+vXY7x_4szu|!
zlM~gVF<0CLDi(6QDpsjjq++p(<tn~cu|&n3A+k)xcf==|bAtTXTRMLwX-nnoeA)L^
zg&k+CAJ~B@@}r6sDtcZO!au3_IW>fpD*E*l<CDC?)uSn+gxwx9RaUE5qhf=KjVjiv
zSf^ssa#^opSDCb9qvcv}sW(X`whb@t%h{x2vx==MwyD@cboG?+S!qWuW_{OJUa67A
zK5XZ^bA)}^zc}vFE+SCH-zsjX*hA${=2US`#Xc4LRUB3E8)c9hV{h`1io+`HRQQ$o
z=Ump1Sv^|Nq~?QP$bAdth>G%yq+nm+qhl(Lt2m|Nw2Bidephjl3PcI_jgc=G3Cq_R
zE1mM4hO^{ge>pTn&Zzi9MfU}A=J({B1yb^=dtSu_6_-_9QE^elyc=>!#hE)omMOeU
zx(t)8C+w>#uBrHwoZmf*^|ULIe`K3nr!4f82P=k+{z?8t{dr2hIh(wx;udwahI=*q
zqvAHFISqGd_*cb$)cG0;Xm~p#tW1OxMH(7pg!_lZm>*jpEON~)sDbH{%Wj+HQeuCi
zkcPW86xL!ABvwfKb~(+eM{iV*?$dC;h6gk}sNq1l^g_d>h=z0x-(Qdn4L9Gf_2mK~
z-0Cy=^|Z_1@jj&CVGUjz?^q)z8k~59WvV!A^!^FL+s8B%)6h&qa}AGcctS%$LwOBP
zYIsV6t-;aow1(muGBqd~ULGLNXegoKkD=0XSM3@7rDO_TF+iB3YS1*88Y~Su8|o?J
zsz(N^x*~n5N1yhU9p#*fZE97RD#8{o%JJV^mf0~?Tn&MSQtYP&U&9_fz4@2&xS42F
z!y)69)=*YMmWEnsVVP9gyHui0Z~4A<SWd(9Rh@TU495+S3K}YEsI4JSLnRHBHB{43
zT|>48a$uoZQYF=;9O{8-a&3WpQ^l#O;p!B*Ynar~kjt7iBsDB7pLYL9si|S<$(TB<
zxypRGeL!B+6QPE)N8D$INF5FNq@adKLtPDnM%eW<R2U}&zMmkKuDJCzuow$}vP>Fk
zXsn@$hDI7X9?a=$Cho{`R%nTRb8;$`$!n_7Y9s_&XlSXStA=hGT4`vl;Z+T<X=tON
zEr+S$1r6;qwAb*QhJkzCVMpXy(q*UHffzn3ynXY8&D%3e7@C~%qK3X-%F7yF(eOiC
z?<Ea8&dIS3UY#n=tCd3Kv3!p1bq#N5ct^v#8s5}!qNjAy@ag+$9W}hAVP_xd{F^)L
zj9YA}+%ZkwP8B$LS>Ds|zJ`xAbk^{Jh7UEov`9Wmr4t_wFL;%ve<{y&^Y-u0SzbLl
ze?huv7^3G}^X1E8`JZU$u3;ESprMC`o*MdT=+8zq^wRJd`>dh2hCUju^)GmQg!Efn
zgT1Qzxx9VcJz6^Lm0j-V8ct_~yQ)WxGs6MIgN83O3?>PP-nsJrnPkR+WYWqXHdg+<
znl*&_U&GJW<U;jm`vfUDP6&_CP-mEo(lA=Xmm20zl#v|ES3;HUpGlH5W3*UH7pRn0
zxJESpYSvd8##1_UJfUNPhKU-E6BQaJX_%~GwT3ksrf8U|VX=lK8m4KOu3?Ubxf*6@
zn5kj5hObvi#oygo1gIPehligGy?(OfkUaQ@TxweLo@&lK4c};3K=xyoG^ll)M!n=)
z0=tCow(BQ@{!Q*^8ZH_ni!>Y_EWFxXm!%q(ae!>MWcu`d?swD!Bsclwx-8ewrMdUS
zT;W9XqlOh4ej+b5^YDWd=ppZ}k|Ad#d#J1={u_nAXjnxxa>gApUG8Waj;a~1C0kMw
zHSE=}Uc&|r+ca#~u#pOFqioi&g{q0-Q_p#-yDT&kC2B<3TcuOeaI1!<TH^T2;SRD;
zs;j#-ex4=#vX;X>?;`4cjyqqWMszzXZJ&nyY<G$rr8d)WP{Sd<qTyFc;*BJg_SWt)
zcZb{WMDmD+>qF%GNy3yWz1J-HE%o9tzA{9PdWnN$<#&x|d2pLO)NqP?qTvdAsNoEC
zl!gl$E>eEUY3t;ihV$gQUh>x|_pQM~RL|Wd=MG8QSs8a&8q|m`X}GMRreEo;8d1r%
z-Zi$a;TCD9;ZF^JY4}^i4QB3@$2Pj>nudM97UE%l@jRwCDUaQycj#Fciaaz=`tO!f
z=L-EtEu`aq9Yu89p`(C~!aDBJ@$f(?sN*i3-*1WGJ5y=5;^Eyo<~FFwoJB(ue;rA#
z-Ir{+S*CP-;9ec~=@?ccD)o2rsqT3_FDKJ=WbiE=kLY+nhg5d>^Yw>xthgl)rb@Ds
z*)<~0q$DfTM|Bj{v8qN?OvjQPLXGj5&JR%JCm#%ZZEzcHPV&){I-b%|S4TY^PwObI
zqmquwI-b!{LWirv(@|1KrVdkwr9;u7>iBrL=p0%P(R4gn&tY5dtcjV8m!V_Q7I#cP
zAp@VS=7<ggwhl+f&Y{w3ppdEhZxUZepkscuu&j<!sWPQ?lt}?rZp{4T8KxAOEFI<8
zji<tdj`BJx==d`?iyVln$%^do;pFcdrRQJqZMKda9W`~-(osc6RUOrJ)X?$I;8?v^
zBiuvQ{UbF7%B;<jo4S2pFBijClSv(+jymksWO-zr)Yh?ofFy=Uo{rzv3a`U8q9%4C
zKULsn(XhUb20C8T@w$#kM?)Pgb+ppaNJnEGO?5QW@$24<akC|Txirx+BR6ZprsSKy
zCY$SMK{i+`$4`slgaqEtPH(NFjgA*|yr`qCj&?fQ>v)!J9hDi`;hm!j4&ITZ+V8*t
z_LApxyfaZ+pKzZ~-7<$v_>ztfSIa9pUQGcn>p1*=8gmLvlmn6=W8bRiyrJVw9UqZ=
zIy&lji=^)^@9XHKV_{wAZC1<7uZ8i)%zszMd#M8V6b*U1c&D^GBOeeOJLN+i=XwaQ
zPMf5&jxIWS>bOxOD$q~5>gcB96CzX64`w;)8tJa12YF_VtouTk4o-wjKh@ET9D78v
zJB0fNO6jxmnU20XMj04w;By`Qbfg=|FwkGe03AQ;SgB*6jzK!6>6otb&)|tKbd1pP
zWeOgwbLzoR);U&&=@?EK$&HjUdGYN8d3l_SWaT=>>KMmYmdR)`WNsAYMq_lORdzTv
zIIY63bc`qW>X=NPnI{v-@Mj85Ou-q8<*nSP^=R2VTc+q>I#mZ(cc)JZS6t2)GDF8q
zqLB=&W0sDuDbzaVrAp4$F-Hg2jlb{Bxo@hppCX4c!*9s^M8abEmK&Me=<Xd-V?&Z$
z%4>m+$J%&X=gDF+@E5XN$M=+99ZPjABL!#3cT_KZgxixw`xBqF_6Yx=<3}AovCi#x
z?y4KkZyl~+qZftOqr2TFg1md}#4l6@I?m|$L&s_zYjm!@uvf=g9qZUn9b2fWK9}`6
zHt5*M;oM5HiDk9o`Zv@GH&G`Hk(TGPx9ZqNS=O<O{mc)y>)4^=@zK(Ej4+*)8|$B+
za-(x?!reM5j*^kp!o%OnJ_?kMV>*uOIH2R8jw3pbQbu$f(sAW-@-R6zH@cP^$z~a{
zP0~*$xheaN@?IcJ%*~lNPwuZ75k8^gcO55noYIk7-Fcyk^XC;I3!NsLopgU)AU_XE
zRM?-BaWLmBxm3r0q_2VVIxgt=OUK_jF6y|X<EoBpIxbVo)r_uCoqj3=wwy{5V4c^g
zWGKZY^WPaMs~5<+jmdX2;~n1(9XH7jI&SN@rE`&=(JeQ<an0z#F;c!}^j3P<sb=)A
zj?)KZ=$OREY2h6P3K*zf$hprzK?8RhC~U<0%DW73U0TS%-3D5XlqP4~CmPqh-^@Sp
zPqOaq<UI!NHE?BzJFsR{c}Ki#zTb$~*hLJmAzt6t%XxsXfo2Ap8-Rg_3{*5w$-u(~
z9x-4VunatEps0c32A(nSn1N!crk^(OxPd1OJZa!510UTKs-TOZv*ozW4c)Ej(z}N9
zPVu~tE@yGkUcx|01F8YdK&F9jX39|`p%|DoB4*TSH6!D==mrb}llsOv$Ft)d2UqW9
z2a6c64U{%e#(-nMHQ*Zv*lugDdDV0;)in2Ci}wqwW$UF3$aLXi^@pHbSp!)H5(dh%
zlUF3as#7k70d96mo=R3QaK_84Un6VRH^TkM3M*0BK(>Lp2I?8eF;K-oXrQ)%ss^eV
zs9_-2h*x?e+g7Y@U}>o|ZZO%^ng(haAiE~n$=s|v#>=ofL#{mgT#m<*XW+&RQ5Q%Z
z1GBj&ohn@R=Ns|jfA>paeFF`MYB#-!fylrsSF;)#XhcL^mtJSx_kWhg2G#`m_9pr0
z&hW>YQMtp(rUri9?sD<j!az#{9})wkzJb;TUS<sj+8FrvrnEEA-auQTYkxBP8=+Et
z)<6dXFBo{yh{gXo0{e5GH?X&6#M^yq-R3jo`8n|#?<E7=75+IdXWtch)xc{8-ZIe1
z!0W`xQh9@~lS5`o{(`iQ2CmkOxPX7DWcXsP^H8nmZ3FKZc+bH52HrKmjlc_K)3`3;
zvfQc_agY1~aWz%0U&_i{C}i4?4RofiHqg&N7Xw`l^fd6Pfo|kCKkROxhk;Lwc&~By
z5~)@z>ae6ntGmL{MH5`E^fJ)fKwkr#o5~pJKaZ6@20k-zdYe0USv<8-Z#S<M_54=)
z8yH|<n1SJ}c9%QQz!wGv8yG}3-WzYwsLY2L7;407eC#^u@~3bkHfd0T)Fj165Funv
zEhPNsLHVexGtvO<Hn%ssV+@R?Aeea4#5e<A8Q5oFzk%@vCKy;?U?FqrI1>#_F)%d+
zPa=wHMUzu-qrYXEf$0Y37?^9I=ArZ%24+$;h}e1#*CbyX_->ZWHZX6!q|FwtxJK8C
z2yfUV^T^fRWj+PUK(e0{E)r&JmTyU{ujSNPchc9g$iQL)zZh6$@Do*7YTyS0KN?tO
z;P=_G+`#t+%I%Tw3@obPa9(C@-xn=7^195g6^-7SvBJR523E3H<<ovL;!VVv68SyM
z{H~YX#jhlot|oID*lJ*#fwczK8Q5rGlY#Xd__P{aW^YIVrQ3Udl*(IME80wbbs%R8
zmC|^5ZnD&M%gvC)2iIl0fy>8br-5DMjTFpc%;6$ow}CxmQ3E^oCa$*e5_@yBDYEHn
zIaw<@VBjEyixN$VFmQ<CY~T;})4&l9(7;IpM-BXD;5hlmz<;%(Vt*x%k>9?G4PP{W
zE$kj|cG9+HyuQ}`?2u$fA?JcqWT8WH+CalW@>mZ!Yv3Gd!Jbq98@RykvHu1(XXc;o
zE*Gh7_Q|DG+H{u?Ub{1+>0Ws}8F3}w#SX6<_|w2&21+F(E~j_xNV4)i2i(7@()-EO
zadOMRKUCBv?lW<ll1mM5;!YF)krhpxDVbit#M+JW%^sJlg*!}~e<ge*;c#t#U$%3X
zi9#j{o46;HU*JfRb>3|voE*!0G8yT;;ur7Vm$=_V5fcxac*I1yi3}4kp?hKbWJIEG
zs~J9E;z1KXewfGWr9<+NiN*VJ*x??@h>P$?O+03zn2Dq9y`m;YCnGM=A2-20Db<BF
zvmEyYZyl4TOgwF(g^89Xiko=GL{$^jOq4KDl7&t9CNfPZCd7noLN)Q-P|-~oDL^y9
zwwPm@c%zQPt*&KaVKO>8BynR`obRxz7GbF;^EV9=0<IY^Ai2B`Oq4QF&P2lGFYnQ@
zPrN}WYsS)1#>DpXN$Y}SnP4U_3Ql<w6--nzQQ5?TYR<M~RMEs;3*wyupHAB9W}C<{
zQN@gxsb5ud&L^WUt2=yD<%m=_QNu(X6Zs}`O>m7-(?l)8SCc<&mZ(ISG*R1(w<Lr^
zqI$F36GmjSJQEYDhxLa@T@&?8G&0fHM12z@uO=fC4NWvK@$aD|=HxJ~IXm7pbT}^c
zN|kG3qN$1ICVCVJKiMG7Ob{Dg>N<LAfnB#+yv%N8qP2++O?+gcjfu7<UN-THiFPL1
zn|R*D3nmu1iDykbmqJSiVls@F)6-4-w@&8$k)&4P#<tfCdC^3{CgDruy3+Z5cF3zH
zUNiBwiFZuAPP!1iCf+jfW~!dctL3FZa-)zF?01J+;qk-LiH)9#O=PqWk4dDxYl3}#
zpDf*9-ZNth15FAakkD)7sjsC%7=3J_vx(j&`tYfVt|oe>YVO7tO>{ToEl>X+V%5a*
zw0rQjM=JA|N8QWA<Wm#9h>$|gw`)YpcRnNYOL{*O{Y~^WLHXkKxrrUOW%(9&0NJm6
zIEXcO&1)S-15G?|TnIF75br&Qm>6neqcFf2!%Pe}G1tO83nNT?Nd~r%X<?*^Q6~1A
zI6x`jC@3Z-mY5hz<!@pRUor8OiSZ_;u=UhH?%JF-!Nf!p&F01S?MWskn|O6kEI4&f
zCu=_%PBSsx#4HnEb6h5fQVw<|DL76x97~eWyuI*StT$$xv32*K7GAef;i}AV9{F&X
zEHv>A`OU<8Ve~Ee*^H;KM3%!_PF{o;aroWx`aT`5yO_1q#4;1>OsuEGnOJUOrHNlm
zd~f0h6Dv&olxpI^8#3cU_Kzk{B!!%#e@@91SFlIhd9ThD<&3+Ec$g@wO{_7o^HMh1
zn?{m;Y%x1rYsT9Rn(;RfnI?9b*v&dkY&Nlt!f4{5^T{n{ypH0ywwkeFoVHnFh8wya
z#O*5CX@aJ_F1b#{eHB@3kBPl0No@T{NNP4Io4$IA>|=+Q%9fkSgC>48am&O%CJvc6
zY~q56izbdxS(!Lx;xykiam>W;CQee1<%h>joS=4EB!p@6|FeJG`kXLYrsY>IAJXv4
z4agaGKHE8K;tw<4mGENub5yew*lOVbE78A1$eqO{(#yo3CjK&U#l%&PS50i)n{)nF
z@|ub3M0Mn7TH@HT<OV-~&PlhJm-yR6zd1QK$lD8q8<qiWy_;mqHnmoV(QRq~@}z|a
zE&NA1S}0`UZVPu<C}81E3wK%Z0-lSgf)>~cX+-;folVI@Vf5Nrmy{}O;T{Y3S-9WA
zz2x4skT@jIkXSXHL=g+=7BVb6mCEc<F>G)`__W91*ct{44_SD^!jl#r=HK8gJZ7Po
z1!DVA3q>vb8AcDRcYB?%Y4oe!F<j9pjjP1REpWRrtEJa#v-^~Vr!8#wRGzUgbc&4K
z>=w5$@Jj4Bpi8TSg(9`1dVfgQ9->%KExcyobqksW-9k+ZwJaDGObb~S%2}ur<XaY8
z3!VkBU|ZO+KIsr4H0LfAt#-s)-$G!ajD@lm&eaV|StxCRl1^XM8>JH5B0W1ZUW7lm
zU0$!@WM?}G3*{|Tu~5}Q1q&4|WLwCwP|1QdQz{eH*<qn7A#p-Ge}`$Y9^<>*t(;z;
ztY)FQg&G!eEle3Id9|Z8(_?O|_fcN)6Yd>B-V?(mX(6=G!a_?6wJqdX{1ytDa4Z(`
zEi|wYS*UAa*+Qvjp+3jHCrL4<7pz0=XmTN^XYHsV-~B=wS(y8L*nF@Q`c{mIGHj(Z
zwc-Uy$6dl-G&k6tk=0k4v;W=lCe)6YwzAOLLI(@aS!iRSt%Y_L+FRfz;@>N7^J}v5
zE{9%&XPJ|Xf!U{p>GKv|u<(+Fmx+yWQg*H^ULh|M&nu+f-iohSc+~>;ATv+Nsieb4
zv;f!HEpJ$O(?Wj>11xm3@Ro&c7Cy1i$->)IlAp`R7T!rQ!21?Hu<)*h_bkxM@ZJa^
zSG-=^Dg09SVXDAKY+_Hmtd$Y+QB{Y2ht3wdSm;V3){f|$>b5C1SarA1!$KbmpIPWh
z<d2kI7J6G)f870)1pQpfAIO=$*CkG-UP;m_*q4JU8FE+B&%*cf<#P+WYDW{t$l2Oa
zo3`FS3xh07urSfW7ZwIv_>zj<!Vq?e5;rU{!on~M!!3OHKuCuIH&gfKMIFWp-4<OI
zq_My#3!^QJwJ?q%vof}fk%(hR<zX`afP6(Nd?n*8?71uC4uY_j7Zsi)lPpZ;Y%)Y<
zaR?TsT9|HOhK0&`5nr4}sUKnUqT7_$Oe@}}G|P(!^Xb<XX0ul-<IM<nD|5*32V?jf
z3-igtf*irO78Y2zYT=rNg%%c3MOfHoVX=iJ7Jjj?%ED6eo`oMQ{Al4jBAL?kPjc-d
z`QAdJwO8dgmusg^xmmO_QKDB^_=$~<l?g%E^|1T1g_Tr9ALn(<i+UeVa<{eG!WvS6
zBF{!kr*W=XYhj&*KZ+*UXI^6~J9M&aw6Mv-W((Y1w*5h<3bv5P&hVQ-89k3m?g)E3
zZ!H|NaNNR963fB?3kS)o|0H)4jTZJY^BZY5Rfgq7`#8F@?tXIJ9QkRn&{o6Q>Q@Vg
zEF7h*jhDj~=Hx|3sKKf_6lB8OeRIqI8~c_QrPXohlRaVKcWMj^=PjJHaEi2B=l)^g
zGzDj>oZ)bq<*Yd1w%R0gDN=7xhn!{oMuPiaPNNqrT(oe>!f$yIxA}kPMU>gg7Orpz
zb5aUtgq=|*x=x)*bt-sD@Rx<ZEff~qBe+2|PJJ%8OK{7=KNivicL<NY<6mli>gVpU
z&)Q$-(o;+&uh)q<PjM6l1O+7?W7RrQ-sP+#!=?X7DI{36J>zacv3)sbCy0A7*{M-T
zyV<>h`-EQv#lwR81w{l82p$yBCYCP95S%#X(y!g`q_n6LZMxz@kd_~EhHBkCi>~ce
zY2hP+M_H}laY0eRV-mZ(X^Sf{O6U@OyG}HqPDDdl*C781&K?(p%rmfQ__Uz7z!wC9
zX9Oh#y1)>W6l4lifhJG{yKg0@S9Hoq;`!T2+Q(Q=&T02*4X4o+*JN!1Ti^&7LU8t+
zh+ul1h<<I_#GaWXu3$x-$YcGJ<jsS^>5Ron36CnHqM(wXjG!#XxW`SfAv-@yP%hQ^
z<8`9*Glk80qour{f?&}<$w|ACT)q5rMreQ~b8=l#neQ$Z&RkUlRR#S80|eCs)depL
zUJ=v~<O-S#S_o<iYO$Y!`huiz{fRt59RXK0<T~ziYYT4HiQc*#2U?Jb`GUFvE|~^v
ziP2ZG9-AW#1d*VTpfOAKl!gL!lG|+>UAtBbn+RU-FHHr_1RqWpP6}3^c*)fIxLxjc
zvZbJvpuON(L2EWDXeW?=ljAQ5Etzd4c3#up{i&BASFrL9g69M;3Pvx9iAamt^MV&7
zw!E=U<VRe3y+n$eiKXY0T<W|kcumk%(2d;?ydijB@PXh>K}W&cf_DVlM#@{Mo_At5
zp3bK)o{N9B^{!w{4X5E%d5^`^d>TJ#pr(9%D4<^bnB*HGA4zO3=B&}Riql!pMbLeb
ztRG<;`SI@c6W$8?2tE_^5cCxEO1<@|#7^)td)!;Y?f*ZWvHP5)I8~k8m(iCr%8&X9
zel!!G3uA$t6IZj?T<>SXfr3F~2EjLiF9d@H6FGdr5W!HvNWmzs|A{xj2*FEufYXz@
zKVyH8Kd)T+ml9883pdA3^U)lg;48s+!QH#uv4W2?GRAReG*xAU!-t7KN4U5>JVho@
z9OlS97p3KCcd}rLV5VSJ3S(0R)5zNt(wSoX=FT7m^P>X)%0C4|da>y}e>a~W(U7kN
zvjuYmoWcg=M{_AhBjf3e9)|*MVm_5WM@pd(ED$UdEEjxF-X=l>-*H3}Wr<*^;MY^K
zj2+02sMWvEk2u9J=j*$i>YLq`PGVfbxz<~Lpaku5@0=@C=|2g67OWPmk=Wq8l8ik}
zeqo)z%K4kgRc!8^v@SIrGU{4VM6f}?B_-#nD{Eq_+InJgrR><|ep=c2qCZXY*dkbI
z;};uS$u_LhMl&1R1v{u}Y!tPzQ?N^LO>mu(E7&7APE94)D>(W$r&=78c=@z1mF`ca
z6K*Ge6&zv#!Eb^N8)B=@VZjkf=$FFD;`xoj%@>s_&GN?t4R0ntzUnglU2u}JCb%Ft
zB{(hdX7em@dt1&>8UB|1gPqBb7$!mZ!=rA}O`H?#zb{<8S1t-J2`&q+5cwx;rBpgM
z!pHRd%|YU!P02I)(NzJ>cV)Zh{Ym97xYx#gHvXpar>eJ6z{X7~f5E?k|2W<b;Xl;>
zg4$js+8NF#BLW3`%8UCmPW<YovG5?Fm%K|Yr=X2HZQO06u#LM?`Lx#+vN642$TIzU
z3)A)!q)f^19vd{)y_n@R*x=r8W6fkqw~=9^h>fb(gbV(=>qZaQc+kefHXgA7JGR<&
zA14plv5WkF7QDA62@P}=ce^hP5xUMFvr)|EH{4L(#^W}guwmFRZ9Hk?DH|nhl(bQ~
zbKcW7zYB*-cDd@Sq_~Y8<sF*rx*3U8lPhG}P;6-Afnh>|?%OP?jfFdsU55x$J(W+m
zMBT`;AvQ|cC~d>G;n?tO_%`Uwb!~7ZOgmft$!y*dPSlO+){TNx{tI=ZGB(QEm|Hh0
zXCuo7A9br6jZBqkyjBPwx|CJHMnxM*8)4j4R3=(%RI{<DhtR^7Z6n7<6&nYSB>yd+
zUcILf=o*D&r0O<uZPc_;!$#}+&O2LOCmGh??$%=G>qh(PMuflHl&ozd&qjS44Q$l0
zL1S878})4D+wr3J)k{g{@FH7sEp)J47};oOqp^)99BDt<y+<0^vBRCVpf$bXTV{Sd
zT>cu8Xl|p0jea)z+h}Q{m5ujoywA?qXk+6=8!y>tOANf1*1^VeHrkQjdPsX4&k}*n
zJsR1n)X!mUewpwYEB$%avq@gCakXy5_ynde+jzys8#dl#SBZzy?jx0**Hgf2Hm1!L
zbDl7Vi`9-c-ePlu<Q*HGY|wPZ>+KZqW(%*<EV-v%9Om&Z@!ZZMCx2k$LmORfbR)Ls
z$wxNkm&xyJ<74vPE|*^Q`Z?);=!q_N>>F*>Q$DfL-9~R4eaOr<dfK@7Tv%tndtirK
zvR?G5jb7y24f6KTIC78f_0Md4+1#5uSw6SX*GBf9oJ2K;>Fr69n+ylo7-(arjafDZ
z+4#c77#m}447M@E#t6P^<LD`OsEuKKw?lY+MGjYh!)?$r$csT!baI`kl0K5uv~hWG
zVzdqVqqn`1SiN3u_L6ZnzOpgd#uOXhRC31Km|$a~jeqCH%7<=r=e@K^B*z)aJ1(?<
z(YiR5l51lIv1-T0Mqc_qa=LnYzX}eGU3}|n8?z}OWJ?=!$kMEtNTaxQmw7hU?~>nk
z%cpD8Xu$uLIJCic-~2X>Ps`VfXv{BO$yrP;vhlr*AIJv%WT}nsY%I62jGR9?<|z6U
zx~k!<QfZuU=f9Qqqm8Iuw8F;j8;lqcW0U)nji1SKx240QAu~CURW??Wy&cqXu*Sw(
zQo+GP4%V?tHvX`2*2V@K8*S{jalpnV5|ny?>YWIw=WMb0&3|l9!CNU5e+V->taIPo
zS&<&Ddvn8GY~98l8++|oixzt(pTRbrjwGo=noD|2jucV4){73>_?4)$ag16krMM2;
zIAX^({7(<d&C_y}JiI#&GniF8j|TtaHcr?$MMSY?8z;%Pn?x&}ptps_VZvPY)8TT4
ztTjUzyusaHgIjXW#(84TK|u!>$b>d-Q1?<7kqvBIvvHj~b3_{LNM5lqvR-tRB)gux
zXR9#%(+1sDe^L3T0E+ywJqfPvxIm)nzGdSd8);4)YIU2eLSg(t{$t4^;ge5<=bMKo
zuf{5!ik)##cQ{~BG1pOdI=IWhJr3@5P{_gE4*g|`-6g}qPV7mcK3P~Zq|#=X(|r!^
zcaY)W0S7cbGpeeHgLDViwg^R%flO4<4>}+~70qQZ!!~GveAvMw4r~XGgGU_{bx^`V
zNe7QPDCXcv2TwV8+yOn#gEI4#DHWb@Fn3oR6E%6aJ9C>n?SSbsPE3X34sM={V-lD{
z4ZrG$WI8Y$m<|*NssqgdEke2zBaoV(@PA{3ae!CHise8YTrZt&9+A5SN$2Vg%eW3a
z2bCN!aOp*_lJB65gR%|+2c;aICI$+J#s8M~M^{)_FRD@A$#PK6L4`q5!9l{o<c)55
zBJE-xfj7UC`Rzi&70J5i+#O{5TaxV{$Kf|ZQPaW6L&+)*syV3cpsEvZTDc6MirYRk
zQNzJYhva&_*sW84cC1covFY9tI!HQ<j!2Z>>Hhe8EMK)b(hW&2Bl8{9b?}LU?hfja
z91dRK5F9jc5IJb+pp}D$q=kduTX@YKG$w`}jQCudGDPcOl1)5VKYIVP+l=_{F8a>e
zOk0prm7VIFVuhS>)@|*et%G(Bc2#rQ5V#)uN7}Q(jncuva}J&*&*X+_PvtX*&PTm|
z^n7YuwV%vq$(J0w?4Xl_w;g<3D161i>ki&<@T!B?954*&%@XNM?>(4g$kUrntff0T
z$Xo03Hm82{7ExC}s=rR&aqzB#k64L==JliZ9DG2|TqW<5PlhDE>MpNvLFIt5HnFku
zVg0DHgDzwPvN749end?>`%(AX66qY^@U2p!rMIYo)5Aee2jd+~aPX;vUM%TgxP#sf
z`ZyTqU=aDuL0<>`9Q5Z%Bd4=hiG%vw0Rhfg6z~BKzN;TGlZ&Db2c-B>_X`L2l}jJu
zU@#xek|jmL1NEZ|31_GiI|~SmNMU=VgHaAv?{L3#V&?_j8Kc>UqKUCY3v(PWT$75O
zzSqC%M>JEHspNb`&hIJnzm<s&COKH>U=i8R!4wCx9n5hs)xk6evmAWwV7h}Dlp11w
zs4y;z_M*R@4U060=*gu#-q;q;AOyI7oa<nogKycZR1D!asaNJxlo~{D?|13VDc>Tb
zH)MemPbe!(m0Rp!2~q9fCkIO%EOYRKgCEIJy=2tnSjxV0u-pLwUf&bm;u09`giMb&
z_gHM~rR2{J81S|-C8W;<`JC){yPC?MG7{iafVGq$2WLH;^RV8*2Es1Rx!CAn6B*k@
zYZsfTzNk-J6m_xH!8WplgDVcUlLH+bad6bZPO`3py$<#{jLwRKtoAsd9f_EvxwUeG
zh_2iH4h}f@)xjYLtuH2NcVc>wEl!9%CWoEa@^&GpL>w}Rm!`Sj92}!avVeo*4o)~Y
z<>0gf_sx(7gx@&?cJk}k0>D{@`tS_7vAM@h)7JR~X+vl*O3pbrPtEV(qJs{_LmG!^
z!>1X63Xrib+)7_^P`-W0wysjOa++{)r;F<j{&aBL!M_gva`3l<8)OM$<1=a9AfmN|
zTdG@Rzp5dv_x}(T++KcAizB67>pur+E(*9{2+bWX63b*%=``-0Y4ko)$>CO=M&r9&
z6ms#P3%I!3MPV2ByC~w~9v7eWk$YX-=f>_8#(sa$AYuT_vN<{T{V3@!GF&|1;?IEz
z_JsXk9Y&w+&7nd2=l;Tt;X^JSc2gm6V`X0H{Cd^GM_e?m9}=IBxhUqMvWsjNkGpt+
zMk5!tizi(?<s#FCLMqpCo_6t!ixMu1vxg~v3he;n+k|wZlx^aabn#kWIe99n^1y)$
z(*?~?x{FZ_B9<}SIQWE42f{p;VY#4%>bnNfjs}tA!gW!O*l^*w@LiO4QN~5!qI}Kt
zQha13-1A9>Jgv)fXviwd-g=4C4WcX;uPl^Ro8sdG1)`|DiwZ6(xzvPC;mg?#a-E`4
zRMEwfHnsBF<qU7>{cu}yTvTz9@1m}YsxGRz$aPVZ*uEjvUDR+v#|<OIRxgl8uf~S2
zS}u|<@;Hi#(r2!OF1~jXwOtV2{%}ZmQGxJmfv}DnyYR|HQ9T#+T{L#l#6<%ak&A{d
z8j&vRU7pckKN&N_xt_eo0|lJ%o4RP`qPdF}F6vYXKQEI<Q`JkYyu2uC>Ee;bj$be&
zJb9_KanaVrWEWFhv~$tk#iuTMxp>w^2l9i9_gp;Z;&~UZk`OLlVEG&Jl8cw!`1sF@
zF4S3a<*M60ipXZQ>V~hlpsR@Edfnw02++yJ+b-U8(b2_QE*8&-ofPaaT`fG<!|1P1
zrb@rjLYvh)Zfpc2laIO~@4NWGMOPQyT+n{?p^J}QbS8VdaTF`9A3TJz;))!fAzfUY
zEt|&UA*|sO7v0&P1wxxYpZ0Lk(?z(~osgN%Tm58`GjeYtne6IfIN9DsUl#*i407=~
zIfuAy;SF%npUp)PyE^JyA@Ia-p*^|mG?{nI{ldjy7eid+oUoI<h2DheNoS~wmEX(E
z<*}D!1R2uhM}skr9XsOEQ8JQL<`qSwU5p`zpKuwkMbpzy2ZiS~9&AwaD;MKkOmJf(
z)to4zC1j$DNp9@Z>31-PewI#8<$ti(o$6wmi?uA~V!DeNE|$6Y&c#d@vs}z~@hvGr
z6&giz_^ylDE;td;S2D1WGmldLgM7ojUCti)TWpVtT{CqY21+e(>FdX0G9*J>-1xM`
zxijt(H;$oN>LP2bOmQpmaEH63#-nPuoQ&$?Cl^1b%D4GcesJ+41!|G3NWIJEPJWR%
z9Yrf${F1`bnp9P*$Ob&l;PR|!xGyuEmGcA#&w#vJwBULd8(bW9@f$l&hIg^c#cpZ_
z7h7CxbFrPQI99gCl&Vy4ln^G`cd*d|IfQqz%%Qr3*~ym??s2i##X%Rpy4dI9!wItA
z#Q_(0G>q+6wCoi<DC287MDii>@Hjc_;z$bM;STyKSl%pEi3d84xj63Pq>EGRzl+~V
z!AI_<Ijc|okm<UK(sH7lCNHg!Gi+#1&Z{eh!GSd|CjW3jbJi2NS?66`aPhi_H#}T)
zamj__!S!&N1t_^59`tb4#WffIxk&SHojTUVO&7OZ{N>_rl8?8H3A~)u<zj5^>oX{^
zsbWZRn_MC7A2RSXxlLSsBb*Bu!}c$=T)#LN{tgcXJlx~qUJnI5-09&i4~0BXg;E7g
z85&y}KW^mQ?Zrmj!X64c`HY8rx?#lgQ}=mjwIO-GhaxF}1~CS1rF-DMIKzWBLAWVk
zuzGc^96UVa;b{-WJv{8;5s%6fk9(Mz3S)TGLs2hYb~1M2F%PfX2^ya%>`!=j(gTBJ
zp7P?MeeYJHWr=&((Z}3u639adkAX%oJe2g1=|S<JvL`2#bleaF)OE*qxisi4Et{r!
zXwxygt|d$l?HW6l2l23EZ%)H2Vte>>DGv*zGrw8GsQ2xp=fU?-*F!xIfrnBas(Yy6
zp|poG9?E;D;DMU6tcNTQ^uN=K%FyC+95`{<SJtWdoQ$YFDtf5op^As9MCov;?BV=p
zlI_JRk;u$R-7-RenT#v0=HcUp(cX^rIc4xRH#OwYqty;IJ=F5><(swWRY`iWZ-v*^
z-;)c@xp^M)Jq&Fa)$zbvnxN@J;UPZe)c4SUqh@m+A`cBc@W4%T4|MU<@7&1ax3$s4
z18vAnJ($~LlRoE~k?Z3S<rW@V5|ds$q0pE%uVF+LP5(&iR1Py4^3l#idk@chc){b>
zctQ^FSq~jNtZf)^lI87lsZrCr_o9c9Rh^eTyyD>{58e02zS?<J9nLbZda)D#H4m|s
zqo*)3oVRa!=;&dthj|{}^3ch{5RTEq+aBKW(3A9Hiyq$d(A7gX5AS>Uz>6b4KW55p
z6zS4eKH^}%l%ox!i^cMJ+nEC=68=bXAyj*&P%b|4@X^Aw?p_??eyd?L?XHkA(u2gE
zO4DdgFAu#v^!G5pLmv;HdFbo$8{_dAy|M46ao#DEkx{Re*N@~V5te;1ewXWkfgT3&
z#ZrmE9(a`Xixd&ZWTlZbjHZ6HQS@$a8RlWQhe;kLdl*5olEb~&TQSnZC=X*ijHRr3
zafk@Rycs3?@O)vPIjs;Fm+BrTGCFa_dzg?KY3W80?fDZu<TZ+Ts&0zMuc@QgIhp05
za$E1&M$t46(>=`a;wfXM7f&?w)c?EQ9lORQ{I!SKl*HvyuvB7>2cGt2u?|PvZ#>NR
zu+_sh58slzJpAlorH6$c7I|3a;X4nDV?j<V@xUlz()5Ey(b5!(h$SwTmV5Y~XS_W8
zNLIg<%qv>(%SKVo4O!vgCl3t3?$V$p2l7{`M2QozGwT-*tGL4Vuz~#G#ZG~>L@yWT
z9ysY!;^;qG$Nn6utDkmP6mm9_8`;T5(H1h*BH8Sr^Ah32M0XEkgEuvb`0jSHgomRZ
zKMRkY9(H-y=V8Bx-4skWe-9CU#XZ$1B1~YfhgW|Q0tY-C^zf^PL)2Fp8OsmmFt(G+
z*TWu;cs$7!<}8;P2)QYEsC~%%I~qsFs53pB^1uk~<LtJF-zh{Bh4b<=+bceHOXvkY
z?Zv*}Gwjj|x#N&D883f$V9+nAf8N6d4}bai+s8!@m&o2e-uH2t%~1vUDDC5_hie|-
z;~^i{`6AV|kGp*Q<>7A+|9be(!;O?8z2)H_@*b7g24VOdRV%lCw>_*`kj9N$owHJ`
zzohxN!v_yQ74%WS$NjtHokSYVAlzvZ<~DY9vz$Uc?)GsXpZfSQ5nD(K`?$x)y*{|T
z9l0Z}ncBGMY$@W$r>N3>Wccw`m-`obd>-)eU@HHy`$F1*S%B%oJ|6Lr=|l1HsE?vP
z9{2HtkH>rz^Wy`3v|rIZ!Ps){vfs`MpY-vR&wy=|@bR>da(9QteXQG`WSlU~Sv<|h
z^1Mp=*fL)3DIap);jQXJ^C3QLAG#02$BUI5%f|=T#q`M!iFlj&MI!q^e2#DHt_;VA
z>tm0T?)$Na!Y-5l<0bKY&}YHI0rB77W9F@&rHqfVKAQPx?jwu+@p&{4wR|Lel=qSC
zBgaPt9~FI6X3x7zB_A)B4Y~U(+L#|jiO=_KZsk!uR`F5QM-3mjeyp{s`Ka!LCahxB
zopBNp;ORf+6VHP#WYeCO^bz`~=c7LHP$j*#k2*f`eK1rw&qt%n$trt=al&5Xs4gok
z?;JfAhx9b?5%H;y#%yb#{LwjY?yorweSE*sCD6o=&1g-1^snde0L#AJNdk-jY~iD&
zk2ie0>7$j8);>D;c+N)~A8ma+%bfbo?Q&`DeC*#M?fv+);K{A>{RtuPz&4kMo1XXa
z0tfEn6(19e=f6lSHI7~)GYm~ImSF2vDZMYr^i?0P`FP#OhKEAt@cLkP^4O=sw4=}O
z_UFCr;~gJw`RL^1%Z);_SewRCy@T$%>{yL-Mh(5OL(bI<ziIA$;NwFd^L>2l<0Bs*
z`}o4gU>}`*To@=leDq|6KDzqo=HnAmmOWe-J3gj;nAiMr_HTtlDi+U9|I|k>AANm%
z?#D5}y?yi{mPqKsN!~J0>d}K4KWt4dE1%Ync=Iv9$3P!L4kT&vN}hCS6{J~-{iL^U
zkRKbz2n_Kt)W=jG(|io`G2F*EA7A+x!9n>L?PH9Ok(9?v*`r9W5~2K>LsQt0&GOM^
zp=)z22isH3t<rH`d^?`Jx=kkfnB-$Z3g%N5ey?#f*#}PxPVqtbq>@kg_EDMcV}_48
zKIZ!INyC{wW>XL<I<tIy&CWNDu9XgFHjWxs4d?fhdk?wuIOJXKH$J^ZiCcF$JWI$`
z+=wH|1wIz~*yUq4>F8szk6*~KK9=}cN{;gJgO6pYcfa$ooU*VdhxO1vO=f<#Rmjlv
zAAPLw@iXP|xcrn-6vY28jU&$fG)1mV<@3?BZOPR>*7(>=q4u$s@=gx%vC+r+luVsy
z95Ei4vC7m`J=e=7Vy}M9(wXUuU8jF-;ij~$KDJW|d~BnpI_6eS%ck{=!nl)qplodV
zyYO`E9oyq$uaA>HPWjkJW~OHF@tcnWK3M;+R0Tc`Qav__c!rV3pAQoQM&bz7*L!K}
ziiPx66lv>GwH{-63d^@?zmv-2<jtM6Pq3d~3w3FSL&?S!oTr+Er+u8EKKF6O#~)O@
zWJ{`g^7b(~M;+Bm&a=b0PM2dz`h5RqK)Xb}H$<+VNHXP=!J`>hsrh~U>El{ToSh~S
z9Ts#Y(2N$<i|RIsZuq!KCJ)dpz%7!Sx+p-!0Jo`HscZv07T`Z0X#wsJP$a+|0SW}T
zJ3!$ew$2p{Qs=D#6zeB<2B3|uLVxjwOQ8UCMg7kqMKy9yfO~^jpPW3HabLhgUimLH
zq1_=$50DW60UiosANK<R9t^N=Px7-S(S#<^(k4+d5v!MngV-eaNDzk|GVtcn05@|(
z`j40v3-EXVBY+v;i2zRqC=sA!fTsd5Vw@N#9^mN|Tq2B^^GpzXHx4$5=*Y+npah^B
zg0LFIhf4GSo7>c)^Fj;w8QAcl!HI5HvW%a^3LpWz0Dgd9PKh1hSjW%_V$IJJ?k5ho
zZV*o~*P28@fKowxI=fte(gDf@C>tP)=)ID~3VG3#UD8gFUOUU=r8kWd0m^eYJ>%2d
ze2dz?Qh>?<S_Wtp@DD7=2~amcy#Q4LR1HuoKr%qJ0Ng9p2#_0~dH}U)6d$xdBQ;su
zyn;MvjQ#HCb)0HVqcA}2fbpw%dRua7WrveRUH~4+Fa2~r=M-k<rykMmRX;$308Iik
z4G<C4?7%>29AMK<;d%B(L3|)$eZN=%7TuqGpqDfY&^$m3UQHuf`~P?R!CV-hTo_X-
zzcuk3;Pn7+1Zc|^1H2I6#Q^OCJR9Ilb?5m29fEiwdoBPEiSIs;{G@3#wP{3e^;b{k
zb6$8Uz{>$%4e(m3*egLiiO`e6I6b~aC;0NF5sP&ml6W&f#{lmIct5~f?C0)`w*$Nr
zpi}C_5!;iT2uAG5;al$p*x59CqG?S!N<IkiVStYVbS7o{$w!2T%MvyHa9xKY)+Lq6
zeC~WXWpLv7BtZ87^8<Vvphtk7<eUH_N$UW;0t^f=C_ry=T7dpRyuSS`Kwt80R$4#O
zacJx-|2zQe`KNkK`d<nRmLvNz2Bb=|@DJ~$eGy=AfT00~u~-0Nn3!Dfr<55MYpvk{
zMg;h6Tas=;rCG=mJ@gXN{XHtc=z#yS!Bh@Bz}Nue155}ojvTvLz9K)T=7kGQBLeR<
z3@38D&BI9)knU2pQX0>UOeS4&L;8i8P75%dynQ%1FTjidGXu;HFo%TBcZ%+oSpmK#
zR`Z=l*2Uj3ppTngb)F5GOZjaUxy>S;7NM`_8+M5`gyDh!3#kVJY!9#~z~TTaDLw&~
z1XxP#5#aj(%L05CV8!3!R(JB7MFS7H9|Q>k9h*fzFh9Ug0e&QgXGq^>QS1iY;(pyM
z+R!ZenZiCaL10yY)d4n=Q3IY&#M%HG$na-n9a&<>ogC(RGGSUa&!DkOFBA#6p#8mB
z#Qe<xwg#ZG-9lDhCHFOtGbu+r!LfsU65v+~cz|701yo7__6OLL!rR^;_KdV$BV5o@
z$@6Flwf%tr2Pvu>gmVYap4Tsz_T!D@;Q*5-#s2!^0gePXN(xec_LE~Ng{C%-;$U?@
z!5o%35#V<=G*GgeM?>}`Pg6`N{-sf+H2w&1mTI{aDwV>y0OzSOsICKC2yl@D@8JC%
z;1aR@Uy|^(6mU6+Z3|b}5PO^Y0txL%*HeXA=1&UU|ATqD@CLc-|Il<D&{h*q{|N#X
zcn^LGsE8m%O7bp{-jfRm_X3X+iuB&Ajov%bJ9ZQcRmBDhViy!?N*8P>QdFAK#Pa<%
z|BrKW_DnXL&Ft*#?C$K$<hKm{xT*jDI~g@MC@7?eqr-pd;NLm|_>Y6@n3SUk)kL>C
zxgFZYg%#YWprV3%6%=8<g4-0_uArELn-r8#kgK5XGWli&w<x$(!PJ9!yp<d0lQWAe
zVyUxylElGIn&&Afsh||!Y7uAe$wI-<b}^T=90C`D?CM=oX$55z+^wLzg0c$kP{fJn
zT?!aV;!Xve$2oh_H;uPEG%2SDlb)JJ_8vt@buMcwC^#}K=iwIlG}K`)S5i<}fvg~3
zK@|m671U5rQ^9=-swt?>hP)<`VQ66U&KDUjW=8Fi=Cq5O{F#~H)uKb9q+s+n61OcW
z1+^4t3Umdvd1=`?L`e}ln%CRKbiz^<e0V<Kk?Wb4g}%a2U@CAFOq?iLidavU-kGr#
za4|_C!^3?}oxBdW41EQGg7+1CpdeHbDVV^w6r@Q~1zi<%Q&3MqeFd!)v{rDxf(8l-
z6f{-PP(emPBL$5WoHX+pjwZ_<shGWzY>JzZI9sG{RfP(I0IhSIDQM1qTp_ho&_Y41
z;NdP=IyG-=7c=M+onL4`NW0d>dD%7!9#GIx!I=-GwhGpi%(hd6LS~I(HENaLo*ki}
zPRT62xtU4*e<uZ<6?92TE}Ur4T$#qqubs$rSI|SjBMKf>&{IJ#1^pEaAVC!LQP5Ap
zw%vI=KI3uE5AEW<ia1RpKmktO@<0WH6g;TlAq6*_$_yrbewK$QV&i|{Ok={=+Qse8
zN;Cz0SOJaRdC>!UsDfb%MzQ0_*ePqcf)NTv^1DI)#H(~06o#o4+Y4>{81h&nt~!J%
z=~xBh6yX8Hvjb+b%*wL?on<B|n5^Ih1urU?LdI6GNWo%-njB15FiXK~1v3;p#!hJ;
z&t#|6%_mFnbmr3s#nIKQ6PY=rn}YcY7ATmffU6p^2UTi3qapmzH+c&cFwRxC_OW{@
zLuOv0V5x$q6+EM08AsNs)D!&r6Vmkd@#6~CwvXSc*5FA6Pm$r@kUnW2-?pz&)l%7K
z6)ab9CCFc);5qVqmn<C_o>y?Fy)a;=W$fP_YB4SZTlbQJmleFB;7tW96|7S5ih@@a
ztY%-gkJl<#$F{7`S)+)x3Z2bKZ90swEmY(1dQHK41+R0ER?RY865Yw^%Y62bG^a`Y
zmV&nxx~St_(x+mUO1upUHj<6k=TLEU;DALF))(*1Zc^}`f-US;28bZVW{Lxm8s`mu
zu5<^{^&cwuNWp&!a#Vaw9#-&+f)ffpRq&aD!wSApu$7#{j#KcJg3lFvp<suCoeH*d
zm`s(v<OsF0%H<5#KfFECD!WSox3Rkw5e$a_zru|(cer0G*sI`xf`bb7DcG-wW&FzR
zsUnx8@1K=AEfS~Ihd6Aji=Z@I)~+d^rI0zI;HZM{75t#!+e9dR#{t_j>qog<x^Uk?
z_(uiD$Wdfh5_XMPP%)otIcmbcy*KwbhxSDg9BI@0(n$rU6#PltD2F)&6r59Vp7LM8
z?+VV6120Qw6maQ9iwmv_2+**Ef{QYfbNvN&-$IM$$lRm-K~%R1;F5yN3a%;mn_R&z
zc-Ohg4ov{gtrT<=q_sMTd63sX{MNV9zx*iA`u7PpUf$lIqL7MvR8&w=SjCMhpyD<a
zMN|}3Q9?zoief5mQgN#a+Bx*CU2wCCTT~HzhA_|9&Rxw+Pz#Ey!nla*^QR6=c`E2s
zSW?C3U9*e?#l_N7m!wiEm=?Y4-mZch|FSCXP{pF9v??awGAcH%l{jnPsp2jb<y73Q
zg72<Bk)ncH;IE?U(aicvV((_?A}CEo75A#BrJ}ZqN-8R=s7?%3RAEUKTuI)i3a#=d
z?Q7As_SWG!RPR?)!FA5qZnbKvkW}QWShP)&RdAQhiyFv|%Vf^i{6s3jEz=>cqe4;P
zsBl%NDl`>_3R8uyqUX7QGZf8w32@_J@w;24)2Ahy#Mvc{XrAA#L(E%G6`MOc!v?C@
z#rynRHcQ<Lzrw)SX%%%<bkopXLp>GsRcux19*g@`G*B^9#Vi#KRb*83QPEdLRz)L~
z{|7`n6^&IiQPDz0tfD|gQ@(prco{U~CpyGjjWk!WxI@f%eLM}}$!1FxtyHvD(MAP@
zIZruXeMO=}B@Oa9DtTW2fC@%tAlzO>2V$k7I~kx_K}QvxRCHE_OkUR^jypE&qKW`7
zT~%=^M0Gl&O%^@m_8?7E^ishCm;U!=w|0oX>k!ipiu;$|<f3EZh`gVQ{whYO7^z}_
zih(K~RPm6CK`I8T7@}fHlPt{!xF)${jzmW-9#S*L8gCyam$r<Dl3P?f%H~rg{%3}V
zzx0tAree5?`Lm@h%Opm6WI9U4XcbdbOjR*P#aI;+R7_McP8C|^@v88Ly4WEm@&xD}
zHA!Vm&VrX(H<+x7Lv{vsAiV2xW}1q(7Fg3&%uq$-Oe*%Nt$mFAU(Mpo!cdU48yC!0
zF-OHJ6{}UuRWVP+Gb)}XJ}MTdc$^igSV&G|?>{arRfPq@VioiTUBV&rxHv81!6<K+
zv47uAwA??Yp5$O*Pkk-XuXFTj>1kCc^jfO9RH{?ozFfs~Dqd3YvWn+btWfDaR6y^T
ztX#mSFQ|A?6}AD_Y8Q~;v|wMU;+y*UY%k03h=)cdYgDXNu}Q^d73);IqT&q|Z>o4z
z#cL{FSHY=my$UX7-oGY1Xy_11_Tb3~^WReOHaYX5>^mwpB;=x-49|urIX4o|Q#I`s
z(tA$!T@_3PtYV9b_f>qLVtp64-|jq4H)|J5x1Pv+NXf6_6BQpN<mK7@>Bpr{$!XK1
z&-nG$`8`TzSBCi|I>v-QSMdcUl7?Ij+f{t2;x`q)tJtApCmX2Zh>Bg5Eh_e@*v~=N
zG2Wx%E25;LUPs}ZvzG|0mS`VBb3p=Rsskz*)N$2p>5z(pB-(kwPTtPUVHJ};PaVIU
zIn%nqQ5D~k^Hm(@0Dn{Zj?`B1ql)iUwC^a6Gj6LdPBD(D_=%mK&X#K|B0w@F#ePw7
zLd8iHr#OmpvNVICHwVpuPOBn74O!?{4zYU*n906-q+@(W#aR{qsQ6dKIThzsTvl;K
z#RV0AsPu!Qy&`z(#GyxDFq+@cbmtP=zBi?ODdZ%(n~odJ=15mn{KaATi*!xJ-{j2A
zBIL-djxhnof%#8Gj)tNdifOn(Lm`cS1w|1JEJH<8VGSL3=kY|N+pp5xxfV0Ozb(tt
ziZjD=ZqjgzhFdjEG4gNLAfFV9sp1;w2ioR{^is$8T7&#y|7P+ul+@sB{COx!X@G{B
z8YB(3X}DcOISqGfD6OFk^Iw<l&`?$rJ_uZ|(z=5>d@A<u)Nq%Ec@SqSJWJx4W_e9G
zW8SBsnudEcu>(5kXDeu6T2aHj2~a6XnNwNg-%iD&s!6)JV@!BylwVy#4Gmv+j2U^7
zx2)t`qkLIIz6M=`p&_NAmWDbS6itMz<UvwxO$a?&3(&AZ)zD$7q-prBQ30b$)?6>0
zjAMqTF*R63PlKa@$5JfM>-(9K%T_OCI87AlR4adhRkK3D-CHcep@v99GY!o(q&3vl
zkkOE({MS%l!~Gf>@DmFpI+_07G3I$zLpJA*0<OgVS2IIdHqt~~n#LNMXyRC^9*z1s
z#RVD%Z$VQHe@>H5T$E~+FW_>ng@#x|TMg|rwA9c_Lu(Cfk}}*rFw_sjH$9*U<DAKV
zNcVJ#3A~)mZ_k#p^3PM9$qbsXSm>ltsx*Ffdxn|C{>oGuknN(OtA^h;iGU|`7v<9)
z8hUEDq~WrLUK)C9ctgXR8v1DHt6>pQ)zD8ve+|<#OxG|#!$1vVHH_0RNW)+a4{3N<
z!w?N;H%QGp#SfB&7D;-im?!4sdHRYzqTx{uL&;$0rF)l&NK;&jQ!)=@oeQMl8b%}l
z;gK3fCGhAZ9h0Q}I>me>rT`5SHB2JUlL=P~*;Rd`L~Do1<ZTU8*+FWSw;Y&s>LkFq
zU<O%2!(6hZhM5{>X_&*d1o_{c$;>9^=cUhH%PHI>OH*nNLq>U>Px`zhEzmILY3W)Q
zx5m#h?F1H*u@9zbdALNwQVq{*SfODV8E=pDgoY={uKgQ4&T99i3cUQMG(4?gxrXO7
zJi}4;hcTg3{A>bLJ1Q;fB!Vz})I7`05$k070{ckA8ulhD?45l{!%7XSH2iTwdO1lC
zy(iTi-I(k_Ojh$N^$kiPO22g)UeWMsG7Nbd%gom_tk>v3A=U%D{qb~$@ueB7jd9!F
z((ty1gX9Vg8#HXxuvNo04ew}pSHp)IKGLvB!)6UzG`z3jJ#yWe66C8lI>n?6cQJJD
z`alCsXt-vec?^BTKGyJwhEFwoMm~8_+V-}z=r3t_I(s-2hv3}O-ur~~xrQ$^?9uR*
zh6@L+?HYD!*rnl14LdZU8(Df^0gd$bc8WVx7V{u|19xjUGdRnm=dU&FB~u*=4^V2k
z!dG#hhW!*K-=w<MYtY-Pb?s8-w|^ua{vPJY(r|(uq2Y*zqZ)qHa7@Fu9FiKo*YE>n
z+Ew9;%I!8M(<xOgru3D&`&#BFO)MUcYxqSI^We{<YTbD8a_Lm3nDZbvNBUvul!nv9
zpUu>Be&z5XhD1!mxqW#I2*6d%?@2E(Hf*aP|D1;N?D{zpO)F`mLbSQ#{)2;;gL;8=
zQ4`^47+RSuO>2rP8m^LWb)<FtrQsUoq>c(Y{?_o1h7vk*b^NR0KZ<%CMRnw`*klof
zps<b`bQID>C_E|<=#tDe!;Q&P>UMg}w~FbwNyoX@a&FaevkpGJMHfaabm7eD9P><H
zE83vAE@CwhRpObaqoj_qI_}U>N(Xe@uA{UrEHh~ZdYcZ8CYlv-MBi=YY<oj0qvMzN
zbDMl6mY{d)xJyTQ9iP1^mD6#zj@BoHh5zoiMDuBJ$1(M7_v~Gr<BB@&)lo}FZ5@?#
zRMt^lM-5$g2UO8fRmXigxWOlhX!B3@pqWiIUBvOGHAqbzk`7r%zK*xQ&24hdU`j9k
zS2onAZA^-2H_P(+wN-;UIusqY4o8QoL(^gEn4itpb!=N*g60zj2~t6PrB3IVbF0Oc
z-XCW=$IpHsxjH;z@}?B%po@V|5`B~6wvLMT-ksx+Uzsm0UnQ1Rb#>GuNp*D9QD4XX
zI$G*zrK5q4hB_MSXrf~jN@jFS=^QuGg{fYaT{cOY@r27>d!}<-prfgdW;&X)MV(^?
zB&3tIpqP$0A?9O;@`xnOamV-0a%i;H(MCrH9UXN%prfsh_PQ{fYx%y^P8R{pxy&F;
zTEWiY=DiaOFO{f$>dfvtlE;~-*!adwyXokzV~CCi`MQptI{NDvpre<L-a7i~Jo^@c
zi-9a|UMBU?g<Rd67-a5PB{6#WXZ5lJ*$~=)>S9LYTt?4On%)i8!LSl%>Ua<7cv#0U
z9m91z!Vc9jl*C*tV#<w4Y;MK)+9=p~gf7CKG<Z)~R*cj|B(6~>q`8}=F*?TT{NWm=
zxfrKoJPBf>rHu(JPxMUmH!(@aWY%xsQ3F$0m?OeKAp_HNOxLkR$NM^F=y*)W3LP)#
zn91P(I+p2pT*qu3b95}!IifLF$2=Vih-B;hVN$_-Qs7&9C>QXeTL)zVZ>b$!tP6eS
z6288}<;rJV$68B?!12rhC;NnsC&~X4rRQ`!rQ>NG&**qoXSkaz15nUc#pvqt9OtT>
z`|xIIdBOwK<+A+qx;W-0cfF|NB^|HnSg+${9V>ObqT^K^h1+IVadhZdLmvJvv$<UM
zo6hlC*1(V*<kGDYtvCo1pM!_;s#YuDGE7%<U)S-5j*U9^ba+$8Te>(S+d!!j=Dw|i
zwi7g~pb^Ev3&!$pS(@j)t7DUn&E&?ENp~R@J8)PUeMZ{5NqUbW=tZf~Md<?_AL{r~
z$1xorv7>eD*0F~)(ebH{FLZ1t$Lhjtek(_r4w{gWXjFqdqvn3D3nc~_`-U0Pm+XsT
z*&RA|5}yvW2=8KJ8^`r{y#AdC&OizCm5#4<9MW-^eEvX#y*l>mIKbgwG=HB?bD(VP
zZ>4@e3svo<&hbG?l4qpSUE*(a9AQg!d`AZOTH3om?<nO=m-zIp*+yOB$p@wHDM`ri
zUE)ILGdrti$8?F$S1$O816;>>9Tzx)DARNr8{;?fyi{;P$4MQhC_@fqmhKWp4m|KW
z&76AqJg`3hP3Cv<_U;rj&r%5dk~)*5&(?2nj=jGxMcu{hF7Y2a{^Z!FWY)2CPwJwM
zOFAwSljA8`M9{s6>73fxE6G!OX<efLSttF&0Z2JHOZr<!iA5qJ3NzPtiT~piKqj9g
zbvzm}^OdPmVFNcBa1D3{iWn$rpn`#l28tQD$-wOfN*lP@z%7P24l8NkRs+Qi<Qd`=
ztVB}P#6xbb0lFr!S{e`Ymg~1SYGg|pfFZ0YZZpuu65ep+=dZfNWek)xaF>B{$<qU?
zO59=KPD7XyF%TtF)5^V@m{iE}y2n8I>o7yBG3Uv{nR^XXGEmciWT3KvDhBQ|P|Xl7
zpJn$*RSj`o#;cr>Tb-ZYEzN$vFi$I}?WvJG${fka2J#K)1`Go!1GNk&22?|6ifS9;
zbgYhn-@C-~4`%8X<WqOl{|iYoAmBeTJVYzjHRf?7oj^?kmI2!kwiA`UO*sbsXE;Il
zg@>}ffxtj#;$R>&5E*E0poM`nt1^%^(8xeN1N99sC~-pr_mlGHq!nAF1_>~sYnHYF
zyyfXq#-M?U#Y1PFmo+v}V4$giCI%Q|jrunp(=%dfGXtCVWf&atxiu1%U@@CxpuK?(
z23nDf6Qwo=9x%{4foTiTyKX-HJv*!}(bhmaUJZr8Cxf2RWv`=wS02vc5m+Y!v&#sJ
zuVTkCJYMW-pqqg{2KpMp?X<gr9tL_EIJ&w7%RK#gs+WOIPR=t6q~1jDS7CM5vuS=m
z1N{vQG4LQedX_Z6z(50o*kw~Cwn%SXf`$Qu4PhQYI|`~Oj~>iCWC&%W-Bl=!A0}_y
zm95Y<9%^8ifeS2YV7P%11~#$D21XhfW#DlGPZ$_&U<_qAd&Iz41LF)#rg-PmZnef6
zm}p=Usn<51z>erD;$E_TO(~!u3WF9-WxMFGvqQ?+m&g9?*EODD;4uSp4a_qz)4(hP
za}2Rfn{5b(I2wP`W2=drCCp_5cLDRsHko*#fkjEN1*H5H>C%Nvy`9ox14|4nB?4XJ
z&j)0$RV&~ZpZ!@{M(%B$-BK+3q=BaltTwR5z|#hvG4O(c7Y*ECWuG<hoPp;JvBF%=
zM_q+qAul@huP}sgru`c|j9xPEvVoNbR*?_qN$*t1Qnp_@YtUSQTkO)AEG@U!8d%4X
zV&E-yv4K|&tT*sFIq*n$aiR1Y`6^{@DJ!HpuQv=4V3RiREiSoFd?dYX@Q><v#{kVa
zcx^O58%~;Ybgq_Vv3Dst&Sj{R|F~=Xo`EgI*1%p$1_K`$_}su320k?K5qaR4w2kzn
zH<^J?4SZ$@E!igq%6uk_*{H_fN;LHBsjhLe52UxVA%*-e`Q~;5Uvm5!*kxdcA%a-)
zVk}CjwQ!lImp%38yAAB29Ha8Qj<xER>{lcvgEa1t_8Hi3;AaEJ4ID6VkVIn#ar8}=
z4w2Igd}Cm1iw4wDA0aT6zYED8r9e28Io>TxmiXmjhM)f4z%jD@9_a@IKPG)~d3TD+
zb{>HK#DUN~OZ_v?2!1hef+9uE{hbZJCY>~J+Q6>{P9?X@VTCt#i|^<bf7U1a8=K!J
zTfbX;#=uzv=g3!0vlOI-t6S#{A<4DlLUjLW;37qh3ERXa1D7e8O_Vlq#lTeqg-zUO
z;x7Z&4E$^0KLdZ0)epJX4hS>3e+*&#z`1~-^(lmNOsuSzdxMGd=Y_B>WP%J&Db2Kq
ziJ~S-n8-Cz%oKs~Z#Hp@2}Y2(DM?wL?>0P~xz$8*Qyg0`=fOi3-_0}ea+Pc;6EKCR
zWJwe6?G}H};k)dY+qmND7O$;Ru<M6R853nqR5MZC#2qH?G*RBfJtj7G%Px%z?lMu%
z#Jp}X;k!-Tb~NNw{!CE8L`4%-OjI>-uZc>g2w+>;6h5RB>`!*AMJtG_%^T23mVrI#
ze83jb27q13Xd5+5)HG4YgknM>0gq<#O{7e$>K4l;n)?=kTBfk5scnKrYXrVOlp#>T
z&R2;Ztt?C!rZA1uOnlxg{%f7k<iG3Wn56ub46o<+N{$KFL~9l^;hFGFG&0fHL|`H`
zQQyS<{KP3KGEvt=`{NQNcG|?@g8b9nM5xSq3Ct751|}Ms$R-WUnDngA<ygLNukeN8
zVc(kLxomh769p!k5qT4IYi*l^!Eb8fvCG26zJ&=IHpC`cn!*r{#uBt=Xl3GwhjSi2
zB$idRzK|X;(U!%CQqsV7ruaojM<Qlo`k_>ZBxM{1zS}AJ1YhiIg6Zukvm3kEL@yJ)
zP4qC)(-fkczPGP_#wkF$v3tzh!VEUTR?ijIp?ysTlx{$6*v7`$0VW2LN*3B!7-V9w
z$-fBUh>0O49yGDS#0w@K;)hI3BMv4WG4ZI02??_eH8IS@C=;Vi3^y^t6n1wbO>wkD
zK4dTrQij5i(+bxcV@!-SG0qew3YEXeut0_G@r_jq#<Ox7B)1ADatmN$vWY1P>kht{
z8TO^{|9bD3G?m<bHZ$~^Fe;v5Vu6W;q^*gWCT5Wu_vg<sG1nAUXR}SQs$bYJJ1-&Q
zd=A5TLgZf2vpfXh>DVF@i%mRDMm4d-#8UQxi6{9kiT0=TIGLeAK80t_=P3e2o>KQI
zQv_Ebz{4r0d;F}4<t9$PAU$siX<Vva?sKI13qplL{e%5gs;i#=B1u6^Onl0=aDbb5
z%f#E{a1*OdyiS}=tYH_Mc$Iu*VjcN^zx0YJ-2Bfs%;&dw$oN3_c#fUF-V}>)Mm8Wk
zqI=9mHO21}-QzcjeEDMQzLz#|sG8Vf;(ZhEn0S}CG0wAzP2^SfMRE>H3XqaCPUeYf
z@22rv-Qy2Td`Kbiqx5l7{v#7jn&#6oYWuki1K=><Y17~{Hr&Kc6T3`o<3Ka<C6Qr|
z?~%S>j}ZA54R#z(QS8_KGD9n}jl0EJ=Y%yS$YZ-r>@l&=#C{WB3Es|f2LGA^<h#sS
zMpOANvzOi7x&f7D{PoNM3eTOHLnaP#yniZjZ_YIMI`6P4{%1t-d(_0Yluj1zwD6sY
z?<r|bTs857i62e;O7UXin2DdrT_%1pg`g(y{cM6Ezj*PF3@1qcdE7hWR05Qz%B5}g
zv?<~S?C2g-4$~q1clOkw)H#Y`6K71ECH{5ux%wSYGnWqg7sw&(aT6C4j^#=5{3-<%
z52dO&`Ijh`@6TRNWb&?7A+5-+?2!I4agF&FZnf~YiGNJ498k!@zZ@*p%>O9*j)t?g
ziLlQl;`|&7|LvCOXkXaEjTVYpC}xS^!xy#OBG&((jqbiItcz)We3ONnEn$krfGT{Q
z2FArLl(2BSh0+#sEu8Eg=UFIeiIwvMqnnnp01E@xNVoCpm9x1$V!21mG6bso7Eh?V
zZ%vi4_}3@1Y?2b-YWXe;<t(@sJPUVQD9<likS*L}p@M}<7Ajk)XyIN<9QQZ;Q7T@L
z?;XwXP`F-?xJQq;iiK(xs#~aP;XbBYrC%A}CVBK^kC+-`GGq-)te|RI!j^+TzJ-(p
z(}HE8mPNY)s1`H}bu8SpR+?}+rC7owm?2~-FnLQ~c-?|Q+>*0(8dY-n$H?c8SV@2s
z3yy`?dc<q@=h0z}5m$T*frTa(3M_;cA`A5`+)t+ZI+eCikHo2(TQ|974sDe=pR(o#
z78+XU$lZa3O!6(Bm1ixq+@IR8UuyZ2knnfjlWojLYlVwPQwz;3Ts@THDRy%UEm+b*
zD+{qD#3NVN7xra%c0)totvzDOMlP_w?-4&>p{<2)EF7`W&O&<&^DQi}(1D+}@F@Gm
zLMIEIE%dd}&k~EGE*5%N=xL#=C5&UcS?F$wcr~1MX|Bw)7klc5RPO|5PO@*PxqTA2
z*7vFTezw0Q6dHpq46!gE$sfomz`}+jsg|cxY!`dv^Ao8D$wkD<$S3@eC8E~9Q7``y
zB5*o$W6!v7&FnA>!!1lE4i-jO7-?awg>htc+J9PN(2cf403t3_xcVK#hBOqBtj3dh
z&Pfw3OtLV+5>lG7omRwL7*qNYrfK(73)3vjv@pxUbPGT4Og(0a5y~(KGb}Krg#$P5
z#jZ#k&a=s-m!-Luh+i~^U*t9|zhIsP#w20>sGsD878bE}7B*T~Y+(tzgM}?DwXn>>
zvlf<Hc-+Dh7M`~7jD;sHe9<)jDGOYCFzm_n7Wwz}6wV_IgvfaE<u8ep&Kl2Icz<Ex
z7dQ$mtYFul7E$Htn?T9@VsgvXHHG#{3#%-wxA3|JZmU;YSZCoC3u`Q_B?7+$Vb7TQ
z5CX3zeeoK}&cHQ$LvDqhqEkuF_zmK}O?rzYC5zG#z!E>My5&1*NY9wtQu>Sxyes>T
zg?GsV#N5Ir3!5!`VBtdx?^)PFJjq&iK7S^~Rr;KsF~gv(>={q5pZk%8k1c#^;WJ`*
zAoYn5BO(NSt#wkwfJL3MTP>j^*+#_1HRdBO!vESXZ72U&*kj=<OGxz{7WVdxcUjm;
z?ky@LJO%!4etlfyL*p8MaZ~ndqO?fbZ{Yw-TG&UdY6}a!jauW1ZEI1;AGC1D!eMsM
z*Fr<W74nw*4SGG(c=)J=Z`r>#%G>ykJ!0Xqg)0_*u<)aW-z@xY;TVO3g%gy1WEDQ@
zR_i$1btLbND;Z8GzmSn6%ifb|RXcmi0@uBa+<uy0JRp`Lzgi-Y`)@sCre`diC7)aP
z)51B*)n4&=e(Q9KiVngAF7S(!q*+HpzSv#Oy=dVQ`*E&_n)Uvn6c^Z6$<GwgHg2(T
zjl$nTVH-Ev_=gh4LXM3aY^=N@af|dHM?L=two9tnD=uWCUaz=aFJV+nfOBXO8%1p~
zS=?lUWtd;g7P=J96qNatPFzaeYNNP~+icu!qlArI8zpU&vXN(l|4LidE2fdsgT3PC
zkBeWV{n<9l6gKDm41v-%%GkKW#+^1unX)!s?<FJ>l`4GeE+T(GDrbv5ID3RJ0jj+2
zu~ET>Ys0fq(Z;<tYT2l5qms>lDyVLwh7AthDmL!3QH@<TQL1WVZ?BjD7pn}7McXG@
zU)QuD*?92F9N7jP!OB;+xY&NWYHq%blnp9E|LhfW$n#Mh8;T9XhG|2!q1n)F@fVEB
zNAh@dHO$H>sTFW@v8`-ji!ExC<B%r1Q{xXwwk;HQTu4)t-QGL)Z3H&5HX7LoZA3Qi
zx5Y9$ZKF=_xGw2$qvv<hH-Ab`{3OxoY{W&WzKtfm<2zGU0~-zb)>P^1H4^`+k+DII
z&D&0XV-~PQXrtyf3Tz?t=s?kolxdLPl(qF13X}h-Q@HkSVT%<w{X|;XXidVp=;xx1
zjR#oLK`#ewZH`d<V&jC3_BJ}$c+$pGHagnqWMhntu{Ju}=wf4#jlnj$+UUl5Z1l6y
z-9`@^y-4=csh&2*^^Qk(uEo!hOZPIqpN&4GUdme5J7xjKYU_VG)1L^}%O7ZC09oR6
zhM{`fEVOtSN2S3Kc8!e@Hb#=vHXgPy)W$IK)i)we(IYk<WzMHk+n!=~T=P@0Dc;aK
zUbjOUZex^{Pff@u8^;R^W8=|$ovMJ|F%7`zkTTB3cpEcq%%c9^#zY%aY)rMqKT0OC
zrE{gp#OHuC{WURJaLV9ZFpV5CPnuy1@51S}SmE=K_c0rfUzF(m(S(kTHs;t^#E!5r
z*9O%i^KC33ef0c!B;!e;`lbT>?6}69To&5mZ*&waT*EK1v5fWDSekUr>r+JBn<q#X
z26m9MJfx<OKhZmW+Qu_BKIW&%Q8t!yq}X`F#&b5FxA8KEvyBxtULf&%#xL6N4~288
zXV=s-D92vnD1I<Y*DXF;Wn;CCbv9nH!MS4%M@pQ())t{JIY%%$7Bx1n+QJ`jJx67|
ze9j}U*<fc8pyf6TylL}?q}XI*Gbv_cgN=<g-m%3xii#Sl!3n%e3DYNL;KZ_hVqP`+
z#P8YIV&elFA9A#o&q_at$^Ctf&EHZS)F0U*s5>LeaZC{_YLGs)@tKYNHV)X>YGa#?
z9h5x8)&_mt=+5>90j^G)=Wn<1B_-PrQo2vfeIGSHyC`{Vd_|Oq;Up2KYY(|-x5SGK
z#`$rtjeRV$Tc`raOPq!XA0$C+{AlBtjl(v+p`5qzy^SM8;G}fa#<vO3u}?g%Pkgai
z{8XQK?cd_?_XiH)#nLSo#B}p~@$65wSp1J(BK^$rQzf3u5I#=EIFli8(#9$Fk%MXu
zPTTm^MllCBIrz=S?=~*mxWaL5<E)K8$m+kQ&e<a57diZbjq@C6r^WvenbOFdod2hd
zi#9G%;=Lw)c_s5n>wLQI{?<BsmF#LG$H5H_uG#pT^s(_TN9d6Z*RfRBa8UebgN}+^
z%y7P-y5`+J@!mdhAqRyW+~}Z8y)18wIOun0R;bw>{Mjca%oq2U%iiqZ76)Y=+~MF>
z2gMzfbWqAc2?x0j#xiK(-xA#zIaBb;bAbL?9(uyTsROCo9Ng}RNn}gC+|rIHxjd6C
z<Dh)sm{SsA8ra|I;4TLh98`2r&cWRd=;d*bBYvh_p08||xRu}!iR$)^JN1qE6O(%#
zp=Ph*;P<UkB?pz0l2qMK>e!HBC>XG@DiP}ubL&yvK@A6u95i-N(}Co`bKpCW9ppRE
z9Ow>G4r)0#yU0=<)OJvZU+)ns#Bidtah+IiU+$je+MCw1{G|(bZH5EWf$hK{8dHVt
zy~)=p%Mr^(9x8E8p?e_rCN2q8kk76R9E1+;chJB=<RI;!o&!2|@yCk{$ynC`eNU)n
z;Urbx!M8uBXb?NJZ_H4NM4+LAjDxHrhFhKb!VdPqy^?z<)x<%8gZ2(OIB4pinL`&C
zv~kefK?_G%)wW7rnfqrZcF@uhyO;%iV``tcF`)zFWIfB6V-K)qt_K{UEaJMW$*)p7
zN7&^O=;%<5FJ_r;j#!F!cEm)}g)}@P45!Z)&+F=dlIoSdad%QUC+Ojz-GMxAKtAmo
z_jb^ST~CI0(3c$LV3mW_4*EM7;NUT~-N8V<?qHOI(GCVX7~){4gJF)4#t%Ap$ic&o
zI4PLdT>P?%&Qp&#c+>%{j=ARK`j$Cr)BNEMIM_!z7(pca#=Q8Cp`cPOJ<-OHEgej9
zFgfYRaSq0_gC<McKNHQL;9#Ny9?nu3%YOvW5@3phsSc*ILtBOuzspQ>P;^XV9zbx1
z#VL43lFzuK)GE(%Fx$Zs4xV%{#}Rs%1r8QEnCoDkgZXUx2g2c<aZm}|@M~rf$>?B-
zgQe`;g%ZQ+a;LE1Pl?M^PBF_IJkGJ!H)iZ^<}=FfQx2YXu)@I$4xVxFEStuF`3`8f
zzMRx6p8cqnMW1w5^*s6TfJA`Gq8A;!#H&)lN(Wu5=F%UE4D&Lj!ABDRjYVV5!iQ38
z9ISP)%fW63>m0n|;C%-lICzx|Po8n`j)V0MUU%@OgSW_CPo-!iLoLu7B+loO(kn}|
z>bD(ia6o{D_dJs&KxNUp4mLTo{KOUqn;kLHP`r<Oyf9PlhW34(p@;ql_hkFDYVe_h
zj~smAV7r5lS&xHl9N-Q<b?_Nq@7R$4v7OPf0cRE-1Z;J{boW7tnVfps)V6Nz7k^3C
zI-c1<k>ZHG-dEoWRV{Z(G{2|9b`QIibawC^`QO1_BIDq&gMAM66UiMJo^2g)aNi>7
zAcy>AF%b}!Yh*Kfq;E)>-4ag(j*vcgXK$(4nA?`4<ji(4f$tssKo)Xv+`*3yj*(nn
zWHuZKdn?(>{luc{C+3tZ;H2=2gA)!;k}FP$Jq0%%1Q>*Yywqk--met?97irB7r#3=
zLrLW#&&64?w}ZbO{Nv!fg9{F>IJoNI53+}Yiw-W4k<N&{|9^WkoMpD{DtehBWr@Vd
zT@U?`dFdbNFG{w4F==v*Q%s30g*@Tb{o;Qe{O6#Ei=r-aT(Pq#<f5=E{QGWjk!=+c
z;JE91S-Q~$Ih=Yq&fvvd+~ndG7q_}%eRZ=d)>PG+$AfOk@|N1&;x2fwQo_Zudiht6
zi9;4{)l0f4<)VU%iZ0-S8l*BV%DT9X4a{V3cTw8KUpvKag10#>^Y3tRCqKGQ+O$6B
zE*Iro+~eZws=0T&sM$Zu8J}tS1SY^@Wqy>X4Y=1uB^T9PRCiI?1sxc<^{DEiN&<6&
zV9tFm_}6A`I+)TYowEa-BWk#ynwMHr*+ssKMlKq=NV%xxB5)D9sO_ST3!63nBq=Ub
z7lsSdh31N&8M-Sbg@2CGDJG<U0XJp*X_VzMTD3_gBs`#B?6`1=h6~>X1K}?07uR?t
zTvan$>3v~q5xGdaxZgzs7j<3KV}*OA`YtHdzb`MG(^qw_MS=5G+iXJ@8TO8gHT_}^
z^E<69=Y_d%<#3llwR{s71ui<U3tTjH(aaTc`vDitU9@n~I>D2ZSM1_ty8XIn=?d!<
zUi<`ecu?CWDZ@HH>KC_l(Jr}d?}C5S<+(<qA4HVMPA)pT=;@*tsZITli*7EuyXZ>%
zzmN{B5SsSGi=`gPyENdTETWdFw+sGerSuMovbv8eCK38U9P1bNcQL@laF<aCFwhnL
z0z=qv7lYX2r)vJyFCOfQh%Vh%OVjs@_@57v<=8GV(iUkb*>!=%$@EcISTB$hC_;z1
z;tyy9Mv_HcOyKJ-megrJI;n7+i!m<7x}eb!{i^ua`%<f<@#Mh%af2@<iUNK#)jyu(
z3VAizMV~|A6n0JjxObbF>2wz}T%31t!Np@PX1aKZ#3WO>nC;>j7tgww<6<tkWk=D)
zF6OzI?+OQ{nl!*ZAhf{?*hgPwcr8qTMXrc-&)X#~mU7gP>t;!eE&oIUJnn*w{lA<i
zT|DIq%aEs&lmL5eIUCCtt(@oH%8|E-4JNPWU92Eg`^UUqaPcBP@wBj$VY<@ADi=Sw
z_}Rs3a*>N&9FH#6x>%Rc=W`dYxOmmYW*6_dc+JIn7jL<Eo5Ssl^g8iL0QM<w-%Mcs
z?xbUfS{qz!bg{`5zDxWA%R4UKWmRW|2N`b(kOFK7pKfvSzKf4teBz?-tKkO;pL|6A
zY?1#V>)$G^+mqsi+v@8~`!@NXy4XhaUX(sdm~E>I{`-cm2jnqklCWR6*zSs*%a<;w
z9HUM04i|4;Fn03A<Scl5Hr(UlE0#$b_%#Q3)zm&0`(5l!U<Np14o#pBa74_LzHxDo
zz0bBBl@7D*zoxhgBRr{pe8k03l473pt&8v29Y4twalGXQ?R!`JQ;ardKf3s!zHux`
zX)sUtxQkz0oJ+ob!o^8Sc#4j5#;GLdG-U_}>|8NlU%W^B=IJ+<Zz6(Nl3Zt8oLMiO
zb+M?GXc|)*0x{^;A1?l+ko1xbmy1i3$sTU?aG8>v^4!A>9<C<!|K;KuyZd>m#m^GW
z_Wn*XXT2xje_Z@aiR5ShOVZ`XGla=Mg*@Eop@=6&cVSPgxSr@Q{4Uw!MLlfzNiLS8
zHzg@=Z%%-pnuWzZl<;szf>o|3h*`=5JYlAl=b>Z*a1!V3-Fo&m5BHps%6PclqituF
zSLp=!?~ZKQ<Pih8umJbVMCmRM<@nS?c@H%`NFLtqAK&AliifHmDtNf1aa_^EL;Etz
z?<u&~LnRLcDkmxb%|!UV1S>j(R`al=d;#m+-aoGHp@s(nKlhKB${zAP)bWHGE#=Yo
zAw>n$H_c<NG-`QZTAQDHEr)>OL1nR>48RK`0SM~}F!PvXCP1OR8D=^jTn}#%VGo`M
z-@{Z7(>w$oLJz$>^!5;WNRwP1T9M{)s;-BI9x@*4d8qH<{v>lytHKRP-bb9jQ!VEG
z;$Q0@XFW9XP~f4dhsGY7c(@p+Vx@(ywYXH>Y%-w~3)gpRHS^FssiEX)zno^a@W9t&
zk5L6$@G7&RerpeHJaqEV*~0@K+Ir}~wtJ|3(#L?<eZ*<!p}mJqr+i-72bwNc%_c2V
zV;^ydYL}#D0z10rGVSW28@uTigID(i=;5Jf0vu6IX7=&W*TYZ`!#wo!(4SqF)W8ZK
z|GUTl4+H<#ST?6+YDkg}_R#D%pSQdo^f0b_E`ed|N<8e*7sh-fDgUU)|3jIZe)WfY
z7~x?`k~z}DC=U}nO!P2!QmJYK;?W+)csO;^AM0U!Qu(;#mO0ZNcD8?@tX0iD?^=^Q
zOipTeceD9tP0`rA6aIJOO0j{{J<Ra%V)FDc4>LV1^{~vtEDy6iEb_3}!yJCj!wWl$
zvOKS%zxzz*d6=Jc(1IjoPc2LU^lrE$sf}ea;|epi2gHwic*4VqB>zbdPkDGQf!QNZ
zdw4d1iPbY6K2=*342YNWyQ=w8%@)jjKB>0*fSA;N;d;%(2gENW@XJZMGD%l?SWQMv
z;MbFMZIZ4_QeyH-0=(+swFFq7q&?S`;G;LLmwA&!_^SwWHh9?R;rkFjgm}lpyBsM2
z?hCNV!)B7*$5<cldD!B?@!|S--@^wU{_!w+nEauKk33wV$nx;9hfh5G=;0V!=ixIC
z`#kLTu+_sh4_|uN;o)-*kPAh>;K=1T8YO=^Ql36Ro;_B+Hd+8XJ?!%E700`W-5wSW
zi1&E-cZ|#r9UCsINtxpl<PCG=Srg^G9*%EzI(gOs4+lMb<Kc*hL#$zreAvUvvGSlX
za^84(*Km2)82PA&Z$11#@zS#7cWf*>eW)Camn+PWkIkw7&JuagXqh>6hs!^C_}Rlb
z59e9GhhIGWO6lj}1SQe}`6Ri{15w?+Se`jqeqe%pnq-_TuNx2_87U8*R`_=hXFQx`
z{ZnM((0znlVUfJJa2~&P!NVUO-kU799WMXLzNXA4Nk@v-4I3-)yhOqdYg%=@{LxT(
z_GtO1Npj~&@?*p0zbL_m%hx>oodAT1z`q{;^Y|-I+~A{%FZ!a8kJ;1YvOezcQP{_g
zK8pA#>Z9H?`Nwf`v7`)(-Qwe>>+sD!n#4KGywykXB(sFiaPguxUb#N<61b#~Qa+Ht
zw_ksHn~#T&G-t8j=8GE2T+i>jGncn_^1CzTPUGaee3bKXck<M(Ay@QKK7sGKUcN#C
zRNf;hxi^6;`KX)#7dD8@sy^=XQ7y^IPf})9_ff;gjzSG;UeA$y$k*XYdva1fhE9@e
z`QS%czP67#J`^9S56y>ly`=7AaM@xkz{~JqUe7;VCeKb_vM8yS(<;aFk@1oBIqf1y
zsvWgZX60d0EK1UJlGaVqdOqqW0BgQK0UG#dm;fJApbe87`DpB;pO60R1s~BExvh_O
zJ_>v^_0i17om1qNK5EaB2{iZ7!bhBB9$O&uibu+=e6;q_#>dq0@&idp0yoc)$*6p*
zJ<E@jJNxM3qeB9B^wG)3mX<l>AC4eC?dqeOkDfky`RJZB>ikf-M^c!>?c=HP{sD1s
zA2Z_|vU*=K*ig9-sW(gv77jzUVt|i<<OCm&_!#7ayj^mPJlIEif%usU;UPXA^zp%T
z`Jp6jKU1zUPJWcV!@d|TkM=Rl$8aB`d|Vh1KQc~c$!&Ax5v0H$=15-*WC9!x9QYXy
z(rNNIALGg40d5R1!N)`&dlRZo@-dl`iVgHJg*5T8!p93frumreW3i7VK4!29ti;D0
zACIwJ?9<WmEFT>H6hT8DZMb2AJlDrO9}9de^zqPeF^cCWM5{bZJ~>QC74pL(^1yi6
zn<{^?Kwj!&nU5!ZJmur~o}9-?@YXp`@IzzegG1%MBgI&L+Q&0Kmiu^)d^<sYmYgs`
zesF@!!Oq*~eX!0EkI5~DHa_}jW5O@`c*(~bKHl{4GKt`0osU<1tn#tiNB#(Ttq=AH
zdtr?a61mFI#_UjD1;gZ5eZ1yly^q(E{$jg&yxyENC$$NWES$&J-}3Rck9U1+^09&A
zV!HfJf&-<~Mhg6qGP!Z?EV<`&c{4j`tb9Y^JYviCe!HN=`|L*_pZoa2$A={NWSQ4i
zA0PSn*vBVH&Sy#b>Gh{&#tKnZ<i<Rf+?HgP?wqsT$Cp07^08*Byu-)NB!3UdK2nI*
za<k=KK6X=j%ogy7Sppxv{`K`bOHGvb`PlE{fRBSde)n<4#~~kweH`=glaFtFRG%mx
z_3<tHdboTfp$2olBd?B@e`IG(kiTa-TK*v^IeNOxrzGaWmN`E&-^Z^$e)I8*j}tzO
zow+BIS6IH#Xd(GY%u_y2C%nhE?s`n7&^Wsz_fVsf9A9UBobz$n#}yyv$=g0ICOySR
zqgt0_`9FO8>4RN%p-eH}61c>+x6C0-QeXA)w~v2({N>{sN6-W@5%3~A{p;gDA2|X4
zMT<M9%RPn(WH=Hl4R2Z~01;pfyd^S40wKvO1gIFGXn<k?ZVGU7fIIkNfLoHMlwhR;
z+!~;GAf}HJ0rC<cmxTw$yjb9&QF6(oaH%9kfZGy)mERs<#cc7pGJ%k^yvhb*Xb@;}
zOG)P66`)*zy92@DOBTuH1CZyR953K|0x*4hycqKLCKXl=P$>|yg4gy=VHMsEj5&Q%
zl2i*&J;1mC;{((PP&2@w0D}Wa0p#S}8l7|U1Ed1<N^WZfs2w01pizK20h9nf5exX^
z!eVLwGk_I93!wASblC_5g*i^S%;<2s`IqBlJAf0w4RC0zn4P@<-oTi{nIodvbdeJV
zhyvUnpg~eYIzZh3^+>v*LO%RFU#=g3UBg?xLa|1mVSr2^SdkaU7gG|daeyWP9thAj
zKtV#o76IY_O#?Iw&~9MdJV2+3a)%-j7bn98#;m7hfK~xo2lOBl^P^z45ptVA$N{cr
zn6?YhK0wz1-2!w7&@n*g09}Y%vdHPgwoDcL_S^)S1CvO09W7HP^m!(yJ8=%sGY~7B
z{nKPFy(s;-k|A+=2j~-s!QMAX`zL9?BwhEiJb;x?kq0KXf3(P9u^}XBfU!wm@VmtG
zp#TpDcqGZ;?U)33G{Dg7Il}@BzYdQGFfxHhUC$ZK3X4R1krx*&Bg$E2hRYKIOk@{_
zXdGe^S+`|QsSpS;Ilz<vQv*y3a6G^-Y*Bz20k#K>$&AMW%na~OfOiATVu1<rO95VH
z69UW$FgL)w<fF?2%nz_2z%$A1!T^f`EDP{>a=SQ5i3vyFk^oDSTjKU{%bX_yJek~b
z*+98R3O|+HK7GB+>W!k~o=t9lE0jn0xd6{6x3xRxtO)SJ^^z|pKzOz&xrGvMWpcYJ
z!0G^N68Mz>uO`6S0P7NfwaLQ;m0nA3-wLq)dj9JH-nb6GN#2+yit&0oz=kA$<MpTi
zO)A-HVTnx~jDeVLZrqr&nVoz6>6Qd|KS??6KBO#~B7YR%<0R*kB>g-|KTXol0&Goy
zZAr>6@~tnf!(0sS2(UB2cLBZ+uq(hH3rg$_urI*wq|BZq{VGYnzWx?zyFb8z0N+p)
zj1dBdEX|q^a?D;Yb2tIGj68BZ=V*X$ufu;#D#?`$sro}AoqkO6k0t3(N&55kl2vx*
zo(OP~%?wc}#Hj$M1N;`?caE${a`7%XoUnf75KhQ`hC(<%4ter1`CNdn6AE7qa6Z6=
zq{2Uv^h$s~6X0T!UP{u-Ny=8R$5(b1O!8NfbM1Qm-wE(ffPb&&{FeYy3sKnWoKrZ&
zjUjFcachXj3N<Ja3bA~0wp=t6b3w5ry(vj~dvl0Q$ybVp;QUo0L~c@k>M%Jk#Jqtq
z*LWpEa6eLcn7nVYSn}N#;`R`!5Vb;-4pAmV`4IPn_;P|=HpCsF7)^v<iA&zeI+OhS
zC(7kQ+#L!zMws7S^0HhZ!J$fss!5rOA^w>l-y5P*h|2t8+or6C7lHdiR7(oi<fli-
z*XGD8Hapcr)CfU<Wtd7KWY+Il`ANEddM$o}x3xpm36Ty_H-r*G4dD~R&5jmAPilK)
zqHKgPLpUMa5Eh#sVoi%2R=aLsymN3Ze(uwO@w6g&{4@)DA;wNieYM#Ml9q-^8YNY6
zmBrT83&FP<glHI|eh6~c{UI(57c^m2yjTwr&LqfZliGOOBt$`or6HDuXd0qfh(|*V
z4bePAix6EybPExOXvx-v=p3R|h}I$6hG-XpJCru8C!KmAM9KFY-u^RNzIBw`o-b~8
zcy$PIsBP2#!5u@a93>O(l8}_;*&Qs;x4MVu5u#6sz9D*s;1t%2NKO-T*}JWBdWT|X
z{R5}tIdZ?`-2ov6hUlM^VX^w$aVKSlgm^H-;G_(90UgK64~2L*#I^bIBO!P@_;Tv%
zz?i_4%c<tWn+^*xJj4vLYlsmcMuwP3VIE=>Yhag+mdAw{!v-d>H(9<mNoLBc)MR;l
zhzabkd17(PYuh|=O%5?F`8we#?1IVi)a2c^W8`9s3r`QhcS{e7XNH&+Vo_3(M3^07
zPKdcld1+A0ugnWEKg5C%<K~IYc+1K1LehMUTyIc(exCUH;t)%c+K2$_<fF$!JQ3op
z5O0TgGQ?9MRujDtPltFW#B(8@XZKB#pCywIlb0tjrB=^$imRO!AzonbgjkiZ&5I#k
zN^oO&7G|-RIqs^N+=CD<J4tRhNnYP6TpMCtQtXYSwpWPZpm=?VS3|sZ{aZIAHN2iY
z;?oZ%iVELMa9~v%LTn_wC+86LKOx=?@kNO3lnfy@b0miNIK+D)wuJZ~L2Sn)Av0OY
z`yp5}WeYL<Fu{T7eL{u|u{Fdtl6T_&f8{gs!=RWS{hVAqNuD++CjNZu#M#DQhS(9}
z>kxZcrcueAA$Et@lVHA!V>T(arA%J6)+N899B5sVb)K0j?+dX%dCJ=ZAr6vOljIIv
zN^vfpJ4q&d|LNw3Lwu9qa3sXH?C7&ak5ats$szLGE`7%l6z7!b91@KmLmcDSuM4{_
zej?|G_&dTs5sruWCB%>j4@Ni<;v{8Ggqjgfg*YAJN{Fi=ehtN9>9-KShtSIA5k8aT
zoDXp!#MuNs$1(C~!<XANC7b;b;!g?$j*$sspUW-w#gM-WEkVq=9%Fhr1UI3-jgtT3
zkRib%AQGbcZ%#cC3KOvq|AzQ4L{0?0enW)ETja1d(w)HOvn80x+Z!X?9O0G-MIsc9
zP%IJ~#@EZ{-4vnj1bOlt@ht+kMkpSEpUaEz?4X!Hi3qt72G5b-927HW)}sweMq-1k
zm$vxywg|UJC>P;wl4XKiIugylBLdq}CP~XCX|`R{J6U0&2E6Wy@bC>5f$|Z9-s8Rq
z)glmq3K8y&P$@#i2-^q6-zQ(M%(q(PREbbEX&q_8n)jzu{8s98^QCj;b#uiky?O+u
ztVD_+M`#@Jr&q|2kcwbNup)3tTq{ED2z4T%0pr40iJ(T%Bi!(q{K9+IuQSB5Sxab3
zz)130a=_gB182x~gfK!B!HM8TV0kaXdvQ*Xz&>d{LuO%?bY{qDk~Bht2o3qI2$u%M
z^&{LL;lntGSB*Jx&1vFloxGBXkd4qN!Y4E2zvk3m*tEogx%HnqTa>jGL}(hJYlLnQ
znnh?Hp?!o7Y+5?iB0|duts;~d+Bi;f_RW%)OqE-ch6l_CBD_CMZWH0w!SPG8<hBvo
zC1qHc7awu&+%ZDuq_KI!!cP1|vZ2n*mb*mQGD}|5wkgx@5&A`7wLK#AjL<77);mI<
z2rR&=SiWzP$*&V8V*Qib0TBj97!-kDADrZnV_6T2jh`w%L<WfP0SOY}kqD1Qcq+ov
z5r#$>7GX++sS$=p7!hGygz*tZMi`Z_+?WV?^W@QyPzAFGoq6)+(ehZbPy#Uhq*2KU
z5x5bUOs1MFPmC}r!gEXH7V`wVGN0wAC9R$rVHSBc!i=OO`S~$2Lurc_Uzr_Y4jUd}
zX#@r|nHymNKN?|Pg!xI1kxsETK3bF@wm3;E4vtwrt75v04e1m<ksz~gl>9iqvQj4S
zWP~R>g?E>>i2pO>?Fg?%crC(m;+Yg)7vcE`D@fr4pBEy$7-40ERU{@kaE|;knQ)%W
z*0H?=?7=Zp=JQ&e6kyG3lXt1gW^;(fD@i_q^$}i=@J@txBfJse%?NKrcsoJ9L78G)
zWb)k&5jG|gfDK^-*>R*cao!YRbAsU(*04l=FKHkP5N6ZfPacsb^M*D3h(nd*F~U#e
z>Ik1k*c)MAgwG;ujj)sCohENfSo8~y^a!6vu!lFDwNmUZ$(&zCc%?|5;L;KDjtERQ
zj+1vq*iAgiw6o=}DR9_dv*oXnO86FUnLb#y*!~FLM))qmfd~haY7a#?9O0V;<|{|Y
za<k>5Nez7K#&%7aGKbClKFQ>Fe~9p7@?GM|E8Du%&lLU<&P6yM;TMXR!7;bqzmi=C
z#wQ}2<P;F0%i#Eb`KPZJ_$|Wk9I!>AGZBKh^4Wy(SZvtfc+TMXLWDmeT#j&sl4P>{
zCj|xjJ<*<BOma#nrLK*Zuf{ndjc_e_{V!6I=L;_j-4|1CH2#h7A9*H?6=~$8aYGti
z(&(B-p)?Aok)K8?jT_S_l18~S?oOj<8pYBml?KwdDUF-c$W0?Jja$<Evm{ESg+gY<
z;JA1it47G<7RmY|aZA<2%~u<7$Nj+wxnvqtE^$*yefw=`6fBbONDF<=?P-)wqf8on
zRBVx4HUYR3<SV?rGmX2__;``Lu}}kkV$<Nbd>Z#8FIG>ZLK+oWZ5ox+*fTi(p9=Ke
zw3z8?ERm}u#j2)pUmAnP%S3qIrPMEj<9`Ro)zV-}t!a%kYVzwtVq(&$RY{3oPopGv
zALE4vrdArY)6mk;lR8%}6g^&tWroB`8fqHz7mDVvT}B#a8cow^mWGvvokra>>ZReN
z;ieI!5vFl|q3osMGk-|Ti?=-1ArPgJPJ`;KJ2~IAYf8#6J+?@$pT_-ZWYcJr7CNp5
zX*5hDlfa|~bHWkL3FI!88?#5QHflnura@I0-(^~SM00+EK=U+Or13x+ZPSPonzTxz
zbpo_ZQkExeXSB#++J?o3#01#<c4>4-qhlIp+BR*U2DQqpuoKC?Nba26vZL9#q$-i=
zmPYq9Mx-$^jUH+AOk;2wL(=G#M(;HGrNP6gKIF71a^EB+aNkIA%E05T{%H(IV_+Hw
zr^{2v%YzbN;E<Td5Y(nVn8rhCP~Bl~%y~GCNBE%;^3b$6N_&(v86op6YCL$HF)WSY
zX;7Wc0=!t&vt4pVr7<~;DeS>C#-zE&5wA}m%?mXcN4m|Br!SDlv$mN6AXXF8m~<V(
z{3-I(G^VAom}F0*%0hX18Z*<FmBx%T9!q26#vHb*c<Y=6)8*M|%ps4FE66sS8Ix2T
z9S#>KDGSnAm==dDi_*CLky>OVp2!rvlHwPcxipPsX>7WjTAt=F(!koDO5^D?o*-i+
z$nX){HDa3lOw#0M6Ndb1rp)HEs^2fCSle@HY@RPq7!tpb#*1nE&W=mtr8HhnV@Dc0
z(^$#jnZ{dW64En`HEE&5dp(V{X`H+Ce@uM|xJ~8v|K;M!bomfchA48*x#yPQ-lH4G
z-SfQn*@loQq(qtLd59u}WGKz0iIg&xB8rlb1{Er4GE|1l@&D}C_x_&$^Xz9mpLgx`
zu6Mm_t#`fqy!+mBlDt+H<Bejx&ohTJ$rXaRd0OI4!C6&|3-h9LNK*ECyBMoQcXHTV
zLst}IGnc9`jCQUo#(K_(CKcm@Vthy?#rS?&g332Cpfe*t%Sks0Jyddfch>u7k^~%d
z3*#vGTZ{2Am(0w>C&k!SjO_wjFDI4^4D)72J|zCE7&|!J!0?+#5<3S*r_Em!V^=YL
zVtTVO6k|^@eqhEH<I7^~r7<%S-xf!QjXW0qsu*9>=k2rDB>x-c|HugJE5>&;n5J_7
z4YNpRj){&jdFwzi4vJ~AJDWciM+dwFoX#Pk{BSXT75aY>^y;nOit&3f{$Oz5ir#qs
zDI|}IzDJ7DWqH({`d^)vIL7Eqi<*Bk1jVQ;p`L^j#W=}&E1{x<Q^h#VLM@?;gnx^1
zrWpURpcUh6G0qj^JR`+=E)H|}%7%bj;YHS>(TPi}OA`{ZQ2y-l#1$^p5z$6jN{T?1
z6x}5#ErCp4GiN5sN+2yS;cWY?auRYxlQO)>zeaSVW)4J7B?&boTq~ingenp)wa?0x
zP)!0PRFxtFmWhrui5I(6m!bnMf|^24Z3)*&s3n26u`h+|2>!1F!|Mf@Tr-FG1_`8m
zdtP5c0|^NUc@iEPm$*?vV+l<pG?c*8@<tMFk}y8Z%AS$nb+ZIgdX=|sk<e6%wh3Y$
z#m9vFmC{;VfTiOSNeTH9c&OM?!mSc+lfXRZixQq<HIvX>G#h2-ve`lc<$3WnUx65+
zP>K?a9Co=~LXm`H5{^r_Lqcl_??`x8LK_Kb2@@pn1hTD!VhJ53+)4jSkR>=0TnUN<
zRe~X*SC47~rY1BA|BO%Q5^nBTb@bzjjq@rq&rK<M^To@eCnfM~jm(N85}pK~IWs)b
zUP2&6hxQqIX;i}Mo<(LT{qGGzJ1IK$<gsuEer|1=c&0}daVH6#B@B`<SV9*GcS*QU
zLO%&zX~`pr?h<-PI5|4eO^V*(lG9Vd-4gDR@bjF+?uCh7j1>LD8I4I)m=JMj59POS
zN%xg-ujtE{0=(v2pSoW{e+dtYzI=B{4Fj0ca}p1Txv(Q;IK)6HIzOB^zw!_UNWvJ#
zPQow=!=>m?J4Q(uA$oDdkrGz7uSyL+gjsBkmN1$xNo(a&IrT8&<Am9?e7pcWrJN{X
zl7z_;rbu{B!t)ZQN|+{LfrQ7IR}!X6m_;8-m?7a|;l`PCpcH*P<kJqHrWkAHDwU_&
zRh=zij)Zv<=8KG-D@8BRA7f(ANbr>?y-j*%n9V(u>xB<U3ne@u;YkTkNmwLdv4ka3
zbdLJ<s3@#FXJhP^GI<_~wh4AwCh><*@eJ1pO`0BQAd~Vug=6)&JTRosUy$&kgx4j!
z!O?5wyd<G-ChHZ>r9;)1McOYHlpnfZm7<q}uW{9cSxi^DXoZB8OwoGP-lqQHi8m#z
zlJJ&DkC=Fs!{JyA`S$trg6!22YkQK9nw<L@37<*W!O|gNorLvb2=YIXutCCm65f}v
zQNl+Owy+o1h=ffHtAss|M(>H}!068gMkM$*FjUB5yH&!+4ELi^lX_|o3i;xgGbP@}
zh)hmwm!czuPX*=z`CP(IG3Y@FUr5*`VXwq5Prz;#AMrMmukH2-%;uNOL-Ee^YYE?Q
z5w*)YAmLkH!xL2Xy#&&I60})~?*x;8%jX9P`^7DKhTA$V;Y$2b!cR<K35O*7!J0EB
z@e8wPYIOHE35PlHsnMVM{3=qKFZ6$BZj6o|#e43o!sPi=2pplQJpX5RR^6$IznEPt
zK{9TYqcZgm(_6wBu4pmAV^b3+SyiScPO(M_&}>l1ZR@OrbF8;AAmcnE%e6n!t1ROp
zOR<D<GIC`6$0Z}76v3kjp7-*={0dj4RW(bF4u02;j1F>3%gB~dM#hsjq{_<C!S8n?
zJn{)h%geY%#?vDc6-5^=feLbTO3dS8cCRGkn<ulW`HyjlDspt*OB-_K$damp?s_ay
zT}BNVH_B)zX7@qa+-qh2yBTW9s4b(8jO*p-T<AJEI-eonIT8<=cqH{tvuZbpE_DT^
zXX*)1Uq%A~uKpbn`Hf^WmeE9xPHt}!^kzYM278N)rZQqO;&OBndth#KDoe413~NxB
zCr3xY1myGVHz|XZcW;x?OvVE;9+c5sMhh7k8KI1pG74l!GGt*up^PFKcgRS|;8{&8
zL2sAA^O-y6C|zgS={ZVk8Es^wdCgIH^20JhNuK1il~GK?#5oU}iVRig9DipuP3DtZ
z(xinlbQy+>wjHYRZ(7JC<-1o~hAYF9qca>w2LHOC%=CmWgDWeLqd$OodYIkp<tQhQ
zPEWLx(Vlac(OHhlev6ak`VI;^2;5P|odR%Q=B+L=?vl}0#=SDS3S)Z9=p#TkLAwju
zL(rar-YsY^LHRNE9yuygwDY;YgG{q(#P`WyHSRA*rMsVu`{ig`;kuYKC?ubic>w)0
zCaQh|nFcZ*qxWPCmN7)eWEoRr43#lV#%LL1<ml7%a2X?MXW6zRMDy=+7C$eKlA}-D
ziw8xYuleeKtc(dVCUR-aNsJS8yqG4N+^i?bV8N->t}06?Ia6g!<Dl)cX36ND$zoA@
zNXB#-Gvw$oiPs}C9u}By`T11CKT(@0gKM0(SU?_?F<ZtQIogirQuEBHq|ljc&X=)3
z=6@*QIT?@3SSaHurfzZa37P*g6a5|0lQI?yk1Z7r<l(~-5mTO0GKg=CPVhw}>+muz
zKp8BRd`KJ3KMG>nj7#uupPrZTf|%DUg1#u@B^fWv*s>s-MUMsc<gzTYN7iyK%#jKH
z(ZZ|Db{VS%g|Ew~%uiTN6D)M(uaxm77h?w3Ww1)dTb!?jM=bt70#?&t9XINDN5;E!
zxQ3A$*2q}PWu+pfVx5fjTqX(zD%c?7J$hR~bp`Ls*eK(ejN_b<j1QTdtQ9gg$=EF8
zQ#w$_M>JK&CtP$gw#s;-hvw7>S~YhFJ{HY~&O23(#8y-dw#(Q#C|uZGYjM`uA>(ry
zySd(*IXh*1my?=XE!f5N-pu)eg|2L>>=UUk%cLm0N5+>j_HvOnbG{OkfOk9g)(F03
zt&{PKjKfqS<9iuD%J_+Xma$*PK^ghwQoph?$hb5pRL-X__jcG!{+phAA-(02)A*_6
z&vaBN_mB)4Nj_zMmGPU5KV*J+1@>NcewR^wa2TI&Q((k@&Jh{63=X$u^rI{wgZZfH
z-gUI7#U<x28Gp;jQcz04KQd0pI3we%jFU3zugE<u<6kEH(V|l<5ld2y7uus2rWQVt
z8r9b!^BjvmE#$;0GdR4!`p=T}c#4?9`hsZa%fdo7uZUY@K32vhzqEpE1?3f7qo9m}
zvI<5nuyYiYQ}D;(pwc#b`rz>R!ql+AA^B6!ITaLCR8U1ho5iV03Mwo3WuE=txpdD>
z>1F4f!{hRw92~NltDvfaY6_%sDKhW>*CDfpf@>AX3KRu371UA?SCCLpTfub->MLlV
zppJs;71UKwPr(y`zImHXdV|2LXL%bhroVn7)jy+GU1;B^prL{$3T{#G*5I&_f}0fF
zEb#8ZA*Z&Yo!(f%?tdL#51vjpRq*2BVAi8{Ou>a`ifBJ&@*cJG6eJbguAoRkzJgm7
zv{2Ae!EFkT%(vy!PICt3OuCt%O18_PTOEj8TA-j%K}x}IgTn!5oJTjM$)6hPtrV<Y
znj*MEL2CtV6%^B53N8%}YYYj~^xl!!!nyW{f73LExXF;P&5%%1&~8YWoNcQLGzFa%
zbWxxyFcbs|G73xu7L|0<JO%d-3H$F&+X@^7E+e%#HDO5Ds36I!b2shrA)zluDZL~W
zQmujx3OXuSo|7uKFx922)?UGx+4f^OsXH0yg{jwvgl>Ved3=5+h2M#76WpcnH+IoS
z!95DPDd?`CmxA63dMN0rV0K^UZUtM1g!dFA$su^HAUUwBwtq<E_HWOmPYwzD(ny70
z$eHY~pwiIrK84>okAC91X=q43>5q$2qyrRuva<36LYVwoXVQZd3})aI>`^d8!B7Q@
z6)aIOOu=vkk0_X_U<4CY!2|^pnUF1=Q3|*i$0`_2JqkF551&Yp-=l15oM?_0bnMym
zKYg`H3MMO<Cb~>fFjat|wR7b~DGIb68dB9m3Z^TV!Py;Z^DybZ>5&)Gf1gQr9~w40
z)Ml3GGF!nM0Uo8c!pMPh6+FgV70h`G<|}wy;8Jt#1qu$AO^rSk6%Fd_$Lgfun}w+!
z7t)KEexbg{FQC9u1y3@E6}+wBDFw?IH3hFIcv`_T3SM9i3uB%Y(|L}oX;F%*o)^tA
zg~|6%7E$L*3SMT&YUk1e9B%K)qCrbiuPS&=!5a!z(33;M*J;nV{G)m4#Y01amBLOo
zS1EW?!TC+;obsuwlp0nmct^oU3brsq6s%#LSMZ*KwX7IrQ|m?Fb&SsAsm0||H5a8W
z&9mvH_Z4hZ`0r8Jq~HUF@?5&#p*F0LEy|~;lYmo>opv@ezU5LJdaHtu73@?%{E32X
z3O-Y?L&0{I#LLd7LX48hMX4yhIgygjg)p0~&qV(Jf@}HT^o&IAE>@Cr4hQ;D!CnQI
z6<ks9m4dGo{K<7q&nx&=!Osc~DcGmrJ65DcsUHRXUcr6^2Ne7un&eaS@y0n<!9l^K
zliwN|{zM;UyX5~upx}3|L<OA|ryk}mphVkHZcgeq1*F^hI4ug3Z`RHw{pf7^sDfh(
z{^c@Ma9qJ(3Qj0E$%JX)n3tTtIbT+`OX==8sbvLG$1N?LQ`}ykDC+u{J*>HNnzgRE
zLvWVP85&;VSPITDYFrDy1s7<^(D0(bV>YLWNwbE9wT6Xx!=e?MrJ|IIYAT?jw2EvM
z6;)JHQAR~s71yZXh`moZ<y4ec`7096$!1QDil=&M1Q!;iv|(Wd6%=6Esa5DyR#8Po
zu8OKEdiBwkUrb-qGRZ>Su4+(cNs62v!@}w+YN)8MqJhdU$wy5U*QuzZq86VY4%*y~
zYYXu7`80QJT6n#R`7^ya1<AT9ZczDKCrOHtQnDV6d?LkLH>zl;;wBY0t61@C&`8Cb
zjdMnc3EtZ>*;qvr70ZW(x2QO@Db3uY+IhpmANx3qS|;Nv5-Pq@@wJLP6-gD7RZLNl
zui{n}om6yIahr-}D%z?jR?(b3QBkDg4izm`6sTyW;&wGE4uvXGs(9omo3akI>C+;~
zxNlmRq7y!9k^F9Ry0yw*LUh7r&cR_}8x?64-(O5`9~N?ZjbCvj6|#yzMMj09Lgi#t
zxGFRix(ZW;rQ+1Eu;TF0P_d8C5A*F?%eyxY4@b?nZ8dr%;8i>#@Ko>_!&jq4O+cpo
zYp^ui4OO&L(LqH=72Ljgx4jBJInW!V^dvXOC8wP`RcyX3+9<nFr;33p2C3+(qMM4o
zv|mMc6+IYV#+_h+-BZQg^uzG5%lR~$eYV-${`xQzj>I_Sdw6SMs`HX)l*OOe_o+DZ
ziQQkt0AXG~75CGg%MPz#c=+|<RG;DD1ETMPg0k1t;o)EvLsX1WF;>M;6~k1FQZZV^
za221Qb9jwVF{`~!uylAhQZP9?HosXAJ&>?Cj8idQ#Y7d8R1D5?x3$ynFY8WFqn(2O
zp@nlUrC+_`yfr+Ws$!aocU7!W@sNt?Dwe5uTEz?%536`g#XJ>{sF<nZQ5CZp#9!L%
zyX4Gba+Z%CZ<dyI_dROQQE_~DI9D+D3=e;Ar*k6nRV+~Pgo;I6AS1#FbM43Je-$Ht
z3;4_s9}!;jOPj?i-aqdwWl|lmmk6wlh-&haf<xw0wCcP=@QjLQRlLE3SMi*R=T*GS
zBv<hQgEAs~QN>G4`wQt&Bf`f=L@S-wgY)cHgje}=@tTTP1>S#q{)fK=uT#n5)bQDM
zgU9TZTs|tl)D){#tfJcsl5eSy4%&<F(fFjni+lY$qA!aBn@s7tg~_#i_*bz*#jYH8
zy^0MgHZhS@yvJFn*r?(I6>sfL^TFe{?i!yr68}~GP!*3HBSP})-|Kv&VvCAxDz-Dz
z?sc}R_*ez?pE&98p@N)G1b_CSHlK1W9BT8KiaEVC8uQ_Z@V9OnC-}LFohrUy__}Jl
zxuQpe@1INW;!-V0&Rv)~F(TZf;!72KY0|kg=k?$mn+foZif>ia)lg5vJ{8}wBx)$F
z;d>Q7s5r(@s@SjM0IP?JUpT4p`3D94N#xIuYP3mF53ipEr+r30tm0QXux#p2arZYB
ze{d0v41N~^+?x4lK|TH7$i3XV@Cap8aPQ{UOjUoW_?yc_#aR{qs5rq@ui`X4**NE<
ziV3xIIS~5}EA9R(77_PTc4QiJn?9%Fyo!q|E^*16OY>Rfg6Q~i?`Ze`PsL>wSz0uO
znpYe?BwP{ZRk@UAnIe-_F<Xnazg!JfHI&g%Rzo=rIT|WysH~y9xJ$_jS~Tc2TJ+RG
z&D_l^YFK@bbMlH)MT>S`?!pyDhBJk=)ii(|HPq5jUBm9za=A0s(C~Zh2wbaS=41B7
z+ng_6%dM^9It_I+T(9w$o08o1Dl`4|rrp9MA0}_m&|qZvdde~HbLtaoFf^DNZq(3F
zLn{rpYiOk5CK{k2U&GBB8f&;kLsJdQmZq9$(M~$AMKbSv`i2WmOha75uI^f%267Ud
zZ(nDAONVuvO{UX+1TUVedaH)pG&IvNrA(@APMhW$T4*THP^h7$7F9X!hCxA+l$+qA
zvu#d1rD4(8G%r5G7iqXd<CpqE*3eo*8;w8l>=bKAYv3o5wi<f$i9X?`M~2mNqEBJm
z>>9Lm{%Y<h8dMFM#@`8Y8mz3$ZBEys?c<M&RavX~IoHx)Yv`t-y9P&ttKm)!oiunF
z_<^*YhV~kK4S|M?;DmxQc2_^H{<fiT>-KW|#M(haM-5MjI5La)7{+a-vxd7gy!DCQ
zMMI7GcIT1NlQ2K4cGa-4v`f%KLr)F;G~BP@ZVkOO+@qndhTfduX=l*LaMPJIKlAos
z99u?v&AnQ**YH#1eHu8s86!jPiRAa!Fo3zFVX%e==#2&TgPhUhsjlTy&yEZSYWOju
z^Qv*i8KPmRhT$5xzib>C4mzLyeq=aI!>N%W0c$upqcn`xa9+a&j;mp;hB+GMY8XdT
zuf%!H)G%Jd1Pv24Ow#bM;7``DBrEZdhUpsCU5QW8FjatQf|9d+P1Xz{*<e)Iu2h10
zDvk=vWhEZbpj=aUq)iq%vxLB-8fFVHqfK(wmH1;C=F#mMwrZHKVS$F{HN2qVae70;
zlXSa=Cp7-KbynT!RTeXCG=61qQL|AY)h=NKvl2@MCHSFKV&|3kG7V2_ct!)UJ}O+Z
zvFfuL-v7Paa~e3@Ju}KEr4w}@%X(46OB&whlGO0BhUFSw*YJjhSGb(B61-le2eJ}d
zX8KFpBwy3ONmVG7SfOF15Ll(*O))NYZk!%)^hL)D-qQI07fFsw`i_QoIWCid=RX{J
zZq{1*N=&@e@44$WY|!v`Q4x)KPw1JNPIAy^+NTnw6CW^+SK<d}XKm8(p}<mBVpmoo
zKP$0W!$&L&(*s`n>RTUc_(a124F@%B)39B`9t~e=_>`R4SzmDRYWPgU4h^3Rvrk-!
z?_?23M@CX7o4bYnZyzqhDb)K+;kbM0VGZAC_*O&b-jylIiGR(C@lcg(W|Y~dfxVKS
zDc@<>)Fz8Ie=lauDgPkAe&H)Nf7I}khGQCzYxr5iAq|H${7P5MD6?*Q6{`J(VJ*df
z^U3;6booQWpCW3%vovKTyb0M<euR}FD{)jqmr)_R&`37_qU$vLD`xZ$?a}aJo2+xX
zds1{iEi62rl{iI*mx`RmIR1Hi(HRYAMY;|XnR!lhuYO0-MGco&rgY@$_)i3=tRAg}
z%Nnj|$kI_tM;RSomM^3|rFH(ZPn68rLWaf@^BOjzOgX{H(WCq+uj3lgte~Tkj><YJ
ziYCP<%qU;&b$o7CRl%<#Xf++sQC&w39oOk-+rZ*{uhmgY=&Y$n?xOR*c_{K;Z5<Dd
z;{Ps1A*k_j)$4`K4La%yP*2eMI@I2k-MLvm{G4WF8|rAJLouKlxJk#&I_B$Gprf&l
zCOSsw(aV%ubTk#9tB#nCxDH8&tRtZ#PsbfPTI)#a$k$Pzqfp1KI&Ra^Tt^EUJTB2p
zk6!NZG?kbyVfiMA?`vA>(SLBSnpc^W95s`b($Pwf-oW0jqeurOdBV)|RUQQs^F3f2
zJ$l*HR!3TZyB<&QpWur1=-uC<Q6Z_qsp;@_1UfXKO4nfs0lpKYW>b$|ZaO+F9ehV-
z>(N_XTD4+SNb_7hdhP4!*fuKU&>SnHql1o)Izk=o#GvgdGd{ti{+=DOc<OtnXi~DX
zj!r@wnJ+$)=%Pn&(5U$?J$m!YcV69ebl1^CM^7F1F|s=D=6st*w|eX7CGh+n(Rp$o
z9rx%seM?SXq2yjYdL8!jsF3#a|2OZ~(O>X~=@_8n0Ubm1=-vH;I_k}+HmF_JAU!&A
zA1D;k)WIbN(;kWq6~Yt3tl>h*)i-)0b&R5Cbd1q4jVUB%I#$O79TNo}r(?VTjMTZB
zIg@lu)}wdpSO4vCijJw`ZmLHX1^9ya@#)FwLjO!1vzR2K5;Jr>EI1T+grjszcmBH^
zO?p&xoXe~$PR`abM*up3O?ve)9UN|+km2+n*RhZs9p`mCq4S3Wuw2J0T#5XY#2jN<
zZY?-lA-+V%4d-J^1$|P-Q#zLEcv{DrE3s#E^wHu^)`?Sq;8_MD9e++R@2DStLC1?a
zUefV4zxGY2eX?wvc-fjP4)Lmv*K~ZSW0Q{8b-bbDU8ef>+!b6JM`F($kG-X1rNCt_
z#NO1gitFxJY~P{QeXGY0-WY#d$7-5%GDd~(h#@Y2oV7;BS{>`Cke~b36}+coy^al{
z`Cs2SnO_!V=N^x}&*h-w15Tt?oMOCsrLs5c_(;cLA-qM$Rvmj-kwo)j9h+;$KiBaI
zlUbOwUB_o)MxU~bOsQJFTQ%A|)Qs;C%t}M!J4Kf-1l`4unep8MQ_tnf@x3}qUy6OF
z<9i)n>G)d5O_fW3qhp_r?SIF<)p394`0@*})_wRDyV>OYpku#|pIID6#t%@>zcG5?
zCmpXMeo)XK1)W_Gzc?x^dn$HF$1hwy7h@}L%X>I4KKNqnR~^6U_+7^zT*zERI{wsg
zM8{Db$F9!tg@Vg%vR60H=0uL`_)Ev%tf<4{Ve9xmLV!^yJQbr4rK1r&rQ@uQhGXNW
zb^NR2jE=d@A`f#cg3UL@pX-@eo*%!!%Ag}<pq0Tt5Q<;YQN=*6f&X+|)^SBgmVs*w
zR4}m0c1jt@Hc-YuW^lZ;;Owpz&%Hig)<BMdZUgjk?0bE@^sU*X<tg@8?8MMGX+;Cq
zjt(muNRAFGQL<8e?t}3^FUHuUPpTTI#%gTfW&<#=FE{dS0|V6!)L=&gH4W4i{8|QT
z8@TdTa>uB+IXb+~Kpg|u8~9_i$>t44G+$nK4T|5|A_Dac)HiVN`1pZj9@Vbu7{8G+
z27mWC-pJt3SZ6cJ9BXWocw+-i4CER3zF+(nBU%w<i{o(vO$Cn8fSPe?s8k`IFi?DV
zoL6MOfqVnE8hHOgthvGOAdTN9Fq_Q;=rcNOA^23=(m;X0g$7={K2G5;Zj0Z}FBdeB
zHqh3<9rW#yXuY&CaL>%F)&^b~n8lDyj%AZSplaJ<A<*SqHOT;*vY`Dl4zXrnef7Ni
z4fHpl8!!x*1}p>HYb1RGwt;D}#OTo>o6c1wWfQIek4|tCUCJhQ_bkI(0YhdWH1NZ@
z!gdBa8|Wf%djlN|bTqK|q2!%{)5*Y`(V^O_vev6InRkg>1icM(Wqb{EH_*dCFCqNu
z=&+{%cN<u7ceNJZ6;P6WNjVT{AI{f6Uq(vk=_lxYB|6XFl%mX*(cu6C4;YweVv>mm
z4Gd&9nkZvpkb%Jl*3kn7h8P%XV4i{b28J0JZeS|sZeWCgkp{*Z7-wLVfzbwjsgw8V
zn#%H;)aH2plsb8182Whr6D{(`8<=2VvVkca;zZFzdT(uNlE4Ie73H;6>e|6t<tBN=
z7aJxYGBDl1Y@u+5frkw|Vqm6_-#ID&@y7Xe)}~&lmp9A6qXu5@R7jn3HH8`;o{^qo
zV6K733>^5l@Txr<EQNO$7<in~H}I-~g$AB5@Qi_H4J@Kh3_N9EnSmt++SkupYT!xH
zoeJ+BlctjIHRXh+yt*z$RZkl@GgzCkCe=Yzo-^>gftL)tY~Ysqc`wjNS$WX_ZDSW2
zGrmRsas&KI`+-9=3UGq7_BGmU;4Q8K1IxD-zQG6@SjqUFy8ZXX$%CWAH(3XGOH*hJ
zJ=rRj|G~NxC084G$H2Ry*OIfhSFBgG#(?}vm9>mu<9yora9@jJ8w|W>;3oq=bG;bY
zXy9`LI}Lnb;6no+8~DV)CId5uXst%4KQgdcU^W@7Ee5vIIn&ZpMyF{lL%EHG>)p!R
z4SdS6)}%Oh4)jH%{Lc*RVBdH?{XC&jlEPmY*k#}w1K%3hZD5aqFAePFxa(3(hOu??
z_P$lMMKYgCzB2H&@bI0Lis({CbDx3l4D2V<K-Ncv-!owvC4XST#PjJxhVQ>xMF$Q1
zXyEkf)ZL4d`&Oy+ByZ7}L(CHc{}?#I&}+(J)-D5o8u-<~Z^A+<ye5(VyTDA9Bjh*A
zKWg9@W&TVIsgQS^1J%j<%iwoo;)RCE51QtWS({>}(Kcr0Ndu=0oHKBqo?NM(771|1
zz`q6>4bjGLEj)ZAan=9<oinOQ{sjXUS@~I14O|jot+}=EKLM6E&9A?ukWR=lQOb<`
zT-wC8UU~FDon-#annGhZ@v<h$nFvf|Oyrm-Zz5?T-^4X0Dww#=L>&_qO;j>b%>+zT
zHo<(WVj|a!Jiz&$j^{IbtD5{x@O)00*<0O24HLD@XpvrP;@;8enkI%+Dq?cdrOZ#_
zvdR3~CWtxB>rLEX;${<#P1H3}&%});8k#t|xv;*81|~mTD+~dfy;i5LND9-tk%^m3
zEMp>R3SB|h5jQb$3k^=@=b30~B4#3PBEeBk6umwzT3r7$kCrp-p$t1RwdnR+P26Up
z$iy8cnwe;BqR>RjjGWxUM1hG#@%)x%lq7RI+(CbG)*O+bm5JL;yn9O?F=x%(qw>}!
z+L+Ky7$(vt+M19}C?=kKQ!O^5btjqNEU27a7<bhK^IsE`GQ34TGu$*`nQ%>bCKj$z
z8@!vcO*kg5{FUHD=nbmk(3JO0TrEd5EHu&1L_d??#vSEzdlOwu+-0JJiH;&1cbe#A
zqBCP!uPD>GTHVIcx}(|4&s6DZqMM1HChj)*<tORxCVH6Y+qoKN%@OHgTGh)$Zw6F&
zqmKzzhI=Suf-A0eN1Oia(J+q{i3ZcX_t7xn^Zq6Vm>6YZw222;{8{r&3}$5CO${{B
zXia6B%4NcZHiSc)7$IiFfDSV;TzG~<v+OW`XzEBYH7;jHWQ>^9INDq{io#eE->ps&
zj29f~*8B-3SW9W=WcD(VWucUXsV1hGSi@0FJY-_JiO1<=6EjRaEQXtB;t`>Frioc%
z798$T6SFysCi(RF+|?<LKF7o>f5v#tHThG~|HFSSEyIA$7kU;jf<rW;Zr&5jA`{P>
zctIo#OW9(2&%{zDhKXlPJZpl*{3)iiiKm&vYg1fJtT|jD#0=AOW>mn*oU^TvOyU<!
zykz1H6Dv%-EF$s>Cu>GEaJd;(4_f#+mxdVeb>R?N!n<69D@}ggI^H(1+T;sUWtEAy
zOmIh_8#x>u$iD9g54>waYMM`jtJI426b5>oiS;H9oA}kl1{3d@*lFSm6YrbYXyRiN
zpU?&qADY-?VzU|T7hHWc)>dZDf5f#c>c&<x+DyrrzqOERnS@N3Z6>yhRlkFks#ejb
z!t<ZelXap>wYMOj@}G-(!u_so<EXjI#MdUiF|pgk9ur@hxNmdeUK3x5wZ>#%^qF0(
zwAa<k`_{xh6F-~aX2d~R2N<dESkO$2S)1bZgNgkm_<)In0{<xJPl9F_M&<etJ!9hB
z5RLQVmc(`U8@*@ZjES=*{tyoT%f#O%{xorfGZF!%=Z~8>W`geJYNDU{K*E6jW8#E~
zQzlNceAUm}Su>9n;3S*kd4>X9=FFmhxgHzlan|QdoHudF#DA=ojq{k97lhNQ4b?6R
zK-X~rUS_SJNrR&TOGgo8KUbx+g=`C^1<OJi3uP_bXrZBnau#wd)U;5`in^4yP}xEi
z3)fhvV4<QFB~>LWD)`I<J}oe37`R*uRV`GvP{RUKtC|IfCWFN$bB~lWBE8naH=7Gt
z8Axke(KPE?(euxB7V22I-ij&-^Wg?7+T~g2S=?Bn>shF8MfuZ!_B6@kL|6eR*2uz5
z7MfXTZsBGNjV&ZC<XdP$%@&$kh*{Cz&1Vc6d}?$Uw?MxoEaX{HRqWp=k9Dc&-Bi~f
z(;SYPyN|JMwW3F<Hkxvq6;*x)sD*`=7Sil%p}<0+h1)F@Sx8ynb7LzpBTDjNhMNc-
za)*W17TRz|$$aJ~XTfcYluagZu?5M3YC*FgThSAvVuAY+V@*HgP1m^eSO9e^+HMRB
zj3&!z*)5UNYzvNsJ{In=;9Br3bhL1%1z-4(_P4VTSjboig>PvOL%`&u=JpmkSkXqz
zwLqQBmQF&Zn}zNcI$P*s;VvPt??_QsD|%YylA%2J6yhEh?zYfN@Oui+FdUpUS8H!8
z+SE9Gy0ovwzcI!b3u7(ZXQ7{k!4`&CxZgs53lCWQw|%}AiJou<h!9ghpVjI7fffb{
zdsxu8BA6H)eW<W!xP=jnSDn0JjAlGPT_KOdjkGYz!e}uxgFAYaN_&cjMn!TQ&11G$
zm}H6SXMrCOm@~{JE{Dk$=$2^~9->Ze0YU>yN|)Nv#=*RrPX6fh43R1f87*W{nrUGc
zySSL{;!z8;EqrTZpB;VBo5LiuakGuN79O)Oj|=KZ?0II9h4}(65cF{i3oSgsuyRBT
zPgz*Z1sKm=%8WV_%N-Lgp|38+?s=nt-Ov6|ZJC9qEj(l4S$Z!o`uw=^V%Y^Z$9ea+
zEm_ZTpkpy!b;`zHwD6LJL-dt}mn|&kBDL_Lg;y-RYT+FV?^<}x!s`~^;vaTec!LHf
z;{J%-mCTlOd<7#_Ha_o6>`h^3KQF$@!W|F9XH<{h*Dh}6XKQuitC_BKqYut&EUb+j
zi1#e4v(S4*)_Nvet9X-<@rD1zrrwtK^6qNyb7()lk)tC{fcq1PoH+3&M%=<)3tw6I
z$if!J#lmNt_33h3Elm46_Y(^zN5nt2@Y7$hA0CWmy3N9NVO2Eii`8}ryqilvi=$=y
za|=5yd?A><r1&l|?za8q8jlHivav_-zqC+1CS>=oxlXy<EF5I)EbO!Jy@ekve8+Iq
ziSv-H=i6mURg3@QJDsk?D9>v@OXAo#Rk=rEKhi1-KU-MemtScT-_R!BX-r63FPV4P
z!mq55Hou)1zghU5mD9pm3x8Pn)52dC{uY)Tv2e`7aSP{9mpf|lyU^qRdC?q)jR{wE
zioib>PB6nQY^)ML$w>Vf`|!nrQ=-Z9jbBT}OX=|eXJh{g4#RPds`waVqqL0+tVI?s
zTe!l)TR(n@%XxI>@P_1nqDc-9vKXB&m3Wp&+NQCnnN4ituFJXQZEU|cUe-oA8{u{F
zOxbwOy%~ZWo4<sfAW&<>Tepo@v{A`M9UIr%sBEK(jp{aP*vPd})s75?jcPV#R*BoC
z<8)(<E3xsHW9csOH?!JYYvUa~Uem^ezhbX9&m-oPYuWtM^muI>*KrmnV{Xkjn>W~~
zYvV>64TY)oY|I~?Ti?d)-1y{C@dkqVZrS(^r(%r+rXC)!v>qQnqdARjG_i4?jea(6
zDY;u@qp6LUXvS@{vQhrdM8Za%;3REKOvn3|iR{U@ajT8nY&7F6MA{VCXfALIL0bxX
z>}>4n-9n)uWn=%bTz2PmJ4gRH!gttcZKI8iw2clnI@)M!qu7RKL$@K>kVW64m)j@;
zwCx{PZM;`CI=Ll&xhS&7uwje4rj4L_+_It8biZgACv^nh71R^d7nHpM0WyMyHrkc&
z+uOLKXQcK{!MUr1--%JMG2}#yR~G?jLsuK!gg|#ed)w$yBHvShy9Mnf=&<EgskV=e
zdrD;b+PGKX%Il(2ulsHExAByXWi|%bc!0{^Dwt*CK^p^Y46`xZ#vmJmIXY#;!8Ml&
zLtI!bKGf!)P{!3N@sEziM%Wl>W4etQHb&VPEwb+2_p6SvF;?JdHpYo@TO5l`6<|D5
zuEeT|0!*?oS%4`e{2-Czj*HgFb9cudvOzjH5$DhkGu$>_8WTQZgD2acl#g%jka)UN
zmG27Tk1`=e_c=`6OR*<e|7|=bIP(O3LeTj(76|aTpmfE;k_j#<;VibXMBt?*9D3m6
z3ON*h+Qu`?3LEd+c$S875pl1H=RPkaUoDY;!N!ZssN5*HFA3($f-V>I6~<*|7GwIF
zXufXa4FOgNx=PTMHr^C~l2r1Rzyxm#uv%zf^W75u8XIc`UMJ}K68;9xrEiq~8*O}G
zV;c(#4Zbh_p^eQpKC-c?L~`4;*;{OE<)q$8ej=D!kIJiF%lg>H7xm&D#>Ss}I>DOr
zskpV93$tSUGl6#q`njMx1^q%$4!TQ#ZY#3(FkZK0e<_;#C&c&K_^L$aYXQC~nbCJP
zzPItC6YbhRa3M3b96apcfQ^GTYC5Rp;71!j+4$GS85=*_I3zUuC1}T+vwkVjeAvdX
z+yX@NcN<3p_(RY?OJs^(D05WcV<nv9tWF)GHNxv}!TiU@iITe~ZJZMLbP1>Y;M}t|
z&aqZI$Ps2Y`nueCZUHtf3Yk)ZNo|+t1RIxaTq)_B<)H4?D87}-{jXk?c92~nUq*nk
zg1%BS%BAuG=Q_B?L8s>N`|89i2u?)@l?0$nWdW)<sM8{Txo2)w(X1vYN@S`FP{YBs
zB^+jWZ3ovm=-{9u`#QMZ!7UD&I^c2o4Gx~GkW<&e+|HFbL_G)f9W*HEdy@b+I%rtJ
zX(T|;PohcP?4Yq|HYvHg;Q4Cg#~j@1;5NaGJ4lq=&2x|}!TB6TiAHSZpt%FNgx|u!
z?GB1Wv!#Oq2ZaKs9JDHt*_0o7jPts~L2C!ag5O5abcxJ!x8$}h!9xq<QVGuMo2xib
z9cT`82ch5_4om?8K`jSun`QeBY|(TCbp`bVy*m2U^-G*_u;_&XJ|ea&x!Ya<F3&q1
zaI5X)ptInxOBV-sIT++%u!F7+x;f}CZgm&5m!Q<y!$Hpye7EzzLfyNB)5pO*4*Hhx
z?-l&}O78Y^aDNG2cqxj=0MUHF!Gi(}6!dEGAL3xBXijl3OaRJ{aWGuq5e`N=7$xv%
zLH}>o1Y;eHb1+`;Cki@2P-?iE+mjqj7M!bNkw4YJG{JdD(CH=e+fvcOe1zHP;CY8X
z+=f{W9u;?=pnC<F?O+ZQRp7@QEOep=A@-W*V19|71p+)SC<o2%QOLL~7EM0eKj~nJ
zgP&Su^C5q!6TMWOd_$B=PhFK4^l1mr2tfX`Tr&5RA$Y;Tiw<^j$vAk)!OITTIan{m
zmJ7Pd!7Bp1TGID5>KFJ82P*_v>EO+hyQrPLy#N0y!&`#+wu99Iyd&tlC6a3#taZSB
zkk_*p%We?-O%BR7j>^k>4&E=3-00u~fj=za)V)1>v%nuY*y3QTz}p;bckpqE%qIfS
zSDy;-xuBnw+}+_Ib6<i3jgzAQ?GpU&9DMI!w}U+nzI5<mLFB`)9PAaC%@4L@eO;pA
z8v(u*bRY9p?0Pxl;(ST>dFA*I4)%*%2LwIHDa0ae6#L1+&khbb_=PpWMUjic4t{lT
zvx~+qf6@iNJIHlW)x{s8?<ohT9sKFwh-e;l@Q(n;1U)V&HUA~R--2?K+pEV<I5=5y
zmz;kcoN-XvMYbDlRc9SsD!F^k!Fho%2zs%EpI0vapTL((I9CM7a#2bsp`Q1|Q*Id-
z<y~CkqHGDjoQoWR`DjfsUKL#areQR6#s8CO6*<4Miz+3YzmMfsbFr>mZhgUli|Q_F
z2z*0{%(X6R3S6s%Q(J)RT+|WZ`V#)6n<M>oUDOktL0(ju8wh-(pbZ6WB<M|o?z<*>
zYU0(zMN=0s7q_@knL4;Wn#CQTmW#W%=U{G27YQMs=OXDMUtkI}b8)M{w+Z@x^`W_F
zwqRe8CzLF3Q7D)xL0bv>-+^fD+~K0Ni*7EuyJ+Jg?IL6{j5gc4D0b0aXpn@w;ldO^
z7F2Pe3ZMx}Rk{E)!*aogPtS#PF=h*<QzGM*Smg^&P{PlY@TsRA#})hzE;_onvqYwg
z0G$Nw{Qt?{<)Uke%>J*+^>ESC#c&rRT-;s4f6zrQfqT2?!@dId7qqX7dtKaDB3a=;
zxqbrQf0gF_FQW!fZKv!9Tyz;2`E8(!K`sUhnIVGOVYKLm3QRCefU7|n>0+FV@h(OQ
z=4e632s&2KK3|q&7hV%YbE2U0D&|ZQfc(iWrU*RM#WVpJTq@@^!^Ok2-$y?mkGPoW
z;&BfPJ<Q_a4`b>f?P0cyIWGQk@wbb)E*^8SmYMHjo{RY|UU%_^i!WY@EpYLKi$&Bx
z2M$lZ^hRu<;O7iVE_SiR#mg?1yIAVtNf$4=c!`1T<JPNT^c<3UivAgrS|;ezf<EKo
zSpl9Cly{#O-~|_7jtSX(d}wOx?%1g@;ozm-D=uDj@tO<eT4P$NboM=Now1=^DaBhY
z$A&9htaS0Ni_$}qZ@T!dOTk+%-geP)WNMXQ&gpKfc5&_0R8GazJ1))-O0^o2JTWbG
zZ|8zFF5d56@MQObb6pD7yV&638yDZYc#nJ+pS#%UVxx->Ts%-A^^uDYUFcn_Y;v)g
zE;^(>^<XL(8@@U#_V81w59h?TxY)8Vw$;UrPsBbJ^b<kZ+~#6?3I0@o&jj5e=-k<{
zFI?<$v4_(aO6tyuJwGtH+Xd;tIkCM=<0Y}LTzu_<&6#szJ!Z#_&W#NklH|DiIBORN
zc+2H4&#K?Ez70+7cku&b`i(wdY)Hw8D|FHyUHs(YsEcDRes=NPh~yzA>YC`*H?34Q
ze-X^Xg8nM#Z!UfpfOr3J@u$E?N;n*->{Ds_;W*1k(&@Z7cDcUskBbxBI6PGIaMHyo
zR%s8VJ)Cy&uZv4A{&R80#aR~@7}J-E?)oH_J0y0Fp>ff+OKjV&*w7v^GB2{KbSTKq
zQ*#E!%8p7N7+m?Xi!1cc{#?CFL6(PB!;<T-=rhNL*&fPxsNkWZhq4~Zc_{Cp!QII#
zonkp2e~~lx(n;mf4KX&a5&XhVG2X4@p|S@ub3HVykeawM=sLKdiic@8sATdgQwH!*
z-9s}E%{|ocaIJ@%JlyP|riWS{YJ0fO!^A-a9l96H8k8I}Kjv;Os^cL(D|Wqyt4-^n
z*bQ{WV}4x^^#mZUFF*r9ZxpnlhejoLw{|ufduZaJsfQQ)RUI@ZrgSV=H6eM6hdcjP
z%kIwHKOz?6C?4+56eK)M?^uv0C_z$yd_iyZaGL-tW>)5{7Mw!;+(Hj24=p`(8l0>$
zE?MBAxKoU{m519sv=+^JlVU|49$4$%;i2(=g={`uDqW>}!Hd^ro4sRgDdVAshn^lJ
z4>DDWQ4|lV2it?=LGz${Fg;iv3=jPe$5uDY>OM6#@!r_h2MRvwpPINS#_QH8N!Nqt
zp}mI=9()ghhmhTSR#~~JD8pML3SJEhz8{z@^}4=zX{?=xeGeoFl4Ft+MkYJbAsnb%
zLA7;mUgrWPNoNnQ4N7$p^ezuwJ#_QXcXYwwuF39<*Zl>bRVa97K&nT#g1bHR^6;>S
zM?Caqh$koedl=xMkB58M#RI#v8<y<n;a(5-F+)CA>BE-i+WaswcE87;8&jHopt^&S
z4|sS`2tVXupa5e$jP)?c!(awzM6ANBAm>wSh!|q1hhYK?7j%T69D1Yxqdbf*;p`or
z94ESS(D4E=%_ayxlQU6(NggH(Fh$U*f=(0kYQ(3Djx&U{v}DEDa3+hthdCbRdN?sK
z`KX6N7VwwKEF2h{?cw<ktFrl+V6GdKT;O4z5S#De>4{0oeE+aX{=PcdPk30wSa|r(
z!(tCh=%P_oxvZ9Yc+$fM)X*vRl!s*=R(p7d-90?x;Uy0*dwABvU4O=&<8a)J4#yf_
zpH2D#Q{BVn-(!;w$1eODqrl~qzFY{rD(EYMUimG$^%^z&8hc&PHw0yKg@=^_zbWXd
z68>8r-Y&uH`>vSXS`X{Q)Yj18SF<_m^&U2emHR$jG${EVXE!-HqkF;2{Zm($_C^o+
z!&4(Cr9SkqiKcq^$ip5FUwYW$VJjmW7VPryv4^Usaz7zwY&iQ?RT`DtCNP`Z1^Cp%
zX9DaH^z)LtJ3V|+f^%B>)V5pbO!bTH_3)L4uRVN2A6C`B8XG=zL}`CcWm)^y<KO6J
zu~@a4m?ZOi4?lQl;iILG{T>dmzIn*<anQq$9{%?5kB6T;{OsX355Idj#9SSgJnZ4v
zsN^qPs&%XC`}A|23w{+G-nwY3e|Y%Q!x0Zh1+)7&lh=dY3yyg>?qSHC1%C-TU{nD+
z9v_?{XW6KN6D<B7&eA+OWMJx)hciO#w1<B^JauOQM`T7#8&yF0qg@NMfywh8E_%4c
z<v%cafigV`nodgn$5lD1;IfA)6O!{US#S3!n9-%6`uJ2SAEkXX@o|ffY#(KO)bvry
zM_C``d|czBf{*uy$8vmZ9-S=jgGG#>!Ng?sk*SK}RwW;meas%1DwnM;zpr4(gj5wD
z&BmL#K7LrH@T%&gS_y`a>Ls{_k81@kHzG-~+CHxHF>PS7u8%rCuJ>_+4}Eg7#b+vO
z1+SlWd2G^{dOnQO>H0#rfuQVlqW}$kG!o#Z68_BsG!~R*H}w(ok@S)8gMN$q_-AaG
z=SQ1h!jI|<S18M=@p|l5A0KomAm=tedU7kMUA38y=05x<W2~IySL%@D@+|Pt#z)#m
zp^p^x5Oj(a`MAT!?LKnGg}nSTnbtlUj0;n2PKpuyyTfbiqu58_BjZEzA#+kbOdpC5
z)kovesfT=()mWo%r>AsE_ReQ>-ZeU#$ASXOhwa1hqy3Sk+x6iwj*p~#AKhP$F-*4{
zQY-zTaHHYs3w^Zn(Z$DIK8nUB+xzI~<4#6%Sh9l;ZUGPWE9gXlabag4$NLww>{sCQ
zD<Gi4u0DpeE9gr;bFy7QH_`0wqlW-J1ttG(0ebo9EkGYZ?<u*<=fiu21}ZThNZs$F
zzmLZP%nLBU#{=|006D;eJ_d4?`S{VtARmK$zB<IKRN`Z(kLf;U_!#D6xQ|IbCi@uS
zW2BF9KF0g_{;R@K^oEb^y9x_FOO2*vz2xX|;jyO8$NE^Yr*Q7La7LBvblJ8Oe0=+K
z{zS&NS(10FJmXIBG1W)s&*}51*EAm&*W1g-g%nVBraCvtq1eNG`1i5Y$CEy0`k2N1
z@$rO@=hof+DER}luf~P5eSCQ?`N6nwj*q$2KQ4SsP=a|r<_o-_g!8zM4eM^_Esnd$
z#}XgUKjXIjJhj+Iug_A)$A#3~;;W*kd@SQFA20ZL+Q&0ug3tMQmU@~c&+bSy7$42C
z-1x}aY3uD5nL;~LFZ;MO#(T*}x1A~KY&SsTyp{_l{qvfS*L`fGD$+ISH+-z|v6f!)
zvC_wzK34fy?c*IEZ}~_Jb$PwbRr7Xm6@NV>0`K}bVx(%i!HpxF?sBls$9kIN<3rBN
z$9q05f1Y|@=r8wm;fS571+CK?1(SSoHZg%mI3M}g!Z_|sZD!?hgVgviXGpNs$HzWC
z;qn<0Q1imU!LvJLj!5}WeSGF)5B=<8htN<{4!#iJb3u0sx@B;%%g1h^v&=@DLzA=D
z$5+e~)*K&S`}oGkK32J}3wi5X0cZxBR7jtEM;rbvy6OAE{XPmtI2`(baJV-<JhQ8?
z-}vw+A3w8X1*j9?kdI${TwvPxIPBwBAAhs3`1sAo?>_#dqd4>j_8&eTT#+?%Z6PD|
z-jbrMp}|q1^SF;=Oz-jGvm%Ip`FMP5a&f$n0w;W&^l{q9zdjZhrGMU4c#3`=AAUJL
zq`(=`{hW{U%*nNdXDOqn2&_Zp2<CoSNcl@X{$nK%P$9r&A6Ho01C$Gp6`)jr(gCsq
ztlJ%##ET<-+cnMRALGL^0Z6HhN}6x97q-vN3Gk_zD$kA+LV}6`Dg{7*>H#VTs1hJI
zK-J)X#y>dJy{dEj{-9bA<!a3dQHs_GaIF}+c7Vi$ux5a66T-)=6mQiMV$y_g*o2VA
zUmxIx0L=rm2v9dby#P%E!~)b0&>%p=0F44XIwA5yqw(1{idoRwn*!V%ppz9e39#+n
z^!8@S#zO7$6T;%5F3rA0G~b^P#%Vx++kz-Gc>$6EZsmw(>ebIu`2jd<dX<z-_8PD#
zXcmB0ZTP^Zms$oW2ylCVq5y?LVJg60VGL!cu$9m-b*Otsfa4Rw)&bgx?zA=?p!~$J
zH~?|m0F<deG2CUO=yndL1W*Hv4{%{awiZAS&?7+407d{aK!*Sw16Tp<06~CE04G4p
ziQ(waQeFUmV(13AZ(=xUV(15;!^!8uud%@n1GEpK;zsk@1(>rlN{_qu6#6f_chX$}
zx-t*}ItS<yVEe>y?}qGOKeR8rpxhOJ<z>ml@Xd)KyZ13u-8tx^xj#(|%l1y*9iUf$
z!2yN@=pCRBM-R|1z&!!_2DmrCt5N~Sx+yn(W@7lySB0%bA-X?6e^&bd0|WfhELpVP
z9uVMx0N;OENJ(CmCxskceNlN}Z{Z-`+FN+Q4u;bH03!p8Vu&Y&=}F=603&Gdq{y(G
z9VyObbbv8J=QxJO3C0GvW|i{v-ohK3YHYrFO#$aJA;81{lLAZ@6PYR8G9|#Y01q)7
zqIqCX;Sw|T+Zc}}ZhC+j0Ui$UNC0VKy7lhDd7q_dHm?nP3uiG21I!Na=k6#~=F+zT
zzs4}+RcC=m&c{-Eet-o5-Vd;mt0Ta|0ILGL74W;QuqeRO0iIzp1XvPa4|8Bc_R;`P
z2Ke``^wkyg6s_7@xJ=x=^H902l?xvfHRM^5crOKbF2M5v&OQ;mK%LWU`twE6d}LDC
z=<ncVA;yU>7vL2JMS#}?eLcV%ECR2UxjNR004s$D*nE?kCq--a?EtF-yc=K*y}I6B
zVh8VtzPzQJD@VGPt50yg*^tfV`T*`%g&Trs+kG#<+DRds4d-Ni5a2^0b}7K70Gqi+
zSUdxK6ktn$-JD>6tpPp`@L7Nz0Y2dpX3Yus%TVF&NugZ1aJ#ULfHsj%wS&(C>|~YL
zQ}{&??MD*_2fQv#3TsRbcLg9lSfTBgT${|U06%cC2lzU`z5w3^_$I(CBX!XX=$vl@
zT)(G~7gsBzz}#l)lFw4SKfr+i2bo&aY<m9306zs_G2x^*F4KTZDQ|N4OMt@x{toaD
z4G!>IfTLVH0e%-{^ABc-SW3#|aM8S?>wEJzNuuOu>Uuj;#{>LD`-LQz3B%oPz1?kc
zcp|__hBCmp0H*?+W>y3^Bb-1Zk8KKQ&ye@Bxxj}_4(Cn|&$Dg>xG0M7qWA2VCWr4$
z4r^Rjz^cWG{KqXIz!et%460^OErU`Sl+NIq3@T)hok5ulaxz%+d8%v%EDqW<yIcl;
zc>J5&XlJBh%>42hkj|*swqgdAGN_V4ZYC;>UrmmdVdV_&-H|#nIjp=lDlc^4%@XSr
zs%LO*1~oINk-?XHqe4gfbEbqGqW9C;wK5o3vF+sCG#$ct)yd%c4BU?JI^u>5>SnON
zJr1--y$tGSFeSv)5DhZ8kvc=v4AC%yMj6b=;Nc8z3;C@P<!;L0<_sEV&?JMqGU%GY
zEg3Y;K+QnQAeKQqgO(W-WRS=pFN0<oSQQhmIE6`S$e^}Un4iHXxe@2q3?6#Dh@iog
zko@Kuw8)_B$|A~NS(Hy&m_aIobOvoRXf-8lmBH;96lM6;J%!u<j8Wi@3|eO}zEYxc
z)x^;iMP#<gfOJQdM6no`GU1d^5=`=C0hA0n-I8Ea&%nr_eFhyeFe#tG61_0Yz|O$Q
zV0XW~fWFGW%fQdz<^Fm7ri7EHgm;Zq_I>XiJJY6d)x>r66PXOA)=#t;m`{c6GU#0;
zv204%F@rlZ_-abnCByfpg`I@9Q#U6%XRv-sxbemW=|5A#yaQgh48IZ+gEAPL;dhLq
zX9fc@cz{WgL9Yz%$?&U&QE_V6JA<cIYmKLdeKJ_~g1O~^y#93(_cGHKY2Dti`_oHP
z!}~Jmm*JTk-uq7b>&67<PS9m)c>SNw;A<1ylOJT@swM_fCf83@&Zg6bWH2;?2^mbx
zU|0sjGZ>S>*bGKc;TuK&kE!c`lA`Fk3oIFy<$^>d$DJf;cG+E6!tMe~oSK>Lp6;IM
zSrAb`Ng}9#C^_exGf0-Gq9joyg9s8t6cj;{fRYsc+r>BM{O8oU=hmxNRj*#Xs_E(J
zsUGOVdy)*0IH#<$L`mD#@kO04ebTPXlJ<k>d>@{5_H3)@oSBmH?l3_o4E5n7A4YOq
ztJ5Y76Dx*^-NVGkK2#{`9OlDtNytZVQDi5R(38|0<HJ}V;so*tjPqf<58u;)K1}do
zq7Peq*vhrw!(<<p_^^~K#fParzGVq>xZ;eoX+BK%VFsO6u;jEHcXcCerVq1xc;j)2
z^TT*_bt~$0{-Nz$A6Pn{KJ;N8!>PWTiOLJ5oH~nrSR^^s?hX@=CwlkIb1(B@xesf7
zSm(nES!<OKs~Hlq>jmFrRO{S|6@Q=TUE|}6>g;9<)=OiSWW5g?eAw*6r#`;JD`O+i
z|C9=B`Q33|?LfxtF3D6YFkG-BTDy(Agb(|D_}YgZK0I0P-sQuWKI~-VNW(stogVAo
zo)&%~C8e5mVk2Mqu*ZkJKJ1nXl+5kiiY;?c`=lB<J3YYF=fhzij?jBulE0Nj-^nTm
z*-^`OG=rLld>A^>TY0!R>ccTcuMa1sZ|TG1T*%K8sg^Qa(7aP}I3$O^YEw^X^@9&*
ze7Nqz4Ij>O6I+^b$;b0X@S_jsd^pb)JzQMiwj;@=(rxQ*aQ`Ix{dl+#!^P{v#bqCU
zp)<J!ebI)N{OZGR9NL=+SEPi(tCGwaE?D~6lzi8u0px#3vVOSu(}$bfeqT*{<ijl=
zZu@Z8hrfKd;{(m6+vzAhTAU8#9NqKbfe(NCa9=uvLb`?cj}H%JgA4;Zz;f*IKIV-0
z@KnnGldk)h^D-r0{U6#==a~=BWfzB}ZJgY^0{H|I1WE|R3rzW~ctL?e0{I2st(;PT
z8|<>oqRTQr80H?=%w1T(HOyU9pooC=#C_*t+JmK;#RQ78Vq(4vx$*gixnCFUiHU4>
zn7fq3k^+$A>Tp3JQ)!u{u&h8ifj5P{C6*Uhn(MC2?Ol=z0u=?Ga0Z8qmnC^cpi)dy
zY=q#=ma4+O<>Hc9O`y6YH6&7AQ=nFi*A}QFd0mM~5*-qq5}QnqV->f6N8nXqf0U#N
zq}v4b1zwpJclUY{Qv-p90xx(YNxTx1C8h{8j+LfLV$FzaBJBSGH5X_h&{QBppqcD(
zRGt*}$TWFcTuXsWfspv$gEUzJ?W9gNCxt)$N+fA5NgIKjn53=v-!IYa1v*G!M}a`B
zw38%0i9*01lk@k@V2mpQYK&_!19SmHz?3$0kw`nkl0-Q5F-cUCT#20}^1L8wzDBEJ
zI<E_Ki}5!kN!k_HU7&|RPl2}t1_%rk;F-<61n&T&`v}on@MvXsAAyt+qRI%txghB)
zv;8FcMu?8t+5H7iI^s!bIQpa!$%B>r_c=Zg7$iXczQmLD(*_It80Y;^V5mTo-ku=>
zpRH_1Vw6k%h{G(G%+fq1lSLoTaDfp5r2;4&z(|2nbg3U5{TMAUhJh#WRA4MOf5CUU
z;Y)$>0u$&lfrWBh6S)cmrb<3Z;$(>(=Vwk6m@Y6!V6MOn4)b02Oo3SfA8+!J&lZ?D
zFY~h#nV)v|HeHaJ{~h-{fgKAo=L>uhY&~m1=CBc>+>fnt7G*9HSS+wbfSOCVOawj=
zSSzqhV7b65Mw-A1ft9psZsz$BVm{NB4ks68?inG9&Ck3yLaY%eI8xLZDVmQI)LAF6
zL13f6dVw}`Gv_bLY__$-CV|cDf@2vew2|WY+|1r11$*2&QoJ!gbF08Mf$g-A=1EI-
zGO!n9ekSlaw~P6i-^|No3{dj=*X_H_vxmdFUkU6MI45vkV2{9Ffnx&41@;N-7x+ft
zTQ2+_-me7?Fx%ZbH!)?W?j5{1b9u|Gg96_P92Pjjz+jJwDU=UgkV#|O%*&k6!@F>P
z=HZdzsKE7+g5-q2NrBS>KM3R<B~A%MUTV!MWv{mSUZBP(k+L{*$h^$Tz1?*F8G*BM
zMt+n?Nxe3$E(lx{xFv8~;3t7g0>2Af<Hq<(zMlnt5%`sE-`e4_K-wtLW=STe>59Nr
zf!{c&xtV)wwBGQKFE~ojpLFscG)&;8bj}Tqy+-Rl89bu|$JlR_SUyUOn49^<D8Vqe
z!%c&6EAY3#Ujp|89{tjaqr1-$jS@7Nc;#U0+oQxk+(Ji-hg6V+_qQAO@G^udj24dt
znvWLRXz{PWe*#H<IQ)1f@LZszAMhj2k34=9@}saHdHu-ew{Jfd^dsJn{C*VhgBS3;
zk=SiUhqp%CHyCqTWbDgHnRz&6)M!z}Z{JBMMjb!+ZM~=;3q}i)1iyXbl=nhQ`0X2y
zyc@}iiGFMwEyzpxQQD8nepK<}B|pmeQNfRjew3B1mGh&#Bulp2wRj(OeoiO$^0E~2
zd%-Jy96FrBo28!NZ7cchuTDosi>iK9^P{#OHEHvql<JbyqE&wQPuTZ?*#cYJcPQnf
zp4qHe#}D2Ls4KBYi42xH{c!n_?ne_p+<tic@cNPL$E$wS^P_<u4gIL^2dneTKJ|H9
zm186+wkz(+XwgWT$NM3)Eya(<exynXzs{uj?OV!MnCiRpe38uCxlR4Z@S`>5ywmGP
zb3d~D$o7NgwU8dml-Sabe@6>Cke2hy9s6SYoQqa|Tt1w_cG~!n<H!3=GTL(Z6XV)R
zUNV0(&QW{m2lm*>51$`z`0=J6g5L1M@Wb@u;`O8nC))?;{O>b@jD#^l@k6BzC6hIo
z&DxzA@<XR>yEC0*1m$%fb_o0N_PM(J^y%tH#1G4lC`a1I(^+D!#P>^iDd|FEN_k)N
zW8Qi<6D7kxZ}Ykz#BLI^#)$5I^zdW9A7A^?(~r0OJP*M+pQdKVz3s<)Y{8FSe)N{|
zK7MR(<y^5duCL5evmZSyd4GxT#^eM17#QRETg83g#~?pu`Z3GT^PrrA{TS=VI6sE?
z@u5^3Dsea`H&*LoNrw6HO>Qf8G$JM+>BlI^N5>>%Bw;V(W0GlpOptt{#7Pn-OPnHc
zszg>{%S_W{cE<k`&Xyw`*4jBo8cdzJbmI%P)=pMjAo)T+7WuK*k0pNWkdmc-ER$rD
zAIl~AMB)mGY-gn(t0Z3?ldO^C$LzSZG08ef)=S*r$HthPI&5LHAD>Fe7KvLWZj-oO
zB6aS5nUA>BkI$s!bBSO0u}hLK{n#VPR}!hYTawpj#qEtr_W8jqiw<xK{J7-D&whOC
z$3Z{7_v5r5-^DZ!Nf$9H4okuaIU<XW`f*H>;}TEA^iTS6D#kgYA0)rv=RqR&T%3{F
zvl4%lc+QXWlCZS?)#4W=|0y;voQunT{NhK!015^0E4L#*Xv{M|uKMwtACIK|?-Ku#
zc+HPLB)Kl}rXM#XVf%k_%Z)|FEkABc`5lROV>;T@eD`Afz9bJM{w?tzi4SA#JeFCu
z{6vzc694t%KdJCyLZ3@vT)<v>OnCyxD|x<{BwmvI0ThTyw$F?!9OICrNB~6xC>B8R
zn7o7}2>~>f^Oz{JC1a%==8GVCDS$EozH0+h11K9nxd6Ha@J0aT1E>&yH-O{-DhBX!
z07(Hj0(gZte*&lxK+OOu2XJ$+r>ev%5{G@^Z9l|QO>!1h4`A>R&!vX0T2fM1Vr^d0
z?e*4?oP=sj{A(N08NjOn)C<5BYr!3Whqk@n;rO!5T3^`z!K@M}UO#{a0W_34d79=+
z9pY&ud8r|uWAz*<0W=PvQvkjIQUgc}phW;Jr9!&2Cqwck^o%65kX<*6@#d0D`rMlt
zKvn>40?3h)>;PKH>a=<C5Kn7q6?^39SiNlk?E+{YK<yzOHrrfH><|ETItK7u4v<4&
zEfIh}fKUK>0D%C40jRQZd+bk>lmM1}?j7(XiJFvX0r2l{Bt}f9YXGL?^g}pce;J8L
zv?N9)=1S}wKo?0~lSoY(#-?5mfCh7#-VC6700RSfkG%xYGk`-Sy#oSxD}c8H=o3KS
z0D3V1R%Nv9ka%EqyWY&c+mWg0yB+%l@JmVWI|1}g?nE-Tq_@A6yxOPZyD{Rf>N(gX
z?fn3{mT`X=z)(p(2!O&tbfYBXLnKKqnEX)yAM-jtfKjrAVF9q&@E9>%W=BZeR?^Gv
zMl&W0CbQYGl8lj<mOpu10OJFgAUpajoc2*k??lO|IVph2F@B~*zG(qW58yivnad%7
znE~twU}pfc0(=o6mIbgpfH^cEfQ12UujiZ>K>wC;@xncy;pA|>J4R5rKo)(I>?B_#
z`QiX3jS))%SQ@~2x09MIS`om?06qy|Z2+qRJaNdgMk=pnsJHecxtzq?9_PnP)2QEi
zN!q#q)(5abcC;yg&5~@CxMqy_G{D!ZVOszL8rbb`4d8+_hI}81RNM2alLmYiz~=!R
zkbQk2aZdny1K1V7moocRfM<Udr-e+rrR4b-F}A65UjX~1ofXCk+Q!na8A8I{A<fw#
z-T6%b-?Epn;$Q&GYGVcQZ~#XFI2FM60UQnBMq%d(MpRzsF@|~p&n3lkJOH<F&QLrT
zceqb7w8jb^igh}G9|AZ>Uj=X`fU^Po$aRsQZ*q^@TfkYoM*{f^B)Jg4M^D}F7xJt+
z>}B>+06#MzgXkT^WyS{AS`bT5Ie!h{N&tm}C=$fgfPLB|)9(TNCOO}0xu=J?7Qi0?
zT&JA@+?Mj{C*r79o$qGi;tJqa0OWgpaeUG6<^HYi1aLQizXG@yK*1pR=KA}x)}sI(
zOY$Iqza{xcBAa?BNjqUT`y_xoLEDn20ltvYCjW6ykmOlR-!J0gq>du1<dr<1#CVDM
zB^Hp#7WjIvLP7BTyiDXpgD4h6wIHeoQ9Ou*AYKWgQV=DANDSiTAo!h~siY+3gFq0a
zf+!u6zZAsvhS@K4%1B|^Aj(PN`!Vi?yn@VDd{L!!cE+mWlvjR{74E7*RFQnjSV4Ji
zQX;WN5H*9y2=Y}~s1?(622neRIx<@~h`nQlBZ#|gGLnK=Jyy_+^JB$ur(N9@ggXe2
z)O<CF#zEYdjn@mJeh>|UXc%iVS&~K)y+OPxZBCKdHgyZKDW=pQ(qj7QK{S!PsYL3(
z7-n;sZ5c$1m}aqYA~T3AnayUWtBbb^qHA9d8{Gd@CWqN3h@2qW2GNf8Ur*{DM0-i}
zAPh-5NbD%FQxHB$ghanY)(S`xl&A!u#^jnLA&EVnIjCs{(JfXQmLww43L+{=ZmhJk
zBwZxFMw=yhJyyzlTrW+Fdn1T9rG%djJ7>i8ki4fv-coxjh`0Y=X`dka2C*WDl|l3i
z+D{SiT4i_;??~Q1h;fVB^LygEK@5<RfkC_{$@@VJm4sD32x3r-50+$z#19$3yW*(8
zU#va~;^Uakupsy&EafAD7#YN<AVvo<D~Q=aj0s|F5EFx##IA$()#C(-vkE1Tr%s{d
z(uSMDl{4ceOSye{8N`$zrUo&M!Ed<7e3wFDUc)_ID!j<f3}WldI0{)bCx`_>EDU09
z5c8zYe2Hvx;CCtWXU0*7xG0FlQhqZ#ZV7jxAePDOa@LLMB#jePUPXU$RVqkSuqKF4
zf;bz*k3p;rVjYJZ#O@&02eBcDZ9!}gVq*}Sg4jZng4i6iZ=*4NO3emoD;lJwjT6i+
zJ661Y>kN{|#Y*l7VrLMa2YH{$R{kuAP9x(p>Zg6Rzb&)7Vl8~hwa_3<8z;^*NMlob
zxD10h9>j?t_64y&h(kdfmdalT@of+XgM5K+rvpKJBMEtYs|>dAT@Y~>>>GV-irFKv
z_KyZ}tA1ML25HBFU>8Te&mjIat;ES7z7OKG6rQ4Ty|jW2(^&lnS+VapK~v9g$Ecsy
zzjemBAkMRW1$h))2;yQ8*Mj&Xh@XPE6vP#7@3Pj<-2WLQK}?X|V1sMMiC?)lHcVqX
zPdnQlqiw%QWoCa5V$V21^C-U_#GgUj4C00?-Tr$43aN7|h$m8VJBT}y+zrBRDu}-%
zxhIj5`*hdwI1;A6gZL+ihqCBV5RYRzRG9Lu)RB^ZgILtO(|?jbi|IU%wUbvtJ_SV-
z6jkgV;}sN?ggn0_1th-H+*?So!+@l)0wNWPDJZUhV<%_2I8G!eb{O34l}Ie901E0T
zsH>oqg3=1ADyXL5B?V;^R8rtl-DMRF-;!KG!QF9!q@05C3O+dQBrpDnvm$>2R#0fX
zVCgFgDvuXyvOA=X7nRxXC(bGgCR}iSaJmgKFkVzw@YZ-yOTo9hoHZ1_GZ({7IGGBr
zNTs~Cf^NS$KRfA6Qs7XKtRO{!lQyvH>q!lzF>VE~DyS#9N8t-qJ7i^~)K@S%n#{Cs
zyl5c#l<{Kac+p5!^eQ+%UOXQ!h>aDbDrlylxq>tW=?Yp-;QPEp69uhb%5JKFoMxAs
zATsFflg@5gDdRFdEvTj-TR|%Y;RzyB!Ovgjqgs~CQqp&VXsw`)f*b{VjyiArkdl9U
za=%MXVq4lXL9|n_X}@z}e7l$9b2=*Mq@aY3L>)c_g02psYzTe@0R<;joKg`~pm4@j
z6jh-r&=f3IutY&ffv#W_+f-mEFctJy@Gi|z5K-`kf;Sad3Ze>LQ_z(@e4NA+Q*#w`
zR`6#jM@rP$MZwkL4yG}Qj>^Ry*^L~v<~v_k_`VfqHwD4|&aID<x-00R;B5uH6l|{U
z=*d~5+jCQR;tdaO<=G?Ty%qFfj49}{*x6UHzjRD`lGKl#uJiKj1@eUx#K1dAu2&ob
z6bw`_RKZ6I-c#_tf<X!fE12BKQMQERX4vt8f?b0g2i|lHq4yd&X1wZXxy}2bf^UX8
znAXpAe#|&w5Goj<;FE@qjqf}D=;a_8Df_Lr*vs#CJ0^(RjT~bXj8!mG!7K&i6pU9e
zMZr`Cp@NADSaGrf9#g=hDtL15Bn2D}g*-fmXY5R47?*PJ-(}Mkd|l4*tgG#c848Fz
zuV%J_ISS?}n6KCe=4{<uyh;VfTxkH$n_WO_3po}l_TkAq3V2c($07yG9@vKi6PJ=J
z_))<*My!Gr3clnzRj`r<uzdyF*d{lB1siB2$EaW}m!!YlIt634d3iwe{_>6v#T|F=
zCave}=X2O2P2|bC_*B6b&XI!Me<d*;n;`gK)cg%xRg)b&HD$Yk9dupS5}!-+&J-@V
zlMcC=^ck_2lc_{n1}E+dIf`9e6uFK?U%Gd578D#-a74jg1^W~nRPddG{R*B}v;X4v
ztt4MdJiwMEVG&R3eg1CSTASU66kL3eG&_$Yqq-yB>lpZ5+))L`6fhJ|DLBsc+tqPW
zI+^5zg5M?xl64M8jk=ES6`bbq|4e%0cG3?D&PdL|QgT+|qct`;&&^-K-^{Wj1wSdc
zt>BJ=OI(-?Z#Kwf(%X4i!7tqUxQ-?YX0MRfaoqJgh^tFFcsTIy3a%-*rQk0({$QIm
z9XF&aNUqB)k3#xWN;vA9v_$^%k%xFw|1N7OXm>N|zJhz46xCU@gX4L92M-G9{wV1I
zV{faQ(Y4d(c&Ol!f@k!Sg2xJ;DEL>wf9$$TGS95`KTLY6pkEbF*KSTCXO{8CVaBP*
zqr&qbsgR1iD)On^4;}ec#H;q1Ke;&$;-ht$!~(LYphW5vb~<*qbQD(c{v0o>7gJGO
z#p^1%sYp;!LPbjznJN-hlvGhmMQs&OQA$Nc6)&qOt>PsWWmS|@!DFI%x_B8C#d<mC
z*K_cokMb%i&<3x=^OA#yPULXu^|J956_r#}S5ZSnWffIa?7x|Gu&Se~il@t*)l~jR
zrX3Hh;!!+2TFNm|a8cJ(F?N}gSsrK2U80VPx+?0asIMYPg+t{>58Nsk%xNj@Kds<!
zs`kpINgMu4^3aAGNw2b_XH6+Q-P=C(sDX-xDw?Y3J)&eI6<!sezvD<(?ek2MRivuW
zT02ryG^^-nERn08JWV#m);iYqHBs%87Ftde#0>KN-gaMkn{h*~=x8png^Jd9lbFp?
zk<Fc%ZK`NRp^6SFI;xl#?`Wf<t%`Oka#U~`cHQqz{>ojkoTI&p0Sz6j&c3dfc63tV
zQ$dF)61iyz6@C=~X%ClAP?D-$9OU}yIG)bLle<DHbQPaGE}5&sP+_XDRNT#V{-iqU
zEO&-kI#JM95!K#~f)Qs_+Q5h!`G%vjiY_W%V|VwGx~k|uQIsj^I8oNYv(0PVN_s=Z
zn<{3gn5m+>iXJM4sTi)Jr;4{!yhD8zZ>#8~@=p_vew^!--rg!!%EN#9sMu&ZnEFb>
z)2=#pc2ezK4q3%}3`G?KrAe!*IPO14;t4#rnmImDF-XOSDu${UtYV0Y-`$P|4P87w
zXu?GCM@dKb$4SA0j*n<nImgE;c#71gU%0o=cJ7?z<#F*NRE$<JM#V_gJ{XOA%P7^}
zVR}AH8Y{_kMqOFQI2A=^JIAXyd@E^!#EBA_og~R*6;oo8sVb($IM0Q++TC$kbIejP
zTg7G-pQ@OnVy=qSD%NnWRsO*TOI0jmM=BPo_9w;h&W=T@eJF~vkz=tvq0VmQ9ZOU&
z%XGY!W4WBxl`2+AvO>l3iGm?<%;i{8%|4v`b63GnRIF98fzD*7*OMZ5lh&zN&ni!n
zc!(Ki*168RNd-?N+fvyvyOM+ZC)Kvl02O;x?4z$#Y-jwd_(H`FF8q3qo!mzLP2!&L
zPA}(YD$4hE@RORjOO>A;D)y-Ol2x3JuZR-`33pnC9QR><;t=<%_?nZb;#)SA-*G_N
z)?am;>*-+jAp0$1ABV*i{T<zMFX@nqA0~>!5=oAzI2z-}R2+}-6Dode<e<X$Do!&b
zGz`}8gNifU1T;7`oTY+_`zju&IH%&gil0?nR&hbaMHQE%+j(w0&v{EP@AydtP31)J
zM5)E63;d$uS4NlL@t2A#+|WumZmGB}$yJHJG3q2?(KSi_ka%6ijhOsTNp4ayQBdt@
zE5{u!Ixc~iZO-k;J|yi%(mn2<@%9Pxoanz*{KL&wL!yR<Djunb(~w8QV--(S{L8sh
z?bE&X!tqqK4-#Ym<SlJq>Trsm$%&p2bUf#hY}JmdDX)fn8cJ5nS4@)!WoRg<p^%3B
zGFw0*Ps}KsY+u+E*1!Wv`c-rk(d@%Xib}M}?IcD{aSaI?xD1(idRs{i&`?!FH4UXS
zl-5vQLj?^lY2c+x84YDMyw=Be@J`a8i}pYC%h8fag6TEB|53xB|4LNSP+0?we_7%y
znjQSiQn`v|FHF1Z3U**u*HA-4Ee*9b)YQOJ{dt6!n&LT7&^}Lqr<pD7;i#j59}^7t
zx*C!+knoy>=+fZUkfkA8gGa-w8d5c+X{blxB4;BFUd>)9^)+m$<7gnUAu*4G*<=kV
z8X9Z%8zSP_a+3WSU1^i|r8W+ZF<nCw4b3$EK^RphiKZGdWK%5*IR36}U&mf-=*Wn3
zw9xQgTw+V<%<)>gOwB$cqM_F@x=(g14Xrg88cYpsG~{UL$boBUE8F4F+G+NuRkJVL
z?djD?qJzv*a!ojV8iWQ_gQmf+A)rCg@Mi<tdqJso>}h_ELVeBIvyY=D?Z1(fucuua
z(x9`iNrH(V5MlaCLvIazG*}uBYQP&B-qet*p|gf=vZ;^b9bGiMF5U8)#+Rl!x=OtF
zv5%Z>a?|cI$=-{Yx@+j6p{IuPm;ZOd%v&1XmhF6&)sYIlB<DG7<b5^t({Me}F+jsR
zQvTxPjsB8T;av^A`ec&~q#LE?`wYBB4p#X<W=V#;=^UcrLk-_)IHX}H!&t)#4J&D+
zhG80JYnY>9xP}oL#%dU+VWfsp8pd#m^>U8Zz$++TD7Lznq{i8o#|(Ie1i!6}*DzB~
z+yu>jiwZZZi5ey`T=P37OPnH+*{K?)#rSj$GbAtC*~y|YDUMkh##eOk<r;G}%+s(y
z!$KMDS9YY$=jwjj$+SJmwMfHa4NEmF)38K(yVw$ETnz`0!TjxI8<%riE9m&Akb{@v
zB&#&6*04>(cCPCk`POLIs9}?aPiQlj*d)PEv2_~OYba93v4Me_>-gYW6XmZYW~WRN
zn;B*_rmVxh{&zXHXehAX%L&~oCzsdcJ2dRnu!r%l;WG`NYxqLLE((2i{8!xK<~0Dn
zsSOzD`;yUE-tm=&ieATViTt!B-=|@}hHo_-)IjC0HN4!z`HkcUxL&H;R}oCNN;o!F
zvd<1Z)Y(bTAJ%Y$ldIu|hNE;8cXbVCG#qC|&Hk)BrGb~bd_l~t`z23GPj>y({k?_~
zMIEQP98@P$m$r_x8h+GpS;H^VZ|5}pq~Q`HQ^N%+S9EY0e%vwcqGo@OVD@LZchMdO
z0M`z`X8x+-iiY1AEu|bYsyePxlWhhahn^*!FXLD<N&MQ*KBVy)qu0pzgImzeB$7Wh
z+|=-&hG!aX(NqohH9XL8N5fqWe`&bKado%P6#cf3lShv#^X(rZd0Y~m^EU%2HQzss
zOz!!Hy)!?OYoTPC<0&PQe>F)w(LkJ&*z8{o-%k?Uy_>x3c&;HXgrXr73n5Pkc|#}=
zLcx%I3}(I%POSI#E9-8X>WB{^zZA|~;bl>wkiE&g)7w#465~;cA|d-r5GSHrS4Z)X
zeZ5yAgv1aMLilr%sMO8Lowj5M2;rp=N;)$t!qIuPy(^ZYq>ZC=2wE)%3C~bHQr%H5
zgz_Pr3E^xA6+);O!oU#T3*qGuUI`%_LL`JrAyf`Q4WW7&Z<P?LhL9OTRtVK72_Y#2
zM+h}SsL6`copnMe@uBmq6<3R+n=F`Whrl;mk+8Hb$3Di{d#KYHf-8h3A^S~U?ht1B
z;yfX|8nS;e`TU`~o+J%JXvDgbH;}k<y!{golQ)D^DM^+{NlFNfCHJ&Ve4&#jv*{As
z6-jIwLPp4bzg4pk(udiNs6(C2rKCj&EhS;;>2c2N5L$)o*Lwv*XdObE5SE>5>tp+M
zojD<N2%)3oZ6&q~p}iz^rrU2EOaH}wHB~1m;j64>PIL;+(G+LWAg7<c8szLe#+hfh
zGbr0vLiVe~*pWtW40DG#vmpe_c#ROuko{OMpZl#kS$sJ?lf()k8p4|)zAp*=>$!7j
za0su3&{<|L-zh*LQ`Znqu5rIk|4bHr*T<803*ikZ3@**vJ=fEIvgi>)uMm2N&@%*4
z*!xxpZ-?;uWHIna+aZ$$C4D#}lSO|{Rw3^Owi80X5J*l=7VogB$%6d)WbtkY141Cl
zGsUj;K3yHc))2OZFerq<A$$_T+7O0>@L>qELzol7&=8cS-q9R>2p@&;G2^O<_vtU4
zhH>oqox>%Pj0j<5jE|Bew|<EVLC;vpr$`(Z!gxt0NMx;vA)Zxew=-E{uzm@0rl~SJ
zErjVY%^8x+lsJp4uam7-xr1|V2ung(D&_M+m><($5W+&q7fD<!kri2M8CORK=PHRL
z%R^WZ!pab875A*0=BDJI#ramt(lrvT;vNdug|I$k-~aqCq2LC&v^R#ZNfJtUNxzv}
z#J@>fBz_vgj(Ya{mD)+%&TI&~rE=LRf;P0T;NHnNtl<7k;^!fJAqgeBB>6IguO#tI
z5fttTVXv&dFNA|3d>6w05WWs!<K@%?A$%)~zL8k5oPGRPkH+@(z@ZQhhj2v7nOz`{
zX(Eyz4dGZ!eq53h5>JM3N|NtmrKdyqLGnBGT&(zG2<Jk07{a3v&WG%u)qW4*S_l_H
zxER7uA^d&Hc{zk%B)KH<XNfmYJAVz~LH~AFLb%Ey9O^_~U{>nA=ZU{@{Z0`~lZJW!
zV0?08$#Ldp7v~bY5yBn1T`spjxpt<An{r#b#eHvzxXnd3MKo>O@vjh$FVFWN1TH<+
zx);KIZW>2YnO08`e@pp45~;w4>K}*jB!vG$cowpMe%(Js)VxyQDYwKc1^x}$kLy$C
zdbZ~|XH!Q$9dSB#t#Id&Sn+X*;DNUBI`Zo%q@%Eo0y<wt>1HaZ<EOheVd4XX7p90J
zI?6XmF0O;TsE%TiJeVSwr944L!c?1-)Bzo(Oq4cJN=IoO-E_R6<0TzsbhOlwsiUlp
zaymRZUS*p)D(I-AqppsMI$qXMT}KTaujr_xqnd8-P8<byq{=#~==O-J>Nxl~n}mrk
zk*qaUq)!$68$wN4T1#TT&+@TiZCU-rZkD9ODT^FBxTkTtso;_dZYiPgwy$_S9rbmj
z=}4DF4Rj>yNYT+yM<X3x8oV@<e~w^Xl6_qg&U~24rW)%=mHIS;R{fb9Ptrt3Qym$)
z9a?O>nU3Z<*gF$<+CoE9Tg3WhQ&~E)b%b?9bhOgZT8Gf#*U@)fd>b7(I@-!w{PRUS
z9qnab9VK><_+pIgw3E#GWXnY_XS3e`E6S{)L(!q?pn19uO$upSNJn6*V9ULxiWlCd
z(2O<9z_WBjb##@ITpgWtbkXrztor<}iLA@6`&TI#QW9DBb*af=vb8sLbmzPq$TZMH
zM^7CW8Cp8t(($&AMLHJi=%u5#j*oPFtfLQyOg}g94As$3$2&Sc&@o6ye;vcxrVZ5b
zo{o2Q4A60?Vp`vq(%!4<*}XMo-;FeuzAtrl*Y-58=3ZUfGg!wE9Un^J>H=w$Z{*9T
zZlqnl=Nw<m#rLcY(=lAfBps7=jL<Ps$5;-EK^T`dieXu`;AooK*~RSse4a5nmXF9L
zIkY2XJbT}fGEv6_9aUdWqfUy`mXl1;F;&ML9dmU|(=lDgj0IUU>4AuAhE(R8q{v&|
zOP!@-wk%y?xzarzs?F0eU&jI+3+auLuGDDy*{vxr+D}i;Vfw<GxkSfO_O9cwj%74S
z$95e%bga;^QpW}z8+EK=$m#e*$67kDvUmBGtPxYi8oIZp*PW8Gj;o-KcfF1$x@*By
zvD<Kwtcdqa`6_3Vj!$)L(Xm+ut*^GXbi8Y;j%|#bBCb<YMT-d?237O!m@1gvspB&p
zdvxs8@wtvKbbP7fD^BIAtX-V+=9#HY-2VjAncYpzQm&Hk$8}wqwPtt@`92-{xr%ij
zFOYentcx-8HCIp*_W=fH^Gv31bbKqhwknI+@957;1*1!or@fYOM8{DbXLbCj<Cu<3
zwOprkd@s8=uH%G`lRAEHnpw1odrjj^y@ad9T=%~p7C)`y2OVcdWt`FRAl=OX$oeal
z*>j92M>f-WNw#KWUf}-Y@)j-TqVSTApBWDZUNLZ4$1ge_>3FQ;R~=V$+|}`yj;lI;
zqp3P>vR@t7bX+Hwj{QRi-TR`o;CIP4xC8%JpnJ$w!r>j?r|m5rd8Uaw^i{}poAK5$
znS_b@_jKIX@sMGEFO}&5w`Cpwa3Om<%tjm8$gp`)O7cX<QyoPO6f^Lzj{kJT8^~|q
znU3e|#Xw%ep20W+yHyuwpZw6pj^re5!|C}9l&b4x7!)v2&_E#rg$+y@-yxEl_E9xk
zr-*@+`d(^gRr4}YxwwG@gO4}hB?Dz&^_DPD(g0*Ti4s|hsg&%OO}*%-43!O(H&8+9
zl&I=0CkZ37;xtiFD$~4%)9e6aN0kgzHsCdoY@mvPss^eXs9|74MOQTgz2~~0Iz6+t
z<=nW|v8I7q20R8{HBj3?9Ro=Q90s`D>Kd3ZJbOn?&v=)o)Xo&A0ha-{fdMYhe;cws
zz3t2{>f(lTty)@xnrZb6)Hl$;KtlsB=eqt*%`CAgt7-$!o!c3+>be>k$g{3vd=+=w
zX`)d#SBil&15Xtfd1C{_R0H=D(iq|C2AUXXYT&19CEnSb)yzPKf#D%nr7B)VdvgOV
zXrAhNZJKE6@;-mXn`I!|zybpc4YV@Q+Q1M49~x+5Ajd$&fMuYqfp!K$26O}M4RkQ<
zWu+SEXrPk;VZhH>ct6f(;P|Sn`D3&9uFqMO#~Uy(Xqxz{b*5t2pF}}M@*Vp#i)qF*
z@vKmqW?*Tdw9lrAk#pRJfk*4I!UjwO=Pef#_tm3+WDH8riPD({-ZJpEfzAfH80co;
z4Fj(k=*p?@oR~T&eql~diLEIG-pzU4z|aj@Z4zBdS=XBex^we4@Jne|y+jwWr-8?1
zTzo|x`Bzn4y*QNy-sOxK=wqO-!EepzZ=fGt6yKDa_WFBH|83{m1Ifbad1GDH!fh$R
zsB55s_Y4f?sBb&pH}C<cb$!+#1Jv)B<l&4HDdDV9f9%1;p$0xOFrL9+;Ol#-X=Pj=
z8yLn(VK^BWV_+<Mtl}PNV3Z^bjPupg=%vvNyat{RE2J%Vc_<twyI`~IXrh5h24)zT
zX<#y!jDe{JrWrUnO&qD@-RJVQY2<CFWL}#lrZYTr*Y<{9V%}$|vkc5OFvq~zx&?36
zbj@Yx7H&4rz<dLhnq;!mk^iLTJWn0sNbb8MYmtG)1}+)+*}xJ`mVwU=d|_ajf#o#D
zz$ODL46HP;#=s|x?K$p3=i*lxeEni3(`ttFyeyKn2F5*1SZ83pVQ;5JN~G<$Ye&M_
z0r49+n_Bw?7dvh?@Tr0AGPKsD72jgu&9Z6R4D2fA+G=1`BYXF**)WAwb{N=6HM(oA
zn_0?JbJNW#u3ZMcG;o4WpaI-)=xqZB4D2y*B`ss0f&J{Oj%zO?{Fd{VYuP`4n_N{%
zkKd7U@D<lL2EH|L$iQLlU9Y$f8mM>6`JI8aH#6QJnf>oHv7n6Wh=HR9jxop?d$n9_
zglXlLl=c-|1?zdrP8Y;e2EI4&qk(e<PRkW~h8trM*AHAc4ZIhsdVAFOo;7&q+*L|-
zmGpSe%hGP8T^9{p;4oEJhMB(QT<TApj=Kf?=Tb|!y_Xrlj9b<+@GHk+;Ff{g2Cf?T
z&A{&lu1SY8V()Lt>f-kNVc@!fKMmY8aKiu>#YgM2dKFK*Sj$_-a2>7W+Ec}qP{cJN
zGxLstyWBSnJTUMVqcq8LkFkBz$wbbWXWh#6J%1Z`$mMC^AFjJ~S!``}BM%i`Xja^i
z^^~J9P{c%06aUeH2I5WRH}Tv+oQb?9@|pH^g;?0IMQu+W6Q7!{Ma9z|Ud!%0J7L9#
z@x%6XEMW4ukE}u_cHB<gRw1pRiH;3C<L704uq~^w2_mmaikT>GBEdun6SKPJxTXsl
z!w;rJ6Z7{Zmox#>p0&5?dpHp!_dDfqieEBO#zcWI3Wn|5N@Y#FY~mFY?n};cCa!i!
zFK?oPX@4!PC^7G<RPstDDw~*NVy=lQCaRhUnovwsGf~|{Qxh2`YM7{L!fC=~V)J@u
zEfaN3XkR;Po2X-A?Otd3?^9Y&w;#euGI8sG^W?T<hl!1wlF8jBJSMy*l1;oyvrRNK
z@!K|MeG?6+ye+wGV)oqZl*lD#sV&K^MtK^^()F$k>ZF)xY$Dx66BDWQn~5c*v)S_b
z_UUZA$6Dv4A5y5s=aeYtlRwQ&G&j-SL<bWsOtdu7+C&=@nI={*PtB%(wkES;79Fdl
z(b{e8(pyouHo5v1XO4-sCfb>JXS$ejx(%CUqCVBu{gBepL?;sgdSGj^Pogm4m!@w1
zB$;lcocgD~aNew!NW)b6$He=bP!k~&x`{VTylKKPVVdY{qKk>JiHM1)i4XTXf5=Yh
zwI$gy!Mbec)DI~X=E|bSpC*&PW}>T!*O}U<_ZyV2&|YVywa#uP9&WHLoH$){XI&Em
zO}xk8`NY}NM1K?Sns`fQDS6vOuNdzwNgs)QCHCXMC0QZok@`hWrwot-q&*xRyDOZK
zZLCkO{<V9MiNPi&n3!l{2#qu`(!?keLmB)ghM5>npRZ5;*hI4yo_BUSwS<)IXPu+=
zI7gV^(^<Pur|?m<%40pFO^o4`H7GI8#O%E7ZnsPy%K*+yPuq}sEHQh$iQ_w*z5i;v
zX?^k}6O&EMG~uhCIHqO#6cf`-OgAyrM3M7OCbUeS!EeN0JKqW<PuSu-m61X|i_J3X
zb~<aHb>7TK;WW+T3NrD7i8Ce^m{@3Hr-{!@EHbg!#Cj7OOzfF1mY7&>VugvNCYH&?
z@=5#jZ7tGkZBAWjVwH(c81{^o-Oklq$XO|CxIo%;SW+VU?L0XtYn{hVI)9ihZcZ2L
zOpqtGPTy$ar_0XG_J)9;Haj;lHtLl8XqR(~iLEBKnb^*$?AJbDqmpAUI+q4B&NNAX
zN6*}^XYMdjsckyR=O(@|@tui7CU%)TIvD#*>^Je1iQTl>#9q3hl{?=I5qH9Q=48s3
zS?S+3_jDNRY4nw|#%1T%CcZK8Esa0wJiy_fOrhFAIwvc=U`F~oTb%t?q?(gGhfN$Y
zaf);LiSsCpH*vzmNlpYqw`KZ~Ck2R1oS@3boQwqGv-!#2Oa0T_Nsc*Ro*{^5P5fx$
z4qa#B92YDD$;9s_E||C|m47x-dxGaD6Q_U4xn!c}cg{&aIXOYm-`iX^@e7yjdMAgF
zGDG}o;))59s}j$Q@sM9L@rP{ZPsVwhl0_c0p-I=dQ=NC-FrltVZd^3`Cbt(8m%er0
zHc@zeYNr|E*g@yp2c3VJxM$+Ai6<uRbC=kh`p`tb1I`B~{x&gUlk*>LQ<){UZE_CY
z=v>q?{gH_Qf3=zPOHOEu^Qnn{P2>q9Zy5iXcxECljI4ehhFryFDSLzN=bVV3yKcGc
z)tB3BL3X|{PX65{e;6Ixr}v*B;=|~Ex6Qht860Vbky$8=!eO)yqfHn^!YCR>jWBA4
zQ7nw&VU!7@Y#0e)`(8?77$w6f5w^eYAIXj9sS%L!bxKO<FqkbRaX_(xl)MxMarw|x
z*ZjD0VZ0p1D`ET8i1J}n2%};c{hzqM{4jOm3_(&UjLKnDmDQ_+(Oyk4{K>q*(q(^}
zx0hvB3qw1VR-NNLmC7t{#ncL;b{MH)q=iu@jJnc{24N(H;RwSWh9?ZC6h1nfN^4!R
z&Do3Fu;nd_+q@b^{V?u+m`YwR4C2p^vzcY%4Z~;@hBpjao*YI>7;9z-j-8fpfQ`f0
zptYwl#Pl$lgwZUF=3z7qBSUt_TSgqtv6HDJY^_BYE#;`Q!^o6%X#lHdg>kz{2FJ*D
z=&n{A+EV*oQ%)Fd!?+g4A7Qkk&0&lRV{{lDICq@2FnWY>wUVP#7$OXR7~l49<0E;P
z)HhT-5JoVJH^Nx-JV}uszWf!;3PTO!+|4A7K5yY*3WcFdZp0*J7~vR?gmLx*Ta9(2
zVdS!L)!A8M7m2S)q_Arkug7>dNuDP-s^mJ~41+I&;}23j!+0x<VPOmp<Lxkdg)uaY
zkECI*G;s9}<C9NH_6dW(N%bX4@=h4<OG06PN#2z>K;l4&?{P$N4k|Ex5XK-W94v8&
zM9M#ugpZl=@g)9?#V0yGrpFpPNJfMaN_LFoyp(WMN_Xtq=OxL1KWR)DW5ZY(#wyNZ
z7~{iO!G*vlf5Mm;#+)$bhA~MR&xiD8%ho1`F-4N85~oR=E^&rL_Bd0LSz-8Y+mFPs
zE`Ru&C)?qJTgxSxAI5?(XamziPM_q9B`%4{mrAlsB7X>G-C}+1*Jjbe)eO-vc7^dJ
zT^hz(>NIzJ%B6H8Y1$A6pE+C?#`-Wwm^Os5QSwbO$!1Buxz^<7R`-@Lw#w>kVOtp6
zV|<4sJ0*S=#^;iJ5i8|89KQ-<cNmAlI2^{FF!suEy>mBdAH%hSgAXzh_e)OlwIm0^
z_(qa%B_52Ge#f=&ZxYpxa4eSdXc)&BlVjUo3OmQPaU3TP<3~<b8^;N5Ym%IjNXhq-
zoDSm$NzO>*s9AI_rgJ%r^D%xQjEgb;Qy7;d|2Zb%@6oLIi_HEi@d}NU<Tr`GODt30
zR=Xa?jWEhbP$6Q!X!6f69)|Hq`r&36x40b@blm2Ga^~CC!+9r+-wHbJhVhpq<oCk3
zFZqL*<Zns-k;o@u9@E>4obeIlkKhS6hp)U(!+3JF_`h`c4Dp{tl4oH&mpm?F%kxOg
zD>0u$3i)6I<EKCbWg;jW!AFmh3Q8;_v2X-MA}A_(u?R{^Qd}Z66Cx-fd7{LXvz!z%
zA%apdozjxL6tSOCWD%b~EEfSEt{Y*Mc&(g+*@_Xo96_xJYDe&jRI47r^aid<5mb)Y
zn^lzvszy+aed&%<e<cz5AkAa>cnO~tt`XsXTO2hbm~gczNu3DlM)3C7wrLS0MWF5V
zPA%_nNaCyP;L{Gy2wV}6xFhgH@T%mEBvM#UlKK%ekfdQue)Mz!ujI)RQ)2SQ5v0aA
z*K)e-dUxM8O(JL-u@_y2#AXtkOKc&rrNm5$RLhct&xf>*piKmGhhpAP<V4Umg7$Br
z!&_)a5`ni1lDnWo1RWz78O5k5Iz`}%U~vRXA`lV#R?lpS{s;mQ1ZkVh4vj#i6C&sv
zLB9w>5$F+gi{On2j0p0!$c#pi8-W=?n7#ay8j)x*fZd)gWn7dz3%2bX!5=3Qt1r%a
zEn<JI?!v)_l8+3_?i#`CY~PnTu8TWoQqF}L;>`%UN9?yY_maJT5X$MnNsr(ynLW3p
z<J%GZGebNmnns>DQ}mX~)bGRD+>%1_j?{cNf&uJhOlJQG_~p9MlhlC`ycfZTveYqC
zydS}!2nI(${((f^ix?6?&P-9_&76MsoxA~(wKL_lnS!4AD1wh=#bFFENrp!-f}WIo
zN(56Q7!|>2nH?i>g2b^AjFV)%#P^;SU~3a4pCoazL<$q0B@m}EjBC199E%$|Q}9my
z3|Tr;;w*`0)9kxFOmjHbvAXjlnIFLdNfyTBi#V>gJ5hOQ1j`sF76w^Z9>EH(G7F_G
ztc+k)1b?zqR*7Iu1m8t)D1uKSSR29T5quHBx(L=suqA@65p0NHV+5Nc_>^m5M#3g8
zzzMe5yFbm~op6#JgX4)O+GTEwV0#2Rr6pU>*}{tJ6Lv6!?mNkuK4T-5yv2Q)yCV29
zf_)L}=L|-$JA%D2`}at)_L=RpOHTVn=!q!_Uq^5tf^TI}ddHM+Bq{s7{X^2(rO5{)
znEjsJ-R^POha)%=!NmxEir{Dj$09fz!H*FfkKjZEry}@X*1h_tUH7Eqr*1k=NAN=g
zXJnRgf6pA^#c?@*?BSzxDd(ho`qKjECF!-m9{vT%TUB#iis0u6u14@%1eYWDMar+P
zPWUy#+cmC@;q)sJjD0z+R1Nn$8CSnYa82smkoX7Z^cU}S8c^4}<BIpvG`s7o$87U%
zMQ}TUd=}y@+=<{W*HHxjMetVy_qZY=cqm)AFY$rIGfNZxmSpn^yB(%SGW#Tg$C504
zvn_>BCFgy6@@JCgvFzP|>AB3tS;)IL`R1hzO7hC0PQNGSw@^Uxq819q^b1=kB>CEb
zaW7gZVqwb^+eO7J6t|EdOA}-IB`mzz(4N+k7GPns^vU#By~V3}U$Riff?`3nP}V{@
z3ym$LS}1R!f`udt4ht16ylkO{g_;&#u~5lE6$@1@RJQPkD0%C;?Kh?_;q+>;9;-|8
zRmYU?W{Pja=`5{fp*9;g?cp;%>sY8Ob=p4eNJ+v!PNxNzh58m6Sa4hLSa|hCYX#C?
z9vVNfs%z37+r9NHoO){C9c?H}8(Hv5GGjn|@(cazNhucc=ypd>_b0zr-JND3-9l>%
zZ7ejg(9}W;3oR|s8yT`nGYcDL+TLSoZrQgPZ#T}&ltoz<vLz|_eIku-W#Qw^_WGKy
z*vl}-LR$+REp)O_eOf|03+<(H&1nh0RVmm(^76H9OPG8XgayA8s%!1;0v3WYOWwFh
zr{89ZZROK63n2?VEcBE`x`nQi7#2(mVG9upxfVK0p(QbDA#Rqvf0mcnMG9Y&Na4?U
zIyIAW^4BeNv+xGvL6&y6aB)t8E=#wJv2Us~y=9@Fg?B8xZK0Qi-m!N2a$eRY^s(@B
zeLI$>$o0}cRyxqayA}q>EJLE|N_&8<&d0xJ;e9C#$XOd~VTgrlQB;rOLkmMK9Jg@7
z!bfy0)hw*BFwDYm3o|XuvM|EJNDC7!OtLUawll`USV=~6Am!6e&&wKTVZ4P27N*Tj
z7%<ijl74bT4GVN4pDdN9S(t8NiiN2%J9(D4-op;O8C)+H;^#a_?B2?r&<i_LW?PtJ
zVX=iJ7UoLj1r`=sm}l`79=QL3-F~f5GLdPKRPZiJST{?|wQ`nPSY}}bH+(7I{(Itb
zNvK)0Z#MDatb|oD$&5ZZpIE$R#upZLSy*Rby@l--b}$+({?7uRa#2g=O<c1~%WRkK
zmqRm#<!rUE^LXMmsqpt5d$+&!s)x8U*8XRb^jwheIXxyn8u(lGmlnRV@U4Y|7Is_M
zV_~0#{TBAdYHggIaA}rUJ1FOC3kT?gA;rI;=e@Rb;%3`1mRiS?ytd<a77kfBV&SN)
zct|?)umw&Bb$<QVHnrRDiN|DV!<IQGxoj=`ZQ&ma-&4)PZx(*H@Pmaj3_=S(NzJns
zf8N3c3qM*o$EX;UHv2bwXp!FbWc68|P*Z;JU1AVg_%&wpWedMZ?y&5whN;4AamB(_
zZZczY#x828$oaa){ffJ~g}YMux`jV2+_Z4R0$cXV(T)F2ehOH)Ep@uzwzr!6QM=i{
zEPOqv_<bqACvlj_c_0Z(JLj~2XyK8CB2g5L;<1G%7V<?AAH`D(|5|v?MH<C_Qh)g2
z0?)VwRj^~pT%7jKz>GXm<c)$J`+If5;C7y0+qNyeH)UTfPyQ$hM8S{0!cqIfqF@w-
zBvEIJn|Ivx{zw}t&8{^#zE~8+qbL_e`6v>iC=o^JC|-&pF^ZB=Ac|75;;=`yKj+LA
z-`)P-6~d0=wr|TsarFK8vQfN$A!Vy<lUN~&icwUGqH+{J{hRQzwD1+#&WYLL%{$K0
zpQRieRJ=+QhqoqFjp9#QRoLF{;^v4NQPhk=i9(H{Rur|PNQ?5X5U3MH-6$GF(J+dn
zC>*l2S0y^5a7W>Z!X>k8r{)|%lOCM6uQU#=u!E{z6!l}J^K#M}Md6L2v6Q@6S;>;8
zNNhGoMr=%<)7K=5rcu6-3$3Eah@x2(En}t4qi7N12j*rCUSvmdrj%q!G-PY7qi7R_
zFA5PwP84mUXdgufsnFu49X#zMe|claj*?K)Ns^@6o*{F@^f|&GlLw;+#CZFhv={bk
zQG}v+o0A^psk8Q^N2AD%!id6*A{^6?M6pM12vo47aJ@9Ia}=+0nxg0;g|9`?Rg%1K
z*|Yrh9Px(Cc8{V*6mLp?QC4JWPnms-5gU_~oGW@q(I<-c7#LCXjiO%^1EktJ68lSJ
z-QgP(-j!U@?7eYdOs-!}{2+=!QG67|$59N9$%jTUgdYJ>?5JP|%+XbLEjsYt`S@W{
zXSl?D1LFr(D0t?4;s}{_%oU@f7!$?vT&&2ooijFyxlzoEVqC1{@li~We4@ljQB00v
zN)%INc6Jonri5vd@4b*XU6L6RXG&z7vn1h{h&eGy-5ELaqgcRol#5cb--S^eh~k?l
z7Dcf*iX~Ajjbcj_TccP;^P*T2#V1ib59RR3#1&DjjN)PIv{e#Ub1_cI;qyzBELqra
zZ4~RG*bv1=PWrWs^|a7(HOZ4U^7oE?EZ3$eHb?Pk6f?Hw{QGxD{@B-ku9!0==Zu<O
zIV*Ep6x$gIQB+HJ?}%b&6uYAMlG9Yx^;s03NAX1z3+KAiw`cK*f?XYQu2gb4hUI(}
zMd7-x-RyL?{loDabH$_Q&c<o(y;1CoVn3JdBj?vqG<wN<ws9tTPV>yfMmgU`agaM(
z6i=e~E{a1@{2Ij-uKg&EL~$mHv)n_XI2OgpC{9IjoT-}Ygv7&b+LM3&LB_{*T#L46
zeILc?D1MMdAI%jD=ZZiL7e`H<AEP)I#ib~Ij^cb27oxbx%_oXma2+0$^WWW!jfFaG
zT-~wk;GB{-I<|e1I#f%)9K|p6{2v)LEm!+L(gr?GCBGWQZ`?Y#S_jAf9>ujN{)pl_
z{nOaqbvf!Q6<j^rrrqGKMPue=_3GA^*_#ZN$Emj@-j>Mhoha@~{+Gmi67R=KFV^z>
z9mPLUp6l+~;r2X?;t}0GS9GeD*7{B=pDTD8#lPIfb5SrC|3&ePTYWC_<zi!D*Ydcu
z=PczTK)J}1i;D?q4=cHwmUj{3bHV3c^5<eslBeg8__*Qr_kz@#-a@%3oQvYQ;ImRi
zaxwgTr=q!h>cIYl8usEVKrY<Z(s-<SLM}?=Lg|-H3lnoulI_>BzoGv$K7*umE?&yT
z8@YHh7iDr$HWwMWXqJm|xhS6tM=qSXsE~__xu}tgnz?-H2CwAuHI%5Di%0KeRLVtV
zNys;C%+hZ-`A}RnDLFS+RL@2C!yQ>Pv!RF2;nd1S?OfE&MN%%-7ELQ{rPq<<)Y>d&
z`2~T<^lufHi^k_7ITtCp@Z|C=0yN6S$F*Jca#5cS$wk9l@X-{0E;F_KHkp&ytBk8+
zV%pugqVK2-uT<tw+l_OPnhV#+?DSluNiu4C3bSv`NjqA`)g%{9bHSg&DLFbWV@5qs
z^IWvZg+CYnN7HpcNl`p~#1jy_W&I(jNJa^I%c<bqd3$gudkA~L!4L$AJ2?+xCL@UC
zpn^!wIcGr;M9c{c1VunWBubXd_nYSXzt^u`b#--jb#--3Pj^pGyA+zFkVv60g%&9k
zq!773_FM|hsE3Z(O;dPdWdV`q)a~^Qu3#in;BiMDli&&rqijOU6pB)4odWSz0#;j>
z(}o2$$n17LS4x2b(@vV#tk<(iqCGn(g&rxSQg}Xvjwy6bp-T!+Z%TGbq0|)Vg%r+y
zmdz*+Pcqsyg>Dq)sm$&vyu2|7<-_I^(U%t#`!rilK}kVR;r%!ARkr0)t|lOn?}j#Q
zkx0y{pE<aC+(@B#%{Y~Br{JV8m{yd6ONFHHIvbdRPa#=;3a_vqYi0IK@gMX#y;68l
zL`mU1nUt3({N)THud-9-7Q9BAS(;pNwl#4g>r2Oar_d*bfwZoX$-b%Z_~@EyS^ZP!
z$GZBaEvy=E(?2;N1rkS`&m|<=Aoif(C(f0kw^A6I!nhR1r|@<P!)W#?j80)V6<a#S
zFhU?5x1|#wN&B245vkT7lW+{P46Da5Rv<en#okHbT@I)eCa3UT3KMAawX&A3Pfn!9
zQvAxMa8e3i9conAHgS4?7LjY~k|a(^VQLDqQoIoz(`XN+W7Da$?b$>cPLXB^e5QaT
zHYp$L{7*h>pTn;FC!fYoI6s9296>TF%UCELA3qDYD22rw2q`S30#o=Tg=Hx$PvOH9
zHqk$%urh_UDXbIBtEeb;eee9Sw{lmfaCmY75gwo=Wqk_w)s1fukjV2>q>U`3TzHuF
zVEvqBlOkOTGdHJ@?4SNo3Oup%v4BLX*NtsWVOxs#tl|s0h~C9MO<}vJ?u&=xw9;oE
zuJ>6AI|PLursovtOR6Y^?^F08g|7vjwS1StH*CcdncoV^6!A>|?OgWosRci#urr09
z*l}xfHa#4^IUc#3yDJ64Ya4R9c8rn!OA5cHusel4DV$2-v?ye63V*SgDeOz(H~Ov=
z_NQ<lg@Yn>#vNt<NMYjEbiS>#%tM0sr+|$97t1R6G$-0Qb|i(rQ#hXD;c6UB;hz+a
zv97m6UmDvT<@u=k!}8hcnFG^%pN|e7o?tl1j*F-7Iv4pj#V_trLPkj$XHz&w@14TU
z6waq`A%*|w>r%Lw!j;$4E{S?M%B~&@C)HovAHR~q)fBGLIBE8mat|#pU=k6+DwlHS
z@F28!Pq{_6FQd4OibtZwXd66iu%zHlfuzZ}OGbH~04x`~S~C9j6p65zoGc~dZW&P-
z_sS?Oql}Dn84(#<2BuMxdt}TQ6Ui*YhincJ5?{PtqO6PyYjWy+mJJ!@WZW;~0U7tP
za55XQ3NkLI$N0Lz+8GVfV}uV<BpJnii9aNSVJe9<337fltDuUEsxs!wSRkXCjOsEJ
z8LEsLGHS{wlF?em!!jO`@wALw8MS28mhrfZCuG!-QCH>{XvmPEm5DzpW7qG|3eA(R
z94u<uJQ<TwPe$XL8JRMgmy6d;%Tzn&omrhEh0n?-Wz?6EB_mr#0~u?-DtbyrmFW%c
ze>ut2LmLVjz0or3?ex-p({g06%*<x-6E||>GV){;$Y?5~p^Qc>U&b@6=u(uq$d)hT
zT49JhE2D`FmXi>*Q#{I$_e~Kgeapn3lhI5@3mMGSTt<>rH%t_YR!BpdQuw`_3*3&$
z9?jz|Wwa6{kbW&c@yzi2HZmj`-PsX&_1em4C!?!SEOp*q#`7{d%E+G-=^%*FOZ7U*
zctJ*I8C_W26p0jaZk{3$-z^}c4BcovQ^VJyGI{lS$Vjo7)nc-M9NMI7GISY3WxOrJ
zkYUPrRmN*FEE%?pKt@j)j;Pd?;R$5z>&1M5Oc7^dpG=19LNBsKjgq}&yd+~>-OQ6`
zqOVpd`Lc{xWPGr^V0`WHm@XOkq$cz0GWyEsC*utny=9E~HGD1VBg)LH8kW{y#sC?E
zWptY=F*;DjAQ^AUn6;_s%oM4lAl95JHJ&OBk@1#b8!}azJyqH?RT?H^xQzE@Op-Bz
z#(X$uG^>y?lI=Q>KZ><nh>-YL+1OZ$D&t)l@5vZ1YJX&S^c@-T0ZmUI2|d7`snP^N
zuP`<;QO3Ec(j8A_G3nqZIUmTF%+VoZCiPP@HburX8PjD<mGS$wJ9(y&#FI-32>XqW
zFgi=dZ0a*THkS=oV{<5E|Mc=QUQ|Mb%o9mN%-jxxn=X{GNX7{nCuJ;_u|&q#GQN?q
zRK_wHn`L|?W4VkKG;bN}WDGeNT`6O=j5R{kRRUIfA@8Zf(Ybp<#ZH_bSubOQj1O7$
zvx$#xL@sqsZe%$(A~TO>kg`c+A!ju?|6@7|8K277E+cU~;}ediCo;EEl0Qo<saSHG
z9G(T`sm?3${Lf_UpsSfCeJSH}8DFsLtHlWEh>Dsg3QEP9wB$<UD^WP{Z)JQZ<A98V
zGQOAbgN$Ef{3_!|89QbCEZEln72PF}pF}Tkj#_P+)LbmTcRCl@En|<2->6|3In$(v
z7AE(~*vA4t$tm_rQM+lOsqB~WhbZCj&amx!FXSG6Hu=h_>_amC<lwCo`-e@CahM+R
zN~6CyvZ}_9u#F2NL+gi&V^eFycqH|x9L~*Bz4PU^iDNR3i;RuiB)D;KO2%m!_b5nL
z@UM(BGH%HHV-e2MJY@VwS1IGX5P+p!kTJG++3TYs7iC<cbI8i%BI<=YnLL$!MaEU?
zs$A@vV7B(Ay?dhsqt`{Wd9!d7+@gb3aF>D-3hq!s=U-gGoeBou2sdKV1f@#D@NH%5
zQ=#xB6_ip?S_vnF6)MJleK1!3%j~-q5NB!`1&lI@ctk;21vM2stRSl3UIh;+sH6Z2
z$|<;C!2=5JBR}&hs4=Uc%#4C*|77q$Dc@NbSi;Gfkp~q#`CGK2g5GB`xU|?y=)d`t
zg31c2DyVi_JOTNd!xE~qC{bEC6&#Udm_IxF5e2mrJg(pg1+^8_QSg|83<c+wCF?5q
zutVXa3Pw(o78Q@p73Iei)DvZ9Dt!7U8z0VRxcp4=tneEY>`4U;n0;iVzJe{&q`e{+
z=})o0rb&EO<|uetLDEE_iChJ71)plzt|3oBLj^CXcv(dw1^EhgD%ho<v4Uq5yrp2M
zf@c*pQD7)A6(kfCC}^jky@I9+p5v~rf+7XY6f~zY&t<n@EebYIDJY~S)vyalWVCGU
zOh#J@o`qugw^q<bfutbCNw4tRHUEfm@20H+KAz}iJ1BTwL3af`6m(S3NkL}?T@<{a
zpyYJv?0~c{nzdxc-7gk)RWS8tZZ`$r?MoYSGj~w;yqeR)agkCWD;Rhtsw+?ws0vrq
z^E9DJF5bok&(zP0NKBj$pBI(_TfwUeUQ^&Ga233)V0J;mQ}9{UdOa07F8B%p1y;{+
z3H0o+di#de>%}a8L|+m_Qrb<IE}Sf!@@hUazCu-Bi4b{R!5az&P#9W{f<6lRv7^OY
zw6B8d?e3j&t7y`~B2xM*;kQK(-yhC!1}S)xmakxl0<sNRQb4*lU3zOo)7yvGnelA}
z!xSu6utLFb1tSzpp*Cng3PvfIpkShc(F(>W7^h&og0Uh{_=YpWK~#T4;vEI=DtJ%9
zqo<=orc0z>soa$GDMCM-_P?+2FIV_L0r8TTqLW!pqjUx$q_B`_3Z^TVuV8_K8A83Y
z70gjEQ^70+jauZq(LAhcR8eBCNS#M(5uHA=FlVLMT3x7Mk%A=(ma@I$Ba0Q>csJ7J
zNc6LuME_0Uk|WnSNm-^~aZXs{N(HNE!wR-5Sgl}<f{zq@tYEEzbqY2p*hm46MBBU{
zd8u{YdK&iAVXhAqY@%`gFIwV<_@CD^2x}IPOOujYDD9cttqQhrG!4oBL_kuQaqEz#
z7hg+b_)NhL1>e%rsL%Du&lP;B;46WDq2T+Ek|aL5GV-;8pZBJH!{)3HDJ+4=_w4tb
z>3x?*epK)St>}E@+w4%PjOhhm^-uqaSrk-JQB}n+3Vu~^OF=OeyA|x=C{}Pr!CnRX
z6dY0Tw}Rgk{I1}jf<p@SEBHgf0rtX>^oLr6WvctLe)}V<PRnGo{aJs~X(%{M``@3%
zKn4=YLxj<z3jR@WQo$(&#}pjr=%X#23R_J`hT8~BW0a|<1>2VP2~y6|=g=WcNM2EJ
zUcm(g7ZqGmaCvToAx$hz_nI5|Pr*%6MAvVaF8wfFlAp-Ds^FS}>+EQza$KB?5581%
z^J=5k6O->wNKP1&Y`(te4i&{!R8VohiaS-LsVJ?YjEcL|@VQV@MJW{}1U@T0bTxOY
zAVLb^TggQCPjc>2k*?xi6;KgT(Znt)t0JoMewDl<U1Ef!aNUduLpc@qsq|W?_G<E&
zFn<0Zne<{aqz6=7-59PFR}#pBDk`dYNZ@5|WiY96$xwjGDmXx9&52Y~QC&qd70p%D
zP*GFG6Dpom@vxA#j*7Y}9#K(CMg8lM+A7}tK6<!D$!{8mefOw}$5hl)k*Oj>#Sia9
zHvb!qsaPz=TBmj)&y%%cJ3ojpJg%Z&`$S&rocbyn(1)wYSMijJEEP|y$Q9LPtH==u
zGd?&Ybd2ps<i}Oysc0yYGG|Epzbv{v{bOqL8B${v&!|YKC=eN+6|jj4d2MLS4|WRo
z?whK-6Ql4s6<yLAU2C2s&Icm#q>4fn-Bt8Z(LzN_6>U|tQ!y?QYo(&KiZ(1Q5-U>i
zeS@r8qw){bDEY+bd`S@RYMEeCdlem2bY{sao>$RPMJE+6sHkHncfXocMH48%z!}o{
zzr!hOR}~Zf4re~y*t3=6S7#R8RT#>dqQELV6}}2Zg{s0(VXDwXb95DlmM51jN`4>;
zTsK3qRM;vU6|RcMXBF+5Au;vj42hw_OzHHTu*^V3PZck!=%u3RwGwBi77(ti9b@>p
zUpk}aw8$$eUS)S{sITEQ6|bxKl>=GD8!CFMSiss<^ik1Q#rrBIu?JQ3S20}02o(d^
z1Ql<o7^-5BiZ@jZRxyP3Ff;797BeNj9o!h5ug{d~T@DTMZ56{*{82pC_s=joP_Rv!
zDUDPyO2v2;@2D89VvLHh>;e_5L<!%{l#b4nip>g3dvI1*^1CYDqZ(CA6v}y05L?U&
zUpLm5kLx1(fr`m0W^#O~n4)5;is>q52>vnEV$*2zbz{l1Mds#EQQd!x&OI3R&TJKP
zRLoN`U&UPJ%1-B^dXH6+f|>DZ%@btf+h3!x#dbvEi)iF3wyF43#S#@uRjgOBLB%o^
z%T=tT@G4fQ_-TDkpS8&Wv!uc%NiN*2R<TCKS{3W4tLkwkO`auvcr=4^EpmR8Ozu9L
zyHUl5Dn3&2v5HM9Hgi0VkC6GPWGE^*xsP!8cyx=3PgHEBwLBDWe=?U0U212p5pCbD
z;xk$-$D@iJDn3{7m5Q%vLVeS|Q1K<b)AG;)FFX``scej!3*WBG`9{UJD!wCJmqYrG
zq8xs~)as4=A64vB@iP@TxgIm_Vxv?rBll#<{Mxh0$=}6)QSoS{7&jA1*`s1FeVvAq
z8uqF9O~nNj7ghYOV!w)`D*mAjs5qeFFBOMX9He+-BZpM{$)s6Q`y=_kU&yG!1?o4%
zB2UGVM^yYRI*u~mIXg6fosYzhsW`6Uw2FUKoS=W3EuB<xN=3JM1#SMx;P!Xz-^2Bg
zr)EoMRGd|DPQ`hS?%9$zTblEC{;h{&sTD<U&XzuyEv=m`T~hI%ikm8Kskp4-ii&G0
zuB&Kut;B05qHXsSU1f`YC_1`2ER)0=Dvq4W{!R!}Ov4=-(ljusxQ36egwwM-H9TE8
zoQFTrC4BK`xJxipyO>)_!`&Jl(oji5X$@sGl+$pZhI=%mYq(bfG(<FvDHAKJA<6<j
zEcko2bjO^q;rmK8t~f`kKS$~{J**`;M=GzOf`$h)JgDJ*Q3dH2=S6C-45uOtXO2dX
z9gS8LNi(+PRMt>MLv0OpG*s14O+!r$4{NBd;hFgnP91A#$oZ#;2=n%Fav#w!d0H_}
z9cyXeM6t~IY{D9^B<pH;R6|TdJq?d($PkbSbMZ^|I+<DX%fvESOJ>&N8gG#e>1k^V
z28tC4B8)cB@RWvO8is4g(vYn|)1b3<s!l_ZhSnN#HN-U(XlTm$zlMesQp2+vM)gZ;
zq#<8JV-2#<Oy22yh@)8p=Sa<pm2ILSp`q2GC{y{UqSHRGs^B>d%`_BhXdyB-*N`M~
zC>#r9tFxf!a>ZCn<`QL2NriMC*yF)AeqP!}gQTIWhHe_#YG|jSqlQiz+H2vfPzMdq
zYv4=J)H%}qA0<<VbJD&ktTZBV;{D_c8aiv}BG`Uyoj18kQ%>Xv%ZzB+T|*Dnr9siq
zrb^S4fc(CA?8b1UufA23wI_{G)j&uFLxZWIw}w6%EDg4Xmo&Vr!O`Gq=&9jFp=VEn
zuOZMd@A<+{YKD`dPMKLeEw+JXL)E>OM#`<5CFb4{+UG0mxV*$`8eZ4%D(&!SoY7TB
z;|q7j-_UTVWMQchp{0@DR}|h~!vGEa1Wx)xTha$=7^Ly;Vhqvnrl1oRisO!FQn9x*
zuEEBJYIs{D{SwP$sI(@B#QYwy5gJBnn6F_01=BE^Hl|@JjbFo9_H|BTl7?{_#%p*_
z!vqcQ{IA}31@dfKCIiKo_&@sl8h#Y^@b?^vNgvR9Ii|YZdm@&}_4XONqSM%qcgJUH
zn5AL5z-I_pd@k=h3KcS2!-^x(xuU>10$%+oztUrw^EhB1%jAcd3)#^c)@#_HVX=lK
z8dkA`H1I>?r2;NzcRUhX#%|qIKxBo6mE_lp$nfi)qSW1u*U*qE#nx)!`x<K`zK$7J
zhc92mH){A$)VoE)CJmdZ*dBQw3;2<SzxdiHPP5cIRy1~Gg!m^KwhI2z*Gp8DW7}9%
zR%YvNg`a8IL6>46V&HQPU(hOa1UkOd@D+!=jz@HSt>GJ5riSwxzSZy@dtAex8ot-?
zgN8jC_EMi3c53)p!!M#1Z$f03hMxp}`;hH~n?)r4s$q9nY~faM@;0}7i0sqwn}!1#
z4r=&a!+zRH_4prDTCH#!i*0{yW@zg2%p{RN2c!`$SQPn7!(k1_G#uA(M8n^#Yg*(V
z4M#cXx`%Vu-3vpT>^36a{Ef7S`lOxEa8ko*4gYeXfKxlVrc=>B&PNZIY|Ut`ZAE7^
zoE3rl@61R@`UMRa>2-Ca>$s%hKe}-p#dTcPa7Dun4L3Dh)o@M2j7z!KMSB|=$v$S$
zwKGLUcf|fIjNhUs`L3v#jt?*8W?DsiJ}js@S9*G`bf=Cq9VK;?(n03Cbd=B${jR9p
zT#1l{l=-OOZXKm{l+iKmkr>OTR7_<d`>MsFmy04g%IbJXM<r&|aj%Z@Ix6UZ4u7sx
zPRD&ZhRv0D8ob<$25AekSI(90S)IIJ#{)VZ)KQTwIuUMUd^1-fa%8Ub<*MY3Maj>X
zCoAiyqNBQw8hYrHtLmtx<G}JzpSKU&+?p%Z6iM%X7dpVo^TOv&EgiLWG|`dJQAbBz
z9Z%`V(($N{$4IXfdt66`j@)7OVmj*Se2zzmGe}b-nQZBX?44i4hr78?=y;N{wN2F5
z(SX|CmQ9@HKX)pB%7gK29XUE0>S)BmFXcY1BQB6!9gC+#Na21uVV=&(Z~+l!%x7Ch
zN1oBqSRkZK9G3sAz}M#`M{LV3(9u*!XB}O1Jg1|Xjv^hcMFX4bDAdtHM^Z$Yx5+%|
z?sq~}wA9gx?V2a;`X{u~nin$K=#X?gucM=mwmRDBXs@FKwKpWmH5u}B6^c5wtLR~?
z@Qry=CmmegSv*gALB~5HiHkqm=Sf|4bkm{f&~<dz(L;x<L(#GCu}r+4meR5H<MiFB
z*rnt7s*ax5OH}+NdUr-9zY$;+h7MDQqr=r<37M}9PPYYeaGrE+p2R2bW5Q5t?T&gh
zlKGPDCVT35QO9RGcIfD(<0Tz4bj;N8vW{1D4A(J2$E!MC(=kZLn>t?C@rI6mI{NGA
zt)q{QzNDXt-Wv;Lh|QOr&EX)rIwm<lR6S6@X7i=!nG6z{G_iixU>$Gi7)mARs5&pw
zuYT5?7CCPVd>HNRWRyJQ9JHc{$VeTdbiAiyf{xKT#^~V|?K|wOeraQMjMFh*$2Xtm
zR5+d8#>(yXLA~qOb9?_0e^<wVdrFdMw#=NU<9!_;=$Ncyl8~piIC56$WYLptbEfE+
z%7Lb1I?b<bPHMhH__~0Ufq|4+I%exwrDL^@IXdR*SfXR8j(Ixf>sY`tb#NBJGxP7w
zmw0q`k&eG=lpL0mTuccgF}?|wI-URU>HK9J^{4Y!aCqh<2i+{OTo2zISp|tJ*^0&q
zM%U<AtK%abAM04B^U;8f^dUMnPy;U}d5Wx7PJ#$e4-#(Dv02CdH}XkbI$z=uP!hN3
z_=KjSW1EhH*Gq6`e1E0b+$)h!SyZ32?K+m-9shiOIC2Sj#Nu-uU+6fe<2?Ppj;~mt
zjz8%CDUyz#bo{L2TOHp~S{*;=*z#+%b&CYU$+3|iIbK>McIwzg%Q>6DQ``)s5I$a%
z_(jLBv|b&*@qwbmcI()qV=ry{aD01%&=~gg3D3=Dznpx&SXm+rzjK(^4fi4sP<S23
zb)4Xc*72u~BRc-3Vs#v5Z`Ka4HsT8!R~HY=ml!=t$3o%j=N#ie*qkh=9^<PVlm4rp
zLwHihDIFyKtAm_mJ58;Yi!pV=&gN%yoMq=e9Ai0*a^3QRj*IlqI<C_r37ff03n?8w
zU;YzO&TXy;%GLkT`#q6)L&r_}b_1mh+|p6ZK$?NO4BTPh%GyYA19uvsU*!hzk##w|
ziKS()ri3K~k#z1RGg@&&&fNx{cq(g6<3t$)grx<;g<4tni0E`-Gi41#4Qw#5(ZIb1
zV4$mkZU)L3xX(bofyM^P8>nEQwt+eZ?l<s&f$9co7<iE4{g?ZYfl8F{dTvDnm0Ko=
zR5nn>Kve_P1jCS{`J_`Yp2;WwZRFZ~siuKP$g@Ctn3IQc@rSk-5of4nAih94$c<eC
zj~cw02U!LlGmv56akj`n%s@Q@nW8zxM}%*1?H5S70x9~c=t%?h4Kxs`!Gh2}hc4g}
zalSVqfBFI`+dz(iJdygefVr&Bz_G#k>jd);3nZ;d77J`>ppgOQViJob@ficp8YnW*
z+CUQn2?H&S@Qt<950L@`&lzZDps6U6m9o{%4I~W|8fYPi<=ZFLG;eu3Y2DuNEst~l
zRt9=JmihL{C}A4|l7S8eo;T3ez#lCW?F_Ux@csBmhj9@`F)1>xbz=Nm=^YJpGQdS|
zUKd07f`QHkx`<kK-xnv5g)<Q8&hiZmG4PgwlmXd5F9R<bPz>B?kf|Fm45$W5RE_iI
z6HOqm*UmHzSO$CpfdSiqW5A^<Xd%Z#w_K-NXuu3B?}|_VK74rfG_Z7eIOl&+@bGey
z<C~M5N4;#|6$AYY^f&OTf!7S2yeHO&wP>-|4ZLBXHyisxo{}nT)+c#J=)d$rsY0@4
zU%`1{L{q-v4WM<cEf^$PH;_hHFN@JP4Gb1|-osgA9*C8#mo?PD+w2a5#}zQlz;FZa
z8hFpZ2m>Pxj5aXFz;}Cd(ubvwV&NylEwININ@ER-Gcex3J4W~>GN@%HlS&`VCw#%k
zX}M4;SXVT`z(fO+4NNiczJW;wJ`lnv3ni}Cby%BIQtTTNZ+|W_)xb278hI-}Z*7h~
zIdo7n4a}m73@kG++rS(H3&>;OYG&qK1M>{b7g=ua;P8;!0Jo5**%ujDY+#9jc6Blb
zE(|Ss!a|8z7>F-7uz~~Gz*++<4XhF+tfn1)9*(su;sJUaS!ZCqU<lbnIi!CxA^D+!
zO&p;HikaAK;3EUS8`y8)V*^_Zd~M(x1D_b!YG8+foeQOH20k@#v~+B{foHCTbC@>2
z$NP25`;6K?6D6IL&kcNGpwF=UFAaRf0e+(dGoD{4-9I$hcSq5;>;eNn8Tgr2ZQut3
zW1A*+8TgUq6K|h4Zgyl}(?sEhob62$^k7mlB>rOHR|9(u?4!+#X0oC^1}={Zb$fAt
zXn_pB(d`_HcAgsw#-u+C958Uvz$F6**|`Qzu-^^*Y2Yum!oWZ5`WunM296l`o63}9
zeU8T&n7!+#*}R#M$T0)QMIeRIaVIl+eVTpBz-a?#4V*LZFHNFP+MoNQXAGn-3j3(U
zk)k?_r1NZ4srUt|;#{QBB8iuDbrPv$_>XR!T`wAPnG&9he0DK<?SJjMA&~0=@)oR{
z6s$1*67S-xQSS~D#Z5eH@+T&^(?pty`%IKKahHh_CelqrOq4WH%Ea9!N|UE|I3yX0
z_f9KgB6TbG9syroBz3-!@!-wS6_+(}<$8&ziF?iPnL<3Tb{0&S)w0T&;8jaRT2%}0
zT&iH=eiKzqR5S5_i3d$oGEtcsdl#!{;vqA9EH2Bd$7kQ@#YKGl^`9JeL={o&<Bw*Y
zo|#$QMBP;dHO=sPs2V0Z&5AS`*_8JnRXh_VrIv}>CbCWBn5aWe6Hl0U(!`@C9y3wT
zM5c)h6Fe#tGvV%vj$0%Ve_>~Q-TI=())hQ%;>g4ZDT@Vt*3M{s6Hl4QGQ)Xq1Hz`^
zxY#}-(yu`#r@Mn^N1o>9uZd?(G%*o3k!PZjiF_e&LlZxZiY%BG@h@k5zDQ~;h&+D$
zj6fRCPM*3qmfk&<V5?0$XQG*jS?@)dCBJ*DsR=SLW5)}T4{o#~XLD-O2t8*D6D=u;
zjo)mvGErpWJqr^ov^LSk#J?uan2=1gH8IA-SQG6`v}azn*F*<VbypMJOgwL*qY3S!
zf=(tn3*-d>NntI7T}=G3NFvhRL=O`xQ`z+<WD|+rX$)lJ85Kp8$s4^G)v4P<yi_^M
zGGWjFOmI5Quk#pM{Tb426U3i6nB|%9P4qL--$Y=dr-@fgylUb_QQAvp`0CWl#D^C{
z1K>@JFS9F$M|)n%Juim9YbM?>(c8r9f}cEhFP4ZC_A${{5Nj`%7-iA`69Y}WZDN>-
zK_=cbF~r1MCI*}Mcv2*1K-xpUgs+epD+-3vJXRD$Ru%9h?eL@Fo9S>-)CdzJO;p$w
zvW*gy(PsD=GNWzV<Zu&~$T$<@O>8&unTdByyh}C{i`Y9RCYYFJV!DZmCf+wOS(Lym
zlLYdCfLSY(w+~-UF)@`^bTxyNXBUU^&oD95#9R~eXo}~fvrNpUVrk*e7dB9mguOR}
zer8ME%=sqh@km*~u5X&?bv%Rk_cb#Yn^<CEy@?GbmYP^*VwH*2RLlP8auX{|tTe$J
z=U52C3!+jk9jr02R?yc83EQ3u%}){Q11~R@HnMlvn<hRnv5C&##7ESp;Pmztajl^0
zT*)7lB)pAmHL=aaJ$=(Yr4#THyxQ)|4~vE*<I2(ab4TMlOnh!)FAdwo7bd<m@uP{I
zCcZN9wTbUcd~f0#j_9NL-?I6WLaWd_Bt8`jQ=~BZgNbjqrgvJBoG<0<;?Ohki-})N
z{LJw(E<&D*4b#Vqrk#)yyG`s7^sq&T!WSQYSpA!c-%T8*6ELx##!n+O@u!IcqWps<
z%DtJtSd>t?dVKq0snM)ZjNJp${-P7B9=~Tz{@*5!nmBIago%IHYZoJ*{un(*M|!Oh
z7rL2!VtVV7CQh;MmPbz0DIL$qtsZ~x&HVkMShAfpagKsnXl3ENi3@a+7Ajh}XyOt*
zvxQO?{xfmeL@^6@Sh!;1s)-x)hi3TQ$2AkzIj*~h-#GA^*~x|Z{0QRln-Suq+@hQ6
z7UR^bxP?0{++~HFX%-&qQpl;-jid2>-D1Rfbiag!ogMQ?x!Xc%3-?-pg)$aC9-N+T
zA!6YkE7W;#Hhj`KJozc2Q31bQUeK;;tY)vK<t*H1p@N0`EtF>~2B-ftD80Yf!sfM*
z4_M)akb2pBuQW;UHpq8A%YMj0B@0;=vMp4$P{qQdl+8j_3)L(<Y~c|L)h*O+mtDg`
zP3lJ|tzt5Mx@}%$NjOq!G1WpH3w0^v5{V3CCVXs(berwR)dd+AViumXP~Sp53z-%k
zxA268f+Z3^)j#ScxCGjLiS*H)BJab{6YgA<*1*D3<h;8v83rtoh>$tQ!qXO>wa~;u
zu7$XTMi%ld<OwBATp~5JK)Bv7e7aTgeZO$|5~;C;Z<a{USm^JEyS*e5CRnwFW)_-@
zj7<f6j;%OQG+G=+YFNEqQV<I*w6IV@*gP}7*E#$!hp9z${uVq7zJ)dxBnyfK)k0ef
z?JRV$(A7eF3mw?q7CNy<&PATLc+pUz?52V<Ga7tT7=J-T57dfvwm>427&tb&S?F#d
zWkI%ZPB{F(>co1miuBm_Hi@b=OHvHd8PzQ47K$E;yA}+p<yeMg!M2b{Yh+qjy}yXN
zehf!`jXD&mb|x7JFISEIy+jHu^t3R@!kZRew9v~!Zwq}ayky~J3$Iyt-NGvtUKL8<
z6NlHOvffc|g)i)dRZG5Mfsi-@lZNFd`clId2Jo>sB)y-=MdCmUgbbg~ju7(J$H5kc
zkZ57Jg|{pWweV5H#QT>b>*hy@te78pTjZU2A$Np@kru{U7-wOWh0(OhRmm|Hv{^;h
z%f_0lNWQ;1`S9vwn^np27T&S&F10Z<B=Y-EB6lp6xa`SQ&50J?x6sf=BO8+}d_c8Z
z_}9W@3sWrYu<*HssTQVLSYu(Wh3OV%SXgXfiG`UKW?7hTVS$C&7Uo!(Yhj)R=ihp4
zc$KB0{WIhUq_$V|{Xfx#?7rV}772LySW)@BBpH@kSSH%F%EEFBD=e&}0HY!e4;Hms
zDpl$l@^l>+!Wxr`trnc!D<;=jSZ`r7RYVI}S+K#vhwQRt1sg>)yo-`&mOf73B%-|O
z;$sV2sD#>CpIZ3D!dA-pWY#vSu49Z>Qu7|^`WadNQt4{7tnC&)qp5U?t<DNB7G7RE
z>kA8CS~y_gpoOn2d~IR3g*_ZQ7QUrlvarj-cNV_4@PmaPIq1YkyF-_96|r#oQfW)4
z?C;WBQ=XqJ{A}SD3%{~+g<9^^!&wU1?(_=RER}XGmG)ZLXW@4X`$bECv#{=m=%ERr
zV}GH0VS^)4YLfULbSwfnMC}!39<lJZg+J-0YQ+DtaF{NubKbe7()|7LGIzy~TKLDp
z2@59$!!hb)nRJ|;buRnAaY@2ML+jOACY@sI)+L$5@;{i<@{EPEbb2<b+Biq&W}&2w
zQZ_Eo`CGVY;g*F<bp95uTDWH6GWFIybi!AJ<ax^^eyKFEb>Vdp%|9Qx!BH;?AN_B}
z^45jLY}{evP8(@<n6ZEBLVhD$+zv}9J1#V#yKFQ*A1PsjQI^A($M#u?yKR)V0UPCP
zl(BJ-jR+ZR9GDRqrYBc)EljuJi&~;KKED>Zmkg^4ICtVa>TKmW;e9sB+j!7MMH>}t
z+%IZ;z{Xo57v~1;#D)R|V0g$zB^#9m4|f?N;xyM2zlU8=%|>-WZ(yT_jhZ$dwegq@
zUUB@ejaoKp+jztduexPeuuQ6BBkPVB?;)=%kS)uky~`vrXV{oqC7x;HaT_rk^=yp#
zr|9Dwtu{WFIKNDKf+g7CwtIaW+@NQ@#F<2fvdg8XSd@)y8#y-OHu7vd&4!$hNIlbX
zZLC~gpeGW9%(d#iSgS4Rq!Z7lVr@*c@xF~`Y&>hjvEkZ0I)#Ld=WTSfQDCE~jTSaq
z+IY^!52a(xZ6s}Ms1a*s<LxIipN}UVcq()3vPhwgpN?jnI$uOeD;q^N+S+JmqcsJ#
zA=#L>KiaBq=o=qf9-0={E7~rXI=4-}wp?m&ql1mBTXP}<GZ*!5T4j05PBvb!(Zfc{
zMrRvcZ14bcH#V(myu|S+zjW)$?(3cJJsj&!QLDxoPSlLaHWVAW4a0^i=;YDZx<2_Q
znk30n=F!X{1JX<zmJOSQ_s)O%(afTy1uT}Fd+TO;G#eZJZ49sx*yw5FWgD;9c+tkI
z!<xP%pjRiemkpjIS(}l`V}9FS&wrIs8@+AxvGKZ%``(MZ!G0`Wmg}@^DVM+c*30Z`
zqaQW=ej2m%EJ%>T0^gWaZ=j7qHb%0$ZM<n?Fk4E++8Dwfw87hMkIao^|C`Z2J5i-p
zX0f#RzLU{mHip|6K{>M%W0y-zJ=~^{kQ=O{ZH%$;j*WM1jI}Y&#&{b%e8`iBw+kVp
zz=ZGFm>^P#^W+Kh5?Qodnq=bx8{0V;ZA`W?#l~_QD{M@)G0nz&8n%t;HfGqEZDWp&
znH*UMqO)j7yGne0DC_pcJDauG591?qY0|q&%oC&I>cQ~g7~zYmjYT$=*jQ?V*X)qE
z*hc$tkrGnk=+#E#UuJ`WbcWdv##Y)`Wn+_#%{ErsSVNuISZ_m4iy!Wtw$?^3@d3yu
z%cTuANZDxPL#pnDBpKAXMT7p!Xfe0wXQ%KZ8z0-)X5&*ETWowHs@N*Z={6<V;e(K$
zHLlrM#6pO_{C$+=?4b7`|F=cEY<ywkODfam&#>^7$o{pBZv?WmUpn*F*b@#b;@@+m
z*x0{Z`q9Rf>5;#Fiq7w!-owI?pQ1YjooqkZ_}RuUHh!gRElBLOv6~)jZO*^}X?y55
zUTS)Ixzy!AJ}r~P!2{BMXGSu(h`RWLj?Ts~2g4m4v~h@|-a(#&KW+TQ?r>1n!C@Om
zY+Sc-!^Yn>j@md&2X5mZ8^>&%vT<5Se%!_h8z)Ke{{KB|&yM)LE2NAS(!U)0D<m?U
zp_W#JW0pKymL$*9`P;b6ril_R+PGxnKY<TeAxV#9O%cp@t|_=Gh|GA6ow!13D?Wew
za)or0u8byhDfey%#T?w>AkD#D4vIUt(+TO^;jMi!<Bt`5YYsPjOE@U$pp+Bt`O+<O
z@0el4zHlFzuZN`_lySn1;D`7iaFFhx<M4cD=Vmd9Q3v-rsO6xx12`z>@Skp|?BG5J
z<sCfeprV5cPH1oUJ9t1KgU*DG{kdM@WaFA>%R>&BT7RYV(8^E`RUA}xP{Tn@2h|+@
z9VxrIgLOS(cbAU$>6-V29OJj24?DbIA@+!XPp%1Hgc;S2WYlp`mqj^f;NVdQk2$F4
zAXC(v;egjn#RT43RK$<?9(VABgSW;;o}^|@W|K112<PXw8J==5bz~&lL5_pzBO_T3
zX0^=Wo*-|YA<xqeavhNK$HmFD6+-iF=%A4U*?~gA95i-NL<R@XIC$1Ua|cNWO&lZ~
zJV&YgB8CD7O`Y%*%7VI?Y=Yh`kFc48I%lH;<rt5n6gp_Z67Gq$bTDsugvjaRQNmXL
zi}tFX)y9FuesR#r!Rr;`Z5_0C(80mP3h{PM_@U^AIZ4tFRWC{Syn_;V#I2Rm3rwPx
zPDi^t=;ENOgKjh!KkSzwE2SboIaO$>la$xPK}zUtt)Nu!ld1#F!E3C}f$qR?(96L~
z4onA@1J8j^#YSVc1IK~ufb%X+RNgHUCuI0>r4%^m>4e{Fzer??bo(3a+o^xAlwNl5
zii1}jG^-qIIVD2KFl>GLZTt-fy&Vj4@TP-4)NS3&eh&IO=u0t<XT1DHcAv_zT_<w~
zI2cGxJ`g8mK&{NlOAE-!)(vKli{^waW!oe1v9~gYI(S<Uo16?chHk8sMmQMh;2Q_u
zIvC|(w1brnRyi2sU@R?xmg!)egYgbNa4^}yI}YBZ&K<n(V9~~$ye;YPIhf#p+ieGy
zCWpP9Pvn;s5hhI%#O~rq*c93rZI1><rHzS96Ud&Kq3bTcN@5_wq?sI0tEA(}<QxZc
z9W18mXaGXs`3@G4cu)8=Tqr0vuSXWKcMgONVc-uPmQoL$W6K3x=HUF`^n1kND-u^w
zft|y=t2yqrXK!+_nf>KpEeD;0_0(#OtPdS*aIjGn{((4zP;XVZq0d|y<?kf&k%NyN
z?BEb{u*JbA4z@Y?RPevLI&8~U8oy`@@$G{C8I5X{G^$xk()n|lFC2X7;4241R!0*3
z(keWif2?)>yT_tm(}6sl&#}qqcMiUHaMHmk2R}IY(ZL=EdmZeg=V_4jvx8q8>~ipv
zgSJ0LN%{W4__XDbUpWRx=AZ1BzMFabrPrBUk23V=pT5t*Z}j92jyU+;!F~q^=<tPX
zf3U|7MrU@&yW@^n-&N8f>c2zYpAP;KsifRaB7A?9^tXeff_~h=KeP~WX73oCK#NR%
zwwXV?Uayf&n@)?Ipka)x7cVS4?ciSr*Bo4Tuws>T#=$xEhyxx2J1gMfe(4t+Ty${R
z!4*n1CUVI^n~Ej>6SbtzO@1Xbd1#gN(yho<L1c?|9m%-i;3i$YixMtwaV)zi?&3~2
zbicoxir(RZQ;{iB*n9@gM$%jmeqA<3Skgr)7xxI}yIpL)94YOhjEnwblGj#At<J?q
zh|^7jw8C^35f?r6&`)mE3b`M2uM4>N(8VSf<yeag!-eUhyo(Ah@?11@aleZPT-0_^
z$Hjv#D!QodqK1oyNa-A_?4pW`;ak%yiRj)kF%qk~s3wTxJH%#JiW8D(PcNwH;$at$
zxLCU?!YBigS}usR*`6e<>*7%t4O~3s;xQK)E;3y_?jq*m<J0*ks+Fuq0Z!yTxLT@u
zcdX;T`A@ju$=)Yj)OYdpYAL-<=mQUZk|eQ7ej>|7wu@XBaThr*&Q6LvEwsc`X|*)N
zPaZE74xh4n!-e7=HzJK(<hy9?qK%8jE}n6bbW!NySr<)QG<ETui-a4#!u*`py1+%H
zXA;Djmr)|kTo7qaVV+44A!Jeu7cE`1a#18wITvC^GBXgljY}@ty6Ebnn~QdAk&72x
zbav6f#q%yYy6EJ>SuM41l=$Od(a+nHL$@dIZ{G65?a8*q<6W4ycs%>xXy$cpS?7J$
zGTGfl4;P9H)y0AKd7I9aO}UU=aDSGmgH}t^S4*enMaZwY&|Pd<Eiofge_kzF><bs8
zT#ROoE?ioXivcb?7ru*EUA*QZpb5F?<>DoF)7Af<9lgl%SBD<&Wg5?q(O0OqtGQf|
zoZKZw_-pg{>n`4K(c48IH{53#e<3ntYc`8I+r6-_i+-YCn4LtzVSV!N`mkW2iy<!F
zaxuuon=XD>86k173ql5tO>z!(F^rbx;=<nO+oF)dVzCh}M!H~hn>aPS^;GulBi3VF
zjCC>3#e5gzT#R?|fs4s5-f{7+i-|7Yckv#FQthk>E_iS1fXPYXN1sjbr!bS)t=A(w
z!NO>b=aNjF;$o_cnJ#9znC4=-$T-8r?)C|zMS={Sv>1`=|K`tjF-OQYmr6UIF|<Jz
zPq~afn@jws!o&h5xme+1B?q;O#V(d{fMjIyeQJq|r7kA?mNP6pw(PxRbv;J<a*;Z=
zL6QusT&!l)#X8phbM#BG=(k4Hb=Mkcy^9SlHi{^9wdYF4Qa#3u#JhYI-|XTeItmZ>
zc=(uR;Np;rKV5v{Vk`TI=1K*+_|(O>F1~ZI-Nk1vzHsrSiybtrYZ0qe;&a-AQP|<Z
zSk*NWr&wRP_}axcG-IQXQPPc5xnv+Gzxw>1o#^667dz=vg!lV;YGmW@;pp4N0e(I5
z*WdBm)5~96{OV$#i{I!m=0|pmChQgX9)a_FpSyS(txIftv-t0v`BNSj`$ZCOK<aoQ
zx2v1r*R==3VU^%IFxmccaoEK*7uQ`Jaq+i{e_fn$an!{>v|bk{TpXiws}xQMH(iY+
zUknw+A5oojamvMM7g<L$xIar`&KiklVu_q}an8j>7nf)-b0QC9WuB)g(vhAG*CNQz
zL$m+6xa{JJi>ofLM~E?rft>t59T8SXc!SyL{5_QPaLYw84|jS<^KgfU;vNo0%W_Bf
zgb-|FmDsmDPu}Cs4mC>N<>9#+CFhLFCxz3bQXWcs;l)10@Ago8Z4PHsKV@Zd9+mDP
z;^AozxgN@Th<bR~!y_K<^#BhQJv`)rW2Bsi3Ldw6aG!_rEWysTzb@MGReYUXcz$n`
z3=epC&;uzPQ*7X4^9m|?sO+J-hZ-KLc=#tPv#N(`Uijo{T{FhjiEB0L@tnzmrilwT
zBV1}ALrscNkl=b$Emq+n)5GI}zmA7TJv`>&WXqho9-7w?vlI_85A{Tp6fR5ddpwH_
zEPqCR;t3B=dT8L`DGyxV<}bY%>Qj=2NuHA=%<_=!A;$w}uv}YUDk1TfJF?>*@;rRI
zuXWNxLl2FF49z^`duZ&TiHC%TXFT3ymE3hY_gN2>rWAZoF`jc*>*-sI3OqEW@;$7Y
zQ9y>W+mlQpY`aFfH8WgLYA#CKvnax&VufD#+q)K`u7-K(MIKsvc=k0kc@1qmNFG}D
zLaSbA>!F>8j{<xgpgsH1!!RGieLU}>qle=jPI&0#;RO#%JuLIk*+Ul(gFOuK(A7gX
z4?R7+=%KrZ9v&<Ywuh7l*@Gd3Q9P&~G!MFmsoxZpDi<sMd}!eeKNX8rycE9NnSzsu
zw?=Y2xE_2#@jQGXw$Ik~PJ6r6|K|!kFe90Jd3eb~Ul08}yzJo>4{vzr?cr6C_caf%
z3uNRPiGlnVa}rXiSeYHkJ|0LR!|XNE$7`hi9tL<A<YC+JWVJm-M|Kwt^gtqU<~pw@
z-}JD1jYQ-v4?{h??_rXMx2Y%(<2}6NVYr789!7Z>&63%zH%mm$M5XVGZ9S2};WI`I
zsIeZ#(JI7##F<OEylsg|WO&!Zdmg@7S}?)G%>N=p7XBAG|9Li%i9-G*<zpXsnCxMW
zhq)f6P>mjDklDkTHPSQ>(>?6{JbQ2bOkSh(*Q4QoE!RAnIg8hTH%iVHCGbuRUWLK)
zB=bDX_pr#rVnOFc1Ph3GAU|8myo96_UW=4mD=iT`)z?bPJ*@EXy@wxYQM5e|Td6A#
ztC`WmCJ&oEto5+Y!v+r<z3`Y~vlWr`9Ok`?{XV>DO5ABfoZ&+%XKmOQAJO@H_=K8S
z7#TG>QsZWcEgtIB&1ATJkcmf|KJ~EO!<Qbu^6;4#{)z8%n%Tx2UO%<N3x7OE<ct4N
zSmutdv9GB~8a#bP*VyQtQNm7ZCBpC6p=+hGr|SLaVW)=!bZ#DY(U3gsq4qrd?BN#=
z98JHHp<g-!3(OmkM#^pv@hb5{(;Dpa@SBGvOOyLO{LWqw4f#dD&1<DUJiIABRD6AD
z@{my7Umgy7_*394t<L4h5f6XUS$Q}{zsE5m79wuc%>0aQVO>te|J_|o`bm#VK*;g&
zw2#vs{-wk8QO?I14`)5TbmI;m=RBPEaK*z_4;MUK^zfgD%c8nV9tPe~_GfV?HdmY1
zE-NrcM@WgCk6iO`-NQ|0`6D{1MdF6wCw`QZjTVVpwCxrN;uN^Jk2`(b?W44hG#_{Q
zDCy&6H%uxaklXNfv=n7qD>1c<k9&MXe3bP=Z=CL9&Gdpw{nL4%nh0Uk$GtvC=P7G4
z+&+MPpO5lBYWb+`qk@n7eN^*N-Nyqy9`sSkM`a%e>W2Gw6@5J9<Kdp+2f~cr{$99>
zkE(w7aWUyU4@1bL8bW}YWcJ~GQ-Ty;w#Iu!9`VC_MHuD1B6WP!_3@;S`aT}@d2u>o
zKI-{+;elAWnk5-Bd~ijY%$YtO7xX6tg$%czO}tq#R)-gSt;=a3lCpec`*=#=Ok&1+
z*GXT_h>)3`o9iR)qnnTJKJt7t^pW&Y=%bO3d>;iqnhJp%`*_C3vp%?Z#igppM?~t6
zh&1t$@WJJsT0LSM2%GvPpA*bn#&7Op@ybXu5q)x9sM7lnMqBu3>7%`m4nA5D8IWw_
zL!#t9S_{rz1CkR<#z|*r>!Y3Ex#xI3=`0~{K=OIP*3m~NA1}^N4qOs>!AEBwU3_#E
zNf-XhAf1r>L>Ow%NcQlN^6`p~SAEDn6dx{???d&W`LKM@v*~Qh<y^yu=_9%$yUzXL
z%^{obh>xxk<K-c?561_W;#+*4-Rwp#8GIjsk6u1r^0Bvktf!B@<zp}U`1L_C7y2xl
zm(Df35}}{u2S+apI{$Y1nvd6g4D#_NOY_m&=YBc{P^&aQt+20;exemT?N*|4{Ao3O
zIVBuO(>)W;44ny);hC9q(Sv;q@iElL+dkg%!E-Xa0pm78w%Z7a=LV#W@G+9+8lYl;
zQ9efd_{PV#KF0VM%TeHCt&ed&#`~D%W44cXe7x&pijS#2-t#fR$0Q#g_?XDCP%6HA
zMC5(;xVV6Q;8&qN6JN0{eKO_m9bUA~=rkYGea!GNlif5ho%EM`r}3CBAsP6UoZmZb
zj*q!MmibujW1f%sJ{Hknd@Nu^yGpzg%UbB;x3&px7I4k~n3O{z*ZG(DSn7jBCPk*_
z5?SG6B`HVatEj_u;fN^xb~=&Og80*oR<pas*7;cPW3!Ksd~ERl|DKHx1+r0y%}2wg
z|It7GH~O)UEk3^Bd}CeCCqB0N*zV&qAG^PcZu9ZS{K%)GkM<nMDqJU})=4{jd@fR1
zdnmxctbX;v+1i&rzGBrEq6}Lqmi$`e>ef5?9s7$W=i`EpAAJ1i<4=x#A3J^Q^0AK%
z_wkdDp9TMJA5RQS`$gct(#F<FJdnV`-(M%~q2aO1#BI`~tQ4c{cX}ir2Yu|Ps3O-z
zCH!q785j=v*ioY%CuYR=wMiWIam2?dI&&X?`#9?3xQ`PwwlR@^d>j+m$;pe+-YXwk
zHIZhwBHU{@DUyi%>xV1AX9Xm3M$lI;EnqlDyQ-T><f4yDbkqS#1o+R#Wgo=?+!2I+
z_==C~K5qE9>f;&*Y3tD7|D6;L_M5cr;$?4%0>2ea`%A#$0qzWt7KBfPRxQJ)!@_Hk
z-+SD9xKTRsk^xEuc<kToasloRP&z=_0MP(t0^AcIJwPPD>aE$lBbQZt?<H@FGWog3
zd~x1&<F-5R4S)bO)`tv<)}bW#1t=e&LV)`Nbl4kzAPBF28Me8g_v!40r?P{1VpDqj
zp#YTvXaV#9l><}>@JxVb15^!AEx@ZeiL3zCS!{q<fO-LH26#9??ErNG@EF@80cr)9
zKQ%IELukVczv;=k0Ul*r0%Qc}kMNo`&i9x!YIKq>aXCgIDVYHt4^Tfq1EJ3+0z4@Y
zCXtg{B=XF#>pQ+1c`85~vDL_=>;O3do(_;3pizMQ0Pz5M%s4I5FaS?pF$+&}=FbT8
z^1fL@ezes%2=A&T{lTuWCIJ!w+HrCopddig07U^>2Y4<(vjBwwS_Eh=Bw^m9KpL%=
zYEI8xSvJ;^9kDplN)Wj_Nrs|R8QitBn<v@?kOC0tFebtSIXq+2HUJ?<XompL2k080
zTY!!MIt6$kK<5Bo{T;3GNjiTa+H_ZxkkKvyh_G1RO4>a@j{r&lH9$(#$YZOrK&qWD
zVjx?$0cj-Ge?5%{R*e8=fcFAS2w+hXYCgb#08Rimz$@&^0A7Hff6M6^;KcxbfPkj;
zdrt1~1W%p}=}_1!z)Jy6G)}%uf!9l<k8G3R{pzfUxn2wKdVszGmQ}C!1}&N28VBeT
zV0Lcevv~3)VRb8<<kr%y`w1b5@EFX%0D}UI2rx3hn*jy~7#iU107C-2#UA7nr(b%f
z;q|J`Eg(*W#9{2;%JJb;)bQ}KTqZF(D!}LfV*`w%gu9|gFBgqrXT1}7r*f=dO#b))
z?*w>PB=KA^zmCV?B;SmPa4T(MfcFE;qm^>#1^7USH=EWHU`l}L0cHf4Du~kr+|nW(
zJKH|bj(m|llUf>(HY))A#)umAKCYX^7hxU-o5SI7J~CJEGs^y2Ks>;j0BZv*3b2@?
zBfyFPO9CwAh<+!sEWpI|5>1pJS+pIJ&v1L$ZDoK}9NG-)C7ulI<P`CtF!#+Q4-Kvh
zus*=10Gk7BU^)9sYz*)r8-6wSd%>*U$Y3Fj-p=PouX6{a@w1LcuSB*4_=N7_MU;IJ
zTLWwh(4{B3_Qa<Fwv*lyWqabY06PL4r^W(&9^eZaMu1-ed`Ytm@IA*%fUg656X4qb
z-vuZh4M!y@L>O)(UsjI&7+`0BT>*Xy&}&}eLbq7eD;WpRhC2?8dZ(2eRqVc+^?nVo
zJHWvJhXU*gus6VO0e%;%+jS)}bb5n*0sdJp{UaCd5Aa8Tdpjf#PzJe>Nq24t{RR;d
z{|xX~fTLs%aG18VGkPSz-=ds0ONwgF4tuSN;3v{M8aqb6v81Tfxm?1N0Zs+D9^giR
z(*gbsaEUHGz?lGN1Dp?VA%Jl%oTxCIqkE|yA8|fh6eYsci&Wj6ndeUAUk<SDvHDlp
z*pdIo)0cqjRDJ&&uA#WE*QbF}Boy(w68B#Bm0P-3ycd@f8l;pGna(_)bBV}Y8IoB@
zGNi~X^E@{i3Z(%hLnuW5&)N6){Xfrs_Os5~Yp*@6z0Ns%SgX}l0gwMY-))`bnf&Xb
zChM;@xH$m-QGv^#pXCxVO3ElBqpS>aD<z|}j5H3xqNrW8|3FI--Cxhy_;RY8jPf#W
z5oBDDY4vX*18F$jcwni5jEWq!$uaU|NEgiKbZ#D(QCUV~8IQ<-jN4?~FQb->+hyD#
z<6arnW!x#Fij2EuRFhFv@V`sM{TE4l2WB)|A@O^=)jzRs--}fk8@or2zSWs@t$Lz{
zjQeENlyPK4jE^TuC-^N?nx+VEOVpN8M@B;#88RM_@t}<QGDa3=)Rj?B01wId^o>Xx
zfA?7~0S2ZvkdY8Y^Biv@kxGIm52rPf@vw}i$H#`8&T0E@?Aa>~n#gD>BTq)Yj7%9>
zGMdYHR7SRpW-^lOQn7lRBjZc4o}Au1uNX7NNo_8hY$4-u87*a=Qp001h+#pCYbU=i
zn<V^%jG`s64+lmcb$o0k<4GAEWOS6#T1FcgZDq8Rk&;os5jh;^-vKGlbWa@Yo+$M|
zM$04d_9R=HT`0rM%qa0fa|QyEjHhHgBjZ^aon&;D(S?nY@$aOD{L3a2x@>0lVm@R@
z6V1=bw5FcuDo3uRiEqC;MdBA^yeMP2j1@Av%Xmq~C>f(=yey-K3`>SB;}sdN$`~L+
zmeEtjYcl%C=u18_O}gQAJ`PLoGV1?!nxqvHLz@d({bUdzL4O%H&t~-#_~9!gMTRQI
zMVIm2iv=15W>slY=8jMC3a!CrQjiw6W1Wd)?8tCs43Y7s3{Qs7{**CL#_SbRAmUKQ
z8bNtj#DfI$H)IT!ap`|El*E-*N+cL6V;IFamKecukHi_?k}+Jy?rqVi5x;SBHsg^T
zi?>n)#>f~e;{z5X<82x5$e1Eys*HDKjFa)6j7c)a%a|Zzq71IxnVYja2s3vC$nc?+
z()%(dv*vwr>Q9RWFGXK&v|&P;X)>nEm?>kHj2R;Ir<t{h(dZYG-A_XkG8)Z`&5<!z
z#wRkC$oNpkJQ)jREMhZd%$M=8j0G}&Io*JUea@cG;mIpn@@d&9gQj@61Ag;le6b8(
z9AFYT-*O@6Q%;uav1L>a)0=!IV=0SHPv)(Z8hug7xDFDZbGjjMW@Y|L8LP-y#;-C~
zvy)})mvKPGS{dtP?3A&KoMo)1u8^@+#s(Q1srfktC{gFLXyBKVmjKIUT<~uW<83mw
zi_{%dGCPxLU7Pc0@%EmHhkK=%x?7AL>G#Um!)l0Gb8ndr`vjhQ8B99JX(;0d8OLON
zCF5&$yNts!zTtd782^?+MNxSy^~QIFbTmNv^`ri`GcMz(jPI$e9?9h8BjSq*UR)^|
z7juqN%gOjj#t9jGWX8sI6DK*WZ>E0ch<8sAV9c<uamH^lPRY0?<GPH~GS0}jAmgHp
z-(~zE<D881qQYlo{3(FGQuO`CK;T$@Ug6u(JBv3o|DuSpKijANk#SkZ6+!&Bz}PDz
z;b+prR}1t0ZE#f}C$5x;`B%mbDtQIv6x@{YABR#wnt~DvN-9G0D_APBlfx%-^LbOA
z07Drix<^l7cK7C^7o^H7xJ5xl1?dWIRq#xDvVwva{IqIy6Kk7C6)rVLYB)7U`0@1Q
zn4#%$1(g+iM&=5j;5G%_NUz{_1$QXOQjo3SP6bsIJfPq~1yvQ?rJ%MFec0cvpqhdj
z3hq;IkAhgo?0Xed7r;}`C-^fsSjr=kg+8<>R#U<K3Ti3QO(G%>cTF(HgcNTW)ghCY
znqS`@y*=wHsHdQjf`=76q+rdlcmo9q1@)QnSp2|BsbfKIL(w4_3J9NGDV16!)m#<f
z8!LE3BsCRr6A@2+G@WcmeVU)C;FnpkC&jgqW(sl?6ewt`AgQ3af|d%NQ1GaN7E1Jb
zdW_w|)lp%WGPjuLs8)|F(ZySGyQ_6xo`QUVZzJMX3Z7KZTENYnNJN{hlHOaL&-k68
z=_!Hlv`T8HpuK{p6m(KhD3Bc$ND4X#_}9(_J;Y(}+l74_K6X~nMZvQQo@4bA8BcRS
z72H^yAMc*cg;^R@H^%3^B_>o?1<xz^U}F|<q>_>qcu_%j1)~&<R`8O7mlb#ld<8ue
zyrN)$0$IVU3VJH&t>AT0f!8?VZBxA{c#HENzB^K$bOzB!L0<*^6!hny+?{m(Xz;X`
zO9E0}&dDn#QxvEa2?dq{O@Xe!Q1JBZ*vMMR;w;6KjLFkh;818;fm%so%;Bkit0V&D
zdUpsEgbIczcvC@<f`JO&P%xN+S1~zAL4%7i23CNj6GQkxKdq*pHdMhd1tS!URPYvi
zY<5I5TmcW;Ja8eJ^;DkJnFRhj8E5Jk1!EP=P%u-$+X~)M@ScK63f@&PPN9(mOjL0G
zNPPE{Xhx4$qI<8cGc(xU{`=#l7RDIAuVAu*=?dr`f?<k+sS2iv$1|@ch<WyjJbq;n
z;1?H@W^rf~EKsme!E6O{6wG6XE10W*{z^U+F##5L&(o<PtD>nrU%|(M;Qu3w2^Nu9
z!4ffEi#b(aiiU}S@TUqG&l1^}DfnDLc@?*)Sgv4&f?wGX1uH4u3ic~FpkOuUmx65y
zwkuexV4Z?Z3N~}1DOk@he+3&wDfQ;0c8RNM1l*sKs|Eip3K&|Ch;0=##Ip`tl++Fd
zI~D9<S18y;MR7WQb5U%!g5&o$yzlQE-e#@5DD{n<##KI#YeAHj&ds^`a!|pS3cgqH
zgMzOVe9eib;IM*k6nrb-Lkf1^jJ{?WzF8#^J~<)9aOaFRM-&|83=%I{Vn}d|#VI(c
z;AaIV6#S^*C-P~Qy0l8VHl*N@mU$IdOH=;L`71k>wLeb$4<lp0u&S#iCY@4nTER61
z*C{^=ephf&!CwmgP;gekISPho@9s{O_lIeJQeCW;cq;qN>t(+>5a&0~1&ZJ5$j8Jb
z1(y~4t>7O8_l|0Hg{tPIsBT(X1}$W+8Yhif99z`0#8ts<<D%5RoYxA<s3@!Arh@+z
zlu}VzMa%V(`YNHKq>7KWW!?Qm-tOBI<5y&-sgb2|Ch-bw-8&K+pU8V@bc|Pl&iBqO
zr-B>b3u)+HMFkZNRb;5Bs3KiOH5K=$h^eTgqN<9!RK!(OR&kq(+f_gXw>25amO)t^
z$>AL;?o?5QrSmo2zko09w*;OBpYK-j^GErm2BtF*pl-ZZMRgSqsCZCC4HfsPxL-vr
z6*X1x%n8GVcVe?d_SypT*x7g;6^q-YT3#<?%p&TlpaH#yRMb~dPrwVT6fq4{{5UO^
z5EwodBUi7M8mV|#MROI8s%Wg@5f#nUXi>U}il!<pBqy>|oC%{o%oITJL2GYrezr*E
zYHE(4Pl}ji%-cdmu8KSr`6?b$@i<3;ozN_o7GrcJ=lq2KJKpw$ice`brde()6<@EG
z+NemWcv3}c(N}Y-MlJ)$aPVt|1uELASRwXDM*Wdn+Rr_=S}Ii0LB&oTyL5C^A*pyv
z!*C5xspzEQyow7dI;-fSVv35XDxT)Bsu-f;O%>0w@+uS+s*0{Eo>%dzik>REsdz!f
zODbMgG5&`*_rG3L(Or$sl+Ns%H;+1VX0levWDgaua9m0z*JS41Yp0H^j%L<tDtf8t
zr=q`#-YQ;K(MLsJLDp+p+tC%171l)ZK>CX33LnhMBl7_&WI_B*X5Jm$3+@vHnhITo
zr@~iZs4!JHDqIyC>t=5HIc~8sYP2y|?Chg`g%0H}MjIB|!<nj;7N`hS3?hN(!y*+7
z134*9N9u*uV9YRBq;B{q($8!K<Dn|Xs2Hna7`su$a1|p|j1puc*^o|^Ult|@lWU~9
z;-d6uk;KQhRlK8Of{KY0nAZ~Tig=ueXFF-cj90N~Q6Yi%R7_GanN7Pl@jhj{R)WC#
z=`ntg^IQ{w+$phXDyFO0u40FZ87gK{LR5UFVwQ>zRLocLF$Gw~92Fm`n8)chHH|?l
zN}H?V%96t88)Xnq++FS?6^x(vBl%fC4*$j$ahixaFI4gN%IvleB<N4-6BSF;$a4_M
z&M(U*KxacsRV-7nR>e9MpHum(Sfye$#gBmao>|FR*)%)WFU4g>X3TDr$C(>8&0a%w
z(KMShU#M8mR;$=7vTUG?CDS*m03uu5q-3rwDz>WF#wN7Mv)V;gbb3_iu;PzG2Bz**
zu}j5K>L?YvRqWveQSpt6y(;#pIH=-F75iDwi7~o`J;3?fK99gNLVmtdBLhKX!gEuh
zurv0pitkh$;tW;6?Lr0`J~}?672PV)!Z0b1sF-$Vg1`?dj;Z)f#VHlXRh&?9k~)g2
zL&Z;`_b!}>e|&GN0iqxRzo_)UlKPe7@;@XWKQ7(jG<AiFKbh;z_P?w6Lye3NoTXe*
zVCF}GWz7;y2%qDK%$HW3N?ug)7du2lGYywiTxO4HxJ|<q6@OEKYbd4R9~D<wsEQjZ
zu8As<)pZpQeH}HKChQpB<dpv;|34KaG>rPP>=mUIA9)X#;oFT_r8T5!xJARQ8p>!W
zQ8UR<PD5D@$jf7Rx@MAhmdk5+?Aa_{Qm&w(qK24;N*dBNoSL8i<?I-NpT#l$xQ6Q^
zQk69voE;;;(ixa^yM{Y7-m}1i8t&9kMMDh@_i32&L9D8VY8vj*aF>R=*`jf&o3%3@
zs-HRKLhd!;o8Vpz)isO}Hg9*;iS~mSYHFyZp|%z^@O}-vI{kS4%m<c5!&gT``57^0
zCtO!UJq?XDJfh(t4fQo-XlSINfrf;JhQz;>OJSp7{8Be_2ryLXoA<C_do)NRen5I8
zr95)hL_<>znHsjOkw#vPWofwiR3*nrJ9a%*LwK9b(U8>es)n8#nrnDegGBYKp@oKA
z4Xrh_VIOLETrkhq&{D$_8oZz4c^ZCPBmJ{R+AluWYe~%sw9@dThJH5+)d7W-*GiRF
zrcxRTG!$y+prNgXb{w^$RC^7devwU|p5HdgU_5_z{&+b>prZx`_5fkVoiudT&`rY&
z8jo_}X${Y6cuvCyQ}cP%@fi*D?@9lsANOdOel)wQhUYa9W+48FquF)WN-t{YuAzs9
zSG4H2g}*Z|X?U5E*(AGp>Bm?EW8w>*%wrPa*EICf;An6)^w#jYh5;I67F01ouZw*&
z^d+~ev5Nd$*U(?!$DGUM<LdN;qCwSQXfQP_Ey&e0&`7Dy!TK}O2E<gl+2F-)1;kq#
z>|&ZBsbP~+&&<pBH24|@X?R0Jpdr*SkYc|qn|pr@MH-5o*aoLseXuW1%wP>eGz?``
zueD%!Q*;^u8qcI{2Li)1(6;bnYo!qyMp6cJWa=2DVYG%{HT*`&)G$`VdJP*iyshCK
z4GT3a((tZ^aT=y;n4w|3h6x(p*D#qfa5g?s!+RPgaR}B*G`l);bBd<&8O*iP6b*ad
zNln!-jr`lCcDxiNO<5~_T`}?bT4|<+SsFgnFpp!WVYY@j8s@U2)=I@3_N<j?xOGrL
ziWr)B{Yb-n4yA?#qFukNjZ_Vj7}vjE$fA3HRk&EgCmL31Sgm0R#Yw|5_L89gjD0Hr
zI+>yoi5p!T(yHNd4J!n4rHF5?mFRkJ_q6;)!ZOJk4Qn|~9?AHE@>#v|It^Wy#9D}n
z`P8qu+tSPOaifM!R1q4!)Ua8@77e>K?9s551M24P(6E!UOv82#?t>Y`aF2uW%colH
z(ok|tj29C5$fUg*_K7S9*!lb82mUR)Ujsd`@Nyy>$hc0cystETt>JsB2o2w8_*TOa
zDxVv%aT8+SX*i_eu!cH=a(}CxxTj>I%f+n8?K0}#Y;bHr>L`^`$%xM}4aYe{HT=X<
zZZ<f<4nGrru3RGX<9rgFr0Qd#0?Aa;^Mib|l0*1ri@Z}BPE%XzsHEeJhTo|)H2g<t
z*Kn4aoT8=SPYvfZ{KcuH;k<^%Kg2I+xX3}NlB`si;$qH_7I|wcCKzAVP*gABzZ)C*
zV(B}lr|w!O4OkHShbmXYzZ$M;xJE6yPI|6Vf~lmxAqI%Z(Lcxe$hwu#QBp^F9k=Kx
zrK7ZtvN{%YNu=p0BY><sO7pStI*D-`5tq|(dyPy!-m0U54)>Q9={hRvk#1pJ3=qjc
zIIg3zjygIX&;cE{>9|`*HFD5#hmNW`?$U9mj=wI%tLW%ckV|uIG|@&@+@@jNJxD8d
z9(|9Fdv)BWqo$7PdUQy8`0;oR9dDn^{WDDUTo+}zUq>w+FPzM+tz)pj$WE%ZlbRu5
z5<IA*fsTZZx;pCVNd6j6)Js03qrQ&TKNS*QEhro6$k5SP$0Ir#>7Xrzhjl#38~QaH
zR@<6A?U!5v4FAoIH4&+V2lPy3>B!b$>acV)(~+a&X&uk76dlcV6zb?eVjV4Xv?4bh
zxjG)x@q~^%9gj21f>=u(ZTjNNb<(G2JDd?U*?6%MtDP_U_J^larCR2-CXJ4^I@;+-
z=_t^Vb}?S&i>Ud(i;Do&FDBaydSVDv6G<I)NG$HR+%7tv(s5;Dc4r;^a`HNfczLg!
z(hnpUU-~aL_r2KQVXdB>-0)c)FYD-`<2fB&bv&=5n~v@}USbb(Ox+UH?JrXA34b3f
z>(5k@NPhSoFG^?9D>`1~fa>V0qo<D7boA2ETVy2hBJnp@%w*f3+}A~gXU@;>r=!0P
zMTe@Ri=7(45nq)rvt#X489Oy?K#E9Bhpxk5ABuB3#55LdBwG^OIvgDz=$K8()ZtM=
zbiAX(*AeI#rsFLgp^hRQZ%{~d45Wx&X*h@-wIupD>G*{N8cAkz{InrD-qbNv)Gbvx
z`jp)hPcn=tnfb)t<ZvA$*?b)%I8)BXiJ8<nHCo3Qj_KaySRD@uYrXr#stfZD-Cg*u
zj&VAs=$NWwyp9Pv-q$f%$3z|P>6j!cL&|!UlXSJln*1pCG+75CX+xXwG#%4*%+N7Y
zAibaCf5sEx&+)lMX#{4m!-uA~s?m@K3FhdStK)MW%XNIHW1fyrbSz;m9rJZ8)Uim%
z>xbhXljhUd0#1s0$usMtA|}qw&s!8*EK-S#iay)$)8ablSSkQ_VA?-ZV#@^0u4+jJ
zlC99OQpYA8n{}+xv0BG^9UFA4(Xm#?Ivrn7@Ltb3^KA2uIeE0HTkV_Vk6|l@oqcnj
zGg7TbHzdJE9mJ4^47cdmCW_lC;yz-Ox9ixUa{)hEb{i{2e+s*G?9q{KB4%Q*j(s`?
z7?2I@*KvUA#lYPL4(j+)$5kEIbbQ6^I!@_0t>YUV-|9H7<AjdybR5!gRLA!^4wK2$
zv?HS2DKk^WAFhMHkmmgr`$5Ms9XAf8@v+w}iBh*Drg5Zn{G{U-9lz>0Df0fzD)EEo
zmc%k~_h+T3JQ@Bbc(U5$c}B<YIxbTC>G(s(SsmweoTt`pl=&yS@y+yC#9=3zIw$4=
zyL41+f6Zj0<<T%*Vk^=*TxOSYPF;-iz7KEu{7wGllmCdAGzUbX*LD0$MQxy>fg3t*
zQd|v`HSnK~5(Y{dC}l(fR@5|;fyhZsGfNvFoMzy(;BfMl6jz++xvZRl@&;}(z`w}i
z|4JfnHNcpGf0yY7Vg_zAa68$?la&m_4OA8|@8i=~9g#5b`I6{ogcn-xFrpu;I}KDZ
zQ2dj{bDP8vu4-W0C;9vZt7hOH1Fa3TF>tSe>INP$(8NFu1NRwt$UuDqH4WTv-~j^<
z8mJ|jQ`<lt(vONR?=Wngo+`0EQj%N~OK+A}*FZgk=WGjTQ0oqXZ(tx{fN&!Njo*v?
zIxoMWfegVaW4$!CL-S{v<vq+K15XNizSGIGsew!bj~RH}K$d}Q1I-OQYM>d5?wZOm
zkTlTmqg1o5DL&G|KSKurv@kGhY%JFR4g1q3Ff9g?rlo-=476eqWGm<78OS%F8>!N7
zHEj88bB1cYBV_U8rIYcLfdT_B7<kb@TLbM3bTZJ{Kzjp)1|$Pd8R%f3qk&ChV<pGN
zv^p8|b3x}9^ow!N_!#}ymmM4ZA9XSCw1MXgbT#lsnEs3r`O$cmY}ZQ!g7wmxKN>LC
z^Bng|iEajX(1;kCCp|GH)!o2L26`HJ&A`hBdKhqC%zo8?F`Hh_OCKJddd0x<&$E}r
zlkW!UKlo|A4D=R!`WblLKpz8r#bd`h8T7}>ymQYr_+@E|{QDcUpk9I%p0Hk045$XS
z7}!eUs88^|fypezfN5ZafsqC*12*e#U@+@oz%>w3j171Od@+uJh(B8|{kbffK|9t<
zp9?1!`!B}^8W?2Y=k?NcF}V3JM6ZA$28J3KX5iZ&<8M-E?@gYNn!iP{yc|jIa0A7}
zRW?L&HOjzf1MeCbXW)nZ@i7M8Ht-HHXLHAjm^9aqM;X@_<`FsGzyt&DQMOAYZ}!cb
zNHz6GoNyz-Z4&F>E%AM~1PudDF)-D@C+v1k76a2c-3-h#FvGx11G5dxp)84}k@*Ll
z0<TB9@rRlX=_G5ez@J+XZ7MOmv8(VS1M`i@z}F%J9~)R;;7%`XAv?1mmlnWiRB+k9
zg#^Ohg``<*fR97VBtJFqnSr$i))`nzq=A(NR<TbwxCT}j$UPG0>17tdD+wRHl%R_Q
z9u-(^V2w!PU3D5dBZdS|T+I2xz<SE0fz6_N8w_lu@C;0A;<w`U_8#Z6cny~KVT<cb
zc$<Ok2F@8cZ(xUkodyn5T^QJ9V7Gy<4SYk1HL#aD-@pMQvUs-n-?9TrCHEOfZIEbb
zKlkI<K?7eJ_=@voMDoQA60Ii6FC-XNUM&39z;_H*+944WVBp6|`OIjw>ZpP5DH{fU
z;m8^|X5dEyKXK-Y%AYX6b;37<FEHNY`~HDwIYJ(ieo~~ip;Dck`qjX16lMdz8#ra4
z>dysRKZ>0e0I%<np4sQ0jsIcbER~W0I`SaW7m`5FAn$IFE*Q9I;9n|m1AiH~L>dEE
z4O}*Gg#$q|(aad6^`D==p;@%r_WqdmjCmXA8l_Ya5GGF|Nqm#a-#{4?WlfYYQPM<d
z6KN(Eh!RVg;JP1)t(T%KXGX;c-25h9&O~_=x0txq#PN4yJ8Cv;BMuZ*F!4h7Xs4i}
z8M)C(J5@**Y;-qM$wb`55)+@AsB8izUNzCv#BC;SH<4!|-^3jz?ljTRM23kfCaRjK
zWumr;yG-0|qPmG1CaRgZ$HcuR?EiAOt^7reBxAc<LG#^(gzq!aYgl?s6Ze}@op~&i
zNwgeD^ISA1SjWTzChD<bEP7#V+Xm@D6LtAGKXvZe0>;cT{c^m%i3TPTCVmh-K;-oe
zQVWsV$i%}Yk|vs)Xl&vU6Imv**@TT!6BA8MWU~GnB|dV+i81psW@u(2N07DsA98Gs
z%tuYMF!4BfKHsqVl31>Z$4vbEd5Ye~iQ!2qZMoFa#1n#mc)GM>+{(n0CL|M2nP@GV
znKDrzfHo$ki6zRmCfb=OG||CCdk)Zu7{j#8)cAW6>uLW%5c9FvbSjaZOmsH!qKWP%
zx|n#{#B(OPvY<1$v`+ktiDykT`iQs8QVhed=R9ws8wZ*#`Yp*oYsSQrm`Oc8idy}W
ziI+|EFmY_$|IOTb$K$WCEnmg&?^n>}ufo?jQYJ>57-OQhiPufICOi{;O!PIOnb1x2
zBeHd}zli~&!aM4flg-FMvtmLuv1(?M@0Ln*xcqvV=!5g)d4+}`Gfi0RSmBb@HnHc^
zm?Q99dLr4r<x;PWl5Zj~@urEPCPEWMCf+bH*u+2+H~z~RB;tP-=D*!2<Jf;WZ@-iv
zJcO0G5#!^whcoy%%*0!)%!2$;CWf0BVPd3-bJt@$5Ot<b2JtM50FO~I{_}cltckZx
zdL6=4GjbOHj*0OmCYX5F#5m41yF~q`6SP90f0{qh#Cs;*H!)dMn;wuSnc)A_U?DkV
zOX3&x2s6#ZbkdlZZ(@dtnI>kNm?Lt{GBI~wi4RQh05gr&Dq4yMO<Sv&YvMx_^GvRv
zqy~tyvP_+_G3v&TSq&45Ip5h2v2qJJ;~vdh#F^N!9SdExQ6l9N^CI`t9e;_hTM+xq
z#8MM~oA}4XG83Ph_}aubCYGC6LH;JTn^?(VGO@|TW)rJTtTFM0iS_L2L(xylS`+Ko
zEu}m3K9%HarE#~!8;9cecxf9<Y&1c8wk((Ntm#d7Xm*Q<ttNOrmgi|_ma0UIJT!fW
ziJd0)n>b)%mx<jb_L-3nBl>dPKRkC2e*whf*Bhlr+7%E_hJ%EEkb|O^zBI8&tRWNs
zmB5_YD1B?<J5ECrznC~=;xP39#aN^sF>%zy_na)VW5ceO-FPsa8GD?LFFcZV+{6hJ
zCk5G$BK}Fl-`go33@EuU`o`do660S@{Kf&Lv{2J-l1`a8ZQ=~O=+oH7%ME5+Yw$Zq
zjm;O?iQxtOzJqgl2cI|Y&zrbl;x7}I*e(+_H%aw=jd$53J-SIc|7nVjQO15Bzii?P
z`*~_UF&ld%=xgt)iEGrQ7HV6#PVu8Ewouu^4HGv_l(A6O!hcl$7D`ztZQ;3_(QPS)
zl2)Weo1Q656Tq=k@!225lugkDFK3~=g^Cu^E!<+Extn&Yg$fo*c1v&^>%=09F~6Tm
z_W!vsW<_5wm8@vcM{bfn+$3>pvY=Z67H+dp&B8qvZntoUg;yTSyUW6z7TzyPt74(5
zD3ngjSsau0_blABNxEB*O*@t3<GmKDTc}~-K8yAxO1v^YcJWe!nqgW^3u~(;uWXX;
zw{U!uL}dDAiI_ST9<cC;g(emrWQlHW0}BZYbuHAh@Q?+1WUg;ThR6sorq^cLG;3%f
zgQeu>HMY=Am_BP{;bALUMdWYJ(mNA$-%Oy=XR)RhGT9Xt9<`8VA=^ST3pwoPLum~B
zg=8o;`;fGvKgyyNsXCjbHrHY;EaX~v%)%E{6SdCASH0QFx*UI;!*R1LZ$h#8c^2|n
zRUZv~w6gG|g-;wTanRaA8w<7#$41IRfrZ~JoU+i?LOTo7EKIl1-a?@Ti)0o$@bWJ^
z(88-0BnwYjc)`Mp7CKqz%yGBS)j}5wPg{7#!m})BXl~2R(#g_EnpNj6Dz{}>83K%-
zw{X{(ST`|7-8V-@jfm{d-m@^TV_pvtXZ#X<;=XLb*c{0W@wA%Q)52>O`dH{|p_hf;
zR`f0Xy5Q62oA{kYX~luaeir&$&@AZeE)KB;#eym*AHUMz;JJn?pNI;5XR|bavqX5y
zX34O?*tEb$TIM011P&$8!Y~VOS)f@G&%!_pgDm(K0t=x)7EuN!q?nquCE`io4a)Nx
zX^4e4Ijj{r3>M`QI8ixS{&IY%g+-?ej|=|8$-%-n3*#+}wCI%#V=cUGVf&KUXbW?i
z=Z&$@b71Ol^E}4i9n5{l!o-_p`4W6r@I0`n-P&1&BgKW32^J<%{z+irJqz!2j&v^r
z?Nv^;Fh$T$74g;0(w@Erw{MXWTOw<gGc3%c{8(6TVU~pt*sB(nTbRuXSXfMfu`t)d
zhZa7zuz;gOCKlFRjm@`kC@sk^v?sSjeZ>zs!VB3t3ynvn1|Ey^Q-r?{OuGJgYKetU
zEiARL%))1)8pPKZJLB}9GIV~7al?;d{Ep?MSiugtBe8~KA?DgD3#(ayrP&Q@HDv1h
zBXgO$mJ)b5w$4J+T8XM%3N~2SXyF?R-&)vYVY7wZ7WQyVEo^0fTG+w1h%+j@NwJOd
zQPi1r*vV4H#de7*)qEu56X9=huZ4XU4qEuq!hQ<}ESw&eRK#0=aqTDb`1qBDuLaqt
zX)$7mH@8TK=J0q44q5oo!cP_sTR39j7?p{IqZYom@B_ypMf)cWR(zJtzu=}Dvl#eT
z<y!0nRpQ67K6+|ceyUC9)JY3JTlmGouNGSV5g&Ll#vfY}EI1M;Js(;5(-zKHXk_DI
z8^2rl!$RCfWgBNL{Ar<tjgmIbSvYUu9}8D4T(EG_!et9rEKC>^`^&;5lD#j@68qO=
zNSCR7=>?L?p=|+Q5PT8v;><NFe+xIM>e+--@qek8sD3ZSc_50%rI?GrFLoN?anEE`
zy%aBHqqL1%ZB($4W}}RaayH7_AZ1xQ@=-PQP`pj^6psboV&loL<HRtDo~qu=&aG%i
z4x?i>-p<Zjd?l7Ha?uCS(F^fP0!atcuyLD>`)t&-al4H>Y}{?5nxMQ>#8qun5dhhq
zSRXC!-6bCDZ%bxZPuyc;K=nj*8}|x;Ft>nbdbu@haD$le{WfaZsB5F1joLQqyc?@y
z;{h9`mc_WoM{n{E3U0jgL7(#a{M17>>f6z3ZHA2oHWC7EC}J+&j@=?LY2~#XuIrYc
zB5|3wv5iM;JY}PkjV3ml+GuT~jg3qjS?nJhkK0_SM(q_@IX03uF3gHGV}Gv5`Xgx7
z+{U9eTG+_7acWpYBI!_Uy^~@RS3BFB&myKJi?)$(qm_-XnpbA?^F)RJn4aI|w`kLL
z=GjQQJ}G$SR*f`s%0^oo?Q9g-;E^+8!YQ%#HVSRLdoIo$<PJ7E+K>dF!W+>yNsTX~
zn1QLCZ7#FpbsK$bJZ<9{8$E2iV&hpG&)Im<Mt2)sZ9H$In~fLj=ub1*uYh+Mn0<km
ziBG+e;+vX}{6c%l#>=80eroc56MxWNwb4^xdf9kQ095rP-XQW;;k&@boD#_{{R;Zp
z=x0N*p$fA89AY-%mgLV@qWQug+xTvaM2u!bw_(^YZA=Z*T31Ulo)o4rrZZVmT5LtN
zB=N2d&qh@TcRBEF1U3%XIA|lZQDkGTjSp=Mv@yuWL>uqfc*DkE8>4NEu`$HPn>I$+
z7-?gujbS$4vN7Do>Pe}rM^pcaQ{@EKOv$IOC>DC?LM(VCG0Fyk%Uh%mXEYg0v9~eK
z#(0j=UCDRY92+(6N><(~@p0U>7R*)UN_>K7@5<%bL=rQ}#``v=+n8ZvGRIWJQw7b_
zt?~vHrP2B~foTH6P0yJ&X4&|_#%voIcbDT%pE4rGnBk*KF=FO$C@Uq#bSjv~EH=Kd
zvEIgf&Q=@CZLF~QCxV4GKDF_gjYT#V+xW!B62ZT9D(|5OGkEs0{$#1%R*CS~#nMt6
z%WQnkmX3+hq!{bWuyk5J$>t4DuB4FISYu-?`-<~xvQ*({8u4SN7VaL^aGhX#%ipn#
zxhXz2IMr%{jg2;T+Sp}dla0+bw%OQjV~dS%+_XcNVp}N~vr<&Kd0QoJzRwKPci6CI
z$A~0`Dwn12wz1d7J{x;Dj<-Z-54vrY=tXzjsrY^y_Eu?0yMi%Wr7t<HY@FxBwDC3h
z+xXeWFE+lVXxaF|#xYU7LpF}sIBMhCh}dBp^R`BB$?t76%+9_d+=*@%nB#)@gpD5s
zFyiglPj+NO=_IF8kbZf27GY*&{Hq{1W#hDs-vmrNmtxLP`P=xDs@}#Q0)LjH^Jm<s
zm6=x~3Jo@;iZO%<T(t2QRkVXN2bXMIw(%e5%iO#xHvVR9ZCn>jUR)IW$Hr9wR~auc
zEE}2ouZ<g=(Tid?IjNITrxEEVQ@u_#s8~0ngoBa}mM+ULC1Rd}II&ftlkqYR$~vg*
z01nDIDDNQMLCnD|4sLZ&!9hg_*A^B2y;T~wFm>S0Wbev}j!Oz(=$CW*(A@a8sNX6%
zh&$11qS1uB#5Sp8<-~0c+J6wc!@->nZs!N>2hjw7T1$OZB3Z?Wv;k8YKe<i1+d(x4
zuQ+(s!95P{b?~@@mJX^rsNvud2TdH@=b)y8goB0-?srhjL0t#+9MpDD$H4;*9%Sh+
zq<ZeiYIQAo<?VW|c`=Z2BWGt(+CvWNJ80m5cdvMEfk@IY{Pu4IWH@-Zxbh-?=JRMk
z88`mlV^as24w^a0aggOiuM&oAC)yC?`+_iEB1s3$1%0lAM;(lx9%~^Ue`_D9O@>#u
zNyI<)Kjae*@*H$=@U(+`2dx~mb<obilMafuNo^dY*l7+XZj%Nah%|YDgCqBso6xpk
z;Wmje?<ur*Q0Sne1IYm`U3YMzt)g!}i!tfzZPHUrD#-2Rpfg$ZN|E5qHYshpH1qL1
z`X7JB!Ltrt5|tTTJMo-@ZVp~>(AB~74vtUDA(DaR-nU(P(Lr|+nr)B9nt@3#JLn;@
zj~4s0Jx0WOI(W^&7zbk=^m5SKfk%bRx;g0MKzCp`=<A@L1I2;rU{{~Q{tgB>ke$d<
zeX)u4nOzD}T?#sEm-<hQ{n4#*m$@;`q0z+xUJW)KSPmQ~I_}OoFt(lO+&kf-&M5|0
z)Q9KZ0|%jlVGiD6XF3?@V6cNB4*q*KHAuv72+DSoC1RNUwe8ZI4u*>GhG--4OdU=!
zYm*%5V3YtxIG7<)iKNq|(E`crYqm>oJ9x*z6bDlsyz5|`6Wv~X-@*I&8RI#K4&LKH
z98R0yp#SW`ueVEoWTo@<$~%LT91MRi)%VN7$s)_0r{l~x&B1gB^H@oiD60B_gW2o{
z2eTZ^pOG?7H=uo$9b-~+*c%Q?DfrL<KUryp<+d{oJ`}FIE^U|QJNVeaBEg|@e=KmY
zP{6D+nJ`Y@AuawN=7Am3rw%@I@Ry5AE|xl2=HM9@&${^B!E%=3(jgR9I9Tc6sDtkv
zta7m0!8Qlm9jtM%*1;yhZ5;(^WQ^yW*R$dOmi>ZtI~mFF1_vAYdz;GOURd)T(x|gp
zn;mQsS)SPuiPlyJTF~m_Zwhxf*y-SagM*Y4j(f}09tV3J?54B}ui~_e#Z%e)SX(=_
zU&O`^seO+WkzYFa%E7k|z7w3kcJPf8EgNo8qeb|?YG!i5@DOKf>BkOpPO&+|QiO?|
zxI<zf@PmV64$eCGlXJnr2?swr_(gF0(ZNaT#_d^cYBl`HiIy73^I%bFwJ7aZ2ftAx
zjcoWk^~`<cPB}R3;Ec$%SNLSlsFvVC(1kmsKLqmDkqxWoW}kC#-oaHWSO*szT%^u-
zaG5P~K$Xs`AEyqb@eT-;`4tC$JD?lQe?<J#$lRuj^O>|=blr6a|5CQu*vz~e4sMDf
z2vZfe?pgR)Rs@uAQPRcm)rEwA+945{=Aw*?hg~#wQPxE{7k9g;=AyidTU^}c;&vCe
zx~Slyl8d;DiZ0S!#9S1PXqXnXDz>3YfT7<XS=>xvYGoH7&8>;^Gn<g?+79Us7k9e2
z%SDIo&0BWI-lOp<E~>iGEdKt(!rOOB89SvP21Px2kBfU<JmBI%7u8+Va8c96{ep7d
zhq3!y-YdzO)~|r)uWGrd?V^qgp4TF#^-hUM0%X#2r&QNPJr@ZV4P89sqP~j;A}>?F
z?3F{x&LunWxEJFLkxJ%`-00jFQ;Umu#6=SqtzEQn(bPqzi(D6vxyW*n?Q&TRkGkNg
z)MhSnTqIra7%JTZc{`;MzvsTQQ))J%6%V7fU=0_>NXB!m#6Rw$rAz-=$QOB;h4pzt
zw2oN_v~sbD4yM_MVprmo2ARaCTokbDTy%8N)<ruP+Xkk$kNP<>y+s?j`{(5sx|r*y
zvCsdCB_$?ROLTJ4nSGd>{gilQL0w$@<+Xa+#gTo{|HVt?l6<VtrTKF%y1JM{4lbT|
z(apsm7jL+D!NrR%R2Q0y?k-o)&_`7DWfwhMyyl{pi&tE{>Vme-d%ED+x#J(E$}fl%
zORG<$|HQT5-Y#BeA5M)`{^bAO9l3pT`nu@nqQ8p)E@T&qV9Si|=Y@2kOVjA&z|i{7
zEZv16QbQM}%Tt2zT=*_*7Y^&J6}T>*+gM1TLH~kIzZ71%Q21wwC_6C$2fcp*0TL7m
zCd3aE!1e~2gIx@9G2X=l7jL>4>SCmeQ7(qLc*{lI8BIoTrm!FEG_JSHquZ-u8HX_r
z#7Dar<Kk@>@3<K2g0}#8FW|=cNPs7t$$8fW;nuavjdL-7r<7dtf0qR&x_HmUWEWFh
z-i(V+a-;qC_c@`a#rVh&|2aO@#WWW)T+DQ_VW%|R1rLKA-YGGV`79S7xR}kkxl5A&
zXKnAVozi`~qSOyv%yY5d#R0aFMZ5UI#d;SXyI4RS?qa!%g)SDk_|(N`E*87^gk=S3
zOE}{F3%5+mVN5=M*GvTe<}7uwjBf$qJ0KLkF!<xSZe!L87b{(?aj}-eDlF%$a<Q5-
zWkjm*kqr84s4yeH!~My-dte>)#*F-ZOC$US7aJ+JF1Ay`ITKxMaj}*9WLWz2+Y<cU
zqYVxI15Oy4{>lD0F*{uBWdFF>%bD`OvD?kLwoB@=OFGgklCgaPPpi4?7WT%QsnkIi
zU%L3o#Yq=mx%ir*PW|BW7X#nAIOO86iyvOb;Y&FT-|_KM&R@b%;pmz9bI!&qk4t?|
z0vA7WOfTddb8%b%CqzNSsG^?<&?qZY3H<Eh7Z-oHIP2n97r(hU!|CASl*q!fAE#Z=
zWGidSQ09(gi&xR+Rg`%%+F$t7#W@!jToB;ns9n-|m)3C$D))(6$8b^LR}4s9c5%hU
zEDs-e_}j%l>}?NiJY02gjjGZ^T@Tk;5H+@k+dbTHag##g;Z_g-xhUbGw1+e=D&^8A
zv63E2d6=_HVrQN>mow;<R2dItJ(TlM-oqx*#-qEWA7><&>nTdw`CU@Q-BJY)6+Kk;
z01xRNVje1ah<hN}jX|lpyCZr6EMjE&WbSV1_Gz*B#dt;GtnChu#}9C?hw2`xcsP51
zxw|~vE$UO%L#N%5^i~s(_lQ^#m=U|BS-Yhg9`5sSzlT~Psnf(*O%E@;kWxAoFlMOj
zp^k?KJY4A5ycqLqi#!4qj~3SR@Q{ZV9&$a@_t3yY6Aw*2Bs?_qkl~?`hh}FB`&^1m
zE=r>-x`#b97NtDmft$`FHy84Ug>_rJI-maUGCgE@$nlW$kS)lV)XW1F4%bFV&wV#;
za5VSutdx4x10S7RB3*Q~PVzC2?orUni)=2@5LrtPc^>~s)1L6~YqLlgXp}5p@Z@40
zt&=^;v7R0yG3_#?JQR3PJ!l@<dT8h2We+_(wD(ZRvOGNJp@WBx>`4!u1ry1`Qyxas
zNuO{~_*cc`n%z<t4^Mj-SF_wR9-KBQIxb|8+h!jSz1`Kr^Xym;FM4?IAPofPCq9XF
z^KdYgir_{0M0WS^lHkv4whTnR;^9>fy*<1x@I5`e=AoB>2W^h5nK5qKB!h7u4}CrK
zXSaydkH3oELH#_O5v3EBJt!U+6XumAhBwxvbPtAyksd~QFg;iviaZSTFv3r>J-8k`
zwnb!l;9?Fp4w%>X5O@eF(t9GgV&J9~t<zjQoioV88y<#w80KNHhan!`^swb(&efU?
zX9)MKuWrra<9LC2%foOM<e|3U^UVDXxpXsUbZS?*<Y*6LIFugV_b}GO+aAVynBd_Z
z5AU*vJ=``b#ocgjWzy;t0WPL7o+$9|QJDJ`6caRUks{4xQU7TkrhAy;VXAnXE9~_p
z_ee85%w!Mjkr;Q`BNgM7J<@DWVGqA~IOSokhYvmM@vzs!JZAT>+QS+T^F4g*;ZqNv
zd060Kp@&5t77PAa-^ZuZsX_a^PdqH~B7m4)!`iXC2s2*lVVQ>&9(}c==ehXj9+tDo
zO*2ntMjtH%81on*W1b;gC3qGmt@W_M!$uG5D8qZCFFdR#6VZoX?vc*!kv4hQ>|wiy
z9qfFOajS=I9v(cA+vh^=o?nxUdEVgD-;z5$eEC-HE>@3%cRH6alNguTE7ja9?ennT
z!%+|4dpJNr6|4?3i-)f~eCy#m4_|xuhRlTxG*<PepE4PW0pbsNnDJz3+L|jy9^s?d
zL?*!x9*%oBA$T5RPhO7CUR3y_ho3zB%$Z9?F*x@mhwOS;=cjn5zJ-tPm42lt{uF1d
zU5~a|i9Aj5_E5p6<4gSR;SUctsgS7vsWd!Xp)&Vy&ck^RmpojiDxgzf4;MXtr-6Qi
zzke-qC`>=X41235DheC33$H{I=N~G6>U<CXdbq}!E)GTb-$s^E2bb;e-J$r<F|n7|
zr*4S)KfhNh;iIIFvOdcBDCMKHk1{^C4sXSkUVcNS`FKjWW9~LRMSvI<QQpTbel)%e
zHzr1yTYVfI72VNG_Yw0^)5rZjD*1@}xZ6iHAC-N;$DKZ^__)mnEnnU4;|?DqN+bz0
zaJ!ZVatQ316|3swE<r=9zs0E^+U@S~aj%d2d}Q(#d467X9}G1_HAW>eEBB9n_KCUu
zQmmFAU7LNt$Abc>?PKzUSRFyhU&y+wMzh>{J|6PHFJ$_Xs4sv9K3<xeq8ADB;h!4e
z3?GerJR9P<5D)uk>_ZP=1bD<p6CYpu_{K+5*2l-2K8E_p@{#SMJNfu%<|D^PTOaLw
zBz-jZ@dQip@u-g$J|6ec(#MuR;<+Mz%*VjJQsWib#Y_5pynHBa)X6w6e&%!Y*GC&4
zDIZUYCbagUc1xWUw-I}EOR%=Y5GWAwj9;SfwDvv<eJneb+to)0A02&k@$s||iKFSG
zlaJ1V)xbWfslVkuRyEPBU8+vi1OqQxKEo#aAp9I_)hEJN8rh0?vL*1mk8VEAeSj|5
zUi9(Hn<=AY@>rid#w2)|b?{;NuzkGZ<5eI1eDwFx)5mK*dim(>ga7`d-0!y<{#opG
zAANlMIWE@M#}^+K^7ns{_}Am`4cd}Dz=zB}_hE?IDr~q9%?E!3NK7U#Y|1X#DyrCq
zg=wbXK$s!rwQ_v8tiO*zK0F`3kI)B=(la$+HN<I$gxFvz68IsnCHVM;kHKu+3#lPK
z*363$sPKM@06#4V5A*SskNG}6_A#8IOS$qf#m7h=qbO``b0_#1?PH9OcYM6-W2~t5
z`0C}}_Az65v~oyer`!e|C-8h6FM#5tJ2qua^zojLNj}~e+!&K)>fY#8Mdnj|O!G0@
z#~dHi$<W6vA0G&snIfLlBr0NRn>?QMqxJ7WMd>s-&dYjp{pc#+JRctlfHY4pk9dAW
zkr2QF_JEHKJ~sMT<YTdqRX$ex_{7H&N|BGxIgfmN#(w)Owp5fw|BRO(%3S|n&gQ++
zv4=Cq{9U-*#|j@SDQpjB9vmmF@0$2+uk=QpOuBkp<72Il^&B7{^^Rt*^HJhPS;E6_
zP4JO5Vf^8=^nZ%dHu>1>V~>x$oEOwWK6d!nDN5WX;_d95k-0VLX=P+C*EhHTvWxQI
z<M4tQk+g|H;}|5^=VQN*gFe2bc6~23(M>zxBez)|gVrHBr1}*#-u~pEd9k$J(Xzm|
zKE9*M3Q#M+A#(F^!^ce@N2t~~8GT&w@x6~9e4O%e+Q%^;$9??d<D`!hK7J(gPh<7x
z#%}JFXtJ{W%>1RRQ$KTd`1sYwZ|un}Q8O7XluZ)mQuDOlIlMY|hSl?N-p2(FjgPaO
z3qH;XdJ>S;w>u&mn9TTCzZ~YhNPRLn_Lq-KKA2R@kbFvPjrjjfUGzxCRUg-U{3BrA
zts|ZWf_P<&;ku81ITr0x_w0)V;6DyTfXV?7pk#nj0d5I!Yk<-L(gKtXP%c23AQHmw
zl6hagifo?j<%gMYf=Qr!fTZA4A;8V6Iq3mn0m_evRSa<aYP5L%`u)jD0pbBV?UVQh
zuire6_#ev^+!o;W0M!EA6X1>jcLt~$;I05w0<375LGO5b{)^G&1n*kj9dK_bmk#^r
zje=obM#jAXss~_d%^-5LT_eDKLFB`t-NvlhquUSIC*>T^r5_x+_NyJBPJlK6QUM+a
z@L+(Z0Wt&B4NxyYMu0{E9tu!DKq5fH0P^J6*&5~cy&r23V1BbaUR{4`OpIpb7`Rij
z?yLC2)cgUO1faR{#sP{RP4(WK_3ykGA9<*9g_V{SAUi;AfX4zf3y{P93DBH9EMA(;
znm6oxDSAOaD#~ghI+nidiRnqpKLJ_>Xcgee08fadya4$E7`0EjI3!i`TrR`>A*nJK
z;_@u6phn|DJTV0U+6L$z;H3cV0<;g%CEyMe3IlWqAO(0z5O);u%89X_y`#~2^~KcE
ziLp)rI+Jol!(wEEW65U%JR9Ko0NnySC$f;ZYk+yz3va2HVBq5m9KLgL!Y>K}0`)5;
zNboWTB|z^0uLpP~z^egX69kP%#(D-gqNMuFjq%C=IWY9%aEryyJ^}g$7{G23#Qg&F
z7Xa-|wVhcwN645GVEXTIHQ*v}<bjUa=^?a~aJ_ouzJw|0HwM@gzzSdoa00jirZHCl
zFMuClbbv7df&gKFp#g?*1Op5V@J4{aL39g#P=LR$#I7!jr9YUcekJGR-H9QB?VAB+
zS5I{A+?+RF<tsUF1sG2HfIj|mrk&3^`Wi+A7|FI|M(z4%REkK(hhD?j0B;AF7~s7C
z?*w?4+zuwk2jCPK7vQ^bF@DDqW;`JPW6lvC3Yrw){Q#2#ObH@y@41s=3-2q(D``^$
z{QF9(`J@<;48+U`Ff+gs<_$0_zy|?7<S-R?orvc!{`>!S&*xIP-I+-6U^&G*z`_8F
z1kJ|*76^cqr$uhY%eqGmSuBvBaAMAqz7RujWKQa{080a`3b2}!P7o|-!vlOSU|OSM
z#=mDoC9V|6+2S90O@Orl)&=;2UA;ffKmx|=18fK|WPkjM!0h^{km2M<g_{Fxp)v_k
zDa6(Q+XDO&;MV}#1MFbGQAG#X8DLj{uL67>V0VB$0rmyhA7HPTZX-pjzmFvw94kB!
z(7Zop97_9ARPu)kQ5!Q(M|b>dic`ej2>f0v?OUooFRk^t9O4gCT&c$boCt6<!1n=u
z2yjeLt`QBSIZE<j+;>52?9%KX1N;==q)<&%K0Ad$n1b)(KL?TDQc^PhEx@S&{{<)!
z;&gyB0WJr)65#iMPRDRQz=Z&310LhYIjWJ9nPZP<J}$g=Mjy9@k%qq*;I9C0O^IEi
zUOk?9@p$yZQl~?<D{PMa9pIk;*C{8Wo>v20698$>6hto(S1`FjbuEhc{bKYH#lW&k
zhA0)HY>09pN{4u_WgbIX2&%Z+H_Mj!ABK<RL);RgVu%H=6fiLRtsyFekvihC##?fP
zAwE6C9i38#_et>(l|wWOkrRTZmTwDDC&U9GZYM#A>LF@`xHCkR5O;;RJH&GOtO@bT
z)EFIA^YkFOF;ok2Pl$U%tT>uY0|nd%EXLFP?|mU^hPXdOtq^oeJ#SH*WDMW@)u48W
zRp%O(=$0bvavL#3-4KoVF(0B{h=)QXLNp9fKjdpYegCO=gAhCzf3tj&bzsaQ{@f>#
zCWDn1%QcNfGn<CU4Dm>aCgQRDeyQgENFy<1g~%4%lK;bW+Ak$TG!M}(MEekrhG-Gu
z$q=nWa0%eC5G_MI5u(rGxZewQFFejluFZdazmyjuUxZeo6z6K;q@j@@4H2B%gh+*G
z8%9^cdG-5ZkoI4n!h(=K-J&u5CrIo1S#12)tili-Lr5VS{MDdCh)YM(hKNHZPlf0b
z;^`2bLUazJT~y}cnXxhh3h2SS`25&2A?U<>_I{~ri04C0FT#u>bPMr9h>Icq3h`oy
z?yOsg`5|5k@p6bEA>ItpgToiX4&j7&HAK%4atI~FYax1t=o_LR<toJMY;}mA&&DTo
zEZ8F&byCEHca4kn7p)!;qByD8b*UOc3t@yXLy$nHSpE=w;r#Q{|4FhH;%{+p=&E4l
zhM)roKSUt7d2B_=O1xkghTsS4zz~B%)J|j;iBx{jzCj5r%pzv6z*IUQ@sa$8h8V`O
zLQD$rR*2ytMu!*^Vnm3MAx3c&Hb-QPpSTjE@r{lePblS%4e@q}aTKZ$?}T_a#N-jN
z4j-lJ9gxm*dF}Vy^@SNL3-TI_iA@MGQIz=j0jc8B+-?V?_emULR)`NmObL0+3DZN&
zV5fCY&~M|kFtW+>#Y>5OlNvHEaU(`xrbs0)JH(t2ABK^c1sYrEwj}n(tk_)2d0LB8
z!y*xyC(0t_$DG9>z76qRh=m~*h1eWoONhm65$8^b)ghLI_%y__5TA2?iHzj1l!JRf
zigk^|X8Js7IVYw_S{Y*OfoLww5ix<*D|6O_Sj!F%u_45|5MOZ6&&PXTi5F-8@7~OH
z2c(T5jvtUV2_|ItkH}6l*IPqu3$dGG5Mq0X9U*px*u@I>iWE+{ui~eFFWj>so$%xz
zGrxT&wl~DS5C=ni$&oq~-yh-td++&z!@m|@PzvrdQ}Kh+S0TQpeqi?s)BQPSiU9Eh
zNO>s4;Sj%Z7Kb<z;%JCttXqih*&(+jexSfqNxmnRNBCLjbV!{Dd0`p9g!nbYPhqr)
zaFPua4JmOxi-8uxR}4+jC)&3oW4GRwAi<wi6Q?-=|7mbG#GfIphvD}Se~2uxD-F8R
zIurN)7N^cpNsf>41Nedf&WGUfQ97Y6MqUbWnTn+dj~3wy#hzNU2vv&kPl&4_$`{cT
z46cQ^9->4MN*3YY5H~{Hq>2y)HN6pQ`*^C_H*p5Se+Um3JcwSZ2xW>;wg{z*kXD53
zTa$CECYBD4#D?K<3+0NUGwMY0@zx?#C_=~HIhBi0u?Xo!s8ob_5s!zJs4*rME5f>X
zME2V4QCwkEjE~JW{6D6?15ApdixvUNEXx4|#Dpj)G`k?n%(A;Mq*>Sqwt#?vj3R=F
zn8nG{xtAOiP|V~URZvh-6qKBE6c7v~CA~A3f8KlFSKs+g-MW=--MU@f6S^t_s1ZQT
z02*&m5A7*iD}bp_r?C-c`MGeN0O|&i7C?FccLz`}fQJHjIDmTsxHo|M0X!H;{HprC
z0PYXq0S=~O(;Q#^{)@_O!lDKNblRfwXV;YX+oJyWX_tlpG-7uFGzs95K;j>Y9u43-
zGoPcPCe^4zp%Oq-X`DaJW`k^j*ernN0kjOj!_*@Eu>e{GkP*PGZK+I+17-P7CKZB-
ze?0KgTmiJ=IOinJ2L91ynMkq%$POgj^~%&V;<K)=O#r?C1_dxUfVKg&qYVR4185&W
zhX4u#C<>rs0R8|v2ap#)ZU7(G%<dGx%i*egPsFgP*~I88x%mMUa5{W_%x|e{>Nn-<
zs;RcEW5?nEx&+Xbt8>W5yN_V)#6L6qA+HG8XQn(6K(_#%W-t$6^XGgW44w?2X8=6{
zm|UUjtABWj&wiHDD}desJS8Kigqj@u>?iUQr2+H_pnm`Z0@!{%5rO*#&@X`3x2WT`
zsQjRc5@vfZ&)oE9>Og6s{8IHf+BSet0O0_J1n@!tuLkg107C<Kky8s`WB|hg7#`ps
z+GB*&nzu#eCr#fAk{{TTh%K)KK+Z2RjS3)tSw8vgKfZW9fHwkoCxFobycxh-0lZBw
z+Nx6L@|FZv-<qgiuvL9m<beQ!RDM3c*DRH4Y_K1dpU;m35DmZ%zzHB0Ks*2=05gD5
zTT-<EbV+O{KCDZv9};2TlA-clc>Gpm$|ApaP8T<Tk^tTd;Qau`1hC=$rq8@lcB+uE
zg5v@hFJyus6($BSDaj`XFeS-fXqbLk{#ba=-&xb7qv>>G`Q!KCR+Z$#0A_NbgQyb3
zN20(X{Y8ff;FAD84dAl?eh%Q506u4F0N(`gZ2+?Zm>s|}(Vrvezpwm)0OlrJm?va@
z0Dp_yER^gb!Nr101eXf3$A<FJ!14fA1h7(ss{;5cS-LuaFO!_{?Q7v{1lK0zwMP}K
zOY)xrSfAwI1@OJ_ACi&{0sJWZufB<gIZPWRJ7uf7i7qYtcmTf&*&V>10Dcor%`E|J
z4PcvOw+FC82tUWa-Of(Q?h0UuxXND19ulO&z5w<o`2isZ1+DAl4huPwEIk^)G2w5@
z1OF2NoDATUNX`kKPHO%x<c#21?s|zB?CTGaoEN+hz@I`WzkGk<>hN~}{{(O`fJ<DU
zIVpDrQ7(wf0bF7H7tON4M8Nr%mw*7SiR2EETo-;L+1gFUG2x}8lvV1j;h$|L>N1rH
z;^@}I?(UG0xY1xLA4J7uX@wv*Z&go<p(+LOn3ISPRi$)r5YGjX5=1r0rUsD~M0ya_
zgFp~9f~XlpQz@zy#9cxDW%vJjtS#ieAnGI~b%oq5STBfsgxs4fWmvmE$sZ6>KZpl~
zG!T3!SsI*_h{+8l+bD=fggh$PSg?tp5`?c*HENE(l#(M~hG`b$OM;LeL;>d*M2jHW
z2hl;4GX%4OXeorXJVAJqJTr(^!keE?+)898<vBuH2hm1|FDY*uM7t!f5vkfS$@7Hx
z1#^Swl$3WC;>x4!JGLbvTVW7t5KjbAM63RtQY;Ex1iK18E=WzjC%sz`-Gg{GDdDfZ
zDDM%(lSxU>Am1>RSeM>GoR{O)Q$akPEPaMHlpi4U5lLUceuDjzIs=3Z3}R4Ha^!N#
z^Fa&=LJz_S;)NiF1`!B?zl?q{h+#pz8pLZs1n2vQ2k~+cBZGJ;h!G;$yE?0T-=-HI
z^zgr5UJ1&7+yxW=1H-pn^T<76S(n#?cq53ngLo$h_oDJ<5O2{%zso$?!ozINazA;f
zar*o;&*&iDrJrn5b7uO9e2G{vh)@vWAR<A;f`|ukzmopc2maVsU82Fn!H<86tH~^?
z-zZmB_q{XSpS4XjgP3|HYg`cHgRp|IgK*e&5M$W>YX5(|o0bH@e*n;yXOeGQmCwK3
z7#jpJke$Y}+=L(|(_t<s0~<D-7{sI?NIaLbh*Ly9Rgel7>ouJg#PlHMxR~o=Mi3ta
zaWalmaeNrW%pkswVoeku1@UnZvm=-j!6!j{$_67C6v1afd>+K=Aim@jf|wOVBQ<Ra
zHQ8Vg3xg<pB5li{PIH5pM@b9szk@nafn>g97YNQ#9$!SujLc%uVlG^_GI>uHlP?Wo
zSrE&ESRu`>lGZ3+$sWxzBug55&z)=i6$cr_e?eReVoeZh=~QCRZv?jnu`P&ig|8D_
zFZf*$-v{}vwuB%4BDg`2*&l`cB)Bn%pObRN!%a!PIf!4A{5K(6g18-%w<qPth3p7o
zXHv2&h}}W#k?dZ<LxTH)*e~ROAjfb}2>(*%a8h!FF*C`J(G}$|Pt6k|JQ>6(A*Yi%
zzY94dcs7W0N%<diB-z>*MDnNLU&+$Hh5Qr5MIo0M{DZiXEWIj(cKBCFcvIqm+w~xB
z1kpN-HeuWh;uber2(O1wDug>iP(o-LLg^67gc7E%A3|9nHA1Kv!kr<MlWcjxs)7|l
zs3?T`l|rbT<W)k6*8ow-lp?}vf~g@?PwGGj7owJsdj;=Gmev+hN3gEo-67Nya!&|+
z+`%7uv+?^xLUO;52STXYEfKmO455KY9uj;c#DDWkOp2*t2#u0F_gc9}g*Q%0nuM^-
zNZ2YZg!B;dLnsKLSqRNVAuEK(lA0bNEkejhN?L~g-?iHtLS|ClN(k=`vO~xb-kO?1
z+JxW>p=}85LTI1V|AW8(l`}(!q~tR*F(iKoxk*W<5IPIb6WmZgaU>`Vp-8gNg-{$q
z7vX(F=qiK?y@fm;f*QgT!n=j=WU{n-2tAVg_D8fmCEH7o|3C0lvh?W?o=Ng&L+B&C
z!mo+TYrmwtzmNff149@jWN@-{=(TdshcHC4FN84S|H_5D7{aimWOxWKC3*RssV^t_
zNFlF;FiOa)f^>L};f)a94B<)$S3`I!gttTZGK8-}cqfF>A$%0V$D;gh2xCGRD?AWF
zFoaMD;SeGs(L;y|(F9|HaY24kz+P^9nh}CYhZMOZ$Rb+^Z-L3(5K1J=x5_d*E`;%t
zof5)?r2a%Yn|K`+CW&yeAiJ0v!h6Es4`I5HX@cAWRA!nX*$+baPzWV6xnaLeJS+Z0
zBy+eKL-;gV`k9c=Z)XK(3C<4TDf!oqd6Hcc!crmgLs%eWp<t?;vM7Yb!fzi$+0n8P
zR*Qsuc?c_nuS`l-386J^&++RJ)`W04gd-wf8^UHG--PgO2<t*vFWH|$_)f_8f^0b^
zPX0p(8$|M>;O$S=Sh_KUpGESE;3h%JsqkwEze#qB;LZ@XCQG-4usz9la9_w>z^)K>
zhp;Cp-yg!>B;Oap1zCNzd?18_B0rQYeIT#n(GZS>@MltTT*w*06M`p0I3?t?Alvy}
z$n9hQ*$~bp<$r{5KFKf8T**&e{}SQfA^ejpy%@r!B)=?#OY?6C|Ap{K7>|Z=ErjbK
zR0*SM7&k(=8AAE+|Ki~-2K*#16~-OHOD82osgIWxey3o$r2MwoD}+%oDXA1jW#O#C
zNu`8QO|tigks3yI;rE0AA+-gmRwIm>!fPcZcL|yDcG)^Y>I&X1SWmEda;MxY+4}@}
zxp_cH{V*OB(m=3L7!L_yUk?ju$ic{`v6K|cuSFV%|96kmBn%~treUOok(I2K9!AR~
zZziO97>@~QA($c66JLCie=PKb;Z5pi3TY*HJ6vRkk&`T?#1}@}FgAwqa~SQyXdgx_
zjCdFw!sr;r@GxEq!yiU&82zPIC&4EKJ15)83nM>_0?8H%b_t_MNU<P2mKT(+!a3{5
z!%&4cl~+%83!{4&J;HcWgwF`}6nt8+mtb$fr^4vDI1yvV?nyk?dRBye1p5k7*iQ(9
z<bW^+3Lg~4P$7c_pA)3!^I;50@)yGYyYjx6lne`F_lpTH9U&4vU3o*u%VCTZ@=8*3
zl#o{iUkl@PA-rI*?wi8j3ghiC-Vsh=D2&m<-%UyaVFZQWt`!y@2_q_myXp27SqnoC
zV|EyG!Z5-x!+0-@_eIANoEU~J#0kR{QX)7(a7-9ug>Vex!Wb|7=9pq;Z(ma;iDa_i
zl%(d=F!;NE>P$;YJ{B@Pj2TJE2SPp+oEgSPLT-<l6+a2%Q;~co__^R0g0lqQkvC;i
zb8Z-`!}v0cc_N=5#)2>w3STBjokc<xhp{9nSsMP|ON&^#Jd71d`AQ+HlKbncq<p=Q
zuLai#t`+<yjBkak6J%?*A3l61+3y8^2xCLC^v5uM63&Ahm469i6T?mfsS#`r<JT}w
zg>hOGehcG}kS$?s4P#rfg*`&Hhp|J*&ZK-7eNXrg&;Bn??hRvKvUI<Y17RFYN^T$2
z4~KCiDLER(u_Qkp#tGpklM*iX?_rz?qf8{x{@F0jNzrw|Kf<`2)I1-?g)sh<>|bGA
z67sj;KS`a7LcYFHeETADMY30urT+@~Pw*P!o7|7wknBytTY{xzBzFjw7UaM<&ax5Q
z89_ObR7}dtM^GWjZ*Q4OlC3OQC4#C#Qj$6gww9|N0V2qXAUlE@5!95TM<S>d!Cev5
zPioeV;NB#!BcyHwcMGW}c#q(iX^ALwpKy}<g**`XUnHmGL6J0w;2|Lo3pNyFX(J)@
zu16ziEWAks&4nm}O$Di$CL~?3StRkf28B$IiKImY84<LMz?0O^6yg<pcYUc=NjW!T
zP6VwZ=o-P}5wwZG7eQXKw5^a1g6#y`3o=A>6yg`m6=d(7gmf0X9Xj$OC`gtTMo^UG
z#SwH#a%!qc-Y0@5BIp)D_oSq^kRF0h3igbkSF)7je@gh%g3ky(n=Ix1Z{H;E7eRmF
z0|akhZ3jp2Tm&yfFf@X)XByAASnhctLj<RkYqIoe;};_s7C|_INCd+pcqxLnB6vH3
z5fSX?Gye!iMewrlr?#mhBPdg<?f9>KuZrZg2wsoiUCn>M<E8Q&T&ZoIH>GIf9c@nr
zyHLpVP6UAnf)R|CqIU(+)ce{t_3+55$n@5qSQw&<PVrMY8bK_A_ab;df_Ma41mhwY
zAAugh$3s({2;2ya2u$jX%P85VS`j?s@!A~rv%b6cdWa<vjNx>edS`7@KN;#9E8T6F
zmKb6B)WQi7OpIVk1XCku@pnFjlOmWL!G&D~%NrL=pU_1a>AN0Gr~IMI<%rXy`Ueqw
z7{PSm6wVOR>85XH1RwF4PXwPv(8x@T|KkWQ=a(T_zfJut!jGB!pL0b-pL`ZqWI_hX
zwR;NIwNGn2*grRdc{FkquSPLHf&~#Aj^IcH3nN$*!MX_6N3b}8B@wKS;L8Y>9jm%D
zf)x?0B#+=!hO#_@liO4hVx2KX6}GEQx2vlnsO(enwyVpVD_=!GTob|9LUP7eV|Fe3
z%_;nb1G7@U<<lxf8L(Z=ZlZh_!S@kti(q>MKSZ!0f=vwU5&RfIW`?pcf}bP!iA%X%
z{V2O|vtIm51f}+sS~V?w`gXOfnsz>2`89&yBG?kaSGDt*9Wp(g$R2ZNq;KUm%<(MW
zu72WGc0{l{f<0_}ySg)iO3jpAG-ES`W7r$Pz6cIRaEKG!uKxB++K$JR{SgokaOvA9
zBwsgC?ro`*-Jy~kjo?@WeWI8;Ed6){C%Cx7(z`@)lGP)~75V81erF7fqGl9lMB%>(
zu0?P*f^!l4A(Bgitb3mR5W%04{Y&s4!M_<Ncc@fgx)_1=SMF_oSxT=6UX9>iA>ZAT
zD7_xRjR?v|Q9*`rQ;JGQaZ5-k5mN0AA^TQUEt8a#jpEKEFDGQgdLK0_Mv)@fO3Bj7
zQB+CtszUnSo9Mb)6seM}o-BosmOIp1QQQ?p^C%t@N$n^aMDb7*b)u*%lDnh0FIlUe
zkb9!ISIC9)iN^0wmOc<g{U{!!wa+HxbB1RVA5NA&Dx_f)jgpc_M438`qi7O^BJ%WP
zX;UF-QS?mOxtU1L)hgdYNNd3i!In{Ygm?wB1v8^)6-ActCgakW*jJ8ZFIFf|-bOfy
zFN(HNw2PvBQqnPs4oN;{Yqnqb2AL7{J4Ml1Bzc1QNzDQwg;5kGCB;HEozLwW#p6+^
zQ9KbvuPAy)(JhMZQ9Q{BM$sdRw|1y=cBt!isN-e68=9w`uTXx?AGtI#`BPCm6U92O
zkJ+cAprpa^>}R9cyF<Mw`hBD57e)Ul21GGDikG4o7{#C{UWj676oaFvxKn*TiXl-v
zC!AR}^6*Y|`898A;mx;IWsfgLF)RvBdDhnKnn%hJM?~>*6z^}V`brcdqoDq<ooaNa
z+HI$r@<;B1b-w94)z_kUJ&M(IBsJ}gDBg_XJyzkQqIjDtuBJIryc5OfC_+($qj)!p
z0G0ce<#X>~6pyAoJ~S_teAD-7#7H#pJY0{$h$0$AEQ-Hdc;iuMQCw2fE;jbEl*H5g
zaWe`l3OkBF8x&CZ@0v1Hqe9mnWterND3PYdL@_>!2~m7FJ#TCj<8HU#KZQCIg-?oN
zaul`aRi%V!N))?Fr%$B~d*yCi`&hjUFI%1##q=oVMlmmn8Bu%?#b;9Y!ze!Oo%?YV
zpF}Z}9|1)1{P1)(!iqUfyiI!NUVbDo;7>*VLKE-jQG5}_tSBBnlEQh-mPU>TtIvso
z9d&&rixuZbu|VX@qgWWlq9~R`aeuGej@juwes8^4ir6Nnxira_MbV<k<EwY7E27x8
zQ(Y;zN|4!Bdo#a`;;SgeHciFpOeU_>+9<x^sA3or!?*OVC{A$mMzKDM?^rR4?NNMB
z|GC*@v)~VOyeNL8_ugzm;m<;TiejUXnypJw{)=dC5~R*OtxNry<iAC+Mfg@h7Exgb
zcW&!ad!yJF#ZGBwS5kkskUde{*4!_p2ckGghmpS6-JxVthod+m{Ad)%Me|q`m2V{m
zK(*T~oQmQ!16>R)V)&iGpDo8QwqvQYQJjmSOblgX_#=w*QCyDVN)#8k&>fV&=zerC
z;mn@isS^KT>}s!EqO*zoOnZgGi;*;SaLUyv{*}^OQT!LhHICM&+=$|@fhnwV(WhKz
zT=FaAtaX#aXs=w~sg{c2j##42(lNd=BkQiV35C_stUF^U7emb$YQ<1q6e`6~SxAK#
zDhi?IuLpCh#85Q`h$JP3YB5w7p1Mn=0#j-X^@URsYOmCY;e%hR)^F^+U3ymxbz|r?
ztyJw84<2cC1W7nND%>4IJ&|~JsTAHD!+kN_AHxGNG>YL7>8O4T4Psc=xy*wxEa;$c
z*2ITmcsPcKIw%ceIQe_yyj|*bneU@9G?rS;VrUYB5<{BQVqXP=Q<}z*)m|CpQ+n-E
z(_=V3F`ISGN3vPkTx$9Jr7~h@DQ)(qK_(>>JTZ7<$c&*?4EZq>u#p(DV`vkDFNT~L
zTE{SMS2+&sTr{nuV<{4@e%lz@#gH3AC$W6{7&^w_kD)^hceYiww^fK-5t7d$Y3!wQ
z4CGAf+A4XXGjf+oox&K3V(1aWlQ9&>&?SZ^V(1o2tbW%R%Dh)rjp6Yaj9u#VjtY_T
z6y$g3X#L9kX^FuwRrZ&f8coY@UcF}w&$Lr|#lY-@iP_{&$z-3VJceh*2(-qa82ZG}
zSF-(L7$Bs7vUG+l_rMr#lff}O7sJ9`>iQ1K_%HGXc2Hi3VJOWQhbN8~V;C00kr>~I
zhv6~26vMI@mdEf#lhhG0xG|K(@Nx_zV|XQoQ8C10iD=LCY7Fnh_-f8{^4CQ8y5Jiz
zyqVN_i?$Vha8oI&jgH~e&Ej|IFx9;Q;X%QWU|29B7!{;)OvtypR94qw(4{p)&=j-;
zZ9zwnnlnnLkKrDd?B{~xVwf1?`@u0jhTXeV?^*AJ7^2e)8(%1zoUHXx3{z-%$-YPH
z33*>|T2g1a5bOOi?B#<Pn(Z$2VGJ|>KjFv1KS}C;8pCJ87fO{cVz{<Toh6dlf^(9Z
zb7Pnn!+gmu;CdzHAFe93NcdvGB}w^GAxn#MSH!TA&Kbjw7*@rwI)<O=|GU+hs}eT<
zGKQ~W_&SC)F>H*XrzgAL6KO138^bq@|I)}0$u`#sSs%l9LcSNgy>=UtIzI~ei9735
zIkx}6Znb=N<}V_AVz;^}hRrd2{(Q$@lls32*%HH6A=?CRx4AQhT?{WVXuH+jB7b*I
z$Hp_V_Xr=hTiqMOKH=<WzmNkl929aWDfjO#b$h1A7%^g~5=YfIe;|pIG5kks(|=+(
z9m6>WdB%TkoKl{l6+LH!e6U+(cV`)tW@N9}t)7oz?{4*<7%s+eA%;I=_$!7hyVbwB
zJF;_WH<qUEQ5)@1FU4?~MKN5Bq3I`?Lw1*%ou9jETzc<2JZ<)<|Hg1^UK-O|rHZe|
zaD(fzN39gc%@}SmCd5%Tj#6>-*rVPNM``ZCJt}#0kIF8l3I6bD;hpiss4B!kUQV#Q
z;1?&eD6be#bU{)%j+&QzOiSu}Q{t!=M}s&XiX%0S>T%o~2irs(HR7lveCCMsnsL;Q
zqx<%vT5;SJNBpCz)Y&#7eajxT<;1k7>UitMad#ZAoXD&f$31bhJe5Vh>SON(DxAu?
zPugLX`{Q^Zj{0$o{lxpA2<z`nOriW<^<l|2isO+ue3gnD#^IHsM>(lD(&K0rN0T^|
zIGV<h7EkQNCo*!o>{Y82=f1dCC9jx~OU~As$B~ij@i8GS1dr9vAO3B}H(Ta<<H(Fd
zi$jm2RUBDy^p9ge9NBT?#8DVWQ5>z~XcI^0IPy52INHWBCM&l?922V+$M&l2;%Lvh
zxw+@A6|u(w4e~q2;g2IXj_ES&ud;JVI!QJ%IQ{GqZ+;vFoW-@4BWrk<iO!#SzT!B#
z#L+8`-f?t|gPLr!TO1#E$$mTzHI6>b@}CeS*|b;fE)(fNo7f$njN{ciJS06Odt$Hp
zR2)yo(U&@0re8eI#PMt#kJj|uQNhD;mfolKiQ~a1vim)rO$nWleGv!7F({6A;usyr
z;5eR(V-#DC<M}v-#4#+6;WE?tr!!xO^Q~2Qk!!s#v1%>GXYVfMd2FBhQXC_=E}vwM
zj3a-aI%<4Ty$1O&$3YyhPklwk{PsR|{66)yI9?acH^rWB$kaG%j%v<6^{qJGmeTe6
z)V=%E%lp)K;|S1Q;f=?UvR@6x5vG-dhoo7WWzlJGyGdzG(KuppkZ@E)j*u0NILtU!
z$MIzxRvdO5AJM#VIB~dfOpaqp93>nKeKL-5ajfl{ed%OY!~JTT{p$EQs(kL9C^$j7
zW0uW6ax!aD9Pf9^C7BveT;1MdmaR=l+gzh~8W)}4_MtsTrgz`3zI>`^MjYi^W`7_^
zGHk!fqM4!)+pm5S$ER^Dj$=t2pT+Tc9P{H?5XTpB%!*@P92X|0P2aE1W}B1K=Flzc
zd6(^1=Sr56P5aep)iNW4(ie(^-bLXe2DJTZjX#QR>{pk@u`CYmVqSTd$5HEm+V4cx
zDt1@fyFzfKAm`Qefa*V>eig^par_p?mN?eXAaQJr<L5ZOiQ}0A>iRgoi{o4I)pcCW
z18T_ul|6pXP$MS#QS3lJ-@v&XP}d$%iMtM{KgDsC?XT_li@58iI5u-}N2I47RDYF`
zbIE9V+P}tV&(=7$#j!t*0}Lh;)3(R4Gmc&K(r(#11UXvgMCR@|_HZdrWHNDrdy{;h
z5b88Os2*h8qZ_}Ren{|e97klFTmq(}vI^8>*T=c352`2PAg8TP$MJg{yAA9ya3+qk
zj7T~%b)1Xi4{iz#FKIZ>)nPc&kgnm+IR4_LL_>;(zvK9a(L0V?aa?4Bas12h($u?g
zo98m^z;o1l*-uaOUy0*Jo1%<Xo(>cJTTf*F$DK9Y*CXV=CgeIx<9IjAyE*C~(YC0R
zhC4J=*5D5HhbLu})^MkWavI8LiHE36Wi@nb>Ln?!p@N1=XFQcORMc?ae$SG({8uMr
zkg&A-n2cv%@>P*qeTpBaq?(3Q4fj%0Lv;<04e~=n4IzgIq}9|=OG7;k8?roiY4~fn
zzmA5w8ft53d@Jp(lZiGbO~|-B#ecVkZ>RgtkMa}m5&hL}#xKwN@7MS~!Quxr)YtIC
zF#pn5d=F|ceCZ7|JjAXGi*{=rAJ))N!=r3d!<)sAH{9o8YNX*2%J+Hdrum2m?@Mc<
z;o89LrW!tX(i9CN3$rQzXi5gLnTF;XR1HsX<QiIN@N3A`aPE<U3=NqYT4`vhVQN~g
zN5iw@GrTNa>tl9qq)V2DYz^%-%q^9kqoK8iHX3{yY7R{Q`z2rSy^Mu3e2<n-ZA*nQ
zeoER&(K82CDs<3ruv9uzN2yNINkeB1T{Lvnkf-sV4E==~ia3T5{(KDu8qT;Go%QrR
zdp%PNyA*5qXMNiCOKB|qWI%SU=lzds(AN0I@AG`uwac3R{%#t&Yj}OHr<WM5hlVFL
z%zLkB$QjQaMMZ0t_<CySh0Nba_<C!2O2g9{e+A=zRzn{R&uF-?rfYCmIwgHI^wanX
z9t_dYU&8<mgES1*P;FutYqG!ZCC@+&cfXk+&#~wg-w&HJnSF9%2J60{VW@@|H4LKx
zYh<R6_Uo&C6IWzSd)~ihWHBFr@7nJfq2Xn&FV~&xqTv+{vo*}oFiOL#8pdmwpy4%6
zL_<_VOv4*oXboYeNf~c(S&w_()esQ!wuX0vP&k^#Jn10`p6~=U{MI}-q#@(itlmp}
zTTXipO~{CFp?~*qJRhc{#c4VXB(?@!!xlHA?$ivEb`zarXFUBom$5|Q*;{F^9LjXK
zn>3Vg!#ZhWrSUPM$@baEIMJLxA)~>RjENd1Y4}vbXBsAJn4)2Zh7V{B4ex1~uHmhH
zo_V8+S?hfb(=>47JXRy~#QVi07sgbl{6lftk2HKN1DmO#XWMj+pCkN41AVwxVKzB6
zKj(n|%>U?3KlvBZa%^+fEUt24_SP4DbGiB&R%uwRVZMe18kRNncJ_D|YFMOUg@#V!
zGZt%DLOJ^yQB3m=nc`o{{XQw<mlFTkDH)?v+Af!=EzI()6n$3t`DPls`%>g<HGC!Z
z|5^i$wnjGEPci?!t-RlGk84=R72KTlordo<tQXGgPwy3RvP}kL@2}*;tyVv3_=#ae
zM@=0YHT<mMUk(3h_(j7e4JS36(y&>>uNn?;2hsR6i-w&Vc4^qkU87-#IDFwy|BSGI
zyYQC}sySCZ3?1vob=<9iMSC^u6S7Cc;#OWt+7Hg&vBbA=T*iJ4H_~!R4rzGqy`rO>
z3&Trc(P0h)z9Sr4|4fqO8ct8mI3ZcD;U|B8QpVcn{HHa(k^p});&H=D@8>l9q2a9X
z&n9PZ80WdaB>O=PUwmRh!gOhi=WlLm4VN`s(QuK|nV8Xagzpj^riQOSd_!vbGKTrC
zG79ZW%%$i;{*4(v@@pEdGs5dwdD?SB!%fC^9c6WJvbQvt2h}@tl+y9j*o@H=iUMEx
z=4|nl*74XX-`umFJ9U)PK~hP_kXD{~UwF&wsG#HNMg{DmqMn#|!3-afS*lghQI&P4
zW~At-t|y{#H64TRDM;1Pw0|b&LgPROKmX!~W#fnYYU#L3$AdZ=h;nTm_v*M$M;#q?
zb#O3u>$pcpv$LLhI<Ehl#(pmj%6_+%XW-4W`=v^$VZQo0-{a|jK*x9EGnB7=(OW+D
z`;eY6X(Jtv=y+J?d8~MIQ*T2K<7GcdaBRk-9K4PuI)VfIKMqJ!Sj3U*XrUvGBh=Ac
zPkgj@ZL6o54&s<8g>05K<m@J2%_q;$;nBhIkhjzmt3X1#b$P$Im5wYOf9N=`BU?v~
z4pWDvqqUAUItJ(%sKckDt&Sc#p48D!M|&N`DQ$~%bkI?|pD$NOCmkJiygJeE*YWW|
zm5rN$F8@_++gZn#2h~Cyc{=iS6mY0%iLQ5FX_Gs~Pky$QXVq|Dv5qb}x{A)WRvuNy
z<2n{k@&B3XBX;fYe?mt$D)jfWi|#t8L()@6FCC>1c>3w+O|S5JpVjg5i~gsCGyAlT
zXM|t7<YBgZenB6}_7&tB_2=+L_y&7D-xPNl#MRd^TF1LOp40I>r=#;1@ff1x1vX2c
z)ciwryeQ-)JrQHKxAYFvF<i&{Bm6_MJe2gU+IEBvZ}r6Is`u9Pjnwgqj+R6H)ET7%
z*+s8cZOa()x{fz=yshIM9dFWllQVu&yl-(-inqfMf9{&ZwSL6rtU81Ij7uxVWCXbM
zbhD`$nvRf;u#ULSuO|9y4fIEJM5T)jSMph%6=OQKR8O=(h3Qv3I?Z)Z<-iObGiGMZ
z<tM*79G!nkhHW}r9VOf~I_BvZqhqX&$@D-SH^yd+(=kEEL>=R~vpQF=H9n(vcF~?P
zsWUoPpG05H_P*BATj#~psq{Tgvu?o`v;()pApdlBq+^<n(=Yn?sczkV{tt9;03Yg!
z&&N41)@4AOspBJ&Bt8Px@kx?@s^haH|6Iq2eJNC!#X-K|pDoy<alsrtacZJuzG$w|
zu~x?d9SbG9NbqaAkd7rfmP+<3x{!QazD&n*k*pA8<12-%(y=-z`BKO1w8Y@)tHm`k
zf5=LF6#k8lZ*_dH;|Cq<7?ik+b?7rovxr9*kDEbHK07+`3H}D|&~X_*azW`}mptSf
zMY2i9W*tB4_=Wa=(f6^N@pf9`s{N~u-?(Zzc)+W_+Q&=t?&1FPy1!Y_Ur?0I2Dj^I
zG&uVZqlb>2I(F&UeS4^adj$6h?iF;N?6SmPrqgr&103z7LZ*Xs<^kCxhjkp$apGeB
zQ9W^bJgMWDj^k461h@9fzIJ2M*yFi_>M5?Ej^9P?EWK`0#u@q{4<RQ!tjKhZVL`|R
z9e?UrWni^|zjXYqBiBGD1OG7Q&{YgPYT%NN%iOI7${4t!<0>N+H&J%cznr+6@gF_s
zch73C=iA)sefN9L^v}FbC)9CM$1TQu19un+<##7!5X&7>-zdqr|B#xSQ^agp19uvz
zYv67J<qVWJP{lx1BXNPQV1UP@N(R0x%&us_8K1$%D;vm|;p1hUn=8dYH3Kya)HIN4
zpt^y*>(gLh>BK@FHn>2hn=xRRzw)GvS_TG=%cw0#a+d*~^GTTM7+BdS!Rr~g$3O!k
zaj>C%?lo|~kvP1?3XASDFmqz!`0;>9D6B8!K_fA7W*;)}u#qrtLj#QrFiLQ=tE&6T
zHOqbNcTZyjO$=lj;I&dQ(A2<V2Ij8FVwg=c(9B50-gE=+wesFOs+eK3^S^1$Y3jH9
z{H{m~&euRo+UJ0WrCtLbBXL<|_47>%%C_<_n71;JWgy!?j)4x+3$G)s4fqVSHPFUL
zTpy2)&0z2C474}EYZ)c`-tgy4NnG@Kis)#-Z{T0AH*0m`B+&Ylr?Y`P13K#($Tv`6
zpr3*MwCy%ep@D7&y0aq##Rj^t>!#kW1|Bz%lI=OIcT^2b|G@Wzfrbwkj9$}~ypykp
zyoZ4&4LoCjr<$Ie)FHLZxWcCl^x{Gr;A9tAel6hVRpV(+e_SEcgf!o=wA^P6^pRP#
zf3>(Tr|@bqPdEd(ng&K1c*VdV1A}S*8kxflJZIo}149hFVBlDl^0X?=Ra`SM<)H>%
zG%(CS*$IiA-Zkv6@LD0s;n)2y85m*UWll=-7aUTF8!GvDV>^ngV_>v_cMZHozCQI0
z18*95-M}p^@dcQF(tK|jc-z1`Mj}EoO&;azv^|gVwGxHs9svVk0}+nUK#0Dl`zhqH
zcJ)eMR2(UO+tZTXHF<`Q3L57!HiN`8U>W$xz{dt`ZUh5U3`{lP8YnR^k^Zmy#~2uE
zV7!3|2F9^sAiaGJAMt~Lzsm7!D$E#@!5g#}hNVw3@b$Ff$=oti{gl@q<=dX=eUD3K
zV1|MB4NNoe-Ajr1Ipq~UFV@4mrG3Et%PnA_g~$6v|HP~rVCjuK34CJUQv-_(EH?0&
zfzJ)hp>G@b!oVzA=^cN0(dQi&?+9iys;p1T7?{lq$~^k&5dQ)LrL(;Ajl?B}%`W70
zR%G$|%WqgMF3MhF@cX)0Zs71MzNKt1rR|o{UAjG7K+P50wgyIxEI#w5f6mP`k}nN>
zB}=f26Ev{Kz=AZss}XArd}H7zdYyr98EU3xu=)=M)(K~JJ?AU@`=sQ|O5X-)>PG_%
zAjXso9s_<(uJ2|8zZlp=gLkU_;VBPWTQb1ULng^@2DTX3YG8QxE}_YV+YM|J-gHXg
ziYp#UcF+MP7w+V|#`;Nk!DX$z2KG_S#!EK#8#rKKvx#3#95isqKqV8EP5enOHSnK-
zYX*)OI7;6(aGbtm;DUh@22S!hkAbrcgJnHUzEe)IbeD2*iE`RN<)zB+^!%mDf1A7+
zzbgIaDd!AqU!`2zt^C0TcPm||R{fK~pRwJ*RRe!>ndW#e8F+B1@{a+fL*_*T7Y`^|
zW6~%6qV$;Sy-dv$<&G~@uv@vdOWCwb`IpghvodO>a^1iU15bs!mNRjaV>qhp?Vfgr
ziTBqjw-|X$bXb)2R)^FZ#W|%-l+Mj8W1_5yZ#F5vE>rFl$)wrJn%2eTO`JU4W~(o=
zf(c?p!DlupRZLVhG19~<CQ?jPGf`-w$V94%>LwbSXkr2;YM7{J;vN&)H%d(twM`7-
z6({JcW%6gXzPn7kSFTXMR#3-8T@!u3QSLU;XSa8XH+62%N6mXp+-IVAYv#iy?l<v(
zi3XD0QZ2W>i3d%*{$$z%bFwPC=_G4Aq(4NRIaxUe6k<b@UyZ{fCLU$2x!&&cvZ%vZ
zb6r@fm}qJu$3$xrX(rN5v^3!{(ac2F!^O=_JZ7Tz{>;5ii(8mje5=j#bF(r`j6S5Y
zl=Aj><$6tInsBS<W}A4YV=*;bv98o=d(+SCZ8a*iG2vq)CFyx4+L~x*qN54FiKoY;
zr!3BD&$Te&lqC4oMOhF3lb36vlZo=aoX#e$Y*K#zE^X!^^{;)(w>{I&Oz)B}Me|a8
z1=1!JicS8d8~U3VV4|yu$Jw%pXH2Ljo-onF#FHl4^zGEmM0XR@9w=_P$NTjml@juv
zCVH88%ET^O`%pe5y+tSXKykO$U8zI){B}9dvePRCeYrX&m~FF4A@&m?<yF@y1G%y$
zhM0K4#M?h8gH1dy<T(=$hr7OBoYQGYCgo!`C__!WXky(g?{NCVH(f6rQisjY8pee<
ztn|L+f62rM;S|0s<lqK{MWal-YGSsDIVN7?x|^6{VycNZOuT7AH({7~i#?hMnFyQw
zC*+iOxLzjSHBsfTdiGdefNmfpXyWr@d6h2aQP}yg8lflD$c>taaSDgk(T7zQu}Yjy
z%N7o+<9ep8NX;dhCM*-<OpG^Sn~3lBx+Y4vb|xZaGO;j=k}<UWCS@%5#iv=h{u~OM
zKAA?z1QQcYOy-t(q&oM}B<_xdS**oWuWjaMOB80`<MuT1F}tXpJI%y&6Eo>x;jZC7
z^JZ}3l?p#J@d0P|XCBk8)k?1=N`<+~M<y1`SJo^~WIy4=rTS-rUkH9K3T%^UmPmTG
zDxPa%p2=VA;!7?l6-+EQvBE^TjyVfWED^Fukdnnho}A?+Uut5RiR}4VJKE+<IIJG~
zJ1;O>dG4sP(!}8IX{$_J*rSkqW#Vg-f4YM2xySo>*O*w#@M2=&VU<}{`PRgG6C~?Q
zZ2Vebx@(mZT&C<=s_Z<h{$S!q6F<=vpD(+CW^YhDVQj~ZCVn=t$poX{uGXo4A66;+
z#YD{`DkXht<Pv`~v4sm{VS<INCbn@)TFADr-NX)tBMUVx?4-Aw_{YRW6T409F>&0)
z2@`uw>@)c)Z5-yv=Xm#<IAG#@51;mYS&s9da1u(0M@$?wag6J@I}y+SS)@>STl1ue
zQzp)uIA`LyM%7Q7_?=T&srcu6dvwk@BNvgk+GTz?*ZYUW;qx>aV^Ll)cY1^G(*88@
zmx;fnXyD)Z->p;_wJsgYuhS*xl8MV)3k&5fTrqLg#4Qu0Ec|Qo<z={L;yU|XrPM7|
zc)lc^_PoK!c0|3&=vu09`*NjC*}|eDD)9~r-;YcwZJ~?>w%nji4u@CPN-W2nR${2^
zmpJu^Qo%w+3so#swQypNQb}|wTWGUK(RP--Z*)qhl}d_*Y8IC6R;pWgWs$P^?J^7J
zc~dPAv-c^KLrU3rEem&9c-TTi3$-oOv2d@2`z+M8aJPjo4k*05-rAmD&%!+x1|Ct#
z|EiJ8?L*G$_e<{&T6jQ6eZg`!{48o9+!yKkkcH6;6p}_39<kuHkZIvj3ym$l?G!C6
zG_jyqNVm|;!tfuJrWVpHBtp>qtQ8xS*+n_;x6f&~D2qkSEl|Rc#q3_cFN1YAC@n4Y
z*q}s?s8sM+c;ZKep{y0>wMuawEN*uoze2xKGmoe_7Ft_)kuB3!7JSsS(9J?y3+*hl
zx6r}Dx+Ch|BWmSSc^8hT9WD4R6j&(a;vQ9VEp)b!XQBR4wUdSWt7Yyq(mPiy{Mw(B
zZ(&!TPRtUEEEHRK+yYzZB5GYNWF1vmI;>3Q!9#f@EK)77B6)WX-a>y111vmgp{Ips
zEIezWmxbOIU)6-C*=cHS|D$Tv*$R=o!(+t-v%Q}#%IagmxtiCHKGQanq_1d_uw|~=
zKnsH`JZIr~i_g^)M;fNV!q3n14&i1jU-*KBp;qFYlfFQqcacy+GTg#T7BmaGg%K8b
zdU@T#8x~%+Fw(-Zg~}@yUX}G7Wnu8-s@yxqQS~*^+&f>PTfS-GEh<<DT6o*SJM^X1
z%DeOg3q^l+y;&`{?acxv3g^eu1|3pD7Qz;y7GfOsAtfUEKi-x5`BC-TqbemN#JH4J
z+L>oqm^LQ;nSF{S#1v#}Hf>_TwNPT=Aj7^4a*Ty8%TjlLk+t(&-d$z#$60vofWkyR
z(ZVEdB^xO=CR><d;TsFzTKtz|yk}vqg?Sd<XX6$=w(yCxHr>Ju3m*tCd@W_r&&r1u
zJ`%Ic6d|3z&H{z|j`&T*YM*j07G_zf@IvNi7CxuvZ}v{un~2i0E%3}q33>h5S#yNE
zGE13nA-7lB5^hop3%G49EV9sbtFqVvcORA8JL$wWopY91SZ?7<3tw?-SXgOc6&=Y*
z|M0&&9=dq)oRU`j)I9HMF4NXblFKLazvci!UDsMzV}V&FDyPlLBCfNr-oj}Mzgzf@
z5y`?f25JjGSlD1;lZDL|ezfqDg`a7(U1jh2QsLI#C>xxF*^1?Tzp(BcZ^wncUoHGb
zH{+81oCw8REbKd~#`Ywtu(ZOgtnPc19Sr^!4p}(NO=Mv=bu9i80s9wZ?O{aSr0liu
z&(*xmhZLUHF7?RvcBpoME6X+NnRex<N(G+K7^RO`ILdg)z)~mo7<bK>^y8f7ZZEUc
z<Pna9>7*!}66A62jD@onu3NZa;hcp(*q4Qi7S413O7DMj%7>IcrMtg`x2>Ja))KvM
zQg{fwL>n^NTlkOqOh?tL()i6PxjY~8g3`jDeodO<kT@yUdeTn6Y2lWIJ8hJ+QOd?0
zHcHzlV<-B$p3{{&JWQ6g@o1IA;JKG6r?9+@3N|X+sA8j{ov=V9n^*935?Y3dY8)Hu
zdN(KHb~PKRHi~Q%+o)~>Hk#Xb%;qaFz{BL-HtN}^X`_~nyKL09asN@Ju8lV?<<+qh
zhf<zMCm&X*dE~#m>c`Z3Y}{+3k&Q=ev~O7bJ{$FIJjhx$9<b59T4v~`pP_>!{c>Id
z8xPrd*v7NIoV5q?89*A^2?r)&`mcP!qc*?mf;1cHHk#N_Y&5lTW_wxIWeZGn81l77
z`n`J;w%p84T*x@7<-3#?HZpAZZRFZ$X~ScqjSZhP;<eGrMwXq}P?<6+>Sx=?vC-Pb
z^@YlL<gy)>a#Tci)Ye8j8y)P#MXJ3GDp1I~JgO0SkJix!2h1#Q9y{5{vypG3vyEPv
zss1XtJT5k?U8cas)2&hqZ5&yz@buVxZdQ|HY8Ot~Mt>UvY&>p5wb8@IlQy2P(Qt*r
zDB8^i&sQAA#-n-Nxw1=@1BaEKY}rO%8~tqbw(*pWXJ|&+d9%`CPU2qaY2oLWWbrPn
z4;Oc9CQtsv0UdMlI;8UC&+SjiKpTT>JkPpAGEe-ZbU3CCw(*>eiIshsbCl@Ztcy4N
zLu|ZYV<_G4cplY;*?7@Lm!h0%ML9$!3P;#@*~W(sW;z(jRj^Uk!JQ69*?85)M>amT
z@tTd-ZJ0JJ`j3q_ZG>$^Y`kUTZ5r0byEfjTk+0_MY@LG+Ip?=zejn}Hs&a0Cbq^>Z
z+JOsKIhTo@7M9BAjpyz%o+usFMx2fOptv{lG#fng>vXMnSJo;(?sLafgOfU@GJM%K
z94gotZ{yB=ifd!6xB>S<i4Ecy!Btxn-ubef2{eWD{sCwAU*04eQ*2D-RY0;_6bj$7
z@xG1eHfC@wcniR#Y@6^*CT6)7JZiFKk`Hanl<por$#<nCj?<sm_|(Q$8{2GrX5(`k
zi)}2i@r8|9Hs;uvOTXP!z*~>m+zUlHdGnObTa<Zr;`zfuy4gHszHnw2*x<2^WR$Pk
zBJq>DE0v`-mf2Wu<2xJ6ZLF~IwT(44R@zu)W3`Ph?Zh1`-G)u^cAH2m5x)}uA)zVO
zGK_E=&dU0Rt1~Byx8X!yRoBt$_9gBpzqj#&jh}7&BD34T@vl~X6y?oxy+7I5D6LV*
zj(ElS>8moEZ2T(9n+0hKIwVVflk665u_aj)Znv?+#vjbu*lA;zjiWY>+1PDk51;nf
zIACM1xHo-!A2-50F9{Pz`($1*+dOFFkd4Fiv~>#85t+zs&hC!eIAP<ojo)pYv~h|C
z|F2x*&&zV_E$ooVeRpPMVja)eIGY?N70x9&x8wyIe{%2JxMt%o8-LrlWaBdZVWIL5
zjl3oEBBSe}#KdW+AKE1x<BE-c8Ep<ISEU_32BDCTL5AlSU$=3CLEcG(rkgfy*%)<1
zxx>MPjfr8Da*(nsaZ}UGNH5LJbtEAq-WHZ~P~Jf|2i+Z1a8S`fQwM1dDmkd^pq_(!
z98__@o4%S3YB{LN)*MuGkm@8x2&$dRt1eyl;=`F!c~fU8H5{~DqoghNopRIfa!}jB
zwFSz6cA0e?e6TCOu7jQX^5=EV>9-?~<Zj89-<Wl;gZmsba_|TTvq#|#_5BVWa8TdD
zgAN{Y@UVkLQ>r#_62X=cm5$02_+wUj`&mjuhmZ8rt28d;4Jmi`qwHvQUSkLDF?B<a
z>?RI=TCXUABz-#i(y8yDqXWN#<_`bh4%rTJ9JFwd;b3{&%uIIoPhLw0V}4LPP9hTW
z0^ybH7ww8UfL2ao<7d&HgA&(7UXfcnXyf2OyG#zA$1|UUb`IJ*XiFP@saTs5VY${k
zFP|H9a1zfANSMua(8)o*g8~OH?NtWu@t)`5-$5S7b0FdNi~xlW-7H<}l=C=k&cV<=
z)iQaa=HaJ{gRTxbtWI3NUc9qVm4)E?KH((pRsZVa?cwmuhPNEN?VzWFUJhP#Fw8-3
z2TwT|;9#JG2K$w#9rSg;JJx3$JnMkt?;}moZ+UuTwx5IkBH`JLEstNLG@aue<e=n$
z^1Oq=PU4Z*bAmiJkPmV2f`g$BE_SG9jZArVeF|&EKFb=;X*zg?cH>~?WR2heQgaz~
z8EIeURe+v$OieU(Ouc+C?^Oq{Ie4AZKT$6Gm&8NVHypev%kkBMEZ#zLU3f?Ej)T!0
z30KF#yBws0n1i^3Ap2UOu$_p55Z7Y15_XWgScz>`e%`G_>B)<;3UYl!&4Dhnvm6*g
zOb1N7jbbV7ss5teSfSVsc%^peS3+WA(wQCWV4Q;~4yHO7&rRoGqJv2e?})RwMtP4G
zH?Qn#*eR#W>^xpsCUZsy6yC7E=iq$@Gw7%erm@P;%C9Sw>0FUj3IBX<SK^L|VT4Zu
zGTLS~I-q>y;A01^U9@rWiGxoa{6pJ1_{`xK+whZvjSjwWFw4Oj2WuV7b}+}mGCH$^
zxen$zSim9CGH&|#9m;$saSOAp`{Pen$z8-%bFh??J(tIT!_p<Z3YW@dVxWF+VpR@!
zg@ct2Ry+98!EdEg`EX;ESc#UQ0Xxp~@)^Qc4!(B&_vnMCH9lwf#=*A^zH{(BcUH|}
zhR1cB^*Uv}Aj#ADImLBye{k?4*ZtL$4P4nexqCM%#QO?z+P10ovx8q8>~*lu!6pZr
zIY_Bn`tz(`9c*#1)dBf$5^$#cTd>W+b_Y8gobVOTI;QeY$Cr}Xuvc2yHA<=WX}cWk
zrrUSO`SiM<=Yc(pBsW|A+bL&1x2=Oy4o=f74h}gu&K4Yeb4)$#;E02x4t}p#SY=e<
zF$de`dDk9LHh0QlmeFQT6<=z{YA0#2N(lw3{qEq5gL4l4aB!Bv^R8UpT@GB9%G*qG
zUe3-txZvPVuGea%W9?$%<XX9ZIs8UhLNfkDK5^_$<&uNTjI=IN-NYvmS2$V+Hym7b
z@UMga#QxVDsEd4`dW)$rrFUBQ?U^?n++rAaQOQLq7k9WQ>*7uqrCpS9(fpC>7uF=M
z+D~@MVOn;jfF`1G%DE`-qJoP*E*CIMi;?U(rdD<n_rg4Lrnso$qN<yC)XArp3}2Uz
zsYPuwdB&*j0xlkL@u-U$E^4~C*TsD<YPq<}MI9G)UEK7fGA!`ssJ5H96WP8ikJ0sR
z7xi4+<ANi9=_e0wsd#_EJE^Az`RMldyQuHtK^G6Wi3{|jZ*=i&&1~Q%ZZ;os@vxgX
zwN^Q<HWbo4FQ<_ZK3F4P<;!gBqKS(ZE;3vwE}FV%#_79AqbYJz8y;8F-9-E$>D#rK
zSnsuz$6TDR?a7;~yfIf{QA-yd7g;W{U3lHZsVUP%!Esf2s|&G}iw33hnOb+s;WZ`4
zO@wsnFmeC-T(ouZnv2(6v~$s(r7oUz(ZNMW7pjXVT=-q&x+ru}<f0P?c2F63T+MgU
z*+ojboXBrV9)<J0BwXAAcK2EeNwJHiC-b_v=<1@;E~Vmq1>A#G+g5$tO<eth|K>Gb
z=I!R9J7?#jw~NqmwTFwIE|wfupLFs5arNsz^4s0WV>at_-c#aQZ1!oXKDuLd^79Rg
z`?%=qVyKH3UG#I&-^KGThPW6Y`h#4&{j0)Ha|XJJ&vY0h`7~^>3*vKJ&A$pr*v<=_
z_0Bwwf75Z5SLb0ahPxO^7otrL<i8|Mz3k%Kefc9?96PSE3e(KFS;SG)bktW}Y(JRK
z6UC-edH1v}e#6C^F2=i<;NmTg!9~<%K*KvOMsxfwf-c^r8`~;PQR<yCx1`P39r^L?
znGH^;Ar~i3<%eBFT;!ZknYx}(<1RFg+=c5xr}66)8!k*5s&O%`#F5a#e2!$f{EmH^
zEx7Kx>=Ihzgvw7w#tIqZ;%XHiCF5MI@Mp3jaiWV!E<SWI)5T<(g>7;-xtJ=Z<_O~_
z)c1t%JDGT5Go63_>EeULR!XlpByr@MeIoJ5y?$Ts_b1ekTzu@}a~EGQ{=4{8Dt_kT
zQrjGAZu&HFkz#tYjAupL;#suAKY6oVoIR1S>a`PUt&{3J4&KFY6R>3h7Pwf**2dzC
zu~_6{v5P)q(02@$(7PB4#-PF&EOW7(YgB^2O0dGkN*DV|u)hSWT&#BCD?!^5eCgsV
zZsC%|Uw?e<VvUP~E)Ka^>*5<1TU~79`m%k#K%^(uGZvj`ypHa)#zV<>E-nwP_PvWA
zM7}|AlZzi+{N!SzWSbr>$0|%eyZA*U<kOdzB5ro^Yf|!?kS#8{EH2BU?abCFzn23R
z`3}LIg1cPo7DBZ>E^ar~@SC)WRh#U0aX^YX9jaE;t;vxu(+;~h;-Xv$%9r3Mt#PYy
z8P2o>$6OqzFS$4=`Zrvha&g+lUoQT3@w*8B5IiGzR`8r4`yG3|`g!3O1piFRr@T~+
zrT<9wii?XvE(u;v>fDoFhB{YW{OjUB5ndC#&K2*IsD5x_!Z<gR`nQCXD#0DHMl32V
zWbgTMJ$k2b6)3rr>o~j<d4&>GEJ04)CU=WYr4r0-(xgTSDoeIX391T7DM2+MtUJg|
zbeAgG>Lox@{_n-a!qqH6t)%3x64Vx6N3d>EK6FP4SD{`BPQRJg<FCf|mf*e;++TtR
zIFb?+lx|YL1P_*A=%MN@q)G$9^b$NI<lz!DEJ33ZJR;d9f{zL|F8Sa3-X5ePLXN7b
zkTk)MJ}J{IDQ_<1F+mP#^L<S+N<eH`0*?@KuaL|Vv=Wk)lxLTq!97i=(7FV7-`S*1
z2}Y(hVH#MgNxKrXFTvyzOesN!5_BxVGbMPo1pX4_mf(pJbSpv4Ta7!FU|)Kff)aF=
zY+ebLR&7FgehCKVCP-lkib`;2)h5NXf4wGMOa2d2-vM4#(M20b01-&Sq6wm)fI#ly
zMnIF01VRacBoN?4s*SD!f+AfI5Cy5Zy`6GJq=R%6L=luG9aMS|>Am;z*4g>*d++<^
zTi=>JeP+)-<(@km?IgPJQUZk?3h=37qg*XO_j8TebjJd8DnOS4Yxi{)%zD4f@mFlI
z&7vvkDw1x3ZwpfRP65t#XhZToD=EOp0*op^j{@}M{1;$=%uFxAeuBLP`v~?ezz0G&
z!ygvlqX?gUJg(@?go?4Y3y%^$7UAFm42+}>D!?ZZ{%HY!R<_jXvxsDfkf8+_CS-U-
zK0-*aREf_EFuDNa3NXF^V+xRbD}kN=f}?I|TRltRY>efs4z#@+XZuo$OfJBb0!)aE
z_p1VY9pMv&Oe(-PLK1IVRZW#rPQht{?A~-CGXx6?;1JU7epx0lxFqTp^c27=#3#tq
z(gWgx1qg9*3$UsHS^;$KvH~oou13`L`vRB+2+JyeTfqNc#C=zQnG)rQc59aLoK=7?
z+eI--K3giEQ-HZb<_XRhTp+kmkgZdze-Qp$XTJ2t65&+Zr3F|fnmi`o(qZOY!M;_o
z?RwR=n#R8XKhf-S6>b+lUo5VDIU8{;Rd<l>w*qXS^<XE1N$Vo5{37Jn0<4cn*zU#%
z|EmDM7vK+xZYsc^1=ucpa{;yp*($hAkUg1$5<4P%PXTrc-zB&^B4_=~xmTk51osQR
z@MS#Ze;42%i5?I<C`kFC0vwL;YLCkvE5PvrTqwZB0-PwoNnZHw*w1n7@7e#Q%`ZUO
zS@o1e_f2R^A)}`Ya7N^31u0<>hVuoOcQA>h+gbHe0j^1@%TnRUv+9)sTouj?j0U9C
z%>vwFDLP~v9&@_@cM9;N08hE5+mh}U;66?3%l3N(=vGWI#zhk!h=jt21$Y$UkEy*0
zB`ADWfX{a(M>`PXK$HX9{z+me;y_Uc_LpkPI+>@K13#WsneEZI=;Fc|eX=RFqyx`8
zkl=vLfl>~XcA&fi6&$!d$6iJd4#YaJzJ6MqL@AFKQkIpURT(YkfZibOVEweN4bs@v
ziVmFG8}+gSl^l4%fh%X#$_~8fu*OpCoLa?!&j!bkGgKAfOAc&0lFDc`iIP-z;1vgo
zWGk-<)(~X0rjS|=ycUtvcA$>%x)I6KY9$m0>N(KPf%XpA9Y}N_#eqf+Y`u{1x?lqb
zYMxW;JCIXKdA?(ELkHe)Amg0+rUS`B$diO96_qiu%HAscE(>W6WV48rN_Sw-%B<E7
zG<Kkg1GAe&Jy$`=;N-80ZYmj?2{spGD=i$zjPRC1vK(j?k#sw!K8RIL#3{MF4VxF&
z#(@cCm96iVVTapFhx2%=R#Rb!DW!C9Ky~nEDf(MU&F4rb*xz!XBZ(e0wW+<61D!dI
z4v;g$&~s`R&dlXF@~#d{Ij2TXuzx<m{<Z_(ol{8|-gV$T2hV4-kL*x}rFuBf(}C7b
zWINHzf!+@M<-p$#^l_lC10e@A2R?A%LkA{0Fv)?B9O%b2bzlf{wy^hiV2}f!2p{0U
z#|{j1;OiE4CjE3yC4TC_U=BefjE-<dy`G~)x3mxCh#dIBfw2w@cVL7Aqu48{C)FJ@
z-x)PhI1AoyX&)^$<hQhsk;*A#6Z<ml;~e;sv**BgE_zEl1DjwfTltDP9bjAJjWg{e
z-#9SY0l(D1eok?~<$#-0=fE@vrc>gKDsaHzz>G+TU(K{?D>5?8>A=BrDl4JH<A7H(
z_yiX@qcmp}`^GM@t$+hT2iSRbk3uHt4j2wBb6~jxrUPLI|1*fi4t(ptOb6yVFpsO_
zK<)IT@2Of2oM|0BOQNS+M^iXQBqR(>BF=YUfddOAPw|y$l$6enE|P5}u?X}0;J^|t
z&}{os2huNFr3$NB;lN6o3kUv`va1~UgPT$KYQY~J_{o7a4y={vZ-T7$X9w0r_%A|!
zrHP103M=0r(T#$?3*KlQy;;cCNOX&ko99&4S$}5Cb_aGiu-5_doeu2cE|Uzq9VmWY
zH7+MzY8_3&fiVAnt)utR1j%d^N;s~695_Jh;l!&>9CYB21NR+x;J{%Aj?fl4aMgjM
z4jgmfyaN{;I8IeLUFKh!EC)_FaFUNjJzJ$Vu+Qlo{c`7w{~S2Y$r+w_)`9BhRVFn(
zuby#$xWBEv(|Prr0|U;hBp12#wsw1`CA|@jy5zuD=T(NwLcX)7U31{N19u#_>%a{W
z-gMv=SO2{F+IJbZImzew%|p_Y19X*WNxp5Ac>cUv?1FkvT7UI|`p|(#4#0_WPCRzt
zi38D2#5nPkJ+!5D@6;;FiDxuN7u0$EVtxN*6>*}d6Yn?6_+(@D)e(uU>$EH8L~$pc
zccPRNC7gK9iKBJfjlEzEs-zP*oBNsY{0nMnC(1Zc)`=Fa?M#hzBF>3;r!_OICvZVs
zDuEM{Ub-yvly{<n6IGpf$%%?iaP}%Ytr1mnV*3U41;LXSRPsQt<SI_Q=)}VdDl_1s
z`m&RsrYBW%qS-}Nxu_2NFR$xGwYn1<rzg$*GO>meHJwOw;&mr#Ijt*5sB{U%iPxN{
z?L-|X>N;T)d0|q5@TCuu7@fK^ipU*WPlR@-b$w^?`c5=(q9yChu~Hj4(Zq=iiN4{)
zn?jNVlOuUjgf!yNB9b&G(j&aF6AM+Vs$mz^rcPu!aV<NknG=jQ7i=NOXq{Z;WS>l?
zW;xL)oY#uO{4<FKN4=4p<Ak@h(vv3FiCibzIB_S--qs1#iF_yWoM^{M_Qg=x-ih@}
z97zX0&R<BN@GU1gavC{ICpt-L7b)IZu&`7izU{<2PP}1Hd{4?2*7L4NSRreBUy5`W
z>>+uU56<fCL?0(6Ix)$KzD|BHkI$SK;>3qeeB{JHCkC;5S_0-p_j97Z@BvPI>_p}9
zcFHrWMiUG9Cr*6o#9$8gbb?i+YV@+cNk`PAKqz4-XUU1>lTyYzG2Dp}PK<Hl3nxZ8
zG0KV0ofs{pTJ^WjxTt>mnLQz|W&hI&Tc@Oqt`;}eiE&Oa$vY_FS*a9O&J5K)vA6xi
z{-qNWoFHNN%89Rq&t8<k=r>MGc0zMP=VsZFGsOv~6D}vFIx)?O>0HWANy_dVhmaXg
z6bPZP`Y`+Hp-CieCp=F0ojlzl#Tag9X0H=ICysoQl$z1<>D)9*7y?cNod`*`tIJy@
z4o-<3Z8w}Sov`;!nCV2ZA@(pw{cggy!Z`}{%ajsT+i+&Sb7Gbg-?L6NX|@w{gfyL(
zaPr&M3ofb@&Uaz~gBuGOoLJ<<kKBDuEao1eOBW|UgU1g}ERpC^!4-T9<izHS>T(Y1
zY~wkX8}kUbgNv*)>-edByEfKYqpN8j=+C-p?iwf7a*EtA-1u2kf_l=|g>_E+BGF%I
zSX?OK!g?oub7F%CcR8_}>Mi_tC;kw!iKalvW<l1o#fhyEzD>xVP81#%y+fiq1q)B>
z-Q&bwC+<0M--&%r?04df6K5sEUrwA5^0yQJIB`HY>pvpopx`0F!%h^QGR@SZB01*7
zaUqoOZk%{hqW`idLjDsx9mzAnX&qU7PNFvi&pUBJ$VDeE3As!oAcQ%uIB_+?10~v1
za-ADTJi^?J$ZrX`EqF)pu3+Io&<|+mCHheCk>F!N*7ih5p{I{$!lPW4Whml8Q6bTS
zF@lsAbK$!pmK#Tg=UiyuLPHlyy70UUrCca2+3LAa#)ViHUUZ?V3vrRM6<mlHUN$0u
z3*{obybCkMXDe&2D8fpDFSt-SlBbFbQ;S%>T^L?+p+-dhvXE*nRF6nrapBbnFI0(|
zF4S`2H5Y0}<Owd+iSW9v|97gh%>_l|g@;-nXq0J}Xrkcjg7pP?0R9^;yeT|SFv*1$
zLXurbaiNj$rh=)0?0K3C>B1WeHi^hHTzE;fJRLWSNSeE_W3T1*B{L#v=|Wb7w{oGi
z3)vFQ5p3f^u8^wZELCh9$yvNN+PTo4LA7^qp^FP$B}sK5U&vd69R)iHvUq19g<90j
zh3*o4TkxGoo_B@3C-}Z#j~XR<L{fXY&`Wslh@_7T*Ti?m2QGZ*!bdLjbD^#q32yXv
zVSo##T=>t0k6jq(g64wm!XOtuk>Uj|eConr7sk0TUL>EnFfvl}5Eq6<_%I>ET^JFO
z6i&z}iGJ?FXdz<+zYrWNxU|;)JluWh!eo(f9wxZ(mGG|xCr0FxgnT1-^rAXN$W*~;
zf-F1Tg&7gve{#G-xHBSgx!`ueBT=tlK+q@XccIY30_zF7_$PF0V-}w0Z@6H(u*ZeH
zE`(k9)`hh${LCFBc^0~`NXU0C%yQv-;j@WCSjikAa|Mfwv!waL7f`$86#d06{NTb*
zB3vT4f*VB0Qo&^|EEiI^M>dAauv&&yF02;$kAjpG4q=T8{r#3sGOTl9ql?E5Si||n
zg<m5%*SqkW@C^}3&z|_hg-sIOF1Xo+KZR@&+$zX=wh7@*|8j)Y%8rP9rwhA;?-ne)
z7VL|p9u~4+@Grr?1^;p3fDl%7(1k-0Ug)ObhzmzWa!l~J3n#dz#Ba_?k^CFUPj^VC
zT{z=Hv>P#QYrJP&xa`6e$#72aybBj1`7a8&BuIBoSGieScr4NDf_DX3&kYxDM))lu
zw*~LGFh^F9dG5JzUxW_?9|}_bi1t|)o&1RlPeuMLk{ad4nq$R_NN<Y@QYDJHQQVCx
zZoKG52@$evIX9jYUeb-{g_Lq5PDtrUo-#sW1-p&0lq6nwSwRTiJ``VG2vaM#Q8B_R
z33)-VvipDj+Nw&lhTuzrFAK74H6hgnUvcBrh`eu&5;cX_ib!4)QrnF>LMolKY^==<
z#f^{L=qJK@ZX~+#x*K+h)=am2jn#LffkgA&XefljW^TOU#+z;=i6ku|Pj(|kcq75o
zh<utDz;rhnM<h*zWC%7DoI5$Kxf?Cq$aJHnNb=ms5|Sgxc3Zj8T6lIu!Y!5?;cbMp
z72G3t9qrs`FVPNysvzsxaWeibH#)k}$&Jn;>?PR6&4Y|ArDf>qMz;um+l_Z3{9Pfn
zPiDLyk#u*XM}+ru|Iga@j!60l=_~kw8y`mGrJlw1cVmDX)7<<cIX-q{pc~`d81KfQ
zNS+~Xd=lZG3K=Z;nP8zx4|QXh8^c91LU1%SM+iqT%8k#3ZxwH+V<Pe|+!!nT|L%(~
zC0em&B1=th<12}NEjZDQNkYC6oZ`l0AvEvIJXLt1Mlm|W4WCHJ3xqfXoo=`ya<?0v
z2=@x1y9B?GfM8HCB&Z3pHv5!#(~Ynj-?=f%jc?u9elM3l;2!K1&Hrf3<lN?_pPR3I
z&!H_)X1g)RZG9QC{z&dzH<)3b;EjvcA3Eks5>v-j$y?;cV(OI#*&h7h#u8@pAl8GW
zZY*=-pc{wWSnkFOH~wUcZme`;l^a{#*yhG+H-2>ESMHh|<tLgEH-2$r{_51Vv=5h5
zJ`t=F^0Oe1siEZPh-hY*)zZG63MTJ$e{*Al@Qo44??V0%+~mgQh<uBXkEciReGbe1
zJj>1(^`5m+JKXr&jen#YJKfmj#%}V`${siNxv}4ky>2uw(d>&K+Yl#JQQAW}G%xKh
z4sBi<-;o}0<G=m!wJxa@KT53d(0Zsj?8Xr{9=h?!jiYWHbK{m9x7|4I#tAoWaL5hp
zC*AnhjRzI%*EtWflvAw4jo$`ZzmK?+6Hn9rUrab7c-D<`Le2|bcH@GOi-MN~nR!CP
z=qtjn3SNuIJ57mtvucTZd1Y=!B>W+4^DJ9<Pjc+VggY|oyMp%w@3U7zR(DI`x;%E{
zi5o>di1uJ)zP(RH`%_u{g%=Z^xe?_-5f8{aG`2H*_PRaBgJK>_b4q$JzEw(b4@!9O
zN=5sazmj{Vc6d%WqYqX`KVQlAya%N`DDANZyFAa<xT!6rj4jTCcn@qIC?1sc03KBJ
z;3W^rdFa<3l{|RCV;zvi&a+en4=Q@_cb(iVXRJSNf7{Sr*@J<H>at5!Jpa>>7ukd!
z!?C>VLG5wTH9WY#F}j)uHLoP_N4@GEY=G?*4_>9Du5J3w1Y%7O8edXtdH#0-z-ufR
z;dMNyD?CB4+rB8aTh9Z#2WcLpdywdX=WOw04^ljM-Gllb%Onm9#We7sp$Bhx@TLbz
z9#qRyx?ED(tD-qdkzKh&O4##8l7He4(KDN;rFuX#PBdxkK@$%$J!t6x^|oJ+#H|++
zGCXMNK{LtU+=CWED!*HAaM6ZrvDmr>Ssv85Vb2J^k=!MrmB%^}J-25(-~8lwkn6!W
z9!&P2jR$Q#_{f8P9^`q@&V%<nc;AD4JWj!bt{&Xkr*!Z@^&sDaw>;=9NgX}-<dRzS
zsjU;&VzZt6(EHhpcJc6$%Eq#jE~zZo&4ah42J&}2csIfujY;k9K@Sf$g`@j=(9?r4
zwQPJLK(*;5d3p=>iR3pgsULVi-Q&1Elwoo{`+G3JgJB*F_uykLx(C~j7auALw(z;8
zgFM(;-u{UPUsY}SsRx5O=h-b6hO$57LO-7}!~?$f7`#80c>9$o?~#;Jm7+&@Fwuia
z)N>C;dGNUhL+jf|dvN1a<27Y-zdH~+MmVEicraG@xQJxDkS_%%uu&mjM^dxiv{7C8
zqY?-B`7mXQ2U9(m<H1}Hrg<>k1I+{7gBczaP<hxl4;-Rh)NpEu(*u_W?yf1TFR5-S
zRgQAARN~G{>fzBzEo#S8XM7%>_KAQ8K@Uz}QbQh8xvW0Dq!Jrkw$Sjv^x#{n6UQ}7
z;X#-6Ublxm_|s$Wdn)-m*(uqVRobOl9(?b?Z0d%b9yZI}jwd;g&+}lu2fujms|O#P
zjatB6@4+G|$X|uNN>CQ_%O9G3UIje3tfoc3l{VnAx{TX)jGU+-WH}c--%iO&8Qm(u
z)q>naKYH+!@HG+1T57xSb%IwrSk`sD2ful+h3m`BrP?>p!o(&0;lV~BzYF%95kui7
z4%u(tEJ*T2m1L?=-3(=$HE?`=S=BGA+dbIf!A=i$d2paz;%@Hl3}xkIb@yeJQC<p*
zM=AR}*w4KdK(he;qP5{{`w;Nq9~R+CdExZppa+L&ro4FBi^Coqk(s&9ZhLUdgY%+q
z$2~aV!8u79G&Sm^2mg7{XldrZ9-QKE%I0uo7j#YOKQ{KX2d{Y(8P0fcRyfz1(MRuR
z^2&9=gNq(qk~*&lQjISQxp-M6zv{s?iEdsP-FIZt4Q^5oZh3IqgXg^{<;5Kj?t1Xd
zgD5ZV(H?s6#Dk|EJn-PTE9yg<ng(|L<95VH9z6D7^~gMOhFVwDYW>>R9F@nwXb~@p
zdQr@a;$Czcl^0FCqV7pejPY7EG`*r0mMY;zNiXJJQJ?c-$Q6}g`W1EXd8>xfUX<~o
zoEPQ2h?P=tUc`H`S<066g0(^9$3^nqh`i?y#8&X4q8IE*RWB-e@q!mG5-;Rc_M*b7
zjC-Y%s|ZQ$*Pi|PeMH{qk$IHw>D{VvpH|hpsP4r$FUEWEiWjeX(Z!3dUexfSrWa{m
zq<c}z%lXH{3ATUt+iH8Ut$kL47d9{IcyW4yjq<u)^g3)2#fy4g%UY&-VHeUskdj0%
zUXSqlUR1ddM<GK)5x(K&S+Z6^h9n`$UZg}Mjl7s})6S&z4Wrn~%n7!}UUZb!n|P7I
z9{y!(>P2fWvZY8fFPaN!A($Ddr=^fA!B(8-PEmy|=7^+&7r8>(2(}f>6Kp5Q%<Y8~
z7F31j3%=z=ho7REp_3PbI$53U?8U^)dX(_m)Xj^YoFXsY_Tn8c-u2?8O3Hg)yzj-%
ze^SZ2bKM`d@8QMoZIbU@QTem=sX1BXy}jt;<pD|<=0#sGK49fueB#B2UVKC~dsUfv
zIG6SJ^WtOHUrXulMcJ$B0Kq9)iR2Ux^dfaz8<J1G80^KASCni0>J83H{>+Q2mvV<t
zn3c>Hw=~Qs6R!;SVuTl?z19!(&1)(ny?Ae4+UH)(I*>Zbi@351$!qb-cU6@yUQot(
zG5t=HFT5D*MZ#5;fj^Xg$<8dcf6d`@)!3`W_OArDE{m?%H)fI-->?r}Or^>_vVT-9
zG3}~-GBxe0eLzuVnirE-Mo;%*2IsRuoWCo2sLD&r%5a+(a5oiGnq5_0UbxA9c-se$
z2><cofEQjbd|vpy2zar=%VV+-^diKbd-1&&8#TM;h2e!sqclB9r}7lU9V|#XGP+H-
zt7_PbZ#l7ZQl8dpH<L5a&d%^1xAUY#lG$F&@nVq|izR8U7xTSXz*%izpXbHav2AX*
zw^wU#XOy^*JF&fedCyiqc(KHb<z94ZYhNmrv;JjV%B$-BQ(2y?Dx(aHuJU3vx0M%v
zdhw$dKY6j<i{HFh<HcGpexW%nNc!1}bquGo#{8T0>8Li}wzW5C*q#kB=~v0H_^P^r
z!=$b7Vv83X*Y95Z;l(EDCsWxX+ubhhrnR$g<>XXI*>bWB`RbGo+r8L9^Ww!`FaP(E
zw9|{-Uex_Ln{Dlq5wW?_jyM+CCs7XMFR5X_)K57(^Eaoltu+Y;y*NZG<U>^-4zn{}
zJfH#b;;0wLytwSe6)%o^al(sFOO-h9#Yr!n^I}ep?X=gr`#t5we>6c=ZJ$0$2(C|R
z`l9Xm{>m9I&PwVzDoMO8y}R{vFuIIw(zfCkytv2(y{cZKO5aLgSYE|;)yvblaf_R}
zsO{(=<vO*uo9(64=w^2kZg_Fii$_=0>lrpiZ}SpBg}I+_*K6Iqf0$TrVlUf0k=z&D
z*~a$Bi^r_Nhj<^Jc=43G&xaB|Jo6&Thax@{_2E(zt4sNHY*pT~Mf*^#j1?{BLkt5y
z39Dpl5odD_QkL`OzYisSDDA@!PZFN@(e(+~4YtB;$GR#HHDy=BXeO2MAy)G6S)j%*
z_C6mdWqqjR!wXU&e3)OLmh+*!5Bp<n3>Ab_^r7o)h0&baw#tP~-!5K7NdHE*GWQZ*
z^5JE+=tFaM(ue9kB>M2W53l&}st<L1s7uN1gk3SV8a~wYp_UK)6zw%19u2aQ47isN
zx7uFYhkv`o>GiGe;u3t;C%cLdHfiODy9uL8+3NW)X}FESE`$?X--iZ1yy3%}J~Z@U
zd{rC6y*hE*E3_p^@*&xWrc%S$uGUnf`0#MB!qCWvRN-lY=@EHjADTpX2G`<M8#9-9
z*S0gDwD2L*ht@u1`_R&dEFZc(PT2a2ZAT5;;8TrT`S8-^gw6wP!`3F{_>k*ECm%Zd
zu%f)}!P~YrKD71Wc57RU;<h{=_T5NmC)i%FgCK>f5Bb91iby(2ADF~vsAppm%ls7G
zg=^tM#!!XfhYyu^e0bM~zCL{5!+Tu!`AT;mdie0Z54>p%RI+Xzc>~$ghdx{mhuX`B
z-aa&X7e91q%MXNz{8;FFZ{~+SeB{FzAHMLRpAY?g80JIN*KG#)@Uah{`7p$Xjp=Cv
zefY$OPpP!m)Iox62eo2gPKLo;uWM@NHFc;DPt$WLIoLdR$E3t}uBpR)7~#W6AOFUZ
z!91V)Fv<s}GFSz#siS=$wm+RZ)`xLEIDOW)uj73@i4kA>Fwuu8*VGA||LY0IKU6+$
zYWvEX-lXrZsgr#8hN(VGrS^WGG}(u5uO}>7YiG`W53CPCxk0A+FkRGOhSX5t!<uVq
zFPqIF!kSGj-Ec{ZZb6R^?+nTI3ik;%(XCw;^daQKJwNXIq4}Wu@R*y|2g3)`hhsh*
z_aW@V<y_@EA7-&9KFpLTFEkYL{_}fwGRr>ShXp>&7Cxs?l4YMOWS$Ruuc^$l(1%4n
z{N}?3kuMhfMeql<l4W1w!%`oXv3pcAAAaJXM7~mRwcsire?N_4<{u?m`>km5wZhj4
z{`~*RnZyjgN)zh^3-fRE;ddW)h~y7JcCY4J(VIB)Z?)a*!xkU5N<FOMPa)g>ziPKf
z`mj^V?($)`4|_OF-r+Mza_;ltuSgC1Bl%g|-;sI_3OOQph?f8#3j0<#x}%Y@jGpk}
zqz~78xK4ZG!zmvw_~?Au{+|!0g`DF`O^Tu9j1NB#ia9GnM%($KiRUG{Vo=OQnqRJ6
zB=xG0D}pS=z|1#%xOh#y?ZX}Jh3o1~A8v6r2B!V=XD;zBRmErdnw))IwOv>5)38YN
zfe-DjtMvc)Mq=_K?z`)j%gFK9)u-I-K6w4``4Qzu^P2Wjew6m3h#y7$7(cLGv>)C^
z)=T>sKZ^NL+>bBMD9`y((vO(b%o2Xwu9K);P5q`q+Vg%iY@QjekVby2PGT89V*Tjg
zhw8_}6HVg$XzfR~AMt*a^`p(jH26`&kD7jz^P{{U75r%RX9h!6KPn2ZB=|x^URg*L
z!596Q)-$g#|4SlyS+JTP)rBzW6+d2$aAw|gU9IIumLH#{wSUcz+J4mWqplxs`jO;E
zf*&WZtFH^%1QkIF>-k~#Bhe4mz$n9>3u*NwwSizm!8ZgSNQPuTQv7Hp66S9tq_H2V
z5lNbmbV2rqd7Ai<5lL;zDZ25$wwn9VLgbl|)RsaxrLANvX?^op1EV=I&u#q3_2b72
zX_WBMxUC;~B5&tMdm)r(rds*y+)(rVcuRzR{kU{9t)uX_{pjRJXFs|~w8agzn;%^x
zWqV&t<JxhU@A&bqOfP5SJwNJSOk;RoNO!>=e)NpUdkN|7M;{?wZ>Y@tfgd0G@sS_>
z{21lO=TcjL!2x~@y`dJa@5g=&^ka}8jvMMHlneP(aIhfdp9vWvon(|@m`H{Tj__lo
z5Y8%-IQG$^KOD#yKfdr|tRLf;L5h#3hWjy9_=L!)CkgpV@M}LN3SswH)i;qmll_<?
zoUKqkP5AUk>I^>$BAm0w3{F2>B5_CLo=6_Q9|1q+`7z&by&4Mo`O*V3{Rr_A;J2P2
zbUzl}P)*^6ACrez?+_>nOMa5?IAc?zzW1Z*p`_n$sIw$zOquA}LM~<6=lC&~i=JuU
zTrGvTfED_2){k?3Eb?QqAKU!+(~lqgSmMW4sdlL!%cS_vek}K6g&%7r%BENPu}b)<
zzSg(dtEqv0_^a6Y9Q2bPYy8%?a~Df0Z&tM5dMlA1(e-|0U+2d!e*7w>b{|dIB4oWE
zzX{nOxKZ$TKmHK1NpQ2^(Z$Ue*cQXbgJU>YlI?!%@Z*3V2mRPd19dTBzaM}3vCEI$
ze(Vtmh5P*2D?F!p2BS~cMe!{e$;i5KmrK_B+mC-F_2Gqt4mF|<2|vM2=f`0`j&L^0
zTbYka^q8a`7i22s4FCG^pYT%=35%Te<BUWDUt7fsGoKg9Ex`+d7X>c~UiRaP5az!s
z<eK1h!5e}%{dm&N8pUlt?udlbem6oWe?aY`eG9-Az#~5%)3yYFfc4?`6J`sbSO8D`
zct-mlK#>5VC5fqy3HGAG2UWE5wvCb<Jz|OnP$Gb$j}u}8crJjF0h9`$G{a1V!si3n
z{G83!(AMxh>#t1Yd>daTfb$EINTS<B#RaSz=6JyqH`H<gln<a<0M!H5{{<=pP&t4q
z0aOg2QUEcnGF}MKbyQ5XhG`E<m*pP>UJSswC8}xwFG>FDZ=^lyX@6OSEKdIW?x<G+
zcr}1p0lXGKh4G0s0=RFc)(qg@4K?njdOACU!rC|0+LBsVu#RAhn<|r-VK8rBU$-k9
zd%*hL!5+ZM<lK}1zT2lH2Jm_S^@TSOOcrbyz#Br|3?NC!hHX*&^(5+_sExiv7Hky2
z)edF&(mpjnui{7#pmD%@8I=*R-WN3qVBPE4jJ|zSWpw3uTk`-~1TZLwPlCt{pk)Ae
z0=OGMRsgL6a0lQCpmhM*0elg_*Z^_@$PM6=06q<%O#p2JIOA0Y1&|j&y8zw~pnCxA
z1LzPy*8sW&(D(aXHNXSg(J_Gh02&3`>Myn*byMvWKxe)bebl%MTimCV9-TV>{gmG>
zHz~Nui$(6+Z1?>XmVGyXcLJDwQ|&t{^=J0^rurTSa#PJ4nL7TT+#Uh+=E4QgGk{fp
zx1TpEwO0TO|4n_XR{OpId=S8Z06q@j!vH=CpkDy}*|8-lmv5>ES7dJ4)c)B`l|7j@
zJhl7RNsJEUM47pL_1u_ejfX8uNlCHZcMT5UGiu1igeS2jh6FG)fX@Ti`S8tQf+GSL
zDP(v6<!-5zkCJF^ehN8*a!Va8lF#O5j){<QRLcMyRF$Xk-D2u}8NkE<CIv8oGZs^i
z;VU6uv$u`yjP7Y_|0V$9RKdvsObKAc-^p!{rx2%!kg3y!%n&RH;FrIXDRc&4UPy2W
zKAav!?hU{fz;6L;2*4jeAb`06%nKkGK!{Tvz?=ZI0Q3N6Qo-00{<SB7FcmUKF$F2<
zUnc2W;SZ}>zx2%#{(U61N!JwSp{cYDO6!nbmi%D%nE3%L2w-&pKXQ!%SVV1S>+-Lz
z#R2>vlgxQuv`?8ZKv@#NQjshZTpmeXA!PS|Wtel7aF+ckfHeX9Ox+Hk;lw<?=YMfr
z%e7R<TdLNhW%V6tzXb3rHCAg&A5SBblh?DkKGtdczuw8&7{KoVTn^w$0DlCqDS$%(
z9Hw~*U`qhI0@xkE)&LIyOWhv84l30xbz1;`2C%<P5_z>rsZ8RJo5d27cLp$QPs+Gk
z>Yf1hG6P@ubB1rJ%)CzuF2AMPD%!W*Qvap_ysaK!H}+-xBc)E?QYkse%{VPB(V2QA
zfTIEY8^Eamj&YVA=InTwLp&b93GTRuIVS^n@-V0BZIxl{!<_#l&zS(u25?%En96MD
zXcD=3Z>twLpCVx;^>3>eMM(K2$xL#U8P?eO$@lF5t_5(Nd+N4&L-3`J(KiEl@hycJ
zZqW$bR++?{2X>XYN25nu5k#vX9&q~v@MaK6K|BiJG0j&HU*EM)_#o{GEq?&dsNo-^
zt=m;5Du^OM)D2?qe0$L#qJwxoh*Cksh@?ai&jnFTcyU2y<Bw>>l0g&_%1KH~YV9EE
z1W_iEKQ@TCAkQ;L*&q<)5#OjHnac@Q45GY{3W98i^)OTt@`4~Me=&%vLA(;gt0H+x
zu$th@f-G2F2+NY!5ME2LreI+YnfjVUnTJ2Tel{~zzpZj02|?I`P$Hva=6aINE|@6D
zvabta>b_;R2ArtLwuXXl1hF)~9;4LZ<RH?6XdJYD&q@(&6hx|!g>#bAf*>-9d$38+
z+RM#@;0;nn5KV<N6Cvdkwutb|AX*B)dBnQgX&pp%5N`$1ku_Jc=SWh15V=9L30gmM
zw+%v-kQYR|Ale5lzg-=IXxqs8{jS`-Bu9Vi0}Q%OBQCwI?!T?>+ZNR+h%P}~xUF^$
zqQrxw7fO~mm6g<$l?U;55bsb)?x_8OcsFSMA@02(-VgGSmT2<KZ)3WPuul*@gizQs
zh+YxiTS!c^sJ=lQKb!YKME+qA9|=#3k7tqoK@14u;~?%m${ScHFRw5^lkQefJ`G|p
z)gXkILij9*Askc?CxaLo#IPWK3F6lvh6gbsi1|S*2x4RqyzGt&;&UN=UyT|a#F!u)
zK{$i>B8ag;d>O=qAo4pa{|$^Onq?ao#P}fkEJ~U;*!JQI`&ZmALCgrEXnEU`mu(YS
z)y0I$chpHiFv{?akja8m1g8cuEs{E&Q}?2kt$<sJ|F~D%ygFEM1>p|D8^rWDTgT6B
zo}l&W$$m#=&T(_&eL?uCW4&$7pIP^lfgplGgrvA8_-zon5JQl8Od;VQW)HUh*FQ6e
z??f^yh&how-wT;d&D>`F-F~h_=Lrsw!vtvL7Y6ZT5I+S$z9@*rLVhTW?o*ZsSt__p
zaCs0bgsc=~sZ~N&)A-y`8RhpdYov*vgIG&*RKd>B<R9x(x^+S8I|@dB=n=i13mwF^
zAbtyCLl7H-_?-)MN8QAoHNpOe;D|eFuRGR15I0NG7QrsFGAZG3{tV(s5P40Lwg<5z
zh@H|X<@<uz72&&s*du(eV1nEFBk+FVe?{{AE##jd4hT6Ycqo#3SjgHb(MN+g7R0Gp
z_PKY|<I--UG0|-OUkYg|Lns--e?goM;zkfRgE$k!*&rTPvtJ2f{T=mOkWRsHfto)v
z`a-vqi!^RI%B3JK3+dA;N<W&`wvFOj6}9NP{i+naCdeAD2XXk0N^&cR+d(`I;z<y9
zXb0T!511#2yR@_mvhH!4R8j5+u_Y(@;vMywKk-oz4SsENrl!JQ>qz+P7;mMX(yE7$
zu`uQt4VwIR85Kg2koBu5qeVlA4*gFaBjj?&=;9$HHLbVgl)XfV9&ByBbj#vBA3|&h
zaUneFRIgOXTG`TqWkSfSZGEvHAA&7ksp^g@C#0+(1ZmC6hfslS-Bl}wP&tGuAyi_)
zd&<GSF)whZ-%?H(sf@lD;^E2m<mO4_CsyaY9744adWO&|gz6!@!qgC&gz##}QsCMl
z>o;qDfK(#{VokwXA-pDplJz$d>V!}?gamdYgoYu!5rPszy%6jnB!<vpk^RD$=+k4O
zr>seSJ%supGzfv5LM9caruUEeb6(7woRbhzC6yVH*+ir`qm4w){9D%~r-hI%QI^^#
zHD`p-G=%&R-U^{v2+c#t2_ZKGJ}<Z65JG4fqQ``&wiWGJArM<}+J#V<E!hfFi7Zlm
zTxuImT?p-%hto1HmH*yd)G3A7K7_UTWeRzR5LC|CU6p}J9Yg38!aHnwp7l*mXIZ;0
zA^bR`p6{z%O1g@qo8a4mlr!_YQsh0s_e1C|gz_FCB;Qp@dWX;_gfBuE8$#a@J>_9k
z2#$V@J`CZb5C(H`L+BSm{}2X-z(40cjnDb>U{uX6X#+y|xP|@WkadfjcUK)Gsm$<6
z2%mC*cU7h`x-HB4!x6)f5Qc{6WG!=;AjxncBLqi=Fyl@Vg`bD4yY$f^j1h9MV;M%P
z{uVthgvTwC`Sdp_gz+KV7-au4gb5*h#p2(#nn*nvm-2N8BZnpo9cu3qlfkbt#x!a9
z4aeJ7=}xaf9D9!SI$~M~(?eL<yZox&<!6LYK(!fAuEBtEju4z7WW|+h6<5v`f;)sW
zCvf%zJRx|gu1m3aDSRRL*^PyGvJim~f+2L64Rtm`A!s2i2xDOwdI$#hnt?b2W(Z*}
zv5r@Cd>g{d5ISn;q~W^|W^os5D5~N65N3z4mzy_)IU&sDnuhQbSCFf)S@|J^B_Ygb
z<smGj0yq+1oPk9g><d{(k7h6Cl5w72$s@0_T3N~&<IqA_#;`nfxgZI@AgwVzX;lcj
z7Aj{}S;sH0=3a0l@^s}jRJjl~hp;7tpF>y|!iEqwhVTn#b%(;RUdXS4V}G|KzX^9u
zP5hnBJ#G0%2%8uVW%DE}MtR^H&+jE}4PjcDjO`)pplU5pwuSI#2-i0%*&AbtJK32K
zc89Ekwie8{9DfiWSI&BOV*5Qb&aoERAHrWDTw|#a{tn?Eu1E-HLpTt^!4OV_a598L
zAsi0jXb8u+Ni*Y*u<S=E<&I_(KUk~GxT`kWtQ-$n2gA<4s}lbW;p>Wdr)d1Cw>y<9
zo0JWA)zcyCJScuD*7th*vo-S0g>XKEOCeki;X=qdI?}g58T?E1#gKK1GNU})?22^q
zyO(q6c8<NhDg(LFB>hGRH@Oi)c)+DurQ8bPP6&5}-wxsU&{(bo&rZBYi*Zn?)H|vW
z-)kN}W_9vI8fR)(2v2C}hQ~e&;VG4*NqpHmx#*fP@=!AI=v_5R!>Q}JH}9&^8e%lm
z)=)=7F%88vRMb#OLkSJfX^7Jhuc4%d=QWHi(S`?XR$Q1|N<$e9u^LKK5ASA|yr(X%
zm(h1cs`Ibx$$5#)KratvHI&n=m4aqDeW-s=C6?DvL9<RIzTZ5aXQIw-l=p&$${MO_
zcu7MQ4UJYR9NLRQCe_U28Rm@g^tqQcRM+qd+r5xoO~d?E@tn+8H4Isy)YMQ*vlO6)
zhSv8~lGilrB*QWHRGwSd>z=yuL2g|Q2^umrwA5hJplEngLlQf)J+_{PL=CUA<^_tK
zW8_J^J)`PtXrQ6jugV)5re&lw)Zn?Np3P1tCsNJ>29q_UXh_%4n7!4Is)5a=X}EM)
z$xP4VVWfe|c|YA#_uNyPXvomeoHN-x{y>YArW%^Dxs3{s*6jSGCC{wm8M7@|Rdyc3
zq!x);8d_=mw=CLoL>jW$?aais8ftD;ax`?lm7S~MnfM)OqggHtMn<)Hu)cjB7x94d
zapf##?sZV<py9_mx%nK$K}FRNIA|S({g#Ha_f+};p|6n68oFrsRl|A>T{U#mP@ut~
z;cX4?XnbJDV9u(B_cVN<;X|%bM*902>L1AIsiC`uCFQbs#$69~Z?O_}U+tx#H<$9h
z+DC)GbzbX?^u7|MVpI5$hJLargEaK#+}>9|X3wSb12mkdl*b{^|HADp3deO}tMZA4
zH9soPZBSM%Oa6?jtYMsn@fwC|7^Y#AhR-z&*D!)TyswVbF#E5RwBtD+WTvcHma(jY
zof_EXurgZ17aZeZg<*`WY#|>jLYkm2HB8VjS;G_!UupQ7O`K9DX_&|iGZK%DYyW7S
zGUUGc+(PU7&u=v3WTv0aOXn$+Q#DN2FoU|GVNgmukB=^xpFHipy0^M@#@)FdQBDmm
z+GKW&T0!N}5YnJ&@N#Z*(rEzwoX?*XAE!vXYy>pRs0Iaj_A<Gy!O#%a@T~@uVM+4L
z`|6OL3Q0n<_?a~R+@}kZXR(QjdApm(bL=zAXYp*eVP~`FXqc;ExrP-Q=5e!VSfpVw
zySgcDfrf=L736f&z%xkK-B*9$YHBEwm9b2-Tum*Nb)nk}9zaURRg@pPudbBkTccsE
zhE*C?Q@cdrf8vT9vknO5j`NLePxJCKm2IIivwQM7A$B90(O<ZBxp|wmE5B*jpy8f|
z`x?J=!tWZ6XgI3j56v=V+coUaut~#a4L9$rTQqFbkk`>(`hmKY>pnj_;eq<6NGPn<
z%D$5`rr|FQe{0yy!5&lgXxPjB^+4s>!uw>T)S~^Is}6bG+T_}mY<ju+N5er4hcq0}
z@Xz5KN=_fn?)|_zB=E3?JsYfZ^N7bdY7J+&YpA6fPD;`#4Fmp4`Ik$4JiF9hh1ZCZ
z53>K$aGD$Zn8MS}X-S@|mU~Xac@38}Tw%x7Di;JVX&C)Ly(s8;pq9Mee!}(kS2bMI
za7)8&PRp{?>l$uw>blu^^ksNq>aqLTH#O^$L2`%d7@KidQYqn8oBB3rdg22O4{42c
zl+p1>!(*Cm9VK-<(eRXtHzP4xw=CN;4N*FZ2(QpP%6?EOs#`80Xd-6LN#$|GF*=Ir
zD6V5(sWv5aEP9~+@?SPJcFO~`VRTa0GFcDm$8Uc>`FR~Yg}#(-oj>1Xg%YbHPDf=O
zRdmGbD66BqZn^EKxJ-d=oeny2WNga*lyW+VHGfws=%}b;`{^8>t653M3p!3bP<guM
zt>%ftyVzfp?!CmGtWK_~TZWyjq%_ZaStQkT>$qAT4f@8E#8-9H(DAm8cXZU$QA<av
zjx-&w>8LH0e6L6I==C}}Y&sMjb#+TK69l^@$CESE)A5E#>^c%TF5#i<^!hqKdnnT`
zDvP{<4q`*WyeWxqN}ePg$wE?eG!nwv9z3xAXcM=tLAs8{Ix=;%)bX^ly@`$t9ZhxI
zkIkC9Qz`dQZKhi;09xp1&e>R*%)>K@+)5N?>1d^+osRZ8TI<Nx(MCsG8BvaoTpix-
zt(uQ-&+X4&G7j9x&11D6#8CO0q~+0-8$FnG(5+qBNk?ZLs*Zde^wu<DT>H0lv?!Lt
z&`}7_tnQ+tt8N|L*-gi<y`$K9>It1LarySHN`6<zdpb7i_+7{QI=btas$&{;Mn_K_
zBXo?^(Mtx>U&jC)y>;}_(O1U@I{I<=|0v};rG2Q=V@2XeI=^B~qmPxJ=C-Z>Zw}{y
zH%lMu7^ve@9fNhtH^CqspRi*GEI&|_7be$wsL~bGXCfKO5$T|Vry*S8hbqr)9<E#G
zqn3Upuh*OLjFOMyKy-YmV}i`pXqnhAxcYx6V>k~xESCyn*^tP`vy+)Aym06Xl6lEs
z(pNer>G*~UCPgTjsDs|SNG8i7@>(`U#}8#Pdd6l{x}UppY{qmQGjuG|v0O)i4u_8K
zbj;G>)Zx;h>Ckn!b$E36sUciA_U%!&kNcDdv@TFOJXBZwmGf2e^q`KF%acPo7VxC~
z<;f@ZrQG`=`QI9LUMUP6rjD?VmwQGr`mJc%OdWJo(Py1i2?_Cg9kW?n$3h)*bj;N;
zU&nKQDmT|FZ!Jll#|imeX?;I;;RdC8-LjM{(y^Fh(XoV!_)w)|J36@|S*oK%lk^!a
z;%-e(^gdL1=roVGU!h~Ij-S~{?rR+vljB$G;DP)<>G+Y;*fwwZLzTBNYjo=X-ojg&
zbvnkcQ-0O4p6XG%>@T|Y-=bX)RSJKTwcfyq`Yo2q7B1PQWZA4gbZpXbTgM$8n{{l_
zagydm$5tKNbo`^^fQ~<DG<59Iu~$dK`Pn;k>|{4|>$<FDChqw|Ny$ptP4)X-iQc4i
zZk)bPH1jViKezT0WxpU#|K=8pT~VeG7cWdcsN=AXBRURoP8KFp^Lg)alolf??>M)1
zsjLy_vX4>Q&t=nIoe)jnglDx%Ii=%29hY=m)^VCj)g$U0XXBJ|hK6pTa#oP!{6qD;
zjtgA+3r+Uj$&HO`bCEr%nK%8oa)p+5t#XZ%!y!*iyvptKICsN(<%W)%I&O)cTz-~K
z|8DHYmdaUlkde?O^RAA2I*J;IHgKPti*}y9((#bSpEI^Yc`W)r>S%27>~s!?CX}A_
zp6Q4(Q1p?yytAFcq&MS>7}lb23FzD^#y~Lx&l^ZWR&m3+e?EUByQBeL&`TJ2&HzsZ
zZ?-F$QOaL@q?R&J+CUitwj<e{j^+$cjbFJ-DYqgy-auIcADQT90tU(%m}g+Vf$|0_
z80cZ3r-6zFDj8^QpoM`K3{*By*Fb`SDh6IO@QQ&~4a<uh574e^;3Wh0_^g)=R5$1d
zAaPI0Hq{LLcQ83;YU1oVWhptkD7l7#S_WP-Kw(V-8IM#JuWew{{OptSv+Ee(aoo$Z
z(<yxWk!mxb7)UmdVxS%?H_*Vau2zW#9?j3@!R+-7ye?HS|41IRK0T4uHZ<^tVO>Mt
z6iniXnp<}i3~T<)X=EUk?HXumAWe!lHqgWX8%>w7@VsK49L@?E*aZ8-n$s2~H#4w0
zHfziyHPb*#104*gl0S<bFpw*}73*A-+}c34L|M@PNM*0u7}gp1?F{hj@wNu?q|fYX
zn^GCnwDtx*&Q8Cam6C7ZEd%dK*^UM}$uz!epfigvO73c)8~gc4?ZPFfoW<gA%e=i~
zfc-?}ELP4w^9*xhTxJ~ceW{_lOc(X1mx0~}CK{MzppSvR20k(Hseum+d}yGbf&PYd
zrJK_^jgM>}v6T2Z9Uzr(6a(2$F3>uKVZjn*kjU96lLj03%)n?CH!#GoPFWvjV7O!$
zD#)p0herq>MO~FKa!~B#=LXn$P6ac3!6h^BrGW_s#>t`-pOQFUN*#Qp)_ghl`XiN9
zeP!Tl88rvR4zM0NGWf>8WCI3Y!WfuhV5$MP0gr)c2BsTuu+gR|Go(&7TELz1*ji=Q
zMs!LOBrXGMO17ykNnQg!1AZz@tGw9ExPXD60bSODL#FP93}{qN$;`4;`25G}*Nc+F
z21xopR=+p!t-(W7tSHZ-|Bf^KSe+$EGV!rG+rS)&&K0aXC61GjJ3n=SfrSR17<g)6
zk%7eq_8Qn{;0FUs3~Vs4k*d2>S!&=%13wv9#&H=~`XHOnyekZ><TjzYaywtm=7aE*
z#i_N<SxKiJXRk4^*1&HDhL&mbvw?L6elhSXXKZmQ@9UU{m8>@`w;<%R9;@T8W;b4(
zy5F9c9o6P{1AiFUYG4}`&%kC{l?&N4un&$aZI>r+F>q{|^4)?|;-6IGpOhU2b{g1j
z;JeI>Ha((ft9Ka~u}Il%V2_Zka#}l2bZ66)?>F$5fveOF1AiO%$G~X=XAB%LaL~XB
z11Aj}GH}?y5d%l5jg_-zWhM?hst}KHM?Y<OT!ehMZrVJNo?c1*<(B**^%M;e6=O;A
z<wo&`|IX(9%$mn4&+0#G;GBUgTtpgw0~ZWjG;oPFs$v#7tuaY{(|F=#_L)m|FuC&I
zIeg2({MV_a8<o2T?isjY;3kdaveaALM{Uw?8`diV`kuIB;PXm(4F6Wnx^LitfyXrL
zb5nVlc*y<5UOiURRw+fwv>91HkG?)xEnTENGZ1CcX*=FDQN%=16EB#kY$Do3jET}F
z%9to-qVdw?5+<HAt>^mUrsV=D_KB(=h$?AX!zpFrc@y*z{BzUvipMSMceHm@tcf^U
zdlThMOm2}LFUZVgh5XShot&Y(i3%nvn&{F!nbArnb~Q<7ASbRrqEs>QqKR52UNceE
z#7ic&K51FQ#LFzTFuA&kS4>nB&S=di>Z>OHT#(EM-tXt7@+o+7W=c&H6ZfZdUuwOp
ztZkx>iF&4WMXqZi!Gz63;{9BXE8~gE^XEwzRU$$=iHX-uRHt_X6Ah%`hB58;9#$Hf
z;6+n?E`#rO7)>&fY@(fs_M8(FjW|~(a!jO}NHfvgL<<vdKT*?7G%=CEiCv&H7NoGL
zi7o4ti%nCSnbu=wA?LkBriqp&W^RmaWm*?ydIQNa@x>FBfxd=Yo1jBs-i%Q>>C!IO
zM4o9mB57kHbEoBar7c(XXNyp{=!x3FgleK2yJ5|tns1^rr`^O`COVq<h|Z%0x1UnT
zIscQECu^m${OgpiCayhEd6)Q(iFZx(G|@{`;yn|5c<*lFeHjRECR@;3({`nYi4n_^
zNqU>;!x=O2p^3gG4rHX4f2uZms`lEfq~xYwUYtq^U3kzDaDNj6xQJm?3gcrF15K<o
z@w16RCO$Etn=nj#YGSa7FHKA^@tKJsCO$VY+Qd*3!`PyUktT+l*5$Z)(>S8~)OvE~
zRE#n~XRNcE#J7*mng4k-hj#vI_8872Gn;sHGH0BL@k03agYMoYSI(++D2HCyzB2JO
zwcUi9Dr91kiK!;0nOHhI^&6_Oi78ZxsfnLFRi{2xw;xPqAfIkxh6#rWr-{W+)xVyq
z1tuOmRT)k#PiCO7$}`oOmgh0yHQ_fAFmZyHLK9p95(X|o&_u|D#?*z%!DXq%H!Gag
zM@y0!J+eSCO@vJ>G_lCUw^R}nvrWt~t*h#Hg0r}nKeO(ozn3U?6O*_d=9-vKo!p_I
zS^PYXA~S^xx4^XSc2dQG)M67qm{?(ArHLgRESKhxvW!Z#)N*nAh`uCBSY)|rJ)P0X
z3;8M&KbrVSCVw@xZnZ)ORU5@W$gsP)YfQ_PWW#6bIupN`xMJd}iC;~uH}N+$*2Hfn
zHkjDPooizHsho`_HgiXq_}#=GCd&VzY+?;9(@E&qj=0rC&BNAy$$qAiw9H7^Zej;b
z2d$6^`n282s<JYUeVRH=k7oDwnAmG#Ka)(1dYs#SrLvDY_Dp49>W%0mmk{Cs69-M4
zGVz~@L)>3n4(fbL{1FpJO&q6%Jd^X|Gc`@MPdS)<j0$it+ukvQx8Ll;NpAnP={ujP
z|C%`aOeHyO;*5#&CN5Ay`*0$Mt_;u7{?yKM)yi^owm)Aa=f|%0izY6axJ=VDE%Ci&
z$qT0^QpgusYkyO&apTi6hfy?)8zyd=xM%XSMr*P77Vegb+f;z4Hg`-sd8Xdw#9nLv
z<3HK-2IA_JGBhLo0X3hBP2>4W9v_Dv(+V9>o|<^Z{KEN54YToinGexXVe3(v*(iw)
zBPNV8VZ??}ER5n|JRe4>FiM2+To@(8$XuTB@toAcu2zW3kJ_V9Qs@M^G&3K`Vc^`x
zg;8;*<v0>y#D}d50Yh2Vyg(r-7e@IoDuj_3mCtt<{OyB*KZ3jvM&&R*4CA9Ps)X@k
z7)`@y7Dm-DUJ9dr7!AUBIgDyy)Cr?*7}Z(x(u`Nbs1e31VdO^T^LeUgRDR7cYK2id
zjP=WvL(7%JE0alH3xnI|v*QY%O&CoG!xn~}eF($okntuT8^fp<#+hGIX(+yk$`3~6
zuZ+s4$$gzw9Z;^cNF+84<Bc#<!$=ETFIC<QBRPzeFp?y?J1YNjRQ^yp6XZa8L`4_L
z=V2_|wtNsy52JC|df{_uT{K@E@YP2XcA!XpMi}ji<ny_&c^ECi=oCh0PI4G6Ih-)s
zgptM2GQD*e*+N>e!+a^!GMzKoYEt5yBT7yfOl7of7<pmK{kO_G!)VVXSeV=)j1O9-
z9B!NbVUc{kQ+nZ9?${#v`C+^zIiFjY>MfnsF$^L-Bz6g-YZyJlpii`JVZ0s2dttmE
zhWU5QJ7K&V#@|^fyc|$Vryo)HrlRM{<nCeY%1rMO249c!-8db)kn{?pH%<D~#6Dq6
z+Zfw7jAwu4x{Kt~>)!`q>~5N}xJZ7#F#3n#4#N}102===z6@hR7z4u?6vl`!Muzc8
z7=ISY|169lVSF04emP<o9LC8a`Ok{v)9dumFm@hLh6$dmRd#sTx(YD7P&9v37@srB
z{x7#)ri~6`Oc-B;ksg;)9a;5OCUbI%KhADgG=E$eU5e&2j2AMnX#Q7Wd>zJ=Fs6pV
z!A@jn(&8tDEoZVr2FHHGjZh+k{;Vg5L8sUx(`5c<gi#R2q@wxLWdiS=%GUH~2WM|d
zvMUT{7<A~#KnqFJ5iXkV<-QAJb{KQQ@P`oy<J&N1vQBBpV8Jj#VQ4a_(n)y?dKg5S
zU)sRDtdwvVBn&N&{~w;N13HVMYlmJ_c<4=R)GWkGLI{Ks0&fBVS*aEfD^|n`C<=-q
zMQmWjY_D$#T{;LV9g*IPpeTw0qJRkhGsE}(=j^%X+1c6InLGF1ow;*oSNW>EYLtSW
zqMJ7=W+|*v;Y@JL`fwmho8VGwwkTdHUO806U&u|}rufwHhf_{35iX->DPnA|fvE=K
z6bx#aj%GT_N->9Bqv2@{b4xL=6ty+f(J;Rh3#cij_^A{N$)ZwhEXAf$d{v6YrC3|a
zPl8}cDVCOERVh}NVp%DcQyD3i^3R@|%d0Dr_;`6W^_~Kze@($lQP-4$MwM=18WsXt
z#c#<>ia{y<tdYNt6&ToYJx#&UBK{JqVg;3Y#AZ_XU;VjgGexl!d&y_YSSh|Q#jaB9
zF2%M|{7{PRrPv`gh}zAA8gy%Z9w{&FWcT$HxY99Y50%u-<zIEEwtU6xFU5gU9Hz*X
zf`5)4KNSZ{ai|mz9Efm`|JZ<ztjW<*94p0-r8rKLRY84nJ%1jT-Km1gr<5(s9)DPQ
zW^VS+r8rrN6b<Dx{K8%<#o1Dvll3`8RV~Q*vlPFT;&+*Hx)gs%a81og=>t4N3-ePX
zx-%zzaL2z&ah~-o#YJ*vx$-w(6NNedNc`casn$&;WXL6|B<oDo;~Qjya#@P#f0V8@
zf?aIg$vN3vP2Thx|Bhb5(M5R;6*Sb)P*X!i4P0H~OQDK}N*XvatgMLvKga6CRW(%8
z#Lw~uS5T+kR8n2T??JAyNJ-U@rilp}G;nsGu3=70sU>lSq+A`ip`aG!uw1{ABgZ3k
zHPqA4Lqnm4`WhN&xK+b#8X9V7q@lTn78)9BXrkdpO(;=Q4cBR6DUh!@j*1Ty=l%0(
zzh)Y)*RbG|emri_Fs@G?!A%-&*6^U0%as=%<$C0_)X+*pTMg|rjIN-z){v>;p{^xu
z*p`tw(}xyt)n<AHRpIHyh*Lr3>tOckv@8v`Xy`dIXITaHhYBi(thZ~pgO4jy@-^J4
zp}odH5#(ve)<D-W9mpNXD7NKl@ik+ctBK{veP=q-OGdVL($HBGWBy+%s61tC1Ap(^
zMMGCMc9GIeLw60FQ~Z{n!#{Bo6tFKUssueX^wKa?!#x@z8j3XZ)zD8vu_jz7eKfrJ
zT7GX0kMzlV_@y+y-AXiYa=p2Jd(N`&($HVS01X2*G~2JJ8t&GFog|)kEON9ckJGwA
z8WtAi4bkAQR0eC}=dC=rE<AOi!pY;k8tx;zG(4=~ehtGkVOt(xH&s;2vPyau<_*{I
z$`Y~oHG<vIx)uw3kgTq#vYQ^!@Ti6-G(4%{F%2U%to<YM&w)s<it4dM_T%#O!>f^}
z{)jx&tmMbBY0nj8ji{(TqhS;orD2_hXW3;MJ|~AYJV(jY@V17@8eY)wBIR>o_CyUY
zX?R(~s~W~@7^7h<>!X2M!wQV6sE(tEUMQvuos{pdtmPG6)9^Z(_E<$~(*zA4R#f?l
zj8#+#_-c5Amsqii>Ld+sX)qUx=`*>(cPk5gN5d2i?`e2n!&D8^*lU%FW@wnsME)#T
z6Tctj4>yY+N?~TE@RWW10iUAb6Ag4X(E<38hM80f4NVJ6W_;QA)tCFeT$X#dqWZCh
zluGKy|3pMKDbJs2nB60Xf<2pBprMRvrJ+=Vrom-LXwaz?+Z0oSMHTLzZphR5m3!M7
z9IE8QDaUs!bAs&8u6Ax-N$}j)5NL?YP7E~>dl1zSqegcZzse=0Ct=Upj*Oq-e+d&Z
zTgOW3Txw#Ml0_Q6qWn}+=kYB-MWEPd=yXI`&@J!rN-CG^i5F{FqG7d$uQe>yuuQ{B
z@}z6Vay~0iR`6|-$mVP}WuZdw)5*?!=qe5Sj`n8<ts&bre52u84Uhj*ytk?Ny50Vi
zqLS2n0vaotm-QMpXgEnjO4Foa6YtfqU&Ce%TQqFfutUREDdFE!n^@ElrQF!GA2e_<
z#!lpNEdhsTJEfJ|tznObT@=>^8JuEpiHFPm9K-C@@aM;=mtXJ4ryrnM({Mr)ffk1-
zSF$0;G#nwr`Agqe_E8o!TFklVZ|CWc6w9T`xZRQC?7`jQ-)%o>m{dv4w{m~h#4CHk
zfR4XvI7RK&QAx*dlur$psLL8oYxqOMc@2NF0_^Ky*=IGJli&<{zmm$*_(Sl&s0(wH
z!(H=8`7_Obc!@vR+?#ztf=!jwi&WUX*&l5Xe~i7X;Xe)KbyU#tb0zf(J8`X&qT?!g
zQb`pll~ksb(?$9ZJC%A>defhlcR;M;SJqKQ2XxfdQB_AZ9jQ9fbYVcM>mt6ThW@{w
z-Pe?-Olf~iN$21pmYu<DYyLNF{HjJ_EnN&C|J$V0(NR}NBOQ%()YDO4M*|kixosl*
zkM1JK=jQ!IgU%K=l!*jfjcTHU4!5Q{I1Z=ZgKiKyK(5zugO2?=4(Pa1$4xrM^NBic
z*3n!?iH^QHTIgu0qmz!#I$G&yt>aD|?OA6XnL2+PAr}4=9c^`F>0+KjF>A-7%Cc9M
zZ%<sWvYKC6y+vN)DC;&Ix9d1~M7cv34n{f^$%o0qvpL1i){(2@${z6p?i?K*B#Z8=
zEc%P{=#Dz_bnvh4bms6hUl%Wt0v$crE*)KUJP|70WP2~%mci$Cm$x&qP#1pGo;rHz
zm^LkoiuQT)S`i&ZIu?DWWPYc-HmIOj;@*<>Nv88^KOJ}Jcv8nxI{NESb=<FGn2x)3
z4A3!H#}FOsJEsrSF-R6Zrn1WN`IJN7DR1;I8LH!69rx+DM+Z-NP{H4;tTGyez^$wf
z*YSXk2X#E8<A=)X2pxKr{5v~j5Oa;`VI7a?jCRK3x^T}v%9`xRd5k?+S#8-Zi}>MF
zm7RG?wOvKyR`z>>Vpc^Zcv{CZI$qN8vW`(Yp4Acb$$MVMXx_e8c}_?5jS87ehOg)<
zyge^ain`>yDCr%SBE<Yn?HC>7bi6`w{i}GaF8+bYF~h5py~2_5TE>-{;uq?#>zJU!
z(c$Wt$TsTuP{&6)-qbOP4AC)N$6Gqy)-jbbb|7-=>-m#)^jogH!`|<h!8o@mItt&(
z;?U^I<g9lSxgEOYyi1K<s=TM;eH}EmGj!qpdTda^2fB!oda_3bDc8;zBr{XTEFE9!
zDAn<?j!$%4S4Ewz<JbI*Pj!5z<8xg^_c6NizL(MxW!XHwptJ`HLC03L*mjK!CvSC_
z6!Lote$G#&*DJS*O3hWPsKk~ITNksr*V>khtfG24d>yNFtR`1=gcKF3ypE`jn2vcm
z=Ie;Fo;v2zILyf|)5WN-{M4*DIyTP{ep=$`RaAOn>G5V1=mK3VJ;z3*ETklSn##C>
z=O^}CtYe9eWjdDYV(7S(1^N-j(GkBoC2NI_DZ^9BqRL9y9kieC?2PbF-(TxkL$2!B
zrem#+Zz!2MHqc~^NcmRBI;v-3-gi2<>dIr*Z;@L@r}1Cm8+B~bu|-Fn<w}n^*_(A7
zKA_NgmsL?oU%R1jD>GD4xeEM)j_vFV9eZ@_pdsSXC2!P1@j|~eCw~_UDabonMXgX(
z<+ATy9s9_)t>Pz}`{Kf5@aDYigX|6+cNn<Sz+oLnC|w4s8#v02)^S0{MIArtIIiPQ
z9cOf$(D4&{lU9*dmvXgKIY~nl%YFRM2!q6a;nheU|2^HWZ^>^|3R=Q2`wvMu5W23a
zdYbm6ike$hrKgT#lC!iPI{w!250$#A`WG!mRrOHg65{i^Sg9f4goXe2<cxs7FutVY
zUmgF^A`x`Uvwz4LcsX*Jmi%bZ+Dg5z>PRtA-arKdofe5%En8a75HnnQiYgkYWT1+H
zss?^;UBX|?S2i#pmdn3suiX*h8pQZH`3zHhupqC7ftm(xG;ouFR0C-S>KkZaAl*QQ
zfy{yJ>TpJRM5$!}20p8*PN=H>mtRubz}%`T)A{PzP*tsKpq?StP}n0pZD^p8fu;to
zGcdFuov#BPjSUQ6lh(w*_OnH&w&yf6#Hw`ROMP!JaJ|Iz#xUhLd9qo#*+6px?F?iY
zXklQ_w@NDmtqrs^gu8%-_v2&An8Lg^2DY7#WEx<=9s~J^6`9gj(%**^++yHX1Glk(
zZF*O%rZRMD^2UtFD`~gO6pkgB-rhjAfd>qXFpy)QgMqsY^f!>p78&SapwK`bnQWko
zfvyHPZSQP|g^7Fv_jbtOFOsQfbGqepGr*wP3cGT;vr~47fh%c&fzz>Uf}V!(2KO=$
zF~lpi_>~Gp28s>zVSxsE8{l;KmJ^X-KSyfS7c*iG`?)ID*FZl*#H?OB<wBckfd7;q
zWMHto<!*K>Wq4O)paFUbxLh@<P05a<$`IDgz<uPufqM)*);{Cc*?q_L$Y@hdz2Cqv
z_Jx76x`o}UsV%NVZmW>RNJy$1h37#74;gsbz!=IBTV&u#15dHEYU-l~MjCjW#coy}
zW6itdFp<*5;olPm_J`U0iF5ZbciZ-yrwxoU@T`Gn*b&=v_-An5GTOj%2EKSG<weOT
z&R(B4@PdIqEB2-n?AdDSq>4o^Q3wNt>|zY|SOen>OfWFfz$*q`HMr`kzHVT0HFdm!
zFRQ7q8DMb5pMAtMXT?IX48$LfzhU4_1Kl1<d7FF=lu69FPk2b)Vk;tfJg5ba*2tf1
z;2lHwqIvA9rcN_3-M|GC7frlNaWYU~qKAq147_jPgn^&PUIQN*_}0L820k({lMFO4
z$G|Lhgn?26nt}DpDttmUG4Q#3`loE&FKsx$`$CGrm%ODgf3^Wum|j*=*09d6opl3-
z0UF^LJF9!1X&_29`9^4sWx$p^A$AP7N$g4BOBxsmlj(GE@J32noN~2HNyzjYeo$yq
z<{Fr1V3~pC2IjL9A52*+E4jeHLMfb!*tD%VUm3#b$`W|+bO~+3yws)asTzemIPgAQ
zO<h6G8~B<zWeJ?Ytzw@}$vV7IVaU@O*_Lk%tfedk**w@x9%H-atfRGQ(|enNAIK{M
z8w_kTu!%}-V2gqL&-!s>^5*Z6+SSFNYpX20W0&;rX~c%K8&s!olu@$Xzz&)V8gSla
z=k7GH%fN0LoUO{19YuQ#>}6+7%Q|3SAKSQJdAn!cezx~wG2hoKtXvwIg9dh<E9OzJ
zLeUW#e^z6;!pZwFLoDH)nO)&W$+XPs>Tv^H#!Z}ykp67oBn_j9h9-V7@GEuPL`4&)
z4E$!`Zv+1r_?^9M;EaK@h6rB$!vGz{e@Zbctgg=3nZwg_2L3W|o=sb$OzBkeyOrCl
zb;<o~?;3>}E*Q9I;6DRb3^d!F!g0tY1OKvLmMNF1mGTWvBg4~LS0YypaOPglM2ZQX
zzIi!9THXY`98Bk2zLJT`CTf~UHBrSxRTI@rvGB)N3DuC4%Zu#L>LzNKi0)K)%qz@E
zGm&nhwuw5XSgp=r;U-{$uZ-Sf(!_t;w<vs%FtWX_iF&4x*s0%itZ#~6nNvzhuYpD;
z8k@*6af^v2CYqXPVWOo8zK*Xmaf68)O*Avnd9iZ6iASsV<{BUAO{N%E^SD_8@~623
zg?l4RY-OUgiMA|lZgv~qUaL?s(Z5AWrilURIXuc0=8;ahy`)|8u9*x0GI5)UjwbR<
z+-~9y6I<3PIVSEj@mKeB&aAUdv^R0{?i5NLR}WvRt_E|3d#!_sTvOQF@$+(N#5%FI
zCc2vFW+LCjgDW|-$nIi_VL)HL?27ZA8C<{;&VJUeyNUO!s~@dS+vDdJn&@dlGohR4
zWg=qY1rsltC^AuOVu*>MCVHFbV`4{-yus`~6Mfkn6JJ$V`<eK4XHI_;s)@TKe&%F^
zDbKVnp@pQt+->5%i^aoMD+5goGI4&s!r2yI!MvC8y>#N;W8z*DkC4O6Y2tnp511Ii
zhRhR_wP7ZPQ#=A?=IjascI2?+2TeR=;$fNLq2ooI?(sofO=cc8=P?r_O+0Pl85572
zc*4X}w3COFCr#YFNV!;Dr3ZjuM|HLBYK35wiDylWHt`(0{;<-1R}nMUs-e;}kv>nJ
zZ&X&#&t_#_GV!vBStdR<F~-DL6K|WCY+{^=S4_NaVuFcRO_Upx_8NtGlhUMO(Rj-3
zDy1bCG3R8n@)J$GVPcZ3Ps^IUTh~y_re?iq3dbV@m6wgodCLSTy%z77m||iE&AW*u
zKNd|jG0ntu6V9~$Y$j((@3LL-TzW!?rxxUOtD(Mc;zJW3nfQSGtRdWD%_{U}fE-Qb
zOt$WjvbRkM=_e*WWk>Icj33_fGpP|@vMcM9d~V_k6SwXxqH4@GaVRyP2dzOV#j<}p
zu1-E*Lp4m8CN`MZXu>jKQ-Do=lpc-=*F?fZnF-H?Pl4a0#K^9)+`tr$qmb{c8fuh>
zJY`Bo)!uPags<QEX1{GU)V_C?%rP<7#5@yw4;Jy16Y#Ck+?KnQ`MkGQAt&aGC~qdd
zHnE0<kS%;-Tv=g?NyJj}@ZaL)Cb*WpOj0J&4(!a&SZQLF3BG(QNAgxvnCB_K)lf+}
zgj-8fW8zy=OkTJR?K>0eOsr?EmMIKk*}X(~a=00Rr`2n!n@nsr@uP|3)J+pxX(deT
zH}O3?J)!(yVmn2mYtA-Pywks1kg<cNsayIk6T8{n`8hk;p?e|(dno5Ua`u||c}Ed9
zP^{b`2Hph0F6DrU!zPZHI7t5U#`5hs%Hje9Un@sVZVDE=y*LIVW%?5b()b!WLDe>K
z*2Fm$XyT-a-%R{Y`%k7#?Dwl|FGnEsxUwy$s5O_12`Z%&o;L9(ufCGT*UcZMc>9nc
zXQ=fDm4CUX<Dghi{EJ%2z+e-`gns8u{LRAib9mHvH;d`aaLL5Ktd)g?h07-Xql#G=
zVBrcoh4$0JjTTZYl(SINLaK!~{oL{vDp;s!feYw7tz@CHg{l^+S)j$PVqwEH0q7Xy
zP_3$;-MFTDM@_Z5B}OSVEb+GDbJHwvQeVpgETl`EAt|piy|#rq78+P+XrZo!K{K-M
zdq;TN>RG67VM$TR4Sz-M`$k~|ZzBthEnH`znS~}6I@K*{YGKPZ<*&U(r+$pk!`!l0
z9#41A%e~$bfk`LJ74h^Y3pZQ1!@`{wnp<dLA=83liRFxz7TU1+(m&J6LTd}%e5I(S
z7%DK4FY&e(+F2NwTXLI)ES9-9yWZHow^|^*C3#9bHMit;neBm^Dl@mYkZqyRLQe}h
z7CKnSx6s8BqwZV_9WCTt;|~Yq1^JyUd|6ZNYzdqH7H|Krcv(%gD{Eq*z=GblJ@4wy
z#>R4Y)>P9DN9JBFW}Y5o;K3p$_OcMM(9gnM<hF%k3w_u%eDu$e;eI41RC==xp<<Qg
z_O--n+QphG7wZYQh}qvl?NpU@P|2TEmCqWQs<Ijb*$WoNTX@aFU<*SmJYnHU3qvj3
zW8pyy4_UaER|93ZCDsV;vv5E8lTe1q#JR&$UfUxk(a)!<5AdNDsGAh&i%XS<Eq-(e
zBP~o#RUfr*wM#l}!ee~IJZ0GB9+Z57uzK&uExdTHm`30!3s1ABEWBXh846ygj3%R|
zWsS1%EZbX<ch@Z?<L}R=d-gdCvloah3AC9nT6oD4Fa2?3`;{J#?pA^mk(Vuuu`t%c
z=@uoNymNG?r>d`5cva>+{6sD0-+oKR>lP+h_}IcH7A9JF!@_h6?@|{mOtLU{XuByE
z-m-*`^lb~1Eir*TmRh(tRei_8u2l8=9y!Exna<i-G?i?$bEi>v<|y9}X*a{ddn~zI
z&PNvBx8SuZ`M|=55}fXyK`)uQPWilBUcL1SS72vS0Rv^0q??@FPx&AVwk1s8=N7)O
zpiwp~q2RMEl#1@iZN4(?OADtKDtwonkb`Z*!bj7yObeDJtU5J<YYK-sUhSGgd+u0p
z`E(0?gGgW@wD=WMr2Z2*ovI#AE98TstZ>ufn54Xs_)LSsG7EF4GVD8Y!@@ka&cY!J
z^T|dF>nyCNNJ!JM)WR|gi!6L4Ik1?zY~j8!Y2*ei$sK9=Kd)AnTUcS?YYS^AKNpHu
zT3BUaHE&c)ijVi-b+x!wn%Xu^Nak8gY!u@0tpwjl1H#kq$chdb<Q2+tuj`t#!NN{<
zgoTY3Hd)wA`(WV*3)?MhwZIjn?=5VjJeMi&%~g7&scSAo=*HRFvgG9+>BH019fBdb
zFQ=&#q}>)c?cHl(pM^c-{M4)s|3)ZXoR;plaKOThH1)t2*^IZWJvx`0kq=uq!XB~k
zyM?0`j!{S~oV4(xh2s`(2y*A8saH=GouB}-Ch=Up(0i{`xOs{;>K6+ad*+?8gzM~A
z3-m+s;L-s7b!~Pjr!D+p;k<>vEyR{8e_Hs9I(S4mW8o}|a&mtv%VvPkIjX<Z>pF)j
zv$p@x1og<fXyFoj@SUs+)T#Z->lY&o7W$W3yhpjra^@*Vk43n#>pxn6t^D1sl47Hr
zjg~fA*(h(Lf{pq%8rZ04qmqpb8?|gywo%1KO&h5;Qualv+Nfrux{d6@5-wxau!Zqw
zJmkHFB@C_Hkfx^Dc=<qt97wmt@R(r0I1!8W@eu_!YTKy84Cf<^gQBIXYonem7K@25
zFV7{Qd$Xa9MmDaq(ac6;TQIY!jZxcjXug`*pc8{elBe|-DA(Jd)8j@PH`&-YH~R(~
zzoe;5x!Fc@8!c=obFw)JW#PdA@d)$be0pnJ+h}7W&qgO3nasns*vPTb)<!!Ux7)bG
zMixu9ahnaX|JN4ldfanCK+3jou04N`!p*jK+MvTcwQG8N8<V`;dOh+;IfL$CBiBYp
zTbNBQz|k{IiH*ppyv{cAZS=AcvC+jwR~rR3de|siqjY1Fo7bY7tGkW2=pJ8~&B1da
zIsCOU=!LYNHu~+0aIo5SXAVcaMZ7VVU2LPbEe1KmW~TJ9QNo7&p!Buz#rFzV>*Dd;
z7wQ$-w`TOSg%PXTtXQ>iw~c*1_WKxMW1tPoh3(RIVK6(w!N(52!i}Lesye9V;2s<I
z+VE`nHtw@=zl|4cyl7*Xjo~&PxABCH2W%n957~Iw#t0h^ve&w0{IXV|)0LEd{zu5z
zc=ls99<{}=FeP2Bcd%$AA1wnF7`j0B(UZ3DbUniYN2EMugCpmsCFMI}l#RcCDtgw&
zXg;EQ&U56_7Ug*xbW8G-ZYYjPUZPOhm~P`;8)MkBW!V#KOtdl9#yA_VkVP`_HFEw!
zF_!=sWILWB9f)mEJYKiKlzzvQH*CCV<82$0*`e$OvUjCIv22{K&fBZpemXL?d&xUC
zrr4OuVwWh*ruAod06qM3)^?o6CbTKp)hUlt=^2z6_JWPsHr}`KfsIco59#WMHa@cP
zv5ik`%p?Q5<?Y|4%wk7G@`nEud2UYbn0K;BxhtQSn2kH6KC|(;jql`upY%%`rDUBA
zo5E>Bw_(^~*^d27Iv`#B((PkPG2lWT6YV)lO4s!N7AcMmQdiP*%}N3rp^g1E4%mp=
zh}l?SV<oxDKC(sF^8y=tT9uUX(NnYL+L*)B_8IIxCeE{kwVW?0LF&oKLK};05m51!
zjiol0NxYc0Vr0$|(u<KN(p853zL~D_;|a@Iz2ZEARW?@J^uu6_jjwI2v9Zp^dK+tr
zpHKV7#<$eXEedzPGCuI!g~)fd*!oKFMY_6yPg$&Nv=OWjTcpn(>Ay*0N)ZQpTWx&L
z3ftIgW1Ed1Z0xkLi|s<;c2?UKZe;q^8EinWJA-OC$mhs^H#5tv)1*h{<}xg2_Q;%l
z)SVqgHER|gv~h?w&Bl2fhix38wXyN5jiWY>**H!CJEAP7ob)W=GSH9g?)?fE3QySh
zi6xK;vD}l?tgAifJvfoB7X1_<K4s%K8-Gy8ZTwDK#PI-4aa=k4X+KUeN{6RhA6GaI
zIb(~_$XQzE43&e8bMln$)+QP1-!}fCWp;$jU$Ak}#uXb^ZCtYPFZ-G*L+6hT_qjA?
zSTR3?Q(ZQV(J2fHs>ZL2OwZ!zaryhb%Q-0Tpn`*n4k|gQ?7;mo^7*CW0~7l7I?_KU
zL!I}%QpLgP@0I=;Vgg&;K@Hjm2lqOt=^)iXmV;Xyq&Y};aGir@4l*3na`0G&+Ry<U
z)OJwc5eikuL0t#+988%byp-H@%!7%gC0PXgwm<_1Kfjwr(8xh!2TdGd;_jcBLW@Vx
zRGxAb?0N?`IB4adwSyZSP=9Z7aI=Fo&1(@icd)EReoIHh#<$?J4k%xi_NBx2(BUF3
z!MAb5dq;7EiEc5ZU8aNM13D74B_9fN8g9>N=YX*y+?9E&gWDW*anRMl?GEm6#DYRL
zuQo5d(-Gk}?H#<Hp%O6qj?<hR2OS*bI_StwanRWj9`8H{Kji0db&`H>QVwSF9r4QM
zC7yCqb2kUw9rR@@927W0qkB1sIOxG_4thG^x(O2*%S5FnEpkxoppSzRM~plfW7gXd
zgU=66L`b<3%EVQNl#YpPexl?q2X{Ld;Gn+)m4^Ld<n`jbkF!b|M02YS&mQPtFwMRr
zmZt|vx}sCbPzU_r215-g!vv=mEB86LpX_2|9Sn0Y+`-cho^kMigAooMcf{862OT`*
z;8AwEgNMn14H=I(;6844dT9`um7$I~5us;^e%g_a*l4_JPHuw^8BaKPlDt|Z-qBC7
zrHp}JBO=yDIe1pGVyuJF4xV%Hyn`1grR7w{jWjAuzmBoB$CMZO2nR3o<#j~i&|-{(
zIT<P=t~tgaV1{uHUXkV0=0bq%@$rtZB=7$i;pXuP4kkL7=3u&mHypglUcTC&+mTqG
zNe<q2Fj>~^Ek`WD@QwTqWr+gMV2@oXU*u*?b@0=gG`>@~7oHNu5RrGOK}(g79L#X=
zo`d%t;k5jaJ^O<)ZA<nCN$~U+6_~R9gFZ7Ikap^s_lbi~9W-#!(8Xuur-Q=|jyU+j
z!E6Vs9enNJOR9;3go82%ngiW|=fHQwJ`Tfy<KTnBJX4-p4r~c1;nW&ta2<S`-kUa=
zp5A~0>>%bKE<0jlh8m^L?oP2U_n=Gm80Gmy{{{s)oJY)YFqhnOu-L&o2lE{)q||+@
zEO2l!Lrk9;?8Nm)uH@eJV%j1H*Vj@hT}!AkwbW$}mOCJ4mP&PN&^K>|6#G>axms$?
zAa^CLN07_G4^PR`H4fG~*z917gKt<{-b<m~rhMn%_jV=g+2jHd?7EJ6aY(F#|8-E=
z;6Uk~Q&5(_iEZhc$H4&CXtp}|o{H~aw}Wj|JqJ4+F;ts3FZ)7Q5n-~OqB}gB@fA$m
zDSMM(kAuAq4miS<!N`i4$0Pe3>?cd7X3@9FyVkZ9ZnuLD4#_<A2DanrQ3uB;v<|K~
z_>pGB!JiJ!I5<JUaB#}OZ&KubrbcX3esOS8p3dly@z`>O!3@7rkJc&A)>63+@;e2l
zmih<HEaiDR)(z^YAMMZeZg$yOawg0^@8E9<&ats?wfl>W;*FOg|2Vkdh!Ot34kkId
z7ad$;e|65-R7-RaCza=a6dzc)Oo_@X`J<M4)j^7jnl4gZlykXX43%6|cKKaLWl=P{
zf{We5de(+o(Z#s)#d-e~S8?%U%|gzGs=KJ_qM9p&Int`6#T)%5T<JjvP7PN?fQOqh
z(p(tlBV<c$7wIlCTrk?1DYaa{MO&z14zf*zK-Y0m*F`-SA9gOO?_yU@1_5_AJr>O+
zZRDb{iy<zCx@h8}sf#=pom^b!qM3^<7q_^$-o*_rTDoZEq6gF)T{L&m!o^K4ZgxfB
z_d{okh7Qf<=#&SUv;JU&u^+8n!SGBMii<Wb9>M<tTH3nemDkSYzv24dSHAtIxw)6(
zxlFm$#ceLyyU2ENy9>H)Iq@e~?{Kkxi-@ed)5ZOVl-9?Ja$Iy^Jr5|9^IR9>p>}k!
za*lG#?g+mSb%UKt|8{2=`7VlF6uaWp)5S%17X_~Hly-H|%>}=k#PJ5lBt2Xdx`>c(
zL-P5W=;?~^>0U0*u2OD|=JG4fJWW95h_SbeJ}&NdF~CI$v$^Q+BBi$4&&6FXjzOi{
zD)Y7y((j=1R3#gW^Xk@CyL3+H%Wj|x4q67gVn9BK!cdq)m%^IM#q8O8T-@toqKh|N
z+{b3R80F$w^47(07Z163*u?`bJ}J&)gwKO6Mo7$2V%yq6@R<0Bi$`5N>EbCDkGUA>
z;&B&GxcF(S!idBrsTGQA3&rP5oY68&e42u^M;ZP=$}{9rP6jb2s*G?O?czBXV=0g>
zo@X0_$V)C>cJYG5JbjThpPF@`VF@>_^U(`;D`Q-c(zEx9i&tH|PH7JmexzkQInSP&
zFEHnuHRdb)+6*sEaK#cHSGeAEF^OX7;v*Mtxp>>fyDnz9nC#*m7gJgJX<1V!ft!`;
z`xGt*Z=0S)%*1Ifrn|yVTmD3Zr=0t|Cr{rehYNG^Z_W5XwvM}R*shr_X1SQ{;!77F
zlW(q=0e#`(Q}VX9`WcmxQk|c}ZT{33D?f*>e&Wg7gzWKgr7m>pnhTAJ9OQDg$kh<8
zR&#7aYPw>;!_kgIsdjPL!x0aj3!e@5kn16E5xV%>#Xl~hE@CdWviUCJE)p(QxmfL@
z%*7lRi(Gs~savVcC0lB%3uKGtxtLE4>Ym52jkl}hlP+XKYO4f`T`Y02+{KF8Du*IV
zT`??K#@?jmoTG3?L%M<r^?ce&c`3DR2~)myu|{^#28!{S$XXZQQeX;mzM;Gg6~ii)
z@STfwE`A=6zn&_b$ma0uv-LTgl5cde$;D<DTd1A`JF;i_EjxZ0hOc;jLT8(cAJ}EQ
z(ZzNbJ6!B_v5$6aQoo%vJG6CD6Z?IdT4zMc;o9mR7daP;>67W(K4ZU&1Joc|KUS3>
zk$s5Fq}1Ju>N|4iAUZ+@)>e;_W1Gd^qP)wIMs?KVE>5^27PnI!m2N0n4E~pyj;50?
zeqk@W_=DQCS@~5y_jebk$me0%O!<vXI4nNV!0E=SK6!t-I79yDW}GMgsa)N1{-OqL
zQqD<6QDVuTW(%_iuT@^yRgrJ%3ob5_10L#lxI{@~9XwR@aM{IwGzcEbd1&^na)n}3
zkbjlJ&_itEqqdULdUNDZ-h*04J&?%dw5XDY${tcZq<N^~p{j?n?m0C*RP)4Wyt<?W
z*S?-n!^5(2MGSv^rjAPar*|&hLxzW19^R>=#_Fi>gll@$e9^jCue|kj)Vdz(d1&Jy
z(?fj^4LscB;bspFJv8#r)WdZi8hhe9dwWk5eX&<*;(<#K+z?HAt-{SbT<_rq)-6<S
z^l*SRucI;mY}vfrvvt(w9$I*4#a2woqW`U>$EDf6bcH?myLdgdCR>*0azw{kDIVH-
zxXr`uY%kZKJ!E;fMdCFp({A-Z1!T^<u0;6ZqtQiqcX+tdLwis31sU~rK?W^P)w*i7
z2Yx+c)K5h@9!NQh?8rKMc-zBd51l-8_VBQWM?B<v=;GmS4+A`O_0Y{jv4`Fsy0bZT
z)gG*>hXUqbtnjtl;O_`GMECU2%R|HiG3!hZZIOo_b=7i13W(|Q?c<@uLthX5JmGJl
z@!@{7K|S;C^3b2%N=bMj?Vh^oOLf%;XIJ0=b?YMWS{&$MkOzJUWw?jI9)@_h$HToI
zhI;s*uF8W93G0f@EZpL8pNI6bkzpSHt|)qwA20g4t~%_XLTAMT9!7ZFb0Na&9`Zz}
zCx;yDCa&ge-4l7#!($$v^YA>G=HYP<PxGN3miNee!oyRZcojbBfun1#{L<9C&^ev4
zxHQhAJd8i0JS#J>0;4^Al$QU&R)zEh4=;Ln-NOVAFL`*GqT=Bd4`XEW=^-CW#`@xe
z72+#ZJ8~KgDR`Bou_zCFE9W!5Yif@?(mi!m`fVOvqD=Jgrbj;>-d?4=;lXcE$T+>X
zJn(h@?;nxvjY??TI0bvh!xY+24<QA^!!!?{dic!4bPw-(_>eX9FoSIDp7%a^C~N+n
zhr1e!T{%4Ne?OJq-{TyAriWR4V#kb+rKB|;oyNq|b=6N;EOmrm_z9HHJ$&K8@?d)+
zmU6ZS&4W$`cFX(HLn#%rp2~ynBZK-<Pvw-#WPMT!2}oIjL&4h<acTUip$9~d_>{2&
zX<g|H-5Xi4w}@4WdWd;g?cr+=aSsU(3p^~OzI&MCVV;NiRI~#{)E!Pj=Sqgq(ZrtJ
z{aL$u-E$awxyZv;9+vVE6vFZS7JFDi0gh!8^OH3M)OyZamwQ-20rrG9lI|(;a}`yo
zo=TY^W{<D&u-3zN4?8@3<KbHmn>=jx@Ex^drLx|`1`q3KE(W)wK5`L<lE2Xt>m5b)
z)N1F17Hsjbl{NIRjlF!ZhywtAIFwNtKd`{P5sq3J^>KfG-m^VRc6!+5VL$DLhuu<c
z_p%jhl|3FV7L**SQ#hiYy3Yga$%Da)2PvOHE_X#8qNLSR87IjNv!C`TIqKmU``1T*
zA3u6HPV?oXv5ylTeqvEH#cZ#KlOF!`aE9jYJLMM-=S~!z_VBBRQ<ULN%5N;33_lqe
zI5VB5cxLBxZh82_6W=S~_7Kvuo){vY^Y9lHty>Ol{&^37vk70P(UFDjdH;AIWe7Lv
z1zO$ic?AE`%FzJ&sN&;44_7=fGp*obJU;<Mfho=_=L^+K@zH%^1#Vj_FHae^L8++d
zgR9%$+*wk|$Mt{qJ9sEk)kifSb$rzIQQhZ%0Fmw^!$(aY4AD>Zk>;bco=VKvfWm^3
zYoL}7_^9oR=`+m{-wvZv^9guLPiZ~*#QHwCrIgco1_?Cq(a;ww9pOfWn~U%JvTqX~
zO?~9}=-}fzAI*HU^O40``MAMHYhPHK8-3j5gOh0Pl)2eQa~~~ywDhs4p4xAF&W1$x
zcBvi2r|PM#e3Y-Ra*3pkk4#_0^DE4}Gl#(*jL&cDBY#0Q6L0ZxtB*VR#4XBgzL>_|
z;fqfzaOLiHUxY$Uo|8+tB}?mP6t?$4n(d>b{9;Ki0lDg<z(*drbWrK!qq8qwoiv;I
zk{exp8Ypz}@#iZQJ~|kg%&?+RsU1`JExx*3_VvZGW=|izd=&aZG8q*{8u3x&qmPdg
zAH_cQRA}GZ$Aurnu#nqPS;DiU)B5@%I*}8Eem*!ry@r48SEBm3+s8~Fv*`c#G0?{g
zK3-%;`xxxw5oY!=#K%w{_xZTr$DG?UO1kIV<BQLk^0?PWqx$OY_0?fMhWmKX$3wD3
z56I?>;Jw|%h=S`@XZ&3DGMV!*Yr9^Vm{n5RtmH8tBiXY)p7znZzS@5(9{2Htk8yD!
z7&Mqq`rs!J8A0)kk5N9jh4wjLEWSL;Z1vUA5_4bGFJ6SM8=92oeX#+Y;3Xd~`<TpA
zA7gxe91;_JOk~MEULm8p=WsW~t3D>xSI1M{e0cTMmtX43T_mp_?*F=vHG>KkcF$i^
zUwy-8AOxmoi?2CN^2H?gEg#>1l1ih&l(nz-d)pV<y0U4>6dzN4Mh@dWN@l1`^To(v
zy2MB7tK}Q0@A_DODMCjdovZJYGxL;>e0)Go`oihT#D)!2Qbw@w(#K?=kEK4A`S{ew
zXFhx%fsfC9eBs0NVfmQt<4Yf!4_!X1)E9vk{2m>@9Q(|?Y{M5TiF|9Y8gzi%)<CtH
zK`Phx52f^<lkdv9F{Iz4Bp)f-Q@uC0bA~>mR9+wRe8hajX&H_vWxfa>?bSd{unu1-
zL)N4*l<Qnd(Hyp-oCxKbPoDJ1SxDugh)T)i$~d>genojm>%G{=5_0&Uvh;EfuSW09
zKa0+y1An=X6+Slb>AnbzTuHY3SnFdIRdtcF+Q+X`vN*x{nvC715Paj~TVE{jaZgt1
zuE=*RbBVH!&8%N2bYY3I-p7aw#oSZB$;W0NJACZ)vBk$$A3awqKd_R%cr|R}rG*N2
zofESY)#uZ;%M2&hE6ldb$8H~cB}*xUv?QDr?xAtprf^YU%yRL;(gQRREF{Fv5Qlsm
zrkxLPJirkjM}0gHU_^jpOr%8$xL%3lH2ywP0+b8zlh1u;_=7s`<D?I6GyH`um4Kly
zr+ob8<Fr&FzFrU4%J|~?lHVx?iCk`5%bS(TPr{z@ah3}1<05;oIPaW~zh!Oz@^Rh=
zR|6UF%n9t&)ZYKdbZ&e6ag%b%=NHUy)fdY*T-vxy`%lTKQ^;>J^YjX<-9X*9BZspL
zE_3V%a?1y(5C8#c2dEgJQh>Ao=>aMS!fsa&P$NK<096AKD?6@%O20?703S6_IqRtz
zQ260>EuorFWj=3H^7Li#s?7*ci`@7!GIl}s<Zr}>zNsnIW~I<QQYS#Y0QCbD4#=+?
zfZws<3#&nZh5@b%gln!*fW`ru24WW{C-q!*=h1}K8=V_AP`N{#gF|lQY$nV9x`BFQ
zfSUs31?Uvu<^atDp_O+AXc3@gfUE$w1ZWkYbs!khHb9#ITEoJ94b)6_Q@;{^$nk6g
zRbfLKs<ig)0<m<(MFeKPH2`NHjJUf!5L5fx0xUQd;Q;22Kv*_@nTk`|_5rd3bncax
z6QBc`R***{Kk2=!T!}jd;OBIxI85&xAV0ue0s05%5}<2<UI8Kj_fw<Vb;Sh%dIZ8T
z-d)n0-p(ovaNn^Azt7M!5Ze$KS3_qDqh*Q$6bHhw+&2*4iR~SrPk<7ZS-<eiez8Y}
z!Rnkk?HilcFA%Tz<1#E(4RCjW!2yQI!~p>Y1{g$MHB`^sQ_!!WN{2sVNEjJ1lrpd|
z`(8dhphZ&d;Zthnb0_k14b}St3=hPn@?nA4H9(6^9c<ORgxjMY3>dQwD}Wu~;Q)^W
zcq_o$0UizTSb*mOJRe|WfX4$o&0Y@hM1Us)aDq_z2Zc`Hr+9ltApw^F$SziUlw`hm
z1;`4ImXvb@UV4Gu5nxP!u>oF^>0i#S@WzOgmje-Tac*aXF?izwyb|E`02A2t-P2zU
zFka-ufgKTcWs|*;Yo8&aT1^b_2HW*h<V}kG*$79}bgW%lhn*CFtF#<)PY&=7Wj?^n
zKx{vm65u_yVqW&t0Mi0Y5Abe)85Fq=8Ps0}(ama7!p{O1)GnObP<@}gVjbpXGtQhV
zARh+!>`ITq2U2EHHUgAV8mVY(&fe@V0?a1QnIXXE0XP`oe1TiV#ZFIt^I5i(ULf`q
zDaUNOOflF@F4oLZ_;gxVld3A0Z=3*bfOP@ZQ$qvz0Tu>W6d(u?21o=b3lQZ~;@M*_
z6vwF@4GUxJopoZ1ADPUV!W>qkTi)CN^8!5BppX$P^I23wmG){ufNvVA&1>d!B-t>L
z`&EF&0hR_>CJchY*Dk+$w1l>CZuZfJ>hb_90;~<-+*-nWR|Z%WV706~PnrMg0NjwZ
zM&3(@WSd({c=}C%Z{;oDks((*kJ^>PfG(D>A;3n;Kf5NtrU07*?3Vhth2j)odw?C3
zB@}+o(^HXc0l1x$7KQ_=9|ByKa!#$e=i&UF0Wu%XpF1OKS0Fy8Ot43G?p_+GMk<{f
zEy~2;{{RgU4SpbYGaV#<=m?^zX{2&R=_uJ47awCeCPA%nX&u*R(4?H8@elAoh!G)v
z4){w%G!1cGh+hKyO0y86N{CYdehct-fPZLJ%9P&&oDT4Z#9J~7{|vz20h|qRj_MX*
zKqGbLk3}3*&>;U6;CujnCF2IEDNQQ(9(px$A;84|R{~rO#0P&a1^AbZW#`V#XRk3-
zj2^T9sO&!|&F7`Eb5lZ;3&qB(iXnR6Tv9$1BZ>+k7WK&CDLpOR<i(G-R|<upBd8jp
zT8Q)z8KJO*)kD+_5$;am0IWvH`J>n$ks2Z`6un<lZrmXKX^~PZMC}lDLfm$^1fkd$
zusA=bZpbZfXcVGxi25NKgeZHtFXeFH?X|e}y}oN!!w{q#kY6jRNeF{W2?O$fJ5$^&
z#PuOMh3FjOh7dP~xRr&6xGBWVA(RkpL$M9Nd5BgaT8C&Mi)tw;%VZoyn-G~H82m<M
zVbCmXJ~zU1{it0i{?3pUicQS~@1^x7y(Pqiy+s7Khq!|r<5Ttt?YJ{UcE}fvP@nda
zUL4=ALx@q0)Z9?G_y+meT{?*EOH5&_^C$@gc{F$VA-aU<A3_b$HAJ@%y+TCDnGgk`
zm~Iq?=n)FL&7ltajvweI?ipf9dLg&o5Eq3g4p9=KZz%Tu^p;QW6XJtLYL)lIj?_W>
ziugIcej)A(!Sz-yEATG%3%Pf9hyfvnhPWrhKzTc5Z%8O4a8QWB;uaC~!T@*<oY?jE
zvMnJ-uT_SzZo6{s55bT*7R3VR^9#ld4Gr<s-6G||5D$g;Jj53v9uDzHh*v|55AkS-
z$3i^ILPDGwmOV1WlVpW2KFs@g$i2@X2pXxRPlb3o<lgq&XDAQdGe(7C`9nEhO!Iqf
z9pt$XFNJtH#PcCupd3<kS1KGOR_UBUKwsaOQ23F?g?J^zSQb7bi%n=dxE&o43?1iS
zo89qRh}T0*2{DyD8*-$byQz`-c8G}~-U#t#h)E&dBA3nxrg4#x<0~?UVnYMV6~@US
z-XZg4EHvpfDexbKm>FVvh<Dj3ee!06c%R)t=F3y2oKNq4nr-y6Kco^hR(a6xF)PH!
zWKJ~qQ~v)Y6fwZ`Y0%TvqOnRXVESkBDyP!3Lwrfy4DnTn(hyn*D}*hDL=Ry~dCNIa
zWQ5@4k$@I}cF76hl9M6kgz!T6A)*||cFCJjwRb@E?~xOR!rwLd-{QQ+BCa47A}%we
z{2ifXNQ7cHBEj4c^Fj<O$X^&@zI^Bc*1T8AXZr<<hBa3CVRK&P7Lvu3(h%Q-_%_7S
z5X(ZWqNWdQx12qj$X*eO4PtcK6Z3N=E9EJ{>JVRtSVMcVnjfeXJHH6{372t=)ejo0
z--TEgVspqpBVavS(O9KYY@n>}Q;6yM-WXyNuWsX_QZY}rhWMURD*J`u9~@9UuqLfv
zm%JZj3I%n0DCP(RyF%=yD26y0Vo!*@v<V@OgxD8~$VMIqCD<S000m}bMc(pHQ}JV$
zLo%IX_@g0?h4@LH{z$2qBECq^haL~Xea$B%C0N~9RrXe<82=LD*AQnzhFge7oC<MT
z0^;975v=k%P0Aec@y0(`x5nz9v~r6T9%m$A==DP_(*FwacZh$ezkf&0%SJ7FrNV^}
z7lk=e{ta=7CZ%p6X9p~{d8CAxOrV41N{Fj8#c|Y)BPEJ*QB;VbVhrU8qIfQf=cA|?
zMWrYTqv#n$<tVB|aeWjwL{T-0YEd+e;<~8#L0I)D>JTgve+{c4Q))_@DruUe>5^td
zQA+|y%KWvX__23?0v>f`Vm(RgOWHuvhEX(<ps}RP*+hcRZ%K>3m-*FCnSZ^N*({26
z?`OVJnt5XsH$~AZiq<mE&62)3Df7?9YV#;sL_yF}(vuT1n@-4V6GdhedC8I$3GR@z
zZ4~V!$ddFHNpF>ub+|2x+a>;LK!t1dzf+#Jk0LvnCr5$~lIBX<QPSrgsmNP8N!&S#
zd<nWp+EvnSl6IGrISZobA+b6`Fu7Nh``^(&3N?zND2k)#9Yr6R;lBK~%rNAS%#tYj
z%9M?JGJhRg+%JkJ;+e{hUUx;o)4!*Q#Ji)68A}}$#bB9pKokR`7_}pl$C<U6SyMCB
zo$ZE1F;rf?CyEE7cqoc{uRTaoKI{G{h9&XvC>}`S5faq3Qy-S#Nl70`UVSu5Tlc@e
z%Z-fUafzRhbnWhR7W<UMPfPlYq@yI|rDvlUoy3C%ro0fvi&3nJVr>*JMfufV%!=Y;
znPE(nTM1I%j$&*S<Dz&)CQgdtu1_;xO_nfTg4ZN{UD64XPK@FW3Eq_Sf|bfgzZJ!!
z*==9_D3c{jj^dptrZC$%(JAjnF;!xoPLp7I6t6GN<mn7q0`t5l!TV8sAi;-{ekAEk
zNtvfw_tfd#Q<sj<_#~O~X%wGD@wq(xB8vGE%#PyAC`u)^qi~|oB-SNmIfevg6jm~&
zdK1-^I2uJP3QuA`c{PY4OyZHVMT_E5%t@vsBq)<~q-4e1DCWu2$8Eux1yL-FVo@^x
ziYUHH;>A%ck$7n`Wmy!<llb~3DsNvI#j0e=>L|WWV)pMhQG6T4i73BJE(GQ~N%v9T
zqgWrsl}n<k8=}}K(>F=FJ&Mf|@Y0qjwo3ecGG*H}AnCPk-68SLD0WG(Thcv}vV^@7
zj2)P=KZ*lUJhCqHO3Mh-4@Pk)ndfj6N0Ruc1jlIEBsiW-pR_LX=O|86>7uw0#f`(V
zevy}cr%Fa?gfmY``kSOYJspUqotAn2pvg*>b4G%*lAep=FA2^|`nROKtNopkixTgh
zE(*CM@xPK@PUiVff-6y6O{S#8P%b8zTwc=DkHv2yE5%SbhWld}7DJU7s>aYdhBh$<
zvZ8tn&0}aGGuMc5i!16$Tr-AL3DP8GA?Yz>BylYXAZcw$>%`zBt!VuiF3ren976-X
zjNZ>|NIEr>M<WSd9g@{V-qKW3mVBKA%_O}(h8rZfQPP_vWuBWQ=+H!MDZ!m7m6^z+
zRSX|&&g|Pn&5S{bp>GWRWQMjew2L82;zy-?-V(!|G0gfP^H#E`ecRh&*t9hBc8Twh
zl!?I?neAi9jv+_h*d>OpF?5hPS5iK)V+?r`cS@#ojv+sZUu&Xvlem|p-IM7BG4znQ
zP|}`~P97-!haO4hDT<+3;@-)WJ`$8j+N*ovU2JSw%Dpk%CsX>zpeA$P9ph&`M86MA
zrVNT<a1sxZU}y~YNbvq61<bkR9U)gdv><bMj6V#*vKW@fFd~KrW0)Vq0-5=t7+#Fw
zr5GNL(ZiGZNDPn0@L00sXCxRI!{f=6CnR`M(x)VSI)>TO;P6?aWXiLWj+XQ}NuQ75
z1qqmEp%kQ-W0)SpyD^N3VXV9~E{3-xcqN(h)fmRd@LCM7CsW>#U_uNNlPNip$#2Tj
zNs`iHyq&x{Ifi$VcuEXYlX#j01HKXigBdY=9K$Cv<vmH?XGcizp`;&4I#W{SpG96x
z%pl<LX$)Eny1evR44+Hzg`~43{Zi6WNo&ih@-9Q3CSoupuwt;OUlIo~gfX}hGp84W
zpTzyvWkw~AB~xg);u6zvF>{&3b0nQB={!k!iP;uPyeNjRBxtccpXnT~EM^ycBW_<J
z)0a}aH;B^}F|3p+HR4zm!)l55#qis~%&#Th7{eL~n0c)P-^B2(1m7jo*GaHm(hV_O
zGv>^{Nv3R$VM`2KWB5Lqf2Rc7NF~@V=?+QXZd!{s^4Jx_Zke)2(!G*0opQB5h66Di
zjNuSl5yQVR9F|vqi{bYej>K>@hGWV6KTGgq49AlxCt~<X;s=sFbyA-GBI&O&oRZ*L
zO-@Vvm!yA4$~ych!I>D&N^mZjULwJHN&k-FpJe)l7%oc8m)Et{U5=qb{D0%F|Kz1B
zF<edNPm!0(#kuuB<heFXt(eSTDUQk#SCO=8GQC<H)swi>p8T3goEpcC*=^I}czk|l
zdK?*XoW3=$mP~}CwIyYqOK)V>i=%!V4<+z$0uAD57{`G)4#v?aj>d6JiDPOUP2y-8
zNAEcL$VXf!X}36<#c{pFH^k|IK^BWm*5Rf&ZjPgQ94(S5Z6s(ZX{$I|OK_J|RW><O
zo+@#)m4GSi_gf_HDCw<n+$O>8l4i$ohXi*@+FnxLbxjm=<Y@;<b0u|UN94uPNuG9=
zl=<`H=#s=;<G5zTy33S;WO|P{3X`~}1ij*jNKhncaq=oVt|X4Wal8=6i*fWLPo`!L
ziDRhDa914tB~T^3ThalNvL*xL7?i|=CAju#z9)`H<>|eW-Y4n(aSW4ScpMK(z!Dyi
zV1%UnXY@l7JS^!Wk~aE9jPQ9p7RN}6hfI7z(ou0dDZx{cGSAa-Jd?!N#Q0fxI$F}_
zBz->4Jw9R-x;dKpQXCT~CliE`c{z?TGQ(I&nKDj-S0sHkj`0$_mc0791XG)+6O$=#
zNbshllO%mh(zoN7ECI`WM*`MuS{&2k_&km;;&@jkzAxzvNoQ^A^<Esbr34?y6yE!x
z1RqH{Gmcrw^p7R@B#uv$DWAph?*O62v*Y+Oj!kiFj-xaVEskYzERRD^=A0jg5r-*H
zElFc>*b+FBx{`Wv_;Cahv)HHvVH^u0!gTW>jwi1s;wY1Nj-+#w>GLF@ye&wkER<kT
z9A8PWIGMgAj-?V`vnrqJnT>Y0TamoFQi4@+td8SriPuQFPSUk;d?UfPlCo~!NuW1T
z*C$gp#IaH0o250QH(-lA-5tkP3BH$fo1~(F5^RrShXgy5>AT|i=o`W3J#q0TbRK)-
zTwfD-zod`;CK3<DahQfBfffm2Dv!kZ&23zW<7gbmWKnO8j8wTT??>Je$B8(8l8I-M
zPx)Dblal@->928|N?!d<g5M=Q9mgNZ^grWRB!{DX;#rw^E{?yFSI<lEcO2IS9?Www
zj+zOiCUA+u6UXH^{-d=#)N8>Ep&eIb{z|g`S0zr7xSXWr6R02ob5@k#n)X$exQe7z
zC9NiDbxCU^aOhwfZ{d-a!1XdQUDAvMY9#=P8%oMNwI!&NKwSyyCDZHkEs(_Ra)eK#
zQ38#VDNPb+n#9*h&@6##*_iW&1a3@Ty-9+bC7sp3Ps;>aCD1v6e3{ZZfi?+bO8nX*
z5ha1P3H<t@U=ELVGQE9*Upe^S8}k+kZk6;lNpF|*js)(MU|uWH_H2m>auVnuac(lD
zqXdlC=haS<lB-=3=$gQY1Rj(r-4eJff&LPAPoO}89tjjC&{N{xlCp$e2}C3=N~RPi
z{`c<S)jl$@MAE*J_LH>Teqnyq1Rh9$uCu#kB2xw=Fff5Z2@IAg_enY=d3C4+_egqg
z0-UPw79RH}Ff5s8xC9)o=QQraxl&L`jHx<I7W{l9fkzXlSBCm!cr1aD2`ouqX#$TY
z@I(UB6L>d)Clh!|mM~7zrxSQq0vhvY5*U@h#2rO$$F^Mt7qY<72|OpSJ})U#UP$0Y
ziC;>lyez?(1jb6RRo3~H1X@nYd{w55XG0`-J%P6+U^x>cm?-HRlD?V1q~z7NB;X)z
zvIOr)Iz`f{2~3mV+JuE;fEfwAmq1wpa}s!8Uix*G;!5yA0v{&uk;F3-&?K0Zz{e7N
zlE4=dus)wA@R`J)OL|QWXG{ELGEXTbZNdM>czOaxGTltTlGskBI1=>T-;O1F3Hb6f
zNL~#Sh$eANf_MT62~s=$Pp{{a8|yNc&CWd8M4gww`~(PiETHU3yhzfolIe>R$o?m@
zT2pmd0?QNlg(@ZsT#>-41Xfd*CuFWnV053hH#QYQ^>qS!64)#AtVv*P0^cO?tvub7
zz-9@)OJJP@>m}VF=|)Na-;=N<f$cJ7tE4RXdkMCYCR464b4LO@Wy-E(`ff^>bkgoi
zrW{LPe-a-^;9wFTlHjnUM-n)iOn*`iDSwow$0a?Hz)uqVoXm4lg8#auo=T=vEW>XJ
z{4P&VC-Aofe@ObLq-P{OE9p5&*{;7NI8PZ)&SL&a;DSuNDCwmH{*~Zz0_Dp7XU+ag
z;7S5lWqOKCyzjG29xSlDJgtz-d2KjaNuE|NLzOaAEkm{B)pQA}OIo80HIwP7Wk{2_
zfqX<pGQE}rkhHd>b;?jzg6pLWHz-5HGCWX*5oKsphQ?*Mtqix9;mW3zCNf(qNt>48
zItiLxyH`?H{)RH#DDh3nl$#}JE@_K0v`nUVZK}3T;x=W-lvt6pZ8E)`1X*RcMS@!;
zy>L!=knSkMon;s(Q#zgL%#`+J$d;!$WhjxLLm6_*(6J18W#}bSn5|P8x=Y+y(tJs~
zNZPdw-6Y`X>;HSRK&JGNv{2HXW&fM)M&v2WERvvD(%zExk@UKO!VB?#G+hUj6vgu<
zNtEOGlni&kam1Zn;@+}*u!P+c_JBQZB}f#IAW6kU5J5o6V3weO82AYaJ2~!>K`@}0
z#e|>)m7GENe>?x@d-LkmbocaBSAA98)7>)@Pol&<CEwp=N|Q*q%>6DM@Lw*Y)}a6R
z!AU&e@<aYh8R{~_Tsl075iT?GzuX61=JB7xW0H6%$vv4^lEl~~7FMh|JBerA+;K^a
zXBUvf!~b3NR1y=D{5(qrmXnis%w?whmpe6yM_m5V|56xTr@8#&E`7qKPrCH~M{ZBM
zJZqcoGBaE{)1|YLc;>&{zb{q{^vDb?=KPm3H;Lz5ex6I`yL7>SxzD@I3oc!l#3Gj&
z>V~YPNi0j^jU-mNiOXI3x=U9ivC?H;bm>bjec7e2xRe6Cn#5}^|Nk>TwJ)}b`-RnR
zO4|o~?<BFt<=49OO_%bjw~|=r^6Oo?!KH7zbYl{c&Y5tn&da#-yKdrpE`8sno09mS
z%P{u?m)Y#nEiV1EbD6D4Y)hi|9>n$_nS@BRq;P)<QWA0!D|D>Xp(MFg0QV@kSAmv<
zo<vweHwi`(W)jbfctM1fgq=hq5ji59BvOoTN&J&UI*IK`e44~(N$f~sXA=98*q_9L
zA4_&6v4`%X1RraZ*v+c$5f(Q}T<%xAmolGf%>o}MQRZIZU=laa#gqB|14;B*R>Z7N
zl9<~lbh~n>`~8v6lQ@*b&q@4}#1~0?nZ&nAe3!(S+Z7Kd@l_IECvmyFuXCeN<9DNV
zmxsI76TV@4&lSvmNZ|2(5<ez!B#B`MLO)QpVqZyLU!Oj{9sd+G_$Krd;o3m>ZF}I?
zBz{Zck0ky~;%E}mhtXq698co+B+iWz=Cu@xJNg#Q3QzA8`>>&KxrMK%7C4c_sU%J(
zaWV-s^*-@icu7<5b|vu3o#0<d{JNlsM+H4_CW*6*u_CI9IG4nEM!zKPByk~$i<CTx
zD|8|w+H^zKr6d}EAMZLo=IHUO3=33ClAB&|okA|GUS@CL25mPXxOHW$_xXZ0TTB0?
zKi(s3d8qjBeBu2@i3zQQG9t373gtwU7jdd2T-H7Pagn!zh`U5o5>Z*i!@0tai9r^t
zC_;NUI5{V<{gEJbUa6;l{m#IGSg4wadqva|akq%-BAAjTB3ndFk$>sxSc71=5*&KT
zGox}hxViU;xNl#i>!dhKI)#y!dWC9>_;Yfwo`}Ex4b~A+R|IqK8(b(~i`N&?f4tB@
zL_-nOKa0IFwYb8RV6KS9A`&9*7tusSQxOFs7tN6;qM3-cBHD?_7tvfqD-o?lv=H&h
zuE3wW0xex88S}0GyI|I&U>lL&2!bHOOO(zoVwqPb2AMv6d#13@O{6AwG)lA=(Lsb?
z#QW!izr<rbF9bV^n5hRkiTI^XXj)a_E5DCfpB7fvDug<V=q94Oh@gm&h(Zx_rv$r-
z2)j%d5&s(zV+ujV!cYEFAfJo(5V<W1#UlEM7_r(Lp_WAS5)l<q#8w;#EpO~)di~|z
zS`P`mMZ`qBU0p~n^OBlVf_Hw3_Z87kL<uz}A}(U%&0zm7k&>2za4lH6ps0KGP^pMf
zRl2pR;5)o1+`Ct3fQW%29uqN5#QN%?K_W(qcu>S(5f6wMB4VhB;S@$h$G?J8uX)~|
z-glUYZ3ALGH^rxyFX1J5WkaN+M2sd*L`)Phh5~OX9V=p-h=*JN+<PMQQ=<g&HeSR8
zs^zw4MKz)Q+p&Gug9p!-OcF6!#8eTFh?pW`&Vq2sqs5f-a-#$#WSP!p=_l9XkFvII
zkrQiUkBfLh#4{phi+GZ#3k04P`C(f;<?<&NdRrYRL&H`5BYOs|BjWq(o>?LqE%N4%
z5$3-WrLLakT|~TGCA5IH5b>Odc{Inqf{&YcU({kVwb*@oN{`hR=8ITe92&a6;L*;p
zX$MOeide+jMEoFPvB>Y1V4H}fh@~QyiFjSa8zPpASRvv?5if~oKe%`$Q#Qv_UzDCn
z6f%^(Oe_^fN<!XOMZCiDl}qSEHF6Tuazn3CQFVkV&4g9Fsfc$)yeDFfh_xct(KI5y
z-e3Brh__h7#sXfYjf*e78LW3K`-9%04K%cfcj&NY^ldhT&t((hq;pP$GPGOdeGy-t
z_5M%92O>5RNI8iIYlrL+!e$X$L~IrD+LBP0vY`=Ef**?bNW|XZLY5tm<RnT?g;qZt
zKX@V}ijYL?6tPQ$EJ6{HqRz{gs0;`qY)U0U7h#APdnazvmv6_*4j25@OWF??ED=|8
zygZoLbA)iHsqpE!@Y6@)X%T0#h1LJ|+b&`UVLv>>lkO%6a}pnmI3Qw=h+9>Ky(0FB
z7(cyCDqG;`ei7+G#bgfBkwtti;*f|>>4WiD-SP3yMEtzk%aHZPQg5w3zAxBz5noY(
zBIqN#`$syB7Y;L+Tqq#_jfihWd`CD{2+@6*b>u>URb3!vdM)?<DB_5SdnDW|;U`ur
z;(~~aypf1sMVuDVWvTZ!5l2Ow5OGq(?;?(gI4<H3H;ygTqThWPCZ1ca@#e10>UY)i
zr^vN~c&&Wll!)t%iim`^KW8jeMvML>;%^cEP$weJyEUJsLz(5zQNrpWHfKy9U#BJB
zK-Ca$TC+ju5*<WDISJ(@T%m?V+@!8V?gPhlqJ41&X3-|X4Hpk{3%zB>$BDq2+XMfK
zxGnNMvP|zLKT}jj!p(5(ovrb*5*XOYzdWHhnk7__aF>Lt5~@k4DB+_f-bxZGOJH|N
zf!UK*kwEp%&PgzK^_UpETS9dS`SpaF5*VMeB-D_QEoIQys@O-jVwo2gd)d|UDoB{J
z$otLX#kC~Vme5K<YYBBE(An!tXu!L;JWuPfhA%@5APpscu^IUinoG!$kSn2ygr*X-
z@j_$Xk%rhFsIeokd_#2H<Y1nJW)j+-DVWgL$5S%r7kOJqh|I3QnBP(Y<HM?)#0QN-
zG))@`9tj;JbYwjziv$TiUMs=N20j{-a}rE!C!tcqP)VN9-fdB{!myYtC?7>TN$^YP
zEFmcI3%bI~jf4UT0SQ0Hi_=YnyxPL^kw~xYfslkQ61qw_Q&%W-DF+oxCq*ut3a)-B
zMiq6J(1Qw;`K5I9q?{7omatJmR6>!2=@Mp0xKBba38fMe5_(IBNhqO0Aas1Ds8~WD
z34JB}-bjeN7Y#4=_LIPVAx<?G`*^yxrN9ACf46+~kpi!}U%~(h6C^w=VW5OT5+0N=
zO2S|X4@ej$VK@yjw`hojp)^pjulggw18R%|q5g;BBP6t05$<|2dn9G(>pR(0c;$S_
z_Z32;C5(~qkc6?WmJ;8`|8TJ}PC~n3-tiI+R1J|~;S*Bevz)|436mr|CSe+}M@UF`
zgnF15R7V#VUJg!`a6Bi$E|RqF{P3d$Kq^)?H}N<PG(P^Mgr_8Ybuj*fg!e8K5MWPp
z{P{zC*VN!+<plPs4CXT>%%WW+td#JKgxL}n5;KL~XC=&$Fi*mK33F-a<Jr$iXumeP
zc0<Sfk%Cz{wE4N%n&R*R3C~M-L4q_)Xi`(y-O@KG6!}bv4i|ijBrKM&gr*O9cdRbI
zl)B1Iux7g0GNLHtT`pl+=Lne>CA=izuRLM3gqJ0}B4vhKZ_tj>7{U3fgxB1Z+MUC%
z6C_K$WIE+0SZ0-k9gPJtYb30d@TP>fB&?UPK|)#%jGqx+$7|d9o}L*NUMSLEh_N4>
z@^^u_)ccNvcP0EP;WuhV!ut~TOZZsACK^S8Ey0oSfrQNxL^e&r76~6pnep&8x;dSF
zVsNWVsnY4iK8{jo$0X6aB8&3Sd1VQT1f4^D*UGAdGUp03@*`sXa}yiO3LI3^&1nKt
zf<?7IBpjHW87>|jC!{F6ggvaSp0J$_l(5UaoY(FosNRb*m@w<*Cf?l=Sbpz;(1P*8
zUcy)cQBgbAcU*3QVdQ{>gA%@$@C~idGxCXqLlVA_@Tr8)Bz!KR;kJ0YY$5)S=hZ#2
zQQP7zbA>M@9425GEl-DYt^^t0Ymeq<v;}Kbj7t7i!uJw>knkN{?~!<i?vbA^d47~|
zgpr@_%qE{LxNxT6a0B6Hv2Sb(f$skc5!>EJ2lwWAkJ9xdT$6B}Zd*BYj24&hHvuf+
z4@Mga6T3%FNjNRxgoKk49vu|h&^^MEd(Q^n=^6Q7Zm4=~Vd?hj)bKwN&Ph1WD8U-m
zMbA>O>z<9l2(vCoxJdaWTqU}cz$Ie%toO2nC+EkO_K#FQ5}2Kvn7^>7!q({C#-V0|
z3vNi5`Ag`wggXrK67Fv%B<~8{k}zUP=wAu1=O&m^Mn+i~6=hVCQBFpA88xivT{0@j
z@Kx#NbcsAuEktHVC?e)2XvE4gs>rA&^UF4&a}S4aC1R6{LsjL>Q1j#5#N9Fm-Xn0F
z-z8V5AtPJHTp7>Fs3`+7LNW?vemn>F%4jMhPsX={3Tw$|BqK*gZ5efB)O8aZ$oSKW
z){{|R1|L;eY>FAJ*EPlmlZG<hUFhBSYAjdAoksqX_Xtg7w0gKqV;QMd{$sg`nlsDH
z_@cC#jC>hhwn9d88TRpTYZ+~1v~c;ByoASr(Di*GW=+@`@W>EkT)350|L<%L3|3bN
zvF~O`Z%h3Y#X8F9B%_^-_A)xixH8ALsJig&#|32gK;)NEAfvO4peyalJHddA>q?Z8
zKij6D?S_sO`^3JT9V6``^RxLFCS$mau#9dp`pW1hqq~eAGVYVni}7DZL`GCbkqmZf
z7q7%=dOF35OP&W7dpUSuUuOJW&|5}KMzM^J!3a+$oe%&1d_NBC`^dPFn;;XHQ6ggi
zEh3}8j8Yl*%h-LZV$Qmb{aXn%UxK!1oZu*t<GqTfLW5)sma%DZXo#HYwLkAuJo@+e
z1C-=%&)%c)+);%?**#SX?YR&fA!DSBsWRVt!h<qK$(SJHVHq!!6-LV#BjX|7@!^ci
z^B61hr#2WbWBRT@%`AcOZF^(yggpTkm?&eCjL-V`TJ8yCHw#UcF@+j#oESW}C?}jL
zK*xMk#$z&O%9tf%nvBO~JSpQTnLo_!_=JoP#|e*A7jA_6&`0jx6Mvd_kuk$fA2`2=
z1OB7W7X5v<K!ZNRw)c-bOFNDi==-zfjPJ8+?n4bw;D>~7XT;{om`{0Rd@f^wjOU4J
z8Sk)NG8W2sNyf`E7RgvFV}%Tk94Our8Oy1bs=`tk%UlgGhJRT<v}9_K+Ta87N*OQ8
zX#Hg=hkpys6;xg7eMQErGS<p?Q^spDUYBwC$?$3!Z_p{4csX2I#oVXDEI)8r=5&n=
zK7JCS1lwCO*2!2eV*|~4p<t06y<QL~*Gw4tbLeduCz=VHcLbi#&(L>eyeGqyVNq8!
zs|-noOv}pnK*mQhw#wKnV+(af+no$O-b83QLh$|T`S(PK$M_e*+ZYONd6F_jnyEPa
zdhO87aHJ^LOPjuOF09B<WoR;V7cIBS3ruf#Z>aI6(z$~Rm*;p5Y9`0~_PUO?3`fRZ
z8T;s=GCMEqkg-$7ug!(+)N?Fk4=P-F$1}QdViys0DY%E`?iJe2X6A?Z#L5)T3GmTx
zzYIo|12PWE_?S%y#ST5189RN#R#fg*S|#);BSV=`_e;TndX%U>B;yMi|HwEa<4YNb
zW&BK|%lJyh*D}77@x6>co{xPaqu$Z@w}egO#KSd(XXnOx?TuHyne~H=BQk!H@gp7T
zqxi|YOI~W6sCqe@cdTZY&de5mrF$|=QSCC0%J^NzaaQPR<CshLHRcF2Q7KQDG(JAF
zLq^nJ8YfQ5IK|+3Jo|4Mr)6AiocN0pUJ54nWF7>Lod}W7Zjv~3D}GkSIR+mE<rJJ}
zXkuX**JNCj`H?qVVbd;WPk5`(dM$ccMqql3<2w0r@S|a|^6NTYr_3_`m2q3fO}grH
zG0wx>l9B9JaO}^_luO@O=ngTwzGE2$O!+Ppq3ZbjNWQ#+3JR(zxLd(pN@j3XNkL@=
z6&0{g=Xh`ToT4fUID1xA$@Ea18RN9f!KGfNR9BFtAX`CACDX-oEKyuWsG;yX)dI(L
zOkr;hB{L``&!>-C3Ti9(R>gNJ>L{qI;I@K03hF7SuVAUdZVn9;G*ocEf&mH|DacV!
zsGy62Tm_94v{ukYK@$a!-V8QZ(CU<@se(KO`ArgS3M0+PxLI>fg?T#WM5u*=mb|K=
zaIl8J!mSk4S{d6sGwe|yDDW#NP~cVIQ_w*{M+I#av{TSt!B<}2=0K!(w$Oifj2DXO
z08@4~_Z6J={2|9WQJ#9CJ%LC-!MXmCpn?!pq+oUZQ1HRRWHPpFZS;%D@$O9$P2Y}o
zRWeVtJrzV0gcWpC&|Tr5)}uWXSOW?_Er<-?TN>^hx$sdes-Q?g9|e6C+^3+I0=0f9
zrl7Zy3DJFb7Mz+C=Y=DhBuI-D9PeK|T8Z^j5LfW&oveg{5(WL;!lg7#Lt)eOaE1RB
z3~J@$&`9z4X58r7Ki@Y{!5{^*6g;C~u!08^Jgjiz7KTtN1)~&<RxnJ#aJM-RDj2~!
zcgIF5@SH57Dn4xKd%T7qzZE@vCOCL~$1w^XQZP=zcm>y{6`frb8|w-%r%7Vq<3&rx
z2z;cPpzvp%Q7UKJTcwi}Ojhuif@un-D40rnDR{(J;}Q3E`b;b=8~CeRtkwR4HBAx+
zC&eFE@PvY=6--y~q+9cf8p2c5VIV>!hjKz)wNklBVzUyPp<pJFygo{E(@Z@%KvM9m
zg82#-D40WZt&Pre>0AZRDfqlef@b|o@Rc+Tb?h1YdTsQ11-r}p9;q!X;zaj(&kG6`
zDmbyL;O{B|(-$jPqF_><@X)@3qbG`3Y`KCJ3U=`-1uGT2s9+N%RPd65msx`uSg+s}
z1+TJc3f9n|GsCYbc!U0;1<1edrmX4{S*1W)5z9X3AzkYx?jK(Gmdm_J0h%N_b@Z)M
zz(m&hZ<E9Z1#c_d(o?!o!8;1xr4OF-^z9Mp@ksG|3f?DvdPG=qPUVuCf{*+M3N|Z{
z6(|a}DELspHU&wAUyt#Aq+qMU54>lw{G)5Ud<3R!BIThMocB;jo<4fP!+Iv{iK(3Y
zSKuf}DbQWPOk!Apq2T6e&#FH>H}wE(XnMv&xZ1A#PfQP|6>L|q)3qIyNqLyKgLYrz
zC9~|JhYj4LU@t=xA<b~XmMZv8!S@P2R&YSUAq8I$&zu5M@Cl)=VC*pOrxW9!5t%uG
z&y~zn_TTkG?aRf5rh;r`M)+US@z;32R&bcU%!pbs#KfKlLX&3|eZvr>U_$*6Ps1<9
zI0O8Hf*%$9s^B*TM-*&0;rUs?FA9Dles;##qR*R#IDYuw7@<ZBUz;r9sDj_A<b$D-
zrJ3oGM8Ax`bBO+jf<GA$csnXb!AS*Y6r81a3QjY4DoFp3{l?fB!^mHZV<QWB&?{@_
z`~KnW0ujROsYOM{ri1kS>Z}V2E-D;Y;)a4t3V+pvD+;bMgy#Ex>mFldVEIF1ka34a
zMb{WAoBOK28@tIEa<k%&PQF_-bW7jJ7NLKsv}In#8D3IGMOhWYRg6$kPDObYg(|wJ
zsG#C56-`t$RZ&qzB^CFmxK~AG6;)JZtLXg*9?$nxRdKh9>ME+K;N4pcDc(6fe5185
zOGUG$i5e<im=fnHy)TgOdtqO^rV6?kT*~xXDr&1}prWA)2BkVG>Z+*c=EepVvt)f0
zYfHVay%lB6JZ+>RM@3_|K;D`d18=U1;IHBP>xM{qm#$3{dAzlXHYz+S@>MifLAVmP
zEmX8r@mH5vYnP60=WFFMOxar{%s@&=3o8Es4Zn&46+RVhRdi6%QAIly53=UlS?$^O
za~|@;TKIZ32+e4k@VpoAq-LTqJCw=eg@DS<7znAD_HNdKQH8G^2~26}3#xc}NsLUD
z2V*7sOOMqTx~jNOMK2ZP!z#L|=&quNik>PWDxx&U#o&V5LFQ(OQPLt6d4GBa-5pwe
zuRz+Ht!@&Et0++sQ&Fs<kBYu3`q51D!ps`~Pmpw)&%aCX59%N3ucDM1RxwybLdE?m
zmRt-DpmEQ5*mmN%+Q#@mH<7?*)&nYrs2HYVRTW{(@WP>LCP1-`O*h6F_j(VAkr_#y
zsCY%it13pR7_DZyumvi{sCbAvSMivNu`0%?n51GdReIJlUd03z538WAng=56JB(cg
z6N#U9W9*yCO^Kfwotd(pqGGBFW<A0NK3K>L=Qjy4_)JsrxQbaSo>B3HiYHY}S2087
zS8HNVsh|@*O@j(PR?ADM>X}r?j4)5x*+nXJWred<Jgf2}33yHg9c_-9>B!iv(-CMp
zcIdp_JQefR%&36SWpBdt=LusK3so#qu|ma47wU^uEK{+ZN>j0vNB_v|jZt<SbjB)k
zV)QRoMUQyVZ8&}HWfd=}AO>!$rKA~M5gsaDS7E8JRlGrMtN1|0W)-VdtWoifig$^B
z6>q9or(!)FFwg5*7k$gc+bc~I>~J@zc$+}&<lCs?-|6AHoqS7n7D#72i8G$^Ei+^C
z_f%|Rc@^&yGcA3sTlm<bp@B&0x{mBve`@aAqT)jpG8IBis@O{BQX#3>rh@%Nk~+`#
zO=%LUxwmv{)5NQL3-}~BWn<~Vrip!D$5pz??CLs=r9$H^l)zv$K+3!PJR=hcO(Oik
z7`qimMM}j!75i1BRcu$WSH<Bf!VVQXRqR%=hZ^2hz^RN~D!wvfJZKt<$4WMh%=p*v
zA;s$tXMe2XfQrvld`=X(zW;AW-=_>m17e@B6-ty*V%oxR#oW*#6<@F_6<@1-S3Oh1
zVMc&Gfg3vl1AhqFLkrIphrgjPZ$>$~7<nYHbBsXddlf&Z*r4HU4L_<lLSNQUsNp9S
zKU4o2YH9dI#jh$Zskp4-Hx)-!oF?!X3FUD1{gL0<WEICVN9<1(Co%%Z{&4BKDZ!H}
z{%D%0A1^rNG8-F)ere}#Gf4Pb#Xl-8FuD#C&QLRp!spb?D3Q!rR`_S=_u|mvs=|2{
zw=0!&8Y0Xuja*c5^Qiy%K=_J^s|@2B%4xW!;yRJQVsyiK;TtT&dR)F=-^iQC{U>g8
zo!?Aw_7rdq_Ku1&8h&n)d8SLMF{W?~UtU864OKN%)A;!pRMb#eLz%ophaM5FqrZ}d
z7qf)Ox$w75gipFfs%T)S`Kh`8ZVlBnWNQo*$kO<a+JfGl{53Ru+d0N1QSt{{_{l)S
zJsRpBFFt%T_}zfW=N<i?bK%+=>S$=Kp$)S%)YGu3tUq5veGLsXG}SUa%dt?np@tj{
zxfD+iG}6F@xoNdRqvb$j4SlB-HK714gwOMQEe93X%Mo(A#PT#W%u6)Wz=7X`ZG6o&
zw9v4>d`U|Ut+dQ?8)xA-1(#JvAn(y2XlSpYg9fk06~^fLNTjWX#1BEAhHg##v_(4&
zOl0`w+I=wJ-%*2KLxINSp=c*IxurjUtPs%9Swm0*b#?1(_}46<w6V9@nT#(~2u8YS
z=&IpK4NqwZvsw*9*boifHT2L>%G*&|4G|5+8v1C6YADjsi<N6wy}N+sW<B@0JnJ8w
zh{QDfRT>fBi#^`hTQnfjS3^GyB^vr`h`U*o;h=lf;$!|BLxek5gLk*^XBYbK*DyfC
zU=7c8^CyN09c~2&Y8a&9V2{ZEvV<@CM0!injsqhPxCO?oi4D^*T*Jc}CTbX=VWft!
z8pdgOP{Sw<4{4mM_m3tRh6r4w8$+u-AO!LfJ6rlcuNTT`?C)xot}Ly&-~nO0hEE<4
zCTO^?mH+8M!i&xQlQc}$@QB6_zhH`n?SqB3z57n(?ehFZ)61})9u<6#X<)Uy#Wc1q
zFF{*8P8$)Njr}yx?xy}NZT(Mcn66=whQ%6YXqZXKHO$lS`w(H4hBuoEvo$=UWqc~T
zou7%%YM4XB?k#w+d}yu)?!;gj@2-OR8Ww1Hfi7^fYtA#sdq3-WV&l<_cT@QfDOn4N
zz+1rsSA$D5{NeMzsNp3IOEoOhuw282w`1S`>R;hz)hrEcy&7Ce{mcuKd0E3N8rD)6
z4X<i=O~V@+R?!d#3f6}s(Wd^_iM^)&N$vfs>Byr(Yg{!_;3xC^pLX!K9xS}2VIA=^
zR9Nq#?yF}08;$)`)WvrGt?m6AHN2xCU+1^f@UDjUG@R9NPQ&|jC=Fj~IIQ7+8a~jl
zL&HuDn>B3FuuVgfo^mJaL-+0<u?&OlV4?B_&sLf{FLB=>LDV1-(i(IPvId2o*x0WU
z04@AAy#9#~2xQ)`Cd|#tOc9fLrm5f1U}_-bEVmd7*cu#{PyLsYrnz07ZDfI68g^^=
zRKsT)_Gs9v;bRR4*pQ*ZJ`F2wd-gLHUGPvvEI%pVe^A3kwmr}PiOUcS<f*;SH5{TN
zH1>Z%JcJ_?mFQAAN<~q_4|nu`rSV&E_)Wu64c{<8G0tl^qTxFYuV2ajUc(Or=TU$A
z=EAsvk#i-Pn8`-{q~Wc+#Lo==u6|aQ1{yU9P59matA-5IH$wWmhGQB|YB;4~Wv>4?
zF`(g3m;bROaN(~EeooLveG9tW43eIifYS_a8vdcHy4CWg%p&kOcw@LeqoHFWqU0sc
zYq+4HijJx}E^4?$#cH^z;j)G+gbEG1+RG?+RRfnMUmPXyVVRE)Z8yZOYak^KZ)y0K
zVO&R99k(@XT$Oc4!-Q*DN4)-DqLEXjfrEL8ayrWEsHmfoj{3WbE9kgON1Yu1@w~+C
zyaaon3xkDY1BJTH5|wofA1d4&n6W}N9e3-fr-ReB)pca)xJSpmI%??1)-m7XtEq!M
z#qr$*9T$Yl?JRh^a|}8d`QJVltfiy2j=DN7HTN?-GPjNnrdRzV%y7pZ=Y@{``Z^lu
zXsDx+j;1>DbmZvB)zMf-6ZfX&7kRm^s%(mJ@#yZwF^X|n%PfR7<0Xr{9h+t5li%nO
zYoVj1j?p^C=xC**wT_66sE#%|JUTk-2<i}Ycy)Bt(Mg9-M_U~obhPW_r!ehwwAVAP
zv8YyvQIw)yZ6YuTXR<o^{W=CJfdH)&h!xOGe}wI^LaioT<O+v$6zb>`iG+3j-vpf3
z?aF#u_&CMQ+1-Y6;Eh&7Hyz#GGCf?{Q^#}v2H%$hTWSf{dq#?M+^6&RxEP?LmyX`9
zNF_RA+=lm2w2zLyIym`IOd0A3HaFx%BK@eS+CrQysxKUw8GdVicw;ouUq`8H3(Cxf
zBy_M9lyjht6-|U8I)>^PM3w4T+b!}=p8)9tI^^DciS}W%xQ+*PjMBMvO&FnrrWvV&
z#m>e9?1MP2Aj4{J9V=!J@{o?_`$its@tBUWI>zZ3uVaFaNjfI$m{A&dSjR*iM-mZ2
zJsl7H(l;WX4^MHgBJ+rjsXAUsM4m}RIu8@*T&!)Hj>mP(*72;4Cv-f?dUWo;!c#h)
zc1?5drL5_CrVDEkim*a<b8Ov=lE^F_&k!)<(QbK|5$XNXz^wJ<=jfQrR_Iu$gDH1C
zU;Q~9^N3g-3n+#Tc7i+zU3v!@);6eCXpxS^I+o~IN=uC>Wc}<w30>B(%+>93w>B2$
zRqSeC)bSF{XQ7vcm)Rm6mknGo@T!j2bc79bGw`~OH*{RraYM%{9jkR5;@x$up&@jb
zIxHP;>Uc}X2Rb(ESf^t>-9*Pm9UCbB8t>H(fwq6f<GmwiVxe~!{3(NuO*)1(7T(h_
zYfV<~W(o3T&%{SIOZ<<16o~z_xJYUyMEtQWIzFV8i6tE$>Da0x@d!j6+jJyp?nPnl
z#+=zKQE_~6<KB@0{loi0UWroOBTRH+st!$uPAjn5Q>|;}3LkWi^xBqX=;&EPSlvRX
zRXJqqaCGd~@v)ASj<k-w+(CM<V7rbTI(F&UP4Dg=>Aj)jPS=Q&=ZAgA1ABCQTT;kk
z9r_j*l|;xKS{&Y|!{{F20{sD6S;wb3KBLZwST42K3FTK3xN!f>_E@M~=yQ6?;-a0G
zJiMHzU+Vlu4UX&hL&sM-sIDJ${HWt=9p6xa_lAb9$of{tcW%4pZpmU>zNZy_h=(qD
zj_CMF$FDkmV?&l_&HOhj@L}|49l!9n6a1lrZzpH}SZ2I%jH*5z`kjS)MuzVyX!noj
z?&pi%+`+G(;RJ2b)^}OQNgbzjoYiqo$7vmZ>G(&-86AJq8LtF;w-6q$94aaF>gO`c
zXCD=Mxte+XYW%#83k;HsOE-dRh6xw-%;qZ=Am#2X+JcnzUt!a9T+_jgWUtl|ruuwG
z^D~})lL6U4Ed#f7{s0cQb=+Z$GEmJx83Sbv+-0Dmky(B!XP^QTKg{OVqw)s0=E%gA
z%Q8z{l?+riP{ly{{dja&fLSj$ON?LWUEDd-uib5+x`Av1H4S7LNH$B<FmU6(%&Nz+
zQL&a2V~3h0U}T12ojV2YF%Y>H<TF~^*8Wx>L~9$UW1yvhRtD-CsAr(Ktv{CncktIY
z(9l3517kb*8@MU+n)!1K{M9VMR<~{G=P8$c8yjds`Psm#LY{$U2A;_Em(Ne+8)$Bz
zg~35l{EJ$lAK#5}%ztG-VcV;oXCDf;HqgdECj)*19(rYS!E3;0z+Tr;F!%<2oa-ag
zmKL=&(B41?N|K*wXW-l3p$_?pL*wE@@<OH&?P!2>)r5F~fq;Rafsg?%mv=UBrcCHt
zEjqeFh^O3zTS#YL=Iv_W_Vr*F-tLhg*KN58r2EIA?gn}oc+tR126|FC2BsL8Y9MN$
z$iQF&4;Z-5KraJ*4fHe6+d#}f|NKNT?|zR^n(rswac`)Pn@FBnaRVh(-Lj$qOk}mE
zg9!uov$nJ0QUjg)7dri7H3r8f<R|#F_3!fVKm&seJYK=q=87k{CCUqj7#M0`w1F|S
zd+*3F1H%oBaBt1%K~En^wYL%;bY*yBanUHYVvTq2eX)yKp)(tN4;dJ5aHBF92gbT(
z#u>P@Ir>vp=wbJCqJc>UtczJJJlV*^F-jgg9|uBH3u2ELc+|jb1J4?G%)m4QPa1g2
zK%!&darg2k3{Zx?_t)fAGfHAl8|czCGTp!o1NCQDzq2tq)4(hP2Ra0vF|e(Qz`3la
z0uk=!nyUmUXML}4j)D0G7O=e6H`l;(2IldoFYt6_QDmhYc;3JZ29^@}??xG378+P&
zU@_rTN$8(bw8Y4a2e>7V6TfmF-&+p{ml;@2uW`$-H25!)*vWGRrPVWgv@Xtyy=>qW
zx{rbFjQ<8+<K=7u<G+D7i207bw+*avo3@soLcQ_UTe8*|*f6kgVSa-2E&5lY=6b5J
zsh{Cuoq=^fmazF7*vvNmt-%;aWg7`y1MeDm&#m))mk#jx4mJqgH!8C!eUqE=^JrnS
zfh`7P1B!u-`H2tdwgyB49~sz6FTUcrwXBHg+X(4$A$oN6&XK}D!e?)IBm<-?jt5i&
z8U>~iT~+7??%5DBX!pT=f9=#i{%<_{ikIlJiP#MtQwAIZUsMipYt6@_V$a87q&p1k
zG;r9!R|a+&*lpmTflnw&D`Ag;{RTcZu-Cvo0&hgDUaFKdII8e~fd=VPf|jQ&S)*&@
zi*)Iy20o+Cjm!p~_r?l`4Ac%sSl|mIv;BtrmvrQ{QKpc7ZQvUN#|`{Jk2dg~fu9Zh
zV&HpPCqMCnfghPzSNL;TzawtbCSCXZWFWVH;k8MT+9icG;;~;1{AS>H1IG*;$xj?5
zejbYX%L?Q#=O>=|UvzV$qHUvM>!i{@4V*CWw}F2QoHTICz-fbjsfZe1#+fVU6z%LD
z<LO@v$V-a2>UW0fHE`a*1p_$~g6HTO*F97$vq%rb3olaC-{P0(tqWq=%@e=h@-$o$
zxoY4V;b&rniR+BL3>_x!GjWqqk+IQ4o{4`Md>E)rWSN<`afe~wL?shtOq4ZIjs^03
z<xNyD;c1@8n^ts}iHXg9AvM62yJ@aR{5VpmY@(#pTh#>lDlX+bOf@%=>35s>d}EB`
zgc>HYO>kYTp^2I%V4{|Z+9vKXaq>|1y(XkGB{ky3?0k!wX9f>-OgyzbtDcGau55Kp
zjA))XmLtq+o@iDlGcDY}%<QZq)5t`QiChznO@3Q7tBDDQtRa<z)S2){pT*ZT4Ka2#
zGm&qit%-Ifnww~0qBV<|{LxY=8@|yWYH6aC3C5!OvC#NV0gnm6gwMq8qKMbTjZ>aq
zKg=u}kupjzS{UBHJ<#4n2NQ)Rx|rx_qLYb$iO#OHeiIv3muJldCeGZO>5=D7iUmz@
z<5|eW%gqyNOW~DjAtHo3zPg$Sn}|}FA4>*rigq*6-9!&F6HMA{jrBCKZALi426}vt
z=7qNGE#Qj=r}KUEBlcOnO!PJ}*2FjyF%!imhVZB)^fA%bM8d@VCi<C(o9J)i!Hose
zDhVYf243@MU1B`_>aSoa1%9P;ZKDwB04nf<_#iXml>=#}!=+?SI<dDlMF*RBz)fcg
z0YB8lFcZUR6t}i9CVp!c8c9VN@lhrY6~-Pk@nQ4Ctx?4*OA1H3WoU)TTcQt{=rbxt
z3CEk5U}BbuXH0Hv#zYg3n|Q*+BomVf+Q!18CZ@Q`oND3`6PG8)yiEjZa)0xLw{nOD
z9y2kGpz0LkQ1*Jw&{wO=KWSz<pr=htCwORr5275f@sb&=CschVG1)1w?P}K452A-Q
zMek`W%r^0?iG?N>nV4hp6K&uE&GROnGck|g%=gVV@ptpYdNW3z3qzy}XyyFOlHA_j
zu@_9--6G++=(+fIe6fioCYG95^}i_Bbe5UmiW0jRJ>Qq#BB8SfG4Ue7VB)Namxuuq
zDHCZEub6n1x-#(*?{4CC6YD8CvCXPXyhWAXE37s%Q=n^2R9qO750|bn(X~aUn|{+o
zwSk3vH{o0d-#WMCfZ77fzinb8@nhlx6YrRK*Tnm*!NkxOiK=VLzvpUoue&|<=+-FT
zSgD{_UofKhql?*_ssB9Tub#0jCf+;idAdbn(pm3TB9QoOA{Zu;CPWje3607OdEeR?
zmrTfXgsHKWEfU;Vu264NW6WBREY(f^4j?+dQpu(ki95#vrU}c$o4q5p$shHC-R`zf
zri*9I%-wEc2a!XJnb>J!mx-?{lpLf3n%HAvuZewRrWJF8ACF3Z2N~=9o1^<pd~D(X
zi?v9k8x@_lV~m6~ZhJm4@u^$GXUvTk>f7S1?Q=JU<Gn9U942BJj!Z5t;A=)L6Gu#Z
zW8zyA-<$Zs#CNo2<xu0!)$dA|@)G(fdss@#-L2g8{*#HHP5ffwSK@X+A+^Wh!E+-E
z*_T}oL?{ED_jeP=O#Er$1cm=Qe6&U4xQRbZT-#Bd^{}?S6^l=rI7N(^_{YR)idsJO
z7qvYqcCAH%Pce+->~=dn6l4FzQ}(&%Oq^%9vyf}yf{BZSgoR30=B>9&1OUT3J;lTo
z#)KUIRo=_Qy)6@bdyWpyGS?Z&Tk?O<rMDQ{O_aA#!NP6Eke}maER?ly$Hdf)@tjYJ
z?;BQJ?yq1urW^|twM_8!ggyU@Hof8L{d(4o;Wh8FFt%l)WxTkug(?>AwNT4KRSVTD
zWLexYin}fFxr|DvZe>Oblz+!<Po3j|Z02^2z`{KiYFc=$Pw|8*!m}+CY&bjR)h#oT
zzqW-s78+P+Xkk^yKwS&<EOgnJ#U}+mAaE#K-<4`auL!$?M!eBILf2i@JMYYBwXuaJ
z7CKt!WTB~rJPU0scq}xtkZ++CB`nN59XGeo!a_?6rFBBDec7Au+;I_svm%^_Y3-Kb
z`*GZKCs^=WXm4ePtPJ=*3vDetc7HK>ds79iWul!0j)DlV4lLPNVE@IEehUQ_x>@LM
zAz-1ig+j`2A?S+gn;H*U+*li3<wTFQ_Ei}z%t+L%zpHvzEAx21XGS<|fwX-~fj?vG
zVIg86O8M)Adb*dFuE^pHNu3!LiY#1N8e1CoO&KQiwh*KK9aM8rOfb+QHfq`EYoVV7
z(Sl?lZlT1&a~9@V=+A~*c-X>33&*C16BZt@FvP<B76w=tXkn0r!502$?>kggV1fC&
z3o11Be$Mv(;~7dhEsVA>#=>w5BP@)v@Y(vTkrvpgJ!ql69^kSI2h3GGK8_an9vpkR
zhX@!8<1I|E@W(07I1A}kKCWm#o9E>z%W!-4ycyyC&&DQMm~7!m3r|s`y22C-k5cCr
zrdoK!0;|ny?c*(8-c!(dMz~r|Xqtt`Ej(f2_i05(A1h*oWp))ToL2O-h3OW5$d1_-
zX1G$#bT2=9Cj8l4-z*C(!*wE7_^bsAz(_dP!jElybEt=0fi-jeh;+V%1r}Z<RxLcw
z_FfDwv9Q#_3#`GyA`3lQ`DX7aSZradR-KLd#9gLeW?{K&&{r(1;C(H;WP!4A^ZAPw
z9_pAGM6o2V9a5&`WeX=(d8vV`SF?UsqOV(c!@?$uKR3ZDV$Z_c7B*T~V_~g@w=Arq
zyUh%rZ{-{IYxqqTo)JEJudtqTO8*82<%Tx640CTb^>WVe9SiSTc#rUlMmPiTYM$3u
zO*p@&AZvfY`!sZJh}+jcu&|l(Ti8Zb<c7A;zxu{LwD8lmXvJuR{6}sI7ax<Xypb?%
zSHXwvd{68zATL``h$0Ke2>=V4g+ms;u%KHoEbO(gkGQp9S=eD=rv=-BV_`d8qm^)A
zcR|X+%s;xOEtJa()$bYM{0UD9e)e>`EbMmE_qg=L3q}39#`@M5Sb%=I-@?ZPo`p*@
z!v}cxmWfX+d}`q!%`FG`rtON~!ldT&MJ!K#+dsk2-K=N-@qB6Fu!Zj}{6M4p!;dEm
zUs?E?lFY5}q7nGU!nYQ_qu!n`y0yy7;TC6QV~@ptv~a`%mxq2O0Qfm=3qM=<g|>U4
zhz?6%=8eXUC}br0&B9R&oUMJPmcSA3?-qX?AaIJ~4~zTQanr&rUS;8=g)<h;S~z8a
z7NOVtZQ(Sp%`f=NO}V_kfcE;w0<-S)h;SYA9MkFe7Oq;LDlV}343*iTi_~Y1(6W|5
zt@89TeY2tPXf$$-?h}pNaJ5A7uG5KfgmT#-9*0{9|1$Wq3$XbMu*@vS9qQT6Y_Kn5
zW98!TnJ$sCHagCWJ!?hF+nI?D`(}_EbSv7ZWTU!`EE|<=RIyRjMl~DGqVV4rJrkB>
z?>Zg&;FZ|jHcnI(I4MegVS8T<8`(DQvGLi-a7`Qie+t3IE2l%eiUq#N&+H!yH1?9O
zZKIBjMK%`OsB5F1jXn%zHtO4GV50*?veD2+BOCcPn%l^+k!z!g4Nk-n1{}aNwlkpO
zZo}Knd`)fS+1y|jU~V%TZ`BbdY>Se%u+h?n$A(~|m5tUmJ}C~hVd4mZZ~gd(#7H@%
z!wDa+4WEs+cE;1MeHi6dihjEbe!JjlXM@YlKNdyW+aMhmiFC5zx6#u^#6|(-vC-8=
z*hXg?K^t8t_CoG&27R-T1s29G)e`8!-DidA&ZL~K?`GqL4!-U-PWpY<YYTMJ9ya&)
z26ASENuzdV#_T>Dy=)XwpVzz6J(<o|PGWP=+eXaB54E_%Hc(8RL?bL*cVKZp8*v*C
z+n8vhgqpW8%*JpVrL;wDVStT+RQN~HgpJ;E;C>r(9~Ahu+8`T)Z49w7)W!pB)c%5E
zJwRivQv-a^E7#oj)5yRN`wIAW$q1_PWYK6FV{DAH@t_TTN-<OZZJ8Kl<BQEPz7fo*
z@{o;jHpbf+>$Y*<r8p&=VB`DKp>$hct&a=HaM@y#jmb8iwlUqt6dO}*OtbO0jYn)e
z>e}%!8y`0k=(F_b(_@8nU4a{27&@M?as0IBDH~7P;2Sg^Bfz)pS%9zG&mbPyE*sC;
zm}TP`8_(L9V`Dba>+#WuJ=*%ntobmysaIy(z*mt7-`$>PW4?{&DJ@ZvD=eV8=DPiw
z8eq@0khbm~d;h&GUQUL}Sz=?UjjwHdV`G_(<u*hcl8qJgCL0@Uylvw}8!y>dWn;CC
zmx+I76-C~#@v4p2Y&6ajUbn%!vuk*KR+u$Ysz395-0|hV5?o_rEdgv}9Ua!|d(*~@
zWRx+1!C~<U5BtO|)iNWl^>(H!WK|n&yhByk_`t@yHr}%_uZ?dL9V$nd(aQHeZ{*K(
z!JS+C*l{<x;Mr_ri;a(LY_;*Bjm^pE>kGo{(O7@l2yCMvstR+O`;vC12WM7B8v_bu
z8;XrxHg?-kZD=-9Hqyj^dn3b!NqB6Fa^J7TAY+5QhU2!HcV~sHf5rZSo9{)p+t@*i
zG#7T-xYbx_ur=Dby>Haa@U^X_Jl$hsugwqb;xiljZ0xsjz{WuvZ?y4!%vjVyIM4Cz
z?I1hiZq0q4xS}$V(z11*+c;$7FxyKz4l4eF7-%GX$&fOwhyqk=o$0<Q4EtYdn_>1_
z8{gTuZsP{QNr$p=%EoE>xQ!z=j#9lgezNg1Z85FrR~x^$3Zc%~zq4ECXy-TgMjX9R
zOUDRH8-Fqwy7=KB=MNi9r&g&73P2rJQ3EG!@YWRIFGgU72pbn{{A1&cjk7k+*{Hpz
zU`>M%2UM%C25F8FGh=Kov2l^{!NxWE$gD8ST()t=##K8rb;Dv*FDoZ{Ig<JGu_B({
zw84EBw^)E^Gy<F<zs+0QsNmo(2W1?rtD4yWQ_exfr($KDOvl9c+R8ilww_?}_0@la
z6&(y3Qdr4BWe0pUuTHB3UxcjU;PivSS0_Ak>WA93O5E+Bx`T2llusecK@A75I(W@N
zwu71u5)STn00;Lt=;Xlf;9du{95i*1=b*NOIu05*XvnM%zPb(;M<ewdZmEqnDDc&H
zK;P%Mg|VU$t2*P!b<o&BjsuQK_Ky}wIRM~mbemfFnmByxMELf9v1ShP9e5lF4w^e?
z;oyVPnr$4kbkNGlY~yL|fYF#CmqRJ`+SAKt7Et&=Az!HBb>MT*&Ov(zeOe{jI+>Z7
zYrA5dMhl!o?ci{PAM5C3J`OOyIK<aN<%LDx2)+Ub0SCPu#8|*V&_Q<xJ*d@sp^$?v
z4!Sxhbnsr?%qVEaDsR}y^jSRZ=77<R3{TmLo(>`oiX7a>Tih!|9k4J*CdpM^20+Hu
z4YR_%C{k{S0}obSOd%b_9h5le>tuS{+l>S&p`Tkn>*PRd&;Ek`4oV#^>IGOEhe>2O
z13bXNKnG7bc$y}5FxbI32jd+);9!V@2OW%ZGCk=~2g4i;cfiIrYUdk4LpS%eY~>s2
zpqD!`<fa9tjCL^ffr2r#mxF!neB{3yC5&}4PaJ%#*xtg&#0d@_cJPRUM;%ObFv-DW
z2U8qSlT<H{WrDAJQ}0xVe=!r7Xt8s@8hp&bGzU*QxN#%vaknrn@`Ni7FZnD-c&cJ(
zV_t~YPN%vYEFy&1d<U}}%ysabg9ZBvo^deS!Ltsi!2PE(JJRPk7}F}jS1&u=U(6>R
zezRpBD`#N`oM53*o_FwqgN2kf8lh?C=Voj~Td+J8xWvIy2QNB!$-y!L&%sKXJ2$j~
zI-C*a@LR4e%xsk)z($`eBG0a$3v(|!c*Vi=7Cv^?l;P60=<5#u4Tn!0eCl8ojqV`n
zKy<Li!CD9J5;G3obnq4>ckniSuvKE~;-YngF<aD7;3p<HKi1EQZ*=eukv1EAy@%^%
zH*$omy27?riT0IC-gmIs!4?Obh#b1!%<$x)nPKM#uD_F+vO4skgRQ)8uJ94DlqWD0
zuRQJHo6Fmr%p1oPUUDE44-R%XP#mZZ3<suzFCWZo&(j>}^f)7sJ6ibU-pnI|<$%L`
z+kwL%qXtSw6sK4fHTJiMC?$G1ZsdrfO4ZO#2fK(F2m5JL2YcK)_cAPe6y@A<S-)?&
z-xoRUA!0vvt2*G|paY_7=h<vN-_0E@TpB5yXd3#=!RHSCcJPmbLk_-h@T-I0Set{x
z6vn}i4!&~mHLrE>y@PKE_(<eiO3qMe1Q@{iq_(q-k841DBxLhH-5NdO;3o$^JGeF@
z%ubm-H4E^nU#RV-UiQ@Fk1|-XX`_S_L_2}q+{Z!Paq^)s`9B=|N#D;6aWu$u?jAhp
z;1nf^L{3wrqR3w^&#sw#%etW}^@KAHE<3p5;4Gm?8#%Z@2W%)@WMVymLkLnnXmt9x
z;1b(aOJHogN(mkO>)^J7>-1l({7nb9=rUAzD<7wkIrA{m2r$5sr}FvQ_#HNXYqU%X
zscRM4|CUW<MxK)w6tN>FGApD|D}~xA+?7JbROZ_|l~SmhLbVjWs3TNP;eQoFRa|~h
zQRMCvs;5vhmDyOH*|nZRjTHDoI(JX;G&_Y)S|v`kN-%{l6oY+4RpB0&-s{rw&lJ^3
zp>7JTQ)rVyy%g%Fke@<x-Zzy&V@?XWDG-DWQ%Kej8l|v)yg(*YTWFj@(-iVjAm4;#
z+WN?_ekz9(*UeIx(@G$-Xk4sC3L_V19x7X=P_A{NRSH)gE8=cpQcns(3I!<yQt+nW
zOQBr~?NeB&1sb$Yv~?M^O$VNKNM#;;I;Ar6y~l0`JElO&^#VU-?iu0nX?<bZX-{X0
zodUNZanE*;vZYW+jq&?$DfD)kt}YFy&@F}TE+2Ji50|oJ&lDp6@r&QhD*BJVFNI$J
z@l!5k$6UVnzmz^M)7Pc_TpD+&J`*P<1pB8lwA7{Cu`?irfhm;PfwDU=D22f(bWJ0i
z#set~N#W}hzDZ#yRhq)G6qctjJcSV{OiE!gHJQSLDZKoge>{~|z5K_gTF)OJ8b!6F
zFeU|m>%>DTobBx&n?k&GV#r;daqcOZH^+yT_pd%7g&7+o52rApbz)))@5~8~*%+CU
z!qgNl7kTHW@JI@ertowM(^GgXg{9rR!hG-JDNLiK=4beqvdce_!jmcJ-Mr7YPVjgt
z1=8~Ky)#mvJabc!PPHa8(><N#(q~eb?K020bdF0|=GBkOJm>QB{!39Ccowk26kbR{
zyIHU>g+)aBnG*7gQ&`tJQFeEDshhQgv~^<j6dzNJgT*USSjkFKIFQ0?y*w|b@J0%&
z2&XOuFHvJDyyEh&rtmuTe3$1n_w@7DiI*C9&$Uiuw@Iu{VGXU8!Urj=P2tTH-cDg-
z3U3jjhlA?~ewW$Rv*wh;!Ml6~Z};<Wpe7dwnfne4_w&D-!h0@r_KgbR7faqxVUt^6
z_jg4+ZQmx5Xp`8S!WL>T1tWzIQ}`%_-%oc@QrMcpwiH^FdS&{W%hc8)62a{9kvTP)
zHL*>Ci4CjzkDltHviT_-=}<7cP2xT`*G$1mVOI*fQ?ThTDQu@ae|F)8sT5vqlSmU$
z<L=|>|0nKnYu?FdqeYlF>w%&@F2B#Mb}y~)T;`_C-S4LJUgQs^@W-|`hiH@(PSpr}
z;?hr3sBpUVXD<J_%Mba`OC^6vHP-UZd%eQp6uxrR{?!0q{l1<~wY}e_@LdWQ8U0fD
zK7}8s2RgNT?T;zWx_J9-@*YXyrxbopVdre$Zz&v2;g=Lj+xPj^rDRs#2s3N%^74Nz
zFQ0X~HDx$X@lyCRh4<SeK0h4%aj^G93jd^VCWVs}k2-0SIGw^@E_0+!0?FXtE>DJ8
zXI;1b->KH;Q#j}HT*donT$u|lKeT=&o?d1IBY4v2kjB*%uB9;RDUUaePHzOSQ~osW
zO5;WfH&dCETMXTvL^(J2-xO}UiA=x42;e4?FUxw`B*^e6pGIR(hOd}Lr8MfLQ9q5!
zX;eugJB^xYR83?0SNu<W`7D>Imd4#K!^G-o-25R#rbZg?|K4X@)&A9{2}t9fG~e7Q
zUnh-w(>VTyue~SnOd}6ztu#n$yObB6ohZ~zW853QEnABlq|q>qW@+T7(I}0aG@7Kb
zc680&o<wdM8!vTjoW@vBf~Vx4tl^pCNi<C(FP(`1JnH3ony1ksjn-+jNuy;Nt<spB
z>#0%Gv--Y**>`)^dJ?85;c?4<|6`x;JPE<&FU$;8sOCuyZsSX%Z5m{Fv`gcxCqafa
zR}vB(skb!zX^blMgwiNXXWY3UjX)aBg#?ezX#`!K1-c1|HnqLEAB4N4`TzQGWKl6`
zw=}w^(Q7+;Z%2<bdZuBeVW$yEBbvs{G-jnyl*WBjY#K9IGL7D83{7KL8nHBr)3`s4
z0hF*us81UG(uk+gH;ofR`{j)-86hN|5)vh8^iQMIEyKj@=OPK}XKV>C;la~^X$(qZ
zFvETtFA53rOgBz+ogx;K8Is12uLPG=C^$d5WOy1Q(s(S5X=#j1<Ns*74(KSVE*uP9
zNZ=D`(yQz&2{j2DQh*R3n~;S8DN2zh(n0CHR~1B>6p<!25L8se-I<*&(-x!&A{IpD
zr${eSg#Vl8$vN-b^S%4-yRY0bZ)RtA2l_GEk1<@nAED24b~cskZzve#2f<)LhX~5*
zP>#5vV3;4T_%Ym%@0!Z5`Z2<fwPkaUH<c+cl133qE;f~)N|I|N$z%O!mE<&$j`QP_
zV{Y<UeST=pYxE*NCeoTia|lR%N%ABCh$s6oILQ&?-!<~Tv*&kqKknq7;m1rG(T}4U
z$+P^J&6WDG%8xmI=c2sGkF)&oXVPjC%RB+*`>{ZPg@V43;xsMxBel0{iJ(jUSmwua
zf!`36O)I#l=@kgxEaJSy?mXw$jeFaV)pT7yHu>?6A8Ssy*D!KhWKB+zD=$o0>&H57
zX^X7&er)hVYnDYk>2fB)yMFxKEQ`Q1!?T$I<;MqpZ1LkgKeqbuzSx|dj0Hw$i>&Q_
z>=1x`S!G93_Fa`Ef0!ii_Txi8_V^Jko$F7MKl0-@!^c+QkNqJ1M9@#g1X$hc$M)t~
z-25iZv-bJ1UwHWE%qq3h4*2nfsD3Hv=_KbWPySb;^=m)A5rCYXujd@1(fzpN$6f08
zBOvzVx*rOIw{nt3)BB<NkzXN&)gW`ri3H-X9}z!dejMh6>Ho2G!w*vc-H%T%c*$9E
zG{F)aThMbmlkOzR<R9_ldp}P5@gt4y2l*%c_<=bpSw1GJ$Ne}V0Gnzj%l|21$5VbB
z5t`5V@srSbRnW6S_zG>|$1i^TDwux=%3i+-a8A(Q{WxF5=k(b6ryqYYDh2a@f?oFH
zVv)=x=DlQR&MaKi-$ne~WcixFy_025a_I+2H~hHi$K~v#TY`>AmTxnTl4Wx4`SB0)
zY5>m$aGyKRJq+OK03Q1B$d6(HJQYCdu7ZF4c;d&tS?LE3c^@+^9P$#g#09YRSeHr3
za=Z{L5kScR8h)QzJOKZ(R0@-p3ZSmfS6Xn`k*#F}$KN99?PR%J02KllnCC7Z0IMts
z0wfAbenrs=L0Nq!fEBuzpmG4E?x$1_;JE;*2)z4rO4R_W1#sg|(zD+r9iNt5BY>I#
zNCCJ5s1@L)A+AZlIb7AI@=oqL0@n?oUI6t4ZXhTHK1`My3fxH0#)3XCXo*g76ku_Q
z>gimk+BASR0eAvP3LrUvW}>OJplod}K#Krc7I9hyz#-U_A~>mnrU|;ElRI-=97jnH
zfXcH4v#p>Rf@TVuCFu3<;@b((UeFGLQf*EE9R<!U;&c*#3iAT+2JjB60sa9l3IZ6w
zy$#?>cFV2-$N}^SpfG^(Px5>LL=xRB-2~_!!2ai*YR>>(2%vueQ{|*zJ}ZuQ(JO%7
z0rcSx=et>644`j-zYCZ1WwOlbO9Au?;9@DKY2?dEqz79j@}l-~0D}UU9l)Fb1_v-C
zfGN}&z)<Q5U~~Xu0(ga-qp7b3FhYRg0c_}!Hs-6;GsjX#3eG6OVfBRHOFA}y6Up*~
z0A34VTmaV@AV*Wj2l%AONAP+869bqWKw9r^|0yAzB&zI7kTbVC|ABE@0Mi4Q5x~af
z&W|C-IyIdcaDHogzty?U+tMs<+R@JZw}QC=%nM*)0E?(!c-?{kzV4s2JQha}WGUB7
zeraOT;sBP@X#-diz|sI-oRzeUKG{sJ)H>_h>dvgb5kRMA@~QwX%PDUL@Kyk=TW7VL
znnJoVfW0%)u6Io?`9kNng}`b-2Q`z|2Cy!GPypco)^igA*dD-+0N&-a$r&8Cjq`jL
zn*!Jpz<UAb_Gfbd3!2H3W_wt+2C%c4OeXRB0UVH136y3sJMIi1*4e!)fDbs^xd|tl
z$-4tso89!|06yUYr+GgN;G+P>_D%l!$E-2KyL=kJo&XL8@GWN>z-Iw`F1Bl509VI$
z*&pCP+e#Ds(zRwX0sjf*3(@+epxo610enTZ0emAklp&Ml)(Yo$$PWdeF+!WmrJKv&
zF^3fO3J9PGss<1&;t&5)8e6Ym$9jo>UmFSFd;ot05Dh>NzzDz$;D-QCF=@0)wE{RC
zz!8D%0Dili5n~89m)Z1v07nBjPG1T*cQiNWRxB9S>6nl#*Cf>|WKN1|v;Sp0YToU1
z06zxsO8~zHa3+AC0ytYF%<co4%M|-raQ;*Bo50V^srb79=V(56w<*nK3ct}@{xg74
zC(<qi@ISiojQGD81q0*wXW176xD-H#7V>@i00WjT7r;%feM<7*f?f;YyO{-7If48n
zGFh$*&erDgtpIKZa4&#=0=UEJ^+`WEEB|f)x!GA?HJ4Ah(|>3#UvDlyJeQl$LUy;1
zAMg?oz@}^Ij|6=z=)d%b7BZRDo25SqU_uM|jTZ7#3gQ*4*Z5Ua6jx9}fvLh$QBpxE
z1%E2|OF?M`WfV+SFhxOG1y3u;R?tpCIR)hvG*r+?L4txr1yvPPQ_wTwtDxZ1D{0Rt
zsHmW=<@;nwJ`|AdXdzcp@T`JB3%Rm_Yfonn{4A}C0-l9fcsi=C;5h}g6x3EwLqSdI
znc}%RFQxb_PmdQ0j<=96wvdapl<O#{ui)afjJgWyDJVWP=h>EW{7Lug0}7><as!Ta
z%-!Xtud#yX6|_*$Qb7|1E(J*n?i_RHw3InLNr78|{y|z(1qVmwQ^_Ma^?$Z6SwS-e
z%@yo_EuEY(`B}YN%GdtRXr-XFf;I{~oLDtqih@)HX$rgp3+p$^JzFYoLQA>Z-n8wS
zFP+=?bY6ynoh{|?gN(Kc-e@ULe9xDuAWK2Xfk_2p^XDzjA6DJhUO@*1eHFZ@AV)z*
z1zi;sD#%sPNkJZ!E9k5s*ixSSAmiLI_k{HYT@>7J;Cp{(PMhvo$#Pb{0+h^SDNt~_
zrF^HQ>{HN9!KqoEUJ9<v^mJFygGS-<zxT<4QdO0a`JCzt3J5BlaGyQy?yaDYf~HIJ
zxgqhb<k)kGFDdA!V5EXk3i>M;pkSziVG0H+cv->R6Ye1jj!*Us66PDMU|lWW7um^+
zU(Ic_#d}@z$(dQtwUS>^FkHc_3LdU0pdFjFlDYpQ=v`g2Sjx0WYP#7wTESQa<EZU%
z#u!06PV$UbFhRjPJP#{)O~LC5CUS;53c9qCT}OS<s=l~|DXb<u=c7!A+Zj_8OjGcg
zf_)06E102REvKYlrh-`tR?q|rW-FMZV2SX7xm->wd7gs#^wQ>8quQo&Vha>3RIo@v
ztE(9)4U!kLdn<V@#Re79y9kylSVqr0>E7E)Ue0G|8$A8KNn2X1kl;-Ps}#Jg;4K9!
z6(ra5aWm<M56k4O=0X&#p-r!6Xyx;~`_dQ-pH}yotz@>YSFnMuqF|STcNJ_@utmXp
z3N{HnD}PGeEWGrW%W1@%=T-&pi=lTgj;>{FqeuPjc|YXau3*yHRF?PF7H~da*YSOz
zV7G#g6nw1UL$-dFrX6>40-RNydl{cFxD<SFKjTI#dG03f9t90<X6&V9H+f5BX8qJk
z{^W>nzk<){%nB?8UnuyJBPviBq;l2)1z#)pM!{E13$5kk&(c;ERJ?M+eNe%-3Jx(a
zTg$9|N2^s&oU|{^ui(HjcVZ-o`dL-!)e6qPnjcZ1DF`Y2ed#pD;OHa1r><v&8C<Pp
zUu&5(%H<2m;jLxb#h}Sr%k&&uK}^9(1wSY_tl$VeN5KhZhN+&sYI)x)I4bhMG4A{c
z_vfwU&8_8K<9t6}N$b8pjcTWVpZ?Chj8h7JR`830@yEKHR`4VDHsm{_;3uZFE18E|
z%V*i0v41s#_*VtLDfpd}5g|$Y{@GeSr$9R4re=aasG)yhT#DS?@RE5!!T%KWR?$br
zMFp3bg;cmyTxMW0k*X-C;%^046+B>oFdr(ouHZKPQ^5`9pF0_qQskQoqHDZH>AYLa
z)hFE>E~hbzW<KY;tMDyTJf9-3-;#V!0rN?Zwch&*GD_!BtX+!yNWs7CqN2Ep-zMfi
zrq8ITT&$4z33ZmvjZ+=Ud%e(=w5L?8EtN-5g2`WXa(EdPy;9^-Dw5WFORL~Y=~2x_
z<g=O)@s(A<4IGyumsgRXqPmLbR3xgXprVqBXH`^G0Ts`vcs$v&c8$07^`r%(^Qo{^
zV&3cx-isd=XU?gtqKb;DD%LN_Uz8$OQ_)e*BHolDpIGOup`xaWx+>}kRZVYa)KXDf
z2!Ea;2dnw&s9*y8?ss2(6{!OY8>(oeqJawIW(Lcw<G#C%eT`N8nj$~1LQj$BP0o6C
zqc{6ehNQx+B8S7NXvzhuNLSI8+Eg^7DivuenyYA`qBWVHrM0B|6i+KI=Uwltjb0{-
zTPZSeifDcOo;P!H*57;6+NfxlDtp+sY;HoT%&~qbo138`Q$;%!+ZPmMi6%Y(iEQ;|
z)AW1OD9Ps=?Nzi%l`s92+CfEOsysYZ&Q;M##reqv-Bff|(M3g971z3F<*D!re%+1U
zeClkTMNpvPld`!pQ)Oa0#-YoZg(`e1YW<x0cB*`|Q{k~jsohn`DtgeeD(J~|)_QxX
zctK!R>FQk6!-pAtRlKNTgNk=myriO^ib*OatLU#{0L}4t#wZm7RlKZXn2J|a3{o-A
z^6|nnRK;KwyHe#LoXjzIAXRpf%vvvX-m2#t&ZgJXN2qvJ1*@l1<r?l>dc{Z;L)^I^
z&Py4sVvLHhD#od}o+`htV!Vn8DqiE(ZTC*?<XccW@8mkq=eIL9W+#&~k>d_3{CH3y
z=@b=HRV-1lRK-(i@-!85RLrG+s+gf-rpn*%f?@h*(=*fLFHN76Cbv(Mne+Rm$@5g)
z?vu4Z#X=63CeK%Ka9zRDG<gvnxOtX8O<pX(&NP{xUvq5!G8M~JtWxo|iWMr}Q1O<E
z<L<0CX_UjMTyn8C@`*J0N}9Zqj@?FP(~-QK)hgamv5v0G;2M~;M#SS<71Zx;<6IE;
z)bfoz;d}H?25rZ9*{EWZiZ4`rsbaH=Eh;`#@sW!6RBTnTliFHjy-(-7p0u4yYmv20
zU{;x6cZgOBq_)rBrQ!p|&aDh?{%&Ccru`2ldp@R(ROcYHSH-6)ztoeohr7q+ukq%z
zkzZ^hPiP~5redG!T;TSr_*@0Ub4eRH)~}F-;DCy+RD5<bBdX$S72l``s8G0jLhWud
z^^odZ;=fhFOF;Mjh2L?pw7%J8?fc&M+Q<}Gx52Bb2&o9G2&&Miu#Mc!?82iFo9H<d
zW=@OH0ZzCHVr^ty#qh)Fh6?7N^KE2XMU1-?#Fs%FR&j)}6NE2_?^PUCQ96h+K^&uX
zRNPQ;Q^g4tCut@Xf2jCD#VHkMRs5{tw2B{9{KRmWoJF7fdO+c$Hu4!d*yOCqwvQ*h
z8!_K6Od~3O=WyM!co_SQsk?OEIi^03%(;;{-AZT9&tB*KlP<j=<uVtp;x82!RQ!+0
zUqzkc?n}&&k)$>^GiWKw5Wl=Ht)WN$n-RCwdrievy66e_(YC1>qw}vbBk|<C#(QqN
z_ZGdB^IzwU58{rByDH)cj=Art_(#Pf75}QZui}A7P!EM<TaVoST`%c@ZQfoU`7wic
zlb1SMp7ha6pNJsk^{ZGA9E*cKCBQh3lX!~<Q6h+vK_}hCws}hhouO;3^N^Me;^`og
zf=CXcToC1hs2W7IAQFN|3<B&DbhfBM5EX-%KHW2~s;|~e52w1=BUci0u1tG*WUlMk
zAhrllB?wlBX<pLmK|B{kgCH6PQ6q?&qD%cCY6Vd{h&n;k4dUmjK0YSpHT~mt-g=yg
zxOd>9cq?IeoM__NzEKd3gK!6(+mPpjU{e!ntLCEsPhYMeBvEBwDj}bxsnG01dJxTn
z=omz95G{ge8H6W@^dMRV(K_fDC@qK-PU+`Vp2kzT1Dy+r&wJ#!bmtzV4VQDwT|HfH
z%PkEeJBW6azmk?IXqM=>vr}QSbeX-{(?tgrb_gPegLW>YSQo*6NzhI~zH9?;5cxrL
z5xc}K@?OojJH?Y1#B1sD;&i#qaVO1=Jm)D0qAQip^iYNy+bxLhK`aYmc@T0CJ%X4R
z#H1j42Ju1=F9$Iwh+aYT4&uciUJBy+y$o(0U7}AAeZ^Q?(;YK$xPCzl5FDnF{z1?o
z*)%W+T99*~%-|q~1Ti9rkwFX%Vi=8L`?v#>LcUjm7#_r{oJq(xAmm#!sIaUnl_mdb
z`lujA2QfZ~2|<kEJkO>snBo~Hz*s@|o=F{a(*5M8)YpRG#WDAO#_K_xuIA%M3B<ql
zE1VqUPfTNG5VL}qDqMw2m>$HmpmQ+hVSDiPq%YFt8Nw&cba{3VbAnh9#KIuv3i)}Q
z@VbKEidSIA`E-dPNz5~(i-P=VGAs?^&vf}8!?z@e$N|TVd4^<_%;hEXRs``z5Icj|
z6~voCycNXyAT|WCGKf_{tf2#+biXY|$*t#GO~+oGIC^w`LaDrWg7|D~{@ADU=u2yZ
zSQo_Obotq~jw#=zt*@rPN0Vh{Z46=)XTCUpGb4p-oS8rzZ~LAvm*;LPZw=!8Ahrdu
zJ%}9~rFtTb&I3T&MkkaAI<}QR2x4~-AJca9y_ywi$`5Jlw(>`UmS0!!;AY0BLGWH?
zf6zHw?jh#f=;~K9$lNEugtjto9LV`x><_`>w(@}>zG5EGkgV}n`|wQ=|8f;U91P-H
z+9-%0gE$n#ciguiqCxm+ksvhTMM}^)j`A?63czy_agdAMP{7-Y5M#VdZmGn)umGDD
zCF(&K%<4fL4Z;laADwVGh$9RuE7hh8{gV+Rzm>ePt-P<TOxN1gHuc^+<<pw@4wlJn
zKO*-S(^n8DgZ!I`+~W-V5f1Z*APP5lPcarIXSFTJ`eB;KXe$$+3F4<9t}z^fILm|(
z#2@qlZg1(_UpQMjKTBKr*C2S~cBid#RQo-M^J4dSPr+)}alUlJ`&W>^8H>w7TnXZT
zL0qH*2T{F_kGCFAXUG}e9NqwC^YE4-ce$L|CPV(4{&Owkqw;xI8MYbny^?u1g18yP
zKSA6N;#Ls1gSZ=XuKRa5Rx5cxvBD7<G7Xw}#P_YY;yup!>Fm+ly}UJ^lOaFg^n&1R
z{v+nVDV_ryCFFZILw*uOoQ66Y>S`#a;VBKzXsDzio)3RCl+#dNLkSHfHI&uxwB|h7
zD5asahBACWwAITi-K?9w&hdpEZQqd$`L7K5afa+%5Rdp0G$d+(2A;YrXifsGsG&us
zTsc#2JGhYd$iJ4$%g>bA`mBb^8lKaf>(}5+xr&CW8mej7cR7t2W59ZEnb$j2*Z6ZZ
z$t*lu*3eK>LoE$=w|aRzsIB3P&E65uB{CN++~%#PVdeMfjWjgYz+0sH8X5@DkZauN
zL;>UIc@0xCWw!>JriliZ=G<wLBMCl@b@jNfsRmM(v5zvEX=tutkcPorf`*nFx@gGL
z&`LvV4VfCUG-Nc&O`)FGI<?i1sv%9|fB2@g5exTd&PSZ9GUaqp<yLeUnnTG9A-^+I
zKA0(IYmVb}($G#rdkq~l<Y>s%P<=q*_!}8NX38Bk+#Z|Da$;}Vz=bK(Zg%JSv$KX_
zd(*gYUJdyg`iMO&;JP%(8hU6b)Zn8j*L%8Y_&ZbPVUPFw1L<{w$&1}T&9ZuOXm<P{
zt(S&I4>OqSnk>n$SvIw|1|H*iW4`%aZ(j{BYIsRQKMnmg4A8*4=8x+8czLQBUvZ#@
zmo+>N`Kte&_C}-BE+^g1pE%c!AsU8iSg2tU=c(ZpZm))^8is3lRl|4<6Euv_FjB)9
z4P(h)=RH5kGfKl~4SaBSZiBZ(mi*1()E<jcm>9=VnBJA0JZWLdYZTBhQNtt+_QZVV
z-U-zcYh}s2OP$Px-^$>VIv!kkYMrKGx`ufg=4+UtVWx)J8s^YOSu&q;@PaZ+!yj_$
z*+&@{|IN^r<j>{KU(0A4SCMo99X?Aw`EN$*-x;fh<nSrVVhu|)yhR@q4!Kmrn>21K
zd6|agjF%an72Jv}`3-@&1D|DfV|CaLFJ)F~n3g54*6@yox4D6JeeEWDR%Xe+tSwlh
zVVwp(<04)wj7Y%lJF?_mgX8EhEbnqe4VyG<*06<<6~Z$iyr*HSh95MX((t~9Z5qDS
za7e>;4LdaK)$o~yof>v&_)x<~OwJ2aKG3k6&hT0%ruTzc^4v)tKC=6mo~hwe4SO^k
z=aO@i>Gp5k?9MrSd@titmP{Agr(wT_0~)^KY^QrZXWVJ{k~4XfL5uLIEbmk9PWSL}
z>*k4`uQhz5;h=EfGaJ1nvgPXKvQNzP@Z9yC2ET@=23<oygQ7vx5YnJh_-Z;w4AN3p
z)2nC8`uc)4Gd-k@*A|2|MCe7;eY|z0%=D=qLxZW|sD@)2EV_Y)!y1lgNXnKwt@p+l
zTninyVbXhkvZqV7ynCkSdj_vKC?4lxucV#OaFR2r>Kj>*#V4p-1-<?8{FKwQ4z0ip
zqv4E(pEUeW!$l2eHT<mMcMaz?{G#DkX3Iq>=a?-|x*0X|PxyY*@a*g9hs!$8TLxy!
ze{g{_Jb!BVOMs6bWxO*Wjq@kCKnKp2d1Sq$;j)J78g6K~Lc1{SXjnbX!%z8}&+^a;
z4A^Da@-?R17D*iLriNQg1(dAj<K}RnXSaJPUw?*k8o8(89}T5KC>_Fm4G%QLg-|Sn
zhZ-I+LNz?$=1=wftKs8nzSSai?4RfvHqFBaUp!E~Ju;tHji*A0521JnPbPW_s{2ZW
zaQtj)+TDzjA#n1X6)~SwlnJ412<1X3A99{G@v8lF2)uu(G}*&#Ob8({gbE>43?X>J
z&3QUjo8`Ga)iZ0Fr^{?-=9NNtHiYaD+J*Q{2UH26X$VOnR1Kk82=zj!A42sIo(qBd
zP&<SgA#k2GL)e}zGs95B;A*~FA$+pI`{u%wIw8~z;nJ1N>fe{=44Hl#gwQa=pL<1<
z5E_N>O}68ijXBBb&R)f`Wg5%HI9inA4&klKnG%I>WN=s6$`z55973}YJlqiGv=CZ^
zkP<?l$sXS4whW<F2(3fN=c#G4m-}CDT><Z`xihIDq=nEX<Xmd$0E4G`#;h&i2Nvle
zv<)F6gv=1KLMX|%s@8cp2U7oJ2Xo)rhtMH}Tn;+J!|P*C2pvQ4&QD35>a=o{kxTP=
z!_tY&eQBLT_}`cD1YS-f1RTdR$59YMS8kDs9VQAx@Nt1UD(UDJLiZ3xM4WeB<Pds<
zkP}A7FnWgYLI}Tya6W`yA@mMmWeBUd%n<s9@OlUnLwGTSmqHj%uejvuN4x)A@)dzu
z?JvN95C#hHauI(}2!jP4Qp6c5z_1X;3~{sL@DO4nB!X83e?$l)Ll`CSXj;6e*BAlL
zXUpS?0J}^G;k6Ln-w{vTRP~Zh3Sn{x3qx2G!jup;ABdY4!t@ZPa-%#FOKweRMhG)Q
zSU}S>amJlRzokGO2hR>+PSJ>SL-?+10-5tgD+OxYa^?F|{_C|kgg1*MmxQpi2rmm^
zc@bU_!W%{Sezr_iZ;9%kUGv`#VRZ;9gM!W+!W!oA5VnS}HiTteqzzou7WcXk*3+7$
zr8BQe{cbw15wg4+!bYKFlc1Z6^luSh=(4!?SwcAYu;Ts@{|d19Hu^vaJ4EYFLHC5P
zOMnjq-5tV*0(>OsCxU(~XuetUQvo<GfA^hquc&?|=)Mr*MrM)uc?e$!&X)`>4lVG3
z5WW)NYe6pzEl$aA1t#!^a7f_q1kGvgSTIo3suVG`5JDlG4B>|m!VI($(%}$}gb)z|
z(Gc_yjG|s<h$s0@)Wc$hU<-as&=T#O&1d<ZNnoQhlcPnwjxntj;S(Wjc~Ft9r$RU#
z!mon=V+bE#a>>2izliD?L4OM2tN=d?$}UZMI!m}$#_^)xLioCybWYIJH7S3D@F#;M
zjHko+D})On+zjCsV>X0~AzTjON(j+3r~64y{3V9Nv+)ydxc&~|Dsyi=>AD!=t5S*A
z1h~`78G`&9qE)}<x*fuu5Xyv|sJu&~3+u;)@sE&S^~hP#eSsec`cTkEg8nNg1s)6V
zM9`Jz5{n6KPYKG_`2Ro{B?KrbXsM#s(gF-QR+5rq9#kwBM)@$Bgy9M!A&kT@DuwZE
zn7^;fziF#jF${#ETuG#`ddC&%CH>Jl{+Td8kxV|_Q>q+Bl`!groye_Pq<`2LN4T1(
zRuAL3B7Ti9Y8K&I0@N0ieJNj8;Ch1A7qo$(4Fzo^Xk$U27qoxdcqt5b7+GOthw-Fw
zV$(2E!$=DwNeED9av05uaPu%)2;8!W(@KEWVWbF9dRq#+XdB#Z!swSMdBWIJOq%wz
zW4`n-+6tMBqQ047{C?ZnK$dob*&&SfVT^z1;@gH#T1X9Eay%qAj80*ABgl`Sa~NGH
z89|8%^2iM1<1ju6BR`CSFs6htHH@xd6oxS<jKN{}!sy1Cgwa2Y?qSGb^a-PH7(Hl_
z(h|!H0`v@H=Om}vD~#Uk__Xv(KR2s~>q#$)iM=G~`Nob>Sc+Xs91zCY+pd?xd>1`w
zpunL^E^;1@m6kM>hJ-ORjIm*i3u9OquZZp=!w95E!v%dcjQcN2el3oi5rUJEEsYXl
z)IU0mF-7?35NUi7el3g%VQ@e9zUu7i>qY#DVN5E*lLc5g&OI%R>0zu6<DD>OgfTOW
zH^O)`j9FpK4r5su%fncED{D>|^TSvW##~V)XPyA7+e*X>1zs%ZqA;w14)b9jX-ODM
z1@p$OEOJgAOi3sytq?<33M93=<C<4odP}(UsxVfD!D{L)hxxXUaew0Y$r@@1<NYwU
zg|RM-^<ivcmoPREmy}pG3h=I=^(MG?j_yR}7EygKjICk5ZjnSz#db33%Xw0hcJixP
z()KWRh4DccJHlX<Wv2jH^`+fmd?+R`_){ld1{`oMb{~b&u92kfO8J!T8ph9I{1V3A
zFg^<-8ipRmzA*NO@m(1HFg_3C3!&lbFun|f*H)GTVN@^S0G6)=^U6KfH$v>7pd95}
z0S*bO*Om5PbOpjt!w51nP(NSFy6D<FB2E)HB4{X#umIl-k-je{Q72_Kw2e2yFvB<!
z#`mJt3L_@eveho?$Po|I;qN)_dNhn<Lg1$`jx#kqah(+OM3`TflMcVpotz&8hv1X|
zr^EQMh;v4Os{L`6e!eGZk3Wg@*D!ty<8~N#!Z^o34&z!F*TXo^V0^`WNzgyS_)~zt
z!nhE|{}_F#5?dMFq`bsj<Q|rA@MR%(MNn4%4&!POE>lCgAtt|QxO7u^)b6oyx58lc
zP%s6prMqF=3uDz?S6l@DFs#D(m%(05dLSslBX06#*TXQ9Z@XAsx!FVdxTy6BT_r&x
zr&t8-pSYfiIM)=G_y{6%q$~ZTk`a7gQK}blY(!8hg3=L`iJ)u*Pe)KWf+`V|6EX=A
zeyD-+5xfkk?o~&)LIf2>)3bsif=U8BBk2BblPJTIJTZ}UW<#lJ1l1y_5kXBcTy;U8
z6Li}b<=c#R+=i01BB(1g5Z8|2!c3`-sQ!4xY2}X9kDx&W4I^k2LGuV&L~yv4)L7_g
z8o~1sG>O0^nB+?lWY;cBz~UCn*XkrE3E^ZxIcPHh>O6L}jG$En9U{nypmhW(5$vrc
zWeA!os3(Fn0myG7z_w3Q(z#c+v&d;1LGMNqL1qM5qBUF4b`h-pGlTs0qPn}XBhxYB
zn3bdF36LvjCtd{v=prZu82b!uiWNlAHG%;V42+;K0$&6#32SzXpt}GsMlipTB(vic
zSI-D~6xsUaw$cj%_lkf?hSu*LK_9{CE9fT|oD;>b)0_)gKU(LCi={tTT3#Y>E(F|`
z;?k=T42r<tQyMIK4H0yxpu+@xMbP1bQq_MasQ8uLMn*6yg3%F-iC{_;Q==Fg!MF$>
zNAM(q@exdjU~>dpM90@6m=(e72wsn1Vgz@GN|Pd(7QyrgCJTWn5zud0rV4Pgt~5jN
zXGWZJ-Ghzpv70Jr1Dycm9Ogu@EP~|`%#C0kckd-<jV$v;mjw|l6o8yX0xTAENd!xa
z_$@~yt`In}uk=m?ZwUNmQR`a*tQ2%r1aBAdS4Z&RpAuBNCW1vzoDtVXu&$_ey#N~`
zc(;hNF@jA+SZyG^7s1vD{uZ3~BiI&!9YHLD?GfyVK#TBK$K!X3)&qj>ir@nQb_@Ec
zpdUu?kpLY1;|M+}!i{Gq?x7!w>SqyrF2FuP_Y2At#4apfMDV5HNUfZ+%2yG59l<w(
z!>V6^gMxk=!J#7lceL8o^8aZFM4$-1TGSe(3)OeDg#;%oXhhH`LscB?^$3h2c{2j5
z2ulgl;RudIa3+GEm=hv68o`euc&YGM1VhV9i+edYp~oXQA$pxG>idHLry@8lz{(dK
zF^1KX1nF!9ynHizpO4_@BKcn;__YZC7Qs1ze=p+H*&hE#1b>R^UxNNm&<m6-<J?$X
zERwt=z-9Vs5ogYj#H$fpV<0yybv=UnbQQ6L8xh=$;Bsw=<(2@qBe)~L-6H-yUImIU
zuTyk#h9~3wVFZsv;1mBVz=QTuTolEkm=r~`j%}ZcB0h?&D6*p{9z}_$b0DuBMad|3
z7fOjy{4y@FR1~Gzddao*q2sz`q9`k>#7{?2t_YWpB0=E3XPxtHg(xaU0l}#z=rcu<
zl>~TJ(8^I%5uj>OYxziC^&<S705t@yDQK-IW{+|Fuuc?pIrGJd^`c1TTB4{g1R6xq
zP=H2)x}s<-0J}UNMH7KL{pOr$r6RsNil#+4NdWi$BnmW-qD>LMg#axDZ52i9C{m(G
z71cCB|9a?T%Z=Tg!xf81Fw>)GD?o;znS!#lLsERZDB4HSD~jGx{_u{oy<MWniy|kA
zj-pC`-~)u*C^|(kx2x1yFh6+U>Q=(JOn9T{8bx8$xf10IS`fwJXPhRVsLE0F5TKi&
z-J>`)-Dzd%8N~}xRL@LJt>{z(H(aEBqUamN@F-r5qM(QLVif(N=pV&PqT08eOy+<n
z21fC+n8~f<j+OZf?4*MPhhT6NLj)dL#2F^QD}pxvB4tDr&!tGCq8J^;NP$`9>c$9x
z2~oVpt3VXvqWnp>r163|rJc;QM&+-wscF+SRi%khymCH+n1%PnlWD$QNuMTUkxq+Z
zdK6otcrS{Y6{NPKr5RKu^vsH4c@!(?KcYHE(792}i{g*+(tJUeMX^ADg;6XLU~v>n
zqF5?$r`4?}$>(Vg=1T-D7e2`0#NOb1W=b2Qcryx~vEPb1R~+(JMzKna@^%!f1$al$
zby2JlV6C8xcM7wt7u5|>yej}XIa4KS-V_B-kDH^;VT{$SQM@0;-6-xwu`P=2QD{+w
zMC*<yK8fPfD0Ygy-4(?LQA|vb4m@#{?&aRiK<?%KP|%MA{aDaNRh)yw9--k7y(Nmz
z1l||L*8+s9O8cYuya<00#mYkIOHn-_=vRWS?CGYSZx|Q%T?d8Cw^97GCXNqDz7qm$
z^+yp9SmB(jN-7uoj1;6%vZTH4cnXB0h(vKNir=G%7WFz6g&u_=s-~caqp%qAHJq8-
zQN);PT1$<aIU0^c@x4%fG>T(l8czxSaUny26H%Ou!uyo;gHXk_kjZj7iXR2%45uwR
zo)y(!qxf0$J>5+DMR3ZvB~JdgC=Mk#BeI;2;zAVv6Rm#;`ezh>2{73m?`+^j*TpFQ
z798SBQCt@IilA}P1TwEiaV?7Lf^%EY8&TYh;+DWuLvcJaP^?NNN8262%y7l=1p7}E
zPw9x)aX*R&bk_>f!zdmJ0p8urJy7vqfgcO{M9|^MP2+UOqlyVSvba=SM+x0=UFayO
zqm;mjI!X)hw4h}KEi35#-tiPJCon;I9SKFaL_>+33OXtlapq2uZoV0JxViMKj><Yl
z8yI7tijJx}j_EkAqneKDI;QHFrsFvsHFWSxM!j{^)KN=EijGtrwRP0d(L{$!M_nED
zbTrh_h|^9^eY>4pUq=JcOJC%Pg|h5|l*T%?-%ffjx#IIWUVFnsg{5!jKEKQ(>2Px_
zIjMz?raFpe<tOWCrXxvor?!vU$&be6@H_R*g%~9VEb_M05fe&U>FC=vrL|}xNYl|q
zM`s;fba-^6>u9f|gO0X3GIV6=$kvf5gwJQ@|J5VC*!<kN1u4|oPRAeZ<bT`Ap?1#K
zgb(#9D6z<sqobpa$16R(bCYvLuTFwK+g@guJRM#g-F3)1@^uvG@bOVUSJ7VXs^dz2
zN}<4oZztuqm%D9F>%784RV9AUJok>ThmM{)UeM7?$FTO!h!wj!(_p!=)U%?!tRKtj
z!=>qXQO8R<M(7x+qo0ocI)>;Ns$+nTfjS21Sg<g@_=1Yu<d=2)e!$awn`c*hc`$A5
zO}Sbs`@&++FrEKs?;Eb;RUNO0ePea}+vzjj@)V5nabx}M<xzA4+C|6fI>zW2tD|fO
zdAu;eI32~7d#<&YPq&vJzwhC;OyI)16mrfJbxaZ)GDXK^0m#hkAUEnD-`bMKAtuR*
z({;?y@e${vW2O%B-_o&C$1EMQb<EK*SI0sfi*(G>F<-|&t9=V}=O+{>`9cSoLlbay
zi*+o~v0Ueu7O}KQU>W!14bP2DzA+u-4;OphpiBq3qOagh+TvmEpm90$pY0vwRXX0*
zu|>ywI#%m=N5@7Tn{;ezo47{DIvwkEtfktnDJ&1F#@AWu*`VWH9p813-&yGKFZFO^
zPj!%YR*nC%YW%LGikoSXxw$tx$XhuR9lLaVpkvhX^ldtJ=-A1neVDUd$0v)tWpm_u
zIdb<cX|yao;kn~ocI$XKNB&SOAv?!$Bz`0O6CIz54Gikoqhqg*uXKE^<1-!mbbO)X
zOVPR`N8YdFa~<F2I6iaaP<eJgnIj+2F?@4cVL{5A`?=S0<ZpBw)Dh63P*TSs9e&QL
zYJ91V@^@m~Mz41wezM5({wg0sKrM>3oQ^VsqG3l_(-G1U))Aq@=s2t+szcXd>9BPe
zG~fNq)$z$D9rB8gb0FUIgSUT2XE|5$QYLnkkLdWGefjf^9p%*><?{t8N5vAp=qMNT
zOh2LHBr}GAMh1S+aZ1M{9slY$UF1bqbo{8}jE<jloYnECj=yyLtm79tIWteL{Hu=N
zm=AO1a#n|P9ewBMOM7#;B4W<rybkhN{tyZYF6j85j!QZ&>$s@n*Ec<F-}3xtm({g%
zdwi0^pYL!l^c?J(^0$twI<D!suH%l5yUb~$5-vPSyrJVJ9at#5t>d;g<v;!DxpIy-
z<sMyE$3v#jWgh-C!F|qcMfwA=+r4t-@wv{<&>@%PI);0!qk`ci)h9aQ3=}i)lz~zP
zN*jnbP}~4ru7nV%TsN0u@4e|H%#sFjcc<3+&Qrz!{ji*Y@&?Kpc-nCCXWLU<x8=$Q
zbL9jBGq-e^uq7?gK>cu*z0h+aS7roNGynt77^r06IRiBeJZqq`fvN_o8Av&tUc~^@
zRI|FdjK05fWv0{WhLg{^tED>01T_uRGEmn*J;O=nwZ#nU7^vMzerHe4s%@SLZ~N*S
zU<T;jNp4`k(@8#j&HLISPw4edjSW0c{RX-lXkx&{IWO|IqXq+R1E~hm3^X;6WT3f$
z7Gg!o2AT;lt&_ZLPA+4R%WP?&mBB9^%PEGFC0YxCD&rmV?Y*5#KV%fN;m`)M3}hQf
zH_+BV24`j9(@xIjpA?jRxxnk49J@sCXFlDTFXyMQwY`B3267B^G~hLm&pkKL$v~bM
zsI%c@ur2}<)axvB6&ao7-bd323Iv}D3k`H7UgVuHC$~vOug}1xW$7;nVOhuw610cG
zKOe*k26`FjXQ01<-Uj-Jrk4!#HSnT=PX>1SkJetEPR*=xjjeS|=q!)Dojbt5Km+8&
zS9LPX%R-)Duz?{4h8p0~UNJD-Kxj+au>S`AB!?O7RRbdojHI)jNj<zLr&m_~C<CXK
zr?227<s??e8W?Awor(4)#v7Pm;12_T8hFjX>)c5Ldkjo8Fv-9wn!~_k15*slGce!4
z!=brT4NNmI-Eh(l70xg~Kb&b`mhhP+gNx5LFo&(3<+%o~tV;RweNX#ko>6b{AH2KO
z%THNgV4;Df29_CEWMHv@CG^-Xa<H@fduO>s7kS=7Z<{W1_b&2s11k)?Y2Ymi&&hqm
zz*t`=`s!C%`Mi=Y-(9d$jM(&4!sX3rH1TQ!@6dY<>@cv#z*+<E8rW!HotWwd1Btml
zy1{zU>%-&e>5(oBqD=-i8`w&h<7AdP!MMf1dmO8a<57(CV~f3C9ZT58W!82AcCp~^
zG_cFS$25w84-D-7Pp5%HZwU=u<gdEOAJM_a=j>bQInzb%vDwD}e0OZl@3(XJ8u-kB
zMTG|T8Q5<?F`ydw+`tzGzNHc-0RsmNd~M(x19bb@S9}$HDPI}bG9ruMAXjRob1OLi
zl4Ejuj>+k}q~JT|76SnT_qxax^PFri<;nYRb!RvP4QK`oYF<&iQ=S|$5H=7oK$!t~
za+FymPfk0UrVEgFKX*f(e4<wYk6|X`_n3$JV+IZzIBnoZPApG8V&Is8<BTS6%J&A2
za+7zb&R^-_)#rqPlk_(O<?>U0VBn9>Il0_9x)5-}mHQNM56>9*$-u7$e<H*2qO%5m
zHt>r9UOwJj?W@}}z0FF`rQAX)<i+Kjftp$Q=jo;6a(?H5wu8*$C6)Af)AyHw3pA^V
z3MT$%;G&3vI1`r)TsCmqz#V#^fxivhG{B?gU!kn4boD&>n#ePU^W^IWZiuG#3%$i|
zcYl&6-(t@6$|v9QJgFLgmz!zeUjvT~{3A^KfFZ!lxzcl=VY0%<m}Lk&Vq)<XJYM8&
z?R8E^r9Y2n%svs5p(L-u#Y{Y9BHl!C6QxX)Hc`SvNfRk|a(SZQSe<|9TC;R^SFc>g
zL|GH%O(d9j+C(`M{!-b)yfRNO|5S}<zU6SUz4Cgm%!|>PrJjnWbFHasqMiwuc*aB}
z6VIA>&O{9pl}%JJQOyLe5lr<>i)XhkNU3V#Gp|hR@S0U!=%4H>sA+=AYniBRVncq4
z>6Po4;I-+Gl|Gu7*HB)Y>YHd_qLqo(CK{S(WTL5wBomEIJa59qnQ)*Vx;EkJRyt8Y
z{OPQMKfSVBOyI<=+}ZD>bChHg%}h+Fo!i31W3O|CZEiZ3IqtxN15U@5rgOEbnlGoA
zNHvjZVspNnW}=OWbQ5h&@I>t~F)H7Q(BynMH{Ve*FJB(GCnv*n4ghrBEECy$UFV1N
zFZ1Ot%RRAtxr2!uF4M&8COV3J>t>?6iCi&yClj4bbTN@<qUNFUg(kcv@;SqNxj+b%
zrRU^3DYUDoR%wts?0#nI!(5-J9_v_MHqk@iktTYYc)`R#6EB<SWumu<7frk*TKkyj
zD*#pToH<~jW7B>nuD<2zZ(@LG+BPS*a)DgEYFfqO*=%Ku3^Fmy#49ESn;2qZC{y>Y
z3T#R#kem1lc>Wx2@{2#t*>wcpP%3cdId5L>!9(T$yL^l?G1|l!6JxpaCgv457yWT2
zPOM6Kr9d8Uf)UDC`*TkYJJMUYu@g-!HnGISB(YbMO-$k3OiVK|+r%6b(@o4U@#*e@
znRM^16}au}#h*<hXO;;@(~=Lf=5j0(3rs9DF`qlU!n3i!xz`|Qyu!0cXlA7EFOd5#
za=I@yvCPCf?A}#gZeoRrzn6PfHBWlO#G68RweZikOsq7q$^>)8Hz&I?E52>wLV;X$
zxwDx^3g~jq6@QJ1wI<e?SkE21pS#rruM`_hY@$b*c-O>6!Qm#b)aoj4p}%#NiQg0Q
zg<a+0UF8K`WlrXO6Whdg@iaw&ohEjf=yw?X590$9ySWuMX4?4B#78u=g?<)3Ht`9=
z*}~HnJ~gq&#5ohco7l?$G;zel_a^qy&ALm6OnhfzzlqOHd|~2C6W^FP$mL&i9We2g
ziLXr@t|YzulvG=mei$b;A1ATe-4p*Um(W|HSmxv|Z1tN6nEVzVOcRO;)r4juWFlxf
zA0q1mq;9pP-kqh7FT27fA||3Hbf%h;(x$HRvU<`-ecc%~q+f=+Ck&SOIkIKKX5?~c
z(Ve|m_6&Ek{3n)@DjhX(%*0P7&YC#R{bAC0;`-6VNiMvKbjrkO6F&$%OMGg%etbm&
za`;e`pC_K-CRCKz<>Euv&x~9X1i#RYdnC+EiX;Awe*VyDW%ay?KTJF@@zBJdCjMg1
zr#ySbWp<h<CB#b?Ox&O1fJ-#1iJK;FnYcn1GI5Rh@RsW;L%W^C*MSxmNcxKoxNhPG
zP4m1obei)aI61dX+%fSFRhhWU`8Sb1dqKL#J)9s>EPc9DjgEIW9UV8mPaJzaGVw2M
zchOba!ebLpnB*;#un=cCpMXDQA>P8=8d5O}gW5}dI!GN0q$Ay>>aC;_w_GJHl(OI%
zE3xUh_EK!UyMbHkTHbl?RK`Lj@jR`Zh4L2aS*ULz!9t>iS}bj)3held^sI%-7AjhR
zg=Z{$dEZ55B@1;2OW!3(#Dx_cZB;C1hSe-owVdaHt*1DjN>{h=oT%2YP}9PWevTwR
z<>}T;`ns!JTQt=XlwImtNUr2Oj%#3{p@mi!T3cvjp|OP)7Ft?(-a-?~SZHR!Wnuos
z@@@-FEsVP7k}UAur15Sk$-?Sc5^<nc0>QagB(^pet!=ysm1kCDbxbtj$DZzEnNsN&
zr4$RP778qMwUB0^jfM6WI&k3@(k*0K$g(gxTk1TeVq5OEg=1ai_!rzmS~YEuEoF0h
zo7~H@rFIrNUw5?}?_PG@MNW=|j^tSAV&R}$>eVwL*Fq-?%kvT%4wopfyQ0MIc^14D
z@-4jovNY`lcg@OD-vJK4*rt?13qG-s-WGoDn$XRHY@vsR?iSv>Se{E*HP+qJ!V4B2
zF7x)H9UDoj8#;^qYe6>xR{L1!YvDx;l;m!(>3Ub0{QedOSh#HAiiLp|Ube8?!iV%6
z3xh2zwy?y)5DP;sOtA2pg<%$6vG^03uF)2Tb7vAImXQ`-wJ?HC_@4VePVMs2sG?SW
zpg+dKSbEe1_c#k|8ZVlD-Qb>4UOLuMdfmcA3$rcEu`tQPWDC<R%&;)U!c-b`blfxx
zvu?Q_=1W;|QlFjfU3pUKXGt>!lOZ;XGrZ+0Qz$3&k#>%eC_mTYmzOc$!ni(hV@D(`
zu&|IrTqwVY?ibDeZM>T?^;eQa`7eh_OD!z3u))H+w1|Zj+#(Ba3-5iy!gmMa-lBK)
zlHR018z)j$T72(4ZYm@`mtJl0RE)J2)>&9X<?SWPRO%8(K*wH^?L0%~hal^zt*g^_
zqlHZtwprLtL*I36wy?#*d))b+?$o=kt@LwO-1`>xHf_q*28HrXchl~}q*L7!b_n@h
z7It!fT1aG)lK%nS^{(rqveHLP{uY83Gz*_F`CB-|$y?Y%ZEWI)xfVXNu+PHh7QPUi
z6XAq^he`V_kX9HWeMy5}by4yFBWs8Ac{(5M?wuxmZQ&bwrbjwx;aefxcCy6JtjXak
zC9n7r{1y}jl!e^ay96v0hva)kqE6DKL)`5jx<VGh7EW9E(L%&R)WTs4M_5gfbPJ{h
z%fgL0lEJthC7p(}^u@TRhDx@Dn1x%_9L|ONE;fB{;i!d^7Jgvd(c5phj$1e(Wb)fd
z2Va-?#t3zKhe~WZ#Wl8UO10hFNYgL5&RF=#!Z{1STR6)gvM};s+OLe13*{fKNaVXT
zzgYa~)TDhSr62!w{l;bHNPO?>yoEn3{LjKg3wQ69_|w8)7A`Ox8cOp=xd%LOefez)
z@tT=VVfRbC^1c*DKKuS{;VP4cjkY$fS-5VYnvLo<Zdka<NU>4U#w`oCEj(b@TDZd@
z7(}m1|5&(ZIoF^Ip@bKDBupA4$<IsoEo>eu@x$L(C+QKVXQ7ylr))eHl24fYZMa@_
z8!zUk7s|WRC1MJ{-z_2DMseHGcK)%eaz*LrL)S|arBXIZ+klN{Y?QH4)<$_72{xX#
zk^GWW&PJ~|X-HM+*XmNQH0k~&SE7vyHnQJHtSAJsTS{Yuz^rDDKqVW`+Nffqeqlo8
zqQ0{SO5F<OMR8J98&oyAP-d6sY}ByP$VOuuHEq<gop-1j+Nf=#4!heZF($6Ajq~H3
z*N5ua&YLX+t**F+TyjbSA<rrWXw&CyG_ldrMk}t}hGe6ujU;Y((^8B3#0~D5;I{Gg
zx)kQvWE;(FG`G=$qi=F24wsmj_dj+$)6_|@%+*ZVtwmF+jWiqAv!oP32W?GhW5Z)R
zxq7>t@Mk@V$)Cd1nPDT-#sC`wZDetCZ1lA8f{k`I+S@3w(bYx=8#y+**vPZd(MGO~
zPBuE*SeYSd)ugY-OJ(ax-}IBh3zN2wlk!_hUK^iYDxYuT*IjXZ1Mo~`M~tA*hR=p<
zgED*>vKy_?C!ss_jB^jK?r;`u_EAF*8<c0Ym+hQq`r3F=n7+5|I8Pt$-b2@-u@c?m
zB^&*0^ta)D=*pZ?k?uiPVJltkWgCNRjI}Y&#$eixs%(t3ks3-EYGas<SGd?A?iyX<
zhTC}629wW<{5a;T1udF(Z6cKz(#<R;jj}PuMqyoPH0ONRMbLbxM0$f4Wt(4MbWOA|
z$;Jd5ui5ymw=|-U^tz3|9=Mo-SmmeTlWk0~G1bPsyRNYf;>J#vrrDUzg;bG<DKKla
z)Uv8H%f@V4Cx#U<%&{?-J{&{280OiSZ$q^aw6Va(LL2MuyFRh8$i`wSv9ZO*5*thD
zV>aHlv5ZP=ykX-_8!PBk>G5Ur5|SUe_WbMOdtz_d==;dE(stg3t5ICK&`6qBD6e`^
zT5aPUYPPXn2&|!vLKWBAs8mW~$KpLDf(<q(|E`UVg73NNDEv=g6J6`7GsJr~w%XWb
z;{zM-+t_Af2dnAQc2)~zT4#(aj$upi%PrSVj`F-TshqT1828)Tu8)N9hc?c-9OHg0
z%+0((nNMx(v9Z_2XEqMn_}0cg8~bg1Y2$zmepYyJs`R;yFKFu-Qsov>hmsOMlK#rZ
z$vo+68{crOnbMwO($mu&e!$(dm{&SP_tsJZHWVA*+3-{IREclHQs9(OLg6aS<CaDf
zG#eosztEp;gl$A<j?1o}Y(#D7HomuU)P`Zhv=Os$*oH;xJR{j`D(9Rl)|8hL{_N^{
z*WJ6Nbi{Vv_G#jhC_p90Y#g`ogN;)*PKaJ7ZBTwt4~g<TR9t?>>3-VAk2cOQeYu*l
z%BH{CI7bd@IBVl)Zbg0q`7FD8#r<aEoQ>Ny?%4R9S;)o}8-LsQ!^WRB{%7N&jmpV!
ze=#CPOBa~H@4L?Tk)Eq6Wq+G=iId58UQ4)4u}Y4AQl|fV?(-kUU1cU=+UHD0N!Nq}
zfBu@gv6^y|`JWbl;MzCTP0H^DP}^NPyp3WpJQc$~HtyT_mr0(frcc5H8xL(fva!3e
z6XX1tn}9Di^U(E#rmQX{^+||}Ie;1CVM(VcK8E5kl#HQN48{6OC1Q9pPs;7*G_hJb
zhB7gfjX`;-B2`UeQ){Vue@U(E(DE@P#Lz#60Wl=TP$7o27}~^8F$Tm?H->sKJQG8u
z7^=lkJ%(pvs2oGp7~G{CPpILMs>Hx&Z~r+Dy^GA}VyHo}7E<jP;>SxhV>pv4)rvXJ
z#$I$A3fE!q7MC_{OrdkukD);fO=57x&@hHZF+3lGU0*6cS!x`^#Dauz`;wSd8fHk{
zGo)HmB#EQP&?<)3F>LrEF=v>YO-*A+is7{`5=(Ln%>-^<#Ay*jOM(CXDv<&yG0Yw&
zrN+>=o^*4Jn*;5+>zZ^Y-4jE4489n;#n3i}j2Lob=oCX{3|TR>kD)^h*)gcR3e}g|
z#rTEUr2pke-xbOy3gw&_h^e-t80bb{M{R3a>KsFt81iE%h#@ZqZwzcYIo#>h{M*zk
zUnDshHHN|%m^_cyaWvd%EWJO~!QEq!W9St_?-+W-&~%vl1#aVTsb>uTCP|zIg}Emb
z?!&dj@KOvMl+)l4FN$fb-s=9gj?|CJzfEP~+6Tt)atssL8pEI%BBiCFF${}gu)srN
zc+_8-+b!X#N3K`sW-*M7fmdOcS7R6%!zfW5A!wC6ssF*G(KJV1{+JlvPL=o_G2i3N
z{41_;F^pN}Wv}sE!aY}?B<XdUGKQHk%!)Z@!bveq`#)3P0bNBEbseRH1lUpp1Qn3-
zCWM|m2oOp_0tt|0XrcGsyL1s0L^{$$5XFLuQk0G&Rlqm>)tM(CND~kQDJuH!xqR>Y
zzqMxVweOj8&u!<Pd#AnUb9Z;se3;HY5nH&|eC~FR?_^S8rZ`K5Sw3)gmnBPc8T{$V
z6{NR(c%A;^!$Ohdh5s8gd)u?Xhs#wZDop7kEiW(eJ&HGd?tKF$y%nTIJ}ma(ZC0#|
z#1B12m39@Da<b696_iu3+=mrDoblnT4=dRmAHMWqhYzcLSmVQHn)2aYR=b3>!H11L
zto31?59@unci&UeBc+#>4o`AldLNZ1y~n=FlinA&iSAU$74mp>NWl*{7E`2;eAwp0
zR>40M$n8@VN&47_Pkh+!!{?lLQr%B|_{@hN>((7JNqXm-#8*d3<@!l;8`b@SEtTq0
zP6<za<-^x>OCOH;u+xWKKJ545fDgNU?oEJieE62m^PguAy}F`wy|cX6hkbPK+0w5s
zx)&_rZV9}Bz<UJ;eK_R95g)!|55FiKW`H^!PYdMCXpfb?XL}1vM}6)~^(DqhAAFd=
zQ^)C19i)@=A0JNm_-SE00~aNyec&4-#V!;s`pEO64|~c=ZL3M6drIdxyM6f0hnqh5
zsN;i8gFdJ}Xg>VMJ>=j7-3P;mfDb_*Odl+|J*V3Y_f`o%<>0|PD*VK+YXK=lcVdKL
z%(>@zJ=?u<<SAY}RydqU{U`@FNB-G|^FHwUf|p<ye7NYt6()W7MflGpb|!tJv{bEv
z^ed<T^R9c)e_np%p;KM+;kpkug#7Kn(y+enCC@{y?~gou^Xirlw|!_mKq{i(cOUNf
z@Hb}={n>{<e0bo)Lxz;e3HN-s@57&BOgVfUxSH=J<p1W`J2~Nz5I*+dFCRFRr9Vzs
zecQuR9R1qq(i0#4WfWCVP{Dsb#3^`2!Ly3%5>)%KPThnYnVQVlxnAAU`;)rs@r4u=
zRuCGT@Y2_bEP73&y5vO_6jM-KK?w!%3Q8$>PC?@Sl#&WwZYurJBjMP!4o90vC66YS
zR!~L(6g<x?$<oZ#Nv|YJlgCT!?R6z2N=6oy$}6a#AX$M|!3zp1DyXTTmV!zOs?C(D
zDY*NBR9WyB6;x4BRl!RvNWm)#hCVO7bJw#vL%Q9>wf1|GMEirXr0OCUGuBY>s)8Cz
zOOdBfl=!t#Z3PV!*O%%j@F<WJBq*q_;K&rIE?c3Xo&w%9h;Ja(@8H^upC|2|)Sk`Z
zLE{Y-cSqMqL1P8eTNG%b@X0l}AFHx4scnwz%XW8qO%*g#&{07r1u3GEtrWCY&|E<a
z1uYefJ{g}+N4n=pWj!ZJJhmoEZ4|Usz(Ad)AWcEK;%-hlC}^i3LqVp3_6oQU;g*KW
zH=_hMHs9<@<o@KnO713ygn6@tg&!+PofYIL=&oQz6De20tQ@(kg1JSdJO#4i?rcjB
zPUxbzs}CbQS1WFzyD7NE4{a()%+f<azJi_#dMWNlPrcdR#Ja7#^%^y<o0TOMOp^L3
z=&xXg#-IMf00jdTG*OYHVvvHt3N9-6MZplZUBPDxwksH>@CUo_j)J8MMkpA`Dk+$)
zU=({p!4w5k6^v0ZR>1@X6BQgQE{#*b3-j@c`*|#5xcbP$&^<}PWZux8=w9P9o>NXv
zoW|i$+_hka;w}WdGw_;%qb=NP{8c&fOu-lCCr~nn{h(lhf`tm^3FX%n%;%)|%d;pu
ze!>8$#Emj<#EPKtHx<0aIta~0!p?uS;}$FK;zDZ^>PkoJNhNN3maz1jp8hG)G6sJI
zTZNCUP_R<LdIcL4tWvO=W2#`SC~FNptxW+|m^Ut1;W2}yb)vn$_K15kuH_a_-Hi&~
z6D`^-ir%E)eUXvMEN<JM9(KqU1s`x4-uAHaEc(q$Ek0E6k%DasKIT1tmX%-f6Sifb
z#DK|brQ>tmusMF1MF0PsP2j;VWEFg=V26T33J%km6?Yxy@vVZd73@^7OGtJr*rQ-~
zU#WhYqz;t6Ve-8Ma%z_SHfgVdeL`)&f&&T;DyX|F$(E(T<s{#}6zbHdU-yWD?-ZP*
z8fRRZ^gZ2=1I;cK8UNjubU#ZP(x||3*8e%_1Z$Gzmc>%G=g6lSrs#?aeiF)O6r5GS
zYOE>l>d^j~-AO)iN}*hkjCDyoe&R*kuB6#nlFsSF*`dH<Kx4-$@GJNyL*h-X0Qvf)
z34eNm?1XdtFW@BJt%@kH75vOWX(l;z?`fr?qPuv#S!jS1S57*0&vRbE1y1b&?#(M^
z|E#`rNx@|WB~`?$_*KCb1rHQFRB)Bkf131%f_n<CDY&lShJxP|+-9g(a8p>mrJzHL
z0<S-IZ>jB`?!Gp8hw(u{>8v>NUusLs?t9u!%O>6zj`1fa%K+E;C$%o%PK{*gk%GsJ
z*eZ&s_)Edx3gT2eqq>*R|0wvEF7cO#Zt#Si**b}wSH%AbA^+3lSrr9T6jEKCf~tFG
z@6`fsG~jnV{9^aapadq1swk%7gK(MWIN3YK7Z-f$(1a2yel99Wjimk0NhAY0#+6c0
zT190QFRCb`y59+wRo(Z@q2ld$>3P+C(V9YjoLEjpc@^&!l=$^o1r;x-sHozBBvn$u
zyYVDF$0zXRUVi9QMMYH=4ODchA-$yHWfci3>Z*7}MKu+*RMb{cT}2HQud1l2g12`0
z5QHl@S93lPVN~ZqNgdUFnBq|(scxv}4PGw&R4XME5>?cr*)eeqZkD7e3hN7-MYkvM
zll+FNJ7pRPY%FS$chI|Mn3Sx-%T7>nUPV(C%~Whs@xF=_70p$QRxw6J3l%L@bXU=X
z<*I0<B1=WKiq<OHs7PlosbEdoveWK)(&$3@?(YxqU?nqDWU6Sdq66*Mapi2?lbXpS
zMDA7iw5TKNqas&Do{G+F-OZBhgd7#zz_7h+Aa7#JD!Q-~72Q-Y*V7Im@+|Lf)7t$h
zQof3wDh4u`tLUYow~Br$`ioliQPEe$y-{)85z#EOJl#YU%!+5;0m7!#RvN5g2wh0U
z2o*zBaEnFdVWLIse`@mf`$*BNqr@=L&aEv8>}r0_KUT#!6^m3XRxzGFpkkJa*(xTg
zn51I5iq}+3Rxw4zR5~`BTu0(n3GXTKCK3-`0rC27`W%T7a)yeT?BNF<E_1vfqNGFD
zggGkas(3@i0u}REVWBWzAhVyyk$GK1eVRR-CM{I)ri!;z_nsARoAYKAZ)CAJntEHs
z5*4detWoifilr)63bkdz6boIhqNunnzd}WEar>RPieAwno)&28T@`CpY*4XL#ei9*
z)~Q&p!v52}_vPfsv_Q2EdD-s?`O{VqH>=p9;%gN<Is549`Eehr_(;W8760VO6?0{N
z&9{xcN*7h}B}bn#TE%wN-Seb0khm6b7yX%vMq)YO{fE!#@a5c7<Xk3paCWHp?bEpG
zTNAk1rf`>v-70=maYn@+72l{hq~frOZz=rUvrol-LH4pZsqU9^q>n#HIzSKKRQe!;
z&)9@gw>(lqi4V(;sQ6CBaTO<2e6QlDiXT)Q<5Zn0ZSS2hB3J4<Ac34Vsmv@SCsmwM
zahlHDP@)}5HttN~(Qi`1SrzA0_*Dc{{G`ICLQ|ouc-%}<RH&S8gQds&l4y{Ro?V+N
zOcfUAV~2R9uEbuV!81D(Pu=!ZPLqNvLTprnI7dZTMT7&PV%xKl)kvzHB2lO0RH?)7
zo|lg&MMYzooi;D1xX6jGp{a&nR9s?s)KFZ*Wd?s04^=!;aYe;d6}MIVuHu@C>nd)r
zd&O{s=SpQeOYG;HB6&-6ds42<Zs$t<!H%>$D(-T+skpD=4;8B#OHPBhB3DXs?3nRS
z)^l_m2j~Gy`O8B)B|5p+M2{K#Rm5p{M#JCq3KdUO{HvmD(*oNe(X#%R=ReMZqEf*N
zg&$|d)6|ATNzZC1prMe4!WwE^C`?Z%sNu`G?h-)FA{y4rm5OSJTrAV4vqXnsx%8+K
z8lKZoO+$4JB{jrrctJx&4W%@c*6_TBvKq>0fQBKR;`iV243ebZDoC4aN+Tb8%4wja
zyoL%I0;y7$O$m4Ic&za*cIuW;Nke4~RWwu;3I!gOc~RrL`tej_u9q~ttbv-Z2&9l%
zcw4?jD~Y6r#y_t?qK0}JYHFyZp|*xP8t$HoKRLb~%c71)gG7TG>S|zR@;!BF_Jcbf
z+N93K-r2XtX4KcvKtp2<O*G^cml|qlq+wvE_;+_FKCK3Y%$1~p)lL>QDL%@r-mz4v
znT8Y%`5Jm^Xs)4!hFlH*)s<RmNY#*`AyY#u4Xrh#X-L=5hSmF}MOzJyw_e>58GH`t
znUcUYv7M0fqm1unx{nC26_na*=%AsahE5u?Xn%YH&1P%v({t)51zoj5Q>4xsax_q%
z2Nn3loFBL5X^=H^(a=>x4-JQBN!>)Px@)*PD4C}CwKB7lAD1N7r<aD_8is2ap`nk4
zz8pu^@V=*?hW;A-4?Tmp|EHVr^#C@okVL|>hg#NK{I`pPg)(ne4An49bMIq3RbZBp
zOlp{<VX}tN8pdcCr(wK?vBDZnJvB=sEM<a*iNZcDEbHzTK|514OclcE8m5VAFc;OX
z4{}R+O-P<9&(bhkgQ7##F-OB(4M{qZb<ET7I$c_Wtzo`~H|X#hc4%0jVWEb#8rEre
zQ^Q*tmTFk0VUgx81aE6tqG7S%pR7xugn@cdcHBFfyVj8NA?$LEzeb3a8deE4$_=AT
z`&@Z7J<}7nM#H;wts&Clhi<e_AMdVQT(j0|*r4G94O=yA)bO5$%^GNJCbttB-WQw;
z)6jwL8pMozp1VbJADZyl?uQya((svv?Haae_*lay8a@?gxtvjl^<*{pAeiNjtnRLH
zpKJI+15MGUn=CG|IbUh`TEj^Vr!?%;uuH>1>d?D1?9uS8hP@h2cazXj8hWebH=O=`
z6AFx$5@$&J*ii+f{q&QW?RoY9!ve40XG&Ur{9z48G#u6NgNE;f{Ci=9c9?N@C5ah_
z+$woY!*LBKgdGZb@T=SI{S$chw1yuwXc}}4XEdDE@RJ4~CHe8U^5f5G_%%O%P_9f(
zMOY?LIk}2REP~ZzH4F`=hLDCZXDeNoF-JpC1MM%LBJp6BgQIfq&T=_(F?+@FZsmD6
z8lsG8I!f#KS;Kh^4>UZ~a6!XG`kRIujQ<)g(JKZgTxI-ceKcIr+_zu&bep%fct?nL
z4*A6*314fuM$OXFu!_=e8g6oeb7VE#(r{bD?+hb6_~LX$_i1>I9<JI`Wj-0d$9Ysy
zy076+MvT8b_cL9aEQOo}J<{-)F<eJs9e;5iacXOb)A5gnCoH18^smUp8<>3ero;P5
zG|r6A=y+B~0UZT(P*Sv_dsm93?B1I2#?D0AXR?TnqB=_Gcuq$#9S?G(`xB+&I^?Pn
z>%fRX2_NW})WKZwR4XnGY9_Hn)~bvS(6WwKbv&=5td7b$Uer-eM|m9;biANrLBj%D
zd&jk?D$V^guA&aRoYW*gu9A-Fxiaq_j~*^fn<`b&QB}vwI$oju@o|(_FDAXD<MABH
zw==04r}n3D)U3|t{Nt%#LK@kl07*?9wRF_gk*K4#jygILbR5r;PCW5=bVx#(##!{`
zP7>vt`bxA@Pe*+n4RkaV3TKlFus*cbNJnEGtYi}*ANq9?v&bW*#BUPU-0*mHG}SR&
z#|RzGbfoAQtYe6d<~myF$kCCjqos~i9T_?@b+ppaT1T3WbRFyGmEJl?YNMmAj+G-5
z4i1o*{3@|-Wht&5P2DV+ce5ma=YhY>(_Tjh9oahnzRLX(GwN6GBxULD@Agokla9_h
z`qZz>EEO6_#~atBynH<=kAtP7myX^#y6B+&ZaTWNGS#K79NY=HRO_K5Us&rYtkEp(
zP=N>a`{?MaqrZ*;B3C~htl`tMRAU9EJ}V7mMo}x~<w1qC_R>%t*Gs!(7(*^UQS2ri
z92qxK$0!{ebZpcyTE`e2Z_o{NjMXtt#|#}ab&S_Bfo63~(=k!UBps7=OwsXuTWQ9~
zgsp=UuJo07JSZwHO_O+YaypCFad}f|3U_^-IJ}rdO{&e(F<VEZh4i|}JBK64ny~(Z
z6L{Bj@}8uABNJ9_O`?VQI@*tqYriLPMXtP1$D2Bq>sX=VEgg$=EYb0f4jNyq<82*#
z#>O!VjkFn=@OYbBpQSpM(IL0FcS`prN(VP3(9}vDt8~1pW37(WI{c+tt<mvbwF1;<
z&8bOTCnO~6b+9e074vRyF1@E?6ARMujgI$qY}WCKj!$)L(eZ(fk92HfD|CFQBh*CN
z*Q+F7nfUuP=^}s7rcqr!3;0+^z438YiZs8lG^vX8nU3u`zSgmm8LyQ5T*ntWzGTN%
zabMo36(=#*4tD<G#IFQWPR@5Wb_t!`^yL0huUj4-JoT-Py*hr-aZJZP9s6}0)^S9~
z0eY8?Lpq*pD$V*(ll6I81Z(mgL({&L?{yrd`^8Cv-cKOXVEKf)tiy2~Cv=?AaaPAk
z_J5poO2=s(%8oSFgbF{>hi`eR*R9J39L#%882L$uk8|w>x0x)0Z<{b94Qe`cj-7!;
z1`Hi0C$)hF1}u&O=dXbR1_C;QI&SOuoqebytm9V>F};ORNXG>o7j-x~qKy1H&WpLZ
zBvazAxRl$O_-PH-|Bp47ICp;0af!ai(Wxg5ORh%=kH@_en55cO9oKaHrsF2vqf^{<
z9XG^8qYmwG;&6sG6SMf1jyoe0D52#$I_@&q>UgN*4>2Y0(+M*rX1}Mqza*1Cz%AuZ
zk%h@eG|q0<@h>}>p|z3pH-o>Jt+dIEoR2F;OEmtUjyS`e`_C9|++Y|X|72tadG6w@
zf(8m1c+o%=1BDF~F#rS48z^d^n1Of$r3@4|P{P1-21*+4qf*{d=51#_QRNSpk(0PL
znGKXN+{dqcs(9;I;*$yPvr%h+RMtQ_0~HLsV4%DKW*OTto=+razTiG`t!SW<0p66Z
z%#j-4-koN4z9mxN758ja11}k<WuUf!mkqpPpt^w?Lcf}U!}+B;^LgS6?nBja9phg$
zKw(V-=Q_Fdp*23Gtz*DrAi+Rg16>!DlIR;ZOR{uU4=trc18fM7dInf79|yB~+#NME
z(8xe<1APoMHqgXCdjlN|BpFCH(Aq#716~774Kz2<!f+p!H8b4zX;TdFY1h-YXDMvS
zZa2`1Y8Bn*Wqer1V|%xRVgnLFd^gfSn&Cbv%P<iAzG1q7b_V=^c&N!_@?+2U;}gp4
zNXrzKX)Vh@Hd|q!n}Lo7IvL0{kZ0iE)>3B!IR-X#FUhxgX_@x<e69XhX|jPXLV*%m
z;H5$O9QUbQcLVtbdK&I^L=OYQWw*|h_cAc1XGzwU+`l=YuYrCBCUVdX^fxfTz$gQw
zSsyx*fguKl8fbaT(=<DNTm8C&1?Sb!Fd8&4!oWxad_C1SLE@Dfud{f`=I@tq_FoT`
z$8fmcjT^__YbA{pNISf+8gK9~ncVkaDW@soWCK$S%rY>W<8EM@ff<JT0xk8Ya|p8I
zUo&v^XkxUX`=%DN(D+PYfyp@r<{EgzzybsF47_fD3iCzwN8Ph&oNsXD?@wWI3q>8?
z6sK58zWT+txu~$%z}p7S7&vQSiGg<v9HQeHSZZLIfe+|529_IGVPHM`-@r-(s|>tr
zV66cqKW;TOlcY5U_&b3wj!NK*F|)TPk@J<9b%y(cf&7t#4_iqa4ZLSyvw<xJHgTr-
zz&9M;7kO7~NaD*6iSH+D?p@|kdx=Ko=Sd$L_{hLF2EH}0&A`V7c5x^Td}82J17921
zNuMv`zIF4NC}q1q7WcV<F9iQGCfV_n2>d)(rhTgIF8Duh`&{VkzNoW@@u8Vi_@-yC
zfqjPi0>%Nuee;LTv){m;k#T%4h`A1mQ+$`>nJnpu!9SD5Ndu=0e9yTvTKa*VZ{Vol
zOfsY&7yJYxk0eoY?mrKaZxs?xb7ICc-x?s@zgp5&V0bZb+raMzeC%EW4kwNQ)qrLo
zWFTxn=L9zpG;sQ}IFmlc3B|C_S@w^o<shk6wzR95#1|Eq<a31UE$dBh;O-kEoVFaw
z#x8HLE@}9I6h3G;`c>l32F}yF3|upC!N5fWztXo4xX(C#F>uMiWdm{FBr(_DT)c`(
znQ79-qS6&kx|5|SytqE$x`7)8elu{BT~So3+OPmioU}HHgbI}0GQizw+l0Dz4BRzP
z&_p2<e;BxD;0b50f%^u3Garu){AJ()oAc1~(7+?QUw8M)mq|V{<27<gz8vz<MfZA{
zfx2hHKkT3To?g>)|6?UhJZrj_<kX??8PmOx=L=v|D`2{6OP_O%6gE-BL`f6zCW@LU
zW}<}YmdJuS-tZI`n!N62E=ry=!Pf;zN||nD%9!rOcxe+KwELfmkx;p;iE<_i+9+hB
zyom}Xa{S2k;{_8HO{7?8ZlRKi$|eq)IAr2Q6ID!%H!;CPRTD3n=wKqt<Ui@)6%$D&
zl1)@IQQbs66ZK8hF!8F1+9v9ls7akV?P^i&toNryc}qLylquAzLz`5O3CTo)iMl2~
z((&qA@~K>z^7FZJA~XKveUvL7JL@$bB{nee<)N%bCY~J1YG~rY+`LkG^4W9V#wMDu
zlsx(Ivg{7)6I<oUUK34Cv^LSkL^C$TL`xH?CYqaAEwy`KB)4Fr{K*CTr1qSbSK3G}
zIxw}BiO&jl{$oIDjZ&$D+k4xZNHdXPBGW|oJUQLO$qet9JbB(ZZ#$E(yL)feX~g0t
zS50Iq+MC$7EIZUOC!0V1Y@(lu{w6w^=xm~giG22|iQwjXxhC>VEXtF~WfQc}#Y9(e
z>buK@y9r5mf&44y^~I8?u&G1NM|pBj6MfhfK5s7*y-gg+lMORDkSC{P=kzu4d!Afa
zmZ?0z#6S~6O$?(uX~{3k@*op~O<Zc2*u6xn#w(MCn4snU9lXO$jLFFvWn#365hg~`
z2iO(Mva9^lp_`gaQ>@PzQL(WCS>bVFEJ!Arm}Fw3iT6xQHZjG-TWpkxsV1heXH2|q
z^6gOXbQ3d7%rtTOXx3|@+!k40Hfom1KcqmCEVBZ$P26si^mlvjTp^*bqb$#-pEu8W
z!^8qsUY0BC$qQ+!MXIts<xLac^vGp%X327=bKb=!-lor(SY={~iFZt_AlcG!l`PYd
zmeTW0EI0AFEO)-ff4KJYSUfMUZOLR7y4u7V6YJ>D?Q`f7@0wWaPOfBDlFrHOIXyb^
z)Or&e==ob*&avKP;(Zfe&<{;)Hu2TbtPf3mWMT_vmhj#aGXHHhYpaR#vdnsJGx4$T
zw9o0TvV5&m$|oj1rKbsJtJ6i^ZlY8dnU0s*Mef-}HV+o)zaVP|Et}ZG#+sPbCiQC*
zJ5B5|p<gb{Bu8gAd%lb8S(g3c*mx$tHL=$O3bfis$D5kHtc$$k-A<o&k@uT8z#i_H
zLs#e79eVO%I**CRCjR1xnE2j=&A4IWsEHp;_)I7!2DM2&MsGK9ivC}`)o~LiOzbFK
zhQn0bNIq@iM-xBMsXj_OLnB?}vnI}zN@Zh1UF35n(zm7Y*lZ^6*q2q{^Ma}gjghLW
z?B~#AdUX?~3Co1RhL>o?E+sy{E$wa>xx%4jx=n!oW+KF?+9&zKp{#A4bHXMfCg{C&
zmS@wA*DlD4n)sOk&BP7iY3EJ+!upuFz<|?LW+@k`Z>3Bx-irQq*~G6Vu9$dKyj6>?
z@>NEmsoC)dvaWIJb(P6EiQeg)^Bd<KW4noaCT_9QOx)$Lc9jcu%K4qsq^ta9SNRU7
zNv9khRga~n9LTybH;?tdZ{netVr45P{b_>uKp@9u5o4E${at0M{cYkO#!m}XEIcvs
zuZia@l(g`li8u?&j826tJY%8NmX6O_C}8moXYbsjS@-^NJGP(&#;79aywA@~Eo`BP
zg`yVN8^tY@uux2JCY=l~D_s5eoWkE{F^a}pC}klxl3a<|EtIiPf$_XgGAulA@jtUr
z&VtcZW<iXHtYLWz>!svl9lU8iFUiM7GL>JjaI>pi(E<Z9bt<#+hqBnQY131yT6oDq
zZI*7~WecxZsL8su&sovITg^gs3pLn^JbC!;l5E|m16i+fDLI@)!rrSTH0e&s*Rnho
z|Ev@BEi|x@VBy(rG6ylyLjU5e>I!6A>M?IOw;LB6$ZBYzk%eRn!J?(<lZ`DTi5_S|
zc{iB{)fkGKmuTg+(9}XRi(gN>e{p{EXwJTQc^$gREiAOO;I|O4kjg%{u-w85i~nke
zHZ0M?01Is`q*=&e2U_4*r?UqvWLaouA;Ut%N^Wc=XYy2b4v+SN4C*E`Pz)<xCfh<s
z3tP10P8K>_d|;P6qno_Cn@lq2^#Yv2c^0}@=*qG>cx8*fLZA3WH@TaI?iTVb^t8~!
z!ijEf0I@rGZ9#fj=xw2og}#;>&lz6gv%L4Z$!+GQjw+Sf&*Iac<YL`rhWCLM23eS5
zVXB3}7KT{-^J|Q;_*tBHsD%+0MhZU6!f-)$AIRdVQ5?<gGDn09$H_LSbfK{p##tC|
zVFG=uyUcZAU8&S2-Q|h&pSh`>y33O-OcI=hmRX)nmmryDVY-C{78Y7~&B6=|vn|ZA
z@T!cN^z+MwIWKt3VrLFY%z3xdTnqCo%(w7{#s4qn=QG}uf2OcQ@_+J@Kl5eU(C%^{
zpO^nN|E7hvEWBf3DgBDQ)J1+<`14}Hxt*Yd9=k*c%O1>HW?@!$`Sb4bXf=6Fce!ud
zoRt<<S=evkfQ8lUb_<_b*lzK^XtCD9W)7K!brwTY@&*eVIUNLNSFpm|le}l)eG4Q!
zHd&yXIc-vTkbGcatA%YAKDO|o<!&ubb(cR9<X&?xH$1PGN?o7f{ltR0s?(>Iy9zVO
zP|xJ&7QV2s%ffCk{lBEsMv}j_u*2dX`Q>~?|8a77TvU@O-^saLrVPm*3*XRwo78<4
zzO}H|0_Oso&(+Q8?rslezuPH%umJ0J(83`av2e!1VGBnr{u>C6vkn&i>@FX*@Pmc#
zExw14T%w0O@lXM710Jr;xx1lRtse3T3nwj{7PFGGU}J+ar!3z2PiBze^pp=|k({+~
z&VpvSi+;-<@=uHybs8xaqFFgU!8s9BK`7@Mq_bD)|2<?bNnC183l^hCopxh;$V+<2
zK?@-UD?i{z*qvy2WZ|&|+k#`^nuY7MY~g1Mmo5BCc?U0>eBQzZ3l}*GJ!GyFmqbMU
zMO2l+ha=c~dg>JmSD9T)rfacV4%H}i;hdM@@rK3kBE7#`xMSfr*3-f*F~zv|xJ_5-
zA?rQlt3Bj)3$pH7_`|{ji{IsW|LY;&vv8l4zn}6#zRV=orawiABo7(Q@@1~+^n|}S
zGz>w06!GI9%UvJi{CLKXC!C(`z5j9v5b>mazC0jbZnNCoQa<a)>K3U5{H_AGz6Jd#
z<adKxX2H(fg?_mptEk_N<R$!g&W~b#F!C3t&9*t&E0f4e`dv4BEnhC}cbz$2U@58z
z$KX<1c~Ii>ew6hi$&X||%K1^=k7|BY_oD(g|9<{W9;*0J(eG{xxhJgTcL#{&Za?d-
z?B{pu-qrbXRX@JUmtW>7KVI^qW{FlD-_!Z>^-bB?@021kS;LQ4{YdbmE*1QYipjP8
zsN-jEB-ip|$Ap|fn<VbIJbp-i&^|eXB<J$^eEy&n>akH@rZx1toykd5-|wy<+}kt|
zEqa(QH}a#g&|yeqzcmqELE`nJsUL0qNb{o^c_g`oA1&FRR&t8p-ApzYoSN2_j;Vey
z;<fgpmEUz;&P`4$O4|5A4;g!?K)N3rN4IP5M+d*Vy=>=4h94X$dT*u}2$o*sKvw*g
zj#++WvzdNu-J8|PkIsHKN|fp;Q<FA{)XDQh_G4QFA4kx|kFHb>;lmKR`O)2vo<Z~q
zqK6;(<N@>wpr;?b{J7=EZ9jVZ(Z>&;ABrD+{pjb%hkktIM}I#C_%Yv)H~bjr#~?o@
z`Z39mzpi@*`!QS)@*#o@^<$VIXRpOmIKq#SevA^5@d8KtF~*Ovf>WXP`S@`$-spV%
z1i_!?<=M$1IoppZf=u;enjq5!zDB=2@0P-2hLFq@IE(&PJ(a>aB1tk=ka>Q*F33=C
z*3(=I{8;D5dOsHW@unYd`LW24<$kR2W3eA^3+1H(mk4~vkN>UP8&~6(2_a1tzZSpJ
zk5wZ1uE1iq3a|EKjo?o!NquUr6%y)i5M;B!jRN2EW0N57|DRHRyy@oJ;>QQ#6!}&^
zeif#+`SGzIhy6I>$0wW%J>}G%@*Y1v6`G%MD*5rbA76;%PEG+qz81Jc;8y}^leK*y
z3L@X-$8I6duH*LMH-3C8l6wUn5V+5e{emzfb$A>U$wRRb`Oc5;{rFJ`j|!yD2|s=i
z{8&tKTo5+rq#&na^3#6MF_`5{Omfzbb20u?tOxq{l&Pcoq4}Y6+WHao<7Yoip&5$l
zTY~ug2nZ4s*x`5q=H(IgBO)ZWKt~|umv6ZhIPb@07AJ%k1YY#x7eOuw{9ij)MDn`8
ztA1P)gchDE-0<T!A-NfoH$7V5cR%hhFa}T~fV+PD;m5N96bQI8>mEn8a_VD0?#J~1
z6y$-xhkiVY$*<fjoKQLSFF*d~5+H<61jY$F|N8NtNVfakZ4QrTguKwz_`c^m6%2rR
zpAVo=0EGi65<t-aN(qHx0-qDeT*U<`5kRu=JxWRnNxZ<Hueiob3tmPb1g6|7TsDAm
zf|n1Vk|5Nq5WovDUQv)QB84jl@L~W}V)9o4s4DnN0$&zbBUXB~0GNfQUJamT0F47^
zA{1%~tShj#z&ZhV1fjAdNJ0SrtSrT3qDa<@ovj~01Hl^#Y$R|~jYMiDvEcz^35hp=
zrUA4GV5V@tW&yMma;l{S&|L5qG0DVRg;ND@6_d0M;PQ31yV?p#S^((*w2Ph13?L)M
zM+&v}BH1B;GK=alS9Sm$g`|_ft^sroAV=`r0AxX^mL~`;bcsop{^l0iO(eSu>>)5e
zfWEcench2qJ^@4muqg?kUjTCgm>WR<00smwA%KYi3=ANA!?iP9<Q*h%u)rY!3>AcD
zhY3Q@93jX^fujVD7C1)WSb^gNGS_%P$~sxMH+7m6!1MrGY-%<+c6LetQw5(ElX!0x
zel37uC(@XAh7isSV3r`W1#Yoj51ALh>j8We;7>4NzK|~pU~vF%2u_6s0W1{!&6wmZ
zLEgF@|8@W?d&;W=SQEgK0NxSur2(uEWLZpqxge*n$FCG*RZM>9di=WqtPNm`kgSWz
zHwCa>@C^bt2JoIBGita4v0eDp`$DogfTwOi`3FL>HGmHVp@fd~aR8qLus48xLij1?
zMF3w4{#gLqW161}Lj4^v$?gEYit(=n*%`pDnB*jv62ZTTNxl_?mDwM_fdGGB%MDWp
z12`1G$pB6Ta5$#<eE>&d{5wIG-*$cGsNg>cJSOmX04D_D*$pY~qI^1lvqJKtz%v3@
ziiyCp=QteK<9`yuPp`)-0jPp&0ayX}1JFg%5NHZyu1d{a%K?!L1rUtMqu1lZf@{LQ
z6F`(PFo>c-{2ajf0B#5HJ4sLZLI78V=EYdvUj(_txh%-90bCK}X|yL^i)mgD;6{x9
z7QjuxZwXve+#T*a0gQVo^-%zih45|we+Y6<;C+FA3Va~&p+IJI%Zl-5gZP_aEr2IN
z@?T8;Z-9Sg>#lThL3g~K5lF(-r$CGs45Cns7Z!wBiUm<Th=d^O22mo2=Yn`Oh?+q(
zZ<<vyh$=!YK8R9+ln$a?%t9GKAn<vCWrJ8Nc7x@Es1U>pLRe8CYw~n=R7oT&2k~M|
zzN2YYRl#2h;^iP-5xjcrY_%W?h`mP*A^AkuuN4GyJ?beFX}NX~b;MauESDq*GbRR6
zFNn55qy<qwhz4v|OsAnBUV)7SHWt`KV3NROf%3KZrh>4nW`d*$>~k%?MNHl@h}0lj
z1<_ha+Qj6n!;?Giq(~2<T@X1!o)J5n6+~u?w-2I&;CJuDKkcjRAUej*b_#;k=q!@b
ze@%0P$P-)^*iB#;fn5c%qq+;yLm(@VF9?UVcMyGoI26R;Ao>Q;FNmc<EDNH45Cejk
z62#OX1_ps%@}M9F2O;&6%eQv>d5EwuE{LH)3=3koNRARXLf}Y&)Z8c5j?qDk5t6Y2
zpKi2<)l3~9!~`Lk7}K95$Yg;>Zp2RuVtNn@gLpHD*Mx9xOml`HGlQ5V$ZUag1U`+Q
z^8{xdUJqiv;BN?A5R*S$l;0A`LZ{p{Ws%^EgLqqzB{9u+g6JLF_bv}&eGnUhSP{g^
zAkurutAZ%oAbFioUM+A<5bp}IRv@<oG)|qL-l~`1Hfv)LUj^}X5bp)CDTw!l&WAyK
z6vSr1w+Q?|ATw?iglix9Ho-p&;^WxaPlEVV@ZpX-G(5J8<mUpv5cs9Q9Re@ih_5p^
zb!QOY2C;5$N<z8RT|w*?r}hZ^M&Q%p_6km$`-0dn_<@+@U=TsE!8j7ccbs=2ctZF-
zh@(N&3b~QzhaipxaW{xRf;b+;i6AbCyeES=6@(gu7R2e8wR1uI7~^LIIV+I<|5Hrv
z3qpx;%Jm?OAi_aJf-qz9fFM>7enFmItpsCdLxM1`9h3YVgcIXYHYB#&JTHV71YQ*Q
zOAt@3T@K<`A-NL74MEu0t3h0g@#}(&Z(ZiMAZ`Y6OC*1foxL6W|JSg0V*FkZ_k{vN
z_%nzHf<Gs^@gd`U5dQ@6NC+Q4wIlFpeVzpIZxDq;C=$YdLjFt$&x*WpA*>fWq5>jW
zP~dB#jfDhf&HMLqFR6-#P&_6nCdkiM<4eRO?6HzD9xq6#5K0SDCMN&8ZPxQ4lntSr
zkh~Pa%OR8xp+X2R2+4~AD+;V6u(Cjw{<I-gM6#;Dg%{n0@|6&3h-9^xX7$kjTnoP%
zlhhQ1jjAokRM8xMN171A@DN6XP&b6c5ITj>IfQy4)DNM32pJbkHVC0%2q_^n522CB
zn=G)gz$OA&ha^F`K6+!4rXe)@Uw*Veix66dkRFqyhR`O)TZPa%#<~8s6+BHKlQhnw
z9V;Uwng2)LLGUbr*#bKXq&_pMwNi6J=ovyUA<PXSF9cceE&{s?>?*KZ=zsPDJw%cg
z@&#dwdJD3$mpnj_J|Xmt>GTVse@u;81`0kXgux*UiRla#<eOXZ!vuNSqLCqt3So5!
zYeE<u!k7?dg)mzvj1@RZ;5dQfLzo~4i<lU~Qwx(rm?DHzLzodeJ1vCiA-opCPZ_1D
z{1i!M##%Qggt;Ls6Z-Q)cwLai0_TUYAZF){SSifAPzc`?_?Ey$|L5%6AuNgIdPk6@
z0yhcITpq#-kz5(mStSU2bx$w(UBTZAVXYwR1g;mjLEuJ#Pusgm@b?977Pv(qYxsd6
z12VEc3Sk>(To`4-_&9`5La;+{LijX<&q6p6!pRV}hwym_--fU^gfBw)GK5_r<XmpH
zgUx@Y9*?gD`6`4+wJaugieyH92Knv~_Jr_a&y1g|q%zAlBBRnv-WS6D5RQcKT?hw4
zh#OIltM(zz!Cvyg5DNB|nLHc<u~KijNpJc45RQg$EQI^1SwDo3-CO1sg?w;td1i0<
zcnBMM%R{PV5l@A1Is_#Il~c7`>W?9u<KTvHCWNy>!dpE&zV0pmxuG+=!WRPTcC<|v
z*HA44Jp_LUfe>m}OEvh>_~VvV2&PERcd}ZyNcrzX+Ns`hFoY0=ol_$rggF^or2O1l
ze%M<kS>H0N*2%P)Nx4y4X4DPgK?vtVxDdjv5N?NXF@#@2xE8|o5H5vqnVwd%$W?a2
zH>tmda3zErds4|CmrLE>K8s|0i<J02@{JI7)=1>>TL>dxaaZJ<jDf{dx#91;H>F-5
z`S%d+gm9OmQ#LiNP1YYFyizmuPD<82L3r(XUl0m8E)PR^#C{H=P}sd@e;mTU4D$4f
z5dIF~A5PfXsXU%AhV+q1X1?Mk<HC3*i~?b-s+9U{7z6vrGyBNImn)?b*Y=SQ^^tiO
zsBjp?!YCeg?+6tUSXAKdk2;nJqsPTm_G-y6o(sF(%j1t`sqtZyqUC0(Jj)~4M@AUW
zhjBWLAHygcM!7JihA}OS@?lg6BP)#TFkT3wVi-wbB!^KcjLKnnXfuo#!|pzzy1*&|
znXDSdOELa(7_Y>5H9>d<N1YmizZyo(*x6cw)DELgOv3BygcxrSMqR-ZW0HD;)DOE?
zmo&(up^!8Rqp=`O1U}s&dc$ZMM%ysbgs_>wmI6}*HW%1JAUC(Eg0vDy%dNv`6XS!E
zv(nic3$xpWaZilGxL-O^CnJo^m`-~^I<W0x%hxfCPGO7-qe#uv&SB)x6T;{xbaKP!
zCP-c^uN+1f!Mh54x{K>Bcn^X30(%PVC9t<Z)}c=r%H9-`{$UId!jW_yL52z(6w@3m
z$Pj^NuEY<E$%hLvB8;cyj*7`ghcQO*u`vm^!7OOJNKOzqQQ)L7CdYK92*N5&5975k
z7KO1mj2U6f41=EBxUW2m4%}CMi-Vh=F*}SoVayd--iTS4C&=pp=ZEq1x`X8|2xDPP
z=S@MrtC@SNa%z>n^4no731fHIjhXL+u{4Y=VSXBqWnnBAni~bK5V%(0N=~#eRtvsH
z;Je}f+2gs}5^-C5osh2&V}l^vP_Y_3-V0-skdVJG$Yz1u5p50Q!!Tym$=wmgM=_mG
z1=+?`ASU^Qoe;Y=`Ai763;bN*7XrWhKRRE9@wE`{6v%RSg)u?w3HOBYO&H&Xu{Vq(
zVSFbP_JwgUrnz5`1OI2%91@bl0zVh`e7+CkxJVuqNc%qsax9kXgh-wgcuF99qw|Th
zGhv+N)QF%`1n0u|DUAQZh>O5Sw+!QM7=MJJhM|Swgb@`Pbt;Ug=MTdWNmHODkmYhM
zCI-R?3P~u8a2S!;Sv&kc`y%RaA^us&uZ3}4kn>?&2;-vQztD5S_*L*r0;zvRkgKue
z{}y*cNSM4O$ZuiXj7ga5w&1@Dyd&`G9-#d7c&;PNbuWzjVf-mhJrMYhz=r}K34AQ@
zFM)smpH@5(l7AVj#NP6mh#OstL{Kz>PJQKPMY2GI|IOjbc@&DEaEuqc9$!rGQUZ$$
zEFthYfh7epSA67ue7m%elo5yso{ykxOsBjc<plCBbcLAw1wn@Nl`BW^Vg#>6Fe8F0
z5mb$!RRpagcqsy|K6N7SM9?HT>*WYuiJ+RuRXu{5F*`K`c~#)k#~igHs4bFDpBG3G
zBt-b2)?M1_3VDMF8VZsqu%5vB0{LX5ksxeck|2#)x*)uv{j{%=Bk;y_cBf}Giy%cL
zn+t3iL5tW~2JKYA`6z^W+eFYdg02yCiy%$N8@-a66G3_e?L;yof)0XY3T!X1f9yIm
zOC+-eb`;o2VCM+t^>r`Yaz&CPPY_vP7l8~5-6QA`!KesEN01*u&j<!YFi@QB6+vG?
zdJCk5K9T<)N%}?5KW2od2E}xSM=)6MAp(aA92PsPh?{aFL~^9Sr=e*~1QQ~dC?sPe
z7#GtYAHllVQ^-j|I5mRFv9nVm;6*e`=P@mU=|cY0;LHeSiRAkc%#L7FUwKIc?+D49
z2<EbLB6vN5`4PMov-U;=3j}|<3M>@-O@X^aPqLInBDq-L+X4q4Pg@$nvWUCHtP_&u
z5v&$ug}{{pR|%vA8eb#$y8_q#ANhL0H^d|x1$mE^7vw+j>~(YO>=r>j5V$ph4+Z&1
z;M4kt>Lq>>!8Z|n8^Na$d=|m>2tJSC>j-%23s$&(;#Uz&s-O6!;7sli$wntjj=7aW
z+!?_xPPYh{?DuKno(O*ID^q{OiIPn2jbL8{L0XGoe*_02I3B@?2o6SYD1z@I_&$O?
z%i2-@urS-$Y=1-)L~A^Ho+x=Vf@gb|`9TOjJyG&l1iuLTCnGo&ff9kr((k04X1NiZ
ziQvhqc1*IKXCwHDVP9lCC-ASnGWy9pJN!)6``b!uqKzyi5P>eZA=GO1lg$W-Rs?=g
zD^`z5A}bJ%AQHjV2(Cq7N8pHzzeW&^;Af%yO9ba57}~BgEng4@%P((tQJhNcC$nOg
zBDgH-OwLa3-cKf8iJ<tJcH{cV*CV(Q!QT=56TxpH`(054OTQVxEn$ZlZ;MmEM{q|F
zO8TyD_lMy3g#KIo<okmB8NmZV9twOU@Ug(Z1hVu(CrUnv;9qvNjRH3Qi(pGXInGAe
z)$Y)cKO;Dk`$TR3Ssh1tnRnY2wo$}JzbN`gQPf5;8x0&ZbWq$z2^*VjY_aj2jgmGp
zY-HMqw^7Q5WFx^wX&Ys1RJHMv4cK_zMg<!$*jPHwt8Xt*)<!uSYCpL=HIH;mUy@0F
zub+HwLQ+K=m2J$Q=q*yhTZt7Y;k}-m;k@R3kp+!Usv>a1BJayKUa?Wb#;Z2YOiO%a
zW@0rP)orvYm^$)F@-vaN%=MWyZD>=Ic+|GByLD16Hle@#YJZuMI^vW^V9UAQx;7GR
zG`7*iMm-z#*-{$~ZM-|q)BIlAxMS%HCVSHsc^lcV#(F6vU$G)H$wsn`mNrt^@VNBH
zZ+N{nn%Zb)BgIAw8>6Op|D2py;W=+}Hvc&<kDfCVsn)u`JZ_A)m5sJG(rmQ0F=a|(
z8-XMvcVwj7=rlR$QGQZSEv=p4*;X1Q?QL|hF`1e+vTS5?bZqpu(b2|d6B4`H=tgB5
zoo(dU$h9HcC|D^yk3HWjY4gC$ZvEx0qmsxe>|$eeiS!FEXLPsG!$xl#eQZpe<IT6x
zi)OcET%VWNQ<x<g*I$0Kzr4R&daG#eTVuR^SwyFLTl>ocYz$;GZH#8Fhv|cC46!j(
z@WD2^AMj8(%*NjS@+m!I1l?e^ceud2;}R(uX~Tavmt>5M>uWvZY>c-t*2d5M<<GzG
z*vRxuVCSrFKapRHG)|8jAd^oLoJs0WwK2`cn>OCEG2O;%Hs;!x#}0YdGsDKUBI(06
zrp&Z4%f@V0W|?P>K$0p0WMZQM^6T_88w+e)8tv&lFR|kQ`3+VnJDr>u8SGhTBmJ-R
z8pAz{Y%Hcf*jQ`hZ5vB$EVHrP#yd9ut}*?M0rJKH@=_a@k9pMmj)MlsD{QQ^v5K8+
zqwXTlkiXNe&GCHvPudzAca3!az@$9`<h=P_@^v<Ez~Vidzdr4`GS$0*Goqhoqm4EN
z(km@*uMLp@7$9$A(H+xyyf4VdlM+9$vDL;^Hq*w3Ha@a(!p2D(+iZNy4!5z-#wRvD
zwXxI2E{>y(?NnZsy2Hj_zj{8m@r8{qIgtm-H)>_n7$|?6m^Z6(#?`)_ujti@d0z{>
z|6_ad-8S}cBIhQ3YlD(j1LXr3(!a5BpnYbI*FEQ6&3<`+XFroRj@tOa#z8v3K>4tZ
zBb*MaJ%?E5d5NVjr*B9~|IWtuHX6O}nJ`dZG*F(Jo?Gjpr$*zv^$F>t4ttK-IBw(f
zf%2(=a?>NZr)-?I5wa1s@gt`>BL*j|jk7k++3?v==!Z9R8xBr-JjU~r&401Uy*yAZ
zI7ohJg6Gg#Ps5WQ-G;#dwGpska`MtqeI3@%^}aYr{_&@jYFl!NLH7Ry@8sS|ExM#P
z9wdL0njW!X+qh`s7aNX^sEzYBF0ftgayt!@2M>~eX6M{VFZyEoTZ81ygXGIs(hd%i
zFWLCDxc65ZS6C>8HVzHwcz2Mza(L29T8E;8<s<KTuG_f5SmB_wgWqi2wDFIPCpK=`
zxNYMeyVu6=9KrscyY%zko;&QiaUSI}Pxc(|v?V!zFz5}In+}%$wDG{kLmQ9iHu*_K
zzs&41SoRK2dd$J4=k)aq9-H{EeEeU(XZ&rWU2^)89iGP1JpVHIGX^q%JBV}ejDtcB
z3Ojh#K>-IN2g}pmX<v{LesEI3)u}W{(xZK95eGHrB(54P7wY3F$}D|6Jg)7_Y`M!*
z!ohP6N;=s5LGG&A-aUV%?HDYd87#*;=)E>o{X4CU130MWpt^(S9h7xY*};nr$~h?S
zz?$x@=-_i?RB-UiVELo8%oiMtADKwWye>)diy4(1-djl9e9lwF!GNTUst#UqK>4yI
z?OVjBzwF=@2TSW_9GR2(>=2ox{$5WF2d_HtIFMLv2elkDlG1CF50PoJ-4HovR$?6o
z#Nk6^bxmr5gSrk<`z6(Lkm%q_W=4}U8IQ+%Z|a_3yq)WdQ#`wLh}_6QV+V&E9Cpye
zL6U=64rV(@cHni;i%oXW)Il=`9UXLXkm8`ZgSHOR9JFxI(m^W+tsQI|BHvx$O?6<V
zrvEfVCSD&Rw{cK)sQm9o8KZ}_dv>Ut?x3B6_6|BY$Z&YqBJIX&p4*c=O^3>v4vHN~
zC&_Yf_Dj#=UY=D8Q%JH!a^zG`XSR;L<e&@3Wpq-mgCpy5S9JGW>gUO0hwSupA1Zfs
z(9J;)j?0ns%@;irhsx6qWp;P)@~EUq*_rtq<%$_S*&9~+;-NCJkAuDrM$kzd^mEYP
z!5{~N={8r>25^iVy!BS*AD1#14Vq7LW5N&zuTAj`bui4qciv2WSkiF1%BHjxg;Vzp
zmA|c?zGbL9%E4#{6C6x*Fvh{2sot>;#<8{|6Sbl8h1~SVL*?-fXbr>U0W%UOIhgEV
zIxRbx;$YH8o@w;eAxTpm=&Mp|eeC(JWXA3?>AP~%=S)wW;b5i%rD!JA5}3VIdXe0u
zIS%GJ_|U;e4(2&{-NCyK);gH);0*_FJ6J*oOX<A8!JBLmJ+?&VLI<6P$=5b|1`m@L
zIatijFWhR$*|dz;6KB^+=Nj=2J<!1l2P+*c6CJW<n7o|6F-*>x>}j+xbH_0G^e}l9
z`(Z%xY6n}VCQ9r1bEfHQSox;uD;{U8bFkjQdk!`^I8)qPtG{Q1<Azz1jSemhlOGL}
z-xu?4i-QkXt40}{9h4d_*BUObdd)L^W9C)|pUg^ZHC*m7T;As3V+Y?j_?AKkpE~%;
z!Pj)WUg@7X*z$A67wqKW@^;QU_N11^W7*H?jjCsS>0k$Y`%)T@rNiZ&4t6=%&2e$~
zv&Lx`BWX3`GM;$TIrpUksq-gz858z8*yrHCVtEG~oSN_bqjdUyF@HB5$S54l;Hr1f
zfsvB&$#D4yo6kTIMSK+BJ2>j#BB#8A9~>N`4(Eb{;|@+ZIPLK318BqL&h_(7(k!Ra
ziqykXJmXJfE}frshD}?L@{<D}z1_h%2X}|dE&oX?HA1d6LRL89vpqK^cGMiGf;at(
zBjwfUX}8j|N64LvWm*pW4k8Y02LT5`2O&CeyNs$wbI;vKn;pm*_e(~Pg6Uxg8(%8j
z>TQqXAj(m2uyBMtbc9?#EB$8&%a?f13naPRJMm7V^!rWHFR`N>{O#Z$2fuReIJoWL
zcL!G;th<nQ-N6kuwsHD3`mmh7e0T0|4sLSXN66n@PP@fXlanUw&B(u=QLu3y`5iXR
z!9xd+9Gvg&`GYRu;7@w&Jnub$yFc_i;A9ygcRS>HWvz$g;t2UM2fBxci}<r6<-ZsM
z6VrK6^2EWv4vKIaAH{zR{!tW&qF@x<lU%#vc_xZyqtJ_a^*){=^E_2X%EUrZ6po_!
zleFLZCZ&y(`;3&Q|DIMXim%?tDjr3NDBc_?M~n{7Me*TC*_h?AM#=|9%H*Y@C>@12
zil$MNi2_m7ilTND&qq-<iWj4(5=FTv%12Q#ib_#D94S|bB5{=b0)?aGN};qir?T=!
z$^KrR%5<2;?tXjMiCi|bY7{R;@k$icq8L3&jxOo^auf@%r7avKZyqIAkD^8tuSU^*
zyk|(G^xOM#N!nYUnnFVE>+Y!&g(r$eQ8bQ1iXtJ3dQsGmqAqLI+mjf@h|=D!;oQ7N
z>BmONm!~B*h@v5d-O~RaCEKIqxx+jQwRmC^3freAv88<yD~y)Cqve@WW-?9LX(Y{}
zNQt6-6dj^y9z}~N(xOO@;@s%OmQl2dqIDFhQS@$=%R?S5w~6BQ)btsn<+f39Gxn5o
zTz1Y+Y5#Wnc2Q(RvHgH&{b+Zw$c*Ca(Q<IKoE1fO6mk?@qUab!rzmow$c^I9(Q@Y~
zChqpUKRt;&evI6FeQF*Xcqyyt$c_!i$Tg-Ub&aB16t}A9^@`%Enbtju{3!n{$<sq5
z<uUR>y+cnSdC)VH^4?MOiDJwcdBWQsqgQ%g!Pmy84~Sx56d(MItv_Q>6oaF<&k95_
zB#NO?e8y@=F)WJVQM?t!B6eC7BcqrW#q=mfaS)@Jz^X<O8k0CCit$lAnBqBl$ul;J
zade*K%-cyBtIu}Y_b9FIOX+ciQWuYrCq*$iiYZY{Wj~COkGIQsd^atanz2PqV|`wW
zVn!5mqL>@S%qV6>v2|@~{#8%mmKn=#<o(e+V|EmU+NLvD&10WO@kSI2qS#$CZ(Nn^
z`BD6^F!SUX*%>1j4W|!Z-f1D7oIY7A@7b~P3uEQe1@jh1@pcqzqgcllh0>Qqu`-HP
zQM?ny(kPZiu{??u(f`NPcR)u`eg8-4C6o`nE1j9mhUO+DKmfDZO(%Ku-UR8rhu(Yd
zRgm6$6;J_DiijeDWM+2y>`D_UD#-ut`~EoRf6knHKJUK!-n;L%nM`JO=s#;h+z>W;
ztY^g}fv7%Q$nKH8A{Q%j5!u1Bil)6Ibe!O?Tg96-gq;{8gi86==3*UbOWBl*^|{!P
zi%q%MOm3PaY|N$aB&HO;ob~w-M$LC^JX^@HL)cc*e+WCe-v9Lw7Cj<%doI4rg*1fi
z$^~8c?V#BEIU{ppLb1`Fow=xeB+D!k`)UZQFqG}h#XidST-?dU{#+c$#kpLZr_?5s
zk~MO1EEoE{#KXC`R>C`aC~G{F9U)DIvUayJj_2Y;E>7j*G;Mh(JDE#AG?e%Q%{i1+
z?e1OpQ=&DLoyo;n>J53n8S3uTGV@rR@2gx~$i<ahT&4O?4tkOG4Q(nHm&oQ^GJ2-J
zkm_yqjc_g3dzq@lFh*C8Z-=s@13cf68oBt9GBGlCRAcY=lt;O^k&7QF5*mAV&l8B=
zBz?yCZso!=jJ=(gPB>#2Bf4_Aa61=|6EeT3<o`JrzvRNC2&cf##jm+gauLYIJqo{E
zJj_KdS#Pm$KNowSC;py`2NbKr*tB7cC~=l75|&10OSzEAM8nwHVQk@HU-Mz~)4^Uf
z7g{b1^8R0m7ixNS%EZGNRIlz1V+WXbOL1@9RKd=LLz?8`3FUY$LbT%V-ck3xPlmBV
z!`UBH)`qjn54?|P?+?69hqI@-ct(*nPWY2*R3qQlvxK9+c{>bncN@;0bN;=22`{O5
z=E5%_S;FgF{GE%c5~@k~Cl~)x<&;od!kb*YrAjWLfQ0|3_*1EukcV(-e}shkZ<0Qc
zFm5<oGMo|KJDhztoaL2JeXKv9gdt6`<>9Q*2sU_5Y^@QjpoGE_ib$xP<1QrO*|n5I
zhEP;Oq=Ysj7}=ru2$nyP_^yLc-WEzoC@G<=gmMxFjbJ~{jE96$5|)f$^QQ@=B}7b0
zJ~U1!BY{rtCq}UH5-LcjB%!i|iTSfDO1L>P)~xA^SrmJJjc{WG+tI}P_;vFt68$NW
zSZJW|k%W&W#7KxGZHXztEg@P$O$oIm)Rj<A!kN_xwaEyje03!H$=}4_2zGvWY@U&f
z{(KN5xFkeL5T)=n<VPdf_zwQpd9$f2ek6Msl~!Lu0||{Kd_ub$$r?(SKaw?~DpxUW
z_(*ow@aFwFku<OWx7$Oe80cR2UnJ2c65=GZl+a2-yo9C_nn`FbVf#qdbD!{6ioa&w
zgq0<-6G*p_tc8RgJ=0fwEewyzel{fbQwfO@yb|3^OO&Q&JU=ANdhVTZMM#ox_*8~Z
zf}^I=@!Lq2A|X}6a0w$Mq)AAZ&{aY=2^kVHCA62&K|*T@SrQm2FX8zt;pIq1G+RRX
zQLO$b)>gu|FTL$Z{%ul;Xm7hw>`w7)GEUAY)=@$y2|1>B*(jEMBeAoDE)sT+Vpm78
zz$hlo5W17v5<ZvEUqVj_y(ILJ@R@}BnzzKz*tUz3drKfXua&oCrf+zJum1~gUkUxB
z|GO7QG6N(Gq^OWESi--f7;%1y$eyuOh~F#>kuX%kFbba0ENV2n+ud{PsNXx9HSg&e
zDPa_OLBawFqa}=yFiFB>31caMDP|;4ghbxT7*8ry@J*1=cQl(cn*G$qOHJy^k+5cT
zIEto7m`d>=VU~nxQn-vacCuzrE-X!+E`cs_^Tv5w{NX)4n$4zO2?tjT^CZlbpuF-1
zN3%j>*qzagaJ38RL>Ed}Bw?k5RT7pi6c$TZCSha~?-FWKSdL*yW7zO9EKihoIjvjE
zze2+7F>Lo3CN2<GlS&dcNZ2T0EzPhhYn_Dk9HjN~7me`U*d|mP=58NKyf}t!lCW8#
z3;6J#u7N~v{25{QF5&JNc6C$YHVQBa*)o`nFUbyMRZ4sbJ0<Lr@Uw(p$b%C0NVp*3
zqJ+H?_DMJ?;gp2^5)M#+NjO3~m2kbP?~sH;m3@DVVT3;z%NA}IW^YVBD&d%f<22j5
znA}WX<+1F9gp{$2?kzMP%bxV~oTiYLa8|-O333x(&o<sZW7({+Os?TOPt)qnzoKoD
z{8TsL$now=626x3y@Vemd_&PFA-9O{I|-*pxGzh%LN#q_a$0}S>BgB?sfH9!e>%oZ
z^ypZ2O+t(1303R(u1mNf;YW%qiJnbOBzxYJaEt23SXRBWppRuAjAMCgr~M?M$vDQw
zu{%^@#xXj`ad##BN(m()DB+%j-z2CKG>Tyf4@eUU5>>x(?01U8S+Nhv#pBr4gIUH!
z@3wJFrbv+JZ#`dtT%42q)i_qNnUDVNR>!gSaeiHbLFqr9*%C|%7NycWq4Ic^cRb4;
z9ZR=xS4|f>k7qk2Z%D!)5?)AnNuC|#c_iV9gr}rHwC^!ldrWLMJ8?{V?=#9@34clW
zlWbevo4G+C`gKQd=c_`_c(!spdqw^l&;F*ePiFxM6?gh(^z^*Ck@fR<_UCw3qMi5E
z2cEZ7@Fmod=><BxquMK@gp86hK9KRDj6yOB%g7@muZ(;$^2_17TMxd?x_>=m$Q|#K
zZ9)MVBYyT?`Z24>1XfVS=Z_LUp1|7Q@fML0DWjN-O}4kFOqOgN(}DhQ@HU^ox=dij
zWlSRZ`(DT>C8L6jiZV7&V5Mc0l~GPc85zHP>MasVythdx)Y5yVy(e!>c6k}6Colq)
zWK@<>T}BN#9FSFHRFzRp#;O_qA$5Eo(Yn)Ow_o#p%mMukMJH%#{y2fvlu=7YZ5cG-
ztP%e1jlCy4UZQl@v7QV;MuLnMGDI0J8K21T$cU2RmeD{)Lm59O`=ezPSSZw&u_xP8
zC~v~$$e6E~r;&`zH3^ee3j1foH|F?Zyq`ERGGb*kmC;Pbo9U@dXp%&Kyo@**x3fIv
z1eRwadzIm<I*~P>$l6R~2TG+kmod6m`eVu4QbsEoJ{f))pOTR$vP2nP8B~fFPGtUl
zzP^()l1RgY!rqCDT%Rl>MaJD$-V7P3GQOY4(qyE|kSDUgC$f?`tnPDP{ycthw~$Gr
za#(8_Su(ohu(Bg!M{(LlMq3#hWNehtPDXnf6J_Mc=pdt`jDa!+$>=1bvy7fHdeK-J
zU1jtjzM9&N95*6%c@87PcIP;1l|Y<YYU-XG)>}p&8K24ME8}Z5_2Gwp$`O*B@q1!F
z8U1Bk&0(L*pk~8a0?`37+DuE9bC~|Qf3S=pw0#*PWelZg%;zsYi4BwSPY#=rCtID9
zJe-_0i6u>9qsVkJ#>yB+lI8r}C$aq(GRDv@Cb4w`Jcrk2RBGrQPrGaAogicFBz9yH
zBRWaOWEsn3ESE7w##9+|Wz3T?O~!N?GiA(@acvTtK{3$AQ))5`Ok)2`VzVhoCbQm?
z*&K4yWJdQrCQN20+j!>7SRiAGjHNPO)<|0@W08!4d$Sf#W^{LAF~`&_J<NYtqYs(*
zp7iz5e=b(YSV=08ZJBqKjMXyM$oOtD+clXD+A8!d;9VWak|(n!x3enx{Oc$;r?B-h
zs!U<GN4Pgp;>b8hfgxjyjIERrG7ii5LdG^3du8mCv7L%PMJ%ndTJTI^J7nyVv0KJY
zn(9qr#uV0f3LASgYZ7(s7iJap-tOU9yI$BY;{YZ8qS)nASah0q+^+b8WX#>Z(?g?g
z=lGAvI4a|$j8hcP2ZYL|K=;Xy(JE8eaT)!l3MVLo)+F2?C(Mx(8w?RnQ_@ie{n|RQ
zoo8Q+@2rfpifMG4>nj--h)?-0<D!g9v~e;x#fgk>DBv@rukv}mmGQ%;{>w5(eJK?G
zK3$9VUXf90XDX$`*HhS?UGd*jK^Pf(L&i;#l%bUNUgvaKX)oa?fz(@+bTWRDLHI`*
zO|(=3cWAi-!oC{52U8e<K6Sl!W&A2bqQs%9MS)S;`@4*XGJcbBU&aH<h!Wm^ze}EW
z*nhA{Ea4BQvcWepa!Hw~tirYAPp2}4QogwNbQPZ_BOs&ORHjl$>=njNWm~4Q@1`<c
zrf-w^2v{;~s=99x@gE!+K}xH~==~TW8Glf*wNSvqBN>k=eKdTg;fai=bOi7$fZdMp
zj51w8nu2SN@TZLDGX9eBf&!1~p@M1(Udeb(HC#bq1%K1V2SmM*@s@H&#{A*MQi{0#
zrJ_;9B~NAlks4I+735J6K@_eJ6ih1W>K^GLe6@HOP&2QB{0h{aNiV0ed|aT&>7)V*
z3MzP3%2ni-v~Sa5N=#!#6cklZRzW!hkqU|_D5(GniYq9gAZZ%wF^yG*%jb>RTf*g<
z#!4w+HA*X(FpUw|7#-8US#%i%Gpf0kO=IO1R8UY+K_!~4gsX8e*Y&e$J%7w!S;6jU
zEO#2KqTm}oFl|Eo;R>#g6nv~8RzVX5)fLoG5UrrTf)Rx?YbvOtpss>i3Ti9#0B};l
zdM-24Mbp+(ASj4ZFtDOaR6rZateENI&EUZ#ad`=9PQ9GwCQD9ZI}gS;P|#4pCki|Y
z8Yw6<oi$c4sG5s>G5dLQ0#VZ$8N6Iv?C9dI7zJIPWe|u{5U-$>f=?ARRnSa9f`S$b
znk%4P53lW_?Yl1|EiB_A;g-a|8R?tOMxKqKW}*VG0>6S}vLUHjD{Md?_x_L3F|M+%
zb-tL}m0c<1pkl7gTVu#yo%W}tE65<P1yCS>Oa-kK>>|4<$WoB4;4=k%6)**x*SpV@
zifXT*je-*u<F9XO+?F%jDd;_&)k0JU1sxT1QqWmJcLhCYM|Aud*Nw|}C5wF$dv0DL
zO`=td(#l5lRM3mYD(ItN<@AKEH9QwPN2R=rvt}nfjY(;olXU!mx1WN~6)aS+NI`!E
z0~AbDkV7^nODY(pV6=k43Wg{creL^&osVL+{1G#hR;(2D;}7v$`b9k$8aG10zp2q9
zDG@3~<sTB4Fwb4AaMTzDV-<{3FrK`8Ek^t%Hsh6Rgk53+O<pOAa;INTQpDYO!jlwC
zRxn$^90gMpOr@w(FjK)a1@}5cO;>QeV-$hsH9S+NGhh3tuS!JioEaH^+&fFbozJ4~
zZHu|sA!@FI`3e?r&O8NMr!yLLwx%a?W@P@4JjX9ZE>^Ha!3OfOf~5+UDOgQmu-?5~
z!3qW6H;P@UfJ`SAk0QFJTs(1BasKh<iE9+BRj`f=5P!V_61zH`9ZOAkxYxUh+@#=3
z1v?aM;WC>ZW^Pr`VV75$&c0A^yIj;Z1^qgt)3IH_%eGAkblp?zUX#R~WZ3p8x$RRT
zvr_gb*sI`Y1-~fRr(nN=<78(A2Nc9Lb01N#xO~(>1&7ETd%S^lc@9&S)r*?6#Y??`
zgWjWL@Tllx3JNrershcnrxaXO@STFwq?LjT3NF&j!T7TZ&M7$0v1!r=;^V(kK;WBT
zJRN^LcU@BOHHDLc%aqp&h!c~R^1m*kSNK3;(kP-AkH=mkLn*kW;70{NkiQh%RB(1;
z0(ITsGyhL)1uZ=>;gdsoZ}S;`;*vBWG4Ieqe03UfmjXt?3(65kxToMZnn8i3;J$(f
z3Idc|3ZD0i`dxvfKvwWjL9T+Dr(!<((rcwfM-Gi^w!r<(kT`{6J3V^(usGvUO!Y@G
zvo;sg6zB>J1@9KRFFlHRktdo2Vk4t$1&)Hp3Z5tkDrom-%pVFKQJtBU5Ta^)CHA|E
z;UjT}_i{D&iC(Esso0VZ3KA#f{dYS1lTSD<HJYZS33q=S^%p7saa6a(3ABZmbQa)y
zc}){4_=n^FXb1=Ya{5NWTMl;Iil8A8{NzF)4+kFv@Zoz-$q8YByaD9noE4jjQL|tG
zg#zJo(8&M_2T&w{_5phSA4LO*44{4h4FZUb%u_6Y;sKNhpu+R~BwR881W+-6N_=c7
zPD>MAn?${Il;NDRoR;IXJdNd3QE%Rs5kxBoP(6Se0aW1vRXMH3DfNED!N&oZT$ngD
zIj3#_wcg9r4xr9^9BNRUWa<SVaE{2Si_@t0GVTDP-{Z<Z#54?`Q2=jSMx+GLIDoP<
zSd#$a0{G;;jE935Qu{q;RwY+_0GG?V5(DrC(0O8FQ%;)&(3}I}Byi9ofR-Gzde8qf
z5I#|oK>2ntr0PJpk^=NHTG;sh_wy%nP_$)4Y5-{*ldaMN$Ozz2QP+s1n9KnF>lNMl
zy?ho2*_^Tf+HlbJeQ!GsE}c*67(k~0mh)!k0J;P)DS*iVbPb?e03*3#-2>>s1%?FB
zlLOLr00+GS=p8^Gjz0_Fa}N4)O3L>O;O}DLQ)hq9d38N9yu0_kgE$x*pdVxl^XV8G
zz_9nd!#No7J}^dcP2vNsM+Yz_00Lt<B`_|4@$c~j4kmJ%!)f(0t|<XbrL*LTJWB(Z
z_J003983>j#(U084rXyWo74Nd<7uaJ1DMBGCp@2n1pzGNV9|U2;sBO#?4A+6)LHg^
z&dwvERs^szfK>qu7!tLe%d8F{c?P3nO#o{-UdQQrPB#RwF@R0)Wwvs#Ie;x3^yUL;
z>=(Sbjnhdp*p~t92!KL&X8;GuiA7z6cTqZX<{nP>a=MRG>fIl}f%lknCi@=>;4s(x
zNB~CzIL7h+Qt~**C*JSt;g;g30yxc^XE=Qlz}W!KaeO|2D*;>$;49v|z$wjtF@Q@P
zf6eJPoPPVh_i_M7CWO=fJK_Y88-T>Sz7OC=05>`Qfz#`pl47?4_>trL0o)GYrvUB-
z@GIvmXcciMfS&{5i?^IA;p3M8B6u{?688f5jW4&RsH=EM7tx>Ug)Q)akNus~hn&(X
zasV&Ogs+oL&QSsgaG(aD1)y_GV+|gw|FdMX+Ab>qI{=6G{=sRG)6jeQ{~7jC0FODx
zv;F@n<g1~@{tVzbUD|0VsNt^wUIeg5#a<OJDOmzwD%z-cP02+?QbkP_{{-+a6<!sk
zRJ@_WMPpSIRPkQ`?*hoH;#0qS(F_)$Vr7Q=LlqyWc(uesoC{5&^Kj;GOFY!|U79<e
ziu@|Jj*Z?igHf}Pioz-)RTNWEL`B5exWm)ZhV6_k$}u%B&0xRHV8vCGQ1N62ql21T
z)7>R$l5}_8nXI&mGAb&msH`GB(_L0Yc@-5nF2|`dD=!VHsA7GY*yx$z;gx2xDk`d~
zs6HnBBQ8@-1u4^OCQF^kT+^fLolE{$1<~p%=FasHsHLK|il!=>si>o(u8JrXZWZHS
zC)MMUBFBP?cIj?nj>~krXy%2U^9wxDD(b8FM1@C10~HNb&=M2Q#x+twVq}WO+<>GW
z=`eXFBg@37XrdxcMXZYDGuf`0?D9-T+LG|0oV0iqWY5VBGMlSNP?4e{RYeOGEmeFt
zCpwAmrIm_AzO_$P{Lc|Yy_`c<%AFZDf=`8CMY0Mq`1QxxV;*M{NK=u{70XnS!9l0T
z*`#n>LpSZEwTdhizvrZ7|9_N}X-gYdu|UN_7421YP%%QqNEIDbbW+hz#pfzItLUQQ
zGZis8X<b!xQ_)jJFTTO<+*UnQ&`xQ;uV%8})7-sP^x?XZlH`}-v)DgT@kINoIM~`v
z)*zYwDh8++sM6h}@U$(W<4>i#DM$vZ5NEOBDrPVA3?Wt1+;j}3sCLH>Q$ZG{CIu%A
z8Kq*his>q5s2HPStcpo0Cey~rp(=h>lXAEY6I4tjk2G|XiHJ#_YAD20`1ytSDLkHu
zGnIRmd^C**Tm1zd@-Mk{rixjliHdi(VyQ_=&QUQ>#e6>VToq(|n)BL}wA0J-kTDZy
zu|+BttN4-}R5x>pilr*ns#vF@T5I<*6|1-(m#bJo$;Fw(Kffy6OX{uWoV%;AM#a%y
zK4Pv{v4JL>#kQ*0sA3ZzK7NsBGdKGd6}@LMaxR7Icy8n`RBThRo$P-$Zt~a3U(8|z
zXzx2z?Bsd3OT}&#Cu6hD&0+^0XA{Uc8@G>`^h0MV9;n!_;sCix#UT|xswh2&9aeEf
z#aAjWkX9;=sW`3TjEdtbPEb{unsSoTwrJ~nv)I#Ftnh4BV>Uabf|~Oq;?Gi?{}g|Y
z0_?-6od;45wM{wC@#79nJ(n^ss<=ckui~0Y_X+Whif>h1=0koi8P#Go>pYuXQE`>>
z{llo3i1<;Qvurk_uJ2X+pyGy#o22t>_HD=1MK?09tElo-CV^Wt?QHgjj;SflKa2{@
zX17)Rq~cCEFmO*r&K$OXK*}#F?ot}gVWdp`IqX-m+nn%JH1IdB25p}-|6RpHs(xD7
zO1UZ|6_2T=sgPADDjun5y{cG1g{s0-VG*-Y3QeM^&{Zs(!)UVx)sRb>CEKNtHEc@x
z*(|6cMB2_wa47yG;t$PXe{h}4y>jK*+?bT7jnHz_Zk2ed(l-I|TE*Wg{#5atsy%t?
zY}{WeUXU?w6`L%^yeS-YuUh=SPcw=CiY${6L(T51QvOl#uZlbxXwEk(-clq}eb%rg
zGX6gmUH9bOe#T2(L_gp%JIAGesDUV1o^ApV&CB`uI2CWk)4<osiL*MT6w**wLvsxY
z8j5Hrs-d0+K|`d5Vj4cyP+dcD4J9;G)G)x8SW-jft|_H8ysH^Cvqw{KP)ftKIgFZR
zG?e9>a-3GsP@V&I4kP((zC@yxG_>_3R@Uh86;#zwO~XeTUd>^|>=e<OC^5^<W#8_|
zCgB<y{T5|rEj~$2PJjE-TbncMa9Wqsy=~JkO-T_oxVUqN&5n%H;MUM*NNS9RjNU14
z;!~nE)Ys5J!`|NRPc+Q$9o0}nBMsdvrVytw=WpBSCG6q7zjaF>nOF_pkD{7z8pkO$
z<2h)`X)_I{KT9QM3k@wbq-aRh&`QIn8WKr>7EN){D;p#GMMR{#k~BomWv50(^;_Zg
zX&7?9o}bfXPDzqDX&TZsbk-0m?arXfgPray4cQ!IYG}>DNi#q3nT9qRI?!5k*$<Zz
z+tT)nXSCN)qhw4w4a9j^B%|SoXaXI%OeaoBnD|{Zbk)#JL%;i;?izZ~ie&R;?me$!
zdXh;s^wuzpb7swDYh&Z-px(YDuOY|4Bm<vo=&xbCjtM#jXc$PLr6aG7K^g{Y_?{G?
zO=%daVV{QmG@FLu8dhsqqhW-Gks4-cn5|)yhS3_PXqc*DjE1oqCTN&QzWyd_9L=v`
zkSXk#%P!7k|DDO2;0QSy9?WG$=CR47vms2<KwU59vX+i;H$HQk27QA-|FoK+VY-GZ
z3zBQjV?<|aAZGDt{_~Bq=V+L#VS$E)8s?GL=CPO@VLqimw0HSdABmmXm$690VhzhR
ztk6J@8!geWRKqe2d-5j?zm+l75SFy|beR`^I^ubJ=1Q&-i4k6<;kU^d1lDR;M}b`;
zdzXgw8a8P7Qo{}n8#UCd=HH}YvxZ7T1W^;VXxOTu(1WnryDw#on#bt)Lc=yP&OElA
z(@l0F;hkFe>2Z3P`CM_|=1+WttF`j)rf{9d_D}$GP_UqX%RF{K!<l*PG*Jx)H5}4#
zSi=zwC&T%kcvQnr^Vl&;z(2DH___-;)p0)g2~K;S_n+dDzS7ww|8gEXtKlmR7qswe
z9p^OAKWEQVcF$*tZ+!HBx{DgV*6@vnOB$M0NTVZWKKoX~WvUD`PlDHa?7O0&?|k;1
z2Etb<$mcTxIZOOg=Cj|`#KYgGT-R_zgGL_Ia8tuA4Zmu*r{PBpx5+zg{Xc8SH_rVN
z?P5MV9!Q+I&3A_kJD*J-l>Q4BcsQTk)sVC(lZ1cM=m7@E8k)RI$`}&)K*K`{-P-;x
z>*Idc@M1nYvqPx5faPjH^Gu1;0+rJg%8>;uph4B}^U~<<3)r*;EIKyR&|qr#SHm09
zUxQ6EXn0AWk>8<I)$j*Z;{_~8`(40@`AEZK4S#BQPF+9vo@jWg;hBcodA(_y1bG2l
zUc^^FBbpvx|4YN`1+4KxMi17WpB!CwA$!GL@Q;SHh3vJ4ziAhf{IT7=L}M2F3yk&b
z6@By+!CNW?OEce52_5GCj}$8!OJHJ5W`qu+AL#gygRxzOKg;>@>Bz66jgGcD3g{@P
zBUVQf9ffoh*7329>N<+(_<6Ojn2zE)it3p6sW+0-z6;sDUlU8{D5;}@j*2><qm+&^
zI?C!;lP96Hj#^v8o2s`UmYU^go{8@AI=b``Zmdn1vdP~#pRZcK^h!D^>!_-unvS@_
zzT@XIs_2-pkaaHWD{xx4*)p@#hn|mg-0@_8t0w-^%vVE4O&y=;XtBdzOGj-TE*()i
z>gcGeL)5WuA*-iD(CN)P?>XB$;H>Y+d2fZuv2}BjsjF8`f?G$ljs`j!>PT+ptFO~<
z2zcKuOQy#QTgGM|UdS5hXsqK=7eR07qyP0}<o8n!dUU*6kQ~G5gyRC?I34jil63fV
zG}X~e$DczyEp_~`kToau$PSB`wvZ+0_-`R=dD`FW*Vg~MZr)1Ar!+adiCo^x@xBiJ
z<73_Q#+IK{(vhJflQz{$NYRn1V{IsLeg}bQ8pr86%HIk%|Lh^OCTG!`zueRWs1T9O
zvvn}eiC)D1v9j9fXs?G0-2fdObad45nU20XI_dbzoz_K1S6XEe>&%<Wx(VIedAjN7
zuA>K;Xclh{XFYZF($QNFM^~LALa#;aa95#^j<IEZzN7vLorHd5hpwK_b(|X!`}(0k
zxIf3#Jkr-QkWK+Qau%_{Iu64-LdOstLv?Ie#D?i8EqRBN&ASTYx(QboF>4W9{zJ-0
z9iw!Nrc;UF8$%1}7^frUdI~kKxAc*~=oY@Wi`Yb(R)?b_sAH0j$vTedIId%gj;UlW
ziU%FjD6|H+r&C-}u&qrly_n6^F^ghmhp<G)Y#noSdPyg7p^mu}+dAeG^FsQ>bs559
z)~BiO<8A&06yg2-^k6E*5=k!7vFf<6m{T&yQXR{5EZ4C@N9QBLY8@-7OUJ!!etIg2
zR++vup<of8=Lg>!9lz%D6>w#f*t|``dL27->?Awr*r;QZj?FrLJR)o(H8u%b^l<)u
zp<^p=rjGUy)05v%CMB8el(QdYf2m_&KA-23uuI2o9nX6TM|AAbv6t+u<8|fOeLD8*
zIH=>0j=*4l*Drks=+u1HxBXg*e=!r9`6$1L`M8$9=VC_k6?=P*>NwJ+7y*iz6FR=t
zaajkwTXd2N#SY<=j?+5M=r~LM)p1eBB^~E=d|t%&m5vKKy5&ijxR|*PW-VXL_AO?g
z{q3buU+egW0)8=D^=sDmi&=x(*^A5iuIRX`L)D?__)f<)9lz<guj6}4A|1DN`Y;VW
zQv|9ZH+0<O{vu2j@)lW1M<4ixHOs^jHmhDX;X71eblfEi>-dESJYM*y+MN0)TuJB^
zyq}(X@9E*<9J7ReS6_HQ(KS-Y)gjToru%=V5;sD4$njTQ1X+hd7NbmD!pL{4T4n2N
z6XYssk^P0pL4vOHx4@`czV`mUDUsd?OCRYmbyzwG&|!0Ma*R7fp+yO6pn`!%Iv(rD
zV<4}ACpw<$SeoDahJtfc?86S8XJjApAf*_uOCRU>U+8$L<8K}R@Ur=e97<E25lR(`
z9k+zhrZ)Ez{-w&9-$(CKtzW_@8R;kFFAo;pQq9rvPDg|RYSQtc0dnyN2B^dxTf)9y
z!pJiD4CFUJ7aK58z(7F*AI%X4jq?;TP?$JN*`nd@A_j^YC}yCz0V>Xs255DP`8Ac(
zLZ`x-lsPYyFi_G6R|aZ6Tf*q!)lvpZ8#qwPTgJeKZk}=m%JOD~SsBD64%xq=fl3Ct
z8t7)AvVkfF5)8C3P}M*+1JMTRlRgGMHXx9a2C5sVVW5_Q+6G-w2;T9rV`d694M>}X
zic49iTHZPa>KdqL;LZAsrx$$nm$JXR3PnB_l9#emmj#!Bv@1fC0m8?B7hZ1>+y;ma
zSjrk0XlS5`fj9$=3^X<nV_@ob|NN!w6N5f0=JOcXy_CKb;Jb0mPq`e+dv7geB$Ins
zh&Ny@Wz7uGS+yyr@n3nH8=yUo?v(y^DQjt<m4QqHtqnXK?f%q2q5&_*t;V^N4EPMB
zl6nUGM)+DT*+7Z`I`<tr>W@nB{V!Xo3iW8_OE<9PwJ(EgCHR((c2iNRx{PHR$fo%p
zC3Z5v474%O!9Yg?ZH;iWv@_7&K&Xko+(BQfWvoE~KOIzQJ^6jJ2MWtO3MA9nKo^S7
zE<%|z8J)Tbqg(m98|XpT^9K6U@Z||T4fH0wj8QE0A`=aYB+!R*J~PnQz&C$;DGuj0
z%j{?1)e&LU=fVI30}Tu}Fv7qfBb;kP3=B0en5?&q#WwQOwd<6-!Y~q8nMIFM(~BF_
z9BE*bfr%7sW8I?-j4?3Iz<2|c>2zv~f8-l$An8!ng>K%qb+f7FOfWFvn4ii*@oZ00
z*<yLidnOy0LNl1*Q{Geq(+uP>k=Mj@12YW#V&JZUnFeMVI7X`&m~CK=fo%r18<=Zg
z9=X84Y6J5PETFJ2<y%g)iuc$t|3U+c3@kRV#K2Mm%P1PR3RL2#BGGjt39MbljxS@R
z+x2B^g#n@~IbBoAx5mI)16z4ikjy#*8x3qSu$~gcK)+qW|4tAzNzGrvRckXjn!ArY
zMKNqIV_)#Gg_g5%7kytE;p(@aa>~FC13L}uGQxFokAc0E$VGg+DPNYexaEw*cJCJU
z@m{(BqmVW)3kMAxGH{r3e5lZ7IUBT`9ic)o%yX1{Jxu8Hy-;JFpPDBOoHX#gfgdQk
z<_V_^d}ZK*fzt-g7&uGAPYcVc`OeYgRnnez5-8x$Qy}#TgNsJ^On1q^*9NFobiUx7
zxtx7Ns~EUK_FvAvrHwCV1g`StcLuI;K&KCKD_t~_=A`g-a>O*@#B%nNfg6+*25uQR
z+Fl^$Z391&`&1vfo@mFlVdfnQ&R>OuT;XQ}_m;C6FA{$xVBk3wC<DJ4xNpEV;E+#8
z2oDTAG>}Wtdqeo0)5MzIp~D2pfNsE`eHl<lc&-pIpc>G~U)Q|Ue7P~}*>bkAg|Am(
zpGiUP$+ir<T<qStCF{$vu@uQK0z%Nh+ee9ysnk>Uas0zK!XGrl684BUi>_c#DON8D
ze{%Ya(sqP^uLa`t>`{zf2YzAT=h1F@1oRC}PH9CMT@$Y<j7{Nh1H`A^e|Ym>0}qC}
zFHCY%_3&I5-WvFiqQw9`uo_|F0}~DJhyR+RE;>FmLA3ZtA)kr-geg-@6fjZH#K$J8
zn<!+Wu!%Az%9<!*qNs@yCQ6!!G_kC|hoU8al%GH`6Hz1G#Z5eE=#8!7r<XWj;*!f(
z+Qhi(5v5G}j9t9dz)PG)E7+9$Ey|gwVxp=E!sSg=Fj3J&CEiS3!77`er_(ntNnSb5
z|Je%m*I0iw6CatNH!P-i^nTq#AaJI$P{TxvPC`8sf{B_YYMH2QB4-6#r3-aU{C+dG
zj){}!1Ohet3-@~p^zwp8dYW*XaG4k}+)W3)c^7S>z8U^&u91lbCdk@j1`8L4L^d?h
znt7<{-zPLS@d=k%wSrZQh+Xq*{#X-DOtdAfOvIUpH{mnkH__AttLklGqNRyu96M{1
zo0~}Bm>%t;URt!3iBC-=ns|3J<wRnZ*F=(uh&uiS!`un8Vu|iu!TRM(NGAI~3}2X~
znMmO{l~ZEU`ylBiGE8KWo;10M+!c%@vq;tU{%jM3udHCg%4CW|x^``2f+%&hH_^ew
zK$GsApreUSCc2yGVWP8%p7dsYOJ7$LT{x!Zo=fQ;O>uWKL45j~tEY)xCO$XO-$ZYk
z(8R=1?!G3{zxC6(=`%BYJ^5k<E4-2szaQ_Vy$m30`@A2oWJxO-H3gq{u!$G_J;O{4
zH!*}`Y7Qlf_4Vu+=pJEWBt?!Hen)cjQU53tV@xbTF?t1c^n2!5a`)u0`^xQ%e{Oll
zbN&P~{Py?Mk)9kAlT1veh@v<&@wJJmCZ?HKWn#4%zS^H|VwQ>79M9l%CZ`vAdFGgy
zOUs#9YGR&=`6d>bSWIElR~WXEy_hO2FtL!P(uISg-PG(b+}&_mINh#Hb=MyfyUfIL
z6Ps7ExhvVQ16eCftTb_IYZkpZvg@!w{52-ln%He(kBN0A)|0S_EhaXY*htxT)VImR
z*_CWahM(R^C-C!1_IM@RYT^qM+fDkIJAN(aqo*Z{tYX{92s!S)^|I-`fEh(&cbM2o
z8{C*hKX~FU>)mCd-YV97729iKpNZ2Z&Y0M5;(&=GCXP~$RP-J+=~-+4A&P`mY|AEr
z@L?15@H2s9CXSPXR<Tni{<`TM_LDC=kN*ValnDZKL|pY#Z=ap<XUSsI{pV?*iF3RZ
zP&Jshid~?6%}BmTG1Jvg;B+PbzE$*_lm2f^d}~57A)B~t;);oTCVn$<)x>uuZkV`f
z;u`T+u^&uaH&L#0%=ad${px!((6eH>pI-EERxv8Aw@my<S!v=I6SqzLM0JDeTN5wc
zrntSsNAzqDPx004zk9+tMYv0LBg?NB=8kZa%jh6{pJJe$Cu%jzrFllXACOJB3^5;?
zs8KY053Tmwm@lphiiv=US0-MYP)%qiLMHw&p_?!$yeGOHlb&~iWx^&kzKJjPFp}tX
zDYEMrH{qm0u|X4r<#aFc9}ynverDoN6OXBEk}1-?Pfg4m>Lxyk6`t&VPG&dpl8Vwm
z_Y3mZHsQoj4@KSPTVBHNrn;NgjQiWfKPEo3!q-UuQeF>tzculn3Hk|_H=OR9>ZTW#
zoedH1sJvL=pzV3Xdvcol0}IW!3xQoi9t(Lb{GRQ}XJJD-&)7n-=Z_1Q*9rwK6tdui
z5DcNPg(4QRgJ3}vwGe6Hos9?w#Vi!J@E<iTl(10J!cq&%EWko33vDg5vryVX84C?9
zG_p|ELOBa{E!4A6-a-WnA6uwyp`wL}L7|F;sun6)psxm3w(vM4prBaor7)m}Sk1ym
z76|P6NBE(?>vlPD@?f!sg_;&UdnVMjP|HHs<L;+ziq-1ox>Z^{b;)z!xlqT#+rHxF
z-Y&s{XoWvB-N1s&LX?G==R&jvw}lDk-Spw<OGCu6uBi4AVtorKtJ$+ou93+iHR;3C
zjV*j)p{0dZ7Cbc2LcE2hWSM`3SPM-oTrZP;{gE*IUm?yypVh2>&sb}N=kX_EGqSLS
zPMK*1+ZI!%<xQ~A!a{@3MB+?b%`)nVpIS(?(3<vZ!D}IjmbQ>;!AI8a<?>rdw(wVD
zvH3<<C5ZHy@;?Q!<};ySDKX6g(R2%=+lrwSF@raWlWF1SVj_WT3yh{p6_;j;%Z9qz
zSXeQ*<kv5R6}7~ls)_9_bg(eYq91sqd)Me>g};v7m(+MHbhgmVLU#*Y$lVphu4MMt
z!sN%o@(N-P3*QZQ^|H|0LQf0dgoNjR33Ez`eJtD_6hYSbj9gGuocFIFJr7%>pM}rK
zt#!oy77CXW2XOqQS#lt65@!(U-&GuJVaR*VP%>{xk-A1$7-?a;g&7t`kr)M7lsLu0
z7z<-*9t$}Z2G$eDSr|_qw6I@{y3<_DeJQjbDSm(0o$^GO#5XmWTzuSpCrQlw)=l8`
z7p|!m;!26r_`XISbf=dUXIhwLVV;Hgln6m#wuQMCo_2`1*v&PELONc2)=9k8K-^SL
zTwr0Lg~b%%tC?$m1g)~j!nG$tpZGjPY3vdT6@MCm<z#S+em5Q$Ev%%Zv#^%})xv5E
zYb<<eVTXma7S?eiZzi!%#r2eZ7B+G`Elph7-Bln*-1~>Hi5?fv5j!*zw^-O};R_4f
zENrKRTIH#_)wT1WyVg{31S{sAES8NHck(=PN{B<=3A-$i+Pf|6u@GHGygx;3^p8Mv
zzl8%-E-aj|aL~db3r8uo-w7>W2)9PM4qHg5As*qT$oE{J5E?YJ_%REAAIo!aHM4!<
zNeibfoFUGau2UAwZsM^a5ofLNH^ggH7SCCr4}y=ljq?`1vM{xa_(gS*zC=GSR=i~4
zYYUnMor1^0w-)YN_|?K?3s)@MuyE7DRf;hS-&^>BJfb$McF0YfYZeH2zI9)S7q9aT
z5}>2VV}X+NmW7`zOgiiSk>Ze+fOzm_n4jlkksNV{GJ@}g@GlmA8RjBz&%$q{u!UUS
zHLr@e><{6-g$Gmyc@~`MEw1e3Y84X5t&#=BLV#v&>yj<}*hyU6OYE5<7Q6|ShLjao
zG!?5wiUyg&!ZQnhTCjLgvZ+K++*TKpI~EJ_g7XJG_HQA?F=-gv%k|j86ACs9y|#J=
zIw_B$qo!3BGa^O*Q(?pw&vQzDva^MMEcDM3Us!l);gtmna%#RN1KtiFbMlCE>}@Rm
zYhnEtt|^V8-cY@IA)K=#3BM%+Mnw^bu<?P7X*Q<Y_|Qfk8?9`7Y9p_Wd^RfEsA40(
zjRH1`*(h$KppCi1lZx2k0$a!qPgvLnd11ww_$#YfQ5%sqIvz-*f;_xt1kn;UO4`V7
zB9c68l(JFIMtK{hZEP7Xma$RRMov31J~qAbbD`3AEvT53JMXSwqoR$6vC)-m+)WW@
zrHcnY5bx!P9n-~0dpuQbRI^dvMgtok*^ml~b#2tM@v)8Sq<K)NVWYN<Heb03*W{d9
zHa`0{+^l1VH$HfzNK~*P+K95@wo!CZahHt;JzYl~fzAR&hq~?!jQDrFNYNW@gXoqh
zv7wDdHk#Oov(ebbCpKbjEPE+<Y_w}%EQU;!UwrwQI60p<bhAtPSfs9(1;uz9O>H!{
zkzj+)TwNxMlS+%tY`pHAMxfIhp@of+Rm7Gy2wSy9!j*c7i8j18y4vVwBgux3Y-rQR
zT;R8nY$M%9hK&>(sWvFD(`*dy7(u4n8!SomZgK=MX|tKM!A4@1jn>=<+kPoY%-Inl
zmE|@z+R}=4_zc_5#?5Zx=3rz88|^u!X0xhdM;mvZ3Ac-ik%IVNq}bU;7mA0nVf=YH
zvAc~PHipsCHhS9VWuu>s&uzr~E%dh0hYU_}Rav}r6H_`yjBty6Z4jkn|4Da$8v|?%
zAr}kcKpTT>47Ty2j+i+-t@ALk@gD+Znfyt@&OM&-TU|rBSY8T#GL((6HpY<)uIC>`
z#u*`w;occdy0xdGB)+Q~k;=sJHYV7ZWMeXIkV3kHYfX1C$Htc)(YMC)rkfab#6w1y
zVq>ZevN_esrQ@>3HWbe%iZg7?q#&{Jy-hzVg4s59+t_1c4n@9=RW^OD2=i>rx3R>=
zQX30wl-OUgV?S}RjfFNA*`V|OTPl)o1p=!Fy3$?>%WN#SvBCyrMCCZKSep1>12JEH
z@j{zoD{b5#ByRf5wZ_I;8(-MiW@8-*Hx)P7*l1&YXV-elg0ksLhq>soWRs19?MiOu
z4)yK!6qn<+*w{+BDaSonP48O9ZMSjntmoicVJGd^#ts`-ucU-}iiZb_sc|ClcaiIx
zL{qTsr7X5_#>QD2`)wSsan!~!n%~AD8%M~7PUK-K3vUEEW;V<-c8o}YK_S$no_L&O
zo+q3n@4LjcABZPNbGL|e@f7C}^E3x^)p5?oc^j8)T(R+$jSDv9b*^u0T(oigwQ$MC
z*Azde+)IXtv1?sK>3CLN{FaM--6?HDMe!=7d8cCEk@sWs(CU95b6@G_IyTbv1DV=}
zO(|gG2E{Fv0vcuGmW?0DVm5xYaoYx+Xztkf*~U*cx_1%3?co|d%=HV^u0_S0WET5-
zHKQv!xuST_#&1*sZ2V3h(VGozB)0p~b>Bv_CL-a|1;k(5h!1V#+Ne1sYy_emUI>bf
z0567`4V8kVy^CrE<<#O~;<Ud7-G*Vq<j%4vPS&u`{}Vp`F#6r3=sIgy&_;-6Yaza}
z@rR9*+g;CW{AuHnjmI{~2v2OB^NLSx^j+)f_Ecy!z}0LGi^?z3g~4+he^EL8#{I&^
zOB-W)iQ0ccNml~V+jJJN@wbhC_~ifEc*6l(!`@Ov4G{mMB354{u;Q^m=a(^OJs&vu
z&;fJM#z7tjc^yR3WxNBitUDj41s!Y%#pHKTfCIwA*RZTjv4tEIb})Ahqoas}q8yKB
zZfX{HP{Ki72lX7>dXiewK^X^S9UK{&2u@2msJ0-!G{^t!POo`8zMO-K4k|f#zB#r$
zrxhHyX2nsnGFM~Ug7|l{<En66mD6gRe#Gg=oL1+whJ%_M)N)XV1KLY%2VbsX1n7A1
zrno?S2T2Zmw2Ff$2hAKbci?sq?VyQ+8KIbSYuHa~7zx*RQ2lml0|yQHY>hZ={C?(7
z9C$d6dC!R@d(KIvh2k6p*RZ13KaF?Ll=s$&E=l|Z2l&y`(m^W@T5vjOLHwr<5*>KS
z5o^P${yDJqiv_J;Oi8EajahMi2gwf79b}N9*0K}_TDm8VR=*XW$|()mKRdi`ri0cF
zvWc!`jn}f=#jUd(yvWmn4suY+utbt+>!6*3kAnC(i1rRTIC$XTcLyCEbaJrT!5Rmh
z9dvOphdk?`D+w1*9`8_PKsN{79rSR})4@OogB<j7(Az=6kmS!D^l|W+gT4+vD3QE0
zIZB@)+A&f6*0O#M2)tYvZn{#V`aARmLlB^&M5EZj4u&`w?qGz2X=_>Bz1Sb`B@A^i
z%mHCKN_6*)bTG=nSk4*E=@?F%%oqDr4i9<sSR^`*GnGHwXME8U9ZV;0I>>P_$-(Ef
z(<eKa;()s5-%VKfRwOW$R^*%wYuSP1?3rZbE6rB-h$b5I)<4U^YzG9snj;dO=U~2r
zr4D@(0t*~0bg+cR{u;Z8j~dlIJW6`(U+my=L^1*DBF=ILD;%tJu*#v^fa2=qB2nTW
z^+plBRx6#rS_kVK9CdKaq3;dFuXnJ~!6wpwS?mTr`EDd{cCdxA#=(wF;o(~y>~yfp
z!P*z%7Y?>@u$|K{Io-kO-KcaD*zI7CgM*~)TDF&>y>;?_j;XnigTH2rgb#50KW@<U
z5N96dloX~eT9MX0?%)LFwS(`DiYFbMa&VR7(<I5kB~H&eIM2a3PDz;J=PL&nc=IBs
zTN@;ko2aYzb@$f}zTwPoIlav36;4T@#qSB<aeU3e_hg@A;tvjPyzjlvLFXFjH#rzx
zBbkQ$=-@VQ{^Z~n2X`IZc`yGn2e;R<U*B`?JGkc{H6?pzSKn_`*;2D<hEn;$^E`Br
z>)@S(h#({fvV*r2$!nS7AmHG!gC`DDN=8a{2UVXo*Bvyjo=k`Bz~I<?&#@eQu_*R`
zy^e!MlUfrFg%uP2aPWvysX;1Xau(624xTx9!+Za9@XrkKrGr;g8#(7M%4i3R&xIxF
zm{LCZwS)3oL^}TE;BQX<;q;C-iui|e-6Tm)%v~=2M-?wMyY+JMgCIT(qFfN=gUA!4
zOK21hqDT;}lA`hjQ80)?L0n6X${$1l4hRo_CjPufEWb#s@!T`@j94^?l1s%BM1zRr
zxL6RyX|{EY_*QBZ(V=HW1W_i4`zOUxK~R&9(tH&H#4O9ZXpa?w7_%&K=|Zt;5T{e3
zDh5%B#2$;4d9w<q#J_gkPcqel7&K2LP(6qmLBt2qG>Do()C!_e5RHSVekHkf5cPr(
zg7_fWRVRqL91xz_+O_&+k{E<5h>y}-#A%f5ihAGc<{&zV`W!R}qG1qK*D-qJk|bl+
zu}?TZCWu%*+{2r#*Rg)<Sd$>)c$3yD^(u+vPYzCM7DV$Pd_nkwNC=_@7f9q(SP;>Y
z_87#pb?j5lIkt`wUcZicgGdVE#yUom7@Q^tkrG5^5Uok`S4pW{tMnk!_`sWk!^>p^
z@gEnius%F6i+9;aBMFmAZGvb^mI<Lo2<@o&2XQ2bqd{~CqGOQ$xC4ERzEcpLgP0S<
z+#tFH(UqJM#MmIZ1<^f-;X#ZDqDK%tgXj~)XSAbYvF`P(UiqY6LG%t{a;xZxEu)F{
z4Wb{pJBVQv8yno82Ql@AYXHangSc`yftbV@$oYeU7|g*CPPgn$rmo4~mq=XCT#3<N
z6i*r%#4iEYC{m_aY^U{%hTrMq9v#F}N2q@<d0Y_VX&{*~hzUg3Gvep)-ihQ9HG9_h
z%t@ph=j^MMwCQNflpy|zNFy*kh#5h;70hM_F*Ar?e~L}J=$ggBsE4s-5~Hd4U~e)_
zI4_9#L2L?Qa}W!HSQx~rAXW#lD2T<>Oo&|(#F8MCsh*`lEaPBsp4h|d*>b*avky{U
zboWtnCHZJ$Oz*^|SJt!5=kxrwo~<DTf_So?tqWp95F05CH?Z}bZcmJ+rT2UqeRxXi
zPush<1hF-Uok8ph;ylZ^)S~qlL2L_Rdk|j+u_FkQDO(_|#s;>dotu<DQY`jfci(PO
z`)JHwPWO<zXSAkf<ty$czo%TD+PcS>wEaOG2x8@B_rV|z1@WUl_HYoRs=A32w}Daf
zSP;j9xD&+BL7WKUWDs9bv`|Vma-ZV#ET^YAJ;Uj!zw=Y?ISQmk?(>v}joj@I<h>Zg
zr66w65<z^;#lEB35~P=N@of;7DV)0Jxk`I%<i0{d!od%jF*E}WZ@qzi|340&lbXFU
zVy^Q^ZcwmoU^h9<*}#4Z#MjS=xy`$N;*@3}eSQhzZV-Qy>&d@C+zY}8!VKa!DnV4?
zgOF*D^yXI(xg7i+#6xn&wQwo>j%8C<!WJ=lfmq{-s05*LnLrRKO(?|bPsFZS*~>Pt
z_;sRA_FOI&_{F_%1GC8cK|Bk>4#Ei{yKPc1h_fri5XWMx<Uja4k2rnIDJ}Gb16IA{
zpFupQBQdJS4)L!bUIg(vh`pVoFK=KScZ<$(@g;A*q7+^u5`TZ4WO)PoH;6Y>bwel{
z!dr@#Jjox1kSBz!m+}A6?s_G^3nC%}y6pKNgdYZEXLX7unm2@1JH>n<<PV{@?0&U@
z6$qhVC~TABAr#`EnBy)+{{`T<2&dFrG=xZwledS@N>rBD91DXIA(VVC0}e`YTKc_k
zxe&^SaO0f#5iRPEt`I`y5WYJh(&?aL2$e!m>Zad(@_%Q#Dj_886034rErf>G-PEM9
zABXVAS+T`wv1SOhLYNc6+z@JqP$z^|A$%G_-4N=9;0Ylngzu9Rg%BEWpky}{LvV$#
zu~|w~2yQY+mH6loUSy=!r=_!-Vk4VcC7y=R(U5Z*apA@sf5PcG)-*N*qBKbYpSDQ|
zaeS)y5SoV2jEf1OjJlbrG;?!4KTYnQU!p|_#Ba%m6G#lf8^VwfhSDBG@P)uaXcL0C
zk@-Uyu`W&;Ry>(DwUMQ8n#w6P(?Uppk25&P452j#S?~GTA+)F@k}&-l+ctzAA@mG|
z@0+#bw0#I2IOxb}Cr&$a+J)1uoOa`sMs??)6Q8XY$9*VfIH22lBtXY!A@t>(ew=>J
zDe?PrFo4s6Aq;xYAIt&W?7j4;IEf7lVL0uYj9E&Y5yH$6MuspdgwdQs%*i2);dtzO
z&bSc9b3EZaXJQCB@9`vZ#AAU5PI=Fn8p5>qcsd6+KMOBCD}>qawIXo1UHEVRc_GXX
z;XnunLs$^P!VuPlus%e;b&18~uZ0n7L!euKo$|Q~6ktn2SQ^5z5SE8fv|h|g%B&Dp
zP)Ik9>AR6Bp=QK<SvO{N2y4i9PgDQbBs!x<NqT#01BF=#J45)lO&)qDXj2GVX|_u4
z%^{quo{+PVZ3%@x(nKGH`67gEA#4xfOHyfS$sHkF8xcp8FabJNZ)CedAgy+Xu!rJv
zboAa3x-IbRBj)I6YVPOFy&D-Z57A~R0cnyDj)ZVDgexIj<)%3H|7f}nC@G3=O-Azi
zku#EM*jYg69av;Ur<q}4fu+egh=H7Q&Vr&S0+MsiQ818E6ayv@1QZ06?FpT`SJd})
zzw@6{=bl?NHPux&Rj!+Z6a0D(F07Z2Q{&zW-&!x9%E3pJ-W+_w`rK=sqh*}V!I>Pm
z$u1q9WH9A;zVuIX@L3LqF3oc>2al#@FM7S<c%k9h9Gs&`8QJhW*(x;T+R+8lFqB5T
zyDD5_u}R^{@P_91jn-6cv_NRI{Dt(Zv{X5Gkb^&RFt2uiEn?636|F}OzRtln{$I$Z
zpK|c6kF$jDeB?T<&Hqw<@R1++(RK})f%$*-TX!P|H*@fdkKf9{z5j9lb`E~^@jL%Z
zxtoJ(tvq>P_$>#&`|0=p_v?F2^FL%Wb5N3tu2SGvdj6%^=_&k4A=#9N*LlqKa^42f
z98$PUV0esgQ$xu?EQed1NRa6YHYiBuK&4bD=%_%;fu4h!3Ti1ZXgYFGP(dLDRu1eO
z<WZ1UfkV4dGWG8qJSF9GQ1(jt&f~#c%Fm`|4cB&QF*Wo+Nc$%T|FX7q(*Gl~YGqWc
zmYQ8BmC+B|XZ&&{J-A=Wr(j>%)cgv@RnI7(Ky8plq_Bc#6qHp^PC*d`MHN87%(|(?
z6cksGqTtuMX(betR4^$RE~Q{^Ff7zdBV_c04bn^X(n@U4d{)7wV3;`nSXzNwF13tb
z2$Av%Uj972vVtlKDk!L^ppt@`_0!7FDlp=;)HM$q5jIQ7sH&ivg6awuk85j83(Z*;
zs-fUH1w>w{n@Y&Q+SXQ3N5KmUS}Ullpq_%~6*N;&UqJ%}sR{xLHl7Fy3L3FWQ$r2?
z=<X}&SDK_Toi#~Q(3tJLl76Rt+J-+Hb$ULniGrqn%72@s={qD6wz-0*HBy5LS||_|
zr2B1Q3h~=tq_k9!q2T|Ce>WIzrGS4SBN}Cfzj`YWQt+aJh=QnsL2CkS*n9<H1uywg
zrmzl@g0>{-(#-l5G8S*iymlhU&~a+09shM9y}g3-Q$m?!(}na38{~c$(yyh5J197G
z(L*{Z=uBQHn5-aMK^Fx>6}+lIR?t;JUj_XXbW_k>K~Dv}6!cK=-lg>U)l)|_N_(eU
zE8@Ks^dUQr1<%w<Wq2|$wQ7^JB7;-=D;U5^vb_u2zBV;9tZv#s3hJ>gO=6AOH%q%#
zDRr=dAqrkm@clkXv|65-naRZ06uhorgo2R@uGdL@L%}cw&1<Dz8IQ@+Lc<k&oHyf_
zvZ))3rjAlDTETZ0(kCbwqu@zq=AEgb@e0PWrG9;WN=^HGa4IXt^qkbR^hBeH3M!|k
zwW%4HqF}0mB?{hDFipX93WkEY3TBWs6obRkb5~P78<09n!E6ONRWgVt;-MPN(umAc
zFkit!1&b80<hQG(ZfcsgfMV0X)spF<x2tC?rjWmuI`dL`@#Q61=cNjkDOjoC0|jp>
zcw4~=zZIvB2A3;%hjn<|i2rKcHvF#N(v@XXDVY}rwtr8-`+m;b(?V?ZDusux!>bjn
zQE>mbL>7F=mX^&}tKc`S5s_O1Qh%wJw$6_d*{EO>1y8|03N|a)qTrf>uN7=nuuZ{7
z3QjB7u3(3PgA@izoq}D|M=G^~^)*v>lkauY1|JK)+dOTL0>ab-(#Nw3?5Bj(OPx_R
z^?)zNtSy!Fu!18Bjw?8!;3ze{e%jPyK|cFq)=N94AlM+4$jhl|Cl$n+rkzsoU`lB2
zs7_4z=W_ZPwo$=l1y>Y&qTo}CtAY!x_T}`?6r80ItDnZe(q=wwdCrd#8Cg5E?6lBD
z1^cU{4zHDZNkLYnR1)fQ1z#w*N|9dDw(QlE27fh*56-AQsMVJ~C8y-i_=?qTlJ-H9
zv~LuA%bF<ogHl9cQ}By|Ta-oxKPdP~!OtYuqP9O0UtN-j*d~+4<Oa1^NV`dP56Qeg
z&Pyc1l-mm0zu)DKg1c0rMrpq)kUk3j{b%SN*`eUs1DTZY)l)<IVd;0W&sT~ni!=K+
zPHR;?<Dr5_3KG-~1&<Z{NrP}As3`c0QcY<*9$Z^FBZoRTzHO*N#-OUHFEvhESvM`_
zXN!|iwbCY5NbOxARi*K#omXHh&=pM7S{gKK@0TQUzj<1bq8TR1)g+B_;?Srn_?wpM
zna(Yx@Mq7ZvSPWksNLHWVIq-#75qng7(=rd^2CrghVn5~h#_AL`C}*^Lx~s)#85DX
zXJT~oho<#Y3&lViUN{D7=y2b{GullGH>?>b8pH19X$-}Dq~pc(k};Hu;n^5?i-|Vj
z^S>IU#Bl!QFhky^X{BSZ1_aB*P&S4yD`#AqRiM>^w$!F_F$8J_Mx~{-nI5VbL!}t%
z#ZW(n$}v=lp;ipFW2hQKwHRu|=<XKP{c<iB33cz4-m*$Y*D4tkj|WMOnlTWb7??^p
z^23aghg0gr(4%dbp>7OQ>ZS234Ps!;8^w?sgAnuRIqhNVhA|NGg{VLbX<p6IG{#NI
zw8lQ%%;%)Kwr6ztZ=sUqQ#Z^Hy&4WTk3ozfJBBVXq{ryW7SR~m#n2*#mNA54crk{I
z7+S@!t8JJ)Z>LzJ7h*6fr?!sqG=8I|+oY_^=`#XpZDM$dH@;$M8^iXuGwV(dy&OY0
zhCZ95aDmn}w@5@H<WBw6bIsEp49v_NoB2s<T4oIGeIjJVJX6!bhm}qR_bmuLzd`O8
z!{nuzonq)5!^382?6clF9;}xWl4Ix^L;n~C#Lz8<?lJV{hsdw4?R&(~Glnh6mhUQ!
z812Qx$0@I_&1|+H^jU+nzA?;-HR=~bqtvw7&vaG?w5K%~7{j0#UW@TDScsoy4vyiK
z7>33$B*rKBQfr(D&a0IAD!+0(_{PQba|_yjcrl&Gi;qKZ#4s!dHzQQwRIt$E%vNb>
zyQ|Y1AVyK@;wTcw=orRO4!Z>Q$1s+q#jrevcVZYH!-N=S#4wYLi(yg>hgSurY>-dB
znl?FxseaT;iSe{*%jgDqnx8WLf9ZoZ$g^UYO}cH6-;7~S40B_cAH#weE=Jp??Cdbl
zM^<c*8C@7d$@kJ0$FL6Kz76ss=6p46+{u<pVz|VTvor2&ke9}=EQYt(@Xi@;v!2(p
zy6s9QPFQ@S{B8^@V%QkNrWoFf;r$rava}dhvK3#ZucjQPxBVc7RWZbyWi;s$D77)8
z@kV(~3?EWXwx@6F5m85{9UGUno?=#|^D7(Wzlw+({QtJ!D6@pk<QMfWhCMNCC0RDg
z+bBXl!VBFyV&H#w#rU>laOFmMXAFln%GJt>$D3sgN(=Er%Xg;lrF@o4-xuRetM-HB
zz?F^iffx=lCn*-g^%%a7;YbWeW4IQ>*DNrG<1t(ym0~y%<K-IpWDKWbsQ5yMySMV3
zU)JHH7*3NQX^na=?Q$i(5s@=7eC($X|0IS_|A&7T!`c7g=X~UR3@4j-e<8dSgBmH3
zvN7$lpLivP&to{?|MZ2Q!aP@f<jWZM+`T_KtW1+e-}v}IxfJnl|CjSSA1PHn^M@FI
zBthbyX#Et!&oTTK!|yTta4XLZU*7J<P<oSmleUgZy-B|1Co=PGANkdXcYHW-M%q0e
z>DsVS?b4a|V|YM5#*m2Na-_r`G2C9*=`U)ZpNAzpisAA9@IQSddy~xcCo$ysQN@Qb
zA3nL2hd(hSDG7cGan(n(81(<8u-YbtIR-lhhsNA*m+SxfuMcy5__q(A`tTngvNZDR
zzyINR;uz*vhUxj@$j@@(C>Tc}A2RXNhK&fbTZ#YwN5Z0U6pQ28I1oqiI1=RpDLyO_
zM@b(k<-?Ktv-s1bP4YXNWFn>GC=*A=I6B2qHjZ*}F6`swILgOSA&zEoG>@ZV9F^h_
z;%FEL=S`L4s2NACII6^XPd}@wpIFU@)qPmQhtK(t`KMdr;f<l+h6HNIQO8fL8^?oZ
zg9kUs{Iy;j_5H*KK1@_9%)~}<q{h)Cj{SMk7!Abn<JWo8;`rSEOJhFM+ARJ3(;@!U
z)X($04|@zrXMQn`^f+3@@j@Jz^P~miXc<RF94ppJEqpj^WZJ5h>EebE1M${zgxGL1
zb7*?{YqQf{Wb<E<em6zpZQ?kvHj7A~Nm4kDXdLb0=yoO~#c}_8v27fuY%$`)Icu9S
ztZ0{=8Atm#I>hnkbm_NEa+Y7QW%b&Zxff)#bDRe_(L0Vlaa?TMxeH5+V_Am`IgYtg
zq^@xcnjyV4RXX)yGk25RJ&qo6^dx<nv}HAV#laHTK*9_CLw)0DF;ZfBzc~8G(J0(`
zfd8#QaSV(j-v?5GVG<!3#J|51$52+u#9t;}jpMaAYG`;)!|QRpK|&?bI*DO%3}<~3
z=$^ocI7Y_tOB}c27)9eB$Hq7|#W5z1v2nZ^$I>{)#W6mPIjlKla)3A?j;V1>i(?{*
zwn&&1$7D+5)5x@Gfhlq9nJnfV5iGS?o*qZ$&Wu@c&#A}e`NE7iX2wB;q5phgb{u@8
zxImQ@!g+Dbk7IEhOX8r*lH%P03n+?vgoTVgkr-V>u9fqU#r36g%jk$Luwa6?ERMJ0
z_#lo|ENVx_+i@(9;~g@toA_(q(7O}>DpB_+@9exsHvJf0Nm-J`_kFzaW|=8Jo{rpp
zLtGulnm9hB%r6tBj0n;%L;sz^i5(eh<5(BR>+6J@Z?<E~`ZzX_{yPOWnQ(I)TjDqy
z$GJGR#<4AqBXJy!V|yGs$Q@E9j-7Edo*dXi_GOE^;^1*{W1P5~bsjC~e8Ib)xHk^M
zeLkdP)`M~Iq<6pZ0eXx&FfDM1g-i<^jzj4z5;+#f@i@-J@iB{v<76B&#)&K{TqS@0
zSH)9td=&R?f1Hj(FOx!qA#=0*NgPgZvGVZ1GyTNolY^he@fpQ?Y9QY@?~25EQaFxl
zaePfF<=5l5Le+~SHdq|9Fi8Izm*aTf4p-VI(0#@ianJ`)cA?N!@^Mv!;Y%O+io=E?
zAx6K6<J&mCi{pA6wWo-D!kTCJ$^Gx+_<=TObl@hnJC2`ddB&AU9~1bQ+A%9|BaXs7
zqkG$A6EaFT<VC5iD&3})pco`jDS<nbqB#Cz1roSN?Vx>&BN@l<R8LBK9Dl`eenQ|u
z9FOAYJS6RpxaW`cVH|Y-N}jSNyngtY25?x)u+8$5ICi}u#^Mm=Kn}IIM36!8kwY_r
zaT0t=;EjFx33=sKjl+t=jzc41<1i>xlLBTOX_JCPekmO#k~2K$uu)S2PkrddL7%p{
zKK$E<pN<bOg_rOCiQ`{3gb$u<_HH`oO(0(a#S<uzK>h>@B=AfEMG{cDi$4q(*USwR
zOz`lzSSW$QK0=(n9(eaWwU-#~Ar@s~0zbzkhF8{xN+wV$0VGg5fw#5`yl9Y;@Era=
zo50ZdLEbpy#f>rv@S05dgm)#OYywTj20u>^mP^3el)k$}dW8h&U5h@;2rDO0C4uw=
zf(cYjpjrYA5)cxoo<NNRY9~-9!Mha#)$O?i-^hy8On|p_7;5=Qux+Qh2~X6e!NUH*
z!o1ZT>m{&uvs^!ci3g$smvw5GK%)ejCh&X$sbq1NKw1Kk6$0xS;I}@L_-;ny1n66>
zi4W&Z75Q|@-Z8-nGc%ecFnXdmxscR60YWi>*Cq#uv`C;O3rQfFKt=+s5_l<rmlJp)
z;Tf)ChV)_rtrK{<R0t(7?LC2^Lb}u@;oaBxY_m*wrKiYeYQhOjUmKDV=yX5K(3U*v
z79i3tfy@N566lyf?#RG6S$tuu&_00<2`m^EINnzrP$gy1JRzmK*eQX|31la5X>6e8
zHAzmOi;pw<(zlsR>6$=ur!^I%M*=+)_%?y>66lpc?*!gU;Qa*pB+xg3sjO!L{SxTU
zHYV^oIW;vfAb}wXyu!wYq=6*kBymszgIPj>&<A5hM%j>|3H;JqB(H016JF)tcM3$_
zNMIOAm%td3XrC}VfsqN%2jvLz_nyS}ZFv2V_o_xwY;KnzGM0k$C_I5I^O120<h&z{
z_aW0KCBS<z`G;mrPM~t3lGKGMr0pm#g)hcWPhds@3lmtBz{~_@B``06`Q*;<z}w$-
zoK50XkmgX{#)u4a$?<lf8q=c7CIxsOXMs;}(!6A~l*I`w;n!Iuieh=`&h+4$2`o)u
zSpxLKn|&tz_=^&e<6}xJ_vLMcuRiZ25L*;vc-KdG6X#~7{8X!z%#*<W1P&yyDuLA$
z-2^r!JnOM0fe$I7Y|HQfwXDR{Ag?C1m=##(OYC~8YF}}~ppu&s*qp%L1okDcg&H?g
z-jTrfqeb4*+M2+&1hyx<8(TLv%jZ7LBC<1qT?y<?U{Av94i?T1u%jejo{sS>@Ou;3
zmjxfJ4HcXmIGDhp1U^dObi%vNc{qV12^{qsCCVZn?x1t(W0chdP9#7#&?i}D7m=Qz
zi8uaSI^{=si|R}QA181nfzK28gvvWTc#aKZt*Dp@oTY#@j51UhCU)H9!3&g!ae*cC
zgO_N3l7Wk?!<fJ){l&|q{QMw$AHpvZC_gT6HGwZlr8iP|^Xsbwc+roS`@T+iSO2cD
z^0Pg!l;0%4L<#`mby9}5E6HN<Ljpf0kW4^L;3rzG1pY|iVFEW2xS7DOv;b`BIPn*X
z%9Ox^_oBC`AU}q0`*8Rd?K({l-lg$po-B!;WPc+u{|w*vqqoP1zb8<yyGYaVz)xYG
zql<%&5_p_IBH>-9`jZxq6zD6&Sb+t>ClrzdY8DOVB)n%3==XWm7;(+RFjL}ww!ULU
zW~R#zIxyAP(gglV;NJv{1k40nnym2w7Q1_CaP8lcMXORLYWvXnfB349OFs4y{!V}f
z@Tm`puxI}-fjmi!x{#4S={aJ~oAmCr@nMQfH>7+?47wprxgqg&tO7|COoCSq844v)
z=c<PkNup>HwHZyKSQ5pPD4#@yBuXSvGKpuCK+^NZUMlJN+q(WpNJ-K+tH8kRkJ8Mu
zMktr`92S>JqVfQ-tPd%K#A%3l$*y7&m6E8*D)FZzswDAmFj75<s{X$QR7@#(CaYQ!
z4X-qPvRS4}_Zmt3B#Y1akVvsDGQ0KD|3z+$50w8STsMh&Ni=0Mlc=9WgCtUu2v8U<
zNKI!1>0wr2QAzL8bR!=YFDen|1;&okf@w+6wQl1irhO*tC=+Rt1YznHxmgm;lW3L1
zOJl_zMM7c{Es|jWdwz<Lo<uOom3e_q`UqS4=^07z9w;*q{yZvBvcDKg;>9GIsA#I9
z4a-U5N)n$Z@p2O3Bo-#IC<!Tvwn@C2#A``Jl87eJGl^bFv`Zp02|0<bNwiO5(wsmi
zzx)nKZXlw@pg_kY=%Jnn2}RgBiLK>RvXkhN^n7p+ofjl*Upz=L=$6F$)4Z{6_oO!n
z?7<A9y_?{~dneI{iAfAhBB6!(><=w--z54ay^%wI)_F>Rk9!aw#BA%M&rJ_(zbFh&
zVn`CNu)_Vsp+00sx#zhEqXoaqem#jdk{F-F1djic7@ow4Bt|AZr(k?asKglY={#Xn
z5~E35-E*vVx?;*0GNq3=jzTykFqV>5JV;X`ZIM@w4^Cv;lbDml+$1I^F(rwaz6?xF
zdhX<=Cp}Y1WE#0YRUk6MPhsMm>(Ypsfmun+W(8&j7>pI2<|T1_ujgfZJ|(TMry~oJ
z*f2q4STjAaIEf`mY)fK0MIwo%Nvum^eG<!(cq@tbNX8`IPGWh|8}e}s@J<q|yNT~6
zajTm2>G=$~Wn=}((oJM2zaV=44RK`>Ym#`bSnz`+R*{dzgR!w*Se*oKV$Pct_>lT_
zC9u|qG%3V4B(X8c1v+d^VpEbkagq9?0`+@~oLp>XTh0j?MWuUF1I>$j&Qdpx2<}K?
zXA&Qi8Wgsr!mcC^CUJ;0Okz(Gdz0Q%C;Qpz+rmB{XY_JT_<)~s_jm6Vl*36JNpc4k
zdq#?jMg)%XrzB1!@y(>bF^cGjz#rqq#S4QclUO`Ha4Lz@-*jY@fn(j%NgNm>{xL0Z
zhJv(3Ch}<#pCxgQ+L6TBr1v@muj;ef9FyNVpK*be>@8fP%8wGRpA#<nEgHE+zU-$k
z@$P8h3mTRr@~FtG;>#qyO5%?s9wu=uiLaCRHHkZ{TN2;W&Qk>_S7iO%03SpeFd|4J
zd7W)v8vH(q-_B$$-6H=)RT?7POyZX$eoo>BzxbN4<&nqwW`#@MN`g~7TGZRr$L~rq
zk-su}H;H?+byEYskvKiY!eatvuEe)ieox|9?Z|!B>W|h84_LSP9X{VIJWAqm5_%Fw
z5`QM~7quygBn{?{_D_6OQfMNW;X@&`tOVim&!iYXO<DR(A|JP~p0cPiPk(QoMO;gw
z%gLy-G-xJaCGihcqr1o<w4FpQEyn18Ls>l)aY^<sr88S(!cN~xe<wls)Q9GrD2G-5
z^6QlU%>p}X!h9<7tEi}=l8OQ<3aTikqPU7eDhjK3Mnw@7*Z1TvI6N?+vsiFu^x8zR
zsEQi&WWCJ0?LMc?^CeW2Q~?#GRg~g?{|vJaeKfX2ii*V_wtH5E^tM2Ru#AebD$kY+
z6;$wPqjIXpk@7x%cXoi|`IUvc(6`<1mGe|qQAI@^6?IiqRZ&g#daIf$hXG=B75VZ6
zf1uw+W*8QD&WA*9ZjpD44%T9Y3xsN``1<vf{AD8bRMc0|NJXlO@RH#DIl%_1N4LVo
zf&v>@EZ9)>MyeZVrUr;3>q#6P1yrQ*qtk<pRkRovIIt+l@yYWlnyFZ?VuOn2Dnu1y
zRE$-Tt|F)+TSXUUR?(7QVS80%sA#3)MbdM4fF_P3t{0ejOrW)jkc!j8O586XH5?si
z63=d<f?nYU&knq#;$;;?KI$#fn6y<9QIV;ly$W@7fS19~PYpy>T(~H;^C4eEq$BbU
zDyHnn=tOc|60%fuR5A0OK%9_|40Ps4dkTpyvaF)3idR$&RnbjFcNP6q^!NYUL&dXO
z<=!e^;tluoVJ{!H-Y@iQAL*mguMLRs83#i4)B{w^?kPqdg$Jq_q<Y=QU>^?gA*<TN
z&1T}ODqd6ZhKga#e<;cq(m3RPoixlAi@lyg-5;)El!|?v=aQk9JC5`rg^KuS6<n;~
zG6h#H#;F*u;!PDxRZLJZQN=tJ^HoezF<He7wpYdG)xz~Dfhj7cs(7bL3j4Kbs`p;R
zbRV)1jtr^AvsA1b7o4r)>6(s>w#su<%%$kA5z<$AVaSx=0u>8YEFnim3yVgGi&T(J
zi&bQ8mB$YdUhN}I=ps^8hyNigQ}LFHmCUK)Z57K^ysu)~KPBFwtWF55pq!5ma8UQI
z3c?L3CEp_xhX)uMl`YARoBUm+Vzr7jDn3-bm6LMg1LdX#_*`elNg^4yR`s3|T}OUx
zl{1QjdcD_aql!%`erJ`~UKLwZoTnJ5*s5ZiilZuyso2i;s@S7quZo>itG}gjvx0o!
zB62gbi|RQuxZ7_Uqx)3v;fq5m4y)KtH7^!9pyHsP$hQF*<*$5y@(As1^_1Feq$8EQ
z{Kr+CQ1OY1PgR^$aZ1I4DdOKF#gA0ne7n<W6=!^e)N4G?n_m!qtm1Mdi3q1=9F~tP
z8vIPfyKN(9eR$4?>Wk7v6_-@}pyEg7S8+wfH!8kW@wtjGNYXh1pFz0F%BZ-edXvXb
zx{F`2Cf&tn&SkT-W!1W{2mhM?+ARz_B#?&RsrYlPaG<Dk^RaMU<&{S7B^(-gMt@TA
zvx?iK5ADfg;n7Et8!BdPm2c7%kSSZ`TPnWWDib-rRc_s+%N-SWRg4%LEIT%!?Gf&g
zlKI5nR1oiU!F!K|y7@rGACxN<|EPGV;*pBDiiC>CtcHreR6L<}=Vtdk9i6Ra(+zYE
znYBJt?w9aNH(ODWyH#e0(b9eqA(EuDsL-heEK><<D)_<!pR6gpP2Tl&kcg?mQQ@k*
zR4Z62Y#*U-Xg=w1vY3>sqVaU$Z>r3?mW&do-2Tf#RFu$AQbQgMc{LQ#P*g)c4WCz(
z3Tik~QOd6&y^>VGhi_Gsh!@gOSi>_KCRLP}f#tYrnE2BhkzyKtoFkn5D^gqorw>D>
z1uvDBN@+;ZP)<X6jZfP}`0KM8prN!zPbE@W4OMzXiImZ>*^oE^+}k(W>(gijR;G<a
zPjHp_FAZr$f|YzogdI&44OKNn<_4>2sO}@gIXNQa`@J<a)M9fC<TFrPLmdspbQIT7
zS3^AwoA@CO^))omFi^uF4T6S-8ZtGs*U(5qs)m*tGBgDEMGenuXr`etYr8>U;1g0~
z9!O32mu+%W7E)ZIU-;&lH*gJV;E1$GElFhNH`}FaApYq(VQn9=h31)kA{@20((s~&
zHX2^gFnVP0*QvqQ8bTU4=&d|0$Z}rN@Un(a`-l<Jb5t;_LDJBc&8*<{`<z^lt(?N{
zgWqcOZDv$MJ68MK%zV2t2s>!V(jaT-s-Yw6!>~^1ta&eca8a6zV{Z=+WV5!f%Uv{Z
zn(56n_vYvGp4~KbXN9>kzfRaZQ0%FpmxewXy?tS4+emNH>Q=bx{q`?!lSkzX?U*a{
z(=dR%dp=6MKkM1rLm16_J3Ls!5Dl|6%+c_QhM^k9YnY(nRSmCc7@=XLhB9Y`*U6W`
zBBw%cX!vQcI84KE4Sao(c$axWK9NUF9Hrr_vEmpKO2ZOa<N`?V0peH<PnHG8`H-Vo
z;u9&28fI#krD3v$4|irv)i6!N6b<jqpohv}p%H=UnzyFZXPZ33M>vcmPU&@w@Vo6L
zt`qKf6rQVLo`x0tmxlQo7Vx7Q-qgJJZTcLD(p)Umut>wbz7qS;#hPb8-n}L*)v!#%
zwT99=Z0R=nEe&sLDBedR&hm*Y*Kq!9)~apt^Yeo5QljPsr|irBzJ`^os)n^B$g&{!
z0zS~NO2cZ+TMPa9#pl=f$ga#%&8K%E-&4<LtkbZ8-<lD~`dU~|Mt?1gz94PX5E~)R
z`zHL#sK6EtTQz*6;ad&cG;G&!M#IM%c94lwXAMWm`tPM(8un_~r=ijWakqv&8h#!g
z$XBvtvTt-hc{jzA$%7hB)t3&ijb;XsLmG~4lb4q)dDurL{T(@`;kbs6G@K@vTSbb#
zF48gg2}<b*@g)DtGDnEtosY2l9`c@0v9H+VkMNyb=@SaJhRYhRX!uOSSq&FyD>R%V
ziKxp5JO5%yTpzeVz8~lqT@xi<xOpdgSN4OEBA=t-LgnWgzR+-0!<QQ0<Bf7lg^!)`
zX__CkFb8a05B!Qn6%1X|@U@R@Ef`wfKl+`9>!c@TM#J|Se$eo%hC7s7%AST_*i6<r
zpOkSY{4?#t#NZ8bFju-sy_@5`1w_alinTqxneS~4H&ROS5wN?I1P%8!JfQfE6!=^o
z!*7(p<B{KeNbdikA-Gz2Ol6!OytYk#NV2bO_lWv9CqSf3^U$BHk}oGY8WauxX!w^5
z)ezU<XmB;oxRKPnhlxyT2kSgN$Yow#gGQ6$4XOj&HDHRNfsmtpiz+`nX#0?Z3L1)B
z+LMRElJ!Bpee}0)nV<TQYdZy3g#M%P*HJ`AQ5|`8Ov@MLif$nt`E=yhegD@!EU2UK
zcDd7Jk)if>xv&lnP8goiy|?3ta35{v&ygWDqFlErp`)aZ_jJ6kqm+&m9ldq*(ebPf
z=y+L2SVw6cWpvcn(LhI8mZqbcj_Nw*&JoJ%^cRNpFG>}3gtp7%?;8W7m2_0raqu&#
ziVv&$aKc`%b7x`=9na~grK7fvcRtCksq=+|&V#qhrMG6^dPSJAU9Lm>ucMw0G9~Tz
zaILCcitmqbN#r*pEa+&cqos}v9gTFP>iBZM5Y!RSv2wed#-j3tYOU@_ys?ir@gWnN
z>UjQtcrzW%|A&h{lCI;$b|GeKp@V%y?F%V{t#rJggPUJ3>bRFL)LO?e5;I#Q9`aN2
z?-Lds6xxsidxV#C5GNw(Xse@>j?OwFES$9sNgZ|Xk-By|PEHUz=*T2VCkNa6kV9_b
zk=|k!^Y<1x5~GvZMvn!qqh{;qqC+O3Du{eXnu}Upb#M~bLx&|qyXoleBMYYnFTWYA
zo-Ov&(TjY^7P$pU*jGnC3W<*CI{NDvpksuNkvazI7^LG>9k1!2|N6l?hLU$eBs4%A
zLS%sW3hUW7i%8cp_-|$Q>pEs`4!=R+(NS}KnEq!^e-|FE<M0S?WI~*9l#bClChC}^
z<EQQ3!+m2|IHhH5V4RNeWaz8_@xi}@*H=uLpnJpn_;z`+?mdb8-M9dI(kZ&PCVXLd
zaH{UD1{0sb?~<xI7VDU$d!zdKIu_{k)GW-_F-OPpyV6`8^C;~*<mYzCjP_g*<TR}k
zm&$c;wVZ$HQ#5M{zoO%9=GU>5ql@uD&KZ~KNN?W0=hettIygh*lJ%(mBG+Nwp}_YL
zM->RYt78QPj05}1DI08w$V%3M@}}b}9jkP#)^S9~Q5|b^e5hl$jy*co>R6{^qmE6w
zw^6vBlJ<s3U(y#p$=aZUu*)|Q&RI6Is5yZhI=1N8%KwfPxA}0p4>_x13ajDt5_hs3
z9Yh#7irA}TpN{=H4(Q;{pf_I|9%#8kKFFGE6^h)KPQROWi0UxSdlK#N|Bz!kj_Ww9
z<D3q4Xn_+tKGJcTTqezXil?af#l11%4{KYV(P6KPe!{|ad`wd8$Y9_)n7l(iu|CWP
z$3CO*T$5-<&g;0K<Fbw`I&RJlTx4mJ0u9EChYLq9>A2LS%cvdlxE|iRIyaF&*YO4I
z%%tE|9}?j_>za<Qbv)GZNXIuizGXQ&exd0Y9{5hj4?2EiVvp!`N?i}}d!5JTvx!`}
zF0~jgUKu9-L{aBPu#Ov4QaO5en8@fY9k;2%Iw%9b>bRrhK2>Hy;I0n7y8jzZ%A^3p
zJt74p=KtMKVFo4=KJYUy+#&N5>j#LBb^NI#NuuePJSX^<j<}A5?sfW4_@M>C9GyNc
z5!1mvVn#RakcrU9(`azz^JKQDk-|FurqJpzbeL44GZDwP!xkI(Ld5p*&vwY{lo@qt
zUB?HMmeE`qkn`C)zl~&%3epqzKRW)^q1EY<_pKm1(EliA-Nifxp6rl`<Tp@&!9+m@
z1BDDMHL%P;VFS+?=xiX{KoJ8)4Ky$y7$|0-xPh_;${8qOprnBm1J4@BKUBQ(P}p-_
zDrN9FTyMT04hp~kH(^T~o<{>N<CHPLMV^g!Jy_mA1q0O$)bJB48s6KRRSf(*Ay~;k
zWdoc!690FHT-E=nnh%BVGnwr<W~2Xc7HgoUfm#N*1X}D#xHcyOJ7w;k6R&5WzJXmu
zqm{T9yi?{Jmd`d$>nSxf(8xe511}gzH4rc$8b~+rV1(f91@pUX)Ec3Qf#(f0GtiVN
z=~Bj8PxYF!V!MQ5-?wAy{(dLacc)x%q!={Nb7s4i23i=Ht%j%Wl&9a9GW<lQzrRy%
zZ6IVIVjxON&T99fftL-0+3-n$Ha>jGhkRd`+YplBttYD$Qj9KATLXlgy3!`MGmvSZ
zJ)7LgdmgZZfhv!rjs`mUNS5IpGGU53D){Qph3L(ku!{lNz(@n540JWn&A?y-Lkx5`
z(8It$1A|ye!<#twHPFvMF9W>|Z*#Mc54p2RJonQqj`m-%Bcn$I`WqNvc#FUcjIQq?
za<W6yN9BFRz)%Cj3=B8$s^JZ>UNgMOJFO^9&FcnkcN5?6A(7)Bgt(e?yO%f38DU_0
zFJVm&X|#bc#0|_aFxJ301CtHRnjGldLuy$sI^MtpgI*-0Pj|`_4YX-1O)_v}r~J1P
zA>5&brx=)O;Pqi*VpepT0m7<HBtDHelZB8kZ1T?b1%3$6p|soy&o{8ZK-%(la}CV%
z5pAc;D95e~*+2t}4f=x!&-zkYV&F{!T^0oyUHpu+@foSY%yvtL2j4RAwt+7UTs5$q
z0&n1;fkOt~HL$|KHUrxYyl3Ej1M3ZJFtF0V2Zpz4wU*P>zTzrs*}o;$Fk5GFHF>eD
z6BBPv7C$sV*mq9g@or%q`6Wajt;_E5UTC9%Ee5#uzR53S;4{(92J&_ldr$TDGPbf&
z=To?&vBSVl0|yMxO~9p*;x1|*m8+<<+rS<Jdkydz)qOtvW_Ex$1GZ!*ic0(42q$9P
zp*w8gh=J1v&KNjq;22qH;3EUasc3zKlO#@e@uU0F3F^Km5n)GP^+x!_gdn%io@9F)
z6CWG+#K3t27YsUvlRh=P&D^t0nGpEQhfP{UrCjNp;q6dts2Al1*+m1F4ey<No?*D;
ziw%)0)aCEO44;$2Pr4BK(!f`=S`>8y*9?430U)_3zy`iG@ICDVt2#Q3i={U*rSF(?
zT-J3`W0CON%650>2@A(XfAlyN{)t+1KcbhFel}32i^!4ZF9vQI_}##LTDgAF+Xn6$
zSkp-Ql?HI6$Z*F;a+^tgR|)qF{APg2p9_P856Bk-e;VG|q=yFD^%A)F_SnE9A74I5
z`2Um)J`HMMVVMpbTrC?YC<bB%at-`#AWm^LU>UHf-T$O><vD3UHNdqjjn=79$S|PO
zGH+<dS6;bzZu*JrzDG^)&H{0E;85wNid^Az4fMZNg2+<?{}}ksKpxX8ho^e}Wu1G7
z90}igret0d9604Sk*}we&jfeac}9yc^}{^uKns~DY+{m$$tIpLQN+ZHCSQI-Q4_^X
z)HG4cL~#=(OjI;c$wWyLrA(ADQP#w_S&<YIrA_=XR+v1h#Iq(~f|}TOPLPm$Ox)Aq
z22D8=TP6i~29L`K<xLP)@L}dcp|Xi8CaRmLVS1CGswS$L-m(V8@8202b@%4)Jw3qn
z<d!4F=S)ni87;O;=Af>&i8>~lnP_gJu8DdkX6%w1o2YN1fr-;CyQG?U_M<GpL_-se
zOq?1cG~6Y>#5|*dt$xYgeqRWf=(9^^NHY;%+KHyAiHViFWPMtfrY4>@!KpeE85K=j
z8z8hakzpd8pI8`7TO16UIQV9;g~`{wg6if7kNLGS5i)UNm&~F53nm@13$1;~7i-IW
z8PPw8zGUKM69Y{QG7&Z*naE}a6KzdIOtdqR$+ML2v`Y*Sj}8!{CfI+`fe2S<o4z8p
zH_?H4UJ<iQbmHjF$2<Cv&oy`c|HNM2kx1D@R}=kB3^38n^h{7s6TM8&$3%A%Jxsj4
z$lE<6<e`z?Ci<HADoyHRdWT8!{uCi(v>*AkGJF53Y<eHy;u0q^e4lo(i6JINniyr`
z6%#xq@|ua)P4L9jP}bapcNSuDknjx?JYX~2#0V3t{4gJ`ED&uzM(kd-RPBj@@zqjB
zvw<eYnHW!^jTZTo?pV@cc;L`Paa+yc1WLu*LB1%?@$E#4;;cYqviCaf6cbZT>@~5E
z!eC;$iFZuAOYWPPX<~tig(ha1n9W+5n9mFo0ya9#F};&l-|Uj-n)qjzTyD3_^Dx)H
zOy`XF&L81LCKi({CYF<%tA!;d-ZZh4;{7l@@?CF`u*}5e;#qHzWp4`w-V}%rI3IcG
zN_!4MxH(I>!o+(fHkjCG;(bby$+vp&A;p+m?NqK}!KyDvt4y@Y6WrgR!)hPlG;OWv
zO;6UF-Z2<<@#`pErAs#3Eqg0+eZ@_tw;8n6#5NNg9Bw8@Og`H0y=VUA)Re~mrEfRA
zUHhFTzF#lw@F9J2?J}{O<a*s3OB3!fv13TI#YJhqi329CnE0G>%W_P7Y~m9WhfN%z
zcCZd)A7!Syc$}>`6`@a)V`MRXg=~{gP`doXKPPEMCW#$)%co78F}*_qXU++H%bh2|
z=rZ7q%*dxEKJ)WjHoYT}4R;G?O`J1vc93}9#6{EF1SfvM#KW=TkAuWZ)U0<p%^c;O
zRS4}6`VJPqFmaV!Fu6R1FDaR{Ff5SO8=XdBxMt#O6W^G~KRviKt;^8eG7&P7biQul
z2NOS%`@7}uNwnQE&n2E&5d6u+4K{p5yAh*;Kl8t{14M4pM6eaR<@)K-+a`WB@qiZ0
z#M*ztcTC(f@tcXeCa&+6n-4G1b9D4~6V7hA^d6a3j>vsl!aYJx8|k45?&CZ%y@Ra(
z?P$OEY}WSbDUZq4*HeCaNqS-;$HZe7f4WeZ$An@dW+P6<G2OzS7Lw$$iP09uSkO%9
z)D#QPTQEpKT3QRGELbLN69p_3wBYcICjKSy*@XWhxh95Xi+|GqYSKGD3mi#4rG!%k
z#s)Z?{{Lm7JQg}<i}@_vtQpB`q0nN1UDC}3?ebgrVQ$7ZEhB|26t+;zLUGIUoyR@X
zXDsi0MR-JsA{O=*kcwJfpH76ErzI@Uzr&KeQI7MusGDNpSqs%I)UW^xr7cvkP}M>i
z3uP@-uu#!LIm=s-{;yy(vPbUvaiqM3hI?f8{?jX#ti)^&!;8Mju55YdNrX1uF%nLT
zDzx`bd{tvn=cIEpgU?y0X`z7y!9pzywJp@OP>%%sFmilzq>cry9#aPD9TxiUk^9W<
zICYO)-(s&F<{YG<g$;j7jVz>ED8F7H9<cE12g1;CVq+gkvpnAx4cbSWSYRSUmx;k<
z7Mhc87N608Xd#`|vk<iqw9vvr$ij;j3heLL(n5xXRu=v#Ez!6&{xoaHx|T0kXl-Hj
ziqM8VGEXcY-y^pnqyGuNWZ`8C=N@PCTsos+3zCJl{!d@;k-6r~opE;eQ)H=~g-i<_
zEM)QPg95LuinO=r%}QW*S+Z&hk2(|#N^L(7I$HR<l+?+>YjXr5T`b5J23Qzqp{s>%
z<dlVe7Uq_cmQ;|sTj*h-r-du0vikV27wP6B3ttn<Z5IgnQ^7?+9`@_cc4bP(ie~km
z(J}9>@E{9=Eex|T+`^aR#UU16wJ^24^ooVwZ-s|i7~diK-xnPTU$gMKg*Pl*YcCbw
zD-*`{$o3`auk;8f<DKtGBP^J`rI9`yWno@#iP5nZ##uN^;;<+S6D+K>@PUPi7ACR&
z%w}P-g(((hS(wdFlbfT&-xow@SeRy^{U?#>7S8mR7*@`V7Rrpyq@1sgygXXuW-i@E
z3>hWPu~4LGr1oBUzJ&!AmReXw>OI$CA=$TAUSi?N?d(Msc${M~+1*o6X9Nmd5Z<)F
z?tACFc5hjD+rn}S?^rl-S75gIcwz8=>Gj`?{&7Kg*Wx>|d<Hi1o`v@<@5aHPkpiQf
z;tgw_wTi-EVZVg~7S>q!(86{LJ1nfVu+G9p3!5ygC$HzV`*B#b&tCayJ!yjlE-Mk)
zOoHr{D?8z>7WnHHR(r2J^=js)Q{-(H2syagX<--jlr=1p^~T0XiMrBm>PsI%iH7!A
zAmogX)4F|@w?4_C#X$>)*a{0LEgan|A10){rAQUlg^pPGYOl;8%`ppac9f1=NclFx
zz@JW8_{hR((%AxCgS}oS`e3iz@BQe<v=x*$NBWF<p=H0_SNhb#Q?_ES{HTgVQ#1Ic
zaNfcN3qM=9Vd0{MOZ*BY#KL8YpM|RyU9tvf|34=;rv<i*^OnB9U=2r$JBJ6qWIeOR
zCZA*#7$Sac;TzI{(l|T7oe|ooZ!LUhdFMK=Guzz24;H@nqf99_MdVP8<Kz}ENIy}Y
zi-amwNx8{iE!?$m&%!NIenjxL<((1YQ8)U!`jw>UA#k*Lhl*c8>RVCzjS_C*zJ&+O
zd?(Dc2yWJMeed3c0M7++o%Rp%v5)xBhmU;7q4i%BCn|!CH*DmP1=M02=`{Wp;xy?t
zQfwrs_!j=NkjI8f<4=vCsVC!lh&{?jY0Y%@0<=PtgWRFuxQ^>cwguNhE-mUl*&!2G
z2){I!{-$-E9PG7E{)c4u@y7e)k|VPIwZKGfBn7TzPuVBuwNco{GdA+s$Zz9hS8?S&
zxqyvOYNVizLbkUCLY(2jyTX!msfdl@Hr7thC~9M8s|Zg`6k`)s2`Bf-6qORpZ+kMc
z>Qw0P%68A%fQ>pf>e_q^4P|UpwNcGRSsUeSl($jA#?6A#4SunLNC!6+{m)glQFDB-
zl8sqe(hFk)gjM_$u3|C0x{Vq(nl}z5{uG{Lx{c&MIcG++mW|prE=~?oN|$~WsWw(*
z9!BfgsBfc*jixpl*br<qwy_{vjNS`3wE2n}Qf(0bs9zRGgzKA1X?}tHd%+zMmcYV0
zI;}ZQ-~ulXeLZh`N7<X%c<b}*)n~GrlV#n-86Sp%Hd@%|WTUf<mNqhMylf+Eqm_*p
zY_zfQl8x4E@63z_w<A2D&Xw4Z?Jdc^=tG{t<|!{8=6NzoC^uh_Y_#R@)JDY`r6M+}
z*Oz$UA(J)lB1LVq^AX}4=5e8~J&CqoZZR{EWqSk5k4i}$ZG2puFONvsHoCCFHU`*`
zZFIHK$3|Zp-E8n4Q+FFZNSXbfUd#LCW(T7^ZS=A+e!qNsSA^q--Zs9O6(ruz2G`km
zcw@#`kq%ZCJ_!$`%p?P^*cfVq1FAtb2HRLYv*Qp_X1~l(E2GP+Ovx|3W_zpXT;$>T
zv@?71vxdWL47ah##%3EMY>c!q*Ty^>qil?}G10~(8)IyYwZTR22{zgvjPeH4I9AN|
z*6|t)5_uMan{@n@7lJ0+m}28V*_4?!rjq78L|ze^MiR{n9NI6db*1Ulqq@=z8$0$3
zL}rm4e+fL9KikF}s@|et`4ow8KBdCOyEay^!ZsG!SYqQ%8;e;~KdF235KlCn{ahG$
zHFGJ+vRhcjmfBdFRf>yXZ`)XId+S$p9YsBThYDUo^46L6%S7I@d5H-hQfnyu9}6qV
zg#*zwWR{IpB$18o`@Iddiy0DqI1;(LU#@(z<vL1HODR3jfoGZ4+t^^^)bwbjr_zbL
zoj2N^M<gO!Y;3jhm5pmQw%OQD{be?`l)7nSKgmLh+1PDkkBv`;i+{J5@*j}5caR#l
zm-bSR4#@j#ypog6Q2o11TEc@ij@me8<B*NR<jy$xh*w*A>;bvW0h!SSRit+g$o2b6
z$8DV8=MKm}ACU9E75&J@X&ax}IBVmlF47r(&c>&dLmIjR^240$lcNF~rigUSc`+J#
zJS}+6#(5i8Y<zCx0_#v;8oWPp$ww~w<lUVw^yRt8WgGPQTl%2P3wK}e*R`Q9ZCte>
z9+Vkg3`TyfEzvK`*Zhl(+cti+@h!#1#*eIq4YK39?OizHF_`ad{9vQro5A1@k<JI@
zdTl!WOk+Dhyg?J>D|N=)cB2o<zu35CV_Js@|MJd3`S3xR>o9k0+_mw9ZLx9B#&0&B
z%^&*1#_u-nll}+g2jpg!^l`UnT8l1C{>vWPCc-nc4{bc+A7^%aY~xRUVn)07XLMxr
zFCTxaZx&N{e01$B!JQxEvCKH@!>>5Vage0YQWqRda-iAJX~Y~faA4RlX-gfHabVf7
zZ4_}()PZBeweg>gJPvYg@VXplB2R7nO$F~NX6GqM_>YZ`oCs&8|FX2+BG-$yelO*9
zkl#T82OF1m&gY<Dpab0qYS*(1vdmuMGY$%|0@t$(`|$c>i8$BQ`S(3j1H~M$b9~l8
zaR((FkVhqbSjtbQFQgPd%JhAsqcxjF;Gpa2tWayItb=k6or&N%2jv}9a8S`fC1#%D
z&Fk6e(+4;AJ}Nt?>Y$o~Dvq}=KYVJS#-bok4_0^JEi+!tY&==~rIb|DK`jS0y9H`H
z;Q4B94Dpz~eo(ICpswSc1+C|RzR5~l6^QdtsNkTXgYFJ`IB4V`)xnDn+BgU}NOK@M
zNO#cKK@-Q@>2B`eorywI$J-if=5YBs`n-dt`yxb`^1@buqvG^>(uD0o&_RZSRu0%-
zv|u5tBP|_olt`rPg5V4MXkn?fgAUd5)0&0IwL|iXrV+xI9K7uP3!NOE+z5vqv~!T@
zKw_&MaLy8O5OpxQpf~qnG&|mY|30BTi(;z}$-F93Iww2J0Uhu1JOFWSnRRxM&HAK9
zyE*9MKxV}b$t~Xxb>(+M5(7^)drJW!>7y4qk*Yl%^dglUjC9c3K_3T$91M2Q*TIo2
zDYHRzfP;PxDz}vS`;f~W#F;*jE$t~J+eU^spog+o3CSG?TpAimxvC&`JLGll4M$|n
znV#{wgEvT32g6C;PqNN7&*B39utV~aLo(qg2csQ~buiAs7zgJL2_KI3_A5ITi{?Ef
z@MP3@$2$yDew{GEL8wH8fpe3|4yHKR=U_i+<zSkF_Z_TsFx|ln2lFXZl<EQEOb4?Z
z%yuwwe|{d3s`IKihczD)nCsxJZ35TH=ds#z0}Sk;7CKnObc(Tqt!<^Nd7_IQEOGFr
zgQuH?r4DZ06L>PD(DM?JWe)T^VIByfTf^m)76<P-*m6jI_2uZPLo(N^3uj6z9K1*A
z>L4+Ad&&-0F%JuOu-d^I2kRWHckm&b@K!MG`N+h{V)%Ast%F|<$>t$>gX7&?-pHJ5
zh3^K6E&63`a=dFSn;k4K5?s+UTH>(Gb(L)nb~@PQc#C`6DN7D`eT;g<BLN(>a<iC=
z_PZ(YL(=v**h~58De^;%9&m8b!Iuuca&U-(<lqwrpOW<ydk3c++70jY^)a%hhj@}D
z^b(Kz@PrRZv7^sQ>+4Ch)t#S{PCGc`V0(Y*V+Zk**=6T+Y_q1_$P!&Xb8yzd1qT-$
zZ<%_}5Rq$E=cu!kx_(()6smVvzU1JtgD)IhWgR98)cPw9?tGH<xetld*&pF$H*Qt%
zVpQwH@-?cMgPSCjgKr#s%eFiC*}-=Xu9K>x0z4qpZmRe_#ba6U2deyG`R-|f_>Ycv
zQi90gpR$>U_dagW)XWgLuz8DW?%;ugKOFo@Q9LZ)ad4M{)GwNGA^V;KPVRngA^q;)
zzzfoEl%lCoBKIBqo&~0JWcAR&BL{yv_>0p1ti;ovs}9SLNtVMhl_f2!6c-QaiLd>v
zj*5dAmBPg^7jXv(S|k^#E|LyZ2XIl^g+>8$kjF({7ls4VflcG=VBXw-MO!r2b9+~%
zZ6|KryA*&Kfu|1sVJ|@0xD{sj+ef(0zoMq}`(gQC8kWJ{t=Rua(!<`BhkP#byC~|S
zn2Q1~3c48jlTgIP|DRwf<f5>PXI#`DFKk;LAj}*s5c0Mu7aNPaDB<F6O=)%>>A%Br
zNf)JDq`0VXJNvmKvQ<-h*2T+5WbTI&r{0xuQPxEr7j<2fb5Y(!br)4m2=Rh1F6$#z
za8Z$8KO$FRqKm374xg1O`*6k)nN{WNm7$vJ-Pa&e!^LwhHVzkRx~SzMw?>pW1^&qM
zQf(JJokgS`YwkjD(a`l~kqumL?RWT?0HuiP&ygfooOmN|-nd}EMVgDwF0x%TcG1K|
z*oDND<@uYs2)bzD;&~U%Sk9j8<}Te)Mbce}E-L>RW?&*ycrADEK%u3J7hTZndWMTu
zE?#ia+C|942S;Rve08GxkH~bP$Ud6UHZEQwm0T=t5M{V{L?+}uU|Sav7ad74KAZ4J
zxOGI1x@hOZJtAki=-?vDMSIs9!>qm9vCFu?U*C1)xU^1N$;ub%M3(W;Q77r>h^#Iy
zWEcHi3?NNJsjG|LF8a9W=Ayfc1$V<e*tEyto<9EMLZp`;<(8saTw;1(7mt^h;97J)
z%ElCLo2mcY;6N9HTnusX3d<ZDpm7-N;v6E}0zR-PIMn6Nvh<pZo86=;N99*tG(9Sx
ztt0W8&+9ItN98d`<>4+yxH#zIkc*KnM!8t#;w=}WU5s%t#l=(?V_l4MF@ejZ-No^&
z_L_D)55v<1{c^*99Lb*Oddtp}T>Lt(-DDpUS#ngKMi!GhY>tZ=E@rxz<6^FhS>)94
zz_z3ECr9PkKF*l}Z5M~ZEQh!G=CRsELZ$nZ<R0ZhvV(v8Ls&#9{Ugl48HabQ&c&N#
z)<a>b5C3~45P#dnau;h|taI^>i+5eDB(M3$$3maKgcUA+d_{bZwDS9x_t~!TUPrUa
z#cCJ4O29hsvgaBXci82*;GPttWF@2PU2Jf%!^KX@xr;AWgf_d_LKAUM*yKYFFnAt&
ztBY+^-mpY`ZAN6fk5d4cvdhJVWMns`kzrTH^;*(i7yDcsaKROr?~cm*UF13D*(KtS
zkILna$>Pu9!!C}v_};}2E{?i5=Hjx8D=v<^I6+3cIPc=5iyLQ!(=N_XxsJ)FTzur>
z-pnWiqaTx)BZMlCgil?3;)l~cJ!|usi?h^jUbIY+2)VpTc!70WCX{U<U8H!73o=}C
z@y*&Ok<Zy`7vGZCw2*}(S6zJNBHz3yd$cdvgl{tY{u93D;%gV<^G3g+z#NmGZy>cf
zCigxj^S<+Sa-mN;@7HvFK^n0r`lE}VXs=jL7eBN9E^fKFO=>I>xU0f&)5R|?CNJyE
zzyZ>)F8)0x6rL>dHp(6HcU+KDb;93V@NCcTF7A^)1H_NV1s}Lr)Jl3tb#U<qWuuPt
z%$&frrO_tI2-m|)7YQyqCjaH)iHnj?QR*pjDAg|h&c)MQ#Mm?!3v;n37YQ1F>Ps%3
z&xK0k@8a29AQw7~KO3Hl{JAh)ST3Hr_=j3kL$X;8xm>-2L*qa*=wkaZ`NhHVaxF~c
z@-dnIyYC#6c^&v)@;cWW*i+>G<G=hwp03H8i|6h|h!n_0!CVx{MbTVTIxZK=#WT6y
z9jL;&7~CMrE_>hO@YJfMIHf9<%M-IGnd|L)UcV)^mL>I$RDyNBBei+EM5$afKh8JU
zrIcLnkPq?FxhRv1TDhp5i?X>Wmy4>osFv&Pf|bujg<Mq31<$PV?#aNPq)NG{oC_WX
z<~_%P&7>;1kdMo}m`_+e7oD3(d}^QuNpY}ax4FV|xxADYtm(sv$7SMma#5ER%SD4+
z?`&|rT+|sTUd@u$c9vd!T@-TBFc<&F(|3SLQ9N(Y?##~4!tV(6f*4R#KxOZ4k#x7*
zAxF4n4~{%UQ3;ZftbiaHL6E4DB#NMzFp+c4IR_({z=&dCXLt5{xB1`qJpI)3c6D`i
zb#-;^?rhJ@<1wiglZ=?Wxz-NR+dOd{6Q1-N9B8&~tz9)Hr^i&?Uc2>)wKmTU{k+y*
z&?9SnBD*H%6_f5U=@FBxm}JMKNlXf35~i18@<dGP#v~^uFDwjp`Zscaek3<0bBAQH
z)QP2TOQ+lOVp1<Ak(e}!N&T3VUS~Im@y3wUp^o4>yWzUjPRysk?MSC}Hfb~_1u@ya
z&VK(~^kVhMn00pJm=LfmTxU0pNwb)Ah)KtoG>=IOIw~e@=*fxUmN97+6CS1ecAYH)
zLhp?ZwT{UTCz}ww)hW_8ChcR=_;Nla+r`AY-Y&o1&Z*XvH|{-2Kg6U<OuEM8shIF*
z*E2DBqhZ0*3U_E5A*VAvw%%rGw%+c>xnC=MHYU81-?MKs{$snhAi{rYdd8$zOkRq~
z=$Q15NuQVuipk)Z^ko1K&w4H<{bLf#kM!f*Z%27UR<wR(KuiY4WXgJ*m$rJZw-48g
zEM0F8iOJBI42#L|m^{w_s~4HKGq`QN{er^F=Qbv1@UvMXxFY$HkuiBOCT+I{S@<P~
zoKcFuvSDOQOvc7!d`u>AEn>3ui+rYi-jTs3dvw9Xn3R7u^<wBrG2tcUU)n_0WJE^w
z2u`6hW3nM88)GsxCevc_PK@vKl2>CgJtp&GvLGfiVlp!(uhUC(Y1^z>G5P$5;B4A_
zSENe2$eftG#yC9C_~Lqd+O}4It+(gKWFEKS7eQXoF22F$)y0|z8}rBYLPldu-ipZz
zF2TR~d<M><m@JOTl9()w$&DAn%eZmwD^+Dgh=qWh<y`u01q5$1s$UJRiU}V$voe-C
zZnyeAoiy{6V4sJ>t7GyWgCQoL#^n8&d=Qg0G5MJBzrilsHjDRJe;AXGxHQ9pJdHN8
zcnQAvmA||?E(r3($Y(JrzQ1rix9z|XAH48+OxAKnFNN2|gulKCc)fSUlX<-JWm8Nx
zGdRhQ$rgGzCi@r_G1*2iF0?%+JGk`EhxkmGoiW+lKe#(4d$=59Lc3`82RhHCw0$OP
zFD;oI+!Tlq^SKiTVsbDhXJT?TCWpA21_qDD<XB8zZV@>glOqZ|@j{5z@PQy-eSSP9
zCt`Av*@HgZA3UvS=d-~#PXtNH`F>F7TulCG9yuSA3v>(Lb=xY^<ak78<+W-Wu{YS4
zV{(Pwj>*q4`64D?#^f49G$vog<ZJHtW%=JQm^awVuI6947+lpot5t5~+n8MCcFT=a
zo)sefo*Ru@xLfci?(q)6KvwHX8|)urLi$zvEM6zP9+O2I?DZS$Uzq%v+hcMoCciQH
zt6t|e*t`Mx4~BOv^$dqPiL~ne5(IzJ4;@qQI{!N+|FCs~9gFd0Rjs<ViTulO;x5aM
z+>QxLrErv(H1&IVqn(I}OFug@(UD|KG)EdZ($Eo)BVI?!J957xx+8`oB^@c{h|dwz
zk$@w`9PvA;S0UH?FQ111d1}{k<jpamw_i!)tAvX?^5=l8G)KZ4?f*IQ*Q#ijxxo@n
z>Ms%|vF;Kn?T9#1&XKzvfg>gAW#8qb?yD-}$f4uGU1#&lI?`gJP0U*f7FQ^Bk0bXw
zl2{%5aD4%fgmqq(+i#<NAG?pvowU(@z>x}$Jnl#}M;>(KAxEk>5_IHYM`|}I_`Wb&
z*^!ElRB~kLM*ERj!Sx&M7dsR@;>e>;>X|>MHro7B{TQeGR95M<$PYh9(;dllWK(v;
z`5}_Qxoorpn`~~PkRw$cIWj$UQ<C@orqvy(!8vjiM>Z}D)^sG>;q&N%uT?ClMKAr8
zpQY%+(ve|iUir3>97l2;dBTypj?{5d=Oo|hn#F%h2`a71&2!}X;>Pd29jxz2J%w4V
zyvZhqc{SgWh$GKB(%q3pjzk@4Nq;(0;7DWo>T0wF=_b1g-RMX&N9I3PQ0PeMm&4y|
zj|}}f(%g|-l_LE&*&Q=ex8oW2M(VeXw06XH<Vi<5Ir7b%yf(D0S)>CE+hn(Oq@4o9
z?G>m#pjk&pPM->vY7u#~S*kqcNM|Q?PwVg@!KWR0#*x`Wf{zXfUOv#giz8hf;Sk*v
z<^Qe3r`kk%IMUOR!Hx`Zq?aST9qI4L04Mc#Kl4c+C-qFWKd(jmI?~UP=NuV6FnHiZ
zaN5BXeQH3#4z|7*9O%d(`fy2p&jY~~o9v;EJnzUzM@Dfqozz#^;f{=OWb-C_7}w=X
zK2FVk(UIGmY~BcbutF(XUS_lXk|VWh<&9?ub;=s;$QVb)GI)lCSjIW>$(R)2C3i-6
z{mu4+Q-YHmdD)SDj_jv59GT+C`;L6z$SaOaW#l`u$dPG|yz0nnj=WC(kkE8TX0gk=
zO=obu7DWd)&YS6^?)4zxlZ9r}^PBBCit>~94M*lWl2JUez>#^JPHsW}&GvjJ_4uiB
zr=ycL+pI2Rbd3xx+njoG!eU33IP$h5D;>VjJh;?JJ>cjqC-u+fGDVj=sV`uxuAsGJ
zn(sQ;n7_IB8N`c$s~ma9k#|{oXI&W{T<yqSs|4|Tj<CwBE2JMf@)5nqUEs(XM?Q9B
zog?d6-E4p2$mfo%rIDSpK2`KHC-uk?R!?rWPdy#HdqU&Kt_E*aj0QJGznv1?z+A!m
zM+O#bc4UhqTOHX(hYSyKL_RYCQwp{_vV;EYnDzd5!JQN?9^UQ99tCzOx-7lMANQrM
zw(aHmKG}?=!5sU5BL^M%-H|_-G#oih=Q#2`x2GdV9l7AhMMsV~a-3<(k+Y7RaO5O?
z#Ta(v$IZ6B#Xg(g>b@=ZLM@WMAjm?%2XXLA(K$!*x7g=t<i+UfWd)>{9J$Qk<nqzC
z1(7RU=q>gajM6Q3?6cr!TkJ2XmiHZRvA=QT<`(-~N3J@;zC2xzX^k0U*Br67+C1<;
z`U4Gc<Yz~I;r7{T|28%JlOx?;314@la>>XIC-o?;T3c<>U%72Z<^IMzbF|5yz6g)(
zHuOg-6^q<tQgS5bh{Nnk8FpbDHY)hrkvX{qydj#`^mwNauS)Sh@qZop&ym7=qAa%^
z8Op<f_eA4Nr_ASZG2?RJqoC`E78j4gNoJC*_RrF~-}g~(Tu2Q?bwyv=YR}zj^SLPg
zxO}+P4#cHcTuyGat+?=h*c)5z;&J(3T>4aOnnutz)VN;cnf<MP_eEDf6zThXL8&+&
z$tVvc<l%%!To9M#ad|5)W#UpcE_Phn#O1EIl#5F^F16!wcU<m?%cF65EH3xP<-WK)
z$nJ3|AD8>%@@d0pg?Q?LX%EC@P3IsFuQE$>%kWhE&6BOln30F$QZX)-;xchww91lJ
zmE+Q6MAjp5X}rz$ZL=$Fvj=XomxZHM;u4HYwYXG|%U|~wq;uR=g`v1)#8VGd;Fq7w
zxYTG@z$=+m<Ff5ckmd2X@IP6C8gXe|BT_Riwc>K{%iy^y`PDB44_AoHJsZr5OLkmZ
z9tqw!8Eo^KofDVbxYUbF{kYVj@E0YYhzrjQ^XM=CD&=i8b>ospJ?#rt4iEF83Jv1Y
zkOs%4koIIp^5fDdE>Y^-5sAcw2Ss>XWY(ofL0tIYsm5_>u{e)s)QO|JB2DAcj6=s$
zU-)^3ig$KgSya$Gp31Z>6y-frt!Q~%_^)4=(cw;yM<;Ky+s36`Tt>%bOkCQ>r2|Ld
zqQ|9UoG&Am&T;7yPd&kpr~Ny{<*9h;(9Y9wS+dQ3CN8I63jS@jj!!Juu+8oomu_+C
z5tp8EaVtcgjZ62qtoXbYpRL5-^=G!(e{8e))w&nsBraPUM0#^Y7UlE69x1E*a{gRg
z`p0ERT!zMF&qw-zxD1Y`zT*vyr*4~K85B?5jr;1Lkbk@V%sav7<MKjWhR0<@TzCWW
zm__-0ujCJ-{a5m5Tn(PcioD1;iOZ<CRM?*SCB^Sx`P=O&H={4brPFqs-?7Kijd7V3
zm)Ugk!6xJ5GKJoY%LE2bTqeck_|;a=jtEYU%geO+g;bs#y4^lHvFU5u?d79_Q{(a~
zofDU7ob3D@YH;6Z%%=>sn;x8<6PXd0nQ{4OyM3cm>Sp#iad|B+Z^mU&TwagM8}ZZ~
z#Pb<ZF9zqv<-5(ndGXZ2k`d1YiFw+D7gQH0nT2s7p4cq9m{EN)e@R@H##6UZoOm<;
z_;!04x5f^8>b$&b+ih)!y&^7e$K`u2H&>Z%iObHo?25}fae0?}heO0=bzI(y%g6E5
z4OZPdWxY=ynvoAVg-%%?#HH>IyW<Y~qqq#*VJ|z8za}pH*+TFMJHDwsS~;@y)wIv!
zvNkT8<FX|#>o|p8S+jT88{%>)C$e5qdV6DBrk;;%V$Ao>`e27mx|LlTMR?QqHkz~}
zb@vU^>~?zoVsr=7!ssx;ZZ3UXPB6X1Wp7;ev3pz&F$oMvJ!2~G<?w#$-(er%ytXy(
zpH^^~NuzhxF>ci*!GB%|9$|dOh2Z+A;O!kY>G8ObE~(!76vLH$>C(8IiObozTwwaz
zY1iJ->>N|jPCLnGHtuM4J}yG$PP=#g$VE<}Vk&yC#N~^)d=r;%8QbCLmz?#2yss2?
zAJ&M!=CZcSBDfltYmB#(O}?Xh2ZXrIC*NO+fLFX<+iCw8m!IO|Pl%O}>-1Y({$%pu
z^`E%>5|^9Y=7U1N##6`V{-C#~g?R+=x48Vy_@5hGSE~h&AU@DP>(;dhkA?84&#k!p
z&14c6CoX(~A2Z=Uaru{XnUnWlTyAr+^MlO}1bZ#dSu-<l`r^EJToQ5765>gS@5{*A
zowgenV{f!a=MqV7|8Me-?X<lK(b<}iA9mVCLSE;WlO9>TR?m3T4mTmwOr)M8K@dnt
zv4q^6kb4qRJR$!}2oh2zA!!LIk&x1f)YCHgm^gQ*T{4ln+`&>xfoB5Yhj-bMkh;5U
zg0hL!NiE(GbXP)nF`1X$h|48XcO&wk$h}lmIZ{3$_a}tssqRap5(2Nk?HUrSHXt}~
zQ1F3-5L8IW@ZG@&745n=STP}$5;89#^Al1z!5b*#X(~_1qX~H|Aq^9fpO7jE2__^f
z!8f`}dO|W1QZ*ruCsM!B_`t)=goF~Q!`166lq84KpL{#5T0*KPq(&n3PdD!osF{!-
z|H`jL4TJvgiH<z$<qpmYC!}^lp5O!%l9Q0~WlPmbNaGLms$Z7ORrYt@WpnxX%(^^!
z>;t`?(!k5nJSAQ~Aq^73XQ%Kksu8<v-gOvBNTY<bN=WO3L=#ewkfsS~Mul9aexW7_
zDO7-8KB<8RwD<@n-s03ek@|(+G9j}TmTIB&7n|CcuH%1g`~%cZNSlOoOvsb$+c~Rk
zLfR*!Lqgio;Fm%?BS%RZ!+G(`Ft4|FQqHHsrxMcVc>d$1BAh8toOVt~mxK(X+Y{22
z>zI&12^pM_XA{yrA^j5aTta#zQg=!8Oh_-~PyXVjk-e1<`y_ZyAk5o2`zB=FTLmoq
zDCgxwy1jow1|(9K`UfUbw_ef=-W&eQ8wEp@17F}u@h{+nEPtrf^GYp`F?0HKCjXll
zk&qV?GAALgCHN2?8O4ZA$g2r?DIud1GA1EoRd*g4;)e(qVq8KNyvPfBsp0sYmPZ;U
zBvJ>NSSHfKBK)!flM^yUfmalrTGU!{eXHe7N=~Q46Ea&FIU^x6i(2`!g8#R2B6KMo
zo_{;-b+u}9)zZ9?Nc{&&_tN+oGxY@tS(uOm2|1YHX>(bWkdG3wCLxOxvLqp^67o($
zmL_BwbI7>RTM4n38Vu3pYH4__fT~s`BwW(VXZF6Gkd?|9{&C5#H18_>o}zT=YA#C0
zEYAA<gnYoIe?I)7S{M3%(R(`S#|im_J24^K6Y^<7K4WAiWOG73PsrMYY*g{Tj<&rJ
zTAxV$pTZ~i@_&R4+>-r5oDQ!o^B+m_`9RSv3E9f-^P+rIChrL2LNiczBxGko_9SF)
zLUtu&cOvx!0FKN1f4MX)j4}FcpNi7`iPSysbRaoYekdV_6Y@PXRYHy=<Y+=JCgf5=
zjwR%HLQW^-OhQg1<YYolB~rJ7QZ1jP%5gb5P2%F7Rn9-h_@pz_Yw+PJbOj&wdx62z
zCyS$S7hFzA@7rl#C*&I?d?g`YDDb7CH0CSLt3>J~8yEN6gk0l_tF3pH8)|R}#S6IH
z9E+0l(vJ!GDItF)<QCU1AvY58YeIfY$j^*Dem!npl49I|+#?*FyZiS9&xEI9gWKe$
z@-WZC(8xd4rr>Wq4*GXO{!#u(B;?<O{Fjj135juK=S6vk6dg{NI`nPF)N?htb6Jfu
zhM&nIhi1Dp<{^#1<BHdnp?*B?hwh5uN_!n0bog8`T`8?WH27VyT<MvVUP%eKQp^>{
zmAEU#UHKpTy7Ig$X|9xTrLikbTq)^FDOa*w$)*NZ#Fd9!dDs=WQpT0LUAf1Vvaa0a
z%DYU7C$m5LIDdDOa5-0qpDzf{*kv!s&AZo?`(1g!72^9`DX#$Wofnc;;GhqLSmnz}
zA9PbMEp3>VUD1_Ft^_w0R&}MaD`&SCR$<kZM_hSSRab5=B=a$a**)Er3|B&`nyD0$
zNdcDpjsGY4xGU9MS$IaOyHZohtU8@t!xhqQhr_iLXUno?a}I~YuGDrV;>vxevU6O?
zb>&+1Py;1d$CW%+>M8t$qIDIez)pS|&eRq+X<6Tu{A1x?s?=!cN>!sprA>wTbY?sI
z!qTc2cG-<wiMrBYY#vL20;1O|bfu{)eO>A2N;73i8&}%8(%h96t_)e$tfgYwuC!wJ
zV)Z&64YyXD`Ezp5Y}Ps1c3f^(IxAB<xYE&;XOzH`u5@zcDOaARo-HX!ntJwDE|m~0
zIg#DHarmJsjc9Eb)wipn-4uOR(e8>;xCbMr2=`K;x1xO%{cV?hqaaNE)b^Y!{nh9L
zTp8%fAXmO<kT;kHFtnC6Bc6FIy!AVi!n>Nae8H7rt}Jq8u`9z}8R5z}SH?4do40(?
zm47xAzQllO+;XHVqg>gurO@1MC$<!lKiZWs46WVvSXW-(P{@+K+veyKT$$s_YpzUm
zWs)l|yE568>8{LhWr{1WxH8q{jk>9*%Q_sMRW<MFW8s$?<TagMl6_xwg&cyJT#@M|
zDKncKCET||D^^+9`a0KTxBZ4Ia~0@C8+P0CXeR^AmHC{@ZkuK8ZhK?%mcAETzNy68
zwP<<zzt9p_mb&tdE8n`Z%$4P?>~m$mD{r~7!j-kItaIgUS5~_6p(`ITx?Fk3mG`LO
zr^4;kL+`q>+D*OL`HN`y_->obiodsf-<1!z$|Lf~&)rmbV|yX#8dpAX<x>XmroxX^
z7fQ0}Ggofxwm)~}W*hs|$!r$y9(%nj8z|$-4p%n1vdNV#u5>9@@5NKu>_rWml^zOj
zb!8jZYinv;^4o35-s#FNE{!XDU7<-`nuK?A#iL=i-sw)OzM7OW>3}N-UAg4SWmgWl
za@duVuAFk^h*Exx-Ca4#eYeMMUpzH5hdbfQy`@VN(3qpmb5FZ+#+7rfoM*rnuXom!
z0UP+z!<KBKzy(*>>!MP!`iZ=^I@lbPV)G^yUUB71SH7ZQYOIm%Y+A)G)Igc9m3y0>
z%4Q<E>dMcq{KBYq<vUmE4{i3nD?hsOlPf=P)lOtHt2EzMcwHqc=Bpbjp;as2sQb3m
z0{yD0H(mLY&hM4?n=8L74pY`2u58|(lHn+SF}7X#*Ogn$pJQ4th=%{BSTy`f)0Y1!
z&TUs}?XmlxNevfMnT<{$PPpPSjWdBKB}wmb`I4!4U}S1Z@g(Kj%{mJ?y5bWUN%1A+
zm8GS*@y(==`W0=y$1awX;z@ZdDOHm4zofi7q~+a7xhE-UNhy((l1V9*l)I8rE-9t?
zsj<gKQU<qZNhe5Bern$GF<-qhNh!-#Up)@QB*50Odu$4@EZAe;o0Ryt))kWSU{dZ=
zxO`IXPs*A-_5-TAu^>zVs!Hvwq*PAIsqf5(lTtA$OU|Y?X>>zjrDO_xu|DsSq&%7w
zrrBjDvpL67N5jFSq$j0*QW_*BBPp3l`EXKU-K2z)QZ*^nl2Sd%U*D<jce3BU26_B!
zs*#kMNvWNboTSuBN>)<BNtxRqFFPsw_t+FJx2oA!du(D(s^hX|xk;&`lsutaI`2sM
ze_J)C(0WJ1)W#9>l2T6%ozuJ}s|}NqpXAji`<bLflF}$CEtAqJDbb`9B&BIG^-(zM
zbavxp>hrEiQi#n*N){^caUhFf&@3s<)mRLn7D@Sgk4?a))=9CG(jh4wl|5~e(oTW4
z<UiLaHO-^p_DT8pNO(aYi`6HS(kUrVC53!e_f<;ewBmd1r<1~us{5V|jeo9D=cIH=
zO4p=xOG*!=?b)O-C3dHC)DmzaDb358-Kq9YN}r^Bo|Lso>6?^(44%9Uz999vr1Ve9
zoTR*#lmST@n3OR|8Jm<rjG3eiPs)g-Y+V%^!Xc9KV|qzXyYSGYwB1*jcfIfh)wH5(
zXjoE6o5Y(?@<p1V_{1ZVGKx#T*CxL7Ua8UKcWFUfvulfSNg1D%SCcYb2~SAM%SoB6
z@WiA{QXofloT8LZOG@Xx_A81{4O0~;+-ncoYxmq&NX`r{gfeU<-O{DSq`meVd+pgt
zxsjb${!k7DUgyFwK9jPPVUv_$&y`+~l!Zx|r&MuX^Ev&jJOT>8shIcOE=jzIZZ8^_
z9$2RE%A~Af4DTyko|Lzgg)5TsHko^E4o7d0zQeuAWmT=Klk#3tKH_F?7Z#=V{iKY`
z%KLy3sKAE3HmfvXP0?5f_u8K%<<q2m#%;2%@X^~P|36)ql=VqDnv`Qn*^m^zo_HU3
zK~gqS_^HfIiV|#AV2h$#72U@8ENb1Mz)nSXDY`o;dlcBKC^gJ@AVlQ{)DQ<1{rQO|
z<Qz)MVO1qQ!rkhYAUK|s6U+}uNhIYYb3#&nPs$%jIh~X<N%@9ZjvhXlb2cgGl5*(P
zeBw8n<XzrtpHIpKZv57vi;7-S^s=H?6#YWcFBSbtQ3`)em*zAgV7Z!<UljjZQoc*d
z_X_{4=nsnisOV3MURU&nqU>Ae-R%GN+Jmn(BmOlhza@oL;yd)F68k49e<tOxq})nM
zvsd$L{m|@h=FfdL`=;-+!*7KCWv`^%PD+d^cVDV|WS{LMW!d7~qsdzS4pCNJCVysZ
z4Q$mkcr;iFdo@hmXZsY^73I)|0xS2~rUHHq+xOWQ_t`i1*#Qm3G~~bD?0@@H0~Oa$
zMS(OWSwhjse!HZGQX2Mb&u4jdzYPs#H2mPfj~<lOaF>P!8Ww6Or{Qi5Ei|;$aF2$2
zHB{E{h=zWis`qJlKtlzE%WJq_!}Ug0SC`gFA5{1uMV;(c6n<DkMI~9ONNnVOoBT&L
zJf<N>LoV&q5Y!OXP+LQ~h71i^8uav%nHu;m=?_|G)X)%8nANHp9#^=UqScG|_kWsJ
zQ^V~2HcKrH8{1?MWUJQSubJ$~g7lKhcQ<CWj)o^RG|<pc!!SFet_F^hr-aw+x9ch9
zpw?CEYdE~$CSYs6hQ=D2XozTNr1XEk-;Sz|Y%QR+y@kdByHG<@rH2DGqtg!9RM=d}
z6W2RnbGTL-T5Fi5;Z+T`hBg|8YZ#%St%i0Qx@+j6p}mINWkXMEct%494K)|*9Tn$E
zMJvzB??mOZ@}JVM<?RpwX=e>xHFQ$~T{Jv(z<#i9_*qrWUaV6aOYK?tJvH=F3I}QE
zt-AMBlp6YQr4HBxEd3PoIYs+x7=6GVpkc-VdmuHd;RY+s)Hy`MP=%jY!Y?Q~jEh^|
zPd(o~5q?p_NDbo^zgl_!C<R{9P_;$cov}u17^9eDH7q?~kJCWQITq;z4HGp?DjI8w
zhL<%=R`zq~pJ%2f?x6H5+$>6l_LD#V-q3Unb2PlBfp~^mk(nB1Y4|CvkY%<4Y<gY8
zziugl`AYH)Mdxamr@+y2RZ~s(hS=pz4U04sdeGE^#Tu4qIIrOX4c4$s!#3_j4a+sW
zrQt&jA8GjHCv$~{RT|#W@V17P8a_Q>^VdBKtM6(cc%Sj3VYP<$RCWCPJQngNB}?9s
zBv_;2V+|V^Lexnm8rEu9r{Ocz<&Na%3iAbv{P<?a^%}mLn7;ISP+yuFZWE2X9^9hn
zW<^=0z|%uRTQ!if*A5LkH5}D&Ov5e>yEW|7u%9EguDwUe>{T5p%yRmGO$`SW=a8ZY
zxr_5M$ULm!hz5SgXi_{?<!j=PtL~>XoMv(xRQm)sY2Vr>6{V_`eQU>NXlFE>)lj3q
zeokp4sPR!~<lfpBHC)nA$%D!sT-I<!LtH~b!xtL9WIoYwL&H}ZzUF)xqLtIX(eSN?
zdi~O`X}HR4RysXxf0L0<W;{_o{fl7w&j)PM@0so>-#7h7#(?TIvOzk#+!IazH<13b
zhF>(?)bOW<U%5I@rT@+$dS_g7gTHAYt+_no502h3gC&;V^e+v!7~T!iIToA#*6<G_
zit$OYt{EKVKZd1-m>MyEM~EDU*>!CS+^L@XJkQk-@SvCnd~<zLOHs`Oj|X1G(LE@i
zlfGnRV?$Nh>Qlh<z+c3%Jm@)~B%6wR@IMbk@$bH(r77@7rd~pUl11{R6e#UMba*Cv
z!Gki)|B6|mNaijD%6V|N2lps^ucGA@y-(3U=4$MIzXuPf>da-SD$9ea`j7_?D^O9<
zivd5I9`WE&52|}m!-K~>sG^!Os3DXY^ni<H9kd^4m!9rHg|zgS($X_M2zgLdmB&4(
z=0Tri`e)aJq{~Z$SWGRWrU$h=Xy`${2V?Wnvpg8}dKUlrs@yw0Tj>vbP+Nf<MRPr<
z<G~XOAFY!zxUL6z9uU{_puPtU6s8P0`~V{*Znrq=;oi}R2aV{EX!?|qjiVkEc<|qc
z`Hekj;=zLl?O*;4GB74q%j6WAdC=U0vmTuDpoIr5J^0vzPdsSlL2C~tcreie+k-Y-
zI}dt!(3V3m)F<Th@Swd19Ta}bgN~f?q@33#=5+GlNrl&z36nFdOt@Q_@Y71{8AaK*
zvj<%i?pnm@rogivbT8tR8=v#Z_?(^-a(a7EX;Mx<51yl1##@>2b%gtR5L_Li=KdaB
zpO7=qgFzllD-#~z0c~hDA!o1$Llho8DQBn$&wDUlRbNn)GNTk2rs!}*M|kj}0wWcr
z%;rwfmlPhY=$In@SP#Z296o4Mj6=|dNgllH!5s2EnC!v9GT|8>%=BQ22d}8=R7IyN
zI?aPu6`)w@2{~;h<t&|@e^;6CEDvUT@ae~SlV<00n%yVnywfTAx(9D~u!t$$gSj5e
z<CGD8(}VfSR|{2@UR}UYDPBlGV@6L*>7-cAPSK2sIZHfPs)Uz$@I{&MyB=`R<sQ7H
zzzRj*R+Rje9;{OMogz;2gZ66Gk$vA&;C&B1P~gKN{zo3HQTT`PITZWUgU>wJ<iTbS
zK4)N0$YEKh6t4B)#Q4-2tyh+B@PMJR(F2-F53uhR54L)6jAl&8+2+A^5B7U-z=Itg
z>{QIXs^cz2_js^d0ZukU#Ri?Qj}bd5Cp0^s^q|6rJUFZX1CnA#xNDTEUI%Tui%d!$
zr(qtPRE|2M!s(R4rxj%{`nKG}90uNb4=#A{l?PvYkU24Q(Su7K3>%yCYQ4~vuEu2#
zuFw@8e5si0?QAx+n=LQ=*qY!Q55D!_ng`!8158ZGUsXz|XMTgyq~Ei9SL4BPIi#%q
z#Myb!&x_~0xZ%Oi+@xN#^5Pfz)~Ncs2Y-0*s|UZS>NjKb`q$DH%r$O$@F$a)7ms=I
zmj}0)JiRFE#or!G3T7lca6R}(VOIZTekj7X6^JS7cn~k*KhRK1dZ2kz-P64AC}1h-
zRg`>P0mBPl5y$kxuke_IHU(G$s#;9Z;)?#y3o2(*2~{nrXemX>EUkce0R>)ZuHVsf
z7kepAxgyECy|||c-|NMF3YRb9-0#J-A{#1r@n8}EAuk?QxT2z!6s=s;`iK{gzn3z*
ziWfmI>Uxo<n$o?f=|wGtGrY)DAXL<=ssfKIT20aFUer)vp0Xj!i)>Y`<3(73)J#j1
zs;zL2qPa!<fh$r|e!`2VS2rW5SHv&yqJ9x>pg=<}@)d|E+Nh{Csz8l~TH_*469o#r
zXj;T+ra*HqS}1U5MT(6!T6@vUi{4)FXR_@@8wJ{W(N2N(UUXBSgQ6Y1c+!hb3U^kN
zy`G}w3O}Q0uOBoryLd5vxz<&2`pq}Uc~;@>iuO>nr=oY{`%ts`ebm>B%CXdMrRyk7
z+TV)-UYz#gj28pF7)0Z}c-f1=UJUVKq8IDlNb6O$>QFB}*%TV>#q(ag;KeX6hI{c6
zjlb1;glb~zNCjS0v~DbmoKcLTHW>u(AG8U^crn(CajN5ZFOF>r<)dn6CyQW$k|dzm
zfrIvBFQ$00!HbPvyyC@FFW&ZIB_q&_SG}0)#XK+Gx;JCG7c;z=>BZ*y+20+sXL&K(
zi`Tq(-HVIoo3@mUQ&lqNcv1Y3jOmYL{B@A`q1%rgvfuFH>yjA_4%zd)Sm4D{FP3?+
zkUM>3{+nJb@}la#rkl!UELKXEC|c^S3@YS^PaU$Cb7;j}K^GmeISMITISRphLo!!+
z@sSs6ym-fpcew;!yvK6L{?Lo}z4(Bk`&m<p%{*jNEiJrL-F3+Rn69J4y;$$Xl|%N_
z`HepH;xjKk_u`L3_F69vUJq8Om@)9vd{SagiZdeS=$q&SFZO$JK+SH87kj-}^+?86
zFSaSLoxAU_z0->ws#@%@{m@~1mlwOeXnWY+<HfE$O)1a9>ON-6!}hQtnUfCN9EkX!
z7l*t!%<wpDAM@h47mE+uN4z-d#oEL6i={G-9=5+bY@bldPpPp^DonK;%Q<YH_2Qft
zx4npYao&pyUi{$2kMyJ$m%RAKi*LQSOaVLeg%@Aa103#~@Xt?W7wa4%^DEBFi#c`*
z-?P{#Td&cV=d!MPam|bGnU*JKk^dbt*kXh7a>S+p!Lqm0e)8fvbGR3`nE$=_*^A%3
z*p#pT!p%4(iyePc;8!*D9ZtA&=npS$dXZbV5l1BRPbEYAw-^6-@vj&EDfzPv8gX0>
zG;Ucg>BHx<svWT%FXCQQ(otDQ!VA}naystTk@P~-5ztXgN5K)>!+(2qm^!>VbRGG;
zAm6T3mm{{J<Czi7SuN-u9eu<m@awRYK-qP9ncbtsb^K39X&s^?O$V7Jbd=Qbx)Ls>
zV?+1olOt0aK2RL!D5K*prGd;nN9-qhM9b><QniwE`-pvyj(e5B!#eKMQC`ObIx6V+
zwOuJ|e5sQ;RqyABM^nZ;s3Y^J{qpsc{*&FK52;?hzAgX#Uv@<uw4Y`_qT^BWbwqSL
zrlX3EY#m`8K^^Hj9@kM#M}`int*W~3_^ElOj*!As+o4C43JI#~sG+0LQM;C!W=$PK
zMpvaUo9Mu-BKa;y?b<qWbkx<6r)<vEQAfuUO5pD6&BrLqIUFa>zV&p}*U><=KKW~F
zTHa9M)ju^~aMY$)BOOs4Ep@cgG5Gtm0v(NYG*Ld>GopE+j;1ued$fh>MS*5In(JT_
zm9x<QRPvb`w6%^lI@+qq+DiV8G3~heeOvbYK8*`U;f^|<)G^41!9H}-@f3@Jr&$;b
zIxgzCq@y$4t7Dyx^*Xxh=%(XM9dmvOKC7d<j{Z6Z=;)zi#O)AEA07PN)Kf<<#p$hR
z^*uV7eHHGf=yQrvp8P_q-as7_bxfiqoH!TjuFw!2&+B+W;h{Q?9kt0^ceg%sY0F_c
zhAaLE9X}}ki#kRs&L|z@6rk`+3XIk<rie3E$Ev$^HjOXhOrURH&LL-N^Q@P3yrKjq
zD>_AotCW*YEs~$6<3&64s*dS8W+>)NMc+_#mX6s)l5=#tR)k;I@$v1t9ED}BV$M@^
zzK#V&G7ELoo}IE}k&eYWmgrcj<9!_;=vYRV>UdX2-!7SNDf+gKl{!}FxZF9j;h#Ax
zUv9KY$2;_4g-mit+jhwu*DbR`x6IW_{yjy>p@t82e57O1Xk)F8H98)uQT0>R`Y|`l
z%Z*t5L^18(GCtGsxsHJcOHn8LcHS7~$Gvg8#0DK3b<8cu*sbHYTREF_Y-N<L4sF&`
zUpBTV`qRz4__!uyZqu<{wG!`8V5g2<3Uqx_$lRl2ua1L-p?wTU9jA2c*KvT6-!w$#
zK^=#5999BHbR1>2dATb2#}wzdjuSerQLHe8$6I_{7-DJseWTN=l|Q|6s)x?#VAEM0
z=X9J`{0oZS>GDUrD8XeNSC}VtXa>Gug3|G`j#!1zS317d@jb(g*`rCuH;P_U^jjTQ
z6)1PiW>djy#&^sl3iDdok2(rN8P|3E#58iuHd=?Qv#oC^ri3!s^b6Aky{F@MJ#|gS
zRrC)<<2r8Y_>)1tu4MN{>3=EaEk!B$w*vp@__v7jpN`uK#}svn_^WPbB#Q8-{q!Ew
zw2xlT@)+<MC^S-ocKOWE2@Lq|RFB!F0l$HV3_NVWG7vBT17!^Gl1MQFX$DFdC~n|?
z28IUHso}a4{JMRKCF`}421*(DpmWCdw&^o(1y5B-FKwV>!*nsQW<xGPSp#<&c)-Bd
zBhxRoO)qEQ9s?!sODVbA!0Nlw-;D)F9JB8=aG#O7B$X-#?k~daGtw&<;02He4SbWH
z?)xj~)~#C6KqUiN2C@xQHt>jnkb$ZO9yRcLmyDo+bOVnW_-=EkisE?VLGovmOwTZo
zX`n-m^yX>ltagqCN8JcMZlIchS_UeXPp{62Kb=v-KutCGpSz|Hc7kmumh66a3Y2q#
zynGZkP}@KQ0}T!27|2!Aah}xc7<j@!vo`7H3etB~N>9F<Ph3}V@(k2dfSmdYL`tOR
z8;BSvFwmG2DV^TPK-9qaMOhR2q_bLkKvZg_zyC|HW3TikYMI(h)9Ci54AkqvW}Nkv
ztmXz<7-(srl>s*y>S&;~0h?0}XHlk&lAM0b?w~+h1ML)GQ+oyKZqkT{)yjU-KqtjH
z)h!%s+HB$A=Fb@DY+$~D1qQkp=xU^P{i_DL85lJzW3-X_ZvU)-?gn}o_;`0-F9W>|
z^fd7HF?;tho3xLCz6Rd;wb4rk`Wbl6Kz~Nmar?VtHs#5WAF~G-$T)5fG|=?8J;=ad
z14F3fxIIGAp^CElynz>r@Gt|zi|`#iFB%xBIMg{x8N)7Pj@zt`F)-G^IC|B<1OpS*
znhpu2^CDi^*R@HEd2hH?h4fbpyv!&qoj#d?cUSrpMQ095CuWpRH872XPA;|VgB(_4
zU)P;(V1|L224)$UZQu<9JgvHBMgAO${m;)!1jMf~{#WF`t|&Qk4e;?1^AzPhYs3o;
zylG&)fei*08CYC4w9LSA0s{jsRav6wQbk#9^+br7<ShdqQK5kq^s|ALj0!$mCNtv$
z1FIB%$H2P^tTyl-l~>D{cRZDX-d9Y5q04hWRQRjQ8e2J?kLeR~ZUjG3l;BfNO<i&Q
z+`wAJT&L*3&(qjSy3xQU8s@{gdviA%*kYiK4{d$eYG9jzn+E<gu-(8814j)UGqBUZ
zE(80Ok~f3;ZUg%an8Ql$F|e1@sg}u|Ma_*)r1S?uI_Uu=e9*ul1;{z9z!9dAM^jg%
zj~h6_gka!X11AlfVptwBFB&+l#LgHvYanlGX-YD6oKws%&YI^LV@`^5L8X)(S?QMy
zTsCl}Xp}D$STHa(#FqxXQq`{&tzRf)G9O-LVo{uHDx8=Q$o$^G4~qGtqCXq>Ndb1b
zZs0}{rt!ZN;a?T_jk{HWKZ^LnrfGi}xMkql(kynb-!=Vj=42lNKCDj$|1t2df&UEL
zHV`wQ`%-J?6!lFi5I2xez~wIfS)N>MQ$|yg9!0&1lDUE5!At9^>QmJ8!LLBEdg<i~
zQ}JKShev&QOfif5@IN2Y6fWTdd?=%ENgqlnP+Cz@lzsUDQPzjMe5l~VgFcii;@|7T
z-3s4R#HrG^<b6JrSJnF!eL&H|_YCSe7W6+<Bw0y;hZU`;=(PbUnaT=3qUZ*H$tpes
zeTc5ks;fBZK2-Cey22TXX8I6PpsJ#eD@r}(tEM8bh7YwBr)CkqmJeA9XDb>m;?Ihu
zqBqBfT*awV#D7A8PHxFOAL=PwU(qH$H1MIJ5BaJZRWzb#BSoo=ej_dLp>YxC<XN-O
zho(L>Q=FEHHdnMok<7y4{#FXNF5=j})PF`))y{|ZK0NC~cON?V(9ws7-->keF^yx~
znn-6Ky6{(k4^R2<v=76-&iizG_!+jA%sh77em|Vg>b*^Je=C*Q)dzx!pGAJDoEi4z
zo-fGl;X_X!`uGreIP0#ZP5yYlMK2$E`>^QVOkx&-zN*)bg4}*SJm&*Je?=!X$t51>
z!}VqvEZqt-hWIelhq#G^iRXQIfot?tMgtSWXq6AI_%PLn5k9==!+0MqRt=5xVUz-6
zeRxR$GROEZ+J_}G8(lkYvs(J`5Gl(zYJ08G9X!E@i9Ss7;bk8t`!J=b?}pB{bKLI#
zYi_xpTT*hG53l<0hYvS>nC`<2COvLLA7=V6%ZFt?Ecaoy4|9B2%n^Nf&4<^0nD4^^
zAKvgG@nbH_Tm|wvXU;1EWG-a1Yq@XIQ9ge9XA-wVCiz!;g-5N6r2Q||k!7h5JR5U;
zUF0nvR`~Fd4{LmQ+lQ4tyyL^WK0Grm_s1SmxpU?!A4bk?a{8xSa#s8Bz7HSx(5OP_
zJx=qd+_;{ZoYLq+?%5MIg~{*Ox5dXkeB#5W9D<%XVZVFZ<k$ECmrGI4hhLig3iCeq
zVJ)|R(>!*ma64mz4;y_r<HK1WHu<pGhXXzw^kEB=zYjZo*yY2uA9A<(u$}AcLz5Hs
z<;^+g+t(TJc8hKb@AhGj5Bq)CeZn4j!rn`pPuTnDv=jD6ibG*?E-!C>$cMu|9QWab
z4_8juM|?Qu16x^+`tZ*Qo1j?x!kNW0DSy(3Q$C#Lx)jgkh;`OS$ZT>ur}Rnt9DC6!
zAHMV90#}*ZeE5PkFRgirVPBAY*@v$m$z(ha7~kZ-2~EEA;VU1w7T=QZ!#CV4{aR4$
zeB)fU60~|E|G<R2tMtI~n#AAx@PiLOF@}Bk(T9879CjZxqxq#e`9IpFZ}{-D55M~G
z8v|)W<Y27iFRV7sr5<Wy_uqYJRVB0Kpu(zwdjC9<`KJ$m`5-1>;+7A8GaH+*O#I`+
zzdrcPl-XRP|9mi;Hu0Lc?ZYGIN|6)urGA1r+&c;+6m=C%D#}*PgvU&Yadc8$X){c`
zXw~aoC9}<@h^aV_ev`*h-dS8CVB(K>iBcwtnJ8|i%>JK=xzlp#t27fOOq4Xyy<R@~
zV<h+M4LJluUTsv`#ECPdif@gSF;UjUgC-s_ahHj5CMu}WIrQBo?p2ub_n7#kRIb;}
zA^$!T<rV*aMITUf!idz>W|pgkxeuGDXyOqQkD92YTFD=nmRs3`y*{#VtTDD;{$q+?
z#Y9j6Zz+Gei3}69O>nqO#jIvx`K{E5Arn;<=W#_D_GDI9trVzXqNc*N6wOjJyQnp6
zf*FirIVN&V)KMDPeb&^xCyH=g6SO~1RqH8QU(rQ#N;EW)Zz5u%5%Zgg;U=Oc3QRm@
z;%O87j@sBnTNCX}G%-<VqN#~yCR&<kWum!>&`G<|N&EX+ttr{U1Yhd++UPKGYr2A^
zX+i&!_T6u{+SbQzV`9pbf+;8M_9i-*=xE|e6K|cgE7fexXKwJF)LY9HRL?J{GrXXa
zi32BXf@e&0rn_j&xKI}pT}|{h(TB|A&AOSGzO`8o6VGy4FXeNH?j}gDp0s<K=w-rt
z%HFb|pz<lZ&MEu1yR^P0o-@&3&8VLVzUzwbY8+r<pozh>b5DdyI-jx!nRv5T0Z*_-
zD@1uCGx<Z+=rrJYCH8`ep{H!V6mkS3*2L!~)|wb;Vw8!QCT7v9<IP?&G1kO5g-0to
zMo}uHqsG$@CSKu+n3%}5Gx787Rxg{FtN>r#&Ie!68x6}xq9>zMO-wT}L;1PW+xDx}
zV}h*<9&0+|l>No!C_T&<Y0-hRP0V3P(4{6`Gx55K1tu1nU@QIb2Dglfc_!wY;5)(D
zmuvCyDch*o`o9&e-ZZhu#9|XmOnluwxc^jYIc}V?mzr2+f)A7AvhrQze2w^pRk<_Y
z&0S&QZN`s@_e`wha8tvp7#NEhf88wNJ#D{Z;$13yxb>nwHsv2UZNG2g0}~&aSYzTt
zF2QNL<!PI}_!><<KlWp8Jrkdr_>6wL*=opXd;V$rp<Au)Zd$PBw0-2X{r72mor(1(
zE}6J&VuOi|Cia=wZ(@^)%_eqoaR-O*I%97!vCYJG6V=YxTTP4}R**ZgfbQMFU4K5(
z?~L8<jLikwWn#C9J*wAUZkgc)9FERpTutt4A24yy#3>V}O&l_D*u*gt$4wmJ);Jku
zIcj3v(*>K~vL~Ohmz=Rrs5s|BoTOoAYz|6~ojzlqF>%(!c@q~*oTJ&dTLsSAd>cDk
zZ=A6iS{Io;YPM#T;q<^+`-+J#O#EizcN1Tl_{zk0Ccfv2nE1xTw<fNtc~O4ZumUdP
zH4}GUIr`tGW(1#CZ2g0YA5Gj~AgNgW$;5Ro_gR~7TcgiA9ZtQ$<QI-|IXd#J{VRiT
zL$u>rd*#{G;{IXcriuTU%uW1h;x7|_GvTXs<aYRYRjXSx;ABdedzt(6@k{yts;zN!
zVe{dW3ixLEm<fk#an|Mw<++J2oV8sON#+(m8u_95;qjxYACLRt<;`DyRP?9Lg|Zla
z+~dc+e)#<O{j6PUZpie*?}tTt&JOrdN=XtIQ=H;{{7->2MN24JQqkUx8d2=?AyrHJ
z@!&aI6onsU6ez1G`FHtIt_a_)z#D<)iM4t6`SE}s75pgg$3-oR<$eW*=Z5!xSNNbG
z5Bc%1GN#FQg<b7X&N=&Jxp3>jRV(>X*^fv3c+`({KQjDyOo;^*t)eI;Ia#V=M}kbn
z4Ea&GDxcLh=Tb*otNBsgj~qX8{ixwjoo!>u_M@gBwfx|JnnNpU<YcL)&8w=0{iyB7
zohtbUecn2%sji}%N_d~}<Fq<Z#EyA>)bpdh9}WDe&)<ehW<wYK&M5h+%A-e7KMFXO
zAHDr(>_-znY(Lu2PCqgq4>k3pnIDH%>clL~{b=dOtbJ)MRO`vt8j;ybVS?6vl%AX7
zwDqH%AKm@vp_<zJ(ZP?7MSA!Zml~c_O`Yg)^*#A1Kb|ha&nVDY(JqR1^`l!+>$3{b
zq_V5?7njNAa6J`=I{Wz1*N?%f+Ru;Y{OIq;05y<rZyL*U=j?%gu-70zhCUwprfnLP
z+?m~wA|<rv1wV#yeT(DK;u!A72tQf{&^mw@{TRu)Sm<bBlpinoam|nK{21-W7(e#-
zvDc5WevI?uEk9QHG2V{}ek}CkO+P03G0Be^e$4daWj`kSG1ZT0eoSEi)C_&wBSiX&
zAIDd>WSMl%epT_w{Csfk`kvwGjIo!Z1dGnuv;3Ij$7_Df<`8|WetOPc)ieCMA8+`v
zfI3G;XD@F$*N;`po6h%Ro&u$MhFCp7$>mLR!=api)1o7zi~RWJoW0nO{Boi7&sAN*
zknm%fVlMaN#p%(vW<)7m`=w}y@zJ;aSn0=FKh{y9AMg0_p&uXl@h+pwj}I8b;ZX6<
za^LggeaiGnVH)2sFPoU){&CSYethi5XG)U7pZM`9Ju@ViIQ~!CyFEfTdgKs)t^`J{
zYPsHz4SsC)V~Zaf{rF>2lzM88i*EAc%82OI#Wh)7QaiNOk8OTzr{+Dm^wkbO{yS&y
z_M>>W?41g;x=T5eVE*U18+(NIsUc4Iang_dejM=QAa}}hRgY4vT<DO(tR7b22=%`h
zW%Zb9rND8;AvmQtXZ$$JeaDSfJH%4IcZf~r7*2j%V&tr7dESo;ezfmfm8D0Y&}G{1
z2Oa(m*R*fdFZ?KZ-u{Z4rBCQfMQ?^fUn?g09D3qsx!*Duowu(tiayKDJ#T;S#}ABZ
z3n2?X`tcJpq=hsK*ZsKR$KQVZ<Hyf_{Nl%N%&}@Y+Mc(6RkL0*En4C4v_Jf~sj9d9
z_|p%W5S{%>wEDTMzqn=2+gt_G4n4!g`d9szK4cEJpj)`@N6Zh`kE9=tA93Z?1cUj!
z&9(5>4i%1z9(=AU@$)mInw1IzkCh6HCFgD8jpuE{g3m%R3wPg6GcAm$n{8RB-7T9k
zehWv`(5wcm)TS80C{o?o>g^FKVWFgj3Kkx;P|8AS3-?&K*MeBMdfqN$p{xa1_~*RM
zLieU!u<x=^&O-U+O)FinStavsE9H4|?z3=fX7v6d{pG1}d@9->urO_CE=#$w(T6NN
zY@xD+M=VsdaOl(AN*2Nw>|3=%#FHjRzv&UCoiFF>k6L)lLi)0%RV>Wv5zep>WL0rK
zd8Z}S-W(exe^<|(sumu%P~SoW3)L)CxA268x)y3!s7dAYhJ~*dXtgY4S;)4)RKOvc
zE8|~U*>Wj&lk!`S3w9kEuQ1(6_i`7LnP*|!*l3Ms!}Tm=uGAmx8Q$1C^uw=N4K3tb
zD74VjLPWWjY6~nhQaEa%;n*k(cTi&s{nf^AVxjnomaBS(nptRWp{0dZ7Gk5KNBUMh
zvbbgo3&(n<rr+9v&9$f<YHy)Uk>++5+A2K!LdyQ3LsQv6e<j*vX7ou5oh<CIu+zd*
z7M`{+lTNenjD^k?hI2+1x>)E+Gb{|S(9OcL7J6IgW1+iR%^vJ>!R9nMubxFK*vrC-
z3#rhp)GI{V*FrxF&#Bh(dD+)<N|U+af<4f}APfKY2tTjrV6H{a@K6gwlqA>mlu|<G
z3yL$WNIw_lMGGS>Oyr_4|66#;!Z-`#EsVA>#sU}j>EE(Q$6EM-vo04RHo_t8qCLUF
z&0A?SVBtFknJ-(IY~fW4(=AM~@QQ`M!=<Ou;K|XcoN})a&1?Ky7A~fyL(7@vW?1->
zd!JjWcBn--G~2=)3m;hc(86mLUbnE)!YT`ISeR>Jk%h$;=5d#eOy$fsEzGyDz{2k@
zM#*6+Td11Ka662Q(w-$2meP9`-nOvJ!qLCdmRopB$qc@kc2Cco>)9cG&^&h0CdgA(
z`S#|vzi2bpy<_2B<)YOVK0BB79=G9~=-?h9rr-Cu)B9IFGduc`g*DuF7B*P;*uvSK
zIiFIPk>4xyiR#<`qRn0Z%B?i#*R0PitfgDJhu6`)Jwx16q?6R38!c?IP-k*<vxO}d
zwpxgfN$uHf7PfPz-%MkbyL(N&?1}%Rk?yjv+d`QD$_B8<!d?r1ao1beXJNmE@3~AC
z4p=y7;ev&W+~5`tTR3ImG;<MmN>1pwg%flL{dv(o#(=CHBG~?G*0nj&ZaE>AlZ?-t
z5GBu8xDlv#&H`8btir6)w)5Nt<w9gG&Iw(zaGAT?!q*nAaE{}mUs#~PXBTaH>`PjB
zF%>oxrowNyYM<wRr}Tfz6ldWYr}=Bvo#6<$vK0H#!cP`{Q_1!^$F=Y)J-o2w&lY}R
zlBpdcrq0HHr(IIYnI-BjsrkEwKU9~SivG!U|2K^}gypx3_TS8+T)O~@2k@_j?|O$~
z791v!a-skDDZnJqJM`--(O2{JxP^oTZvc8A)#@?=dxVnY)J~-%EdWm-#i6Mz1V#Y9
zKq|Kf6yFTMuc~ZfR(bP{s1*Py1t#<e>6h&P1&|g<<(5)PtV96!Ub0ID@Y&5Y%5ap-
z6I$s2B!DY7(-6SfKhqd^%uZ~*D}ZtVWCV~Iz}-|5K&1dGD?RrHP(FbB1Gp~$e!Zda
zps^|XfNHG}08=`v4+ij101pRXj*GI8Q&C|8Rv!uA(EzFh5Dehz@}{9nHp^oHkkaju
zOLlqy!!Oy>FQs<zlWYy3Y5)xaXc)lbfz-!Dn4<?!O-;GFqBR1j89=Q7R$a2`ldJ&V
zI-5m@5N9io?YLy;1dtm*y#VS5P$z&V0>}%1U-14Kl3O<b76N`E+@bs`Sn;nkMi+M$
zKjrfShy+q!kXi)LD1c}HO#&!Xvo4@dRF1lM$!;6~DL-r8WGDvEJb-U+rZuC5;S}eO
zOEy0r>22z18Gv!wCa?o&6F}Eu=vEAE185h(cL97KK>GkX1h6Q8#Q}5-;7NXq4q#*e
zodS3&fPMiy7r@g2JQKjP0dx<bGsS+-dV6HF8>bl#b)i+4?XHT}xSVqAh`-X<+9QCT
z0raB%m+j$yrS%Sg%sv71rH5;WCJxDEbyn9Fq%&WNzSJ$de*l957#zR=W`o($u9xkB
z0gz8HB!Hn@sQ^X<@O&VZQm&1Tz7PPv4l$X~hG7AaLw|O@nKt}#>f`L<Ti#LZ9>DYf
zW&|)gfH46~2w-9WW0f<fU$*&GZCoJr@jYHq_98AnB|3@T7!{osNPXXXIe^IlObOr>
zRo!~oo*KZ)%Ql->iVw~`d)a=KQGGd;X=gHkdxho%@LB*rUAAWhFguV+u(Ytkt+dw}
z9s$e`U_k(L14v%BS>`Ec5|q7?sxD;Ib#3u!oiH~Dz4T@P=~q%NT@t|30QLuPAb@27
zEDvC90P7fg0jvn%g8)9Hdudnz?*_0sfKSFnSE<!`hu*%D3hz??q(0qP-V5M;hPOYJ
z`UWk~I;+-?l<=AWK33rHgjCZ0gu6KK|Css?C@YHRYjhFV$uoCm-dl2zAiRKryN`Xq
zf^2|Y!omOsP;wHGsFH)^Bq|^|gG3c1E20t<R8UY5CFh)@qVT`d{5aotPM<ortGlbK
ztE+0l3k_nH)x>W`3D$@X?}$<B6R{x?UngQqA~q&slW5vZb9IPlchxVs#(U~l4An_l
z-?opCQf8;SYIgh7Z<y^9u{{yrCgM9WYUvGiD`Ra<oR<<(MpNvbx`X@DA+_AVEYh8c
z*hM=hVn0<%#7|<>uY&%Zh+pWvss8GACt?r7ZD`iaxphhZ8R$>SvNsX?MCaecK2AL3
z@8E$%{E>(wi8#t=N(5*8^1k|4BK~C9wvVuI;Gsn5Q?d>VN^rb?*0Ds4o0peOrxJ0T
zahK>{jxTnIoJ<5MOSk>W>`8hy5$BkHB$StMJ`ooZktjiucp1Vax^W`@OT^_wTuH>8
zMBGip)kIw5=C+O9=ECRYeP(|2dLnKl;-=7?o5e}@q@~<SM9a1@0#*y&QSUL#=@0Yr
z{w=_(Gb`U-6DOT_$onS|4=C`EM-J&jv5LGBo{{h<5qTv1J2~qq>eC_ew7^_lf~b;1
zoKHf22~7J7yF@8r!y&JL1kyc+JW^SLBB7v!LK0L7nuNx8Rab&8!H{4}*xN3~+XhpD
zB_Vr#y~i0F0#i6Sw2~u%m<tI=ellSR3XnuOQ+$452}LB7kWf-WQPEUf&|;E*@4<5E
zhRQ<Yl#=kQgfjmhzqG(74|(iRRzf)mKfj-cJ;!zOC#oPJB%zvw>Jq{dD&J9GkWfj&
zjXP>YLR3OU34Gex$$PD~vFF94o!7)GOL$R26$z;lk|ppFEGFT>AumOApzymh6Da(L
zu~~7+_rpBx{YU1i0y8McNs~}RLau~{5^73#NkXQCEC~(nsI?@dOUMwSE-&=u9K5Rr
zViDrn66y$kJwdZ2)D<8{P=@oHvnsRyoZD)B?(h6)1DgG?ANZt=BzO{<OQ0PZGx<w+
zRl;i$no4+Cm}qkQ$SV>m9QM-15RM{lCM2`zSK;k*|EvDGgf}F#5PbG&Dfu^nO~epN
zZX=<sgu}E9A9EzMm#|dAG6@|dbd)eu!g~@rNqAF2cL_Ztbe7OXLcaNVdBfaQ$b3uC
zad*{kX4mZ|foYJlkoJ_&OTqvN110pP(K<%nk?^hnZ%gQU*c*J<>mz}bP5mVFl`#FV
zw@OrZ9`^c6I41fG5<}Q$2s=x-FPN;dr+&m6CSkaQDH1-GFhase3GYjo$TdnBEn$L$
zs<SGO5gLw_FiyhGAz3v0c)_W3=YQFC^dSFEfLr!~gbzj2B>LnL?<0X<IpU=q@#ubh
zK$tAyqxbU=OqDQA!U72kMW5*sW=fbvPY6V2(DRq)P8*jsTf!U(^F)Vo6SDS>&YCNs
zz=$jscB7T%i>4k&yhU7EB|kHKB4M#$5^o)s)n!uF5(#&0|2cHIgcTCLm+*sxl@dOc
z@TG*WBzz{}b1`ItgjKY^g!NA(d?8`2<lpA4dBVwaEqR^rYQ8_ASDzX0N9))l-bOk=
z<;W%xYxIQ8626x3t%UC+yd_c=yKRy1jgZ6J9_qhU4B0L?jn>4sNg&l`=<K;eF!|WH
zQ^GFp?6f?8N%)aTNy0t}zlqkLY3g}-f03|TR5@yo2uy-sg*WaMlnHt5`&qwB*e~Ir
zgt<pNmID&D_whCVLyRRS+9mqu6U_VkLjtco;)l`^2}kKmOj#11lJT^R6B15JxJO@-
za7w~y36~{Yk#I)BS>}8R7bKh$5||sg(mhAK$1gE1G8iTBX_R7Hr2COhe3hBx!>k(;
zZZbxu<+(=3n~-%~&}*OM-V$<nRk|%=wuF;%=Si-+E5NrRVg4=Qq3HP!r3vt_NV)$p
zA@i@sQX@>fobHi?JhFcw<74A|aj%{r^M{8B$Oy`KM)q@sDnpZzPey(j1!N@3eu`FP
zNHR`O_KhYBz$DBp!D?FPDCO%i3>mfzM}{fm>=8fxLWU)V^9lNK-sS?y=cu=<n67Bz
zjX{!(f-(xrC?XUnB=`w;RNi~Ae^D95WR#Netl$?Hw1kYI;=)l<#^19lvwS%ri;tFn
z-%(4;n7GncOdXe1PR4UGUQkg<MR^$&WF#pls30UGEMvZm1u`NsqB7o;{R~!7#`7|A
zWi;d{F;P_+)nrtXQCY@|GLi)|&g$~q6d5rYRb)I8e!>|CPs@`kI^10CzY}0#il{Cl
zO-5}Qb!60#QBy{`j0_t5sK>j+mjtLKDEoiYxIW`3Q%05yKEsmp{85jOlf>CFa%9vO
z^6Sc|JHp?KdNN*O2Z4D5w*8LUfC~|Q8p-fvye{Jn8I5H$k<ncCvtLsgFUxpU#%nUB
zTupw3Ds_x_NBu0yDk(E+GtrZsnP&g#93^cbqos_tGTO=La@6Oyk}>S4N8DOQ8yPc>
zdK-igHSWLCX)mLLjGyM!?I`1yqaL$UCm9<iWw9_Vccu^-U1hvQZ<H}!MmM2z4;eiL
z=uY9{&Zn1*-ZDlB=G!vf;l9gwj}9Z%cvnV08T~0g#q1-auVC^eEt>|&7${?~3|3jr
zAN2;wAZ4l9F7oiGH$*fM3=_aU=8cds{7L^i^YU`kNKvI%jOMC4MaIY&OFt~1pN|8%
zwGDD6$o!HCrpcI2my_{<jE`mP=@|Kt2ItkSN@S9Zj|47%%zuF}nM<w`VTUPXc8b(E
z=8;YnLz*1(X2_T+W3E`~q(!;2WT>5^vuTGf;;a(S5x5v{>SXZF`CpM&7s^;9<B*KQ
zG8W7DM8=mgzLK$oePpbnJ$v}BxJ<?h87qbG<$}^PKjj`R%&osD_cOuaOU2Kb3I=C=
z*4ck}SuNuWI(%wmjg0l&JAv2ASSO?7F^~L|@mWnqW^I(Qi7p+83_9kKCXC6V3vHJ1
zwTvI>0CbGWSzBa$Cu6I?-w67xm@$P<1TsE6=IxO2J#!A94rKqm1UWwluv5k^3VAci
zCaT0H(qWUcewMLY#sL|B(0Vco-BkC=*e8bkBIvJT7WV&5#_s~}m$8gS78#6`h0pSo
z%swm!W&Fvw5cn^;We0zjBQlOMy~y}S#xWVknVn=@X8xCPQs{p{#wjL4raKv*FUaNc
zOSkvS85yKWH`Mv>XPu+t$>24Jg;nZ*QN|dN{IAGZI6mt--Au;jW8PI6*F-S#)gNEu
z+>~)k#vK`Vg?VqwAd~%RVH%%z0{57oM`ZCL$a(K``NIAWWc({bQJ^aLPsT%Lbp`np
zJQ6~lQt-6mZ&n^bPaX3T6f7B#l~=+2W8RUTabg1PxL5YLmtR4m;y-S)e*p#LFwIH|
zcuAENbc{t<8r)Vj1-jzzPC)T9iJ`z$U@17VICp222o%@~90fIwdju3kCaJ6V@2{F3
z_kAWPhPPQ?ugtitLJA5iSg2r;f+7lvD(I}Bi-KYbic<)uP*6faNh+qGl7dnSo>fp@
zK?Mcfk9(yR@EO01;=lc4wXA}23Pv9Ho>Tn$6EcZOnR`QG(x`$kJM_<rDE?~)7GC|o
zm{qx=XnkJLI&<n)R`8;NYKotelZB|5f+`A9o`|LJR0VwfSXFT1ivQY~F9S)Lz1d1y
zT|t@<NCjxFmlV`e&_qE~nngi|f_e(-E67y*H=K18WDAg`ptb;yuL2yK!>W)&A*`0~
z<O^@0AXkAW_)IkosYW0&>$snG8VUU3sI11Km0EG&%L-mm&_+R91+OZ2O~D%qS}15H
zOxK)h^orAfl>fTG1mv_-(25-td?A`5W3xCl>8|7c<)fW~_H+!zzlXQ`XZ7xz)j`3E
z#ksuI=Zx1rPVc1PO$7vxt6demrC_vzF$(tFR=X+aqo6PMQ9%y{Jr(p)@Q%VS(xbNm
zy3O0%<&F`05ivhKq35t1;TkLZw4Z|h9MvN}f?KIzpn_ovhASAPfcbN<f+4*0cZ@Kd
z4psaQSXtf^pn2b{1v4wNdgr*OpYW=6@;@sasi5NItWm;r%+fUDSOw!0e5_z9eN4dw
z1(WHMC%pF+@DlkRKdKX^n<zGmq4A-DkA%S|3Ca&r*@p|KhEo*8PI!C_KYK@=reKzW
z*$SpBn4w^%h!Hwr^$A(+Tc>b=bGWl7yuIyG=PLduDR;X>=h0BrQ|1dwus{J{4)YFw
zv4T$&+*WXhL9Jk^f_(~pQ?N|Ias^*2*uw2luu{Pq1#1<2%7uKC^_hat1>k${H&1x0
zxJM_v)rx<q8g#-V{z7nQWTu^U3N|X(q+oH!$a*@@_^b^AQ_nBOGD~zw-K^j%1$-7}
ziScoR55>H(QShyT@5yIqh&66guwB7cDmf;r!*KtJhGmCn;w}##oAuENZ>NG?^bG~S
zDELvqPYjUpS-TbdtoW&que+NK@-H_jj&CShj2beB{HkCtbrT-KK5Y73!F~lN6r5CW
zK*1jh{!(yA!9j-P(5!Q5Da%iIe{w_H`JdyEa>!vibL*62%ws~Oqk=NW7Eg^ZaUG}T
zC;Z%Xig}DKt>C(XGYZZsxTN5+7<*2^c?B1Ql_=_>U=lpuVgjmqg`0jyCAg}9^b}tO
z2Y3Lhzf2n8rkIo_BJ&pW-uNso>aK!&3ZTMPabLmT3LY}Oi?s6(Q{_$dUy-yQ2+HmI
zk7~5_zew=<vfMl>o>EbOujExcts+51J{5e2aHvZ(uL{y<R6kD=u(Vm4o6s(nUj^T#
za0eyc&Z|&WXawT&N2a3w@3mOb5m~wlLxrh=n6Dxap72Lms()!%@PY3GjtW=Bvnoof
z2&f3E{uQm5iX_#4-&jaRVbQsu>c16X|01HwPj!i@RZ*cEL!-Eg5-LinzUSN!v(WiV
zss88M4Dd24%BrZK`dPG`>YI*f@HrLvPkJY(<teX%!Op^j7E%#b5mEiLz|Iv_L<MG*
z(neH?Jg@o}DK=GB@gkMi5YUjUB1Od%6(6gJsi>l&rHWS6joPZn;k+uUs;DNE&rsnk
zN~o@)mI{4QLYi1Yk&|8x6*X17q~iP32&*i&dc?=4M$%P~Ryyfris4x*YOAOtFpZF{
zLRykb^@wYq^vzpOMPn6BRMe-@ROAZz4Y~Zeb!m+=OLGYtu}`OnCxo!tRK?3GUQ^Lb
z1;1Uu%=W_4+*ee*s)B&#C2dZ8HTew{EmXWNFsq#Iw)mz5F+Zznt)h*JzAE~uXse<f
zt26ZOD%z{)pkn&9<Ss&)jw(9Q#{_OVEzf6D{LgDTtNt5r7QS2Hopx6hZwd9f3Cd4n
zOO4Fxp`xdXUV=0AzWR;;y#;++#p4%cOy=*>`0ZkS#O@RHS1~}vC>5jW;Z-67RlKKS
zn2JFv22+PXWQdBP0ub}+OgCtC(i<+sju77Rt}yIK;V0GZs=eRO8lz$?6{fl9?c5;I
z`F-wSNB>i~396rd$DH&?X(HZHf2jJmBD_udNcHbS_zrE7ik;iylLZY<&LW<wVw#Er
zD*m9YRLoGZM#WkcGgZt|u|&mEG0SWf^Hj`NF-OH*6$iz$Gao&8SGGXKLKXLx<jy<k
zjh<VV%ta~|tN!;WK2iNwly7a17wVfux=h7#6`u)#D^#o$fREu{p7cJYhC{MucS!9f
zcJ_1Czq|YSq_;}NY83=r(HEjW@j41uv5V2FVuOl}D!x{+Ma3o+UvdePvo@>vit-oc
z@?&TYOlj&zG5Nd$|3<~PDz>ZGq2fCskb${P?AlfpXT(J0&|G}I_Py#qcl<#99sm8w
zP8G8orm)bZnf8BD@r#OIsh*16D)vy5rT%w0xE%!SvzM7c?9P4a+$l0hydn9Gd2dA4
z?<)3-U8Y!8532Z6#a)_F#a~Q-D$c4nr{b`RBPvcX^)Xqsj~rETOaNl04$|W)x=zU=
zV3yz|SUcsNVy>XV!fl?~pImTs*0$Cu=T%&wd#Jdk;-ZR6D$-8*Cau3P_cF7eumfKN
z9T%6#GNS3aid!mftGFRrZwksGkKeuAVJwSok3I9giodxo4T&25QSpE&T|-_C|El;;
zMIH^jrGLnHJmo!NsGjmzXb{qgr#xQrp3*@2w4l5#c}DX;`d@O&%ctQ+r)ZNYS@|`v
z%ECyIG{_n>4Z7y1P==49LDl@2Dv%oa{=Q1UVrZ~5K!d6ICVJeB!!LG@65FD`qk&Pt
zYEVOxh7UD-q@kdOLK^C7sHdT@h9Vl$G}O>gR6{WhaSc^96xUEfLqtPVLrD##G?dp+
zLBqGFyk|9(q43HPeix#&hTl&4Uy3M8AqTy38i=10l;5%-4hekmlz;0O7MM(a@1mlH
z=b7O(q-c0S19L?s(MnYx3W1eH^+iEBOH3?>yHiB~dhbClQ^Wd!S^8<On&w~E*vf=f
zo%<r*2)*`RR!t2rX~^QDVv$-J%ANMoHGJ7F_V@#)41wF+P%}jbrf%Lr)z(l)Op&c2
zhl@Jx?;}4>W$@P5&_Kfg4FfggYG|mTwT3nt8fow}yrSV%4UIK4(a==GgL3i5@1Gyj
zmj#En>*T+t@d$Lhp`nGCx4EFN3;M74RHFW9e=RLFw9;_*mdaNU{M6%lao5*YLpu#U
zH1rhx+jHwRyrrRohK?FKX?WB(tFxeQ3Yy6O&+ePmMPLGoWf>&iVs+EdT?pYzMau7`
zp|_~^)$q0eeJF5Z);j{<?-Y6W2_Q4^zS>VzDXl+uM|?A9kcPn;Mratx4Hd1S+v-pn
z^S0WdedIk2!vxbi?G4w!HS!Mjzd3dJ25*#xaiXdIeRZ^kF&aLo?!RLnOOsB{A|9_{
zf`<1+pAQ7(H!~+b0qj|zL+T_AlQsOTVYh}U8a~#rM#EYSQ#DM}@CoBf^X~zsYnY{B
zwg%n?%+N4X0P+j=jL*?9SL6R_V7`Vfr@a-i2>CO|WG!IG^o%bO(+%NA^IYAvWOCTL
znEr6u>wYbHDcyK~@^TF;G%ORC)#SFZl^Q<Puu8*f4W9}A=NcxS_U10nWd{~wmdE%D
z(INGwx{i*m;X4gmg?bw_e5GNthK(8)pY}FU?J-$j3QA3gsqNQv=F{Fc8ny`as2iEz
z(y;UL@<Q|M7x8UE{~a^}ou@~9yQq$wmgffzI~hJ2e$xD}5bV<M%jy63H3NP)epXaN
zgR=IpNy9Tb^6B_h!(I(%HJsD1k4Zqo@h1`by8s7;{QZI+(C~)<+$r8p{3$Ra{VxrN
zL}%i|OrcNkQ4Plg=B1WRC!X+63UEr$(;Ch^;s1BqJI_R+;SS?P!$rZr{G|1g0Q_k3
ziU3!i@UIDQUC<kX-W2qfhTD&s!~D#7Ps4rY?bazz>3#<On>k;!{v%fLKw$DKR!aF#
z;D>@fdcw~mMsYb$>%Nc#LHR_JSNCt23G(YGpreS6qB;_FNIC*Kf;wa!iVo<og#=ai
zADTFXb7_L3>o5c$#}vTQ|7SOH9KrFwB+OSp0#~h+LVG6Z;B}Dq^96MbZXYY8qp$${
zOpUukPB9(Db-bt}Sw{&SCB@jvI!ftyR!3PK<pig+jxquyp7Dx{!iiX(6U>N?@&b@k
zL4c5;Vcq|Xn9QiCR(#Uuc^xkZT<HmiH&>xEUd#KDSv}$@Wa@~ErkIW@1mgQtd{0tU
zM>QR3PexIA^(XibeqTBesUfO0b-W}%ttYMN0%TCywmR%qTSpxoPsQ<c9N9W@h)dw<
z5~!=Ao{m<9{a+B&*U^B>58$}~a&<J+@venF78>dBbpO8^j+khyqlu2Q2F@91s^euH
zT@Act;1wOO>NvwDoxku!GaWN@%+%3b$Ll(J>FBNF4Q`E&4mvvOXsM&86mG4f4f_Yf
ztvIg~-cTx9YkjP(j&?fUD;PeqBZYn1Q<Fj2{WioB*Tp*NcvHt)I=boTtfLFPsA#;a
zj?wM2&z6cFycp-G_&UGm#5J)gt1`OlI8`v*gLCQFmYGf_>6VSLw{^UuV~mcmT%(RY
zItJ<(q@%BnemaV6OX*Lu^voPwCQA8tdt{O`K=22ZiVW5<M8|L)BXp=`!$Ya6j$t|q
zZirDbSFx^KxJH@iN83}X^i3P7V-(fX`BRJNt-g&G77cGG7^V*0dS;H(F<!?<IwlDv
zC+K)z$3(Gkj{QI|(}M92#ViFQ(N;ymGe6Im%#G0Tv5u)aY8MIT*_!gQ5}$rAb(&Cs
zi=EB@T$Qo1LX<;_uZzvnF<ZyiI=1MTqhqd)&vmTQF;B;Q9ZPjA6YE-_W08)<I=BT3
zb$nMLx}itrUzzEj=vbnoawO{8twi|e&oa2Q<vLdA_>|k)KaG7_uZgXEGCPg%nU2#J
zLpL(hsmy8}U+CB*R9d5BEsb0%vO&i>t~4`!Jr^=Ojers;xm>aEMzKvaAeZnZwOt?k
zO2=lQVNWGa-Cn8~{YJ;PI(}h_rk*;e&-Xfh(6N<cb!-<?yw^8vhYpH8(Ib;ybm_a4
zojP_gHg)W#TYjGLBV#HU|A|4jF1C9}bj9#A%HbOK(Eb&opVzkDxRuJ?+^b`sj=yvq
z((#*)-*xQQaX`n(o|)XE7A5^1`GbyqEA^m`KXq``4@yR8`D3-x53b4>xIN{tjw3pb
z>o}p~DAO0WZ<W7N&ce=|bV+9VN$xd`rh}gLSA}S)o|$xGZUL*b!#N%2nVJlgHgG}5
zMIHGK6fkf}$7LOV>-a~<6&+V~+|qGd$2A?-neoa*Z&Du}=cYyaQpmK(Z^^z3ZFw%5
z7>ZK(9ZtuTTgJypMZ@=W+}F{+NSGT$=4X|o4|M#?EMeej1OG8~hoTR4JQASn+8E`N
zlZSa=T7;uW6Aa`vFr!eM(w;GVQB8Yg<}>ijwiFtK{W(#h0m(o?1BDF81{4Ff0mp!9
zKr>(%Fb$l!5TXtot{eWOj|W-?V1SZoQeRFe%5JWK0GS4;7}v-J2A>RJPY&eNg$)!j
zP{Ke-p;A!;#SP!Riy8jfA1lV?Fu=*=Zk95@9i;Q$t`IF_psayf2GR|bGw_^&N(L$$
zC~u&GfvACs<QEHv41^6Zx6t3{RLzg2MGTN~6B(Nn{yaD9yA=B23x@Ci^s5&QBpaw^
zpt^w+uDVxd6$7aTVl+ire-z^)ZlEeTJu|~2{YYet(-|f<shVb>hJl&}82e0mbP^WE
z8lCVZs*#z_MP(SsG|-G{7|1eE+dxADjSSQ=kZqu@fqDk^*S5aQPR}v?7-R?(zn5Cy
zKm!BaZp3q+Fu4SV5;dpVo`J>&US_H{Ko@Po{Lih7L`SWU<!p#iNvapFW4&tNH3J>`
zrcq&r6*C_Dyl&tP1MLj7H_*aBO9QP9v=JN8%D`vqRqiGwa293~8o#YD6iq>92LsgM
zO#__`bTrUOG%>y?mRASTO0zw#y$jW2SQQL+Gtk|@Vgo1l<?CUfC)Z+Ns)1exdQ+5v
zVFund@Q#6gbO{6WsJt6u^xJn0^bz*&OE1bwr%K)2Fl7!9k_QUkW_6H(!3H?p5aEzR
zX^rwx@<)$Kn_3|{oKqAGk1{ZtQ(p{?5CTUUpoysM7z1OuM+QDHFpj1u8J-|qXuJ^4
zY{1LJ`-Y!J#+>t0=!XVAGB8C1(If+pu7+sU$zpeC9RG?_!jA}g?=%C`4a_kxSIjuW
zz)S(g@5}ekh0rX4FO>?<7RG!#7^ct66K=Uc?D%{Gvr2{=4Nh2SfQf67fn^(GMaqP^
zkDnM=Vqhsb27WZ~lY!+1Rv7r&z!n254SZ@~t$}siN5)#2@M;5J82H@a5Ac0&r!^R@
zA6Jf2>>9ektyF5x=%)9sH?YCLmj=EP&b-mUCZ>g=ae5TfBPsod*8*<wX0c?BrF)a}
zje)HOwi)=AE<`mp#(qmruh}b;ezM)b4g)*6t(BwSGkDkg*QOr~>?sxfb4`r;@B+>L
zy9{s$4fwNx-3I<N@E7|S_(k}`0Rz7p*vmjG6aC%5KH&hI{WmUrcpCEq!;K-iUxXX=
z;Tr#--Gq|fdX<uyOb!`1Y~Td_(7+J`M}?lp4gZGZ7#(a~jO*f9-nww3>GP)yoEF=3
zM#KeMxmcQxN_PA_<2;i;1II)w6BoI0bQ=@TnYe7=3RAR+1QS;cTr+Urz~A(lZso5V
zxMkorJA27D4BTX3_KkFSH&W}2cgMh8X06#-_n5@qik%!1BRxGdKD>8q$B@WBwBeA*
zzfAi~h61xg>&D3snGeVK9rBo%o@+j$4kKdZ^cx*}%0!X(%MVJbo7coMCJLD-Y$BhD
z{3a9=s)+)ouTrAvEAvB&e@g7+$>k*z^_r!~qKQB=p_>Sp2%0cVm?mJtHo>VoobfC!
z{7TNA9rX@=(Qxn?&oTMuT3CL@+rgjV+qHlCu3o7x>rLws<00=!rmufN6Deggww>`B
z?WkA8L{SqZO_VYbU7AqLL~#>5c$D3GOe<f4%J+})=lrZbYofG?GL+oiU+IF^(kPRf
zmld4S<I9s@-b4ixSte?m2$=|*sBGdz6A`hH7fg)EHKRfYw^yX1iRWpM7Rm4Jsz0km
zawQW(SJgg0BF5R1siBFgCaRf;nW$nSZi1(jQkes9MN)+X>X0}q4?9zb>L$`mykw%5
zi5jAn%o0lz{yO8;G;!mMC!h7wsoS{nnL-n`W(ZK>tVcO%i_6!co=Pm&L_-tVCUQ*F
z<rbKzFS>DSIArr1K5by4>xO#d%)6b@$b@I2x#-i_L=zLQn)sz~Le~$<H#L#|a`MY2
z{vBJM)mKbpob{w<Y8NSx^_tMIX0h7MOtd`f5m2$$g?ew$dLNc=VdBGq5i(nwXk%iI
ziMb})nrLTYq=```+MDQL;%yV}nCNJtlZjsRuFjD+O>{QVQ|Qx$dYb5FqPvN=ObkEk
zeR<ZS!?4Ug>n+{f@OMFb2rs&F)+1p5-a?MHJb}{QHPOe!U=u@3^d-MVa(@#8O!T9P
zj0}3UQze5({nBY?z7-j0V)MlEgG|gmnN=*7F+FS!HSwN_VWKm~(saYc6eGlpiRV13
zL1jjp7-M3RiOD9$niywdqKOaa8=WKLP5fF!f8WH$KFJff<RRrto%8w^)TkTx;zJW3
zalPFmRKOYL>p(ok#K+WuW_&$)s<1=Tl?l^L@NC~{CYFsYuk?y>UuKw?X<`;Vb3nY>
zIq&e2x*gAXlyjg)rFkaio7iOHOA`xBEHtsw#HS_}F-)37cyu-CViTX3SYl$Sm}oio
zrAy?up>fh>0@vD`zCtunjgnH<XC^*3v6kN6**~ayl?l={g03bNfc6<L$9Rl8!8-bU
z@5p)+8|ao5{nKQ|T+P{N;`b{#$1B$Til#QP&BS&SUz^xsVylU#mnD2-g8Fl%--?AZ
zerb^Jgo$Vz7MgK~iSJG9GVvobWYgr<@5FvEv6HL2n$B4^IR@!ZCVn>Ymx)6rcGKT_
zM}Of)(3g5g_n4^OJ4!ICcXY3bKWW3>(S3pv{6-B0-Y@8ZC;UGII4CH`t`ft?-ih#W
zYt%3G57W*C>WwQ<@2H7mCXSmp!I(91lb}t)N$P3hiiw{NrkpZy+Qjt><yp>{IQs;j
zGjaY2z97IwK`#mV(wThhf0e@9BwRC*`*mpf_Q-V#JQ-p+vo3VY#BHV;3)L;$VfHhT
zWTBvidnWFikSxd+{x<QCiKi?)ZQ%if+QcIhtIm1<nV7aBwDm@vhxE@sLKDw<llJ@7
zJeJ?uv`$sh1PggB<hO8aU+ftRudWH@t5m<tr>Xe_X4S0~D<E1EEsV*oI&puDJrxV8
z1z4~x3_2dtEa(;t3z->JSv4(m%#1yJIkIPOh`<unIiIIE7F-Jf3%NC_7Wp&O=~8U<
z@{~<`V?hfAR)omxydqS{LSYLPEj(|bh=rmS%2+6Cp_ql@7D`$uW#O-kv=SC5{P~rs
z6V`-IBxUaWIrOZB(iU14t>3IxRaRGhno3&E!gChF79tiZe-$ckq5mIsDhT|rW;A4B
z@bVDL&U0Q=;C4TSDz6W%QZoD1jJ;r?=>V;=g%>SUvheZp5KBg{XtISA3so$nS~#*g
z6tgh3vOyu=E=xVJ&6gIpP}RcgyM27^&rtrKL&RwoYFKDN4K38P@R9}3LSqZHETmh=
zwva=UQoe=S7U~FPGA&#^=Vh_~ju64P^eAmu=hM)OTS9d$)U(ilmb6gc!uD%*{GD2n
z(*2Jd^}N@Rdr`Y;i*ofF2{3M>uL-M7xFQS9EZ<9C7IfsnlvgZ_oM(}<AtUyxh1V>6
z^h$&qE#0ou+`_o@suh|>UKijE3%9=yk<-dTYYQE?trq{pzHS=}?YUDcLe*BKw6)OA
z0s%{b??S<^6Ugsm;Y|y@Ec6y@>};W%h3*!*Sm-L$c#C`IW}a!B_Og<8I8>i|T7Pq>
zhXsN$y|tbK6x$Ojciwy3!aGMo@6ckqLf@<oUELd7+$7T1LO%=hfce16eWCsqMp+nb
z`FMbZfpk%U2MapF!Vn9~7Uc}J@ScTX0uL9I%)}QWq&dTqId&u?ZeQq=HhIQa7;E7g
zRTUD(Sy*mig}~#fn}zo+OtkQUh1nM7SUCJ|wGS;!q0i8m7A9GkESO!Yrm%^HU@A>#
z;f?d&ObgR3aNZtws?DG?ocD+iY|GvHduadE)L9(cA~v%|bS@WYVJU6fweEZi3oI<Q
z@QH<m^r9|x-|^BGSy-oJ6R*A$E4?#!iG|&X*#{c={Bm-3dcN#s+=BDovX>L=-$N@c
zd}`sSSi)x(K4)hJ6w`u*)fTqVqbz)3VU2~27B*Q}Ya!#E)b-?dt4pv>RJYH}nRmb1
z2C9^kUT<d3mlnRV@U?|47TOL^9(&%~Old#l(vszGRr|)mw-$aboV!)f?*wgL)gx#B
zq8yfIi{$RG@I75?Sn`jw{F2xYG}_yFcQV&CO#5b4jC-+5?8uz+-cO9dNl})c1z7uW
zy<aT+%FJNlkcHs1oV^zITR320pQw`an*hHHTBL1+oIfo5$y|CRMto54bNbXPJSa8q
z)oPrJeLmWjaM;4#{;5Y8>;qD}&dE7OQ@q~bxP=oIPFgr+;gW^R7EW6@W8s{I^P<B?
zzlENuo_3aTu_)*0$Mt6PieI1`bgO&OLWwfDta6X4cd2`FR?g8&v8nx2uQ1ZNedoPj
zXtZs)bU7OBhJ~9JZZYUAqyaU6J5+|d2|Nefvv8m37jT5n|IN&A;a>~?P>u86gYzCG
zu>5CX*TNj8YT}0$9$CmE@KgT3$|1jhFpJ;BzsG*upZ|Hx{{?)Er?tt$e{Oh;RRIzO
zl?0UmehZ1M?gj60AAah~PX-=izWCvDz+)V~;6dQKmtuZ@AOI8wiU86WGYAwSZX01!
z5>Qa|tR-Y7><@ifFt_OAvGa0@36S?v_2R(8xj8H)fRayeDd5>BxU>LefU-|G{rBaT
z2Py!`Knf5d=%4yL@Pd#T7Bm7x1)wGsfhi0VVZ)a%c$I*zLZ!;Ui%<IWZqa}pVn8*Z
zx?olTQU!<$TJ=fKmaAeXrsuHpQ@eBNS~Y=}fH#58KrJ90Xavwk89*kG4de)eWO2v$
zg+^WAUvGtK3tUHN#cExk9`M_{sky-5={fa*2BHI-exI7ta&0;zoiW%D81!3i<+bUJ
zfhIsppcVLkhIkoh&Of&XUIAVOE=)^p2D}FR`%dcMUvq0N%t_xA8@nXNR5Ry-*K}0f
zH-JA*q_zOgyjgeM1@A(clpim6t${W`d!Pf*Rw&bsOL#WdUXwofa_rT2Q>jcx;N%6b
z6W;<}^jC5Jg15VE`o5cuy3n4$XkZNR7SN5W0EPhFfgV5~pfAvqYwT9{ZQvcCm%zOR
zEql=;f9a1Y?{X7M<#Mq#FM6!@1GcY8Z+g)i05rZ;t-qiXddCL>Yi?It)*?0tVCo|t
z3cLr507eR<4FiUA>Wd!p?Y)1hJ$O)U;-%_&A64TLxMicbO>=X0kE%Ns7za$|769Xc
z3BW|)1K@p%y6A1V=tsfai(cEyu@8X{vvMbK_owH4ME59=O@&Em0cQS>fvLbOU^XyK
zEMW#P6R7fAXu6>6w&$Yv;`InSAOEM?9AN0JYIE7SO&+d7%b$Jfom4h002Xo+9lYUS
z5wI8-U}K<-Pk<$WVnemD6j;W+0}cYqffc|vz_(Nk_!QUxYy>_7J_o*_mFSk+8u1gQ
zRp6g>r_3o8Ud`3%VR8o6jjjc5uGH26#MRq}*TetpY2x7QTm3UP0bc^g24`-jwB_1&
zebU(U6|f26OBcPbMbj4G^o$Jlsh$-64%iC(4D1HBao2#Iz%HQvz0eNe2U@sv^m`${
z)~<NIOWxv}Df`FyNBx$#<ejS<{So*H*nGyH<@=S{d-y-5bU)GmS8htV=w9H^##pI&
z8JZN{Corqs)bQ^Nu0iU4dQ>d^0E12qvjg#;z+b>!CRKI@4g*(!tH2T9C~%6JbJcCb
z!&_E8CT8Kh$AJ@1@JYtbasQ7u&j4o`O~6IqoM=4{ly2i2@V`mgmYXRAmw?N_S2Ht+
z^Da%9x*#KUbR_wbcMZ4>+@?cvgRZ39ptYF?#%i>7v$+`!OGj@3T{?sb>L=vu-6w7Q
z%#2?P#P0)tGl$zqu<;M@fawl+#6afe4pKRVJU8P%p!UGLSK5ZTm1EyZ&0|9ukj;g&
z^(h<E&xUr*%gAfvcE7y&Z4|Ka3|(k$<$QwHxt>CtXhX8`{g!OmMtqREs%*IQ`LrS>
z<A=*c-+d`tv!UC_vQgWHVZ*dh-bMu*md$uWNgJhX*fty+MQjwc;o1n;NU~ATMvyLg
zq5SfGY22OZ1><RBBF`<#E<_=P;)QMGUh?YJjsEa#oJ~KD)r#3DVPo+C^>SjkxXrJe
zh3QKd*2ijJOMTWxX&Ys2l(SLB#)v_Axxlt<{WVg;Kjot|>EgGo=WKt|TO8skatPZ<
zu@R$6voaz!D%yD7#*`k}QK8a?NR%gAy<p=-D)WX}NiZp`vH*(*Wm9Z2SF|wOEgh|5
zBh^L?8#QSk8&z$j*`UJgUrqF{Zlm>tNUi4C+{(w6-?vtK$wn<&V}+Js<M5wGu~PXT
zo-)#HynV&@lT6$9WEOf|9UIv;+Sq7oBgaNv8;xx=5t8fCN;VqW{vWW{xBUoeAn1)*
zzJq<!&HrE1Mm9Vf#Rp}wJoiINQyVYac+EyL8&7w)Ua|2i)u<SyYtdWA-b&puBctOi
zt+|aiY_y;nvl_fE=6X2aUr|f3FRg4mTHsI7T2v2IjB>Nu*=TR0r;T1VI@suFqqB`J
z+~uiSCtAK))i-VQI}~Gnc=M8%zBr?+jkj!cxA`mb@WK9>`vzuqv%&3tzGL?LJyJ^?
zZ_vZW7j!Tw+?!^x(Z@z#8}Hb7>CM!kt9@nO6^aqi8A$ul6s4p6xtuC#FW%Ok-H<YK
zUgbeH2HUu3<C2XbHip{RU}K|=_iPNaF~`PS8^h@{Ha@iRk&TfyM%fr|V}gwVE49%!
z&!+Ufbc~G)pVnhJGBQ3+aOj6WZH?VKm-#-e#8H=1{?+}I@_`NVhb;1sET3d!vW=-W
zrg4^zsmyFsY<@-4KRo?oA!P35l<C3(Gi<!D&^PI-?C4CJ|AvPVmpoQyKUw2~OWr&i
z^KE=;<1-rzY%H{~gsqI?yzxa04bk)1h%~x12YzBBV|t`j{`fK*%S99O!wLab+Gu&*
z_YL|36DjfMHdfg@%n|EsthRCbyzyVNh|xIx3me-9sGqEjt)Y5Na<*Ucf)mmnY>2HF
zMm~JWWA@m@V6?Hv#xFL$va#95Hjc9Kwb+g=Hol=@XK0@%hMD)iweg*e{c9T)zL~;m
ztNz(rZREM0La>8LhNiReGu?o({4lhOab)v2PLxW`Ue`K@R7**}uZDRkxl|)N<yxr!
zAoZ@7zFRD+L8a)gHul;$V&kZdeKvlx@rR9rHh#CU<3xk~HV%lM^fczfze_}(ekq;%
z^{0)l<)VMtIAmkjGx0n(QkaG4QHO2JzMjI;Y*_X&8^>*29;lwPal*z)n#jf(`qId3
zhIVqv_$eDJ+lMC<k1TH!;eVu`rOn$!XkqU7c^kZJT@duL66O*v+qhyQ>Y$>7t2VAN
zJvwk5T(@z<Mt%nc9Ne^V%f>?nn$Y>SjsFCw`!Mwmlfc8&yMo@cabEy({^nIc;0J>K
zD=7b>nN8G$Uxp^l<KSrr2@am(j1{9SyZ|x%=5?@bRRdb%83(Mg<a5yH`#3?O1IdBn
zKy@HH_-S@!rrbBCN1nRuWo(UU4s^$V4(Yi#-Ed$!ey~^$id^=+w?~`s%<TA@wHZar
zL|L^(>*^L(z(LSKaR((FBsnPPpfHCxs4z%fyIOmDSau=DzlitQ8so)_1B*H+=J?q=
z<9dTo|7?ma>7bN@@*LveSqG&Zob8fYjwXGWTE;<H2dB#U*ObZKvr8w1H!a9u>vIlx
zyFx&Lqxx7O2Vn;ctB8YMk2D4mUGz#M`n-b|9Mp4A-$5k@l^wj~pq7Id9V9!b>Y$o~
z6bCT}RUD)`;I&}jf(%}XW?gT<tW|qLBrcZ8S=P+SsLno@y&9aNv~Phl(Zt&c;+l?s
zkHiF$?jXZKZ3lH6WQq>|4Nx;5<jZpS{fGG3@e$IG7yH+aY|)y-o=vh@>N?o+Y6?LE
z2e}TKI(XSZLmJ9K6XJm?Z!kPzipJc{oM@BF-eY@m(s?!0UvcoNgV!81qh&gTd4rMO
zKQC`B&WLMJa~k2tIQ!E{S~zIwz;I!@Xyu@_gCFS$4%#?q>tLqCQ%lg!L3;;791L~P
z!9hm{?{ZQHogBRBpu2+}V!fRmaEiCM_3gu595hc!?<y$MX*b8e7Mz$HzmpK{NsBo=
zjW_(ZgY_L#d(%XkfB!=_<E`mCj-T{)*Nx8Y5bi5%GQhz=0s1-U&xs1eFNLF|QXYMf
zgTcbvY4dx%EedJ4E&DwO!yJ6*;3Ega9gJ`=*1<T==wOtCF~a$IRUPf1-_dwzUYvMS
z*VIGesz)WqJDA|$eFyWJ=CGQ1*S{XIOmy%8UE*PC_sbsnlN?NTFx9~{2UCQ4?DMez
zM+T^)MT|@r)!JA6>;4Sdc0z>Z)1hgz9n5jC+QAnN=5itj%N#6sFrQ8<hJ3=#Evhbb
zu$bM(MHY!FIW=SHtJe8fpN9k0CG6?oPMPS%SF5&rDSd^5l@4Ct(P)*B@Tr5(9o#<U
z-@bmvh?`rv!^pHl;!c&j&~Ko+#=%+#-#Ylt!8&e)gAEQgQi0_fSC>98@9zWDO%A?v
z@HJi0!B-9r{F&3DY<#l-bXt3>e`Hv*Bk=)w<KIw|x6^hG@DtHiCL9Ml>ERBxJLq~#
z+u`7Q>QKlJ&mXv=EwQV?FdcxJOgR+We9Tue=bCS&pB?OWaE%Gm!5#;{I5@-bckru&
zy$%jLIO1TRgV3Ce0}lRh@SB6*`IIEAO|ko#HwuS8-<ERF!JiKPVl>UnxV<gbvO=_4
z2|s%u;zCw8V0mjy`cVhR9Gqkjv6~TQ3OerK1b6e0zpgfQqkKGJ?C@xe;jOBkrZ2Us
z%G*3%%Fj8t;NYT|_dN0X*z<Lx#`Vx8A^eJi%M7UNq0N^)QeM%nI$#Ha8%+KV9ys{d
z0WWH|#9a5eO|+hayVRs*_B{vBT?p}h)h-pG^1PhY>YVyFmp?E2A115Lsc%0O|4$^$
zM-KA1c<6v3e;^d)E&Wq2o^~O*kX<CW$m=4%i^1pO&$!6vf`3`R_=v&3{pT?RZ<dVn
zpZvMZ0xtU1jwia{F&_jxz(R3RabRBEh3Z0c{euGnUDG+11KXU7H-0v3xqypLTr6>6
zyKr1IcG1Lz>muOd1s9cE1YIP#DCgoi7X@7ua#7MnDHnxZp1y<@hmGPcin{3YD3zs{
z3rgnS?6+8#F}rkl<tVj;>tAciD)C7jvY&NP#znK+q0*daQ={xhsjuzzH80EA&&6BH
z;qoqz6hy>DlrtuToA=FIv|2jfMulDfBn5V+*os2JFRQeBwd2n-(LG9?o)I1MAhoiK
z7hTkHk?tbdMT(2+F4A1YTvTxpcTv?v>yhdJIi4z1I&s<K2`SZFz6ADlSTMf<PwrTh
zCtkxvO^O|mm!}V8FUhvoWxV9_cRg{IXEtSIxX5%-&qaL~Swc=77uhaqyV&z=nB~WF
z@f;U*U3A=-adeW##d3q{WykM!OKm{rbK!<A8o9_7V|mQS(!KG|KG8fETtaCp?Ds4a
zZtCJ?7eigV=i(I?ue#{wqPvUNxOQ6DMOzomUA*q1B~^8?Z(YV4Lg4jIX)RpL$Vtn3
zr7G!>dm0a(Xzij)PW+$C9%(xl?OnX-qO<Ft5Yd4ux#+}MT7<d4yMv>Y(7bB;YgV`m
zeP&3stBbc>zK;qos}rZed80yG#ro#$;i4z~%|(9~y<GHm@s5jkUCcqa_n^$TUHrAA
z0ee2U-k^_AY+Z#)eO+8S8t1Vc<d^K4Gr+|_x-{jC%N*ol!GqLdgYp)<kwQBhSf4RO
zjJh394|GW%=3=;uk6lc4F~Y@27w<C!T#RxtnhNx@#?yK(#=02i@+a_Vf9y@;LMY_d
zj3~F8(@mg+?6_Jro%912AG(-KJB(6kkdK6MCed?t$5~}*J+JZ<y2`xDJVk|cnv3Z!
z=DC<p!@8L1Vm6m4)H}3F<0&Dt1g44Jy^~5Gp6h}G3zZ9VAGZ{XFL1HQMV$p2-C&`M
z>tAKumg9@Xkc<_L!uL~`x>)Aos*7tbmb+Nt;%67TU95ERsf#TxzH#xHi_cxGcd^06
zDi^C=tZ}iH9^SX!7mUgqDV0ilTpFiX$LaFKxmi5Mg7HGk<!^NHB_qhiCNVD$uc=cz
zzS%{?ZLzNfXW@p7?hjIV2Fi~k>VNCvI~Uts>|hFdn7Y-)HZHkzm?z!jzvCYovfz#I
z_bz^LvCGAe!r(hyc*D~+A8ddtUigZ~^IU$S=3iydE$N4>?s4&pi=!@%x%kz^UKa;l
z{7Juc@tcd^UF>)9QOg{jn{%dlnEem9_=EHQ7vgsCR2`lX(`CK?xbzo8;I?+i#bL@X
z79Ui>ztBW$$2$&BJ3@azxKU2daTh0CoON-|#Yq>ZM1Y@m@%8!)CK;v?ZW%|Naq%E6
zou|^AckxqB{E~~yE-tvZD5{JFGU@GfPDbSwro=kgER5poE^aVw24Dwp)5R?pk6h#l
z;I@l9F8+4$kBhrZyz?sGr&Il=-4iL12PaVu-GG^S;-l0DF8-tEZ^-!9#k$x0h!|BZ
zozC`<%IDAFq)!F#bO4C~NC6}SkT-w=0bKuDeI|f>0d%{anm^#@^X_kiy(<l9e5y*x
z%p}dv7;*qg0D1sM0BQi7P7C12SsFpj+o`nYzR_uBKs*8jz=Lu!-cS3bWSA!bQ4NRk
zizgQot!@B;0D=Mh*EGFg0EGfLH%d(kVC&q<%(~^~RxTVspM=~Z0W5kio3<?)0GXFB
zr!bU?2T&q_k^%qbxvY>@O3-Ho<wT_eDDwo<SFg^C4u3UVK7a}V)JQ_jB!mJ82T&x4
zqCrFghz9U`0Q&=|7{K!Zyw7z7@InBU0;m^2{QxQl@L~W}0{p23k^}yMEZ;Ur=r%4-
z%46Kmhy}3zm->a*>hS=o22dw}Y}%(+YPA4r22j_FR1Y96fXpji4Ys~qe{Z|20nIW=
zUkad>=#U;jMgYHViruV~Vztl86gW#zGHVC$>J^V*UTc--E#`1YfPXv{?R>>!m7oE?
z{2xHC0D1?|Fn~q@bPC{28Y;P=7r@H_yb{3S<r$3w_@PX=NdQd)7`!37QGxK(K>XDJ
zUJIaA0IdUP7C`d=UJu|6_P-tCkj+Y%JzE5@VT9Q-0QM(;O-`CzEke+3R^B!Nv<slU
zFnC)bmRrDX9RfI$mfkS{Ik{nt(`l=o3#YEg=o~;7`d9$n1LzvSii_pnq6c0qzqDH(
zV$wFB=IJ5$to96mRkl8+ZwK%Wy@Jjez&{ttkG<l(8^FRV9?REPynX?!tWe=@feNDn
z=pVp<00sv9LrXb)Z~#0&a}Z603hXmP%t-!F0p1gIn4rT29TC7t0odo>>b#=^7!$x)
zA#H-7;{q5T@Q)~6KP|*_OQ+@Y5B@uPEA4{-J`7-40LugTD1b=;Y<VG)cS&S&08^+c
zojHJyeH&tC0J8#^M#sD2@f`3O0sk2B=>c37Rr#vVoE^ZN0OkcSpWc4e+u}v$if%k!
z{O-!!)T`bCZgGNt2sjI?Jc4#Htt!ALbmr{P5<!;=+F0;c&`NZw0EV@Tej32&N|D`+
z!G^h?1@L(Qs{&XZz_tLkbD06GVTc9rWdLgfSSLEKrzR~;j$*0XB7t;60Pi(O*(h2Q
zTbf@5uvy@51^qgJZv@yP=obxAIAmU>Na)kN1m7{<xs@+OUTl#-O3sb|c8Z?g3;Khg
zg`Ui~i>XF%ehT1cTBcIuc!Lzu&bF~ftl}3zZ;!0N74a(#djr_V%yyytZ-Npunv&;0
z0Dmy=1(7$1g8}>*z}*1u1@IR)rB%YQ0FDQ6Ef6{6?@r`!07n8iDmWvqdMs=@5x~g+
zZc){%-YJG5g>$<vRb!cb)jJcw*#M@88m_36!g4Nv^YmwdF9dM$3BDx2<p8b-a8=N2
zPg*JJ1}_2Jg{vNMxeL`O;Wh)=4(+^9{!W0`#}M)T0R9f(sUQ-T=Vc!FCxARb|4i6c
zjY1C?(Tzg?(jWpn6!ejxr>=TzVz-~H*waBAs1$$DI`Z-X?fbb2&jg_dVFZyci2Om6
z?v+{~h(32xG=UQZl?0W8Py}EfHRz`}0v=tud}fr#!t!I?q#*8OMywzZ^pA+OgT6xs
z1$KgPgIHF*E=xdwxs9XjbFW`=LD6AFqfntBNDBv1WVK3AEQsPk{1e23AW8&LGKjfB
z%nPDa5YGmYLj|aen4(+|&jnG2J+FFG3r5P4zfmP9A4G*9VnI|9CJJ$Z*Ss)iDVOv6
z?mW*oZV(9~N(n(cFFMdZm4kTU39dx3A0&{;@?sFlPxvVU^vOv`6`H3D%C*D=s2W7I
zC!Fd*{(8kXMU5w%nnAoIa4kWXeUre}41qJB^vM#SwxD$c%@&lMY0r8=^bDd`5cPv-
z5JYYe4TE?yh|WPY3c?Gbbr5ZWSl!uZ9K@?a)h0nS4dUe>M(jz=x|7Z25WFI)E%+<o
zC+lh!M00^(7xaxM{1!p9e1cmAQTUoi32lRD7et33I*O(mJu})1@J)w|s~^?ve>b@k
zrM1m?Y`s5o)Gk4E4WdU7L(U|>HaG3(i^*?M$=+$~&`k{N&b^rCA4%+&&PMN`pUL|K
z(N}=CgLp@PcLnV*&`-bpg6JQ_gdpAzVn7fBgBTgas2~OfF*u0#f*8g%F31@Y#88?d
zlr}MxR_U7OfAOGn!{KZSg4ObSb6-fx&bj81`Ac^C=pZ)jNf{HwSX%O$H)lc4TcNa5
zds4;)u_%-_J_v1o4ttVL4B~?zJ`Q4P5FZBdQ4o`ZpoB?5)T!(dT)P~5_nH^1;!UB`
z&d-^8&7%&}f|wq}%phh3@!2(RMi7*C_?q_v72r2OM4#C~%n9O?-to-6xfLt>{P{sF
zpzt7m4PqfR3F6BjzG6bVSbi}j1o0{R(|~q`C4#wBP_`}$V!6O81RYx5Ki+iv+u5H5
zu|9|mL3|#>svu^p%vc@7njqHFyg}@{oJvlKo1t|<ursSKY>4rvI{dZ8JKGzP&z~J_
zq@lQk%KlG~$k`mk*FpRc#LghL1o2G}JA!zlN8W|gqu&OxHHdB0e0uadLGxYrh>KtM
zwo|^~qzcaW0*_c1zjHHfR}eo1@iQH!qxNGEyMmE?^UU4;E=2YO{dC><nPk$36LiwO
zTublpfgt{%@<IG2;w7(|@H<zn`XRQTIcI$;bI!pa{tV)>@S?whI26RGAWjF-__}vE
zh`$<yj|qH)?t0xjDmZL99>fX8b*Dz7u6rlBo4abWRR5(yiDuC=L7WTXd=O{3YuCLz
zCu*;oSm6Sh_iMBDQV<uJV0Ty8aNVOo0#0!yh^t&e5Z8nFTWG?A$ZrI3FNpg=+~kfl
ztw7GLAZ{}U7OZfGetxn1T|s?NuR@jQD)9DZPss{(w<I$VcD$13-yr@AqFfT5OTxn-
z9tGhf!A(M*Bs`S_JITL4e>w>XNzjvEB!TJi@T`=)Nq8m+`I7uZ&2q49TK*@vfB=bt
zN`lIQDuSwlYDw68-M<OZPS@LMN6aKNsui)4aN)X#B>q?|e+4(f-B}k*AP6M!53xhV
zl2AMeK`}fj2?IY&C`cu5c!iSq;OP+*PC^mEDJm#AMfWC`NJ7aZ|5wkSwW`bGx=JOX
zbdsM}dG&cV2`}962+AZuIZ!X_hF3NTZEko&Zg}OBP$3DezE6%M;oCV;>iK4?D8F(P
zPQt7k-i<qv*M>x+)FcVdC*i%<8@!l=WJ*iI=-DZi1gCNmzPjNru*vL{lq6JnF2oW~
zLhLbq!bwd+)ek}s2ZX8$PPHfe>Pbiwc>fKL17Au)E!w{jj6z6HLPioQ6-4EN$V@_3
z5^g2ob`okQp-vL|CZQjdcO%)vUZi;va*|Lt3H1cCiD1?jn5_+xkSj3zHx!_epk5Lh
z3vg>rj7{8yrb++D)OSEhQ9WNTEIICSNfWwfI?oKttRT!TyGn9*iA$O$3n-EVBuSDW
zIVVLBl%x_x#GJ)|7{LH4K{0@25hZ8%-!6Xpo$s7?>fBeaUaG2B?{!a4H#$q*E<#zi
zE7e$pyR-B{0hv8~=;=c*A0F^wpbvwnLmysUl|8_Rho!;ZKHS@=^+SUD_|R8CKcW4F
zrXDH99{)X?WNW3*C5e~p%pEL6!-PKK!w?^a`k<ckWGJw{W!vFWL_9*kqdtrjFiPm?
zqS7$}#`<u_ug3c@!H1W9*h+Wu;c*|H@!?q?CiyVghj~8C_hE|6ak>vPsK%zrsXj~-
z&~$E2*16<NA7=S5S7h22CT9E4@284$d}unO)vYITNICcP7YnbwopWwby9GWx>BC|l
z7W%NrhbLq(ofhTfwMv{`ocm8f@+lvd_^{N6r==)1Ketz-M$;1MyJqAp6V7rU*6hh?
zCu;friFPaKjXpf@!wXWnUKYzLA68S$hv$UZepNQLRBW1OowYu!<8t=lMH%pVp&Ny6
z@S)!9oZiFo&XjIEU{&^JA71id3mb2fNH5Wtie;MlWKOxy8<F!0ZR*4KKK$UrYd*Zr
zHR8jkKD^<>n?Ahj!+SogsM6{!hKS6px49@DD#1BYA@BHLPATZHI{SUD4j;Dp@R1C1
z(7EJSdm4R6{nUx;KeS?BROYfxSs!!dHcOg6<Zk!jGatV8;Ts=z`0%-ppGa=?l@DL|
z@TCtw->CfWh4_M5Ih-T4&B@L>m*hBi(nV+HeCxw^KJ1c?ltnok&Luw<1rC@}>A$xc
z?e<}h4~Kj>?8A>f{N%%a9}cihQ41T~M`l5CFZt(^KhJ12d|^8dkE;H~hl4)+#vnPZ
z;8zCE^j2*b$A9<X4<G*Y;rhAc!+&Qzm72-)=KS2y57|?v7X0PI5g-2c;j|A&eK_XB
z2}V30j*Ft$?4jeWs4==q>mOUZa8Kn~b8=464;!`rt1z)|UhY3W{OiMiKHQ#}bA}=M
zd~(~6yt51`+j53I+3uW7u<rR}yYtC!7vx;@;SwW;A8CGE_TdV<@S~KUH_Q`PspquR
z+df?5IDNRmE*i(lzeTNb3n<Ex)38<B6hDgjQF~gvxF03_o@A;Yy{^TX67AbD%ce^E
zkvc72){k;hRK}0uFXWL^UMg1bqoRP7ebXw*0NC2!lXKWOyGZw=iXWOEy5IY_B%kT5
z;YUruRsE>uM|D3&oKN1al3?kG-Gx3s{C=o@g#37ZSZ2VFpdX5#4_zhZpHHqkpZrkL
z-t*qa8GC(IDeT9&^T|H#a!C!TV)|i8`+b}=+mC<emB{qtE<YSUDqKiL{D}Gy^YhP8
zS+(vAqe@njr{fud*=B74aiRAdFI7jtT^GFW_*u!i9Nvgb;`&rqhxiUZKKCQxN0uMi
zel+moSwBB<jvPO7{pjt-Lw+oOwOvM_(LH|L>qkRBh+F#6%8y2VH1?y3aLCN}qiGSo
zPe2~qoSeoYrUKzK6WZL57DbY`zQ}9sN1-1b{74G3jUVkVB=6K}E1Y)Z6v+?BZRHBS
zUuZ`^Itl13w5!lALRqDofbK%Q5&qSNw1*!(=>~p0P{e=G4>rr9JDfg#^z~zjAN^$*
z{rnj0$0H)#U+4g#4+|aW#~=ZB>JIT^sAT8)G0czQevJ2Hf^bIoG0Kn8f*%z+Qs|wj
zjq&3#$#NKD|G)W;E5Z}~cw7Xg3!UWWpL{)AOcpvtXfofM1=BRi-Wk#i!83)<5<1(D
zIRfSirTmv-;`x$YAatS7MSeU{B=e*niv>Sb#A%(?YN;Pj`+4HRqzg%^ciDyHa>2|#
z;|DneEB#pI$IE_f^<%XkYy8+KEo`}ve9n)xeypS0`|<kP!WV>+PrTlb!*Azq@bku9
z@{0?}-27I>E_z<EN$S4n$7VlX;$pm*qzjSOxtQD{*;vz7uZYZRY)!zcespix>O;}Y
z8^YP<$D0D)68g5#cZ9NwcLluX$NK_4DB^!e6J&WB{>YDyh53olJ1u`Ic)K5;70J`_
zzVPEqKQ8!j(T}hE_?naQ^Y6F##*dwT?D6AAKX&<%_igq_HU6z1r=xd|*p>aAAKx=D
z?#lkbkKKN-sH!i)EE5HO^5bW!#gFqh8c}$!AN&0{Aa(aK7JZOPnIGRz{l$-8*;m~-
zQ>%+fQhi~{Z+`sFWxFf;4{7$0AAd@A%@0{*uK6I9eI4=Rs2~6MamJ5h3^i8ezeV`C
zA19>2lR{51BrZ&${Oj+vB4DSd?~MP0)PLy}JG~j5m5Tq#ToT`8pQH7E$l_$r`}q#Z
ztSN&FE;0CX1=UTI3E+w!R~eK7UX~AUT=OHY)xP1!b%xV$f{DK{PCt`#(~nzz-1d9N
z{*(Yd?ozv=o**t3kP88!sXT?slQzkE*(C$mQa`&?05{6jE*(JkI*EN%bIS%$E`XH{
z^T>RyR-$|W6#}Rjz^Jo1l>*rLKrWemFD9>r6X^j|3E;&5HV3?i`>O`fCV;j9R12Vb
z0A>JI06#R2*9brnKwL8bpJ0CgfdC4B&nA;JDERS<Ni~2_0O0^M5i^A90R%ruedFh>
zJHn(-UrgEoI057YkQ+cGfM@{m05X}@WS*E+5DVa7_uN_moE?(Qlp&yY0O$7S@^7=R
zT}(E4u$I#yepdi>0_an(cHMw?=izRl^@P?JN@hYpme6dW4TS#wWtDpZxHo|NsL}u$
z2KeM*yfM|)C%)SsZ^SXrOCe|y@GjVyng-B#b7uCK+T3DZQEQcr*3J)L$HAO}0Gb8R
zJb)Gf@9KseQl^%YZ6&m|(83~tb^){xU?hzaK!*U50rUu<C)@e2q8mV`06GWw;qRP|
z0X*|W&TCKPbdfAMT?2UKzVz=eCduq3%<e+(4}csB^a|hsx>*2&19&ii-U0LtpkDwF
zQA;Aj>a#ACdSp)yPdfwV<n#|<fV9cF4+p$6=Rl$FG-^%E6YuGZNeVv_z_0*@2QWlR
zhf*h(k~8<@P-a8`1dj&5DjY+iPYKp~Gg*0b0Am7J7{H<c#s=_M08=@hx3ZK=$#DTp
z4B+tq#s^SuP1^}V39>IGNhe8mN&pT1&Yny~UE;fr3%t^oGNuJEJ%Aa~&a41tvunXt
zi#BgmDVQU8UI6n2%njiBhZ*dViKV0qgp;-@=ZOHG3}AHtYpA7zEfxpxbO6f&cq)J;
z!dXhSTuPQ-7-uPOM=uYc=^I&0D`=4bU&DfR6H-^bo|V-(_YQw$0INi1%B3VZ&&d?l
zQjF>f;DrF#RL{K`9~{aU{AWuFtY?pxk{gA;A%NB&XHbA?Q^30oPVf?!HrHJcY7j36
zur+|1LGO<7D*?P3!1e$>qcu4NKENNqhxBK<L6;cQ8v(p2{I`U@E%Y6s?*{OmfcJ&Y
zm=sUHuLN7zCUrjvfS<koNQyod%A)trXMQTBcR%vKFJJEn;Fka&{=w$~d=UU!_)>&_
z2;i##z83sVz<V9Rs|TZOVP^ol0{B+=KkY8{oq+F!Za(dOuzPm^djj~8V?*tqq++*Q
zwa91sIe@(Z><eJO$dkii91vV5R+-s@0sI!gWd_&)ei!~fMUsC6@TcHI0UQqCFTp2-
z9uaypfMWtUh2sMF@5^h`ysl3Ma7s9T%Xm%;<&2JQNIet4zf$y{(4pm9pJh-A;Jjp6
zmvg)z_+k;~Qh;v-jI-!!0M{6tgD4;L40k<%;z6VaaYH0;3cVG;ZP6+PQi3QJ^whGu
zRu=zrN)A(rAWBJf;*vqnWOw+bgD4~XvO@VEbMh+)t{6lmdeNmMIhBROzjbjsX@bd2
z528vD?!DiuSXHvsf~YQ_Mp5aUv!#4N_{9|iK?DU%e!T7WQEf&(U;N%ZiBJ&XAQC}j
z1)&9@2l)gSY6W2g(c-TvW{~fAEX^H_ktfzZ(+a{4!U<x;>g=WSb0Y$xLGadxy{H{&
zMi8}whzF4w^sZ3$P`&rX`Fk!G!d*f1xgH;KAo}&CWSt<6T}sv!dbiMeLhB1Hb~%|H
zM1vq22hk*m%0@~~5V=9z!$Ee5{oOczFUQa!e(Yq7L3`ca+=f9k3W8wz*<8}5LHs%`
zwM`IhgSao~eIPzBh^y7&`9Tx}(JY9GUnYZ>ljJZpm!cLzTMBIzL~8*oEfi31Woo;i
zx2N#t=QGW++6TRztAkK#J{g27xML8V1auDKegR#CQn+gn-HLGcATll|$?Q?Y=@~>X
z!4C+{m(t!rJVcEJ(Km=sRcu$$FNpp@yrJMt1p|V3n9io4xPpN}3<~1SAl?dMa1f6K
z@i?s(#0z^eh6FJxh|xg|4PsajU-7YFmipq{&_@KlyStADF*1lAm%U%#n8sdCjtOF{
z)O{?7x>e$=a(Pla7BR|=3u3&~nm`=}`Q4n1?+4#a%F@X}Oku4c)&?;(h-q}!Af66l
zdJs=tPR<BoW)L6EP5Ezp=ByxcP-}f!>XSjt7R>CNAm$d~c|pt<yr77)P{1OgPXzJG
z<s_>tX3Ie=3F2Cf7P~GdJ7r|oSzBva*UV)>ESEv93gVd{LY1>u1ieGivq4PWl~It_
zhMZql)><hBeZN!t)j_PGs@JBH`CJgs)A=9B=8U}mnAeD}3u3)ge<g?wL2RUda&xH}
z-xS1)L2Th7WtAQ6HV5&<JDvhx618xt9ut*rNK4%s#E=dZZ%UTOtyhD1jaC*7zY#>W
zD@h*4UZ0$xvEB~iogn@Q;?E%7Wf%$aU%mJ?i1&l|Ac!x5_%etOgV+|tCv*wwlbu#f
zXQv+r`5LtJ=eL$1W?$QBxGSDPcLed742<iSGcCN5{G6?IYR@93uS83mtH!_P)Y4MF
z31TOmL5=grSyGz&yCC0cg8e}ppaw*EpU~Z0Q$hSlr>Y+RDTtqgIMlxuo82o*o^`qK
zsR2^<vT1et<K5GL;gXcP<b3{Wqq|<rI2golLHsUOc)Lypy{NXGdnky*L7WcapCJAc
z`4d5$4B|+Tzh7iLvM%)~^&iCXp!Yik*EN@9-B;V463PBol2flF|1Ro<20cR@#DyR(
z2Jv4IXBnn~@NM$U%K1{@oLGU4)cG}K%ccyf;!+S-xa5PlEbY)sX&3f;O;p5Mtb3jD
zUrKKZy(RRv&=kd6Q%v_YkEbdqp}<wpQ9(%sr4(c-$W~BV@fKz^1=SUlQBYPvImP=y
zyrP0i3d$>}AdU1{=~<QoVC3WgDl146v2+Dh6g(sL4ZPce|Mewis;Z!VlQsl36x37@
zRG=uH+xw)ofKWe$yL-*DK^jF>5K{2!mE_$D!U{CSTLpC$=nDGIO{pVUhABhw!kwwW
zQeX>qgk}hh2#pGjDX1lY^2-lolh&4OTxh1yyEqFe;xM*H;_R_khl=$$cm)}GnVlD9
z(i{l|JFg^<UrAC?4HUlD5iJztD9BZCkAiy@6ewOOYp9@+f~E@YQ?R;2MVha%f+h;z
z0p*#AXA)AjK&$1+^z()OcRD)mY_yqz+tU8jmFX=Nv{KMcL3`0yYXxn4v~Qz;S}If!
zxSGtpnrtg|PgeG{*Xe4qgAAZsiQ2qGN-CgHJida?3T7*qqo9j|t_u1yP%G%Bpu2(|
z3VJHIU%H@8xpJrU_Qu&uI1ei5t>6J^XVSV<u2U90L_;X(r{ImW)IJIroXO;`x11Cm
zhGG0+27d)36^vppC29}im=z3>Mg}WjBV2<+rTyUwUbH>W9HwCS)#R+J$q@=3RltZu
zg)`ArSUOt4V+zJ87{dldfnyagXtQX%G&@1TL;<T;rgIpN3!bT9l6duGq2y0dFjerh
zBF=OLGX#J7wKx7*QZaNk`t92ITm|zKtWofsg82#-D0o`IG6f6S^~qSLr&69$ut?1D
zgo2e<lTQj=ER<R5VTqK|&`YT+Czr}uPFJUZ^zy9Y{c3q_QLQ@)Um;9Rd{xodRx9YW
zG0vmK^W;!b3N|ZPt6=oX^z0gm4b)Qi^mPi>)0%5j?|9ccSCbpr?A7EZ1q@tIN87)o
zV2iZ;s)CmlY*p}zWU0D>C7z*4AGC7`UgOka8Lt-&gPgY%yshAF74=lSqu^ZyR}@@T
z@ScMA73@>6U%>|oK2-39f-e<pQ}B_3Pq|b})~1R$-;cQjPR2fwHmTl+=BI2|@R>|}
zhr-8ivi4j}e$I$=Dz@=jj6Hs(;A?jAo;RLvxZLPP2eW@vuuH+W3ie1l-zoTBsw`Sk
zg&Y0<{6xWS#rqxegEa3k30ALkD)y6tpE;xz>3gLjH+o)lbA=vI@QZ>I3Qj8cRlz|8
zhl@J>jd5>li9Z$muHX*|HEiFr;FJ=FXvCkh*fJOOUkZ*$n@1HKQ*d0tlua4b-td*_
zzh6ymO-rR#Pbv7DuA<;9*S>;(6r5odu^Jnh9?NLBw^7QLT9Gw5yAnCi>$T2_T3B>R
z!FdH26kHTfV6c5+inoVy3%hzXd0CiCyQg1MaGgO_<@+{qL%~hPZ53rzFO1((P)tQ}
z6;sXlZN=MMQdE?ar9n=r>aF6EDoUtcD5k|(rIavBtKO;L#{=Fp%c*?JAJSB$tLVNi
zl?JV#qN0jFCnvVoi>ExCS&1#2id7bxel1x=1ypYb9BId^s;H)-y0m$weMPoL<+GO>
zDqn({&Q5ul@v8`^uvIuJf+`dhrV2}isv;z_=(sYS?T1xpDs<_EVVQxEwlJjS$TctW
zFfk<3tkhCOMN~y?6>Ce>j;YA2>lM`!VJ?;o>S|L47ad0uSCOgWE;{ze+I5ApojR)b
zf*}61LA?3bl=><XDjriYPDPfAY!zKpbXCznMUIMQDw<2nxhfi}Xry{!;T{$Ds(AQz
zEq1}tHdfI@Wb#$dd77$t`&^4W;oPT!K2JTY?-b_=fjt(e-pO`mrFaV&e=8NORd2Dk
zRB@zMoYf0ev|%rQG-|JUm++hsLq}U_jc?7^w=9n<u7ipPa%&}px}4*USVt9|B)jlJ
zj76PQ<hHIw(2ZuLxm6667VcLuP{kk>Jyh>V+*3s_6?Dr7R6dBC^RVCtRrD4>{zEGI
z6yd(S3Mj(;RSYP?+-h0(-C^;;Djs1k&n6ieIC5H{(X}K;J50rJ6(dwUN)t=a;H0`#
z@(#KqRg95=jZ(2xP938qJE%&=SaA=kmr5S5VuFh0DxOg>QAPasjL9mdsCb;F6nQ#8
zw`<9Fwq#9JF-^sM6$?~MS207yY!!1vW~NYTm@9pj;F6u%&lQt#B=gk&9cZ}{nH_O0
zxlk6)VzI&^ma2GC^)@w@GI1k*O2rasXQ_&10-hGSdUO1<@tH^Vc>(HK6)RM{tYWK*
zl`2-LSf^sW>fNDTO$Dmpu&KZ`s&~$LPUwvCu@~qY^zdnMgP)G&B3+rjfsUl&B^6s(
zm#w9xz9_4Vv8dVHl+7w?EXaNGTC!Bx1QkvfrH1c}^A***2z^7vtKzz^u?w1Mo%f6o
z4_Z{kn=0O-$8vS3cvr^%ShRBIb)FJfO8TCP_k~aVfq)N%ZWH>E(2rGoB7idVtIt&I
zQ1N95Uxo0wiZ8fuLTDVqmnyzu90)-P;cFG&s5rw~Dt4;arD8ALTgA8HnR{rySjKlM
z_GiXlx|aN2zz-^Rb2+!n;0d4nA65J$opQ22tKI?f&Y1VBIH2N$ijyjSQSqya!z%uw
z9Yy#z6~A+`qMtt)=u{jMPh;KBt|b@k^>!tugV&NrINDtqM^zk?ik~+v<Q__IJg(yW
zwPbqZOj1goQgNELQ1Leh|3E7BPnrK0@EP|1Q*o9-JA`r}oMT-E?GRE!xS-;q_|;{x
z2$%V#qFGGp?wxS1sJJR)yC(FyQ1Wl6xGDHn5$Cpwl#mzUiwPyDbUj%jgpwhY4tW>d
z9A~MJw<By_?5#V7dWOU@q5qv%%ZE@Qgc>0<-I-f4gi0Y)4WU{Hl|$(FeRh=)5W<L9
zMw-y{5RPujV3zINxdx=4Q2EtE7`if@k)MO-8K7nez7YH&FC+$}Ys%9%nCOsd2%!+_
zg-}0)a0prmbwb`grH5dI_$FsWLoh?$g)Ng6!nRZGxT)D8&&p27yJn;VJJ*x35Nd@`
zJA`-$8PZGpd%aTuHNX&>$+?`0-6gfo&-JQ|_|UT;JE|+)-7U27^<*N1EK%LPA!HMz
zrE)GgA^iM#UIY4VkpH!h*UO0Kip)Jl1K`*i${@K1HKF!GSj21y_l1xb!XqIJ2_Zj(
zf)Kie&^?4^Av6!6LkP(bcq(Wi11=1qWe9u`QfnFKor|y1D?O97388JsyS`}0W~Y>B
zFY<SGE<Q-_hR`vDE+KSfU$S63$?&M6&LYXj)EPQ>pkgWQbw73WO1p<c7#KninRw3-
zdWnG^kcvFMJ}6n5tha!NLg*u)uh4!)rTs$~P=vc(PbN#&<`y<6<ZX_FrE3oUyKPm5
zhA=FINg+%QVK|*9gs~w!7V`GHM?)AzzyXx3Ju-wlhd1twT+3sm1sZFpkuolX@gYp4
z#!A+nKt+A+J>ksLOX=L~QP-1?%NW=fIa5NI8p3R;J1vCiA<Pg==VupOmDB)DKQn|`
zV!k<zGPwligfLecnJ2>YMGxEpcnf7g2n*THfheQRqU*^gLs%Tbt0BA=!c!qE3E_DP
zi~Q0MmWS|62v3KwOxj`W;;8sA+q05g8N#X%R)oC!HncK}Rtx3*oHcY34!(ElbHd@>
z43@49VO<EDLwG5K^&BlLikq>)jdZ6ashdLH4np^Pq(*`lXsp5?1(@9u!ppS6AC2ra
z>F&do7=^Zm(6@U06`|Z&Ugu;({3jGX4&luZ-U{KJ5Z(>pZ8GKX#)}SGpB-^7?}hL|
z2p@`m-Vb?yb!SIR+d|%*D9(kLoqiI+ry+bH<KG^_XB_SI<k9zXcQE*K*cH<$d1qIx
zxWcQ>A|B+v4&j>+CWJ9DjGZCu3Lz0jRv6!g@Ezk%7}dh~o?aTl^$>1^uv@(AXSxcv
zm6NeOA^a%e=%)~_HcY2Bcr@A<!u}APeHp)na3F+z&&GefGpe&KehGmu$s~sZI4I28
zFUEfl;g1mh4B?Q}Iw$n7&{IPH3gL)=qe71fJudWw(33)^?#W=MOn*!EbO`?lI3tw&
ze>r%;XNB&(o+R_U;0r}E7elxt_;L~F3a2LcS`nvPx2&5X+zO#=80Esa9pbyJQ%i+W
zI*gPsiiJ@;%s=2Hm`a9`T7*jo`15*_e7<q9OxQCV6OG6~O;A3J3Sp#$kskIeTQQ8v
zVU(BiSS1m@<Cb*PDq+z2tb(u?oOwzoKDi>jdKfjr2#2AuuXU+4!w7^C48s?Ozo-iR
zij6B_@5IiPsIrAMnT$>h8lkWk<=CJeh7m?Ij9A#aF=d8f%aGWqB_p9DIblS?-mT-8
zS{1)@MBx}}g^>~V9D|siTw8?WVQ){&6ndA?Izq{;E8uRS^@P?Jx~qRmb{Gx9=n_WP
zFml4k4WoG&EyB1bjC(nF5n}}78|&CtlQ0^E(Krm=zh#z*7wJvI_-%2m`-Bo)zMjkv
zqd??)y_!WmG^46-Bq`i7j8<&6WBX2Fv=)K3VYCaQFzm$&3bYX>AKz+E^`<2{gpm}@
zGswGA)G>_rA4uI<!h2G>&W+^Nl8FvClAVi`)=gx(hjD+{+rk)KuP&(EBaDZ`7#K!R
zYVy03UST{CMqe4vgJJMy1yk=Z9twL$$38;)3hgJfzt90f$G+z6=7U7@L&A9cMshG6
zfK!k~ddH?i!x$FE@GwS%v2|dHkzvfek!0+B;YRY&Fh01E{P9MTZaFIKU8ao=V~hae
zv0*$Wcw7-@e3+kQDbAwD!<ZDtXJPCJV{#Z%!dOESgfTUYX_TRg!k8ZR4kWX}m>tFp
z4q#>aOwq<aGSfL6Mi|dGDO`9*!(ll0r7j3#zGUf>jD&PZK2E>i7pE<_Uq2bfGP-3L
zi^F&-j3r?#4SU{8=lpYaW%}NrTeY4RRS-PGCAp>6vtg_Vqts2$)+?!Gd02Xtbis?<
z)dE<=7tTCSzY1ex7@NXa%klFvA&d=StP4ZE>D_4Jta(F#!hf1^9&%o!LAkQR_((e9
z{csk&B+j`-nthqt7Vt_KuZHoO;CF<+E|l_b2zXQITSDI!nsqbzt^mrsC*XZrO2CIg
zo5+klruW`VeiFu~VLW)#yVlz-r5q|(`km2!9>y132x0sl#+Ou182jj2^HaVS)qNkv
z4`F=6Eg+0tVf@&!J$w9?(Lgpe;_swE9=3PW-@^DQjGrkcOx~+xFLb|W_E-Av$p6mm
zd!>kBfopuf`22w|ehK5(Fb=X=iD}e4Tc+tL^G6sL!nhd5pJ5yd<8T;%u>~<AFENgU
z@lP1%{wO#a_O3*Z2_-ll#)%?)QoyM&{x0I27I5RKl#K)O&am-zxsTmU{ujnswp=-#
zZgwt=^I`A$jt5aD{+@U#j4KN&U*+lx<1(?#g69?{4wZ_%9>$F@ZVEqRTw5}4G5*u^
zninNF-=Ft-cVHNzNmDhH(6F-(cGW>i4W%?xa!}bpX$@sG)HQLpiLx5XY1pjeB^~88
zRM2o)!xaq`DXd|Wh8Hzd*1QYe6&hA*NYjw6p^64*Xsn@$hN>E>X{e>)!DPI;h8h}d
z!8JAb1Q<g78dL!R4M7b{Zzd_vqzLn6$%Zt9HH_b$N4};(m!i+5$P`SzCEzz<IvOI9
zjS7uvxOg*J@s`(ehKAZ2pP2GSm93$HhD;52aU#MY^KNRO2wS(3^)%djD_LJdLPJ&&
ze~>iQQD}~ady4qE8j{QMv{{wzE#fp3&`85H5pJsCJ`DpjJggy4L%s%ALq`n-8rnS4
zj_)>Yt)ZEQ<{DZEXT_}~`6bFFT1s}}h|EIKc{`zPgtiq*L%eY-*<Nr5cGu5)cr_{6
z9>X#_Y3Qusehob|Jhv>KzdxmmhOScDO+$A9ukyo=9lRgN{*9;g)X+;qZw(JgQI?bT
zfB=?0DBzJ~ZXXTxm&Td;3Fs?ye@cSw_osJJX-ne+H4M`5xQ0m@25Wdk!$=LIGz^hO
z_=N3H4S(HA-nf+<rg;zC4i`E?!=nPK-cAlbUPyk%?c`{wGFHPF4b0XR=3^Sh(J_j~
zHbKDVIh8ohi5h<AU;H}6Cu^9ZVYY@jQd)33IhFd+FkP}Ug`OIoIipB^mT-FBPV#Bt
zxf<qaSVFhdFkiz04Wn--7Ykje;RykYIIrQEV?x<1dQvz93pwE1$)_aC32wNZd|Jca
z+sS7%5HHiPT);=Sy`pEOM-Fwt@$C4<imNoNp_%9;x9YFf@Zas^YbUbGq`1#(SkGD-
zUZ6j>%Uvs!V4Z+)in~!mc8c3B#ia?Dh&O9^NyB#<zSpot!^;{z)v#T|Rt>Lccvr)F
z8eY}#nua$tyy@vSi_c5HP8UsanVKHUdP~FP6!#r*?Byx$+pL)45^$ybd!WPn8tyh)
zeyCxah7UA+k>c*kFNju6{GQ@|q~Q~B{*U?fx?ej`{!)rtshDdQb3fCtgNiNYt}o_(
z&RQb&ErUie_e;S$HGCyma=sSujZikSi{`l1rfV^GOSv}84lm~ZpkcR$KQ$cEut&p>
z8h+JqP{U6ee%7#GL#Vj>aWQvaG56nM?p_T!R}1%PC|%s;8acoiH6`;G27%Kpvx>V)
zq~&i6m`mfo3vFB6o8}*a$?RX;Jxq7ikeceA({Mz?Q4N1<I4uIlgr3xJyh#3phP6-S
z_Nm;Gbx#Sie9K1vXgH(co&6n77I*)paW$OP@K$j*mYX@XxEpz{&5Gjg_r=}rPZgfm
za6yBT>i%-S7xylTW-e*C^iLtPS2bMI&{OA^iEv%R4Td!xaUC}`++yt2QBB8f4JkS*
z=%}cpn2zE)LVstK)sd=u@u8%SQo6T<OXyxOq}}VMx}|lL(fLlxL}9ASP{zp9H`Oi2
zEkMV_RCnmwEEcg5R{vskvXYL<I?{Bc>)vDbmkt+J(XlkuWqMgC-_%S=W~=L{p(CtA
z(@|50PshbnSJC0u@p-DJ<baMhwt3TJ3d(qXOLbKp-D_rrIEA|l$RATRQL%)p>#%h=
zI;;||p~DnmOXycMvnUqPac>EiDW)S@ggcgSYZc)P0hG+tahHyK9R)h-=%}mX9v11i
zTSq+|Svs<He(WHtzK#zMWhHbxQo@~4!tJ^^li3D3maWas(eYg%tJtzQ7f7xS8j)Gr
zuAz=bI-2UZPe)@NYuo0&Rl?m@!hN$%K@%D3suFHq(Uku!;ZhH;)NR>JM{^w=bR>1O
z(9u#y8y#(Rlr8DD(qWWzTkD{2%uN&&O7`B8p4%|B)6u!4+g>QM>V`aKT^${DbkWgO
zW-+v++ey0atn=xVtXU;pD*VS`nQKbA-Kb}sZ%xnQWbdb|q-Qbp&@sD1F2Mt=rDKMU
znL2vwc!+w?F+@in9es5iDCs^d&GysL>3AEOyFZP7p%K#n9iNu;jC;1EJ5a|U9R!0#
zc*CK>vZdUiI)>>OuVaFa;q;AC?xQ+J>KLJep2o!1M(G%>V~mcmIvSL6uWK!-x`c+u
zsF_mkfuWfkA;CDw_Alj5)bY5E$vURcH#U0yz%)rZeg3@^a;9>4I;M+f-g7*gU3}Co
zl>wZ8Et$nB>v%@TvpVMJm`i8Y@wAS4I_B$Gq~i%4duLW!pkwv$Og6hvnw_S#Bz{uI
zVj6B)9*dr$JH=XZD_kOgrNpExTBc*Uj*r`=k~6oIOZq}7cZJSRdf_>pKeb?$G`@yP
z9-hh4)jCKyNM?TzW|6+2W4(?IqT97P))gt4s@_N+9+AmjHnFv3@%Kx)FVd`~+*768
z;-%d!I$q|04fHm!mHtMrFi_3Ft2$oO@tcm{b-YfW)UkuBQpcM*-qP^_onOb>I^NOo
zz9_BQs@!)OURLG4N8dh~#l4Am#M?RVpURrOGIyJfkGP0RyC3Tqb$3DLBkioxZv2zH
zPdHBDmp@#%UBG8T8Gb4Jg^n+E?B-~7e5K=S9X)ajzSHpyeYmtctF*gI$4<e#vp1x)
zyXdzL-|ARX+I^?A`@N1IShuu$Qc|%pp3D8H<0l<I--&PK5_@&*<Kimg{z84~U|2gK
z)K|tOzDww@IvyzF9u&$Ji2u;>r;bZHF6%g?<FJksI!;nuC$j$1aa6}K!AFFSl}305
zJ5E0-<8CVB?ZT&Y{H^0(9slV#O}m$I_my$~;avJ=vh<7$k6L07{<n;KR>wIV=f!rV
z%X-x>&<RVq7ljil>v;>AS9Dy}kz$~jfolx@jQKil(RqetvK@}?24h!Qw|!aHI|Yr%
ze7LN8TL&rY7B`S;@To<l87N_(q=B*q${8qSpfo+9tXsywl(H@xVPDTk6&|9>8>nF5
zN?Es(fr<vc68@h;iP<lU(hY>~Zw3Rga&8sDRm!>K<bRwu_;iQr25K0%$H2V?Y8vnv
zh*Hvk-$1~?;!<r413?3M<y_T3$be#?XE}FlId?G|G586C1e0c9OF8$RPxFX%Vba@8
z1D1ilBQkfCb8Q0$%ejt$h=Eg2ddCB<N77mbG7KJ6P|xtzMQsCj8Q{8$8@N!;%@kUp
zyla+s>lol3%~Y2yXdb?&yj$NumVs=8Z=Uxo+izl``8@@0dAEUqT*F)P>>|hT_RzuQ
z-Fg$emEO=mBLl4rv^LP#Kof({zGgKuFulCn)Bpoco`L%$OU~-@ZoW*Rz`(oZ-FJ@X
zkTy5Gt@DTSZVLlE7Pgcuk1mA<+8F3!psRtl22PZB+ZkwYc)Mpx1<#o~7;p`Aq<zaJ
zl0vyQJ5m1?+|CB>w9}+vHcQW5DePt-vx3`$+BVQ#y13u)4oFPw{gt)Zy$m#~;J!br
z(gOy#Sy0cU4;koVV3&b!Icx*{46HD)(m;O$0}M<w_%T5|Y+#^)5e6SB#vlWO4Lo9C
zh=Gg8a(Hs!sh**XiMr}l!5wN~n1SI2-rLZc270Ds8@ldD17j+<qe%_yc)7_a13XkO
zs^GH9(KZE4V+}lJV4Q)?72NR#CKw=-rOe&|lMGBYFxS95dRo~wQ^ZEI3{2%rseH*E
ztl-WxFoRu4%QP!n=y9X|Y<fincaDKgZ3`+?bh+uwry&eHWnc+MVqg*dR$6$1n#s*(
zttSoda@efsHmvA2k*%RyMX$A`29_Im#=z4ezf9=(ytXXjQTbVMp}7^^(HpZyup<Mj
z4Sw4f?;2P`cQx=LCurb#daQvB1~wX4D=n-eUe%fxN8AC|8(?CC<ZwOm+`ftO72WfP
z3Q1q$!r|&R@S1^_4exxr)$n!-rp7bVUJ*=l(<NS)1;TdTH2AJ{_YDKzEQ$YE(S6In
zX_?F0^r%YSq~4=|flmy4YTyF{AJVH0esn48&PDn*F6T;ax5I^${8$D?(5_v<b_1Uo
z_}su3V(T4Tl9k*Jm0Vh%re|MYGQ1f0n$9EqZw&9Mf2XuCwUQUmo~`6AubK6of$t66
zFmThr4+eG{IL@_TU=M9!;5P%m8~Dk<&jx-m@T)lX>y_NS2KI4AmE8RX4hWO8u6DH5
z^i{37JgJAnmE40|tqrpeo+)hlWSfi`snp3I2L3c~h@~v5>>gv(t>pe?Aic7Cgbkj|
zq73m-;Y2HYYmj0m89)sDXW*>iow5Hm@Q;Brf=_c@yq!a4*UB#G@XGGLGC^AH9Jl7f
zSr@oW44fC{oXYMvBrX}aY~VU4RoPu9wXPVrDy?0k@`XbUvo%u6++uiS6g8omNHI~&
zL^%`XP4pUHSlmPj6D3V=4@x!pF=Dq=nyaRHS3{*tlr~Yu#Pz(kOl1X-Pn<||E10Ng
zBHiSdVckk5+N8N@rZ*mf%BB~r2tJLq9KJHAis^lq<?%GP!-l-7CP=FZtuC~NP%>+p
z@Co)8aRLH@LV1o2nFyPRN#mLc-GpNzV)84ou3^FwzG;FMWbZVhEgV{e*|PNtqRd`s
z^hKJxvqsj|G`E(C3=@B*xwTE)W%A>jZd|hDWKtViOM<j?w+_{{EFMXB>zSx;;w=kr
zTS%D5VigltO=O#BU}C+A4JL9-<eC^^;!zX#n7G$O(u8ZGp@~K&T9{~QqOpl4CYqUO
zZlb9PS~H)_boV}?1bL>natUa@0ux=*z4OwDbeH#SD1166yOoL7CWco^?O>vijU3B*
zA>D0D6PQ>rB6DuKw;tP>{63&detRmvPRl<|x7?HN{+I4{G|`DBGtu8fXEtu4C*8nA
zR}<an6;<5(O>`H)z}qm8Mb7ZWnWR00$ss+!;hE^m$yRZDo8IB44{cG!J0v_LBPU>%
zW1s-#2bg%+#3Lq#m>6h!$C80n+(EQy6_;SJ$uDrZ&sA|rd95_m#4wW|pYjg&Y+<;`
zZ#lW=tGMOijx;gK#3B<<m>6whjETu6rcl6WIo8B@6BA54W`f(@IHBzNUU<WpNYflD
zeBAV|Ng3iM(LitKaFC=^=@KU9nwV!|x(WMWhgl|C_4f{AGfd2+5vynA_wll`Ip9j}
z91~T#WwA|0q4`uG+y!)l)j8zQVHOG=MJC)QO)NIC(!?qgPnlR^;#pe9#IhyvrKBd7
zo5*b0=xL#>{)~xrEeb{zOKiETW&1_B#O!W8ywlV+xQv9WsX7xcm{?<ip71l==S+U1
z#4TCXHLGW>Wp#S~luV_nTXuLRFWflOjV3mk*ll8ui5E?5HnGjbM<!k}v4x&&;%yTz
zo7igNbrWxxc*Vr4CjR{?$zi-kr>*KT&AwGXHb0M?H)S<(DY18+SO_Yw&V7e&X5s@A
z@6xZTy6@4-Rb6f<bE>)}w5$)sAGTF>*Gcwc6Q7v)+Qc^|J~gr3#OEfykX88^nM=H2
zwL_}xt?ItAB+jd|GgUnce#!gK)!eUyQXzUZcc+MbYhssFWZh}k>VGH9?@jzb72T-c
z5N%jDr<(gC<C2NPCjK(<vx&VXexci#*k@ut?NZHKSskjmoa4Z1?g43JYBl$uiQi28
zZsHHq+Z=hLgH!&vT`tu-uSLP13`Fzu4pDX0JcW}UF>#dflL|C(%;dYN-BTw1HgTMs
zrSTI&PYS(r3+QMy_hvQsG>s@rxLS2@rZxL#{zsRn?&<KXjHFq0_ne9I^ziL@7ff6<
zafu67gvSV-v^M*)I47%LV~92}*1}^JZkV{qL0YI~;g*TpCekdVTS&1`%tBcU<t#7G
z%$!-JxP?>;B`p4ORDV%*x3q=GZ-pg=mJ-VM1d?CI@=nY9+ZL3!P{Bea3zaQY6ecym
ztI>_s-A}8#;o+GFWndSoyHzZH{06FpkcFxis#*LSMOMH<bqh5t#A>)rYq(WvxHT>K
zE$=#l*e9bRU|*N~StWD?Exwx4RV?%f7Z8LkXckNh7CAa}3rj1u;nFrNZ*hG+FOSr=
z;8@^$8=}(M$Qo|M;@cWsrsMs*Q|tN~Zia>0778u2u@JYAX`zvY#uo09D%4D_#rGDv
zb%fRxdbfpo0_qD*2+a~o$!q})gyvZM$4#8fdo0{*p`o;Su7<m!U*^6Vo}rsqXlkLE
zh2|FSvyf*Y-}1s#T1{`UbNxQ|UP^&*$c)x>ThL^~Gg}FzKugP8FCTPn#`j~iw$OKV
z;TM+*+gfNxY@wgUZ=j%qh29n(vXHdk$^g2s$C_?O3!N-<w!B*k%s$A(yCOARG6}j0
z?Pj67fcu5^5ZY5HWqJvCfK<R8*S!_UnpD&6V_{WIw`Z-EG<1Ip1K5j&Ar|i&w0u~E
z2U{2@S#kymhk$MJ9@<a~!{~~s?kEexrRY%$BQ1<zBYiU|L(2P*1aHZhM_c%|rhBZW
zJI3Pctz6=97RFmxV|fQ}rU@2iT9{>FqJ_sTOtLW9!Zc}_-ZjO-&D-^}`lL-24hO)N
zr(1j#l{>@o_BE!uK6kc-IToI>u*AY#3-c^IVc|)t+UL%<u#nU7xw|*CULXsBm}!v(
za_&2t!(g?TE2~_BW~wl#9kWX<JZ)jQg=g4l``l%gw;@jRxpZ0vnP)BhH?%eJN((Eb
z$SdvV&3%={_y4%7Ei_q}OYj^^Excf1t%a8@Y_+@~v(Cbc7B*X0PtT$Jk*s%o?nXLT
z>w--}3E0$26h6>_@>{qnt9Y{}ZCE<-ip7`zxUX4w-NLIDUti-6HBsE}zF~R0-kTPf
z?reXoLhz1-cP$LHG0et$7T)J7wh^%LfrSq(oUm}x!Zr&ZS@_w)UakuZpU`9$z7vIi
zYT<JWUs%{~;WG<6Sl#c|^?O@h*S&?rUy9f_Z28l?uY`Url)aPF+VAePu*<?Yvt=K@
z=M_C0RQ_J7?6&Yjk@hC|-946f$;|X4t=}*6C!w2f7w)sL-@;!Oj#xNg;TJ|H3x8Pn
zm9~}!xA<LxgBE@(;xPNCba6<`T@cLTEnIeen931wR7QBr;)^ESd$;H9@VgiM?s2KY
zBh4ube_JSSBh|)f3;$TSX5qSpGqi|>^A;}90jR5^g=a0454fBr8}Im2;W-O>z$M5H
zxEC4sZq&bG;gZGo8@NoDxyA)t<zfkV3Y;HsZ_vFN?QImZaiwlcMvn~v_ZC+QD_*a^
zE#So&cElS6=CneB5;jWOC~u>J&3{I_rEHY8QO5RS!kK_Ov~4c0g*k<?6briLZ2o`T
z(|JW3m26b80UMQVq=|gG?M0`D`e&}FkyStF9Rj)B`1@>C8`W*p5SeO1dz^1qQ^0`N
z3Vk-(1l@r__pSQ5Y&pm-Y&5lTpAFSU$VOcociRZt{D3C^$%1c!u5QDy;n;}SFm3*w
z(|tDR+O~JVvutk(bLnmMdmbLO`A<fdH)?9xh}qsxX?K3KeQtSfh7D5QtBl(id!v4)
zjk|2rvHAZ#_gc`cu6WZVu4kjZjT{@fHWD^^t;^=m5ZMB<g!1&&z(!p0j_U=Adyll%
zNM_elaqqR!kkyBKhe>7|+n8B8(S)kYY&lkON%L&v+qmCG4;uwGn%QV?ql4}JzSG=B
zYa4|&TG(i5W3l44vibiSmw=Z=TNJmA?S+N5wiiqYIAErBHvjI?l3_4u!?n@P=Kmnv
zj#TNftaR1wZ1evtZYLSuCB^0Ori+cPY)8&Hq}^>aR$Z!*v?nKMqo0lbHXg9OE3Bca
z+lO^+^tSO3Ic*DgCx<@PS@qQA-5Rn%4RbIfmgf$zF_2kmetzD=Hh5)C)67!cBTuv$
zY~v9dYgBji?fRrc1hetsG@^~qZ0xY{sEv^}R<p>)C>x_~%(5}t#u#eY#uVD!#$z_d
z*_dEsqRmIsJ>MQ*1TvS!AGa|{yn@Q-7$)2J^F$VH{hjJEJI&@Z+wOE5Gi=<F@z11}
zhTOYCZu=P>2-w;j8*^<uWn+nrc{b+Tc!F~exh+HP0vii$@3uT|fik;DFthxviqYmt
zn~$Wri#hC81y6<Cr8b_n@r;dUZ9cB)F0-+mQ#+FNS;%cZAn*5(dnx2{U;gP>_6li-
z171o0Tozv?lrJ-Uj#jquD&5=03pUo;*kEI$jddcw-uCX0f1Q?vuv;ta*<zE;|I=ZM
zjhDHU!tQ43GwePYcDsk&mxM!^t+sb}>p<AM>VJjuVfWLpOU~;y-mvjLL%NMOZM?-e
zFH8GvoBt_r-?4En>=JNzola%F%TSZ<-6-bqn8(ErZETY<e<E&49r9-EM>akdG5(gs
zpTIs9f$cV*E%7{=^m974jT1Ib+I&knzOr$^#xFL$X1_MRv+=!+om}jidynRRYh#z~
zZDCBjvCP4f`Gbw!<ZJFe8+&a0$dPNF9$d}+iIL6bg9q-<ToIZ#Y|`nPyHay0zh7!`
z{J+{bNDr}b$i{E<4bA=C#vgQ{wb{2c@3dcCcWbZ9W}A#`hix3C41<R5{$=wAJNF2e
z@QwO+N;#h6T-R+2nD`d5Q#Ss#ah}@dI?~<KHvY45*2X_J&M>_2wm)53cNgn!x@6CB
z$>e6Xcrcx}zxYevutS9x84zrwI4I_L@|SH~wQ)^^uL$KY9hGXeyl&%$jhl3jwz>Sx
z<raPW$HLoGqwd`_+pN0;F9oxTJ4kg<#z9#JB^)o*a}AafP}0GZ>%7QW+VOq};CY7X
zD(9fQ<9Q>0$@)uoD>$g=@D~U7*dj0H5U?oCLArx!wJ^OFsyN>FcikvDMp4y4H3ttz
zFffAZ4r(~q>tLUQnhtyp7CKnu!0#a7;2{Tn90VOG4(@VL$ARh~<iK!XIv6`RJM18@
zQ$lkve0l8G8(HDeah(Gjo9MYAcHhyM<>2<QSlof_fLTXqL@2XS2eBetOF)LhPY8ID
zOncUs=zcVo>EOFfv02>`bsgO8prwOW4(d_i4w^e?;UJNWCmejXw^SnsS(42b+TczR
zuQ~<f3cbg{y#g8*mDZXUYs?1s<uwu7ROo#|^MvLLr9gp$W<|I}%|!1>@dGcWP92kd
zY<Rr2gF*)#CdMCd(8d8dogI`M8(-BU(bhpb2d_6tv=>Uy!9h~6E3{(~zmovg9WpYz
zi!{>JK{o;2h2Af;htQrvDcnl{U;6Q&gWe9_9v#1HOuX5kIMveEK|crM9ZYc0-@yO}
z!)PYj-N8TyLmVuBHr8iD?jQ$)9Xuj>Zqg;ztXsk`^FQjC$a<{#PzQC}R#B3PJ==3f
zIC#{-Xa{2)jC3$>SbUU&F2mykN5|~P<8xNU_$rdI4jyx`^hj)+gKs;>{vMRQV0fJT
zwku+5cegxpe|(~YDGsJOc-+Ax2a~C{VR3y|eu-e(T_^I0r#aX^B|d{A935kt?trBP
zGlert=<K4>IS%F);duh)3tb>|?d*zAaN#(3g{#KFVh2w-*yv!BgC!iKgH;YzJ9yf`
zGOEJCGY(FT%`SX2(e9zlg6fr;jfp?&V1<K~4u1JGm;dvnR);>4%|wAUTzU@HI#}o6
zd8zmUmu=0&xyQZI+>N=czTQEFQSn|q5*ygv<T&xbG1=<e>=zwucCf|4%MM<0FmZ3Y
z-W9U>SB2EE*}Xa?wmO*EDN%Avd`+#pcWg@CJ2>$g9mBy_4!(ByKV`h>U^^Y&!CN%9
zgLk<wr^a6>+2|ccfXA`}eGAzX!KGO9_Z+<MpnAzhA2^@@(}x1KIrvDx$3^^41boU6
zVYn3A;ege@xYKe${^t%dM<(hUE}37_mr6F8Fg)>%gPjh3aIl+W7@xh1{zFe2p7@r`
z5{>p8%1<fThy(jx8u@%q_8td6I`~<He`56bE01F3Pvx-+F#(15J2>E=N(B6>`Y#TC
z<%;eSyXD}ZgWnvScJPmb-yQrxpLcNF!JiHeIXL3r?9lk$k=chG{3XL{Q?e1Wj80{T
zWwYy}4oDZ@XnBH?L$Xh?_a^yEM<h<tE+Z23&%ec!_3p7255>+n_}9S|2Ui{ZM|lV5
z9b9m5*~(uqD1J^PyR3`R^Dk0MjFV&Hmu2FcPQ==*X}+jkVq}NJnlt&=7>ym=aPZ>p
z{Jn$X#Y$D;1bz1>N{)=*bkJZ>qGekCZ3ih46pNsE1eGKBI;A<A-LX8D8bOH&8njQ8
zjNqwp@k$YtiXgZn##B0jGJ?w%amooOA3+5H6^r-{cDK3xXrk2Mcv=MCPtQ${@J+C(
z!DIO|2gj>MP%VO{5!}c4A3==>YDJI{LCpx(Clg8pY6QLr{1mv>J`ll;sj*-LyN~B{
zr4uv4%xIe*ihxv$AWY#GV_fOXGU>uMA}|GzV?|&Kc7#TX_|XVrMflHR9co7qkKmpN
z?u{Tbg1aKf<(MbNBi#~pBFKrLv*FUW>qc;Q1S2{pnCc0rA3>sslNCXB5pEE{m>w~T
zRp{uwT7*&P`q3&4BYbEiyHNy<BjAdoS+6wDpN=a1C&!wQvn2N36PbAt<VVmof^HEM
zM9?gP!U)<#&^&?`5iI;AuT_L^CP|~`<hH5OlIofqvu|eIt)#V<(m{{K+eXkX0ylz=
z5wwqhhUgGMGJ+#x;^q4`zdkDQZ1=<v!=+t1MZn<MIf5=?rsL=H><Mu?3~AdrvF;Jv
zAHjnW^p2oM1V4P*tXBjNM9?#WtR=B%tL6un#y&fo*EBW1>+;y)l2smxpicxFnl|qj
z0fWi7;?4U;aC&?^rC~m4{|E*|Fl2k~x!vt&8}1`c{-6j3NANdgBK+tohD7js1aCwz
zG=gFDy$F^>Fr50N(ju52!J`q3j9_X6(;^rZ!RQDkM=&LViGRczck|L1`s%)BV>#^J
ziN}PF6FNSE2?8bxW$EJ)Oe(^=-8eayS2WK!9vgHdHl1D(!K?^oQ!T^eGb4;_@$V+Z
zi3#R#v5bf@&E*>TEWhOp57Vn(9v5E_!4veHG4X{Fey<tbCuNhFJ1?EI=8V{r^za$6
z#S!nNSOiNWcshcO5p0TJnRN6*1ZyMsXHa5!1f|<2p5f9slJ_k2Upaq81S<us61rOG
z8lfzGPQdd*dkxNB$8|(2MDXLF1Y0<B&`T$eR;sF`atbd-usMP)5xg8h9XIh3d%QpP
zS8l$qO(wHjBY1`5JP~`1EACkARVukuqgRf`h|eC6k$>V??9B+?is17IzK~(R9l?7M
zyf642&gkL9yEM?CitOuy2tJHpdj$0>WN+hYihxS~B!Z74XuT@NwB$$?XMOC|(#<~=
z4l$XZiTsWTt{si7e>BdzUq<j1V=~>IVJd=eBKRqSpBWh{WOH$C8lKoGTHO`Fw^aMl
z*mpv|7s~7poJ$ejBj88+r$3EFYkteyOI3`E?~h=g0CG;ZOE4W^c4qeYk@15O{KmBt
z!O;kQkKm684n=S{f<M{m)EHCS!_D0L6VnIAPtK10CCmq>#?q#HMFhtpI1$0g2<py=
z9gpxwd^cxceBr@ncO*}Vd@(csp9s!SSH6^F6#qu>Uj*f&s1U{32+lD|M^QYA^ATK#
z;5sKB!NmwJQN5#LSA|}V;7SDj1|-Niex@1eo(Zw+0f}o;y2Eg9MsSNk;AH;bv5DJU
zr&Ho7QPdxk{l?lP9kRj5I1dS_Q66X$C8H=6MTw~A$qgrE^YmLfin*f`jD%&QC=&$_
z6%9tj>1jMum5X|ZC>B+WqEZwMqi7UG<tWlvJ&HO}q(|{{hx}j^N)%P10QnvA*<;lx
z{<uG%sah1(i*Su7Y8GK%6#gO{i1N=$2@0!GgraCOI^jeSmeTzr6aSveW059VJqn|!
zmMOrB!WK~TdPRywWISvkD(%Fgs3m}$3<0&Hh!=4(S$9I5MRkQ!Pv|d0<9A0v+H+d0
zzHkykvxHJOTR;P$IZ@;axTmP}UIA>jaTHCW$crLBil$NA7sa<5+EX*-=C$J{&Vw0o
zK@<~~wP+s2)=}|hQB0i@C-}o~TSU<^iif);m~BOSb!y&PXrWMM+eFc}2)7f^K8g-S
zoDp-guNwTB-t81c=O|{zFe`>GQFM*sP!xxw=oUryD4vPp*(mOhqDK_tq8J}VPg*~U
zAyEvC;(;h0jG}K8{i4|1HPJf?9=ZDnekh9fIwz=~WKJ^%mi|$Gj}il;7{oD0acX^X
z&BpcxKjjZP(|)JgY{bOe!BMQb-t3Vm=BXXXe6w->hn*6`q8J{<s3=B9F@jc0CLWFQ
zkL_u%`cjFRMsl2w#RpG}kBMTe2s{?Wwq(LK-7QbIC!aFRPKaV+6!W845XIwBOp0Pw
z6tkn49L1C<W^mZa#MCH${Wg1A6w{;pXih$H^A3r7OqYopH`7cJo9rg$a4l?2<#}Ts
zLDbtlyO}O860<88r@a<Nu_%hCqF6#YF8&0)JuCmoD8C!knp@;zPV;cHO3P!TO?PP&
zjpxRmj$&C9pYSqpZfrSSaZ~KIE{WG)h;gT$`d!|NC{{-CP89F5Vic>R*bv3WDAq*r
zToh}gSQqs|(DPBe5cQ5p#N3aVyd%?risOB$>!aQwggfK09kESOycor6QM?}YV$tR(
z{*S5a0J5TLx(mDH%uyuDr;>JZo_V{#g6!M3<gi1I5+&!HGm?XnGlC!>DmjRP2}A(_
zm0(7qsF*OJ{AVt;Re#m3Q)ha5?)2^3-7|A%-tJDuRVucpVh8=!Au3rcVnkN0A}f-1
zrQ%gi@f3+p9@IzcI9=LJzfBGHq+&1Q<Z>q6%M0H=#!o-3(S=On=@HsNrfMoKa5_?P
zI5m2nDta^X%~TxWDMYO}nu_qJ(&vY3n_kc1v(;OvIF^dzG-<L{e4KVlkhcZClZtl*
zc~2k}-WTLVDo*A~J`jY3h)-%Crbf?e9|=4y@QlE-0zXd0IYG_~<hlWsKTXAFocdIJ
zPE%QY8pba%wNtThxYl8kmVPk0(;hZLqqSe8;!Bp1RD8{}Z6m$j$GbkbnDM~BKU*5R
zIi>ut=!WoWD!yY4l#n6eS}LxmqJV^g5^kj8W-5M9#l2MAV*Inhr{XRnipIy{KcwQ#
z`O+N`8%wH$l$5-h_)+Y-IX(C}6~8b^pNjv+`p+a9A^p(RE7;M~#|O{NmL6LrExjiF
zk%~W4kw-#a34f*H?^OJoivLpa4}-8`(tSq$jDRa4yiYzm!izXlcwo?ef|exV=FA{Z
zzo785UY8+3vV@wyX6BQSUqXt6X?ZdRuWZ7*hyo+M!V|RYF&eM7g(MV~P(?yj2}L9n
zl~75-;}VKVC@!ItgwovABD%vYA)%y%c4IZJa*SP>K_9+TD-H@<c@-r*B1N}?j|wa!
z@G*g91#(w83FUKn1wmfEmctdEGGnyLQgnmygoGz0{7-^)vH@q4oj*nUlY-YOC1<ww
zDlV^|{79mjgz6Gx35tXo5>lmTd1U?Yp!r12UL#2oHfF_1h^holf+6t>ZG68#dSa=h
zOVPY^TqN~B(%6z<vvUcxB&4rQ@J40t@(f3UD}lrl=nD)4#ssDbq(ZtN1&Rc`S0B+|
zVw|52y*d)=N*E~N{s8T13H2o8NC+ilN{CBnD4~&rJtMU&2?+_=f^+tV4A$yXvPf#c
zxtkv3>+h|dsBIsmHI~psLNf`?B{Y@LafHUz7%qnNFC0AC+G7!DA%U&$FQp?sC1@$3
zm4qG=dP-=`;?J3q&|aJ+qfDc#I}&Xr?5`4jGcB8K(9L)U3F-ikq@x64CxM*>c9HOm
zAYBD=Z#N0ub2)2cFA2{|=qI7Sgx(JaLQ6#dmmX<E{m%w?r>le<>;Q38{s!6PY~xGE
z2T2$#@vn$P^?$g85fX+9&Z0C-ke~NwaMwr)qa}=yFpAMTLgQZE(v0PxMr-3Fj2DEf
zMt4SO6WH7AV8~ca9jZ-~Fp1+D8u7`3Okrr{N~TGep38acED6ssm+5v1vn9-tqV<7K
zCCrsDPr_jdM<o7{G%S#?R>C?73neU)uvEe_35z8x5xKws;Ehw(K<#-6FG$e?FP|xR
z`^1@DE@6d)RT5TnItE9JTD-Wgl%hM3!$SgIgVsoxFj8ajA!k49C2U||Y?oeT7)#hB
zVVBsX!(U|261GUu>Sdl?(o4DWPp-wOzg5CEA$eKgc7c@d5M-x>R|MgGHHGZqm7~#7
zuL<Gn0(T4C!>ATypFryDmvA7L9~9(}gtJ35?s`MG>rDx7N&IjnJSsMeRSnxMuYXL!
zdlKH4a9qOMV(jloc$e;4UY~wodh&wEi{=UDOB?9}38y67?%|zeMpq5H%xU_e6kX%!
zz>kDN{@&h?L$%Wq&PX6(J1gPiTz*cF^AaxPN<I-sQH`_tnS_fHE=jm7;fjQ>C49rv
z4fZ~lz?+#bIO!v_Po9o{Dd8(Re}opV8oGl#7VU2(T$S)0%f9IC(ZSk-N!s+$L9MOH
zf41|kOYol2x>XIYEo*X%#<SGO&}Dot;SR%9MgbW=&>ji@uo_7CNy1$Tze@OxCB1|9
zvxM^t^<Nmq_Yx$$QNN$3#qV?@tG$H3nZ;9sKP3Dq;qx{gAKtmi8{ID_YGvDdPyQXJ
z5AQx+;$I2>Nl2EFBIALCBpED3d1d60qhMo<?H=NhaG7XZ3-3}p@7ORcpN!{+2I*rp
zUVXkE6cm(ENX8Q~o|I8oMiCh$Wt5VmbSo<3;DbbQ8O3BU??x61h$VQ6Nl_X$EE<%S
z0U3|Ws4U|VIa<2sO7EjG%I{6g9@~OFl#%h6=!(3oAms#>mr+5GiUKPMqz;Q7v0<^`
zz~<!ti4J>?_MW0kb3C?G8C7Idl~GMds>`S$gD(h<-%ZS`8lKKqr_cHvs!1|r8Hx;5
zs4dx&)69%d8|G1`cqi|ulx@gpD5H@KQ-&qOmf^^#FXPiXwo8MH25cFEcrtuJ0)esI
zy=gMi1+OWvR<69Zj7npp!|Mo1T^YPSvOO)Mp5U1R;{vk;CIn^+q~^JS-t`ed0~uU?
zVWDU&qlt{6GKR@$Dx;Z<o-%rIfODkgGIC^ug13-y-HTJmR;5hImNHrid24~47z~26
z6-b?SGTIB?L10ILV`i6n*h6O-U4-Nrfn5c1S2sbr%jl6SaeI5bW<4uo2+dn1k@uFP
zt5_cyeFY)!C!@dM19Bw;1sNn`aIPeKwDx#^@6n1$!x>#N#><!>V<ZDW#uyo6WsH`i
zD#13OdZNdafMi^*WLude=D62dnkZwEj45(-edlY4s|%wxS>~rQA#WRaBR8>^G+o9F
z8K0~8Ld8rOvt(RSa9P1~GG@!jR1jA%N5)(kKgqZ&W1fupG7c~iWGs-eP{wK*Yh)~v
zu~^1RIl5RcVM57RCS$n_uEcT~_5~SBnKFGnu5I#`vhpB}Z3QQBgmz|S=7~ia+~i}$
zDp@>X6%E$PSVuc$yd-12j14kgl(AWk?%p@b;7!FQ8K?SbLvlPmQ+zi@Tb3Mub%Mq_
zM&|Wa8QWy+ma#|X@9#2RmT^1OUYD_5Z0-<9`A!+H<nmpDyejZD87CJMqXO4PSUPCc
zUK#sj?B`(b#VZVucv9X*mMRu!jXEUbu#ER*oRD#Z=CKDE$HhpG%HT-f5@UQ*V6XL=
zlzj7R>9=LPBlEwvm*()_mGPd?B&UD&uFhoRio{77A20!Bd?w?U%1NhWe8{8vOElov
z5a}bqxp`WUGXl@b_*js0xqHvcxRA>~k<sz0#6!#h(nT4UStuA$L!?Ur*{$?=^5-(X
zpkXWp?@D{FNW`xMzaismK`8k~kZ%QE75JTuYq@)`iwZ-vn?iCcSALsv!S4wCAy@vR
zAY2CgnZsn&Rq&*OUuFCzqnv{B3VxSyPewrng%tcD<4+m)W&A7SFByM}67dfQILPB7
zB$4H!!k?LKQZoLdyM}uOl&IP~^I`mf3}TWJVIF~b1ttqj5tvUw{)f9>N~ap{zz<c6
z7gkV2!O98RV+x8YD5hY3p`eTsy^Vc%#^MS}(B{80*-9!XC3xvv2^2gc_@e@g4h^Wr
zK%G@BjxS1-RY3k$)sT-K6%<rb@VJ7C3MSRHxrRxf@N!mJ4B>xDw6u75TePsr6n;uU
z6$K833aToora)DoDX6aC-yoi<KvM9ajZ{M*pSXE*C@WAD{BOKAtF^}`3pQTUbp?h3
zOMxvkO$FOVN6$VyHt&ZG_y|nz@sXi&bI()YE2ycUmV%~Z1NIpxh$+#d&AriDnu2sz
zj5X44i<)vdf=_L=6=W!=tKew`+@t|@l;|d38xuVd+#H(CM5eHw65Y5K`XVz+L4tl(
zuu4I;g8B-^Dj27rfr5q#dMN0rppk;c3R)>>t)L0bP|#dK3;L~AycuU?b2`^RKB*dV
z$s$JqF;vi!vGhs~d2e3q`fBxCdVg09so6&1Kf^^kn)E`(qb)u5&|X1z(Mbn!EH927
z6%acq=qw0%7lubJ?<z<)fqb7;^1C?C(o4a!3i>JNuOMG%uQvmDq}EqKA3-Rg--uh*
zrVLOpP{C*gi+X#5#9oqCJCmtDSZodvI8@*;fx`ukP%u)EQ39#Y1)Q{T+8D;?@Ti22
zS1^H5s$hYFiHs!$GZf5JFj>JA1-(yaPUo(C#iuIKi|J`}?*NUY)=G)DLu^@HigS5<
z7Q<<bHivVnU^Zj&dYtc8s$NPbnM?nOsm!-UVoTYZSjbT*cwWH^3KnzVTcnjG1J;uz
zO0>>X`+B6d=~((wPFY)Txq@X3n}LDa)=L`}B)9ce&_6p9z1n)K6|7NkM8O*h)+$)1
zV26U83f3#wpkT9tEebX&;0g~7<^#?qh5rc`e8~0FvRCx<_~MM~7%wq~6}+r~ReGy}
zizB^R`xCrv-mXNqOswbRT(EjY!7c@R73^aUDtJx7>k4+$wsi@XXtuq>f;}Sj62Fzm
zJ0{pLMB|lfzk&mtxPBVXbx^?}1&0+3-6ZiAl%D_QC5g|c?LUZ9a#X>a3O-VBTESZi
zjwyIw!3hRfYwx&%cNDzKGj5dL<`9}i*}>CsDf>MoT9DzL@FUeit|y#SaEhs2E&PD7
zI##pC1bhYaA;VtW6Y?5#M!{Jcso(<rHeC8x!8s**`Nb6~K5eaT?ePwT@=xdo#^gfj
zQw5)~Tujh9@5ts^X!D1Umsqnh>578SIS>`YcpISLOI8&X)l__?;A;hWROD6hje>6#
z{H)*?1y^|%`cuIj1=lzu3U2Z~p={#R+~5ZDbWL<p^4b%%TMBL~xUwd5M^}mMl_J3p
z?0mHLlY+ZK^G5}nGPC&<e{8hI*Bo5^CjP46HwFJFxX=2p;2tZ#f<IYlTX<?WozE%O
zmgK)!yQXM=i-B`3k;@(Slz@TpuY&)C6CNn|YIJl<@O=kw%wj1?jXcA~m`qlYq5>)&
zQIStYeig-36jxC|ML`vXRTNR91*k%5bPGqr7&%$|w19r-;BgU#r?W;&3^pzymQYbr
zMJeL6=w^(SbJxV6v<ij+8&{JaRZ&JoB^8gWcuYlE73Eb_pu!)S<<#gE8%?6S()veO
zQH`o79XNfoMy#yje=43-@st`}<DO8XsOEDb!<fEh0PvBsiW)8BFq;Ytl&Y(!p`xdX
zUMf;mNGdW_#8t>D6csg9)Ka0U&{V`!r18KGp0480wqBs3{%FroF>RD*3bX{;0v#2u
zAf7<#_<}q$M&q&eXfIvGlnGjyp&D-~Qzr#K3=V3GZtJM1OPgDJ8RA?WT6<5^Q3Hc|
zD)_#M;m3D0?2Sw4St=4LTB&HQg2HSSEmY(PUSCB6K^h8dB#=6d1!=-L5~P{H=DB-g
z6SPnTQ-Bt>WasTXavsI=wo$?A(M?5n6>U|t<6Nj1(8=QiESC*QI;iL<B;=h`bk5~n
z1bIe9S3&xY)2Q&@*r10PPU2$XpN4UIgX4OZ3MvMw=*>V<qZjvmRq$c6AE$nOCKpEf
ztC%${;5+d`gMvYvqiW$`-hNjLpRE@1k-z*zX^4tn)0?iZ77kZ2Ld7B#i&czNqotUc
z0(q8EDn_dq!?UX_(b9M|dgVG!a6UFtGJzv)=1mlG?wX`xaxR}D$W(#T1Wp$?Lty(`
z(kzCe;ImcCQ!!t~92Ij_WN@`@pfqh^Q{n=VCVUvLvn`qVvQR~*$pOg{70;{Ksp1v(
zpkk?twJO%BSf*k*Cq>19Y9VhbR;XCT;M^M3<dqy<$LRGOv*6g;lv|UuH7ba0{w}s&
z#Re6dRcukQk$E&Jx(D9GFz!)|*Hhlcyr@QB6!32RB^6s$Y*(>uyw<drw~eP8?!C-X
zHbGl4&?D!ya)+>)ZsAJBE)}n;II7}J6|bpyUBzA%`&8^^=^L%>QKPlE3CZy}<Fs?t
zLMGjQTCU=-iX$oxGVt1ZY=>05Tr5t)1SE14Z>Z7tczhv3E)NRcQgKYhDHR_IfAR&&
zaY5+7x0%;;RKw^+;k!cko{IN#_nr{sq`(gZHeH+Yk&4rdB^8%doKbP&g^aTTNosGB
zJ{J6(!1Dqx2>e7Kbv_m3Gl3Ub^zLO+_~=0G3cdYnWX6Kw(xQ>xm-GO0R>vJ3U$gkD
z_*la^4d1G`%9PR2Uc+}PuCY34cuK={6*pK#H5AuylU=F!Tg5*rZnF~=KdAVT*w^EU
z?$G}`6MWcVS@=oC#J8loDt=}g7}ft@IMLm*_lyeYx?g#0wUF&M6~E{5dxHES@J|(g
z2|}}}c3;K6D)MN^tKmNujV<X9R3vFpz_k1)&Q+90WAWM#GD|PW7`G$2cpX1kLkbP9
z;~#z@o24nAhWr}%Wm*A&Bn34T%H@RxDWaihu7qDol+aL8Ls<>wG?da%TEn9n%4pdA
zcnN5DM2iCW;=HDOe2Bg>8m6rppz$w*P8#YhAMH(kHJi`8<u&lyREb7vsGy;u7Jb*p
zFWmC=jn+Ra^UsKCc&th3C&Vc9;X%RUaaMrGSv<d!s%WUHp{|CfHB{43T|-PmnuZ!0
zQZ=X=G!2plnZv9eDztpK##er<MH!nVN>-?ibPa}v)o&E%XO^ZGeM`xrL1eSUrY+FX
z;0odi<X&HpK;VP+jng&M)bK=+AVWhf4UF&uqrBSm%&_P?JzC3417BOzVLu}SF74LS
zkf|Zm&{9KOLzaeS8k%d-*NlA3NodICsE26vHC*Ww-#0*OphfQv*cuAbNMK`uO$0X8
z_{+7DRNy~e=5*(1D0o-nYY2{%Pch`J=-$3sYYlBQ40~DP$8{YCYIU|s<tA%w87=eb
z&l;k2(9luC77Z_H=%k^uhOrvPY3QQi84W{upoXp*x@j1oVW5WY8hQvj`)jx}I-5nQ
zCr2?+>qV1_25ip?(pz934Sfaam%I1I{9+s<zcCo3VX%fFbY|b^T}JT{L2{4ATwK~V
zM`FGV*DylEXu7UwFjB)Pn(=!H2E08z+aDCYa%%lkeDWk|j0Pe%$7`6NVX1~?8YVK>
zG|bj8M~l{=*7Xbc(c@$dQ?%&o$EgCR37jsF!Wn|h6gW%6bAs@-BX`Z!Fi%6_eA#?8
zLnqU*eEOKr|8zZ4TcBZ~AmocQEEar8uH<<}wcvw>XjE9PVTFcO3_J}h840bu^4+3~
zCP}`t&8e`4@z71*tYNJ<YF%zW>osi1<r@XrB=ALne0t)eD@*-W4cj!lui=D-mo;qH
z@QQ|ATJ$Bu4yM}}Z6_r~g05>)SQ9vwS2et*;fRJeG`!B_)j&rb7J)>Q=;S>bh<i2c
z6NG%fAO{2<)Nn|UBgK=si)s7qq<{|s2bU%o_D30+%(9W%TLO;>JTCBUf$s=>S0L5i
z(=c*U5Uu}c_&~#H4QDi*V&H||M>JrB_93n98NEg!F4&w-IUhW^$x?GxgRM4VRXMNW
z0!x98bRC~)_>{Fs$D=wv({NG4UmE__aET6KfzohWi@q?tqTve-Uuw~9$>&1Cr*-DY
zR~mShuQmKIBYHylM$8x2$-mWbRf}HNvVAAWHG$U!-Vk_G!`<Q0qWbqVW?XdJaF3b7
zt~C6pq5uBInX{W!tRDU(_+5b%{w&BZ0)N%;n;^gE?p^;|{0|L(YWzcy*;fWdEBRkF
zj{n1)Vr1$lqT^qtGtXWqqmUjwgFn!aq(?UZy!tcO^622lZ%nbgI-*1qm?AKrj{JfY
z5Xij+1$nx9nCR&BpA!_-QA|fk9i{YWS*f@Vmdz4+^zMmMz-q&^Ev-k-S&Sd(IMB``
z=glxT%jkGaho(c<QC3Ge9aU+S9$g^H>!_lGamcll3Oaua5LVPtiKnjPvpp_IWgY($
z<cVDQlRBOfoEHMB@gh><aPjIoYUoJSA?eY_ON<t}odGH9_-dG@=um0ZDDQngV5zCl
z*`t5B*U+OkBaRMNhbg$F!`7oKGEFiE2TzaEj<@wZ9sFoE(BbPiF*~T$)8khVG5YgN
z174VTjjO4nmX2vUrt7G!BSS|+9gTF<(NR}NTt}9Ur*+ihuFX=W9<BWF{ldP<TGgK3
zM>7MOn$VH0qk$gX6@1t^di}?xgZiAuEfU{jKJ!_e^2R!v=;*1VmyV`7n(1h-ql1p-
z!iS8pb~;)JPM78g66$CvNGpM@1-21Lowhm(42tT&i%sH<x@LFO@!w#t6FV2*!_d7X
zoyBGs9nT2THFs|}9o+@*A+Yq;WGX+aqqmN!ymxBl_0iE+$7CH-boA4~1*oAqh6&PN
z-~b&11>vqif()i%xsuPyB~w0JY>pK;Lf}XpqjGgd>lh>WLuKlZ(=k4G?*u_63Y^3W
zAUb3n&O1coODldwzz1a7IYY-x9s3y`I%es3PRCXq+jPv<F-OM>I+p5~t4EJ8tPc%e
z$(|?pe1QuDa@Rr~i*os59ZLj%ULe1tixirbV!SQWv7D*;Uc(i1%L~$a!B^^7CCF-l
z+`C4QwF1`(Y@(FdAP(VC8+B~T<u3}dS>P6dFA02oX7Kciq?dK<)KR^aw_V2$9jwXq
z{>bbxr`dbm8}kc|S9EM180^yVsvzXA>3BVt@7A$L@V&W`ee}jaiE0OR9MbWDj#D}g
z>o}t0Egi>nyrJW$jyKuK%qYu_57c;L!1_G5NHDH?$b3JpgCCd5?^$o_(Mv0~cXYg)
z%ij~^eWsWoCk1Ls392nxR{ujCXLOv^@e#|8NIj<clIr34+VNf^wU2dN*1^ZvbDXbZ
ziSv52Jj-^0SAksqDPtg)Ulin$j%SMnRJ)?%a~)rZ9=;R!rNFNQvfHl(`9{aLf?Um&
z^QMk_uZhj;0&fVsDe#t#+k!k)`$5N#I%=AzW#T6tcWHxxfd+oo@e3=Y0o}l_I)2ju
z1CJQ^UB^8g4|F6M_=ElE_(#Wm9e?Tgn>D0r{HyWVN2-TE)=u;}l;~bF@h{7A7irj~
z_<uTnDx5%};KUd4$v<S~F_70legg#zBpXOEkk7!VPSSVFGd@|EvHw~ozjgUEU*d&5
zQb7ZS3=}r-!EuQn!mV78!&~kWNN}@=fucfQOduu21u0>mWUi!?fzr90%R7%6_%z5a
zZ=iyKG6o(qP}aa}N8+DU56c-qUaxm*B7g0~psVqU1}YhN!oZUTxVZGVfyxH{XQ1ls
z`20rMNuS4m{v!T;^)O$J@F@dT3@8Rv18Z)^s~U(WXWYFNuV$d&r8rx412qIs6)5G(
zWkK%GDOO`#{r7rGPu2(%HA2IHX`rEjMg}Ycwt?CPG7LBdTmxw|#(-zQHxL+z8T?K@
zeE(E~KQj_zYJ{I<B#PEdjD9n_=(*-K4eYI(sKr?;692Jk_L3SQpEWMlOw=(@mlhhx
zGVo?*_R|LH8OY>BRBW`rM)*iiY3z=K)>C?Cuaq#5ZJ@q^1_nN_5&m8y+}2iF_`393
zR`!g1i4FUuDX&S54K$$*2D%z(YM_~c4hA|JXl|f|flj@o90Nx?#ml6IoX}UMNTCre
zFsi9xOS&sHY$dR@fi{9r($+w`T;4ucxqR>JP6j#~=we`X&+HdR2HV_*-UkVziSFNT
z-pxRF1J4@hZJ>vNo(6hxjN|GbzR5rS8@_%q&PkbhF<Or9W1z2reg^uBV3VIn^hpip
zQ71KIP_Y$wD|?WE!3NG5IB#HxfuROoGO*RaFayI4EH<#jzz72)4NNmIo&6XXZD5Ll
zsRpFFi7^Hq?;M}KDs8O6FZx2Zae|CDFhP)s0w)QaEbxaq391n}Q*74{G@oH$rh!=o
zo)goT6>HJEX#AJdu&5NyW)PN-cP*EgW8mu-GUf`LCy<--1z8|)p}<83UUss%>v;n&
z7}#K7qk*LcmKoUmNMb#MWN{9sreKl8asw+2?B1QdQs63qs|8ZHMv%1v*9qL2KM_u@
zZx+bjWZ*^iW?&14^P)7RPWEG~B@(7UmG9%Pe;<EPt;IH)!AM}p8Q5-M2b0dg>jrij
zc*Vdj1FstRt8PNgNNknkg`dx1CMG6p>;6n+NC`S~w}Cx0)!=7NiFW1VP3C9s6Qg7B
zKPiR#4IE&eO5s6)B!>(f&gDl8ydijs--5f|GH}emy9VAfaNNMbJMp&-ykp?47bWK4
z_m|_eJWUE2E$=g^e#ksw;G`g}r0@fV)?<ltccO4Q#U6S_hkPi=M*>e9I3vhefgcM@
zxe}+^1p}Y3mKyktCCI>M2EH`#m4S-}E*ZGO6r=YTnNs-O$|hwGN*{NWj_i>*HD54Q
zd*s~tAklKOMDn$PZwy>FaKpg22Cf?T&cL;YDYGG`!1;KA1JYC}oY7Yzf5&Wb)4(kQ
zESR?qB#y;NIxNjNGC@CfD)GI6J7U)l0)G@pg`WhuEAVH5zX;@;wcicgW6d;C&cq)E
z{xopkz`vY31AmM7|A!O(L4(#kb3X0hy)1>trSSc7@&61wFpy*-j|nx_bV9@IF?*t~
z0rQ$jHly;}rePw*1lRUU3Cw3AzaRw!7Bx{&kU|0r3#4)pK|VVYCod*=aT6s3Dfw`h
z6ml0^X_J42Eb9Lefh3O#QpUt%xsnUD66H-)Fj3t^4HFejR5DS`M7uK$9yj@YRQSd2
z9EM_LlVA9R{}V{^gdk6vcq&&?<smUqyl#RD!Mg0)a+qrJzd=cs3EPBZ;@vs**<?W!
zfvP}Fpl-qtggT~)l8ZA)y2@ep{2a#wudpsJ)(f)PJVAUDL9QewNScXsL8i(f)oPo_
zFfqx*WD|8v)HU&}iQXojHc^iQG|}Efrir+TMkX4Y$TIQXl;{DozKMj1Y)U3+l(0hb
z7kmv&G&G~{xcGG<m+1KxriqEBCWiBO%9j$&Of;t(2S{yA9PR40Fr#nSNOHtxD6pkK
z3R{_IEqEJ&f1NK*VZLhFT$JlzqN9nfCc3c)6FcSvCr4^sOmwDvpjK!?{R_Wj@^<SP
zN;-PaHHi-%s&zNf(*)P>dzjH1Xa0<iuL64s359&F>0_d=iBTp-o9JhvzlmWq+r$79
z15FI2EBMX1iNPj@aQfCu4TpOx<nXv0Uap;BH5+m#&Sg^Sj4-2{MmA=|NE7^}Qr%k;
zkw0%4V`4nbo~UtUW2}jBX0*h?#)msT)J!mOySX>fjD9w|_(tXw6H`sBH?hIQG!xTJ
zEH<&k#0(QNP0Tm3z{D&Q&(Y3i-dq#2IUOCNhr~H1I&_ylDV-qa0@^d%rFlY!uUD?i
z;X=CT#RT8S@wMY3Gx{CblJU~>CSEYH+{6kKbGIcgHKW&O(aQWPX&I+)mBhEeFMlVk
zG_l6SS`({GtTv-Z(T5Mz{5{U_pv5{f`f7;3^x6Bs=V$*LO>E-CnRwI0izYUkc!l0D
zvBktoCSEqNo#8apTT-#WRukJyd@$7G%)az);=_jV9dvSQZ>JeO*s}5aM*f8G#DD&)
zCisEbYbIW2+bGfU-6r;!c*Bg|tnH<KwfMxH3GUiwBDG`oet`!B9u!F7AwdocJR-0~
zm&She__Xthx0vs&68jP-1RiIiG1^VMZQ>mv;WE^3Eu%%SCkqGfo6#yLe`dn>fZXI!
zCpikCHg<jvH$O6QniCgbMu0OW&T`5;EcEcPiF54M#``wTo48<NiiN2bJ~8pB3D<&W
z;WHB#P5f!%FB6wcTsHBYiEB*EHS!f6eoOjN;O7FrpnRT8;a4WUHt`LWr$(DsO?+$O
z@2T>>t@4*I%K4P=>Q?!>i5n*Fa#EJa!)M4hP26JOvGZMWMJ0S{w){P3d7k`(i90M@
zvt_pPGvyyyF?gV>UfL(u*dSBkXA{4e_|?R3ChnOizf!I=B&qE(`F9gM3)`F{GKGJb
zSQ=MnERz2=@eeDlg-0yhH}Nmy+(JGJ|CxBec(X9eSBD&xzpr0^_*6N`0x^$;^n2MP
z973`c4Qk1Ya()X1EEKm;!a_j{?74`Aq818Sc+yu3TWGXeK5$(o7PHWQu3T!V!o%6}
z<*mPSXc9?D3#BXsi{-A{<PK*_l(r%l{jg1b)Iu2xl`Z_w!ebVuq$QQLP|o5X!7E<7
zwp!joy@hfm3y)i<AP%W$fnzM4Qvc<r8rRt;bL{k0Y_|LaEwNC|LUm!@Qx?8L{i@=S
zDi$~q!}6=uZ)!Yg4GXCjY@x<Y$%1S_5#6#Y)k4;C`G1Qe<2Au`frda+AQdb@DovJa
z-_jiV&1w9?7TM<jEi|{#!a~eKnuWR+o~A!7+}tE*SQv6qt7)MY<x2SR7jkVumY>tO
z$^Y|J$HK9iNhIvH9{abDu(0?eInzSi!rlckTNhW&wou<f6Grbz`J)|j0}Bo5e+%T}
zo2ZQ~@bH`WWqpqP^E>j)i&|3)mriTVc+@7DWcmp?$3keKkA=P#T3Tpjp{s>%7Ft_q
zW1*7;=XtrU=%)i6n3KT{+gWH&zCbRl)hBke@KU<U_WS6DIWNndEp)L!@{B-|JvD+#
z+vV;SdU3oL<i9S+JuGyXCHJ(js!jbnQ{-pqpThNfi?e*WNFM#J+>en%Pg)pZVF33I
zOB!ThuuvFiVOc`0)>w_bEm!_pd+U7m5DUbi^h`Z<n7}n($|Eg|;yk9Qlf+S@EsV7=
zPVh1G=Z?s+bnkcz6D&-$aO%(OB~pDlgsz*gJUM59ObaJl*mydMlW7*Fa~^G^*_dHr
zCMVItEvAfx=PVqt@P>uiJe`GY7GAb6*TOstYb~s^FyF!g&YguNJlD+lLJN!N+dBHm
zMb61?@s(ra-8yAFZ{Y<7;X-ZL66f3-8B49`|21=S8J+gL!?s+I6&6+svP$4;folX(
z=k0?T>n&`su*t%U7T#=-Jb75gMho9|Pbc|cv9sC27EYFhtu*_A_U$=O>KXrWR(!?_
z&h*o1>SCu@&-iu=J1p#Bj9J)e;rQW<T^3%oaP3IOE5fR+LyNt}shQmLbql*$K)R>D
zxiCKQg+@sOGiY;<f$@D7_FFh);jo1R77kj-zV2=R*ju4xH5eA}dN_kl;MwywYrcDt
zLw=N|S~zRrW6mSP-oi->AMn%`-nQ_rh4(DHv&>n$(5cWr;~fi649ocSU`F!#3`*X&
zaDuK|5P!Ir2Atw}&v_rw;J>u1x4jSPoJG#<(ecyFxJK!17HVfKoL=aVoU?G=!WS$E
z7A~;(Te!&VV8Ay{|CIHg^=GL=J6~PtTwLG`KJQ(o=HuGu7B&~F^WD7o6$^D%Inlom
z?Njp1%=lLpzP50cMN%mI(x>D%w1i2$P+PdX(R*or?I!614rN@kaNWWU#>PUYM!J8y
zYmn^u{Qse;OPt#lzPC`sMo}AgSoAFX%i?U|M+-k$_}#)i3wJGCep~z1Lf+v`ezx!n
zb75^p*;`(-kG*n>oR?NN`ArzPdWCcMy7vc@)WSa&Qr2etX`#vu?=Q~j%Eps!dP~0d
zzM2!i&t&P8!S+j%{=h<#jT9UCY&07cr)_y`<h3#BnpfZTk0zH)wlU_q_xs0Qej5dB
z6tYpjTbx}Lw87~px58mOcfIBnwlVC@jF;wV-iExzY!tWgq>ZO+l(13KMg<!cZIrT6
z+QuU`9<}k$kqp@Q+Q@orfkXaO#fD{UJZ7Vujq<eQ`8YjXmXZYy+nn<rH`^;A<=i}Y
zw?QQvm2Fgt`H$P6oO>z%pN%JM+`j2iez<4+<E}v!8&z#6HdGtcY*e=)+xT=@oC-B;
z^dDX<)y9tRy=Ry~H$2J4P$m4MN4(Yz&u^Wq+0bn`He4Hq4b#T6qvDngMg>oom>0is
zD8m*)%8!m~%I4YdZ7|dsHdhxrfgPnYXPLXwZPcV!ZA`XN%SLS*t!=cikzu2bjRrOv
z+Nf*eX`XaNqip);oLA3A+(woSrf{Z>X$=}S&R-y5WAJ>3d#ScLxg<$_8ygN}r2GCH
zB~0{+H=_4!G`G>%MiU$T?l$PSES~m!yeY^2bAwGv*uusqUE?`6LL1(hbn+rgot8FQ
zaiXty403itoB#YzYipyOje#}>(aAPC*yzRa+URJblZ|dRy4&b%ql=Aa>?mvQCYsk;
z8t=Ix@=sSG`FD{+`TJ>J4;wvgyw@Y0oI#THMpQI<+vvma_`7z08-3}P8{U2;>?cUe
z>}1-|>47$YL%8A5pUmRHHip<3X=4;;it%RSikijg7)~D^$QZ${nxx-Y=wvQ%h^(}u
zIU*b5ZA`E+Rz%A<8>?=6oaN8!H!nOOp4=_yyfC@KzzmkJiDI(akBCpPG1bNv8!yr4
zHm2KHWMeVwzm1tTp0hFA#w-rMf1K^2p2ZV=H6&w>jkz}F+gQM3uY1?Bo6ocH%g+ti
zST0)K@D>XBq?J)^VKyzX@w|<dw8zE^HkR60Zu7-l7Bg#^2>VV;9F|RbX$1pgp+-{a
zNXBX#YdGCDHriNgW1Wp6dGz&+Nj>YV5}rO9dG*SuIDNj!#)~#KGvp@fEJ4RRWiX4o
zFLqM;#D|WKZ?&<_#v3+{+IZQ<b{ntT*v(vE7~Jq)v9XJjyV%)j<J4aoOBP4;DwAti
z#%n^Mh40hDi6zb+8+&aWuyN4FK2Z=}dEVJ?<Hup~4;RE4sE-u&_3PdtJF2~h8I%3v
z3vYQx7*q>2%875<c#HZAoOf*;vvJ(U110R7q~BD+w{4tT?!063%gOMWH!=>*cX}^%
zRxNezypeIj#!1eXgD)I>KqHxS4!Sw`(8fosFb*DdaN5Qh8$WXvY@D_6v5l`-aM&kr
z{^>Crmuy^MF0dfjXq2Np*j|jdQu1eaE#5j^|4az0epCFiAerg<=ZrU|ZMrVE%POme
zU)Xr3eb$$(DlN3G!_q1^&A+knEv>b2OB{05#&toQwpriVxF&d`VQKcTG_y;}4Vxbs
zhCJhKA-`ke2OHlD{(B4U%$cMST~dDJqzp;>$;MAdlPTnh?lNuLXPp?5_N$HGSg0K&
zJNVtkJ^D=?`-hD`ZT!swVuQ+`<<)tLzif;MlSz7XEq<S2X5&8w>W*UUkizR-ixXRg
z$w^M+2ev$d6z`If;vk=cA`Xf=pa=5PvH#{P=%4^k+JYa@G+#V4t&oGl4sr(QlhUJe
zmF|*K%t3Jn5S^58P|`tZ2b+ebac?OhjCDz&1G)L>&@|dmwo3|m83&I!sOg}VgR&0F
zIY@ONIVkU-f`g|VRB=$zK_v(ObMS<N#~si`%~~aM$|^h2T(A>5=SgvjzGA#Ii56CM
zP|ZONA<us~;33qk?x3+aFFE^>9ViYw2fhQ<f#$$)V2VR@2b*&>pW9xnLWeBNf$hL?
z(0^wXGp-mu10$tF)*DYXq$>gkmD^^eiNmQ7V{mpYPLqDI{d6Im-X*2BgA4~v95i)M
z$3a~OaR*sq@6!(I2|~koc&6a=|K9ug5)QJ(W<v+;u)c!^VlEgV<0h7(^5*;b8aWsz
zywTVJO`@=wgXRueJ7~jvdDCj)Aau}D^poQ-LHq^RYqfH)R-BGgTx@9Cvjg<D4%#{B
z<e;<AZ113hAbYRZ;_P=6oSJLw=3NBmR6fHvQNup6&*4+2yMrDMHaOVmpr?ag4#qo}
z;NV#Yy&Vj7Fw8+8acqAF12`fFdAp?a6C-*!_JQ<CyJ!f59SjnhvqZQK5u9=cb_K^D
z?qH;YQ49$o@AXX-(xV-W5u4-K?Z5dr@UaefI6cWBA3W@L?2<Ck!6XNZ9V~G$*})VC
z&pDXwV5&H9hJ%@cOcOYr*2;cW*`FmW<SFQ@I>Kpl9L#mFK&Z`gFkj3L6?h_sdh0Nm
z&ROVSk%M1_{oKXyd)~nd4pur?B@SHbV7VZ4-7+UCEHrY3kUR`p4q>%}HJm92OjvfZ
z&H;C=cd&GFDeAXV!?Oni2F4}_FFJV5!Rw4(2U{GxBKmpB!B$3E&#avewmEza5v4qR
zPTVf|4$&bu*;vzvlXgTwzRSU@LgADd33of#<KQEfSqFO^>~ruobI`$l2L~J+6Pi>z
z`2WUx$iZPDKO*oAfk$&S-xTC6fe-CDo||9q3gP<>P6*rH6Pq0MNd~jv9|}Ar_R<M-
zc=f(5c=kiLYB7w@IQYcDrw-0K_}IZY2lOgkbV2B!7k=iTDB-c6Ik@QH%EMD^FLuen
z<=oS;L-sa*N|a@s_b(lMMX$Qp<>G4x-!PqB)N%2xgR2f6aq*~&?;KonkjF({7uOx!
zpf?=+=HRA-TMq6x_`$)hziQuh@IB+_NU_m5+9-j=CujZW;3o%n9sKNo@+VrRpKIdD
zW%zf_lesx%O4ct9hNxja-T&ReJqJhTru^sN4+nobxbNU!2Y)&En<?DHTd0QrIOta;
z>-;B8sLw|J*{zz-olN82sa~lE4w77ObM~Yxc21J)BE>~f7sXuUbCKUgVHZWnb)WhL
zToiQqe{E{gszNT-%}#4runtYiGbiob>@?z}U72jfU6gQ9(#49x-kcQu+kI)JT$FZE
zs)^VBWa%AU5^zEMZ(iC~H7w)eF&DB6#YI^c<y=&8QPo9x7t6N#m0UdTqJoQxbnK!u
z_R#V~X<}v3+Y>IHbn(%=wEu}sDm*3BNTx1K`>$aRHLJO(?jqHN<buK)0(tgGVPP7{
z@p`4${Bvol3(ZCIH9_D)cd?;~XS%Rl7=kD67NZV@whPCFOPkAR1Dhp2{oeOn_~Jlv
zO8WkiLlSe5<|1ci!*mz5UG$n(s-}xtF77OfW|L>(E;eq~b@8-|5iUl$sOKWn#WOCt
zx`?~TVh=7t7YP^HE*iUN;-bEb2BM!vqT8Ko19s9-NFMgd&YN;twGz!}m5U$mrT6@+
zHlt|Bq^v>PGFrHJR}DGcEnU3b&};3YjSEg_D;K?|WK~+2*49Nk7ad%5bkSbuQ0=-J
z-kP08(#b_<A?zZs%H*v3YDnZRDs*$v-NgVG16}lR(UX0;=tDb&@}aF6E9XR=JS#TK
z&PnU*q90S~uiE`xa90^E)U=SBYz(<UE(W_8E({yu;=-?4Lj^8)(1e_Am<SS*^^H9m
zKgz{u7tgzR!NnLCV_nR2G0Vj`7vo(_b}_|8>m|)5xR~f-5|wkbu7ff;<gQyva#HRc
zE;iN0G#Ard9Jo-7zTz%6y?e?GPVu?4tm)C_b1r7PnCD`?i#Z}Tmd;I?%g%-OsK6ju
z;9{YR#V(dmCq?hoLR&;9w9uFf++=vLw>yi|skxLxaIv2KxLD4Vak0w9Y8RYVI)qMM
z>7vEjfOEY@#8}G#nQIvaS~MNx>qLx^Y;>{7#Y-->x_HsWW*1uoG6$JQM0R+6UK+_Z
z7cVmbc?x0tb}=-jLr*P?5@c3mB9%G(S6#fuWb{zY!|N_~ySVA%mWw?u_A>8WoOZF#
z#eNsZIiYl#i-Rr>xi~Dcj48uTSh$Y3c*Dg}7jKG6!YO$Fui6|tBjGI<$Apk${Pwr3
zN(JkDGQHtD3{e*+U3}o;Js0nb>^{Lj&C+Qb4`j6=;UTA7d?@yElgZA}Mb)N>cgDq8
z7hkye(#6Lv&bhec;<AhLj2{=DvWPM1rj=q3bj~L(9yynvAvfY|z|Jp<l34h;G)5q2
z_KJ(og`=2O^fO09ov&E@S?66`bMcLc&u?8^Wn5_?)fkE#8XNn+&Pdypc|#OKZZbT$
zNjq=5_})bU4+TBkaq)wTKVAIAY<2OIi(g&*CUWF1eOs^8&tmKkJ@$*JJp6mrSMQhj
z-Nil8KRaZ%e+b^VUo-N*UHs!BkH@$7xbNa$7Y|${c~KBD{Qjd8zW1BfX_P%TjRs$Q
zI)|}Mvy(lfc*y4=zZYdk<tbTj?oVcMcz9~Y4@n^p{4W+|JUr&1h=-ycN_r^ep_qr_
z9!hvo8F}a^dVmv6Ui4Hw^3on2@$je@l^uB4sf8qTJCWJPc`xgsoQKCfRQ6EbLj^BN
zx=LPDifLp;FG_@m%9PWp|9N<V*6RLKBrVgQq+!oRmn6>PgBfX6JSfwnN#w5T9%^{#
z=ApZXR1cDe`W_m1kg4OLmWSFNR1X^M;z>Q|9t;nT2iJq?ftNhn1A8X1#3p-YoUmtR
zJ&}zju>~Gt9@2#6?}-8OD$JJdMOCh*@alqj%`!aH@lel0rjXb5@U#cc1$7?A@K;(G
z_mJfwLAeLI@nJvA5#}ZnfgWSkr6U`8Xyc)+hsGY7cxX;9d1&fk;y=+fy&1<?MkA*m
zj&w`O@eq1w<)O6)MsiExTVBW6IUP$vS2MZjXNG+{4;?*p^3dLkZW1^J9XPI*>Flbr
zhc04_&j|n1Y_^9U=<4x1>ae!kyoZOL9>#hY$Efr0tcPJ9hBG`o^zqQoLw^r_J@9la
zbUd~&!*x#D01pE_4Dm3O7K&307W2;Q0<B`2GYF~A7^9?=9*z($<p4){pmRnFWnR`t
zdl<vH(?bqF>ioI1@g634nBie2o#SDWhbbPWdeL>~*)_prF%Z^d@&<Z1&BJu=U6@AB
z;jod<q92&8i@f<_*K7}SJ<Jn)4hN-2xzDuXJib4#8F5y(6i(J64~scWALo56@$kHd
z|M_^r#|s{odicP@DG$p$EcbAnso`M-O=21rOMc74Di5nY?D6pO0A-DbwH{vbu+_sl
z59>X==wUNW(!&iN4(j1158G!n-pJ5;H*=#N{>|0Vwuvnszlsbg&*+|UQxB7ja2tDL
z_IY@P`pklRS%DGmVCUsBDj4CY8I7s7%fqXjJ|leH!)v1Rtxq;=W`yk4oY8nUZFsWb
z7$Yp*K4&k7P)XkBVZVn19`1IK5Ak2zRFx0XLPdVQoieJae3+MyThb8^Z!pF7m#FZx
zd{ju@6xiI5pQ<P?E3X~%V85HxE}t^XjuyVUj#A$7@UDk13(9Qo3G%*&6S<O;f~?%<
zedysM4~2Xb_Ho+7@8^_VC*{i?&T#B}|4Zk4n3F1h>fz_1@_G99w)BaI3u2R!-v=v{
zoEui3_?d@`EMgVpJ%37<JnWvG^lwl3iigiVe8JOs_|C&M4_|rs<4UP-7~5Z#_?kiW
zKvHWoCw}W;&Az0ooXy?Zw$d{3x`!K#kRB!2d7+AOkJ(8#J=_vD-1hK`hhIH>FE*)g
zN01)`{^;SST=`v^`jC4v)qWE^uOAKMcMtc(<{tw85%?!_P!KBoEy(yHkpcHT{OjRA
z4-azpCW%h&JzFA=Ak<lAgvk%Nz<dJp3oP(Zep@Q&^CPj4%0+w>^-;=4X&-f0l)ha^
zDdywR%!X{meU$LQ|31;OqyJE1KM^fdf(ky$_|YQyBR(dyNG5sAhrLLv;G?3C<<qsY
z0?P?3FYtsBR`T(<kIFuduF&UxTKvQ#8e54InahK8k|%vU<zu9eQ9i2psOqDsk7hoq
z`Kaz=>n$nnqlS-EAFdD2hvXwY&{Q9qAhM4S=O-yX(jL=Njs%@ElS$ZgAu$A+J}g0O
zf!yo(=(jl1^nC<AGJMpbd6pJqpFV054>n8_c<8^<e=KcQOYk{*i4LPOYWp~z(zJDv
zI@GW0qn?j0h3h;ma7nA2ysdIRKI>=FE%h=e&+?J*k?o_tkMAd?HS(cO)f)I{=wn>-
zVxyWD+tDguBl*S%8w;H#0x4|nqlJ$?KKlB|@p0gVq_#fV`FN+S9CCJiv|_ido3!TS
zPH5c5$Blyl7Zb?29MRrK2OqtCymmC`=%bU5XMGqAl+I%MdI;q7b@B0xkFGwt2}yT>
zEwZASW&3M=USdxly>j(Oj8A4K|B4V|M)dR1-^VZ?!+n1A6=qr*Yu5lD1APqg(Y$xs
zU>`&2^NtP3hxnL1Ak8*I@(R7v#($kQO;U>AmPYt^P)bjf@JIU?<71<bO+LobKR%}W
znBikQgU!b@AHU8{o_)~o(mHvfj{%obC;8EDhbIf1B5<le3b)^uZZ%eh2FWvhelLMJ
zKIV#8dXDq>qc+=*%G#&@<l{^2kEX~&BxRnDB|e_#e_W}UGvCJo9}9h~*dRY>SAUU@
z*hZOcv5(!qM&z~58f)DP!k<fhEMuGtzK*k#Pgx;wrNC7JR}18>HG-@aIB-r>FxLyd
zfgTf^FZ$T*W2cW-d~EUYl8@~^b_mP2(w_eMHlLrCh5f$>KL4Td%YO7P()e#v?$6EQ
z2mIrADNL4KOmH73eSE;F=P-R7^l^yMZiYPF?p#au2!r?f*e4|W1s=%VOJk;(;b9*q
zZb?D0<RgNRzrh^w@urWrgycPe#{?eF)p?uoDfqhrSDGOYeE;FzT%EmUxTd+!Ds+m;
z>*FII`x`Vq?c<D(a?k1OKMv9??W~WF89A2La(r@=CfXS@B){O}6HZ5fv;d#__{_%-
zK7QmCIa|5t<GOIjB{7Q20<Ywb=yO575cs8!uX5#I`}ii8e=EpUAK&Flt_d=sp>o5=
zO=j6k+ASY<d?c6AnqAL-n|aDgbv^%8GbBE2Kl!*Tj;a{oXCJ@#$QK}gfM0$5=HqW4
z|M+}YoBq3xKYjegx>U=*$B~xT{-DGRVTI~D^}l>Ih4Rt^)9?HESL{s=u=--sf6Npg
zNkOEqSz(@lADM)C1Aed(l2FLT!&3rG7Mn}0ut0!<0TAGkfWI3+>ZWwI5&;SaC=#Hk
zkZhGR9?FXaC@v(gSs^7Q1C$b*-FlbeX6XQ(zHdVEXn+r`uzY|Df|LpHm>?9E6{MU%
zYTgk2<h4T{SSi5c0V)UhUjR9P65xpdPX?$F;8c6<sQ~9PwJHIsa-@rr%9QY*%+xN_
z)2aoi9z=z!^62!-agBs6HGmW#ET6S+NM<-JQw^X67}H)0_!~7U2e1Oz;wUO4+6897
zzm^d2My2JT^h$Qf9vrdP4dAh>YQ8U!<kQbQ_OoqYT6%z*0lEZuCP1wKwS(wN)H*;$
zfI2~x<}Cx%4e)e;rU9A-VCVICmH^p;XL4!;Nw>qSTv9(kg8+>KGzs`lHk@dO4aKf0
z&GkmPg#B!=`6?|WX&&GYP0JCxS_tH3?|Dg~;8eI~M@ijE*t4*N-zGp?a)!q?tz&>b
z&*&uW19T7)@~i9XcM`m_*xPbrUJAPg=q7rY6rg*69s!027!hDtU9V?=A%c+i3h=Dp
zy#@9W*jFHb8b}4U{s9IEK2YEwfrAD9wnclWGgNF2%iT3HK#~)V3ovV2#;5?JIgbIx
zat57{Ynv78=ahHC&l`FloejnZm=IuM0B)8q<}In5Mbg*_FT$T3;Br@gN`R??kWUk&
z_Mu=Vdk&DEhMH-3F2L*nn`77#!<+zf1FT}O1(+v>zc|2>0R87B%@433z(OHpHjyt1
zKtfkPFNDhiED!L4;1n)p_}y;!a+T&QgoI?J=!d(=iE9F^WwgieWDM&9tPgNLz=Z%C
z0&EPhFTnl)n*zKTU}u0=XkmaY0bUNUotvKW5@RpGwgCN9Wv;GJ(#r|cW#tW7*+K7J
zNup$<6Hax)Q@XM%z^l}+rR)vxT7cIB><PF+9_F(Y?oDZ-?G8YEQ}pn&6Bc))t_}n^
z7~tIi?*%v%;BbI91H46d)mBtD3}xjA(~W0jc)Q_IVHL@-0LKHo9pD{?km!e&@YL&M
zrAS6(XX?O`?*}*$;50w%3~(~Q2TXPr2Vvn2N9oZr!LyHet_8=!_7THRQ6{+ICO16G
zKouuC;)XPsy`2-Ad0gca7XJW$1^7F_XB=IC8v$<8lcsVhz!gRaXJ2fVxRONS7XiKu
z@J)bkS@eYD%gae$1^Al7*^tiGYh(J=0N(|;9`H{ZW{fD);97uB+;G8jE$DOhK*^Mi
z>9+#h4)9}upO~0k65j{76W|Bdc{dy}skkIGi+CaR?@}1x_W<{V8Naap2l$PCDBYl;
zrnEcdA6%_-Pz^SwQ~8eoe+so1eZ`kEdau!`_D_KOEZQ+V8si^8!+)&UF%*eKV|)-G
zPmCY9>PayaOjBs^?A0lGg(NwKKL6HE5u6J7V#qIe0f7Z`<%MGW^Pa`2P&9^OF>tV@
zVyKjvR6K@~;uIxfaJOgts4GOCf~M}vELA!Nh~|hf(vmVUREVKs43EW7Hiq+;lgh<V
zUi5HrwN3@LCPKMV43%T}Ukvp8<1rSTXcsvh_`#&&bjVXNREeQy483Bg8bh@h>cx;5
zL-iPH#Q1v$XfdRUo_U}ggCsb8KBYwoMeyEUxGqri7>pQ#7-BJ)G5(EiI2=n1bdeq7
zqCt4)P_uQb^`Yz285>><zBu;s<s=T1uIp3NON${rhT1V?#Bgj*qtC`=){I4|$Me<_
z${W3~jv#eocshpmElSWo<6VUjLLGJ+k0C3DFou>fBx1;pp>YgNVyGYEb9C5H9NU0%
zcO}VRtxufOh(|RN!k~AlQ<I7}jiFf#%_+$&#a%7Lt{j0Eg){F9Y!yT67`nvpObl&e
zXd6R^7&^w#PE3U7hpqjvydSpbjQAnvnq74goz#A`d1pZ=8SIC1{jh5cJ%ofa*p21U
z54(#{A>nX1x@WmbAF^yRz+&hd!?+m6(=9Rdk6~C0!($i_!$8r=5Gwa6H7JI`Vw2ux
z53}=><mrYA34@%z8WF?D7)Hl1CWh0i|BtCRfw!sr{>Lv@l=*s_H4lorool@JoIRhj
zr*rO%Z7eC86j7!`NHR}}29Zn+hK!|138j>Z5K2W+N=c=XKKZ@(>U;mM|LgU<*6aPO
zXFcm#&sytQd*6HZ*{90e1>plS`guWg-YHzUVc|&G3w_H#k4|7r0^<{SG=Z@RJe<Hd
zk*EJxyEzOW(}}YlN#OT%9^*A3fr$xB78yo%l7PPoqT~7EbK1zUwJAR>f$0f6lfe80
zW+X5(fhQ7pGJ#nMJeI&5nZlDkJAuaqH;ISs;*m4sx73}>$S#T^UJ?(V;zm9wcshZ3
ziKx2vi--Ri(;!`o0t*s&w?J8xz~Tg+<t0E=J;w}R6z?^*_9JmIN$3(8;*_OK!dzuS
zTjhlWUQA#sQ!#;;5?G$VYYDubz(qT1tw>;90_zienkcrCXQXv(70bno?#n_~C$L7q
zTA_nm$2hb>CceT|WLC8qKKUCHcxO%o*p~08_0Qv3RJbXD%_76@_IUUPQ#XM(6RfLY
zm#u35S^isG{TGd3TLRk?_%ngO64*gi34EWxNp3k2J$}EJ5v17{<?Kx0z5h5TTfU#b
zF2NrN{jh?+Tfj#Nd@SIT3jQ7e=P#+cFM<7nzfItPfP+Fm6Z%uTtZ2oPEf3L7;e4LJ
z7XpqX@U?(1g;M4#0nc@frW{S+m~_9X7=58@*6|8_B7yHJa6^&*LAt*S{V{=46{9~T
z@N)$|oxm@G&j|gsg8!R<YrAHjP2i6N3?oAWsFu$;pG)BH1gfd5>NqcARaEie$(H}{
zDo~-}UjY{q$f_8vB%rd2><Z3@iD+LJsnH|oRfSplVbx1iR9BI!LQzpeMNJh~$xtm7
zwFNX0`rq6-g6j&+QBh9-bwWjb!3~5q6xyg_w6TD5e?{M_XsV)F1^-eNmkGXH=oLb*
z6iQc9_-erf*9f>)#dQLjSMaY_af9F%Dq0HoEglkcN~;PPx-nLP^Hj7}(MCmE;S>mM
zC$zoL4np&VQpw;us>B5+gsMXSOAkYZsp4rB^Hf+WY!$s#+@d0>BBkPVqgW3W?;Wh|
zsK}@&RN<=dRD4h+-&gTequ5i^cwr3#Iyn)hg^p|-D^gLcqLYfwDoRw8s`%%|j<XNe
zrhJ)-yhPYh=9d4bp>eF|!kkD|qgbe7bdy*Y74J8Wo&DA7s-l~U?p!w!o@o_Z-zY|q
z-6Zzx!P-4l+^FIv6}`mBk%{nTl^2VU1`|`&tt$Gc7^-5JioPmtQ_)|=02Q~(qIamc
zlha$oo=AjusaPo!`>Eg()ArV)lDk#hqw<)Cr(48sZLZy`VxWp4Dw?X{nWa_UoRT$2
z#eFL7SNUGA*o8zmxJ8U$u!^IJkf4JawrZ{oSMh*~DJs7LfDtMlRPnINZ<L_<y39!W
z^RC)sRg9AEL)^HEF@ibTvr0av6R;6HqGG)Ggqm*&N*-0=w2DnsF@cc^O3Kub^gcD5
z#J>V$Xqp;QV48~QDjrucN5$N=nHehXcs(<!U+tc;*i02m)Nq!H#{>}1R<TVD3Ap#U
zG<&o5q>6)T_=Ji-)v)@@Rl<w%pHjh~+}b$yjEeaxma15$M$ZK;Q1Pq)J_f_?Lcz}o
zUBpa~r*{@d3q^Rz!&N4XulKx+?qMFPctORBDqd2toOz|<Llr9+5fR?0VwH-QRlKR<
zEfuR(tWmL!VNy{?3)iaPqibA|?KVCO*S=tbsC}K4LB*?r@9LVpQN?S5cjb0G_Jcv;
zP1O1KMVp2BhKel$hUInS&^21PRl4u;aJ4UZJ8}!Q3+El7JA_h_nn!glB}nkH!N(vg
zcKW`6U8F;zhYVFM+^ymh6?GrUA^u1O>Bl_3-x~xI?pOb~q2N;$`&49Uku&$JI1u?f
z!k<MU!1pRnO81b8&sBWEl&i3zU}dc%75EzgU#j@3g7Y=AQSh+}4%hm&0v{J}g1+5S
z?>oWU{=SHd{-EL)6=ziZsN$6He-e6H#m@q6|2cYAlWpbLdcO+i523#aCI5E;XNA&2
za`-sYU(!7%^lzc(nNFQz{|Khc|5W^|;(~N9Ytu13I?5%sp{+Y+Yp9}OP>B0NT%@6@
zhVKKM3{XwO#TqVgP~E{L8mepfz`}<XYG|mb@w-ddrlXdI+8R!2_(@~Vpst4D8XnM)
zqoJOLw1$iZXsEBDjfS=w8fa*!;W`b?H8j%DSi|KSuF%j#!?4elZuR|U8k$mmhmyNP
zA-z<?i<^{kExb$vDRGSr%9R?f(r~qgg=dR?o|*T`8s)mTYG0$_S`ByqSwxwME7WsS
z^RCx$gN9sM+t9DITxp?U?JA|EhNDl^I=ew3CR5SSN<&$R9`uXHH005wl`6ZfH3YuS
zHu7Diord-rQW_i$9W>-?7@&o^h5`+74Vs4Thn0keG0T-Zk0~kzjw$t~<vsn9^1$%2
z^@o(QZknONq>FmEmIi;TVhjGWs5GfzycW*ctW4ahxEkK=8VfXR@pMlEIX=C&N?|)%
zJKkw(J@N}R6lu6o!%Z5BHI!%wHFVKX$}MQ<sG*aFw~i<W&v!a~h)%<GqiWAQqP+8g
z(pkfgpT;kKTe*0Jy8311fwcu)H9p>q?iyYx*8lgRGT~ss(d|mF-AWG)J?WzDN~>-$
zGJ9#bnO@a!kA~hFZqab3hP!x_rsv(N;dTvoXy~J%uZG0C%5BV+esOw_P9y#49c8{2
z&hz8+b3YB#R&R~UB?e^2sl0#WM%=Gqum%d;%dA^lFi68dF5$-6$h?oyd0QE?T`|`y
zU6-rz70M6|J!<(wg$@(Su9}RG(D0y!H|RYLBQ=cDFh|2&4G(D;tzoi;DGZQ?v5~{^
zsD_6%EZY~S@<$lxiFxCMrWe-ZqPv%=6X?2S^(JX}IjK)%-e%`<={_3@*u84GdVWON
zR1GsU%+xSV!*mTlS1)GPk$<9c;p<j>mWHQRD6{FtzcY^s{bGK><FZZir+=<Iq2Wml
zi!>~zwT()j((tT?dA$psCe`rmG36Nz3wShc&l=FgpD(GEYUsPWm219GPS)`kYS51;
z&uRE~enHMx$`TDrHEdugxhW0LYuIyGS*P(Ud)TanFG=WMWb!XB7=A<PvDF1%?Ts(j
zK)OQcN)4+7kn^&D)f(1RaMlWVajEL8Ro62*@8>_VO?g!ecwNIL4I4GQ#v}ZZQhS}s
z*5ZLOp2vfIvp4f}tWf;Pd2fBLyvelGa6rRn8n&`@X!uyeCmObC*sfuxhW9jl@k3^Z
z9D#QQzoX%|R34dBGU|z}_ciR&@R7LU0}X$zRX>zP8Ie78{N3DXDsPV#-g!Vf&jU4`
z7<;MVugrcX*jn{d4f{0In2~o?r-H}#EA-o$&y_E0Su{I%O*yFHOKwxcAq|I_=VQx1
z*U&Yie<Ac$v(B(1$`Roce9eGr_<>&4a7@ED+|h33dqz#-%UnI7;ke)@mMg}Z0-l2J
zG~BzoVEJpxNlsZ^FuzzQ%{~y{^Gd;_wQA?*)t@z-=AqWnOUEx7&S+3{w9@e_x4>Ge
zqn?i6HJoKZ)^UlBKQ#QQ;U5kE<6$|V{UwQdj>pi|+5KC?c}B2-Pv<mF)a4%k)o_7D
zUdKf`n&@Gcj><Z+byU)k)7@oj*txX#!GgPg$+Q`3c~+clwy!^O!K|vInvP8?Rkq=!
zdUYK&bkxzK1goiIOy#^<I%?}Ex-HhEf&Z!<@3OJHw`&=JURTF~$$2jxQAnYqzK*MO
zT&<&lj)poe*Kvi8lpZ$H(Nsq>9gTHdw@yue-KmL=+1+CVm+FXB={!geFVnH}WwnPM
zKJ-8thgPpCxRTeM<w^s;?xOlWOW8F#9{VP9gN_zDuB9Fw&AG2eKHK#=cKw$553@d3
zo0Zp6NBf0kzkj9V>Nxa9_S>Hq7QU~<bmZyqbp$$E>u96H)M4pptD~KcgbtOnbWG91
z4m$F6jQm((&<m*i;?CZeN?gak-C|U=?4-$X@Au=?KTtFsx(-9fX(#SDI#<8;1BEGJ
z>qtg>hohtOklN($+M*Ejnw)nuRoB%~x;K8ss|6n2a=z0dJxuG!=;%aY9ffq=3g!B=
z-jP1nQLLjxk1k$iI?6ebhP|us`t@HC9$TcdCQr}qJU*rKXg@O}FVxXZM|T}vbadrr
zef^#~ojK)yrFst?J#}=vvh+qBr~LR6`wQ84^vJ26sC%=H-a4Mp@uZGhbll3&>lmw}
zkB+`N?$<F`$89=p*U?YM-8$~jai@+R>!XX;&aN7Rb#7h3T{<SNE1)s==;*KGKDv5x
z-T(>rKplg0+^gfJLcKVvuvg{$BmJuI>i^5hmfPM`C^pTCv%n6~F<i$3dUQ)Llr}6^
zh6!~KWU76rjL`8QJ)q-CKYnJHGD=5!N9@_v1*3I-15tTMDE-f?44Dt>7^h>Vj#)Y$
z(J@}fR2|cFJgQ@Yj>+`WEd>*W5=>%VU0(Fil)Q^qC}TfV$eE&puYf0D#hb2U2J`tN
z<+|T8JahzKtX3bR=AFvpI_3zN&8@{t$(gHzN&D}D><eoP_H9<qRqy<ij;D33(6Lg-
zJRQ$aK*wSo^K~qc-94w{Sse>?eDsy_-PC%IURlZ|S~T{%P0Oq5>dc2FI+p5qUdIcJ
z&cb>$a+z$Frf&4&FY0)Se)}@RC@?dZGn8uzj0M^3(ow5)ysYCj9k1(Htz(UjS9H9p
zV=aC1lDa{*xsFBYd?&W`%z^!d1RVOLM=bVo!Kh7&KfG)s5A}m(jX%q5((#raZqf0k
zj?J{Whs*98!emaq#k6ne-?dWRDq!LA%$=Vp4B~bjJDA=kLKE-kc$e`t@REU@I^LtC
z0ms1mJZr2x2I?C4K*xtXR<ugTZn{OsQ60y0e5~UW9iQnq$ZTw_?a}e6j(s}za&&r?
zw_BEd%YrjGe?K#JXx;%G<Q(c4Bd%T^JH))LSM-IBBRUT2_*_R7BP55d{c-=>`bA&r
z_)5pu%$D(a{4}{k<03t`jM|95VQ?qqf2ZSnhRn9U)p1<M36__Ru}6DoT!oS+b^M@%
z@;|Ydw2l496I~uVB@=I(Sk76?Z`5e>&pK$#KlO{wu=uk|8^|{B8;ie=3p%n4oMrK6
zaCQ8n<4+xb={Tq3Z&{Zc;Rc%;VOt~2wJoY8{hw_1UnX`BjjMANuFfrVxz!?vyQ^e?
zdm)FTRSZ-!aIq2Dd69vt247xX#vzJbVxYQ#+D4?OhJl&}Y8hDHL*t4E$K_Fm9-uH6
zb<#0<EXP1S11$`+Gyntj4gM|(E;rD?KtltK4Ky)O+$Z3t^LOW!H8RkAvGrc(j!g|*
zKPA7J(4bKfRb6V}%hDK|XM|T6xRS|`j$LJ7{%LK{wv6?1?9D{p)dsFHaIFm8K+Tu>
zl(|m2&8bSjh8g)}w%D9GF(W_MfMTFMH*TPnftZ0w6Y|;^=zJh6&%oPVgR}E;a+(yi
zHlk><+t$F#ZOdCv&2J}w!ubXYM6G4uw4%igXa;lxJ&iD7Ko!8{*fk8?(ueO>Dl^G%
z8=KiN*8TbD5e3@-{gyOvzY%`exagO0d9DG^zyJgH8t@GS2D%&QVIXZFL)#351_}+l
z{#Z6Oml`Od0}YfI$eNlz*0%m$6(cn!<dqpH7k_p%&`H1)BcyxTo*q`xg&L;icN1f%
zrz>N$IYWEc`c%v5Y2Zc!w;Q;_z)c2v8R$*>B?QkU@@_V8>4NxWGwV?JRs($u+$K)w
zOP$ZhpKVpfol+-pqXtD(d#8cB4CLLF^V!$6`bkXh5&63XQwd{D`Tk-I{V>qLAOlkj
zOf_&{<Qa@L@UVfw28I|IVc<c7|3=OmYG9aw&x>Pp#m-0bXxMNA4;azGq&7Npq=8We
znBk)hJS2XuvLOD)twHy9tiFoIMaOW(7Cyl^1FuZZf7HMPPOr$c@dkcuR7CTf6aGZz
zhJnel@dwJHWczqe)<PrXLemUPH}JH9c?M<}m}%f~19N19vka_jP&C`XW3tn+<*_ak
z@<w%x1!Ifn8hFCM_C`fdNn)&H^qculiU(>wSj@e2`J~n}Om73v8CYcCy`tCx;*!|2
zJai8hw>VULp)5g#=|}T8y4b)n1J4^+!s5`RaH)ZBiehYQT4^sBpz?tYi)a8TceLEV
z3Iml*WSdxNU=^KX;1ILgz-j|qnfwOU7+A}I8rZ~L@QllHuL<2?;8g*yNZPzNrkJtb
zD4fS9=FlhfPlp-#n+-H8jQv^`+all%ZlqccId4jr;4Rtj{2BS%=n4aS4SZ@~hk<uk
z+iA0bcUkui)qam<pP@hI@1%w0u@4{4o0P~qJTGTTI<`wx5$rbbkpZr?M>rn~{zUZO
zbj;_LIm9k)V-oI@y0M>A=Eqq;*bW%@%mB+f8_UsQ<`s*cfs+PUn!YgbwSl7sj!3uD
zFWQ#|zKSdiIr_EGW1{>x-A*H?=YK1dqvtmk{PIxo3CW!ASUDG4H0B4U7Q<xV4+EzR
z{6uS6-bKUD%=~oh49|FL?X-bk7>F^&G@F!8rokWgE%=?sb6bYWnYz^WryPgB4V*Xd
z7ZZL$-k|5>=Xi*okAKysjC22yYIecE|6~br{uMyaWSLlUAdAPRk{LONpo)o$Of)xf
zy@{$Os+nkHqOpmKMIgsSJrkFhs4m?aLTj0*X`(FA@xHJ9f<(vK!mJ~dI_sK9cZ~`H
zOw>2g(2NS;-aM^=iRUNe@jAl2ki$w#+QdXt6IYqI+C(!ma@S=hE;pm%d8rvyX6m^@
z_#FCZW*v5~l!cb%X{>DQUSom<uu{A7YfW5dV&u0~sg|4@Otdhen=nkYG?8nfor(4)
z6cepXv^MeIMTEhPnW$@9c_xm$YyD${#2jiP0&Rt|x>9Ec69p#XvU<L3%4rx+2;f0e
z1$-0JG}==hW6K=(O-?uAnea{UjN3vTp-G{s$VDNC*j(ZCubC6jfhI~!l$uf9+tAF<
zm?$(+WP;l)HgUdT5$_^$8^#GJP$nyuo9Jjp8O~bK$&5-(xGBR6C_z+SOmsDoZ=t|K
zHxu1Wyl-Nci5@0;nt0O0QzmXSag&J=CLT1=%f!tl2AH_lL~n+}L|+rPnYh)A>MidR
z`Y^KFGQ30J%?57(ZZ~m<iGC*Trr5;tJ5AgbIXUDl0Y{rZRKnXKPQ1rNe-p>vv3R?}
zyCVWJ2bvgUVwh;Yk2Xxozu&}Q6GOWOhp)`$^dZF5T(9Wg?iwfZhKEa#4ma_D8Qri^
z$v>?BCPtZj{sdD^JY-_DiSZ^LH8IAFF4kjBJS>2robX8AI1{9g2=&a6_$D(v+MsBH
ziAg4Y%FQ93XkuQ2B1V6*fT!yhkvYx8bdx`rqCIY61`V5+Gt<N@6CAqF40-qRn28&P
z<;|9Sm}G{;tj}{y%w-<dFS<sqCQmT9rBSVZnwm|lra}|Xn3!*38IOq>U2qqec-F*1
zW<^PK^YEOBSLfGSVqz%|?1<t;CKe0e5nz{hkG!4ZE)Fe=zhL4;x@AFprR3^Ml0_>_
zEH|Ueia9fX)97M4gqgF-#LKdmiE^1BU29^UiLEByHnHBs1{0f1Y&P)<R~MUKGqF*?
z5;NRrhCDuVw`M*t!`EfM1hnT3t|&)%iy76}XL@K`hvmIx;wv-cxqfL_-ZmyxqoN(W
z?H94_Ou1?~bPngfOC!1KP3}(mwy=yQMTe_xj86E##D^?U7B051o2hQ%8|pXlG2`Ab
z_Nj?|CO#3&i~Ak{dwIQ+Yx;f@2O<OTwfN*S6NgM3HgQnI7>famt<O!^&&O%Qmjb?E
zK@jkJd5rv`!dPCjLf+mSWdgHU6~-oQ&W!96-86E_aT6y@{LQmz;yV-HoA|}V851W>
z{J?ZF@iPl7Z*dD_KbkmY;&_Ajobp(&S<#IU+uvq*nj0UV$JWRSdGY$y#2+U9H1V5>
z->L19PJ5n@pEc!@_k5fJfAMO5s5Y7BczF93P%|-W!aq_CvMf}x@IMp(M)@4po>ApO
zMWDBi%d2cfnNY>TMOKtl+0t!eg=AJ0d?1^@v#FIdF1o}*bqiNoxQhS(w@}kU6AMi(
z)Ur_90xZ<GqFYnm-`26<PtC6@G)E}A^#uG{8f#!hmzzdHyBx@BXyJ!R`Sr);@%FE=
z6<r{9H;6ZrQHotA;8NiiTjAwabR5{Ou%f?NC~&ofYb>;|(9*)SR&?9OLf71i{$#jL
zC^^>)xZ(fD%(bBKjYPtsWGf4K7FtU;X5ls~B$KU;aN1gU$O`9J;acIh=hDKbsl*(O
zTS!<KZD9=Uw4hn&Y2ii-x&^~RnT2u-rUlDFU?FY6wvgn|ggnne%8Kq8m~}39D)>Ds
z{MHJ|q<&w-DEZt^RWpK%g%%1e5_)uhRF_Hw6O>x`%L)lPTIgh<i@5HlYB|)#*4aWR
zE@f$Dw<|9J7P<?k2UjnT6^x2*IoK*s%)7}#FAMisxZlFf7J6H_QzWVU77KkNN8wgk
zw~x@ecC_y87Vcm;1lMX&#w!kUn>Vg^S?FisZn3Aog#i|L`*)8}&brsaKp7guC1mc6
zLaDRC=FDIVLoAGx)oI&M3&SluAl+eBR9HTok<YtC?q~%4{BrC;p#&%9$C=5aq6kKL
z&bB{RHrB$!7S>r<Z(*E;M=U&L;b{xwEj(&rmW9VGOt3J~!gMRTShG#CFr@-d7BJ9`
zF4j{8PqQ#dx-%+dW?DEsJ)Z)!cD9AN^v~hik5g<y-W;L-{W<xBY~jg@eRYg!^DI1L
z;du)$SkaviZ+qrjSYY8<3kxkQv9Q#NF8a?|SY%<bc#MCHaN|qtaI+n9XqkmQc1TLh
z_LCjHXyGLbt7Mhs7Ahx0){vDJR#@Pj32%@tO@>`Y6!VhtvW3+a)^HakvGz$Oe00~b
zznjG?8aJ{*mg8DGEWE;UVPT_%*C=D*EuMW=10&pIVY7w*ZoGM!enX~g;g%E8{}5O_
zd5vb3*lJ-Lw>cs2Z411V2g#8CmtgvB=iF}5eeydN-eqlX5Z}qbS$JQZ)|+<T8jZ5;
z63x8**lppXXj8~e;$sV+a8ou4ZS1kImqp1&0~?=O*k|D%mO%^qEgZ1$GXrGdGYbbT
zd}ZNl3w*%fkcH1Je8H@4t{t}U%h)Q>a}Le5BebeTY*%mhOAFVxit!VCQa(0tl)1+&
zY7{$W@mDFeZ-kCaMo%X2`HJHfPSEnkvG0U_FZ86)AB6rW^pwz_gi`q6-db}RAPaw3
z_|w7}3%@dU$?!J{B*WincB9x1Gv};@qsi!50@A-MoU>3Z6`r^7x7hG)ZtN%WYh|C~
zLj{ea=Q{qiaDiU3k!?p$m1GGuQeh<l<XoK!tJsn9OKeoPagktls|u)Q<6;3%qKM2I
zHfq|aB^)ZJ>&T>wYTJ=F>IlEC&>W%lY{2GiLk`6f$Lo+bw9&{$t_{UTV;fCuG`AyP
zHMP;q#x*vswQ;F%F1K-ojmrcp?`2WuN*h<%7@P{P7H0QUc>H_6b#9CtT0#LnO~ECu
zv!kfdp6hMgV57}tXd&_~xtALvgE@<|m5rDU)rMvx&qiw++#*&$c^hqQw6oFP#<m+`
zd@6&=>C7jq=6A3`$L8CpS2dqbrjkuhx^Wu`J4yqt_(Y42Wa>5y8%Y}}8>9Bt;)6HS
zQlV+XvSEwc7pFqDEveA4;o9(Q_}o_uzKJ)A?274i0#TS2ui9=2ng69<k&R*-t8Bb%
zqr^rj_1k#JMwyLr8+~ouW}~BxPBw0}appp9XB(l7ZZ_XYiGCMyyU+$RtE-LU1sb~_
zXDOzc)x$<l;rF(2BVETSS<1~K&(U5oL}B8=7jijtEK9k?#+WSSCNry#jj0!Mt7a*;
zv)Q<VyRb3D#+^3qvT=`%{x<I<v-;Vf%-uF#yO7)KxoqO=W@XLmojt(DARG6|=)E=u
z(qmbQqiGbl-$v(3%G-Tw{V}0R>BMq!hT0frV}y+dZS1~~JKV+tOxH(ipUYDE8Zl~K
zHZzN2mrSfeI?~4Pch#z1Nf}L3Y2<U+&)WPW5f9s#W#cg$<7_-)V+x13Wix9$!OX0Q
zHXfCYPhd*W1~c|RC53yRB%_mU-lE6Yon~XYjTts(itwsb&ZEy|lV5H|1`u%R*)|?$
ztZh7PV~&j)v$E#ectX}1J~NBXq}Y>;-Gth7DZBG*JY(~}j!~F?N`=%jUu<BPqpyhO
zg*KkEvB<_^8!y^;$;J|qUuNTZ8%u5cC&?+PomCsyk*P04xe<ZoHdcu6N}-EpW_@X9
zF+&)>MMi8jw`SvG8=u%%Yh#^_EjHd{`q|iE<8>RGY`kLQM>C7^8+oE_{>>75r%Rj~
zUXx5?;9j`6fM#!&DA#ksH<%0;axbJpM&T_9@irUVnGb?bs@mHXV26!&ctUOLl5Ba`
z#(P}RulIzRwNrdfwQSpGW_@5|rx9aTd`MLiZt{0CIu~+3;&B+AO|ZwtUK>Bz_*wLS
zYGc2R12*=FJ@hukKC^Mq#!(x`Y#g$2*v1z&j_?qfS-UDJT50y@tN@o3^tht%UNh@U
zNyV>ie8mFgglrQf4VIc&-`M!p#&<Tp=b5t6(2AX)!B<rKF9f6~7G|Gh$PE5-Ad2|D
z0__J{QlR}P^pp+e7`vx!{36z7C2_{auQvW-sj=}J)7ZvY8-GaVPy-vIeAW2cOxizf
zKEI^V$$!qw`rF2N8~@t4VB;SN@&8y`Dl2cwy0`VK#ffwsXA!UnR7yri@>)B_qf{k{
zi;{RdiEU&iQ7wsklNgx9#YtR}M295ulc=6VjU<{T(JYCYNz_WBei99mC~(5sNz_TA
zZW4R|fFIlCB%@En_<`53Yf9@SQSO9nNMi7+f+0tvXG<C;(J0B+mX;AyvY!(+PJ*;a
z5)V7!l`GUslejF2PII%`Byo8X)Ol4BS5vKEcCQq0Vokv{NnD#mu5_=f7+vXv%`5Qr
z0&bvf0$K{?6EakyRLHav5EGi0MC%HE-Nx10CNX-wO5t`%v`=C+{P(vjU$0aOl87hK
zGl?6MNF<>qkxn9$gjO+E7m(}L;U{-S5@rS8O2SSenMA6B;|Tb^Mm1M}C)BSP4FvF+
zib6)m35${_77m|hC`p2kTXajJdlIEweU-v)867Ts;*Rv8;La7CP(YU?x(aAqrc-R^
z)I5F;-Xn=;yJ&2qUQln6C2mckPZGV7xLLZrli<d?-jH)k65p<g9QbyZ7-?S_9gqY)
zb6XO(Cvk^x?i6~L(Ba3cQnH`myOX#_06F~y9CpG>Ej{*uIw*<zl2|}XlDMA<lf+o2
zM3P?<!_XuiVl0vvmc;NR9!O$D5<6BD@M)`o8<oDVD-R~Ic%w2Z34fi!2g61t@!N_5
ze!@tZ@m;ksNt{2Z=wB!&HYz`_Drmm7_P8V-N#gM&<|HvbiAR%|l*HsDe{?l_LJ|{`
z=<%xZe&xEmKU3y@pnQ8!nUcisN0jMF%t&IY;AujiKB|y^xJzti60?)|_h7-SB-njS
zC=DR)F)o`X%}pZqrSfzVuWwYI;4SM$<w@DXQ%Q_D7=0K@IxmT5lHhjc+?F*z2^!r0
zP&BkKiRYMpNvug?5qFxzOGzwGVo4H9d78S%x_wk|`CH1eBwmp2^GT4yu&%G&`NawW
zcAreeRwS{Kb9cm+b&Y1NO7cl3+_ED!rE(#e2i&~1NvxxhNo=CSZwb~5-AMn}wl*+r
zk~qG!-mB83eDPb#Ya-C%>kRQ`=I2`qXT6!k8-lk8{f|lhTS;scd2(iao!L$gFvKa0
zOW~a)-c6!a3b7P+Ch=Yp|D!*dS4r$jVqX&bllUNs50m&Li9Jc|PU57WcYKWYv4D?+
zo^Zk{Zb<&#B#x*ZKcyM-v=?)-y<1!|XR93#B=K1ie<bl|5(kqwl*AX5WKLGfquAjj
zJ{LXB+%P42zGNI1mwd(KXF^_@zv+wktxfZfvV2X-VLO(@H#`pX2{Snf4xJE6@S}k5
zlK5W0NufUoeR_aK0k%`p{YmK0Nt_mNs$%p^62A(ElD`S~UFg{)PW6v8{3T}p&D<7n
zj-DB-aU=i8-otv?#B4XY;e{l!Qn)mQ%TlP6LS=f`4V$KrokEoqs;2ly1TIQpW|Mrn
zYmOU!I<Lx5H)QwX6q=+W=UkFP^%QD|4Egm0)D&7vXl<c&gw{<VM*t<)iXKR}ehLjL
z_zhENB)GBAC4oiZYFfwtY;Kl9oe3rM{N*WJkwWtnu21306s}6)PdB_ag}yz?u1?_^
zv5ixXxZ$(?H8MGRoyZKaV>hJGB86oqswye8lvO4yuUpd#DW99dXFbaPTkBdc%uAtl
z3OA?FJB2nWv`wKrg^nq-OQC%VY6@Bk9a6}rOtbt%3I!>|Dd2@Q`fH5W1ENY3&HcPk
zPr*pRNx@CQOu<SanL;Xsj{}P<+7%vPfF9daKn^#~Auk0#g)-SuP_Zu>pRT}}6bc0w
z2`#SRmk20j1n-Ta|DQtY?36;c6uPI-`Ttung)S*P>V;i}60~WS-y?;dB5;%Fx$!^j
zhD*ID0ZIl1y@W%_TT-|+g`p`7OQDYl4@%)a#v+B=q<eb`_X@Zph37XF+$r=fq3rfc
z;qD52kAVI{2c+=27gAuL%%%OGiYM<+VTf=Br}#%7y6jUqL~zmzho|s>42?};L<$e4
zFfxTvDKHHx`Qd_jS|dMH{P3X^#-wn=SZ#C)2b<)x-L$xbNmBc=d^(@5ek6tQDI81T
z8#*L~3A87L7gCs*!lV?s_AFZ{t4vNo=~MQ23MGCxML1Jam?nTGO&2hOUJ@`%=wlV5
zvnygcCxy8wEd03^y~_54c=bu4PYHcGg?R!v`iy}2LKmd)tbn9Ud@hAWDJ&NAmNLBs
zED?I=7>%2y+4KPEiz&R6!doe9O<{Qo_xs_?DXdOmMG7mW%aXW?JN2W2$y8jE!rBxc
zr^Fj61kLi-rSQ=hjYI3{b3c!oH;6M|5&CKh8wHU68Y3upQw66(|7hZt6#f<sZ;A$T
zUJI<ZQ`nZmdnvr1!uAw)r0_1wk+`d6ll*tMSwAG8W7*#H!+ZKiS-mTT4;bGRz7$t{
zn8IV1<$ocwcGFHCt`t6z?tu!=?@3{A1^zUJeHD1WfV3Qz&zKk${6hi`3;mo0VL-Gl
zSNX4~5-=`brSNqMM^mV!|6irz=(i~xPvJreSq@I5@LdXjumq*>J$IeLnG}9a;fEBK
zHqHMjg`dS0Kc;X>Qo4oK@!p<g^vnT2d}C9=X&L=RhRA#`S?jkHeox_S3cQ5<?1%Jr
z%lbLxW3-Ec@UIlkrSL!2s381X-13i5=Jxp%?y8qfgD(%FQ_PM0D-~~RkFrV*ih{6;
zgNvLftd$*P3m{&8S$<W)7dyB$2&)NZI5^bq(<q=d9Mp91w~O;GYB{Lw;7<pCIjG~H
zu7gJ%OmL9npq_*495i>Lw;#a4H*I1Ko#<^F^&K=2u<W(0U$$g7qAI@s-$4@xO&v6I
zaFv6r9qd?8i~LI+T;||%kzw~r2i{Ki3I}RqYj$6&PD6{#YaCqbU_<MIxnI{#Y|S2c
zMZ|2l!MfhT4G!`h{&|8H4q7^B>qKu)%5|VPXyc%yYSG+1nN|+UGVWhjv|@`n$m3qF
zXw_OMLCwDu%21LM+c{`28i+eMc<%kG1aSum2c`pydTJD?4s-{G1I>wE_3&kBHfhtc
zY)Za$-a9otupJ~F+~(kR2Pp@RgYFJ`IB>Z&2ZfA_Ea5xYQaksByxhP+S~wX8^)Ix%
z^~&7R>d|YRifO-t&JIEuEp^bziC#@p=I{r;Td|cp=qR}Cs$A=u-2Hduela?Fk<{(A
za=SR_>Yy9xnU-u^h;-Ylv7QbVEzQ2s!A&%*YVM-GxxF0REc$PCa95*fdT$zhq2(4k
z_ZBL@OCjh(CpXO9ev{HyK)s7|?{ILZgP{(FahAhB>u|q=N<pqtE%$B*_tO8>a_@1_
zUqHL|t=JtP_>UX2209odIJaHyeF8XIj@-cx=A?3mIQZ!5T(*hG9q!-(2V))n!H5^{
z&mG}lq=Qk+!=G9{DD-f{+=uAZ`nh9d3k0L3d)cX$!-KF>lU%xMoP+TW_|Bh4#CzNk
znJ+KSCugFANz6kB?>Lz3V2Xp~lyorF!8FF=!TjePOm{HD!IKW2axl}uEC;h4Jnmri
zHPPG59&@4>UX@LVeq^D#pFKyqa~<$^SgQY!|Ad3}_m#5kdc=F$!8~RZ{qNuz2lE{~
z>tLaStrOiAPe(ruut4Va$}gxiIO<lNUrf5#!4d~c9W0Yk|4nP}Fz?lmRQ@u^=tO?m
zZ=HJew_b2?&6(JXLSGU}%gI^kV3mW-4&GoKX|RJ=9c*;4#=%;iCWqe<%UkE5UHyXf
z+*%M4JhiQS2`fnuz9OSr)I2g@6TC?%r@SuUms$B!uF59m+20}+V7t&ag}%jo33yv5
zWwtqZ>7y(HHs#l<?>gA&L~jr}Ln^i60|y^Ecwg`?p)>s~7L(n~2M5PkUL1Vv;1dUj
z92{m=l*jfs*ymusgS|{<K84aS{wXyK&Eunh2ONCHJ<iA<eWTW6ay~zSI>^lF7$Z0^
zDW9Lue(vBaC;FiF3kOFW3>a5@w>--Ar7+(N!mk}1bwK99Af(voApF+BaR=YCS~A(v
z(T6f8Sk2PmcS0vj&L{rC!H*6f2#-GKY?}^GIrvG0|7}%PoDSK3W?2w0IvxJP5_+PD
z9|QgB;5U}CX<2N)J2)$NSMS)kYh!;nAbojn);U&42amWI&$8^`AD(U(-Cg|8!M`j=
zE=(5}9Avp@?&5kEm0VPI(a=RB7uhbVxTxm>E-rFW)y266u|G>|wV$6|%|%@oIl{Tv
z#pWfkOI%bJKwQH`%?e!0MePb)N5E6*aCthUs_jDSyP(1bE~uGI;_7Ccw6TjOF0OKM
zwTq@Mnz?+N1TJ@RX@wbFi0xoHJd+Nukm>ARS+Q1|ORHTYlGh1`%CD8~m1g{((pr?f
z!9@!ftzEQn(b7e(i#!*@A1YB?ym6waawcq;30t{{xlvGHm!F%F&u1sre8blZ$J)AR
z=c2$xoW^r{ChXwi=1f?aiGrRl_`ys#I};{cyp#zwmp=zwrn=E{CQK4a^66IHg)%OW
zYgsNnXrucs0vEQ6q>Gdb$A#<SyG*z(6Mpeo`rwS*dVa<ePK#9*nQ0dp7sW10Tok(K
z@W1?Zk5wUME8?PWWj8HRN?nw>=u8KeDCI&4ItmzlOzp(bXTq#IH8MjNUEJux)U{$R
z@%cO49%Q=c=SKDFMmPG9sIQCLT-@Y>-^T65opMu+V!i3xMzLG|6PT8Dt91JaZBQ6;
zsA)6Y?&2<&|3i+g-(PTt%P(_*fbG()*^mF(nf$w5+~cCZivcc%F&pK3i1)e}$TS!m
zeJyd~beD9Hi~A}@?{_g+@DLY6X=KU&eMj<zzgrG>@c=`4b(;|`9u}Dgg^m<D%Edzh
zco7-xVvLKibS8fiqEoE(8(E}$UFtXy;L;n1w0hLV1SS#{x|rx<<S=D{i)UR-axvM(
z-&e$@xOm*f92ZkvOr!9HmeXC#a`Bjp87|)Gm)jtdJCmSl?x{apev-+ZP01Fy1uy1Y
zsGZC1$DdhqT|7w#x_E+VSr~4)FGKoL<C3Rc%yaP!)1xrlurYUN{Y>w|aJ~!vgjw_}
zX2;SCT|DPvor@E-ltnHU(|`#|-BHRC7fW5NV(v{<KI@&ejFFY0=Uu!Y;6)dAbjqS|
zvqsfOmkV=+i<K_w%v74sRQ5d>(U)DUcCmkaPRmis8qucCRMxU$%v44fhFo;Liw!Pb
z5d&Uz@tTX*1#fhrZHYf#7;cj8s={z*VOZm;98Td|=C-)_%*8<_lFJ{wj&8uVy7*84
z@!Kx83Ep18*&*N^q3;UaDfB%T?+e%^lyg5|y(*9HNp=h8BcUHxjDF%`PX*p9;8UUd
zgzgu5K&aj(`;d#nbjV)i7Z;y1!CZXn;y9h}Vqa<A*Dj8__)_p!LXQ@P<R4?PEes!e
zKQm)km2U*Ub0kjA37%gO`^m-kELqKBKL|Z3l--ARW&Oz7TNFOlEOttmhc}o1EZ{U9
z8|G1FP#^b<i(g&*=3;h1XWI6Mi{AyGWf3b1y`qrxPZxi==us4&V<q3O3@i$3^erp?
zS^I~@pPB6A4Ilrq0&r6vj(EuOP|3q19>#m9>>=Ajv4;{5RXkkep}B|aJyi8j%|k;E
zjXYfJ;Svuy9_o3h?qPU4rKX2k9%=|?cVbaUT3fnxgf1-#-!2O4dLZSiNWLu!tG8C*
zp*~kH4jWKUYvs1q%B96&dX(GPLlX~|d$__wQxDBNT<YO6k>OjOIuu75S|*D5Iw^Kb
zio+{CT;<_v57&77xwkOhUYS}Pj!zV?%2TfOaGeLftBQEL61{qe_y!LxJmh;Q@X*pj
zu7_WX!!{li53M}JJmh&;S{%Mv9G(ekaf#OSLtEvLtjjk_@#Rr%J+$+1R#EsSmi8Vx
zc+jSFqVm^fl+d=ghlB^qgY7}3TS`LRgFzV&H+N80PAsJo%9GL$riZPqqm9r5Ne?Lx
z4maB&>bkP!V~gXIWY_cH3x_!HkgmWP0fiol1jIhAN`X=jWghx@xZ6Xy$A3xTCJ((l
zbn?*ILk|x<J%k>AlOnRDtA{R(a!K^69Co|OcDj4u(rh&r#;K6|y3vbXAjbD=(T6vC
z=<VTl4|jM-mV~!>=;NWU2m1L|FM2@@Ro&)+P9yGF5;lq}+$NRWDN62MpM95y!6o6c
z*2<CbW%qdK?_sEiVIBr}xR-I{sE2{HBv-jl_QjW#4e~IvBvN?2_-Y83D+$++%|1b<
zfZ-k<@G#25LmozW;FJeFG%gKk#=j-uNYT@#H01QrUi9*-F&@SW_^o~+yALz&pQ__L
zEC}my6=J?S>roFAJgoDu-or!>lRPZ+@SKOq9;SGh>+y$HF_mkHsk1yx_fS|Ga_Je|
zOKy}NGsO}Hk<7<D%;rQ>d0diejtsHO1bZ{4JSj;v&%-kwo}xcXLk>MH^7Q<CSz=;o
zxIh5&{8?I38V)j)o1Cmg9u|98;bEnCcnSC7VHr<cX~?<HdpKMgzUbj4iO~xlek%=|
zmPJR24rJ7pOCGYzwo3G`mXrIk(DOm9H9Y%q<?MpIwLCjz;dP_k4IW<c@ScbF=|c}2
zxt51*9$xeKk2}2K@q6po#M~<jH;Y0h8(-!&tSqwUO%IQkg<EC&ZwaMym@}js#H#Hc
zcF3$ZN4q>|Z0|6ym{DcnP9EyT8r#{ja2HRvhy5N7c=*u6ZXU++aF2(NJbX;^7UXfQ
zPgp?8qeWk7r;x){_ImhK%EEOXx|fIhJbuk2dZXQE0uIqv9!8dj2c=6tKUp4rF2>xv
zK6^qdg+ck!!&e?$AD)k|Jsf2L^ikW#F%RE(_`}1W9=`Q(+`~^Ee)e#JXH7Kx;Ng1~
z(#myDO5$xUk1FA{D10fMN6-H#GN+^huzT9WFCNaYKyi=dQLt$L-k{cRR9haNm5|MN
ztmJpDRTT1kv9a*}<>4Hww~vc_{4EMEu*~{6@8KVo?vCOAg!!+B_OqgT^<Veuj**Kh
z`Kati)i~SduS6-yj*)q+T2*~iBi{!PEMJ;Oda;jsG362;w|9&T8`CkgS}Qet)b#O8
z$LL(MTgOLTABvAwK5{7UqnVFOeZWV3n%7oo=%ay;S35@6i^i4fGP^$S7&h|J*hf~U
zkZDQHO?))<(L}nWm-)Ed$F)AL^KpgGuXf^UnwqOz<>TPQGJ?EOE*k;2bB!OBEM9b)
z`?%gmu8-1AAxCfU(L!c%v~8!brQrXjFg+*}^O5I6^P&4_?W2v4xF0#0_O$iU!AHK2
zc7AjsXnA`|nhJ4&|9_>MO!|#woKq4qQS~ElvupUcuT%I|r_k|X`mlW1K9W9CKA!Is
zPU#dCVHTgwW3#yyIfpxie3_x|^UJw-(8ow0X&)IMx6$)H3Vjs$=;5QMk7A$yh(;G5
zUAavkWj;D{Up~rxbQC{y68d|mD9}usTAjn4ZVoa1Owgip6zidj<K4td-Dy(iD5-Al
z%(tyXh5cq9y?xx|qnD4dox`U)hji4&&fzUS_ID2ZFvMZVGk&X&)14zgC-kMG!YH_R
z__))@03Y}IxXVYUFucc)E__9;lzu+$7EZIp@pCPs9PUpKOKuPJG04YYA4BLgpZ}@G
zh%hRxq&%%`)I8M3Fh9EDJm7<+Y;G7`Acp(VrH7sz;YZgvHsVn}9`do+#}Xf-eT?xj
z$H!c5Eeyx{81Lgz!4LZwCxHA%{OI<EV1j^2J|_E^D3}pvfcA#r6d#ZK$nFvnPxV1M
z&Bt^BGlY^eQ@|`Ak5zDH3-~h(_qUC9@q~{jeg2CZ3wa#cC{OVa`IztHX&>`^@V=sK
zeKrdt0gF$x!FI|59;GfJ-<<iJk3^TSQ<rd&#Fxj4n`J1M^0fL`$-OYOe7wLtb_rMb
zc+tm8;{4^zTRA55`N8^y{kw!b@6^ncc-hBl9~*qU;$w~EIn}NcuvRE7Sx<wzgz*lM
z{Ht=DU-R)gPphtM^rJV|amq#tv{yFy_@qm8oucJie7xynXn<h>-l7?l3~*6^w|#8$
z@fFLdkL^Bo`1sVvJ|8E?#@_L<)5m*$^uzS;3hmu1|9v03e0=2NV;>**_|V6?iSY^j
zV;tJeMD3MtTvmrPcWTRpx$Qpjv4_qX8ave`q|9Ey7r#+T&VEsNh{yTSG=~oOApMNz
zE8jclqfXbb&!qTa9;*@Y&wYI1<A{$hS%12QYv)+KyXH4uR`hU(l0DyfM_K%Rob~aC
zk8h$Ak^ifh@vV>JK2ETpncgoxPK`*99}@qLu^1Bnp1Tu3{DY4l1)mc7lhB`qo)$`(
zxBKOD`WY6bt|7s1vI-aa-AD8Oae_a6{N>{xAOG`lj>VtpJ+S4PIT>epHeGR^`LMEO
z$=lj>(^}Fk|I(xY%Lc~p84<g{LOLu~^Lw{afXYEMD?5m`u(+r7#(i;itMcVP0h|DC
zfQtiM5}<j2>jP8|P$NLo0L=o_3{WdTPJns=Y6qwjpl*OuUGpED-SVlS`Sz5SRVKG2
zer-?;0qO^67@$#r7OS!wh*-OE@!z`VQ@(50uxxV6#$ra304I)lgSv*RKPtR5z?Q+W
zD+62=;IaTihsG`sa7BQ81ys&1N3Uis_0GR0;7jt;Wh3Ln*9vZs@U9E^`crS;JEiXp
z$-5yyZU7|!af<*|hvc;kFn>tinjv|u0>r2@KtX`K0KW{*YZIVtfPq8uS_c^4HJoxb
zM#**o2s#9K_2bg^q!*VEjC(lt(Z{9n0126xy{3-$Y>Z;6h-m=^pN;7OxQZdv6lw`2
z(+-fVz$pP-)C=GT=n<f2fPi}m&@n)#0GR-V^!)HxS%7!0s!KN(1t=D$l?W{jqL|j%
zTKB<8ar&Q<<w10U=qm=aa{vaSn@EQA#?+Qw0`$r&?kcqA;5g;G2l%yqU4k0}+!Wxh
z0R1=`;N}2*0`v{gJ3!Y}*|&-kit#7iF1(ceSigMgXRL1vaC?9|1H4dJ=Z*mCsMxDH
zQEC+oip{$*f6kni9csq!4scI^K>_aL&%xD<_ov$j#ZENM9uVN(0R86&OS6LKi|Y&&
z{B)~g%G^&kGL!>j#2-wEUp^pzNPvgeq{q$W|M2lZfF%Kz1{e|GLB=S+)Bqy`j0!L@
zz>l5t9||y<aSZTifH9Pr-Ev%jr$*$DrIG+|jMV6~;Cw(k58NAjM20pDk4*@o>cOGv
z&Fc0U7N;0DI4Qtn**k5f@U#Ha1I!EXOn?~y|3e<_XfBV;l=4{t9_OLBIsdT$v+2Xl
zCBzMmyYCE&&k;V;zQKnjnN~SZ$gC&1Zh!@|Gi*<D@4E{L5<_D113bsAT~>$YEeP;z
zfQ12e7Q}CxXYue}zbuOEq5zBK@bdh!yDY%-0d_D+7>EEb2H42Z2Y4yK@&M}tYzVL-
zz{&vY0t}edaus*V+zYUl#bI!4wa|sdb+~<YsgV3h<D;5D5465F&Ww76=`C}KUtO6^
zC8L|vW)*#%6+Xb$0Gk4A4x+mHhR`hm-t3ak?witmd{Oy=uHoAOuI>{1^kHoq&3ho9
zuA{*A03QvDF>3E}n*k07_?%}p!21FA2KY3<E)m#G8sG!b_Mvd7XG_=c;{d65i#`!P
zIaIhOz~5zQHe$AY0S*NCOs4D)@Lkui66y}@A3G>v-90gWh(&LY%gu7i7Xgk4|GNNR
z2KXw#x8moodDv&9kI5?3c~quQ$u||8AC`1JF8GAdTTTZQ<B7ZN;n)w%$pC+r;I9&#
z3h)ziy9h&y@N<CEeC1jOKV<L=k1Z2EgN7OW8sN78*_r6a8h#IOmYJN!qiOs>B|JN6
z#MAgIz&XmN(J+m_1DvOPnjb)*u!iyvPiTNF!T)1|jqCI;1AUF6<S3QWsGLUoM#_CF
zwXAO8o)*gLno6Z+Wf!GUHI3?N)JS8<^-71JfO@K>ad8@#r18l|nVs#d#@)hZZx`20
zqgERA(m)zto+z!qymV+CrFI&1($NPuY;^_X2%Xg{yS{)n-J;)g*wMcgX`?h6r*T~x
z&C^hh#hawjG|f*;(B+%>+6S{PP2;jOu9R8-zEpI18ds!I+%3HGzT&=<>fF{XJbibh
z<f=5T7MW{=UMtjnt_p`nbqlXgqaC*?%o~KZNTX#Mxm;1Y6pN+NN-%$}g5A6{T1&T$
z&@+2$li9WccSwVddZ?z7pT^gF{WVP#j?V5DCel#TxHXMFX=rKa^m!UZX&7mkX}D>4
zX;^8L*Hi2?l4*XUHt*$bVTxXj@r@a1URN<1DCeHdJAH4fIyuVw-9kT&AdNIVaAmZF
z>J(=rUQgCkPJUkeWS_j^G)mIwoJN>NX&Pl|bmB%9)hQQK8M_^gm5zcroetUCs}?;r
z<m=)tY4l9vMj7gwMz;!??gDxUJ(0}ftl&NMrZoQBW3M!Bu8{04;1=$*Ze5D?P2;vS
z`g2pvkn5G()3_szJJUE;TN%+O#x38K#_?|9J!$k~dgLgz>MD0LdFm>Uzgx`gs?<Ha
zH;sX5j7ei`8iUffFO9(rP>ymxQ=)s=rhC}`3WZ=#Q)NgR=V~iM(-<Z;3{PWJg;fuv
zF+%Wz6`YYg2(pofDmbGBFuNX3V_X`Kr19z}nVp3N#iE@4VVB7~A&rS?>`mj-G$y4n
zIgM3myqxAY^f5J!g=svO#<Vo1r!kLdP*yNQ=woTjPGhEEGH0b>cPt=yTsTiu@aG7a
z%V?HGqij!dm3FbG(s){izAO1Z{xfOJub8zUjc1uxi&V-}EoBy^LAorB#R7<zq_LC*
z;dCA1?i~xBPveC&UX;=06*4c00GFf8iZoV=k;K%znz2sfwKQH&W39-)Du%7An7clW
z4T4`0dQbhjhug(A3Z_-#$_h56u{n(o)7YKH8)<NKYZ`B-u|@EkLhmjscuUlBbXywR
z)7T~a9YWs~`i=<D$o4a`D7KSP6aM=`$)W2=Kag(Gswy9e4b;3RjgJL$N1s$|&0bZd
zacRN6H1?<QXBsog3l6058O750UW5;_5S11jPva033g>g7-w6F8jUxiS6iUrsF(`tM
zR&b69pc0OLTj61LPl)DW_3P5$lM?Y$LVpnYqtFh$vwuqC=QK{I@k<)N3G<B5UxiW+
zr?b%^zYB->EEBk_;ExJ{zj!XhhQEdWEA)IC{|KN}|4W1MqJ|5?$;w2@Q%NZKl{3*O
zIaM;aD1)jQRLh`F26Z#&+daHEgIBwU)iW5ftKgChMt2XN=^oa|pk@ZOGT75StWEhI
z;i>N7PxbS!?hy_cnQ!z6b25Mkvs*8N#F27NtS_AIBGV{?#u*IFU|0rCGH9AXpA0Tc
z$ZnRwr5S{o=;N5nGPpbgGXpDwD>Aq;gAN(wXK+;pS7(r$fs(;B8C;ve=^FM88C;ja
z%}<p)xv%{C44MnRtDrME1C|sG?h#U^MTQ^aM#A~;my@>2AeKSf45s%8^D=17ORbEu
z+hdrzs7LsAkMQMZiYQ4=I}vN20Xggr+*e+Z0oAG*#4{K$Oig64zejlZnWEYE6l)pi
z8O+_MRC!A6-nY!iV8lJe1syuu86-0(%Ah!dlRd&z20;dtaWZf-@B}yN8TtY$_Y8ym
z<uxwx(-~wk{2i{&g*38fNO>|zOEM_Upge=K7yHy7^b85g#C06)m_eruI?E_0a)?aQ
zE*ZYw5ZyB9o<T1$tVaetWfqm(NcRpZ=UO+34LA3U{5GU#IOuNc=KsgkcR)u~eP2ft
zia-dk1wo}KsF+D6)FdQAP(#SP-lm1#d$pkg(xo>+M2aX?K@b&0nkXnrZ(>IgL=mJ2
zC{6wEclgb>zO~-kYu|IvJ@?#m&%HDA=9LgSgwQe3-SiT#ljx9i388BU-9qRd!kIgR
z*1qf>OscBE{vq&9Z9N4^dWCRwZdPwriKK5r-j8ONq)=f%LNZXupb!QpBu_8{6TH;K
zq-W@Jsf-CBOblTNM-jqvAv_<#=n%$)Ff`=9SZ8<$FN82mIEz0YOd7$Nnvyg!gi#@|
zcuPp6@K$lG$X}Eu;{;hXUi!MFHYtS3A$%Y5FKnA4_(}+Kg-jKkCOAEW8A4_Xz9cwH
zkPT-Gd71VTk`I5V^lAw6Lii+v?IFw$VL^x&72qvVSSYwe@U;*YC0e~6!W#*`SjeWd
zGPJ)mgk@4(eycX2^XpxuS-UcX_eHWw@NK5FkTp#HyMk*&ct?uUtYj+lcsGRixBw?6
zh08Q!aUC}VQTQN)%^_?FVM7QXie#hUrVwtqG38(->TeYx$u=P$g;4qKv?nW;`B;iw
z>iSpy><Hmg=7vZ<6Wkxdfe?0b#zXi*BzpvR39`v<=0n9Yg=uB>iez6xPT|22+BV3d
z&X*w^68T}lBZ9Yrz}m~V`J?+Pgs(;Zjo`O}-wF0O<@@%7aFSyo{20PdQamnLGCK8V
zAtwY+hVYA!Q-Z%H;_#akX@LPe6T(^MhJu+2{s`e*2yGNT`4H#%<)7P{g1QPW^2>h+
zcPgl=;8F;exhE?qqu@#ie}(Wb_sJ0c4&iDD*F(4w!Zj|F7qdq#PMy~&d8->N*CBY5
z8{qtuYi{tL5GYwz;t{u$cu5LwQ;?#dl!Dt8P$60I71-oUu5?kO@adH)rQ3Kj++bPJ
zsh}WL!Rk)QcPJ<)66%*%K!en&s31*26$Oy0AHK}4q@c2b^hb+ms)o2xyN!2cTy`Zd
zNJ%vXcPY46K~3uOQ$QTJTR{zJeyhnnBBW!>J0+WoQ)@}peF|zT=-8n(J*lJMwZ*Aa
zW_KKWJp~UaC{WN+!Gj7OQqWXEwu1T!9##-kkVSvQNcp4LnF<05{<_^CeujekIt1fh
z@Ni)=J=|Hy*A)8l#tIrH{AnaaU1BszwCeR(QI3LKk>^Wf*rb_)JjP^LKHX-KrXEqy
zoDu5~Y@uM!>?8_#?D{G9Q3a1FuoTz|9#>GP@Tw0Ki%u&AMPl~;quICgIj127iULi6
zu7J%|1)OUt(BYgm9u>$L1Vb8{f-E`;Tm=yYQIT+fH0UV^D=^x4Y}mVv7gG?I+7j{e
zsObFtb1HqN@pcN@D|kl15Ct6=c?De+bW_lYo;MFp{~*{!L1zUdJSb_HlG)qJ>aL)N
zf+rL_si3FSevy(%g{Gx4dvRV$W%gFkM@V16eu9+uS1=&K2MQS^IGBO8vZzp@RHkla
z%~%$EN&)d{!8_kddRD=63MMI-tl)VCLlulyFoA38uHZ1i7ZnU=(Asz}NO6SVNWoEp
zqXowZjujjyNDI89oDE4PDmXJGjdx+!+LAwCBvTYjRj^`V<>?A`PE4A{$W#v&tqoC`
z_oP31y6EWU{FfBWVlFwsu!`9VURLm>f};xND0oHT>kF|#!CVEeDp;oQ>>1`MDE(#5
zLZ-KZ`3nB*RB+))&H@GN+jx0t1&b8Cu3)i((NF00(hAOoT`IhxVB_JOUAuFaFyHzX
zEtOgpsl&D_6uiw8Rq!U))KKRw1uGS-QczLNr4AcDJJg}&H45HQ@X4;+J#D<ToV!}V
zceykkF6z@dmz-}beNVyrw9v@s>*$a0{Z-4b_#quouwTIe1)CIXR<J|Cr(6pP=-XBW
zA8}^Ox1=-dYny_P*%9Y7t$+>?cXTS)uApq^0y;w-cJ~?ce0T0%abu@~&xKI_1?9qb
zCnS3mo;0w0Z};cyQ*d*<^K`K_vTxBr1&6t^_U4iw;@X*<Msh?X9OK!C8-JzXYX#L*
zUWbEk6nv}TDi?x+?-YEm;Ix9@75t#!n1Y`boKWzif}a?okJaNG;EtRXnc2%5WNGam
zd2F;YHn-rUf?pK;s^B+{bbao=w_6Ph7oJi;Os=2#)s7rCd237&@r;7A+~GO1)He$M
z5dHJQ&nam1U?y!|>`-vQcR(Szq~J2Q9i~}kHZ8Ns6;Zx2rs!lF?{Dr5y{w1w3yIei
zUXO%3RFqS3Q^7yn;Z-E7*liU4s~}0mD_Y@y3g}F&9x8>miR9Nv;jiT~Q&f~vQCbD7
z*aZjGJUN%VjEb_VKccu-NPNpJEU%)1ipnags7O`8AXHNE(E+ofiZm5;{$?AGo_7ux
zE?Q-#<`=R%sOa{YbEk^)&nnGt<W*HsyrvcXuiDnDuA+vDY!x{w?pAS+igXnL75A#B
zsp38r_p_J$!dfb7t9}Fwy|8^#CG+i8byPok^rx<hdMX}LQD4OaDjpO$-C%Io3wxiN
zk)3HN536|1DP*T?%T^gGGF3EG(MSb@9HfQ(!UhtnEEQB>k;-h|n3`?9GQF&(DxN)?
z(L{pAp>co=NUn-zDq5*1Qjw=3UquTQ1uCkwf8-Id++6ho&d9SD4y2`uM^!wo`jg8p
zD0xg`Zfwt?&xPVV1IVGZW|UNzDl8Qt6^aU7!mElwO$8meZIwx7P9-_JFjO$S%spF$
zqr#J3*gNNrQ|U4*+IUo8WaxiHMN~yh<;7ztf2DLk6(uU#sOYWw7wNTC(N4w2iT<4n
z?NxM8vG>y;c}EqUM4=ZQQ2mE6Q#ko*keAJOQPEZP??K?vO-Oga9)dkp@B+&k6>sPH
z)p0%j%l7(+oxY6Q=l-1({h4MW87Med#ULT9YS}07-PYjN^uSXpo@PqusH@`{6+={X
z*U&@5vnrlb@dr<(s(4<-Q1+!_gNk7)hO2m4#T>e-VuXrGDkiHKsbUmo=Suo`6{A&*
zQ88A<IHuyDj7g0H?HXhrS(ja<MPSg4^rE)ji%j(vfd@teCNKldz(f^mGBa!cmENYU
zH$}x%6|+=S?Vd4B#dH-jRLrF1Cjtwj85PO}dS6XH*)f;JmpGdj(n&sQpFy0h!d@RF
zc}2xs70bAeRJ^KUo{HD$e`;Vp=Oribnu?Bvfd#_t+JS`<$)}qJ7Ew8t#N&=&<{P5_
z@s;$&DwYUm^QA(T9m`vx;!PE6*-+)Pyc)lyVwH-wRjgET;)DF$?t#1iNng!_bKNPh
zMn#!Z&7Ed}ccfVHd^&~isd!&SkLH1ODh9UoGMWaKTuFbvdSJbZ#=oae`7?c6)4+$+
zS8-6qAr+fcY*zWeC48Y`i;Ar(wyW5|ErN?;VMd!j(mzqLP36UbNGl0&W~cQJEWDBa
zS=j)qK2@<=4eV5Tf;8}%iii8yEOLxHwgxHL#pS7DpNjn|nq&v|Fef>up`;hNJckAr
zMJx8@HMc7GX8HW*1D_1Y;Ph3_4;)r;gv(0BZz_0E?w2ZlP;pGfQLZBuUyJZt72olA
zAn=WfilzNon`%|0GRgNMA?Gb2OoJa){G{Tzik~@yJu`k$ai(_Q1Q&Iuz)5aIZ)KA-
zZx#sE2|V&l;1tv2a{9YN0;j2PCH*X$)DBF(nEpGH@M8KI!AHvkstrmS|76B_6&E-z
z4NWy%RPiVGLk;(6xTNAT=S4$V4OdkBrQ#nI|El;~#Z?v8RoqZ<O~p%XJ$r6i+1~jp
z+j@NaE#Fjolj~jeUx52oJeT;N%F8ctn}*vp=)3dys$2@&&P-_$&rQ~NtwL%k%~wv*
zKz#~J3!y2#)AkMx<up{*P(?#|4HYz`YN)6oIy;4(veovs-nT=u(==4la7sA4p#0yq
z9yHvkp}JVBs^PA7UNu1yDiH6|_?mC;R<VZokP%M1S3^w=4{J!*P)kE?4fQlUprMY2
z`!v)Qwfn^;yQV%(4Q!K3Z|VGl8XnS6UvwCOTf+~x^KK0}pdmx58VF`;ST!RlOXJ-l
z!Jvj`#H&UTgQIS!p^=8hx0Lzj-_%O%g+{V9<Y?%ifjYSwnrW~#I2?tBd<~Ckcud11
z8rUNpE6~tfIEyW$7m}9rA)H3X=Ct!37yCsTTFY<>rPxYvV>^#wWG}^HfxU+`C>oBp
zC{P78L0ynSLxU;YN=S~j^IQ#{h7t{JXhcIqLyQj3O}mu?QE|zUxKR?n71E1NTMg}G
zejBU`F%uXZ9_=+SF-SUU=%k@D^Yev@T{%;O3puDR;^et@UN@0Y$XNB%(2KLLqlS*&
z8v1DXLBlZ(eKqvc@P>xP8v1J(pkbVb7c~sjFo^rPhUYY1--{<SJf-1j4Nqz)-QF8}
z%o;W%H@L?(_qTdR!#*#22#37CRq|?MU~%hLZ?qzRUc*ogBQ=cDFigX64I>!LlHwOM
zbgAFES$prw^;Y+__vSpBy>ME{E?qF1@{-~)8q`azNm8Q4%|6n{YG7Zlg^I^(n4n>n
zhS?fkSW`Sv!xRlu8OHYBBn^{=^l9(0I8DQJ4fjTiUm{Ukjc@PG&@fX&*Js?<+j}|h
z7_8zEezN#w4RbWi(=cDUeub8cTD_`aE>q}K>yNItIyf_(f80}<MiyvTsNppYpRP4{
zdB&oW;zb%>mwwl8a9QM7*u@eJOEqlM@Uezv8kTE#Ps95fRxnF7tkLieXI8^X4R33p
z9gcC8hK=n#j+$XyF){aOdv7&+si2>2@2%w;pHTd+3@7#H!crYP-}w&SIt?#xDgKZR
zHLTb00aLw$N9Q+aXxqViu7fwHgSUzH+3!T()h!yDEK|2?_(;fmv@jrhR|oH>4qm@h
z=MxRvHSE!_SHli=t>Fs|yEJ^JVW)=AHPk36rmJ*s($oHx4F7cSDB+atS?o6J?(P<E
zIpg~@?AP#>hOado&~T8;aA@(D8me{l4rw^d>}9|^c+3HYmtAv!*&TgTN4XgeEhY&b
zv%cXbv)cMjgVE9ZmK#)s+@2l1CEeWbxe8_$(19N{{G=gSM~aT)8h+OBhlX<+PG~r(
z;f$F2MFTZYY4}x=bLFh`-!ya_mdgn}t>MSIt;v~Sze_E<J1cX+F^=l!o!4+d!`~XN
za{t$OnK~|OcxgcK8y)>zeXDKpCC*^m;*&j#uV`Qx{}QY_F@0-C@0y0|8g6R%N5c&b
zLzd?69+b^a{~Vr6{;!7rXmEILl8&)21i$L&?K)UU%eU#cUB^Aci{}l_J>SurILj`j
zqqL4HI&xy^WptF)c|kiW=(t1ouevFxqwg-8@!uaU=C`=Pv+PtI6?IhB{fx?gvN(;_
z9&BBSAv#>hXtNg<?O$5&r-qJ`$6Md2qpI#NTk>i;?$Qw&TU@KV%c~3QORe}D`EFX!
zaj)+GUhZ9BmFwiy)KN!@o!nq89kqo&trk(?modrr=~ytaki4Fb2XtOBj_Eoc)Ome7
z44v;r@lS2l*AdW>q2pmGrVCO&WpQezj-V7<>d4a3Ku0qjdF(<*BOOh3WJ_&h9Zht&
zi&J@;h-X@Oz9^hrMC7TM938njAGlOxw<uzf3i&!7(a~H-3mpS*&t*qEc*3ec_fIR4
z^K=afEj+5@F&&TVC}bRTC^}l{a<ZtC*IGvr=c0{A&HFofJR4IiRcG4fs5*!mBdR0b
z$$P$&*P@e0$;Lwe)Ssop=67QqLv%RwSx0vrJ#=_F!aCaOXs08hqu=?W?^YJH(Gk@V
z)A7!_yts}M9XlHa&$Y~EEs3wQH~Xhg3fk-Fpreb9t~xr3PA45Nck-xnxonxv!rAJU
zq??X4Qbqez=*cO&nbU`vqobD&*8UXJd+XTU$)iF)9sPAYt>awTG6QtX?U(gla_*Ci
zoA5z`g9V=uWOqEC;)Ko&_B-kj-#=$P_oef!j_1U&7j-<ZW2lZ%I!5alCaqr3F@nN!
zIl~1fUGztH|ClOtV5E-o=ZYF$EE=POgFVs78^@IXqi8IPD+@?iJO9<Z@#6Lb9TRm-
z(lJ@bR2`ol%BP(v(l5OtZxpqO9Lo$HGj(j&u|vm8I%eruu49Fc*^<2rb-c!)>6oMA
z6?({-O0P6us$SJGPv?7`{PcFN=t-X>lkiv|wV(Z<FA}mu$5I`yb3%X8-_WsWPLRi9
ze!|x9NVqQ8WSMA^{G}GXspBoqvW~Tk$>6NTX8uYYt90H{;V-n+3C-)BJQmmJc;E0H
zpys>Gf2n<sLLunvtxM>y7xIDN1|1(J<Qs)-;<g}UOG5tohe;pl*e1n~nfaal?s$A6
zl0awgQyrgiqtNjSqpIU`?j)(nKk4{F$1dh)sf=#~ck381Dd~vtJ%W1$_vzR#<bWXc
z4+=RXcv!GaXYb2I?NK3L34Sej<wWUkg?uMn(8BjReh|qqK}voULI;lPIMA`+XYLzH
z#tFe5oxK*bvsgT(V@pxi6`g;x;x`?qb^Na5lIU<mXLMW?BWDvf{}6JH*_e=A(D6cN
zkKOV3lUbMGmpS#q*~?#Iu+5aDYdWs$sOg}VgBv<->iF5j2^0V5_*cgS6BAARrz6S0
zegg*#+-Bf*13e7%G>~i{#X!D+M+}rQP})Ep1NRvyW1y^oI}KDdaEF0%1}Yh-Y@j^l
zlk-yzR5b9!7kL#7jN6>L^ID5iSvi$cTBaE|vmp0bH)vcbB33cbU_c=Z3|dy{-97oG
z#^qJm{dhG4cNwT*;BJHeyrbtgrI%JuZn!zM{&>CF^t^ivJT|8Cy#{I;SaYq#ec}A`
zP1tXCEd#Y_XR1ZBUCOo$R14m3pss;T13?4z3_M_<zJZ4gJZOMAJRUMoWq<ap-T8CN
zWz*+$kp~Q97#KZ0j}BAkwL^K^)$DDZy)3$FAjd$ifrbVe8E9glsR35y9Lk$uWH*-P
zy+;<ku{m|`j)H6h1K%w8>hvQt(oCv097)YH@Ka~+=k<BrueB&KvYQ)dVIX24YM{VC
zOM|xyK{fCw$7rCHfg%Hs8{hzGq>x7bGiaIJWsJ>hZJ^jdh;i7QTI%N(wYKD4>+CTg
z^nCcW7McOwfMdWl_zZc!xn;mMU<zlE4p5oa7$}mBD+)Y`=bFbWvo=g0E*IU3K+Hf}
z1MLjN4V19EF_qge0-IBJR8KyuWv^7T+Z*U$ptHeyl>Cl58tBAXTaep)WDz|fp|Gog
zZU(wDbHe%b;pm8>_jeS05X`CB#bcCu8R%_biGigC`WWbI;6(%D4fHe6pEeCVXJ7#1
z$&51aBxl*cvOy`Y8`*;m{O9HOJCw&RN*yZwl!2$kham=@F~GUIv@n;WqXLyV97>)y
zFx0?E1EUNKGcer13kF88uS0osc)}NXNlnrHN)cNzE9e_rjW%#C=#4cn#=zDIc}$p@
z!}XLgmB-PU6**_hsuK)MH1M*4IR+*fm~3E%ftd!T7}!2JWvYQ`9Q(Bv6}0T46*<!l
zH1FbZ%7$>_vT|NBK;P^Ixw9DCD}Ky*%$8A5_=<tK1{QKG23|EV&%k`qr+d*Z9!Jfk
zu|Ot{^SE|;-Xgyi9R3@!?l@isTrJyjF&A&ymOR*GnStd7HW}D#V1<D<4ZLgMJp*qU
zSZQE2tr?gQOrz#1apP?RH0~_S<wAIep40%{TPsza59I$hE^l%$?R^95IBQ2zKQIvP
zU-;#uy!En(UY?vnI~xpqXn=E3wR)MVhe~ghG^jHnZwupTV5fo44Sd9<WZ)A<%;0@$
z`0U422A^}mK(Tjb+71f2946;~Dl<FF^A$K3bl?jEyA13Vm+1L!1AByDU!gPXbbuQR
z``stPZ^q{xG;oMpfr)ezhYcJtaMQp)2EJrw8aQR})G@v?@U?*-3_dO%-$+Ad?Dqz5
zox^tw=AqKvgB~Y{vp^rt&dC0eOWVLN9Kw-Q#_G6%pADSgtWEMa5FRI)*i-X3arH(P
zu{df}5jB4^aN58H0~ZbaF1`F=;2bwe**)m_S%1-GbK<DX;&~~q-|X{08B&7}OaLQ!
z*}xS8e+jaS3+oDq)FEc?%fHG5HgH{L<c9RZsyh#renL{{UoIl<-X<!WNHTGoi91Y`
zGjY3#WE0uk&rQsoo|j^xw23mNB$5ekK{Rq}8-I43O8&|^UsB#g1rwaFG!xwYQcW-|
zIrXfnD3T6i^PFXsn2=RWz(gGr_nElUL{$@ao4ChBH4}H4__%s<b<^MRviE0m;V{TG
zOrDnX3GrSNHCgKhYn#|C(V)DR$!X2zX9VTx3q$vtsB7XO6S1N!O0I57t!Lr^y0`mr
zI`E)0pV`HutMyH=IhPW7fI~Ckn($0ynh2VB+(e-m$ujYXiRLC6m}qF?%du)Blh2h^
z8k^t;97z)sZ*}pS3X)`-$Pu0^*i0}_Fkg_JQjNZ~Fi~KlrRlGcxmxz4CYWr+lk*;9
zw6k((nVi_lM3D*Igkhq!iDDCq3Dv~WGdUp>b0k9s&hS40HPhc!c(4l|B;4Oj8HH{7
zdz~c;{IGBm@!4djhD}6FJZa)76H&@dbT-k&MBGFP=jFbl_9ohJYPxuBO?=nI`*(UC
zg)Fu+K~B=aL`TtNan6dIP9~V`<Xug4Gtu9~02AF!^f1xeL?6-YDcH-z-*tRbbcr@E
zcJbJ}FI`P^#7*Fq&4DHcnHX&PTQPNb=zXnnUA-qvo=MK8&eJBIF)_l#NE1Ui%O-}J
z7-r%*nWpC%s1-TmUsMl{EUKMVnS8k96_bj2&f*J+G#h1Nw25&hUgRv87-M3r<OwyY
z#)An@94|t4O<uRFH_60g6MIeUGcm=)R1>RAylr9{V^}I<zKI1Urkj{yVy1~dPC2tp
zylnCYSTyhIpYWVzA}oY_j){3pHYMW~E<h9KMph)}@u~>>cJ;~>1}R)<;x&;hH?c?v
zb(U~`O}rt+t|hsPnJ2F&Z@=jL{JVd$cPS_LjI)fhJUfNO6(%Nh_1<Jo3R(I8;cX%R
z8|G>go4C+StTFKpSG0+D#qxR+?=e?RtmDowKZVE7?-$S@@y!`YO?&zL1JT?d_@UrN
z!EvpETR4fF6ceAD_{hXI&Y)C%EXebpJPXQ`oS&E=w&GbJ(?6&BDMPd%=a&<CpP3-C
zi!V&<VyZkIWI&G3szS+bv9L!lr?r17d%uYTCVnt+%)~(xHLjOF!X?ZdL+0f$Hy=G?
zSyzvEl-m?jC^hR_ZUR=u*Bp3P&%QtR8_{Gme%R_?81@~r<?i73g8Yunsr*qCj!UOM
z36@=1NPYemI7wHThZcreIA!8j6AxN=$ii<XPIJGt_+m%=ZsLr|TM}@C`zLe5#6^>D
za`Ep0Jja<DYo6x^R%XUmUA+rTuqGLOGc$Mt@+A|OP5i~>!`-8+m)6b8=;mE9!CKyS
z$9wv&auk7#70olQnFw|B?;`Ki&AZ7j|J>m%BwP5G)7{O#n>ES8f6^U$WRbU;-e&QA
zE*VQ`kPl3-P})Kn%ePj_!q#pc?_lNqzjTSpWi9;N&A*wnyoCxDYFeme`JSg*{(Xg2
zEL4;tC22w`S*R>z!-$I4yLqs1r-iB(c<=dL7OG3DYJyd}dwJcx8p7|f{2N8@7S4M=
z?-k<P4`$T1P{%?&%fH$1+hE3h7Va0$;^A+T>RPy`dB(H5bBGUc7LGVMfdXQE3lDQd
z7Qz<N`5Z9|k6S3TkYORyLPHCUECj_)mW2iuE)Oj%&eO&P3TT$r-0ogu3r#FM%I29F
zO)X?w{$0krvyvmtv5+fcWF%Q^COl6tU+@t@RyDWKBEbuUw6rjwyT>Y;eN2W)(#k@S
z1=WHk!)a}y*h0v{#O~hG?jA?2SoluJRzcl@!Le+#Yzt2;%I6~ph^BDM!e8Az79AO#
z{YbWJfjDP)VZ=hzLSGC0EZz~1xP>kjx>_i)(8fYX3!N;qwa`v-qXXx$hu7ZnAFRPt
z@p;pXi!J=j<jtN<dU&0w_Ij?}!(;7pJ-lufdRpjZp}U117CzcwF`bx`vwL{&^zeFf
zEG;tnSRg;U(OSJHXIBreKSN>RX$#L-7%1U=!orghlR*{+3*r6gOoOKw@Fsr0e>TcE
zb=W!C!y97ZS&R4Yqis*`pB~<G78>{TZ?omIBWm>YcvC9n!!5kPG1};A^T}Ws$r0J8
zVq=tr(H1_p@P&mj7RFjwVc|^+<1D;r;bjYRER44>!Qw^Zm`2YnOtLW9!W4#Xh4SCu
zc}*gPL>@IFg;pD--noM57G_v@$-*oPGcBCCk;kLlF9n~RDIl3`;m{3V|EZoHixj?M
zVXlQm7G4+SS1ru9u)xARcG}ac@KE-NI{81JP^rAo!fRZEC)7~W?2HQqncb8(EG)LL
z#KKYwG({iOkIXOr_Iq5$v7Am{E;g6-^jKT{r23YHl@>Nw_)z4lEWFKVTl~FTxVvTH
z8cvFZ_bsfmu-3x67T&W^s%rj-#SRUQ(h9fD4blj$vAEvC2i#1guZC0nq3umC*l1ys
zg&h_?wXoU37OrIrAJd3lxRo2=F9jc2_~xN3lJzZ=O+CG(E0j;9cDwjbA83cl`A=2(
zOg!8vt&;A`r<}3f#U!+F&cb;Mdo1j=aLmGw7WP@#Z{ceiw{XD1K?{d19AT)Le(x4=
zrr4app|@XJI4YLE;^<lya%g{^DLB;A%dhHp@humZh3_r=K;!9tJUQON3;yWnFayqz
z{$$}ecX$iGaxN^KuyE4CFBTY<AJ?{`=I=ed16m;i&H=Lcn}yRB&N8W*WdAN*pOL|`
zD)&?d)wD<<tNsv$dY_pWEL^mZWaBm)e_FU?;ktzz+?Om|u|S9a=DOzo5GkbROat0U
zxtVv>!Zq$@O|#b@H8~yMPf~75U;l9Pm+o$!FSzBNpRwFqZu+fmw~=h4oQ?7}Qf!p6
zQQAfs+c!mJ`p<}!wXwcQ_8qoA*UQ(oqVdwb{BTvUk!mB&MkU*iB;A-^F|(qL#y9im
z8^cBW?2EyNjXP~bZ9mPb+NfqD-^L?0?y^zcMtvI(+o)mVZW}di)Uy30bB~RCZ6Ga^
zoJKei9BFMEb!^;kqppqnxR4h+x6+Rot(srY#sloa#zVHh7Ff&m$dyvFm#0iq=+b*3
zJ>5pYMnfBoY-HHTl)kcTf5zF-O};kOMouq})*AQ@7jmi6RAU=WD7TSoqp9sLz-)%=
zroW0A2P!Z_nu&zPJcg@<V)ydCe=wV-n%ih$<8d2>5<t#Qfz8{3@ThdX>|)+yoaHkG
zbd|lcc`F-5Hgp??jn+1bZ74QW8zI|INIF^bzI^5+xkk4qDcp;C^zyi%C^T(YHe4H?
z4cq2jt|<=3*iGT|(J~kE@LpcnMnr_SLdPi4e~u-_897%Fw^3rFjqtWM+6iIg+uP`1
zqmzx!Hn<&i6rVrHQPPY;<}jNx$n#}u>Sm+6jq5gU*yv%Sr;SxM-nP-pMsFMAZA`Gy
z$3|ZpLu@>2qo0lbHU`^x!o~m_18oeF2=8l>y*Ab2FzZy!AG*z%-OGEDL1>!&w2fzM
zJjIc=Q7Gg><LHQVKE1d4oQ>zXtJ@fDquxW=Lv0MV@q&$EQe06nlR^%hGdRM=Nak%w
zr;yn@?_$9i8SGda<81ziSol@AaCI+_V}H>GIlF6C&YEarl8x7FEV41##uOW~ZM<w_
zs*PzjX4sf1vp-!d(+Djv?DX>`8?$V%FZ$V2_pOo7;T+j`)#ejau%nkZ*T()|(>RY@
zcii^p+gM=ZyI$TxX-FgVoNX`n@~HE=jW=v8XO)e`HkL^GEwi!I#+aKGnHZ5@(<=1#
zrd;&5O*VYfhIYIX1Gv)0TartREf*{ea!*@rV~vfkZN9P`@7P#t<1-sOZM@5Y*w}1i
zi;eefth2Gf#)llE#EKdFf%N;trHt!=Y<BeL$%2hG8Z1&aF$V(KEYg3<x7zr~#&!<V
z#x@%tOY(mrlSm^SE);MBWESzmiy1|4KV@Khc}y_!&ux5RV;_SfD`=OEJ@ntkZVH=Z
zFKpsZ=;a5q8BeZ`U(yQ>*f?n8h>b68uy{y%IV^mVnMED0R`yuGw|A5?Yl9AO`M7-*
z&eyjLxQ(+m{@~)W@dLBn#z`B;Z2V}0z5K+mT*zRLMZLX^TH$f#stx8R7ZKMxr{)(M
zr)>OY<Fr`*RpyTR?4_n&_&Wz~gX5wb+}4<WT$ps`oQ?A~uGsj?#swP}*%#;W*MdK}
z?k@OC;1c)Ds`>1csY_QmSbF}qjjNK_OegMd%!+H0y39JddXrtBPKSd#9sFbCUq;X7
zV|Gx%L8^n>9Ng}pw1YAZk{wK(R58UtDTmL-EM$+Jr6byW_1ToN4(@PJ&Ov#{-*7mm
z^dY5LDszbu<DlqFMF(jPsyO~0!d8_WRCd6uV0Q8Ig2QKgSj7)Me#BRG{0MM#)f_+g
zcR8r;@PR+zyxi^J9@;4^WE$M-_@6k8(yUQ_1ZbzWgE|h1T(ov^pM(1yOrYlu>N=?B
zpq+#E4jypupo10;3LHLI67?N?_hUhhgNGfYJIHhpbo?Lb0S6g$a&KPXr67wVdVBia
z!7K+295nVD2LBG&4IMOUlGDh+(sY}W`lp-E>FqU<+NOe(WQz_-u7hR{4)I1^2Ejpd
z2l)<8jt*QZa%R4hlzu93eRP1NU}Z{62ah_4iyMzQc-(>KAk5)AXyrh0pgQ<vL`IQ=
zVh14ytsQ(EGwvLcaSJPL&TD^rQM*TSe|oC5=I{YWFdeL>|BUK08GK%)<-m5}I{vdO
zX~%K!#-=>-9lgC<q{~{XR<rCSUGn*;&xnKWn+u{2VnWF0z1-xDLm4Fw+OXlFjJATQ
zOH%r8NbTUDqr=A;VX%Wv4u3CH?&DzD)nI1_U08I`%|S25aCS;}$G_*R2NR~ZM{;jC
zwWovYy}jyvyjR8sdpjUz3uo~AI?$^H`#I<@WPsp6LH?*`)e{b$bZ~5b!B__`ooeuu
zgJ&H)CsXjW;4=<}2;nq+HazgWgE8HUhdCI|6sqA2b@2DRVsl>l3l3g>#~tBdB!hgc
zwb#cR<=~w%#bX@2|8((a2d_<V-y9a~+sB*I$8(puJRddA@lTAuC^(*(P(7K&Ne(7+
z)woD;F~z}D2VXn*#=$fWp=^s;4rV)8)5n|cV1|R8eY}|te(dAD<ltH#|L;!p^<H)`
z$H6)W>lq3Mb2)=-;^0*W^BgR2u+YJLNv9+|^rRM=ye07YjKFJ*;k3XK;^@F4sb#*s
z&IwBJ#SW@Pk|<o7kSues+`$S5Zzd!wg}lY7d9Wfid8`u2+Z<zGkHvQ!tYtvB8|)0c
zD?RReE%5z&0e1bKgB^Q<B&@nLKk$Kr4GwlW*zMp$2OF8F4nA?PiILn`xY@xLrg~qG
zoG+T(>fj>>+Z^y=xu0wbo!FPl$L)6P>pv%XJIyjs%ozutI(VwD_nG5AjQ6XI{5=!=
z7nRQJ>wO`T6@5Lvn3588jJwCdUV84}u!DV4d;ClFfRO$4L@Xb4Kp~HbjjbaNzLeUd
z%!iGIH1g!NG$N0$ME-4GK79+{IrvM~=JyVMaPSi?F!wlv4kA}GvTw^QDU<n7&CDlK
zvc{)oa#{WC;137q9Gu{KzqRPNFFlj-yYN$jzY6~5;Ixn<2a?$EjDxdGfGHVNzA!9f
z-!mEK9b9m5iJSA}jHQz@hD^$MVQj`l2Y>SD<M6?)#LH4kg)0fQza3m<YH_9<{7XEY
ze#60)zFxRm_N11<o5KI$CNrb(`_eg-|K}jd<%>@8Z*x(%n^n1=ce@lRsgh%ra#7kv
zEf=+2e+e%ru--kLUdBaP7k9WQ=c2re3NBJz>|GmN*C%65E&mGMiZ0Sz-0R}`M+1-d
z2vl+bu8!Z+$t%04;(~-niJeMocS==N!D@nc304=Z;o@!=_Xu~(`VYEaus*4#>t8*~
zqv6h^I<CJY>$!M<p8~>5y=2`lq^{t)>d6nfc*sRTKmS^Y<B`<*uK!V3=;C1)>C|D>
z)r@8?@?2!NxO%&l=_2SNOVk<(Qon(ahAxim%V)8%6q_V!o4Uw$kt4-i7d)u*KtGT8
z{pE~&7mtX9{Hv(i+(ip17Px%Ony=YX@KM1HANzM%J}!Lw+KS|@IQ->7^;GHPYQbU`
zAr~*ZnBzimp}OeiqPq*th3=x0i_R_#7p9A-i<k?`h0XXkOB*&nr^ehSj*Ah<4ZCn%
zu;>YrRLsw&JR-Gid$u~zxl+JRin}Or(Z)qv*T24^y^D4(s-@*{m*%~(#WVdg$sJsD
zq?$-rq#8GkE-p^b%o^0s>nc^ze*Sd}JzVtU4(Vd5i(W2zyBOnQEN3l})yGADcHv@o
z?X12oZq_c-&&Bp_No+OH#UK|?xp>+|otc5bf={^qepMz*&-ktQNf&Q!3JmM#J>z1C
zi;+@%*2Qx!hP!xyN$6szi(!mdJZtmb;#vK?7Do%FcMdgN93YNhoXdsU?g{MRWR(l8
z>gSDeF<OjFotitgIP<xtnd6uw7yK)zCklDd#dsIrY|Y~_!NswD9?2xG8YN@0iwpg{
zIUgi<|1f8oi|Jf7ytlVF<C2#(!^KN3y50yra$cS3f)bLl{k>T(j$g`|Etp$6;}sWk
zIVm3Q_VB8Uc`m+YUoPgmSiqRL*x_QKiwFCAi(I_!qGf;YHRkOTIwfzunD+)fcX_)C
z7Q0x&9O&;Yb+OFFau*xkEM#$o>;J*j>zmSN761S71)96k#VQxuTzu?eaHjXR%bUbq
zuA0>@s?N+`<Ki6`YhAqSVv{T=F1PoDd?5I~i**V4dLb8&6l@UkVM4yq#jPr~-RxqE
z$hQi9B*<DGXM#DOxR})6d&|-X_xI@Dr!GF@igWomGVEk9nISIrxc>jDZ}<1UaIwop
zm&y4o4xN^FsK2+@#Xc7YMPa`ns}2ZxCO?<FaI!`DAs2^5_*Z|A!cS)vEtpz#l#6Ia
z(Xm-YU%43fM?OjaZyx@Z{<I9<>ES!3oQoeg-7d~^mN`wY2Yz&M%EhlV$P+=FK_Nd2
zo)Dz`q>x`+G)ybQ;%`zsEx4m@h(>--Xr2*r*2NzQ$vIA(e1cze@h3N14;4IIlG<x7
zt_!*B;z~mQFCl*mUUl)`snYE6h7`+qzQZ?N{Nv(Zk=*9_ZvQ8oB+0|d)m2Dt7kRQ^
zieM?h(t=cI*eIuLg5M#e+$~&PCDlV_lcb7L+_Nb_<uu`y1S<<tSVagDJ-+T`RP|8J
z0|}42JXH5^a6=CHoddjkJlyLc*F!T8H9gew{0(#a{-oL->hNX)H<;t$J`eYMXzZbh
z=RYQ*u7_n^k^;i(dHDWr>j4iB3VBGdz98if3rQEeawvmsGo)3fhoBHjvOF{p-cYcS
zV3PqJt6u4n#8yo`KIjsg@+(u)`W2OuQ=Kc)u{;m?9$I)P@Nj;1@DUHS@5mnAJ&U}#
zhd~#0l9qf8rpNDq{ucU}2fh{4^APs@kIO<2iU(DAE5RZUt%b0**h5J8yL=nS`Xoxq
zcTCd~wYmpGxG87}+KF06i0h%-M86@AQV#?o9<~e&L<PU=ABcH~(<={cnEd?%Jou*#
z@7^G3myopg(7{7T51l+-28b>mx_UUp8~i!;M!`P+2JWjCoZh?H`KrM&=^5RnRS&_Q
zg1rQLd+6i&_k!K(rOoTXeiDuTf&)D8$htGY_zd>&gog(@;K2@f(!*2iw*;L_@U(|#
zJS0VNThx!+5D#NL|JTa1GR)^ZJnvzshhZK@co^yV@6F*GaE5z$f#G!m4b?!sjKDG_
z@crfVQ68MGficXh0p4gqtw+ZDSNTzH)8IG{FM1g7VS<N=9!^C3?k0Jd?4eNvjU$-i
zVJf=|V`v!DJWOZSh4D}rGd#@n@S}&HJiO##mWOp7){A?yJ<Rv8K={iZ<_MwLSGZsk
z{8b_IJbZi3zcY@<LJvzkEEV}{f{O%S7ktCRVj<LQsZ}8^^YD&HmUH<Cc~fwehqr{R
z6r|=W1Jd43@YO=rc=-Dc{|3FaQhYa2`<{^Z>Aa-h2OghP?+0X$hYvk$^zf+^HwkVN
z+$^|7keXYCd?eWQkUzAKJ$xd??FpS7LeA~*6ZJFUI|V=Y@P&|Ff~?)m=ne93Kiuo_
zl5*@%$iEbFK=2@Uo`n3ckRzPst=VjK)WcUI`C9OM!EXe=75vUaFT;<+4^kvK=3!ey
z|4Zp{4?lbOi-D4=6CSQGSLbA$^ze&FP6=M{@T-U4gr62XEBL$M8NskD$v-@tlOm0u
z=gJ!D_j^$!e+pg_yqwVC6qube*7Xit^>9rxyh_-gi|ZaAPK%T<Zg{vU%Kv!0g3hnv
z@vjhW0!gAw$!$Vz7rZsCrG%%3QCdiuFv<$KL$JJHxiE@4q~5YwA&io%m2dHiQky1N
zNw9Jl_cieEAw?K>hEX+)YGFRf7B$1TOB7gjkC5tN)JRC~7BWAj(k+*2N%8(fZEYcS
zXgML7kn49*H;j5Bc_1NY^ZH>t9Off)krzgrt7&{;M|v26Fq-a2$_OJfj9?fi7G`r(
zo$*(C&ZYFMMB4^oGz_Cr7>z}eE!ZSc+f)ec=OiS#VO&4y$0R?DN5be8M(;41htVR8
zPGR1wi-Is(hM|XHNRvkeTZi$OkjDiJ1zQQyR8bfgOpSy`aTp<yD}ri5M-#I6S=$W5
z3L_duOeA&~5h0GCE9eP^1!*(%n4e}}o+}+sNZN5Wg|`uGn~?Jz8Pseq#SVfU1s9a@
zmqV8@Iu7ticytY;TcTC>FnS2@nULtc(irMKVgEMar^DzQMn9?QAI1|x1|&2GhA}9?
z2MbX%d>@_^{*>U(+~jA()Q~We2L+xLPRq}Qak)6~O0B@KFouV5o?#5*g)l~h@m3fs
z!~PC7k_q`=`us3Pg)utJrzOkY9>(M_#tI)N_@dx=!3l!&VPe?-NlP+CB(uVp9mdo|
z?X)na^CLitGsAc(A-|Q(8wdLldpV3(67o4hSUXq9tAg_qwQ2R!7KHiiW#7Hm!v4;{
z564Aeye^VA1eXae4r7UsrGnI7CL8tgFjk1<&4j#u>9kd03@DxUX&9e{@pc%i!&oD=
z>%v$s<ef0q3VAot>OCRv3(me-`2!)_1UH27p^%MXY!SlVHwoD+cx&uig?}Wdr~9+{
zvG7mA*e+y;AmzCSl6Hpic^Id{_%)0#!q^qYPg1)(j6Go-4fB5)KPGzx4~4N$$bP{C
zf~-9l#y1iFGvcsFjtG94sBL|s^w$agy^wDNzYXKNgnW5>f4+VQ<5)uSqmYr+eE*LN
z|5@-v7$=4NBFNgTCsT;Og>fz+IW6RO!83wq!}udn%g@BG(*n;9@Gge&XBZVDd?Yn4
zNmf^g_)F$;7+1phD~!LnKg+j~tJ3y1;n%nYN%2M)|0ZnS4C5cMKu_N8=8xq+sY;S2
z{G7dANU~sxV5wXD_w=&I{EfX#1Z72XhhRCu@(G<4Mlu~sjo|U2{?e`_em)dI{Rk=x
zuMz<wxKs3NL~wTmRfSg*yi2gUAp7bus^UEn+$+Vpf;A(kBczsKZ9!_ju_XCE;rAyb
zNgMnbsTaWm3CV*(sQIvXk{-eO|I%M69hg%-5Rj@2!A!xRV3uG5L0W4V!I8%PN^cTD
z(+J*+;Qa`)Bgl#1)d=QAcn$^4BA6M$OA+KnkRQPS>FbdQnn%z%!k^@U77-Lg;6~s@
z&@zHY#kdi{V?v4|XwB#eFHH2?DuNH|`;%2H5>+rHs3deU-%Qbj>j}xNuZv~`RzhM&
z;3PQLU^v0!5kwL^N>}d<#01%6Nd#>oXq%|*5J5ZP?Gut^BP(@G@J>Q#xl06HBj}cp
z_l}@@g7=7^XM*?Q?DY8Gw}n0;>?_zWg8m7eIqAs*BN!CH;0T_G;DrcANY#@OJe$yY
zDuSmI{23ub1n<pCeon~qf<py|MKD~*AIJQV(%X>{jN-R<5snt5e7uk`5sVcwE+Kz0
zf?w|Sb6`RQ6WOYpzo;ik?c{{c9l_+O!lxx9(}m0s{Cln6WL5;TBX~K2<PJH@>jb_I
z2j)a@u4&+v2x@f5`LKJ&+z58n4Cr&SiSr{^5W$-fycNO12wsa|Nd!wJwH8INID$Lw
z4ZI$~w*J0jZ?Ko_0N-di{9O9>7Xn5kV;SeYMqot*$1bHWkARZU+y0lFLl@ImMzAV^
zH4(fM!P^mh`Dgmn0UoWbj^MV+fzvnAANw!;?nnloqOexFW2<)~s1{7_(;#gfS5O3>
zNAN`iA4ISrg6$FPh~W7KNgqbAQPvm3yY5>0rU*7OqlWn}+1x_Qtpi&l{_D~{5+vCc
z!N&>yNd)ajRHE=x>G87&c1Cc#jo+4T{BtuszBJ?CM+3Ve*d4(S98?5*MDsud2P4=k
zoR3!6Ct=wi0e{)C?b7~%LmXfP95uh{9FBl^Bm%xRj)cOa5qu@JUkg(5O$6U2_;=iU
zFQ<Pm$f_SB_$h*)X?%F#cm(68RT;jkG<*55YrshLU#^-~rsyP7C4y5CK3p0%xJy(H
z{1(CK2(Co%R|LODa3+HD5nPDyQTbq~2W15Qh~Q+Y0AEgePDb(hngUMfMed*V%CPyR
z2>xVxv<~pQ3VpcDu=Mc5atr^C;F`3$D#*>PX0^a|;VZNJZTY77@J|H)a#OvO{vS7=
zE9p#T#;QZx!0k~aM{zTTe_}|9qEr+eqUab!=_txX@lX`?qbM829Z}pJ#XV8~<$&d)
zKooaIQC^CaREQ!~c*Q7Mpb{l%QB)F1<%CX^C=S#t!>XzxsUAh-RjpbScSW&mfLDAf
zn=eS+nU_srjVSJ2RIp@V!M#z`jG}fFb)uNRK8b&v)rw+g&9d*L8ay3zUljL8Q8$Wu
zQ9e>W_odNhRxAJX-2+koZ;J=nq-yZf0bbsqEIx^A_nOedQKU!FoE}CIh$173+$eZX
zDKm;-6qlC;vjwxFXc$GKC>ltS3asMMIEtnsX(IU30PorWuT<mwt=rWbor5`1JXKsk
z(kzO+DDtBqXRBMyA4!-hh@xc_dK5;~zY+M+D2k$J9mQi&JkF>N^a`VB6$Kw>$6JE~
z13i+K1HEEVR-#aagajM$xmEL1&i&!?W@Igj_(1>Rer6OFc@!m4*ikr9|B-;vC~iG}
z&yB+4%oY^!4&@oV|0~LS$#WuNjpUhuUM%Y0dOUle|CqiuQM`D2ZrdnU4fJn7ZWl#+
z&P5B~E7r2AQxu(}7#YK;7`jB!l{|`3QFM!<d(=N)Hz<l8LV63Hy(6<{6vSQ}^$q_K
zlsx)KRo^K338AEa6a$10Oi0S#l{`3#C#3kK;B$<&kf%A``k8F?j1-4N@vIO^-tO){
zw()r>4vk`1LOwi-7ZQ8~^VUnF+UO|8FiJ5#YZ_yt7{?Tf;tNI~it$mr8^wE3Oo(D)
z6ib<|3~Y_Sq$nmwF@?3K(^;Gv#WXn+wJ?h5Lb!zI2$>-`Gm4iI@>xP=3%<;b((<Xy
z<CQ4pCUjnnVqSvJ7qWm6Zt0)3crA)WQM?|-8&NDy=xmssbn94>klZr6Jc_pyk`+<B
znc#0lu~PUd!BTzvCp+<2EyXp0?+C7qqWX9KshIbpSQo{XD7K1xz2Jv}9|&#`+%eGq
z8MrZuO;RM^EM%*EH~T1xA?MRSjbfV!KNkE%aJwM&cSP}v82L<;slSsMGBkr^R}{OW
zI330BQS6CguQWLx#l9%^3;#~=KonmktR0NvknqETN0<O_Wqc`kRPf1XD^l`x6yJ!#
zx77d2KQVPlo_s~}J(py{+Oa5p6#kPSpI%M{9zRR*gy2cRU!piAgtfm$@mqr580ekh
zLg1;(7;fjT`+NEyQCx}QWUBu;eooZR3tougVxrZbQCv#!%R&b1Px>p0zlC2F{8#W=
z6xX@`a95WiZT`bN8R>uhSlh?{di<Zrlcek1$1*A5ku1fEL?M)vilKB2Wnw6skW`4_
z4&mhzlJflEs95Hfg;Wu~@n3eDkV-LBj-g5nh~d`MQ|-<es>hIBv2@jhg=#U}mEgVW
zCQ-8@PY1<tZw#HevBXd_hFURbG3YVWj-gHr&0@%l;XY~ANbvp`>c&t{c>Ne27V?1L
zgMtsmFr@DP&U>eeBrAr1kPN|0!JuHj^8fpG+CYj81-FjPZ7igTU{k?t!5l%3E;oh`
zR{E33BR__gF+3_&kHpYiNQ;DKfsl6}&E{fxOnB=U9v4!W&}k*4NN}*3TpUA4_{y>V
zQdJm-Go{rSxawK#T0LOI&{h=87+ADou!T4=EaY`Q!d*cxhOiK-)fnVOMS(i87~;Z9
z5|TC~eN$M)F51P=UhH>>;g$~_W9TFj*3y}-F?5Sza12j~uzL)@9t!jo-b1iw483CL
zO&!zE!#*Np8k1AAUkv?Y7$B{(2YHkX6h0`1J%<A<uHKUUWQ_mn2A+xGDIw%f$Iu}h
zAmK4YgwMwCT%z`QAw!8mh6}zRNc|BpfA1w39mALyrpGXY`+p4MVwe&`wO&~-#;`0u
zXJQQeJ7c^^CJ3^sQ#5%}f=`a|D^oIcrV5!R@?G;%s5Uc(mtt5O!@DueieWYl#;`nw
zmt&X{!=e~okKvUVj6r;$I_Af)_;PS=3_S;VuQE6V8p(nfMh@~`zEQN0Z3lVZFU)<7
z3u=&8ds05}jTj!AnD_M{ZwcE@vlhqv8zD)SvWpu<l=oU^t%%{xnEw~>Y7XsC-di!e
z&2^pWo?TI}GKTSQ7Odj%r{<ARhppB~TatHT;2pIz_+AX}$M9zimtt5K<D=m5VGJ9Y
z?Fr2dF<cZUO+A|pd2EW|qZqcuuvv7r2yPWDKiD76$HKSMU={TfPUusu`A;$BJ7V}W
zhR<TyNt-gd&pAyo{1C&j7<R?5n=7|k@TlOP7!C>98^gXB_6uk2K_LfXxH+(pMIOiJ
zq#RDv9ue|o4CYL~>MJRJ9m6*<e4EhuUdVS$bv65zh5Eay{21e-OYmC^r=|9I3@3&B
zEO<hY%Ct=UC5BT8$*<hIUd*HL_k`pRA!h{73iAK=b3)DwQu%_+4#`)O@;S?wW4IE-
z)fldEX)nnAD~8)f7yT`qPd4D)qjd*+1%tiojN9()(S!YaPH%7v74mNk|HaTGj;3+{
zZ^xuK?v49j=5LGR_BfK`{uPg<;wT+QN*vRQ3jYY@Uv831VHv5a97owW?uesY9OdIk
zjiaK-PsfY)X4w_u_-B>>KJGLTRuUX|y199_`RePXDCZxeRpS2twus|SAywn37ROz}
zDX$*K*Q-)Vc+?Q#-ErKLsO49znsL;Mqjns1;t0f%5yyRT+#kn;<-zng>c&xzoyJi=
zjs~xV9*E;XsUoKWkH6*@kSFiTdEuk{hZ9v578J0GnwfC~<H!;@bsEG$wT5xDT$-|A
zut(lVs;J*Mjz-(^J8#R+jw6Q+OAstUZXD<AU{M^c<7gH~UL5&xJi<tp%YIC-c^r?%
z!GD1(49ss4M?oAP4)%Do<Um#wl05QjZiVGJkH=9MN2@pv4)%CZe@$KANO2sYI6jGE
zdmKs}Y8-vy=u68yn|C}-i$jmYh{KE{E<(z!IDRXYwzYnmosc+jxWYZba6%r5Bbwkb
zA#Fo}k~rGL(KhaXxuv!CakLZu#-ILg>JFmTF^*0`I>*r?VWEqVu5ok|(mf%sbv?bO
z@LmZ?Z_d}ziZtFYj{b2>j`RHs7$CKS<9ww8LV>h_QXCY=#QOukr39X&+Nz|XaSV&&
zsW?s#_MR4nX9R}`J}XGG&k1=xjxy!_6F$S48%r|ACTd?0GD2`<9HWGc791nUChy!R
zMI0x^7X`-)P7s_J$0Q-td3avRRIZvhmc_9=j_D$QC62jq%n&|P@TG+QtT<*T_{(u#
zq~uQ}k5OMFy_(>!$1yL#=f|-i!50d7EsjMA$+dw0Vfuy?7ss(g$Wp=Mclh7UZj>ai
zh~w=zR>$$C$lnrV)yg<lCHPabQr8H7KaO=m-ic$akaq>&6J#r%-XX4!W3xy;NXR!Z
zu@ih_9Geon?w6&v2;VCBk>EDLj|FLM=s<s(cEs@&w}Lo6jpH+^+R23$OWzmA=TiJa
zaF^h2!99X|1^?f*4g2FbAd-WEw0tOz!wG&Q&X;ujFXl%XTN%zbaeNy`QVDJ=!FSvn
z<G3a|Kg4k?j-TQ<9`{ee(A1AyXgPu31_Ux|27Zp?#Gt^5I8JhFtrQ@q!Y^^0jpL6v
zP9=KzRmg8lS|PtD<Y(f@y-U9K$8lbSSL3*lsJ$G=Md5!6UP{Pc4klko@W0~tJHZFZ
z!*Xv0;kpQK#BnoG`;U-+1^*M=QL)VJB}gv8y(Oqwf|L@JDnXSJfVjl}T~oRQWlB(%
zRg#|-h1^ksatTR!Ar(rHnvgVJ?&n5Y2`VKdm4z&o^RCBc6tect5>!ppRugiUVD%C{
z?(ctn-7Vyv611t);8yRoc-6<qO60Yrs!j>+E5ZH3>kHNuq(VI*50v1+gybP1y}S8?
zdbkAX33;Fd841p~WtE^o3A7UEC1_ZJMkOdHLCX>}E<uwL|8uhi@ty$BGJSqJy=e(1
zPHmDcm{WrCw`JuDHWSQala9gs5<F6Z<|QcFS}^;((sEvtK*!vbjWhW%_h<<oqr3#I
zOYnFJ3i&zmSSGJ0OnJgPcz5vkXjZEd>{wtOj%Kmn;u3^PV4cjncq6cJPcbh#QcC=*
zo>al>wSz_p%o6+`Q{Mq4MbU-3u;j2TeB_+NcF!zvX4wH2VRs3;unRP4rYCkBa?Ux6
zA~_>Tk|-!j5K*Fl5y1c|;Wwd(hy+Cek@t1^_MLZ5pYMEi>(;HRTet4?q^|yc44|4H
zy&5F+^`oEPd5Q1kM{hC5J^~eieaFgMb!l4I*>s!^-*XM*)ci0iyCd{DC-q@YNKE;k
zMqbqqVvun%S|MSRuphVDI%$WWaq;sL%@5s=sw%3fF#IqXNC7^%4wfIbAKU%d;YZw$
zL4LgG$3{N}`!U3iXW5G%L;V=$$232t`!U>)5q?BQD--<~>BlHP#`>}Ca5_CO+K(|}
zJmk$sJ3lV{qfpK`KgRp<s7~6(QJGywD--<qv%5?(Nf?<dkk+R7F|~lx!!!Jt>Bnq8
z=J+v-D=w_@kzA}gF+6FmACpHb^F?3t{Fv0*yCLplcMGW5U1k;ebACMU$7(;;__4^3
z7yMZ1$0|SAe6cXN)Q=^?0)HI)-+-41`Eoy22*OTjjTdLZuBo%uk9DGp9uYTxaJydc
zgU@7a5M<<-OsZ}2W3%7+c=IJcwg~e4#iVhw+>~tfI|nC`Y!mX=7dw2XAG`ec#ShoZ
z?w9@8?Z?M{eB#F|3>!b*_Tz{jd;Hkz#{oYM`th0{ulupzk7gM%uYG>h8JhH_D8Avx
z^3lqF@@;}VNG;FeAyIo+;9ImKst#;OSelvej-Q8v;EW$<{W$8!F+WcFaY|?&_v4#v
zr;8J!NHT9j!h3?B7C2VaQvO3`0`Yx6KJ?=wKRzhX4-ZLtD@$J3SuVZGN1bzieCo${
zethr8c|R`ranX-ULisa4J{M%MF!hBWU;6R)GjjA=HZ9-i=nUg4j)!UAkFSO1*UiiK
z%#a)OabNM{svp-Fw4LQK!YBWu$JQ2^&{_UgXeM9k?F>@zp9He_qaW7`xV+N$v*0&G
zL)Lyf+kMlIUzs!c$RnoTfU`Qk`ElEi-~G7b#~%!1KkoW*&yO326YmS8GA|aXOeDWr
zF7bgMe~HEYn=e}dTrQXRP?%-yBR?Js{*S;X1@eCddFn?(06i`wb=;l$_qsINEG&jG
z?|ya>LC%g=C@da8i2%N#<p4?sP%40>0W1rkbO2=nJU|3_0hA3ODS&1Hqy$hdfaCzG
z22d@4@&Qx`pmG3<t9eH6PKF>A0~lN=wcXQl6jlo0)f%3+ucTE8VD)q#$)sAI>H*XU
zpnd=ig#NDbi8TYL6+mrKtQ$bR0O|yIjB+aNl=1drt9_ZumC*_%4FhNtK+^yyOsQDD
zv1rmHfL7H#O=tKXjaHJ!IBLJA_mTpT1Lzb$XHGT%cL2Ts+69mrK=T0R?M`kfx@aLr
zOKa?_Q>H@FicZT`S_jZZRCxrl)*C>Y;B5t_7s!<giR#uK?E@fo6xboa^J+6P0yvzd
zki59g_l%I&$W$@|$P#1D4In#!E&+5C#hnB5*fp=N6jt}pb=`&i95F~1S7a(ZgeG~L
ziskbI=oP@Y0LBN<JAgg`!~)O)Py*;H)YJg_1<*eLzbMit0|Xfuz;~UT1>#^Rq_qH-
zJH1!aF-kCiPypcoA^}7L=rBg%jLuE>QH_ND=Unsvi~xoOFgyU0$v=R20D}UUxV%W$
zisfwv&)eRHS&rqwV*Jf~y^ase8&cq_p@L9nL;xc>_%R9xFe-r20gMS?tQcWlC%m)H
z*Kdr%5z-;#v^IfV1Ta5<1p!P7U~&Mn1DF%QlmMm%Fhj%x)xO!<gF~Gbz;t?JU>+|P
zX9jp8j1x{v$0$2RcrYe8;JE?3Ge)^EMwus?bJ3p-U?Im4z>)x-3*h+xUJyfCBosK9
zjYE7?`){S#iUt`=bP=O^c>pT{&W+6%0jvyQmEe4?{^|hM1n{XSvUY6%I|A4lz`6j|
z2e2W47X#Q7z~%rpGBzqo*Y`NLPkXO8pH6QHU@K$zY05Uy{3S+USxL`!ZYJ~J&7^$0
zs6Fv#%B}!j4&YP(?+MM_0URpm@fGgD0QLm1S4iFz_*y~j>jCT&{0)H%=R0=``vpHx
zpmR`=l}}RMqLD(<VR}PIjtD$XHwyBuz@q|b<QOBo;MapE0yrt;N{;ihRsMwXbO0X)
z@DZ1OwR}e4*#O=T-~++$RhC*8m00yLi*-}aG03Yqv;IUFxpFvRKBOhv63&a_g#a#Y
z@O&1)=c4$_80Wi*u|Y@wOJ*&XbTNQS0q196rJ71#1@LviIiq2>UuM;n0ImjbKY%|1
zxE8?w7$*VTWLk5}-*Tq}@I5nLx738O$`1kj7{Jc~q>oju2T*sc@)Nz`k#DEU<Y&C{
zdY&xbE%gR>&{&1!*8pxYMBC=x5%~OAg^!x~Er8q1b#3I|1@gfr2VP9Q8^ApdU`i$x
zcqLp;_%nb9OvNfntN1H`zXM2|?M_tjFn~t^{61D;@iCWmtWsFTOViW;5&Vh3e+51j
zn4mg3g#?}&tB_w3ZHuTVsya4{sVJ_ZgbK>NERJ(5msFiUM+EwKiDgujRZ(6=1<{dq
zs#}tZaw>km;;T7MX)~foGL833)3#<pg=@CEqKZl?T8vZbzm!>7MVGnB6jo8uO;{$U
z+3G54sMs9BmJn*HsHI|i5IcgXt)h;KJ}MLybyd_;k*1=piux)VsE}01D#o^OH&pTM
z@5P#_xbU*Ok&4DDny6^1Vo)@7?UvT9x3ng?DM*TnQCkapwzhVuh>lZIRWw)ORxxIr
zLN%JAg?ZzY7Ajh*Xr-bxd%0JRa$0Dk!XrA`I8LF&E4m|L!*mrs6<s+g741~CSJ7ET
zriu<KMsG>y^^A&=TUuv`Vn>1Oi1JQ?(?XUQZMKTn#wk;`bfbi%izsrO-BskM$mcls
z6k)?$(REJ_Z%gYQ0#A)o@`RAJ9B{7!-djb_t%WJ<tD>KZVnGxSqQ8m(Dz<X@R18$%
zS20V)Y!v|&s*0g1hN%du2&phtSSrFQA}V4kG|r-gmv0uXjZ>m3hL6i@H6!!SB3_;M
z|0*^ldav0%`;E#Q;myBW%zM0;*H#hdyj0i?%GJyBoGj-V%;+7b455By_pt=;eygYY
zR_1V($BSTsiis*la)G#}D#memGc!jE%`qxUozM8AqpytWW5ae8lZmf%@r_sUg_%Dx
z!!t?6WEIm?Ojj{Q#Z(o&KFw%2UYS?cL(T8Xd&-Pg(#I<^R8(o3KU2kx2R&o=eeHK;
z%!sGXQ88D=N)@YA%u_L6#S1DHt5~4oS%$re=fxP5@ybF$hK^Ty?aE!GVokIsjaNzX
zY<QHN-odwogMXpOGL`3X;EhD@QWgJZ`ZgEw?rZNGez9zclI2%0Xji27eJNu#+p2g`
z#YPotRkSJRSx@h&SSL6?R9re<$tdD|u8`wuPGOVq?RPUWH*+xib4n$9wy1bzyu#Y9
z9evxlSyWu)hE=gc#ZDE6RJ^5Pmx`BFysl!O%5VJfii*7qC+<xZdsNh1mENg~<IJ+p
z`1Tj}{uS_*D(YP;<?@TX>76`psCZMwsTYbI5L4dIy>KC8bRq9|Y580F<#ToiIok3b
zF8yH@Z>u<`;!_nzRJ^0&V-=sMc(1rK_;*ztRdGzk2S$FqUAY63JjYd>5XF-M&k8(6
zeL<*pTE&?He)L}tCGY=NRPmu89~IQT-`;m+S$eq=#qXUh#=g!o=2d*okWjJze;w$h
z&s3~<;wd&av);~(FBuh)o=>7Z&-nBA&dU7!U(Z)6zE*Kd#cwLUQE^$t4=R3CaYe;d
z760Q-S8<IA_DkP{`@RX^c3`-2mA_N*V0*^L9em%509c~;l+*Ly8?RhfdHM-%s(eB_
zerABF_(g<$-O*jFmFbMzeW%m*wauS>I*segow9sb&!eAa+-BNT@i%)>aYw~n6@RGs
zQ^h?MStUAL9<SWzc#3($A7^laU5a@R2YnB?gSe@Sdl?}##f{c}T;3xUd4*FStN4fE
zH>~G~MDMU9XC0p~2pK%Zy$r>tA}qOf2|*MJIw8uda1e<Fyhsp53;4|Po)STn3?djr
zD2P%)ln$ar5G{i!6GYh{Y6ej&h@>FO1yL!8%0VOtQ9cL+Q89=LL1%*>f8se%-gBU|
zGnkxmp1+m+rOBRiL0^?1ss>R#h#Emu3!>gGXLjE#PcM7XH+xqu7cTnL!yGci=vh06
zIzcoGA|;5r)C{6g5RHSVA4G#78j4<iNc8?bp3h746;ANFeEDZqrZ=I^&mHuf<fcJf
zs*}n+&dZ<Zm4c9ia0ihZge!=ZUCYvYMMvhb_ghb$L{V~rvOd$-T$rstL1`64>mV|N
z$O@uO5S}1>L9`3P8$?<VZG$|#2Ib}4#-s9z*De0vZsn%<u)H(b_Ca(Af=Q-x5E(&q
z4C0v}It9Tk!(Ny=7`<f==Dd5!%h>38CN0{vth^&5JBThp9v_2#Vj;Q)krPC25Z!|4
zPRAyCPw&co;l5A5>Epk)(<V3>phplrgHA5ul_yBPz+OT07Nk!>ts=<3S-$>33<zRi
z5dI*JnLXzg^^Py+VU8*$dwWh$0zs%j&||u=KV^av4k8l7>>%a@5#^+U7#+lzAhaO#
zAO;07m@#lV!3e?(!U|&hS!Y2fe~@7Z5ob`1%o|bEyR)2U>dp)~$ulH~p+SrYVq_4*
zf*2mejkc-OXGmA?<okSoPP;<hQS@^m@2Uw(ZnCp3Y&$lHaY0NMOEW%*2|-K>Vsa1@
zgV-;|xv+@WSJX?lObLQHd1?^T7&FNp?vZm76s}0&rylO*89~epViuRulg}Mw7WRgN
zJ((`%1~HEz5yYw><_EDLh{ZuH3F6rx76$Qr5Q}(2@=3;X>@?Za<v<QO_w@@w{4_xs
zY~=T_@)vY)(&^G5mIbjqh!xyf-*w2{=D32jOt2)6Cny}xYA!?&8-v&s#M&U%1+gKB
z7lT+I#Bcw4+Re^n@Kc{r!6yHca(fo`PODmebI|#|X=@NK1+hg;?NA{vbHX-8SA$ec
zRP1Qt>5jg4Bkr9+?BWzccs7KWgV@cT8$!zvUJ2q=?zj-Dhp;Dzy+QoUHBFIU3*z-4
z-V5TiDDDg5EkRiIMi6fbzP~_nK#+q14+&h*Gx2bckMYD2Q9LG)ZQl{(U4cghQuBC0
z?Fm6n3OvO-z0L`2awdqgL3|y=H$l7~#0R4Giy%HMX!WTeA8~d)6F(OG6M^RnEYQgL
zAT9{uX97PL_@DhR1*gtMK`sgWN+1nh7UVmD)VUJGRl%<b{9l3mTR~{>dqI9EkpC#i
zb%sQN0*%}V;+G(92JveUB|<0}avXk(c_4@fTyCLxJBZ%}xf8@aL8x=Lz{vdq$sdAn
zoPP!JcMu7}6g3|P@lS!yBS9Vu|FG(bDE?be`?Nq_D1^cxBnk_~3hWdKp=bf;?27+?
zoTf^NA_SHWp^PA9Lr4mtoZ#gJQZrc)j+4BC;Qu+lqTrQ6JR#9>LKT4|RSR@#@aA9e
zCIV}P&`6LMQsml#)Dc)$U_F8L1vUtw;eS;kiW-N&CbV3?b3#)gCvPT5N(ho5vOt$W
zw?OKohS0o#r%Y5@h0r<#Ed)J;HX(RI7!bn15LUgE;0+-ogpNWvO<>y)(hJ)9LTFdO
z+lSDhfWIzA^-Ks|L+BPlCn4`#P@5S-mf+a}yA;SfPE@)Jo?jrz5hPb&j}Uqal2=gs
zU&CIa*jr$q5R?%53f?b-{(?;3>MRhioLxPL*49LS2!Rk(QA<fIgkS*=2@)0<2_ae_
z=PH*^O8(D|A%tT?Fa@zfumy>SFkFy90tX9ZlOZ7tE#SjKcux$5@)047ERc^9WVFCB
z0;xGJgz<t;5I95N#1JM4GFc$)Oc7+Nz-b{&7bJJ0!YW=fMR8ULvjuU4A<Pwgp1}D9
za&4lrFyx$iyj0+GAv_<#B2l}TyrKIA!M8@8|2{7f5)#Ung|Iw?6(Ot)VZD&A3V~|8
z)`alRcK2!_WO1z^h5Dtf6AEm*A%qu0*eK+i1X7u`yjaWcceaLbIfN@AycEK=5VnV~
zBZO0QV+cD#*cHOz5D)pn%OUJ$<`3c35C-kfD%8~DtB^YHiF;4Tc_zTV5Z(}EufW#?
zzAlh|?tU|b{ULrqkaj5KoN00(gb5RsgMv?=;o$*){37Emq402d1*&mIN7&J4a-CMb
zcc>=Zbu@&NAv_qIbc|E`Og=8~gg_P(E+(A)Ab}@Gb1<hv_%wv`A)E=}YzXg%@IeR_
zx|Qc-`PiHfLpT?5o^92(nf#F;9}E0MV5@-@_)F1Jp@a(@JmW22z8G@8x%)hXv_VDq
zTN?5&Linh3@|TRdt7&|^^CfoiOUhRvd@ab5i3+c8LLgFpHH2#+lno;(jQ@q45Al8o
z;l~iZ75qDa-wR~b|0YS-L-;9#ze4ysgr7sW5yEdF+z#OvF%0(pD|1VC`KG|V8}n}o
zd6iH4u<G{^?$AXAnmZ>dcSATa(fP{ho)F#-;g5paKLz>k3#NLX<k03r=It<wh4Cna
z$07U^a!v{SS9C-RPeS-+qVjN}@>EEupAbf&urrv#0uu!m5lA7Gi-%DnjFMr;fxJFH
z>$yJKdDwL+A;Bc2bQopAAmOFQedWT=<FYG<Q6-F_ixQH<C?7@zAw(FJ1gRK?FV*du
zq)>ChBIhC7Rm1%A3r}E2{V=MB(YdR;Rv5JfsS!p^LGmUkl=ISl$gUISajtG&bp@%k
z*L|Q;T7xh;9PO5v;v;Vu#%D_tNt%SwG>lmqW@~5`MoJh<B3K%M6o$;fgs~><{JOv;
z&>x07j8slv6kCMRG7NK)LWNdB(l(6rFj|N4)l7FAfgXWgfoXg|!O^TW>r#lmFxrKY
z6Gm<r?K!Y8GQ-HC<?-%mla!1wI)<_G$CPKnJUb8k73iuL5?SmldRh8T5_`-Jqe~du
zho^O==I|7=e!}@t?)gL0DCs8T-NU#$C+*-kcdf~3J;G3gTF)@@!r1*~m;5k#h0!~V
z*RH2<NVg`qYmf9aAC}gKV;GiJad%>0q2Etne}U{}Ko|oBzdPK`R)H{2^g}R=kQmrd
zx@(dWrcc7K!ia<s4P)OVB^JgYy^kjN`;!!MT}TXpzfMx@FyeH=WM$xF<-@|g2XUb%
zJ6;_e28+Cg2vU5qGAxYYVT=f4WEjteu`rBLVmy<=m>lLWpgg1L<S@pDF)oZnBi*y6
zx!)S$9xph@KS7X*>~~xWYo`b@HH>LtwB1;Q*K}cRK^PBbr%``K7&8mzJ}Zpbg3l2+
zw?IBmkof`+4s$noJ!N|z&vRisAI1uX)~K{aVZ0E=a)$SCchwzT7l*Mlj9+HBmxw0r
z^L;MQNn0i)6dtaW%wzi=4Ry2ON=9!OSLgcNliVE4+A!9Ikq|+l2-b(OA&gJMI3LD~
zVQdWJU>JwO*c8Sq!+m?XtYK^pV+#XmgKujXdjxqYjBR0zo~&#S<5jK>Pk|A|ogC6+
zh1V`YUS@;{@`^xOU{wP%mHOmH&+ON^l(hL{&c{#Nyb;FhtK0{|$XJ$2@}?;67fAh)
zKlGsdtuPLU;o6q=aTsrhaU_g0oY!RKoiN_zs)h01buX`@VH^)5tf!J66J+;fh5Q5+
zCM(D0<(~RaQ{ZWV|0$p4I1@bYhw%a9MDXF~(?1HM+iExEecNQS$lgB*<6IbjO;#>%
z>M41%FE9y&@mm<T!}vUmFT%LS1Rh4(3ip@Xuwi^1#zj&5c)RzKAR|1!Zv>%E$`s{t
z7+1nz?frk-@Vd&x^{7Yk6rNm(@3^30+zjLUFn(ZS@umJG@JA-ADav)h@1E{MdDG23
ze-7gY_t6w({1j#R6lKp8<<~I&*yg>(=2MjSrzqqkbolRK++p?(<1zQkmEL#5c)%Hj
zagQ5ejqg5Ng|T3R@6a0GpA3LCzH7J3ve@i;+MD&fRTlaFX5wAsdnk|+d5ModFZ?Hr
zQmfog#E||CWAWoYPr10ayOR(LN01mnw+OmNP$Yt)5!8yHb_B&DC>{YKs2D+s2uenf
z6hXNN9#2t9MNm3|G7&WSu}9mh`O1d$tKashI8`Yd!S0W9_%E%!OL`|qP(FeRY~ssy
zO;vJNy5C-y`DA|vt13l!C?}@hEmtFgDiKtTIL{56`c*>qRE4Bk1l1!vE>jsVic6*{
zH6ze}%$aSZ(sG>$>PGmx8nlU^UIg_ca7FO-RHZ=#4I@b5n74Tw32e;a3G&KRrKupz
z1fH6zP=`Wd-LHB}H276-IfC?~J`#5XsSz}fphW~6YD<9^mh>jSJ5^~#KTK12vFM4w
z8$nhC*%72g&^Cf+BB(Sowca!(J%V--w2xr<(o~;7$~%bKH)<*!Bghb(wQZ*<y{0J?
zc8Z{L1ep;`nx;JLoJjp;(-bNUpOpA+)9fx0bmge5)FCO|OSX1S<;#g6H-fPdjEkU0
zgvXUakHCl^FM@myzPDS8pjQOFBiMY{`QKch2oxcY2<$7+FR)(({RN@gfCvT_@JS7m
z_f1m*qNoZC3JgUMF3`EKFf+<wFLuWYBy2K$ZZ1uk5m*rni8xuvjvyYv-_w-A5e$l8
z)A}M$x21hQO_3YpqiG5^9g9OF7#6|s2u6q|qaygDjN)V%Q6%Y|q>N@zO;^SUNwew7
zGt-sv5lo0+UIg<am`LwMFeSoIcTxX4FUK&eXZGZXv&9OP@bD>2x+}RwO804uy$EJR
zFq4y=uFQ^Ljv%uHj+(A4oUTyLYi<PF1z8Zmv+R0?V`pIm&qc5(f)^rqK7upToy_^*
z$DaR@#SyT`i!-`5UHNOevWx)`!Hp<>iDE?rD>=w0CP%R<g4Gec6T!O?{(i~5CW1F2
zcr${v5v*hWk6;5=wz~WE2wsd}V+1Q^C{McPQL-t5S47q32(}2aHG&<2yd;o1+ai!>
zDBDG`%M4{FJvPI6yzQ<CUgqXnlt8{))J~kCyeh~ZfqMnA_BGD;lXQ}OLh_1ezCYsJ
z2R`v<9E{-X4CO!sH)kj$hlKnsfrle_TaY8%=Har`fAFdE>#3s=9AhSlqGS}uBRCPk
z|04J{f|C)P;vO8<`*H;DMR1zinQoaapJ5jf=O+Kd2;S$0S|T5~UN&*2@`2##6J<(1
zis0i2K8ZMw(ELm&pA-10K(;*}!G!{zpd@@Q_!k9|FC(~Ez%L2%6?5Pr=gFMBzKP)I
zRJm6u;ffgERe>DmH9<NqlD}hUMUW6hp(uWc;73Mm1b;?wJ%XPi_$`9l5&X=hr<Wr5
zm0{U8bExY2g}b#!X7PCb&gQALW-9*#lv~{0uVww*GjncQMiXD=?=&(e`(6ZhBDfoY
zJ--K)snGM3cbCg^pU!#DyCygDK?Hv>8%OX@1n2f-{Y~X?#zWByEt5ZD?>#d~cs&vP
zX$1c=EBZ3a`Z9@B+tfRg@6q_Ks&EvEQ51=yXcULz`Ng7WJ5$M@sqhyXDb+m1qiFm^
z`pB7z9Lp;eMd>IyM3E6inJCIeAxGhgA}NY;Q6P$nQ6xvPXJcA<E_6(}y*QnJLm;U@
z&AI6$m7=H|MbjuKuM$PoD4ImU)8(o~oxiT|xTQu>RF67;pr{c=O+ji2tS7Lxz&Zl!
z3grJL>I>39AR9I;kkeXY(GkhxFUn36=TSBjwJHB8N3nRO!Y1x0Qln@UMe8V<N1an0
zS3X~)WfUz0e|4sFf?=1vnXg8=v=Ii|Mv*S6JW+U~NQ*kBl2NDA+#DW=#?!}qQM8Mq
zJtsS`$73U#C#+G<lfQ@^qj)BYAyEvCqEi%|qsWb-M--V+WJS>>if<~(Kb4i2UeEcq
zbw)PbJF8Fier3Bx(JhMZT&XenIZ>RMsU#f8e7%}nqLTb@M|RIB@}lTZA4ZWM1)KMd
z;;)Y0`md$+isEc{rN&peeWFmJ=qu!}m64YYakZ`@_Y=j^qg(@{@JF#B)jKGPKon{e
zW)$Dfblw67qliSE_sAiEVS$Tx7oj97cuXLRS`>N#HyBGd%TZ_*NNhpk^jj#A^1)G@
z?3l1SSzcX69u~#$C`LswnzdYue|mN)k=G^5d!d;;G794Pn(~+^IP7szj2C2V6z^4)
zAIwxPv`?M;j5n|=X9E3GTAmoija8{EPKjb_6z8J&G>U0aOlPYoUXNl%6f>jz_ysRT
zF)NDMjQpD^>jch;Vrdl1qL>@SJRzCS;1q;93!-?ofG-r}Ie`~P7g<ywe}NGt_>uxi
zik`T<fUgx~MHDLwB&(uWUBK5wq3v;gKHV_l{6J;BkZ%z9Vu8-aC^iYcS>ToeIe)#p
zjr(zyvMY+0qu3tB4sP37%1+Ml?X()Lz3qpkve-USgugxB9mOkAyc)&5R^B~Pe)-}(
ze8hYHaN1smkT2CYOCj!y;tfU)mn@1mqu9?lACPh~iUUy`jN+Xr-i_jr5WdBQ7Q~z0
z^=-!CEM@qMMW}p4a25y6a^CJ86*_;_%{s=+5XA{5jWsF7hPVBse@d4&S>&g<ph9PE
zUKaIFGss18hG@<^zz?GMkn3fn^6ruNk>DgB3-XD;mu4yF88A_N&$P^48O7%eV=nh+
z@)wMp{2pIMaZ&7jo>4n+VR~caT#DkWD87#3*evCnC@ymY&Qe%=C5o$2)XK>HUliA(
z_;Z%RV<`DIt5@q}hchxL@0{P`J7M|4*9jwwIzQg7G+W_kUq8}6+uhd%{uIT}g4B3e
zj>4N!{K^H2VRsC-qWFz2iXlIS+fn?^q#8qmyY4$t+>PRBOSdnEdr{nvqHYZJV)%n&
zU_ObVN(>LUZKL=niYHP0&9;MF52JV#MU}JJOc&Uh&HeS5u~AySu|B)Suesm#>+x?C
z6=FaPPq_=K$q6wOih&uRu)q=m69pC#SX5xK7>Wx*P1kItWDKQ5v9!RX7|ImXmW|=L
z1Bq1QRZa+#V<=xx+j+K=Nh-!rzmm++R*GTk^D-r&*-F(Is>M(<hOx7iHYJm_B)NLb
z+37U|ataB1e6?bz9m8L_-f&sD4oBYEoAIiTSf3ta7csPnp<xV-VosWBA+T`_sWCJc
zyh#jAV~&@a2}}_v38YXK#1(^E5Wf0T_}pw|%WQ?@<Mz3<*)oP!qP9~*nM3l#;1$L6
z7}8>npWBKe_1~GTe6p)2CA@CbklV%Z>YN;|X8RaA#GGYqo1b6uh2)Mg@H^jUV(1j(
zDcH!2p-T*1W5|l}uHOA}#Jx1)Cdn=+c8j5V47oA%h~ZMityL?Z6XR!DZhqHE<kd5V
z&t@wmY)ge+G4zgMWelrg=o5ny!{8W(#GG5WzA*%1P-Ey9L;n~C#4wQZ7*4<C-k6(s
z?UCoT6=li)!(a@d7%Z+)#nhi>E8!SoF;t(UL}K`0n~#!c42g3T5(>2#bWuxg2x1B~
z7H!7-BM+~*AcJCHN6qIbLt_{g!_*k2#V|aE5u9%f<6|h6Adie;R1Bjz<;4jsjuAqV
zv4UJKBzwE|U~xhW6JwYZ!(<_+^5wZnN`f5jnK*?WSe@tHoY<$3{8<U_^cZHuusDV#
zG0co%79%!>=VO>1!&^_K_*3b*#R+q`A_+3DxiQQWe13ssK@86dzEEJr)5%m@#4t;c
z|5}{z0!KT)2#rinkgd5%OJi6T!}1tb#E{V;f%5zg&McmLDpl&6#_qPXcdw3NO$=MO
zvU8MM*$HbolCJW`7}mwGK89}(dN<HW7x~2)E_abxWNni|#VFY%G&eIQyUIrrifxVI
z#YOIyV%R3g_84{wLg5ZU2F_7-2{LGoLg6cn$rvhWsH|a6%z0SH>oM$$VJ~<0DmSm!
z1erERc_W55WB8XzBZmDk9Ejn|7%s+eFor`hd=$gSbRFZL4}6H>NDQysOgSuY*YJdQ
zV$RFiyNr28^$O?76}*nca8~Fa7kEP8Nr9&Xz9*2Hr(-xHcwQ0b)sU9o7nVN|_@ThJ
z$4H+DozG+VLXdMYd@9I!foynz`$BNuaI(0?Eqyyc;_%2X3HeVk{2aqqF?=1vHwCS}
z738wOD=}OxkY5wze*(KIiQg5-zZc{Ofj`D@y+F=RZ^ZBmb5{(1$8a--Uq#ienDggK
z{zYi{QRh!dzwsr238bLa9YN^5yMo*kcwgWj0@>tGK^}0}RUQBE86BJ^z4TDXAI10x
z8mEhY1d==vBzI+Ef`&pGN^2;iVNF$cVPX|`Nr8zPiU?9v10S2itC%3gHIxwK^F`$-
zETv)99EF#wv9GL#Bn=fbJX}<+oQ4moI<3lUNEVz$8mD9*AFwMdR20Y}g;g|E<tOtR
zQZ!W4P+dc94Rti|c-$Hq_I7gf5y3Sz@UFX-hEL`w{J%4+>T0N`p@D{m8hX{tzdJ{%
zui@s7+){HDVuQI#BMsSel_nY*YtDxuH?p&rboMkAylvBDN+b<3bu@I*@MaI$#VQRg
zHALnrZVi*?Dyf{{T&20jv$JI?w9?R8Xl7_=qrs!0t%h_BUJVE5DpW|*FujMP$*X=Z
z2Yo`ny}))FE(kTsI|vDj9W^{7_^}^~F(-G@&{=bmbEd#7f&W!?)zD2tOoOJOyM`PM
zeKaT<ay5LvT+Y|<-88v}hMpRau1g@#)9`ZT;>RY)iyydqiQ3)*DPe724gE9(G^iT-
zYZ#zmpoY84<Xscwt;2esSSGhwF8ej4^+_(iT<$Pk4r&N#2-7(l&*yUN-yYC&^c<Pi
zhEA8G8k(+<4;9WX`LMgL!O$>X!vqbc28;R{Mrg1##5D}oFhs-rLkSI+IY(U#;&jHz
zm8Z&0XUao04AXFKk$h*a!eZHFj(jAu(^UESvGQmQqeShnzuf&-I+8IO#%dtpHBNIr
zE+CnxVG>tC!^9QxWDQfeM$P1D8m4NXAK37}_x0<hJIW_!mm|&)$}@$9mh<H~8s=)K
zI|%g#VIGI7A;UsP3kx(ntD(1nJ_Z(Qc#c&%7U+0h!y<;ghDRD+U@scpXUuC@qG2gl
zR>OV`%QP(4_+)bI)UZOsN)6jIoYc#$(y&^?iyAgEgx2t(;#e=pT7i_T6NHaGBj3PS
z4LW3#hO3+9%^J37csyLHTwdDB4a=v0WJ{B8ro1FLi*p+$ZWp}vEa(4{yBH4|UT3Pm
zpR!xSE8JO{^H{c5HQcKw@k!Tv7zTr-vVS_ye4Bl``)i`M)I5bcZ*P$IaSFFn-Vm7l
zmgfKmrh$K6IH}=~hPN~v=Z@|xAEuXjNk`~R)(XC@xr+u%4VK^4a8$!F4IO?<xs)m`
z7%Y|O@BG02w_#mQh_=TUx$oR@PWL#a;XMtfHJs7#^^=t5$J}Qbx>5$Kjt-J{_mMu-
z@R5dV8vdu@W99@6mo#K0N#`_ts^Lp|^<m0+ZZ{2|YxqLLXBtjakSLtgBWdr0lpU+(
z_p3`q^<ItVDNkEU7wO4~PA%~(_NalUnS7(+3L`c{y3BpiPv##Dyhq*F3rSZwi@s6`
zNZ)cu8g6O$O~b-FDc@_juHh%af6(wFz1LBCW}ec>mVVZ7gQ43(`c=a(+^|Dr@|$#f
z4e3a-w5+wn;+qwvp*cyn=?4unYf67<xWj%0|AU%>P<~%SjZP9DTuJ_R2kB1@511n6
zDSRegw7bNrzlA1?51&hTtl=MSVI6ICJkjtkw~~%3I-Y7s&{0N5SsjIR)NYwrL`P8_
zjXjBlbrk+5B~f6LT&b9j;yOy|D5axorc^@5$axAC$cenp?n)@Fqs3|uCB!6dhksJa
z>rPmf(~&HSr*D=`4a*<x^i<FR9Ti!-(o;!?uZ6VMFMTvny3@z;Kvf;pbkx_;Ku2{Q
z`PHRs^`u%lYUrq`V?h5TN_IDrcH|}1)=@`CT^&?V`X|-Xan{QGPoMuiX{e)-j#M4Z
zIU^lSbVxd69ZhvK)A_fZgcQ!gB`xeGeci%!W~*oG3eQkoa_Q)IH^nV*PH~C+={`3V
zS_nxi9j$egzMaxi$Fr-PCT(<hbd>W;UV*emA<cH5(u<FgPv`7(gmiw-g?2j6`$jLF
zkC#UW9U1hbj&3?S>Uc&+rj9Hfo#^C&@*CBq&N@cdkWRIh#%}R!9^H*3TU2$?q2)+a
zXzh{aY>~U`$kEY5M^Bx<IL*k_!6XoQlJeWKUJK_bc{(mUPGK>h3)j-sr>Rusamu!N
zN*^7H4pqma^>Sa%OUFPRejWYA9699yI$m!p4I3yg-R0rj1491YujL~?>8lEkPk04&
zu-NQsv51bSj<Gt%>4<T7ItJ?)qC?kV==h?c6xU(uuo!!$WOK4n=|n@R`jeD%gXKq~
z<m5q8LM3UC4hpF}RL3yRU8oJ$F@kHPV-#0yo4iqzFKm}{(xorgcv###UV1l8VsVU)
zcjqa*)fum2f{s}_X6u-!W0H=kI;QEkG*6kVV~WnVY|>k0q^7Gp$6xcDsw7R<F@wQV
zLYk@L)AgS3b0x~Z+v#bs-$UUX27fJSt`63+`1ZhD;yfKx82VfOvpN>)xT52#j^`NO
zI$qK7stzXJMLHG_lh)~YfrOE!W2uf6I#%jf#%1zJKNOah>qttJ?#)vY8ala}*DBF=
zjgHlV^!Y30-wvs31uya_CHGd!dL0{dyr^TNj_o>j=-8xVvyQDgUSf>hN!g;~&>zK^
zz>C~TVG*6BZ5({hBo2lL9I&`k$1eK$Mg<C~^RkZJVyFZ8<mx*qY)G{|I`-=LNXN%I
zUSk+Aat6yMb?npe2JP#3OUIkSA@s%p25pa|{W@yB=AnNM3SW_586_Ro@wSemI*#c$
zLWLvc-{CTehSu2%R4(au(Y*)XbX<L0$WI90@)e4bXV%H5biAiy(8H9|+}AqZXV-U9
z&M+tRlfM`tf56ZhA%Cc2p3CKoFhinz^PQAWxW|i2U+S1XP&&tD6~*&Z*3r3`bV0{w
zI#%7!_?+p^?c$@e7kMNWi8m&8yU0+{@fBxLQ~E{+lV{PDp07EP4${ERPNuy~gT19I
zd)?P`{Er#TKqUj;a@gET%w{^i*YSgnyA1wp=|^GbXB{_$sq5Tjou!|+WLssPbMcFg
zn>v2eaa*YUs^gXp9zqf8Bz?J2<^wsI!`b8SI_@yWj<w`tsoGVOmP=BViqbuu$G+na
z9e?WhTX!B7`hbaXu=97nzZe)}rDNMXJPY8rauV?&U8G5)#>)S212WqiC~M$fCV!@M
z10@V37${`mObMx|fx-q74HPl3alK4Q=e6?dF^631FK-<nuMSJa3{a9hKrShols3Ss
zwI!ue209IpKTUB_M;o5NCP_k}yufk>nrBMM24=2vtW_|eSCSyAR+N(1q_Tl32HXZx
z4OBI7B}J-dpuT}>2C5sVVW6ggmn%qh4b&2~wGGrUP-ebzCn|UCA~Cr!dYS7g>G&mC
zYG6QWB{enB%s@i}jSO5ZDK$3G#K2#rq~KbawLcY;e7O=y3Y87W0{@@TC7MvVp<ill
zpoM{s2A(m{(m*Q%9s^zjtqqhbEpa++sN5~#odI(D0SSNPNNEPz8fa&ry@7P0L!r+A
zoknH%F!|9Mxr3PdxzbXGAgmg{R&F{#?qr~|fgA(51~Ls~8R%*_Z{o5Iyzoa#7lB_K
z^(>cM^&nBw%|Le{d@U?xrZPNSJw&mmfjk4B6qmLnO8EvT?<MRoVe&b{Y?#-|r5NaI
zAm2nU6a5VIH}JE88wLg#7-(RLfu#og1_B0#8yI0gH4roqH=Gm~G7#nj0|~a_{LeJP
z1vOw8h>9X5F+nuihr}W`HSa@KHkV8TM2pUhN+f(l|C{S&8XRO`uz?{4h6?+`1gia|
zW|C`ce`%Rl8fjn@g$AY=7;WH-(Gsr-2F4f|Yhav#3MHiUoP_bB>cV)Z_SeBOaiXZ2
zWPrtgi%U}tOfxXwzybr)4a_k30W#(o_^ORGle4HQ%`(t<zVdjYG`f~l&+Fh^&c&4G
z87SJ^k^KEMrGd-!EN}klY7XgE%5xl2E$MlK4}x~=G)a(xL%L9Mv6aiU%QG)QS}fEC
z1m$I13j@at95=9nt}w8h>tbM)fz<{!8`xrCje)fWHW+x(z&Zn^*2sJ%T5lj@zEWnV
zhXF}v79QJeqv5;~ZQ|TbnS}Cz^OdazUNW%Vzzzf33~U;dKx8^)Ln5!826k~PagX0j
z8Q#*xi?4~*_IpTPHL%CPK?8>j>^1P3fqe$vFi^gbbR#6c&H?8n@Rf`FO#}N4bQvoh
zV8Dc&&nt-MT+&^?)FmLjW#F)ZcMQBsoq+VV&^cn@{ohmAgcb^iWxn<u3&}^Bd>T3u
zs+}-!(!fOnmkgXT@ScHl20k@#nj6I6-^B2tfwSBZi+a6pz&z;QvOy*e)8)KW*GC3E
zX0+2G&0LUNKf0u^bUAa4r&3sInkAh#;2R@<X5e$~sWqMp26{I2)_KkSg^*MKOU`<X
zoV;D8O*Z_BtJ7Zk#=vC*Uo#V0&JE9q`N|b;b9Q0id%D!X|Cr5krElr0rjmX?rB!QJ
z-$dsKAqsym@S}n227WT|$5=;FHbwHj?rzh{HEFHq<S3{3i-DWWY$j@&_*Eo<zYP3s
z;Ff{k4BR&GyMcQ`en(()Zz8kDUGB10iOi*!`$+d`TvYwZoIE(;fx+jXI*FH8r)c6s
z1CI=pG*QaLV*~#%v70Dj;t7*K-EN|g={)uNPDbL_L!_q$k290_Jk`P`SX?+?={3M9
zl5d@_6g5%Y#EVs=Vh>Y_nIKZR-B7875K^tQi83Z&qN0hirt`+3oQY%;NrJPOUPw9=
zEmz(|1tD2DRBm#}bJgV<Sj>6*P{~9U6ID%AHu1^!gib+O<GsN@Db<8>brX4~+_X@C
zd9UC;Pc0L*O|&-A#>B&Iavc+mO*Ao4*F-%N^-b6%r3RuZJV?GYIH945Mzq{pdbyp{
z+mOF$FEurtTq>JznP_Gr#e`(?7jzQSEYo9Z3m1u7=%kuxZsJx$>1?m0!n)MLL`xH`
zOeZ0;NM+h-zfFEzNGcSPJSIAtc*ca+WV%3G6X_<}o9JNTR5i(GqMeC10&;F^sdhhU
zT|nN@Lh8%(P+3~uPRcM*qOxP8lZnnIa!ll!$TX2<qKk>Hrt|82>|*(BL8j(7OUxJ9
zZYH`534>v8j>K0P1_rBo2w|Ryo}9aQdF2aDV1Rt;T!r2y`k1(E;))5yL|+q&I8)|-
z6a7t$HZjJ;0F%e>N>LLr69Y~7O$1D=tSYG{f+m(#lir%IgiJgrA%#suxJH{jUzY1g
z-@c<eseoJ)p%phV$b@df5OHFfu(&!VADJlq+28rlb@8K=V%OWZ8z>DnF+?;OX=12}
zVJ3!~7-516rTR%!V8~Jbd=+WaDo^0JXOxNkRiqkKrH2!wu_ktxlE#~uU@{XrJoiCL
z3qzV{Vv>ouCgz!#Y+{Ou875|$m}+90iS^Z`=?pfvbiHS8owB@Hb?&u}WJ$A3K9`S&
z1%rI=Q8(p9H_887D_89+y*o~tZ(@O{dd|eNCKd|5_S<5vViFHOrA@ZlUsifv$Z2-5
zi6tgpH?hyeQo7E>W)oXXEH|;j#727KcFIZ<t4yplvChP5F4=a^8iDar((v&Tv2_t?
zy@?I<p>Ppr%~pMfI#tdCkmK?uVQ0+86)4|o;w2NWn%HAvn~CivUgkDTbQ0_iHaD@$
zbl#X#!i@diD4F=(X3uVhw2APvUhfZ(vIb|cb}x4XHH~svVfk=Y9^bRP(l3c`-rq3s
zris%GFfM_K1164|{Hq`inmA<QZBE?8TXb(`?qLRoA@Lpb*B+@=x->7L1GDHmCPG%`
zyFwx9_mtixB))MzZsG((ajg6vlTt`JDflUFf!5LiIG<(^PtSE9O_9!;c;CclCO$Xu
zfr$^ff+o(H_{hY^CQklTmW##5VsKd(jLfG0KQ(dQ#09b3p>fiG3&b@gCw^h#OQt&$
zMT<xmMe|E0zT%8hoVBJYA{Ug(6OOsRF+qcjgsUd5nW$u;vW5RKm`yxlf;I7-iSJF^
zHF3|x4<>$O-Z1f-iR&hQGI7JiFD8CAVJb-zauVhZmv{;Tk;R+L|0YI0<|(l$$D2!h
zrXruwaogmRW~JY`D~Bh%*ei*(yvw~~!k5>FYWHdFamoV|e+lx3z(1K4Z<eL}*~ck=
zo4C_n8Zx3h`9ltPtV9d{F!`HEv{1xCnbFd}OxmNR!WNz~D)OWR3xzC{^h#xh%arr2
zJwN4OUqvkxvrx`LvW4OnN?0h(=G3%M%0k0W%QE3GSMy%_#%>Rh#j=)@uaYcm^GKi0
zS5(P)rnG-%x$>5{?YHpBAzuXxyz%4BKQ${_;5~V(kW|G&RSO;qUJKPMRJYLBLK6!$
zEY!46*FrrDwJhh}o>y%P_q!(i$Lk0S?GL&ssn1afody<e%vY$u+jwFlq4U9ua#IUS
z+DmQ=sTP`9NTIR?*@DZ$^EIRsm8F+PNX-Y!SE@<O+tlR8cg-!dw9v|OKG<wwVeVup
zb#k|tx=F1qw6UB!Pu^HYG9~S}n<ULbTMO+iw5ubfTi`i^J`0UzNTU}fR8EyxY-iyl
zb3REOse|QwcABt2dB#E~3*XxK&gMx{$h7dig&#PoOUYRlW?7hRA=^S13tcUAqbDsG
z7P?!=v7mBl7IH20u+ZB=9}CCpx?EGs_Oy^^A)j_4-T9?nFF`yTvZm@TDkv8ETIg?K
zfQ5ddYQT)_oxL*4UQVO(Kns2gLl?N&mRCS1?3Ys;X)YE+9BuQ|u!V?)vQ1ozYP&L*
zC;d>}6}1qvuz7NZ#+6#2kQ`Z`<*({8Em#&tSr~2MFkH5UK^6uJ9=EX3SC&FvL)fE*
zVO)r=nPc9nFx<k&-{g<5Fj9~%T{CT;dqx%Ctmm`K*Kv)pFxJ8(3zJ3dI13Xjyx!PF
zh4I2N)h1eCk(TT1&YEIjs)gy4aK%qJJx&v9S4%qvDVZshSG99f!d7#*&@^aaA4k<R
zb)JRAj2sK|`4xbLXDuwW@PdV(ev+S~+8Xzay;+Mma<0Wm@7ldt#9=jk6dtYTTGBjq
zsfA@0wp-X?VY!7B7B*OT(ZWg#p|$SS7S>ome)m-t_SABPUdZ4QthKPt!g@wRE!VHt
ze5nhRJKtx#UDns3nrowlO%}FVc!`VnMc!r$TP$Q9$ZLMv%ZAr~^LAUHY_rhea`L%%
zx_|vgIxVbz&b`w@QYlyEwi&Nj*hLGsyf0hW%@BRoom<1D<)$`W=YEv~5NdlZ)XqqI
zjd4}Ob?>&fOL3ojYU&%@wieD?xL{$wg##AewQ$tJK?{G>_Z((0TPUCEIb`82uJ{5)
z>hJolk>^BHPwl#%BNpDFa|XD2EzF+1Kxt&SjxkUzd|=^23n#cKESzTQU<_YMrcX{;
zc#pw3BYV>VC3AaL=fim%{8<a%EO5Wi&G@TRWOOasob?d{fLX=DImSRvD%;WtbmONS
z%<}FDSCg;Sao>NCcVvO`)dJ-+3tw3Hl9A9j^>f;3<a?>2@1liE7Oq&hYT+vjf#;IG
zW=HhWFDcv+^Q*aXRCl9luFDn*H*~SzYfS#!trpK-!I_-Y{9pU*JDDam^l?-_S8=^F
zIGx`9(ZY2L!)=VP@sow0nb2(1uyKQN>+(FX@Rx;OEZns4tA$$@?pV0X?3$AL8}p2X
zi`87WMR7$X7kAe1+OB9V*F7dZ3x9HNR&{+mJNpkoYCqFG=TO>_LcT{8U3E@*|F-au
zDcVL^8;>kJwoueYF&qC_c)}!aqp*#Cnf5It*v<q?Jnw#(*WK=sdTVO-=z1=0`FI^y
zqRn4fBo(po?2vTMcjvHlI)S9PjgmG>*`PN{*!&1CeQqPy+>Oo|<uCjpm$p&vcv_{j
zv?LN6RcutXk!+*94cMq?BfX}tf{klW(_gvi%WdrXu!e73G2iSQUnLurZM+t9eNx-C
z<d!_Uj;optDx^*-Lgi0xWPDc3SJOr<8(nR5vr*ed9UCodw6syzMm-xTHY6MMZ8YH6
zY&5pfkcsqOI*p%A@l@)YxmNZxvC-6awr4XN-|x@jVCKG-b*xG1ytQtQM7Eij(6dAL
zRMEBD#{C6K+N)V*=4RizFE_WrVQ@!tkgaUAw$Z^xhK)8hJe-#epAD~#G#hPg?BA2M
zdSXV4WY?hE=^MLuuXNJeV^sFcC+T(nN^fVQy$$z!Uhmv&UccYY=xE~^8<{q;Y#fNV
zI@uW7GPSdf6{o%P52m$knaW}|b?Upj*l6;47ERTDHEU;f=JEmF?ly8bBO4)(nM-D)
zpN;;Ug^fHLeQYQ;US8fk-$pMRy#=3q)5qy>BJ>02{^(KCiO!jQ>HHeLDm9$UKfuO7
z8vz?<f00?mS^I6!jlBBYmVYkgQt8_P-la`a!!{x|EE~3ssEwEngPnezt})n3xpaZW
z>U!iK@>qPkp=V59rfFltKv&u~`EgM@*v1g<h<4ovF{m1P?7E(zTpGWNUvCVfhu`ka
z@vL%ts#W)mv@y!YDjTb9jJ7ex#w?D?##kHUY)rH<$;Nn_KbLhan4Cd}A86{DVB_mE
z4w-CY=ANu6Hl939UooWuYiV|>2>xjTr`wnz$V`E(T~i5jY|OQ>#Kuw^^K8twvCzhI
zHWo0_ZdG`e(RJ2ax?j6pXT0q6XMYCC^EMXQctKQAxR}<?c&(IF;-<_@;xZv2S;6T2
zO<pdXOe0iYNl&Jv(&ic)Yi%61@wSb1HrCtNZQ~XC&Blv1w%gcYW222tHn!N<YU4A*
z)%$TVdU&(V6Q*1{O1oYXv)Cp){KG&OGwtj*vaE_O>MS!V>|`zHJFCyjHY&C9JnHZ2
zS=)owo>y(`vGInDH^s);YvXl#bzb&sjE#vIj18rxZ=diXBZ|SWpW$lbExM>#>Ornr
zo76)bOf4S?V}_e+SM>jG=OZ@WvGJ*m^ETeKag?*R@xF~?HjdjkW#c^?Cv4ohmT{7K
z<9zS<*}PKEDr;MM$hj7$xyvfL&e-^|TaQ_dJUgDIpJ?Ivz{ZC*KIX1uNF2-i(C_-l
z1{>xC+kJQ?@0^W4Q#}1jxjc0}y$8C`%yWTbvvJABS2jLp;^OS~I9coI_M|UuT;$wq
zIVT6*uIl7E=J2m=d}HH^jjJ{;3x6gz^ikon8ZPOK@0yK2PNm%(*zSMadTZT$c`835
z{m{Jb-`n`X#<V!5$MK_$>&#1WNOAmR<7XRx+4!5$ZsQk{SF>($l{dG($(23s{gu;i
z<XU^AJ2S?eR;j<)xNYNi8+RCcYu$g^xGS36XTLV?2~G=R@1?VL)JZR|e|L5#e<1Q3
z$wPXhimyT(h~p6hgTcVHWA=_aIiJ_RHWK3~B8pFKBnVPSVBrFt@{^oXld|f%ipKea
zI_Dm;n5Zf)u!KPBlq%3K9Y>is%8FuA9LWXpa)MkMU!=Ss+*~xZwxX+I9980|8t3n+
zT$SQDoS9i!AdA)Fs2)fCI2y!JBaWJJ)Q+Q09EFzmKGig}RvfvRncP8@=Vdcv*NvlI
z9OGT7<kdQ5viaGVt6?0C;%E{_(>SQsIL^QCr8!;9%Wm2%mFYCQw2P!!+)1rl8~Efn
zTyZFI^o_$E$J!>YwsEA#kt)XAJdPG|v=rPMN17n5;%F^M8-X5y|IKdM@!pKOG7UVP
zilqADXctFz99`mQA4lhMu8!<9j<@3p9Ym9iIHEtMZ61<Gw{(glD~=cbOzIp*CcOdI
z@A>UY%qYt$UexItN4Ge7#L+X3?s3qo)X9mXbUSy#vEHB0&d81POV5n+C46~t<j27#
zeMB$4;^-|pTGQI;i>;;_-APtg@%4+Ne;j%oMjQj;7#K%5j!2wmcDVd;sBr}2PD&5N
zv16;3gh?YLB!gReSS)c*j*8;XO#X3fXy}S@f@Pe9!&Lv@$jvz7aSReOvf|FmgdIoQ
zHfhuu9LEs08tBTZ=lc51w4rf~h+||N!^E)Je7GP(KPon=Kr&8{(Q%9sWURm)1?Py3
z7sUwzCo*&ep`FQsOo?NvAQj)pqHsnWGvjzajt}CP702v2cE|Bb9CPBB8^^jh*2gg~
zj`?w{jAK<C3*vZ|3lzuVI2O{*8E=t8Y0t;;TpVxC&wjCrt81H7N)}PMwL_M~u{4h5
zajb}A8ST%{rUFB^YMa!TI%ir<UE`almaXjC@n+iUIF8JBS6!5`CXS?>RK88qb=TUs
zlVM0U#PK5iAIDBE{a^CNIJU&GHI7YjjD6m{IgVS^eOV{d{tr!80bRxM^@A5nAV1ut
zl(N7J`UnIFlE-^U0!aobu7$jH$KBm61b26L*P=yQ+ER+s0xhK!3gx>y{r>07nR9pc
z&Ydg2xw~&>-!9#xt)T9?s;=VoN?z09t2!-a^lq8Ic$}A1X=Y7eKUVjzBa<um3r<O*
zdSe<krD0DR_NHNT8n&c??m2g*;g?cXx29oR8n&l_Ci|S)v3J)8cBElvr|6w&xc7Nn
z-`cVCv+GgA1mfS#drh0{+vmX>N78VVj7r17G;FO{^)NZ@%a}vd;!o&aD6T=KxH>PZ
z?5P=Zxm?v_X*iyS(;P)7(je~(4EU_k$utyr9M?rkI7NOA#SM*)yR<)WCJiSB##7OI
zRXv}E3u$<ghNo$`n1)Mf_=!|X!#8QTOj9Ebw`tZ##$8Fn^)%ez^wl(6;{>(S6!<m`
zHz`GrYLQaGPlxnVv_^V>h&#k1wfLUuG<?VDucdm_@&iv+Kk~Z9j@VV*s#3NoTO#h~
zG~7?a<1~C5O8AA6e;P_oZf1uP9+Ku)<E}SIctjAQ|EGrH_U#SKELk<ORxFM3EDg^o
zr-hL@j9=668|CUW{F8<kX?U52KhyArOxqQBm4@U>Rew)I=6~zmZyEPT8eXTNQq~x9
zk+COGszJhE+&_PFhPRx~s8CgE8TXE`7mE9GNv-4t2}W7}hctXl!@p@bRLM_2!KkK2
zUpfD$G(?0!G?l4Es%8lzYZwTlKp5G=$R0-SF!F?vBaD?}ntc{V&aij$^NSF(rc%uG
z9#wONy#!A8T2$u^BR*Hvd|~7dBQlIA&PhCU^KhqTOf=`DzQkF&N(|Kn!zdI+u`r5<
zLD{%)7)3ZiiP|jVD;oAL3RJ?~tCk3(WEjI=N0tsFQ;is6ruI@{`afOOrd2(fesq@$
zqkI_cMcNI==V4R`<5d{Hhw()i6~kB<Mmh-(qf!_;*&BusM&&S+Fw`)rgi$r@y`Ju?
zFtU7GrNIQ|3nM0sYGG6lBQA{kVJ!J1)Ci+am|h-&nqkxmdymxC4kIn8GCgG{*j4;t
z(5FscRn1bDpZdE~t9oI4Q?7E#1V)Q&^l{GyVdRa;(m0F((UlvLugKNUgpI>0H{wL>
z2JgFUIjdA|LVgP)A&fv6&G@O-VFWor3@tek3Zwb|T3Uor`h)kKvR1q$k=IGQE>gsM
zGk=>flEX;hE$w)n%4^2!wqc0;tJbUJV0+%uf!EaWf|j*o7@hcG=P;x&WKMS>#14t+
z%IR)lbPuBkr+bFcmlM5s-J92acums2CPel1wh8+2mNZ_6|94glqe~udf0Lf?qMFLA
zllir<_c_j2PlcEnDb#Z4x?qN3g>h<0mbqcrVI-~bO(F?-vp8Y6Ve}{8hA|<GZePX?
z<TVk)IWdUWgTol|zxJV=7{=?Rk-n|<{3AF$GK^827|m;vFoqLjc|DHT<HPvwgpW>5
z<cA+;)FOK7o!H4?P(6j$Q^T0XiRrwa@n7Se*qNM|6~^rUwanqf;p>s~zoB_y%n##0
z(H!*Oq6J}klYc#;7ln}##)U90hOwBSNDN^d3}Y#wcT&XWFt&uTER5x0tRMr&`qqW9
zo+fM<tHM|v#+oqJ5@-i`55E37&?{X>R-wc8!>eqdP!6oJkvK<sXQc^j6Q}8r&Q_6=
zwuW*1ynj%13|%g_5wK~p$VpUogt3#;yLi3(f9-oXv6m(<C-(DtRX#s;ITXg>FwTWh
zn_l!9#!>R~1a>-%V;ln~!k~TO<6-{H!?WyNmc*Q-n8tYkK1JAA5_7+Ioin`4Szc3L
zvzm`Sb$Xtrc8@GXT%zd~#=S6p4&!pzdxDz$c`b}9oW7Z*%GEHaruOS$+z8{_u=l>B
zTVcF^Dr`Ad`DPfC9*2my&0Fs9`a52KAI4oy{J`s<c>QA-e^;wReTkr2-sHO<#)B{(
zhVctow8ob{fl>V^j7y;^kHdJviJYbCJf*}%t~g!qCFygz-t#bi3*!Z4n-*1m4P(=U
z|NkCD*Tr$vGN~s!JAvJs!2Ss1HKj@sB}Dug#v97XB0dul?i2YJC6>JrSwy@gm2x#A
zkNwSE`i>`}_hJ0Q4?l#x#rcoC{+HLEcukEFA~K2ISt^-1L2L3^MPzFj|3}l*Y$7Io
zYLQ*U!i-q@7eh{w9t=Z45!d6Q2o<?S@5%W{k+u$fd3c>y^g{eBswMrQI7&o55k(i&
zB09eacW@wD1Vrz1BvcA;B1p^QA_|M3fA<#=(J-k>F-{ld^|0B#hleA&7l<h-q7<DK
z5ig>&h%zGLMARp%C$O?2z7SDS#Pb5aa=b22R{>5`;PnYTNT-hXkNHwWbrCg0R1zVG
zs4Sw22%m@;5ik13ROL0XEv=qPht)(7L5KBfczt8sn3^JLiKruD!*E}1l3Xsjw&w3S
z%(v8z^%JulOE02{6;YRXItckDGJ2g$JrTvb`H7fxDT2NXNbqYQ(#6qxgL)$ojYTAh
zXf1j_i<*cYXcI*=6_Fq!AbS7M4~hthXvPbjRU(sxiLAMZRwC^>WhJ_Wh?Zo_L`H@F
zr~lK8tW+0YpOvuPMnp0RDcO>VNTIPNdha|>6+w^u5&hk>y#1<YX)B_g2zp&Dy~Vd!
z_cnc2#(za>h`1r*TM?Z^bQUpI#5fUMM0BMHis&z*8;KQ>M(`8yVP!%O5xqGvs#l$!
zBE4j(PA`hcku3D(<vzTfc)sRDUlINO*FtAIOk^{P`$U4lt!7jt5i+Nh|Fx(hG*0Wh
zHvZRcim*6s|F6XnL83@Vy~4f$B8G|>CW7dJA_j>VEMka=ffE@OYV_JCvf-llHu6!t
z9>Hrm94XQtKeG}sT14jM31bNSjeOnS`{pHkFEJP|;sOuT1Q8SIl!(a$1`!)YOc60v
z#3B(HBBqI$E@GC5*`yUYa3cHjQ=6G0=Dbf@Mj^{xWpeNQ`v@K)=8Bj{-sX+vs<xRg
zVu6Tf6B*GL#^qbcX*x{j1a(|2Vu^@VB32XLL@X1rT*L|ySNgOrQKSm}CHzyn#7vV|
zt7ol<c_pQbN#1a4M5yOlts`xp#;zp{7p^k8PAs*bY*uGI&9Xusu}Q>c5eGyZ6tP95
z2TQP9#2yjbL~Iwm|5Fby(>it%+d(rcB6)EBEJW`Vu}cIIREUAfUJ?65?C1Qcli1{f
zRnjIgDkCPbLn01~I7R7&pFJYtsEA|au}Q2)r#iP@B^@Uma@|gdphGGokpBLe@l%~M
zBF>69N0aw?t3R8ysaDh*t7^`C+b6N}G&M?9If^P5MO+f`4W*#=v6smqoS-+!UnRJ{
z_q8qLpFYZWjYso3uPLn6+63vn2RB806!9+&D&n??JEHf^?jJ<_NExPP+;`-Vw$a~n
z`Yx}}wT=Es#61zOMEow|XPSv3o>G8F|BN=jh<G64At^J7(cvSaC$Wgh>@g?kD^5f|
z5m98a*Z5q-uOfb<v_mOqGNZFCCNuiv)1Mh_=<G|%vF&4eO=ho7`Tr2{TEyQX-qAqB
zK(Lw2{^Il-f;#7+_P3<fDL)aLC$slt2+cK0CX3q`i`$&x^6yV()bW#u2nnSml$MZ5
zLS_ktB`^78k&snFUI~#B{taZwCgC#)IVGGQ7052(ugNTjggO%fl)A^>@#m6|TSBg9
ze){^=+=Yod1_km+^b(j_g{Reul8{eAw1kg~<HsG2&o6lif8oJ+s)sI)hlBzW3QAZw
zKB4fCKp_d#NT+rSE$NWdC?cV#gkoH!;=C@&>k_2f6z?T?=Wj>Q#jy-&`%L&!LL~`h
zC6tp;o)p%-)cS>l&m~ll=o6y(!hZ|2qg}9xcP~+qce&IuvP)j?8}t>YFhN3P2~{N8
zgQRE9TgOPKCc!7s!;M)soo-b-Sf}H)h`x^^iY$sC{+beMN%-^|B3_`j1iyqaJ1}+!
z>JYyKCmn7&>Po05;pr$m8-+Lt^+~1v$k`taBs3(g3{)@>FQJiye-wOB&{#qf3BSwu
zLq=0_AbCbcAsGP)%_MA=uth>pLP)|O34<jxm(W5&4+%Xbw3O(-Bxon0y@W&wNfMGJ
zq)2E@j_U4jL;f!p(PWDEr~64I1L_DNRRWXHRzm0TSt^VcsC`M;*S=neh|{Bl4idhi
zQxdvRlwSopO6WvNW{SRdEcE#ZkGbm<)>T3`3Ed?e&dBOaVUwn?<y`)@f}tTdgS{m5
zCO1mZCG?T-wS=$)Q9@q{d#A8|64FR=2O%&@_;Hkwk|ji=933G@5@ZRA1XV(bnw~P}
zMhgu}1vZTpN(~o+<GrB`38n;BLVpRC1Y1J&ViAsn4W+zS1l;60ye9QV2@%C221pnv
zfrt$)L(WLy{X^l&BVh=^Ou{S)vn33ZFkGS?E=-g#Lc&OjqlB^K`2`W9B#f4@a$8is
zsjO>cpvOp|!c-PhG<qC2dAx+vdlG3xDvhVIN#yE%sZ%6OmGH&KI+M9|r2I4q(<RK1
zFq6WOC1n57Qa%vuHkFx6LPMr{;W+X%I7h-<3CkobmoQJld<lyrWJq}VbIS!ZH6)~S
zX%$KZZVVUZPi5q>|HfS`VTnYGd!V2knaXaFo^)!Q@W)iPf;5+~R>C?7t0b(Ju!alC
zIn5h%c}dS#ho`i@`Z{4fxlY1H37crv@U!&J*7j9`#E>&*JdM?88rv#in}nYw+?TLj
z!VU>%B%GD7Q^GC@2P7Pnu$vOd_X+zX?3b{IqRfY*mVR93_}vlz={$H_)FE=9gcA}@
zN;o3nsDxt@j+65_=f>lK%_9Zjv(Q3*xchkUP0@%`5(reM2|s;9WaGy*savP9bCixG
z+>r3CgbNZbO1L87s)S2?=x-!kmO#veD+)y3O98Tl=xY?9%+c35Dwd8C$_#5xid~w<
zZc4aC*-63=5^hWM3?#mj@I7HT?DIEHz8?0GTddB0Vt&XK%QT(+DB&jw_xLD<r?aLH
zg({DQ7h{D6k%3<%Jdp5#=ADFx5+2dKmhgv!#}b}McrM{r$_x@>rn6@>i^m8BfA<_7
znC?aAHwiB&`VwAI$Mj@sp|azBLV?WjeW$bd`T-(dOZZd5-xA(QctapR8T?DaTdoPg
zh7hRU57Lw&%+RcVPmr!3_=l21l^|t<Vhe-B@Gqq=O4>4V%ZQMXNk%pq*=1ywkwr#o
z=IE?4%6}dhlq-eg{QJREuZKUFL&j&aH*<5!uuBC-PG=d@*=`O<>3+*RGV;pEFC$t;
zBxj3~kx#~HZr7ZV0s)x%-kr`!0mvvI)7M-41QMF#3nsNDqOgo2GDgc7BcrH{VlrCE
zNR&}rMhO|UW%y;3lu=4XMHyep^ffw^Aw6Y$&WHP9YgAbo<z%dj3%#Ds9t`w#iD^}V
zl$kGlA!FJUq1Q~I#Hpmaab9kzBtwu9Bcqy($};_)MO7I-F6YiX;l`<?r*l1Rv&sH0
zGrYRGj2bd(%BV$Yc?K&b`)kf%qoxbN8N$&?!ZOE4UFyh)mC;B>V;Oa29H||MlTlwr
zJsBi3G=o*1Bs7rGP)59ro<*WFclM|Mm_VbPe-i9I!;5|sO8zo}GD0#InfVeZ|I28`
zwYob;crqrIc&N~zyMAobTt*8SEoGd)nn1rS`f~}hX0Tl|Sdxs^GDI1Yj5acoWptI%
zO-2d@S4IaJUy<`=w3X3LMtd30rwJ851oi37Nkbat-E?o1%QIL<8J%QwmeEB9`SaNf
z*7R+H^EoTMz+)h1`eq2-W%Q8owT!-Gl#E_7dduiTxSGi_G5^C{vA^dDl%DBXM`iNm
z7X4(T$q18rnlFAP>oSuKn8`j&Z9a1*Yf!Y6EJKmeU&a6#stiqrA;Xk$GA>kgj-bo*
zMp-YJjNYGW5eQ{CGF*yamUuZ=Z0Uv}d7hAQKiGb%ux=(h6B`&PV~~ttGKR|-EMtg_
ze(gd-xj%oIE}Wdn{+#1!^}+CskTFumC<<<O7OovwRX0F5`GKol>_cFzjBzsd%Qzro
zyo?DlmdRKyW1@^nGG@z|BV)3RDKe(Zn8B6YtVK>G)X@|>-LhOlGI?zM>x7x)@Y?YN
zhFLN`%w&Yjg0tAi*uY%sLJ^mdA!ELb1u_=ONT-n13J~@JQ-t8BI)O*2F|!!Kvh}?9
z#WXLD#VwJsl!l&@{Nq%CqBB<VubU*yz8_d2W2KDEGPcNAC1W+s2pQ{T+`bY_+!nP)
z##(~Mym%6RWU7bl4Kg-T5@7yKguPj8f3xK1&qH+Bb(R;ktunUB*ezp^jO{XZ$k-`k
z7ddKsQqj(S3JPJSw?A-Wh%Z}gAW8G@C0~6O*hfe!;pGi?7MnAR-rv~#po~K@ZpyeN
z<1oz*85d++lyOwXF&U>QQIJvFqK?ZrLE$DK%@kti37cjydAiVSbZC|&oRM)>#yJ8!
zcjL)fY}|t8_h&J3>B)Is9Fso_UXt;RjB7Hk%eXA#ii~Glqpr&Mdlt(-n|(Q(t!(2D
z43D)pg>FzB{|pcazm;(?BA7Ir(Qq`gZqsZfw99xX<2xDO%lJvgJsEc?E>&CoAmc|F
zdENxRn<&t%p_tOR`fT>IjQcWvAylZorSpVZnwMl&O%*7_L_Cu5m}Z%bU&*dPu}@??
zCB-;1d2ixuwq=GekNM?;iNDEsA>*ZtS7b<zV3Pr<4?6iNzKtdd-!Ol!lc8sJ>}wf+
z64DgRQ1C{^UldIRZ4|sEGbtr1D68O|jQ5oK6htZbhrmXOT|rg_A8Eb}kNrf`Q^CJ7
zeGWTztLe|7`LY)A=lv@xlY-0&*5<8a=sseTC&gw{kX=D81-TXEQ1F?8a&3J%6$D-1
z5-GNU?%O!q1Id*hsTHqg&!ZqOu}#i@W;VOIBw06ocL&7gQ;=UlF$KjHL@R)Tf(i<8
zIcxcgp$aJI-O2xD2Y+D&MHCcOFmRx+c%MY-yV>@YdmqR?J#_7OTnPmw6}sn%Ev;br
zt7sxh(O8;~Mvoa6ONY<iM3qxeUO_ztaSA?HP(guDL5zYg6jW4DS-~M1NI@k90v{#c
z{CFCxYOffwmn`~iHmjnbDmm(E5{V_BobH`iO+j@9wG`CmU21U6YbxG*m|J!5lZFWe
zLw*Hy6vQg1OGF2uK1W5(K8eKe{*ZU0n12qdub_c~1O)*F4Hd*IXu<{3*+vQuCS_^N
z`?lO1B6Fy*sRFXP=D=8TMKf}^g60ZZDEPB%1Q{FRwv*plUk<cX&`Lp~f+Q~C_oYE{
z8Ywn9Q#{F`*JssG5|b6AD6kaR3Q`p?1-;1a3fd}Yr{F6E9Tl|a-8=Al=9?($yZ$Rb
z4cAFQX9ZmqbmLYZ9^&hw;LDDFdfjxVp}y`4dMM~g*m&i=xLB2Amv;2i`=yD_{~_2%
z!Pg2T1+s#^3i>GsD-ih*Y1|f)PXj5IXL6xZ(VYk8^9~iL3JlJsk#oBGNfVu*_%5)d
za?Q{C`{^~;rh<oSvwYILfgA;{f>8=a^Dh0#u?hw$7{CvAmyN1x_!KpEu!5lqhA9}L
zfL>}%1HIE?hbtJN(7(fCM{<|W$QdMo`Ra$r%n!dNj8QOF!DO<cT*Np9<GH|zye@Gd
za`y<|1VUPW|H-^{CXs2Iv(!%W?h>acn5uwu{^w!zG=)AR>wm&yI#Z#~FyVxPlL}^&
zGZk!9ut~vO1@jcFP_R<Ld<6>>EGDQcSV%L)^es~G_gDT!-TdhawzdyZONN5TMs=th
zvwTZAoo>V~Q&3`O6usP=UJSlmp{1eNTDKCYeHG1U1?#9q!JfBKb9Y3oA>X$5RxH;m
z*g&AQe8Jnn&VNSL{4*+lRCJ6JyIH{&1-lgNrV$nF?dab|Q)v$St$Z~3ZM%XU<l#3_
z)Nv;l)pc-l61a!5O-KKJ1qY}LS-raDJ_YAZKNa%HL7IIuce?nGQYz@?Kdj&gw~kIV
zmtz-?iT&<X@R)+*3dZ?D<=T5)Xv9+rPAhmou~u+K!C3|0DfnK&Ig+g4ih`?rhzklX
zD!8Pend&RpIbV^Mfo~LC_I_FWVp;`CUup5QPLLX}DY&lSrh;4i)D1#N%fPpkod$dJ
zoytY(sQGSFpxgWJC>U<~3mZOap;LDi{J>#<U%`(Gep0ZH`*2IK$a@NY=6<---&4E5
zKY_`e6MrG!_V>{=d0Rf39Qa7VO9ihKJXY{T!BYj#6#Pa27@YK+@?Oip9K-)B0VCx7
zI!pLINIJiuS%2HRhQ_rB{I1{+9*Dmcyrzkx;4gmohM-t4G-h)a0t0c9N^cdIt-Pzx
z^cz9Kz&i!+x!Oe=rub8RA1UqAg+s$k4WAT5s5r0Uf{IKkGOOsTqMwQ^Dzd8ZtEi(Q
zn~LlzimNE0B8Q64R79!Bry{3{Tq^RYs2CkxYO6Qg)%?-9ReH6E=YhN`BB@LHVAQ$9
zV~>(+&x_BmB3eZu6@^tmMFEvwkdA}4&~RVk$NBN0IqX$`;p=|>4M$R`v51PIDvGJ-
zGKVD{PrOn#bZxL;&0!Pgu#zfDsi>qvP*GY%85I>&e4(POigGH-tN2{Smi_|qKkMsX
zF^3f!CbSzOkj#T~*!QkbQN@>JR|ld0!VooHo5NnuVU<->QBh4rb+U1|P*sIbMT|<<
zkyPUBcOtNGsL*Gq2ag&mYO1KEqP7YeVog7PsqTp+hlZfDbsZscE{j!BS4E17RFa?~
zPDM~fNJV`W4OBEy(Nsl474a$>sc1}=uJig<p6gvk|H>H}a3S#SpcnK66#<p-jKOo+
zqbi<<Lvva8x$I7VVcuNUTty2NNh(^aXvr;Vr6Q4RpUckAWp5rPe|A3kY|q4B=CU@V
z?Y#JpYlUPL@(|DD)Ay3eOs1l(itZ|UsA#9sKTXg{MQ0wA4l2G<(NV>RxvaoER%;$B
zH#@%4%=n}A0xu$RbWzb&MK=oKJocCEIU#8t>pPFl?Jx9H(Mv@i6<@39t%4#ui+hHA
zMM23p6iHT)hWoQer>O|5SfnCDg{VSOF-FB$(olt>Vt|T)DpVDk3QL8pLRWFTe9%x~
zQUrS?YE1$o=COOd{Of9lM)wRkDqOC4e-#wjm|?=ad7eM7&W-QWBxMl!P{nW+BUB7g
zF_d!-BZMyv&EgA3hvu<s^VswwsUua4QZZTuL4~X%hF4_QKu-=?H%`TP6*E-KR53xt
zL={t1OjYsM&&jikModyMnbXJm3j`{13zcaqrqgU%=yfMo^f?;3d#1%K6|+^$SFu3F
z%QMMyRLoT|PetzejNnw#_3%KrrKz!yLNi3jIx9Y1#cv~gzrG5TpYPeVSj7?*dsOUI
zu~fw}73)>{769FRVugy;D%Pl2Ns;aCUq#;Q>D_^R+ayq`sh3+?&SwOzwKP>JSo0a7
zcj$bUKA&w=u}Q^t6+2XHCLpQUs$v_5*7o`A8XtFVf8p7DMjrl8=1vv6RP3h7GA_32
z&&dY|#SzR1T{Ox*75i13P;pYl0dlyCUt>Z?Y0!V752-k;;t1uO1?=+$to{N|2l5s5
zIz~}e!CcRF-%z2*K;abGbtLtSinBZ@rzvU=k|`&2dGFnL|2<GR$2F`oHFQzMC7Q(=
zs%!X0#buJOA+v@nDz2({rs6rxSryk+{HWq56*p9TtKvHntKz1LTPkj=xI+Nw;qS44
z4OqY`R|_s!z>aMS?pVN<4hY?nQt$GyexQLCu*gN;+EJM@fqN=`R`Ec^L*9O$^Zdf=
z!?B?}r2~%^utzE$t9YW~DR2L{fYApv$}jXnS*=niTTySm|4JcN@rEG8d0wb^rP5sr
zUJ}?&g+7fAy?-9~L&a-;_D`DrynC;OZ16%hr%6iAvMFy>{7rL~=ADXnWa9wedzIe6
z<E6XV3)zN+?D#@fah1Sk#Q#f%7mxU)B0|HLitqb{jOv#QS+;c6Tk&PlkX1ub4aGEM
z(~w<5ehtwY-E8AC4S6)=)sRy|F3ppiTSL1Jf%M0o36;~?fN}xyTcn044Jqj?p9XV<
zkdT&mcXI1<-*cX7K`EU<LqQFNG!!8DnR5JEC^#ye71rqfIaEZ$>cPJ2ef;Z&_yTRb
zyjNU92@MrAe4(MFhEf{JYAC0nv_^k{7f#*^l+i%Uw<`q~rn9Z-Uf^0yXkK2!=X~_?
zrxM$j59EmoRwQFJRMAjXLnRG@hRPcD{_SaH7xow)q<d2@zIxEd-BLJRh~YNA@CP^C
z4boUOG}P44LqksuwKUY$&{9Jy4Sr(N&{#tg4Y6c}hWZ*BXsD+F`J#VLXK@<NrnA=R
z0)>)*bRZ%}Lk;m78fo~kT%g?rZ-#zI_wZ135o@X;K|@eONJBtFGYxTzSjr+6r-xSe
z@R#W0C-^nj&_eTWO3##!j&G78En;I9v5PxGi5ikLbkOjXhSnO|Xh_w-xE0A15e-Wg
zv1jGIJV2Vn#{>ulZ7G5p+G|*UK51@bVAmpcWs#@J!$qv4hE5u~Xy{7P(uK|%rWcDY
zlfhno?f-WX>$+O#rlC8<Yh-i6^KUupY+o*%TP*a_&|AX*4FfgwAtg1)8WatExf=a6
zq-m&_FS>Y%h_FVhK&X?!Bns=xgr-{TwWuH&*gAu4JsD6nXc}w{js{(WLDAG;aUp#&
z*wQaNB`2>CMrW`cQ$h<fn5&_`hQFhtkCqJW$zT<}_S0G78KhybhA|q(aw~>t7_MQ2
zhM^jUk-*&EPmk*vp0tsiVU&i^q-6IHnMtKaAOCOs>^KeMHB8npMZ*LQ6E#fIK!#Jt
zV;6!?7d6j#<t3$S?flYGVXB5{<Syc0DI91Mpfs|`P0g&NuDsl0mWJ8na2*|V%+WAc
z!&_2Y!#t9v;k<?m8Ww0+s9}eOof^_LEYh$>!&(g)8Ww9<u3-g*lIG50wp7D1g8E`l
z|GLFfG8guyOkgpKD;ij-VHHJ3!--K|W9E^ehQ~bOanaB^3b%$$8a8X#z+JkLpb|`e
zp6dU{_NQ51Hr}FPtA=eFwrl9Nn0?+juxoz&$i-~QVz$0#>h8tt@?y42!)^`7G#uBk
zhh~$8gBlKL*r#E?h66MyGUXsq&$xPp2ZcT@W><VEGpmLUYdE6esD|rZ{ap?uzU%BO
zvV_s-jhC<!8cu3B!?il4;WQ_%7mn_@gjGoKYfISl;wfh}oTCx{43N$fmaxs&0~a-1
z((p*bW6J*;E^GK+!(Gb%8m?-%so|D}Yc!lj|60Pg8rn{2J}IVE?}grP<oXAb6IR6?
zIu@6EPb#_VwuU<zzSHomqL&;V74hcFswJL>f1n9VX-C6-4L=bQ_zK27uHk_t>;~uQ
zK0Ne`h6frRY9NcAFJZaw#8F==Nu%PPXn3mOm4@GWuV)&5)$ki}YUo_l8|ZGKzzcqg
z=$D)*UowU0h10y-(LXf2;f=2~{7DIUDH~iQRBkD&zm)w&kg)Q7lzc<_hu&#;PnSX+
zHFW%=;R7XG9ffs#)bOu{+&c2;_@p61r_Zn=yN*mcGV92qBdhLZ^;1~`ZI?3oa1zlG
zM^de&p6xkw+E+zR9l3N&T*{U%WnY#J9e?KO+_PDbh~FCp^6H4xkzYqNmlLI9|5BDu
zhx}E5TrpPiU0=$;PZiKnP{)~d9w47DWg8EBKfx;8i7TR`sE*HdRM1gOM{ymcbd=^@
z{{57_gpQJ&e!AMb&Dee`p^T2QI?CxNuOod=>Z{Hns<SR*C6{?XjbFynCEpi1D(a}L
zql%6%byU(J=or3?y^&*Q?e%hR?`3Ryv*407$yIgubj0YW#z$GXjD0fwPdfyTEMqs9
zvA>tG$mOi2j#@fe=xC{<whq6JMmic3zm8ZPaXRYLaLZYf<*crbdO8SKotLx4y+Z?*
zvj$``C4U|9Tz;;*352Uz%RTp&b3;vZG}V!yBf!tni_`ymcX~4&K^-9-%}KZ0L9*!k
z4|O&yXD4_^>N_(WYNaDlM~aSA-ZzQY$vRr=XhXf$Cf{4m-Y#dM6mM#m>E|u8FdgkU
zTU#A}hoXwD@YERoDnKauN=HW>M|2$3(Md;Voj$OIsXDso=&D24Vd&_lqq~m2I{NA8
zp`)jcK3rNmH(xJ`-Hxc<I%xgB=jC9n6)bTD`<kD9P}z%knvSpzMTe?G<n0oHM2F3H
z7BX6gS}zY?%A4}=WkT8tw)Jh4rvLxS|AZCH)L~Khbc`T=9gdEHItFneu8#gX25`EI
z>081rnm9YT-lO1P9Yb^s)iI2aFi9vl$6NX?JVDsIf(0LWdAqF@8mVKHj&VB1>lm$L
zjE>%;nvdnu)X74Y*}}jXLZ+S}q9@Q4&@oBJWF2cKdRGuyp1tJ@HJ%V#_v=)#E4#dc
zP17-5$9f$bbj;8(Q^yh=OLffBF<Zw19SbS{>zGTX>6owMT8;p1<&d10D_Hdh2?>W&
zY1KE+N|vr;k&X-<i)lKqWO>q?*L|GOaez-e9}KQ!5jlgjk+e+5aviI5tk$tY$4UZB
zrf6@?s#hwVCH0a=H(#UUg6?0dV;v!OqVVm8q}fkfmi{cI$4W2m8+B~bu}8;V9h-G*
z(Xm~}4lZY_j%}Q1_%_h=ejxBZfNKdmb?nlyn@pSFWr@)%+2WOqc2&r?l}!IW?z96s
z4pIitF>-*PPSK9o!c5VJDCg7)9OgP4TFKUHu|Kb5$8;Rm@k+<<I!@>~spGbeJ33D3
zIIZIw9hYh1=s3&8Ues|;$9c~jZ+ZXhfyBu?f&{bAR<R1JSj{5QmpJE`%fTx;uIl)f
zACjKebX?bQgC^iA&+0oRLpACKsPrn@>ZXocgy+*qe;o+*;Ag+n@x6{mIv(q|tK$b9
z_jLTsMg6GbCqfiwE8a7dGB%b1cVEXZIvx=0b#MP-*($b9_P3rO5Wo(uV)s_DHRpp*
zbUfAZ8)-FDc&6hym-Z`1{!PV4n~9lMvnL;drOyOk=y*xV`HLXMddP)js{hdOn$oX<
z+y?&C@kYnLl*V=ZrQ<E-c^w~UBJ(cqbiAi*FgDg*8Z5b*9n@o~_*b(AMWV^-;ya=~
zQeH~+cUsLN3}iBp)j&1_nGNWxSr!9RS2H4pcMMUWyUa<>ZXkz&&kW==u(!XTz%%NS
zcV%3^nw3})qz%5~t63fcc?}dXP}D%AfhYq73=}kw&p>_y(FS1P?rJtm4ZT^-a;;%s
zu3;pn$r|tRNFs*Pj*@}G2I?*lez+7Mw4@eqRm?zf17!@9HBiDpNdu(}lqOaA*44CG
z!v5_++PwP@fd`7WDrb1WE^naE8b+FvhP1I*vPbF{1}YkOVd15PFAY>Ou-U{G6M})t
z25uR+ZJ>&Qss@G|7-7I?AjZH~209w3W}rHWHPF~V4FfevLj&~;)G|=pfZxD?0)gFg
znx7u&C4s8b;_DcQHN0!+or2z#an|7YI0G|ZCp0k7kTcgeFrz>q?}6m;*`hn>-qK>c
zfpD__`hxf-2AUd3G?2t4Bp3)92pI?%XhuGq7Ek<CoT~}V4YV-O(m*Q%Z!`H@mkM>9
z-+b<#cq*TmpEyZuYXfZzFavE3JT4cJY#_xzs)6a*<LOD5)BBUN-wS+tBn*Ejv@_7&
zKnE(iZ{QkM_<`rTN#$Zsmk5%ooeXp~AQ_MibTQDC+-u-#u3<L=-3|2M^p1MLo(6gu
z=xv}Uzc1SGI3Z&VODh-aiMkl*%jKt$u?G4PNOF2me10b=l5ZoUe{JKRmyvZr{y?$S
zLB)V-z%k%*$(jMvfJNXmVDOeEC4+m{c=OlhhcAzMn+T*l#iBns*}xD3Lk$e%t{!Ay
zFbOOeAX|v-hc&EpvR@qFqmOL%&lPPx5r%Og<cE<4Mj6;d@Gvmiz!(Dy3@kJ-*1$OO
z8%Z-T-oOL{lMGBYFp)rYH(^v_aA3A*6278fU<$Wus)1>Q)rvu~`qLVwjgBq4mgQ>~
zm}y{^fw>0eaY)QIFozIWFhFXzeVI(6h=^Is=97Oacvs0IZ9Rq44J<OS+Q1qE83q;`
zSY}{3&4NhJflCZ5<@&E(?O}jgR&c<qG_Z<0oT4x#XMo&G*dVB^HL%XW{+aO`c(3&a
zR+NkQP%dI!b`LY;!;J>sA4^<!HL%6NRs$ytoHVe_z;*-ss3Y&S!@w>ByLq5@8n`#Z
z>q}ACL-~OqS0EahV#zI=272%&@E<U6*uW732MrwJ5-LOm3XYB?t&UP--q>RXj#GX}
z4ZKx@&DVO7C07v7DFdesTr%(t#bu!HjDd3o&Ko$(g^<I0u)qZa7Y)oV5WQe^-0bVg
z``foBIV9n-fhz{C8Mtm>Ef4)w-s_Ki0h*^b418<gCQXe2`361}2n_Uf)PHLyc3;bg
zzGL7!n)N0coA{m-qp+HYGVz0fA1U`5cw^uvGTgv31J4coY~a3uM<mU_F9seE2&)7i
z^5Kptsk9bN3wi^&T~8=>^Mg;xpKIB|wQRruAw0;tfc|RWH^NnP^zQ^JQhTuQ(!eVN
z7uK>xi9uQr>&DmdX#MaH1FtC|4;N@PnCeHLhyJ1@K-t?w788FPcxT|FfqyBEq}~AG
z9|IpKUZ3ii50Xh4T5Y59WG(w-Ai@OInM`C~=dHqJ87xeE=q(PHUB|MT$Y$a*6FI4l
z3uHHu!}QV`t<}%%?<xFwe<7EN+$Qpv$ZOJ@&lBsdW622t#_QzS@uda}_Bxi&M1B($
zO?+u0+5}7#H&Mbw0TTsH6fseh8jD60GEvy{b_6P&Z9z3Thw6wbA=1B?iD~Ot(<a`G
zC~2aUiE<{&n<#D4+cW%SOq4b8!10VChL!`orDj@+|J+0c6SOe<g^9VeIB5%H`?_`P
z6t}bzC4UosvdBbb6ID!9Gf~|{RTDlFG2BvGai!2a=lrxjnRPv@VWOsqS|)0n7~%`k
zSY_6;+Ur@F7M^Zd69V~q_+w4fHPOClprMI+CgM!gH_?C#OkB^b^&YnUsr;5qNzGXA
znHkT|lFyr%XlkOri2)`OOax4HG11jTGZR4*$tF@vgiJIykz}H^i54bWnrLMr(Zpdc
z`Fmc!S<hbIPo|b48(15<()AZ8^wo++)Y-sNHn3C^%tQwhU-5C<nrKG~n;?je|4@f~
zRc)Z>No@n`Xrhye%ekXFn|M0Ng9mAwGDx^Gz+>oUqPq#%gkqwHiJm6<n&@Yumx<mc
z`k45d2lV<NZ##xyLtV<x3DJT!ZK<T02%8X1NG7Jtil4ZFHRFTQS~o?Ume4!=lB}B0
zOjsstj!)f$VZx-K^U+Bf5xoa^S~(`j`L2nZ8`zo+?8pZ8VFRO$m4PM(nV3TWFfo`y
zW@3Vgi6(}c7-nL$i7_Va@nM9CktRl&pv@5yORghV&~km$Mpk*Fw~{~B#5fbQMK#_8
zL1^<ZA?;H$n&9M(MvsywnV4*1x``QNi;1Zw$p6#0Z$rF$uZ?WzMn=(}X<`;(lH64^
zg5=NN$Y^HKh}$-@D;wE76Z1{1FtO6a0uu{OEHSavM7l{2gCWDjVmkXU`O!vJW{5yL
z6trK~x}QJGCRS_{TV`T8AtWKtBX2Zqe~?V7>u+MKOspoIO{_PuhO4xe*I#r^?7oS$
z;W*r2Vxx&o1Xm?>^zk4;H|lBNV3WYrsjbQOttPga_`*U(3)@ZXF!92~OA|Xy>@so1
z#8nf!P3$po!o*1vdrj;!afkp(bIOX{Z{h&KfbzrsNILvCBSJV*cfvl8K4Ri1=Q&R9
z-52@8R9~q)`Hpe*l&QY7!*$7uQzlNExM1R<i8Ch7Qi@v~ao)r^6Pc^U6F*5?9TQK|
z{*!-+jNKRc4S|-ANW;-7|4-Rx?29CZYbLInxNqVYlU^Z<Zz;E%xNBnVzQ~&<ZkxDc
z;+6^0hlXx^r0#cIJsO3|p&0KP_X9y_U*u0F?osymDf^FP+UXXg!_S<Ph9H{QsD5DL
zA<Y_stBFUv*JDD+zDVbw$Mb}8!c_0#m}i=gG<<I2H!hI;@GDLKO^kTR5ITHi;&)2I
z7IInm!^CS7|Csn-;!lFve}kI%i!1z=l0T)jBX$2%m<W>mpJMO-*Z$GOzvM#;SuK1r
z5n*|8$z*}L)c+~_!(v&fOJ>Up+@-^HDGJ#v&rCYZ&Krp>hlS59q#mw2eG?-dI+fc(
z9t*`R6t|GqLZpQP77ALJvM(~qLOu)md0!fc{26Tl7FKWaCK|bvN}e+<3Rx)3d5T&n
z!U?jSBvV;)#`6RDyo804{M6^9t%cGS%33IAp^Sxe9^C)zeHIg6-twG4UC6`a-v8Pw
z{7;83EmX2F+rk`TvrySW4+}jlRIyOiLeN6Ug3m&Xh58m6c)d`aoM54jg&G!WTBv2A
zwuJ+m*w!4O8{7~?25EWRc;VeP$6EA21?pM!)>#il*<U8qzMPPGGb^^)Gr1<OiD+n{
zv4tiU;w?0?Ff`rkTTBSN-XCmgA;ChxLNn5EX!DfK%v$NKDl3~=tMvHsn_2&Jf#w!k
zSZHUVy@i$*T3KjgA=yGAA2i8AYZ9I{7<!jLeHW92UCGn_Oh}=?Szs30a<&6^1G~9C
zebW<Y+)_J|sP16lD+`@1bg?jIRcc2Ioh)yUhSa;fnI*@0AGM#JBf6`FZWg**m{i8g
zVAMD;+Pero*vxua=xt%Jg&`LDSoqq4VZpS}*FrxFvIWILnuV|h(Sl@Q<+v0Ym&%Z(
z325vI$u`HEYpMm!f=>L!Bj_x({Ii)A*urR+fetMTwuSx{29UAo!XK4_js=&ZwuQCb
z;<-BW>)=4%m*_#<-tZQ7wpg=~-y{sRFwDY4Qr^OF3nR!<3u7&ev@pto<@iQZ;}({_
zg*{m)?AgLjXC!2^eB&&PxA5y0Ho>A#{l>Px7P!I(8uC}LR$u>Q0=$K37N%2NK4q_0
zA=)k<J(U2{%v-3OVIkXAHq*i^GI^;`Y%8Ntj9bB7ixTc^3(mDL&%zN4M=i{^u)xA5
z3!5!0By5v^EUdDy$ildv5|&t4Y9YhIVwy6eL%;e0EtUk|4Ub*M4P0(v1&z3s5$Cwu
z0k+ligUIXE7S>r<Z()svwWN&Yqo5P&MsH;ssC_HjXklw<FO(NK|AxWwTd2jNcOzqu
zg>97lE&N<OVkfD@H~a3F4(zb-fHM<rcUkzjl~E}7TG(gdkcGn*_R};Wixvt8xmRC|
zODVXGEzB2NbsNjFBt&5)T#Z^NjL#8$%))UCw=LYUaKge#3*T6{Y~d8S+QK;t=LtXQ
z31=*vwQ&7FB<W9sCT#NzykOxXhv+5lgca94s61ZgT?9LBV^=I(weYQln-;E7Uz+AU
zBX3xEekyU=#h}I|&{paAZR{5BPQCs)6IjgKzq9bYg+~@1TexfC2MhPe2^M~|@Drb3
zg{^#hr-gdv3EkKre7GFAZ{Zj6iG_!R`PaeS+ZZ{M4E)r=Lp9-qwv&h;!=G4qYT+5F
zL5Q;On}r+O*vhVf{k>9OY@?gEglpTAij)b_6n<slcS5Oy5f1*a@S2cdBg4j@7T!?y
zu+hlIUl!h4C}E?djlU_STZppZb`joN_=jR`BfE_c6d(%`HZs}xmy%Bh;S;Zkn9xbM
zQYAn{sXp{-ab&TP)yDo4!9iaoQu(91pz%Kk<*@OYjXXB;+Q?}mmyJP%BXZlQTDLVB
zm20~f3tG&fLmK+$lHO19NE@H%8Q?BLJ{$RMMB9Lk!ZwQ7C}88qeL_JSg=~899l1z&
zQYNMF=3w45f!d4OC}yL$O|O>COIi)<>y@fKg|2IZB(0Q<(l%<?sA;2&jj}c>*$`}$
zv*|BC!sj+BaH2e~NsTXT`of)1(Z-iHd<VRZhD#YiYN2v+m!Q$kHCaKYY*ew)p>V{%
zmy<db3dY!&UnNk@Ms*v%NJ8`uuSE3naJBn@FuO!_EgP{m>e{Gn!*8PwH<k>EFB#FK
zzmJV*UXQoL*{E-W8tGI68}{p{hQv&Z@Z4kZ+gXmiLSq|EY?wAI8%=E_*yw1ZlZ}9l
zW;T*+w6?vF1#L99(ZWW^#)!fZ&3g&d*wRKTE<ce%lP37H2WxjqY`2}I?Dte{V<XuH
zv*{JPNU<SrXQ_Pj=N-L`kEVM(o_03cli@bL;tDV3;TXl$BY_l@PTPdeHoDmO+D2a+
zU2Sx;(aT0}8{KV8SRd+PqbEV)=irj<EL&&c$ljzCdxhUR3G<&PEPEYwcsuK3gW4w?
zNa|-JjnuHA*jP|9B5XsnA#s%s_wb%!YyOXSDfE4nsM^qM=r#;OuNixn>yvqh2eTr)
zzMc}YZ8$b2+L%Oux6z;6Vq>I@0Tg<I*$y_0P-<hajUhIMa#g8&b>2Nq6xO}-GG414
zEVW+i;WqMh6Q;KpM%frmoSlRTHpbW(Yh#>^@nrs-P^(kHuXix=`O<@)-@LxHTDuGK
z5%XjlQ*6w#G26ye8$YcGPPZ|`#xxs|ha%J3c>}F06!Go7gqei2!$Lp4$Tr8uT!I<7
z!p1zC_F4RgItxTlP5cXOjM~A{`KdL9L-nc!x^zq=p2aqn*eK|rkVF4B$1)ptY<y>9
zxs4Sz4%;|lW2KE%Hn!Q=ZqqkGu!g39jZHSz+E`~}y^Rev(s!^u{X@HUuvRw`F704L
zZY4aT;dZdiHn!N<Y9lHl@NtK?ElVXhoc5>ul}EMQVPmI_eUu_>?4lWJV~>r!q|Z)P
zZ6~`tI<DK<z;724n(y=?RdZJA0Uq3gWR%w>*4W7=?_^&$3*~9+`|DEdQ5(l>T(oh?
z#&H`bY@D%i*2YO2r)-?2XjTlZ+R3i&WN*1Z+LJxgG<eR&c^el<=CL@lW+>k-ChTHm
ziiMi(Vzb``zOixH#&sJvY+SK%)y6d&GqXm&S(HjD)yo__*v{YV_W&vIt&N*DZrQj^
zc;3Z6JD4<J7rQC?=Imk@o+WJE#m?+v-`luLIg_S_jUOm$QNFVA2Zh+iJsZE;_|3-8
z<ZaRS%*JzW?0sJUV&efPXwZi?9{rDg%!wy9o^m3hhKG&#BcV){LhWk=YKpNhY`nDb
ziiFScvgq?&EOIx?*qxNLB;?=CUQ_a?Ja6NjjW?A1DPxRk`IfM^Cu!&CxHh}le#cKH
zjJlBU-o`&PcWiv5kd5~Cps$}#xH3OjeN0^6-ClHt?Pd`UGC9cQAh(0e4zf7N?jVQb
zC8(?p7Vl=+I8A;y$h&;zASZ9RRyg|ZZqGljd3zoQc^%|)ke{E8<aLw-tsUFhC=dnj
zqFk|2a<l_DC_uyQNlmi+R0vvy_OPSfLWLa^anRC1D+fg#6mw9+K}`q69h7kJxq}K0
zN;-(C87%FfjDu2+2jG}Jo*}feT-HH32j%&=)tSG=9yV=oTxZ+&;y}_D4k|jR;-IR7
zFCA2JAULS(cze@*_OK-jLhU8rwjrtFJx|FClVg1}ii2tnsyn!m<XyX|q+d@M#>XO>
za9hhkZ3m4VG;!dkK^@e0(7-{ggSrmtIf&z$6e<+hKF_<GB^b};-RIp4G<2|e4~uuu
zh+MHU_>bkm^4uQELcs@nSW^cH4uTFs4gy?AGY4-n@)FO#dsv~pp1rQ<Ywn;0S+tk+
znGo73`GR}dtEr(x2T2b4IY@KR+Cdu!ogH*>knAAEK|2TS9i);Qs|T2awhnskWq%w@
z8orkm5>uD#Wvb-s;NU9<9UXLXu#b;L!`<EM!SBDvA$~0q>gu4IgWeAMIOy)62gz~h
z1CD5DdzwUc^}pZCZVU_M{xk5yH$mF4CgN*uNM8rvI6fMkWPXt;CG0?S;5z8<Kyn~E
z&>a{K6bCA4UNoSQA2O#92n+3Fwf1?2Q={q7Ejnxm4jH(Q_20)@#)qh;v(xvn3#Eb^
z_pt#EPVZxb91M0akPrQwGYoMs)S<m>-!KO+yN5<wexeIp3TEBU{>s{Dq=Ql9Hy3SO
zjCL@_!3$z@FxJ61@&*CM!FUG~94vFN+`&W#lN`)(FxSCk66;{5gINxyI+*5Qx`P?S
zKQffBoqxI(n%+3LV@2w{GQlE4;==obBO3%Vj^vx|P@3|U+RuXblIJ;??;wLFor47q
z781N2ETVwc4mD1%S7$%lRwpHCYN%}P*oo=&Dz@`4;dY&xmAaICwV#>$*=H34>njIW
zI9Tami-WBWRykPhV1t8=4%RqW>tLOO^`z~7*05qwXzT%=%8LE$*1>?iIJAkpS~Rek
zOQ!b1byMh3&to*S19}={r-NM%wmaD2VDz96wUlvuaZ7`{9qe(im%yAo(DG)RlYCdJ
z#<>>j$9Ve@2OJzEGifS0IOO24gEJ1!IymCssDtAUPB=J5z!)MlC>Pysqi}1#x5E6O
zv+tyXQxr#sp5*avn<qN{au)-;>V{tLXXhN8_ppS^4lX#jNKso5yhJlGd+2z>;I541
z_vJ&CGLjb#^<8mrmBN>i^%|FxwN6T}GNC*NSos4UV7_&5)4@FlKRdYP;5K<aPwWp4
z?l}04_#ND(INHA68KJaNp_&(4#2#SD2iVr3-qOvF4t^q_9$+;_c!!k^2ktxg#laH?
zPaRs3#zO~>96Y83`>_uB>fP@N^Y(i;UDf!4zje9AGY8Kd{OaI0?(q7TgNY+Ok4@T<
z+Wc{FCfD$lgWoCjx%k4x9}Zqqu6B{z#h;WD9Q^CxlY_q;ymj#2!9O%^XW!qven*-#
z2n=cHL4srw@qv%>k+;(#|F)um4F_0+i%c%ExybG!vx_V)vbtWZw|^gu>y|h^Ydq2Q
z;seB-!^LMV$fY@5FIe=1Ij!rSIKY-=jsM{Q%i|)iiy|(Hx`=cU<pM4WxX9-szl&%W
z!7lzvc>*^Y1hXAvgn24N6m(I@^{zFAU7AgP0-^69YkiP4IGao>oW)!ecTw6!85bp7
zlyp(b1!3R??T!@-P$At&4iROk-9>p9pSyT>F|OZ1FSrEnAqUyx7eV4VHo#ZW#g{JX
zx~S)(k_*8_O&7IXRCZCtMRjg<RTn-NF)pfct>ztM+YYia!+a+-e}UYA+ar8siUn%8
z=$ARi*@Nu)K}J)%HgR%hKN&vQM=C8G6qhqgj#%>QA*PoO#kr{OqN$4n7Y+C*@h%#X
zMTb~J7qt(0sy22(*uayPO(^*sV!7f2>uZIm4!CIMqPdF}<UrmxM8v5Gns)@tVrij;
zzE&+=v~rQ?B8eR3_?mv5IQ|RIGkslOr(v;A3?F5iWEUwe*11^kBGm<RG0eqq7j0d%
zb0N8qU9@-6!9@=jJzadoE$ZZ=vx|<LCMB<Z)1r%ut}eQ{=<Xuz5F2)g(OAC0-mL{q
zJ*scl5B74=n_NT;F8a9mnycN{#q2}uk8A;oa`idQ{~F-C@^>KYg0dO)5?v55h}e9H
z9XZ4l7pe=(h0VQ0?V1bSg+XlLkV&JTYq6+efYND^RV}+M2|6xZ7Xw`k;;Qy{F@OvF
z;gA=7>Q0k-nc*AkVu*{O<fUQ0fs;LL2b^nhJ6qu0AvVIrNW!*@bQhy2`Ma3rV!Del
zF2)ivT}<L`ALnAciwWGKe1|#44zos_nC#;FjD#sJrn=r<Tc5_k8S|Q#s1l$&PnUoh
zE@pDw=DC<fu5dBO#atJM`ltSJHM#p?)}ISm7n?HkFe6~hcd@|5+QaPVVYYT+^8)j{
zw6Ms<G8fBTWVl$&b;w#Qu*Ahu(mXCmE~Qv}f0(Usv67Fq#>Fbmw%Vm9YJ9g&1QXhM
ziFB70J9&KbwJvgIjc?E-u))Pf7eBiA$;BoYn_ZkBeivI@Y<02M#Xc9?Tx@r-lT355
zgWTIXsu17XC28vgwwwGmJ`2HekLz7onlud(4Bj4Q`&}Gxan!{z7YE5$7l&OOapCmv
zE;>|*Gmt$Hw>wn&2<y-?NHXJvV1py<IM<(aKIP)Hi>ofKxj5tEtcy#Od|aG!ao)uR
z7Z(YuN4!8#5oR~13lI^j=yFNRl`gKhC{`}InjHJU_0d&BKf)#*VgJX|cYs$>d~b)|
zNytl6dWVYy5R9QnD7oAVB*7#T5fl^wMS9QnzLzFdr5B~xK%|3$^xk{#9i;cpcV_tg
zzvtO!p1HF#XHI#~*}c0vXATlJvT!^LC$exj3rDgji7t+b8M`(Pt^X%wWZCpfgX8C}
zW!pw15Kc~J;Zznzm5(_s`m9;Yh)?>;g49T}oXf)bEIi7><1Adr!o@87mxY^IxRiy<
zS-75sCu`Z2EL^4Vl{fYpLH8c#@QmQO!}t8j$qhl4DrMHOTUod*em=;;oh;nV!aWN6
zqNT;<jFErv8^!o_EO!%*>TV-Hewc-}Gx-C?2?aTxpJd@x7G7uJDTP5{`sZ1Ak%gD!
z)WbNpbnL1bq)<$khBsM=l8{qEE(zHr5R9`+$RY8bAFpGHkybe*J|x$^wA>O8(RAdI
zcyxVRpVl;#UqS&1?G1D=P*6f42~AWaswgZWTEZ+Dvt`6cC?escgi{h?B|w5AL6uNc
zLNN(J2`wcQmrz1NoP^pEN=kS~qBWJMBH>*Lr6iP-P+mf531uXd6`WXc!FR;-y`Jm1
z>AiKVf@rTOp^}8NmAG;qUQe63j^+9#uy!4*DxsQ$fP|V7s!OOLfmQ_UT2+|39i0_E
zD~M42J&AVpO{^tBI>aAAsLMi2+Xd@Ls4Jl{rS6gNzJz)b5+pQ`P+!6a65?rIVxCrK
ztYgvZ8Cw>vx}MR+qVampSVIYoNX*hvZL}D+o`3&8-cIPfo;8t>D505z<`RE)-Bk1`
z@*CIiq;B!_Vf>Icxm!p`lJMXSmu0M=7LpJq>qzJ#p_PQz5<Ve8B(#x`Ea77bX%bQ-
zq!P{lvsceAQzmW-RuYhFlpIc%kRgFd$fW)ig7l1(UJ5K)&+g3PQ-7E*+@??5r({qG
z9VK*<&_Tjy5`TXCIdS-3C|6o=$9i^QJ*yKNj#J{kknp91&SI`#7N>6M!D9<OnSU<0
z?JA+0guW8`N%&gAHxhbE=p{OLm+-BG9-@v7jJ}GeZ|s+qNPjDSZ=sVu65iXuKFti1
zLQ*!c{t^aA7$PA{qSs+D10@WSFjzvQ2#0;Q4P4vp?{lk3gt3@ddLS<g`m~lu6K6FE
zx`f{({4T+eU`iM#VY~!Of=zapFhYVO!4;z-5<Ce$VUiXO6pKAkI7F)ney$Y!VFMc~
zVVLN%>RRv*L765UDPgpPF%rI$FiPSN>O)^}m2Td^#!9%nftB6J%F#|i8#$lfOZY*;
zPZEBX@S}tY5~fO+CSf9}TEb)rQzXzrkJx_#1f(JDf|I|?Xt|Mf+{k854@@UlN{^o*
zVJ123Zvkl|%b1%%D^mzXRGB4IH%G!;@~Jt2*%HQXWdDj)Ex$<kRj^GAte?%5wtOS|
zL!vdR*d$@Ig!vNwl<<#)RT36R^vwX4N?0agp@c;e7E4${iuyX9CZ(~zn;9if1@~-Z
z*MvmNC9II>%Ru~1KHev;!<0boP3*^VK|&W{jMhN)_&B&)qKh5YNmwsojf7*p<DU19
zTT9-(iN9o_hvf9Ye1n9I65cwd>!-7=;f9;I#<ob<Dq)|5{SvlG*e+z>En$a*o#fQz
zbL^tXGdqyJiBV)ARnU-Lo7f%+d&y6~iLW@Nl{q!geQMx<go6@}NH|I^GmU%JAqj^G
z<RY%pPk$3TCgHe*>6_RI@)3>S*cV%nc6V?b5vPSkrzM=BXdvSw8D}M&lMo}Lh>Y_R
zE=YJR;faKc5-v%UNfLL+^b)Q}xFO*`30EatlW<*FAqL4rnT}Rl`Q_l7lKkgQ3Ae=A
z!A>guoSVcsyenGnQz#IXd!!<vlZWExBl4+JY3Ds|&`YBIDTQbW*=6LA@m#_S39lu*
zp&-ARYx1RpS7KoG%`8#0P-B$L!+SOvUy7D2QRbA9OGbVf1!Uxwkw->e8TqK*Iz07y
zQlS%}F`HSxYr!UF+{(@D@Mcy}Mj;u6Wkk!ky_x0Q!ft*WF1LkGs`rgg84!QQN{y8P
z8C7Idl~GhiF&SlLl#@|hMhO}3$aq(9Qc}hfp#d73u!W6o8C^<7X&Gh2*;}!}#tpb;
z=;*kGl^2avuOy>_jEdr?E9RZCg;oB)v-kVNSCdg)Mr|2&WYmxm5T|O1vZjppL}jfQ
zNYuiye2O?3O}$jDR(f3-@5_j%J~Habs4wFKnbvQ{6Il{-#s{GzTbL0FeXqnN$Y>y=
zp^Qd?V4iXO&aKSRq+5bAsVm=B)<j04i~%wR5`7uXWPB>4y^Q8ETF6M1(N;#1jG&Cx
zGTO*!DI+8!ETff-gJWyg7Rz(0Z{@nJ(Ubq9Y`c{u%kbs6L0egh40~io+JoTett_fq
znEHP#BSQw0ktQQu#+<FJ$6pycw=%^}$P`R|BBLG6ek2%(3Fki*s^joX4piwN<1-oG
z$mlNPa~U0Fbe8dzjLTbDCmCN5U}RiM2vsN&-j_3RLG^I9ZLI1x)<s5F8Qo-jO`>gM
z1B-?FZDV7$F(SB9O=v$agXn)Nqlb*%GWy7vl`FBQj9xPKZDYS}<3b%7z;8VI%IGJf
zzu@q(Xs5<^x3jw2d7nWt2Fv(P#wZy>WMq-lGJR(bNro&#lc9@&ij0Rx3aK*f(;6;Q
zCft5I8?>DnGE5m`w=+wIl`E0B+R`WGN>;+R{Zi&`XRZuS#!wl<WK4e&^kqauW%YJO
z$~?TC&FGmjT*e48*1pyw#Vj|sGZLz3RhDZ9tFVKOmN7=g6d6-#78&DY{3v6BjPWwQ
zmvJ;#;tw(!?_j4x-1pfIRy-GfLO7Aw-oYjjuBd<C!0a7t(+>W1G^vg%#N;#?Gi1yp
zt(FQ-mvM0ii=G$$Niaaee<p7|#X(C<5;JpT%q6WV=&j%v8NZSXE6A(hHyOXnI4<La
zj6Y<|ld)dL1{w2Z{3&CZjOBvh0vQWsEE4s<MEUoJLHf3Tv5X}$mXaXj!?|~|#V)th
zkp^6l6*5-JSS{mU8S0e8zh(R*V-?LcF+kb3hKveOf*|@Bo_ekk1lP(~Cn}UX>%Z}V
z3OiY|o$RxnY@>`#GIq<@BhGG?u}#Ky8Czs*B|Pk8Kkj5Jce4FE*{hvwhm4&vc9E6G
zwJo)atE)kw;Pc68M|Xzy5~5@rl5tqZei;YIcLc$b9|oIEYIXh)*Ol{QfR>yb5$#81
z9HYuE_Q@_*YI(!{yLiGbS|oB(#wi*1Wjv5^TE-cfzCgo&6#r$MBVUklh2p=A3uF;;
z2Qv3AMqi}wTOXpzpZ($~ozyS8=+SQQs*Gzgu9L#E#V)TF-dr$c%`R4~Z`|QsEOuM)
zCOJZf#5*$X%D6=#l)%%6Uwv-xVhtyxr7ns-oDqLd=4qN}jYFQ@?4gWDGG5DgBjYgz
zOp5k0UdVVVBQ_NMOh`o8nab>DjdpW?q2r~DSL7+;=cl3^zneuV$fh8tf?Nu+D`>Ej
z-$dn5z{a*Z_i>n#XuY>Fm8Q<E;PGxoYY-OhX1jK?d<ya_XsDo(f&vN(DyXcWih@E4
z3M(j~prnFh3!|eI#43P-7=<>E;CaR<Ra&7voS&i!iYcI+OT`t`+QVpV2rbxYn-%|Y
z?|8z=I||-aP)<R41*H^}R!~MkSp|nzWDu5qdK03YNclvHHnL+&k;SWmf{F?%Dg0X2
z>UD_LT(sW9y6s`<mBUpPR8vq#L0xgSx`Kd$n#9!zRzra)_<4`mP!Ok}wt{6#LcR1j
z0@Bao)SL~eEBCMpQ&QhoP>(1O+Y0I{_&@<o9k0+jN`C8md=GoRhmo7a>}B^>B+^og
zDbsT{P%u{Gmw?6!K2q?Bf_4g;C`eS$T0t8HO%*g#5F}Eh%xtmE6|_*0q+rYBwD<P1
zEAc_X65*$apU`423n>UIXeFfRnw3FoL%M#!Fa2dEq$MjzQIMt}T|ugXwhBI0=rMJi
zGCuHOT=Lg@+3zE`@{_*`6P7Z_z6vrG*n3&ix#8)1+24ElN}_&!!=EZ>ub`8HFBEhT
z6A}H-Ns5ty&lGeS#;5D3KzldJ`zM3Y@}+{#3cgnGje@VJgMzLKx+x&=P=|winek3C
z<=1+#m(daZYjSr5-zw;#peF%fAEOL-ar;=(KGtO)dny)E&B+Y+QP5Yx5d}vT^i$AZ
z!E6O{6bw)>P{9ZVBNYr%Fj#@Ez)&zmL6%@uRUnCqtWXvyjs$NXYd$<YV;_fHo0>t5
zVqobY9Ro7rO$C+$UqOWQpukb!D)2;y6Lr&9DjA2GgymB_ve7YgXt<CZH&nqe1;Z6w
zo1GT7FJs9*MvcGC4*UOvzEdzt!9)d<6pU6dM#1+AejvRmnDJBEI0fSs>=JDJ`sjam
zFY}j$e^fAml&PRk`Pj?**sqPlzgOWiPF6651}d1TV5)*?1e<(`)5*W&xQ27mUhZR`
z?Fg3G&xQJltgK)bfk*r-M0vD+;s4MZMG}brxfJ{r{HtJ%f?p~4D_Eppv4Y<f{Gnih
zg1;10HR9$em`^Y!hM%R~=@?J4r*zJ+HilN02rnepo|88E*Z=+N@4TNaQLt3O3I!`k
z8~fQZ1<MJR;*$O6el~1H=+8j#Zw3D-SfyY!#eppD9Un~M_q0^swx4aPo1XARaIJ!M
z3U(;isbIZ=4TO0GTZttzVWWag3O19{^n`2s+2nfZ6AxqzpB~tGAY&Uz8c7(uIJ{lh
zcki(9=T;nvuuH*i1qT!yRIo?EUIqIU?58OXW#l`+*wf&o38|xv40FN9C)TA9sY7D;
zVNsSn!0kxvRj<O1DL78SO+^6}Cls7i@KC`c1*a68Cc7)RuHcM<vkERMloS!?6r2}C
zE|4}>aLcwh!0l3CGWYt+3a(J+c7dx3K0m<jKS(3P@jg|8gATA86cQEOQE*qm<OA%c
zf?Eo1Q_x$TLU~Zv9$-fguwhU6<DGj7?i04F1Rn?tkctR?_XOK{53<J!o+yY?kxj)@
z1<w?`Q1FsGB}eRY1s%&ootlxe>_J9meWl>F0^;Efg|CBb-HOB!6I#6m%-}P@>?(4o
z$gLueikvDwKFD&ZoCx^~ne5wxj8vUh#fF{<q`-VCzH8XFSpPWEEh)L6ib5)?sHjTM
ze^f-PD5>Hd6)`G`R0%>wQL3njRk?kM&YgZ4R2Eawuvlzy6(v--2f5z54GmA-nX-5a
zk2CM8D5avjiV7-9t0<$Qtcr3f{#%;y)`j2t^10z*0zltDu%gOczLJW{qEgX{dtD$r
zxkXz-3wcd771dSR0t59`)KC#nQCmeF6*X17r=pgMI5A59H8lAkBLRP!+h$-_?)&41
zCy-_9s(4?;;vBKdo~J#Zl`-ad+R}sU0~PTkf{I2oRz-q}Inxpw5ONN(zaOMMILL@G
zqCnn3i!mFk_(;X}9I@0=F@M6tN+H5?Qx(lfA`Le+G*{7rw5K6jLz0T1iuo%3RMApJ
zNQI(8RS{OvO2ro{zEsg#MH>~LsA#7mSw)J9G!^M8QdJZ@#M+VtRrKng@MLCM_9*T$
z6bT9E87i2HOd;$i*%HPDf>jSO(pBgX*Z-#~+N<a&&UR4o8Szs*_H&hEd-ufD*!xKo
zVZPX(K?FOg^j;%O@{+DPtN4oMQqfzb42S5d;#(CxRCH7EwTf?4bSH)deNx?7J&c;c
zH{p1SgxVoCEjmw|!8}CtRPp^GHt!JYqoS{hK`I8T=%=E;iUBGHs`z7V%7#PSG>Mtv
zTMyH=S{WAv%^@nXR7fgh6-SS7|9WwVO{$(u6WyN_E_s->dOuxLp{w{o#g8fs6(&if
zVz>%Rg{{(_&KPr;J^eeyAsnjoauanAv(RByd2XZ1gX4Q1=95NL3?=0p${_k3r-on5
zNgJVJq>9lrR;Y_C{+)_Z0^z6jw|YN`!*Z;OaVo}>Xet&SW_u5_x1o}Vyd!Z{G`$&|
zpkks*`zGUO6_Zp<RxwS*bU|~9D5r{Y&Y_H}hq;YrsF*2Q2um3ogEa4(!)!sR;4Brh
zRs5>rH^QNcxn##OQNIw{kFdN}96_Sx5k{9P;_7!&riyu_f$9885&R}h{z#NN9buD(
zg%^+rDo&|5O+2euq+*MTtpt7*OH}-;VvUNWDwe7ETg5*rmJ<SV#I8`WlKN~)xp9z_
zBH#@=!U%P%$crn)Mi+}+P3k(r=8A*BwpPVD6`NFSR<WMqh7q?x#YPpokFa}3m^v(6
z^e7kh@i*b0ONA-skXO>rZR9~J_NmyfVuy;I)L+FO3OL1LYaL~~gj$*(WgU*PCZ%``
z*-M&_3X=r~9%Tnq93+IOI7WIN7Cxlnu!<u>2^0p)ca9@f{BV@bJIaoe3#%ZIpA-ZM
zPF-&#QP|urSURKPtcu4fo~Ssd;=GC*<iaX0sJN)&ii)c$&(lc5FR8dp?r<ZCY&16`
zo=ksD#jQ%|*Hw_hFAHkNwuTzKX?c^{Roqi?U&U>TCy|6ZD(+G!o7<>%@9^P!Y2<)p
zto`{C9uRu(r9D*fhyvO$E*jm~5Oh;#rFHy1{8Ys=x)5l{uHm_g7b;#05nigG<CUnB
zS~diN|2<24bCkVN5v8HzF;=BT8eMJcA7eQ*<kXN)Lw*gpH00KhM?+o>>=>IIl|aFe
zocF=iV6qYJag0$gFQB2IhC&**;CHK2DBAyUjQ#RK`k?gqQzt?(8j5JJG}szqH9$if
z4apjcYAB|mj)uA#ifbsLp^}Em#EFJ?G?dj)PNTehD5asahB6ut?EQyikjqeog4M6b
z7&+|DV~p-7%4?{gp&}6<8YaATt{A>>j1@f2s#OVAA+9t8G}P2kP2(5P>Kba$jK`BI
z9cN^q<m3FJMp5xS4Yf4HX{b$cczC#T{d9VSOJ39EI7gi#%J((Y)9{goCK~E%_&`Gg
z4GlHK6MGsGNNK6DKObkCjx&l>sblyJ00r0+Vr(M~jWupoYNR`>JI7g~hNc>V8d_>-
zMw4o2L1AA*q;l}-xI_Z{t!iPqYoeQ$+$Y$kBB79mu!dF|T5CwX!E-)u*&ix*f|0@-
zpI}6pDk*eILpKdyYiO&{15C8n&_P3*hI9>|XlSP)gG{L*Q>e6hrS!}bT)^HZ*s}Ne
z6ZlU>d*x!Wbfr7qye--EGYy|>_)<e>0z-w^jv6{?_<~5~<4-LJx}O~i(d;DhR~ov|
zEYov#C8Jjfk_e<&y44waf(@IM_Kk+_8U|_@q~Ti)Jv8*u&{soGGJ0~jmxkUNW}aZn
zPcXU%pn>%}1_<!|G=9bGuVH|O;WJZDpWvbR^yF601>1u)4AG!!&@|dt2$BX_gF*yP
z@@~W)-Bzud6ei#K`hJMqO&8J`8ceeFNiH}YU8?dx(efm7G`Jf6(XdK`r@`0olZKzk
zA{vHj7_Z@b4a0~H4Wl)T(J(^8NDbd<7^Q)LM?7Ddm`Jw`M6L5lHd4?ZtKoe;ah%3)
zx=7pPFXZ@SxF0n9s9}nRsTw9|n5bcrhRGV{h*6i?g|&SA(y;v`J1bhIX_&5I2B}Dh
zKsV|%3jy_!I7`BY_Jw9?n5|)fhQEl8hPfJk*YJl%3AOO6P~&eJ3Y=oKPI19^jo?zZ
zIK^t_jGd=ZB1-%zDAS!kwf|5*Oa`UOLJf;FEZ49?!(t6fG%VGyO!WNn6u+VU{BKT&
zZUZKc=72vDm1iYEWp(&(GIV-8(HVM*{d9`0*6^=}{Ti)o#TpH3HEh+eO~X13>osiD
zu!-o4TO%T}LD08mr)}1-g<Pyy>|58Se{E7AOgh{y8h2^ftzn0TorKIeY1_UDQ+QnQ
zENzd5y@Ua$)jrZj)i5zbftT)Y$v~@4v4a{8X*jFloQA_1j%YZp;RJzaG0%B>RKqa>
zK)rMVA^lYDr=8SrO2cUlX9QPo?Mv`3lM#RT6ni9;d0xW>4OcZ>({NG4B@LG~T%q6=
z;E}n|X|8Z`VJa($I#sR<YBxxb)2v?2;9oy;gWl3`o6M(Up^iHm?vm%~NY`;s!+i>g
zI?C&Kpy45fTpfjUJks!3!y64zI-Y2Fs^Nu(ml~c?@TYiKlF!IavpO$ZzD-2@O2ap^
z!k@(?zZSD!oFD3UnpKJoX48>fM{XT?bmY*HQ%5cxpLdG+{xn;ZKY=3Q<6MdK)RF3W
zb>!2LUq=CAKu-8ai1YS=ZCw%Z=;>%-9nm_9>nNckMn@5yNAIFK;-5sv>VWvU|1`UC
znq@!3HB(FnJ+G!p^)sxbj(0?d(xQA<=TAFJ>G-5b=)RHgpg+fC869PH{v<pQ3J&d=
zlISN?&{0uG104-@RMJsdM@=2?2?|woR2P-1I;!cEvy0!5$L&fRS1wdTM?kbBo?(l7
zrI40t>4?)&Pe*+nwRP0dQCBDbMLWUg%Xfn`e1NDg&5D~48~lKTBH}s{#1yHy605Wf
zMpM4!`r+YcL%m}t?M!?l9gTGab+pv+k&Y%hn(JsG`X}mWN&<@dTgKu=0@ycyal<9)
zIQu5|oz;c+rtqI39bp~GI#P6yEUk33*3m}Ch%@Y`GmM6>Im3>fVN|9Hf^BtttYfSo
zNNf;=sXKx%&#(*~OoyYx)sabx)zMc+Kax?$r#d?8_)1569UXLZ)X_<h`i#J!)7#tl
z(r3B7{_B;}=q&p}$8Y<BU+TE}C_4Qtqtv@}3^~iX=;*5BTOB=gbkp&*j&F2y*YR*S
zH}M2PfnH(!b(W31owVmH>q(S#%1w$sI%Tj)Awj%%gJe_cOybbvdO}ox9RqYoI%L7m
zKv53XF-TM{on;&U2oKSbMY3!N5|MV*!+FjzMTaUnSUNNvx(-8!DO#$WW3A7z&Q#V5
zY3I05-S%_#Y{3InJRQD{$vUR!i0BxqW0a23V(c)&jHnDJ<?EOrhLboniXOawCr&Lt
z$HtKIb$qYm2OZ-?<9Gt?zoFwrllPosx5TI)X}FGwIwld=UbZ9(bQpVrMb2|-@119v
zmBLeXOw%!k7}GIb#|#}m>zE}7&eZXfs8Ht`W80P*$U_!kgX*(&x*JbO6?A^l@vDw`
zI_8tfg#Z4o;}5dSd1jwyr0VIS+xN}W{uI;*bqh%3ww&5OExB42=~%2IuYr69mgrcj
z<Cu=)I+p2Ju49vq%{o?)2u|GJI{wjV9evzN;qTP4O2=v)Yjv#C@vjc@ku_wgaB!uV
zlscpwNm@_zd!=m9u~86-&y{%YJexTn<;i(QUcW`hRvr6v?ANhP$95gNbnF(a?jVfq
z5AM{_wgBgrR7V6!rF(Sj6^*k5|A#(mOC1J;f(LXQ(s7vldUEKXKuiCNNkuQPBRY<X
zpAD;p=~WSt%2g(OLdQuR_bKG+IHlvXj%zxu>o`M>spF!KOFGW!IIn}8{Q~JkL<X}*
z3jO@>0!zKXF6+3Wqu{Zqt2%Bbg(zeVyuc`+t+|qvusi97j{kJrrch63ML?qtw}f0v
z=J7XoC$<OgQt%fP=snt$3oNN_c*zBhjfWKcb-dE?TBoIL36FI=)$vSd?+LXGNXXYO
z;kk|%<T#<=OES>6;mN&H$_)^_(YI1D;Ws*>4CFG9+dwu0*$w0{kkdec8%cY=$cXI}
zth<oE3fy;r{nngcoAMYu;HO>VQc#6j@>6F6@diGm?|<m5fl3A{8z^ib+CXswB@DzE
z92Kz!VBm2eT*Lr*HzAXV6g5!H;9>lJ@09w%P{nt`R4HlT9Rp<zlr!+Ifl>xa8z^I-
zc0${`Gef`h<?)}6#}^neW+jEn8>k?rsA!<bMfO=ZNPX&DWEAmQ4#}WkQpG?`1MeC1
z_XO35Rl3R;sA163TBKcM-(D2T6rqV6p_YL-1MeHCM>7&xA#z>fS#)b!B=lBrdL8-G
zMONRy2L{$(WWVm@@%i{g`p_#O!9W88$p%skG&Io2Kyw2v3~r;w2AUX1H1LsuYdI6C
zrOfW6rUo8fWX%jDTw>)eF>0iPu7*hlf(F6{S{Z0bv*bz)894r!-=chciFLoks6x!N
zHqgdE`jcpKd1~=4aUN0)v^9`v;1dHMlb8lJTw;v63Bfajy680}IVqWD_9g!A^3mgH
z8hBZdZD;Un?xzN#F7r2@pBea^h}cNC(a}IB1OJ*>W8w<~UmCb<;EI9H2EH;d-@u;+
zx)|tcz&79*=w{$+1N{vQFz}6m?gmfL)Z4(f26`CiC4Nq?7Jlb4>q!VXkksrlmy2?j
zQMWz@`WonG@T_I|2gcmr-}+Cae0rG;G%(13YCtnEdQEV!fh+?O^}Ni62>VhdF4+K;
z3ZZLH8r^S?yv!C}X8SHPojPmb*mW7E0fR8Fh36McIreu-js>ZfK_BzSUB1j*GPi-L
z2BsPC4MYr#Gcex3Py@rLkAd&RENbrb;RZ$+_|f8b6y@}A@c{{=h$RDK42%_ha$I4_
zJJZTsVOQ?)M{o_VaOu7`@PmPg1}4#1(e1naNfSuP8o%-W{0gJH+{p%gXpNao!|8*$
zqiI(dRVG|v(+$ipFx$W!I%|N^#L@ASAVQU&4a^et`C_82SJ+$wzZm%4z#j&FHSimm
z=0cEOja?KS4(15I5tVsl-^-zi&EhEu-fw!s0t0^;*lJ*#frSPZ8CYdtwSmPH{004$
z29_Fp_mJfzLf^nL14FF1Npie)DRkY6TOs-sy~_R;XX(l3KL&lu%Xez{SG24nJd4U2
z18WUzw&G|niCp8t8w_j|W4DO2o2cF|ZnLNp<-$V}XyX9V20dEYZeWLj!{k;34+Fcz
zsQm_ZlaF+W-(z4e0k2}z;g0cZZpZGU4-_-PpH_%o_H+1;W@!fq6@uoLcMBg9jM457
zw3WkA1IG-UH*kT77&u|zw1G1eA-{+}Y2cIrVzO=f_zwyuEGr)-S<VU~=g7g^MicW#
zn%1KZv=!_{1D6Cp+utorf)g9vjuxWwDtWzuR1<AYTsLro!kUS)CjK*UlVY!loF;A=
zxJ_}=z!L*^4BR#FfZ~IJdj_p(jk!<km5I9YOStNpr0)AtXMGZUL<Z^@s6CjcbEM^^
ztYGM=foBF@8+c>jxq%l3UK)61@P)B;t}?rJm==xJ8^>eC^TmOls{`MZiHb6j%|vz+
z<2v!sdTB~3tx|l{F0kQQFqetkCW@GdHIc_eUK52(6gH91M1B(mOcXSEM4i_uF#T|n
zHM&)+s~q99h%(eQK<g``O;9~Xl+;eMQwbAAO}t}L!Wk4ZQQSlc6D3VF?Z6lL((>LK
z(L9{?tsGw5jtf=F#Bar;N}GHEDYes5Wh&_t;&LW^$c=bnz(fTT6;0GM@t%oFCMuh#
zZlZ>XD#Y!-g{zvVCiomyCcL{Dm%Z~<rnV2PDibxeRxn`lrM1*J?{Kh|i8vGWOw>0~
z+e94`bxpi)Qc@AV(v}v(Qh9q|+|YfYP`S|1d!f1yctHNZ<g0P#7UgUwm}p=k$wbgZ
zLlccmB$8-iipC~BGSS2YO+8^rAbXi)dc;8lIdLI=a}zCS>?c85L*4o7z}`gx?<!kY
zA=J`D$V6)sZA^qsv@-GcXMwfFqoxXNmuMd-JU^pLi755Mw#g<^=qx=;UmeI%D@aEF
z*hCt!XTmX&ZX&}(cN5>5U?wt6bfPeB;u90?Omr~unb6XwqHJ$sk)WUPVcV@&nI4YT
zY6U+x(b2@S_JQ+P+4HOH@MnQ9O>{QV#Y9)4-!AZ#2{JlqgP6ILH{8txVfAYh-<Tkf
zl)uKP@!Z7lEn&(YCVH9}WMZ(1UM6~*=xd^%i9UjX5nlxkl!&6KNvr)$3@|ZJ5T~EC
zc$Oea6{1Py5EEG@G!wcB$%Je|AtjRuuJN%1p|wdIc;z|-^f{p(p9MZB5oMS#O;{%A
zC#?a$ScrGnvYc036P}5mP0TXkn~0bgWn#36p(ciz7-3?hiQT0NQ~%*6Eu@W!lnCW1
zolI+czY}aP7#!2%8Y3`|A=sPv-oy{W=;KVjw0u0#5nR#mY1i0~CMKAeXkwDdSIQF@
zmRw^^LZR|K1Cvc$xyJtbnm0}n_?c>Any5?{<qT2I6y;B%q@LTZvDqf(knKz?HZj-4
zFQj=B^G*Cpendzno(V|n0`D#1>)*+O1D5>H?_OVHf0|fe(i=J~G*Rw4>)b8SYHS9|
zCKu?=^<24o;K%NPB_@`dSYcwNiDf316Xy#9S4v0y+cnVWI!nLKb^f=Be@v`0vDySh
z62f6t@zAMYm==}urSz*(Ki-$R*2Fqek%e&<)|=Qs4r?J`VWWvnCZ3phYGSiVsWx!R
z#Ay>-O>8r9(8M7V+fD2sE11}0VyB5+Ci-7zYck_Q>w_`l6Z4eh*4%4ipNah@4v@(N
zS97m3N|?NQ7e@{qO$KBfHgUwnaf))i_(l9E&3K(16LzHJ#wV|{3vI(EOq?|F>N*>F
zJs5j~-7TGd#>82Q+a_+BIA`KKS<1v!6BkTeG;ztqWeSY7`6r!iZ>Fv7$tk~ggH@y?
z^YcU3DEOPWL5MoT;~2Zadfi}=8(e8KZm?S>Zku>u;-QH<ChnTJXX3u#XOf;lD}`x|
z>WUle@C_EdJVfi4mxZGrk)a30JQjU!3Oa@UW6w-Hr=V>C7G9WmNx{=XZVRtWyrxiZ
zA%}%GCZa4Jy|Y=U_8(_}mg2Vhk9Gf#ulS~)1xm!`v~UQq@tx!DeHhMTA+Lo(77AO)
zXCc3Z0u~Ai3a2-RnfTC=Qb5zd{ZgF$AB(mSV}TM57qP(FhiO&jWHHN_kqNYpwWx(+
z7Rp*EXQ8--5*FUIP|89{K`{UA;5(v1E6R!BVli;%f2_2HGNQf41pe@OMfG5L3l%I>
zu~5|lEuF4tp^}Bl7Ha0=PqRr7#cy=+KfcJ9epa(k{wAw#A=gb#mg)^}vYHm&v+${f
z_7-Ych_le#LJJGEE!3g8EF@T{Yr&eHvz~?e7T%{ii>GwxX*U@y%l*K@)SE2c0_7(k
zaFeaR$xh#74J<UY@R5Zkg4;%<vG+rbMSaGKP~gvSzECKU)RGu%YN45hXE%9f<~?_k
zXc>6NJRw@rn`9wqA=N@#3oR{#EVQ=JhV)5x>=j1~!&{LNY32JZE=ZMIOv#>yD#;d7
zEYON$S`>eg#g|=|_OXRDn#e+?1xk*cZXv_MAKCM?6a#5Ur(0}v_B@|Zdnm1)g`XY<
zrCV&AINQO(XBGxo7;NEl3mq+dW1+i+P8Pnf@RfxwLZUB4+1bMUTdeezVDoHT^Ib(_
zHw#}|I2Xeg`<D`{DyXvg7W>vh4-0)Q^s~^@LN5!wE%dQK_?cRrUq;W|Vh?Vyg0~s1
zo34DD%h=z-01E>xP!{^8x7o?v2`HcZ>20=dRoW1XcC~|J!L=Y+kS*vI3=4_{)x!AO
zOe1bteE-{QPI>N?^94a=2uw1i1)BtE8YDVfMLXrXr#_wq-@*tBBP~QM47D)K!f*?B
zZu9&Agq$x+g_6$)qwg@PQ~&QQjIuD=!Wbbqoub9{)J}UTlD%r)VJ+^k@fN-(87<tm
z@PkEv9I%1HorMV&CX)6n{App5g~=9XS(t5M3PH=lOfrgvX%?nim?4N0*{}C-M;pI3
z{KXwUi*|?6ZZErX$No&da4tx@z09#N*TQcWekV8V%-#7H3%^>pCX&qGRO3e9VSf-d
zl7czA#Lpvav<x-r9RHi3w!p$)7XGoY%ECemi%91dmJ_ZlEU~bZP~AEH{jTvFTZWFw
zEw|obv>VI0J8Xr8l@|Ucg|7|2S0G4zUf*HyNx^VbaD)<0`6aa4!Ws)}iDs?jf63+V
za-P>&(2j?Q;q?}X6tP<CE|+MNMgI$M!oo=lTj-R9{T2>b*k)n7h20kRSlD4<r-fY>
zNZ9&f-<(V9xLS^M<<3sWUYhP=+CHJQ4tH7Jj`6vdq#dL<)-nFDg(DVi%Tnl&I6Lqz
zJ8I#W1=7ZGg8h>qaZWOl6bF~2kvOL;oVIYu!et9*M2B-0&J#kE@L3Dp_NI|67brM%
zjVIz4N$ui`DUz#I*Z3<mk%j*(+@vYwme(v?w{XM4CksR7`J{bnqxP-Blr59yx@F-u
zVT{aSf%elO5r&Ihd#Ex}sAbk&_Q1kJ3VJpw+IVE)F~wvXg>5{s@RVYLjhr@~S$Iy-
z-ok4NjCo>T2n@Uwl5P`pXw$AY7NTrqvyt8ASAiKy1|8eG#1khOdYITgdza<1k=w@2
z=D`9s^4Q30BcF}@qJPoFX_O?8gr$Y;wAz%`Ja*aNnzT{SM(5EPV-}}H+laAI(#AVB
zir9!1bc)-6jiNS++29)zwGI(-NK3>3VVJa6!saTagIeCTQHr|RC}*Rzji;p(%Gexx
z#2b~5gdpW@j-Nb1{)CE#6TwP0ZHkRXHX7TgVxy{!+BWLgsAi+OjhZ&zvr$8cKwt~l
zASq}YDH@J@EVo!3QOic04Vs0dqk}4SZM<(Io<`ZIM|$WOU*E<Df(T`vBxd$)2$7{|
zN2&xH4Qw<Nr*fznB${$J?ZdS}vL+$wBjVpi$VS*kqK&3DTG&Xk(agrCoxvKN<C~NA
ztX3rcvBhb#mZSx3THY9JX+zH&d*fCc;^f^f@g!_38?9}m3QlN`r#3c{ZKT*7w=~hZ
z#c3}(af!&3ZEbvPqeR#E4&}mxH)_nV!ECH_@VA3Z8=u&y<e;*Hb~ZjGZP@siCbiMQ
z#%LR3h^CFtZ49z8n4bUG=w#y?8{KVuVS};+cee4BjW5YSnZdLo!D(snU2Jr<(apx!
zHZ5UDpq-tIyMcdu#61>UMYqn%sCAEhYomvazBc;V=xL*ujovo;2&K`k&~y-=-&ld8
z*SHt2y%?;RFWBG402>2sTx=9Pl`S#p9_w(Ah3AF(-(y2;WZAH7I5s33vJJzAX+yE0
z5<EzIr0Rt5h<oh%1^#mO)L0&2{<_CYIxHLeSA@PAmV@fM?lISfXJeR+;Wm655gS8o
zjK9in8ZX}a--g#}&F}+1Fv7-28{gR&W#j5`-XXIwM{>T`A=-SLb`PgL$H&?jXJf97
zUx<i}?`=%AG0nygHh#1*$;M<G6NKP2aH5T46}gQ_UFU~#-lmW{_YIQ<NK*Pa-Np>j
zdA5z2Hh!}4vyE9cXrfvL(igAfUO*d*Q~By1tF|UIM|7^@1<p8uUv2zmW08%;WH=jt
z*!a`N0vq!L^Yd-ECzA$EOQWs2i5js%I{(YYLUPsnjOxTgJCO%$iH)U%9~*z$SY~6n
zjTJU1`SZ`c`J*aQOWb`%d8GGW3H)PY6){;dcFpvhY4;gXCQb%@9>2!MS{n~3d~wdP
zo}{*M+{OkQ8*S{ev76k%#%3E^ZEUk~u23u?jc9JM>Ahrl>B<nHXuFLaHg-~w@d5-h
znwpeG<+u0Q9vgdY9I|oP#y&ExjRQ6g3RP?>kluS0*JQIyPB2HlVC!B9Bpt!yh>fEJ
zq5JI5NZ{3-V5S{7VdEqz$Hp}qr)-?Iae?4x<BW~7#FdTnWWHhCOw9|Yd^j}l-O#|i
zvcWOmw;}~zvO!W`wsD30t8$PsZ`1zu)RT5p|Mfn*ZsP_i&Bk3D|50GHX@57|CZ~AC
zQ((PAyP|)|U7%rf3R@Rkcp~W@AvtHB`!*g3Dc*u)k?8z$<KSZo{x%9ZDD2=V1%JYf
zgIo@t+jwCk%0V^<FKxWC@!G~4V(dOg2yMu||3MO|>&SgZTg)#i#@Wm6Acw>Ax8J+Z
zI{JYec{uiRJILekYeWGDc^%|)Fl>2Le$n#C;y53Bp^X;~limtC+?{Dtds-hI?I6a%
zI}YA;P{cv3gJKSfJAi|t4(9ek^#_a)+hS3;@B>Ef)9e8&;XoZ0DCy9BX5h02Y{&!l
z?%iN12c;d9cTmB>4-Z%w2W1_Ub1<t%2C+o8BRjsWR1_?c%RE{XJ^ECrpPx|0K~)C>
z9Sm|%%|UespHQH4P{TpM!AB07IH>91JqPt2eBhv#gE$9u9lY<Lwu2u##nf>q_cBM<
zA1BkOGXDXq=V0ZMXgcT>FdeiAE}rIfkl>(!gCh^vs+Q5T5RA%(4#pl1HFD5cF!uBT
zqa|ZRiq2AdqJyRmS~+O#pqYc_4uTF^Qs*McEgU2{2tQ<a$Z9`iqhgW^7D)~{7|=30
z-`=FKpq5xLq!&q6tX6FtBs=)nL7IaU2dNI)lAg=OuIa<)qLp`4mYfr&clYTIG8`}p
z`wnd<8n4F&GhYPF!r{_lJsq`leaJp_(B450F+~RlpE>B_psRz=9dvZ?g@Z4tu~W>4
zAGEP!lRG&u9<rl-;ya7}15?6ZiOL@j+4_f!7Q4~Z-9$@w2Vav}MZIQh^63-~wr|Bx
zT0BVgo(_76pS>OQb<od&Uo^RoXgT?i^%oWDHo(EdhrB<{Mde@zLmbR@Fvmfb1IfWC
z2csRx4ipED1D7;hG+A|^6RQq12ZbK7Q!)Hsz{8F)rUT1?O&VL7L8hceTBS%O8QLQT
z2<HxlJ2+h;IpScbgD0`c4TL_a3_M~Z$l?RyM>_b96nmIQmE=d9w_cCfxJPUZS>M5Q
z!TC4`;~h+NFv-F91Y?4hg9(Jmcanb-L+0L3YFUgMbn_#2`w^S$V2XpO4yI9mC9ddW
zPL{xP{7@39uFhjd9L{hs(*bGkCkH>1J2*J_XZWpX#MPP-oYlDw?aqcJf`?xn{N`Yx
zgGCO0ckqXU`40XR)_g1bJkgD;M$9a5@Ynz8{Ff@}gb>0HL3;O+=*9on{-7g&?7Y;$
zG6%~=BcYC3R*3qUFEjpeu!`Kx#iuS-JNTEB@1n4aH4fG~xZ>cdgLMwpJJ{=BpMwn!
zHj-=ii`(U3lY`BozQe&52U{I%bFiJ<Bxi_Hr_w>|&3`|{^RhPR$r0XdP|QxzpIUa4
z+FzzEj!D=<PV|@+n31&K!2t)S$dsfd2ZtOSb#RP;{g_dX+{5Iyf@iAJAwOovY2dS@
z6An%~7$f>@UYaVs3c2649kV}`l5?JMaL&Pb(&1xvme4gjwAO2N!NElbmmFMnu%Jfp
zb&cTcM?o63<1st(Ds)!Rx#r+HMPmoA9Ncj5pMysZ9y_?{;Fg1X<d_a_JGkRuagX@B
z4$_yTmhTx)b;^!Q8Bm`-X3<aB1A<3P!b1vZPdG5>Z0ZyCgo3}2;sv34I=>rvMwb9$
zW=hgGPna%xQZ52&f9>FngPbmMxjd>zxybJFGzC=8=F$^F9#`qeA<oi@@7yl(xX9-s
zzl#ZiPF`_p*;#(KQ$W-Uin8r1{tW{y!KUpLqg}+fsO_STiy|&!T~u&U(dBZ%MM)R$
zxF|~Vx+pFh_dQ`HT>SNfjp`YH2<g=AT^FTXlygzuMQImhT>dhptcz8d;gw5Lw`~be
zpOWM(;SSrnMzHRiwESAklGt!17nNNET-0<y?NwY<b5UK?tGambgbm*oqMmfB266S2
zQH4g;e9GRVx%$P$xv1q*?&X-&r!3F3(7dhTu1{HA7w@|WQoD<KF6z5z;v&(-2QK1W
zG;q;S453jUx=5g@pK`m<p+9Afgk~DM_{ha%ktBhv^J*a@?U9z6x@hK720tXZs5B^s
zVBFm0*qiW_&0ZLi#9nWG9!HZcLe%b}t&5Lcv?6g_B)dov#IFsESsESN#s%#&NcdbW
zQd^|Dpo4gzbOdQG(nUSfMTQF|PQ5*QdUJ?6yyf;27yHHTknLS`a52-xPcA-l@wp4b
zh3TTBi%u?jxajHP3m0Fy_{OD_ytO;Kn0~fV7ne57qD<PgzjD!cQ0<a~YUdtQyPJ!l
zgKB>*I#3JMy-(QPfwjAfmTz6q&nAOv_j1wOMV1T6MIRdOVt|W*F8T>l)UCfuDI6R8
z`IIdjRQr=QZ3np+>|%%usuT0U8F579(?PX2K4sL6=*uot7n<Nl5hV?zv$~)|{80Vm
zQ)aoaU3~B22N#YD*TqN|-w{_Xd>6x940mz=DT|O4E^R>1s7}*S`L<5&R39O9OO;VB
zM!Oj6Vw{UHE~uS4P)VI>6qV!uukr2AAIYIyOm#8M#Y7jA1f3~@CQV0uCcCgI^Q#q&
zC4$q%@EM|{MxsWO(iA_tnB`)Ji=8fJyO={hLLt}1To=E%Sn6V#i(g&*MvmrU2|;&t
z;i~&v)A73tD*qtw&f8?3DCfKQQ&bj+@-I;?6eaapL~i?xQKi%B!p#H`sw@`-SGxFH
zP+K85$NtuDyWRRL`X3i>_VMZdrQlDRcd^OES{Lg?{|y8xL5g~=7xbxTl4#lNVhaJx
z#dg6!^6J7{#au-BEgRII#!}~9E_S;(;o_u=JuddTIOO86i+!Z4M{)aI9B`3iVf2N(
zDfIK)U(xv&Mjs?~<xPp(n|j2>Q5VNVPdZDdsC|?YL!FNk0{5m4-J5#K#c3B8U0f2~
z&Jgx0C!cq5*2Os&1@fiPPdb+8O##i~f+|GnGR4e=(N|qub3xRuP-J+<sN4VNfhzyG
zxJe9;!M-uL<>EH+KOB39<Bp5FF8+()W(4=h&;%796MZ~z@zBM;9@cnx<l-@TrH4))
zp162Q^gX=i;hBr)6m>nsdU)aDB_Ys59uKcvympbzLv{~u2&e-BpO%b@@{qM5@I#Yy
z=?;(QIXnzJRVb&2TpqF=4uqevXGeG_8#6f2<r&NCA)kkW9twFVxhIg{!-#Ex0v>Me
z5BxDOu<&r8*txXA6`~4zi1z5O89qk(ne&0&XVbRs<wVS93?7PlDC?n|hhiRz6CDrl
zcmnN3`29l(52gA9J{}Z!mnt4gdnn_f+WA1I4uR_HQlke1CO%{SjnMpEf#>DJ<vmpJ
zP{l)44;4LB@-Y8msIrGcXM#&l2Id_LT-+0QIv`MJd!U+!>K<x%2zZDb2oP5{w*)rz
z4lEG9S?erkua<{64=p?-d8qB7j)w#f4LsEK@V<w54_yxi>UpT|q4oB_2ZHCV&sgYG
zV0XK~)RRfky8<W6M|~*T3nARlLn9A~9wm|B(lz$*k%uNi+kbE2)9pDEFxSyPourKw
z_{F!GhvptG{24lXBv7qifNe_+dT8k(%|p6}kcY5`HXf2awDNFXu-)3j^JnZ#-$3(=
zfyblcQaq%3XiI7*RyPN<{`6sgK<^WXea=Xq+YbfW?FeLeU>-j8(B4C)VC)kQ?Fde<
z`5i31Zl<ztzd)(Ofes!TN->{#_}l}I1R7W6foRS?&iRPHLSK0J(!+NiMtSJ$;VTbA
zNHh;!Xlf6=JoNU^&BNCodU)vR;TsR#J$y_0Cl%2Hii3fiT{5B%2FRe3k8(qh$n~GI
zg(ai<c<Ae40O8O>KM(zhPDwt5J`Y&7KG5zt({>8&m5dtXVK6CVb71gumT)-q-E$^+
zkUiKQ91n^I)r0QA@UZgv|E|cIhmB3rk3454F<d^%@^CpO_ROxpm?PYXGY<w_51xmi
z9)@}FJ=B}qrcZ^a2zBlqIN2dEeRIIR6&g;k7pfac_}mo8j&x$L{q@kw^MTYOfzcku
zc=*M`uO7yF80TS{hv^>1d-&eNBoC84{NUk74--606m;%BXa2RMA}`pb4O}$hgcP!*
zY}6ESb}F%Pkhj18g6-ZNnBifjhglwGd-%!2k;=(s_XmC^PPT_;UP#KeK0wHy<6$nr
zrest{q3xVilT&DHyTETAe)q80!x9gFc$nwmFAodJYdrkvVFCGUxu~1{xKa9E;B4q4
z!_n1}7f~cxADCPub}701q7eDcQV+{K{O#c%56eBQAPswz(v$xq(ChIq()|U?xgqfM
zRA7~d-Q}WYmW*2M;jQ7wi^;*)dRRv;>7#~^^&U2Oct`<_tm9#mhvObjc-ZV=i-)})
z_IcRqVVj4Y9(EBtrst&Gt=m29@c16P)(igP>6aI5{R>7L8SnP6hmIj}$6s)xYt`6(
z4+lIPCSB1iFW5n$)k7X=SJp_K^dgm$V_veO9*&U+<wLaPE4`(9|0O%|BVW;Q(!(ha
z*F0SJaN5He4;MXL@^IF}IdVgCSV4`lQXe_ZeP`_0Fy$X^^OCc4nS3@q{)&gI<P<O2
zrDvgGtN1fIdK*P--yr5a-0^T%P`K&gmWSIO%$J;PdR0wj-Cxq=&f$9mm6z<khX)kr
zm$DTrLJME=9hvuS2|f5U{xLODy!8>|<0%Dy4>^3~^zod6KgD?uQ9fQ$@b~aqOteYR
zza#QapAvO?kD1L!cAsaQ_Sc8+zhsMAgp5~7xqRgIQNTw*A9;M_^^wm<ejh)NPt5;{
zvse2SYyFB%6QnK;j4wo{%$BFH&%+%ZZ7(D>|CisN7x5A6qm+-*KH#IMkK#T`_$Vgo
z{nlkrpU$tC{fd?JG3gb1$H%*Z2%U0srLTX*D2MRzSFDVWvOX&LsO+PhkMce$_^2p)
z(!SNS;V;p7Lfu}obrnOKN4BcsBjGix>Z6*^bC1)j!-2CiXlv}+`S>H9fRCC!I{Em*
z$9q0%`3U-G=_AfZZ66JMH1tu&M_nKFeSF~KeINCFjyJL<Z9x2BeweZcr@v<L#DGuF
z?U6txSd$u=9KM=^2Lwu)PJ3H7^3m8wGat=;eB`5vk3=6$eOjd(o|qZm_cf!EHvgrZ
z<Rf2m{#ytuB>5aO^mA8pzAHBYCgdaRBf|&t(aNWXY)By@KH3QJlYNjC=p8HJ?X5Z5
z`uNyKnvZni|3GNs*MV8D8NG<_<~3SsHzJ&`S(}#W;}ahpe0=7kosUm_wD<p)Yx<wp
z><_W?HSuutHTzu5($NRy{ic?R;uRZV@=Frjhw4M~@s*D*KKlCT=cB8SZa%*C(Zk2r
zKECnM-3KvA?`_xi=1*Gg^+}l1JC0cG>7$pA-ah*Hcr7$QA`tv&x8mY&*vSiAqW(Sx
z_{j1h`55S9kdMJWhWH>aX!Uy<Wn=97Ln5i@t>Cq$b2pTID1zsfL}Yh@+dHn~8>ag(
ze2nz*oe$H8<-_+8@nQRLe7HV5s=r}#->`q*u%mCdIqtq;uWlvfjmjMAW0;TOK1Pr`
z+-BvYG6|^Efj&#1a6y%XsLWA5M*A4=<9i=te2n!m&gXC2=Zo}=^!}Z?(I+2N((!}O
z!_<$Y_NdGf$AbN$GO2NrkIAI22)aiw#m7`1Q4wT|V49EVKKA+8?_-9KnLbwf_}j-%
z<cvP%`IzrxmXFy!e(~|Ek2!?x9C?0=%A89>#s@}3Wm1lvntc;~^YJ^K8X5S*$0ji&
zrBb03JvFAbx|R|C)5iiIi+wB+s{4yH>|+s$vpQ5}bf9s4zEv(|J4tU4T<T+)kL5mA
zP|t;_C!;cZEKJRrE%QK^jC%!xWwK?qzZm?-$0{G2eQfcu+Q+{>)=_-$u|^OtbRlW2
z5B-ba&p)Kmwy+;&%iQ2&BSENoXcK`pTPA(?+dUiC$v>UglrMr?eQfiw%g1iARJP3R
zK6d!nNv<>^FeO{&nrxZbnujTw38gWiWHNhv?Dav}dnm(9a8%%Tu`BTb9|wJ0_Ho6>
zAs>f*obqwn#}UELaUUmq9QAR`$Iv3_N3vx;&X$SnnK=(8U0ob~QuG-yI&iOW`WXrl
z*)z}iIPc>u*&<u)w-b3(zu@Ddk4t3wQGsq7Q-7KjE<A=CdTxW@#(Kf4KCY2-`FQN(
zx{n(^?)bP%@r3-{$1NYX$*;3#Qs$!m*)u8A&e-gkv{^R&{5^Z-Js<b!&fmvFAEb&K
zBNIqD^hq$uK0wVN%eLJcd_uwB#|sMeK8jEZAi?l+ACz;coY+?Tc)j2&axn@EYWf>O
zh}f@+kT9(e4~AI{gV`g<5y1x$#7B@bf?N@lilB4^xg*FEK}-ZiBFGy-z6c6OP;pcs
ze*^_0C>TMZ2=-^syqZ0eK8wwsBeQaj%)RZxjWmw-QVoOA5j4w@`Qzk3Yy^m)cmyRP
zC>jyla7SR~$n21VTbYg(qXH!(ARxUH!MhR6%8^M~lBm7knGjioDrF)lO9LZ#FM@Ir
zl#ifF1XUxbK>S2dDT2xoP`08qIWiCD$fQg%%`Wm=5yC&|s#*lqBd8HUAcChkxH}xm
zpQ6XNsna1Gn=_L>FRzy~vsMIg5!8*~{RnDDP)AUsJ*G3}XN+5r+F)%80k0l0)*-Qe
zgeSI|93O15FoSaJT%vTi5hO&A8bR9#8br`Af))`ZMQF`0593WDNQ|Iy1Rq7vJa0My
zwN=i{e~s|<f+<Z&KhzijZHxSM&dfuLdHCuvx)nKQFoKp5w2q)n1fdARq^>=zRRl&(
zt}#l1McX>h5cLX+q6uTk5u}Lej_nKW$rGv*|Nm&Z4k#&#CVb?~9ruxQ4ht-KIXHsK
zExUvRj-v(1NS2&~fC#vg^N>LVB#455NDxH9ECvt*f?@zgQ81t=3i5w5`oA}?Ur$eW
zb#>L(HM>34UGaV?<fSkyh2bg2gGPP|15+53!hjS+3OwNG{uB-u7Cb(S1ex|~+`C+v
z_yZ{nPGLw2LsNnK{l|p^%?@<C_S@U%kFYyV`4M4952i3Wg^?+Y3U8k*mHSz^6Jbm$
z2<AREg>fm2eJ#*JxgsK3L<}q<2)T*Watf<bSe?S86eg#zEQRGMOi5vC3iDG~kixW(
zAREq3VR{NPQkWT*%nDO$Ti_j0sdNC{IVsFdA+u2CJa$(%jsD@qp9!$XYhhS<NeU0A
zu!sUIlv%h?=HjW*#bG%!kEF1a@|hN`ITeqlU>_^{;*elHc|{73rJ$vtr;rLOE2&^p
zzZB+WDq?To`nx;a(5;4r?3yJ;n0He!Q?SCkor06Xhkeuk;YNn=Jdj4YaW4fw6*$iq
zua~(p#nT=#T1Z(lW<}Seur`I`DZE7cpThbSo=)Kz+JDwbVQUIcrto+Qo2WbDkaKfx
z^a*NqakNU0_{@Q^jl*IcmPD^?D^z5DH21gkZ7FO|VJDkB615g(Y?vSXKHot(7YXq5
zR0_KY(Sfm4czgcm#O@UKr0{$S2Sd)EO<`XO`^o&&ti36&pZCBAJ)cYAoo$5<aGE?-
zND9CCP8}W_kdt?al4Ruf6kbT-<&A|8Q*_w@sE(#^EQJ@TVxETaVS<G{KFz5#Gy1_>
zefE!ty_~{{6h2PjlN3&-@Jb5rrSN_Vucq)?3U8+HRtm4D@CNPAw5%4trE?3wi?gEp
zZsv3tmisorNoG=bm$PGV?8o_0UOQ(5>C7cryeNdzG)?56Q*sF(#Xd;kYzjAqWU$UJ
z)1r?T5p4KT3T>8URp}l7X+-QC=XDBSrSNqM=To?l!sjVm<P5z~<}*rQLDoA~Fep;{
zA`}tj|0TJ7K1mUM_II3HATOnGIfW}Jd>2-@`c|KBQusE-jk*C=u{euL|DF@DXZ&gk
z3rEB#kcmCw6v&#%`PWjoPV+0Hy^Nny_?ZxrU`zNVg<okpBy^E*gE*uKl~7s2?<7lu
zETN=?KWNrcNRv=N3RYilrSNwOw^R6w^F3U2<$~uOqUek4e^R&`7Lp&XF1}nua1oVD
zwFM;<l7i*jqEfJmTUbI72{reov*gMb!F1a&yG1bx#U(uZMK()Fkk$CKl!USp(xsrI
z(h|x@fyHB<tF;+Yuxtwn<t3DpkQqLj^?Q_$*qqh423tWw#jr=-k_|52R*_IuLPSDS
z3Dv?TwItM*P+dX|3HfKzNV8^G&f&0C9SL<MG?dUtLOlufC6Gu13G9e$Fi&ooXUcrz
z@M)7UW!pEt$R;z*Bs7=MMnYQ&(U3A9wUp2z%(D(}TS;gw@%%<Xn!K$Xilv=|ED0SX
z#8^`T7oyoqfiJTunT`^&C3FghMhfhj4Y>-<w#;;uaF2ws62?imSHgW9mxKWlx=F~9
z&`Uz^P>*p5NeMk9beE6_NpT6C6s{E!Jws(tj75tE)A@_pEpjFF30vibX<rHbBp!<a
zRv;vJu^N@wKYU8P3kmm27$RY4$oW7C4}|(6^Mk??YG-iRDdkK>50fxl!YBz3lIH9d
zBSIOD{68BUAnODl0;B+DV+hf(N3QTwAmb%WkT74u0tpi(JVYKOOqVd}|I(f!VRA^2
z0wkZjrb?h{n3*AAri3{X=1QPcXN4@y4jZyl%9aez3)Rg>Y|av<3ne@(;SmW-B`gXn
zFAiB^FaOeC5@uNQ(Xd}lf-YfM2xBt5T*3;@rZ2M}3)57XN@2=ES%UKayc*JBA(3fF
zFhlm(#lIgxY7`X?r7Gc)gv$~<3BH8m5?+$9Qo<?;PfK`4!fFX?Bs?KuvxK!0HhrG6
zfnt=fPQv<-{^9g^t5DHpOJqJSp=;U9O%iu-2aeE;9sfu9_!bFUC2W_lLt<1-bjXWs
zBXWw0N5&@^@17CWncpelDG9r%!HtF8MOh<?iuM0=KRq+b`1Pc-Tf!a*ha?>49G9?H
z!T~a~J$s*o{Suy|WaxxbJ@|d{`Hlg%OJ`LIqnJG};b6#N)3Ujx|B8><o_$2Z3*ius
zNjNHjHCNv)`t%>^-lDErQStNVWnK*HSN}HhvV;>7KIXKNa8kl665f^Yo`hE=ye8od
zLMvo|;oV;+X7Xa2-VeT2y(Qso38y5y6Vh4MDfxGLJhHY=j{}L4a@O{u;+%-TFX6O=
zvl2d}@NeXtk-)+a2*2|2_kYSWO2l70nE#O!crJA-Sd8O(wW#2ua}qw4@VSJGA?5QD
zE`+0Iod#*e28sA*QV_6y*OkES<O>O3O8AOq`KP=JYtvS5EPP={;=LtVUz6>OK%U=7
z_*O!OjB+xrNcc{|-;{=g?<HK7@GFhEgdZgQNJ~z!NVq29I@_-7`cpXS&x?w=CE|CN
zM%g2&(Fy7o3AOTKRMu~7BH>R7w<O#Qb$w}Q#vc;4+zhmXQpuBj6GcV9!(XA?$Zg4D
z;*NxWICEtblW|u<nv8-n3dw<53xw&>BAI6f#BaP9FDwTLVe=v~KFg1vT^qoR%oLYV
zLPjYWrTLN?6nVR3%qWssQpOKclO*zEzgQU=Wo4xEDi<FeMi6N5Ua$moZBi^#24vKi
z(LhFd85LwylTlqpMLED&Wf@guR0_$yRVuNqVDem<Ov=2fjNKXW2E_#F*N{<DMr|2&
z!fLhTz&oyAUhsphS202P*OgIE#vgUFs7)3=njWXP8p>!SBPyeX%oCHqY7rStLkdk~
zOehxAq(YmqPT9=nGVb{~Z_-bB^g*H`TFPi82f%A5qqU4SGTO?4Paw&1u+#|KQu|DK
z-Po4MlF@-8RZv(#M;X~N9+$C6Mkg7aWlWMWSw<HbU1bOv_p>h<_sZxgqnC{PWOS3!
zT}DDi4n?sd8JB|(vJ7>~$e}#I{IMHx#-eo|&q>PYAqQX5$5-wzQ8G_PddtX_(N9L6
zOz+>UJ~H~s!FS$G#l(rSiDhQr7mJDhGV)nSu~$z!7mk`_&qjkG^k~?BAORp_6!k9S
z0U3j343jaOf~s9;2vxHsGL(W{pS)8{G$}5+78eX-I)XzeE=I~|R-o(8HRC+R{fB<>
z(K5!!7*D~<7%K<i1IEcbEH}!`wBkZ3F2p;1Cd$}ST#V|S{*a8zf9I@kmaJAO+1>9k
zMaEQ$SB4~GnvCf(7Rq!9!weZSWz3N=SH>(E$BK*Dq58=An9M}UtMT;yv3XSeFY);@
z7RdOZxVTt1eqe7NT@kJp7u{MW7RgvFW0{QQGM31AM8;AXkIJAMNvRT|ZixT`nO6S(
zhW(QzM5~7V&lJpDA>%Pl+m&gP!l!DO$}$ugzKoSJR2iBKONK4u$r3`BVaPB;`H%fO
zXX40YpRK`UTs|u1$Z%zNG8nu0^%7#=pxDZ#!Hnj`lkis&lQP!HjH1GG$>>sugY`1A
zw?}wUu&ncTt@s8R=O4-6NEOiEW<w4=ALy2_=Vsm$GB(RNO`K4qGPbg<j6>u{#x@zx
zaPG+1E@Ov`T{51Qu``t0Q-sI*$nEjDUz89GB7CcaU@+p+H40_S&S<_XxktvcM3;=`
zWbEZs?VH>u<J9FYjV9#RDJd4zjlWbW9*CC}Hb<V9QKa#JanC02D=F?D6hAEEh>Vjm
zUXk&FjH5D+%Xo<@lkp;_!}bVc{&sk~4`sr53R;iE%OOHu`6_Wj1_J>ws`8YQ;(X2c
zt1@1b@izOVj%2(c<4qZFQ6nYA<0S>7POmB(G=Jwx&cTvm^VvS{$aq)Adotc<T2eeZ
zHF>q9AjT-Y9a|FVrG(Kf?*kcUWn87PlJTL8k7Rr$<7*io%lJgb1sXaT=VW{;V}o4i
zJi%Wm5dP^6-0GM&eRtlP&5_S#TqKxfd>M+d(6|`qT8Ya2Iggr_65UFPpDOjgL~FAx
za#_YVM6w9}hki>Gada}imoc=IU|0th5@w4^1?;U4(;sDAqjF{ZDdReS{L8o@<2M;U
z%lJjcuN+q?L6x2Dn4}htloEs%Z=3B({7$l^#LZB)XZGfCmeKd}mW;n>;bo*L_*=$p
z8Fys-L$hC6Oe)Z|R%t;+?4OuRT(v7LYHy9)Us@DUK*yVc3K+tJjz%*}2fP(gP*lML
z1rrq%Q&3z%I|VTXB@~oYP+LJA1*H^}RsaR%6_im>RzZe>athKF^lKIWGnvlyTP37+
za%9<^VJ1_-tEEL=<#+`J6%|xfP)!NmCY2OaR!}9(cmFW3OW&3j|CAP+E+(ogsG*>y
zf?5iymkD^|)w+yGlo4F#cTNYD>nf<HpqYZ^A%*%18YyV3pn-yhVabHB;gz#FO%y~F
z^f{T`G%SC#jMx<(q)b-1mK#;jLP2W<PghEtJ{Jd1MOrForC@UzaX6$fZ9;w<1#K04
z5Z?aqFFy*h6t1?RpMnlF{tCJ&$Wf53pp$~G3hq%*pseT|_Sl6ZEi1TDYiR!%w?{3R
zAH7%MxpSZd+LRR)o5cH;730f_xPtBqdMfCpAVHc_qDcikSaVsgC1u5xR&mA*Jv%(c
zw6}uwWkoIrrQkOa0L(5NKUh{&U)`0_UGo(5S1?q;Fa`Mv1}He(vi}1Lgo67O3{)^k
z!I`q+W?7Mu9?15b+n4`R8>fqI>0+>gAtBF8HxC$@E^eNT4_7ck!59T&6^v9cO2LB)
zMiT}iYV6EgoG!R6>u0ww>1=QC-&*&$kivKcr?=!!{2{Q4Zn}6#!6XH16|7S*S-}(q
zk10qgn5tl!f`=6>QZQY?3<Yx)%u_H^!7K%{70gkv@%{ma(govtrY1*gRSsgglI9{S
zS)+4&zJdh`7Ao*wO5A%r&W~Big;8F_+hPSv6g;Y6nSw_YELA{!{vHllKAv|z%<x;-
z@(^Y#DAN05b&uv9s1-2GOX3_+U@DLmC<;^sngX2|&IrK#Z=JCh;shA;mI7OWuVAGD
zhmc@&NV3FMYL>h_D=R~ATjh5ZlZRR)S1DLcoJ`AF6H19PACMu2?hL+ba5vm~1sfC`
zRB(u+R`9rjT|}mWO$we+uuZ{sB2&Q@1zQz7$!d+`3o-;XxG_WUL)bVypUj-R8sDK{
zr-F|&#8U*-hk?Y1_M;i1UX5U7^%(`b73^2=oPs?Ho>j0{!9E52_H;c%lr9&bf}v4~
zwDv#d-Mb@6TpdvGJf~Rrh_~Ew*rl8}tl)@(S2)2HyrAHyf)^DWCt$*A89maE5q_g%
zt?MRVQt+~Z6ADg-n&PLlh2_Mc6<MoEq?{mopOzD^DR^DMTMFK$g{j^94F$iK6K@i|
z<pe*EcDb9Ao+(Z#ct^pz%74*vPfZRW5zQ1I42dT*#c2YYGeXDjIzCWvmVnnVP{W4`
zKB6R5Jgwqm1)nImSH*oQ&MEkm_Dw}e73URPpgm-B1)nMST)}q=zE^Nj!50d?R&Ytd
zmo%_*VqX#b;UNrzrbIa(XJm@Y3cgYBt%55GE<c*xYJPH6rdZOl_aU;BDR}$gk;GMs
zSHX3<`Y7}W?e$}*{c8%YW{QFkjH4>IivLU`KbHNAf?vZrQx4@WIGs}!;*E8|yXkiY
zHx>M&;I4u{!sfRW{KY0EGXGT25~3%>-<+xtw-wx>F%P#nlRn#WS1gZ#B*8Qlg;W$)
zQ9wmO75qrOhS9>qE%QZG6jf17MR7IQT}v<&n3JSc-wVOp2@l2i6|a<v(kkk!XrQ8u
zin1yytEi&lqXq-gRb;Aw%9Hj{PQ@t*7P9MaA<C<$prWFRN-Bz!7X)pOd*VzBR!TDE
z460UMR8>(;MJ*MzRa93|Lq$zBkhb0?*==e5J>|vV^1(nD>9~%H(S_o5Rn${4r@Sb<
zAnBAByUUBO`{ce^UNltEi2SQ)tD>=rCMu#TTBwMqXsV)_isowY_W7#3c)UQ@o8?8>
z3Zh*FF(o_`prwjdDq5@fyjCU+=|{Wraw`O#(*1z9?Nr26WUJ^z3M#TxbWqVTq{iLo
z*Ty7^?8s}*&$}-qD~Q;X3Zk=$E-JdJ{AdNKg4kL?46Kx7?Bkazh#n%w-KpFr+)YJ}
ziuo!QsEDiRu41T)VJZ?Tk}C34^jFbC4JKwU6}?qdWw2uvd>4?bTorv(^i|PM#f1u@
z*aPv28Cic+5NAduiM`QjaSkwF#Q+rpRSZ%gR4l5N_(myrzY0DoH7}V_Q8cM29#Aou
z{oY9oVR!H3Fk&w;oH(3&Fbq92T*U|#lT}PnF;c}S72{NlSMeaVpkj=Qu^eMXF`=SZ
z9;Q2w<vmp~5ZWueRWVV;Ln<b5epL+McO!hnr_A$W-0-O?rm2{vVz!FuDrTsd8H%(_
zB|*@hK9<jFzlW#F&rvZ~#XLf{NwVtf*wi_}&n<>CCNdi}O)gaNunJd&$6=~itRh9R
zt5`z%{|s2F;!!n>1+1cBB~kIm#4;7jRjg3)81dZazmul!sU#k(6fn<AsU&0-3R|f#
zRa$arDj0TIS3z}esU&W<=ubQLLM6f3ZK<${d~T*zd9HqZ`Sth@!voBmtt2=NeHANJ
zY*DdQ#VQr6RcuhPQN<b+YgMdMv7QWv$5PcfmGgTgL9tLlH8u};W_kAGDmJNjLd9kk
zU&r%Elbu$qESPp^(LY*QjDI-!B$=EP-L7IsIL2+nOyPT2VQ1mYohs_KO+2OI`9A~9
zFa&&&wuxs{>{juQin}WIsCZVzCp3mC_Nv&Y;#C!|so1aLITc4$98+<C%~iZW%P=f<
zP{kn?hgBR=(W|oHc1V)_@{c(8Dl#*=vRGI-5McFsi5F>Sa^f$kc$pFl+g^Jx*l>Cx
z)bB|ZuaM6%K?yH5fAgK}Kl&tISMi35_f)*E;!PEA(Hd}@7{OLqyshG!{mD~gtW=VF
z9=QjT{Jg93Us4wLb+YiZiZd$yx|{Q1*xd&za;vAEB_u*VS-I+g{EzqwAmw+mxrcW{
z-{4*UDZ$A(rQ$ozBNd-f*9()EXarPTRPhy!+kL^N<}Xx`|1VXP`XPs1uw++d@qVey
zuQ|ZV;@F(XWwOWKe@c8yyIM4pm8W+Lwu^qR;;M=pDt_ZcR`DZIMEm(={F;jEDt-#3
z!B%I&Qx0C}7H2TrPqrj}QSqx9>}Y<nTbyF#uH@fU+$4QkMGjfTpA^pM*ew-z)^z3O
z)=xsQb5PpZIOTbp<+SHj#Ltxl2hMGzBNk<+X(*tfiH3-Vf*J~GsHCB?hQb<(Xegth
ztcIdmum!k;hLReJX(+CN+j|vm3jQI7GB2f}=E&UA8va#x)`S>&;HKtu4H+8BYp9^1
zoQ6yd2<uQO^hNnsxkoSNa2Iez)@+{OZrOj4Lz-1sQ$rmMbv0Du%lcZc8tg?wbuHLk
zP6csmd9AR#wgzr6KlWKp-72DE6_Hm()YDL3L#J->Mj9Gu*!Wb0vTCTIgWt9N=ot4n
zGySkzys?IftUoT<R6{cjT{Lvn&|E`QLpu#I4J|ZKbgeYB*3eSpiQoC$8@{57Xrl$;
zq}ytsDwlm5to*F6BA9QlAxlFxyJlZn02m^(qXsIAb#DHX!@c&@X=e?4s|ezUgXMPJ
zdo<jup_hi<8t&83O+$AL3Gy>4#_-BH8sZv{%nghWueYm+q=p_EdQvRU<*^Q7%yRC4
zCU3mW)zC*no`(KZ)38|IFzu%WZ?}2-^B%n0{&E$OuLa;Apg~Ziiz4K+`I!Vq8tgY8
z9UG+K0S!%cG}AFy!w?NGX?R(~Pz}R4C=Hs1;TlG0n5$u)hLMz#hKDpv3VV4_!&nXD
zG>q0TM#HveB8iJR@7^1KZ)aq@h6$88g&D@bW)R*wTauZ}g5T}8tBA=Orf8U<VWx(u
z8d!fCB~0Q^NABqn{M2Dg=YJc{(lA@YoUqQ~NAfFH7163<U{!Jc_e6nbBl9&Z(6C&?
z3JnW2Jgi|Ud9ErJX;`dbiH1isEE<tq>?dbc6$}i`n7NF=8^~vA{-YX}aTJaI`z6mH
zxsP!QG>l6c<gmMxhTlfzK2=pH8osZSIU?LL!%)9$u4^!;YYth1$qAxiwT3ks<L1E8
z;A>b()ijE`8piL5ctl9gB*z%r6aKB(Sa?6f0dwF5yS`FYZ22I*R>L|Ck89YZVSOmr
z4Mehr$(xg9c17-P>&3Rb79GofLc?YaTQqFd@M%?Xy=s65#)oChbTW38L6+x6wrkj-
zVZVmwH0;#yl!o0J_Gs9p;pve0GZf487$;-VY9dliFud~lE{SIeREqIzVxNWsyCUyT
z4_N)BVW7&?p2z_W&ue%=!%+<fH5}4#Si=zwZ|n{jqoHGEhB#+H-tH}WuN#@0s3wkS
zcu~V~4L1vR9aT*%sur-iwVD|CQ~ZR6lPuTphlW=)ysF`XhR-y-rr~uBr!|}*Wesm?
zc$bRM@Ro+RHJsA$4j<`(LEy#U>@QRkV;aZLRTBi>`{B@T{E^N_j4sV6%pYhttKkz3
z=R$3MsNo|G9}_K`I{s5l{CY9a<MrZQo4U#NX7W=F=V=G>W0k6lmem7v@#*IpE^4@{
z;RhN74PR=wtl=9CUupPS!=<oC%Bn|ovF})XYIV`2QKDY?#J3u*X!wqp`4>giMU|%_
zRlCG9swe9-if^qR$l*r~*EIa1;a3gUHT*;&luQ1sq4DqljVq7k6LrMQH&p^QZV-nW
ze%HXb$-L#oFv{%)Chxx6^G^-8XijyM)A5&vziG*J6wz^8!yOH2Itu9cCuF0`Gm*Ol
z!@cp7)y0ixBb;ajb&O||Ey+T9U@;gyyxZ3N^VLOB9mRB%(otFuW^{2KC3KY3AvF$$
zK)4c+X*GnlJ5okRS)C`C#nN?Ds3H30$E<mg;*H{sYlvIF<YelAj+#1Z=_t<%I;!ZX
zs-vQgN_r4<zOo+7ceXmWq6a5CrNkJ})xyH+I%<&lXM@2mD3RbKWxmU<NNpW;bTrV>
zPzNPhS4TY^_4Pofm*yrJu03^sjDW1SqDLbgjde895z+DPyFDqc`FkVldUWM-++(HV
z1pJ+yk>)z0I#eB+jutvv>UdDcXdSI|wAPWUqmPa@I@;>U*3n5vI~_3{SvorCpz}u4
z*IT#OaiVUfF)fSE5}PJx(NTnHM^;YDVy3f>E;@SY7%?o?RmVL#?$vRhj(($C)SMBk
z@p7E2E|tT$(i~<tO0tH?3DbC(b`R5pj%1kW5vHuuGt5+-7wt`k=Vm=~D?$2wNtQNT
z#}FNPI{NFlU&lZl`8s1`MF;2*)ZmmX)_i_itmV|K?MHIS;hs6sK{`&)jXgkF^^LPa
zwS`%oXGDkU7^Y(+bwSlHi4Nxw^uQg04lukOUqeirlC^VV;j1gtc+Hs;9iwBcj@dfq
z=om*_>6olzijE07o*h`|p%7pb^}qp!BW2q%H`6DDg<s?bfS;;kIz_5uTF4Ab7VXHN
zspIp%;<I$H@{QiXL~wYj<kIL|9rJW7qtbQE*RepyVjW93OdSvFSfpd-j3}G4e%-&~
zat-m@%-Ae5`G}6CIvx#q;CK`BqQ&OL>VFvTULxzlimZQT#8&7?QA9c((@|GMNAe7L
zzAuQPK{3`>bVkU{^1A13t|8`(&DC`nI*#f%ro+@>>3EWpMTf1!(Xm0tMjfsWPseH<
zYjpVRSH~)1Y-(1^c~NSCqG&NUi@lJ~wK~@60dm&s7&9cs3=5gE&hImV!zUlt@q~`e
zoZ2H|n{*uM*#BoFw-ATJ%2JzKb#N3ssgl}UFetfQ#||C)bnMr$Q^!*}cI()qW0#Jn
zbvzS7cZJ=T2W+x3oA-P#Ug<>qSsm{z4B)X>hrB<K-tr-_m;R1F$ARlOsN)bJF)jM$
z#=;co^E%$FAu`@i9Hzi`<R8)Tf{rUS#3O@Z-}MUYbEzHq6xxeAj_WwD<ARQtbiAzN
z6no*6(Q#78YdT)nLG8Rk4pUjL5(6`%`=zW8!^qBWunQe;>3EyQ?Qrn#tU%4ca#9OS
z_s$C5IK1A~@jfx5<B#9d-=hl7B<>v&>s31I4Ch_xtlPQq4|E)!89hsAP09K&Og{?K
zkHeIOpXfOE|NN(6hBNCkVvi%z@tux~I=;|xS;sdzzSQxRj<0oG3ej7&rr<ECL?W|h
z7|)KKVqg01aIf^YVIBHPeXrxHj-Pb=tm6kAKkB%q<2tS4wmbrlC?(zq!hesJoir!w
z7ahNboZR5pR}MI8^sx3PSd-(WxNdT=Iua(5CjQiMOUHHtI}H4#<8K{(4fHc`TgM$5
zNdt`x{G;P8O|gOU2GR@^Fi_k;2?GTU6f#i6Kv5&G|Ltpv!bWiFX@{B7Thp`7ZY)gT
zwN1|~X5fd_iS@%{B@L7^kZvHuKxqSI43stS?cA)pMUvwd1iZ1~;b|>yxk)j$a5)2!
zsu`IESi(npPWRdMK&*m+iU#T!^d?0m1C<R_Gf>^YpMzsnj6nNU4Ic3q<)N}9%X4CD
z7^rEWmVw#^a%+kT%d<$0ASXfga%_04&!1hy@9Fgn)Hgu?u8O-0RbSJi0Xggx%$oZ1
zV~q_oF_2}T1Nkw~G#qI=1I-LHH_*yJYXeaOEew3Ty--U7#}`L?PmGnjogg!$Q1n*3
zje)ilnjWBzr`j?@5uFT|BVq=~Lwh4Q?Uscd4P+b0F%UP<$v|fVT@Bn5_PA<#jP8P6
z!hF&DllL09FKpG#z=P)^Q>SHdAUwU6U7TK&>~0`opqGK(29gGPgsplS82>;}fm}_m
zDR{6g^SK6wO=T3zj6OzST8j-zHe3)GjXVSW4J<V9uz`F70}M<w@Q?vv;C=(c4U8}_
z(7+%ALk&=~4^Ymtqk|0$;k6{nlYS{Wb9j;`<uXs@4l}TATGmtZVj~TVGBDP_IC36#
zI@-XPFhj{x8WhEK2Gg7!9Ul&G0%f}}gYU<>^Rt*Xe;~$ml7SfpW*V4mV2XjM2BuN_
zyoP49n;0wpb0GPd;cR-QN$*((W*eAmU>*q?Ac}@A%sBseVbURcl<Ir~Ja>0ND5W<m
zC;nCaA_I#JI%dN*u*AS41{4FTfu#l>HL%>k3Ims(OJ8PS<hnwHpAp)Y#|)$lNCxDP
z8vEiI!o(qgP2uxZTOhQ|TKH6_BsUf&1BL-JoHzt|=T8!(<`{4dtTnLC!1kKLGvHH1
z1b@v;)?XD$X0?GeM97HP(N7cczAbp-F+oC|t~ap3z-9wm3~V&;xPeUuo(P-pIAZFB
zLS{-4ks0Q<8hDc0G2m1$#`5De#Y4LjRAR^Qcg0QvPZ_vw;3taCz|#iaH1L*zXAJBn
z&jt<|*kj;X1J4_H^?~GGqUBiHJ_Gy1F_wwN>D*4g`sWNBpvry=Ue=dFS<$Vx{i?`e
z14j(JWZ-3Lf%8j?95e8uLD%=JqXsH`6MPvtPO&#gnpHCC;auju0ZdOAILYn|yk_7P
z1K-TbNK{K>IV;}@iN9{(4Fhl6K}o#9fS0vMom%2;1E&mpX5e!J?-+R3z=sAtqQx+R
z@S~><oH6iz$Tq)OKd>h90kyA3_N<DWC4^Q*m?yQ;X^D>s{^!y^F>ubn-$jZ!i=&^?
zKGYKD4O|GDzhp-4|1sd4nSQmzMFU^Z&>6VGj=~C;3|uzwm4UAbvnPT>Bqr1f-c7u|
z;c%)2j=^eJ@|}V2!zMo(xEf}D_<x1XwZx;>at_xL*TQlhfPAKw_?dRhKvfgfO#Eu#
zhJnH+ikSG#!0)u`2JRTRY2Xi9djpfENB^X8wjxVE%elplYKff8TyB40?|%~yi=!{D
zkK~@n{>Q*wT6+`!N;u6#0TT>XTe5cGo4q#ezyH65O!!BWzwS#EHBrn&ITM*Cikm25
zqO^%JCQ61BN||`<MDRL(`e-szTQE{>Srbw$nQkJ(4B|w8?F9^U=Of0V9Tb6y@+K;q
zAcqx9R5Ve^#EdXR?1<Wejt#8CYk6%^#l#b<gS@o1M|Bf5Omr~O(L_xXwM?`$(aJ<^
z6Lm~9Gtt}(wq4XU10mEigZJ0*%Q?)~4@(+^X+sl@!c5~Z<<ll6BLB}fHIZ;4EUcPH
zMneiMOzaLJcjaPW?J1nrCfb;28$L}Ux1EU?^Cq&w62`;jeiPQ@MF)O{nPw*2L?;vX
zn7G$O=dfDWFzphiJvRS0-mj{q-4~XyN!&y?6FDX})D~w3L=V*d4@=#{3N?8Cn~9z#
zelofEj9w;sn@~+?CUQ;mF)`W16cc?-^fNKi<Z*n+Gtu9~AQKOm$Tu;-#Qi1)hSY?K
ztyRl59vpixJg%qd(XzX?6($d#56c*AVu*=hCWf2fS@)k#1wG7%nm9Z-#tiF>pniW(
ze=YoN^EwazF)`Z2#E|S56Jx{71QX*-j1Tjd!kP!CMkj|`PDo+ZbHU&9ho}M*WS~ly
z;9KNW6VpsA51ULUHcTusvDm~+6SGXrGcljAnH8OFVvdQqVYR-~TAa0d(0@Dck>F*q
zz{Elm4~LKFaZQ@zx+UqIp6nIRxsX_5;t>-|O+0D_Zuxr$7V5h@IQ)(7{mY1f!Liht
zqP*QcDQg9>Z3a&ADHC!?O$yTs;hR?p^Q^gHU`#h*m^f<Um<f|mH1VW~Z6<6Jj)}FL
zUnX3N%fw0(t5`BErrnq1aXP+<Q=xu&z|LwDYl!5jvCFkZ*NVLtX9f|M))NMt2qre0
z*k~fVd-~%hHkshDOSPuOhOX<#IzKn<&vXmNRW`|UoVF4h%aTRw1h8RdyNMkpo;9)8
z#7+}W5!EJGpHFw0c-q7>oCW0)L#D+T9ExE$#$*N-;HwqMJtlaHRJCHseJ1vsc;3W8
z6VI7AV1oUUjT&JWr^>~zJ=*6Gfnnl^i5Cd?@Vubx5rJ8V)e$^qYG56~9$zFu6CauQ
z*u+aFUN-TDi8oE0FmckvYn&k6(_b<1s>x&0qdbp@ClSr8BcwWlx39C`@Wic6b;MgH
z-Zt^RiPMyxiFZuAYvMhEBs0z-uv&>)$>J4)-YKHL@{(svd|=`%)g6j=KnI?_)n_*X
z@$zUaRwIX>m^f$Rl8MVEJ~eSZFmCw5#03+dh5USOqTbO&)6es^Wh7p$BfhF5`aRa?
zOA}w2s8CmYO@mfP@DL}mT6A@yMO`tZQtxj}d~4#Wi61yg>xwHTzBBQC2%GVB1xL4{
zuGm#KP}7elc%s)e6W1xgqX7{XepFZ7tQ(B|7aD&P6D&-$aD&F*L{kgREc|Zbriro^
z(k=YKAOE!E77ALpW#TUrcTD_a;_tA#+yBp$t0$_K_;1DRE_IO~OS90TUcdu4OffBF
zp|FMG7D`wsVxg#oVpjNffS+>Q$nBZY{`JH|^+c+kC~2XTh0+$vSm?VtSft$)(%}n;
zTcVz?CqBzgW>_d^p{9je7BVfsLS+k8ER?rU!9qm~l`Jp_`1Wnd6<jE;C*n)9F4Yqq
zuH-B|6R&EanuY2XYFJ1-8LV{uRZoyr{o9;!^#g{7nSE<psAHjlg@zXDTA1-*emx8I
zEo9Xf{pyRU^#ylGJyu^lQC~E&(AYu~3lR&2{J=yXtS=aGzFFNwnatcHuk_jN4QOs5
zY9VQ%2W4WRrG-uwI$LOEp*4j-vKHD{XltRJg_s4#e6Kkr##ic0Epq6MU`1m1i9VmU
zix(IW>tLayg=`D&)E5PZ#tN?uM8{z6tkcCpR}0-N<XE`J!o3#mvyhq`<2E-wW#ypG
z-u&-ZMdB82tC8*;K4my1#vOchTE@A*k`)*&y{Cm<76w=l7J6IA4b{}&LLaKbLO%<6
zr0hl-guinxg={>tD({8vd3WlI^!<hNL*o2lbH9aw7KU0FW?_(p2P_P>Foc?FAFnbr
zR-u6?SEwu5h&B+_4tDI_K=6;%a0^rH$OsEZ%LW#k*GLPatl;<6gJC*4OnE!T!q_lB
z?*Ap@!wh%KJ!D~$g)J7gT9{0N79<O@g{c;%S$NpOA`8>0Qwwt~%(F1l!Ym83EzBV>
zp2*=I$ph<yH|&@O0T_504a9s43oI<OP&ItB>}enxKc9TPfw<Bj*i*UK!V(M1Ev&Hc
zh=rvV9<{K{!hx#2xu>sLyEtF*+>u(Kq4=g`R*i-M*~cjPed#G8A-r7`Zb(!ts1{aP
zSZzVGpmRhP91Dg8(}HE;w=n$ofUrq>BkRuhi5U%rYr(VNTUZ%t$_t;emr>gW>}nWn
zUwyx!SYu(Wg~u&yvapU*!@>p&8!deIFDXvXMuH%3*eKxb-bUgH3!8b(jS?ON3^xxB
zZ6pZhCoOEVaLmGs7Ped1VPT(z{T6mwc*??V3wtc=3PJU>g=Z{A#fpwu9tbnDZh}9R
ziHc__<mb}&h7gJ$N!~L*YnmRRpq{h94Ymg@9HQJTJa6Gti#R9joJPUKJZ#~Jg%=16
z_BA)3`w+?1j5QI0mXo5vwgF6!lY)h}EWB;uWeX=Pyk_Bb4z`gvY2g(MuX0A~5pG=V
zJT68>Ki^0^*)R4+D6}^zmW_o!Y82QODr>@r@lzJAHxlm=_UqH$vG6YYRU%Kh12P&5
zTA@o*(4?_AW8niTeI*`SiL)FmrQu?~i;paPOzb(B;@}et=PW#J;~5*DS~$;1XCrCj
zf`!j$#B5~R_}s!p3xCqUTKK}kmll6)<3|f$S@_z*6{^X?B@34=d}HBTPVL5GVq?+o
zpYA-a|8T*qM;eP$HG?_+eK;0ot`ZN8MTctrk2DSxdW~bT@GFhHg`a3$D`oy{;TH>^
zhfi7Ix5lE^LxGk4jmF=?O`3fx*i+APx_z?z*3c+DWatgTxC4J#_?wp8MhP3YE!^R&
z!A2n)|5&(dA<aes8x0EgU%fL~p-Iqtw`JLkGSD*27q(HvMo}BZY@VVPJk64lJo#K)
z3ycq44n{Q*C2f?lQPxJfjna1DN>Rqfkuk}NhXz!8DX-JB`E|DC(>sp!d1ct>&^g}s
zcrI*|x6#~2)J6px6>ZeDQO`yt8<lNTw^74J6&s71h^jWK*?7E3@SW~p$ivx!S*M$b
znl@_LsBNQ;jVn#WKTQHRk|Dd3H6x;no$MMB_eVs14$WpDJVb0XwDEkje<K@>ZS)UM
zX1K8@-znVx<LmL65%Fb#{!MK(v+>FH{PouoeL@!(B_dkbXlbL9jm|b&*=TK}y^Smz
zZEUo)(auK9=4p!AbT(`7X*M_b?>QU4aJxMN4bZ!zgN=@?&maFbrcI9Sj)-lOqOV2-
z&m=h?Fo~`<y4lFFagU9AZR9l-_l5OuM?|frBGy!Vyg7K^k<Yjt_?C3HF{^3d;4$??
zHu>y9rPx?tW1)>+HhSB5(8g#Rxi<RP7-(aVjlMSe*%)9$kiL!YW+nUE$Patbn+ke)
z{R_o^Q@UNTyZghZ+nS08Yz($B%*JpVL&C!2O~p_f^r>UDkDH2Ln+l#aF~Y`38>6VK
zM}y{_CPzy&6ZATx-`W@(V{Oc^G1JC48{=(EvN4$|YbGYxm}ui64tz(F$1>bw1Z}-T
zect@1{S+HhDKQ(<Z5$dD^mQlnSlik)Slt@4u50pgVwR2BHs;!x7cw@7DB>|1;ejx$
z!)tz6KBbxH+)NB=CLShxHe4H?jm0*W*idY!HXgCD)W!-MkJ)(C#xfiFz47HXzupFB
zkVls=r6ca>CHW~Ek`0-o;BNXK^N6=qYx}rOlh*j|^up5E(1so2-(YhaR+y)U7`@b_
zW`WNeK~?{HoKwT0Nx7WZ|4EK-W2KGFHn!MUWn;CC^)@!xfm_!a8*6Q><KzlgR|uzz
z$NSLvYF9I{k<-D(CL2%COqEU!oE&|#nc%FX`_r$-`dn-#rnQQ1weh5loi?7bvCYPI
z8#_2XMfA63LarPy)m+qXE-rS<>(X583g^YMYI0O_QM+n#`IzKx8+&LL929i$Ea6Q{
zXyd$%eKz*nIBDY*8_(G|VB?sL7unp#K~8xaFA$K)^g}jgjffm3-agBzJu33rp-A6J
zk)yOELnDk&v}J6h=deIQ@dqQvZM<aTWgA@@BpEG;(Q_D9=>#!cDee5R1f$ZtYU4E<
zr)`|E@w$ySY@D+34%Kw7%$qjevbh!%%&!p>BHrNKKR-xp+CPAyqu!+?=iogX?~}cu
zk-5zS!!>k9tXYX(J1QkVuo-O-A9JSL_|OijvCc=763>nv8j)Le9shj5-rZ6`kf3um
z7-NXRm@e4(%*J&aKhgf%xM<_Djc;sxK_Cr@d}U+)oQ&N!(!UJ(DLN+dwT(+*-fu1z
z4h{%@OEYETDwS)aevP#6IQE?6_cp$*6Cj@#gXa8b;~HlKw=7i(7K<1q=h=|?pKbhN
z<98c3ZTuRNy<y`wN+5hnxz$gmSE!kGt76(8HvY76hvwbJEgOH?_?u>*I5`+}Q6r4F
z^w*0?9-?(AY<o9UR+{sleg4hvTmGfU7h4mB929oY(m^W+MI01$P}M;-2gMu|caZ4-
z4oWyE>7cBGbO)szbow<>+Cdoym(C@q>jR@AWuk)7g<3xlxmz(9PKJYW4t^aOQFbL8
zMgygkcTmAW{fUvvAp;d1{8=%rQkc(;iYfa8>sQ4I!j>%z;|EoDP{Tn32Mrz6bWqDd
zT?h3X)OJwEfnPFstMX!?qM1<<9T%zZfa#{=frQl&L0GXy4jMa%IB4pCw`VG*9e*&^
zgty^|XU!ZmXA=i49GtAx`^xahv+u_14vDx?!B|dvmPMGhcF@K_zJmb{+B#_GAnBlo
zgBaO%(9uD*6NJ8^60;n1V4Y!+%QGU3i$oqeIq2-5i-WH0F+2%;PgJx#7`eycksUq8
z9*+=v?CxF%_i<=LBHhB2nVc{achLR+C5bS@NKZW-^m5S0L0<>Q66w7i5D&Q&+JVSl
zhl5$he)~Ddb3l0X4@dn;R4`y1htEgXqe3{i-@zyc4>}m=V332M4u&~+z`^@R`V4k3
z!~yllNm{x^ptX;h#~G$-xPuW67(Hzy@o=;c%Q?+S^U(N!>}UsL9E^7`!NFJu(?h@L
zaSrBN`FvVwU_8=7Omy%NMO`CpQmApxGCqp85PZtaR0q=tGZ*DuOm{HD!EpyKIhg5S
zmV>np);XB%V2*=j4wgHZ%b_`VgmPFPneSkMgNGd~3MsE07h6by*Df@+g?MOi*GlUn
ziya1Sk1lc0dTj7}Y4E-QHOI%;a4B`?1pCyOmj`!U;ova`wgbmO%7NrSWkUyR#>Qj^
zii3UQg60?c$1<k|O>_r_1Ji*;RBY(cyhp6*&d66k1j89ID#q<j%(xCb2P++{B1=0X
zzJm`(#l9|*xuk_y(?W1>-D=Wbn6-w`dOzpcP~hAvx8A`92YYCc9c*;)xP$Eub~xDN
z;0Xs?9X#oP+piXXQf9M*Ee>7}8-5<991h36&4Io(P|XKBvUd_BycS1yJJ{vmY09~!
zcqWw9Z($SOvgZ0l$#Wm)-Tk=CUXIkkAqR&Y?04{-gXbxS9*L*p$pa4VU665fe5^-K
zvS~}f!)y<Rbn;t@BMx35LI_JLXjJTMdL}OpnPZ&XQp{@H`$bB%Ww0~xWd|o5{NUh6
z&N~OMIQYoH#|~a~@S217h(nGj6xUl0-gfYYgEzxlZd+rI6!j?w?>Kljlzi6~@j^us
z+ggg3TZ&IxinJaH4*9f$GY&p*@Ld$t-C0h<jU7KEsIroj+n;auIeIy;9-lZkM+@fQ
zvV%_@oOf`McyMsR!DnIR&&lfU#O|_j)+dEuS_<yX{L;Z!4!$N2S8_;@<*Y+I@KkC(
z{f1rFi(g^a#KyS7-*P4{&DwM;2gj0ST8Zx+Tn#05>*4&SEfd_ucFn<c2X`H$x%kP!
z&$Nnc688R!gWnwdPAlr*MkrMdpRgh4H^bi9(H}H%Q={A(wr*Wu_x_@7aTskR>+v;R
zZ#%d{d;4+TKeVE)#H_8657HA?!zsXg0T%^blyXtpMIjf3T@-Us+(i-hzqdnC7bVsO
zzl*rXjcEz8H!jAjq>DL~g59Zn%Dri2T$FWD&JAWFtEIchaB*)dad~~j7@Zv6Dro!F
zj!3492IFFz@{$!?RCLkXMXrlVE-Jfd<)XEVDlV#qT{m!1?f*Q~c2V6$4Hq>@c15I9
z!OU7=X2X%h+>mk|7j?tR^<30<acFYDyw*x=do*CCp^HW?8oOxXqPdHxi%3|xsf%VV
zc7+sJ?L;eaF3h)Z(b5e<0I-nPl23DPv<lWR+qh`!qO*%GF53Oen~N+LvH$b=Q{iGA
z!hH7sOFD*`(yhhX$>>BjS_{Sp=^7SxbCKiX9!kmOTFrmbzEvfSAr;tZ+(q}Wut%6C
z!Zhh($}j)D?}q%5)6+$-u>8%6!TFpS!=imCe;3PLtZ>oKMV^a^E*^5x-$lNQkuFBL
z7~n#<80=z*i~C&+bTP=q18xwQ`$E<Dy{!c!{~o-U_stsvHf1Fk^m(X@VJ?Qd7~$g8
zX}JsmKdiN2$ns^a1p}Hh!{E;B{XrLFT#OC*8SP?cYw=2JG0ufKBX_)u2`;)`9KcA{
zS6hp;HllJH@z{dsBo~ui%w^Xcmy4+`X1bW=Vj7LViy1Ch=U}5?X!o@dPYlgv<n%FZ
z0wB#M_S_)KIb*)BoDpNp;z!$v`7Rc?SnOhni-j&8cCjdAW^Ef$<W!<YjU)p@GtM%b
zKjLDki$`57Blyqu-2Q8v5$YKhT$>){s2PHs>0>TZF4nu);6idCyKr58(t_ebbzzZ#
z2}#X`?!w?0U7&lMt=^0W>6J%&9B3o%MgoGi3&%yt&k}ocgP7W1g#7zNmy1;)d$-$&
z)h^b!SnFaPCq-MKg`uv0>XXcCn{3-Q7;o>kVxx=4UF@J>U2Jmkgo~{%o^<il!x@`h
zYzav<nIE0a=50mfaN>cdgLm#W7u$*OkO*&IX)B)Mts6uMf7Zp*E}n6*+r^%c!;5Xj
z-)%+Bc4BtpWXE=5NV}lxy)NpMOMcAA)ZZnZb8&!r^l^`m=Up6hG26o&4~M7=7Zp5I
z^l-$*3ogEOamB?^7sp(@@8YzJ7hN1Deq6jp5LQVmUnT7&7caXw;o|PPt|wi*!pd_Z
z1=bE&`&Q3o?ZoLi$u387Uw83_i?>~za`C2%x58oGoD<B-aT8*zLk`~|SM9{RF5YA1
z-N7R|9y6skCLN*AxcI=u1s9*WIP2m=7oWH|$MqiyA*6QdxAb!%9cy!vu7jUa1$6Dp
zkDYgMBs)P@Ns^-b<>xLgy7=0~B^O^%r`6NGbn%rNctz5e{<n65j{5Z0UNt{*nZ&<|
zb1dJufv<0&rz6D{2SmPe@jVCYBF)297eBbT>EaI;Kf1W);#U_pTwJGhb@8){UpOPu
z0y|J5Cf<G~67Qa%OC)dW#l&wE;M0-cL+0r)$?{&IYv`XYZiR)nUHlbh{tnZwu|SV>
zm}Gj##Xp?RVae%Bfh8&6p`eG-9?Ezq<e{*KVjhZnDB^)m(X3F^1L<#lC8*qEcy0+V
z@a`_@p_GRuvA~@*fnfS43wF)h9VzPtO)@-`^N=3q*MxnsFw+A(ln)E{OiJzx%iFE)
zn*LU9B@dO^i-+DGs(7gCp|yuL9;$h$?xC@VCLU^dsOh1uhk71rg+yw5s1s(+#RRuY
z{1Ou-+6N=8@1cQ*h8`Mu0iw9$fQ3&@&9C1+*q1?E@iyY2sfVbC7GWK~N?J1y&8e61
zu}<y9)di7N3j=57mL6JpnDkBJcCQ4XCFtQZDALwLI}i7GxYt9B40y=)(8)uVhYlY0
z9FKS8Sc)V>d%=b+Z$)Re7i`$sLl+NSy}-YnTH_=7-*(&`nUbAQ+l%`=bn_7R(A~qz
z>S;M1{%jmbl8*?XgomVu9v*snf$B+tj|ke<3nFBg=z4x;ey)c;9!66;9{PId=V6G4
zp&s%)^!Fe<-0z|G!eqXO0Uow}kwaXO$ktF|13e7#@PLQG9;oP7+Y9pldHCo?d(rf}
zc<HR5@-Pp>J&fRd553<<hQc4^;lVIN7x#O@RSVW^lqJS`80TS%hpAq$?`FJ*gBuG!
z<Y9t`iDCW6vI9hQX&9g6VKRlYD?%ZE+$hdzJ1wj*!^6xlGu^|Nm-5I7>;K#JtgyW5
zBayit=6U$U!#NN0JuL9B-NOzK3q3sS!SY~xSma@`hZP<kBVs+sg}W{#wmm!&5+The
zJ172{7f5@Vhvgoe)jbjn{nj~Ar&LzTgXBT=pm~9Bv+P0Ph)!nr&Jx^5psw$jKRc>>
zFhWwMhp}1WwdTDSWr<Z;Vt1Cf_Gr}c;Ck5T;c*Y12j9bL4{NAp534*}9vV%&mey)?
z(wPv8zTNZ8mH1i@>pZOYuz?zUB&+Jg<oJ0}I!N<6{X=5l;{kd%d3b`F@))8$XujFQ
zmJr6=QgLW%7TwF=%o0yh%O0j3N?gneT;kb$r-!FJyyW3!54$`(O^r~M9-i^A+rxej
z&k?;Io+Vii`@A4Z<L_C5gJq8;JBW2lqV+on?k~t)*5iPO=V>&)3(V~3CCS1@R_6}l
zFpWRi@bIFCfgJ=LxnJ;bl(XaAo>MxAWgWyTU*|0D60dL~<G2T|>$dx|3!9(taMHs&
z9^UoviicM{yy4+Z51TuP*I4*&&(|rXdC@pM^LZR-2l1ANw?k>4A}TtFiQyNq!d2tt
z9**!Bz4tu4@8JW|_xS5KdfLMoVq-;*a-9?8mYGu<^C*fBJ$&ThW6p@V(VGjRH#-Q*
znR%~N{8JC-J(ToO%Etu{pLw|9;WrPTd${P~dzuIjU$AQr-+1`e!&e@@_Hc<zhFoQI
z3{X07P1n|M^(^V<Z>gE20I$&Ql?t|Fd`HRr6rb_Z0AdLRV?TKK(Zh8QKZWQzaIEaL
z5M6v)wpH&|9mUTce(~@tCuT>nyrYN}O>(~#=|9m?{O;kVhcq7reEdOk;o&b2e|vax
zUe?lwvu|<uuLa95>mJU&?ct7xe>~jv@WZhIRMv@*Nvhy{NAYUsI5AVu=Z8@g@ln*r
z`0Ks?ESO0mg?)65B<^$+HM2!AAH{u?@G&xySXeN*VO;XQ_j^{mKTt|(A7y;h_tC&d
zSs&>>D*CA8<D2ry3?G?3;G>+6zb}*-UNqhzTfBUHKzSd7dL=6O7+pKLHw?@E-OOlZ
zA60zR^ij)4RUg%SRQFMX{WgjdIh+1W5Z+WG!LaH?VraIg?W2y5x<2ap!Av11yjH)E
zOF6fBrza=WvTV`NM<XAteYEk>*hdo|&3#0DM0_;$u{K*Y^Mg5fPvNc+zenQl1oy2x
zmn~ZOXzAnAY|+XO%mNYeN!K9KCG$037|_;7JD+>X(9uWCN893=?R{kVIN2q^4F$Y9
zweSB=wrEm1p6#QPkIp{2_{h87tKQmVgHC}Gb32LX<9P(z$j*s-ecb2cOCMkP=;kBG
zhv&oh5%<yE$21?)eI$G&eLUb}u#X--div<&qc00@<@EBA>*JSM8NEYR3rhXxb`reh
z0YUxPsSn}fem{sA)Za(Gj{$ygcF_Bqa`tZuCU1|wbH4vOk0k@Ck&q4xOK%7s-Po8j
z#K%w{V||SCG0ewsAFImuf6&JW!obHUayUDq{_}kpt%lKa7@moz6)~R9Xdh#IF#OHX
zaQTZR<9$r<G1<oy9}|5rUe7~5Ci$>B2_8ApWn<2PPU2LjVB+ixmp~t`ls47J{D*=7
z=rerG^pWx*`IzNnwvR<5?qiORxjq*7SV&IlWXxmzkRKA6aVl7t`nr>NIFt#Q<i(C|
zcM?l{JmO=SkL5m=`XFzQQl6V~PB)7mIUS6;LTACsD||f0zUD?5Fo*$t3UAI~UiP8*
zFnpLkR3BO>NuAA`#8=MAU|gX-<&t$b<nSz=V-+*&&d#uW*ghOTSdVo>PSza_AjGR>
zXR(sP^zpKf6Fye^SmR^2k3GaBmE~iLkF7q|``F-PqmRcq9iB_)_tWj4#%t9{+Z0lJ
z!pCOz-dVJNXTa#rV*j1seY&W#c+$r<A5Zz%<zu^#9R%kj><pW%?;JQJ%zhzqlCAg=
znIAoUJmUv`2p2kwdG93nCHjxf;#nVieH`|2#K%4klfU+T9Hglk5WChl{W%{8e7yB|
zVngTvP^ODWJ|8*c<9Ly>|BkLn7x99Rqds2zchsRykA?Zm;mYK3A20bRb~y6TnEZRX
z1e}}<pT6beZ6B}rc-6;iK3@0nhL1OW@EBfx!DqDsdkXPua-V(ayc!h9JmupZA0PSn
z*vGp*-t%$B#|J*%52>;KX&--X9w3edG9TGRoDIvrI9B$<FvDfus?FomyNFMGob&Oy
zkBgl3KF-tf`}mAvp*^YI`=iW2uw4Ay*F7+IjYbC4zMvU-F&OW}Nx|*cJ}%KFtVG9^
zxJ=VW1Go~ESK?bASA5*|amUAZKECG^^YJU8^<?C#j~{(p^YH^at(KPRB3O7mFo}u(
z@pK)~RTSSl^d=DUNl`#hQ1ST)7D!@1LdnZZ0t8Z)-g{BHpdct!L=XhFx3}*FkY1&U
z1rU*rNbjP6h@gmA5&qwfzx>bHbI-ST?#$e|bLYN&yHkE%gkJ=(n@gVw`;ggULE4=~
z_>C=EgufQy?jrn7-)JuVK?^jOeiC9O(j;=8Oq2d*tSc)`o|^K{BD6V`-a1X1)GV*}
z@zDK6c(4fNWmJ$6C!?5*QZh=*ev~UNqlAo-GPaBhGh@Hx@T@=6d38^dc$JY+Rz^7)
zueQn@Ue|xO`Oz=pg>Bu?LozDLT$_Ld8I@#=PLnFjh?nujW1&);bKgtz`<HtY9UGbt
z84t^-Dx;c=wP_NIVl7NPlP0mE`?tck)1*gaJSrnmMk5(DWz>@Kq>QIz)Rys>j6p`z
zdNS(Bs4L@f8Bb8F7QT8cy!;orbz4Z(jg=C=91YZ$(Q8N8Q_`N6(LlztGJ-Omp`ODN
zc?D!}1Fkab{LhR3-I6xsB!OG$oBvFoxIO%wjOS&nj|P%tydXehK`U2Ccu~gPC&E9L
z2r;#ZV76=_5hu$?5w{bvGt1lzHI>nfI?EU=<7FAmW#r2!kdY>%g^WxYSu$G6XeA>g
zW1SIr_tne;BQsmeNSD#Ig|w}&?{9B52xrI$%P6cHdU0pdy@!2^Wy@$IBS%Ji86AHL
zE!vgaRz^EEuvprt7Sg@Lp?6zI9c1Ln$dl2tQi!iEFH8%3xuoes4Z{6i^h=PKk@k_%
zTL^SwjWW8)=q#g)j1!go&SlkwG_Q;vl#x;W$1p4E`DHEvE84ItcY6z|kBq)D`pXzV
zd$y1UmPzO*gFAGwuHJJq2Qq1RBKM2yxg<dMBOM}RsEpTSjFT};#w)VFP26bul>n7q
zOByL-xQr3vcF?$_dB3Hz1j>w(abb8q!5A6K@{-010V>&iZSHs(ugjP!^Zjtz8!{%y
zm@MNh853oHW3e}7Ok#^tGH<u=U2)p81y9aPB>!!Zy4MLzp%=B3o@^;mCT?kXn#|x9
z$f=h=nVB-)kzr}DHO!LnF1=306DnrQc#q~%&|SeC8FOXak@1_1_hrnJ@wtp0GUm(p
zK*opER>lGu3uV|c92tvb$W&g2PD9CfsdU0yB@<NHKi$4nOR0NHUrAnu43kxhu{pY>
zv{RfiIp)#u>`h@;Mnp!8E+PA8kvKg3T}D*)_sQA!dDuTrqNTK0WLzR+sf>+jp~9BZ
z590h0mi%c;X}OFQ<g-#4D`l*bv4%sEJvb64g#xQ(eEqr~a@UbxqRe_38)R&LEAehi
zsYa{+Y53&m{7q!a_*lkv#tj);MWx#WeYur%ZE4e|n)*Imx<%*{I)5waQyHIeDo%^g
z$X3!!QI6M2I?z3Fr;J@P&dNB)xFKUVYnO3U#+Neo$k;FA06Ukq`XqO+jD56rHA$J~
z|1oK5WNj7Y9F%cL#$g#pMD0gf`TLgFUG9(WtF0s+{6WC$8yUyx3=CzXaEt-4wbXxE
z_#_)H<Ft%3GPqsR+!bL`3X|?@5n41TpZGl8PsWcjZqVj3F3GsU@Gj$98JA^z$FNT$
z)NA{AYu`8-t^KXZ2#zcc_iZg*6Ds{6<2qfjwWPL|Xxmk-r9G{sbJapW$+#)wXBodR
z;1nyP*2=pjbN*Xq#_iCCM>22A_*G=bYF~{DqI^#Hxhvy$836^)D)>XjpA5MQswntN
z#@~$U3Q8;ZN5(zIc?HE3{43+r?UnA!c)-Y$mo!UDyW3iNBwhMf?4VU#K?wz%5K>aX
zlp6)j(*0KSN|!En_3cnbL0JVA6;x7CPC<DE6%;(gOG+FoB;QMyawhrRu|(WfR{S57
z@Q%>!<jgnU$S+6>B`AP`ItuD4cvwMI1&=DIsi2yI>I!NoctpVtk@sY}L<hbjaLq?T
zl|xc3QCe*Uk13#GZ?_0>kF3Oy6bkuDKCa*i1y3q?N<lpZT|-iR1rzR8=KPJ3A*n*&
z{JWwFPb+Ak;28ydGyLc`Q{*LJ=LQutRM1*Mx`IRnjaZ$66a~*IcwRwc(M(Fdpx{NJ
zi6!#p3)gC*Ac<uz%G?r?x+`giL()qMQWd<cpt%rks^Eu^)Jy@plIG$FVo_-dS}16#
zpcU1wE^*-Vgqkt?+R;nnGNkh7(m5hRY^;J@1$hd>3NjV6QP5UFmME5ohGYv+BSU&F
zL*k(}?G)rFXs@6HTTw04E<@sZUPCf`6R~ho?%tNKpg=)K1)UT~3VyaLrgy8tqz2-h
z*x~94ofUMU4e0|J(!z3SoZI7y5@zja+CxE4_K|{}3VJE%tze;oMGE?``3lA>cwIq1
z1^pEaS1>}s00jdT3{fyt=s8FMkE<T6;A2rB4^`)x(ZdwHB2r&fu&Zfk)3m_KoxZ<4
zDCf^C9jRcH!qqzH^j#Ys=sa5SPs$#n;CP1g%H=k{zF#o(Z2D^o#wk1<!ynrGF!WdX
zyf@hU3T7&JN5Mn|Z?Y{4rYe}EV6uX@6ud2J42mP^ZwX~OmCxfz)+}L~g6Rr)hV=}(
zdRTg8eCG6_i9`R%<@x5pury1-y9(wicwflOR`4E!Kg$%~^qW;_#{<6kac9Adz&r)>
z6?~vzfr7X%Gq+XtlQwow@~--Nwh2r9!;-8(QLsY6N(HI{O+kbvQlKj^6xi&YDS^9>
z#F+{##XnDcE?+2ea!AwAM`6iP;EGoK+$U+@ne>ZahoTB%3YIGPP(h&r`TM|P1xtiX
z?eE&W_E_j_SfYIhmI>zU+Xc%x<THIHi_I&Mxk|xm1)CLYQLskAS_SJBY*4UH!Qg(4
z%9Tr_4wOuND03q{VOroL1)D@sUDx>$epKyHpQ(YG#ll+^Y*X+Fb>=AOo%FGS?Fv4-
z?hm?hchYNRO7;3CeMTFeN&lSHiSKlcGbLJyU9d~R7Ycr5hbq{u;7bK(6`WJBN5NML
zzE*Hl!CnRX6dX`+kfz%i+AoYleR%fz)cFP3nbIKzhZP)QyqX$lct4q1(dBsb{L?c7
z-zYey;G}|6^dk1owRF0{3A$OPM3<vS{pWtkzl2UJI72VWl<1SpPG3E*-~z|8g6j${
zD!8QJdj(e%e5>HHg71VW*voW9CsU$l{`pDx^GvDiqj6V7(ltTPXG-+s+Fyo#RB%JV
zE%q`)>!Wc$(YM*sM=DJ&mv=W)qA#)ce^LC?%-_BexGnOcQoBmrDJ)C+jeN#o73Ed@
z&fu@$0o_c+pA7zt`3mka6l6(%)AO@L7=OQDc$V}p<LBD})^eW>pAn#O*!AQTQ&C(+
z85Lz!lu%JpMJW}fRdo5&|2te_K++%O{2^KFOnT>`iS(a`?^on4uZR+^pyDAFRaI0|
zQBg%D6$vV!qOyv375$zpsG{PLD`D0`FJ+_HO&n1Cdi${Iy9C{v{i0_{)m79`QA<T_
z%By%(MNJhiH^|I7lfFJn`k_vk{>hBY{+Nn7D(b5I>y&w6YG7}clwK}xN6SnmjhGUs
zr=q@!KWGXSPpWuI#X=Q}R6MPsfr=g~da8IvML<Ps73nITRS{H?tRh84LlucCUQqF(
zibg7)Q{iT1KCj|hmK2vQarFV4{Ne1B*B3YC3c<!Iny5%p!GnIPHVJXcagRoAlNSZ%
zHV(a{B2`6m6=^D(s%XZBsNmmKW`8<cYMm`reJRu>TWZlGvxSP5Dq5-h5)|mPK8FIo
zZpj~&EzQoB)@Ms06&WgWRphA%tH@N*Rz*8nxP9d;71=7<Q1dJPuv(NEK9Mcm%9hHv
zkvKg&N9BqPbWr(d8sI8FF4(N_Wt)0!r1jHM@>LY5=*-Sl!Q*u#6&+P{QZaaS2bRMt
ztBu4HbAB{(yQ=7>;+-~9cNJ!%(9H_%zWTUbzc&8*5vPsROGR%L6I4u8(MLsJ6|bro
z&K_6MU&SC6sAAao_yH;gs^CBO^E>?3@%o~TG(^QvrmA>_`tz~s(@g%OKi@|BvyE@z
zgtk)Sw$ca{BUQYnVw{RmDn_dqqhhRz@2{rkwDrXXwv{Hg^|O%jF>kzz*HvtLH0}-N
zI_N+0oj8ztXLeSp#-Xc8p*K}bQt>Vy+Eq+e@s^5dDyFOcf`zwLOi?kF-kTI!)K=PZ
zsDQ6EHn;Up2%4c{CM}?1mWsQ7hr(CWU!3d*x+AQ&t#q_ZsOG(l_f*VL(W`Oj0~K>s
zysu&&i>3d!lXlngg`a6BwP@!n+*#1@gX9H%@1$)iNRm}3D!yPxs8CgCDwe5Ou0mH~
z(63Z@!ahw_=9nrh6*h$z6gYHC!N2!@*6?;x?LPVMw3Fic<VRJ+R4h@kR7IhR#VVY3
z5?6dY(<YP7nbt6@H*DKWScX3Hp^A@$J}XqLRIypb78R>htX8pJ#Re5?R2*+7tyQs3
z#VsL8gY?PBEt%uDWh1k5?7SD)q+-*Gd@cr|YthZf;S$KL><AT~a)7J&SjBb~pQt!8
zvLer`8ZbJE<q*(@)5m6hu40FZoho*5)PEj+G)HQkBgxCdy>g^iCMD8sxDew@6?;@%
zP;pVkS1R_ZI7Z!6>{GE{#bK5#tZ_iaK^2GC(JUcHDll``<Z%9!^isvp*D8*x_(r(g
z%^Ydl`GQLAr3Z_0|8t%bDo%0;EJ!=2;*`pBop46QS%!%Al6}~hY}H=cJt>XCUEBMw
z&d#eizqay2V^VS-gfFT1R>gG{KdQK_;yV>rR9t2E*(JZHlKDyRx0l#WW7|vD=wO%A
zf1r`uOFZc*Z)VEF-P>(jn{$J4OvP;#zpA)NQ>*w{#V>4Wd*9AnF~PM_m)lEpdxncY
z+Dms-{6=qN*k^>?l*-e)PP`N<y}y9QU%5O?`~RB~`b)*%j2Id+HT<LE9s{O^x*Gmf
zai1YtLuCyQRK#g0rJ=OukHHJo;)-b~E^rAAB?YK|%^ycMHv7YtR~ZfEG?W)fWd*I+
zL8_qPAq^G9EoJzgE%dV=k$CZ4S-gfS8meokp&>y7G*lCk4{QFrwH~j<SJhCbv@buh
zVdf<@b5r%W^ojA0Xn0gZEe*AWa7{tK6(1a*>mUt#4c~|TSo)aYHy#jpT*DI@p4ae#
zhI$(6YY1p~R>PATp3?BNh6b8H2lAqri%4)_i(lh2BKtdHE=^EFLvh<k!<x5zgYZh!
z(5j~op3|`6j$b1un!c!^v4&<EUe?e=Lz0FR4KFdT$i6Zmfnt1H$ajXRg2UUU8oul0
zmy_SYpYz#VLz;%x8qzhi(9lwdwPKI(ecDz(NLJpKQ@u-I;(&l5Dh+AK&=B7%KqgbC
zcMN4|$ks4Q!)Og{G_=*wO+$AL?KI?QDB%9B8ro~<pdnuro~vQ!gVK3L`V_C-mNQFP
z6fat%qu_Va&{<fC%r1h{wMhPz4pNP+{_(p#H1yOkNW)+ay)^XJ&`(2u4Sh89)zHQE
z=Sp?omcxE$Z*n>@Z)bIo251;4idxY@Iz24#MF-!phiDk4;S~*h&p%Y8Ug;pcs$sZ>
z5gJBnxG%)2<@&<BFe8ieX*pALjE1oqrfZm?;Wd%*O%0PYjMFe)!|NK}&@h3;YM`l^
zapwo^N$Yg==Xev`>=u};;VlhQG)&d-c2OJGi;2ojb0yB;okjuS1E>4=S!QZ@N5cXQ
z3;F&>!@C;hXqd~s>l&D?;XTm=>c;lAIUSzVJ@CGUc^c+x_&~!m{r$NI&x%79I*7LT
zlYY15EYcur&@|{GyP`oAnox$tzS+=!+%hy=tsZ9z{;=(V@zuhl9E^?zm*dDlbpsI%
z9^0#9qK>GB7>AgShjkQcSgheP9Z$m&4NEobpbu#HP{T5fZ<(-3!*Y7HhP4{jX;`UY
zm4?-Hehpl5{-PatEmvx52j2fMaQ{a5t;K<+TLbHbCL1(tq??JO4HgykPSg9jn>B3F
zuwBC^G|oTiTQzLc@Ug&b%ko^QZr#w%T#4`QKGpmU_CM3`xrVKa1E+JPzjLMbM$;b`
zr7?AvhA%Xn)No3}ZVg{**sEcmsCo~BNpj{_8h8Z2yrVgMD;S?A?bmQX!*LBKgv>z=
zw+H8QisK<hfINxUVF8W^`n86m0(>LrF+t~E&ZbzaJZVoPaNWu(7*=pv!x;_dHC)he
zmXV6VVO;@FF5qiV9zD=4Pnwt~UDR+%!?$$8dI_&Y0t@m)xSr?#g&cAu`+E&nG~8pz
zWhZL5rr{SVrr`$-*EQVG@Dqd8fTSNa6xK}O#K`+r0cTO()NqR-t7PbB_L?a0owFf=
z$tBW0TpIXQ!yOI3YxqM$r+T5^IK~Gh-K7J3lN0LTKWQAylm6ro*6=sOzOcskc@p3H
zPV1A;)GdF84^7Nk6A9dBs9_}6QC>%!j$%4W>L{h7xQ-j868Pn-gzisUeUK-eyYI*U
z(mKlM`2C4cSshjLrSu`~p3RqX@+BUB!1=cobUdUZUPl!j6?Ih7{dc*Qbqvh+UxrW4
zm-t4Vg`DUR@+V8{;QY^Og@JCdz}JJ4s_LkwBTGlNj_NvU=y*=Y^Ew{U@u-e^I_m4F
zsiT&T+BzQ75riLI2UqZ;cO4ydbv&-)2_2k0JEEe`<V1Z^C0|;XFS<j=Q#t|^(DAg6
zTS?&tI-b$7H(xsUR*Eq_^J2dL!R4QPDX62Njzk@ebU*mNxVqrs0%`1x(6nn|eg$Y!
z;2$~hf{qt;G}n=)qp^-AI$qL|sw0V6bfoD1+xxBs(uQ&Vn-&g%`Fs3M8CM`R)zM7H
z%R0B@E%>0oS8PN*e}G5KKnoo$b)@SE>7W<2($QMS%`KVqG@i@w-;l}B(Z60oSVyLg
zV_*75Jn(J*>L<gz20tEZqob{kew5MCPDhT8PC7d4Xs@G#j(i;jI(QaIu8ut2pS8Pk
zS|+yv>7y6WXp)YOy6<Tp$CX)DAkoKm6-aweg}UhIs-u^V-a5MJ=&qxOj-IUOUH^S1
zXO+`kInR00?_n0mdAvtECiM~h-d6`*jxxM{D3Auw4RnmsF<QqU9fR3M9j{U!VdSAY
zhSB#VU%sX!4f!^7B;x<y9Ij)8j*&X%Nz#jw)S1f^3Z!w8M6X*aNn>=36<#!6=Mj^5
zYF#eBER54ZKWA|8vXc1u;B_5u=-4hvRXz-G&i^-(^rntU>~|gebWGOqmX4)5KGgBH
zjww169jcD0I;OFYbiA))x{et--qkT%$4njXunC=#X3;;}gt$ROgGo8V#dbOi?q%QT
zp7frMIXVWM^#2rd4>zk<lEd>Bb^mb24|FWhaeh^a`8s}(B%V%KuA{V2$08lFFhbWi
zbJUqx{Qq))ZWhl0)O6^A@98iEuyoiuOo7A05?QjN!=-NA6oS6p(YM||Z9)XxcZ)cx
zBgXizW3i4MV-uGM%5x!04NIhMcgOmJahZ<gIzFa}bga;^QpZ|)FKx)WdL*%Ft95^u
zkGt(F5APAbhQZ<WL~ePpUdIL<o0+6zqmGYsY@+LSO8T=)(y)*7)5ayv>E3S5n3Sdy
z6Dhw{$2PWcbkdNnNvqm~zWh4GGZR12@u_IYmx6vq-E{2K@wvGDGt(awyL5b^W4CBp
ztBz9XMVVbXO5c2v&jvPWlD3CsjtJ0<UolvXOFBO>WxtLCIu~5yu8xB`4(Yf=_t0@z
z#}OSTbev=~({Yroo0)QqUixdoll2m~=iWCu#=o61YkCTIY&*{3Im)-pDIKSEoMV^i
zI3w!f{)cB7;$BPS?tj1J_!=(kQR#wE_#!=UygwU|`z&o4nRr>pchpM9PaFk0uIRYN
zPN!`<mFV<~ztPiGy4;Zvazgxqb6v-e9AZ6^j&g3*$V8rJO3<f$=%$WeblhgJ;%H@%
zc_?Mk7=H_|)32mt<%E9K!3`4ch}ushvrzTN<L^5DU@$jO!N8w7{$fZsP~5=ZI{wk|
zua5gV?$Pbrg}A3&`<zB&I!Zh^^#LWPrNkMyzqIM4ktzQjnL2BIehC954gaXqvIa^S
zC~csOfpx1(R2-SaJqGtIDxf@f0{pOIayi2fmE0kX+f`A+hYZ9UsA7Oy2v#&u$v|ZT
z>?z)Iqeu#{bqNMw;9<(FDna8nUD~v&0d8tHY!29*!yEH!7<k0MF$2d9JZhk(fw2Z&
zGf>MwZ3Ar#v^DUUfjS0~Si6C`1|B!?tbw3`Ck)gx@U(#j2I?DlQe02*wsX?p&b|)R
zmbGy6z-J8K86H$f2^c)#F@?>UJ~oA$C^j^ZD3V?z-@tPQo;UD<fdw7?ZT(htl;{kU
z{IP#Ko)SxDV*^bLM5m{4^G|Ln$Tp@Jc*#I(1L+1*4Ky{7W}t<EW(HnnLtaa4Zs5y~
z65GyQ4O#E}pM8(wCXg)+{%6l>WnkqW=~RhDadSnE_mF|GflLD#2G2N1ptZS8WtOl!
zGiHliv@r3R9ZlOA$T85vKu-hh4RkQjnb~V3<qG+H0|f^1*eP~NZW~y`Op^?BG|-7%
zJTh_g#6+G;%MCwyDlSX=^rgHm2D%!cTXr+>eMhM~Z(sLoKhh_kJM#51xK$d48W?7v
zkAc1h1{fGfB@KUsrq4?0&+eO$vT{*D=}x}g1{v7dC26pMA?ztB@uwBx`kkcz>SDuR
zG4QH^Q9{q*21XbdNzI4()p4K0)CwtVBQJ7B8yI7t)zbX`TK!JXq;Uquvlk4+47_gO
z4Fhuw%r!8<z(fPn4a_j`rh!QY-Zn5rR8e<u{A2@f3B10I|K!lLlQh-9Gy{Wr#?Kau
z)}>AozmbjXB+WGNj)B<*-s7;EnmNk=PkVXS09VoaW>5B`E<ca*3l6{B5x;L>o&nY1
zgAnE$_<#m6pwNp9EHvPC3oR1$^1B#?>(<JfDt=X2@2(n|awm!3f^`Fi0o#B>oePpo
z1J&vzSR&V|P7*)<lIe=u2n#guMJNAPfJe!2yPNZ!q(3@Ig$5QI_{_lP29_9DYG8wb
zjqG{@%M7eGu*Sf011sonba;-|&Z2|{zBfMKS<3D#^&9Rx)mj6apUYflV7;hrNN4F?
zA;~0ujQ+^LCIj0Hd`vL|TMYlioUN=;$b2H`2|;s9CTutGiGfcI{2~f3-$i=7i^Say
z+jo(6&^HVmFmTYoE;h%&9s^$)*v-Kr>itRf=P~Mw!$Z4B{DQXEz&-=}*<W3JwfTXM
zbV{19yd^k?3>-Fa#PAP=VW)h}fn2Q2Q3KzI(s&rqrY_R{F4Bwj!Y_?ZI$_`>ho_0=
zCQcbRZJ?Zq@+Qt0IBVdxfnN=rGjQI(RRh=9?*=X!_>O~u{t%aP$-uV;E*q#iD)EOd
zQk&0xce+_GZ){#tl_x{nN|kwPa^e+QxT`dNdgc!Xu2U-mHyKzCrT@sHCS~5>P@3ca
zOXc<a@q$|herBAko$!m$_LCv`X;NmBuF}PUzQf#Ma5nHS<F<jj27Wj27ehUJp;Vba
zsPM(~KSi$2U8UOjNh7+7#{<TM+Hv;`ylV%j@S2tRM}N(IU?9#!NfV_^6f;rW<a>{l
z5+>Z+xdnfQb`DFK(N*%gN;|tsrA?GEQPxDg(*>8hN+r8Vhm1_hgzJQBcatiZc!)_R
z>YJ!&qLPW~CTf_dY$DzSOgwC&iix-0#7}h-5=?(p?6|iR8+VhodHGdMR5L+6%jG0c
zu~Fml|0&Gv&`o;8#G@u2Gf~GxO%t_Ds7Lc_3(3}h=gz4a8r)5)_(tNJ#|rA2_%{%G
z+{6<m7U%mOJFT1VRLwv2o#9CnPnme$#0w^#HqpRDLlcQ6o-q+H@vMoUiP8B<Gz&Y6
zwCT(g(jE&l^=?ul6O+gLk?=Xw|Czh-Yi>t7Yr(rIFR}?HQcS#LqKSzlHoS3OGF!c*
z>8XHU>Ber-=bQcAkWx)FH9=2kMl~iU9#nH?4$a@+P5QZ;)cagPnu!)B@=X+&XlbIA
ziEI;XOtco&Wta$?NH-A@xBS1%0=Z>krnn`}GSPRn&-`z*GJ>`uDc3|hlY61~I=2_J
zgP>))OCR6zpRRf3nJ~pZ!;*=PCdQb4#O`FGvxxyF2Ab$%qN~VNe^rTYrvEU&T-^od
zsQ9hvVWOwFCBK)6-bJ{N0DVpL6QIAKk9YT-kk=ql(GU}Zi{$w`$f}2$7$%Zl5tN))
z1sHB(ga9K29VO^!LAm1%#dwVsx33Axhl<xtykYW@1`n2Ef{BSHe)Vw2!<!~1nRvy)
zs}3g98%?}vVUmTnO-!NpTE4la3a!?g*kEFsiRmV0n3!q8GGUu|$HXiX@0plm;$1q`
z?Tpzbb{$Mg?k?%CHp&`SWzX}8b4_&UF1>GJo{86PWen{u%{MWqQ|^>s@(dFnnE3l<
z2CoGs78c<})LdYth@+a&1l9%Zd_0d?&K^uMP44uP^z*F@hlA9_auX{|L`-<}d=pDd
zL`}p@6q@+)=e+lBXRQ4wb(+vE%C7G&k-3yzS+)$d{m{fR6Bh;ZFF{wDSS3nWYhpD=
zZVzb<{j-PEpoi4Eb_M~nuQSo9hg5JPZ&VLyqlu49TrqLg#3mD)P3$)DrHL&jwwn0N
z1SghnGyQ4Rygo7UvA{f)V7tjzd}(BID)py=xv+=yxscysVkb??R@cky)iLP{hK>rM
zR{w^%AmYg2{5>YVVt9Eo@tldhCia;)X5zSs{U#2WIAY>!69-KkVw7kdKFl#y$1h|{
z4{6c~|HD?_6CF4i`zXi$L!oa3<>v65M*gFdd&0y?Mtf2CDHGd{hEAKf&_jA@SBR6$
z%MVVf-Yxm7*(qmDq^5;VO-Ve@R9er(B@^G7;AC%34*%8!>19EGEfp%&Qz9kjdj`XC
znZrw_T{H26iE<XoTe!|XGVvE%YT|~8pXg>ClYVEcFmcPo9d?t6pH2K?;x-+afvcy~
zx=g6rgv13O7u1;4^k8yci=I;Fp3;Hw$ljlQm&2rN!lk<Y?+(lPLzMQXiLpH;-u@$Q
z@0)laz&!>`0l2({eH3S*n1zxSN?9mwflOW{EYLV|Pl=oGpKlN*r?iDK7Rp-qby;Bg
zh{T3z;T>WwE|&&Wu<($DM=jK}P|-pq3-ez~tZJdM097m`Scn(++O6=V!#NM04Z*_0
zf>SFP;sOm8NKnl}b<3YWU&8{|)I1{as-6;YPP1?=3(tJ&ub!wQQfpf{xhwpbg|B)_
zT<k!8T?>y}c*4TaZDDf$Y8n2vr&Qm<lNO$`@U(?23)vPLSjc%IK4_t#g%_qIJ|k$r
z!m}2x-AN~>(vGHy78+S-YN46sJMeRqvGAf$;CaDWUAshM3r#GfSbnEJ_d|LT1BeBl
zR=_Uc+6pdk=(j)nB@3w*kJC-*RVqYE$(JoO7Zqh#NVCwwLMsccMIntimG_OrmKHh`
z57TqHAIMG@1%@nqRy@-ynRfDUF4x_JMRuy1DL|RM*=;Pewb08#Z^3D2p}>N~W?E=Z
zYm5tYu>6$~c>?EJzNc}WMZN`=Iq2K;Vt=J~wEWRZ$L?;SlZDO}x>)FHVO?CAZbIzj
z_RxMFCgS*yyIj9OoAj{Ilh!`q|K4#((r$fNzJ+0IuZ4aV`db(vEH+rsfffeQ$HphJ
z6OUa8r8N&Vub;}1HN?W5+Wt{2uUL51!dMHhSr{(5c%+3<7XIofjiCP51DE8q(ZX%U
zP_gZPy}K9YH{KVbvyHPb-ohI+LdPWDzRs?BB7uM|$~7YsEKC&6MmL^YF(tm2G}*#i
z7AzaKjkhgKu@GmYn2o6xrdil+;Y$nCEzGd6+`<Z4%)&bs7Fm$#HXD;?Q9TRqS$NmN
z)vRX0UefOuvgTNrYvBWGk{Tbn5PaXlJUZU0)UUruIlDZ#=e<VrS@Qm1_rlcv2^kA4
zEVS^)>g0LHQz|YGDi%}=Q428(ngyM@S+Fe_9C0gxCOu?DYL9mtE&D7;(6wu_W5Km>
z`fQuCLrT_ck@9Q(oCv##X8$nt`IV{P?g|nVT3Br1LknZpr7mI2*&nREK6xokaX6^Q
zWe}H5$oOV=a2cDnKAAeKw6KbXwXmL}czJL&eS1Z4t%Wrf^6%x%_%*B9`QVags(jxn
zWrKx{7Cy1?sl}6svB|<V3j>d)T-X!bOjUbHTP^&yC%8q>`Fnz^TQ>V%YWlH-I){SW
z>0sez#h0d%er6#!AZ`bTIqPke^0|e74+M8?Ox|T7(5{*LWX=~t6JqjtyN83_!jBei
zSlDY}pM_I2f`$DS4$y%u9J6rH!pGZ7Q1c@e4pFOi&3GMVbUGX)_}aqKgTbR5Q0s%$
zE(9~jR+=-X(QykWgnek?ktf@*?I%UO&5CEAv2d2--NF?M=PaDJ@U4Z*j1^x5F9>>(
zBkui1Gv+rU=Mtmnr$K`6ER5Kj^vMTpV|IIKRVtf*mEC<jxOH9H50qyhMMkyODWuMt
z<m(ouw#Z>e{AA&#sP`WWw=Dcj_ptD%g<mY(<`|(d8G9|vNlO{~ZIG1plHL^_I43>r
zce?J*AieRI>j75!mxb+XQvar(FAsh`yU~aZ$)v5<rQV~FE!?;8fQ7G1r8C!=-KcWA
zX5apu_3^z>aT_IU<k)C$qoj>eHlDZff{oHP%GjuF<1rg$ZIrW7)kZZN+KOO#8<lKS
zwo$>xLpI*p6@0KRxx?jPMH>}AN*=I17;mGB?R!3K3|kTGc0474Ny~$4cLga-{=*{m
z%HCjg!GFZYqc&c)OVqGIXP{%$w6XkLu$JvRWVc?@-E%<#d>gD|qpppBjc08<ZsQ3X
zPuh6OMm?(0OR8^U?7?8`Z9!sQ`%fkJ`!4%w8x3sqzM4f$%OrG3d&b5;$vMR5*9C(%
z8rgWx2600{69r}Jh9kkRmXvhL<v+V8_@a%*Hd@(eZKH{eB%9lbAk9WHHMG&xMrOxE
z_U}tJQf+W}@|tovNXoGA&<Aas*?1%)?PVL)J0}vfuzCDn!n6`8{g-F8v@!2Q({f71
za+NaDZG>3S-&yT!WY`GX$hOhO#)OtBnKrW6iav3~)U8~Zv<`a3kJbh!UCVB3W9#PN
zhuebJ)QZPjG^^3RSqB@rHpbg{-A0~`d>aF7475>TLt-Ip{`O!;8=Y))wb9K+XZHA-
z)Gjt&x{<=9diS#0*3VgSAilee9ya&4M=xrU-t6rI!9|tQHvZ83e#=G_BWK{QU>_TO
zMS=Zn^cR2)rzu)(NZuSu8DwLyjWIUd>}Eqm>Z>+}+Zam6u<?rETs#+K?LBq}S>_0K
z?y2OFHb$}Pvq548kkNwq-|e{b!Lc@8v(fgmU|fSL<7mlV(&CPZYkNs=&`>s}+n8Zv
zqK!8h+igs<G0Dbc#(W!7Y|hX~`1y43EjH)9Mo-UelyWbx!R*Srmu2zx`+=2SUX|Kq
zMe3P-!K{_RnKn;+!y+59jafGTL}R{<4{Xe~@t%!2Hs*4G90=~|C2>S-T9Ha;))uF}
z&)&4LVn^`i?%+4SX1~5Jd4bI*+r))7>TF8pFro8vATYQoHdOZY;h;g+T^=kQPN8pT
zHgqbyCP+-CX@iku*4HVAE(RUi(8g68*K9=Sc%1`#1odo0ZNzL8+W6SUb{mUrEU~fH
z#yT5IZNB%zN*k+eEaRA>t4~c_Au{T(wBw!?+-IXr$p2woEtn_9rmQIfWZvi{t+%nk
z#%3E^Y;3ggk&TNFN^i2csam7ry`>K2Qv$uEN8?g>yH#Y|Cg^8P+OZ;*5c|I16PvSG
zvHL&1jn4(x#gT5KMQ?vQk)1ZW^#0$!Mcy*k7eeMW!TeHSR{E8Vy*BpQ*l*(;2dRw%
zHV)c2Y2%cQLpBcEI7-EA9ARjhgs(+LmR4_MyT$AL=j3C8bKJ%W0l3}Ay2&Z8#{0W-
zEKhFVa7^N98)t-xo|*(+XKmD|=^IDuEnN^<z7zDKjY~GZ6_}})ZP1ecwU--cd@uM{
z1pQ1j;RhSnZ9L;3;NV9aH>jS2haCK5<ED+@ZTw;5md#n&nD|+T-&k^XvtMl7vAMu4
z@3y%8RZ#K|eI5LFVu=ICO3pl$e3!01ztNIq$$#4T%f@{h59n+*5>5sGv2l+Mb27N$
zen=9*v!a>!FN3X_n6NfA&OtE;r5u!Ycu-MZaR=CtT+%@aaZCRslbox)r80t3&Ovzx
zWgT2zlgz8#_2#FRrOsa;{NQ5NV=ICc9aM5q(?Kl<l^w)8sP3SKgDMU#RLy{chaLR0
zCOJV+hViNnCb{jaIXIEtsQB(g4&-8eB!ayy8$IG6wlpDYRq#;<q&}x=Mr{X=Ie41#
zU#HYz$$g|J9Mp4AS76>g?qGkbl;lIf`hxSMgQr;6r67}du|`t<^b<4?g{)bY^{j)S
z1Ia;02Mrx0ItV++bkNAba}Js~NOJJJ1OBk~{yytP0bX!W{MR<*R4JL%*ntwCPmt^&
z#X(aC%^Wl@*|udLsa%)DmmH9$I{qUELD#WuNnfUb!vHR&3Ho{;iMWM>mg1JUm4ns-
zrx$TT0%QpK!;S1L2iXqVJLuqG_=CJQ4%#|s=U`qRsY>OHmrrHI9SKss90w)KrV;4N
zg1HXzg)(_mCdYqHcyEiZQh|fn9TN#UIq2-5pM(Amx;W_Spr?agqP^W5ba&8$H5SX?
z(nn$(e)3w@@M75qskwtb4*EJU135dFC9~L}zhsgA)JH1SR~q18po5#sQ^{c!gB%QY
zFhr>Fe(|KC^pFozpXw_ym0*~I*Z;|0o0v1)!3YOmy4d6T!EL02qYl1tFv`Jb2V)$J
zb+FvQ3J0$_80TO<J=4K>W_K{v!88X}ZqgeLwpUDfQ{V}7p^f2*9AzDnHsvNw;wvBr
zZ#j6|fmbdxh1TvX%`F!yvp&4yo7@3UXOcPH!3-fk*TGB&?>Kl*+|F|FE-l8o`bxd}
zN+m~RUMU+2e3VZx_{mI`KgU6Zf)D|(_eGX@4n|H-;q3wk3t6LssDnig%H$?#4s-{y
zgNrYP6$dJfzr<fb^T&wr`+X&Yk>T%<<-iuebns?;XlRvCODW_ya2-S(Z0sxXpV9dW
z;k|vOS<S<TkA-3m*v3K!iyaJlJ1}&4iO!=EmpJ&)!HywGOGUi|-@Tf&j2<2zy3$u7
zrOZkPTO4e4u*$(|2WuRxb+F#S20F&5#C3w!x*A~N3#-R(bnp>t-xA);!G1OH$vZyX
zByju3GCND5-T9$y4nAf-I@rU$pfZ1@?+}H2;^0#U!`?{zN>2OC!RHR*`bjnVNyU%l
zHm(xd>0p<GBcl_)aIjl|{KrDe`3h)s;)FlazjC-P4+k9_a<EU7wp9rq;HY=7bVw5Q
zWT&$^v>VM!H4d``2VXn5lOJM@wdQ0t>c@oup<@n?3*Ua-#R&%|9n^R6q>EDyPBSFB
zDDL8ngR>59uoE4eb8z0lcMiUHaA|$&1yTp!G90Z4UZfvZ$S9uSKa8zB9^}*SWg7WF
zkdOCQ99-pKKNGy};2Q0)J*c)y`N6@mP&{#kuY(!klv3&OKQcz03O3&wyy@VUgFhYo
zMf0u={_NmaYEE;tto)0E+f2Gr`gSjWl>O%5u7lql{NaF41&s48FZ<85(>pe8dLa0B
znKlG}vsefB9XxPw&%wVAersL1OT`R6R1Cb{oWgVa#~s@gB;Xb2LjN{+Wks-ri;^zj
z;$d1~b+D9+hg?*2QQAcr7iC?Pb5X&?)#BOZU7U@}{`yRim>@YW<MRtXW@(jNRCW>X
z;?Tqr(&=D$OR$RTw<y8IV=Ysnn}fvEv#N_~E^3qM;@H+;br+Agc+|zsxQrSuo(eZR
z_O1U<ZN=P1HC@zV?FkudJ2{MREMdzR!8$JLx;PR_dE7-k7k?j2CVs;8pQ8wP$@_y(
zxp>+|u8TYu4O~3qqPdGS7XcT~x_H6Gi)`TXV9-UPi$(%Bqz=1-<#z=W50<`fmw3+g
z|Drzc;<<yt>8+ZPHg?g(#Y-+yg}m{gc@l$_i-I-D%_df2-W0(fz9u<iN{OZ}nz^WR
zIjCOpANgJun770&T(oqN=^~5rJA<uUgj{5}Xf1BjDS0RuS?NFehF$Q9ls_~T&Sj?+
zrjo<#*)H0-$Z^p|R7Xx**Z*h7R5IJUc;{+1ag~d~4lcUSZ$z9=C0+Dz(bEP0&Py)3
zvU6uQ>geLLv%yX-I=cwZNZfxp*hK*1r$1=RKhE7~>Q*V;UHscBg}u<rMQ;~FTnu&5
z$3<Tk16&MrVVw^4bJ1UPLHerXjm_ihoQ&Il%J;EBE(QxXcy3EDe{7|-tCDYR3l4Mf
zii^>L|Ei1OE=G#HBV5pj`FEzzs^Gg1=hr?R9OZ)k$^Scvr-EZ#jCE0BbMW<ZS+BVm
zC$g}#@hq)W+tm4uNZ)WV!No)uZ@P%Oh`D^&z+@NmT+FAui??08>teQxDK4hEnBiik
z%acPfb#jM$&EluiAC{#Ov$1^ko;;z_J1%BXU}vy&%M`v3p)vFNB)`Yn&j&}$ZS=m2
zIRf+XV=kTHP>_6H4bEkK;9>zS<HB~a(8VGbh6~e$>_XwVqc=Vu&%RS#XfEh=12?4d
ze*ynH)ZgXza(+MQm18Lhqbqf}QTo;6B^{b*Q_yu0p{s<NeG+Om?PSmzT=Kn&Z9Nyi
zoewGpf`u*?yV&Gnvx_AzmbzHsVx@}@g`qm#$yz2ruliM%yV!T7^nm?AzN=Z~Vl`de
z#d<2XJh;ZiT9*%#B|e-`iE30k80?xH&%Z4jgtKiF!-4;6nDi07VnedNE4anQRu?H5
zDLY+kbMY~q%Ejj{w$tU#1{)%yVRo}&^BR3ZPv|Fo>LPn@kl^3>6<5zp+~LBJn)0>A
ziFX?vsgkkF#TV?deiHF+28zZx`|f0Y<zg>~u!n$$eJ=L9Xca;02oAV7$j}r)`3MfV
zIPBtQ7r!tvxcJ(|Wf$MMIO^gXhAbE77;Rh}XIC15Q;h#E5)R~?q^kY=zaESFNf!k;
z%>YP;TwU;KAoHuIGXLx+op*7;#ka1%qWqj5xG2CSL5CblM}KKvt?)lJ<CywAebvQ}
zE^aVXy13@zx+_+!mr3Bd^&i;LMu6bNFQE^%S0etYh;xfxR2aDFqVRf%GufDQ^+x!%
zi(lChE*`kJ!!CC57h|1^yX>iGfY%=`erJTt4K>LPC5_Dglil}wWv^)-lek*~XJG#0
z;-2fzo_(&rzvaTej5+=NJrm+0C>HS*D-%KSh_4lA)s~E)L<9u9m{cl)(h<&1&pduM
zozogKCZ(+FoK!Xf((0uXDn#&51kXeeh@he<0TDbL@t6EpilA}?@ex!J`~<;_%=5oO
zvZC2<Wmb)#S_E|>s4E1jNAPHbM|+?~1dl|(jRLr90XG@oRtB{qs2xFYdHAsik7bwA
z*7zH-a(jW)w*zE89>Eh4JQ=}L5!9n%MxcI#>nPJ+eJ5p5!?vu88zww0I30V28qixt
zW^$W_&K*MMilsfvVk1b7ASHr^5gwkH$cdLP5Jb=@;_uP%Tm;Vx@SuK1g*}<$`%9!R
zM$lLYH;EuAg6~hJH(e6ob`z|t+3a>NiRPpU!=^^iG=gRkyc|LE2)-(lFu%XFrN2bs
zL;a;!k}|oc2XnQEfKzi@3QE(ZM-Yl&c?2sW$cP{u!Q=?uiXbzBtO)wik`ZJ_&?bVe
z5p;{7Z3OKousqlyf}9B2Ggp&%{$7wXzH=fYn7uZb8^P-<gS_%0$QQx|f>K6`prgQ@
z1npeJ?;-%-Id_ksM+Chh=*@nK_&?>$l_$rMMvKQw6H742_lcmdkZ=8<&H4w;`TlJ{
z1Op=&5y8j^21PJ9f?*L(bH&%`DMQ%xp=Ja_BUpUBIl-CRO*^z`#wVOtBN#5q;q8tZ
z8LVPd1fwJPpe4>oiSF{OF%i5L0l`>7@Aj97d5w!;yx_bp=o^BPKOusNMflAKPw4aW
z@;dcp@a+huM6f6VIfAJXOp9P{1n);MJ%Sk#yc@yn2u5{GoJp%niL)YjCjvfu@ZvK7
zIShL5MKEDm)*O0WEB|Faap@DmpIfKQi(oz-Lu$Gpf~(~!|9CuwZ-+jh4c8_UkiU@Q
zWw{TO2vj;}1W~$81bPHk1hz;u*u`&_;QL`y+z$N6|2gOvYDVg?6&zpNUx<jLtbTEf
z*nDdpi=Z%q59xamJbgT6aRf^uSQ-I;JF0C=?y(|aR`28`V=D2-h4TE}A)gPWD<fDH
z!L<l}h+wtvgxDLwz6jQ`T@h@JU|R$mP6yXVu#vq_EINo!t$g?RV~dnc5p0fNO9aGc
zx0hg-l|SSE1C=YJeH_8|2tJGW&#w39BzzLVr)+Fr-*Xo23%<0`r=M>OejdRN`o_lK
zPEqo%2r6t0^7<lz-2#6p=pI48DoW+!!F~?s2rfo&DT0Fx{`9U0jxvl4koex<u<%v>
zxEvA15_}WEF-o2co{!)-Tl!<x%a{CzN&ftuV3+L)o)q+ypr-{rBk0)(&I!QbK(PxE
z#8UlN$E4pza9NapHG=em!SC4b5nQ2_<}_kOUmXbUEgpaWRC1p+!FNuSWR~kRR0L%`
zl=E;Sf}bMzErPod+>GE>1iwUZTa@-QtzDumpV$}m_sw-^MetWPa7A$P$+!b+gLl|)
zF${l?;ExFIMer|;%uY|Q{5O5$ZkyGYf`9$j>Px|tqrra!Cb-X7cQm*)J>@|Jd@;_a
zX!cZ`=fC18=ApO%#3ckMDQGD{OAA`Y^Ixq~puC3)9v<=VsE3C<RP^w$hpHYbd8q6m
z!9!{|Cn?>3R*d&h#Y0}h9QrNaj`D31lOP1hspcVVfW*&RH9S-onB(g|4qddShgu%$
zcv!nBxweN}<=Z~y`QHKvNO>(^mRgsbjFd4mIy~;-^7`Z_Jk%3_xW0!c1%9fC^RxgB
zJaii%QQ%n*K@W#K9QM%ALn7yjc$nm&k%#9zbn?*I!}A_q@X*3TOAjx4Xzbx7Do<<&
zns`WN?H-cEEjfQ}%$!g&j)2!U4@#3Z_3*L>u5%%7MiZ3`fB#Q<bGFpO?i1;cb`I?q
z``)+m(Aq<ehxQ)QJ%l`DdC2yV;UVlH(?h8xfiDpH#x58=Kq~kk?VovR^LG@q@xTQU
zZ9TN}zy&+U=ckd*8z3E;pHI-iL#_wO!_$icc^>lVZ^$d~uw;PLy>Ak);nni^b3Ao^
zT1O9D<1^F>q%O$s;-RaDVIE$gl{|F!Fo?By=;5KKhrS;AdFbV#w}(EWWENg$VVb=;
zmtcbzAnosAfQNx1b^3yQF7qKX;kWd^ulX`VJPh^l%zG(Iqv7e*5<1VoR|BN|H4|R-
zFx<m9592+I@G#QDC=a7);m(0K_*gY2o`#(i3y+}(dU%c9F*A?b)?FMR{XW2da^vBl
zud~azBb<i`p1&a;Q+ZAF{Qd68rwj&4lRdoU;X@D0JiP5;iid?B7I~QJVVZ~89^U&;
zZ4Wa&yyKy4h42i|UzKz0hg_OymWOwRt%&bb4JQtidUnX1BRKDSnCD?`QL4Q)bH0ZU
z*wKpv3p|vL%lo5!h!=0O21+@ROxc6t!SUdFP(5fKEDxU-26PXGhuSq0Op$lYK*<~^
zG1qsW=C2<p*+Pc5Uk#KZ9y||)9u`y2)1fF8J{5{_R8CGI;6;~P;^A27@YbI~OFdi~
zDE&E5+Fn*#e<!@$!wL@{d)V$_rH56tl7|hn{|D_?dsxE}=iy9Yp#9DCbsQa668`h*
z=by@}IY`>*;Uf>5J#3*R=jZc?TXyRvj*DSQ1Y2oOE3i!{qux)Z@o9M~^NEK~J$&h5
zkB86L3J*Iy?DDWfbTL(}e=KbM=x;^%1>JsZ{BHXHGocp-`JMaUhJIhM>&GST^RS;0
z=8gEhB4g$t=>Yw0Y&@@nLV#*;U&KCxq$3`_=6Lt;orj|yzVXm;Rf%tD5D&*aTww1E
zNjkx<pOSdm!;H5QPYQfWP#(WNeUNm<!&wjKXplGKDR!QAUYY3)lG=_+889_v^r*y(
zv?|LPpLBRbWl|nT&KcL=d$__jj;{EVhpV1HzwWxA*91K_Jmm)t>KaK^M<nw4k)u-Z
ziRIpvD16iN=Sbi3@H0cMz_$hEQS!x(g*fN=HxGB&qC$LAh~GW@!H^q6e2hEY`A*Jj
zMihT}_}jxj9_}%kMe$q||9ZI3co@Y~Q9SSv7e&=5szp&O`oCNiqbMFli6}}6PT43<
z-1XPJmWrZukxZE=j)?<O$uB3E<pr$}#X|yYJK`UoS}BUkQE=4*aePtUDp4d9VF>VW
zQI_ga)QF;X6puymh+sY%MNR56A%4vhaoxlj%C!Xl%r1W-N}VX`Mo}+{`hxkmpic;z
zW%$!CbHyRE|IJ<GDH!BD9YsJ05H}Fu89{l7?Xyt?qi85@6N_YqiV2o$=HU4#UWlSa
z6fL88@xRn4Qle;FB-td2r2og_*zT92Xc|Q`!Ay<*ZwlqhMKWn@=DNzw#qH)nQdP0E
zxs|vLMUfFj>mtc?0oaOg6q!+Ui=w;WWC@xlXm%8B1ZXQLTh~s296{R)+Ck7<K`T%8
zt&uNqfuK?p9R(o2Qxu&A?o!0*8uhpTVp5MNdPXrSiqTQ@5~+iWWO_%@rwI2IpkEaI
zi#P)W7#PK%B930g|C%-=ilIfEVFJ7o#j64gFXE4gVq_71<<HO<fhR`srT}B3c&#XP
zTomJr@as{$QG_Q5V3+cnFe!>@Vh0}L$x*yjB=dF@Q;P6Z$_PBYh;#n$(99^_iDFh1
z??&-a6q}-$9mRW5cu_>7m=nd^C>BK_i!AR8`au-)1eh=AzFq~al-B~*ySDPeD2@)2
zI2T$Gsd^NK0IHx`6x@-R!e$g!lzWW$Bh-$<5x`|1jY^#VnZFNk{0M(x%bF6tJs&Dv
zCKg3u6l>UJQ7n#PNfawYmZgF&6ZAttDgRCr|6}O#DE=5Eab4TWC{~H2)q>8C`GYr8
z%=B9q#RkD#FX;QTe0??w{NEVg9L1I>zKUXR6kDU%7R6^#d>+NeLgo`enPq$QfAf|<
zE#l;v*dg$)D83M2Cr8t8zx>_ec8{Q63OZcuzTUD<91pGD7sdW4zF|0u;y@G!qc|dD
z4hhQahw0VR{ukM}Ap<#Ii=?B1#t)W`GrlnrMiCeD#ZC(T^(an7aa!Orf_@vtSpg_>
zPJr`KTqxpPjN+2O&EtFryDac`f_`5lb47rwf?kW_2LT!k_WSq8C~idYQ<3DK0^E$^
zRun%A{EMK!MRB`G=2rpkFgDiq2Qsg_^p>L3KiCoC%-_ER=Wjv(DN4P^Ux6ZgKk9Ew
z%k0HsC>}$_7%B-nlo0eGK}*I^N`TUWmJyU$$_h|U(DE@<DB}Os&-cmH!ICU~I2gG2
z3tJ_Igc!;eqFf;m!^1H=AHxeVR28}E#86j&YJygep+*dk#PDbgH3jFf7-}z!t3?{a
z=hgfs&#aWVXh<Xev*=haZu8iNj|(yKpNruMf$POkUw|iL2*%Jb#=VB(o{E9OPsh+8
zhG$|32!Uq>WjP;S57b)dJ3J-NT@Ua|jG>W8C4OUJoL1eR#_(bcjbk_z!{Hd3#E=w&
z6hlXf#gGz1D29v}UWy?#hO`)3#LzT`W-&Au<-8oj*t?Zyh-1)M)aY0J=c509p<2e!
zTF8*oik6w?59)Nmd1r=?!!cyW&@RTM_sEJNJBERGE4PiIO;Ii`j<)aR_8u%fnBezm
z`xrXJkYALVD?py0-6s1DnIPP+AcnR>d^I}7&^d-lF-#URU1E4OhT$=EjiDQvk5&qc
z4(%R8j~IH!(5tBAfdcf7p-&N~Zw&ne?l0(oBL3q3eno@C?cf-O6!C`&Fig-_1ikY~
zXhaMn1)dPYs2E;<BCfAp@~^oVEtq2jWocstcrAu;0*n{*^`g`_1o-A~`otLC6j&Q9
zt+^85*VwmWcsqtYF?<!nlo+PQup)+)F-(hLdJJX^Rtz&@m??5CjNu&t<_bDX(02u$
zE$DlK&JmPag-euqzX;D0V7{Oq2)ZDKeUttdmlnk!7fC7ts4-{)=z<zWsT)Lp+2XcP
zP)AT#&`1oP08v3>f>M){M@la)!b@UUD)5IzoMi$m7xcg1$5k<W62qs0vpR+~F{~AM
zouHdzST6ue-VnpaBK%Pdn*{!FhQCH>OA&u-4BG_$SkUc7{D<|ldiDJuEMA{+P#5uc
z#IRG~T}7NP1lS$JmjY~g*<UBMmj)EK2V(zwvf9t#ARaYy#K1Wi!)&3+kr=*?;c^V$
z#c(u+Z(=wX!}%DF#c(`^)1r_Qg0k3C0-TIt*%m*D@zO@)ObllQ|L4#B;6NuNy%57C
z!MrGF;NePqOeO!@7#7Brd8&BA_c2_F;Xw>>g}55SwHSVm;g=YGh~at+H)8lHh95=V
zbZ#BbAMUTRNpHq*EB3!l`+3Vb%%nW*<F=5z!^Xz&Ys}w8|K?0TCftqTcaijmpj=km
z=L>&P43qv8oWElDTY!HAy(j3uf>P$b0CP%~DOTuvV<|z47otQVN(%gS6<@cf*ZKvP
z7MwDL{t-O9t=zL+`9f4E#E3$SEW|^Fs91=X3(>p~l?qY05KkAPK_TJ`QKb;I3Q@Zd
z2@L*)s8)#Tq9`t3dbki(3$bHx#s6YpuUArP6#gGm-vMPs(S%Em!s31^L69sm!h-3t
z1VLag_kyHlcO++!oO8}O2LVA8^-j*SDgpwcqJoI1AfkXGASwtbC}84!)BL>m&goO9
zrn|bjy1J_F-0taaluzM7K~O<Jw?b()$9=MMCq-TUutMpFQmC9lwG^rgf+{Ig705wx
zS`N*CsYVJlQ+Qb9^O2jR*w7sdVOzCRkWzReg(p*ZG=(}T)Jvg$3Pp<)t(!u|-CAsp
z#7sAj6nRW!KA!rYz1?Yr1Wz$Ph0GLUf`G&<YM4T!6dI?{M9?$y4lBaqFGUQAG)v)`
z6uPC*J%#2ev`C>t3LR5unL<_yty5@|LOg|5DI`+d=^fqi#9CAu{{#LawnK8D+19fu
zv`wMiU75FcNV_8g71f^HZbYjs*`hQjh1?W637na%E2r>W3SCm@Dl$v_nKs-{>n!k|
z6EjFaGA1(YkwVWD2Bk1Kg<dK2PN824{Zr^8i2Dji`t_5`+^IDng@Gw7PK)g4|MGcW
zkooT=homr6;3HBPCXnF*-q8%V(r=hnhWJSSy%pUVlfu{(UP)nF3gc2-l;Ii~R-`Z?
zg^4N5N?~>ilLUupDNIjcatc#Ym@0C<6hB+_#PO#TW=0A#Q+TIRL28dhPwa}Ui)l^@
z3sP8^!rT<*iBX$>S0w(UpEyEV#O|c9G=*g;@a6NZiIHzE5i~7JcA~T#m+Eh%v7wbI
ztV&^H3Y$df>J-+duukA>1dJ3VkQY+e@c)@58E*HZzuQbNrm!W2mqh7iL3~F!TLu2I
z$iI_A_-YETrLZT3y_7A5R0?@1ype*Ef|`Prf}Mhvf=(++!A#-B$&oE_WAz>7P;!by
zK28d53VsR!y<=Bt@BeFs$2%+%p)aJHi~q%k2Fq`z@Ky>tQrIb^+MbFoVSoFskFbf#
z;=q<&DeM*m?+AEEoP~AgYLa*9{tPK897y546y8taLqWs39|&Z>fOob!Qo@hKW7i&$
z{0CF`B!$B%e0Eodhf?@d$iULRci*y(h$^4omFkW)9!=pGjY`Eh6<?)rJcX|m99Qsl
z3Mc4y3R)?g`@**jRtm}~IGMt!6#h!#?-Wj_@LdYOq;N5X?^8I#2%o|Q(aH}goJ-++
z3TN+%q`jQn@mu5tOm~|8Nl^ZLR~~kX|FbTo@M{X!n3=-m6s`!G-&44Hm(Oo0+!hlH
zFSLtC5q@42g#X~=kD$DHmyFzQh@2M7GjH8(V&tgIe^U52g<=YdEBKGB7~~ZcQX(e#
z6yz5Oah{o6K;S33#dvxNa|$acqM)eAY<E4f6K3)N0m2drN-8L$;9dpy2!c`q_VJ?-
zR9Zorf_L7Cevi(HSC@1JP;j4u`vn<kwoZ$}1rc(4K#6|%I?ae0Ew7-0g2xp+q2NIU
z6&2J}@UVhPqGA;VRTVs>pt5*;z={45kV!QK)fLnbnT&pS*sjZq9O|ieO4m~Gh=NBI
z)DZ+NI;7QBASq~6@c)fYT?HAU^f3YJ30Pl=rthlEiZ-0GJLI<SNRcNMJf+}i1x*#i
zNG2#7E65Z`BLOKuLxEJ761x+zo7~O6BU>}^n5Ezu1<e(-5RWYd{BK(HW5->|giNGQ
zC`c+;qhPIq)(YAv7_4B3f@c-9RnSvGF9q!sv{#U$AXh;L!Kb5wYz4>Kr<s24!)4Mt
zDcJpB)Zas|Nri{VvV!LnbXCwzL1!iU3}DbZi7o<Zk-u4`A@a$p@$L#XSC8g?dno*u
zEtPpQdDh9^_KL)X^4<#iDd?}D5A`-RgQ>5=zjBgaIX*zaKqXo|=SKq1Q!PVeerqvE
ziN3g4^F)HF{SbMmf?*0~D43~WxPlR+S1>`rNCl%5j8QOFi9SNGi>7mZd^9_IIIHc|
zc&)dx`ANe#C0gI-=M80^O*X5ZK2gDB1ydAEQozR}uSz3_$Ws+eQ=$(frYqnPPb-E*
z2U5-2+?bHDYnFo93Kl6?%%&G*&Y^4y<|~-1M0Z2*_J{35WPW?FKmqSKSg7FC5c&F>
z+03~yL|&p`se%;>R#LZfqqI!Has?Z1Ml(D!OUF0Vj$Uq8DOfE=p~f5S`N;I))~t03
z)|01#H)vO^qQF#ODcGoBlY(vR7Y%!K#*0+Df-Ryt7cyQ_uvNj!3SLogRlFAdHa)r!
zfjoH#7_TrsQ#SdUg4Y#j3Umc21!afIiUO4!hRW@S%4O4&1BS}8hsv9W%3RAB{A-pW
zm<L1UHCM811&)G%GHjMy0g3n&U}z~%Jibsl&U2QS$rLgs<S$C(O$Bc$cwfN>3bqTf
zU37T`Z!0|5Ei$K_Mbr5;%T5IatHnvbThQ!P@U9YlAF_vWqjHqLPl5bvf}hR2r{M6=
z=#02TwfL_?<^2jiq}3_-RKZ6|^wrJB3JxgnDkjLB>7as71kd8bWIpnPnM%Xt!wNoA
z@TG#I3XUlFT)`J?s8Yc@R~k`cya<U)4Et(Ce^rh#!i<l8O-8;JUE2G#f)floDxOsF
zje>94Qx!#3oTLFLxS`;tg3}7VQ*cqiB?aFrI77jd=+K)V6r81hb&vf>E1HvWj@~*c
zcAimULPoeKa%VoixH$6y-ECS1kKFlLiB=q*ZWsTBme4NFqkeu>a9P3c3a%-*Lci`3
z`;D$WG2<#@SC<%5-Tw7>a!d2|1+R-1|70IWW-{jw2Fz)lNXf^g)zWV%_)9@P75P>C
z&3MaY1s*V^;2%N%uYjavglExh#!ROmU%E(BKn34+3JF+HMTJQjb$XXBED+{T?T}VX
zMR66CRa8+?LPbdx52!r)0Qaa-kSwhtO+_g||97ektCUf3uL`KRPsNhT>14>1u7W4t
ztQeJfzo6usEh!%x6CDLmPDObYl~izzqk<6QL6x62HP}}zoir5%&i4mWJ|tS?s|)d}
zDypfFR6MGpx{4ZnlrtVtQB%dkDr$*Gk{xpjvfa&<(^*Q$CTfc!{sz@iQCE#dt-gv3
z(Rw|>zg49)60<HNFpoZXOa<ZNw2gg@SN2Lir6Q&xTSX@o4OC>RNUCV9qM@kUOvN)Q
z8mVY3I5$zzl=6>?J*|R^M~_sBOrkrt|Id#2H&?-<s9LFLp`xXVEERE~oC6g~a{}$7
z2AS+Nk%Wql{p$sZ2)0r2tQy%EO^$Wjs^A$u9aXeb(OyLd6^Eu~b}pD66?KUY&!MqB
zHB8P?k*lJ&iaw+tlOe0<s-l~U=a|_u)>(~gvWtqTQ!`jfyCwhiw@UH2r|v3xsOYKU
zmEoDaRBT=zA*3PftD>KZp(=*aSw?5{S20k<^Fj#&h*ZnR4h|BJLj)YG;@g@<%eSvb
z^CN$+bM!VoTxe;OiV;GRK4UXSs^G*swL~#Ss~Dq#2)&6p<5f&hA#32I+(Z?VR0J$l
zF<HeF>O{p_c0t876$?3<lwnG2x{BFqbf6a7njyrPsp8nmQnS?PFeuK$7w#RKLm5=e
zV|ONI&ZjC=F#pc0J{u(gt1niuOvQ4+VTpiC1>`%%3W2N=aHR?!xyHWJvsR0C_s`Cl
zFtyA&73)=`R4619lp9rSQn5kcl#OSLy-4+{*rwuD6<b99RuvbAWxgc%P?B0pGGFFE
z(CWHKmarc}rq@)wu7WRbEG2zeyI|3hnX2fHrNUN0VKfz_)KwTNOu>PNN->d@Biix=
zd}~gI%P#be_1m0pQt?b*Fsa)$mZ#zk75}REPsN)m-l7iq3aw(h8eNt3fr|ZXMa2#k
zJ5}sbu~)^rD&A4Cr(bM0AxCYPe5G)-?(o|nX@6c0^Y^KEPsRHj$DYwI+Na_+zzN;j
zk${vRs`yC7VHKaL_?W?=hjdWICn^rmRmJsNZH~tesrXby!A)r0U#i<rdTfxy%#(v9
z9;SMPZrDxwQpM+VUV7`vtkoB?hYyR+Sv@L>*dlX|tN2>QWffPbKsvaJ^D2I%p)&ZZ
z_+G^sH98gcl#0_TzEd%OnA|jw3ip(5?n<ogES(H<e^8+flh3L+$L<W1#|@CqmP*!J
z(E7|Ux$toLf{LFwC@L<g_*n%{qy0t2%CgDo!)4-3ZHCJ|#>DbJl<!wkK9H~Pa5<}T
z+p8*mQ*lG+_IDN6M8!WSWFl?g$Wp9zU5wy@;r!kMf2!CjxZPB7OO4JG{)_Qn#Xkbi
zozwdCj!3=xhezuUw^iiRP*+2ShWr`|Xeg(lyoQ1r3Te1ULn$7jLYvo6R6{WhMa1Ko
z;WEdlxE2{+2@NGR^cp1f8j~|{PsF)Q_jX?*QCdTqhWj+!uc3^Fdo`qMfT+^Bd%I#I
z<nJG9TXnlsXM{|7zABvH6@d?ESkhf8t08xUOe-Qj`oF9S8XnXlqpGE$qJ~Nus%ogF
z;UNu`1$`9_!$!z$_a{itv2ZhFBGon2&`?vu!-D4dyy%sT#}PB+hNlutXSw*Rp|%FQ
zpCoB`R6`wBDV$t4LVoX7y!8GA^PLfLJq`6WG}G{mhQ~BKt|3!HLk&-8cv6G$Kt2lg
zl!h4lrQulj=$b;FhE3S{zpTm6M~{s(G}iF6hV6r-Zg~>fZmJV+qT!<va^BANO*QoE
zBhmPIv~qKe2b!U+hISfSYRJ-%(2&$3cZh3frQx?P;>AxzGdaw8`&3qI4Q;gOztyuE
zcza!?9@63N?Ur_tb}UXF`#!6^h7Lk+oiudRcr{6MG;y|ub0g%5b>%Z7lK+m7bEs+!
z<N8H%@(R4PjQDdJI&0{np{oX8L!hCXhVBfo8eY`ULqksu!!?ZHh->JrVW5WRwdfQ5
zKJ18w{v7cS>h#t4MOhv0D;%KVyHj<3|EdnRbr7lXO&xv+H%P-^cK^A?7rAF-dA%VT
zhHChCd!1p_lGEtg&DO*}uo{fiFiOKx4a+o))-XoHO!h*<SS|W)bNW+dz9`z3$T$t-
zwP<Jk1OX=sI7z_C8m934AAwI7kYv-y#H>SPhRESpe8gu{^1XGI2slT;k}K=Y)i95?
zy|NzDe1R+waG{1pck>t1z(&d>;BE_YSgv73<UWNqYT%}oHQ%;bNljXfR%y|8jMW0J
z5pb=5%v`5oy}(}(aKqjF1uN@)(<Q?=SZA|_EgE-0BBkLa4O=yA)9|W>mqkZjp?$tx
zr~1jLM@P>@n{Hmy@O8mhxT+p^C2VRQbym@!YOrYP8Z;VGyosS<<jFcZ9lvu16Az0p
zHGFlcHTNmJIkhyE?`Uu}3_2dM{rr#Cl2Xv4|F&%Mqun6XkVh-ha9+b38s6kkYWP^g
zTeNTu`!#&1;cX2&G`y=}pN5?pc4_EzsLmb@t4`H<N5I{zxU$|qM_bQ3Qm5%inWcLL
z&C(U=6#G359|$sTbADd~;d99*toz(ZdBv)FN>HbFRx|FCI-ud8hT|N^7fW$J(I;X+
zKV_Keo9~bYZrN_^HsUB8*6^7ajw1qoF5njevh+(L0zY;)=PQ9wZ(nOTq2U`13&Td=
zYS`Sn0XN%D`>+m?lNwHmoYMj_=Q|DG3;c|LKithfE0D<}<sUU%&~RD96%9XW_*ugx
z4ZjMRf6=0yUmU)RT6C7ks*y4sfws+UKK;M0Q)hhJtMq*h*ERgX5W%fO+dH2Aw9fDJ
z-2HW~(ZEWzD&W@nQ^O5%+f#=dd~RyErQshf+B?sV{6%g1b^c~w4%W$C+m1OzSoAM_
zs&p$N`E=yhF~!AH7X@?_)S;TtOcc_i2tQiK7#)QLUPMPx9mRAM*OAoGT1N>TC3V!+
zA?dhBM=2c@bUdh|w2m|#&~cy64W77{rE*679<e8Q58)`O!pda24&r=uykExyI?CxN
zuSa)DbQmU;)uT5wrUwc)W14=e)Xr9MW29VBM<pFqbyU-%KN=6|sLX~oMSlc7A1QZP
zc5f9Ozl@CT0jaK|hK`4I)FPZ2otK+`lw4B>5vfda%F@=X^@t9>jPV*5zS}>lqmGV7
zIvVS!t0RK~=!og4r=z}($0;f$93?-d<HdV2e;bw2`(PU)`^H91a|+@~ArD*UV*>#*
z*{Q<KC`>~gSvBIumIRBM=y+O33mq+WG}XZ#J)@(!j=`&Pn~BG2D<Xze3tt*}?ZV81
z@hnzfoY_i8Tu0bh;%T?h|6<Vub;Wb)+UR(e9K`6f)zMBzHyzz|wAax=N3IT8M@Jpm
zLZvx6C^`9e(!oy<dEW}}C8wVGy3Swu=cs{Eau>n8vmX7jP>flhNnJVUB{TUO(L+a1
z9sP73G86T*7rE)^LpVx4^k3G%uF)$xH~#n4qX`5e*SF+r_;R5EItJ=^esJu04xF4Z
zNRR$pPz>VK&k!N`PyvVO7_MW4jv1rmLCdhMTWq8lUk=tNfz+OzIabFw9iJLFY+$^O
z2|6A!P}#sl9g}o?tmA-=$uwpi3e8x@R2|cFtkAJi$8>VmF`okHn5kp^D0#MyIXawC
z@+=*njFJz$m7J@CSKVFf5}T*v%qY3zj$GnJM#~FzEYh(=$5I`Ob?jJ@^Xl4W+X_X~
zXsecGE)()^UX`<4NA=M%Pv*RDMTbhQvRCO?O`FlNS;rb3YpFLK8)#<5o2}EMYxvfS
zihQiuDK>L*#zxx4Xn7O)Z)nDQ1G|lmUebtf(eaXwZ8~1nv6W`5;}ucy+fOscjh0Vc
z${l+tx7vUt?>Br+$Ll&$qvaH>;zAB@&<k27R*aV4VR|m6>CoA(sB7pjb-bbDO&yjF
zTZgYBpf;$ea!FT*r-P?}Qh;wp%eC)MULP&<j=xaHVWj8j(WQ{1zK-8JCL&m2CEn7p
zUB^xxyY%S%&$rnH9lW8BxHKj@Lv_PHx$o#mjFETi_+x7+o}SuA<PWs6_v(08$37a#
z@|+Lol{((j@xFK@^C@HGwPWPB3#IqAlOO8%NayTaf`h^$Ym9u514o8B{?u`ZhN0sJ
z9cL+|j?Z*_t>c7_Ba~LhS2~XC_(I2*I*#f%CY12W82QI?aSFq9Zj9Wce4L`*9wQel
zSd{UK2Zw&6<69l4betCSvA!8hCm9_2W_+wBNb{YJ?`bOZi`vmt60d9I8L*jU<GgzB
zoR0H4F6sDH$B#6*$r(TC_*usV8sunswYY!q7abQxY%E`}XxXumGMV11-08B8D^#G4
z-$lDu*#&X%>_@w^8w;{)BLBL8J;uso$I2AxhK`#I&IU>txTWJS26F?24E(L*A04-K
z<TFrdHfk-vzdHV-Wsa2t!R^3U`N)@9>~DSp1&k={FYS~3;jTP|4HPj@)IigU>8#7r
zVuEJiY}^_vS1uPXY2Y3M<qVWJP|84Q1L+1};JH3IX$Hy|xR>pYlR0YUu>=pQ{d#Q&
zBKH}%-@pR~%98UqnYTlpE70lB0*PMZ<VoY?18ow_VOtdpR20n-f6&0nasSg&C6TF(
zldBl0YG9Iq$p)$!sBWO0f%XP!7^rFBDFZPB4;!dupsvB~oOr}QZ3A@-9C@{)WZ+^>
z>`}qW?3Ytod|EcMe%q_#%P`e5P~X6l2HH+6^O%9h4Lo7su?3A!w@=jFns_WX_Q^Q;
z{9So&kBc=hkZGW$fh+?J4K!lE3^X&)*gz8lUq2pyS~T?Hn>mka$$!SlS00b={<-5b
zlz$?c8)(5$HeP1Y=1uMY_#-Q8ylhQK#tpPG(8j>C1`-C62LG)jTMIrfZAmiq5>?uC
zNVFAwIWfKrdz5&)-Nf;72Ll}q^fl1WK(>KS209z)VjxFQl1w&`EAXb`^K5qiIS$|F
zk=nZ&=w_goDD5#jv%7&F270ozSFGgq_#fhXA#&I-UhZw6kI47N%Pq!4j@jS900W~8
zj5aXP!1D%%85nM0kb%Jlh8P$sS~)i^c67W<IQjAT{(F))#>@9kkhKQM5e7yYxN*Py
z*yLogL9*(htfsfK#u)f*SjISpeJZ(9a;$-Whi6C=<jxbzOkn({ekMl_*kVFt9>v~i
zKgHmlEWBc1n}KNtrW;sgV6}l624)&qY+#9jSq5esm}g+VfjKOiSZ1zJEIIU;AXg|A
zF<fBa<?&?}8dxM$F;4JbK0#*RdrZh!YGBLojO7Ma7+7ZDt6|X;N`>(;;%gQc<l{=}
ze0avXS39mTu-3pP11}m_Cn#Squ)zR{*BjV7EQ7?GR)cJrHX6v^Hc4bN`5V|OnkLVe
z41C!u)~!&wHbEx+qm)eu%t3k8z-tC}7}#mxbpt5_o&n#0Vn8)u8L$m#26O|40n-50
zZr_t+dUt~SN|*SU%h7-2j<=&fn2v#b6J^)Hx1zH@cZuvFFc2DeV|d1P19?OYylLPq
zy4b|1deez=pNVpJC(_vd`f(y7M`XM$WFxZ6z&i%^8F<gY!r>Wj%x}Egz#dvcnasU{
z=3VAblxOUYzcNwI+|&Mj10NXp*uVjrZf<P9fe#IQWT1bCM2Wu1cPGl1j$}P|Ff0Gc
z<UuNGLh=&>hbZkt{*}mTwl~?Zd@}zenKttoeVl>IL@^Ve8~DP&6$4kPL(%9rtYYA(
zfnyvFk@K~H#|0eBQ*f*0J0Wm(iug%^e`nx(1E&OjT0l+<v-FIC9}N6#;1>gDMgETl
zE>O<~&Wp#C`Yid>sGR(1TA7~=o=y6{FDteUkuC~?Uj-!1C3b3G^h0o2kd;3f;lCL?
zcoX@}DEwX%l(z)DZr~3Ce+vBOT@E)GZ=a4vZG!l=^Dq7c82E=SW8k)+p};I<`cFJc
zlOnIlCzy|&(YSy>3JO@rL}8O(Qbp|+5jjL!PLhk8C}E<TiS8y!nz+ZrlO~=rxt|fG
zO;j;a)kK<!GA7EIC~x9k6X_-%FmdKsN05G8=6xpa7YG?{nh?c}G_CE{9};Cn=7@LN
zZM&VQVB$d&6-`t!@mjZLCpJoa@8x&A51G6(t950Qx0Xk}=sroFFiCD3i&ryI-Q*r&
z)HPAVL`@UC_^-B!1G6(9Hc`vOBPK8IjH-~&#z``n?3yG?CLT5M)g<|a7p1A<qUsD2
zts2DZn|RDbJrlzdX<a_eeQi|a-H)4i;;tUDHfN7bi)=o|99A)rFp+7Zp^26zhK<f>
zWTLT&W+t97(Zs~lCYp-68^4bnjThSyGV!swiPm{(Ekx;MF&xDv%T*`KStfXUW8%Sl
zaZ!{tSx%DDL<bWcO<t2EwK4ImiMA%%?Q8sZ;iBzKOyysO`N{Sin#s|yu38Z_k!_-r
z3E9MR938QfBF987wNd$hzo+M~WOX*t#Y9(9HjGy)7ERCYT`A3+ESFv-y*gR$VWOvr
zMJ5)T=w+g}iP0v;a0pEFH8I%45EK1O^fytzLHv0WlLnU=AY>jW;13(K-w^T)5(K=r
zj{JwxS~f|;O^l$rOdOpoPquQ-u9i-9${1;4&5Vpu0+O=!xEMP)*2FjyGfd1hG2X-k
z6I0k<6BF5-iOD9u{V#Fia1_c;z999l(DrcAs29^r+|k~28ngJ|w)(Y5|FeW(b4|=M
zG26r(@ko<+_{qq3=9^exVxh=1OT{k>;d%ETi}JUK27QT%btcx+J4`GyvE0N86RT<Y
zLE5e<C_6=7X=0VAK5>OqKNjz>L|S8Ft%-u`rB4@SUTP4v@`A}@7O>UC%O*Ao;ulS9
zHgR#4v`IWZJ3P6C#y=|K`;N(%Oy04c?7B%Rl^%Va_=<^bCSEs@5|po!j9w=0#mf}K
zSA2t%w<7Y~^&2Eb(0sa1(oGm9-m<aXhH1hwalyh*7Hks^huA_d3$6)|a#|>4!8Z|@
z_=dVQ5t_&|@sWv-O}t^^O%r=e>?Jo7+fD4GcqZO9v7<{gsknoN+Fv?SCm!!7y*w<+
zdB?<V`f?Ac@4)D>;*s_wc-O=}6YtZQ>C}AtrN30lH@TN|A}jfMPiemy&0g-^Eq%y%
zk`d>nb-YRK_de1A69*a9O?+YE6BCC_d}iYD1|3NGsfjPw<FKIT#3tum9~vkfp?Z-x
zRw8jDkiMj)nfRJE(^EP|$2W0Y;J@~e8j0)PeyY+b{f`8SXOiHA3Em&KH!FG4#3>V3
zOkAZ)n)uGdPjnv>-_u{_X8vH}tckI86K7~+k3|igGjX2rhw3#k=!-<XDKaxT*~|5g
zjOU|ST+aFu{$lcUtVoiJCN2qNX>W-H95uqrA}2XT{>{YiCjK(<w~1>euABJN#0?XF
z(DkOsWIOg++VUwfkJg_$T)Ii4%9C!<HHJ%@E@lxYw|`9hYeqBP`7M0#ru3hQ+a~gH
z-1|j0>k;}>WWsZs+ZV9Fxp$>ur=Hid3R@^*L9+0ug`yTuqs4s|?zd3fik1dSStxCx
zgauA(m$Yz?g^%Bss`Qoe^_R{Lm(m0c$<i&9v2d@27I_jMnGQ^m31LCGFG1u13uP^y
zq=d>A%2_CH;Xw-(t;iDY&{wd)>lE1w-W2JII~*&qikp}{M5<z;s)d>s9=1@;LUju@
zEO1%jhbhr2L(w9M>w~2SevRTlEenqbk!q7TL*}vtIgtOwZteQlZ&t@bT??%&BrIfD
zsAr*}g+><YTX@XElNO#LLG9efEsVI9_JoC-f<M`oo+`)KB5x10xGNd8rbZF<nW^%?
zsq)OJGOvAXY@vyTXDl?g@U(@dR<zR5jL=N(e=EUBdlJ7AMp3JU#gl%KWg$*oRZVmr
zE^&2Z!&G_NmBi2iIb3O4(@RQPXl)_eLMIDtEIezWorU%mK731RYvKIf_|B=(A_#9<
ztjtva3mxgsy(M1YcyHB&u|wkJgE<y*Ep)LsI~_?PTX@bwXA9p=mDhD^M}nR&B$>~P
z8oLRC?iP9ogr(gdNUW@%pt=4tRqkz}kA>GQq%8Ec(2q10mRjg<VSt6H7N%JkXyJL9
zlZ7!B23Z(v@eEiDw=l%QP<G@(?vS$4t4NXV5+&zK*$4~A21+9>jIwa{>%`EXa=C&w
zd`GmngK6?u3*#(Iv@prScrtk|K7l;XWpT-4Xm^Q7)~@zMCeyC!$ER5E>PE{kjiyD*
zYFsIsZef;%*%oG4(dygh{iT@}XHBK9)8si8=2}=_VWEY27MAan=35{^qxx}DGL4xg
zFP$bY5)~I)SW!Pto}u8pjPw?^a(tu75Udo)MhkgErBxQzvIz^TEv&Kd=`{K3G<n{(
zoVO~qU2ow93zx@bY!HwOMiJg9c_&nEvhbpX%`}5v(iRIZS<yX`oE1DjI^(-aZHaJk
z^JNRKSlDLa_+IH%(P*t?8u8aG%vT$ehVm#DR15oQ9u_nUx`mw<c3Chim=;0`X~AL;
zV4N3Sb7(CB@dW&#Vq2~mvHR2^VL%lPm&eqPa~0_g3vXI@TeQoD-lA>?N!u-)E1cvb
z1NHLNt(mifruAPI5oW$);awr^ZVP)v#l04GbeEniTAIse?AksH?}_~P8KbP|m*V}s
ziBo>GdR2D1{1L;8g`>0(3kL+*A*$5EL4kiFAb)F=)vejqVGBn%f^?;R(r4_H_!;_w
zL8Ej0ll1g2Equ14Jx%La-8ff)zoJwYzPE6OranOW+QK&$zO`^dJTm9;U$ahHI7K(7
zn=lkim&f&%{Nd7y%55*!i8$=vE-mXL{XjSG7Ogm+6UbQ$Rfa{6=PmpwB5loqNzR>~
z>nCyJ($5seMmZb5Sh#56l7(L_6tq#u#$^jvEZnm2mxZeqexoGiTHUblJI(&qv)3*B
zVd0tuuAwklW!tx&F1uMxs$OXGr-jC++YFd4-{gpYUuWrbd3~{Ff0NQe0UL`?w)xk>
ze-;j(X`SE3E1B(YTX>>t7KP#JPd*#@zKNEB*5q%?oF=W?e-vw9*hUc>X?C=hRMh6i
zXOy&YkB#CszHZs1gpFFwoA4B@jmKN_{6^L)J|wf0ATDhqH9b1lao=>AY|GfV*GB2)
zNVjpHjr(nk{J0JTJTYA+^9OAFC+LZ@-SRdn*ywAcpN$7?RJ8G!jmK?Nvhk3Onl>J`
zQJHXN22(YGR1vT$+kL5-k`t>g9*NYjvHn)}+8LR(Y&>Ek<8FR!8<LGj@7CHfB&Uvz
zx;8%_ZA_lLQ)cOg*7wbj>j{GTcWd#AoF{BNY2#TNZEZYdBW9zSjc05$u#st_v5h7+
z8rspdGE9xw#0;58HsK8UX&Y7EY1h<7wW{gMXGFgg$_$yGnl!i3!baRiD;q8C=ti3?
z8y^=;Coyr7jXR#3u#vR6wuLrqi@%<Wl9j)Te;}C5$(PC7a1K@N)XqkG8=Y-*vC)C!
zH9Mn|jT{>tZDdn{Gn#!fL*~N4Z(rmdR~qNqkZnB2Ax>rU;+s7slE2N6l~lI1xph|?
z-E8!<(aXk!({bKh)7?f7(Jn6-DmGKz`go^qHRHW)^s%FhhicB0pP4B)N@bI{zl{Mj
zHXBQ947BmQjqzk+V~~x(Hb&VPZDWXyp*AS<2phv}%$S-pTs$t=ndmxG9ye2dWN~t&
z$l<L(gCA>KtYVyEkD*p=et?}#fyW84m&}xTUC~4vlWfefG1uk+N0>r}HfGwGYGay>
zuxW?sc62Y&`xWD_&Xmi1mUw5T{M}5M-`38uF`MFvk8IiN#^Z8!oy=uJ^K2}zvCzhR
z(YsqSqmjyKn_R>}pC$L0opIkR`SDruQX9)`ylUe$8_R91u(8p`CL1eltg^9=hDW8%
z&RA_@jg7T7dLM4b9XjJ@$pt>oSvE^9)g|@<O*$v`#G~;Ita2>3+UyKoA(WaWzi4B#
zjhE@9Hn!M!iTJkctv0Uoj0Fdym;dfZ6IVv(kY3#Dl-y>6S2FFKC4W39`8r*|hG)aK
zq1aIQo^Qjlq1n)F7}QDCGQ4x@`&rQ~PK9R6MSsse(V~NG!{Lx^m0Vijfp*8gif=fP
z;3HGZn(;ss<=J>cAR)bSwp^=b{7vB(cr;$6Zw5z-2Kly)9X4(_k%{iKv5OYsps#~>
zZ0u$baFFg`kBz-HF4*|V#=AE5+4#c7mv(d>^?NjX8wYH>Z{q_Se@e;yHa@iRktiMY
zUgQgnY9)!}tCc)x;}eei6Y^(t$=UKD8=q1SjGsN@9ZDv-&E)Wy<jlkIdgEh9Y<x}^
zm@U^Z60a3*HgdLn)W$Izr)_*EIDcj1gpF@(9A{(`c0PSfY{_gn;N_20+HCoxjZ-#`
zKHXvN#LU&n`1`Zvi?iiHg`0g(`qQ~T*f>i^OT^FEC@@E!HMHG1diossyp12JvF{SK
zf5}=qKI6}ibIm8CT0b-F)6E(5Y+ST)$;LGs*KPbt;cfiJP%uZnVx#K7QdeoZyr-sf
zl51-3KQ31*pX@V7{+%-a(`w2b`46hd#w{Cv*=YV?{03uqt>jHAb9Ftgbr$|4dhh+4
zGEB<+hw{7^e{^0l->7zVCdR%Rn|YhW4vIM_?jXN|0uBm0DB^%;Utj+;UeG}y2el_h
zlO9ZOW@T@jBd;9OuBZblKW%@!>9pJuPBdiqI4I?yB=LV*<;{`1yqzfRAk6{wU&cY#
z^2wufWXki{s@6r!#6NRnIJnP2LkEo<-0$E42h|)@cTm<rInjD$2jv}9aIkE2MkNOi
zl5DPA(ZQ=z!0tz^=0*%D=R<<N&0Lvy6$e$tBc<hI4F@$H)T2}mui-!~2a<zF9X#TI
z13`k?f_UIux$Nd7AM4O8Z#J##Aj82k_a^4dmA9SErQX=VtvBM2Ie6T`Qx0Mdirz>o
zK05OW2TzLb_ZyekGFK*90}9+exu`=j)4|!#5?5bI{5~`D<GFHU2TdGwbdc@vD;G3%
zkZ_Q6(2Pp^C9AoE7HrYM+hf}e$m}q4YGz9ZSq|b3S~-#Zr+!N?9WUIBR>W4=9EY#9
z5WcO0b`IJ&c-Fy{_Q|T>C4QYNTcg{xchJF!&Ln5Q+;<z(k|{7pypw|*2VFQQqI#|a
z+2L_05n0uPxuvFLcIME`lWV9sxEi&^THPG<aL`lqw7Y;A^W<I*IMBTv>?<6dv(fj*
ztlW9>SK~ALIq2^o<v?*Tz`;NViySO=@VtXT4#qo};NZNQ80=uUgAopfI2blh9!luo
z__iFfdS<Eg?(TLYX=5~r-SIIr!us(&g-dgaY_x-w^JIITJl4TD5nc|@ldsH+BJ)HC
zlN`))Fx$ao2gh<^QyolmFh$^eT)8Jc-N6h8Rp!ex9h};eEIMEAHYMY5Zj7ZBd*{w^
zFxSBX3N|C-m-iAgCTGrbFyDzjq$K{!vP`3Z%%X*&-Oi`7mN;1IV4Z{Y9Q6O&ii70>
z&+isoA&`8<6RRAo7Wf(g*9tiQbXKGJGMi?4!NC>>FFDxYV55Ug4qkMynJ$?d>p4H_
z-DE*Y_~LwdtB~*&2iqLH?BJ7naV84J^s0l`9K6n<nJ<4bU*4S)Q%}UHx3Xh1R0o=a
z&mDZ>KzCp;8avqSz;s}d-oYCVYzO=#z;)m`aOj>FqA9X}e@^%g0`VA%=FZQTn_NyT
zs-3(ont0Q}TMl*zskS?)_<DjpdRu6z;sW`p1#+ha@=gc47+!kBsO^U3k_)TLdmQX_
z@Uepf4&D_CdC$T70@)|vhrN;?IN0ytLkA!6C!>(OdS$br3nFc}1(UNE$eS0)G>?N6
z$-!X<pNU={a_}jK;K!^tMd>#S<ZBD$BSQF^`P13EzJ)uH!<P<@(heQ`$hI7O<>0h~
z?`VMzz82L_3V6c7Hx9m~>3-P0^TBoxE|e*J<At)kFlzdgpb7s?P*L9#Unu_|8agB3
z=!NoG2j?8_VM(&x1}id2aKXV(RI-EL9sKOz7YDyOxa{B}$08?oNx%ayCth0^jU6wW
z-my@=LLnz+US%BEmF%h{Z#*3pU8C?NGU*q8FnZ^uT_?>#x#NfJne!*d?#1le3+0;*
zZaMhN!QYH6E}Fae$HBjht1c?I_|L&@2PIsTbdk?Reiy}D{InpG^T`EV6mn76ji#>)
zy5R93Q`bsG#A8u6ns6?h8D|kQzwQ|??nWQ&+>;s6+~cB@i*y%oQCj4eaih8GEh971
zT-01Hk^j9e-dz^Wy}KKv`&?MNlJ~oKzy+^0oLw`yZf&xxi*lkCi#7$xN{i%euO%OJ
zQPD+x7mvB9<l-S0wOvRqD!ZuSqPmM3E`C@iRdq3FPof%SjwPEdlF6{oBDtoEhh5Zi
z@raAjD_Z}X8NEN$U)_5CB6(cH_!kp$Rxg(xby0`hK1$T168=eW!o04F3>Q^5NSrR_
zJT2#_7Y>i{@o{!-la%SAp^GP6Jn7;o7e$v#F&7P7oNSyVy|Y@%+!!TJGB<M3b(7S@
z<$g&tcCo%pr)`Vmmqunb75Zt$o-UFvUC!FMNPgtaB-Pl$MN5~bqoBWwEEjPXIWBTt
zv~r_`jJ7V?xk$K3x@hg9jf-bVHUgY8r&ND0l7Af@JF+j4x}4SCMF$rPmz3({LTMQ9
z=wgna%ywZclL{A0Y+Dg6xRmb^<0QH4;yD*R$a!C5W_G4M+>Cd1@nYS!UD%_ANlrv}
zbJ3k6yI3Z^ZKIU2Snlbfmy6ym`cTLfQeQGzE;W2NPF#C3zToNPvF$knTnwbnU5pXT
zpLa2oR>U!Kqve>vE{3@H^0VB3E3{oby>;i6(r}>@+Qvv1BLq&%;fl|wyZQWDY^=b?
zxfm~y_uHmT5XdAKlU+;{`23wY4~>Y?qG)?};4~N0U2G5Vc7Pc!X3`yewD2*@#cUTZ
zc-Y`!j*Gc8MGs{?%yTi{#TOLM#R96)h3Z11UAb87Vxx;qE|$1h>he1iX}ybOE|$Ak
z?P86K6&#?Rv6U`Xxd_U~ziFEI{%kgL6kFmAYinJ8BO$G${ATocv3Z;v5{u;*Tu!G;
z8w4EGC^2NQ{GyA^E?#l5&BYec&{mg=N773ICoySWX3nTchB=F6!dG3q?jq&lHCl)z
zZ4jBv?_Dt;q2hvf#<8MKGjOrn#U2+Xeb9wZQ3YGug)0!!J1(5^(c2?&j|7XO*c-aY
zbMdx|9Te5Yn=am>VqKgspE&bw<H^4CuO6jmuE&k$(H_;EE_R77zvJSo#WMT;`uZdx
z@1!H#%V^-@W7>m@eJ-aEr4L-}ck!N!_g!3EEZ@$Jk?h_ja^@2GLl+;p__bfG?|@hf
zal*`eLptc<6BnOSW*3KCbj*p7pyVhRPb8bPj1&3H#Ss^ullg#Hh5oTZ{bQ}g2_*CT
zC6Br|=HjZ0-zb}l<D%m~yZGA02^ZhHIOFp4`$)YfU7T|9Ew%k{+@G1j9I9f@#@y2`
zzN6!Jkp`SdF!8F&A6%RjRW7(VCpvzfo-2@ASK{noQ(I~<C0acCNsLh}Cq{0+u(K{M
zi5xy&W;b1U65KtJd7Sd3D}rb4l4z8FXY_V)+r>2(*IoSK;!hWUx%k`Vb#l1rVq}44
zw_N_qrh23FgCku^Hk&m%_Kyp~e_b$>$U!?2X4n!rpNIS&N_Z&gp@4^i9twLX;-Qci
zjmS|eB3`sa=HM3fP|QPd52cHyQ=b&ZT@qOZ6HD*$P|Cx-9@0rbZljRqp^S%&FuULF
z2A?jGe_SFLtB`zWT4Q*)&%=>vjqmp$hwaMLO)$M)QEopg=b@JIavsWi=<1=HhYB7Z
z^ze*_<{m0~s6=ia>Uns`LuC&Sd#L5%za?@N57j-?@KDu5H4mK%CTs0U9GxvaxKt)Q
z*fQB=Xhuyh8mY+(rAIu}_VB2OIvyUmmMeLv`(J}KL0W8S)R&$Mq`DrCl}m54Kw7&X
zdaUo^F%OMAH1>Eg7M}1BBP-$yq$dS@$^(g6w?HDv%uEjrMa~^2ZOgP{>AnS06OWsW
zq^2H*Es}^lEs)C#rDh_(>&+~FHrc{MOUlm<&X%$~#63LyNV2_$Rvr@M>ET%q&!x3X
zdT8yT=Fp6#bEHe_BXg4HNNqj*bu+=tb{?9}k=}0{{nGv0BGJJ^N9yX|20a!REHzik
z<}l5Tq|IT_n=R#X2*}ezXVGXEQF`W5qTN#7krAU956qLgd+0%85C6=SdV1*PVYG)a
z9(sG|<6)48!88?7y}yS60_i6p`A=!sVW5Z4PGmjrVe-t@r{_v9%$4%5&K=@msE2>A
z#79yO9)^3^Jv3tkxh<8SE*+mZS0W_k<kIa%dDu2jVybs0YpjQH<l|wA$Q<usBITJU
zP4GZDnO+&1F-hRel>5Y{iqh#GZ_&auDzi^)!90mYGd(O>D$nvT+rx+Rq*8ri<p0(@
z>2<dLP<$?b0zAz3u)xDA534;a^svaoG7rl=EM|9>%1b;f_3-mjdGyeX{LADfC$l~m
zYsxDq*c`0%u<vAI^T+YCjpK5Y_|P4RH6DnUnJ=vq$Xfc*)&z6bQ+0DCDt2x2?2R5a
zaaesk?Bhibn>}3c@RNrv9$q3t5AS){>fvP%Hf_ekD{RYy;z9NBst0;jipH50f6c?|
z!oRxijX$_drlWPMoJ@^^=0T^C+|IK2GdBkYn;sA|g<qV>iW6td%vUsh?cSv8!SnF8
zhaDb#4}pg_JiJNw?-@H(Bt7(yN2gf!Ki~g4%zjHS*)AYW>(v(V|E@&qSvx)K^03Fl
zUJpBqq`yN`Tqf^kcRD0~`Sn>g`u&YK;qLp=-=)#^jZG~l6Ta`^1NxwcuRQGM0C_m*
z;S(Y4M;<<=HQp}r*OdfA{Q-d!8NEzC<l$2fUwHV^!(omQHQ?cMp%#iwVYDzhG_vPk
zS=0cL_gf{7dgy*5{=}R}X~$Z`k9+vq!*?FO_i)0)H$tRS9$w3fDt_zXB=M_Jzm|)>
zpC<o%)AcL4uP>9&c)Sk_=RBPE@Jo^OvkX>QarQ-Z6C9UcXGf}AIyLztP4|;HyZ<xE
zXahb<__*ld5@W9)1*l&=T=wv%hZ`QQcvxRP-|rr-dARD~H+F4W<hi?-$-DZt`=@03
zb)oP-7$;{*UwxeY=FeF~ZhE*y&thQYSbMx|D`N5w!{)RoQ0!<O!T;8`UN=MPTRz`y
z5BYrL7fqiKo!T&2dVGph?p$_3AB9AIVIM^WQba&j-?%Zi*j>Dnm0QxsJ>s#dk5WEL
z`zYt5ypJ>=WqiQLeLn8>kuGS;SBnHV{#x{E@!K-_ejg9`_+q+LR+K)}rycQ@Es|}g
zOGTH<6?{DCM_-RW<Rf>I^l<rn6@63^l#eZ!6W?buv$BsWBB%9o`O?*R@8xne@ksvF
zebl&%_k1C@mXAk#G!Z$q@8;L{A^CVzJk}8~L%_NM@?=8tsV8uLH1(K|$9+8E<4KW|
z>EkJZkR~RO$(ztXAa!@NXJ$hmjl`oYj$3Ig@JY)f$9Y=dO?@;I$TI>?5yz^u6!=yj
zFZ;;y5%<x`N5V&c9|L?OeYEz`$w!Wl7tTp-e6$zHvjVpDG3=bw&PVg1rHHU0(sc0A
z(MPr*U_K90V`i>+B+}i7?Bh8fo$uy!6-XB$M(OiXHy^jZ%c^rBV%5V(PanN}%swae
z_R&XBUZ|F@>jkN=55j)b&rcE&p0WArkJ3O6pO5K2X80K7W3Z30KF0YN;$x_f5k6X;
zm%5*q^eJVC3}ct8<r~iCew3zfY(3J)C_ymV#~2?!{TK=G`HvDyi8GD&G0Ded9}|2`
z^l@uQ8P;n4vqV-?1pPDtrwS&de|1=lWF(l$mwz9NeJo)|eEvDYBGC~R&Gj+g#{wVo
ze0+Fbdh1r!@t>rl17bfsSa6{ao?pk*V@VEAkfSh5eJt~_&c}Km%YCd68d&3FrH@rU
z@_v+73mp>SKu{;kE<`#ZvQ|)1MKAc+;A0a5zR0=qleEzX6~fE8*o)0Rw)kM?O9GM!
z&n0X6V^m7`ijQqR>IA48;8h>5`MB=m4<E1lNcs5G$6*TWL-n!C$2&eWAG#0EhwsDi
zVfwIrIOP0pKAwhW`KZt)^2#5RiT;x_>)tN1_iWtdcwNgX`%p6Q5&C$`$9DG1#~VI(
z6-C#p^*tTMQYKymHn>E*TJiYXK6d!{c1oF@J{rH5%{#w%>lTr<%Vi?FeeCh^k&lmk
z?Dg@kkN16i;A0<kcwaiNV0(||{YE5)wOl^5TyB^h+wX(vL!n7tXU3wn(=!kFIOy~A
z`^Y_!Ke}7(6FOt*^t5~9t!8KNh&HCrd>rxdgO9U5K4*~eal*$pKE4#Sj`{eCDw>&j
zR6ri4I&DVIaUWk(wilvV&Dzh!ot)?;>RTTteSGKRdmpEKoE93ZoE^JvCNGYRqS<-j
z(P5>6yqE0^W8mS)_s{t_@8ee=m#O5b89&k#ef;d>f{$vs@r)YLOw=z7{yr`VdH7gx
zMHCs_l9|;{Mq0h%<EoEqqO@;XJomoz-+cTo9xDjSCTWp)#TMgFA2%3v1C$SNlaAn{
zcz_ZC{_^oR!+U@NL1a|_`1p^`<>RmO(!avYo>(D|5zdt_h&1Vxh!_?OA|ELnph$p1
zLFA!y975XRsC{LM1}G+o%l#xVk-lVrdji}qGD`(09iU8rdjq5e=<9<nK!d-hM10rf
ztn>f~a9<EbkI@$-LORiJ7o?UKBzoBcf<svW$##6lScL!&26$NHR18ol;Ky~S7VzX`
zyk9L}<p5QJi1}Z|(iwutijj>$ue#`LjQ}+Rd|5o|5&56)QD)P`%o@ehYXx{DKyCKx
zg7m16<m(HP6kwd_%hf4mzQ2){5uhHK1n3c<et^dUBmyJ@JRaZ)Ruu9)8Q`e^O#(a}
zAjX^k4Ffa^kjW~y8`P^%nvhMmT_KNLAvX^2a_RK>rPKeY+v(2^iKYRX1!xgKf2Z^_
z0Y1!*Hy4of4V~y^<N2BG_moaQ*(H`G+KLBg6(A^`&dmQFDp<c$ymf#!0iF}3&jx54
zphJL;0a&G7fc6t(Vd?bgrPJF7STr-T#_Rx{L=!myj&+KY;G0nyWR)904#4J0eb8=f
zpXfEIv*6i9z^(zh32w}1Dzde8&j7v1Gr-~iy#w?KFd@K14s?Ki0Y(HE8K8fF0RaXF
z7!qJ$0A3dVe1Jhz%QT5IA>>o*o5ap9;x)Cz&;Y{%3=hC_4%d~8AAdh`d}T|cJI5aK
zPWe#*Mh6%ZU~PePo((mY!xZ4i#l-jk+|bnfrO5jTpH!217ZZ~LOb#$tNIoUNRL=GU
zn92U;FFh^5bPl3u{madb7OjwpGtHs_1eg=xc(X*;y}8Wknc3-)AL2WUCFTW~A7BAZ
zXhO!q08=`o)f=1n!RQ#fQ*d(Tk^oB?bpyN>U|E3W0X78K7+^(!m6SHXx&W)lVN}NI
z0BeLub(<yp74q+&XO~l+<+KJRUmt+;2`>o23a!XwL*%?Ez>5L4(qIB?rgc?I-xA;@
z!C__b=!4-&%Q_McoR|5E$lS&*&rA+^D0x!Egx^-kuLnp4umd;&lmIHtEPx@12Nx)+
z1z;}*za5#`^<^*v6kjP@0csSAf?l<iA_N8S0^|jFgA&s4Xy+^CkmJ5IIdo?<Mz@+r
zaKWSTHv=%eMJ;Ve^b&Q)3AjTv_ehA^A$AIU7l$ms?f`oN++t`7us6WF0luZt2G|$i
zy#SvF_=2uY2?HDq@Cl`wkg=b38{i{KQZ&g!hej*-IKTng)fTDe{_NZHlkL(HJXGos
z<?IssG{E72$0kb`3#apbuFq&KL3A?Jiz{VsrA$P!l3&tUwn)bVd>!B@&4W!>h|d4v
zAMmdN9@P>J&9|LmCj#)$cp^;Sh%N-r$4&(}9pKjhmjiqk;QIg<0{q0LpO2jh@I!#J
z%%76+;Y#^jfb#)<Boi@TbZVtMuWyWavwHEPePchfr&{BSLXu^z6TbvtDT^+N92PD5
zF6&Bws{#HLIll$?omz4de+0P3f%q=#x`2B!lb=_Q-#pm9>DETXPo$-@=ms^(O!~E#
zyfr)X?*RV<s1V}85dQ}FFF<+-gt#3bUx;EMiigM_qCkj3Aqs~W(kFT1!F+$NlnaKq
zQ9t_XvPc-If=JO2gSSXL9gBF053);yC>bIxM41rxgeVoFbQm4CMS_fd@w|zVxz_I;
zT~Bszh!6FGX(iK%^Exxa`@(1xn97B?Kg0uJ^aE5j#DMD2VPCwQi;pZVFUV*H6$SE)
zE>#avDa1qKv2qw`yK0CkAu6ttTdk6>JRc)XwGfw2$5})UHA2)3@o<P*A>JIBEHfH?
zR>>VcZ1-LD$cCj5CqjI~4u+@`qHf3uE6fWqKSaF{^+R+E(LKatAs!Er2$2l&M2IIt
zJRPEGh^IotLNp4|m>Q5X8idFU(J;i6RWcvB8IW*`z=?2&U6T-Ruadb>aKSV2W+9#l
z(IP}kQMb9M`-LFpZo#Y&@emVl#9M{Y?!x5MjHOF6o9>G?7}i>oY#pLai0lxZLOdIy
zEwvFwdkotNR_#NSTP<G`tg2X%ryuH((UFp`mKV><%n6YjV&iJLbIAEObX_e!7h+rW
zwk(>uTHf+y7LhK@r{}JY_T{nq(baN~5IsYT4KXf6uMoXy2{e@ueM0o*sD&6vIYV%l
zAGi4R7YKLx#ahR2RZ2V`Vo(U~S8df&CS(p1k)a`mg%}lLbco?0MuZp{;@&mUmd}z0
zk~de&2TEkVays$I8oBs=>0{X6a&c~)oYz(UvRQn5hzTL4g_uq)g_tBdJ~hPT5XYO#
z+%7srw8&kt!<xkp^pA089EV^AwZ!f>i_Z!1$>M^uLd*`aw?&7<zIcl@QRsU)f3vyl
z$eO6*+<~<q<Ou-qLiiyTg;*Tor4U;~ED5nR#JUjcLo5riJjCh{YeK9Du`<M}5ayal
z_y=mom#&eYsGivVNc<!Ai`LRN<J6z&><Dw%mlr~8;8=v%6h^;j+#E`HdX4;Ih|QwE
zTSEM~MkYPCrgB_}q^*@-4)IC|C4|a>6J)Q2cs<0c0_UFAk6I>Dlw8X$RWW^g{UjSb
zc_pER&^d@}WhaC|2}4*RY|3mUxSzM~+Nk@ZU*T*<YqpZLRxVjrb~)T@qt*lZb%=c-
z-V2cz;tkqHh+TB3J3>Ae+a99C#rRv~wl>=E`*w&ObeU?&H^eSr?ghU8a^js3d%|dg
z@NNOOz0jKY-VpCnn6>i0wemNj?)xD=2=Qr%!y)!FZiF}x;$Vo6*uk~UI<`uFEMi6X
z?a5uEGSA&gTwN=FLIrXQaEPMoqF&TlCqMH*;<FG(LL3Y6Rfx|+d=cWy5J%}&>!RIZ
z+@#iRojh)xymp<Ow@&_C%RbH)Pb4mUne{b0*ew3dI+-~4uYDWhWQeRh#Pe_}#OV<C
z<>CH3d>8T}VEn_N8sbdIYp3u#%|6805a&W%3~?#M`4B&b_=WB{E%O3}oR;xZh@V5W
zmSgwJG46&Va%6Jy8pY1&bSjzlD+3qZ`DoTv#<Uq3SLitTif%6uFS}mOSTFw;qW$=&
z)`V5fu2a=xGH!&pDUd$|{F7erc^30;iAN%T(Z9A9ntLt%Z;`X6L4uk8G5Cill82&s
z5tDp*C@2u(`2|uyz((tu70N?lfgdVg@N91E{sE<miN}(8xF-+A1<o#%$U~OWxZ`@c
zR31u;%=A2@<)KU-?iG*ZeDj57d*s*ymlA{=BZz!vzBNAfKpx8Gp>`gmJe12r`8-q;
zr4{n<pg=0;p<*5?<stJ>*8D>0msdx>4#U^W59NXQ_Ve*7d69-+D=Syc!}{LIZ{=9^
zJk-d;){V_-=Ao8g@^D_H3hofp$L9=?V~^xTqd-27=KUY0t^-Pn;(7A}Bp)1nk`xro
zaKo+$?k;<G9N})^xJVd+h-Ae;6a`U1a*mR7&Utrsb|()>kRYJsi~#{73W^~9zil4x
z{om_X@9XO7?&|8Q>fYg)ffPon7@=Mmo-i7O(J%~eII$7+!{CfB3ryjAKeZt9l`zK6
zmQ!MRuZHn0zcoX}C^p#V3uEc7RO&<AD2y}TW(CF6Nt0VHpDj}|EsXRq8i$b)=KqF3
z&mvh(!e}a{?ohR*K0D#P4QFI<EzQH2S1c>_Lgvw;S)njmgwZ98H^S)1SImXcHjH-E
zKa5sk<WRRT_zu9raN-4Sd12&J_(Koh!pe8PkzWwTiP>^wXrOf%e{}G*5yB5&Bq$5a
zx5jl6UD}6nd{=4*fjfpl8II86UC(P_bPnV7Fn*rhj_-L${8Q}5o~~hZ3*&<@J`AIK
z7(K#xCyaNwDEifagut6&^rGhPdU}TwZ<Awb+S&J37=6MBl@7ekrXikQBR$Wiw&~K}
z^IjNz!x$XKH@7nTiKYQz4CI!D(W!S{@oK(SN3sTm@qRe*ro<MV%aigiIZ4+XOHc~%
zHFrb8_%w{+;l!KthKBJG=MCfIaN=Egp9m(q@WlgVhx*8&%n0rpW4XWQvoJ=6F-mAY
zT1;VDd3;G@kJEMasoCeAZ$stBbA&MR_91^CCWbL7jNjw9702W-rqDPFx+s_$#x(9r
z1g#>N9>$C?ZiI0&jG1A~3L_jwB#h7LqG7BE^T9IagmK#InajOquW`lyT<e)1#)2>w
zg|V37lb^aUj2F)N7R_z=?(GtHhG#7a!+btx8IA18=>DpIDVKK4NASh>zU5)uyX|Yy
zJ9SkU`>)qs6UJIP=d6aSX@~Q^V-+*_4U2VQ{KHR&ul1}C<KY)BHiWTJ;7yM>o5R>5
z@K!;$J>qW{U`H4`A8|73RZzl+hH)f}ufkBnz<}g~V)j@V@i4S7^f3N6Aes8G7!2V#
z@_sHstlA304&!JIsYW%)3FF7va<MtG%Um=^-X-YnF!l(rS5Wfz3GjuW4|;fyJs};S
z8M}MF4C78Usm7Q7Lt^&1^NJr1W6g{ZZF@9~V>H*&<R9tVVSLRo2PIz<V&8;ul_p|z
zgmF@EPEj!dsO^S93AN9JarP1C92fowUkKykBYY{0%K~2!w8r>W?D$<6-_u=R_Wa}Z
zkQUpU^aB&i-lWI&B=!9{m5RMLAo+S2Pc1IqEj@I%t>-5O7t>B8(S_ZA3F8){HH=@y
zn7@Tl_N4FkhcoUiLIG~#pJDvPd^;fdHluj0$2Uj569%cTVd~#u+~r==C3<+OL=yB~
z827{cMsoru3C;t7{|lo?1pj*|)5B9Tf}#Q!6STOXj|o~r(3Sm@6QlL;l!~CV;1HLI
z@ME2ck;@56YZI3jxWXfuWC1EhP)Pth;y*4xWkET3)d;FZP+e4?5%dW`pA@u)pfv@3
zO3<eTttDt}K_6=PYy{6m@VwwqnR*et@Cd&sz)KO-5uolPeu@B61kuMr?BWqs@1xe2
z1*jjvD*`kS^x;ZhjldUyKY~C684)xQo7gCV)Ckfd2#V^spHsQBEDJyLare_BXdFS?
zIWmi9R;XzN_dhR^89`PA&4fJNrg;Q(mDN*2p$O<9Ed(7<G(g-^;J4?<#5ob<MzAu1
zRgpyC=S9#fg5DA2M^F$!VFaxs=omq#2-<MQ2)=$S)INfe-<PN-^l2A?96^ieA?mhn
zPZF6OA|S1@C+W2awstSpErL-4k~>H6dIVh}u-bZ9x<(R->kZD^J>d+Tmzs2sphpBf
zBMCp}Xr!a($OLaj@KyvvBlswSJ`ubf!N3RxMet4p?}~ByiY31%=4G!X(-O+`i|}i(
z=r5XB9U#DB4k*U|Ac7ACXRx5LIWl!N&sG{DT91k9un0bmU{M5%BlskOPa_x?!T1Pj
zHB22I!H5VxizEW)`#JJR0Y*hIn!>N7zS1(IWW&^qS5n7BFqXDznA+);R7w`<kUSxR
zzdo-pMVNY`=rxJ9Wo!M^$r1cFM<$pmT4|GMJOv)%84=7Bcvb|TM=)F9hq-Z%z;h#*
z7r}gi7YfP|7DN!bTS&k%wP*6oFNzFnQ)x*AOCwk&W~Ww>S5lWputHR8%#|C?mC0Nk
z!5YSqf+rNLjbL2_yCc{W!TJa`(8D88BiKka_9pF&ARNJ_2sTHsMQp*g2(}BbHG(SB
zLp1D;2zLIK%EBt?<DZAN&P?o4<k9XZ0`xhM6N?}ofg8cD2($>_6X-GNGZD=AJfuhX
zUMWz9W$>ItcRK>-(Fg~pB_`tT(+SzcLcBMEeGwdu;8+A-2%8)d4zoXk1N88@@&qSH
zKm0O+gN&f|1uVVi%7?`)wAhgdz7oB7Fwsko)A=K~!ySy^n+Q%sa4mu#BRCnssR%Ad
zaD{_Ma3+Ea5nPPmYy{^bXjn-)&#fsZ{Zd;Zy;)W2*)gM81<6}MDpgrZN|r7~FmbL-
za5aK&BYYWt_74$!7s2YevOQP+o|l2L5^=-wiSB3T%2e!n1UDl1C4yfgxEaAu5&mg(
zphcGdXNFIC$vz#bn<Np8d`kK)g5M*!6~P}7l#%_{=gQ>su=|tiZSKDvL9ux<!O<5J
znymde^KWJbG8Gh8@DFnobGwol^RyMZAHly7JcxjjRaa%d_q6n11W(VCizpzb%z-LW
ztY1BXq6+R0OeT0tK?w!r6;x1AQb8#NWfg3%SWsHQmo5Co->FwdfZWXiF6yP%{pFOz
zVv`hp4BF3<TUAO{P*Fh@1ywm_bAKhyRY$6<@Gt)Z5cF|D*_YF?shWaab3&{ZD8;BJ
zE&QZ{8VZ^!Xr|z1{R%Y|yr|$M1y3n>T0t!ZwG}+8;5j96rFn+k&+%`-vWS0~koCNR
z9?SeigZ>v3oZaooO7)%lwH2#%6x3DFNI_6RiULVVWW0caZRMnTN+PqpqQIlTtKek?
zf#(XyuP?xVbG>)22NqP78YpO};8g`a1%9#WQgtM%&C5*mY9Mu<{C2vRnfA?4L8^i@
z1sP(BbfIKp1?}g_dB3(Qakc~jr*5KP{PfU2Gee|<>PpQOv{n+yoKcXeB(4Nmf`$~d
z5P+PP0%Qx?O3)lZa|O*)kS_ow3j`<>bWB~Tje@q+XT8*pYAEO+u&ki}JbBbSxub$k
z3Z~VSUQ@7ep1f(EoU=ZUptE3-U#oeMHxzVL@Jb8~V(6xzJ8c`qxhQ(j)95Erl!~I4
zg5C<Y(xeLBRPYwZS1>><s*i$q6uhh8ZBd<bIZ(Mth-WTU<*vOaOw?Dw3jtq01vMM_
zU!I#gP{AMt(-q9%DijP>FiOE_1s^E*P{Ah(K2<P;3)!6dk%D0Y3{|kYl0;6IA(^Da
zAB*YqdGc@tBNU9}js05guqH*`-jMT|g5&e##z%5#^WF<Xq+=9}RWOl**ObO7*jP;(
z&z1gLsB8^=T27jvprEC{!Hqzv+R`KilNC(i<)1!zHZ)B*1Mi|NHLFT>o|X1hkY*~F
zrC^1El?pyrFk8U_npeRb1#=b5Q{a4%$=RtSOS=uJ^EpVKUu)`DqoG9#7Ash)U>W^?
zp1eeie|M?3{Ep1x^JOYiOVH&sLOH3GmAi@ySFnLPD_FziuV6i0cfPz%!SdQt|0}td
zoBNAZl7{5?xlF7}q?%0%{}?`Zi-OIx=b(C=mrZTv%Z%mi3U(;?o&pMXDhMk$qTnk9
z5e13@OM$IGo7OO@Af_PBz*n&Di0@Q^mvnb_YfXW!;7-uzTaw|elVb>M3QFeXo*qYm
zt6;B!eT-ZMWeQsFR``N~1Q=P`_v|a4T0vjWzFG4IXMDl!W42LnP{9G=B&!2H&F@<~
zui>2QX?^F*hZJzYY6CM4D`1sn<btfD3XUl_#h~UE(~{jYPEgezfv**Oqu}CGo?oUn
zB=hd1tYJU+PAVuInn)dI=+bOea7n>A#^!wayn+h?Y#ZTy^QKSwFzbs!8KpkYdg83_
zGCh2J))j?s&+|{8kabn)_N|~C>N^2yE^K&>Lk-OOO~LO9epGN>!42k+Ua8diXYQ<m
zpXhHH-fMrfBC~RzEb@O*@T*wVu7j!8p!{13{!s8Adv!}h%Ad^e3hpVm{m`BY{!-AZ
zkN0l{cg3W)rg~Vt@?K&^_Z9rB-~qGu$4MNy>5Rk(4UZIwb<MiaJF7?(|BE6&o?JAF
z$D)bxi$zgffU&uGhi>@DDG|k_X$`p-KmO+_9YvWa)<v;Cin39Ziy|kA+$fTwC?ACs
zMZG90M3EfDQ&Bt}Ma3v8MNu`1YEdAH$D?@ZnT*O&6nWcw@O;ja`7*05?zO5CMbq@u
zBhggS>QOuq#gkD)=F2H}8`ls`6ss9c{D!4KuicrXwW6pU#q&|T5XCcM*iOxJ$Uih+
zem08dL@#2F@M08ij;mNFin<hgG#Vv2X7afboHRvrSI_5oqVPu1IEsuYUXG%E6lp^K
zl_(lS;TO1J6ddzauH}4UI<CSeFst9qmjh8W5&~2v7zJA?oGLi?=F8~<uoqj&ZxThb
zD4L7en?~XIDo`czGoxq`Maw9<j;ojz1%*RG=DV~UE`&1KQM3}ukWzng^0<jn42fcB
z6a`TfGABpTGm6$xw27ii6mLY)Hi~vpbQC(sg0>fw-MgHr)Zx)k9I#UquZbBu3xU^#
z4t>t&P_o(ioUWp&yHKE;5J=eYZezAyxE<;hMeisEL@|(NkK(N;-ixAd6q>IBW%@+%
zw%E9LqIg&IeP{|cRcw~iPfQf}xkP{Jc_o7~Y$Y8O#rs0|gNFhF4;GXrr9D54f`Gyw
zMKLUj*-^}i;^QbjiDG0FqeRoEQ4Eh_g{Q*9F{R2GBck|>PFp$S;_GcmM@KP6RHsKV
zR;+QFsE(s2FObIzN-!aciI4Ck0VWGNMbN22D~eHnjyWTWnZny=ML`GqTo{?oPg~JB
z=SDFvisjTQiuq!$g;6YuVu8RP`&x5^#ZfGYVyWP;n!Z5pv_K|U_J}iBR98l^I*K)d
zxhe{-h$~$yjB`j>o-?x7hA1{Bbih|pY>Hwt_azEFiY-xWjUpCBJc?~mY-jXEp+s@K
zQN0~egbA+K-6<$J#7XTE9F}MlHAkj=FfN5y6$1OL^3xZ{!`c@ax}(TH(^HHn%qR{;
zQM!4O6~*AMJe1rcByIY96#d&5A;%S*U4rgr_-`yu=3Y@H*cZhY0`C{}z$5;b46#QT
zVw}UG`uc>Fqfs1-;`GDTD87#3L=-2Z_(pIV9V+p4ut@dWsT};&qY;*d%D0`K^7yor
zGlG+~xe{B?M{yyFqbiQ6xERGH=1CPLR9uc?bW7=G6hB3AC5o$}`fU{7NAZKe-wC>5
zZjoyOQ22%bKQezVkgp58ut|{owR4O79K|nD+>YW-6u*k5TY~-;#qUuR?d(}Px5z_E
z`9GrgQ?xFgTZHAWDE^M(K@|T9=3VB=|JQmiiu+7Zojw0Djz(m#dt`1AR*R@$UsnI8
z;-^po6jc)|DkdmFaTT!zGC@fdrBn=6@sWzsD$1y6prWCQvMS1{sHx&96-g?}tAL8f
zRiylyKD16@1r^CE){gOgxj?R{BBxtH&0d~Lg46YX1(j74EXb*<qMC{->^?8=@&ftw
zw6=E^$kkOmsbcQ4g`RRvo=}l-xABgffr<wUYp5Xgw#|52MJ*L|RMb^bTg5XfUQ%)U
zxb!UbStviRqQ_`od4JpIRQNv%#<~_fyHI{X2)s!7f73S~mnd9+c#t$jg;&MPDkK&4
zRJ53%(`iW1qhjIvsTCijllm9R#ZE|t3+4JMUQu!NUV8ug>7=i!@TquRMHkMZBA_B$
zMJpAJRE+#E*i=O`6+soL9Cl)Enu>H4ja6_cw?{$E#W@+Y;myXZ5;vg@7v~T+SCOg0
zy%KDpB1=WDF}?>wf+6ZQG#EWDz51J{`R(+UDvsPs503H8+8M}Ek*i|U{q*)K@>Jxj
zXsx0R4XdJ%1|RLakXy0WLV5T?c}zI-(9)dY!-8#9v{NCgAl@3zY`rb;{a(-457JK#
z3wBV^QAH<}f2t99O+{xFl?SI1e{v#WE@FLf>KiJ$s(4$)J1V*fllG*ZD!QwfwNUQC
z&0Q#K3;EBTf&KIIdaHO##pDvLJ{}%?Q$_sm^w*y&>?1grUo0g5T@~+9?cY4_tGIVB
zy|0S?Dh8<NC#u{FG6$+S{(^syplQLjWU@*+Sj7h_K2-S@`oIt|NWJ-a&y3Am{eqvI
zVJbdWu}sBs6`!d1l#{BM!d27My*#5;j8QRy_~-P`xL+zp3Ec3P^r`dmNGbDs!?t5p
zOi*#<xHL}1wPiWu84g_w2-*+Hm?-#@1f4M^@7j^VsZ0(x0}JRmDyFHJu40CYnJQ+h
zn4@C;QtvDkpR4%!{T8$L7qYs4e<9^r=Bk)S0dDI;dBO4=mKzIY@<)x&UBr1`Dm>fO
zvslI8t_8clmX@eks$%n3h1n;h6RUH$FDq26q+&F$id8CBtJp}FV0QW-ca7Mf^(sFr
zmbq5NIu*NX7H%0DL|(=Q6_F<10lO<T+!5GJ=N#wTu40FZEh@H(DC_s{V`OgQUjLl_
zeQMj;f2Hqa7ZnOq-y%7z^4V1Soh}7Y6)*hMm_-$a{ojIMxi<<Ztf|md98mG43WFY{
zVvkU!#v<8Lu}ekC>V?F%3P%M2iz@&vfBt^@ZWW}&dsXaH@r4+CKlgE4fW|*xvQ>jc
zGFuOdF=>RI@24J8ahQqdm-P7)a*wF^iY`>T6*CMA!EqH|tNh*s9;o<6#R(O^sQ6XI
zNfmu6c(1AWQN<}0r&YZAgy)Qk?^Lv0B%c-4bApn8UVsbS=trDOw6nlh9&xS;@U5Ve
zPWyT-lD}8+gBYz%1uw^Z?J?;(&A3SZNyQC1-Xi%X^Dxa)J>akC{aG}9y-23OZz_IQ
zLHWPw%$2;q-}c;6@dvX_Mem=2e@Eck4EYLPGM~tk{!;lr+>5Zwk$b+o%n4OI|ETzF
zk$g|ZeF4aSwTkCI6-8pG8N*Yt#K`}Pp+XGvDtU{>@NcrWSPaEucr1nzF>uVJ7)r*F
zv{+7>Rjl@6nVeFBUpj^|0+bb${BkjLt`Z<%DIdf5zkRGyhvXP4#!x8+#1bm8RE^>B
z7%Im=WvXzZ$wkO)vRHoDS}lg^95aR|W2hmzJQS!jDIxZJ74OrrgjrHJLflg;hT1W_
zVi$QPhUa5=A%^*Pea{N|+(TT|v*#b*i!tz>5OrdBDTePK_mcBuJE?9AJMQ^dy22~P
za3tAVF9uHx9T&^q80rho%Q1vTdB~|!(Ocvn-@uCAhEzL-&*PXKhc5<y3^!x=DTY7{
zjbfM<!^X!w!5C6wm=MFn7}8=$kKx-Jz7Jw(979G7J!9w<Lz5Vq#?XmtiJ@5x&0}aE
zLx&hLWB9UWN`4FlF=TP}7+MGpnYl5vj3GOQR_yX$U2-anNXZecrKOY`sVP%^DS0te
zomqiRg^zl*=8T`D94(i!w1d<phPE+0TO(!VEA`sN;Pgw8xw(JUy;v%x_gm88%Eh+)
zQMV&)^+(-LpHJz`WwuS}7Q^mt((5sFiQ)ATDH+eExRp}gh=H^#*ZXH(g6=}5hoJBL
zUAMxMDZOLZ$wxXd^o`-o7~YDZPYiFzFkrF#F3t5<-C+xS@5FHG<CJ)>6w(e-ic~VC
zUkv?Y7#PE#7~Zey84$yqYAGL=EJ~cW+xLD9KYo-wm@;K5?5UPQ9H^QSdNt+47>2|!
zl$Lxl<<l63$MBKBtPZ1xKf<2~(DxI`f4A-k`bLSAkuiM6{rahH<_8s{^QBQSjE<p4
zvy`mzDPx5GV+CC<rHm6`yr9}gDU)J}pQ78MspA&QlVkY3TE>(Zrp7RALBXYE-Y>Qn
z9`&}H9>a_nX2vip#<wHl0F4>LY}z)4tz1_Ob7NQ(!(s;AUjIBn7gDPj)|W_KAgTmx
zYMY<AY_YtA{Ofhs#;{I+rGhRKbh)4_1YH@!Dgjmt$}VeS2u>|eus+6*n`2W9n`2n<
zTd+a1%#D1G*DSMrB=GWHf4@%t@WfQ|7wq<Li(z{VW(*bsgiDS=jUg68m@Zv8wMpwt
zC5AS&Jdqf3dekF`#xNqi703Cjc0Gc)5Yq)y6O=NBV6v4X*mS%YIO!K+nJ(QXhCMOt
zqE|oXq0GEynN(x1m}Q?B!5I_cAZ)tUER!-{#&9r(lk}e$sQIB7j>o_*hZ(amd?oNv
zp&nb=<(R-#8f8%VuVeTohGmsgDStu$4$JE47|z6SIfg4SjO<rH&e<5w#W1}@>iHNh
z#_-*4{{=zG8Gch@^^&OmAm?0VfQuDfXIxxO{w{_eVz|asLvIw454%v3y?%^ATP%}*
zLoASXD^th&a}2*QPsULxo=9%LG6~1=SRB96yJEN%!yhsHFOHX6Nq=&pRuW5*IBpAk
zCx*Xb_*>xng5DMMA3^U4O8Mi9Wzv6Rc<_kxp8&u0ZFfU76^&zC@62LimU>q3^ywlc
z;wTx%$D=)E`PU9jJf-3&6GvW$Kxx4wKe{%V)ncPP<>E++quyvw`8blfgu)gT;`pk2
z@k8B<liB36;O6!L#PN6>{o?2!=bz@LRF31xIBLXEC620bRO{)j7Dx3s;%`c3`IKR0
zQ=W)paemu<9a2UWPpKKlQ_Qz<_~Upw4hlRI$L5rjTB2j^huwR6d)=t}Y#h&t>hqjM
zfENUP@sZ3+anupGuAnK8_>uti;;8kYE|u}dQFMv?@}t)JalG;fHxQs<9Irm&)NWWI
zAaF2_Q~?^rvA=c-#~JpHlt!b)`H&68Z`4hXqj4M=asCaD=kjW)NgPe%XeOH2+9HnT
z0%r=EC1^;{39ZUgprydsg0>PgN6=hBDKM^bUO^m%ar6?L)4inD0(6X{jR0*0Z6_$@
zWdYj9(LsO<4T_Q3N#NJw=p4uEk0iSZ&?SyH1n4U0`u;^I&(b}P9)i<T(50_dAhUnv
zyxyYvW*l$D(MRC71??NhI|95b=zD@T_atU#(Iyoe5XZncK8<5|9INBOL2-N-$B;PQ
zk7F>keLpjAMENI|$REV<cb4a!P|{E#HjJJrz(;}(PfBLrPw2*ri^~I2Th1!Z>WDZ#
zi(^6@6XO^u#74(4Mu1UqP==CMBN=1kARRC0I6>K$912WgIK(kMjv1oY6wx{@j;W$b
zF^)j$TOvO*qC8cdDFkK-%E%&TP8@UN_%V(~8G(6m%#R}yhZ4tvI2MWw5RPLJ{XdSi
zajc7DNgPXQqT2q|aV(3YV2Qjujumm#=Nq$2w(GM*{%nc7lHHfcs|4M-L?#{|2(5|Z
z;1Zc)>*LrE$5zI892?`9H`lW{jxT3>HVMq?OV$0XZV}AymdI%hLfhl`eQN5CIQ|tQ
z>=e`ea50agF-N^JzeqF=H4ZBdJB}D5mw_3_uhT2d8RpgE==5%(&Jk{VZho3-2vB9I
z%<Ea~4bSV9yiOc$9N)xoB92{g?2hAb97p2V6UW{-`gX><|MTvP<BK>BP^CC#1zTSa
zdFxj9?WbkN<`H}}q2lyT1qb6e6bGyA2e%{L{G{)zIMTlf9*g5RBXp^Jl+m|Tj*UqD
zI?g`_k|{I2y6>M6sT}`g9H-*A6vyQ_PRDU3j`ML`h~sP=oa-DtWU0JlVe0w!+YRkh
zK>U6)u&=Q&^&)q_Q^E43GR3aM@ogO6adYFCsrj{~a&isd_gr0d-&)Q810$%0k7CzE
zE5R}L68nB5j+;yu0nbmO`b!)?bETtN%$in&^jEIpEf33YLWbavIR0b`wNcr|?Ktkl
zG0wnv1Aj3DxJDiMI_}2tPaHuFsT%I___$uTq=r%&?sF64co4^b+@_2G`9-wEyFH6*
z{91wZ{U+&u8j5Nt#-d96;9CD~{^xc}Y<f%xl+aMRWX5NQq|zG7XsEB@6%A!Il+#d4
zLv0O78p>;^qM@pW6_1B1XsD>6lEBGqJ?*bkEd&jZYZ%|Bcy7szoc#PBm&%pdv{4$~
zKKb=lY1K4T*RaWzp49M!#+O?7HyxDNN>JpeR6|2e>b6XNO2g9{CZ7*D_i{+Nkb-mB
zT*xyTp40HWhG#W?YeQnm-XguA;YAH88YHpUmo(JTkd^73Rx!jbH@+!eSHqX4)UkY^
zo(7MGmo>EQRYboc^^8kx2bcG1z@VVjs|df#*80;z&ecFmnDkXa8wxrGiJ^QNU)|>S
zYY1p)q`}Ne<9Fz|Og5!yNY`MHsiCok3=Na0zlJ6nnre7c!&@4fX=tt?UqgY0(=X*`
zQb`RVfvH{#4J|d~aB0iraYM?l&In{{__<SND?zg|0>rtZl>&JJ@QZbY8d_`Us-c^P
zHe8p64jMXYXs1Euyt}1mNBUUmUXgNbsXe{Lkecq5I%!z{QvT~2x@dS!LuZaQ(no<)
z3q7Q4dV{;LS0XJt&BJPU4Y!`lZ?sJAA-3|zKE-<qQ}@!)Tf?$btvnYc8ll7Ep*|Yk
z*3e(W01fYGiI3C0M@=dO-qo;D&ZsoS%k5sNN_{o-BS)3KEf@Mskp|KZ3xmTne5_%R
zhW9lL*3jyJ^r40!8e(PIexUK6ef=X1X((N^VrZ$H`jOy7Mr06k>Q6L$s$n>_(r|gQ
zxBJ25dCfda>QwxUIy6h`yEQmb!$=Jq^U_#GX&5c=m`9wk0*s^I3NYajzs)k4eN(=W
zrf8U|VU32h+~~{FG!3&g%+WAi!wiiH0kbrGuHkG}#*8nd`PK8;i-6VF1Nn0`%+s)x
zhSD&feybsVEU;L^LJh|%g!q2lMH>H;SD|M^kho+<+TvRIOEi$Ox}1S<L|Ua`HKU9c
z)8KaWQ097tP}<4VzYa_5Z<UyLS>pEu*KtoZY|*e)!v^ZlDATZ611-#5IJ;H4^+R^2
zqRDlS_-WWxPWf#bwrkKd=o)rt*r_3^LDdkZs%NDL?ZzdalZaWEC`g~4<Q)_C$25F*
zHao8IZ)^QCT#2#VcWp3zyWcr1P1q4U*wt@ou<0i{%Ik2bFm+%T4ZAe#W+ZAjsNv#a
zX^)2e46a?$?Ivk^HSDA74$fowLc<$pvVWOhI3+3LfQGvlrFkv$4{10|^J+M!;fRK>
zG@R6MO2bjwP{Y?6zR_@8IOn2i-cG*c50=TyDphy*=WdivX!ydA2qrC)*?O9uV-_3t
zP2h|MR$0nA(s>ORG+d(dXt>g|Sa#1M{P5yM;pF_b>DmU#gPNz&j8}w9UuCA<F0uN(
zh95LM(C{Dgr-mOj{Gs7b4c9f?(C{l)r{N}Z#Xjk0YWpCY;3o|g^3n(j^3r}`D#%M?
z6#vfnqVILeT=sna`qwf8IcbL;Wc{0;cAJiRRQgN9-yH3XbVtKWlPd7@ns+t)!&s&o
z8iFnI?F$lH*~F}Mr$Z{M{|fmk!wQP%_@9o_dLjcC)lp1G2^}SM{wuJ*{hjQW4@<>$
zkUpj(qnn?AVrRbzl+tl5GtfKguX|D|qob^jH^V_Tl@sF-%rm44I+Asy=#X?&)KN*t
zlR9eXfR4v?RMSyiM`ax!P4re3w2GcMiCD<#dO>>nTw<;#^u!j_Lume*AVEzXPw9A8
z$8$QK)=`UHc1zFb_~2ym__2h1Z7SwZCOEQRVpFGZ;+vSy>v%!Oi#lG?QAbBzoi9=G
z*9rytgaV|eHw5>JBWA-gxt<P>j;1=A>F{#lIs!Tx>8P*c_b;V}I$ovzVgD;S8qjsi
z=F-DYER%gYPJ{xbT*)uM@e_d;FG=4k3C|DeNYjz7Bb8P?B>lWsT64W|V;ziw3>{5$
zv|XF9+xTt%tcwY{MVFfEV4iHHBS%N3jw~HZ-VTIxw9wH~$L%B1mz6!2{>{qP@%61%
z?0e-|&-_hN%{y&#g#qh+8T@IP%xZy-LLF}yiKD8ujy5`e*6|Bx)X`4I1|1u9$U54y
zmyXXksg901`s(PXqmz!;bad0vT}Njfuj`5Y^9E&Fq;)wg#b3<tqJy+=JAYTv^w!DL
z^NamGboA8GN5|Vbdg<t`<1MaYqrbQ%)yPPDQwIUd(5j)n#R3C2`QOpO)A?N;Gfzs<
zCV}AE;Cni@j`Oh40{wLi&@q(0p<|$qK|*-2jsv@;>Xk!%OzC}UUex<ecmD@EKGYLm
z-5sJQ7Mu7)Y|Au`Trc7ursHEBpHP#m0R5r2A$`ha?vaL5Jwy6oclnta73jJnxeD4@
z7;v<XF*>H}n4x2=j&V9B>6olzybgNx1Rd{gmlo_!q>Fyr{1a)eZT?FKr71e5>YyV{
z6F$J`D6w1)hyCTsg}6sEb<ARS9rH!te9nn>OLKJ07FBK^oseR4b^e#41YlX9V<DYi
zPu!ylGXsmcQ+Kj?)nO9>=~5lbbS$TUj@3HW=vYY;ZI)K)*nT&gp!<pJ@9t)oy_UUJ
zN6j<RI!4X7LVmCLy@<56Y1(?4x@p?>Ex}DXHd759$8~HWQ-@98*0GJ_=rB1&W?+Yo
zojPLNbRA(G5gjUL@8k(=k`x_LhRG(0Wl2_mv~PA=t>yAdQ@raAOPXjh1l4tfCVD@g
z<h{MP;NV|59M;lt@3PcltjE={OUD;F_S46vdw1*DLt}DBcKU<M<$XG;cJxer5>lqO
zU;EU-f4AW!<N$+6#~~eGGHdOX*o#*eJCx>Jln(1S!mzy=keAC}={Tz6do$Rnh3D2n
z54(R&SJ81*$G6-m9Vd01)p1TFu2VYB@ct}&PCv?Hv)%IcPN_=7e_qE0?v9QtIxce4
zm&=zJTo<J^vZqT2{*Aq#oZ4%G{loq$n-XWrcbrtm4dy@|0UYyq;71*QHmT5IiuW1~
zTRBv{X>$JqzUxe$)4W&y$-b%MRPz9j@}Km?$v*Sj>|g23+%f~t8~9zvEghu{ls51O
z$6?YoP}IO}ov#MPeI5Vm_)Ev%I{smLoS)RUdg3~Imr3uG^yxN<w4pBDqpeKojhOU+
zraSF_a(H1814W|JfApWxg^cU|q$jhB87OX`*BO6F1Cy7_4<>jYGZOn-!ocd~GE0?<
z(yZ^Zxs_!Mlr>P<KotY!3?vz-U?AB*?}LdnPFmi;`U?qA(Lg1GZ!icvZlK+)JQ$dB
zP~sN~PBclQWU~zto2nY9X5eW9+H$$NfhP<+W#I3ev?mSJFwj1j-}YYO^8_^w{FIct
z^;)Z|$!*CA9G56l%Rp@dxFS8n5spaD8aTYP;A~hLd_`jQ1p_Y{Xl9_fftL)_G2k=c
zH&E9=iUF^Imks<lB11CZF|au+qaK&P(a#)mrF@|2mqBKdz??SqX@og#8X9;-fChq+
z!%ua;DsbK<iRuNY$z!>x2GR^PG7vPtGpJ(GTr$5}E^n}<bOTKcG&RuJ0IL~-Zrmmj
zlTv2IN9BLI*ecUNsj-FG23i@&G7vHnd)LB1OCxbb@A`5wzpFlJOOW5f&M}Zns~V6E
z<Qd2}_>u&vje!CK{~Y$Sv^G#EFiriCLqM-+Ya|Zb=fg?u4RkQ@8tq?@*p7|{n4d2U
z403lm86f2bv8l6x*M$r@T@3KoB0*OJ-NX^oUC_RQ_At<sHl)k}rd;gIPU}PW*eJbe
z;4K5A1Nkg$dfUJ|2HrKWcSH7jMk4d`mXfm}$U@N1K!4F|fPujVJ}@xQz#zeSU(o3%
z0t^3Z%waz?FvP&e20q~+Nui+zh8c;B@sY4qw>=*INcnZSOwOkUh8y_Iz(~>5a*v0<
zXhs-dW*``4@TDKY(FVrQ&U-wiHc2c;GSkM2VN0!$S5yd1FffsBY2vPlNemD=kBRyw
zrWlyYwKG%=OfxXuz-|M349qYv)4&#vU|^Pk&kZa#u*AS@gAYBV7cWS24Scs<nj`3p
zeY`kfzJUdFp0c5Z1{QH^HuybT{S%v~t+}5?%3n!K4J<RT#=u$w%MI{{%qkA}rL@Ap
zN=}-UK@Q8qLvS^Bwz>DY2FdFfj5K(&v`ut5ZbXMvy6Z**3+E&~#6O;BMb2i%T6P-6
zwi(!Nz+^mD2<_k|8i*N)8weZVjW=RIF~AG(i)o0`Keq>2=sc>x1gvTXbc$`4_{;sR
zvKa;y(4?wmGiq&3<Oj=uZNQ;TENPdZuAr>4^&#GCU>|2OaLM2m9s6lCI;4RE3<m>8
z4IDFYP`L3ShP=V|DofPuh|n;4F`u7SXZ0(3<F~B{(pBlW(BW$#z$z!=N7YXnIA!3h
zfpZ2<bAL}{pP>&R#G{h}EIdrlb6u|{KbD!y>RVT(3pC(WX-P!7Y~YH49}HYGaFw}w
zg?w_Ncf!HsZw>xCwe+3Pjo^DxZ8FXKBb7Ap3*9Cw?S_Gy%x1!w&&r<K$0bslh%WuJ
zV0Jkt{c2$B3@?-O?YT*}nEXY2RWTFyoIjbpP5jTqZ3B1s{D+1*oY3|jx9M2mZv%H3
z^&%hglxJZkyl>!N0}n*3{U>z$xkTHddp!(xKB*{bqQoR`X%l5k6f;rW#AD=`C}pBn
zv%red6%IBF&=e(2@W|$gz-{FrUe-i86BSKVGBK=aAjw3s0L0}@R1kPzem;%xWPT#O
zz{Fxx;t5#U#FI?|kDK7?>TeEyo|pgpAK6t+R5MZC#1kgp0FUP=W1@zM@Kvdn2_qb=
zY2s;<ui^|oW#YqT9-jOAU-NXC=q0DNiD%5j9i!<AS#OfIuf6Aa6EB#M%!FlLH1U#&
zx+cH4m#|WrU4F&dU>!4YLfzYz;G~$K9e6>iC*&E79ut{|C9kORDa0!#8kjImSSA{p
zc-6#U6CarHnedxvZK92dfQd%5kBOEhf+kW;G&9lMM4E|o6OBz|nBYUO>w7#+s)ow%
z4Dw>o#6;4C>;_rhH;)IJa?C5zvwJ+5CbCQ{-|XjOI&K`hgsA*!KRa@BvrV)z`AN9!
zLKD1i<e11ak#8bbRM%_^l3BS|5iY90OeFcAG6H2I(&*eYK67YmqMeBzCVHBXO|&=h
zI=8??2NNAlbT%>VOg6J<ClkC%y~eG7IsZXZFAJHZa<jBIOmsETjnmoEfKxfVmGMX-
z=q@<i6h0yBWumu<_e}IPK?i%&L?07xn|R9vB|n<%WlnzlM&l=rO7EC>*TjR*d<~m<
zHWc-7sD38;n;2x`eF{^t^tAhzvj=h?GrjMX$R*|oS?_z-U(SAQh5W$^`9l*!Ow2Yh
z$HY(*ADNh7Vj>;S#K$H^n;2u_6BD0u>&xYSW@0$^qD30Z2otN0_z9+O4U+PpA8BHg
znMj!YWwGZ#u<ZF(V@-^s4U2kndU^QMW4xL80g|p3@>j+r6O&C$rNvBeUw#QELTn2C
z^N2L3ZpG;)t~F0iyCBUnF~dw;wr84&=Q-Ry(odTQJ~zQ@9>H7_^Gs|ovC+hQ6AMhN
zq+%u(npk9FsflHYkiq(lv?UC*j+vn|*|R!&s<h4D(jjxo3OV{)_Hq*|*msk(<5Y3d
zVcm+XHnGOUI&SEW;96n2lbPO2=Ou;-k2c23db&_%8o?$Ln@vPaC?>X;;Pba_Cbo0m
zLxHV=9(AQ1CU%-22%9MUI#BvdtL>A$eK%I(^B*#!CR7t~6B;L7A;&o2iNL>yBw{z>
zw-}6!ToX-C1g@+|JayrZBVwBlX5x~G%O+eCyEs1WLxs2acboXa#C{Wd7y|!f?-i6_
zACKLW#cAFHCa*&{OwZXa9Tb#LC!UB(d}?t>R6`?+9T9*6UkUJS&mzZ7d`(mA@Sii$
z>$3EXiBl%OeiGamlTMg8Y2xpufpZ%r($lo_HvbtDXN3Tt?@?_&QaH~PK_|bI{YNOR
zXejw2^W;jIZo})!6_dX*@B@?51?j4Z@0ta^B^A{<<tj2#u9^7J#4jd(HTi8j|8)~L
zP5fkHU%8AMX5u+d;mP8O%+J&pl~#1~Q;okD7yFHyvdMqT#2+Spr$ILPzfvV8u0NUf
zP5dRIn*n~uM8CQf`z<NP3*odE@)Mkk**qiuG4YOtcP-pAao@zh3^WrjTc~g0KNCeP
zRJKsX!v8E3wNS=FSqm?yQZWl9EdEAF{Aws}f%GveaXIX|Qz|J0C{s#+(t>ija#rGk
zSHVi0dPx@Fni4E;Vc56XM~+E1zs*jzP|-pq3$RdgeWjCKi$88*VEe=si<E^KqbjGc
z@Qj6LE$|%Vq}44vVPVt~JZa%63w1{p)(~pc6qNU2s`RvlS{7<s{FF&>z9*mIM)$~A
z9emEh^A=JpNYv1R@>kA_7GAP&Ww+$r9vpHeyN-p&_egauyuT*M1BiT9`J}p@1&@`;
znLG$+d9T2%a>=h)Xkek0g&f+%!mAbn78+UjYh<C%N*pVG3rD7T@0&r!;H2IeK`XJj
zO)WIDkZK{#;>Upe=@uGW$RMXuqT0ktJh*$daT+O8G--1&W5_}a3z-(KHOkKtl=p4o
zmXGu)zaeos$+o~t2%mA~TFA5Tx`i$l@+}lt=wP9vg+dFhEwra8_DF3kw56de{Gv(i
z#5k$vq|TfC{4K_RwwQRe4gG4*(n|eTR^l<y$--+^;z{qUsv#>Xbr$$WlK?qySm<iu
zP2m{bEOfWf+k!f$LJx~y@~uQS=xHS~0DlhmvM@0-aP6B`q_fLsJfEHamW9yHgkSX$
z-QO1U5TE?8uZ0B`7Fy_MC9XF^Eqr95zrX{ygWIKn76u8xyT|($2D3Hn|3Gj)6qp8K
z86uX(rePL7wlGVK@CiMW%2=3WVK@aWjJ7bw!e<snTIh2#`|lmWQ5N4WF7ZKJ&6P4O
z!&|{v3(h3(I1A$i;NUMUE$Fl<NIHQtPW7_aWD8R)Ot&z@!c+^Vy0*AfF?sS~X&QY)
z`~%ZN>Xyl!X`#va01NM0pIex1VGg@Y_s*vijxC%^=jVlCn}42#TOAYktAR6fn_rO@
zSy;@7uyBrh&0VlyTCglEv#{LaTjH_J!U_v3Ev&P!-oh#ieA-s8gJ+F})wFh28cXA~
zmDXA~o)KVqp_6BWg^k=JuHBFZzUJS=)olniS}C*o@u_V7d&(9o@m!r?yM-MVGz$;1
z({@@2(|=aVF@mE~#6px-9a^Ap-i);L%K2of79Il9ID^G5WZ{98o)prBn86+C=%FLo
zoYcY>7WP|kE$pHTZT9cAu-n2O#z@OFKG5TN&4rZNnE?ANyzzG6RM}k80~WrtaKge#
zrYQ@DEF86P%)(&{JQI&t_=@3nD|@ysee+aK^=(1^W7)D!nRz??$1Qx#yd?gq=v>46
zZ!EmGQf49N;m=S06g?$E^0c65m>!1}Fe=Ym{G&?zVc|~;7cE?}@IAxX!eyou3*Rwe
zPV!#0@GUjz<YDq3yHal1-m`XQ?hi#<ojNBSyeeI@@S}yB7Jj0WoRh9wxWU0MO4UOd
zd}7A?E%DEcO}eXv-<h#_5o({he5L#=H+rSa%hK76*}MP`YF6PE6ZJF?FJreY+_6yH
z#$z`AvhX*vx`iS(?$XJ-wYX>Dz5xGN{6xE-XVCM_l9LvB{-q=B^gpn`XJVX!_`S=m
z{%2!MCr?ou+Df@u*k8;RPu0@X_-w6&jgmH!ZGIEeU&=;l8%Z|G+bCnBtj*7q_!$@F
zY`k%y6~XF3<w^VRO|4*qQNSk^yg7dpl}c?0R<yD5shmo7;)ofvM}nP5v&UA-RcutX
zF>p5q?M5{l)ouLb;%666*m%;$Fb5wys9~d~4bz5Y<0%_Y+j!T;dp5qP@2O?OXTxu!
zwvA_OJZs}Q8(teP+jyRH*{EwH#m0*^Ub0cg#^I^KpH|9cR>>(<JS)>Ge4FRH5h{>u
z{5&&Q&&KZ)gXE|0&8V|V_Sl%8k-=(xn}1x2YxgU>YNG+?Ivy;S>ocpDY$!0R-_HoP
zSsJKPI~1_d$VO)yuiFUPNVO5N(Za?bO9N>(GHf)V&g=8iZMfBnH5NE>GQX*fX0)V@
z)hAP%+i2B4Gjo;Pd6k@LqhrX+qPI?Zf0aC9LuN}G**4nS=wRd5dBt1V$gz13$K+M=
zV_rZ17h0YT*~Ulz<x}l^F1(7Tz(%0}tp#l(DEVy#XlG-UFa>9M;kIW>i?$tY?9TDM
zW}}l3D9H1z85g{{B)|oB;mCZ?gN+{CZh^ZB+Reu2#k_1<d@`q}jb1k1veCyzZyU>|
z1>dxBb(Oqd%+hvz4)NPIDi-?wT_w~0?>!fK#|AZTeKgS5Mn4<#Xm%U@Z49t6oK8aD
zurbKS`{RN`No@?K!*9$SH7d0A)8r3qd}w0`IbQ#JlT(jR3Kkm`VyUuP{)o<F<6|5D
zjSGHa<5L^A-Yq0fn;!hOaqhhJ{xKhBd}d>$jp;UK*cfGFw2cWiCei{^ijT1|*2Xw)
z=)@omGT!EYs0lV$Egu>i96cj=Jl{8oX18&4c-~a*!fJV~r{ZVZGN;&}5eUeiW@ACF
zk6@;aS#;+4ZRgTZHfGzHW8=>pA9e1vS{|`lrg<yR3~qR*_=45)6G^@W!txtzY_ze^
z#v+bsV+q~E#u^(-X;m957)>-wy>`omu<uCfj@2^#@W|?fW3RGtW3|kZv_@WQW1Wp}
zI^?aV<Qkb9YIMjuyeFf@%tED7&L$h1ZS1rWwz0*=RvX)B`3)IQZ^-Z;4eYrcqT6q$
z*{23~*!ZDcYN<a%q>XZY5gUq)DD9K$qw=ba7_)~BUFZ|1ldMgqOFVZpwe6aON}XpH
z8aCd%+nDY&WQ}awa2T@=o^jyX*u}qQv2ll%x3R~@MH`oF?6tAa##b~lBgMvk8(-Qu
z$a$+3o4!UKemiu4;k+lK{>tDX0^tLhIld!Y#TuFWOP?g54##X9w{gnGX&YbD6gDoe
zkx$sXb^9*OPTjXgrr1Ag<dfWDAwT_7?-?6snel8e6>x;}HZIusF1<B9Vd1C{H;(kp
zud^@PxI$CgxJf6s@vY5oaN`FN6yFIt#Yh^}B)8I9`I@M5sO!vct$aUHhaT<vOicLF
z)82|dG5;|6&_!+h!ey2!d17qNZ;Wvpp0$b4mP+K%x9Kyjmjp6DY_WYw;19Zx*b#0A
zhyBaO-^|huDmu8!h1e+W;4ugHY}^-9|Ifj{!gT+MDtF`oed(PH>QKZ<#C1C{QQtgY
zQ3u5wyt`ITot&DpA+v;ok`Br^DC?k<gK=x+(n6jiROytrcCGx=?Y89{Bsr)c`1fWM
z+H2(#YvuBy`sZ4?>^eF9Ra9~S2UQ$YbrSLNxP#%ZqG_+<(mJ`akR+()pt^&a4xVz5
zJvsP<;6Ev7<~q5@I=O~}DeL49j|QH0P|HDNM&Y2Pfq$n2sehGeg{0K#SqDJ}sSciV
z@VtW;ME92+)OYZrz%L0}M^JXDD?o|^Nq~BSdIa?fN*SqF@mCx)aNu*`chK+=|5fU6
zGM^#8Zk^0vVT`9AO$~_FMuI*)Ik7uw4$>WTcJR7`#tt%Q0SCDbnmB0cAk#sX5N_t6
zxr3i42i<k@opL!G`LpsB&#se04qDP6RA5_X3kMHoBo3)oPU0+kXJqJ`nZ7^P$@Kg@
z2l)=#IglL`IQV`=u+TwkCvgf?U!MqsHUhVG_)kSijb;QRdos8+?HzP*(2**wmrqO%
zHdrt7KxCIr4qkI`ZG4c2SI_lw`p8fh2X8p&>!6>5t`536c+<gK4!S$&;h>j;Zx2-B
z*066+`eD8=-_wrn+MCMc`QG}Y&5KileH^?^*K+WlgFS;=Fb`1p9pZ60?KWr9&qu76
zN8AfBZT5FCz`+L&J`@%n=wOh8_Z@z;CG+9(2Rm4@KGA*u@r=iEeARN>4skG)W~8mA
z1mo-Z5#hYw3i3E6564d&eCnW+i`QHXcQC@i*ABknXbwg?*y>=LgHaAfJDBTWo`W$C
z#?sRqOcnbw&cQ?nlN^k9Fu}ohvkG~3{BLyV_T<7jQ;JU(GRad43ubw^(rFH+JNVqe
zYzH$q%X)dHgIRQdmTl_|%shG1&m72Ok($qO@G|cV8!`sYN+sCQKXbl=1rF9YSnFV+
zgGCOOIauysG52~;MxBZ|OB_5gH}j_0&83Xf4G9aZaIn(BDhGGe;Mc8ujLOHxCB~mV
zwQ#lAaT;x%gY_Id*SC>N=vjONNA_0aC1-L*>lOLFO%66Y;Gwp0THzKhKfi6ujEt<Q
zh1(tM5UbnkV5fty1I>X>yDbSs9K;;N9Vm>%4RX|hO8ZO-(gHkTxdl9G>2jlQ`kQT#
z4F{%!T@H5BA!h^`O_l@Ofx}=ol3bxAW0~?@HpuTy3%=;BxQAQ6L8gUmwHVj3&%qZC
z_B%L0Q#d$6{f`H~ba2qYAtpMn|I)M|Qvt2S6NiCQ?qKt;92|9UjC;C4=F-^2JIrye
zXhuT4tsCSM4o)&7xv1*ml!MdEmJaSaIOE_fotYc$;G7uzqJv8g&O5lkFe%l9`fzpo
zH^`Tn3O+Bq%2O=YcjY18Aane8Ukq`I?;ZT$;136XGL9VlDC~BNdGBuH>kekt_uSx)
zWF}V4JK;?SKXHxg^L`fe7eRj&^fy6&7nGYz87fe*Fz>bl9ut2v;dAR9{N<qNM)_!{
zfXig``EG~)p|?~k$w=oJ%`EXRQwNvhqJ)e8929X;)J<f5xl7XjTnzp+`F1{dy{WTN
zF6LrQwPL@17Ao$7lxIXq7o}X3bCKkt=|;J<i?S|wV<9f%V%WgU4jW}!xc^4EybC71
z3NDh}#PzR3sO{8^va(UG=%Nzsd_4`EeO!<+OZ>RtR2FoJkyOn^br-L?@bUid;z<|J
zyLiDx4Hq?C)N)bV#Zw&L#khW%)ZChw@UgEp%D-=vpK<Z5i|5?L_284~i3|B-R~r|r
z7O+IDz3Ad47xi3tT-0$<*F}m8iSi>utH$SWvv|EMy-8+-(zeX!UKcOBc*R8n7xhWE
zCHOqrP8MszR6|^AlibivTq&u*FVlm57XcT|U1Yjw<Ra)I-9=*;slvif<s;2S*RetF
z3*~!G31+ZqliburGZ#%<d^IyDed*(Gkp5Xof9@=He?TTPXO@eQi*_z#7cE@0bdlpC
z*G0CARxar6<2EJE=ysbDdAsi>dEF*?*CsiS7V}o5hWT70@Be}p3ffxGHiEVlw1oqs
zXYuwfI=JZQCgO;9(bJpcw{QBH&6xQ+yLjEj0T*Ao=;GoH7n58}7Ja+Ac+W*&7u{TR
zchSQ|PZzyiyy@bbKSI4+RGXZ*Cv!kn+qJ9kmW#Jtyu;R=g?+?aw>HW8pB`GCdcNzT
z%x0PCtDlShE<STH(!~H518G1y7}x9KeHS0P7~&>Qz}#kS2fO%yyP3{!o+i@Hk*%4$
zOAmGN%;v;l$7><0AG`R3IiEYSIgu(CP7U%7{HY7NG!w-L!Ee1;el6cO%Ef3G<6TT}
z6A5sP*toGS=pL_$@yEG%d}bk2C_|5i;%F1O95L(^7gJqqak16KG#ArdET!|inBiik
ziv=zgx|rqSa~E@5%ys#Fd3iQH`GXc*JJavF&GI~#Up$xRbD2*kQU}kMQd3g7xr<yZ
zcCkb#!x_1#E1Tu3(IC5UjmurEaIx0KIu|QxpK-xeE><&64>l*hyIEdC@7*FZldql_
zthz;B&zN=j_tn@;+iu9%=z>4HcvxJymczjdn&cYO3wgzDHYvEx#da5_3(Lh07du_V
zU1$uky%}MKn2V^32xpv{$h!4kOq^n>ix>x75(pd%uzJ_ij#pM)XdW6HG&t$F9NMkb
z7Ma&q+lAv|my6wu!K0}QmjqmT(H4H7S?+wG(jFIk>0Q%;U%1#OTqUvCEs3Lncb*Zm
zQ}??#^mK^eAc2eTnK5pM4!bzw;<Sr13@DfXU;%B5{EdraE{+Q|*6gqJwF_Psv-@VY
z*qWI<A&2yYXyTpxqyVQl;Mhb~IqTvaoxgm=t1iyFxF90#qKkt0L9T1|)=YZcB^Q@n
zT;VR)_wdk(Oi3kRUzTq<=@$7rDnBDJ+7B+Sx!88M@sBQUy8QmHe4Wm`L1ww(;!eMI
zFAQ$MGdCx@;1{M`diXB<w+p|y_?;oJ3xjsymWw}_`gZY4?)cNiZD!zID7OoDL@*ZJ
zmB{3Ox%k_~T^Ijw1g2RR_k{KCyRg$*GbOHX3u$cdUl;s+#FMMt%wUmS_}?xR-zxKf
z_+DhT8e8RJ<m|#@yHH{mO7B9MT_`EWXC^Ntz^U%J4YwvdkQ>UhPw?=fo3slRcO}ve
zIpueu!Y<@*m6HXXeK2*er(&gDz%D$#3zc`_iCuVd7pm++)m^B@88dSKkEW{tm#TRC
zOP7}m_eXcfnR73F!AnX?=hEFB(hX7~rHBD40s@Lbhl;s-cF);Ud)AJ>t*9U!(tN)e
zKcDA3^StMscV^ysYjXEoDA4B2+MGALX0Pm?J@H_;Yy?c-{h|kbq(TIt&stZE@Dr}#
z{L|%Ju~G!v4~CB(3|EbyS_Iu9=pI4!2x>&olG0n7Q!|2E5j2RPVFa}!U?8d!L0tvV
z%QW&CL1qM55jjEC+249ijYs+t<}`*~Xgar3y$I?@_?gl0rGsHk%h}UL5j2jVX#~w8
zXc7T;FtS<Cp)lul>4(C!b9VgU2skZo9zhEwtDFcpA7HiPuXm)_xw2;Ets-b0L7NC3
ziJ(IS9V2KP!FxTj+eOfxT?m?!e^%B0P<X_laN+iSJ4Ntl1YJo#Hg9LuI}UAKA{afh
zJq>K}6FKt_g)4F`xh|)NYIJx6BiOG9dPUGXf<6%pieRwH>Kj2gg8mV3!=zt?pEwM2
zet6(ectC{T-3t$l@PmC}zOpa(xAo#8`s=oRheR+mf?=vSxk@`Mt>x08@W=>8MKC^s
z3FIUqeQ<09<02Rn0R?jH?_Nw-Y?OO4b6#)Cf)gW{6v4Czrc*=|3wcnzrY|#>>uyRW
z*R?*B!;A<HZOqFaaSS4RGnG-%#b!q^CxUMx_%?#M5zLF=SOmu-m><D{2%d>x8<~t?
zQ3PuuSR29O2$n>!GJ?k=SQ?RYzhx0DkKmoG;*3#juGZo33ROAR5q#|{`mRz^T^#{i
zCx*d|LS7fa6A^5TU{eI^BX}}`4b;fS98Nn)!<7`%?o)e>=+bv{1Y06_I)becIca~a
zM>eybilFa-){ouH;ttp&ho$3Gd$jMf5j+>cs}byt;Q0t%h~T9NUZzzmIq!(zMYi&K
zcZSn}hr^|mY0W$w-WkCwG(0M6e|T2}Utj6FJ0ka{=q5}nw(iDsyJ})z1p6a6NJ&QU
zS_H30@J0l0(nn&g52!AmI4rk=winK3k+-Oqo_IR~`Wo5eGceWcFeMhj(Fi}A74}y5
zllZk=*;#7j@?klio`@hCff2#U2u@L|5xg702N8TowMK9{g7+zeO*u4s4!Bh7qn)xj
z&u77pBKSChPa=rWU~YAM<;k2|qx-$Rvl$(S14`NvDWX^eadwlo6oDCm#i}CkBS<iw
zT<@6g)BHBW$kRF8x^$?W&wIEkr4|S$BM2h=KXZJhdfMPfI7JS#<fzTqQaIN7(Ia89
z^f@K`ssz4@;QrdKUo&*H?sj-<uUE>-a7y^Q2>!>|8^P5GzK`IC2>y)VFS<j~;y*_4
za|FLc@KXe<FE?j&ZP%;&uMzwf!GU!-f6(c6Hv65XvO?|`vE4I@6WS6dMI_*JHi8Qg
zT%?D--0U2!w_n=d5uB$}Y|i02n&~BF371vMbrV-o<VtP?MR1)_=+m6LDr((e*$#bg
zNAQoLWD_?Pa4Uk#pUdD(2JR@z)Ze}Cse&xaJ+x31xuVF4qInd#qsS9Q)hMb(kvEEb
z+>MW-Y!vyUC=f-lD2hkH)o#Hk(xOs0g`y}NMUf~t3XePzen<h_g<uw6iz*tz=}|DA
zb3&34Ma41wN=MPZU0*~|LJ@ExS28MNb-fpIN=3nxa|5ccZm;fy%SBOvrK0?tQ@DJT
zA9`-jJ&j7Fe^yTZt3***!F*-?OS|-K*CV@n6g8q~qUx-vn$V&UQPhf}c9b7x3R8M@
z6#it-?sfkI^e8f;Xb?riD6*n*?Ncu*_ud&3C`@{B{U{D9o1_HTbfYL5v&gLWwAB|g
zx^f|t9YxcqoZ&Z%;=K(y4@W^W<4T_sIj+iEMA0&e9#Qm+qE!^Fqj)rm&QY}CsfV4>
zHi~vpJVJP9vq~!Lb8gl?3a&>wM$v&9d9*Kgq}gsKg`~MMs|zKwHM?6B-J@WL?y6GK
zJl`q%{w6tgOsiMCR}{UYm>9*RDEdUvmz`3QVQB3aMVPu!5~#9XE|&(7z3$o85xJ(A
zu(a49Mfu~A@Zczhu%4HjQB6Y?a#$3@6+q00C`LvxO1+MbVw?iT{Fggc0i27D{|_@E
z3I-4soE(*-<cz4CCcRa;<CG|-MnQnjGzCmoMeZI6&r~!Oj!NU79mO2VDu%W(%#C7R
z6!#3=H!wen1yMX~AjiN$8cY<wM{y>K#ZfGY;{7N-h+=6J%c9s3#f!AnC{{%AbQD{u
zsVE+gVqFwZu!g#N@s;|jC{{<YCW?y-^!<~uRsqo`^uHJB%LevXAH|bVY>HxY6dR(r
z);IL|Dt%)V8JqOQ^K^fc{{AX`OB8n&>rX{dbGg28u|!@N*n{vhs)=oMr6`CW{<!`e
zrME$UV~zfT0-jeX8`{pwSL%F9EYM$y;$`{~#S+ENC|-$Te-y7pQEI-vD~ea6{GhhJ
zn@+k!-=osTN5h2oDwx2&D6W($z^>g}p)-9wiUTb5ezO6a+dsKVe}mmwB{_VXMjpj6
zDo8PTD2gLdRG+7hnWrCCG|n;!AB}>*ux0v*C{9N4P89DlIIPq^D3yMSEw0e{u&3`)
zHElCaN5Q_NPUo;`0{u4WA4c&JeL0F`6dy<NNfcI;x2h0PjmDz*qE$wpg?d!=&QR&+
zizM4|MPSlm7syvT3S*&ue~IpqpC}qF*7@pE%a3GH5#!rt{PvU{M3IW(yD0ug6N=)q
zD88bbMDckPt2XIh5?G~wLB014k+BVPI{Cdqls0Al4ee)zK6ahHZiW6WZDWOQZq~n#
z;s;gaw<vy$LR%u)_$7*;l>C2IDHU-zU;3|6%v_;=@krM9<(utUr8k?W{}IKX?2CcY
z2L6iTY!o2_xeT16e4_X#iknfKkKzI~6~$HB##*U&HgQokbSa9<3Lqy$UQ?nV%?-N4
z*0k$N$cHYbl`ma@$Xij|j^ZxmugKDu>tyDRV(Gcwq4o3i`>OtptMvzThb7WzndUZ-
z$3VJ)Vg~XW$Y-FCfx-sz8@RMocUI^Hh~Jtv_vict4e)hXi)KuV7?RaA0}oneu%3qu
z6knx(zeT_ExL(wdswYs~kg}q7N*Ksc1Te5{i%v>&i^P{Sq$+=!+o_C!vLrTmUj^k1
zls8brKurS`3{*5w#lR<XbvjEW1H(7!tB19&Y)IePyg~1AG+fm{H3LN!$qK6*Qhns-
zlYu>I8B%?<6{hwosZeIsF;G`w8qe#>SKUCSfhGptU$18wsAu5Re7%u@`UV;pXlP*h
z8a>x){@f!}y-(<yej&b2UZXcwWNfitp7d<h1^Q!C1I-NSm_14rVA|Y33j?nh*kz!l
zfmQ}47?^0FwShJUdK>6Nf>rt>209z)VxX;ob|hP_w>NkTUCOzG0d}O_TD_xzP9)pV
zmDTcf>Xf{C>kPVWSH)frC5mnax+|dkMk%PChV<WFD*b4sPPngueuj*4;|zoi^fxfV
zz(@lFSos3I;W~YwYHr|seUO2{O5mT)(}z$9>-3=phAE)jdVRP8W-pUPMp2TdbH*q;
z8Li+un{;BvDh!Q>!Hq4BH{j3LM=#JP8JKKflYz|!rWlxNU=bTNFwMYp1G5dxG4S&;
zeTI_EES1hwsi@G5;rB60X@x#ug-%N**<1tjRHO3^EMV|A_zlWln@;DDlFs<nX8p%$
zeU=zlYG9Rt)igYc%fLzlkJHHWric547ztOfZ24vrj)vI;)xjt?ymx4gfwcynq{Xh3
z0$*p~2?Ogn#5|#2p4+4IpdPd(KF@8|H_!{HxV1X7!cXYb(G~+w8F<maO9q}cu+_lx
z240|nt<s+{@T`I73~V#F7oqbx$xx%@`Sry#y6SdiKVQw&=~+7r8A%Eb?7@_S#Y=Sx
zylh}6E#zW;=Cb=tcN^Ga;8O#i8F<yeUTV!i#K1lS`whHp;Glum47_gO<R<+sLk?;O
z47{ndvwoxghSGS^+#Olf{L%%cu973*Ap?gEyl3FFfkuOR95HZ$#SI)~)Y_=?Ic9Ji
zmoP1jDUEIRM#;=61Mje{N3!0ftiJ2The$r}8~A*K{*i$X418!{%e)>rTcmcVBYT_v
zF->ui&S5A@KQdq%unfeg*`>1AacW_eK2*UI7wQQEwt;UN7T@|vmSe!BT^UHy_vh)J
z>I>CDm{B)SuPI7<vwr(&84zY~=t{+XZr}?8e=-ys_|m{v27Wd0n}M%ct$`m5{783r
zT(bSGf$x+${%7EOs`%&pm7mZHlx#*jp&R~W;PO`eXXRhiMFYl%dHOHvmBl$EU0JCA
zZr}{#UcV4s;1A_`TT7=?n`asP4csvB596eP^HkXy{i=ZrRFHuyO7E8#jh9GuaBRJ-
zV7|WkP1of|!;GA#7wgvyTvx(*`e>N*4KjR_9<)rqt-|sx6>PV*&bXtHZ*0-;8emF-
z2L?hh6o{c<4EIyTa>bA@CjVWEPwp5m|KP&3u6b4Z=Fu?W{3^H6Bkh0b*`iPkh1F}b
z7>dO3Pz>4XH7$msF=WM1FNX9Oip5YThPp8nk0B$55;2sF0WoYElG&?IR+&iJ-NKo_
z{Mxlt3<N62KxF9{4%f=$Q$_)0V<@M9@+z(HUv9-1D*XpX&b6)*!(ZLnS5;{>mGZTE
z3^o3PYsOGZ!L|Rx6dshR#UNtHj3Ih7JidQ>J;tAIHRs<K@gXN<>8pp^*N@?aCfN;R
z{H6(N-c4^119Mjo%52QCjkEg>&1@3GwH8^|s%2-iZ_lizF<fnsU8F@;mr1=S$%kXu
zTqQF{rOjh#LAI-8w~V2c!gQ#b$=ucoZllsG12fyj&_0HjVt6@*4l#6$VPXuEV(1jZ
zqcIGMVQ>tcW9Sm&|1@Sj=+m@o4BcYr7sLNfWp$6CM+|3zoW3gU8RMrd!@Vik7``r*
z#pmI0y*>(=`{SllMoCQNkDG>L=pVxq`RWabVW6sKcK&*U^4DX9SC58=#4wbN=F>;V
zFf4|tx%J^HCGbOTo#_bmIx>b)|KZb)g~!D3L;reNee|)khd%na7{<r&Z2x+ECd9C9
zNj8DWF-(bJMGPxhP&L6;X2&oshUqcPh@twi@D~$0J{AMhnK8^#m{!Na#1B0do^wq8
zkK!Dz0#sQyuRbq^FZ1a0V<5ahr3+(NqyS<TD_}_sOaH?xQ^0bS{`o@l$75I(!<HDH
zieYsOYhu_K!`M4neAdRWK87b_xPB*V9c88PEAM1Idn~+x{NKsq^VIP?q&#vgyh-J5
zj=?(?F7j@O$fp&}b1^(0!`2v{p#&7ov;WoeZ`rfQ!X$nnh8GomzT@HTieQIIue>9x
zx^tk}&KO>a;R-D+hFvl2jv*0)9mAd&UX9^s498;F8^gXB4iGsi>-~LM`(t=5hFtxd
z5w3PT{Q7_J`y+e45yP7?yhU@0;g9WUhhjKLr)bui#AlnfCeY}3nDAj$<cO-U<MHtE
z7*53SQ4Al)a59EdF}xQ8D}P6ky&K~Kt?QYe@~;}%bMWzSIM($vb7S}*h7V(yH?=r1
zB%XdeyzF?Gz$Y<8Vu-8CStP2eip7w3KyO3Af4o$@j4ERCb!1OVwL-2QTGPj&`e@QI
zd`E%D;Kz`P;Zs#rQuT-u2-GWq-Px@_i{bMazKMZ6e4#2Q179j2<5oK1uN3^XN}oO+
z_74;z@_#XWAH&}<oLBfCV)!M7Ut{?3znXtiz|SiErfKWnV)&h{$M7dH$HRA<w&rt&
zeSeTaHvUp%=VF|C^*u{t7}+xw>&lc_1lX?&F;qz8TvlSd7{evi5sLJL5?A?K>DOqA
zF=%m!IBvx74?}AlrQ*05!!1VgIP%AFTe12ehEN=L7-M5-Fs&mi-*GhU9%H`Z!9E^l
zqq*Y99Y>zH)F8Dc1yZFr)4U2pU|Qae1r(eXN6|P6#!)Da!U|L5KbnINGAh21^H7|D
ztLwK)>FIG4k0T?FVsY#r*^>|3A`f6&<MOgv!X@I8tBc3OrQ;|QN2NF_$EDGhjiY=V
z72+uOU;VXjrT-z)X&x2hQg?i2Kgg&ON7XoL#Zfyh&AXaPYs67q0mRf*I;|O(2ATUr
zxK5lOMGDjK*m~VK_X_%o6X6yo!g?H;aWsqbzc`SkT5R-RyY=FzA4lU+JsYUB$BA%5
z1&ll){i1OkO;lUiaej_OVw%SJ=@1Fz#L+yC_HlHGqlK!iRUED3sMxG^OO<{r(%UF}
z+qg9KNB(Q^Ups84UdxW|Nw4e}M`tCLPH{XM=hs8RGqPLrS&`kkOB|F5pRRFq`wu3*
zXB@rac<v`W{}X!0(I<{GpW%<s&^L~LRHBD;58*ia#}OouN?<@71LLS;p{|8NaSSHU
zCR&;p635UutT+;J42xrU98bmZbQ~k%7|AZjF)xl$ag2^*RvZ({i7|1EjbmyYzf}_B
z$aD9i6XTc^$M`rVkn%*<o%~`#S<!WYAo1ilzAYuD#IdN0I2g@}mKDzz5!2$B&YFjb
z8F9>vgP5mU3fA_&vNC;)^^}!mXS230Von^ycN`|>$FU%e$0>n07P3NB!*a#a;y9M7
zhFH%Mh3VE<R<%skKwt$eYOYRBR<d_9^<yK&YAP{~4RLIYV{IJkRCm_L@kAVCk_B0c
zY>@3I<LK&UJbAVYYamyf;@BKV&54qEz7p6H$B80hK`F5{j%VU{CysaH*cQjLaqOdC
zP)F<|y(W&Gar|{hdm)Y;alFW{Oy1G9Q#-vyP8~tmIj_A$rJPM8&6R^$uf##jZb~?g
zU8>;9I)cQns)BoI+x?5O6p<wR;i~pp9IwZ5D2~H%93ap4v^V2;D~>nf_+hTBf7nBU
zHNUNjAB=-d@HJN_S?7^Bj;bb3#&Jxwdz_t$<McJj6`Rl|>HjjxBBxm4RV}()6sjQJ
zi{ryMK4Q42AWqYs6~Mo3{D8*UTC^xDK91v)IARJPiR0u0jZc(fADo9p2pfv>_X@JM
zcpN5e?}o;|y<J&B*yMz<$V4F%ZX8}57vs1ThaX2Wj-TTAnbM0R6~~uxd=<y1G*MlA
zPTA%aEdE&>MP`V9;V%^O<No^BaePCIisO5B`7iBTRpdJgbA~MPAXBD4E)qY)@uSLO
z@pVVCo_r;HVqft~9KXhKHjZ-)T(`8};`k$uKjZkFu1C4Wy09#t-_iux_=~n(J<q?G
z%NgQt+Srk-3#!iZafJ4Vm_;%I?D%D>BaXXq+>7IC9M_b%ZpCq(Y%CJw?H^U}22HN7
z>=B=vG|@EK9O2uH|8Wqm^>G%va9<JUF_G8A1GZ%%mnl2Q=5m{ob5hoCE6Wm-&*a6|
zhWSk#t0<l<DkzfzCORyW)fP5U#6)cqbxb^DBF#iO6Xi`5HPQdFR@_8}iN$BNboE-y
z#EAytn`{9SB}|kyQN{#cOPVNU;`WO=bHC~?Sn%VPg0D<xWs0(@?E2@jE10OL;2I_>
znW(I4u4bZ&s-&t35*N9kk@Dku!gxQcx~h}4HOdjW?`kzo)G|RJt&n)Tq^N5`GttyU
zGZVsuZlaMXT`$u_mICUVsAuA>9-)7oh(><zuGYXrLl&H*FX|*{^Xu<ujTLbd6WJ7C
z9kD$tlav?R$rc|bMll&LC|bN8q8yr==-OXg+aGFWqP2<BCf+yE#>68gR-0I3qOFN`
zCPtVTX`(%aY@(-$UaFFgCOVtwVxp6JWo?ftV8~3-mBKG9y4}#ao9L$C<DJC1Nu7G|
z^@i5`A8qMqy|;-zCI*=pY~s$`&V5aUDNGZOUefygo4%wI9-!cXlu46JzD~ZS4SJ{f
z5QXIHFa-=XflR@y$>E~IP1Lxo)p|)EWn#36*(T<g7-M3ri76(gniywdyopIBUcQm9
zW=k=_#6%Oj7m7M#^`<wp&qs;HH?-NE#bkCZtP|if&BP27Gfhl4ae1&lw!b8vW#Tat
zB>NXrY^?r9Vd3-;b4|=MvDCye6Z1_hFtNl0t7XR*npi{;QHE8;N6+iTuwBCc<`y0=
zIKC`5vC_ojCRUho7+OD8=eV#ej^6dfDzaKma4cYuUu$BWiC0YQGVz3o^(LM-@q&pb
zO>8jnl!>QJY&6lkve;zeotdF|dqadbo7iH)pRI4`AO_#nUaKOuns`R>^DJehdQE<|
znP5lAUabS6=M<iz*lzMa(#85>;w1&_F!9p`?L}J19gTmQ{jx&tBqznhGTMAGvD?HR
z6Gu!OHSwyl$^9l?Bf%YQuZevMU>Ijie%-_Y6K|V1XyOeMZ_>!={+;9)!CV3?LJKEw
zh>V@rTJH@VrYh^mED|t_1jp#hCQh0-Zp!h9g9Sa}FGhY7?^4&LCH#&mPW*dR&223_
zO`I+!J}~hi9g{|A;v*9uoA`|SGVzIth>4hqxQQrVGsLy97<p04C@2huk%HoCxTtBu
zGEr@@NSa8PuvtIDzKQ!&Lo07d@lF^gJodVZcxYJ2r!=aIxsU1h$LUw^X@QB9iBDO7
zLBVItjL<JH>(7r6UzqsP#4jd(HSv{+uTA{O)~{>du*?5w-<kLy4MV{{R29U0Z^}O{
z|3P6=l?CBm<pk-O^^?l_*#s$>^_z*`O<bbInmA+P4-@A|VB$||hb})#oTWvb*G6TC
zgAFq8<PyCn>d$gSKC7KKalynziYS*jJWY_`UVA~9z!ei$P5fixrip8eT08aYCT`I1
zChGnaeaMll)!E&<))dcun8kW-QMqTemj{KaLe_BC#63n@3#BdGXV~YUX`!$shr*DB
zJQng=$YsePg9AZsOAeG@r;B_Rm=;iE{4@FdmK+N%_ty(50@82*<uFmiLQxCpmK<Up
zvXG{7`OoTAFKERq6j%5XmK*^yEWnbJf!z6IK|Tc7L`e%A;yJ#Qu~1gg*R)Vh)l<nr
zWeepkaOA3Bp`xO^A>`Qf4FCDrLRAYjR1p$Xv*h?y-NHvRb#{#dt2RImg>0yn>IF;H
zR>T~UH4DN*D1lrF=oT_9EVi)3LY9Sk7DibZZK1w}1{S(o=wYFug+><IT4-mXv4tiU
zT3BdlA=^Sz3ptjI7@QV1v+(AL@WYmzQVx8eF|aU<^oez8ZsFk-lAx6(BTO4gyOL<F
zQcfwWl#}u25ew%VWwKy<3msI2T`Y7|G>=*!K_>-s3eB>eEjeu_K>DtVm_Rp6&R`kb
zdRpjZVX!6VOT8`hQ3L}l^kvshWXV#B!+zAuNFmZie+#l~OF6Y3XvwjX&maq>j%1g4
zOboFwR4Hzls&Isb;R-0oZLqLD(vn{j;B0OAATh?mSPL^O%(O7h!V|N_6iZH}##@+R
z!LKAHT9{0U-O@Iti%AOeUMs<;!2Zxw3q(${(6e@L5=>XQ(~FB)7Ir|)u`t)d+6UTW
z7G{&xu>N-E5b-4*X!9)a;{^*WY$+w?TOg+GzEGdiVj&GXLoA}H-_WKM6H6^Dv+$mU
z(-xLnSYct0g;!}079O|ojD>9$R#{kWVIw)Qu!haC3zWQtb(V|?bnp_j#2Yomz$w!G
zpR};Sk`d#^I6*vt+xf(1vSDGXC1b@?7Vf?pBK~Ri`ld!2RzjMV6(sPih372nR5d(r
z;ROY}WMMm*StfSSVkwII+TusV*p9OP6ZvGLFRPjvWXQuS7Ix9Dx)vpVx8jia?>@}h
zYhj;-LlzDz;{6s5Sa`$2YjpotL$9lbSRqT@*%x}#!rK-OT6jz0Spz#rGUk$vmi^O@
zP=glUvCu3{9J6p-)p^pw2}S>J2iYU?LrzXn7gYs$epit(cj`ad`xZX1@RNm~EqqA#
zwD6gQ&n<k+8Z0;#TniBkQ46L8%YtDc#w@POEhGnv?{8>bE^2j}i}&7Xo_=0S&>EKu
z>!M~`NF2_ZI$gwG&EB^w+oQo)2rQ&nioxoJM&hx}^L*Y&u#yo&MZO98r!@P;;={!<
z_<UjEOS(o`@x3z9uPl6H;adhhcI~{@QWwmk>3(P7fAoke+CMY&pL+=kAvIRwf3WZ)
z?IbKmVTQY3Ec|NWx`i8bQidt|vV{v4hNX)$7XGyGmxVtpyz)T%e2QRgXK6fHdCpNv
z6l`fh56Uy5DT%L66$J<A7cE?}aFx=ysByfw%&2l!yTW)?QV?Levbwm&sC!<CWwiLm
z!cFC&_u0yrrnfBIws6P7kk9io=-nl&i{zyJo(h9pCRCg&7|b7#>_wgP$<N*^o;!g&
z2~0|0asqi1$d^Ea1R5rgKY;=Xlun>b0tFK&l#syz2^3DCh=PkH;0+fKDY$3?X$h?C
zU9|6HISo!%NPhpY?J%9M#no#@0(*LkjRW-(2|RXLE1AGOEt9#W5@0F9WfLfuK&=F7
zCs01YtuU0&7S$7SLR&F`$_Z2<lhs9~gq%llD#&?M)dZ>~<lK)_M3OO=$VaYgH4>=F
z`rC`9{l$rHqD}(*Jc^cpNT9BQ`Fi%RG+n`&31qP^gF-~|si%<j6IkC&y!2vrt0CQX
z@6;P5&^UqK3G_*zNdnmku$7JpG)<sc0xc70mB7OZ_zgt!1nQL(1acDSI9uP^ShP_1
zzlw=L6GZC-+9c36fp!X6;ivqMByb=@9Iex|;7yG{`vf{D3@aJ4FPqb+;iE;T1RhPG
zbAtbVjP42aNT4e@X(`<5qFVyvN9&p6W%mbH6FrrvDb-#Hd{<J`FCsoU5#F5Mrf&lM
z5*VGpm;}NJ8Jz|uFerik2^p^#a0Vp6I76QuoWPI-h9@v0Aw%C#l@3$63}}oDq~|j-
z0nUO(v4(!#NXD#{H#Jr}R?$yL$nZE$rQ;J|U?B}7%tVD@LsLkW!2SeYOJG_8(-U|q
zfu|Fgk-*FZ9#3FZ0<&l*2`oxrF*TmRoCM}4uz*6C5}KR9JXTdhY@H@PuOZqr%*?JS
zII~)qz|XIR=qY^m+|`yOurwh(Xn8`;yY4<HzDxnc@O1?(mU{0d>Sf61n|s>o1lA<*
zWC9y#1L<Nd^?OTuB7t=YIhOHzG#rN3(=Yai7$vIQ)VR;Hk(3E+roBxR750U84Gskl
zi7g34&S?b7b`)C^cqV~;ij8dvJgcgDk=AubdoF?J6L^6<cMtJ(djkKvrt#T9QOwYL
z=Mz6q5L5bymsF9LRZ2E?D&Um_b}3-@fA~ELcvYo)6X-NV2CHu;Nq>Bu7L~v|3A{^P
zkQ3F=ah1N6z`+C#CGfU-{o)_Zn-U@qht=!R1db?x{OoToh(Gq<E8!CfxqLpU(o@vh
zB)J55FM-nuL=!L)ct3#;68Ja)eqiXs1itC76ZnW?uOK!w62uVrB!NpqMMS}TUAs?@
zsV<laSW0Mda@Zh~^W+4bu9k4AvIOh|96C`4!5~Q_*8+Y5NfnXuH_7wc9Q}0t%&$&_
zThA7sCh!?;%)xXApC|AIYqN34#+M0vMW3?K#m3j<ErAj?O4|6Aj+4MY3EX5)6Zk%X
zKiNUn+)4aEO(pP40zW3?nxeyz?4L;7S8z?i)yl64{_`QuB=B28E?!de#faP5%&DP2
z5~zM4^y@4!sHwPeB78Q1a|s!Kuh8`raFI@QSv#M=1-3F?eArw>3d=o{O9@;i4`(&*
za(w+u%RSq&uO@I!6}g_k4OQx!zqQo`MA3`dw6WqAvlzE+6tHoJKAu3xMlM^%?RyD4
zP?6#OfAJx`N#>lrA!g;a<%gUe&Li^L(o^!-@b7BB)Dih?G(DfjfreQHZ4|PRZllc<
zLBA+$qhm$!kd2eC>P2jRd?)Lr^<C3!6t$(B6dI*-SUfRV6thuWwVt6;*toe{zqL#b
z0mWX_OW7!Gqn?fWHp<v2Yon@-YBtK*FlXs}D%mJ+qk@fDgF+RqYQ$7zzXplR3wl@n
zkEV)^4Rr-`tJ|ny%Ozx88#QgzvXMD0#3IbCt!V0~vVF%0?jnv`Bs3eshE6gYS*qjp
ztB95l%OFrLmOZC~sN6WSfsKYXTG(i5qmhj%b;ZLra%?oV(ZohJ<-`8wh-Rc&E||-Q
zuY3qJC+B%Zy}Oz{H1tO;vBk~cdaad>_DX22DM=fT*l4SoZf7G;6}j%K)l4o7Ny(9`
z1BGmZ8_1n(JjzZ@lym+KZR9htwCHN18x?0`i;eC!dQeI>@06majb1iJ+Zbb`w~anF
z2HO~7qpyvAHo`XgD=A$)5TdMxepY;dje#}>+2Bxex{CO-z5K#gpYihHfHKs^FdHLT
z+Y&jV4Y$EjY=jLCY7M%Ivlq3ggT<ikVw8=w6XiF##@ZN1LD`sUW4w(CHYVG0bem{n
zL_;yjM!RaF`fi<@%vZ|G(a`cTSnV`LGlRxZQcS1$H4rSqfp4aQ`P%kTG26x*WnF7+
z%(XGk#tIuNZOo?@u4;>HET*h%EVQw6PUrNKSzG3ck1lIVY%I00%*JxcYKbWLYfC=N
zUCkBQXq}XNeO%SB%EoF1ywNSReXw9R+3p(J_Fz$>r&wp>3Dx>~8yjso_j{5?Mf&2R
zUI{@j;QVlt4NesK-LYMJ^rvh*%}$XrU2L`SjE&tk_SpQpPPsL@-Np_Z&)Rs-#`AQm
z!Qus~FH@WuFPPi9m303uQ^kumUS@Y}3<!yrY?RV7A37Nx*<8FrjWid#Y#e@A5csWy
zOzF9=+SqSnY#A|I6MJpB8ro;e&m>KMpuI+8yRN-X>+K=Rev)-CEAtK29gc2qD&Q>}
zZ&Qg6H2N=n`LK;6bY}<Y4vyM5#t3QS8ym-MoS^I3uxQ3MPEi84w5W}DY`n|jA@MN_
zRu}Ktc;ChcHV)p?PE$>{v{8*k{R5#773L!w+??5+N05@hCrTy}l|DF<HT=CSgT8Y`
zqf^IhoXHY#8*4tuDsQ&=VrnR1!=qK$uvL$^U*y;bLc(P$hqH5X32vYzZG39uGvetQ
zrR1bKML8D{SGWyGW4NGwX``arXZu1mwBvNvS2pNVuNN1@e{17A8`o@HSCaXkjh}7&
zqTugs{9xlp8$Zz{FKK-Gneb)_ZioJA<2M^;ZJeX=PZYn~_=7QXN%1obG6T}9zm`2F
zEAvmfkMj2)r->!^w0hUHziphianZ&l8(;M)dVzz{;B@+3m$1&g%F8ycuwM(rRmyEo
zHe>R+QG%}+rgOS-gZ9R_>L8DUn^aAjxMSn4a-~}~ZZk%`7NQ^BtKIvajT;5U`RSb=
zDBwQTmzhaS$U!a#$8T!<IAE?%vbIbYc^%|)<Wi-GgX;rCen+m73OXp@$o;)np37b}
zP!w`dSm85IhL@ztFAq`<4>?G4q)fO)T%(OB=J0d9Xy)Ky2N@3FpsoYWK?w&X9aMHu
z#X%`Y+G;rm<sH0sTPy9LjDxbYw@G@X+uE7iTBF+<jkbb=N{WDRMMs)(`;*~MTh+Vj
zW>j@h%|R^|`Ae(r$k0^7!Lbt3bICT-nhsV}674&S+KPtAIu3&3(qUOdIB3lNUe$C5
znT~YcEC=-+G;mN)(G!!qglOoXdp}vEk;8vv(pUD74$jf7i6ghmDB)~JhPb9IRZ{$T
zIy=Wfa|fL$4F@e8>F;gGwgOtJw3SL*JJ@<oGscN`wq>_fa0dtNR2GZ0ckpQ*F?4{q
zH%oM+h(67D{+8C+K^F&u9Sm{M)j>B0{TzhJo`W6^dQ&M5dQuK|wBeVuUJg1uCI~FO
zuknzA$i6CT?EX;0OaG7QuP}og3~(^e!JaD`$?n~jMOd(6zoJ7O40AAsn)<g|2O}Mf
zaxg-@vf4S9w9$?{1Yxx-GGVGd@xC_B!FUIg987j__SMh?2NNAImszZT>I}h#rl_o`
z4#w>dEx4w!9uhEXhJ%@uo{L9a%yRIUga0}B-ob1Ka~!<u;5`R(9n7OH9PD;5-@yV0
z8y#$Nu+YIGYTUs}(sve%9V}G_vxJlj<#5L3;W7uyX@>>mBC+=T&JAA9e%!$-2kRU>
zp@>&ISmR)=f}atYQ{HRFbYT@qzuv)<4mLO#lqDx=egDxoCEM0ko?CVMTifhli-YYB
zb~t#-!P5@^?HtchFSEo}2hTXz#&8-Ee0@+&e)W<--@{qYJGgQ(>jk<=L9y*+{r<z^
z;8L;2$fgavNQ){Vb~<>8-bWwYr87M8Vb&{jt~5FH%x^CCIC#~;3Hov;vDd*qhkxdY
zw;b%J*Eo2C(zvA^$uC}~l{zvYbE}*O6O6s>?`riw%Hp2++r-o0={t(xkb}bxj_|22
zs@9heOEFxto;qFz1$*4#f0`91z)8YMWeKNL`i>(PH9RliF&Q`LPCJM@Fde+_-~-h`
z&Ne@E@R4HvV+RojQ58u(p^x_$nVqGO4JG-QN}ryrf7wrnpK~k+2?t*}_}YQ(z;WbE
z?^6|UTnD~`qytaAPHQ6=kQq+`6*N)~ei|rW|Eix!;4>}(9DJdaLM?phfN6mxQXO5p
z$}#jC+HDUx3iJ8a!FS3Zsp20V(|>UAql2O@(p~)I;AaZlMQ#_rIQZ4UH3m!vzd88b
z!8r$iJ2>Ou4@#h*_{%}f!s6`Uw6P_{pNunwMe*&r#Hie<JM{AoF3=3r>-Iw8qJv8g
zF00pP9ut{IvPpd8Xf`S1GecJ$oa`ft4b*S2D!S)({XXNrs`j>nJF2Z)jAKRQk%wPI
z+*O!+Djj$-EVk<`!d4!rvLP3&cH-geJTCIONON(hMV@>v^1CSF%9u|pE#S)dT*!qt
zEL70NomX{Aj9G<UG%6!_#Pg7g#(BlBgT$K2azVkFYB3kZU1%<ZiwqZVQQ1Wm7bRSj
zbWzTgc36tlRuO#4xG3#PW8=e9Gd^V%0bk3zsNkZa3)(8puab*@O_wQW4pm)wroc#E
z!$ma(^R>DQUNE@-h^XnJmW$dh>bR)u%I%2EisE+rZh!xyamRANe6gdK&|PG@$Z^r!
zMV5<t?1+mduAH{jcX4a4-q4kUO9NMaF*XOHk&83KMcc{x#6p6DSGJ30F5)XB+?0}8
zC;?j0!>(MYa+Gi3q9vJEytQ)Wu2&moDWJ8BqASGLbwyhjtwW-nLK1WS6`g6`(Sipq
z9b9yD<?RUeh@RfrMHd&xU7T=v`2^iuEO4>VMR!+@GNW9KcG1H{PZzyh^mZ}O#UOUP
zhUlZxu#3Jf`Z2Da4DY$CbsefRtG|l@uG|}$bzN?W5INYz5Emm{jC4V78tP)0i{T8&
zm$Y>!!^9Ba;V+MaIq^RKXByM%!}KvO#<FJi!o@fj<6TTAri|QtnBZcPi^(n~(qHas
zFAbNwQd4MnE;y)7bMe+Losoodp0xR*#t@x5c$}ooa50k|fmmBw@Uy(Mli4o6Cn!gd
zIWFdsz2@TgfuVUW=DYYhL(YMBo(%6EBNkB_E}moME|$1h>f#9(>s>5Ut*><PxQpe=
zq}#O0vx2@nP`nsw#cEf%a_C&^VzrAkEO=kzIK_d9quV+fo*LkIXNI$*CtYlD@sx`V
zE;iBzN{dY{B9lX#$ze&sy<Bedj>!>Ev&AdgGcLB#igxQ;l`WB&lhSWqEB>rPl9)wa
zaIxLR>n;ws*x}+u7kga1%5D}FFS*!B1-U3wCeO<*SS^v{VV7!mw~KteMCVpbxwlMw
zrCwsMi~a1Ki+wIQ^{rM~;%U0vuHnPx-f;0I-A#GlTQ1(F*6wJB=<GN0y|^s>Anm8B
zc)z_oqbL3_<$O=uc}E*EICRv-F;$8q0@ZQS#VHqmyEyOS9T)Gq_}s-8F5Yu-+J(z-
z;o^N4AGnCRFkF1-;v?Epy7+|p8W_4dRea1MQv?O_=1@T(qQu2lMw^%m%SD3D<-%lW
z;*j@1KIg{@ZHI1C+UGRK#j|PRbO-U{cAWtI)OYcz^7N#Oz(tB7Xp;WP-}34dkEEMK
zvU$4knIfpZFZ890uPFA1^Zf40?U%1z{LjVrF2141Wr=THd`H{ZtG_>1XUb6UgNq*-
z?OnM(<>dJ%7eAA7j!t-aqs(cu#kNM7zq<I%#k|pS{dl>I*!6b%PcLg{T>RnUPg<9Y
zvo6lLnB7!#dqj>hoZwabTO;gE78hJxbaBtceHWK#NQ@`0TwpSuTyb&T#SIr%sXMi|
zd5wLqFL)gAj|*<`aooJ+;--RmW>hr4#N1}6xvq6mE2+DTX){CA8mGGt=nEIL{2oFc
za(Oaz<o0B>c|BZSA@X?OR#K;-;;566&qK}y?QSPgz(YX~g*+7YKqE=>q_q_B@Q^33
zF*NBbcjGx9;O!3H+~^X^F6N=Qhvx&l5Fo<?JfwVl>Z62*k{<4QxaXmihteK4d)VTk
zjEAxwx_ap5p`3^E9-4T__E5n?MGtj6)b&uwLuC&&J#{j2U8~~BUBPOe>|<3A{4_bI
z3e`Q-@W8JIvpa`Et++Q>=B`%D11|~GCjC9_<wcz}55hx3_PvwPJ!E=v(o$cgSsv=K
zUEbKaC$B?{Y%fY)(~4-J2A;g?Kx88iXNm~kooMV~q`EcH)I&42?xBq*mlA{a=?_zA
z<ov4E+>_z1m4_A{T6$={Si~lYYjee#?xMs);^Tu^k9cV7;Ze3YKyT+^TVc`OLk9)q
zJf7aslb0cD4Jz8n!#@`^9@p}Omq2GFfi5cLNtu%)x_jv1VJa2pp{Ivl9)^1Syn@th
zZx8)=;nPDO5AU7~bJo<C_%h;Nmgw(cfQLaI274HlTXdKjT5wSt=%GLv@#Rdx0d5F2
zH6%pyZZkq`Jf1b&!w3&!J&a@DJ!$z|hmK}h%4E3ssGXqKjG;QTOzt0Yl{%hc_b|!B
zWKV9<ocS|tq5|?Y%H-=5WpY&0x@jRUYza*FFvG*+9#(mn>0y?Kg%rDo$2`pTq`%Me
zFo#BRPhLKp>&aM+NLF}~yt^{r!vYW7Z-23z$d@KQ)Wl*{|5C*pD_=r3CJVaEG7rl=
z6x*k-@T7Ow=^$3B*O$0mxldoMI9%u92?DpYH6GR~fH04+Iq<Fb<V1a=hbKM$&#fF2
zcU{sB?9GnN?6{+V*hCv!Dz}24^6<2W(;nXUu+_seWX8i=)U1bRJ?!!Ds)y(3ARb<#
zD|vXq!*+U>GMgPLU3}pG_dJ(zcpWI=oeKYohg}Mo`$rm)On0kSZfPFwFZOzJr|xx6
z#)N$yCf3W`@8LBMY1cJw)Aby!SI7|uJbYF~@WAK|Po5mnZQmx_9!_{NEF7Z!K=3*0
z$(he#x_oJI#KTiP#n!Uom_ibBoYF2XZvWcyq=!=q`HqM86!E(%{il!|xLM)U<>?=I
z_|U_rY}dm_9zLdrdN8Tk%i0$c#V1rQ%_&PnJ;ccEZH=(OF0_<JW%nyejHR55qrc}N
z;lXCm;GH5Hjt7@Ts)(m+$ay2Dh`xuUhpJ6Qz?kFV;vBK8zWBO{SQ`?v%ZtxFeBt4&
zhjSjj^zfC3A87^@ej)L-hwnW6&%-xt+C%kRg0pUJ>~q5WJsB=2exS(>2odx8Z>`!9
zSxEfs;TIa1hd)#ezk2x1!|ya*EpyL6o%3qzt@fO~|NMgfrw7viMUAWCY;N{I-8&in
z+rxPe*F0SJaDm*?vj&8&c(}w+Og_~TVDCes{|=pVe)6z#hkli^>LXb54Tc4eAA7<b
z4>y&A@a*Z9@`5JC{@)Rv?OAm1pJ_D6`_n`BJv^WX`Ize?<Rh1l7Cu_~$n7JK&#zaY
zijTZL^7%;fQPf9%ALiFx8~?2p@-Z==DBz=@FK@f8YLNNnIjyjdBEH;K;#Lv|$A^3j
zI;SyEr28o5qqL7QK8h=PFzoxt@WBgmpA6Pnwxlmt7Nt~5fNO`zBgOOvnPq*H^LeqS
zXhjyBCCaO`f{(^onSABL#oF#HQOU>9&Jw8VqnZ!hN2ZVJK5F==<*T4qSqzUAt?A1U
z!645_UfV|<U)~j|>qApOp{&f@6@^eR@zIhZ%SSz5PUf>I6E2N?H1yHPM+5cx%gOLJ
zhq5s>)YzB1JxzQ}9w?6Y5|yUv9P69<Xy)T#A2~jnlZ`*qC>h4g>}VDv%-X3kinj96
z+Q(oYLwvOH@raLJ?4XafY_y<w)JJC@?R>QN(ZNSYh3ur#($n>8T?N-@$6nNTzNmBk
z(#1zNAKl4(Rnb+Y&(st>d^wHp>4QfY+~D2AQ@^S5Sd%{3$H&+Yv%)_5`qI%Dy8HPk
zIYR6ntM~UYz?bvtfhrxunr~=5>WWMC#A`jf4fQe1$0T;v$8cZ9mXSV2`52*Ovbtd&
z3hK}#G1|vCALB{DhJ1M*#L&SLB5stuHZ3%P_TyuAMX`REezKaNOSTv(rudlZV}>th
zQ`3AoTu%4pq1dM%rxP|Z(s}+h)5k0yk13kj)Mha;>QvU526AVQrw{Xd%%=(Y*y&?|
zkA*(g`FO&|BHDnDH9pqTHVTL(K9>7f;bW=lJIA$UJ|Hp)P^v3AEomiI`S?3K&*QYB
zT%tBl2YfllSUN{Aiyh>2odXuRTJPgYAKO^Z18swkjb!hR_Oy>fmBc1rM$0WeHd9<Z
zM2|G_LM8DO>zN?urB%m>t-g$G&-gf_=i!Ru@IdjbkLP?m@8bm@FZu{d3*KDX?t>Sf
zcKGtQ0~3ae9{qLR>3zw^p4Rn9(B^d3D?WDlc*n=PK6VrD;~*LE`9&Mqkpn*7@Uhp&
zJ|FwpqK^wr#OuBse`hrlgd1mz0nNn5%i5d1oc6rs<89i{Rjr}A6iR;~l6N>cr#eg?
zXwuxJXV-ij^KqQqju1lz>RHqEqr*j=f$}aTegCA7Qz{hDoNkKN@A)|GBSzEp@xG4_
zRO=BRA1Xa^EdE#lAJNo1i#5Z=C%&9~-WxC4*Ar1?V>B~^6?W`K(UB9=hvUPgFnuJ*
zgE}d&eH6|NaoT*Wvhb8OCRIv(`96}*$vu<6$8SAE=t%bbdEzr4pHomt98Tg3A78R-
zN#rE)m5;A|Jd{LQ65sgv*2f(mcYS>4<9|NR`Z(v~dy2@%udL0-k3N1<VeJ=s`jikK
zhQy!Qg>xE%<g>5I*WXnK|M2lA)ve&Q<8-~J_{&FG7d!`%dmZ@&&qV(Aao)#OAJ?cU
z9~XUGQPQA5E-BzL<JB--o^g*7JOSq`FNLy?*M0os<0hq~dd+({yg$QpqFZ$5khrZ<
zhPQe{#pC(KJs<ZO+mpzbloNvo4E{-+ZzC=*7ojBf4by+%EuEzF#5^kH!5rcINofX!
zlG1KpFC_{j@d*!8lGxluWOo#WlSnTwxEWp~i7KOX!bOQmqGl4ck|>r$@gyoUD~XIG
zkVM%e$|X@EiIPc_Ny;EoDv1}88KskQy~&3Q2VUbLz^oUO8RZq8GlWV>R7j#CTh9>l
z8_Mh7pZDy$Y;cHKRg=<kczDhDNuXL1)sv`^#IXrt&=~!ROfl;HtlF%nc5jh{o|L;f
zb&{x?ghm^<qUGGqPXn`ShBA}<S9Z}biAG6eB~dTQjUG`ysdj$I|6ZN-^QIzG-VSP<
zM3W@4SzER^K2TnkYnsHJli_Abls=wyyQcW#&1~*0HBX{N64R5IkwnWRS|!mxi2+Hp
zPNGc`-IM4+@g~tWiAPm0+9lDR0vs$lCec9woV_P+%6-VLeMP6F9M`sv=thFhNpwk~
zt187AcsKUtg=}5`rX2J;8gG5{Orm!ZeUj*<H2Ci_kgDvfR2fd9pTdtEsy{VVJjlsI
z{SHiGP!gk(7)=N1F9s)Zqn8+-#E>M0CgtWcTjw*3J~CaObxs?R#7LUcu+X;0be?e&
z7?Z@<qzuthlNgu8c%|aWNlZv$B8jhQlalygr(W`K7CGT!ZD1|AMCGz^3cC~5aVk7b
z*<Q(vbXGDmiCIZJmBiCYJeI`lB%VlOeG+q$n4841B$g*JFNyg{ETUwRSdf%sD4&JY
z+He`zc`M`3b^X}Hk|dU@{x+X18|6+uTVIjH$|P1Nu_lSflX6U)JuI{;iBf$;tvPbB
zU%R|mOEJz8>&QkEv1ofX)AW#>fjp^HzmX{|^QyLiEUBqDX9b&+*rGTg+@M#8{O~s*
zTa$PuiM@2RB(^2-Y!WX~q)9wSnRgd2B(Xh-=aYD+x7a(q6Vn|@yr@_rW1KcrK9ohS
zey*FjGl|So;ay4WW_L!3S7>#)<PN}|B*qAl_mcK%67_S7NNe%$>wcPULGcFdgnCcn
z^&}3^J%{Vfr-%F!;&yJaJePQj);>Z%s0?G{UG428e`+B@HAIQQAzH-|3Nwk?0qO)e
zmc;QSuF_MII6?N3NG1^^af+NLVI&bt;@u?Pqn{=bN#Zn_IS~3Fi4R$M74bf`P(vOi
ze8empA1fr+<2-<1N<63TQF53ex(p04FfvZYlQ5OyT&n(#X3@ItXtshA3g*1dQ2^J2
zguSGk;I$uC+)sj2yDyrFR1%*i@p}?ylK3o%&y)C`H0;Pt?TaM7rZFe+C5HeCaF^cv
zvi9jEjRMTmSbUqrcS-y&DQ^*TAikd_c=d~maRNUwk`xd>C-Do_Hzf2E^?0@Q8-HuR
zCh;5Xyt#-U2=QE=`;dg+8zufo;!g(KB=X<V{!(&2N4b?2d_7B1@E2qkw7(T*U%K4*
zx{$=hBrZ`AwDW1=3d2`kL3*Z~Dm#NDe4U1o#6tnnxWQ6M{FB6O8bcB{RmfsYyOosp
zbLu#_o5Z~&3IsBS-%sKJB@-Y|fQHlL9l20|Tmd+&FnY8;lEphGc>}yLC6q5f{s6n?
zi@wu4agT-DDWqX;!2pE<6b?`%K=o;&MxUZJCyFk!^z?~>uSEl-2dEUFa)4ri438xP
zlnPLsTR;K8f^|fRKq~RX3^8nk{N*4ojFk>hCIENIDg-DSU>!uc0ObQjX6WtG#no$?
zaaP+gQf~28B=Vd_f;3H338d?BW?M5r)d1DVPryIVl$TgIc0BpKPT&ib4r(fD1sL^H
z{-rfV-2hsE5dlU95CQZ6tpl_PkQpE=z{3G@0(rfh?o%&7{QwOpr~pj@WCwWqZ>>>)
za<61J4#29$MYEXB$js!<VbcK30{Nr1!z%=Tzs6spaeuFQAQur_hf-@T0<;X|VA@Kh
zT?T}>DaY9RNPxBhdIkJ5UbG9)K0wz1-2!w7(2<Od)jJ31q&oFzAlK~NE#I(E-uYbJ
zFtdxocbF-+-MR<p5uhiZs$%PmQ2SHiwE5zVAcMmz@ALEt&^N$<00RT;4Kn%#2nTX7
z-PkR3w|_`(1ksS@3vRKp{y_nT1Q;5~o%z85c%hUv3=1$k05|toicSCfyDAcl3NSjr
zf&dExj0rF{z(Z3)vjTZ)IWEAY0FwiZ4=^Es{YM6ekBLf3WB%5Df4lvZ08<0ZP*R!}
zV0r*rBW;pq#_LaHhBiq7&Qt{a`QBpzW(SzVhJ=_$?dKJ912E|QdS7EYpG~NHRve5L
z1z1c&3h+dLB~(^`#{;Yiu#EV#+KNC1ndOQT9_sOEZzUNnDep2hZy>lxSsh?4ZKHr#
zL(^(1mnwytipTQ`I{W$nPX^c=U`rrfctarP{~MKaaaK=w6Aiw&;P&rRRP>@gTLU~3
z$Y}F4+1{n+2(gXsrn>oDfX-FKp+$nu#b5F8Qa7)DZ4a=6!v7S*KE;axUZT~dur-C3
z1MH*|rGOM(p<|Ny0N)1K9biv@kEzW7uS(_OWPnov_667<;H>~}leYk`2l5)s8|=91
zJEwMQ_Jz25edo#UJQsMA6279LvN#yvP=KQh_0;=J{cwOI!T(>><mL~rZg$v~O^qB6
za6&2Nr(;>X&i&^b+0m}zodEADm*?j5djU=>NB$td`}Ct%viHmgap}P|$kB4*!vG%z
zpkLFw>Erb7NPsAfIe<qS<I+#5$qeLG*qBP=l*0_27gMbO37SDuVJjMk?m1QP1_jm1
zV{u;zHpO5Ppme%Os;Cmsn@R}YjrlCV=K;P9@Ku0((?h(L`2_<`CwV8c=QG*7Y{O~i
z*UE$FQ2g!TcWgSq^#C^ld>`P40DlDdGr*4lehToLQvJ^Xej(ch#IMYa7o}rvpBAE@
zPAedidg%8+9xihVaYg}^vNHb)a5lij0GC){L2)jSKao4H;J*VrmL)<j>v9NC7RCE-
zmjhf0aE%OKm9sCNeKWnvrq5|SHE1$4o%nwO++-L}A$JP50^FumWXW-aL;sxs_X6Cf
z<rEZmRmv^O2dcTP4fBuzKA{xvOJ@^cbjp)L!4wLmkT->VDY?O$KZOFU+0Qu8Ld+=H
zoyQz|{?Q7jP$Y$-DWs?HPzq@&9OrLIc>b6n7b&!4-fJqBlB^b2>4o|7bc1T*^|lfz
zluV&V3O!ROl|tzh8m7=Fg)%9WO`&EAwNfaTLiv>ZQB}1RDx~mmeNi!mN+cMee>7aL
zoRUkeDk)S=p*#1tD~s<3>D*Q#Fl1t<>M7JnVa%y8FM)TSBF{T&r=(G7DToy6q~wNe
zU6q#45H;EeolRWTvQns*LS_p4yNL8=f@ys+a6xO3lH+Eji8_a7F4ze-PN7K(tx{;M
zx|W?na|JX_p&40Ka83$~PK9}r!pk9bMdqusMT-<V6_HljG6h}~dFE8OjcT`j3LR2-
zB!#vqJeU%y>Sl11X-7AoBF&QK)G>w5DRg0R@|==)T6pK5H-dOP*OgVJur@QZdkPoB
zI)e;P`WEiekKWe?X_>uJ=$*oh6lSK-CxyN#j7?!&3jI<Dr!XXip(%M9(m#a(DGW?u
z$-VRu`$EJFN?~wH9+z0t<ZO)qkJ>p!9G1d}6h@}N$>DH{YlKdKv(r&2jHbX-;AR(X
z<BRk*&s@;v9Lr_^AJ48`*QTW8UdjZ@GX+jN-|QZml)_|M+BBV0P@Xu{93-Z)3v<M@
z6sD(8Ju`D%9&vez+$Nfp!ec2sp28~jJ%u^sGliuo%uQh)g{-7KKZOM;EM(;k#49i8
zjP3shbH+DbQl-onvusldkeOw))tlN1#n^Io=bARAh*+7z=QH&;PlbnMiq$EsN#V&9
zHc+-HIp1KMe<B5jsdXvvsPP=68LVd)MvCHl^o=QON?{9q<gT`vMbsuU2N42hfAJJm
z&?EHK9MN{VcqWByDO^e6Y6{P$@LUQ`3T_I|r~Z$o>wvPNXx0}AB4G(1K{5&m+@4*M
zEGSWdMPLB|FGv<pauSIu=A5&LibMrez<}hSf*E!1<e583R1_r$A_$7_>*jyw%<0q9
zle#N)b#+w@mXOy<u%!gAlwfHI)|0|Z@G8k*w6>xID@*Vir+^YHE0MF(8zorI&y^KD
z$_buQBc<}m%Bm8qCIORTOR%Oy%55H-My2RlUulkZbX1DbPisrCj{H9Ie=(R0hI*$2
z@0OrTckuz~p#&RC@LtLPVi4wRtFlSe8HVuCEb+doFE0`l#UE1CtkyR3=8Xj_Uek#2
zttI^VIQErbe+jk|P#nVH^v5OGS%O_9GQea{3GTjG3ccMWvizY~3ZK0M<C!!~mo#I3
zQX<2?T8=LMl<2-f{Jo{{GorYn_)-m)xci)hq!35nEviqnm3>9|Q$b7?sRP7*3EUER
ziVVIhkq+dhy83+yN=lF|fnFjPr-r(LMyGH}?{hB}l4dMLMYeimLkr=MO>P(5#q&Ad
z68yraN)WKmCHRR%J5od?h}n}ZnI8#BHOwDMaF7D6T|R>mR<_Nj4E%7VwAfG#vi)au
z593n~5q+(snc{E>ej~vvzToNa9Mm{*v;?KsrjC?=YEQqbMX7^T-hM-4_l^@~)x{qr
z(yfv7{AUSHl^~sk$l|XOoGwAtEUIO3h8W=+vM7_q*%F*9k+zFcS^QIie-%6bM}bpD
zoLA)n&Zi@#Yx=*_Q>m<!0}aPX|G<l~GW7u~WwR)kl^Cp)#l=~a&*Iu;T7@hw$x0El
zWJb!IEIM8$-d(D(R~56;Q{sjZg3MAmi@YqVWThH^VN;&7eDy4l#bsGso<)r;YGx&~
z)XU0+K&>olXK|^j7tKo5Q6HsKO5H4e+>*)Emo^PTwSE>2vS`TBRTqu2XsjwkJ)=9h
zE@LA%o48}uB#SGuXr4t=e(rGP28Sy*%VHwLt7S!tEWT(hC#jZM8SKCfN6uD%Z^>v`
z<Y#dW2be`c7Ok?ligz;d?o_&U7VWaQQuVe?7Hw7K;QNK=QWA;nv&_ORH?Rs-pNV%`
zoI0wO4x0+-z;ksLowDehMVBnPXQg$b<r=LkzeVdu7PVSQL&U*R+N^fsiFT!VwMP~`
zvlyJkkSuy-QIy5?S?NF1JB#bG=$A!t7Jaf(;pEXb3%X>yK1(z^m8QbkKZ^lbxd}Tk
z3(DS(w`klrb8eP)jOSJq4q^wUi7zgbdm_|TZpdPIR`Pfzi=kNzQ+>NJD=lEHdkStX
z@%Zv}ZA4Zsc^I@ZGAq?2PDx|37|TBB=&R$VEXHM#%|g#&d=?Y3SeeBtb~uY$i2W=c
zA>^}|#QtP4FN?`pOvz$K7BjOlC~qpMu1)@Q1-fZjxdNprgSJf`v$B{?FcMJX1Y_7A
zoF%b#YZeTS;61lxrO|`9d-r5|eijQzds*C-#X^GUYH@oOcVwkbvWVTQE|}!0om%Je
z4R>boTO;}4-C5j|#r;`4Ky?3^zE^$dKGhRO(DRGzjNYa6gIVb}^^oct74>L^jMINK
zi^sBfIg2G(Jf6i93Y*Vm@g#{Vi)V<b<I*jSS_gUR>8$i}=N!t$XS1MR^bI=-p3mY1
zzEeF&N_Z&?TH)3Yk%p<anu=GlSegZyYdQ6QMQ`Mk*Hz^;RaW1cS(fDwuyAIW46CFY
zRSzwHg`zr=B8{S}vsjbG_AGW}@n#lpW$|Gao3mJ(#kwrsQ}nZ*gU!k$4;#quiuK-A
z<*^<z9R&RxSZ*Z1v(o2*b`|apkX3oSpT!4R8LGx@cb?MHNLKnNi!H=HGa=9mNOh8q
z4coHlI!H|1ShzEbUHn!S-(;~ni#>!@q4+F|y+l(5!Q)fHIg3x!Dfc@#ozeWVFN^&o
zo-v~AhQh(MC3k;LuFT@gEa=3}8T_j(=&a6ZtHLyG%ye-eD|ci##ebK@w^^y~^61o0
zW?%U}ixN_WvR-nrU=X~NV>&A6u(GiE!Yqzv;bh@vagbss3r}Gu$Rf<br^IU@a%AM2
z1Q&yM{4O`FBLaamf2W8!t|rn^iks;_5M^b=9xea)z~Z0CjEb!eXQdoIl*KQEa2AXW
zVSF*y^;}c);PU)8)wkctiGQU3QkvnhERIudlTEVtBa0L2(rMBXdsrw=sZ(x~{iz;g
z>YKkP@L$zhc9m&x&Sdd7sruT|XVq=zRLNKp8YO6&AcdUIqO^`OI{wQdrK6NCSGX7H
zQt9F_sdx46D;K<Fb!oCIuS=;_PRGSMxLZLFOwuzex3nw$Z=2E;byU*PLPtv-m38Fl
zsHda8jw(8;>T;s2t)rSQ?F`j*Ku3COW`6&?8ais~sHKBuhc{oAaG);=?-|V9pNZO~
zx>V2V=%}lM>w0QsTaU}Kfv#*RIxg3xGT%@~BOQ%(P_TC#ud!wH9et?AH&GpK#%`QU
zH`PIBn>91V6*`*h(w<NG#w}D<(md7CNk?ZLnvQ%Og?z1!0v)Y%wAIm0m*F9;b+pkj
zVoi!v`pi)6csCgva-}YLyuB(}>9sY(oH=y==%~vbZ5~(aa!q%Yjx#H@t0rq-PSCi!
z-9?vTzdK7ET~)oCD%m)CYvx)VJ#-Z5=&j?zT+mZTFCG7kkw$EGxW?u}f@SZ>)OEVF
zez4v$U-Z*atmAzhAL!_>V}Op^b=;w2ppNS)pLLAWF-XT?9iw!a9)YnBLv#$)F-*q|
zx(p7=@S_dH%A3W&s`BcMy4=Scp<_6oVq%Ij>3x@qk?PJDxj|D^@Fk;lj8Rv|s&<hl
z)@8Ku?3Iq`I%cTGo7D}Ib=<=4G5>>(N$f*f(39=4n?=2A<<`;^9aD8o)1?kTWsDJF
z=i7*x?Em5P938jmn5AR3E?uo|CHc*(M$6%}jRkbLnybs1Yd(RjD)V&EEWjXH8om~i
z@NU)?>Cz#M+X~!M;C9lTIu`4AM#r-{?qWah6c6ZlP?uBu-8$~kaj%a1RQr&{;(k){
zsWkbw^sUlW<{@3$<moW;xQ>T)Jfh>bzT#0GkLftjtTgZBB|gQ<6FQzG)m<%~BB*sR
z4vvi!1$<BOB<(pJ&+AyD<4qke=y;K&qGOqkmvp?W<24<N))p?&@rsV6Bx!cInPAJ!
zhts*&3t8bT%sLxc;Z<5P-_Wr_$4VW`)wA@_SY1!7QkPci;LSYcvn=`eTRPSfvkEEe
zbgb9$j*fTLhu&7-+P111Z{|~1d|HL8ODcF9bVN(Fn=%@e^GzhDy5c<@C5;3tAL`hw
z<9mhKk92HN7~e}ksg|AUbesCtc5>*M^umE+hYk`F>m-I<WVC8xw`$o#25cmF>0=$A
z==fAo>1R4VSC8*guiDRH-YiIFU+DN!$2WvLKU7zIMJ(%bYy0v$#NPH|@h#%I>SASg
z@vV;UbZncbeLP)sSuBt5`-l=9Ssl6#Lr1J5A<Za3;Zw?;O<Ou_9gdPbt`1LChP`t2
zu$$$M02%H0I4!3m&=FFaHI-9dMCKhQ1J9ez6l@_;{h))fnLp}MXFf>&I#!Kqx1V(B
zzsC$POjq~|NuBiL;dc**St0S;m~P{D9Y=^D6YESI)p3lSG2j?DuHz3KV-4J7;DnBo
zl%EEKfj@PeqKq|A)xcjmPV=>&rpg&OqvLNK=PB5AoF#&4OMA{gYJlem*t2PRIFFl|
z`d3HwUV=I&r;?O`iwu-DP|85^TQvp|GmBaoL(Vc~RXJlwF&jC3aAvvKKzRd~7^q-K
zpj9?d(Lf~wJ*KC+_RZs3{({pW-3WO#&yfCvtW+~l-9Tdlml=}NVc=2&bqv%nP}4x}
zhP+yav<cKU_=ns=?ndz`o^m><YoNY?1_tUGa>cPhMea1@OR9=Ss-)?XbsB6ZF43qD
zUv8iohx1Rmi6I?9IrgUPXH!|Z!a#EaEmQ|us**i9-bFC&Axq6bzJY5DTx+1fKq~_s
z4P0fQwShLQlonSSXlqEVyB)jQMzC`F>+0`KO|i~Nv%P^r10C4O24X>>v>ww|e6=Cv
zSQi6b4RlgZbyg)iObZyzDcuaTUz_5VI<>^^hBUU&NwtT8o(2XR7-FE8fg%IN2KpQ5
zZQwcs{R~N9t9pt)2Ko|Zy9y~t>;9W&g@LzMy_sSn$^nMlBe>p>Tl};U4K!rX)1fKa
zAl1S~dIdB3{ssfX4BTkQko=5+TEkOA4UAYN1M`QoVqml(?O-DfxdCx;#VVr=d{s(L
z)10j77c_>bIhkfKCd+XK#v6Fuz%m094BTwsJ_Gmj%?2hKm`%7Dk|QP=m}X$QfyoA@
z7&v&5sMbkLHSph|%B=U;EX|KI47r$^Y2b~iDW1;a+fJsPmNE`v4#8_+fq{hv=8^*G
ze0U~3kFcsEs!k})`g}uf1km=i$iVFe?lN#Uxud+e!@!*e7OOhlv+12OuvI=?)M&3b
zems4TfqM;UnxI(YDNPXEyMMsIg9ctO@S=f-3_NV$X*J$Q3~BLr+`tnC9yRcofhT*4
zA4NW0M$0hW7XAMX83OZ^0mdzI-e)=H4ec2N&l=p!t^S;W=MAX~ah_s;L%S^n1m;Ty
zURFd)*}idYiXB*D;1vT)70thD;57rJe4>)-CAomuq>scK29_JxVPGfmYha~;^#rnk
zRf@LP8q&J5+Q1q^Zfd_t{0<gxsosvAs<EZ#5*b;x&cOadm05Ymz`KfExA0pAHX8WA
zz=sAl8F<gY`@~?rV1`C&r&KbTUy%ZVdpDcOGN;lXsqzB5@s#Yg)xb6b+YM<q<Du_M
z(Gl_Ud3|;n*lplz1K$|fV_+}8Zs0Qlgm>~2!)2U4(fX-@eQY0@Dy$`j4AbtcBO1O^
z__-n>O5HChRjP|Gh?;-XG&0lG?JH8tk@T_&+5z&H8ih%LQ(k;$pu|Ad!1wBuEgxJg
z_mXr2h5|U(P4u;vYpV|nDef#os^7i19ZXIk>zU|n!l!_uyfRV8L_nyLiVU1K5E+Qc
zCjF`(rPws^gMnWNs9)0u$)N@g8DM06x8|vzND1sP{q2=w2K!HsXzsXC>HXEfVFSMz
z(y;Tpfg=XyZOxP#UVLV#m^)9LJ)d4RUL4~TVDKMaIH5Xxim#<WYb^d$C6#ch;!JbL
zEp?7!)my1Eq)&2ziLxfn8aSt*QOd+W3IgRPi2n@yYv8;({iV0~ZJIWi#(xvyw=|D^
zy9+KdQQAc9;i*ZBrFpQ!s8l%<7n`VJqN<7VrnGHVFi}xeE-^8@jkMENGSzfoBG1Is
z;Ua%~A&LL!Kp7N91-P1t>LzNKsA=MKYw0V<114xfIk2VEWV&0Jm_oN10=cG~l~#9c
zb$qH;*F-%N9Zg(iqP~d+CerMuiH0T`nG)1ZO*A&;YKsJXxrxh&pgnCF`89cnXhPgo
z6mPf7zjd5wX5tDH%}qHkv@p@ql-VbKN=Zj4x=Y<vK|HxNL;onvL~9dmOyrv=Fwx5V
z-)fP;8U>Z)L`k{S)<k<#in4Ylt|UzE7VYW8zNvth3Qcq{rPpYgjOemjqsP(JCOVn8
z)|4*OoCG_Y=w?bITNmDWGR>o_iTke-YwnbGr0(jq*O>TM<Z}nGhbdDXvco-9w|jAD
z`T5*myUs)(6Zi2!6MaqeGcnG@coW4Y`kNSKVzh|?CI*@qYGRm)>rD(&Z@z(;>L3Q2
z7{aU17tW`$)J!xzk{&!+WYi6poKN>$ByKe2x@LrG89zET+{Bh$SF?qwS4NUB8p~};
z^7t52s^3(2DE!BoxQVChB=dgRqQe9eH=CGcVz!A}OiVPTXq~1;F^O1KmC34Xb0W<V
zag0+5b1k35Fx|uqc6(NeJEtY*(lhzmw79OfxYfiQ6N^mTZsIl*b4|=QvA_hk=jNF*
zDd?K-t5elK@<~B$<!;24_(Gyj1)<zw;!YEHnYi0T;m|xz`aBks!q26-thk2&8IZcy
zl!go1%IK!cFdxnl514q+#A_yAC!L#k*u>Msqauk%6o?)-rSA8r2_|xUjEJD<zFj<F
z%Iq9Zns`c8md+f+-6gITpEdEEi6!Kb#^QMsFPM0VKs%Oxk-!<1;?5vrPPr|}UBZ`%
z#Jk0}I}1fy@rsG1ru53I-A=r!DwJUK&|7BW4HK(OtR_z}{!3w&Z{vQ)3R5a4D@naI
z1+z%8k(9|4rfW>RX)@xk`ddVeN`-xIU9p~6Hu0#1$1J>K;$4!Qg(em@nAm9IPZOt1
zY%=kliL42o9B1MK6Q7v))WnA-Hk;UEg4)YRBoY%lOzbqV)x`6i#WoY$O_UlV^KvuQ
zVFm7fwiaw}H9T*ZdSo|;Hd13FkEfIy;a(FTlZB6_`4qFT?lZC9#8)Q1CIPn=pPBfA
zQ0*&U^|=X_^gR5Ml)o=;)oj5Oi{F?yVB$Ly-xC7rPTov6MIOAF@BEBD=e0zMi66HY
zuqTEIlejbSn+eN=Z6Y!en{Z6Hl=&n))lX+_s_cR4p8Dd>>qJ2MT%F?Mp((RFvclo>
z{fUVmO#EcxXVu$-{E7*Vy{Nrl%13^kA3bE^7jm(QUloYhXZG-gQSuV+{N2P66UR-t
zW;seRvN~lc&5-vTQ|~0W{xETZ_?j-0Ih<689=Jq1JH7W`6sqJ+3uP=BxN*kBe-zXs
z#owF)C}S1T{zGy-mF7k{cVPcDah_-`Cpw-_Z(UkQcert#Man`cOFngxB^SkeS_)EN
zSqtSX)UZ&~!o|F5A<se;OX|aySd!8zs(J+rZ*I-7v66+#s-3-Rf2UN-t6IwPV@byz
z@@X{-+$^9nL#+T7TBhZWd@T#LE!4Nrz`~`LTp-l7<n+x-9SaMtlog)Vv%m?9aq$f;
zsoT&mv9YQ&;)5Hd>Uf!j3r0fj1vItLjHeccSh&JMa|<2WRSPZnQ44J>w6&17q=ctF
zTwp<1(9~(E5qWIPw`2qym4OYDwN@5dTNs-W!)8j&xt%35YBI*T(2|nvN>#SEP+^Mr
z>lV?$lJg+rNe|9WU2UP0CFNv43!N==vCz{(FAH5QbhFUi!ZnuMp5s(Ym75i+h1V)@
z^<Zz6`zu`$Xji0!EV9tYlJi$@3)flL_iy^x#=`9>aUscGU)9p3p(wV{-;(L^2Uxh?
zl2*HcmRv7z?a9QRJRM|V>83(fZm^KCFw4Sh3qvgovv8AzaS8(b%8eF=TXLEkVPTYo
z(U#nT9BD}@M+Jsc+ZX~w-N4E2i?-t7l^TPp##@+RVX}oO7H+n1izQ9FlN3Vl{;<kK
zRUtNqFOsfwwC+w-ls27@)D?d-SCWNKM`@(G85U+z3Vm9@J~P;jS8ug2hkdhfr+VZz
zg6>p$p@q2?=2@6evi}SV)JS>r?R^FFqsn)#))rZ~Z))mx3k`3Po}3)fVzyYgpO09$
z+rm8-s8ru;Nn<-rkwgJ23uqm(@F0gURC~n2Ll&4bfoTvPCUP6g{W6x+yWU=xqH*AH
z3r|=$YvG)QCoMc>VW)*%7M`~73?H<xjs#=jISb1yykX&a3oj^CzG~q`Uac;cSa`+4
zOBP;Mr#rT0$Ucm2AW2W|pIWMjoKY$-b`!6ufxoUw>f3L%63Z2Vt+KG%0y71zus}^_
zrG==jj6kPFXbpK&(PZi_c}n7Zi+EokO3q3<%z6u(EWAflata`C66_W>s{84C$utr4
z#$>>+J6%TQ@Y(k*d}v{_CD*wh@U|H#Rz4!pX0)vqwprMs5X1n4zQ?47v)z)a&JGKw
zkECg&tvNw^@<e*Kg*_Gmj?2PcK1+#V;X4bTkO26&g)dbH_Nk$LW?{cN9XwnxT;g-p
zNS><DHlNt}N<s2~g|97q!y!C4h{?~%{v^Ei!(|GB?=6%NxfU#nATk9lz7`D9=Zw@P
zn!JrjWZ9To07~XK7F?3?lcgzYJd(<mLZ4r><f4yS0sUSkepJ9fCoUc%3o#`UshaYq
zmPkl`7JjnugJPnC1W^a+{zw0upA}ORdWT4I6Xmuk*NOF8r4C#8jdI4q3Ca*lZdD(#
za8y<H3{TBmmpW$QxEgz(OGW45Qipu}h+JcywD6~eQ#^(-$i4bs1h0iN?4$)c2~&+}
zHdPWoV_Po7EHi-a9}E9lxY|Z18|N+jXQ8f*dNxuvO4+Dnqp~fR^B37DW23C9m$vDt
zUY(6pY0B9sZ{rdh7u(1V&f|Es>qG?`v})2rtfH#y=_`$#mu5tsjVd;3*r;ivsx4WS
zI(c;))l{8Z_K#mDV1wz`DxXf5eX+2XjoP+c_1CebyD5dtrMBD_q#Dfi-Af}<T>jU$
z(ZGhVq1k9?qmhlvZ8Wjb*p?i`nTX!Pm)UYk;?cCBXlkRGjh4La4snHz<~CZWuWwr*
zK2LRJBG7`nM6fl(zTNSBVOrfr;~|AxzKymv+Sw?u(aM&)joiC$ZKDlOtINeEZGFrR
zccqQ?HaghoXrs`UqO#!46d$MKJuQKouPV*85A6U~+0qU`#C5jO#l|ojH`?fGqnnLB
zHu~D=&R*Fl;>&A_YuRVoa7v4w9BeJogNDH^ok*O$Y&qf5LuS}*qPH#0HP_joJ(E+$
z@1sRO0^i0U8-s0`e7?Vp0X7EOQc^wJKXtv02R0TA8zFO~bLqi!^qjed*q|{XW8(%}
zk`TK`fk4B;P+Lyc=cj1HZH%xn&c=8fBW;YbaT5o7GR?rZ(Kg1A4Cs<EQt}tAD`Pp9
z4+>b}c(+Zj!r60zEvKG|wzR$6%nsYqg^XcV<e*75Cfk^zTBfor5RAR0aHg|8O(-*L
z%p~w#T<Kz#joJLJgK-XSC3)C5V&kZd+ic9W@xF}@Y|OJU-^TMcUa+yi#zGs9*m%^&
zA{)2cxX;G@Htw)-r;WR8+->6t26J&BM=BGZjfRN(r}e(a#=Y#upXEqJG~iI`GN6oV
z)dMyjwDB;%J6v)r@%WGpg6`KEf(zU2C(<-lJZ9r@8&BDIns2tzZ?G8OU)rqr@+bM-
z=Hl2S?HOCz44+dJ@~jQ+)bsSNDO%5Iay$D)8!y>dZDWm%mu)QJ4K|k9GN<t?>@#!z
ztNK!MC1<X?1tV==<Jh_Ky-~bjV>#`{r_-zWt!u;z8!K(BWkPcPw&QY{iJF&~qjlbz
z)SDy*8}Hb7mp71K_#y6t{4SRU>utG=ecQ&@H;KDGEoj@J|5Yu;1_HT*oGUl+%?zI>
zg)2E$vZcy<Hn^G2Mec_-Hj~|Kd`IZn*kWUsjoqX`TgtKRiW3=dw2eqvUdTWsCMnus
zV<!>Ry)^4(-_Z8h*lS}yNrhBr;}aX7k}sNw<KI^24n8Bt$xUR>eKv5LO#bt^jW5_w
zTkceTX-oaky;OWfvM(=MF|74sL5cm1jRQ6q<XdO9+{EM#=Jz&AY<M<&CDXDtEL&O*
zbsL5alX7pqc%iv?`&gPK=Pa9#lcKif5y<@8f@_0G;U29jay9}RKic?7iILDoY$LG|
zsngv{3V+xoorvE0w)zjG6I*5rWKdi2bm_YDvyDSG4%_%mk-;xE=pynfd2pf}CfD6x
zv=zNoGIlNsekUB%e~ymXIBp~DKsflr#t9o09aM5~(#D@Q{-fx2aEdHu<E)KyigQof
z_}j*d*9iKcp0ROqYlgnr-L^@E_8&@{>Ed5oYR(J?BSy}vx;))jSjv$L$ubVgI#S8J
z$dM@sN;|lGqTIVL=ip)o6&#sX`pkdn@{V*zxkQyrbTjoH!LrocDoin5*+HIz1`ZlJ
zsN$figW3)*bx_Sgbq6&a`E^PyI8p(w!OtnZmnA2WTIwoqIGLYc$C0}a>`6Tbbsb5B
zE5>Nl##g_Us_)>omkMdOY2=`>gXXHk)Zs64(8NJg_SunH6sWhek#A_GZn(n1<ZYdp
zZj=v(`}?+Vq?X=Nl|9?!(@3Q`$am1&!F3J_9JJy~9CY9fjYVq*?Ns0B1K-Ax60$8Z
zGD2hJN=Htb6cO!JrQxljql2p)T;t$czKR)R9CUWj#X%=^I_#ywKd+R2AYBOo2i+Z%
z9;%IBUfA_Dt!a0`?c=UT(mm9jyr-9{^mK6Hk)r=^XX2ec4*EJ6=HNyL{TviKxZc4a
zM=qWEI~d?d(Q#q*L{cBfzMV)jbIxE#nm5VUHxN4`#1P6=?p}2e8MYI2GX=MV&d$*u
zULYe?hdUVK$X)mm4n{f{#c`DuqgA<OZ{eExV*d6*O1!az)hPP%RVQ_gcQC<0iGwU@
z!@(^MUUsm=!9)j>9Ng#NeqzDF6e85YoeritnC4&(5$a&NgBg6VPinR!bBWJ%FiRn>
z(<Ks##2p(cqHlG;btSE%a~=8jlX(v2J5nB!PZu~?=wOk9+Z~L4p>Q*#AKI@CWc)kV
zn9K-qK&khXihSW>g2=($4(@T#x?O3eqP>??x-G-?6tfaFxkNnR;6VqEIdTW>Aw?&T
zDDXZ^Y<3rqOcM_eND)VmI_NoCRvvfogo7s?Jmuh72hR~N{lwGcBU+6d{C<b%-m%qz
zy#>sd^*kFLyy)O12i%Fcuy^qD7@0KVidVJUr)q3`#lcbsTO4e4@T!B?9ISWnwu9Fl
zEF;#=rQdS!hJ)n}RykPB_bd`C9IPb8s=w+q>mr!ojv*my930=0_a-SswbNY2t#BI3
zNc?Nnpw_YfZStw!zvJLt((O3$zJm>p^k&(l%8lw-iV>!SW%-^X9X4oK`+&6JNNeY2
z5&)fl*uBHjL+{1Ka&u~%gY6FX^9Bby6x{ZZTvKAFgI$V@ck{Kklp)+m|I8n?mu%(W
z69=C<*hf(_O?ofW<s-c<!#a~v65wa3{Ig4nw!d)jB?+dx_)5L)YsDk?UoR8BRs17;
zz`?g1%c=Bts{Ee3)<jyBznLqe4s{0xKjEUH3)6w+;5Q=3f$hL?5RlU^P?Q7Tk@^^?
zGtZH^h3O8;G3Fd>T9@L$BL}g<#V-yL2R}IY(ZNp+4k~$7RsF1r{x;k;CA5EAo%)&b
z)4_WaG`fXQkzo0&gTn;lv=ryE3kLZk4vsqbhd_34jJR{8Ddse#jU$}_PI8zIPEcqJ
z%e(fsbm6VVr^rFWw7<x1MS>EKQ2^RIh5zM=GY<ZCaF*n8ht$c>IbbqvZi3Ue)T_TZ
z@8CZNWn8JGk$F=tO1si)u9S<5Tscj2Zzm7pt7^X#7ye~klyh;hD^XnD#U(BnQA-my
zeH~k@*64=E_DU`)ySU87<u3AERB=(qMO_zFT~y<1|4G+$<r=EGEA1gQTu>W?E7d}(
ze{8AaRikfVEf=+2T<T);H0|{>=`Y4g12v&n&y`9=Lszn1eHRT>g`#QBq(Qve$VFpU
z^67iGXs_R*HF43@MH?4wT{Ls0By8cLrHd<EG<PLDE6+$hyQiQ^wp!YSaFOq#z{T9@
zDLT);Js?kW!3?N;IeXhm^|Q4r_xQ-0WL2uEL>xOznL`)K_AUxJOb_)uba2tp#Tzb`
zySU25)h?#GnC7CBi_R|kyBNT3yXfkor;A>yC*62wX>lz}{tiZ!*SMJTLl>TMS>1yV
z-XwmUkt$N7xXzVR52FQpyWrZ8l|Dok5l1}UBZ^(gycFG36q#|3Hobu^u6Hrg#V8kp
zTnu(G)Wt9tLtMElM;UU1E4_0c7*#FfN|7>kilBCSqr&nCRStKhi!9$sgAW}tdoTsG
zi!m;4c5#b~v963p8K>?f5#FRucXb!zT}*K0h8LacNf^{{cJs#st~3Bnb}@;E+E;q`
zHEoLO$%Gn$zQNO7%phI4c$A}~^6%nK7mHoYX5SReEL0zw<Ki|V%ay4u*f$P#o{RY|
z77%Vzdea4cK#L9+f>XFiU*zI;zO7CE9Rywf6q$~``USUXce%J*z3qM%_qe#1kDpE7
z=VIxIJg#v%4Ui=h7?QLeaPgpm(nG3z*v0r8WN+z?&N<~V7mvGm-o*>V<|IL2K0#6;
z&|Ez2N>%4M7tgp-(|FdEUSV7k^6SAcF{OgE?J)G_MHer*a{hYN#mlbzGs`QAwmC^H
zaq;1%0y^F-b)~x_Lpey3ukk(VRm;?CuN;wjwT2WgD_pE}anQw&E>^i%?P5Qv!o?aF
zZ}L54DBka4t&0sVHj*A1iFJg4E1fRr61?68bGa~T<{cOBl556jTx<@WE0>&`T)gK>
z_mvOWPgnlFfh!9NWNuRP_c1grPJS!(kt-FC9WHjd*y3WVi*2r)LAI-s>q^pX!-dj$
zW0#BFM7oPlUF>nOS7G5}eto*iY;c8il_$;6J^t|9)#!Dz&y^7wjK<}*{^ta;3)_W5
zfVlXIEbpSk#n-M3Litv`>KhjaTp5|Nt%&~t5e#G|YkcQQ69M1JEuJi2NU`ricje-g
z4gd^PY5Hz8^0lSJ5!sxg$#vnmhzW|x!YBC=n`E?$1S2K_SL&`847QAei&T5BJaPFP
zEg?MHh#yo*e|YNuKe_mseBq&-heIxYadFzk8G_5jVHZbT9CPuT>iO@gq{lMF=@C_*
z^N$3@aTkBMIO*a~_Mt_J0aho-T-Bu?GQE_`Jl_A5i$%5i|3xz9ls!Y-v8#|*|8{ZK
z#eW2aCx!Mo7yl|I`bUBKz50SP^?4VJ=AbC!{#q#y7g2(pOqcdRcczDCr?{CO>?~kQ
z8Bco7Upqm&*h6^_@KD3UB_1kxGGv2-y`qOo9;$h$?xC`WJP%boROPWo>$xpMV0N0T
z(dB>;reTUGpqmis>iuU19Uhq?<=6CZsRvpnrwkIcJSm@Rdtklid}+z4<6*n<v8nH&
zfrke?Jm{gJhejT*_b|vqV-J^k=;oojhs!-Q@sRJKz(Z3{&Tf=BEj%>yaD|8I#d&Pu
z(cF{SOXyD7(nH#V@c#G5K+Qv!ChbVBRGet0YvrM}htBlWI-PFgp)KL#p`(X(?5&6P
z9tsHrm8_C}hSZ3tSuq}#2b~YE@^H0>PU_8Vc66Y#2LrXZWVoP)b@Ak`*=ub?S5Iyd
zaRcZY57&C=<Dsu7XFAG?9v*sn=;cXDD^f@#)p6<6+rxEy`O);+)}o-PXna21&y)FH
z2B>?uzh6u=O%VM({4rjzLhKJzm#$k>ZLo(S9%g!&<>3Yo84u$<Oz<$&!!S=SWNz|s
zqle)hMtK-bq8*kR;bA0^-m)~Ea;aO=5s3aj#M&4SW7)TN3f~_fPrtrhEFL1pc~a>*
zIy=SkW?uC$&6CspL{Iu|O(t4BOj30U1gflTWEdu)H<bg=Xw6Q`_5O7Ak{O<i$!d0w
znC;<K4|jOD)59E3GV(%CPMWuQnCoGlhxr~B5XCbF5ja;ZE2Lq8@lC8#)25+dk%!v}
z*mWuTGjmGix^=N9{e|xJaF>U>6|C;@P;qB9!ivrhEIAe4=iz>SS4CKGC;A}|4|~|`
z;Uf=^czD#qs~%qS@R*0k$uAzBSJ0yze!|0(o)iL4d3c6A#S}Dc#M2(=)JlQytZEsv
zEyI6ayr7Wsvg!b7{zXOkFA?&0ix$Tu<1g{>iif2ho@y+9Zz`P%XfAl&!!i$Vk$yb9
z;bFOg)f$edi&)`dm50?N^(kT{xnQDpLd$1LJ?eFQ+jonrQ2~Ba-A{LmbspAx*x+F!
zhtN(&hrR9L9ZyF4ayRN-MRiP^OL50g#7&9?KJf6Khxa`!+?Ju{N%f5G1RttP%jb$&
z%d{;XwtD#9Ly3oNWLpnkd-z5nYlnxu9zOQ4)59(gyIHR;_NZ=?2D}j(-PPFJPdt1|
zwj~P?p_9cvvV1MEpOB;&sVy?q<lip7AXi=_zVz^wCvBLl^Kq8kFJoDzQ2sUYfWqCk
zidyJv_Z@+JCe2FLgYF^n5R;dy3B!Z!!SP`JKdvo)_f)#tibB_eN7D5WurfvXgw<q?
zI`*W4U08;E&$Lw0p~~Ed`9|b3WFztLgNL6f<OxGYfhk1)NE%*~8a^WRlRBl@!5X9e
zqF(i@dM(wbG5b<a%@&6}sY)HG+Wm-!qaKPw^bc{&!*LHU=I~Mue|R`SsQTFM<D`c_
z$(}yO_&DX^FUmk4m-#sD;f#lxK5F^++rwFo+Q%h6&UyI9L&`@fAOCuCQ~tb%|0sFd
zi+02FD2R%!YTH*!FGR|si+q&!QO1`7>Z!h>tdDX&F81Zk+~)pvq{a<v?$Ps<X}T-;
za&oEcBhN=gUuJcv<jbfKDg%t+qNJ_jqq-0HsOqDdF9kAFvV8M*n(41uvZaP<WSyz7
zYx}s=M_nKFeAMwJ*tsmCYbATaU3kW=^IMEGsqdqKFZGRvJ{tL8qWHEdvpp-9`)J~$
zyN_#pH1*NU$CW<X`?$hKb07IW3VgKi(bAWUDSV_=|JyIBMzKTF2NhjSU82d0=C4-1
zWX3kWWarkZ&OhLgy4w0^$6-#;Mh}!pt4LR5{6ZfceO%>BWv_!TmA%$oOJD7ylaH>x
zlq6KnI}-)F3cL97Uqu`XkG0z}-PBbYgehmP<s~22`xxY-r;lDf`ucMJg66LxAJ_SE
zxx{*JA9Nq>aK0-o27P=`fuZ%FpO0c+2F3LEF~G+_9}nIk7#hQaD`;wuMJoyiE4XER
z3?*<Tiy^AKL6zrk>d0XZ^Kqk(;cCb;`sI!AF;dk>`I3XUL&3k8b$hAss~v@`kM(hr
zkGp-`LxQO)XMu4(#`~Dy<7OW-eaupDxW&h0A5#=$CX!-@iAg@h&ce<!B;2MFgFa@c
zJEy6uY~(*3YPCu|b*M7yvk4y`^L;EJsW5cK$6SRqDvGxeP?I&9t>&pqv|O=qp^rsA
z?)0(P$L&78SgqZmu2REf*cY+D`&sf%t|0FE|4aA!xX;HcK9>5p-^T+!Ui9%2Vd&!_
zA5Z#t%9s075Bqr3$74RarNkpX;#)Pkem(AkA>mJ`0XF}*kbS0$HCLlg`*_BeTLv80
zvp$~l@w|^0IL78uTc9#bWq=12gEsT}u!S`FvVt~EcI2-mWOn6(@~V&5e7xi1T|&vn
zG9PPvyy@c&AIp8L@-h0x)C#_w5kTd|O45Hl8S%#`Z0=F6_N92IB&Uh>EnohEVV#fl
zzWk^BS|1<Wrjd8pICo^Xw-s$L$2B=?gO828r?%M4p%Fyo#d|*9_odeK**8_V4Eeyv
zheZ1EG`+LRHy^}|7K}#WhQdcaw)oh}QPb=A`9j(#XtmhkV<)*Uhk_h-`Pl8_EQOMf
zJwEpOhzLd>AN%;kN7je#<5M5|e0=TW8z1}mbst}mqZ#%~`Y#Y)`1q0>{i<|f<^CoY
z>D=O^ZrPM>nL|?t2tb91?@4t>(?rU5>XiQEBwC`TgaVDZQ;wt!Us{!IAC7vtsY*+g
z^}7j|^2bL=@l{^<K5}ZXfiI^Xj+6_Ne^1IBL9AS`-XuPL@Nv|~F^=8GkG@nIfA#Sb
zS=GlOB~@Tn>-FTI8aJkxLV>vch2n0G{43&NAHVT_U+y1G*;H_Z0J&OxwziN;&K2{;
zarX02mp@51KK}4=g3_;+IH`Dc^XwG4_(Uza3j50k9f{BQ()Z&uMZuM_@o&PgiOe2A
zo$VhAe@+cK)Xw3&kN-F|<WM1pR1T$ba`jp^Cs&0R<v;^k=^PTerIBAwrOV{N9Pg}@
z%i-djL`3-<mfTa7DJ5AyxTRCYoLs=><xnMuN;y={$(8S~KUQP@C045DP%VcVIcW^1
z_^O_hNJI_<0&&Ou`P{0mnF9^uG<}ae-1pKP>f~^F4oz~Xn*){727L1fQ7;Gnnt={-
z^>Z?EQ2NW|&?tw-IefiPT$aP&n+2`e?+laDa@i!gu4$S>^Bh{_q@!K49B4nhg8kpw
zmaa|gL(3d9p+jST=4$C2*bUlUd(DuO*M+iG4y|*Tl*8m4+T_qShrT)V%b{HkSLV>2
zugb}Jq<s!o<#2Tlg#;sg9&+fI!@g~q??#9^gN8I4DfP)tIdsXPYYv@raxSRbCZEQZ
zZaI8;V~S}IqWOc`%ofdti)(XIlc$c_D~BFAsf<yN?U}>hBgN+@yA|con_$d=>n1Ls
z`sBcJ+8B*Xcx$#O&Y^z}!}(MW19BLc!%zkD>xtGJ-tHi7Ac%5u1u^9R-<;b}K*>OD
zIl~eCp5{RpkzqNho86d$$;?9g3z-gRWDcWLw<qK<nj@Vh#uB7CjLBhUjVd2B5DR;X
zcg~a@m&5oRIxvsO0_jvNO`2DUn>q0A;+7mH=71hDPP6V%IT=mKVQLN!<nUk)({h-e
z!`vL^<uD`nzdr@c;mdQF#hxEd&sOEFgs`&tFl3uHB|`qT9B$ZOg_Zd^EXd)m9PTDe
za#+OP=8HRXxIHJQV;*<#hO=oJx+#rWl0p{e@X*07{B;XG6Yk03gZ`=ea`G1v_wvq8
zf<6iN6OTtKPy4kmfy_n6LpeO2!xK3?oWmnIJereQ0m=I@a+7j77^A5D$sC?iL`&Pw
z(>Xko!}B>AtHM4!o0D3>b2%IzBI;c#=*_~;@Sj94kQb_p7bj~kldTA-0Fwf|lEcy*
z{v&$^cr}ODNGdse#W&=zjO@k^=kP`j%X4^>V^lz1k;5u}>s)#ziKmKS-Wyt|=vlft
z2d14_!_JJ=n7M8(KbONs#S}D+uFv5e5`P!*Hl;yrahTb+PNd(>VFO9%GPz>CkZ5s}
zV%zs}(q=-QWy07GbJ(22PKtCQ{bc&19JY}=E)rYRDO<MYz+bBI-)h@Qmi=Y)+zz5R
zBf^v2=+?D6hrOh<9QKgE>WZbmROi;`C#t?Lhy6L}UHK`y@o52LrasHz^BhW6rM}3?
z{O9ys?e$3kBZBz|1>M&<e3L_zL!83_;)SG}gQdE`pDli;DC&DYPUgx%C+KPjLm}mY
z{>F`3#(GnqA;sD`c!b7e;gG3I3zs7rEcQ>*D3JXeaybM%wq?Scw7@X>fJ!4P{1sP{
z!w)(9nZv0Z4(9M<4o7o1mcvg3J{dNL-*PyV!!HyO`T4&p>Bsq+?hs$J%%{cj<yA7D
z((gIE!2iE1sZwdCppRd{hXu!}{O9B!3{R>Nogm(erG1h%nUmWxV^mDaUj$1I|0-%f
zlaurH*&NQ1A7`ch=6GM#7(L2g$<P48sM3Fk%E4mE#|4z4=Sf$?QyWT&QUNXs&?!LY
z0Hp(z3D77&;{as?lnYQLK-EBIj=DII3{@#W`2d#$@-HwXunGYx26DG+QFSSnnPa4~
zx-CzYwYF#YNVNdf1JnsnHvj_E2v93P?EnW?N=qYS$7%-B>iGNOR+k3os;naU3yP@)
zo!eMYFOYJzK>)5A>Ia~IAb$f*IeA@A(J(+!CDHrk!pj0&9-vKtwgH+1a*DYkK=S}i
zRUeuKlJ%(1(EQsXKuf+PfELJks*!T8O9$YlGf(pa6a;7$pmiW4N~j{1tkGB+O$DuC
z7k(_;F2I$6+|0U)pGb-Jft+MJ1}F^BA&|Q#GgEShof|030mbDlKYg|8My7k|E*xEe
zK>-E_=oX-RfIfUAz%>D`4bYn-og{kjhDM@Getu8hFimWnnd-%15+g$dcU?cDR&y+U
zT_6MND76T{ejM+AX?DJUfZ_oBr(5^9Tv5}~0|E>rR40q;1GHBO`lvbZ$96*k+z?=N
zfH46w0fq*0`W_KTK|L(MjeOf&jrBdW>lTRN0hmOBTtAXnyF&1<zN3Qw8G$K1#s)I<
zazcQc*q;CwvOtrP#|NNe|G-ZRZVqq@KhaEj3VpG(D$B_MrUbA9I02>xm=<7lfHeW8
z2bdAyp#TpDm>FPJfJFgr4=_8xtpVnfK9$U$6JTy2jsLd=GNUgK#*fSkuxVl$&J<5<
zC|D54BuEPbxtT~!)f_7m0o@Vcz5w?JxHG`w0CxqrJHR~w?hWLg6jhP!uW3yC&y^Hy
zmGq#aVo6^qF618w<OKAfDqmSBQTa%KM*}ROhz{^rfX4$o7vT9oGTjpao(%9*Aob+V
zZAw$lJRRVf0MC-Bwr4nB@L)y-mNVK&E#(D;?w10*7)V`|>5BtqTbd+Z4p3=@#!S(4
z#$Fm=8A&ma+W4yhULz$FBXjytiDfJ&^;rJ7a(RFi0akKo{0Za9^zkpMQP)~U@cx~q
zF2_yMH%Wd0z6$VlfVBbE1=t#38@YIxwm!f{LXQIs@J@ht18fLnd=P~py=&-E!^5~u
zyhkDlu$i<G-~$DX&-VBIke`?;_W`*ZIJ%YCqS^_r5z|xry#ifawg=b|U~hnr135A6
z3_yRs-K3V@VwY-R*2g^*9T!RCxx*}QB%1*H2~75LXf>LP_XSeb=Rq`)EI%j20(?n0
z_Z0ni7u>L`fSNxK(&ymX;u}IKKndkifV|Rzl>cpj?*geXAMYklvm7$L;&0Q;K*qx8
z0UG|?#UO%yPp_XTvj<pY;ge}*jBx{alu;pShwuaB0-PbK1PCZJNb{sIQtat;L<vSZ
z3=juM2*597<Hx7cKPYBlIN?tLehzRrz;6K#1^9)s^rM1b`N)y<g~^eBCS?neNPz!N
zAz5A=Aqo~tcP7?987*U4j|VtG0Ttj6^1``v?!zhzN0lbe{u$se3f0LyPw{jAr6~mJ
z70PA!X%cpQ`K$M{0nSl4ho}_dAEK4=JVdz==ZTSwmI_fSlnUp6O2F=4RY=Fhi$atR
zQ6`idfBf|=7t2H_rC-&l(sF)ri1HyW2_=PdLSajV5ETk#)*71AnWli<s~n<w2!zNB
zQ6)sxP_kjg@mjSIWmU=ohG%jOMS`ypqGl-fBAHc~Ub1x9SUW6rX^1)@(ji2Mx*_U?
zxI9FYP!7C)h(@7wjcXA8PZ~4~!9UBldAYE0DCdaFR7oq%^qHb*D03Y&3vop##VONq
zH|Lvs%avD)P-48%OevIFhG5=8PPJNy{18`#xH?2Zh*lxmhG-YUtku7DDF1}gCd9tg
zDY|BH!a6@7b!CY5Av%QU7~;C^8Lki+9$pxNOG1W<b7tpG$6tf;NSU2NbPjP%h-*W1
z38g&gruxZBS614JJLdFZ=evhsx4Bg55uzvG8KO^!ULlG?^bV!Z8`FqgNSM!h=bHrc
z=a1=Jx^IYnp)`z88=+$!oo2ZQG$6!4B0Was7}s<798`o(5eA1C5@K(Nk3-xLB11TY
zcrL`y5W_;u2r)CnjUk4I7#CtZflyP72r(*@6U0d3y}l?9QSYO?(ILi!7|ZXf{gj)C
ztagGr2D1k7FLe}>6VxM<LfjnUmJky|seV%pIDTVl_Pag#H_yo-ri7RpVj4%y8z634
zDDrL+VuHpxeZ|LY&&&!jJH&k<?kDy`%;8HyEDUiQiEyMi(p}6`V4TaI+@>*6*!)l~
zx|d!rf9SR-#O)#O4slP2J3`zUVsVJONB~9u`yB?|fq2kOh~(F}u2`V{nn6#YdqeP-
zF}&@85D$_I)EFNM@o<R8LOdSgkr0$ikA`xVr2P5pF2T53R!GlJ@LPw|PpXmzIwqnd
zRX<I3C@&bp^-KtcZZXmN^C4a!8H9Kz#ET(b3b8uG8uC<#B_ZAju{^{pA(kp4f1P8`
z7q5nLwenhsx!W^#f6?x0$v&jsWg)7S5-SIZ6`|B{R)%s_LO9bsfR$Atnl=>g+%1(Q
zE{ESFv;3KUE5usT%wVyODA-i6UX|1<eyc523nKd65Fe0dLu?4;pKv#Z*c9SDB9y#P
zrTf=At5NoHuH+O+tK(+Efe;I&{Miy>Yls~oc81udz_>lcPXmfCxL~o|d7B_2R*Xmy
z=DQT*GbotA*`q+j|B`$X;#10>2xTJd3$Z`M4<QZ`1tC7Cqza)E<D}kG>90e4Ls6gx
z!m)fsHlHt!P8J73xmEpLC|5vS9ef+g?B%R{AEG3b(MD|N!EHf<!=Y>^Oq8s%6hfU4
zHakZD;adH<%;fJO+z?(UjRTxzSO%f=I*UTYA$H}7kW76pO$Sk$!V)Fus**LP3yQlR
zIrb1ILYxfobBIH<=c{4<65>}9(#+Hm(quDnIK*$HTP2!!+P_FVzD!&9N1CRyqoGV9
zy?w42e3dvJ;*U`N>7I5=rjMfm^Un~cLY$*u=NLnr4slk=mNOi}LpS_QAy231j|!gL
zo?$A{sinmBVO99lzid}Tl8U76%6|m>7fO|tp1PAB8B{95MG?3xqJF~7>j`TL%SI>{
zp<#qZ5iX8UK0=iURU@fY5{Z{Ys1TuIB!6*OIZ{i5NXj>9V!cA-sTSIMY3Z#Np?ZYc
z5iX5@NSab<*r};1H6j_{Z@r<hrB)<!^)zdnPp6|g5%v^{`Vs0zs253p60Z8`UC$Kv
z4I-&CFeS@Rr9|ThmqpAm2aTUl;^^`SO(Ha9Csj*}2v<ZhB%flZc?1UIlT+x0MI&v?
z2<Zq^Z^oWYQ`;ev=0_-q(2n;<as#4Ogf@{hH??Lbi^Sn+GCv_t+eX;FNUR^BwU1C3
zN!IHap+f}vPIG8WMx^LU&CG9CMKYY3!+)lg=p3O-gr_4s6QOH_ZV@I&m=d8op%>xC
z2*V>>8=*&p{t*U5=ov{~?j7MezP7aJ6`@E~sQmM^4<RsE^dr9hN%!S@HWf50Ef^iZ
z)8YusyVY@HA=hgIBMgafLxk%i3{n{XxL+P4g9b++##za*{Z=tFl4kk(>L)wH_?5{T
zE%1!B84+P5As=CUgi#70lr7wz9!)St7#m3~;wDv6!n8P+eq*vMClFSVoUeKHmIxCg
zOp2tV5r5J6#LU#5Yf7_{H!Ib)U*6OR(<01^Fh9cd2s6}h=Bjcg-=He9R5@FfTvLo*
zB3H_DBHX50_@{54@~FQiwIISmekj5t5f(+bonwq}e}p?C+!^7n2zL`}%9ntET^wQd
zBvEmI%v^f<>uUEzxHpnXEV&lo--~Doq$GSG!h;-Lby2XT3YDveBAE)C2Mr^S5|0_}
z3HJG7DPA6nWRTtC5jd4F-jlQWlaW+No{B(#(5w8}2+u|MI>I**o{#WCgm)usi11>B
zmm;i)u#zt)37t&85@9K6pq5xdL>#C>Y4d7?*CM>3n2xIK>ycDwmyyV4NVS%cbn{#1
zQ&2BgH?XDMmHDg4dJ)z}SRG+aB-c1^lG5tQ!O}&F`vU6-7Vbdt6D`G``}?ksz}3gh
z9^xIcdH-UP?ui?<jS)6Q*iAMhWFovDVH*L+I|-9h>CF*7BHd0C9};(`)0@i*P6t~e
zY>mJQmr<N12uwPGkid3C*cr(j$o$PQf1tpYT@l`yGKdykPDy(sd`f{&QS*2D;|QNb
za<RjMzI^*5sfd0~U`F^%)fu)!3G*cZawPrWtJ+r_X=AxIr|!zXtR5iOL^v7Y&j{b~
zJrRD0a4<qiglq(tG#o)Euch<3!nMfz5lnI=wcJtS+`_>$PTCP1b%WJS%$X;%>G~0J
z5uyljgn(S!U98!j2_t+pObgnI`p2a=RHE8%$$>trn{V&KZMYvJ{1oB$2uBEz2!|s4
z8c9u<kN-jx(@W~O%sujahgOFp{1!<+a9*N~lpj4xXrE92q275c!g2K=xAVA>$2YJ%
zp>AO1RD{3C2r){>I89-7B7HW(xd>;7^awOKkYQ&{lmhCX2>%iV5mGVEE5X=sMYRj-
zyTRop7Rp{;del5oDwcV)SfLyv3zvyeHb%KvMq`zaaY+o?$}Wz<$SkhGE5y=qQ6H76
z7-MO%^tK9?YjnHHi%}((5i2jos2ZbMj62k6^%#gTAjZHLHDc6^(K<$(7`0;5=9^<&
z9^=wj%Cx#M>ZwW{RW>iqlRO@ykveS<qoJyBKb=F~yQiSBI;DKzTA)dcrZHN^NXK$<
z(Tu%~(LBbg5h?0*Y-#sol@{s}^*x@l6fyE+6vR?F(PGS))_eM`f`3xurB<;ld!^-{
z1lz`F7o%&8ZZWQm(LR=zpQ~aN#&Y+8J`5dIr31%%IL#I&0HLh7I!32h?we4ObdJ$Q
z)oESlvzvDmc8?|3_l|KL+hbfCqeqOMF?z))ilu8k^MtUZ*rCLp{hmx0!%CkReR=;l
zQ5?(ExYVOKkbbJGGNgJ<s(&oQ=;%v!eT+ddCdZh<zQq_4V|0u$F>Z*Fi7`TbeW)tg
zjT>VO`~Nx<Qw&#iCe~wpq^ghl|Emw&BgV$KNuA!J%5kckpvv(vvOUF<FZAR)Zzg3P
zNuL|9O;ne-;GGnMm#TD;dElqUxGl!q7}H`*C*)(yRH(c)#w?Ozt^Tvw|JI`4!vBRZ
zKT%E2adTq)I9KBy{XBIuTNcEauj*Uc$m}8uV=N-FN~*JddyJ>5bZ34E8jJ2!bhtRi
zT`}&CaSt!Wcsj<tG46};NQ_5gFc$v)7!Q*2Po`-rcz_+NFIHb99*XfWA3U0-CUB&R
z(DTG&v0QOH!N(bhcRKxeEdRpx<5clvEWNf`uPS8wGpbh{>2oojRfOUGD)a3;AInwD
z3xwe@5|*ID8~Np}F;$ktc!hmCgnJHQDG|#0&$#DjycXm27;hcK+JjgY<Bb>%en7(?
zu$)92V?u(P6RaeW$GA8_`2?$DtchXAaALg42V-oHu_MOX80%tuK&Ggwt&j0`jCaZ1
zF~e_*-iZ-c)pl>sEV#Z~`Nmp<+S<k#n_|2d^N)mm?z4*CCwbJ+ns4lMYJ29_%|+h!
z%!e^H$M`75mKa-OY>VN3RdjA#!O{c$#5Y9;R9XF-qFH0R?ToQ2#uqWZjIle$o*4UL
z?2oZG#>Yg;=F;ES*FNEjbw}n?zO$b8b7igRjttArJ2FFeWN!Jq_%nWGYw@i+GM{r$
ze|9}Rr}(QFU&r`9MhQ7F#(@~$#@JX%D^pR^Z>{?9jtnc`QLr=_$O=#ARnf9Bj2Nuw
zG4$#KPgupRD``A6RihO%6t|eCZVWHR@fd%^@MGj+93;ubc)5}m#E1weRS#qSce|+9
zH$_Q|pPFhvP%^khH8vMJ-hdl6bZXm3`zglHM08E<NQ^@<eu?pSo_09KuQ8sesWtYC
zU+LYU?aQq=_TPB*qvGFV{L`;P?_M2P9*uEKJ-gm2=E0Yoh;cH;e=$-C{)}-d#@QI>
zV*EuGi}B%(%$XRUm%HZE4IOzb+mZQOHIA>X71!2&Hj4kD<c~45ruHw#HKrSn$BJ52
zuBzSlYw_YrTB!u36O>7?WqqfM60|$qapx7<S35Fg6O>DkU|`*HgG%aZ^{Z=#c4RI|
zP$5B=1YHwUOi(GoWeF}%uxD+j$_c6_sFt8_MJ+GE^hR2h1Z8(-?&{H@dIG+vL4t+}
zY9y$c;L-$j64XjiI{}I0i(k`a>S>?+Jz&6&A_8{7kpXoR)Jsr5ksTg7wp*96-Tpn>
zx8cqVPYZWu8YLLKGt*d=q`LK0wMze7-y}iP1Z@(uP0%dC6$#P_L;^y!ImcM;nii^l
za#zQe2?+nI8*41J1bjR{K|z8UJ2Q{$%#8c@`c?^ACs=r>cx+{D{oW$Bu(Iz`tzCkS
z39d?TWrFqz3KNOe4he{KR`|Bn)n!?yk#;qiv3p^s1Wh({TJc@ccXbDLP9zH2yj$EY
zL3h>@3`=lLf@>2DAe0mINYFDu9|ACeR!dvGGt(<UQ6kB;cY^CwWlEP;J9kQY-nYBB
zUxJdBT7OltrI;A3tNHGLuSZv|Qcb%)!Gt_5tTS+7afd+!RD$e+o<kDwQidH?r-Td}
zot>F~4j12;U`542qY{ixFr3h<s___+U}S<*J2R}um9#Ml#wHk-V7!9lP3mnIAE=zS
zEAxk0)N)sb-L5^pfZx3(!Nde-2%iL#5=>^_5^PN{CBf7LPb7FU!88&{f<*~#C*%{%
zOmJI*xeA!G65N_#j;ha2aBOP+<~%K`qB$$7Y`>;M^LIMUOE8}ZVoz#ocOEESK+x^V
zy!1_R&4$`KyQt{I08-Q)3GPhrK!OL=ZHp7!o!}l-zbnD-%RBJddlQV=mANm${RuOJ
zbz=+L>(tj4?8@*B53#+G_E>_)6Fi*Ykp%zr=)jgoRr}MsGOX8a-C_KKe&sILR`1F@
zmEh?F%L&N@&m?%3WR_rQg69%EpWx*LOA<Wx=71LxyqMr6a!uz}lm=fcDWVW=wx(!K
zQHNLGtkR&KMuOb4D?@sFHNk5MUQdvBZ~sTO7A<4{n+|*<fxjzLX=BF;%`^(Vo8B#6
znP63d4GA_<{wG+IU>&JC!5gcJ-b}DI!Cz`PZzcG=Z-?#sigs)+8hoPbhRWL83EoNY
zZUPRr%I-|5EyWWz7N0Kez@BVM@Lqxs5`36YGrXQRwA`I}pQO7xLn3eSb@66JBoFV-
zd_+p#otd>e!*W}K?FrljUV<G7b|&~T!B+`(CD@%{UxNJ{HR0L2^4<g=^HOE4=ARw*
zZY%zTAG)@~rxZjLwUza?<@<`3@6K%Bo%t-mue&o}u;;3i+1;5QQE{0)5<6cf_$I-3
z3BD(nHL6B_IgsF63XQsw2M?~R!b%D0oIJZHV-o(22kI0->e+MIVuN>Hs<HA@EzL?`
zCm6CP!^0s#9xP_XPmtr+6C6$uBnT7yoZwJ`C_$XyhXe;H9*N@G+Q}*dDM)etde(oW
zK--gfcu(dhGVh9_T~qV_d$|=Et<K4EjXo^?g$&-K8;`-)cKD4%nBYW$lL?L_IGW%%
zWn)8)N3ZY79aHrw`-+zB$^4OE+n&se>x)YEWd0;S5|}l#!yAjp{(mJnP0%^Tzp}&s
z$JBQ~Nl`rilM#Wt<38k^!|fi2f_KOfM2-dS7LMQuNK!xrL6Qg}Dq<GItbk+?kR%{c
zMI`5(vp9KoXJ=-~QU9NAf8Y21@Aa!!UDKhus=7MNO!xUNS0`uE`P};(_vxrrlvMG6
zDjS(zP(>kCAP@gWp>4`PlyjBfzkj2EDv+VSh6xL+U@JKC79&yOj22bVcwdOfbMbI-
z6_2POQbIx^RktanRFqZ$6=hW<$z0zzZ=S3Qm&jZxDi~!bqk<f!stC*v(U{B0l%xO6
zt)!y7ip*_F1xaB)swj~o8^V=kElg8IMb~XgRaH2sSGFlNRMb@Qn~L96)KXDf#Sj%k
zRn$>YS4Bug2Nm^H)K}45#gi%;sA#BSLWTS%R5VhN#ull_ASX=OJ}X_t>}?8>po;gm
zDJ#Z=Uzi)(xJ_xIV&I*wO;voA9Ne*@`C}@Y&ChzA#ij&_P_4~WY?_~SVw=K}GgV~C
zDu{FX)IvqJigqe;RJ2t2F>sfsRJ2vmO65Vg!PY9;s2JWT$T6ka+H9($!M(1`^)y+%
z*Y)kiod{PH%crAmui}fg1>RZ}YJDW!QAH;TL`5GJxhnEh^i&Zn6AY{9tfHHW?kc+Q
zQOV%!b)kHT#I`BKyQ(--LlApNT@2{jMxl08Ji1+B=shn~cf0Z|+rBy6db`p~{XYxr
zEs^J6P4BCspDG5LK@#>?F+fG{?aGoRUAm?QpI7k$1*PJ|bkQXV*^sSjc(95WRh*xY
z^OA~}RgBuMumn1m`F}L8P%8L}ieV~ds`!C&Q1PmYi7MVwF+!Tn7!|Ln7|C2JeyJDa
z=-GKy_GofgBS@p-jC8ET$E$c<#W)qLamse3+VbqXe}>+m7F4{cf(n{;vo*62S+ZSu
zTg5vnK2q_qiaCoqO;Yh53sLc|ipeUrZ5N)LzLf9-6@yoVK2*W+j;@$EiC4BOpQ!j$
z#h0`P6;q^mKT|PH#Z=mVN|52fc7^P9SsVJCT9X{I1giMR_ZeTS_=dt)F<r%^ec^9a
zd?(r18P2M-Lm@vo%ey?WLpi!8wBx(b4EDZ~K_atgnJU(>jbqa1sF<tbM-_`z%#&8M
zNQICmJB5mc<mZP_&6>fkI}{>hn1N51s936ErHWOux}Q`mSH%RNS%u&-Nnx@vk>)FC
zc&oEX|5?gyfBE2QRg4IkBhn}2W>H^jsR$M8RIFFAk!DY?va&OoWXcUH2;Zp~3>MGd
ztm0Q{c85ZL(lIw{eyt$xb=kr)+2b^1XxOUaPZc**+@#D^Y*%rPMxtVeik&Ks(ZJX=
z6}wrciUTS>tP<QK;a*itX4p^nQG+{_g*z1Q>&$~H4$%)#ZY*$H$l4e>tl|hI->wbE
zQw9=;{t`O2Ltz^^g?KwDctXWV6{l3FOG1$y%4v2D*0rQ_WM%eQ**i|&>`G^KLB&NC
zj*7U7ODZm_&{XIuuF&V44_zhm+;vuQXI1keJC#_4;NL8eU2;R1GW@~{kGT*wRG2Dk
zIz3v;(Dc)5!wi;+EnjDH@Qu<Htj?}AGb5&=#!jXAPNmyU(S6uPS1R|q3QvX4j?gej
zmzYp-O-dkbT+ZQDVN!<gR4$zi-J%VssHCB?hC3?mswko1Q4RN0+*eURLqQD>D6yRi
zOa4d2L)y<yWpw@EuANHv8Op!xeN}>wMZ<+O6xL8wLop36Yzr09kbg9kH$9{Ive4Zn
zq02j!;u^o{g8pl0*p6_YA3G7D!I#ufN<&!<<usJmkffoEhExs78d5ZH3h~zZFl~U-
zY{F(q!LJ^6y|+_=CPo<s&R!_4@){~=sK|15DUEk2?v2(nss-~qW_{c!SVcos4Rtlt
z(@;(0v0C988ft2IW=^QOghGZIejnPVwg%2gh_JKQkvOAyyOjDG8fX~2O9^Ob$kI}S
zX>3R>F_UbhVe`stc6mmh*&~`0)G%q6lFqiIh=pMj4UcIUqG70p$2Bz7&|O0h4b3z>
zp`opYr!{11$kNbKLn}t>1e?oNw~+Xg5;jW}4bNt-Bq4`Q8$+!%w9)W>nP5hh{Ont;
zpJLvI!78t$cPf?NPD74{JPlzD?KOlnbkdNkVa6_{gM=ObKR9!3h;({;hM9Kj&KkO~
zjR(WsG_2XB<ZI|kK39j<{T3$Nw@axK31?Las=JhDG$<PSY3Q%vSq(ikkg+}*dTF9l
z+`HbTw?yvjQmFdpBwl8>!Zdv~d>0F+?N$b8V#P$y_M(R8X)qcFO3EOLnr84<m`|VH
zt#EotgzzN|OuS@R`pZnVE!2Ov@`{FG8a~$WiH6}CUe)jxtwO^H4I?#-*YJjhQ5r^T
z{82RgI;E=NH4WeHR<4{1jb(z}%F`>uRcD7t;bdv$Ze^T?J-d~)XTuXTPTo*<k1|oi
z-@BDH3p?H2EqWHcV(oIlcQj0?6?|W+X_AI_HT=9gJXr(#=6f2N>`^XoHXcbUuqgC_
zh7UEqdlhC}HI_%nFyV5SPgw%BpkbzlsTw|`S!(!F!!!-A)X$%tkwtaTem<90^l|0j
zR~kC(QNE?<G<>aL&>rO*38|xlzX^Boy@qoL#+GMK*U))Qn4#mz&<`4BX_&8Jfri?v
zo6n}vmJ80&P=0y_*_*3j9<6IZ=hFqdv4nT_D6Pk&FQnOPSWFY$5L%>(dH(c0%Flb0
z{d<(Z_b5v!@XA3B{mZBVN?yk&y72HTH2kCCUkxiYtfDkDtk&?WhTmvKw7rtSUnE>B
zA^irs?K%zXHEhsO;zsLD>_i$iO1yV+kQDO6T<lhy=lrf=3$;KK((nhJzlK8^4r}<6
zYSpky!*1ycw$p^l2X|`N@juV-V2@IMuR`J;c9xad`!wv=uwC!6SDIPvcHsl;k9(Ca
zdzFJ!#M%&@8yTbDKBD2MhKm|5X*j0gxP~(t&T2TJ;iQIBR5bfVYH-M2g<){@{Ezo4
z=gx$ChO+L?%{ZswyoL*udF5cMazQ5JqZKDZOiBE*hASHW(m<!pt+1iH!d%xc+^bxb
zl+@C}U-v2+J){O(Lqvn2fm<>0y^2X5_A2ws1k*FRTCzFXqEJ*rOv6nLw=_5!;u;bf
zu4!;Jcp9qjQ+y3$8w88(Q?5q4*wuwQYQ9goF15f>{ss$A$?v{T;ReN~3c=fS{u=Jn
z)oWn%F8x3I)INo_^l*QOfyl=!Djr_6PkG2@{**m`ZB7Ac07Z2a(@{_tyJv-Tq4B~x
z)TH1GR@Wjj`pC?T;yNDD(OySLM+qH|>S&;&p^lO|O6jPmqmqu&I+Aph)lp7I^^M_V
z9c6T+>Zmd!BSli^K%ismK82pJ^^PzRQn=7AucLx4Mg-2QxuhMwL98_@Goy~$I_l`C
zs-qgqPYKqf(H;v|*WvF|YUnt-Pg!*!RARrvN2J%%!Dww6t*e7wubwU@NbK76b!6{X
zl2?XFY@{Pi#}hg-bp&(-b!6yhq9a{LV;!gHhc%ImiRawxLim`DJ*%2G)xl+vvR`>z
z2e+FzqiZJV75~cmtxkTHj^;XA>1eIvNgXY8wA8^Jvuu`MKFGi=I6@Bn!}lvm6SLds
zcuL39I@;-=MsBAB+v?zC^;Wsy)cr~hOWUV#oTVHF^=d<;gN}|m2I&~AqZ5^)<5?X&
zb>!&?>*ztHtP9i6ch-@wqbt?7CftQ;Dv^Kt=jPpXF)}iAC$e9x-2dFKd^jicjHD|%
z7)b0`FW5^*ZykMg^wZJp@9gKOl%yb6(A=HqqoZ(Y@b6_^`s)~=W1zGaE;FCk!6oMl
zg!`34=fYdpg>URvxV4ycKzUKeOFCZDF;>URI)>;Np<|?up*rdvP=@PxRmUqjhUsFi
z`^2$MPaRO`_x67u>T^KsdyG4vjM6b$#~2;E4k%w8P{tPQw(5W~1wrmn{B=NiUB@^b
z@93DMW4w+xbWGIo76o1=I6>!svf(!+&Z!`AF17A4Zz$t!9d4~41AX$lwAF*kWF7BO
zclCqB-`DYhjt_NwL`z<nMeQHi72Z8EorQ1$L;p{We5zv#Yc%kNfvGw^W8X1Q$iOrm
zpVK6C?A7swjxTkr(Xm#?S317dF;B;Q9pC79=2&>Tju|?>)$yH<2}_c54}{)0*W!Do
z+!6YGSo%yIKTvK5mAN`*>6lH898~783p~tCKd8_dwm+ymJ}SNBvTRyx(|zFuIu`2q
zNyjo>OzaowSgd0S&FP@>qb}B}oJ}o0DCVe-56oD~u39y?<)E@$#|rir9Y5>%XJAHS
zUF_Dbr2QWh67Dj#D|cgxZ4R$y;Z=h~e$lZ`$8S1**Rfv528ynF@K+jJYLLR&sAH3k
z%{un?eCD~=(n}mt+=EK9qM>?+lrDAhx9DhlNZF>-f#VNdY@~11@u!YawS&g?5W7|2
zL}-VOojMAg4Sjz|>32w>;qB6~TgRJ+#ESq1BKufAyP*zC#{nG&b)466LB}B-hsn8)
z(>jjmI7*LkAnSyVV{`&Lm9>YI<Lqm7gZE1X{~nos=#Y3da8k!ZC5t<6XXr+BoFj)@
z!ryNX(WO6}8L|#3GuC8taJ;DFl8(RGp>$j(|C2MX==h69yCY1W!yT$ME1O@{QQ)wm
zuMH7$wW#T6c33fV==5NR6&egzA6*VBFCSKH9T6Qjb==Ys)e)m9>hN?p(#^(ov239(
z-aV{v<?>dw;Iyk@U&l2a*L85SE<wXMtT=l3hE&%2!^)X+q4b3zD(<$9J31b)Q9AC@
zo!;znXGZ9r?4;k_=#u<K-hE2uu$U`8cQEviE;c>>rJ?4E*9`>>5oPFeF}tvVA_kr|
z(9S?n1H}w9FwoFIaRZMSC~Kgcff5EDHIQO}lYx?k7&S^6C@l-&TaP3|>~2wg$%fD!
zaq5)OG6qr&;pAb!IxOa6#IM&2mN!trKrI8c4OBEx$v`y&)eTfOP{lx11OKcE7e1m?
zJ)&go578|U&pM(^3uV<XP?J0yQIsRf=!4+`=ff0N9Rqa@aN%6f5dNPXw#w4v&yFb9
z4~FX-Sb9X+c0_4pAk9Dv12>K+0Ruq;j~i%eAf1fa;S2*!3^X>t1@hpfq2Q{}V}^KB
zKxa;dFC0<W-ev}#Fwoo(I}8k&63LQ~X-J{&o-{D5yKonbW*cZ}V8ON4tqim=@RT9;
zkXswnd-(46p|%D%)24-UfME2ORiPXM?F~F{-~|IA3f6#P;8_D5DO&?w4RkY*Yaq`+
z7b+`R%vZw(I#W|em4TPLBpp@8UJVn;H_-N|X#1>RLJP|UyHk%BLOl!+XI(WrWj$ly
z#M&IAQ&vv{y{PWm!Ttt%8+guu*|tDmYH)d|&rzk1Ats7%92MJ-f1V5VGsH51UWMfh
zFvM%Ynm1YxG%(1(s|H3GSidlNuz{Bhylmibwcv|n`}gn{N0lLl*!vo4;1xr78{$P~
zD8q<LI`?oG<)V-Dkp@N?c-_D_s@T97wzp*PHJOY<6~`t<#~S=yJ&%ieLi(buL(=(P
zAh0|%fovPNYv7)Ni3Z*>u+_kyv^@jw82G`!ECZ7ayldcd178@J%*K`uerVt$1MeAl
zpBA_%xzC$9AF$r5U4LGa!)>dN4SYgxZ{RZnpBh+vRGDIc8(B24RZ7+$N0m1YhTKyj
zE>&u*2~9I_{-|ikmj=Ev@U4OG41CSLQ$6?%@mM&vDtmGLpm$Ws{5Iu#>S#;2_%UUM
zf$6eOv0J^nD*NB1p_v8<msbqVHZX@B&A=K1a}CThu!P1;253|?tz*iMl>D;ng$5QG
zsB=u=NX=-u<RD*K{k$}^m{lhS&CE7G8CYgug@Kg@mK*qTd68bnln!Nr*ZvN#?v%w<
z@G1j8({3vVx1|OX2(H^3&Rd(k*1#_YHXHcWz&ZoBa=LCXu#sA(R4bR^6qnQ5`|HCW
zyeTHbo1|^Oc1-!r!0*yd{xEQ0eVZ+`)fpLFZcjO;6#Y4S(J|%MW6CxI+YMYaaEX1^
zz)l0lX^_;if!zl7Goyi#L(}&d*h>pEaPpYKh0>yR;o1{(sCW06a?rpb14j%THNX}9
zVFO!kcg<MbIk71;WPa8$ifC8p%k$aXmphc%hWJSXrwp7iaF+cjHF(+(d(<>V_Pa-p
zi?Q{bfeRF4&ES_6^Uu>M9ap$u=L^S=GO{ikxMILH;IS?PR}C1n90Px|nFcfix`AtN
zX4g4dti^Gmf`2OoznvM{u{@89Zp(meAZj4S?yNSC7~q?NGrxx^iVw#HdmUFC193Xo
zm7${5#CSUDk#4UYS9}8rx+w!USu*Q=CH*>$_P8=@bC|nNKOI+=eUrj%!&|hRQo%b0
zZqp}h2s7+Bu23%|-lsa)cTD7&ct~GL+cx>*1O7Eoz(i>iNhS)KC}g6ziAPM~p9`DV
zwYxwO6MXr?fwHKHVkZ7NuG~H@TpwWx6OWo;Un^;XFD=Vf&L7?`Oc~yC!=+5#?W?@K
zAe3w(#Y6=Y6-|^ekxIIWawcG+$qD7;<}lp|=M}^`;VEyT{|TjFBpf=SusM}XRF<4n
zHF0V};Rz>{Dki=;A@;ARrdid6yQ^WMrin}wSte?ksBI$6M8HHH6Ln40H_^a^y(ata
ztLgPj;k!7r4O$+i-)Lx}5u1}7Tzx`$vwZOI359sjM7oK`OgwI)v5AEnLe)<y87$$1
zQs|`e)6LdROwgqhX=<XGi6=}ve^U9lb};j#(&?mf>g!BaG5(~|+{BY6+L(CCL<<wy
zCR&+jZK7$lAQj!}P^XqAIK%&fDKF+FUF<^h;Godf#M36)n+Tc0E4DMS?4*)o!YI*=
z{&sTp;FNP+I+)-9*U>~Lehre5#i>4>WMFb<LXMAN6P-=GWa4ELT}<Sgc+Ny06J1So
zGohGxmQPoQyOa5(U=LPTN63)g{uwH_c90Y1o+ii)b<xYj_LIuxlR_`OO%R?w9_nkN
zpNSVt3^eh^@bp_JmHxDxQ)0{-Kv75uH#{ZAbiR`sWMZ(17s-F!Afp@|m?h_wLVSpc
zp(aL|7;Osg(dU%%iiu%twJF^D2ood8GkuqY6a}X@EK`_P#o!ndubG%&;!RVG>|;%g
zGcn%8>!hDj*aUvQ^7$#{4c5N0`Mu%k6w$I%%0w#8#5+{V%4`zfmUer3dWimz2Fz~0
z>y$Ft#Cx<)OW4W#vMofSCO$Cnp^1-Jor$d`{xtE4iBC-|GV!B{DJG_xm|<e3iO)<-
zqlr?6l$ePxOnhmI7cMO4(XwJEgfmah%)c`6eWl>n>}w5!MA+m)O|rft(G-&?z9=M|
zPWjXpS$;4v%fvi(Lu%Z_920ZdVSiUx&R?fQPo&~FE#bE!e1ounMoS*rhPjP-?UZ5+
z%qZ2iz+w|iO#EVEor$F;eloGj#Lu)YQ!KdnnsSAS<t9p<R_dNs2w(dxYbD!tOdxGe
zE2~YcF>!xlSJv3PZvI+ReCNQrO0EyDH?hIQuN0<<jV3lx0v$?krYI@|-FZbmt1lW(
z=d<DG(C;R;nCN|4`GdW6QHb@DbM|72g~V+%HWL?2Tr{!6#7+}OO&p{DF|pgkArps9
z>@l&|#C{V8s0a?kdqRH>&fh1SK;&%M;HcBeK{CJ%?RiDkY!6L6tsIeZ4h$^A4-&}m
zaT6z~4ijfhoTTg99ul6P$oCniWH~fra`i{e;5q4b&P&t1f4KC#)!7`2Ic8llahXID
zrim-`9wrvQ-(5Fxl@5^pq)t#Xp-Ri)5MQT}&<pD|S7-APrN{PKRQl6deJVW?q4Atn
zY*{;vuwmaU&KzPguVW%^!ZqPBv4ux0_$Cr29?*50xMt$Ii96JSi5qm<vqQH`emf_Y
zAvft%O9i>UyUk{v3$eieARWa$YS0uLn2!xf=Z6ja+~^-x%~o3|Y9YL`c>xOrEpS7L
zy|rRekVqjJEiB=d(@HT*I01%__Lt^X0Fe?F9<@-$LaHUYZAlCK2r9`!DGQ|~C8fN0
zyYyYtHpv#aB49|72t6<j1G1z2_jv{vHRUXnw@|@CMGJ4qN0ls8w$RZ+Cks_9RJHJg
zg-i?8EL69UW+7mq2HCSv-$DZmwIqjiE!4A6+X7c)ZMYDy_@Sl{&gs*N7?cOJA?MuM
zZD^s9WRje7YiQRWVbX&Z(k(njCM`6!kYVxL$Z!)`f`3{$HZ+}(!lWZ=YGHi2`~|mK
zH?zb7fzx0rg4>T-7MfdVYvE}NPg-bUp_PT!7P2L8ho)z=luavnM&U;+6ax2h+gNzY
z!r<4t{`z$aqvVZvI}14$LQ-7qE$~CTO*h4NEDYqc{u!l%B{q=Bd9H;#3olxDiF&lq
z*+Or!ZJ~>Wd<)N5P*_g+U{?#>E%dO^O>)9kvz(0N;78Y6SF*xFeOy^s=w)HUz>J<2
z_@xl*s$zusYKE-#vC!AT3l;`i=x3q7h374Bru|dd-~cJc%T3!5r<`AVszCmR!h>iG
zvZYxovIk3qr5!uc>17K;EWB=EoQ0tlUa>I3!bl56+7@7fVHSp4c-6v^0c|MK)@KwN
z9<?^g!e|SxSzr~t&WQ1aVGI-35H*gK^!=5~aIbPaIk)i18Rbn@)V9C`S@oDR3U}(*
zUQV1QT3B#K;YW9GTX@I9wm~T@igi&GlgUO@oF+Ql#(NgtxA1|556P#ES8RM_;bSV-
z7N7NgV&PK@HuYj*iiN2b{$x=WKC>{5%v)GWAzS#u!Ym83EqrMqSUm8Jg>Nl<#a5>m
z;FqFb)3$waKL2+XzPB*l!VFsSY;l7m|1KF;M4V$bliz<bJ#WDt9pth9%bm0q5T_{2
zu`r(vk;Tp>W3z+vEbxZkZ+HROZ;cmPSWNcH1Qsztet_Xei3}+k_-bTu$;JXdSy*Oa
zJ#}qixrG%LR$2Jj;@vCCN{e^0DE)$kSr>o(BZsTml`O2aK$iH+&o8vqP+*;fYqdm_
zIB!H^D>ho#WZ^dpzgyUBA>~JLOZBg;<xU!ZwYb)zFi#lR!deOj{-EVh@4b`Gz9mlc
z=GmV7VwUpRP6jNTvT)kMP7Av%9JFxA;@y<uf1<rqrG-5-yqo|}9OBQ#yt8#bRd7G;
zfF+c|FV**0tv<b<cG$wr4yi{i9J6r5`oDv=(u;`mijP}3Vey9FV#IHsQBJb+J|jMm
zF4!S(hI9*8E&OfaoQ3liE?T%`;R2Piw(%#!#7zyXg@;Y?EAGn{%sPR;EL>q2+JV7+
zMx2Dh+Esd_hFK;J;6~ccZDlkII)#5<{Iz6Q_$H7}#IjK0c~K6(sE=BRSxB~#V#Bcz
zxA4HiLkq42j}5VK%MzdN`xLl^>om5efdrl5b#azE;mLUN4NDv_MYBmctK7D5hvH2O
z+@t3S2ELe_eAg0x=<rI!-iw3xsmH}-_`?N%i2KLljjMRXMhP1QY!tLn)D~Y^7qZ3S
zlSORoE*2<ki;5WjDIMTJF(b+ZirIK^coEiB+{W?20sgQ3sEv}g_!X<PjZ!vx1_P{j
z&9mZG9p28yqp^}~@OD~qSjI-GjRrOv+JKF+HmcjGVWXUl@-`|nnJrpc!A2!poPogK
zZ7SMA^+b404-H8ezl~}(^wNQ7yVCqUhbNry*7BM*YT2k`i+@xZnq?HO%`QBsaQm`>
zth;G-ZPc?-Up`H)5;&C~=+!iEpqltgx{-~bjdUAnHUc(yg6s4&@mKXb2Z}YekzwO;
z8%=E#DjR6R@~Z|Ovr&9@3Wj#z|AXYJnJrFT$dvF233+5FDg4nX%f`?)0U}S@XkjDU
zMoSxtjc0ANveDW`2OAx2w6XD&Ek6Fwv2p1^8U7v6*2dE|+S%f-9NHTX2NU1VR}Ao*
z`S#47NDJARk|aKx?_?v_M!t=%l)sIzET@Zvmzo85b6ICw{5;4%3K@7E1}|OeW}~}}
z!OsTX?^}R%^{}yUPXQM7j4l3#CeqVJFB|=A^tXlC@O+8hHlDN5htilA>`PHRNUMKV
z;qTRB*JU0_4-8-xGzl9o*?7UmKpTTtK8w9A4x`{d`_r4HQ$f7pmlWoG*%m*h@l-DU
zKrIj%<!wr|sL5%C35QAk`NztuHb&SOX=4<n6vI<7jJ7exh7o}o!D}|g+Nd2tod{mH
zG0x_e9c&xpZM<P)rHxfKCfIn>#&jDq=(KITMY-9SYU6Di@7Q?X#s@Yg**JYIjbXAx
z-j#4?AVA7{lt6ib&>lXd$yE=0B)h}biGh!8d}8BM^49m6&7;LBTP2zlCS=ObY<z9w
z8ynMXd`{Is^o1{Md?`B@yWUq4VMpUHW8d0fUEfK=V;AEg?cYoMlh?yE#hEsKu(8C(
zQX8{u%=<TOj*YoC{!I_ew(&@L(f#|r6PQP7+gM~{z70kfNJxZFf0X!Q3I9t>e)y<m
zrNB>AXxYGW8_Q^!l>(KU1(JFT{#THJ&H?iIvyIj4hBo%wSYu<YjX$X@b|M?=Y;3Zz
z*~WTS{ZwFsY>`qp(4}-><NsR6-@91suQo{h-NtXyMX-EcmYO{=u*F8*Mu9)rFD3@I
z+IaPk#zeN;*df#Jwm~89?p0u?EzToi*d-A*oTcrNY4%FU!(k5CIB4S(6=&m+l+s}v
zN2mf`K>1Ses7!W@&WfB@4jdle`PY6zGGy<Bjg#bdbbvn#6P~egR@QRG#yMJun|4vc
z^Aa+8L6%8`w*XwSahbN%NT{ChFB?~7)%2Wy+fZ$26xy=^(-t>5GU&8hiD#cx80B$o
zgb^E2I?o77MG&L&r)KGjBZ%8@ZQQcO4}hKx-^O+6yXb#jEFDNl{2C2gO{P2vZ%E2b
z3A>+FNW5+1j*Yvr1QznZ#yuPNWt4WsgRMw>D5L+_sCh?NI4K1qC=@~Q$p3lK!V)P$
ze%6*=Ep5A~q!g3z;)uW_5-AbEqwJ6GiMw(b3hYfP9YInAl_IDdL2?8s5tNlF>C($Y
z#Q(hYrY5IGgokH91gTF5gn7%!WaTBSAYsJ_TBV5tq8X}4N{tArN~Br@)g>~mo$%+p
z_nc{JMo>!<iIdN|5!8#|lL$VIpne1mA{Y?C^AR+Rpiu<vBM3#17C|6_CnCs<AQ(Y<
z1Q`)DiGY7$H;&-dvkILs9V71`cq}4r)@Vj}J?(LcGuo7C3I~WxI;)VL6+v^Epj8A<
zN`yxlw2YvI#IwnBOX0fxy~%{1CDK|)&?bVXB4`@{ujCLVTu*yCf@zI}TW%+F5y^>Q
zN+<EOLj)Zo=o&#c`KVI_VX_)QZUlL3c;&#;F)>T2(yMTn2#PjMA97g0e2EkJs7<(g
z1U(|?6G7hyo{2z-pjQOFBY2id>=fAAJDIR2C6F5^{%0BD&qc(!a2$qMED@d}*iTk{
zH=5R;RZHOz=g)&LL@+Rd5fO}(2?j;*VgxTmFqndUA~1GTfQMGS9KnzXhDXF7wL>G~
z*STS=YhUs!|7$6KIi#qI&kw#T)4bR>%t}W^Fgk*X5xgat978;s_9pQN#?t>wB3Ydf
z!MF&<%joGL;$-PJBH~aHBJoW^;LJ6!cj>ofUGGKkegyACFo~sA47?k`WQp7wAWljY
zi7N&^kSVFbk0SW+e;o2y%a6%Vx=2$ZD=;O3sS#|9U{eI2QE?G0jo_yUK9Asw2xdeu
zGlDN8_$q>LBls?YuOnhg!|)9`A0tn^znRvnUh(f~csJ4>UP<O7BGV(_O<P2Mh+tMk
z%p2!NpuQNK9l@Lk=0<R<bAYo=wy5{Z;%d}+G@%#76m&rZ3uXF65-ySO#|Rcngy~rn
zL&3kqQ2@&#;{K^Mv^{ba!Ak0)bfHy}Lq277Waj4xR!a(J*Nm<e{R`{Zz#D1nBiJC3
z+*XCj1GB7qIdF1I%H{}ujo@em$0GPGg5M+99l;)1$d(AUQL_>J5y4h^1KMp1abgVF
zU~`CbHoilq+!evjh&TzKp#+cg4-22UmwqFHgS4Co_DeH3AQSVd3l=g%_SVCaazsKh
z%wm6X#XS+nBRCPk#Rx7%a592Z5uB50PDgO|x6Cty5wV)!0bjrT(wG@3Odi>EUZ%Mq
zVcq4Kq+gEUicG0ddRN3%cYj52m5t&xg3+|UrAUSJB*FrjMJLa^H1PR=6@g8Yh~kGR
zA`wI*Xc<MTC}I&f5tNA{HHvryE<0=##iH;c@FTcMb<?iyr6uT5<7qb}eof-n>9qOh
zqdZw<bXxlD2=0&)Md7GOf2wKVZUpxzMw#s22ns~;K;jQ2WZr)w=rAHkgy{=L(KjHj
z_~b!AgbX}`muD9gk)`p#pW;zGBJt!XN<{H!6s2XfWK{g>UMdQ|P2m?a3lpEwv@q{e
zV+l!7+z5+%G<bPaN>p&m0ue>oDC$SiAc}QO3zv(cauijfC?CbpG?BQ1EVg14l_WCn
zd%;iDD5}Y5JqfEzSSyMeQE@I@O$jFz3=pp!1uw>Bs1rrq|KU8|goTi?hEX(%A|r|>
zvV^oK0#O8I6Zk(V)1*s28%Kq-d9n(dQ@TXpu_zvo;)y6Sqr8GJiOHJE?5oZy&7$H~
zK_Xd_!bdG6(p<tPWgAJ%mQmhvOT2XyZK8NNiXl-v6-C=9`b5R*_~|IxMG=nDwTfs?
z6yH54(;<rXGD=EFBBgfbb&QJRDLO@wE0LWu#bsxC66ZpxOBDH0^o*ic6kVg}##}>!
z&qmQbis~-}6bXs+h~gQE=cfc1W#DE4m*ju`nAw~3O=U8B2A_+HjS*fd#C-`~i_<rX
zeo^#~Vn7tU3V9GkS3K~16ayt=#9xq<F@pj><p-Xfo!R_Yfx%>;M&QLLUW(#cT7Woz
zo*f#+D^ZM#Vtf?CqT(;wQBjPJVt5p<QvTP{Mno|(D)uqB3$Y@W#$5RWgOtFSDEQ;;
zSlQCoqT=)w?l8Pg_0<x8$Md+nH=>vj#rsiw5XGBO@E_i{qj)FEQA6NwNl2vcyiD#q
zOp0P#JefNuJj3(ds5r@Uaun}Lgg6fb_%Mo(qL@k*M^Q2(oosv@#V1jGD#gNml3iyN
z%4bRxe@+%l<7u)jUq$hC6rW3+P5VM3U$V2y--P*_f62;$Z=zzZ^(|E##rG0tbh<=X
z><o!;*-PTAC}u}-pPe^~IZ@1IW24v~#k?ryNAW8yJc<QTER14#l;aB)Me$=4KSi-D
zip4b7C&a{n1J)9WGrE*=<MA?21iHC`e(10mA6G`PDvAwJY@{lqSWUa77@rJq6}cuV
zraiwzu{J6el?<KbO05Gg!HJ4{`nb9z3_EFq^2ErvDT>Xsz*^!|ff9YhHF>{NJ`{Bn
zTVzpxkXyO-+)9R<rZdZSn#~h|ol)$HVh77~(s(EVncN-4lI+0cv&!Bm_C&>j|BUjO
zmz!r5mVY3MgHc53LZdho#o;I}MsX>MBSPJ2r=vI%#nC8^$tY_)9>odTkK~yNco{n3
zDJcyioO_&&;vApSRw3?6CjZ47W|6%MlI_Ra1};Z&B?>JHU8eafDvktsno9s#=HC*k
z5-w;QpiH_C2^djWwB#sESqSGOERccnk4Osf<a3Hc=O4w*C~i?rbpBENmFRw5Ch#S^
z78S?lBqVN+3>>{93b`SpUS@!I_b_@}M(;$y`5U8mW%Qne)B-6FY1>iMj-gHr|3*<D
zhLSOqilJZ(g<>cX!=o{AtYTp%SSq|O@ggx4mBeBal2TkEkHo-JzZhk*nNJp`Cr|$^
zvvdqeF;tA9QVhv4q{NUK17au>6GIXm?Av*PJv{?FSHElw<zk>~C7p-${Rhi4d*MKZ
z820|sn2xt{3{_&N8AC0ZeQx{wsxi=qGjTOZsV-rSn7A*7#9a*pWLWY-e%%=A#qd}R
zkH=6yh6XWyU5)e@8pg!I;DH!lAEa_*X(UTXBQq1aGb2wEC2UM-Jm7Ay;5mc2&M8e|
z7(Xt+z`ZP<b<;G4<}o}OL$lcb4F^xekSU8|maG_#jVnWhgHa1fY$;(jWfD*OJtfde
zMq9`5{xeC376qBIZH!$KpE{W0pj`|(l)r<z4%){MieXC(f5gxshK@136T_q!I>nG1
z!^><-40$nxW9Sn@Up{ryI>*qvU7%YGT^LG>l~H~SU1R^Zvg0bXdkj5dct$4cMHqt;
z!?U!9^Z+yVlyo9==Fi2z8$h_2Wt2x5{0IBR@Inj&W9T0f=N=4@kdL012sZ-<(TXYr
zUX0--i43L^=Vy{aW_SWjwYGt`N(Y9<@QUPiTnxixjU!_iC6VD0z8b@qb6Sj$_=tbg
zM#nHFhSy>kOUc(4t3v;7YwjEHii+}&2VRfCp3sTJM7hBD7~Y6sLJV)lFfj(^<$%aN
zjW0(9Ym^Q!`c@3nO9tMKiS12B-zD2I%!^@u4DV4RF?`LAP&M#@l-Sf5K8xYQ7(R;O
zV@df`!cSsIJR5wyw^;d3k(3=V;j4KJ+B9-5Da1dI;ft8KZiazTCip6bbBa*PH!*x0
z<A*@_K8D#b%pq4Y7az@{k;gDoM!BZu*_c1@sa*13mlw~?m5+8+3=H30U<S`|ni*UW
z!$J}zeNhZQN@Q(JY*8+bfv5KU6vGl3T^jqpvm&ns0?TBw<uR;?iIY-z*3e2xArGr0
z@^cKU|3_IPk+dIzJ9wI_+!<RJ!}=IDuvi*)l>oN|ev4sK44Y$MGE#n(bRsPL_ZX_Z
z9(b;bID2ht41dP(Fou6(*cQX~7%s(dS@3|JF&v5EXbihz*d4>Z81~1ohcX-z;5w8(
ze6Pgm%19Z#HTghH9RGfhYD%OnYZV}VD2Br^acc%~COa0xamt*vNC$W#hBGlSoSl^L
zl!T`x{BInjYdsqids9Tt$8doj(oJJ&7ims%!TVZP;7SaC#o)vckKro&NDO8S7VWcB
zK$S&l61G1lwgvPU3>hWPt7_~RA~MQ-faw3|u^9fVox>%QxiNS#T#w;KOboB2__Q~f
zxM<tJHHmPMOZrWj;8qN`>1lUmMg|4$NIoA(csGW765$b}Wd6Ryc}xxQUZczW8$$sH
zWgMhBDCnS&gAxuNbx_zr5eLN`JmQFTWl;ykoc~+5Ht8MCc#ziTobvTs$y{@B$wq{0
zoRSWbW#Uo}N;~*tN8_E70!a>fZO>Gy1_)DR3EP?kczQM*lyy+qK@|t(9I=+H;GiOr
zK=JYpxMbs<RwK_TEVhy(PI;Ov*LPJNF6U9hK}`qMSy%nQkzwL86!Jh=OJ?VSYlm!U
zZ6>%WE;Ov?puU3%j(8Q-z(GTLR|h!`8aYUFkm(@HLBJ7yo}sCOpo4S=jhSnl7ziG7
zkRfqKn>d)uqiDwk9{*qZr&^1VsF{N&B!ySUGTPk1lN9EIv^EY}ILLOyUOMS59kEIx
z(%L~QiPtS%h?IYR6yq$%g{R1~EQd?2ryX&^>V?B-?;zyhc?T~z=-{BEgJ&El4mvrQ
zyfU-1gDwtoCC+G`gRld>k|Ta(P`7*sT^;mbqlyO#6%BNA(4CAG4e$y-LWUkagI~_f
z<gE2sN6f&VbI^y`sWk_^DX3!NBr!TqA{Fw)X?uNTvi=VGIk-JC$b$+wl^x*Vy&{2}
z#s!wV9vJ9gkb~h4UUe{-wO0-daWK@ui?pa{+Dnc&9;fcm<d+@%JE0SCzL9)|^0}Ed
z%n{f8kx#x8<Onjt!AJ*V9c)zsqa2KOkm!~Anu9TpSoN@|zx#%X@H}cBCQr^^cQDRD
z=bf3n27NrM4h7zjkO<$OzUg41gSQ;KO;#Pe@8BH=KR-+>|3~Iz2a_DU%PQm!25oP7
zj{wI(K1%Nt_`t!(Qd1u~_{b5*)N`+x2FatzK4A$v8*`_c?=q%3_{>4yIQqpgjdtk3
zb`Wv!g@Z4d-NAl`Z&>iPgOv_eIrzrGw+<FKSm@w82j4rG?O+ajUobG;!3+m{&G*ZK
zAYU$=T;F)6gCE!{Z>7y*36%nT^xcQzrn9*Y=1U6kc@9zr6)y2YkfSgMwM7nobnugd
zWeyfQSi(LvILO=3ilhcM&Im5$yrNNnfp6=UvlqM`T;YhhLE&Zr;(S5Cls`LI?O>CG
z%?{Q$;vK<yT3YGATBf8a<_7rwk#()3I?9W&Y=eBdQ9`~-_+w*%Umg7BU>6OkUEp^I
zTj&$0P0Ha`+Q;XV+#bn%Maa3zpAL3V9d6n-35jf%2>15+wqmCvw&+RREz8*>Aq(6~
zw{T7&a=^hs2WK6eb8yJPwB*2X2@gxi=n;t=B{La?k4c=b^G^Kl=}C#4lFdI&8+$Eq
z#=(*50cJceiI*H)mdFJM7bWuZv=p}Yii5u#7?Q&1Rf(t){w?8^p~;#=bP1Ve)azo$
z-jq>GLf)Mhbr7R_iK9Urj)OQA9Y@JHTnC<mf7neN_+-q%9S3(E2<PwMx`P{Z+K-4=
zdp9N9<ouR{S@n~NFx-~J`y&I;Ti<i=kX<7bxbJ{bh6fVqm>P)J6brNhaWNVei;KZ4
z+%`}!4#Gll6po{a#JLtDrDz=8ii!lq<9H;F5^?w$VgTYQiKhh;DHTWQII6@^HIAe>
zC%PybM>$z|N*t*YDI+1*RxE*8z+|lg>xU(mkE23d98UY+s<2{QoX%Y-E)EQ2GUAmb
zg&Z<ei=%oRHR9kv#;1Kd1!~4oJ1$1&TC&)~9R$5j9ChR39^ra%v2Nm12Ht<sFpfrX
zJRL{7IMU(>#PLKNnQ;W;VvKt%j>qFjkE3y1+ypoIZdyiM3?&>{n#9Ep;iC-$O=Zev
zlFlr=cZ_syRA$9_V+h*B@l+g7#?eA1YZ(`ZGiS%e<!DU&`0xOutt7XtWrDX2v9rq4
zN8d>+&{k6V`(hI~Cyw@UbcrKBE_Q%JadeEMlT6SdF7B{cTP%<p2T$<JqnhH#TP=oo
z`mxS&@nHkEJu5U7`=VW`xHz7Tqh}o5<LD7b%khC{n7&0|#<s@foSu*rMY2SsS6qB$
zv2jm<-ZIS_yoB*)+H+DGed4%sJ*{6_f&Os}h+}IUe=>0#FU0W~U0)mn;}{gj+i|=T
z$KW_#jALvZugCFH952T)JdRi67!ntw?JL4U#ArBFM$5_t(J<=kNin1{jF9v(ag2;(
zR2;k>jsqg$Xo+t)CoYwEjT}bA9bx0*7#|m7?!-8Fl{v3(+rOsq8*xmCgJ+Vz8OPm+
zWk}&IIb1xxB}?WyZc-fY#_>rUpT;p+5<iHGH`MRN#l3F~@5gcU?QTR^#fNcx6i4ep
zfsZ95^TfI8oD#=WSvAw}O*eVqLiqDIzKG+eIF`lnWgK6{F(;0>lwPgC*KvFs$9L4J
zjPk7Dhq<ZW$1$Dh^8>TvVyA9K95W@t!Hdx!;^KRoS&~A86pol2l;_1UpLSb3usDtd
z><;G?K3WvVLOPS%X=#HCbN`LIc0bCB_=qW&u$eLoaeiX7oZV_}a9tehX;*Qqj3b&I
zSVc~z6j;ORWR#TE65+1hTB<t`V)%s?H9M2YhB%7%6HCQS)XT`=Mmmj5F=5yo$FH)Y
z-z3};#~-5tzsJSlnN0kLY!MOe*KLbqdmQ)KCI3y^5y#Fr)Ht*_cEz!qjf&$Gdr%yE
z<2W40kvR6nv0pl?gREM<rJ_$bASpM$$vh+xQuyd-9LM4~9>+iDlt!%srksuQOC~yp
z6LH+^7bN|39B1OVN<%6XI2*^gI4;r=Q9JbllWPQebqt)3;{v6Wmd;JN8y&^XUzepk
z{~}~#<u_ye#AP_Yd8j46(fXS{aCGv5xj{V+gHAGzL>#8Hu4o)FiC7Za5=Pi}<h0O<
zBOZq*J9zmr0hjF!i~h?VTJ48Sek?@fS{&CY=Q!@f#gNSv*$s)@l<-y@Tnv6!ON_{$
zRSDc>Y0n4m(evC&dv1|9g_SoqJ&<yKNSUzzrUfW-o>IQ>T3SIDg<PCyQubt%vV~m~
zaWOch?29R7i@GT0V%7u9et_aG9&u6T4&QL4m2mN>i-*_n&o!=(P|C%7KHm3H+C`Gf
zBMtF_hh!HiE`D?IJ9D{6b<xvBFBfo8)<sJftz49IQQk!(7ilgkxTxr&wu?G0D!Hia
zqPmM3E~>bw>Y|#9mC5*eR~Bopa9&A-a_Wo;5$DsIE^4`gs|%qVCip_ax-ROuoKs~q
zaIter5}(#*nVXsu*%`_qZ0MqNgLD=Za1nIT)I~EF=`I?(c+ADdW|@8OCVkR8H^W5}
z7w<0Wo?1Jdx#~8^eB8xr*Mm>?$vx66^9dK3E}nFGAuqCA9`uxy=$Y5t<u9~tn7H|j
z+@qhiAw63@UG=aSiA>PiMH?n|(Lu8Pl!WahY%Af@E;9b?es6O=)8|M^dop%jVYH)*
zPA<B-=;k8VMV^Z;F7joXu#3(vX1C7STVJpmKCcjebxIOp`K~R^);ZnT<R5dNaiO^A
zL9zds%V@vn@-EfS$dUN7lE`Rp7tgtv=Hhb~eO&Z)F~Y@27yVrHckz;omt72?qFoH4
zskoRwvCa7vNiVn<=yD*=K4k}oR?DvSY)i7SWnz)d6N|h^{eIiMce|V+E{3{z#l<j*
zq)Vw17CxRbobs=o{;F(C!BFn<)1vvKT#R<{zKaiBjG^SI3m21JjCJw4%c&zKxj4Kl
zH`Xe5oXj}h1#yNqTuk^M{-#7Gx_Ik<l(!}F_R~2Xx97h1d+tk8wuBRA2~&AbmPzD8
z7azI!#Kos<?7F0#g)=^Ov1mwv7iGo|&nr`0Om*>@ta{dYrS`)7)OL-@4<CKu;!77x
z`N+jrF1~g#$HiQi7d7Hr7c*V_;Nm+M-@BOZVg@@}tOsk{C^;d*=m*cYJbGT?Q$}Y|
zvn~$YYn@!Z$GtXTQsz<YGS`nT7P!1vTv<roWa9YX^c}16XAVwh%1=tCFLtrS1#uGl
z&umP%%*ApSzqnZEVg-Aai`6dHP{<EO^H;g}*##@=x-09SrMWwz*`Hrbxptw*0=3v$
z7tGEy>s@ScvB|||>Sb}#Mt1fQsVRPN-Q4!ceRHc`5VlJAtBa0Hx|6cS#UFGm9*TO{
z>f%oqnhV{<HW%An9H;YP$?U3Zql<$scDdN?VxNmWGOWCnvX`dSPgvCP=Y@HX*&$rP
zewX)dq)$%EI7F4XxOO~+M1~_Sj=DI;UN$TD!T^yzOR~i1Nf)PFTw$Lrn|<2F85ieW
zTySxgUFm{yjxOl=mM>pWCS6d@j?Q~5CH<m{OY9B>x?Xm1Xn5Yt3(CJAWlw3Bv+ja&
z^n&u2i>tDzzg?&jVX^Bv<wRt4h6~fh9T#_9ST1aG>muPI;v(u|Yws+NcId)!5qIIz
z0qS{Vwa7)KuG@xBYg`m!d{V-h&lkSt;<}5QE^fKF;o?`MpB-O>3Em6ms9N4_+F{2W
zJDT!gC*j}zE9xG-w2OaS+?R&&K*FrfIehxBi*{483wkKz;mW|=0v^gepEqPqxUh#6
zD|3n8zmr7R{i0ILLvaro9-4S~#6t-Wl|5AP@TiB99^j#@Crq@Iha|dv4^Ny=DNSM`
z_+w^9iia{DQaxNBp1LJHgG53m=A$1!4BZ;gyqt#$9x8euUfx5Cs@Wr|W(U7ZVziQn
z8?yw$^i@4n^HASI0}s_b)bLQpLtPIwJ%qR9*78u>!;y{MnUZ1HMP*vUOd|CpV^i-Z
z{q|Dcdl!{=D`YqH(8xp3L%N4F4=+zDGIUarfQMNZm83`0S6@`#o7VVv^=uLw%e<tp
zoX0#o?jetLd1&gPnTMx5v}H>@WRhnO*&ebyH208lE#*lH>UQv{+1(Gwyv#noZB9!M
ztvs~$(8j~qxw+q!&b!<*SG%a(yQnnwThzRyY#f{Ww1;*cI(X>lLA{)k<DtEWkYs}e
zj_R4a`*?R2MZA+F=1RyCl6&Q{78cmqLl+M{J@oRB@1d)Q9v+_Y(2Xq(=e)BlsXO(R
zoc_hO+^*rA{!8-@{ggyp@$jt25xEW1SWgRj!>cL1J@oO=*TZwN7MB0h=oa447X3W*
z_b|Z2=>@s_CS@>?SpVIOS2uMZ=wXlt%Y*G<u!k2tET=7bc!{-p_`<`N9)@@r>fucf
z6Ft1*VVH+e9!7f@?%`DrBU$*Wq!AwW{gA}*qTG35-fLF3f24MCjwWL~yyjt?hw&cn
zypcMVrP;yPJ<OciMxEMb*WN6qdBX#<Pw+tck4nqBy|QjkZA1E79^Urwp@)w=yyIb#
zhshq^^RTpFX5wyAvD(GomCd}_Ame?BtbDul2NGF5Fuht0G1K^%ioT>w@i5iHCmud!
zkLZ{!#1csx+^gkhGCIw}=S;AvJu4->`v)Rp;ry(xJbdk8frtHp%x^q=OMCM$+rxJr
zzV|RgR#a$Q>U1{kh4k)63ShIa`I#Pm@W6La#2H9*E2hu!Fwet$s`!#JS3*8&J2gqI
zmd>X?y<K{thed3=hsA6iOJ;kQ=1y}{mdIL|c+@53`ii7?zD`=ka=PR)WIFjPJ*@KZ
zr-yAGe)h21!xpOSlCs9bS`QmMZ1nJphjkv-d)V<(>hqr^om`PLXJ`S!%T?0}H+k6X
z;a3m8v5&Ma-S=9`_|~PzPf7Y>brSJ`J#v1R3?ygfj_;ZN2S))9H_x?r@Mt>Wc9!Yk
zxQ7!Sc6!)FL3udfVK-YbJ!y}Jy&li&OKSX0D*0bJJ!v1CHeC!=A6G~}=;09izK5e8
z4$CU)Zpte2W`RN-a|VSoj*%q@|6lD+5|MGAHa_X$l!wc7dbD8=XFOc+aM8nA3hjEz
zIS=P$Aw#d_@9drTQR(a&NGCE$$-U(93P`2<<&>qDlx>%kzdT&^pn1?e{LOxPznIFd
z_iYlN-nyhP7b`WW;(8gTERaabW#LR3UREL=qI4rZp70U#;LvmWNcIu;;ClGS!@nLp
z4?ex3hua<!9<I?DQet$Zvb4Q5(knfivpFxP%1^l;ZcLrAR7hj?(xf{c?s~ZI;Q=j2
zrkv@eTw9Tp|1du-klFo>R7M|4`q7rTxtEm!J_`CM?DIBflpc^?NW%V;iVz<-GPS6W
zVm?avc+^L6AD>RmeZ&W97a!R_uSPI~fk@sr-Ano?#f&~kp?i<k6OcHO6dz@L)b&x%
zM=JCBsLo_Q%K9khqoR*WKFa&3;ENHY;egb<yZO~V&7r1x_sFa4ql%BJKC1b=kWtJ!
z__R)sJi<8(^IthAAc-}7)b<g)R_xJ}#cIiNRyEE2?xWImd@#Y4o5A`%8u)1JBg02S
zAB~vUN4k$RAA1^S27D~|GU;OD%s=yUhMR2&S>~Qt3W<bGd_1)_>D4KXAM<%}p>lOf
z(&Ijw%3AE@!t1_&S;_Q~<)g2Uem<J}c+y9%k31hOd}RA*>*Hx3E!pY;sjYpqk$GE@
zx68_`O4;lwPf5y#TE$t~3-LDXeB}5D`RL%|%43=BeNL8A2>I0ftV>59oqRA#d{DoZ
zbso=TIeZlM(b-22AJ6#c!ouGw($z;dADkiN|5yHnuC-e>p8sy??i5$c#>{fHX>-NL
zvp#zI=;h;+ACqc#5H0%VXi9G%&-v&h1BnM3WD+ju-26YJzmEYvM*0}#<9Q!1P%=JV
z@iEZHARjOKc*)0LAMf2rsbGrv*n~jn`m*lbzYxy+WgkN%Kcq0a{<2ai)?%2CSAC4|
zG2G`VWX&0>AIu}Ha6N_L*kxt3k1;;p@G-&1Yd*&M7$*yP-N(}TNh9R??$Yx1Up@$q
zmvokVxOL8(J|_Bj$HyceZ~1szK4JpxpB8nU7EI$@R^Ih7S<*jpQ~o28&Z0i>@u82c
z3H+JBM?OCGQ7eJk34Fp{;Nz%|V?L(%nCjzaAFF+Q=3|<V`Lrb;pZoa2#|$4ceSGQT
zD<A6C!r%G$T2}Opk8ge4__h0E)7so$-2LC%Er_$y?|n?C`d-fCT#l5Mb6fo2W0sG(
z>?}K)FBsBdHr48*{|+%UFiPaR+>EkX$~^YXE5ZgAvT5bhmry1?7Ww#*^v5zTZ!Nu;
zw)B?poFA7@|H;QPAIp8LprNiv`e9;`+_9;I3@a(FYe}nUHhFEPK9bE)=Zdn%$66md
zeeCk_i;s0ae)qA($9f+deEjO;Hy;~)Z1S<YW#i4Vfkc+-%?S?{@A`7_u3t_pLM2k0
zME;;ieQfu!gI4Y1kCQ1c{gAtj3Tl;0gyGrs&6R6O|KW39PTfuG`nSaa9|zf0eeCtI
zPg3^N)IVrb^n(!L7yq{C)+&dTLy~wz!oyU-zbz_l$bG(3w*MgMxQ`P)?)kXy<D`#M
zJ|aG%K2G~M<Ku5Ch&{!}IUkpNT=sFEe4a_U;Nzl?`dxA^)z7?BIlX($#%-@CgjZ;X
z6N>!h<0_qYmz*U-o>}==1`{-WI)_m6q5H6W*ggy&9p5ct(hM49G+)`CDp;46QEXgp
z+uDs6%t`uwU6MZ{HRi+dah)bX|L?=~kzmPxXL@g^cH5Qf`S7WcU7}->_)~uKYd#oA
zVe}?>{wwp2gtvU$X1BefkW#0w7=7+ab@cx$^SMayfscoD#R;S)@DF<#Z6kq45-5;B
z!32sXP%ME$2^3DC*EdN;5^(CJSLoK6g$&QjUehHj<#7JWk4q0fk#ey-7)m7YXaY$I
zBqw-ZJW3@{I)PbVi81J{lG%UNPk;T2!V+G;n$IjL2@qBoo<qtfqw<j8(g2kcsFFar
z1j;8ceoAgdmNTzCkqR<OJiloMLnRp{QZ<2U3Dis=>*L(&64sD#QQ7RZHPYW`kU>~-
zP%59+NuX{5uO=`efqDtlPoPr*xd}8#pkV?}B#@avqXg0t$Vi|`0s)?Kl0bSwI9P_N
z(~{PGm9$kZtQsfqRJWYwH5*^}t;J&r5H?NVafuLLxvzV(1g2e425e|gJS&0b3AACB
z1fEPF@k>&60xc70!N$f~94;<2vLKeyDuLFl_s{&LSCr~)a*2@MHi4%T2qn-Vfp!Uu
z-jSb^KzoV&$JKhf4T(v==T9q@efMliM+#r!e43X)IDx(i^h=;~0$mbN68u>V`3ZDQ
zpnC#6DF27WwpK2F_f}FjK2=&8k>LO1={vxyD89ErB3Q^J<OM7sy=rcP0!hpTf{*~-
zfENNwlPb~#X`&z<L69QSq)Qj2BOOtSNVkF_Akurk+xvd+F8|;6JoB9A%$YN1X3m^B
zJ3BiwyRmlKhQE?drKh!y<7|zzjt!%2+4XT87?%BZpo;bZ>=5UD8Yv_?&-ruRvQ^WL
zjZW+wN0&Hy#L+X3u1zCd<LDmfq+1;Cu<bj2J72yhmk71=ZX7@C&aG9YRj)XD$I&N_
z_u{xT!#5R%@xv1O#xbc+a@i%d`%zsdd~Ga~vyNO42E;Kij#+WcrXJ$_h=WOVzj1sJ
z$B;Ni#W6aL599bKj*sIQPCE%IJS>1UI!9+Vja~`7;)pm##&L8;C^9*zddz>n&h6}v
zrZI7hjbnTq6XN`-X!5u?#(kLlNgNCMME7lr=@*0^MO%>VQ`X_1q=|I?X3C}fx>w)K
z+0ryRIgTlDd_g5V8)-T+d1{>dPw;sh#JhJ2Pp3jUg&7!K`BRk0j5ub-F|`!BKI@x7
z{g0c^iQ~&SR>$#89CPEC7ss+Vmd7!l6^LVT9AB}?MI&{~MHX^oaiDF>l(%MHu9ERh
z<D4aN%qd$WbR=VG9Dh~`zy4ZU+h9p^1<igzr0mDptKwKm3ptX(Xvd4$U(-Blrj`0R
zgYerp*2J+Tj;(R5jbmLL8{^m%$9h(;U-E`HSFQbZmE?=UOF#NrD!e6ma~vBgq<$AD
zmP97~S1xs19NXjA9mn@^?1*D$9J>P8qIueZNcwA2qs&51LT2AX8;Ik_Kn^857V?;3
zKTVG2B%-T`pW-+e=NmMNi}*Q?LvcLfIEv$N97p0fAIE>}M|M^mC*wF3$MHB$#PM4k
zzsK=Q9KX^Gy7}`BYjO1Di$eBA|Cz|}M^N)W11MY+1_t!M;`lp`Gc^7<P6tWk{D*pe
z#a}mIxN|yoE{=bLq}Vxs>hd`0(~H7|I5%hFW*oO@$#Gnc;~MoAa9)YyYMe*9{K2wd
zW^`Fl){P+ParAN0?Ktkl@qm_mBx6j~w7c}Taomq%;rd(-%+AAo%`=I^^I<?Ik!)fd
z5<Rwvf+FNN6ngSNvKl}m4l@od4xQRwk<oieZHDz%v#mJnIGlioVh=hgiFI?1e;a#p
zcW(K4enDOwE9OP(tqDCLqL7HEMLZ)SLBx|HX0OeCO2pW@sf9%p5xGY+>w~8v)s{xp
z_p*rJ6O;H%e^x|M5g`%9M7%RLfopNS*XJgRAf#{~AD74|>B%A>;&l;OB1(uTDWaN)
z>LN;scuqt`5tT$dFX9CeFNr8C;zbdqMJ%eEUPi>d)-5?1-W%xiLfrQf=PnB6M3fg%
zLBx)(5welEv6>IXfUUBKDk7?~MVJ215=Lza{aVqVX4eq$vdG`1;WZJjh<tZIs)#fZ
ze@+jHmy!%MB}|5fzH*Ls^I^G5LQN6GNvtKJwulT7xj$w8+dr!gHS=9^x`-~JFr$x&
zgqfoMK<S$sjfki#qNT{|`%q6reP$HVSVXpn1|k}X$Pw|G>wg+}LqtOnyPEqGJieHW
zzLLIL4~-d}@Qv<!%O)b4ifAUHxrjGKC}JooB997uGqUQVXn_*pj7tLXu`fm55)tDF
zQj%H(sc#O9lD@cJv|zz7kyavFi)bgJy$C@>o1mUmX8A>kor(`x6Kxw%1~$v&B3K6z
z9Yu5!@wN!AjFG2hpv-s2By<kgNF4qsr5n3m#2OK6MRXVOu82u&l!zW8dWsk#;zJR=
zXc8g@h!`lMkBIkz?EOUa6|r$&;y-!OSKf@C$cqqpUqpY_d}(ds{VxfeQAEA0K_Wg7
z{n;SHU=jVQ_>NSbl*nn`M<Rxb7(+v)0WYaNOyoQkBSm~HVz`K<iIF7;&%GoNGK>;2
zTI8RngiV(OLedwXh>c_GL`)R1p>FDU5femwDxyX3mPGhqSsLjqu6Ny3hNfqdCX1LN
zVu6T-BBqL%#*rdoj);H8Bz!L73lTF!Os7NpBdI}q-<^_PYkg>@h*?3aua=Lrx*ywH
zF7hQ!baK-CfH+sgJZh}$|M{Q)E(uIx-bEr7i}+f^f#C^XiC7}?7D23FDdUot1{s&J
z+7(h4yci)Q|8u`5F=?fURU(X_vySh~q(fdU;v1@Ec*3Yx)4pYUhbQbQ=)0+PBG!xe
zSHyYBVPA+iLQ@y9NyKImdqn&o;yV#rMC_z-ir6Y*n~3ckbnNIqv$@#CFlbM1r7=;j
zxj$IC-O2uJQsQnA-_r&rC6>PIkG?tq{87YSszt;>5&MG5?`OLLBz<?Zu@Jm^8(9?i
zGy6!y;UMW-A;-(hA+g>CUpb|l<s1`nT*U7p{-7H<nsI`ImqS~`FC6UMlTWPAE%jo!
zW6AJuB9abebi6G5DdHr1N5mNsr$qcE^5{2C2g3C#zRWdMefVKe$<0;L&jxJdJV!lW
z7FJ&t$hP;g@SlhaBJPWLAmXBkOCoNGxGmzch$|urzYw`0;;M*iBCd-V^?9gvQiPwz
zreDhLTPd8fD|2wUNM?=jO%CA~!#{P+yF&$54d116qpfbuEVCp;$h@DI4G(&v*h3MI
zL}(&(5pfYBeZD{H`Nz6!iSBVv^86Jcww*<&LH2S>LM(!*l*zUjB1{pMh`DOghhe{U
zP0f%kf|42i`uVUYqJV^H3hx|7K?zSt$d%DpMj;6a64ppqEAhw-3QK4sp{;}>5}uM!
zQ^Knfo|f>8gcl^dDB)QNMJ1G!P)b6ggph<J3B@H8lY9p_ue1N+c{)&RvIGRg5)x{B
z8I>;!Z;6qtE_sPpgp)n;o|CYsLXqbs9Q!)Nu<T?~xo&lz8<kjE;#O@`l2BQ~OA^XT
zs7RQdSx!QE2^AzXDH37yWNE+Er5<GTEghCdG$y6rh=eK<s!DiS!YdN0NvIx_UL$~?
zPiVa3Mhf8%l_G>G62cNvC8SAUl%lFm%O>*w8E);*cuhhr2~8!uDWSH6Iuhzj$d-^U
zAwxozgoxxXnPy6OJwSf`IJ?o2j8CeEt6ULCuPfp0BN_Er`eENE==^?tIHQ4tHzedx
z`RofWmX=FzD4`Lvm-D-ffk<NsBob*N;n#q^rd;|PSA?j9JP9o&<V$GAI!uZ-m++Q^
z{lEKuW7MbwQeqNX1WBY!sGq~Pq*fI2a`wd9>8;s{HaQK?CJF4#>)9u*tP>4#+DT|H
zVWNad5<0NL5(Y^aETN->P7-=c=p&)Cgf0@^mC!>%R|(xDyd$AIlWs)@JQ2BHJWR;q
z;)C**FR2~bo!e7FuL8wL=@n?+xfxl}Io#;I*n1NCO6V_PfW&2-+<p??mq19)SMH<`
zk_a!9yDmgzpoBT?{n`5m5{5_^DPfd^4<&pgVQ9nXa6$>gBz#Qz(%koJrIE8k_ps7E
zOq`JTh(L0OE5c|AV<e1|@QH+ZPd8XMGCG!`t_Z`oM~P2Als{g=1PPx?AWk`>TjWi-
zB8<=XQ$Le%yi?vB313Q>EMba-sq8ojGbGHU<*+_qg{HH!nEf|@mQtrgxI{v@#OnNO
z=dymjmBiFp5@u7kKSg_X^|iG0iZGYekg#0B3JLQiERgV(ge4LdazsdAuEi36wjxl@
z1;dxwwPJe8Prj#JDq$IWynMRZA$;#bHW{AiRClGsb!@DrN|}8};-NVq!moq2SN*^@
z>~8~{aPL-srm;@KdX8clMP+P|uu;NU3FjnilCYVjOE@IqI|*AP?4xN(*eYS0gxwOp
zm#|&J4%SV=E*jMpp?ab4138OutCFRaO(jD4dnEiI;YSuHfy7(!?CSxi*FO4E2fr0$
zJ0PJ-kubwS2|v++oJlaR2#+bm4@)>A;dcptNH|LWAmJAl$D#Uki{lbbuty|}uMlZh
zEJ6we{uV?@Io~6h6w?2ca8knG5>5wgKPBNWj@Fw=#jgtEp9;Tx)qg_$!(31K6+Xk^
z7En3_@Lvh%CB!9&68@981rFCG+>mfl!X*ipC0wD0e1J7;Lwot%GuTIQRl>pT$=B$4
zs-<x^#ici*pInXIlyFPJJqh<E+?H^MzI1QwE)DNtR)bp6Sx@`M!0^FU;Q@7iNq8vX
zQGk%hSq&j)FNBf=S%M?Mm7qvaCFl|icG;AWM#nq6K+05qE?4AU*8OrtObM0*J81Rm
zbyF_|J<>lT$^~|hR{CS&GcsPQ9xfoGpzM#k1C9Jg@DqFr$VjaaW=IH-CuI~4kRkzm
z>VK(E2gvJ@)D`nW6p|<-B%_jy$})<{NRsiQj9wl5Y8MaWmy(ez0|8z_#_3Vfl8@;P
za!NJui+)bV^8w|B0M?267Lv6px3r8hGG3B#<mL48GAhU@E2Esuy<1uJtgHno>4X(!
z5FwqAxsKh>sv@JRj5;#XWmJ<<UFJc1)Ra*}#>+B}k4a9E!S&Bq0ytz$@`|S-e>@cl
zvr#gC>LCzk;40{=)RK%&Z-;BkxVtD+OU9i=Ax2pWA@L!xoD3O{wq-_S)RmDb<8>KX
zGNv3&dJM@qV^?N98TEs9HI$JpWA#;`fs8j~RM{EZ9~fJ=lfJ`gzb3ztjGTb8!_L^h
zK~fVLO=XxeEE#XI!ZMc2SRo@%Ml%_MWqcr`xs11DbeHk2jF^lTGTO`NAfu&>d>Mj_
zHZm?e7n!jo)JjHcs!>cC@lrTtQ!d{wXKx9$mC;V-H9IMDs-}^?u3g6D?U`@O=qRJJ
zj4m=7vDIUfNA^wbB!eqL;#Hxm?7zcylktuW=303q<G?Fvd|f3Zy@!mRGTvvoA2jYI
zqqmIr*sevPllQU+DZh^lG85@5qn`{Sj52lbos|AE2FPGF2Fe)3j8)SpB(^@6Vtpv%
zLm5-qO)@@`F;vD_8RKLOlku^PkupZH$%*0NtX0qO2==vEpGfGM5Uvp!O)I@7)VU^%
zq2_;%ecL_U;+pRPK9MnA#zYyDWK5uy-bnhC#&avF?=^v<KD{Os9})db#$?u~dw7bB
zwZj`%>F)2eq3|93^H!Hn{aogG7R-||U&a?QX2_V$3dopAI4Y4sX3;R-ih4c6%<^yd
zaG74=FKO7l!gFOT2};>>O`yO9G8W4CibNTUWGt4EyC60Bx-foa?&)j7!In7>uL(;7
z^BCGQyi7*D>%5>_;4<B)W@#&BtdjAojNfE@O&gQ(ql~>Wz9GMiEi$&sSi{Ow^D;KE
zTdl(DWUQz2ry=F!^tjH;x>LB*hT&$#$YvSe$$0o6n+R3JB*G)_gty7qE@QWh?`1qu
zDY8SxP8qw{U!Cd}PD}fyMjAP<1lx5U-Avje<A;Fl+8tjqlbB_njQuhWb41HHAmb+)
zKg&2IW5-tCeI1lRHtFp!`FGl(UagC7|1ddpD(R>Uelk8G;};pn*sVdWw%J+jf(d-x
z35gZ%7QXs!bd{X+yNo|%T%$e9_*2G78RumDE8~=mzhwL)^C!aio0j8*+?T?qDd%v;
z!IJ)n9zL=0M}3lGD??|g|LvJGYNnBLUdDeiF3Y&W5hUXxJrBKH-Rxe~!%RI8%;;Wh
zlryDb>Z@ClNxv$i^xnjaM=~h<hK!psL>ZEdTQY9TxG&=YeF&XN5bm*?dbeiL{KQ7c
zF!-4k#2?b7$cP82<5JR(UCkqrJ2d9jN|$9QGISY+3^fp<1*%})9j9YtQ`W>*P7S%G
zi#OTlyHJ}0mi|G(TMAqm9vz^9R}>WB<X=Gv1tk?cp`eh0XB8Ax{Ju_5P(;B~3Z7I@
zSi!<={(8==^1MYk`m};)6x4kyCwF<s6>>IbN5@?k2on{A6eKAq9!Mw_z(&E`@8+Ut
z=S5NC$qJx=IHm2|=)1d83jbDs3JNMJcwWH^3SLrBR>6x3N-H?hJg<y`xz~jq*Zo1N
z_x2}&B$iW9UIC*-nAEOMUgbW1QY8hI6;xO7_qO~VJ!4fAR8>$dsL71mF%rqc4Ngp|
z!Lp`@ZuE(LvND>YAgmxmL8gLK1!)RuDX6WWrh-=$oIjZOS|EX+Q(xQ`<wKT%&(L_C
z%sL9v6%b+4@7IOL^w$++DQKvmk%9;nMF}GlvlY}+P@j#h(TdSqk1}R;%{#Qv*J=ZW
zrwsVPD1%XHM3f9U3UU=h733*ste}a4rV8FvFzE%~L>V3<-zWOhhP|s}%>o`q$xO=H
zDXB39EfjpH;3EYs733@Et)P#BRtj1x=&GQb0zp9=1sxQ;t)Q)fb_&|l9&Y%0zHwdn
zA}fmWt-NK?zVYmi3OcdZ6m(IrU{AE%4S`>I=8Vf8JSMuZXN)|n>gK!?6#cG(9tyfE
zya(HtlYc|#8PIzLkd!+;{Yfl^yr-aVK>R>KKLzhA7^q;7f-++hzGxfnuV8?}^MF~M
z+JzZhBWq6U;)8?Kb;AmffeQjd6x`mC`E#&5J5<3i1#-pov4jURKUVN>#q^Oh^23qg
z0c8ZO{dlDOs@zcu8dOLhtze9T!8e5ct@7GeNS}5?7^mP91>+S=Q1BUxR`98Ui9rn~
zQE3mdD?H3zGa<UPzi+zV1+AN+VCw(cMf!<=I9<UP3QnpxrDBGHne22G*(zo!n62O@
zJ6gdU1z#%oNx?zdwt{&IHY@l}!F;M$!Ab?IIN}s6Qm{n9QU!|@e8u6pIh52Y%6*}?
zZV1~}_?EnkR>8dr3RY0<2cloDiWR!)tNo3kQAWR3uv)=d1?v=i!+NscE4Eq_RJhzt
zfeaKC3HaA5*q~sef=z7cO`*<;e2VHD@NB*uBO8fZ6l_(nOTlgh+Z1f4K5M4$q<K4`
zBL#~w>|n#&hWE7#SD6_i^1XsR3ic}4r{D(#Q}oc;-;;g}O0U~8b9evPq~@6n`xTt7
zmw14Zn`cfF{pSmbKPxz-;4hA11&8Sb6#S~-Hw8x(98++Dex^)#?2Hg0`Hw5`wnm#D
z%J?Oq6Zu*6zwiI9;130VD*kuakIEJ)HL>x@p!8E5kG=eig!~kHTERaGE-1LD;EaOg
z6`_C0px~^6a~wN0!fgKFss5|e?p?Y6u^Kgs^sW)^Jt3R$l7h<$t}3{u;ELjZ%Di7Q
z%>wwzlKc$U72HrTZCmEcWx`x3eT>{zaED%3MM)KR72KmwW)l?LSMWfAsz6ilP{AVw
zq5_H4n2`9}l0tC>{d**j3;Ii@+ExESsgPfaJf34OzA5Mm3<Z_~TY(ugmOP)G_7?=|
zH_v=k@sW}LBsoFSzDnr@R1{QsMgY&MctS-X6@^t4Q89jIC_%-Os_#s;-4rhF%xbnQ
zb|o)z_hiyjDsrc1Kds_sznl@hW5fxIsz_8(Tt%{qM%g(b6~$B}sR$JbH=gLL?$k|z
z^bXlM2pGCdZv2>D?&)wT70;;%t4LMxyowi8R8mn{#fvIRt0<?Uyb5t@sEmr2RFn;>
zbnm86vwHfh4tWW;d~0W@prWFRl(R{1l})b{5VLLxRa8_B_+M60O~vuqq3SAXsJu2)
z=zU8Vb4#dLIsMC9!j~=cUSVDpQYHVzfiLETw&td(sHq}d<;`!t5?)nNOGRxJuLV(3
zw%iiV??^UBCD&0wI6US*yE9e1uCi-zJ3pGm%HI^4HP4H%=!&h52DQ3!%cs;+;RMkJ
zD&9~rU&R6y4XGIweN?=sB8N&=(Lu%ADjKV3qN1gWd=*Vqys4tOinmlmRaB9a@>Dca
zv1ej7zX(6LnT^{*__lB<FD(|NwqUnfp}&*DIk$a9Ex484N=0iG?SfVaD%z-M`@a@3
zFL}5tn2=k4+pAbRGVyW7jw(8-=%(Tw6%!VOI;-fa^7Cs}mjHH(`@^l<x)3Sd+3&kz
zJyi5m@h+S5X=6s2+KZfH6G-W;BC}GY&uxK8UA~O=Rnbqyrz$3@cwa?-6(dxPR53us
zKxR?#k%~bo2CMi$#Sqp1w#8!t&$P`WQaX5)Q24al!cY~%RD7&rxQd^=lohuH^31sE
z@53b9?e(#`^P;0vj8-vL#W)pXR0wAiek@;vsT4)FPiXd3+VJEFfkO7)7XG;{Fp1&O
zZDEp%&s0oT@r8=XDyFEIrs8w*_fKZt%V!d%syMvKf0{F_y;7L;tC8#(Di6KlOFI8!
zky$F{tq#prF^7ZYj?m`&d~T_&ddJr}@wrS5*nBz%>5<4n6^m5tR`I=x#VWpHtyHWD
z>b6A1N)@YAELE{Ape$Fhf(rb|e>M^Bz2WPe;cFGERea-{knb)UtD(n8Q#G_!#X1$6
zReYyny^0Mg_WqGn{Nsd;D*j#>Dzi4UDUe(@J9<4Wop6hattz&w*r8&Z3hqATrqd2$
zsQwG#Dldfp?v1S@8}C%HONGA^H7K17d)Q?vj&TSuW9{@GRqR)BfMo?y@mlu203rWR
zDh{eRL^aZE^w7^L+}1gRl%&IVQZ8LeKceC&+mfG|H7!KS@yqEXGI~PAq#c>R^HIAa
zO5_(6zpD661;2MQ%0T3gAoWi+bBC{=zfZ;fVjF2x8a~i)TE#zfI2x*GIHTe$%T?j2
zIH%%Y6}LE+Rh(DxpNgw0uBo`7;-U&=N5+*vKRK&ImsDJ4od;%-Ncn`15#rYao*ODo
z1;>AG22s)r)=9rZ=TA8*R2BDB+*c8&qoekSD@hMkJmOf`o_l*q{$WH4EX`-P4(bwq
zIyo$<kf|j^8r>0?N@-k8{c%UGrox~vqJ_7stJ6!gi^-kCmI|BRh7PcqKNhZc3~M)H
zWMCFbE1;pEhLRdeX?Q|IAq|NdLK+e@JgMPn4bNyOtbrf0i)eU?3?s8U-4Q5ccqhM$
zr~Z_WnbBvdx=^I31`>(zOE=-rJ3=uH#Wf^rSp8KfNkg8Q^~4*#{zr{ShK3RvFB$X4
z%R6?AS)SAIyoPcb%4>K*!;2cqXn0BUeQ#+EocnP`vEYtCXpK+YHmpF|fXLL;cf%Dl
zRMb#O!{=$~ktd3gNJu<)e<DLw4b?Q{YG|yXx`rAos7+p$hL<(GqTy8yuW3lp5Y~`J
z+zM6c67DuC;khBnsT$U9iE%4z&7d0M?JOqM(okDNx`vE^SV!Z2`y}S--YCk{ObxFG
z^yEp2GY9*PC2?4x77-0~HPq8kUqb^8Z)nKY-~|iyzpM^rG>a+|8aLF?NJEZ>OLP2;
z-_%Tde|J8U60&lb+C)QB4P7*J)$pc<s0Kkp8){WUGYu^@<ZEcI;Vlg@4J|ZW<;n&x
zcWoE@#>lF)B3k&D{0-$&hZ$KTt|hgiu2w`_Yna|DZ|5DM^&Y<$+G=R0;cX2aHMD10
zA17QNklZ0?OOZ-`Uq2SeT%9y@4(KNX-$k+AG`ypsw}w6%x@&k>LoW^7b=>R$dT9QU
zw4RIx%#_1u<)lJ&N~V9+C+j^8?`!C<p|6I1?E2A-UmVpqb}B|>N%<lJGz`=*NW<L=
z{v+wxy8^QiVd@YKA8I(R;e>{dGz`^v?=)6w7^dN4woAhov_=ghG)&O&sfLjnMrjzU
zVH_2>D0ITj8m(cB#=D_>_j{s7s|^eCe+}LvKG85<gY<F!x@RMk(sLT#6((w!q+yDN
zsTw{D8eY@Qnj9d<TKKP=l*TZP=BI&l=4!Gbx8q&m-pbq=8fI#kuVDejo=KWTqt)<b
zkasq#7nD9%!>@f}^Jsx{@@EGWMq5`7FVwI|!%~hu>W~KWXXGmlOE?C*<P9GjW%O3(
zyoo1bL|BIzi$k;Di!NuY2S-m82(QxcwT4|9c60P;_(sD<4Vzf5hBX>CX#Oh7S`F(o
ztPk)pb<$s$+&HU!c+*{h?@ce%Nhbr}vj{h9*s5WhhVL|N32J^+Oz{_C?h4x}xkCC5
z4LdbtRY^BrNq?q&n9DEq!|CMtUc(*@KWjLo@t<7yQNsZZKWW&j;g?0xeH!*_ybMPm
zerr<WiA!n|Nll2<`#q^{5Do@qd3S}w8jff<rs4jM+%Xffk81d2Si+2niEK4@6_QBG
zFVvxiJ2VvyziIfL_OBtSb<Q6e{?zcVhVvRuYB)u2ui+mJf3fC9VP{10-!%ApzGJ*A
z#tL={b1a|Ha8|>)p!DbO3AOJDgvIO>4*&l&T;TB3a5+f5NKbN4IQOmpU@g0`d5ib_
znZT7GDSFSht7{srYq-JEtES(glX;X~Zei#qJF#{;DYvPCZ$m`56Zjrmr@^I9(C|RR
zLt3B)S;Hf?t67>D$c(c^l_UAjL^2b@eaeOVjY?EBs2VKxpaxBYuEEe?Qp3-Ox!2d<
z?#lzD!KXChD;wo3DOik%L#MaJuWDkcZ~+~(v;-Yb>L{q=i6Cly8JgTVTu8^B&i>=3
zu#O@+p4CxQ$5T3<*71yvF8dOD+!LlP@?A$(*ScpqXTMn~HBm=MM=>2qI))C<?)p`f
zNo~tT#@-VKPs;vqyzkbMbwEc69VK<VX(DQ(l#b_gL=4n5@Vt%}bS%-aRL6@tO6zE+
zqrHwYI$qLITSpxoWp$L(@v@FrbY5YN3gm2*Q%%R17b6vQRMJsd$G&Q5FONtdtfJ#=
zwX~{1Dog*OaD>F_I%?>cvoo{N@Pxc_MVLKBM_9*e%-AlRs$<uV%*wyy*VM7$QA%2H
z<eAY|DfyTD@xMlvt1+_G(!qCLBI!CZbTrn{L`SBM*L5_|@rI5pHcI!8pVTMvT%@j!
zdO9Yo%PqIoSK7M8zBUN61D-`*tf3A<GUVuJ#CEkVPKFf?qNL;o87ZnMm8Rn@9Wfn8
zzl%n7<mqS@)KK{-S&D~Rk4}E{U9`E5Wo`0^w9wI#eX2vyarN8Kg>OUoI$8z%3j!16
zX1O*&w5^W!+J|=s#990ONks=8Z|fMLW2BCbIy#X-M_(PC+50+r=;#?_?5g7(9o=<w
z)3N1T0#EiaFT=Y!iU-?@K2J{z)sFVku_|z|z1fLplNkEYknF<wDL#Kc9q;S-P{&6)
z`s)~=V~~!)ItJ1be#)4)Dm3AR2>T-ag-E-KsUPSVLc^$-%7d<R_@>|8heLG?(=lAf
zv~c=Hvwqo;$se;vE~hj6l$-MyAEjfoj+r`U(H?Y+)iGJ;x&+4Q_(aEeDp?0-^7S|8
z9{)3m@KYTVbxhLnnGQx@y`QqTLU_i#lv(prr+wNu-X)J?YAQ?AaiD+l7rMV0`*R)B
zb#TWu8^x{Hq!8hL>={97_SN*+G`v7>i*$UcW3G<*Iu-<!c>&D)*xzmV!<pDZ9lg#b
z{MtMtE1;|$=Nrso9bW}(#82K6mg!ioBd$Z#u|mg69lz=LovPOHwT|yOgmtXe@r{n}
z*gMRqV-2lZ$HqX&S{>_jtPk)rPedNv6V~qaOL^wLQ1rK?O|;ni!e*VTM(I`W3+?U;
zgYFAkb>60h9XfVWC&LrA>!>^2uP{G76YdH`ty~e>O?&vxw;~40{6WW$94|Cl9eX*-
zbR5+2vyS~#osOS$oH`Wy_Mtyx*?Guck7ab&`e-VNw_iS_<1oA6zOekh?^H_<h#k{$
zT*ogue${b8M~g2*qi-gS(^8n13=E_YF8D9$58BxE>@#!%I{wsgGN|4u9e?XM9pHZj
zkRK-UJ`X)tI&+Z~`iE5w3Oc9bUmZ7e+|+Si$A7d99anT*(D{0vdQr!vAnzZ0^H;Qu
z-h3+3wym$at2(af(1#>n*YU-1|8;<nJg4pp6Bg&+(s5hIeH{;U+|hA2kZ>=6H}?9K
zzZ0-I<Dw6BJPPQO?j<oJlhO<N{#?=_(_zw88c=kobj}8zGN7?g9iEN?1`Hjh4oiov
zL%N>S$1Th-?65yia5zj3M_hJ#&+uC-bN}0z|CnCTz!L@v8UD7YF|(2r3_NN0bML|d
zEb>73bV~O8vgs8c_+9X{foBX9GmvE9Sp!84gbdVbnO%KVsBFC`Lt>DN6dsHFph{YC
z1IY$T7$`|6|3H9&N$WyH9z-KNAwq=FQU<yVN$woTf5E_u23|3cVxY8vG6pIesAAwH
z17!`AGf<utu<HM}HXom4lUTt(MFW)#WL1ce&My?KBva>RM|tY4s)1?-Y8ZIgz>4{y
z>a526kTJ|RTE1X@BKd1#4Du^!VFRfKG7MxINHb8=Ky3qc47_UKZhp>dY@>m%TV!_U
zL5$lkhn8f$HpnlC-X`6^rzZ<H-Vo~9CTGZ{^w(Jv)=>RF$wkzpyjD4FW`yb)sBhq)
zfu9Xz8)#r)w1F`O-Z0S6Kqmv84Ky;4W8gu(oO}bh1{xcP8psRu*~Gw`26~rIpItG%
zX+R+o|09VD=FJQ=H_*bs&<8@vgveXe$zMq^0|gQyC3a_CE#$+NZ2148tqim_AQ)(4
zpuK?(2HG0D$3U=#C$yvHr)TfKpYgSr5l@IbTp4=XKu0!Q%=qSku;h5`NV_Ou7Xw`l
z^fxfTKsN*L7<iA(c_pK}fp-n`Vm%G~+qHNP13f8FO<@>az17Z5F(Q5bM|q4;hkXt7
zGk82F_H@tWSx({i1N@VI(SZgA8Tg3pGBDWS9Rk@O7#I>Da>XKt9tfm-7(|J1fpM6D
zj}444Fw($q1FwzGZrv|-V?^?_Ct48sWoLAh0Y+IO!>JXqu?EH&SZZLIflmyKH!#z{
zECUnRp;U;0&kanZxf-ZfA$5v@&jMs}0J-BgYh&|2uExsrj7~Kml}}w5&mi0Mplgl~
zOZdXTnlTA%)Qq4xM|a1VI@`b;1B(nS4%oglFyFue19J^tChU*6E&F|^@!S54g+cVd
zpyYeOX|?Zn=YPd+YMHYnfJAtFn@6^Pl#-Uyunp`qu*<+o1FH;dFtCwbW?(hzU|_Am
z=`OxCz&*VbUUh)~8pX=D>KR>UU_JY5Ov2nXzR&#cfpG9ZjPy+gHXGP#V4H#OSi?z)
zTMS%r3$w8s4@b_H_m9bM4>B_Ej-aZWd-%h_Jet4T!1o6B8rT=m_ZawrePqBn<Co4r
zWb>!~^oC)-fdkZDukf_s2qY;#8MxUjZ2~`s88}SmX5wiRM+_V_aMi#y1IG*;H*ns-
ze+Et%_{G3q2L3kitAXDP{Au7MWlj(MZs3og0>`JODuvP-wy!&5aw-o3AI?i#yef2x
zb~QPbNriiaPa8O6;H-gv3^4kAqVH+1E%WDT=V-<TuUrtsu6bo13OQf<#0v&4u^O7M
z#)}4Cf2PI#+ew$HA68Gxy7764@HxIg)7T8?bjWOxfm;S18hB*jwt+jWXO-}MIu;JD
znrS?yagSc~h=0C=LE4=Az<^yo%)q3$0g-i}lV^u+&6EttbpCAk#$3+2%S?)<JsajU
z`}K#y?2*Zo_IWw~+=of4Gmv0{(rhZ<fJcX5!eveRC-+<tVn!Y+VQ~dbJYk}c31;M}
z6CNR9c2<w4PFhq7KWU<HAf$+iCOs1<|5Q#6Q=c*Mtcg?;X(o!ANHkH-M0pb-6U9tC
zXX1GiNhXS$C}E<c>DzX)37GuFmG2l29rK?@EguR~`Xw`zGWn%Gi4KRv7fifp;-w%<
zX%qbyhlX}7RK`T#mANgB_>aOW)moJ`!9bjp3MP-|psI;#COAp1#EM<at{lJzqZ01c
zNUsvmFIQ_--9!x&ub4<NA<POfylkT7tWcka{&TJEtWf?_;cy_92oHqTH1Vp5H%v4%
z@tTQRCbCRKOw=~<&X(j16PYIJm`D$@ym#Dxf>(Rbw+e2?e%(Z?GqKWR{m&nDP1G}y
zZK8pR>TUD(k4>l_AnB^lyl+@Sttt@`3466`-pE9*iN+>Wp>B@Jn+k-d&L%XWgbJxm
z1K6ZbGI0hXc_x~f7-M0qh2|#SGI7VmT@x`AElkWaF`o@Ik#FJy6GK=f6Rk~jH}Nht
zV4{tQjwU*pXltUKi4G>-HhuGGZ{lA6WEubiPazR!Js(p#o9MkP*40Ee6J1!(8KDPf
z{cj)dm@xNe)?OQ0zB)u?@xZJeCVHB9pFL=z7jv0dvOd4Bi7R&Kq8;jE;=Mp`a~}$u
z9txuu<k#91>u2&Tzi_Kx-T)?5OS`fycaVvJCT3Pk<EJ`)u<O4!aWEwWyAeJ#@sWv7
zO-!V<R1FU`@v({F0Y1#cq_0CHjxaHj`Y|y!DC_4g$)ik+4)D0pyjzPr9tR$0;u90&
zO-x{S^N7Kwm>Af@pbgO@O`CHeDCv<f$;4+SzA!Pv<WKq{lTA$Hcrh`>#8jHZ?%d8(
zB3$U>g6)=$;mCkw@=RyL^_0{{!pwkSwuw1Zh=f@to*Wi^ybtzE6LW)9a&lWNB@kI)
zVj(@AiK8YKnOJOMvx)Cad_@JCSY_gC6H84jGqJ+NN)uXeZP9WQVP2e4$sa-Houprb
zIdBU1f||T@59>^<H}UH?8Q+>%V`42wL6^D{eveJ<o=Sd(d0V0z0)~wyHnD4(<lI}D
z-{g@%dap+UGj1`l)x-}bel)So#C8)qP3$sxYBlT0VF^0|q-s1XuTgZjiSJG92`Ee@
z@#%OLk%i0i|9X_Q*Tg;(2TlBJV!w$4CVmRKWB*aV=6tdc65kYWF-XifWa6+15*a1&
z^YW=(`(_<8xuFaHnYdu$go$5FoHFqjD^Ke^m+-rZKWIfJhJF>A^2i_8xfT5h+n***
zQfZ_7hZF;o{x)%%!cCkr@sEl2H<E_V37w(AT#2PF%jf88(JuP+BVo*((7z_mv)X|)
zUbk{?RrI2XOLSQ#ZkV`CgEVo~#5MYgqTzh2aP1|b^N)nDH~Np%{eLH2+n;!o!^*^M
z4y&T!%9V=nLDSs`J;r^6x}qDgkYVA0iHBSjvGAOQM<(L577K+fh;+gnVkRsTvI)h+
zfW)w7V)fG6oxe#?>3gU7#WAXzFiebkH%x{S2Qmq58m)<f7QY7iKGQYfnJ8ePQ-xGA
zkV2%4m@%|MY9R{=mY+)c(q3T-A#$X0q=<#5EF@VdZsBQ*({JP?)K9eVtOfm%@MQbE
zq81tkuf0iefk`0?#e%Z_U0S<iwKOvD0+VEZ8sC*!lF&j4%fIbp-JuLZR)F-(S)u1G
zykMcag&G!Kv{2eYMGKWIl(F!Vg>n|kTPPcdWtM$Cqg{7qPA{1L>=&V<^Fu#Q4^;?~
zQsP2o3-cQ0RJBmeLX`j~KPi0<X3Vh)6O#C{1@3zcTS#S9M<={u`Fk2uSo-r3(sSbi
zKjgn^@rwWwoWeCNbdLMBRLeqb3w11P%g$l6`@Yy?WN2KNw=b4y;dP69>d@6fmW2p?
zvW2%S)U{C0LL(~8LVXL_7Ivnly<wq&g~MrS3^i7Tj@3@P8%`s=p+!GdpTt~?_ln?6
z3sDPAEF_Oipf74_@&2?dBD|cc&G_v5U6P6CS!iZ~JJp%QuyuWY%t8wbf`v8~T3X1r
z(8@w<3*)XQt?85eZxC4j3w@GH){V}b9%^f$orSk8bhOZ(6_!JD*2OxoJ357D#)aN9
zqx^Q$iAu0Aae9b>c}XX6^Utwv7T&Qi(BehP=x*U%3;is-Z=r{Uo)&sr=wqQ5JEB@E
z;p-5e=FI!BuRjdmV{h`Y&Z-8FbyDW_jrO;|okasI9!(XJ_9p(Zq4}2=V?+j9_<)+R
zFx<ir3m?*cEDZDeqA)Xl6m&gb_KE*IDEa8*BvOW7i;S=^(!wYz$HJk_{!?tixfX;Y
zcrLY7T|)oxuZ2%&X*Md^7;j;Mg|imUS@@KVwXlPoWnq$q&nzsru)^Z5Buud|mv&`g
zs)cD5W?GnK;d2YqEqq~NhQ*Vr!UWfUxL=72XBXxZ_u|6yqA;7Sv+$*b#fM{cME^1|
z@(_PZ^sQ^Yg#{MAvarO$LJNz?7V!5Ig^2+J#kOgeG5gubQVSn-O<pbv%PiDfol6Nn
zh<=GHEv&Mzf!ee1wT0Cd)>>Fcn3?kpRb*ieiA!rMRnt~)%X|zcbgR4GLf(|nHQsvE
ztuDhW3-dQw*lb~og{>A|v0_&rBz+fXc+n631dL%DhsMLC?E&%q`F?K}vtqj}?50Uu
zIAY;@3wtc=v#{U74*}b9BlM$%?VCeu7KVuL<sh1xUF(gU0~UT_?*u#t1NbvtO>pe7
zV!yn0Oa0yN4C!YQj#@Zo;ZF-EEgZLS!oqJBez))oi))s{o6vr>ka;78w`wpj3+W^h
z|07^v(kTmnSvYOspP-=B+x}eiZ#sc@eJ^xoiEo@2heyxQM@@?o`PagE3oc!vh5syE
zupnDdEL^m3$-*5AcP(7DaK*w63pXuXrRK*ZUbAqW4s&g;SvLH7oy?r(QO-*Vzo}T{
z7Dq&b=<T5NUxGd*{ho#U^!66w^#5#Ne%?cxQ#-#(S4Dw&AFs=atoG0Z$wIAQi+ce{
z;L#7&f@Z;@q1H~<Ef^L|n$Y-cqg1%)>`)CU)Tm^*WS`{ACBk;V<M2@uTu{luQou$*
z8zpU&vU!6p3fU-XBhf~JjmpOg6y~*`HsZ@ePul!Nc=oyXvYxW>w9RE(JZmF+a%$<n
zed`^Tm-gM%)b5Wmo;PCe-^&Qu{v#&IMsXWeM`RbXQG053$#0^`HejQK4RdvrQSua@
zl1j+1u4>wIHlDXp+C~{0FWBH^o-Z;xujTBW%rIj`sLtllODy+?+;TR`+gSEQv9dNg
z2OE&M2dRP$?oHwjCE};s)~#%#ijBcRO{&_cX5&p8Q5)55)UZ*{MtvJE+jzxB9UJL3
zQf!26ylUgMAWN!^G#fRk7RgsWYk04z@9i0_#pVP&nQ!KVC1HEuOp@2+X4uHI5ebrb
zpBR~6w~<Bp8*?dvcK%pSUDibMM|!r61_5&u8*kWXXk$aKSgsA{?bJp#a%^;46|(It
zMo)Z|%Or-z0S_rnZTx;b(sWcp&ZvYu8_jIIZKI=&<~H84(b|S!BW9z8&231T`8HYx
z$hZdST!Z>JKa<2(LDBv4b4GGu%0^oo?QKlypT(ndw?0npRwU9cV0dO~Y6ly{M-+)L
zwG$O?qnC}|HoDm8YU3Rn-C5Oux%Iw6Y}ezBkwo6L(Zfd1AgTX@?5;tpF9*Ak``CET
zMt>UvZ1lC!kF7qF@V?ChT)t**t;yv|&a41ubRgBpD<Ev1NfelLAfSI>V~C9pZG6OP
z+n8!&D6`Xh+n8YEV;jS5jJ7d`HMcP`sKclLwmF`EUJ_(U(4S~=r9sYE8{=#k8$zGZ
z`CssfEHNbe)hP8S>r<O&ZG?$7CIxvp^gas^GEcTKud;9a)n%cPEKIZUxs6#iX4{x<
z;|pqLSJn(xQVJ1y>i1A-J8PzI-dS9b+?f%bWAo>3m}g_YjZko*<=j9r1wK(V?fkgJ
zkJ8f?*jN}4uW!#J59wdoSi<foT%vv95=%J*Yz!(`VsOC{%WbT%;khW_VWo{#HhyvN
ztAnp?tfsj-sN>)pin5{DP^n29Yi;~SE3&c9#(EnEZ2Uy)va!*|P8+*yY_hT0#ugh}
z+1IjA_cz~9e#cS&dJd!8Y;3o&gMF75Wq5O0?Im0CiEPcw<{A0jHomv<qm8{b_Sjf?
zJ?RGy{D#rOzegVPkC26Zw49ltk>BR-w=wFC{}VDR(ELFgM{FFm@w1IXHh6-7MKc^`
zk8krQtH*2{XB%z&N{X0uB7k$>2@`K5X6@V*x>6^NIFUbW{AuH|%~wvGv~kMD1sfGB
zr2b{&ZyRUnXKb9N>zEh)$Ho~pzj<_{ED-Vv-)f!mOe^-U&EIq5KO27)4ObtOM<P?H
z1h$2gi-ELDG~-E$Z;fpHS7!EA8`o?+u<_8wbsIN0^laR*ag#a`>el-$=~f_WYuU!X
z%EIp7B37XmcWvCWaX;v5mPoPPu4S^I+p_S8?$?HBLkd#aMpEY02+LH9jZeoVlET0<
zznTr5p3}jL4h;HO`fvwNI<RPUNfF0}OAntEv4iOG0m+_?0uG*VP{=_+$Di|4v77*K
z&QIipcapE&O1cC8EugT2A`X%q6nF5HgQp!7b&%-b83)fg(7Qzn1zVdE6yZfh_^?uX
z$U!j&2VV8xx#}oFOc4l&HjgGdfP+$wUr>nvmJDDYMOabBA4-WWbDneXyo0fd@TDSb
zQv6|9+CdoyKPH81IC#nNPo<S}P~JgV2XfuilCwgjRB%wyK~)FU0)dqrRCZ9s!HOn1
z-<S0zf444n^Sr+}Q{6$mt4XBK3$BW-v@rUzgI64+I0!qa>EKls!FD|vNn<NE<R4Xp
zt~;U(i375R?})zUpq2ywMwGlXuJc@0gas>`r#r}S@Tr4|4l*6Q?x3rKZVs{>L>#nq
zkneDhH0n8M>flWW^&Mn8XyhQr!OgP?4II4TprOMpyZ#y@1MA82M1;8x8V8{Xbw1gD
zVv>iDXNU+Hq7IrlXzuveVdVvFe@+#69oAb8Vh&n3{^=)PlT}mobIt3YN48cDT03ax
zpuGbj$kHZ&9fCV3$kx`un&6;)2M2FE=;WZY<C}LgRp=OSa`=#~3yW3-(n;(%E}O)6
z9CUZ^p@WYCws#%$cF@N`4+lL1N-qbG1GDp!=zA3FV1R>x4sR&J`|Q4}+5H`CtQ_G!
zpVLP(c<mmy`h43tI>^Cb2Ol^XLbhPe@YSP?7X7oD?Tj+|!lR4=hcbsc80KKKgE0<1
zb}-z*NC%@Fj0lQu7@VQ*73hJbKaLU^>tLLN@eaIcsfi0i44<gNCqWic$S{H3-7&Rd
zzvv_fpV6WmtaLEh!4&G&!IuuEI+zyl&kW$_4!&?OBfzISSX?*S>aCo?+d>U`CKIpP
zGCC_rnjOHUL4D>rm`6?rUpbiXV8O=R1r8Qcjb)4Q(y-<4Coc+^O*6z5u-B@FWA{^*
zZ~*oWFLSVz)i~?BM@E-3$_wavXYH(&wu;W*!5#-cI9N^R&sI42j&j(!4%R!^K=WH1
zTI)a^leW$QPmcW1H;eel_p&z9hr}}&Hql(;{>O+>gZ#T*w>a49V26X94z@Ww>6WtH
z;SG&R<g8vY%<SYOvdh743Us(rRN(0+N+x6y;g1gXI{4YaAqV>$?00akMdm^Js3nCC
zIQYrI*|)=_Bwb8@I=I2?;G-l)4?8&G;FyEs4vrFzPI!DRuo3a!^-gf0m5G#4LXU|j
zZlwI?;CGs?i;gb-aPX&t5-v)*IO%W`CLTG6JNV1N-wtl@Dfx2tX$Su}xa8ongEOpy
zgYyplb5LMZ;<-Tc|5CBL{Sh~2x&Q8SAs`aD7$7N<|E>S0rO_+@qhAY<s{!13)pvu}
z1ANYv^qUTD(G3<0-*#}%!F>mJ9NcyII+K-PXOYfV6;d7ql!x>i53)&N(o4;AL<f?C
z!Y+!qkR2!v90x9Y(1GT_q#EgsgMwzBOE9Rk;2nV%xv&CuKwsWH`SafXE3i~F;<14)
z3b{ydQPAZ-GVp{8US!8qo~0$^cA6($-&Yf<!o4w*{B`W7T>Kb~JnN#Ui>F=xnz(0N
z@Nfh#!s3C5L>D0!#a$%3C>GF@0{$<PBQ+AzCPX9MZ$=2=0#}pzuM9C`k{&DN;yD)?
zE;3y_@8Sg))m_wZ@uG{;F3P*8;G&F+mx9Wab5YjC<lxH3O$QRE-1TjMr>+ROtFWSr
zDlV$JsN|xui!n9A+v?{KGWEO?YW|mh6>2pXrLuE|4vf9*;uROKx_He+ii@y|G#BH#
z)J+ZGTWZqvhuJ5B5n3~#P{?lsqP1Mqc9HI4!NH6=F1X4{Bx)2U<W&-X1ku-BWVvYO
zqPdHRi@GkFxM=F4o{Rb}8oFrYBHKm(Nr??yyy1e^>-|vAKTN?Q7V9az873!aY_5yO
z0dhqZ1}v>TbVuygcE4-*n}au9L|x>${y!0p=!FSO^Zxb~p^HxFEf+BtZCtc<(IUv6
z@1j+Jv~)2lxMiiai)xXahU23GYgH&S+_5zSCAV{NwN1E#i{o|D+q?cQL90!ekQ;7E
z@8qJhi_I>+bJ4{`R~MhS81JH+i+5ZMaq*#x?k?VC(_9R2(Zfa0pxnMLdb#NBqK}LB
z0!jf*5RUo2h2b$$@Sj*e7w@~^d1q3_c8%~BFQyKpA-VX##USb`m<qN_jFhe(?ldx?
z^GN@D;zurqx)|YNq>EuLJ`Us$r;`8oop)6K<dxI1^C}h@6(o(OVX&{SWwv=I*?gEZ
zmR;F9c^rE|P32l5>7_SEC%E|3#X=X0TugK^$;EURU$}_R4SnWfs*7nfLKjn9@G9>k
zby~6-3#zv|SFy<FF0Uc-*AN(@Z{*ByG1J8yvaxzsV$43v#cW!s<~MC&*XZ3ha^||2
z=VCsq5mc{%CUn$<k2PVoCUDCK!+AAjv5T)<taY(2;925gnTzEvmIl#^4}2HIu!733
zl-fNwLc20ZTIJ&F0AcFt0Qu%|)Ww<rdA!MFy^9SlHqmE_St&aT32A8?+5Axnj1p%c
zaf^$sF3!3*=VF_S?JkbdPF(D8vD3wV7YAJIa<Q93-o;*;%D~w7F7~+ifs!@hh$dX!
zo_|pjNM~j2Km+?+Fff|bBJU>`2VER;aoEMrF1HB!oMBxM(sQD#{jaV^0+~nYc2?$6
zR1@9T;RzSNxH#qFFAhc*zq$CGZa<L8j0`0H86*)uNhNowOQdTc_S<rizg?Vm@edtf
zBzxV9MHqN$WAXlsGl2x+|GGHu;--sRF8*^-r$hL%%kSX05a1VGT%!544HxVX=2ZYp
z{px(|s*CF`Zn(I{icR*{4M=SFP44+GLXV@jUEHA$ccHkr%jURv=;9GQ+xeu@=acTc
zc;Ip;o8P($J;QopIL`5<g+v#U3;xhy(wN3Yk3}Z*3a5;SW(<j{E;QEPg-HiKKg2Vn
zWY9TY#0)Z69K|ji7cPD5kf@)O7^aXL!Ssev@)z{*gohdhO1xa4L?I6e9ycOlv4<x;
z6!y@}LvzpXqaq$&@=(^pQy!l7@QjCNJ(TkBoQI+w5<Mh&DDL6$^eN<_n8(|~GdO)>
zUY>tR_5hE+A4N$IoKX2EVva>P!C>HAi;z=@=RLgOp|poG9$xhD^?ym6jWCHqX79^n
z_Uy$WMoBE^p}dFM9_o0gK!F}!@sQ%7l84G3s(GmHq3f-rxw=rrLsbtv`c$}JgyEZ_
zks2Nvj7+HhF!r*C$=}C5NDlWY?mr{K9#TEj^!O1FylIp4G&UjVh<|i}qAvGOe$7KI
z50WnMWGf{QN%xT9;SG=fFhZt>*FDtpP~StAhlq!|9(eqU%sih(fz0xEdJdP(vsniZ
zUCt#j{INDVtW<;y4-dr}dC2kbriZA9Tn~*sH1W`s9dX;Q59>+JM8mfYhUA16c|q3@
z?=&=dRCbieTOMK_MtB(Mp@oN*9^UiN*F(OCRvtQe=<K1j2f;&o4;?(v!?f|x)<ZiF
zyny1JV2OtJQB*gCCik=7_Q3FKVqV7}_0Yqt97E`82wkXN5AS;DLAr-`JaqSXFf+EJ
zWMq^faPfq&=kokngdTc%=<T782d1tug!xa0dB+9uzY<zJzVf1<hxa`U_V9tnpY~#a
zhk+gjdHx+8k6XI6iNCnCdPazW$Pf=7dia<Or6V7)kA@@<^)M_@1u10UUnK68ju7X!
z(cvD71TUDQJdE}*jh*XZjEAuS{}d17XtW+CdYI&4yoU)Muh&lf)PooJRW3zxqXqvf
zL?Xjyw3#5|-A2)-`~1n(V>mS+esDc$y2s0h{gcQGJk0Pg)5Dh@=6aarVYY`k9*!0B
zYj`N=#7l<oILf4X9_F(nZu#!9UCStuN_%1pS)cad5@QoeY{~t~!xGlb!%YuMJuLIE
z&%=HX%Y&jfc-ZJ+1($$4tm4=q(Zd>A=A6)K58tqj-}$PWCZ!Bqn95(+to5+Y!}=gE
ze_O*O2L27_*%dMV>1LCM%^r4n*zMsv4_l~Y58G+pvj4iVm8Lb&e?@KFJ9c$fbcctX
zH0H9cNMV$Lso#6p<KYJnKXM>cD8f*qLXmm_B-`GgTq4i5$UNZj$R5skIP2k{ho5P0
z9)9z1$irc(i@oe|3ypBZ!%^x}Xx@BNjGwxmH-%JFI6+^rDfSEP&=dyVYn5vXm6qks
z`ZND`4}W+#<>4<6e{xW}Stlu~MIIUW;NV1#KUn$O!)Xuy&=>+DllXz={q!6PTxbgC
zJpAk7vWF`k&U^UJ!$l95I5z8~U#nQ;0^Q@MiNx82*D4h$8r(cdc$H->t9{Mm=G)Ne
z9?84(&>lT>o!T=6(r<aV?V&({5(NvCxZ~lj2aA2QEAyU*`yLbzs)q+29(oXILbF4U
zJjCf#|99cQZ!4m|nEu$8nCgLxDtG@MPgeqOQ}zANJfGvbzKBZZ@!j{z@I3FzQ{GeV
z!{h1QGDOIbDWo!FD9St}$xISIl{pk4Bn=wSfRM~&9!kdl_iXk5eD-I3)?Rz<b@s6K
zI{WOi_uAJBn#EJ?M%g2}X8wJr$Tc?9og(~Qo9Gx_HcY!tW6NuR1Y|CL1>C$-<kp=c
zx2fCI#xiE3S2TVLjLXX=RA~Gql$3C<1Wkf2p|FIg1Ve%;!Ij`iuq4<Lcx#3ufdV;=
z*|;QMy;0D1Rz6+j_!0sMg(O5I(3cM9E%%C~u!&~oaJ&;KA^{Takx)WHQ6Z$5gyIq?
zfvF+qje^9D0?w)Ul!DgLho=Ysn-|<C;eH7%_GVU+P)foB63R&^FQK%AMqQ(2B$SnK
z>5YHSaqz^}-=$j+@*;x@61sQEt0>{_VI|_7ZWL4&qByO6^K-wNgcJ$iO4vakni5ha
z43RKYLYjmJB{Y|iFX15x)g?5LkS(ExgqjlK66#8*B_UlxZ3!8oB0E;+-xm91-g!A%
zM?xm6NsSWy#d;BWSi+y>Vp$UEOQ<LCFRz4y{SgU2yb$FPiARN;yTrO98s<o7C?Quu
zV+oH*c$}4$KwqECLdVpkFc7IZB8!2@107;bB;>JuI>ed^NF*&it(m}i;SQrMBs?LZ
zr-WV-3M3>Ybd>O{geN6DCE;mygoKt7T1jXvp^b!97xMOK@r{>iAN?|3=l(cPP?Ev|
zw3G0Rg!U3TNZ{hwT{hC`-IseuzbcbDtY>B?37sW$mGGPpMLE(?t&0RQEIk<S#;%d@
z(w~tYqDFkgfikJ|R9W|GCfx`>FQK=D{t^aA=p&)8gcr#y;rl5;mE5!!B=n<7Y)DWh
zbCJTb)f4;5UKVuj#TqDKkc3wx43_Y+ur`0b<`2D5aQE09@!kuAVG>@YKC=K4UXw6f
z!aEYCNf;sFbqNzBOqB43gpm@)N*E_$lql+G31b8@?MA`U8~?tGiHw)9KrX~asCO)~
zP0%MvcvHe#5~fI)EV3|_Y$ZMm+mPXH2~!3Akl?>A;C#BYk}ylcY&OD;%o!49N}wwY
z^0%p*Jx9V^jxP!CiH!587_D>Pl~C!4f4`@AE}oPH65f}vkVE+9za^|D5GE~_@PUMN
z64p!jP{K!)mXp0&!V(EfC9GtpOIRjhxr7z}m3dCtczyaXUmO<u`021D9}AxUkFJrh
zR>CI|J{4J3bqZhHbi#S@i`r|;#y^v=LBbXZTP19iu!+smKGNjT?9T;4&dnm%%?sg&
z3|~NBNZ2OfD+yoI99@WfDPg+=I@@uRbqVRHhYL*;%bF!GMCQF0d?SI;Bmc|$j_N^v
z8TZNfLBfv`Zc4Z%VJC;bgyRxUNZ2jmCkgu{9FXv{gkL1=k+4_7uM(=f7?yci`&{=<
zSPX6sOkPXbC*e1mg=Tf{)}2WQCHyYou!JMDLL$o{34d@XT}#QnS@2QC@FjRu!ZE5}
z*Kl2e;rODQiM)gFbmmD3rzBjYv7-H_1(0w?!dX%GHa80@$%QKM9v=zksos-<3xfWl
z=rv_wf(SRvUzTu1!Ziv1NVv*j%k>`#f3wz&v$<?bAFA|~`f#UkHhY~dkj%azfnkym
za$rojhI3oO9olmlo(xIGk>hbqhAu;vp~y)5lc~yh>Plu^o;tZ%P~vu`A;XmM{FO{w
z2L0|@GPd6=c;rfE>WTQ7;SE2u>N|31k;v@J2xJtI0U3p4JTxbW$S5pQ`wGX}Q5g)x
z=@Bu^LO%mCip#i1@D!8L?T3HqC1jM8@yW5sf&a9Z$o(=($!H)WTgC%2O3SD&qlSz!
zGRn%RBBQE|ax%)xs3@b7j8_%})%t5wE(H~2{3?7Dbi6lCN@el5ky~p2Qzo^Vj1(DZ
zG9DECF&U{M%=j+ORPI<~A*=orX_80~c}Qfe+%{HIMlBg}8Fgi(%cw0QLq;7Lqx(ch
z_HDRqqhGUQV(#Ao@j6x0GG*-kG(r4f8TEvOM+D50QC}dG%&Ud?xLx1oJ^CMoc#e#Q
zGFr-LCF3y}kIQH-BVR@%c9V=IGMWnJ^;@J|8I6h8N~0(q7Cw79FHc4@83WEl&dv_L
zIuZ6e4;1&WmDWPW6EdD;7t1J+F?LCiWc7E4le$T@(yss4+5?Aan|JzL6lyJ_jf~DR
zy2yB1Mq3#jWOS6#PR27b+RMngmO{&bTLrwZa)$7rxTbOoQl1rM>m(Rj(R9#3#NxcJ
zGM<ysQ${cLwT$l6C{}86z)@3lQ$9s;j8IN<qZ#?1XJsb`z1d1;j7b|-<&*w`jDGA*
z6?;^?DB~p=A1PR(;AI*8WjG341p{OZl<}R6?_~^Px3VNM7RwkcV~C8mWK5AURK_qF
zW7q;RUX}5hjMrtnA%mV|hO^z;WsDGz#gL}ub9J4RkupZHiv_*pn5<!u_}Pn@L<qk*
z5g#XGf{ckW#*2#YzSVTs$@nCJzbRv~jB}9~iIhV+`H8<RW2%f<GG@zoN5(W6GpNk3
zXqCKpnPNq*xbf*sy_Ui#!%P{mTj4U`92s+EyeIQrg9hKl=kfoqjQIlRabSkWZWWN;
z@m9h6G8PK@A~uE9Y{;zw5?Ldr&b?Lefs7Ajd@5rd+fc?587pP15(Qo=;Bo<%33%7P
z`U<L|a6S65jMaj^R>p|;f;DW$o8c}jhK;uhKH&&D9{FT@INw_@<1-mw$k--hgN%(L
z*Jf6HV)!w#Nyg`_{(%Di`+NLW=3gzcx5(JaUO1Dr>sA57<u7Z0NrNNf8yVlq_)5l{
z{gJPQ5Z>d!8yOgQ*TbnFLj~T!=Z=Y7xK+TZ+z&E-lyOGJSs6QJ?4qHQag-xb#!oVS
zld)gM&oX|Iu~$g@l{MO<mAhTAM?~%0VMAr!E~wrmx{nWC6xx9UG7ic(B;yYmBr@rD
z!F+GfEOSiOVS$tFn_C9`co*C*I40w`AfA%JUEe2UoTRy{5a%{;vJv@6Y}`F9<In%{
z9`s}9WSplpR-h=jAmgHpe`H*jaY@Ey8CPZe#qJ)Y<&=pPe3)}Z#%(J;y;AINj;!MG
zYcd#m-7Xk>UyQ_+<zqKw+$0a1lr~(6-x3cxGSXkTHGGwG4+)8qf-y?GRW!ys5LE@5
z0#m{L;~E|+AJ-Ka3WzX_zFjc<Rvr;cfvw<?!;uee7w{cNPEUcapp}Bw3IYX%6jWDG
zLqSAAVFi^HR8bIBP(;Cfl&k;>iYh3fprnF_c|om$;tK9jFiA`>Sg;qgG#Uh248BRr
z{Se_i<X$Cw%aEazf(I0oQ&3((X$55zlod%^ZWrvoUGVI!lq<Ij3f&32uY!V#3Mwhc
zeJs1moq|ne(#b&jqjw4#r-mPHRTZQvNE6wsDM(Qe6ZisgN#(d$S{tq2YZoGf4=QMR
zr{E!x%4kgmwG?D4$Wf54ptgegY!C$*3hF4R%StK8R4`I06c<_etY?bF?UUjQrCh9@
zf-JHLN7IjP&F4n}m!}?8@K?oH0|mTu=a<_C;lR^{2pcMROhGdR%@sVZppk;63i1>r
zST6;Q6*Li#;9lj!uQ%mqRPQ?lym{xs%zxjcjPmK@?iA!JXrUmf;7J8f5GfujU|(Df
zhvDnl+5a@i=4_3d#GYbJ6%e5}ND>*QS50f9;AsV;6pU8TRzW)jFVW;Gct$~c1>F>M
zSI|L0M+Kb}bXKtFPC?7=p@Kb29eyrr$hw^Mb82=`&{e^6d~}f*DVs-g*GHU?(H;tV
zD(Iu2uL7QU?WIsx(VM+<B2M2^{G&}FD|(0gFDU3IB)q7Ar{tLZ*H!s^7L$0{Q-2zN
z1w#}JRWMM&AO)`|7%bZ7j|%D2xm$qCGLr)amaQ5+r6_n+!3YJfD|qd{o*FKYEu!5<
z{E*-2PTm^|7)G*ocfv|#&8>O(PQe%jV-?I$FjK)e1>+UG!%<KtdxC<A3f@#OnN8%z
zCUIQ66%b)YNlLz@V2Xmb6-;F<*5;5-B9j<+YZ3z~(}Wy~noec-FsHPXoTXs4f&~iR
zS1?DxTsG9{l=&P%rDF30d{@ANg1Q?&$sqAP5hYHSsteg23KlE)KmoT&|4+e}H-fUS
zHw;$fa0m5=9Iz{LxObX#5?PF;3YIBopdwqvas?|CT%~3zSgBwYB`Ek>!N&?#EBJzJ
zZ4zq~tW~gC=<O#8K2@+m!A1q^*re|U>lJ*a;8y>vl^^BMrDr#>+3DBzF@{YF)LX&l
zv<a&+UXG<T5|GNUMZs1fjX2A*jhb*HbEbqZseU&yw+o09@oyA-OGQ<1Siugeje?&Q
z{G#A{1wSa*t>7mGKZ>s0sbCierj&eAG<9z&xp6`GL*dq*@U6j+92fkmV2^_R3JxgP
zt6<ZzV4s5Ds62CX9zUEnQcB97C7N$d>_44<P{HqHo*Eny!bzuBH+x{>Y`X--9#L>q
z!C5M&f@2DfD>$j(l;AueAQz?i#P_7+X%YQX!5KEue>$*JAg86|c@7)}7ZqGma7XOT
zSUEZ1e!n8k5|^o0D}pQRI48ynoeA+%*53-Q(H^QOqv9V0*J*@RL{!{RaFaG%g{k6}
zg4=wps8ChhQ6Q<1)zGN+kYkFREF~xHDzRE}vWc9WbHf-sInY$-Di+lWr@mJg=3siN
zrNUO>s_;}eA}`rm4~{OloJWS2c?+Z<1}dkEp;nW~oA?T=h^i=|qNIu<Dxjj6isC9B
z`6W_R@SmL<6yxPYTqIF(er`B6NxA%PIM(h}ai5A(D!2vceigG?#=0Q3Y=qCGc2CA0
zP!SA`GHGdQdRZ0aRAi{AqoTZu3M$f6JgB0gib^V~s;DNORaph^pQ@tbo`zw)INW&o
zREmn2ic}S6rUi`N$c-~_Hz^@`9#T<VMNJj8R7`j?s3GK#bLqrTLb{6Df-+oAa^nh(
zFmn;fR1sJ4u!?#jm0MWJTvy<u<_B3S>Z|x<OYKKh(4oX5?2+Zc3^~a#Cy`)ug`CV$
z(NM+fD&A1>m<sx1X{(~0ipNznQjt)Rt0Jl5NfnJ%G*OYSqJ@g4D)Lk`Q_)-n*W6Z|
zZT51d7CYqRt?^lZ$Vpxwd_zt?!7fn34k}PNnMqcf8x9AuJ*A?hiq<OHs9@64w}ZvE
zjaDiqi?7<JMd3;DFGXr8N&Yx^Mn!uS{Wuj@(LqH=72Q?z5Nyw?=u9<G(Mbg__R6}E
z!i&AM89`SS&#CApc)qz9&hxt;3p+X`E4!zPiQ`gxtLUSmmx|{FPnVIYOnsndCX=#y
zWcF3@f?y-D^6iusT{B-&@v@2`Du$})uVR3TS5ypEF_8MOFl_TdLQbxdoYOSp#PxdD
z52cfSws(|C!>9}gBd@6#u7ZvuUR81INILh&UYMhfP_dv}bm}hSRO4(?MyeR4Vl|so
z#b^~{n5yD^6=RuE#WWSuRg9;4u&q?Q#S*HRq~cALFNm<6pH-4v)f_7Db+huPsCZk&
zR2A>AA8!==^ksP3s9vQOJnP3lEScYg@9r5YW~!K@Vy-CvEET_g8l5e0%3&_@%%k$C
zn6KhJL0>84AAUNQTU!%d6aB;`n+rLFY00Tk<WaF$#YZZZsQ5rdO0VdLA|pld8aRgM
zha?!5s#wNhF0LN_njQT}f=Me?tWxnY-wP{psEW+OK%9F67+p(cR<T{hS1LYLv5o^)
z#YQ1~y^7BS(nXlQ=Vxi$?z>6F=PI_U_(H{Ik-9|%!_sv*e4$e^;Wj3XPJF3?ffV8l
zM7~z>jfx*s{HWqvkwoHmDt7#bU*&F@SEApG=x<7Lr;1%Fepc~|irws{xe11!1j2ng
zT~3GUcR@)mo|_md@VzSb(O&5&spB^l`_=IG%c~j=s5nS7q9H}Y@6;TcM-7ICKU5r6
zaYe;d6-QJYRq-b+33W-uaZ!d-0-jKD^1l-DLO@sj_q~5w1vfmCa#qDT8bB2nRGiov
znz%>BhGZfaRa{bWnbxdaI-^zo%RAwA%3mt}rX|-ft7qOd8h;fxY3fy6SHng18v=%+
z)Fh)V)g+PIv^FXvEo@afmms~Ln!JlB8dM=l6RA}XM2zmalhmZC!O~DvLop4u21i37
z4G|5l27YLG8hi~8R!u)TSmUQhpn;pE`Gs<&X2z8JVqe$DD6FA~255-#M^^dp+l1FD
zEfQZbWvayZgQK{Hdo+~RP)0)u4J9>{((r(Wdo|oAN^-vjZX;)bw+lZTM83U{$JBGD
zB6pL@YAC0nl7`9}%8M)&G*r~kV@=Nf`&$ss-H>16xx5BX)~%v}u<UP<sv3vzzr8?)
zn1)mhPibhWA&u41kgXv{!$TUXYlv&8tD%O5ni?`R)X`8&L%N3A;#oYl|8}3mMmA&n
zx`h(i#MgF?W@_NMein60#WWHh)=*EwBN`snkfou%2GSR`i}IKfQ{U*Bw?|Em92&je
zJ=#FXB%OI1YIsaTQw@0<9@o%FLt_n1G$aI1F3T__C^A1Z;QtgP`1B?NHTO4-0?E)!
zLvsxU8j>1Le;nj%XrbW=4d0iIXEzInQon<F7uDoT8QD*2Xmd0|dds5`y6j+5D-EqR
zbY}xHNyF0`I%w#qp;LN#TMf@p8ET}r)3B^ciw#xM11;HJBrzkS&l1<rMMGB&omuAj
z0mH24qs&W&=S0bgbQ1_AFfiJaU990{4gEDduc5bw7c}(K&_~0W!G2#2bPG`URtjM=
zal!hF)RVDUFKHn0*V`fe4LQccCId7K)G%1X5DkMgjF^)@b58y%8VHH=K{a|MIxP-{
zil<NP7`_Nde@(-14c}<^mRU5s&QuMHHN2r=q=sqKa}A?3jMng$hAA4xXc((uf`*A2
z#<4XP=8P8t-~BVCf|k6In_EvyPSWtEAWqiMwoD5Wd9Id^V<^x<#d}+%z9ZmN!9(Kk
z`2oWW7Fff(8s>96YM8BIE(gW8x$8HFzryEe;HA2)t<ZzYJPygr5hA3#r(uDHMeO=`
z>icZBOOb^_IJ59V-Wp@FduU1C==bIz?E?)TYFMXXy@ro8ED>yLH7sSHa*%3RrD3^-
zBm1=3T5^R*9ib(O(;xE38di&>H5%4x$(>sAw3ehhCi=Nm^yDWRJ{A0T|Hu%2reTAI
z%~W^|8#Qdw@HyKpKZ720c`T)Ar9v#;{1UMx-J)AHe4*h>4clp9x@T@<mH&t|IFj{E
ztGe9u`xV>#WaMkY!BIx7c{vQ+1H41ScN#8exJcdB@Pmd!G|L)()UZ>-UJd&+?9#BC
zc1gn?4L?z@&Sd?p;TNjP+X+sgxmrcYVo<dPPYh?;1H>tw->4GT>m3k~$bO3Do@DL<
z<tsoCZ)7D%Pye&UVKxXynT9_#9My1)&%Kg)O2cvLt!Rytf+Ah0O*);X5;`SfYmP)l
z_t(y7I7?He;XFHCY)yaZwb1@gt(o@zUqQ!%5h9l~T&8i>q3O7y;i`szG+fuhMT5UI
z{H@^{ZP%5|Xz?QaSbnj;MmpgQ4L3DNI%FNUG~A}zaJ-z(<1zE6+QshGlgstc$V^h3
zDLTrYi7?93>$UVG&$H_~3>^_2g>{%ZEFG>6Plv5zZQ+=s;{`ogpeJ`1j`fg2A-;}4
zM<E>#j`S-QiCe95#|Vax^dwDFR7VjV#r5!|106+m@S^r&BKlUB1Vb+;PO(g7xJSp=
zPW&4^d9RN9bbO-YQyur~D5ayfjy^gb&{0}Pj*f;p%CO`*YUxPVQBFsB9WfoLIx6U>
zsH2LGsyb$Tkx_{)&^ooUjw5<F^uG8!+`LguM~Wyzr2$c<4m?+zfk&>=1o0sq)ma@r
zZiseUPkwe!yoR7NV@)0R7@?d?S5lsjXV=z|p`)ITEFCANrPg8b%EjV3cyURl4t|OA
z`jWaj9v0cjKwlq^ywI?|PU{prqT^9Pr#F%YI<j@-jmh3W#1Gw-j7oh_JmoPRkL!3+
z$5T2Q=}72kN;Vz2eB9p5?t3#E>);>l7S+=^8EYb>5pSlWxsC!INgeq*TIhH}N3*k;
zg_h^gE!$rmVmD4^5y@DU&tJpOzpUNt5-qzpXsM%>j!rr{>u9Z`jgDt@wAb;pj<#&B
zj}q-DzfWfWO&R@$G)x%D<Lh!d8_6?o1s!yB)bXs2J=@~D&eTrdnlZa)?l4jQE}}@?
zbadCzRmXE8I=OrcdO{}bp`)jcUOJu^^t)Lofjh+5!bAxBhWdtyIwtApr{hH(ujv@B
z<0Tz0i(Er>^w%*!$16GpQ`6=J19c42G5sSg<zRf`=NUZ3Mma;M22&-jS~H3CT;W`F
zm=6C)<W(JfkC11Cj@NaJ(J@xX8#>NhP8q3Vl#W%?f_D!a8-{44j23hvgWJ{}r-L3*
zc;D`LX1r|_<b+0k0$W}nZ|az=W4?~}biAcwijJ8&X6bmFC2x{=N5?d(>-5yARPrLR
zSKi8haG2j`MlhX9D;U;Z$gF=)j2k~@i)zl*F;B-FfzK3eTk>k8$BN)xHthQFo&K?r
zT%hB99ZPjA)3H#;A{`&-_>hmD68ulcVjX82#sB#@T!Q0%?8*1XK4OvH3=UrlmawSz
z$GDxFN$;)AS*~M+j*oS$*0GW*;l@|#=n{?3J{dpuYaV&_uFv7*e2qw5s{^ZZ`aYXW
z$t=b?9qV=I1`GqA>DZv-kd8k%7IbW4bLrTn<8vLGIns4}qhpJXtvbHYu}#OTD}oY-
zBZOz(4!#sM-LB&+_Jtg~+d<>zCx{S!t7C_bA9Y-<l=hvD?{)kjAftbe&GIUTGa2G{
zVW%a*ZXG{yR<C2fj%tNsKeNZFt~!1Z(Xzj172cTGt0S|0-F-T^b)3<=aQu_G2Xy>d
zDaJ*T-*p`1&=?#gzUW3C<uH0UG%UEP<1ZaYbsW=iPRDs2$2mfok=ml;q>fXfI;VB?
zC>3ubTnz0nlHAP6`-51>v+S~I!Tb+`J^!Q}H<A~0T-3p15m$6v(!tXZmvz(;ha-rS
z|L%#2*JlQQ>$s-l291D@?VB?G5%9WzeFkZyyfjF=rQ<d=s&cww;EoQ-fNbDQlZ^JY
z($^+(c^!aeCJ7r=PFD?R2Bc!~ea|;5RxD16X}~g2$v|ZTwgJb$y$0?x;2Q7@z(7$0
zzJb6%VFOVEg$zUt@S)re%I%%>2E)>J`6j;o!=Q+P5r-lV*2(&8aKovM(~2448=-`O
zk_L(!G^!w-6n@?Fdi0q;M)=)CAv|PszkyN)$`~jsvOHkm+tTT!S<YL=otp-6BIOJW
zEn}89P{F{Zr@|$p7hA_F8vjC4D7lJ(ss<i0@Th@m22u>vHjrT;W+2r-bptgFq#1b7
zz={W2JVaz(&BwmX=AD%{=hQ4?CYw!7)HG1bK)M0aV-pe&o5`omWX{`(gX0r)ZePbh
zrh$3}8eWa`?wlJpP}ji228K*X9C<tOvY8y!Id@0f+7y*#puU00W|EQ_J~WdJ3}hQ<
zVxXyk97-_I$UuSu+t+=}z~iFgh3aKf<+!lM(+zc+*UdH1*uXo*<D}CSKa+^$8E9tU
z2?GTNnj6SB(1JzUqm|f@PlhdKa^C1{o`ay+q=74gHD-TOJY^s2B80Ru(AvQBE_%CY
zW8i56mn~ee(AGdZ1M^M1XW|(H?b+!j3Yq9&pre5e1~wXa)<7o%V-1Wm(Ahv20|N{U
zG|<(+a|U`*EHz}H*3Ce713g5ghL<%R;YqUb?aZDAzVn;Wn?Y{_eGI%{pr3)h2DZ))
z*K>R;eC=K_lP^-i47_ZhzmV`@e%<mSiK+Dj(#lE>GVqFl*9;6dFqmCH^)N8Zz~W)r
zjzf{pevgbD6O8gqMw#nX>WP))lyZcD*M-bc1}-$uenY^KRFCtSE9U0V?d`-diO~ke
zPy=VzEWIy}dGqJg9B*KPfdvNMH!#t_Bm*-H%rx*OyV$@~_K|_N3`{ZbHaqunO4jB)
z-pEPs4czEnty%7<ky+C?FndL(b7U>c%Uzp6?+^uNT6DghIm^Io1Mjlg4a_lcqgQmU
zfq4eV!=3QVPCrG2#JSo2Jp)9Ti;(n%1{N7uW#D7hh!r=m)W9+W9~k)1z()p_P|buR
zYi2QCN)Xa5Qolo4|GSvCoI}9CN&^RWMkxQX_+}(Ce;BdKs|~C%@QHy>MO&o~(!B43
zwPD@k|7^`)XJ9?YvVrO1=uo0(SV-pju|gVCHyQZczzG8<4Qw{B#lX)7eqk3I_`<*r
zDu97)2EH`#4Wo;L?cxz%8TeWt$+4leoVG2sS?|o3wq|_GQ6tv+mN@b64g6qWmx0}^
z*Y(sNIrPrf-YMXT;xS%c&y1U<1b3%@KN&bIR&h!E)xdt%)W9ACdkyRp5Bkjj15<h7
zc(-!lSL#6nzZ*De;Fy6!2L7M~HaL|*sNB0&@-DK$O70Vs%U1GuIChe@oh*AQPI$_|
zX#=+m+&1thEih9#1`V7waE_X0;G%)@V$J_NySPK_NdK%N<x}akhQwx<f=dP%-B&Jt
z)xci{{xNW!<ETRXZv)q;b#eb{k3{K4*@V3F@rEe;O#{S9;RNHZD}y^Un<g|9x(V5Y
zVnQ`heo+pWVz_j3HxMVkVZt=wm~c&OIU2D{*cH-k0gskzvAcYF1v}}P7|=KBn<$o^
zo@Ix_lOg3uUc^LU6Hl6W%0$#e5fe2`)HDGTMNL#PQJGmx6gTmJiP9$SF+rb5_nNrR
zL<timP4I?0Qnq)Ft!P>IeiMYH1d+Gt5oc2RwEQwA%Chh#Dwx>4EBw8}YmUpA7&R!1
zY>ZYk!7JN{teKaf=iYtmGOL(KF%hE$dpus%#JlTrs+nkQCyAt*NHa0ci&dx0^O0r6
z;}4p6NKhVVUbj#8JSKJiy9i+|6X_-znt04aZ4((LcdFnK6Lm~vnxW1-Y$7g@x+dso
z^aar}Tz{TqC+nHWGQkyTvV}KU*vUstG!Se#Cf<DACx4?qQ?dombH`J-5Y0<59yig*
zL~|4QCK4ucO*A!;$JUz@Y<xFpY@&$?-XG0drx_^u{uiRnOfcM~@Pg?UCY~@+U?M3B
z_RJ8UdjQ(MpSbHyf}g!aTAFBOVvvbf*d`|0nCNMumx-rMv^CM$L>Ck7*mOd|vnGyR
z3EI>Co9HMg4><Am&nF%(lS-GEL_Xb|(TU8@<i_XabT#pui5@04l}??%SL-H_?k466
zCsZtOgYKD3dShDfyouf>USeOH=wqU<iGC(tH1U~mQ~834>f#@6r$vc#L$qUEqKuv$
zqH#B1e-qpvIFJe{5Xww{DD6b6tipS>!6t^VZB4##G1SB`6QfOxG4U#!-NYLvMw%FI
zVg$A2&ERztZ?y@18voWJ`(oon-Moyu(NUs~U9SbZ^D}t=$XF_d30_As@jv=_6BA63
zztPHY8qB<elSFF2gXwRXm||k4iCHGzHZj%2G!xTVlGBA4$oURCv1E*wiBpGX2s$aG
zlQNsiKwaf{S(5WDVsqK8CWtUf23C`h9^j2v{RJl8r#4!6#KJ-oi%k4w;%~|^vDm~<
zCVn>Yfr$@Id~Ra1iH}SyG4Zj9)h3pjSjK^7Vx@TQtaj1m9FIf7RWj|pur90EVk5&Z
zsn6}?eNQLWm{`kxF|onKCni2MvChPL%I}y;*HUClB*T*e`|Kp6cYe>?$fx`e*(8Kl
zY+1YSs5k=|wy?iUe9gu*@r8+PCbm=6mj+)_=a&XV>hII8h!NCsN#d)}b|r~?Yhs6q
zA58pc;yWSpdlL+Ghc)B}JH=*p&D?2X7Zs^x-QBcW&cD{_lW_?$lyQ>3nE2JiX%l~%
z*kfX^i9;s-FtN|XZzc|yILP5VI-6dz_S0(BO*C|pKmC?bsb?O&X8q1~elFUoU0A`x
zCXSdmZsLR}MvbG9qZ}G0E_Dm12kS?s@_6-0HdOb_Qv#Cs<0oOqE!tmjh8kEc?YxN#
zCe8}{99y+yj6`l0x=10knV&|lnz(G@ioltXA$}#L(!#KjNhiE!;vZTA3#BbwH*tgJ
z*Fx07O%u0RcMFb%+a~U?^(^QXBnz?y#e!;K<)aB+me<iqa&3yD{+^sTv?-%~<6Of6
zp=rUg@QP?XM#=Eh{sLxkEqGS==t35Dw2%4%4=hX-oGYE=%#yK)NFvX6Ct1V-EZlE}
z2Ly^*C}yFAg_0JETS(m<xkp6FIc-@U&!zH=>f;wuh~I1BJ_|%hAtbSskU$|b2We$2
zl(mp%;Xw=KER+{zsA{2tKq^_NY@wos>E|PSOa9>`tFUpL<nOOW7cUR^S}fuwt64}9
z%rOB|Eu67q-YbdB-?Qj>{viw1Ezl=h+(HctH7#UVsAHj)g>(zGMV73J;r$o=DyDCI
zGIvU^@V6%K%Q$^AFVh0=!eA=#x)vU`P|pH=yJcB;Z+z2?3Td_6B%?gk|EPrqtRu^5
zA=^TZg>DwQTWDzEF$*m%w6gHHg+>;dTgbPNu#jt^iG`*XPKkZUjair`;l!*^)9gG8
z%|yXI9vbBla#9$W)WX6O7Lpd8B*XDY0bA*#fVYJ<al>)JJ3SNi{HH`l;)O3~wzkm5
z!uMzLItt>`oc~*BCve)pXQ&$%I#{4(V|JQKA~b!3{4#ykLMIEIEp)Na)xvWY#;yui
z705}*!05AXl1L8=JuQr|@VbRw7M^EoTNr4ew}n0wZgE<UzHEn0iJun)FIYG*E5Rf4
z1KlJkFIjlm!rZ}Hf7-hFwRyP)-F%VZM5XkHYNZdN(png5VVDIv2OG?;ACWu60xwi$
zD#PDpVy{|wjeUANWw?bmy5v4PF+s7E@V1cuhJ}$9CR=#R!YB))EsVD?!Qy-mV_Ccz
z!8i-{?0n9Yu00Uj7!Ah`9ei!$EtVE0S$LEE*eE+S8qcc`uW(OnshcF{6bo;2j9B0l
z>yy6G2`?tP?Tsw$7kx)ixG2=LRbqyPnJhCK-@+^lvn_mVVYP)htSsB#!eR^aEWB%B
zfra-i&>O~lDiuf2h1y$<_^Ne@uiYdU$r)WJQWuFNPKJw)4=u(A7CyAF%))XDA6ZyJ
z9a|7AwZb)0ilYAw!nNs%i$<ItIabg<SXd<_EG`}A8tK&o@t4{rC~A#`wHCHo_`<>`
z7CyDG(ZVJR>nyCd@R@}TG%`wP183eFYq2KhJ~{Tunc53Cgp|)MY__n)!cV`4)3y&j
z&meuo?l6#N8%K(TuPuBdgly+fvT*hlpFEU9Y0UC1Z3~Tq9OF~&W}j-t$?$`PA1xfT
z@VkYb7Is<KV_`2fs%>nyg<ohr+Qxpe@G~vO{KQiuvwkQWYdt?f_$#GJ@%r-<`z-uM
zO|!sDOc>BU!5d8WTj7o%M$gR)2oG8KgQL&FX$yxf9I<fB!f^`^Tn`R@AK?#$qZZDM
zPQ7%l_6ad$P6~MS#VoTy`jS_(T8>Wrlct6|7S6NXjz!*@7YvyloVCznP{UGL85b;E
zv~Y>SX9VkyW>G6xWo*eH^6e{$s}}yUkmsP8gTF0YWAEEoVB;SuIZcF(7B+6s_|y8?
zsAS_7jXz%pHj3D|L*sA5w&B>2Z74Q$8-|T3t8-Kvt*@kLHjcPSzi;j>H%VmT=q%Gl
zX)kFB$nAXVpR7y&53UW*Mj;!d_%;HOi%I09M+oMnz=(~)HptAyMn-q7&Vh}hHXfiT
z8^vrCw^7o@y*BQ#QNj*)4AR#@Z7)eVd@kXAHtx5PxRY7R1}Q90u|^5*C*c;I*x43k
zY?QT8-bMu*<!toX8|f={7xO_UFJ>|N*|A77FWI4-S=mMv8})2t*{EuxnvGgE(ru*J
zh}n41#zS`aE=#qMW`n*vzD!N;dN_T^;q+yP(|cDcRNY1m8#Qh4qSE0<(+8)9Nxi+~
z=4RQoZDiPp+o)@UmzmbFk!j=gYXLdQLm|A?^e1{Gm=vsNn*H#9!t2|3#Kz+`8rgW%
zMgtp<*%&cE%eIkY<Km>Cp^fiOW-U)iADf#o+Do=*o<Z*%GEahg@q~?B8%=HG*=Wob
z;Qh{`@Z^lNtbI8*g9z)=j4IJF+T6x~MxpYMI6Wo(2^$4AUb8XWM$*QUHhS53-o{fl
zTH0uDql1lBR0A7rZM3t|#)dW_kR}9Ai$@Hu7)vde`bmY@Gd2h*_WT~L{lF~Z9c?^o
zqpOYQY;>~GnF{txq>IQkd}Yqr9r=l>>AWVJS-RQiZli~do-Br#D!=FbJ2%@qJN!%g
zXZaSr*_$>7*?7f9UmGvjc-cmO8~tp&NPXVd>?P`3qwu}P@XPg-l~VZT9l*-k7-(ao
zmt^YUg9Sf(Niq+%F~r6&8}*CFrVP~>hO&4y(-=s3RnU3K3!@|0cQ)R(G1bN!Hb&YQ
zZ)1XuQ8q@~7-M6sjSb_&#i-pge1>tNf{Z@>PH@&sKAfAFXk!xdW+&bfNpA``*~Vl$
zZuwy~%lpYGHr~3BHQ++{rS^`Ek4~q|urbrd$4hdiiRg42uX0y>pN6w+%(gMl#=AD=
z*m!0@bS@jMe2k&)oJ<BH^97~NfN1sZ(bC)VNqOJKLRtVDH*G9p0c`wgV~>r+Ha?)1
z+Sp>_Lq3R4w6WU85*tfxtgx}t#xfhrMVX&k8PMN*`)R2a8fHJ~g%kBh#Af?dHo6Q5
zOTLE6%;9h2Gb)3~@~Mq=l+!kxC04kSS>lhp`hN27QmGr*BQ`eK_?+q|8i5Q`u4eXN
zQ(Vm)Dd1KcU)b0|wYRa&#+Np}w(*TkYZl)v#kbq|$_{r0&-0U{FguBay>12HhI(7y
z?3MeyjUR06vawqf=110URdgq#Qk=gh8rKiC<tH0I+xUfb{3D_)$md34LS|=J=O_2t
z*k|LYjbk=`v$5aC?=}tzX$J&6C?FT)DJt=9!2fQ4aQO7gJ;J7TVuwZQjT-5C`{-*Q
z=Nz|jf;NrA*~Up5r)UXnoTV1^jZT~woVM|&4fATaJbvy<=8VEInyGU(&I=(VW^2tD
zh+ML9*~VWs{${tzg|67R$|{#L2c8W_6D9oYC$G`?Q>g|<uX6}LkXl)dF_2;X=q$op
zHg3~UI4I}fjt$8{5eIM}J5U_B4m<~{1I>Zqz;vJ!ihEL)iXOk@C#$cHS`NRV;5cF3
zXRXTff+Y9D^J1nRU1Gk&Evbk&DC~s$f5=csAe``wtCLL_6}ff@pP6^B!7A#YgoBa}
zia97QQtxq4>sW+df|oB(EbE@Q*TH=b9&k|F!Tk=7_16k7NtAN%`JXAh%ce5$DP<gd
z-zVDS8I?&F{>mh=yn_l3>Nv=BP|-mp2M;=U$U$WXRUD)^h&ib0fPMq?gOO@Zc#4*C
zDh5d|tfe}*HZw?L<CIT5`FU-^t>Q0Ibq6&>3DX6v>3~1oYB}Lgx2zzX)IAv_Ydgqr
z&^rhR_}C!%Zjg*SsOuodK|==*JE-U2Q3nkiWbvU69$~mrgl-V%4`F?focBmJJtuHC
zAiW|SJ`njONM<`=()l3yn1jb1<T_~V;PlH{BL_=%<|iC(YHb!2N~Z0~Z=RdgguOXC
zXv*3ZN|LyZ426=+-rPaHgMAKubI`)U6As>VFxf$YgCuL=pr?Z;9X#crql0JpL<g-z
z9oso*?Vyc=wyb-Fc>GM}(}K>c3g~&8=hi1|uN~qJ+6y|j_H}T;Fv+UV7Pu!pt&@W;
zY$6B5J3Dy)RzQTV!=7`(58>_(=tHcVgGIeU{jYE+vb9fUF9**%807F{6TKbu5t0Wu
z=<9$!cKSJZ(E%Oryx^d7q2!=KN&3}!$-&DG`m<hzlC-E4MdIsM^T<Gapo8V*!<E~?
z4u&`w>0p$Dp$>*Q817(%gI67Jx%)LIJoP}f@YF-G7}vVF%Kf?^zTtorMq5-*8@4oO
zGz;Khyn_i2#yS}1py-y`<fqf!)Gf7nT!KQlW<HVa;DGc7MfqPojj6=naxjI8$BH|6
z+u>(2-gmIj!8;D7Ihf;MF01KahJ#rSW;@|J@JtrCPGZ&0$cD|e>BIcN{gHupio_HU
zndjhL2lE}g=imcT*>x*}*Tw~Oa?Z_=3pg{p6i};Ko<(d%2TL6+bFkP!ua>nxaPXl(
z77x%SKBMyDfRCtDY>i%dOm(WHovohsbh-594purK!mvX0#kVbEs|1B&NnGP#t%GkJ
z>~QdjgHIi7b?}9Qbq>}$*u<gAA^cJBnS%`uHVO&6p{Z)O@a^zbq2#^)OKcWNTSU_K
z2V(VG*4~ttHs!UfZ4SP4@Rh@@AZYNqKjBi5?KD%vw5I1%_#^Kdc48TmfA<JKOvdtC
z#=fH+puutQ)6AS79Q^2DH*p6$9qgk1F9_#9M@1_=@k2hN3_m-lIVAcEdwFjBMxi7r
zMIuQa_uJ!OuaHB3?EU&@?RRj%K^YfiT^w}qJ8h#2!^I(Hba2JNRR@P19C7fcgEJ0}
z(o#7%>EM)u<5V8ue(i*)VD(6nfhA!$&2e|B2*Z3aTRZFEoP!GvE{ZI}28L^H=h?qv
zB1cbdm#9uu@_pJH!mAroKW(1z7bpL;+b%R0*O<}4EeE$9E^*+7!}k$R9f+*-!`7x*
zD7-5_S3LcW1IdN#LUBVI!c>O#ktBJD42~pAd>?+G^%Xm@iTqt7!*mh2DCEL&VY_f#
z&;uuf=YpxOi=Q74jlA!M+ZagyvSvoaMPU~uT$FSXby37cF&D*MESeqgQwuJNy5Moh
z=T63}KOLh32WO<ut2FL$!Bl!|Ad#u}y13s(DZzOke@C{Bm0pzpfQyYc4PLiV+QmDO
z<c!>`WdfFSQQk!(7YP>?TvT*X+eL<pN-iq9NOSR^iz+Uvx=3*mbHn#_H37M8hVGk;
z(&?!pO1#aAaHXQ&y8MS+RCiI+MJ+engim4(7i&63nYZ#o>1}QVpLUF<yWtCw*Fk>%
zY*rl?nJ((Pc*I5AMO_zJl-WM_VZl>R;EeV=pH+5Sf(T)-I(XDY0~ZZlJmzBC<se%y
z=LlFZB2?X(7qjB;23#>9{<w?O&G}rn$#v1#MF$rhT{Lmg)WuUSTDr({(ac4Gi=>O@
zF7jQpaPfqY)^T0VQ=_v|gp1L`T{31@h!KBMBymRvH(h@lNxoP&yOoR9F50?i$N#?~
zmCt=zAY@<`uG^5A#AjTz7xbfdRV$Kw*5zIibmtSx$2z;{;^H|M-CV4?m}Slly0YIt
z2tKxA^WII6((G!``%2{V>8U({*uzCn7rlfu_Wr$vlZ1U-^mTFA#}OYdxaj9%t%pxM
zyy)U3YL|zS9#2}KKikd4mo5gl80ccAi&-uPxp>9Jco!2~40bWZ#V8k}T?}<G%*AjQ
zBV4@d;x#JmuaS%Y1kLY{w``Do{CG<7DfzFvaLbx+xESezlm!KK|2WZ*2t&=bb;tbI
zCgTJ$R=`+1(Oz7`G10{&7jL_m>f%iolU+=4!P}^LEp<z}fMb!;(pT*b-+Cl+>iCX}
zI)#(dUCeMXjb-Z+UFgOp+!ND2&RMf2`cS7ZI@`q@7b{$>bTQY(JQs^yeBk0;7xP`b
z?_!~g_o#T|vKCN3`)kb$hhw>$fXZK)i&#SD?XR5>v(08a?D!WilE6nUmbh5T;)yRB
zW+a^%m(e)<mARaaQ#eT><R3RKYn6+SU3}(ZgNxOCii=O!bfWG&6~facYXv^DaB`iC
z?DIv|3)uKtXiNynu+haP7h7Cxb@91i{_)LVGv$bKl8wk0g3i>t$lP9e+g*I+;<SrD
zU3~508y9<A>~-<2iyeabCl}wj_};}%8VVW^8pHn4AE`EDvwr+fGM%wg{%(;<gk4Pd
zvx{F`{3?XB+8M9&cfj3Eq<?xMWgo4*i{D-R=3+mM$)K#q<|PieIM69dm-WOCx%k7y
zF{%e2<Z{6TC(Fi;vIn<?^HK&z8Hk)<l6b@^0at8GJytmR`KVL|GM{mA)`jlD@Nmw>
zc^B7R+;DNh#YGo?(ZIU6<l-_-u8XUb&^B@VyZp{yg^PO(+_At%NYUgqmSka&ToC+2
zL)|@-3s79a<Nny2E^fJyJjfny6K|c$`?c=~IZS2r9_AgFP&}v}G!I<j<Dwte0Qn#;
zBvO>=!SWFGP{f1n!SUdG2t2fZMs>aL<b~&f$1XUL=Hc1FH!}-)h<M;sq_Ch5eK;}X
zWC~BzGLQ!zih3yS;T{jUH;rN*Rt=0&2xlD>@{Mpuz$hzquZR0QwDIt?hx<L0@=)7D
zhKC0{E=D2M3wg?TC@YX^9?E$r@1dfHN**eBJU$tm>KTomk8G@xMpq=2Jyh{f)kEc#
zLD8>jmn{`%NLiM{q{fdVQar?joS4{x8>y8@^YEaDhdfmGP}4&#4>be>A3CmUl<#G(
zv=C{=MI<i_?Zg^O9S@lv8hdEsA?~5Bhinfy9v=2k&qI9=k9hcdMNoWfB8!s8CXTKS
z&HK?(EgtpIzzf~uH2o$VFV&;r_-*LnF%OMA&~pVnTF{lm<6h`cB3Gm)*npx)jPl?Z
z50o|akmunE4+VnW%tLbz`2wHYHp(&8Lg0IZC)mo1!UrWiJmsOKhbO)8kOdD`@Q}rQ
z8d`a1Etp9m8)4^YvMsCWVXVhr<amY(;9-D=fgU<|=;+~j54}A+>!Fi}ZXUXO=<K13
zhprx;^T2k#*0<q3=Tl0r&R`(&U9lKjo}q__o_xB8SEI?-O2*<Ml@DdKkB7dr_8wmH
z@PdbaqDbxbN0|CU?*zldFT#QRvWNaGo476akF`0~rsi{#^B@neczDCZNDqTO4556g
zrI0Yx!!Us`?^My4OQXr*9!7Y0UC?_S{&!yVjYvHjO^)ISJry4#;AjCEE&6u$(7sVd
z$9tII;XMxvJWTX3$-{IHGd#TMVX}v*9^UcrmWS2*^QL%s+k@-Hlp@J{iwG;-GIsix
zJYK=<eqDPSn~pwaw})*$)59zeb3M%Cp!*{-+ru0Wn_9;hn34RHM)<CW`OMWawsTn?
zlde`xXWsWcEcCG4!wL_JSR)S~d04{H?coCtABsAzD;GO|E~`w9w2I<nZoxBQbmh5}
zr5=`fApXDhF(#2=B?l?>b4|t?4<C!XF0X*(P!ikbiIaKas*LaE2A_IZM<w_1sE_p?
zKJy^?kbP|MxFU!B9uBYy)N>Etc=*=CW)E9Dd?jRV_3(v<Z63Z9(SaQjobWJg_riZA
ztP~d(wu{q<#J?6iyt;RXhwnW6?BN#=-+TDM!%h#oJdD{~`=1HHj~*C^ui^bK0{O`U
zaRz?u&|VSw)x#bSdp+!9;im`u7vEd#-F;9gRQ^IFqe|>Is&VDm=$!0>9)9<5g=Wpe
zArF6eIPKw24~IP*@o?P32~nz}9*zlw<$OqVac+_1Ne?Mo5~u#7cPWx2@!&)0XFQzs
zaDf9vBr)STHa-=#Nb;Q`$z>w@C6P2>RdCtEuVWkTD3au*FvrS<AGUva_{YO_!SFY`
z`)spoEXKTi`eVG|;U;Z9JH28$1F!eJMfDz&wY)+)A@klLXOSeMiVxLCB_EZ2Xg+iw
z_xiZchvCEYQP@Y+hvmce;rZ}=I6hwfUvQMCjeI1hCter-CcgVDFYwX-e?cK15g)vi
zdEEG{*3aj*ote0`F6aIwc}0A{M{ytbP$iHo>Vuax7xPh1iLK^x{m6!deP;#aEa9W1
zj|PkKUdzm4ps4$Ol=4y5M>!u4_^AJTx^pPKj6h2J;fsKje+FpVgcG*%J}UUA$ddo3
zHbh<<*O0J^kE%X0eAMw#%}0ulhkR7`5%ZDiBhANyK3?Nq#B-6}LKN|-J)`k|!u4K;
z8a`_INcVBQbF`+9jSr?7U2-=L)Cg<)`1Yfm?!Off&-4)&rK;znu8)U({Ia?Bg^R&k
zEwYJF&WQg7SuDKZp~nW|3=Mo_`*_>OR3AA$8v5w$ql=Hnd_3->m5<gw8u>{0$oJ90
zN3M^?KAQT-^U*|z`r>+6&b+E=q31Ur+|u7%(7D_HpWe9)Ont)V0xX{N@f7<`q}CGK
z=loZ~owvlx%??@$I-{kKY~y2hZuT=i+WUCgM_V851ck)d|AM&}Q;2jB{2hHfE0A{%
z7z`U5CwAR7I{D#Yu{ub0_3@mKVN?ts-F$TS(a*<=K89>g^ziY#kKR6d`sn3j>+-z9
zYck$B*>IN~>*J#@YxijO3j#7JZF7Rr>#H-`ypni{dgx=2k5{O8KK^_-F~G+_A9N#j
zpBpE9YIP`w2h14;^I1NIiYML`Ldd{#aIg6o?qi&f@jgcQc-_Y+AESM|;fDu0MpEa8
zXuHm24!S?KxmsF?3{{yl#>ZG6j1E|yLpnJp_?YNpvX8fXOri#!EAl3Lc4oj-HYNkz
zSJo9v$Hb@5NLEQ>-gkUV^Rdmxmp-QZnBilUkB@!K^fAlFLLZBK%=R(I$9x~}`Izft
zo{x9gGF_u}h4aY{EpxLUNY6*I#?y6~y1>W#Y)mAVRuA6=G&}E9OaGsb#Xgq!SnA^g
zA0PVo$j8Bpc}s-^vJFSFbEWh*ujeiEvE0WBA1m+nX0`O0NbY{3IUNB}&T=FPSNm8)
z{r9oS$66ns(AxX>Oz?l|qh={{osS(XK&AB5L=y^Un0YzehPT1TF@$fu&wXs>Fq|H2
z^+9)$TSQ()zb_Gbk7W2lP;Mf*-N#o{IUhgy_}a%eg8qYm-}>AwjPLm@5#3QToNr4@
zgF}%*gv5XJv6E^ku29(}csR-F-5~pC4oM%s@zFkh^|8mtULX5700)O_*9@Ob4G)67
z`fE7TAaa0h<>Qc#KYaWy<jfV9FZ6jKv3^uyxL7J5`COF9QC850QV41x9H;(JMFaE?
zaMH&q8kqoT0Zvm_eH00R0B3xh^>N3C6yThX^FFTm_{YZu9~XUG@p0A1C028@PiL@~
z*>Pplix&+WkdPmef3YG%w7&&CP0&f?twz^5{C(V_=^m!tU~irc=QFn{c}c+Y=Dbyw
z@afZ;asVZO8^8;o2G9bS0jvO{>Ekqj5g>l1HeE(HDw<3ipQ^9Qr}t?)fFtOPGKp|!
z$+#aN2=Lg6c;NtNrv-%qL_~DVzP#kVyiTHE(Etah1@w4NO3?tt0+bF=CP483_XOdB
zQmG)c<Rt>!8{j^HmkjXg-OBEaOy8s3FNj<NB-;Zbi~3x6?eDar$+7_|1gIFGTmW8;
zNALaR1wzhB0V)Tm79b@+6;|!<BDco|RfBM!c``G>yA;X85DV~rmnfqQy~k%g7~r7*
zO#(CxP(4760QCZ71*jRIR)9JIG6STG@-T0PKxzxPp>c+}JHiiJ(&GUh4)Dj~pzeR1
zD@Ap9Wqf`1{-+r^0U8E)B*3Eq8U&zAvB~cT*@Ag@(PXEB1cf{n;PC*70J#AgQDEsf
z!vx`K{#s^&c;f(!j=K~vI-wvpFF>;ZT?0H9pm~7&08a;K8=ysiCjvYbpe0-NMo<tS
z8Q@9wGWWgQO5tWLI!fZ>&K6C!3h>i_XzKuN0({Xom)?^Y=t)T_mTX(GMY{mc1b8+;
zrvU8(bO=zth}tngc6#D2Go>-KN>5NuXDa_o(Jth_l|l)WGpK5Mw*cJ(JRk6PNw})k
zL)5odfSv*=S}as=2JS2F6QD0k*e&zL051d>)*-iFfWZeNrA{`zZ*Sf+-7=?j$R+*~
zd49+vG9bXf0ILFg9AHp@R{~56Fr8Tf3}Gt;m>6Iv<pdZ-O<+3&crCz)0Ivra&R#fK
zh`Vj?KAoF9cXW-u5n!Y!Rk5{UUvS&!7BM*-6JTtBaUyBKE+f5fbiBykZFz86tk6yh
zaOuyi$pPL9@MeH$b~d9mZx~Yoyd7X_fOlB^a&aP8+QmAaiV!lI^NdPlMu3?C7EmFB
zaD8=FfVly9+tKU*a{}<@qu1v6M@q#ybcoKQk_VVCQpxZh74^T?D^WFlVSq&emIPSJ
zat2t;)(-Fywdhs<`*Ptc=>uxrn(%Y1!>SD8Bwie<En}NIu@wPUvbk1eEDx}@TpD@q
z6PF8|8>;oZ5?LK!O@O@t_AxcUCjq_;usy)1qCqwU*cf14fb{{k9SKb+!)F|u>+=%D
zlA8j2F4(>Zz+(=Z18fPfl^XJ2$p;imPAZnH+$2#aGqFu@E-IG%D!|tPehjcPp!dRN
z-vrpfA<U6Dq~W&#j&I30Q9j1-eSjZ0Fi%Cuv#D5;lzqjLy8`SE@N<A)*zD)R*U(P_
zIq*ijS`Z`rHNee%kv+5_U*tvm<nnM9iN6KdPrDu9RDc7tT>*{+I2z#h0EalJ101H!
zEE{hzF(}?Y$_<kY=^GMvqs0$Jjs@Vh&l95j$EkZ)Qs};(ZtYw3$UGh3Po}bSY5!?3
zsVV_3)BXoIAK*fOi?liKCW@49L1#z5?#%i>roIHu#_IoH*&;mK`#$?K_U+ExI}&%U
z84Q|h#+?~6W_S{ctl6WGEqiuJWXVzqp(Ke=30dk}DrHF#LMTfiN%4Q*<LCAIzh2Ml
z^ZK06`JB)BoX_^$<$2DTzB%S!Ey(&HM&dQ{=>By^^|m;#3Kue4PRguk_<vWz%}TgU
zlUBk%m2itIs)YaO5iP{6lioj@@k8UR(pzE;44={(kBM7b;w2>9CnYvkIxr=ZZw2NX
ze#)fGQW8o_cvZq;31uXdmGG#9_7WbDP)<U92@gvsFX2H6l_gY>P(eaP2>}VZgh~=5
z391B5!jIQ0$r8F;mK7;c)$N^$51+k^L~3)}kiDE(!t=)>{2|?tU`lW#xDu?p%o3Ux
zMY(4wV}SgGo&+{8bW@WA!`<GTW09&7s!`kj(o+S!x`Y&o|A8iEtRY}c0c#0ZTS6Uy
zu(z&2f&wNBSm}19vWH||><vp8XZYi5MCwV%yOB=$4@u~LBYn(`^ac_dN_a#<mV}6e
zGzm>4G?fsQ&`3gtgvJskA1xJ`Trr)T?^YW1V8&+gGaxAyMwMFrkCZ8)nS|S`;w{9y
zpY>9k3xt%Ac$|Cc6*(rMrGx?rg%YwQ<Va{GAui#~i}K+SDj~02>LwvyLTd>#UyJdj
za^>at)xQdee|<cIaH-+9kx(RI)oU?dLa~Il652^fzL3JJeU*$sRWgWtD4a6)vE17^
z`HxBHAYqJzu@X8;=p^B334<g&F5w9Yy(RRK(3x(fH6-+q@T7#7d#GI{bd%6)N?V%l
zJ0Xoo{Jo-{B#NayC1K^A^lSHLv?!JO@3F*>8)WV);oH~Z{Ur3~@SBzXJX-2|Xagh+
z6m-6?K{j4Q21|HG!gCUaOW^00XBj!&Glz2O?wLabe(cfsFwrD^QanCF!bl0DB#f3Y
zcxk0s{5k!>(9;*>=V`;`MeT>jiBR&x%ZtWI7%%XbButPnQNlC{(*<Rcgcs;aDY2Uz
znWqTiR0&tbHY|4`_mrDK<4dT$J~mszED3u>k$h3YC!Is*4Zno>fA_MBC*?WRP{LdZ
z^CZlduz)fDO5#JpD_ru8N*A^#%))D-Xf6`d8K%!CKnRyeSjuFS@qmnF5?+&VO2RJ^
zUYGEOgiR7QOIXhEknpaA^%7Rl;1d5A##$j~6`_RH0#6kx@x*G*6*v92CA=f(>m+P^
zIMU7Z=_7s!UoYN(cu&Fx(j|N#;eElzQPadn>)TBe4^GsdU+KAZmADn;hZ43(I3nQ(
z30oy>lkk;<{Sx@2-$!ELZh?O+;3ooZm++}Tb_lprz+D1z)Ms>`=@Z!_q0RI0z4z$*
z1oF9rFYZzPC*ezha|rprzDGYSkZ%}HLV*MK^#4x6_X0n7k8+4>ytl8>l%DaUEMF`*
z5{^qaxS<mNApS{0?t#QFjXd=8X9*{m=8H?6loJ0Plfs8I?sl<xTEZCyiG*wX{4e2G
z36~^XmT*qOc?rKs_+3JYFETDjICNDe!i!^j?w7xPBu>gj4yl?Ui46*_Nccm-pDbwe
zDwTgL5h{E-g)nnwrRz)t)({DIB;4RKCHyPl#c}FQv7&z@++rkm3w=GHfX}SHyCi;d
zO#F4zw??S{35G=}sU>9GC!>^%(sE))yZdF7Br-s)xhtOFKhchGV5-!ji&{p;sm;+g
zy+RySPDXhd4P-Qw@t}+fGF%y+jEXWU$$*T23`vG8W6P~FnvD59;);x)f0tE(?;4T0
z;&Mvs;h9|*R62N3)@2wnEIE;1FLx<v$~f_RqWp3c*=!k(=(_u-44?K)l2KVkT^T_c
zRb*6^QA0*e8P#O$ESp=MYuOUpBEtLd`F7mrr<S19mQhDWo4O(PQuud*Vec=Q$ud%8
zq{^r#<LmX6TJ4uZGQ!kzYmA&b@1zhuB%{8Jhh<dX6w5Bxj1-C`{^Qrhgb^8OGFr<h
zkP(&9NJf^7n2dB888R|uG?USo2Klh4iHxQ)e>f^USD|p^WASE#bG;7nNQZcH86AHt
zXd&Yf8NZns?_W<}B!}`&7I2fvM}Ny~DI;4(Tt=>p92xKaSkQ{r?hwDk!=XCFIgmJ?
z2g{R@PdiM`ytcXM&SP;-L3$yVOyM#*$taRhEW?-asEh&Q;%#NLlffgj-h3vP=d$t7
zT%N1dUYPnZ86BwenF6xi-!#tN&Y#A)oyg<lm(fMWlQMtZ&ENsqgq>yZz%mNyDubNe
z1SGxwj5vt{D`xbR(Mv{G2i+VzC8IZe9e^D`9~pgVY9JNpC!;?DPeoe$-~br|WxS@~
zbp=n$7{mZmP*K5P8PCYrCF3(0&&n7gW08zkWek-uOvXzx=E!(X#&8*vWlWJVLdHlL
zV`Yq!F-pd0nIGgbo@Y#Iq1BDDh<{e3jJelLo)Dj|hQ`a7C}Wb02{OJhLZlGBAn*#S
zVr&wU!Yy>B%9tTzri^I}{wbN$h45+(qp{aAsx=PJk}+G*Inj$UK1Bv6eW!7llfEot
zE?2!UyimqG8QcZy6^54XPhJ%Mc1gwgq?rB!83&JNW~_>}svY9)So1T&i)Ad4v5MXi
zVwcKzUB(+i`DL_~Kpt!yzBoB^(zKS#Wvpag)D6AKIII%lH-Z&1?$600lGt>sTG`by
z*2vf_<3ky1WxOrpJsBJ1#7184Fu-Jt$q26_y<wF6gzFjA842Y%g;F{6zKo4BJ`j`k
zSQ*<S_`h3Hk!$>@Z|+l#!&_u*WmL%6E`$8rWNzM=_-g-=7(zClm%XKT3Cbk?sf-=W
zT$+7aOE#a#i7##v-!Qw<?x`(z%h<!RBjXntdu8mC@jWdg<8v8bFk9&tna?WVOBwr_
zeKiwC9$BPt#;=$xMM{q~vBnLeTdr36mIkjHIv}I_%a!OXekb})MxO>ze(O0=GIU7B
zVY*MoF<y<sM`Rpjj;xLm|3OgtA*21w);|j6`DO=aInEj-WA~aE*?t!EcN;`c3S?lT
ztnzDPr)8XxaYM%6GS15QRmLAO{*-Y}#(CzrjNk7me1Vjs?Wii>y}fwPK9^-M*e=}*
zyel%O!{*ho!p7mNOrKzcI$WnIa<Z<m0yhrxT!6oXzs^m~T-++_ri_2+aRnt6+@cE>
zh5wUrTR8DwCRd}Z(w5Jdyu;$Jps*-hLc!^`Vh=>3uQU#Ksv3H7N@ghqJh}b>1vkBx
zr4^J>z;Bvml|)#USyYm)tT;SgPC<DEeCLJy4=Si^`9$J>6jV|mDd?b}qXJohq99E{
zRDr5MQ&2@gRRvJcsA1GlU<xFlKo>~e>6J*g6xa%qC{uyMS=J_wP<ItXEPqy&kf$V4
zn7du=ZXBj5{=KR(W$68C3aTqeR*)hXR5PQ7f|?3yDX6U=D2SbZjMh=Whf(V)n2ZcI
ziSu<E?ythH*dYb9-a`uND+nt{6+`MNcq${zE$n#6&f!K`4=ZRuO+;5i1$)M2W*8Y8
zPRmq@#wUF9L}nue=?dZsausAKXsqB71z8H3C}^tSiOcED#PEE}XCh=O;34uH*uJgO
zT)~0{(H5+Gt77YGg<=X?(wGP3RtmDkkOglQ#6MJXDAq_sJDV&oMDj#$0lldpU*IIR
zR<QZ^0_JZU1w{(lDriTA8$?@YR4i5!ciRDJ@$Q!ID|nQ~&j_~{1D7o<N&GH+jK*J-
zXm(QYxPsvdMo@nRofY&|&`&`Z1y3sIsi2pFt_tQgjCNPhLqRtMUuS16oY9hjO-+uk
zj2%YCWXpd_OwmWd&=*RQ-dlv(YpY{NhNx`zS1>@qGYXznFpxSM8H1EWZDeRYO=LhK
z^#&_gZuvC(-7FZQV3-1WhuJZd>s=kAAET|Zo)Z%h8L42Df|nG`;Z0<Ce6+%+SujDt
z^9sfYp0NtXDPY+5Us{yjB+M7*Im<)^t%{T>3Z^QUq~HYw%#KP8qO6dU#i&kILemsX
zS1?n-EG2OZn4y5-k-Q^O1{pBqd{Mz{!Mv+s^xMfTsU+zyQ(BR-P{ASvb7?Ul`4t5$
z@(Tp>d?j(~8M`r^a^`*8iZ_K<6)X{5i<vuhL+}47aqUYLEE7$#y}u@(b^Z-nMnPE>
z52$!k!3qV(6dYHuQo$+(I~44s(-o{%@V<hL3f3rCt6-gicNM&?fH$uP8%E!uO5e63
z!ooOWY{m6r-W7kz8wB#6fK}TnOgAR`2MRVR*s5R~EwAtao`jGs42db3tXCsz6|=}N
zHMUy*x0e5rpnsy^V<Cj$myQe;neBr9Df8uz0uJ1z;4=mL89xekGh9VVeyL!u5dOJ>
zFBI%!n!HtzdOow>z5?E={>PZiNmzdV)Ry$i^9`e4(VkOVa?)=Ue9Nk(;E;j?Vj{-m
z_d<d11Z3T#0Shk_99D2d!BIh^OcHthpkQf6!l6GZ7;9wwBp{o_e^zip!LJI=DL5%c
zk$#%Nzb1By)lva}N+spg`vp}?XPi-Rmd+}j!E4!$isuFYWd&ChTu|_vX#P%7mVZ&;
z&#kR=NddPC<V6$xq2N!JVkV1%s|vXP9zT}<rQn*tuPcdL0EwLLhLU(gnaJNFHdx|r
zDfm~x{VGbT_)nzy9R(#++@{}`#2GdTST!{7$LM`3O1+iFEeZ)ssVHarHEe(V$%4`<
z%BYEQF|ivDvyOkYDy^J~@+$hM=&RyE6%|x8R1r~8QAH&cRaI0|A*qm67%EH^iV9Ul
zKt<gjqoYb?Xeyv4R?)O)=uXej-R0<lLY!Y%EDF!ga#eULY!!|Qa^~fwHnDwf4%2-=
zZjy@1D!9?&dlw71`Cb(j)M|RS@Sb(?>MCle2&o9GsHvisirOmbsOYgHPJX_AekwCw
zSH+^YW63HCyEG1}*f+VD(;Xg^n?fZU$GK!Or>dx@;$amHRJ6O6piuLNRMc0oziKfr
zzTVEa-T5NC_j@sW(^N#sslr#$NJYAe92KopWT<GYqJ@e_R5am2R5VvH;LW1iKSeWD
zG!vQ=pX7w7Jb!Y$)hbT=XQ_y($QHdVRh;Y@;sQD9p(k_i;*Zac$5rI2Xsx0^MII;G
zQ;;v#MI*Og*5G=#P={`zLKSW3l+*2sRTSGkbw1iAt4IZRu(@6<b$+>KZB_n{9GcrR
z^r(vVDxOr)RmEc}Itb%*RugaWcU1AXiYHX;e5at3if;d=6QSvTTA6_TZNH0}*rp@(
z^CFspS2q<sRqhf7TC6*rNc*VVJTv2Z$<)4=!_(VjJ*DEeX7S!CxHAALoT8tK{wh|g
zSViNg7^q^J%8x*JTE!q0&#M@tVz7#5RE(r<-9pc*7^31i6~h?`@5P6z_;P)Gn2Jvp
z$LPwbw$DY4pjmFD?|U!K82eWWao$lXMyptE`!w>Wwof@@Reog-O;j;S<#R_EuVMnD
z`f_;olK4V9g9v}?dx5jxNS~r&s+#!qZ?b3-Y1%Cmem8z;dHn5l@fj*+s#w5fs+gtX
zMHO>Yyez_Lwu;yM+?NF2=Dm2^$#FJmjkzjb5pz-1c`B&nFLgqs&sXuI?Gss~;#C#P
zIGmJa4Hm0dqJr+D@*J{M#nnscd@1$r+o`X!=BtUlQ{LbLslc>2yU6_4jLa2+zO`cL
z&QAqzsaQ=bsn|}>s#vSy0~MQ8yshFLp$sLgQ}M2f_f%{US;P9Up4H%+f~$67=g;?<
z@{Yez1@nc0THEnU56nICW^A*H4^?hafUQCf<CB{t5c1k4C?7M5X2(Agu({(?pR5(J
zPgU%o?-=KdE@u7G*k>wstJoz{p31Bk6W^m^uZk~JFiQ8Sa9@pmu7bPn^OAPO8ODU2
z9RGhRe(hJl$lR~uYZc$A_+GGmqvBf?2N<G`Px*9Q$DSdw5%PzTgCa@~bI5>#Lk!DM
zDiJz}p8A2-rsY-q#9-4fRKqb9$5kY0sI1{<6(>|&R&j;t$pSbmdPc=rft*tDi;B}M
zAm_43A2A}lqB!!a3c_<L&a22;k<qPnevKjF)1AT>I4K>ZV&3WCgU>}S(g;I?_YV%2
zeL8%J3JeUd{Wa?k6@RKIt)YyDt17NBXj#lvTvzdzikm9_Q8D6=*bNnb(|W<|=hgf(
z6Wh%UW%uqIoagwfw*+UW$8NFmoDWtgiruEW9lwNz`*;{Hv+UPk`@-1mPmAx@P*TJ4
ztejFB_Bj6BQaRPe=k(u}P0IAA!(}x*ph4E4Xeg(lyoQPzDrtC7!|#r-z8|chfslC5
z8O5btzxSVQ7xv4SG^DsbuM*pfRSlX3OM|Te8Uh*&4W<TN!`7B<Hhx-M==%TE&(7N&
z?0zBZ`o3UK*Pn1UIHp(7;S}MRr@__m%<|x}vh4_Gxju<iG*s2lMnjQ?Y8t9*NY{{|
zp@xQ<8d5dX(@;x8Z4JrPM8oXaIdwGD)exlePekskoAY*soVIg{hxQM4nHMbGKeByR
zFr*=@;r_A3-9|=}rw0dZ%6>>geGL%}X&Szc#2(hrkjvke-9SUPIl(Pyv8DYYmk(th
zGP3V1&xvxD8No&xyjeja1;Zl!%SRh)XrduoLym@~8ZtFB*U*BLmxAXOC9Y-~N;HlY
zoXUPg!?bb1EDisT4-Om`lqUvb8V+P+^M{d^8s1M&AgwgSHRNk(O%IkUy3;<Gt09kg
z``~|X1slb4{<)l8pkei@j6w~k-qqfGBzCcDWX9smKfY;Gtf8%jUK*a#&`#q~EO<gg
zXAO^PXs@9ojW#s;n1(sOX3-`cG&lo-`h?)2zG3RK<k?6k4UY>Re^Qj3A9sv&(a@E4
z(D0;&R!6f)`TW7`?ixO67wMs)r&x&BBsRZftkS43HKZoJHT2Q&w1z<%`cjkfvHltc
zXn1p1u%Cc$x&E5RB7b*?4Ak&)hy2O&v)6SF4yN}td^aR~aYf0YW5cyq1fSJV@M`dd
z#<3Lxqr)^jNAGC(M#FFoBQz}0uvEiH4Wl$n*DyoFXbsP6n4n>zhA|q(Y8c1xC>85I
zAY5-il(}~G(Z~tJ#xo{IgeSI%Ow#azhAA4RQs)0+Kk2c_3^p^yt8HeiX3xkpEs?gR
z>c!~62~S35YM4cehF3Ja$S|PtjKIfZFVUV{*O+#-dK7Q?FT2mAb{wT%Y*TM>_FOX8
z%GozBbH0WJ8Yrs5n&O2FzpL4cG`z|>Gd#S@^+&{W7HeoZFkF9lka)RMv1J-wqmeai
z*YLWAH#Dr*@E-G*6Vde=)@WFvVWoyu8s5?{aA)k$;OPEAIa<ruhJN`Khexk{6{|Ns
zyjH{88rEreSHp)RqZ5A3?zJf69pZl{kS1>gpZzsfp?qxim$3~DKhiaR-^4}@A86R5
zVY7yhx<|h69y#)BkOt&+;-$>y3$mNHi}mRk+^S(48EAw}!G7Olf6Q$CGHd6ooYy<X
zj=4T5pK92lVV{Q2HSE-|H!a$Gf7WLjb}^Bkjs7&g)!R3+cC#F@i_0mFFdtbS)z{k)
z|AM9-82q1xFEt$gPbHrJWbs!br}lG2L&7Y)tBWEhR|UUi25I<D!)?ZohVM0;(QsD7
zK@EpA{HWn4O5oB4rXFFQz7eE-XyG3;9AzMl2)FAJIWVs+)9RRp<MfDz6O7x_!ERM@
z&J7M9shPv;Boj@;<#WNLlCjlgGJnx<n%TsMZML-e%k|$q6Z}=fISqek_*27q4Hq<A
zB0p2lmVaY?({Pc+@LX`s>7cQz%{wmydCeOiJd8>$$A+&kHwT4t7Ub;c9l5IEnuePi
z{?Tw<!(STyW?-waE(>yQX!xRhWS<<nCB+Joa*U*$jl;rvW%U;QH7xuuE5_i+og>-u
z<KYUPe}@GJ&;cWHS|fNQ7az>z(<nTih5PiEOS~40upZ-<uH4;|8xFB7f7mdm&AIIN
z*XHc~I>=poKI<Q3!t#0$r~u>+2%q`6P2@oE>cSv#De*r5_(`9|{`RHp4%Jm9Er&n+
zELar$sag*BlkaQ60I*_QaPzxuGgb!Kto2`-30Oc4peA4g4&VVvfD1e{Ajm7{X50Fc
zg5$;pD}!63XI2HO0Uc__s!*S&BQ;88PAQeSc3a!(z}|O)X|r<ry`EDGs0}0oDL}Ih
z!8$-)AjnyI2b<Q+Y2H5gYAE(h=L8-C-f~I~dpvlsYvh&m9A<Pq&I^15d<@hF9tNHV
z#sCd~hCl>Jqi#(~M8wtMc5)PG1Uv&g3#0=XKx?3Y8s1KBEMPOBi9kqcDv(T?s7VPn
zn*%L?M}RD#C6Fz8W1L0w-i0(=t9z6<(D!ySXV0VY@8P6OyPcd5z9E~8CM61iHo%iW
zSD*+e1|An;+XC%?$A|;IpgbxdrBRb1x0Bn8St#x96eM;8I?;4ZN|1-dCxFgk2o>uh
zn2C_y4d@Q^2KoR!fS$lpg00nu2`lvyIHeKK6>|~qD~N*`65#WS30n;i%XwPh0|iX-
zd<q|QZ<*ww8bd_a2myzRu3^A)!XsoJevg?r`9})2QNU<{kV5;61;zo3`Pwuv9+&{U
z1k3>@3Z5yzRA7?8DdYu#Ocs!{PXnd{FN!9YGeb;AWTrqUf7U$;@!9vhM*L-9p%^t+
zz<Izcz<hyomIe3pCr)YPUnJzbde0+Efn~t^f}g#wF%bmAUBA2`=*xjOg`5>)6uVXm
zo>c-;@>{@aV2x<574TgF-xly40oMt5SL}M=J<;4CASK+TZ{(KGz$Rd`n0KpyAKue#
zi$J)FZU3LBPk`;fRp1)<&j@w^M}Z%Koxm>OD_}o!8K@Ue*(V^8-M}7!?-lUvmr9WM
zxxl{=@P7i5_$3pwcP0^DUkl>*0)8Xlw*np@kLP~}<a<8Z4hrHS0S^m!M8F>eBtzM(
z@K5*fQvx|A;Bf(e7VrdjHM7f}6gbuUMIfia$6Rq1_*FEo2zU;-D3J5O1>iS<ukF<K
zcR=cy#p%Y3jj(x1&@T%ZK9EcL9|HeVz+OUg60fs*2XKENVXnV`8^GU!;U@5(K>iVM
ztmoen$iKjdj^PEKe_J#;>JHCi7sEeUn!zQM6nMD+$_G$N;H3p5XBmN%4d8(Q)(Ztj
zJRf;5fC_>R0V@U|3#5{O93=&?&-0_PFmWXS^&VXl$O$1QAaGqkLqL<W*kw7y3BV1Y
z*hE_sUI0k}{H)`Ij>-X43808w0aOj3S^%{Is2xD{01oi+#fM7}))08j0Cp@+p6BHg
z)(N0)0L=qv5dd#L$pO?4;9<d*!ha;2hEfF{5-=QK&?hTzCD#k!hUfEoD1iMtl8L;Q
z9%>LkG=N3{Gz@^vh=5rS6{ZQ~(MMaR2XM6@)HDEZZgNHdUrbDHEMOA>x8F)8B~$b^
z6Oe2lyqHY29}%<11IP;Cq55et0b2@~Entp-<8CImx`*Tj@JU`MFM#|2S_e=Nz^WtR
zG4)#&22i<Jx-dJrO#nl0=j@uBTt#YCImvGuK)V2%>d4gj4h9|#;A2V%pnU+31@J-u
zlLP1wK*s={3E<fPItB1J?Gr%X0G<e-a{x~TP-kdrmjIp&pnCv40_YmRTL*K~>xa7q
zFtTelk%mb=Vb1{alKftxxAvaQLDTr+NhHCR<o6C>xZvp*z?>w1KmgAbgo*SIU~Q6L
zcU^d308b0zpa6Dt%orTN??Y2Lw$H-_Y!2a~0vH{@^8pMCfb{1mP$0G5$lNzEbp$mD
zU{nB~Ciz99^1e^<Umu^>Wq;H-m^&tbM{>gB0vI2_SVqORRyQ*<e`piFe{$-@B!5Bx
z6PZ?%6LU=xlfEz{_5RBKlmMm%usDDv0ZbDU%?)5)0Mi4Q5x~p<W(DvP*Al>s0sOSB
z)$9O&S<3x<NJ37P%6|Qa3ttwa?lzzAnDO+=XocC*D*-GBV4;|CegJ8eeNMe7fZU12
z<b0L3EvpcDu}%2pcz9_5%V?hf-e#l)@Ol6nXGJ<U&umxOe<Oh9_vF_<nER%{R|vTB
z9(|QS-V$(i0Bi2iiw~7}CxCSU^sel04B%Zx$ezsgqL;|!DkZ7FdjV_^l=ttA+VWD#
z4+8iwC1cY)%4RkNzD2;T_vqUM@{xdVmsPgYDFIvw;18x}06PQtK7fPtasZzNu$M(c
zaME<U1K7h}5hsfRQL6DdGf22^e*pgr;Owl(R{@wEGQMQ->6pQbJpU$V&{nFE`*i@{
z1n_3Pf^Wr;0|L_Z-vwYa&m?jvfWs6Lz^?%u3E+nSj<d)JUmOi!+)e4H0DcT$aEA;d
zv+dqVsmFw34Aj`vq7wm}4B)ho$w^NI@QdhW{4+c5rUU6`L<|!-7r^-dE(+n4a3O%-
zL>Cv>qJr{!0INslk&Sa*3g9wR>}*SFII(@k%I+oqWIbV^>Imw%7Ql51(NR)IU|Xxd
z0{A-sX4VZV<FurNJ$o{5GNO?CkI?6qfTaH$z<&b2E#MsiOX!K*xlceM4bHSIrK7Zt
z3OXiCOf93Mtd4Rz$_s|<=50S2nfHLe_l-$t`=G$NUgBJGMIDs{MH0{xP}ZU7P<3dc
zNlsHB{02fiphLe$H*^?*L>b{_>97Uex!3FJxH3L55w9fP1$0yqT~!6FsiT@estZ^{
zKynV^-9g~B?@{UqgwdO<BSq(*jA)>PDG<_;D!Re~_N$<@o|sxs$3r@Hz8bEt<I^_k
z(CHE4M<*0D)Dh8<p<_X}v@{)29WUODGZP!>c<E4yMAqvlXq-CgOu{2X=*q@Ang}8(
zpVZB0rlYxzNjhH8(L%=~I(qBqqa#a4Oh<bikLhTsBU?vnj?$5%qm_<)p<7(QTpf8j
z?mB`I#q!9)NZ|=QfI=N@SmAX%s-s9x6tuQF+P#p<A;mi0n5UAB%<c3<0i3d}6>$bU
ziHz6|Iy&m;s-v5ZPC6df(M89!hYOjZ^zsur?v}OAI(}wtY}Iy1W&cSXb1M6vOi7gY
z?mC_lJUw*u6sq=OGc%K2>ni)q&8`!RyB^H#tD~QeQ94HJ=&xgdjzKyG>li4;a-y4O
zT5_VNb@1M?w{qf!@{EpQIt~v_y}UW?SsjE!bPN?!+zrL&bPU%~=TL5!NvR`rj1;1d
zR`#n5PrXvve_qEJ9nUt)9IxZGMyXTEDr5D;eP^6tt60V7bQ5$;6ai0{HF+VGReG|H
zDLOvTu}Q~N+Cj$>9ZPjg*D*uKJRPqH1+MnVnyF)!2!I!94IMA*n9b%rr&E94;OKhF
zoGXSTR<|-bpHZY^v7ju}u}C1iiIBfq75`PyY<V!3RXt~DDz#lk<#oKR;~gEZ)0Ncc
zjm*_Lmg{&^$4VWmbga-5w@Y4yRs4)9J`vt=-qOJ}mR?-Qi=JAeqyEX3YjyOh;uGO?
zyw>S>SI2rWDWl~*9UH`oHtKj^5XqC5({_B7ggX+Kj?Fqg)bXv313I?o*h*vS_(I1v
z9Un1wbnMdcv5rr4Y-bV)Aq*sr<r*7r%{n}@RFgxwI|QB9_)H+Xb?gzySKn0JE4;H$
zG?_|Ow`P5J>i@L;pN{=HzSi+2(|>3_udj6cup&z2{E3R3;u{*aif;uo)>rYr)A7BI
zqdI=nagd2q#Xmx39fufEI?jmu%b6<vzT7ZBwA`uU@BXNjy*-f^R@KB!`6nI6L>?U%
zkQ7G9NgbzXe*;Sm{G#JDlgmI`17~!crAh{>8~9bnIUNrgD0LxtUdIL2F&%&C_>Ded
zTwM%y$w=POFZrU5OL~HbcxqLj$YmCvr;}UU3I3_$D!UAnHgHYHbt+(>q=CN#|Gxs>
z5b$pSZwg2W|LC}N5ATwd{NFwNwm|L(SVAavpMbHdeib`;W+b`E=;SU{{W1n7x2yPo
zfu~ob?5~zwR`6W>sZ2Qo{puu_H?aMYWFpflC08&|(Lf~wk^$F%XFxWf7|@Kw&rHL<
zFGFQiF`USKmn#wm444Ki1G<3@m6CZG9PT8La&EFMnAe|_h&u)dKfDsWc1%h#P{lx1
z1C<4Xay=nA)G9eQJ-JV)1o0XMY8r?cXlbC9f!YSvUI=CwsAHh6fn)<I2A-?xpRSm^
zfv3P5;9|G*ObOl7t$~5Cz*7aRcaQ#%K<W$luz^#X+Ho#k4Fx44V48qY0UH@e7YKP4
zjBi8O*gz91u(-IXflSfW%s>kR?H^8Vevk9!Go{#k#6Xsym#C4<X10MG0|f>O4YV@Q
zzgcqJK(0V$RrT`><QwRIA=ui$t;WgEc*$3alR4eMOVXQF{Wb<3?3z+!pzNsRddnhb
zswEGtkepdPxt+mN;L+JY7cupt1|Fj~{|L4>u&G*d;Ut9;Iv7~<d$6N{P6kF^2tID$
z2|-z6B(q8D^}7*#(m+@GmnJnpN;d`u6{9`|deHcdQhOTcW#B1+kE)p5Td+M^BDt@D
zq=k__27X!>CX!hqdFQ~C0R{#d7;NAfhMd8NVUh<4^<M9uBK@4ct*XD*PnJaRJZoTx
zfuROwJ)QhrRi9H+VKNLiFv7q*F>0iNQ3fU%c)`GE1J4^+-#>Yb=vwz*u*{i?D;`N6
z%k|y~juXW30#eQd0}}<lWK$xdcuh7i&A@a6jk_dIF)&s19;jK8^Uh!h(T|@+UN-Q<
ze+lMU23|BUTdedY0m;^Tcbsqzb*q;Myt()0I@(uyMd0)AQ5G0jDDXx1D6bk=%xhB#
zUX;Jgz-tEhgK5;n>jvI1@V9}R29_Im)4<mWyJ3Zal?FaEu*JYC18*64m&-S>njSRp
zj)8T|3mQK?^?X(T=JedR4eZ#P8@!fB%IsU2*Z;^nJu20GAo?ElH?Yyb2L>J)RP?@q
z?3Z)TUC+FKeg3eQb2k~-%oV*7ZLlMA<n-2+80uxBPcMvaHL%UVP6N9Pd}QEb1D`Ou
zh#${2Z)UbG&K`O_^HZj9+w9*eE04^N-uGAL4g>%Foq4;e|Cxc^2L5N@O9Oih>@~2@
zz~=@y=@)x)SDh`C=jE<i82y4Px}ND(^9Q_?Xntkzf7rrzinDX8`TGq#T+P3-BlFkm
zdEXj1z-(o4Ht?N+?+yIORU0_S^^Q)Z8ix%WGEin-v|BZw@CcpA^t_(;d^Ml?9A%7M
z&m?lpz;OfbmyZ4{^z8Us#t%C(@mJomviT>NVrL6a(hk-9HP!snEdB;A8MtiV=&j7N
z)ZD;%-USTMq~Bc6+gZ*3xlQ&30~dv;-wgatd|veGvqh9cWcx3Lobif*KMY(oFyqtA
zKMfRLPk7|b(}i`17INxq2ClRIGpeVx?r>lJ4Fi#RQQF_Xo%cgE{~wkD)?xl^V&Y%U
zLJdt+Fmc<!9R`(&(k4onxX(mM6VJ`b<+@@Eqg>SeCMYE7X5P(ezFghsjAcwbU}Ed(
z!m=jL4k;}AKw=iERL(@5>VA2XznSK;S&;)x1Wf2ABond;)r4k(G8GfynYk22oUq2N
zJeX)(-DjK-Z&KYiOqeEY6OIYXOf2N%VMVtJvyV(mMAU$5nZ$?wmzO*zH_1e06CnyT
zQN=`66SYj#Hc`z?cyK|R?3yO3bKbJ~ylR-}U)@i-l{uk$BEq@GIwsHdiYA+=YbIQo
zUX&d)arxEo4`uRG%tSa1Dv?i^YNDQr4b}aJOdNVSx9=~7C->wos_xe}@vw;oCj7th
z8k*Q$-DlixF3OIW_-0TMgOIS1iF9hUIGk@H!$e~faTB>FnwWTEZnTw&!;__^0?!n%
znSjj&Btr`mj|e>L9wla?<vl#xM2^6V2N#i<7bhaj6Jqb;oT9aGVu6W56HAtrpbdGo
zF;OJwRDhiAxC#?r+xW)DqbAxjPAvRq;V}~(O#EZw7JX-;lZkb-jEToNuZgK9rkUt$
zq6=+nVt|Q@SK2&jqKAo|Cc2vFMh&mEC9%7SqcnSUzwPws4K=TqiQXpqnB1Q>{FDh&
zq|wFM&qVv0I6k&@KNG+A&N;9%<MaK&DaYFkH1V{F=S_?;G04PV6T?l6F!79uXH5*F
zoErWR6GJ&;sEAMc$Tj@ZyW2Lb;TP5LpX0hJ=J1+R!+)oSKav&lc$-lsYAAUhsd=MK
z?5p9Qs^RZGk~P-EI1}SdOrV>TJTfd<pVRS1)<hGNOiVU0#l(L#{AfziqGN4dFwtmm
zM62mHuIU%o^fxTY=~vUAZeoUs*EofVnI>kLm}lY@6EB*WEoOY##7ic)sHP)|SJm_<
z*7WBv@~1~>1nNB3<iU~t^cFeuP5f5Vf7Qfd6AMf%<du_CvX;MyfnCezyd1K`#8MN>
zXoUP6+Km!u!-WGQ-ntyhf5XIb6K|PVZDLfY=uHzVO}@^My@Hw?%qByVT0WUq3F1?=
z{A2k!<7@eAOsqBWwux73`R{Pa10v*^GfVrhmfx)?XT6E{82=0{<^uD@#9ms@#6}Yz
znE1%V$0jzJ*v#TUu{He<sovE#{~pQOV&Z$DcAbM+)O_BA*4s>6s^yof?SEooyNO*U
zJ~Q#Di5-lw8(BL|v>4aA^}(zvDMiV(eY%On4MjP-P3$qbUw2+sZU2${oL;s4HG_&j
zH}M6PsqKGf;(sQ-WDGO=80YJADjv=L%EW#q=8>#2hqKj>6E>V!+y7RC!~qj0+ULAl
z+h=TWnVjN#G5bN*tI@>;y^4>R_<@dKC^B?S{Al8&iBl{`eS$wRO1Z|`{xK6rYWvid
zCjD7ZP6)^#WbZE~PMi4E#5ogZL{Oa--oISiXLxf6eSKbd@B+;^EKDWK*DTsPu{H6F
zG?9tFMS@&5amB=S6MvcbgXOo5|EGzoth9f%Wt?+$_3HSo>-g6MGZ9KoWEuT<K8t}t
zcvEx{A5h2tmto92vM|`fZ4-A)G`G;gLJ14^S$uRKRV>_Zp`-=bf?}bRh0+$vStxIz
zjD=14sbwvk-jl)oAKH&?xnXO?2P_<`8s1km{Gf#j7A`#2xRQlWtAyU09<FGCaB9Ew
zy;H*tMzxeIe7iUC?4N2uvtV0rti->(dva5C3x<V&z|Tz%lTv3<*tGEE^hy>-*@+XG
zc};DU>00>Y&os|Ml7&WIM%~<0GUv<;uPKh#{WMzDLNyBwExsUt>K1BP2w4bQsA-{=
zg}N4k7HV^%Xta)ni{aFlP8Ce8<8SGo&SS-rEu^rkd+4ohp`7heB0v6_Hn3tS)j~ZB
z4_hGpAq(qggu8bS)wjT2;@e)0k={V`5;;2~+&?`ljk;M#w-P%WM+JQG`IZ?L8e3>;
zAyX*uc-3$di@S&<j{7WeFr%4;Wp#YiO{|nhLX7Sndc;DOg-0#4w-B??(n4zs1s1X`
z<cNWJ7Ft<|TkwC#$hA<^u`xFo<Z*b;*p@tJlLy{Wc)o>+Po;C2g%;Y-<9*YqUXg`j
zj-ncu3fo$Iv@CsnJhdI&@kPe05iQ?bSunABLe7>t{$mz8Sm;7WSm-D?JCW_Tg63N*
za@6A%p0F@FFO}Bg`+%J}MXwN#EA48bn}yyM`q2K{qunj^w9v~!4~E&njMpoMNc?(K
z%TN2HKV{*m&!XSf@rn1f(9gos>Y;%a*1Z_-Z(#uMK^?<9f|<=-V_LrbdB*Ecr9W+f
zkgIsc!m}3Mx3JN|5DP;syli2vg<%$+v+#n2$rgrN7-3<Ig|QY!auqA$jH^+Ji9+Mk
zDvq}ByoKwV(#mGV`HCf9*dJ$MW|i=G3lkXRI|>G$&SdOOv@prye&(Sbm(vJu<)#K|
zhNf7UYGDTXMYK<|Fx>)O$;jtP&0HgGGRwk?7Ul?<vn{-2fk&Zjyqs3y9_%$a+-7vk
z9lN6QEWE<u7FJo9Z()IjB{YSFg%*CV<G*TQv4usn{J{)fH8!WU=#$P(Fy>DWzj0q^
znT6LZz6yaiX&DQQt2cz58I80vuR+~HOjRcA3JcVYqxf$4TNYL`n3<s#)>v4}8GEO%
zqvNimy=~zg7J<5cO)K>K(!`78b^4}{-W`6IzTO>n>iQdK)k|sJpHTifSWtg*IIXV#
z0V@Mz(!$RcHe2}6!siygu&~9#Rtvi<d}d)A6M@NVVY`I~#<cvH2{I+jGtdj_`U^XS
zspqE_c39Xc%vk#84CWx$vbRPC!}$Fx1-n@sEbOJPk7Xn_0J)e($L%Bkfb=R$iU|K_
z;Y$nOS@_<<R~GhL_=cs!!q<$ky8hX6g`CBn86H>HKR}mVOl$g{n!F-5dsCe7poK#W
zZzeTuzC8c1g(DVzu)tnE?!MyBv|rlCxxomV_y3vplPFWi=#;vN6S8Q}>3^o3uyE4C
zWeZm<oU-tXg<mZ`#*foPHbl=_iNjycklsGdi!<`*mfIs*o@c?d@Eg5M+jb9O2S0d+
znL!ts@;jrKnB5~=G9{UwH}_<uwTS#-;ZF;HS-8RJUI<^cK>9WM?n+wz7a7+@lOamt
z-^4B4qB~xQ|HF*PO>K20ZQ6kJ@|)9$kVv=Qws40f(MGb35;pF$QN>188~58NY4cxK
zKKYMQHcHzlW23CilYKIWjt?&mgg;-I-|zmElLt~hsUO~0*Dr75K^uw<)kXyyMT1fY
z{80C``QeHrUT?yyk`2km=YKZYU)Psy5dJ<oU9<7_ft2or8JCSPAMpv;iHEp!8_iai
zv}`=KRyJ&yf=K%Ly1p%N$A&8qPrxJ_x6Y_!sC<ueL-R;A8`W*puu;=S?>ou#;1_el
zbIP=?Wn&-0b!=Q)8LlnxUUM6e!e(76KUb=slbK>8WMi<6XKaLRq}ph1qlJxnHXgDO
zwb95%eM<NxR<3?_Lw1#nJ#3?ajgupCh?frfRf2xRM!VFaGyz}Up1pBiX1a~0HddU8
zRk3q2Z0NsdH@4A)AGVDgUL-aT`k4v&In4wckw<J~*=S24Hexnf+Q_w$XCvFjrP(=g
z8ygO1<p`Y3Rs#8DPR@;0Z3y#iT<o4xXrqmd);0<#xnJ@3C5k!){SBvMrH1De*%%h|
zi*3xg)Rt<$l*Z>zeV_W+=x(EjjrNp(I`+7YC+G_s9c-)(`V*gxbhOdQ#-5<R`|0S3
zpwESLPJ~U)lQz0?u4f}%Z2S}S=ap(!aeB^(-Z|X_G3Ru4!|$_t+URAYuZ?~-DC#MC
z$3`E)z$O`D({oyn%%T4MZ49t6$OZ>~`%2D08&BIHojA2xx-%new&Pqc_Re|M#t<7X
z+L&!)C>Ld8yp0Jqp0hFB#;oJ9u{K87pbJLY7-fUAP|j!@&oe^S6bITx#xVAh{a+Sk
zauqdi#2!la8~q&{$GCd7n8PR9m}Fy`jp;W2o|pN8jVU%>y_ijWvY@n^*=nkoh|I&k
z$)cPO!bLM|%p{Sq)Gk6(<R<%M<EWQta2s#gSZ(8F8*^<eqBLQFc{b)VkY;CcU9Z?E
ze<?<U%>{zEP)yNzbn#*vOKiMu;|-z4QX9({9@BGPo7;{t`I_(rXI!@^bGeN->8xgL
zR#KTk;T1MGyvC&%S4UMDuB$}Q_6irRp>u6)xA7@c(#AVB4;;jYHrCmAmtkPzePN>Y
zLil?&(q78sy4DWNxm7i9qm2)k6sbj<M8I&3wA-{T`J|9%i;b-|KDO}*jej;q$~GGx
z+31$+KR!K&%mtt1k1W-UP9K%bpPF-a*x1QJVdD!{8ylb5*v(+0E5FGaeK?E!YewYk
zwIQF5G4S>YglnIl>~B63`=5<3SzClL-%Ivsy{|;fFoeEN_PI>D{#zRdY{VVpI{41U
z_pEFV$~rh`<B*NtZ2WHHFugV*{F9AiHjdc%@ySv@(EH88M+N=3T=GXzI>>XJb#g-Z
z6lbyVv%pC_A=pj|*h3GK;k1okZJe`lMi9>m_{M=0GM}eD-29*3JdpC!`5?RApIMUl
zMW!?Jh(T!MvW+V?uG{#_#vfwrRU0Wu+MhO7^(t|f|C*3Me156W4I$)j=6;hfrx;W^
zbW`-s%Sp`muZ{nxs)JwWW!)B>WGmr-Q{UmFZ7P!IJ}03Mk^7y5DW0trF6AT?BVO9U
zq*5W`4>%~tUI$?Z<sH5Wf@%(`JE-8Gq65=`<)D(oAMg{;ZU!944ipEPgZq1go6gMs
zpm$hx__KBb&xnTaZxjyn2<r|q`=+vKI3OgR-XOenX0|Pwjsw@hgshV6BJ>;_nUu|e
zypkMLreuLvaZvRh-l%I@4F@$HBnt^`|EgHaL0tzy(X1_C9RYt!_G|VGQy&U{>9tZR
zf*45;Uw$Qvl+?RT2lX7jx|02ngZd60cCevODzAnP8VKBohS_}RiBg1V4x$bkIY@W-
zP)b@0N)TE#<r*C{cF=?dT-<=dxo{#>zL}V%xnOJjLSkv`C459svILA#V1sZ=2iXpC
zX#cNEu-S?ebxk8enCBqhL7{^-4q7`XaB!@bvUzEVhO4svP4@K^|DmFAk%N8bgB=`n
zbWrS|t%G)4T8i&GcvK+q2UB{SYuety!tAs)a>`>4*xcA6t)7*_ft_ds2TuqgA2lmc
z*k0-Epo@bi9sYry!m$qoQWmGC5w9hubmv$H?W^Lks_5yUmxG;2*p-B*9Q1ZD$HU7W
z`Z(z8V5*mhx_%D&(_${hxESDIpo0=F?sM_9gFy~9JNVGSU<c1Qc-g^R2hTbf;$R}f
z(!o%Nul8V+gVA)*smOB<MmT7GB9eVFGF(uu6-Gy#jEr=!=wyT&xIOP+49%G0k9RO5
z6dCK_-II}Vg7eRx6Qi;Q6i#rkJTE$;Ao^rM^aTf#$?0IGgUbcc-pfi(q1p~Um=vGp
zU^>ITII0vy8y6-nWkBI92QNB!iOUrHq|A13rzlFXWLWu40fpRZ6YbwAG|#~+4pul=
z>0rKt1rC-uc#Za_sty)ASmNMSiYkaU>J&P0GD4N89-B*rwp`991<|90(bt)|4&HP?
z{m<uRaqWc5g%M^|4UwN_S>^EAW~}348AT@}s~xOyu$F#_WnIY4q8)nrS#LXdNAz;n
zyW&nEN?z~aJr)568yV^jD3;6NEL<;5%26LMmO6ztiK$89#pV_VTN!~4jyu@q;3EfL
zI{3=L#|}Pm@R@_%4z@e^l(ReFv3fjZZ}))09S*1okIDNmKe~&N{8^l5=gqm8xyQj?
zMxBGt9rQb!>E}mdu0ozK9B?47|Izi~$oKhCGIPj&2VXll<lwM_ZybEfn(yFy2M2`A
z-4`>-Og73VKWC)CgJf%)wY?zgh=U&-bWQPpV#3yn9HmnlMt)?*wafbQ;YihuF*a}S
z$X#16^0R{zT(yI%4o*5aMdcm*=HM5HPvGEJ2j?7|5gMLl%7-GHcgMg&o(xNc&oil8
zNAE6>TcWY|cLx_8TygLRgR@Ee5+lb!QI+t*U1@Co%0qv4r|}^8Wr2);9i>H$@HG~b
zg6Itge>=GD;4jfU`*5U5j}VU+zv<u~2md<wj|Oj-)#P|&&X$5(bp5eNpOXc*8C0(n
z-Eq+UScFLZdJ%4|HX_Bp-$h9mO<Xi}QOZSW7fCKEyC~zLtjmXq5peN<%RgaJ$%W*i
zyo(22Fr+KGDA<|Hz^EXaq_p`q5#$VY*@ePUhh;`PFNTfkLUU1E7-hVX=S-W#A=)FB
zmDF7rE=(7e3zq_GX7D|9+lAv|c}^C0nc%h+d|{kKo~G)#i8ED6tm2}oi?EAS7u8%;
zcTv|x(8Y<Bm1?-C<)XHWn$-MMgvv}P%A#)kUQowPBr@>@DL!Gc%a_y;azSO@P4U@9
zJ?j@I80xur$VJ3OnoBz?^<6Y@(a;5zf7neV^|}6q9L1&G6&Q8V$VCS2;DR%z3z?Kg
zPD1kJeo#b637IaMx#;5JNf*ssv~bbZMLQRdxX5ym=OW)l%tcEVtz5)iWV<}0Dw5+S
zj*PF6A1!?;g-xC*%x13WB0>u3t!X_MZQR5mmH!MVJYN(oWb?E5o(m}q^&%SI#cxGf
z>iHBV5qo_XkGkmKqN9uUE?%!2dCbMHe5<-3%2;J{rK@yu@wl5vx6bbWCFv7xBI%f|
zcXRf~aHOk?ZmifY2D#|&qKAv8T=b@`Tzr+{_Y&q}sk~bTYZgZPxajMmKMTHaM?V)V
zr?e*x#a>#E_8;g%ofqdt%3v4IxEShU7)NyqJ?ml!qpK*&lFrx*R1MK(WP8rVa2F$7
zd{>Z&v5_uD2``LxLFbZ4e^D~w&d$-XF2*sEJv``Pyo(7gK6mkji-|5KxmZCbx_H6G
zWETrvEOIf$#Z(uwUA#nXT}*c|%T3&Lc-Zj_7c)g*u->wAvc@J3g?GU&Qh1A*<Kkr(
zueg{`Q70pF#lU$~wIJI1RODoePvXBRez{H|j$I&lm{za4SnT2rDle-25(a>aWpr*R
z!rJ~C1LI`mbukNvb1q6_*K)>{nDkA-z_Pr`#ak}6xY+7qwTm?_-gB|R#ab6{yLiXN
zIx;k=NSRcI{O>ZSs+MKqtY_ChO?jhX*{5#ryVxj%Z+3C(WaI-E?ApXtoQ%*89LpQZ
zhc1qDpZr)BDcf9p<YG62$Hm8FcCo|7P8Zu<e99Tct&OU36z|BCPYUloyIg$cCT?dG
zPBZfM$AxgZy)O2NwXZJ7Vjz*>e=fdcJiGXvVdi4LiyvM5<l<`=-?%vF;*g7PT^tY^
ze$Vvm6#BR*;h^v6=#vp5)O^v&$h_>5hiOI^M}<d@h*h(T_gsELAVT{e<GNh@;^MT6
zpIHa?%O{ylokCpZ31Jgv897f0ocHTQm@$=HoD+e1R@6z}!sxQ|q9|Qp(F^$xg?t7o
znJ>Dy<l<i!|1l$6Tyb%YWyi&?EAk(-hKs9W6|@N_qVjYW;a@IpxcG<maq+i{o3z03
z$gJa$^2Z}iUe@(k7IBt(`R4@jvDC<IW+E%RhteKc0ZMpa7T@oI_uu;jg-xb&Nr5xF
z%Xld3CGNZrczEocIBUowA)gAA^N`;<QBM2kM=N-!=%Iy&M?6&WAbF_np@s+9gW|#R
zV0%zKXdZMAhL?D)i?{fImnbQmi#KAzPOSf4qEdAhrDpBGLRK)xgX^KPP|~B2^C`Ts
zCJEhI{gy&iS;4A!sOlxkQ8h9AZe1d*>7kZ~hdng#P}@Tt4<Qd>4|P2RJ*0TxX9g~Z
zoKIeslRX@*7vXYvm!Eqo!Wx_Ep`M3_Jour=y7ahyGIC#?NblwG`d*?GcMkatJw!Y-
z^^oZy%|q1Ve-lXe5+Ok!F+`aH86FyYXu_^eAzpMns{s+l3{$n4mq<ENntO>vCY?A_
zAj?C{Lst*oJhWt&ha!sgFn?*u91po3@;tQi5ck0Ie0dlgVG;L#@X*>rfrmm5JT0zi
zUX-vx#f&yoQZ)CbM23ZY;%z;&^U%>lC$7%Jqx7r?%4zR`JRHJ-L_W%mb`VqWm^mI=
z_c-U}aljsK%&zo=2SzxD%x)F$;^9dTv-$5qZnPqW<VCxC=s_!a7~-L)hh84~dl=y1
zDG$AAjUJ(X{QNJFz5<eR=~(2CfrUgEy~GD{2_ByDc-Tb7Afdxx4?Ojl7j@gXtbhT@
z={VO=55qi+V*&T@oQL5aMll$u-igQv0Y?gWbYS7{`B4&|_b|r8SP%TXG-5|CKi3iA
zrzzg)p6(Hvz<GOwCea!mCNlC_%m)?{{<5^>WYIN+_8(ZtPgxw&p(r|yx_Ou(zQw#q
zBY2o8aDJ(oC6E$_O1yNBLVU;PCD=9B!#rk35|kvoLbrPOldJQvz{5fh-!U>hEb{QG
zhwUCd^|08(5|1z4;5`pZJuG9`cv$V>H4m>dwCbj;<P;vtKT%@2hc~Iu$du29r;tAU
zxs(;O$=sB;SElqIl`>;U$|?rc(3CZkQr37_%dY2A)_Hi_!?X!0yxtMaL`Wx;N2R>$
zVd&_Tk0zvS@bJEeEgrUd_+v=QMh}}jZ1(U0GizMR{$VMEGe)Nj%vL{S`VUPs2}#-J
z;Ug|*R7x`{FgkI4ESjGPNIiFW*y&+6s{yOfkd$45&Z$2WO)5{~UXQO4!Je9O@VS)F
zJ$&Ke8y1$yDNRSD{LjNz9`*}6eCc6M=Mr4_*9^H)iB*%I2=)J#8PvH1@dM0}$q8i+
zdN{<juT1&H!(k6cJRI|ITv+c14?lX~SX%O^pxhPplOX0!O-SZK$ndj=f10T$Je>6K
z`-Bu;r-UX%PJ1}RFcU+5W3NDd74V#Z=LNhV_$lh5hf89vD*{sfWg^02RD;(aEP%5T
z$TbhwJ&YWh@<0;)Vm{Ks6H>|~;ct&SwxLuKxH=l)9}oX|xGm)067XMP!z+|IB;}5W
z`;stqSjv49Q%WR(20!|BB|827q(m^36tLffl+sCfV?s*($ti?y%&Ay5DPh?A+LoYm
z%O#<F5*|!Kg``BtankZXm#HWQQbMI9NCJOqcp{e6Bxp%!m4tXw;+@_=5`WG@C<%HJ
zj3hWoaFbvr{XeF@14@eG`+8x?$dWD@W_o6NX1cpN5O<di3}M-2nPtgM&KW_1M3Ep_
z5CI7SN|2x;h=Pa+s3=hoR8$a9vg8~^1isgA?Em*Wr_MdMUcE}MURCF6RPdmp2ZMfe
zUUH*twdnp8JukRb#-tl%RXp%`pm?BqoL6M09Eo~8ju9jed>$-WS1f5#NxugH5AD2>
zF4NtH%jrQ6J~V8KhCJ9|*c8G{em3ki<>NIE&Kov;L@7LwKS&zuFHLBAV0n=0K^m3g
zK{XF*d64Kqbq~E2V^B-l=htgcgFnhw)8pL7tMZyCZO5gQGk;!dCV7zT!L1!B^nBsN
zrlL00-c+P8mT#An?m-<7vOH+yL4-=n@7(>%puzH>o(FW>u)YTkJh*l@mH0oW>$JPm
zBIjyqL)L6k!pijE3AHxAzWQKF*?!iE2CX)AONx5v>nglLcJQEy2e~vl9=zm1QxBSX
z(8GhC9vt|lIz5_c?m-I=T6)lme(2&s8^U)JThj=Z6CL)%QA;S=ma=?oc4j2fj!ApQ
z4vZZ==)~mxRdJ+1p$kX5GIsNzJCpqz<0+|^2ffK4>-2#in|)|FJeW8%c>s^y)&+4d
zmnhiJgZ>`S<D>^i^cQ(3hj~oe;NtL=xIrEa_Rt@lN(`q_Xsi#RP90aTlujP%!OI>z
z>y$i<&0?B1ahUc9vV&=l^k9_7d2^tPX)oH=cr*=PM{`d5v{yYC>%kTez90*?iXZ2}
zcn>CUnVwYZHEz;G4<>ma%9_iMq)cYX<Cpa*9_0Bdk(_O+2h%*5PV>cscRg6@!MCmT
z86M0e&u9MJFJ^i0CTCpa!E7d!aXynd9?WI(mMfp<!NC;g9bF0w=qSMQx82l3W#Si;
zOLO!c#)-A#N%Ky5vCM<z9(?A(W6r+9gEbz!&pPkXRCP;O#bh<(PkV}gKu*Z~6A#uh
zS<m<p<2ptvKjpUqA2Z+JN@DeX%F&G;Y;xtVC&yC*HghvRXWV;J+e$O{vtrw6ih1y*
z2is_6@Fgozot$=rX=fEr`pV-xQm3K(+JkRAsIs%wPO=_#-?aOwSrpy4qapF#9_;a;
zwFFzjUJv$pu)&K@yx8x-_cSrRNcZ9Z8PJ15UKIA?2M-Q;aFync2ZufQ(Ss8nob=!)
zat05MdT@-UDh)k-_T`~Z$v|IM5&w<qjhZJeINw+mX=W1s?r}azpm3ZD-<I)-X@7b?
zvqMw!4-fvNwZel79-Q*vG#7QwgEKUvZ>Lhm?@i}Zh_fEV&2&C~Im^+%D9fA0FMDvs
zgNx)gZzi_x7P-V#&_`Pfjwi(GIv+K!dvJqhw+H`H+h_st;JybBSo5|A_sHRkIv)Vu
zp{411>Rm>vw0|k*J1P2zi9WP^=)oge|7jpN7k$b^4U24W`tpwlNw4NieLe9hmE%EP
zFXFwppJP7vV1J#`^hH~o7kRu+$LWi<T5me-&*w#cFAA_QJR@;o!IJcq3T2_Bf?kwg
zSb|6qFN%6mm33b5qL>$zy{O_vf)~ZTDC0$0FG_e(&}v%R3wW_=dv-}yF2(rNw5ba*
z<2RaOm7`+4sNh9KFX-DnDxdmA3gs=wu$8>dc$J-*Na*px>xJ%x;f3Ud&kNcNV#@Z6
zT9zHP?9qQ``n?Ev@$>u16l5krFG5VhjEbA8a$iX8>#3IDD&ER&WqM(e{>li+scNz$
zA$<i_&5P<@)bOIFm%h+MvKN2ujnwj@?Vd=Y7rnWi#8aD^Ga8w-sgGRXlJe04ZziUC
zv7(8&FUO?RI$lJ)=;TFbFY0<x&x__>wD6)n>3fmmMH4SlYoun-7`<<1d(qH~Oy*gP
zjTlpBwxHBWmQC20B~iw<Q}g9g`PEa8wl3Aw3qn$8#*$_OGfCdki&kE=p=PswYcFiB
z?z@WxyfsoO^qQKl9Vb!74qmi(`QsN#{_snrqZe;fPo<)|c+u61C0@MaMK>?Hdok3D
zm%ZrWMNcpKd-0+d?^<>*FZz<TExR{Izb&Bm@q%!hWgi)x+RqC@dZ~aU1H5?2i$Put
z^wN)M%<u0d5tjL|$zU&rcyXnm{(D*Tx@F&p#1S9n#c(g?crn)tDr$rm6DXG#BRM*X
zk>sPjc!l{GSMsVCW0{X*9Pi4%-;^=Yiw93kYRNPvlf0PBWD4U{nh{lPQYiXm+;sBi
z^QjbG_hN?2XOd-HK8wkljI+7%r2H0ld>&b*n^Q}CA$>mc1&kzI=*8PEU&Lgw7u0J?
zde@7kUaX`^<i#>CmeWc||3r9h{#(Ra;l-2gCY^7*M-!)rb+LRhA+6-A$-A0o(6N=)
z-ZfslPeYks|A3LmhfLOb@sTT8=f!%Lf6Qdi%(zdz*hsTUa-J$~^5Qcu&Uta(i_Kp8
z!p{7Xtmk!hhWy-%+teN}zM!!llPFcSw|Z#<{FcPGd$EHiX<74(7hid4t8o0{#jjp`
zLq0PjdWdl+S%%4XUhMW_5A$7&E2}1v+Fs@dz1T+`_u_kwlKcQo)u|?tCe18D3O{)9
zs>=_1@gr;g<m&%S{^s)f`3%yhC#S#BG-3HMPWppv&g8hOd4kDFnxUM9a{cMWDL3^r
zjT+0(_0D(Jiwh4EmKRICK;8GEoP_ccE_!jvi#Q2+BwQwE@ZuiLDKD;iam|ZcWI8X>
zs@iKh7}veH;YI7J_JFE3{SxJ-7kh1Ea#ee2RU4Zc-tpqgs`g#-gsS$Ds`fSVMlT-H
z=+n4+@yJVCF*`~BFh2GoZ#5?)VdZM}#sbZVCsnhba_Vz0p3$09&89#?s(Pp|F|UMp
z2?-L4OE@yEaXtx!B@~g6UqS&1T3e%_ghCQtpP9M5YbupSq~i3<q1EhJ)$F1YUXbXw
zw#LlQ8WxkVrkZ_YW+r7RA)%xMNSM>CG1Wq;nbR{%NhmGh+iLd7YWCe~b{PpptJ`Hs
z&6`O5B~w(8P*Fl936&*&WSL(NrzO%kLlw#KVXp*9g1@@$k&s;7o-riilki?{;=m&*
z8|S1D@k>|~i4c(`1SNzdge9a(NRyyQP$krqP>XsbK}d+RbE`?vB^Z)(o>^6bDbedU
znIAOP3CZm(jy9`q_pNSEs%}^3ER?GT6OmowL1R6U^Cq(-Ndj#cLc-eAyoM%)6bbj=
z${_NjReZXHIuarhE}btxr`&b9M@=O(BkM`1FQG|Avw?)hOo(Slw1vAP%#@HNVQF={
zk%VlPnAuH9PGNI(JIa!rST4p~#;&vCNP&#jTyn0MT1xa#$>}D2d_+j{R&KP7gtjzT
zK1Zz`wMxP{3FjqrkkC=WNC~4Pbdu0n!u7(&2nk&zbd~U;gaHz$U+s^?y<O4lCehn0
zW_JlanDms;OG0nvB=0BDN2ZQKU&f*b5{dU`ZeEQNA1L7^Zs*Gq1~D1J_8H8a8um@S
zl%dRtP?QWfOv2&n_HZubc6FOB6;I|fXiXR`;kbko5?+xoM#8HS#!B>(C*G7WPQrKz
zeJ7RZ3TuLd*Cb4nFkQk#^1zpxlVv6|nZ)?(V0{W%riPfx*nEidE#B)A+Vycx-AmQ5
zXK;IFx-EP|Ldzab60Og(CCruZ7W?oV2|4vF63&w_U&5zknX={r2@55B$ef~YOL&L*
zA_<F`{GLZ6`4SrU<0_GNiAY!`VY!4=tUzn;3UYo4E6LRt#F5U^go1?Ai#xcQW}-x|
zr#f|gz(}tF5FfpxI^kNDd?aBVll2llVe&EK2F4+0oqEYn2sg51lZ4MCY?ko3MDKg!
zTM1hvd?8`GgdGyLO3oh~s3l*LxmLx~L19YIq-_!iX|TSM@U;Z0o$NDuUL0wD!*(N5
zW?tNP5_XZTBz(`p-DIT}wf8dL!+5$}zJ0Vn(N~8F1qlyGI4I#~TC61ez$PLq{V3rO
zxdgfHNyi!#Nca;;@@PZ|Df}YgHwi~s_$wo|lfp4>=kJnpETaZfpzJ3l{2}2CH{ef3
zS`!A9HBU)6&C${M3<}gE5}qZ$Eo&0LAmJ|wcO={;n=FXC$ZmX%W<9l*ehM$)iiE4=
zv>zs^HSBFqN@jkT)Wj}!UBV3sHP-8Nhwvs_vThCg7PUtLkw5Nhgav};JqeE`{6nh>
zwT)Z;fXc67Ka_CcV53J8{+2MbhTZ3RBf=*V{-r~Y4|#of%9EY$R7|;A`<aC266V#g
z<9v9nX7-W-*~Ev}$&RNLz=wjo4jemN>{fPS>D2iAJ{0gF>9LmajY&uyEaXG2R`G>d
ztq5aLA6@G?s|ST*J|wujIFk}S^qS$^(kaE!(mue4GCq{`p$SXM`B0v!@FCfU3O-cy
zLG?lNp^^`keF*p<`%uLP4=ek8@cQuL$<h_d2+4<YInIomGDf`DTi@G8_<b09M<ZcE
zya@Ub@*zy^i5J~!iWMvM_za==@Ow}Fd4kCMuO@uZeW>a~HJ|f+tKp+xMbMKk+Ll(-
zd!RMBr(JoX^(`mFHLbc2)8a)<>NvIJlf)XNRz_TZ<n%YuhdE6JePVp7ka%=ctL;OI
z5A}Sg??b8&X+F?Kb?yJvE@wC&HGf`Br2Ft?4ZDsHTVD`FmImVL`tZk9jT+FvhYTMY
z`H<~HLmx7I$ns%Z9bt9R>3h`~ev$J~+tpDo@=!a{P&D=-$LD;pOFZfWVY>#RXBn}m
zfXMZM+Sb&EW<E6cp@k2&567oBzdSm-r4Ox0Qd=CZCMYk3);=^{p_6{;2BM7*^pSYI
zZlb*p9elVea8J<o`1FQ3z4?r#Dmwen#fJqU+PD&3edtCbC?i)!cOQEA;13`WKu;QO
z9}GWCKYIJn$A^19-1nic5B+@D;KL_A^rsQ@VWtmn`0x*XM@*yU!^_MEGQQ-)ASRSL
zn8^?yYVVAv=rA9K`!JSFv@e6ABYYUm3L{<pQ9fL_kw8flUSZ)F##deWI3LFQFoA_r
ze3(kJfcZqmNsN;jsRXKY8uQm($#f=-cR7uj;qpP=$Sfb0`LNuFH+`5*Ug5)BPF>=|
zTTJGY>3o>SJl2<m%&DBkKD_P2BDaquq4Hx@yyNP;>%&r)Q_|q{)D=FgVaa=pE8Wyp
zOji5wYosI<^}Y`uu;fF=^**d+@{teg+!|x;`IzODg`%JOu#qMUd5#a8eE5te?3ILH
zeAw*6=RSN*zQ@X27`HKg!MK$?oJp)4!tFlna3x<cq4IY!+3mv~Cg1w-9g|&*vA*y1
zVIM~iGw%1{fDZ?K_@1M&@_%soAs=G7NFF0Ua?($XKQkV2`}?b#>o*^cy8M`%dcuc0
zNRI1go$=wM4?l(@f3VJ<uI4EpPP?4yI!g-?N6-6k#fPiRFEIYac#-iE<K_Qp=QSU0
zvhX@1wfu(LhFh-WHZ_L%T~|`=Xu<;@9{Nz+j}m@7^5JhE;{3?t$4@ov$E4=N6Pl_`
zEsFljxlVO#c~ogm<v-=<Gsfq%Hl8a$!n}TG8eXYk7xdE~EgeoFpC9>MUVuqVxsV@)
zIa-9VDB}x^#TXM9sf4W;6H59~%8zn2?Jx^V`%#73S<~*ZFN3!4EaOL6O68=AjO7_C
zFj5Jz8Y}rxnI*@rIrG}%hu06u)sdO_{O~ggFb+RniZm$%IT~X8{$fJ)nzq7R^+RJq
zI)aJrN349ykE(vW;>Q?2s`*jfj~qXm`01l^EIC@r7m76SqoyCV{77_5NMVx1nCwSw
zSN_2jr@^TlP4gq&k2-!t{P^;wBd^QyxvW!<d3`@(StvDwB@G!f{mAm85%X-u#x&NP
zG0M?>%ya!{>c@+I4Dh2F@tSrwPHpZ-3qM-=(aMjGETQsSGik?Y`_YC;TgHJkZBl5@
zoJa>I`K}~%awVOabn&ArlVuemq}JV!9vtn-*oUzf9R-+>!t$#LeO=y<Nq;}Sxayc<
zYE63}OJ4HhlP#$v8RW-cmJDGW;m1%Wl=QM6!<Y|ejFX+(M=~Gf>WpSW-FelIv3?W^
zpl|@={1{Jm^W$efCiwB1A1nP><;O%nCi(G(AG7?J%o(S<<xF8Rm2nzljnhtpU-x4M
zM`tqLsq3t?Z~8IYkGK6;#KJj@^Zl61<Sj;0o9D-g^SMM8uw<btpL;!FG4o}NOBml_
ze3x-4BV{anqrh_JE66QRC%nfzB{@n-tNmEx$9I10^5cDSCqK55zxnZ@A8Y;i%#Y2i
z{E;6YyQQu3W4+6%VH;=&{P>h5gR)9cnH$~IO;jNJ#^)^A;>!QJl<<YiWA@p`(Xag2
z?#g#C*?--!-q*~(Vcg01EhF`7H<NvS>}RsakG)JNSFGgkIr;<R0mg%jlzNB>X&(0D
zN0*OHjvn#j7e6lham9~cS^fttJ{i&9m>;Ey@5k@VPcR;5j8#Xao#g0izm@vak5kM~
z`*F^X^UTlqah3_ajz`KDm|tZ4i?JDZ`4V$dIQUb-Rpt-;c<9G9Kd$?6!;hPO+-3PK
z#@mdY*xBwdr@YjpdoI7v<m*cbkNo)CkLP~G1@M@K|GGN=FnPk*ft&G^`7=f;El=RT
z)jmFeye_9vpt|yLG(Tej#)1LI*(j+<07U~R7eINIzra{BfMQG%7)h--lM;+mE;|`Z
z1yI^e1(Pz2Wf?0UD^($Y9W`x_t5cClrC2Is6~?ExozlF_r2u?P;<?#!0Kow62k;<(
zPypcoUJYPufOe~Z8bJF1Is~8vAOc7apiTgKrHCFtb?RCG2A4x6n@p?#s=AVD0i3(&
zR9cfI$pH*HmrK!F98C-$iAjC;xKlfT6gO`wlQc#uBoaW~02&7nWl258Ovd^FG+>g!
z*pQKG$$u#!i+LkglFek@i2^y?g=PUX51<JPa~Yeunm#s5ivVnvv}B}hvZ>hCjH#^9
zhIw1Yc8sJzt?d{<rvP3IU;qm{GxlWc!q}Cu8)J9I9svyHGV|}v=*5!WjC}&=%Y;hq
z7eIfPZ$xAu^AU_Mx$;3w1~U#}9Lo4I<FEjRGuc_+nRg?Zk769nNWxc`jG?;t_&6?r
z@d2z1U{wGU0(dQe*8`Xlz{CI^uFCndrhR(3HOb98Ie;lHpUPw!<8;ObjiO(z&Y2m&
z;HHteEO{e<Sxl(jHv^dM@;OXOTuFE<fO!GT4`4w6OIf&(aj~oUb^wc*)1j6MS>npy
zVe&5H@9nadF<I`Wu3+*W<KH#y)d8#t;QIg$1n_<U9|W)^KtFKDhXJf*os9u}#AE~G
zI!3B)eE=W3eDtM+Pndt|N@z{k<nqq~*zEGp1Bk6}RKnH(z6#*$0KRlnw*|1><vZvQ
z%wF*gOZGDE4B*=UzH@bUGuh>8?s4S@E+_1B`F<uOIT*kX0UQnB7)uT@9tqH2?EhQS
zehlCzm;W5Vq)U!fDg461Um1T3VEHXa{(At&1Go~vRhFL!;B)|I0yr7K9|8Qy!c&Z-
zOv|9cE8$sM76Q2F%FhRIfjJqF)c#^l2M*$wm|td$+2I;<O1cxkb>=r1Z!+Fuyv;~D
zvFh$}^j-jTz$M|s03HR9EIa-En-+gs!)3&C^q&Bp1n_SFzhp;GRdG&`J}4h~%GsYW
zK6guwlaVKu<%&krB%h4@GGrM+83kk%lu=SfDH(-Wrx;^lSHB38qB34^C3H2E;PT=!
zO1M0BfmvEcMH!W3XQTfzoK#juc~_^L{Qs}uD#-s`?^otj$<?XC#KY)y^?e-mGX@x`
zzf@yLMp%X+!z5Cy;O44Hikqr3(HMmc-IY`OE#@^CtGe=PGOD|rO0MbhS~3!uCo#q@
zJd4$`Ys*NHk;=j}8JRM&WTeZeBO}7XdW_W0x=iTWq`oU@AR~i$Lq@ueBQ*+*WQfOg
zYSpr{UCqWaqAt&2LY~=FMl%_^W$cmBTt*8SZ^)P>qos^iGG3N3Oh#)Nwv29c>qf>~
zJtA#nw3E?ZMqARUWs_t>Mzn*BLAC5oGCIrXDC6~7_LGF@s#<mz8NI8vnwp;4RmS#O
z_Q875N1g~pdvH;GW%QHLQ${aRlhKFEtdeN|TFbst%O+PWkZAXp@uG~EsC=?UqCG&y
zx~WYD%5;tzy>li)p=+W&SjG?;A1B&FSw1Y$o||aDQ7=jt<Kq@J9WG;pj7c&k%NQwR
zl#FpQ#>=1ue6)-)GG3MO3P<TeerVe)!pT)4lscA$Q@qZMm>}ad83z;X-lv@C*+hGy
zjAx0?wa*k8Q)Nu2Udxy!<M5W$a!Iz4WZx+tX?r#@Lk8U(sCg!#zBe*c2Kf~QD*sIx
zv#GT**2<V8W3G&MWh^DL$e1T%p^Ud_IQ$XHJ72~E8kEYBOezz}os#TDG8W5NBI6zE
zQIb6;$)+L5YL`W(TbE=v$cz#$ld)XJN*SwUtdQ|-lKmbd5o$99BCBPrk#Ri9F1tCB
zD@Wd!@qvtqb)!@ZMM+5fBQm&*&t+_pv7U@9W0Q=*XCoVAd?F()+1@DQev(}%+5S|<
zsr0BX*(Rj&@25vUqyCa#CEKLmH`$($Y=0qRtBjr05*c60*e2sE8IQ|E-oB7B`MsR&
zGIq$IA^21_$^PZ4M81~s4GmvbbX+L1_Ixgp?_^Nw!%!x5d111>i)@u_Qwe)z>?30a
z@llXAZo>C6ss!N);sA}BOuIATnT#J~9FlQa#ufJe!!mxA@tcevIr@`3JARgNg!wP7
zgl5W7nj`I7o{(`;#xYm^JCoxyv-l$Y4;g>5<Q$p8)j7lDw2WVl{&%0@EKBGz{Jg7k
zfyrNt7iC;xLf7mRuFAN^(Fcsz8E-S*ka3gAEk?5WY;MLK8FyXDJsKV6vEvBoJe2Xs
zP5qmUALBBf$oSWlZ#-HmSl03L=j6RX$M?zwktc|a$@bo4yHpT)gNP3zU(h+46b_<D
z5c!!?v_KFAU0x`Nb9<dzuSHo>+?Bt;q*xFMu4F1#SAwG@8EK-G4nkR-Lw|Xp63V!m
zWvO01=OJPFAS$rDqMKSNh|0`kg?NLIf@l&%ZV<j8{6SO=q8cj%f)Gq(H*YYAP!M6N
z)Rm~g|Bfu0E1~sVXKuI>GYE@$Y(1|YM2#RC1d$O$O_tYYtmWz_GD!*|*_BY4DM6%i
zG>x$?V|oyEm_!)6WjWJ|LOqVwXN*<aFo?!Myk$E>mKj7ACpBUuNj8(%jqYd=IscQf
zX%NkVcr}QzK{OAdMG*aicrl2UL9_~@QxKhlXziBME(n`>8&}en30+yVXVQVOqnoPn
z$#$0@dbyIWOu8|4XY9e)ll+IzQhIZg+T16IzRdf%k_uCDNIoElA+BT~lb3=R<VprJ
zp^KEEOkNIRSP;X57!kxPEE&l-ijkU41yUGIbv1NsJBH;%E?zG%E{O3#%nxEg5EFuU
zjb?$HIx&c;K}-u`5=$n#@+m=_;_JTYu4G0KuQQKbH_deAZv-K`XP9pWG24~TVKSG7
zlF2+*PQ@+^;_V<-vSd*Zi-TCse2J^GG>CVYzsne_aT)ViPggL1?|&q#m{WgO2eF3v
z`>x~zCLc1=mEF1^)(4RtLgNrV4q`(P-Vme^J_+K}Abt<xI4urAYzpGrAim>Vp9Qfs
zh%cFMX8b&eElj>(q<V{7PT1!1uY%a_@*P18uIJn(`<f-+Fz$3yX(`(k#O@#t2k|2d
z_b~1cVy~;Sk4fxI_<QCD7!NZ3z<7wJDxaDE#L-_Fe`chrj|A}x^Rvm$5%V`!ew4{E
zMrz54AWjDHJczgu{s`jFAg%;)l~YeK{uRXOAkGAFmZMbEc_!x=V=cTuQ;%=CTx8)T
z#><ScE0JqKTo2+w5D$a6!E!3+b`Uq2-*P2%rE@2UyFuJz$$iHETlrsTRN|4V`A-mk
zyZkZLZbv9DmH8xye_i=gCeIj`(EXnf@`g|>goF^{L%i}c<_jS|lLCwdL;qcIP`!m%
z@&mhi5#~ihc!3GkMGD13C=o*05Xyy6(v_DEp_I#G0|bti3H>)-<=xaOAyf#VB1bDR
zR%V>I)>$iJQ@|7Y?^@CqqCFCwX4elP5Q5A+DTH7MA?DRX2#27AU~!Z*RVD_b7J_i)
zdI%5MD@ey=VKcs5t;)O_V@H<M2%#oNYcVD=Uf|<batO6UNMQ+;Q-?`v2x+b)ou(U~
zGelfT-4N=z{K<7^`DzeChAU|pLMHPpS3-X^i`5kkAt!_`^e8rjCY;)tNFb6MLemh6
z)V7<kunl8##ukh%8Cx;7X0+W=Xv@)djO`gaFm`0@#7HenW;@L3mDMeT?jgJu!o(1I
zaB9C0`ZMVnLN6x0-CTW`^kt+g%@;!$5W-j*>y9l4hVT;0M};tm$xz0@j6)b>X9zDd
zAI3;68O~$`<H!(<+W(yij}GA#S7%HJuQJbaQ^$oc-c6kl`tKP8l{P7a=^?xx!elpf
z3X`cJOmii4WS_x&jw_kT<PFAIjBhf|W{e%p=Z5eWN9Qq8UGvEk_#yJ!AuI~vO9k5$
zEDm8w2w4gmDYPvo-VMPQhChs@AuJ2gE}FO%!txMSgm5r~A3}I9gq0y|rR*WB3So5!
z8)yL!VaCY<YeHD-*7ZJ<4;VjWq^du1Q`a$BPe%b)LVf&{`Q{Mla%>~>O^lzpI<dxo
z&e1JoLsw3Dw=v%t!nYx8XTF2+D_7@hCf_i|%K0vYy&T=exSNrzwC8_x_A%ej_<aZm
zn9v0UsT~U8a0sVEI1|E;A^a4=2~Pc)QIABAhH!-WFN~DsS0=wP#%>QD3*mQ;9%t;r
z&pu8v|AUco{mJAMBi-bz?TMTX;amvkX(H6N-<3_$xxlGc8UG65A`_Bd3gI&ID~$OX
zMEj;jueqt$ncN5=wg}uN%ZE@PjDlg@4dGr0|Az3CbzZG)-w$CPJM#mUJY;;t_&4KY
z#(x-}P*Hrte2YKwEQIGFRO#H3`1;y*T-aGW^DyRRq-cB?`IzTtjGe|83ZrlsMZzc=
zM%iKoNo}_~n_dW`QW$ePv@8}zLKww4R~b?ZqeK`b!zksJOuu8KjHMZA+{slaTFy<a
zz@$9mir<|JtBPUwE)WZ=FnSm%)f<N7aw;tlh8)J`Fg_0>7)B_Jcfxo#jBprA7;VF7
z7ls;!7DhCToG?TfdKk%6MHogHCKpvJ42wy1x8$l}RAc^s$J`nmt;rZWmL)Pz3jcR3
zO9>;DC0Svlg^?ac21n~KQp@Wyi7-+Lbhoe`^ZH>laCKs55e+$-8UF8Fg7P*BBb$Yd
zT}`?f*o66Af23s?xy+j~HVdOU<z-HfiYR;R&LNRjENmTy&4eUvm{2#{htVO731Pez
zM#nHZh4E4tgE+M_W1ld(gwd6GH^v@}-NXO?E^AMg^kVEChKJwD=^IABF#5A_0ON~{
zR6Er>@PGJVmyZf#NEkyo`f?Z}T=}pthP(VkZF?m1*l>&v;}wpMVH_LAtF9)Uf{tT8
zp7C4*=Ne%mHJcnbjJH@gnQ>MaQ^J_ad>Z5HjMEuo70qBilkp9jAbeP)0^bZ{HVfx4
zKH-@%kNMk-^BGBVK^O~}hc4z)l)@s8E@oWfmbo;HWnp|6##-{*$92j+X-t~S!&t#;
z?=g~OC6iTQtac@9n7q&U0b_|2=Mec(7@u-c>s-zCOg;`{1Cvi&Idy8I%QuB-?`3BS
zQ=oS<wuJFT7+1o$8phTzz6|4F7(axuEsX79><QyU?dT3ye<zc#7{3nV8zwFJ1eHqr
zmZRS>?qb}{_&F==4Pzfi_cMOaNVyI$dH-_4p)d}IX>(>A57X;9P78lw{E6{r#v_cB
z6njwkD@T6|<0zA3ZYnkDgv-x`agzBTVf-1!DduO~)YD<aiaN^@Y6cZf;XFq#F#g4O
zk?|7aWk#yyS{T>E2q=&h+z8_)jkSUz3T}mQJB-Jq7RDV`rZOKexyyKu@jheB<sLGB
z6vp37NS_?<Nf`fzkzaAF@idHQVdP~_(dVodr~J2Gkt7c%)j6FI&m<pXtndPEu7XSo
zDgXI-Q3Wq3@UpO&f&?bz6%<!cf_Yg5C7FP+l!DSsV#UTDk(5#XTiMF}PZG7Kf`W<)
zDzPv&*D5ow!st<)>k%qP;wb6+6!=|E`auOD1=Xp83aX~qVFkLIswhyI)Bk`eBL(61
z$Y6=7z+zIBv6_P6{B{RvQl$-3?3xN{D@ajL%Pk>ML6XapU8|<DB%+|Mf;8sojCB}e
zouV@9aWq3geI^YU|L<8<Lyl%LQh&1*G*&QK!4w5i1vv_ODd?@BiGo}Owt_Yanks0f
zpd}ff?*Gsj)rnS1iMHSp=qcw*D|0B?ilbC}YXu!r?1!O9TLtYDbX3quL3<J^Sa2(W
z!r&CUA>E{{A3bG9IxFa+pa<ves-T;K?g~CkvFD}OHGC1eKqI8Et3<S?g0LO=mY147
z3i>J-MrKsdPeFeLgA@!_@FJHpK*2x-CsOP<z8Cb8f-}>c=N<P_>}D5IhA7T*H&nsP
z3h1I^_@0b&b)xmsQ%P7n)gGZ>q=Hu!j8!m7!DuS#WPvec?Ilh1RQnYL`$CZkTT&aQ
zIz@T6q>fWCUcp2K@1@$uGNTg|=Ut=M6c8VlYCp(~PD`~XDWJz3B&X<91=C1b!Ab?w
z6}+xs5uKtdn4w^%g1HLbQt*a?k84NYR4`k?lDg4Z3U;U3MCMSZYDcf7+Jw2;QMq<>
zo`U%b-X^=H*=GZh1qv1_XqaZ_OS8RcHVKJ8o!W%R5<2-;u$1)EY<gJmF7=U;UMNWS
z&*`<#WeV*a4y#j3vXXKkWrafbHY4;5eU*aM3f5D56s%G3zJiZv^waGRXpCrusUKad
zV0)T<G|jGeHgc26@G6<4u#S3>7A3NQ45HvO1)CLos$ipnO*EHpwK&_|Ijs$(I|q(P
zy1jXF4n6GnT)`FvUnt0P###4bk5{%Th}#??{$OR!b_F|VE~u!f;wuGTlVKJ7tKb_2
zI~Dw{;JAWs6?~`Qkb=Vsc9H26>{sx;f<5HP>GnPa^txScN@Op&cS>Yu#5q_GO}FX1
z@qmIK6jUizke(nMq*OUFJ>6cDZqwtT9~Jzh;1>nIQeElx&kFsTGjfEgOSj2-H&dc_
z)9u1_?BA%Va^x7T8+GiX3c5~h(l8_X%7v81b?g%gPAa&j&|cj5L&2X4F3^HQo>Mn^
zO2JtL=M<bKN2S^4kM^u%kM>7jtz)O>ark-iiZ;#X*RjR(+7}gEQgDU+e17d{rLc3U
za+#L3aKvbrb(IXlu1=@oHx%4d@Ib*sTK^T?R&b9j7L43coVQQ!GAFXGj!mc8^swnZ
zOYZukr1MC@--`3X>OTq|v%Zs&-e2A9JYJz^YE<b{1<w?eQBhXKbLzN?qAFfckw<mr
zS3VW_Rp*gbUXI2y9;#y(P*G4t5fuj-L<_0TYB}hy+`=mE)N$OB9@$WolD-T_im6CY
zK@R~-sVJ`E&j*<$Sif+@9+wm?slpR+oaf}Z+|sN@KVqlukUl+-DyO2nim(brMFkZV
zRY)p)Dk`Z+jM%rAG_9hdvWjALqZBRhPE(HxuZk8Cn~Y2&LPEcafQlg3NRQ`w?#fWM
zl$JRfJryAmV%{%et12`VrV2}S-uw|N3?{mYu@RdB30IxXC9JBV8t1C6g1SkK-*7sC
z7PsoF9A1msrs72v15_lbNT&9vXsObEEJ#t2sUk~7s){rf^;FbXk*=bS>O7sStK#<R
zoCwL&Qz=SjBti`%K0jhNP|;Au(NJcFinafkU!+7fN9<z}n<R}?WUFYRB3DIY6*nSw
zR7DPrV_hfJSJx)~O(?T$II}5LUDs}|I&M#)nTpnRZ6f6MgX-F?D5|21imobb6>U`K
zQC%k$ZB@)YmC#N_dm7&}5ptdmDmwBoEv{?V-Qzs*A*Y&B*Y3<&=#6*E*iA)u6}?pS
zrVgG?=%Jz~wR2VOrn>gNy7paPbkBv<J}T|U?!0c-U&X?`8U0j{N&l$p95N_+udd@5
z1691FVw{TcG`Qs=gH()AF;c}~6+=`ERq1a6k(X5rQ|Wu32)%Af(cxt93Xy|Ll1aZ(
z)mDl>GD^i56|Zs$qZwaeXCnm)N6I>CV^!Mf+=)(5@fw*(#cUN5RZLPbUB&C<?e*-*
zDyC3Il{SQlR8t~{b~}BaM$Nn7yh_n^Nz+it<}*~xRPlxiI<nBQW)>@x8ZD1T@u*bK
zo<sIjv4Fa);w=^PRLoZqsb`Ov>>MTO5J|jcJ*V$<uy|X=A{C3tO2wn()k{>ISkm+z
z6|}Grp(9A^y3w(<qsvq*SFuvVDh(@C+OH3?hM?wrwX{;jF%`e7SfygMiZv?USMhP1
zj2~2dpyESXfmM7>PNm`_6`!fttYV#t^(sD9v5_=Y`gc#}1{I%>yRJ=|KOs``S+*yd
zHfFE>^Mh<c;)VMqZz7**o6$Kl?Q<1dRD7von~E>U6b;k1s+hJ@C(^V@8j)kqvU{eM
z-cF;CleUAChSjr4o*Yg4M#WAQ`&8^#@huJ6UcJ(>e7jYA$9xy#prSb>-=ku$isJ<$
zKRj!gIUz!XO88#IK{Doc{Qyn3y*f!Y?oOq)-DsCV{XN9JK1_bg<R=wBbMuaHl*;^t
z8$(%sRq-3mHBP0B6sYmX$?~*9(qgFLBzY-KG!-|=ID7R!Rh(6Ejs{w#f7@rAW<0}4
z(e-UJ&a1ef;);r^D*mF6W%?ywRB?%`BTnUy|41jz%Pb*sjfO0ecAeZKGwo?^8db4y
zKndcvXo*m9U&R9zB+q*x`;LmcDwY(;xyQyiT|9?6PJ{lC?9evjk&3@*_O;FUVQFsH
zo%&-HPgML%YZuM&ojRFidOiCo^Jg?z_3UN!Y?7132=i#jtD&?8Xo%OGu_&tH1r7N$
z<kwI@L)@xTg)|h_K>kpW6^KwcRL?G=A$PA%StkFRT}*T8Dz1UNg-8NNX%I_j&KOZB
zsi73}-13<eEu(=3w33F(8p>)Yr-2--yyiGk1<i3JG9a0#B1<xN>QzXAv->m@YLYuC
zJI$*(cFQc5BWZXP%_Z(<g#b5_s<>3o4rvH$=%t~z21SFap@D`B4Vng_Aw@%~23><e
z-EW_fsKL~*E1G6$sH)+$0y)L%7OTcRs!1gji?7bS2IJ=R64YR7XDx1dY6~+-L$Zd^
znQ5e1n+c^puV?o!pPQzkj)n*~IGvHk?(&`Nx;%4NrKde=oK{ameGOz)vL4y9A=yVm
z8x3tWWNB!mp_zu}8nQJs*3d*l!$|U+d(o(d9L<>vR9D$C2}Hh5$<5U;acOQKnA=pt
zw)H8q*CtW(s!fQr(9lu?IZrDMtu^c&P=YvBXS0#X@>EDW4ed2_)6iW*2MrxHbmm5q
zeMp}Mw-ed0aT>M13lEdyMH*-}p}t+RZAK63U6Zug<uix1&*;e+iS*IXSHqhcW^3rD
zp}&Ul8YXCXQNsWYqsUeo25NXo!%z(`^Y9Jgp&UXERz7nuxnI9z8c^a??~$gt!!!)n
zFhax8bf+aWNBV5jN0Om3)8Z#Y2w$OEZfB3B5wC9(8N<<6X}DXMG!4gb!=|;%7@3>)
z8uKX{rqV>XkUdeuBqqcsGkH)vXPSoT8fI|$RNCvDW%%#e_iN^EX%LyI;SFx{EX`T#
zs6AQzlBr>HG|bhooEB=biH3O^-sVotCzJL|o)Ar2s9^!~jQTc7_7=~%-#%lJhQ%6|
zXn2Q`GSil6c$Xc1DUJB16!QGiWpiUyq`c9B%(AXS231OP@I4K)+Go&YU#(#c)g`b<
z;C&4rkgE&m0v~EvtKqnY6B<6!=;sbNpy8l~^%_3b@V(}o-O(p?8#H{TVY7x$SVF>2
zX?&S)VvOCcC;8_ZzR|E#!xol*!MK(2OL9CW+coUa@D({NKk4|Ig)yWvpVU^)snoX`
z_OSdr#$AlN87Y<CUf%2SeN6T<PT`yLNr}x#=LZeHku$LT5aVGDKQj4=W~+uH%t`YX
zCb7J~GN*g^^ic1ZhTk>kIaKVu<=*ve;wLryK|UZ5FC63iso@k&A6gRoS#&LYM#EVy
z;kM?y@e;d9eon)A7GBWsmxhbXuQ5^ymzZ4EaK)8erRAtwF-oFvorO0TZ)&*Z>g?-N
z@(%O6jQ2F$*YH5YLk<73<PqZ&@-Due{<nt5Ecqvf^rWLviC7ZV@>Ih!mOpn>;{@_>
z2PyUS`gT5n`~u|#DzLDCKyl%`okghy1quli7LEmqaB5NEoITP>(F<+~#RL*uPJ>>8
z^HTPbOiD49766knZfaS9axSOq0xG|vz?S+pon%&WORFqUMZhEAbtSTZ#N5Z|cjW;l
zRC`b$#5^pZ3TOg~tFxlMbLvHAp}I)Z5HJPa;8aVXDt-6rYE~0S7pNmpU7&_QO@SZk
z+gCq})MkZR0*S6>l0dS{smv6CQ~|oBKoyad(gfxgan6||0(Au%2xPD&>rsJOCFuSD
zwWK~vC~re9r!`|HTP91OkwCUUV-~g$h_Z4Mfm{;qiq8@MIRKT@RG^tab5@`}{@>`6
z=eOkStr#g6wasSUhOw<cJAwAhJ1~-=V%Z5h33L|dBG6S}yubv3ZUWr}UJ*E+mfC~$
zhX@Q6=qb=kptnFD77k$SE6|?_RoYJ=HVuit$nB^3HBjIsRv08Om<hcWO9~VQW|nwa
zU>FNWF%B0P$z%j0Whb>*kBE$BVJtdE;8l)}WgN#yI<yecRl{onQ&}>RaT4QXS7(X<
zRZYs%T*-8S*Ihn?$xMMBeD8M_N8e<e?dr@SgS5?>EAW=UJQmJp{e=PxI7;J1*%xvN
ziv^Yl>=M{5@Q%Q{0&4|65?Cs*jNB#=T`jPjbG^s7f{~hcroO#W;NaejRV;Z@-$ny_
z4IKgmKH!X$m#*|bWKM)$DqbhBUSPAp=fb%O@Ug%r<Y@vM1YL|bCk3;CO)t1^6xhV$
zOYNkO9X=CudK@9ICfp+Mg}`=!9RgcvdKN3V*b||t@uk2v8o~5b%0f}{jjsg07Wh`+
zJNC(M2scM|3g?QLvJg_<Z{EwHI~y;0o%gi&2<#O&Ch)t!K7suLM+ANm_+H=um+%vH
zmL?9D@S||<ejE}w%;fr_rWB=nP&C&F>DJKC0w?^={Gz)_zY6D`(os4lR*GacuzwSn
zoX4V@OBL=GAjxsk6u2UARp6w+9|9Ky{u208;FQ2wfpb)&K<iFPbmxK0-uQIx8S>uK
zx#URa1&S?c+Npu_`g9}3Srsn|Tw>GFRqAD4D*OAQ)GBHT9cr%$T&D(eOKxzdZc<NA
z6rk1e{lCpyg0=;V+-9UMP)A;FU{lNQ3p@~5ZD5UohXRiT${MtlH2$XYX~EHvrsE%h
zCseEsL#G|p@RU|R9h#13G<E`|bd=U{znK}QqexS;DDymwd3D4yq11d#@-r6DQIJU?
z#=?w67)g_MW}{8&UeKM5+KTB&U{YNFZ$G^fI!d~nHg<!KGOQr$D66BK4j)I$vrZM}
z6_{6Kti)KE@&EQ@^XTxp5{U_w?B~1z#;v-uH6Mkbj_I|n5DUYsspyDp>_+?bZ8)AF
zIBDO461lmisl(DyLq|=Wevg7`I;wMOY(F}}7}+wtSuMBrL>(_*X+aH3(vhsAHp_<&
zw^H1U=Vs-jDD88St~(o~)YVakNraIkm!~Ax(@~$J4Rkcs(TsV9j)qJ!b<kh4DP%Ee
z#F)+4SVz=N&0*3+M=lfk)iPyiuA_yHEjqrSUh8P3V}_2II$G<nspUF`>1d;)t&W~L
zdg*A#HFjle&)9*nqmFznObVTJbY|X#@ii89W1a3gMg`(}Ft0o>Zt48E-pu>y=&z#>
zbLwwjCW{-`FX|YeV~~!)I>IxY9b*P^(o2lAEet7Fo|KP}!Vne?Wu(GMGF-<iI>zW2
z!9tRZqy{h_O>MjC<f8TvzRJR>I>zc4$9z0Dm69fK^fet5bxhLnSp$2D+tbNRNJ4=+
zPRi3*dAg3*b!RV^STo+xF-yl99q;RSQ^#x_%UO-|=jeD_$0D8nA{{qZ$6G9)r(?d3
z1<V&R9?Egtqv99IgcKIj1eq7Ngps1}=y;damg-o>goLrG@6Cu`q2oOku4G)LqY4{`
zbXK#Z>JG;OA28pj<3k;5b$p~_osLggxSsK2#)k9aXeW~mI{hvIu_|InC6FaIvCe0V
zB-yOvbC*+tx9a#($88;VbZpbHUB@vUzw6kc<11GCNypbZzG42oj-5Kb)v=eO-|5)p
zwtP2B_ApW{r{+8Dr}Fo)!hTn+dcFb&bR1;0A9Ngc^$)otOSyj3K_(*dGp8QW@e8N^
zN+ZIO-`reeG;%-c>~S3@bez|5LB~l>J?-lJ!Q@XJr<jm?Q^^$0aP+K>bFOA=2>#M>
z)s<Y-aY@HzcFUM!U*ROuyvF3ZjvG2|GQZ^}#mc8v-KCDOFu}lm9S>+VHc*Jxe;to>
z#2Ls#>%Wf2I-auHKmSw06FLNN^aeY|amHsXc~0&+;J^8m*FZkQS)eGyGogC(GbzAG
zz7b0;Y~Tf!6k#mNNJ*q$%y3o!A~DV421*zxX`mGAlxB=|pA-;_GLkXN8>m3p4U9HW
z(Lf~wO$_83sBEAL=@>{h;4$DepcqgMNCtccf`+rJnBTz0)>eQyk!=U!WCNFfj8dS~
z5X-{`er#Y<^iBg?Gaw8Y222B`$K=*oV3Axm(4RLGBW@X}YM>gWX4thd?CM-XEyfxK
zYEs@;TD8frKlsHdKau4`dL4GQHLGnP-9Q}{rcie>>{KeJa5T-px~@5IWjJk!7-(Q1
z!$4g(Z#@I`sb6a{D3!3GflLG01{xdqn6qRVXk=jPsLXq#GD+tE3!?_Dflf5XE$4EE
z-PAxc0|O1bWT3f$76v*R=wzU!fmR0n(Ex2&xwV0^4V}h3=AwwSHK6s#YG;5<MA7yJ
zI&keI{Hb9{l5{rE#XwI3y$qahlibyyKd_@tS&MkLSee1h<c4++8mxwPzH*LLdmHFu
zpf9I(ZSF|=k(~{^Xdu-xDcYcVaY70MsBPSyK?cT_vtBkZ%)nrBiH7#*^41UoL&=!s
zEee!6zo9+czz9y=*w7{kg^>md?2Ow~&U(eb7^>00B7^>ij<E)2QM2EOryq}wGceIW
z+QR5~0~2VJ8|yzdv<Y7`aJ8Y`y=3D_1|}PrVqmI)*A2`d8-|<Z&9tW(_-%DmuF`Be
zlawmWW*T^Rag(xnn!aJ+v&zkgSI)F+X4-EWm`(HaeKW32i8%)5Qcw3MzGYy6frSR<
z8JJHan`x7f!l6cb&rG}9-o){lHu1#<mKa!OU^#W)<NSJ+_HBEIgqilc20qWUmy+>^
zT0~x~sQ;L0uP~f_z}_=ZV_1rPC4HrVRR;DCP5CVlC4Aq&2L`^kaKNIy(6N?Q2?LJ}
zd_=Bj;3oq=8(2?6Y+xt-iq^me1D_b!V&Dq{pVFM7ei_(oV9&#(8gtD}RLfkGLa!y(
z=cG2r;U6urwvI_8vem$s2DTa4P8KWkpIY<x^6j9Rm}&1mocN7_=b83bj9+t66s1Ct
zWf$3Pen-uwrW)8~U^n^C!uUM~YL_whQuJ`*%84dv?j!%qvhTcOty*jyFz|zcL*xS!
z&4bkI#a8OWq^vCaFu6pQO~M}yyf-_(bC!Js<`DzG7&v9%w1Ho_dB+U=PUC3cD2+&#
zO?IX>Pw1O^+`tJkDb3Bii6;#dtL${P{{D<+?>2j}j7h>j$r`icmrsj7W8kcTE95o?
z&e3!*aM8de0~ff#>$B{?m_)awQZBL&RdJc-@0i3>S@ymxn@YQ8;JSf(<SGVkkS~=n
zZyC64;3j#<5{r8Mm^w?7@g0kzWFj=O?;0Sa(jL&_Z{QJi>Twda{OiRQ6?p1F5=B3o
z7XOby+r{IAiIXP&HSpBH022dEJR{>9sAVG2M4X8{CMuh#Vj{1JcoQW|lr)jgM1B)R
zOcXUyz(he4g-jGS@fk$BYR29|VoW`;rnvZVLE>L=VsIbvf{9`#5=<1Q2Hw^(2kFNL
zh^=3lExU?)6-4Tm#8oYulrmA;1pW25ya|{nW8#I*dRY^tnh4r-vHmr!{b2p4a-wjO
zs6c-PHc>T0R5J0~GQC(~@%bRJ?wVFJpR@a!$As5}YC<z1nedsAO$1H&P26uJW+jS%
ziI<Cu1;s>z;^MnOdWhOzUW833COWneyUUAu1;ykELVBh(%_oEj-GoKenJ`THY*3gc
z0(nGmylAP24G*;s%Zh3ys+*``qNa%@rN#LnBB7cvvPG38iS0Dwqo8=Bs*z+O*+gp-
zwu#y%Qplsp6edzlq?xE^qP~fA6Lm~POw^?Ych)a;(2tD~2j9_OEhgj}8tpCFaIk1#
zBEv*O6Pc8^nwY7IKdX!HBBErfkY5s4N{F{Ah-?#$O*A#p%tX|reeco4M6QVz!$h8_
zSoyCuKP)bE*N=AAe@zt$1w?a7GSSjRD-(YtTm5pysBxn5JBiJ2YDK&2KLo@tl4xV1
zt%;r{dYNcvqP>YOCc2vFKt?ms$wX%pPkW1+*R{ijSnyPPe{CXdURU8;^HNBB7mVv>
zqPvM6CN|}Y{p&Nns_Tqt%Ryr5bFH_DJ|_B^=x>6&Wp$#s9~FH~9LW@&?rOhv5-*zA
z7!XtA#Mq$tS`#ms7-V9#i8Uq$n;2qZnu+NqhSIQ_^p_uuGcnA>a1*0Uj5aaC#Kq2H
zq=~tMbUJaJxlG?KiJ3RFS4@mC;h5LNg>7cXY|-<oHu4|M-#2T^b8Wnd2_`0)m~7%T
zYTILNqKUm5OOCpwZPSH(N2_S-Q)t|8Yg1`D(0-LG^wm`j8g6pY*G<eY@wSOYCT5y=
zgQ_<1mWf#=-ZU}W#2gcAS0^rhrWL)T?G1{&y`23CuinzsM)o`t^Gz%;X~%oI#VVfU
z5l07$f9i|0k>WucvB2ke!eVkW6U$62H|Z6xxOYsvYho#Nhk936bg3>zRu?IyMTIP}
z!o+(fR+?Bv6QQ)I+fy&oNYMBe8zC+f6Zvk_9?{zSCO$B+%fxOIA5z0id~RZkiH}UI
zGx3RuPfe^h@v(^wChnFMx+VTJjb65XC`*idReT%~8);Z+?wi<bVtgKP`?hvztmu{|
z)^!wB8w;zDklTwdOl&prwTW*`d}(5vi5(`sGI740*lyB20h`F2T7ob!C<gQuJ9_Gm
ziil6!ik&9DHSwK^pS@!DQ*HST&GU~|J6_N-vWG^*#7~rDVxNiqCVnt+$i(+Fza|zx
zK!a<7_Aq?0v;M4}@B~HKlH%nmVt*HL*u;-ynPobeorbbS5fL{;KVsq+T2D+IrD;yX
zG(4MJF1x(w-N>$xDV8tNkD2)0#Bme7ON$YCMX5T%(?_56g5x%SnD~>Xn}y~UPMJ7O
z%a?_+7S5PBYvQqqe@vXC&YHMk;wJeUxw?rfCa#imQe#5ml8MXYy)DJsQlfMx{qz2!
z-j3>1nuxO<#5EJw9pf7<-_tAS6Xz7M<kQ4kCT`P$X5xW~J2WmP?ope27N4ORw2$S#
zs}kk9g8sjd{h9gD#3K`b(+s_>ZT(kkbYIJ?BBu7z`+l0(FCw1M;!mr$g~Aq|(&A6+
zyoGoR&uQ_ukjDZo5wvS%G|^ctXJm_ToEY*z%V#0Kg#s4s-jA+NX~$HNqKJ_rM9Unp
zy@a?fi`Ma?h=rmSid!gQ;ROr%7M3bzA;H3%jRhSb+9ipxjqHI1oprmUg;EwuTY!aS
zJ@n24M7L6++KR*vWU>2evu#K;_&B4Sh4L0^TBv2Af`y6}!WI+@l`K@Y;IrVjP{o4B
zg4cpX{JQpJL1MY$qF`<DTNi!whly)C>A?viU_rJJv=FlJpkLOpZHdtqB5tX^J1jme
zB$6XyY%if&&@7l1EDOSdZo#nddnwW7AI*1D8+D)FvlY7*>lbclRV`GrP~Ace3pZ<t
zcBW{vF!6j|@y<3gyStzXvfn2XEhJfJU?IaovPD0|MjZ<g3n><z+#=0Fx`n$w@z42m
z+5*%+%$d2{b8_-;NGxlKx)$n@{=0g83v>jmFhr+)IQJXIsJq&@ds;&anHCybh+4?9
z(8$8@)*_oKs%FfZpD|#FSWsSUdZty)D{?F}v5;$_Db-a;%u5rm6cy7A;Tt3><`+$U
z&fvDN(9*&z8Xya;Ec#VF23r_n!M4!GLJtc)Ewr`J&O&DkT`aV>(7{4S3!O;qiI!VT
zv`-NApKHGt7scbm&RJ%`P9p!oQe7={v(Vkb<&vVKCYBTwMaMczQ^8T9mqoutz>5|J
zSm<M+uZ4aV`dgrN;PN2Rx}>wK>Msc*Yq-d%DXvsC23mN@!XR?gds^B+al51Fb3T1e
zx|q~n^ne&@;bjXGEWBo67@5MtD;CCB7-3<gg;5qp(<yFu{c5V{xID4-7*Qr$Tuu<P
zii^Me;#CV{EsV1;o(%Q3*1bi}Sco=p;@(q@{DC%B4ec~1T9{;Ex`o#*Otvt^!c+^>
z$Q1u*<N7zJwfBu%TK5%+?bhfm`U-NA85Y)c(PvtCgR(r){%)i9D<ZaM3p&>1ts-Vq
zH!ZBU@Uext7T&V3+`<YA^DNA_u-L*93kxhPwD7itMHU|S)z74e|HssKKu1x1|3?TQ
zApIi>ND~y<gx%TQ+36)f2uU`5lcD!63P`Wg6+u7{1O!9`ETDp@6alF=igd9nh$ux7
zP!tjUf9CPa_x#V9bI<49x$nLEZkso=lT7yIz?9?^bDaO5Y3bZ93zVfHentVynK&UF
z=#XMhNRe8lly_4Y@Vv&o-7uxvFM*XIycELAA-od8_^->a3So5!Yq*52DdX-<>7Pj9
zg?^;ef=hTcgx5k?OU*-A+CJrvZ;e6!1#Uc^a+!thYT&+ssc-HMz8S*$5VnV~BZLhh
zycNQx5H^RfF@(26cqfE+L;S`{O53Y}+>Df~ZwA*^N?9`~rPBQ=%kN3q62jIHzsP`X
zROashFA!<bl*u{%Mv?zScm7I6@>1UqVP^>YLiiwrT_NlaVeX)mJ#^oTsh@0A=GXME
zm3u>&Sv7^nJ}>9P5Uxy0`6z^sLtw^r8j@13Wy*ysfq$#`yM+TG9AsQccv!+AD#oHD
z;Vub>LpVaKhVXZYpP#_75H5yrDTL!ps5;r-hVUIrpTH*t{Y=nPf_^UO7lM8%D7$<m
zz}F#sBf!E;kIe5wI32=|A)I63+8#L*!Vg^6fz(}xQV(rV3C@NfoysEki3t+Id2u%P
zyz_Tjb@P1IS8G!*2o43FO4oi7gK(U`SZzYM9Kvs0JL?!DWL@f2hT;bG_YlskSFZ`&
zdVE=Oq(iCy_DiO~bs_er7_h}VD#zjDteYYHLpyw#RZ+sN5dICJ%G%UBB{cjr^*`2s
z31uWCiDvWB`DB)r{1?f}Nf>uHb*rl-i&F#*YA4D|cr(+hAmPP283ZLe%5o@bUP<zo
z{L%K*DiW$n2up}as3xJhgy+_#rbwtEp{9i95&{xxNq~e0Byf#)OQ<dS-Y4N60qP3M
z(e4$Xj-V^MtMvpZx5+nYeF+VymEceZavBNTSVHApsrL)qM9`*!QefiV)CVQsLCqxa
z{VOi;A+gLmdnA#0ymo@L(VMBXWU7P~5`tpYR6fMHk}~KTiK?zs_qA}N5@ZPp3B?>x
zf+C@ngw_&N37P~`;-?(&QKqL$FeKc_^uEvZDqYH|ndRO5Jk^%Kxm*cp5**2Q1cQXZ
z(EM#Rqpj9bLgO_CnNpUQE}@NtETLqEgtijCdbuV~{rY<r{gTO5?BzGAvj-!QEn(zW
zsc{K85^||YORL?t*##2vB;<?ckME|E$-cJ^rWQ&llHd!ZYosL-JPF+;^dM8hz;&q|
zBy<#@y-*K5lR8Q0EO1u|T_jApk;MU<txYZeSt{r4CQkje%#Vbg#CuYEOXwq^mxRny
zS*M!>EA92g`by|0B8rx$k?(m+?N5)trFO9M21<B@5hY=zghwR|lJJy-nGyy|7$RXT
zdr5dq!cYmLB#f3YOu}#pmw(L|N&94Z1S8mee|%;2!a-TyQ(4|CS>DsXWxRIG+?nN#
zkwDC|<0VXxFh#;tA$%swdz?1pTv;9^CrOyhM9B8>1KFOH?M;&~T}VDj7w>gvRxga5
zEP8@g%Jw+XkZf-T)f0FYr(m2*SR`S#ggFwPkuZ-j5Dv~IP~G)Cif3ed2j4a3OIUim
z%Ciy{Fa=JRr@%|uUd^i+1Pdj+a?uBiB`lHn6%V{1;du$$vi$`vWu%=fBHsS7vP{CU
zY;WIv8JDuX^?Tfp2AL~3*C3PlB?+q}?2@os!fFX?B)ltOlZ2N!xP&*Dyv)07?^Ow}
zNmxsRS1)9fR$3?Fb+K3)iqr9^6!+Fk*dXC82^%FeiTkV0i2K5C3(0qw;7to@sIGBu
zRNR{v_clw|B4N8&I2W>2fcGSDX>9V?CcuTuMLQ(CPX#y{7bxM|xVJCvQDBdRy%G*c
zI4EHsGneubJ{G;o<ai%40e{V?ljA8l-nokzpGerxOzfOLWUrf_<Mqq&QsxH_N%&O4
z5ebifnz-_bvTl%hn4Zn?cyLiinMCW{{ueXW<aj3}oRm-@6L)6fGYO|8w71d0#^(~g
zU@9rdRrobne8mKe;z|@>OZY}YK^TQ$d@JEQ3HOCjKaB4soR&~Aj7njgVZJAVKT9|-
z;Rgw4CHzSJ`N9v^n+Tp0m_HVivoFUZ=YoWb68>Z*lyHg5+)!|t(@Fjd48KVDRRI6T
z<-KLEFeUGCf2U=h41JyBU6pW60s&vSC;db6|A6JXpugvM#5dTN@f=3ku>aD|O=e#c
z_df~$@De~J?{-t~cK_vEt8<8#e;rQ>LvP>qj<EkaIwi*`g~?%*W8Wrj`7r8C&$%nt
zBYrT~s}RPWVeoZmHrw6p@~;D^VdXIH3FBau3U`H3CG0P`Y8czs1n(BOS{T&@s3B-g
zL2C&LL0{?-WS82a3wyQ7_3jPh%ezzSgi$w)5!F%~FA3EPBfE0y{o6AdZpdg5M#C`L
zhLIUYqc9qWVTECbaeo+1!Z5;oY=Wj?JP<~UFoIz`7)G-&0%4?tvGe<?{1u+ZLt&6M
z7nEk?pVjcUdva34{wo1|c{>z_6owLp%Jqg32_qVYOhfG|o4?6_rQwNY?t{Ht{tN3^
z7>Qhuzs{4%vs&1Hf7^eV;UQNKW4#k6;A;RJmJ^Y_CjQ$Gg`KePYd4HET0V?cVYCjT
zjbJWz{Pzle?olN@?7v%1VKy_u_<V0V<0OmL2qQO)yfETn(10`=O_xJeAI+$DqZ)Ci
z(^`Jm56I6$K{g5a0i7ZmJd97MFnb+KEe@k33@?m!Ve}27Ul{Gf`0NF<OW6MmYlkp8
zhS5oI$}LMKpGRk!B|CLcuGf{OXr9_l(C%UM5TIumeFW$w=&2E@y#;7GB2M9WtD618
z7!bzRFy0H};V=e<u{?|y!gwT%N5gm`j3>hwBwR2$j4@#h4r53dj|t9jL5B)TGY%7=
zQ{7r41Q;2{D5huKT0F%=n^b+Q;6EP5#4yGQJYLWVf>Nft5S}EOQw5zY=oCRY)HDGo
zIh}S8!ZX5nN-!6PF|+jS+%RSd{B$X2b{KO6<{!=d`(gSsVay9-e(BkT0z4bWf>O>?
zx!!Z7cu^Q@a{a$R;jtu)=S%rZ1z091bz2d}i($MQ#-=b<(wofIQpr_eyjqG^3$P}P
zmj!r5Q2vi%4*r_JYXxO<odB;3`bHRU3b4NPEdPFoGH->kv6S<+0Plox+l)NBIgIAL
z-JL@DE#fTkwlJ2c@qJ-@zyuFtM;PymQ@a>r%*RqOcIPqH^XZ;2a@6=<LD~01Mqn;4
z5aOTo)^qb~6jJ8!#OnK*yj*D%uSIb%j6+PH2+|{bB80<CTYiQnf+JxZ6}WK($HF)s
z#<ehh595SjQs!F$PI8JcPBFj2_#%w2!uVS7zYL?^!lYNv`@e_oo09y$U)8@6XZeHv
zcf16Iahk<HjPru|jQHL2+v7<;i00WaeiY!Gpg)EEXNf-xI;ui7;tOG14C9hGdsR@*
z^$QcZDEO<Om&5o?0CKLdtbLkA(D#1-*VR9S{J&xR7shpg{}l8uCcXfF3wkpQDo^=;
zXfD3|DVS{XSM{U_?uejn#5Y%&2+BtIDK6Y4n#mEAkDx*X<wUdnHh;!DBWP9>tSC6E
zw<YoGa%5Jz-F;R{l?bXvP%H9(?_G=%KaN+6pt=yKA!toO*^7UwK-(hXuk>y~Ye#U8
z0QU-7M^K*SlIulqUj+3<-$tb)G>D)f=Mrya@N+`9HN0P(ZBi=JGy>|$>3BRy<s*0~
zg60tfB2Xw3K}rOvLRgNV1*dp6DHuUWaBjO&5|}@HhZ#cW0};{WXi))Z!&oWj_FER3
zXc~g*g3=DA02H=pq6+~#0!IL1H-fYXT8gH&v23eSK5?4}G9suEMa?MMMvxi73lXe{
zAWMwqMbIvS><HqbnG->t0Msovg8%(epC3U%DZfyFB0&=o6bn!y=#}HXmD)$pA%am6
zjE<mV1f3%27eW6BIt!oj<$-QOxQn1&BmO%rx3i;r1U-a(dJ0NI^%9`BpnU}GE9fb$
z1t%IHMtC%WhXo*KU<8i{d^^hq2|PH0ArU+l!SIDiBTFTRMlh@t4;NsBpd9)3TL)tz
z7#qQp5zL5SoH#Wpg2@q#7kEMhk4G?3;M+07*%yZW*KekX0N_o^RG}(4(}dV`L7x!x
zVy^d;0P`bwHiDS~&x-J~n0^v*z}W&2&k<m*pw9?8FM@CQuGCY31raQaU|Gcf-IkKi
ziL(q32J<2j(u*TlBEa*4E)|q#%jS8MUoPY?E=YPYf|U{c6v59CycEHz2zExWi!mR;
znh4fMupxq%h47n#vhOPbyeg9GH9^-#u&y-MUXS1nfw@ek9y63(-ilyj1lvW&w@b%)
zFM@X>cvmzxMX;rmzgd96ca&$xtr6Uq_J8k|Y-7@i*N}FUO1>`u-Mu@4J+w>&-$t-E
zf_)L3WN3-AA4Kp`1Ro3hVFU}_^Y!^8g8dO37t8~K?p~O5Sb&3q9uoA^2xub89}&%?
zg0gumg8#j@bApqKPfjypPYHo91^qmNFG}Ta2jo|DRw?Ipm)rH>JC3j*>3ebNbOdK2
z{__(aKSXd=;2%pl=jfgK{vU3fkKjTC|3>g1HH_d=1b;^GR|LOA@M{E@DKAF5ZT#D>
z%3KkVc{|sxinG@Q{arZgj|i>{zzf7}uic2?A0hC!pf?5O+Ox})za{YP$WMymj;Q~p
zS+yw2L{T=13Q^n{MRL>+=5m4(aDk-dMUyGE{Mn?6QB>w_5&zL&sm$aiNq3dvDgsm$
zl$l$-l+ST$MS&=KM$wD&Mo~KoJqja=d!o2EiY8GsjiOEzb)&d1iu$7CZTr^~m^N=9
zK*RrU%tit?7WDp7K6^b7#e-1<qX<ROjElMuNQojfiie_p05lhpfhf2`=IZL_c`XFz
ze>IIIR1%z66p8?0K_gK_1z;~Z>U*Dnhkw0`LKCNMGpU0ag%w3f6rSMQQDjAt9fcEx
zEBdBIksd{xC|Z_|*(!?G0@I|oN4{OmGk6t<`q!Y$Qc0?M+c@zka-ztMB2S#U9Xa_?
z6mj9=`dAP}VQDXpmMF!=QQUqRtX-5}IrN?0Ir@KB%nnh0R1U29yhxGXNu1@nx<t`c
zV9wGl3a+|)>1aI!V1)FJqE8f)qnHv!-zfS;F*b^EQS^^ufRK4i(1)XVG>Sn{3@jbt
z5&FIK&9TA%pKXT-0ba_73O`bxVS+O}>ZjX?C`Jk}N>Fk}3ou4dCf#@;JW)`F&;$V<
z7nF%W8%`4Vw%4XcF*k~5qL>!N^eCQ);>jqUj$(EcGsNt->)2CK%q$&YmH@XkzwMDZ
z!i=|VOKs;xu^@_tLTrAN-`(>~&4YV}=b~5?#i~-y;wY9eK1Fj$6wj9$VQCbfJe$N+
zeL<XB8TB)rBdie37X_t#UJ@Q5KQ%qHS}@lLO3uqsyi$r;FxN)0E{d~J{20aSQM|!O
zh~mpA-i-RME%8g5$D>#u#fB)}ieh6FyQA0>#oJN56UDYDwhL3d8^vaJ>7TlZ0rpsm
z)iC8~-&8iY2<Fx(-V<Qs`9Q&qzz)%6Cv97j`o6#;e=pCh+$A_<R!mLV8^yjTK4sul
z^M45VfMIhX@L?1W^iT1w_#epoD2mL%NgoUTCsFJd;DDe91wAAvB_ny>VKL4TK{?=2
z0geg!bs&XnJi%(vC;em;pG9$s8B{6bbB1@GHzLpfmS|?4_f-^~Gu<=PFwgrsif^L$
zwJ`Xtpx;OFod7I@WS$ndMp}q?*ncTMu)d`Q2mF_EE{dO`xX8+8RI}shTSuEeM{z!i
z3tZF>d5@K3(lxxhuhATrs2B%{qCxAV%gnxVsdECU_qR?uP`Ub8S-l#?HP*%$>c;SU
z6n`*IWGt8cvi42S7T2TrGm5{WxDkad!;$fK6gQ)|Uq%xd|3q<%MO8*U8UIH8yMP)p
zYRdR8iX@qz;zAi2Rb-!ER#1Wp0wl{QSIQ|bz?oy^?=0n1lu@Y^R~FzdLBA<*IYLz#
z)k@D+7vRPlRcpzBjC*C&k#V<-`&y>gmicKgoL*s;X_dY<&x^K9-%C?pPt9(b{$rjO
zS=#2I-%BWVpNxh=zP_O3G?0<qKbxSD;4~JL<B-!-#se}^WTeV?P)0KuH*TgrB;)9-
zMOC`B7@1taW^=&|2+HP5cbY9^1ZBuFVlsxzc0)44GCDqDNHX4N7<}ToK^l?K`8zi%
zXzROM5cg~tRAi_!G#RVR^rr1qor~?7ea=ZYWf%gpS)qTN97{%Is!QO?NRu&E#yA-*
zWwhdeGP=lUEhAk<o{W4MZDeH7!ui2CJ(%aU<@jeZvgnaz1(`A$Psll<6=n-2Wm2bv
za%4W<$>)(Pqei|*P#~jFh9{$)j3OC#<pzsow9WStG7{fsG|Tt8P6?IBFrQZV#|s?1
zy^NmuUPl?XCWpr7dmY3q#GPb37Y{xs<h#n~CgTwqkILvSqlb)sGWxTlj9xN&%jiRM
z<$ITw7O*4#N`h*nO8IQ|r8OeKl~Z!aA0QNXm=2QiIr~5{Bl&yty+JYt%NQYJB)uTx
zF&V>T3>V9!4nt+|Pd2DLG37Zdm%!yyw^1@iQ~vu5PRiyOfhoor$IF-?V}^{U#JrEo
z{N|}|4URBT#w5XvHSjq26d6-xOp`HP#*;#;Cj{jzlqcoLU*>!4I8(+f8PCdCAmeE|
zE;BesIP3jN@!2v+x$wC%o{=$6=Cg5=O3oJo)Ub`vc_FPTW2rF9A{mRt+2@5kg_nqC
z?cG^zrF=S?rX%zD3N>Dku|mdm8Gp)nQN~IcpUF5S<0YC%#=*jZV=`9DSR-Q}eNj93
zvW!<`yengqXueAC$aqu6Yckf#SSRC3zPF%_`MLmi6?kUHyn<eN>t#G~-h4~OM$v17
z3^K|2sj~XEjCVxy9=+g+%4*XBk90HF$W_bODPyaQ_hjslajAQ7n~eDn=WVB>Uv?>Z
zTrGHRbTJ2^V%2*T?2@rt#$Hwcy@2zU@e1|`>=t-0CaauoV4s2yWPB*&BgVFjPh}jI
z@rewMvtPym0Vv5aIX*Q!DC3aOjhHf|M}z{S3cRC2hpq)4*Lz$n>V%-w<RlB=HM8t$
z_j4Iv$oNUd&oaK0@s*6qZIXVJ@wJR^Wc(nbxtluNP5oBJcQU@Gr_z(i;c;5vf7&FS
zk#T>k)Yn?3l9GQ`bopC|ofCL(deV6r7X-c{<Dvk+2s$%8=@J8`z+=Z>1?Mt#UTFR%
zFqx|gysI*<$@pDx{*ZC*eBggN5d6iWS36iChC5@pA@JXV-W2p78QXg$-{K{Jm0xhm
z$9#DnNdnv<Xc<Av3Yr{4IRPm1l2wg#ZOcT(7%Ih3Glp6*RF2`U7^=lkJ%%bVRE=TW
z)L@xo#;mm9Uk8lM1>WHT?~tt>UR}2A)L@Mm>{aPJyRAnuVz@ho+A++$XtK*aG4%6l
zuvcz7jmNz)uscD$819Q<eGD67s2@Xv7)He~I);WZG>V~H4BcaB9K-!FXffz9G>M^U
z3@u^^#_&K455~}(XIrH<BM_c?D2BHtR&CNUHF<Z^tn{RSID0xhDJ6zHH#IeeNp31Z
zC<ZBpXbiIG7#1`_`dQN4^d!c>TT7BTU@Qi;bYw+<C8x@Nuq=rK8ZnqLl*Hi0U~%E%
zY^xX&xANH0iNO_|v>2#HOF_xMyKhy})}>>n$IvE*j2PMqJ@W<4j3FzAY}$XfAAUJ8
z#DzSUd7G0fnt4Ka$+Dz^7z$%363m346eFK~i^U-9*e-_lLcWU-=nz9^0VvZ^fKGy*
zU1*YXGgO0Jy2j9jv{!Nu`f)&rM_&PY#?UK<-ZA`C;E~x!Ft>f7-j?YXL;n~C#PD!w
zuYoc2{kuHRJ|Z}e3YxYyG$_VT&wyZvppOYUG=^a@3>SE$pcEJp!`}toZ9qDPO@8q<
zhF4-3EATi$#|t_^(8pt#NMFbNKVzQ}<9BWRE|UeFBIwi@rU@`zP@a84fG1<9QRx5d
z#bag+3u0JE-^K8B46{ompAleAjQ<SNoy+tQ^7Bg1&KKZWLE991{MG5X7?#DbJcdOv
z^!c{x;+X&A)Dl4no)=(g3|)mVIWGv#OEIhv;KfqOl>+dms8s^27IaPNS^l4~S7UfB
z=HIq=p3r8k0Iv(WPS8DF-3$HNydm(Lf>P2jl(%Bo7{k9Y{1?O9F}%Y8V>lSYyD@Bv
z@#{a>9>dL^LH^UN%`udjVQz_`cxKYp7{0w0;PD=70zZv?EwCeo_hZ--^M4}T8T0qI
z{ELs>G3<)@ceNv$WQ{8HI?YZZb8ig$V%Wbk@<9wA3GktynU9y{{p`mvd?K1N|1P&*
zfL~h_Qut5|pT_VF=Z)cT46lEv@O665btHzPoFazfF`SIyvl#w7Q~m@OVw9P?pk{g`
z$Yq|2;qw@<F8RIgWxt5|_f}MoztWBynffL5ADQ}<pkK4@?Q_|DCO@NSVbXWPO5ewD
zI)*bb{1C%+4$cabQh1iT^cen#;YZOt$8?DKH{(CY_$Hwbc$|;ng1{FAy(H)_rDr(^
zWiH3?TPf#C3|9rdCg|)!j{;nH{8qU&0{_Lb&$yyHgjuXfH7KxeqEG)3YTObXPhGOv
zi{mFLxI;lyfvlj6g0c!KDyXC&S@FHIY+h1%1?2?hpQYe%)d~vc)zzN36}(fy_Cl{k
za`noJf7j4V!9xn}Qcy)fRRz@)K*8M{=R%;mf|?3=16V^e+f+^2woIudIAro&YracX
zTfsdF?p4rlg8%k%9mRja>_H(@S3y0|@jeBO1*k7*13?=K+DK5&HEBfh{Q@@;v}q~-
z0Ri{{di>|dVRHom1w#@^lH&h&uM`ET3R)=sFRgDs=<<Ig{%gg9d;y@);}H^od~14Y
zSi$dwUPRC_3sPeW6a}UNOF`!oS+tlcCejq>3JjW}$RqQyoU;3OCcV`yXe)3O#1-WH
zTFX_Crl5_23<WI}v{L*ONEdYRf%2_s%o8a*zC6gk{qbfzlQJS4Y^#9u)l*e71;`RK
zThNzIRplw(Y`*U#<tfPLx-@*Jp+G^Qf)7-DsG>+gLP2#EHB=NUC{eIq;digF7C}$J
zWCc?cv{TStK?izV!5{^L6?Ed#6!ccmM?n__Lpz$?6m(b6RbV#PkIe0%;E(Y+y%;(9
z!JZ0VX3qa)M2IwA<P|Th-k05rynzZHp??+h7aa#E7*pgutYF5rES_Ch<PCXRd9BFX
zTjcStwjWhcCt$u(7#yPDF-j_!dN;Bs<_uLZOu=vkrwW2>l8#U?iViCBh(`+k!Fn0o
zDv#y@YsSeRt6-dh@d_p=n5dv>!sDsO>4hS%e8QvTl_GDFf&~RZ9v`iArz)7HV5x#-
z3Z^S~Lcx3m&nkG5-P_c7hVf6G6+FdPL}~}a{0e}A4O@deW(n}Lg4qJh5p=GgJ%2Bv
zz+H{C3++Ni!do2-E>N&g!E*{0DX7~k{c@J_NSRcgT})fu4CdAgE>ZB#!m{l0JmbGO
zb$P_2z;XpID0q!7Q!r;%>Iwy`6s%^_jflUfV5Nc`vr>7y#7y~2B?v#Ax<<i~ajCB=
zAbwfFD*_O+3&kk2PQmM(OToJezq95KyPi5LcvDESNy)bapWtn#Wa%ukhPNeW;q=rV
zvr;!H*ePT-i>bFL=$7!d(()ry-xGA3pxXuAA?W*pQsBV+D!UZyR<K8Ks4XYmEAYNj
znGXc`P{Bt6d|b-^gr;bp$3YG%IK=X$;$s9qRd86r6$Mwhb_GWjoK^56GfTm71z#)p
zM!^XMCl!35ATqqgXT<w5c6M_==PJ6nrx<LlatP|JR7t-S%&!Dx)9dDveyia7QqFe@
zu3s*HrK@{d!5IZVh%qViayPe$5I)D+@>0en1-}UJlY*ZWoEP|lf{Ow)*j_Sne+k8g
zCcIy1$%OYC(<I?tR`7DdWApul$0h}?vG^$XTft4v6$$>qbZ8L#Q_$;zzIR;xOMt>J
z)f)<0S5b$q$o)sb++%9_lj?s8P9IipDg45n4^Ae$;g1(3sklSM?z81T%dbh9GAc-S
z<kw7AQI1$e1r?Q4R93O};q*IIR8%p1zj`6z|3Xx**r#`?{uPr)RTWhPZdB~`Ncfy;
zD$HWfEB0!tsHNgD6+=}(#oa3IQ&C?<Z58*Z_|sMDsu*1C-K&D>aJZjYNA<5k+dr*B
zT2DpKWyyS`$s*rCMMD*RRP<HRNJV2687kVUxL-vR6%iFt6-`w<pdwX83l$HlXr`jM
zihzoT*eff@L)(xXx?~ch2+oXR?>4{FB{QfZB$%lilF5{~9MK%|cn+KF^+K^HtB9#^
zRJba3UNjXIx(Y+ZuNO^K#q@3InxLDCz4duPQ-!6%R`K;ElT9AhFXl&=%!<GG%`_FQ
zRJ0aTv=o#~PL!^qjf&i?;O?v-%hau)UnDbCWU25}v{R8ymt_TWRphBSRP4n?Ge^)x
zS;2fUR3Xd0iUJiU=O=NHAB(+&ieeQd^hJrs?*C5CxmE0!L6%=m(OyLd6<t+yqw!UA
z5~FnyYwXPRmUxt*<U^wG$8K?V71Xw;ie4&usC<dh<k_MUf7QKJOf2z=elrJ@_~Z9e
z(Vr%IEcA$qs%LWts5p1ad05555-)dvNjy++7%-2j7{o|W5$_jjQbT=lQSi=1=|fbI
zGNOht_EgMJ@sx@YDn`=IDxOgJwM2|oF-^rslZwZv7^~uODj=HUR2(kx#xof9WxZYE
z9jzFjAov$byh$o13p`cD6d}OwWjv3R!lab1Cz^a+YFfZQp5*L#Wrqe*XR27UC26*b
zIb20%>MTK@7L@$CDxOjCChep0El|u?u|ma*DxOubK*iRnp{0~m@tn%nV-TAbdSH9j
zBCfGr+r?~pUX%P_W=q!?nftsro8x(GE>p2w#S1D1cpgWX;(52hN)<2B_$ppiv5L`K
zFMEy3|3jNkuv*0;&m(xb6kN>@zQ#mWaY-wDUByPvBUq<mzW`@F?+q1yd0yRip4!ga
zpyDlhEfU;LNfmEXa}|>cf}H&w74NFpB-TQeHZ!Q&dHr@~ZBg-PJFl)}@@P~Tr0{zx
zwuxTE-KU3ksCb_drDB(g*^$Iv6_ng9dhJoM?6Uc!=uWzi7H;PajU=|W^FCs2XM$^J
zs^JrA%Q~Z>s)hq94zhe{D5K$!iceLXV6@ZYwD$h^5t{eW5D(&`f<tgjfaA1SmdEC2
zDo&}m&Jv{J=xf2xxuP2JuT*|L(+A{ysp9i?9`V;IzESb5;IsLY0N)Avy^7NUoDuW~
zK`C=q#gC=<oB-$Bc|WT-FYpCHe^YU>ROXTZzp#>&axM#S=aQONN;y{rxF+cDg8m^W
zWghMk`b))sOpS2xhKj$%ipnpkc~bzc<sTKd1pZf0b|JIkN;ygMyKo!XVrsCghVq(!
zlbEc5&2oa?Xy*}E&~T@QisEc#&EMWrtda(9tqJZD95R=0N~)&$)w{Ze8XEXZN~JkT
zH8s@IP+#+}6#9g+&~UGYIvUQb3f`?DFHNbf;T{2+e5<lqSKxXYHg8rd^r}kEeS*Wj
z#0@kw<Y+%?jWjgY@JQbfj}bN0`%Ce??Y##yJgDJG4Kp+})9{dnp&Ev1Xs#ikp+tkH
zAw@%~#;={i<}x(|HAFSY8j9N&hNx<LFRVcl%`V4OGI>Nwn_2C>m<C;gp+V80YS1*?
z(b}cV`iVt6+r7O<YHA=YunLN*xde`o$<dIj!PStap{0gaVvyI{d*j-Bt;P6p4e6y5
zwb78FfeP?wD?p~8SsJoS`SaR)>`s9^4f&$uHBPGWBdz}I2|=mYhwZ&0jgManzi#gp
zmoh2PPD6W|PQ#-bI?#6-x@zbqqN0<A&ZXhOknU2788AG$Yv`e&XDO2*#5<H;qS;%}
zK7#fYw4b2;1sx#h!-5VJl%rMZ;4vTvX?`XS5p*zBTA9UW%GGL*X=oq>Vhe-AMIepV
zaDIMhguo*O9VO_5&y&Vz7^`8NhWRan6E#c{U_3)&PWl85k87CL#cekyoo6SDQ*2Jx
zFh#>u(WKb4Qa*Q>PYC&DucX!<mHL#1nHqL#*rj2XhNm^WsbRf_*&61EuwSQPu7+nc
ztknFwV?O<ur(v0f<s4AMvl=S@8d#w5`?gr5VWDUay%HdEF^5%B+8~9L#}W<CYiM2G
z$4kYjUsj~Ppy4Sk<wd4pYRdk911mJFy-<U<(x05E!M_%NNyEEeXsZO})T=fBxz-vD
zFAGgx5%g6-UlVk#puL*-?{O_09C)2ty^#EdhWkr``AY*E7?$@0w^GT$fwwel)bO^z
zY`&}E9f7A$433->+$8X3LAMB6Zgh}h?`hbk!R+8|XYxjZgHI*hSu<mYhWA-XYG&}r
zs-Cf1!yXM^X!ugYUZD@Kr~9dS!{9y*9|-WFhL1FSEHL?9I(VOGX!LTBNB@tK4rn+i
zEPqJDry35ksvJ#X{o!#$!!ZrV#o42brP)6JglH15c~Zk?8cu2WytEe|K(!P{V2S^q
zSXj-HUkQG7yW9!-ji4h+s(i2Ew1&G))HZQO!w<v;Y8yDK;YY@jj;T7%Y4}M)L`PJ|
z&kR>OPUnaDa6!XG4S#94q48RbUo`x#;SUYJYPhUnd?ImG!*6uNoTM2Yyepc&&mYvm
zBmH|-x*gZ9(T4oZu7mehKli$Z?H#<69lSq<*q;Zq<L{OITf<EaNjmP(@sEaE8vfI;
z&r2LTuFfb*e4bnIuZAm2j9c5{<#)!(FQcQZj&eH6>)5z8eyMphSx40sxjd>LQ!jP!
zD(FZ$s=jg5$9L*jTv18i60fY|E**7s)YDOg@;d&ilvZ0uH67J;)Y1VRHFP9*^uiqy
zH3djNq;0I`zHnSse~y39R=Zorz7y&{)aj87j(Lw5`CdWm=(w+=M<wsmQD4UcIv&)~
zfR^m&HPX>ofQCA#YF0<@@cg{{bu`iO{Q-@5Zpdva@Qi~RIn8uDq$5>F3mwgM$n%td
zjugsYF5vQ?n-(W%J~xLn$hrQ>zA&^v(h(9kxr<BXsbE+~+Ch!CU9ygtj?Ox|=umX1
zI&yU6>d<uPl+n>r2fbkE=+@D*b(lJyJD?pqVp=*@ZZYUYN5`1`+Rd$TR|ok7BRYDm
zbY$pgtE07!blvxFxn98@$@y(`eAY^#7up_<XX?n(k*(vq!UP2_tjLX1fuDVU5pS4h
z=IO}Sk<d}Bqd>>3j$V<D>xo3?(Qct=uIlJ<y_d}bb}7;E%~7?zj{i2rJss;0Xzl2=
zLmE$Y(9uyxC$903w!NcQYobd)&AW0@I)>^PrlY%#9y<E#7@+gZcj%>~j}DH1q@zbm
zdYjeWjPpGS0uI<$M?W3jVRioj?OaFiVI2c?4AwD32RV=EcvSa;oS5>11b)^_kn`IK
z_1}&jI(d)j2zK(Wtxq4WV}$Vg<2pv_7^P#pjtM$O)2ceg>KI3NA5$CdjBi_FzW08d
zhWevjqQi>ZJ=xl%iA7w<<ZAAT-_40SCh3^0<F`yd48E<D7Tpma-!3st$8;UXb)3-g
zgpMb5yryHV&i^8ar*tgSv0TSY8dJwYdRE8NI%eybr(?d3IXdR*n6@?k48yf@8Uwpp
zQKI(=l^m|+Ssk^rwFUHVC$FR=u{cE~NXac&#K`$lUBZc4Db#bZ4pPdq`8>0-S8%DI
zY`&mlg^txa)-X=0s4p_2bi5=Yq;nOOt0=oX=jai2m5z3m)7qUW|FVt+`+^*5;MVvn
zIx4qMyvhjK86RuAWUkZkIwMWTPMx2y!J9fZ>)66b(6K?syE>lf<h{j$Kwo$A-X_1I
zQq|U`Z81p4cJkh#wL5wA>EuT;HVKam+Z5lb<2@ZabbQdsuUFeBW4qhAqW9x0ENeS?
zt>)(N_^Ok)OUG^<AM5x;XuF4{fW36=WdW(2#^ZV???Z9wBM}c=S7K}YpXxQZwEa2`
zh#8OQIH=>0j!$(Q7GTN?H3}ByF;9P*pI5!JUqBx0>>XvI>EOI92xeywb(E7dnvP#|
z{Ho)Wj?Z<R)$yZ_FLZvj2j4Qqs81sCm5#6J<!SLmXYbL@-Zvt`-+0VVpX<le?{)mZ
zB#IZDX30uX?L`G=SoS-6#2qIUu?XDJx&V`l&guAx^<T$%W&|}UNwCQDP9&Cg_6~L`
zzQ{_oEw1d>E(y?Jk9(Oh$*g3_HL!t8(D4VeSjSa5Vr0%WLF;;n-$j*Rg8a$C%hFLP
z?Us&@I(s*C{H^1rjztUen#T*CoKf_Tjw##X*E)Mt`<u=lCI8j2%`9LYzQaHn1C<O^
zHvEVxYoMIL|5BTgY@lKnk9m}LKr3&cf`L^<i95+O(71~~4x4HhkLBVn162&vFi_J#
zRRhdc`n|e=Y6dc<#d*+-%mp%Q8GzyEChJ3P7jM>z++Dj9jGuc9+-qR5fh7j&7^rKY
ztATC?>KVAtfMdWlP~SiU17QOZ0}Tx{GVp+b2Mxc5H#T5yjo)veR~N5dX2Cnp<~1?!
z<q5T^;hT%;-;9$QNHx&HKyw2D!@p{z7~loS%qigUS7Cw|AjVAdgIc&|ji7;%nFS$(
z9}e^Du>D8|>k>KNPb`WWPz<OBWW#?17vqXL`PGS8_G>FeGoTwV48N4Q<<k7Y4P1CX
zZW~yBShWmTT~so8_CltXW}u~kd;<jrTG99hvJJ!yM7>11fi?!lckzz>75pSi%P`Q^
z!0XfEnFg|mE2S~n+2lBbwirBe4CEU8KoZ{A93Oc|V+dttX`hbG<8qdD@d^!;81M`f
z(NLYegn@xa)M7z5cJYYY8E9{yqrne>`5MwMC*F&9F!13t{~A3kx1h6uE@Dx%Tl3;X
z^0xTy+=A`~dKegEV61_jG`@j{IVSyHoak+!uYrCB4tDYS7&zC(OX})zFVSBNvS+`>
zJ<I^Z-`*6rPdsAaQ3FE_3^TwYJcwTI>J6dC|H&TA80hLTfFCn3KRLf`SFcA`Z@7Wv
zyaGy&q|U{O5%k3g^-6JKR{O*#1Eix3jOyym@9K@C4Gl~;@PvU01|Bys)xb0Z6AiqY
zoIlw>(y)R_23V9{?dp+E5y82)s~`5fKyzP28`f*(K51Zvfw=~rG4PaunN+5$_cUXS
z$}|YB&M%lH)@40djTtxFz#IeHR^;;F*?If5c?K33Sjb*nPOspzhF@5CFg183x@VjE
zoPkA#|45cwEMAPRclDk(u++dQ1D_jM#^5oq#lThrFEH1-d20;3Y+!|f7lpzrnVSYy
z3;dFSYnH!DVR+D4q`dmS!u7I}7<kLTYs{K%-a3X87jA$doz~5xe0D4M4Q9vOoHq@B
zyV9<ke-U4AfY%f<HyU``z$OEOHmfY`@6fX|irzIaxSPi&G0nAEBoqUWsq`K#U|_$2
z15_-(V7q}`26h|R!GtofQ<#gp&^g5k)_JDw9s_$BZw5Z1aTo?ot9_NNeIVkQx_#YN
z<EDaP|FMBjD6`3>-5xotrp?JAK4{<&4cp2+X5dr0Ddh4vYT&TIM@l(NWDd(y#|@ld
z5qK|tlCFH9+6S%N&xAg77K_FgbgO}@G^2s941CS}HE_|uH`I!Idjmfj_>OinaE2AY
zK&{p3ZgGMY;50|;=5dyHXB4#@mdl+m2dr{jUD%+;IRif#_*qnp^ThM>dTp%2b;WnZ
zeK#5S#lU3)zX>(C`Tvzh>*jGI<Zplte`9vn5%v9U9#1ieemC%kfjdo9G;!U)p9cOh
zaEtM9ME%Ra-=etPV5a93v{{`_%5=WTN|>!NW&Snr9}B*TvL=#Da97!RZq6O1zgr;Y
zWs%LH+sY=JnAD&~c@yPKzuNHVouySU{j$dE3uz@2mD$}y4HFAnxp$eUX8L=@Dq^V5
zx_MPikg~QkZl1xxS)Xf~z78<`Y^`Pb7tKYl<qq5yZ`M9>kBNItC>B%;bxhPX@si2c
zDN)bFeI`1X=xCz8i3TP#6S|3pCK{P&X5t|ejZNHdqN#}oOf)fZshf8*ODo&m<Gzbm
zt_chC9yF2vbDWndhH;(lUUL%x6EP0>Pj-rlR1;y-ujEp9uZ4+_3CTpz1VfITKc6dL
z{k-Q!klR|`#Y9X*O>q1_J0xV&zcetrX^pJzo<ePV1yvJ_N#?a-!ZeX-BFltj!sgde
zOthxiIpzV)G2v3u1b4GrGPRb}aA%w`L(FYJx`{S4yRf96n2UoM6h7!rM9QnfeS@lI
zn~0kzFi~hC$3(7)JPu;|SG``{y}^~!Iv3OoZjRsgU^Q-m-alKuNVuukM2U%n@FPc~
z<33$%dM0>V*G?>l%Oq|uIGnnZiOwb_n0TDd6)qcS;t>;FO?0C-P4qC)$3$NfJxw@q
ze;3_Lh{gX%^focJyT@Z*cdws`{w4;Pc-RCj#=68?D()eP*HB=;mWXSQniynal!?)d
zx?aJ-CWe|AW@2Y|Z-}6enV8?%Ws}?B;U-3y7-{+&W->|1Ct$}hCK$%!IND~F78q;#
zC9eE_jXT)!447l;=1uX53~w65#B(Mlo0wwaX%n+eOr_Vh#;2K>F2Kp|-V-K2-+-q~
z%oK6US~0@}_tLx!aTT*n%*ZLA&1p=g5AhsMQIwc(;#m`OO*|u-42*e<%;r%h@`di6
zztzvu7BI$Ix#fCzRC19C-eD~@u}px)f-W)fyZ}5^@2I-mM9s2kE5v{=m^eE%UcZM&
zKBs%p<mW8?dGp#O$XRV-jfu-9elzj1iC0YQH*vtkt2CF1O(r&*SZiXPiH)Yesd%04
zHnG9PTPEJ5Tc`Ocxn6+Txdlvw(UsELpQyR6QrgdXChINB*W04wJ0{*`gj7)}#xl6Y
z#8yTToh8n`XJWgF9VYjgey&k$44od=-dLDNBh!+*OzbxCfr$@I>|tv6@b-!l!P^Al
zeGKUy-c51e^pS~=#i>t3V$zj4^Ar}7{yn^DJ-mY^4$;ddPMi4D#9>w*6Q@iZVXY`A
zIL6Xcl%UQ>ndu#TaNOkoJ@ehcM;RvxI(WQzk$%oRT~zQDr!aB;i28+~Ukduh`gC4K
zzY!_<t?A!Z^JawC$M1yN#AjGTOq?_ElL@Mn?In2UdzKaHa>0+Le-})dpIKNo$1j+;
z$k<+ydtOjR4xb5JGO@IW_lpTW#^Ey=;$Kbh=8=2*D<-b8+*xRB;hKrxO;oUOr-eUQ
z{7ocVz6bv_@fYPy+%oyM=QVDaDB~smHu2G}IB!O73e)jwvNn<U*93P;Nfz#~eDEJ-
zIwYthD`Xi9Wi7u{QdLr#mv>v-UzM|9RZc5!flor{#EKRwS*U0Ed;7{3?y^wRLM_X8
zaTN>IEL68p)dF{kG&K!Qehtenm27sLlfyw^;cg4}vea9sZQ&kqa0|gp)sCXX?d>s(
zPo;|0`6Q>Vh1?Tr^F!KwoWeo_F>gZ)+(fa`-rh$M+;5?Yg$U<8s5Q0lfQ1wbsTLlz
zz(JZ@c(QU@GYh=paEga4kdhy;{6|cDHp2U$7NyLP<=?^t1*LZ+3t`dywr=bd6|=~e
z|FDbG#Vr467!}qm=oUV-@R0?>f@xts^`!MI*cLzeik=o63$BGC3keHp7Ft?pYax@8
z$@#4;w6>5=+}RyYzjWr;V11j<+^lAB%+B7DiADVu=4DyPwoqW9&_dioj^*!}^DWS8
zxfb#)a4ozOVUzpGO+CB=Jv<69+IfkoT#~3@6%<=2vCz>%Ckvj1b{xDzqCNHOqB66%
z<R5!@yheAh@Lvy)74^oPoX!@yQMb`9k1llgM7Jwr;Hb)GcMH7}iQAQ`7qNxW7RFfU
zW1+8wAr>C9(9c4D3y)ZM)B<l$23UC5!axxfyv5+WdCPNH!@2DoWcd%oc$phat#-vL
z3@so&dbT`w^+Oq5mD5IA7-nI(=*z4eVd1Au@j5*{u4@zxSVg5)T<lm2<19R7VW!0|
z=VF3|X%?nic-+E73zIEOp%drk@V=hGGl_QC>~AL7WaLk^{7o-8OpqsNpUP=8=98BH
z5P<uE85X)%O5-y(GG|%*Y%b<nc*eqP#z{|){5ck~dir+|*C!S+H#x{Wdg_k^uR#nF
z=Gp=a3z@bS-r$&wNeinitfuL*w8a*dSy*miiG}AaEVaP>7@uH}_U-9W-~}PZ=1L1I
z1Sa!E8hpP-@Di8S(_?8RUSr{9j?mLvE28&cp81M}S1s@r5v_gUYa+D9995YS>nyCy
z)ZWmmG0oq!u-?LU=7NO{7T&V(u7ynu=B@Gn+9x(z;D+IC%ir3)BV53|<}Dr{I&HSF
zm4l0D+`?WxJxXq4aVVQcW3v19v*qU;(%!eQ)52a0`z-9T5N+-96mOb%Ke*e%!Jgh8
zu_!(+_<-Tp-oHDz<|Sx1;*TwS!ir(z9vk~D9I$Z7!Y}M);gE$dEqq1wnC})&QbP+z
zEdLS5F$>3;9Rf2jnA#^;<#xsy>T{0Q<lck$l!eckjKgv(wo9Dr>3v~=n}p!T0`Bzw
z>*;-M;TsF*7-?Lch3_n!vG4=4-gLibbhS&I7I;j^Wr<+=@W$jUgJfF#N6X)Du$c3?
z)3dgFezgBk^k)m_nfnL*UC;#!7e&DL6tTew`PIT@3pXwNW8pWJXbaaZ{K@6CQm$I~
zo$*jby}Orpjh<~^$XlL2MBxqf@_3WZeaK%H{uVLAGIfK6rI&wc^Pf{4&~CAyv2@$0
zY~w!*NjA#aC~xBq+kg60#ztA5$|;~j_il?P+aTqnY_c3x5Y0PnRJ8p{&bx1RA>h%P
zKLOaNVxyJ~*r;lwnhkT0Tf_E^Oo8g63*}$gl1_e28+<xJ!2J>d>D@w}0{7aeV?(i_
z+Nf)zo{eTU9<p(tjr!E{_4NDM*G5AdOvA=Dh91;DKCCvf!RM>IEh1$~E{PX3vC-7V
zwSU|PZ2yMkK^wfcWo@ayBhEl-ZX;kLWJBWkD{@mfQ7bo9NV3_zm)F8ZP&5Ztb9ws~
zw*3cRJY)ePHlmy{OPjeVP8zfQhl&JDI?aY|qpgih8-~sA7iXl|{I5zdZCExaVB7v(
zvn!}0D1VOWzB$f1*2)H-%ca|XZD~#UE-JUjRKAViWC+StbAef0j*S8vg|>gC;O%zY
zMvjeK8+kUy_VTzKcBD0UkDPCVH{*<fNe8qd8znZL?d2tGe^bq)Sbz~GJdVk`jA`+9
zwtrdYwX!3<zz^1>!AV0W8=Y-*vC-8=i!`6#jr!Pl#Kog7df4b`<6Q@v9Q2}PY<^7}
zO&s*G(bvX@Ha@b^&qjY6OKmK(F~G*dHXgSz(MFS|Z3fzSjIQKpHXaq6K{f{4{B)Fm
z_NyZ0q4rAEG<C<)z^IDaF#5&DXd7c}jIc4%#<9W5C>#E%x@~#%nWB9+COEyHGS<d8
z8{=(EuyOj80LPI=1@|oun9sM(-ECeU6MS)MV3Li=HfGzHV`GYqsWzUpF~dgfsex%W
zrrZ3OHRk`6ezH@*c_1@+PoUY=HuXCPp0Y91#w;68+qi3(*6L~P^vMEF!FkIr2vDD&
z6Pa^uJY!>_jpuC4;~+G<jRiKS0OuXrPRZ}5JUcolpGsdhI{5LuZ5P>CY-5Ry=Na(r
zm51tUBStClD%!h)6|RWdHX0dRZsP?T8*RL8V}*?uZM<e<t&Np7Ub6ABjaL|-HdfnM
zV}t9hIzGsbq`ewt#s(<Y+9?n8Rc4J3zG@?Nq(3apJNNhWbvE9x@g`j`F8DgVUs2;+
z%L<kCHa6IJOIU*n^Vs-OfXCSE%y;N+8{2K{V5W=>ZnCl2#uk?41~r3y16yspM_&&L
zZnHttt(z3&@$e|^u9D!>=hEM2$g!Bv6trGRaF>nUHuebo4c{az3Hs{|_zHi(GSxo7
zV@Kyey_11fG?a}`Z2WHH57vJh2W))D+QmGwamePEKyk{(r(Dk1;1L@~Z5(DazHGAl
zp(nLtHjdjkL6vB_sR3G;F+-QpMD*$VJrz#<xy=v6<7;N3jW1beh6KN2%5?Ql5i`2h
zydL<Ls{Wi_wMW(Oa@+9KJwF9b+c;z6f{lwdez0+tIWjEx6U)NW+K()KJ(Y7dxE#8Y
zoLNJHKifD@ADv4lr+10+eu;9)#xFLm*x+}dex+NFwz+KMHxAfUsc*L#J~G(2veso}
zkTG_ZWz7Zy=K5fT`f!BnEQT!04k|hL%f<~GNe=FC@VAYdG@y-lMg{+|amxk+_+K0B
zNLO~98em{E5nk-5P(#Y_DB~d6K{*Fy9bb&$H*Z3ahAQu%f`dC9-<Y>!fUDpdIZkB<
zcR9Gn!MzTuIH>BNrh{4zsyV3cfaa<}=6GJaefO;#8KlBAJ{&L<?{-kz!TjMtnvp|2
zx;-~}Z-DNo<DjmCh7KAzsOR852lX8^ph{zcbQ!xdo~tenFhn!Q1R29rwcelrkH!uX
z!-LJ%1e$Vu2h$u(ckrNtW)3<y=;+`f2hAO{bkNE{z(I-w)q&<9)j<mfVFwWhK~6d-
z5ON?nepMl6kT9a?nntSvQ3tYvm;;6NZHk|s%o-Yy24R!JOmN+S;lOs_I4~V-F4Lyz
zk#x)Pol9_Wpr6_<6-#cD=HQ<x0VX3c58~Di(jDYE$anlqY~vu)K^C!twhsRWGj!r=
z`r;8vXR{>RLEJ%(gIou%75N5a$}>n9PPEKxvwVXWI4E>b;=prIMB_Lp7K2bvYFl!%
z&8RK`Mg^DPt_ier&|c_ssX)1%GVf0ac5=|!!C(hN9CUHe)j>Z8{T+03(4Fx>BRJ^c
z_<7oskx&xk>e!bxp%*PVHpn8-*YQ)}`iKB)Bd24o^%`7jfP;Y!9-;l)2Of6tL$M!$
z6noUcAjgkbMn1EQi_I7ue9Xa62jd+~a4^ila0jCujBzl+!AJ*O>?pCQ+jWMM(q9a3
z*43U9gJT_x6N<6PgpKr39(OR&!4wBm9ZYi2u1TB8j$bjT+nx(;Xc_9<?kSCzfc!J*
zH24z^o^<e{gOv_uIC#pzLI=+|nCW1agHL;T^Bp|xV77y~4xZs+C;0EfP>neZ<MRas
zED;|}3UcIm^c1hog93dY&VAMa=>i9PAI;?~iySQGS{y8Qu!MovCGfn1rT#?u*Lrz3
zo&2$rva0m<?(gj_I#l?AgB1)gftfoss<i3Y+k45uDhID~Ee=*Q^&Gs)=^Tvh?Y->a
z6<W2ow|tSiu(#K(T2Z6>itaG-*E%@R+gnFJMoX?emV33gw=JXOO^5%q5O34n^8y=~
z)P1~-%$h#l$Ms9za`0#UqFYyr8$TB?TC{mb$WScZQ#L!;!gO|VkBhAi-g9ul!9@q#
z9BikR92|DAgT`_2frAen>|{ny3hZ{U$H6X#Z<!YHxY;GQRUdD!gHC<CeGZ;@Gf-<>
z32PLu9UnRP*uf_b_KWmPd%PrLSa9T@Z4Nj%IViwLJ}AKCKHeb){LMB?`*@rCct;!@
zb?~i&?;IR+aNNNc4!(47g5lJ><fMbo9Mm}xIM&BI-^VN4*P9e<bBd>)O?>X)>%naa
zzEMlQA{M2OvD&Dw_l<)^Ph_#kkbcifGCKH!gR>4!J2)enN?&hssBM?N-t%+wNA~r8
zba2kWPgJj`^7C!lsA$i;{PO~nxw&89l7nAZv|W^O@vDQ&taUUsL*n_sZw{_9m6{fP
z_+H@^76-2l!8HfJGuZlie{fyv3*YYR5r-FM{pH|>gMXQitp7~sdz1cg&~v1A)4`Rr
zHg)G@{x%|b%R$;->Fzgvl3HbIYG;d+Ty!0ub+E6;0#(*UvWu!Ns<|lVqP&X=F79-3
zuCJHVGc&oL*Rp+pM@1J>Kd-V2;z};Ycgn5P&;QR<ce$wI!dVq~czOwGbr&^Uz{Q9W
z{`Do)tE8rjlV*M`LElx{5V!5;-R<J>(LsWHUDRQB7p{xCF6y~RagplcJ{R>}-0z}^
ziw(~gHgM6%MPnBYUG(ecP3q^7F6rm3eyY}Xs<F)dsh`)>#RD!LbWyXv7wPZikJFmD
z{1adVT)*Z#<YLv?V%A$0<Qdbnua>9p9usWgBIqLOLUxha-wU~5Ee&&}u78pGY+#Us
zbmM3)M)mgyVlEUHhKo1)`$?_3&|K&=-BABx)b?J#8ZVilE$Hu=eB$MTdo9j2^3j0p
zf^>GnoHQEHMZ!g~i&idLyU22p?c&4!Ub>4<hXgZSe&ih)E}rTXXzOCqFomUwm}NHk
zcslnaaThr*@?8{AY*_G@{vJ)8D-53JqS64rS?Ky31{UWc+HHV$<!Ui8H7s%Ax#;Pl
zmy32T+PmoNf)D39xPF9mVi=^U9R+6b<W=lQR$Fqqy6EO&si*W1mZX>60bX|(`xh1x
zFsQij-Y)vM7~tYz7kxRxs{t0|{&bcLUMMNR**gsI$ozLz+cj6y2fF@7x>C8!w3&fH
zE(W_e>*7ZjLtH%OVzY}aE{3`o=Hhuy?P53==wh0S>9iz6;$-o77Zd0g7o%NldNON_
zi?J@oF&f7NQ-2C{91~nLs)T;Ova;}T7ZY6^85$fjz^gtjFv-Panq`8&nQ1;cI7MJK
zr@G*Emf#5&Pr7)<#XJ`?=m;*s#nUcky5O+y4)9t;iU{Tp@Mix%nyv!Oit2qY>=IH-
zynrB~VzIm2<wxvZSm93h49kLpL3ej|cc+8_f`x#BA_xjd2}mdkSSTS1Sab^icaDFa
zXP)o*=FEvN-tRkS&fGhbz)X6XmH#!I+UB=SvZjC1l$56rue9bSFfV}x2`o(De$%X8
zUpVur^>fjRm$N5vvWO!lu$U27G|p4f15bLyz>zNDvIJg9V08lTCGctjuO;x!h}atm
zTu9bmPhdp?Rl0`DiQ5)w7rTThUBh}^!{@q&D-&3iz?%uYC0zL~k-RaDiR*0wW?1~4
z1TrVZd7SP198&~6yC#9P34D;i`UKVqF`k(a@6|PYU+@dgrctB~34BOlx`rPmFt%%0
zdxAA~cGG-2(l)ZsY9`&cxofyNflm_nDuJ&P*pk531ojev34F?cqS1!u?Mh%<0^1Y#
zoVlf2NbBuL;JdEjrLG}HJjc_9!<z17{&~MCukL2gOVfDlVf_AUkl9DD(J4RZhZ8uE
zz?TUycn>D<+v7=3bPF4H3mGGaL<kW4Q{J_XFq8C5Ytb#-cV9b7(<Sgz0w;w{zD?kG
z0w)qU#wgg_n5&KfqWO2?>JN;IDe><U;3D~(p79?Uk^^Hj6zR_i{F1=!g60{Tv2Xko
z!*)X2!fJW6<Y~s#z&N!y{GHZtTKpUZV^Wn+K*H|{oKN5u8`5_PTuk7q7-)aLtUs9f
z6Zo5^Zk+X}py$$?{*%C^|6+My*5w4ubJ~>zn6k*s=oaNPrjcv(NVo8Mf`6gH<Z*Gz
zxv^c^O-4bxw1eHkI|<xPAfJT%68=r#UIIxHZg&d@^-4S2EquFA?0y1V@0G8Y*Jn%P
za^1r^-NR%F|Ld8?bv5~S|JDjhC?uhrgz^#!OL#~ElNclnxN8(>l~qJSQ3=H)6qitn
zI=0H<ad2MRsFHpO38@m=Trf*=1EG6Z_ZzM8nzYgq%7|(Mx`(W3c8isj&~i*<E~b=+
zB~*~`v=kY$qJ-~PradB|l7xEwV@=y->A6;A2~{OLDxuMov?_uY+LZQ~gvTX3A>m00
z)g&w!o7Qe_+9PeP_@cC5<|KCfXjVFx_LPJMCG=U{!>qMw&q%19&#EpVO+vchGbH@*
zLKX|Byy?E*J*?Wqiius0ObIn<4GGaiDN1Tdc>9P>BiEL&{s*%T2Yt(|D<O-=fwW>@
zIN1`{cv%Aune{~d`VzuJ!NZ5rawL#GD<~(;gak>#1|1*jkR>P*t}D2qK$W0LSSe$b
z3|)dD;l6|<8KwkF!ZHc3NU&)i3H>DWm*7h9Xg~?AB={2lMuF!zA}u2!S3+Y6d9>d8
z<Ube0i|uvycMqFLXiC5I2)E32f9W0;J(oLZo_nWz*i6Fnbd!YU5?-K?w-PTBFgFuV
z_XuCQm=hH8`4+gh7ROn_qlJVoZ+a|mP5(;hCZW58wi5O>G22V%AYsRd%yt~8vDv9^
ztfPcZ5^ha%yHMW_9{cGmVQfmAhukCNX;+EwJ%|mMAMYWdr-VLD%{~$qm&-jd-R&iq
zbA9r9OCT*$+v`hBdxW>Ic<mR)2S^x5G)kBvVUUEu62`D+2}2|dl`ulWND0G;*fR}>
zOVMjr+g<Vo_6TS62;b@vj*_soN7#E&e6)mbdW4N;xm0K1Rd1Yx@uKnsLFYFyc_iQV
zCQ6t@jNS46=@Hgm7-yeTB}|hrPr`f&(<RK1FjvBf8;O|`W=WXC)Aq)Y_Qne>jM;*(
zRL6VzvX`3`V|kIDVY&9+0tpKxEMa`zNGy`Dv5hhFviC9r?Rw()^~7QcDXk112b&v9
zg)jvd#O==Bs}f$5aDXn5@VbQM5<Zr&Nx}*VZ%9}xVIA=!VHI&G;av%DN_dN)rC+jQ
ze`Lkj37KblhF5NTZ_IU9i}E!Rc<DU}MP|FV+Zs~Oa8KP>m!I6BS+Vztb2?5!#d+=r
z#L~>D@X)&Aq#sK7h^EepZIp1go$=5Wk38vS37<&VDPfm{r<TRGNcc>`Ho<R|(0g(G
zQ$cxYJE0=VKPRwXOJa$0y5WWb@h&Oxd+oA!OW4C;zvu0jFmX|QuY_hj!+pXOUl6Mo
zb8?O*XipYazUvX*2PGVm@GGGr;jn}w5{^kYF5xQ)U(?GHzLjv4R@$C0^7}jQdSoaJ
zvAX4{LbtXjdi4xXNcc{|FA`2M`7kF)_({S^A)$6FQKxYHM;7LqWPWA>oFAvabNc6z
znb0#lE#VA}pX{HdHRiaTll?E+d0h+mrLKA`{Ef+9!c_^^B%GIULBd}W{+4i&mS+^N
zPW@A~r7+(vj1QX@kRks6k+^P;Y<OAp`9a+n4_3G$3YRU4bD--Y-0rY~gc}lW($w#!
z-eQucNqdGBZ+hhx#mTS}GXF}r$38E6JpF8bq&o}q$;dCGsf_1jB+E#Vks+goi~=$W
z%BU#g5gCPK6qZp^MkyH&$tc2Owp(0AuY&QvPrB{v#EOcNVls?t30^88PE%$0*|C2M
z#92~WMj099WR#Zy8AI#D%F5s+wS}>>u2*1TeDiGg&-qc!=U<LLETe*qr|(8x)ya-k
zl2KX4Q!J5DMMhN_Ps&(vy5XZT9+Oc`#uG9|_RR~E{KrKrHvGI!?D>T`%51mT9gnAT
z>clAIGcu~nNSD$7PNH~gqkOiPCZqLTkIcrNAq$%ojK^eT%8+F!GHS~BpNzPSdNOLs
zs4b(8jJh%wwlbbx5@$M^nH9@oVRr1TJBbA?jcgf-L3v?2gC+H4<j82q5*g3RIMg$2
zAV;7b{&1?@%OJ>KE*Ssko+nZArwXy~-kMapLzSV?Xfguke;SjSUxp>)*Pc<TtW-F@
zB-y{!Gqh#6GCUbK=DUudWqO5wck+&(bklo<i8Bow$;g$_SVo=<hKAfLY~Cx%<oqH$
zL$wL@YGqW;j`1{<(M-k&iXr298867_B%`y87bz``BcqLsb=MNjWweyhibj|pZy{q?
zuaJdbZclJ#X?CXJ-Gw=AWwevgUPcEwO15?Gdb4{)GIx~0DW*@7f3R1$rdL?Cpx;GC
zR~da|^p(*~#^dwd9x{5$;QZ2En1~4PCF7qRiB|pdZV9n_%lNrhm^U@(M<nzP2g?{j
zC(0NgW1t+(CWB<K6=xZaShTLkxEM+yW&FJ~##w3V%>>Jb%V790kO}@#GDge%YZ&Iq
z7{eZ9Op!5F#yA<{Wt@L3oJ@5tc@yZ4-r+==tAM{@Nu2y78T3Mp>294{9xF_fF<r(i
z8M9?fxaAd{;l9{AoFQYTXg+e5%R0S!hjSQNbs~lbYtEOkK*ll|uMkTz7Rh*7#$ra?
z&4f|dzj!A1>D!5hee;&cSSpM;p?A2XcVtX!e*9G#ugO?W{1f?Eu~`e^ugj=^+j}<2
zzces!N(+Ou+tI`uGGBue%fC4OCJjq0DKHegE#n;-H)Y(C@ve;3GQN`WwT$;<tda4V
zjBPU3(%mvXma$33`?MI7z=HTkGS<_WoxBZ%N8h|vw-f7nhabu~&^zQ+(sRATjiP4p
ztk`B5pUBuMW6y2x#AR;_A(0h(q`fhtqt~ms!NN}&!dc$yEsX6lcCea^y|n85_~$Zq
z$=EIUokBYn@}R%&_2#QQVqeJE$2_nsc1Xs4+O2MkarC8(i!~Al<Y;DL1RWF=xU?XD
zSn#ZWL`J?@E}5e;zF~bCe-JP-j?qel7R4Bmd0fVKGQO8_LY%Tg7P83?GJcftljw@W
zu~1zUA9BSb|BH-MGS12PO~z@Waen+PLsiBZCb~W$4>phWi6&FFB0ib1e<wEXCd#c&
zJul+|F|a7ka$Y6#rx@`c8JA@ICHTK(FfFi?#(l!eGOozDD&rcXEIamnofuOb^UUGv
z-gS{kSCz`$vN(Q21}V#L%ecc}QBXy}T~=V;R!~I2JsJ0z<P{W9q6C|yAX&lMb*cFj
z<X57|y`G!eq;V>l=Cj=ojwT8!c=T4u(kI=*3JNJ8Q{z@5V~$&Kah&<KsDfe&$|wMP
zTM{p>AXPz01rODYl~Ay?wUJfFQ|Gwv7mSxuqRd%Z0aIn?mIi5A1?3b}P*71pc?AzE
zU^3yjOjBD=M(eRn*S(|nJf;O^k4Ka!c~%mXOVFy6O2PjW)Kc)6!Z*C3x`H$X)f7CT
z;3)+Q`-B7k^`2C~6xZrsuS1`3RG)C>T=!`O&j>ZY+mT>Irz^-%kg1@is98fnOkCwG
zf8<)U#2ql*We+v3C)V`|8@?Q`t)PyA`U-MbKiRLVAX`CPL6(B%h2zYMlz(TRupURb
z?w#lpj+`3wzLj`ZK?4N|1rpolnSZe>C4%cyy}ezh8@9TgkQJo#4OIoJQsN5D(kCRA
zGzCA;bU97r<(Z}eOTh{SZz!-8KF-Dv1w$3M3Oog!6m(YLD+m;{QqWpKBL%q%nkZ<h
zpmN`^v4T9o)b1Pd)DiSK1>Ns?E!m`RbUP3#XeM0nyrA^O3kqI*z`rDz<_h2W7P*NB
z%|hD0Z%B8vQP567dj)NUgLsMSE0%YlyLTkMx|x`j-|t91zfY!%g02esDCn!88)Z<i
zyl>b`!Q{SS5Bl`i+@69b21Y&}{(dddn@*YGGINslQ_x?*AO(XJe9||v_5cL~74GMR
zzlwviaJ{p+tp?`ppW!lR4pT5(!3+g66^u|YQo#fT6BUe7Fk0c8UND}pIq5Q|jZv_&
zwZUm|EM+SkC)4D%*YvW-T*_#gM44}UQx!~8z@V6{V2WU77mD+g%k?t-LguLH3SWU0
z8+6&5rC_##WeQ$VFh{{$0#d;u1@jdC6~dTL*yr<^4_CaNxj+G%Geh=lVZ5whG0oE2
zSW5q1Pb?v-`-L-3HzZ#;JJzC&QRhbDRq9?S{yL4OL^<;{!XPUq_Y0S`F+RJU_`QwM
zp|iJ=KvHl>!C?h&((DR8RPYh=zrvr(;(bc4;9Ui)6|7-GXqQb)ZYvaLLVHh%?$MZz
z)+$&>AU&MQ!m|aU)%bcP%7;8QFus<>y1kb=Rb1Vu;9~`!E7+-ElY-5RdIg`-I|{h2
z-twT;<o8m!%4KuT(QN*if^7=6D<HggFc%ew54({d&jmB-E`>jqz-MI(9Z;}G!CnRX
z#Gtod%W2jx{DQI5FPzXXBrSE#+t27*5Z#$FTEA3qkT&lZ@~CnraYVsaj8g@_D)?H#
zQ3c;A_+G&`3cgkNiy9oKO{NBOZ$!7HsXG$HZMQSICxpx_IkwK{YUc+9CmD%syCd<V
zf}ccw*xE0`-Y*JHiP2B9&wk;~9SJt!qUa1`VXyn`**NJr1-~h{sNfF;ztcF({Iu1M
z#0xhQ48~8+=3Y>6vtPvgso*aKmla%5@VA106kJl!^J=6Qbt%_Btkpjn)a)O=)IYqc
z;F^N@{lmVZke4=YPux^+OF<V6T{YZRaEGo}@wSS)3jSqIP?4+Ro`U<#)heD*k)-l{
z1t_hejEej!l2sH{QA~wWFrK2KfQo`Dst(GfS>Ep-7E<w$iXv*XPAe>EX2CdfEKhkb
z6%<!dLPaSRC;s(P1tr7yEvcgVz}(q85<KPM{+bIFWmP<)qLPYoD$1*<prRt1Ur3|H
z{4DQb6-WAqWVpIG-#;8wAf9hPSXt$pvGJIS$JHo0stVfosX~tmh9w<4dDYZtvGIh8
zCsn-I#bea`+}V3djg}(pd~SA(SF5W?Q_(<0Llx;NGE~%6k)@)BikOOZ52yZ5MW%{H
zHxj%z`S0eXri!bx+<CRUS}K3BhI57dLRlU!)ls8cn3jd&*(%~H>Z{06;Vp>&vnE1&
zJvE9H#?H~pInS!mDuvNB;oa29cf5oONrj=pR3X#gDl`?k3ROj)hf_y=kX&;>SYbf4
zhN0M_>c-w(7wy1UDr^-lhfwk66^}W#@qo}#K}vq~9@kf++uMNBo^Hs~&I3aFsIiJX
z6+=}FQ_)04QxzRmbW-u0icm#!6)jXWQ}J=0`2vlmMl<H~DmYgTyq0)LoMNt9a)C=%
z@={9`tyHvC(N0Bc))&j^HZ<UZ_~-$lJTR9f?M16i1Huj}Uf$y_9}xamt+R?QR8U1<
z6<t+yQ_)jJFBRM7xkm?t-Bt9UUh~}P+Y_XmPp=FJdlPa4LypTr8nd5@{wfBl7^H#=
z-2p1bCi`6dRvj2JY12f52?iA@og;VG85q*t<cF&mp<=d*IVwh~7^PyeiYY2as~DqV
zoQm-@LK}lk#xhvi8H5eDM}A%ucLs(NR7_O)ioY0lOIT-;sJW|e9$hn4jZ)$aDtpD7
zreZoBaV(o9(wzidHd9=kC9bk?u8MgoURSYP#e5YDR4i7pM8!gZ-bFN&fG%Ooqk0Qt
z9>LtfSV~h5440{RMO?kt+Mq_S3K?Fb*Tm`J!f~p<g05GwiUw4{RKPp3mDFWn4v(~}
z9!rJ}49ng3xaN6B#k-6(4XGMdt9VbvX%%NwtWmL+k)mQRqd>*`Dn3!MMa2gy*0WC{
zM8yUbAM)z8#QK3zE_!8Pi0Q#cL{Z`RvH6kxnJ_o0xL!WWmYaq5xxKbk#m+AZZl^(1
ze5&Fz6<-Vt^S|$(8W?Wl5OZBJpR3@8<SsQ@uIv;YGJmq$-J<0Bz-Zm_g^GPDzEyEd
z#eNkBR2*iaQ1PXTgDM_P@*CClxE^lU);OeM>TJFjGhSsuocI1;snNWARK?NM+^<C}
zlL<=XexrhvI}gX1uT=b~;wKfUgF?FCI~Cun_(7PO6D!wjgalUtC)H@LEPYV;i*Ve}
zf)XCr3dT<fo*+4^;#U<nRor5(Q1KgMpRH8<uHw9k3nDFOgTh^nP5PzifV^Y#+!lkv
zKUMst;tIu6@i%ktg7_t7JSG#tQz@2QraO)%1`G;G-zpTpM$`=ouhSs66W2R?EV-d#
z+RJe=w^iI>AZRF{fx&f`*<M3FEi&@IoCQ?e7nWZ&DBLzE3eU^G=6*jY%&#F?i~P%Q
zqc<n^$y-#=FR0-m4MjBUSzEl2hAV@@!dkTIAX8LBF%6Fmj_%HQa6wX>H3x?@(f9Yg
zk{U{B$kq_oP+CJ74e1&(G(baH4Ue*+hH@IpYj{LMCH8#VdsssS4NTg+J){5?HRKEq
zdE^cbD{J`Q+T!fFss<`sh11;NkPJ(@%}jb+Lp2RgYj{S(6IuknCp9b`9H};LaLCiA
zL?P1@!A6u;*P@j5{J`8a4eJL-yBRe!#5B~>P+LQ$hMF4I4#@qVhGusYw8Q?v5n|aJ
zT~<e^Uza^-_;z3(73ZRkTcfnq*|tVK4fQoN)$kmJ*YK<cQ-h_Ufrf?}R1KPjga%0i
zmwd8@3xlIHl{_R0DC(kU;F6CFLC8C9Mz^kk)DV<4Z4HiwMjCQ8xEeeSzJ@>pUFNLw
zsp&J-!q3Ihg{u_Kr+2S;jWy(HV1!m260%McElToC1=J{{f*M+CXr<wK4KHYTNkem5
z@^0cq+F?k@se}z#nNvJ(XIf}c(qkZ4L&DY?+GyyYp(C3N3EOI72G`I|!-!5EkD?u-
ze8uexsz#+4N1Zfu)<A{_qo$jN?nHu)$8_|dK{R|#xN7L7p|^(DH7wWAM?+r?Q#HOQ
z8~rr&*D##@YZyRLFXjx^Fhs*Z4TA)32M9CL6g;T=P%T=C4I|{H2Rx|tNDZSjOwce<
z!)Of$ZzaZP7^{I>B@^2i<2cHYaJ*22C0zVda_;I+5)~$En4<Beh0(qW=bepRJZeW~
zI$fsWWetlp%+xST!(0vXG_X1M_GfE+QG7I8tsD~aIM>pcuVI0PMTB}QgIz5YSIKZo
zwwmUBHYDVn_3e;w2?4BO88J2_WLK|fcvZt|qVj*+cNBi@jl{(vAthg-;SCL+(zY5_
zYFI_|(jXe%)bJLC9~!<(pI-Lf7An6Z_`X74j=NgJdm7egs4_GfD7A$_hH}2I;R6jD
zHGIq%VbAm9A2PaoM&fPIqDhw9O=p@LABk{a`6dmUHEh*TXK46|hAlL58-pEkld9)T
zm&cKXIW#7P-=<+ZCDCw*aMJL(hP@iT(6Cd(E)Bbh>Y*X`6}hVCt{Ry=)Pj3iSE759
zeH!*__>$p&&1*e095giiv0(gw22wttVYPSed+BrC!y1lg_(}s8U4!RFHyt1I4t-j{
zhYR1(q#FL!aF0Qu;kbt1H2kjN1XF~DQyNZd_+G;g8h+Anl06fIP0dyX;@m$xao6K5
z(!F*bXVssXPBoDEV{x2YI%Ljh(dPeI4Zm`3y%TM-^I*xj2j%3?Gvqb=t>GUH7d8B$
z;V%(Wf3k3CY`EBHB2%ewv@gWlrArzvGvjHv!E}1n+s6HW4Of{_+ZiJtPQ4~taTJ!{
z)NqR{e+_pC^13m~!yecb7o6PoWZSzOZgHG@3->i7>41*1I`ZkrucNq*5;~G~r06KD
z;~^ad^l157P*Covwwxc2T}u?wQDI@63!Wl6Xvx2?CyI&++!HINN11^PN4&l!mAiAP
zI!fxeeBUc2>Xgw@n#~79+hPY>7~J}xYuKb53w2b~QC`QxdgLz_4(=EU|A>xCI;!f?
zZV6>zNo74+NLSHuY(Z45$WM`H`IO;t9o2Mn)6reW6FQ#Mq3X~$t{6H)M-3fM>v%>-
zbsb!xrHOL3Wwzuix5!W<(wL4+9rbk7*HKf)|8&&Vk)@-Sj@lHaaJ>6<kI#>o7Pw%p
zqepWknQR?#9lJY4%g#kZLvGBj?wfb1LZKWT&+16%py?XuXsF}slsF%n{Qh#Bk2$zL
z`L0l0;v--kiqMF<=dMX5jA>h4hoPgXj^}ik^v;DeM~6!j-AY(GY#rZJD8vU4?8MXI
z>&Vs7SO;%CXqG^aZcG{pdaGP6?@*ZfnC<g)G|{nsXvoKre73?z9-)qA>~?i(Cmql0
zctJ-y9qnnld_Es^GR9xj@sbX&y}_foU|I;;Qb#Mnw0>~4jgGbtcrLd(2s{v$9d&#;
zG~{g&6Ao7eorxSBN3M8X*>h?x_2MQuchr06=&572jyXDd(c?Ns=oqP^kB+`N2J0B2
zqo0ocItJ(%s7EUhCbX0N^SD7lGx7;Yw=)d~vGUDCv>MSdOphMT45tm-8nnroq2ca=
z(KCXrmvctx7_DQnjww3E=oqVGf{uwq$lb&^0fX@b%&i2yKu8dHlNcIxJZ@;PA8yx>
zPNlgP=FHSFOUE=ldK@;LUT$gdm?4-Z9SrKlnv{V%cyo2k)A5$*e7=qaI+p2pMYwgL
zj+b>T*6~;Cl8cD6(+$~biMT}LEENnV8cv`*eO1S6I#%d-L&xhnmeULK+)oGPaSw;j
zCHWwUdnpWul{!}Gc#~1QFgnd%le+zS^st7@gSU0OqvKs2t97i=u~w+Ix4risy}vqj
z!7P{CEc^Gk8>R*8biA+Q1K~#+VZ8`>W)Ef(o_?fbqmFR~#vAxp$0i-c3=}u8S;r?j
zj_Wv~V~dWhI<~V1J$j|&r#e2<qxZH=%AfjriP(y-GqzEeuQPV+OM0_i^bWeu_2|8k
zJ9X@0H0ju*<12;?oxUnI;>&`2b$p>?A7ko|to=F;i1Jtd$of(+tW(TRCOs%l59v58
zm?ICa7PXU)3jUZ5^4|#l+Xq)~3=MPt$l6w|(04k%*KtnAZ#sU^@%G5%A9ehsbK4<_
zFMvJCk|5(}9lucbPC2E9g{LUwJFzo@o)(m+{nw<NeZc>!BV$-NyqD3qLF{+tsC=3E
z44l_-fvHT#A3AR6xT)h$!aFUUN9A(qe+m9?LH~JBen~KwbzFH+a#hDQ!Cx12Or@y#
zEgiRY+-L5}i`~(2mq~#3JQaOzxZ$vHOOK5Fchl}M=ig1^QKeRLlJWm<Z}#NO{081k
zZ<1`_(AV`-1T7$FK?8*h6gKdXI4x?Rh+tUxT%QykRi4dclgoWlN*G8r@T`Fb21*(z
zWuUHsEF*eZXlVmA48#nSF#rQ)4U{wRq=BallsB-dQD!9rl?^;>pn^E9XyDTN#3Kgo
zJ*Q1;lv!*;f_17GsA`~^sPL$uj~U?Aro+PH>l2R)o~Nuy`h+;`HY|MlL3x^iXCCm?
z1+z5J(nUWRg0fZnv58D0dTnVP1HW8!uYH|SlO{4y%Rt2=#aUk4z=Cfwc(i^$zV@Q~
z@m+^se$O_LW8krJF~T@*L@$1<Cun^^Tfbe3IA6CfsiA>{fi4ER8qvE?B?B)Q7+y46
zHlP?#4QK`$8OSxD8!!yG20Vkm7|byZSO#nZ@8<f2r{|0x7G{54zsJ}09RrKZtapy)
z{9UK9Z-8`!(<BfKd1ZcX*5Rzi2AUXXYM{!e_45quJZ_MA&Hz8?({ED!W(Gn7ou|}i
zC(DP0FV4+*UesCicJ_+~UNX?!KnnvM4Rm;e=?$$6v^VhWu<)tnxvdSfG0>JyT%Nn<
zvHJU8&n>k)cgrw71IK?%2T_xi|GU&l)a)#}IyEfpW?=n4IlTk|`Et?j26`}olyZ6W
zq}`5}Ak*7G9|L_2^fNHjz%T>-4Gb_aVt)Ey126B3{e2=a(7+%AdvB$eyOO>-Bi?&b
z`VevH_jBpp)~44<j}JF6%D`y0GQiW3f|6<Tq|H`i42(6vR--d~(rKezG7}6;G%(4;
zWD}DNOg6BR2r)3lz*GaT8tD05^=SsC8__R{XB*KM9A+4pWkerCsXQiqCUG7nMTHYn
z_(jF`xjAzT%r!8Np53O^O)Gh2SU8_RGC+pMLcuJe*bhn;8(8vyUut041O64ku)}JX
zVy_vf>14bv=yC%q47?%uKfC0t++2T>7JJjcTU5<N9}{mIc*nqp20kK+46HV=&cOS$
z%>3Ak_tIZIoBbXW`0#Lzplb!)Q!$%qWT%(SwETf^(|Q9N1oPzZ=-uxdnfwiOGtu3|
zCW4_!jPi6gvDv^U2DTX3YT#)T&zShsz-NS|fqx8aGqByj7Y6nbc)vH;VPKbm-3C4<
z@I=Y&^9@d&Z_r?PxW~Zd+SxqaOR>*IB|La(zkve`PXnh6d}-jIfnx@aGbtH3OkWr{
zYGBXZ0&IK4z*h#}gBrCh_-E8DNBqVB`EMC(!^2L)LzeLB2?O65_`$%B2L3B#weLk+
ztw!UYgd`^o{LJJwJY>(LZ2li}+Q1nD7Y+Qu5U$bqtbyMQ{BGb^1Ls7;PtG@BWsZJc
zRQOMf3!*Fb%&yq#PXm7mHF=e%l#qg5VsitJo2X{uih-*JikT>G;+lc$29iwVGjYSf
zO#}ZjRT{WOfeAtbcZDU{4?8)yJH~@NrKK1wxi7?{g5+!d-XOn;WD|u<6gH7!f|U!H
zC}>9Zp%}CV<)>6^&i)@VQN%=1Gx7+V|4=)d4D0Y}2@|O%9yU?IL`f5+Ou$50GqOYS
zs8Xd(lrbaQQW7>{&umgol#~}^v77_3u%d}aOjI#Z)r{;}$wXx{LIUOauL1`p^QZ|n
ze@xW*PcL@+go!6jJY`14q-vCqm)Q0{^{bmmGx0wYwM?X&$S{#<V%?}xHOxq_m>7jM
z|5KT?rcje(v7g!|>X?vCC?@Kf$TCsSM19dDThM#SjW|$T@Kl*cj){agebz(+6YQs<
zptLagKmKSiYji0|l+fTR6*1AoL{k&G3B!bE!Z$(ndDS#wnXpYbCS1{kJy73+!eSJU
zr@R`N$TiW}j6B;&RHOPFg;%Lvp0E}9=S+kqTAFBOqM3>3O}uF0B~jr86ErM`po3VG
z7HBT|X(2rIp9^TB)+XARXlJ6mxJn^;w0&SM_RzsZM>Y{x{{!=XlveFxMqdTu(N!>G
z6aVXBMv0VphBItW6TM8l(oW~1@zI(_&1+eGP4qJ{+{6eI{Y?xoF~r1Bn)G(|KqB@+
z+KA!dAQSn2^aq>Rzg;84&j$=Mqj@~)@Vn{@hllfrXN@#5%EUMm<Czc7r+qdex-{Cv
z7~-LDRv9&Utce!0Vk?G+6WH6!8nY;~+(a{4zJ4-1B%NYns)_9;c9@uEV!Dad9L2;8
zGs^snO)N1n)5I(jvrSC-t>FR_3r);1F_-S!6Q5^dzKMT##}Dj|A0aG{XOkY5a~7HS
zZFo3tcbxpoCP<g=jxRN_jCL^bs)_r<!}23SzLA&<iPucLZi0Nx5s^sCg?Mk>PFrE(
z4HGL(?0PM;<=`5ms~8AU=9_}PCFt9Nz9Z<ng3kT3AnU9#v6j9wv60~*jI+VShm4VO
zvG+}UVB)Ka89dfg<+2fTJ~d8%o%b{Nfq;)qoa|Wg6T+ri65sc-iPKH18k<dAtX3oT
zTh10XS(CDrQ-F!j=w;9OdP4~spUgIK`s-gApPSLU`uCdn!o*I>Z}Q!Ym~cJDV-GPo
zBK(j4Xnpa0^skA3Ok85+^JxbdfaPP~nD~-eOF-z5pkE1kSkNPc_k-_Be{JHZC~UAL
z`o8wJCXSgnZsG*f1w)`fM#~Z5cZ7789DW+|dj`me@CTY#Fh7|%W8y586{kN7$_l@j
zI3@Vg4@!<dU*lK7Ul8=%gYw@5^ShwuO$;6pvN?~7qT~-j|1`l%Ec{!@L;ntG61&Xg
zPYjqyvM~LL*i|!nIsY{p_KDbt74^wq7bQ1L+!V|$L2nCsN6@>1{wpZ!-=lZhq>#yH
zA-{!7*J1^%Nd08Nr&ySFFo}griWOpE&bhpTqMVcaLl%ly7}N}do1v(MVitx37#g6s
zg%TFtbFs!ns)dpkUbFGKjZzj$TR3Flu!S-fz_u0!TPSOxoP|6KO)QkR@UVqU3pFiN
zuu##$(-xkw@Q8&<7M`^5l!aGDgbY<4l`U*8Q=^KYRV_R!7?wO{;c>xN6SPyI+$RL{
z<lX4rXQODITRNk<g)|E_EW|9NTbQvxA6_)4Vz-<Os+^M9DK9o|cKy#*N1uK>cE8EN
z5#j$V)Ur_DLXL&n7P>Yqo@F81LLCdwAFBV#j96XDHY0X!L>RZCHDUP~ImeD?)w4u+
zIvEvP$DXy&z{35_NsVcfrkTW5LkkHj`dks~^Lyoz6@ABCwxC%2l5E6lf_fHo!59`y
z3zpy=L0QM9^%f+NaYaetHWBX&J`l9ggPOS({=3Rl#`SGe3(r|-Z=r*Q&_XkdAGt;g
zs$<~=3olXBiODZocw=$qz_GEv%g1hx2s?dc^Xo12eoG6jEVQxE)<WYWS*at#))wE>
z6?<l6$g5PRozRP^srH;0=Hzs=(8)qC3%xCLw$Q~w4_e8JGIm!B-7RctlGDusb2X28
z-}tl%GlMZQe0Np`d8Y0@7W!H!kWzA>72T+|92v50KMTiCC;D5sx<VTu_<<v%<)~9M
zV~B;J7GG$C6&8kB7;a&Xg}D|+SQu$xjD@kRz*)dTyRhVFMw4jBuMbeu25Ry+3$rZD
zwlLnp1PiN1Mh`D05`-Jlc}%h}S@2T?ohs<G2Un*PPJ*8)=<;z<lY&VZ{9wVNwk2tt
zc^2kdSVq8D{AvsqT3Bphi4{#8{8-^4VY-i7C%;T{y%&96p<CJ5rz69q!jBBYy*crw
zT~l5aFngU?Vk9n0-cdTe-AIeN(_C*@SZU!i3)?8Ug*PpHObc6h%fj0hHqh^3$#*Ej
z^xV_)qSxcUYhg8G*1|=^)(g5u(6xfHaGhY@xA4J(lA|NTe@CbA5=Z>d!bcW1TDUwi
zEIBI792MH5!p#;wVQ8;T`IH_X6^<MgeFbleh2oWBTP@5R6;dg-<wps(Ti9V?pN0Jv
zKDV&b!fp$Dgm$dJ)U?Y&$6h(r_hi-To7rZ)wwLyyVT)z*{rvBq$<Y=hAF%MHh1|s{
z2Q6H9D8qa)PHe0m6(tH<<A{Z?7^*hnHomrSl)$!-WaAqP-%=e5e^@w1@L2fS!Y>w1
zSoqGu4;Fr8np&Omctw0K6sfo+5!tGG>Q5F<S|CpN8W~PK(J1HBPFXl@;WrDvTR3Ck
ztcC9vmHyR=zPvygwoS@l9X2^fWlN{uua$mYD0sm_<#|avMuk5LgRuWUE&OHSx`i7Y
zf*z+;EnH#NWt>h;VxOlMm1Z^ec9p}GFWB9}H369apv!!9)50wacP;!&t@&AbVbwc=
z|GR8#@y_Tb?j98!mrPx5Rw%_&el#$jjr=w$*{EzI*+z<u5;jt86tGdyMiHBPWnfo@
zY!tTfkR7d>s267?`iK^|G%9@aQM_3)xtNV1)l-Yx(RbfIsFq$SCA}n*zYW+ZYooLs
zL86QuO))$=&5P|il*Q)dY;<jwLLDErQQnTkUiyPUbFuRZHn?D`DCi@CmKz;bu~F4V
znvHZDkJ@<5#*;RlvZKWNxQ%Kyp0K0OULQjiM`7er&enCZpBAG(W23qq{qdZg(`Zu?
znOCl+QJoAMHEh(h@jn|eLgk<0MV6Jyw4)_oY;+X<YjQGc*{E%!j*YrvtT|0$oE*K;
z(WhV;xmna=bXcK5_W03ZJsb5|$3`z3IX0fP@w|-}Y&5XZ(B>z-5ZFlAkZjmC92>G7
zA<D8byGog5Z4!!&mnXzjK{Y{jK@A(GV3v*!S%HbM%F;~NhDWKI6;D}Kis@G)ED_y+
zH?omyqp6MOY&5o!$Kh(EHnGvJM8<FR0veg>U(hq3EtgH>6G)+rW;Q+=9a_UO^7q#$
z&x<x*viX`Lbg<FfMhhFQZL|@(x3tm9#>{plIM!=5()pQ>gQG)ZdeTcdsckug&4q3T
z=Z-F25;RUn8=Y))v(eo~XB%B?tm>LFwr%p@YuV8#1v0vdKI_e{--A}F7U7(Qk5)`4
z?QNrvjVU&!+URSepN)|=M%n0ZV}Omp#G8$QHVEcHHYzqsW)m*k)}5}em5&W2JZ2^h
zvoTzl_q>tGFBcCvTV@2k(<k%v=<wL$%+WT+*cfkPf{n54zgiO0={Vu{O0$z#fuNdb
zW0D<3^kfeDzZk#INU^K!Pc1Izu%Br*rrTIxW1)>1v<aPPV-Ah*M)HTRC#UJjvuym~
zX3#`)ZOr3vZIfwm?!{14c0S+6r~NgWaS=UhW2ud0HWu4pq%W~?s(itlqeJdF6Rw2f
z$h_oNY`iLvTx3^l>#EqaQgL2dZexXwEC<;R-mtOK##I~FXlEO5+Bjn4E1TcC!rL~s
z+1PI59bxeIY^<T_Y^=6H0rJ@y{E|+a#yM+kth4dHjSp-*;$*a26U8`H=0NL-5P`rA
zHfS6k9}1@Q7_kv#<6}mU_zvJE8=D{SpV-(U_^pC|`k?$X;Rx2>VdHZfdntwxY^ROg
zHul)q#c;k9%fB@G0^n0)qDe#^6LLYa&&GZm2W=dp*>7hb5dPY8)@2xeNl#5mA;Vh|
zP6US;*W+Te)$&=%U)wlp<E)Keng4Bk%bGTRp!_zD+c;t4J3Cr;)&DuchNJ3cF)gqk
z4oXV<{AlAB8~k4IPd2tr$+)r5J8APRWZus<E)LYmoD#yHW_}wJO?hXSId{d#oU`$p
zjX!PtW#e}nhlAvz6{BQzUYPxYjoxFzi-MB*g8(QSBl9<fu~FesT(NOU)MS&V7G(Cm
zm~)wM9TSpSHYU0myiPHgIUPLg;HHgR%+d}Xa&X(`Yl?B-Mv{ZOHvYA7k1;5w9uD!b
za2busNt4q-J_pGTQk+Pz{0^ReHjAIUY5BHRz(FAgWuJ@F4h5Ykb!UH+;2MbrDdM20
zgHjGkJ1FL$xPw#&B^`{p69I;BE#ctsn9zPS&dPiXT;`(4BV`=G;U_Sn>6N{eb#T5)
zHWMt@NGl)8<_C8sO|4(SK}E{o;2DPqL?s80Ie6TOP+HkR6$e!v)GZcG^p86HQC}7z
z^yiq6OIB8>=HLkjPda$YiS|XA=%~dvL1v#)nH-Ker(enB>JHKz)N)XplB`ZicaY(r
zhS0sh*y#1$tVt8a9Ar9Zyga3*gUVyW{|QQlm+Cm+dV^t7*NFf>u21^$x1uI-2lX6W
zaB$H<eFr%X<~W$^;8_O^9CUWj#X&;{2?tFbJm)}iAUkjzxDFHtssqD;=|H1x%O~p&
zPEJl`;-X$>`<R@mEeAHOy*r5+k8|9PYiS#2$H;gNd<VId)<NK)krPc}OhJ_GL}q06
zZuipj92_`VkduBB+BPr7%uM5O&m?rv%t1>BtsFe>;01cw!AlMXE{W!ahFpZ4DM;Gf
zK??^XW2w`JWqj~ibmL#{!$fNbZ5*_B(7{1l>Zm5SbE0fa0PvQal2ZUm($PVIl7%|4
zTDjOoDaP4>IjyUMZVpB{8110DgB}hBa8P=|K`#e=9rSb1+rjsTO41#D9C+e$qBO$w
z!#VvOa0cN@m^pvwmkD+|$iZL-LmdorqD9CMDmy=w36oJ=Yiu~2I%cMhp!`gd&!=%Q
zxvyLXEkN<U;Ah|2n}ewira2hrV7!Bg4kkIEE?ihnaL{RP%8~LBjCa45JXzpmiW993
zvP-42hg+U8-N6h8vxr6q!#kxg!(T66Xr_Z#rfSSTbH=4`@&9UxLUUhFp66h`gU=jn
zbFjd{LI>~AVh$ELc-g`04wgGu>|lw5R~@|OV5x&;tk$;pD~#y#X;h!qU~((hB{Pz|
zZSvd;sq_w)ohz999lYt_Ee9(Ju&ybq*pFC@)x1-eZP~C8^WkerPjpOqTWCR3tak98
zgAW~i<Y0}1wGKXTu%3Q-sT4b3=iq(9zI+BD<c*CM)#sWdk@CK2gRlT?veCiE4z@Vh
z>R^)-EfF_6_{0I9n$b8fsOhvoN?z>T`838F!9Y-b%BVLoIr?@7I~*KyaNNP?4t6rE
z92|16%fW8OyMuiU0p1ZXlLX0oMXXT~e$J9@_p{oP<O2@A6h8gxgZT6j(Q0-@n^@Z0
zvBM6IFbW(TWzSsRyjZ5!w4|@ZxRn1J2j7YmL_F{#@062;++RB3;5!GW9GoWb9Q?r1
z9sDd};YTK=M#(=38MwY>{j&KIyal5je&JaE6h9)x>Q&D;<KV1=Umctys*jZTx^kIw
z>rz;a$8QdPrvOg0e&z?xYE8-@!+s{7Y4C@GKN-9(@?8Ao;BTfl7mvF5$H66LU>Aj5
zTy}89!5t=Z2UlrcW_t&>99(C5{Gj-xu_bN@JCv>)t;c9>g77vG#XD=U<enI2{p;YK
zgZwU%UEF8$3Z;@<<a48}&V>y_lJd|LbWMsICB_0S3cBc%5rLeJ=JR?=%RRb>ToiFp
z#sypyby3VkNf)JD6n9a=jj)>PM)OEGHrfziLoOkb%f&i3El$*x7CrMS!>25H7mv88
z<f6Qbhh0=~QPGVaA#uI&;U9S%mr$oq*$MMlWj6}CDsJ?oiD=|i3QTDqbMd%~dM@g_
zsOI7c7d2h{&&882o^p}yBE!YgE}n5w-9?&<Zezn0Eo(4o<fTSIwCR32L6uh_y@rcl
z2Pel|WU{MTF=jB<Av_3v(poNRyQu3T%Y}WWGy%ydsN+U=?o@~O?3@v@UBumJp2|Ix
zMX@Pij*Dkq7%of~4P3q<AF>O@MZ$$7D$^!(7He`WHc?$@E_BLVKKZTl2FuwS(ZV6x
z7j9^AXcwLf-vu+w<Za203s*?Xnv|2%=%o3j0~d{4<PtvuV39*Fq)|@RY2u=(i{UOt
zxOmP*NNdoZE}FS`-bHH~-^B}rgo_p~TDs`nt;9=ibYs%ojdpDK(}hj7qqQj43>1tV
zwsNCbCWP9$Xy>A%i%u@uyXZg_IE%F}$!at&wWA81U378Lm9QzF%n%+cQVLDY=HaEZ
z9)yjH{w@Z%=*6LlJr{jl>|9kcx=C4<Lh#V+{n*2pWCDKC*l0~S(8VAZgIx@9qjX2y
z9(b-evCZLz(&lRNFdDyLHf_kTrB6q?80BJ-i<e!Db}`1qbQd#RjCC>2#Y7jA*nhK>
z@ggoJxOjI-CU3PUKQTGk#S|A)T}*SMY#d?lpU4Qb^Xj|^>f9=y>0*}4KTKdA?dD>R
zi%+H|AFr3nc&AA0gmga5TfEQ$28$cr`Y~^)R%C?F7Dtv`OhsJ0;bNtWr7o7ac+JJ@
zOb9cRUU8!Y{whtqCh`Ku<$TInX}OE{N+z!$sHR3z5!IZdSGjnT^1E2=;w=|%yLiWq
z76ue}#IEe@-jPOeJpvfb#rc%?K6J`j7wcS<^-<2p`z}79H$8Olu-?T62Dpb*4<EYt
z$i;6ies{6a#m6r8680`Ox!CMtn~Uw#S_Hxt7h7GtKQ`njOdy2%rwmUggSSqf5x0FZ
zPt|hzPfyw5;&VD$G?~=KqiVZofyJ47T<qpCHsp2_>3{cz`&{gI@x6;5TpV!mrHg}X
z&OMy5A@|2PP_M?xhX@tX+YzcPT*>mUT-*?n(8xzc;WsY670fX~j|+N2(C-9g&Bt#S
zq!WL1@w1CxT(mmu|K#E%9kIQ*+v3@><HA!eChyLmG0(a<P3^{o`nd26)5V+^nP1st
zTzHQ7yphc%;(&4Cc^4O4+;#D<i;FIA4{^iAO&5RCjFk&tVyfpXAb{~VLztD@<V_nF
zDx2%)ADhk;LHy9aS6uYFnSE8zYs?0MVF~xvZV{a9pX-0dW3L>lK%DgGlUa65bU%BK
z$)8hzhZGM<9`bp}?}3?Q<+zaZ=H_wXrrxn><D!&Xz(YYV%H&*N6!M~JqPQ0=cME%w
z2Oko&h@d<z>Y<q6s~pPV>FJ?aRJNptQY>UE52Zbn@$jgJ$2`D8Sr3&wRQ94=TF%46
z9x8|-%6mBfy}{p06#6aBrydoB02J>L4_}Xq;=PI&tuV<{6_*H%ALrJmK_2%|&BHSu
zs(X0C!;>DK@}l(~<zF#2#=8<a=xHxX&ScJy3z<pMJfwTb5dF|l6np!tnKi^|%tNM!
ztHpwR<HOi??UC_eEf2Ll=pGCYbv)GdP~YPhc97-qc^2Xx>Uq)3zEO(vE6f~}yUI)&
zL^zk|&w6O!LGmDb2#Ti@-t(7aHe`q6!-R)_M%DMmM*-4id^BS!9)^q$RY5gDUykRP
z9xM-yJmh*&O0hk79()gu2iJ=>f!TcK_^@5oWZts}9ypsHSZ7lJeyO~%hdd9>JUs8=
z&GBIq4^2HhC#+p%u<=pVsBK6*6i?nVKID(MxG(pDhtKxbZ_7F!c*^4?56y-3S_s-w
z&{l%B7BrHdSz=NOnRaw><4hjM#)lm}bn@_thb<mDd+6d}f`^G7x_ap5VK5c+(A`51
z4}CoJ^>Bf=s2+NG=q<Yadwk^d?d9TTUX(w1+t|;;Ko5gF%*u=R_fU93IKYb@wUD9x
zOCQeaG&jbyJk-N552HPd@i5%O2!g@GC=W+QM-egldiJ9eLMC<^{PSm`+&k7o)n!TJ
zXgXn;TZv5G30^uA(1u))Ok#|9c-6ye9;SGh>fvP%i#<&9Fx|s^4+}hOE+EbDFx$g>
zi*jZPyUh|bdqPM9&haqU!$$?uZ+1!NOgfL?FPGkTK*pwFSsa~VwU7>)5H2F9I+of~
zEMtj>r5=`fc!g$}5E+57U*fFKnv{8Li$*MY-NSMZ8<>zitnly#?JtC{a4>7ygm9&Y
zHhZ#G(di!EA~?NhuHjPr9WVMV@q1o$8~Co^R}0E5WtOvWjfb`3>N-K+7nJ262qrg-
z0JCyJ_>qT=9yU>Nf`>ncrZ0Yq?#h{j&#Z}UoACcn>zd|fZ1wP|htnR;5LX_yc{t?Z
zu!rp)cF@Zn_Idc+!%h!-JnW@Chi7q!T>=0d?abXCI_|AcrcJ(pz<%P1I2ZZ*nK2$k
z-S#C9deM&V0fs}l*q2OM(~`(gj7NrM9`W#%hi^R`WA^ZH)WbK-9#;x>shY{<5FeKl
zQQz<5cVse-dpP0Yq=%n9d?zx%4<7go_j@}1d>W4fNo9WY@RP^4w?%XG$Ng(i!e8j?
zuQPa+K{xWJ`lslxvN1AeJ^V^Zd=&C=&ckmWE_(RG16PT^Grtk!#PHZ?1Du_3&Si%u
zt2X`9!(SdQdALl)`N)9MP6)XJ#`N_M{W~_+yk5=~4+pA7w@yVThF3jYV-EK-u6wvA
zm>YuL6!ey$yn5Tiod^6~!Tc-er3rk0L&p7xk2>Lz&qsd2CkvYLpuB*O171|2u#bm)
zr1~i7qlk}wB?}exQOu8~h8h#YlztjB8}V7(kEV$dKFo>HD!r7C(mwdu6h6xMQ9@?@
zhC%ccU}Ni)4ilrKSKi0NKGyhH>!X5?iauKUXyxM(AC-JG@X^pmWgk_1)bdf=M^zt>
z`gq#MGd>>k@wksCZx?*ZkL<RndJR4cuIA$j7P17f5fj4+ZzORPZr(CQR2MQ(j5I&W
z*g4m;(|u(4h+S}NkouTZGn@H@r<sE1X-z*`jr>ngp4RbE*GJq(Js(+qG<#<I(XAFi
zMWvWA*k^q|%BVR$p7r@;Jc@B{+S75IusC$WhvdWa;roz%D72Li%ZKVi^P{g<>ptdB
zjGmOSVZKt?h9B)@UR{|zHh)v*1g@WLAC3=~i?p%fhljJcAgo#?^Sy~-;G>a`7w8lp
zxjq{E2z@m3k>^K`6`J}O)jP9^kD+0LxFtRCQtUY&`zD5DHh0W;-j7zcl#u&rOij$U
zFZpQhqlJ%MKh`H2pD3C6>%=IurIN|5eYEj0!N)`&ZGE)!(U++3(cVV~dfZ1hA02&k
z^3mBx7aw<vM0;6ugt<q%yHX=Ic5jM2(%nZ7AANlMGC7qH>PgdGNbBX}RwIX3nfZIO
z?Zl7_pR<>n6!!Nqz{eOLV|@(tG04XVA0vGXCQd$y4<j)8)aP1y2-WmKhDYY4a5$xH
z607`JHt8q<+M=g@Dl*zflk)b5&%{Z`32aoJpETZ&ZZ_Xqp1Gr66z`MhWgiQCEc7wO
z$5bD)e9ZPSjasjXP4_W_?wb^npQuN-ax(?+`ZkO`IXh{NkGW#Fd943X=Gr!1-{x`Z
zHD8Q%sEEU@l1226kL5mA_*m>?iH}!&yy|1=gLvU>$d(m}WsK0DvUr#Anh>wkyeQGV
zPHR)UNg?SQK34iz?c+Tk^Cm^nx5~%QQudoZ-XhvXt9J!`N6@t4nN$-aYLEtpqpeiL
zBYoEqS3b%HC>P)ZAM2UNeEjBPgO3k=eC6Y7A0PSH=wq9Y?LI#CvB}34A6tEFW@s!<
z;iH^Shy)|ru;MYVdDBnn3;L^Rac;KPr3#b6B88&3*x}=IAA5Z4^|6yM^P_o+yHA@Y
zg}Z$m7Fuw7=g^%7%$#5N;7$%VC-?cdFe%(m-OEJ=Kj7ob2mC=FhaT{UeH?kfZ|#_J
z)W<hIe)4hB$G1L?`8eU@J0Hh6P>_7KQE?7UNTf^-zo*LUQhxBGeUeH0OR$_%&yOOr
zU7Aw=XJXaISs%apIK?b6w!~>4XPAp7M~e{3bLX!nH0H@`*?jKCUBvq3lX)xpyN~le
zk^_Fd6c>D4^l{C{bsvBD_|wNfJ}xoS&QJY|77+4q(}VY|bWQTO*kvEnzb$da$JPI$
zV_NigiNxfv*+U7+c7t*<a(&$K!N+j7h)?c+ayxWjbX$7Yk2XcQ`<Fk!ze0ulm(%X~
zxKB7;PD=_RnorPwY9y0q&%9GB5TIay5&=>J6beu{K+yoj0z4F;ND%D|a|4{Yf}_)k
zYbK@@52EJ_CAd*gJbA;n*{|l$EE%9wfYJfV1kn~Hy~d}6Y{L2oqKzrqWL(G0_r^6U
zAK>8tY5*-jg#Z-;qy<P1@JN740Ul@N0F{GiTB#b~(EwEhPfzt8oe@?`dW>@NHmXT<
z1IxXdCxR#^KNaBV08i4|T<y$^mQOSSv-C3ost5S?bU`MfW|KqiePslw5g;C*UVvDD
z%mB3m)Cr=LUXud_s1=~|i5w2cquu0?zlNd;(efieR)FjvngJ~%nyEQTYPD#Ow0?jb
zS}8yxh#nSj`|H^N4T5Nez{;$krlw26VsZc_h-R*1uSAbT=`Yd^eKYj{Mu64<+5|8I
zSOM|^Gznk_a02)Nf&gw1Vb2SqprF?}?{|CUX7KlcjRNEb(S!cRK{Vm=o|>lf=0{sn
zT(L9_@LYfwD0YA_K(hePi)tLV)FV09R_2VF9HowiFT`IGmTVEAWq{_Q4lVrndyQKO
z`!f-Jemb#ea=3nS*fv1B09^xg3(!75hX9>uv><wv$p~U^9RplGQlIweLS=iWP-}`e
zqfd;Pt$TnT0s02$$04XofDh~E?;S)F7NtErJ2Dpm*(boe^D}49&x~`MD8Qfq-1-<m
z<D_N}<fWyVJPu3_2M5u#P9t-PH7vkz{xYozN;JWU03!pupNkK2F)F}lLOK@@@$1|H
z#?lUr(5w;01sEUTVt_vaOb9SB!1@3iXk^+Uz$*b>4KO9Z)By7W%nvXv`d2Y#1(+Q~
ziDE{8nKV?#WO{Q`v2;G^pd@pGDEhS2LURMG{wCvIpDg|<fGgMq0Tu>W9AHU+MKoQr
z6mDL<ER1|UE30qq2q#Mk7>3)j<PO~NSn3iReC*2|p4SM@0Pj%i0Lufc2(T)^n^dH2
zGPnKT2(U7U_At4g-*Bz|I~(i2B_R5C5M?=fkh{3_h`KLlb%6J16DIipYXYndq9@(!
z7&34D{|`K(I|Z?m|75i!CXhkdrMS`bVStYU9Ey6w#sD7&*h`-V*c4!MfGq*G3d}R^
zsMIHvq<r*iIzE!%&ni9*@EM`9CfYRHMx1bG*f6#eDu%H`(9Z?kDd;XicMG~l&{Ijl
zz5x3J90>4bfO9obb!yT_t4g+?n)*=bl6>ZVP^ds8bCy36;Hv=Nu_VCP0gf{20~`zR
zO@PMLl7=#Ul`O=qX<GGofD`mW+mcLB1RHnJX`hy#$A1X$V}PFn{1V_N0cP6gBt5>U
z4yzH&^bzyzsQ~9iq)_G4%ymIDg`E}jS3%DS`kSD?3)*ga66;)GL*xHwx(?_nimx9`
zC?X}m4^RXF!9o&V6d{QTO$niA`)uDQ(iBAyyMls9@4fe8!9o$FDJY76EC^V!BVxe@
zq5`7u{bu|)=bd|I_wCNyxoz&;xig#p$g!N`$8&xu$FH=08W$SyTRD!?{A#GI;RF?@
z9B0e%PdQGO<BxLuRgP1Xy-gW^QUF@i<gZ7~0uB>YsMF;*Q;xsO<^1AZ>e_iZ*<?e1
z7~<b@oTHJ~kg4H3yD+O}hK33n{%$NOKrXW{Tq<I}vNUPQD{9z0ygFs|@Hp{b__T_K
zi#62NP)9>m4VP%BuAzn|4SO{Wf0k#SwKMtpuvbzw`M{#gYz?(E*+JU;f%nT{ad@@7
zyQj2<hPoQ+X{b-7Q^S4VNtqN~dYgooYBEY$JzGwSFW1meLwgM!G&It1g@&s&T%)0}
zh9(-CX=twDso~X|YSLm{sY!322oqA|h{H!GYBFAWl_qWAz6v?lYG|S1dJU~K<nVPS
z5ovgClw7a8(n;l!?DbPEH4L3tmQpZZ!Rr+Kr)o>yr?I_3Lu(CfG)USO<WfPX>;>vw
zYF42pR~U;Fyivho1xplctD&7LR3B2n$2w}bNkb0}JvH2{p_7I#8oFvI)o|79jLsU$
zNZSLYBp@;DF|jitX9V3;TU<EkuE{_g$2&5Pli6Mx$~71oObwbQM?GDWaZ$e2^P-M4
zL}$jyFoLDQ*5GKUI9|H(n+E>BhsO0UPlK=F1r6&o1R6pOqcx1t5NU`t4AF46hD1YJ
z!)@%ohFdiB*3ef&KMl8P=%dM%f{#ASAVD}Zkm=O%{u%~o(w8Q}oWc+RMiQ7BF;K%D
z6f+Hj*jB|nt_jjU(4)9ZlhfqE8kW|r#G!#yqS!DLGgQMp8is3lRKvX*?$hv)hKETX
z4G(D2YCWjoj3pc0eT!W8r-h--d4y70KXaHS7g^ZZi4_W;nl1gM$25%4@Hh>=Cf656
zN~OzW1_+;NG+zAExylpl&PplF{N2;BaIA)L8Ww9<qG7y-2^wZ;n5}W+Atq^<u3?6T
z$r`3;m`Wm0z{U%%2=o{)?mtw-8kXBqxi<WmGk9ZlvpZ%|{%2<J&d?=Ab2QA=Fkiz0
ziu9BWa&4Z5EweNFkC)6^s9}*J2z8tq%HFZIKfC8G)v!#%lN5dp%QdXf_>Fb$phQ#h
zf{}CfdXZcKAs1*9){t?FYB8ILYv|dc;AsudQ0z54ugUf0wHgl1%xKps^I4@PqsI#l
z9MvDqqQ^qVmG{?c*r4GH4PR>5NJZ1|j)r$NY@&T2^)$Rr42iRbS2XO@u$4sUQ)7pQ
zmo;powt7X|737?nWePJ@=8mEcl#N|VVd-YS%6Ba};=HCrB~Is!3Uc4jut&pQ4R2|9
zlTXrOtj*#YE=j~nC`%N6nusrFWxP#;Fd>8NX2^Y?hWDuW8a~#rU&8?n?`!ygCPkC}
z2A6A%Mb#hryFDu*K}IwFuk?}Wk(7{6ND9glpQM8K&F1qJdVm3W4w@X?KPTT;WwL3?
z&sQ40*6_QAlNt_d_=Z+a!!Zp<G<>V!DCLc`>W<afnQVxQ>EElKk~Ke&j8$ZGoj+Ff
zlZKx){7Q{h7VH-d8NKV!wO%q_&LfU%(z_#lPAK}YD)#ryyYv2_vDNU8hJQ8urQsAM
zpJrT>9tht(O$wA}k{Wm2TSOm~p72>>IJY+Mu*GvU{u}~yWa-GzQ9;Lp%`z_1rT_Wy
z+|uC{TaqsvkLV#()KN)CWu2D1*4ND?!XI6i&l-pZhl8p*F3}O_2z6A`QC;V!mQk#u
zhK`y#uGVplj%*#ZbTrn{L`Q8Mb#y>SU0(K->cEJ~+QB9Dbky5aGSim}H}!S7+2m3M
zS-4CU8tAxO6&hZ+-$=(5s=WHrOg`3B$CWyo=`vM-Vf<-RGpYOcDA{PPgCYH^6x=#q
zT&tsnj@CNb=oqNH^c>csOSAu8XW`T<$kU}oZK-nwR~GUWWZ^nhxL!xA3wLf%h5h42
zfsR5QMI=SVyfzKw<dFqNPWTpw;1V5eb#&L!Lq|Iu?R9k4QKqAVj*dER(s8pcCpE8h
zPDLXMsNIYXby8LRFkY0Z0>cHYu!|1H%DU?4M%>Iirc!h6PabW{%IAclr;c7agbr6n
zxeiT-t;5mLa9Dw^<E44UhK@hRi`Q%A58G2<>acXMz+d$V($DA6_G+cP1Iv4fku^LW
zN1w>_$v&0Hmzp3N^eK&W#5%_47^@@Ek=8L>$D=xK(a~GSy*lpGajT9#I{N8yCPE@G
zQq-5{{7n$6Hg@*U*66QefR5W#kM7nnRLAYAJW#<q6ueWxK?>fb;9v!ZD7fll87l}U
zh<nKW+WD8*y_kRd@C0$cjt3~iIv&#HY?OjT#R=Xn;0*L(9n&XBE4sBb^$6v2V9792
zeqS*QkLehp<8d9MbU8a~HBY8gjnt+6|H{aFLdR%IK67_Dg*2rn`HWvggELOYcpa;B
ztky9>$3z`Vbu7~{NylUzQ*=yKs51J;dN%2K)6^x)bBT$LlKj*R1!pQaOTpPX)=m&}
zRQXgYb$d(9)8$rT{^nDIp2%IGW1%W6Qjm8RtHKfm{~ndQT*nGZSEtOC3ja2z+wZ?7
zk6Sa?@rfN%YjixR<2fDA>v&4X(>nK$V=Yxct;oMi0zNJcshnylQLI-}W{J}i<G}rb
zF8v2mm4S#2IyO>hP26PSMID>iYXg%FY^H$eXlmd}16y=#)$yH<?{#d`v0cZ09S3ym
z(DAa4H+1aL@rsU}I$mYXWWoD2=;`fJRHFMqQQWQLbsfJN)vsM&oi>@2=XxRu_$CdM
zj<<EZ!}=RYOTJgfTdKdgds@+SP=(*sr31fD$9uZ;Ie(ZSXz}PgNd2->2X(x!<8vKf
z==ea#hdK`F_*BP7IzHC%i7ulVY>^Keb!BaQmmFu)940;^$5o~fFTd3Bm5y(89MSPL
zZP(hY!wL;)Zx6MgwA^<t_gfNtR85lcsE&K8NqVwE28VwjVl<ToY8W`C<0l$n0~HN^
zfd#+lI70ze75++#q~o}<OSH5ns9$Px3eDOpJBxoO4R;owRPYZSf9m*4$0>Dr>dveR
z69xZ0tu9aBnMIV&>c}+YUIXIrkB)z-r1etg6g;nBh9U1%P>_X-43yWZ%mV$};`Sw#
z41SUZRSjHXpo$?~l#31NpFjMmObTs#LmAbrnt^|7RHnm5zl9W_?$<PsZJ@q^OAXXA
zP}|^wAnF=Y(U^ruQr9sc#}sCT8Ip#4o#?T`Z-2?T%s>MJ4T-aX%MCf5p)<^xKFuB5
zV%E(S1{xC+gI`aO3}SN>06P5ST{8pC4RkZm-N01_t~SudK!Jg43|wm<Wgy=`3j;X@
z@(i>zkjsA6&#ZW~3jK=5cIA+XWOQ3Ds1;vCB(F1Yy@4AHv?k_;j5cuXmC-Gt!4z2v
z8=VB+B>sg4iVSox(9yt+28s=o7-(xqd%{;ZCmpI~wln1PoH3>LhFq^CwnUqw?M()5
zHqhBXnSo9Qn%$9AN;ofr?htJ|dnbFnD65Nsu7(_{=sr;;Njfs9hk>33dK<XaKrb@R
zfNQ`rpc&8&SO!1BBG-!zc6MooY2e(8a`lr~?R%_*-iTv>(KBJlISY|tL#^xQ`33?5
zv4O-uXyBol84>$3F@rjFpoL5Y<b*M8(9fw(D{+f~b{%tRKzP6B-Cg<^=xg9XzD02|
z(BHtl2JSO3z>xZNn}OR68IxoU%qkp6>oKT|$PlGF*l5MPI~5$H;9Uj=8yI5XZgqK&
zAtw=hW~jQX)lr72Ip4hBzyk(WZO_Q*pG7l8ou%j!KFo#;j5RRMkoiKx42(7~#=vkx
zMu$lJN6B0>^_YSq6dXwgslq4)`R@~|aK%Kya1Gxgs<b5I4NNdFQ4y9zqXnkJOyV%?
z#>*)NrW*L(zz+td@fiaz8+gUQ3<ERSw1KA$%rY?Bz)}Ot49uZ07+7Fnp@De@<||I+
z)v8SXQlyI}il6G_E;3N(vO0?mEHUH^m(9_z|3?ib`z<%H!oX?+YYe#|Xr=1lDmKwo
znw{aT^LtJdoL^6ynL)Gpq#?7yC{)iFSZm-#1DgyyYv4ID$iO-S&#Qhhb(XS9O0v22
z1~wSj$W}IFjnL&97I{sA>^obqzgF&M11}laYG51b%&iS;v$hyAL`-*@7}9mzuJGBR
zD9O#*6luP`)4(nR9~$_`z^evcGw`;7cMR+{@VbFF*-Z{El`qQB@P>gs2L5PW#M&r1
zWXfKpR&OcEBu8j)*v%6tde^`{0|#iGDF1ZY*#xHmhFl${zA!(NaYFj@?;H4l7Kzz+
z%Sy>pP8nFq#|A#3MKW;Mz##*lQrHZ9Vc;_=^^Dq_CXjk;dWSE*q-HS}h<}Ze`%P%o
z4-J;0_>F-h296r|PFXohCaLkQ>UIB#a-#j!I2n9q?&6O${<McC>YDh8#@|2%6Bn8I
z#o)k)QwB~`&B-PMC)shzf6dA#4E#>kWXl#QY3vSJ!<7_L`%eRZ(LUcHJ!<~AkLHYl
zzp3d4&MT93*1$is&q~LGTS|$^V-v-^KGH?WFwy1rnsVOVL=FKwv?S9+mWiq+E-_Kj
zL?shdOk8ZD+29(Khsvh3)&FZMGg!Dr$!%Z%?YygIqPmG}6SYj#Fp;?}qoygR<TOyv
zx0X|Q5}%W6&O~aPsKdXGv}fzAWN^JyJrng!<eJDcajA*ROf)rdrHKY6E;rH8L?ctq
z#h5QggF{<=g^B0p)oyH}2~j<k<DHkxrKpoT9j-2DW}>-CpAFZV(yzP9l=GLXP3cf^
zroa|!&rG#2r6u7MDaQn^mibh(6oXotbgfZj;zkqsCayElnoXOu5@1hTnYh7}%l&n`
z<x;lUsm~wHT|ZG2n9@NiG_icEjKJ?(lj2u9iA=GH5)<uAv^PQa(K@wd@0!R74)wZ&
zDYKWE72kxW{)8O(ZZ^@$#6lB`Oq81FY~mpk51S|>k4)TV;&u~VO>{GHi;3PQx|2<d
zYPlvn6Fp4y<YT)^dzmO#WMO&FM7d8^GvzT0x(P!SOa(0kZ3P_#g@XI8&*j6ui9q%`
z)#r~w?mO7?L649$X^|Hx$U<x)QRTFPpT1XvH*Yo3$3$Nf{Y*LPEqpFT6LG3q;g=KT
z6r;b1rH}O3{F6Dr1mW+O<PS7)hl!yk?jaY}X5DFG5MLzg^_HYYmq!Yi<}p}R_4`CI
z#6*W_J@2MiP7=(Gx!07ceV>W@P3YBSsx8gb14O%GUj8`iK~p9JG@m5SuI=`SiD4$j
zo0wo?xQRzij56_riN{QgP{KUY1ZPt1C&~P)0}W(e{o|y(l^XR^Va@IsO^$q;F^-+8
zml{JM&#pX{ujfcb<C;D*tR|Y6WMY<y*(N5Nm|`+33DYRg^-_F*V$UZT?3%7RGJ~D%
zo_FW0tX}m}Gfh~N#2u5w920X*EHGunl@HG|ab%3#xG~?vkJ-74>*o$XCr3TziYzv<
z#Kd+JJ4j3u%P5W11qz;t6%<huPqLnFSZQLFiPh}&BtbMd2V62qFp|bfo-+BVXgp(L
zEnhdJC&1rJlcaTGwhSr2$>#GWULcQ5o(GO~Cf1wMY1u^8_%d&UDTmGqlLgn)H=20S
zlxyqnO%gv&5_10jV@?KBKuv5lv5g|C!ji0CH&gU>xb@~`K5ycri9by2BnN2+On#>x
zo%&|KYT_L#tcln7fSpeY@1}w%Qoo_#9tGc2kpKSA#9mc?OTo7lq!Yrw7**J3%1Gk@
z>Wizrr{I1CkDieh;Gk0f_Z9rW#D}WD`yZM3_(J&;RX9YQnjqb<&rN(mEjIDHi7zRx
z=W~8g!p6P5U$HM^^S)N_u!7$xctpW(O&nDPKJ%T4?^XHmqj|jiQPprv!JicTS;1cv
z{8d3x?>7_2RhjlyGV7&6Dm8zvy;bn1iN9!UEo50ZW#Y7n3KlN1aOq@mhHs7NaL~^C
z+r(KD|EL-=EGc0BUa0w;iSw$=2|Mr8ttI4-X#k|&^^-+K3zaNfVxgLa%9b<;r>o?5
zn=GpE<`{9Yf>jmdC0SgpxW|whg<NW6xu%6|3waJ&I;dr#wuOE+`rD{u0TvEeIB21+
zg?bk5xA1_4`b678sfErKF0;_ULdrtEh0858w9wqbRTdgqxWYnH3s+ibY{|r%CKj62
zuKZxnLXN`pzK9{WAvd#d&4^5{fYVQ=U|-Ek3po~YiBH2i40c^>p#>KNkL7Uk%V{q~
zI?s~xHD(vIv}7Et?__DRXjQIbuPxkYq1Zwz3pZG3!*(sX^>tUh%+^F^ef7sCOEde*
zmdrv6lj~&`ksZf!7L;_k^P)Vee~E>*7CKnysEFUrlB@IWRhbIHp?qX{E+bJlS-9Ck
zCrkR_Qw|l;!J{$~6S`_;7P|0xzG$JVg>Dus3$}&s7J69FEa;X@bM0xNmxXc*6DJE+
za<YN6JgkST<dDtKrD4Ie{yz*(e~AXou^=pX7JP*jDZ>|C3$)urjJ@FS#AUM28X&R|
zTj+0LfQ7_D+Cm=-eThTg>{~2qI&NjJcgVe{RF(-3=g}pmtH!0Yeq<T5k+UnaI~SiX
zyv@Sx7VfcduZ4jY?yzvTg`pPiwEo|>Up-munw%PB;Vug-3|5eZA*#TMM#ZIh%wT+G
zw9Mq^OpOBv8@-PL78J432Q8XzEN2%iJZ#|+a>~L~3&XhhYhkp7F{G7+$1IGr@Hk~}
zK^FbA5tdx&zx9+%#v4U>UQ~;-i6<<4Kck#PkQSqT?pO=sEKDGIDY}j7aBYhN_jn3M
zE9rbrBI_+VHKTt*$UJKP$h&D4rdyb2VZMbK7G_$QV_~j^Sr*n0&89mv+rrC}<<P@u
z75VkUb6MObR@xnmy)3Y>(85yUW?_+q#TJ&ZcL!>4>cl2!=xE#NhZI%M<t}4-7k%wI
zjMc2Pu!?nB45wqYg*6mx3(s44(!x^~p0@A|D``=a0e`w@jPS3uWbmIB{#gtAuP-B2
zxl5W|e!;>z3tKI0v*fgQy@d^wx`A1o_HKPeqPmgdba(!X7B;B@%bP8{bfLUO6*~9L
zCxuCe?G|=ea@?eVQLT>5DcwniTKr%r{%7G;3$Iz&ZQ*rGt{;^ws>S&}(?uBGq1XL}
zg*}$s{YNTMXUXop7T&V(u7!OT-lixv%iz%Y4ux~3JX7MK+HyP3_L`L|PRMwVow9J^
zyxfDv7rAxieG4DZtl6k+<3kG{SvYCo4+|e#_=Fs{@B;~A;ZqCWS~zOqGfJj~!xp}=
z@P&mhEmWT(hfCJ>m4)Mz1%s$8f6W?{(Kx~$L8de?Vsqsbnc4UqY2KnH113wdGkcqP
zZ_P^mXyKTJUo8A;;U^13^=BHW{#lG~kgz!=`NdPjZ>*e{Tln2Vo#8T+_xjl4HK(P1
znNvjRMFmV{{L{i;7XGzxj`rWeX$yZ_I7<;_%*2w*ulLh8I4haOsW&4t|4=ZvbGB^}
zlU~kS$gq)VBg;kw8ynxupbGHGi)?J2kzX;tkmp0v>#k_a)iJuSgQm!X4yxF=*hYzs
zwl=ETxWq;i8%=Fgvr*kfJsb6H)UZ*LcHRbTWZS4^qqZ&QN-O><XZ;l24zs%7{9PgK
z14o>?wq!BIZ}=iPAGy@VWi}exXk<%wsDX{kZ7H8MJ}sbRl8MB@8(-@R8;x!0mQb9i
z0<4yiu`6vfvyp2f&qi|_SJ}A6#<jLg;-X$$ZOeqEYK=S7+PAP}5?YQeof+0Z6(-EM
zJ-?-ml#L=AH`>T&yWDxLHtzAU>ug+4a@9+<Qt$=^dD&VO+9+6{V4;Fx|I%U`gSl=p
zt|l!EG2~3A9dWQ>*f4E$u+h;*Hyhn;++^cs8=Y;G+2}+vuFaxlD77U!*z0jq<VsK%
zTV@b-wdE9>g!*qHOoH^V(bGn`4b7ILKrdS^807}FDJNVrW#4sMiXWp}%(J5ESvG7N
zk&W1fV?)^RZ1^@@TShp!(UKO7^1N({2y7Wt32p3In#m)Khz#3(zea9iBW>eW8+~lt
zVxzY$Cwi;(>J)p9DSVe4>1)dsC_=7w5e>dLK;n;sHr}^!J9}Ycu8ny%?jWOWjIc4%
z#vmJa*|^)rP?FA;vqiFOh>gwLOUPd$K-c0P8~57a9Q-jGFHRBn+2E#lsvDcQ-^K&1
zL9N(6Xyc&^<%d<_5e0|Y7=GdYqZHbP5;y*6z8<$R%EnX*q>U$RjJ7es#zgh-J5$6M
z3V@j!YlGX#`5UJS;}v8;<NGOMl8r8>3aRgtsZdkJfuLxLEtilQOcm2@%uw8%W6Lb!
znWX$<1wE&VHdDnc8-%kJ9DBN8|2mnCIp4+t8?W1V!^T1zi)?JSvBSn<Qf8<euwJsU
z#O6U#@TQ7oHkR91L5fWkyj-aoea2=6b>1q~=xPN?y)~-vq=HY`c>2P9x_@g``B?>@
zQ}B5kFW6XTW4*e3(Z&W<U_BdcnV-zUpve+$B7@Xl|6LMpp$)O|{LONl+C~YnQe&nH
zrro}5;}sjP(WKbespxt0OnD5;E*q~>1!ks}OcngGz(WbvPnEkf`b;X>W8+O5`zTR1
z{zuC2NHJP_8+%m^Z`pX8`rf?gzhfT=-=%0ZNWC#t9G)unQ>s7AIG}Wg?g6pwmnm)R
z2Q>aRDmkd^;3FF!+xVWcYU2}Xy^XJJ9Hvy$YT43T``pI2*@ZOSRKxo>6_cl5Py%gy
zW#g|t%1=Y8%_lwDb;|t4#!(s^8r5StNB9<n(Bf`)>xDDz|DGx^O>lxqHTluTF&k%W
z{B7eW8$a7PZsUZFU)ZB*f}0TrPZPbSiC=B}W`hO(*rVTV&Wx~bnoPwR_rFp~-9KaX
zKWzMIgN46roTBbe6D)6hApbN8rOIddF9p)UMGh8a<^4-7d!*nzds?sPoDFWP8Gg9>
zxE`4q4t5UcT=nuEnGUKylb7X4<8$(0uVr&n6&<`iP4IW*xl|Pg7dvR+;Bp659bDp|
zo`d=hs_`vHE|%4Cq?*)l(EsJaS`KPDI6h7Am+fF!)j}3(J92zvOn?xa8cdgKG<6-U
zJk*1QOC4OMnx<`MvUiK=;<p{eG$0KfG;(m2gR32B7OrrlpU~7nV@L9uiqnKx^~$3v
z{f`^L95i#}b_xEPvtJAIS-8f*wGMI|<T|)%x?B_FuZ4qG7Sw7tCO@1m$SGz{lBy{O
z`3~+7xKrRdcE`bw4vsl!<=_SfQyffn(Aq&82mRPh2L%oa9q0}W2SpBUbkM;;M+e0Y
zN*uIv(B6?l75y1z_O?~s?{j}1^DcOkCVkq-teYI%?4YxQGDq5Kn(<B!N*yqoO>01-
zO}pBK)LvBU_8xKph0@j4K{p3W&*yYku!n-Y?5PU99F(hqcH#bsy1AwU%R%HIc3?Yj
z9C!|V2f~qK3gf-513D)p3ng4m-W@a<D39<8+0%L{I)3BtE#>KIiG#F*-VSbc<Y_jy
zklOPy7*^#_MF)@m-s3~E`#9*UdV0Si^`z-yfP>o{JVG&Wa64OcFx0_4q_cxN9o*$$
zu!BL4oVf9j1bPc>krgs=f-$Zk4(?V`(ImUzzcBl~4(@Yszk>%z-mc(8gULly)dw9J
z^n1v`!;YL#&|7#?Awch%OGU#SJnCSygE0;sb1;JVlQk@dwO*@PnE^)nnWG#zX0>ft
z=Lv=X+fBREX{6gZmV)PCyn_i!0&6v>$w>{9QYJc><Y2NRQ!hxmdG+NMU^dMGD{9hm
znuF;MwmR76V1|R44xV)Il!I9gW;<ByV2Oh{lwk++9W0<cPsre64L!Gce2hyx)5Sun
zts_U+J=v9s#^&t&ucpg=noAulqt-ZB<zTr34hkgH3J2^djVIYe{o+#HY7%@v)*467
zcBv`f-Quv?rzvI*);U=3V6B5^9X#*g1xKccJV!BR0w>S%ib_}mC6?aEY^I*ht-XPj
zJJ{r4vm+OUU!)?;s=YBg^Mm`Pzs+#^ORRQQ?JeZyp%!%K`Yn)oKHDAaaB#rEK?g5W
z-5k70!cr?8>~gT%!RwA()q0h6s&10MJVBk7pDx)0vt%N{8xHocgVW`doRY~o^<E09
zgMAL(qiJ%a-|`Om?#Q_<Rfgvku#yHMZ+QLu{p{4bEV{3pxlD8NxX<E!2Ol{2!oimg
zKBVz?aER?v7q|+n6yXz^EN=L^t0glrsAv?b&nQd8LFFCMKCl%!>R&nd+QGLDjygEZ
zR;WkKGLFzzl*w&_oC~uHm*0`%w(jp7e6M8b2M0YqkvpWyI~MRhEfp#JlY^fbBoW+!
ziC-N2N&_oURp2+G;oxs}+`$P4zdQKL!6^qP9sJ?oPmWybREIh<1d(AqWGkhD5_sCd
z8Ko=?iEyOgo&Wt%_>Y5s9b^bp5Ikw5*83$jdH<ZU)#u6a#YNNgUKa^u3RD)TBEUU9
zm-*#<CQG2AKqUd5$MweO)T~HC1~%E;b1%si?Mnoz2|%E(Ky`r{0<{H?Jx5J}Y=K%r
zuKF>wSZznfe{L|fgM{U(0e9ii0P^2@0`&#161ZC6Qi00^8VFo2r2g)nD>n;JZrNNz
zA%~>re=ln!{@=&DLKPYlH&tk=;FTBtZN^?)D5vY>UnAsUk4!Ag6S!8$L8^s7j=)2M
zOA2R*aE8bgARIbFRQ2Q*%X}Jtf$jo5_^?1Lf%XC&1a1&$EpVeiu|OMv0)aw-BJ!)Q
z6k3W0{TarTh&HjEaZ{>9psheVAr1Sy=Gl~L&f`w*mZHT>&W-{%36u(SW)t%=ZWc1n
ztrI_~H$%`heRhVpzHxpTJ2)kyt3Wq_vKska1YVyZc2AegWuWHs8RDNAqNhMF0iPri
zC>PKKOaV*CHD6u8U>Clr#Nm}F@y8c!!E+$t3V4dnj4catVW!wIqh!=3on2u4jD*wX
zhXRp6B9Ny4GE<&Ez<n06kn1Uw^IHV=_2c<SdA${>AM7k{72t|wA0bD1{`v~^Q|0~&
z4!CgtHi6q!d7y&V&6NJYAXXx<S>Pps!2&}ls{-=`?iLs-Fjiokz&!%@3Op__O5i?$
z`vo2lcu;^xL~`3TsmkPyhXlT#UHTZQT2S;bYuHxuh=Riu<mGTxcvL}d85ltp%oHO9
zzWk<;A&YpXxMfw=69S_J#!y16RM$57JamYn+q}4pua6g)ATV8EhQLHJOJJ(NXDw^8
z3!G$479eNunJK0Sbh*@KVH%0R<0EzyKYF0sOo3S>k-!`wE&PO;V#Q1`@UdQ$obg8r
z8<*#G{iXYSfdv9<1fCRFD6mLirNAnI#R5wNmI^Er4B*Sm7Pk0TkFxDErEOfU6lC|G
zg)7+Hf_xUJU#qFnJpXM%CZ|Zm|0#i|1)ir?QXpB0z_S9+3F)FwU!x>SZHVUiNE}31
z`8t910viN23VbwEMl*<WK5}0q=|;=5Nq?IuHmP<Wc~{06wg_w$XyoDw7uy833;ZZ>
zOkjt=%K{&=5`k9)b_%>L@Q%PPfmbQ>lmQ{r9$pjJL+0L^xm#)I>xx8gDCq3ZX4C8@
zH;n8h!DrQcOFc;^fiWLSBma7r(kQTB;DC_nDD3!q<ms#o?gr&ZbdX%;aX<ne2$?5L
zY&p2Fz;0$$E%;dA6M?S;z7{wn@F^Ke)ev&mYP0U(GW56}_=2?wISrrnT_vLNT%(p8
z3uy2U3w$GRRNy;-BUBc%`nR+RJ;22j{#$jHl<n{N%-q^M-r)y<N0)TCa+VCzlAb>a
z{48)@Aj8Ek0>29UC2)%NMBuo<Nr68EP6&C9%I~BDQ&VOMW+1S$H2Z%FFkt9#-M@)6
zXp;vQoo3er{$clN?$lXKe+!&t(<6$g{zQYcqQArt!8sCqUIzUH(xHNji(FLYVa_fx
zU1Yha=%SJ<C5NLwGmv{S5w2mK$}Xz7xY(6>@6>(1xZaUN&)%6vH5b)gWV@*4q6WF&
z12tV~@jiZAI&6HHGr`&}>bPj=N)L_i!j&dsz^v93<GL>Dxl%{!E6Bp7E-t%JZs6i_
zRd!~{6BSxcZB5cOcG1K|7ne&sXzJoh7j0Y=xM=30xr>%AQZBA?akYya7r8F3adEAS
z7Oo@|TW2OeRh2^wIY=}Z{$h}mA^kk{KyRZw-^Fz-yJ*FRrexF|kbM*P_^34L8(f~Z
zDZOzb)A-HYGxepXTIiz4#Z4}5c5$PNVi)aQbZ}AP@~G;{ZC$i;aTg`w#~gm2h~p;7
z(j>#CTS6**{cvVSS9%USfU%Q{QWu?Fl(}-I!*zMiD;d4#e1{GyJsCz3ySeD@qK}Kd
zE_%4=>B4kjx#;Dh+=cGKaKVgU?rxx4uDR0A4By;=TVoj8Ax|65%&=WJE^cwr+l6p(
z@I=kTMcRey$}`w$_B|IqiPp9tP*4s8st~z|FWgy`$Vk!Iv+YPghQf#^_2O1ifYJLZ
z?fF+f7yVrfV#i$!aB-W<i3aYV{HU&Rrm%T^)|gq+cJX9v9%sbloI4dAs277>3~@2k
z#XYW6;k#X#QcgzjFOGWmy1389{Vx8RTf0g79@GfVPsvs$cu+PTa`CW>$!SbU;}I9b
zNR|*<h~X|CB}aU;_3@aC5hR_5ULHoec$_ltp^}GDE}n3)*~LpPM!Oi}VyTN|F2)jP
z7t>wLa53J+1lI3j3jb}4i7wVn&74FG^E+(aR)a^E5ED{^YZFslOjB~crn}rvRH|d9
zi&-ufx>)35wu?C~=8@(u=DJcTC?0%_w!PZxJ*YC|#pGs13&_D);?-GVG1+Qo4pEsH
zOI*3!u%k~_pDG=fyIA4kITz2nSm|OFpLg-Ji`6dHxOh@go3@TV361s_v&507<Z}5l
zF4nqu^ZkrxUHmyqQjcQ<$x9cSg8c$J<zj=2jV{)^a-D@{`TE5fbl(2!-HWaa#auO8
zY@+VZ7PCk99C@+5h0^ZgD;HnW{=3-jVy}z0T<mc1vWs0VUUl&bCFDr$oirvqvh_2$
zk20fiVY}JlH5a>Sg?N&Q(!tkVyy0RG1$(v_G+Vq$8+EYrCA;!oSXambQ!Kdcor3+g
zi+3o%F5ahMak0<EdoK3#X!<iUs7nREEh}&QY}q^N*8vxGlZ@<Pc^|m=(8Z@NKBKDY
z`5%$Rb5n=dquJtP7oVuY#@T|G&XAG}QT{otqDpxpTvxsP3(6$vQ@#A1*@Ez}i*H<<
zaPhl~BQCym@x6;5TpU#$A*sKkRL_ucC;t9Ap8C<nF&96%_*pTX%fVzNlZbv%mlOax
z1K-aUzmmnQYPPtlRrlknaM2ub(#0PxDtNfa!=IFY7a5*Z^NYXGPf^hhwHRj=oK`CT
z#IC|K6y{xpe^YE!;U5M6Rgm}3xj3)NlSY^EvcVkj3k~n0j7$$%o;1$ftHlaQLpp?&
zJyh|K>mkp>#U849sPExY50`kT<{{fdEf3W_)bLQ#la`-^Vixq(a|FBA@T7ExYkR2U
zp{|E|9^gqAg{OT=(=nt1pP^iF0r#dkGU#`ihXx)RduZa}at{qXH1co-v8r0Yp+w9P
zy&9w#@f$ct4y^RwntHg>!_^*lnxL5{^@uXe3Y&Yl%9D0=@*F`}y{*B&uJz;&+!mfp
zU3hAa$WhPV`iGRmmL5_bN<6gnkniC-4{baYc(~p}D-Sn#Xzj^x)1sPktHRJTh0N>t
z?_dWWT)*p6E}o*u!;PLg*<+3<_N0^C!z%i9j@Um(beo%M=b^oaQV*Rybnwv8!%ZG;
zRtS8&F#pRl@{BT~(a8gsfZ0Ulxq^$xWgfba><#Pm@X(bn?kjFISIToY56r3Hue&O&
zSf0f-GTtxupn2Hg;bjlH2ZJ`v!xJ7%50;049`5j9dvH9YJ>23!cyNh>htQKdo;(k}
zCx;&9#l3#C@ShH4tdmPHktbJDVo&DWesZ8!qR`$ju%PW+(c8nV9{PJ2z#2UCC3D&L
z<JCFL@rYph7|&d3Q;@i5b(<%x7N;AmlfT<NtU76RPIbT2!ypg$dbrQST^<HgNY-X?
zfEYsJo2k1!3?=tfegX{<sme8}d-&v`7S>#GzlR4r4D&FYbnx&Ho9I?R=a6m&*DoIS
z@CbW7SJYcw^!Qw{V6J%7!(+7ho}6Irnkz;qai!s1x2gD}x#G9E;&Dp#Jdra`jP@|b
z!%`2+Jd7nxJWTU2ov+Wx9PeS0hsho$c;Jb+6P3QON59=$GKHwl?$v3Yn97?>EofLL
zoF}fT*I|Z-nI0B+Sm<Gv2cEVuhvMX6wkHQ@_T_N<4h*2pqu_PVn@{;v+|1ct#LWwf
zJS_IGMDc~uiFdNIXZ<gO$ElGT<kWHxD?Gg5VV#GSBq@93VXcSNo^<S=Wc?o2C`wYO
z+}}ELVT%@?*gj2#tt7_+mY=0|*GoM|VHhV})8`d``B^$5w%)@A51Tw}rVKQ|`r3sX
z`EX&`i&RoBrOlHgI455(dD!Y<n};nFtsWA8I*Nnlm(Ut)S4uZyp5U77D;{>zeEG=q
zvCG4&9=`E##KUVIc6)f=!v`K-_wa^?y&m3TN9Kt=yqqWg=gAo3n+jetsrb5HdH*HO
zz3t&$5Bog1ZSWm-zl#(tLi)GwdD!paRKxtQ=ZOOz&dw7DN!W(@{PE_89zLQNc=*EO
zQ9n}BKJjqKlO8^6;N_=$rD6BaXt?G}1Hy9NeDS4+uRLrVn*X(jFKbjTn=h4-9yOmo
zOx7RE>2$RCTMtJ)9QSa76!Y-ChhIGW>fr~PBM--@L>~B9zxjf^AeE>T9NAgJ&y-|U
z;hgz`AB+5rJe@De%P`dM9!`4r$HTuKcoyOxwErIdBERx$PQ9V*ln25y%G|MVngTXo
zut5LzZyF`dJWFHPvn4Y;&v`iSA;Xub5_68ic_+=5tBNZ4k^=lOgqY={qK_+lH1<)+
zM`a(iebn($#mB`ys{5$nqpB~r8CLUgNAJ`V74k3f@!foB?Wwt3QKcl;^rb1z_T`2k
z%GjnXyOs|gWy1n|)b(+xkIU3E^?cO#!O^ErI~nq&R8#62_|i}}^l@&!;Nh#66Nff3
z@02+wjeMzD91EKGXzC-^N1l%>eKhlNt&bKyn)|p)b?0hdu0Jx6$VF|+Azh$r*wzAh
zhI5WD2mN&w%b%*3%T!FF+R{hLM}dz*ANfA6W6f$4>-9cbEf6>OXw8Bu?_S%1clgSJ
z8w=a`__9%lMa@%$jEENbGDq}AUuMR#7tFCQCbrBHZ=7o9qdlF^0PO;F@X^u7i#|5_
zxXH)OK8E<X+earKrKE|E&_`z<Wj-`krI^*lM|U4Rd~{V6cJt*p+pK^7zb|&+0Nv9^
zFCXQ;+$zFDa>}kRBt1E6Ad-d;(}(ck^7RG6^5OV+cXBbAW&1Kyj?Cg?{T2wCAX;6I
zH<xDkKKlLCWBCy2w?sZ-AANbpN8%&x;}##ieR)1SyGB7`XDgQ!9hzBo>jf$5qj>b#
zGkN`ed_FDXHXpb9cyxgn;7jRcodYR3z8q)<t5@#yG04YVK5~Z1tpt4F**yi@UX))V
zU^l5FLw(%iW0sHEKJH~VeGF%XKJNGNfRBfKJj}nk<~`_RV^evI28mBWdc?;t^6{Sh
zc?$$1<iwWp$;FPxe2nlh*~b(gBYiyXV<KBuuTTg_`Enlggo1BgpBn9Bj4F>+kbjL+
zh4DTns6x-9)p>K0FD*HZC(YDUCD_w_%<wUdESr%<(cQ2>urC|rCN=rw^Y=-gXO54#
zR3#s)e9U8QJ{J3O(zig7<&6gUi+n6pLPa)F>}7alb@mb;OMPtHlu>(o(J~*)eXJmt
z_0*Kn1&npD&{$8c_OXU9`gl$u^Q4cbDKm=ZPx-j*6}d5)!q3c*wdw(R!j+kN-p30*
z*7;aZ&D~qTe=|4hWXA?y4$73Sjbx=VSuC@sn|-|G<AjgjeQfcu)yHS#IC1l_-N$|(
z2Yl@C@v@IseY{3}^s&>&;RVuGRIOORIo)TYGI#mXF?dVe-0fqZkN14M?&A$AqnA^0
zebFA)`D4zTlsZOi6x^#IFW*vyw|%^$3h!RH|7^n)!z1hwM|M_z(8v2eKJ@XCj}H{r
z_!n~<ct!_%@v+jWPgE=aMXC?^_*97m^_pWY2jwrQ={~;q@q>@Ae0=TWh>vgC7saV>
zl)d8SFUlBqACO`sZ;PYydp$=<gv>hMQ9U~rusc8cIOgM5c3F}ACz?JV4Hk-@sb6Yb
z{%3)p3KPBKWZ#|w`kDV}1XmDF`uKy!GeErnfBN{#$3+1$1Dx`4+Q+}NmOjoXwEy;T
z)(0anZ1Epu202>MH2pBTXvNZA=V^PN%F75O*-2Oqd4v@LiFQd*Dl0(605t<-2QoXo
zQh=ziw6ZEQip8z#RRVmM%Dp&1RaLk|LEfnrp!$V!4OQT7<yryL^MC-qjL5DNNXb7r
zK}P=BR_oq{WC4>l>j$_rz|{e+32<3}1_2rcxFW#i0c~bc!vKtObB%`Y($w(9#sQiH
zXd2+kfM-YB)O3=I+SDwNk;z^2t6vqMxhnIL*8Za*xpyRa*9K@2AV0u$0dfN52FMH0
zGLT>IV)7@K-bgELVn&KLmu85W^7Cg~l9awM>%Y<Y`T(s0+z_C3z_V%#nvX1NLq;?$
zD_kfF*xbmnLIsNyyivho1^HKrDkN>{w5Rb8@L_<D0(1;;Q-Em!rU$q=K&JqM0^Aj#
zG(hJ7W&kTdS%5A9dIabhplg6`0lEjMbzO=l{qF1~er|CC4S29n4o1BKln2mQ=SV?c
zop<=7J=X&mfgIc!)jzn%p;+1hoB#s?+!pX?beRz71@Hs7fz&e2hzSGrN=ViR+!7*p
zHO7Ioio3UV=&cG#fV3*yqTsJpD)Zl4i9e4>Qn0UryzCdC|An#`S>yHq0|VR{NXLK}
zlD3?$-4V##cq$qXP@UAhY;b@f0Y(HE8Q|^!LjycWJo!w31;g_03vhpcdjrWYnmeXd
zJfN^;AGw&w1afNh!vP)%Fg(Dc0ftdpret(d86#Xk<iC#*d38SUf?4HE_oXNBcz{s>
z#snA};E6!)ZW|q7$%&eS-;*1Eh#2#YdHm+M08;`?4KO}H<sW-ZP>_X*0Vb*P<O_F(
zE)>jE;SjvAOdg0aBf!i6&jxrdz^nkX1FQ(JGQgYwbJ?i?3j^uZ%u|G#Pc3L7qb@WE
zJRoHeMO5kL(g17bX3!3E6j-9}JP{Wy3$Q%EgoV;kT%q8q0IR8J0iF(|SG*>`lS=R2
zYF0R6e=jEbl4$%rqiR^I1b}Sf7gflP=L5VD;Pn7+1XvefeSnPtUZh5hN^MX?W{-X=
zmh<aP0X7HN72s7>&r5;)O4MwX+q@;fR&|pVZc~Nr3hq$wWd&aeuu~NlRh5Fu-)mGW
z)db6&W-|809_<P6W`K7C>?3_Bw<7zk0B;A_8^|rpe3DCVbQ&3t<q<&d1aiL5SoeDY
z_6K-Bzz5329Z-UOkQnmNq3-fX9L}swCVx(ljvuEv9|!m(K;01aLL3V4DW42*Ho#|m
zF~Cm&eh%<OfG;T+0geXvD!|tP4l8UK8Ri6;Dq|eX_$I&+ayDCjG?@#s)EbWX-v#&~
zz_x{A_nN}*6%O+&mj4*w7zKNC@xg_HKNfxo@N0mR0saW&A_#}J-vS&DaDp~xdg`}@
zf&=C6v<#y}zilPFLvQEL0DsZ=D>N!El81$!CUN@ZpP?;Pmw!*qrBMA7;NJk%LR1fN
zj#h#z8X+o#lHKP68N)1GBrXc2o0=7(Vu+7UTA3lfxl?C>;p=|Yb1Q}X`e&+gD9uO}
z1us^RmsLYta-qx|p&B7-hNu;yc8Kf?_nBEi1!Vnfu}+ANi%OvW`t&n-$Ump*^+Q}5
zqE(0+LR=Q2L5QnDTpi-_5Dh~#4$(wmTlsFiQHU#4nH(pTD7Q^Rx#HF=MDq~u*3G<9
z{Yx2OA`KbMTm?ER*Mzt>L@Gpnh!!F48=cAv(K1AidN@}>#y_=1Qi&#Vm2-P8ZOe7)
z{`CqHbI#>?rpKL&MC%Z3*ozQ1g(wJ77@{OZ+Ys_gfBzN`rJ@iwhA0l@fPV8Dx#yAN
zEPw4nv=7lCgf8$?sXUCAeg!qO(!q?ILv#w!BLq`_`DAH`vJhQDbPh3ok@)MO)X6i2
zT|*fL=^n}u0iWp>V%zY7m5b!U+=NdGdWJZDq*t#{#$Fg7V@LE5Mu;&n#>Oy1SRsZ+
zxF>=g!U^$9h+jj95N?Q7Ay$X*Liiyb4Dk@V93l+Smt6=Eg@{9>L)@Z-gk=A&YF?ty
z*u6+Pa=k;`s{W!bFq??F&?l7VN)d<tAqIrFE5zUsw}rSp#GN4qh4NeuE{6>y??Snu
zhJ^ZZksQUgH0sjgTBodG_u@0XhJ?7A%nEToF%NNik+>&hh`1Ibfed)wt3;^IV!=z|
zKz2V6qTPXB1GbjsE*1}mcqGK+5K}@7WAHy@o)1QZIC6dJ(GYYMCUqzxBn~4(JRV}A
z;_|2vPlPz}LHTIaJDPpY0qHf3Q8#&itSXFCaJ+&O6zutax6)RrNg>uA?=`Yj_o*SK
zg;)||X^80|W`tNA$^niJ4Bd>GA!db`O>RD!DqSqYm~&Klu7dLv<X`hcEKucz3NE^E
zpV`F>Zk!xgx=i7`oZVp;Zp|dwqs3w+A3K)Qj@zym3tp}X@nneo)ZY+Kg?Ku|%OPF~
z@eEN7@j{4oA)ZzBJRjndjDqK=hVwFhQ{O&Y@o^>(IwsnzaD9jkAvW^eR;d>iucwgm
z-1*WfwMkuWR`4YSw}jZL3hdgp5Zf=5cZAZB<ISBE0NxC-H^i&dh@-t;3$a@<l(Cf8
ziRWVRMu<J6?Vl-@-wg4_V!?s?__w{jSuD;W|E-WQG`t&PUx;@?oLww9Qga}X69jb}
z1nt9nG)>(*a8;dhbuh&HA-)LlWrz<#d`LSV;?odymWYqoaYccTSs}j>slF9Oqrta6
z3vqOG@#i7d{8GlDhxuK+$?{hrz7Fwyh#x{6rm5s(A-<z@QGa>z+kdi@Yx7}V@>E8q
zmoo>Obuzo`#}LO<Pk&Zq`AI#@oSb!)yYl&=6HH3TZ`5U4l?ZJkoCxtd&1r->5l)8q
zBSdC|tO$RG_>1%m@vmz16cr@I8QPZlSr0OIi0HjmnAY;os=|Fg=AG_aN|ihp;yjIi
zghhHDo%xIi%qlEhBJ!4q8AD1giX{HTlbTyGLZt{*BU}=pa)c@oE{<dXoQu)4FpTeU
zp^6A^dMdkGgzAyhsag?gM5q}_H*!o+hl!Wj5$acy*<38gO9Z8qOFW2BH^P+>nnkF`
z2O>0#&?v&C5iX0cZi%=&l4H|-OGJYR-~HR3DJ4^uh$oN8%$zGCISXhKp=pH1k?bs`
z;>`_mUeAe=H$Tg$EQ1owBU~Nfnh001r*%^e?yf=ExHdwI2t^TYjIei!$cc~}A!kQM
z1AY*S6o{m3^Vc#$Dnh=xyiUQ^5w5@RZ>tD5TqrZIiO;u*P@wMcvM|EESELSalLJ$6
zgmXJGxS{^l+Y5+Ny9n(g`0QGQ4iP#==pLa*gqtGV9HDcBvIw0b9401Dm6k?4ms0Lc
zF6|)?OgObA)g_WUdAmknnICuP7U9Uw(tbnp342E96~T!hB9uqa6q_vdfF8l%D@#NX
zH=dN`vtUNt!<fgyfSD;fk};D9PL<IEcO%qVD!fQ8TksQO98<Vt97c#D^o!6xl6jJG
zgmi>kl#nD5@|Fs^k)4)`-Vypl;3m*pBY6mRv{YL1zKV&h&y}-0Ai`}C?u;;q@)k*B
zHKS$sJCvLZRF6I0u?Ly^`2!{V-4$VoLW9CKn9n>=Qu~V3-5j}=%4|34;Jp#<i|{+u
zA;SF;9*D3i!s-YQMtF#5M3@!f;RugJ7#m?+BtK_7EW!wqG{W!*6PJod*&V*JRQyv-
zhC%4CJsx2cYkNF3Cc+buJc5S$K3d^6>8m0h1ij_BOcme)`uGSFB20}iEs`$N#0W1h
z6_X=OqBOQmt^2$M<&AxrLXl9mXnKShiefWExg&$B!Kfg=G&DQH913TI#pG9nc|>(*
z=E4Z`Sw2(1FCH#Xg^Mb8{BWsYaE6wXPWX}tOQ~xSRz_GBp`ukn<*KwyEGOmdOz9Xb
z6=#S2zvXGVOst9UB&9vVTU49~Pe*t$!lnq%L|7Z)`3NsWC|)K{!KMH6Y=q}1>gr??
zo}{`i!ukjs74l@+28yUUwUQ5%EfZ<xAx$aY9O0!1+ahd_utnOdqOB3eFU#i)diSI(
z8WTExJ4hlb@(Wr2Q>=d_!cKN`nHafD?kd`)%DjA46<&+5TNPfvaQ}@6dsO*N1^JO*
zKFrhz;{0}mcOra4QIGI$gnbb{i11;A_gKlFg$F1_5%$w?oiD6eOYUoXpEjqPRCC6?
zDf1k^Xf!^G@U`kA^O--6@JS>S7!FY@&*prp;AaYcuHY96@~<x=e08BbwO;Pw2zXc~
zMsg+h+XzP^{1oA5_Bz7%5q^y1Ty^s@!4oikh!FQKqbX+JkE#17&$Z#dzfkHZx^I^p
zCo&2jdWQU%0#Cvu8A<aK$^uYa|Df@Y&^kt&7=KZ_Bh-#jC&uXrXK1uzRF3gC<sm|a
z7#GF(C&Itff(TT3*28EID?CSj-H_tpU>PwUFYeHDmA1IJLuQP*vr-jf{IX1B#h7K6
z99$*{D=!zEtyhV0ag6FQYQ(4-OA~!bjB2r5@M6d5EU{(=47qg+OKLN4S~Hfx@az~X
z+SL4hVL`1JFSKk~)FBr!>c+S-Mza|8V$_e(Sk-oEEN%7Wc3y)Rm&H;YXxq!1=UyI5
z>an?oF&f1(!f=IxoawXNB*uSB{7qvy`y-c|$G9p+%NVH`SI4*}MqVt_dasR9^ZR!6
zy>nHeMT{I(xMV~v-fz5IS}lgZ&hbn1F|LczD#i`5Tn}RJu4k7Q$=#jIq1rZHF4>Th
zREh%P7Gn_ciBS~e#u&Y0+!~`eMoA1Wh99GCEC)m@h8?3F$;Bf>k!l~KLyV3wxR7^K
zj4m;{#<*Es@=m81r5DPbRiRA5!sUYhc8gJd;ot5tdZ=>G3wL_O{A{Isj6W@guI?KO
znhO3`2|Me=5HVauUVfm8h&}p1im9hWFNhJ6+DD7hq`-0!#WL%gf!|nN@=l@(Pwp*X
zJ+~<K@hg*kV)TtMFvcB}z=n3e82w`mi1FAeNjk<fXcBLWaeIu*mlg2i%OuNfrwd-s
z$-6V=?l9?2j94zN$*(my#*i2f#dtWz-7$v7xHraqZ1GgDE~iuX#44QCqk!}$YwlN<
z50K+aGZ@@>P+f8jowYp@V;IFd#;91OG!T;*Bh&+rQq-5r=^o{QQZzD#HMg|a8-+ya
z338vu0FFwnTP`@A8O`ogkY`Vgqol={l3;3r2{9&8dK1)7Fe%357_X8<{5Qtb7*EG|
zCdRZF(_<`&u{6ev7&F;ojCoWmPRA~m$j^x}JI3DS;+y4ig^?8IHkSEB_}0vY)P)!e
zs3Y?-@StSP5<^PPVnu4Y1f!0(Toz+F8){MWNvc?kl`$%gDPA4p+RF+bY*@I8H+xG~
zKA7&ZCYF93FFDV8Dh4+h(HfV{%3MngjqzfPO|cB_Jr`qLjP)^|r>YX?mfcAozQ_Y`
zHpKY8mdr}x*&QV8M)f>twK>L1F}B9o#^xTE?(r6?z_Z=h7gB6{j2$sviLq1Nq?7it
zV#NP`%-PsTx;MKN{zQ@wb6?Ev7_Z0pj%~$wBgUQ>AIA77#+!UA#sLb6;@#dDZ^d{!
z27N-l`%a9r%f-7f_9@0OmhxT<tPtF>vY#xwx0L0ReLLi>5bsm1R)`P&!(qMd9W0^1
z5a*9$d_pCS@kNY7s*=yBR#wrh4OyR(;OAue7X4dJZ@-N3Rg7<99HI5Ny6|hoj>D?V
zqw~1*$=dp^5Z}f)sx+OP+B{Dl6GUbFfd(qZzcJ3mI2Pk4GKF?2#?QRGIPaGjzbZq)
z`4=mBbcL9^HN~8|6ES{Q?E9N&Gk8vkI#Ki3l-7UHK#k4g0r-D%6kxTJ^5#s*JH=6e
zG<+!U3^iy(UhUUA5T4}_@Sld(l`=pko{y1{phkk4iTuJ{g#;HR$V{Y<$A8(`XJ0DK
zN>GtE)tB!oCDH;{PH<pv5B{noxcEZ3YJy8Hl&dAEexXd~ja6kQsGXn=+d7t0E5YIw
z;-wXWIR;3WizVwkutNN}LS(KK%~py_6I_<SOkgEwkl^wJHza7CpkabW39d<SZGtNj
zG)~Ywk>5$=KC&i6aze(HiPY|<?9Q1&7Mdk;qa}a&GqbKraCL%?E2X9zOug=!*CIhq
zf>eV11i1<F60}UDb}+k=qZL(;SkVv67?OQmg6k6`D+SFUA83`xjU;3ZPp)HFpiP2;
z1YHtzWk(VeCFsD065N=8F`tqIZ4(p|F?Ea^$NGW9;j`j)3EC%e=$y1tP<^gD)axcb
z&+a7X%;rpaa_M-jq!V9%wUqi!z2H7#wqBNC(@L2^+ATr%1my{|1U=Y=pmtByeQt!I
zn6c(ws!_64PhccqsJ8oU@&tZ%ibFGl(slwT!O#TvBoGPQ1bq|qOW-B&+1~_dVwfOI
z5G9C-a98ZTG_`-Fxa7`~zgCKW&RIl*T_cNcNzjLH)hVPE>Yd=$L^@ZzUu%`%TfE;t
z!GHt<6WozVvqtXRmdF(cTASMwX>*9!oe2gd7@S~8g1Z!P*o)LEQBqY#;qE504))+3
zMtHV7R6sxc-URn07?t3O1otO+Ai?kik0yAKH76LB$Tgsc6;IjFBMFb6l^ztW4Qb1I
zI<69rB^W_`61h=vWFqY<H{jFM6TQptDWwm<9pa-Cj7cz_re5)7EZcfKHEe1zXN%($
zk`I>VPE5c&w@C>mlai|hqq0oZD6K4)-K+E|nU-KWH6o1~Y0OA4Gr@jpM}k=iW+zym
zU_*jABx8aVlvtuof>1{iEJ?5+!5>|*h?gDog{nDL$S!a?$;y`|SVkhO63hQ%y^DXR
zw~qQ|bB72OZB>HR37)2ECs>o<Nkt0I)|**q$5VjRCCNT@l~|kL*#v*B5-%ipj;uGU
z?^-3EPvr2oW|jDCm6$lSWS#0h<0|yGHzs&7!L9_aQW_I%POvS(c1kbxI>D9%TUD7{
z<BtjOY=unUk>F(tTlc)3?9`0XR}$$<uoq+g{r~;f)mDqw66{X!MuI)0Mz+-A*A*H}
z6m0EQf0Nxz@J@nv6YNdo%E(*fb#6BjWawiZSa>_Z&r^$7V72=c!tW`fjX5v<(vn+x
z9!&5)pGojbf)5gWnBeOKhZB61;Nt|JC-@@4CkYOzw?0$w(?l-BvkN;5<VSTmy}D|(
z_>$&sQLV4k0~8YCNelmnX?&C5NP-^|982(Rf};ueeRjV4U4ri^oNrZnv2_XO?^WD9
zd3+FA&s2fg1wT=!7G%-G>@-8J!?s&3ekFGjR7m5ZG>#`Yk>KwHXBC%!C#MpeN^p{7
zB-&AKS)1HHX}(6Kw#Kr2I+1JiygWlOYmjnRi&`V)GBh36e-iwg;2e9+Lr0J0oKNI2
zCS1woR<De-^nb|T!K+1P8d+&nPNPa171P-AU>TDeE2ZU@0q$HNs`MYmu9j&G7pGA*
zEjOfJl9sHjmd2NJq|3DL*Y1Qh)5uOkOG8hiRvNX_xIT?mY1ByrX<V5`voz|aQ7?_l
z(rA#D=C^(t%T|j^dFSs+6dt{Cosu1ym#5J%jV65EOf^bl+iKBRA+xbp-W6$njVO<I
zKI`9|EN-gM;OQl_;my;yDvi7}TBdPz8rP(elSXbD*QTXU(jtxI@w|_<{D(d-Xfs<%
z;D@UPXQ{uD_=aR?ifBKae_a~+X&KaFm#Gfi2|_a7kVfk?Zc5|kG}@$5kVbJDC216<
z!JX7aX?dgoHIdlfn3l&QR5~LMYpS|Nv`wR38tv1PhMa^B>XhoBkm;Dl9ff6lhBR!l
zMs!M}G>tB4bWO`-_|9oLIunO7)jLWWlR&zq!C7ICG<v4dT~VfRji^7lq!%$+RI7LQ
z+;a5*D|9320~=|WWN{jU)3DO8)99VXt!X%Eh%~}9qBLApzn{kc8VULUo)U@jH6kFA
zW2Mm^utvnBTN<O+h+ERqfTz_nv{78e;GBqyQ*5hG8h!tdr|*E4qG;M)y(9@2xI6?=
zkSMUd_mY=O2FW=u5_fW*MHCPvDgr8qfEg7;at1*Z1r)O)Dkv%{*+iBsLHM3&{`Ws;
zPMw<S?wamO(_PaulZKUsosRZdQLXEK>0zd$HPo>`nmg&};gp+(N1amO<@0>1rbG0%
zl#t_<V;NMg?i)*^6!G<y?H@>EBn6wsL|R%J5AnKbJetNR+ULa{yahj;#%PK(9erDd
z^Jg;Ts|sV&(W3{(@ZPn$Qn2GFO!?hZ`qy}=Q1)|D8k5tQMq5hbu{0j%z>)Wav_l4P
zR+u93P4$}G-?8pgInsBQrk+gWsWj-wGt<$3uAfeW53pv?1~@}57XNr@il;O`-lv{T
zV|E%dRLoQ{hrvIM4GP{;@LU?tr_o12Uj;9a39Vg0MFlUV@p2l!rtw=EucR?AjV-kH
zG+s^PwKP`H4AOW#jrr_<8jI3cKxdJoUYN$IlBM}&B#xc&c}2T2d<eKW9VIuG(sy=u
zSt5tV5i#;Cqc-W_$K!u2jdJOf(yBC8vu|m<mByMh)~0cGX=;5s`jGMxeil+%1&yDT
z8OCYVC6}dE-<8}b#n|=B#HKXfrV)Ob*eu~Y67uw2iTtrD@qQXx)A%-x@6y<o#&#M&
z8eg-tSmJ{;cBJu98XwXoy=eair<xz9qgxNt%eU?zpHROy#HSK|CgJB2ej(wPX?!IS
z)_JRCEU?<wSeDwA#y9CG%5lgHQ`F|}H1<#+Y3xhm`!s$?<Ht09N@H&t9haqsEsIwD
zM0j(jr{_-S&rdL2zANt+>VmsXMmM`PXGra8wx1y`jq7Rrm&QR}B8?MioJ`|z8b{Lj
zJ&ixoIGT=@Bn^s0f4}7?P`($X{!HVqG>%DgVv?UL=)Wb-IV4qfoDSH$<d|oga|h<B
zG)|{+DUHjlz~G<8xirqpD8Z<HmR3DQ>>S@Unl$nSnHjMQX<U>F`e1)z;}<0v$No)Y
z?6TAq)=Woxxf!pn(Pf@b@T;&iZ(ff0jWlkiQCvX@1u+G;DJZ0%u!7qaJh3cQK#AtS
zSqh5Iit!FbrSNhEl}MQMEca-$id9fV!5vEUUO9<H6%<qODjUiO_DPK<*$PT3D5C%h
zN+~F<AV-Oo6-S$v9DF@~^IAcsmpfF><D=5D3d$)MGpR=fCHlxPxs_L<87#ZXX(277
zGr#|%;BE!o2nUp?q@c2brV5%VxJN-11qlVY3aToorl6LB+6t;Gs6lT1^7va}cB!U<
zdzDC!{IUVV)O*WPd!)MSDByRNgc61KxE$TdWvL$;M_-!CQ&3kyBL$5W)T6`xo!>w~
zLk0B}Z2G=Of#oT_B1*Avy2wb*K2z*T1^KMdH?N5j-CuZ=>YsOOUD;eg3kB^JbWqSz
zK`RAq72GF>*;-a^qhOWNoeyFt7JfvIW9QBjvTdh;w?A&*?Z`nbPj#kV{N~)i(@6p0
z#}e<NpsPH+Rn%^IsynaJE~|$Usk^6wUP|;s1RlLP#^os@{S@?9Fjc`c1p^eM6c`Fj
z1&`Or8>m20!0j>jD;OkYGFZV-1;Z2!Q4lW98nrydkL}Qk__Tev0)7>TM_M9Xsy1Om
zRe>fs5Z4vVT%ICgDX<khEW6|=aLGzRMuEqRPVD`~*NJNFlD>kMS0w@o6NLrw5egnq
z_<mpAQ3^(q!*9(WRPc}zJ({HCDW9dwQ_M6{=A&ss3U(|{G3Wft^3>Vosj)Nw1&>Ng
zo}gf&f^kZeR~#=Pk+0rvp8PsFNx@_6gM!Ia$FeAaIl6O_kKU$8RX(9$bgSsm03}KL
znXceT1xpnyQ}C36r)d}po>wq~!&ER^!5jt8C|Gg1NzoOlXBEtnI8S#@FK`RaRlq;v
z6y6i#;%LY-v7EDcFDQ7Cu2-V&8;t)PyEN3-mFUH&SLjm;o_(vpJl-98MK{*#{hGX{
zM5)3ptMi`Qo|vy-0mt=Mk(M(eo;()Pm=!Fd&?<FZOdly9wYqgvUZO<nEZ!ZKvsX&A
z9;~$@wK6h1oPILOpsrT1M#1jNW!5Rtjbkl`xv(w~zNkgGUJ|*LcXR#3MtXsQyHwn*
z;%$Zhq`(CQ7ZvU@!n+D~DfouSxa1ZE+ZBAEV9OWn-=qDnNWHIMt1KF}BDIZ**wp;T
zXR|(};uv<guT{ZEG{~;W&#07Zc^@nIM8T)h2<aNsGJj#l;e1YWy_Pq7Qx@xdso*QR
zRpq>$(u==V(B#d?eYnD9lW%E<3VveGr3-L9xLd&<$?$sxKTx*U`f<X>58!a(y;q4A
z(Ld5G`KJc?3y*!&g@XOE+AkE&>8`&@$W{jw98~a+g0l(^DLAa)sDj_6)_9jZB8`V#
z9eXDJhqQS{q0<uiQ^8*n`CGzc5+0Y3-990alM<eikiW4$qeM6Brd>OKKRWN6g7fsF
z6{)!^qWvBVU(Dg7PnKR%aGBv+MKKlsD!9T(u42OY)Kyxwf}3*46=pP>Q$I>sTvza)
zf*Xv_RXVO%k>WulrbglYHVKKWJk~8sMFACUE9T9bT(_VaP0kCc_@i*o!V(sd@D2${
z<Ud@Bt6+w(gc=Eu9KIjbJX=Lc6{XZD>kbuVRg_jEMdzp}qecrB&ej;}8Q;pOD6gV|
ziaXWlHo@jp->0jhq4B%lT#{E*qZd(ktVmT-QCa1q6AV{zkBTZP`l{%sqN*B&ySNIW
zqMC~8Dr%^xDTh->jsBMM<BHVuq5bbA9~HIb)!9#O8|!nd2W7~+WP(H$?Nqd9eHC?8
zG**#Rqqp|zsc4`^vAw>8yutmmBGphuBNfG0rfRNCu?~?YD)Ln{SJ6U6Q#G2y@Mxxj
zKglJs4-uv1|LAR1v{KPp<rg`6-m2L~7IByOeG+N8GBvebUI%%_?kX1ak6z5|sG^gK
z&MLa7=&GXI|F{iUnab)Atx$N_ld^lr`fSouBE3}fmPnuf(Pv+c?y&t;q@>&iNc~dm
z+}Afy#r^Vh5Oue&?-0sRp3(rg>t?8|Pn`e1ORG>+Jfvcjl(VYBRpF`7ROl)US(8_>
zWT~klEiX!ntwy_T9Tnlq6u*`2tI^&qUj0E80f{srn!(D{2+4sK8!MRmfQpf7G%=t_
zZ1K9^yg$wl!Li9`S!aTZi7LjZcvy}88$M%YYOIP!R6MFi>8Wul?s_Zw%sUefM8?Zg
z(J!%RWonX&DYQx1!^sjprs8plkU7_JQ&mip!+%nZVjAZ~)1}P2bc!C1^IeIj)acdw
zr&VlQ8O<S|Q87zJmL5Goe^$k86+ddx1Y?ehxhlqLctpc<>?EyS!<`ylQ1POQ?^XQ3
zuBv!h#X1%1RlK5N9yzPHv7_6oDqf@FRJ@_$vvXyN9!U0Hk^MT&V1IHx<-9*x=U{Sv
z&-{fd7O7aQGU1QUjwhZzl>F;zt9N_m7d)L9btt)nYC4o8eVK~oDpsgisbaN?HFUkQ
zDPAS)k-tjC9l6Q(548TJUUDss^WJ2Sp7|$x<lo*ie}js*RBTuAfr^bPHmP_|#rur^
zDmJUwc^9^*ct^$b9{KOmS&k%wKU;s6mn72Xldf}5wcfij<s3<FrIa|pBgrYhCv%P_
ziL^eN{7}UXDpAFkDn3&2F*~o~a}}S^iH7FR%uRkuJ3N^DrFTBL@pMu5{N=s!&#z3K
zJDB{6msatuitki>tzwr7_WT=JpE7xAe{%bP_A3q~DI&^hc&7Jm6?-^@>d8?DlCus(
zl)Y4tiYqFvs`yF8&no^>@wbY7WToPuibE<MFmr!Z@tcbMDi+pBUOf~YlPlo>TOCTO
zjg$O$(qR=xRQ%3(NExn5{c$vU3Vf8ON0Tq^==P^Xw)M`Zns_{)>3vMaaoQDQqlyzM
zPO3P~EB4NR^l<Xf;p8cbqC@+ALvrWziYRNZwmPfgoQjJoE~)tSRO|C9K0Vd?f)qGU
zDP&6iGK0U0-Tm9Y+av#YxAtX5^!_z3N%}Pv*V!u#MK%0Ki(+8cP*B571|JQ#Ysk{@
z>w)BL8rJPkHtOE~ut?t3y*<Z8(NTuP??0L>q@l2ecaA2h&B4bKPaRDb(eOa=)U_kY
zVj7BT$k9+nLkSJp8cJ#?rQuqi{9Ye*JJT!w?WtXf-|U-TTH_~_^Z)3RU-n268p_H#
z<uv}nFTX|a{Ompv+`lxtyoNrzxec>@MGbdp=&xabhPyRX($GXhzJ|&g?$MB|Ax}dU
z4OKPN)NrqcY8t9*sG)(j(Z5sHBL|Zo<t7Q);qyasYiX#hL1;*5sKd^ixp4{qY?vhe
z%ZT2Gq-Kf4$~C8E>uRXS4r^$rVOyuH+D9Wk^))<yBuRlZ($H7~O(@C!CsLFWrAJGn
z#9AImHr3EfLuU<LG&I-HLc@I;+G%L1p_RrT$mX}z&|1S6=Mu!*XqdU7L-8KbU#rBx
zTp|-1Cc~k*?KO1J(2=9-onM1S)hECCsubnfNyF0bdQpZQ2ej|1p_hi<8oFudPW}gy
zJvh39$(|Hl_x5wQ^dioP(MRLPt=zsE`blZim1tU&5?$;<@BEa8ff{TLj)wa+4AP)$
z+<KHhSi=wvX$^{op;{DbhH=PL+})*#bJTrTrHJsNss@^brU47GCgdgQ?9Qqb9o*1h
zYOu7(wmTh8_8Xc@<XHFit_DxT2+CiBuOZNo(W2<Vu`fH63~5n4@*DTer&!31^pP4K
z)bNmoQ5vqaC_#O7shw=mD}S_xF&ZA$FmY9ilq$XQ3-`*W=@Nd|GyhR7T8qurFh|2U
z4dXRTU`-7(<mjlxNgAHeFjd23QZzoBz{`!3Q)p@b^<pHMw<@)MRcc(lC=5>1@Fd45
zD@>>D4QQ_=Qcr9A1#|xAt5Ov|>h@QyWKA=7rldThVV1navlQl<t_-bTH%u~|&Smh|
z@V)HS^9=qPHfVTDV;+gg7Od8=hWs_WqG2KL8X9i&Z$D4Ns~TRD8s}-ZxBGHLuS@yN
zmwXmT_=bd2U(IGIk43DnVVQ=-8kWf3P8pgz?{M+~22YyDU#%M^l2peE*^2d7YFH)l
z&0YbXu4M=6L=lYsOJtpf^%@w@bIvDtx>3U>4LfE1w`ns+lG`<WpkXtK3wp8DI~v~A
zutmdrvd-53UFCg=T%C}!?SGUyRSSP8@lPe(A>l_7ek|c965iMwefj4ziGMEP7ZQ^A
zrG~F0&Zx^%9$(ATT^hcT$hZHi`JF^|YuF=^618$G^=<!y#P>=_<7D%nH2kb#A1zkH
z84dq1Hfs1y!*LBKH0;-KK*JFYM>QPOa7e>ps%&ar-U|i(KfHzfF6n=2_)Ehd5<j#m
z#cK6lDDbyDC31|$yeh?mO-^dK*fH<4ghWosE|q<;0PznJCC@UZF<cyrU(oR9%(~|_
z{BXGIxgQe;b|u!_=*!oHFKW1?;j)H*$&)=VpSS9nl7v?o;dOAo+%-ug<vQ;I62I|3
z%1sS1J!*2Bg#VU^_GxgU6}<(lqo9sLItuIfLdTanis-mQ$AdZ^(os}LF&*`E)Ynm5
zM+qI3bX3-nt)rw4=qO9dW1^If(mHZ<zI0rdr)6}^XqG$jtWb`LW=q73DWaT?@;WN&
zxJyR`+2l^vU!7VwMQqJ<VUq`b&Tp_f)nj$aS)ICDR;XIN^gTMN=(tx$Ege;LRMSyi
z$LJ|h<;BklB5gK{^6~r{IySu{YDzeHi>R%mj*hqv!EQ_uo4zYKb#-cAy31|J=*{Sa
z&M()+a&_cU6uSjyadqWfZpF3E#2e^nsAIT}w2nqP8tZ7IqpgmljwX7Pnro>eUm^vc
z7cF!&l{o3mB+{I1`CYgvg2#K?#n3gaTj^-6W7Q{O>jpu1pN@7qdh6)Ji+0FuucNDu
zZaO;X=%}L;nLI0sEfHNL(pkql=yHp~!Lsw+b@b5DQ_AOqbE20-NdIhOti{Tx0<YUw
zM}Hjybo8TAW{bxj6UJ_l((&F(@$R3|cn3=SehCLjI9S3V5)PGcn1qv$=dqQdL)BsF
zuyts1m=vHc5sG)*X<_Ji`&nV?xV>RFB90DMho{4*04H{Pt6e1aFHYw94SEE$wBPeW
z8r#m!ZT}P*9YbFhBP4u4LY|J4Nc}}(6m_lR4IK-0jM4G1j+r{1(J@xXBRU?_@wkph
zb&S(7NylUz<E1o;{~&&!B7WbMH$lfln)Hu(JnGJfg!9QkQKe(<!~=O#bUYy|KgEVy
z#8le$bTLg*F3uH83U!-K<9|*(spI%_g2>adXoiI3vwF6erSnrocu~hoI%eybqvLrU
zFX%WhN6gjnoQ|`fiutQk)Y`iFky0LS79)IMdW65M;}spR>zJ?O#!fL$$7@oUEP9pJ
zet#(<2YTi%ST0ImiR$<IKrEog{S^KC;7uKibZn+!=vb^{iH^5)Y}Bz-$1)x3bgb8L
zx^9c*G&vn#uM%Hmby=ZfCH=HzE=3x_-||-LSVNEgEpM%aw?8h3Pwkw$^|aWa<BtZ}
z9OI(Bd7E_n)H(ZY**D6q`)fk~Dzcw<b!^eGL&rxn5*_dB*s5b2;TutD^|di-oMy0H
z$JEdA-d>&hfKGH!d?=0N<L3p7KGrd!ZT2TRKGl(!6^-#T>4P*Ua`;^0n|kK%UY+_%
z$4(uc4RkT^wT@l1F#}l!zR~e5wWH&Nj_-8r*71vuU)fN{_d0&iu~$d?A3ERins&3r
zk2;35>Q3fA(Re-;o&U`HS;ybk#gYLX_vskcI+yrwI`->0tmBA|pV!4sXSy7aJvsP4
z?HuCi2{CPsII81!N_AcAZ;DG=#h?GP4Gw|Q`%A~U)hQy!sL=0Q4=WIbxRW|g={T?B
zf{tqqV*OvrqIaK`%+JUR{UhO7wv`Bb`)r}oY<N+}bshid{1P=T%c6hTicIL^E5#KF
zi>^uSpDXU%lQ(c?)PXC7a&Iuy%oaE4CKsZJL_B6hl-ne9o)rZQ6f{u7KurUM3=}p{
z)<8J}?>3GVG59e$6gQ$p?i~h-8c`r^ccv9#2}vwvptON(BMSaxUeds<O)=u9SBe}1
zWsE3P5@+xy5whCEq0z0Oyn%b<X$1p!8mMUCE(4V%f0mxuAnrEs;#|R_l7W&Z@*?Ch
zK|8D>TM@5npqk`=_L`_}M3INry4OH0gMSc1(m-tk53kRP8xRKS7~nQe9#z+*5(aV&
zG%(Q6;5RFy9+F;<99F058W?vzveo(qo_|sBU<~148ySdCk2=5r(!W)169f4M+8Vge
zKvM(F474)PTC!>`FVs?YvW0>3i=$TL|3>{t^+ehjp!*Zqw^_6^FtkOigKRSFM(6eh
zsI|8rk4igAVkhe8Oe>ytHPFq#L<5rybT`n$fNj7r(9=LKGBGgBKyL$m3=B3f#6VvI
z{S2hY&;W<<>uci0Gorr%A_HVUiSW2z3j7v6NS01LkvDa-7$~|>EOe0J2GRyJ1G<4-
z>!R4DNWH5Pazrz?3B!oYm{Ky?9~l{lTaxpqqhhWB&%kH{V+{BP0s|QXBiMxDy?d8X
zw#|A<^w<~+XNm_ny1n8d10xL_nHPEGg9Zq<jqE}=O5%49tNXBlu?8NcvZUUZcI;a&
z6?=p_S`kTmyn)x}hzU{!wA*IiHGA;q=x=wE4Lrso1M>|$ZeWUmnFgNW6*m-k!oV~G
z(+y0eDvw8Q!V!IQKJQ5bPZ@ZcE-+m*|07TQB%X_R;ap{g^bRtgW#Cx@FVI%y<z`Fz
zoLiUfkW0&-Yv4HpM0h+ebwQ-~w|Os7CXDk2UN-QGfv#&(lr|a8lY;%ELJ#7v8BvU4
zXBHTE!@vpyD-A59`Zi=OkxG11`Uop5l0953;VTQpQVwU1SSIVRbh$)0qE(XlY6ELz
zh0k|JS6pl0uO(u=f$C3-brSNPMal+Ae@nuRl$G6u#LWiYF|f6B*=?Q6zH49$b$SHB
z5xi&MeFLlC#F{s;)xb6bho|AlG;BBU0mVK6k59md26oVHN5C0@j|_ZlppA#N9zHSf
zseuJH-mvkRfzKI&EEKWug@G?=$tL=l_{zXe0~Ji%Y2s^|B70@vZ#v-3_&2n=I^stI
z{9VPj2EH?}o5M74dqMGofjjON-y1laBY5zWGGA2^dkw5gCpO=V|77521N#j8V&I`l
z;t1{Ez;6Z)8aQNNzdQ~Y_@TM@W=(rmAmU9HMg?)03|}jCi^8I#RI7nMIAqD^Pa6DW
z!BQS9J!arIjoiR>11A`HmM2fq9%Rjv20DCG(wtQCjDdd)TrzN(oat-h#d!l4Byvu|
zy`9A~N%2b)QRrm+qJf{ri^S^WyM4sJ2Cm2oGv+5AFCY%}id|*sZV*-e&%h1ZgNYI*
zZW@T0xWhzI6StYT-9%v%zmyYMCJLA+Xrd75!^MtrV)z)r&ptm?KJT%L;<*;$yN9|I
zF)^!aM7*bjU=w~qghw$GPDRnLQrET@<Jl%)qO6IMCQ6woZ6e1+yAGm^i4hG&qOKsW
ztVxaPAQtlf?Iv0-PJFaEue^yj8|0EQ%@%bp#4DP(%S3$>4NTl^qLLZyn5tv)1CrUp
z2WD3`agT{ACaRjK$^KuD^Qb0~>JpA^ob^uqtQsbMEh`Rf%)3_-YniBRBDNv9Ii7oE
zqWHL*h?@}Pe=eSo{PRrYN~G_dqGP&5U5VE-@kxc~$B0cQiyq}fLlaF+G&9l2L}L?4
z6RS?d+xQ~i1Yr}CU-Zf*GIMpT&po2Ki54chn&`%1nrLOBgNcqNTALVoEq<Sgzdp%s
zW1_8z-!8-lU5mdyLhR}!+L>r?g2*$)IZucvome3*I?GlE&c|ygf~Q?f5dW~A=*~Xy
zSC0}B=^>GxCO-SL>zecN-tx3mw^$z&e3@dSE&7`nU}6JDXCh@{po#G&CYZS2#2`x8
zL||gDi6JIT6Z|RUGbP1P6KNBQiDA@BQZ%^|A8zv7s$#`}gld8nbSW#+H50`bCMZBk
z%rHU9(73Qn*d~hg6pjf`@+4c=MBTDt^&~Mj5#zrOLlYSjkD560SI!8NIXXOSVl0Pj
z;yy3&kcm;0a9TWQVsoA#WweP)MZ_2rdrP)Sdx^?sqW#NBE?pln@#k>y=H>W?b$Q(n
z6)M+P^r<JtnfM?cqXADeG0DX1Cgz)%Y~nE!Pn(!w;&Bt~^HdYlsGY%Liis!Wh>DF9
zi-!psz;t=~l!+%L!qGJzD`xi+Z|BBlQUcVwi5KY_a&*s{m@SbL%VKj(%r)_xiRU>e
zTbx^)H+D^`d3`|%EYifey9Du<OuTGjo{3jwt6zfHD<+QqR3;cK7F~$5=A~sZ!q=ki
zC0-dU7MOU0oxfYGHL;M6V}d@o#>65Mi%qOBvC_m66H84jV-e{c#E!w;x5vev4x(L2
z@%wvugjLkUDt7Epq17hxo+-(qH{MLJj{0_9;Zr5Zko?!ltE^{Ccp*tuZZxsU#E&L^
zGVwN*dp`b!i7%-U6YrRK*TfbRADY-<;yvkcTTN^;@ji`txS-SBC?>Yk@a_=L7Zo3{
zPE5SnC&Ej;njrj$j%MOh6CYDnMa7<u;*<a4pGiLPCrf@#dN)B1fg^^!oczkf?<K@H
zl=GU@PLm%=PVo4e@^Qp2nsi3I?TK$qd}m^}i9II1H}Qjsm%b`<?CUb+yNd27<9!XW
zmql5k-{tr&PmCTYem1es#7PsU=sQKkFD4F}IK&u2?=!KV?nVx2@z}gX^X|eZD_Dp4
zVOlI5*~H&e8GA*qu@isLn;MEORwCz-Zl&V68+vE|$=K3GEE*?{@e;$taTDF`MAn$n
zC&vjQC*&#rEqmI;8OCRZDGUE_TqgcCamB<r6X#7_q|Fl!6m42%U7&KW#<%wp`vUP*
z|7_wX7RN4|Xm~X~yRNuu;u`I|ytrZFx~xh3KiPIbC@MP%GFjU{`^)~>U)bU{3k56`
zv?52o-HP5k&9cx>5qr<Yn|Fye0`aeEg)DqiS^V&E><$Y>EiAC`hJ|7lid*Pxp^JqQ
z7P2i=u~5}QNelcpbOj3?vPCHir7h%0N;wO?%ZM^;elrdWWi7tcBPO1X^98yWDv0v3
z4vTVLOWbKi0l%V!yR0Za-)&)RFHzY-B`b=?ZyJI`BKKGz&YIOMRJYK?!p+=>VGRqy
zLc&5#3-?;6Wg)-3V3+Dxs4cJZdu36okBD1fW#TN#wfMjijVv^_aR0rcu7&y*8d#`j
z;qOj@$BH$nh88|vlWJXE=*7f=VTmFm`*hr$L*zYGBxSXI6-2&;rWTr6Xl~&?3+*hl
zu+Y-Nqg(UZSZKvjkLr?%iPjd%C2~9d-F4^9_{Ddd4~&Vn7JgcjI=d#tn(Zxgw9v@{
z=^ZR|4Frj-R%C6eKnqcFOY^Q4x>*=w;b9BiE%dO!?Nw<DJuURIFo>rVwH3{FII-!^
zp4^Q0vCx-lwZPkY^}7Y9L)Au!0TxoSbRb7<ft4$b7KO)0v!hF<;N4`1g<)27f8jAy
zB8hA9;r~O<j47>HP%UT{bPIun(1OA7c8ysUY}qT*!i)}L?SFB{f@{IE;L}Lz3C|Np
z9!hM^6}BnXZcA3V5%1M7H)COhg@-JRvhV;+@k)H8g$Jqk{$krld1Ug<_4o__#r?T`
zMq41#scS5~BzDJ*_?#hPtc6D`j5{8GnbIc0>spv;VZ4P2WM$!Ts-vWsXkoHMIDwgD
z;r$NcuL**2GW%4CDHfiv@T7&OEKId9&BAmGn@WiB+w<m5>hnj>D1;7sK1s^cl0%cV
zDYkmGqNuhu^$hK;u$XJ%ISaEaJZoV#WinpOp<5-zgcZqt6U4%5(M;@lS@T5;OHY(|
zL6#P)DC}30FIjlKujsx#x#ME|6$|s^SYEa8nnXV68Dp4w-NJl%dfVV^#<8wLN-m@e
z(86uhwz0^<VhexK6fG<ve+%0zY`3t?!g34mTG(P?g@u)LE(;r3VQt<j3u`Q_wXm8O
z>X%)%hM@6xIu~DOVZDV77Orf}BeD0|)Yh=m-L0e2O?1iDf^9d`M_y09E&YYamWRbV
z7QgG*z1XZi?@8ucWrg=;1vVrrYi)|mKd|tjh20kR&>Ag#WZ_E-U(vbf-4;Hz@R@~4
zYg461Cz@Z5KixaVmqtJ5{GUU+5+~kgMUs%EJ1u<8xWouEI(kKJ7u~$I7~HEn=l_J?
z($g8)jz>*+O8C8nA1oZOaL~eD3qM-eXW<w69fR0E@t<kEZN#%rc6)FEpKK<Gkoc>G
z-z@BBAj%OWk}|7S6IM8NTR!na7LHgrYT>X2OzKl7SG>G7Mf&d+{;=>TEumJE!=t-Q
z=`C8lmZ)(yPI%11amGU%Wo(?VaMHr<HnMD-vT)kMB@34=oMG^{aNfcN3v6{(cJCaO
zTQB!kugH*`S#*(>_GCBqjhz3bvMk(S47707!Zi!mE&Ru*_)79ton}ICfNXW4kzkXU
zjawtS&5k&;+x=fla9jm!6tq#oMz)PYHVWG)%9=Kc*m$UmxVKB}4ja9yiYAxh)Q+Vk
zRu&b7YsHqnlqfFgq?EML{ZhQNJS}D8r7Q7qm;PVPr!L1~qpXdpHmcbuXQRB0du-hO
zNp=MrciOm%xQ(B_DpO)<=|pEy(MC;2n5o2#5~7lg$~MN-%O$0B&+e7ViLvEG6<LA!
zog)*~ZG3$tey<JQookS8qhoRL<y%SKsn>QBQ)^@qsbeE<W0Z~2HiV6YjjlGj*~qoI
zJq7pKXlJ9Yje0hk+Gu8@zKsSp8rw*+W9Q=|2gMrNXk_E(I>LNZEEp-?zE?bWHr~WW
zJ{g`YG3;D?Nk)ivV%^$Qa~mye^#3-em5o7568sMQwLzk#jn*+ysjX;jqm7M{F~P6o
zwY70!wBSM9?<?Bd*n2tNNx}{sg+xf1HBfM+(AkdG3tc26rMrzDHip<3YNMwe-C_IM
z=ttpGapgsC8-1wIwaF^~#;14a#d~FcNl)1rXk!4oU0!JA1ZThZ+u*Hmkd47M-d&SS
zmJ|GO81Ia1NIt`C47Xw1aBQS)C^j@3x{bd_2-U`ehYF26RLIz#_vzY{VPnq8xM{<p
zk^AD2<;gociQkUL8=Z_lohMuyo{bSUC&Tb<1U5n&8Of)wBUtmk6LB6yUcOCCs3}I;
z7&)QjgS0&xJmn>>-Y43(6XZ4`H+PJUhiyD<V}^~fHXgAtjaR=Ef7He}8xw6zvZLkU
zc(#>D6+gz)#mgc%SyCRiF~!DX65r9X38$$ndP1H~wfP2?xG+Ev9@>~U-Hz^$PfGs$
z&(u>kUM(P)WSD8=8P>G%x{X;jp0)9^jaO{UW=$LW{)@k0<An)gu8rqxJTGw+7WZF_
z=X4NLf`nO9yhtCR46n!kYcJAQ<25p39*yuqgpl&8WI}|j=G*wLxcGHbiH}aiD-X?@
zUPdgm@g^O|MMW2j=*aAhgINxi*jP%sgNhE8*;sDlh>fE*R@hi+<0D$;onn=Z)i$=$
z+KY)bHrCqMXk(L&bu{}y*?gB|gN^kxlF^Ap4@7Smk@6PD^+19P|F_AroOp+(Lb2FU
z_JGw`VT+CT<mvmAMpv=5vnX0kyfq|hLJr$(Y`6KhL40WAmM(G=xu+Xt?Vx0i$N3=_
z!jElyV&hXLe>hkhyKQ`K;|m)*>D@M%VffO<S2i|O7t9+_dNbGNQC7QT(Kj}}l|_`*
z!L_NDO$DndLlb*!e9x#tx3%#Dy~zd}{wQnKS(0F0qMY4n!KwJ?u~z#eA714bhJp^_
z>rshcWo5GZ%?9Cq8wVtEP(o4;**N?^yyl3+?>7Fh@vn_5HvY7uxzkC8cN>3^UReBX
z<Cu-(l72!$F4A|@5IkaK#c3O7Y@D-k-o`)F$ba!Ca|Ne%XX$j!v+gbs&7*i+uyIM2
zUbLa+h^F-fp|T`)na+DXesq1_RU6kBv>g<8aNWj#HVQZ>=-`Hpn|8FQzum#gZ*yW!
zv<AP;;rAG$mFe*=(Xy13EC<g|67QFaP766G?4XE)_q-U3?r`w&BvI7C>18oCxx6;D
zbC5VXNR)7p?VyYUIQVjXUP%X~9q`}Tr5va&MCo;@5@SRTS@p^O;!ND_BX%|uWgV1v
zz|)ea;^iDnxmT=`cm)Ta)DkTXahHR;9Sm|X*g+)+l^rA<G;wf`gDMV$gM@>s4yth!
z*W-1ZXu4S4!MzSBt{M(+985bzk|CX9tmUA#q;THIQx<&@ia0wE3Q}?%zMF~$4jPi1
zgJaj?^_?gQ^VGF?J&7C`EpF>1n73)<fW!f=INT%F*a2b9i*Zu&9W-^&*+CZv%^Wm$
z(AL3y4q7;9=|sz!HV#@j;6J->hiL6!Uejn5L-<}RLE_&9OSa?auEaYy=*V8#qCI8a
zN^m*$P+YW($2!TjOs9}lR|nl3^mfq4iB@^t>El=9J*k3&WqLR`_<oY7y&UY8i$UUj
z9rSZBz(GpZ?@tN$&u;1@*tXV=<Un>Zj24pjJJ_%#`CWN&R|UaVLmUjHUMT!>Vwi*B
z4n{h7&_UXP;=rOXsaz+rQq6%bkzMy^8xk=kWYL@&qQdn!wct2#9fS@t4m?@vOO;VO
zls{p>3-ynb#nTb8!UIyXTq(T%XqR2x#X}B8IT-I?f`icx#yEJy!J`~nuk5!fiiaJH
zb@2PCIPs=+M742Z95qr$OgtaGg}1Vi;O%>&gGn@u2V##?BNd~f$?OBAJ+=!^H&+uM
zoQ*%6jA}mNV5-A>0;W57+QAG5oM1djgZw0$vyrFhSw)3YUJz0^m+ufWrIa>ZEBM>$
z<g*TD(`Foe<6w@1xel_r$3AoL9NmiJa<I<93l3g%u$Y0`!AlNac5os~yy@T-8is=f
z4)}eHR~@`YeL0x#fB~PG1Rf>gg13MU5JWDHOuRt}6cY>SN)Y8s3c^KXGPlo(GNRr9
zv6P14V6}ra4wh3{T}6>yIV&BkpwKFH9gv$#xXR%N90U)>bB1Upaz9xd<05fAjlscY
z2k%f;4h|F%Z%asIqeM25^X5FBwjCUMuA6w5d>nk>;6vK2gZCY5qXg=UtrYLB9HzOL
z4MQ){`o-jSNw2;zu@Pbihvwi@NntYZV_GJSq+2#)3r{x<77R_Si9btxPCkq+4!)w-
z4~;d=5=<NJq^p(^UrV^ROO#0bu36T%4!(2nH;E3~G!(lX{OaI0h9d{x%M1PB;712P
zIoQj{_HUG7dpZ&OSr!rhg+X9Z);<~N81YD{e5lZVUj0n`0G*2wW{jA(K6!|~@8C~H
z6~EIF#>2+qD9w)&I2-SrBlK>9Mzy@L_(M`^P7;67XG>&NZ6f;V;yBgKXzbvogOd(U
zIrxWBi%jG|R^*5->r!VNwC^J7u1j%T=V%WOv~{WL4lX#j=-^)mR~#^MUUIPiQv5RI
zwmpwMWL#zUh+LI{_ZoFQG{IBRK+HT7XJr1*!74lPXV(~mPt3&~E{eLi&Bg65vfL;O
zTF^xy7X{oX)56>-qfKFn7jdIh4DaJL`$U<4=0%ISQKGE0iyRllU6gQ<?V_Y4mU1CZ
z#97*5L-OHusa@|h=bXHZ3%DrfqP&Y^17r2t3(n8Wx=~hb;;YRoxZo^(LN~GT)dUf?
zy^B|LvB|~TE-JaG?4rMm0WR)wQN=}97u{S`by3YlGZ)QWRCiIsMMD?kYKfXI?sbvp
zqOJ=rsB5{1vr8^&yQt&hAzwT<Q80NvuB{l-E0%DP>ms-ue`Az5Yzx+(u`X3lHYDD_
zMST}*MkZJ^XGDSxryeWO$VFo}TG}UF<hw`=%wBt&XySs&lUq+-n!0f6=91XLMN1c*
zDch!^m5Yv*L_0UijJ0;r#zk96>2|xg&qeQwf)h*5y31vY_N?QgNEy-5jnbQ)T)3^p
zqEcd8w&>kjbh*VXH%6Y_UA|5wdh!zg#Cu3wYm-GvFEV7uzR2#w$}ZkZ2)-yfZck1>
ziSxA8sd&o8Ko?KDnBn4n7bh>rH5a;zK`sWn7~<mhf`Y{1E{3{TI$H2_m?WNUBGN7t
z7uvvVR#08c>>VNerHJ9ebTQt=1Q(VI+r>y14^kQ&f{V~ahL`9jJQqG?PMeu5=oDv0
zMa!se$tWf>6pwJRXIJS5+{l|gY%Fet^oLxGa`A|ZM_r6|F~-HiF2=f%>lL`!iVew@
ztg`D1@~pQY$yPNR<c@RsjkPQ?`K?j3oSEq22^UjcOmZ>V#bYiWcQM6{GM4AciOR1e
zuO4kl{EjfHJk7;)H%eDN<>E;<$`*1d^vjaiwDOT(@bva6C1=tMT)f7sxR~YQSr;$3
zxL8Zfb}`4rbJWPc@wvBTJ1~1z@93bQNPPZ(#24u`EyYVNUUu<{i+L_ym6R|`WGlid
zBWj$APiZRVkLog?opG_s#cCICxcIQ8SnOhni+xG4(8Zfv0#IuYh~W<k7VSG3U+Q9+
z^v9Jhmb<t<JaVfQl5%)cvSR}=a#7;wz!-_VQLd3Dw4QEAmE}j2b#8P6CBDJMTP`-r
z3QQ3!UKeFKh-`N8j*C-Nfs1!tY;p0Ui=SvACB%C!K6mkji}zh@b+OIGb{8MH_?Wg)
zLVQ5yq8pYJ#6NT~?e*S74!)Aul_x%N@hQE&g!qig{UC4G!#$XP>-%X}-kz#GnE2Ag
zS1xwb$B)N%%Km&!Rs*8UO#jcz>~isqi*IG{A@Ms#i8JwTeWS@_ks)G_i|<|hAlvSh
zu=$V#Gif&lWs@6kWIwz3lj1!d-{;~N7r(mr&BYNHN8RZ5x8KD<7l(+`_N>H0E3r3U
z9CmT%rsR*uOT=D}D7+8;E-U{*@4FIzKTJHBC)jr9s|m9GOEUkP(a*(k7bh51&c{!(
zOWTv2{NH`7Ye6+ix}I_IkBhP%%6T~J;vA#2hoT-hYd!Dcl8ehOF3=!zqa^A@8kiT&
zn*Mch#l?RvZt&7&#8n3N^5PnU^J@trJgzgsH;U}`ri++|f*uNaxXr`u9<n?X@UT&d
zlIKjtvoaxFK*V#`ew<g>LlF;6N{eEzm7-HHOTcOajYQ2MqL_!09!h!qVzVeNVF?Md
zJzSpIhs4qzxO6?VGlxs691mqY`0wS9Yn#O-8~C{YVw|VtJyh^e+d~~M$}HXK;cgF=
zJXDmYcS%V4ycd#{J>26V-x9Sv{-7LHc`Xn3dXaXjd8qE81_yFHPK^}oFJ@Sg@INja
z$-mFA($ol%#|tq<FXA4Aho)YXT2FY$^^o+yRD7O?x*i&Oxb}#cSWndRP~SrX50exz
zEfyu=jS8af(5R@9hsG=&EykUUlV|nZ+$NF(ndE!u(L#^|nK$#$+(QcwEj_f7muv0e
zV8y5#<jG7vp9QemeID9z6afwfXz!tehc!Od`snDPlZRa%zVXo6Ll+NYJv>4_9=drL
z=3%&p?!25AeMNa72h~vY^w7`41g6vFX>SjGJUksH`g%C>dV&+AHP0nkt-q`@z(a}>
z`zL<&M!ZM&7+a0b7WaD~9OPlJhanyq>-f30q0&5_9NCfSAR1fRgX_`opm<O{XdZMT
zIl}Uy<$&SA^rD3oSEE|XEE?)x_X^uX&We~Lt1+3+%DxvZi!vTY(7HJP_Yks`EiUxU
zCj9|k@zbuO*cmU{%Q4c!gB~8DZ8Q@fbd3@(>ne*eUX%*ExhLmg57u`%#Cg27E9X%U
z<2)?#u-L<Rj?}}m9%g%(NI$w1C-bMMQxB6pJm%qX4^McQDvPe1EWrv>JOuAFXUcJQ
zDlyH&bh@4wP53*G>cZ01Q~PXPm*OhmX%90z%#@>;B_UU8&&aVnRVsQ)-lA^S91n9n
zEbzeD?{glW_wbsB*FC)8;YAPgJS^!Rd&$Gg9$xV<v<r6vCm8LSKzp^I_+?#+VL!qt
znJm%!Xv_KZ*%h%WO-0q?B`yw2@Chu(@`k+hLhhX5qcI8j!|o*>mU{Tm!wwJ2JS_L{
zwuj9gR(M$HVZ8@ha-+Q5RUTH;*l4<nXxJ#XTek?V^{|d!&?t9y<LH$4<qf<9)!|{2
z$B*D8DhWY5CkH;C8hbAOj)!+;e0ZORT3_68s1V^6)`xhHhFwkY!S_}V+j!A#+1u&A
z<;4dcGNnaTT|8wZ7*am+qM76utib#ahv4B;;$_7J&I4spy(U>h?oWJ94Zhl(Q^YSl
zFah|LhsrI)P7hzR^7gz$W5L{DrIYb*J$y$eqWk#R?O_jf=c9y=?>+qB;ev;Y9`<_p
z(ZgXng@>O!{7gggu%F_pA=*D8_IdclL$T9QW`+UzSE{Uhl%k<+AE3=#i65l3bj`l?
zVCxXW*YzkZbJWA{9!_~U?com(e|k9P;kbvt7|n$ETgHc4F+ukqm@kM-S)4c_qrpiJ
zJY`IX<oQPOjE8?bobzzri`Fln_066&Mx5msD@4+!<lo$tLndp6l(@u8loD4wTxGmv
z?79%|HZ<|CjDbv!UGs3AxQ~K9{_}9dL(Io*K67i)!k-KLn+zZeqPLYV4UXOJM`O(L
z@nf5)DDR=f20c+o5{vk_!^gQD$-+KZnYn^L6In%l6!XEPLHUWI^3^y~Kz#0;?W3fR
zN<J$4DCI}@=sSH>^ikSJj?Zi`;G>+Rm)>25r98^|;3N3`rYP^Dg2XSKjCXGv>2b`4
zByE5b=DU2{?MJcV@`way&iD9C9wOIAo{y?Ns`;qnBkuDr(x~C%ULUo5Y}`|3{hl&4
zNq3_=FEcr{{V1!$gJ~SXiEd(8JSHSD;p4rMZJxRoZ-0;<mTz6xM?D|Sd^Gn_-$w%<
zjeIorF|~&{wII=uojD(8{-3G-q>m;(@_jUwrA+2C!~bRNCU092^6;cS1F{7FjMKtL
zYo8m0(9(~7okNFeC7BR!>*GEj?R>QNajm-;pAuxUJ{8re@n(`tjPvnMK05oD?Bg*X
zU3_%)k@lhZ=;oulA1&Di`{?1Lr;q-A<VU@H^rj@KouugFqZOA4K2m4nor*=%Ldu+w
z_^z(80i^rr^ip!5kNbTLk~p32`l3kkZw(i<?@tWzG1QNyzJrFB9Oh%V4+cig5O~bJ
zQ>Z>P9}m+oeCR$59~mDbe3(8gAFdD22NQ`l_0=@X@uT>_jX+Exa&<qfm+*ZAK0?C5
z5plRCCKZXo1(S*o_!#M9v~2RA&m|j1QBc(ccQ`Pauy0bdFlT0f$u8z9$M_&OGI_+u
zqwK95`#2wbILl+aAI&GX94a)kw3y)IljCttH7AjOuAo@n8zmn1F~!HrK3?(hgdg1y
zpYbt^I`uKl$8;Z0`k28Hy_^`5E1vT4w9k!~WjNE=^lzM%31|8^TS4$Px~aE#R!V!W
zkLP^MmiQbW#UB!kC%oMAK3<^Jl@c%c;L@IJ{1<5z^#u<u{D1D9&7yhid1NqRsgKv_
zgMRebYl)BfJ{FKwQSqh^=Ahn?a3O_XE_z1Rb!37MZWj4iEOo?cn>vY-j$m8j%X}>N
zu_ChS*eai26p8q+B<IGW<=x_os$#8^U{Q~BlXX7UbFcyI02}Cc44wh918k%ief;I)
zZy#^_*v$SjT=;m$$GeQQKKA(7LRa$fxsNZXcOP4Q?C|lCk8M7-`}n}ehdy6<7GG2p
zgR2QXPi$``zOF7fyYs4xkEt3)C)%*jKiwp9T8Wzt#NX{Bm{nCQd?ae}rH`+CeC=bG
zAI%kaGNgQ8W=BrceC?(9H$Hau6yN&zPL__VAo^OONNz4Uu=4kQ^wfZJ&L61U3vnV#
z{whJp!19xi13nJ=_?edD;};*?^zxe@ZHf7ne%CWf(lWQk$;o~n^U6efV-EQ^%xbwY
zrc;jiI7%hb!42`|Kc#>7@rRFFDHkSWn0T2mD$01XCSCHFk2600@p0V83F)vWeVp=f
znqK^GoPPKDZ-wZ^e3bdECeAYO`nWxawiTWCae<okanr{|AD4Vw@o|-Y*GydY@h|<i
zclM>;;(YlYHSQNv#|eI?`kIgH4E}7`Su`snI4vo1r<m?`;!>B->-l7VSzQqea9aSL
z^7wR4pR51{0u&5TC_vEw#R3!#(5!oQkpOoDI4hTaMg7FCk%DWk7czC}1@4}l;sHkP
z$sxsV-@RmjQUTfoXd9q(fSe$D2G=M+nE(iISAe^NXyRQqK)C?rCH~=_oC-m-i8R`Q
z)>YgYpke^-JAJgP_;+=C%D+;8$^mKzs1x9x096814^SgO)d0&D6<}JvT7WUdqx}4|
z5fQ9OiT#yxZ-81sG(~*6iy(bzbJ4H1`0so?9zX=B8=zi*M1b4?t;Uzm3*fn8)QAMP
zVjjH_r(fuAB<cs?w#)_r8uD7T1#uE@@p<!Hym5eJfF=R*1GEUxGC<P+6&@5EZ}TA9
zecDWpo$Kx|R<|dyRe&N!86uS%WVH^^xxHw<Imy%e0<;S-D8OLO{{wUg&?OQJI&zrw
z%`@>%5@Ai^odX!nv$*@QTY&BX`UdD1;LGu)dj#ms;S?4<1M~{OJ;2-*{8j-msE6ni
zfLST-GhxE2T_Mpwz<>a$Aj)4o^?CN1)?#3Qr}D-9w1jSgX)Ds%c1VDs0kj}`(#J{K
zFxo?Tkq$6Cz?4L6SV_SpA@2(cuUkf_0eCy$GDHvXMQ*Mkp(!CxxoOi0;0Aazz#_^y
zfFEFNfJXuZ6k3*ekm?Q)2FL{90|?&zM+DKjzR3F20|EBmAx28rs*e~&CVnK7{@e11
zjFzWk0z51c+JBYxsYj{Yvf_yVQv-|(Fh0P9AiDKTmT;nklY;0;7H>wJrangbu&Wme
zUjC@t6j{pq3-2}40!$C^Qh=8OJV_A+m>pnFfTt;5N-w~y05_|NZiBLC26*(9<njlj
zNp*TqHfPSy$|9C>YE3vdz;gkfr>q8L7f1@$c_F}y^tGg5Lqg89S?!eo^8&mY;I#mI
ze<*Z#h?rIdJYEklKfpp-V_&g=>KiBC2=LQ55sValMhb2nWa9Ca-r3)8%3B;@Nq}tu
zwg=#%b!mWi>D_b_>M_8I04oE$#b6#_Re;q2)&*EEt#l2e{T*U$fNL@F<%Ve21RscR
zkVG0@?!7UVvS?F)w`Kj!|1)Nm(v0s-X1&AC7ZI^d$q(ztn0R?Fz=B-yzJx@!(!uNI
z7CaySAi#$Kb_du)6$khzz*hmTzMA+rz$erKJD)8+4e&~`2lJnw1yMGs%(pq8^KxYb
zGo^%I2KeJP!Hg&;hdb#7m*QUs*hR(BiYke3X+n%Y4aLumMRI+rb_da`Zf?d%d>`Nk
zdL;*bJkHJkdjtH;ffS7P!u?2L2GR5VmkULwEZrAi=cD4606ktw@<D%FRs1F!?x#tF
zF>*K*;4ouR230crTNaMeb3=3p@jLq#phSr55Pt^vE5LsNZUp!{z%d4#D$y2>;{i?t
zxD?=WfRl`?dAaB4?|$M`fYSla1Sq~N`459FFR>$!xh7^amempO4eCz%d0F#9fQu4Y
zs`mO?G-O*Q75}9esXqGGzws*^X-#pUYLq*@&X9XP&Qu;DQ=>Q8lWXxpAs<_dScuXi
zJKh%J_7ENU<Ts2qv=<1$DS=Z^u&7{&r>luUO+;Z?zetEXLKF>AECe&*#Y22pyU(q}
z_|wNq<n7GaaWP&pM5z#!LR2R6Fj`Vo2%(&b*MBLQ6QWEAgeWWN<wBGXG4abX%z#~P
zp2eEqx6Gn!S^3To6+_$=;%?b?;6sAXk%PMhvw8P~s1l-nhz235hTP*Ma@p<U@oFKe
zho}*vW{BD$>V&vg(pgk1L^s}l<vzx}FDK(6M2LiJJ6}&c+d%Nq{Q59j;?3Wh%#*F^
zN~l&5^+H_gA()zL7@|>#<{_V!qH!24mzsppgI6L+d3vUMEI&lk5aUmkA)QCFF!~B8
zS4_Ng%Mh(Yv<cDbf4wUCXkT8jZHW6qw39>*{~4JK<e-=#=@_C@i1$Nm4beG7mk?t^
zJQAWShZ7=A$%N=0qDP3KA%=yRc|G1UM86RIL-Y#KJ4Bz5A2Lnw=o_M1p4ho8Nu0Yb
z2ZTt47!+bK<=-Vntqlxue~8a&ir{iQUR^wTpBNHG&qS!)Ed#SR-)J?jx8U|mu5+1h
z93DnlN8)M-Ekq{7h!A=RgY*!72s4C5ML5D`&p9gy;ZT)JVxn>G4JDs>m48}`g{okM
zAVkPZ56FJ&M!b3$O)5wX+lU83jO39JV?sPAkzX@nREUQ{@RPjU+RE2<Mu$;qhz?ut
zz6d@X;^F4v{O8$^h8P!OQHaIVMTiL@W`%f`BMmVr#MBVeLQIz0e>}t#Df!1Z_Q~S0
zv4WC+eNgNPX`i(hC-@r0^bk){w$g-n`V>7P#Eg*NZ;=M0CukmbC<&%;pP^ChDMX9n
z)9TqF=7e}T<mcBgHw4!O&xd${Uc;VbqQ4Lh4@8UZu@^(U6k_;4(L?Hu4<$zZ6KCnX
z5U<jrLd*~Gnymj=&+LLikO`L<3qrgRVqu6k*)R~K_gSCf>Vpl*r}^0^o3|vy(hw^-
zG@57_rRJEmST2!OBTBCz(n#>|*QZv8Si|mxcss<}5bMI|{`;0R?Df)mH%Oc-GTJj&
zXB(xd-^smU<s+-!9OB&&TWFkB#5*Cj<qPL@{INY{-V39&HY+r&5LMe2Vta@`7!s*I
z28|HEQAfw)J3@RE;_DE*LVV1?QeJ!(;`0!nP+6zrpGwFKBxf35$WqQjz6zsU^q1^&
zCviRyJHu!R%x5&5etZ+++Ymp7_=%$ku{*>bS_u8_wNl)RGO$J#ADD9H@Ix5wQP~@U
zb8^2<G&ASCokc%~_(c{G-xs3&81cmV6d$MlO6#4U<Q;8)hy!7ie?AySuWlWo!B-H6
z7#Jl&oJB`v(eE67^XQcKqrXD@9U?1(0vQ|&aXiH35dVfz_WMML(;?1;(Zb|ph*OeS
zZd)?7IPp)2vmq`}(OKf0q;sFrdAj_CC};kdCs^$wLleanYqhM3*uOQ8HLrxYDl5k_
z5&vs6@(?#dT$e;rxMArgqfLis9W?cL3BHHLtP%0sGPqqfnYS>(SFs9aP$+})8C1xi
za0W#($jP8g26tpoG=mZuWM@z;gL_|16qm4!$n9$;c>24@Etx^74C*w<DxKlmoe36|
zdN+C2ND%T~j10<VP%abA60KFGIgjN;uHZL0M0(b4!W8|T8Qhh@-I*v|Us1vfOOur{
z=+|8wI$okO`&mgavCqdVeA-eqgK8P<%ixy`s%KCm13!ZxgPQDB1|2i#l!^8Y*2<u1
z2HY=Kn;pv_o`J}qeg+LPNMw+kLETKWYcY?fjm4HlrHQ}(Z?qAyUItaa&LNR|4jX3B
zD1&4MO=RW98C*+cSIxwFJ(o0&$EOa9@j`5vp8+>LvU#%%nrF}=gO(X|$bjqIRvEO;
z;JysnW$<Tbw4uN=81Q7tTT5WBRk<R5=|Ul%cG_L0eFo3HkvKazanHyYDV;Oul0lyg
z`ex8IgN^ry9+_x+cDD@ne$=Hqhj1azZEu77WRuua7WK+t88>fdFlBy{E4zLf^v^)e
zK;uO-NM-mBYcVXt_hoQ@27@yglEENJq^HmQtqgBl+z7-yMME=DOsKH447UvN&5_}>
z4L$<MK*?|mP=Z^AGEPTU)-y0N(QVO@(9FP++(=>c_@|$+B_Hlea{ov7GT1**<i3{-
zX(}9V2G3_OB7+C0wG1X^FfxM&If|>%F7Agi7?r`JnP|Q@IukAbAI@NG24g6Y0g10}
zi-PJSlAc{F#?mJm<T8ygE`#wI<X06ft2gAq$ElMtn4G~h+Cv79v8c6p{Qrph4rnQg
zrtO7GhI>hm2?Uhv_TEc$NfJd6xMWx|B028lJiC|^W<>;4Bq^Ze_yQ`5m=i|K7!U=?
ziYSKv>Gt#d=gjF-Qyr#5bxn75RkaEUd@*R~%~{;SdQuC0tW+Amm3^)h&hN-drZF#z
zyV+xwxRbz%<Xxn_X{nt%I+0`ClO<!v{aM`09$udzyP%ecQJi={rF<|e^)9%8d1Y0a
z>TUD0cqEJUS!~E+K^Bi@u{w)2SuD(AQ5H{Tu{4Xt9A${d*qNMw=aSTl;p-DwEKzt$
z$!;Alg=VRNVp$f;*-Kfh%3?(pE3<ftlsr&wVJLhfK&vr6KkZ2~<j#nKrbk8<KEv*9
zFV-^GK=CX;YW1Pik(hM~!*doIQf<s)Qx-2}v6mmsVoMg!W$}C#TeH}f#s9L{nZ@=j
zc91!UVlK1E1gbAj&23Zs(DCFh@`079(Kl4zokfH7B~50^b$BN`bzpMp1r@a?i!$%j
zYF1agsJH>MkSDyH#l9@w<q%}?N*1qX@kSPJG688OQG*=jb<XaYf{Eu?f**Y=i?_3Q
zCyQIhml8w%!$N+Y(VJ1->WckYyw3@e#m8BEkfnuh>O;0@Qf*d)u~WB|uwtL6ud^Bl
zIAQG+3t_TRN0Xmt@dbNcLuCzLk`ZN*(B$#r*I69Q;#ab%TH+fL`N+hNWbE7pu!dQD
zpOqFvKV)&3JhPHGl*OEiVo^mw<Dhht#1Njp@2P%-Ozh9(u`G^faa6%SbKEP5HseM0
zD~nHLagtn@X1^?u#%o(jPGxbLZ1Y-q^7Yyn!F}H^q~Y#q3WW&&QzXu2@mm(>IP0_c
zBa6SX_?z4*i$B>j<;D7g9l5Nc{y(h-Xb!+?|D!5T8v!Eu%Gfd*%4%|{R-nRi8p<o6
zf+o!(Dr(Xafd&pVC0Mi}Q$<5n4VP<Zs7a-fY8o!maIuC$4MiHNYp9_C8ZOXKQ$sBc
zwKc5ZzF@TQ-mXOvC?(Qey9k;O5J_Ey3z=oKponHq3vr1iSMv2VtlyBSqu{zKB=S-P
ztSc$5ugPB<p9UIIEyQJ-v>oPaBUVzw01X2*G||vh!wvOCsfK16nrrBx;c5+6Xh>>O
zrMbHX!R(q;ihF!TqFBS;OGIf~(N+TuMN2faP(Vu+64OdUYX!IY4@1SjD>bAwFjqSj
zUZtVE0y?OW_>LMn{RcCB=l|d?8oDaDn+h4l#H`7j6^Wi2u3^t>=%b;RsvhyZHK})9
zbA;5grfyzeg}=YE=%?C3_3R!_DJ$7uL&d%cKAhl#Gz``-R>L?=iZO>UrG|`#p_)8N
zp(JydCQn@t3Nb>%NDX5&%zeA&C=H`EDd8tfxiQZ=SvN|L`4B%|!*v=aYM7*fLe~lG
z>dU26mO|I-nXw@)s>EasQ&^30;^Q03P3|Rkpi?!xwITCoeF@LdFjK<=E*^9-OT%mp
zXH5KJVvdF^NyR{I1DXb1Lth>JbQl^;4IgXxM1!Tl*6@UeB^n$Ju7=w++@Z<8gQp?Z
zkkjC62sChY8fsL>O+^}LEXf4Jx)t!Bm1i3@+@eYG?+qGm)NqrAn>A2qGo)>G3Thf{
zE8^+r{Eupn8&$;lb*qNk*e;6Q<_PK-a}|B3hPyPp-%~8mFi*qXBnD0#Wr2Q=hWj{7
zEL_9)0|YhOJ5`pFK$;sopy5Fco$HI5%ThEbpqBf?8s=+wM3Z{&x3n%`GMX5yy+HhY
zI{B!Eg&G!VSgheOjp9d8r<96bOP8nWKbc|zYH{!w`biB-HSE-|i}bHyIh#XsKTb3a
zD>bauuuj8M<X8J^t<tcXy~HnGEGQqFc8OTSsifgq4U_{@R!lsfU#^vsVG51cYuKP+
zt44dV)J9T^hRqtbXm~ynG;8HUi4&uikuAiMBN4M>P|<b`J2>yAi~ngD@kqMETeZ5K
zD}Ojyyj#O_8eY}#8cWc?W9vP9HBv8-{LUm_=`L#AQ~gD{fZznw@Un(|8eU=Ln~RHf
zm%L<3kp&Zz^%2u460d7`L&G~7-X*nE5^s{U6hQ9!p(V~vto=5N8kZu=eUFrLD*3*K
z4>as&SM(LMyP?g_hYHW5w~yGyrm}pVvhg_YfQC=WvUFUi<1-DPYxqOMd3HXTzlI|k
zj%xTy!`B>K4Tm%w)bI_RS6n2%B^!Jy!Sk1`Ri!fUcbe2OU_WrwxMcl7!(okPGIIIa
zm^ut4Vp{*iPn<;k6Gf#`N9AV?$2bc#{Gv&*%yA7THJs9LLcPvzE_zUOpD8*`vL9EI
zr;~hc9xZ;=a8|?bibW@1EBcMC?kdiazZDBIe5&>lpuQjF_J3;li@z`(RdoEV;U5iU
zbd=RWkvmVN-wQ-Sm(uuO4i^^aD5qo1&&i59%Ilbx6BTqkKB(ya>r!3Dl;(Dp(0;j+
zE~(<h+2Y95R8<|-bkx=*6QC%&P)BtgHFPQBF4E;eB>!j>7}jL56u9Y9u2@)Ey#9D9
zUqv3rKu42gf@`^pbX=^Xy^an#F40j(#}zt~I_m1UR7WFS>f2L&tDcSqIxf>uUzd{M
zeaq7aJBsY9MT9Tc(NL%BMY)yZM(_8IqA?5C(NxEKgGDnP%@x3t-^TR?wa!=|VWA_X
zqlJ!^I*QrSi$sZzLmM(}M<=-4CDS0#N=IuQSL#UXXrtrRjA*N)dqt^Uej+VyFA#U1
zO4jNxU)$-p>ZjU-?{h>)9i5m=M-L)(xx1%WzN?PT3htuIvqEm$D|8iIMih0^F?~tm
z$`M6Z>*%S2l+4w_H99!Idh57Wm$u}+bY3ZvqBMA3|HQ&G$v$cnxDsGgsgC|S-qG={
zjsYAC9Sd|ks$-Cj!8%+Wo{k|phU%E4W3rB6I)<|vI<C`^(J_JzpOPA*OS|%sI!5Uj
zt)mZjwIk)jy?oR5;{1lpSRLbZ$!WQrXZXqpsU<r>$Mw1t15!+MbU+a?6V+>RJuyYc
zR2?QiJylF&19i;SF-K9t3>`Cd%;LyCoo@AH`p5C9lP{Fi+nAX+E0xuu=~z@M3?024
z!C0MSFuIgaQGp<)V;N!Tuyr`>!xfTvcs|Ha?CvRi9f6M9blk2Z)Dh{pLC1|cVpjVy
zk=HSoG<mpljzo2tXq=ViRJ6k)ptTV<v4+Q!x2Oi*tfOr?K|Keyk-)8rF#aej?jRkK
z#&q1L<1QWZbljte{B9La)T9<A^_Hh^NH?MFQYCS}jt6u+tYf~82UQv(AJW0Ib!<&j
zNdEay@rc6zyjte{dqtXl4;HfdI#%getz)r{$8;>w@g(cO$=gb5yz|KT33hu~!H2K>
z=PuQ;LdQy7ZZMbWSkBo|OYn@926X&$J;g@pIP+I>=g6Wa{fh|Hf2;Ny9nX-2bnMje
ztd6xhHtE=`W8HuC+@OH<B$x}NKK4cy{<~D?<^d(cEh=`qj;%Vj>G<Q(6dOga2vq0Z
zp`w~p5q#aHW4Df%bnN9ol#1s#xHF6P=y+bo3!GDJidW9*{lxU%|FYi~bzY$>sABQ5
zj(s{_*YO66;*8Vr8ac!Clyr2kD?MbC7_c(USMFloWUX|(O$xbKM$s9<8#7WQ&Lxke
zNzCu**w5b9@t2PGb$p=XJ00Ka_)y13I=<zE>MTCi@d*Jvbx_9vPCXr8k;%}rjgHTC
ze4*n@j(A_W=%Qr=4cQouSy#gF?z-aO(Za7e5Pikv$CKZ1YNrH!=CCME2bO$D#}A~m
za^hDVhdK3P@w1L&I)2pg6WLBhafI}f7DqWTbK=rjDZ)IVJFeq|j?)}3PLOiqqz+n+
zpW-j6wctVC3n_Up_rFyMmi7yOQtiaLG7^7Q$8Q|Fzmn&4{LbMZ_a2wvLo+B=;5<7}
zY2s0M`?rpNbW}D_#X!QKza~-6KzReSOfO@gtbqbU)@^u2DcU8q)T<%3&Pr7<Ftom?
zXrNXXL7<X)Ek8(9HE^VpC^S%H$Q5-p1G%AsnEBmBb%VzWvf4EaoY`H%hfa{FveoWf
z5(X|X(8fet6Bin|$iPYiPZ_w_potBxH!#sa9Rqa@bT`n$z@-N28E9#sm4W&O8W_03
zK+?cv1}-<ym<i4#8ycXV44+1Z{OO;6JjJB~)oGd-Xlh6uW@5MiXlBTzZ*v1Q&gHA%
zcl(NBm6t%ukW|WrL5YDD2IwgC%aUR${BVcWniV$CNu_UV;7SE_FpySXZ>L_FxB6Vc
zu)QIbd<b+@1^%ndbCrS42D%vNsuFiIz><0J$A>!VtRAa<wSk@nG6qH%xW+&)1N{vQ
zFwolob&dKM=xcz9uVsgilE;Pp3{>o2%DkoOL;T4SX0->ZPYmHO85m?>uz`{to%p}z
z7g?)e2H39Q2LA06E`iwggS0{ZH96A27z1MsjAG}j9oA?j-d#e;(zyRH*BR2Lbv&EX
zL3ElaCMY}wj}%KzVow^lft4{Z#lTbpfBl&Z3`{dH-GITNF)+ixOapTaWDU$Rq)iQf
z*0YHpEY&0^GoiRuQ+S>M=>~Y*!zjvI_*-XU%Yb9RHDHret`c>7%2OfFkdhhSz=6IA
zW@kng)%-*<R27H}#H36Ec>{CVlh>uV24KZHY|K<?F8Iooz)c2jHn70JqXup<aI1lP
z4cuqoHUqaCm}lT_19up>llV^JE(84C7t9tVq0sw_Q!#hPy=ixF4+-*>A}$Fkw-XcS
z9mv1~2Id>mJmEnDZ@gXoAp;K^V0zjqupAmYFd2bINX)Mku_(d|4J_giEJ-glu-L$3
z29_AofaRS@@|5jy15X(8jOLFfV#|gS+MP}0-+@^M3EHPDGqBvi3YDEDoN6a#4K5|{
zw1HIy&Kmg5z-j|)4D4ee2A(nSEW;zo=M9>-V4Z=j2DWi_7}#K7BPR<-e^k+j>Nzy3
zXfuhHC*7x#Ti79|l3WWhB-L#vLEa#Cke?WMe{>Pyod$Lp*lplBj+8E~Fsjio_E?et
zXDd%6hi=TgU|<iMrYi7~3Rx4L8tgUjG6!y|2rlgZ$<B25Wbvz{2LoRj_?iRFo;2{G
zfsYKlY2Ymb?;3cIBQihzwt;szajr`dp1m>CdyMGYOzdZsRO|;F!Ei8RiRYOqmmGvY
zHt>mo&kTG{;$b(Iick5ik%DPh$kio+%aSktEAvZ5mM@zru2>j#(7-naerBH-_}0L8
z1`Zqe(ZKfx4v_<>kMcuYv~Xd=(g@V-Bz{s~Ibz_bfg0O8u?{@F<#*YQEc3X56J(eM
zelc)Tr95TeG#TK=43GA%-kK)BqL`i~{HmgeB!>8N27V_yHK~7sKRCO|&rKAV_>-MU
z9#~pL+0Nev{vrP?miq#}CQOtu<;LMdJ@rWoK|JAdCd!*AGEv<`1rrrbR5ek}#I!+0
zl}uDNQN;xHh`5oY?k@L_R4C$}k<ZEZYH@2>Xo5RRM%6G;)5Ha2@}|@esb!+J37Aq_
zi91cEDaYM(jsM$wGCPm|nCuc0bxbrjafOMxCN4E`xrv4*9_U!W1y4N_^-ZZP*T4i<
zL6@1hd1L0^wb0`mGmZFZQ!b5~nrNbcF?-Vg#(py?)l6Zyh$4onAW0J?CR&&fCQ_zU
z4xxs2u>uzEO7oRZOZD2?L@N`YJywH4m4B@T8y&20rHQnOyG`6<qMeEMCbFiK19ULa
z(Zom-qfB%%ag~W7CWe~mY@&;aJ|_B_=xU;yiJm5|F+p*3cN0BKTy5f^-jb`336OzQ
zY~GFxp_hr?CayIl4<Wa?L>Hr46_aU@fe`4&;b<oYm>6iH)I@&{_iPzO4ii0;W;ugY
z#=$0LE=@6t+4+g1vr@xMsZ%k+r21KExC%2W<c9jIA*I%W)Myi9OiVU0g{?c29IL|X
zR5(tB<Js`j(kN*HdzGU+DK(KJtD-9U(o*TzWzuko2Ygda%wPpfa8)qP#B?@u`*5oF
zG|2XzWy%x4*(&tLrU(;1N4@S^nAS|_CJd9;j3PFXGhvyqO)2FFOgIW4?3r*C%s)Fl
zn9)<2&u+g&D(o>fWNH7!zB@$ZP0TfMtBKo8+(5jETTHodqW2+6gl-}^nNl>=Q;B;1
zRqE#J?VKY=lXsBpO*D8qvFu3Uo{gEiOp0y_=b3o_RPxFig66uk!@bwUeI{0!SZ$)w
z0CB&Gg{C~me1M%(RXoVHE8t-hkC<3s(uK8{&kB?jQ)0{n2R3F1JZj?iv8muPvB<<?
z6OWmATotl{Q>mtS!o-uzNcumYTw;PYjNHsFV@I7&E>|Ie-lG!x8;Fw|Gb>GKhig4$
z;%Sl!?c6Vy8lkKY7pQC4C=+{4JY(Wn6Kh!w6FW@&&%}BY8%%6AvBktj6OY!HXX{sO
zFW@?AlX|_YNb;+#CbpaM2x*%s4b`ax`)^o&Q)b}A)J_x6nRwpBF4E`3)NU2>(p$oR
zoGZ`lFPKs+ut$Y2s<6Bxi+$O|J`;yH%}u;w;#Cu0nE2AfYbIVd@iwO<DWPxa8=O#o
zRCr5$`b`zGA4U~dr1>NZdDp~yCia_B*Z0JP)cY*IhT!w5i4PR~p$b3x5C5?OJ~46N
zKMc<bnf^2N`nd|ZKL5(Z*K9IhssE$GZ&b+FOE+ccc;s7hs<X+K`N7{SJXL)@>MIVL
z_|e2k6N7t}{$%2aiDR6YD#1}xYLotKg1QZD)}?9f*yt(g#_)uRt+gsnTALu;c2njQ
zDJof!@M*H&hGNjB%&#WSvMn|~wDFsXbL9CJ&Rh7M04I(GgRf-%oRSvWTlkCfw6CaP
zp{9kuP5fgbVWEtLiWVwaC~Kj>k_jqUyzDPQpqz#BmXvJwQikF5|Jh_z5ueHys#qwr
zP-LO1MXhEWSS78+nT)x(Goq&~`U4sKR;}t5{>^*7f~aMowuNREnp=Q{3oO*NaH)k0
zE$Nc$A`2I@CdUdB1B))PKy$x33Qu2KFH@_>Oc7JhLVXJjEi|$~MeYU`F0*jC^?&ZU
zn2d>OEjZp4jV&~>(B_`%O)XsWQVFwDeUaL{)Bq=Ng@vSrmKIuBQq5afD6ynIM#@4l
z@opcgPf)Rw#N2{~%uWzyY-_?6uC$O=iQ8Iu<*5W!FBnCeDJq2P1BwU}*}+0b3qvdn
zwb04JRhDFNeJymh(8WSeR>?wF3*Fd2OG=zLeY#udVM$*N=a$J$E+r3Cac4+*H8-=p
zEGc!l)<SO!*L5ivVhfsYFt!h?q>}aHFj?qtVSt4}>T~rD7xJTg23pwhaC-dClEM7k
z2=Qq)MT5s-7KU3GYhj!v*M1obqZB}RgoTj`p3qZ#y)-rYKl~WBcb~jYcRcH0Au%>J
z%fbW_jD;x{rgAL$6-~4-$--m{KMXIWk_L|?7E~2Y=`i*}G0nns3o|Utv~YM#if#wU
ze;AwY#YLl_vC<cph}k4O3t0=hKIx~afn!FdWC_e-TCglUXW@AZwgtz+gBBjL;9Br3
z+-%_%3%-TG!VQ)bqK51T3v(45TgX|+lWv>KEj(j$B?*S)lf=AvOnP2jMU@pxiWzTW
zZ=6rk*T=0EZnJQYg?laBZs890KqWDcX)L_Cu_ocWEY#XDoIs^X;<qZ|ZW8v^G=(G-
zeGqw{g$GoY`z=(bx4;o8BCl#yKyk{$7Uo-6Y2hggk62h>VTr}FS3GKAp@qjdP3Rc&
z?OKa0EVj^eU=huN#vDshn~@F!AGh!XiE4s`X?RG5lcg4xu}ZW$99Tr;#vcloTUepe
z(3pr1O^2Sgu*$+l3!5ygwy?&+It%MLxE7wZu-3x%ehK=X`m1R>ZZo;Hq(El3B{pz|
zo=LtlIziV}v`MM^YPZdtZlowqKnq(fY-2{1hPz#+<UY6dHKml&Gv!W>qlMinmUv2a
z_^^DMw;Z}uykKFEg)c39W#L5&FIo7|!bcYNT6o#Q8*Gk+eHI2c5U;B66%|qiak5kH
zH4Cq^=0}rt%8NM_#GFl;w=BGE;av;wsbue1_~xD3%uDMArrB@deG4C`sLy5y;`!7J
zWSDLz=ri_X3!hr}jC1qR^e5zI79MUU`0zlVOJYh$KDX$EIrW7K>4BE;*A@<1IAY-_
zd*fvC8w=lCIAq~l3*V7K28+a-wF~HvbVtz-q|8m3AIU0P6dz{qolA1nO%B6cKUv`J
zjF_Jl{<MWN7LHjsZsCN&oa7hDmNThILfkP+46iBW`4k%eqGHcl_>BWSF!3vU>~C4-
zIfeh7*@vgTY%LZTsg`90v;RrvZ=sKkzBc~0@DKTzjkJw~jWRYax6#l>SsMj5YTJN~
zayH7_D6&!AMg<!cZB(&Q)kY;7Eg<Lxw6cwB`b%JSCN-c?RI^cNqfT3Kpt=-`y`W1Z
z6Ks3C7Sq(QQPY-dwpum@P^J9C3XEc!3v66yqn?fWHZHQ|^1F_Wx;8GhaS1;+Ks?x1
zDk{(oNTv5`{ks~!)P~nqVj8IQm#L6S5g15oN9l~Hk&VVSTG^l(W)mAtZKP~z<kHMW
zb6b*=P_I|mNUB$2NFk&vTE3h*RA^2T#WqT8sV~&RMoXJE;L<dPB`^WQ+x|(mw$a9x
zHmYrHY+Ih9-<}m+q%+udHm<VK*+zRC9c*;8!L1NCH9x97Q72p4>=4t%Mpqj>*@3Ky
zjka~9vw}4P65Va|uyM65C31Y|$c15X1<6Tzv0LUy@kno5vLHU!+W6P0T|XP8Hg2<V
zyN&+rUK_d%!^S`xgKUhpF@~cyA~o2?FdM^d3}Lbh#ZVix;U#d_k~G7NdL2nhm?TEn
zICfp?>S<yW>vKMN|M1i=datoI#@U$47TFkY<2oA?ZA`K;!InBm;po)$Hr@*R@bB>D
zs1z~MOPh@;HvZ^Yy82X-Q<c3({B#>LY|OSX$Hq(>jOsi(HOr>Sq%4G*^P9c?SsR*-
z?VB<zWT6TfMN0&eV@fKr@&3uAZA%Ux*a&SnHeAwYbK%+WNzc8-xN2h4rV?`Uj?G16
zBepSDrDv9$EjfH%h1d2L?nJ?}p&Qs^WcX*2H2t`Vv*29Kn{C`;<5rGlH*xBfB5sQL
z&^6*6%xL3T8*6RcWn-R=MK%`OxZB1(HXgL`5GPA4?zM40n?EgepN)4nW$5*{{<IYF
z57_ej^zf$4!#3vI_<f9c)JC&mrH|NHK=Pne;iW$HON#%xwv@*@3snh;%^Bh!v+=l%
z<u+E>c*4e!fr+Im;}RQB+Da#6tl(GZRd|^Vo(-`CzOJ<K6lr5+YPBsr4?k^Vl`4}7
zSdD^s06(|J#xtr`{0g6S&zG#Tv7Q(kFWA^%V<X4H#ts{sIMz0{*x1SmJ1tdyT8dta
z=d}?mN)(B0BsM+8hZE|5Hg?+BZDYw76?Um+GUdo{2oDqa38sIJL_Sq!-(%xNQnHOV
zY`kP+uTAx*)T=gLwy}?-Zlm3X5}wO<Yu|!+!hCq{{F)6KDPN}#<~j14Bs?4M+0q2#
zZE^#4xQ(~>l>D2837G8L{-w;gpOiy_S(tuvf;7;$YJUHZY<$e`I@s&r6B`FO+zz@p
z_>{ArT*$#C4nDW>g^hD;g^e$5d}ZUPjh}6NZR4Pg??}2fz9I8er~lvD)QwC`U7zOp
zJ^>;R**I+DN0s0Q8;2fAH(QqaNxdGiv1eTg-C6SpY>L_EM62RsHjdl)RmGmLani;a
z8^72%MebTzoL2auGsV@Z;@Q*1+{$9P@?l6f+WgR275keC>8p@+_`}9|*2h5=2Y)Jj
z!a*5FCjN_m0rnWfs$xhPc_7OyWgQeaDDR+xgL01a*Uj?x_7nUfy>l~HMU}Ub1J9LS
zxT(p{YE*Sl&A|mKs?b4^Lr1KrrCzJ6um($`1Ymvo*aGR|o8{D2csTOwbO27rgY1C|
z6_TI3$N@jMEFtPRsOzB8-jZSmmpanTQ9}of9Mp4A-$4UM%8f5`q=ns!@7AKE_i}}y
zD46<njU6;`q^jo?j@-64RbexQS$d?fxdZyn;<ImtNU{V6DSo||V9G0!3b`m%;-G~i
zSKTcgv~_T$f?GLg?Vyc=nWLnQ>WnIaGNrVNYUiN60``qgba2qoK_>@SIr2!6ho^1l
zq!=>GiI>uZd8F9YK{p3?I=IV0cLzNjOmJ|$gR33%bTG=nXjaleF9!o1403o9ifbM8
zb5QD_kNOZd4t*VLxkzpnSPj1JA~RP}104MBOQURl@v2c`u!A8AKf=LK2g4km)F9*F
zzCV(z&u?dwRLk7`N0J(t?{{fIJMNJxG0VJUbB0<#V;qciFwUXcbAq}JV}Gng-G=cF
zt|MukO;Y)x$&e!ACpwtqz;@s`nCxJRgE<be4yHPo#vXGpi@o7Ug-PyTW;jxRa@Kgc
zi=px)k?+tNPmMBRO6N2Ox&y<J#^wW8B#sR$qMHmxnGP%m^S<v~X-<j<viv8yBuEEy
z9o)dg4gv?UgPeoVLFC|@Y=SDp^Dhuo7-qPmn)C!hy$gnU*6`RM`Ubht!A%ZsBY8Md
zCF5pN;P*9eaX@!2)Xlh65in`^!Y5M1(9zkGpVqv?ky;#drZJB#a<I|CCI|O8xYxll
z2g}*F4(@lb(7_@H4>)+x!NU&bJ9vnLem?on&>~u+(=468tw$UzU~MV$QBl<En61ez
z38gyxB`tRFn1jb1JmK($(-f1<-BO)@t0fMebg-0^)?EF?9!n8PhlDKrqpQUV2P++{
zaqx^omrZ!u!D@b8o&WwT(ON|^`!mUd;EJynQKN~6gU>ox=U}~qwJIh3b@1G<+PDN`
zX~?jF453sS3v71e$?{eQ+emu~UhsSJNZ+FE4t6-$?cg~F+%Npkk?K9W9PDHT`bsl-
zZULxZL*(-gUf_(T$4eFNalk14@3@2D-^4jw$TTlI*vARwqJxW9Sd@c59GvF_cksG{
z?;RX+@P>mo9ehc$bnq6d=ip<qaem#wyAD2Z@S%hE6p`<D@IGlW7}B#<G3PAxkm&%Q
zFlWa{tV21$!(vV!zAo8Ubb$Qd!DkLFwh|lOtWCk-=N!lWi7!YMGX*^v(r|`IGM}#<
z6u;Q-8^v}GI?`Vy532b4`<5(XbLKk-KhmW<@Bejh*uig(G+6l2k?W;n4vstc$-xoz
zdep(s3Siz9ZA8x(N|@$^gOd)<IP?jOQ=ALRN7iYQSsl60;;|70albk^tNJkfsgMUQ
zlm_>vch)-6P~x2W-0v#v*P`H0Hiw+qMJ*S9JNU;zMHiJ^B<>iNa51rmDCeS#i?XhC
z_Eq3YH(!6ZEFL*aX#GnWTVAE9phCKRqm-bsive7jxTxYv0YX(5^IMAKxD*Yn3SAVr
zsIC&!aB&+AKfAWz9^~Z7BsIZmyMT*^E*iO#Ghg7Mj*Gf3E_88`i;G=MDU^Kp5*J+h
z7A6IG_&nOIxv1x&fs4yr)OV#%&iy=V*qGtnD4Zh$gtY3dnd*AEi=oZM)Xka3E}FP#
z;Zm4GPkm_SLbyn|Xzt3t#uYA-Z2lxUUNk%XeS3PPE2u%l=jK_xi(Qnsc(<uo_hJdH
zKd!S<t(d*FXyc--i`Fi9SV_Nj46k&NcBL9pI~CI7+=p$%j146$lgN%PI#Iu|RNUm^
zDi@ty%;c+!E-t#d815qDqMM8EE=pbWchSSe)h@1e(Z{9L39fO`%SCThlUp}uPEC~c
zVVzkq@**C}_hly^lYUeCsYboCJN?v-;Z4Sf0WJn|;_y}r7lTyPU>8GVKZtj_wqWx&
zbrhsks-Uw`!(6$oVB!%jM!LA3L+oOdi_tE|xft*Af?YAj#aLHbKoh1YY^)>Iey($2
z_e)H0ao@-Uhl5&7bf!UZ^duLPT}*W`jYF@ADQt_n$cDqjjP(X2rn?xSC1$wb2$E&7
zz_K;E&2}-zMdTuOk#(VwsM-|!E_4@$3ya@!VY0`RqlQyAh_X}Uv4X?uxm=Ba7~^`;
zZ;IH^;s2aDe9~V8s*q5H)SP62IYp}^*SX{>H;6n*w6Ul$qKKFqT-?a2&Pwn^dt3`~
zvx{3?+{z}nxR-5oal4B<TzL+1w~IR!K=>{f=SLTG8c;OPrDKzF|C=Ou8bbU%E~?#A
zoj@yH+|RDtoZ(-LFvEvjJnZ785I2XI@8S`5wU04A7PxrS#oZq6@vzXvA{P}sRPwOc
z#bYi$a`7?Caq)zUwJz2%aRsr&#WEMmT|DVxDLd+X^5%VgDS4&~!4)o6y3+N>8qQ_a
zZ|u5N3V51iGg@|6xj&MtT`*ji6VIr`&#Jzn%eXm{#d;STTs-gM1s5A#Y;v*9#da5)
zIgcs|+KF%BRGpT(X^42_OxLXn$(_p%7yomy)5R|K-myX^cup552bS*YBX+xZ?r^Q=
zIDbouSppv-_i*C4c*Dh;<OVMGa$H=z$`U9Aa<R{qzX?i>sGmU92wq_En!>#9qRp@(
zx>#?yJWYX8{!H>M@&p&}k*GN7BJmCjF;efc6Xx{pnvnk;{$k#D@qvpE+2jEUN~m_8
zmL)S8KS3?iPuRvf;zt)hxj4YyaPgUo&s}`$;yV{#xcJh=;8{4R`tU1Pdf2<8wCHQ~
zN>z4tFCB?|<ANIO?B4HP9CG0_so1P<;s+Op$&P+a@}JIGz#lZ9QGqzZFaDG~?c$7!
zqb`1Sag2mP--#EC6Ri0Ug~wfaV+hT+Pm;o2&?yid{xn^lqT`@nT>MJz?V*f^vo3yf
z@druK#W@%4ixU$%iQh?qmYfT8^TO9ZUHnDP@8Ta9TSf^^hkiq)D-sD;lFy;FJ<ED>
zHkI>G-a~;W=Ne}d3#s6NiCGB4Umr>{tn8tRhig6b@le%6H4hCvH1ecKq|if654Ai{
zPEzEdx+m4k3D@xCrBQTxOfgPv50`kT;{hHn@Nl6gB|jH=xY)z;iPA)c!W<s6lFRY6
zu7^uKG*D@nteyhud*G6lf}rhddoulH9xhk-Nh{OD)6}K0hbA6MJhbr8)I&25f(hyi
z9w|2WkYugSCa>_oS3a9IOTF}Y*NT(}`pYe5f<-Cbg+$M~Ej_gI(Ah&553N14@zCBw
z2M=vMT<Iaray-oICgu(;rQek|CZ-Zbim$6`ibD-W)l<oi9y)or%Hu87DH>3m>?*E*
zJiYghesm+;)k8NAS9|E`p}Pl`&}6#k;emO1H3Rd~oy#>Ida?dL)a>nn$Tmib$X7RK
zm{NX`<KiLfLGw`Rp}&WT9wvDh;9;PL5gtZ*802BFhoK&Zd7wyS2%9!Ty0-Y&g~g0i
z!Eg?=_kYq4GGw~NsJS#f%EM?6<2;P_Fm+hb7&bqyIo1OmV(f1qs(0$jBdzN^`A3-G
z;d&3u#k};q!CwG*KFNEshbbOrdYI*b(ygf;rg@m|Nu8+PtJ0j0Gdz5|Idgc3oPd7~
zkV~4`9_DbY&m<{2rVbU6Os2DL>>Lj_crZO!9zsugqPAK7w3O??^Wb<=kV3)2(UGM-
zdq4<ERs+)K$t3-sFyz`J@(_E-dB}TGVVe&{sZ`abtuePSH+r~<L`!+Thnqdz;^B4=
zcX+r}A#d~W@Z%}Qp59in-xGg#5M5^_?&PPZ)FyIsMM2~|l`>SAdp+F8DtY+B!~Gr}
z@bIFCmpnY^;UN#pNaQTg!+Z~acNb51c*Mg3@_D8?np~7kJj$=v77JP7u{DVyyojx?
zDi=b0eT?0%UWs|HnqUb_JUq$TT4Jdue+tBKqOI_-(!;YJ)_Qo#!_yvC6E;%(anp!<
zl_w2$Zu_~A>}ZX`Kcm8b6Rh*F-lHoR?DVj~!$uEVJ!~WWc<}orHhb9ONpC8@Z_Z5k
zOa8%s`*`@3UD`2fJDc`atsR`#O~q};29YZGIVRZU;dw=4yFEOoV!4ngJH6*m_OKT`
z>>+(N7nH>@Wxw?$dp*3&F(P?**yrID5AS>UKuy?JJ-p@NZSolpuX{BAPrc#cO;3s!
zns7f}Ml^jaMM?WRp7c1e-;)C8cRjr4;rvADC9g_1Ijy+&q&4n`9zJ3#JbdZlV-KHr
z@`Ua)4+lJaN^Y~h<X?LzPFp@Cq0d!<JI5rLjE9w9c{u1{>A?#0RP#0aYO=f}k$9dh
ze&^wP4~IzV{O;Y=yDJSk0*5{P=;4%y(;j|eoq1OmN5R7pve0!k`(-3IKIY-LhZAIO
z9J>*sO-Io;9?ZW9-D3Q+u|&GBNpv|wR^Z_`POB41KEIOxtGY2eligBL5P6RMwk*xt
z&4@hj;ZOFJkIQ}hMUwMS!$(aY|9D9FsOE#-ddv7I>!YHNN<IpF$qmY@kmFm<m!s2o
zf*@SM2Z8<Pla*C$RTYv6R8as2ooPq_g)GxYb^rf6pdhggX`HC#qqZ+q3hVlSFImAw
zD!jnQg$hXS9rVTO1Q`P5z!&?t#77-px<;X_Z(jQr^rmvDk9w+v`o7dZJlm;&r8V&7
zJr300Zs?<tk86GOVLg2`@zL2w7avW1H1pBgM;jl_eO%$A*hh(vqz~asaeB&^8qUi`
zrb@CYx}m-(n<6|(OSJIO(nl*FJh@v~S<v_3-6K;^ES9HuZGBwnql1r*KGHrOeX*pS
zkM?ZfmJCZ6Hb|6Fg%ID#M~#uGt9-D`mRmB><LMqFQxu?e_0i3jTc@5X?5@JAeYuV5
z;e!`!@$8i$6I|n?mx>+B>%bJibJ*@prLIL^AA@}i@zKwh=SrnM`m@eu#Q+}zeGKyP
z#E4W6QB0ON@yRq3P?|l|my6iro*3z4m@jvu+{g^~@pG<4#+O^05h}cPi*!3V$_GRG
zRT%4IoR0wk1_l`K<2oOo_&DHWf{*KctoE_S$3!2KeBAEi4)!Mpg;e3g^fA@PG#|5l
z%<(bZmusGxK4vLkhA)+eiP@7CKXjLluc`3-a7p6Xb}h0#G#@(0^isiC-cv?xCF+e>
zK5QR(A9H;;K3pH6kI0AT!}n3QNkQO)KW?(h#dYKv3J)<El2yh&a=zrT6#CJHY565m
zOZEmIH~P56$E_;YO{BW_YTwMt7mB`5rkRY_CX(?U7%sEi#%gzvz@0ws^0CmzA|La7
z+|5z*<-JJv__)`{gFYVe(Y0^UeLn8@@c`#quEqE*na8I0T3Mai=3?Hl<ioynfLy+u
znDuM<+B16d0<uTA1t1}DAhwiD*;`WIm)iTScC}mV<1ru0eW~60ILZ5Da*2;8+5DlU
zPxy2oKbV-MiYlf~uD#5s;zx?ECn%}dzcRJL$4Vbh`FPrw2b!yV>FZ$j^(kuDa(~KA
zAIp5k$Fn|OWY73m>tmgd=X|_+rt5ki8+>f{aq8Ek|6}1sk_u^zqoy#ymW-blCtHZE
zzBI(%M%GbW%vYLVw;x=(!^i)8?DVmVgi%H8_R-*M^5sE8YfMftG3}{Y=JP&Y@TIhY
zRyO?H9`#Y)JGs}#%Rb)n@wShBoSxhqO&<IPW633+NWG@QMrG)YWbo?>{$Ngu_&3?}
z6UCq7OX<e&9dffjlly(V@8ews^YuOQjb&1Z{ei-K^dJ615^YIwS4+yJKUT<56~w1L
zKJ#%=fQtis?&Av|Wdf89@FiIRoA2YakFR|kB-iqB*vB_MzGYh!8|07dJN6QPyPf2I
zne6cpr^#RPcgfcuef-2B_Hm4quhJh?vAoueT$c}-?QtI`RMbh*!=4i6<+JebWR5b7
ziQ<fpUwoYR@h2&k{BUFDHy`JGoK-Npmzdv420p02N;fYweoydPnZ|+x@fQbWN2h<-
z^WNaU$qXmUSYi@v+LLl<7#0L57f4qjH3K=1$_J<vpmKl;>UHRSgDVEO@6j}c=T!n!
z4Nw%IdH_z4Y5@uZsR+j@!;Dk|;7qBZq9|JDwBm~TC5^XXqILiTSkSrP!axcYFHoQ3
z7r85;`yB$81gI0>$^hvAbpu=)pmBgE0qO;)AD~enH+MDr4QvpA#!#0Bp!wltfwYjK
zUn~j|8!~-L+DEtgwkA_H4bUt=ivTSH>E5AvfMfun;41=r@pzgh38?^sk0*-*lmvLD
zonSJ0k>#Oq!F@vrw^E5)2WS&Wm$Qr_GJCK>TZJ#*UF@Y%LxA=HdIjhm;E(N{It1t(
zpi6*`0XhZp_Gcom3ZzeIZs-Vi4bUyX)d6}2SU<L~dw?E+yn*GaLGsi)-9()1Ea7Vc
z>C=)MB5rf2CUk8eS$e+!r2+b|$+N_c1?j&0bXR#78@Fct*>y+zR(!4K?9YXC>o<t)
z;=lzs8(>I)p#c^JSR7zjfZ+kc08xNUfDr+v1enSK1B@bv4{%+8(E-Mg7<lJnAer{x
zQ{?@6{r9HFDI{U8z$b9*0!$1rNg@9@*pYZ1HCDV>x=AEFIY7h3<p@j*Fg<`3z*Z@%
z&8|L!-4bBdf2GY)z-$$ci~3~MNBLbXfUaOeh30?w10qpvbvY-1A0P<elBoVkjvXO9
zPSx_#2Oag$tafr*W&fxd2gn7uGr(N|@&V=sxFx`?0d7#AyP1QP6E_B!za_)xCe|}4
z2t2+`s@~le$kp;4fpmYt*V_Zyyh~S^Y#{d+^8(x*;K2Y71-K``y#ekIu=QB-z5x7f
zF@3IT^=G$a2=gT9fdE@J7CyE({V>19iNmGc_k~o&d?di50TyynuzJVkodR^wN3l62
zC+#m1T<Sj-;PC)&1bCAK5MW7wZ2`6icrw7!02|pS0hW=3jwV+JSQB8m>ZKL`_0`G%
zPbv6m6|VXZPkn}G0zAuZp(kzj+v()m0P9qru;2K~1q_?O*bOQTg-cWk*sKz4;pfgL
z7r$D2Yk*z9B<XvH;f?_R3$Q!Da{>B~NN@qeKHSL!DhrtdRr;UjgbnaIr_yT`XuGs0
zz)LEY@QWOXZqlG>ufn{n!hI@yMTM`bkX3q30R`o1^M}5)dG)u*Ndg=W@MC~?0=ygG
z;{cy<$O7zV|5T{{5xaM^prP^m0jOg4L4dVW#D@x|yoDH+xqm@=+bf9!0S=O}1o%{a
z;<Nw0_&IsSfAE(I_$t8H3YhX$b!O-DZGi6s98$>dR7j0k;(zEMe&Dp4){{;)82%LC
zh#G=3fpo5QRHZzn!k+^iQ^0W*o=_o6IH>?y_pd$N`7|qkxHEOAeo=)`EXHZ_8`~0~
zLx_$cekTj!bO`0*>U@Ad1C$R@A;ez+XqA}=Q6|LSs=$8&@G4uHEl=80^5%)^+<l)f
zBg%#-2<5~t7oy#o8f1)wD~6~PqDF|CAu5NU$E|813PbRhT_wa5(?nGj@>Jrp;}wcR
zRB2tjZ%c+5tB2B<jzFytoxiB?)$0|wE9BO!w)#YiTH=Bb7lybf#Kj>}A&OPCF9}gM
z#HAtXgeb|2aV?8!4@*g7y%3j&k{uDQAA(^66<(&oV{M8Xs_czaNWXcFLo^A|G(<Cn
zVTW9yfaWUX_93YNp+d^inV=+;%kowsS}UN1ifXA~#<mHihrqTWu4LzM<?~N6tuO?r
z8O5-jdTp;N$=6OHt_m?O#CSG8M3)eKL-Y%AA|Bi|M7I##L$qij)q1DgmFN-Tnh?E0
zTpi+|5Iz4Lg(JzeUskU*w1{cA&FLND+7JZ#sE{U6giAy855c)MGQ@xo149f7F*w8<
zy-S(v8BNmX5SCm|3=1(l#83rS`K%^)h(u=8>()_4ghwctQ*~5`(W(MdM;DC=<*)X}
zWWm@F=_<0c>q1Nj;fM05==u;7L(B>>JH(_AlS51oF(Z^Fhf@f*D4rH#s(K}cyQj<$
ziCi-})%Tw+GyiMj(kD`LLS#djA*>LWjaKaqrEE}Fp`pUsKNJ$f3fLjM|MEHta6|A2
zj8U&ODj<afA;J)midui2xFJLwBBx&2)$HDUh`Fkt2{ZkTDvGNJ-s*l!h+9K+ig8tp
z+d|yV=0uno(Rv7XhB(J57UHfD^Fr(ju{*@wA?^vWHpIFR_lCHSW5MYV;{Fg1kTOFo
z2=QQuhd2!n6?U7PdYJt=O}sUs{d`ukhv2oI)a@KOF7;@Lg&`J)c#J)8y<|!hb}eGp
z6&F)AkuVc8qxoK~B_W;+@pOn)A(n<%7Rpo9l_8dM;=I~z1?$#E{y``<r<x6wIiCup
zFuc-gDKK9hVoiu=Ilq*~=9yUuirStD!DN({Q?$-i(|SelTS?5M(l%m4h>axa5Suxh
z?9>*8tWRfOc8cN@IuKaiM{EzVBgFqgc_q!KTQaS8mk`NkXDC-q1fC1=e2A|?d>!Hi
zCJXUyi1$Lg7~&;PgkO_yh1eV7WwtlO>k6|k#490Q<<~2S8yoQ|^VF7QDc+b#;0-dO
z!-X{Kev^GWN4mCS$k(@3#&=ZskSHF0sn{Rl{ScpoI6%e~;zJenafpvXtWR`d;r#TG
zC25+3k7$+1H5Q+S_$<U1A$T1mqdw<6+FhMrWKm4>rK$|mvq}d!j^qy^j)wR)#CJ?N
zBlTm5??W64@dIb#LuoD}TX&b2tJ3!}O{5RA4ueYx{IVtU6Y29vl39KZaV*5?5NASq
z)lMA`agv4DsS_c1T3wrJPNT#rl6O1tjW3D+mr&k5!&T^SA$|>UHk8gnt2~<8wmJPT
zo=Saxa6m(d2&o8vhH_6-Eka?0zsUSU{1YM(p<;we5z0g;8=)M-Ka&M2Bv3zHz#9=M
z@hBgmLIi3w4cuEo{9WpH)XFMZl?Y4QO1~vl)$6!N)6{$}icmd5qevP8*N9LvLY)Y8
zBh-peJHmw#E{cE%7evS&sNG{+iat^XR~GLj#HyKcgLbhh>XHa_5J4mrhd!~zr4i~W
z{N)kqM`)m8FH;!q-M-q__wDVSn0MJ=I$;1`SxHv7afBw3JmYSvDsx4IW)Yf4IKso4
zhJyH^BT_p9kyNqd-o+96l@(ngbd69Fp+$t25n4rP7omNG))Cr7@|Ih6JD;`@u8fe5
z<eq}-fBq$}94a>geC?o+og!Qnp`(H)ANjvs!_5aPbXFK%gUhW)w+P)M42m!~LXQYn
zvjP$5C%I>YYa(15VR~ip!quWzgx(7NsCqZLrJ}Dq;`>DC%jR4oYHZE$l{2w4LjMTA
zuSnhaQSAW{21e+-U?^Sc?N(WaL>L<3x(E{@42$SJ7^5SMiI9mfBErZBqu5>3rM55+
zDN<WAJaIUkl!p<M+ZK;yZ|H-^MHtVatR;~=iI}~;6HhBBAiX}q#0XO&OpP!pl8)#r
ztV&Fdz>GW);VTb5rm4aSOjil6*_xp+_D`$NtO&Csyc6Nw2y;jh5f(;R6hVuiN4Pn{
zEfI`J&ILDuM=Cv;G$U9M><C{kPB|oovq@g<P56fj!jBL{h&iAULelo++H^k>MbaJj
zNAK6#)snUZiF^cxb0ge9+Mt`_btUv#OyapQ!cCF%PeOX*Pl~{;5pIj{V1$Pv+#cc6
zOls_0aX0@05$;s4cd2k5+deH-`TA5<O;GLmo(T6wxG%!}9B2-QmAYnD*MEkH1p@@#
zmGG5^_zy?&uuLvvBFvAZYbL(#Y$1PJ3nIC^c{IY=mlFgQM|dp4_6R#7JRaeR2x}v(
zi?AfZlbn4G#WM^eEQ|0|gr_-77l`E%Rzz4Cp_i4SlLX$UFr=06hLxV5pXReF!s-ZX
zR7$>XYToVw`XcV5u45pts3@k_ugzlDN7xWyT&iGOgpKTWwZ7fVx+(ZOLyX&+*`g?U
ztHKP($iLN=0dl?ZzX&@c?2hmpNApaQf0<nz+-s%PAy-zUvF9V~jqq}W7b5J5@FHno
zdnexX{Sy1%AHr+t_%PYN2(LtVJ;ED`cwXfcxJbOF=!e9^gSOhm;>`$eMR+@s2WKpV
zcpk2i<Vbr2-ixrG{4GY=81F~;Aj0VgXCizU;iCvYL^vGb<A^@A@pXiQ5e{%bBYY9z
zOMc}<^0Nq^M>s~k{rTxRUF7loS8a>GQc;A5bSz*Lfo~#wtB~K5`LIQsYZCb#3!k6n
z!2~lNim-U3+!X)FaX*nf7D=UxpU8+J9AyJHl+axL=SUi}Q%QrOIjWHyk8naIJ{jQ@
z=PX^39G7?I(%PMAe&JX*mS<;)7{8KKBK#KN9Qi!iJ4r6WAMB9X;ykHhX76HNSvWIw
za%Sqg?VXsb)t2<%tY;<hj|z!t{z!Vy`ZV1F@MiOZ80BI#jnOPd`4|;qToR*BOs!^A
zicu>@?HH9~REbd(qk1fVkyT?<i%}Tk?TXT&D1VE*F`3@j_&YxSb;pq}rfbBg8Os}U
z_ygsI*Nw9RvGm7sVT_An`SZOXmN$a&-+HlnwYO$i6dxw88{^U#jbb#8Q7=aQ7?;Jk
zoXE=rKh2^V#Ne-)-{K#+VT|WzrY7*l-g;7{jlc4KgNyjxCan22;{BtA&0|~<qjiin
zF_JMvj21EO+?q+na#df#rd=wypDJd%ilsQ3o`m1-muMM-00q&lVtL;;quR1L1H@xn
zGwoOiSBx>}^(7tS+zfg6*gi&wSng!$esJ5?Ovjk_Jqa@E&M^;Ck<OuA4qan(i?Ke&
z1~xfHj~IT8AjZ`(dd9dumJ5SxV)TkJG{&%4PR!mh`o$=Xaczt~F}}I0-&02mTMa4g
z8-rf`sglt@#()@uRbr+esDME+H^qIJjCvQ8j}bp4#>!^xh#Vdx6Jtz_u`x!(7#U-7
zcQHDaTxAqnR7NB(lFLZGGCMQ!85d)GjO#dF<-~&vQ`5fd%mfo+P!EK$geS)IbArh+
zro_m`&|*xDF)hYSW{EL9mX|rsV48lyQ#x$Yp0tj<v2pUanzLifiKQCGoB~nR7AJn{
ztH&@D#))Anz=~m$_HK|jIexq(MMXFk)v~W}IYxZa@@7?D`$${qkbM|qVT?sF;uyIY
zcg2{;KDkolW6X_lgM#U+;YL<(X^PKHF?dHLftyJoZHsSF;jJpXO@&0>9^(!L->Jer
zql$>UJH|aR_;;Hh<K7te#dsjbgE8(`NaD@mMN|Nwd3&F2HF-?=P>hFT&_ajYl6-9S
ziu5Bf7I0)wCLfLEUwExooxe_ITukDLu}aay<1wD##Q7t+G{)hs(xV-pCHzVY@nkFw
z2?v%F%VI2#v4TS!<0&R)ODjpn#fPU4k}r)C)cYl{I>wq9&%}6^W39?3$*onulds5w
z&I8|e-lwbxH?rqroQ?5YjLk8&#P}@6=P|Z&*2H)%=EW1(9%BawmmNsViRAxc?255F
z#!k+K0&#r0)LVN_MLo}+8JW0GDbevt6yjfur4rrCG4{oHDaPJdYTr>V&Alx(^j=Z9
zxHo^5)#xZzloc<~4gN&&MvOOOycc7?O2CwFkp;zghs}Ahgc@$|#=Ov{H#Oq6?@7~j
z^ZPMAAm6wmaUjNrF+Pg%ag0x592zXE$Di^?_YI~aXr^yHx|A6|Rkb2OWxp>tSTTNJ
zw<`wqRg8n2fC~Ovg?Epw`EC4vH_Ln<<2!}yydvca>6G%2dL@JUF~(0Z_x@Os7Dr+n
zjd7e^x;RCf!JnCZQ~DT(V`G}97(9{W9ZYUpX)Sm%ro#}Nj&UXi?}hn=tay^(IU^4f
z$1P0#N~%~a&m~#Txfs94xG;x{a`+?0dGhcaD&+8IjKBC3%t`l9f3sb+#Jh)UC35&D
zmJS=6&Ja9iEt8Y@d4Zs}VP2zCkVCl~il?UjDv|f^kkTsVP%VeT94h5dIfp7aNqALr
zk|0TV-FB5QtUo<fltc9#YUNNnhZ;HQ2LIO)qGk?MEMMQYm^X{jz7;u1t{3E_<v1NT
z(V>$pq)qX~Ib4!M(;S-Rq=8SJ92(?sSq^n`xHN})3OQqJqP_zBUy`qFE}_0OQ(m4!
z!yFp1R?S82>D7s8oI{fw`u&yU8Op+vV&a*yc@9_P&?YAx_R0g597=L%kwYpc_ddz3
z>Eax?>1b40aQpC6mliE^;3lY54y|+YoQOLMzRsmG`Jc(o+e+H1a<0sQ76<&fQ#-wV
z4jpp1K8J}pbYusrRa3VdI_0E3)m19&timqr+kMsP__S+Int(0tS=v2^9;!31&Y?7i
z{yFr_;hG$JslK{4hdw#<&Y@+O0v;34&lP*MFB_<`@R~MuAd$<uwiuAZz#K;8FfxZh
zISkHWSPsK;7?J~Txnebjvf62>D#=&sOlDMl9#D5wvEP_rR1Twa7@w09c}xxmJBqP6
zjN`B#OH#*`=i|gs0hPdYIZVjm-O+*=MiH2l!{i)%)%Gd;dIO>7VB|2Bf4!PwS`O25
zQlnr7J1vJfIn2yq78|IEFOuTq_3~DoEYqvAFf9jahZ3fKDV0gMdNgxza#A`+*vd)I
z6}Ad#s_b%DI|?r+l`*I}%#d4#AcruAh(wr^_bL*TS3oXDvr0h>)w$>9a6=AD_oVqy
zulwd4Zei?=IDI2-&EYoIb1vr0#qBxVk;4x;9M0j+9PT3NvVVR`&dcF$ew2Ni!#z3N
ztB}v+a35z!4hwR4G=~RBmc!enm-l*D0T1TzkOJP`nmM|r)BGG5^$06jFGb+S`l<TO
zQVZE9IXscWq8tuw%`DC#S1t7zduDwn0!?eAmgMkc4l8n4$yvNLvy^?sxw9>Eq<cHQ
z5?G!?vM{x#M(Qb2NDgaquy(e)xj|}G4riV(U7f?ijlF`u2equ0daqfEQ7rb^9M<Nr
zE{F9wY|Y`;x~bA<+h4gYvw`hhRIo9JO*vdpKebu4af^cePfJhCEFM&$`!?pPmfD^}
z!TjMnRNm(sR^P=(CH_!_yK{Ihhv##6fs9CD_Hcl@C0->==A$s|(w7vlSA{RDa9<9u
zDB!zAg-q}|DSTUo&l?J8^mZZPHx)c{Tjp(*@*NfSt(tn5Gg`sSxL*P9tMCK%&ysRP
z^7$x-k8}8h^QBhmKn`Ez@FnL6XMKYdpU-mmT)}$7)akI(R~+U2r3Z6#Ia2(!f*-yx
zWj9NG!%25?z_%Q3vzSr0Uy=G=edrK5*k_6H>)J1<mim#5D+e<VE059TQ%A^|$ze#t
zIVxZP<4ca^aFXPg!*TU`LWRVi8&YtZ1DC_^Wb8TolEbem>MXPWuYIlU1#Qso*^VuK
z%i)~DH*eUBxo+B)A#ya@o#%{3J3jW=lD|nXWF~p^%_EUVnLHZgaakT^^C-xpb{@#1
zTps1~D9ocMj|zEI%%e&kRrC0%SBpw{Twf<mpmH7$ZOas1HJI>ym!zwy*qXHp_z+V)
zk84r0MjkcuNYW;3Ozl-Q3u@(2<I*$%CfL2G(*=24m`B|_F3sbjJTA`Tl053<v0!ee
zHrY<E_8eCIw*G6jWs;YqU)q+bI=j=L8zrV*9`*BBd~1Kc5=r3lJR0WFE|2zkG|Ho~
z`eN%mn&i<mk5=lneD7h+@?bri=OKF3{$$iZ!dEa#A%zNwN##+j;FA9^Efmm_y)?TM
z6Yv>UtDsFDZB={OG&b|fJU-c$NwY0IhY{$IN5?#_$)i^uo$_Eyd*(5#OpBdgw7*J~
z);W(ZDtlKIvNyWr(OtnkRCx7&_%CV}jGoZ*>1F-dOqS4_y_(0`9<@(y%P`kdJKOck
zqco36c}&iue;xx!S9y%dV_+VG@)(iF$UI*7s6ws!CEKfZ8=S|}ucwC)U!&d7Jci{l
zJP$@?IQsY3B9c#q?U_+|Z2w_MJFOg}rZ3G9e*NS0*gVGPaa|sS$K~<PgmMJ<Oi-AK
zqzVNz+@ARt&+Jq3n3~7zJm%yvO?_wv8@@d=UBQ3t>&WtFvS-vQE5O&$+cR19s^@Xn
z*!G$#lXZ5tXAFhEXM2W~wDWNC_?X?Ehnt7TPR`@GJp4R@Jf7j_9x4g*h)7F$Jeo(G
zM=p<>^0+yVd>(W2*t9*f@AHmBDx_}6<3^Iig(ZAg^OxR86L_y%$t|1+Vfx-YZdI|j
z<?;Bk44>QcxI@8r{)f3s0rOONw+io3VavWL&hh*5xL-~72UPf=3W<LxkB9$*=PTe5
z6@L0%g@t)6%3}>jv)lh;>MNk5IKQ_8!65{BaCZnRNXRZpN{}Rw1ee9#p%e-fie+cV
zR%aG>cbDSs#T|-!fg(kU6e;lCz4^^|{^!hj&htL+ef{2dW@l$-W9Fn|ZaNmE<J)$}
zymZVbr^;)k9-iIqc)Z<Fv7)`t7t6wQEJ{bA9gfA^)fzh-OPDM*#<h&ea>f;mE7P%x
zN!_cV@!s(}Xs{LT*w&JFrDJ_MHl$-C%~Coxr(>u;tmUjMo5=TeILNqqr1{=%Tel`L
zThgKZY}v})ronC_w@C*PI(9JGnT}mdb{o1mDSRI}WIE1}3#H>gIudJHeox1-bR0~_
zp>!Nh#}VQ~^A?V@9px1#gV!&rQJv%-$H^aP(}=X4PRGe~kba7jq~yvTvtp5z2pwd3
zE}eb_pLjVPSJH8wZK#F|EM82<B_^bh4Xwqt1_?Drv?X#a9oN(Gm1a8~H_~yF!Z01r
z(n06ATj{t@Rn@oLPRFh8_B)J3?lQTTj+b>4DfuOj=|MUkrsL0aJW9vobo@mQHm>Cp
za=aH!e;eDZ#|{S}DWi8drtEM$C%3F<c|~L4X?(%>H`T`EQhO`)>P<TSNylf}mg!Gy
zo0!(`aJ=PQ%6iA-J>v()f79`i$tOmf%S&co((xa;Q_0Y``NRpo)8_9)F(-;Uk;#e7
zPULbTw-YCJIPULoggcSNNiRoD$?8OQ%C*>uXLCaA(wImNCvrORX@_I;<+y!nbs~RM
zZI#D~Dy=O=oXEG+5#dB$Cd4B%2xET60*nP2;Y1-OWLcQWg-)qOxvD1V;Z=4zN;px{
zi5bN$7AHzMQQ8Tqe_S;u$~aM$%$)G;w3TzByb~3jsKm*O6T%y<wN!9|@Xm|0lPj|j
zsm#eAb~=btk*ZE?+i8m*oP}zOa-up{YhonD%%tV5WUCW3oT%wUEhqXr@%m{L9krck
zNVPc;?L-|Xl4n+rapDKgwQ<tUSeG%DF^(~wvH4C16{*Me35@j_8!$H76iZDcI+5f=
zcUCBw%p`@eF=G=a29ByrS*cE>Ink6w2V*lQnlowPL`x@HIWgf<=)crkv)GoAl5L#$
z!<|4i(9zBbS8EHA_D*zQgN{ygVbaNo3(r$KGm-&yuPf`_7%7Xy9?XgKbfTBRdpps`
z;C-3&V;nRp)Zzf<12YsS1~Va@2KAE@L!G!J;Ie>WPW<eINq||va3@AM@x+P0oEYiE
zFHY=nVy_dUoEYuI94F>F@v9SKoCr9fIWg9WaZV^ss7{QhNuV)0=?^YL&ts%JLvMKd
zV{y3CiA^P|3yk!OFyfRe(&{@QJ3~)_UfmKwNWVr|IW)}egokQyhF;@Fe*k)<Xy{|0
z&k1^Q5S8*fLmy1&!AsqVpcB){X`R^mYve>HCOI*g0*Y>Z-_Ae9iK))eW2p2wi<Fj8
zVe~(P)109@heSx3=>*-d{q!!|EbbL4v$<^YI?FsK<~y;P8ggQR6APVK=EQPxfWFli
zIkA|{$o{uqt1n?rJzq-U^C^nR#xGe{II+qZdI`x&&ZYYj<OcMt5k305)`@l0TM7y%
z);qDmiQk;q>_o(l&~(wU(HZ(5jZL%_(7(&A4ZWRgMYqT;To3*KG9~*Bh}`bPE+=+7
zv4euqRDCBSH9`OQ5UQkFIK7&WUNN-K=;sY5_B(OFiGwsDPMme(oRj{J6GxmlP8*RE
z!?xt7g7jO1qfY$p1d(HmMCcjXlhjG_>SEQ;IB|-K^si3OMV}_iqp9>4IaDyt7Ak(8
ze94K+<iOO{Pt_Yg%yyAGP<vqLF@`HnTyx?&#R4ziRYqDzdb4FMegdJm!?e;D`Xc5g
zH+Rd4+f42-l782Tdj`MH<be|pnf%H4$jE){M7DZ1D)N*&P*DiE#4{(JJMqGaziFox
zkVC*rCti_1&<0CELH=*5{>F)aoT10IiNAH?9T)$=NO#oV)6&;6N5@nrqzeCKoxXzq
z?8Fx*!l@Mj|2gs1i7)|+e~$dd26VgZI}^H*OF!DBdvuw&KbaXbUNo0gKsHX&PsNXM
z;M}Vl@`s!PatSCZpqPN%0`drSKNgV!BG~x5IW+khHRKbJUqB%t^wywqHNp!BD9ASC
z;bcPx1oYh*dQ7OWfFc6uxkq|~5KR&NnQ3tWB?OcfP(}c~1n*Si0wsmeZ-2<Rlz?qB
zP4p(!vO>rQNTEkl2+MKh<poq=(l^RRA{~_kR2D*i{#b>vs(@+&qL}CW7FC@ZY8Xzr
zG{b}z>aBo)08Ky*0W}5m6VP8kEdjL!#0rQL5G|mNfZrE{*A+0bur)@2T?n0|YyzG(
zGyT`08R6KS4m$HLz8LyZM!bMiQzL&6P)|Vh%ciM29T%TQB?!=$+j<J9FQ9>dh5{N1
z=q%uUvW1RB0Zjy?a59N8SwLeZ-?xU7K`QlMfP<B$0-6bE&Ad4y8MG46f_Y2Ej8Yj$
zxorfrH7wg12JH={1Cx#d-CGFnB*4}oii*(DML<{1>c-feu?HiWkwGsZbQkn_$AY~D
z^btTeh59lQp(o7-2pC970pkUFCKiJQj1e$a2z?g*k!DiBhMkVjPosti_(=efp^U>A
ze`X|cIFk{KjYpd)T7MBRO2B9VzY3rS*iy=dzK0^6?kH}26AE*>hU{C|GC@GP0G|NA
zfR#_9D2uKDodN^_E&-wdNq{QAEkLF)?3(m(r$Z62d#B^xPDg=Vj%vFc=e{I*1b8_&
zd6#3rE(e*3yBy2ThE4e?ftnc9)2a&y3OFR-uz-mICJ9(BV1<Cm0;UL<D_|bg`7Um%
z5c*DM292VOWtxELbb>qClK9$-rkMg}379P)laxHBjpdJBjyZG)*u2XzYkj-<?AsP!
zzNG>d2v{iKTieJ*0+t9!deyXdUejU$Jv-Zo&_T*F0iV{kqk0Hek_)xP1_2udtfGY&
zWm+v@4SAip`dR_&1iaqmAa1S@PPg6G3!xivwO&WjoNp4aL%>c7H*%Yb=FN;-7`HN#
zxJ|%z=Fh`yl-xzJ)7tW4tmz<=-Hdw#>}9f#kqq_=IACz)MQgGjGTwAVz)=C`1e~WR
zqowH;enP-W3P90*Ou%sgL)Ka7$iCZgO2D)xrqcp?y=zUeHmwcL2=uad(^*C$@sjC+
zfQz)OQwxlo7FM*mEw+}W_-+R+))fJNkO#Uj)`hDAuF-DeLKzpX3%Eg!MBAo-n*weL
zcqZVvfZG)NcFTPM4+Pv{ewQ&}T;qEJE?ka@jkY`#@F$B;1w10(b~mOXPnbLwkXXdh
zV1VT>+D3|4hRum4q};Y2B3=miTfjd8-cmpN*k95@&_*%9LI$rW7LLS`869s}Jd&s2
zJ8mK-*77ft_lzGHO}iZ*X~k(*+3ld_awv^I(`iKsb>l0!ihz7B<agn_fG`(wxRBF@
zOfF=0A&U!HU7-QaPq6g~G!A#6?Lf<%y7@_I{4OG!3pBcpyB*mLlFNnMF8pe<=jBp)
zT%i6$xRAa%uJ6E5Z<Ps+BiWevX+5lf3k6*$K}rz|T%cA8yHLc1Ld+={_9|x3ZbwlU
z*4Qn@T_{HSyNCgHi?rMEG&X;^{;^cBqzk2}+e%|HCM@ehITt#((9wnRE>v*A=7QaY
ziY`=gp{5J9T&T?5tLj2E7pidUR8LZ5!6+B~=Qk`aSXnf&S@*<n$~CjnIlVFQ8qB?{
zSLzoUS8W%fU8v*2VD3`g@r}0*w8R)S3rkwoCGJA13u!FIxe)Kd4@Uj<Tu5-C31`)3
zG1MOy8Zf8&8@kZQg&}n<bR;sFv)hqu)Zds1&1VXeo4+=m+RxI|g=Q|ap(Ud+_Omy4
zp@j=A+2GZj@Kz+w3prbBQlc%_?zbVnX}5zaY3G8&g~xx#-1CJ7ORcx(QhRqhI=Rr9
z#^}P2E_C6(^>Cplldd$$i(7Vc;eKCBcSb7Mi!1NzLO&OJGpFh5W03wX3~*r(C-1+B
zh_7uM=tA9IHaf^G)0G&)Aujyn!Y?k2BC{fvp)UOF!f+Rcaih+eVYcNhN4PMOJG|{j
z>)nBtB6bVmrQMFvF3>7Wq#vTPafvaFGnR6k3*%kbLb)zXAm?;pr3<TEaJnG4u*ikQ
z)I^lY<$_E%{F#d`c$$Yx%u6>4Q(bUVZj@;bqsN7S3z`dFHt?}Xx&DmY=Ha@bOm!h>
z@QE%=GWcW{rWl+WqO#Lmm~JRDT$t&?EElM0%9_o32B&_`bzvSW^BEU#SIKPQ|1n$Q
z!g30SMqx``Smr|6MqzrCiIRjXxY`W9ngY#*ja+aoh1*Kg`V79(w9bXUx`+MKJ&eQ+
zoJD+-3%|LrnQJK5Bh<HCJ;K^84&Ua&b{8(XaLI)oF6?ySEZ4Kkh21V3bKy95a*qr9
zT-fizUe0Z^(nK{RtTa)t4zNPWgG>&&aG1#vLqE#ocNZFWD@bN1TsTRA&wV)M!f6^s
zlxg~sP?zd;D@go|3sfzUb1t}6n$8>bTyUXwqp%}Urpqo|ap4iK;2*U4yKu{e+b&$A
z&7X}kYP;dWO{474#o@VEnX0S~yF-Dt(nPJ(a@^&~xo6niXYzpYA>*I)MN;=r#~#y$
zu)z9+TyegYl7DgTQx~2wA?3LXFPQ)B!b>KvTzGBdPCwozd*;yC-@5RQhAiQXg!e9d
zaN)d&3nKn?;Un!EA`(S>a^W*|Ohj=JUua{eD|QjLo<{xW!sN!LuZ-UqDfyjAn21bb
zD3^}RBEk)xg-KQs*_dQ!%wgoZW?6HI$Sop|hzJpR>3W_}M5Ks(BJz_MV;LJ`SuxH2
zXt$$)i0*xw{$9sYP(-5{_L9*}m-lW;MGA>1EaF_Z<RT*d9?)J?#N7c+C)a7(V2Fc~
zB}9}I5hKDTBCdAamtK}qB1(%WBciMbiwLWTaw5u$@V&QG6H!4#MG=)nR1r~$`j)fV
zy$z9sbZk4<{P4%NvZL+m5!R|Aj@^x;WR!^NBIb^?nnWbcw@9bbNH>cZ@!mpW4XWxw
zs{35?v*()E6j4hA6|XIVYKRu`<Zc|1IwFdWw9+v-OI^E&x?;%p8i;r-wLP&kE|$72
zB3?wh)EGJvMEoG4o(Rh7d^ClW@4ForrdaEXc)v6bdmL1@A=f~mmn0%t#B>oeM9{TO
zV-cf8{3@b}h!hd2BGN?k5z$vfQxVOm2@wtv%|)~j(ON_s5iLcaf~6Hr?}!5Kq}0hr
zY-_7pBdVA`^fKFCnc9l9<3$Xa75Dw6slA8}BD#p^Dx#x^PBiCFOr1rzx7o>Zbi>pi
z`<wqOYbLQ9t)qxuB6^GHLH37i<!W1dinzJM-f5ft6wK|C5*NLWEpD-{&Ky~)rnR4l
z{vw8m_({Y7n!uj%gG3A#@kcT9KoO^lo3GclzJFy3ZnkI67x$xxIUADb;(VxxVYCV&
zMpD5G5kHHVR@1s=UD9xoUJYsw9rIfkdKLSNh*2UASGAVN7dLBtQUiP9vmWL#BHp&O
zjukPEiD{36KAMfErbT+4OVbglrU_JYswth($tZ|$F%cOhik;ln274T2rif6vplxe{
zTZD(^-|g^<n8+e=A1i(l0VWzF>AHxZ!RecYNo+q^#1tl7_c)GSZ8??3MgFiYfjUMw
zQ^YJ0%S0>}F`K4>oP4=uAuUH%(_F>{BIfN6pC@8IC+W^SWzjJ&q2-dq@I~Y&V(0_K
z5}LO?j-_0jKI2d&D@3dmv020x^0Z{jDiLc%tYf}f#2O|v?fXrUl)GNUMiHAtY%ugf
z)3eY)S!DB@hzzr>BDPVWwYHq5MG>)s`6&^tZrFE<I4I%}E4xJOCP&)i*u%J&k&^qE
z>}Nb6;^h8XBsQzr>M+IQ9)~(S_6QfJ`j3kE-QdSW95?t0DrNANj_|9_{A5hW84+j6
z=S75dN~Yu{uI-|TOCq{S=q};1h%2;vNU%!yL&Q}PnI(ivxF+H{4Ozqo5jV)CDaJ+o
zMVqIH+q7yT9+JmyjlCmcd@kEP+Cyqu?uuBQ<{+}+P{Mthu|o;ZU$*>H#L+#D#}pu?
zk|$n_dqm4R#M($MKuNNED&m=lmm*$K&3hcr8UGgXf(aRrxbS2e;m19W*CPHQHx}_m
zM8Um|>XR*02_5f54BYFWZba{OG~4U=R}Ag*bbMy=k@1s=g!`e-zh5}{ALCcXZ;X`n
zon}c2mCeLRWFr-kkX1r13ArWI_+rZ@A-jZa6D`E!KG<?dI1Wor#`Z5Gw7rfz5+WoN
zl2BN}lHDnJCD4bg0?Z>N<dd*$uOq*NJ$oH1<Tg7cYe6=+yw?F*i@lCQyHkotC@P_x
zgz^%KNhr<+WhIo5P*OtJuGrG7{NahAnoCJIFfcEXS)-bjk?4I{&8P-S{<GInK|)0d
z)g(kosKiAoGd?LD>JlAQI9ZkJ%uuRJFtJF<ockPPY3AIy<D1ryP*XyZgk%Y|B-EBd
zk=Q^&w1hem>=Noqh>_sjA7_)`U13RDmW2*V_TL{DD<MuoJqaBO#8l0eosbOTCH%ma
zALb_1FA$R;p*|Z>5mHL;3*9nmD4`KIL_CpvvPTvojU_aZLSI0%l8_=HRYD6IW3iYt
z3G|(KpM8$z)T@1trV^SlA)dC+LEjpW+vjM>mSjfB))Lxq<!yPnN8gBPN9*`Bs_^t=
zhlKXbJ1~;ikt~^aX6$0<U71Yn8s0-fPg-0F%O&)Z&|AWf5{7U;`$+Wa0Lvf=eI@jh
z(4WQ7oqr}_+e`xurOQMsSq_%)GFV{D<JLb(7%E|@6xzpzN%&cUUqV2_a0w$M$PxxC
z`A16lMZ#zaze*To_-$;i>~ssAequ>JJVt^@{TUzPW7%LF<9G=Z4EuB@P6>jcxahKK
zP^gH+WvMv*F`puZ{vlUo8#klJu=h&v8C<Ctx&x_6m?2>%i#m<n7Z#K-(Xg2$VY0!e
zNSMle8sl_BFSj}$y&7VcggH{^-sWu9Gk%Fo_0N?s&#;^?VS&LHN?62vG2;?Lhc9yG
zJ_pU@3JEJE9F}lI!YT<@&qi#b`lZmfX{#lyk+4?6ItunX$r~u*uBE+7iCHgU`mJOl
zl-y{Dn<Z?Ku$y98!d407u{$K}q|HIXb_vhxTLxL%&_S-gdY@zLfjClj(PVZ>B!j&Y
z_DMJ>;gAHfA&1{jEiOnQazFwh8B>KB%7e)8qvWeAO~)miknp>N0txwF6|o$X@bA(r
zC$z|u6q~Irrx=M$+?SZ4oRx5n=2pQp1?MGPkg#6H1{oJ6T%t&qVU}@O!W9W$C48g(
zpJs!4F5v~mnuO~T9!mIA!VL*GCES&8Pr@w;%GZ?H-;!=qu&*|~&eD|l9SMYc|4zLx
zVZ|BK1M=GwF>&i-r>-|0Z4&?95%)-fwz|Myw2SJN&F4*zCA_<y`h>!Bf6JX0OwTXb
zpGtTpVca>BeT^x2#r`*i07VV?n}k<1`KwL0H<>P8F}<dFUSlfvM{2}s(_5;9W<bJ6
zy8fp<AtC+)cWKkih(E8I{(NA1t67&hET1HNk?<eIro-}?@kR$r@3`i&Ga;>yW#38D
zciQ4)Kt>@MnPg;^kyA!4IW)R(8RzQe%PwPYrTkfBWR;OkMxLmq4Of}oK1zLc-E`oL
zDTfT|a2cO9H)Y9)l#!2Wc$XF-gF2a4Mw4eLo4+NkIcU23H7UQ0dvD_k$S5cycA~ZN
zMpF&1^$)MrdNtec_e_Ol6p>L{Mj07JWsFF)mXJ|WMll)J_k<sdNGLAj(;ZXt?AVJ5
z_G<eImXdK`Rcz`BQ}4f1%E~Aw<IWjVH5uh)jQ`ZSf{cnX_P<TbUnE&LZK@=riVVwo
z+xa7=$}(zgh@JPFt*T7#Hfiy2WU~{uQ=(*4m(lY|%E|`KAN*#EDUfWDVU_W#j4?85
z$fzl!rHocoRz__amy8q{(K71LSY*V>h>>BFVV6;tCa|%EhX2zB+nbZ7mY3`ouh@t7
zux;;XiI?$%jQTPf$fzeHL56nI^k9Q+@EQ}XJ{6g_)zna?7qQwCWhBXH#M4LyUr(DZ
zY_%oJXe?vaVbk78O^f79CPGV)DkDusa~a=K;*Xv(HI*@_VSF<gt2dZBZZ;LEn*Zh>
zrWP`~-ZbS{W7?i%Z!M#ZjDch(qpgf~G-_&5hC@bs8C}RyMhEI!4_haSmyNcL%qf{C
zPjZW!DV=3dXC_@vq26|r(VgaDor#Vk`y7NlI7wdGTSgxleP#5cqd~s94egs6+RN6>
zw<;l$3eH?(>MvsedDI`K+y_j~!=}M9NE|9-n2aA~456~yY(L5Lzi)Z(o(j#(Tl)7)
z8N0UT8!6)#)`!cOzri*_#{CMGwO8z;SRBoslRPV;#+gtlB4cHYlQB`oBpKcAn8wRc
zWT-MG$VewYmvM8SLy+O3^?hI>E;5nWxbPMmiEmcL%A9QcB*iVmBf}@dFQZ|z=BJm(
zdTB*gndrzd$R3~trEyixPvLW8y-Alr802Uw(LA2`$9;~;GN#B_C}WX~sWPUK^PD!#
zk?}B3@^qR6s!hfWPLe{gGn<Q(Tb{XUY8PqWy3sUO#ylE3Ip^pWC7U&0KpnnlIyj*v
zc`qdw%UB{~6*+*6vg=JtWvrm_{ubLIbDL!{mdoh<FqMw!r%fwmoP3+&T~Q#{4U_gD
zb&ZU5G|WdS&Fb6N$~f^kL?}riwo%3=3PuH`6#OP*vy4AwJd&|R##R}ZXd{)eO~!T^
zM`ip@A@e9@2kjd&_Q}{ut0rSNkK$#4<UO?Lqw>=H5GQoRHs3Gfpo~Kl&N2pX46RyZ
zhq%KsXlJ19wB0Qe?Kwwy=b=sYn2h5x&d4}RJ*582I4#57$a;$6E_d?m6ZRKx(kRRi
zHi}>0AfEJdGR{++E@*K<25nih=M{Lo*0%q)=^_PSllatz7Q!pkmW<o9fylT@{l90r
zM)hAX{kyy1kYb@uUZ-`WW!hl7$w=fDMfw^Ok;&&wcgX|ECvzvCyOwf~>e*x(cQxe!
z?PF(64=Hw*#ztJT5q~V>iHvXsSrq&w<Ee}fGX9nEOvZB=FR6PnvY$55kT>PEzmV~_
z3<}s`SJMbz%XlN>9~p0{t;41Wy@0vB<@UfV?_|8^h<koBl{Rw<!0w3&4Nk^>q^*+T
zl=cJ}pE<JJ2TWgR6emrz>n`~r{y!Q>YYU0rWrQghur@Z6g2-m^IS1OKn#Bug@tGC$
zziOiEv~j<ivMR`?pr{hsV6!W9*By}x@+ruvAeVwX3a*96jJj>gt>9AC`~^BDI8x%b
z)r*W!&|PSmSHTxsbIK*2U%})e$psZaK>-D{iQ!p2THitnx}Gu7QA9yuB{V?V;R|ex
zZBsvAiTZYGw3ve83Q8#0ys|*oqo$%2n{RO@lvYqiK?emL6_iy_PQecf>M1C%pn?Lc
zf*J}cDyXEOvVtnq|3v${uSugjSg!9WSXDtaCFBog1yKsB({aRPQb7CXUz=>Fy4&(^
zu#rNoTNIpa98Z>nH5JrS5Tn4Rptgb|^9$5r%(K=OP4lqUmYfuiBc{>~>_1h`Z&$FX
zyDe71_O-UU3OdbhLj#QChT;{}TpLRVHIbm8zJlfoS}16sprL{!1<6!xSZe0=rbY@9
z6|CH4BA4!;JE2AUIC6%@3Q`rMDWS`WCJIt$hWD82-?CFyQw29xr!-U0bib)%V@too
zrUpk%oj1j{RM1L6TLtZu(0RGFf;I~D(Jjcg3+;FO)1WzV2lZ;dqrC#@kcmjj+E65}
z>lM~XL1zWy6pUBUg;q+z5CuOe=tk?SptpiP3VJB$si4=0yuGN2>!woIO%%NSW<+dC
z%18e5$y=Z=`Iv%%3i^>>(H;`C(mqz^Y8Vmf!ytt&=F$4JX~Zhq$TOxN6}*@mPRXy^
zO+yt7BR8vou?l`xFkHb%1-~fBy3IC1f&G%*IwK<eUZ}ZI3Pvj!Lz7v{5?<f_s{%s0
zb|O6Hx6)Whe|9Bw8k(RWU4d7DPk~c`z%HjKaFNd>#gqGq3O#IZx-d4cq(COet8X9D
z)<!;Q-58s=&Zg2Ncd)n>cxdw1nYQ+^tU77(D+nk!_at?q0*&TY!M<&#Al1LxRJ29>
zS|Ne(hk4-%bWQanbrM@nRxpJLDFuhePFFBPfklN?#Y_dW6ns$duY%bMJ>-l(6kJs>
zSHV2;QU$*&m`}?g#Qb!<+7Sf{6f9IiUz9IWutvdJ1&cYkM8Q%8%a~K{N(IXezCuCW
z1K}jDVr8|VXNc=)jVRm{tY>|Lk-L$}Ci1|;;dE?KaB8-FuaUb|!8USuPVQjb$w-#F
znCxcU!$?h&PPmVg`xPAEE*<3LA;!ao<<2^hFLPw4TQ2mx#4(yQ+C`s5je6GlxPlWD
zTv<&g89%(XoKkR_`58vaI?E(WMEJq?QRfw0;IdTwBJEcOzpUVj!Q1-6t|_>#;7@V`
zT5EFtQK6mifr6U~ZqdGB$wwbFZd1Ipw%lR7%Sg$4OztaKv@?v74{6B?Sq|I?6F%4;
zD|r1N;jMyq3ZBp@K*3W5&lJ3*3dt2eXML`O?tT4D&d=n1jaH##ozRW7uXXU6#eWpM
zq1~*trOAHBvR006`yIsJQ$35KlLMi*R1vwpDEgy<PYMdEfQrwwKPU)Okx31G>qnpC
zu30VrDfmj!wBPYf!FMM9{SHd5-0#S&BAhI1SxyyB%c6$nHk*p<DzZ{-dULviN|-}M
zP8Exq$K+FyOT~{rCFW5Pp&~bPN{-NCOYe=%t0G}y%SaW(5A1iesgitszazhj0xD`+
z+fwm&`yH23V+yG#Og1XYs3@Xh{?jOVq`i3-b5Rxf4mgUbD6XP}ikJhAQYwT4j*_f5
zJ>cknz%loL<8XskwW4ihRb&e@Raa4thWs?DJYxk$N>)@+iFswlDvVVbt1*&I6q5z{
zvzye=w<L6!Rs1?RoJbAou!=1zwyLP5qPB{rDw?T?R#8VqvWmtk=n1qKnz}2dBo#Il
zb`^DL8dcO+(LlvlwOO2scojdWSXn-;ZIOigv+ea%JUHM;P_gHLgOZcfW+iI0&2iAt
zP(`8&B8^m>x3;Zt&~Z|2M#&Vl*$^#^mf-AiOA{3-Dk%JK&aED1weMMGNmY?XRV}lW
zni(73H%oIBEmRDq6;biul(3d6+No&ugN43pXhpqM(T28~d0FV|hPEmi9(0gS-$Xc6
zWLaTpuc8BurLd(VV{gVzDmpXi!q}Cu8)J9I9x8e=Nqd})%Jx#x<)DKI9eq^v<*a^;
z{TT-^Qtm(%gA7ikhS0cFte}ZfF;vAcS_KtjXg;f%epcxZBTOTh4`;m9J!~YCUl>O*
zlI3U>j|*ofGFHVn6?0U~RWV-01QpX&EJ(JbGpZ`wDxBn3DqO5kmaIZlA#w8OmJy^3
zW>gHtqr$5qsA8fDABzE_tlzNFROkk$8Zzpcq+%+IlT}Qi)iEk3GR-h1%NfjPGE&)D
zDrWzmTvFz#Sj@_N6-x)zUBG-H<08Y7>RiHnDdRFmD!be;Sfye$4KtXyS;ZO^!{^(x
zo7-$uu~x-86>sO;*R!~RR^gz7l7wWiiM+)Z>pkfBO~sOTmVZ;)G-?q+m26Y7UBzh?
zXH@J^u~Wq{701=klO(%T>{oF>#cuLX6?<vwip5MS6|+wb{U+$@f_(Iomizg`52`q%
z;&(OlD~y5P>dY_JmX5<Jh##R+n&T)ViHi?9=s~7kS*-7tTWEtiq2eSt|KZRseM$}8
z9o?TCe^$jg71vZ;r+MCBInP0TnPdC{<3$yhRCFwv@GU-#!v6{d^08Q|?GN7cuF?<=
zhHk^&U}JjRy-C#;H>na8x7pwhZ8*1*$$-u*cUif|*t3nLZjo#cRs5;q=}bJEiAUs$
zv?ok~eF~na_>1-^4dpdFRq;&41|K&1@La_U6@Pee)q}rPyriDHaovqqG#m;>H#)lU
zM#VoWEN)occ&p-_ic;>-PW4{J2il+A$mYhsJk0NmAIYU>MSo&WW}j7jG5CL>9Vt}y
zo1rx66Bov{k(h}|W;eo_WMQ<<45O^<Zsg!(5jS!&A+dlPxtQm6BM*}ZHzJMPyi8t4
zN9Hq>{7jl=u1{qPx&clWVl2#<(H7+v<zz88iZdy}SdwvHa%g8R?M4|+mSwE!Mmaa+
z?8)UhNd^_%sA%v?Oe(uk#Za=RwIZ8poQ!g#IujG4neku}@BePpbkp~JNO7YU>vi3T
zb)z=(Xhy21jvFz|ZH8iJay=~~&W(6C8XEc!O#YbLydIMTL$B{f1LmI=W~K`1XvE1x
z#w0hAnKaHoUuZ?>NOhwXE5y^>Xln3gZZtP|3nne88|Sl;S!+XY<3?M9w`1aPqrIVA
zY@EN78=c*l?#2ujySOpNP0zETs~g?i=+0t4H~PEL!zk60NiW9UZuDW&moZ~y2e>hi
zlOq`ixiORpb!@O3KN@@plb_u5{B06t(J_pbpBaZUj$mvs(L%YuxG{>8#7DdFEA!>u
z^HFk~p-W80yD`B~(wR6J1vgwwL?gE~yP52U;)cqi+YQYP-3<>Xy^KCaKO;34U~;-o
zsM|s2Q{0$n<W6#9GV{j93QpzZG)CK`@R@GRa^sjA$K9Ci#vImnxG~p_d2Xz7V>K)D
z8J93FU|i_NA|}-CVmC7CUur1Jm@Ic=1(TJAK9`+*jT^ri%33$p8GJpH4U8Mz*ktHw
zmlLR!&79og##ScV7`HRtFP@zYcDk{Ple-xYG45g9%eaqmzZ(abP?3X7j#f-NY$!)E
z6vp2fW75J;FliEFqar8WIOWD^Rw#MVjWf*8GM+Q^^Gq(#7RtNXB}2c=<cgbq3lrKE
zhonVZbtC(*&;W0^anp^y9`y6zmK(Qem+-*k!5ug5y7A48?_A`b8&BN$i}`&w9x!>x
z_$T8dMyl{JdFI3{MCf?x#?Jf+uiSWM<UVKe!i~R~ykx95DP;eeP62NGLz}-FpILv$
zNLl~7@!sGcn5<0-|H$N%p_jgy_lv>*bK@&>nno%f=0PS8DtJ)QgUmEc?puBj!ad01
zK~`3B8G1GkvNO-Yn3HixlTbZ$<n|zsVHx2;l|`BJax&6`e1_gGDZGFO1wDWVg*+(D
zdSS-mhD{MBMH!1RdKQJY#1bBqG;B&Sp(e^ODQoEEn3VV6)VNRpo}C`TN=9yF>XpH(
zGO5NG<-sfVShEKf59)dl>w%fW-^vCx7;7?8g|$4WZSZI&br@q9Z64T-+(JL*i(}rz
zgA^w59{k`zJr5ELn?w)lGjG7y(9j!s{^zSnhLX&rF=NFK*-|}7^PmGK2h5Ic%A_@8
zGsfl~v|!Sbk$T>WNk#~?@u01txAVZkyuG2&2GY@kP9AhNlpY>*F?d%Gx*5DXlZ*|g
zrw6?_*_*KsW7hEz)O3Fj26!;bgV`Po^k9$&ng==?4EA7z2O~ZBk&{Che`2J9LzxWo
z;AcY_&V*Y0g~>P%#xohkIGXWS#xaazJ@m&VAupZ4Ny!7*gLLL3Iz14Wy9`BSl5b)b
z#ZbIVR1e%tJd7Dv2tMY1Myf49vy>JZZ_tB@9(cIjNgjj^2)W{9HWQk~b-vVk3iGLq
z(>$2YWCr6*#*8b0IUdaQV2uZBJ($Nj)w9%t`J@a_SYRj%nJi*l%(%qxpJkj}&PZif
zc(BsotC+0zAfv5y9<2A^IEx!R*yzD-5B7Ml$%FiJqR$<4Y~!ro7&m*cg$dQUl}UyV
zZ1-S?q3>j}i!sCN_Ihy0gN{w(_8B(&nH*p|$as>^N{2l-V%Qw@;CJT77}ME++CAaH
zNeXrrPcvTh;0%+qjAV1pgY(QUFlPTHv=En=UuL|*NMiKheAhg<PHlN{%!?Zy-1H#P
zizF{@d2pL1!HWW3-0|Qp?Sv#gjk@Q-eOg@Rlzia9OWI64c<8~O9z5cjpBnW)X7Ysb
zFGiY^XH1?mQVlPd{7slEbPl59H7g$&-!T5;!CNMj`;N(b^5Hw7tGj<a_{hp9#;=T@
zJ@~?e4E|%Xd~(t^L;3DOhDf=YyvS^fCESZF%(EIwHZQz<{^~ZhX$}^1dXbAsZpJ)@
zWrP=bnMX3_GxR419bYF!7xbc}7p1&_p%-FOn6U_BQO06k6lYR`@#DA9#a?MI%6MV&
z!pve>FDf&kta41sdr`qqDtb|gd4_XVVP2K78e<eAm96gm-&K>v3#%9LUi`pWHN1#n
zQj@WkVPBg`G-DmcjH@Xdb30>QFJhU*G1AoqHB^r|k;c=T5+-<2pOprN-q4Fi1}6_m
zrjB{xp~?56i5Dqe4DsS8FH*foW3%pFH1(nx^KM==_o9Utzm-hu$Vy8u+A?Xy*qV{r
zZR5pwKF1Mn$D)I=J!1!Il)Fc{omlDYMHeQdbY(()%hDqhO+CEm$x1IT1{gNIne<`o
z%h=D0{!B7<$brnM_#h^Oz4(zy#!3zKVwe}>44a=R^vt2_JvxT7IKqpOUi`v*low-|
zj5h3l_2NTnXwM&ODDCRyr{s7qCU}wVg_Cv3$Q8VBF&7ObqZ=|O6)#jKZpKA(n^9Fh
zFZ^C?@M5DE0WUN!rh75N3!QDIF_Kx(i-`uG#ALD;Qw(J)lZ%hymJM%C#&pbNWvLgl
zyqL{=4&wsGxs3C?n9rmG?}Q7PFJhz`7JIRT`Q7Buke4xE?!^iwE4^52SgvBSnsE&y
zjd~rE^^8=UPMw<!zMK5Yi_KnaF_Z<jV#sEz7u#6bZs<F_*vWjCp$yC)+R*lRvDb^-
z)1&vXzTb-jOb&W+*swfAE6bOBWPikqqpWw-L!ai3dvSu|#fJtyob=+97ukKt;lpV!
z&d`c`@vj$Wy*TH^Lofd1g6F-s#N>h(okt~IWd4SI<FXf5y!3VR|E_y)dU4g@*O**q
zyulbfDf$+Z+l+S@?=s$FywCW6k-9oa4TZ)dPQGM(?8Or!_b)G=dhv{t&l&$_eBnhW
zzUD8=R}NIeE7o5#zVYH8CU3oX=f!*G8FQ84u4Mnwi%(vB<}CevXm!4Lk;(VJG5*K;
zS1-OX`OZi-VLs$55&G1YnJvQ&`z%bd`jCyulEtBz%IQNc9}4+Un8n<Tc^UKg5W&R!
zb7;9EnG?y!BtK&T9||%7<K;7<yBS4%DC$FHAFB9JjP){%lvSKb3C5C)r5H;y)=vvB
z%cLA*c}6N#fk{OlDj7<~6-ZT1M*C3BhbZRNeXueyF`5~v1`Csnj|Me-sA=f6e5lQQ
zXO+;5)$t+52OBGKK6n$XcII^r`&cHUCWNLg-iIGJS&uQnu&FveqM;9sd`S1f=|iFq
zNj~)Sp_dQIJ~}a>gAX0qxCvux#uOh?jT+LJH1(mG56zjE&zr9Wla`FF80-BQila8n
z+cLIeB+<d7JtKX#BBfc~m`<GR%-DsI^sY?0`Ouw74@0LDTyG!x_%NK6zKlOI_A_ky
z`!Im{K*m9aKG=tye14?*hxqUl>q8lb88$!r@R4ms7|KW=elhqcA4dD|s}EyX8E5EY
znMilCjb}1}amu%le+oXhIJulr^kI?@lYNkUkbO{C^fQvN%EZm+p@nARGjgLogkmk=
zgJvkY4?%-ZWI`S|#fPcP2i(j%jmcae=J_z)u$<w;OoPv2GTVnahO%Z}sN3^7xtMVQ
z<3b-6G5P=dz!FX_WnAX_-`Q}54=Y(&<-?bQj&&<-t2w!bk!oJ+!#d{c8SCu~#pWg-
ze)Hj?AD8^t?86q$+Tq7mAGY~W(T_@gZ1-UY)#<~3w2nUP^3nTg@xX`OKJ4+~3K!Yy
z!#*GGxsuNLu-}IRES~h?Ad}x24>2BQq^6HBIm$RPKJplo<3{cYCiLOu6qD12eul}}
zP~iOUPU(48F3>2LTw=V;m~ml1ZT;cHRUfYTaGmwrjHKW2;bsPBtj||XcZ}S-G$Q7C
zu7$3^A2NUL!wVn&Wd6voeC)#$=6^9hHS}i`uzX$pH+kc%=y$BYq`=>o@XD}x?ZX@9
z|1iEabc)mW2LIs0zXt!v<dYAd4TY{wzxt5Hnil3qCV%L3@Qt&+`%q_L=(;qsAK|PQ
z_9KfQS^dbzNy^IRM{a{>_aleFbNZ3X;QRTMn#Yd_R`N1NGSY2us)UaGeiUG(AR`z_
zFXRW^8X{7}kD@FV^P{YhTbxM=#*&Ps{3vbYmhofm^-$=QW2L;IS71U8P}z?ve)RLB
zzaLfosOCqaA4z^h`B9y1?0%S-+$o+`%MY_3ah^nrQIFM+8V0Y)ghpE1P@<XC@gs(b
zjWOd)T9<h&)y5>=kNQl0V64YT-A-Ua{cK<;4Vg3|d-k+sKN|bd-N<d?M{_?~`0;#N
zbc!FThMvZxsUOXl6m*C7`IdgP;$$br){G9uHjHf<+c7Sk7+Qk%%scqekqO;AB$1BJ
zesp1_D`PjtXU59*;ABt6UVijuLZ$jJ>C3osV)y_*2KpiSA^S1NkHLQY;>WZ8Nk95A
z#E+lYEZ^sP3!lV{vxU}ls8P=_CO<O{_hST;kwz}f-Y7pt`_b}3%&&e-V0{eZSjKUN
z<#<0bt~b&R#p#D&a2FGiCfwLJ6hCx7f_|umjoS~8!M%R?nEMSSz(n(-NtLvWd7DW7
z>Bl@jCiyYhk12-b3_qqCe3~EAnXlmaoN4H@n9OFJ!<dv7G2f2`eysLmjUNjQ%cV>f
z`LUSE5<{miP?q_z+>aHktTc353+mn~KQhQ#L*L@ZIzQHPa)Te641FVcIA4+eMyCLy
zR7P2<XDgd+qq6{$WaHX(ryslg*zLz2Klb`@!XLUi+ULi9KMwhEn2itkanNWbtZ!2N
zi12nd^B!U4s2{)kQPUDS<<W7B#p8?}>RbC&4_$qo^y3s)d)kjPew_6~IU7r@(6M()
zi*tUQ=iCc^OxqsPE6j|Z`r2~Yk1I6i0n7;C4?nK@Q89o@0bKLrx*uQt_~yqAKW>t9
zQlL?b+~{pT?)c%JYg>CN?k+3TfqP8Ss->mRPq^;~;R8P&G9mt_ACH(nW_-f<my!F_
z5Bs#HWJdM8@Z+r?@3^+V8DBEK^5Zp=H;n%<7UItc!tChxetcl%`ON5T-$S=Y{^jIH
z#!rl&{rJM<KgN>9L!SBFkFWsp1P~EGrT{VrkUN006Qj5BCwejn4<Jk6f1et%29V9*
z*_q^E%o#u~CbOr6Ze`GMHzB6cz@)qZ6bhhl0Fg$id;#QVUcgWa1^|Q838Dz|(uPu$
zNwENm8%l`)N*cTrlL6;qsl_q@lr{8nOv*D>2q5D#ROJAw1kgKxJ^@q>pjrTp0!R!X
zDnReKvepWqb^z76h>6k6NHtrSSQ%>sP?Jfg!J&OMI)FNyjAuO3vPDb)(=DNiwXtFk
zpe~bGM$+S$WPAqsA%J>@o)AENgEwH(kdd~aqyUlwXd6Jg3?+c(hGi2bDFLJ!N*a@<
z0W>p|jN45u0%*xfE5_E0Z44WlB8S1d1km2#9Rldcypy4HX0l;omac}<Er9L@@4=*J
z0KJ%G46|<l{Q?*pz_<YVv;LD|KY+==00tS#-~fJPKEzO-^CiJhP7Y)IIe_5-j0j+)
zVKX{_Uzm?F6uMtQv;AuTV+>_)zJ&42eF6BHOb8%70A~QDMm85%Q5anTh)g6#nK5G;
zsZN!X?f^VYNbv@caYv}`kfcBWudaq1;P~Tu8XM>V1Ou2Dz$8viF-lDi{O_BcsfIF*
ziI^5XGk{sl{|sPu0CQ+}3gBu0a|4(cz{0$iD*?<8U_k);+3eV`q=f;j2w-IZ#1{py
zm<jPE0W4*{jB&Z4({IXFQE1c8JOkLo;_3j_Fj>pEj&VKX21a_8l`5p;w*YpsvYBxU
z<5tFPjN2J^Fp@nz(YK5F?f~{M*~>`(+(Ehfm>2J1IS|0X01gFkIDiuYoD87bjhG{p
z%j75{DZewJo)bULT#Knr6Ml*|E@LK72XMyVyRwE(5a$9o&&mZuzsTfL0GAD=`J&9!
zjRv{0T?^oP0QXtH5x~s=ZU=BDfXZ_%w*uJM1N#1OdeLapHkP}zffUJ>S~B~+0Kx`Z
z>ER#x-7Y=y^nlAgWTf|z=C5yk6u{#Eo&@k$0RIH=me$1{^E80hZ1arqIpYh)zZqXL
zzG9?N%t{L{Gd2260G;fiyP)q_&#obdhW7z{2;koUKC+lu3vJq;n12i4vr)qrCjT*h
zWz4w9`A+@kBAFPeECp}4!Lu;Qsv(=9^h^%VsUa69OEBivkdH|o!zMyQUV}$6S)Lk^
zUqb;61vy!i5r$164TYH(VXRj0e`ow+8j2e>Gy^3KUW!R+#xjg$wg25WtDvExhP@N9
zZz3vbsI1|Yj@LS>XsAkAIx6X?rXfnh0u2i_RM%kAFj&Kn8q69j8ro@aXs~Lip`oFM
zMjC2rsHGuRL!5@%8lpAWG}txN(a<k3vD?_x7!5g1)@d7)?*E)T+?_yteY7=htG%v<
z+@<59E!KDqKWM10;ag<EdK!j5GYx$cm!M(fG20n6`CxTx+IBmYYM_BCxs;fgs3A#1
za}6ytBx`7_Ayq?~hBrrSO*BlXX-%QlE0~X#G!xz&n-IChUg)^3sfK3M`6A}ZBa&x~
zNuU=ywA9c_Lzf!XHX4>7j%<jx*3dpr9FevfwsbV#{KrPswr8_08oDy+prNCNLSqv;
zY3QucpOht>TAP&bQ@t<cE!{M9r-5teuc3#Ao*Melav!txqH2>9X+nByAhQg9T1uu$
z`jY=7C6YLRD=(9jI7q`ln$o01I(m*xpw3JTj~k-lCk;Uj6EzIgFie9}gP`GOnlTN(
zY8azo1WlTTUo?!;aOSUsBI}a2_Asw*lbB_F(r67=dzwkCo~7QP9_Fzc#?f49NY~J`
zvN>~wxHE;#<27t{CzEl?X8WEawtn5>mk&;JX%IDdHTX108e|Qh{w?U%plBdVRRg`$
zVq#D8yY6Npb$6wDG&DJ6%d*`b*3<0Q5YTYDms!`KX*gWSoVl`f+hY?EYQnrO$+W{h
ziG1&f{a7#a3=NYtOwq8bf_bWj>z&QhHJq<xou;8=PcxB+W#dSksbQ9e*&60(n5TgX
z&Sm_wYMZ`$3bc<)e7H7gJ{P1Sl)Fg7VtT4j!!ufC4NEorPWBp>X;`jdtA=eFR%lqM
zVXcOB<j>m*tkSSX!=^H3TDa93$bY`7$+XH7j@Z^~*g#ntexnH~Z=qG&1oK7>uWMV&
z)Us~Y=ue6hNZdlMRmuErv;9+HGu5+Q!wwDmH0;-~Q^V9k=3N?gYoH>OOJ(<HXj#F$
zmwdQdNTIiR%##uhXgH{0NG<D84Ts2=#wHxra706i^+}crmZFZd-I?MFa0jSGGCQu}
zgoZz8p*5VOb<uE+=0U@0at7L7%3IDd(tAR#Z?;n_P1h&Qin3nNaFM1o%6f%8^O8pY
z;FfTi9O+)d$MvnrjGCj)?5JeEMvJ21o`(AxZfLlv;f{v86zrwVw>0SY5^mF!ZnjfT
z2x-y=Y)FcilN;_XK=bfG!$S>^H9X;o{Zqpu4fT=}seWqcc?B~~CN)$mN6Wvs5*ksP
zTGr<pUeNBLBbSc9HN2!AYWR<KEt+r*-QLFjOEae7AL>Ij^Lq{SjueW-w;JBjF*bo-
zqB6LGdCX?}2U_l;X0lmR$o!EUSi@%urOoz+HLO$#?M1s%6Ti~_LpA6K*YTY;kY46Y
zIzG<HOD|vv)6w^lsX=+m$}(~GwMkiYWYv+KcFxVMv*{sA@>p`V4;A91!?qkc=v^zW
zbxHKzmE1b==qRG2sE!C7d3F5U-CRgVq>g+#3g{@PBfpM^#m)5cnc~~+Q!87E&-ypE
z#_}ZSShd4mwP+kA$(IW2*v!6EOh<7YjeDBQ>gZC|TtY`l9i?<6l`~%*ou!@CT3SaL
z9nVrzC+@IsoN1xxySl|r_T_Yx*HJ;o_VQ**=Idc^*TY<yHh&!xbfoL3s)t_uSWia+
zodtA6>8P&5q~p!pq*xth9TpwYG+rH6>ce(>4IMSP^RzA3qOu?I*4FW^y0vO9b9w~}
z?IiUpTN`yV$LO%@sH?-KqgGe*x-u3LJB78}SI+$CsfpgV6Q?6y$J&zSAN0@)idD^h
zDw_%G>u8{(w~jtK8tQ1Iqm_=<IudEHI?{AB)sak7p(8~{DwVAem%XMnA(y#{jw8ox
zi)veGXQRFD$e09r4^J~4OJ?M4p`)da<~n})CsycXCM25)|HY0~lW%l4x6#p7M@Jo<
zbhOjq(9vE;2R(Em(_WdJl|yd_B5$FS(Z?|fSuNJiv;;c3>*%4Qs}4Fhb<=TeX%g8i
zDQ{^~DrDSK$M9TcnwDNV*5r<(s>qB;U#eEeNa~4>{yGNe_({i59Rqa?(($8?Avy-@
zxP8>tu$q;8l?sw?(5W++oS1W~oz9YN%b16eM^XK>E*7hItDTl_1a*5vvRK?q%7fv_
zqjY>LWge@CPMxE5{HkLNEqAna#Sz<}m$Bq^r7D}paV{B**Xilagf()4Q-`4AfR2MY
zTslM@^K~rHA?c8H1a(Z*q3BR`cy;)61kBdlj(9gY^Sab=UE@8p;%k%E*0lO5i^3r-
zPS>GPZ5xy5ZAfHXu4EkT%oHXgZe*FHW3rCfI_8iIm5G}|ozXE}$F2V6sXG0QV*&-&
z!zk+v9W$va9h0h9yPB<MN}DHEv;MX=iB1g^hGVK(=jxb8KBgpx;`C`$Y{|HVIu_~J
zsAH3k#kBf5R?`ybSgK>0juq6Lj^#AED(3xFtb_LyAVRUc)NHL<$h=Aig)<%Z{xPl9
zu};VJD%RnLZ0mJw&_QFQhQ9ojKx3p*6k@+ocv58P*g-p0E$bE?TXk&H@%4KwjhDJa
zea_j-Oa*u9*hSuAw(irhoBeQ)j=f}g)YiOSDoqQ`(l1-=)Gp1^ewylPp|jW_9fv6}
zi^e@9-_~(d#}yra==fd7F&$@goYiq$#|a9J9rjb?kaes@>sU|fc=4A0Rx*z8G!Nmo
zm!?ZkOy_i**Kv_NmbRuk)(aG3mCZ!%e2=A9MNv;EUM|!8m}6)gX?etUmAqQV9UXV6
z5*;^m+@uAffs9L_ux(p1j_SNkp0*-2=CJK#iMSo5L%Z%hu6$x0>wOAdv$aVb>jN52
z9V;C);WU;%bv)AXSjQ6`f6<nu<2iZM6Vp>2`#Rdl!@CV@LH_@Orc}pE9zK=YULkb#
zNW?un*<8c=M#n!o?geo_h_|%=P#gs@G>G@Kg5(cD*n{|&c5)qsf+!rsCmo-4<Om{X
z5MOlsNBc$);X!<*{?itn%bY2QUk};8>j(=%&16pSTCz8a@x~?+Z#6JBZ<@8*iMT95
z5M~P^YcNzqJZRV7nX(7*qIg`vmZ?7$Gv^8-cMyI0m<t4vCy0n3B7?{mM5W&5yg_u|
zZ$I2B@z>wuHU=#DgIL+yOdd<($<OsZM_CI7@pm6Hg1Gj{bn%VN(#KpRh@wGMrAC7&
z7DVwN$_G&)h!R1R45D-pWrDc6x%HEeElLGZZ*U77a#YC^S2l=T3!}>g(Ir0dQ1&!Z
zC`+jnSCP6w-BuE+1abUXLggS<d~Zh`Xw*L5e8@pXdgiPj6-4zQY6ej&2vZPYNA2by
zEI}k6auC1au~>tM$z-lUoq1!Uq>`FS$=X4@wxz}d@$z;|bP#oDwv~h#ehY~-ONG0|
zlU_H7*dRIt(J_d)AmW2)7DV$PexRNQ(Kv`EK_moGKZu4wGzwz*g6Prx%ngG0eyfE%
zF4Z9=CkBy3lSXg;=lPTe#QtruuI*>8)8Bk(U5k_;QiJ#~EiavG=tv8qDVY^8|6Rbm
zwyXI{Ok&*5q^bYJwg{q45N(5K8AL0Z#yO$)s<q~7KVM3i^10sZMXlQf;RvFA5GS+8
z(aY0j(lvlRF)}rAb|y!sAUf0f2GN(MHwg2`*zQ5}2trPc>q;xNAi7%+YjV`jx--c)
zK1<Iaz40JRFPhA*=FWd5^rl9i#!cyJ{*sW`FNpp@JR6f`a1aB67#PHcoaRA6`U~=e
zOWW*SkG9^lFZ7DJPWSTt7{rhu=A_1LUer3)n>fmzI4p>tgIF8Hx*&!JF(L?G5Ps^|
zA;-udMg=iCh+jA<zqXP1YY=0Ca0MX-F*b;CK}-lDJ&1R?<LcaRN6s^zhkriF>SPkR
zD@h=yJ=205gS_QrbDKm148k3RhZeWLnS5BG7@;NGZ}0r5-JJ+C;gPu1*R2x06nAS|
zkG*McJwG}Sgcij7AQl9n2N4WnMi4WDm>9&QAf^N{HHaNAYy-=f2M&mx9K^;{>y}rx
zX=MMx*62jsbS6z++D4Q!=c^buD~Q=N4<*cVgE%)nc@9PT?YLH@?cHWsu9vk?kj~@y
ztsk%~3}O-a54m>`iz%AEnwA8yG>H6p%_(m}HPebyqsusp2u1zMAXd@jlkcTjt(xWW
zA^RFy%_IMhsqcW2qI$kwvXaA9K*=CsU}sUFch~_2afTfhSe9LAaz+rzIZ6ga!0p^U
z)7^js0Ru`@6eQ=Ib5IdPFd#-m`0g}6zVkolojUdERlirS>Q?pZp4r*Ju4jY1ibk$s
zfO7G5F1FE5FZVZi(O>KFN%vCMu@KGmulFc1zcCk^a`8Dgn2WD+u_YIqb8$8r{4y6z
z(o;!6CMGjC<DWEodn=P-aJ#P6gM<@(zC9N^a&eT~%*D=J?8?OfLXrE;m$Ew-d%YO#
z$;J0SrPf^$+1om0AJf?zy|^pzNmYNd^2y~Eh7Qj6FU^yDC>MuwafFFbKKZTwiA>r4
zQ|j?toZ#MbaUmBcb8(7>v5e&6G*kPB5@%RmrnjVWi#OB$*p$lIUOW@*?iR1IJVN2c
zTwKb<m0Vn99-VL3>etlYcLgrzf((^u%&n?H+Hj3YT|Sx2x4HO^u$RzY!VTI?TuCS;
z;btywu@2|rVJ?2i#qC_&%f)ZGNc>hI%PA{iE>=v<xRZ<BfpFF9?S5ujUCjRri(bFd
zA8ZIb{I%ZBnkm2LqW+}N@&Z}+31-%oV!^-Z2g18W*m^ekPIAhhEWa7yzgTKogi}9i
zNBU1LrW6T2pl=7X8#W_jRW$ftE*|BgpoBsa9<$;}$S2{uo54I1e%)H^){t;s2}}P?
zt2VT?|5k8oM({}6)cg|0?i341czsJG_i@@Y5}uXt&uigg5(-PWSS7iLgrX9pog$G|
zCx6P_my&;N5?-@YEH0r0U&2&P9$q$?`uF#ymX=UPf*>JP0wg>qp^gNfgy$ucl~7ee
zH3{V;l$TIJLPZI~3I|`1(C9|V7bV<klfsnwb6U!CFD2LiIkl36DiXTP^Zym|SC&A^
zdlRcPi*R)bXIlkdl2FrQYDgGgB$<-i8zZ$O)Ryo=A=GUWK36$Nd8=sf2mTLfiI4a2
zOQ^@uGRX&biliwLHkV0$S;8wGQ(uDIH-nM}5*pGf>gO~$c&(i)WKj7DrG&S$fP~j1
zge5eV_+v*1N@ybSuc6Ug0&93v3C;Los$X)Xc=DAs*%jaM-z}QVF7JS^N@&5E2PS_T
z%HT~id0QYNp{0aY5;CO3y&zpelmY6Q+#z4!*ZXDW&CFO>$=_N+*Av0-c8Zx2+DK^Y
zDNMQ%;4L6tGP%mi>~<0k-U{YEu9qz#N5Xsw3nX-q&{4uD38N*5G;C;EcL_Ztbdu1S
zj+Jorql~OOIb9`8sO;xxHwo-M8l1*@)l)(*32#UkB%!y2J`(y99uoR8OzQ&S6_I}2
zVEIH&F*g&590(6!lr!26lyH4pV8w5#<eAZLN*K&2OBgO;2-lt7l5MD`Lx$%BCga-q
z{t*&JN|-$`nf%USX-sOS+Ze)<P;|3rNf^fvOL$AdR9Y)xqJ$~rO9#K|)MSze(aBQc
z<nUgR<m&kX%SX3n@h3#5NtiBShJ=|Crrio2z8U0DlW7^eilZ!06wa0~N5WhQZ%cTW
zpxq_<hGuZlcO?A1Q=CT(JQE~CR5V)9Qt8@yp@jDsDG943<T5EFxDpl-IT92JmV}rD
zRe~nLkT9>d$Rm(0;r(LCiw7o?Ck8eTO*6eA-tprSc(1o5Y#P>@2PY0W9z2K^rK*3i
zge4M|Nm$MqxF``7^DmXKuSSs9vKc!AD<pitwzy%H1;t19OI}Gcs`{z0Y)w1D>_Z73
zN%(^Gs#4%%37<$<Ct<yWH4;7ygg<3OHU`L`Wb$Vc)=GG^F}re~CV%h=ae2lD2^(pc
zgwG}1X_`U#m5Cujl%p(1@7_;)d6&3Z!j}>%g#uqOMuG4aZ=r^1Vb(f!w@KJe04Nxu
zU<Y?fpU5y}?2@pXSIMX>V~>QrgrbCN+?Ry?5>9i`hQa|tTEa02$0ZzM>m4lICHaVi
z!yN4$T%ITRplk9`iJxXBx?|QxPDnV(!qP}MMV$u1j@rVNTO~NusB1EXXS_Mj5+oAN
zd;A5$M#Aqkg-*`}FG;w}9Bd?9A-r3J+lb*mbHcxG&c0kzc=2J{bqU`{$S<RSjBi;>
zd6k4eSpOw_FX6U?A6fq;JS?1ii?xO2uC7pedVbo#r3+ROD8D1&u7rCMeq$O+_*ud)
ztj69YlWPgo+14q!<jVptVWa+i2@AU=^YVWi2*;`>w(utlpoISzAi|QxSpv7up$8KF
zWg%J{c}O&NN>1M;ZtI-fzLxNyuCTIG@?+Z5BqNWEyfP?Hk`qSq!seZm^U0{zCAmvg
zfnI%H5DLmDB%_QB$aqG^voeavC@LfKTcNOw-V;j~3x;Pj7a09wGK$M6DWeqiXNK<e
z3YGAf1<Attd!cRXLJix5OUr1I6=?cz8tHQ~o|jQhMtK=!J<ZF#OL4-6Iblxzf{Yhs
zRFo5??~S(M3S8^+(&R5@1zxF{T=?H+e1BU-MpYR-W%Q!WGOEi+lM$3rL&i%o1R1F^
zYRaf3!!IL6Mr|2&WYm>WPliv%tQyIyiYI^X3mvQ_ocuS9U8#6-GNaix{PMz(^-jzB
zGG3O^P(~veJo0tzm;8#11~R(M%2;4WR!#_=t)KE)t>oAX!9)F%>%5!Mqh0t`W;h^2
zn;BwjEQ6MlX(FSkjJ9-|jAk-IGFr+=m(g6tt1?>1c#YGx2-A$W8VK(^7i>5?6qXT@
zap&K(8@o~|IdZPu_Sr3?GFr*VkkMKO&9;9|t5HjM{8w7F^o-c9)HX8ys+!!dN0a;y
z)7r_%k|E0IB%{5IYzBHqYDXD4aw3CxNe3BuY72dH!hfu8$7}1}PpkW5z0NYa$owP)
z-RSLIBG-MtZQy<&<52T34eKtWhYUK3c0N}%xlPX|y=C-~F;2#K8GU8+lQCGv5E=bt
zye{LvvcZ8e2FQHTDpVR>T5KDbm>nShhKxZn?k<Z|*%;t+?wc}}RZ6Dvt!IKmWsIVQ
zy@SJK441L5QTq`xMzR$Al2&VRgbM%7$RIzObIOTare=1R<gqmP<pe)L#zYx&WxOq8
zl8nhRrpuTiV~UKoWK5N@GZJnq6(=Po8L4R=y6$9$*EbIzZxfzLNXVE?S}!GSLGd|6
z%dJq;*OObVi!5ss;3e<Km?tAwh9u)%`u4ftd>IQohI4X;g)-igL53b{-aa9@^`Mz7
zLm?yx&P}D?uOrNDDAWpuRl+hDZtyUTX6OtwZD`fjk`ZH~DR@pnT!t;<l#J6d92u^R
zFJx?%u}H>Z87pbIj3qMOm$6*N3K>i3Mj558;#b>-ziyYXmdQe^K9CW;BJi=aV$~q!
zE83;3mhqvC^)mnIRsN4;d@SQr8K24c#Ph})E_Xw?8VU20h`oM+{F(>NlBx#R%2+3Z
z5*7;1LuP}FjUK``aouqEbEbdG@RIj4IK(brhJ49-E@QWhuVieI`NLoMTE-6A(<p_L
zyq71qO~!Vw{(RdtdEzdyS+cN`t9%@JZC@&N_Ha2FhZtxtRY%{iw@=1?8Tu~qfQ;X6
zgbosQU!)Q9<kPoh9ARGn8ahV*dmA|_gN34T_he?%3F4M1P%~wC`!FYWpHKd_N0T%3
zfQ&zxH8Rf0I4|R-j9W4;$hauu8<un#mt<U)aZSc`R==M^S7cn}W~(Kh^vje;9(6FA
z^n-h8Mc?eed&JZaGrpt3g5o!ro?bFilgY@`YmynJkw3_|E#ns!6B$1;=w4RdWt3Yd
zMp*&g31s{v<7XL1e4!k%$tSx+PJ54=mGL{heIXG0DUEyFS2_7Ui*PNWWQXt{-mW>n
zT|W4?jDKjSf@c*xknu0)SCCJ^Lwdel;E{~S%u0eME4*))$S}R!NJvs}Zd!gqC659k
zge^Baklzy)P*6}o`ZvOywqXLGkOHEDkyUdN-NFirD2Z1?B@`4@P>d@g`Hy|6N2{k4
zSHRb^pTx3fKT7-Xvq(t=r4*D_60b_ic$e^bmT#PHXN8_w5_w)hSp`iMG*eJcL3suB
z6eKHnLBWd(YAE0{MFrZXpqj$B;-N|kDto3@RgkqRgZWiO0V&HYDGjT0Jo`X{Ky?KS
zH2)*#OA2Z#sHLE`f;tL(-h_N|;X}c-U1F{4p*fo)b$JeH9n4<VE~01nmBdqdBL#F$
zih}xN6uhFKp@O`NA{?Ue4V1*GiO<fJho<p~{z#h?K|!j5fP%(KB1}PEwJ=0%q$%js
zKFs!Tm)OLc^K8{*7Kf06=A1-9wt~zm!mA2eDacUJf@UiSbElN|4yJpfEfrkbR*Y&7
zstAT(xL;j}Dj3u-!L(Kq&na!Grr_;TXv00Oj(mB)IEAqVE!)vWjNts@XRe0wt&g;S
zDJO?uD4g6?K{o{*6m(P|(n9*Yvhc5%TxPe}SwR;CJvt``#3t;1@HmZ!hwhXp=&#^)
z1w9q?QqV_1Uj<gp<R{0H-n2Y_%D}G4_g@yq*B1JDt0X-i+>s&-P%x0zD#*Ez*1w*x
zFhzJn!AJFlHGW}jUExh`ytcq@v1-Cl1;dB|73Eb7S1>}sF$KpJj8rg6!4d`UD;TX{
zjDiIU7AhF4U>uRAV3vaMMAzQnBn6X|#DQUgM<*)$r-AjF-v~`12BxP>RWMD#TOQAD
zylskqw>VwF49;IDIsQyCyA|eSkY}dPRxn4wTm{a$2)l19ct^oJ1@9{OIU~5}VirC8
zGlH*`NW9pb?=6?s)X$Hr-cyjPAjSf&KvEzpFcg>y6nd|cpeoRqRyRYpXN7cnW<y%~
z?!>b*nGe3{7@Sv9zgg0vX6>8>3qqu}lK2R$@`n+ZmUuk7Swa6I+WcJb*FV!1D-d2z
z>9#L*se)w+HV}RamMdU>eMmnmSfStp1uGTg@6e>%mEbCG=$l$O1K;+qR`A9PiA+p<
zmZ4ycf=?BEq9AxTt$d~Ai**xK`ZEP<6|7TGx1pd`6CSq+^Mjr$)sxpV7L!9?*Gbu=
z;By7L6zo>;1<|Nri-N5Rrd%pH@`H?et%F}G_=>REEehpDO6a|>6>R6RU%@t_JrwT0
zIJ?^I;7;Zsf{&gFE)koI+AVIZ7~G>^uY!XL4iRaqBKs5^Q21k*89RQjx1Vszn|Ql5
z?B~$dpF>$cw!86G{=*86C|D{4`6=O11q{dDyP+#vGfpTtso-xSM8PQqr@fT<MZp;b
zXBAvm@Qo)qr{JQ3OA5}@74uqJ4FeZE`Q2xeFME>fgOaW)xT3&cCAnRzFth2{%E&dM
zbY+BK_*TJp3Vu{@N5KsR-z)e*!EFUMiGh{vZqcj1gkHFlcE-#I<_&TS&xgWGUJW1Y
zozb~*_^yYapFPS={iHx|)7q{Yq%wE+tAcynxPtqhJ%18`OHzJU@P~q~(~5EF{{Ph@
zT^0>*FNwcc2RwToc$GGviu`J#O8?80RPdjIM+zRZl&Pp1E8gel)Fc&oJO%MWkZLT*
z^LC2^2BodsEf!EwkV7g;s3@f385KoT6jd?w-Qv%xD6FFY!!q2|_Wp?waBCHQC^_hE
z$(CmEVk)@DgS*9&DoUv+qXH^QtBFcgYEsgjA4;xn9HzDGKBuBpt>m&Qo>voToA=MO
zqf0Y3j?bTQuiXot<Ry>3sG@?3iYhA6Y!%<^7SrDGSEfn7)q6Z3nGe5JRMhU7V5+H@
zkS|Du>MC9?nOsAK^C<1l-C|7@wWy<_4&^FdQQ_l8Y9udj685X8tD>HoIDzx)3dt%a
zZ;Y_5$<5$siVD*D9{q7g_PBZei~EBOR5Voa>i%FO73>Ns9yJS-nQmnB^V7yE(p0q9
zkgXx8qKS&#D)y*os-l^S*(&C!2&rhUqL+%^oJU0q6>U{ys(4KWf8;!@BBH`7>o2uO
zjIC?cQbm-GQjzWn{d>gbJ=_0N);}P-7<DpKwC2zrv5ks8d&C)gL<-xf$WqZkMMqkq
z;$W|Ewu&4T_3QfcZfN!X9`VaPBI)Qleo;jy6+Kk+RMA;Q7Zu%9bXRd|kJ!~)?(QCu
z{E-c<IBkoCZ8nxq(1Lr#!hSz#?Y&|j6@68VQZd@o@26t0iXnuDiq};PQ2F23Vbp2Q
z%imBjNX3D2{=x->7JEfaE%Byz$uC=i9384+n2M2}ggV^daF6HE2#?{46k6r{V^oY)
zvHyJWw^WStJT{(jC)7V{wWmc}>QCfe_KK5K{9WG9?qsh!#iI@D`N!1sPgOBZ#dH-@
z%ll`lSX<XmW`@^omELyrUU3#z+$-+%`RA&5Tg4I;@2hx6#XRmsg{k6Q74ucRry^Iy
zhP~nf6}R__r3(sO{r-h2j?pdU{E`Zpm%kj;I9oY?ny>vo1q4M!zI~#qV)ef{v`ts>
z;y#f&uj~^UdP~LC#ibk-F~)137*}BvsQW}Zgp`xG-hO%EA{C20etA9r*Y74RRk2LP
zIu+}m2vw|5@c~!&rd`QAQt_dRkGL)a^t|xZK9RIf&EVpF;>QI4hE|`d_)Nto4E;Xw
zr+wlY6$SQ-l&@7$*<%{-7x$NGJ^j;G8&qs$I;;3n#ipk*%1SHqIl;C+Vd@tQ^nP*X
ze$n19ex+ioimwUIa{evM!TTXH2R>=FO~npcyI<T+NPLn&7wJw<vdeQ9H+yuyxL3tK
z77z{3Y1mIq757#APDrabq~d!OH&q-~aYV&=6&F+-rSnys^{l$RUp&t3sQ9X${{*Yq
z0r8|q$0qy9bM!Q$wqHEsQ5r!1pYyzTZ+ZTUDlQS#2gGlfxdnvFoO4U?nu;r4_o_#$
z9}q(aM9Qywqg@V&^A3pLs`!pLIUwHf==!pL^0&Nce^T+YiXXU~*Zon&T@`x|B;tO@
zlYD$25#oe|_}tLy9?NV2fy}S;bNBXSep7M%fcVb=k@7!O{7Ecn$gklqmf3^iBX5$w
zRs5skfr>Y#mimt+<)B#ap!l!KUxP$)%^=b8V<d$_hUu}2Bn@2-iX#ptibfs{d9_5@
znSW6H;GkGQLqQG2G(5@uLK=!_D5~KZ4bN&QtR)heOHhBiH`~R7;xBAlf`t!>#Wj@B
zQ00&qI3$+TP)b8-4IK`NWi-5VNE~`dBu~xB<^0cUD665FhLDDG8p>;^ui<44FKBpC
zLv0OpG|-0?G*sq<8kQasD|)n&N9nGr8meh{iI$g3M6kMsMg@f$8n$wYvWbeplq6GA
zOO)1H8kTPflJR+6f;L4%T@CfLL@5|hu}re(0V?=4ymzt~nZ&ePg0E<3pdp~4v4(~k
z&Kycas*yKIzp14JZ}np9TBXus>sn>=-_y|SH;M~~6OIjPXhO|HV!^{AX;Y7{a#(Ec
zUCt%ay~|(qx-C5Vnuf532yY^X#g-bTc$SbKa#)ON*nF~BD^D%Mqpdy4dD>`b>+zXS
zCG9k1J>?mf97aLII0NGibkrbfctuA89i23E*5GJxi3bf`wZ#AYRW)?;m^U;G($HOl
z-Zs)hLr;(CrJ=8eej0jf=%Zm&C*jl4fvkQh)akF`bwZ`1e;^UnUAUVi4A8J)y#GP_
zXt$DWD9@BaZ)zB<VVZ{N8ir^Xs$qhLi5iA!7_MQAhOrt(Xc)<vHH_A<@Y%?vmFaAo
zX8G>q`a->g&<fvdrPbS`{o^!XRr+`hYYPY174rm+P7O>Vu15Lw8@{(RO!oLoM*>sm
z$%#2+rfOI*JfKeU>%)CBG|bfSu7>$UPSL<D4Q~^r8fI&lqhZqw|Hk3MTmtgf2uCw>
zTeY)&$CA?L(NU4~4`QuI7tlNnvc{*R4)1Bm)gUoOU89Sp`QIKI_+)P2tARqL>ArU-
zMHNpcqfUgH^sq)xYA`g^TH!M_#5BCx*=K3^d9<Gr@?_$k(Dvvng^DlIuvo(#4R<vx
z(eS>8eJqU31r5tIe6HaOBAmO^@QH>sOr;y)4>YXOuv)`Pt~J5O#t?j{;Uf(nGsM#Z
zHNFd1D;!w9%SR*GqN4(zYWR#H)9|M+x>m!#OQYppFScI8I*(_!+Op^k+c&<4Z=;4S
zV||-6{4_-13<VoRHf#7&!wwBQHGIWU4cnN=U4^Y0zSeMYxc~D(C1)QN54VoIcFQ;G
zrf)kTG%7%a{pHf#!{ROtyNScY;+Ka-(mfu(y<YlW#$uL_k^>qJYB;OmoQ6Xh4r@5B
z;e-ap<%ou(8ZKoE<Tp$R92oCE=E=#_{~=tUmvB<UDdt+-cbfHNgr5xQ84U%-_{p5t
za6!Yj8or~QoJYe|4c8diVDz$vlT&<GJpSZiaqtaax9@$|>BD%d?0nI0m_8%@Wh+IO
zkM*&8L*qX#_ubTR%VWN$8xM<bj)?xC;kJe!HN>a-`wNkNif?G)z<xQz?!uA&pBQ(R
zRvm?P{G#Dk4UaV>>A1&Y`-bobC(-bmhWiZh2tWRf{7z<giuzZ0UN_%g8vbTzG(4pD
zR^|Ig!vkV+cwo&~f5pjxFSeKLKg@qp6#k=psQ;0M3N72QTe63rj{0$IAdilGI`Zov
zpI1kzvjxc%&=Y7ZsH2dMQ6v513q~4G$a!{6nIGc5XLM9M9AWMh(NR=KRd#h0(@|W<
z^E%4vD50aI4(Jfp_)6(`)=Dp}qm0LtI3g|_D$tAzrjPRHbksc}(tD|MGRx^GucLyF
zioASy-~}Bo>ZsjWSbZX*&-Agv6mQk>*402I9hG%d(GxyrZE1N#q_9B4$Yvp0T}KTa
z^>ifbcu7Z1Uaq5#j#@f;9ubd}${uH>H}9J>?ua<IezuQG>(D*EOojC0Rik|}qJAA$
zR(7bb<Idnfv%Jw19dDJ6Y&jyb`!cs?`%WGa8|rAJ<GhXw+@OwB9dmWOt@E$>&{#(=
z9ldp==?Lm*qob{k5n4_YI+JS+_chhgOh-shBtml?(;jx%`@QdUe*q(+zaJ4>=wQ)!
zO~<~}0F}c!BHmRkJ(})O%A+3BN=L?1No$Xp)-sZ*qn(bfI=bn|($QW=M;)S$Y#li|
zI_Sv!yV=Gm(L4(RYX7!P&!s;eA-t0(nl>iTiT>2_MrUDQ7vW3~p^FY<guu3>tI%CX
z4;}xE2=rv2Cj^MPf?~AH_<-G0Ai(<Q=&NI_j&VBr>FBRxsE%PeUe_@|#~>YV>X<ai
zKai7qKq5bLRDg}3+Sx@ItYe6dIn(@XpH(hFxN^?o;{wBVjHEujr{nJ~!k~}y4eBb4
z*0E!Ze+=h*As?Aq^8%#dPQrK{6Ld_aKXpvh@xkE0WF1quu8vhB{f(#ki#JbwOUIaO
zVeDA{><Pl;F@DOY>zJWqHtnD0pPA4UW-+qk1HVr5*O?w*<=^yCzB!EP7=Pb!fg0t6
zcXZ6t@tKabI^NYWU&j(1@9S8gW1$X>A<*%jj$9qBiv|=XPLY5_<GTv74r`*&x>%rG
zH=*R#w)~xQmEqWsQ}(E6=rDEIIvnaSaFhLIiw5F4X3p@(JbG_QIwhB9wsLiRG0MM4
z$6`9Uo4}XF19Dq+TbVO;Qb1dovsA}29UtrXM90bD!g6j$$7&rb=nY!?c3>q<P0N0B
zd_XuVvP)*m<lu)oKGLykRJ6iPAB*9P>Av9$d@L_(bP$v2=hHvckv`Z@ew~i>I=<Gi
zO~(cu8=0z^DPQW?q~mihzF&B|{`7mFmQsd8n>}Hn)%nPGJ}Q1iH|~mT(Xo}O{a%L`
z21QA?GnzV%>NuujC(Y2YU&jF*yLIeg3UKm6z7a>oW_k|qm3x_4PPEsQAo&vuq6c*x
z(s5YF5hh?~U-B#2^Nxz4l;|?9byPg>(c?N!=s2sR`Z4jOj#HlIX&sfu`0pPTn@{an
z<d}HI6LN-{3j$O-r=#?5;Ri=MT-0%i)x$s?1D9D7bUf1WSjSZz*L2)wsbp1I;k&Nm
zI~_NO;kW$X==he1?JeZ#8zudoxGJB1Q^zfxzd2Bb#cFKK_XF$OO<#>p9qZ)@k-4Me
zu8!Yz{GsC~9Y5>%l?7i1Lz7)18agKa!ooEx5t`q0>^+gr8^L|r&oGVf)wO)L4d0(S
z{?hTUj)!EnXa3DR^-4jHW8#v>=?_>5-|>w(CO+$?vu>On75Gm_{h59?1~<t-9s{Ke
zls1spKt2OS4HPqw-#`Hag$z7nprC<&OGL)~6*;&)eR1<>{^8NOt9;KIC~WX|oY3s0
zM0fr%kwfnv6C=|D#SQ$|BE5uxk{)wc6o{Y5gUEYhqs+K624J9~fl3CRGw{5D@&;Zo
zP}WG?zRMZ-@~d=uW}_8qRy{(V;Ca!&)?;D?18GI02MPx+mu_2fwy&~*GdV&v1Jw;w
zF;LY2PlK;a39Po$8I&3Z=I(4?)4=&-;!6gW4)?QVH;&XYppO#Ru67c92I?BfGSJ>Y
zJp;)GUNz9dfZsrhfm8zl1N9C3*j{L0prL`_X5Y&OUNNxvO8E7efr~qWjSL7z;w<r9
zFfy`ZG;^G=d!+x>+rGv$mHGyn7+7DaMCbe=#;ft7{7vaD+G(J<ktk@qBY!mA&$G&l
z!xHi3N%e(kzSj(d4YV~91v6rxrGZukG7P+RHa*?Ii@k&>T{qn)jrH$sANf@FUFa&b
zHqeHioa86Z!#0^&RinH-lP>k<xmPqo<4+A1vJG@I(A_|efer>J>1d#{fi4~|5)6Nb
zJ5e&yPllsi4Qy&Je0RCT!=i!Ff0gcGpr?T$28J5wWuUi#*9{CXFcFbH2KpN4XF$0h
zet(>Q{uF<kd9AkEzWxT*4iLx;H1LLjK?dG55)T69S0|33e@^rdrYqhJC}aHfQzOLE
zkxss028J6LZD5RnpYoLEy<miakp@P2u3op)$E#{r46wx2%pVzR;Ph`{8q9;Je}HcS
zjWMvt#9kAV3{0k5Oq4Y-g$^{Z&A@g8Qw>Zru*|@61Je!6FyI<kWMHO&Sq3BnvVqwK
z<`|f7U;%+-;B5o%7?|gIhROKzruM_X>c9}R5hCvz*f=K8uy1tQU+Fix`xhF>ED*{y
z@ScI+kBNnki=-oVM;U9yfXXcxh#Am`Ljxu;+|74%mCs=IO$rba)(ro;PQKjV!~RMB
zxB+g~HsBaII?hjc6JW$P&-3>_52fD>FE&u^xVV%V+A*@k!22F^qC<q;pFc?499J0l
zfaWoX238taW#BU=_3C^xYeiQZ_}IWF20k?Kk%51P`a0Z8Z{F2cAP@<Q!Wsitr};l6
z6h&cpjp&PM5$5KLgZ*o168+XD!ZNa+Invp;fmw50BziwL@P&abOjV+Em~XR3c`x|V
z04XJ3d6LstBVTjx!+o#JFV%RIpYlN2$PNQL4Sa9lrh#1sb{jZs;D`Y#>@l#P+y5s_
z{k_b`$-aG*f16I`fPsUA({b_smmLl<E8p~gu{KJ2)W9(V7Y$r8aNNKNI@!Qk0~hL)
zIZ2!oFdmTjU^RD0;^~j=+v$OGoT|NWfe`H-J@4_{G9^Eiju5Dq4O}tsje&3J8M-A}
z;+lc$UM4oE8!6N*TKIB0+ooD=Zmlb^rN8hUE5O6V@%V<f*`WnG-ZJomfky@&8@SD?
zV&I;E-wfRG-13uwpILCqM(z@{zm=w2elhTMU%_cF{OU1%d;7@O`Ym#wxMIpMWCs2)
z@TY;l=(q6!0_oWif#ak6@5~CEIG8HF<$FNfUJL(g;2}M5$hS$3{^uFYQ+L4h-TSQr
z%Se)mJSK{oC}twBiF_ssnkZyqay*pZL;({6CJJY=BX{}>)BXvQf5ybKCJLJ<Vq(i+
zftkoQ_qcd`a`3&cBX<;E_Sisi6D3TPF#!{cj*BHtlrmA;#7{H)Nz;5wt@Ired~B?B
zJ>JZDj%r0BGfG7EY!C7QznqEkCdQkXVB!T6FPdm+BHcs<6BSMPO{AEpWTLW(nkH(Q
zsA8h3iRvb5(Au}6tjse<2C6arX9f=R&w0tjh#w+N8mAi*e4C{d^0iIWF;Uk<Jrj#v
zU$9NoXX2Lu!uI99i_3jv+Lwz|tQbw^auuT|lu&&WFPms$qN#~jOf)bdm`F7f4sU3p
z5iK0%t9mUx&x6u@d`^Jb#61*mY$DAY>UY6c{;%}c&-j-9nI1H;WR~xZLLHl#2$^`*
zL<<wmO~m8T_0yxQkn=0@KZ^QZGckIZFKi-W;`!x1MzH38sWl2j-)a!)VMn7TTAAo=
zqK}CT6Rk~%COVmDW1_8zY!f*qGEKBIk!7O2iK!F(pVyAC@r481%KD+}bt08>qDRL0
z_&DFeL`QmZs{iA@zJVKk<=zxJo9JSqyNMnqmenZT)kHTF<A(aWeCz8p!Z$?8$sOzK
zX@U^y#VuH^+RgI~vqF!SrI$;M^fl4X#84B%O!PPLx`}}%-tg3xn2CeR026bE2*qav
z2AO!%#9%XVuV+_Ne8nx_)>ooKFNcTF=Ja$j!x=le!o(O8L!9(3mT#nq>sirJCX)V+
zu<;d;Gb}Kc<`ESQ((k53`B=)vBlkoWe-rPUSV|<b_?wVTC??+G<R;!W@s5dUCZ?O1
zWn#98&+|rRnD}G7Fw;cIjUDo?4CXBxUHDP@92(4U_Y>;&DV}^Hz1v@rEiEG3kF}p?
z;$0I9O}uAfzKH`#(FM$l$Em}2M!swrS=2Xra%V8t#9!?ql8J^Nq_cF7+#6vboz_00
zn$S!*CR`J`3ByE;7$7!!3k|M^O%s-ht($VL%OSS&9V0eT=lX;`iM+m2Bz@8l-y#!V
zbQPAE;NgLfKa1(`p2FtG=~F(=N69i1%T0W0;xiK~Ong8!4~i>ItTM6M#AYMCT*Z96
zxs%o}8Trsm90PcNpEIcB$DZaV9$n*6Lb}qm$XXNY7%UTCnOJXP13g9?m`C${8;*+`
zO>AP(=n^^fW0<9nfxdKH+)Q|n6bhaYyH4~!T$H|r5viBG-NX*=&cxRywwZWTIa1+-
zNVne@Es*XsvCG8B6XI^JGNU73E(K1A;t7!w-$&7XCiW9f76w^3VB#P%)Iuc-hfEwc
z@tcYJCXSdmYT_DkV&a&I<0j6UIA`L7iTV#)o-%RTMB}sRCz*GT!f&4tuTAtXJs~cv
zA34KZt{!dtP5Su+wsFzKB@@M`_`f_M@-4)%6XIq1t&?z-v0K~z3b(c(TBb;}Nr?!B
zyjg!^;#(89O#EQtJ5Td_6V=K`JJn0S!St+`&Pg_Xo^z9s8!dcWq0Ma*Ke8U0_}RpN
ztD_s&r{6Jgm(%X_Ih)hf9lj#(=ltR+|H^v8lDH#%YnkZVBLY2si_|efcTR}E6Rxbo
z7K&K-lSpIrwvf-l-zNSs@vn)8bVdJ;c}|KCO#Hnyoi(=Wy$=7;=S1CbUy_B#oc5%6
zp;X5og6U^}jm+wklgGj@y@WNjql9sO3k58`w85S3LO~11dkcjuJY%8hNs$=dxFXnZ
zLV&Pr*F|V@Kg_#-Q47T^l(7H{#jQkDJT=x|(n1LfzmF2eP4|<QviRk+#M$-DafwmC
z-u^iY&s!*O;ROq2E%427ISZ$!`<@>acs$)thBGtGU$jtxmgM?aWJuW#4ewalLKO?I
zSqNLGYN48ix)$nLsBWQ#g)X}zV^4}NS>ThP&%)7Z{+bqQS*T5S`J${^bu3Id*r8GN
z4&+~~ncm~1IR9*iWD9-^sTKkjf1w5SEi|yu&;qS}*}^Lp_)ehlD1qJcGZH6<MivAM
z-{|e*B?GIoh0mrY-Zt}%Sz`-n7MfWISqNHaLch`B&t~7K8(nZx?3@(+h^NN|zScvc
z%`NcdPYWyY)c>lLcvHcnEG6Cei>bo{5eqFjM9)}Aw-B|EZ6U`(D+?JGGA*>T(AvV~
zV6?4;Z69^uiKUH&k57uxf5OjwA3k_e%(4<y`jr{}_7=YEExdauojfh?V4<UhP8K>_
z*fZTPTKw9uukh5w^9U36o0DP}EAe<mWBA+=>FeumB@SbKEcCU|!@@f`LQf052#oeZ
zZwrOm3x!XKh2IIV+s{IO3j;aYLwMc7?sJKw;{Yr19KqR`aliahnnUNu2ya>#Y~fQ2
zpII1UVW@?L7T&Wk%))RBZ&{dXVRMm=BP@)yFwVk>>XDHaMscc}k<k{$P-l09N6?o}
ziLX_NjJFc!rQ%<NCRvz3RGbpoCVC7Fm`op@5~p~S%(zoxSF6=D3v(>YwJ_bn3=5y|
zt(1jX7G_&mUnI&dbr?;)rsEy?ZSLB_d}67C@ZfvjJPYy3!FMhGlgdEuDRFWa-<FYq
z1yta(&p7|uQ(~?K$-)u~?^}>9C>CP8#DZ!;vtV#X)BX2vMRY6iiNnN-C3qKRUYHgv
zZg7UbT1S7`TfRag{1;A%wguP1A`9f5C)AE+ju58I^GzR6Y_XNd=ow|Am)b>^5<(VM
zTUcgcxrG%L@`ocISXfCM-tIu2=lOf5#PX-bmrsiyTDaXL!duKI7Cs_uJP*8K`*Kc;
zWm-noSm0AFM+co2*IHO-;jD#o^o)fK7WP@#Z($=%wXog74hx@K_`<>#3tJgA`tY>)
zC9}_heOf&AN%XB{>Dy0>q#1L3Ut9S0w7AVH1z%N*@YT9<E6lgMJ1y*DI<StN5vjJD
zQ`x>f4683n<S@U8>KD(5yWWT%uyBxguyB&~-@;)A#lkTQN4V=<zWQgx0?(wAX%@=f
zFvNe{!lj~7?u&1aS2u{BVufLLPxGB&HofI9G~Czh>qz@EA|-v!i0A2E3%8hAw(lY@
zv~bnJHG;praG4qXb>xbL8?7VklHbwWcb)0a?a)_r%XmMZ6rLX$ExkW-!@}#c0^eJ>
z$-?+m`i4us>t;0l)$IG7g}+ax&o~|VfgpE%MC=_4cP;$81P_<sCksDYSYTtJjbAMM
z%8D8X;<#twHw)8Zm>$D@R#X<27@EiM2df!NXbfdz_>0BgLctgc#qf`X2NwRb@QAtd
zsP4ZWUDq^;{6p3>k0HOIY0_g0NipP!A#V%?VhQDZ9?kDjcIz}v>grMQWt%2F6T`DH
zl!&3Er%*TsPQsxgF%*rVSPY@2NyWXPqmSyo`>5{!U#nCM@Z_bR&Riz;KTDqTBu_NU
z#ZW$mnlaRh;e{Ap^oDB0aQ#u;3NciUp-K!DW2h8ER;&~aYwej=H3srrx*At$n#9I#
z^`}Cb@lp(=+)M2k>csGJ46nrCi=nQklj4om^Juas;SALGd$W;YtM6@%OoJF2#*h|6
zFos4k2r&d=X#8|E)th9>8IhV5yh+H=uqH7y^=5A7%}L1<Id$m0S7T@qL$4Tm$M9MV
z;TSr`AjS}hp=DyHiQT1pG$V%A9uxIwD{nTAvJGjP)Fy_uo}BYjlIij7Vld8#PjuSH
zkR3x#3?F)u4xYjjcTu5J4Bb3Q=NP*DpP9RQyQ4yPZ?uO;+3opM-Y15>F${@eXbk<l
z(br=b5JP`@yJ^y@rb$mwG|(G*Gln-jX3$fo(SX5E=X_$!FvdNGaWM>!VMGigV;JQr
zjEQ0N|IvK1%_o<P_vDjenCvkVJUa2Ig>>?i7~YCus)xEK-k|fz(6$*d%#7jd7`DYQ
zD~8!Id=SIR80N$<HwK*!jN$DV-icv;3=6!O=Xvy9Z-Y<fA%GXg@Lmk6H<as9&M$k6
z^wbhc6i*^}t7{(5EtoM_F}N`-iXr9+9gk8!9)s=iTxjsqSTBxYNes)L>bxJr(iqA$
z`yZ~DFUz}>T<(po@REr0eBL#6RSc_RSR2DSVjzZ(V))e4VT`EoaSWe$%4=e%&@73|
zJ=xl4o=zE0XFXFshOeHkyD^3@V%QwRrl*q6J%+pc!^_Ywy$R|6TJc1}Zi!)Q44jH?
z=dQQMup@>mF<gydXAHYyI1<BA?~>gy?2BQ)$M5mzUJf-)Vin?S2RzB)7!G>OA&)*8
zV&!42I~K$77|z6S)*Ctz!^s#<apO;`-)YYbcJHx#J+6DsQ#&8Sg(vz=lP-D;*Sh2}
zjPGR{@Te|Z_ohkLSd?OT5W~MQd=taBG5i$6&oO)#!;Khzh~ah&-#;xNH=jcN)>DSi
zEz>ONN6*i9JdZ`1Cf$9SbSxmh#PDkjzq81*)O?Y2&$Hov4AYt>{T9QIu~G~%Eg}7r
z#owFZ@28U=?^2Rxb5s9#a<26-hW~hLh~t?!9>wrDhJ114k0%O#QXE^)h<SLI@k&-+
zPsrGDh+$&X3d9q|ld&u4F^n3~@@za&l#0huIF2H56!nIRJ=J`Yn4Gpm93|r@6;Iq3
zN_&)-lYgS{TpZ8G@mU;e<0u<Pxj0^rV?Z3`<9H#CCUG>4<Ha~C#E}w5{WvPd!T*8l
zi=%EFmEx!zN0m6L#_>`dHRGrjN3-Wss>e|yj$>!U_e!?Dbw+IULdx0EE%TfeYsEpP
zb{uu$P+v&tJEkRvo=~dQi(~HK{G2>FjvZUl$gugn<-RMQ@p2rm#L+m8_dC?1yg?j|
z;t=9!=qXS#>|~I1P%=_!`B^a#M=-@dVPO&}<!PQ;(4(b0muyBq#L+sAHgPofgs;UB
zj^ov*v$crxx6u;+?UyYQN7R$Ij3Ygcx3;7;IV)2BO9!-yBZD?1Cw$WLtoZ#|p=}(Q
zade2IV;t?gtJ-@s%cEQR1gM$q@i`u4cludTjH6Q=J>%#VN9Q=Y#L>eW?aFW*6{yp3
zY)dlT;^^*4o(OAr>-LVL4>6FP(l3rDPU!1hTW3X>7n1gmgAy_W<9H*E*>TL_?&5ee
zj`7@1*_6R?42fe@9HZly5D|xZbR=hsW4OnUh-2wl@$0i9N9$+QyLeXQRa)7UF>#EG
zgUncOo{8mBjB+U)`jeV*OpIevoUbu4Esp7NO!0K6{8k)Ppc>m$BJ-R`;fy$D#t}Iu
z&hjRtLalTE)9HIooEyj6aem5!SRC)fF)xmj9qQ?XdK~k){dHj}js+g`D5u_gaV+%s
z>E}ca<ucuJ>aoom*HVr{@rG2c;xSa%`FSypk{WTi=S0(+ylzfC4#nfJ<5(5P>Np&Z
z(hqSgi(^q7cgD0_LNvy)*yGvVbWS{TPW<(pNdDQeEtki!f`~dVe&8t-JD-r(JfBcl
z83!q&^I@FdUBRcG!pDsMd2#A_@e{AhnW?{q26z`XJ>Qbub#bhZ<60co<Jb_##yC#J
z6CVL=isSP*_QtU<jxXZa9LLvjY>VT|IKE;!j1jhal%L~l@t8{wQz>LSI>Nu5=@!Qx
z`hP|GGb=jq>jXRFiN~2;9^LIx3Mrxf<%xm)aU6)_C=;BBo#i_i$K#v6!ybPqjuRdH
zb?c`e@r0D8_YjWLw)5gi>Yo?+=HUeE#`J{z2EP|{UOXMg8J2}O&c$&lj>~bryYQWl
zgC7(Q=93pg{GRXbdGTUA@mN8ozy<LNi_A;WC;ZhoDB(-6Z{qlt)yYOB8{frogY(!Z
zVdMKaZpQIX91pn1>Hb@B{7A>f@q^dB?NPo=;Lu$f(AD>I9KU$XPafUqgn#usoOhJ}
zPu6G88^3uHy8XV#{O-{|=)k6lXW_r%pz_}yCG&Pq;omqO#!=8lAshb@UBiVW8+q&m
z^N5b}B;>K8eO~H}@aN~#$J{_Z8$b0H*s9lv6tIzdB9o0zG0)g&cGFkHMo}Bj+W6wH
z^ul%m17995NZM>#VAYtMVm1nn^T)dhe4Z_7^FPP&J2NO}qqL1ObkP|9b2j?_7>11t
z6-)4o5d18u`UUaa(&+Ox+BqRULzTDj(g2}?H*+HNHeR$7s0e?RLpr}&pwak1WgAs&
z46rfKMpYZtY;?3C+Nf@$hK*NkwBRH*YI4^#ItrfI{I&^=tYxFNjXE}bHtKpyH1KFW
z8-5!p9-r*dzn@R4?=igUWd?L=J~FS^X#ZJ>{8s41O&_}rZ8UnSlTfe`u<_boVJ_O(
zMyD&`G#mAY27;a$O+3n>rXJJGqahp3J%*d&(EZwNUb7Lg(b7iPn>lzv<abxnZA86p
zmW@^(L-+EdL)wsGqxDl8+Sq9Ol+UC;pYj8$B~i1zjqInA9FOVX(X*K)I@#!KqnC}|
zHh)^7OcxtHiG<;St~R=PI^Dex^zitOUlrf@cZA<qb9)F4dlc_uqc0;n-S@hUel`x*
zjqqhre;f8NKfg3}Ker<(O{KycHU`<4U}K_<H*E~IG2F%o8^59L5F5k1$(a#DJqcs|
z%MZS1PqZg9(#B{TV{DAF`9I2iqjChkwH`~GNBYMxj`Mx|?3LdRA|20X=UxeBl8wnW
zHhhuJjk8T*ARec_W8*CwQ@w?z*_df#7QxfeKi#7<JZdCm&-N5})m$5MJpKv7-+n4*
zcb<)R?ZlV3=6f@DE*a(9_;Is+?=fF&G+l&diy+yM2~-zVT_`qG?$^Nx2O6DeBfo<J
z4h$QnjpH^>*syHGY;3f#$wr(GwDEzBl{Oq3u8sF?EVZ$SlbkJ9w|t=`Ho9IA7uy(m
zL3}q9oIWU})&1Zy8=p@LFK6C$%ba~d{9s+{6}(W)s@N$@9hSMu#%dd%*;vaI?jHQm
z#>ez0Ei5T~<k8kisde+EuCejwxORh_1pldxb<+hh>ujv&e$}+neKVtnLmNv88*Eg3
zCY3E-O8A`Bz{U<6J8f*X@uiKgZEUmgm5oQ?;1(ONKkuJ=JGik(YW*HrTWN-y_G~F(
zJCo&JcK(B*6&qUD$)9Q$NZn;)w~d1~4%ygaW3P?<%<+~%w^7#a@g4RNJlC7GE+LTq
z+}?k{M&6{<Y$ffmjcF}}BQ}mQ@zaC%iVHOF7=2hu*t4q5yW`sN*GNv<IA!CGjk`8Z
z+c;z6nvLr=&T_LWLKnC-8|Q4CxA9HCtO9vc$9@ssmoN2_jmz9Zxl&hcaK$^n1+TEY
zbWbd?_=0Hf3H);=_>GNkZQQhRi}jy-zaZXV@#k!nQ=-j-r!I(9MyIdX7y9Xf_=Anx
zHh!cT%R+STfgzdOuC*qUZ+R%+Me!#tVe<z$@eeU<<5y;Zjr%q@RKG>=o(+aL+BmDu
zjPUO^{;=^E3*fQP=>wtfTL%9mF!H9dEn5}(q+Xkf7sUrQ{<ZPgMv{YvtS~ly_%pLl
zuT1&``BER*=&_+S89FMDgS-xZy0%n42a9htYj{!QP8&@LF=Q{jky+3|AqR~eq&axT
z!Ltr(IC#lHVFyJVyy&2UgQ5<KIe>%b929p@!a*qqr5%)X5^?|MXkw~?dRpd1k+h71
z?|KC54$CCp@1pp;gR&0VJ(F7AK{*GPl{9^MsAacIGE**!FF2UgJF9<E>i1`Y6&+M^
zP}M;-2ghCwR(6n6t!1N`;VLwyr0`d_;IbLvR%t2K9emm~lPhW$#nrw2H67G);CGPX
zpliO=+75gU>N=?7;KTofVmba}heGunBs+NHbnEJQQqLa`jp`mGoQ96?P~XAJ4jMTS
z9K7P70ljolyfsDqE?)v3t1gNSX?(9tUX|(~;9$$&{>`rjzX@brxhN8)Tla;64w^XV
z<e;;IrVg4pXzielgOG#f4q7@$ckrr%77oG=A`V`2u)2GuJ~O;6DYf*lOr>Dz9~VWM
zeQR*$s3W1MgP$5^O<vzR!$Iv?;Z_c^24*r?-0bZEnQa|pI>@G5*cxTE<EVr73`CD0
zyQg0Zj>wlvM|BsoIymU)K&0`Fv(&f4-I@i9UJ|+D`z?Z$bfKdh^mEYPK{p589rSk4
zhtcU7?BSrN!>{2b>VV!mt7n!tthiA1lDMK;O1Z}ZbD^)p?~1pbTTCE*-N66{gB^Z=
zi-9z$Pu3d_208foKqxhD>YE&$6E0+=(ReE-t8jtT5vf^2iL^`NFzR>B+}tBbRIoeJ
z!6>fi;F5#U4#qfGMK3uR>tLJ%#ewQzyn_i2W;vMcU?MT&V48#J4t9)6pX}f*2U9tx
zo;HO(p|u-YAKDXGSwbM%kLFFC;b5kN;d4r^>z6t3k~r;>IJ0MvRc?-hxen$#Sm5x#
ze&8Jk^BlZOKMc$ayq>9E63MXs(ErD$h~o;TE_Cpo1IdBRus#-=gcB&r<qUaJ$+YR6
zH8pQ4v9acos5#IbEOW4&_1}T%z;@s`upHcI7K}NFd(7+0Lt_tx_FWQ5tG^m_9V~M2
zzJsL>2(!f=UBZkgl)5Ywq=YGR>5_QqTq<t_4=;%<+AElzNvR*uS6_t7UKUq6;2mLZ
zzpV8KLmxW$$iY?zUpx5N!6yzjIr!Yc8m5nfbq>}$_{>4W%i>ys_OjT%lt7-$`f4pV
z(BRCHww~5L9NaK4b0ZUTY`e@tsb4tw_F(8s2Vc=P2hTrK>i6b}Qdw_OTc*Yq2f6E7
zzkXRHzs<pR2S*$nWsDr`bg<XKKIRwGp?h#QLv~qYMsLWQx`);2esJ4?(1AXg`zi08
zdC0+G2M0X<phum2sg%E)KarJ1J7<+n%{u1bxP!9}&N(>Y;G~074o*8L(>Fyv9MUd}
z4Nim})NONGOJh6ZRU|U!S<q&OFL>Rb9tq@$PZq1o4z4)J=OVw0s}8O)4GCih*ByN0
z;Fg0QxN%mMe5nNa4PH(M=1cWgP2tV)dj~g(>h4*2@}z!rSxkR5xcjnr+rf_x?r@U!
z{(RpwyH>Xi6RLKPGIzZiCHMCK;^0>Y|2TNy@Yjj)n}a_c{N>=jgWnxQ8)hA<Ug8fH
zULjE%=~80g^=DF<M7*0+?wa{GGa^e|+cfwui@$@%4w78_=U_!i;g9^O`<n(IF@pWG
zHnh*;jVX_dN~MInF6clSx#3zfGQAFm3b-ifqMVC<$3ul&JmaF2i_$KCcMFAG6mwDB
z#l3>5J?3Q>aZ%KT9TJMak;n+9NeLGvT^w!}Y*a$Hd^wRR+!Sw5ym9-}Qp&i1o2Vhr
zxp>}1S&zR}By~XE)U;+n=IN{XQp>w|!NqgcQaHnlE-JXF=;E_Nsg+#J>X%7|_rc08
zSZ3MMH@2?kqPmOSF7~*n;o>D1<6TT}QPV{&7wImdE^51|<3eze>cZ!uu8WslyyBvs
zi)0rmF6z69<BFe`SINiFkf&94IJmS|F{W@JsWn5~z{T&E#V==v8@gyjR}@O^cA<60
zWg*gli^eWmxOmM)nv0-|rY@Sf{3dN$+V~FZ!oemk+LRPRgEK=ernL;d>Vjx&?(ysv
zx+2yun96z>c0uG%N=j|%BH|`)D{OsA2(+Q{6|t3z3>SS|^yT(Bp$pMPCl_s9WV#7N
zb#T$nO`H<5xxwqLvs|=y6F1@low6ET5y|9u-8LTI(Yu6KHNV!Zvx_b+){kx1%SBf=
zQL%dx19QUNJifa}DeU1fymj&hO$7FKK~ND1<y!{(x#;g=7+2>KE(W+5<l;>i16|zL
z)2il8eS@KVEpb@w=dGSsO&RQBh>M|~NsHCAhjYT*=5IzC>+=W~BVCLo*mC@%JcThX
zB=5q}UU$kBk==T!S-*728s}oosy3^yh!b5*auIV8cQM(;6c=y1c*n(CE~dJe;bJC3
z-!bcY*UV`yrn_J%NIDUsNx=fCbn+~Y=1ZO9Vm6&zLSWl*MV#wtQsML!aUL^;f#Z?h
z#e5eFT;#gAeMMa8qH^1k?|Jc}KT9+VZVm;Rn8dl{;**i>=y}zJ=E9(PtxM8rOkUl^
zwgH(*S4EyS3zZN|7Zw3iLSQ@fNU&WvF4nqO=fZWd$i*s`hv$Tai(M>rvCPF1f^B?<
z_dRG4U0d>}F835xdM={o3Kt)E67oFrWadqM;cDXUz&rkjE<SScv6n|{TzpD9pXO8r
zBW-*M;WIknvA`T;XpR&~T~B1X_=<aUvC+jQX4Ye2GjlCF>vI=hcq`JAFYQYl`Ch&%
z@|OCgi=-im^Vn7wU%S}uVh2Ohz05W@@!Y{gdw*6q)+cKx@m#LZE*GI&%`SVV0y5^R
zHhW#{WARypXBT0=ivuq1y7<Y(K^KQyTy}AVb;iXJ7bjhua&gqfnEa{7Tpaf*(tABJ
zPY~6`1wK0@ch4l#PER}S;*5(6EIXdTXI(JO&v83#O429iy)Gr`SH(F6QkjXDp5{o;
zjjgY`xaQ(}7dKs8ckvAYpOpHYi*Jef7h4i7yaRHx#WuCR;iA`7kwQKNIEDTnP2U0D
z#PPf>u)!oWW50yn2}OWR5wgJnL1H0M3>fTlLJ~?Sq4yekhtPY!-p>#S5ITewLa%`U
zq4(Z<`{wrl{hsHZedcy&cV}nbnOjMx*~D7}5~kbR<fqva=^_K&U4eT{2HH+guR#~N
zhb!=C1>UT{+ZA|B0hSzx0?rCNrI<<E_1uY6#)p%qUgTb^07dVYq=dP3OI)enw}1E*
zqhC|^f85PL(KapLt-$*gl(+^_JU%cCe4+rJEAitBq~}PatG5~S@X#)DwB5?aqu$^a
z2MPqXUF4#9<mBCbbq*e<FS@dgE88fBcRz#B=bC=Oz~?-2^Qg$95|2DQ^71ImqX>_D
zJo57Z)wK4-(#Wv^@`ZRF1$ZnS)M93vmT|0-2&(Uv8dZ?T7d#5_pywCu+xro6awV<_
z28!}1#-lWkGCYd&D8Zv7?>;gp6bH{Fo{otjkqDNhcu;xwB3G72IUZl~?vs~BF3-D>
zaQ6D96k&+70*^i6<XZ=WA4Uf%^YHSh#lz2|3XiHhd^{3(4Eq=;lagGG$40sN)5C5+
zplxk+9(!YAqAzhZ*xGBda#dzaYOT#9z@rY2x;zrubnYX7$K$H`o2fyH*tG3Q<`Gjm
zhM2Eis{a-5LWQopr;~#`8t|AdV1|H(Jig{}pT`3p-|$G`F^9)o9w8o$cy#B{gGZQ0
zghv{WR@5;ytuc=#Jeu-Y@hWg+w!hqBe={D<X%#mEsjMU-Pb7`X7Cc(An&iYpx^2xP
zokv?9?RaGH;COt`2Fc{{EsrG=L*Maq1cq<n($q_J6K{@bK{ai7_e7!9eDLX=zz>Z1
zM;@;NiKQ-a?Rj+I(S^s)JbvQQk&MV=)wY(Ei!_~fGSG<-(kFEHrzE1IN4i6G<uPS*
zkPf`-#v|)|;L?0QIwc%^+@vRuUOa~L7{Q}Ak3KvG@)*RUFAr+%Pg5-M_v7*Uqp#r2
z!1`*51BhXH^EE?4QJaE;38nM>h3^E0@~AN-VF-`%w*quN;4mJ)5GL;gs<jPXxe*{@
zBu~flVG56_JVuipd5q&Rp7DI@8-2N>Z!C|UW87oAC-AsFs>LK8lX<AM6DRVZL5Ns7
zJml{l>N~o{lis0Uc}(LmlgBKwBVl`Ma0ZVS-D9gZOWxlxw0WkV#woEiSY(NRHtD2#
zBck_>4b9^*pT{;H+j%VDv5<#Ds^GDR$6_8L4~faYgvT--%V}6*KnxvRPHJ4i<5`Cg
z&(j}%{c8pWAI|dASz`i^m30%(&-2SX6!I({I>}71yu=My8yrll?wUZ75Ml6`cQ0V^
zFnN&b=pudEtdi<!gq0*GfuF}F9>4Ke&0{T(bv$lF($<h$kptFo*{Gz8YS#1kgU1FQ
zCl>grzHILhT@7c3h)$X1?>E!Gna38Mj&E>pD`$`0%INwF{9i5h@8Iz#k25^}C7tuw
zMX{a7ex6>I^Y12)V<4nndnju0!58zJ{l#hsnfn+)Qyk!NkjHVFoyQ>_hY2b?j<Hrc
zDD4PU-VJn`>)*dLm550T{Dcj{+ew;YT#J7wrtvsM3!LMp%J*~qco`s-7O9(fr+4ry
z#Tgz~d0gXhp1{xJ5|7I~E|3FW;^<K9SDix_3F?<P8kS%)plbRR^3z@kUA6{k>XEOS
zTqmXRxWnTvkDEMhQFozr-T9&Z&64j4K?1{V1_|=Ak(ao86h@9F4=B=<Xd)i+ctmkn
zKz#v^c|0L}3MeArDOsOlvVa%?&w0Gy@sY<T9xurmdA#HCo*aaM=M9gyJO)>5BrWh)
zXO?YyCvbFf=<<Nz2MW<k{F}B1iN0~Pu17#N0cww6G)=L@pIt!j?y=NbZLU8`z`5N%
z3K}^CR7y^~9+yO?XXX;{nSeL}@d7><kXt}L0r>^w5s+8FtBtWnq`<2Aetx#U`RIhe
zieS7Hj1^FTgufG@>*^f;s_`MxInfZ{91j!{P>>N{2=tw2Dm8t6H*jsPpTsLFpqK!k
zfCK@>1(Xm_RzNucB?U@E=5MgfUs^!<h5k~kEGlJR#0Sd=<VV3}N>q6PUkdOFs3M?(
z;2xY;kyb%+ig~H;m|h9w&S%dBDhr^JESR=6Se5!-;;IRh{mDJck}Ah7^v{^*uP&gb
zfLa26E9a{r;6%@0&PV~jfZ76*1k@oVEc6H16o~?6z6g{+OsCXjBI;5{+W)bVdJ+8<
zqqn>W5FHfIKtNvs{V4tm_*y`wfNuqSBOpaUa{(;`gakAa&{#kd0bzkM3Hz5!4@Cs5
zyu^`&WG^b4k_?+Y&FDEY&rfh7nut^ZYdeOBpsS^TRsvcJNMk%C$(~DGx_}G;oZ!aQ
z5$s5D(m5TTOZ>TS1-=u|MnGq374W@)9|W`)&_TeD0@?~_M?wzBYtc7eOZ>|g`Wx*C
zw*BOrcq{OefR1Du0><4yIbWkf)f)XR1_=gLW`(jm2|o+yDxjx;UIMxa=q{iKgWQtT
z<bw0uh1{L#rxiUt7w9dZkAQu31Jp#Zf}&iAkaHr?U%&tX69r5XFi^lC0V4#A6fjr-
zamF`G9wuN2>Fsu4sNfz1OmL-=ntmY!e)0{cRs8J6_E7>x3mDHT#|XH)F&OTgJdWLt
z6>#wq_xch?;ib{G-~<7Yn*kz-XG^o>$<(WF=vM(R>jtI>m`cLj3Q!H*cDNasCg9<~
z(1a#UX9}1lz%SCV+L$e1j)4CJTo5o<z&ru#1gsY@U%&zZh5%E*LIR!ufgmJcF|9?w
z3IP<0mI`=xBCuS*?{yNF3AoxRnRHGyZ(62NNf%ED&mK#JBtRCRk!EK5sN=<wzWozJ
z3i-8wip`Trt7Dh=sYw^y=i{!nK}&#5cowjlF*t-M0Td{*1iZZw$XhUG<XrzMRzvHe
z`nsEgYY0&S?lnuM+uvDJ=RTqQmpO`-e+bwhV6T9`1Z)&=dw6K8fNcUc3D_*)mz#m#
zE(J;dTbME*-wbRQutUI~0(J@@V2}=}e77}7$DQvI-1BpHlVWH4_XQH$c@p*rcvCfz
zLi9cXe+&3Wz-a;d1so7?RKPI-2L&7=4d3w|rXVxJN0FT93YR(3!x5%Ng28bn@CgAY
z89{)gUB}A-!Bb?!U;+inBb$SEN#7areF_N7(M~4?&XMcYPCQRR_-24s@!9nJMe-FO
z%wH66iO?b<PNb-gE2K2C6d6dsH33gZ3<1{#+#q!cxX%W;Noo;rN5Cz&GFVp(dWMAh
zoebQifVS9AVUW(errQSuApws_pG*8<hE-*zpPcA1E&QhtMdR6b0?#P;3wSL6Hv+|a
z1z!*vDe#i3ZVg_p-iYEhJ%6dJf0=tjq3Kp&<L$tLS)um=J_yJq;xiE+1$+_^B_dix
z=4H+!B0D4Y-3Vk8acW$P-j}%vmpR%nIFFj-5K*OLatve0DT1UbUDrLByJOqn=OS{8
z$R{GdNO2W(FfO4kuZTkT0?)U$B*$qx&rb@Zr;H*;#fqR%K--LX5fD*YL>UnUMSLM*
zOlop*>Lr3A$<oVQQ4xhj6cJspky;47R9{SV!!HqZxHG}Kgou(NN{P_U1!&TSvwien
zEi0m&h{__oBFc++cRf&1#QMt|1&}XARG@{=^pCsi3SWuUQ&geWDk7?is3D@Jh-xBy
zA`(PY7eQkhGkhhM`b$1)lGQ(WXjW)--N3^sp;{ugZVQrZ6p_O7{K%6S5RoWifry17
zl0?)I(Njb(5p_i*i%1udA>u0$^+Yrl(L_Xj5kV0lTCa!(G?9pJL^__&M*@E>;$PZW
z&h*pm$D?%@MWRwf7u!@B7BMAKVD{ipM8xQ=LE2N%GyTN2U{evzM6?t^ew|8sTjFoQ
z%H|>+hY_MpuhTC?53)V;{AnUuiJ&KPYc?hUrsFC1oK235E4rJsP9nY)@tuetMEpoX
zZt_rTR@109BEBbc2*IgB(8|}Kt%!Cc`7-}cB6^REYA>P#b!?D8k35o-o-Yp?q;?c>
zze!%&36Nbni|8WaXAxaRbQjTs&Az-^;=mojZX(uLsf{~^KFiyH=A!G+Wv;h~J|ZTG
zm@J|%2_|Bsh*2b1v*i9F28$RXVt|N&gq$0JK_UnM^sv5mH$c-Jr{FJQn22A<h+{&e
z4SMts7g4Kr;s_C)I)^-S{3PnecA?SKUBq}YNAu*Hm$?#k62}rI2L|aH#|YZJOb{_q
zguher+BfdW+G7U>r-+y;Vy=jJw4yowUqyJXaI-{A6ER)HrT)RMh2RVkGg&J|E#j%t
zJ}H_H&K5C;*`;Hz5E**D2ojhKP0x$kOZ~JjS|nnzh@E6d5lciY6=8|6MJyAsT!bP*
z6|q7DPXYuJGByXTPRRmUVPjAdArdn^9XcfwFi1|B@!Xp2*F<;crc;>e=%cyxB25hu
zCizH_ruoK&{9A$))*KO8A~uTHBx0qARm^eLlDp9w?*&$qfyk|VjsEHtqCg!p+yA>r
zp(98{kvaZ#<VVb!e~8#XY>WN(7W-*|M3A00i`XK%576!8(O0-Gy@OjtY!m4}>F!4Z
zT18-{pL}_Th(ATlTI45%_$l~{*dyYKh^r#@iug;!2@xkn>=W^~h=YV`5%b4~_KP^c
zoV4Xqf4&-x=;=lddzkEgGjLSIF%d^-MYmjMA22Lb@U8Es8-e2@Witz%YL@)BuhA(H
z|A;s%;+%-nG-mtI8FD?MN3@_W^ik!&T>tp7A=-YNr=YjUe?i1WS}Eb-NL^YWDf1E;
zWu~8q%PcgJ!=7+b=uvV_#B~vmL_8L8L&QxHcgc5{>2Ha+LqTS)|28S4XDoFgz>sfJ
zq$O?K7b&YJ+Jy^Lp67o+sGH+%-7obD#k{WnM8s1OFGRc)@r=wD6Fc>j?>W<a%`05D
zyMfdz+$)MdOH*Hqctc*Zz<mgk>(S?ZlJG54FA*Oo28!4%VUL7Q1YOBZxtZ1)*(79_
zFh#;t2~iTFCDfM?l#oM0P6@>&l#mc3A(w=|;VUTNGYOwdC?FwDLT(9pB;=EjUxGZ&
z*YOH>N9OWMpwfDg7%O4;6|UACpS>(0t)P$ScnL%-p6J`YBmt~T=cNhM`h|o-61{_+
zP*_4y3B@FIUKU+MqBAC3PU4xrG-2TtZh1jpNeQJSRFY7cc$OxVmQYSYd0NzwKp6>T
zB|MuHbzO=k&KuS6CCR)jZ$*jTxJ#(O%E9A&_uwODuY@WR0umA>RFzOoLQM&^B>0$w
z2@<MH^nSG~HubF`VdL-s5m`)zqhCk)C3?Lfp*D4y<2$`1Va38|T7Hs*IugE;P)|Z#
zwmKRiSwe+{QPjG7j*m)na@0vS$e?M_4J0&_&{aY=313V2M#8rezLSt5Ata%>gccI+
zUf~)^2up}inK!DX6x~=t6A7tIyp-$#nxZKaqZxH%w^UA;?9SMd)*>NY0yXWehE@_<
zGh#@cWNIZgBB&`t0`YTfz)V(>e%eU*UP1>6KQZ0@Afc^<b`r=~KhiQ6Mv;bpuZH$)
zndi=XNI%Ih6FW-iB%zChpCwRbXM)pJj&w-9c1?=fH$QK;Wzl5)&-eJcOXwkC90OHP
z3B4o?lkkg#-V&Z3tJ_yXKSuOn@{qLE>n8V?D4)D<D4C{i@&Hy2WaS`M4wf*45p~W4
zh=HacW-5nE7%gFpgb@-(5_I>t!i-`B(IhtEVJxZWLS4G0h12bLQV4-?io3>%5++HQ
zOwtzgU6i5;jr%6K^}kA(CSjd~^%AB_m?7a<1K%nMGbPNDAdy-m%%<{0)%g+@NSGtJ
z2?pm%m?uFj9&c6fwP}+`c{>+MxLn@1Ou}*rizF<T&~dsaU+MTI5|&DMe7`cK^{Y1C
zM`;_|<*2rTYVLRi2|OvPm7AP!!r98Ago(Mmbj5G@Dy^PRAsb0>B&ZTJ3A*H_J*3NI
zgh5ar?;~c5-M$@Pg_`)-C@PO_NzRh6l4L04qdcEf{>Bzn@+!Al0+nl6`8zAuva;?~
z?hgqY7~7xZBNAF&<+hQ!u5z1LCFx|dgf0K0x00c+a#XpU)$CxU%xZQrdKW9VUFH6{
z%I%f#mxPxRUP<mQXrF|`5{?jH*e%uUmvDg52PGV$7)7VFQ!egX)u=p5<4Cw7;i`n=
z5>7}sOMsMcl2muc`;Uavj5sA>XgLqnoME>_{7e2@&NHr@=hX3>bW7KH2^S<>WDNhY
zm|41<=MuXeP|kDte>EH%=NhYj!b*C7>^dWEFd=WU@|J|#tnv;kY5cnq?){Ix&xi-C
ze8|d2tb8nCQ<jgIpR!vbo-yLNgctv-Y4arKYYA^8w3Lx1<E?~u6oq6Y%Xly01BFc)
zrDc4i;4h(|j4xz(WMq@^nT*e6JUigYE+bk-`^<zW8JD*tt}YWrWeyoRS!IljT#WFw
zs=DY|BC$;s6LQPQBcp(fI2n0m<dczKMwm4{yvpUe#!(q7)2=CD(80i7E@9H7sMyQ|
zy5eO(1`*UmWg!`bWfYT9T*lqcsuq#)-8HVL47$o);~HG!sFE%sN-(zm{i93DbjG4v
zUq(io996xnEKB?{%FFmtMkN_NvsbOa%IViQq6c5&D$1ae=*p~~h{T|$ij4m@_^QgN
z#t0u9DoI8HyRFX38muI?nlfrJ+Rw_`tPK3GHIXFGnLuoH7$MVKITF5N1BO^xPey$i
zK^dE`aZj&tDKZ+!IDL(4DC27~#J;+lqZ8=*hE)=g?>blUI@gHx4a<ng82irGSVl7$
zZLf1gH<8hlRer;6Q)P5|=WEW&f8Y69$e@yHTFGcFW3r4XGSb;-y=3&3ks*VVkx9y=
zE;2fk*wiYc9obsO_cF-bZDq_K5%__XMEuBLKm=VExr7dkr=yJF*Ey>BiLsICcbXj4
zbdmA1j2^5@_fb&<o31jtu`ctkbKP0}s_PuVVDr|*o-&AsX6(Zx94upqjJ`~_{bcl)
zF@Vv7WNhE&8Tdb)*UFJFiRpZ(jA1gy%a|bJ7m`QDC>f(={J1y%V)m*d{%7%#GXB2q
zV&K|!ZVai8)xWvU(d{@HRQ_L6!5iE}8I#CT(FrwfxW;P6N&?$d8PjA;m+>o;^G;0F
zTS3nZ88c-pld+sBf0m57GUhRc*)rxZg8E*wljh4<z<6@3%P?XR7Rp#6<M7&yMXWN{
zcF$rNU2kw?HM*9P-);90+X@-H3`2$~Ly#fLkYy;WRg&>^qi6QIDB>T%I;t`>8O{xE
zL9T>(tVU;p)3BC|7w>#FyCwY4;MB_@oiMglGJcbBbT^Le#%dXBWc;-e`!-TCBCM71
zd?jA2#5x)4Wpps{lZiiMY>?4K!_ON1aE47Zj)MIPHp}jt;U8sulCed`RvFvKYBDa!
zxF}<Xj6Y=@qE*Y-DPtF7-Y;Xfj6E{;(I7NtS<hZlR3GnOvYWK9{LlcsNSvdGFX5Ni
zdS+DdE&1jZk2xUYAjO~jam4nZT-@_Ao+Bi@j57p#8OLNCmvKtQKWv=SdejLSCkc?>
z1t=*Wr3$%mgRAykV2c%Xnl!mH`OVx&?QVgyGAJG5IT`0!FJk^rc9Zy#Jd_TRG9J*n
zE>VP(@j%8y8CPUnW%A!4@W{9><4GUiEg3f`P?X7kQwAmG5~|dqUZ2PueZ2IKhTA0D
z;DG)zbXUeb+0CqYpP*7ahSumNix}*CB;zqnN=-Bx8J9FqR--6QXdD%v`67<=K;sl&
z-1w{%ektP>1%z&aP>TdoRR3R-D7Wofncl<$)qJ4%FT0sS>5m3~KFd!{tBy6Vuqx{G
zifE65YzlfP=&2yPf+z)v3X&8=E6Aasq=Hfkaw>>X5T_tsK`sTKDafNBuY!9GL!T=+
z_bQxQ!NlyrqK@~t+4@3aMm`1k6~rniprC1v@Ga9zxuia&2NGvSc4iOWXzIR?4Fv@i
z6j4xALAgN27YYg~D6C*!k?<Lz?!k>|^mm4Y{z;z)L&d26CRbcR2?fs*GpO&8y6y<|
zD}?B_w1P4Uswk+cpezlgprV3G3d$?^Qo$#!X$1xI)z&MEgh#ZCT-ciW!Spt6n_5}H
zh^?)?3aEzOODFNF-{dGGSv3Vd1vM4aQjkE)@6J_MP(wkRo7@kpz2z1)@6kTBU*n*5
zDaEg#wt|3ywdKQKRtWXDoc4W>01egmCil~nq&f=fDrlvkwSr^?Unyv$AgrLCg8B*?
zC}^l)O_5MgK?}><_j!K%K$FCxp|2HuqaZ~=NWqO?BTm=IkZCPwrK9@>X5Hkny-y*{
zL=-eu&`d$9g3|@!nh;Uk(^SFE9j!Z^4eK|#ha1wG)36F!Do7)1e(SAr+x=rmFp$yU
zc_^`Bi2gNDakV#HL56~M3fe2+6l5y+UcnCvzE$uYtyh6vC0srj!mP;c{ytjQj+@*%
z+xsIMur0~ZHud67Zg$^D($tJV>p%wuKPmWGL01JG6?9V2SwR;CuWoWBZgKT*amX2J
ze~UYQEA-lIU3##u8)@%#{qC&HUm~eZ(a<l`BPH8~dMW6wV2OgI3i>GMt6-9X$qM=@
z=&xWnSxuqjNEoPKh=QSX-QorjW^QqV$=q3CLKlrsiycNXoDKg%BV>=G+qJh`;U}%~
zj#My8!8iru6^vFeM!{GG{>}LgWVx+`7RoL8S#+@UXx{|3(ut&vdGRzt(;_b9eh-DG
zD442XE={W7R|V4)%v3Oo9A|O!BP*h(E101`7~i<W^Y9nV!UXkR$>G@w<|wGJ(!2i_
zM^K@w>+Ils1q&1`Qb6V)*(w$HkOwU!{f~~^y2UM4+>FXA>~xxRnS$kn76rd6SfPMd
zU@EW_+^!cA6vzq`1)>6pyvgz|ZJ(O$Lt@lzPF0{O&=nXYPo)sSes?6eDLGuKQmEK%
zjwI~THDD`n6s%J4n}RIzn&O_7G|sg6Mz=Yd_j!lZc8nmjtY+FEM<xWWRj^LM4h4TI
zSg+s@it`G#C?Jq*P_R+KCI!p5K)tU+e|(m-Bu~<m=-{OX;jId`k=}}Xwv%hDbpMXA
zv~iHi!EB113U(>jqhPOs-Q+37GKRItKXQKLhaC|T<1Ymi2cBBqeWc0TTsedZE#!9x
z6da^6Rm@XyNWo!pRTVW=98qvo!AEj`1;-Q|S8$yiO2G*QCn;VjIIrLoThVC+XB7NH
zE;%v2`L1O1Hn%z|=3fP86-+VXf6kXddBTr14)46p{YSAv!DR(k6kKF|FHuNrk^d}{
ze|MQ?w3e%cu6!BSSS#JO4!i$b@!a8VD!8TKDTObxnu0qDoqUG}B-{1Sl%?@^DUg!u
zwF(rv!{x4)@p4z_p@K&W9xHgFAkr#O?GD%C4%hb%CtM6ucCuTBoBs5<f)@(jDtM>h
zB{`ac*9zXSscV1fVs$Fbd&+fu`a6|yhkMVOP85p!K!&)(UAV(h{nA;jJu0%PD5RpW
zitH+)ROD5WPertf94bCj@wtkeDq>XRQgN?!fHII!(!3XiGA@p5dUQhai#wb()pd~E
zD)OjqwE1RS^7(Fo89jXYRm7@@QxVVVbKm6(sMu)5SGwz>>+uf}s3@pXiZgfEJKu&%
zNa>TdHz#`evPcmXMO9Q(QAtHH6~$GQQBhV!2^A$(lu}We_3B1{Asp;Wz03VFF}cfK
zu2Qiu5#>~rSMjBa3MyuNnZ9y#q}qybX3fy(yIkC&NUsg4^ENcEtisEr@~NnzqN<8&
zDz@!RUbdEb+}iYocexEiBP3^nit4nq4Bx7|T>U|jJ$JcUD*P%ss_3Mmwu*p?W-3x?
zG!;oI8mjnOMI9A&Rn${aUqv!qV_X$|rQ!lxJJB!ha_wfv2T4WuxCW}5r7e9<;~hKG
z`U>gas7O%}QPEgMNJS$RVHH2z;|`V#=bPR*?m=4pd#(Z-97&yUk87f$sfv?@;`;RT
zEx*V0+MY&D%~iBe(MHAhDq5;YQ^BdoRMARBYZd7#GRS3igqxj8+4d=Y!#(ct+>8^m
zGDgg6O_?gcWor43mB-mc<w~@Qdm8#d#g8i5tLUKO$$fX0wkp~&w!8N@&wZ}oeeNd}
zHL}G})BOb=|9!6IeXg^LE-HReF<iyZD!QuZqoS{hZYsL7zP(iB_k?<ot*b<O5<~Yu
z;{7zr8&)Gd&~b32w~7JxIqpD8KNbB|3{o+e>@_%k0P8zYrEGFO!WGT9_GHQs6+>05
zvf_uSn0cQgAkk$|^4S`$7mQFbQpFS%Q%Tz@MynXFVuFe>D#lX880;ITVp&h$?)&a&
zckXl14_r`9q$x;y-i*mA2-Va?|6OffBC?~0`$xiGRZL@&%u+F(z(x|zj-N^6tWBR@
z%LNY+nS~-Ph9}KdF^6p0Do|r_r1S&VgXXJPpyH#7PbwCwSft`GiJ@Y#iX|%6saUUK
zDGjB<RAH%Du407>S%sp4S0ShnRY)qv4GZM)glpCb^_uMl)&9>zNe{TPGrXz_O@*$)
zU=o&|@BLw#%fLP0`aj@y%8|(rI9r878dLF`imj1ImWq`scJ*<WCO+V1&G05J^sZL1
zM#b+c){?nrcux#!{Z)mGQcJwM9&i^QaBB*O>l{q^L&XLaJE<=@xQb0Q8hI1Nkg47a
ztMhMGv4!fdhIZEqjrlKSNA1vd6+2Y?sbXSL&;0pb%3?%Wi|HSHG%wxmR<TFLJ{5mc
z2ztovr6`oM!C&P254og=+|qWTw4A~HDh{YPNMWC?ZeCAs%ZD6g!3xdrQpRJ-5=J@b
zj;c7O;<}0(Dvql-K^9c;A32MPQ?#gu+`lURQE^(u8B)T?;7~1@2KVfZ467X+_>i0a
zkUOj5oQnMqT}V*2)!i>c7gStSaYe;d6_-@pe8_!sIPEgoE>Eilzj~Lx3sDZ_4~60=
z5%jWz&@}?sMfa1!O%=CPJX7&p#cdULR6J1eP{mypxgT-&RNN=+$q~<I;l3Bc+5QQ8
zA8`#IagS6yCSOzWl%mZeZqw29iI2F|kGR8+TzT%X@`Z|*D&DAg%k(g4R{Sd!uL=L#
zLyH;)?oLa()hO+qipjY`?^S%DNOCi!)ubf4&GDF{tMX&cqamAy1P#?SWY-X-p|FM`
z8lpAi(2!e09t~eV=5lI?(U41XBm7>YSxT??&omrN2z}0K8cc4yYMhrKlvhJO4e=VF
zA-{%L4FxpBX(%{8soP_2%41G>%(bo?dNw<K+hgw3W3HfvFEn%+5L-y2*WlBCSmI(p
ztK;J2)nl%xhGH7N)KEb~aSbIjl+jRDLrD##G?XR@dj%*FWu5^^1TE?q_k^3WJgJ<9
zF?M`;4Fq^PUV*Zo#g%m*h{ZD_6*Wpk056ldlIChDrd_CthN>E>Y4B+v%pVPe>}M&4
zKUC*rD08NlV0kbYsiC2!hGrU4HPq7J*C^LC8fd7kA)ukIhGY$t{wq;Kl7>1ODB1PF
zet|kGn-ij@^hlzKzS2-nLyIR|eG=daM=5;C7VSqS5e|u=At_lyBMo5<-)QJ`HIzbw
zXz1~T8~cRYsH96zILfWM^$8cz&{#tg4Nci9u0P@EU-N`FT40a1Zp=AzFx;Fb((s*z
zHX2%LNYjw6Aw$E5CtNEHtx2nE^Ot<;qA1(fkwivt8ZtF}t6}YgjBTw0t)6m6e{0@@
zHGNN-)X-i-2MsfxazAQltDzm6ebrO0^ly>FPdS1ajrNm<jwHN>&Kj=QP9=Y#HPQm<
zqE@;VWJbDb=tiwNZs_Pv3nWwOD6ONXhF%&@YdE8!w}w6%Bn`5Lz8d;zn5yAd4gEC?
z&@f8FXbl534ASt6hT$3pYZ#(osD@!os+&ygpK}BguclLybDFoW9vPwG(x;p;ukw#%
zJZB4r1CfxNBREFGSPc_2Ow=d^0X{wDD0}mGn!1sj29{_lCu!I_HEFVjDa7D)v2=2F
zLS~;-BKj8yPt!16!vYNpNk0TCa;0&;xr8OnO%gksfX!;A_4WN73Z-R>lsVw;G3IHQ
zPvC#XZH^9Z9G*0&bLt`ui#06QutLKU!quz%OEoMbX`gZ2Gj2pbI=eif$20C|YIx14
zBwmA{LDcZ5QHYLi+0j0O{zPATSIAQ_qG(VFjT*LT&@|{8)@b-$gQ3CHkfmXz21|p@
z^x%*~6^T%~KN9Iw4|hd0%PI}Ok*AD`UrjoB_Wy0iKjUbwBmE+4HLRoWc{FU&u$~aR
zr1>8jHfZ?iU#}br(OPH_O19ZL9ExnoM^bIputh`jE9vW>aYG^@5^}qS9U2Z$0MYQL
zhMgMz(y&j%E)Bai>>+Iv68b0I*q7cj<ofmYi|KiXC29Rq>zLucHBkM2a-wjEH2LsH
zmw{>yX*jImxP}uNj%YZl;TVO8U9J&HfybY5v@W_O)6_1Pep16J4gavU6ATvg3s6(t
ziV-UR)o@nBTMh3toYQb#!#xf6HT<XH0!>Xe)o_upq~WTDYZ@+V*grj<zR9^lqrDA<
zOSw7r!$W+DeSPMNXv%YVUBlgHT)Uo0bn3({4R`2P!)*<8pu?eAEhr~O!}ED*30q4<
z(fJM!G(6PsT*C{pEWu`o@3Dp_gswi`%~sS?GFe~Wy%+hPu^KwQq2#Ygm-{BYWTt%0
zDqm4h`X!bQVESkzzoEd}$9H$AYmxWl{uGLJ#OwG-Fs68}BbN@3j%+$|=%DY-vg?S_
z5v^m+kN|Z#KOrglxodsOz#rc{lvBsCSNUsIYu10b?=u~r>&T}gzYaRZBe#w`I`Zmn
z`iOd|AzIY24y|Kbgy=Yr_N(*9>L{S2$DkzYOACpi!TY)?D50aUjv_h=>i9wjt*(9V
z_(D4Bu`CVSwx_o0?>cW$9mRAM*HJ=8NgYDZq>|4$QtX^=0Xj3NBqB6a869PHOwch=
zM>!qkb)@Ua(D9{?3Oc@`F?CebQAtNFo$~RbvJS6~1Rd3NRMAmYM>QQj-F>><I_o~N
zQ=W5uyZb0z^U3b643DB?YUt?SB7aTB^UI!a(UoZ>D~4<92<WJzqwW~5iBO`Bvjsy*
zq?1Q!l!m=0(_UR2$yEP&t8wi1^8Cj2bp&-pbTrn{Ku1Fz-{?ru@iiNqrb|cMQpOz8
z(TLXaC!I3oCOxP)$@}W>)Vldo|9sBv+!<-2qp6M-I$G*z#`>n}Xs+Y-b1vHpuEYy2
z`2|NAgEL-m-Os0_>1d^+HDjxDt!baD;cvV99(8aH&FRS0(Mv~f9pCEsPDe)_opiL(
z@x6}rIy&h1LC23e+UjUWoG-XBFSsQyxG&oWa!g91tPXTh&8V{}Kk4{qtQ+drzu@Lh
z^mf+KMMqa1-E{n{<Hf9aI$oq*|M&?s^_5U}GFc?jgMvRPu)A;n3m0sz8cC#z;XXS0
z>i9*+a2@?f`8o#c7@}i<j)6Kh^o$>*V_wP7m2)YRPc|>V+YQT?UU1o_Wz?ML9jap(
zTWPMBT!(R9IxS*^j*&XX=om}-DIE8vh-Z|J(Tr#3L@ynULEXpc7_Z~EqEVFdWXTlo
z)qJV*eux}6moiDmWF6~u{Gnrtj;T6$!l8~|bxhN-K*vHI({;=s$I&sDe5$BtrjA)U
zX0!2YyyQMSNgsdS#T9{ybUu$b5t>itYZqzq(p~kBFS$iJVn2&pqGPEJdvg3@9XIvx
zj}yJi7`m40SfPWg_GNb;8IFi%W4r@ja-t52_;olsWF3kQU5BC5XPJ1Fpp_BQXuy{o
z<rSw{?w?FEby(z&i{g7;ZQ5*l>n4#5f-W^>5x{h;*0DwhsdN?TfeFv|k7Q$#|NfHu
zUB_A->sUQ?A(K&g<|RkRi-d+HZP2k%$8jAebZpYGS;t--f9cqwW2=rob?hYHEFapY
zW4n$WI=K9)6UV#AA*-ck3%`8Hg*!xc>DaAfkB%nZNXA(2;}Rh<U)(E>482ds-#QNJ
zIHcoF&-nd14(O<zFV6dlYw(I|^U77@VI4<w9HmI5gVer#MhoX)sKZ^?xI-Ajx*ps~
z9jA1h({Y~S$r$fHI{u~UCVEfnIHQARywpEJ7%n~8dzRHxUxLSfIxgtAq~o#<0@y`z
znYt0Vay)^D&~=5dUBq)$$2D^5b15w^gg4}k%zeetdTE@SI&SIs-N0G{w@G*!)<9DO
zcXiy;QPe;&1NU`2pzv!T+Q35{k954&@rJ4TF~vq5&vZPY@U_Cbw{}w!={e1)<E4&Q
zI?Pv`J+krpqoKI2soP$0r(bcz=FDvUR>wOXp9qi!-s||F<G=HvkF<8x`<Q7X*K4lW
zPIuFo&2U3sjw0dg2Kt{2ZEx%P;OM_YISk}9kk3GV12G0l#m9YS;By1H4BQk_{^}kW
z`zbBAfjkEC8Ynw3w)|_?3e}ed>&Y&tI<HBKHBi7nK?7eHh%*px00w67jwrdpjhDF|
z;WxYuySf{XLQICj28tNyThIO8yUuIwVZm1Pz52M>!Quu=7^q>Orh$?qiGd0RDjFzl
zpp4-jlTn@opj*XTj&9ZXHIz8I8%Kv|P}71^p)U>WKN=pDFI34uWdl_WR5Rc;&?#F?
z6$94?#&7+@-N9zO=Kl1DeQdx41Jw=iM?wQtZ|~RKft~3M=Cz=F)U^!w4FnA|Fi_h-
zz(5@Xbq)McE-ul4@|sIBF#a{C-U(d}xT{Du@Rfmj2I?F5s|%&U4{v|X<<MRIEZ7&C
z7-+HUNT{KKuMIRZ5H|3Q0kUR_fso;zEMp&N{+FJ7=QX!>hHI&a0g|V&ff?^ons?7=
zKdP}>I#l%Elx7A}4U8}_(m-<qEe!l@psRtF2GR`tVBkjstqim_kZIss1L+1b3~(gd
z%ltH~=Z$N)oM=U5?h}o_GcYJBrj3E`4IIwl&Rgsa_ik3O_1wnP+SWij106|w2HG3w
zVBjYM<GzR^OA+>nxfUC3&ZCshG{wZEE~M%O@y*|G1h69hNcT5fHv`>iAvBAD9tL_E
z=tsaa(91w?1APbp2K}2d{CoF6ogQx1UmEk^2iHI+SEL`S9l8Er-U0tZ?1VSmU`7u$
zFwDRZMjK3kUl={yz`H)~_itmA2pxh`y?MeY1EUQrBJ~;=V_>X-X$Gd#63B1{CK+^m
zHYU*Oa>q?%dgj`O4!z;XOvAT^$s$t>Of~SUfk$t+xZXa()n{)xN}o<mGYrf$Fwekz
z1G5O{1|9s3xlD|6!HiKa(#pT(hMR6UYV?-t@RnP^OuUdB<epnO<*lo|N!wa4F|gEt
zZon|G%)oL3k^$Mk3Ie17!GK8RTQ2v$$dTcVX<ouPrNSnNQg_9GYG6RYIE~FKtKs}z
zQa8WluD<1d=e?!@%fLzls|aQW90OSth~@`#EK4WUk*#U8@wdY7-*UehSZ&}%+3*^I
zP;v<GxT^0sI_YWc;3QJWIs@w|4w(3ie*ZPF!N6q$R}5@4u*tv?gN{VUW&>Lc>@u+1
zz*Ym>m^?cSq?GpLF6G%yv;XUQfilzgr-7XYn!R(E--nfZ4D2PJHE@8uhL-bR-hBrC
zCe6R&C}Xq2%0qj-{1xwuzr6<y93r67Agu4D^^v!wBeVOvgC8?++`w4_=M3y9={aHG
z9|NZioHTICz=BKO{QceQ%sVby-N+dO|B`M82RfbfHrwkZB4<DEc?173$uF{Uc45y2
z1I3%<|8&7i-7B6CT_P0i_cpndcGbW&1J6lm6jBV_Fz|qaIfY6Cw^-kM6#q#ZWjuFC
z=d9-0JFd`PSI!@=xg}lq4SYE7t#--#$iQO*PYgUI>lgOW^=)C#+LE4wGovb(_B><V
zZTc4XqW7hNR|Y;A@R)dQ;0*zu0zQSx5wUMc_`+`DFS_Uqkq_h}JH2`Ldp{cPp&s&a
z@6s<Lg^zf%naFO^NmZU4ru!g>G7-&)*Z+At?e+RkyWMk|h%vEwR^x;JrWfDi-Ei3Z
zxry8+YMTg{$YUa}iIOHtnaF1%zlnk-zAzDM!YSnn5O1P@i8vFx4tb-`d-J__ZA};0
zM5o`T7cx=UL{SsPOxN7hRK!I60WJ?2x;SGC9rBhiaq_G;dbeBO{=ZOZ6J<<PHBrq(
zSrg?<R4`G|M0px&NbKRm-Y@C)Jx8XTu+EKRl}uDNLA%T<rfcZ7ZM>BSc{ly#CC>3z
z+@~Iy-e)3#O;^iAbrUsAP-RUM_1<%IIu)_C+R>b}N3fCp^7>8J`p5tDCYnex(ac1u
zi8?0gn)uqpHztxzd}ShNq5&JT9xLmcX#1Wc-4Xz3Qo6d9^)#eaT=EWl&rQ4=PN99U
ziHM2DCdlrMOoUA+d6SC#=Y4U-JNrFHbQ2S4BVwDf0h^t4k63ED$7>I7-P}YA6PeV}
zL`&i^(aJ<?!bWKi8IDjv)1{mEv!o}(1V@J3?=}ByPL;w*FCAD@qqp}v6KzcVVB$v;
zD+k9mWETA1MDt5tf<#*r?M%>6?M;;avRS18UZN>MB7G3sIl$YI)McWQgUSv%o9JR9
zn~m%?em2q7L@f(`3*Ag~H*w0uKPGyZ=xIVSA)DxBqPIyuy<w_}J|_B_7-3?hiGC*f
zn;2qZC}G3IKof&Z3^u`6bi?K!zL5Q%+szPl`#tCRz>Rzv9%kYf6T?l+%^g13z<sV2
z{lG~ln^T+|Wn#36@g^pixR)btjES)(#xXVKsT9t?#>L5W)m!reH_^l-RzH~plfAT;
zSeY->HY&J&ZfoNC)x<Oti%cvwG2O%rn#;sI6EjWBGBMl4921`=L~@)9QBb8+_RA->
zq9+=4O#i^mH?hFPLN<8x26q*{oi6<7c&{NJxFsf*npkdP1$mqlzs$swp|S6a#+5x8
zn*D*}SucSAY+~I9Za|j|dam_b*ZlVGbec#pp_<rcV!H{=gl=MuiQi2aCQNch6ItXh
z@o|<3o2>sS=a$<c+AdZa(Rk6v#FZu`(7<mdRudG<hFb1Rqeslq58RCp+=mbD<EF?*
zZY@n}ViO5wVm$?a6B|ryG*R;-*YqRT=_A*qR7fA!_{wB&qmfBbWkb0dW^6IBm8p8%
zM{dox0cxeK)DA+RiN8(kH?fngXtzlR*J2l=7v^)7w%5d8Cic<zAGyRHk@S5L;Uh;|
zf|%v*-r#_VgC>reIA-Dy>vh<qpP}6dcI+dUCZ^DlzVn~Dx~1#5i4zn$XlXI7ed+oy
zTd)Y*rk*x&#zd5bXbb<EIBVjeiAN^RnK*CahKZXd{xfmG#1#`)O<Xi_$wZD%++~yA
zn(*HK$i<BGDc4fye2P+^xNGF>cU@CnCle$^qDBP?bqmHvZkf1EN?_vMF>#l?`x7^3
zN<8h`iJA7F(!$_<6A#E<-v&B-;;x@bnOr0Cm`rctjfuA=o|<@O;uSfviRWyb7baes
zC^R9`T#S%H#;iyg`oUfA$WLxmSw6+hSNYDwdlMfCiY7kLa*BEA3f)b6dn>Jf=M0a9
zY!+It%b(qH^+sDbDi?p^XwOVU4huOgl(10JqGRKb%R;;bSoqAs=N9r?h_#U0LLLiw
zE#zY(%zo*1thKN)m8(8+Rad3`{fR4Jxm($6vNw+L-223BEZi!)C$pf1FD!a*0Yxno
zvQU_@74c-Y%@?8{6q0rCe@nc@EEKm;&67!LNtv2Tr|npWLbQ`CWudf%N){?xD8q&=
zXQ8}>H!*Q#*)6f%I+XgQg$fobvKl)2iaxW@esbEUaAQxV*FqHw2^Okbs7g~<@L3q=
z$t1~tqOwOsSsngsMN0oO;To)aP0Rhfz%LF8Z&K)-DUzqQg@A<>7I<Q?kYu5Ug`O7b
zSg32E6)Dz2vW2fKG_nx3P|rer3twCK#zN3S1IvB=qai7|et4-TlU|jfscVjGyn1@;
z6bsvi#D{2&^W&#)P9L@+Z7Wl0#6n{WsTP_OToYS0vCz~)GYdb>bx|G2>6Ux?2G)8q
z_iu}|u+Y*%ngyv&#vxDU6HjJTw#?R@+)rES7BVcfx6r`?XCc$V_ZEJz+>>s;weX#V
zHWo@{b5)U&Et8HM?Y=qu>$18(T4-yb9St}wo`lTbJE`%nuC!EspDptz3mq-|Y@w@#
z?9<~rS?Fw`i-iGfoE1mi4Ln^$&}rA*Xzdn`WRD9m$?GI%EX|hL%R+AplPpZO(8oew
z3%^(xZlRxr{uTyV7)){wjwPiHurQEmkKVRgR3LQ^o&RWIsD)w7QZ!3Og;02`Z(X*`
zqipsO7DieaV_~d?DdQreEZokPIoiUWdZB|mQy1<GTV=xIER44>!NNof&q_ottaXEY
z{_L3~?f*$m2Ww8TFxA353-c}fYGIm%nHFZTNvE@Nh6Q>-h4@LNUmK*&wlK%STrwGD
zVf)rwx@f4ZkoL9VzAi$xSYTnHg(Vi2T3BRZRf#BC+G2905x!4{n@|c<;#pZdcA16a
z+2fX5pj%gx?3qrxRKbF1;V|it%wa*c=;aD*vY=Q{X($W7S<o!#7HkWS1;cU=b2Kej
z7FuM_q>1R*_w}C=2Oe!g^)zf2Ir8n4mE`PmTA!*H-j~f?#cGTGpoeu9)|0OK27b4&
zmQ0*I)4tJq^c)v#<48Zr;Xlae*<&^k$bSqh&h85N@XN?%3tOm{g}oNG5}qymX<?^@
ze+WFIeA_MTAO!Ajvd!15d+k)x%<|$<lUGFVvap+!)-^!lZRnk}wSMR?3;QhWw{U=B
zPVc0@X_mdNGK0J;z(EU#n8`}yiX#INR!`Os5uA=%IA-Cdg<GUO3nwi6XW;@N+`=gf
zXDHNL^b$_|KNe2^Z@|n)A%at*JfX7|&e3$)GtZMR?+&fbp84eOCebsJ$gOT>&%9{i
zl7*`lu35NKChjt``xRD}$?bmG-s*4@0ye4Wx`i98{!GI(r@pJt+tkIva|<sl+_iAe
z!b1y>EZk>ow5|t?$g?Fqx~LmSA6s~0;VA)<)i<serp(n9nZ3$K2kG6aopb`Dg;y5d
zS$J>ZH3dKmZ<%YH+T;S5UbiF9C3C;ap83JTM+=`Ucx-$=tz~RfCcU8Li^_Z~)Fn>3
z?hp4x*@(6=+{OqSIc(&#kzylcBgRH98(-R}VB<6DZli#WI2*Zb_rXC|UPk0$r7+Ol
zWahJx-$pETkIHNlm3jSe%D|}1cpI=$+(rq;S<uE8HVQGi!qoV}Hj3CNYNHsdnH`l`
zud4gb=a#5UI>hiqlnbqrHcHtjYonZvwCK3fjI)f52dtGC+I``wt~{%MU(9_2FgiN3
zBD<|&qo$2YHY(fj+Ni=R6KqtqaiCv(H5)!wQ#3l$AI*G?cIIEW0#s-9!5uE-YT2k`
zqpl6VjoLN>tSQk(l8xr9SMx<K+p4AR8*a%qzOoUt(ZEJM##x`bly;@+9Gy8XI`e4t
zRt;@@Z6nX1*l%nsi_Wb7DW&ncbb5WITWk`&E7HhD*hU*0-?Q!!n#D#7MmM(6#70va
z&1_0dAD_x9*D)Cm{ZIauHd@(e&6?6!`O%6`w~=8Z)5f<ponjx)ky)q44~UNYMR%k0
zcQ)EZyAnQ*&TL!C-8}!mI(DILyp11iv?T@`?OA0f8y#%Wi*rBO=ty%_ch`PxgZqJ^
z%pv!yn=*srJKK2D+jR}Py4vV%qmPYlHoDvBVWX#wUTmllRk-*ZnbQ*7@JJV>tLtl{
zpN&B_2HWUwV*q0tXoFHulitovYx#eizh4gxu`$%fFdM(v_-SK0)pwp6dDF#pfh(mV
z^uF1!_30yRjIwdq#t|E%ZF)}trVY!+SR3PP%(t<?#&{bOY)q#qY)rH<$;MP0zuH(I
z8#md;(!!o8)O6hSW%>w4C4H4K&Bl@f?wPHx`nY1xv@y%Z92;|O%(f9J<*8G~L!Xk?
zOmj7Jy`T5bGM;&~qF&zBN4?K3q%5?t$OdmiAlWj#i)j{u0gXwnS3WePkN3Cz?sUs-
ztYFJ0p7_&V`YcS9q7BK0Vnekdv(}mH!`h6i-W!L#8ac>_Slxy}Q2!976FjL))ym=j
z`&ez;aBOU`vDHSFjg_=U8-LhXW#cy+zuQ=A<F8Vl)i&0!kyH2m{{?0n+L~rrXM;W%
zwk+%UF6bg;gN==hZ4*V0B2jnQ*A86@dm0Rl-E8A+&2X=C-fcFv+t^FP+Sp;^PaC^z
z>}I`o(sU&~MM}GY{rj5kdiSt;`tVDiE=ha)*zJDuQyYJiNQFI3a%2wK<vqyi53zFm
zVQ<}Y?ixGy_8zry%*Gp<+QxAkCv04|al^(*8>eiXvvJ<WKdjdoaseBsZR}$*U*F}W
zb)BU!Rn`+fB(`@BHxB$~<AROLHm;C<3VSZHj+bm~JLyhG7WsX@_o|I+OeYHm$I@qN
zs^|N<-xA!kam&VIaseB+ZQQYOpMsT*yEg9Gcy!hKy0B;Gzb-#r>Q%RV$i{zU<03;8
zjYE}BZ9KE_(#9(r&&hKOdtQ)JFmn&A>FZg)6@78^f8U%C^K0Uq>F!(J*?4aw-T|eN
z`e5TDg>eU;IrwD5;~>gGw1aHU|BvC>89`qwm0#?dAcupTlzi%ct+d#{LH8Sy$xJ7o
zJIL)IpM(62fs~fVL0$)h6DLRJ`VEn+YvEW21sudNh7tSRn2>tdyNMCeySxP*eBq#!
zgVGKPIVkL)sDok-ia7XuO?WK>1L-#Z?~&pTN;oLV#;Lj2ODm=CI%u>bOp-DV$~ySc
zK?TN8j%fM{$idy--WxeGCk%8s=f%1Ktxj1_MF$;vxiww~RUG`7g|=C!>Y$o~oep+6
z@Ht3u@QZ`t4yrq-;UL{XhJ%_8YB^}=;A;nd2elp4aZuMmfF^a^-{_MZ_A`2a-<>f&
z_pc&+^aMRV*}+$&!`w+h2lX8HbcXs=<4K~wV^CRXVv^l3t$~B?tD>^?Ork$)eB&U+
zK@$f}9fa6&!mL*#$NiHC|C{?#al}Dm2UD^|es374T|G#rTQ(!LJ80pcrQ`k$Bv;Ou
z=Km+s$#C6)Nomw%MYVF!+QIw#DM=^8P5yDmc`_l1XwE^VgKi{)gKr&t=b)W~_73RZ
zC2bsh@8Ac={mTjQXLOGK(Lq}WFV^O#qXFp8G9<%#Dbm5gPYycK7d{Shv<pzjj*N#^
z{bHbx#OvbVX9rzrv{63#Zwvj2ChEJu`y83{&zc?%dOGOuV1R>OY`uNhdg+CP-lXIq
zNyOaOK|iANxY8E-$9+N#bTG(q52_gEV6cNB4*K@@4R!Fic>)ooJGf_RkQkJZpT?nU
zgoBX|R0o=aQ4U5snCD==gE0=qI+*5Qx`S~J#ygngV6sEWOQR<^w5^JtNVD|w(X*J!
z^w*&&Ov0%SesypzA>1)4R4S(%AN<u@l^*Gv;b5kNIS%GJn8i3}lbo~TpI>t~B(-xA
z6y2Tn<zM2d9J3;NfrEt(mOEJCV3C8xtjjW1E^)Aw5%c|#)@+JW=hDx4VyGkUKyV<l
zR*{udDUo`=cQ-0`PqzO4KuBTrXYYiT9!}LA7!Lk$u)%@pz;f`LgVhdf^1GrD$3Yfb
zFD*IgP|8XNs~p^qj(b<8S<jrAn=ZSOuW|4@8*rV2wWPEa(UX`+)b#BH_aV66!O*s@
zPi=It$-#EUyxGAP2U{I%bFgxRyJRv1m2}Z<GOHnahl4*I1WS09=gho3HL}~m9ttd3
z$diS=4*qg*)4?qV`yBl3;EaQR9qe~-z`-#G#|foe;Glye4(J8`Lk<o*Sf4ZVaL&vz
z>48_%8vn2`c+|nfossa)(BpxzCmft~aLPfO=s3D)_J1f64vIbff2$jtT&J+RUhPx*
zSqJAG{O7puexD-;DHNf%nlCuG=-{e@YmWOi?<EJ99b9ohujOCQnHe49B7y3^?d7}9
z2E5_m?7-OM{u#w$GHD}6$GhKlaL2(%nv|lGgL@8M63j^94jwpo;^3)+hos^3z#{@P
z8)WRK^xXR+^<y$g5}JtC`;6iY`4=ff52v$w<p{U`k4TT0Ogbd`wS%_~-Z_{ZlljI$
zqi-^<mu&T(BHP^%og)2#4Zf0bo(zUOS;&@!7}9ozk0i{Vh3G8g$Z{VCQLOCsU1-j+
z5VhvaLd7`|Qu57Gt#W1Ivn=<${m--9cd$u;#GmqaC~p?>WuaykYGomR7GkqdDhs8v
za3UtNKo$yRp>P)BvJjsIWYKRT$py3U1)JsA$&?xo(`t8(NOObd{gEPBD4K=hStyZ(
zVp)h99DBNlkIYB2?EHT;T?dpD#nUI}<Bq!@IVXVyj=UTka;UfL67Jv<tt2B#&QWp(
z$%ueN6(#6S&I_o3U?K`CD4=3a2qIuW_<l3~zxU?N>*=YfuC6pa-PJW$qV?jw_;}g0
zc<R^n{P$GDI2y&#B92fTjpJw%=WZa}7srtrvCoUbSIY|iUHas>ShF~qQ>j+;s#s36
zDkplD^X1i&&OeSeakP#5RzI|yXdOp-9Q@o^^qxP9^?n6k!_O8g%bvCisLel~-7$_%
zarB9!ZyaG(#_>QL55|!ZN0&Id#c_Y!kLvFlM`j#T%ZZk+M!A<{RXK5~c~SQ`vf}6w
z$FtQ_Ke^=BKQPGGx?SbOn$ZIuiX%IYSRB3LzFtM*=ov?peJLj{loQh4JSy1AnFT!e
zj)UTUabgj{8crw(O)JWYBR7tMI11zF7x#6qKas?J4JW(u<9Kd)8uf>Sy<RHPykV>;
zjsbBzLVgA?B94bC<(B?1^=Qeg-^z&(Clw8f`}WSK2FLMcQ8=x<;7){|*CUU{@mL%!
zCA5<8cpOi}ahOEL@njrN#jzod7vdNe$J24lCM)82CXV58jE`eN93$cw8OK;MJdROu
zjE<wk;P99@+Laea>%{VtWBdnk@xn0o3_iFylr_zl`zzzpC&n=;j%jgBk7IHiQ^?pj
zy4EgMa)TeHOPHc!(U(?*+IEi2AaCQC8OJOt_D!F+ML~G{u`>Cum5t<-7khTZ=CWUL
ztcYV}9P{H?KuwNgDa}DHxiF4JaV%y{<D#d_i={1mdRBhtf6FY3V|g45)qXCHA&ZLM
zEM7G5R%B+`{8#&j*@abctd3({9P8s)!%odBSQ|&qp-hr@;YjX>wfgdhI1M+3o~Ma*
zjO?G0#(zLpC>`4v$EG;mh$9}y<~UxA<CQpe#lb+_Epcp*V@DiY<Jd-H(Q~_g7tNoN
z!2tE0al91A#NSh2rY=1fVq7=Rf1fPOe$)Ttc{PsL;@A_%-Z&VM&e-7HgdZ6DW|02^
z+80NEHTQLjro1>js$h1wPx|3pqLt#1<8b3lH2@_JH4Y;VGY%~dJ&vE$<k^o#2+UAq
zhBQwzqgEVt91NIuDEeEG9pwe1=ns|`H%{g;!Z{Jge(FpdZ^dzd3Yio+NQEg`w!tF*
zJ+-}A?3421K*gN5<2V$U)l-Lah?#Ney!#IAG>$*wxEaT>INpupVjP#^crT9k<2V<`
z$8mfR$A@v8isN(~$KyB=P<S$qM9;jJH{{(cFZcs%pB4SXX99+Q6vx>(F0T%qo1Gp#
zlv}-m;NQMFRS=)V@o5~N#qoI@=c$C#QZCR(y`Gk_DRg&NbnUEO$^zd5Y}sDwrzsh~
zkBVK6<BK?cWOH$RNe5*le;vm+aeNiW6%Hn!FQnjhuI|V4w{d(&M;FHrG_e`!{VIsa
z+p&=qM7h@r^<bj@*avw($MH)X*W$Py$FFf*jpH}+yq5n7d}niRt4@(07H2fci2hrv
zFMn$MdmJ~|my8H0UtU3Q-v>8h+=}Bi{jG!)34g}%7Xc)ck??mM|4>&Y6qj&^Y7oa=
znmKi;O@zAoN(FIif2_iu!UGiqb*ACa!V(fnN+>0v@pGXsDu^G-Mt)Drsk^%{{8-_i
z6+~GH<s?*;P)S0IqtWsbDo9|Idul~7VRs=Jb*fl2Ny2Yq(ke^XT0HgN6M3yG`VO{N
zMNvgUs)YIy8c0Z!00}iE)RItDLNy81CDf20)@MClQBbL<7<{jhUDutg_{O~266#2(
zE1{kQs)w&^Z{$+d8_K!VVd9_AyQrarMiQDz++~TzlK=8DDvBl&7FHBnD~d-?<ejQ0
znn`F*$|Zy(T<u--Q$=xYX8xd!xitreUmx$ww?ZY+T0**nbrRM~Xd|I5J)49lB(#&z
zUP3Pky(M&z&{0Bn30V?4NeD~mB5_M&@Bt+uLjt2liLG%Z(Y8|lF()TeLN{)i*OKp-
zP&hc8UCHN3xK|NF@)%~;L&5_RvL!?$JV-t~S+t;A>>(1cvWPz)f2NZ7d{4AzfIKQ8
zCShJB!Qb8ygH|<WANJpUeI)cH_ar<lAxA>4gnS7F5^gO`>nEYVgggnWKg-@+NidX-
z@YCn`FSSAmMG^)O=Nmo}tCAqhmVdLiychZHt3HoN7${+ggrO1!1+5R3aBiMYHi7Au
zH?J;afiZ87N_b2HqdM!vihi3P8aF@mq=cs=%#iS`gkch%mM~VrI0?^47%pL?gi#Vk
z1UMOeSFTpE;%j|WEHfr^w1hE||3`J!kU1oHyo3o7CQFz?)q1<wM5@8O&?KtUnyg>?
zhfkZ)+lWk+Fik>_W3lO!ev`<FN}|rR0!Abf@>V4=Q^G6>izO_PFk8YL2@9wg66TVb
zq&z^_a(qT|k}nr>fDf{R3<c!lizGjsb?uy9M7vbNG6^dstO{CLF5x)|D}s(}PRVJO
zBzVqG5{&&@En#$$SR-Mrgz`7C$(i!yvwj_!PK1n!eO|%_3CAS7E8ztR8zsmR6bYLo
zY?kn<gx4gzC}E3)ozx|ol7wv%woBL{p>>I@64BU_BtcZ9w)eDxa!sQDvFl|CuSnP>
zfqG>niL*)KrzBClvS3{9ZV7uNye{Dl>S|tiuY{hJQ};>uCpqHQjn>Z#KeanEPKB?T
z+P1QgXpfae$7uyK>qWQE3#k$`3Hv1+kf2L2BsdaW=6?vdXGyRF73y7CB%O#bT9x`k
z9(wHBf>1&N0eHz<q?Vd?P{NxMj!1Y%!dnvFmT*YIVS1G(!ql$+0!lX|<uHJmai@Ib
zNiF#(&A&s8nwGR6w5fRXJqhni_(H;$5<Z~+k?@IxPbD0ea6-Zv2_MnA^J6C^oRV-l
zkWSU>zJ|X&KSb8CaF)bt$>%89K#q+3WQgX>ma!))i>Z~xc?lOJT$FH$8dcf<K=@3;
z=K-Fki+r9}|0esz75y%jh+PgUDG>%{e<k4xy_1ArBz!I5n?R|4l<=*D?<9OL;Rgu^
zN2Z^>m_7NF|8{$!vbZ%d#+BdK_C<dR%#%T+3>p13c<?s~*XS{77P~4zsw}8`6!&!r
zze~75O<w405giL-iOCb*y(Qr`70JLR1Aj{ROG0T4Wi<Rv5z~YfJgVT1gnua%85?EX
zm2i(zlhI2?F_{A%)R)mf_B~h$8A&oK%P1+MR8Uh|MmZVfWt5RoRt6U})`X&5XMDG^
zNS~EiK}JOxm1L~j)GMh%Z0^Cr*y;i<UOdsVFj+>5j2bd(26(E-fQ+g#Qe~tCHB2wS
z<FcMpO{Ve}W1)Ibf3>pss;Vz39<^lDmQg3DA6_Dr>mzk#5V9W6-woKkGp}s2s68Oo
zP(~veU1W5X(O5<k8Lefc%V;X&J{c`!gk*5hq*;Kcxr|#g(i<iF_ReLd&nl*J(X*wD
zR>9reZoalWlq}lFXe*<GjE=IuAlOd!m(SYEcy_t(ot$9<Sm-1p%%@~zuwOg=x4y|`
z$Baon{oIc~Fj-{E=q96Qfc$<L-DNx|;~^Q$tB@t5hl~e;@|0w8cUET8KGDT3ePj8!
zc;##v5mJ6R>9J6ht6HoadpI*1;9>d62C?2U`p6g~V{A~_SB8-Bu#6lTxj{`o8F@1D
zW%QTvWTVvaL0E5rj6xYjG6u+4l`QsU<a2$KOJ=Voi$TK%RITJw{)mi$d_=}m0iHoJ
zhRS$U#$XvkWb98C=aU6>fINIm#^W-ckin%cK3MX0^hUB^YKvWZ0lg?|hRJwF#_#~o
z(=znWqfI{QHA3cm7e>h#O}*+KO$-TBnyK4;26936=<@|rcErZX7%yX)jO8*W$e1W&
zj*Pi7CdrsAV+I8wV~UKaGN#FxF5|yN>L*V2W}#AwFI*lSQp8Ldvt*q4p!4j2hQbsv
zx`Z#{mxJ9U^JL7Iu|UQ`_NzoH)qv~E%sjA&LYJ{b#!?ygzvaK7czj+ITmNPu*Cn}{
zwzf><IT<TttPjwxBr|2Kk+D|BY8mx1i}=&esvG=C54Tz5uc1XOucQ8NNK1Sap+KLP
zv4Ksr^vi^ylsC!PEaP9Ar;Hb6Y?1MSj1OgOm9dR{lVQl%E@Ov`-7@yb*eT;B8M|b>
z8W8ZZjN{W{udwNPp{qTMM%?X5v~8z_U!!U8zZWG^`J>EjbpA5-$&h6zv}GA@$cW33
z0t{nP#FGE#+h47t1$R3Syk7Xk_EM@0O~&bfT|HOyBc8JlMok%(jJIVRl3~km$UPYc
zWVkZ_@KVZ?k)ZYl0~L;WUP%!zZH#i<a*%grycIM@uf8qVYomUa&6foO^$*K9BI8}z
zf6>1q<0!pTtzyThu7ksGr--Ik`uvz8+NDRQE(pCR<NW|h&Aq;88Wl#4%Qzw9TN&TU
zI4R?ljL&3zPO>R_8RuktEaM~MRDFq@rN2UiufjUtg}4vp6B(b%I4|RZj1pBu`_HoL
zR{5X)JU2hYgRx8(Wn7Z+rHrp=tu<2Fm&-D~;N>sA_{Ow}U|Zf58DG;7WIP{C(-pfv
z^5ZgJZHTaE74bbElyO7GA2NQF@so_J?5T{OW&9%JSJ`*?1TJJZyZH`(bQM7le@(`9
zdf-~cey2885&I6s?)$g%k<3VwV3*BJx-uDm$@p8wZ5e;kSt)5LWBfjjMT|s}u?<U=
z{YS<fn$LyoSN^|W95dV_dljTBXrrLGf)Wa<DyXKQq=HfkDk`X?ptOQAif`8y6uenQ
zlvPkpL3xGg_+n-2MYuJFw|G2U6yfmZVil33pt6Eg1!)SB6{G~uR#9-bir}z{kla>7
zFczSok5rO^o}wjFqt<1{sw=3Wps|7`3Ti5-rJ$~YdJ6top2QJpZ3T4{aPLfmRR8gZ
zQbm0Q4HPs~(1>93LLByR_`zNeNfl>qWG6iqF2AO*se=0yv{cYaK{Ex-6|_(gQm`OZ
z>>loaCa=BHhntutE)J2ad<C<nwSsQ&-}}3&Mo3s&1??2{QqWsLdj%a7bXSn2kk9C(
zpo@a83c?D`7ezWN$ROFP{1Gx0lA}}V7?mee0ngnO+^>N8Kpm#Svxe$H$Q}wFP>`)4
zqToRVn^VO@3Z5-imLtZ0AB?hJRQR3>q6%Wc<J|spFjah=$x(WQsJdOu?xUcuf&vAF
z3UU;@r6u=M&|iUbCz`9^asZqc2x5QFqI{B3FEV*>n3$<cMG6KectpWK1wsMGNDq@g
z4N8(5cRTqng0g91km8%+U<E@IaC6)XALQ5zLsyrCIPBrz_Av#Ild&pVsCYublM0S0
zcvrzw3Wh1z#2zVlTER04W-FMZV7P)23MMF+s9>amQ3}Q=7^`5k0!BzOo^AiR$TwR<
zJ@$siDac%y_VI$W@d_qSO>ZzNe6zA|Ym<1XV7h`C3Z^KSs$d#*H97jm#pt0AqYr=J
ze-eJ2l)?D1XBEs;FiQag;o78$bbcvZisqz=<*7cNxeDefSgBx@g85Vl1xpkxRj^RO
zqM*ga>_XcA{J`8ap{HbQOB2f!ET=#ftWYp12rK1(tKa(E7iH}|p`ODE%9yd$3f3ri
zUcrWd?Q0dRQ?Oov`Ty8H?-x0qCid>}_3Z@(8v`)ETzkNo^;zGfi5C@YQJ^W%6>KH_
z3U({lqhPy&9SUAn@Cxnp>F`dP*!Z-U6dcYE|Mqm)8XIGL{w@U{l}>$C!D|YB`5?+@
zRYv+T`fkY;zt?*e>{Ad|Akp6CyoHa4Usv!3wR(Hk-aDfeAzE<|!LIEJDGF2tm+Hiv
z39<55{9Q2IUi9oUIR-nTAfaHt0!x9dzzgViSgw}J-2rZJ`TT9)IrM}$o1EHjYv=&w
zOF9)Cp(ml1QrQ$7qEf-<@W2Q9aVN$6p#0H*@Rz@2zr&709Q}XJoPIe(0@#=L6uhtC
zF9m-q_&~vj3cgVArGn!MPAK?9!KVsNDmX<ZC^)O&w6A`#GYW1bqL&**I_E|i0mvZ9
zv<G6>C#9TI@G;%UsBpGc$PG=^CdAGwxInAnkGp9>5T7adT){=6N{=i*8oO6BpM3sw
zbOC#GnU=Dt*KPiG?}x}&3a%*lnG9F(wSsSGDGGj2@GZSoRq-A5vu?>}wq`SaxLs92
zHU3ZZKPvc%##>cTkw#P%OV3AsRdAK0D)@uGPQf(=*A@J(pmr#qT;i6lJ;$R*Kgmw~
zl&9Z_&L=7bx9E)({K-bOyuDQgb?i)4v3O#PP1JeNm-s&%{41!UB2~q|bj9@QD$1z1
zM=w1qrMQX`DvGK6QFw@Ps<c5qQc^`J71L(*qR#wSRZxEzU|d#3ITe*uB&jH`qJoNw
zD!(`L=06?Y+@`4Lc<$Y8g~z|orczZ_K}$?lk)k4dL=JIwf56`fb-r2O>RYnXR6s>N
z74=nARZ&evZPkCpR98_$MNJj8RCLOV+^Z^54@TXoQ7Y2dk9_;0`qfcUS4B>8lxlfM
zic(7(sA#C7iHfEw8mVZkVq>tOsdhEN{Yq`Bi9XfDeJU6=+Drv|!I;uTFNOLy^bv+s
zv{doDiVZ4Ssc5ZYkcz=7(p9uk5mC`oMOzi^RCH0%mB1@P?NxLnc`7;tm*ZCY><SY<
zlclK0@GJeEa<ZDKCm!z|V<A&THx)fpJfPx!72Q>2vCBsC;@W*DR1=F5{%eR6m2Daq
zJ*eU#6-+vjtz!M$g11(OCS*j2fpf(#y%LM6h*3-`XKv9;^^>tYyFS!cMQ;^-R4lJ1
zc2)CDiIn81$R*9ej5o7wFquZ4ihLDCDh80rog)P*m>{K41+!=L4M&)gWk{R8LdC->
z9#Jt+1ygVgKNng1R?gxP1^t$X`i}{pJ``=cw$~69Lsd+rZjb;KkEs}`Vw8%<>HJkZ
zt>PIKPpWuI#W1pNVC+~x(#7CBY+{%xIEGWigZ=M<5!8V(;pph_h>|h0Tx7J0F)Ajg
zn5bf`ig7B&vkTv6bH?wlYU1ZLq15VvGq+5WGD*c`6@9CVDS_HdUssq{F{4Fw(fmp_
zXRxQMn4w~cilr)^RWVb=JQed*%u+F1#T*rLNn~}gxVj)Pk#yRcm)axta&<8#DSv^A
zg(?=QSghiDrO2i)vs0ccWI-*Rf1tY0+fr>K%gAaKt0{36&#73UVx@{zDn6|)IE(nz
ztA#vYuP!LKX(tLFx}E)K@zk{{)={7V&e|_!m#raM*APTYY%fq<ReY%8xQb0GHmlH7
z=qg@Ru|>sh6?;@{Rk2OQODbMgv7Mb-AKIZ}r;4|^rm!hAH|)zdDK&?=P+p-us(6*+
zQ@LTYFLmaT&7pnk3!^o}cj3sL)xBn{FWjqQpNhB&NyY0bSkHdFL3@wqzP+HAT-(2t
zRVXS{6(`F^InP}6h0vfHf_g~)&#55{6((D!jjOO!*edp`IH1B&;i~XdBviapv#(tk
zR@Q|sruxCgn`#KTh8Qv_eelN6K^1SRcq@<{>6x^uU!9}5O#?eRtm24@V=CSy29;xV
zP%}H$F1Gmo*q!G>oQ)^gd(`1yvfo$nfeNbVlqX|TUJSJjN7^T4u>J&TR=G}rpH-Yv
zaazSC6_-_<QSlLFq~g4avntN1_*lg!0S#wrh^saJ_m;0vQ=C|u(X^(xpyD$XpR2e?
zC4a$RU1BbyXP0Ggww!9*y`~TUg^Dj#e52x96<?_++b{Wwim%!9`cTtY^yR7Pod0k7
za<rhP_)f+5Dt@5R(cL{(IKHOflr=G|tSNX&1*Yo$qT*K-f2sIe#Z?u*srW<1O%>Ou
zHY$Esaf3}f8cDj`e|JrBtfpXQ6+ZY?O;Nm-xTWGY&F5(BPZf1)iBIcByVVj@S~l@W
zE%A?vJM{K+@*4hCahIK165|TO6KnfrZi!N3`)$f9uAzj6k{U{BK88uP1c|4Ll73!N
zQP<ZJWi^!35Y-XWQC?$w4%TQ`tD&NXN*eMs<ZDRMP+3DO4XrgKYe>;hQ$sDyckfj+
zR0|5J8q$ISG*s36jA4H?_qoBttR<=kw`v4u)|CA_yEaME&_qL14Rtlt)6h^uBMtQf
z7?<&%8ov1}YBbKj@o;#`>v=y00iS%fv4#`1gta;Az5uehh897gnTBs`iHtY>fnq4A
zX{q5(EnlW1AMq(k*U(18{TjLlciU<R2ZeST+H2@KCcT4(jv6|V{@Q|T{ag;ts4ea+
z=o58wI%~+#(1l<cGBtG5{8jS2+Je!K!)pu1kUZ5W`pnGO(eW8s8hQk1`)GJT!-E=n
zlD!%p(vYno65Lu<+owti&Un>-o5wWt($G7&`+iW*%5Q6nKc>aXDzUyAax~-ycl&AR
zui>y9o4q&I``_R*`THpIsugG`)G$`VI1NPs<RA@$gTep}Lc_yB`4J5RgTnRBv43le
zjvqz2;ygsdPz_IOct*pc8XnW|q=u&guy;$PKCa=3piEiRsPjLY8m55~nR+`?^<HPz
z4-WuFY8a(qL{RP;K#taMb9>Sl4eNrajQl!ccu+rH!vqbpG|UcwCu*1;6eekytYM0V
zslnwm4W~CpcNEWRQLSiE9Z`na@al*e8lDaArcF(mse$3Rn@UFB7#EwPVQx^rT*EvK
z^EE8iutWoca~5b=$O3ye+kY<~sUs4H{d9|8)e%dBNBS;KTSh&vUgV67)ovfTQ%5|f
zVTFd38dhmoO;wx}MqSaSu6Uv_%%D>~yLN4Cord)qe${YQ!}A(8P%avdXm~-xMh$Td
zl7>whHfwlA!!8XkYS^M-hlZU&qgyp>)39ChcLvSg73GkocU^yA!`*5VW~IEO;pG6V
zVTGc0)$<>(`#;XVs$q|Yy&7KAusZ<YNSHg4NYXxba9P^x8s5-w<yU{8E`IjU-2Xdo
zWRa{v(co(EG^lJ;<AgaZ4HxHT=m8#sw8_3k@hG_?WNUE9((!5Dtz_?)2zMN_eqTTT
zRg%zfP{W%V_G>smvw9$ZPF=wrXZ%olOT*h54zX(i!Qt@*pVf<Sw>UplzFn5{j)tQe
zE@=2n!!Zr-YB;IkRM7f+8a~kQVNibmKYFHSa8DCA${nZ4Ygo|VZ<^mMW?gYw!x;_d
zG<>Y#BR*AEB<X2q$+3-D1mG0qwHigAXyDGZPc@vU2)2Z-)D;}4->EC=))U{zg`czI
z6f2#EhD#bQlVd@nUugJ}W?MY#tKjmPEt!0ZmpnSx6JH0FJHs&!LBG@RJ^g@&Uo`wc
za|mwzL{q99>08g=*7SB6KTw>ziq;*d%mR-oFQ@&c;TqkYj`}*TYxte+myTD*4Gn*2
zxU1nFO-9450NXzrZfp2c!(W{Cr-jz@b>M}08T^uBkJtn+7uOSa_zKYQR`tm6V4VL;
zwP-ON#dVa_QA)>&Qe_ENLgy5>zx{U0mRM;WWpp&_A1SNjrF!B}J#oIC;AZpcslFCf
z&{0uGRh?l8sH7uFM~aRrx<3N1tRq?X-98Vh&9#7@R2^x2q`m-gz7}HABql>30MkJ<
zs_zqAT}MqFwRCi^FKXy0tS@eM>cgB2wRP0dQCCOeiP*v|p})tZUpnf~6;G%y8t7=K
zqmz!Xjz&5f>j>#+88qEQ$9-%_$DR^pn+7%Cob(l=xsDb(#@6;{+t$<<*XsF|t#q{3
z(N0Hu9qBsS1n_Nja2FmwY5lL-snHfIGUD|`2OUi-rc%lsNoW7a>H6Zy22o$=Ix=)*
z>FA-Oi;k{3?$_~k1%E1u49V2dP4~5hN<~#+fw#JolFmK{9tfIyNJlndbVQg+f*S{Z
z&W`Bl8Qh{iP>xr_(E;Opztl@dZ_=jYTOECL^wqIR$7UTlI&yVP)iF&+KOOybJgMU;
z9eFzPbqv%oNJl|{ut>)MayTgKReTNz9S`exB&gvfD>?l&s7F9vQDm@=Av%WYcvMH_
z@;-UDlTsh3oXTmg$8<cd;|U!<))%~t1-fxB5a=)+Pm|R;#_4!Q$8a5^$me@y>NF4|
zbd1!oytI$1Lj&<msp!EO8KZTK(ee8Ck)HF?dtCe9ddhemlXOhhF+s;fGGtzQ{(u<Q
zf1e4~Ku7ONn-b7mx_I>Bxaf2pGjuG{v6yPCW2TOII_3uevvkY}3bX&ek56pvHCM;q
zNvQ{tGC04zDj;Toj)egLCntGu0(^;%r8-vWSgm83j$_9o&*@kZz%1AC;%@&1u~PR_
zKe50hQA6rRnHy@2j<q_T*ReszI`THiYPCLiiXB{(7tU=UUI;D^E=}7={>%$KUg%?Z
zs)2Y>#}*xL>o}xitB!3t-p~=(v0cXw9k1$mO~+1}q>h($yuv1sTIugd&ot~jmA&gf
z!b+!7OkYQQ@$IGw=-8`cA1Og()4ej~K2KU7B(Z;8$C}cqGqz$u1K$889kLEbhpR);
zq3SSoSOG#!hpxjQdlA{(KxoCI6v2%-{ve86;+cmXK(-wc@o1_#-qi7yj{Q0g=r|bM
zI$Gd&kcZVk$Q3jG;|U+<vO?)UlMm}SqT`f~(>mVKaa6|#Iz9{@Jf`E_pg@%){Chgy
z4=z7yAlhd6zUX*x`A2bIolfXDspHpA{I*Cf_3Dg{k92&d<8vKn0|ov>$EP~Z>G)X3
z`dJwSBk(T`#CggwK(%RmDc1abD2LMI-HSRd>G(p&mpV!`6ql*++e=Z74IBD=`%1?Z
z8vFm7M!$NoV+%3{p7m3NoqaLuJ00KCAsEOs@B__6N2-A|13&5bS;xOR?&|o31nc-i
z$4&BiX~tC@*XZ^swcE+R(ddSR`#v20UB_Q3{+8YwI%bbeXCY~l@7QnYxXoMCWF56{
zCI3n8txU@qn^y2+<e8iZ)3p)iA02msesymsUftBIikov!M==9s43src+&~Efr3^oa
zeaN`<X-m?U4h@$y&~|JFv(oYL(uVKMFV4s)XP~@+Bm<QVR50-U&E$#(Dj6VrQA6?6
z{PZ<%XEJRa)3PzvH`zdnfhq<jPDt-lDdW>g>36&2GhZB0!9Z05_Zetrpqhc|2I?88
zZ=i;Ong*vwP{+V0H<PcdO#5SExK_~m-3eh!DtXFCW@vp~lA06Y8>E4OhQZw?1{xV?
zY;Y~IBy-}iiKOv9bJqSAX-ZP(q<@j)i@3Rg76#fGXm227prwIy18oenGBA5dT5AJe
zuT1;BYyRO!!ej+|arCC29;dB=_qLas+)y+sO7CExqk)W|(M|@!ECgltF6CejIku>H
z)<@&Q%)Iw@qtq@2&adjn`fdj9H!#w`C<EOMWEm(jFu*_$0}mMJW1z2r2Ms)Apr?VT
zfi4r%vkgQH*z?oJj`O?2A3gBQzQ+voGSHj69hbqsMUYNz9N@vg`+)_q90UCg<Qd2{
z(9iJW?ah~>?{>~$)P25z0t1DClp9UTU}|LIWWgPue%;Lx1|Bx>n1RO)JYry=fguKl
z8u)lfco4~`k~a9iE{_Ngtma$XqlW)`4!dFU&Q)ovhsL-K;Rypz8hFOQa05>n7)AgC
z+~B~b?*+18Fn{lt3a0PLEK@IaMDRHAa0@`!aYdsIj4`m#z#;=<4U97|&A@a6;|)wO
zFvY-BYLS6ShX0R@$p+q>o!)7Dxa(y9Zy?^iXrt*Fy%@TGGx?eAez52a1J4?mV_+_I
zbyeC-1G6Y!1Ft_4t~WV-?1*r^3E?X9GA3RwoX4IP#O51VKn<J_=Ee;&gg+Un5yVL@
zHn7CNY6EMi;Rco&c+S9zfE!b$g*V1aE;qoA6X8k&s{;OfIVY|A9e*s%dhT3UYhay$
z^(32eSzU7I_EICCO)1<T<<CUguS(lMS+Kw3GWK7Hl1r-^ip>UIG_cafDjQo2rjkZ2
z3$-n5Gq9byZQ@B2I}GeJaL+(76E7Kf*}!Q7XAHbzV3&b}f&B(vHSn4N$$)HNw}Cwd
z_Obg0%FXk=!CnJRri2GJjeIt{sCdKFH)x4-(&OyoQeU#KH56|)6p8`WfN8)Y4`-xn
z26O{PQ2xH5SiU`UXG`p>{ejyz;23ZXcmW5#m>uKY0o!~16Zpor{`BAD2MioEaMZvt
z$}RwV+rXhf2i^)UC+GXtdf31b1MdViD^KQ>s}n&ZQ8(Dv@Gfo8;4gA;(!l!$J}~g1
zf#bB?Mk3NkjBF$_mt+ijInUdbx3H1m4hUj972xSwHT9i#`Mmtdz*%}-13w!$N5wYq
zrGc;LXAFF5;G%&`v{nNb418wb^MEINcg40e5|?(x)JDFaKh{XxT<K5nmhX^%*}xY>
za^3G;_u8?a8i_0P9(0L8qu&_#*1)X>so&ANHWuH%lQS;llhmlO=(IWa2LnH{FVCj4
z*W~=gCXrtZ{A%Df19%KvHSn8(8wUO`a4o=g-N5ewJ$yF*p1-o+rLj-X&EW2nEhD#r
zLgIQJCAE2Luj{jm{xa~7fjb8N4sHz!;QyuEtNO3VyFq2wSAF6qHWtNAlrYi8L|YRj
zO_VZG%S3GxrA?GEQQ1T?0WKGoHBrGtMHA&rlsC~cF`#RwB7Jnuoeo6<59L(i;|tQ0
zOt5lt^VscZ<ne{E6cbfUR5ek}M5>8269~Wvxva79a$_&?+*l0iR8-wW4HGp@{M=Za
zIy1n^&SP5FGmQn$B(jc)x+d;3(ac0W6ZK6rG||XJ0~1U+yZv@#@r-ohWR};)CdM6(
zG%?YX9cdyaMkDVRi?N<a2-e*6Ut}Q@ElsotC@J=BApvSN5v@$LHjy3x{CdY{^4M7!
zdmqeW2iuuwZ=#Qhz9u@D=x8F#L=O|4OoZ8A6PdI`a@a(Mi7o*LlE>zJIk4!VCSt-Q
zf5hI6th*S!-$Zv4?0B6o3cHVpy)!O{nQ|9s(FaUCXd*(Ens~?r6Vhgz7}`XzBdw-}
zdC5Z5M9f4l6TMCRaU#<3?`YQI40d@&6VdPkpGDP5XXTj4HSw^CM@;lH(cc8qAQzd)
zGm&pH%LfWgkO>=`2<A6FcYi-MXo3y#@c||T1wA&0kDO~Fm~ePtz=|QH#Ka&IgH0Io
z{rNHVaNz$<JZ9qYfQOSm$-Xdhz_li#ScjsYN9Q!{8F|XYFcWW?c-zF&B*VmuCbpOu
zZeoOq`6d>a7-?dZi76(gniy?jjEM;*CYl%<v^&nkcoY1f*t^?r?#S6Zj;YEw6_ZR%
zrdrl6nK+frgJVdZ-zthsGcn!7EEBU$%rNn+iJ7K9NaM2v;PBo}j&LCNcyeTpiMb}`
zkx>)Ut1j}#eyy8|X4`uWZyJj<6$?!)GO^mk8WW36EHSa%#B(ICsaR_Ip()EutSD1N
zVu<-tnW7b>_UWXRCRPPxOV6f{Y?7Z?pT+1(0<1N$&cp`F)b!&m*PD3W{9i0hTE!R#
zkc{u$Xky=)$R-n;O^{SRC8b1Gm5&^>ea+cwVw;J$35l|!^Ea`}#H%KD(mel6e%Zvr
zoamSQo3sfIH3|QUiT5i;mo^oQZz1<yGqK0SUK9Mr*&Xnc!3iCfrR_8Ex`{W)qU;!>
zKyMt3v@7EacSlnpn@~(Rw5)(dstKK<H^FEbjWP}PvY93<npkqg4(i!Z|GaQ=6`#Ym
z$3;DM#Kgg%x&6WUKyc>3m;h`gA^N?^)^8{Ck{ml^;;@OUWUq-MCf+e|!Ng}Kj+!`T
z;v;s=#JeWmGjZI+33kxLMknh76CaXJ5?nEZn2DD0PL%0M6Q{^z6KCj8uI0VEq1Tt|
zvb>E^o*BJK02a=f_?Voj5c|}GIWeu)?&yJuX`ismdkWd9^MNRt!k0KdH*wL#HzvL{
zammDG6IZAkrBlB!5vrW}rHQXh{2HXqAuzwcOgG9Vz78<3Q0`F9cP754TO$Wd{9xio
z6F-?~cOZvSKGjt8PVrlzxW8{I2u~gO)daPIEPXE}a?Qkb`dbU-E&OichKV~S{-p;n
zanr<~CjK&U%fxMZmEh}@Ixz7@HoI`QsrZ{JXX1QPDvy(MGRD0ZJv1UrmAh-=9{st6
zk`~;FX~irQw|r4D;)RX!V7Ziq(iX~CC~Ns<ve=7Oy-)BHbw#6$^!voE<37z5EL60R
zW&su|SxB-_#RA1znb=O|CR<3cu=7&(j><89uv5c{`NGGMRLfUIK0fb(4plARz^hxR
zVWC=3&b`l{L-=iJTFu~c<Bl{6x=vA~j)l4wEDN@UdKT(ih*{`m`5!C|EOfNc$wEU5
zjVv^_&?KmD7o3|0=QbAZv(U`)oj<pcHV-OUZV}Xkf^$m?t%5@9;LN+}7QUF8#sXVu
zYk?W3S#EEkgM|zAi?NbNHK}Bn@D{pT$O_PASm<gYGbncn&KxIq3krn4-vaYvvxdjM
z9i>>)!@@%rvMoGd;X%vaLHr-)C34A#g`Po8)ba=0yd@1u;m6dvqLRGqZK02a85W+k
z(APqag~u&CVIkK-KMMma2n+o!v>2L_Z=t}#llO@{3+A-+=%kE73*(2T6j5+PQ^qrZ
zVNpywADwrfc-X=t7KT_DYGEMzwK#W>g~1lK-Y2a4#O%~ak4t&ta$%X?u}3XDW`U19
zI6s#dKDw62%B20#CoMc>VI1*W7)G)!jIuD=!ZQ|zTNq(sq=i%W`EMK^KLv%HiQ$sX
zM7O2`KEItkh7bM_8OuR$Gtrp`v#B%_6D&-$FxA2|3zIBNwlKxQnr4EKbwACX+)O-E
zqwl_Ef(7EA9`rG@XYxDE1ToLFFw4Sb3olxjZDEdu=PazSFqgzzSY%;wz~T887Fbwl
z;Zig4M>A3MPo!HFe-F;qAG4QOSZZOJh2?=_6r@E4?kxP|M&V;e3u|wP-8d4nFXyea
zu*$-E3(s3vP1-E1rNUSsV+mHNxhON&cTi*z&&`{Q4b%q<8!c?2(3=Z#@6_eIW;Od>
zYVD6yd61J^$aV{RE$rj?-@<kauUOb+VF%61!b=ujwlKE2_%+oR-}@&+TP9~rN{if6
z{kO)e7GATk+rl3Djj`dmm1FB}7V>WSW&;SHQloFTF45O5ykSALpjn7pkf@m!6dLmW
z=(U#lOPdS!eP?sQr@oFy3s+?577X$~En-^uyK}$A=u2#en~QUca=&XX96A%4o{gq9
zJPQd6H^^8E`)ThMKDBV(!a@263m;hc(8605-nMYm!Z8bnEF89Q#KJokDz^|<&J8Hq
zm{+qf)_GM1_W}7FYa!mX@ScVDDY6M^3|cs}w%^xHiWq=V|J`VpS7OI4oUrhbg|ik;
zQo$^ows3|roe^$XGOK?JF{y=E*+OvV*Tok?{7uX`3m;qfgeoyTqx+WJE<+2s|A?E~
zdZgrw-F+@t_{_q07QVOexrK`szN9Fr8y5JVoy&9!7UOer&rL7da3#Y1eeIUSt~?*Q
zV&Q8G-&pvTB3s|@^w|i1K5{S!_}|q+9BAPy^A8q&v~ZP=TlmSs&-8K@ezkC}h2Ux|
zf80YDtE|6#Oeeq}m(0B#y=LJ$g~(2YBVV11{`ZrVBQN-nH!a+<kZdEx#%&9KS}0|s
zw2i+gAPe^_6tnS<g*z7hwQx7k-koh?+&tCwyTa0I{12Hg<`nR<xQ!AvCOlD4(gt_o
z%|4d<XA4m!<P-euqM|Z3%G#)Cqmqqsw(mmA+o)ipc}VmOi3yuSJ4XAC@$ryIvhnDo
zl#_+w$^qED`MvnFo@F6X#YU=)S~hCiNVEN4rNBm28w(r8xNotVjp{aP*r;h^#nkjR
zt9!i^5`6Yf5OU0L5ym{!u~FAXLmQ23e;Z>x8})58u#pG}MvtuO7@<lq7J|Vojf18c
zU_+8JC&z{tFS^f0GaC=vc!V_DXknwfjVv1>8!c^gu+h;*D;uqCw6W3F#?4P7>7;f^
z8dt#0t-ZJhjbR4u*y6j<_GCh_=)N)G|AJUL*$CU{Y9rIe<|*OMHZp8<u|fE1kH)BP
zU#|@@27|w+p<Z>f{XZGqZ-X1$iXD!f3yB?TdiAjJfQ{ZZ`q+5T#zQvFpN__CWZQ_?
z=xHNrW7O#IFM%v7wiFCS_@h%~WyPGvEd}}0%l7v(PU;frYa_=-zKsGKxi<RQ=x-x0
zV8wguLOcl8qL1%<vRVrMoV3tJk&OX11do=YcGt-H<-J~bF+>LPlE75Lfi?!&n9T0j
z7;IyRjS)6R+89bHQ%`IRv+<aX$89`e<4K#lmU2IC8fE-L&6heq**rSArP%X<KmYu+
zjb{Q%hLf=4c`vjSUnX+6yO6h}mSU8R(Kg1}7*G0_WQ?JdwdAqn)t20&Eqx8#_grX#
zjfplU*`R{4=G&mY%JIBAEd^SMsWztBm~Uf&jp;UK*qB4ft_VGAW2TK+HfB@4tpv4>
znmH^Ow?7bEQuF89m}i5^HZ+pg<>`X1!;2Q$SY%^~jiojSznIusiK1xo;8tR9`}Act
zmfLuaifUs|D?tVOu~N>lR^rE2f}W~WYyZ63#u_TT>yx_H#yWD$!J`h=+j!o_Et;y0
z4K`k|@ve>cY;3f#$%bS@rWTQnHeR*y8s~p(Y^Ao_c-h7_s*Q~uHg?*$Qa{3Yw#Kam
z(~NiDp1rY!&q-S=<oTo9$*<VhWus27DA(`0we}gfo21&<XXAC6Ij59Kz`8W1$Y#jj
z#2e8!0+z<fy7wak9*%74R8-VjOl&O_8!GL~#(o=`4c&%i!?t0Nm}MnzElV<Oys@P)
z_HW+O*5b)$GaMT(J%51hjn<;hXAyUIX!e8ohg*vat;GQw2W=d-am2=(Hr}%Fwv9vV
zPOs>(3z5QgSrd*$m>c|i(XZe_Wc>44jGuhR#!(x`0)%G=L~i$sTx%`vG>NXc5P9Fm
z2R6PUD{Opd<G77aX*f1cP-HgF+Bj$9l#SCi&e-_KhBD1xp)37fPWg1f)bw1)V|LRD
z@8mJHW5vlSAKUnZY#-_GH|Hu_y>xNG#%J^x>Eg1D&&f|_QMPf3X6}XFyA<h|?sK(Z
zTZj>xU)cDP9dFX}gIk3&M&xjH@@pI4*!b1PRU6;h_|C=;HhyHstEPS*^o1+GW75UW
z?V+D+{A}Zwpppo~v-}q~S7t{%7F(AtezS4S#tj>P*tl-vcPid{(d}EZU%U}zUP>O@
zjNF@ao0C)89m#7vIc4~^?0Z{6f71EW%Q<M_;BPvA8_5n*9Ne+-uZ>a;N;~+ccCoub
zqs1NEvr)_eRj9(w?A>~9zirti9F%nM$gnU&1@@&2YEc;nWgS#<kmR78gYph4IH>4=
zw~j<&KMe~ruHZu3A~JCCmTW53v%%78Wd~}IM6}-bktz;S9n^JD&q104M%LDJP|HD8
z2h|)@cTmFt<^IS!kw>cKGnZ-EFCsjX8{hnsUE9Ho+QpctwvOW))cfZnZ>Nik>7u@a
z1`ZlIXzYOMH+Oq%eDSgk9rU}ANBwEyps9oV95f4_`YRgSv@UDdUy+;XqH-Hwd_6bx
z3OQ)$pr?bVgH{e&JLu{l(?Pm}HV!&E=;WZSgLV$uJLtfMf(NM~j2s|_&F}kZNPD&s
zVK(6)!$B7Z-f92)oiO{0eEJ9c5@~)TN}hCcaKD2d4ju^TxmLSacL!O7-{!x^@Bi9=
z>Olt&ImmVpaq!GD1K6p;=VBi}pT*_-9_zEJG>i;uBVrDEkyj219rSk4$3ZT;9I&Ww
zfH@~P^TC+`wf!CBIapUaHQzzyZM_QG7Hw@K`Y!hiU(84^axlQbKnH^u>+FE5%nwua
zM7YhT#|kj8KxO-|jTlVDNJ|~!;M+Fh)Rt^{wLjbNn1jb1*bW>APf!pJRybJc;3)^g
z987gEEuiOV2csN}X1^Q^4{Am@80lc`l=K$Cwl8MIWFpEj4#ql|;9z0^GtR+y2N$QN
z-EAYvxp_bB$ou|kbW(6@GN}y;+;T`VnqBt^-dHC#ovd)Mz`;TX&pMd-AB=-p4rV);
z<M@e5nWK{VCkJH2YPS{b+xp5d&%yiv^7ml(AKFG2Iausqc~H58G?ys5)WNdg^7CLV
zL)(zWU0}0n7d_{IJ0f!fJgXe6cJQi$*I3EkIoRr88~IP?@8AU*nuF&ZyuUteLx8G9
zC0~(vOl>PRIoRyrMVi(B-&z&m6gy%|AJ5U-iW6<cb_Y8gyzJl=2Rj|S6hLzC7<au9
z2?=9zNK&=S!KMS1xsi>PWZiBDdmP9PlmLFOgMAKOCmALDso*yp#2rWu<9yNz4o8{~
zEn-$l)_=G?Z*R*;$D~x%f#JX;fCJsZyE|hfyY{>S<_@(Sd^RkJLLq#O*_j`O^IfX6
zgYO)C?;zn|zk|~b&Nw*W;Glz}4vsl^)4^K-C5MCa+rjxza3+#hr}>iuM;yH4fEiG~
z4VbWNZ^63`-g9u=!HEF!eFq;n_|SnB=ugi!eJi&U+)McAHs9_}Iye<*$X~}ZnLC&N
zcV^{B4$eCGoEqieoP&=YoOf`6l~d9`32=T&htST~hx@<xT``Z${grwCjOM>M#_gY%
zsI*f<Upn~8!DR<uIH>)nuXqiQ<b2jWdd0!lq?rcd;NMj~hH72=z58MBp6$fPJ)(~V
zn168aql3G2ybgYH@Uw$I9Ncv9i-TVsTyt<epyaB9-yAR-Dv``>CpMk-C+gYs?+$Lz
z3=!SjPRx2SYtxoo*57h)o8F#|-NBy@{t7T0o|eXqko=4H>3ROTArETB9TFDYePmDH
zvwwDHYS3aXin}Q1qP&X|!HA`li_$Ji24z0QO`~O8Jlx1vm9j3>pchB3WcNQ<Siwa_
z7fCKE2f$Uf#VQ2_?Lg#%c4D}jm+T_NMHLtC*7Wt9(&U-Pi4(okT);(D7u8%$burCF
zbr&^UL|w#O)O1nHMMoE%T-0_^$3<%w>8?LnRM$m)7Y$rL?xJ3B{;8d4=%SH}#x9zW
z)CuV&%f>iYIpXa|%c_y4eEho*r^Q&l&jruTTr>{~ErN3>IJXSWt^O-lja=#%Z4>mR
zos0J5Px;ig!6joq_{$-7fpdl(f|@pqVqq3sWVz_!BEv-&7nv@)vG46gtX*2y0PKSb
z{wET{UHEIK`(1Qr2YdTgliuFfHy#hTc*sRIyIDE)K^H^6j4&)A;-aSuZtASC%r^?o
z=<+C=7w+Yvx63S-c+y257kym}a3NgexX5*p=OW)lKi8jp<3weD7i0w==lnKn3S1Nh
zTq+{}gXCSj6${8XJ1YFJi$`1xApx!*kuuQ5AQyvOf9{&I%0<8BUD_Ed@odKPv$7s_
z@tEt+A3n}Pd+|a_gs~-@93~hMKILMVi!m<7x_CMe+;EaXoFsdDDS|Pqf|QJOG0Mg0
zfJNI+`wvn;JTGrA#<>{pVv>u=E+&v3EqU{Ac@v2+J+`Y+#(x_>r%+e_O#Uza<o946
zb-IfgF1EPX>f%`!GhM83vC_pX7qeX~ak13J92aw4EO4>V#XQ1uJ;KGZXOiAnSw#81
z)Lt-bW>KJ8i`l{Uf|I&sM~5@^`!AYh0jVrJ=VEzK{*Pe(vTZ$5SGianRBm#y#>H9}
z8(h2))U0!{-o^7S((3s0!(Jm_pnb{~jq4X9-!=v?S?v4F3<j=jX6vs1_b#Gci&RQ{
zn~Uu(3>T)09h9t#*Im5f;w2X^yLipTZt97PT`pdAL0vuHUU12SHo^(^Q8UsxIlm`p
zVy}yRL4k@#GB_JtP%m<=y@<PzTqrbf8g&O>CuJJunQYEcbF|C}Sj~m*;wvw<_IqDI
zoJp?NL0B$q7jL?F%Y{Q;x!CXGfD6w>A`tqhiD|@er&7j$!CJ*EaHjpBi%8|ve!*Jv
z+b#~dIO5_R7mNX;CiLte4!hv*FUS@KQyry6lqky<If2YM?e|=~PdX1mJ%|rneCQ(i
z08$R%xQi1(zb5a;Nf)O`d;-%FIPKyL8Ra4F;UgDkX`~(=@Nmw>$1X~FDDB}B7oU<^
z7r&BkE-twEn#8#H%*E#}zHsrSi;FHUu~VhXUJhDWIlGA2|40>&J?9ID)GhXviz`%#
z4q|i%e<hmrgLV~s>*6~XKf3sdwl*RCdlx^@n&zedbFT3Ci@xiAvq@xq)5y=X-|eNC
z5RVUXMfj?V-(37nqjPc1#dQ}qUEFf<yNeriEHl&opkgnJ&6$?|S|F(d9R%0h|MYTh
zyZF<^Up#v`kFD(YNe5A)SO!=8Pi~3baq%xbyoZt=?z*_=qL_!`o<E|#v8C754kE_i
zICc~TM<T=9^=;izY#N+WJ~x%i&5IM!G9Jo$xX(i~59K_R_mJu#%|itb6+Kk;knEun
z0p_H$FG-#sEx>YafGx$twUVjJoM@Gxt>GQT+>U~MgommgYI>;Up&E}1+0{MN@W9A{
zUz^3=tPtDNQM3z1I*uMt+e4k8zODy$hd~SFYx}SGdL9~8$ly^wC^YcU@V}bi-1z_R
zHVFz%gY#P*MRN}=JaqKX$wSCPOAl>5wDZu)Lu(J|9@+%-f6`HqX-yx>8?x08W?*wH
zG@6-40@{1%;K4Xu_-jY;#+F`{I*Bm5=Ao;{&qHJo^LzfDmo6UcmHwOe)oocFI*D!`
z?)T8$Lzai159TS)#5x3d9{P3?#Qbz8@mweIpofP%JnLbmhinfK4?{gX>Y=BHsE0fc
z`5s~(dU@#UA;&{+4}Co5C@9GYiqR7?{-g7aP9oPsKMy?j4|q;-P|X^@oOigBZ`TDL
z3OzjHVW5X14+A_14-W^BmpcjW06I9LfahDC#G*QpDq%4wxHZ_r5E5{&Cneh=ES|hC
z#xBId;xP}8dl=(ktcNE&Jn7*X55qk?9Trb{7{-DJU)-~c7KTMy%ZT;2Kav^YVWfvq
z9!7iMWE6>KW$r6^WbZ$(<`L}0uo&lIJfHP2#lr*-6Fn64jZN}UeRrlE7U#oa|K`}%
z=L(eH^QL;3=3%;r86M^xiEeM7PkqbUl{fwGJZcLuQ;xGd%=WO}!}A{Ic$n*9sfT5R
z_b}hX0uKv4T%DOlGrS%4?RSxf#U5^)9I%8c+F7ihoiXZT-~aQdalUZ5hvz)3_OQmo
z3J>P2w3QxKd7!MPH;qsbhe!E6>bteq+Q2T>k=vbp=6CEY-mM*ZEwkSS4=;Gw>ER_0
z8$E3Du+_sh51T!_=wS;<ot-hIvsfKGWp@_Mnnoy;?H+b`__#r8a@EuopA=?3nsc_Z
zc>2%oFMD{!!yXTNJ?tVG9$xdXn>8K%Mt{HI^Ze(|;>0H3=ggJ+@AE+MvHW@<+$OJO
zmdy~utK>)?WLk6r$q6VPR1cRtT=t-O&^^54;b;JFcyK*<?6?OjsIfgb9=a5(Oq_Ky
z1XDY9$`A<;`#rqr;Vlmb=r@phFaTzb@!SlbuwfbEZ4ZY$9QJU8a>)?MY0*u=t@<Tm
zy9Y<SpnS~3yY${3&U$#y!}}gicsLoL`oP179*zg)Ga2Hi0KRk=A9<ZF;*^Ke9?sC-
zy9n;h;qH%P^<%kR1kdNlMh_P}d`AE8;Zyc#MgQ|2X4Qx>Tjs>snRlJSgNHI3*UjfX
zj?Zajqth=^QVTQtHjItxB35@1UwHV^!`~kM@%UQA6%W5sg*<%i;TsP>c=$1(>RS)r
zdH9~HZsi`#jqdFtj&~7H-OHZeDfW|xsmCKfd-#RGT|}|2f@wlY`RSMY*Xb&Lqv!N+
z)59&=h=<>)jUN7>XXq*(?J9_;_}qft{h~ZGH|9^f3Z8!}dfTJt$6p?#*|C|WdT_T9
z_ZjUk)njFYzIQzQ>!C~nWfQpT;U1lT0woe?SvtR10u5eF`(jZVoBnomddUQ)cNL`)
zD4hV4XRaERzV+AWny!MWZdoXoK=}kJC6JUrg#=#hDhN|Cfudg{Ra*|&u_nfvGqL2v
z)d=~?bebs%R7v201RhKvHG#AQLToevBv3VhdI{7|pjrae6R4d)orJ%GrbYra6R4E{
zH_rG<vfMv&yA8AA*G>2@EFN{|r5)+&^Qu7t4HLL8fo2IbN}zE9O%iCDz{TJ$0jP&9
z$NAqK%;!n%DwZkEOiyo~K#K(bEt`jm5du*0S|!jrfiUqWke)!B1llFgK4`9OaApon
zB4MMWOQm*5pko4^68_$<V(lZXi^46}#HtpBnT0+hfi4MjPvEPCnOzgeOrTo=_miaj
zFv;K+DyAVNo>DVn^X_(DRwI&?K#v42|C;|+gJ|pR{)pnC1hNwtlEBaeA_)drp&)_6
z1fmJV639s)H-TOW^iH5p0)5G}OhJX=gFG|Q{eR`onWA3;{S(MbAU}aqe?+K$gvrko
zCx6QxlPR9d^to4*z<>lENnjuw?J7io_TdC}W%}B9I8!i@{-6W~C;S}9=^KiE+?`kU
zwE~{I{26&PfyWXUnZT$79#7zj1fEJ@SOQNb@ZaAbn1lE1(D0>9@qavh2b2`W_w@=0
zk``F5L?y@Fo*gCZj=Kv>n9bxg1WBTTN)SOLCsD~FiX=gTg5(T3-P6-O-80>@1ce_N
zK|q25k)$Mn?{@K@@0>dK+<N`0>eZ`P)w%mkKL-0T#E-Z9xR>smFu}7UsRv)SVrbEZ
z-HS3SW%!2rG0cyVe!S<$aKG~^)(Ah|^@9=B^wSP}35#LYQEgB8C_hGXXfk~7i*aeQ
zrdx*zxiqi!^{i1%bI1BIjzb_jaWdYI34R>*<A@&<{g~v(CO<a&G1-qPetho77k*6j
zW11hc{g~s&bU!}y;}iO%dfW^@KJw#Z2GTQ`d?~42hHv|{T<IC-THL@4-%LMdQ8~lM
z--NNDZ!>%vIlaUH_B-#tu!c_=z<zw@$3n*Z<h)ZEzWW)z3N3sC6LO`EIm_ndk}RS!
z-Q~wBKNkD3#E)fuEEoNHCO&tmAW{owq`vZF1--$MiYvkYx4v@R36*}IW_nxr_*<6M
zeys81TR+x`B5OG@1=+s5+m*rX`?m0X(89OgkMI20;KxQ<CF<NHuxIyNUZ3pxZP)t~
zx^D4fs~-VBRIdMiZ1-cIAK&}2!;hVQ?DAtbLwcNZS?PN@K2Sa3>#-I0h=%qGTvFND
z+aBGN_=Cv${gAoHhz~<iPJM-y|67j#$zqE^KQuq~3r*dRkRK60EWdMe!SKWMBkTvA
zz=BM-pLhCewD8$}G#Xnm>PI1s?3eY2=t7g8d|oA|XiMJ#KMwkFh=X1u;YS|)i^^Z_
zl3S;dv+v&T%SvkL`=1|2{U|P@gp6Z;9QWgIKW_MO!jF@FT=e5tKTi2^+K;oGn4$)6
zOWzqrg5Vr<R`vLLPCT#w_;H>yohz!i0>+=uGFliUhii7f<i}+{e)r=KKd$(3l?}yb
z{U&N)s6=XK^>688NG$rd^PhfP^W!f+u8XbXTl&`S?aT<_CRTOqjCVmx-%USm`SG70
zkNmjp#~nZZ_2aJa6@TSMd;a0bwsZ`;=f{0N9{BN)p;#^V#_w7D{oK>v)oCq#%cWet
zc=gziCw|1qct%W<3*vHp=IV+?WE7QAOvbZ9{`=%){_Bc$GBzrGlX$tMZ{9oIo|92h
zMr|2&WR#LoT1FKaRb`Zs`PcvwWK@(9FQc4{@-iyOd_JK|y+5;f8K3n;&8#MGIF~_c
z{OyH|=VerqQCUWK+y9+OJ#6V?ThC|u4%E%vx2;<>8P#RfkWo|E^Mb$^+1%>Hh}(Hq
zZA4jdX?>})=c*-RPM%XwT^aRcyd>jg8TDl}kdY`ONk&82`ITNH8I8F$(|Lfo+vl0<
zD(B>6`pTT_EXi=mNS5K2o&O^TwQjFv`X*#LE@jxzjSR3RGMdr`VMa3<jJoDBQe;fZ
z?z}M5M+GWx$n=?+J{IxF;16)AlO`iwMuv<QGJ47AEsD34kt-ulMy8BbGFr=MBf~2r
zOXgqyicT2i;q&2bWxO`VdBVRA|4Ae}KM2T?!H4I$DR*4*%=eP>WsrB2(Md*ujCL~G
z%jh6G&qN*kEcbM#?^JK+?SM1AQaa1%BBQ&E9x|fU;wkScqnjwc>%Ei)Lp@J5`FxR2
zMo$^6oKM2v&GfN2JJm<V>oVSu@v4lzGWyBr&*@Xz^O}qS9H7z3HRn|vDB9(_2De6d
z_(VO650agS|DS8+dsD_>8AD|Zlfj0D$ast0k)0=+j;wK>cVaL282>xMGyFfoa2X?H
zjFj=7(Bbo1@3N1Zi(VPyp*^4XjUTYgdHiXVjI_}nz9>Np-<L5)#s~C|jBzr4;8@ET
zFJpp?&t-feV<Lx%5h7!*jL9;l$oN>sCp4aau9q=g#)mSd$;dh5WumZfN4Xg?K9X_!
zBj?+s)9>`SxipuXW{M(|%$6}L#wkBlHIBl0G06f!<_r8(pyyx~zmocyjD>7ys`JfB
z;vyMe%J^2sIvI;)ERnHVC@+<<OvVZsD@ArWqe6B*e)Y<)1-IsRBjJ}n+1%GMRtW`u
zzLFn#qaUs;?@aj`8Ea*HBR2h3Gl&0}rf|KC?_}(hu}j7V85?D6k+D_ACVJ+0&Sp;A
zVD5M`=lyy){1jWwR=((r#BDOR%h<uN9Or2>uNyx#Nlm6PGZGip&D||yuZ(>hh0>lq
z?8UUix6gR_Mapy2xpx4+-8wKOhu<HQWhgTKlyOZ)K!(aySH^J}K^dBipJW`Cq00zy
zvJX!@B*Tzla)7kNgIpP8ocuhu>FLhtt$feui4hqVS1mo!7Dy5mq)^8GnB)Mbf6ZKO
z;=g$M{pS6VBm0k+HMh|dkBBDtZ<_xJ!vCinmBGK{Fj3(I+mdln#;=T0E&?*n$@oRa
z85uvbn`Yu!&M&ilr&hiP_np1T+pV10!C$zZ=OVB_@d77cIB`hDF8n=l|I6M>tXaly
zGJcnFg~?33DuaI|Zt+v%7b6py<-d4JY{Ieqi3>xCe~8FG6UzEa#&sEwWIX0@%eWzf
ze?Pe|<ED&TGVaLuhY?aGZh9*p<+mC0!xH;M6947Au9t9^)0qqJdx`uVExpITxH8#V
z7BwHpcqrpPdg-KNIk(b3Ph`X?D6XJ{;&}TR1w|ATRj{x|9J9TC&nc$hS;aA6;{L>a
z?>g(il4o<xVTsQvD6OE3f|3eK@yc5`kwT_l&n8Y9o>*2vyaG18w3V;mRO0=Sju{mc
zBq+`y*&6{=Q~(8i6uhe7c_FN;pq_$Cf>#z;MPOBd)dW@-$QoWy@M4VDP*79wS}{p&
z1$AP)Mw#;U6*N%LN<nJ{4HYy}kfAusV`Bx0f_M}pDUcL2QP5O@OTnh8$;k@b3iwu3
zyuUqP1$v3y5puqB#4Hu~Hd8YN%@r`4A~t<rJK@GR6`yWORd~yzJ#}83;CV$sngT9{
z=`?$Shr~D3d9tg8f|kO7Oe#!F=5I=>ZYkP^p4n71M?tQFwsd}fXZ7|f$P${_0=XFS
z&n9^a@)dMa&{+rz6ns$9(?LNy1s8^-wC6bXN}(nfOv*bdd}_TsNf!lO74%dvW@>W#
zQ7PRN@D;EgqNm+OJso?c_(Ya+K4scVL2q`mjOXnwIe+xYVvqVN=%+wapeyLFV1R;8
z6)aFNP{C`oLBUuBgA`PMC;3eUgB83k_!|l`$0X<UPWkw7@gWM{QZPcny9(Y`oQpqs
z!#qO;c}EN!cLc)}3}-y>b1}XYuP^1)P|rvO?<sg+fti~%N<q%a9H!B9QJ`ysN8Vw5
z+wW@S8^cg+<;$>guC(%vQ*h|r<Vgx9D;Td}_Jl4~3i$VS>>ZvwkyZIp797o)qF}0m
znF?kpn5JO5f*A@vQa~dc^-lS_f69lfupsMULDt6#K2b2IeYt+qJab=d&*DtgCU$5%
z)iYbcTm|zKK5>^jN8#oD-0Ts_EBdCehN+`c=F`Hl$v37Xf5vI0V7-FxsH5Nu1z#&z
zrGT1?6f6_Y|5D*iTSu})!BPe5-tp9{lEQ33Sr2PiuHY*MaPO2A3RViWIuEki%=OT*
zoD{E&PG)nf6|7OPRzcyYlv86<zE$vz@B>}J_seMWI?;DL%-Wz}qk>%ub~AbvY*w&C
zL5mkXTNJP$HMc3)DwOF5X170eT0s{1!&bhXq6s$2_}s&QQSbwOt6(38yMIcx6J;sq
zurB;B->*PX5Kut3$O@7db>lybR0Tm%A^jQOD)nBk6pr=u$;lxF1~29ZP$2+QL0G{R
z1y>bB6j%yQ(l!OQf~bO@6da}v3SXSeIlwiF-JF!TUqO}DzN3E?99i7$5XY`~!jB4S
zw9T5@A!mAe_a57Gjwtw_g5xyl{ludRjwyI}rtH<y&hc~0*1mn?oh9z`Nr@*oMw1e|
zxAsx(w1RUAeo=5n!OxUejSG&bcvjS~en`sNIeC<v=cH3`k&`0Wb<l{4EcL5`OA0P4
zc=UDd?-LTceULb`wQoUM7Rhg14HW#xO$z?t0;1rSg4>*l3jX3UI5zQyg6j&X`M1bk
zztovEbYGG7WLf4-AwTnhQz2Wqqu{QBdkX$h@UPg!;*`&7?Ypnwfr2l`CqCp7u{L*2
zYo9*6>mQpFJ1p)tb!_5e1y7v0gW>_i1yF5DV$p!(lV<`b62O;Z6RG)qYv1wKzG49!
z9FrLMJo8>_Ux@&o3!rQO@d1<!pi}^*11J+f)iH^2QxYq+@zH5D+c@WIt~NeaQZC>u
z_)K4j@0#Yc;rHB7F@TH!S_FUqo(~`~fTRE_1yDJFIsw!Tpb9Gt;KcxH(69ii2k=4w
z+2a#gVd+1;eOdGP#A9u;-f!cp89>pAiM0Z#EgD*~xf^4kR(>x3kxGR>2B*{upg{l)
z1N`_~x%vUTc_?ey<itjzg9EF^H4b2*uyd<GDF9ahO#)~tT#+2WO95;X{&b7_?KZwW
zV-jBu;1@xf1<*WzR{}^2AVoBh8h|GNdf?wSK7Fj?lUIaiDp!poNe^&lC5~H`*L-ni
z%K$P1=o&z`09pmmI)J<Y@&jlSK-&Ov0ysG^)f?c8>&On^uW89F$Wn~zJI%ZQFwt>o
zZU8f@#>KaFPEQH~Xcs`o06GQu_mFPwg<CoVu=8vt{llg?K%E2V62KKHmu{@r)^}uL
zB2)b3&fNp(5kS8H`Ul_(pl1ND2GBQvUc%bm0rX+bL%5hEPTt%tS2Q=Et*^%<C(H&^
zjT^nF+kgP*%+~@K6hMhl6$jG(zK;Iu0UWoT%g&2MscCI}Zw4?}cydSp9|SN~@V5lM
zE$|(ILjxEl$Z&zIVT2&>1~4)vc`txbf{%_#-WOy{0KI#svdFjq#s@GjfcXJT5Su0k
zFeQMAf=?27Ks?$pRq)vYrv)%QfDZ$hLH7y?tNJK_j|2EbWXsQSuIexOEVrU~MrBsu
z|Gpw}b8+q*p)faAs#pDlPX%8Sz}f&71n?Q-Er8F3aA^Qv1h9zXC9+?}N-Yjx)naFS
znfQ$H@n=gs<;#S^@&LXPWJOGWWdL8t_^JR_$9RK{&KdDH0emMU-wIqOaD7Z?(*DjH
z0@xV9rT{hz;TD0dKdl%l6aTc`twO@jj_qJL1@J^gToAj2@ITd=-Ma(W6Tsd8_Hiz#
zNK^5B06zq9A%Kek_ydr+fCO-eb1Hy90O0^40UZ7(PYqyPc1DmZ$y=UHeZ0Gix6=a9
z0|*6R1i&nlDM;Ck61g?Uy}75?3Sd7Mgx<+Er^eLGC~pDNtJxXTS9BmAtx>RKlXQSy
z-6X|-R`$mLeqvN_NIlLLIWgO191CDg_e_!_0sK!$$d58mTV#-&c%0X<eZ~pSK2E(+
z?o$E0d!pcM0H;Ovj6lkN4xqr0NX~I7;PPck!-{&&(*v7RndE7mehuJK00}B8s<_Na
zN565IRdF?d-vYQBz`X!|XEbh<{s{0^Ao>~cRlk?EZ%Mrtz&`=}%PB9mUKjYcKq}u5
z<YoZ31i3Bnj=+|uBr0?|BK@#WDhx>RCyLz{@`nNZC&&YV0|v%D5~TO*agPP5c_OaU
z(y}c3jEW*EN~tKVqNs{uDxOmv3!fFZ`=nGt#q=|I#hE?nw8hk9j=QATS~afS>UC*l
zRFqXwK}g~SmQ!)Md-A;3<MwQK^verj!`2zkddpwlBtgaVDqd7kLq#POmBrR-0;>p|
zeXLkjLFOEkcCSmQE;#FXL6BeGsZdizEfpyuTU$jP6>b$Tsi>=>o(h+WWEJ&Qe!$0R
zo%S~nyrDn}8>wg<<B2Mg1eXLZh)7iUT$TRYF7*t>?>{LW{Xu$JMH3ZGReq4i$zIwn
zHB-@Cw9XDTn(tPx<g=kvA$eAoJc86a5tptaL&X*qTUE4B(Ne`nDn3?`siKvNH&qN)
z(ON|t6$L8Vsc5Uht0G55u8J%+ry^3a-0=BsR$f0Ce|oE9RUW&uPs(R)KS<m(bhlJ`
zw{-A?)Lumg6}?pSR?$&KCl&qcRfrZTU%@YRIUsdbakGDF7hzaefvmHeitd8<h)H~c
z^c48ppZR@MjMyi=v0r*s<%a~N+nZARs_3Wk+mF(>JEVsvrT!`gs2~|A@HK(V4ie;b
z6>r2OtZj&jw^WQ*F+s(sbJE)?hN&2?;vE%3RRqsS6k0!eh$B?ID|E)GNPn0|$w-lX
zPaw0SRE&=C_f?D${DYWetO_>gsGXC(+nPF2#UvHe7{)3lvui4*vR}JWnaDkxr2o&~
zY@hL=iv1U*8A8r1H&Nje6*E;VQ?XpdEETg=e4%2Iia9Fgs#u`nGZphx%vbR#r_W|-
z=8iNyD7~{uA~L%-KVzZFukK6LTX|}<_K<uovcK$?zErVT#j6Y4OX=bJ1xr+v$json
z=bP((ZkP0WgL3t6=Y6GOg^D#Q)-uRvxmT+ATE!~C^Sv1tx20a*BNfT^tX8or+e31z
zUWac~tXJ`!iVa0lzE!b~R&A0fpLS8&z}fnH-bNLh1Zh&#{qp9t%|hX5TOYaF*0)W?
zb`?LXIICiZik*x@6&CAPv0H_%BE%R_A+`1RRmdv#s@TW%U&V|b>E7*`KX7-jz&+=C
z>CRb+Sw%&F#+;RcDpbb9HfiYvX<7f&vm?`XpG?*0#_uJjZVTJ92G+?^hKgtBB$z6~
zA`~fMDO*KU#s5?sRZ+-cQgKMdk17&QI`Mx%#X*isp~Ngx<=5kWQn68WR)8Za4s(gv
z=Ey1Gl69m+yJISjt2iTq`Gks-T(VR&`%$XWF@tzYw9B&8?=Ycgm2FNv=U$IHr{WhC
zf2+8m;=GCrT-zCJDlV${l>@X_x<VJ7lrC}oXVhKI=L*JYd*k=S;mbO4sV}ls`kf2c
zMd_M~zf}C8;!pZBC>=iSgvy_%rS~&4u5<dE$!{8tu<Z%yrixoC?y0!1;<k!AD*jb*
zSH(XZj#E<hsl1Wf(mtB+CjWAyw5><_%b6J+X1g2oN`AnFeSO-Xp!AR{Mz3TFuZ!cc
zM=BnRJ@^Y+(Ot(<p9!K!5Wng8T}RO%iUsk7hD92l4LW=IvO!)ObVzZ5C4zWPkdi@^
z3ZirnWrEJNTq-<8lTSKzELSdw@<FuI&|X7@AQFPu62#UZDh7cd-U{OFAf6ARQV^~n
zl7pxmM3o?32;$O7scI0_f_xTK>N+}}KCd3+_W>kMXRdPGQN9>N4O;tWK8LB#rqr52
z)C!_@(Ai<t5!fh*x`NabNO^rh8U)c$5SFEosj<i=3QP(@5~SCvirnN5;-w&Z1mO$f
z<sg~_krCvtK){8xX%Oi`le}3F&4n;UASJ0mcm#hXCP@>7ho&!mFHPO!wA(U>Y<4h+
zOwkeA(@K!m0^0~|8-zEuH7n>G*-|Z6NIHtvnav9#Uq}jKn(YK>A4G?k<jP!kC!yb2
zAY1PuNLPW~1a=q5UCFPn#ZjSW5WPfk&km_~5PihfR|O6VqOTzR1ojs=Kp+ba6y!Bw
zEwiu3<Zm!SVtlY5Lj?BZ%Fn?KVo4B7gBTXX@F1oK!9DDVAQo8C*dWFQ@vh*^juhm*
zAV$R`ql0)q#>WWqfv}v)<70%5nh?{O7{nyOC&wgH1eq#uS`Z(dl34b`AZ7%SWI0jy
zQ4k*s{z(w?1)+SVAhUv)9h1xnVy@ux1oHTSYM;ioE(qeYAQnE|BybUDnILS7noM5?
zu~=}f9?UKaVtEj&f><5o*S1r?3SwmtUk9;5WGPv>EtRXvD{VYG`ltS+OKXBy8^pR%
z@tcFV6_maSf;*8x6XU-XSxVLkvR>eKL2QW0HwLjO#@XM)ds1sPuCOhL?Lj=Np}2+}
zLF^3TR1l|m{2#>bAnYJYei^qXh`mAV3*yjWDZNWFZD5P6;rk$d2*S^Kx=G?DT@YEI
zA}|nyDo9YECh-30yr=phQK1opDM(mgM4%;*b#gkmDrQH6C=`<YK^&ladnO+g_&<S%
zg7{Go%6|&tu;51ovN(lIM}s&fB*z7w5O`7`x3Y-}YZJ}{@r;Hd8h#GqY!K(@jRR7J
zVkv(G@k<crgSf!O;jDC3;6;JI3cMunvOp?a5dlfU^qUa=9>gDl{29}^CJ23aJ&3=9
zxFOnNbN>c$GsbTPaXZHE1o4mHoNiRR8^k@4y&uFQK_0|39}4oHK-T{_CVwJGoaS_j
zZkgV&LQxGo@F=FC)P83)Yh`<WJs_2!P(wovjWm?xCJncaOJy}&7*w>hhB6xN9q~Nb
zk-ABD_Ce(F8p;Ws@&c=HFCa*Qz={GP@Ogoi1hUS`f;@Xhs;Z%yhUzhSZ9!fT_@clX
z8fwP2*3z6k0*f=%(NH%gucx8D;0<CD_OY>sL=CALJQ|WTNE(`JND(!_l$cx^h{+n<
zg1jW~Wr0lua%)pTnh7j?rfcF!XEIX$M=Q@O8qzcrX#aOsn69C%;2AMV3qe|H$c#x^
z3DR0%8x5@R=^3S0LzWO`$24;U$rYF<Fke{yRG&`hprNCNp&Ev1=%k^uhF3N8)zC#l
zR}DQi^wQ8x<2ytWkKwy(n9#Z+c@GUf%{i(+d)|@r4C~_UJRXho)-d>@#MDQSA5Z4J
zeYc>WhSxQ`p`pKq0U8Esc#W$>|I|Sm7KlZFN1+TJo{3j)S?*01)bI`)TA46J<I4!x
z-^TORiMY>?IV<hkEMhri%vq^yPR7nX(r^tUG)&j<p@w%gjMOkr!*~tvY0fTww1)Qu
z8KpV9i6yO_o%I+EA82^~b!X@G^MJSm+oiEWhh*Nygb5lZX_%~m2b>c%T*=EInWAB;
z#t(m`x$-lzm!*B%BboAPVr$-JX@-W6G|bg7Ps7I=KG85+!_^JaOby%TxSzE3&C*cM
zkX*Y{o3%-1b`G8VO&XUk>a^XFHlLl+@EON(Zo;P;M!%6+^N>_&hqRDtZx!PK?dO_v
z49sI%9`t^xVX=l>9eFyIXjsb8)bKm4)v#PcP=lu7D-A0&Y}T+v!%7WbYgn)0I}NKe
ztk&=?$8?u-ma#@drL*~K+1c|_@w|+0M3xdR%S`Ju91q1)lV=|rG;Gwc$ywgxA03b=
zoR(Sc;P%uH&gE^@u#H1-S~}a>vz^0APa4u54cDIJ?bNVK5cZu}*120`N%m@}eLxCi
zW$e>H{9fP>8vKG#B5P2d@|Z*wq?*^KYY1sLrQx&&LxZW|M-4w|$j-_LYlzZ~8X_7j
z4Ym++$Hz@fG-JPp0~!u$IHZBQ!l!a(Nj}+@+UcT1a#(YAg-10U<4|r(JwhLDOZ}h5
z4_s%GgnpKeYdA?8ewLU{2txhw1L8QKEPh7AISs#vI)4^;R^z`s92?Ga0i^RcrCrka
z!*1!KhF>*=_dDKZR!Zr>_3$!-N*Hie<FBiw;7*CiMe+{~e{wn1(OAbd4S#7Uq2oCn
z*EQa-!$S@KX}G~PYLnFLLEcSAA)bWkmImT&4R-_~|3{F2HQW{CUQB*p!vn#&=uzzv
zM|{5&r}G{<9&31_A?_!Ml1=m6Y^4Yf{&f`B@%^p*emhc&>3CM>dpD{1QHfY{wwt(p
zud~XP)KN-DbsZmuq|!Rd=(w^ywStbaI^uPd)4`o%&ec4|{NnQxn<%e44V9knCQ>0m
zM@1cMlnH`7ucJ~-Qdy8HI;sj%Ehgv6_JWQVb=1)Lu$EL)2bWwDPPbY*KbxP%R9lcb
zI_e5iPhfq44FpoBp^h#CQ%MqaB<XlXN16^vhfBxHI-2N6*5THj3oJZ&zn1Osed=zr
zEA=HE#PIgaraI1SN*&bNlcJ-Uj^;W(n^2UJX0zQ(dMBsq@aRb2nns1=v)l~(bR8Kw
zTC=#07CLGlkur6(($P`}&scdn^VKQoiWbjfZ=US%bf&HDta4h(a@jh(I<j<dQ>*!I
zUQyw)d}u<^9NoFtvSPcGucJW6avfjkXs7c(;~1}Ff{qS4I_emr<1HPXbad7+K*vCx
zf8dh3=;)@SyWm}Q=i(TJJkRQ(qo-(>i>FWLa{|su3ft<XqqmUv5lG>yI{FIUPhfw6
zxw><j_L`1CItB{~&vReb@rI5!btpy3v)6&v<;E3Fp<1b*rCoE~+`qi7;~gFE=@><`
zPvi|{Pj!BCAaxi$+^oaPUf(oDT68IIgpPN0kc<>a@^uIIXtvebGe*Y;I^GwYGma7-
zvyIh}@AZx2;EwH3>P}v-hXoW)WS4c!*YT;2$+S?%EFH6{8I`8$n9fMnvCfx1jRAi-
zZ(EUeGjx2U^Ly{oCptE6NZX-E6W6DGEcDN}EjLqa`k+w<DsbhTqhqd)c{;xPCXHr1
zc%}T1fV89_gSdd<q2mi$PJ1kAA!FdYbjX(WS<>e^zZ_eZJH84%y<c+W=OD)AFXr6o
z>HS2L*8Gz<K$Dj0&K2@yI<hq>n9*&8j+OMMj)0D@b*$2{MaNbht2u4G85?M-jx{>g
z>i9+nuQPC}ey4-@EqkY9bPvyZft#CFARp-UanmL-k2VWr+>#JEv$k<KiskRpv0ISs
zI(F#T$;sO`<J!%FdgnS6BxLUq*?n9w7$;N8@73{3>kM9FuX-&12OTmeSLtj&C-SlU
z@m?P>(5ynAwi&99AcJ4WArUH?j))FRhpr=}!{B0==`lr!7JIuG1BNLqG#{T#{c34h
zTSt^rV@v9HFO~n}d#RA&DzdyZU9v>x0ioIYZ2pfre&R6cIH%*Vjw4(&be!Zg-<|qD
z9mjMW*Kt&2PapLx^!nmAIJ>jT<+D={NvCw2=2Sf(&Hh<BLx-2n{8=E$7BBx<pGnPM
zbe!i5(s5bG1sxYT(8r};IU;S!@e<#>UDA<E&v$-_J72qchbuaNsgrtD2YLDD+GQ^-
z%j_RI{$%inFgk>53<f?J8A8nv{^Bk`$KM<{u9G20epAOSF4`d!3E{SmJ6yem{y#eY
z)p1|P0|vw5#JfUxkKOb-cLsA8bt691@t=-ITsA-J%6BtwZE)@`mHMJ96Uh@%gd|Qh
z#4jlo4WU>Fr9vnj!m}Y17xIz<ON8*8Ak^o-jfi*oe1>>@v`h$PLns$Qd7<zQAD#)}
z`@7{Xi8quh2w_63Y?)CWHpJo(lIKIH6hh??s)+0hAyf_F>X?evLZ}|X+l`%GFfH2A
zwTvgH#H-z36l$~QId50h3ZZrg-9zXRLY)xmhLFOoA=C?@eh7_1XdJ@!`+2-h-XMg3
z&*in)lGZSUxtShH64{+ik}HJd5RyXp$&{qnrrBH4xPx|w&@_Z*A-ojA%ONxgfkF;F
zk8FQA;(5y7+#@w--#1D;`XzcocqN4V5DG#_3n4v(Rw1+wAtQtqA$|-^$_$}p$T=?_
zs5v*PNb&~7krzxX+9rgyA>@RR8-h2487<0Zg}{cWQ}nneTa+TtD3YHiT3o)WB3rz<
z!7;U62<=1Y5<=GyI)w22meh_RbPA#GLFbUnx#qk{YTwG!IfR5PA4_!$fxG5K19B+m
z5qr&xk}rgwAq);-NC>?`=p91;5C(+Mhu!gJyc)vnH!^wY_`CCY4;85|mFK(ru}6l)
ztyw!#2Zs3NC`|5``dY}j;5;aVeOVsvG3nJeIKFK?Om7N8{kJ%*A-pRpnYW_jJ0T1U
zVR#7SLqnK)KuWwI{kEd$Hxr8zM}$x`ENw57JyIx;zZU{+7?)Z8{Sd~m;|4ky_#lL_
zA)F84LI~qR7$3s7A*>5wLI@K>SQx_RA#jI2DTHYuOsA=o9FwMmu=zppA)C{tvg4c6
z2A_~Vr00cuKMmodkaH~evB*~1oqF_w^oihf;7mbg(Je8_90pH}&kJFGjPv%vf{?R}
zGkqoqFUfup!lDqChwv4HienMNvJeuFOG}6yJ1k|jThd7W3QHtx?xlkgx2_QOtPWvK
z2rEPQS_I^(kaOmHcWbJ?+lfG?wIO^HLe@EH-5F;WaP62QTpz-BA=n{AIY1$73}G+F
zD1=QR=Xir@3tbW8ZN!<>R*~H%aJ#@AA?%Fl>=I;m2zz3ZhCzHE!Ve*sw3DMyG{ql+
z9D>4udp(Xv8Udlnn__HEjg<-tqJ^NxBq2czfvofBUMUiS6~d?;j-7prcjdvu+^>oj
zhOj?`BO&}RgaaWQ4B=1+KQhASIycMiT`o@Ylh|}P#5={(=i*)`Z<6v>>Cq65(fOyO
zUqU=50`Hl!$O)mwYxU$OMeC<RI4#H-ft3Fo!r2%<$LS_6P$$eu;JvwvA^ggf$3T4p
zmqNJA_0vFc16R13h43hZ$0Fo@W1wzNdl16!A^Z`-pF%j`O5QE*1q5eU{w2tDfqx6U
z5yH*b)=BFtQvWum=asxWA^aoAzXB<_8^XO9zb|5g!iORJ7s9Nn+3Z640jGmc7zu_H
zXW$vbA)Kd041Be~UCcn<7O7J}Dk@0A_O$C2vQPI+E@9v~0~HOxKuH6o48$8KXP~r!
zexH>sV}QHPmb;|PJ*j04d{oRi<!qGY8=U1C<#m@gP{H7j0-b0~Fr3wrfqimE+Vch~
z8K`Zbjsc!5bX}KL*+3NoRSopW%^2j(-~vTb%|LY_c|jm0FB+&Jcuj$|Vsajb&->KP
zs_KdgdBzdHGp&Jvh6Y|SkY=EffyM@029gaVvgwU!b&KRD8Q?{muC2;ThBFr!Arz9h
z4Ky*()WAyyUN-p29qCTnay(~$&y<=OXl@|IK&mKGw`B(Pll+cjc@N8D@Ec0b9WG+J
zfeeGs44|EX76w`x$faWqWE##rFW%eb4XIWJT65D6($fR)Hloh92E2k~3CtFlBk;HM
z@@y!decYRRymB@lLO6%)J2&ze*hR9-pF1e=B5+3ooeaz}Fxx<916>RZGcephS9Zie
zUyhoA?)001-Uj*@;K{zvKraLT`qFt&+S70@%dE8>lboBs23{|p&1V3t9_c)Q-!P$Q
ze**&yykT$`;Edfs1A~NZuNj!otUM3EW*+vuE+nJE5^tIhHZa7%TL#`X&`g&4FN$mX
zk#oqzN!?{p+&czZW%-zf3c@4y5eD8hFwwvy10xN*XW)GUV+`!rnKsJ6Cpj6T4J@pm
z&8CBAr4jSoyzTgbfw2b08MrO7JUwsK#ywuxFu~v}vCimZZB3m_iGdl6QiJacV;To{
zb6UfBZgy?-1!=kgjxtZUJ~W*3ERySf>0`ENU?#)ZFI6s`$?La_D_&qBnPXtCf!zl7
z7?@{ZzJb*S))@Gd4m7aDz)}OB85n&~s{L%c&pB&$rY$sZvtst(U%Px^U=hdSp!B7I
z#bWl2`ZjIdE~#XEcIlgW56|Z>Gq9X;17DwzCYCL_f-$_n{k4cLUQJqQ;L8I}m@y_-
z8P47L?QK144SZu@lY!0bvVnC5HW=8*R$7)@5Z`XSf$wPNE{R9EoGe6jLQ&ps<`s!q
z1LC%DXnvHGZD~6UY&EdW;G-Z?gPe@*2F`Dm%&bh}-D#b68X)d6@b@VvyVt-z0}%t3
zf$t6cU_dtzGT;}}N-+>HAae@0^023zW$Pd3sRjx!=4l4Vg9ctaC6RD+c<=9vt<EJ}
z!+>dkJ6w7xc|%&5k&LdqGHE-D6%HDZMz_0QNIZ}$G_aqc6_5^as;*D#azOg@mGYxD
zq#oiBoOPm$l^-^6#K3`LICu>IW3>jtg@_d5n1SO4%2+6C;e>&ctTqf+7^e)JHZah{
zYbMUnW4|ZXG9CPx)5O3z1HTw}Y~TsqV&H;-8yrvr7Y+Ps;CJ@gK>up_J+pk53|!{y
z8|=Db;41B$o1AdDdrF=3-#FvG&U!D)NBq;kH3NSc*giLT=wMg!>#jPD+$Zl#&krcL
zP7iai%A~K!@e*$_u<3aN_ZXs_*IB-QI9nNPIo@k!Tn`J}wa<5azP{_mj*hJ4KI6f_
z^tJg97{-jc7hF{PVOW}@T+;Q3jh1wkznU3m;u#a=O;j*Z#6(dOB~6qvQOv}%CW@OV
zVWQfg1onMjvin2H%_6LU={XZ^8oJq?(k9B7FgknVO}x1*zpROkSw1Q#W~#retDFga
zZ07No+(i<*CYY#bqADvid37Dnn|#TxV`UTE%Kmm5kWtCR#AG*(uVUg!Js15(tZw23
z6E#fKG(rEoNHQ>keKfOtv}(p+SE~kY%Ii-mR@+1!6Ln40GtrvnnW%4~fr(}&nww~7
zqLB%giDVOvO{e>bCLiD8t~qskLs#nG(yI;K!y36IR?^5#?l#fqx6CFcnwoe?@RtSV
zEzio$_wG<VWzTrZeGy++&Xr;!)kI4ZnI=3Y<}S}lGm&oM6%%K(d`z9|I~8V_Xd${l
zUa7u&|B7Z>b9bjY>36ETTG449FAFYi>}qSmYoe2h&L*-<WSb~3(auDUi3eG}^|R9R
z1<5s$Cwf6k*nQSB<8fMh6NwGoBppp$c+=Iv1iRM2<1PD5{tMZ@E+)E~@R{goqMM2C
zCTK|y6TjU^WhHG7rk9+OPs!J1)0=kA?8U7n`kLs?UW<;?PI{Yu>nGYBV1f<xr*HG~
ze+s1%8O)EDWeqa%Iy-LSoQXFW5+({w>^Cvk#1IpooA|=STPEH%G1<fv6YtO`Cf+kK
z%ET~6$nyA2C3=iBG2Fxm6YrXc|0wfDhWGb9S*^>aSACo|BR~D(V9#h1@0%EJVuFb=
zCO$AR*2Fk=?M_<$leGDzUBv4xyrHj~F|E3j_R^|m?><bMC~E6)D}53p_K|ca-8<F9
zG!yeo%r`OJ#D^w6F)@=}Gw~6->COMxM3cTQ+R!}PN5c9Wp3j_RVzy{&uE1sG9r+wl
zIZ4m{E?W4hi3KKhzUun!aQbH^7Shg@@kPcL^JP16i#=J?S!Ci%6WcgUCKj7mVq&d{
zZ%iyTvCPCu6JN7aCDX0#@ykto#i(fHS|JvqFQ#RZhe{NzGWk8>tkovgm{3}HX=m>Q
z*XotcM)r5rSlR4b6YCgSCN?o1N))VTSrhDa*8I$Vv(rg7n4l)fW)oXXbSarWIU#*W
zW7m<HnOjYy^)LABe%h>uX*<{v69E&diCrdkn|vP%-<#OOiB>lK@%^;DqVFtDw-?^*
z^n(dM=j_U63g^zMX4mSwWT7x;Ulxb5>Dn&e<)#NsXeJ^iEG`lBz_aOw2~&(qh{I9Z
z@p+gbR63o-IS@?dj7;0aw};}QqFqM9vVzS2iaMGHOdK?E)Wk6phq$EpG6s}(9p=Po
z<^9p*sXd;n=wd1{ynxmoF~J!4p9#hW$#D}WxXzpS*~CdshntxLpQIhnOD8!cvZn>o
z&m7$MvwieD$uB0(b9o7)VHg)oT;%#0=7}nPHF1efHt~;%%O>Ca!Zj0rah;*f-MqhX
zyiEL1(e-RWenLX}ADkCG+mF~3f2Wz}PtNz+u5ZdX>AH!VCT^MdoADqdH)!6*Eb>=t
zxo+J|XSz*=o9WE{YvQhn|4ckGanHnk6Aw*nc*XlbAPGxF^SmU{rk=c2%^q`g<+2}k
zDvS$b`RfU^C#QM-mGw^j#2)vgVqrWRM&&T7gi$<<5@D1Nqe2+Zg;6q$(qWVdgKA6X
zcVI_KQMn+WUHJ5VeAzI{Q76xPp<&l}dZuC5%9lJXGRjht5Jtr?o)6=z7Wq~K*Zf+p
z<k~KTL9DkvtCFZNuc3>YRl}$jM$Is4g&kj2595U}(4_*6f4jB!#V~4w!Qw;Glbb)E
zLQ*@7IzqE<81LUqqvVb6vLd(2)eED37+Ys$56MWTFsYoYQ5Z?#ikyInVKfe7N@Ew@
z!fKPkj-S~DVshBo*G~&$dKhlOUkc;pFq(wXG>q=FGmK_oG!LU~7~U{a!blCHMHnr^
z@PzSSDOXw;>6F(>c|~N4ckyPhR8?27qx<b%u0zdIsFO)kd%E5^mDXD5v<f4^>z&cd
zwX0T28zGtNO34Z%JB*HDbP6LU%)gN#Ka7Gf3NNJOg|TUDT$zSWRrTL+wF_fO16TVn
zKJDV6WLm3~J9Sbzgz<Mr&(#MlJG0bFDP6*N;B%d+og&@HoR{tE8b-G;NM3H9axTm3
z3!`TkZ-?<t7`?*i9maq#28Pi`81rfveFd?DWm$i}F#3nlYDU@kY;VPKu8Pw$u`}zn
zFb0M3dKhnnvF&2Yk%wvQ9m$(vkguug8Y0NxFmAt`vaXBgtuQEjQs8aW$2ByJVPT99
zV?r3i!x$09yJ3tJE#CSw^L8JXJv!lw>6!0^!G6(N4$vr$;ML60bfX~TV+8p?;Mg$6
z3DUo0Ic`ep<(e4Aq%hbnIjx$^(HDa|mBMTvJH>RPllQ|gW(fIT5quQJ$ATY?;FB<B
zGR7iKY|IK{HiIF8W)aK@V{RBH!Z=B1GAzT`6UJT+gebV2(H_PE!9NRQVHlqa&PtYq
z@kNX;66DJ;77KFGDo+Kbr6Rjb;JAmyDOnN5dS=5|8OGOPtP-0j|5lLI0@ny!%aD$3
zwQ853&blxz9&svR+8{P<3u9wUXHyuPV|<GsTLpF~>J-@?#txC)DR7rS%6Eq`HQuRw
zpO6H@&;<FOzKZGi!;l461O{SqRgfRfI`!*e*kMG&2*tJ<f|vrsVMGM61Qwa@9FZ~=
zhH+R($oC6!K;S`vhr;+#ke>uzzbR4eh~WPdcvRpqfyV{T75+ID#%Zo;5fm50eI|_G
z!uXvFW*BFM+Btz21^yDoc|lnD1wl@HP>lRn!7qhzS&%C+ovVUyApQvBPr)CDaV?C$
z1iu%?^_b>u&R@ZA2)r4S-=gwk$7y$j<e!-QUqS8)d>SqH1%D96LqYx%$bydqDch|a
z`4hq8L{FcIpokzv1r`(Ns^*Mui3pyHpn3!^L{L)5%SI3%K`FsY3oIj$%H`+Bmy7Y|
z1t~AELIeqdRE%wfAW!47QUsMnwn}VkRY9r=yf?-1>WdN7j-ZZ^)QF&FOtY3C9ahFu
zr)~s|MYdjSYyAis2;NX&qnJGViZjs?BS?xsiog|<zZ5}ojJpMS>d%)WXcCiC(maBc
z2;Pfeln|yy&>@135qKhaC4#h=W=;g@f@eg~LXegM+eVNX(`gk!>lkknf%Te;hIxe~
zD<;p5z@GAdk)InuUQC`JK|zeSi=e&WhlIO2MbKGf-xk<KVE+iZM$k?0?gD#9&_fWP
zz@7qWKrca_#&e$tUX9873er#D;YnqwIY97%5xgeIpa@=%;0?jKb+90BMo_D69J51W
z^0x$OT{nfocLX0Qa99Mx1sNfbTi=afq~K2nVsr%WNAP(BUkKqCuER0S4<Z;F!MF&<
z3(1rSrbaM9@QDH^37jmDHIJ!LVp;^#BbY5DA4V{PtG(bK#dLVgNzIQV&cP?iOd+2o
z@c*x<Psv;%oEO1-K|U48A`2q;EXEfKLj6U8tc~EC2)-12aRf^QSsKAgL6!+zE|B$n
zCCCbf*&}BK_*!IF#kQ`FV2$8Uy+nm?MRsQd>mpcBF0xw$ZV*VFje=|vxH*E=VrN15
zRw3CI!S<NujtJT;cBUcIE+O0<!5%^O3fvdd{9cfE78mmiA`4Um1|m=+2nrrys7Ig)
zt_utaGz6Lg*;ZJP>5nSfG0C9_qJkF++#i!4h~Qw1&wpI}N5Ov*csM3M62bojUnh2{
z$09f$!HEb?M(`V_voGTmqqlUAixIRO>^U95nFxN4;A{lvh5TFuRa@r&5`j0v%S25*
z+ef^>ko%=0$>_BFUn96AieHZ4svxZDiXcPxW|cpZS#q%FchS}#0{;|vP2j!h`KPjd
z*CY5_7<nUtILkTexGA!?V!gO6$Q^<IMDTA+em8=95!{d9K}_;UkcScc7n7v@QSPze
zPhyh4j}(7Kv{FPMn=2|vF@ettEH1Ewh35pJPDw#ZStu>Y^s!EC#9Jt5VZMz|ZIriA
z!NL^_S1lx1sAyq=g^3nm;du+)E%dNZ$wFld9t*EnsA8e21<8WTLNyE3E!4G8&%z59
zUbIllLTw8?i>YBb=LNe8GW+$*uW5nEY#j^ju2-CY$-^@Unz4FB$NCmZl}m4Ep^=5o
z>17*OIGd47$>^cp#ulH)aH>kQ(0pz-C9HvIa-*)v7TgqCsMFl@l7*KoG_}yo!s5#5
zO+>qoTY7o!v;0ZNNAof}*Y7&~dS=zcloYWk)xxBO@k<-JzG~@Bvyg5f$3m`!3=1tR
zw6&a5yp|R+Ewr-G+QO>V-j%02vE8di*?Qe7aHVZyA$e&s?f*GG-AjE7dp;;eg*~S`
zWwVBIu7B2L<ypwL(9uFC3kB@8h4vOYSU51XEVqXLPHWN9+p2_fzN03%DvXb#qdE)o
zx?1RBq2&XK6;iF65R&H)$@f|4Y2j@P?^x(%p|^$CEDW;H$HJ@hu!a7@A$>)WRkOTw
z&VO^W2Z$`&8W<zw91fnBy>8+7Cz*pOe=hwEfo}?AbDaw^hgf)vJ+1AW0}kBKaj1o1
z7RFfkfL&gdKHS1c3-1Yq5f<JRge^`<PiFlrGRnee3rm`L-lr!^xJZ~-Gt*cL$IfMr
zv+%!J&X|&q7m}OVzDX7)TexW9R|``tOtrAh!gdSOEKFx@7M5E0(83HxuZ2%7d}QHc
z3$rcEVYrUZ{Dl5@xo26pw>fJj1A9yUf|uN>?eZ@+ch9x>&}Qm9*8i7u=?{r~+%@UZ
z*vthMKC|$Jg+&$?TBs?xTc1y9<STg7>;2rq`o``bOS!(ZaHFZa!d}l}i~qs#WVqcU
zI(w<G%))XD>!@boD+?<utg*1x0ynL+@HK-+OuB)O(#kY)ue~j;wh+0~F}T}9g>Tr+
z=I-}urhjXJO~hNN@-yj=*XMs{VS|ND7B*Y>c5?nk_F}KcdoS(8ZV#>6A}VL6wsN*U
z?;L?_Uy{t)c39ZS$zq|<!Y&KDEd(uSj7$rAIi?o;7WRp<-&<hES)^1m_rXdoa@m4n
zfv!+31T2(j>YkV4{<go1B(g2*Lj6>BR<{tM@fIu#DNWsm@Uv-Q)|`B1>GLrCZ>M&5
zySrz3Z42`I31xD8bn?_Wnfn>`j5J=rw{XzHAqz)1^z5~TpTwZtI9>j*g)d)o(E~Jt
zPWbSXY~oQy1*gNi#V9=bn=@E+)JY4cEd0!c!oq0_YHi1LXSf!%^^)t6RQl>1O)Xpe
zJXf>tJ-=93S;|FAIBL1$GcRzmkIyWuo_>kZHNeFRFLRX};9@DZNXc(v$ey)P+{W(~
z{;=?;g=-f6wQ$$MUly)gxM|@QU0u$V8}vN6*YR(LhXs;nlzd(ir;yisZ(F!y;U7jw
zemc{xf6^!?xo6?Ng(9u<pICTc;UNe5P1hp}{|QZAuAjTxDNaqwAB(L|D~z-8jEy2p
zt@DctEGF>8;mkRmy%d(P@tlnm8>u!*+9+j1{=`|PO4}%7qn3@@Hp<$Fw^7MPWgF$V
z_}loWsJo(#f^+F{H&QFuNU*W4R&vpq$t!N8QUaU9%8!A&$oGAmzh+r{6&qD;G@qSZ
zLzG3xQ_V(o8!w3Li#F0`CU>|iv09QbvyxBUNvmmtgca7YQP)PY4Y!SYHtO3*qMdV+
zjpFGIY&5jd$OiQz1@1<sr?HJhs_jc9r{uVuS|ihQWp1)$!^LhI9yZPFOEzA%(Tpas
zxanzPqp1yUV#nwHmC90M3*7%sanl~AKHtQ9Y`kLQbsKNcR2%6w+S}-0Bf~}u8(wzS
zMoSx+Hd@<gW22RgK4;U1T}ypweLP8gDOXz?+m^)dZ<AknYy#!%SGJ8D`p`x@8*_#x
z<l4w*?{a*P`XuMsAX4Yzi>_g_lV_H7b^5cbSu>f!jy5{k=xL*ujm|c@*yv%yXQQhq
z(zw9g&Bmm5?lsT2y4zru>9u*uG=Pyd{oOQH)tk22=xd`NJCft;k>h*S#@@HmhWwev
z=K9+hKzn{G|C)_~9G$c2qoe5y_U4mJ$ngylK4fk5<eN4I+ZbnKyp16?-m>wYjZrq<
zw(*XQVK#;flOBB;H`K<-!3p$p%c`z3w^B#gc$X1X%C&E2g7#PHNTJ3odpFv~`!+tX
zF_z=9EcvwI8DrzmbLlr{Ix%^CTt53nQ`wgZHYVEm$i~O)uZ_tzrrY?CgV;EIijAo@
zrrFprCz;u$IX>lbCVfsn%&;-?R_d;W@vL)uzPtLd^iOQeWPdr1bCTJ|hHt0MvN78R
zy-okqB$l0PW1bB<=bxa5-lnMwY<y;;dlWsQSZF&(ad&Opv+=o&FKjHb@udyRhHYc9
zjU_g=(-<2|Z7kzVv9aF9avNXSSZ!mCjTIchGU+RAd~IXGi>^@<GFOQ@{rTQgk<{63
zy$j7$wO8s|8{gRY)&@CszG&c{TsK)ya`&#{`p(7%8(VB_wXxC0CK}Mpz1aq9pjvX>
z<WsvmzgBY{oa)|YgGIQNo7filP8+*8>uo4Dc5}+_@$9v+k3%^ja}N*pvK<@N)=B=J
z{q3INXU#J*f1pBL_p<8gtmjZ&cYr3@Fz7U!H$+l{HZ-=vDOTP!rGfiqwl~DJMRMo9
z=z3Tunb|O>&+>R?S^T|Ht_VZ%b{a|4Mxl*gZCtXk-^Kxk4X3t^gEkJ?IBMgVjUR3N
zWaEFryu+fKM{KYaI*_Ke9+gc~E1&94<468i{J4!19JnLJ*>`r9Hn7*HZJe=j&c-h`
zeijBVy_<HHt6W3Z<=-Xhr0?;Zw{d|5Ia1l)t4or(X>AS1SL`)wzHH-)jcYdkviZ9!
z&s7`0aoMMlb=`Ju!XJ!S8%M6CQIn-uA-l;@xNhTb8@FuSwsAwWONE<a#H%Gc3hV;Y
z9ZotM|B9{+9>=d(rc;f^m#&e1-^K$Q9q&6ALmt}rk4s_{FGcal#$&F}QB;oNiH*1@
zo{OSn6wgGlqo%7^6wgLcB#NR@tlQ=JuA#en`E(wx)UKIcJc<%gj9ZdSe&K5ND^1*e
ztkhCbl#ZfY6y>8R6UCeTGRj5~FNm*ZI<uqCJG;WXy2%xyNQk0h6cCm0;zmX%4{Kwi
z&x^KN*Ks)OtP(}lDC$O0FN$hWRF9%Y6g7p;3sKOR7o)h}*1NR8F^q>#tiM(iwWA=Z
zp6X<)Z_TO`<xy)YN&P4qM3ERpQWOoN&as(u^cBVB*Agmk$!gNb)mU`=g<YOH|HMmC
zB(tiT>8>dH4RkRbtl^@O(;K>8j-p8v-YBx7Xc|ScC^DjG5k>PTQljug@ro$;)IX`B
z&MG|$(xOPG&zm_`(Vraj8@oOB)$Ep0WJb{@id~glt)loX#obyIp~Iinu<bQh+bC9i
zn8{x7U@|+3oG98y(IJZ5DDt8xh@u_6AsS`n`9gVio#bKlTnz@eI6-bUc6W@TQxu(}
z=prg#-8iM4*GpwK(KU*0!lgW(p?>i!@3z0vd{Oj_Vp$Z+qv#by?<n4jVpJ6W`!lUi
z6a%ApP4HKvIF{?}OBY4aKZ*fST+dJEVfKIPvmVrN4!;LQ@p=?*Me%kNZ!j357{c00
zxOnEm^Nzt$R9czO8)3wLk#x%6iDD@G(#<<EieW7HoNEM~Jli{5@VYIMJLY+reOCxS
zACy4N`YpYqqj*1xNgUHC#zgV+9ce-o6Qkg%*#}Yn$`Iq&o%LC9!7k&Y_-b}G4I>^<
zy1X#kTYPW<Pv53QF*S-sQRgPwv?!+2?2qynM)6@3GoqLog|#m0qbQbqm-SBl^iQJB
zZJmz=vZ{0IvS!Wl&JsGa1yXrV6mw&IUKI0V{8K>|2>eXo`?=oFqxd3<R$q15^J4nq
zS=q!dqhPg**<uvDt+tfz?c}9|%`y8GhnRD-5Jd~IGKyk<B!0^gjN)rnI8s_AaCH=G
zqFBo)ZJ$)8RMIyb!JCQorzAabB~fR66yHU0maRmwA&QMrL|7_{O;K!)A{d1h#g-_x
zMzJ@FeNpVm@oi&^w-R>=zFpuBfjb2rYn!y2EjDp6?TNzud=km`QT)L88JMKdx3!b}
zQ51irs2s(=4dag7O#Ip7rsaVsuH8*!QU%E_*Gi8<?Vc3k%(|91tW^@Z!Qd&IWQv}$
zNH_|+XA+4WMU-(E#ZgZADE4y+x}JE5Qwd22m>uir9Awy!OsblbMEsH7h)?=SAj#n<
zjtKtl*gR&BF~%~TB4-3SF7QMYCj~K@xlToKT5zgOtCsY06w_WvVjBJ=@s}vhM{$qK
zQ4|-VxERGBQT!RjuTflzqOmLKHxA{l<jYZ9rR3KNY~>0yOO_yE>gG$J&hL~oc9C3*
z;;$%fG8#FdI5bm}Ziv4BE%^Q%A0-P~B-z7~ZgY8j!Lj*YLGDEHk08swktn~*BaJtT
zaqIL_C3gOv_#le7Laa+qYJ9Z#Lq>RZ(tli$7&ar59t(UTkXc3u)t(W`_i14vo-M?H
zLJTZK@j{d+#LI<fQi$gYQL+#<3Q@BVr3z8H5c5)!sunr{S*8%r7vha`<;oT!UP#In
zV)aJHnDQb^QlStDf>(@5P{_5kI5!=tkyNP=l?y>qr4ZdKB&{BlL|&~B)rE4I)e?L3
zLLpu(1PRl|U~(<$*GXznh|`slY8PVgP^nHK>K3AJxul=UB-IlI>lfluj*m^eJvFIe
zAsQ9pVXyy3({(^cQFUQ@?|k&$A)DEyCQCLUl-&TEgoFfGKt(`6q&JZwB7zh_u^~-F
zu~P)3N)Z78+3DM6gAE0wcccpZ-@O0ioH_S=@6M~YynQ=!-x~+>^J*gsCJ5>XB2fVH
zr68Pz*cC+ELfrgnLWdwa29X;?-yk{#krYJtAbJFm9E3ZFv>>_!(K(2D-HWFN@wjJz
z{Y()Z_5|^M9f#RS=+5D&RLYSaM7JPjR<m(e3aylbnX7ejOs(bg2H^{$R}j5}$OvL_
z+v0edu<Uxmy}YcRK@jYIYFm*%h|D0eg80|%dj4TTHt~;1IfC{PbZHw0IfJronioWV
z5QC|LPL6(*a1djs_8utuHXw*Vp;Z64ZOiuV$jZOG=om!pG;%y1<#<MvdX|C>;)2&v
z<Tb~U%Lzk*Abnm?N_%(^F9h*L5MKr{f|d}(BKACpQPfKiF9$I_h|xj36vX%-CIm4?
zXeXnAV{8yddsO6bh{tif4IIBta7+vWEgkgeDI(jXASMgIY|`OO@}~wdEoi$uuZ&KP
zSAv)k#Jc+lZ&IW|%nIUl_V!i+r8+x^*MxXqrES!A%n_LUtSbp~3-Nc46Xpf+hA1*$
z&;^1nS)H=*X#(qE%?m~Smuoqe1o2i7YlHYWh^15qH5<eS^o1aHuS(?gZV>MXOyw>Q
zqGnac|M~B6P)`$x>yJ(RPz+~f5G#WCC<r<onY_}AI93I*THGyG(y>N>UN;ifO?0f|
z<R3)cA&%1jmRet^ug`+`v=BG0>)0Uh=Ysw>xHwh$RS;hXu{Vexg7_wgLrIP;L3|g)
zw*qerVp9+suOvM8VbX7R5;oJ*GabycHHd9N><D6K5ZhTBTS;`(IbLM;z$)%dC0K3E
zt5tVVvvVASCnfIYV4rkx!Nz-NW0Ml!$aCxqVn1zz$_?T`5C?;J^+)Gn(Xjz}_>rv#
z@lz1PZ&hY(f7Z2)zy598s+&)6{4BCPpIC%*cv^k?)`=i~31X{;Z5mDn5#%hSG4L32
z5DN9HV6Fm{vjOXraae{PghB6+ktM?nBE-o`Mg<w+AR<9r4dNQ(KZA$`@mCOk2Vn&f
z58~G#eq+v5XF(9vdj(EWXngeAz%%8E{mAt9ApQvA&mc|<{;lc$@@dXR@J#9HZ#~A(
z#Wo{b&TzH~;ym4i68qMdKe5`mApW7^PUZgYak7#fJ8~`taVd!ZHdeaA>2zJ*n=31k
zf0-`d*j_>L;+pDu5I2~Ib4U<3gSZvMeHuv+w>kNAa{n8|-5~CWZZLmBufS`a-2MBe
zJF9u_QFP5E0#?E&r4KpXG22T;n5{}DKRHi=c*^NrMkyIZWE7QATt-H(K*aAUCff_J
zJ6aVk%=q-Uglvb?@M5yGj50D$gn+f&{#&tsiFe&^Ib~&RYa_7;Gc!*`8I@$Tm(f8+
zWf@guG?dXuMpYTrWYm#SS4MRikWoWMO&LRa1^7^%K{zFfgO8MJ$*9fzeN$)j3NXoQ
zWv@Uz8TZF}>&s{$BV|~s_rJu-IsUD^0=$Zql^V-vBBPCr1Q|_bG?UR%Mk^W3Wf)~V
z8|V33$QXXezd>L=u8)++4fYDOmT{g<bn_PL9dO7<l;M=&lF_(#K$3B}n>Vp@#gyKG
z0l_?$Z7ZXljQrjKKDGX}MgFPL{?WYy9c6Tq(L;t;=IP%^mXRtWO@>=WXZBNuhaFy)
z;kcXFqO^4ETK}FosiVtE9p3cM?H%YMBV9%}8Qo=k(mRk>M(QeqdD0&x?(ZE~x+5>z
zJ8-RcAZwW4N4?0nx4oKQMo$^NWZR;;7OhNG?%0^!+ZLezL4%C3S^l*3{;$uvvt{&=
z@wSY2WaP-ml`&q%1Q~s0<jHtm#!wDKMn4&YWDJ&Z>2O|u837r5K`=nZnPL7D#dAyf
z0~xvAf$W>+N$Bo>M#i&jh;sG^UK^2KJUjC_k^hII{_(5)m7gR&f2aR23R%Wz8jp+@
zWQ>q8QpPA5TZj2m{ehoGq^~`Y_xFE^fA&v(k=pELdkW<+Mn<H9G*-qq88;hwJjFbF
z&76j#Q`i}1o+x9IjJYyimoZt!6d5yQ%w)GqOH+kxr?FJu)FTW0T+F{L<G*2<(*=D+
zw%-UaIZMXwO}^POUX`JwdzV#^X6B^Mp$wOJU!(cured|TpFc3sADAcO4H<9BSSVw@
zjJy3)7toB?`WTzH*dL&}w_nX&BxA9Rw`44pG4?^?caIZm9LifF<1?S1U22ll*Vbcc
zX_*Y(B3LftT^V1?_(sNiGTvuS85?ALAmc+Bt7WW_v4Z;AnX*#GrjPv}$@aAKav+nG
zFO^nNeV20hQe&-*kEsh8>#0627hC18lX1I<Z3EPPuE#lHL(Zpcg)hAP0Wyz!oS(}$
z;17IB`7@r4Ld*3(Ker+|U&;2LHO9hyD`TUKoicW@X&IZDla4H73p>wSTm3E(^1+v4
z^UqW{otL^@#+<8FcF6dtvp4x<&i7QDKQOXkl2J=q+rYD1#vZmP<DiVaGJc>jSMuza
zvCnQUz&Y*gH@-z{oW%Zwq;@;~Kgu{HW6aDF%X)e1?)UROSG`90?+?yABI76>M?tEB
zpIHef90g?+9G7uI#swJ{W&9%Jq|9UU5t9*=A=Aw{y;Hw3RL=PncpH}{V`44oFG&1H
zJY`WjCBx_NO**(joc!5y8SAQ4@3Gt6=xFlUEtUAhhA%$i+kBRcxQst!{3)YA#wi(p
zFHQeV#y|fg@`=ZnwWVJLr^$fSCk>?EDb*eBe_Odu%lJ#iSsCZ(_}BZB^EdrSMy(I?
z_RUV;xip<mHadOh`-c;bC_ej=XG>X+x-^}YU*c3F<0&U$1y^KTmGLiak3y4iowH>_
z>9&j;G;)D&QRy@D(hukG(bMNAk~a-Z{;`d#RA%6gY(Gs}vCVgno<;kY@mR(K8DEXA
z_E5$nI?km;79l+}%Fichi7oS+CAglDUrsu+E3fm2%qyS!iYh3kprnFQ3K)W3TtNv1
z-!$?>CD+hSuA{A8^BYN_gB3Sj^7PwWsk8!e=GOI;Q&3)kOTnI|QUwJS6*N-NSV1KP
zl@-)fP)k7-1yvP*xSso!VNx{(T6<S@1@G>4U#aIIPCB1hL&2<bT}~cNK2~3<t)PyA
zdJ5_*sH@nICGStkc)7N;cv1QrGt(Qe@}W{g#eSQk)RoRR^|adNTin^-L_t#ptrWCY
z&`iPRcCO|MS}1&spM3gOB40waRKOvym5B|d--k<W6eKA8$B0A)Gg`T*-{<N}cXqg^
zC%GgAP6d4Jm47X9Uo+`gV~^3o)mA|}1??4d5QB9q=%}ER0=~LRR&ZuUIy;}FU|xdj
zn_*Js9(VYBBJHrVf)t8zm_+%oQPMO8T@*|u^I}4}g02b%DHyDvn}Y5N`Y6az&_jV&
zK~Dv}6n@^_?NgAUfZgc5!_6*H^5c)^eEoBBZv}p4;Id~ydd=ScEKz5+f;mG{4=heU
z)XH_foJ4))D(I_VfP#R>%i0b!^W-VWSI|!ghl1*_;QMQdSKGTv>~S+05IN@`O&&-^
zboa8<GYXznFhapd1<xrMqTmH;p`5gMl>d1J=SQauQ$RZ($~?!D2@Xw68LoiTwYcAu
z<cdT6u2BkJR4{?!QZQP<OA5x(JQilSH~ZM=7zJagwafrtT+&(SAf)3J{JqoH>qzn>
z1-Z?n$qMMm3p==;{gW@;r77&diDbTHoJNavxn5TI9X-4v@T*j7Wod?jnF{!TchiFO
zSqf$oH<T)E_c3$#wyrrM&p%zf%=tRCM)|AguHp?E2`3!Y*3JS2Zz}jr!S4zdDp;i8
zTLl{xELN~Y!G{V~D0oZ3QU&iQSgv51g0~eM%yTDAu6Ap&=VF$Zajk3qN_tnpdkWrH
z@B#hnS|S5?CtXheBiq~ia^eerB^7DndFyieM|3&`8`wz&s}!tOuuj1z3f8cR`kw5=
z71t{E)2B^Mla4k``k3C=G-+|VcfEp76)<4<Ggkg=D&ucE4VK2Xu;YPWg!F}iV5g+7
z6nrhfmx4~q@v_3=FQt4#BX63-NaMUg(kA+g0$qWjV2gt9=yVG9E7(de5bbs^;p&_j
z*skCQVPoG5<_>CeTINnc33dsvThKj%?iJa1t4=E^H#2}HrF#zd9H594{79D>;Xkh6
z1Xb2J=@7+!IPWI~hXo)$BEV7p3J7qlkk6qNl$U<t%&<6vLO7{_$)KPFvI0e5wUDEU
zKJb>QAf(vw)u$AM6+{%onMVvKsvxG|<h_(H{!FTNJCVRrxM#snP$kvooV}MaDl@<c
z=U+K#^z*WkKNS3_;GTl}3QjBdOTlGM;IvqdOTj;M3Q_Y}+Q}Q~4YyZ1A|;(u@ER>V
z$8|x$MFp3bv$3b=8|l5a`WT*_+Q-YV<avonR~1}Sa8to81=kgrL#nktopeLgL%<@{
zR`{ztBi&Z;uY$V@?hwRNULPzi4@k5AO4|2l66;)*8F--Jp@OFhil}&`*bhaYP_6w_
z|5Nao6Ln|rU+X;&?j{m^u`chkS=DGoMOBngQBp-Q)i$=`Drg(iS|%wSlDMd--Z80^
ziqa|<ih<}e)oRonP)5bt=1BzQRFqdyK}AIs$tv6`DygWfqM?dLDypccs-mWfS}Llk
zsIDT~CaH#s?GD>eLC((uc>R)T2Vh^y4AfRpM@3x~^;Ep~Fo)S{m&sL7yuR?t1}bRb
z)!W!*uVlN2RFE30XrjWUqOFRiDw?svfRw1Bxr)Q>l3s6^)I!DWyiDeAse(yftyHuY
zxQ(C*g?xtq?^i1>sc@=10Ks1=E5PR7y3xO#ipczm9aVHv(OyLd74PQyzocL6@jo0a
zvHwXb+GGXfLDGx02E5!Xsk4fdCY~;Wrl|0!NEJAZ!pZPbQ?vwT;B-NnE^c)dv`G05
zJydvA{HWrP3ZIG$6>q6ns-mZgUMfbY7^$MS3crd0Dgr7pRb;8iRnb?)lX2etL!@jK
zeN@bNkdmXK#}Mh*a}sy)RK1jwr((sWD*aWwaJzcGihe344Us0C&1pU<XLYIE-=33t
zWCaGQ7^Gr|isvZ-70;;l#+>I=T&p5I%dtPIG~s??zvdFRHSuCwLsf7O&I>AL@A3^(
zF<eC~Gd-=ShkKwNpZ82G=E=U`8KvSy_D97`6{A(W#CBCoRxyU!<UpRLOi(dS#dsCV
zpQilVAiwwS99P+{(tUd;(Y_X*i7LO?=!@<4O;Isb#mg$DtGN6)Wtxgvy*#}2N_lD1
zh|E`LGp!}=Fxvk~M_wP_Pn^YGshF=~fr?jE%uz9yDrQeErLgkXRD4my!;9O*__Djf
zV&^>m1gO|D%g+!6Mi=lM^qVRcs#wC_W(5|h*j>W2n07uf<<3zz@xZLWt<8Bq7Oi};
zoM)Mew`rm(zE$xK2cqI*73*jxG-DMXsaUCUgMjD2*p&BGe4ye(6|W3RWpV}G>S{87
zarm}+&=TiQV^UU8q$&tjGfzPYh8cV_Ic3|k&b2D0y_R9@^?jmZy^7D-e-)pq_)NtH
zO0|&`8K3gcKHv1CZc@f(q+Lz^l6SwV^p%RQX?W$N(3Rx#&87ZDbGMAiS(EMBsA7|f
zohpt@NZG97{P*tfRBRQFwuN;Tm9|~T*hW`X@jV@%Mwk^~pha-0^YkJ2j#o1V{?`Ae
z#?r=o|1L^K#U2%VRqRu-pT3ak`ax8CwqgFUlb)4hat^2%_<BZ%py!~9;;&^4-R<8s
zJd??v=%*@fs<_4cDvqi!RfJUhtm2poSp~JQb*%q5=aBm;CsmwKfo9HM*w3;4;MklS
zeZAxd>Cx*uI`{e%6{-r2rdv%iRPY_W&Pl1N)ahZ$jN-ZNA6F+QOkY;<mx{kR7jdwy
zTm>pl(QZ{(DkiS)7+3LKR)9t|u%ah*uK!mRzp40B#c374(>2~n|AUiirptUOg(B_S
z(7mvzwEQRc+Ue=U>i6z5D$deARa~JzK1ex7!K%1Gvq|;-BV;@CZuKf^&JTNi7gbzR
zk?r?nhSHnu_LcPcuX664S?#)t8}v98U6Z}juGky;qDkI`pLA@y!u!X+iMLhUp)@pG
zq5rD5OL=N2q2Zp2`zju?Z`9ofl@5KLGqkto0lU#cI*}FlPsL*uMKl!Ea4swGM8#9i
zGjmEzIh!sYaaTC$VdoiFbNoktF%7%wNvwRqjpULVN@=LbwltL1P)0*p4dpb9o1MW7
zrAKFyme<hZq-V*`11e~!**Tp|#&7Ih=C7=wiiYYMprNXUY8q(Xy>BLS`y?YM-no-F
z<A{4kBWLM9`nP@Ptf8UEG57qN$+g6|YHO&Yp{|B{8tQ9kpn>_j{o>hs!t>UI6ap?U
z>n=^Foj2CdM8gOTBQ-SD?3G(@L7NHMTtf>DEj6^#;MH(ha<$gbMneY;9W^9qaA<I8
z;HKK<CyOL%kTf_oto}TkhRr~!@5kpTyYd=s_qWy1PQ&Orp7t81yS>c+g40FXNkfu`
zR1IkwlBt4T9=C?hOcwPJr)c2LUv7W)2(U)=aOd)vPkdc8q-*G^p__(*P3=wJIYaHJ
z{_YyMk+z5EIl<h|@{;O!dRLKrqURYJdTQvU;Ydr@r+zQTvSPBI)UP2^LzXD@tf1K%
z`e?|}kgH+$_r5`FT?2y?`fJ$W^X3Vhuc4oY$IV==YkT-lkaq`Y2xxfH+*RdR^5*)|
zKn+(m`F3vcv4+8-o@Xclv5k%)tj}q7AnOnf&kHbA!!QlQHTz-d3xY%NG%GN=tDg~@
z9NH)fS@i8iR-)l04P!K{6P&R$Ck+cUys2Tlh6x&GX_&2HqJ~KtrfGOt!(_^Nd67EV
zfhiiS)x}vk@l??q0RwTTYj{P&3=KD4@sBUanaTbvPIoqz_~?URYGdhD4RbWi)$qE8
z*EH<8lEck|d`!x|F+O&s$2m{K8#Ii?=?n?ppybULm9wgCEv1DT7HRlE!-pCcYgnRT
znTEGDyrtQXR@j-PwD4I)_T8>@FE{gaap@g;L}mLa?t20(*YK_YWHxCdy|3BNc}{n5
zx6KZ$(D0FlH5%4xSgB!^XmquppDyw*ttRnRHS6KC+!wc2TKcHc$F$h_c8ist_WwlG
zvtGle0(_?7a}8fm#q^+#?q!|r*w^U`i+@S;$PRo(<LTs|^tF$Vo7nm{Lh|1Vx>3W=
ze4ZfaW<j@T_)dUDHKm^7-|Kb_-)q=tVv~s-8g^2N23|6-i-ti%($QbX9u0dn{H@^(
z`!8yyY!7Src#yPD(ES<?XgEkY*Oh)0oS*0dO`V4Xol?WYoFlRWM>HH|>l%(}h*8}d
zj%zrfLDQgX_=OMu`OIIl<2{0$TfWMh-zF*XOb!8e5h@x~4HuTA&&&?2%np1<36HI2
zXfQQ|H2Yz~!;6WhGQ4385e-ode711oZc6J$5@VUp?Q#?J+31UFIHloN4F&%<@?Lf@
z`EMG2=ji@RJgs5<!^A%{`|0SP>`ZpxWV%1Sv-f5o^DjE}*>pY;U3k=gmeZ_;hB_MQ
z_=g^+;h}~{?3<Y1uG3I8T-0!hu1!bN>>$9a8Y)!sWInWiR=DWmq<W2>(n!i$<h-fj
zmWEerNcT9&oX@ze;f{uXS;=-kk1V*$8N04$&ITXxpV<N8f*R6&4G(B|ef=!OSd{<h
z>}*;`WgSm6Jmti$qqL49I*RHjuA_vGbv318IvB*|y_Co(k=8Y&k~+@Rlr|0bf3nNX
zzv>JZDWjvTjtV*|>R^0tIUO{T@;W2ilbIpCoW$hTJ?@G%?Z+StnysRvs*XB3>guSb
zqq>foI%?^F4%SKQsv*FiCz4Ao^0UR-I)*XirnR)FmPFfNodorC)Ys8K$Da!_`0$PO
zvnOog#KpwMI-2N6(vhsAsg7nk5_L#An(Jtxqm7Ogzq)5W?9x(4D;+}}_H6vF+uK^;
zsV!VN8+?&hD<<f0=={iqn@1&(I(4{owA0aE$L7|qGsQh^b$ceq4{jb+(Lu+<1Xo8L
zCp)^Hev!ut$4>Ki(z!i0kMX^39i4Ub($QN-iVlyCt~$EuNY#<1ql=Do9ZItI^SAqi
zovwqA`vls!u1(EscfrHTyHkuhd^$38Oq-GJ)p;yc6}HR%Z#|k!j=P1cx6{>=9sAtZ
zXJ)!zN2ZP(9l1KPbY$!3!{LA8%ek7^{ChtSYG9r0Rn-yxzB*VoPxSe<Wbd2X{Y>WT
z_URC;XMm1?j=!mE9Rqa?qDFMA*D+YfGdgDKn5E-c4p7H99piNj(eb>FQ953v7^yEE
zFHq+9Qyi&Yu9}AHc#s|Fl;%AU&l#a(qz<medjwKzjrVeKHCo3@Y^9=Std6@aCClUG
zM*A@oP9upRZ$ZYmOwR-zSFR*a(J@uWL>-fKOlDX8t^;#2$gkBWzy-rJn$QvVbRDly
z?@gR93(C7Qbj&X8At&|qjDKHFA9BP!TgR(9mg-ohV~&p3bS$LNQnux!xjN?QctgkQ
zItDCrN=+rw`8pQpSiIl&CI|k9hpW5qmirmo$@NL!qwd8zmgwMv%D3o84J1A}Jijm_
zyRJk$`a<H{I^NN-QpYMC%XPe~;{zQZ>UfX+EHAxJ=F^m`y*<75`A+RiIn>M3wohOM
z-C>;fBb{IV_3_w&Z+m+vht)dP==hl8-H^PN#ap=;x_0nt|C3i!7>%}$^=z+n=9`?o
zJ^Y`tppGLtj_TN;<8vK5b?nmdg^n+EY|-(Zj;}b7oz=e4@vV-pX(W9DI}=^B^NqS4
zJ<d5~vjCfP`=}OjcrpnWDqAUY9pCGyy|PlnH2=uMex7`?o&MXxwXKS0hmKQyy*++)
zm-r@mHz$7`2Xq|Nu~)|rI)1H}vR}tO9p%^iitVh#HP803Ijo$g(9~b+`%&jv&B=#!
z{6uF-t@!=#IXr#kFkS4Z|7VZ=Zs@~f$v;!bIzl?aI*#i&!6G_z9ly|qX^P{#GEMYu
z3RliS_T<w(WBUYVJWWwJDd{}ZJI}Gp$0Hz^&0w`@-dD?eOlp5rPPZlLdFQJ9V5UcO
zL^;>7ERC&&RHZCpEJ%U(^2F)&zvL}{n#f~A>g@9Ws^d2ue{k}lY)|I!Sc%_hLVW@U
ze(>clNT=D~Sl{uqj=!jsCF$qKd246*c`(IU9p^X;8E9ePA06j8*%~Ng;DU~eI_}d)
zbX?MLS;uu9H`oW=Ub|kS{Zy8&QcW|`2|nu+INi;^Ced|M$1NTI(q(kqrhBe&-r;c8
z`;N{^@7>?e`1~5n{X9R12e8~De}m0u4G(oZ;`DByn1TPq4A!uv>j}-HuIDjr<6Hj^
z8+=ds6JXf-`k_yNC;V_pS=_KEs1gQB8qmi3d7g~7M3+*AJ$V)zpF_<4lr>P!Ks5u^
z4SPpSc>|RU`=wjUW$6_Jr=np$d*>F9$_A<!_G><UNqSWSeCWj2fB$6rVW5VAh6WlL
zsA-^<0op)41GNp*F;Le4rzx7Kvdc|5R2*#|J2T}=Z+!y|3?4dXPi}4aQe$1-sVh|)
z8}`)Q)IbvhoGOpIT)ail%)r#j5^b-gfmR0m1~Lt_HqgdEs(~~E2?iVnIvD6^Aklzi
zz-6GV0jGf-r9D}7JY%k<@Q54Yc7{E@w>J>#6Cha8!bM5CT1cHZOapEMoele!BG~{-
z(S!5}IRun*iebk#dnn97nY8Ma8+>$uE(X#Kcn$ar9+u_rYM?uXW}qASoxNB41WM^1
zzBA=wgD+1j=L9IU3<Et4^fGv~ro>xSTIMrPZ}vYYux(ieE6FmDZQvOL&l>1sAjd#|
z0|N}?8t6-*Ez8I^a55*g{Az!m(3GC)=j;1^hW$E~uSzp=0(^@apr-tuK?Vl0?EOSu
zjmk=c4f~uBmSrW+85m;V1p_0fyJnu}X%z;B8TJV|_Zm9SJu4|U(uW)1Go{K`o!M*h
zMjDv)oHUA(f0%M`w~ttFD!s^3Ie|KV<%}^f)<AI+B}|MnFy6p218*C)BTS%nzHz=x
z0}DtK1)U`5WCK&ERs&qN@%`O2nrJf@-vkYqnlatLD+XrJ1`NDuU?H0}Fq?*CV6K5z
z4a_m{UE|U_vRq|8_3>Zi?`7?|o!diRH!#n@8!W=9zPabuVgu$I_Rq}%j_YmzfC3Ny
z7xND<pDZmhu-L#71DqLF?(@Axb6Ve#|M6$#1eO|Hd*|g|capwiV7Y-~296te*T8!m
z5fx|PeFGmD_{6|^10NcY*ZV#)u+qQ^180W%SLOunE=yl!V6}m@20k{hhLtpR@}J<G
z3mKejcMg(P*Y&KUrH!(EVfkBr+To`LejFxkFz~s7&uB%rQuvmQuhqUV@Fk_R)BUx9
zuMF%iXRoICYVZ5azQaAd<THqRqk&Dd-p0;Dtkb|2uIHJPQZlfWE?{6M<v_g0z1_g~
z2DnJ;SjEFNTf3`?q+H!S@TAXd<8m{8V~=}}fxQOy8#q9#Hn7h?>2@xz(3tbZpOd*(
z<l>M;4jN$QA1TS%>0DT{PG<PYz+nSN3>>A<B022R&un^?lfQcJoKEMul+oHJ4E$o?
zqJc}aWCKA1F#{IG$oYznX&`Jsr9BuhIE3b&n;HI5<5IS~n4@!cDkt%2n8_}U&K!0v
znRNH)l!)L*4SW5-XCO3*^;eSP1_})PW#DfEr#LYh_=5wd3sANvJ&Wo{zZ=+-<Y$Gv
zHs=IrOQ+e~azBk{^GQ#uGwEjxoHcNsF2AMHIbl@)7<jzfE;8hB=70aCF!TBUQZ5)M
zHNjr$Up8>Xz-<F}3|yuEwsl=IaGh%1;eNP2$H)oXFmThrEp}s_p9VnhxR?|8p^j|~
z{~EZ<$_+d*aF5eqqx^>k9vQgLnU-?S4bVPsJd?RUkoq6}^l8fVO#j@j-oLAP)a>M^
z28x)F{wr0~1fLX5+2iAr*zec+i<yu!J^XdMG%~ZKiBcwpnHX-Ow23k%I+;i^QPxB`
z6D>@%G*R9}1rxPQ)HYGkL?shX%6O`om{%2*O;j<#jjQ*cCNh$_s=$nxBB#0un5bc*
zY9pzpiC$m&8Rp%hqnm$tiR-Z1RA&Pd4NcTFQO`tu6E{1#c|H#V7;;mcR%dS`6OBzY
zGtt~c6BFx_{7p@yJX4J|aN8*>$?WOnzj8)UFyyIGZlINk)*P=1r-?SE{rDomgu}G|
zsxv2>;}eEN(>_*+k1WO<@ViX3HPPNg2NSRFOlik1r8)1U+7Vo1f9;=|YsXqJwxOem
z0l5M8D%phFM7D`OCOWex926xvNb;CSWh*AUCeln49W14r=xXAP7D-)1@~0X8ZYJIy
zD0MgSer{l9ZlK9dAHks(`92dFru~Yfr)j_V*qj?!c_@d;`+d@1Xq(hq)bBTuX(G$C
z-`f0?8+aukjcS#|cF$+Ia!m9!k!K>;1e5M58O)P!qMwPuCY~|T-^7cHoB<O9ISLbp
zI2AN@>WiF%ME-|ca%i6{xbu3lyPW4)6GKcqPZgJwo-^$|clTC1`M<T^$s$8d`;Y3n
zmr{ym_+KzF!o)|WJ&lhvG0MbT3Xlz%7;R#jiI<t##26FfO-$ge;nG+WoE*lP_<3e}
z*ILpY{^zPGO*Apd#8g_~BLDJIp2_U+iR3AiSbG<r74VS-H{QOQ>gRj*=_Xz=G26te
zw7Lm7Gfd1hG0Q|OH}KZs<nGO#T!-9!-re?C@*EStw|2coyIsc3eu-WCdI`>K_RXU@
zOe~`oOw2d2fTq&Mwb;a)CO-#{MJ9sXy$pod{ZHbYpOaJSdmbN4X3a}Xyk%mkX}>6E
zFvH6qdRHG!zSi0Mj)~<aJ`{p_*Tj2NtBDU-Z6Etd!j7)qwRJqxD@k9x?QfFnt<j%*
zL;WjQ$?(kIS|;(o(n=GnOsqDs#>83^pPATTg2%FbOd~h(2?twVD)uC0y@`W<&!?un
zeB~09{~E}r&wg&=3lm?n-CiEn_N9rh`16|Sxt<%Kk3VSPA^yh1w}Qz-|CnvsmYmHd
zw$R5TC=<bVCbpXRID~Z}Y%{T)UK4^dgzx$A$HZl}XksUQ+2m)xpqtojVvmW#CXSfc
zYvKnJKbmk&Px<zX%zY*faNg(}*l(i22xrsPnai%a57JFq=Ms~1NaXxUP$pUGD9wO|
zO~30KIA-FwiIa4_vKa$k$RRyp;ujN}Ly1f_>>H@rB|pf?XK=p{L%9cMr6?wTEA3Y~
zBbD(J+%D}mOqf)<i9bw)OoUCG;xOyvModJx@K}`+7nR3MSfb{(gZurwHk0+&ubW#S
zGVDvwzh1uUucFj%CVKV_RC|y%J1_lD6Q}7WCN7xxi?dlI@r;SHCjJ)q*}j36kJ5OZ
zGw~12xNo5HqqND7(%w!@CUf;=_eD-$;lv}6#7mqO%J|=5wWa)5O<d!g8L|g>-NX$V
ze+Z+K^KY8CW#WN}hbC@|`u{a?SAaVv{tYEwT#%&SPrFBT+)ukt2OpnBPV@0u=i1~x
z;>=*8NC-tkcuZsH8=#z@m`MJ>_22z8;-^A2#n0px3!!)jB|<0}f-670=;{<IZjX}t
zlPL0HI5E~YP&$M%A(RcFTnH6Is1!o^5GbDueFGIj2rS7OGPqxpNxAHEk-Px)Qd#t$
znj)ua2-QNU9s)vW5JJNcYJ^ZTgt{TrBZv7zs2xI`5I&la#pK$qt~VxREf}A*Y@3_-
z%<Po<Au!2{85)JqIE1Dl91SNn3E{yvReI&wLyKQcYnK;jCS*u4HV>gi2rWgjRS0ba
zXkB>s(Dk$gfgOdM#1OpK(^jTdbcN71gy%yT8bZ4e+OvlvoEaf>2%%#Lo)A()`1y*v
zQwVMWMvTo$3L!a!7xDtTD)|4b;P1?)f5}Y=VMboyZPB;15W0wZx`kk-CZ~t+OKJa>
zIhDFnED5>foO<5bJ%k?YgHVA_WTpx#uFP)xAg$xIw4NdK3ZZuh8}b5KA!LW(4<Tcl
zJ2Qk!m%7jr4&()BPJKe?8$w<PIU(eRaQ|XHt&3K7;&^U;2&1;T`-d<fgnk0I{3Mf{
zfRMm5g>o1uz@QKY3-Hn7k`yMdXGQWkL5HyEF<E2|3t@N&Z-%gt!w+FZ2$MpX9KuM}
zAHvuW9<Iy0^lS2q%+S^K5=|n6rN1S|@&Zhb2_ar5H@jR0^NbVx@gYnIq3V?`2c`Up
z;x03^s+T(@gsCCC7Q);RriJiw2>+JJcvaBpA<Pb8=Gd%PM3Vd&Ocvr<w9>K}WHQ6A
z`@M5QczZ$8<-7nnuZJ)%g!v&9ds>+$`i3aNX@R(6IF}g~2u{)bfPZY(q7as`EM-16
zYjFrm1b9o(rGg%*o6B482#tIY!iNGZ58+(_sHXQq*mWWQeR@!PCzCYY6(Ot&VKr@D
zSTZ>)L#UM>AXpQ^+7SMHvoa;@$`8DCGmTnkc%jrMA*`on!^jQe(-1zR>O;6plL+B+
z+Eoal5WWcE%McESa3qAULijp_ooqUUZ$kJsgzcQnL)b_MypguaRwb5SPwU<=_rGgt
zTR7*3K=7TQTLopZ_02TqA?SV8UE_M%#p`K1Lg;xTt@SG@yF=I$!oCpphw$m+lI;23
z5Pk?@`gOZVYLTjRr~|^SehR_LPG|C<80?Si!1c64;@0GwX>>;R;V8W+1WjZ(7Q%6H
zS7A5ulTU;Y6oBpiBEU&OSymQ+O?!(}B~?XnwyulfhM>i6q;b6A5F#ON^~ISGqM|?X
z5DEl{kqW?0vXWCF{7U(Ua9Y&%TL{00@Q1*=Zlo1ebJ^jSYUi?AW+vvi{t^wHd$Tg}
zS%EKvaE@Xbll4ys=SA72W&Ip=-Nv~rby3{X`&7LW!qpJ!htVL6Yn)Lz!G=*jj2j``
z4B=@AMZ&lh!fpDpsD#qEL(2@|t{6B+O-`wWmG6mUulxX$4??*1q~ya8XgQC_7vP)g
zX-qy2;fY8R(}jzM(Jq=;T2O*w0u&G1Q)>x<OA1;_aG0S?Va~Dw{4geq%~c4aY8chR
zwx%kEQAq&e$^ujgW4P#5btbQ+)d-`es11U$hFSu!#X17i7L@v`D?mL#*)%gW45LvP
z9mD7p=5HvPgpm-2BaEhDdpc?<Xfr{XY%U762;;YjSxmMP{MLfD34>;Qr$q+&iD5{B
z=?Wt)vje+Lrc>a7H`Cg3m|^Tr%jYff+lSGiu>QR4^rSG7!{`x)SG3}0sW7^P(K(Ei
zFg${pDk!DRZp77G(sWUIS0SALSIb7bh0(oGZgeysTM0wW4=_W|FnWcN8AetZy~CKz
z8HwPkn}C#Jc|Siec}!Mz7(e6(`h@YNNU|Us?Hfj37(a(`ER6gx`h~G5jKyK}4`V<W
z6T_GkMj(uVVT=mn#V`hiF*uB&VGIk~9{Nle&xY|_80`78H*Ak)bG(Lx@w^Z(?TyLd
zVZ0E=kB>{T$cVyGj11$f(7Qc*<R{ZFMu+iI7-K}icOI9d<BSbsd>9kL7#9YUR0`>P
zlX6+ao*%BKO%7v97;l6zKa8niObg@HFy@5uau|>D1FwWJBaG?ddQjd^&P>54m>mW=
zv#6bm`An9b)|2!#(aP&0&s>4o1hdTx+v_d@Qs!L19!7HipL|o)vrrTvb4eI)h4BT2
z9LCZxmW8o8j5T4r9mYFhd>F=xFqVh$ZW!-}!D?CC|Lb{AG{HWwKOcx*mA~TV-H$}g
ztHM|*GEkoX?+I_M4ddf5)^n;4V;x<rU*HqY5+j`4L3;hFy?$%;QTAtoGc-SaLl`-N
z`8g{W8CcI(VSF9NjxctH@l6;*IP-_GDU5H03jY7gPM6#q#?~;l3HRI*#&-g6YPD~L
z66t!|!}wkl8Pv~KH~nH4og$3=VH^;yw1>7Q%#|A4D>%$X>)l6j-Ap4mNb?BuoS)ny
zbe1Aj4~20!3_2hU<EJpTUv?AFnCW6ig&f%K%sQ2ihjAi|%VAsz<Cic_hVd)CDU4tk
zau`M!W*7=xV@9?n<UpCI0%TrG<0@CD@$|D-hJ9P*hG@ea*Zs6`7?J<;uck%Ah%x`w
zG>cBrFYr-9X=1K^ldq-~(6z6oof1WEB<KGg#vfsv3*(<K{uE98CFtoeoE5sRzmc}&
zM%v$kb4Jj!LSJn9lYW7^SKa5s=(*o>DGcHZl#c*kG|FXi#nrS|9;996<R8XU)?e0t
zoeho2x)sLlF!<-<2Ccn#)tl7s2d=jsrQHeRU-l}D$6?$JV^_bxy)fKsGmn3oNqRqw
zdR@{Vgz=DeCGf#UxsC`w#+sflF7lsnj;fbiFeHaXibU*5yJ!T(1SlRs2?5Cb|1WGw
zkt`KKT1#75Wg{pT!P5weL{UD13K7hX;ME8!MzCUH0<X3aR1&yy1XUua8bLLYY$<5<
z2<k`BKwt=3BZ8U&)DpC|pmhYTD`-7IS#yui+@uX7xN_b3|F#;5Ta6=VQkbV{1kD6)
zE@%ru|6j0`z^w&k@iq}86k<mNi2_T79H#&-LHP}ob`i9XphE;5Bj^=DZ^7>rK`O-}
zaFU?Og1RH<EC5?c5x^5c@IxneGIlBCcNZXC(5?}56QD=G;w;jmFpoC^pTHS~oSp(y
z;^yB7G9wrm!63oOiXdNrY(e`7%BpfA$SuTu1;`VW-(%w4eggN8V1NJtL4*AQyfrw2
zXCfFcIL}7#Tm+*8=B*(S3@gOXM=(@iKHT6fUc*K51wls$Ix+%BO<P|tiX_2k0bUYx
zOax;E7$@leyEh?%i4jZ^9Oj=9!Q?_bC4#9DOcTkMBlu@j6=s-Tc=weEEVo1subC0d
z68xEs9Zb%N;I#;LMzAY_xe>e`!B-J{Ei%lD;H?OjM({>qJ@X@2P>A1*V4=W^1YIoX
z5<&kjMpnK|Bv%Ofb_DMTu>Akbi3#sU@LnN)Uw{uH_)vh}CG7t5`Y3{x5v&r-)e(GJ
zn14+KYYXwm0<07ClL*!e@F3ro?PrB~Hbn4wA^swQFAFgn`bOaI3pw8kuu;%Wf^HUc
z3!efBuvO4)g0hM25xo75ZJ#>?=l{04JAyqC{1L&Q5$qLwUC<vQ*cZWmfsaRULVyE;
z9u)LPK@UanlK_V!I3mDNL5~Uga|DZu+AdE(`ir0hN(3hhaZmtR&~D{Q@va(yR(SUy
zKTIEiDUzWGel6sOBZvqb6*N}Jw<3ra;sOCqMeM*fR?F+R2!0pLCFw3EPe<@q1dj^y
z{~f{2LVQMmvk{!5i3)tDb7dAeAHfBYycofy2rdhJUC=8LT#ewGz|5IPE8S>2=?%dl
zpUGPh+!o1UJ*)H9oe2IF$-9Ey6ZF2I4+MQEsOuYBYrOu8;IZI55%je1^rBG|i(+IH
zqoODtMTsctMo}+{l2Me3qH+{fqL{v>MCmBXal((HOcZ6K7+f-O=7ILSyzQM8q9El}
zF$%3{0&kW6*jb7747Hh6qo^h_)QsY?*I7LZL}C4qvN)miTk)hCQDpYU(_?l$wW6pU
z#fLAsi0eeLprB2)hR)Mh+SHGt0kcJs6-C1+8b#4I%Kt2A97U5ToKeJAB{z+tSrmy;
zNKve;>m(=PRaf&UT8O(X1#Km0YeCxxnjok{P`1TV&opk!4iK>Ot|(^aJITLsrA_-N
zIz*8kMb{`gM$w5f30LY8MN$;MT}<F`*yrRZL$Z_If)aF&BBc;}qDU1uO;FD@Co@n=
zEY&TF?okZOclw2tdPLDGHHmz$NcsfL5VWVDy#(zoC<`(tM@q40N6{yW=c5=JMNSmC
zQS^(Ve-wSA$crMMLh~o?nI_paw|7!Uq~wqeh$2AMm_?XmRaDBrC<aAAFj&xM1btS}
z=L8)hC^KyERUH<^@F-r0;<dcutc~?}9uylDD>_0LN#(Nb?z}6#7{%x)-i%^l6fZ?F
zCW=?1m_v1^6d4=ExG2U)vFSrc{FY-v6ceL(d5vRo6c6V+zFg;6_?}~uz&Pia62;Ug
zrbUtPkK^U}4%br0%Ta`QjI*EwuLv-MiW6W~A%AuhwTAR&hS#E)8^s%JVxfceuN~-m
zT~t0#&@Nr15uZEe)Apjc`l#3Lt&XMh9WlAcq9_(e@kJD0vh`JtB^-VfOGV{t{&p^l
z;%!lUbrkPJu{?@*qxj`L$KgbGgL#gA_Z@7P$@ik5{NIoA(~~yf^<fk%3h_q*tc+rn
z087vJVum$Qtc~JhQ8|12(ff{d0)HatdO<%G^fN)3X9I11qvLatB={<ducO!+#kMHE
ziQ-$zIf~896LC-iXXiUMMscrSfZ)eAZgsO`3;lh8<2yRh4hOG<ZynpC_?|}fr7f-<
zQS6K&xWG{~N!k^~ZVpq}|DGuJMsX~P<5Bz&#l9$hjN%a8cAkUY!E3+Bb|8v_0+3Vj
zc^BzVQ5=cls9+uzltowrZ~a`Dvt|Fli9(#R&M~)AY2H04I6*;WLD@a>wJ3DD>hI|I
zJB%pID3mzVI70mRR}?cW%(M`RB1(^oVR#HN&P7qQkD)^h@hA#7tHjVGhEq}eN{R76
z;~0L6;`b={)sp|B_#=uxqqr8u^(an9@mCc8L~%ZfzoT{-=h-NV+)QSy`<bY{O@MnG
z&I!QxXx|L+Ux?yj)IPEBs-S<rR`C-3E{cvRUY<osdPQKqV!OB{n}-VCh~j1x52(s0
zZbflBihrZHOVxDu-{IV{*!k~nyDjFw$99jp?{k2M+-#JXlsh#ZQE`43GcZZYpt#3T
zJc;5d^T$vshSD(<joCvh9zzKMip9WV8OY(u4<%zr+UO(RDmZ0gC@VM>Vt6_>r(De5
zZdqRB=lNR13>x7n4HZQ_+-P4phAJ_<>Gf8PA+3L)b_~^Gs2)SVyD5mFW(;2>xp*jF
zjTjhIz(Z)6vsMfXS33#n#85YedNI_Gp<xV-Vqm~PgP46NE2Gv~8$&?nXL>%kWMiqV
zt7#0)Vvu6?k9G4HTEvjZBFB<j#<1#uFCm6kn<g>#pj8a5V`vk@^=s)B-pt^hXhv3W
zJESAV^JX(j?DWZy__EI#gDVC`>$Q#Hj3=FM+%}cz+D>p7E!HuHPBHY3!B1(37CkZB
zRQOssIR<wOJj0Dw=NM9Ac=t*o_n$JEN+HD1Mda@uLk|Jc1?@^jTuJFh6)aBYH+`;s
z>hi`wnjxq!h8?#mGubl+XBiLQS@()zOmDCK@;Zhr(RAM!UaDoE_>mn0Pj%zfCkAd_
z&WT}sdsnWYBU?#%G2~PJG4zk&nV21AF@PP|>l+lq;1~ii42*$MIt-cP*vYR}tNP#9
zt5;lHaZ#H0*%+RSVMq+m$MDhO^r10(UoH1OGXjV83~L}=xt;hz3?t|-G5j9G$QVY&
z@OljMVt7$>avZx6!z<bT(d?}NlheIpVi+64!%j&xIwTEhl(e^@G=V*AB+ZOrVhodF
zIM^m>atu>rm=?nnktB!b52Vel_%a*vIA4i@he%Hs^qKwvYGFpqKBsO@H$OvzX2md@
z+81^>Cx+LAC~9!4MGa}Lz?2V<3wR@j`IK`EJ7ZYD%p4u<lhzo+q8L7mVMPp!X(TZ$
zr%q#dD~6^ml9tA>EQSsBJ-a(5y&c2FI-ZmkN$<q)oiiyn%ln{pQk^9k@5Su5^Ss`V
z;p6Xp1P`4_AH?u&JNv^2AJKitk6|4RRaCV)hBZ`lQ~M)6sm+tT+kI;(`GL}3Es{t-
ziD7*VpT_VRjc~A3a#*$R+9%PrH_+GGCGlf7-Jg*NXw_fF@Kp@kWA-ciuPOf+wy<Mt
zH-?S0D|j}?!1E$D(Nogx{Q^9SVN+h}ms$1}gAHBnuy&pxv6V(bd+z8ib~lCedr=!F
zlb1%P?22J`3_rzim>xPaeGkPlx8lJV_R^wa*cZe87!HVA>9sw4Q_pj%E7g*ibBWLU
zBMqaL=a4Y|>YsX^yqR$%hNCfPG`|>rj^S7gzr=7dh6=Bi82)KTzU)5ES%n7B-wyTU
zp}Rpgakr8jgF>CoD8X;TE&nm)nLGAJUQ`;h>EYXLBL<T*d<<3$Az^_L_Ue<4wCym}
zy4%Ohj7*Nk>?qvh4^rYW6wpByq_<sMkstXw#j?FUzs4|Yg`cJLu>HA^KVtYZhRzmJ
zES!$vuNZ1rsA=JEP82abpe4s}HimOCo}J~n6T?3-oaekjfyZ!x7DCrEt6U*xx9^hZ
z=VcnzqZImA$sc?#ocDCT$ADY!b+)o6<yH*0W4IB+O`7HPWJZ=U&xCpYA!qD!Ew~f&
z_7A>)W4If`J<;5K&X$Y(Y?pCaJYn_7CC?+;9%mH`B`rLT;R$DZ3&kuvrCM7`MJ)TY
zd4fZSD{^xRLu-m#sJh0<c$oad6=@7qdMOK~EmXEp#X=biWi6DqP{HCC%944;csa{H
zvYUrp@aWM+?OhcuMy=a3;j`O(?87Uw(z&bRt?AXOQa(F<uu#oHb^Zjmaq$2RhO2Q$
z(!4D`27c7CP}@RF3#}{+s3q00(AYu~3w15jvrykc1Ho@(p`m4;IPr~?#O)ief9GRn
z9@H>;v#+UzW){vglv-G5Zh<E>7HqLCnSc>TD>}Kk<-fIsHWoTq=x8Cqg2RH#LR+fR
z=S{Ti9U_ti3awd9$tjZLFl?qBtF0?BwBz_cRob&`6%T(P#<X;GvQVP2GueXMvVXsl
zIIdMrp5@M1I|e8+=Izo*$zvha!V4BgSV*(b#lrKHe=|?Ig{~I*TFA4|%|dqzehZlv
zdRSnnq|ZWz1+TzNzTZIVX>mDWe+#b{WpXolwa?YtvSUAZ(Ok1E>~eJIV<Csl?e=Ah
zJa6|8<XYfH-8K9QAy3SER-#4aTj*zDu!UzV@GFG<DOC#r3%`j^;S416yl0SQZ}{a7
zVt(q*-XU8>n*5~tvlb34s>sm&=PV4dP%6v+RsX<-M=9YnFNZT!3~HF5!v&>$ctH9{
z3u7#drJ(k>M_G8$vd{V$ZP~xkJiF#4R@KYPDEDy|##{KXhV-(92^J<=m}Y^$^3=;D
zk$I|x$wE!!OcCIZrz!l%0>{Own3H9vTX@C7$a8kkV58yEEDN(KkT`PVc-6uj+Hf3I
z;&{!%TnjrXF$=F-m}g;)g|!ymurS}kyOzCIj;FRRu&|g`WZ_K<3oZK?3j2)r$0>{G
zM;%?Xhqo*&rRq2PmRne6;cW{H5PHYLYZnsvJA0>w#M3i)76;>0@09iM9Fq4$&F@?I
zfFl+7BMU1ntgs;W@pjqf<5GkN(X6ttynpIydP)sD**U?*bMHU4u#RqJ*^8e~go=L~
z=l{~;cY*P#h0g?MgN4rpc$Dtt=4+b47vxO!$L9DM`STT3JkHPSYYRL@pWs^y8!c?I
zu-U>E3*XW8VpaG#JRZ)^uL*3mu#LuJVTbVa?H00*+o#+!#)-$maEBmw`usg5BWqE{
zZu+Bz|0os<d#Nl7r!4$R_pz|w!buB3S`IDQ!chx9a|jj=(aS6x-sa;H?k55Z4EiGW
z)RefHf~LZ`g>4<PaNNQ#77}k)|9Gf$f}Kflz1Uh}j4OSgbI82MDY6BH>v;=N3#tXp
zf?>g=h1B=xRPGkv#qrhL4J9UNDj^GD3T?Oh-8QZ@n|;$xBy*CCS+FcH_^?1s8qCHk
zZrSI@awWFa<E-$t?>7s-(<v-mxA2FBKP~)24T_2GG$#iOXD$52DbB+19d6oQ>~Jzq
zgJEcH&qEcrZS|eAKqkXkFIc!peXXl>)xsqUFYk0;rWdpLr9@7Zw{!i>%<UfhQ~~!r
z@rROwy<y=t<wGr4xJ3_YEfs6&;+Zx)6XstFcP%`y@X*3Nx)Q}gqn(}31t%vlX88NL
z)XVifyIM=lrer*#cMOwgV^28A+)61EN7*=@S|}1n(Kw35QJQ~|T1my@C=o}gxP5TV
z@5hqM4wo1zT$0H~9`2sgRykRAQV%b4mfY+s7Y9GYP%#eT^27p6YUa7H#YcW6ad&F5
zT*|X*9IiOp#!)Sf>Tw{B8gaCagG-K@aeUm{+aQjHany>Vb{usCr*0he1mLdB{+oQv
zGiZ&oe%ziq=0a)|N8>n}#?dT}jZgaXyN$Q_3E;S`HU4?w)jW<CakPwsA4A#M#oH<l
z{)J&q{+GG_Fp(MBh}IM0aKw=q2T!A7XQVhXZ&%^ZpHtlZIotnxc~84I+EW4-6MDqa
zL3GI@y3tYKPH`l~k<4x<*k@(91(Uy|okgA$LCNQjX{x|!ade3zJ&vw%(7?LK@p=Of
zf3~_6<{WZ8h5xyZcXad5ls67v92s%+jH6c^es+%?t}NN7+db*un@VhB|L4kzBU|wM
z#KFOmGiRiqW8C_cZ%S#YZyb4Xtd3(%9Qkqdi{q6zX2j7yjsbB@q4pD!cuq?oj*)RZ
z*DPsZ9E0K*9JjyE_$)aBJR|6#fzpsTo{!rr&*5<ljbj)G-b!NJ=`V{j2*&L6o!jAi
zA&wDoJQ^Sk-<!gNYtlwaqvCimj?r<v6vw1E-gYI8iGwHMjEiG@94tFFZpXM1Od4q~
zl_$_n82m3NKX6H$Iarz;NBQ<iYa1s`jbmn+uDqtj@iP1HG=+G&06Y|8rcl;9aV(Ex
z76;x+n$4epIOcHjkK@fa7RE7`#*^xt7snfMcxriGkMr}~_A${-Hu>hqv4EZb#x^9L
zYfa|l2Kn3<yeN((aXu5n_lGMkj)Ui2Q_ehGWhsq^BZ`CJ!944X(ZUsH`dKFr>)X~M
z>0N5=Y08Ij5Wg44`vQC*=!NPMnJeP>x=GSUBHKzzdz^Qbz+7;0ENkQ7SAo8W<I6aB
zuGGhItfNUcl0J#sAN*Y($ER_87Dw-1p3eoJKk*yrN8{{`bzBS+&~CqqV^<uz*$^cY
z$G3DDb|8-Jar=u%o8s6K$9HjTj^k7(`!hQHc2e)hrM3!#T=G6zHIV3i-}9F=&$&}D
zcf|3yiia07^IJcQ4%iE=J#ie2<42KUFR1|g;@D5UEKaA5J-C;1K)4l!d`R5=McCd?
zaU720NE}Dw_&JVaailJ{&#OGP#MTH;wmeSRc66T*MOc<z!`e=YvOz(alm$pwnxVy^
z$Dy2pdJ0AyCg-<PD0T`V3NVho1;{HvB#tQOq5@PeK#UTO<7yn&;)v52vK*)5_$!VA
zN+XV6spz$df5h?Ri=@hf9lyn)9Z33}HZa67IYBD2GwIJbj+b%xwkQ1^#~DsXWgS=I
zI2*^gI4;Gps+8lOIC!0p;{wg^S^^7xJg4f2+K!8Hl-ZEfV~e-forI0~j?1FX@^u~E
z{!Q4ZR=ys`4K~UtI*yxh+=}A?dlJWOih{Gv?Sy-A9{ywZ_AbR$$H8jv4|I_KAjNTC
zWFRhDEBnPEjz=QHe<Cvvum0<4!ehE;ZO7yqm5UUhXaUL;plpGC?ryOHlq|3h{bt$X
z1w0L}a)|=0tL3OP)bV42qf`MOE;&mVfS90M0m>JkasjFoph5vE7T{Jry8~w%Iw}=F
zYv*9!?qu2>leQ<NRJXfVwE(ly9B21AQGgl+NGd>b0csYYRsoy^a223-0qPW>MFCnC
zpl$)`6`)Z88W$k<NtgNsXi$I>4-?w$PiC@V0a)RXeNNIQ1!!7;W(8<2at=#%u$ATm
z9l6yV52hy0HmjGb<!Dua)&)o`KwGcf$u<R;eJLTK0L-xdX@a8wcdsPyB2yB#sHrcC
zIoMF!0<<eY`vUB$?w}2jKgj9mAcWAd0G$fJ%Gu)XJO_)r3(&a$JqysQ04W7{FHo^d
z0n!WLDL`rg7QF6Y@w5UkKc!0fbS*$P3gLEwuK?W(&_fK$TYzzE64^1<$y*QhB#pk7
zP~(Nfi~=5iXP;V33+Y{e%mQSIvi<_dYZI9>`+rP*2Xs_b7cLU2lu$kpDT)dxGs8p#
zCPM-QF+)NL5Rx$T-lVtCdl#gNRFNXRiKsLY1Ph8-P=8_O-nn;f9}z*6rh>fh9v^SL
zwa(h>JNurp&u-`3Gn0v^c8Y-B$ZCfOeyi>6NTpr%5O^DT3%e)hMUWrC?g;ioP!K_v
z2xdnxCxUPUT_YG7!KetjMbJHh0TB$0phpBfBj_DLp9p$I_?ryLTtb=A-c7~5^wqv%
z#(oj>=Nj94Km5x>Z4j(X@&1tM9TdUf2wsg~SOi0aqJ~n9e|g&Fxq9GQ*myV>8^O&g
z-m%{%v&vrVPB5Bt(cdDN62aIA#zjyV0WC$p9UsBmVy-()h+y6h-<TXPnG+-YwH((L
z_TL_kz`@C!8o`VRX40S$OsC5Y@C}&mWhvgM0i%FHH;XP&(w(&3An#m`7Qvbb-lU}>
zSP;R|2wsn1VFYIj!qn&D2o{NOAf`*dCL(2tpbVLul%!=s^K_Ec5iE~jMFb_c`c_78
zaFBOZ1mjb^I|{so1zuL)E8%@ZNK0YXMzAh|tr2XCV0{D|1b=e`8zb06;jeq%61t^l
za#0K`1{9fZi($72$^jX?+eHZPh+uV}_LT4)As7Q;rvSSm;Os2vk9+q<urGpd7^D&G
zkKjNA$09h+p&~dW47&Y`BJW0UID!vouL#~F^R)j+1n)=ix6zz#NhhSLX@a#o-H3=z
zNIoh=eG;w_PegDsf^!jkD%SE*1RpbAA~+?gY_O-J_e_LeR`+}&dNFXgw6pZ*Yo0Ag
zCgqr)MQ}cXFB#F5y`M+$MFcg|yoo7owms|pDuN62`3NpXKts@cj8hKF(yX}~j0E3B
z@O=b!1Wp8(BKRSKI0Lhc_eUoG2qF<g$;|ZrF9I&-3U>i6cDs*aToxK2poiGq%1IH(
z%!CZ03T|eOi5O(&-%-{zgev$nP2C<|Edo6PBLY*5U@>1+@SYy#W7Km+{ND$hE)l^m
z^meAo2(Cu(tLT0sf@=&_uCbK&y6{rQJ}p>K(tA4HOXly4#A@D|pC!}b|BT>P1ph>E
zKZ4uLS`pl3(s<N>&6w4%cl7=x9QAKb2QRb7n1h+kx_S8%-`pu4MDVY8`Y?hbQJg%U
z-npB1URQ6acLUULQWV9a*b;R=e<>bCi747d(LRcjQIv|JK@|QdN=NZ{6i-J{JBl(<
zl#SwvD5^zKE{gI|G;isx9Cd%9KRJquQS5Kjfd2`iLKFwQ-cP;WN>O(MrN+MN?nTs1
z!c_#VDk!U5FX@v})Qp0=#+8C_^(aVdM8PF6aB4*{zIF=BQ&D`<$Hx^t6UDPp)QjTz
zD4r7&u_Gg;P87wr__(OLQ8(pM|Kztv@(WSakAk7+iNeSB(>f4)qe$wLO3l}<lFVvK
z6fZ^*jG}224WoD|iW6TZbFM~FG^UF9WBY%4nutLHQ8!)Fr59E9rV4y+v~PE9Z(0=T
zQM?jGCMBm@M6Z{lZnkd`#WShix<kF(tTUn@Z5ef~f99sARTST)C(->Vb|{M0QFs4s
z6Gawv+t-^-y986tJ?_0Z+f8xAG+$f6qyRZlbckXqH5o<6C^|(kB#NO?<VMjsie6Fl
zjv_CL{3yCc(JhLCD7r)ujv^9pmBUqY`5cq_XSF+pe8$@|>TWJQqTu$?>Y?kCoSjSP
z6Gh)B21YSRH0u{de`-S*k&-hruqAE8aaaa(_BDaC1-^dGT(Mt`VptSoq8J;+aC+A@
zce+tjT@)juZq(Q%yv)^11x=AWT4)R<y%c6#6ceH-qyvbF$fT$fqhMf8j$(>1_oOIj
z2-=-`<4~ORtIfXYQOt;9c@!(6m>I>aC>BJqFpAkx%%N{j_RbTt=$n0Wg{yF}{FQ!2
z)BGsvb}vV;Nch!~D3(UCIEvRqvp2?hc{t?%4q*F|jgwxF;@naHG9gdjTOOY7Rz|TZ
ziVab0jAC^ZZ$$BC6l<ecBc}T=%$Zoyhk4ftL$k|zG4kQAt`0dY|F6oXC`LE(z9kw^
z^P9yi*VVMQ=`&7qo*uVGu`P=2QM?ny=Zu<{{5z=CJpV~ScSf-*iroT}d02owg6@rC
z-y{Bh0S*XyP|!nyzDw8bTZ|o9-V>Z7g1#^42T}fkr#shCL5~S~T+kDOKHaVLe|<lS
z;*{X9`mq3~1wA9^CxV_8^js953c!}1Q5$0RFT}de3;JagUqx}PAk39sh~k6g0fMi^
zqrMALzGVbOQC&t28Q({7iOwcrxP%{~_>tZv;VB6}Me#qr6i7&t@N*QGqew*Y3-b(P
zAqq8$c+~w*4NF7bXcQ9TD~ebY3PW|gdoZJ2cmkpId3a##v)S-sUM&he3L^?L3Ofpi
zZm`kUH(bOLwti)Uo6;FvG$k#|URR^|HHv#2lWSoh6!Tt>;s!&$miM<P_-3*EVlsXH
z_bC31;#L$lMWFp5=+qq*`H0)xmp44Oqqq~rUCukjJykM?csKZn>9l`GaX*R&QT!uZ
zh<m|*5%F&n4>^T|&mMT>ncl}Fd~w}#zqgksUap#{shEV~5-LfkETM#ik`hWwcw9m$
z$&Iy96}>Oqa1%9plq(~FIGJrGd&^2FCxMB*yaWpNZ5i*-!vQ|6Afck<p4r%iM^h>R
z5~@h3D&YyqeR<*9S*RI4twv)N^VX1XI>-B@gz6Gjr+Q0u36s{8+(4j^Jh?qBp|*sU
zlt;od5}uXNK!RVwa}w%Es4uxY3(pmGCDfDLvptQ)jPyLEmE0rW{yx5TMZG+d@sUTu
ztN*s}iiv!pBj-wy@S=pEgr*W2N_a`|Qw41#p^1cm7`CzK#qOMr1Gee!E`(!poHPmP
z5;7!^PoHTfp}B+~%X^vLC!SAkA@PR+lbH{h{JA3XTS<6DLV<)X5;7%(By^ULC!w{3
zEDj=}y@YJ)xp7jX-rhE1DEeVr%9-gM@}#TV95Gi12^}SOo8Uh!;*Qx#LayX)BEz_Q
z4)FbPHoy~dTONS|UYaalLhM2^1qe&%Dxt50eiFJ#=q{nRggz2_NT7T7l+a5;t&M>}
zgWa8!gVS@UQWi>1$0oDCgaHzUNEj+%poBpZ2GfWalPMSvBoyG-!Axf3A6lgFP|5+>
z>s1L%&RoR^2_q$ZN{5s%idL4eT*3+oV<e1~Fhjyj$rX5<ghB}uB{w$5OYX)rfzp<6
z6*x)4WLih~=hr9Fr%0G8R76py4|O*+v%in~(R9IN`&klZOIRdfv4lDF|5D!hVv1VV
zJaZ+?<MPLOd3xu;l5e#OBrKHNe{mHV;eDsSyX4n|N|&-r!v;&}+uh4iyw@dg<Ykh3
z_~H4`eGihbO2Tdld*~+;-jJ|S!X^o8M7*q(u#U6W^u8&i;#&zNTrVPGgXE?fR{6hs
zsN}aeotSZlgtsMZk+5BO!d9lWOfMZ^o8-RbanmH`4*PL=?>k~l0w#)`5_U06o^dVC
z{IFNTJ_$!99FwqL!U3`H4<#IwaEQVSH~aEH=DQLOOL&hS_>z}qqKaB|bt%tF?~9dw
zK#x71&O%et|G)k=`M40{jD$}loRCmvhL`1}03Qi@O2WsF_@_B?6So1q`mE$0FwRj$
z<GlROTwFK@{G4`?a7)5%3Fnzo=+$&r`iz7N%;6ILM;{Ot|DKN5+j~*MH$qF_GO^6`
ze#eesF98b!;SzNvvJlNjfA~?vNU?`4ewJ`q^or8S*95MJ{6i3tz;_KwwQNl$wINY}
z1DRaDB0-h#n}q8U;zDdPuS(Da)&=DO#*ko2Ag~0r|Dz?mjsOWke|gmSR|(e`HPyVM
zMit4tn9M?BsgHYaNcf$W>g>HK;Sc7M_TIbalm831KWVH7Zrt6GaF@;?qm+z$bQ=i|
zB>YR$JnNp0SpF8P`$xikQMe1#sOG*VKa@~ZMv{!%)xAYzJSMv#HnyLahudN@VrO0|
zE~A8uSyjBxbqO<m*@fD8u2E8H8IQ}TD5H|>CYCZX%FAv9l@--;GWa&Zkf+X*W%uQm
zrGo56D?w%1^+U+0BD-4&mt0kLFU_jScv8j_GFtWWvE&VNHGj6M_ioQ}bcvcWYRT9l
zW2=m(WIQcnu#6!xYI8IhO=YCXc$VYH@XJV%QAb8y89o^eWYm-KybLe-RlJnp1=-C!
z^=0tgic|Ex;ql1sd7gmFAOCG7E`(J!F85XPi!vI@Xd)vZgS#Gs{UzB|Y$H*n%QdDL
zy}iXMxvC~0P36cr-XN*R9Y0-0GZ`IZbd=FtMhh7s8Leex&{$o)nL-IINx5*2%w_Uj
z_=bm>hm_d8atx*{@18`5WEf`2$mU{4d)vrpE2Ew4ZYUI$$BFhbcp;M`yZ_QIqr3a2
z%ni4bj9eMrWOSF^mz2(8x&j$_vb$gB3(6^oyT}O3t_OA%wB@qo<rBR;3G@(cdduh|
zOx#mOF9E0}zG3y1(U0wA43g1bbQ~aKVG(b$zTVbK<#D}y-5NHSSk_&_$nNDlg}$K_
zj}2rjk}*uia2exeOrUHsM#>m1V~lX2QG)W{Q8AIy`YdCG{Nsf4a5M@`Qx?jYC}X;e
z88RjbyG)hA>qpvgvg}?jOc5?kYfh8FLUXY1Od<bl8FT2{vU^Y=pNH_d^joon1u}l_
zR&KtGV?ErH|2^(CwY*daF9a6LcumGC8LMSCKQEE7OvZAVf6nX<KKhl)ugm{8Y0%YI
z$Y|N49HVBXn4PJBv%eu@jf@R4Hp+NY=$0qFbu#$czE)7)IS{Xx`Fop{I6FOR6SX1Z
zZ4oAK30l5eIUa;)P`VJEd7F&wG9JkISH?RscF4Fa<BE)(GIq)MM8;VeyJhT=ag>Xa
zv6q9(cvr?@8T(}%V35i<MBS!(L*FK!>RB%7T=LNB?s@F)@$wAt_hcNA@qutoX67e<
zD)GKB5Ci<)b|1a;L-B|fIWFUbjE}iSapibY#wnp~3i*+UJGSAWkym6K=d_HW8v<u2
zVIN=dLhm^lpUU`2#{Xn|CgXD%U&*+@?qbR3X(<6VZK*)tqij?-&w*ddxJa+w=;Kh|
z$f#e>%X2Ja=UYZfrh6#*j&A`%hD(C}An1>R^6BTt%Kt38n+|gk^~u*a4jYjXmGP^L
zYceDmvJ6{>!;~mPp@Xq>@TxN6GIXJb;|0lQZ+kTA`L^fpy50{CyMq|)RmPjy(Q66c
zpc<*nRo7f+O9;38MaEUJqV&>UraM<-GOo+G#e~e5P4(WOoAqh`JG0_U*FSH{_(R5@
z44K*~Tr9`o|Gp$<_}^hNp+j;;pZBf^z-vR2|CaHO>~0zNg#gFb1hRU%dfQvc^_hn<
zip20_4Ao<JEQX>nl#8K!3`sE*i=jjeC1Y;JVEQc{bI;Q0-zM{<!Q)M-7)r<Rc+AcG
z)LWSt$_mW)<@INi8Tj;DIugZ8j-gTvm1C$7L&cbTbpOv?IV`Wx5py?!YB4u(s>D!L
zfG1+^j>*EEk*>m)HDajAM=|(fs1?IgF+3Z?b1^&}L&_~TW7CMWIaJJjm!S?xsZ5^P
z>cmhlhUa6bD;9F$LNZ6Az%Rt$5gg82KZY(hJ-kcdj3dKExZyU4p<xU!i52-{uBub0
zimkpEWA1wyU7cG1^FQY$Z4yI(Bd7?gNR1&FLoWrr6*P?@ErwrWxEe!x49#LV5W~S3
zn#a&0hM6(Uiebf?<ct_zj)DKO-g+#hWelWuA4_Q!!z(dl#t`D{F-+jRF=TP%7<$K$
z9YdQKZte1SjiGG}?PAD};h+BgRp*P4wvQnvh7O_u+jJJ7qoADx&5eOA`6%yEn@_(h
zQXod?A~@mykKax3y9?Sw(4K;_I|u0#L*E#GcG4ZKpWqLUVMq-9V;Jy=&qo8rfP(~O
zuc4ylNI_qXVOR{qAI-?8BOW#5TG)3KeMYn#Bj{K`#|g^DY*QG+L^0Q-M>GD%pDfyN
zgefsh6?mGU(*>O&=zlF|$1o>`bup}uVSi`e+!*G^upowcG5r2hs<&^D-@soO!=f0L
z#_)O!i)qI_Ij_aAgg#l-A0Cj;a<xN%g<x3>%W3oufz`CH04oJ0hmA>BiRuqa(%y(+
zjlgem%th_iiqSYS+oX31Z-`+dBk_Lf?wI>mHk)GD7DKp8_$@|jj*n$?3~vj(MbNE}
z_-wO1hIeAvK~Jda-zDfyK}U88H>v9XA-UaxE@6(mCx*RZihY8Tvp<IO4gCa%Vt6-(
zuVT0m!{Hd-i=p-||7S5A5yE^J!_k=gha~R{`T;fEIQ9EZzGKV-1O2CCI3vJuK~KbR
zQUE^sD27u4e=O+cE@3iRJ`vS(F{~Y4?5x0t#G_AR_(Xuu`KV6H7cmsc@tqg+OF=Jn
z36t}+kSZDjzZ7yYhHql{HiqwFxEoKu62q@u!VB*BzmMTk3|j^!Mf<0|f27<GG5km?
z-|_z>=>G&|^=APt$G|qMMnv^tmoSHtm;)#J<QQTx>>5^Ci6J34%a0XNV~Er4$BJlz
z!)CewMhxa7j>WVlu=9vhH5@K+&(Frc#&C^!SV46Kzr}Dp25DYWSp_%ffiXPfN)_CU
z;SZthzhn55F%rWaE>J9d={H3-mMwWZhMTwj1os5^OHe){lm0{SPYm~&FvH=t;c&5X
zNe{$m|I*N(HDH6s6ckmkeu2NVf+PihR`-`sP*TDDr%M)7aH+b#xZ?UD`K1)FL@yNS
z9}biM;TtLQ!{Nsjlu;1sU+!SPip*x^6qHx^Yb3spzABQepn`%I`eap900mV9uB4!{
z0OU7Y6sRij6N0izW;OQ8_jl-#e>%@!LqSaiFDhuLpq7HCgd`~no>q|B)#FvLIUFXa
zt>78KA%0eX=M>Ztpzb4nJprEQM2|T21@H*E#oNfI;BWr9N3XmF0{8_z_fGqd!r_C*
z{4XhJq_|O^p`fwi{>@QS1!)SJC<usZs)C>Zd~~c)CDKF5Z5Sz3c)EgSTt!=7a|JB~
zAoIURRBTHHFDq!J;1vZq3OXprq&^k2Q*gP^cV>~VwSp`K*$VVoKKcwx8wG6@oGtXd
zyvld8(AQ|1@AYZETLl%`Q+3mQ119=9D(IvjPeHx{j<Dxt|FxAxaupny;_Iy7!&$x-
zvwQ^#x+v&Il`8mshVRz*MZyZYDp+147@qCxHPiRXLSJrSyB_2$_4QP+uWJWZi8+2B
z1$`C#L2psePeFeL8x(9*FhIdT1q&4{QuxoH(Xg}sm)0pycMT6#Fhs#n1+OZYqVT7c
zF-*a51>+QqXZQPUM<^JjV6?y^6?|XQM`qhHzA*}Z9n^8Gf*#W{_42;gtN2J+CQ#Mk
z@FWF=3MO);OY_+{|C=^7tNX~GEJkSjgm0RH=?dm4n6F@lf|&|tE0{xE)>o%=F1yT9
zaBqEUg1HJF^siX6ns3UX;1}mz4*9=@!;dY^UqEe_@s;WtUaa6X1uMAZ&b}oKjlKS5
zihJ=wuvEe8oNIJz;>KOW%LV^pUU@!UsbH0Y22c4`D|kZyVr^UM8U=4ESgT+i<?k9M
z(>o_;JtI*Ra?1Zyut~vN3Qj8ch|V^@(q;v_>GR9{Z!6fMV5@>{3U;wg*YI|#w`+JO
zEs~$|4%L+!WOWA}Dc}M!=XDJq?HXpwJqq@62`_Zqr{JK1L$qv<^!@Y=0f=90k^ioO
z!}JpcM-{xM;DXWmeXeM8kl=`dQ+7Lo#j|rhQ1Cw*w_(TGo&3iXyz^0;6AF$CKzyxh
znDnpZfl~@TW_}YoIZcODpel$f_=G-8J1Y25!8rw=D)?5xcQnL<E}tnV(k=YCz>}JX
zzfiEF&@;PU`|}FEq!H`2XZebPJ;GlrxcCTv!w9MqVuSA$ENvUAcOvJKg7mhb#oYq`
z?5MyL@e{>X5Me4)@G}#|*2=3AT`p7Y8$Hi-3lm?V$r4>!b_+`kkZx{<k?FUabBV`w
z3&$9(Cvp|K>xMQ28Us^7LcuQzl(oL!!>tVkrh=UhycSn+!0Rxy>!sQXKbZ59SyT3}
z=oY>z8W+|JUJkeZRlzj|d${!_$xpiJviDqS#&v4)Lc1G`P1>tl_@<x)NB>E^rQkNx
zk&4DD?kKpc;8_*Vsko=$FUC=%{u3(xR`8F4mbtB&i0)I3%<U?QsrXmHLrSIMF%{#B
zCo^?io9g?rTezr-r4zCe(|u!R`v?v!_Z3%BLPfHQ3MxvfD5au|in1z7t9V?+=^N$B
z7j4Z%(X6nY-Yr}>A*-B<@+vsmw%j7*-|rUYP?bK*sHmcn>TaM_Ra9016;(u)UD#ml
zayNak+-~V^h@85biYHY!!B$sMQ$@Yo-gCtp)KK{|HC}C5u$JJE`IL&MRn%57K=nUE
zu-ZGdSR3NX-NSWM)K%eC@qA}@2dt;!1r_yGOz(r|c~&oz%I#_Kn@JzMnH20E_NX8|
z)Fs8Iq5<_&KE<yhMa7FMzwsMj_f^${gWIGuRPmCEp~)%abnG6knVix@ML<QiiZ)bT
zOMj}0W-6L<G!;z+=c}zrX#((Rx{4{e<p^2`&dVxVskqp$SO$AtOlzrP!`NaC=J{Vy
zF>szgB--SJgPAH;RY+p5)`F9zVo3Ke3ps67w4)m5`SVn?SCONlql!+VeFxE)vlmni
za7>Q;NuE1(u8Pj$5%Ipfa`~crf#9rbRguiDD!QqtrQs<J-Bt7;j^n8~daCH9VltPY
zqPL1ZD*CGEr(#C;aL(u~Zkp@5hx@yRzz7v1RrfS9P{l9-2B{cKvFSp81zuILuTCz(
zQ1R%;sVURjC$ZWmFJ-ujm5*0A-rGM)#b|maXUR)p86!H5Q!!R_A%}zSxe{RG2`UOz
zOjN;M`?`lY6u~6g`Um&q!zh@lVv&l)T&9Y*s`#f<U==e}%%bW(O`oS?wg7X*(>a2&
z86OQDUYTINc)CDPG8YO!{%b0hsQ90XpQ$<(ud6ts;(Zm%R4iBVj*1;BR&Y5g)~Z;i
z;+1UwDiv?2SfipwTmNdt$i$Qtb5rJ&EXhYKZ!(IvWt5oTc|F}g#by<6tJp{-_s^Qz
zD0vfovTJ(h-_zgXS{A0T{pE=%TU2aSu}yV9?Pc!W+B9WBw{+4&o&4KX+-mPH(j{xB
zid`xWsd!h#ZWVi|d=>lIF~`4Gj7c#{R%=%)oOM9uUj-I9NJY&};UJs3rE^S<a9Hr)
z6HBN)C8g+#>71Q1e4ye(6=zkPQ*l(qF%_p&e9Tzrl673g2^A-4{YvdP(ML=a{*KGK
zWDW48cj(|Qc3S_e(`>UUsh!dKjEYah;A=Yh_q~-jyFvP=Dn3(jLB-c9J{ONRmaO=d
ziZ28{FDM83QUIf!|MbR+tX@>{jf(G7e6NDa`BpsDS0#DRwV~cFF`20NQN>SU)jbyn
zYJJ@1tHKm+XH*&imwZ{p6%`NIKt)7Flr~cFn+i#Vtin`bsfejiRK!(i41^i&AC#$B
zbYU@-ww{~vMq58Qx(Y)~-F%^I-|4xorEC?BieFS*rDa=YB<OWVl4f#~T^jhKqpOf#
z8I`}gwqq}jb6v#^6}RaUOuQ{Kepm5_ia+W6Vq_}+%Xa=-OpI1*_F{KxmG~}`zlwiU
z+*k3J@QS}hdp4j=N!ggLLXl|4aU07$R8b_3GI5lR<FPo3#!)hkQgI~3Q7n$xB}<lw
zyM9ZNC`0i$e(#p9RcU8bZAUwDsM2vfE*ev84wzrIB9~S!j`DF-iKA*9$#GN=BUFxq
zT`I;=DUN#EGdRxU9sLuH4ilFK5O=+oD`JBu;;0tqH&V*ih@;4`@=wN5Jq`}er|hyM
z+y50)ZX9pjNN1tnJ{?ExIEKdYY8=nR@oXH~akPo!xj5>?Q9q77tt;2%jB(t`PC44p
z_e!<4&&T-%fFd`u%DoUrynDD-6W>!?gPu6Nas1sq?2E%62U|7})ha#Q1}TE`qM&@#
zFpihvXe6qQDSRC1aWr}KG!RFsz(GNqKH@j(5pMPfw~V8?z%3qeGUE8J<;!ujqQ)Na
zTMLjWXo!>c2vdNpM^D+MZ5-|5=p0909PQ)ouRwH+<KpWTas=)mD4G8oT!FNcsOHA;
zUzOhp&yS;P9Nnn%IM(JTccI3_U%rGzOXBWv^biAb%#H26J>%#VNAEZ;PxJCAnH;u{
zXxvxOeuDNFbbz1(1sx>lU_pln+PtQheTT&{JdOu({2RxJI7Y^CERN%GjEZA)94q2j
z8ONA7#>O!-j#+Vxi(}{9w8A(h#xXvQ32{`Mn??@H?s;h==A=!EV;W5?@Z>nA#4$CF
z!E@b5If8DOlQun$jy=LN1g*TsKRb>&aeRQ_>v7DDV_qDK;#eHV{5aTUK^*VBo55K)
z9l=6Dw;=c$1)h_3a&FoZ1eXZBRM6F8>Sb|oBLB+F<#A-pPn*9ob5$Ix<JcU>+hPfC
z#IYuhH{<xFa*)DP;I*Rr#yHl+v7W&Qm%ky-yTKqaDW}^c+PozOXLSpsBaTCHyc@^1
zIJU=efDt!8?Hxh)3(D#a&M4MGyep2~kNA7y*!u|Y6M$=BoB!}ZMpln--MMLpx#T#g
zs1M>eA_S&9RO$NyQ~qN8i+v~>yuC8>XdH(r7=kC_I2nf#hZ)C5ah!_dn>fCW<Ks9u
z%XzL#fYXAWiQ^Li_~@(v=i>NOfX@W|T+lBBm8oz9zltL<FYQ7cU&lcq2hMX1L5)3_
zmv)if(j&}f-^KBL9C92n(eV-;Lm2vv9^oID;>xsZ+#`#2|A`SH_&*Cu&gD3+Ji?JU
zq5?~T(#_aFi9=-q;ou1NN05|yAZ5|w&;_6Pi8*POFxkyG{tz0r<8UZBRTszoIceSI
zq}g-Qt_sZRuW?)x__s%#>jK;m^!GSIbJE!CPbRcD?g>A?&FnWnjTX5Z#~m89NBEN-
zVH#_t@XWtNo4*D9N6`C%HWe=SkZD#!vW5y89@E@&a#=x(YDm&hOyCk4N@^%BFdJMN
zlto%fR3Fz+`VoIvdJ6evL{;e#CN3v%c?~y3wW5Yf8mbCrWkH)>YYq+PKd!{aRRrh6
zN2$b5Xs9NtPim;4q0YRD{0>-k!5N;P#0E7fPfvG>r!~~3<T{G#ct*ps8ot%=ordSw
zOT#V=yEW9+P*1~P4MRABh8Hxn((sCg`WieMnrcYX;ML&M&`3jL{se#qzlMesyH7^%
zCT;r{Wb$_bUewSbC-c;2sn4fp^6xaurDwjR!ReBDJ1w(`hJc1t(Z1EZw*R#moKY?)
zI2?p|GF?M6QEjQAxrP=RGI+Wk((c=XA&&M^y#}L?25--AJ?M+hZ2z(bR-6BmmZ>46
zp+G|y4Xrio%gb!5p`C^-4cVei8!_g-`K{Ntccp5tAxA^5hRz!1b<XUdp`(UQZ2WGB
z15$FQLnfC~^3_gNdpEoMS!$k!eCi}Ulaq1;g0P0J8v1JJr=c4U{~CH~=%ryx=S=>o
zHJkO&z$Fu~G3Dv4p^t_tJ@dH`vqwG`(qF>>4Ffd{qQ*W=ZO}9S$06<bEB(~uV+T4C
zP|l$mUe&Nr!y*mCGz`};S;G_!BQ%WEFiyjG4Wqa~q4Tjq{xL$%vX?qia?V0ZT}{wX
zs9{a-W?a`q4f5o+lW3F<u9>zT=*Sssb>{zB#xxCcsSpj*HO$a3OT%mplxn6>>5VCE
zDI~|_qUO*#NkIatiwa>$l`G8Guz-T~Y_R*q6!IH%YP(p&YZ^9c*rZ{JhNT)-YFMT5
z*UK|s*RV{(a(Ypxwro!=(fTXILMR@WPyT8RZ)#Yp;SCB;kqTUW(nh3Q%Q_9~HEhs8
zOVLLE4Z=sPzNKL^ZJ}YShPQ?AG|I4t$sD$Q?`GRHY}fFPh8<#dcA=%{s8q;Kp%w~H
zCg~mxdo`TaaE60u*stLO4IgTFKgV}K!@C*|YdEOkkl@tn8E(=u+^J{yJ*qCp_r74V
z<q@i}y^mmY&oJpx4adZzQyPwII6*ObhCkA9QZT12$Y+}+q9wt99X}S2_H^*Ee4^nC
zrUDITHJsD%DI;z`<!I0FXQIuSp5f00VBgz4!(VD(mkUCkuLNebY_IUwf<qxM3h<5S
z!s_=LE@}8f!=D;{py@TJ8sZv$((peG5<N%5&l)ak?uQpq4bN2dANgOAD;gpKH(g(Z
zpHq<eAOEkTNipV)^+o>s<U$d>*k041Q_mU_f@5f~M0Zor|N7dG24r7ye$jAM!>?jA
zR>{03@NXJ_YN-gPxGvh?cr?QA0^Fq6od~l1Ee6p8{~Zl?8I^R%%|RAkP2bb-mxhN-
zXsi6W&HaCC_(#KiW`^eOFHb(uP_cZ<zZ$;zEQ3|z%rz<5$Ghx<zliSMY_nIAj$%4m
z=*ZAfTzCHpptO$11t=kCNgbsGXfq)6M8AwOI?C$s>1d#%oR0E3p3?EOjvppvChK@Y
zM>QQ4bX3%ld8<Pu9nf+88DC{lt?^5HGOGv<?^mnpNF=#evQO$*8w}Rev8cMQy1+FA
z{o|*CU(OWN(owHh`0k<LjCpyrnf!HlbVRH8p4CzFLh5rm>QMe(;W4Fh>$0Ve;a{|V
zp0rh<O`^rJ+b!%`z87@V*U_z4__zJ(g}uUT;MGy&V0z~P75kL)`E~cQH$}&b0_@V;
z&py(+p^j7?K^-sYXr!aD&Og~`-9*Qcy1r$tQ^&PV4G6rHf?aG~^n=z-bu`nlqgVL!
z$$~T;r0LXBMIQl~&BY^*+)~HOIy&m;q`SXa*Gfl7M{C{vwB;45NC0B}Qjshj**Zop
zE7Ddl+X&1qeELzZa629CbyVtF;jZ7GBZlgrgJu7cE^PB-K}xQUo;rHz=&U18cRw7=
z*D<1~ubYkn9bI(%_FZ{0?^H<%>mco_gC7?Xbl1^CwCweH<)3<m*(ImCzqgJ-ItJ64
zxhZ{g^wn`SoYGIw{(=q=bfBP5d|iZ3hv@h*oHC|=<}e*Y1^?Cm@2R?~*bcvcq>fQK
z4klMQlw4)BjxjoZx`+SW!&n{Tblm<8cYeco9TRl4OQ3xMg*qncP%XqQOwuu#GMfmP
zn4)8<j)4XS8JMPHx(-8!sbhwYnKYA*_jSzDF<Zxa9UFAa(J@!YG9Alx%+oPn$6_6?
z>1gU?&Ya|5pkpD8?hP%{F`!EMGPgoKE`;Xw3oOyGRLAS|_S`_xBEdTS%U}LEboq?u
z*Sx^M&pWKpu~Nq>9jiIiW>4vj9VSiBPV@@*oe_LP#~K}PQg1VY-K%ETKOIu1_}A)a
zUOu!=(A|IJ6K~Y9Nyi=?dv&~}W3!I!I^JO*ln=d4EtL;#5p-X<&{iGakMnO6l;BE1
z=z%A+L&r`XTSf!}hdg^5W$&Uqh5p@wlhY%W{Cx}o$8&&#&`%iby~AutdO6`aq~kE-
zy1@S~19`fqSZ0XK_ZV5d!>w0#{A7pc105go5pAmDsE%VgzR+=A$8jAebez%giH?(0
z@(|CLZ)SX~<0E?SUzw)_t#mKHZT-+`9e>RWzSSqd24{7g)A6Z}T0K3SuEr=&VtjV+
ziO~7)JfG?KTu1G9JS?4_34N*KD;?kHxR)JTGBx`G-M(|^YbvTsAbpyj_PQvnCco+V
zR>yZbN*Bxco~j=0xx`*WE1c{bDEoBix4wa&bo@`pWgS;^++7@Okr#?=$Im)meWqgP
zasCMN3H?e(oX&qRTVg)x9gZ>S>F7GvPfpgHpu&}|OkwFg&(m;}N7JE;iC!)UEn}O!
z(DJLDEgd#fkb&n7I81I#qz1|u_=TRY<8K}R==hbHM91$sZqfveL$CGl{KkB!;|7yw
zIP|9JsZ;2Gy1R$?4;_C}X*%*VLbn(Wl<jWlE~AyXw^$b2d_2%Y(6@K^o_NHklw@c1
z3Yk08@9TJ=BgsH91OMuHNL4ov6*X{sg5MlkP{hEl;X#(i44j?dCt$~>GyQwU`imPV
zVW6ae;*<UD$^{4IhF)wJDrKOwf#5n%pm@ghUZI&&gJlhrGf>??4Fly3Bpb-B7J`B3
z+4Kr*ys<+i0~HO-`YZF}@%}^gLzNAj8XIJppPgOBKve?_fhPog(m*u<$f4Ki6|<5C
z2WlFqW#BmjH%I%QGVrv4CpLMe&B$xH$5Y$DGX|bD+_*?C;+FTi1{$=^4nG&FV_@K}
z^tytQADR+;!9aZjnFc}zJO;c5nivQe@EK@e;3We!Kkq<q@f&#2Ktlsr-2*8cyjOsL
z+E`XPwAS*xYk3+OXl&p{!u?6rQ<)*sR4T+kGXu>HG&PWBVEO4#x`F?74n1`vbLt3B
z<<@Sq^6Rr(7|1a2ig?syOrRx&*_GGIKwehpWdozng$Vw3a!2j-?D*8vXl8b6ieaD=
zRcavHKpO)&209q{^K5!s1MLh9o9I!W%VM=Xo8<+z70dW`k7v-h0Qns`ORLbFb@@;3
z^>pSG2D%&QVIbc?fq}4rt_Her(!zk66FQibQSo?A)^Ps|T?525*SG0rpm0)vpr?Ue
z2KpNqU|{YXe{TbQ4D>bdPjZOU^)s-zUa0OcKRxqI(QIM{c)2kFdtxwYzh|(4AqKuQ
z@Rfm~23|F=)xb82ZD6>8`34pk7-3+ffyoA@7#Kx)42(4}&cGN0lV%4~muJV`^^h{T
z{kqySo=gLElS30Io&jxs_MaO(6AfH>DKw*Zn3RtiZT3uM@~6ugm`zho&SqNP-8eMe
zzzk8HDd@93Jj_wP@7fNU7o20@r)ixBE$uYdz&r!v6CRdV9M3`niwvwb@CKJ@;57p)
z46LN}2M7F9{YwliH6V8lyl&tN%d?D28|P<+VaMfyL%@`>iV93=zi2^_pD+%X7F=WC
zO#}DK1~<}z<$`MkU2k9=Rk79c#jGHi8w9gX)$&ay1veRZ%fMy>ZyT5}(Z8T$h{oMQ
z#V#-R-rzuwn%S&wH}H;u4-9;0V26R7^zBK(gA8ptd^oVzz&-(X8`xvO{>+p7e0$RU
zjH&s-16=Z!v|rYGh(A<1ec7?#kb!qOTF<~?1Me9)B5-_F#_GDE_YI^k4Bq%7lQ<Ce
z95ryvz{dto8#r#@*A<>q%ot<*CumKCPE!A$X7!xy|A+#d$$9-$4j=g*%Q$1;6J{F&
z=M1bDR--n4Ec7b}JAG>4bH>Pm;6vN<8D;JgAo#+-c>~fn!5cqkHO~+A%MV>J@U?+E
z2JRZTXy6+Ih5^&Sw+6nWV-)(M2I%(R8~BlyHE_v*buMS`?(`qT)3wJk{%7D!@9?>+
zq00t-Hn3_^fQxFm#B;?!L?n&9e}#&@=3xVgCN>Z=pok2q8koL2FJ)rz(qw<`$<#QV
zkXjw<*9}w{9c)%4*#C-$0$9{D{lviUbn=cNhsrT<jTY=2NErBSc;FWUSH+{|g??tX
zzs3ZAW1F6VOSb2_2t96&B_{fB8u)`5uWax(qn=SS#s6|w&$Y?^Ta4dMA(pE>+=!bv
z(sR$iU(CZMYMA^>ZT!RBYvOSe_YFKSP}D?{iIyEh{~CDA#E8iO;)g<jA|@yUt9^O}
zCiU_>J;q<m1eagJL~#?h4rh(9J)|YcoZ<ia*H9?|hJTn{#za{YFj2)sITPhg46U18
z(L}O|nq%^Y%=S#L5UOB88=1}W-H8sRF634+L0VZ*wN;oKP*oF8n&`O6^GomW6DCNj
z2|BJp*2LL<^0}+lH1Vv7=S+7Cu4UpW6Hl9{Z9<vlf5rq2M}B_KKy<XfWNx62iMl4d
zCVVF9nRuRqFUqF9UN9j~39{4|UE04IAod7meJQJf3BQS#On2K#F)@8bc0&_Yr}|$M
zxXe(`iPPCvM*4g2@-#Bh*u=}c-Z|l+N72tyO$1Feu=s6GG&PZC;tLb!O{AM>W@3(s
zxzw<U7ACrz=wTv*hA`2Af^i%ZtxRN@$Tsnc>3#{}r-6YG8!Yi;n(j_Y(Aor<EXBXi
zZDXRXi5!}sbAY9ti3uO(wm0!@eqa?s75ju)l{a|G7WzA}yNM4b`Ma9vY~tWTPl1Vx
zld|(n<eU6nR=C5&z{V9FZ;cCdp-6qgEMWoOpBU_BqFbM^vp%c)$()`hdYKr{iA?l1
z(Z|HACWe{lYoectK_&*9=x<^Gy=7JQrJgwhO|)kQ?i1!lR&dHQ@=OP&*&*}|6L0hh
z^8m@}rrrVK;q*fjqfLx4(R#FhBo%%yG|EKDGQqdP0phY13nC+eV@)@EjN^23J*<vw
zmEGjkK%t3=CZ^FkCMKDv)*}#`7W{E#%4EI*h$=nVKiD&svh{Vr_Y(s%OcXT8nq^|s
zDE~|o<jn69Vr0!Wap#+Sf_Wz9o7iPyw}}NN7Mj?|#wHe-SZrdYiB)Vl#s8X#<t8pn
z$X;S%sfpLwt7d4Kpah-vX6IhdB%t%G5H55)IkcK<r*Tb0&g88z@urEj^tZvD8G&}m
z6+>Mf3s#vQTxa6c2Of$|fj5Yje-5osuUKfst<1MfY%#Ib#AXvi%7))&xJ~i1G_Dxh
zW@0-XeubY0D(@c8u-w2qCU%(EW_#X0*@0`^X}VvQJMZN0q0gB3h_g_iCia_npYCDe
z0DZ&6d#0Pd4$<*Wc6iss>KVZ?KX`}_3(V@`V_8Q;n|jmzY{}JqNE6KVA2(5AbDN_k
zjtMaD*UZq3tP|o9pPm$!CHUCHX%n9@@N0(7nBY59_xJP8n)rkfF)KKEm}l3W(1RPH
zb5!XV|EDI1_qWUbTm%B&zlz5~Uz+%ed=vjt`6j+LVVE%K(k8w!afKRV6o`3$WW1R8
zjwYt{m*rjJ8vBHQFmZTxknc6b8O=gW2z$l`{%7K66OHO+U1s!kC}=al^Ld{zt5Fk8
zC-@~M2NQe)B958J`yp2`p$f2kU?48K+~^a~sLygCb|==ETlxf^TjH@y*d}h%VN5tC
z5+<(m5i^?z$zPd`r{z`No_p2A-7UFC`UDuK*G&8-o)RDFoc%j<!hTPUw9p?Spl;I2
zQ~c!o`6x@=V#HnV(z!6m_IFME#k6nYo*1F{ijMI<;eWUnjPkVqJ@i&?;6B~BdqA1%
zA%1A0h=mFkDq48VLQxAPEtInG$x=^}h5UOVdQsECdBrRgxA5E7nI$aT?Gt{YZ<w^S
zh3G&xpvqf#+(H=(Wi2;*GXrn!9{9b`U(UkvKQhTl=^IYAkkvO#SE*#7vV~d}p0WT7
zRXAPEP<0DcEqH!t`-FvR7A}krSnE2R?4NyaN$^Pv%m76XdPqO+>8WAyBX1O&n$6TP
zv~T!n3$-oOv+%ryXDs}6Gn3^x3(r2ne38jnlU+wt>sokmQh*I!uuxxce4Nxm!9O9d
zpgfrqk2v8{HoMU)kisq&-n6jRLPHBLSr}|#h=oQL8e8bV^;&3RAz-1Ug_kX)TJAek
zQwwPpf)*;($z~bSEs$=ZnS~6?J*79daM8)UE@!r|uya!yU+$#)sjM>LzjP|Am4#O<
zw6W0E!s!|QOsZ>AFv~*7LTd}nH@azIp6%fgXvZs|Y(8xrs{ebJb`}_w?JfA`1g|c2
zBa|S=Ld?u0=wu<+LN5!wEp)b!XQ8WwZnQ7=sllGG<!%iG1s1vp4l!pT^Nq>=?sSPs
zfgTpTOFhafxyj=^Jq2!Ay#hIXDCYvt01JHYCg^LSpN0MwrmpssKxcBesDT!LjT5z-
zwBvDQ=YVX|p%z}XFxkQsD#XHY3*#(|w@|)i>Ie%XEsPR)<Jk%{I``JmVj*117y-so
z&L$bGQkfGh9NF%fNU!+JQz+ES9ek4I9;aEP&6!gzOrvrvyk=p#g&7v+T9{{HriBli
zbev;>PBlwlR%cU1XFCv(*}PVebiNpKp@jt&c&kGW?KN<Ye~|^gD-kTQu++k83vXE1
zQ!e#&`n-h|7P6=KmsvRad^Vk`Z$HmU3#%+V*yG~Li?W%biPs3@PCDn|OVhAPK_2|p
zSy<2LvvAhJ1`8YMA@nE<n-~R_dqm%EVY3LCq&1#x7T&h7MO3$1sPl42ui3uvU^WAa
z!OjqV$HETFJ&MQ21W9Su-4v4M=6Z#p_gdIzVL$s8`q|}xg@YE}qY0J<4_Qbmo<-)n
z0?g<eCi5`$yevp?M1c22%T5DQ$T@1^n1xf+rx=<00$U!pa6*{!q=k<x@Knjh<j)-!
z<Q{#RE8XE~GBo=PSH017m0Fphb4(O-{O2uvY2j0gzjhn?%)*l$Qd+Lg_}s$YmqTB$
zao?~qAm=M43Z@_nl7+7sQx<-*@IN8aH-i3P;adyeS@@pj8xpw0)h!I}zn{uG0eTt_
z=Rb;Ol;^*N{A?j%d#=#Xg8%<k7ZFuTE;EQm``I^Ufz_`jxmd9<VV{RUv!J^p;1?T)
z1(WNw(btA$!M5;%jrukmHekNBQIX9oT(wZd#$z^qwQ!9Y$->`Evy7%)o;wx>ypTn3
z-NFqEzgu`>vFE0RKg82DpXTxr%byl*StvccfcW;KM|VYEcE2Y8&tN<`|HA~uD?tnQ
z1>iditN#l8kW<XezCX%;a(=L=jU?Mm3*~J7xkRU8HcHvxl~kV*!Q!?Xp(SjTw9)QR
z_P@K+sn4_t!O}J!w_Tab*eGk`Xy5QReZ#->4HxSdE^mWJ@q(v1C)=ppsUi;{l?ZG+
zX`{Lg*r;NIFN3T9%;a^-j!uD1DWR%1p0LsX+qTtgta>%TvSvnh4I4FWJZGbhjar;*
zVeo0&ebIi(hP^9mZT%1_tF>($JeKo}jb{ZQ?zi7_CpW}5g1R;c#w-Zdv(eDZd|psq
zGkR=zZDiYMW5Z{ofsLSzrqlq}IMclaYG@-x;1>lg+c`x3OEwzWXl%Q;zC8a21ZW~C
z^8-1lHp<k`ie!h<Z1>%SC6i*?XlA3ije7mUEd?cLVIxCmujFr`jDF#lZM3q%%d1yx
zjO!O((l6Y#UpR0+H)Nx=jVv4Q^EhXFXc5wF{laZ2m5t6e@@#x?JgdEpj_f$rKf7Wm
zM{qg_x^A$ilZ`)}P%hPLW>(wTZpoPn+wWxM+vr9~iiL;^Y;>^^w$atby$PO^{lee%
z3lpr^mfhV(4|ab)tEY|LHWK~9-PU`0(N)%X2zYj7^65vb+1O!Yr;PzN2HKcxV~UMI
zHU`@mV`HrCo)U-H7-8e`ct7z_8?OrH(NX?k0t{!%aqgp$qRl89hiZgI+wKKgss7<9
za|(EiK2AL1jnH@-6KoXP?$tWWMC!kPm}kgIg0p8qHkngxOrww4SY~6ojb0_Q=G$0c
zV}^~HHfGtFZDXDdI{zFSykRIlBYUombxEQBaK*Q>dB4YdB&Pa>w9AvB*K91}>gM<t
z3rhDUCVz>IrMCMj!Sd_y;Bp%)Y`kS-vyGMXWE*Qatc}$+YD^8HR?-?9Z_uE_{k**_
z9F#MmXW&h)eQ5z#dZl=1y^Rfg+CR*fK3*|xv@yJYc$1(6KL@klrbY5XGk(t6W@C%M
zTW!o0k4V!W4{f*cj_u~vqh;J?yKL;X@wJVMHul)qYvUuEU*N|+8~a_S!Ur}EFlwl9
z5wpC~nVla{!hxSg1>d!C*ajzkkIr@|n@c7>Vna<05;WbOU3`N7Lk2!w%kdl&^f*m$
zE5txJ!K4@NxOJW9q~MpX)%jx^r)_*@<8zzo&U41bIUAqa_{7Fp%42${dFuS(_`s73
z(s{<XKh9r%z2^%$-f;iR>)U)Kz<EKxw81StYj!qYU@y=U2Ic%b-2aV@Z*7=1UYe2d
z9WBBDq^QhhHh!Sz*tlY&#0dY7bSfK>b)JU#fuC$t8s#V8M+QIJ?%O3n#KtpgJtx9}
z7!|^agyCcx+)TeeoApAiAno{UIKT!kriS8lu+kyJhUU7Hr^Vr1T^NNgU(9U0m#}O%
z{n~;$Hg;`jvvf)Y(yL7VbPors9bB{Vn~f$80uHX*xM8E1gW`_+*7iGfWxL>}jXxNP
zHg4JYi+y_scuRlV#$5`)tLd@+J4~&wW)JL>eUCY<AW(m@%Ve{wJF@<vpEEX-LJycc
zFNPj-@UQFh=r}F-&$X=n6N5z@@OTzpoxvTgsN?QyNe&8n2M9_yDCwY{gXbNTa!}gA
zlMbpoc-%o52NfMua!}SmIS0v(d&)gJ$KRxEkhHwxrXvDo-3ktP5j4J!r?SIen5Va3
z@`EgTcohd#9sG1ZYxej6t9*su{;>7TD%sT>T&bT$P{Tn@2hTWo)<G=?PdTXV;B@a$
z$<ZFBpj3bRr>P}>`*-ICC#8j6Q?qIv%0Avb@SKA>j(d|<*TMYBfj`56o#XwizTlv~
z1D}Hi4qDIl^Q_BjVUGi^gN^;eEc9@{gA@lZIcVg#N9$w#!!J5ef6HwsXsfXS;-dd#
z@{XvngI14a+$<Z~63a|=5OnY=HQ?}bL!>$Ua1GrZq&sNlpsj;;4w^e?;b81XxizbY
zGaT0gTRQG8d9i=^?~#6jmpP!|ydo$$nGQmaaBBxyk8rjCZK#<SLu}UGL5_ot4mwe6
zZ>UJ=tPWJ*OCetDd@(ne>!7oPu!HY&19=WMe3)0@xO-^6z^t-m7r`NuyI5Dp-B9>8
z#~AG4;Nh4+UkCjh^mNe6L2tpi)+s<fOCM2vPR{J_;MnBs!48JdTOOniaB!o4c%Xwp
z0uWQxY|wp*f2adW_(XEfoo|A}9gJ`=jqc%Kq=QlPJqLvj?v@UXW?Xa%jB_xCx*8cA
zE9kz_dBo#s*4zMZ7fHFbO{6<HnBrg(-RWLv<4iwa8yANI|NfM_WK-HyS|m3>FvG!2
z2a9M{2eTZ^b}*0QP^)wNa~#YiXMBJsZGK9{_jlrs-2w|7{5&DJkiEwHdEnXCEx_t)
z^u};tiG!t%n}v8m%?tL|DS79>a_V`xXPKb9iK^Ytzk(jy&%aX8k9!2(aInTf!oe>N
z-gL0m!8r$?I#}mmy@LY|4$>&}M#tSKcR1jy!6pZ9JJ{mjEm0+BGb1Y;AlT|)n}g?&
zwViI39O40thq1InNwdZT-f^&GVt|0->~yfp!EOhq3O#!q>=T3Ur8P(US;*Wk9$g(0
z7|W069K7q`xPuc84m)^{W_8@VwQB7`N9Y(1K6LOtIqgE_D&-_LdQOiDw0M}wQ{qt(
zar}UWjW=BgopkV#gEJ03;d;}uPC4j5%m4b5p^q8Abk2ehKc1k!P39-m#WTtb2%n`<
z{>r2?7wsAN%)#dlfA1PU(JdXEclhFrZybEd@@B^1DS-=2n-lzBF=1wg+BYuX2Txy%
zM=8hhwcVa?9bBS52L*_~quX=FU^X!+nLjZ9%+KcMw*RAX9mE_cR7kC?%XBb?74<wS
zctvn{$9}I{K%(v5@%(!ue{-*ZEaHoIL8^ne1IvNUbn%);b6_|y9q4q$ybw9{X9r*C
z9@sQ4ICxCZ>=9VjIOI@2E8Kf~-q{jdWz|8I1ga)*&B1RDN+eJ+f$NMH2Y);G$HDIo
zZi*T2Fna{r{o(K+hg*#LX>K-)=Y}e+$hghuzL?2C;M+|*Z|E*ljW={p(7!}hKhWQE
z-@yY1k0nqvfq%KPl*$@<s8f*y9tvFUqbzdh227Gk2^349c*1o*a!B`H3iV44@ey&0
zet}X6B#Wn|6L>rU+MRx0CV{dEluMxQfN=SQ`=L3R#GyF_yvnPPK*a<qiC&cx?oAQP
z8#6pexF3?T{JS9gi3F-8;7!1nz>^77PvE%(>LgHu!;T5mOrRF=)F8hz@Kgf)fRbme
zXA*cifvib>mf94%T7cl$g!{D$maJ-lx(Pg%A9$Ya6Yi&V^%BS!5az98Qt43r1Uv~4
zu<$nQShpO41_}5RNKc?y0=xPJQW9vAKp=q^6KI$~%lRF+sFxCGl;D<~*_Z+k3ot|S
z4yVP+?4}bvsR^V}$WfkP0!`V)%p`N;Ob=gmc~8rCvE~W1NT78B&+qhnyvdW1z{?4=
zN`Sa!0(a|%+>dnYhh9k_Gl5XT{mKNdO&%W_xKrrKIvaAS=$oBDn*`b>aAa73g)elZ
z(j-q#0v!^Va217D(J_He2~_z7RewQl0-Y1?5#mY$c?skv@I?aW6DUZaO9D$1cs+q|
z0$mdrk-*3Vx+Ty(fqn_}rzsOqmV0_7&^v+eHnr)Qa9>U-Ngw*{*ld1e#$B7BZvvlI
zC{HjTfq@AOP2kl81|={!fg#lDU=I~ls#ky!L_^T8c%eNk0dss{V~@b_1U?wyCw_5~
zpVd(bj80%m0#g$h!+Ga<CMIxpihpbZ;}ZDkMAmq&F#(>_yh}TB_CkSKo!cZdiEYOE
zd9<FK0HcG~n9~xNp1`~W<|i;CfjPy>&q`o6?RzIQGl9sR5CL7K={W!5asD|8+!-C1
zD=4pJ79_ARf!7k?Ibo6T>ct7X{a6N%dHm$}>(_%k4Dits(SR33%jnMu>_}i|0xJ?&
znZT9=cpbWm4wJz81U4k_M#9ayZziyo8oLu(lK{6xf}3|j>%=mz=KC+clSk&p1U4nG
znT~WS=Pl7|bi>et5&p&VgM~-3$$UEjV`P9}YXaNow<kQ?6L^Q(*x>0tAk29QIP$Ip
zb|-K&fny2mNnmdR@6mG-*q6Y5q4~oJ97y0`0vvqjaQ~qMSZK0$6R0=SJtMIYaQwPY
zhTmtGg!_$}ZNpu$KcxSR@&7Q|#i?sO#}hcgRU~jOf&W9(bwE2+JpBhKioyfohlr>M
zQY33ae}p1EygaJZprRnXgGdul=^g1E1f};XAP9&e(t8&KQSjZKo15H(qJF=-|Ic&o
z*)uzL%k1pT?C$K`WPdgeP`0yiC>!6?vhh!lBfcVQYZ4&04^#GX1bNN$g9PZoCd{oh
zFPnbK#?fpq?r7hjz?rJ8zG$EEv&`lzl72iJC!{2w&&J7YoXW--NzB$EfuBbQPLrzx
zGv<#DFg;6!UGF<5(<Yz#2vhzqu$^p7_#$wLf<!yB!FMGaS0$$3EFW)RuhH^s&cy<e
zlfE0-xS5S#$<J&&%Eset+@>yMBRd;PHtuA5u_(W1;~piA2E1KHwSj>ePeM<3%=jZ4
z59HfFC2jkLXWY*QQ!?!@s^owGsqOmC3o56c;=z)vo(+Rmw_}Dyo0B*AUEu<RP3q3l
zhK0uk33GHY*-Jbd3E8ZZjRxo1u+2Mz18z1RW+R3I$!w%(g`R|}56bX}=@Z~HcU`V0
zoZM{WQSh9Ce`xk;EfudjR!>uqlW?Cv4#k_+Vtu?(uu3ikj}A5?=4l1F6+9!~lK5v8
zZwO5brI&o<1++Y`Ag|)lj7_=7gmPPQ<x`NZAin}ORY119Z(typKj#Yy3MwchG3<`N
zOwE*=OwIy<A_`touuH*i1w|FSte}p9x@<)84A&b9N-20n!K(@`J`;IO!E1Lydxi#z
z%PcXkOQ3{IODY&RBa6t=3d$(nk)*nUvI^c*5KvHFK{*B2z7GinZz<qSw@+rdKMaiy
z`W5efnIRA-_Jqg(*08J<;(A>{K}B+@Lq;V9l@(Nxthn-PzN!k=w9cp|(+rt<C;FY?
zpoF=`@ofzSH5Js7qu@<(Z3S;jn1kwGGK~x*vYvwa3Pvj!qo9F;h6=hW=%yf~ppk+I
zNm7uhAgrLdf)=vzECo#!4C)eTte}a+aOZZ~D#&Fz@1syNuUI>4Tl05l{1voT&_)5n
z7+NWq+9g86Rqi7%cBL)ZxIHWihuTSCM$Ygmt01#~RSlE)cNM&+;C%%h6m(MXk%Dn0
z!XGI3P(erb9u4s(V%>A$=Ozc&bcu{V=iR?|RuC%?>cV;KlaE<GyxHuopofA_6bx3-
zQ$a5U{S^%0&_)M(E9gs7m-=qJm(hnZHZX9wOQfH~5P7XjWS|1Zp?%DeDu{N8e04R%
zX}U5GOgV8w6b$8zm(3idU>Mo;X>hoLPZivHF~mzE-kyw5Fj4^zL4>(%ok+Cve-iji
z!RHFT;D|Q)2Cw$fXI^e;mYORxmIG9<K*2%<;}uL$FipX91zTFQ<pF;pSyZ^$Bn6Wd
zQ1D2=6f#r6Z@n`Zki&<bkn|%pXDFDhV2*+><tSz<n8m@q5#n(8T>U$fVK#Fqja?(W
zWEnp=Jdb@14$qfq?yiwV3KlC^r|?@m?@Dxug5?UnQt&fR0ScB$pi5e4|Bp3SJkxfC
zg4L3kl?uLA@Qs4cj)s0K8G3EBZxuVum&wQO*?NtFwF)*3_fF#UlQ7+&V55Q^l+5pZ
zn-pwTuvNh}nGL=W-on;uh3Ji8x}9&Q1>f!(`Qw^zb@LEqY^NL!y)=)GwE333Q>j%H
zQn6RTJ_Ua&xUb+l1^X3TS8zkY0R`VHIHuqi1qT%zB8R(1jw(1TyKCPyazybWVSbQl
zv&U_Iq_lU9{3O#sT_c3Ij0pV9S?C(!`f^;s2?b{qoK<jA!N<W6W$cs!x&r<OpO*SN
zWU=p@g7XS4Q!2KEFHna2hqn#MxJVVtA0kZW*d^MxegSI16$Mvm0Tg6E6FTu+=)+?z
zFLjNK9$E7y<-A?SZwl@x_>}_Fga2ZTXGaHa%alOcXIXRr-c_*S)4)CI?3lpsw65!F
zQeyv5ptKKBM4$US@Ib*|3LdgMc0s%Xn`)v!RiKe$`+cSYokRGmVd4H61_wAaOqg5x
zCd0#gYf<uP_d5969q_%k)8|m06}SqL3KBGBU45a>zEsx;0aD1zYaI5`larDJGnU}7
zf+q@pq6AN?s8J#Gw}KohV-I})DEL?LFqdZ)N>jbNFg`2yWX`A%%Bdokis}1(go(_p
z;u#e$sMs?n{H%&RD)Oqxr-B#g&#8D`#f?**x13pSMC+{arK?z-r)_?j5?GTjvw(z)
z6$uya7GWba_)t+;MFSNLRlKO8h>A)oDyw)&MNt)Rs3@i4WfkNe_YAM9D5m1@LEkG9
zLnKc$uc;`m;_kxm>k?T)MeQBFSHAV}ZAsO;qajdQMHv--6#*4xRXj>%mQ&$VdHxN(
zsUrQuj5fo3Ld9DuCS`<YoNw;y7D)~A4vFD!edSgB@=itt)$^maUmMOfGI+0es3O_2
z+DD*@imEE!W~VCBy7)3w)aw=rlF5Su)l|?xQB$gu;VQm)HB?gta);7~WDu^!e)rX>
zezJKT6<_VmEO{w3rCX#WBYfC`3Le0p8SSgDqF=Yj@{MgmDjKQipyC4+nJU66TB~TI
zB1=VM?(kKt>K5T#H&M}CrIXXwl#R6aHIpf$ZU_@O<=ISbINwn{MQ*8jTiI4J<x0_(
z#1{!gRJ3Pn&xP8lSkXIBXNZqch3~2;I5zNFgV1{_-dDlvV20z;g592#|3eiWRrFBN
zQ$;7$yEyBrqMM43R9w6p>MT<NT~r+C7CGN7!eCS$*1B_k7i94e<gXj*rJ}cr0V=i^
z54D@_>!YGChpd7>y~6B+Zjp7H+U!{3>#t%;{SbkHvgF4q2B`==Dfo$;6xQX`{M{`w
zl*3W+nvUW+hO79LWi&L>Fhb?;7UDM*cT|j0@fkUwVvCB;ReYghmWtUbMynX3Vj8Da
z#aI>NR7_^4DxNF}k5@5K#iqlp2~UuizdrO$QZZ*#Yg#0xQ&u#e%BIr1eFz_(@-E$K
zI77vkDrTxE`AP8U*>xCd!mIGiea(22K8I{nu|~yOl|PS(`6`yGSf*kD^{ZtDTU$i2
z|D)wXnLZioTg);8d`hj*5~?1Tm{y+aX}OA(D!!)4Z4~;7^F@99x7yv6Vd@<Ve?yU=
zuE~nM4>zmc$2*<f%29_-@^xfOXWs@2zv>0ct(RIu4DXvZsh;PGaD|ax?EO|1+f?or
z@DtgtVu$SgfQp?ecB$B>V)>--ZWZ6EVAw4y@@bk8;<JaVfQtQUOJ15VEim5qotO1O
zxp-60*xm1GXH*;_lNZ%FESoLXJwn*yp3EMRY31&bqbhz@aZbf~700NFDo(06MQ#tw
z_&#6oxFnbgbwUEaE)D-%wAIw=txl^rqat`IbHs?iSx&*DP>Vi6I*Tq)CRJQhab3kF
znwkl|%T!Vo<&O9Wm+2e4s-nUNp>V4V25nyGk#R%CO_uDFp&#>QK4|!>id!mfQwDk#
zV3vn^o_%=Rp1WACyDEOCc55iC;hu^=RQ#jjUzPvoi2LM^inxjgD*jSoa|naO*(wwj
zrV4&CpmO#*W@svO3f17iwoyU4wzQRP3|4HK*|2bU-1`|8tt%sHWchhLS{K+Gj>&e)
z>}Wai`^+_)eF+sw6)8^HsGv)88p(*Ig&)$^ky`3$)fSIc^#3p;t6z}*%n{u156T!`
zwZ-2m+IEi+NYju*!!sJ5)x7;iP7S#<Jf(T3U`8478<U~kBTs9{t)bAI@Go0@A7y0H
z2a-p_a~kq%yqWbquOY97roV^MHFPK%n(??{J`Eo{YRG5XN?-QdA-*c0;RRWEU!Qyh
zHE$!$r;r3@b&tHLp@@bm8mek|NkdT$r8Sh%@G=P-mQh^8>l%u&x`tOJX84KFYZ4gL
zI)m_M^SoI15*psnaCTsTRZ7aYKl?IENle?F&4@3n;Y|${HE{n^PJ>T_Uqe7<h34&!
z-qNt|18;Z4r`_KLnU>d3K|X|8fco{nx0N(hmK7PfO3eE1kqiwrG}P2Eu~ev<hM)!_
z`Bc|%u6yLK?vYv=-quiGLjw)9HT3!>v#v}D)X|WqN92tjkvcsh^)$S9KlE?jRt+`u
z{3%3H=Y2O_tRMD>WNHX&*rH*phAa(@HH_0RUPBWyU&BWlI%{aAp*dUNRBC9Ud47PF
z8d_;Mb|Lc}$rEB)YiOgPJ*k}-Y^$N2hF?xKW`RUnu-2vKZJ!TCG%)?VN90{uk;TZ;
z4xCdBoO)Ub-t>K_p`+$SpAv3*xnU>H+NNA|S<p++MMGB&A8Qz-p__*88hUH!qoD^!
z#35^5;77bf8qc$R{`4;Uczg1?FSD=a?XUW47@(n_270~t6#YC%-`YS8{D6f{1}@fI
z!9US3Si|QmuVILWp&CYN7^PvDhT)p$93H`eKMsAWc^@~??h!Vp1nHn=kBqmO*2z0-
ze8z$IEKtvCSMP@cqcx1tyxZ8bp9jYe2$XLc8mnRFq#!X9IH4LAXjrIWl7=S(15-3i
z)i7DZkMCyCYVjs|8YN^{fX_?`OxG|&0(|wQ263zsU(M1mTO#LZn5$tPsU00;tm%AN
zfMQ1JVz4etF4C}A!zvA{H7wDvRKp4lD>W?BQ2c!3uQ<!seaj`hzDI-(hsMiWzW#dX
zeZ}`RsTvo2<3>BC-%unjH{^7z(Y$ZI7}vd#;yN_2R>L|<CgDxFnBAaZ?64q#MHFw%
zTWfgRwVCbg&CFM{z%~urHQdl}Q^O82MDvc}*EH<Xuv^1v4QDib%ciI`8otwDeipbn
z)wh?7ty+f?%XGhn1DtLRM>Kq|;jaO$4^gy?%!3kUmN&?U$@%KxE(^1metazSqlSY$
zB0rIa6~1JP(62orM>YIRi7g)CbBwYo;p6{dPDtRSOiyX}y=*HM<BjuK4HqdzeFEpm
zy@kH>8sa@77i3Cc@fqJG4VO77N5fY%T$MBz?HM_7Fq}Rn$WdJ9klTBn)xpmPf2BBS
zc+A<?a9hJ~8Vn9r!{}QL?`Zf_!+qMTV}ZNuolAg*KR8FeFuk2D@Z!EU<=3}-!0~F(
zG^D*9;zVa_P^dnAz3;8&E$~9KR2ri0zRLcl)$e8M<T<~q>KU;#L}`aLBsJI?tR-#U
z=^1gT``Ze|G$hvgxZ)ENr%v^ZBq+l@BWrp_RuvAVG(6P2UD=>c8CR=^9!Z$l9d8!;
zTf;vZ(skt5@h|DoJu>p>$f0{qk6b#Q(veg5;!H}dZr$^8=xH6fb??6T8QpW3+?v&<
zZLLtLF}`PYZ2iJ_re|bG=Vs68cwYCUi%sQ~4e|t(PxpK~#1zo+f{r3OUeZxe$Cc;9
z&{0@NAqjIeCx&$yghn^-i#nE!tVuB|s(Y7iujqKCi|=I}#dPmz*5JO6;p<QG24B^&
ze3-WvePdzs*L9T8@kGbpI!fwzL&sztQ*@NlQCdf99c^@!(NR`MJstIRys4v{j><Z!
z=<w;@7asu~<#h-hZ|UCcj9*954jF;cZRd`v!)yiJ`wCM1)K^i*;YT6Q|IfnHeAmxs
zG7hJzjtm`~#J6=+)A8ryhCv<GbqpvKUeZ2;2CasUS~_?yQ&ab><-cvbaQ)@Oy_=fa
zI#Tat@TsGtuI_!R!_Zk~8|Y}LqlwOc#X`MlzK|@IsiTpOXwOKF^zh<V;qZTTvn0@1
z2kY)15^ScUxsFykjLsRM8NL=e&J6XvqhrwL!I^7n5^kw`vFqE0`!3FJL&MlsM>`$;
zNid0|4Cv^pqnnO*b-c%^)X_;to`J#lb$mcB4Gnf68Qog*!!)i4A4<$iy&`o}4bN^0
z(^dPCj?OyTcFJHtOBar4U`FEw9=^No#fbLO(OUvNboA8Gp>syZDk0)I@IE^Fk^j9S
zyddbSgDF3<pxQ?A)ETJbV;vK99O|4gNXI8SKG*Suj=?&H==fB}2pvOpd|yAr!owuM
z8+pRRDF(}ZUl$A0FFlgt_gT$Rl;KxH%<@~&&p6DnK{|>@>lmYBoR0B2k~uQ?p<mls
zzOfXKmzxs!rD&+g#mq*%A`^5k*p&cVo}`2O|C5`2Q*}(EROt9Y$8;StbbO;@m5wiU
z%+#?!$3hPCQD~NqIl6b<Fk5CDTy9O|T#Aj3`MT%(VyDwKgteg=3>R6XV=={B$5#}*
z?1rqxX9>l)PG~6^IMlaH!o3Q3UmmT{!2sj0Ir}=8-M*=1<@B~gUo5~+_Ezgyqhq^{
z9qd}iIvtxywvP3>7fQPGh0sO{B-M~oHzb&&Z;+Sro2YbsGd`H@n^!Zml{{~kvA<Dh
z8(BKU$A=+^J82no93V!=Kf8Rpb?nu#Psg`p;9r@0WZJP;gz$H|7cMxUUvR$;US}`_
zZdk7fvj?fskuayS<IeCQ9gHthhXivD3LMe#qYj0Ib^N5`C|}V&==hn&N5^T3v5sGK
z9M^G*WrldQPUxsKDtJ;#`2R4BJ0-wF$5|ccC?o?jE=sYfQ73d>$FBo3F6d}BFmQZo
zP|urriF$gtS;;&hR(Uuld{xJ79ludRbX?bQL&r@Ww<LwX>fU_;x6uDPO8DRPz60$)
zICw|LU8=l}`#So57WiGqJsp3LY;H>X1_x$`-n<ujI6ByKsqcY~zi7coaP`p6alw<b
zd@py&*t@AYqqP}9r_qMw4jVd59j^@z=oFq_5gr3As$`xz2`VfVpR=YT#>VT1;yVAy
zG}F<sx>tnuf$8ev1?cfh(iG6Dj}Gv(^-u>lSC6O~qrHH-*}d~UreT-Cbxi+ZF>0KF
z{sz(v<S<azKs^IF4dgOV%0OuYPZ@aHKtThA4CFTOjDg>KMe-RqOeHlip>F7T19=QQ
zXJBok%;DR8Z+2;R@NvGMDu?pQx0|juOgE6<@Gfx*$ht2W_`6qxjl4K0$P@+&8z^RA
zXr2%~4=)-hYVhA%8Wu6|@vEViWctd@hJ?R=HT1Fp&RT&dZC)|(s)5%G6gRvDuGgS2
z)7K4@Fi=urxE&?t4a3{35a2@xNEriV4OB2t(ZHLA$JMtC_zjekFta`b!tes-Z@1zn
z9t{HqxQx>K!OzJFl$Y6R(NHA=l?~KlYioQ(dq=9U7Xv{9RY`pBNQO)+^o|gwgj6?B
z)9|7zYZ%}s&wO~a<Xns?Ux?M;mW|YwX&nP|p3fw*zJUfL$v}I<`{uEsfffedF%UA)
zNMbS#G?hTuK$d~V98|U!eA2}5EJOWsjR`N!X!Yxdp=Jh}8{R5OfzRq42@MSrXers)
z%0O!aZ6wSuRofZdl6iVjeo(M$?GQ0!^}7b%Gtkoj&yok~XTEQsqk&F_7h2!Jzy}6C
zBr8S)xnn%vvo#OG9~tOupsRsyhId@;B2)Sp3G=3pX?Ka~VPIbQLd^1+|J75yNVb7K
z<kF}BKY}0)eGM;Ahi5~k0}Ko_u++dZ3WI?`2F6pg`1=nA1{?U)zzD;;bQ?lJ?U*rK
z!b1&j6FZFX@Bm*CeoNj-jWqDNfiDb<GVqz<efC)2Ux=TY^8Sv`Xai#mjFoklZpiiW
zu)sJ<W}kq6aaxU00qXul1Cu0Xj)BRP+W~<Y2EH^f#lY16YN2F-X$Gdt#@YU*Pcul>
zOi9%&1Ip4gHcOIbOU(Yy3(X}fSl7S;!@I;^Y~a}PhN~v$TWDaB;rYXJq#E*0jjxu-
z0tYUKdi@?+Zs02e`wbj0u)@Gf18W8ZcNzHFz&8dq7}#iFNrB)hS!JzESF?-+c$3K1
z_^dOqUUtXm0%kWE*lb{%f$g%`7LIXQkiUiActyjl5<?*Gvj4BUgP8wXV@JCUd~4wP
z%elzvJqGp~*hful8~BcfWyMn*FT?(M5y=hS_tXN)fPtF^4$+JlIAP$VfgcPUF>utt
z&ytfr8sOdNPX_2SWbh%G&nOzs#W4fFP+|>`jikAE?+7`(=0QVVeV#IKns&y(B?D(z
z(ZG2F7i4Sf`kVm<@La81nb9(gJ)ke>NUscTO)nd`VtDa^*A0BPAd~c8HE@lM3<*$u
zxHBI)*bA^(JRsv&1GhMX22`2|1HT#g!@!>g0|If^z&-M<c>bz~nvv|^rEE;;9U+Bm
zkZfev_YLf6nei9t`P27+6+3wJXG^NM<z`l+NEomTL^<yU*dvjqoCOj<I8d?xCCa8U
z8gOVFJ`QkcroLyi4#X+dEko-!<zhC;HVt%1plbpT4LqWuh#?fiV*^iUD59ts#oq@0
zF<_gBnfRA;WTL-`0VZ;o$Y~;IqPmG(CY~};*2J48KB$pa`m%W1L~aw$n0VI2t0rDE
zk;lYyCJLE=iRVq^HIZ&2zlnS%YP4&_->*(w6Tcr1tmz#oV4_`x;0q=SnmE)uGVrpP
z`$#ya0}sk)5h!fpMH59$ylkR~$-k-$Ox&IJk_rBR_O;%Tbv6BLr<jRXOb{TR)jt^3
zq-CXMELq&dTc<^7k~BuVZlZ*Vk|y3TQOZR7mW>__%j{9jKgkwG@5rh%;pMtuu`;so
zm%+4h?DS%Qn5rgxCIp)@(c)Uo@+K;n@SAu%|1CZN6TdDK1d41H6-`t&QRY&eN+z70
zX?N=RCtVcGRxz=Eqj+U*kga9N_N&RXvPiFCqNa&=O}uBKmWj7bG&a%1#0#@TZ4-4(
z)H88$uc$*#woCi-UZB2-1|~91%wH=Snh2SAsYY5Ovh>w-HqPfr$OAr`Cs-gXi)ER3
zG|tO5HPOt(v~i-HiRLDcB%-B>RveUxcT8wIM8-1l@7w8x{|UD?(Z)nuNk-M#;;a+k
z!$$a!u!xCIFNWK8MSBwq=6J~WO>{8vk%`Wf2NNI49y`hE9Zhsy<&`n~LDr29Nh93F
zM7J%XD^r%AD+qTt(Sriku2pXnY5VwZ)aXSS>l0bBSG>PK5ZGO|Q6Ce1$qmIP7I-7=
zXJYr6z{J^Npox!7>@=~<#2^!&n3!#1j)}o0hM3s1Ud%Ev)Wk58|C5d{ObjReCO)IQ
z9TX!>j5IMy($hb!Hfg(2u^EAf=LOS6zXw=mw23h$CYqRJVyuaACMKBpX`Xm?op3VJ
z2#h!J+iby-hA9Y4HZjG-bQ3d7OeMqFb=j;kE5%ni%IBUh_^=FXeQ9DQwPwBtGtJ!I
zjA?kHxHDhO<?NVPV`435kW4o5m5INa_!mmXE;6y$M8iPAvE`aAF|pLdauQaq8J}eo
z&fY=J{xgrl|HBNNBvzPMDXV{NVwD8g)Hkvz0;~VSaO~?Oa*K(rCf1wSVDiU8#YPiP
zmrdVnqIPZnCR&3%-fTXq>u0v~F0swT4o>1yvEAfdPk>M34PryvTn8&w+il`o6PHX}
z<}8@l%j`^XmXk70?4w4QIAG#C6Ko{wP%ft5n>c9VNAi|-K(={A(sNkCKgg6_voAg+
ztND+b_}Rn>6DLg^Gx3Xw<C4|yxnkX=@b-_&=bSCbc><?61UG!z#2Ff>bt3ymF>Rv9
za84Nud~AzzCeE9<Ac?tXqR}Eb#&LpFU6C|on@~(#HF3?vbrUyC{BGi&iJMe^6Sqv<
zrpm7tR4#Rv=v~|Yn~6InCRg*{rD`k^tz&|3*%9eqQ?l6~CjK;W-^2qc&uup5Yh5IZ
zg8k~Cw7+N#*8hL+tfG=#ON3@ZH&H&AM%bWg%n$^kCQSL(k`%tNTRdJT*dt##CgPMX
z3$rXFOt_po3w10cO{7c|w(z2bhpZ(lrdxPSyGp&Yki+t9#ox62^3^{wWrL(Gqj4_w
zo6|xr3wbO&XW=Oel&;(sp0V(>gqdBv<Q=x~$_M42wa{R_;6vo|@@?M#%1}7-Nx03E
zFyH2voffe0f`x(-CL3X)kcGN?MDBS(Hb`OHKSdO=@REfx7Rp*EYT;!IB`nXj7qjq+
zg`O7zuQN;Fws_6L=nH{gPKg0eL~#org<IvFB$$5nry#PVg@y~n8x~4gC~e{P96=j?
z?sEQ*R*Esp`M1Tek|JQCyoGY4=cMpi5VHNZEGk--U&3P^isO2q?O)*v7Ajh(Vxg*q
z^wpx0g~}G}KWH{Z%PMI{KTcyhwW&YDLeN5W3)MKZvgyV8L`ZoJ3pFj&vhcQr1ye<p
zc)0ZaK;=G>`rp+kc}V<xLU38BYoVTnPb>_!P@i12(1QeU2o^#X+FEF5p^=453xAFi
ztvHDp{;-867Me;p%ff~OqA}Z_BlxPBh2|D6)kr(DS*%Nm78VG!wD67vX8CM9BkFAv
zxo-wqTljjLXhWWl6-68PC*Kx_CW?rK4=j9Wp}mE7Exa*Ryl3Hk3mqg(b8+sLAd*j>
zKSf6ioh)>*(ADzncFr~VKC;kRmfT`_Wwv(9>P9-}c`bLh7%Cr*PZSe#HyL$0(91$^
zcClXcx6sD|7lOVP`dPpZv4vXsI83RCOcyjq11L)tK9-V0<RA<8t_3JUl>^ld$HWlM
z#m{2Ag$WjhS{P<wxP?zGd_f7ZFv0>?kWm&tMHeI4NT}7&1%jB*EPO6s5zmL1F`Rme
z+!FEq4lz#34{bG9v}S!Ge9H|0c}oSKXkn6t$rh%tHCxP(DS@dR-GA_O3D69F`5&fR
zJ^ySAb1a;-aL&S93-c`Ou&~p@d`_I@sr+gS3oZPyUM#iv3+EoN$iiaFTi|G>mQdNJ
zi&<Iz<(!>~;wuX)C=wg;kq;|5j~2d}BEGReE$G}QLim}>fmIg9#R3##rfV#$r2xo|
zHd)v#f%TLe3mZxKI5EQ)WIADw*kWO;e7jxZw^^Qn+Iu~CyosO8uTt5wQM)Ycws6?O
z4;H?)Ks)@MoXS0xw{G&;%f51D?UPvooaOx%4p{i!!a-T`kW7gm`$-xf0!J+TXyLov
z;uLFHIBMa9g_9P3ws6eCu9|7bE&L*x;F~0h%@^cG&6v2|Ig2LocD-~C{QM$Ob*(rp
z8(}+VBtV+aTev`L7RA$1T%>AHU@XKeT()q<!fzJtSh#B88V!XMiR%__Soqb#%I!kg
zD{e|;{ym<MFni1553~jj?i14&iBJ1P6stD1@~(yZ79Lpmox;hvqpGrzs%ey^d3_?e
zrg(x>cc1vnLbe6nf?<KurC89&lO5i!KqX!Y5GX!busi|NLX^hjkg%lU6PYo^dzD?y
z?^uXa$bS}3I6LD+f|lPx%7QBecyph~-X>WOrR98NVdQ*oH?>U-Ken)cuIS&?Pt4yI
z{-LISFa9N0`$Td?G5u^HEsD<?`RD#6az;I5E}0VOv_|BP;+ZH)M)5`z&qk3aiu5S*
zN8#HcE>`n1eNMv9%QUY{^U0LVDG<dAQP4uZ6h*<Pw_|@XiW)NofkHBiC<;f>`PXo+
zaUQZr6l=GNTNeT+PYc#6D(k)+MKK8w^GX!2O8B+^FvX*IUBV^)!`$r?DaB%AJdrLJ
zMd>KYL{V10CGyQEx||ftj(hw6f3^x=6oQmQ!M#l&3U#jVN4;%ohsol%)uOz_aPcLk
zQWTY=_`t@8HmXEXHHs}!Y>gr#ifU{#imp)vqo^KbY$Td-m{HV>qCpf5qo@_d+hm2E
zaqwdP+ELVrqJ9+b&K7l}{9Vd`7?f6hs;DPnW+}IP_4@sE!XXkC^%m|%QDjCjt%g4w
zMHYLRD*A2|%<{Rbdt+%5^{mA4!A+Y-(SnUf@m>_~MA0&e)={(}@<yFjQEwm4)^6+(
z%(ji9T@;Zh+Oz9%f_9j%@(l9!y(E=wT3LQthWDfRFp7@seVph(4oH9+LGn69!4Z8V
zG2OXud?)MATY=7O?N%VsC(<p7?oo`6VhnqkE_y^UQUX1r=oLlpDEdS(D2h*_=o>}9
zC<a6^FzW5Mxz_ZLqEYoU?)Q4o_DUpInYzWY2JH8Y%-|@7L@_Li;qukcsAqik^bT^%
z$4%g;QH+S<*Q@zId$&Bdf<(SEN90}UnfFnYb4v15Ps=`!V)Y{NMHDMO%o?{-jE!Pk
z6ze&nePVnR6QWoU#lk2iMlmUh*-^}iVsaEys4r2>pg3_}W{PQ^_=yLOxAUjWa7X%O
z6f-#&QFIvHgyxZi@%etaccx(ZxlzoMG%vlL|8|LV7M@R%-Yw5EEU+kw#Zjz`;_E1u
zM6ooA<xzY^8fJ_CEndr_^yG&h-uEohkb(tP$X7H<%zi^r-<GyIiZxO1yu6CluZetp
zBWt5r7xm86OCpW3$B0sWBNc9o7PrL)IZ_UGV-%YtyjiACwh0QuwkWnok=w>IHg-g@
zGm86BJcwdf6uYB15yi<UzKvo}6vre7_C~QUiXWml62*5>>}OL^9E#!q`A{a^<A5CX
z^n;@5^I6RPZ^+F=!NY8%cd(5c{*jXy#p8^$pQAXnAs=~lR8A`kb63wSr}CF5C=bUa
zp6&RzH#-%@=_sy8aU+T|QJjt95^a}>b5Wd+;({#Cz9=odN~Lp-E=n>=)b>*zE=O@C
zimOyuNzyg>s!B<Zykc9$P08EaL{gTh#S6qOi6N_h(!)&eMDcqR_ayRe6y}w{+kGP}
z_D2+RSBpPs1p0W{1tC9AwSPsCO|7)V(>4@Z6{*yZqR^tyqlk0LqA=J<6gK7Xgt&23
zSe!L!$5z(x@7*lQOJpnxhkEpfXsUS@;P*?yje5($$D2fox^_||DZ`<RhnGFe|1b*H
zV%^8GyLQ9Up3n<K-5DqN{3C&XY3}U*$K<e)^FKJ3ji)5s`*MJVKkrbU#8U^Kweh-*
z5;pSKc+ST2HuBo2TdLVBHuBj>xACHlA~y2dC}5+YjY71RC9@W0`d_d;)h64S@`3H?
zY+>7DKGlTJpGQQmM(Hovc-clVS-7a}?JcRiN3I13uom@;eZ6YqHMV~~@NRW~aoKx=
zaiXM+H*CCPqos{fHcH#5W#erdWo(qS@s<t0jpDw7Z`vql!)IeeJwF$5&SRtbLfD>)
zweIU>xd8~+s9>X_jq(!D4Z!(w%_`ZbEVDIj40=C{C9BwAT|QN9WJtK0OoKA5{@>dg
zHU@0>iqZeTTD5J|v5{#bOv-K4lOqkuw7!i7HX2IKP*Z4F$Rcu#N7_b`6=VVpV3v)>
zvV1ce)wktpLLSO0EKFNRF1?m5n%ih$gR>Uz*@}3kt!%Wm(cZ?pwzoL8k!i$6TbqA^
zjKzb}h^#X~@VI(vSX$p;+IzA9k?-4hdRN+}qoTuqn99xl9c^^7aoxrZ8z0%|Y-14{
zvC+jwR~yr9{tJlcW}~}}J~sN=-d47UjovoCycX!mdATTh$#nS)L71L89;N%)=x<|~
zjp5{&je#~ku`$?2&BbEy>9mi@cH28~=crnc>lBephmb8N!b92hL-C+#R*A*l+VLqT
zmosH!l8up+gk561jR_JMCDYGj`nioSB)|frB``*&V{MH456|KAh(Y1(*Ed4ubNVLR
zm}+C1jVV$X?o9PeF&{dt{Ifg-xxY=!;4p2>wB^3t##|foY|OSXhpdQ+PuGdXmDBoH
z3eLB&zy=R83vKTZ^lXDx|7@wl9saa8(jWX4USeaZjdeEG+gL^|yDXO5_{#RYYGeY(
ze)&(a!p2G)U)%V`#u_<0t8CA~xLT$JI{hr&dY47%Yr(Z_s*>kI++bs)jRQ8mx3S5_
zW*ggVY^Pu>6kBX;l>j%NgAUPe<M}jp*w|^~TTUWpc8AzyV>c~Bkz8C)w|tT|p>Kri
z1$U>czSqV+8-%~Jach^@FJW$L3A3q#HV)Z1ZsP<;ZQ}<U$82wJbHv7vHjdi(nId{f
za7+1<4I&A%W$Gz0d@gKm$HKqZ-d?4O2%fZYinCAg*ey=mIAi0yjSDu;+Gx|zf6n&&
zZv;pT%M&j5P_(MpWMyCPh;+%uWr|aU^ed8pt2V0IBJqAJ7P}@ZvhYnCzf$sJ$Q{Ei
z8@Htb=7`}p8+UBbnUJ(`*T(NQ;*^JR;+~B^Z0I%&QfTA8jcl5F4kYgFVIJ7{iwx`?
zG`{o1i5jii(4_uSVUOPkpIqxH`zbek|7w2IM%0E)Qx?mxs0;fAZD5SXS=vd5dTj@|
z_Obk;gh<HVNq{Q>?qE|ke-90hY&^E{FDaiRp4fQlY~UYBHYxv`Z)bY`5PC3(Cy*BN
zeBA`d;hZt#ih1)wnS3e+p0I`uOM51UXJe=kL&X^K#PD1UFUL?UhUa76DdvTkx2MV*
zL%tZ&W8P{)HP0Vos91mp<N~s_8f(O$PzLv11!E`_13y>Wb}vvkh8JVrgqr1R4VvuD
zRFN27k{H58V>lqC>y;Q@jiGc5Wny?OhT<{2S;t>8<~ga3%nUMpJ%$o8OD7exZ^S@P
zX(=}Dcq1aREUU!uRt)|a%EjP|VRprWA_nJLn667I#XqOSE>{HW`vWo0nVEPkooRUq
z6Tl8pDTc~1)QF*G3{_&NDhCye;pYp1j2NoLpe_=BS4ulR+w*=rxFxESX6d)51lEe-
z?HKCGDx{}&40U3tE3-}OX8qeBgUIV&dKK&cSEhjk+S6khLngTzNB%g%F=WNC$iZR<
zjbmsMLo^0EhNdwzi(yy{!((V3^A^pvF|>=JMGVXNza=pW5?aO3I)*kea5<xms<lb*
za);w(f#-hnI1q`UV+@^QXdlD7F}%l#uJ8X)j^h0oI>hin45>U>UtjSGH@+L_)Yebn
z*sipXV(1)0?-=^T&_$N-7DM+Ky2db}h<7tmHCT{o5BaL6O!t;d?<HH?pok7fMc)|u
z#qdcCgXP=)F>J5p9~i>`nPuId0$Cr&Fo^A+6epVdS>;mS$Po5Y-#=8AVM(@mYeT+=
zx&5EUFoI$k!@(Fv#xN>|6)~)&NW}1Y46``(F?<oj=oqHNFg1oTF^natF-(lnZGyiy
z<{KZwQ@(WGVR0kPTPN<EBbUXb7$(QSd#fp%1h>%KU4Q<dHeXGPVMdHzCQPRc^o{V^
zi&ZAKZuC^Y$jlfjjS+l!nKg%XId?HErcQOvnis=@nCH6T)X$H3jvc*u)<Ovo=ILxn
z40LNOkKwBrmd3D5%EO2OnOrYEvji*hxR;rhHF=Wwn(f4}Qx;ei!)ht~+oTe$iD9kO
zP3m2t>S+|PbuznNrW<6sF@{YN*eug6GTkcEogcJfm8UIi=j`Oq+96f!<Hcf^<T+gm
zyJMbX;ai#Rk?GzT_DSG7ney#^2^^4VnQ{dW#kl0*P7HTr_#uWPF<gn^Y79Td@KX$@
zVmKYcQL0r8$71*;h6lgqpLa)W9h%1H#td;h1_H#Kh=ExGC#jg4Abci<voTzt{Ks&P
zGq^YxOP*(&6>A-?oz*7gl_BO*47-M=U8Vqh-h|b!1^vWdi{U!$Jg0_oK3C+NCT_%V
zlbo-UPWV?^l9#hC{_Wv^`>z1294X%9VTp97h5vU>biarm!#$dm7XClT{21;_I9sMf
zK9Im)GA&iZuSh_R;mlZ}{a5Cdei0+)9hUi+G4Dpkl35<EV=O}zcF@K_JcdLJWgWcf
zz>OhEi|Sz7<!~y7hcwg<@;G?J%U@b@2TwV;DS}U8n72&)L-CeCujPUp`+s9db3h=6
z<Gs!4@OOa%SNy>i{UR*zw1ZDqirn%QvscgMf5zcg6=9aFv%-_x=NzOv$nW5J2YK1!
zIFZl6&e>weu(Z{4Med!Vfa6^=5&weY?Q;eM3UW;;=wLIqD02lI6n1E$QN+Qk4qkI$
zw#<6T!OISc$>9`r@b;)Cr#FcS$HglSzP}O}nVo+(_pTE}aR;wE*vgHKgA%05!5a=r
zkvS8@f$DyiC%|XbmB5VZezs7?0r8!tiCS+}E9b!Hpn-#i4upfZ98_>n(Se_2j1d6`
zpA1SXHPqV=muG=%qF=wrqKkn_4k|n7H(k_rP{l!22SEqb9b`DT6HKFhsOEU*?wod*
z>d%9A4F@$zzr$Y}tG(-f?aFN$F|Fl*)`P&FWSE8PIH>D*(_PO&eF^X?gmXQvUxXcn
z95j+7z2hL$LD<2LX`-2f6TgTo2gWhcgsXsqnKk{yPuM7$N_bi`e~~MKnC7x%3kR(?
z3RdAPv~*CddRi-ozc)w^WNmMmaL~g+PuWX565yb{gLfUg=b(#&t`6RJ(80ln4mvtm
z5=^7*C0jml@b@>~+R=&9HC=q<ptEeD>=UtgK>1FJw`ZRFi?>X4bI@JB+86ZrX>JsC
zo`_x)IR~?)!1Qs@*TE<UpOLo?`a2lxV2G?Tz`;NVAIpAsmPj8&(JGPti31*o*%S$2
zQ%r|C7)C*L@XaPMTvp@?MM_vkJ1j;x7%7oO6E*28BW<5M_`<<N2a_m!?b1d&80%o1
z9MKpD{BLen951U7nBag-5n1i3x9&{l^f{Q};7i%vR7$CX=??OBEKf@K{CixKyd7Yb
zA#MFL9n7K(+z*hjimN<^5S}APJ(oJ=V7`L|9PAQrYQ_#I&wa~6`S#NSS)!hQiG!sM
zvK=T6mN{7N;GBc=4!&}*!ohJ)E?ME=YqG_`F4E&*6~{GOY;mw!wzJ;B1_x^#td-ey
zGR=AMsUZ`+9=T)O=wQHlvB^Q9tpy2C_BNBAaUQ^Swo*YBh;0tGQ}C#&i3}nOxAmWR
zrxE?|yB+Lv@STHisZEmvZ<_Wv*vol*tKeoe&^K=u$F<+VQ3pTEF&?1)N`Ux-5;#Pg
zAb}rbdPJr_%Je6hGO&S#k2&7q@fWJnMR8=hAWY&{tQRL8oN_=?&&bI-?ck?=-o0D6
zXtTBbBF9=bI?M6S^u}_*!9@pm9WSVWF%_2_Tyt>U!DR<mWSL8C8nNP42V;H>bgG`k
z`<ELIZaKJ3%SmZ@Gx)1a39#62RFL(8?7Aa?(^~{joh0dZ2lpKO;owgP_hqw0W{wv>
zRq^5?9ys`mjM^Y7bSi(VU*z;9p*qkUJa+KJflhU%^`J4Q4Rl~Rh|9@}I>490b`X=<
z`i=aKgZ0xzZbMA?^DQ<@_;J4omp1N}lPu$aUTYGWl013nVEhCxd*{3u@yA=#_rIyI
zaXcOOuK)g_@N5(RI!Ke*9C757K(08>R8O}bi?3UFH-ow3-fb79g<U)&;b-H>BTGIP
z2X7DaO8EIWSorffqV-IXFOK7_{Dcd{@j@Ki<Jb{L!8i)V(LIhHaUhPuany;UZX7Sh
zQ6!EEanI|ej}<S)@k$)8vgJ6KeK`)TzMnhrVsUR<Zhk3Vi=%iP<>K(g@p>F3B))7M
zCF6KQ!lh+eDvnEyygmHum76hrb7xu^iN9Rm|7INP8l>~_x2eNR2O;r+IQZ(VIQ((&
zEWj#<Qyx9#$(Cvb2~>=uQXG}zs1iqFj;I+&)i^RFku~C|7Dq6S>ar;k%odDLI%|z;
zQ-@9Q={m9rYt@S5ZCRag?Ksvf7cCBpdU4c`<J~yg^1dK0z5Q`y#$j$34dVz&fbhYE
zA{<8+r{JDw7f0hbn#9o}j(6gopP^|S&179q>gYZlCz{Lb@RqGw#?gw6%WP{|xJ?|f
zh2npAYP?Dtzt1}<bGONsBXP8kgBRR9Hu84+y*S>dJZu&n;^@pV&JiEP@nIYtC9)Ga
znG!GV@@||zietnXQTlJs6m*HBYaHF;-XiteI&Vdz7!&RpN3S?m#IZ7t-f{GaV<zc|
zqi-DjIF`fWvpD+4y>OII;@-|-fP|SHD1nb<I!F$L$iZ<8k?_zshR5+~9K&RRLj5Cr
zJ0gyHr*jh+$@cH%BQQ$7{U7{!9ACsSI*u`MOp9ZB9Ao9YjE`f21jfa^i+&oAiE@mS
z<Cqf1Bndwy(*Jj#PGG9UFgvtus~K_#RJSiB;CmqQSf2LHj$;l*dW={u2Q@eDom&^g
zF)xn!anD=A>q0)%uZ3|eies@Xzys{kIF`hDWDAJ?5msU7#j-d~{T}d{;w#x;g&N+$
z>gzbZiDRS0tdi+k4oa?)t0`j=^T%(Z^_2jT>*821F|4>D4r^|ZN2-p;#HKhlb6Ssy
zEixsrHI8i(rk|PFopJ1<3MYUBc2myd_$!X=xOdpx6UX5=exTUg4eyO(UmV}Xu|JLj
z5<@|HvtSlqeILicIBvAA!)+L|ha?#Uj>Pd}9OvV>5XVn(9Hn-PW)p6SpW`@2G2=8{
z2rz8p7mhvdg@PQ9;{@yKfuh&zoTL`?k2L(K)eC3Cq~x?L@Lrj$vvHi0aQFTZ7Wj6o
zxJZK#$IUo?rKZPmC64QHoGy{I@LO+=N*@zfX>;z0Ycef3(L3ech<nZxn)h1-;`lR;
z`;zA0;`lv|dvV-}<F1rI`Yzb}nEsIiX9M)k{lShzkjH9kpQrl|XmT5RwrEj*Z-r9g
zP~&(U#}gVi%GD+ji^HKMk+4C1=e%&@dPi)DVS%Uw82!leCU=i<ifA0kI8tQVO)pa7
zhdsiTv~6nN=;-MH@5JYf$#_V;sOf(sQ*k%^H!T~LccOSEfq&yjOW>&lo=#v#&9oc|
zFgzn?!izbi>EJFsSHg4b5N_K4soV)~SFq%_@Uc~5+1vhS6UdXma|t}3KzaiC6UduD
zt&O70T#+vU{+Q_W`(n`b0J8-Wo^OZu%LNm7A>nOw8AHYNcwIlqD4f8H34{`8lt2-7
zoq$N-tptiDK#TE80<TKoWm&Npo4OYmy~dlD*Agh5@U9PvC-8a#B@!r^z?F^p-bmm;
z{|IA8BauejgdeC@uoTDGFT$wQG6|GT;LU{Rj`JmuvtD|+1n6pGBfNKbGqXJ7{rm|8
z639rPS_0)0pbxMTX&56aBv3JdMO*8T8^wO};w364P({9?_k#thCcyibPi_Qghl2^!
zNq7dcdIB{PsG0DLGlLf1mO!lp7*<5gt1(eK0lIu?b?YWjFM;|AG)SPKEXD#X`9J&2
zC=SkMW&+^^S|-pcfvf}?CqVa0i-hN8B>_zmXqv$6Qt7-LWZh;7G$&6&=|`)iv1=B1
zhg=PKyO-7pv`OHj1n78Ywk>&^K>LJeF4`sj{}$lg1l~({i|+>se7QUA{RBG5!Ip07
z=QfzNO1Esqw;v|Zkz^#m%lc0;vKpKg++BB0cy_zM6Y<U2KsQbwg(Qi*N%TmdXTq};
z3tjX|pmzdl0$Kun66l-2h6FYy&@X}h3Cu}gZUO@m7?{AY1coQPb@}52KB0{L9v&pK
zRHb4w#nt|i!IaDd2n<c|&yhV$?i;~R6Bv=e<OJxPA1TTEJb^C~7$xD)WJ;Pxm9I5A
zfmHv<IC6fR7?VKVJ0f4ptg)2U0TJTIOFUmqNMPcB@FWSmH6Su2fvMzM0@Gzjvl5s=
z3_bRB{9h)(y8vGN%_JrD{3IhhATnDP<CPP$^AeaZS^7-^3nWl`u2`Bt@w<VAlr#w}
zmgy3iHV9=sn&A2CmT}?|_$q-F32eHO|7%*~K($Ziij@g;9uRSFg^47FO1DZjyE=h2
zoRKGDt<0{IDQ9qf0)u|>M0ZmHn-e&mzzI1!TWAdu*eQ!`rJBqZ+Y;E$;m;NgmU@SR
zT{Qj)98Tbegtt-oHi7RF*q^|j1oleIm>Xj08nI8p`)`Q@G$XS5#xFe!Ijde4ZzT>U
za7cDHazKRTSK0vv*BwdV$Aoty|5E~G65?lB>!?iW?mI@2XqQH#@r$h3|90SH0;dwV
zk-*IaPE+G37zytt^emNkiMYUG37kuKkrL+<IC{t99^umOwz@<eUnWLW_0vDV>=nvS
z0?WGM8kMV3lk3!-`d+*fnZxX_ROboeH_jb(O<J?t|M4(f*$X|oOIGX=e<kpH0{0U5
zgJlxlZO(%P++g~hT7H(fPYXFo6dayOJX>b@Y*|Z@DZ{h%1PqF|i?>~v30O3SE{eK{
zCSWI!!$nRPu>_n19w+dGwmN|XMVCT8OSqhoGlBhU1T}iufJl;K84zJF52?13#Uq&#
zU<3<8@5q70UyHvJSXnXaAFcukq`CY*f-p(qQ@vqEE*DR^-gQPnmw~m&?INFxbQjOK
zc=K!Vyo<apo^_GO#p_(wzZTEAUI-%BAf^j<{r_DUkBv{Y@zaBm-$elzXSb$tg?hpD
z&P}|YxSHiJ<N~w<Gelt*MO;sicn9|)ksCx+UdS#Ig?FUA?4p>9DlV$Jc*Vu5B)~;E
z7q7V}?xGZ19xq;(ZNA~+>v4il2^S?L%-g`%TDNM~Kg)}tbG;kDGOia^SJw4hPkgwX
zu~VN5zl(qi;o>b9w3bBDG4=F3QQq}du8m5dqKgV-#XJv5+IVMCiF5QqR%O?V<2u-}
ze1?l^E~+y<<VBS<sFcPu=px5jPu|#I4Hq?Cv|N*mVp*|OyV@@5xai>G0~d8&)N|3y
z^$a6}_Ib%w-$er#4PAs>>>Utk>Y|a0Ocz-$8oS=cm?gt57>-^e#^1B@vHd1w)K<Zd
z2+ExC=x1yXD>ipM$7~B1@33nZt;i@B+{h8x+69esI~Q$Sv~{tRF3sltHn+m_%y5KV
zT+E+ytZ47z*aT54oX+y^$)?_yDV5?w7ad)Ua`BmqPA)!j(a%MH7oA;nanV!G=2*Fl
z=<1@Ii|#Hjp~Tdz^d1t}-9C$1(%H*JZx@F${L@d1J}$~n6MZF1UwSO)U>x9Lpo<|c
zhPwFJ#oEeg9Q!8}hS_2eSu{&*zZw`U`?@(GLUTc3U<<=s3@3AriBDaOWc4M2w@xEm
zY?|i*B%X`o=Ptf*F~h}|E=Ic;BO96QVyugCE+)zBco!2$%!2@DlNFooN~2GBBByMw
zcPx7P7r|SeDK4hEp8tf+@|ngVoDkDxN@8ZZnB`)Q3tqL97?j3?-fY=2O&Mcc=en5Z
z;?g8BpQE$I0{M!*RvxdIUF2f1izQMjZn(I~IdZYg#c~&4x!C1mw~G}nR#Np`Y^2ug
z5MR4k!-<$KzG2JD1h05jxmfMu$TD%bOputhF4no;CEa=#?sP%rCCs>#P1Fb%J0t;H
zTrkdX$d)==CD8PO*e11%nC)cdmO8v5+$l@uE!T_((r;btadE=MNy;jX)qu!BPN<80
zF20ik-|ymknwQ;zO&y>y85mhvH*3!yZxM6Y#SboirkIgP7eC5oe{wzd1*N*ia!&@1
zQpV<q=1;#s3_T~mxZZ_G@tvYrDC0O=n=dE^r(B$Nae=&YafYUbw(F2M=X$%@?%#Qh
z<hvBu_duMd5n$v%hX0a_NMrvM7gwp3yToM**zATQod8c^*Qg`2#dX)aH2h<MU<;H|
zcKxdhokHc}mW$ie+@s<*vYjD4F7CLv%dwYC|J}tsS{Rxsp8j@w3+tccfQtt%?0JG)
zFV=cTE*y9B=g%fjT&OgF%Z137pYlLJqde^Q1j%$^x%k_~KT-gq<P7J!hTrBA;KJe1
zC|c8n>muPIwZw}h;6n@-$0RYd2J^juSf&qYs~fZ;p4A__cp}>&{O>vOuZy%K7{Ezc
z&5=aTB=RIZJDe+tHwH#>CqXA9Bch*5V&8}+Pba;gf+-8dGZO!75)Ds=S)fyiX3xo5
ztoZizV7?^MlZYl^Cy_tNUn9j1cELZIPoiKFA15&=i9$&ri55w`lSJVpUQD8D5*bMp
zN#Z4TokXc5iYD=L5+#z*Z;N6{?|Y(GlGwh%n~uuY!>=asS`w{h2PqQ8lO8KxPh#y3
z&ppMIOHaw9Hw&y=I*Bq#1d=G9MA@XbwRkJ(Ejn*XxLguG35X;b42<wCA2N*v{7H|8
z1Q_U2A&JUKR7s*@5|!j&Z(a(};l?X_(nBLmJ6UGDs7B(aino)fokTF{EuhttsFB3j
z2Z5SN)FQHCLEfNIo(C@yTAN07Wcm8+S^{;GprF>1>AM3X4U-5Z(Nw-_BuCd+!W>|x
z%!Xx}#b&?rM$NUONz(i5i;GS(S(0l|b6JMpShXa(lIWO3r=(|&S|`yy32qqLBvEdU
zXe-lpNiXh^*$C%)sRyvYyGgvq8C)aYPohH-eW!>IWcI@(#_aNz`<#ulxZKcWaa<oI
z(K(4ONpG*%Es5?)bd@mUsd(4WBZ;1DA&Gtx*((VKRQHi^Z<+G5tk4o~|Ij~)0Z9x@
zV)DQU_tFCfdO=x?xaRUod-X{YgQZYyPGU$BLz9@D#GE9CB{4jS32cfYn#71CzDQ!U
zoUf5d{QYXP&ywKAV^k8a1k<<~`&_<i+Qh#$%Rfen!MG&Ot`K9Tym4kJ4C9kn^ig>t
z(>9Aqq$i2#NzCAEZWL2E#j=H|NwnMJsqK&!{t0_L@nhXDDVFl>OqnvkgZtb6ovi0_
znvz&9MRb1B)9Z!oMFI<CI_YL$G1<FWEJ<RiEXG@pWfEX7Crf$(JgGOczDi;R%O}A=
zg^d)IdE)CNzTprYkC;`m{A!u5`LFKUB-TlI{ePGZ5?ES3oyXNpNr+o@7^+8w-6HW@
zlh{TLx>Sb^Zcl<ozr}xuok{FUVs{eXCUG-~Uz6CA#NH&1CGiVwMH1g7aVUwy6tJYX
z>!vUC`=sY*K9KZo>j)f7dLCUKwV3`OJNhw+pOQF|1S6U{oc7|Hj{ZmC&s3tpo;m%#
zR~CIZ$CEgb#JMESCvh@~Ddz%bIH-Y<Q%U^(i|4&OO*?Z>a07FeLVn5fy_`yg>7%~D
z#*?^0$w}hj;IvER+Z^x97p~@XDPK+EdeRG1XZdTAJTC%M(lB7B*ZZv`Zc}2DP?PvA
zi91RBnS^^s+-1MShx~ug=*<)NNK8%da*CH?Eh<$bz*qNWI}eihO9I(c!)bK+deg*<
zIhNFtFp{WnBh0DP$=l|BIvJQXll)i-hX#5sqrt&6&P$9FokFt|oFw8L0%=I1X3Dd%
z$s|(L+!P9?@KAR2PZIyqKJY9f)5l3XkpNr!JBj2u@183yg&Zk7okH#ua;CsD^;0P?
z8aY?Wb9|MZ;Q4ZybzV<@CWU8HcrJzKQ+Qm{&x^A>DQ{Z2>6)X6yeZ^MAwA_qct);y
z_w1jZ6Mx<e<WKRZgFUxEffN{6NT5&(NTE~;rBj}jE}TNq6kbm8Z#z&V1>WuQ-r=Pb
z7TUG>(2HJ77JD^?*HU;T<y{c-q4_PI!iY!W^%P2^Kwnd*n*L(V{UuYL<K>MMKAtU@
zrO&zjHc=*pvME$dp;8KOrcf>gk-}Rk_&DTgg0sd^(DO{n{V4=esF1?+D}riRKII88
z!vp96VD^hjS;SXPp-KwXQr>=*?N?19BZX}z#Ncy*yAuR~ChukiQ>dOo4Oxc8c+6ya
zcVMKJoT;}{sGUNc6zZlBN_n>)Kk&1x6dI<y>#ALs1NBpgpA`+{z!}N;?b+O9RHGC!
zQwXP!l|o}qac=*HmzupV!=%L-!E6(WEOjp2JcSl1tV&^Z3h$)QGKD@V^i81^ryzyS
zDRfEk|2+}>p!~Zjyq7}T|6}Sqprfe1|F_J}EC`|9i%Jneq-2r}H3<n2#1Il7bQn=Y
zP?2Jx_ud7Rs`QQ`9hF|JND&bbq^Jm@QUwHQJ7stOpSk(&|NPE*=W{;qzWe%pZRX8x
zSf1ES)H{aB5dMPTgsmRz4X}lN2?d*=zY?Z}z1wyU)5~FZU)@FU@V}|xUBm92kMmbI
zn8XAfyU^FszYFx960zTs^zLDLLnJ)}u?<5gD%C4Yy``G?IuG8r!}Ly=CLy&j^$Am7
z^lX?0pf@F*SEqY$8wwjU?8yfrcNl7$obh4z<>25j4Gq(<FbxrJY_a>65Qo0u5)o_J
z2;{p}A1MejO33IijS(_da9lhz+|M&1OcTTIchgwil+EteVoI3a4bz8Vnir<2VVV}E
z8DW|kc25@5!}LB{J5(PVt@lKN*%+~ue#R`6bAmosaJJx_FyU1%+7ozmt^PsSJ!XQ;
z57UA$Ee_L?Fde&^i-&&DS%`tTUSEV9=esA?rD0kYrWI)9FfE6{%ySPll|L?u^%s1V
zR2G_uh@~9KejKJX7*k=|9>!}LS{tTKVcHy~QrH9B2(1%qT#o_^!5s;VosH5Ri$@oS
zDQ>}p(9hT!rcc9kW0U8zFfF~H`<_q!90TY1<iGw=5sF^h5vHACIuNFVVcHd@-C_DF
zOkX3`FS&cd^o7LQ8>XYrr|t{WB7E&~PH(nM{}LtnS%<^+DS5Exn=pNg9z5Wh0WS0G
z$IuJohYfWU6$<J7j1C#ehr;v&(m~=s>W9$<Et0<%JR+F0QU6g2e>_Yl(1yY>u5rT$
zY5o+ZN2m0YDCfyg)!%YYp;WWoOO*&Z6Q;A6*))Dk<8xv9B}|!7svo6a!}MF2Dn#h%
z2%X1#h*`^~XKlI=ri)?nSmd?nk1$=r{ArSE(w|}a3u6$yfIbb=<uLslraNJ}5~i!L
zr7+zL(>2)1T>S<be5d=I;ktM+b{g+*4GAps7N$5P9?N}mv%9AP!JF>8VfqhqLYN+4
zO1T)ihn9IPFY>M4=)At}Ozy+5`&q#wEDHDC@6f^F!eRHb6c9U14*JU^ze$lWMUnMM
z-D^?|)52-pW72C^LzpeG!`Yvn2aX28e2&#&wU*cWlCGGvyH)b+x#^loL6at%G{vMs
zCKWa*&!lE1J!Vo76OYO%(WIg#C74v+q^C?OW>RsJo-pZ2lS-IW(j+p8O?td-Tbuz)
zneKBKJW<EHlJ@<K*xl692r}t(r98a!|IU-Q_IATECY3b_?+ePA__ZIsj+%oLU*AW$
zm`E|uDwy=NNtI1{)})FiRWj)r(;Z4Zu9w7!z@&unh<N}jBMu0^4D?hnsj5lX4EOG5
zR1-}o;{dLklw?wUlNy+mY*NUiIwsXMDaE83Ce<>jwuyViq5WUz)h>l<BCq*6?!R4@
z8=KewPhF^|nv`Zzrs-ZyPdBNaNf{_im!^1aggff^029Z_)`{u3r3{4;wdyxCDa)kB
zCOvObBh#HQ@m%ORlUgj%@ve3?K0fMaWSi8)q^2hR0*3Gk3G*;oCdVX9M|gXJIdD-w
z10SrRn#~c>q+TZVHYwkvmL_#F=|z)Tnbg{(_9k^Osf|eoixg{zj;QTvYq}SGaibWB
z#sMZ}csiP7nDl~4E9Uu+rF!t`!M=V*LC{O6mr31Cdc&lbP3mIOtFRf<{pE*OOzLV<
zH|aGf<3NNx70$3own?f7kB*Vl>nMhNf{oW<cu3d-y*5XGdX?VOq@#OvJp6gnq_<2O
zVbVyG-ZtqSlLneJ$fQ0d^);!#Ndru}x5Rx9YdxOV4;`J94)SB&WTf+P=eBR%(+8V0
z#H3*+4L4~hTH^y9D<cm6`&PI|_=7LCJzpig>9G)mqf8oY(m0dGqZoJeF)-k(`dHIl
z-B7lR%k*e&@&uD6nluR=z2D9BTt5T*|B8R>bTfDLD*auPrkeDPN#B|@&7|ojZGa`4
z^qxuYo3z-ZB__=<X{JdZnDn7ZxbHN}q&X(d#Q?09KHH>KU+61N>Uh0azFPXdeun4i
z{CTGPq;7$UPZ(%EhEKJ0?Ab<q=w3Bk1UsDWY66S&H<p^T%%n9YePYtuDhbPBJV;P-
zSs{oht4()T^N~p(WB9a8M#M*R((w}|*vq}F=dYE#elJ>Vy`;Pjb)Tf8VCb^Mrg@u8
z+HBG;40)5bnDnVh+fCYG(q|@pZqhcB^bX0`T36|BU`w+V8I9NPHAu#@M96Vc-igN9
zpl`2N5>K&^;~tatn)DTFgx$MIUzqeIZ0wYKmk$zbT?T!pV>X85YtezwSm57p(sw5P
zZqfyl4!~|r`q89gCLJ>Aut`Tu`T>%S`u8R^>~G+`Fx-Sc+-=@b7|a&;so>7zI<90N
z$FMc&j7eur`pKk|CjAUUHR+T|9s3(NeT1r)EcT;&Kmc!e+&y>nKdPU@5Hsmlj1i3D
znL6HCKzR8FJ+perZ__;IG5c+Ck0<l5hAx`)he>x$`p=|GnEXw;V$xM)bUpEUrG&pQ
z!<cj#6XS7rmx!0wDCF|-`ZbfTn{?BpTbS8UsUP%zM5pynA#5_Cj4IqV2~|KkcZB?l
z#<|@PlA)(_aRRz$(tVR`lN^&CV3?%kJu)dQnh#<Br*n~liM~4%vP?pb6Kbb_{z!l7
zPD2DmOp0RWm$D%*lq&axj@zdw8&dXJ<hSTOi{7_Lu_$0srbYEFQZ3RfDrr$Ei-Hyv
zvZ$~{k6DCY7g^Rjy{#_~({d4uKKM{?IZdyfkyq5B1dEDUw6B@_kyLRZJ*wxIu&8){
z&+#q#)K7J?h%KsSQFV(-Tl6@BCh8R}!f*9FVbPNom9ePCCie+US&Pb9^pr&vEcc;z
zd5f?>V9o@`OO3w$ji)Vl+CQ}2-SG6zPOW6oGZt00-2L9O7FDs_Z}AQtFE**afjuFf
z?^U(jOV=P6^@+&EqM8=z7A0BkJdiyW-?~%Ca$k?WdLfiz(Wtr}WQ4?PSybDiG>hI!
z&WC0li|SgGY7u@81%<&>+<TilIYTquqI#BV30UIsWp{?<zHKR2C9i=+4J~SCQG1KB
zENW!Y$R&Cki=MNnu|=&=)T{dQ7G+zMYf+v>O)Sd6HX}8;spTHW@GQ60DjknTm-IKb
z_BWbY)ZC(ci&|QAV2<9xawm37S(te7njVK-eA%%tRDVO=<kl8_-`_yuH}~k_x_NCa
z0^+>W!J>{9^|Yv$MTSK$Soq;?>SEE@U$T;J<|4;V7QJZEOO|`A!(0kUXSDw{T|b-o
zibY*5dd;HOE%!}vH}q!7Jdjr{_r@9w?^1uGJIv`*Ken1ZEPBJj|4``T#_5ZzrMoBe
z>3VOA-n3{08Uame(c2acuxOy=E)efn)W@Q}7ES&u7y0(H2*106w}kzLpdC;iRA-Py
zgDo0n;Uq|Se=)?Op(xL4edyWH#%nqVKA*voglF&g?&iUK|0s(_TQmvDS~LdLv}l4w
z6H)!8`Z$ZmThwN$J|Zz6IU+7D2B5wpm+4qL9`BMj#iDmDng%18sZX`Y>~9$7b)$9O
z=`#7aFFhR{x*R|2)DVTAVbM(V7aGl?Sr*N<XpKdmSTqOyYtc%W9|jAW(V}IR`&sTh
z6y{`Tfkg`~nvWs2!JQskoYogvwAi90u>AVTn7u3f89KQp8`q2xx)cLb)Rs#MD+H0$
z>Z<9hE%yhhKDH=vfbo$<Q%;BAN(?ZX7Rn2cYQEN@b+8tT4qCL{q74>pw`hk&8!akw
zJd``Y*kaKpi#A*Ckrt9S&$w54KegyH%bmtQw`iM1U*@}yIJTm*<W6sADalTYc3~_a
z)S}%egGGY|82eDobM92O*K)5$cO76npOTMF{;~naR~F$8<Tn<53%gBC{@NmJL17j9
zE&5JO1-$C7As7svww>9mAF}AM=$wNwTXe*t;})H;=<<sxKcGe@LqDP}GxejEyZnti
zmw8MQ!JS(yRi6(qezNG4ML%OyVv@;E?y*t-Zgs|Ki*8@aJ!8>X%l+O2_n@!=M$6Br
zoQDejV$rWC8|K6Q9;|fdEkZAVV0A8%pL`LUe@vJ*DK=fQ=uaeN(Z3e`h3Uwme_)Vd
z{W1pEPob+8U9;#4to;vt_zAZ)u49bP&~L!(`+Ls)=-!#ckU`;ZN~~Mxqx$Y64y-kI
zEV^saBMexJ{<G*F>}QLPD8(n~_hCOd2@fpy#}km|LyJ1Ulmhp`@3|(d)S?)g%O)E}
z{)Zm1D2fJ=u?a7->pVlpg^j>Wz0cfquT4Ii{up3jv0M9eKBp%G4-GH^HmNq1u&Ja?
zOE>EK4u&+Ff;JVhsjy86w%g$TfyQGt6|t#Pt7LGLt*A{sQtDrO=spEn^h<6rn~K|n
zqXd+JrEDUb%Gp%jCbsG6fyU!DJt3sDO-VEK*!|q}fyR?Im9g=sFgiFcl$Ny#3mF{R
z@F_$*s#ic1+g;|s@uNT$ZK`Aw-fQ6ADO$rnL4U@k&hwK%s@PQ3rlB?sv)wtlnoX|>
zscuuEO*%5QDaWR!HYM8>vMJN1`ZlH5RKun^Hr2H$dOx+MO|^v__UF~I3D{+z0eO#`
zda6xnw)^uD8MeEE;M<&Z8{eO%!qu}WFe@F0HB1^<7aG{q(5A*VJ#SN%O^s}N&c=3B
z-?r18Z6@7I?YUhaGSE2qp^nERkYwBLE5ary$tHc=b{&{&Q=Uy7Z8DIfP0ej;Yg0R$
zTG-UGZpnP0?Ou48y<cx7g=uY58=FekPQwobRm=2XLPIfd;ce&T-1atguxZXf<I;`X
zYWOL(mG}fE^#$~!O<is3X48u{y=2p<Cdn_`gk#RCN_kx$=$&o)@!y6ZU2J*<ZG~qk
zO_H(90bjN0+CMs8?cvD=$d-Y|>o#?_=?&O}P5q_Kd)id=T<%-Q;$t187Ysur;BVT5
zk0L?dw&@+4`q<PLRhX%l?3mNfcJF#23I-r<DPWOZc}gE(6L6qSgKQcMa~h}P+6E*;
z(9s9<h4qt%+cW}Q<50RoBT*5X4x!_08g0`Un?ADXW1GgJ{cZZtrg=7vhmG0vp6x!%
znrIVRX|hdIY?_2#sO!1CM$ho&;kMPgC?_(Vpii}Fn(gjA+AP!$4Kxz2ho0P}&uf(Y
zzD+Z1nrYK4G_Or_F+U7+Ut!F)-D@XP7wflVJAoISAE2hS(xU?n@SpMVmrV<8T4d7#
zo7POx;Wk|fEw*V1YHHIejEF(TQk$09wA`j!>-1YS(pSJf*SMRRA`A5TujD=aPhSn&
z*rmU`NXPpW?6r{Z@@{!+Y}$s=YSSk+t+m}p-|KAJgw~j?ueWJ~?Jk<NyQOTj-7N%8
zaKOzrZNd1m=`))?w`r^B6dW7z(`tx_eFYvtV7=R6Q_VrfKAXO<X{SxQY}#$p9-H>s
zlpW3O^PAppmb+e0xaa<OT9KiiFKznDrf+Qe)^=CkuVD<&CV;@L`c03$n77}i?`%4N
zPMPCgRyl~lQYk<9m7YJy0D<Itn~vDzcSv#Q2b+%CbP>}REYqfAHl4BQtWC$oBz}U`
z*>nQ4)`tImkaEhVpKW?_I(}x#eKd{5V$3-mSLx<m%!LWPT_NF|O~0ZYP=)pSFPH)F
z+k=-Ip10|D4Bo{dEJmB>q+gK4e`}uyOT)FIOE&#!(><H+i~KLae_<OoT}D#)_!krG
zc>Okp=MnuXhKZ2tf{@&>>7O{iiJldX`-BKW32~UZW7Ay>qCxJ{w*O#JiFpv>V*dl1
z9@-SaykyfOo5C0`nDA{fF-6o!$5!FOu;zH$gWrh2I#_bPALyV%r@LNU(Tv&TamedX
z&zbJ8N#GaB@cE?Aaewyn-`Df@{~ZcAq&igIp{E?u911#A${}*7kVAzXN^q!{LytLB
z#G&K$^NKn&dXQ1=sQdFZ^9C842f5$N7k8*(M)Kh^p%M;Z8Xu^-yre_GSKB6Iu4acy
zJM_3iSTC~cCAYevKjBarhsrwiq~oqHa9EY_WkETICSGu#=Ha(xuwqtl=xK)%9nu}D
z=ujnxo^_~-Lq{g++wh&ELnFGRRCe6u@{Nvddxp}hI)rp^_qduvIM8i8s{dFsy}Cmi
zFY2*Vxk(NsJ5<x5S`J}Z3^|nIPz@;n&W2cG5EmuEid@^FIu50xS#E~vI_`p!)1mFY
zzujfM>y^++sdYUEf5Ayx9QxFuOo!?_G{B*O4mCh)IAl2Vf<svjHF7A|p*)A4bEq-u
zvQBS`+#Skxs8^%BCXV~g9T%DKDG-`8$DvC*vR@vTdTo$_qfH)uP1K?04z+Qpt>ex@
zEgWj;P%DS>9qL}IJ`P0nw!1&D*%}ppSO2(i0u~p{X?RK9&Y|`Wb#N$JIq$V4?uyXS
zA<RoS$UM;{1<IWqdeNcRk&Z(zIn>#qR~+gJ!+>{|-o<fe$i7qD$5uGXVUp?Q(5nvN
zo3+;*no=_j$G|SHq%3UHwt4%u|8m|N4)t*8Er;HQrJ=wJ^*5!!y&UR|#22_%f+55U
zYfP%ZcO2^DP(OsqYjn)^eI57i7H+Lz{_OA2pc(1In<wLn%OHmaJ2b<gnGOwcXsAQu
zQ4EKMIW!#B=+GFL0nB5*J`xi}!~gwO7-r5<4&IZ7GVbYP(PEdA#=!!+reKcB7?+BA
zt^34%;5HF;ap+x#CZWFQxQ5By@FS2{^mmie>%FT_b!eJH(;aukzwo(xmV8h6`{=dB
z?$647iW|;P=Ff6yHjL1rRSwN@Xs$zx9a`eh2M&Gc&;o}RIyBFr`Hp)lyU5J+a<_92
zb!v+?nRg|35rY27g{wN)&;}cjBbTKPEq7>zL(3#P+@t<tir#Rr`*pzDl=QBHjnxi)
z<j^{Y);qNHblS%bed5qsht|No+!Xpl2ODRqCLk%e-=E3bfFa<}CWkh|kUBSQR4pG3
z3j#aA<5TFg?3wqOL!Ucz+o69Q+Un3YG^RsGF*+RD;n3F(edEwhhjuxH$7NrjZNJfX
zJG9rKeU5t%XOH9lS^}Q1VOhbHj<Xo1`Y#>&3S*&4df}xye$Ev5twZ}UGoTYY<b3DQ
z0f!DDsZ<Z1{T{?Lm6|-YdiwdR?!E{oTqN~92D>PiJ{@}LRzo~X{1N&XCJz0H8Ofm&
z4xL4j9Qq04)S)xz>#y{|HCv-FryTm(anIDJ9rp$rKJ>U=E+3!oVZQ;LUmW@sjXy`f
z;LvaA<$d~jOi*$p#M$$A;qc;}{*1l)MU3St>3^UTJ$WF1!L}W`?$8Zny(#OmLsy|M
z{0dC5Ve)^=b$l3tfr&<#F(Vyo@jvL$yP=yhnc#r{YIn;a9N~-a&bZ^yT`Y4E3Pk8X
zhweFKJLI5M9eUtU*df!QS%Zy-m`Ob9BTP#2VD0mR?#}^Pj(ZfUTr1(F|8nuEa-YAG
zA{g=x`6D>r=`n{q5%>9|H$vw)6|Vr+4L0zq#V5i`8}v4|dvyBpvaUu*i%^LOm5fj@
zLWLq!Btk_a6gsUJj?iNfcR>N)SS}AgCK)`N_2S}CLWGJ%+$9e;lkw%ku`+qZBkqd^
zl&4gLC_+z0s7!=7Lf;KG;GT$3=?Fa@p<YKq?g<MYj(w*?j#ouxBUCQpJ_UU$LggdW
zp<O;+RN-zv%2um;9yqF8F+!Ch^kamMMd+CbRgTcu2#t%-vk|Hiq4tOsp{fz87NO@N
z)Hp)bBa|4S+7YS~AsxyO(<Z!@mJ*>PWHGg4vLHw(LQ6OlnC7V=1iYq@S`qr~nRIyJ
z>PD!Z=!2(5=;B}_EkfxLx<A-}WaUhMMuajYi~12<WlzhBPy_Kc6f82ukK7xfRfo9x
zxeGF%k5G1mnoCAa1Q9DYLOH^lMz9r3`|V;DN|lFLOH!U1Vl<PWX_eg~wTRG9yE5`4
z)G|V?gtv}RTOp9Q5dt;1b`lH1juA2<^iG8OMCgSGbrN|m!51Uc`dI2K=%#O5zZ9X)
z5qdd7T_V)2L^=w9L_lf}F`&~G!U(-8MS3klJtX4m;_WW@h9C;OJJ1LbdqyZ%s*Kw8
zj?kM@u(#snd|L=g+gFM)C_;lH^vV#UUxfNcXh4LvRZbrmp@Bn;?u(V&d470@pn0W*
zM@48@gq)AEhfCa^Z<a#mj)>4y$!=tX-dd@k0BH8nqCW<;JC+LX_y|pi(9#GklZX=|
zG$TSYBQyyHKgB;;gi|8)E|P-rPwQCZVcK*_VH%<gF}4md-h<}DwD$!;kjtzH%|^vL
z76qRpDIlYT5t<vJ52T4c6r2~KF`pMjGtL+90zr8He%`+b4YeQ>(HA4Sq;PnM0c%+v
zp%oF@6QR8@i3qKV(Dn%Jh|uZ?eS{$?CHy!-Ya+BELKlV@>&#}KpzqdZua6M;TETUK
zNc`Z%tY4=n8zZzyve+z9K1CrHrEG~12vUGr0e&8#t)d3Wwg}ympq&xg6`|b`N}dp!
zJEkLox-Uvu^L_SV3jJ1w_C@H62<=BxM+pCR^<{*<iO{zZ`bxZC3kJUOBdF=4w4&ug
z$QPZmdTh#p2z`&q<Z$*uRBdd^AwiJCLLfg9CqG2!D9UN3L0Efs=y-%qpd+GGG)g~3
z=wyWMVhWAWsR;cH?@a&A2%V15nFw8p(A5Z?#WaZV8=*g>YQNx}Z@iAb3i(a&v7yHA
zn7fu_UWj{9(@PQhGeVamRCajEUlD5Ydq((S+TWOnh8nqxQZj}bZHF4D8bVhuOt}`J
z>k+yUq4kSWcFYO^QQ3b`i-jqBdgK7#<j^fl!Wa}B`d9FdAiUXz{~qR+2t^_kjnIP#
zJ(M6vGJO;ww4Pm106{ZCmJsv>N`)rvGt@vj=%84HUJN9?JJisk<cYd1?2VEyN`B!=
z)NSn*7~Qi&0pY4(LCXiDR47W`*`dNwLKPkp%v$DIHPnDN0VzbOVw5UHsd$u1MCr*W
zm5I9TQ!+{vC62l_P%7$L*WRJVnW4t*p+@N_o=K)X9>ueuv{mCnPee%_W`LKC61?T2
zR6a^yElz>tDUpD{i=YZodRiplkUSHm%27&=QYcE_S59BBC-d1TRf$sBR+&|!q(><!
zO4TH&x?rLpx(UkALBV_(nW#ldl)hY;QYT7vh17`Bg$HRhqf|@0wFR?%snCI|Fw965
z33ytR(uNu7g7rk05v5kc3@A5<Qo|^jezyFa6{SW|>hI?Pets@WjiYofO20(u`6y1!
zG$TqgqtqlyIZ^5xrG8Or8l~JQy%MFaQOb)_vnbVQmSlBGZyu!<QEDBfHc{$wrsMoF
zA-Mb~0b2^T65KU3XVBBsHcB1D+fJ~(V2@!&L9CAAHKO!_kWPXKdNE2b3GW=2yo|i!
z{0&a+7Nu9EJa0$owJ5zVyjPUEN9m0y^%U>u=1DEacI+V>B`>?Q!<empklyIKKFX9I
zGTw~RTTucjH6j)Gj%fA~9Fy!;wtticL}^@<#z$$O$cIE}Xp}xJ(QHtZ21n`b=R<IV
zW_zGKEJ~xIG&)MdqclR4M@C60>JOIDIyTKZ_j=Z^e`St|($rzbSlsmZEA#tJ%AD<P
z#0gPaQmhTg<S0#y(%u)+;U-0C<uIedO8=B7y^B~;nii$^qBM6v_Vg(28D{)9%=o-Q
z3dk?Q-;WX`$YoZPW=Cl^bfPo|`cYaJrS-7<D18{EWl>s=4sDh+PjCsEG)fCFMur;;
zqqIl}LgB5EpR`zXK$3?WOEInGrb4m;1&h)e30ehf8E!!TBMeoMydvI@F&u^)gM}mX
zlPIl~P;fNYhA3^s_{9j#Pudiv%~9GW&9wy$8>MfLq;8GUXF|X~kJ9aN2_SGVjIB*d
zfS|3mqpe;}2iYm<>=K0c$K0g7QQ8+Jke@JP<RyK9q@uJR;{p~w+*s5q>8mJx9i<J!
zjc)|^w@d>6E=mWYbR<eYU|K-pt&<K#=`fn^gB0+mTO@stVT*y^!sU=0MHW#yf!=AB
z3JDPISd@;71PbtOTdM$1M(I?Pu0NHA+3)8losQC(s5=v)I%i?V&6EE8$u)zcgR_2(
z(r+*Z4=?rb`6&I4ffl3u7+r|cMNDfkDjB0cqI4-r52ExiN`FS_FQgo$8&Ucj(;XxS
zi_iZ%<4TmSq9TjZufZ5DBwSpc@_6B_-Bq(r>@Iq#a@Idlx*4UrFqkOaiqhn>B@b1}
z`WGYm?~L08Sid9qohWUsk~Ok^$E31ZhlU&XqI5q>RWD`TyVMfy;&9_pl){+3W2D5$
zjFJ^4CrT02u1by_rNSeOiX)7L6I<LLZbYLLLtn(G*hekeKau5$QG*di0k`l&?jp}@
z-x88QjMNwvj?rT=(qa^h(clqA-&R>rD-@#_g+Hv4mE5Umkr@8nJ~07tV^lOo?~gFx
z%DvdM`Gu^`x73v*jN&ocJ;DGf6(fpKVvO_{ag0jG=;;_$jM3vUdLl;UVpKjxPsXTB
zjK05;aCL;SzJBKT^UcemkPAB;8)5udG3%)qRfy3WlS_DdrNk;`jYw^yjx>5@WL1jM
zGcl?fqiQkw^4YA)F?u#eRbuqxg@jYxiuP@gxvx_5HQ`W`L)q04J-zweMkQ)j%-USB
zIZB=sqvRN6#;AUbLNQ8-QSBJjL1C(8)re6obb9%$nlU;$B?T@ivtxxFnLEm7)s0bV
zjOxWG1F=RLX@cp3(1)ZzGiRg$Z<!kj4Pw+VM%giH5~HjbHIhba9HZxA^vXyBg&8)|
z7*svWlhgcp3A&Nq{QZ$ePK=tyC@)6M+(xUH8>3D2njao%Y#wRA+cK{?@WM!=d5r$a
z?AX0h^OiAc6{9cE2r+6Mqc$<>j{3%^ZH(H*sB?^7j!~CtS?y!gF-As=I*7MkrRFFt
zTImJ!Y>c+mNCWQ_qX#1mG$xw*CG^)Qmv=#FQ4+J^t1;?|ii|QgXE*OA1%7dq(QJSA
zh}W`SL!}yIR;}LV^%xBtWk9({jC#gsd5l)Xs8@`7$7n)~CQ7U~V>AG2!ru~nJ4Wxs
zs85XgiWeQ!Ur0YR!hS!z1vm)yvn^{xj7GvT<C;TaG&DxT#0$0IaXI*?I3E|I(Q!UT
z$XLO8U;D?$337p(6r*V|nl8f0F`6O-@^^(yjnUuN6X1OhHXoyT@z5DU<_OM=(JUde
z<DnQ4h%z@uABf~b!TutgAEN~^S{T<{B4m-^;&@(5#k)+fAgPrxS_M0=p0zzjt79~S
zvp$Vcp)Tz{iqXfSwkAgFg&^Nggsc@@C;0a*w+b6#v=OEiqs?*6+>GX1gwGgdK;bjt
zpT|SD!bpVE+a(YRw<AV7<Dt7S-s5~vjP}O)J|W*^bo?qtUt@fE_$d#66Qgf2ad|l4
z;r%iCE=Iq`=(m_VXC8>r35jwrMu&tP#xRVh_I-?w#Q6_G(1Sn5CC7vuN4rS{e~Qt`
z7@dlTo)z+Qj7|$V6PF`}b8-Gl+}_T|==T_fF|}eUh|$Fu{Rhrjf5hmLDBq6JpE3GN
z_&<Vw$LLBtoy+lb&`MWhbS*BwF64%cECk(*%WwT3{eMMx2lLF={=32pjQ?JY?qhhy
z=wUq8BOy>jQUyAeNIV|4g*Y*a2#E^D{!cE5<@GQk!uf>wJzS8;-6yhC4;S%pQITtc
zLBT?Tg+2V35X4RRQ%&%2G4Yo6aPhdDJX}I}$+)Bx`ud7%cyR3Dbg}=(CG-iwCk4w0
zmKB6%IS+qpg+MBJ_-PO4p^zS~=;2BpPV?}pQN}YKuI%AOjhfezD9;Ked$@{+s|v5?
z;Y1<T1=n2rUm0`{Cy4}!zbwL#hf_pSBQCG$;dXKT+9Isu;kxnAR1a^F&~%a1^KgcT
zGd*12!_Rv-TZ9b+8+o{4JXV&6|9=^t6JcXPWYi?C(^N=~hrh`B-&o7_@ZCFZ$(wt)
zg@<4FaCZ;qi&_T{cl2;e;jQ8+wDxct54RO>JHhsXb1S(EckPRAQie!g5`00hlZRgv
zvRM>5d-!GXcJXjGA+HD`ZdW10t|q)H<h8iG_05DgJlw;>Gdzq1uBV54d3cnEM|-%p
zhu`#Ye-97v@LO^HK0@C1@cf$z?;wig+czHCFD@DA;XxiA9+wXmGStIE;*ytcx-}Z+
z;X-0pBSbz@F#lFU+m2adJUrIJQ#|~xhsTM0qTqPJ34(6RNQX}H@Z`9pNN(||aX#I{
z(}Z8X`adgrPrUDY7!^nKnc|)0;n^OZBYdIYTn~TX;SYr`5S%ACU(hYNB-rp`!Xl9@
zj>`|<OjzdO<uGy|KkMTa9$tx_^>SM;uk!F}4~IQ$diWy`e++B%@TU@SjfX$+@LCV=
z8D*S&Dr?!3Sv{&`t@E%_zvFsQ*bq;DqmWG=-W-=G*AqVT@aG;r>ETlz-s<6P5_HhR
z+l727xWmIch3xY1ULm^$QI|bJDoRJ}gAI!}=imRe*jFC@8cP7ibzJ{DA^S0QB+7xf
zydZ@`9zN{h?>&4(<VQXHqlbSGUZ9U0k9qinNRA5zq%nUIj?fEN5`OmZX%AoX@O2NL
z@$gv>U-a-FqHqqo{kY~Y9{x4XfAes`)QS{-_wa?de8aEmCE=F^|BTE3^6=ln3yOUu
zF25?o_iw@t5C0?lo`-J=`8Td}%fq+h9O>VQ^Sd7YPxzIaDh>iD$$jxY@bE(+j|BhM
z4w&{~CtiNm%Z`U59)8@*Pk1@%;TYy~FBkQ)$Lr4diXezrh|kM@AqDjfcv<zb7S|~x
zBp6pHEaWl4g7u=<$1M`PTv8-RvzU<LUM>-rAlXuJPD0qrrG*sa_@tK`9msyl>n=bO
zv2*rvSqUvCSY8k*7bsT{@6%qc7?)QP@{B}>S`{x>_44yx&h~OOFIV?+V=tc^Wh8o8
z_cGFNAo@vOP7{*s<&c+C;;Gg4a*a5z>E&8+j^i5=uOr^Nf~nsBSxCBg>j`EEW(w99
zM67~_YAD_;!A645#ZzdtBePcJtR_;t94|NZGWOm$Io=#)<cem#V4h$zFE<y0lv@-?
zWRu*|%dN!QIv$FA+j+UYm;d(iWiNN|az`(Z^73de&v`A&@bc?k?vCyrZM+~+Itjk$
z<(ItN*~>4-)9LEvE?#~`yz6hf1No3_gS(03Rl(Q1{D}zP@Ny6IPL-@-Uhe7TUS1v)
zPp7w#zJhNGz9sm!;5&kSy!@f0gIxM~xxbeOczK`%6&L{IABn<XFAov<P{Hrcltd8R
zaPf{19O>nPqK@(MSTBF(<<Gr5&dcMyyv)nXy*vSJj@Iz<TrW@Z@?<a1kcd+Rk=lD+
zepmQZ!D)ii1q)WI_k}+td(N4{XT?Kj3&HUG0G0CcV(}u)d0t*9e7@j<xO}6m&Wps0
zg=~qCrSVWmR(N@(mp6%ImEamQyO7mh{z%Bjg2<&{DO@Yw^<G{Vm-lH}9HAS;yV1*w
zWX;_y-YtTk3KrCEtCzQV`6rAZ5pMVLVK0C0<sDw$>E&Hs-tFaYy!@?~_lUw*f_nw`
z34S4n9KXb<&v8%Ra9?}*^nvUGzTeB=dHH~-VdHU7$f0;F)S{Y{@Q6r`3H}fdJu2i!
z!6Vlaj>qLEgcQD(aLUU+BmIS~E+9t{{vvor@T}lDK@{fYiwVER`EOo6@8#dUd`UV5
zp|fu$T#SeQ0ePJN>E*wKx4GXAYFE5`6|<j@OZxblm#<5Z$HzB>{OjdAUjE0+<wv`R
ztealGCGy*XkQ5vY?|S*6mmhigKat;yhu-({gE$}bjJuZ$i`Vh8Ss)j*1q&1+!lMPD
z*ArtxdS6fQ`q<}VzmH?zW(R#-$j6G$T^#~~AgT~e@bzkLUWJ7x`1rB7P7xm$jq@9M
zZs!*BadD9pRHT%T$;ah<Twa7MSXQvKj~^HEgdpNR>EklO&(!Y-FB~3%J>}#2i&}wK
z@G+i@fj=GBuju1SasG^uPG?G1@o`ljZ}IV`KCb5D>OSu5<ClG0d$f`0W8KF|!ds3u
zl6@TVagL9h`Z&eMHGGW6cNspe8BepWkXnMZeOxClFPP6$eVitebisQ6Co~gf_Hl!_
zq>+$@f?0wEQ`vLE8w)<~<7^?QX%iu3ZYSjWxR=;TOCRUOLz@X{F4#ga-^V{3bVpMw
zG?9<n__(c)J4sMG!45v|D5Smbe`}T@-WLS_|GZjIuNOu5Qe3l(k6-a|Umy1qc~`X3
zXrqUZyZLyml<ifKzvkoDg>)B0VcrmehY3AV3m@05nzf@+R&O8gkyvj^=v#ts`}m!B
ztUf+ov$_SM_xJGtAJ6si2NE>U#}j-!QTQMq5BBj89}o5MFdvVO#~tqDk#RmkNI{K8
z#p^N#W%lv7xXySXsD42UOp42A`gpRBr}+3?kxY-vr}}tWoFnD;gun0O8S(TBvP0o#
zNziP;If6&3(1$`6`FOF9=lK{9+2)I6fgoZn6jG4L5+ASj@kc&h>f>cTULMz3DP)Bp
zioGf>2mcsN=i`lW$tObA`*^L8b#Xb;-ypo8*2s60k2l9dA^gn8pZi$zbI{LQeZ0-b
z|M~cykFg=y?&IS=KH=jXKHll$T|VCJ<8OTYtwi7B<1d8lji<IR-ZEdtC13gY>o`YV
z`+fW!tXCul1P==yjO!c{Qc%?Ig&*<#?@7f`@%|`y?Ek3!gfiDi`_0GaeSFf#rzGfS
zAD<I~`koeYM(}JrHOPPQ@vm_mw9@ZBzTo4ln8s0ek^dDB{lmwX;`~n`(EnS=WglOO
zOOPf?eqFr(3PN&2$Ui>5Ddd*m?RY58U(mVZ<GUg$Foyd+ejr{SUMAx5KN>%^jU$pr
zJ`Ts@njpgMxTIhY5D{-wFed1cbi9H+JGf7f{K6GK2ZTVP`WcURKnnS}u%BP?b5}n<
z=I0`QPV#fIpNm4l&rkUINk13!^Tzw_ic4IOeR5hU;pdWmF6Czud1*mL7IHuXJ|54j
z^3{YgelF|h%6@)UgysDFbUd`Ykf;1yLCBx+=SUU(TuCI)2o@xZ0$1^KqDa82`nj6$
z>Vh~7La4_>;SKpY#m|lKTGr1s{9Mz|_2Z$n{G96NH1XCJtRq<0?>@i6K`&jr8G`i$
z3(jJh!f}*CUJZnUG!&90h`5dY{Jfvr__?j0vqhNe=R6@z1ath{R0!fC*=E9<3l_9M
z3*q^3ot8pc3ARQz{n-)`;oAAx@be3PZZAO{1Um|%*$Z?!`MI-5;C<20FA2wMCU{?t
z%ex3ci*@t!tHR$De9h0j{k*o4yZXN_lJ0(fLkJ{2{M^&ez5KlM#{cpHsqlE#snNz;
zah<n?yyNFSLi)z#{rp@o90vM%ke?U&d6Az7`+10;r}}xCpNIOnWuw%Ie*X4Q`Y=Ba
z_wxupkM#4c(Z)FBxHD~(pZ{DP8Y6r(dTo>+!m;8-L~w+TmqaEYuQ3LMll(kcVx2vl
zKE=<#cl``ug)s({rz4mC${ZA9q4J)ny)UWF@bgUZ&JyozK}10o$aJosKakK5{XE~#
zD|V*A&GYm4{tCzf2?Bw4v7eXtdB2~(^Yc<aFZ1&jKY!}ypVozzqmli*4$;NC($A~>
zyc#At#`wt39}8KyC3}s8{?R-86ZA{BlqL7uf+PBR@q%phbN(1(gP(63`S5NM{a3~q
zoBdp8WgU>u{QS9}_xO1)=6?y@?&lqT-sWfhzhe7-$UrQlyi<Zkt;|ELT@rV<AVT5x
z`T0vff92;dMC}(z`D;IagU&*YvWpHFW87F-XZ#qWAhn9C>KyR%K|lZH=fC}Y$j^uU
z{JWnopzCXfzW4JP^o5^~i1!Dy%oyXSpMMnZF+ZOaa$N9)AY%OlW9X9ua!MpW3!aXL
zMwS#kC;T^z@y?~7_KSFb^)m_vFWh;w{}==0q6A$+Pf2zDkOnEJDM}9VRd&(Ke!hZM
z_4B`?bJfq+k(8gW`MJ=_I{nfKZTOD_-4sN`Z^sz7gr6N_{4>V5<LA46e&FYa(pmrc
z`JRMsS?OkR-_Nlz2094%$j@OvR~c)pTA7ESgt12NRX+5-?Ptf&69YUcz!5)3{aif2
zB?27tvq$0D3fEECtFTYuXB4iiuwP+CVN#eC4k-N2FV$6r7w=BTEAq&8zou|dVf@Kp
zA%!1PxQN1q6|RJTijjXPE2?mU!o?LXp>Q#UPd?WILHNHj+#;?w*1+GJ;->&gDqKoo
zT;d&);{MO(?&n&RR(SJCPZ@>FDtuc>eq7-v6h?NdP9{C6aG?@e4_^zFQ@Fgs6%}qj
z)_6)`e5_qT;ih%+Kt5}n_q4*EOS$duv|C#^uad&}Jv7{$#|7qR6|SOiio!J%uBz~P
z%<~E-Dg3BnPBp>m3MVSuXROh!Z4xk9@(n2rhXOpeu;kqbp{B*sGHQitDqKt9?xjOl
zPGnTP9U5k<Yp*BPRXA1Q@d{5+I8EVng<pq`!u1r+Ob<0sxS_%s;0i;zzF^@|%E;jg
zyjco2QaE4XmI^<oaASpYP$Pw(NBIY4W-HtTW&5c$INZjQNjKBmflOM}JXhgn3O83c
zPhkkhu54bfLAy>#S+$;QcDz}33x%hSHSQ;64P5Mg)Za?s)(W>lUtr!=xQoJVg||aX
zD%?Rhf?iU%qr!%GUl4pz;Z8#8t#UtYD7?8O5Uz7v{)&WN`_=tIr>k&;b`$cd;A=>*
zqx+*(Zz$YD;SuQE`58T7SKULs6z;9?Cu0rpH(_r#68j5+yruBlasG~wJ_`4ZOZq8%
z_s<4UgBzgmK#>m;94t6QaH!xg!Qq0?U%JDSvo>v{!lM)(t?(E$_}a8_3SSs&j1>;=
zH)9Q8cJtJU3Qtmaxxy<Ho~-Z`g%`q#nkBu9=2iGZg(nWqnx^n{h2K~ByC-y{-{{4J
z_Y|HvuGrGY^*?rdT9?shz^m{qg=Z_gr=cGEB>V4xK1cXmK?pxUdD`h9^CV3qJ73`i
zu;+0Gcp2cHyhRv*u!pH_mq2Gv-cp5^!LG&`kPK{;1zf4{Dp+{^)D0Mbdb8CqAvCY>
zj}-n`2;|pta?bvciVK+wCWY22ybc*na`}282->LdCJaV}w<vsA;qMjxRN>DQ{uTpP
z;m;M`s_-```Sk|d6yC0ItC1bcHKiR2?^O6p6rgQrm%_Uh-Y0yIAcT7r>`@zlv>s;w
z;l5D#&nvD3?kk1A7R{)?6}-)xQjMncU+uK-6h5f%A%zbp+@L9`w;E(8w?Qa4LcxzH
z{DZ<jD|}i?(xOHi=p0q}M}?0m44var)SrZ(Q225Vq2zEUMSe;U!ZQk=RoGV8QTUv~
zzbJfNf__!_H^hSVj_i0|;olYhOZWwaFDiTqRS>U}Lw_J{4%N8U01biyqio3i%J>q0
zE8O#114!Vm2#5Eo!q<dD8QvQT|AT?7@GXTODE!c!1NmQt?<ss=;XAOyuF73h0rk4x
zVEdH@NEwX@j*6hU3L4ovw!|Z8LlaG{a2Po{fdU2Sbn56IJ+=f$1c@971p<8OdV{Ex
zAqGneus6WI0Q&>11l$}ujxFKlSUU}k^Z!u|uomE8fC~jUA>f7<4)9|EE(&Z)MFQNp
zsoM@uHzjlgS`1Z&PBGDh0(i*)mkMx3fHMP30p<Yf0Zs~V=>R_-;OYTR4Db^Heloxn
z16(P<Wdi)?+@zxGlb#B2S>fdb%L^jt(&(haN0Ta`4C|Ag7A&<j?U?{q4sg`~e_1Q^
zb<eD413dPxjKMeBf>%Ky#~Fjh8Py~d3YYfyvB14Q&e%B47%@00Ie_c_Tsy#Z0-O@y
z!`BmQ2HdF|t_CV1^LDKO4{I0tKA{8<^11;|5AcmbNvQ$8o}YARoRJn_+#<U)&Up3-
zf4u->1u@4N^#j}>z%QWy0q(Q4Xu|-v3~(zn_>IJ@05=M7ZdTTFf{g?GypZewHwkc#
z@czrvi;XvcO#=+f70eTaw^@Lj$9anY=L@ec`ZG6%S_k-r0I!&p*(Shk1KciNqxJzF
zx586UyAC4kC};@wxZ=U0(<y*;kU`K^hp~bLxJ!VCq6Gr{N`SitxL<%<*KgeoRSxhQ
z0qzlyg=SnTKCOB!z^?}wKlRfcJ$qXp@sSSf8Q@+4emlVLp!Z9MdIxxno%1F-bVo*X
zR>pKC<t>rG+b6(~^bPO<I|trI<BbWkGQj%>ctC*db?JMQlz{<$vs-A8TgW81!2uo;
z=L<^vkL^qw9^jDy9u?r4Z9^jh+-bZ4a^Sa&(WrZX$0IMK|69h1)=6U}BKXZYnG*sG
z+?my)|9Asra)76xQ&i4Y`P~3dh4BRVs{l_6@bmzG9N;wpelNi92Y6Y4mj`%8fM=rO
zGdy#}gl1v9+(?`g;MoCwSS=0ihsFN8GZpMcJ_zuK0iK8G<Bj>qA~*E+s*LJIn=c6P
zLh&vVTq3wwu<y5dONF?~Wph>p_+kbB>HvQf;FU0y$-2973NW@VaQ$Y~NqZr2(|7}B
z_6fQ*z@G*9^8l|4@OpG>fHws=?@rp0@y3P#W0UqECsg&AXEP>&>xtv%xc|7l1@h~O
zp9Xlt<b1p-!>z@w0p1qieF6R=z_>HHU2OPuJG3LfI|JO}wWhlQyjuuD{~T{XvM0cM
zMFI{XM%=a2%|2VHV;B8(fWN^cpmMUx-v)SpfR6|GM1a3TzXbSTfDef^o@<bWpZLa}
zN||6B4)77!K#kCXMTy_TAlD?Kjz0wWXn=nVaCWT_+_3<c4<r`w#E~gK1^BOe#fqt1
zT;-DiJ{91f1AH3$VX^I&Iq7H6i~;@wqcSJ`tl+r-{~`pEUxoY@;PV0gJ-`=WHtUnx
z^i&W82YyKu?h5`X_*a1c4)EmwUlH#u!K;Ed1g{BRm(&W<`9~x-<C5Fr{a5ggAk>iQ
zf5Ptt_<n#N2sh)Q4~0Au3=2Zviig?(c7&t+NGd9Ij|pOcdsOzS?nsC8sq7c7s2osP
zRasNHh)9Ae7gD*f%8!Y+eCI^yuUVD0>#_D#Cm7F7Fgi~#imIHT^5@sxAh@pkT9;7W
za|Db^SGlChrBo)BS>>lxuAp*hNvf>i<0?O)@`IB}w@xHHsd5<+mgyQ=kq|;s<y0=O
z@^{Nqz)Ljo?cNxATIGr=S4Rn#ges~0jLKCd3KS}<{H)4VR4&oT)rSIb(qsQCRW(s7
zT{$H&t`AB2ygGwl%M7WUqH<l8Q&H0;{u(ORRJj&1DjjNZDiL1+qb{{ohSk+kT}wc{
zg55l6h_1Txd1KW*W#jWb@Omm|sGO;CeU-}|^fXjCOXUVC_p=kfd60PFUScCexsy2a
z9sM~WtNu&eKSoC=vS?B<xrxd-Xi1f~s@zoNT$N|2JX7U7m7A$NROMkRH&?lZ${kfU
zRL)nqC5rJusDsL_RBo;E*$IYqEUk^ogC`j6RNgSbXe)g71OpOy+hg2KFg)|!Z%g-%
zE{-Apg35hLhx)19N#$NK{Y62LmsIYo@{R>ba4)OeMffW!cU8HY%CD;YmdbCd{F=(I
ztK1W@RPL_w8!Gou`B(`Jv5>`wecZ*g%90S4Y)E>GoxCYYp^LG^+-?(k2L({Mugcd4
zWMEOQ_O^d&(c;*(;)^p#`lF%RhTsOMJW%)`!NGz<1W*0yfg7&!2z1;AWsJ%rRX%^;
z&3Y7KbuQJtbf|Kh<k2c0cJwLb^Ts09jl^*(j~6mQu*n-a5KdHilFE}sGDUEj;JYeM
z6_PmD1GVWYzbD>3)BNuXfe=BnRGzK!B9#}T-(M^_M`f$HHcxer5_47lK;>H#jKUL*
z4@I)1S0-lf`6@3^xza=fZXtSnO&W-&sDFvdAFI3uCN$Als`4^4^`_8rmEYeLS|J?X
zl|ojjyjsXdf}JKB2*PsniOOqXkdKF|e3*ia)~UQ6eN;NMLFM1hrh&k16v-yR%_?tE
z`BUMa{U7W;(b%T)c9s8C`40L{<((=YLSw4DOXb}vf2H!*D(_KwugWiO44LfazE9;Z
zG5j0qU!X6pCk|}U26*bc`q=HnZ&Y>)r(l&l0Bclvzsi?qWqhad^sF}9>a_WCYDT|_
z#?)zv2UXtobvul^?^Qm6L{$D=<$oH5eo*<i$|qDliYOC}H4}{=VRC4ziN+V={R#SC
z)%p#_&_Cs*%BL_(v<>~N@;Qw3F(pom7m_m=FT#7)Y6CCaFDm~klJApU38I(3oPI(2
z*IePduJT3cxIYBZr<YXzQ}|zkf5+vQRlXwpYFu(n$k~bR(tJY_{72=Ram%?S<hIIp
zMd7Z>|DlOgj;MT3<@+j!RW>nCsyt;t)3S406q;nDR?2*+@*~Vzl``8ds{^zU{Xq!b
zjSs$T%#D)_I21Cfa!h59#$L_cI2Cz4g#WF;4+!t79r9^BF)^t{+g5&!6^#QLe={ru
zr)jKeoYFrXuGXl$pvHwXt}!AJLEr9gQhQQv5siy#JiiDpD8dOE7t{F9ApaHQ;u@FG
z_^!tPX<Sm{QW}4ln=}N8-$*2lOKbeNa27n!Bk2i^pVT-*<4ldqXk1q0RW&ZB@wjke
z1&ufNOe(MO_2T+df*_bkpVqjd#+5W)aD<TZvl>66ab=0S{&umS&X<6&X4@833R3$)
zt){ulQ+16KHP$sw(zuSsbu~`bIHYk+jcbWQqay^h6x39_dxq)o!j(DX0oK;ILSiwH
zr(1YZHLfQ*X&R?%Jh-l_Nkx6Y_fz%F?-#GHaRZH8YP?_98=@(K`ZtaB=QYj}-bmx;
zG`_en>CI?~#u}ggHm_`|4xMZ%a1)JlH2x$(Zz|pv8s}=9Cz57@%>@gU)1kAgjl1sT
zi)P1XJ*_lut#KQT+iKif<2N;Kr*V6YU)H#b#vL^72rQ?+sIj5(3mVTXt#^{RhtmB>
zXZzmN*3pL1?ny6c{M$P^TxTK0ZY90~+jx-JQ{!z#^{x^H`rR~sRrqUyucHSW>u}wL
zyrFRqAs^IEhVYq|dM{BM^-8g~G=5v-0U8g~_#KV=Xk27vQh${5gVeqn_d^8}_4&V-
zf)H-bllt!0b&x?Cv(K%sUdJu%V3fa>>m91`FpY<6JVN7j8n4%Qq{gE(UZnA2jYn%d
zM&tK2o}uwr*cI~n;rXc=kJosD#<9s6Q#5}5z0Bn^GA3#~2~D>weN)R)z{wiFvZX`z
zB;#F;AB@Q_mRhRAJK57<LZw5~1?T!x-qRRZb5+Jnjc38yMGl3rX3lJl=b$f^rdQh7
zVJ@mR$@oAJB#@Fe55q^}A(M;+8b{vCs4}qWLLrC?;S!CPYP>?@l^QQY?fPclot}xH
z%_p;#Bcn;iXR|U^X}ntF?;hl=)%YXW{|Q&&V~w{?GC<a#4W%$g^Hbp<fxCDtb%Vwm
zHU3`XBN}hQ_|kZ{#(Om0qVcC1Z<i>a!Q`5zevYItoLi<Ion&l7e{JZ1bSB=-Ts@^Z
zLU(Aq6C-y@^Y@o|c1f(Ap)_Q%SL1yee+$dUc<-D21*V<p8DDGsrN&=rJoSD~jj{Qg
zmZeu%mj(GZ(mp4rWqhac0ZHVr;6aTKX?z9K*Vz1xU7I4=rp?*`zuM{lLF1zu|D*9u
zjepemn8ued`DlDx;}aU6)c6#}b-(PNG&V!+%cYj`PBuV(mSoFJHvYhH6OPo*Xna=q
zIl*59e}%zod|u<<#d~SK0?iAUpr&VD6bT6W3qlkuZF~;+Unr`^S2g}y<IAF>{F-+0
z1GhV%a}5(0rj8To@Iv{c>~=Ra-tbTB@^eyeX?$Ds?`Yh3QuBW`h7f9v*LA2n+1NYZ
ztuhW!C$A^o)A&A&P~(Rh*A8->AV1PLjENUhZjeolEseDx2ZL;D>|m6&4F!T6(KxE{
z7kZK}$T1N@?g{d1=}921CL7)$1A9$2{6SWNysABZ>M3dbWFt^3Ne%LdqiKsL8#^W&
zg@Rl-=%$kp<Q+AWULKq9Sde!wNhuQKqCvi$lJux+(^ZpN1%Gb4Gp7_%E)m3x$CZNo
zOpr?jnS%Uekjn&_gIqeuPXzhI%b~|5DddQBo?VrR6wXXGxI@#jK`s~Mia{>hAgR3Q
zR0#6ZL4GR8cTkv`Nx;Xll8Ud+EMGS%IK`M)uSN4vQsp2&8|1_w>k_33s)GeR$eU7<
zP`n|vld3^sicvktUyjb6)-Wk4$jL!Y3381fKR3k)q3JS`zM0+v99h8Clyqtdz9hm+
z<=fN^a%zy@4f50=rv*7Z$S(!CbCBx=IU~r8gZzAuXFi#l8RYswZV=?*Qw(?;26^cE
z;viWPI(dEZ>p3ZnkZ+J@?@8<Ma|SRw$W4OWBFOnc&IxkUAm;_SS&-M3@FQZ$(Ugk@
z$!-tcJjn0ATLSVoy(#+^WzM}_v?V$*$VQM~2y%&%ek9&H$Zdk$Hpt*BdbI|&ldKWF
zy^s!q9fSPqs(c7hhQX`yJBhGn)yx-zjKo1+4sw?u4-E34Aiomiu0ie<<laH<7UWlh
z{6>&_NR-zEUk`HolKvS}jPBxX)wmQ=hU+QbkER%nMe=5l-wJY{AomTjw`}UB#--jC
z1=Q#rA*fV8skk<p`UiPVMjIqDV^#hDDHX`zAP))hq##d5!v^_y)2wkp9xri+2@Z$p
z3PHq?K^_(7qlJtS92?}<OS)|fH$fy5CH=Ma+Z3(u=6HEb<`j{iUtT<sN<cC#$kT)T
zRgk|9@_XooAg>7W${^2x8oCliMR_{4nib?+(Vx{d8_hU3$R7lGS&)|p`NJUp*{k)u
zATOSjkDxVs($F>YrJEK6d7%(U7C}MylDK3khLZH`%ucNk5p9KzUKQlkLEeRt803$F
z{Be*s1bJhS_m)Xrg9Z%pIx(<MFm^^0lD+q4CJ=5tM#__^P}>yb%|YHGQQ$2IMcEMg
zX^=k?wa*2&3PQe3$aaj2xMZi0M`cs@ARS5Y3n?}dv<9@_Cz7wH7++%ONyU-NH$nb3
z$R~q*D#-hT{9TZL2=dV&9|-cnARi9$_d%}xPUeiUnTIegx@ONGlUZ$SCdiQ>gX}q<
zjv%D-qjb=5%qKxUh5=Z(_}M82+6SHWlLTR`<>$1A<mVuthP4Ozw;&_6GeJHl3TK1-
z?-T=)p<S~P>lYEibk7I*_aI*k@*hFI5M<<t20tNL7n|%3nM-2rAdmz94)SG~<zqbb
zF}@PytH`bppDD!G&=ly4LcFdJ-w5(Q7^;Q1bs@eP<Xe~w3-RNH_%_Obu~3M8h4@a8
z?*`cl@^-!U#VX1F1^GdcAEG2xlJ5oiKBo6Ot;$wQj+z;dU~I9Bu%KQ)d+)M3RsYB`
zgY5r*Jbee46vgxQ$&qGvC(k>x1c`#c-0l(YmfM3P+#TGJxq~5!h>A!OMg3tw36gWp
z8B~H~B#5G*f`CNHk_8b_5mZ3b@15p<-}CfS&)e12)zwwiHM3!MM|tG`T^tWtK>kbn
zhh?)@#(%}}ujrC9`tP&^$=7dPk8>zdLSYF32|)=T9Elf^P*g%O39qJSQnI*&C4Z;g
zjb};{8hhy!;A`qj#hQgA$P#o3h6F`|D&}euHcif@aM@Ab>MI!(P9No&5-bT+1qu02
zL^$`(wk#?sdp~LB_N=gk5)#rS)RRzBLMaK=CDf2mTEgQJo|I5ULKz8VB~*}5Q9?Nh
z<t2Y#<pveL^LB2Df72$8&M2}i>j`@A-?T~+DoZ%HJ!??$22Fm-Ao%QlQl}&FsuHS6
za3v&((eD4HHE)pFx=Li*)~tvG(x{*}HfJRZK+eO&NKFZ~B-G{Bn#OBOs3RdoLaKzp
z+q1aVttF|XF$q_$#XF4hRuykh>QX!IH;n>D{QRoixCHxN8bN&te^!oUNywIvA)$eU
zh7uY{*qKYWqA~q*J-+h&R?V_=30@CICZ=chAI0DAMN<jQBs7<h!!1i#f8AI6bEQb1
zN|6b{2z9nMBfs5f*FpjTTTA9urN}$i<836gl`u}icnNuQyM#Ux`bua=NeNF&=q|yN
z&_P012~SDrD4~;tWuv?<+$_Hhcqp&pmaNVa{@&MW^eFG-k&J#ra^L^2UD=Jf%&~3~
zxO!54?lTg4Na!iy1qshecuvCe5-NSC<sQnT<ng{~{pC2FbM{bPF9|P7=q+K|kc@|0
zbK5M=<#d8iM|tDM=k}A(U&5Ob-jeW=gaHx;GW{gHEaCJh@67wHUg7qawxwaejq;ug
z#$ThgFBt!mFi67doHfz9`A-^C>kSG2`zb9lPubz6GXd&kdv7xq5=KZEDd8On?@AaZ
zVYmeDrOLwELnI89F#STSw}Nr{+|J2;Pox&(LOo+Q=9XDddlWr(rxmr0VGc7J7uG(r
zJ*`QH^szi6qrDSv=eDUDnIN1tL&8i66D35i`)6d5gvlZSh^I)HDrAVK2{2vIoI!<W
zNti8Rh3L+az;iuM!h8Yd3d(>c%xb$p!XgQu)XOAZ$c-0oK(JT>SEtS;V){}>Pylk4
zGqO_+f(sv~y)UwYXJMs;RaC;nldxLC8Xh!$o+#lX32P;6<l&XDj%h|vJFZ-9!M5u{
zc5X#;1A{UzZP@e4<ZR{vk&yLG$`&5d(cZ^`ZWXk9UX+}FHf3CxoZR$<%pF3k-m=tB
zC49znC*fNOyCi%r;Y$f$N%%s-Zm#=sa^oM;YLE8zFdP-k^y{%^qrI*V>kv@k*An*f
z)aSR~C*g;d*#}r^7R0}iu%AitO)A$SeQvbJp+geV1|%Popsi@$WLM^438Y6P92J0=
z+TJizj?)P%{D~(eoRaWZ5QTy`E#VAvFMt67oRx5nwIYC|0KS)So-zRx3gCi-i}a*~
zTM{lwxJ-K_Tx0F(ntDaTRWi3HuHTW!56;-$9_?Lcbk3ySq)T@s9{;r2j}mT3Aoxj8
zt3(Ph<=<+Q@r#6CCESy6pY>nDZ3%y{Vo3O%HD`b9<pZ(167C2*b+kv$tR^uo@fQ=j
zUEa@CYlS{Z_-nt<dB6iJ;h}_oB>%(Enoky^0i&9?{#U|~KG~Ff%gZD9PjnLkX!Th$
zb`t|A96-qcN(E3PfT97Y0cZgf3!r!aGxo<q0d!p0LJGhh+%_n1K+wl?T9d<#$N?w;
zf5p|Ky-x48CC~#HSSAWi3BVATOjF2Mg64N<({p-DCx8;7OB@bh@;5O8O71<BS~`Ho
z1E?6l69JS7plkr;0w^B<J@)suW|ZmpWU&fjF86hEv`5a@f>sKkasW?q>FVn3(OwnW
zwy;Ij0ICVFw753mpzo`Nhf_%-0Yn365kSiTk^`t7K>YwR0;mx{%>YsYNadncvug!V
zCxAJ!&MCD6SS!4(9q{$U0;n56Jb)KFv|%?bfDfKf3D_FTsp*1WPf+<-DrFi3&@h1P
z0Gb4Ny8?A)Ycey%MjF%SIjyJdiDm^by-@}=Jo8O#$-)**1IQHuIfC|DpdURPZx#SI
z&elADnOialS_RNLfM)}EE`T-xv<;w309^yf3m~7IGpU^dXcs{H0H~A7y#O)~#@IRr
z&_UqD`OP13jvh;8_&ST_?82>{3ZPp6-2-?gfPQNdIQMBWL{ARinnuYUB98ktz1sF>
z>^?6d-ix~yVm$?YLC|7jyxsxy34lr4UvT;g+K++0_kVt?eLR&GRz92XasaOcuswhs
zR2aak0n7?ub^xyh@Ol961u!Cj{{=88fWZO0Blh)10B;8HRsbg#B)_~PvD_H%?Et)B
z16oDSzMR;*0W>%e8ydhc0fq=#qpsC*zwZjt;Y^18u}g<iM+Pv8IT^r|07eHeM(}xN
z#|E(cXlibwj0pjZ3t+tHGGp1u=iG@xa+08o%hUj-1;AvOF47=njMs9ENB#`*_e5t3
zN<in&31Dsj?=yu0m>0nO02Xso0W1*yeEgf(LJ@TCi`!Wgz{I0|n3e{xEPziswqGtR
zVQ!E~OIC=WU#S^AwmtE~09FRDIe;wztO{Ut0OW5FORo{iKMLTZUCr{+eT8cSSSOh4
z1tlkYoVqc9O##2eG5U*+=8*Yu09%=vjWXKrNZeK+*>jB7@j#5Dp9HXzH8X&VjBfy+
z1#mQgV*%_6;PU{!31EK!Ux-;>1@LtMy93x0z?TJjt}M-@lAl@|q<aOErG|K407IJi
z`VRzfFo17GpxNaae|wBaCm#ynZ~#XNP6rc-uAY<|J08GytnC4u6A?cVz^MROZB7d1
z$Hj?Y_q1T1;VONy*`?+|$r+^I3$gR!gtB`nfXe~g3E(b08Nk&5ZUpcX&&Uzqfj<Or
zO&D-HW?dH(e-xBM!FG8!ITXOH0Dch_@5W(&3X|toA@du9F3wb~PVH|C{JWrJ_S_%)
zBY-~x_)kc3Uw;MgAb`I`HNGe4{Q!Pz+M4D1VZn<32JlY-jyG@3wU|E%LF|38@S{XZ
z45DxlO@qh@qDT-$gNOtX4Wd{O#e*mpMEM}3AOb-+L4<<{2K^6H)F8AV);}l`3PKhf
zG8F;7tJq90;8+3}f|`Q9TwO)Ms4YNjm|jAF-ua1-3s5qMQUx-l1z7%5y)p%yvI4ZI
z(WXKW6$P#uMC<m6G~kIKDh1IzFS_RkxpIO0lR;D|z%;m;z^<V6`Xwg?k=HM|^($$~
zK~xW-eh?W!)Ci(x5UD}Lf~X}Vn-2E%v(*lwPJy-*`c3fb7I5MMqzTWYyQ!2<7o2*6
z&U{dWdu$+Z;~*La!EPhb9lW71w~!gcm<L6&g2)z3j#5JtAx2QDc4}@Aor35bL^EzP
zh!#P#46?rY5otvy1d$)a{HF`E+eR?k2K^7h?p9093u5Ju^=6InzmL~W3=y;!zS=Ox
z>mUIA)=_}nW4tawbPb|s5HAGrl#qWqi0%S(3*x{t3a394L=WMC=L-DKEj%k^`gKix
zUZ^^}Ek;Rd?iED8Ao`2Z7rCP#`Uu=Nh&k1KN3lH$;!8oiB8CPC`m&%s+b7m|y6`}O
zDfwy;uL*qQK@oNb1@T4@<3pGb!ka<76~x0J{t4pkAO;8VQ4ni`cqfQ=gP0k_tRRL2
zF*Jx#L5vP!81uhvba)W&1#!p9<$Hi51Se^G>ybg68{=`5xJ`P>m>|XmF)4`2L5$;a
zLB0<1-wr)<CgI)~|82uF(WHqy7YmY!A4dIm5vK$(UC2xobef<8Qu8@9gRWZ~H^+LB
zvEFPtA&A96ED2(+keMIEf*|Hm+tN4<;HTRQc^=b}7ID^C@13#Dg9~E>lbR+k4Psdk
zA2Pl{EN6_y`UZaxMB~M=6@tDmXthYvTVjZ#tAe1yHROkLR|oOIB7X@s?tL9oH;BVQ
z90_7W5F1%2g4h?trXV&4u``HIX<iT?2eB=P?Llk}qSyT7!^4c9W9Hj+l8P>gAM2&>
z5T<@2Hge}|(Vk1<ci+nVEQnn}><(g25TA=7I^hczoF)G1Gsb#djNC7S_$r96xr+tK
zH24WK_r-tebCi;&TjhTf#Qq@SZqm2Rz#!I*^@tA!!FP8P&L;esmUO*#5;=!xuoybZ
zZ3b~6h>JlS7b~9Ptv*l0yUKS#oCxA%5I>Cd1IH!kQi3y#co5$U;j^p&ZU&<%kMjoY
zPd(3k8|V8rbzU;*r66tu@lz0&gSZmJRWaoU)*mak;W)4JIFI&U3xf1|5I+h)O!ICA
z@pBLlggo`!V%7z5H;7+?_%(>%g1F7Rt&{Y-NW!P;Bz;`RH*ZU(PUas4v+fD-XApl0
zK+9h`R`h-lua5KBK1xaYn^`)}n{%uvhyD%XKi0GmYKD*y!eb$n4&m_-3Wbo!Pj5p|
zLns_Vkr0Z9Acg$z6&DSmSO`~}Cf;nC$SxakKnw*#2!-(BBxB(6=p()y;*X#B0_<ub
z=poo4I3XAzm|}`0<T*;QD^2-e64HP6b>4287!ILC2qi-(6~Yfq6CdeZGtQ#`M=3-3
zG9i?uo)D^pP)^LP7{U`FlouB69_LjM2Gm$wxKap}g&xj2DU?trl~fI(S_p0kNx~kQ
zN&)f-A|XUWNEUo*paG=Io=U790s&=eg-|<$<{`8Qp-u=XA!LS-6+&tVu@LHoP+!cg
z8$wzLaWU)vdnR2BQOP6C86h+Zp>YTeLZI0V#VCb~Zi+uzi;~=Rw%|7nAt!_;Av`jb
z0tBQ7ZmPLLpjm;(T87XngpMI}q8~zN6GDCn?LufP=H`X)$dixdB+{#ow6zc6-2+8E
zp@&ZBP+-ZV*P3(=p-Tw8LU>UyyN2+r0JQBX0lJ0ov;f@;_|FK?L(pIym6Fee@O;5&
zPXS&K^v7{tZvh5|@M;Ks1nw(nKSBEoN)0awFhJ0kLwKctPitQjc!Z#@hwwiE1_}DE
zpl|RhAOQ8e6~fyB4=&)m6GF!C86098BA7!%7$(5*0-5&&codY8A&e5;(FLPpLKs_s
z$AxfjoJUoBdSzk=Q$v^*!lV$`Wt$wr6do>q8)1F|yVFDdw<~7|8cF@XC*0-n-s}+O
zgkULvg1I5gqs=k~%l>yK=7(@DgzrOG5W>O`7KN}lgik~Gj7x;DG=%jbY~a^0oanL;
zR)p|=$p4Dka$+s<S10-bk6s8Lg|IdRc2|Z_alE%$;8h{;+gZ<EOj;Adav_`>OzP{T
zP;4EO*@-?oPp8^nRefU!TSE9agu@M@n?l$e!p84X7qpcrxiy4sqWeh*+e6qPG;`^4
zZ7hzy(^>DlEb-cnYC8+~yF&Opgl|JQ6v7ug1tEMB!u}BUg#7QIemW*$ZwOz8@RgAN
znrHLN_SD11uLzRv6Z}cC{&i{dKnOj?C44+ELjFNc+2>0h4&jJ!{wX1OG=$?Jd?)ZR
zL9g^Rf4QDPNm_Lxgp-2F`xE-%bO>icI4ic(x~xeV>aRE6J0HRY76BP`WLym45^JN3
z;xaDte1&kI(G;Fxe6R9I3We7~_#=crMO?0j@S^}X1pP@+I`(D=KMQ;-gkLyI;NJ!P
ztw82B<9?$Wh1u>1=3PO_{ELYvqD;ThRQjB0)?;bn-yu9?VV6-@#y=qpE)h+T@tBN%
zL-<eFHoLR_C^tB(knCs0{L@v3&hx)BL)@lb^ux;0A~Hye%J`~oey8!CBqJc>Nf}jS
z1Z9L|gk_YFA&cp{3`2$@Lls?3#?K<1m_nU8rJ6D<8RZ(q92o<*CP9WRW5U|B6Qh&6
z9!z2@`)yLr8Xs_vC1o7jmQz|rDWQsXGBY2S@o{IpjNp{zzQof&<z$pEz!hXvEWl3)
zP)SDRN1Syzl&>nInhaM)l8j>I%vtHJS6b0}MN-x)v51Uh8P#P(W&HMLGHsyzW2cMO
z5X;q+@hHz}WGxx5jQ8F>kdz`LRYo@%Ps@nOs4F91Mmrg4GU76t%E*zCE~B38pUQ^Z
zemGiRMuv=$;}XV?_vmDXsR8Ak=&5ACHIhNvSVpD*#91=31#VKnnK!d=u8f-NTDO$Z
zN=7po&1DRE#y{h1Eo6*s-~%3q)-u}4$dl1VY+<=rkwbJQzkt{IN4LEUPey0iPm+yJ
zbY@wzgN(VG6FSQ1By9f4PGO_*U1W5Xv1XXch0eX+{HcPVbeHjrj2C6}meE7Tvoc<g
z!S5q66<H#fLeI%~UPhzF$y~Rm>^~#GZ$|CCQLUGZB|{67*+)iST39doKN<aG^q29P
z=)S}#+^F^nQ$@xA8836Ex2sZ~WrS2I=by@5<Goj9kPexX_qvcLlSg%sj5maZ?+D>H
zWxOThgxLPXYSDLOyenh9j1Bag?3c1pGDgc7Dr1<8;WFM6%#nh|@8?lqguuU!_tGx6
zXLk&pEMuySY0T$Y(Qz`ybC3JuKWvM0bb^eDGA4;BQyA+e>60HREaThU?cLT>ze}1f
zV}^`HG8W62Nmt95Plp^$;`G@<c%IC+8GYO4ijA-+UFzxb2#~|JKnyM9+}b&G$PyV#
zWxOx@->zIHD8ULD%LU#rD~sJ*d96s<KH!O#u~H0Om{WU|0ILgTt&#DOz-t9vCuox~
z37oi5<~P3Zql_CeHp|#Tm&!QFBPnAmV>C}^5Vy(LF5?LGThSddK9TW-jNLMJ%J@{q
zXAG8%mTzTm`Zd)VnZ0voD}D@AX-LNBtR&^5lmAF!caMxOWgL)kkTplf*E06X*e7G%
zbGdzgPMurdr{8dBO74CcWjm*{744TMP4K>2o%^kfLo(j%opzWNuXA+&7qJ0*tr3q!
zM(xPj`DXS}mK0W}S=Ely=7Ev##EEV$%KNK7s5Jf*H!I_Nk$$IToRM*s=i<9m4zUrO
zmvKSHB^G?ve^D4&8!Jxm0{h$ZjIdo1r{<cVS7rPl0QvPMc$B;@qs-1Y!A~-7%6K5-
zZ&paL9QEH3fxac<7Xl_TU47n9_}^vR7P-wXPXyb}tn|Aw{t!9vUK#UG8GnhnJlFSl
z443-#|Gwai&PaYpSFivoD5BtB8UOLHE4aO^FtaE@@e{0&g2x1yeM;eSY+WXJ<ntUA
zRs5Wk6a*9$6EejGr3_PXdS{(tK?NZNvVvD9c$xxTfg&)wssIVYGbT;&R!#5>1$!oV
z7bkcowN3N}&u(iga1>NhQCUS;K?wz4D)>r4Nd=`8zr1%<P+Gy`3Z7I@ML`+GzerUS
zl%T8t<rI`J;8YM`@WVWgK0(c*Te)DAHx*SCR8!DYL5>1fL6U-)g1QPK3Ze>*l#JF^
z5T2Httf0Dr8iG?{qE}Oa(LetBM6X7vXe|YeCwkd=$z3LTl&_;8MTilnQq`&!lu1(%
zSCFBgff!0xP)|YeZZXPK9GeiUnp&UhR!wEMAy+9C%~Fu9ppn3h1tl|60Ln}h>oyTx
zeu<YuxeA&oXrrL5g63igs%@p9g}^NpEEBdpqOBEp*PBsKo`QS@9Tjv^&`v>n1@o7*
z_Y`cK=vBBKr@)<Ebzk0-(?J30y&Cz?S557#V5+KhQE*%+Y*|O8%u@=wDR^2zcLfs_
zOj7WSf*uOqQt-BdXB9lB;3WkE6g;n>r-F3@lY1+8LBT73L|;_Ue_-;p)rEU0`0bVC
z@WABx7vk?e(Y%j>zBH*>t9}$vkTA*nb)v`ayn)G_^)lxwctcDX$fQ#6x`O{Hc#RPp
zm`puiUx-uf^$T%gP8lRtq4Ht-o4u)k`q?--Siw6AMkyHmh^b(hg5e5=C>W~X!ocL=
z?enRD^gRV56j0S;7vo&w?7jSv3P{Nz9iw0@13J>=&^WOcXN?!;(ToWS_6n=G`eX%D
z7!C!?=}86C=yL@N6iinzgZjmmXDXP*yM1BOYz1?K!bkh+FfjR6k#<=NqVxu}aTj?<
z5*8|0#Dgis$f3Yu1-tL%)0320$`uRO<#hUOg~BfnV~c{16?~xJL&ieEdIc*LtWvN>
z!AD|I8qXN5rZ@ICBUoFo5n>Ke^9BV)2PSV+ut^MYQMzUAh4`)_?KUeQa3*<MnMevg
zRq&aD?IPBni0JGP3Bc*~2PW?no}qiGd6$CESrCMizYvtZ-7TgNaO3pkBZq&@Sqd&G
zxXfMLsJ2hRF(#yfZxrlTaDdTFPA31Tf`baaWr6Bt9O6M>+V71YR?xCj?#C4(q}y{d
z$>}}Qe+HlR;X6?lPANDcz)40y)bP#=^;zNQX?DZWGYq-_#OD-zFYx&S&IJV*3vkRy
zxuW2zf<F}eso)0%*A(1R@QZ@$^v1TtpA_6w@S_4g(e`?%*bQ3Vy)geVhwWzuqC<=F
zf41FwKfBP9%wL&Z4WhRd{H|cKmiQa1)37K3=^Zh2S3#HG(<oDYl1KWNf_n;76`G3s
z3LYpZq#{wp-wGZo_=jbmb?LPXmX6kMB$NKfYBR}uOvN*kyaW|DGox%3yS8E@r?845
zVkn?u@FcIOief5?tNxTnGLnj4y5`^fU!1B4f+|8P9vc*wRm`5`DJm$&E?49fU4@~d
zgo=_XOcfUEyby+pj#pc<IRe<K|6I)GNnYFOg%3~iIQP~huat_uzvPusQC6&2TE*jH
zi9-DMieK`|sVL7q7R3`PDhL4@Lpyh7Cs!1d-DQqRwNI+3qT&@5165R2QB6fVRs14^
ziX_#4@GVD0L`76Znu@rJWE!I)MMas(UJVsBRn%5dN5w~Pq|{Pz<D^n#vNxxEEL1-B
zQTycUs<vr*B0;K(n2NgeM)?>yq;)2Hr0IgwP(>pZ^;FbXkx?KM?x}NP1EHCcY>ic9
zs>o6?N@&Oyl9Xv8WC)rPv`=Pp%O=wDTouh!G*{6=Y^1e{HgwUVW-V2;5`g%NT6t|%
z<PJ_t&dbPW94C8uD#k6(BshOF_QK3&?NxXxIxr9_dZ>6-^?xU)lZvha5O-G5MfHDO
zhpku-<tY{2R6Je4c}7Kdf%(Hb6sUMUb>;V|&#8D`ML!k&#ZXTby;QuY;svJ1`BW!n
zQL?ufVz;k~J_Xu1_t7ZVeMv9}sQz#GJX-x_!J)vbDqd4DMdjrQlUGDvSMi35H&y&k
z#UK^@W2T)0Gug)KvA0ybO@FEwt)lSz(ZMQ)t9VbvJ1X8)F+{~s!S6iT8zw-X=QAnB
z*0@Q=2%aN5dZkAGNc#C&QDXA@PWDL0s2Hzef|xRv{uF@xA(Op{0#kUhib)0hxuf$R
zX_%&By2@{lL_Sb4L&Z!L3sfvrF-ryiC2Ed}xeT0&brTc$k3z2vjn0_t%~SF1WN$u?
zsuf*7*(2tkI$fFUEfSn%Dt1qfE>^Kb#iRcuTB@QPqQuLEPX4jf3KfN>c<&4O@>4vn
z{-KJMDpskOGcWR6q3CKR{B$3XuI1_~wpYQ9Dp;>#gNpY{<Ac)JsA7|f(-zKH*sNlU
zihp$ctK(x8TUD&rutCE%PE;{K!^;|WsQ5%hLk*2I?4)g6of}v2nTlO1PEi#T>1^zC
z6?@{j2UL8)jR?*j6<@2^tKv%)Uy0GGXJc=ijlJ_%+CCNE2u|AQ%>6=`8ptO-el~WH
zj#6<*#bFgkRUD&m?^Z`t^j@ii&c!IhS;tj;r{W~tH7|?no)9wBKuNB$vPYC+XL#<;
z#V%9wPSRO{&#Cxc#d#GM=(irxOVs&mlrk4p?C+gRO!Ek+^NNbADt=ILO_+B>#dV?K
zN1n1RZMh2dKQe~kClxfC;1(+wOOpmy!>=lSQ=w>3HQZM5I}4_ULK^O<xXX&C;-QK^
zRQ##p9#iFC^Kiq=_a93+TPg1^M(VMYbAKk?SMh))?$4y|N87Ry{3AGp8fE^c;$I=g
zi(o>-%mfX8wo6ZWEK+}pm#CqzhT<9|4Mj8*)qHKmG`w}W)$ziuFD;B;Zjeckd^JWK
z&=AxR(m+h6tbwC#nq~Z>#b5GrxuT{)*YLQ8G8zmGriQSF5*jScH_X=HXn=+<e@$bf
zk+fmrH>ss*Qp3!W8frDnETy5e25RFFyW{?A$F(?GRzo=rPiUy5p}d9)8Y&7iUTo+a
zKuKzQUTx1=l?A_whN>E#6x*Q&3UHykLcZCwBuPU=Lp>oG)sU>Aj)oKs)iu-*Q)+A2
z+Ay=GP{O&jG|&d>;oLfPWx6O;LriQcO+#G`)Lg!{)qaXc@W>T$4e3IF7Unk0tgj(M
zLjw)${@Oa7dT0+pV-1;_e}~gkLzaeY4bN!kp`nR}rW)F5Xs;nhL#~Ea8d_^;rlGlp
zyBlLI=#b5^Rl_qTZj62ICJ!wcX{q7Ut+CzNncr4SZbOqa<ZD>DE~~AE{!XM;rTBn{
zMbEg&UML<c6ZbT9(D0OoZW=lYg`G5X)<9KME<YJ*GdQ=4hOQbWW@mDtPT>goPivS~
zIk~$AuJUM>v^nNfiZ87YeOANs^lJ6w?vF>F(?D7!9A8={Le2{sdU4|#dTS{8aqJ}x
zeKhpd(2x00DL(po63r%{{{9-cBev63lPQ@HmtWB^P{U{qV}zGp)$k6%UrPTrnXhSh
zUBmx04ASt1hPO2g*6^l=tGiRTTuXY3D?S~0gfIS{^!DJw@05&l7U{bhhG-b7VSU-i
za1HNi7*Q*E7&luw;+2gT(&8g{K>jH@O2bGEt4l{FT+A3+B{FDM^x4Xhu^PU*rcKu{
zL&G>>(s&IMH2nK`WTM79H%!qmiQ(%WA?L-h8T)ppPUTrZWSWLk>#_=e9OKaac*aZ(
zvoy@sFh|1`JF*)QXH8b^r_$$Yn5SW}h9w&2Ga_H7ZXB6Sx<JE14U059>QaVa&!CK@
z8kRB2^qa=F@%gqtuKtwtA#<1;d@|CoLi7U~`DF6@Rg-&E&109Nq^r4TwdA!7*;DCj
z1pY`vsnldjp01U=PGAZQYZl+AVH36Kd=v$nHEdzJ>d0dK=K<ki*J0?`reQlP6|;!-
zU&ALFPI9xX|4c{?do}FiXwS%J8usw)YuLp!)9?ik;MgeJZULT}9X*tq%kEbizSeN#
z{ldf>rzmFYTqO{x@nqy14f{15(Qs750SyPKvygR2!?)c27++7HGBLjG^LMl4!%Xbi
z(SsXeDZ68x#wy1&e8*Worykc37#pQFik)E82BZ;3mSmmQa7M#54c9fC<(buRk(Ghj
zwO;w2sdBE>1)=afi@@#}rxaR{#pP(&WpZw(UZn#yeg`tb_VTV+V&%vW8vdFc<tjgN
zBN}dL_(j7{Ldnl!U7B}ObYJ*9_Cm>c)qQa){8eyn3vc|!4Q_~$Ny*;@|IK3YKbV#p
z5_J^T@t1~s8vbG8(c!(*?rV4`zyl3`GbQR~9NwBWzi+cY-$}l<J!|)XwEwul?O7#n
zr#_~m`Wr@qjvXVT<ggXe{UItTqNAveppKB>aBeXj#dZEB8~RT1sEsmY26Ry2gu6+y
z5L0w0@A|7yp{j#?O$Ws&Lu%@<m^}Px9UahN>v%#(B^{2Au#Pf1%IcWu#7pQXrQ@Bd
zk&+y`8mn+2qi_Ap(mEd3@%n{~dG#~d9T$qEbx$v+qr8p^w5n?4TK&wmPW)i~%!)cl
zDYLy@dS#)fnhsaTlRB#C=%hxf3TDrkOnjkTdXkO^1=L8g4o-;*x^_j@A1kuhtuBVB
zjRG}w)Y4H~M;#pvb;$kGQgo#1i0eq#5z~=(s#RSbX*?azH2ZsV?x(+}lEXG>OKv?K
z^@TtNH&P+K>sIRZ4KZqHAea=OSa^I!BORRBSjXN!+NJ-ImaU_Sj@N|Kn(D~W@sy5k
zI&yV1<3t_#y8lo{a~-X8wARr=$BPx>Ep@zCDc)m1E@>MbZFM~NNfy6P{?+|7a`-d{
zrx3TJH*|E?(O!qAgPab6b`+Fi{Dwc7U36UT8RHWld|sogz>m65>*%hd7gyBrjE){U
zer=Zff{tf(ywNn?lcWEoJ*VS&8o4ctPYn!qQ~8X^FZD7j^li52ZW@Jq>*%9nfR2}$
zR62f3&&<7_)}OwW<Nb91`Gt>~d*r-CfseBYUePg;I)m|n%!GcLwK?lmogW-z@<Esv
zszzSd@jo4dxVnz<%sm}%>Uc}XP#wc`R4ttRwvNFJy}-ZsGEb*xzN=%1j$-vPvnFKl
ztNtD2_=%kOaC%S2C>^79K1J1l%17v+*=>hskEAn)XLCDa7>j3&u{y@-_@-qlnb-Sd
zE-)h;qLPU^Ch3@~W1f!5I;QBD!Nk@vl^MRQ?KB<yDn7TLEH&WMCDX-DPnM0-j9EIk
zk=bIoXBO3-BZizlzIpR?EYPu3$1)uYbu7}cn4uQ}bSCY5WFenZ;PXMt(lfU$s@<b;
z?sB1Ug%G1{9Q{zoN|8=ixH}!IbzBnNH99^LV2_T&S;=d4Y}Bzy$2!Vf$yl#rgN|e2
z_I%ufkLr+a*0F_kL&qnq|J<V#|8HdWHXU1eqK!y{TDhbP<@k0T<lizPJ9T`j;|m=e
z`b@_z9V`CV;&aiZSoKd^QKqaJq3~{@ZB4CQcE4mQ>iC++LC0|&-|5&#hwI>z7l(E1
z*KvS{UFUC%;J1afQ}^UnUsU^6PMnki`<ulNiH(ox7CEBhDD7uz-Szn#W#bbQCv=>o
zHXUbK2^ZCVx@o*?pUhJ_PKzZN0%qMg9pCHde>d%dj`K{^ZCQMlXX|s#W^eTY^;{If
z%xz}uWw9b3%D5_=`2(w>j_ZuO8TnbqEge7VxFI(9la8AVr5va0IJ$Xr7CrL|50Q?$
zI{x5}nA=q&T;g{fw?!%*Y>|4xOTQzQqXA5wKUw^B+}H6y$30;rw?H$vM{cLX-L$`T
zJQVW8qn>YeAyuZq|LI6D_@EFx6OS1vWMGYfj|?OlC~TmmfmQ~J7$|Ds)4XT{1H}v!
zH}HhP$U-s@Fu<D_+d$C3{k*7ZKr;|BARABwhs@Vj73SQLh4`!-48gPnH3j8p(xq6@
zjBHBISSmXP!Ui5UP{u$B10@ZV5@O?~cqQf)rcAtrSz2%==S7!I@yZHZ-arKb${E-(
z#iQ85r7|g7MZxcvkzLuqlLl%TsBNH%fvSRE-9R-1t^t}66`UmAlL<imFBOVW!%?9y
z*}$rDiQGsHZuUe9M{5ePKc{$g45S!{8%Q^hDwuT*q#1|_ObzN(-=s&Da2NFif8eUZ
z83yVX$kd$b-4!--iG~Im8E9-E(?FJirUr88ipJSmel&lomrW<<N1GUUX{tw%YoM8d
zeN(*_2AUffGu2x?)gz^zD&3k?$&a2Jk<!{g8v}g}^fS;_gp#9O4CEPnI2Y3|#@ZR^
zWS}!M!GI??9R$59^mJsD8)Orote^d0s`veODMOdaT@5^CpqqiG4LoPyc>~=I?0h@^
zjDa2oYA$Q3O!IA6Q!ktJS+QuPX<knQFBo{yKyQZZL`pAiGe7#Ep)b>FsoX9xyN`kY
z8f1TSF-8ux_2)JXOfWFfzyJd;8+?oo?-+Q+z(Aq%Ed#GId<Nby@TP&+4b+?F1?y-3
zk6RW73@X@f&uJdjVwud*cc*!6>Sw>rP}a{Tc-O!X1Me9aVPL3%VFrd9`0KJ<zFTx#
zV)pE5-nwZXG3iJHqYR8UKvkm+kU7S{Sg{0`rp@D+3HAN$u<f1Z^<FA-)+7Uy4J<LR
z)W8%2Qw_{DFwej=I@!Q11G5dxFmPp>H&ghKo~bxLl^W=f&~(pQCeNXtg(oXc_vRZ|
zU|^Af#bQOedZ7WX5})onJhm{NH{GK%E6*#u%)oL39~k(MN4RtT3NAX`tGl#C@9EzA
z+~#!e&F=Xtnb-_v5AB%=EjLZ~UhJH|nkm=9q&&5)rDg+<nJ8ppy@3s4#XANz8rWpu
zh=HR9HXGPtV7Gxi20k{hm0O^gfo%r1i}e14WhB?!!SIbt8Gk88%H#7<_e36w&xF7(
z1E15Ymtv3j?{`lm_(E`azP>c@6&-G1ztHftfxS$4F>!A9#7B+V9<>7o4jTB@K=pZr
zFJ1J{?;%QxlXcj@4FNtHk#fwyaRWaXxMtux11Ai8Z{WOvlLk&1IBVdXSpE7^`LuyE
zVlA4-c3`^qNZTDTMEw^GTrzOk03|On(0S1xrhETTEHBEPUNLZ0OlLQ>bN+P$KN`4Y
z;1?QG!2el*p9H;Wpz;ZR(ICodKs$dekh#rja4Ghi@IQS*f!_t@_U{__!@!>+Cm$I2
zTY$gB`MPI-DRf^@=E*|?|L}ZKenbk}zufhADJ#3AVur^ekYK`{;qjzr%<vLT6gKgs
zi7F<Fm?&z(G656COcXZ}G9jCM_S~=elIhccpael)N@n=xDJE1Cx(P!JX(m`m*DaMR
zWMl`rMY&C05h!MwAZGQmO*kemjwmPO!zN0ZC~cxdf##B??^`;7vqp7EeOz?Qn8?V;
zW+St_i3&pa3ECz={~2EX$Q1gM9;+lcl?${@o#9nAQO!g%(?7PZi6j$o6X_-*CZZ<l
zm`E{^Y@)h}8YXI*$p1W%^_K0!8D1^ZFT$*@wFMZOnBBHp^wSw0i*2fjx?+_Wy_X*y
zd@)AJG!wn1w_{^vu4kgYiA)n&G~Pr56OAa@tw}=@oKE3WGyK9nFEN|l#wMtlAlpO}
z#$u+IBh)q(>)x8-aS6`N6}u=u)2lzzYi^>2P}tH$YZGlubeZY367sLi^xB#*bIp7c
z?SxF8pkrqGD{`UbGd*hSV4|amizY6a=wza^iDf31Q;&(RCgz!#Z{jHv-AoKIG1SD<
zCc2v#VB%#H&xpN0XX1GQdI<U~9XQqFb+f1F_A>FJ058z&ncjCZz1}AJnCNGszlpx4
ze}!d0nJSz`!1n7*AG{=H@w%LqYrbM)kcl@;3^eho;J;@2m%rCdthf{_Hp{;V{!egP
zcFup(#9Kn<T@!B$P-&JoSU8Oie8&X4Y#Fn>n_c|EJIusz6O))@Cf+kK!o+B*5<z74
zjx;gK^owL>13#HN=10ex7-wRFiHSnz;-xLeGaFB&P!;cOc-FQpZCN+hWLchKVycN*
zCT5$MW@5UDnWldpXPEwluj4HLTEkgMxh9$YXL;|<^5&RWILn(WG)I@oex~I`7m)dA
zEfb4O{vw}uh{n(IIP1~6OT_3>I&-#1&I%LnoA}zqUK1af_|U{Q6WdL!G_guJWV4CY
zCf1l(YhoQw&}`q~EI}XfP|Wsth-!-SzTU(J6C1^pO^moG>9mK%jq+OrpOx@q6P&x1
z)nK+qu*1YBCU%?HV`3)_Gx3FxWJUeV#I6F&h*Qbu%mJ}FDbFu&nZ6VPUkS>Z%)2#;
z?KANWkBr#neiH{+NxGz-F>%nux2!fMj+r=Q;;;$E=m=B#rTpQuJ>q$@y^XW|E8TGu
z-<ddR;*^Pfv%M3{c_BbdF}BmJU~_zYUvQ}ZEUV%iKS{n9>vH4gO<WMT-W)%0mrY#Z
ziLlV!!c`ML@O)XQYT=rR>pX)NbPGS4xMAXfiN8(!M6*r&X5zMqpXut6DZiL_ZH{+~
z=WC9~#{B%1N<_68H^=*39OOSt{AuEjiMwKH)`#_Cbslg^{$=8xiT#3;$D<@_$ggv}
zhbI1E4YyF-!oSQnUe+xnT1c?)nDu|fN1E&L#*(#;g^Q)2u;rJgB7#1$p{T$t7m|g5
zg`kCy<=3c+bG_!`@+S)cPFD!>qr7odEwKAYp<%(aP{Be)3zh{~C};Us5Zi)dp`?XU
zqPuaa9JWxx^6$(!+IX&?jioKzDrA<iP*%u1E@)>l^yq3baIRNgFezL{WXls4AHMMQ
zQz0o^Wzl`o;(u4gvNxI4EVvdjEHto?WFcZ9#X_ousD)(9zc;RJp}K_{7RJu?Y6_0D
zFkW$_e*q<@mWAbWJpxMB5u-cidNB)iEj*X5*SC;nA#Nev@~<+Sa(b@Exx{SsEc`mx
z&l&Q0A#P})k%g8PT3KjpA=5$=i$5CU`#;M9)1J9eWS*C8q0BswH7#|Xmt!H<LNg0(
z=6Njs%`N{W0Oea)=rzyd^=Kq%UbHm@EOfNc$-?<^*=;T4TWClBUy9{fm_N^BzOnSR
zx8PamAWUWQP!H$s5E?Gd^Ez92%0f2_T`Y7JGK?%`I$!cHaQEkVyt=XbjD;Q+W?7hR
z;aNJt!aEk;weY-!o)!jLc-6uSG|xg`3;iq@^Su`>|30L*g_ZTQ3Hn%ga=zEAk&pW`
zOcq|Y@QQ^2LM(5-{{n<BL*nzj-t)bm3#Png;dKjdSa{R&%jy3FrK&*|{!a8&k-kMs
zmdb-IaQfR^u1hK<`J!g%e7|fCu`txacncFO46`uY!e|R)EW9T+JHo<95noo|hZ)(U
zEF5p-7j~*;cdUgu^L<y36Efs*h$%7A!X&C)D$lSm*}@bH(}ZDDh1loyvuXeFTX~$w
z`>yF+RQP=KQhBBYDxros7Uo*mZefRoc?_0?4=j9WVS$B(%smS$EG)9H*uqkt$8OQ}
z^S!d2^OrDx8f5cUpLCf8);cb+cfR*N^ZccJ@?)aD5wEnc%ED#~TP&=$u*SlA3mb&0
zk1VXSz*$tgR&Y3xn4FCT{7n`v&i7ba?+LMwg&6DSHVa!>>lXNPKkt%Szk5Dy_{73a
z3;Qh`pi3=$X5kA9yDjVzvp#18U&^m0rcgL%fw#xPmt4rgK4CViF13AS;cJ$K2HAXt
z!fy8k-ZvIDF7OU4@P;q&<}L6JTKLw&Q47adfd%J~g~Jw(h*dT;@ROF__-BE4+`@Mj
zP6_@AK~Hk;4YEru^g~&Dp-0Rm4lI?=vOF^LOQLH@e9uEflN@~G-~zYL<6z?{8<#9x
zw(uwL7jT73b34HQfFD@=Swnytz;zaXE(8RD8y0@DaF6B4;-~re*~0G@A2!4-=I1c?
zrIGG$7JgxguuycmJ87I7s@mev)uh`N>a1{&-gHB=+{<&^$5yy^nNjq1orFIv{Ka*L
zx!yQ8akM*PvP=Ac`OhNn|B(wGTKLDpe=PXG_BL&+uW_qgbN{7tX8FQglz%W=2<SE5
zEjh=nw9$QanA>w!9)F~tzthYgS>#W(HLjU3;dl4O75`U!=a2WTl7NF-%sLy~{x5kU
zKnBVK75rybpaKpM_CMMM-{$8F2-f@alig3N#`umxlW(J|ibOsg;TD?g0{*wbZJ^su
z_rMO9GDGIOC4iDZ8K5js3MdUc4*xG>ymM}YbMDwrT<@3qgBH2v>qq#%Gv$Eqr?}0h
zx#gy~tLj850#5+d0IHsL!L0;T2A%|d{mVVL+N}b-5RFx(Jrmq@C!#MLiT=CaB~Ah&
zKom#@R(#~%X%+dSj6z!Mo?EDKq|2e`@bhj>pcaq^<O8*VIzT3n1*8C}Kz$$shyith
zIFJsc)lEnPx{UH&{l=z*vBTU+Igxrm%P}r-Xr$YClABW|rvcCiU=$hxcg7`hlzwh3
zI7e5yU+#0W=`o-g&>U#Wq+09d00VCOf6GElkV|`tW-mG3^wl|T3!pX7hN}Rr=*Bs2
zy`%2xNp73jzI<CCyLvjq$JLo3?SS^c^FU9)13Cat1Koj+KqsIp@RaavXBsxo?ZVxC
z=1$n*GE)4{7lz}`b@$|NRyUyYVn3A606qBcF2JDN#AlgH^WB+EB7cAGGCGWG-BE7I
zr{gb>5A+85FnMak=>Hdi*J>$6Gb0CosLyU+pdXE2=rumzmS`Ly=r6i2amxab^D^*C
z0UijvT7X{zE?$pPU=Z*I@Hy}W@FwsUuozgvzfcAS1CxNsz&pUZz-V9$Fa#J1yhoqI
zKY+t%(n4>zz#VGF$XVGrc_e)j%^4+_^((emR3oQEaxDM%=vWb{@xTP8R+r>)z=hV?
zboGp^2;(?Wj54_Iec(<3rUJ8o+00C#X9mDbm@e?ck~s{Yd@MQ>V00L@Ilx?CKCpmQ
z<pXyfV>Hf9d0<f$O`^;~;LNe;B4F7pmnZt!BQBF|DZ9WXU^B3s$qal1tOec&J^)q$
ztAP)h!}TK_XSyo^9`>$t-KR#leMb9*W%F%oM6ZlB6gVAwdz!lrIB;41zM--KSkI`9
z_QjYveaE>Qd9Is92(|zp1D^mpf!kNyt-v-G8DNHpd#lg<gSmrQ;pWtAoBe9J7N0U<
z(pBcqF5ok!-!?y&?3~DFMh*?w4eVhYflI)bz*oR`zzN`MU@vn9_!ig)d;{zUK5ZU(
z@SeLlEi!tQ`yi?uV4)b|ZeQuXIo&-390rcj=U=-=SY#?Goj;V1GUBV;&&uSq{Kicl
z>;5>zJq~O+=2FQ?;1si+WeQ+rI1QWyDsD{JHMrRsuDjZuywLmXo_kK<|N7=^Y!tb`
zM4B4o55n*LIZAq&VFG>zZUI+$PFd%HpMYyD{=kpG$j{t1^WCJMo2FiM2d68Kr9`GJ
zbYDCk{cE{=ASK}@U7eCJXL9Tp7Aty^B{3FZBK<tn{f*9i)g%6Jq4zrvBXAekwb1*6
zI*-LC{@U~uFI(?6BfbaR2g=#}v3fiJ{str)0UHm6XCAXr$i_dwzs#{kZsR?EMfwj&
zutC7aysCI7CDFz&6WpRU3fm}Rqjc9~^4VDDi`n2#-!9jzxb2tFw25xeM#zS3!?7XT
zP;6*6bQ{4<ZmpS#s*Q~ME?fDTuEC+<u6@U~1TbyfUg$BGid~Mv#*mF}oyqR()P%5&
z5;jWOeklKq8m#uEY?QH4mX?rd`_~cH6ILOn4cpjLv3=(<o~{$AV56dqxQ%ohPuQqr
zqlS%|HY(eA(&mr!BFRP-+rL=wdQ*9sTVttPl@6Kg1LkUlq*%npD=#PTr?8W4L}}6x
zchw#@cZmPv*wt<R;C94V<khlK+eRAQJIvMIbL-fM37@3c$eZYHJRVK8LE5WC4jolj
z49!39mX0M{tP-ndqrQ!%Hgf0|8x3r~>}QLeHl(Ykxs3&GB<SJ4Epjq#WO2FHkqZl4
zQtrKpSUTx=POgn+Hrm)|D>%(<oIah=Lije{%V}w&6?eVJYt<#0tF)&6LOBF^Hu7zF
zHagg7N1Ipr=cT=k342`P1IK*Y(Z;E@37zSUsct9Rzd%>}F!joLw+mfbBmI2!^gm9z
z-E2Hf{SJ~Gbhq)0jk7k++2~>8SsP1iEVcRD@_63Ha2xO0=xO5x8v|^-Y@?Tr7j5*h
z(N}oj%Z={#(Qa>nN6+-LrJs$L=>Pj}e;XX4*-tNbOHFsLU2pn|je$1au<@piS8cpz
zV~~w%P1?S0<A1^r{iDW=pPQ;@Gg#l4T`Xd2u0`Ln@wSb3Y`jaWwj}hd+F~$`yyn*2
zA0<t!5gTG-sEuJZh<}>op5Ef-e(0{f96fm|Hp0e88`Eq|w=v4bX!^?L4`rixq{SE;
z<7|w#adERd*2dmuk)3U`r!I3le&Bk!5!UlboYlkn>c{958*4VYlW7L++2~HSLG!Au
zcT?uMGi=PXG0(<)I`BwzmW{bKuAYg`wlRk~+eR+lb6+|YTb7r>j3R%5jfLX$b(!EU
zq7zz0&Na?i%wyOhQu}UG;v0=4%WN#SvCGEiHdfep-^K=}rHv14d}!k%8*90dRqjd~
zH^;iGctGCsQ=ND<?G(%*r{e4m`qEuzW4(=gwG%dc<qm((-PF=AN}HJ2HnuT3Ha>9@
zx7gUqeE8D+nBh1V<;f*&_q99qfxCkOHa@ixIiddiy}MJ`NdX?KQs-U28Z*IGx(Tb@
zFKq0#@vV(RHul)~(#Ad;-`M!d#@F<N&3})|;T5plHn+}g{{qA=&)|Lrbd7t!#zEV^
znDRo_aFI7`gP$-BX1a%M9I^48jT2nO#xb7vvF>qt`(D#di#%4akB+-EJMX9HN#?u_
zUKCE-XmYw~Vyno1d)<EDN6(1-FErF$5KaA_#fQbsfx-KK2HnOVHvZ)Ozm3bRnKpj4
z`Q0sCwQ<A7PfWJF$PYHI(>Zk#t_eK@7I`IK^?tO`c&<C=W0#a!eUr|a<ll1tY~z;5
z;R>md7OUHH=r<Ng8+UDRhyo|uX8&&E4qf_-+j)lD@S3}Ln0u^C6Z+vV#>hrd2gMxR
zrxF|g+W3!^WSaXoowM3~C=6g>|Az{{b$M^RwO%B_!D9}to{JW7P{_fb7u-Y#g~|NO
zC6h9&T_w^Je*Dvo9(F(3A1&@cau9MLI|w+q+b}Y+O(b;O4LaC)uIYO#-PU_u#X;k=
z1l2*yMv+59+?BC}Vf$Ro0qLYgp6S4H@T7w(j{hRTc2L$qIR}n|u!B+#N;~*qod55Q
z|2}X_I4J3WfCstR?UctIL_f|f<M_3gGNe4G)lWvtJE-8GlHgZ#{M)29osyq$aI9<F
z(&;(#J0-8K+M+V8n&jVd^W4#s_m8`Yt#hh6sOErxZNMrwLj4XVJDB1i*+F#&PqVl=
zsNtZdgBIM8gIW%1J80mbp@TXOQXJHE_~<TD9dudcr*X`|+C|>leeRPF-NN^p#vT7c
zR?k6w0n({+tV<4?y2Z^9Oya$ZyhgOpLAHY?4$ha($#l^CJ2y)RjLA_bb9s^1)IpAe
zS*^31)53jjt{82`2o7`8SGmmCrqLK*08*fpgVqk((;E)do6$B7-ai%1bFg@=+t$J6
zq3-R!-F(Jkg4@o)^g}Ld%Uj9m9UOFY(CSo17YCgjT))?}vxEJ~EeQBRiT{>D+||KT
z4tQJA`Jn$oshi_p#R#5p(8Ix-4&HL`tb^wqe#;auIe6YdPY1mn^l|WlgI*4{ZE{~^
z7R~a*nz-1z@v+-+vVTL{*YS^V{jZ|^1W4HGzn;Y(DFYn5?BIV6203`e!9WMEI(UuD
z_3pkaQN9#qA)R-t>FdIh_h-5l7kka;`RVb7gWpHHd}++1RBE34wu8YAMmiYf;2j6=
z3h#|@FvP)7D*w_Q&MbA1o|HQ2WYZTfHD#fDwQ`L7_r&OfiGI|0hd^JAb}-Jtcn4#c
z$wtmt$G`fY9`C;SRPqD|6PX^FIg^BY`FeBR^=M<>K0S2Foa$g2W5FbMu;s<rbO&=C
z%yTfq;n&{$RGH;~4w+5wZAf63c#h!E$)El1&UdhgL3FTyu4vwNp`Zlu+3pfL?NfK>
zNOzfor4F(dd!_Otv2E^h2b{>ZLI7TyK6J3s!EOh89ISG%+QG*TwmMkj;3Eec96kn)
z3g2g}b+F#S+btvO9K@!$KQ47i|5@VSDQ$9aB`=5OZDB4k5G^8!A-~HrUVo~)&B1mD
zpK>_|I~-mhkXbj9`j?+$N2bQucJi<sigsV@?Q+m{sLS>_w|_m#zZ3nUfHQot_oaic
z9Poc*v!}aXbCqa|*&<u^ijD9k5_4w1g98qNB@ilsgATrB;)U^i7>67jc2FXWl3^Ti
zaFoY9jKX0Yb8y_jFAkp}#di))IJnHcI5_Fxl!Nbi^hCiq?cgkTG1`5qM2j;H?qo*j
z;d3ld)7|Dr{M(faj{ow9*ZNEJz+&&Bpwm~leEoj^2luLjA9#Em{K(U{#l6PEn4Z8`
zP@dfz4u0YZa&SwOteaww@lEblC5N}ccQ^VsExUL63H+Ob+pOmlV<tQJ>w5GKtF8mq
zz1Yp@AFSA9I=IIT-l)d+Mv5<SlP^RGKA-2mRZ@yC0USJJJr9HTf&Xx8%>Uc|i@5)I
z07tqBVZX~ZA~UkQT{b}>!Kq(Q;p#=gC>rMP75H!E6bmDHx*G^17{;QNZt*arFlJn6
zI&f(kX($Y5wX22wn`Ai*CF~b}UQE?6O0|r<@xUe3!!W|&OD*c*eWn@4!j=)r+hM=Z
zv4yE5jGoEqZ0o*pIV*d$TPlpw)JFTmcsz_UVbl#HEsU~ZlnbL;7;YHl!>ABO<uINM
zWBMAmVi-?^Q7H^wwjTf8{bsoT!j?B(bkVq3?$ES^Dq&O&<K!r}&&??B6BxCmFd|`8
z52HpHeE+S|O8+gID7PF2<KFwC->n%&tuRu;NDce<awShjYll%Mj2*Y!Qxja$XU;a=
ze9?`C@$~1evdmxZ;LK<|jPx*?gwZsNdSTQLqfwYYw1tc?PJipNHJ~wTUA{fluz>T!
zem66WtT1@-Wtrt|9<RmOVgKzcHWu)lFml6K(K<4tO?ER%&PdV@M_UNcJPcY(4$suQ
zi*D;M+Jw<5jLu=dzO@Y_Ka6%^<k6BtF5BhdZu>BX@jbD%ZU-^f<2G;l#&@L6vH!=^
zcR)!|bm0yx8OeMw-P6-)dS;fL-dW=Ax(h5IEW2cu&>#W=CX^&O=bW>GAUWqOK~bV4
zi4x?Oj0grqk^;i}x_JA}JEzV)U){Qu?!9%px~8W)en5IAi{9~~wHRkxuX|?L#*1H0
zMyhXckJRWV?|RYBi|)rG?Y-zA#AZk8Gs}wadGYae7kuc&M_x?zVwx8n$@F577lS#B
zs_~yt=U#m3MJF#hd(nkT9vA8A#iNNa!OtVyMRyRvyt@}YypXPD^zq{1qexFddwKD4
zYYMZyz3#2toF#5_>dVP`!3}MHF9r%QK+rS)xw~9?Cg~6_hI%oY-tNUPFNS+@t7838
zUhosuBj}JbBl#XhMv5%&4bLxfTF;Ge>p0enakOu<_{nsGxa66$Bjdf8;Kf8Qc(tM`
zCJDe}+iS7)S!IeBJI=V53?4X4_hN<@-+OU{rlg~Kv6ha+MdZb2UM!<Qz5KT+=Fsk5
zd`V_z=3Fnn-~yZ+nSLU2tWxHKMb11gztWyX6EEO0^kT6WOQ?s2@zn4ls^XaIAv~+3
zT{2EZmU2<dh%k+~7FprNN-qW^XRh{Q^V3MT4eq*FMOD{~XZvfs*k7qI!O+vu^<Hf7
z;wvw9da==qO<rvCx|jRS1iZub!ag4H4tG!IwsN7R#GmQq<Xh})7cx5prEu;kkzHIG
zUhMVaTQBx-@eXtE9lqv_l0DpgeM5KcoH@OxBTa~W=fyrR4ta5yz86j2@8u_zaga`a
z&ApZIpLMN9J~20wqz^)c51xr0_2QTpceu>GIPS#>FMjgkvKK!v_<M2Aiy!H$Ufetv
zJ;Si?MX{-o(;`bV;bjJoMtKnG&zX7N>mHz8<mzKg5SUrshjMe$xla76FWjTc|9SB<
z)AYy<FRn1At&d#w;+hxVB*u5;5%l!Pb%vwqkq<KBpPh@=&4|BAck;St+P4Y5i~K@o
z+Zp-kc=VlmnRKVSUflB{MnWzLzfoge{N=?1FaDqpPjC;T{uJ?(_&$SD%LJxRevJH0
zLwoUx4kqD|7mvMo;>A-hcFl;KsTEJJF5Nz}Q~4yG82`i7IwKNSJM&-0TL#J6na>4%
zA?SaCz7&*Qu#`RKklZUs&ewE;yN|s*FOpkA9trs*<d<MBcJfN@&E4^2&(rD2ykYEq
zG1@wJu>z92q2*lw?NUfWVF_m?oRd&QLQx5wBy^TgOhR#q-<SYT_De`8DM6QDNPvV=
z68sWW38f|XOk0v5OW?)GE8*|Y+^f?1brGKgMRNE2IbXU<i~*TfNln6wyO9rS#CNz8
z<$)frK2;Vwri7q`kc5B)W|=Gr)vmflJShrG_}`sKtmOWbFzQg0Ulc7P;ipJ44QES;
zm(V~$LkUp{2@=v+Q9@Y><s>9ZNRm)qLInwx1Q>B4;#`PSl&~T-zWlJr^`nvczf>hn
zmhh&8R0)+Oq)6^9HYIy5c3LiW2)dn%RFP0s0_*bZvFtBZr#yGtsV<?0giHx_B)lb|
zri5A&(j{!UU3K%5j5g&96V#T#Dg+tAMv*-6#N^bKaIlZ3zJxC(MCwVn{<I|TyV=(d
z$MVo3jU+Ud&{{$p30V@Fuxkk|Bs7)4CEQFxa{;2)BMtAlp`-jg_pY!db=WMkm4tUh
z>Dz+-@Wfs9<*xl-v9`3kgbyWr#Ac^N+DT|Hp@ZaJq<ZFwXFKmvQTHP63(5=e2Lh18
z(vA{#Y>XlPM8d}sCN_*`V*CBBy4Rg961qy5%Na@NMz4@CM#5ML-6iypFhs&o2|XqB
zlF(nm013S%OnuYSM?zl-yq!P&b0lLzq|@q1KM9i)GkIh|I#9wO8u4kQ)D{n8BLm%F
zx?ghq!0E~FjED@Q#V15YNEj($IE~&if!hz>!I6$)7qcRxB@pwNf@_WIYn+7f5~fR-
zAz=c?&jCo7CSekL<TMitPmyrvOr*tG_kN+12w7M9c<TKYdG~H4wYM9=A{QbvCCrjA
zTf*VeG28`xCgF1lb0qgRnF4ihy0l&HVl{5Kc%Fp$61G!s626qMfHRe_LBc`_izF<k
zA4*s(VTpuglDnN~I?7#=#S$`?O5lBHfh+DMnEQ&A5>`oA$6+saR!dkTVJ#JSEaRi6
z5pq1&Gu}9#K}yVY;A&)}giWHstr9kKgS|GgMFN$^L}gNedw+;*69R01?9Y*}B<z%M
zM8Z)CyCm$E@STKx681>=TEbol-_rk2M!sPvIN{ow7cyR(`u>=)ez8N$TY&u%4oEme
zwQ!E7GY-=3$K4x;`!o3J`$*Rr$*fi6MC5yRA+pCL9GBcZ4+n69b+1NFbAd?sL2|b!
z6h0~8lvpy~o`~389g303x=sIy{3zkPga-^Y5-v!%$SO3Pgi8!c!y-RRxWf3r0JtV{
znM)wW^FMN?xppDFD!Es~Yg}=hQPp@}O>WRL??rD)xFxE0NcM0WK;heh&m#KRuMFLz
zBX=d-6JW>1<lpE^pJx6c;ZL!SeixJ%8dkh7+PS;V^OpeRJTLEg$cnV7j93|uB|Krs
zl~F{-Qwje_$SEU6#=ne~5?)F0$au~;DdDArLNg-u&PV>E^+&mlD>IVm;dBy?irLA+
zOLOpN?iA1FWKS*`xn<;+Q9wo>+0{l~+1<Jm+<z}KpX|n7rbjI@3(6?H!SjZULb7`W
z;l_T^*~sI|X>9i3VyCE#VlpHdvW(&~CemA`L`umhA)}=1{>sZN7a%D&45X!HcxBhk
zt}J#KA9(oblcC7aWf&ZWjCz|r+%v0e^DXxrQj@{z(@(h@X;Vf(25+>3GAtRdPDaw3
zWsSHMA$Ydf;hrQUBf>+r;gK>j;$+m3QI{MUwv1F6m1V@sh{~uaqmqmS8D(XZ=k#Yq
z%E|68UtfO~={`2{?5O+wH6A!r;MBfw?+X%TBvCmdA}N9<%kU(6cnI^RjFuOZ=cZ<o
zcK9I=1**uX$`Q(_DI-mGHxJcie6lY>P)%f=NM;QgcY1o-H_gg(D_ToNx{NXFBbhR^
zCC<!+k(Bw7+A=a^biEw;`%skh`)QH0yCU^u)R*DNXd$D4jD|9r$Y?5~k&MQ|d@aiq
z&yunINB5_(7t`F}Hs(yEnT&i7sy3Igcuj;CbOsHAA4+Aml<~HVRx-Z76CEhwo8)+!
zhTF)P5fO&^HZt1EnBc=iAKsPGj+XVIgb(dybdWJc##9;a$#`GJNExGKd?4dP89ik5
zl<|>_T7@GYbJj9C%Gml(96tmZKcLv=yK$Xld`h*KjC7XKMdl7at}Dl%7U?E%-qsO(
zU^ClYM$Q*;QyWG|d&%f6V~~u&G~Cxk`^e}kqo0gRzsF^+OKefW{gQHjsyYy18X&+x
zLD~2a8AE0KZA3=M7{(=YFYakqdpNzKlPf&0T;xfkNYcM?g&xO^rU~e}bdM2HzG!7E
z=Uy#3PR8YSxd_I;<_k&=WhM!M$%57!*_<-dWK5Uwr;PhDX2_T+<ARKfGG@t`En|m_
zuVj8p9iPisBV(<MIWp$bC^DAF_<}QP5}hyOOZsZ5=sX$x)MM%rr+%kK3uG*k@p5X)
zLR!C5qu#5Uk@7p0SxcOyGM33$A!8+-p<2D=GC$APsN)hRV`56>DJiRD)EJ*~;y~KE
zmGxK4_^xU_rW5BItdp@`#zuC*K^{w8_I>dUqIdS&etFT&9RFvzw$h#U6xv@maf^&;
z<)R~(INRt~TtVqg<}Y!!E^$sQadyhsMdy)mMCRAWut&yz83$y1O(&P}Eqj#t(yC&d
z7t>zKJc{z8nVVPVIyEEOX>!Uw4&zK3JIy^h<sipjKk+cbQ9{xou7WN#=S)p0Jhc%^
zkIFbE^KD%?BjY%OhK!RkPKg1xJ5u}yp|0H*8c?#z!L)k~5;<RfZt|>*b3*1v)*Y7K
zu0e@5%ZqXt=VkY!!yP83-d^HdlJOH4Y2C!J=Nep=@jn^Aa8>g89~oC<T$gb}##I^o
zY^c#J^;U;mEz%RNiSF8tO8M|%)=e3=WbmVwFPAvx+Ge*!(V_;4zfVv7Rp$G|ivA|!
zcNuqO++)j4Q=hG@|H0#Qj+5yR84u1C;<r0F-`o>Z{$iFP-G^L0_glSxb7AJTAId1T
z)ZvF9AMp|(I8S8!Cjd*I%J@g%e+7Le==1E-7Xoyi<asH;D?vS?an{WtKu$q#oc55D
z+lTx<to%4NPqs{6AMy!2IA=o&Fct8jV0P&nJ`@tTu%JZ*Et*|gOaS&?(&v6`sD}?d
zc|_$yDIZGv;PoNJhg2UVA7r2Va-On2_yi!1^+EB$?}I8h0YSCwQe6PU2UCC+wcM9m
zS^@{NWkNoLvoQtA2plIUPs%9IWD5}QLo}O{AVAgs(pXx~hw|C{3O-a6xRRiWJ|qc{
zEa;np-m6>a!kCh*SlNdvKD6@T9UrRtkmf^EAyCbS>OM3Om|``2$jruX2~g9AT0W!;
zT-%3?>{5>Z#8h{Vb+S2i1*j)zeIJ?$4Kx(lMuIjLlvT2PXp)T+K6hX0*vyB0$5Na7
z;AHb#2+)%D%H|YEk7?~g8y`LqoVMBg_XT*@hjs$A7qmlm>3af9`8N-H`M`${v-uwh
z(9wsF1sJ<1Cj~kQ+&NpOivV4H=qA9YK6Dr0J25p@;TuzX`Ow>kKJ=W@(c_aneSPTX
z!$==S`Ox2o0X_`(q1T<Pfj&2S4-u4LkN|^y2;R)YZ284Chx#y##$8;q!czBbS|fx&
z+h=akXdlLi?06r>X1DPEQfC~y9+J{<sY5zY)SBeOWFHI#rh+LxO!eWq4>x?6=EHO!
z4*77{hZ#Q1^kK0NOMIB+!)zZqc<Kz;+vqbNKKEgs4@EO7GtKc~t`DtqCiXg?YkG_5
z7XmM+Q<<Fk0)Oel0v{IAuh3u-TV9{?GP81efhIGTI>bwTSmwiaA9nb#+=mrDZ17<t
z7qV!7wGV3qSS9EWr){RSKCBlluk(Rfc2prI@io}w!)710`7nBO%Db7xUc7vBi;&zZ
zC?&~Z5l8Zs4?F2gK78+Mu*-)?-v)aH-R;934kIS<YtoyU-*DK4(pig`T@ZXL#J&@y
zthHYVAE1FYryLaHAz&BZ`*6gE%X9-Dj{0!Shx1%hbt)hC;e-#TX`K@3KTz#;Dj)7q
zm|8taAK2UI6!qUCy5MPDc63I_ob}<HU_M))!YV%sCS};v1s^U7wOkVY(iT4nF!xnm
z;{G=?nSS=+$C+7Ie4x&+`f$yMOPA|XU3@L)O&@Og5ThWMg4;g);=@B99{F&`hhKfT
z=fiKphd&<`z3amVT~iNUPFen8;rB~Lf2Vc$N;<B0HTs7SfBNwL-lUAZNzDG`!vi03
z_N<wfRq}5ULf0>K7<eE1@Pv`%<6JL%c<RGHK0Nc`Iagwn=)tAVzdroD)OozrDYVQ{
zrh0CTEL^uqGNbN)95&<Iw>4k+kV8R@WsXOIz0B!VA)S=joC<d%QG(nG@+j~skQC%q
zkWWED1#c+sH?p}}-&^M7S5QE~;API7Wez{1*6vVZA;o=Ov&*G2g%uQ0P*lODWll-9
zb1ajfn1bShQ$o<kb!;+O#P_o;YHF8KP+D;>a4ufz$O?Q4GzGeXs=JaE1uC_AFOC9!
zA*N6ESc_tgFLUNkir!h~Dx~_-)PMp@!AA-@DhMhF3CTtZ!U|#)Bq%7WAgy<F&CqBW
z1#t=@oV$V#TPAL}9k-`fT)cv)g3Q^OGk1BCTExxnmPlMqL3stK3Mwo3o?m`fkfMNZ
zN3W=$l7d8qyIGqlNr7B8Y5Dq8;$#JHX7h6_ca-JMFx9Ris#mAZIU^23WY5Mnn)yqf
zY63s1nEaN4ngVAEnyb2}VrjdUf^?B(@3j?V2pm7a!)zVClFPE|W|!7eP+#B%f;JTN
z_nod}V+C0XnkZ<h;C&8zxvQ~eihJRES3z?D98TfqM5Y!3v=sDhL0c(!C%d$@0Br<q
zE9i$aE4C9Yu(kFIItcupphHf&mzXBYoevcEqW__Se;2yZ{$uJ#!AJ$81izEw{xPtN
zg3cmK$u7&Ct_r#-_*6l61p^ceRM0~~Pa3X9oqh_x30sFR{ph8jH@!|x@52|ARj<=m
z;Cs9492(w)+5QUV<&9rDKZ{ik)UPv0!4L&Q6^vf)3|2tS$A32b?y)^g!EoB8b=}<g
z;#bEs8X<7Asx`?O&4DSH%|)SLtb%b07Je3;u3*V>XS{+*3MLCYLC}c`3NK5#kgw?!
z1-q9!Ow$xh75J>kHZ_{^YlCf+q!|ikDww6<x8;15oI{Sj!uedm90hX~e4*gMktBLM
zL&|{S3AEHa;mJ$sz;*2Tf_|xBfdC5yT_h+=7YndN(DR2<ma!>+>Ra2Bmn%3iG$D0c
z@+t+Z6<i76Y5;2#zR?KXb@b4&PQiKweN^;Su|dH`&d86Yer!^(nM=Tr3Vv)+uvNiJ
z1_1@z6l_=Ui-J1}b}0CYK3~TENx@D9yA&K%aEudIu!nk9a8SY53cgXWPr-f#D+bwn
z6@07UI|VoT*yH=#q=zTlMF-k@M%X=a7kNI(w)@yG`ZTD~$3CRsFg=-9)hE$WO^P02
z<1_7oz3qLY?1=+x;^Ul}g3}7lDEL9aNd>1A#P_u?jIk&7vWri$%M*;W2lTejDmbU$
zyn+ji68-EQeeBaQMSc`5vm-WmQNbkzf!_A~-fk7r7JY2a>oT2L!Ose&jd2HgMZxtZ
z9yWMY!8Ky~XK(w4ptls<6o8!ZS+2}&1!dZ};8z8A75uH>p@Mq~CXTj$SMUdYKwxIe
zFSp|c+J7qeakTxHg8THhiS}Q0ihff)`anVZR>evWw|fk*A1QdO;F*Hw3f>)HKT+@x
z{jjh7RAkA?Y*y@FM$6H*UOhUjZ82*5+yuMw3g-ob*b3)AAx7ZwBZnVF{V3)~PCsr;
zvvc{8+m9H5-E6a>dHl%hM}9vF`0+y@JD(q+es;@|HcOc;=tu3ob|F6s`|*Y!?fcry
zu5ar3;6RBYe!M;2rtqbvo*X0X;(nCyL-RxTqom(`roXfwUO!g$wM+S3?LC-o&mCej
zEBReR`~9G4WIwJCwtapmel%I(1c%t21&y6)tD=a&@Wb>Y&X0&60nt?0k61q}KY~m{
z>`xne^3JeB?0tq!P;{uhV!B<%k6)%2V&i1me#H9`^&>%a&5_)gVXrEcx2))*oS>9^
zr)g2rszdCGepK?KlOLV^Nc1DgkGg);^CQ`hH~pyTM=d{6{7Cg<{0RFkKPvlC#g8;U
zs`=5OxBdGFyQ&`>{3Q!bx1SGiQ?-G1bs=2C54toHnXJ25q;x-~_p>vpYL?E3Vf74l
zJ<y&w$Q7&O2fg(E7`wh74g6?HwfnJmjNQ<WEGo^9Mt(FFoH<QB#V6ZV@3f}utH0fx
z1|4XV)69<^BW+f3{Aj_{$7Pa3+RBf2{P@6+5B<0}$ZqY&yMDgR4Q>2r>&MmV#ou0G
zld^7mj%}p<zUZifAMc6AN3C#}*bD1Y<|98kigrE`J=(d8I0s66><20PTDZbqHPY_l
zM^`^a_%YItZhm~%%kJSvPd`3on`7+TGh(_6rZmRx<wtKn2KzC@k3N3%6#|2VW@=U~
z-p`NzbOw<f$nFN))L5&TZlbfXDFQY!)DO~OoY8?26c{eD<Z#K4@?*3gv;3It#~6;G
zbdm9XOz>l@A8(DenZ^kaH`<;kyl$EwrTW;D{Fp5GQ~a3f$HGZ9DVaH;E<wszd)nlh
z)BTv?$4n}ALS1dFomf3e=4XC<?#F{BMep~u=lC(#k41hEf8obGKbGuCUf@TwvG#mF
zPEM-%rNHcq0`pfm`^VY~{V3R{0mT-JTI`6OF7snKm$QmIDpqiz`EiPC%8ylktoGx8
z9|!$d<HuS*cKGp?AM5;B@5k@`?X9kJVxu3MX_}!nIbY^X-$Zi^wOie5#3;Q*@CjJ7
zO;jP+?nn0=$pkz7*yYE!G?O2@{n$h84YfD)s{3R0=+}OHBkFGHoVB2_XRpA^TQ*=X
z`~2uK$=**5_pD7YTQts!hqyNT+DH93#>G{}KJ3T1OLf2Z<A~5XO_|)=4amnu=}AVj
zf%Xado&dyum&&`QiH8->_;Hp)_2Ume&iV19AGiFt?Z<fvPqHuj@jpK<&^i6MBsgUL
zBtVpIKh18`rvdx=*^eu9d%?do)xJg}4zjnbaBeU}WRK^`a{DG1U7rRKQR^3)roVmH
zk9z{#5%gECqunWOa;6We9{r8scbHvtPYUsYe)gZVAia8u{mhTQ=n`ypjQxZ%BkaF<
z31;y3<Dtk_9$|MoP~x$`&xhMbRya=ursO|<{3|f8Da=0i;{}aA#r}^0U&Y}m_Derr
z`QcGrmC|HvmZck%<eVzlRE&yTs@vm(DK<^O!Q@quPemmai7N7|D4;@7;a5>m#T%lL
z(yF^u3#ll|iUJo_QAB`7rStwZ$S$s;go=`?`_Hbb{cUo7Y3$i9F3qH?N7<!Rq))J~
zuW-C7Bo%iWdt?=zM%X^l$U9jc%JVv|s?bzS7-mOQ=qe0>%cy8G+%{DNR9Gr{4Y!#M
zGTYk@sR*m!b(2bt6`U<;#aaFIM4P2?qB^r=+A88zL{<Dc(Jrf^oQeb?&!)&JucCs;
z=Ezl~qNv3N$^W&t9StWXsYq7QLPbkzLq&>;w^Y<rk*cDyifSsVtEi&l*kC(N#R6VL
zRCf<kW3U}N%zoO`!;8W<gY1-kHbD&)+_w<aqC!+OP|;9DZ50_R>Zy3x)RW0M4z}y6
zZrHD*V*Gf!^<cLy8z-(WdSSD~Y^0HjW-9(V<!P)UOGOh=tErHw-`i$8ti^Vkt8l2p
z#vXE5i<g_XRkTv^zKRc2yraUyUMRrnjIxPm&9DjfJc+hd@ve$?Du~;w=%C^~6~B#h
zi{20d1k8S@;v*HGs_3qwqiEz48dt@~tT@i502f!*D7&*L>LQrrbXCz!b@v88jkGCt
z?rF4#%5O=dmk?vi+*d4~_<u*zTht=6pNjq*wuTQi3{Wvp#UCpER53`!U=^EHY*8^p
z#Zan3#g{6EsTi(el8VVHMyMF6qIrM&`eb{QiqR^@QNzN+$EX-9iYAS7FOHY9JQU+D
zlwbn)%;VfD6IGCMO-)fTRmEp2K36eK#dH<3giQN!_6#92Qw1?&7wNH9#R?3zXH(&$
z?Z5lkb41Y>D(0z}tK!rwn;pHD{9l&G*VNO$M)8t;?FA~9s#vCCA=m8glto-zeQl=2
zDwbs9V?*ub4E`!^54G0|J~=B@tWvQqt0<YPRjg6*q>sIpdwzeNb##oOHnS|MHO&5x
zaa+Yk6`N?;O^uj6y*s7#Fng<tZ7RN3aYV&-)xGNNRIy8d9V)&OfXq_^?A<hqihU~f
ztN2>Q?g4fsB!8>oTz~r;6?+*Xrr2{^r-et@p(*xvTsTu~1<4~@r}4^oK;`Xu@<A1c
z7_#WbW9`$;Jd`ApwI)xnk8-7`xX3Z9IIiLZ%{t1iS3P=G#Sbb@Qgtd$t2iV0ELt|f
z?mNLIFwQ4&KYUKbk96G$_UaZ5d=u^SDhl<gTcmf|B^5uZxT)fnipwhgr{b!LYaD9t
zG}iihg8eh+GQqwgXsdEb9LaSRFIPAO<lmqpi8d*Gn{kZsM8%DmBEN|CGbY;X@h;bh
zir-b-;}RHUGf|iWW4LBr;`>~)T;>{r8Xl<ln{_o5*6>ipBQ8b_IW)A&UF|VVui^zQ
zD3-}n75~tSa##CT&}S;zcFF49C5s$_s*~;iRJ>*qzhoSqY`+q;cc-kJ8e%jQ(A>L{
zTpDs~$g3e^fSpHkZ$^IOCTFz$jR5&H<QHNCsuZUHZ#N2x>>C;=u(EoTl$+!t8j5Nt
zrh#~H)1t*Sl+Yk+@M$QiVQ*iX|L-lOp>2l}#N6<6Yh7A%cl%xqlIGqQa35Y|h`VDq
zn|Txsx&}joUxTW-Hwc=B!86=IM9jMYQv>hdm;wSEY~<n2pV^S+UgI8BF5Y{P9o7)5
zp^Sz&4M`f386SGv5kYx_mej;!3mmT@sv$u`S&^+IXgNVCUtWL;f>snX?S3Be6WOx3
z%X?EpiiS)Lbu^@Eh%|O@{c38ctf30EA*xh=T~W|#f_`+OFvV&J{Fb21Hkj|$ttGPQ
z8fpuWAt*08EUGJT6Aex24>Rq08tMy<TUUd1qHsfzZKR>G09o0k9BMP6ndTZC&0UYw
zQVR_&g$Wo&-p-bMk1Y%Qj)v9(w9(LBfVLXm6`*U?;_U<|wbEhNOdT|oZtD)7>3vbe
z9zW91QNzy~u4wpJ!zUV+X;`kIlZMV3Cey4Mx@hRCVTgvI8oFutR6}14{WNrEr+wX9
z&R!aNXy~cAccb~o+6%_p<oBk}jI{f3%G2#zGi_2{8v1jYjI;-_cXrgwv+HSepy2c!
zZ4c&BnpTJ{@KQTW!*C6wG>q0TLc^Ld_L{ct9V@{|k>x$?7}4@r4cn&KS^eDh$7vWZ
zm=oyy8YXd3jCJ|D#@ieT6UC-#n5JQ_hA%X5w>(|LiW<ddYM8;P4YmI&U+ky-C1z>v
zmV35_&oq3lVUC8A_Y1w={nqJO`)cPb(s>%@YgnLRp@uItcRS6+$XW#4a{t@9<Ra0?
zQVok~&7t-Z#)_Qj1f)FESpIQ|6<knUbQ-?Zuu8*f4O=v9<?J-9rKN`38#Q-NwN7*Q
zQR_7<O)I`4tvK-pu7Z^gw>sP}ZPKt=bN5uV>EXtnZ5p;~*rj2&2JT&V2rCy=lE2cx
zBbS|m`Os-ltat4_8a!_m&sgdFH_=|v-~O6`g0V%o3h8$m_Gvhy;jD)J8V*ob8ot-u
zz3xE`hcq-9;cj9Fr4=XO-t~xvqtudyQ(Rn~vyL&yjId9L-j9n~Wd5L`dQ%TKwA|MA
zm|o~KLrou>TY5^?Zt6M5n5N+;4VN{X*Kk1ux=SL6UDPnkDdrnszdn;;++&F2`N?JO
z%~m@96EbT*$-1iH8a1P%oQ~@nZfNl8kaXPCa7)8K8vfOATf;9JexqqLF!<cj@T-Qq
zV$prt$G!KwC)O;BcsFXr6rnZ$(C`-nzVMbmHQX0~cBJ$C%?Yk_9%*<iz(Y|)4qfGm
zaHpq&PrqWy*P_8Q4bL^?(~)1t3l0A<yz9uN<E4gITm?FE>fr4L4-k07<k8V)q8sGr
z@>F58Yv1WjJh^q`(UBvjNM0dXcbvP?q5%CQ*A7ns9R+n1*HJ>p8#)T<D59gN4tbp2
zJgs<P9Xwm3{P}V2X$I|HOb5^6I5sMiSA=|5^OV&2UuBfiF|LnYT6Z_S+*WZP%dHf3
zBJ1$!2<iywP;~GfLDymE?p=mohpM}`2AU4uIIxJZi^<g8P#@4SaJk)YrpvL|Y%iPH
zu#U+qoiaM&giNgHbm=&o?~mY3B1dTJIMb}?8*M%Dx_eRZH1$MvB#6Z98HRlw6?A0j
zXriN{j!HUe>&VcNs3S>7RUK)fVzQ1Zx_d+Srj8V9b+}!AxSgt_G6yi+RqQfxCqe-(
zx@tPA3*nkNYUp@N$WwqzES9^YVeUOkEgk7P{v74rYYe`hhn!3ub#yeMJ_op-Q&&d=
z-8~Mfr-Rn1FDSvFes)9Mbv!y74>ua?;NFS*EAGmg>S(6pLmeOKXfB4`Mn_v6j*b>W
zKMZ9pb&Tq5zb#5R>{dG75x8|Who@)M@Vh$R)7=}cb~@VY=%BloA@<0zjT&h4)P>W0
zU&jZ!dsjtIresGQAM5Bw&m3!iqPv%#&OCh1D%weOy;6jQNxM_J=;*3r*Zva3+>25z
zpX%7#-vvF{qmBtCCYtE2qYwKv@ScIbI{N9jsN<53{v0Qp)v=!bpkt7Z&vbmQW3Y}P
zI;QBDs$-~*VLC?Z7^7o)ZF{(mkphgMr)AjW>|5!KV%>C4$8-;~W9c@uqmUUd=tLcp
z1ehS`-|3za8TQT$n}G66C(}LCSfpd75Fm%G%@Fu`w#+P%oz0P_d-##xIkceQtk&^`
zj(Iwk=vb;_zK$;if1#iYbgY_@i|sG1ZGRz}S|s?3>8Kg@m+78mBD-A23LUS<&)#24
zu4G+Ny82EdR$n9VT0tqpVQkQ`QOEZ>j_BB=W3!I0b$p{^i;k^2zS6N%$2K9qJ-gQH
zk?hcMZF>@%-NiB2ws-5eEcB3fR?HqD`C+<;oV_}})v=#}MaX|Aia55H)VU7oaMo<k
zK^=#5P)pPpiw<-8=^jq4W`=z+CHbh1V_dU3&gwX><AjcrI!;kz=^l#xAR6S5wu|0R
zi!7B;vQ_lb+?aDB`=gHY0<4}HbAiht-9w}IO7|=h%KV8V*P$8E4g62X&pMuQFgo9(
zg{wOL;F9FXMfICHZt*Ih;|Bdo)MZmlw{`rY;|@JvsG{m;9_vgY4v$55b==eOn-2EH
z5&kaPq3PF)F>w0#b^N8{iH@f_9_aX6wD4HRLq@{d_9Gp+Yr77{8ND8@`aCzYO#cXt
z{hQq*IrnGAywLF<qqKoS243oT#S4Lf+=lD(9s@ZH<P_NcB8Cl81MDKk!0*Ca@`xfz
z7BG<4Kt99$4mIt&X=Y4*1EjP_K_Sy(dJKyS8z^F+l!4L)iW(?pxGx5xClohO!f-vj
zq!4bIVN=_rEaEC-`_zoraLp$fkVVTZ@)=MJsDe)!zo`4#)6TAR*fj@f7%&agG*HVx
zz<_0-qJc^Vf(Akc${2_<+~piL5NjZuBM+NR`OL$LG(^O3S9gMevSN_7fp`N^F-OYK
zniMN%puB+!hU>|!!eNmA+R%8GJJCRrfhq>78b~(qrhya#siH>)fvGccQJ&MRF+HZT
z0eTu$M1GoqY6fa#>$W=0Aq>i~Q3G!ocwLb+-9T*v%?&sPG7MxIXkehBfjWlkZ1oJ(
zH&9o!!@93)u`dpreKj)B*gz8lO%2ejuN%)2$|P=<-8*}HUDU!rO9O2UyldcX1Fa0a
z!xl!wu#^+080W&&+CUqjB5HMSx~H9(EcxvzKO%<A*OKoW_<$~FqOge%4SZzaynzb_
zIvV)cz(NCy418jslY!3-%rVf}Ko<iqR@a<mpsRsy9J7Jm20k^=-9QfmJq`C6$STj0
zj+{^2cQo<#O6TQDr&6hCrT-H9F!&poU|^zwAC^Z;u5u{Z&p>|z0}KqLl||jr1_lej
z(%}Y%2s~8KVS*N}6~iK?5h6QM&{6aX!5<^CEFEiLoWSD+eO)WG%2`-AI*C)5-h6Vl
z<P@4R8&9Lc1)d@3OhNgq1sj}Ae^}*Im=^tvh8AEho$9Ta`34rOa=tJyInL%6&E`=p
ztDG^bobO9Uzces(Z_EM%BRV8~cp-7Ifh7jE8Q4xwHn7aVdIK8_ET`9fk+6!?z~)uX
z3Io1|sVfB~e~p2)2G-FWg`<as(r(Oe&c@%|Sd*jLXt+<GZZ@#R0DIp=BYu<2pP08Y
zB#P(dQvY-Ze|wd)!@yV6yn&Mjb{g2lh4#7U-HJ)O4eT*+z`#NF&W}EqjDBr^=41Ls
zfW3l#E9iHE?h|ysfw6IUDaQ6+u5u1>z^k3Z2HfEZdPGoWj~Y0ZjgK2RAuzw~%c4^T
zP8&GOm{2sKM;*K3YUhl>C&Lr-UPvT8XW&OJsMSvApObG&bvUn!1}+)6Z{RNjKQW}_
zOuS*>CKo>E%MHf!=+6eO8n|Zg-E`3_!hG#kyPoE&V-HyETo)XEwC<LH+Xj9$aF-G3
zLA1@4B+C5424^PR5$(`k_ZS<eHUEua*1$B;$c`OJe;8P^+WAwo)1z#ZLps+W;eo*i
zl@Vhimx=wWoreY<8+gL77D{>~C?BLL**}pF2|P9MkAZ&;JY!JuCX@5raK8t~b}s*u
z^g=ZIpP(-VeI=;JbeB~QK?!mSP+yK_q^0FHk;g<{6MIJ0ZCy7ppNagYYrcXeHtuvy
zU%<qb)ehTFJCX8+={}smS@3C)A|{HOuua69C}yI#3C)CVq69<1jHu7VcRweUG~E}*
zy;$v(GT}8LnYe$paA^~T);N|(DQg^A$VZcs*_UGSvnfzbP@l@c#CtoV&DJ=?1{*1u
z6l=O)Cp1k2OjxGt^C1q^N+t-3?DCP#!zMo8mC98>W*IStI1}R*CPW17yvAWviJC|-
z(ZR%foQ{cdCeln)Gg00|1ru+YNFje~YDE)?CXzU{uBnww_lYTfK=XARpc0aWDz+Y|
zyEQ9`rb#tX*+dl+RZaH+r+Po9&;h!~*<9~ue^0M&qK1jOChD1Z%S25R=_YEM?iUzq
znHassbugwkFC=D=e<(52L>&|J1)rY_JS>2BO>%u|z(h;YMMKVXRJ4T&DvEU*nP_a{
z_SRIUECHGb+EmbHCYlT22zqUeLowERzQ%dmL@U~^LMqm}!+6I;YvCSk1Z^wmyMne8
zw7sB|q$=Jw@qvlKCWg?6CO$IJi`#V*$6C3LO+9op`KcOwB6JnM*6Ea8x3d6UOmxlW
zbTjd(iS8oX!$i+){`iZD%(A;aCi<EfDCXWzaQd4VKuxZ7)}<!UW8Yot%;}s!Nd~$>
zCiwA04q&K>VJ60y7;9p<i4j6+hx6GZO^h-@!;LmEXsuK0u&cuZ|4U(Ajy(UogmHA;
zH&Yn|#&bo?OXypx`HZ#BBomYADgjgvV2X*UTsQ&b3t*aw=_ZbH;wEO8m}z3EiDf2c
znV8K~)w78H!>&zyVPYOvoX4(O)wA+Wo;d=~rF{OR39lmWRQ1d^F{P^KOR8c_F3K#R
zlX&cfCT`Ad$mB~+U2I~Bi2^z7MpZop(mX@TMVFgcVPdC=T_#qVSY=|9iOpOQCf1l(
zZ(@UqZB;#Ne65L&uOdwA=<`)Q1RJwC?2DsXx7OKWVylU-1b>^L<nJ(X;#Fk3pckgN
z71<iA5bS2?FmcetA<@g%j9?}XnE1xTUK8Jn7WN7HouI7J^N&PQR!<Qvu&L;%!iP<K
zZ{oMAo=+FX95F#AWu8uPd*Nh{vuhK7GJu%)!Nf@_#KbKVr%aqSalynz6K71EHSwbf
zYKC>sQB3IhbzkQhni|BsZuXLipG;gf@jo#nK0HYo7X563R=8r~ssI^Pqt|HVD$(mA
zOOW8PDR4t%Yvxb7ZQ>Ub_c&}5cTD_h;*TkwyC$0CuoH6F-K$1PX|j%$Q-7yXs(Oh3
zpbzIydhjZ8FJDrds?onpJTUQ}iI*n+Ht|qs;JJxM<a7Ea{xR{`M2}YyW}gVVfAuQz
zuMnfI$Ygp(-^*bWyb!g>_m3|8%7iC?Tmj?`KwcP=BY>X$>c#}X>Nx`#Q#H!rQL&HI
zI<)WTg)w;qlck?%b@B&LAb<)1*INn(@J0ZU0PFw?1yDEuB>;Z_MFJ=q;2ZQ%N{AH;
zpm+c!0w^eySyC`reXQ`7q>TEd1Mmi1&-Vo&2|)GA0sNX4rH3DFn#>|&WMNV@04;!U
z0I>o7^Uk9OU<MEfz{qa1OI42*z=`zYG+8i!Cr4_sBeoXeuyfc1WrSp00Ie6su;{g?
zv4}4ZjRw%vW0w!OhE52eYygzMTQy4eCMYMed)GR&AjMd>VgQu_NDLq;faCxw2T&z|
zH^ul19<7-gKuQ2ducvX?r`I~9vd6BL8DlhvsVZd1NfSNNf;9qoD}YS_Y!0Ai0JQ=b
z9KetO(gUa+K(hdvv-bcp185jPqX1%d*wsGa--nax1aNn)Q#XKm0n`s5$2x}(05=Gr
z^MFJG(#CACd^9WIUV1z;;`m%^6B@mF1E!_|3>li}1kfUY-U0Lpxc}p889=K5-U*=V
z1kc-|V#c0Etpm87BQp6?a$5n~aH#yxc<#u%0kjK%{PwinI;UFz9RheSfcFLSV?jR<
zlrkR%@KHAI7{E7Y3zNz8iC}i(um$LnEz?y12HsBv=q_jvL3;|?OHj5z$-V)1U&?9z
zayPDD0R8FV_u>WwFff2Y^u5wCnBhsE=y^Ckrt3)$i-ra;EPyWqSP;PQ07eAxSpc8Y
znb$c<593A#Fe-r20nF+eH-#1{92q0<SV6}L%A)ZCObB2iJ)udIoJky#VD4BS!|YU1
zcbcGVWO@KIvhhrc2|PQSvpX}w?~>06;EMp}(WXtJb7}78G2yHzuU|FSIrHffts3n4
zC)#?QvoL@~w9%GAs{?p>Jb7^d%K}&)z!IT{rGmaUy&`q8g44Vk_fyBnN&&v?l#6&(
z0KWtx1k~7?0M-VuE`ap`YzSbZP#x|2!|<|s=SBY?*b>0j0FHBg1+XoE?E&l$;6MO7
z7&-#@j{H}VodN9P+NoprUgzwlxwV+DMRrdB|CMdpO-?7}X6YM|-7Dy~g8noxk=6GF
zFms(laF9;uP5PcIXlAr><CsGM91h^3Cz0vPPZL(HbB?emfMWsdTjyL}=R8{H%&e34
zLjWh~!vU;*m?w~$%vqljdMLEsIn5Zg-l>rz@hnv|C*i|OiRS|NF@W;{T;N2eMSr5j
z$2Pebz|s?mmjY;iv-s!9sU2<>zbyFw6ZB_6DMtBg0bCD24M7XxMgTVhxMktCg<D)8
zToe}CThuV_aA{kpX@N`cSFTVCIW61`;9dZ~1@L>oeemf;0DlDVX8?}_?)mfm0R9T#
z?*JY$zMXQPUt)T|*iy!x7n_$)9Xz7)C)tlqd5r4CDgPvZrvdPB!GBzJ+5D~T-vFKk
z@LaUU(_lVt^Y?c5_c-?TAH79%`bto8JeE5KK3x-IA(w>|3#k@zTgYRf)D=6)LS75`
zEEKU&)Ixp>1uPU=Z5OgoWn)r7f#0xjVq;SB8hiJin7mUH3Jd1^>P0D5%tCPsaTX#L
zN?0gq!LVRj?wguFUt=?A>_y<x7Q7ZD3$n<ng8Bp<vfow&@C(}LhFh^#t)is5;1C=<
zW(O?HUTv5CI;PBe$FdN#5VG*WHak|xgheR@D$I{5lZ|U#v26>iTUO9`L8F3_nIOR5
zd+l=BobnbbSg2^hDqC_(dru|7PZX4sB`4WJ@)~>OmZUc=6x)!rWlK_JD#}6)PCP5M
z`g*6Th3W#Q5zLNO6O^D*=_Jx8^P7-TvKEbUsZ28q%`K!`sBIy`LZ*fK78+P^);o19
z)U$ASXw$kD*5|L=f4!5ldGpix>rP$oG!*<s78+YP`zUL}dWT|J7IqY@*3`nuX3d*e
zxYw*XnJbPY=A2sGv7j%Hwz2TMeYAyzmKNT&@Jx%oBWNo@J0A9s(^_BxX4_hLv^@H*
zpf6_>N-Lk*!NPkMzOt~>a?c6hw=l@UV4A?fhZa7vpf#{NS?DZ4M++a*wF)JW`H6+A
zl@r&_h<35iRg?}OC>7Jq!lxGBWg7GSdZ$&lT-`0KD3s8{LQf05ILO>Kv!qPDE%dR_
zS1|io=q~{IYPlk$lpiQKp+X6>3ndJ(Fx0|g3rj2vvoPGkBny)*jIc1$!Wau<EsU}-
z+QPqdq`@|S-@LQlNzC%__lt3s`?K<R%YBrW&+Ty4Oc0!jf|i}&{`5S>!c+@0EX=ep
z&2k^f;14m=E%$N3E@{R2lheH_#kojl(FrYlX1PyJ@~1H_&(AIJ7h67*HOB&<1DR{#
z3(E}%^B7Fta#uRjd<$O+Ch-CR77DtE4nM>dSZZOJ#Xp8%tA*v%n1$6A*3gCiiLSJ8
ze@1hDM1GY8-ch<oJr@$!T6mS-e7)s<T%I!Pgd~eLSlDP`ljR<F6xrZxw)pPuDB~W3
zC$rnAy*UX>h9>L~O>Gxhw#FOJy`!4{xjkl=<?ba;Ti9)3kA<%-e8VVV;Rg$QEqrUa
z*N8(FzN4WV+50UV5C+<3p-h3gG}%ERKpAINu5)iii-nR73xV$~-q*W3lcN@nSvYRF
zcgo#!R^U<9{gu&{7hHe%@l@H@^rVGTT!z(L=BoS&XSf`wSPMT|_{qX$PP}+xpI=kX
zGcFZRx?mx?!MP|X|K)MXa{uemXoK@VuJ>Q-^FJv!=&>7|pXnqUoGXG}wQx;<>w?bP
z;IQbXg<9_=Eb5j(`iq4-^s6972JtJyK0{~_#e%p;ZPWRKu5N!9GyTuPOACKk_>(pg
zoTu3u_{+kBZ2Y%{huQd%0FMQIB527W^{KIc1pb#xRe<M$zWDzHURm%2kt@g@T>`fU
ztu_|!TE1A0AaVxz+TLi4pl4qu5>p_z5X&Rz;Sx#tf@pQSe*Pc|1W_=EH-gx*xzOYE
zXdyOuFOIzz4r1~GcYjqRh)*h}@@!;HmR&rE5<z@SP7o!7eDgT!1yMhUQbB(88x?}6
z7=$+nDTvr0$^;>^yOPb7ApAkhXqV~>VryE>XX6X2L1;k)g0O<vw5_2Ygb{?v(hUv;
zSmn$H=iUY<=SC+OL@0=G5X}q3D;u2>WfEChB$CK%+_Q$nacm?$F(C+kC*b$#S$5F<
z3tqhFh)qR<NZjbQSvH7rLHs?o&J-u!`%BUCK{VXxe7Mo6M1dfx29XxzfA&+8f_O8C
zlpvCW;24H&bk;PFPYt4S5dE(wW-QNQ<5T7}tP;e}PCW4(ExuY1)q|)VL<VKX7p)OQ
z%^+$8L9w^UT%N^d)2WaH$>b0djQlk<Q*i1CvDd<N#mFhcW*cyLL9_{?Z4ixuXdFZ{
zY9NTLAliLfV)jO-30tn6xHT`DvV}njbE`BiJG8zNM2jHare%X@8N^bjzCJF6haUY$
zr3|i}_zrESr{7C&*gA+?RT{s>TQ)lHvdtjgqqhWcbfd#&Z*6qi2k~;F(;<j2PPwOc
z1J~Eg*wpNUAU>qgC%J8Y6a<G+YLnBE*5BmVo19KTbfyM^7!X94Ai4(8i#pGWb_?Ru
zAbPOznNg-3>FK21xnxe(|DRoyxTh#;e9_Z8h(4l9-yr%4F!H^GvKKwO3N>XrJf0mG
z#NZ%?1VKDV(AnEOLxcFCzCA3659-<Er?g5wbUbBv5as6<A{Z6K=pYUTaVY3UsxkCx
zYAlGcL5vGxJZ)V%$}}m62|-Mxp-0!=-YH?o@?2y#SlVcP+uBoum=?sBK`aPjI#)+Q
zdv*|?(Vv5u8Fc?bNDkAiAnI;%2tKDH1u;K}Ju4c_74q{0{X$R*{9D+S&;Ph8DP<N0
zu_%abL2M6VaS%&_SQErrnlFfDL9C!x1hJeZ`!tT}Y1g>$-?jSei(3`MYHIaT<6Qe(
zX1%j<^-ssO>m0W(i1k5tkGh$TJu_oN5F5F~*!BLn1vhGTITaUwHO}{A+@{Mlw+OM{
zPseSg^*1@+1~Ya9@l_CegZMUxok8ph;%h48*V?;-V6DA}<EmVb+r!1uBQEP&+<;Ba
zwkvVp1hJ!A+~tdL-vzNRhy$X{a(~qhcaPgoOMM&H`>TwFn;bU6Asr6#RS(f)K^&*`
zX|)`2M+E)7OogLVX2%3_PLLDCP0lxnlR=yc;(uIgtjP5k#7{w74&rPO=YlvN#DyS!
z3}W{tr^hFSJM7P7BEA>|L6PGrmx3UDjdPxH!RsR8E37^w<*E>1_Ugas*Mhh%vRf9q
zb#G)hayy7$g7`OxXF=Ry@DJhv!${EmCFO1qzX?EmPk`{Vq~8VjBb)!H0QZCVE1R=+
zU!#XyymJ%&Vf9VUqaYp!@r1_OpPGBTC*$+frvjhZ<dDNldFqp-=Rv&S<tBvUA^gXM
z$%-YT1wwemH9I%K6GD!V3pfnYoFNQ;ltjQ3Blx*O$SnXlc|yo5a6Uov3p(MsE8o*f
zE*RpLEcp#V3x!ZvfFgpDUo_<QOHd+&k|B6QkOYTcXQ}-(sg!7nptQ&muuVAxpWyoi
zRXCE(4rfHl(Gu{wsfS>Mur`c!VVEHVLMR$Wu`sL<f+2h!!kiF7A%sI{7DDq7VnZks
zLTU(=L;Upwkr2M>7G=!5W<~7~q9G)N5Ff(&8qvKya*b>oEgM3)5E4UBJW1t4=&~g3
z;;FQXAyf!qz?Qnc%}((p^(%!y=Gz5|l2R;52qz2rrl2W;uBn|`C4{OWycI&t5Yjld
z&Ivn<)vX>vwGa-Mi&ot1kk$zC9Y+rNZ8kf#LhflsW(aizNDpEB<chUJ$Oxfjz0`{D
zMwzWk`4Ad~&^UzpA&l%?@7l8}4MS)k@TZ%d$7k%dXYAi<H~Ob+T2=_>Yd2~dLX!}f
zWqMJkCOMV<iaH^*2%%jF?b&z;Z->w-gm*%yZbm2lSC|29TgRw-7L?m=9l{$i$!!EB
zXe+?GAyoMziP;VzycfdEkh>FjKZFnH03q}W;lmI<3ZYX7okJM2+36U<chl{UL$JGM
zJ!<0la<lUZRodG=o-@5m2wg+?G=%OUn0*?M(=CLl(`}}0o1GpZP?$_sZ#u;0cDHv3
zeW)4o@5c2Fxkpm{Lg*iIf6y#AyW-HeB>CNF?1Gd5Aq)&*kPsUz=tx0_2s%{IVS)}1
zVT1r|aQe)0qq6a6j$Gie*_?3#99WPrffE^$V`2#GaS|;uqwHis38rxH0#6fkdNzMX
z2wUn@qQI;WW{2=ui1#4T*ohueruAn$b3^zdga;w~9m2d2=7(@Agxl;fgasjVSQov?
zIfk$(gcTvI3}JByOQ_^=Da!=S^<9aj^t4gV(ar7;H_HW+rF^~2st{I(a4>{JA*|u@
z31NE(J3?5;VaU-<f<ApeZG8wELVS5ebYlq2-rDStZVqA7<0ed7Lf9&B&MnS10rV}-
zS0U`=I5#`rg|I7x-68k7`K@S#%snA|ElR%;bZ-dXewjc%CE3f%3+cp6`$Xw}K@W(c
z2Op(X*y6tN=5Pq#hj1i>qaj?P+XvE_jtOusgySKc2;m2=>#nJ1#4K3lB$tMsa4Lk;
z+45vEoz3PD|0smd(==P03tY}Zl6*G)QwW#2`a<|w$XpYp6kzEUL9Yt>y2^E$qe9ag
zLWTlAjZ10sPO)D?xWgfpivGqW8E5~>rLiJ<FNC`x_cwiV^tU`+w(vjT(ceS(BZP*D
z@qdQ+Jrw7!5LWGu+z+Ak%Zxi2@pHDgpMZH7!XrlS5IkW#X879T@QC1L2v68}j)bQn
zJi8nBkDvtq5@h4&0=(c=K!Bsa7N)?cUg;cXr9z20!pI#)o-lHT5fgTQI$YPT*vuh`
zxdbN28+M1?>|otOVdM)Ve;5S>r(hVJr#UgDqNHyK&X^*uWZ^K1gt6*n5&!2YOpDt^
zi-%Dnj6q=x4x?n){U}%MFfzg@6-MbW62nLe!yASa#)3cMDup43;R_=+j51*;Vfe!^
z805p){=inl&;`&0EpsH5%vV<%?z|rjF!+ZN4x`135)AC?^}N9_3KxhEg>hnY@~JHj
z>5J4l+kEkH9PPb0rbrk?KYH^uwgodjjA$6?>!M5v0+bD-oB-totsrPcLEm4SNHJ??
z()ekf<S;%sQ>1bjRl@kVUBa7!rU;rU=x<w`Z%ZXt4dbmaYKD;(=2s_@s|i{??4D-S
z5R`!YTzishu?r4qkBbKkEBu;fhEXSszG3tWqiz`W!sruruM~8T`e8H=!wI877!AW{
z6b4Vi$!{EX@5DE@DUl^W6G6#o8b&jLyElwswnZ2%!{|htau{K(|Hy6=M%yr2(PW`W
z!=jOQ!f4Hwi@Nyjwvl(k`2A^IhcMm?W7OBtc45A+EYe=!DoW&iYC|;AQPAY}HXHdc
zjE_W?jWbK;$6<UTI1LI#$m|lv{Oz9ZVe|-NYBRg5pxwgwRDii9B4kqXS<QMqMR)A6
zmjJy59a=q+b}yZ?NdK^Venn04Wwryt?w#F0K?#~&@(c-MDCNVL7sjwKhKDgLjM-s~
z2xDXz<HG!SO3d9N$)o6CpW9=?7%enRCD$JB;j321vhIXP(-Rrv!<Z1p#4wMlqLagz
zBETg2cIo6iTb-#~R&5jc6TnQmcZ;}bVN7R7UE_Xlo;X8*1A37u%Tmetj0-J{xncC4
zo9oRq_sNYpVfTf@{;ke`Es8PA7l_Rd<I6CXg|VFJVV(tHEDU2&7#!!BrZ%q#^x?%}
zED2*wraehbxalM>4WrUl$Jy$1ZdP(d7^}lrLnVm0tO{d5(Zp@V5=mK+_wNrsuIVnB
zFg9=n#UeHq8^hQ{7YgG}7@Nb`62=c<oD5@Y7~80#FutRH!q^eU*I|4UcHfRdoipZt
z6~@jmcCn~)-Q8jQm{{}W+*-tY=(JlMf}u~6D7H83o^bLV7aP|l?F(Z+TL|Mw7}tL)
zd?4%|Y#t8dVAws8I3#F|+Ns2KHzjjR!#7NFv`4A8t<JG9jte*b=62)+gV^xMs}>3L
z=Tl*vrW(Vz!qPC#a{PBa{|n<Bha@brajSDaj0<6K3_o!hhEZ@{F}lYk1`P&>tSDdG
z$c@Bb^($Yd`yIBYRZs3;Fp}D%=G8E+g>k58-oaThyO%_-hjBxA*Ty}KXsnx@=4ZKv
z6tHh`07vTH7WDhA&aX5U18gjE#o}HVzlHHMjDNU@!uW$@2;+f>KYxbt&bds+=ldcW
zbkq{AYB7IjM}|jXJPc#VYMUu*mgjL8Pr`WpA}<bx{_`(ApDlcx>!ncI_vcc%b9){}
z%9T7X!uXHX(~5Aujn~+(g#JCT$PtUNZzkl7<s%}_TN%-JZlsgujzykW_+z2QB5y46
z#iC#=-iUQWP5xN-3K(OiHn)=t#3Hyeg@ArYi~MoWE)<Kxv3R!CDH4mKvH0~=w3wg}
zw78%pVo_3nuXaT!z*H(0r3HuB8;k$L(|3SJReWz#0tlLAN%8`Mbb-CS--K)+AW47?
zun;6Gz4s;pN)eDENLK{uAYBxx(tA}bAgB}pK~X?@N2Go4z5ajS^UQOeGiT16DW}}I
zGjn%e{vTc{gwp@RUkQQ#{78m!A(UskAyf(BSi3qE2>%u<h45zkjEW(sIWiF{;?<BB
zRP*gl=G7ot4()T;>|7xPF@zx@yc+`l5>gJKX$ZL?D6AO5Ya!GQK?^|-;fK0O=^+>)
z&q`B5SaeJ_L$E@yDRzM7a&#MFM4S*l{3ZL1Whu-i`@}U#+0{b)bS0T7)knfUObem<
z|L8S*<j#xUrIeZ>9KV`eD+K;R<BINa86jkbkR3w(kQcbJLf|r<NSzQK{o=Vm-4N=9
zJiizd??yOp)fy4mX{sZCDcB(7?MpNaAsRyCz7o%88`0kUCtc$Za{h-m@sZa<*xRuv
zOJgCt5kmVAI)u=SqYI&J2<<pO#nl!e{#l0FI)wfU^R*12m2UubI)!NlZ9<;oG^&(`
zaDd^R5+>YMN$<$ManeHQ6GG<@x`e#wm$|PV=RYMrf7cMYQE?k$-9zXRLeCJ=H^i7N
ze=@7phS=5qS-sfGhS=)<S)C5MPl_tk;F}@zrO9>3ek+8pUk&%;v~*BT4$0~t!hjHn
zyzRqxd^pgDgM7%M!69tu6(KS-gkd3k9>NzP3=iSG5SE6pEQApuj0|CZ2n#|O6~gEc
zriCy)g!e;OxH)|+T_c1sK0c#SV^YS2uqDHL8~Qke@jlK_Hh~5ckth0aQV5fMWQq?z
z4B;amnHu7sapY$rC*NV81d=(lPka-d5yDKLhhk?@cR^|4j?`goip~yUP6*?IQoD#W
zH-xNK64N{%X*xjuGz9eVUSJoqd$dnqr+j)&8dfwgCyv6GkP@Gt$Z|T%^gN%1up)%w
z-L#{b#kglqIt`m<voeG)L->jl6~d|zRx|R4aD8ils@(rYa@8D_uVxoYDQiPm7sC1w
zx>w4>m!p?`xG{uHA#CP6(EC=ZE3&-)n19sZ;+E>BR|fh;w}-GJgjgEhNW;z$c5#3v
z8kyJ~!XBzp!3qU?L)gbaBq5)K{UIC(;k1A=0uEB+Av6-uSim<S910<ifV={}4dJ^G
z{s`eh2;b9H$xq7+;cy5?=uIJ<2;s*Nj)w3P&1^>8t!IH_RQiVjc5k_+T`R2o9KtUl
zG#r%v^PJ3nMU^?K#-fuUoC@Jr-|vJr314>3Lt=|kg$U15eMP*T+w*KRSNSc3b0O|L
zyCja<lk+>RtCBbNQHuh9GLX_WLbx5m#Sktr+J|s8#J_k`F0<Q7%HJXM`mSJnaplp&
z#092yjk8TJW6wKBNg=$!`J53Tva?*c;)Ni^-U;Du2oFQ}hl4Gy++$4ekvi`t4BQYS
z<v|E@cPEqc5o2!%PeXXda1l;_%x?RfXAN(FYi6n$S7h?D1JC^`ahp;~)y~K#AiscD
z1ymLgC!m0UBmodmP(UF8MFj)}yda>kfFc536fo*$;;dDf6i7MC|0wv9fOr7`!HZX?
z4koW|?@iQ@E8)+oYQ+Rhofk+DkSL(d$>5B6fsf|}s+n3BQTy;|ptyh%0?G*}FQBA=
zmj#p-@QQ#^0**iOlr?!n>~j0;gSnA1G=|(rSplSwe&Np=%wFD@Q~H;11p$==TpOBI
zQNYh{rjkOOkl88%stTwnpq7A;06~B%KocPPU6lmL0`#%*MSd!%2w<vw-J5Nu#al9U
z0qJd(Q~_ZDZ~Yo)2rvZ<_$sB0p;-b5Z67*5bOj{)2>)Q1MNHKM&tQn838*fh2BisD
z)GYa(cFHU3Q+{ri-11H;<x^nQHJPsos4XB{Kz#uj0x|{E6;Mw=mfz2NgX8K5XjC!$
z-8`G{R%36eR(Wb5BH+5N4ZbB07!_$CprL>$*`_41bnRpB4d|=KiOSG;A~^z@2$&+^
zLjkV~XeyvD2PGg^Kukav0bK>WA)uLn)>M;#<^nDiQCbLSDPVt>g#QxdtoS(6iha8!
zKU*GYE1;c#jsiLfXz%xv3>|12yS<YLrYRxM<UXDdDBB^Svw&s3;<^dwE}*A?UIKbh
z!is3~Ldw8ZffD(Wi1!xwrwrPgKJ4Q|x)mwz-5_B<0sRHMCtw5>A>eHRLj>fM2)`p>
zAp2ZM86?2{JoChqz@U2JnuV0{s{(_m{X(8KzAIp;fMEiT)XCVAs0^ni7Y%Q^l{)jY
z=&lX1k?gjB2?8ei0~sw~jDWEM-WOnviLg51@eQ#L1dJ0fUcih+p7ArCyb&!iCc@H5
zw398FlYK~Jb?<~y*Mfu}(f$Q&5U^3e#{#AaSV%LVJt*#U0kZ|n5%38G3YaPIdZbJG
zEXKFy3WLll)lIGJ&J{3EzyblE3ixVZ9vanrI^&UGnbGMF759sQUW^JS=0ANuuvown
z0V@T3DPSoloMRENg3i??VYxpp+Buo0@5`M(A@I3?FMOimxTO3$I{W$9tW^S53s@&$
zy?`~Wcqef!JN9<Mu660ht3~Fn%PjI&IwhQ)5crB3Ov)urxJkff_F2Gp0=5X)Dqt_i
zB4C?<?E-cR*u{p*h0pBCe{gl?4grVuB~N@mYxSm--2(PdcN=01K}Bqh!H@#?3pgO)
z_mgqo`0${Bul;_8^MzT347WDKh#&eN@p}P32>6M<&j9jLqr+6OfFId`X4%&}CA_dP
zc2vMIzlfA4_oKVdG_ABT_6sA7fK#+F0Vilk%_7}eC!F+U{`E&wrtrpC;}MZJe8{4+
z0)C_Eis&KYoPhHJDu}2k;&%am@R1}UpNI<r{uFRWz+C}<3Ao6hL=UAa`C=~%_}fSB
z6i9mdC@?sG(iH($8Frd_?wl|^k{DBN2)HTW7Il}yKNk)VE}H4V+iX2EgX!7p8TSO-
z7w|~HzXBczcu3>968wkO)k<mp%+v4P+rbm>#F6-zAxJ<T(F@B@1w0e*-0wiQ_Sw$;
zraatSwj;VU&YN?lS+|4vMZ}3HCL%#Z0TBg7yeQ%&5rss&Afm;B%)%nZe;C-0#M`q1
z%ogz_v+nk5O_+@rQB=hA(<#IQKL4W%YS2fXoR5+%QACo6mqnBky}xNME~2D}xwoPN
zt_J_Qo_z0Au!M;0Jj#HLv1(<)m)50}7O|myb{P?6MeOaJ`ih8&8)GFWrI!;SEzK-1
zVr<WZ-Pe=JOtz}sQ!9yhRYWZjuZgHEqKb$V5!FOg6%i7li!ek8B193g2!&l86F<3s
zf+XUr!EsZ|C^g44QU5n0P2~R;g=sKV62oJ@i<%-V5$^v=Z4rMy2sj+tm?j)o&phEN
z`*Sj$6igODgcPP!5tnZz*ANjFktU+Lh@WPAp_so;NmwuvV`;jGnm*gzArWS4i^ves
zQba2enIf`8G!oHRL>&=zMbsD3Ktw$e5zZ1vbjN!>&d<)i)jUGjdX5Jh`g9^u5gnIA
zN!&3uo!J}_O+@61h>3XJA4O9UthixACV7@_j4gd6zagTTh~^xWh#ecfhb$$Kho$4c
z^wf8>d8D<7Hh%TaBHD^*C!&L&U3s?PXY;)NwD+?&4@5hP=;Y(I4~2_YOMft&PkeOs
zDMyFKcN1}3)|hy%-BUy_Dq6%w5xqt95%Hmjk3_sFqOXV%B1VdMOGG~rgGCGx(O<*>
z5ra5Ow^QF1@s5arB7>FEEE;*`a1J56aidSPN#nF?jngXK2)-*~sEFYr-V-rQ#GVey
z)nW0s)<(*$^*AejokU!?7@Tq@I7;LuEhdVXB;tJ$V`%LnCWzeEQpSq>A_?O}Xq&tM
z$aFkGA%1#ejHTbVOX$Aclg2dJALA4se)?_#)3G~&sUkiWu|&jD5z}aRBIb)&AmS4d
zGepd06C!4cc>7wgq^r%Mo7|QIc7$+dtF*Z^p1pbIiRkuEqWfZ)#0Tw_%*`pEidZOO
zv4~~Ylex*ch{iKCj(F#usq6+RURK0%5vxS3W`9Ji5V2Ckm+VZ-w9iG1DwOmEHTb(*
zZ(U~R+zb*~aY^@t+z$hz0!eE`tQE1I-XY@2<={GhL_g>ERu^NoMM>#$CHiPdfN7J6
z%_2^T_*KLf5nDxkFX9Ig+vr3h_KP?`ixRPulTSzX<vjc_uuH^lYIc@4Z%rC|fjxF7
zai3qhq(j2pY>#qK#MdGYiTGAT@J`_AR`0R<jnA|A%jkC^m?F~y>C*!nntO5%i#S3@
z6Y;Z%A4MD$aZE&+iCJ754C$JO$bWFKfL~}!$AZU2obaWkEDxOYDI1>zR$lN_On6$v
z84<Td+!1kB#BX#}5q~rOi#X3{&mh1dPYwJo;tvt8JPPc;lREn4aJO60Q9p$LqQwqL
zzbN7oJ-Vva{;SBeJE;vK5h7%`BI2ru8zOFsxJGxb9l6elx|2#yHqAsfW=lT^-eR!2
z%iEi=Vw+-jMckt<L_8I7U&I3uk3{@SJw6CL^hfaz1LG#oa}O<zCg)^K`^0m}$0EwL
zNhp0iJ>nNV^EvZK`0H@+IXihbwd1B(y@?)YehG0BI?4RE4HS@2P{K|LyCf8n@PdSv
z68J|Pg(Vb`U`uc$yeQ!%2^Az%ln^f=AfdQ~5)z6^2uethkSOu%Id^9)yBI~qve^XT
zx%+`636Su&>$Y8&*`>L+JX>DDEh*t;31uXdmC$c^Tqy~qCA=bG+4_`mnpUl2cD1dM
zT0_!_my=LlLhT_5bt)EODT_#KH<<t3fmbCclDFkpSwa;FAqj%tbX5souT5anTt4*~
z8`(58PLv=?kR@-GeyxFLYz-QwOx+S?hgAuh1YLq5!IWT0sF|GcQ?G1_ZCp$#_;;9D
zZfO#CB_vCzBcU$;5J^Hc3DqUkkh}+Os)VqFGzn|&2D2+8?BCM4GCY6Yz6t3R$o@;n
zka#}m*5Z)MyRUJ^-cX37SMfHnGyNi#X88yyEM-wW2@wgeOK2(~TS9#aQ3;JC93PwB
zK*F$pQycnt!|hS7atRwt$dS-Q0)JncJQETW!WXNn6ex{~<VuK1XfC0J1Xh2;uiH%G
zAN7XG^PdpXnVk_<>#h#8me5ARBnguxw3X0K!T<?xOK2~lgM{7^`bg+V6Oz!CwfMI!
z61tH2ejtB?Y^DkGaz<^6@mH6-OXwk?r-WV-R=0~Z`!oIZ#gTt%Mb>Ah-}y3fJC=RB
zT$sq465gUQNa!nJ&ZZcDpP3RS-4FDqQclLLz7sgQE%L_``5g%ZC5(_TQo<k!gCz{*
zR7e=YuHFy4E8(O20m}TiR)j)0@Zl2J;(OH2;b7UWscDheyPswD8yy)XVYGw~B#e{r
zzJxIn#!BFu)S>jqihK(DGiQ4a;rg;!<2euanof`~Q38KodaW;(rIbcEg({=nN?6XO
zB}`@KCCv4$;$sQZC455pDe2RE%Hzf<GbGHEFiXO08qzKK^ClS$_a*l}8g0@j<x;~8
zvx@Rp<CJ+4=1W*4VX=e-5<Zo%khXUw_;J$=a^8%ld_FphqBy$4n_|;ir!A4NlzMNJ
zQoMDV((-jS_nCwh626kKLBi(}zL2nrlTUXpkhD_5m$aw?xqJn9p?UV@O|f^nMAmTZ
z64psr@AvcE-kg2~a=)}9WZP6sk$wn=6P1k3IU6Nxk+4<5CJCD*Jlz!gxJzVwo^W!W
zaE+mH+azq4u!DAT(|aoMorOXYH^&HfOW4CeA)}a#y%P2@AV|2v{T~SjB)$gXw1k6n
zTM0i(I4a>A35O(nFX0EjKV0H|E8#o(`{vlAGFh7!Mf>;6D1JV8Si;TOfg?T-i>`d@
zg`Hy(exhwlI3b~RkA$BYBIvM963c#<{o3Z(+%?{s?WBZLeyu9^0`hO(f~WQ7Sh<&T
z&#(he3Z9qnyM(h6eq%7aA2`x4;hfLRutUy2BwS!bm2i=k**HD^QR1H*!nI)XO<Aj~
zl=wGrNy23bjUN{zWloM-Z%$@R(5_0jCLzC!I2qR^+>r24!awZ4gj*8s(q|>yrrvi)
z`O1GsLSBE3ky4-$S4|||_lq8|>9&!&e?&=PPaaA5ms;SzTuLZ8Bk-8>BZQw&l?yVP
zcTfmf_ql{TGV;pEC*$tGNZp&Ml>A>SWEi;F^N|8F3d)FI5_w5RAsH{onDl4xMcIpN
zg=G|xQG9;n({UMuq;R=4bZUU~co_j1xi=DDzmd4&^FUEw!kH>sf{a8NnKH6uB*}mb
zRfa|(GD^s(D5H{$k}_VFQI@|9C!>^%(lTC=QAS4jw<8;8M+jfZ6J}eL-^#A_Kz`OU
zqeJg#c^MUC3~r^c=s+ulY|}Q!UX@W<h9E<fQAI{o86ltNT81Zq%oS<d`=e)CDUyt#
zLlR^e3fsyP?pQOU!=*6U*vj%psk#h9Myiak3{!?B!<CUN^VK7;YD&bG;rO#r^+LM(
zb$Ir~NQ#VVGM1Jv#M0IKQwHBirkvHAV`(y~%cv#eH5n~VM{CGPmr+y3ibFX~<8y1C
zj!wIuIy<OLJMF2jwv0Xx0~s=ETup!Hbd>b`@r~-ps4Jtfj2s#DWJF|~8WL$JBirvl
z10S+(eINP!muTCy-qSoP<AZpGoQ-^X{$W{7WV|k;rHocGno><N-jLBu#@FqY>`8&;
zf)<mx5uu#vqBNILxV@tFj<)bAC)z38syf?VX)U9TjCL~G%h*^%iF*_vTU#0HR%X7}
zUZI2zGCIn*)lOmQ>OtwGTxqLxk<pdLrXat9ZZf*l-(~ER(L+X08B=9^ETfl<-ZF;E
zc#kt6<4qa-jle-N`pS4q#@jO9k<m}aj=RDBG6wh~n)yLi+4Ab(7js9}&&aryUT(HG
z>Z-E?Bc2r;EMo|jD`S|98$A<>JSq4tjrNK6cI;k~%e7ZX<YJr12pJ<~jF&M%#wZ!1
zWsH$Amd5j?CynrZnsnn7{NWNO@_~$TG8k`(KkL<q$V9q^j43icl(A(|=42mcJuX<h
zvbUD&IWO=LwJB+&GfUz$8PjEaA!DVCPdL3Y7Rp#8W2TH*GUm%zAY-<SIWp$Tm`4j7
z??sr>fkxkNj{Q^FTN{ka+vwuv*w1&oEk34CeaXF7MHkChB4atTv_qe`jIrfW;&b1l
zSNQ9S6+ZoQF7U1gDTLKaZSmljGFHjhBxAFT)iTz|STEx%8EdIr8JAaN9$y^DS6HcY
zG^cEO<o{<k&<x1-g2JMw`=jLwD_dl2m9bOCE^556vQ5TzYR%{AT39)kw-MV4b&n8d
z+U@h~k&))hlpe?=?w4^u##tG^$v8;klyOYPPcpudaY)7yzyB2St&Hzw{NQK5^I^%_
zkvc=-SajIWR=MpxahQITaqri-qcVQX^fdCbj9=(M>}Mrqd<W&YjD{T|C+Oo_V(+dD
zkaE(ekn>j=r)8Y+IZLh$Fp<a|-E%U|)2?U+GJcowhm1>{A{iHC{K<JM?_T712j<~c
z-e0um=1TUK*b8@LQdso2j4M9RHQIpBGpU7gl>ur`HW#ATX)21#Dl^Wyw`AOw@mR(a
z8Fv_{W&A_^t_s|fabLy*84vwoX2i0)`5I*3-m2ir<y;hM^hn0PoYhy|-()Y1@)@4W
zcqZdH%{y<(l5Pok6s%tzB$8L*@8Y`S7ucjzNSuNK3fd}Yr=XyMLJC9$l7bf$6jo45
zL1_g=6uhV)NdXkRq##~FF$D<<0t#jhiYuxhs36uj<LcwoT*d8oSDxhSf-q6RX90yg
zUFv64tm8%6;-vg7mh@o>1y3$`&ugZa70i9rdo_4PK^X;=6kgXySp~me$||p*f`W2B
z&TO;V8T)4kR?H4m^eL_OCX-lM!MICu6$MolyzBcivmw6~K|!ClvfNsc*;`^nWCe<X
zECqEGs0uU%VFhUlbOnY2S3$A@Q-P(xR^YHF&*ioLe4gu*&21CzpWKdkeLne6PEk-z
zL8^ip`4qA}E6^x+R%Fs|(aU4As*|Xowt@@==?ZEpsHNaF1()V{lW?tvCxN>z6jlFX
zw9J>$r@0xdMPjDkXSP^ZK|KXc733<2D9Bb2RnSO5eZ||1YM`K@0xqk#HanG@c4c$s
zp)KAjtFeL{1x*yZu7E_AGX3TEpW9aX+j#B96uhCJg@Tp}xOh7;J<v=+a|PcP$bGgY
z#`PYTZLQdJf!x*#+HhuedXFl~;R=uoLgMWebWku!!DIy;6?9VYwt{yQbXL$s!J7*D
zD(K4Kub`)bUjB%>D;O~_u7`r1{$su5Rxb+mR&Z=>TptBX4}06%*G6Tv*&Vs?V(wcU
znu7ic25>A3yfd2OcLMUAK<XgR-$yP9j2sv@P{AMtBNdGD<qxLb6%17{L_wa<17}Bj
zQFNGs;R@bk)70t0$hj*X@!R(s5`S}2`lX&3L`ExkpT?tLyn-<b#wz%LeO@0KkmdD|
zsqeV-n~h?G6BJCO#Wsojy*8oAdT$;`99%a%MZt%(UIp_Me57Ei-=Eo>TLse;%%G1b
zn6BW+(cmXExnbTAxB*_sKcOR@IXEuuZsIHjdk!WiK$)Z9yCq)akxmBZD_Edl3FSA+
z_*B6{1&e7F>oQwKGZJP77SY<r2V(2JO_GnBWE6N1T&iFhds01qL{0b7zcrRCSd|(P
zE~S62;0py8H2kSyrGhUN{Gj5nid70$(|}ckRjg64R>3_5_Zc4;E7)NLKPvc2!3G8U
z6zo^9QNbn!yZr%fR<K3Eb_F~9>{cIcV{oXdjNO>R<Ua5M@=i|a#*|%tX(|8I_4~e_
zo$ui(uum*3Yh*Z};2<rKWA}+)`|yy0Z+wLO=GK_$pN)Rc$y}59gMz~fzV{C$2}_NN
zKfWhfo1Ao%7Ny{vg7XS~Qt-2aQwn}n@QZ?0mE7YBPH;Yx^4~SwlWeP*lC&;!$+3cj
zoUYRf&L}vm;5XldXd9D{2b125qp5fuSQw#Q{jT5-1%K1I6l{Ify`bPP1sCa(RA0#D
zM?;MK*%zXh{L;(x)~&GtEtETND8*g(s)B0@ZY#K>;JShv3T`U6MT;t;Jh&Sk-Atjt
zR&OXMo-1GQJg)cXcuKqLOHOZ@MxF->9x5oIqNIv{6g*;NR`H^We-%7tpH<{l@r15d
zSb3)4IUVy!;!}F%*4TTSGe-^d4DY;uCZ114eia2(6jBkVqJWAQ{BuJxl+23!S=QU-
zW_m$IVHNXxd3q%A;fImO+2NN|#H$FZD5iRmJmABkDsp@mUg&QNC#XnNv94~UIE80N
zl2pLY5+A-bRwE~kMNG`TtfG{PDk`d~D6QfZ6%|ze)Va6vFQcNIit;MTs;Kjq7X(T_
zN&RotmpZ|7kcuiQsTlNeU{RfnS5;JID@`+YJZ;FL#+T)g3PFXg!cZZqkW|Pj6cr~Y
zdv$l7`oEK3RmGi^0Zm2GNX8i36_$8@ZK|+TxGIuW*eV<qmwRTPdlG1RtqBn_5R#ap
zqMBbs`kkwuk(_ASAWcPe6%$lUR8d1kx{A&!x~QnBqLzxNibg74Q&C$*JrxlZ87eaU
zIjpN9OU1M6$+Ne{>Zlm~lV<}=Ev7|k`Qu$SutBzp2Aq~erM?e$Zp*x$ppf2B1tIaq
zRD_D=Dq5&$!uiY-&Q%dp@w$qpoT9g~x3yOI(zJPN><zz^?@-Nrr2n<_ZfkN*ZjH56
z(Mm--7422DR?&uC>Y35j=Q%Pv(mX+-kP)+U_}<h(MMo8#{32%mYN>qJQpx@(LWaYy
zDqU4{Q_)|=02SR;^ia{4Ggc(rQ$;ToZ~8d1y;a_7;V(ri#N{E8ntf7J;*}rjYwnN1
zw|sg(pOcg+cI0gp@2D8A;yo1usd^Rfsz|Hq4p#AfV(#-(sYCqiM-v<VTi#t&)g7v0
zm<ndsx$f<)F;YgT7^z~ciVswb;v}nhU&R<2r|a@)toO<sB0Va*ovXULo~QnIST;_@
zcon}HZVP|IoYJV2Nh&6*SfS!`6;o7vsA7(axok_tR60m;WrnZQk5x=lF<r%o6aQy#
zpRnCR-llqyZQk=`rs`c0nWbVjE#Zp%#kKS<A*IBZne*s(l=difnTiD}K2@<u#bO%s
zw%9^n@+ak*j3}n8YpE=u6>W<VU+S0coRnU<jnXGycsbcPu9iyuL2*2<;fc%_Dpso4
zp<<_sFB$w*Y*evH#cBqB73)=erD83ssQ7ug=OaD*9wzS3wOV;61tSx4H~3AD^68sZ
zY*Dezr|h~BJnIMNt$vnO$iJPj=&WbMyHxB}aZttA<j))4qhha$eJX|;+P|F>_NzER
zJr0iRQ(UQ-<2lz(UHdml`9{Sd72k4x=wd$x2j&kaEepiY@Y44_rB4ZEeQ{-e5#@-A
zA8Du>+G;qe;uwREh9nI?aUd$LsJN=)7r$d?sYeyZRh(cPP;pAdX%%PuqPlYfzp4nl
zr?CUGx5Y}F4>A!a<(!K13?2WZURLqDia%8Rsp2mN+bMxhhsA$8K5#)rp15$Qrjc_E
zVi#3hqMI+ud}U8^(v}nwqu1rXRa~zZ9`r)ZFHQun5oc7?P*B4S6*pBpVgOfhOT}#!
zcU9a|v3y?Oj*9G7O6&3Aqc_!;TPgQdJW%nFVW0M}G4tx3C^Z}3Mxj5Ff%vSCB9A%Y
z?1_fF8lEz&(Q{QiXADnJ$p7ARPZz|=pHD-64RIP)t??ASWm~NGKQg7Uq2yx9zQO5*
zG{kENXm~+GVGTtzyr|K_wU;z6=98iQAJHEDBPo@&`6r{o)Id=U37U8HE~ufHhRj(i
z*_eosIBjS=G!)m6tRY212@NGRRMAjX!^;{<X{ex~qK48MUeQoaLwOBf)yTN>MWBp^
zvKpkK3bU#0(i$J}hH&&3PcP4Z^&V%HG`#9}iTFp$qm_NU!p-!Wr=lSZf(BiKq4BpU
z6;Xq%LGc+RAMS6G!CESNUQy9B{8&GOY)mujH83?;Oy7nb4KpUFSDK~S8pd8rCPHG1
zc>&j_6R)NrRYM~UjWvWdq-n_D@HJG|P(wp44X<hZK}$ECMYAF`HB2t4Oc&i#FDfU9
zjE-lvw&uO%@$+F4vozGvkgcJ<hPoQ+X&^n~*Cq1vw%F1ZN=Wtg1RBtIw#6E1h*Ck@
zV@c)Q^4nu%U=i^g4NWw}G`ykVbq!55<kB@}<!5QJ!FhO6Kv-~ge!^xNnrmpOp_K-1
zv9{3A=?l*!IN@ZQTO*^jh6!!*6ZyJ|LP|Rg?P&=b=4$Amp`(To8b-2~hRz(RhJG5l
zXy~e;k3Y%XNM97_p`oXS?i%24pI&}HYxMBAUK;is3HGMOGcyKO)molQcPc4wYUrz>
z|ET!Lx<H-Io{IZx7@%R0hQS)%*6<Fey0SKq=2ThZ<pd^P&WR0;Cvk|z*Jo|0hG81s
z)v#$@%J3H&@v`4=4UVn7r-8>Y6i6c3)^E-kMGH^Pn4n>zhS3_{*D%JXe4t?*8_gRY
z>%)}ou`Yw-s^<-N8IwMqt#6O9)+DM@!^aw?anwsQrfB#`!&D#tkj}CobK+Mi-1TiV
zEdHfS!2=c5=^8%KFjK=U4cy(Gq2c`P082kWm~6Qd1G5>jDyhSl1xVp7uX!5gYuKz|
zi-rXnKGpC!jX}dgPIXmfF>OY}A|H?5O(bQhhGm?h=YbU(mUHIm;OjG6ydU3Vdu+`1
zSo6Nw%(l84AY7^8OATu^tn(GLO2cXmYdE)My?c*@d)8$Bw~AX&H`K6^GfCI>ng4@i
zTihU-iP`_sRt?)U9HA3w*sfuRhOaezqhY6pT^jak*he1;DZ8n0AK}*Pl7893?#S_t
znfo;y;AD=8KS*<p4_EA!O(Nm4GEKIpWgOD*t%e`y!W%Qcqm{lJN8<N%<bP5ZZjTYa
zR#`dBM$<CL@Xm|MQ4Pm5{Ho!!Py9*4FRZKKXLj$WAZ6By51-I*Qo|`fl@2M&-dtAS
zvpq%$M9ye9tKoOQ`fnP}QB!=BRL?l_W`x~7u|3v%M1*WPg~NZ)!Q;c%{BHcE;Udl3
zKyd??G+d?;>KLx$Z(5xOTZg0Ls)lPCUeXb-<2wCU!xIK-4L4~L8Xju+N5gFmcQoA7
zaG!3wIB=JqyV&zbrn-*yz}G^-l^%sx@(3Sk_?Ko+B^Fl74UhXT5oanpJnor>=Nby=
zD5!gJJCBZhI`Zqt%d{i*?>tWe5kjUo9k2NKwoXbR9ffri(eZ+gh20Yt^!5TT=|6rH
zAbe3ry{j^jfR3U%e;Wstbp&-3)A6#-KgLCZjzk^Bbtt=1#tlpu+EGc;0ghVLlJ=yW
zd?dSbGfU_wse?t7%<Rg}N@;dLM|m9;bd=FimQ9aHD934hKmGVxuLJIm7!g({UUFif
zqK-;BxGeln0_jzBRMjD~T^$V~k&q5Shp1!PodB~rJ7SU!!r~8t%(9lML(^gCF#Y+_
zb)5e;=}^6lxz!^@quJ+k(k!1&BJu7!Vy=#4O3=|n$E7h@DLT@1)YMT;N2-pnjx^ni
z@YQvk84_1abD4hkks3N5@oq?SYw386v!^4XqqdF=9ho|^bbOGW!N&m;kvckv)a86?
zE*}%`?}%+&mpOk&EL%r?9Z?;PbPWD8C6r%jprfG<BFy%EEdK`^bL={H-c8&#E}ccM
z>u9Q@vyLu0a&^RXwARr^#~V7DaTNd7XsP4z?{0G)?>ES3;X|GtlEQrhZacK{DU0i;
zwAIm0M+Y4pb#UjQ{eLs_TadM0zmfjQF>kZIlg~_K;deP*b#&A5mX3Zpy6fnnqmPa^
zb?<$xr;c7adh3|6A#yY)!q>eGJ7UB~w@vG-<I6pfDH8%~mPCK*o?X8|c7GiMbPQxg
z9VEW3;~gD~FQz}e+?25DnG_NS>lmWrU78aOa+P<wM^St$q$n~lJE42_dpbtwIH==m
z9V2y&(y^RF&@q~Q)-hMdJRM_njMed>j*qAj9piLN&@oX57wzM9?4KOywLXE;x^+#R
zL`Bo~bo^LJ`7Ihbotkls=JBfX!@88{cy+3dk2yLWGiiI&rjA`x1E0{LCa8_Od2iGI
zE&lfn&zhxUwhqEMoUX3_w}VY-)hDREt|iacv4C^lN?EMqQ+D-W@<L9&j;D{k+2)-|
zyHAvmX^D=dI<ntQAT!f4zt)+(krg^V*Rf5<b{${nSgGSH9UC~wI#%get79E?G&iuC
zbF0HX=B=!5?1*j2$QYTLo^b#FP8`<LX68f+?Tl^Iu}Q}k9b0v5rV(yRsrF@nkm>A!
zWI|SFDUlttK-$>7)V*xFdd4mtyIFB_=4ZbLkH^yX=%{rsb;`K($fMLPpW6F4w>l2c
zDITS=ltr^PXMUsOkd7NVZtD0}$9Fn@)p1(K_d0&iaZJZgoVS+hVITfTuOF0fgp;{H
z1y55+KdPhCrU<h?>-a^-2^}YWi+$;Q@HmSsZxKaE{13-H#YnO<2A_CF$5|a0bo{B~
zHy!76{7xR4U$=zkWn8B7I+FI~5}9$fAYlW`L;link<nhq75WsXtC{!4bXmv4sa~9E
z^R>63(d9|ts*Y<6gF1F}%O(#?FD{Q<@0OjuGj>bIZH8q7`3&6AaaYG91`QqebllhZ
z2|wcY=6OJYItY1Bi~=`R)|iMBlK7Z2Q(Sqf<C%^pKF%!JJ{}(TTt^<mEA2lpomX?2
zh9zg@HxOswB?IvW3K%G8-~|JP4ev?u-P3}F41D|4GqYwpV<{aIiWqqDf0WXPqRH#M
zfE+MT)Ig$NC1{|Sfdn6C(c-U@2?wpoWFo?p<QKiUGgiVtNdub=Y%%b%fl>zg7<kh_
zX#=kq$S{y;@KQa>8ZZr52Fe*IZ=kAykbw#YDjImzKxJQ=d^fR@0d;y{Q6+DNnW`9=
z_+DJqyNRuxNU&{+U_dmWkjFr!>48b3vm^sDg_l=}4}Fr#ikbo4fMGx@lJxXIGU?gv
zc{9gjAhZoQ2Eqo?{1#mUDF&(;NH$=nX0$8hwVP^qu03UU%9*o4LQ<+5s9~U%f!7Rg
z$0^-FO#@Sx21F+!9LPyrlv!nBx_mh+G&HWZ&p>=kuV|KmItE%8XlbCXfqDiS8i*Q*
z7|1rzz<|&zfp?ke8+fZz0`Ynwm%ATKq%<<n*g#VQxdw6!wD~oziGkM*OxPLw?Y5_^
zjB+j$-{oTl-Z0S2Ky$y8#9fuW9X}#u9$DF4x--_wKx+e?4RoO>16QX7+8JnXV93>`
zZ8`aEyd(Gy20Hq4(#Zgi*LjA{w0&oci40v0bTiP?Krb4}6S=#A9zMd`@{`J{+*6{c
zqJ#33D$=MoJJVX3+cKN5FNbE}V*}F+^fS=kz;FZa85m&TZNIG{2Hr6+(7+%AgAJt5
z@zz2O<^+fgJ{8QF708$qxPLP4U4z>To+S_C1fED5n7>h(fu1LhFffv%rjZ!<*KtP~
z7-L|pfzbxu_bKFIV$lZ%#u*q-4Swxy*ZjKETP8hV3>=kSbXRN=UFLdlih&PVcY0tl
zeP>Qi?H|G)vCm_gOf^89i8yQVrtx$GpBPwbV3~m#24)(VZ(xCeSq5es;O@;l19NEb
zj{|cJ{ynA2#LXYlm+gy6vjT*B@++SjSY&uxI)#cU3;oem-4$DGV2Mx6+!Y)6D7DqD
z*m4#bSWBXT6$U;x@TGxO2EH(`(!kvUNsk7_{n{wyN_NIa(G))DR~y`lcekE%*Z2sD
z)mkb=esix@Qq~*TU|^$xul(jX7G8kq<)72>R?H>?%#v-Zfo%r<G4RO1b^|*MoTf<_
z*lA#wfx`xl7}#xKkAZ^*fByt~4eT?p-@pN1?2SB0ZTfo;R;K<R2HtxqscPP$-xxS#
z;5!4~Q)MTE-};>G?<VG1;62}$%?r?ee&`ncfnlwiXWl;=ILhW)C?^aYGw_pvUnn7(
z_OoA+NN{psz^)jP<363p<Xy3o22T04el<|yVz5*+nLiFjX=iD-A?+^%7Y%Ox;hcf<
z27Whi!Ka@`;#acv2d72WxGS=zs`97752%$*s@6f(E*ZFN;HH6F2L3j1h3;eEn%|9D
z4}wg64hO$lpTP6J>jrMn%bG|2splR4CH+<7HiN%`dj{^)Jf;PNKZAEUK*QUEWv?Fi
z`1)mmhYXc@!V9{1;XQ3(=D!9WGd7y2XyS>1r;ODmUNZ5_z;gz66NOBF{cj?liToyR
z-c8KwQ$F7ni!)KcME2DGd&~IkzWm=OSEY{!UocU`#K)(-RY74B)x#Mbo;GdkXn9u#
z;!OlhylkSBiJ~TgCSantiDD)aOeC5}GQFQN%dHdJwaarH;>-8ve$hRZ$dPxmN|@lq
zm69fgFY|OqBD1AUykep}hcGoz#za{Yccuo)nc&9AF8^25&hCm4CqJ_+tz_a=6R9S`
zCMuh#VnR1zn5fF8O~@t`6M~5^*9Alql0V)~uKR4K7Y82sy;9k2%hmj%)j|_`ebR2P
zw<MY-Y!i+NiyiP+4$AJBYa-c1iiv7|74wa3Mgua}*&XY%J4S{bf}6&PGEvt=Jrgxd
zq?`OfW@MVEX`+^i*G$y*>yFzUi+eq7q2Jur-La#)W2CU@EYA7yU>y_J{p^3l2o+?a
zfr&@!qurkstnW(@{3DD4dt&mbU_+nsXQd{MP2_O+$q<s!#Kh|+*4bEZqp68p6XPvR
zun;rxhKXxz!bCF@%}p#dvCKpZ6D>^)G4Za6Rwi1T=wsqd6KzbiHPOXHR}<|_6r2(0
zV4|amUUw7Qn|M3mX~dh-U*kHN=*+3Uo7(PrdRAL+p1YaoPEHfO+5ZE{Jxug8F?3hX
zbN~D_@QN~aVdP$E<-bogTer>M*Th>U22ri&()*cMvnsQ{i2)|oCMoaV4ZLmQ9iKSR
z#FQ&CiA+S;5MjT{+F+V%*+N8yniytcDzmgP6Yp{CCMK8|VPd3-_f3p3G0Mbf6QAa0
zPw1dl*b{qoU1Y|(NVl8vSQ8(Z7{}oc@`BRut0Lh&o@yGejm%n*GttB(wr=7>6XM0-
zWD{ig?6)B6l8w?nGI95IAnvnd;(sm4nPy_Ti8&_bn)rnNayxmZiCHGNAwPpwx-ycr
zH}`U(q{;W>+3e5xVAG$Y+k2$WGcliiGqKRbs;7w;w`Oh|t1d8c^|x@n+sTW3buTut
zg#CP+N+QLQhn<{uHM*RoCJvZ5XkrB&&BP`XoBb+ZaP~NvCRWlfDA^~n)@l<?PI{im
zFKhH@#yS)0{i2ON{E9mLEU>}HA5KU=@QU(f;c(lDfz3nWwwTyzVi!N}HL=aab_$;#
z*lA)1ql&8WSa$XNK$$9v?c=1(EUfG?v6pr=TP?ORWpUR$`%LVo8@}mTOUFv;)#{P2
zO?+eGR}-gA95V5(iJwgTY~ni;-<$Z+#8DGJu*#{p!zPZHxY9{smsq{)Ww}hbtRE(%
ze=|F9jGggs2UW;TW9cunfwuWim^f+TxId6-Bh$&BI5Pc|3F2?w3ldVu853ts{AJ>z
ziQi0|qkc{NVM1FK=<FXipXcmdk!K7_zhL4|2AMHg?N0{7#T6cW|Hp92#AWu1$};gc
zjV&W%*1P~2_!;bfw)*^hu<pvZv(fAu48;r!7GAS(%fxLHB`lP*aEB&jBCmyf7Veq2
zZ{lAQk7+X|9x@2fFluECYa98tZR8&xZyTTe<<Xpbp9F|JG4a&Ia}#+i@FHK;6@h0a
zX813Rya7eL&EtY2rv`}Uw-9HcsD+?~0u~Bdc+tX377AH-!9rmRMHnl5%jdKZVR|i2
zV<Hl7VQQy@fQ64cCG_#>TspF-n1uujNfzTO5-t4kAd%_*#^kU3-KyUoBo?>8EQyp!
z;>#9FS&%Hq7D`)q#lou=DqARHc@L~|7Rp=rX<neLg|6Eo_tMk~7Ajh}G&HV~g~;FO
zUzbx}yPL{=X_hkVRIyOif?z?k5b`B(i+lFF-ZnD7{p9}k)|YdcC8AhREu>lqThJ`%
z790z%1;c`A!Lndmc;kD|BWmXl&%G1PKi|ID%sZS~+1)eLWD6-4s`*W9`Yy_ElS@5_
za=rIc9wp5}bqh5tq+3{h#CvqsIThD!n)i6+t(BU76-uL3)V7dep__&77BVelS!iLQ
zrG+{c>RQOL(8NML4%0#d3l05>^1MK{h58oG-^zLMZZc)YedoP^L@hM3(3k`HS7ml)
zyX-M<M7Dhr`7irA^~m8^XlfzXms9oi<f+ZGOGUz@kiVIQ<`x$F@2boWY7iTLH?@_8
zHWu1iAl}*n9kcG9NIMJdEp)W_1`U2M-@(GQVF|_aC5_(`YqcuU*+Lf!M7mn|d7Zb8
z+E_@by(*IXk4&V8g`O6MS{P=bmxbOI-mx&yLLUonTIgq?zlFXQ7VU`*xSsr$g-yQg
zwf{ImgBf7qZ3`r3Bqjdt(+@9?eBQ*<#UReciQr&=AVh{(c-O)cpJ)8l^dX0GhFf^g
z!Wau<EsU@*(!wYUqdDPA0!)-}_nC)qkN17c+lVHG7lS__TZJ&wINI}*L?Xi%=6ow^
z6D>@#P|3!tHYQt`LTj{e*}{hwKC-aK!d|)t{ldZu3!ht<W?{O8Pc8mj7(THu!@_I}
zb1V#w#%5ZWWq}{u@&1?^7p}cL%5~se3-c_@x3IthKY-%JFkTNMorz!eF_m7Evxv&F
zz)NDwEG(e}3qNd+);tm<rFg+cD}IX-S<VUZc{rT+w?|p=3kxePY__n4y0fs#!g>o|
z(Mm0>A*Y3P7T5~!xv@X(<HEO^M~d%_@k$%Nz1m=5BUK+4-o(L<&Ei$Jyh*v-6k<b^
zyw$=s3p*|BvcUE2b_+WgPu2&xvSk&rQOIt~Tj)|U<tR&{yf3%U!hQ><Ec|NWfQ5q=
z4qG^4;cE-u&=;CSzO!)1!ngF(bDkeP=##pnnirz$KWO?rhfEh^_a>?&w%i;0(ZW$$
zorPa49P^FgCks8sdfFtzxn-WIv^X0)&ZubNBwM-O=>LdKB5aGLr!Aae$g*(3!dVNy
zSvW`2;tY52mH|v9js-6jN&4LvPNEsi{aSRnqw*(BcVPNoKCIs_f%ruq=eGcVTe!mL
zYNMcyt8^9%&n!H*aNWWU3lA(jv~ZKb-@;vndJDIG;dkh#69bQiM|cuM*vryV+os+3
zi=_Dh?Y#(3l>V{s$iicqx`lr^llO!7?*#Tly%^QDd!+C`UVwe-(~0!k8_Q$kjpdo=
zcctXF(RNXCULWSOF=4N_wjn*v#-$435(5(o*<MUYw2@@v1sjEJ6tVH5jew1!e$h)d
zxKxX`@vMipWBJ$m$X7R$gMLvl8woaeiIZ!*rEg|8d^c;Q|FZzFQQSru8)a>juu;;+
z%Qi~c;Ey4E`%VI3iB1WnZM<S*WTyn)E$5YTLMF=3X^~dW1~1rGu#xd~xV+!c^djMk
zHj-PUk<#&iTG>Vw8@+Axp-dYg8x3tlZ3yg)jWiq8ZAdm`8@A2UKqxj;8-@*&U3!?P
z+0bpg^mCA>39WmjGC5ro%k~ZzMt4mm{m{Zp;x1dXQO!oG?Oo?%-%8yIrr7xH%P4R3
z4ejaKNvl7CVa`k$uje&vq}#}{QO8D28@1Sfn;*z)ui04KHKDf657IRz?v;^9m~ToT
z(<gG%tgelEwr5xMZA7Sr;Su85HrDP;Ij(Dj)833k*9RK-Jp9I_k&VXGi;Xrma%?oQ
z(ac738?STmZzD$Sv-54d9`a^#E<51sJ-$#9v-~lE!07lEHumm~wX*TkmPkt*oA)LY
zsgoNS|9dbyA-AoKb~d`({FQICx6#2yXB%B?@QA9TjZQWm4UAi{Ii>NLFn=|IH~P9V
zJo;~r-E8j$AYUHex+3q~oYK=*UoRU>5AJzZ%EX@<c+*B-8z0%2YU3>%{cOB%V+==U
zV}OleHip}H+r~RK2GJO7{5~r%kQ$#GnDf*#!e95shS+%520!l|YNO-BR8p7@S7<^8
zBJcU_j-Y|r7~+2^Im)M0?3z9Le+cn4Ya(N9tb9coXJfpL4}5(6i1@To@e^!Jv@wa}
zvT>k%co8q691R-R<ta3z>)t!ahrXN|Ycg4S%F;fzG0ny@8_R7>xABRMc{b+Tm|<h4
zjeO5i=g<qDrM|o&GRwwn`eVH?cfWa{*{nyDrE_f*7@gH*WMqMjPi-us%E-SVve1WK
z#b>FFt7j~+v1DYV$>{W@H2(N78JJq!lRu-S)sK9^{@YkV1-WjwxTMc%_ARn6^B%8_
zRW?XjV}nE@t8MV@m80NJ_*$Rsj&C7f+1Oy?wu3tkHrm)k8+MTCV6%-aHu5;g>tL&m
zZ8m<k@r#Y^{v;f<@ihgq4>oq$*iF;2vCqaHzf{=g#T=#=_Qm%5r3ZX^#=aOSE%(Ky
zFNuC*<B*NRbTk{^+W5|A_`$~abg0J#`6E9?@)V_n-Ht|RwoUkvj(IcjsEuPZp`r1=
ztPA|)hba~@9Btf?!k5kCHcr^M!cc7EBpr=bWaAGTztU??r<}2ImVx4Y^t27yOzOCd
z-~8-38|UdtZL)8iPN{u5g$yj>{dpo6Y+Pj6wDG5nzZgp!XZ(CRrE0Gzr487ZbJ@n<
z972UA`@`PzWpr*fKi#@!<2o(h#zVT&(!dQ`ET@+-<lVTNoL*j9xDvfXx3c*OC+^$G
zye9wJHxjznbY?Kj6etuvP&j?rw&*|fI2(^`Jn?6SqW+~_1;gJ=j-)Qh47?S2$|z*x
zxefPVGU@!jxc|P`y{~iFL_P=k9h7rW-a(v$0uGWKFXk6?P{_fH4qo!JFE}XdBld;h
z#C@?M4%Y08{ov~^-a)`Y&_OW=MIAhRQ7QUkPR<l>rCqdwo8TbP0c+iCp1>++cSLHe
zi*j!b4vIS{;h?00QVvQxc-g@>{;lkw|4H)DW9hFrDC3~4-|qH>-U|H6zSxKcTBVJd
z?XIL(a8Qww9XJjuIe689;y`s!*+CTt^*UvX4yrmB_ADB5Ah3IPqQsAN%5L5{yUxLk
zPAwvm1DO>&XLswAeWg=2s}O1q-y*XO2fBj~I%hZ99DOq1HXT^(@Pc}qJ7rfW<XvfV
z9V9zQb5PyyUW$WM2Vozt=3v{LoHJG2zwZ>~ZPneMc?-)L4$>Xea`2ji$+v@(iz+o8
ztWETS9&s)YYLi~ngQS$xv@8d89L#hu%RyZZ$3Y(lZ#sxL$ac`&K??`<9W-!|<DiLy
zh7O_*8j-Dkb`#UxT`&9^zb$p##%#BW+ofR&;p+~XI*2)V!$H=AK(2#Pd6Sm&80c>?
zy>Kr5h+i)@<BaXg!)J<}thIE|%0VXwogK7xP;h^&orCrc+Bj(I_mgY6O0y!QcW`iU
zd4SoD4)|pR1u_xo;-IU8o(_6B=;oligWcUzdpOuWH0#*4Wa3B0dM_!{ZzT6AkW{^I
zYHtT~N-K*08#{d+yyakogOLvUIq2_Tkb}Vv2KY_C<6t1WG$Q_O$GbM!b#-RRMczEW
zw#!@Q4RP?U&o<2G8Omwj6~A;wpy1fZ-G$NN4&L)ii7zS8h}B0q80}yZRp8)#2V)$J
zb1>e)SO<OgMwh>y{ec6*vioC%e8(hlf`f_dSb~zgKX$Qb`1Ng`eNJ)kp@WYdO!F&#
z<X|eB-j_3GmdeXQWH?kb{OCk*x`R&~%y97Q)+j5E+Zz4xb1y7V>}<|}gRkie4(2+T
z=U@Yat%Lav7C89a!50obb+C~0>|mLLMGkHVg%&$l;*V%=q3pveqw#6p7V+OJqn);A
zE+^f=3I{AAkrX0Rc6txWl@7k75jt4sV3mW_blwGlHEjJtdhJ+Rox(NAlQzTa*m?(F
zG3;-OzB(w<cz>+xes3)0XGAtJ_&eA|wK~{BH!QAfqjDWgH?*x(0Td#<rMZJ1kvF{4
zr<@*~P9lr;uuBg1J2>C~DJlDC=exY~GQ!pe!{eSOG9C1Z%#wJ>!MB_-2dAlV2j4sR
z#ldk0KR7t-;HZORwCDY?BMyFKDBG0DL}`3yUl1Su$pI5Lw14)Ch%m9};>3n09Gqm4
z;Z`!;<_iKuPB|c*b<a3B>)?`u%VcnH&cOu-e>ynt;CF|I#h$Cq-5;wxK8&{6gq!xq
zi2UW?@jrpC^Xgw@TLr_U|F}Q);<lW>8CV=#r@kCqrB^PnuQ9;p3lsS%Z}?i?@PGJC
z2e<rE3jdFOd0q6bgL|}37n5DwckqCY@1miLhYtQ>kaSVj#UqEuSO~Z%>f*73C$xNi
z5a!~kgJ%r#F5+A~caX<LUKjZYZ$#^>?iF8^Y^&o_&uy74;Cka?Dsv#VtAbnTK<ot<
zg?(bYiy|&wbfK>gyySwV)ed-;(C|Qv)rr4-B>4T>K+r`o7bRSjbom?FZi0(M7fCMo
zg{FKfo$(MZ2#dSm$D3qeB2uh$_+=NRT$FYZe<9eoYziTXuTWa)Fe)ntcSiV$TX`3*
zi)0rSTvT)+xsY8{a`CE*Dr~~Vv@fESIq*u#+-C*z)r#<A;ju@9As2!R(Jx&(DgC3{
zO}l>N6_G)4p>jkn40gCn6nBGpyF@jAyhKcwoBFU_IDRQ9Z~H^$s6RRoBmc?+u@o28
zT-4@pT%@`PyQtwJ-NhRJN^P2p>YVVr-c#e>O`bQAUeiS_7q7YSDES(hqtXu@i2dzL
z&UBIGqOOa2?C?S_ru{P^P>1^6=k20I*o}XiX1l2G;$nOwQt}>*^=q2;QPT!Hn<YnG
zG;-0;MSmBKUF5jv?4pZ{CN5rg(b7dL7foH{x@hL2xr>;Km&+;_PsY9BBmcd99J`j<
z^Il>LpThG~63NrrMH?3#Ty%8N)<ruP?I~xx*F7GuZ{MFxHsVBL{1C~fcXGj>CSYCC
zySnJ%qNj^)F8Wl<=<ZK%<0Nmxs+Wu2F5Yy}mwg+b-p7Z$b-=3y%<{^?Tb$ML>AZMQ
z@?ea_0WRKlG1kQgF5Yo5(8W*}!(9A7p56mYisE@6Cmfkumb-gF36c@v_6`(wa-K!l
z0~QXB1p`4*kRU;k97HlG2!iA&@Bu-PC`pp!93@B)kes7L|L+XH@BexFsi(TSx;j<Y
z%=C0u_XwjWmA^{3cNo2>-ham8OTFr?_$$`wY}UcWvGi^6eqr<vV_+DA!uUFj0bvBz
z#J&lmZPSo(Hj8XTn5Fi%`0~?PPu52Vv(?)?4QJAlilJd)jNq_V3=I#1Pl2ahlcv=6
zHph+(dpl-{j|yWnbv}&KVSFFP7|s!@dKhD=cwx*9V_q2J!WbXM^e|?G@naYh!k8S!
zlrSdxeKN_1EU`t|hP%o(B*HM&Cr<O>j=G+0Pnr{(8OE$IW{2@p7*jiXdc~0a!w`vc
z!rqSYTt5UDO-iW$zcA*9u`G<`9FZ`74r4J}5yrwW7LoI*{7cyTtN7pM7;$FlzAauM
zp!`ZrUL9FVHTxmJLmV^CW)1j0O12eYtPEpq80*4V6~=GuiZIqtTRseZeld3aibCcQ
zn=>bDi}S?&^CnU52Uzcy@_QIemG;L-=b!6MVQdcLKo|$Z*b>GcVeAZJR~TEv*cQf)
z|LceC?5Jk}{%8E>Rx17Ku#JrFTNd3N#@;aYg|UZfa6g&*Y!AfZg!`!mcT$UXNus|*
zvK``#s1!OH#<4IC`}o>v)sKX6LUnW3i58{9v@nh{8piNNf#P?AC&M^J6LdG&ajvI4
zxxb2zu92QmJ^f4=XT!)QAiIEbVf-D&?J(|yc{&^y!nhKqPa9lhZ%hna3ga>-@6*6P
zta&eE**7&w?EQ5jzZ@y>8apA3n=~m6UG9_{l_}m}WBp&=r1Yro-l8Vg_lEdx824!5
z!}vFh`+jdcpz#kw?2&N#ao`b+!vn8|%jX8PQlY(dg(oy797h^?+W#<~Q~l-yUQpXx
zsyuyAX?k_83^35~>Cu}(9-kzf|4U{L0XYQ}74VvX1Od4O6cP{=kXt|=0R;pU6wv5#
za$W)X1mqXIM?>=WQ64d%<>Wyj4k-UVCkos?4Ica<Wtl%;cz~$zD`o*H0+M{Z^y)~X
zwGjwl-fq{jiugokp-gJa>jH`iC@r9jPcJT@q<}XBln^k(cg{%<pTx<`P)b0yJA&u=
zQ$RTZ6$QL0puFJukgOnhrvk_Or#|~s_dW@;9tC*bkVzZYCsr0vMZhl-7E4GK5E3v<
z#BdR50@4K>7H~vBRRPrm3=r^*fVTy_BOorIiGb?-Y7t-ya0G+}2m(|AngEePt`(96
zC_W+yybLAO@r}@~j!C1|dxK78&;=L*y$Qkcn^56?@aRV=gZwQk|37pEL<H0oP)|Tj
z0q+W^Eg&j@`&eoTNbH;N<#r)smDsOhdbvxfzZc7sA)t<cS5d-VB}4qKs?Wc@95Mk7
z1aEs7b7iuNE~PSczdtmIUwA7&Sppghpul6dj7_}s_)=<90q+UuAmDQW?+f@qz$XGe
z74V^eW&%DE@UejA0v_f}Zy}(i0IoxBEbUp#VeMrGBK30S-j<P0Vk-e7Cr8NHT0k2C
zp9yH|w|a`Nu|*7*#CELS!_@WyF8j4Q>3>yq6wpaP4*@*|bQaJ>Kvw}@`FXz(yj{>=
zvgfyW4;sRCLyc|%x(gV(D9~wcfKj1N^s8Y}t}pcx&|5%Xc8;I74@c17J58QC&D6|=
zf&M=IYr*rnbF98fdT3E(pnyRFeiAT8z+eGG1dJ8%1LbpA1$-;uI|0M}j3d}UA8F|?
zt`c@!pU5yuz-R&A3m8K=A1C$inN-{V<wU1vo$81TB#sj>UcfW~(*^t}V1j^20wxPs
za>sc5M%qMQED^SGiU3B5Pi40}<rUZpaUx8bAz+q(*;JJW!I=VH`h7_Ji2t8jKNy@V
zV4i^W0)D4J0rLf{5U^6f0s%j>ECIg?SSVl-=YoL6+$6w(yD79-8C{g&O_@TAGSB({
zfS#?0E)}p$z;XdhWzw8`!p;>@Y>!vl9$zKkHvwxoUp`3t^Ys+<p}bna8UYtqMBjTT
zQzq%_sM6cxJy%ALCny^PY!t9Vz)k_11Z)=Yhk&gDcKhq<TUZ}v+3r1Xw+SHsc1qqJ
zAH6a<VXN06EP5B21sw28+#_JGfPDh?Q*|H8c}J$Dw~jFvtG91mbm7YAk}EY23OGb{
zS{a=<yKbB9ai$&>aEx<YL^TnAvJ~1q5xGR1p!J{;6L3?&DFJ`66$1Vda9Y3_+I#_j
z3)nt6(7tcNS?b2y={qjh>|P_v=y}eU5j8JR6>CI$+(>0O_P^*QDz<>D0<N+73j_84
z5U%*y*$QU7P9?vQdh>oP_I-c|A8oe;+!pXuz%v1N1l;9B;{*|Kk9KKs;J$zdzI<k{
zS|gnWab<N?+0bJF{|b1*F}<eHZ7)8LQ5q34Q08+1FW6G<(h>1e04wkx&8CPx%~Y~6
zY`&)O={EM7l0!sJ5nQlk#=TbzO3N)GkBB!!loF9wL_QHoB9cYq7g0b&ArV0l1w|x^
zXt*#C5D{102hBrttHMn|?3{#OBAjI(Ukw%(!Dlz4q^F4d(8FsYUKdeB#D3qac2SZ2
zmi};H%~#Q4B8rPBA)=&+8~0P0k#r()|It69oWf{n5oJVF67iOZvLecf_-;|4f{3i_
zDdqi|u$RvL5M{24BHk3aSdmVg#({Y&i>M+ZM1wCPl}&h;E-nN6{bxN*N4f}>NNKDC
z4aMlH>2Hg8M?^Cb%|%ofQA0#+5m6Cg5rPO)geCIh6_N;5geF23F(qdTf66N&9%ZS~
zHqm}L8fOF>>mu6JjvFHW^PSZYCw<WNxGlmFQB%abB3ufY;;oxSL|izPMP%Cc_`?bf
zzrLMSi&dQvc*pWy3`$sT2CFBcF&itQu84XfGC2?;V(i|jf%+Uu(R)zluw7Q*>sHb0
z{#Se>c9AccrOeA7CY?O1x5u0K%<qf%Ktxj!@A=V@-+HMh^P1Undy7;ge(2NJt&X%1
z(NaWL5nqY;NW{k?+KOl=qLqkGM6_m0sV6G}biMegpXKQG`2Fqi`u!6=<B)Yt`ZZh1
z)@j`B9BD72gNV)|x`_B(L`M-9v!!(Mvpf{t0y{iAK!orMc6A=_sM?nzD2kFl%Nx3M
zP3}hJ5%IN%0U~;c=t<oc(N{z-5ht$((>G-H7Quoj!T8rRoBc%e_vO<MWTr2HbtC;7
z5d%dGr9mjA3=%O|#1Nm2NqwsbB(f~xgMB{+6JO*WAz~zTK!PCQTdJRkb0Yp0F-pW}
z5gSBo6!E=?F%%+VzKF3Reh@KL#557(M2r_PNyKCkKZ=+jVj{IPm{R+*SeYI1IXN41
z1CQ*tooh88bWh^K%M=mqS4K#jE@Fm=IU?qYm?>hGh}j~35^-dEX5ga1WuIGpqg)+*
zzexrcaGLChzt<+|y8@wkA`UGHFgq7;7Kr#+#0n8BMJyDtNW>Bmzxs{+MZ{u`;JV1}
zKVr=Og<prIB9@6*?n_`DSj4wG;<;8wn*A<^PSsz<Nh&0+5wTXpZz5KUSkpY?Nd<+R
zJP)<b7rS1>?;_^yh_eC|P6=BdrP3kKCJ~!O91w9(#1;{Mh}b1!w}`DGwu#s-Vh2t1
zw}v<-<*R4Ohr4*5sCRO{&k202Mj1Bmi0|RVoEO_GVjp$jWo~+#+3+ZNW%clW&W_ee
z^g=WJZt5Wshp7xAPO+Cn9OV#;IPO>Mm=ELrewc1|V<$NKZW)x%fiC!FxL~F9te*mZ
zi8w9dj4zP%b!UTT*@30=)H&uY_g%_Y|2!v@h};tLNVq8C9}$m5{7bD9aaqJo5w}EK
z5pk7fr%>p+h-)Hvnsu-4GJ2?9l-_IUKkWw9=6Ndd+am5z!$mw0aaTn7m&x~NQd+8o
zeBZV_iOE7AvZFrCC?CxENc1+fKAamVQeQo{BmP9hQ<@hM*(5xpr9$`x&Ay1|RG4;2
zJz^@4Z8CdXe|sk-JF^1WCFGQlAmQIqp&UMB9m+Q<ob_EGm*g1`Mnh^euY`OO%1S6F
zA-{wI5{gK?d;|q0BuYq<kSrk}p^${2gu)WILh^h^e5;x^d0Hm@>Akiyp5u|+I#2x+
zUnV3BnH8IN(Oc_#XJ@?L&iHE*UYAf(!W$HOKUhpcaS0_PFw2pB-V#Cko$&!X<IGaZ
zmrz<l841gmWbV#WUu&3=@x)t`AzofW1qoFpRFhCq!kZE*OQ<5D?e17532(8gbSB?G
zWuaT2Wf7)I2uVnjknW3}8I6~1l`&~&eECk#Ca{vEye;7!3DqUkkkDnb=bENLnLO4P
zHGf?k;H!1;VUV~eL6Y!=gfAt?5)=syB{Y(tO3);@5+V|G35Mh?8rVKGC0IW4W0Sg9
zt_5k?nB@4B^|yn>Yf5-mLR|^<B-D~nTS8PqhJ+S<y$=dH_+=I%!^Wi4@heX`_gjZz
z66#B6AR$xoRwO8gJg<Z^O8n56K$e8Y5<ZsDO7eV%#wENb;e82B{3x?D^{Y{EUWAT7
zKakLzg-ZBPLNf_j4UB$D8hwq{7+I5SbPd{4!bcKr4lziiw1lC?ClWqopG#;bfy}KX
ze8$<)urNz+!(kojandDeCcS`4=pb=92%RK+?lZHh?+i7VN*>mvGnGwC>%yXIc@Lxd
zYTAHep{`Ug2_tEEC3N$v+EYR=3EkQD%(Nap?6WD`fPRU+CG?T-jf8;``cl4xTQkzX
zmb~N7MEWyzQ#NK<eoJ6k10-xy(n4iJgCq==FigU53G{Qa;6%a@iPt2-ZtFb)7<i)m
zbeXgf5{Qsa%CbAL?<9<pFhjyj38N)^FJYpDNfO3L7%O2s`%1zO62?hrIn)^OIPh*Q
zmk0y5t`U;n{6KI5NBOG3q{$Md_?*)vOqI}PaezG2{KmfG-?uYPA$1!So+V*6>mXsi
zgr6kLkuXmJlQ`V3<j?hG7F!!NIwz5`z_0Mn5*GRz(t2@#%!_;?b%Sh_zeK{X67I`*
zAY-Y7WmH`mri|qhR!F$P;g+yc!YT=eB^;6P8!IMZlZ4F@*7%iVe{PVlR>C?7>)Dpt
z?(Y(w&x?@$dr~N0ZO@Jo-{{xj%-qNp34ch~EnyEURzut>VY`GK5}0e7U$=?h)!Rwq
zur9hw^48y&mpC~oXRm~P5)N=!+0Q=(_Oss}1zx#>D;Q{ei1zJLD)p*;>(GSi9{*A5
zxrDzYoM!1>zqw`Aw3B|dk4rc~L#L)498&Xx(jg|DlCXbXMBkivM#5QIcnSY7Z$LRG
z;k<+`HN?NEqLXsguOYHZ7yhs918>QfBwUtoRl+rDMSpM3-VZ2O{I*cwlMf4@K<K(3
zWhqR(CE+$_hm4Xk?nt;RA(xEYGVXC8B)pLDQo;iX4{4<(JdyB7!p8ft#}b?`k_!3`
zB%3vho-40BrSX?={YC7#gnK7rcN?gG=l52gulY9ZKTf4)(d;sE$S9YoW|KYb&ABU{
zQ$~UeO6$@wwqK1hW0_s?J*%R5WaO1mSVoeJd@}OOC@3S5@KmgT>@91@Uc{7L@p;c;
z%o31MNJdZwSF;=Min9)#8)bCf6=zbij1(C~WxOVP6^4vaw}VC4x|6Y|`5UtW9bUv<
zmr+bcaT%<@h+UoqrdY0u?>m%9o;PHal947OT}EjcWn^rwm|jUnSvEw*0@1A~qde=@
zJ*k4sD>BpHpO{G^dFJw(6`%Qx=vJAO`Id~zGOEb1-%L-H5%QDBT&kt|mFO<rC=gba
zQB8&*LnP;<%(rD8??MgPTS<FI1_jRC6`ye^7?#ocQm|;BL>71BhAhdDWxmF^n#_*^
zSCMgXQbc97TdGWDWmo}SMrzb0j%|X)I>?wRV;cKJhAZPU8Es`mWYm<=L`G8?@5-np
zBPOH1jM_4yGBRY;VNd>$+45HM`4L9*MS;5hAl8%7TZxihrEFS*k_tCMH;|DjBTGhO
z84YD`YxLrqaw8es>P$A~t-2tZ^fGr`#*r(jxB4c0;_u6SPsaN)K9cdVj1OddD5JTI
z7BZU2V3xdP^Ryfpm^i|?usYU~ol`cgg%V|U!Zjrny5nml<5PBv3~memguSs{VA6Yw
z0&V>2^}n4=X4a&gjP^3VVVBD2AmeixJ!JHh(NRVx8DGliDx<TEE;7E5v1dhQIXOD%
zY1WO|k#aL4bhxyjO~zL;y2<D+L&}yyhIjwXTDvPw*tUJfj=NdCSe%T0GWyHtBZGPQ
zf26MrN+8d`moh0|%c%NN9w1}cOF5;vcZhO9R^5J2vj)i+EMu&UA7l)XF;wRD_4rQ4
zFd4&TjF2%>#*}R_?(yz)qv4;OGt@<yhjztRb&PhY>5h^yTE_P>#<1JJF-Ro5yer;v
zact7UNVQ<-)0gr%8RKP4WUV;9|7QJhD)^&}2{Ll-j#r%<nb=%q-6nI=wTsqW9Gk)}
zdMS4ZyOh8tOqVf3##R~IWXzN?i#A!t3K_Fy{3PRN84G31p^D0w&q*O;o($f(@IUI+
zH18v*<nH*~>DB4<va-M6JZoQ&-h&s(bPWe0zf$4vc{|w_%UI%5Iu!Fv$C~w-OW8|4
zg;7eN-{6%pR>@c|<98Xq$yhC8t&DXXLCIZTIAzGsfi=Eb*4Q0SS)KGv!Ia6Zl79Ox
zutCN~&NvxcWNhNl+zj%x*Q*0x{2A1Gx%`KWyY~b2mdm%I3gLDcJ7k=a@t2I9GIq&0
zOm&s9n_59bA>)9Iy);KVl?#<Z`)E1mWj5Fy&-9(&9+bV!c!#JY+mzP3<4Z=S_22DT
zm7_9_$v7c{oF((5{OL0s=VVC?@%&V@RfzX-oTRP$pC@Wd1NSuL$hacos*JNT&T%5h
zxZvmdTgJ-mv55&v!C_Iti!%O^aY@Eyj?ttDOZ;(noTW2qO=9Rq!4L(KcumGl8MkCy
zr$W-me-ip&hQg|z9<1DE6W9YZjDGKpsN>xg!a9>@bqAR>Tr(m1P{tz;x`LGo9?SSw
z=GqIID0m{{sf>yW-c;~R#&eot1%(x!fyPUkcLli={3j!ug6s-%D7aoa&z)}r9j7F`
zXSjqp6)f?$rYm_v%55XJf;<ZHD=6U8^D6l9dN7}Yc280V-H0VNh!QENAW=a;K_Lb6
z&SWvyua~m2{xSY~kV<_0En{z<P?CaV1tk=eRFI+o3SLw2x`HAK$i{MuDj0J=i}*5s
zbPATs!%$2CfB90>-rezwKK%^^r4*D^P)<Q<g_jZr$|&eLC|Yx{=R%Ohu|DP5#y#;0
z3c5Z?UUp3`wI@yqOsb^dEd_=GQ$b|~RTR`v5LS??Af%wGf@%u*zdlXD#4AR+0(npT
z-mO@}J@Emvqi-u%&`f<tL3Q%aP=ebs^R$hv9c+BICtkHhhM+)HpeRrk^xqSg*uWMU
zvVtjl;=C*%cXsdNMN>ee)z+A<;9Oy4wJ(+omI7NrhJrc@90jg|cNNr95K(aEqi9V9
zES=S0aZeY;J}Vqzw6=nreG;My#tl~}iZ>B(gF#&d^%OKz&`3c{L45@c6l5x3F4mSs
zkG>kayeCf1+<W6BX8A2@+AXOudvb4_ts{}8G*$4Pf)NTvDtKSP2MW3<_(H*l3YsbS
zR6%P6&AHP-K}!W6DLC~-QnwQcWp4_trUyP&ko0@3m4Z(c{MkIC!@n_WhjOHYe6MY6
zOh$Se1)nMSTtP<#ZK*;E+AHXwK-%lgM{*utA1jeP)M#(K@jXx5J5ePv(kZ;Nf@wR1
zt|QY}3h7^RWEJ#P_*sFk6m+8kDCni2yMoK*L###*1sAS)ALb0q)ms4t_F=A(X>_Jn
zuuNL#z45#&V*M3-tzeLX!R%xO-zXT!?%F7_(Cr&M$P-x1IAU*nh=QRChA9~C7r~Vo
z7Bs1D`s}^&wR_`)Ea+PW-zk``V1|NG3Pvj!&&i_Td$vNs4~pk&H|fWOSyLio*#lDp
zt4@jSZl{f7hfE19_&ANXS5KhgQD+oPRWN6EY?6Y>Y}zUBWwqa9xkWI<O@o6U1}+y0
zO;a#;Y9c92nyFxxf?pIYRxn$^PYV90U_R?vC^Uy`oRX~e$DuO*1x%D6&W<)O7G0p=
zX9WutEK)#X!tChncF`NR)3}L|V&6I?5?P|)R}OSAv{b>h9tkXwm0|W}3YJsm^y(?W
z5HlXVpSnuHZ=B02imF(xU=8_cSQM;Puuj1t1&0-^SMa;SZ!2t9utC8_1zWtLQ6VX`
zNx^0X^i?=5IrPeV;jz7OUb?iE^I}Y(=IJ2uG5M4o3U(^kt6-mkU2IzSy1NzZQE+2#
zd{NU3M$f$y4W7>8olW}{9AJm!t$&c_YhRp6T}IU8Rv%I*>WG4)3eIvGDmX?(r4G{y
zDLAg+go1Z+rJQ6Ra?v$8RAyiNwcL%pT+^yk)M?KBuaeGiF6{O0gks>HqQ4cKSMZO5
zOVm2QITsZ)eU!>n3VGBv$_+@D6<kqpm70*xGX+e2wlR}=StVXic7ttKkWEE)6}J@J
zraf2iuYx<Q&-<bK3LYr9tKc5ZOMUU)*)UIPQ^-TI^+@0W?MGC+GM*;T#Vb#3KcNmQ
zcus>)eW)XTxIFO8Zw_&0e@Wx-M<4V_Y8exGrkfdSr8dr?BBzQ(6#*3qDsrjFry{?K
z+$!>@$g6^KD1raEnT2w=iq2|~Qb5J=_DKa*^!z)_sC6#f@Pkkx6+sorDpFJwRxvzp
z<0K#E9PZLzdfBU9Cx9gmcbS*Cw9lJCuc>%lMKu*~t0<<TxQaJbR8sLl)$|f7N~<WN
zqNIv9RCJ-Qu!%~SQc5Y-Fyiv~IeE&eD6gUd3muuQ9GU6Vg1bt}hq8SasOSq}^oMe3
zq`##iRYk}rR;IKeMimvWg#7U!kftJC#lZ?*mr_nu6@(vUxx>q*y`!SKiinDuDr%?*
ztI$;FDrU@#3Mxbuk_zX3^2Uj2XWJynDijr}ip|%J{Ll1s*Zpfmw7|C5y8{eEg{h+5
zzPO{JarXpEh0X37V9b~h-Ai9>es8!c=s}c{UuL=Qs;H%+zKRAaYOCJi#0(X6*w}@E
zsL#eC>Z+)xBIZXo#L`&@W~2nQo(D5kG*q!{P-0_t;IDy3Dzbb|xs1YEwW;fFOAD7+
z5ZHD-*i^-P9PS93MeshmNX1eU%S?QzqM3^Cbd1u`Tty2Ny*2dF(2|{_;=YOpDn3@x
zO2u*&D^z@<;!_T~iV-SWt7xO57qh7NOhsGvxr#5?11j39_*_Lt6(gSodhQQ)P{EyJ
zcjv|Gtc!M1(OLCoB7bNOSr;9+FHYjreeo|<bXCz^MGyALRrxCwysV^~iZ%PZn@32Y
zSL&2pDGWVT&z*JUxJuYZMPC))s2HfCpNjq}29R<yl|Gi~E$3?$r+xR!gm;@~kTOWc
zU=@>}%0t<Nq|gvHp+^D{-ig!lsl51cV3=RG3#A&4RPil!K*db<kBU($epE3*#b_1Z
zbFfsbKj3ZI8sqbi^&u&D-pe?;FFsDicomtxSN~UR6ID!7F;&GhmQGC@ADE)TYUC{r
z?AVaWKxE6*0Fmi_DiNm6QZZY_0u?{2_({ba74uk-U)EgSx|^fWKiv}wFN%(BBFtAI
z460eTMNSeKCB9I_A{9$i{Oa@n;={#0eD7iEfF;qJ`{GNfJbqy5j1n?@wj{bz#VQrY
zRQ##pHyVExJ5=oCSg2Uba#d_l@p5)x9W|tV(s~~<BXQnhwo%0<6<bwoQ*qvOH>=p9
z;t%RiizuTEuSy}Z-Dk+knevLBZ-0E3irp&qsaz$%9?mAgP1_pV%Tc%$Bf^)ieqE9d
za2BgLtl|i5+HU0#HL#t0e171oE&losdu)7^l%uSwj~rLI9S9dxTvTzA(>xIRi(26$
zr+j$fO7M(|hi|5zQ}MTovy^-#l~H~X@6VOOaNh4UQuqn{kBUnwuBo{06Z4eKb6Ld|
z&Wl9>1~%=g>U}tKf5;6LH&xtGao6X(rQ$Y?$ue)CpLEI~az5Sr7k{&T5|i%vNu)ni
z@rag6LsborRs2iisiByLCn}!OdTYq9;hBo(Y`cbB8eVW9sHh8KIW+vIBAe!g?3zaj
zycS|$5rjcH$*B>|sd@8`(cBv9Z_mu5A+H9$A+&pzT#+}}w#Z4?ZZ=njQBXrrLtzcW
zh6fTg6w=UYfD!Ov)d9wzOASU(+zTXWNY(%iMKq-N!YQB6ptsM5`QRw3fyitBmqZGm
zBZS2@l+aK{Ls>sdNe!hmaCM7$-|#8!vjC%|ed4nI3FS1D*HBqQ6%7?MRMhaMhDtu?
zB>yx4A;Vi52zerdati(>rfLXjNb}kLc$VB`dUeu?Fx>dCa5dIVLt_nb4ew~EuEEt1
z(NIG}Sc9rT(;#RNHOLwi4ctl2?EPv$(!h=7<@d+S&hoaJzvf?@r)x0$f-E1J8s2;S
z|4uyR-jiu-aD2M5-<x8M_Qz{#c$Y(<p@D{48ft5(qoJ<P6V;I6BjnugU;NamVB>lk
zVj5mWjSJqxokYS+4GlGXlj%0{;o&nu;wR1oiDYSL^h}<6Al5`fQw?o3v}3I_yszP7
zj-!STG<>Mxv+Cg%8k%Wn&QWfjG-`jGl*AL>V)z&P<1ICO<X48oX7P;q`{SQz_*6q1
zX4LTI^k{28wbgu2^9xV+mhoTkT;%lVD1XaGdkvj6bkWd3!{-`0`plhtxXteh^8d9z
z{sl#8=&qrMhOQdE?~?JAhHgHa5sNZPwtM^IkLr1NPYu0TfiVH%{KZBFruNm)kJCX%
zZXNwKe63-phFuy4uv;|D)i6)PKn;U5jMFe)!(a_VG<>IFlwZnF4Z}5zptk$b*S_&K
zt#NzFNX{eb$&j?91Kz+5@Ljr%W(_rr(J+>iaYcZk(24+mSpVSXeMMoE{6A`#pwUY|
zrfQf-<@6aw-|`k=Dm71<OdW2X#NS(~2jbH-OxG}*YNla^&o)!TEDaYoWZu7Id{VG}
zld+!JBu+TTPkKf7C>rK#SgX<f8Ww2yS;JBd%QP(1ut>vV4NEles4p|V!)pS3;jZ7D
zL8~LbvQJh=7|3whc9&~drQtUXD>SUsKuWHK5&n%OvYJY=KiKq>&>9VWucw+#g_)A~
zqjtT9-!*L3u!YSm8rtB)jT&~83{~r!u*r{-zGQLa5B6lG(6S*lw`<s{VVj2BuPZ!5
zx5;ryWZ0phr~kdbTf-g=S2bMIuvf!A4JS05r2cC-py8;7V;T<9%DtU_Si=!Ea6;N4
zzg^p}rjod?UjhS(+=28b=XlZ3aoW!!p-&4H{-JjgiKjIDrQy7W3mQ&qIHTcj>cdL$
ztPjtz#7D`DZZE2|*(4PC!waM|FB`h3;S#%rQ?*OYf2b|#=}aQ$iN%2{96|p!gf||^
z*EQVG@Q4On!%YphG(6C}o!GZE+|h84Q@&(~;VyfiM*?^55&!3E>V1lx9ALC%$<RY8
zdC3s7aEJE4tUPTy4ZDt~H2&<;d6Ad2jq?M~IgwukUNGaJD2WUl<qik9T|bar=OZ{R
zhmM>&N)}G3_fsH2$NPDewVQJCPb(3^JUa5~XsDx+j(j@u>!_-unvMcG3Nn|DH*_TG
z2<S-Gk)orJj-ZYe#}kg-OYS!&Dfg4)!a9<4WX<y)Y6B0%msH^9cofm`x{hKxit3nj
zAU^X*@HO3g?v#6()wGmnyXIC37uQij2cry24#Y{hJlrUyqqL5<bX3++Mn_p46?MF+
zqnw|;yp9S!vi(53-W%cb2jWkBgg9O0RPvK3ytCm}VO8t7AsuNtQg!eessA3!giKxD
zFR5ZZH{B<$JQjOf$2&S~9gdFbI%?>UbtugKSv0Ie((&S#h@eB%aZ7SfmQxrdLfCL(
zK-Hn?Fm+fubR8472!@ZalwG#VK&0^HAnAmRx;i2{>guScqo$5`b=1}o)v>F4!Y^%-
zYUwyxI>ey!qLxxhhVE@vspB__2<enYB&MT*j!Yf(nX#V0KsuR;Osx=F`z(;9qp^<8
zI=bkH>u92*wT?FIY8~(C_(;dcR0AC!@NHkm!X23{YAGM;Xr^Q4+6X=0GRlC1@fJE-
z`V4O$jB`^EcM7HFGh68({8Yy$KEe~Mj5a8cLda@7SrGV4M_V23bhOv;xsHxHj&x7B
z^GNQ%p6r%X`my&|*;6b;Vkfq@dqTd)^2Y0_U+DN!M?acw9bI*NrK6XQ-a5MJ=&pnO
zJ=kw8a-J=l#@F3Fi77pG5GVc7HRI1&LLVJ{b@b?wz<Y(ZHA^Bgcb4!qhgioD9YYz!
z=r=k~n1%=G80bfNCWXYoI&#%@2h#m%AjBIbhUplgW2BC8Jrag<bZUeXp3C3rxcwq|
zK6g{!46YKQhn~r!b$qX5v4JH9#^@MJRX0%Fzz@u*<EV~fI>zhxQKxTntk5xmy1{YO
zF`v^x$7CI|bj;Q<MaNVfGuZPw_y=>Ej#vd{Iww?;axSMg+;tAd*Y;1W{USG0NoiZ#
z{Yl3h9doH0-4d2=N}Q*ATMjmMNg~X1LuU2`I(}x|bSz=N{Tf)PW08(usB#a2{19WH
z*zR8?G5o6Iw@o>hQCjJ=rBo{4!`LgFj@(!3SfyjTjvZuUDLOXk*sNoXj<sw^ZDoTG
z*XdZV<98pY<ffV4vzRV5s$P{ha@GuuF8w&;PsQD$;}4o69ouwtY8HCsi@w)I?>V^T
zdG7o}5^MKJ*hwAMaeza4Gc{qAxLe0w4jEyQ&>nvl@WzDwI(U^l8F*hj=|m3dIHY@b
z${*%f7YQBlIa?i!)A*C~PaVf~Jk#-9#|i42j%zxu>o}$3FC7<jT-0$|#~Dh{ah^)0
z<D8D2mx4TR*z>K1g!K7y_pS8ezeMOUb>RH~-TVAQdss9y-E}YPxWrNJVK9|!S9DzE
zL|Yu8OI1SVx}oEyjz^qvRl~QaMLO>3xX-!vZQzcMbx#Z3)uFEREH*cBag%@6!QcZO
z4{23Og?K!i?oydVhQ~Vo<*;_o_Jk6egr2fF`Mrx~2r2o6j+Zpo1`-YYrz4wzJO=U_
z$ZjBqfdm7&4D`CDd_EzN(?G4w!sr{RJj1^IR`Q1BVs3+*UIYdb&9mWr1_<-}@P3bk
z0tS9!^jw(4fPq2=QVhVr@+(Hrz=(Ekl7YfLvNr5;$vWA<WWUag7BMiPj$72gYX*!l
zNjW+uEk2n*%Ilma%~T?6S_uOs4SZzaV*_s(C}rSX*3dv{17!?UHBik!Sp($^R5I|E
zf$|0_7}z@}P|-kv$AKT8B=7Whb5YcrhWC6Ka3NONM^X)h3{>&)KRQQwPi2~qryJPU
zDarH6DZ0Byrjh?`I(0L6OC2-=)eY1zAQ%u09C@C5RTFjiiG;9$Z(7G{{}z!9$OaSx
zm$Rpo>r#`K8IghKUs!IxgK?eBG+-NW*n56ickc!)13w;&SBhuwVoI{P1|kM(`hijA
z?K#e)GZ3k5AZnnw!P~^b83yVYXlx*Epss;>1~LsaG!QdT-@wnUG8!1@IK6tiq0u61
zBSiik5Z%1LVIu>iWEuEvY~U3!S0vizW~_;UrW~d(q96Jdd(Xi820rj9y^|HvDTET3
zmo;f-c=uj0`@pEu!az%AsioZfCwS~-?p6jqF)+};AOoKoXieoY@P&ak20mkb40JNQ
zE3MlaXm6l{0p5Jw&cNZ7Vw19IpBvzX*E{$qiAEP6jPr>4xb8{3ypJVz_G?x2QSeIx
zT@Ca$(8s`6)Q8D|?go1Jsoe~WyJ+yrn4W&Lmw^(`JyUkzj=)eVztWfEQa;qrK!1*1
z2buWS1_t=VZw#C)()gc)@q|NhCh`7srVchR#K0tKtU-_57)DEOV61`RzWi?ue8>JV
zFw&1!7-F1Qm09voe3XIF2EOO${2k-D&OJ?|;X`pg1phgoHG5U&4?gpF4mxY=<2*9M
zyFMov7&RkMze#kW0WLldoRT?vv)9#A3`{jJ$G}|D4NNyM%Rt2zp<6r;6;7XFU?%$^
z?A^23W?_WLY|ck2!<r~52U~>J^oh=6Dbxo83t8y1+`PeXzJUck59Q~mn11Nz$RfjY
z4)%)yW*NRocs?Pm_A-&uel@U^`fNhwG9V|lftNHO238nYY2X-h8Cd0O<3<CUs8j}4
z8(3ptt%3Che)k)gvuDEf7xFp-yl{<3fxF3cXR*QXon5??yPk_}Hn7FO9!^^We;C+m
zV26R72DWi}&WUViZBHc7AKja6W$w8mvdh5c&*j99@@|gZQnBl4g-N9EGq9f{Yv8DX
z18j?dLsTtJisRm9t&Ky|cs79oe>vmv6CoUaKS&>U<GUvuH*kX5Xy6t#!N4g>HgLtj
zUj|MaIB(#BfirA^fpZ4_<}5q(|JK2pL_Flh6>q_R$=|Vy2L3T{iO>DNW37FjZ+u9$
zX7}Z*2Cf;nZr}!$<Y2JHk>D%Hyo0_AFv`nZZgUnG_}9P_19uJFGw{&BBLnvhJm9>$
z5<HSK1*4*gJ2L4Df@@-r4dj~>DA70Z#?avOL-A$PB2TG%)zVvEi#<2+jG}%DR2vly
z-btmahZi)?qoTa+BAbcqCSEsD%tQ_oIZYHY5i~sunP4K1iM%FqnaJ%^=uMX&8u1o6
z^O?wRqJW8lCg>}G%x(M|zPc_9?ChJEXd+<pgj9O!v<M-+p%ylgWFo}`OpHC2vUp(P
z`d}#81mXCNiA8+jMNPbB;s<{VE(H=P|I!P^O_VT^Y9eH!q=`37ylJA6iBcv?n<!_Z
zyooX<IIYV1u)){fd?9=zv3>=g!e~Xm2xVnF{{!!>@+~f9w|DP+W>h9pB>7Rr5b-KL
z59w(p(tTX?VO0}vn|Q}WH9yMiYYxS$o2X$TY(ikQ8)VRFC+S3PMdOG4fxhlT$<HF2
zxV$~KXM0RDp_}MqqOS?VglXbE6Yra_OxPysn5b*QF+JDrD_&P>ns9wQ;zP<W)GYe0
ziCQLVn>ZT?MNMS*^2z+DS#<L23cYR;sb?Z)qV;>BxQY5E8klHkqLGQKJ(J>47&1-p
zPc;RWhLUBXF?$jUFTR=VFSinB-X^|;rY4$}33sk%e87$}@wthPCYqUOZlaZmPfWBh
zc@bfHOA{aYH5uy<-^V5v{hOO~hV`3-Pbtd8XC~VEJZ(%~aT~rqI*{XVeCJKMogZy)
zqJs(TnM}&|)G*J0ytpZ!yD4`v(b+^-6JJq(R*PLseBmR<dnPc-i<Z9RxLi?q#S$I;
zbu-c3L=V&R4M-n=MGpphn&@Ssw~4p9Mf2Bp%hY$tMx5>e`<duZZKTSX_}at(D%GU4
zktV+Jk-;X0m>6h+J88MYc94nbl^TEAUjDMPJk-Q+pU$VlFrT^b@U#}u^bscZ@A7)}
zTNB@z7-eF#$?GrE$8ZQ*<ow=md#yeR%+>rikqE;$6XQ+HGBMl4k0vIVn8t$GAtol7
zm_p(2hbEgCwlT4E`=sw1hZv=N!l@?S^_|}q`zJWV#M1JinLeD?D}fYcUgReeb4)BS
z@w17!R0Ab#9xLD@{HXuFR{|;X{V0+CYT7~$nTcOaEH?4<!@_S}lNtJ#RF;_dl^s=5
zVJac7z~CZMrC7#t6Dv#<c97&?rHNIv1~v-X_|3#>6D=)#WMPeowHz!9u&|Dk-NY3t
zp^4v3Y%p<%!(?KkiA^SUnAmC3=Ue(_6MvZ4YGTmh$QHlH&N}WkKWRJFZ$iK-o5m|P
zwpB~dQBK)qVmJHT!~qj~XuirRdrj=~naObHopipzE~}h=Vw=F%*Mpom{S)@S5vr$0
z7k?BwV&bTYGn_{zj+ywAxlEiiy;ofFA2)HKa{4RgQzri6aQ8|&?GwpBnXf89hI1zV
zrjapmiF15#&GY0jagp8lQHaf91z3N+QM1~kUj+W^pLp4?9-Vx$O4m$WH}TTMe<p62
zxM|{niH9a`v16wP?wGi1VqK1u+f))>QC&Ix9;?B*zf8PbR>?|FC;Z@^%%}4s6OTD+
zCZ17?p5^}6#1q={Ujl!%kMa%S>~?{iRGa6f_rmbPhx9ngR9^F)%|dny`7IQ%coY{o
zE#$F~*YY?MEab9~+s7%P>phu7mdiJUe3ti~Fz>u~5daaU7POFPA!wnng@66aOam4Q
zS(rW2c=NhJ2Iro9y@ZlcHcyg;WU?)avPG<ar?P29EEKh1TCgm<X5n=UX%^Bg6thsA
zrCWH@LJ12cEtIiP*1{VWN?BOiDq7mYhH_zk+Ej^$CYSb*J@16eS)kLK@)jys-nUP^
z^WGv-M#uW(Y`Q2~$--MK>tsTzg~}GHSa|U;nV(DKp}^dw!&bpi$U@Ca!9SaXZqya4
zTBv40v>;h{+rm43iD3)Xec?@?1!`D0*|9#${Wd*JNca1Kg`_5-g5|=p1;v7DL9@{N
z&mc>oN41xE3$ZNY{UqIjVR_HlVu!sqhibiQ+7=uO^({28;97`S$gog{m9e~oy|paV
zw(u^;Xmd73jn|Z@h0^6hxr51v!|Ba>M(Hw+#}K$SSl2>53nMQCpF9f0d>)?arB8-T
z_Kbz57T&W!wni2jTZmi8vcMw@WO#GA*u*cZ>f)f;JBh+sF_!hdg%2$>v+#jmVHQLp
zvoyDOjy}DG1sZDRC9}=T-z~JV@SBCz7Cy1?sfFPdMp$TVp^b&^7J69t%tBiWoh)>=
z(9S}83!huw1@vQ1Ch)TOPn)S7EIi1keEe3!juxJ-OR7d?dn>(*g)c00weXeYT})qb
ze&9<g#xjwC%uW2mblo^!Ekk>kM~wWTo)&sp=x^a`_P@o;Ueo)s&+~_px+e9pz!zi6
zJo0aHKg+xCp1B5C_{PFu3qvdnw6M3bG04KOVtFoJOC`?M(K89*Q0l-^W0-~CTYCLN
zHzq7@q=j!SI^e}j3*T87MVS^RSQu^Ldka5U7-wOO<t>JcwZN|cu6u+Jd!GYUA7vG7
z@A8hS@fO}68=zx1@=Wx3rdXJ2VUmT(enuwUTp8g#$n^h4o@o}Qb2Qt<8h6MTqIuuQ
zvpC%>{9<9Tg`X_UVJ-^`EX=hqkE(t=_&;jb_-O5wG5Wt+Q$dN0i_+oMk=wzaEiAOK
z$WMLpZM4DRIN!|a+iH08&=Tr~h2<7juqW>+OD!y;cHL8c&eNEXVeGglC9mWtHxI31
zGrx;cYyzESjgPLeu-3wP3m0hrEv&b&-@*a*8#~a#E(>y{^o<raS=h$Wx3Jm577Kq^
z*vh05p2=!dLfKW^L)x;hiYsMGD5USOK>AKfD6TweF6JqrFm<<uJsdI%`>0N>L%Dwq
zOj#DAd^$#}Ra`k};SlGkg;N#;{_wJJj26to5o(36(gP32&()4jI~;HQSM0cj6MT62
zIE!W={uirMMmb~QESpnWIqgIK*EnY(TN#DhHvZ;RDx(l5B>f_%n1zQH9$C0#;j)EW
z7H(U(V&STV>l|MihZSOSxjff=r0Z*;z5UZkx!*70CMU(poWx1IL+jTw;hu&2Z0}#O
zyX?CE<hp&L#DxpN2Nv!f4K}ajnYhO^ysV6k>^7co*3hz9cxmC8g)VK9?w<-iXKMcX
zM-Ime6bwDA9A17p>+az=owNN%<6kf|=xkOF8#!&{v60tCf{n@L!?|qawo&GAj6R$h
z&3h!yz_Rk$V94+DFsZ@tn)LHbwnQ5N8)I$!V55+YppExzyl<nhjU*eg4aG*XjT9Si
z+Nfj$Hj3CNWuvr>qBdT$QQSre+w<!Ax{Yb2^AxjD{z!bP|0|8>?5fNOl(fO<8#dlP
z7K=~L)cpFCu~F7W1>5sFRnGPtOqI8B=6-<Jfb!Z<5^KGXE84t!D4h<sdBNygHY(ew
zMj<w;*hsaJW+R;yn;Qs`t!Kin9tmV)uBtZZpX%y?ARSdPIy$HFj*aRz1RJ7_2c4re
zY=mvkj5EZK#7W^7*3Jh3y4Pcn*a>%1NmOlUHexpF+t6(oHe4GK8>Wo|ja>%YM&q9Y
zmM^MimV0`5O~=NUXTsW<a7`QU+Q_g`hs>LWS~hCih_do`QwP4T{BTd^3dv93MhWZM
zAgpJDt0)Z9Hw&Z_X<&OVCyi`m*~ny97Z)4)lmTys_zp9sWT-Jm>Y&opMx1$Vbo6_5
z#mZRMg9<~tL%|Phd}yPujea(o*=TN~vyCn`TG(i5<1-s=ZG2?oV;i5^Xl;9r+*{fB
zgvFf;*6L{tJrXC}{-OGP%V2?7F%sKw^gBgKY-giA)u}@Ga~nGw6(+))vOBQ77h=2}
zyCX&Ush-wV2=lh<FW4<My4&bs^P1Z9t~R>)2=T9M%>K3>uOBTSy6Gv&J#8GB9AW5f
zqu2l8Wb4Cv`ge|#xxbBn(!+yn47TyLjR7_`yqVs&Z^Ab=2KspAUJ0c1>zgpd#!wq0
zZG3BE7_0YDXoL^{y%-#BgTHKeZ4il!erIEpjqhz7su$-yu!(I#J)Y{LZ9KkQla(Pp
z#!q64#@QIpirF}7<3}44Y^-EkY)rH<$;Nye3pmAWOtCS;#!MS@do|UE(|p*pU&6s+
z%5)#6kE~g2zU^I;J&(}F92;|O@V+x%em$soi1gpybqS|)aBcioKEx>N@UxADHWu4h
z;xjMuCH&&!x%(zEJFjN@)y7gA%c+4c<z+Uu*Q%SpX9Drxj>Jn3jQ-I)X$9wkzhCz^
z8>^{=Hn!SWLu*hXw4M`+Q_{!Rk*#=$f%FYFHquaR6}H&eL?iIJvYFFiY!cOV-;sEm
z*A=SzykW|dGHKgbqK&;a_Sx7$B_V!7+)X<(F0hLd#s#=RmpgR{_t>!R2@CwYmiBX`
z?#c(*)jo27>bfiQ_q%eCSHN>thP+fB6DB-n<4+s+Y}~iOLx0C@oVRho#t9oIZJe_4
z7mbOHvo=oq)ARhK0Hy{0ITCN*%iC~%jze}K_P3wZ=eBU~mXPge{37+r#x)z)Ihw_k
zOE#|f$fVTt%QS;;DCbv+q+j)M9uB%;<ED)}HtyQE#iCXBHU~m=Kls|Hp}CCmLWifL
z1H`v43A}tFKd|wTR@y->2al*)HePZ}ZTw5)Z(~aV<(ZA23n))X9}ytrd6O-3GN0Rc
zL9_ETOK6`#iqR>?UB1~I&#!5A$1`HryC>vukkiLkyzurLb0<u02YDP6a8S@eUI$W1
zC7*-*4zl%2nAtT+`!l$8r&7Oex_%{?=y-Q|f8Q#jkb{SF0s#lpH;Ih?uS_WD;LIlR
z&x=N~gA@lL7iliwpooJx4(2*2>fkj8?>Tti!Rro+Ie6Q_I}VCFDB+;Ig9;8xI(WlD
zSqI;2jFocmMVU|;zr@lG#`I69QeGitTr=-@DH+N+h#m@#s+3;Q!J7`!9dzFyR&wx`
zgUSx7IQXh}(#kfnJti=)Tqu=Qa*)Q4**0<q*_#)~d)DmTG=ovD05D@!2h|)b7@jud
z_0XUSq3RB5IB*?A9E2SR4ipEfgEfhY=tIfDyAP9#Z4n7&$Gf59?(j6tf$rersB1Ye
z9GDKK&Iyb!q8uoq)GDHM_YvEH!|ILCd_`wXYEqPg1`aYE)N)YUK^+Hm*)2!oQ3qtp
za3J4ks0z_WLX@zcgP4Q*4n6;Plx?SCgoi(mQa+EHH6-0Z+(8ouSq>UIxHUGwz=DeV
z%NK1niA0+ENkwy~>}l&QX@20~LkE2w^mEY6L30Nk9DMGeg@cw3K6TLA!AEQwdFp3;
z;-D3)bTnT0dG7J`GoH<fWG%`hlK()kjf2k|v~$qj!HVLcwm!`2l~8^}S`o=0EVMc&
zZ%eG-E1{!<P8=f#-5hl0xEo>@j<|!1YZKFphsf}yPwdKp%cC%r(g-J43UznT(?Kt4
z(NBRMz9!%PDbm})*SS)14o&OhfXg+;urxM`us`VzMmZSmV1R>tbuxyrT}_2=91L_Y
z$iZL-LmUisF!NE2|0DQ^f^b?i`YJkPvoPGj2nSWS3L_nS>)<<1jknS%ft0U5kMZU>
zJ{P{HesY#MnBripgC89H=wJd1%CC&$2(r6;pEj3^hBlt|UUwJeS0*}`<luCvG~#~`
zPNQRU(x*C@#+o>o#hK+`hJypWlMKmia5SE<JL8M`>c&>auBCz54t}D7N$x9Rxf}|U
z=CLar+;ec>!F*~m^Ex=_;AaO59jtfoyMsjzesQqM!EX*0J6PgiIS0tWuMU<vSjPJN
zlDTnYJ)VSO==N!-VDIREJ}l8Xw37Crca(H8tfqcOqYP`=dz*zdY)kgWbQ`|T!Jl_!
zB23!gV55T_4t6@&#IcS?w>bF2!DfHR=-6aXG`f`|(lcqBgY6FJz@+i6OtKMSYTKjn
zT@H4Wf!1TWIQVFMkAp7{2KREvj(YE?B=Wc2eg_%D1FskkIXLX#9|xBl9C2{e!C!2V
zgJZ0fgX0cPu;JNLmW>HaKys~H0>eoMZR)0<^5L%cyfxl|cZ4$z&N}$p!FdPg9Gu)D
z))^I`lYFKUzd(WagP-mTUUWRq`PCQ39&8b_?NTl~xZ>b8yL3_Hs)K6|ZaBE<H+IB5
z;ku9fIwGy)(6n1VPHCII3w%Dzy-}$#Z<e`38+bo(*U$btKX_?i9VEI4xOn8?u>)=*
z&Ew)<2Ty33U1WFh)WI`q<}Kl+gPISMpF4O#mFu0bdw3cz6`grB9>_>vdo=zZXGABN
zHZ6yXoGy4NUV;z%^3t(YNuKjS7r9-O>>gzjy$c>c8qez@pNq(y<oqrQxTst)oHaer
zXKA3I3+sOHY3Xpg3gJR7f-XwADD9%KizF9CUA*QZ*+q&AUV5APEH_;AE*oYj;zBJS
zZge-bf9Y_-^2qBhin%Dkyim^m8Y%9g3h#gS*Qj|9dr22>xTybrlu5jqo%Av;%DQ-y
zVqKJTQQpPhmupsVy@Rg%a-|R_LRirSFa06@7VGRH)dg<_Vwm|Pz);1dGxl^wCwERF
zOm|V0XLDU_cTvs7+b(*#=;h)a7u8+7=i+@AHC%*UL|tUK5M1yqugM;8A-Ry*A{UyA
z8(osBtcWN+a(+;~hb0^8E(i@aYDMJajCy>{CM3mn;kbC$MJ*RDyO*`SE!T8$+4omN
z{FRp;BDG!bVf`wV$o-@7IxgzEXy78#MWLu$kNxA~(075DA0;JwOM_7&4P7*H5qHtV
z#px2EEFU&@J^zG^GSv7bLSo=poW!QCcSe}R4_ticqMeKOE}FS$?xK~8Ph7NcF=~g>
z(#1zEmPFIL^iG;`C;4(4`D2&MV)D3X`ph=+r!HDkj*HJ+JT8-mPNiy12(%g=_;`4L
zcw4r2LV(Vu=)<ami_cwjb@7#pjxIX6=<K44i)DF~%145e%g~!!!WS;SbW!tMkZ1XG
zukkDidw`$$g_cCRQEy%Jpc+gGFk0!~KqhZ~UzwA5Zx?-B%yKc?MPC>FT#R<{y^H=X
zzIHLh#ZVUmTzunVpv$|NJk6OuDL_bF8tg}@KY#cXBEwt^ckvzD?qY;L79(AJ>w>3-
zS(z^W`=>W9QuLVr>zR;YjEk`@Cb^jGXZgX!II5hF57-y{(ZvK8gcE(r`XL5yMS1gB
z{OiZ5#HYBJ>SCIU=`MJ(WAeNJ&xuSL9+=@rNtx**#s3#2p6zJtCl_;EtaP!;#atKj
zTr6_&3njal@8V|{3#qFk)4o0zBwRqH-Qk%po}1&zI7SH<lXxuttBa)^Ss!O~a<LG@
zG8fBTtYAZmh2B3FCp~?Y!EHrEesi(f#YPvKT&!_%wT`>a#d;TOsX4w2+z0i=Z%d?v
zJ170l3RBzv4wJ(0%Tt{jEjGK@;^Ge`bxzu~O5Ey#L?W-E-Hyd~xY$YMjG#~iyIkyc
zao5E?7kfCDsmU(RxY*}nzl)<Tj=4DC;-HJeE{<?E<ueZX@S|$!qmIQ11Ahje{uCu-
zlAECaNu_mh%EfUPC#d}YW#wv`!BhNmkHwGAkNxFS0?)jy+N7U#an8j*E-um9xH#|P
zqKm8+q2K82u~)(cA1CKGTZFxj0wuUe?&6Az>$C&x77jtdlxr>;-b!8E!{F-W=40{y
zwG7>Kam&SR7k8+cyyc{2h)HGMN#~}x<xNBR{C9x+E*@|~HL05r!9yB<7tdY1;LM`&
zckzT~-xtfgovC{*LkUj;JG&)O$TOe5^j7Li+D|K*ErRS3oIMu&kIMgPloW;>5#)?`
zsSLcYnUL!qxgtDZg**}DjbQkwK!FG%o5g$)3>p>4@8j*?5I1y`Cv}tyMv&-J#<a;G
zk<AZAP&fiT0waQ?2$CbH96^-`QX)VEr6VX4L6HcGMo=t*;t{;&hu0&XedA5v{~t|P
z0c}<B^{;eZ9`Ev_q?<GMJ^Ilha8LKS@aXO?5k$hoZY4woK@=4PMNsi?3o59Xlr5qX
z(p}&044-SAHEYkDJ+*80)Hw`iKOdhLt&u@ZHY|hM8ARK?b7QRCq}V?S;lB^`Iy*5=
zsh2_h3>s$8D1!zW@B>i%^b>LVjJ5dV?-TpGHqM|)22Ew*Z@(RKQJ1-hV7=$1Gsw%J
zbp~xR$j_iz1}!pZnZe}Bd0Z4C5t?Vf^&duOaS4bO%`W!s{Gv?X{z|5R-!aXgLk1l)
zXva?dp7YJgWP4f5j@wl(Mh)OSGt%Mq@=Wh6)A{A|=Q8muqgw_yWME}rXV5)^9`dc8
zK~It~12qFJ!_Nce@RNG{Lf~V+=J5M?9bQdZ<8ql|WME4Crt(KfE$WqYGH^5Kok3v+
zUIspCl|eRxug@oUJ&_DD2s3!|LI+-tdgW5O>(?E7$?OMDrueWi{4Z^v4EplUR|W$z
z=$FB-gLD5{lstJ;E`MCeTbaaJ^GdSqiR2GYBnM|OL}tHTi<vc)HL5W%EQ8@0jL2YQ
z20v54G8mP?=nP&Uat32E7@NUu8Qh-1xD3X#cNyHA!GsJZW-v8_X&FqC#ZJy(3Pqw=
z{F~j8%~AY~c!qL(adLVFGcuT&!A%)l-COKNiOeI8m7j?Rg7JTPJOFulcd=O+9G4O@
zCxcrun3utPiqKa%d^J~Q`StU-WIhWrxK*Y+zcW5$$fwe3?+%K029IU%cm{W6urPxM
zGk7S2yEC{)BHvG4$lyK+?;9J7S@lEl(Sivt$A|PD$RPMAZV#V_Gk8Rz5ngj4^{9kz
zc`ttZL<Uc0uq=b8Ggu_kmt?S10*k35OX5iiAAY0nDaz#V+;Y2OnSUmOXERut!Kw_F
zXRsoJ=Q8oxPQKbCxAjllVNNgB>~QJ4=l`pBH4)_Jvxrl-RNk5lUdmu=2HP@tIfGXy
z6-3BjZ3gQycs+xSGUKZmZ1}H)_2lFI@p1>B*JO2#Wn<pRU{eO0Ggxr!|GUOBs4b4>
zOyI{qGuV>B`x$(Y!8;lJk18okBZJ<hX35VRvb1ZT|FUM}ekk95l)=XtT#^4#YQH3A
z`X@5Ii>&U`3_i=?n+(2{iJxb%BZDs_ygh?E<hLxo%-}1TvXktSNBvm{CFE<FcyNpP
zhtc!948G4`Uj{#B@Pka>mBH=|`p8=L$dtXZkzF>$_Ghw8|4F9*A-|f-#Cz5yf6d@G
znlBYqRs5d89~oTC;8F(rGx#%ue=|6m!GR3^%HXif%UpkF@J|K@WwgWRap8v~eDP?`
zI{D%K8jmNBWKiT}-1lP?;|$JZa5jSz8Jv`ur!zS9Uuo*17!B`*Gxx^QdrqdG|L-k{
zd_lt1R)qWr!(|dSgK{d$tGJp$LMm)271yaKqN13J;wp;DL>5JgEtI`3p~gpunNm{4
zr3!gX-tykRlCIk{ue6FXDvq6q8^EWmikvg~m4=#0SwgOgl!^*Wlu^oX-LG;gs-XB0
zIcNuJVkH$&QTe|bKaykXi)*}UDypk!t)h*J>s8cH(MUyO6*VPh9Tp;iS~9Gyg6-kA
z9awBV6%GC?t-gwz9Ft9IsN#i_$rZ9MO;j{hk*}he3PoZH6=?~4b0V21fouG&bt3kN
znyYA`qLobFm8eAf(^68Slzcl?ekG$oMOzg;Rb*7OQ_)^UHx)Oi=%AvbiY_YpS1;K~
z#h>%bcV_zUF`KS^#H^0wepeM`?^XFt%kHukzU`sn^^eLEpae2hRcI<q6_yJ9KO92>
zf8SDUvt*4eqmBw!#gZ|xIU;!(@}Ug)DgqUuib%!3Dvqkis_3O+m5S$8^j1-*Vy=pL
zD*CACt75E*aVq+;<tm1&7@=Z-ih(MIsyH(=_w-H02B{dVVhEeGIUeN?nr6XY>DI$d
zyHVaSHQq*fw{E=WGE&7T6=PKJ002KLeQ9*=XxYxL6V3A-yYiE;M=vJFtC*l-hKd_i
zOjI#R#bgyzB-({hx#i{;qZ>0-#WXf%TifX>SXTv}oiNQ&J$v#4tvo0)lZ;kzvx+$?
zX330f(rijXpSDE1w@1$xOLXjYxx_6hu3h}$vBs^hX6CC{pyDAF539IU#ce9?R&kGt
z+g045;!YKJ$)eg+FUbRzEb!etER-qb9!v62)5t&5_o}#0#r-NCP?1|NzuuZ;x1Bls
zvns!)`yfkuF1bpcS>3d&@DUY{s#vDtX%&yDc$_>^u~fwqDxOraNX26Ix^mvm&L%73
z5dRVK9#VVqa?p^??dS(SMea<<-NE0p&NbgQdp@J$SryNzXkH{fOR!wU3aTML0XI#J
zzv4SI@3)3+nZ8oR<yl?nHms)ntN232mu$a^H7ed!@t%s8RJ^R>4HcVIyrN>QiVZ4W
zQ?X9Pt5lHJlIz)vQRc&Mwwo(I7s*ZkPIsuUQ(A@;&D>soql%w~<#BVI-<V=`n^nB2
zVvCA*NX(JBZ>e}&#f5*;?9Q@ICa=fxB>csC`Rh-m#tq5)pQPlbGI{T-_&~*0728yN
zsNy3PAFKF;D*0-rM9q$z!EG&HV%x;rGOe4D;H>vk6`!d%$(tQ22K|%sxr*&-d=rXC
z1=t2YP1c&+vgcW#uT<<*@w19wRD4a=tJtk#kBV<qe5c|EYO#v%sjZJCdHi0#n&hun
zkF;!def5&$KDQ28RQIiw_EIw6Z1<yzeQG=--gF?%9l$vQJN-nl8Jag@YujH{{6_Is
z@i*<iia)64Dh@~$*so&aoMN-qCikj6>A+9lTZ{}U_k9lkSp5&hSj8a~hgGnahs#$w
z_HRy`SCdC1Sspl+v+QD$Ds#_$<}nq=Rdm(RO~VOxTtyWPRW+Paaau(Q4J9?4QE^tq
z6`FJv=Tw|magl~v#g28Et(RiI?gFK2Q0(aPxlCKSCVBhO6kA2@NNBiDL-tIE;?j#N
zqM@jUViJCJV4Q{56Btr?!zHnJm(oyLLj?^v8p>!WtMRkRD6e5JcmFRXtKVLJ^v7+J
z8hW0KeIfn{nqlV6b`>?`YJi5y8d9?GiH{Ynq=8?xiVk$0y*Qr-|H=-}_0A^e>@D{9
z&YWr*s%ua*2o2Y3sG*_0h6WmHYN(~5u7-LVYRhtXR-}#w8lUaE3MuWZj?Zsvlhbc4
zPXacSIE^(l(a=c4ir14o^-=dky4krTKk`7#rW)qe&!1AiV_HKV%hAwQL%xP)8d_**
zso{akNosU+4Qw#+s}?kCrJ=PfwhbF5Pk_+qadyUIW9#1t+i7U8p`(UQ8ailrXl=6P
zqsc$tXt(!hngZNeW@I^CScSAIEP+J0K|^;9!!?Z1(1X;|5RoYwG8$A3t_Dwora{+W
zYOpjIvYdgZ{@-6c_IhZ`6rOBxG_WPSjYuokPX2Gj*KlB0VW=UHIJ|iHg}gY~I;UeV
z4ZSt=*Dydsp@u#h`fBK>;mJI_CH)FoFk?Z?MDk_zndCqXgES1)FiZo_nGco)4$;8#
zMLa^oBT1)3vx%p2xD9%FPO&5Wj+};38gA4uQ^ROx(J)!V6b)lFjMFfIRMo(vaV&hi
zEQ<DlT0g6Cvq@~yiCBb2HqPV6x2I~DreV5<85*jr&7>#gavz!h>LLQiluNU6SNvY$
zCJnPR%q2rL%+_$ThB+E;(a>&LF&2AG5o$b;d|+=eYBZU`yz@2Os^Q*Ga~7~)L-Q!Z
zTq$DuZL%>$yF<gB8t&4tkbTtfp@zFP+@oQghF6(U!+jc7YFMS=eu|2QB^s7$cu;14
zOvB?6cu2#;8XnQ`sEo4wYqC_mL(eDvOIaj=Cy6QlTt=M5GUeAxC7${Z=UENQ{)3;^
z@Qj2LyW<%FpXC(q|K2`FUdt<5&;OV5l7`j)!7p3`G_3hArLrvKWf^@%!&(XO64SMk
z*URWT8a8NnO~S8h*dzfWY}D|Egr~{DZnK6rW%Ml>Zjs^JGQ4wtFCHqpR_6aSyektK
zeNV&t5`O-2%#@Ebd`wZ-Vd(fo!&VIm9oOmDrr}c!e^Qt=e5T=Z4c}_`PQ!K$J2dQ+
zC4BK;nP0KL*H!pZMqBMJEIKmxpNZzz8orS!pAITEyK?I4o?_o?_(8*u8h+BSOT%vJ
zjzmx{#a{^DRW_a>?$xkQCf1u^GHUNG{8_^<8h+RChlXF}tKTR{8<G?L<Hf?=h2Pzu
zJoI(We(LhFWVfqvX@6<>Tf=FZYYqQsIH=)Y4M%16Loz(9;mgDEUfU5FJ$*F&`Emc4
zhU2vS8ctrT=v?v@xmCCSd`v4or)2ty-Gyg0oYQbwMwxzI0vBa?f%Kf@9lFrrl8oMU
zT^=jCBH^ntoZPV|k0lq;QB+4m9gTDp(@|VU6&+P|l+aO9M|mAd9i?=X)=^H6{Zc+<
zbd)7))+Z~<nF~_}j5aSGPjS<;f{q-W`zWZS<F&da`KqFhT$ypp?!tr1V`4%^E9>!3
zw|N9^_xbd-Ey!v*s_Uqwqqao2UWPSv+<b4&#+Txb*VNJaa4!ONbkx;RPe*+nJEWx|
zeM)YK#ccb=7_)(nKR%4Ve$ZG)6CDLQ+UjVkL($P(M+;f9kYSz-(=xnmf|;+QnS|f}
zv?H%{u>?LXb+lsDY?z#Be*YgA+UVd0JrUaJXs@H2jvI7z(9uzr&{c+=bad9yMF&^L
zP7TWAe_e^+<VyO2yx3KKLT-17)>B7D0zGszkgKw)jIJD(tC2hM`v%`jNi%g=Iu_`-
zRfny^(J@@d2pz5tPe-ASJ~E@PBdepAgaaL+jwo(J$3_ccx3<Kj4t}NBN#N64;{2G8
zzB>9zc(9KC5*R4M+|#K6tfEh+L%RzH$&|yltDW!5AEINZj1FV>C4>5nZa2Sr$B{Zl
z>6or#hK|uX#;{%;6D8(Y9pfaxde^N^9(yi1o^-pK=0B&HGD*i29aD8o{tt)0jv6I@
z+s%tY(`4etbG>eqz$_iJb<EUplZ<wGE$04@2Xb!KF-ON-9rJYD@?SaEI$L5-VfTGG
z{pF>V`SR7CIp%FTZrAawj^#S;&~c}ZM|C`=<1QTwb=;@peu;TEd9CAK9s1S(r`vN&
zlhgmr`Eg?I13Dhm@vuaDNQSTN%DML2@qU-mkLdBA6Kn1%T(~LoxO}@<#}XY+=y;NJ
zUX|>&A-PDV&$+v6%_AL_>Uc`W(>k7!iSy;}iI?eUx2KRF!F%rI|F;0Oe$H8;<2h=X
zj@Nap)Uis(%Q{|>xt`bY0s$SXWwd0Eg8AKgu95IdI!FZ4YWc<V&b1CdM7CDPI{9jY
zj#nkHUdP+#;);4}@j%mlbEd<k66Mz?H_Er0bZpk~hJ^WceqL-A-qi6HbIHVNf8^Aa
z>k>@gB2x}OlX+Lidpg#xz`7N9U&jZu5;IY0CO*{h5eYjI_l?BIH2ylK4Z!pP*h&kd
zBheez^~R?<KGX5JhwUCd*Rh>~ZKJo19Xh_yakq(kOnj;1E4IqOCIdTld`-PG(8a(v
zI=-bfGf>jNcRIe;aa6}K9Y5&UrQ=T>2XyS#v4<49p!}|5ua12>e$nx(j(2*BA9ehs
z<7XW&l@ZeoQG7%&=Zw;@v#2#oeABV$)&=4>62GUop^><!ruakWU1PCdh7J3RS47@l
zI{ua=AJOp-yLMbDa!ENveQ7EV%4o8MIIM$--3O+B%FEkXMf^(}I3~U5uky!roX~Mu
z#}yqXb)3@i=~3mPj?+5M=s2(Af{u&ViL+G0Tyai@byH&PN#&On=^Otlf2SjAoK(JF
zSBm|*M8O`HAaIqI@T5|dB>Fiux1mTFxXwTk1CJb58XQroY2uCX>4sxOF#`;X%h0>o
zC}p6uf%*m-7${?)tbwWqs`1f8IRm){QU=N!NE)bM;7lozW1yme=gunO$TXvCI*G>D
zi%t2W66>uZDjWPTn(}lN0VAe4I~(mOtYYAu>Eex)sBYkT18jL+19v4v4Fk0eOueYo
zG*F9e$jd9;R!pxc`nJepVjY9-u^_+#>&ar5_e(T1(8z#dKp1Fj;I)60!)Fz%gJ@!)
zse$_oE1X}IX1HQRI&C1&Kq~{S4eYtB<Qw>GeSQlA%?va*@XJK;>=C7Q>%5=d$!B^?
z13#Tn$bvQo3Rv$krK5qi2HF{DZ=i#L2OGB?zC7LWxKdn*54(zqdkQa~RKA;%CT1rC
zMSG_kbQ4_-bTcr=z%2%DFwosVe**&y^f1uVfM>urkTEc#s?ZG>22@FkfhQDA0vDf7
zn+7Zcu7RIR3Hyw)b4|iF;E*`8gjZJ_@0WgWQ9AK-dW@3@41Qr%>1Cj|fzZGcRYhbV
zO9uI(;gs~1@`6Ai8(&mdq3A1tKBUi4<^G}Rer#l8VLhFmbyOK>V32`v2F8;$1!Ay)
zVFrd%Y%VE73=EY(^Rgl@9dl%afl&rVOO}l^Fmsq_cv=}_U|VT1R$?;O-!B!MpC^8O
zJ%56Mi3V;Ynt@3MCL5S$V7h@R%x+*y9l_o)EOs!~I4a{eVRGiX1v3oPtSl&>*XN3x
zBpqfOxY@ug1OM!=_z^^ljRk*e;`xE;%ipDPONqG#<{5aL6fiK~zybpc4cu+uo*Xg0
zn7GxzZIt0Q;&uaf8lY_4Vc?@7>6Ztm^R6n5W~A>j@LSWo1B1jp2JR)tPbv=?phVqg
z-~ow0=CjoOY(`!2*gTOEc@NSA<%>xp(hpOu3_NP^9}wb$2I4UT6sMhmxPM*#3w6Yk
z1{N83-oR=Diw!K{TLa4tEHzMXj#y@3YbinCDTDuH7yq^qPaAlKSq6*ow&>m`&5(k<
z!oW(YM9&%g@Pgp;Wi8RVm{?`tUr+R!C|)q|qJeb=UNv|P0i|n*mkqokftM(3T}6k<
zVy%G*c5>j7^q7H(oIdHZWyDPvl=V~`a;KZvVDO_of_nOO^Ssv$Y@~86OAnY~P?*(c
z3pN{gld@-`wu!gc1_Q?poFMP0&IZ1v$u;ml1MeExZeWLj_YAym;8Q6HA5dWpe8QfR
z;07-3O5OZU{>PMrgs3URZ6(C^tIFQ7;=2inZ3e0r7nL6gE<IVmmV8EqEhauUzz*)2
zAgC-KR~26v_|m{vv@o>!(h8Y#D{ZVIzLxE;bwOc9S|RfBdjmfh*l*xZ1G^0Dre2eM
zv;YS78u;twf*%cBoo$>SkRX@$QMFUz*fFKos>HZ+u_gJ%!0%E3ex+bYAXQs@a9Uyb
zhk<<!V`QQoU{U0P<m2CzObHyOezhvv=-bpm1BZwliO-%+lhMD+@Cen@7pE-2l%o>=
zn1TFB>92-~lLk&1C}pCwiPP+zficxZ!o*nv=Oj0&>E{hxFmRcQ+*DA@E=nR_qRc~l
zwxQt9CkvQ(g<YeeZXq}l?QSZFd7X(OCid47MNJepQNlzq6Qiq%n@w@{U!|mp?+2$B
zx{1!+M6qMay?YAFu+pa!l}x}ySrg?<lsAzy5lj`iCQqRt$3#UL?bfc@!-Lbe+JZp2
zY3Zx=M9KsoVlKF$pfc;dq*OCe-NgIr@~g;bRTE1~2^tf=y57VeeML<ZwYFBQVdC*J
zqGM_CSvFY>qK=8WCTx@E%}~!oeG@HBv@+4ajEBg^CYqRNDB(sjJl{bq`aacE!f6wE
zCKMCG1QSd37ku`ai6KXod=t$j&Z<3y%}g-8^9a$x#QEuI7CTWFtxdEs(Zxhp69p#P
zn&>3)iP_EsOXy&ty@}f!i9Ms!qGeoiN7mws4|=6Ln_&3%SGg>zn~57t=q4VhAiA6A
zVM3MFF-uPq858d{727+A?^+2~&5-Gu2?A`7VZt<FnfwI0=-)iS()gBWt_jb?L=%%t
z_$0E4!EBO=&_raSkBPn}vL;@vEP9*qu)DXi=*9kyPY2Co?JhJyXNH>I&qRL{156Aw
zG2)<7cT!^Ziv{&|<aXYaPsto);^)FN<#tmjhSKS3Ax4`RV`7-e1FjfhVx$=l9HUHd
z;8-&t&5`B#nPT(%1&6ALu_mW)3ZL=Bd^dlb3={Ljg#Xg*!^&in_X9B3#5@yIO-wT}
z)5J}rNo8lc8M_TPlESBp&oJ@vLFMErrNTF<=Dmd0U(7ObGpjZ++XSP0{vMQGm=d=z
zZzZwOPHxGF4=1PDqxmLoBaci_ofnw6)x@hW#+v@}A?2xJ;ttlE7I&F={S)&}zO5l>
zGnulG(mq+#yiwe1;yyOX!Ym8-lY>+l3neW)X!347K4Qa6JZ$0-5}DLC@u-Q%OgwGk
z8OpGUCn(`2o}$VW6;GO2ECIrcOdNYJp8%gF)S!;yk0N4h?<AwkB+k{p$`gLp#Bv#3
zWnzVi=OnyRhGV`<5uX_wXOj<EiRVqMHbIyvOfNDxy~e~#CbpP($HdDfUSS_iY&5Y}
zW?ye&gNb#d1~qYTnzgrBUU02FOni;XSR`)S4$<ljiND#zn<h3<dfzCh_e25TzQz7d
zPP}|jd7GS_9TNDorMN8ec**{M)NvF0CW%Z^yi4)sQy_Nt5)8jhiVw(H69oRePJ9)L
zPbiACNGAT|PbR5fCVnun%fx3UKBuVkOMFM+H?hOSS0;9nwpGLzREllMFQvs`bW)4F
zzH57aZQ>hZ_7&fn;4qQ*b^)KUW#S>DRn>Tm`=0bUT9Np>iNH2j6~CC+YsSOMk0yRH
zG3eR!K3V3Nf0aG`5?|QjXOixqQmdgDT1Wh9;x`k&vth&2e^3n0E6m8!SPKo;0TX|j
zI74e`;%^iGkiRC5OO-ij;;@M$CJxEyffk~yD|#B@UlT`V3f1aL3sK1v3u=iIWK$(^
zN~WJ=IXUsG`YY1JIZc^#MT1)69Bq_|D<-a*xM1QUt=|}Ni7MY#P=D+0$fbLK*^IrW
z3S$JrgoW!Ye)C5uW}%3M*<a^g>Yt$JQ`Cx`c0Sz(i#-LRIHQjjbnPNaStxCxhlQRN
z%2+6CL9rk#l(SIYLM;omEhH^euu$1T6$?2QDq6_3kg{O*O0U?RqHDVNtK3RfY%%yi
z0_+{Tv$3D3YN48i8f?rZh2*Vn;d(2k^TL}%ZbtOTi16)pGgc*PTA=HAF(K+$sB592
zg+><YS*UNJffd`ds(Vt`W-$kUPQB5-C^^#DLK7lSN{|BdofdzP-_$~8LjfNSwP_1^
z7Ft<oZ6V)6Gg)a1D;_|bTbS1`@xilc4wS!6O}Dh-Imq&vm5gsvZ7dX6=tBHTJfJGt
z65m1x3+*hd$rXcJitf57Sd-{zp_7HqB$pfW>%{efZ}~7wR}0-N++d+Q+doJ2T%EZ8
zxbj+ckvlHky`9KdP%ZSc(BFb)L6>CdZNVThEqE4u3l_7VR=QtR91FID-?~ZMI!?G2
zzltyZmyG?oz(OeVX32|EVu6{AB(Suk7<@tLC11TbE<Nhi*fA)S(LNSdzL4l^VMA$g
z@5J-~3j-|-w=hD!9YmRFEQVMZETfMfRMPuW8_y|2*~ek&VHP;q;gn~jg;5qJSeR&G
zw1qJi#*uM@(qk<Qa}u1kaBfnhrYN2j<7GN+b!KpSl7-0@rdgP7VTy(McLdLlOH8%!
zc3+!Wsy>~bmM>;lxRD4o#Y_uFXNcpsi0?XzDNYP<syN%i%@&SW_?PXpa0}UC;Ux=m
z$w~|NTDXtJT3BG=E-C!CTJap}4(tDCh__j|-HILii<^4+)#C#1w9xju6afye3yEA;
z+->0=3rl^GS5t8KxZlD97M``Roc7<sLl&O2u*ky0Ry^~1)WTyDc!csfL_9J%{rG?K
z{{#u^#VUX2pjdwwTUbIB(8MwpZvFp2@D!D(qj;c*pmn7|e%it_BvD@8h3<lw={8~o
z)l+t1H3y@k%1YU(RTP*XQ!hJ-=Vi2@t>`~R(15&P;YADI{Fv(G$4d9Ig;y+mYT+}B
zzud(-(%Hfm3$L<+IpTE-8?D%`uBRlBJ{E=+5uCY?8xn_aP&h9sZ(69C6`L$<w(v*;
z@##cS^^(G{>8BOmV#yOl&7}qJSooiXk1c#+;av;wS@?(~J)_*YD#2xe_bq%tj<m{q
zds+HJ3)vZIK8)@Plbr5R-L_isi2uuy^foqTviSO<Qn!it+`@JX`$$*|J1l%*;adtG
z32Wgi3p*`*O=&z_UY%2^Y0IKBCnvt)=-fZ?#h#SeJNZa|k!T>kx9|fycuv`4VV8y7
z6w84L&U6Z&EMUmldRRv6l?e9)vD5n#iELrNg+DF)BAfJ^h2Jgw%IeCALn)C_#I_ra
zcNM|b{$YXe7y06Vg}<a|9iot1_{WO<-h<SO8-s`22ztfzhY!yYmL)b_RSsL2bX9pp
zh@<2_&6<tIHjZ03K?7?eY2&1YQx>jTNZ2@S;S3FO4Z*dhvr?kYTex81oP;S+zYR}c
zv~bD7WeZnmH(t*th5xsw@YB4!QJeBf;jbSrVB&Q)ir6S=qm+%JcFdRJHcHqiW`he0
zwAja*iO&Zl{%RD5HHwMSHp<v2XUCR@I#|}mixU&njt4u6ZM_8(hcql%!A6da8a8U$
zsAwbC#uMd5RU0WAm26CJlBjG0Hiq9KhVQ5_rdeK4TfCRf<A_j&^&V6><W;j#-Ns!L
zVhOqD>)h)}hY{(5^}TD^@qks=Mm-zMRa=I2Z1f+a(Q~VBqXB!-T5wro>%Yq0zKOBx
z^BdZr+gUpjO>8u^(Zxnr8;T8KqqU7THXf=h(l+vKG_#S%7G72AoKv=Zn__x%8!c=c
z8Jzy)+f-Ohw6xL620fN1>I&i%IiVDgVm3P1=xC#z%*!!X|2)-R7Tc*dSO3KBHlmY_
z_uK?q&Xudqq(IG>R^3QL8?Ft{Mt3`&%4KY*HhS2&aiCzdr;T1WrWcOYG#k1NiyX0G
z*f8yQn4>=aQ%O8@LD?`eP4~tjLI>eC5XZjEJ@j$G?@a^;Cf`QL&Mr*{G7ELN{g^a8
zoXEy+SCy=daSP&!bD@nsHV!*D;-IgMem1UmP{Tog8v|^tv+=5pfi?z_BQ_S=7;Iw*
z8);*vjiGjI5=XQBHinU>Hb$_hvkDF4C<%;YE$0+kOC}B~Opaw#rcAamUINTM(dObq
zj7FFfX9APh_b#H|7;TD;sWzs`qNdxJVS@`S9mm9_U1%uyaK?R;jafEswfO~C%(ii}
zB>sGg3T5@n6d5|##w|7|_5<E1_+d{WQ|6KEIfB4H7nKD>Ya(XNsKiAuPB6b4DsHDz
zTvG0^ai;`EPBT8T#N9S3^b-%*cu)fO$nahn-bcB;pxkfc(ZP1_<H|!e9=5UE#tIvc
zFww?R8&9$2cC4^Z*m#nytsx$_QF%n$_ok%BL}HQ64<TX+1-NNE(O?SGcUKT+gji<d
zX%ZnVo~0=6DLl6|#Tm*oHeRnO2=F=kQ|dXJKl{LHa+!K}Qdwo=dCBp-i3vte?8sf;
zN4#ibjg6OVylkWPq{Lh^LC<iWnRuW;ykcXmjeFXO`<_X^)Gu9hs<_S)>uqeX@u!Ug
zHeO?OHa@qp-Nr^6Z*bN9yz+^SO*S^$c$eaB<4qfH$@F(@yluxTS6e6y5PDC+)g*0E
z!E1vAbN!FP+*5S4#ru@BHbp<Q@evDbQ}hFgymWm5GZOw-7R4w_*lJ^&jZY;4-+mUW
zn<%?DmvEgI6FY2tVdDoIyKG+K!&fAJuk^Pzc1rxOZ4?xyiOj0Mu~Gb_a_cJv$r9o_
ziS|83`l_-tCD!yx@3ygr!ffLgN@g*!*T#?3sUq?6;6B=rF7Z@_)03a11t^>pPg{Pq
z@w<&bs7*G??k!A>)i}E${(c+vYlwMk5|xv2^e-EKQ$iemMV8khaL~qO8&_B+rP{_R
z8gp{i#=kbW(skU%QCfzf;utw~P<djmNH-I=Pe?O7!6Cp#`jvtas&H-*4^9zhY@D@m
z-o^!56+@hpM!U*asTNz>a+BhsjbodWm!wsvR2xA=V@|ZI(u&d?UFRU-#1{4AzsfT#
z;=~IqMP<m<7_PvSaAHL$?VyZ<k`7AA=p8MKGV!TrbILj>=b(}UI4JKR=^)2JMF+Rm
z7t{JDDmYLErkkBozPzO5I`Q@dyOUy#5Jl^V@r?viDm$p+#GS3~fLW?KsOH4IZnPnv
zXq;+Y?kP4tp9sdJYdWaqV1|Pm9n^ME$3YJVJss3_P|rat2d$l$mGvDocF@E@11I+A
z_%w9T$ib_%xKbfz=ZdBdxQ^OPzEvCu2V751JIHg8@1XsN;LSw^_jMDq<l1umiK4lK
z77jM;PPOrqEgiI(U6FePTqJ4Zpuj;V2b~?XbwDMeMt79NY{zmObYS|GE~h>*>3Wg2
z`<f=Wp4>(Dj;-qE#OAsyTmE7^S*AU|!HIpX?lL?UiHrl)LEs>C@Kw`<=D>E~IM5v!
zPCS7!Spus#sc<$yr|zlZv=2#o7c9+{?V%6j5&xLtJMq2)fyhCYR^7n>2fdtln}aRs
z>!7!TLI)pzn&LVVcQ^Vtm^(lAD>z;1#}PqViGdCVIT+<&w1dG8hB$QNG2Dq=+@WOd
z&Rhb<*z}ez%|?(W-NZ<i|4pj)t6j^CPrr6W;rihi2V<RhPCDJe^}m)F=U}{p|BX-3
zSK;J{J(}QPqU;*sNe(9e2Tzf}R7!{hejck4VN4bA^TfnVhX;MJ$-!m^vmDHJ@EE1n
z!OdiZgL@p@>);l4$H5&A?sPEE!F&g|Ik?@yAJ3&1P*y3}RYk+TqD*fQ&Jc8QxztQG
z9AB7T-loD`4i-ANn~az$ns+Hm20ij)ip*L<Gh&PToOtf=po51T+%I|YzzO96N>ool
zcF>J{*ujIRlt&zNJ6D|af1<f~)WPec<5Bww2TwX!N6B=s$iZR<&p3G2!4mc&S1fh#
zloZi+H&-J5GD-!deYWU3JWc-c>AWhv+`$TplY`X2^m9@%S2|ebpi3Ysl@rg)6fXHP
zN^M;&qc1pkQ36a^BY~GFsJB&M^c4qdNnSbi{_fq_f8c8Hdb0QyvC)YaR5!3aY`g>W
zs6yG8AU)4FoY<LpVPb;en-1P`@C6HT@V0|34nCq#Np&kVT)abGJMqTfyAIxW@PUK(
z$f>@G$v25^Tk=1Yf<zH2{z;Nkq`M{y3ic-yAqSs3*y>;#ErTXLrM^!}c#jo4-Y@;f
zRIyzauC@_xf1ldH=2egPN($SFuUL_T-^pSJUy~gUc01TZ^VMH`>)?9_KTv>=D&ILc
zzqx>2qm9}{`B{^=b8_N|%W-rsTi8JSME*M1$F@ne<t8BaZoYm#{fh(6-+y)Rn*&bs
zsepY)$Kh*D+D_;v=(FvYg8GkxKOGz(moM{U+7<tD@HbmEJ<WO3wTTi%;-J*fLk>>0
z7Jn&u|2jBI92bAMIOgCu#nr_E7bhH?q=9nL%*81OryW#wQN_g>2WK4=b5Y#IId;dv
z6$e)xTp*(>i%T*jaFNDjp!lG&xNeZR>>$0j(3&L@F0OMy>J@cS#O2bZ_~FF_0j>!X
z-Z!Pv3#$?(T$FT?borfplyXtpML8GcU6f(oSZ&d;Z_?ab_*kbnOWl7JE+bD|l_;_=
z72Z@K$3;aq-czpRBG-jAK9O?c&94<j<Bc#{QBv~ha|&EATzs9V>Y|#9MlKq=sP5u=
z7j<0Jb$Pl*so|oQi}8cfxAzk@UC?LaT1xgNqqZB*c^eK&*K<*yjd5eklboF36s&=Z
z9u)+i@`|{}<u9cYO<Xi}abqu$=R$Gu-SpVR2^Sm3C%7;|F-W_3ym1Uvl5?o$E?T(g
z<D##NmM&Vk=;<QkqP2@QF1onr>Y~6!TNfQ%bac_qjpsyL|LWY{1;hHT7+zL1Z6rFm
z_;6D`Uv+lD6astpcYbk#=tg|`s=LHz3Ne|nhb*V_=8nWvU1%<R7l8}ih2g?>;kYnK
zPl>#ELC(mAg1K0-eoA3=XL=`G7oH0i$a-fMiNjEqnRU@i0ulRlT44)&%LWjkP_~Ug
zkF`CSrJsxbE+)B{>|%h6fi6b680BJ+i@`32x)|nSh-?5m%X;6~Qm}emoOie^XN0Vs
zO=|vL{=D(&(Jscg7)K7exK<+@IhI1cxg%?w;9}`p1#Im^7nMqiYt3e9Q(R0Xzg*08
zF-^8}hHQMJ28rpieD<2<kV-dE3|!peVy=tXY=DcKUCd#|A~9uHARESznDb-_*T_XK
zu!Xm}xXr~&E?#zVyNf$qEOxQP#hotha`BLhhuP-i%0kMai+f$%?Z!i%F}f1N`&``b
z#<uZ67wbOCe}Fh6(pwuQ=xK28jOji5Bp>0c%gU2ftFhuy7mvB|^5Ek#e8P>#aSAhy
z1{VewQT)n?4h6AuRmBoZT|7g5aq*NJdl!6`QBx$m;+b@b!^(0OD_n2^;YAnE@l_S^
zyo=Q?R=QY4#@!@N7m8LF6k1m*{@}fZYgQ#*An#1kenGs~zlO>+Ai*imD=yZ$_{hb_
zY^sY_U2Jl(S@vtai`U7NtI7t-TNvkhjf8D1DjbQ&pp7oxpqAZaUmhjuTv47XOuXsh
ze=gp2@s^9X*{W`0i;H(8(51iKc&^xK(6JHkNj-g^l5<SCd%Re>C-njOOPyMl=Ag-)
z<xi%lpHRA7>~!%pS#wa?=JMAS*v?kb2A+!7gg=u27vXnE1mb+@;tL7$5YDHo((il8
zuV~ilh({-iZ(MxqVh_1M#dq<&i(Qn2M&i<*6f^!HVHQhAwEM>eyV;n5X}a9|$ZHor
zyZA*GJ9%K@Cz`$q3D(ZHzcSZQ@tX{pmt*>@y@dq!yZDnT<6)4811|oeUGmV#!{0Pq
zE-tya?Bbw{LvFnNalyr57e{FAT^x5&dsQsYeExNDl=85*kg`ezKjGq}i?cNHwEt4J
zPt*9jpnkoyw~$JdH(F4es6OYVrc7=nW>Xl}<v%hmeUZH5E>c(V%bwH~3Je+Q0Ui<_
zuJcgVLpcvcJQVd%(nBdPwywoI6!%cV!`v%MW?C$w3}>BE7%kCNl=e_YqU{U>ql1nq
zeP@gE9+Dm^ddT%qLB7rLFnW8cLle>RnDYC`bpJeYaAo4g)rpjcpKlZ_kgqCxsN$if
zhgu%0dZ^~%dJi=`{IN1o-NQBff#u>V*oHfHq*!3hY_hh8Iv(nKXh0$#Q)cw<TGvB8
zSuE>fBZ<uP3ENWyMyyUW_Rz#b4-Y*(H1(i(Xz!te2jL;@p@oN*UOWlPlVLLt`5vaX
z6$jE{S1hZE=3eZ{-)o3g9$K@aIijr>Yi=7a*5!h@5TQ;_mpT`_;_W<KI8=W9yrA6V
zbVm=Rhom{J?&_hFht6Is$(w&l(GTq6;qE*^=dhcH8`$zvV(Aa5?jF8xCr+&{U^L@F
z_277Ly?Fgo^Wrrh%Y*L0@UXORg6@jx!D=Y@a6U3N5VnWSKg2$~=fU^T$BQjh;34$T
zTXroX--oBO9(sA$e?+-BEM2#*DBddXfyaB&-691FJ**umz8EL^dg$lHwxz#^0Uo{>
zn7DaK!NryFKK`ybVz7rH9`5vTmxrMqhIzQj!z>TOJ&f=$*~1hMBR!1rFiv)Pw5)v$
zsai9h3T@w+8tb8MTd}aHU^w2x1P>EE@T43!$0vFCs-GAzKQ=Ohr>Cb<ocf9B9%fL$
zii&A6<jy7y*NvpcF=gdXDZ(?o_{<XbnrC~snaw+@EMTQxY@E;a5%WCUA`?F-BIe3O
zZkO}bd<uO3*p=NjHGQjx+dSMZ%j~l)#ggx!fE`!3AiR*wBCkEX<l!C<_j-83!;_M{
zWaxdY+QS1L9`x{#hlf3M*_)zYboBca-JwT3JnG>w508@?=M}nnEHg`+ytgpBEIn*_
zyxP3T!(tE5czD*s5(?W%<tY!#B(RiPIZKdJOzbr^!SHDce|z!Xab>xO6&_YoFg!fx
zVWo#v9-jBWWm2y0KK8Hj&WQBx5ow-qTd^$7Gk7mbt)xb%lM`D`#X9mbY3|`I4{ww2
z9@cr-=-~|yuX<STfmZ!B4;!dB6A}k6ROIA{4}GxLB~NKrY4fQCo4k0rZ!@`OBpyyD
z-t_RnX=VSocpYzxhj%Ew9zOE$KPp{O(XPCB-^05eKV*TKZx_5gI!%`GY`_N|_==wD
zuR?rGdj6c+>S3FQr?;m*@o;FgR`am(DZ6$@K!N$p!@TCA=mZ{z5ZnOTLHVSqi7+O@
zmuv<p8Q|FfJ3V~OzW7-0;~Nj(dg$ik1|Q#1%RHofRPynIhg}}dc{uN3w}(Bn(xj4y
zy&m>?_|3!b<T6E~r}){!FCKoPg!9kgw&23l;WdeEKbH7ard(Uv`h#jkQ$JJu<>5~n
zf0>c^YPtBN#9T`djqB2Xw<&s%o$_$Z!*Np2!x4`swQ$sn*BK~LeCQr?)029A=1g&h
zQwAnZcsS+Zw1<;kd`RQtD4yw`p#|s=17|%<J*{v*`qo+E?-|Ag4;N{reU$ZaiL9iB
z_fgcx6=_Bier!yxlDt*KuYJUpXA8JVdYzBwD+sO=a*kHaM@b*0d=&RlLLzT?tAObx
z{_MQ`mP*W9+6Oaot)6a1If;<;QNc%f;-6ReFk_An?wAuf*GEM^u8W0m^Qc>wcuy8S
zD*LGKqk)eqKC1fhgr&BRYCfv_;NB(I&6wqSKi2V@K5EDkxU0^M`&u%Q`-~smZ829J
zA9ZDR!u5Q9NFf%ahCUkkXyv0d!`69?eWZQl`Do&!sSm}+x+a2;kN_LW30=o_PU*DB
z_tD%(3m=4=$&jn-Em`|Hg<EDd-_0jLv2Wv}z(+@)KV?Q+Ki*Yu?}IkKozH(a#H$mp
zt}Nh$w1Xc{OF8~__G7)^9$Z%+6V57KWH`M}Go~aDRqW1Y`?%A`T|RpH$oLpf1Rtso
z%|~A!{n%w6hL6BU=)?43`EY!=e!QzYs!zg}0Jn6jUsgKL6`mh^U%ro(a|EO9rwV&?
zI`Vn64BXZ%^ue9|UOswDfbhrf<hPt4%KjU#!1wXNMRl&&_xCZt#|R%IeGK$5$j4wG
zL;QHb|3N>=qj5ziHyi3>_uj%`K8E`c%c8sT@}`XrI19UWRE!?uD2joPu|7uou?3*_
zNX6%@a2&ZNk0pH2U67;`eN6IkvyVAGCi|G;W4ezSKBoHdP&-ZL<?uSmO0tC5_!IM>
zGSkOR#B3|LfVqEIdX|sbWXDOR)E}K0a*V66DgPE9bA2rEaVu4zj+p0zbNp>Va%-WO
zPlGTt7BjkSxB0l;#~pq=MjLhFQT5u2W&JNw3w_+}bHf);`MAf&y*}>qalaIMPWBJv
z$BS1yE%1PkhkZQa<3S&n^Tnst#Y29)pY<(WP#=%6ULQ}gM;DdHeH@xqi2(PoMvYA`
z^0C;*5<fPiZxk2HXNY5a3n?Uwa<gL@Wskb)W3`WGNdJyv1(_?6pY^d^$`$uPxLxww
zfW*vIiIskQ^z`O&=~aHb<w5)Zg3o<J@e;e{<MpS~FZ%dO$y+1CODhXrk#E=fsIxfT
zsYOv@uJgfDDC|^?4q^iZm`WO;VSv|tZ1i!$$4MV=uofS?$bBE1eZ1-8BOf38c#D$R
zLA*m1CT*3xw|#7pB&BJh)q0nTd{TLzIAMG){XKTd6xVO-_JNNNeH0m!W;zE2Zrgq0
zW2=vyKEC#`&Bv!ccKG<h$7eo1_pzPgR85Eq@uKeQL*kJ0uOF+$z?YPtt*Nj4cpZb&
zF%H38>-fgUx8&W3^!Jp;>SEs3l-*i<Ct;p{zI|Kj2b#Oe!dP3dhZ%hwB!hhH^YNpP
z-+lby<0l`@E-Amz?y(ES#Lu)FTq(MwEcre@U0kJ=_>CrLLVVtMzmGqC9Psg%6y1k^
zN|BP>bAPO%_}j-nY=(vL(+x7W^uEIQm?)`HL>#5vpz(Y$afHMt!MnxlhhG*K$E99t
z`3dSHD_Zq;`BOel)7S>c33!SdXKAGaln8Ln$9YNWM1Tua(v!+1${~rSiHkCv)Hi*F
z)?<XYO8MEE7&ynE263U1)7$F;6bVo?h%I)pARZlpKJob|0z1nIT9T4MY{1I}C>5Y|
zfHFbszm*MQ@g~6C%v-C+2lC4Ypnq8M7Lk+ymzOIB$PI9PfEoc(0V)OjX9~Ew$Vn~&
zR1V_R&K~K!e_9tMa+Ls&4~S1M)A&~lVzN}1VZCYTnrz{vcxF^5z$arxEf#oEsU6@i
zDM)n#)C=NcQS}3~c_BeVLHOCl=|%w>2N)4xWPm0Cng(1QMb`jdHz=wE$Pdsgh?Pa~
z?dn82Kwf|eQw2{9GHf28MS!*e+6D30)G|P879OBgfc<ahvz;rah%fu63uLs(zCtE)
z5v;vL?hv43fEB9}wabf60a^}B@J2xA06!|?n`27XeTBn?=oa9H0AYYAK=%MW0vG|z
z06ha_0_Xw07$npHS`a(2B+k5l<9i1@d(VTcBt_Nj6|4Yu05^a~MzGlWf{()v))y~t
z?#0pE5Abj^5y+6|4LE}H%xyM6uK@i5^bbG}ymx@Y0DS_K+m;y7v1t3jmHJ8nXx>_E
zpCvl=6$1hc3@{|X&;WxZ#|H<o1J;b3Y9R<bK3@zA;)S@QqtnAlv6Bj6>w-dHRDjU|
z<^;Hfq7`6lfT;nd1sEr}Igtc8rHl_^gUpSd2?1!6xiK^;z~lf^0tEjmcMgoVDG98|
z7t;gGU`0VZUAi%dmt}tIFK!Cr3Bt?(9K7yIbQw81J`~53{Idf*x3=KsAU;y~kq~p)
z<^T@_crd{H01E=##qI~VHNb5F?g(&a5Fbw})jE&<#_gnepZE|+F*iZ;er*?(CzS3E
zaBqP7DAH}jJ+fpbauu<4ulQ{6{Xu;3hn#wd1P`z%z+!66ro<xw9;0BB%NLbLWyf;@
z@dObDizi8tyRtO7+_EIl_PjD|a)Q8;080ZrMY+8<v5bWTcx6KY1)%P5ar|Ug+Hlsg
zoB~GLhPWlfa{*QcC>f$uh*bfer-ZXH0alZh0p1JnKE*P?ngHtqY>-vIL>Z_j)&_W)
zWG^LNk%^pXzFAJJV>gc}?Eb5y>T!kR)N3^U#5}0H6JTS2Hv+sB;BD$ofXxBkq+XYd
zS34Q<iI)M(iYE$f4$~JKB<S&OVLKbgyY2s@`d?DG0RAp(zoc+8=z{<sk|veJ7eTyX
z_fddtBz}O8spdhvr@1wt#~vNfE3G@DF#4I~J6XRyz~}$Lt*>@r$_^P_w6cJ`_>$D9
zD!$?@Ai$TE1Ru)Gw=62azX6U0_&&f7<T#B6EmeTs0e%VaE2T6NdjjmEWCqwPqfFs3
zn4hFx{~W{%=_7iJ4|2tJS8(zC)n7aOMhg(&Pnxv=e^5L|rD+wDwxG&?b6hz<8%0S=
z3Bo*te2=`QbdarT5zjymOS^g~z@#<t%`AFNM`#2l#wYEM1vnnya)2vA>|UM-aF#|s
zz{vooXi*EqX-Tm&0kZoF>8!q>h*MKk`f}$3Tnun2h<&^Z#JQpn;KLN|MG_z%Y4olJ
zNQAg9M2+$3q9KZfNbm1bB*b0Mr>Qc<Lx@(QVHr^(MBfte{H4c|^n|79(jm%(=pLd+
zh_WHdg{T#xc8KyJk|7YHa)=5nEk`s+i`)=7VXQ0_Sx66&nI}G+CJ3Ztv{DFOt|3~L
zFt!8LLR1fN;i+_0w(7eSmHPTH-ag>wQB77cDN%#<9#ZxkQk=ahaY(5XqHc)hAzFl}
z7ovWMrXiFNy#3T5M8gn`LU7l6(zX=OB{mMxB#e)H{c%NUnkV?sU{X#5+Yln3eGlV9
zN<75%RCU4mCPzjtgER|aPtFo(8KPB)4k3S_h1OwwWu_oR+b}-P(I$*fi5GvOpk0Wk
z5?wg8X&>V0k!c!RGL%NRQ;5zXx`pxOGWLSIS6xDM4H1qJv)<~p=D0%Rc7uG&D`s2~
z>KP&vVql0tA=D6Bh-`>nA@mSNh=A=JlQu(oP_aIGY+(p4aX2AdvaF?ec1(OhV8SFZ
z=9vPTBR`Dy4JYp_<cdldf{scQf?f)JiAUbc?@ex25q$cEC=BEMi#}ux2{JEsi5o7E
zyA_v}{$advGav*FDJvZuVn~P)Ax4Ja#GHc>$u%^@urPLtPF_}qQ>acTghz!K9b#ID
z=^@617#m_@h)E&F$$H0!m_U}@m~PM~K2LQ@7w5*t_H%NGDI{`AObz8Z{3?Pl-}2$x
z86j>AF)PGuQiiw2C~Uj}CPN;gqdUhVG5sc2>NhyP9d<J->K0GO=7yL@LWMXVVt$AP
zA-|i2_e0zo;<gYgX*NUL9^#G=kA`@RZwthoA?^-w4>cl;y&B$LStx<+L&Uuy?hEl?
zh=*u$3)A<9cp&6tS(KhA23Cj-9m9vic%0(%hy+Ogm65~f<D}AcVo8XlWMzmaLo5pM
z(|avnuPGLX=r<+JqdxCf5c|uEr$Q_v<wGnd9WE+QQ?4e9XGp!Vg4Z^SO-M6wMHst1
ze4dlQ9s3H~EsjUP=R>Rxv6gj(c!A7<cqxo$pf8d&#l)I0_GbC;=*!Dt>{-1+3cQfu
zY2Ih11+Ru!AL7jrZ-v+p;x#Hxh&M>3p7AkkhObMQOXZu`i;`k<h!dOg*(3@TP2Z1C
z7rf0%c|^?>{|m7t#5-Ypi|4=vWyi|cHonU;c}=@o%*_u%d>CSHh<%i<5Fdy5mTDW~
zlMq`&d=cWy5Zgk08e%(Tex!JKO8PT0WkmXOiorn9D=&{-pxeJAjQs&VjD8iy^PR6H
zYj)BUlo31`!qN7|r1*wauSiEj#P=b7Ap0uE(-2Z`7ppj`><O`3lCgU0_y{-e?C`qH
zkK|5>gCP!)k5tUX1;2*)jW%ku_Dcxf<D*9W&JKq7n?hb)><{s0hyx*AQxvG8LrT0k
zRdDR)ng*vNoOhh48;Ac;sq^xfayY~hHuAJ`BE-K^2cLbi;HU(+$9jwgjW)KoU?OiT
zu)ve-U5L}9Obc-)#93O2fuhsIcraoLfp>IqA;d*$afD_OE`_)pqFRLN5w3)|N<$r?
zLWD$w>mrnhP%=W1DAxVkiiu(oW}L2AR7Tn6;t?vhj7P4O8Br=i=?G;bl#7sjuR@s!
z4d+&h56+!ZxSn4=iZ^P{pDJ<Fj7nVC=kj|_go;sYA1X(&Q=J>3QiMLOL`sHC*;rmM
z3K{+QphA{aiDJf8l_8yn>m$^NP$xp&2tTzHHKTZfOlsGPz*8k$YN*Y24i!uH6>=J0
zFGAx8O(N8f(12}=@KLpRFTPO(^XY=O28#PD#!)^^BPbDsL|EY@(-JtmE0q_;vOxqg
zg>%N{5n4nrm_0(v2(2P?iO@Ad>j-Tkbcn!Xas?6EMra>_{=kYGE8&!KpsZ*oNztR8
zNH$I|y<>z<5jqpCs5qNV(jDSWD8k*?_y`(%*H(0o(1V>lsbnIIt1oJOma6+%s%Hc`
z9$ZFXx*CCw=*XMJq>4h1uu&6_RufhPJ3=7|7{Q6+;UI_*MsS%iLRB+Se`3OCN_(+l
zxZvzBisB>LoB;NUkc}{UWPDni$4hv2v3JCK)?If0-nnmteh~&o7!sj>gaJ|#21VfJ
z%fJW=cccopr^s~jmp9)#aX&G_um~d~`u1XY6szQj2vky@9-%IjY#(1CY;sf?Mb;cu
zzU<m;EISzCl`Pg~F`j}!amu26784^(itu)XEfFS1m=fWs2+JZ&jW8|3?QB2<e?!IT
z5pIsqv3G?TtSiDya-_bXhchd}P2@#y(Wj9pH%ZJU!MllF&BU>x={XT@i9qW#H^Te~
z3nI*mV!wg|G3_2t$=({_Hfl#}F?x_FOvlbVZ%N-tf<$<TeTm|QriBsijc{LtyQwUf
z;vw%I5_4lg{>J?KquAE*;>?4j!=y?Nkp9mX9R0B1@!csVJ`&;4h+nZ5i=+6m-eVD-
zi14I@ACK_nzCs>3SQNzv18Ve3GUUVkz9kX9-B-Aj>LbLtt4d))JRRYg2(Lz1AK_Wq
zq?gF?2+JkR7Os%Mb23~RVU+})m*Hv|z92(lz8GQ6e=tXc=&bTe6rZN%XhL{x1cvLR
zG}0N{K&6PVDZ*y<g0e9<o_q2r&c+CDkZ4ycQhGZLiI?K(!to~Ko02|nML01j9d;I(
zDdL?7|BLW@gg+v@8{xeOJ0pA@;eGb8j`%3T$5fvPJL-!Mr5+LJJutynpG5eago>~=
z!ZuPn!iw4AGl}{4zCyzE^mref_&d1rA7Rn?c!KbSMEIPS$YlB4AYl48gd^Ux#g7rb
zlL$XV*d?p`K8iiYg>O~lbai(GdYgM_71tz2rNmwtP5fBM#O+6vpGc+VvD5x@gkNYv
zk0`%J_>Gio9IxtM|6^f`De=nW{s@0YI33{(bvD9Z5f0ICMff`cPaeKMDQ@t>jQ5W$
z?O+t|$Wv>M&;nEtoV}hPT7;vN|LWox+eUJgi=9#$Vfw4ZpG}`6ZR^H^$SF$lzY2k~
z5za*@mPPR_&PTXF{^pA7vbad&AE8|pk;vjQjemrzH1Deua~G$%`$KbG_nCs5HDSG)
zPn=zS5=FA{akZi{eD0F+%<y!HY<yp@bT%FwnWbblHu9yi@g6a^S<7TGV4mO@S~eRW
zlBdciv#5~8pezPwk&{KmEShD}Jd4~cQd!i?qJ9>YvOpHqv$#IX&mzTFTq|c$B^x_S
zRf&@?s!6!#z>4)&CF-t9)X4IVNxaJ4qeSdY)ykrF7Ih>}?H^Ly6Fe}rQr#@Jj7+81
z_T*)m23a)BA}@>lY&@-Kltt4lxY8ca0<vh5jjt&+`>~KyfPs$}C|QUs(piwaj1J4j
zi5z9fTzZdm=38XZG7B{eEsIuJw9cYq7M-$alZ{VwaL{a*jUA7IEc)~>-!_Y>dGRWG
z`)vG`j}F=R5?PXmMO)={&Z0{e-LvSCMb~U>t8b7cbj$MevfwDj-83Fl-nTc!D-S)h
z@mDW0*?4)4J9j)^$Eco#k%gCqpM{zIKc>C|N{Zt9dSn4ba=0V|DvGi_JA;JXg(a!L
z5|%vOH8VZaJv}o-11LdBN)`!{gCs?QM3JDPA_9tt2nrG<=bSNt;&=P)e}3mXr_VjN
zUcGwt>eZ{7*`DfN_jVi?Z0i781+ce#>%4%QoE;x^zihM#pzC{?Jbp}UA3%oy_&{Yi
zfQ|tK0#I}{0G$o%X@($g$MN=TwQOzgj7*-L2+>qmZ`x7!rzn2M<INe96CFU5oA#~r
z#x>nHJUC^vSO5<5A%M{V!~;k$$N}^YAQ?a>#(@zCpmP9S0(d0=rajkYSMK=%yc9sU
z0J;aj)5!d=>(W5ujR-z?(vxqfXrR5!F+Q&Gfx#XDcVFetOg)A0nN9k`pCIqe_Y`_g
z>k~lV0NxDXtpHwUrxmq<bfAUyMgaW+?q_BH00syl@7+_oo2PwSTN@N`e@^1nT`w^>
z;C_P|7QpZTh6M0mhBlObmelw?oZr3qb#X)hZ_~)d^pOGg4hbdva>644qXHmazL`EI
zfUyD04dDF%#&OjIFg1W_0gMk|0)x=SJ0;+Lt(q9X<N(?f*Ct7klIz{QqZ+4ix8yG=
zs}Gi)9>5GqiC;Y0dt4f|wOIko4!BRU%w+URYu(zo8_OfrJ$#I14m-V;KITgL2La4u
zWCB<maKAZx$l*NdzF%d201E<G7yys`@SEYHfO}7sgx?Q&LXTe?K6=dk6@H0?Vk!IO
zMEp>ihY$Iy^v40LWc+os)A30FtGK1;D6C_30BZu+#bpw}+5kQc;2Xw@yGm#6vjDyb
z;L89$mmzSD)=`pMh9@7sVxYdv{F>9<-krPk+?|4H%<~P*x(-^$HhCTDrELmea{xaE
zuw6#+Z2(*8c^U1y0Jg}g|DM6;aH8I$Q7`cauI{dU1Au!=#M|6`j+JBiiHnF^4YbGi
z6lQTJ6FvYwSH%MiJh=Ny06ec-e`@Pr1K7j8D}ak!G6C%4{t&<sI>|v*a7`TuxTiAe
zzpfqR+6>@yclSZXLjl~|UzTqancPY{8gL(cI1#`}A;$tZE`(1v@Gq=WY{HZaxIem`
z31Cch?Xe%r@@PS+^o-kmv~%3<0^so{{t`!|&LwV@aqag2{-C$qLOI?#+Eq?R05<~e
z>qo9J&ON=nKXWsHTLIh-xHmJY!>11p8ty$np6cOEl|KXcD*%s<`*i#rz#TfweCGZi
zz(1TLW>*UjUs%MOA-wpx`ApKwZ<YLjZW%7g59o4ROYl*z0y@%k_sL%_qMYB#7Sxf`
z+sljZ?YUpa13I42QB_9~9S`cLsH2jOv)O4yDS22ct)rOke#I)Tql7Mx80#pdgMWAP
z$Iy9>#=pUNmcERRvO3D?nD|FJFX&i)yU-28TV6*69p_8955W!UsIjWDj)!zSOjA03
z=;GdDCGr~`7wn@ts_5<q963*q^TYQs-A$**b=)c79#MNz$5T2Q=xC^;nvSP+)YMT+
z$1^&r>+Z(urG7mvU3Y(mc;St5nh4J?%3gZ0Wrhx)4!@2XI-b?RSLkrwi+z+yGOx3@
z{9JFPwV51mZ5>%UvSsXbbY$x8=S%%c+K@pSNnM6c2gg!Rka9kv%UeeExvUy#_ny;u
zo41jUTpjagmTIiyIUUdI?jQIs=x8G3PI?+MnI9`nbu`n#Q#$-iIe0leXP&pYjutwf
zr$#Fst#x<b;~m#LhP1nvN5y#Y7#M|ZbntuQ-F{ko9UXKm<rsBz)Dh4zSjP|@x(<UA
zq@$Y-r6Z^#rn@&i=vzp4@AE`;gz4mAW$K7<ypliMnYmrF*3x0?Zo2XgUa#q1M@L*o
zf?n~Y*<sa*jtS>I6F!ODSw|N!&g|v0|9niQyAIy>>!qW&ju&;jq~m2BuW;<TdpoFy
zDEHLe?;bSH8-^|7Zl}CnlTMlTeRTBI-P?@)b$9E2T}MBuqRt!4oEN?HjcvJz2Iv^b
z<kaz|D7+=LJ7%~yIXN}dr?sIvhUu89W15cPI!5Riue+b`BXzv3W2|^PN}7)rWZQRi
z_m<{oGrVKO4K71E$xg@Vcvq^}JKf;4PT=h5n51Je-B^;jqLDU5cW(jhZK?58BoB5@
z*D*uKJgz<+@9EgNq6xp(&DAke$1EKi2546!p4mF)uz5%KJhMK)eb|J5wY|?t<Ut_n
zw04X0bu8eNnc7E^y$f|L5(Q>2pR*o(Sn=z`VlI;z-X%KtsvlmwwYyx$3LU$3{7SEM
ztmN$L_>TL(j#W%x9iQu1C?DUv)3sX18b+XNxwX3cCX-JE`Q?y&osKU!akBisWIE+&
z>veps<24>P;(~49{t@aNFT6oE3jXxpbD?+oVYSh<0KN}|FDT$UMmBRE7iaPg(iR=O
zm9d?>4If%e)4tcSm0JOwe_q>0-wvxEx!3Xj=j2TOJoGYONugs0r}%36PQhRJnROxk
zXKn@UwLgn!ySVhqYP?C#M>6;5*sJ5ZjvG4m>DaI11h)d6&vm-zY=2|c={P9Ma7eF`
zoIc)8JgnoWj-R{c@@a@8I)Crb)+p~W9mm;ep0@TwFK_MEcuYH`<Ft-TIxg!t!|hSW
zMIC(m4L^p?aevcsLAqd(KgRJu9k2XPsPPLu+<~v?xXKuIc3<AbE&7^{cf49fU1I{=
z)NzY>uDj2#-PZBDY+3(ul{M4;;7VsGr0P$`r%9gK!+VEoiqEj?_(upIDqQiZ_pc4U
zrF>+vkmf!i%N_ectwRO(Trq7HF!+cNeh6V(2n7ukGSJ09R|AC&q%Zd68kk<$cfWxL
z3=}c&paH*u8U~6Qe9L!wal?J}Uois<JUJbT<Pb|3C~2USfzk$^Fi_P%83SbvR5DQ6
z!1lwcoPqKNDj4X0ItL;lxqP`^Me?z}FTd!pBrRv&kLn=<=MJk!4OB7kuz^PmczU#@
z=FW{-SA2fzKOJuMm^7!&#|_x0b4Z>vK!s`so;E-`Pf3vtpD|F~fY(3<2gNrE9#LAV
ziku3UGW;W7ZcEEPX~?##H)cI+pr(ON<$af9zFG!q8)#(Ui)c<A1DOWOrDfGOFvDq+
zWuTrE|J~jw+dy4uGA65?@25sNqCigN2BJgKP{_Sm<;WWwc+SA{23`<NN}3uNQaZDV
z0a{zpwGFYEbXw(z8qn9<+&~KhEe(*jGSJ>Y2liOqn`hwqAa82}>xX&U7-%b`)Ie`L
z19t~_Sw)?W2BM-&9x$LAFbpV0#`1&=gbf6RkM8fi-O;oEZLevd-xP0zfqLD$VUV}Z
z5oJ#CS`4*;m;uK?k|Q-xe}Xq|V1FNP`ao|&?BD3)y))6<*}$-xrHu|Ay7WQEQhf(`
zyBX+iV6?&*g%=IHWZ+E$Zy9*mz%ye#{W&NDuNWBnq;Kexz8(g88X)2Is)5&p_ex26
z3+W@+*TCyS-Vp33$X2vT94N&>jL8v|Z#i*94Q7xH{KuqH7)n14d}-h-1H%oBFfh}=
zEY3)C-$(;v=#PQ74U97IjtEC{v9$6HZ13yZ&Np(G=W<{FI0Nq*m~3E*f$;_=82F&I
zZ<2wD214&-KG@cm@aEhL=8PZer*f&rjiwry#_2Zj9v4(w-^cBIRGZFG98vXZ`q-8_
z)jn)QKHI<?1Ir97H!#=0`vw*oSVa2<<{6mJb!Xs115_T|&R3yIIW~FI%;7}~^q=G-
z@p*}XrCh4Q59RspH7MKRdJYNoANjh)3IiV-SYu$VfyB(>D-C>NV3jDJotQ>Dt2wSC
z>I7OnqH@{f(|nr)@;;ZYKa=AA<Hgr;?F`8KLNFtgL%!a?*9MLoIALIefo}}#GO*jg
zMgyA+{K)ldV6%a58Bzn=41CAbisy1TTRC5K+ix-Oy%6$IqcR!uQJY&_^SYy>grWOM
zy51r9OLlv@x>GpG&-p@*`iNrjR|9(t{AS>gfxQOyF=GuJU;=b6ak^ZqO-IyY{rtRW
z_Mm~Ry6vxrayZh%296jwW}w7@5<~C5|0pAqk&~rzsX#1SKAU4aY2cKBYg~W^P8&F5
z;G%&`<PSAF%T3I{d3qAcp%1*$CzQM(j?wtNjJB7#i;gIG#lTS~*B#xc%&SssjmaE2
zB=3fSn+E<g@RxyG25uYpgE`Z;_1bqce>c#kjgS0U!<`XMCHddn$&Z)2D;Dkuo+{re
zGAi>Q;q3ii1NVfNYFL)V`xFW&v{J}ZNK+`N;8n;_D5OwWp@Kq1h5HqM<U(nMG73c$
z9#klyP*UN*5mi(nxzE#apNF0oQz%YT!#nO9mB}iOx0J%Dk^T?r`k6LdDP<MPDU?_E
z6xnnb3dHIMOH6&J<>e!)Hvd0xb6+Ke$_kGwJfZNA!ovzx6dqG}M7fKRlm4gzN5sK$
zP@H`lXBPv8`Z@Nh3QsCLt?-O;L-dq1sV2SrG0$BKY(o9&3Yt`<bG&o1d2!(|_^<Wx
z`xN{NISTa^YA8IbP)G6kad(2)yrx1eY50K3t*y{^OeWpnvdvP+W-khi1M{b@0{!9Q
zGB>yQPnI)z1BHePO%$4ng+>aE6`oTV&wq(5S<&&g63??rVKrJ&67J*QIMh$lOrg0#
z3x!;1$em$hUpGs+nK1EMDtDim+|t)tp^d_;3a=@&RcNP>;M6FzSLmRi6oPb5A)ufu
z7z$rZOuN{<1f#)GaCQpR$O+FZPJ<zZutHS9QlQ*aSo=`3h{TY^(aqiMf?nAQjzV0y
zn_Enfspv7>1m;#oe>y32R(MI_WqRVx>7vk`8@@tU1qQ8~APML0*Kq~=-(Q+G=QM8g
zio~#ojI_Z>KNVhC-=e2v5x1RQ3cVHHRCr6F596=UPoclU>k7Zi1ig_O7p<L~m^MIR
z>(o-`C#DTj7^uMH;qIEhEADUS8>}!yVI<T3c)6j{<1mHc)NJoN+QuE`;QQ|%!D(8Q
zO;4Kd%zm40NF3e~Wlq81j2v!LV-?2Hco3z7c$X8(P8EJon4qwsrf-hIT!o1WlN8_Y
zS9&rtQ(>mU6osh@(-b@n8ckQ2!4Jgd*_Do}T1VB#IgQS2YL_-Ak5#i2F3iqr-Lmv-
z`Z*`>^2T;7zRyWl_)Ot*g?S1eDy&fWSYf`x0)?dt%M=zWEK*pku!PBTRPA^-kM=)e
z!`Uurv#A}C*XGG3KYusR*_B1UT){r7NQf($hYD*HK2cbuz<&GDw-*{sJ*w7<L8^Vq
z+M{ac>^u&WRqGgh4q4$F=Ekn9FBR6)=RH|pN%4oHib7srD;yWjem5$7r?5p~lfq`s
z=21oAw;WXS?7zel7U}u-4DT^TpNZQPepI-ka8+TunA)qbPvIwp9SS=YepcA6@T+wC
zizw_8taePX>&C}a@R&QsJ)EPXik|d5ruK6y<F2A`TH&C=ZwklQgej_USn*Ydd`>Fo
zmp1L*KBm@w)9Q%K2ua1w?KnZ4loOodW9lR~hh15e5IKow6wXpp;i63OIfe5Q#x`^E
zIJva8?wF$TrTl4SNW~f@Z*FRLP2oCs-5^HK&by&-Q{f+le-&;i+!p;mIo&ypepmQ|
zyZ5Gc3_go&%Zd0);cxC&qIOr19#V%$wR;Nxu}KhVL3oHFB;FU~|66b5rk`NJAn0e|
zASfvmbZ4K0YV`bppgXxmf_N~9qCpf3y0cj#h~hyouylZg$Oscl2HmWFvTeIEL6i-m
zatIHFkQGcX7sTU1JP~v`f+#P9yh0EaQ@j%OQ~V(z4+}mb_-GJSQnil-`KyPI&8r6a
zkDt&sh;~8j=9?daXd2|{AYZj0o(|%fAgTvZKgg3#u5vo7gll5Qo3fS>gip9XC8-fa
z@2MU(sVVwwUQ0;rAnF8>`F{pcS4g(t`vnS9t)6g_oFE$4GDsSvBn^c$qC6#eE{Nw-
z{DmNz2tU%n$5z+*kHCV+4T7Y(U<<*Pf~^Ge1X~MItxXX2R1Zn}AUXuGGl-vq=omyG
zi0MJh2tp6S2%<+2J%dm((nt_dPGV}*p&-J-&6EU_Jr>PM@g>1n5Q!lFDFB=x-l*z{
zi|~=jZmc>5(K(10MbagR(*yk!b`2uGwwokLcfn%oJxmqWvg&2gCx0afc1QAR5U&L>
zB#5Cw^x{MW(JzSpLG%&LzJmFhRDNBGZv^qMw54Q#NZt%$pb$z131MGvr6hw>`on@4
z9>mxn#sx7VRXa+^NWr&Ln(s()wBQ)Q-NzJ-8&y5;1~D;+NkNR4!A_7`R_O=5#K}QS
zO-ZJ3EFFEHJ?ot&l4`SkgS+|P3u0yv9|y5Ah*?3*4q{0V<*Mh*31V&#3sP<058}fV
z|3Jt*LCykunIFUziNHb;E=p;BBxJGRjAh=XLYAd!mj|&z_|Yk@kxznH6~x9MHU+Ud
zh&596br5T1YCaEQok%_n;<J>6N2K8wL3|~WF9rWM7we@+oee4dZzOHl*XAI;4Psjm
zKT6eiL42Rm*^-Jm)wTwCF4x^O^0R1rN~h>l&ria4$a<#&JN+eyUHnj%4QF={zj7aA
zSc2FS#GsYlBS9PuVs8-pg4i!@4+|a$;$RTJr7R!f9wL#<4{Uzd$GGVQaf(?jY9|Cw
zazRP(sYB&6L7Wx&1;KNv%;zn*^CCGo*>h3ICBb~lSA)35ZJ9S=Lbx8pjUes>aaR;>
z2JuG_e+F?Yh}$ChT`)fsL#lfIlH%Wjw03KB8gbK9&p#shj~l*(;$JD=6Xe37Klh0|
zD8noe!i3b?DHKAH5FQMnuqfOwNShCY{%;i*6$y=$4566t;vtj}lJ8YMmJ0pfdMqPV
zWjQ*&<V}zSLdu6wK}bcxN`gH6OofNpT?i{f_#}i!Lol~^(nHY1RFx2tLwt{g@VJmC
z1gi>C{-ltnLa3IKJRQO_!mA6;n3+zs?ByN2Av_nt^C4t};0wVYLJMzZT|tr>LY@tw
zrjS}GdF>GD2+tJE3L!h>u4p#lMN%)NnG-_&6mJkhL*b1C8>i%K`$7m!Lg*7h-w>LH
z&@6;#2v!KWAv6ymEJJP~m={9p5LyavC72&-&Q6;U+K13Vgl$7;CnSFjb_^jPMHPZB
zg!-I5BgOeK8kETjiRAjKmi(um)G?(P5xg|TV}}q6;iV8>7Ksx=LP%VY`cuC2Btz&F
zLgx^=gwS2&T?O+!;Y#Ty#mmK9`!5RT5MB}Ts$dU(TbSzUDV#d2eNA|;l%#j)|5n`V
zA-oa7yCIBc{H6BI5Z)5fKZF4({edA2O7Z+~4VL0NAq)v&sPJKeZwn3=93eO|gl?<d
z1;uMr=>K-t(IJeH+I(wcLl`GT>f{e|LI_hsm?pxBAxx62X6<B=Oc7-Kr-v{jgypP#
zC;dGU&Iw_zkePzBLYOV&;xYF=#`__B5W*4}{=5)A3}Imii$a($I<&ulrjEOxN26-_
zZZGnEl#(x|!;RgKT3)~J_AX7ymxb`+eg5*t)ryqlV<GfyRS2)nNM9eq;^JAWQ?+YC
zSS$Qf!Ov3i&xNcD;fs{yOCeu{z?5L8UyB`@+7QAwDZWw2Cc(`id@JO;RPB}!zEAP3
zLdL!7`!U2<I^&Np{tV-%5O&ah7*oU88N$yYoDJbz2)~4|i>s!P_f!bGL-;j>!yz2u
z>S*BG6T-m|eiObognc3G58?Rcw9k8I90-9p(UW<tg6|MF;S1>`d$%+pX;;;ARGOR+
zIn|DZz}n-2Z<(cO`J_}`DOsBRp5}@+{AZZP0q@&OJ?BHX5W=kxZijF&gk>GPSJ{xY
zbM#9gTn?dEOE0f0A-;d!CC?sLJDPj1%Mfmakat|&6kc<whsJ;B@I!bqjHeic5dI3G
zKp1IZ{4F~FarGTnRJ#+x-4Ol>;n0tn$J%@U<tEl3>z*LVuFAeURkA%{Y&U)Ph24JN
z>D{EDkm6yK2%}IKg~PZ%j0eIf62^mJTyEtp-aNBFOYfnR^}1E@Zx*vf!zdPZEz=;4
zmkgs+7>|mb(qWVdqf!`^X{vd-vSE}917XB(cVKtr!)P|t*SfrK=y63-A&iP)oSb9K
zE#+r%?8Jf(h4FA0kA(SWl)u-(cGp^DvQ^iTeqxm{8kYAz7Djq||Kq}+5UeW5s`=&p
zj6k(8o({Wd@bWk}ZqI~KolU~f!Wb6D@G!h#z9HXRE6kUQBO}Zc4&Ff({Jt>!^goPe
z!(fqD%`j#jSAA!eBPXd7c7GG;oacQjjLa~y!pIJzZW!Id=pIJBFml3BVFbgdA4Y>P
zT7=P(j)l=Ej2FUaA}%!!<GC=NPq}w;m+N7CW;v3kjEu;ehe6MC85XH6@JkMLcFrnJ
zY!yac812L8AeybiXcI<TjyIUiTI#c5JE>yvl|Icnh7pjWA;?-?%w8Ydhzj}f39%{+
zhZ7Wr8Ac=wTa=@MR;nTO^SdC%#KZjNi7+~a(OJ}zg86QD5#Cia|JU}#FkT9yR~Wr1
z7lodJuLx4D$N#7Qst8{bWM6&4=o`iWDZZZ4?<eF9!Tf&vr}#i2g9K^$O(sAOH<I%L
z-oat4JFbR=d7Q>ORB-QcH6o0WVT=!B0@Jm!|Lriwgt2k1f0Pv8;e=N9kLHA4FPyv4
zLtd$Kqp@L(3!_WlX5{a3`mVGhnaIVJ=baqJLoL0N!nk={UFzM8Sn7nTc0x^K7KO1T
zjPJvk5ypFAtO;W+GcAl+VSE_IeD>SeH#>}prP4^|gfTaa_eFTMeQ`>7eL$Z@LjLWI
zoCRSl3}ZzYA3yI~#FQT9>MRN4BjJk$M-)xxH!D^x4P#jt%SD(s)SxEu<1ki+@ktn~
z#O!Lpp38mI%)i+7(=a{@V*{6Yj-LzRbH*@?FPQU93>Lp+&Yw_U$r^EsKYD(9z1jLO
zh+m74<Qv9Qnr{l@dQF3NHiz-8NWM!|QOK&TVf;|e_fr@<g!~Z3i|}m=<44BlJ^yxg
zdN=D*IbVZ2S-fkvGmL#<?5F=j@_r8EmoRp5QHSws7<<Cl%Qe!*r<ZBPYuunb`-JLy
zLRB4~`PiFz2f{cQ#_2H5(9bXqg>fv5<6#^Q<473yjVyRH49}QM-roFvU><L}Hm=#W
zN;_Z2N7|hT;}my*fqCR7!ytauFK<v?_m_yXVVn!&N*Gspz2QI4eJqSioLO(qg)k<a
zP$Zw6P_*Xd4?|(}*K)|OF(6EpFm7@6olxJ4!VUU!Lj8V1-446Ae18ukcW~anL;NlB
ze8ju`{C{!t4`Yalp(gHxahD@C(bmL2Vf-6LX%l5k+zaDBZsR73n(&yo&qSJuf+ptw
zT4H9g`wN)(AYR<p!OQ*d!52$#brdpD*yO9T`I;1L9UP$KqvHO`jWS7!n8<w4U#Gl}
zyqJj+CQ6!k?X`l%O*hp$mdrYMs&LL#Un$ewdzk~pPpYye%9(i9L`@SgQQpL3CLT9Y
z!9+z9JEPf;nDC!el}uEo5fe>MDt_ENY$7P+m6PgTG@Fv)C)J}Ss+jJF5wEzX(Gw=B
znn*XHnY;n(f6_!X6Hl9XN{Ta2DhjE2b6(mrCaOzAUt900lWJ9-*J~n!kvXYqnD9xJ
zUvR5*dO~pDaD&ZjnW$~zITO#DsKeo#sLv6#_h*^NHc{6^J!x3(luAG4dd@D0ymHt|
zBn?b7G||XJV`<1Hp;M}_RB>o8m?*N{)6C=%4m2?_@sw&RabWKpa&s}>(&SBfci=5d
zd?XFY^GviBVZJF!Hk?xJOtd%A)kHTF9ZYmIkucql_<$fuOo%RMm{2KskY1&DScqvN
zl9EJCSSfA`nRF_L)*KUY6MIgn0|z`T@=BWMl+x@hq>JF{D*o=A{ciqOnJ^|^6#kNl
zmrcB4V&$Bio+9ZXoJDG0KBb7gO!PMKrqr_7$HW^Z`bn{`iPudm%E_YKRB6QiCI(5>
z0KtK&R)42--bzUZGdL>k$DFKTCWf1MB7&+Bj4&~hnHd4UKfi5al!+rIj+%JK#Ap*=
znOJXPjES+F1rv)+j5G1BiMb};XUdtFU}CoE9$lMgVv>pJCT5tJERv~$teRrt#$b)l
zB$7`P;mZE*Ik)#r%uMMt>*1ZngsJL2jLfPzDfzO9_JN6cT)8F|nE3OGyPtbbs}H%Z
zPb<EeylC0`J?qk*vb+l!7A^$K%Zo=(E1y<NOe{6AjPjP+v!~T^?f@6lSD5&iZtGsY
zEM=vMPfV<1(o(;Ww#vjB6KlCD3u&uO_goDLuTM>UX5w>^_w3?ISjFeONWKu8H2bBA
z0^LfId~ITb$?uu?$;3A%Hk#OC;(PK;ZIg-3T<lXaskURIZ|UXqZ%uqB7Vg$}A1Hfn
zOv#s4HrmRub5ZlnZzg^um-o*sTH?0a_hH%&ZXhNOm^f(SXA{3j^Zh1vnb>V&pA>%;
z+#|?$^6&{ww%yA#Xyhm1Qx7~&!)F<I*7{+88YS~A?{6j!G0v9vupl3HAU|f}IQLi+
zcTJoyagy_B;--mH+#fEdUp8@tOSq_Z+Qb>|b(?*>&I&na;=GUxDfvYcmuTS`jTaBq
zXO-5jGV<-+_ehXmGeNx0r5)8sZkc$ro%RQ(o5Q@6ep~Q&(|z|Zi@p13RQt>1*IJF&
z-&|Zb(n<a?@h><02#Q5;&%}Qw3Pn&j;!e6Jf?dgyJP&-I6pP$TFAzam1SGr)Mlj@W
zm)sx0;;ZQoMBMY(JU{uJyceQ~6dx3vdpEs!1SKLU7jcg`@(3=mr0`OLES45hMzE})
z_kO;DgRhuJ`3Ok(Za`wi2r5NTIf92Gcr1duabKA!B_Eb$SS5l-B6u`{=BE``<+ne3
zh!eMZs6g^~1o`C22%d`Il?Zx7P%VO|BZx#0jo_IGsz=Z)g4_twBhVtqj-YM?-iVvh
zbt1?Vk|F4ez%QhR;Io1?*`$J2OE{a<j__Vh36d;{-ZKlldvB)mNyDKX+`Ot6K~4nq
zBe=EPP0<DsgdcL{4TXGELTe<g8Vf!r_`Ki?f=vXQ3i2HSY}h=477+v^2yugYSZf(U
zN2w)m6+xZ|TMM=kq`WQTEWEv7hm?HXj>2?1AOq1OFodYoxcIJYK58*<w1+z32+RoI
z%%<_cBz>?Vup@ZywCWx~EP}OFJ0>DXM$qZBas=ZXuQ#*&Z}kd&(X>+pT}AoL)2ed>
z#4dvWq-AuAVDsh<HNI*}d{G+G!b?J4rrFbKdnlu41g}O=WxMCe-JW7KI)+|s=L?t1
zs8qH$!_Lf%VQ36}BY2&YVxz8&HzMfAS&O1Z6#XL@5W&g_K8d)$1PzQ}i4gKZ^dW+`
zA{a~~5lo9<dIUow7#6|U2*yP)oST0HZ$~gHg86%WY%)^F(Hiwxd`Ikzj$lj#58iCf
zT3*xkHTwOVMkMb>Fg}7w5loI?0?8+yT7eD|Bj|O?wX^NCB2I~5Y6NX-dt5$Sd&2hj
z_)<GMQJcZowhVj_!8`^nf|(Ki1Lcfa5zLNY4wLg8ZTuB2wooIP8^QY#oMb%fXDpnf
z-MX!PNDm`u-A8>C!GZ|-KHF|#1dD`FEmkL^(iqKnU%Pu+Ev9f{lb^oQh)Yv3Stew8
z1S^DmoRZi5sqiXh1(#&h4dWV44VP*Jdn5QXg3lt@!hg{l!RK6<L$t3M|1H|O2)>Bm
zOOdP>{7TTSmPMT^^)rH6i475a!&SVeBqbXo*dz@%NARtXG4(QxCrhyEJ0?j@x7F4N
zeu&`b2!7$#^nAv)2)0M?lkgwKIE6c;?M^Aq`d*8Cr_q^w+!evEQcKBhAsKx=pFdH8
zYWpJCAHnYt{1L%{2o6SYK7tDo{1(BX2+lBzrfP>HI1<6}2u?5*)mt2m;26_vjCRjg
zhFD;zMjhfwrbJ)Q=?G3qEhQiB^ihGrvkb^&?OX)BNLY0-f=dxxi{Lu<qTCjj8I6%V
z<%<q$v?~#u9;V&5NE?z-g2fwByd}nOa)H#WPt9w)H0s>u`uf!6e@5_E1Vy7L7RBEY
z+=-w-6lqc1jo=?n(0QLHihsHJb6oFe|B1o%t2AD0&R*ut(x`J^6eM5u@f3`rP}KG3
zfhY<Kxj%}lrCYpjwV?1_U;WocX+=cN;)6oc&uYb^pusXxzKt9uq9_?fsi-@U^q&fs
z7V^{#jTgsNj=r_cV9?4(-7q5R2ARR+RUwLsQJ6QIQ%<ZL#Y0g%9K|D1RF@2VG>R%w
zJQc+c6SY#qwa22kGfaDeeGS(hkD|?Jjm4@WBzZE5{T-SenWR+{{ig-l@EICxnL(1y
zkxt=BcNe`;WC-yImi$bku+0kX*(l%Mga4xNSf~|6?I_knu{Mf2QDjE(QWP&okrhRD
z6nYd!6m_Gh7e$jOnnsZmMg1s7PSl=@qCpf5qnLWy*Eovyr?ponXlD;=jiMm-o}uMU
z(dstId_Ia7ME~n`8e7e3nbs_d+$dUeXpD0dEuv^83RiPWw2b0<4@I3J2epg|TAs+s
zOV85UM$s;c4s?5V=`$;}_B2~KLz||}U#HRXh0nE)Q3Rr>+()sNMHNLbiY`&~8K#Az
z2uI;W`R|ZmMiGg^jv~g8j@P1sRurFg&t{Pq?Uy>ETs};DXrlJ&4J{ExXNi9@3KlyF
zl2CzHJW;M|6y2CtQ?l2u@N^f=7o!*>wPQwVuSC%!ig%(I9Ys&JjpFqv-iYEg(d-pP
zZy{x`m7}%SYLw^`MPF%NV4`cB!hYQRqZk~;5av}B14;hY-iqSVDs7NxzR8K6;3m(=
zCK=^cX`#j1)J59RC?>SX7#YReQJh+=4U1xU6eFZB>aZ;>tFhWEKbIUu&9N>oJXISL
z#n>q3M)7_W<Dz&sis@0zh+;f-qL>`Tlqe>0E+)D9lcFHL^p4AitkI@QanC2(v?#uv
z;tF3Dv+qSQGm6<vnBCeeI=n#}<SWD4VsE>fKU>XV^rmVP>v%rkf{kK%6f2_mFpBw6
zd=$mvC>BKdv=kOaLE~(den!y&@_GxktDk7|WFSkTSSk)gMrk8H)0Q!57iyvD+Q(6>
zjH3L-GHmz>Bk-BFO4K-HdQOGaQ4oXen|;bOh~h*PC!_d0igi(JkK(5&k4EFmD7JBl
z4bi@e;*)*8Z=%@9%|SSeUq`Va#sB=-w@LW7QG6$4a})=6YQdG-_C3BWQEcU!jpBP6
z-{Wikiz|$s^_?89HGZ<SF)8~;>4ie}wIj+K2sk8?pBak3w7pU6i{h6kc5&<A%q}f{
z*J!pUimperU!&NuTqEJtSMRVtiUT4!D9GA1dwdV6X1__1nj6pf4o7h$ilf|PfA$@h
zUXDfa%}%ZC;YP&%x5~Zun&%WZI&PIwT;tk5<2w_@g(xnH^4TcPaf_&zabAkAF4N{d
zpK(bfbpDD6FALUaUZT+mZP|C)^(byc@n;l&iP}xU-vw_)aa+jt*FCgJ3x7oMY!mlG
z^KT}t*ty63pGlbBV%RqApC}G5Db8B*f2H<?Gpb=d4<+|mC}3fvg|{uFStw|sCO0|@
zg)9`d@Q8&+E!=P60SlEZJhewFV&Opxr7e`PP}D*(3&Tffr7Unn#VwSe+E|VJ;CEU{
zHXowh*rMH8-e||6=Go6@lobgqzCET{xm4}y@3rz4Dp;txt@%&!4i#zntdG~YzchAN
z*+S%uddR}VLdc(;uT`<|n1!b;JY(T;3&$R5@g#k-khM>HLd;gB@N|jg<$a~r`Knp)
zozPfCUURuo-9owrzjQaFR%^||TW3^;1<!KLE4U#q!zaS`nzdk64GYhTa<9qSqQ9H3
zeI~oMg*p}t3(7(!JGJn<g%>PjTc~THfrW+^>RDKPM&$_hUFRd`Ro?=`LQ?Kst&xQ(
z$F#;4J{_u&6xi*1&cZ!^E0QJ_np$XMp{<2x7IH1Lw9v`|qr?!MKJ065;kz@c1r;u8
z{ZD!GEX+HjwYCsyok4kcmha`QKJxjmwrFReqlJKl_A)OWIF|VuCxulENTsJs=oU_$
zQ9XZkB|%!?JX(0oLfC?7p_7Hq47-J>1;;|1ZrsSUIDHnzeAeXd8D-PA!#;i^<p(__
zt<qW~EF4~=y|qFkPf9#Vx>)FH;Ux<%vx|vZH;d21W^@<Lhok<+Cwwn5_YU|-_)%z1
z(_XRA!*aiH_OvkYbN<)e41RCnSLj|AdUI+l47SimCc3|c0T%jNc-;cONWUT2&%ztW
zd@PnZtBAi;Z#~e$mTlUb7RUz)^5eB~sTR|kX1uZAH^jnF3&SjIi1}F@aLYH`0>2@T
zVA|i-26$TV3-*W_*`qAHV`0CA0~SUz0v489SY~0Yg>e?<T6o{WyB5Y<m}y~_g$WiW
zT9{$shs(Z69I}O}7N&9DnSR^cSy<7o8LLRP?DplZ_7JDbIwE<`!e2#Na2?H=sLi%8
zhxY5btF^r0`J{dZo3rf)oOhZ{Z?VL}hZe4UuPwB&$ijRJ3mBZsK1z5^Yu}9eA913O
zYKxhozci;=@_Zw7X1RqGbkf2$3m;opY2ix?Us?FX!YT`EnW7d}({hdM+LN=_Sh#q-
zIZ5MSvt_|%=Z9#YS@_(-ItwSBX~8L@{0obx+L}@Son;!8*IW47!naIXMwn^5Mf=9W
zM$w6F(Kd->vmmS3kVsQoEPOA0{k~tTb5>E#Ypb-P!jBfVTlm$&9?q1-Hznd{POH??
z;7*R>14Sd$+$BPKGAq!G-R<TiF4Od_TF*UNv7ZVP_gWzC6Wrfj9klQpcRw42Z5(2X
zTDWQ9mW3l0j#{`tm$<iBIBwyzg)<zrg}hzbNrsm?Pqltwg7();_qzc<;)gVDK|IT;
zoXP(~jdK=Q{Cc|9c%61-iB@#2cFDqJ3)jU$;nf;H@vm68YT=rN?oBd(nW5z)^{tWG
z4Q?|0nzu{4ZQ*zB6&C)p@P~yzE&Ofaj)g{lYkx@>7iVa@7rGAIweSzqa<SWrl7FRk
z=bz2VsZ6u9@3C>84e|mu?+W@0+F-wFw%b><Q3m~_{{1!{uu;-RDH}y>cWD&2-9Ka=
zv{BS{$3?YbHt1xaNe26+LJ1o`uSz2+ZKI6MwTY@W%GxMrqq2>MY;YoAqk@f!Hp<&L
z@q=$i)z&qRXf=mum240X7Aj2%$-_1tNl6~HQN_k%HXauV=aC96&MK{N208V~pS1Cm
z4Zn>VHmccp+J<JsYvUOk)yWHIq}!k}N$jl3?_%p?ttiQ`;bW^Kt{oO%@V6#;mL1us
zWuvwYD$oI5?6i)JOdD#ymL)~D%6I<EnT8e5HmqkO$HuQV_SmRzqk)ZuHWt}vXuIc8
zBQ~No8ZqoPp0n}1jrKM=Fy=Oz*l1y+rKmNv(Od|dG_x__tjd*Qn**L71_mf>Wg{<N
zV&l6fvuZw&NnvXnQ_iZ7&noh^Hrk28Rw;J05wH=m(e!{vw_(tK8|LKJ)jljv<x^)>
zp>yg5Pn)1LS$wu$n6(`5In^}jr$S;zLCc11qd%Ro5wqdg=xU>z&4<(daluYD5<-%K
z_0K6*g%{*>w$X)MpHq_-<n$F`cN?$R=pkw^+IY#v%fgRjW}8{r<Iky{HeR*S*9Q4(
zQq`NDXJ*r2FDWh%JAG^vDw;{*>ozu?Q|#*v8~tqTJ*Rk4f1r&)jERk@Hr}-HmW_98
zjJ7e@#t<8Cvy1vA^_H1KZ49?D!p1PBN6XAtdX^yGJf}uVaod6%@(0eVQOw3U1!?xt
z^J<KZu{Iy@#6%n8Y*1%Br}Dfad6x+w<i+#KKd0a%4z_0rHvfG=&SV?J5$6@{)9q<C
zX4{x!^L3z@VdFg++AKl#GLut~<qrAa{2cZ;*T(x&^`RiEJ`nQUf}D9m`Yy<s&!xH`
zhfNlUWWjm$k&VSRHrd#0V+ohJjZbZSW@DL+<u*RHv655S(Rck+YtHftwz^kmSSP=6
zuFWSlR!cIFuj0aQ+HB)_wZ_I;8$I7_MCAkL)%EkLQ`2Uj+xUiS^MYDu;|nhK(piiC
z>-eROuWYPmM~kvLPH)m=j`6kd4T2Ota6xSp`!tnvL4C_KW*BY!X!BijX^$=Pb=&IM
zV&i)oTWxf_pngapt602K#kbwYPHr{yjoZQ^o@VjwU_x&7ko+Q&-GaMpP{PZWR@?Sw
z?zOSc#$86EoNvF41KfgaoV491k`4+UvhkaZe~Xr09n9f#AN=L_u#H|9)Dh;-1$9*L
znBZ})+~z(CCq08xHZIw?Y~!?zGd7C-k@evPb(Wi?jq{vn_;`JOL0zyh>W3zWs%Bpl
zA;}f)JT1MqZ2Xhuzsf{?%V@VV^O}w8T*5mudEF3lQ}Ejh>Nc~89uCa>LmK`q{7=EZ
zY}~%D6{~pN;TCjCk^IB4*tlooKO3E5=p2J5hWlc8EQZHpC=f$h3=hUoG=_Q=d<A3Z
zFvY`@=Y?YKY5Br2{BR-tenFB4gcON^N0(Xb)Xm4EP`rx8P&|ebF_es<RLng_RZ*~X
z44pDvoib7^D_Bktf~+bpq=Mk9n>>_MilMR;9};|6@DV}QJ}RV&;N>qoPsC6)h9)sI
zjq$&1<Ea?x#E=<7wHTg`p+*eP#_&uG)no9+kP$<A41CVlzp$ki!|pR)J~+I&nx9V%
zllWrpbHskZe2Mv9hng|>nc`X^WG$Z*t}PaJXSSprO0pQY7;<9Bj-f7N+oSFCPy6}!
zFstgv&>)8AvYR{~L&F#jTu_Z!6w)XLKI}{h_4zC_JK~ebFNm^h^P0C=%>8Ymc?>OL
z$Q90F;Bb+aF|^{;TuhI|kS8P{NJ;A$+N5~f7}^PMFW4a^?-;|BAKc#*bdeZ>Dpea4
z5)upxnu3cL7mNyVe+XbGgvU}6M@T$|gpj0QelJ~O=o-VTF}xN-H<>af)hkr!;Oovo
z^>6)R3@^p-vgFlY7Zfk%6>EFM&@+a^yn+8h8eiqqD~8^j(E6DJV(7!0|HAvn@VXGn
z-;hr4{92ez`f)n4eRP$aZ3o6MD2BVmyl=)ZSUP$uhDjq!v1(;8H;w7Quo#BN@JJkw
z#xWv>k#xzyD-Pa{VHBIhuq}pnVi+C6)aKp=F^q{}ERE!P3*~yo#qe$nGh%ozhVeAj
z+{<f93=?9QNSzoai*V{R59Q@Assg5O?ljNT7^czqZ=UI#U(>f`n&)cRM}?U&%!=Vd
zF;4rlh0Kj%j*vmkJQVVJKZXxP5^C<9$2`x>rtq6)p81Tk=q!w3Q4Al&usDVVtcqbt
z3`-gF7}mtFjHxm!ZAA<pb1mn3m&fp_r*O&U-j$;K33rC(-c`*!`M8SfnxoG3uB96D
zHioa*N;KES@CBz;6lyj1($wvlX>7%--bJ-OhOcA%+sbu-RTLhmmrc%#y>E<RQw*D9
zeBBLhO-b7#YTpU6>;0|M*yMX|EVI(6zcmI5FXwuHjA1)x%E6-!eu}v#Os>UnJ%$}z
zr!o8-!!IJd6vHlVBdxt>W9}i$-7)+c!=4!S#&9%-V=?TLS}GilVLz9o6qgTClpKuV
zHzxT-bx4GLF1kWqN2EBXr2lxT?Fq(nV!`~{lQEp)=JRhRi>G5alhPS`QJst7d<+-F
zlZ%3M=}b94vDcl<%i=Hxaz)7182&Bg9$&l>!%gOG4F51bG2D*f(SI}l6rBNO{J+Qe
zmzVDk!5hE(7G6|;#qf8^;X5%zI_LB%pH2Li`TVbs$93q~y%_%E9_8RZ#})FhWdR3i
z4$3$v>!6^6LJo>MDB+;6gZmvk=%A>BQ~zYXTH61B10t^?4z|oONOH>fi#ga?%0(XC
zBq{0O;gWt57E3uOU)nv)S=zzrQhxGs(kc6`Bm`7&P(k<)CH(6zs*1wdq;g90AsTeB
z=b~b(7Ry^yaqyUffCJsZ;|`v1P~SlV2UQ(B>A>%xhJ&XZRCC~^+hzTqeBpcAL3Ib|
z4#=OOax{&Ek=Go&xzs~qm-SOK!$Fg>ejgR48Wa+rbx_kmwu8D3E?-o&9Mo};>7Wbz
zwH<ssI)_4DSrkrglbo2zRxA?h(YH$~@{NaPa~wDQid<3+9W-*##&I*Yv4cPExF@Ne
zOLh0WgBKh(U7LtP3kOYwG!vv|u8`&qj%;vGinf$ut5j{Ckk*1rzDaBApq&F|1y6Pn
z+Y9gDpra5<)>dw5q}n<Tl!Ksykb}R6DAPeiNLVl<H#6#>mE*S@*lhkyJvNUysCP+)
z2m8rMhz;9#;|~8brZ*v&bkNB`XW?BObQjXqK{p5ezVUFFiUDck<@KV2mt^1+ve?5x
zPY25!EN8Mgc+J6h2NN9ha?snsTMh<0=;NTTgZ>T%IC$N`8xB7EDyN_0p2xm7uH=#q
z#Yv_Y&fHefH_*W#&a#7T<4V4KNiFdDb~G&g=+`;g%68u$C^5vrPzR$OjBzl`!EmM=
zH+%;p95@wyye@u~LsS0sE{<~Wjssd4c1f}L+=XT{D)`1a80X+!2N#?ADYP?uJ9Zb}
zI@&|y?0uqxNe<>Zc;CTf2U8sUxuD=22UEq>nGR+-nC5_XrVGx<#|pmpgv`98>J-jo
zEw9<ky~3FsCM`TYr5yYEz`=(O=8LI$g0HR5S>RxygT)S(I9TN1Bc|Dcf>eGw!<X;j
zs!NI%I0QPm)WJR(+6pE!EjYODU?rD{gM$u!bFj+6Y6qJgeCuG1gSGT_c<u%V&vo^E
z>Y!3x-&c%0Q+h$W&mF9D@P%*|izKtZ6#m&ueiqkrx7nNdHFKu6kECpovfl{bD7eYN
z_p@pjjb}a8+4mhc76-c=?55DcRtGz{y-4#P9Q^2DyYOvX<DGrmXV<2|pTtO|8^uq~
zuD#=u`Z-nng*!v7tl6*TY`$5XYQH+}SAzY5dmQX#QZ>xl$4T!}ujAz0WeeM}_JD)u
z>-x5>${`+daM-~y2ge!bS+$GIu1$p_4qw!O=AE*6vFPicd&0pP2WNR5>3EVGj*!!W
zRG{#jgYynPeXiCe>H30HUF3dvNl}5;h?fPg2woMmo22op_zed)Io>!5#Bs~PZ4QkY
z?%;Q>ra86$bnqAVnSCAqa8T>Fj-Ph({q5imQ+-v=zua^B<=%DhkC0XMvsvUs5dXcT
z-n*7bJO4TG#9f2C`sWhU;wTtLxi}DaT`CmE{c$`HN8vbH4bEi%iACagFpe^!P&AI7
zvuYO?PEt%r`OB(A953w6EEz{BAwLeyEiHsLDK8tx$dB3`T%D6;6sM$o92MfI7)Sk)
zxx;37D#cMbj)&uDc3HjAFpEKcC=Ts#$BfHvtSFp2DYr@-kHyh1f&K|R9>)`LR7v2m
z1gggIWE@2kD3-ueaa4=r`#847@pK%|#4$RKF>zFnBR!5malCj>)8g>PVaNHt5oE;S
zi=$B-jpOi3ZKhxiK`K8RN6k2D#Zg-%bp#)7;9*rhX2p>mM_tA<js{YjBUoQBENYpe
z-%up^{JA)ukE2~2?HQstnn+ciVAD8S3TYNcZXC^pw-C(ll>O#+-HH(t%apekg*Jk1
z1=&%DIOu>O#g2m148)-e&u^>Z2*wejW*pI!ju}Tpc)qv)>%~enbmEA|@tPD9aU|n-
zIn}n4kZyvV1-r!2HC0Pf-SfHNOM>~mydu1ZU{AqU1@n9FC1dF=l0Jfc<9J=j8*vO2
z(oe9z-~hq@O%uC#Q!KnCI9O_j#4$9EVZw(C{%@osq&PB;w}p%nq_uZaF&`VpxH!HR
z`MYt9kK@BQ=EpHXB-2y+6XTd9J+kfOIHrhvY8=zz$R9Q3Bs1c8FOHc~J6CX);Osc&
z2%*mZe0yIcAH*?FNWO(W_p}9ZERAEC2p0-268uPTaU4s8{Lj?#I6jSo4OhhRaU3h9
zc2yj!<M>2)zGY&5*K0($HWh)-WL%$%a9v9Oi#Wa%{*~0OPswRvLmc14u`!Mt_q6H_
zJj~2ZsoKqPd@KAr!7YOMo&FHVwm6Q7wIAcy9>)=>{V9$eaqNv_UmQDS6njMea~!`2
z*_HBhw-kRBtkA$ytAU5eQRmy=FY*I|2L(Ca-{Lrw;)l5wWR<bW(KyOV+v9PZh~s1&
zr{cIT;qEG@<2Vz?O>Wn5oRzj01=;Fc9Os3z>kHiX!~r(BB*M#aToFRaRUy~nxGv;I
zO3sG7ZcFj+IDQxMhv1)re+kkujocAVa#zSdg8#;GPso3Q9`QL}zd*vxfi%H_B4^t|
z2^1E7zu*HYd65Jj6i$DrRy=_c36xLOmQ1)CPPqg)zoil=EyXf|W%H|K-l+pAKHSh#
zA%ThsRFdK&f^?>G0uPBl)O<MA@X>@D{6=DdT|b_HmVh^bC#3hPqV^;|0urbuym|uZ
zLY@|UMw-(x=0CBV*vUx1mq42Y+9u#nphf~OB+w**XQlVd1hNvSDZEw!wT0BlFE;S3
zl}yM^pstL!Q3CZ6$Vq_mh6(Jvr`1omsop^J%Qo~dizxg&oW((LjEzO-IjMb~z5M42
zn<mgKftF%~#ayXvA=q4yQ?^?AZIu8?o(Oj}@U)gOGCu7RXrDl*1Ue_sA%Ttwm<dD@
z2qd5<5EOk5pT>zs0$<<LR051D3Ec~cLO6lh@0F(WbTyiQlR!KHD*;<HV+k;NU+*<o
z%Z5}-$Vi`_={89Uuh`JjC4sI9yqdu1ds?>yx=WOLa<US5N$kJXz{9GSMd1~(%xR^h
zhe#rqRg?c*CtpjTR|35mt_GgI3A`>N?UMi_S@b`Rp1j8I3?gKa%?BhfFo97?{<{zi
zO5n`|3M7%1#9IjrPT-paHYPA6fuRY^NnmaQ!x9*tz{CV5B`|{aYkA+H0||`eY---O
z6R42w{dA6hloUzEBrrCCMVHlt1jZ%sZUPHycvtwn!}wiA^NvrTXd^E#a$cR*q)kp>
zinN`Xz|;h$34bqv-@V@H3Cv))a*Ma=5MaOe)$tNfw+g&5q4g|=h~A3LgO}B<%j*3E
zK1g6i0v{(ZFM$se_$YzJVr@QsNTB!?*MS8IoU85qKFiDEA`#NJB?&A|U|9mo6Yw1J
zP_5b(HNJI#y!iOm|M<LB*QBjX;FAQ_CGbT8tMUh%z-LUe1lBMixh}3K`o^|2PVQV$
zpNkrekoT9~zm(yuPv9$YgI#Z|;r%)RHsPJU4H90)a8m-C6F8N?=>)z_;JXC&Ca^Do
zEn@J;1h%tD0$at~b?>&Gc18Wb&|Oj61nI+13G7JV=LCLXtK8z1y1I_-WPJQ?N4vz%
z?gV}n($eeQ!%>_nPMt^Uxbwmg5%(u>IDsPx97y1xIQd%wwYmllQTd9Z&z$-lSJe3{
z>SzKd=xwXOu>_7M+<TaTT3!Z_gmzBKU^$6r5;&W{tpsjUB3)k=JfFaY1X^Wyi(gfY
z%*6yQahtlT=mzmh0#~`pnwGsL$~P0Z&M<OCTy=dQCa=0P%jUl)@J9l76Zj{AKNI*X
zfxnp#SJl9)YP#r*Zs=w4jtJTI-vsW7&HIx0kHJiW!OxcTVAsA;ZR!7Raid@og_3w7
zi6%)DPU8L~9!;W35)UL%B#ClK@Sh1im_*SeN+wY%>BhNO62+4!k;JvD>f=mrv1{sU
z&3j~c+fH6@=_IOMQ&WB|TsDa^N&I!FuvN#Mm$82DhP=Sy2Hx^XR7|2$5^Pc-3A)|r
znyQ=x)gDgb5s^QX1kDDoxyDCkcv<ye4ew(~Jf1{G622s!NTO;I>3j!w5;dBZeUhCf
z@pKZsuc@b!?i|r9n{4;<#i|&0P0>R2Bo>K5`p>TEk2i_Cxy3hMQ+^srqD~TgsrR!<
z)Rf+9F)TH`T;R0xk=I*WgtSAKj$Kn(Nz_fc3o4sqyyngkvHW#aFX<+Hj$nPk27(Qf
zXe6Yu;B$i1d|n7`Hcg^g5?zw$nnZ3A&65ZxVJ6WciIz#UO`@GR&?<?%BwBMuYIv*n
zC`Ah}-6*w5qD_6*xAsZ?$4}@<7!rq$NdzRM95QQbUw3Cpi6odrNNmy+6PUFm#7Gj+
zB;rXVI4Mck?ESiOlAtN}7)!c)qqQcDNICVBNpuoBoc+!+kBky~;c_E(OQL%cuP5<F
z5-%q4QWCv5O-a0*#4AbkNTO#FoF-ahbIux@yqW}OXXtbf{drAlyI)s*lKf}o0b1@W
z682m4{p=CfRlg+qCowpQAxR8KVjy>Wab}Q=@lD}#ud7BfkHmes#o2af62oLfBSnG2
z;Yo}TzFw5+2D9jGI;^{q8J)x!ew1`V!A=;<j7nm265l5AZW7~@Se(R?Bqk&=F^O48
z%uc$$lub%vY7*0um@Gv~rX<mCd)Be*YI+hgl6a2`;fA98pX=)Oz$T^U=RDHHGc$>u
zWm>Z9IZ4b-VnGrMlXyRg50dyWiTPq`)0jLe%oASohH5QFzU)?-rg$w9`O?89KB8C6
z{YQWEP`EUSWl5}I43o&3?O&e6Dp6a(At!M&J8vbI_FR8<x6+@8oK3pjP^*Qv99)9M
zPsth5BsL`Rc@pcA_%eyFlK3KtOWU*1yf}48h(m9v^+}AXTbBHRdR`9s8?mz~3HrQ|
z`A|P|zW7}9kn7ubNo+~tY!c_V7LwSS#Qr1>B=JKM+mhJ9fF$uFbLPHM+f%-=yKkHO
zf0E*NH`LEb{F20;B#zxsyOOvu+rK-BUz7MVmP`Bj9&!}l7scKr_HnPP*z#7nmK-l*
zelUsO#LjWSLxM*H4+}C}M}-_q6**Zak~k^FQ-Ws%Pcy?Sv}BLGZXGIoK8XuS{6RO8
zxX36aah<-2=H(<fFIOest|W2i|1tF)&{0(1{|gD7&_95Ph!mCVW&;9ANQ6+r21w{-
zgGdpWvUO%>C#Z-NDJor>B3%Rp6r>0WHbhVm1rbFosECCk(tG)T=H|Qq^E>CA&-uLj
z?z`{3`|i6l+3e1och1p&jE4(OJP<F8#Kn=gEXt2u@N-3+?Io$wX+O%IUK@$)BXNi6
zoff2teQyi7DR@heeM@$S=u%Kh!Ix`usd=!ahorRP#41S{1!WcFEBvGj<rI`x&{#ne
z1r-!jR8UXBy$UKRsH~u-f?5hv6jV{1Ye97dJumpHDo$FcrZ`tR=PF;&&%WTVp*Z(c
zyxc6|BkdIDZmN!gx(aFwr~Xe}((jRuyb*Fv^olGdwE7C}Q}BQoZ=m3Q#mT4*InN7z
zhW()n&aKFq3;vXg{)aF68!66B6o+W4;6Vkg6tq_Gkb;L5cod{5Xr>@lfm=r5+^ETN
z{${()<CA<B{ayv>3Ysfup*Z(Wv|Mr%HT0tY5t)2T1#}c|>OLBq_j!gVLqVp3whG!Q
z$WqXTW)(cDV95T=Y?<d%7ySb}*W{|1yEtvy<TWB!L3;(A6yz!BATznQOG-y3lRjSR
za58j7XOa74P~P^?0x#D6+@7uqx+w@Nh|sqR3Kb0Ia0<FB=%JuU!9e<7K`#aU6!cfn
zTP)CQUm<<OEUnGE=qC=4DtGORi+;aMn8LR&`j21qKc?Vu1=Js;{O?AQ*|LV$xikz_
zFie4>KvnRBg5ipDW#nxY?cBWRAE98Rg4YZB(Y-6j<PkLmx(pOjz$X|66b!iJ56XPJ
zmz?d3Uh>l|KfTx|s=!b%TER04Oi{2E6f1}+uoTREsXK2f=)<^zX_x$*$tVRIF8QBQ
z@HCaV1+6^$F8S#$-Xzn9+@rrQ`Nt@DR>33%lNF3rFiyd93MMK@y6hjXU;^W+dp}Nl
zPxpQgHFuKy!<YTE!{FpVynCF&J-Y0FUgCkF#hcg{6cAtJ4BI;Qw9^&LQ1E*g$HSPZ
zU=~}0*crrZ1urSMpyQ&BISS^|Q5r^Qn5SSq`>KekSfJo#o<S9*RlK5Lp@J_I>{alp
zf<+3pD0o-FVui00#p?=IDfn%ow@GKuQU%KtELX5X!Ab?EI(nLP@|>Gp^)(*MZ*%`T
znflN7eJE_)*SlK58w%dy8WmLcdEQj8Mo6;HRnF&HD}2ah|GES@(%G|K!A1p}=vW2s
zD4^u^hUvt{9UQWmd7y(Qd8dn#6Z3PnD%i&LD%h#uJq7P8_)x)Td9G%;p6v?eEp`aY
z4h28uc|PFj%k_|4;_(swF|$YW>J)yeV3&g3BK%Cjn|ZFzlWWv&@0tI3*)r`tdzg7T
zdj>CdeXihedyhULeIK)yf`1g8RIp#cSClLGPQllrc~I=I%K@&pvonWp6daP7FP!9M
z^;=QsFd_YWE>OX71%D{`LBUZ4KP&h}!H<l$%YJ&2bGUawub;&1%g21j6#U9vknXz|
zySNbQ<m7sOS8&?rnR3}rJRz-rD)>u*w|VvTi(R`GCUX@W_irXlpNmUAMSTTV6<kwr
zM!~<#S_~Bht0#KTD)>*qIa%p5cD9}CVPDGUT=sLsiwZ7_eOkMu;8QVsh08qVi{v{)
zTvu>I!7T;1X>GCVCad8pXFIzFckql~nL~v;JY076OL?xlvM5SiDpp_ilO(A~R*|FP
zQ59uWlvVM7ibg8RsVJ`kDr&2!prWFR>MCle&TdvxQCUTbiuW)3f6Q}L&-YXjc{LUE
zMpfY?2gLrA#jctvKAi7NV^f}|mbCtL*<VLRT^099^&S=VRMZ##G@Y+vSgvPm^XiM+
zd)}3}S~VfPfr|T8G!z}0nscP={iBnT8KNqhsCYz0OO^i{Lft&xfFe!BgDM_U(WbNK
zVHIxnqSI8Qio{--L-}>t>#A4$Y+}``B3+C(7i=N;d!B3l${g-RD;2Fp(nc^tMW&Dk
z*ge;irQ!z(`}yH2*&?TqecP&Nr(&Rr$5iC1Xs@ETiashjsOYGoi;Au)I;qH$F8L}t
ztKgEkaXu!BNnVCoOR;}*VRFC4u5Ky{RP<1tvsQAf3Z)|tW_J}Qs&`}9^i<JH1v~N}
zu<*drlYLe6S1~}G(@({oJXe!^k6%R*UDVlCbEgw0oN(tWeg?@Pv8kv~Req5GgH_P%
z5EV~wQ&bF<Ruby_Wp2Y&j8HLBBnNXnR4!@KL=sRDRG~Ap+IyCE@-!cv6jBjZVK9C=
zdblnsx6b!OR80T8YgCX`MlY9OsferiPsKUTK}E5OjVd;&7^UJ#W>FO{t9VMq(~LS5
z&&zP5Rg6_JPQ^1S#;AB!gu2XgngkMu8?WLy6%$qbk?WZt*sn$PNutTt$u!$8m#$-M
zbA~Udcu~bn6|+=K6`kpV+@@&^yv`ny86xR=ItOZ%*>Xnas+gzZB^7g2-0^wnZN~qP
zKF_Q?7ti2)m9H!HvTU2^eMQAW6>q3`Q;fW-V!4VHDi$#kIH=5d3D+n~SgK-~Y%ZPi
z<s|QG(&cq=KG(QXs?)FdSMg|z8pk>#QFJNSvqr^RD&AJHRt2jp>r^mJammiACwbSa
z*dP|(5&S|@=+WlYH>=p9;yV@Jt9Vz%Ru%hHe5qoaiuY7}tl|^q0oA!4ZC9~FmiAh>
z$_I2#C+7<Fp)`?vl#rBMxpu19%}`YFsft}PTRLR+g!Io;5UKOIiYjmAej#{gQVlMd
z^V}<QyY+pa{VKi^en`dFDh{alhDm0ztK}r`LHcd6i^qqT3}V&OIm@p2zg2Nq1v@tC
z=(+dRWHue)nN@L|0ifcjiXT<{E(SMU@&Baa7Zt};40^Nc&s^*kf46*3Nm~9@#c!fU
z&u~6h(j8<Volx<oij!O{*TNMoO#X*4d8BNm1v!69M3sd4qQ$P$JXxQ2E%tf-RdI&L
z%I6^;u`=f@Bb=eqqB`-siVMtO8XnSck^7~hnuh8cE~~hr;;ssphN~)ga<8knq2d}d
zc1KUM&Mx9$9xJX?<!jpT50hSd&#q1$%31D+T4pCtDGjAHRMJpcLz0GM4dpbH*HA`t
z@?=@fNg&6rIG4f;47~Q9GFSZ-G-rs4f_2VhP{K@G*wK@sp{fQ-sz?)c>R$B|n_czS
z&`?uDJq`D2sHK75o~e`2sjcDcFIAqBiItvQ!|A2ro<wWAtN!{L?$dC;hK3?+prK>}
zeZ=?!6l!Qnhn&u6ET~`gH_?#Y(L>4Tt9}v|Ha*N0X~@&iSwpG@w}uQ2nHoHF;DqFK
z4b3&|?2?qG@uT}>uLgRL>*9P`XlSXSm4-(Wvzl_%&-HT7#MT-}=*cV%ZD_EQr@g3U
zYj{*cTj4o^bFTVZJeN#^?KE&BXg@bW*sFu)obiqtI*AcVR$cY`G~{dWYbestMMGB&
z-8J;ku%VNuo93jBLOOP*t3U&9Y`8}>&MEcO&`U#KQCNN;W#M91Z<zqMrjLdlSN&@{
zdirVTuVH}5+3QG04;Mu;P{U)g_My@=Nca%pkCP|tP%~FzY?w%%(6IDKpKry&NR6*P
z<QpXUf_tbMGz}*-{Ha0L5YVt%!y6ic8bTT-YnY-TtRbS|X$_+_L^T*1;u>rXrtFKQ
zfh*#0F&XI8Rln<+e^qBsv4&A1c}l~`PM#-a$G47i0%`7>UFm1uDnFxPjD`uK_N<1n
z8pdhZGp-7+bTr7q<&2kzC8t}S(=buvw?UlUp@fI1<d{6K;ROwIdF!s>MGaFmOxG|&
z!!)s6>zd=Y1IK*CncPGTFNu7%Yz>`H`GeP-6U058Bb&>upRZv7cTK~qoT2R6%hKx=
z!2-1kdo9wiSi@@?R%%!xepsquS;8U98C~r?E99KgIL{^v59xr;uGclJnv~7qjxdTe
z5X+v)cvHg~4F@zF)UZ~=It?Fa_)x=J8s65hO~ZQ{)-$v;Y?e82`R@qXq+z2>l2dAP
z&Cf!zMZ>%QXR2F;FX-rbU&D3{Lq;c2hh+y7mw21eQbEH<8a~$eSS0M#@ClC_U9I7>
zgq=?%unVsF8Q!}^$gw`>mdWT8(ow@?^nDt>WT<rXe63->^kQrM5y`}_r25z-FONS5
z{YJwf4aYS6s^MD=hc*15;i!i1G<+`>j%Z*<h7ITZeV3%+l7fEJoV&-LG?WB6@n;FJ
zUj&)wnNoh!@ViX1Q1Cdzb!3%4xapH?aLMEkq-Or5;cuod9SwB+qv0g;s*bWcPH8yJ
zWToMXhBF%e)o@P3d9ia=@=5VEKg)mIvSU6HdXlN>0)z0)t``}E*Zh|RNjUSX8m?)$
zqv5WG>(ZSk;wA$l*K<RV=i-)z+tS2PxiryBJ4^yD9i??AnU~VRD$C+)e%=Nr=^!Qx
zGWnO&QC<gh=Ok9pQBg-V9o2PI(ovZ@Vxc6?Q*?0EELC(AAM=sWc*c=FHKZ@Q*A!)5
zl1_}PQcHKTG!<&=sH3B<jt$rR4C#Ay+@s4~dV5bjA)HKonM}zo`u#c@>UdN~TMkEq
zI-2Wfp`)>mCOT4exOKiH6c6fnNXNsvb7?5K1n}IEG?Q@~GyJYOR|k)dG?Ao>CgonK
z&YhH9(vhYf(fQ9HI1|><N=Iu^Xd`%Tcyfl0OdVNLWp~;<B$i7!7nmb`N!sbi)#1~T
zuRBSmy?CRe&TrE>yTDR%SUTy*OGr8kVXE(<qpOY{QthVmg*xc2<MuUwp$`5f&c3H4
zPRLJn^nBVSsi$c6(!nzIVMn2_j($3p>R6_uzm5SqUeNKP4!@2f9fl55$3PvAF>mY8
zbPUq*xQ<~up3sre!82ILoz9-2I)+H~mv9vdyG`<5>g?K;=i<1-MLt5uNF9oBDlpzy
z*pbnwbAvj2Lfq3_Pe4ad2>&=@HLT0uu%ZwZUiG@4$}t_5jxjo()e+ZW>v&SfQ=C<<
zr<iBzv6`cFB)4#Gz54nbJN$IwX&t=7AFabPKPN+k&**rsvon*iI>zaEPRB$Y<8|jx
zLKa3iae`EvT=(-fev*zUGB<Xatm8|5_|U=gJQc1xn#8FbLdR?!FUeROce?J}Db3I^
zQ##JlovV3CVe1@Da;G!B1=2cK$2=kPDevt3p+tOH$16G(ihPOSt2!3x&h?!gSr&`%
zyZOBig{$y$p5;1L==fUadkOKHj+Ht#>Da8}bsej8ye-PB1=s3Wr{fJBZ%Vb+WH0Yv
z*XYit2b?oGjlU&L{JW2QJx?NoCsO4dPS5Ass5`f>RO2T|J+Aw==y+GhCpvcO*s5cj
zj_o>j=;+D60(87j*DZFv8m_{<qw#7hl0VS#p^lGbXDR%M*<(fW6W5)A_>m4J)c=&n
zLB~G2TE}NPcI)_D#}_*G$gDn{->c*U1nTb<37yG}=I0?aLcU+eS0bmR<l`yI59;_v
z$FDkm({V`0w>pmM_)*7U9p8!a4?4aVazv23z))=BOJQFYI_D=HKT8wS{x3R?k$?Zc
zy(qr!=U*07`(4Lz9VeO6b^O7T$S~mHom_)We==NiJ^LnlXJ7Y|{LOF`$+ZriQSw*q
zX&q;DoYQe$!sA~Z|1l3QOy&~KGMmW<Zd@Jza{tWd1j&TOuI1PLmzbt>91P%_0Iuk`
z%G4S__W-WxxXvsTK$`$=FmeuLlnJ1005^5qVxr*T)tyHcmk!{rkWv9m+@JB!fdW?m
zLz-75VJjuXq=2KDEEq_uRW5+?0aOj3TEKanY=r;@_06mtKt-um5~O^~b$?0#2VPIA
z62OTX)%h&h3Xj*U9zcx%9uA;c05t=s6+puP9tZ#dJ^>QXj!my0K%D^U25{!t^m+ll
zB)vwhof+9<)9;biPp<p#Wv`tX)SNvw{k{Mi1n}UFjQa)q`Kujkl{Rc_dfiAeyEh7;
zaR5!k)PsWT)s*9oO{ay2L_)Q@&!(r+V`I}>1n@`z?f^W}lomjG0CPt7@Jf}#@g4Wg
zWgw113oQd^6~NeC-b_)L`JHRxj*Qj;WXKGg^e$wV_s*qm+TqO(ASZyfTuuPLHSy9p
zj|Q9v8nE;`@8wr*a|1Y4!P7N>_5tVnw;cpK3U(5tFi%KlL0<s*Lb@bcf4uJR7H}T8
zN;?Gs{B_+=(j$PL0ldUju)O2y#hnV^@c?=U&?kVt0rU%?D1d<h^ba`C)O}}G(r0IL
z1_a;_V8(OKj}s{@Gu8E20Bj;>>!{}(eC?2DZ~#vPFr3j60INd<hY7NJB~)cZ03!n!
z!;K3-2|x`X96%%hEdV`$uV!Qi1gEY^zB41c%<Sx70HFX#R$lVDYkR2>4Zsi`D}cO$
z3^Rb3ke7OO=lc{=eZ43wcr825U90W21&ako2|g+Kl;G2XqXnM{fW6pdYyjf|cp-on
z0~jB`gaD=l@I1HJ&gbaQ@kGdQlLDAbogNuKzL-t<sU8{Rob!#X&Qxh?Y5>y$m>IyV
z0DhgBJ)PbQIIn)-^h(r-RAXOCX7flEW{}JcU|s+p1)N{B%@1Hf0ILF6&8VxK@p1sK
z^B`2tcqM>^-0R926uv4=B#Q!AoZw3WSeoF=ge(tWMMCnLkd=Z-H~hX=lWN@XzY)Nj
z+|U3v2C#<8@4Ma(V0{3oH~ecEPT%!i$5r3(zZJk!w_1~I;70fLPE^wyew4#s=01MI
z&+4WC-VI=@G;I!GixB&UfBFsQm*(5Jt{eXMMELp*zxR!l_XF4-aDMI1vO~xRf*%Ip
z`ZS5cj|1S-<39;tCrJRi0@%;358$%^b_eh|<5Lv&FoUi0Q*+{u%<pgbpWK(RH-K|D
z{QJ0BJ2FWcKallhz<Its30uEr3JQRv+|B>>B0m(sw*lk^(LRX70er_D58|O9z7OCC
zBQWUvl=6oFjs|c$fI9)c`WZj*j0f;9H!FZ0E4`-zxDM|x0UYCw^H2xy2eTYAaNDeg
zH~qhh&T&C1-|CU_Cy!(RCq?qNs8OC>zZ~`dk!tJu<#HD%QFvM`lO**_;Sgs7I3K`;
z0RH1L1Gw5FrIn}=F9vWafLqK$i<2(Xh>#o9kx{NEM!yySjng2lvHQ)0{jy^JX3gq%
z>ADe_<F8~^c+&3*qEry2gGj&WPYyc2P$o%A5LT;9NG=;hxgg31Q6Y$XgQy=w#ULsL
zQ6q?&K~xSRC5UQ4%(>~GbHMX&r*z*<f0ZDLW~NsSqHE{$&`p2wivHDun0T}6lTCfK
zf<O?pgQyckm(RR!-SpqLDRaWBed`8sPY~`(h4q5if78FNsn0x8@WZQpU+(Dry-HTz
zZ(Z*TqG1pZ1koUf3CBJ62QjX4^{R8b|8dj*@{r6%L7emTXd)IG2ci7XjjwEID#DvL
z{e>TU9u7Lcy7B~(CZw5Qs-QcFx8{0lH1K-qhaj?oXhZqXtmZ+q45C#KErO_b%fF#*
z#v?&In37IXuYY>$ATopC1F<vM+CQCT-Ot&4hJ2e_e*O$IJBUZ=lYCE35Wj8BWVvU4
zQd`cyi-$h~Z5MQY4ypNE9fIf>gdIe25S@a^3!--reS+xBne55Rr;CE{apBc68qdpq
zr(7nl3tfZGC8L*MH^BnI!XUZ}=^;p+o<g>F&y0SS!zxd7U+zl~1B2)nME@WjvC>D^
z%oxC}QPcf`BscSVJ{H8FAV$)SK|CJB;2@p|Vt5ckf_VF@?4d#D;??(--@N5NSiv(a
zh!=19DZlnrHsvFvb@?sldZY%S1rZ7&9E2|NKoBKr>>d<OO-dp`M1!!zK1~@y%piXK
zDw_(F#DbXiLJkQ_Tv{m~6~vQ4%m`v;5Kjg1bP!X5cs_{HLFd=>V;LbqJR_XdF+n^l
zynMZKtg?(}AO-PU(0Ttwzk0rj(mGjilHlv_XHVUcwb7SC<rlcjp!2(!Vb{D<gS^Lf
z$TT6_Z~3PO!79u8q4~4;&)*=n2eBiFmly*<tY(}9F*k^LK`aSkX%IiU)8_~AauBaD
zc&6qq2%<wHFUjr-xxE^vEezt-AbNDqTNFf<jh$b9tuy&zk$k)*YgrJ>gILKB3StGv
zYL@<*V3qo5<SY$arLPL&_7vZLKUOm=U&m(Yvrc*53}Q_Xn}gUA#M&U%1+g)RO^kdx
zGl&gAyu+!!;(haE>iQr)+MIRnO7`Z7zT@fXdw*~DtvB5m+fB{O+g~rO*N_6@M^B`^
z8^pFC-V5T&@U*R*z!^{1YH9BW`HP#h29X-O-sxFwSk{{NvY3TF2;$?QlRrPCPgZ(A
z63!%6lAws62C*xMPeRxk!e>G3X8ecX3t<nf1#u>be}niUh`mAl9K<g{?BkZvhe7<r
zToJ@q%;Z7m{_1PN=107#i`=Xp2;!hf$iFEeg5L@r7W^*AcibmYf#rxueh@q=xTlHt
z+gtvHE8J-xI0la~AbFgF_+47-wQ&{h@4{yTvgyDE_i-MODGvWbT2Bc6DfpM*-$DE%
z<fPy!LF%6l;?gbW*|2AW_>U<fghnA}Ip>&}Lr4nYJV*T8eIba8(&duiO~K28SAw`I
z<eK1h!5bx#*HdVU<rYIiBzFWUxhupaW0eZ=ZOG0uX_KW|N3cu?WkV<@ys97-%7;)P
z!7B=>Bv?6wln|;2zuhrq?%=9aW~mlJbrIGOq@<>hS|RX74kbFZL(UV}$m@#a9>IEv
z)_aB258=Lqq(KPx3vVb`>9*s&#vwEbAuEJ7Av6{FgMzo}b*(YQ{ZI%GhtNzURBj$Z
zYJ$5%@CZ*6^d{u#Ap}?b&wDLGcqAcj8A2=Jtpzg#GZU?iWHQ-OeKdsZ+x{FuK0%S=
zwhf_OLNhmn_QE>|c1*}Sg^(xwn(SSE2wg%L8^X8{x`xn=vkD;;LV@TE5G)L#dk8%e
z7RHRM#j$#Z&`Tt}1^Xmg`wHnN*gy2Y`1kYZHSSsz!a$KfCisNlpb#DxGFXt7hX@%O
z!Z0Bl#Y@8zts{ht3_%g1hM<L@Ct3qSN)Fw;-L6N^RSky_2_YIn>zCYZrn-%U=F>vV
z5Mn|s!FZz87E&xYDugG6bb2l6sSvKr%;F@&@3}{ZKzt^IF+!ddq@>{-_xKPdgs?P(
zWg$E#eU}JM3}I3TlS7yi!eWs;AHoYl=7;d2kXeEpVrmG}5`4Ol8G<tfOSW&e@RtPV
z2+kFpC-~j~*8(B5_Og&yLRgrPyc)tH;Y$*ym^ORg_P<!C>+%p*gs?7zw?cSLbWV2f
zLnACJrTTgZtAwl;r2GvbZwjsnVXctma_Zj}9{e$PgOK%tDOs*}Lf9C>CaJzJxLI(E
zAZ@-YWUJsd!S@8+t5dcM*&+CW;D>_j^^uT|Ll`Zie;UHB5JrZfgz;GjyF+*&j7DMX
z3E^{QzYs2j@I?rFL-<oV?i2j{UH5k(e3`JhU&vP>d@bZaLVhrWZ^%RVRwRc7XVt9E
zX_TDq??rMXgdajUDx6Kfh47>Bp9FtS$bS)XEQDVZl5LW>ewXU;5dIKyLa=1l{tDr5
zss6*cEpz+!I(gt^2&Y6yep<+x5dKX_&W7-x@N*$Bmv(!50M#yra4Ce!VWfm{Sz1en
z|Cc|nNcF1VwGgg{a3h49Qf0@xLT(A(4&jcFh@>f3!a}L=|K!w93L{zMWfHArg_H}U
zypReBdBrd)3BP{LSrki^u=7;sx?xlmd9{RQbs;svsF{$|5`r*l3#pTkf6*t6cJ7gC
zJ;8eg>xXflkOqR(xnD>_!D|=GHV&gn7z4w2Oe9Uicrc;)z$*7cVLTj0voKP_=n_WP
zFx+8y!pIIIN7T~7XeGp(=#?&{xnPSh9!bbshVg=Uk8@}pMux~U1+x-5ZG^1eP=h*;
z3hx+3TOsWPa|PMjUPy;9a^H58J4rP!(b`#vFN}O4Z^(J+CcKYefgn2;3h6G`L$GHU
zy%Mdx!_Gsqsm9V*g#85j3l0dwFQiDY$NsWZ>wK~*KSUZ7#^YhM`@75FFosDhn}&oj
zRCw;XWLBRDBkypR;esOsS$%o4TMa`CV|o}f!qCGAgfT&S1qGiJT)w|cNJu!0jnmwb
zFrwV(3C>gvk(*(}!mz@KOSM>#t#%l_-*fKVMkOSy@^Rl!h4HjVMhiZZXdM&Av%<$F
zB;$mP7Yw$j@mv`D+qfo%@y<T?q=e4oFs2B9Uhsv4{KYV)CipZVy!6ZrV^$c;!dNbn
zj~=KpJB*jYm=nf=gU%}e7K?nY;5@<kY!dRaAaz~|V_|~78pfgo=S|KM;Y$;e$A8XU
z5yop_d>qCnVXS1%{Kflr7$f#M-g`ZaRie3C@Qp;TH^W$y;A_KJm*8&+Syrileb<Mv
zfqvkQi12;EO@f;Rw+Ox~xK(hQAp5>2Wa(}Hb|E_iKM?#-kUAf6+V42g&azX4`&PR@
z4PzJczf`~EUWBnbp}$AS=Yn4d?hRv~5C%4ld=<vmVf-ZgfFOn62{{<XHzkrVz76BB
z@T(V{2xs95{XU_8B#a+~A5BPp3}aj3r2iboFA4cEA-{(4n~)}Qa{mb91ozs+ToZqW
z@mCm^qPQHz-(md20FEFY!O1XAF-=9#G=kG%oCzZ-g5(JP4dZMWH^a`OrTz=!9Q!iK
zhjE?;^F0>@NiOg}$&;Oo_9?7h5&5++u7`0|IG?|?)aSY(oP;|3oMDmAbt{b9%<v+=
zE665(5aEiTRKyvgv>-pDpfamvA}AYiCet8-auJk|pl$^BL{K4uiV;+cz#5lZDS`u{
zoDxB0>CTR4e6A|OtCpA@<fX8B1T`Y48NpBT+$#3vtZGF7kx*D$NFBkOK3Ba6_<*c?
zBd8z2%YAF`8BiqyZC&8HFM=2MX7&8LE$4Q>%&=hu4@CIyDm0GZ{zXZ%WJ(;Aj(RYH
zha%_}K|ur$N6;*SoCqF`AT<Ja1nChpkH91I<e==57J*l)^i0W!Eh2a%g3JiAB4{a1
ztpxx7Gq_qukRcL2af|b$kv3Azj-bx`q&xYZAyzVlTu$2vIz-Shf_9>i8$tUBXoo&u
z;d8Nc5_!I0UId*Z@Ch%O8;$VMUR^{&-c<;_T^K?42>cNgMbIOHo)Pqmpnn9tM1h|>
z^^RbXL<@WMiJ-5@%PmS`wIo7F21KxNo+B9;!DA6T5y5a#8x+A1A&(1EVKA+UuZBjP
zr<`$J!y;HMk2M<+!N>?A5ky5<i69U`Fak9KO(Z29b>UmHorjf`xG@w#ID!(%1u<?!
zV2T<QxcrzniVyz!!RN9gD30LXDC$QsDuO2?*c`!@2%d`I=?E4uU?LbD!7~v|i(q;L
zW7s!>$q^j7?H?P#xCow$IG@1tok8Oxm=JN^F+{%TC*LDoa``$THcb?TNrKbMG`}+4
zJtcxaZ~LE*;01<X1XClRkmch+>8?9|k{OJ^JO0z{z3e_Sf>{yFj^L#T=0&jfuBYYH
zyoZ)`n-jrbr?MOE?lw1qygUBQ4SdIb>p4Gyfxq?K+w;*^7?x`Ck_eVYurLCpw)a&Y
ztA{dJ771C*ahJ7Xb=1+EWf821;I#;rN1V@WpIeYjTp4kmfw?+@HzIgl_$om@^pbLZ
zu=8dFYa+POAdP(f)SR`#SzRaOEy1@1*GI4+(fST!L-?kI<W|MBce!5?d_%8Buq}f3
zBIwkwR_%4k??>?8eD4Pld>Fy@2<!&l9TA*q){<r8j--zw_&9>S5$ucLlL$DC(+$fJ
zcM2!@G=g0T{+W>7f_ozPT*w!RR`(CdUq-M$g0Go{xapmI&;00qU{Ly35v26)O7i#}
z|G@|@_Dt({uJ7nOeoDTL;BW;0FbUIjhdkd!aGcw;&HH@>M<Vzkf}_ko-1G=Gz3<vR
z+5008LN|Bwkmtd8*OjJw{<Z4AL~tyEUnBS}g5M*2O`GSVR5zQl=VnmfH`qPzj$awz
z`6Gf8+`$2!KL!61{9BO1$`#$GnEWHotK~Qi{&SEo_dLT(Km=#$JtpKR+BEZ=i(tek
z&jlvi@t$g9Jm*Qqc-oEgJTuC3k$oe$%phc(kMi6Uyei1*wFs^Yzmbp}tdCp5ZwuZL
zyesI6Iu>TkcFdNJVr)^5B#|UXQ6`GAQIv}UA}Jq5g(#{CuPB%zSV^$5AdR^CxvB`S
znvf)Kb5UMBiW&(?%_wRKUpv_um!-B;>qJpk$UO<odQmK!>L}b7MT00_i(+LI_eaq%
zia}949>oJuG>W1_6dj{zOv&M{=}|O~qDj>Gki4lN$%9cmB>Z8)W(j$!5O)-wgd|Of
zmuuhbd}coDbh{Q&<VG>`Xx1Z9w2Y!v6s@TfMNSkMQDjDu#r=w6?H&K9jakPQbSJJE
zlYQnwANBQu0f)M>`e+nwqi7cetHUN|B;RfO!{$8dle8DhG;TCTrzrBG=oLk8nL}sV
ztmW+)g)cF;d?8(;=qjXJLS7I>q3{ZS_U#@;58?Y~x;THHN*d`CMc*hMqi6X3$0%;_
z2JDXiI&w++b5<hp3l<4dK2S)H4%O%O@pO;%8XU!tDCS48Ac~<;42xpv$<&vkcp{1o
z*WF4KY81nx7!gIk_3n`jq}6V|)n&mPw_Vs(i$afLQWTS;2t*N#;>jqUiXs$s{_kc)
zVMY-a9ubTRT0Nb2@Wq6a*d@X!;{T_$Soo;_BcbNgQhio%wBR#>W1=t)I8Qwt8^yRN
z#*2{E=Y&j%qGUu$CjK8jC5q{y@Vwv)f-eeAjbfS*nk}(BL#i_cX=hdxvl9xej;zpb
zP84&aAek4%4{N<g@A!!?N1aS~t7&F>E%z%?ER5pSD85{jw1iHMVo?-}qqy>LX7_Ui
zEF{aKST6DvjOsq#<JmQdqyK7q=8m5VuSc;eio;QS7scu*-iYGcD3pR)Z$_~uiua;U
z+F2XLx+peAu_=lrxxL<sVm<dUinpVv-ag%R*H3(KP<1xFBMPVUyyRsIlX!Jw*&KB)
zpj)DNR|xsmD7Gbd<5yhoN3lJM9TJE85>fg=6dwxzD2k7Td=ka(MC;BdJ{4c>68uas
z^ED?1_K42sf?o*k74+0`o{;vXaFYE|d?ozrgycXJ2Zetlcqk!1ys+x5dz?ove$RmX
zzRC|#9A$j&sC9(o$Ba*U^!zc3pQ1QNVXEinDE}|-`6G%GQT!6cF{%C<#qlWW-Sz(#
z#qT0%_){U(&Te$D+FIYAQT!FfsVGkK{+}uI-Q0uO>9IdkNdAf9q)1xc^|N{=ihrZn
z^;D1lqBtw^@pt_T@A|vn^{aRNl&6i%fA_Bcyd2&OT;pB;#VGolIlIq!uS9V*iYf-G
z8n{MsDwXA?kn23ZLT<fOK;f+@Zbxw^q2n@eSNIzXvySe}EoGpzfh5DRP}V>>1Ifb6
z7})hi*^09Ze&18D^V#(B1}Yh-Y@mXHiU#ncBV_6QedeEc{ZpRsrO=M6Xk@1M!Np#h
zs%GF>17i(TH&DYsO#`(IbTW{~z6NR=NHzExZqzYQ*T4e?8X369Ks^HuW%PRu)HiUy
zfk$3T`nzsb4s@T$8wlPR=Hn17SDx&(WSQ&CjHJc}nizP<z{3Wb8lb+XSJej%JegOk
zRrxGx?w*nK$FC_Q&BOx9^1(ijfiweI2HJ?w%i#>PG>~o}^kBJ}8Q$h1Zz0&eT)S36
zS{ukPz;S8h?|aG-Ge!Q0UPzuT{80mKh2$7`$?iir_1hWfV4x#sbt5-du)Sc~_1qP&
zIFlUN%DcHtR%Zh~10xKKG>~tgi-Eod`WfhIpqqhSVz$6Qp^%<}-3>mw-dSA_sb2pi
zmz;&(>usP9{p>0#k#Ix%8yH~VaRY-5_ze_Em&XivT}4A?x&|7U*EgTa&s@zNWZ=fK
zoZ7vsmh>HBV5os%qW_BGdqN1ed$^E#*PP|=>Xok;Pz}Tl*akEMx&gz0X&_)AXdrAL
z!kxO2`_VjS$sq%$XC#qus>G<6A}MqgaT8+(-YDm&UAS9l87NriL_)Dd#Zv~J7Ufa&
zA@@rbm|eE}XxW-)42+T1i{kv4tNZu!9XsO;j5pBTL=O`a3_QoPV8CT!qJc>U_89ow
zz+?kc46HJ++Q9P$UNG>ofmaN?Xke;=Sq5esm}X!)J$5;FCOZ!IRligi*idx_TSpYG
zO3tEBhK?-c(Rj(gT>8_%r&n|5aJUUs3+HFeH$a62JPuFzCb^0hx{6+I?LAQ@YoUQx
z4J<XVOcWMz{<m_M2w%+kh*^%vRWO#8b5^arD-EnL@EXr%>q1(fSqh8iWxa0Tg9|wu
zTt#mfc+<cZ1MeDGV_>a;^#(Q=SZClZ`eA)aWVmn6NZ;BF=ghusV1`<F??~S}JV((1
z8x3qS`1Za3owdyjzXzRYr}B3h-mM0<8TiP+#|GXr@IFU0@S%b21|H4u?%?XA<6nb)
zdtF7NGrW8bJo~aVFz^XaDAS99&*&K%$?!H@pF#zajo&&8d}w{jZiae>_eDABUl`bH
z;7<d88Q5pwO9S5-_};*N178_9Xy6;!>#q$Q5aKWE>~*qQc-&P~xH09Bfx|p6*Q!-$
z?furkePyypM$XUr;Ci(q27WN`tAXDP95wJGv!7b{i-DgQv9k+)7Hd@QQKc94N4It&
z{FpS6u>0=@{tz8jj~jTqS}&t))`^liNbddHz&{4g8@OQLq=8cg&KkINtJ-PNIb+~o
zgKt&K>b|}z^HpGd)yHmE>v*hS-%ADm8Mx{yI>(dpNa5L*g%=H6;$bv!)4*i|R}3&K
zUK1mmG72A`U2v80(88HsQmex225y&eJkToBdy5DBm8{!b{!G`<tU_A8!-IJ%ch<tJ
zQYK29@R~?Bkz^v-#Qi23nkZwUtce;XYMLl#qP*!`8d6MDFj3J&rIKo?A_^b6;Ec#p
zS%l6}HBr?>H51iMoFC=ny(XerqFl=aOw=(^*F<d-A=&HlTH&vfIqxy?$lQW^P1F}_
z^*D6q|6=BTt?)h*4LC`?u=K(#;*l%45143V;vo|cn>g0m(QIs@iHTVGtfnR&H2FAR
zCv@A)EMQcVG!wI_Cfw|Gp>R@OEsu#Gt~&9SX5zlYSUIJNnww~0qOFN`oRW!_CbCS&
zjjc?yHnFCaH^X#1{OPc26b>%mosvuw2Qr;e+L*{Tkz?Y>J>?#iUO%-ioI1N;?5%2S
z%{9^9gwI62i4G<@n&@OA&qUz@XTMk&y7tZ7UA20Vca{ko3vzBe?dxKqo5=^}59n%Q
zfU7%o7}(S)VBZpVEzH{0y0E8-UM8M5@q&roCi<9s`3MXXeNFT;F~r1BllKo8U}B(&
z$4vN5zH`=h>z;Bvp}gJ|nP6IGZr6wS2ALRag6HvZ(>c)`>(&V0f$~}Jl+7Au;t3N$
z)49$LH!;G5YC<zH(!|H*vNkJ)%t8t$CMh?NoTXE~AS)pA>{F`9x|Un&R^cb}v#1s_
z5jGLwel7M+z2@x2*U<qcH_^mXCZ1-9F3hq_*d|up$mPDrO?Yls3zaG=HZjV?cM@aV
z-zUZR<WfbWO*~^_JkvXa`F7PYCdQf=XX06I`mNkawR>^nxL-UzJPTzOWIbns$7C|2
zg;xO+7dzCNB&H~=->Q(OCiPgs&0E!2<=kF0F|%Z<CbpmGHO<6y6EjRKlOQh|)r(n|
ze3s~NMYB!3l;H1`Dw=0vK4aKM85;{sylmoq3)?NcVqzf=orQ81UNy0Z4v8Te!(tOl
zOx!ea%fwQS!Wc7g(8O}?nu#4IJ}~i`iIpbaHnHBs>-3U|H%z=~V&0cI@77H^e9^bs
zMCHPaGU=IXO#Z#rZk>tGF8fH<nz%EifaEP6`SeVd*5%u8F!7FwEhgUOww7-noZ#EY
zs56myD7&D1`^_Sx=7Ca0TTN`^{22xle6LQ+eve^Xknv}!BJ$Ac{@b~CeZ9(c-|bRG
zA2O&+>@o2<!@$HRCO$Q>i&-M2fI2&wRrpog&vJV&$vXN%_Gcz`%W#~wezfe09vKTO
zW_)2{uZgcrd@W7;Onk{DFU{htPA|z~$Nf^Bli#<^>}+#QE*G^hspdB(4w?AN#NQ^q
zHF4O)PbPk5%$WF|2j9d|o`q;0mt!r>Izr_h8TXeidZ2#}ZGOEe=|>YJZ2g7l#l-I>
zj+^*ZeDxbWKO%WuK}PxMIi05GRGHxW!^8<Xt!~nv{1?FCl;H<+So$o@;sR;p9}_1{
zTwrvWI7PE2&YJj-4)kVn;b%<zEBx@p>UXDP-}gbvIq@EczW+Jjc@y7E@bL@G+>T2o
zE}OV&;u^Pddh)|BbiYDR7G$t+6pnS>#0}1KYc@SVx3JJlx4F?K8pqHihPx(QF;t16
zY7C`fC>=xD7|O*kw^_NQn1n$L$uY<Hi+i&f54&&r!cBbTW2g{ArI<5T?;bTdP(^m^
zS#x1wMtpB}<rs#ZOG%0G!+Gb6)*UYSs>M(}hI%pF8$*p4YQ|7IhB`5Pe!X3-7!U({
zP4`xPVNEWl&ETvnL*Em_<<>R1>X*I!E}iMceXk$GeKFi0L&F%xZ^&y9L#;z)xioTi
z<W4;h!^Dj0jbhk4ts4D9&vR}~V|XxzM`LIk!$UDV97FRMTEx&ShSV6mT;26{RCC9W
z76XlVV)*@5RZ3>g>D5fWZJsXkxn(-B@kk6UW5|dhGlo_%w2nD}z2t+G%3pTk?r_Ih
zZ8Fi96+@dCvSZ+e{`FZdF^4OyTW;a{{#&HlE{5C~y2j8=jJJ;=FNV%Bbcms&NIJz}
zA5P(jENgpp_r;JOL%U9WyTqI*WneJc4^4GEykdIt+@zWXF+3i_;1~*H=pI9l7~C8B
z_b1l&_7v<T*jtdoJ~8wa-Y+5H<Od|UKZc?h2FCE1NCqY3)mr!FTG*Xsh^$?arlEqv
z1fLKbE;u5FkwVz9L+K(_xF$#ox{yE&K_MZ*aH4fp-6SIhGlth=SQSGo1}2lyF+3B4
z#h8)N?HGz<7$xz*)`_#TpN!!tHi_q1<#uS#RwMHCjfvse7+#8DP7GsX7#G6}j8gU$
zQ_nGYVwezf&ex!%_S5cmW9pa`!;~1F=QP&jPL5&v2Pq`hcwgS$Y$`BX+K%WqH3lZb
znK4YG0`YFQF8LYE9y1sNvmLcrG0c`BYCqsRa`I7b=-e3QiDY>U^J7>L!y=~l7+#Ly
z6&{ve8Lu)PWC+fDq1fcCc=Vp^)qP0}xBo8SSzZ<cv*J=7D+bB&b~Ib$OXqMaxOcwv
z*J4;1!*`PlzMGZZZa~)R7~Y8CqZmGp;msJ<#IQMrEitT(VO<RCWimVnZ%LQ(mwXLh
z%zj%AILQWS<xJiYvN48DLI##DqVU}qw#M*53@6qka}L{L*dD_U`hQ0DdxGzCEd?2z
z7zu^c**H6!3LlDn@=s#eDKY<j49t_C#;}LUfeGqh&aN0Dhq6D5VYd+G|8Kixe8B_G
zZHnPg4EqxD{V{wgJYKqJdg-FCV)#0S156js`Bu)#Zt!9DLE)^bmwlWz4wd~jhQnMh
z59Xn=%s)i>jd&!6A7VHf!;djsh~Z)kKgIBK498>mBZm4JHA~|E7lvi&qGN);3jW5_
zA%yE?6V*;gF!RSFf5z}v41XtL`;3r(VmK+}l;G(^D<l8k1V1a}zZlLXB<Eu|GA*ZM
z4wquM9>Wc$N*>jHHLi%xRl#cs{p~W7n=#yxU1P^v(sWz!<84Wl+>OCyIk}>gh0+#6
zhf~OtM3O96Mvy{giSiaISlDVgpH)`0P|3n@3nMI4wvb{W(?XVoDi*3*xX(fZ3)L)C
zw*U*ZE!431Gyk+UkEGYKu%SX)O{xXD-Q1Pw`Nwx|OI95VSB7TYV}V~b9`$0kx)wfo
zA-7!poO%}Swb1Ztw)v{JzJ=5Eb6BQc%)XyO3(YK~T736M+5;9ETWDgTkyI&pG(Ekk
zg`=CZ9-__G=?`+aEm{7`ImCx8@Eg=Di-)DTEqE-XTWD?}&BDVK)4bA3QmH`>b!NYp
z)xzSJ<k8wfL96tZ7QU*T)=D@DC7gWz6KNSDVRhlO+%^`nE%dg~$3l*UM=f-*(A7d)
z3+*iAS?Fvb*Ft*>9qEeUY4^2AKQ%0^1Jy?7R^OU+x@|WKJ6U+<R1S&H!q<<a=W~He
zvws<$*7}RgG2Zk?R(9^XsB<?9-7WO6@c6H}1r`d0)E!X3YEKKjEWEtA%I&+^@8{*w
z16Aszv3p+&{VWWkrr598D!spj0T%ogiYyGY@R)_yXLOr;qaD9V{%*aTz<oKbhCI6c
znOuIgd$5HkZf959ojJ_H5DTr0o<l9LkWk?XZujm?PA{!q+DHqEh3OV%SWqo!+!PB>
zS<o#67zP$16h5356nx{U+&Ayf30b&vU)sdyeO<P6i&}_Vuq_xCObaoKzi|U6bLea~
z7fwQ)z9p;J!lFK2#?L4r+ghe)G|IX9x9@2Sqb*FfFokQhFvh~}uHBxqz^#1N!dMIA
zgwuiJ>GP@Gb~o});1H|wo|xK=)x6|(+=z+X^zywXan2h$N7K`v7vD~!&6epeSa{LG
zRFR}tN_)eXM~BnxeAgQ_XIhwLVY!7B9L2&*78demp2wkWx2Zcb=UA9)VV;FOmwGO+
zaQ3`sKGozK`#)=GFY`|T22ba_$ikdYhZStDowmrrVupI-GzP;G3rj65voLsfpH`Xa
zd(zVx3A;w;{@KbQuUS}W;cW}+xr6lZ!kjmFPAP2UT_w2Mg7>q`p^efG|KnL>VXcLA
z7QVPIZS23EXIrJeWnn?9^h0N|KWdgvvcbYT7B*YhV&V6unHw!^Vn{blYuz~Q@<Zt)
zqyKC-ewfp@QdZu(77j1!yth^QHpvX{39j3n$zK8N;6dhY#$m_tp@omQWDEcCh*|i=
z!e5s2-=CcpKDF?Tg+ms0S@?`cj4{t$qn9kysp{Tm;d2Z5mE2i%+<S$5!LxHZwL~&w
zUS4vB`%4QQE~oD2@^7bpJj8Rr!kMe76*ArJL+*pj0~u}(RI!o!TTa!&PZoZ*@STP4
z8T{u{kMeZ4Ogkc2`c~=>^t0bnknJY^$iO(C>TB)Zb2jxC3&-dUCb!z|uUojU6}hWE
z=Kj^<^Nu{f@wnA<lN`732M_pI_X!JsQvYJ=)e3G_N#@se|II_HdH%6*(!wcbGkT`0
z`(I9#?md}0qLO>=Sa+M|?zYdmsW!#sK4;-PXB9_A92YEHWIBzbMjV$cT(;nfqf{JM
zEL^p4)50wa*O+JCaNVHs9QXEi?(5>-9i5%E*UnCA_*j+I6RO?jK@)lYA7#sx&bn)%
ze!BA?meO$~#Ze)Sig6^zQ6`RZag>jvY#d)Va4gg*aIfQM5mnsJoJu`hy68j$_ojO8
zd(^7iFQitAqjDU<YpEPGC5|J{IQmuMs7h1(7l2^1Makqf<ERzK!*Mi=198-jqe&c1
z<ERry-8kyUabFyKAKyK3+#AR9HQnU(MB=%b%I<fLR~?q;ZV<<7?cELIxIYe7*VJ$m
zABdw-98X<Joina?V^N?^xiRiF{rSIpJQT+-%RT9ESHE1g@Ji~>hs&nM9iOMg;f=#B
zGt6!5_HY_?9dD%5@}}e#aXb=7^EkM!aRVKfwv3~dD1Q-gx44kXNQhQ<NM;;aaTLWd
zFpf5HWXF*oN0&Hq;&?QUj&XE~qir1R;^3<ZKmDb8gRmzzjt+4QukHA%eH?$CNFizK
zaZ{2P$DI`S@Q!X@9G&B6UCqtm_?>}Y26}F*?yhlki=$T@z2hi|qcD!1ag11%(LIh|
z7kYMHPVFJ&(D~FCtGQ>lc8@%j+GlsSK5_JoqkkL&;&?aYVVw8lTFy8+R}}Y*V6Clp
zQ~mUz<@qY;W-vb%$Dla0IP^Fkk7F>W%2DDN62}++r4EZD_xY-v@KE}vyKC;F?kD2-
zw{#K9p7QPyZ@Wguq0)O{H=V4A$HojT{5P7<;0Z8P;xOZg#Sw}l9ETC-{gvZ~NSqI<
za;IEPEtgajWdtS_{Z`}-uJG(D<!<6}g2AHZKzIF%ss2x^7RNCvjvwMU8po5|`Z(6b
z@m3s9$1ysN8F9>v<C!?dFp%PSA&zI`7#qiPR6CVg^<MY5I3~~`5%+kR9!IbGL;p21
zdLN$eni$8VI3~xjCB+@uo;5`jnkE$;EALbr4XpNJ98=?%MhhL2YLs_RSd=k6j-k7&
zlH4;i^XQq>S#ivcV`&`A;&>^JIdQxk$18Enjbk2X($qaaj*p&kmnp2F52$kSQtARm
zPNw4lrk#axc*?n7jbjnRMsu%t+PzrjyhM<b-&w;siQ{vUmdCLojyK|XlK~&c$~az+
zV^thXfY~+OTN}A+-A!$l=9pz!Evv{G<XIEP+BniLr5Y8h(xvM(&&ivqoyxl3j$=Jz
zBaW?cC~swK;1)M_Z<ayd5!@)aN$}0u?k(J)G47_ibIP{G@m?IC#<44o_jz8J?YY1>
zcEs_49G^BxMVCz9zWl<QrQBcFa?f6p{ZGF8<2V?8pKzIt+&d+KFoz7ik@^|a&h^y2
zaqQ#jZlvyxV^18PGw|Zrxy-}0jQO`F$s$*~FXPxB$6-0kUolg~aVU<1)!he(aeO24
zv1e0zCl!6W#asG9YG1#Ht>20cQyKYpqVqkoRvg7uoN#6NT+910j-TRi*-i%gSzLFC
zhjCuUFT#&8kKIlEHICon_&tu}BD~0r;4i-fPsedW$e)6L3H~ieoqysunc$~{=t)Iq
zg#0UbHje+|I2XrxW`2&lE9s@a&SOh!PtN9xhWUKvZ`L?3Hs$}>FUwl42woMuCU{-&
zh9H-DGmcxrZzm*ogxrneTk!*zQ_9ANRota*BnhGCSuJa$oQ-d79JW#3Mg<##Z49wd
z(MBa3t!%WmQQ1a{jfOTJuu;WERT~X#+;5|rjp{b)+PKGdel@uxvw961HECpIRxKN~
zZA{#h1F2HNm&DZ($>MA;<>#}!^=vFjDynbe*1Y_C1t%pH-6z65&*ZbIUmGu9%J$d4
z8GIF8BO8rvG_#Rvqlt}!<!e4@;~^VOZ4_pE2V6=aK5S!iQqi7l@5<5nB+cjLa}>9Y
zM`U^)8)-JYHqvdhuyH)8s7{u*xs4fzGsyQ#mE@w8LwQRZb6@W@wsOr38<{pb+wj@Q
zveCxo!ydiuZDey@d|RB2@BYmo=@;-mYNM@G>5AM5`R#1v%DAjjr-O}-Hh*95Ev<No
zoowXUAaC9>lbCO#i;c%c($&Vt{dyGG_@a%so6QF!dy})g!?V4GHoDvBVWX#w{x$~K
z7_qf`FB`pW^r5vn-Wy3peWlk4-Ag&U_Y*wyV!q$zlUuw41&ai$B^OchnD9Y@tPUER
z-yNCdt(>7YhS^wX<5e3^*cfhOyp0JQ(Z)y{Q5%LVO|cOaqT0}G=r*?GX0|-u_fi{g
zK=`wlQz!}92-}F*crdvrBe`f=z<d63O1~NTCRb<UDH~7Qux!L_JSo;}8|&L=7TXvl
z<oadjEpk1Ri<(|bIao96_R>POj<)%bTPNzq*%)KvS(^{c&su*aCI3>&`ISkOkF{}r
zTt3}P&Mwa}_H6!-9&>C=vN74lbZ)(kDK?%LJJW2uzy&53u}rn`VuEj1vM9N#WYrpy
zOjCS6-AviX*$jy@{#k-nEN8jqZ0lTx2kj&my=-GXKm4~bu4N`)pUr77k{OL-l8gQ*
zU-K0kUze}>-?G9*HWu61VB;N|4@>thvGJyjH8z&oSjH9ESYcz8%|~r`UlSyG-Nx9>
zIV&mGy{yui#MRRJMnY#pAbqWkbvAz9n6utSr`*hAuejc_aqW0tmbYcS(cH}36Mea&
zjW#yf*luG75BRM7&D=OHQ1~h}Yb)o#P_eN;xoDe>ZOKIpNaFkKG9rtG)epqrr(C<@
zrNIxS`Vqs}#wWs`YEylu5Vi)cr0lZsnT_2x_SpE6mTi1)<L=Y>dqrn+zaC%M&U+iD
zj?Uj_!*e);y-sFVZ(gqbS3LMOzOh06wcr84f%EcrOv%3%@E)>pEV+n<UB0vNJwvM)
zql<CG#t$~!#qbp4sEr@#3LDpL{6rVo_`}8t8^5qG(*n1wO1Tz&yuaG`jk&SiqvTai
zWd2S+yze4k{=SR9vf&3Nf7<xV#(y?y6x90Lc7CCdS(JK;N8?TRKT<u(Bh$|Lq0?!O
zax(Rd;J<>bo)vO6xhQ(H**V6ljSDs|+PGxn3Iiawuv(d-E75-c`ubkx=`P6NCv2%@
zimoyNmMQvqY1R!JH<_Y~QMnkmY~1FBtQcjA!8zRF$&I9!D#q)f+`Beh#kkp}H_L!S
z8KsMnRE)u0t5WUk1_#R)JKq@O7o{o`BLr``Vw5j-o*P4cp;CIqV(g!s-MLH=F{Kz)
zim`iHQqy8oEk<%m(mlnfSBz@K7*eK))#}A~XN$i^vGWjyn#HIkgd9R@7o(1lx(T^4
z&2?`v>KCJ7F&-#(uC24{mAkJP4T|}-`Rpa<GS~mw^L`Fmkp9u?o{fqz^|H4~F*8qk
zT|2!ow^GQGUvuJ@y$=@Sp<+B-4EsCh1FluU<dfY!&5Ds)3=)=F71Gm+;VnkDViXi3
zovY?3#pqCs7R7j^7!?;M{Xd?r14@eGc^@8dq`M>BM-&khgqsbL_Rc%t2uC<_W(Z1D
z0Z|dzo!Ol{yMSa#lCy{)f+$E(f`A|rl%yyi3K&2ENg^uv|EB%j|Gj?ozOJe6uCA)C
znVp^K$rg&ecrLqP*t;9U^KYXtzN;xU4kIK$mY|o4Nn}Qf$xpHWw*xt0<c2YBU4W%Y
z7)=FkR>;W{VBO^GmSMEw9NTBK5i`vXquSb{YT4x0Ve~fJ{9y%uOv%toXSJnw=H<2v
zL%ow#K!;9B;#1!p!{|isgfS|N&S7*3BU&wKco<#7sB$8kUqz?sx`oj_?ESXt5k~(o
z287X*p<dt5S@hx%^cVkh7L-61pfBeuz)Me;C-Z56pB0_3`b-!D1!qtggTojiaJORr
zyV@KY#xTL@|4%UrbKK{`cs`8MhV*h@?@R8yj2RKeNMX{^L-H9OFNX0_7^A~@g-#43
zzd_)9tNh<y%0Cj2?qmo3YXW1!h=h^TAn+>v$Z1ZMW)_pfVT{=+U5ZPaipfeCUlfzC
zeH~K6Amz8DwJ`KBJ`dwi7)BUo81ute5QY_o9mcFMW{2T~;a{5cS{M_<;KS8!81XO?
zVPse9G%kz@VJzJ)MRrKz!#KW6I?~oZ;N3iOCWSGXv3Di&^)RN;CYLjxI+8w>Ug(*8
z=()1f!k8|m@2m^)nv)?h?_gjCb(k&941?PRlxppt6UG~1%nbvxyf+SVH?`hZ*;{Dy
zL_<D*do{23!Y~$vu`Y~vX_oYq#bK-oV{I5qn6)nE@>2y%!&pZ7?g5tNVXP>`D+PEn
zj8%o4w**)%=-Yx`FDCQhd^UWCQ=|U%e4{I+tPf)YS8*8oxmtyHc5=O6&fFNr`(b<#
z#-=c~hw)Juo7u^g%x!dQQ|Uv2w+Omb&?Q5>pNIbECEns7_&AJzYe_r8_~E0##OhLH
zh{WoyFm{Kb=+Y-)><wcdL$r#thXe8FXD#VvzyI)K(oLVAzjvrWqh&s8t?vMp38TrX
zJeGrDtUQ!AVs+l(Fph-rPz1>l9AylIaU+bIVSE|Ju`s^ppkajT2ab!Cbt;S#VVo32
zuhuK^a)4RxE9QYV!LJ1+I8FCe34IgBw*s6I^sJ!dpW`ww#OIk{i_2tQAg6r6k72wu
zH0dJKNNL|CK}R$V4zB2<ZGQ^mXJ(QKzF#;Blgvclm9Y2V{jXu~A%9khe-oUmf?f;b
zx&Y+=E<n41Nw>nd9mYL|kZ{c%f^pJa#>3^zKN!F_iZ?G+-1$53r#PDWLK-dqH|@#Y
z7kL(7D(fD&&!jXZf7{F;>Azuql&1$vQUpaJs8d{SQCw!VXavO~C=)?y1jQp>x-J<(
zsR&X8E)l`0$vONZ^1~T9r3Gisx&rRBv*2KMpW<>_1nCisO-m^k0hwhZs97=aVsY8-
z=nIwdK4)KEG~pI5h@fHwea1l^he{Dtj-a)UHae<AP&I;h42c-3MeuM04;1{Xpn3$4
zM4(4tL{KAwM<eJJL2vdSL9GayN6>;DjtD*$K`??RBX~T5+MJYNk}pN@gurzRIrSpQ
zEW}rxWXkv=@C!~r(21_cWT_uPb_7oeW`hVCM$jmN#)WM|0<ecH0mc=V*(9g%XwwLC
z1#Ti}k3RqFvsnarg)(f|GJ;m3+C|X(2-*qIx=^N#0Br?5vao1@0PO|sASegz7(u5(
z+?kGOlJ%edT?MmS1l<dd_K2XTzzc-7eIk$}-f2A?LEngXs(oJ2euDNFl*|DFJRQL^
z0t_tV4-#N-1VairLn9bgh@TbUxd`UQ+prUs;es<Ff{}$XFGMg(;1>mbsgVD21fvV_
zD*}uW^i{@KA%9bGnVLr;P{b67RRN+A#3J6iQRHZXv$MEtMqouyPeG;vI|3(ypCkAs
z0+%5d!IlWNMv#bLTm<tYSP;SZ2qr`@D}v99%l)6lYY|M0U{VD9mKnclG&zDP5xgMf
z&4^%X1k)mz9>MDoTv(A^tbzAMxh~?fXyH~#{Olk<F2ir@%#3*7W#i{~W=Ak50)DgX
zjR@wk&t^V0naicu!1w8jY)W1#E-$415xf_{#t0Tiuq1+a#n4M5SQf!M96jh;9>IzT
z*gyL$og)87SF-06`OOGc2|)ao0ILOkJAyR=tQC}PDX=c$eSq(__*5llw?2XmqJQ3P
z;3oz7F`f4r$&znV1Rn@M%#T#oNs%`*l2halxz@yIAGbxYoz{-vU<4mU@G<Axz2|;v
z&ado6uq%SyqWMnxtD#R$k<AqOlL+=kurGo=5iC!US@@kJe*TFT{xss9-L|L5qz586
zog%Z<%@q0b2o6PXB7&0<92O@1g1(#9iCP`uSs(&_JdT(jYa{c^2#!T?TnNxU<Zx1_
zBKRtTa}j(O!Po3Lf^Q=@6Y;(+Md9=k@;5@B-+W~Ci4yWzW|$H(+ftMB5quxPr3ilH
zT4?P1fity}FNn4@X5SL>#RwuL<nW4Y7IsLPpBNsZ`Q-?%L{L&eDFweq@LL3TBKRYM
zs}Wp_;8p~;Be>4w8S%cubu)suO2{{eb9_T5cO<4+M&56>w}i~2x5jlLJzGM)8^NCu
zBq=DO;9dlOF=s~bZv=mHA_YN4)cpwl5t!Abi#*O>CFJbJK7K8(!laG_4=G4iJpZOB
zD5{`hNx7JU;tG7?`(>Tl1^eW99&uOXmQXy!__Z~9zqEof3Mwn8q99d48ryacWGF~i
z(5R$bPC<DE-Ac-36}-JH_stVI6-3+5dbJ%@($jzLh;raqV%%|pQ%S*s9N&_Xa#aP@
zgm7&I4>S2IsL5^%g0(Z+KO*>#Dj=>w4YzkC*dm(OQt+69#}zNMPA>}9p3vu;l3u`c
zYZ9uX;ATnr394F3t}A-T4*4WDr*4-se^B685Ku5%!5jra1y3sIuV8?J`U)B-$XC!>
zK|{_<!BYxy6f{;aqERSI!L|y1mXLy5kA(=nmi^fZcGL@{c59!jpoxM!1<e&SRrpt0
zNS@lcnS$5y@>liumkWATN=~cnZ=s;2f>sLHoZU|E+GI@4(BiXQ+9+tNpr?Xf3fd_s
zP|!(1X9evQy!AmghwG?7tM2b0D64fV=Z>75*F`~B1#_if587YBM@4e)KNjq+VC5rz
z;v4(2CX8t_rj*~R6YQ;E=J(}g1$`CtQE;G+|8B$V4V7}&oz7?sZ#w-Hta&P5O7}ml
z;29cLfvRAjf<X#KDR@!AU<E@IJg4A!8t0iNLlq2D@T`Kx@w|(<dHd@JC)EnDusWO;
zQ!tX#JdpKxlRWI<Qq0cw1z%9We~=IE&EkKlFDZCg!B_=h1)~+bqTp2pY(7T8je5cS
zD?WC}ZOw>R-tyV&TeB7aK8|o|w|p$@HmV?|U;>Ryn<&r~xC-J53<V~0z5+*qMfbJJ
z=O6ctdv<uSL6BH&91QHqI-h8>v!*|xV4Q;SLS`@gd}e_E@K#&jx_Kq<AJ2)@N5M1&
z(-llsK>4W(R@Vzo;nHiB&q5h8JLc!}d4ty#%%FvZH8|ER#oLpOeE##!(JA%@-K1cH
zg7*~6Q!rlv?Z1YrK*2%<t7w@KNsHKA!7>HQ6)fS5%4X0nOIe+i)^|Z*f1~Wqxv48?
z0R?Bx@;r3Akrx;}8fCw!pnIj<`kUGh+*<xED#=h+aIQ(9R%1`#BRh4if_D_GQ}C{W
ztd8wzg!Oc*l{`p*uKThGHY#{u!KVuLEBHXcCaT1UQm|PB##V-XS}sTYP{9_ll&=5f
z<AT~oYY)pKh#k!Mn9D)IZUvvvTnctEV1|@GS2~wRy9!Mjw#Z+Zma#{{UIqIY=cmh3
zy_)s>=}BF?J<?`wZs34|&lH?ca8kiR1)nSULP1n&Gqy(Pkb)x$jw(3Ju&EIm+1LLc
zZJgmhQ_HJ<$&l;oKc?U~msrtYYAx^QFlA0D_)0;SQt}xtIt8ai^KTf#rDQJT^qQgP
z`}x_)w+eon*_}O{rRfxWr=Z;8_U9FR&+rfe>}pqkzf;Rk{sjdW6<kvABh8}Vwt}A&
z{H)*_?Ut8crE2ak3N9<S!c<ctx817tzcL+F%~ksNuW}Rxi~4$*gnV*dsGWOV!S7zu
z$hsk#-+Z_IO;IK1soVe?-eI&T_*20j^kc11|N5b8N6X$*z}3o5{$h%l-~Q)*d4DV5
z``Z7|u&dg$+!vtsv;HI%MO2iEqI47wsYq7QM}@4SsET4L9#>IYMR64=DxjjGiV{3@
zB{M_y-X1N<hAK*{D5Ii+ip27cH!`xnX_A|&B27iQiYp)Fl~Xb7QVu~`6-gt4Ynpc0
z^ki0f!R(*YyJzJ*>0UGbP%7FYsgjDyDyp^j{@kgeqN<9=R4*;_K2<f9FDmBNQ1P(p
z-L|SOD8VBF@X(_wY6{%(XpdTjfC8J;q`6wrQ4jg*sOY4kvx+)%f={TZtD>HYOcj!f
zhAJAV@Tu^t-cPprDn_2|98mG3s0P_{^U(MCU28Q9UP$u|FC{k+{Fdpy`$Nh#RuNLs
zT16WbSt_zsv{cbb#Z&BXd8ZcSGz;bkc{a~g(L@D7Q$Y!usmLqD%~d$1WHQ;LQ6=Bp
zQgX5Nxg9oj%ohs0TS}hrNpf2i1?)|9*pB8(^F3L`*FnXGGQN(2&YK(L6j-IsT~u!$
zfNm<ftLQ2$`Ge{EYNGGE-oYL!7M5&t<4#~upI}cFy;KnN7L<SjeO2^Rv0TLp75!BV
zP%&P`1Qk!Kct*t#6+=}l8<KjoTk=58v2*u9Dh8{#Jzko5St2E8n2KjrysBcXisw{3
zui_;YFRS?bqnzO?M$pJA?oaU@vVAX5%<+v<@uTe{AbnBbeNhkdm#^|s&S*BA>U)KA
z40ky8QO+0@q^o1Tu!@KZU4@}~PuueGLPdqjDf4k_6`G2DrR1+S=fza~zBx}{pRZ5P
zA*bDx9JhH#Q-!6%rrA}*8NI|C@?8}?#M^@x+Vx;{oQg{`yKbMH!^fKmIK*ozCaT^`
z<-DzTu9V#PerS@4$ttF(n5tryirFf<ebH{3iq}=lP%&La^mse&g+<C6EHhPnbjaIZ
zkvkNXUX;x@qvxnttYV4k-F|sP#asc1=Ls-h#ezc4LID;DdaIPYRK+!5nW&b#B5gVD
z?e^2Um4Bs*H@Q4%F%_#+yrtqKgSowLHDf@<K^32?SfgUCiVsz6;mT66j)qn79;5N+
zvfFQ_a~q0xxwK2m>s9>Gs|l++uH|i1@xF==*h7~le5&Vpxzi>U2a>yPrgP;^CyRC^
z-FUU@Ru$V+zQ>AvDz<a7Dt4*ZEo44cv6FaM-VRZvJn?@gh)+bfdsO~sm&^XiB<R&F
z|5FwFReZ)2^hNI38)eBKYn4ABs@qC<=Z@Xu${kX1SjABlU#Q+oD5;^q5iY}jJMvwv
zRqN8fWT?<YDr)p>d%R8x1^8NJ-o<7o1cyw%40uY#S1P_%aazR<6*p;+<GycH{Ho$N
z72k^L85L($oD=v56&F-|C-8YeDgV8SyT#iRTrA}LEWjl}e-!j5LF<&3DfWws%c6Qk
zP;wfSmao#Mj8!JOHoeJVhd(v#ab4wuPjdIBJ(m31eQj#{TU=-yOU0im?$D2^-k=Yk
z@)7*OrCM4hpgddMQ&BRlJ*(Z{&;EzTIhd3b#k_l=`}E_ftS_4f9;o=2Hg6s{-7A%}
z2u}e~Z*TwPD2hf=OyIGl<yEuui${?XMTscn<GEI9xsp-*YUi*lDJ}o-WY3AE<uXyE
zMzKDM4N;^;ksgH|g%d^DD9T0AGm2hOl#il96j@PZlggPHQB;niN)!-Paw<kqi49k_
zV`)^ZZPh5MMG=T17{$X;RHqK7+W4Y)B<kIbtW8ceUyUdp71f%8)?(+W$vn#PSQL*7
z=6{?z0zV;WT|p^RFN#cor9w{4`9Z%Jh-1B9T7EL>ofH}i>YW_~Xb?riLQbP77S!*_
zLm|OAu)f0-_@0U)CyLHdbcrH2iY8IyN6|WprcpGDqInc8q8MB?G`4wQz{8=uD6Ulv
z5wwhYw;Vf-Zu?Qy5J4+ZjjZU@CW^LEbc~`?6z!rY;6PDyh@wIDkX*%+j8zXEs1{n;
zHm_Xy<a7BwUnml6ST)4LJ~_v(H2dhX-J|GMILCfBiuVwho8EA*o8D3MiQ=W>xe@v|
zioQ`i8^v=`^oyc@6g*7~iDG~N&j|XopyVGdEe{lUP$6e<6kDGO@X*jg&M*NkmJdE3
z#qcObM!na&_|DykDEOio-`D2-^G0_&z7WNzC>{*WnzB2O<wfcf#eeu^0Y*phiU4B-
zeO1u0f`$d9@Q<ZsB?>i)C_9hBj6&ZZ(nzB)7&c|(g{ONzC@m9Yhucg#-R9}deXJ;M
ze&2^;d7JyVQN*KI8pX0G5>bqcVn!4*qZl9clJns1z8+=d2~oU8OOC=sPUN`sR2i9v
zCPlG$sx(=MO%Zgepws9<0bUoBlA~&8zgR||6~)3R7DX{TiaAld5e1nn^P`x{6-xa@
zb&8<mFAxH(F6N48@8h3hOQJYbBlu2tUwXx4-cVg0#fqr6PsrO*Z{wYnQ7_@I68KF)
z7nhN@l#$;O{MCY<Ii0j7iu+IGu4Q!f%l@K_{7w|>q99;-H;SJGcrS{LQB>t^*cjfA
z;)5vujN)Dto1)kp#hED1M)6@3TcX$*#V*E7G2hlGwny<%6x&)QZ{v)r2BfX2q#p~s
zgM*flAJp+AFC0tS9mOY%=XPDn3=8ZL;EO1}jACygb6*snMzNo(W^M356rT$~{Fwj;
z1!dbq0vs+pdL)XYg_ttz|5y~?3UFLda!v?vGKy0Id?o1Dg-1^d@Qvu?KlMn@F)?1r
z{3VLZQG6H0`6#}R;s;tIRk|eT$3rSyh~i=tt<t68RlR>bc0{Bf#UaZ46vfX1&sq~=
z^$N2nS4Y&lN&cIl1lI((%EY+a&nnCH{|+&hMipiCW})P*C~gaUN6<e6y-Sa9kI+fU
zOs9WE@plxZVkjNMKQw!kf1o2N2L7A;Km=sv&RO&V|99iXd=bH4{9)2VF(k)Ol<vNq
zS&TqDIo7M0RQpb5@fcEK;KNiU1T85jA2cPWObn?pl#ii8%v&tiw)@gz-qm}03}s^|
z7xT38ODUwIkLK*S6JTD-5X?)>gWek%G4EZfih@=Ww6dU81fA70_2C$*$Iv5&o-sTU
zLyZ`GG5BM6G=`cn)QaJ;7{5kZbmw><C(eETIj_fK$c$n9{Xp#)>QIL|Sx>}JSAh3x
z1T*Vo)f1R2g@;I`80HlB7EU0BU<}P-$cy3080yEovsG>k4Ps~*gR#N4Zb%YR<woSk
zkR3zg7(y|S!~ac!sd763o{AxyD(49PK*5=oDz8qJo5XM<E!0%dk5lF5!oux@@ms{u
zGKST2r2`-4leQ9;%ontE3~dCUZQBaKT`mh^Xdgodp&m8tB0$F&I>peLPM?!hV^R_$
zfzK-NXxA9J6-ss&p!%$&UNQ8J;prGZ)rSMsOZ16Bj-fA0N{|CFPWr{X4_bYb;=NJW
zpECEF4WOMXd#{ZQq-$m+4T@oKjM*>1$mCvpLt=O~hUa1!8Uru9hsAI#)w=?}k}5wR
z!>?o8jG@4~5W(=6mjOn^Fj9aQ1RW*li-Nu+=*uyT7T}c_SlEQ6SepE53}c1q!ZAK#
zowwl;DH4McgIXA|2GuLXF#$9|bwO)BnQRJR32F=K2+DwWneIOD9<Cb~^ZuTDNyEz;
z#>X%rhSy@47(;6fZ8S_0N2kUxEr!VgQ+P@YhaYO=A6RaB46n!VOAMD|m=WU_h44uX
zdt#Us!|WK=#ITm}7Q-7ctc>B!80N+>kCu#KNenMHD?dMmg)uCOVL=R2624EuKGIiW
zzB1!{pHxiYKucp-7W1|U+chw0d5p^VR<O@;zA2iIbk_u5r-*M=3~zB6#=z=oAx!y3
zH;Ye-`_hZ0m!IbSDfvze>$uos_#lRNV^~i;!@iATIt%yaZ4ltS!r2X<?ltMwvfL(y
zK@1<qup@>KW7tAGFll=XTM6RcueNP5{!a7}PZB$KeI$CQnkLVf;M*C)sAA~{SNGY)
zh??%ZG2KVHo3W?+%Ef(qW7rqNSB#$+K8<023`b%(O34^L6H_=GL&?{C2V?j=hC@_-
zny*O0*C<Wqpl!v72l{mWE#~_ohA(3{$%Qu4cZ^<Bd?&b^Cwsab7uC9shsil5bi3Un
z>8F{gr(^ggh96?M5W}}IoQdHa1B{u93%NRGT`$fi?{!WkJs-pOlr(*P6J9?&^ve_v
zT#TWf?fWT)pJTW-&UYz>ADL$y-!Hn4RUYDRUY2_M@~&`2Fs*5LM8j_}T#ccahT<Bo
z#c(}_dolbK!|&8ThCgEH*dlO~kuctOn?_JNbD&$Cd(`)g>kWE`5v%zcxW0ycJKv@0
z!oEKRecJT>&Ey|L5e*M%xF5rV7?LzTJl27&{*968qi)9dz-q%cNb_~<p0wpbI=7fh
zrpz<mj%`IX95Q{)bzh2x5*jLK$k0$yLn#eqG^A>%v^e$OrsXMFTEl4mV1K($qe|&%
z8qzhC)zHWGEqSO-In7%~<pr%Nc9~<f&$N7KsHmZ`hAJBJgl);Jq~VFx-lX`ScvTG#
zYy9kB;FRjCrlH}Vft`kr)q=?#YG`;=Ln951HPqBlOM|4rr+FTEOvB?EYHQxJ9C>}q
z*I|bm>WR@)>!r+UU$(Bm9OCU3ftHFdld9Uj&S|n=LqJ0V4x}L{WY}AM(a)2DHq<=D
zD!$yE{ML@IQFCwNAq`nP$|-1wS4zp&@RWue4Gd-)Bv(Td4L4?_zEmlNRnp9vsZBK;
znC5lWT*I#GsSMXv8upCywO}>oYbofZ*L~#Y3#-<d?rW=|oreAz252bI&|aw5RYM02
z9W@Ny*p=q$#D){R2MM}7lhm1xvwdAOFhY1=#i#hXY3Qz@hvqGC27f;dJvH<a)!rIp
z0s08aH9l;Dmvj1xYUzmY`81g^^RyUrl%UUO7^q>8hQS)17h;*ZZwNKfFiZn6^A(fQ
zv(#{+?>R9GMiFs_>Km?MgouqM<9x50zL6SU(D>`Xn=h*`ivGD^sm5pxuV~ny;XTcJ
zbYTp$u7=5)_doTk8pdh}Ylvu2G&mYu4XTD;GXhZ!G0pqicj2~djh!Q4XjqUY>+CsA
zra*<q@=d`Z)6!rIymEe!)wqU)hSx-M_ApL#7%7)MUc*}l^Ct*8dqI$xM<;4X*_F(X
zqfOB;Rl{-(D>O{gFkSPmvM#kseqF;14GY<u=AFD|av(05%=B3rW^0%uCiRAfxf-^m
z$(-Ok4ad^tBY!onaI5>}G<iN3TDts1y4)(=`-408T3|63rs#ZFx@@G&OSuG=H(I74
z>75YEw~KnL)bJ)v)I9KxhE)Qb8C-O=hU9qQEe-xfNd)A)tznIZwS@wwhNf}<$#pcQ
zmGiEk>|s6S<AGgG^EPUDpE0cAriKqRY|?N}!*?1sYxt01rs1%LEgH6J*v&}bTr~ch
z<LR(N!$$&KKbzaPciE2xPOTW?A@;nJ;VOnGVdt#toxMlHUJajW*sr0J*bj5omCpM#
zd}ZZO_<)c+$f)}(@R`7z1^KLgE|_!D<s%x7YB-_cB+Xtn`HRBYakwu9J|^gKhE4qd
znWxyfhSM6pq5jPS)R4@tH5^=)%%1<Neyib(INGFQ=&Tr*hdA_k4c{|wYq-jsqv3*v
zpEdkK@256D@l@!dhD!{{E1@4XjO*Cxz?i(BG}KtsvE09bad$(PHSc=(3X{y>ya`ro
z;$LalnT_yQ;MYc3*Tm7^1--7Jb6WH2Y0Wc+1&6-adYanlmWJCJ9@Fu-jyoFuU=r4m
zrsJ-LKbhe*JYW**?qm3M4D`OI;V)+FSm<v-{}Ghcb?NfIj2Yd#+<myL+-_cO5#4*9
zFj)ujLpmleC`wRNM=>3{)8*p2x0+G}{w7@}E+IH2b=*vsO9@<BM;QS;$+B{~&aFyO
zNk?VfTe;<Q+*pzuDl1?AIH$ah3OWcf1SNm~6$O2*OjZ>N-wD*xy+y=3_EmLM)A6v5
z>N+0L(YdT#Q%4OQYcJ*=s~UJz%z}W0!ldL^e!M+DS65p{9UV{U$kFkHj=DM;>1ZtE
z>*)v*=*(1*bog}mb?-L<4Z`wVS(zoEgLL=sy!txKvT_5_aOLvk+S>~n>iE#;UA9et
z!Xf>C*QMDyvV_c{8A;@Gz4NDfu8tA^N-QmPG!eL|j%GUYbTrp-b$U_@9Rr#r^(f*~
zrYBMCk<asQ{425AN(X7aj*>On6SSpkbbRLEpo0P(?P)_B88$lT=%^!RLNn2c#?djv
zz)%BSbad5mQpYJB-E?%<u~^3v_Nk+%j#qVz)zM2wZym#QJgcLR&I>R+t>YP*=<`5d
zPD)3An&qk#9xn~hab}V9Mp=1J-A;QNWb<LmfjS217|h}5o$sVm?fqxYNcW2Shtf@s
zRQ4aK!#Cc}pKnZ(p40KXju+`o9m8n>9WUtEaHZYGvhwL^()bzDNLpZ?2P$;%kJ2%2
zf8a=2`DGoWb&L_c@$O2GThgVn@+-Rc<m9ZwfmtWgo){;EbwqTyI^sH?A%sdd>9BM}
zX%HRD|I9ELu_pqW4qXRtx&IU_V0HUhsod*Q>_+I~calw&rb~{FH|I+PJGOfNU+iBk
zC8!2hfsQFU#_O1%W0H=AtE4;q3;uqx$!j_$>PX&^JyGud>m^^0y4gIm@S<<3j%hkx
z*D-^EcOoxink4n|PuD@2aUV(xCrdLKYy)!_GR|uh%+fJi0OC0UyrE;R0P_T$FX#e6
z57#W9ScQIl7BNcS@Qt1zE!DA1$45Fo=1g_0(D9y*jXG9xE;`=Pv5r;Xa6#HC9dGGa
zt>bMj86ErrQRz+6_~ISb=qU1*^z>?p#wT-nuD|A9>0KS`=^c*px|DHL8va~C%WD!H
zO8UNz4;c13wg{(eVs&g1%_ZMzw^>I<AZyA-F90&vNLzJmW01d}#D?2xx)ain{Q){|
zhmM^(4ls;$9R5h!rDKndz4VcePjqw{5bXAOfT2}(Th2ZmpXwmquj8Qy()yFqQ+vJ6
z$DD8Heik^W<8vKHbR5-jh*7<+_hByQ$=(Nj9+Z_kzEqU>3msqTIN!v7T*omTn_VgM
zh}Sv6{7<A4!tc!w2Pp8Bj<1<m4Ad}iTE{m!Zt1wK<6FkOjw^JZj<bv(9T%yRj_-tV
z&g=MI0NRbV`a#D9X3IBos+N;UvubB&z9;=C4E2l77ip7z((yBOUgyn%^mu~~trtj_
z#T>8Sm40I?VA9j^*d%G#G3gqeuH$#E&12q!&F}1!j0^3!lp2+jZ!*X34~$qWB~O&@
z==eiNDTB{c<F1ZBbtD-mV&EQ^iH?7C+-Gu_E&WXkx9*sGIzXD#)X&dDJkaqkS7kZ5
z#ZOZAa`KdU679fM|B!*A28tO-Ht_r|sn)<Cy+$V%H&DXxLV`HO@D}*G^U`P6LnRF_
zEfAD3kZPc!fl3C_45S+<Z=iyKiRI+7Y-phWFM%&_1eg#wec~CjvcH=lWf<PVXMurr
zhXVwg>Sk9qP{lx10}Q$8*V|Py@GwU-Fl3E1W3N<yrAJQ<FJP4xc+@~m1Fa0?8>nUA
zF#{n3Sq2_AP}|^TAA$zz7<j^fWWZ<OgPWnc20r~j$}~{V@XX7yW@rJY$*A)i{K!;6
z|2L$p1A*7hNndCCnJb<&(9l351LJ2%^$nzS?%qI9>cEKNj2avGq-TM?NLpG>&NlFr
zfffc9S5M0^P_R;JW+2Z%uED*L`!q4o)BwHt>9N3o*F3kj3U+F4VAtOgC2uW~Uf3(O
zG{AiF`C*AFwKmYkKu-g`474@Sj#=G6SK9NQRA8WkfsVo#?G3D5>ba(D!povGOD6-J
zg~F_Ih;9bl)9n~G-3{z4C!Z-=(CGJ24^Ha$P`h#ky$$rCgXjyx%dRqwHd*RtAl%E}
z*8mMpP&p@whn}Vxi~FB3FwnrSlcm2}7BG_xVyou<!3M0;5&;Y6HO#=X2L5Cya^j37
zgQrVuF)-Y~2m`M%Fbs?|@PYx=K-9n}11}mFW8hT-FBy25jxfM4?(G~eb?X-#%@KD<
z7t6_93%NI?VUwh>RFB4)BSj4KyBOfq=5Cg_<@@B1CB?ws8@<dEGoW$e2I9g>IyE%B
z56tn9AvmU>hjR;T5!(!JM*xQCPiLhB4M@vqokuP$7)NcF7F4;>Zi3*DNlhjhm~3E`
zfwv4yF)-D@ECaI*OfxXuz)S<9PfD*Fs5VEM!LEvT$lfIp6VQ@8#Np-`c*DR711k;8
zH84-uf4QK(4*o9>2Id=BV1Qtupo;`uEa(zJmkPQ}P@Zlm$<CQ5!f~nVkAXKCEk6df
z@AU9$18*C6&%j0l4D~gPLoPbQ%du-2&%q|yE&cCOpPABn10~DL3~%p@KU3Pk=soSl
z`TIh#O$Ig_cyLJifX*%MC&;?woltr`R?zBtv#kcU88~I&D+AjNd}Lt1fdd9UHn4-s
z#K0c0u6s<Eb~5Y@{4h0}?%2(6Iv-#mX0~5?LE39z9~&O>PEVh5MO<vh^4jP=pBXr4
z;IM%s20k}nZ<7u&gziWLZ2RcRz!T-=qXxb(aKgYzMtC{-O9S6;N;+=fn1S0zy~IVz
zfO+f7c5LE&Bkexowf&mO-@wlXelhTkfo~05FmRFi&A?d$=h=yYa}1aho`&BEzz@t3
z^Q%&y=lFl1ai)8x7-D+1_a)yY1FV+%PU44nel+ltfj4JKEU~|&%Lc9(_}#z_#`(_V
zUkzL}yca`;t(1NfMy^-4O{>?XYXV>As&A0hvb_9UDCwqwTbzY~r_0OC5_jnLpQJww
z@8nA$pUdMJ?Jk)kv&s333xNs8L^Bir7`V@*YNDEn2L}G-DZ@k=6G<kDm?*tlDq-Rw
z6UiounJ8{z>vpNAiJZk=l(H~UaIK}7xc9d7*>Z_z;h~wGN}4ETV$fyjmz7e|5AAB7
zlu}KknShCkCORY+q?;&j^26)6xj#_WL^%^p2L@Sq#$;Za|8xOqhUsOSt81i6CMug=
z{;6Vm>zV;cOi30d;fGCBHxZz)iAPM-F!8vF+9n<~QPafySCbxNb62WmdS{I@AwM0;
zDlhpM-gQhoVZvv^Z=$Y=dL}YC<xNuEi=F@h2a*J*%^~S-_1<$X1@xKOyg+4FPnxK2
zB4i?q3OG^&6OBwX7Pz4aUJcUe+h<8{75F(2Cz5UADHBah%swyWn8-CT@??OEovCtU
zGk?|kod_c3<)wGq<(X)1;%O7lm}o(@O>{BQ)kG^3`6k+#C@{H;2-=9TN{&fllrqR^
zw6>;q&LwD1P0mQ2OuSoO?qH&$$=6ThRf{E>i($q~#Lgy2H^~LvOmsKV$AoO6hl!pv
zLftmKO?*~f-ub&H+{^SXk9&^uE`2$X|CYx4mwbIq^fS?)1AQK#BL)!6ka``ENC(pO
zCSEl$*2G{FLpW0tFPIo=V&8dbxamdvFcZ)6he`2*=S)0LYn%==Su3&n$!*W(BTVm<
z$|~36C=)N5c*(@erk9Z(njtaZ$Ig>Ri;#G3rZmRHE1bd|??bCcu6tJzbVt}kMA#>4
z;;Z^ud>u?NvFNjaDq4Md(DMjS;xw0T!k{rNw6$QGuuMKDiE}1w6OM@uCf+mQnuxQx
ziNz)oCdQeVML$wW(c5b#CYqRF;^R);S$M57$;4z6(`a@Pbzk2MO<_#Vlcowvz$v_L
zdTVor>E+ce=cG>SdQU!+H<RnAxSwDS`6d>aSZHFdiFsn6#_Of|4CXp%ydoO>ru6f1
zsmf&U#KCyxFRU%=q$MVnnt0p98WYP*EI09%iPa`nFgSk?t)%7I?IiCqiEp8<qL*h#
zzZMjb@{)tsSNTcBFK_W|xYoow3?44nY(K5KjtgXfcOk@!5YqMJ_wqB3g(gZHO}ua7
z0J}2rfr(8fcA401VzY@4X%G`TOl)D&Fu~Z{X5wObncjIYHfh+Az~ANN?SlW2pfze_
z@1&_e3oxR}SCH#Toi-elJ~8p#`_f)Uj)^@YDjGHM(|4tg1QPjeJ~gqQWs;XUS!mCL
zCO$WD(!?o~cc*dK#1|&M<izKDC#)kTj%9cgIV$WaRgjOFIBw$G!+{g@@BRR<JbA6f
z%OrAWWUdQ#`<02Wso`4bG{bC)^sR|+gu?8Hm(XWS@23RIfPK<;#7t`zGAw*=@`f}1
zGV!;G3!J!#YbLHUhE4ov;ujN_P5flyXXczE0iGXuoyPFys%%|Bz9ORHH#XVr4e=|N
z@N7@3t3qvha8HA*-%Z>Q5q`%+w@cDZPV->kwuxKj|E`?*S=%p~`iE4I|1fcvj+iU`
z$!IJu-xHlP-o_U97wk;_$HaZwaGX@i!UGfkGSyosY9Yz;l5G*o%ZI!GAbm(+f}3>;
zx@7r_SxB)^!U6-PxS+G2EhuS$7f3wU@FJNPd(0uFEtIj4Y9Y-+Sql@6dm*%At2fzn
z%Zo;DQM*z(3*{{k@GMLU3l%Liw9v>xB@2};)Uoh{g(?=RTHLs}PfZJhmr2zuRJZU5
z727F2Ogf@~fQG6;K2Q1<emK&O=UHOCf?UhOV-_B_yxR!1IrL14pkwI*E(c!K*R@d3
z!jl&2TgbE^SqNANTJTxW=144l3m<Rv01Jbe#_71oyRIf}U}0tj`RZ%l1w-tjkGQdg
zkcFle|7h?u$+Ga2g&fPf)X%oi;81{$$hFYK^40|n@?iz}iwZI+^IjfDEM9P7U~Wqb
z%>}OeqpyVpQpRU13;C9JUCrOrvu_1jTOdt25NKziz`_a(D=oCQ(80oJ3$Iw{XrYsZ
zK{S_z&K9~@=xw2og{~I5S?FP*r-k7If>XcoF0r}`ZFx3f*mF24(~DuSPP)3yyT+C+
z^s~_4LSJFMWz7p{L!RaaSQz<ZV4#Jk+2J1P8Ou9mu<(K>{|#y0;NTDoLph3t5f+At
zw)_grbF}j{=~+Q}K7F1FPw;LgPz??}(!vWCpEl=yH9=nfy~r4FrI$GIxO5@mWjtO*
zyezaO7-Qj8Mumlm7RFi#Td*wH7H?TYp#d%E7E}wXPX}Tact(y2%)lduG4R5AY0g`c
z!Te8mpDcLvcd7P$iQsw#*|FeSNHAvT(23F$x4qi}aSO-43=9uskGH(FKf&_OUj#g_
z?F{*ug(g{;Y+<g2c^0Nvm}+4LBZQ8dCiS|OG0nns@;6GaTcAVFFY$h9vdX(mM;=a_
zMTc6LV|gb#%D*96ja}|xo*L#`;9aJr7M599U}2$!MS`<fP#&V$NtcM~#CJSna=y%{
z%PsFr&9n2H7FKaxShzq_&<+;%SlDafZ3}BGY_+h>!deUOSlD3UJqzoE%}Zy<41jmJ
zf@%lW3(DJ8o2N?~Exd2xL*diMGvp71+M6uzqMiD)Y__~J8UZ<51fSV^yM>P|?4)xo
z{Jcu~*n%@CZwJki>rYISn9V4^+d{8l8Pxw14mU~S>0rV603UwXXW>%|Ut2hBVZVg~
z7CyIdi0dmu{>;Kbp>2s9%|3fwT2{J%w{#A3tYDKP48L>U^(teG7c)mKe8I>cCw(a>
z!7%}j3wlD(lNL@1@Rgvv&qlFtEPN}{)c2Nm)8mYVvy65I*dj^06=0HKe11pg?vTz4
zO2Fxp*=v2$MH<J#KNjv=_>p<i!YvE8X#oqrSh!~4Is<;KbeUGN@SBAz!k9G0AJ;?t
zse6?RwqKB^A=0^hgM6U+cZ<7};3jkRI*FHLMeb#g$<lX*bjQLUT<J@tzb)LQXMdLN
z(J~hPWD-tz_f<%F-eEE)<xNO7=lSk|g?}xSvQgSbl8quZl5G^Vv9>{Z-W__#_HsMR
z6KAEpv!!A-Qf!p4QQQWvEvdt$ZvzA+ZSNA7VEFnZwkl(L2{7IERxUxRjWip)om+2@
z_iMDQjdC{1+g^~cP%%>eNQdqH5AukO8a65lTuIQ%f>sf<Ds@|uSIx%59Ky!BUqi1<
zYjkBu_Vn2uOBV_9pM^(l{?UoUHfq|aW#cg$kK0Jt7-yrljXE}Z+x#0EPuQqyqrQy>
zHvgapH?Q;C++Z`4Ak&6q<AXsGvCl@a^`ZECftdq425bavyxdSKu_E-O0DC?RG_=vk
zMk^cnHX7Rq*=TB`nT;$P**0=*G_mm%tG6;^O{F%~r4}DI$gx5CaE_E2_HhTQ+>TPw
zvQnOn<~H6eBek^guU~3mBit{2c`ff@DygA#y-zB|TH9!2<C9*#E;icQXve$#HaglE
zR#|HGONHKV`U+^AE1B&D?e?V9$;RSJQr%Cz_wIXzeVuK*-9@@OOzLW*n+<Nu*4;)=
z8@+6A3$-3LhR+Z6mwn{#DJ5~svP)4(w$azdi#A@e(a%PIj%DLn8v|@?-4PgMW3Y{<
zZS1WgJ!9iq7m3V)LLY)5w)e~!CrGOj3>EWwuebD^;E$k#vZUu}^Cy$8DbjEbRNqf9
z(#8wIT%#Cis>CfExeXc(^0Ljx3831D+IYpr7#k5Wg;#BKx|O-Bo)i|X#tO<N<ZxUX
zR<ZHnJl`L`Wxkpv#cWtMYz``v)NL3xM)i{p`I1Z<tv7~Pxcws=I>K~u8?KG3k4jY+
zhv-2%;=!At@ir!K3XBjNui2PrV-baIOtLZA#!MTtL?BHO`cJnpmFuOVG`F-gjlL7$
zbsIBm#7FtqAxqzYG~31;8&q<>jW=vut}eaYs=_=Qb8T<uxAFgayDaX^l}0>hw!jAI
zLMm2NVxg)_Y%JwMu<@>qWj2;GinulzkOdO=eyrCkd4-LY)HWxX8yGSY-m<aU#u_eg
z5hric@}0a#6X~hjF|WgS1fM!wE-Q7(kk{K-awL5t#R5{-2hBDxq?=0b*<d`c(j`(h
z*<@q0jh!}j(b_h)*myEu+9B+))y8(=DN1f*lBw$Lllktm(nmHv<`VublZA7nJp0*A
z6H(a40ULW5SHiiU+Sn)DN*7%7Cvmq%f~RMPs0L$|K|=bOje|CBoz0-HKexT@JqeE3
zILh_tpqYa&Y<y`W-9cFg$7~$8@w<&1Hcr?$NqHOJ+Bjw7D;r<iI86)umB~Hm*blde
zB)wV9qx+tf&M*tv_}RuUHqP1j&c+WmE>OO#bl%4IObe|l{5{0?wJr_6mif;!(naPL
zn=iBAC%UGVw0oeB8|zVc>P;`4sN@Mb^|FmCTs}57BsKe0i2WukM*lYbF#RecYK+8E
z;$qY5VxXg?y|B5-`7&KQc*w!11-{!h{;_f2#vKNdjk`AfWcuauoE^HygvPPDOAG*}
zAYwBAwn2{*+!~Th%d<S-3gs!l@tl%8Fe_!5kHX0giaIFaprnIh4vITSaXdZGW(V01
zTP>_Aafj8m1H4RC%0XJPl;)tcgE9`Lp2=X=qH|LnFO1n6^BeaeEa#xSgSrmtIjG<u
z!$D04wH&}fMUL*^5eJnVRCZ9!!NU&NNfifG9ULtxm8#_FPf+G1iD57^OIjiOnB{6X
zppU2w)qd3RW}PIb{`6PoV~&^TdQM8J<9JE<aR-scQf&t_e#;E_lAaJu@^_VKp6Nhx
z(AYtU+B)z%2sj8ja7IcsYf4P}?3455SWh~r@8Fe8e*-pYC^ZxsHmoc)VylfI+L_bL
za**wy39ZL3zc?V1C0EGjIG_>OkevJH(nF_;Q-M4O&1o?Q(;T#L(9*&44u(5u<sjcd
ze+L5`w06+OK~D$09JF=N&OtW^-TD8ogZ2(OIp|EhI;n$$j$+(j)0;EfGmTRRD%M3z
zwyV(G)9_a2<_ew%doYA<X3l=rbI?n{WS&iWJLuy;cDyqS_3Z25&wn!+W32Wov{<XH
zxlcQI#=#H=Lmlr#LlX@Y6J(P?4h9Q+VX?Q#Dp%7m2hRy#JS+H@wg>*}oJJVo@LM6!
z9Ow>SU@+514ipD3I(W&!7{`nMmmQ22`n)3O#{*JXc*^LrKmGl_sjoU1>wvMr-olK}
z_j)taQVq^db-YtH<0R@JCOpLm`8(<b5_dr~99Rx)2PVyaCzC#<p&SRUgYga~2*)*6
zrMQEH<LwMQjuE1Y2&^wvUl4lD!M7EqNe(7Em?-8oPWzu{-+#sfQ^bhG(;d9-V2y*d
zj6DZ4g@fMY)ErD2Ce3%Sz`<+>a~!-OtWBNgavh0{bLVjZt_ZOVx}CYu!6FAs9V~Oe
zEjJfCVCPF5@chEd6&5ZQmgNpsklES849k@c=m^?`bd_+HcOr1GTBz|hg=HVh6CVb+
z^XEGbHnLj>>qswWzUyGU02>@kDJQ+>fUAt#5wCnai5C07!6pa09em<oGtK2-n}hAt
zysEUt!Bz*{UzcmY-15*HrP3K-A92t}rJW**2tIbOLvV<v-OgMdkajsBy&jVGIM~a8
zaj@^ccm1%>!Q)?~eoAH5g;-tNLmIn3{eU=H`kHq}_}sxE`Z|u$aU6DVgvlz7lsJwu
z`E$v*=<VW5CVvO%F3P$%?%;%jOAdZ?aMHmk2WK6ebMO^CwI%S4pkF(<R@8sJQsA`b
znxX_e^sR$4j`vvmpzf*U@Kvd9O#|OKIPc(l2R}Ht=y-2Y9j{(tPu;);2k%TxFV&_~
z$|6s4c!vCwgP$Gz?cg5=zc{$;;Fg2i4z4)()xqyfI2rP94z4o(D}}B(;1Em1Kz}@z
za$PW6evrjOH<<ApG%XgQ!2iqKaqx$OyQ0+>qZ%&GkpFaW&%s~xMTShVeS)422Hq;0
zeBZ$X2gxpqy7-sbW=HNrt~Xqgiz2S~te4q6c}ZFC*{7i^lgZ~(`o&z7ba697F7D#n
z3^_&65`r#E3y@RFMQIoJ`v=OnC=WT+#n^+ntfsmAx>*iOmlIve@sNuw7uhZ<xX5r(
z+eIB0a8c34qb_Q?sO0juKdQNSSg6$hO;3R;E~<*^#JnJ@G)r|CkGPmIJdIV#)NsLh
z@!|6og9Gy_1^kfxOUu=A@tBLpU9^H{f#vIqhSwK;!bM#dk_(@Udamd3tR1=BVJwq@
z!ENPI%Tcm>j|{(yCtcKc`8jRRGC@Jve<Gz#0~ZZlG<Fek(Ma$qKttU*?!B|@HGedN
zlpm0N%JqJ%v2=Hl<098Z6BkWgw06<PMKc$9F7jRP>)y>>v~baqs=64!4={e2Gw_Q}
z)29cP%?<E@=<we?W<dV4iuWu!dv5EZpmngFi+IHlO+j4XqCI;q(w?}3INDLrPJ(t8
zw2Po!U33$Gl64<+=;5NLi^HLux=V9@d!zy{RQkA(U2Ju+%|%}q{alQ9F~LQDD&}I0
zi&tGd?eb|-Jnv$-i-9f%xfsS-xESnWh>M{v=8X$%)k5>KbNMXg8py9tPv*mxWNH(V
zpL4w@Gg&qqNE+c{q>E85UZhE91YU6Q9b`UKng38|59F6zyzF8$mC-_L1@kWC+&{8j
z5uC5)2gx7nBJ4tUVYrC6P-xGGLYfQJMbyQIuLoi-*dc|xAyBrW*PKsjQifI2h2_F_
z;ke+lYW|9{x;&%QzJN=^x=6SfC)&2DD3eL`*pO;)P_})|#Y7ixyIA95l8ebMW>MJ1
z6c<w&RE$g)(_C=+(TehniZc73?s`wF4y-6sD=NT4GwBO>hMMEz4Hv5z!!G91dM*~Y
zSSaM@yV!S>+r|dj_RDiQi$s(Ern6XJ_OQgoQh}Eha+V9Qf(jIJ-lVn_WeU^s?G^-A
zGaCQM;?UG&t&4YDY;^Iyi*+vEb+KN!gASrFt;gqPH@J9DXp(*}i~1a>D1YE$6D{mw
z?ZP0--Wh?-F4!|We0D)_i;MFWWiokayNi!peC6V67azOW;o^vkqb_#3*yZA&i_cx`
zcD<)__qq7g#V0QIxY#Sae7B-}p<bJsGy4$icai#VV3vrb1MF~qko?aClYoZ~F_O6?
zZ>CcR_V)bOX*BW|O#UuTx_D(^>M=124;>d`1S}^6lP*3bWd7^ww2N=Jv|aqp6zAfM
zi=SQmBH|>ia)q-l&M{U+fbE<g{E?FthrSmk`aw93{<`4eVj;dHMj?}d^ph~Jq4&P*
z;tH38i{C`B-SKD8bc_nhTy=5HMP?;Ay^>5D5-|2|Fax{z%f;Wq?6+Lpc5#O(u2%+S
z{@?;!Ui6+=0-VlW7k@IvmFmDkJ5WzL?jNRT7Z1hx7%(0%`3r@M#E}%o3OBH8c~M%m
z!}i>kmE>#w49XXcBm0eH#!0a_*H?fs!{|*tmQx~*l5BF^H!_Y=ag>guQ5=oqC=*9&
z9Dz7GRSl%YksilmaXcPJ**G7AN0m6L#!)_w3UO45W7yw;j5t7Lwk2_^I#w$RX897q
z?rXDIWvLto5B1!X?EDj`7RMuT)F9`dz{7D=7sCB3$)4mtfk)%0B{(%j6Ee@G1W8Ma
z&TGd}H;#JZP#r;^DC{9qRDE&W5hF^XlO+QC<4`NfuWw4`bb?}1PsZ_jCAoea4Mdgv
zhH<Q}BrhLbG!#cx9PQ)iK%>R+R2(hiXcb3J9Jz5ciKA&88Qp@ndImq}<omK)R<)kK
zW^wPy+infgd;b;6i(_9Uxp^G#Z40!BV^HrP1@hy#UJz;*$ICr?w-&ff96wZ&$!r_P
zUjh`w(e-Q_a;jC9J5sAS`o}RKj?Qs(iKBNMeJH?59m(n*M~^tV#j$Bl@_(f#T~;%@
zm!OR*%VfSbCz%{saESZG(YH{ZJuIl1y}ozw={TN=<4T|4g39th0fw@F>Kw;lQLS_+
ziARUf6qV)Mi@Oe~EI%8^@WMmS#SyJ6KOe`5K0$&J0#K6G7er7ou0{#)VjM3Oa`@i*
zD{+j8<DCT7CGct-W8=tApmhRa24@^L{V0T$IJ7u)`i=t$PE61u!;{$a?yae$hTxdA
zM$^EAt*Mr%lFw1xIO43vu`-TC9OL4c8uzXZn$-`CXWUi{OcHcL9IwSOF^&UMlgRv!
z5=@SRl2Zhq%xQ5<XUxPgBhJSx`|w@JnQ_dDV@@1z@EY~)%#D@h*>QenHXy$eI6t8E
z+&JdNVLexnvr3vDN3q$`@;IKKp1nX|Ru{&xs1Pp}V2Pkh1zjd+-5&yc81KC`(wlLt
zisO$s?#A&J1C=or$ER_;9mkqD-jCyhIM&jnjJmk@i?!p+J=f7wRi$_1{G4>pBW=Cc
zSJ%g}K`@E=!-`@Xh49^tMbEq>ZHi+@96RIKESNm{VH{iH*ea^q;`peLznu#qs~iPb
zK8}MgnG)<0M|oktH;&zflAj2$N6>qNyxW+ED$Dz6(m2k<ahCQko&H%I$ArMaI6fEP
zkf2BTD?orFg8nxOd-y_BzZ7))?_QtB1wIkSNdd??CBRp4d@aCfLBA<H`fVK3+IzpL
z&&Baw91TB7zA6r#7xc$Cz8Bz!Liq~<T#WP2o&UW*`$J{<r$YR59KRIe%Ul|T_}4go
zE5sE>re7<>*W>tI;2VXUn*!Vt^tPaP1pR77@}F_sW5!FMUV^vcz0s2sD9XZJKt=VR
zIPMGZKv44k<yjzsB0?s&cFIEnke}TuR4jqw2|S!Yb-_$YpmYLd1TK+4NdZa~%D3oH
zKD7{M2#_XddV+sOcnXvgw7j4d1SRw9mx`hgS4^N%A+DT26@jZ3a;haTN_--OtsW7~
z#{{jBz@vpSH3g_8=zjt5cmlOWwN9bT69WA9RB~nlQUbXNG)aK>i+l+*D3tLF5D+w&
zz>|gi`T}eplipB(MuIjLG$bf>%Mu_vfu{t>DdaPX=4N_dmT8(mv;UYCQdrGPpn0K8
z3jtaR+KP&8@b2HXNuX^4u>`aP+9gnsz>oxnCcvLO?GxyefSf>wgtsR~#{{^gL#G5f
zC(yOLuS){HioPO?+H@61DbOu}?gIA^w5OoG1nn&-WlC+X&^Lj82|S&^GYQ;&D=?s4
z9%=vou%P$Klp9D;KQ|ui%_f5q7%cc#E6c^J$Tb?~4ol$K1jZ)3cffBw?|&|VkqNwz
z!1D<VPk@{e2~>P4uj%B#=4$@5QvOj1ytOHNbONs=@L~cliK-`7!~b#ur0-VuH_FK$
zL(^69FL}(b?#X^Nft%N|p4pQfP9TzilE8pR{n@pHx3o5D0#Px_<V9(97X*SOo9hV}
z2`o%tQ37THRsz!#cs&7|rd}Oji6`JB;EHO^DzcmI@e`stPSEj!P7subUQ1wNA)X|_
z<OE;T^;%68bef=f4|O1iWkv$C6PT00Ou?TeDEXtF%YQ@Qd4eWa49unPekx8dUvL%(
z+OUdD;l&9oNnm*b*AW=fCz+IGsi-b1WUioLM+8?U@MZ$5XvPFq(+h(6++W3ch+EpS
z?Ha)uBsy6uFq!Wru%4-493C2n4GFx*kVxQQ0vi)}KY`r|+;5ijK?0i+*um<OpzP1!
z#tt`H_1>JohY4&+;9{TbtqFW2z&1g*3rc>e<;folOu*{Sgts*W%PvNB6`9OW64;aQ
z-iX<oz^BYSNj@vdw~x+B@{Oz_v$|g}4+z?zM*GjXA|k%O81o4nO5kt;M-n)i!1)Be
zPv8rxG}U)1fv*zyGJ#_W@72iT37lZ!dd<i8H~GdZ-%viu)uj5C&hUMm!080eByctX
zz6N`8GI#m&eM2uRzHbHPn~5jy2F`H`e9cz#eaDDu5%6A~Z4vk(feQ)zM&)@l@qbKx
z2b2`W^Z((Y2*?pX<eb^Ly(8`(x4?ni9<Y1Iky&!iIR{A!6LxoY(t?sff`SSLvH=4q
zDu@CmL=Xi85d_H+|DSDs{NMMzdG)HRtE;Q4tEy*rX1Z~95iTskUyE>#{yZb`@$8?B
z@j0pa*S-8Q_dGL0gVe)w5;{1^#V^ur_;L5N)W7M#PU`myQ~wdI`0@3>oKt~Q$W?YX
zE0xH#Md<T%>+53d9R7_(xGC^kPbjy^(8zmd5&nBZN$Qq#pBC7h_DDb?4+QdX5xTE?
zip3;3QOm3KwqnUL3d*=}szDPOPs?~lMgtix8HHp#E2EN($}$SeC?cbjjM6fS%BWL5
zxtNR;8C6TAKPTgl91nLHDlR9!;VLPJq?eE}ze0#e(QbK!Wn_SRKFgTgsSKG(VXLyD
zEnAhBQ9(3ZT_HqzML{P|6%u8*+j(lqs3xPjz_(Wjy|TtjVhzDoQ%-C_!;5>-)Ryre
z$J76%v^p~C%BaUq+j%ITu)a`_h$Qo-F)fv%1j3}6CgbM<E?x~~q|5jq*GGnlZzcYO
zX(Xeu3}Zp&uBq<M$C8`MXePrW!z-f)n@>;8kkOo1gVe4vGG+K=w2;w~CT)}ScpIVy
zYYGx+CBrWxM~2leIZIBY?$$Ee2!vY+JujoJz_SHBR3StLUhQP$3JUS|0_h-w`~ew3
zQ7pJ4vG-A)jE*vzrlfA*5+LZEp0w&Lql>`b-=D+1<EUph8Qq1#cghxGvDDSXx9z=T
z^p+7`g2)o|k<nMi<p}<Xpr4HXGU8z@4r73ff$UvFP{SY@gJpcL;0FamWDKRlD3BBk
zlQCSzH!=>(7$IXMO((;YF-pd088c+elrcueSQ%4fOqCP6zK@eJiT1qi8ZTpljEOS1
z1N@hK%F{FHmH%AX!&4{AiHChW_^;UE;yi<IXPV?KDNUoVUUyBGabipoky$ck%ecKN
zN#&%-m?LAMj72i$%9tnPMdr8ruKAqYXC)rpwSb;5U;2AYYU)xCDXe-)#^Q^v`H*B8
zpZ)FHydg=E@p&+T7w9j2u^~yLab)mmX+%a;hRy*tlH`p^=PHDb_fCq*iSxzY87H+F
zBv~?S8Slt=SB68=$yg&}E#=EtB4dTjvu;ygmhp;=e#NDwGLkkWm1`p9Y)InSSj%KA
zmr=8vbbYME+V@^fT`6M~?Q_r7qIdFYfo%H6#p0_n*2&!b0dLA!FJps@*JQjd%($>`
z5{<c$@jFwBx05!JXHDv=UP+r}Jgg9UkS*~Puq6*%Z^>wX)kU?p%Ge_CE=8o;t);hR
z?D)BKo4Qi%@zQ%Tw#nEl<6{}yNtdxl#``jM%GkxA<47;LMg>yJ-**kzm_)eiWzX0V
zWj>H`=Ar9DIdPWX_B*a~y_2{%&PQ_Mpt^?LB@X`+CV_ul2W5OpYs=V2=jVZsf`7lj
zS^QieU(j3v`SJ<<E9&!IX);jS&)ua%6jDn1_IxRxIPk5E?>I&okC@zK9F=iV#@{lI
z(NXCqGJchLL^6Jq!P5h~4CO~muAhWs9B245*Y%MOW=fy0_s}1Hkx{aMRANQyNg1a&
z92sY244EVSMwkA_^}CGZNz!R1#>~V6wLb*$WKZe4a?(G|q;oR<lyRO(a$*vT7nlmJ
zy8e<e?s!jH<H7aBp$4Q}Vu;DODdQHSfcxjjxJql6k?8zaWbgnuo`3hRjB7H=6q2s9
z_oC7b8evN|5niutO{2rymT~a1>z<4|97q}IKbc1ZU}ZSCW3;s6vWvRiXFe3pS>R0Z
z4r7w&pGgV|C@8O>f`X?MBr7PQps12K_pP9ULJI!dkjm?61<xqB^{f>C$HgL%XB8Ay
zVD3m`0InP@J*S|Uf>H`fizX=whC(W#ptypOg(WuW_E8$2Ta{E2Pp{?%r7{Yjz-lR#
zQ&3jH{q;#>Z@UP~)J>e6a&lrB9=KUiK_wxlo`T8>swk+bB<8oOf@%t?E2yF1gJGqY
z1rpDow+2xBwIm{DFac{RsI6dBkCZwJ>ME$$Ev2MSDzVG=6d%W@N%a*>>nAl3!uhax
ze=brLxE0J$FjGOAf^-Gl6m(b6P(dRFt!NMhjTJOe&{RP)CGqHxse{k!c|@8=fmcBb
zp<9NMi2Y0jKJpBbnk(o$GBsR9TJn0*^bJX!t0j<@97|b=*H2%UZcR1?*$Vth;$@`g
z6%5?q;UhWUFQwZm;G`GIOUhBuPC-Wn`3l-A=)i${r91@z1wjS53V5jE`>7IN_~CW3
zvBZn-=a6T>grt~9>cpA7@9IiT6m(JW>gv>RhQw=Y0jaJhnN>X$^rR`6t`&q7^it4I
zL7#7n^%g2IHhCmR9|a}XrQYZ+^%cmA?|Awv7(i=Wat%~4m~JyBb&x0y-J3S_qHBnt
zv}`Sz<E7yWMkpAsU;=e$D2-GSiF6Dd;~&>3n*DvxXa)11O}suaR>3%0z$caJlSCLD
zpL8RbFw{f^lQ`b7(qsiwId?RmBu!D!x`{M@pw#U3B&Omi^^>M6Si2>=QBaztV77v{
z6l~!T6wFbuOu=#ma}~@}xQPm4>`}o21)7pLC6;ePy{KTJf<;Q=w858@#MA9jMWk1{
zLRO$CP?bd7)#@k_PJc>z)FBacVFeMIbgERSyhIpP@Z-b;&U9obuoXCTjO#9wel8Hc
zwp4s)T3mR@Vg*YS@BwJ{n535#yrN(!SI=v%^fFR%Q|X7*sXX?Pd4NZYu28U2!8!%&
zsTGY@QCh2DRw-#URjn?q5z;8<<cDdmGPpWQ4E%dNOA+Bwl^YanRPdSz=S>PWvk9--
z61}%f#n2lHrXMQ3xux_bt6EC?KTPY=Tzd3w+ExW`EBIW&7Yg1{@UDVg3U*Vtg2OeX
zqphSJ98vewZ3?#2IFDS*OH1r-r-Hs6Bwlmpmf0g*bgzPs6}-<NRT2-)KUDCM(0@=s
z;`>o68%aby;aqs6Pw5f@In*m@A6=R+{M>TwS1`Jk^zTjAiJPwP2T2DMe5v4&f^QUj
z#Rx4U{kk=c?)SBVgPhYQ$;ZDg-ga5)_4Y}J6@07UC|$a|^qug@nukh}lh+YWSxsry
zCJ#gA7)Lju^YY`Re^l@jjjUpoik}r6r%$R#Q}K&}6HJdPo>K9vf|CmVQE)}UDFweN
zIH%xG1*hp(g(POnnQJ}2EBJ#px#K#c;QNWGXBGVFl8O#aJ$lteB5iKpa-COjfeK%C
z{iWb<5eRqQOS?#)&z7!jO}oTcR=|afyTj3oxISK0@Gldug4+rhP1h7$7vVgxXA)mF
z;B)yKOoqjzo0OI;H7g<AVft0@fVR5gx=Vah5+B^(6Yf`Na{|Awp!sSK&lj#cU3#eC
zk%A-@)w)Xh6<73ZOTuIo1yxi~QBlRyDxOjCoQh&93aNNjO-v16ibx!+tfHvOU3Vnn
zMO2)qBVE1fVsXQSq!bm!)x>fS6(v-ZR8d+*85KunNEnyosgqQS!XLPJul3J?lFW5C
z)+e2sCY4oDPDS%%=~Py7d6kE@NYmf<uvke&WfcunxKvb8QB_546+?5RYAUL$c%hzD
zQ$-Cm@mdbAvBE5T*M;<2oXs6+Gq1SnP@0N*DuP`kUiDQpnwS_qM@>jWNh+9U7%x;N
zRpp1nWr(D!XsBYaiXr4zd1?<js>oN-L`72-tyQ#9(M*L$g-=Bb6<!rw-!nJ_VU|4~
zmAtq<iE@6(OwLp>+sW>K)x{`isiGBKt8C)UjrT^B$x;(<qK1d2R<9^MucEDr_9{B4
z$X3C&yp73G;a3s9=W0+f)cC5aotjty-NREq%$5Qik%~Xlq+Irx56YkTS`x1)-=bEr
zuW90t+)gSwtLUbpyP7zinTs;{yQt_&t6q2U?(0S<>8p3rdZ_57qPL2koaLUWAvJM3
zy5^CKaB~Z(4~r`LtLUpH?g74ZyPqGOxCa=ZVxWpaDn1;VN;VSDx)Zfiw|R!D7^dPS
z6$@1iS204xbQLpHaM2v8VyudBDn?Ny(#5jadW<wiO~mG#f4j!3n4n^^iYfG;4*Xsq
zA%Bv9^P9LSzr(gPb~jbUG|D{AQ$7>V-%0nZ@XS;(OT}Cj^HkhESdtBA(@7ZGr=OXl
z;)mChxb*CGNv`Fo^XcB#T?<saNben!G^S@N?}Y33OX9^)U8F)*;i!nKQ0UAm3>Bsd
zjdP(wR}(i#5&FPQS5!bEo5o6f!}CB=tC*mK>L%WgBHdD9Q-_PL=Qbtr`nY2fk5^u-
zVu_07obhL*msPx?VyT*VooU@|m;QPZN9R3Nn#E;m;wW3Eg0zBJ=)Q|r%J9;wRjgr<
zYIs`1S{1LV_)5jsD%Po3uVSZ)T`D%H*r?)76>q7DW#Tn8afJ6~6?F2~1>8jA7fAU0
z8}#Rb(#n&iXWVsdQL&XC$b6;ZZ58jRiIw_20pF!t9xla%!z44fTO#vpQ^5nKiR@sC
zD3Umw`i;#=H(Mp|=1i&hh>kZ&+QYG5a=owO0~G^KKlAG<4-Y=xtMacHd`1^l@d<Oq
zW!I<l<V@*{FG~|w$0ZTpui|qR7qX=TDmwjC`rTTIcMiW$@!KcC5yPY}>8mv*=AvWO
zrGqLCsW`(pQt=Ik$=vd^^oxpbX*w0J`J|s{fxE6FDvqi6Uf@R=Tn*h^^gpdF{h;DU
z&etHR&H}08=N=;Kc>X)1V2H%)xQc%VOZ)exo!}C{81YIcse_8s^sze9DK&A9_PAu}
zcQtVrG4{6W4;63JNu1$+_i5>cHqtqUr;6)LFDlN9sQ;Us92XT}fONn`4u59~f5GuI
zw6Z0o%giC1!KtZN)x<kj`*KsRa1_r;oCUs%_^*m<On}2udCN^dIV-tuG9FbtRPl)3
zuHuf0yDIL{&#$@uQxPjJ5%LzIV$(!y-dFKJ1rY|(;wFg@?)A4TNlW+@bKp}N3ecT4
zCGB*%NlDhgpFdLL#4n&{G!)X%K!Z!evl{<BLnRHBH5AcMR6{upIj<)@r=ggJk{U{B
zpn549c#3@q4aGH-*qF-e)uE{$eV+1kzoa7drP6FTI29VoXo)Px>(8Q6SwSS7zZT1D
ziDmTpd#(x^2rII?Yp!cGq$(P!YN)B9mWDbbrD_^B%<8~X%d2aNsi~o%#-UO?Gp_b!
zSIQL^Z(M7WO+#HR5vTPu)ECIzL#25aS8YQQZ{+qLEG=nB)sU&dr@^i94G%QY&{RuA
zLAnM$2;<VwP(vdvvDOscn8YQcv4+3PNv$h}`p%b{X~@tLztp<kc6l^-H4w>dllX(8
zxt2&=ZGKK!G&ZS)hL#+QhPGPbzXIL{x6;5{sVsIqL26CKH0&Fg%2BK+C~d1EWowB%
z&tHG-H27&@wkjiC?31)^eA1Zy3AXkcI%o+e{BnTQw_+$)L!O2TVN?vGqlSD9pKJI+
zOFVYzq+z;-85%lk=tA{0bki`9f7)p1uAzs9z8d-o&i*Zuduj;Lm>PDJD)jgPN^cFF
zQWMW9`Usw!Z;Q3qmE2#$0Lot=Z4p&ebzyI5u!bQTMr#<O;Xp?6P%*h9G<@ulhG~g&
zCx;6O+Z!g2)G#cPcnCO31Mf+=a*fq6PQwHZ6E#d~kvv{QyJ^Mq#p~+_+m)gZOwuq#
zG@mRW+qQAJY4)iarm<}!iTLD-p_v+HX?Rt`It{ZqWg2V^j)pn3l?FwFs$rgn`9jD-
z4GZXL4U=CKMZQT(vAkZQlc!3)7o<fR-aefvi`u(&5>Eg%fpa-F9wQnL+K?g|q5{zc
zj0s3OH8izEW?(~0@PGP7$+(8a8kTBUreTSe__g@5hF55}4-#J-@Z$(V{+1_Pu3?2}
zwMN5Af%IGIStXF$CrYjsNR|Enr}J73Lytbgj@C0MIDHI54I4GQreP~bq2YB6n>4&7
zT9IwD2FA!68m?s~o=IhWm-MEn8a2K67J>YEuOz<;c}K&$^oNV3`^_q2cEWpf^(PWG
zjBm%=gYBX?d~oV64ZAh$<#Y?m9y-5<k3=u;Yxv+vs~JtDM{gF?D~9eKOK8hw@$&;I
zpU~Sid?tAIYl&Y3ho_|O6U7?;B&?S*x%dGMU(%R@_?3V^X!udX*UVHJ4lz_Ue5c{a
z<K|T3U)Q%99yOLI?Yj=rx@)eZH1ZwSF%93-QHx5%yX58)b}B8Mc_-~B4L{RMHJsFN
zTua<>{i5NWvF#pAl8B$s5-UD$;0a5NmQGQb5z_A(e$#N8DQ<M)k1Rq8{6kco5s*A*
zHJp2b|0$638ZHRrF99zK__u)Mf3qULFvUL_u4uT*B|eO2!uXfdq~SjecQstsa6`jQ
z4Y$Nd-~0X<ySBtr+MULUdE}=ew}o-;2v~AU_B|%yN>Wl71;V(m;em#SqKeGSGmixR
z(jE_s%)?KGQ81iX%~?zi<D21$|NV%6S}{~8jAz3r6-McBB6tgvEsSDe6k(H#uA%}y
z4(gOJiic5BP)Z0`$(QW!jGtdD$e*-iCL5Q?GGUYrqg)sW^F#Z@qS<i0r@Y|j0<^b#
zqTg+&idPDwau~hC=o3bjFsg=;8HO*6YGG6lqjnf|!l)6(y>7|1NHLOX3JJedOdL0P
zr()vh<ho(h3v;hVq=!*IoOq*yl6%I|8-(EsLkc4`jKWjg{3HFR)=BO#u8ejsdp9Sg
zQiuq5scJ}`vT2RO*sv$FQ8@A5PWF=ICSf!Uqgj}riy|Y8=3#v0@-|pd(i`T-WhIG!
zw<p8t=Ot3VQs}P>En9@qGK@f&n_;3AMSYO;d>Cyxidnv_FzTM`*gA|hVZ8T4DelF+
zw?N`lS^gr(4#OWtPMDhmmuMeGhcMcOv7mOYe{~w+eg1;@%f&zUn5c8Z$P1%e7~Prw
z!^jV#D?R5*S|_0}_kZppkj?@=Ju>I*wTYvsvnnOFujlA`h%xpG!&}tbGmJt-y&>vW
z)Jx>@L(hZxp1xu93u8tYGsEc5KmWrR6Xs50IGbN=U>Kvq7#+r-Fb0S5d_1jxrO=Qt
zhK3U>-LNo5gdz8rhz}2=XgJ7UWFrM-Kx2vY36(-O-b?0Lz<V2~jSIu<lsrC+31PfY
zDfH<xiERv*R|@fr+KFLI3S)8@yJvZ(gfW!^8K3cun!)1n-kxb;Ob?^PgbZGF=cUaG
zV|Ex?7-7l@V-C9uLkVMUII*K3Zw$6hOQY%Lg)yHt|10sf`GPQB6!=R5E);MPhrB1L
zZ^Lvl@D;w=&4a4&uBTs0;Tgn{Frs0^!Z5;EW@Ylkc|DAsZL)?Ab#MC1Wrnf+U~xN~
z_`;F?W`(ijLP<Kd6UNP)w7%)Z>m5#762{A6bc&#J1h0g#lnxnz6v47Emec1SO64P1
z5$0dGxE03jFjj@JI*emsd@pL(gz+x*WPr3xS{ufzg6L_Pv@VSG^fAuSLuq3eZwll!
z0bdtzlYp$<9L5_@a0(&iEm7Pe;MOqSep366K*+O=;|k*=(HAw`L5FXdv{MvWyGtOu
z!`LJE-xu%$0jU_}fA|F7%h(Z=kHh#xwE8rR&qVFMFur6!34FhRpNH{<Kq%pWK-kyU
zVH_0rx55If;&q5wOArq~;eR}???mwk!~cKiKZNmP7=MRxDU6?l4rjwS7sk(F92do3
z1pGCO69S?9$I?y;A*TfVEsWCw`TdFHKf*Zk1SdbO^k*0sg#_Z~1#%&bzXZ=?fus|;
z9L7J)_F-HTBO;O4l`yXU59f7(-w;A*K(@Lmn2D45P8k0&Ge=M?g1gL$VV)13aHRWB
zdVeU82T$Zb62+tl3Pk>II-ZIo+$LE-A_WEVSokv$6pG+kA&`?!v4sU*B!b98si=Ti
zEt66rC@$!TpoBokSxO)!pY&2Xf--_aIsf0PWkp}*1P_~3h@hh2sT4sqfm9Z-N+jX%
zRRuHIh*yuGhA7sIpmqdx1Y0cuANyF{2<i)ldO|pxupzGo5l~?&Ks+^qMiDd?t=ti$
z354`?(XgR_l-4AIrfd~K>j;`rS_BypG#AVi>lH}h<t5oL^T|MbPY`z0B7#*9rIr!2
z5(wE?By1BwFoN6&o{yky1ldAP2hpitz#IX|*-jws1$;a&0l`c>FM^K3IFCp4c<lM2
zmc#54LDvYjM6fl&_npu^f@lPK1U(|?8Nt{H#tF`lfc+!rB@p)5TOfS|?8~RXPw136
zAcBDr42ocI1S29C8Nm=yJ2b+ZgoH=YCXXTI3>Q_wmPw<YNErQuhqYs#SZRC&6C#)q
z!ORFI3eIT)PKsc%K&A*dRY1!B|Fbz=P^i_c2xdnhi{c9r%!yz@1TRJ~S5W2&$R4Q}
z;ru79h`%K8g~Em`@>=vnD@9bP5oi&FpGb%Z|9Q;Geq#|B5uVA2b%Mc+ARfVDF;i9q
z_LCWOgiOxSk_fj(Nrc;4=6``KXTpzQslZ8JCJ+vArD(D`f;Ds-L1d@@J9hR?ep1#y
z(e1SeHVAy<|M0&a!6rf69Kjm`dF&)_M(~zkWAQQN?Fin9;7|nLMDT6|??v!=gq!eS
zTLjx9_#lE0BiQkzuiX*s6dLY&qVQvz?1|ug!Ba+<`lAT;M(}9_pFOea$D;NVVerTO
zK29ubzE4!`{~rq<5W>F}^e-d$N+9Iq*a;6lnYF_ad>g?}5&Rs%cTdLty+Dpca8$IS
zp^iO4et071$0u4H7nIWx{2swC0zdJD=hp~M3jCCSzdfP9S1I&I1ZN_+C^|YD!MO-7
z2!Ve-;W;0{d|}?l3jZbO)P&0a{Y1}8f=E+biQsAk#|(UL;NJ+Y(f&HV&~ZJ28xfq2
z;`b<SMsO>FNl{FW;&udgBHT-jXB^-^CjSU3L{Tw{dlB5{au7vI6b~YJ$Q&NUvr#;X
zASsHcqDYRSy~kUCLgxAhEz2#Ell*qvpIJLtFp6iQAm!;OhI>7kgA=vxNm*HSg5)e5
zMUg0qidL%@`wva(_)|RpxhUS7;-5XvpYoEwcoZd~pr~?Dl#HTO6l_>V^tE`NzjPFx
z7w4Z{k@wURKcXlrYS}3}B3p&}!SYcI)%-8KoLec1%2E7$yH(vNx(9+)q8PF*uT~UQ
zqo@|erosN|9Og++%_wRJ2HtMfpVpD^?Wn)DsH!92y_=rJX<7B6s2@dxC~_>nD+-Ak
zM*S1VW~GucIKv&qkpcc6S0<WMa#|E4zs)42Q521%=nzF9ijV39n?&J@qD2%<qiDv_
zxq_Z3nn#f-M&XU(Ln)XMP2Bjce9`}LTGn?Bg1@?hAFb@zGKyC0NEj_Eiq=s)A4S_J
zE}iO9<z+u%n<!{ZBD8RJ6qTm<H+ns^tzSqc(vAk?sK;hur2mUbq2?Dn!6<U0=odx*
zDDtA{7)3YQA&UGc%DtT1C5ksE`8!4N`e9G!C@#0o<JK934Hx*kQjJ_6d3r?AQ?T`k
z;;qS9p(uLMix&9VaN`1hZ-JBT*r_g~C;Iz}Vzb+x0Z|N$VssQ^=p<1LrjtZ5g0mwS
zhDJetHfKYM8pg3q>PUQK6r)66xur|ES0>cpRo~|wD_V_<V!Wt5RVg$fit3pjb~I5?
z$o6cTyv&*YDN#&~Vp$Z+qnH-O^eB`lRE{OXJ43()QOt~DRur>EaZVI-qj({TbGJP$
z?s(qXm3gyLXdatXC^T(}e?EmQ@w08Y8-W+2cqxkB8Qz6a)ZLb~D2gRVJZ*FHh|3&K
zbI-X^el3bH=}{aX<BvoUjlzi{)$*6h@aj>R^kmr|qqk>x4FQR;p%sN4#m>W-4N7Ox
zD>7H)#-mtFhgqCota6AO!Y`fTe_6<RML-H%DiD75xFU*`QG7?wq;EvAI*J_>6~&@y
z{xwm&#+i*`Z4|GH?&!4ZqF7J1!<ieHA~xr36!^;Jx%($%vB{<=Hb=2F;r4igh84A2
zIPZ+yF(v5vZ~xhfZOP2$MBa(wT~<Z0EeaAzAt$8~*&gL*Ss^0a!JZ9wMX@`I&!X5D
z#hxhMXQV{2H;NC0oDW4SHYDdP)6ZUre;mapqHE&p?$al#&TH<W<o!{66~)(4d>+LY
zQ5+BwzI>tytxA0;?O+s#qBtySN%`hUkE~+xTcP%2g^$uisllH)cbv^AHe`6ekK+3b
z?+;P@7)7u_@F!8+Gs{0Yo<C=vpX2(4Q5?m|C{BpBq|k<UdnB{%DSB5tpU7_l8Q(4K
zk0{PC26c4QahCo@XV6hj$DdK0XReOoRuoCY{L?39U5MhZC@x01i7x($;)<YO67X^q
zOEW#6M9Yx#^bG&iDE^J&dK5RP!vg<n)BSggwZ6urQ7hwOT9D4U(-owT)$5UQJBm9|
z6xLBh$A3}WWig)nl#Y9J%VypOQ9O*|eiWWt0s0}G@KF?{Z+nt-6wq<9Qwicdj(VJ=
zbY4V~brjU`w2o(ZoZ%cliG_4Lt0!_ArLj1unYV7`5FzoRI*RE?(ea#)fj1LEel3z!
zTt^A=7s-O2P@tp^iY=|9l#VS^J8rohAS@$<lg=(SPVPvgyp9Sa>Tv6*sH2jOIy&m=
zn194mSx0pp%;8l;v8sTiR})B~Up+N+)D#T0^u)Tbu^8T4>aVTigW-u2781!{Pvr9k
zI_m3*Z2y|$KV3QK(jf`@yn%i?6&IQ`9qBrn>&Vp6P)8#jl|5dMj>bBg=xC;6(ola>
z9ltE|b9A#Uf6K}tA~XeYuZ|311deETrxMM_`+YiEusa>?bhOmbN{71Ao2?^DM{6C=
z>u4(|E025H=-9D5_o$Z5R<929M>0H-P9+{w{GzIMsf_kII_L=K;4zc8J>GHC{9~^N
zdR7k29OGZ$@#g9%G}u3EN+QYR>*%CIp>Q3Yb#&1&T*n9<U3GNR(O(DKcITw%JXp=&
zN9Uf02<hmhqc^AWsAs+AXLsW(hi*;kc&@pZ7d_|5aDQLXu%8anf9h0XfM`BY#~>Yp
zbqvulR4}lXxo+i@jvrSD4ih|YdA!Txxg&Lq(lK4f3>~9&jL|WX_SEs#3C~zI)G=NM
zM^tf^zrrAY>M_p*p-huz-UA-*3(NhJbr6}R<EImzDLSU=_$t-QULr<QIxq(^Q^zbF
zb9Kz4+nn&s=3EqO{eq4a6a8#HM@Z|nH;V)0HDAX99WUyjsw}>wW1)^kI<B4ZQT}5J
z5m~fikxFVh!kh~oJ9R{KM0LEXW1S9NM@+{nI+p4%=<qt?bVUZ&9KWT*(Q$llCtDP&
zE%KAdt514xiH_fIdS2G?;I@ZI=vIIeH+xy`G9AlxtP!;<bga}t=2be_w*A;FvTa%B
zUoD8F-yW9`wU%K;hy2U6UdIO7lSLgHb-bqI4IOXlcwNV(`oT4oLz@{LI+{-PlV7Im
z{^i<PIdrajexO_afo}QFre|%{@wSe4boc_n;BC*WZuup0^Qv~qe^<wQI<`^ZSpRk+
z-SgRYtSd-laZ2l3^ZdIQYdSup4+J~!*74ae{~jHWUder5=NU167C+Ll|A^-k9iP&F
z=K1&P_*lngHJfrs|4hgC^tXBb{i1fCfUK(4CXYf6==f5{z8Ln$@Rg3Q83i!}V>qbe
zkdD$Zl!@UR9fx&X*71*yZ*_d9<1Zba<-Q|2jxx*XIHltld*O62es#=D4gNr1(($v7
z9~qmOdAz<p=3%G*R1V#pmw$g;I<FJVV>)hB44xS6uNn7~@_FsxZ#qsh&+9m+^Z)$p
z-)Yk3o<Ep2tAt)#;y)u&<x81)UuEX~spGuPJ&5uz=wRDVQiHr6w94DsDlf(7xkx*^
zy?=9dgc{#3@lzV*U(s<@$5SyR$M7$GQpa5;bKd_`6IzDh&jh<7@1~GR^(bob?Z6!!
zuGHXv%++x}Mcr?n*P&DA8B_iD>0=DKsr~{nJmjS4NQxn&N@Dg&oZl+1YLyV15YMj?
zA}ko=rl$EtVkjEJ(=j{~OK4swhQcvu<cxtDj;azOB-{Ebq32>K7DMqEO2k0ZrNlrv
zJEr;f2p%FOV>nVJ#8H=up|2F=MN=b&vN1G`p;-*&VkjR&{TLd=P$7njF;tJCMhul=
zs2oFXtGsG4REgowDxtZ1J5`Ng`654wb?XENqz2#kAd7g-7;42(HwGG(S8ajR5s*B*
z*svZM>I7*kGPq)pVrY2NlTMYE_zTt#rpDloAx*$qT{^Rh#H6aBhA}jXp?}QJwvA(G
z62sV!I&Dl1R;n8MAvNfU!5c%%7+TS!G0;geV<7#XUp>uZXkIl$pYc7Rw1|NXX|&E&
zLs>DjjUhXR)-kk+;rSRiE)K9stGq44{OqpNpFV$#UjzBt378`wr>wm|Ita*G?N%T+
zhP)V5&Q1&+Y5W*Q#xRNuF?5chR}8&l=n_NM805IWCxhjfr&|o&W9UKV>s@C5>G^b3
zR;`)-)am|M&-`nn{UMIAYKY8zXq*^^#4t35exl)k7zW08&<Qn6$e})i1atqDd4o9x
zGyO!Asv$zk85YBE(FH}ZqZeiW2vKCK(J_pPVLs&#^^c8V98Fg>G?$h<;Ta#pgcv5q
zF!OBjl~qFn1Dz+uFgu19VwlX{1D&S`I90%D0!|l@RWsO1;Ip1k-mMy<%rB~j=EOj0
zL<p}|4b2l>Z(Y%GK@2Yn{3UvOwa}s%ik$E)jG@B<|6x~fMpm921EC^d->kfF43QYO
zdBIyTL}SonSVo78Ax5*r@Nx|ITtPDii$ib+7sp@=QE|?1wGd@Gw1DC#LL(4a5<}x^
ziAY?sqT?&fY1Kl*tA&=*+LN=~^Yd3w=NQ(<up!2CHnE!W(}J(Yuto?c=URr$;@tVw
zLXU-0?7CRuK8;;(<UqP~-W0>;7+w=NyL&x`rPV@@6?j8vvMo1{t=QL<49}Jrw#BfW
zQ4<6AJb62YcVc)q23E27o*)u`T-+gwyJFZa7<LLso;@+VAH&`lK91po7(R^Qj4SwV
zwGdl<L}|2ep`6H^M0cOW@MX2oXHSTq#*n1=Nq@}zc?@6Bfemyq__Z~@WFj(9$iP=I
zd>zBZ82)DdkKs@ZztDM@|6@2DL&55ypJMoy>EdPokr<A~@Ezx6S?*b3<YO^>&nc6F
zKM2m%R#W0ts)v3Q#Mc)m*eKy=Q9RE1%}*?Izs7JfhI0(h7*56TTZ|_c;Exzi$1u1@
ze!by7vP~+LF?*=*Obll`<uBOn?fSC6z@)6RF%a@pulpVI&&O~fh8?z_oO8qezsR{f
zmrYo8DTd22{Ku@z{7Ey$a61OB#ir)J8pE|1u5%Tj%heBhs)u%u%eukYUsuBHpLH_^
zPv?A6ZpA?6Z>|T3-w~W-?o}$|9#gjv^^}2QD{>#u!UB27v`{L8T|5#9t5_@`sz^yT
zP|!#yK>TSzwDLQ%_^g4#2GR{QG*HAqQ3F*CR5S3Lfno;A7=VEk1H}zAaQvkWlrYfr
zS5L1|{!#`SEzB=z;Ju0dldbX&cIwRK>8hH|Wu>fvat10GsAwdXV5ZH^)kEctgb$y;
z9vEIdRLMYP162&XdnP5lW!{U`LtHUeR1e*(9jtDkh5?rW$v{m5wTPz%>l<jh#9!M$
zT?6$D)S()6f~25j9-DB{96L3OD^UX@vBs@DQ+(B$tW?o(MDsj1htM*Q%p|4>ea<(}
zYh<9Yfh+^9jYKwXV!&g-%b^)KoRLRLGb6D+a^cG`(A+>vnnDVal4-zapoJLA(;s&_
zIWZCPKU4}{tQRChD+7C~hkmFYYGdGe104(msJQ{Mk=V}QPQvgT$T4uGdZ=yc|Ft6C
z-au?gf``(A?85EsNR^iRat-W!IWf#UF$&h^GhS+hIz2Hahu_seHv_f-$3S-jJq%1V
zFv&nq10e$=42(3;%Rp}fL)c5t{5}Ty8t89efWaM0{55NY`Wfgt#eaITzn7D{YKVWJ
zfs7iV@wYvL3=B3v%A2{J*)`!%1H%MmI7JQdm7SBQx^v4jient)HzsC{F)*5=+uMma
z;aCIXL@!efKbgmiwi67n3A>nVV2XhS23|BU)xb0ZvkkmpVAcr#bOSRv%PaC`2+MGF
z=AB8S=6SQk!2e#6JIBCW1M>{bH^6`7YUzIdx7MXbh=Iw!D}S>5{6Fm_0}Bm=4MYqq
zG9Vi`cO#$~P^e^$(2QR^yfaq~w7=!yHDg>>xq1H2XZoWCbaraMFfewAm;c?JDVfo+
zW4_6OH1%2u&-D9c|H2xfHvFStu0L*Iv4J-Y9$bqh23|I>#=u$wuNYWrVEZx8Dg(<5
zly>|pDRW{Lk>v(f2ny{$1JV>^Tb(dM!iI#rUN!KVf!7VJGq7G%Z7{Hr7JHQT(J!7K
zQ(7mdWf78dlc;^ez-EDPLRZxY5&9pcZ85Obz<vXt8+hBmJM>Qj?=$WUo-W~k&%icD
z;=Fv~+YRiXvl-ZB;DZ{W=N_ir8j|)$UgzB$)QXNQE_gR@`0VtfH9{X4_|U+o20k<J
zk%7HJ+9#X^CXI(_<oT;chyouAq1)^;kU7Oq3Z>o2>r9?6nEVYKG;qkkmj;HXwEoJ#
z*9OQyenNIleR@?2e#3Y)@STAp2EHZd>~w0I=q05!Wm4Kv(JAAFIJ@}4z>jR`ptpmc
z4E)TM#lqJXjvM&Jz;7l_n>axiqGOvFV&bHMQ_LzR>Y4b>z-a?dnMgMAJC)(T^aidO
zIAh?ffxiq~G%)^b{y77G8aPkC>hHe4AaL>H{BE_~7ii&rZe9iYx&JnBiR0Rvf5pIM
zhUD}><s{!f29E!k|7$-t@q#r&OLBu(nIRA7KZs>rH*mwi0|O5Y+%#~DNzA}K1GgC_
z2A=NS;y;dEO`Cnn*XB##noHgTA7^}^rrn&DwZB^0eJZ@#U+7f#*@5)SrQDAUB$+5+
z;+>~`!MmA!X<^X?U*mr6B@tgi6Hl8cXQI4`XG|0_QNlz?6VI9`Y@(=%=S*zP?Rj-n
zRuL1;clrHB7K_D9q?jmfV&<dFDm6nBV;zsT$PV4eWbyJk@9%|zrA(AD0Tbq<%+j=5
zq2REhzOp6`U&<d_$K9o{k2;(mn_a;~MHAIbR5ww{#H?pqS22+}tKf)IzRD)|nDdd7
zJytbw{!ac!0pGo#uZD?QCTg3gDfp?(-9LSGOz_)(_8#5kC#B}NV0{w}Oax2>O}I=*
zCVVDZm`F9@HqppLW0N~};ZhxUy2)JvvRdr)?<wtWXyQsR5Wbf=yS=Z8iKZsJCNfMk
zGcoOSzQ@FbV!lo7eQD=?|9y~8yt#=DEwVEOz3iP#@{lOC$Zlz(m5J6S+L*{PQMF}u
zg@>8VT4s}(49}ZrYoeWr_9n7T_)UEAUuKSp9;Mw!wJeT;@}GK`*|M7Zn>_ExwJ9A$
z6>EQ-8^|@0XX3{WzV0SEn#ecN)kHTFolN}kOToG8{GClKI{3`h&e_-cmF!~T)0tTV
zPGsoUQ<v*088t&Rdk+&mX<HM$O!PI;&qQy|ds|N*&c(mpTl3TDIrJrV(ci=X69Y{Q
z5<PMvS{%%$V!e;}e(V$E#mOCNVwj1QCRUjkZgL+R%r^0YiDFm0BTY=?G}TBOWn#3T
zj4?6R#5g)n5%=~h-i%@iIG)xs@#@IT4*z;frnrerGBMf26q6sJbf0Eoy5OHmFH+LD
zBg71P9eX+Dn<W%3HYdkj)4hCO#`ohgd+2F%Ow2W5(D6*n<II|nO(-T7n0S$vF>&s)
z_a)9w1@}TTv1i4`Yu+3CGLEzj?7ij<EyyW0AyYM>nTVRuO@vKEOmORoRiiQ|pUuh&
zrwy2psTFhY9GN*{PELO#E5_;jEQ4BECTtUnO)N3-;h0RS=Wv$4^2JTGyqvIVgRguq
zn|Q^<G84;9e10W!sfoYaWG}1VwehQ6ItR1n4b58HCYvg)pt;&)GXtzPvBtzFoJ13A
zX(C3ViMLIxGqIk^o7hbEGqKUcYgF}K!fohC8>R&5y_EC1iT#VRCfvw;CO7bgaP_ws
z<GF!1O>Vv#*t6Te#l*p2!kNu*);lKNHL=^o9ux1G*k*G3j;tM`)uD9Id$)6<i~8um
zJ5B5|@o{_KV}G{W``$P40X?w3doRas;v>3Z(8qwHWbzX-E<QHV=SJ$X-F{}0&rIxN
zDlqXaHKZv_d`(Rl1t#tV(`nBynL6sY4{#!ixeHzP(n-EDaipS;MD8VW$iz1coVf*0
z<p;K!0s2zOO1|&NVB%*J$4wkHam>U|ls_luo80v8P5eLyrrUq%`*=cTna?tEE4dGT
zmhnhW>peEJ<L%U6nEaVxa??+mSW(|iwqNN#dK!Bt8|kOWkeN;7cMgr=U}3O@GbYY5
zv@KM#aL&Y^CLWl0NI51hn7C@<UlV_sxJVnC-0T8Oynj=TB`Ll7yAKZzzI8wKABN!o
zck|mR`lYP4-}tUD6aJS<<eG`=CT^R!W8wyF+uwbQDd=uyPPMd~%w4?#q_F4|_8rqx
z{u5RA=m7oQcTKD=?IzOdDffN4-#5Od<$63akz^soLU9WPEIehQu!SNPk}VXp@U(?z
zEG%1}cWJf1-(@e|rjUg@XG%P4!BgA4sefR{;Naz<ZsJ8P?7mgH;JD0U7M`<EdzZJ!
zE-x}N-i@YhyP99Z;sFXMXQ8}>QWjorh%y#np|pj=9|p*fsil>FA*ZZ`2_g%1uNh*)
z3Kl9_XnUbVWs8rW(jE<Wld}?qypXeVgu9BBh|tf*XP&R&t8Sr&g;o}_EY!46%R(ay
zjj4u(Iu=|OBnx#b`S#7uscWI0h58m4l?^P+z2c>Ze0VO42<JN0f}0JicTH#4`!bkt
z(kw8X8J>g<Eqp#AzqOu5<|Y=JTF9`_+(I*2!@{>;`@BM>!f&P=z2xm&HG^J3$(a^>
z7Ft-CG`keDP_J+rJDR4a>6g7NMK4Sptu3^%(9uG^h37eBiw~yJ&O)}u4cv0xn4NQ~
znETRmZodV>%GbQ@Ep)K(^M9$i76KN6oW6SL%|^HhCkW0O!`*p;A#JFe%{y7>Y@xS>
zJ{G!I=xU)SC%uTfn+1kIclKgo(N%AyuYKH#CncD^=F^O>BQrx5dRe^ZPwdZAF`BjI
z#jL&-xaCfN3j-|lv!K=tCD(NiYZYMIffjC_^qrFf4`=7FIK;wG3#J9j!Y~WNX=)4e
zER3))(!z8LbGl}avhZGC_jpdah0zwqSZM9d9?QA=pyxOXP8E0Y`>BCn^KZBJO{DcK
zOtmmgC_LH16zYGb1eK?@+!u(^$J-=^&)Dohyq|jp^|Ua{!fZNlm+TiTtgGPOU9!jB
z(;oIa&Fz_EVbuD7)hU}%Gv9({A#7oRg%>TnWMLt#VL`U=!3zIJqk^AQcNah9V@xSD
zbw9Ui;n~uO5F=#sh=r(yJ>xQC7IX`*hkf+?X(xSSN4VG44EdL(8KQR65Vy@iS$NCB
z77K9;i!HoL#VjmgL|9m1VI}=%RmvkZ=M@V}g>jbAb^8XFTUb-fcVSo0^LAi)3HK^`
zFDVw*TKIc$N=_D!^(?WaTG|=47$buG(~kJoTi9UX4Kd3bExbm_7B*8o+CMKn=Wbeu
zxdl}%je9E<-=6W-#nkdWf=e2uziHu*D(=n)dlGK7@V15bX#@-JFaQ|{7Isl94wG5e
z!VU}D=sE3rwpfrezKGAbkver!CX;aLKb^+X+8i}4nT0j=d(eM=(bAZcKeX_Xg-<Me
zO8ZaD+-rfiqijf(J{Ga_#ooYYbo;plzp!vXD8G+943mGoygnBcB408PE_rWF$fOSw
z@=oBOg+ufT8&hq3!>q!DV56puZ!LVslx5*R3r8#*weX9D6BdqH_};=#j1dbzFiVfi
zJW$*BBhyqR-&Jqm+i(`=>o~3Phv#9p>`J-WTQdX3DbKGKPFncW!g>1Dw7@9~r!D+W
zQ>$seS=d`MR8Gw)c(msq7S1y5lk<K584JAqnE7!AEiiIz{ttol^}g&27XGsEuZ3$C
zE^-nr{A1w?2St^t`7T>nH7?j~kH2lt7F@4a)o~YUnf*`8?5p(2I=;Msk89=P7qhN2
z;w;><aD%X}`@?nKJ!_l(*t5lLT5M5PgM#U7&f;AQ_c)3D-6d_@xA1^=KH@88<DrE|
z9EFWSHj-=vUheXgjbs}IY*1AeY1@J}KRQTE(9<@U(60WG#e0=b(X3}}6t<DBb$iZ6
z5gSGA!~}I7mC1&~$0jC)O-Lb<Vkf#QZli=icn8j+w8LM@Mrj*mY`{hZHn&mMMmZbh
zZB(k(^}BLzD$MKV*Z`jO)o9?ZWaC%?Uu7Fr?8I2Ox>dDN%|>-mBqcr~z>w^goI#xH
zCIg|Cjcgl!8?|lJv3V+MPF))fZ8Wk`&qjS44Q#k<q}p&(h?;i3oSQt77(Ra}5l`b7
zMMLlNo*u`2WFT8(n;Wzu(}vGRQ=2CtBE!bAg1!MCXLvZqzg%8Bk)_{X8u)BW{>iOf
z+JBtU+y>#!@xc~0TH0u1<9QpcY`k8;lVzi|jS-<d-qD@DlG*TfD)0Sr@8qAT8ER|e
zM$J(1TA{#>z^(2ra%{A-G1kU7O0&_yMjsn}IdL|EHoDsAW+T@|o{fAPo$Q25&;hpi
z0v&Dqw5<z&%g}8)bI21)b+Iw9z3;O^!7ndnk*B+j9yWS%k7;sN^L3`Dwa9KzE7Z%z
z{PVuvHh33DKg<{rEV8yKh4i!0-^NfI!)Tva+5k$kF^H2G&6-lfJ=n$&8@wyyLeR2C
zTCSSLTlYUd%NWjK+8AYHw9ONl)1}(Jkv4XY%B;UXgK&(USb&aJa!;9?!-(cu(^}6O
z&oLhGPNIqQtO-=|PU=J(U*)%8k=JA!<9m6DOtUfFMnMNpJD6c(ri~A6d}L#mjoCI<
z+gM}c1sij07&c5Bb8XDCq1w<mKpP8eykujcjTbqs16w@zYet>@`Ri8t33r{ySY$)C
zc|s+!YlZsN3iTckoI%72T)L7LrqOnGiQ3R@L_23kY<xW?zf7&P$PjmoE>Y3<+p0jd
zcLV&jWzmMD*jR4Ep-0(x#l}(_iy1p>{7Y=SOnR-*k`4JS7X=R2=*qU;72o~hZX%zo
zPq}+6YlV%KHY%4Xy^7v-B~4%9ulcI~@79627jgzv46L>Bs*QJSylZ2fjrDXbx*|O-
zBYT65jW%Ahv87h1%j%|VxM!U|rLw!v8vkY+Z`gQ?RdlNQ>2KONvZ)Ilc%YPCY(pTU
zTgj>|16yspZKKr2z;~Z{VFq3q7I@FbHXFNatmu+9CoO%u&A+m7sj!>H=l@FGDMFyt
z&Mu_vwy}q<{#WYzHoR9-KVaPT4xU)k^p!P!7Wdlt*v1JPzuNf3#;2TF8qmgPHul;0
z+{PF5#u)`mwhw&XF0h}2YM)J{;>{A1<`?TfwA2BcCtAYaKX9f)_N~h9gEkIPe;Y@c
z|7~o3BjqrYKlMyYe`846th=oa>S;?(WPC?A8`R=*!}Mb|zNdT}KeM4X`v)683S>qk
zz#^|s16v$t(yNosA^#!<NC_t@WiFW%IBD}JH(arC)y8i&PTM$V<4+sE+xUaYVM9ve
z4Jl_Bo8IiR!WzHUP2W+`N1OAO;Jl3sHvXnSn?L*mU(^cyW#b~#>`MPPuX|~nV>>gZ
z)JeZ=;~z>MQ0lASThZmXpCQfouZ?Rq?%KF#<2sXrjoUWvu*dDCZZh6&?EcLATdmOi
zSG&AbKmAUvQ0IMtuZz3c?|)1P16vTkZ{q>8y@LV{9@=<Bvkyu57`x~=B(R}s!sXr`
z6L`u&vV&qLGRl;2(}9V+H!lAf2ZbC|cTmGY$(<R`I-nWLIw<U*h=ZaIo+I5sDK>PF
zB6t>03>0@z!oj}e^fG%gSZqH#>p;I2Y+iI-erX3~9Kb=|^V$D)&%3uPgY?XhxADKJ
zlw8h1c?T7oL>yIgP}xBh2W@I}t>obKnE?hS!>X!-Y7Q8xo|?YUnx;hZo21utP|HDE
z2iXp4JE-Hp<G|~nu7i3G+z!$xO-irtz~w-4z)5M~AoI7Z!t(=k+EfQ>w`@8#4Nf;s
zchJy5QwPl)G;+|`K@$f{>ZDTw*`xt2h;WYR*zXr}&nf65g>5q&G<T5Ypfx2s@HuGd
zpp^s8?C9101_!(?9Hd^zq1yB`eR~FplUH?V;~-wM>+=qlr=~NFyt_AJ?AUxdhTlPs
zgDwubI%wyhy@OmDjdlq8IyeY8IF^=9yzbnBL7H?=#@h3#jN*>$^mKkF2b~?{JBfv9
z%JocgzH%X_eIT0?VXn;Y=AgTSo(@8Sfd;IxCZ&givJDe#oFjWs2_hSgmgwVfTSBBQ
zM*3p(bI{+xpg0D{F~Gq<2R}PFPKtxUG>*g5HZjD(PzN&|%yKZy!EpBSoNuCo5u{v7
z9YeD_80lb?gVBOgs&=UJuRc~;gWO&J%o^ulyn_i2P7Zc^nxr=x<h~dPl-`}O=?m{9
z2a{<@2U8tPb1>b(=G_@bFJ*>zWN2y@dzm5nn((iW_?e3C*$%o@b1!tT$iWK^<~W$^
zV4i~o4qg;h^Eu-?Gg995lfUVZ0GSD2VizxDnK{{I_j_driUY%eNlpiv1Kq*iLGG}F
zh=UgC=}|`0>w!w%^zP~D!KUelD!Pj_O{eBD2Rn<nNw*x>oLmQs9XJlC)rR4LMGrII
z4`d(O>OZ$5!@QW<@HKz?D(+VtEOqdygU{&s^aKZQIoRT0g@ct2UgM-YSmj`~gIDSK
z4${ZxuW_)}!PRYD?p?@Yk-g7qkWQnmcd)_1Mh2#wL&g5s?!P+7U3joNVMft#vx7Hi
z{08ZVm!@$P-;{N~$<WxAL7YvtI(XZ`ZU=iDyyM_q2iqO&aA57ucu&mBHU|ZFW%Rw4
zNlNqg13Rh1Ah*>ZeV2n*8n}m7bQkcXv$%19`+Wx=(P9ohaPT1qGSE$if?NI5wr70o
z;1eN-^Gi)w_0#qYA{E<a?{jd_!666x9egf&{KCPP4!)wbtGEw1c&e7~ouz5tT*&&G
zksk8yKj3}Qm1y{lgToGvGA@{`Mi=~+_IV-e2<NV>`#Vnk<<zH2_-@uqXOq_(q<`<=
zN4jf+u0Mzn==YhIgF0W+_Y>WCu=}?I-d`M?pqw~r#_=oFVDgOPsW?tK_|3s}2R9s?
zcJRA{3l9Er@CWDD!8r$iG6~Ge;+*n2%YJL6P0q=7_ItlskY15p2#Rq!>!O3d9sJ|q
zii1lI9yCp7s9vVIYPcs?^L6)U@5#=->fm2m<1PO+TCb-2zp`$nNjiV89jW6c+f4_z
z9Ncwq&%tfZczN!95W3@lmicO*_dh1R+M#`u5;y1fnGCO&c<A5}kv4$`%xpsf%Wh}>
z_^G#PT6$7E;hEI7+pWyxI10v5CJw~$bR5sbQ7n#>I10u2P7w;nQ6vsd`ge8GPhU&j
zRny&Uu)Am+&&BalJ$K11fpV2HhMh}gRq;4V#8E1a(s6uU$#-C|yJQ@M)2?OKsO)>8
zUyEC{d<%oV%*wv9ag>XrQXG}z_@=76d>j?xs2Iobdg<mfJ~GR1`w1z$N*q<=s20b%
zS_y&6w)!by;XZGL=d-H|;dJ#{anz2ZLmYuP>cmku4sRS8any^WejM&N(&A_k$M2JJ
zTyaQoyczN~e3&`9Zu+SYOC8J3PUS!<x}R^5o*qZTIGV)KG>%4boGnqBoQ*~8(5C5~
z=LHJy$YA6)i{n!%-9yVT3k?qp&(3Ds=5b`k(I(E1Vd0CTMI5c-$cm$79GeEYPlmiR
zo2B0<>^tMjY8^-Sf$r&^^e-Bv(@OOlq_>SDJC1g7w2#A2WRN>2j<<JZOsSssalQ0k
z2V@XGTfgg!hUtYW`@SvW4#triNAEcL#E}<AM+%IiM;!Tabc&<zZ&_Vw0W~nYLD$Z4
zbcrXtYt_Q6X0_bGT^ZftxB>U?W!yEY`Fh4t;BM&<O;oW^`v;kC!hK?PRxi;OUwZq-
z!C&YD;usi5zc~7fB5%T%?emh(>y01s+q%<_olhMS$Iv*o#j!n(VQ~zPV^$oqY5a2T
z5yH(T$1zeAN5wHZjxlkJjblO_6XTef>>C%y_&B;YPS5mbvk6_D_}oV6HxGDOoD>H`
zphdMrdY=-<)HtTG?Z3Y1aV)Ron;B2U+6)1ECw1z0tvib^#4#rhBMy^p<IkQOhZ2WM
zo;c>mu^^5Y<5(ESqBsUU$b3ogSjoN*3iu8!%%KtFIA+Yw`n#6<Rt5LZ7kyeBVcM`^
zx=t4=<Br4;jpJdVPUPHM-c96T?et0|d@(_!RjoMeI5xzwF%Bn=cpNL@SQ*FSIF`im
zN*qgRifZncIfLchJL<bRuH|p}xd1H_eziP~!?n_PRdnx}kWV*T702p0UZs+8tchc7
z9IW!(%G}CD=W}oMT5iurfyqVOT)B$XbFYu{W$#QToY&%bJ&w2H*h2S<V>5j|j@EV4
z_clnUuf9PdKRIuZUcZQY+r!LPr1Y(E{6Dh313Ieei93?eq$HFdO}g}Kc7Y_jOA-iR
ziX<U~{y^zXItU^nC<ub6D417wU)kL#Qbd|4f}ki02v}%>2qFp!(v=SK{r2+DcfNDJ
zbMBe*yL0ExojWsk-tOD-sAO$1)-lkt^5*RH(T4TK*ieiIU9(u(xDWw_Hx=XKVq7oA
z4O&u+&8(BfI8lsGi?M~Lz8HIpv9%bV6=P>HzAnZ#x{muQ#+SwToPqXuzTlL#**%*l
z5tqx(Dyf-1{I49|nEI``?<)~&{`i_H`VCKaF?JW@YHPj>Nop}IrytX)jb{%Ncw<y}
zA4^9u4i)1tJx2Q%W&Ti%9~q<OzVC&eiAMSXR*x4lF)Q<6F&I#m(+=%D>>goCBzuk(
z<L6@hRE(p{s9H(nvmlRZnZ$|5#VYj|<xyMTT1mXFoh-(gVw^3;uf;gURT#?FNx!p7
zFwjGiP7AvKqiix0<2vO{&Ew_f&tm+=b&GL<{=blUt{DGpseYboHB92!pK~v5<D#64
z#kf?AYaA-Z<zignepx!!WwWsJ;>D`YD^%8b*O*pGSCT#dvQV6NrS{1upQAU6`GtQ}
zkx^BSUP^8=0~xPk+$qN0V%%dz%Feo993A3j={=tD{*BUOWIQ6Hyo?Gm%E*Y75hwH6
z6VWQcy)WPBuin&MP6mtB`bJ5N&W))#<S<?pWjrdQlFV;&CGq9c=H^NF7e<FF%b3_K
z$!Oz=mysZ&sf@>ERFhF%#$z(-%cvovri?l=>dJtOS~6<OpjYYhf7fQSgl?>r#4sf-
z%(>S%iQQYz=G2qHTEq&*h&PbYNJe8B4Q22eN-@fCViRHW`#D+9tj#86e4EK=DWjE)
z<}zBy_;P4IH_lzpZ0Tt&W6HXOHZl_BXoaK_)<fFhVs6QxLZ%{>;7eay8SS`z8P{dB
zmys-EnT&U2q{v8>F<QnL8D1Ga8Qo;$$?(hQAR|*oXPLk5LAs0#869POo#FnXLl!?u
z9-LlfTWc@h-ty3OqKi`VZar{S%5Zm)ku4)fMpqe6$k8L2C4=(MY|Z<-wU=PU!2AZA
ztLMu2Cf)rcg+uA&m${LaFQY)_)3Y!@Mt2#7GJ47AEu#mO-*6Yn{GA=THH&`2Tl){c
zbH~*zrl@|GtUfYkeAcU<jQ(^!6DA?O(;e5GQF+ZfML%lnn4ia+EdymdC1Z$;p;Z1y
z=F@!rFJrI_Dv26@$MwjuxM6?z*Iz6eCS$l*ZX{jQC9CrvnG_g7&v(k=#MvvdN6`uS
zdEv=Do{=$D#>+D1%HX}$aWW<|7Ba@mn83`DF-h>ZUCMl>V$!`~c`Fy>QNvUj&&rr7
z;{_ShWc)QdZn});gqMallV%W%%v?Jx?|JStl=7RC&h6|TmN!eri!!!ci+@SRY#FC}
zWYDUNGnvWV^XJI?KO$EYjLJK|HE*7bS7f{)<4qa!Wvpw~`&AhWWh{{K`>?!K4RWsg
zvlhv?_D0pkGF}&Pd5uF2ld4xw{~*<0FE5?I-z{qib5h1qp1~A<cH^YCX>&6vt!6rL
z%jJ2`?W*}gQC_hOS;jsY`(-FHR2ds&Y?PtN&}D>WL}VB;0y2U!Oc`q{CdEgpezL*e
zb#lHX!<G@E6PkN&PVB)ORu26zKaV$6ikha^-c+48SW0BPONYo<DdRobye4nCppTbH
zCuVzJbm!&gt&*`?#)n)&2D=}~SVK!1=KQVYvHMOliGgMa*3ptr`mdMq#mLNt&!jP$
z6Xs`rBx4g#oQ%(fH`X_kK9=!`jLq!I*ec^Q8UJ<4%Dm<JxO~zU+Ox7plgpV6GxJ6+
z@4+Z+;|41v?QJG~A!CP(T{3p_gv$7e=}jLtPTI*M!|IXY&THfCa-=`=KdoaFzk4c^
zcn{x=PU;c*H*K$sZ)G$|_V60Iw5=!aL0Zeo>EAJh7;Xkgj=l@~LB>%T$7K8{<A98V
zG7iZ&B8JX1llUr>3J>!HEh!}UN$?Yf`Z<x^pJkkoagtkGTlKh%wyB<9cs!FleA&Y{
z@4wR2_@q-j{+C^U1hRh<30XfFy~p*3j59JW$+#@ztc*XI5;t6bGj(O0lW|@~QHGnX
z-qyUSfvVFgL~ZcC9dkj(MY>{GUMjrzhUH&ho_$4}^lLKyk#UvfrCZjC4ELqH^sA}<
z=q<8YG0pGPxFO>vhZJ;Ba7)H*7F7kc72J_=m#0#}6X(<J@r=tTr$kH2e=;7h)GLTn
z!0e4tzz1iPQSgWW6gZn3tyJC1<&R1A6O>i(lUkK)74>qLS5QGgMFo#4sG^{%P*_Pp
zWdSIBx0yuxeD}O&?`OvgCYnpcJ({Oi6P8q0P(#717kboGka^by1vT&YrG;1jbMZ*l
zQBYSwD+R3;)Z@Az`5P-}qTn$F^%dOz+SfoqLu%OU=TPC6y!_!wjT8(Xmc%!JO%*(@
zpaoZnkH)T<g60Yq&WU5%u<P!f@o$R1rGf>kv+u6R=7DuLNou3Ot-zyzLy5#ql3WUs
z6inDr<(Ulk<PKSF6|_^3DmKCoBiak)$(+($GTzKd5nV3F2znKiyH>-efHnEZqResK
zveFc!E10fCi+P5EjtV3N0~B=P#uao^kf)%tf-VYj6x_bqqpJcv#s7qYECo+Cm+bd@
zv9<WLdbR?BymOhZlRa|jljq}hKAZofVA9}x1qBLvD(I!)lVneK1=&rKdMGF)hj)EH
z@(*h+6$vK!l{&h6E9j%3uY!KUu-(J*ukFn1&@*Gg>TKHCUx9a3HWP1P`J{pT^M3_n
z6g<PkP%ucr2n8b*e7!hlu!5lqh6xQr6ug}7=7o$Ia`?%t;lfwl>-Os!aF3$=eHWcS
zS^>{5&AweNz52@Ru?og1cveV`r?(YMQ7~1(M6R_UbCQC|On^8KKZD?>5_z}NdN0U)
z_LFShqiZxQBj%!uPl}nQfJRp7kTvO2=5q>WD0p7MOa*fkyrkd-1#ebPN*k8(qJmw&
zCd^XsSz%uJ3Hh^`x~-GkJNt3yWd(DYhs+QK^Ax<IV7?N)D6CzcO_?6|d(3PuEuh)M
zGS=2kf2X;0xhP{1V|T~(nu3kZC0-E@HIH6Z-{4vbrUfxQ$S>vMEd|F6{x%SAD_E)^
zsKeB;Ou;(}dT1!pP^>^!uvo?GDij4OkE)6~Dl|r4!ExH4z)%oSuwKCiYEWP*SgBx@
z0*gUc@ScL@3LFLJD)_?+B21*yokGm^IRCQgy{eDMDN*pQ=n{9lQNaI_y3$;FU%}_)
z{VNo_eJ69l@SG<W#8a4@)lB>AnLFlqK4dizc#WV1ivQlS{Iv>5+14reLU1-J_(;LG
z3ic}4q~K!(I~07$+*7cbepaweLA8GiK2@+q!Bz#ojx1<@y3^{rQ935o9oIs-9CUA|
zF;RtJm%`+eQh?pB6zo*+4FkvAOLdd^wE|KKaN=%(_XtX1ZjD1+VxNNj3Jxkb#A-0D
z*LMnjQ1ByHe=GlcK^Lm&S4QWsdw_+dg_M4`U~O#o!wQb@fVYs2DHuDV;3pw@l!2Jm
ztN*B|-&&3;_*pPHh20YhPAa&e;3k<0PAT|P!CwmSeEx3={!nm6!D*f>A^bZNa%90D
zW&KYK%Q>rn%YBpTCVo!#pHpyN!4(BpML7Oea8bb}YAEZ!AZX_E(a?06*pJ|{h%bk(
zDfow#ikUBDI7;SVIV#3klw|i7D+!CUib^W(D7edVq#{<uJr++^comylNdGB#pdd!Y
zf*9%K^j?!%NX_mR5HD;Yg<3>81aT_Ls;Ho%qKfgqcPgjy6K!946&uU?pS_jI##oS&
z`QL~Fg32nYsEAjQpkn=p@sBReKS(F2d;(MyS5r}4#g{iTA!rR1HC0#vKRKk@&CDSq
z3u*}tySqjf)KyVWMSm5NipNycSK(9nJWBqc0}WLqsc@@kq@uBk<|<mKXriL2ie}t(
zYJs<B{2%`mQ1jzz^k3Adkj#yv3R<dYr6N&<O9i9QT16WH{%#>LA`A`bvIX&^9DRL3
zyhlY_6)Du*QsM^N2|pwYo$Up!Ao%nNx09;EE9}o|DRI9YRHUi=U>*4?(p6-r=*qQJ
zbW}00Wz@r+RdiC3se-P47zNTUDjqtYl$K<v$Wf82B3sx=!#-F2q))2ors5%{*=*cq
zfr{=bda3BGqEJN-6+Klj1hkDFC}MdLuBKZSjw&FhkBYubh6VBcRB)6W3X^_P!M|Za
zJPX1A6~j~vr@<<oQu)QO{HIk6Rxw1yAkig<fgUQhK!cf74>vMG#Yh#?7<v_>RE$<J
zNyTIpV^ln&VjSJ5;=4)xSen?zawFya1e04z6Vzxyn@DHAozH^CigfQpJ`2|rChG8<
zXH^hSr4MfuM7u+CNS{+NL&b|KW~+E!#Y`11sF<ZjOI)2-YCfb))Q3ldr)G|dm&A&%
zsd!n%TosE{@a#~MK4hDx;uR5G;`stB5cE}Uvy{(?99`T}qFNrwH&nc-;xf%su|&mN
zD)y-OmNuwZs$#W@4^%8u@s5fT74NFiT2ZXRR^h0SMPwBfDg&hQ9ZfXEEEEK~=o%^l
z0t5vm-(;`^ekjH$Fnl2qk+6!08m+f9?_s##Q~BD!ze2@I9+~Tz%em`R_xpmG?kgZ?
zmB1Ga|5I<paMl_XAFB9F#WoddRjgC-36q2;TEzwxo78AwXT9Ahz(?FsONm`p>E$B|
zKBg0b?&t4hlEe0?iY;oiZnK_q)>buI?I}Rc_GtEEr;4x16#2sw`lSk<#2qTOUyIfv
zN`56)VUhnv?01*&75zhBk?t0B)1aKaD)y;3!Ly@cKT}J^Ar*&3DfnK+k17tR_(616
zEQseG53-1jDwtyUc`e|&&f54RDqr8?xJZnnf-=W`X4IzlI>rhU=V#)vs?a3n>MtS>
znW(?2IHiJF`nQVTRGemoRPiVCJk|ZX*!Ul6^zui6Gb%dYjTTJq<u4{V`6|vobdJ~~
zoyNvd3SUrhk-=J$e@Re+7N+~Eifeq4prNjYe^mU-VymI5hU+SBsEE_RV|!D@E!KGz
z_f^~$$Ao9<E(`C7oIBzKJv>u9HUFu2pyCk?Wi-TS|2u%W3*srs%~Bv%i=I#dHZsd<
zD5s&kh6-A=4pi1qkw8NwEm~o=wv=j#l>4!z^xDaMdYCfg#B0&L*U(T?i{@T}hO%Y-
z)ihMspox-23hjTFEuO(z8ftTQ;?l+o8P9J$4UcK?YVc{Ouc3j4L=7$t4K*~<&`d*f
z4UILNZz(;lMK3N*G&I$sSNsPpC0_0?-OMDjhBz86G_(>jEO9M09EkH9F;Z&{Z8Y%G
zLxX8NhZv(I4ed1~(`F4G4Non}Z>!;T)_)Dp#CB(w*MhY%(JMlV;G_x}ULx6g9`X4#
zbkOjGhAa(f8qzgzdS?w88aisx{Ld8fRM<&4vqx(5GRn5>MrIcc4{=ukxK_4?91VFI
z@-^hr;i&~|PioNw=I*+ca`?igKtp#8g@VJwNHO|>u^?EGU9+c#UL4X<Sx0XTeKf4m
z@S%pj8v1E?MZ<gz{WVA$CTf_ZVSt8#8b)att)U>r{gj5G8ir|jTEid>$IAN$({BQ#
zAIxNzGH4|w-Oe1YVT1+(wu1GsBblXq#Ak8=yJP4s4dXN%Pc8VoXZ-Se31hhtUqM@c
z!S}v`@$^Qo_z7HMX?}QVK4nJw+><p-(=c7b6lTKB%r+<Ur_wVtxF~+X!Ax?V(=bEB
ziyCIrw<vmE!z>L;k_%>PctI@v>C*h0F;ctH1t~svdiw%S>HKQ^91SmNcv-_-4fB``
zJ>y&6%S>t|O;3)Bu}NzB0u8TfFf~{j7HU|e;T^to*YKK##Twqy@HVqT!y6iwrMQ=9
zcvAr4T}AQy&N~6O_TAF_rDBiE#OR8Yf>mN@%i4HZ_(A1apsQ~sC_EQE;~(!8PvdoZ
zKBXX_!Ql3b;x~8;259~u{g7P1QDR$zqhW=Hl^Q}C!WwAvdm17%uPFY{rTOn_DA8~!
zx!^f}!P|zPZAnpl@x6rQ8s67%NAq{CUDVy@UL|bc+z(g^dd066HqifD?<FMEE?TQ$
z9Z!>nQySK5*q~vbhW*@*hL1FS!PBi_lZf@F8n$Tom{mx08FWT`v!LG(&e_ULyPNQt
zhHU~6cU_vlUD*7&h6TO?cJG(<+qW~n)bN#tZ#3-Euv5d#(FI=%@8z|UzD#ldeWQS0
z-7P%1N5i)om^O4Wb7`-Jtv%!4Nr?(DoxT&w4{10|84W*Z_>oa&u@bp4uxC6ofsHPu
zpXt&gG*ts__=S7CmvB_W&-4t_TQFZ=nm=Gr4o8pQN!WiU;oD{TCp4TCL#sZBkEvIl
zL%(S_t>KD>s~UdS@CTi*AvUGpjE1usE($;Yso^gcD-C~ZIH!U8{p)VRqsavX48a9f
zzwGLC#j3jrW7<cVkMxS?DY#4x<-4=}bu054%Ofkcjz@I-%i^!$b~Ku}p<!fE{7ntF
znExs6Nxp&@U-UJA*)yJgyDQGleGUJy+?~w7CoCs;pz*IcqMYKp2|O3Hq>PTOhQF+i
za(a{>t0PX2p5JE41^>RCUtUKA9ZT;dJgW2QE%6Mo=_{zH<8HeGdSFT`>Cd|5t59CY
zOff57M}m$_9i4Sl(@|YVOC7Cr)X-5=M`Jyjw9rvYM*|%Vb=1~ThnjUfrlT(3G7IDB
zhm|RA8dG0K7nWR~n;e=nr+vZVqWJnL1&#EmpV<}_#W&H>RL2W<67Ks79@o)K$G)QY
z<~myF(Nv)`AD&9$*4&_u4tlgwCF-D;+&Vlu#`cVNiEfghOIk^7b+n_YI#Ow&ub@4*
zQ@&HO&day|y;c$_v(&4@$6b#u@QaO8j0%Tb&m@Nznlv5hj91TiT9~1uqwrWK9mndH
zXA$E8Vg2l)qpOYqItJ=^LPwU40v+9j4U+E9){&zlSI6{wncZ~c>EMZeQjZ>R0;<i|
zVckh!hHz0jr%*=^9es85(@~_OCu=@qcQ><_P)MsN!*1ksr#?EED%{1s;W_<9M3@Yc
zh`#UDc&5bZp7BrVcv{DJ9TRj6(lJ=a2puDJ4AC)^peTO0P#b$Ufg2wt{J_gD^>dX`
zI!4p0dbA*n(ZO9mBk&e+v7qzGA164(blOB6lXOhuPIXMyF-6Bz9p$~zvV6N%(Hr*?
zNZEas&JmpFbbcIM#Ppk?N6+uW!}z=&ttx-%{ugx2(($5>**X-FCv$YXq~k3*P{+$U
z=IU6eW08(|I$q%{p@e!)-AS0QgUdZ!nw(cl7kW*{Vh-teQwYDVgOW6ck^`U4S@QpA
zV3!k@GLyy9#X8>6`4rlCUcBg7rZlfI+_J3W%<WA2Uln4S4qX642QLRq+JNXX!*{eR
zuyoi=4+Gf-933I%n}K)(VI2`2+jV@dqeREMIzG~|NymE()*AO(9iwWwm+N?+kv-CF
zg^pD^R_j<Px(8ZGGfucZ(6NST)>`_Ix!p>t**ePfw3f&j*EM6Ej`ceKO$!ajxHjro
z(l`3Y<A2UcB=~536+SEBV?BD4bJyHHpXk`E<5L}5bbO{`;*nlk1s&B|B4#rtdbSA;
z@ve66FLdnCaf|L{7U}p(#~vNu>e#7AfBwH@f95wjz83h=H*1o!iw7h=pZwiA=CqcS
z*3w>{nzF8aI`-?)|7M^3M$C6S?>bKD_)W(T^tq0cOn}L44)9zA+Z+}2prD5YJuE1P
zjtKCRpxodw0e;rOe+xe@D8VlRoDh^URQsz?KIO-9r<v_dW3K7=N5}6v{$N><+MLmG
zPJpw5lJlnkf6+xhlw<e2=>Dzaf&dqJu1h6nzL$Pk;47t^t1L(3-JG><c`ld!SBI0B
zd|gMk7rX>FblemiVvgQ<=r;qE4BXXmk1pE##C;uQ4U{vmrnU5+jt4sa&T_NG7$}(A
z?-2uKjQ??B1&A~FRmM09lsBU8Wvd{-%X7WN6~!!q-L0kP+PMiT8>nL7m)4Tg$1^m=
zmtdfp0hfU!1Jw=GFwodQ69Y93ERFZoF;Le447AMf)-q6A06tomjU1**Jp+#!sBeJy
z-wNgVe=-dW6wS<TWT2rD{ev3*+sq{X`;E`b|CVWL;BoTPJvG}%{KxgTPsKMg(A+=^
zsx{EYfITjg|8@WLl`1RFrnNHA+Q7f9C34t}4hezt2dlab-pPzfHQ+U(&s_6xzXsYF
z@Hck1H;`=L#t=WhsKYNEr5NBxMf?iWXOE}1IpXqB-ascx8tA~K+en#hq%?!y%;}zP
zAj80bHd32(58HGO(Xj@)8qw^H>FzpL-Zgb%pDqU8Y$G);a6LgUU2=DC;33U1kZWM2
zfmH^cG|<h!Tm$nA<Qd2}AW<!&z!hKWQ)Hm0f$jzh4fGIU;&EV5Rt@lT6}Dam`Wn%r
z+S|bQ^ZGSv=;>pCl#%Ku_&r-E^*6A!e+I!oT5e!G{cPZA1A`2VGBDb}U;{&p=wlRy
z8yITvA7b(9^(U9Nks8cPbiI{$W^dx9W9|_KcJ6btjTB(QKZy+=ag8xB_Cew^bWx`m
zwy~l+&Oq-+T+ue7%0vT`49qg{qJhZ<rWlxE;CZI&#g0=AOfxW@!uQKQYv5Y4FZShX
zq$5{Xc}{eRH=XS`ld<mQKG;TLm*52hpS6()?nlyQ8+eIc>g$<ffL*pSU-;O4SujzO
z_KJb|22=x@fd$+YK|Qx@V4;CU2Hs$347_IGTpQ`?b@yU22fH6s^So|g)49SSy*;Ea
z^mZ>XK)Tf6AI?O<>vMD7HlojuSX}5`COGdHNZnnXL&c)IwP%%6m&+*zcznhU^Awy&
zW3ASi@CE|R=c{guX(>R^fGI$1qC~!9AjBOdO7FA&^FSp^!xE*$L@6RLyCnwR75F_G
zkSHx@79~pLGauMii1bhrrPT&LFtCL|XH78hp@Fpq))|;M)$`qfv<9#AYuC%Yo}sVh
z-bBgCImyf18w`wl*}KueM?4P8+-xOtJ#A*YKISQ#?fOK}&4PZ)<eBdx^D_h64Afd3
zx8K0(Uao<Az1t0ZZr}?8I}ChdU>9?2UjHuz{aV=e6-S@R+$pG@khgtT8oM7ab?-L#
zGXeKr1A7d7YhYO|iQQ4l(n$x|G5ZYuTFqU!Ed4uXxPc!G{K#B2aL~Y?)$-RRO8LG0
zdlIFaqp}YfI5Z~vCj*BK95GO0`cG;pyu=(%l#Ys_WmB^$aGceQ*%-i-08SV<$#WM#
zet^#}#wixJ0ICP@n}O4;u?FrL_}#!CEG!1D8#rU&tbt1gE^~Ep($gCG&KbCvDE%d9
z-HyKVEVBkKFjBL;O|G~vGTU7e@y5eGhUp5k<-YfPMOP1(bd`B-;2#5ZT+(|^zdI9(
zQe4ukue#k}ZK+@5mVw&_zRYvoWS+qNsv38>w!4H+(5TSqj)6HFt0c8`-#73d^#@Qs
z5G^|oXk=mRBLOhPF#(KsN%LJ2pL0<rfY<>3>EnqLw5*`)23=Bx04fF$ABa9j<5EJ>
zM=t5n04fDgIe?khec!vJDgpekFqXJ#0PNPV`;i{?xDx`HF|6hrtNPUlpk@HA185Tf
z0;m;0qW~HQu>VO{?EvZ#RQA*n-MRsscS-ICg_*~SIQke}-LqQ#02&0)Fo5k1eDD8M
zR5nQ><!F-tnp01b)HHy{19+~ohs+N*_iGlw)t71#v=BPUY#BhSQv7S7D=`390KNeH
z0VD<B4j?&zlmI*dY$|f~OOo0N&{oj&B&mG>BOVlf(KGh)^z;@-y@iAP6iXGOUO^`%
zNgV=63m`jyX?d>n05SsT96*-<)^Cp?r(*z}#L$25#Il<yaL-B}M~-8+YXDCOPF4Vm
zlO%H7jeVp!f|)DmlY)}jEr5s93j*jKz%yL8w!1J8eV}{~K?&aL5<^-PK+gbr1<*Ty
zKHOkc*WdvEYtA*bg{yC=WWNCV3oHp*xl7Cddb_r3py)m&=+glV5`a3_&x#o$R8iZ|
z0EP)XT+k7M&Z+Dg8NeukM+-{HG0c$qE&`f5Rv0`kfT^S0;{zy3k|qQ&QFJE>N`But
zxl;ppmNAmre8`OlFg<|fB7vV{QU&lv0B;8HJTov5eH76v0lXjp@rwb>D#a^$B+eFi
zj-W4<@?Q>MZYiEeYsG`f<_pdOL0=VgVX4d_0bXNtN;$6!&~H@Sk^tTcAQV72fVTr!
z8h{Z%Ab@27yhA%XyY&Ey1&{+!1X$X$3i+zQ8c(7b^VcixZAsFGtfJKZehvi#{J&*5
zLLhlTKP!NaC0RDJbV0wEd1+7e_7Qwv)Gx`5iO_)oyeA|%@!bH94~rv6n(tng5KBz(
zegG>1D41MzWdN&rh}yeX2};ntPt6YkSi|CAMxVvAf?o=4?_L|gI_7Nv8+clSs1?M<
z06q%f_W=L9jDJ^)k9o`)&;ULOU~>SU2k=Dzp9WCldH>b`J_}$A6;_Hqmxqt(SvA1B
zEr44Cz1v9#c!Ptzn<snN<<O1*_6D#o0OBtL_)37Cf|B#K0N(_#OMu;i?kOGpRsia$
zaK*hpfbRm(U+^|~(a+@$5AvR#>;Ex;1I*+X{l5lqkjMX3|7U}}hlM4F0=Svk|Aylu
z=SToQ(dNNkwxa?Z6ZB_#vXuV|uL1&}6!gg#+!Q{=OMuXJIsk5p25;*fHRcSDSOE6}
z_%DDz1Ne(;Q7nLStZc&Oivj!{zy&75<Te}E#B$>8DgNDca<4A%@ACOC(Vl7U%K`K#
z^js12s-V|ckOlZx(CdQU5R^`!a8yqKcLKP}gdF@Nb<(QT=l%CYEb2VvrP>Dp!~{_`
zh;l(Z5=6VH{@7qNYGs1aDYS=Cqg&#FQHPLUK8OmzXzXeRQ85Vm_R%0J1wm~uPIps)
zL&TMXs3MqE1&tS!`~(521yNmq8iMYu;^Pow#JRP}2_h|s^dRa6Q7?!#K_mw8SP=Dt
zXck2CAQ}YGFo-5WGz~_d1Jx*q#$0ZS_t);(*QdLm+tPjWK=0#0RPD@Ph<oc6dVZMU
z&6(_O5k$)%ZqN6(4uYIkoNFZzY<tQ}CPBZ~{jMOA=!78J2jLFl*_ZsDAa+c5ubAql
zo;^*gw+&*^L_fQmpLHh(ks5@To|)%Q34%;2@de=zq5~J264lAMZ1fCi?aKa)AUX!o
zD~R4fbP6Ifh=L%x3wt^Tkr%{)$=)tOa2JOr`MU=3L=Xg7f@TYvBPf}<0z4T+Hvxvu
z@sr7T<p-mA!lh|aVGu<@^du(;u1+TDf7jz5TE%XkAo>O|F^EY)^b4YY5W|BQ5riam
zJs^nV1H7$|=W=Uo1A|DO<$p@hr-K+Iz+geiA0oieAchIRxR6O-ty$<FDV#$MqXZZ&
z=$Ig$5nycT=(r%p3p}BeLqE{S$qa<xObKEt9r%d<msh&6(N}ET%X2}@;ASoKu<(2k
zGlLjqVzh}Df|wP=sUUs};>93l2T>BlyFtte;-w(o38FZNmxGuajJ^qdGl+RXyb{Dh
zhB$~HU-Zro;?*Fkxuu_yqy-FUQWUgyOXR#3#Nr^XCMHlU%PsMR)9XQu@g%&#<mu&R
zd)h5g=Mtg$EkWNV4f4?&G2|}`^0^x^eCbtUcw}0Y73&1~hiOoQ&?s}qX9N)tKxZHp
z#ZoLNx|X1(pdIh{D9L7vE@eVORXB({jofSz0jT`FAeINQCx~x@c%PmO;>#eu3SuSC
zZx9~`@ktP?gZLnbbwR9W4tV0%&|0^&Hi!=?JUy+Xp=X9$>f6vmyn)3(2oABkTrfWp
zc$-_=BtX0G@;S6Qh);vq5(N22-O^SblVJ4L!58ENv0X@h9z^;5zH4rY`Y9GwIJ^4}
zF+|K+hbLz33}SaM`X1_Qo|;AZY~KX2OW?{LiQVE@&xE(qA_rW1gV-O$cR}pq#t+Ak
zv-A`9_dHxd{LD;dOj!Xu(m|e=AP)BT9N_t4x4-9b5KnugpMp3VM3!B2M2x=tW*-jS
z9AAU<7z@$fnDhNT#J>b_B8Z20nwWkvh+oB&7%}B^5WfeJZ=%4&A3>a9Au<tf;%pFq
zvc{SyW8yESnMb-1#6?EDp8FgX3J#fn3qU5@rC{{+`PCplF~pEizbk^0Pkc=b{Ua!4
z{$<e!;)dwn4B}oX{}%IB;5&leE#;s7F`9n&gZNKy9tav^MwgqoBsvspBF;nw6BSK_
z3%zAc_zt9%Gf{0}&Gk#u$_wV?$7&FB^idOIHx*SfvFP7&6ss&o$*&>+ABva2i6)wx
zXhE57uIeW0n5b)_hKZUcR(K>b`F5q27=7fs{Msg_+CDN#>j`E96Aevd<i<Q^;{Lt(
z`X)a2NXI-<BNL5<Kr=cv&(*|4Q_)QyTEOXSj|)D5*Xm2!(nKp0PngJJYwvE&eVOo^
zXk#ML#L&IH$z*exND=~WLCNu$Xj_WgnP_h!*+hzoR1;po?;Kl$Vx;U2yx8lZo(^It
z!$g_@>7^RBboX(^jwU(@PG%{;vjAO8bp5}a*c#aaKPhOApt*uRTHgC`m2M{T1c%-H
zbA{ba6q*=pVu*<zCW=h-G4VrZ_xpRjJ?X>kzIz_2mkD-zQ}TN+0dHmW6*Bz<?QcR7
zU;y_bK#jH%H9RFS!P5c^5_I6*-m_*G@fOoi6T?j0t)DmCMCM*^-{*2hm>6lo)mCb@
z*ZW@!{8c4?jEQGV>^JcpbH>Ct6VpvRXJR}Z-q!uB8NI_W!9=^fntTU3(ZnPZ(^h0n
zHZg@MAuziS0pH$EV}jlF9sf0xbcTuNO?+vBkItOQ;%{PuiH#;^nRwBJZNf1z+r%6b
z%S^mu;w2L=n^<h(brW+<%rmi&nPWzu`}vBAA6vWTo5*b|Ej^Y#sI9cX1nH}SW`2<V
z8XaEArL>i{jI4S}&zad)T9x2>!^9F3Z<%<LepsGEJxRNA-Zrt+<a453U$&LHO^rTX
zbjpstAGDR$)pZq{&`lU7WD|;5S2dxTK)j3Zs@|>cI@MOX#YG=;1x%PGEE7R9`koH$
zq}Ovi1UC<*b#wJ52+<EF-Zk-_iM5qoZQDr^leaSPXx03E@8__s{kvc}BW_}qiPc>9
z1OEyWE5)KS3w+#ToqhQ|yzw7!U+tt1sl>z@UPIeSt-JV0*O?f8qOj>N>FXJ+co#7@
zGIK)GM<zCz_{_vM6Ca!S#KacXz20uV=h|%IQxm_Ii+}rU^a;Og1Y2p<yf`*?w+l%M
zf5EdXut$&KjTdrui0+alaSby(Uolk<r0q2EwTW+71Ts9kOzbi7Eo;cZwB3U9Qafp{
ziG2b;<jC!$HSHt{f6o+U5wq~9g%1w6el+<{3%F+DfQf@94w*P?;x`kgO&k%v{mH~p
zZl|5Jy{79J&rWsM&nAwW@cdG^w2t=|6DOE3Ii92KB)a{ii7E-MQ&0Gae>HJRXdv$2
ztM~6L{wB_uIB(*gcG4Nvd=r%p70_>IP5jBww3pcYje2|=Q-jRE#oQ)_=aPvFw7I_P
zqTr0E>WaWc{$-Ol%sp3_0}WkLE7w0J{xwm~LS&fxx``V+cP8#}Q&T({JF;$?xFzsy
z7AVF2ka<UN9$C<j-TNjUu~5dse<mK7=%Tulb93ZNc`+6mx0eX`8Yb34Sqsz_XZ`P0
zO})F_$>;R)VqGp>K>&Yysgi}t7CKl+vrxrCRSQimJZ>T0LV|_57V253W}&(jz24Qb
zP{ZP1q-NK&@L4EvL?FA&32)qoiLfyBbRs!?k6+u0zSFNGXyF0>raG}J&b4{W!p>jP
z>RV`F;YKT8Lko>)u!X(BSUzT#oF*2p{;>pXdF`cU7Mfc~wcxeT!is*D)Rud((9*(!
zHm+8JwidLFpoxOI1WgjuEvQG(NrP)}*2>P&CoGp)<Y{l=pi({ALW;!);dy!Mh%~!u
zqR)!nTK8MvgKKM5bY0JL^{JPWPET6Mwvc0?qlHcu?j)4&{7~(&)+||>7J5q2haGd*
zT`Y99qPNzcu#iR91rm36>o%ypM38IYNekx+Y8F`ho}q`gi+irl>SiI&LX)iYneC-~
z3zvGjiFpz4ZbdKXzxH$$Q8_(hW511F7JAdqHlDT7$3kBVS1nw#@J@TFpM`}M7Fp<T
zL9#G_(=AN5@SKIGEIe&tq=iuy23Z(vLEcfd;cC|q3qvgox3GSdPhagCMuY$8_UK;M
z_|-0UlRol|ut0idlWVkvF%~9Um}21>3u7&ew=luNID*x#^N0PlKJwL0$f>f*HPON(
zX3;9wOS5DB2mNFJ_9yLd{dzxpss(kGYnp{%rJQF4-aEusbkI-9%ytPg_~PHfOBP<X
zFw+88f6>Bh3tajI9{)rBSr&dh;D7tDe~uVky~Fjzw%85ZVySbkg?WsHg|BDFzQW{u
zkWHKCGp~mD-fu5a!yCW&Ulk^i&*fgTu$ZZ9VVi~5Exci&#KOB4-egdy+=5}@Eemg3
zP-v%xr52W1xR;n-%mdQi{SIT%Ub-?Medfyr7eDLP=1RKE#ORz!uxDM|W>>mqVgHtH
z0~UL$*UArYzZPr@4kNPIYg(W{*>P2WYcE-XLlCkM7E?GB+|n%~WC{!2RC2$)^qz&~
z7S>u=XW@M&r-d~ZJdfqAv`{NqTFnIeyqkGBeU*j8Wa-n(=^t45@p3wuq#p`N3TG!v
z>n&`s@UewYEL`yS+$iWK3m*wkuYbR9`$gO6WNEX7PkAVK;x44GEp+FMtJ-Z{+!hOS
zlch%6yRl2U-NNS<j#@Zo;R_xX3%f1su@Fd>z7+e~X~8ux{VU-yg0C%nV_}zt_P^z@
z5zre1-!e=VzO(SXg*pS%cNMtziS6$f0_&0`iv7SHSvX|jFprfOt=*_5C3huD2QB=T
zEZwEeuJj{}<E(<8gaCteb89yS>t_qcdEzXb=XNZdVByMl|6$=I(}}jt=>9t^%mU9T
z>alQ|78bZG^w0fvM)#j5^r`iRmv~5*%*wx2Ib-20_n7bgllw}M{$f2$k(wl?=cGtf
z_&0rM;pZOiD`LMFEnF66Tw=|vmA~$@ZiALalYx8b-MR<G{;}|{g*Y2!ZCqzDwD5?H
z$|K!3E!<+JS-8)FJkotz&^xTmdJMZwYPs*SP}Fj7I2`kz7>co@UA6}d?%^1MhmsU7
zBNWEkxczY~yX9<@w~=fk#YP1?TH-2EK!A!i9u<JhI<Lo&R<VInPE{N6HWF-9v$6Vo
zn+4PT{KUMv4Su{^!$wUTFCUAkH`KlIyXeGPHfr0bW23H^{<w{LHXgIl*v5<J+te4#
zhJrS*p?(*`xt!HVV0MX{h|#8kKIAmB(cDH08*WdUOYjL=+Gr&>tp(+;liJwPpT#9|
z#i4G3B=T)|ggn(!75QyNx1Ejl0{na-fkUY_yf$)eJSmty8)-Ju1@;TtK~VmTj=~u>
zy4dJyqoZJU5;W6}K7YKkzz=P%@khcFHui1uXWQuhwJ*y?kBcsX907=@&y4=MwwsLt
z3fRaKbIHlKF@Ad9Gj-DoDQRPh;1}8GX=9|oy=?Th@sy3HS^sVH6->!SKLPp+`p|}l
zlsX647+C5SI)UCBWMim}VKxQ}?+q#SA%}(w4I}<PJ)>-lwlPNVsdJKzXKakMF-~YE
zhY2uVj7|`AqM-aW8Hd;=mv$+}_VaMxG#k1N!^U(Q&)Jw^<9Q*o(8f#~FW8vHoS_HG
z_#+Fw9ZI^B&bBef#w#}F3;s*Y?cVN}8L!wJ0=Bt=Gml$Kksfju*jVzL|5Y2AnK`Y7
z<Sy&&o|z&ovQZ{G_B9)eZM<&d4I6LSc-zLCHoj|`xWtZr05R!KHPY~i#PYKfm)cln
z<G|H6DwmcLKYkE>J^YRkE4CpEK#pRg^T4VEnvDh*+MN74k2qi>Xk(3y4{ew>EE^FU
zB{pmuj*T#lSK_wBc|tZnwTYW|*G)Wrn7jK*|AaEGcWu09W2KE%HkQ-83a*iN-79Ro
zFL3&is^t7y&h=J`wAuzIa`XcmoXD3hY$F44Yi+EvvE9b!Hr6vsZG6m=Yh$C0k8B)y
z&^s$XXNNau6O(XkdfPFccT=RrJ<>PZ(N~P0Ql|iX4Vm?}JEXZOv(?6DLU@~?+fyVm
zzn~|3q<>{&r(o_7^h-gHq)1=e_{PS!HvfIacR5AcWuwL%?;abw1t31|&9SF?_BP2Q
z-pi8MJDrl>+4$bZYzK23{9xlp8%-TN?%;rpgDiRuR@HPLvT@i(jDtrU9I^3}jVm^;
z+Bj<Cn2pmmez)<%$lRZ8oUn0{IL&k1j@~!;MbOHr(yuHdsnRJM_vGp~EBmINslw6U
z#OT0Tg@4#MW8*Iy=U5LnWuCS1rx;2anM<)x1U+x#ZyT2cpE4JC)-LwCDC9>!=ufeZ
zqjE3XX!%EBmsE-LnvH*$r8e%^_?N}s#!VZ0`Xx~3=rdJrFw<rh4oH<a@fNrLLLuAW
znT0b_rMoun+xU;B3K`xg7`iWdyW;^1SLuBZPAuaf)<HD~)t%^0;~f4)Au2m4>!6$y
z-9>o^6$Pju==%xzWIie|!RLP!a#j@wRUO1Tn0BVhS2LrW1P9zyO{a*avRlI;Mm>fm
z&2y@<4-UG=)~Ms4mROY5)^_lAszgv%$k4ak#bXZYJ7^$Ok<-XQ|Gx?w3i@8E)Yt);
zRK6`$`Z-l%e49CF?qG<6p$=L&Xz8G{gDwtQIcV*morCrc;;O{9aggLhZ%%HN{D}@+
zrFdGX$nD^4s^k%rpe;8wI*TCLL5hP84$>T?I`BF;)u5l>fzQE|r~GWxHl|zjD;6AL
z_xQo8=?*$M$PlfgSmL3;y;LdFK^?E;_DWRV)xi@EdOPStS2)OaaAsOo4+l98avkJ5
zC~)v3n^(#cN(j1%?pUw1$Q%7$M|Z(5bU@7wlKYVJ_^bViiyW-Do=$B&9T)@sy@Y0t
zdXh8yI*=R;aL|uu<kkNDx%%`hw$Ay{(SZ&IIT-BVDF^JbJuSf7IaRnQcM<YR+}AJ%
z!yP=!pgS1hV5Ecb4kkF!8av9tXa{4soxB=<KkZvo#{cXhFZs_n80+BrLhm>SCk}hJ
zFDxV_f1;Q*MGQ@1YIV+;ECdLqG9edvXRMBUSf8gmc+SBL=38D3&VAm&Ob4?ZyeKrh
z;9%iGZ_^`QF2T~xDVx1grA|3L<^C@@c-cW_7@fnI>tLRPe;oYl;1vh+9c*#1)xiP>
zuQ~`g2vU!OMGj;Kii6i2EM|T>SjuqRDtg_)n+}#Zc=S@?8}w~$SMA~Mw^&ugoq+-8
z{Bys~AzsFuZ`k9oS1NY!j)OK;Tx{3O9Ma2PNu{qExikklH|UeToK^H=M^7`KWH4cT
zQh%TH>68T1f#u)>2WuSI4jc#XIap3V_wt1tgdIdUnw+_t&rkW#zo(X~#KF4`o(cJG
z-!7cwlP+v7c;CT>=B^bERx<e;xf(9>tfJXZ6ujn>Ry)`>E{S+&9ao7@`q05z2b&yx
z>|mXP^$s>V_=s-tNk@IsC7-l`{15zGE4Ffe@!_-$XQMZTK5?*_+uWYR8y6M)(x(oZ
z_@&P?JiKR80j|%u1S_qBpB!v=@VSG%4)!_t!ody)I~{z@B#d``>EP}#cU+g4uN;1E
z<;w6&m(~}2<6sx_s;X;`6TJzx+rgzKuJE-^W>V3@ZGO9Qk8gQ$tGNjFJNS-u-oZf!
z-wRbgI+(sGmO6hB-DBV8RA}wu_WSy!Lk<ozY5mfarY`Siecu|N)c(_~qYjQa_{+gL
z2R}PF?%=e8-yQtI(EFv64t`}e(zkx;+N|`FANqdbmrk(`^zZ%~<^9rafAsFq$1}6q
zPf7ZNm8XMrmS>GaaFJ7^gT!w{{K=?QclG@#?Yx7(xfchQS(-XX7eri4kME-Ba)a^J
zT-@mu2Ui`u&_Np9A*!6<nuEeRE`sY0Zm^p5a&Hddrh{7!#)U9Ggxe18kRL+(5bpAL
z_IB3`;js|zIk@lOKL-y4vvvqEq39@E`4Aovc=hpKWkQGzAufcnrK2BokSJ45bkz=0
zg%B!+@Ms8?LZ~5_l?9C#w2GiJ9;8+cVW*hLxd|au6a4Ce{!+@X83IE1w}bSE=B^b&
z<+SKRY;{7YD<qo<PW=!XgwQO6=7QNUgtRoNiNK9QXe<C{b<^BUOY!3Z9H@w1X;O<&
zl(rGHrJ$`sXe|Kw<I*J3#1LE|EJ%~?{ntB547o$_l*+UX!4zW2A*6)RCxpHsq=xVj
znIZHJ!5e}v1i#>93EF{13XmQ`X8|$<?HEF*5ay5aa4uV>VD3wkx(Gl{R{@>~fv>OF
z%?=?agj~VQE0uXN#Q(a9u73D;A8CFF1)|$s&>kTa3h;+mqDWwh^$hVBLv8}*%>6Wp
zIQwW!zYzL|Fp7alm!uE|gfLv-fr1Ve^eI6p@N@`+N^w%UG$e%Vbcy_-f;mjkby+<|
z2ryDmE=PgUq5s`W91~()isCPCb{Z?d@YsY2AxsQmSqSfhFe!w|A-ojA%OPA=+`F46
zObKDCkbG9q=LDS=!gK-J9F3v283I2a!psm}5cowwIW$Xv@TW1eL!dTt<_ON9^r#=^
z3jAgW^Fnxq5tQBYLwHqy1;PMw&Xg})C^(Bkc#WB_y2)HDI0UbU@P@$8rAzEC31LaP
z^p>D+hmd}!JG)Cmcvep*C=NjmVSNZ2LQuHtsh*V~tO`L5K?^|_9EV{F!3aff>IOmx
zGWSBTLb$ZsOZgvLB%Gd5L|}(-G$zUkhY$%xUnIXr^LnM12qlkK^Sv9wtQy|eBULD~
zJcRc{SRsb2gWbuYJSp31!Td0U4+K~vDEaTEOKSyQ$74RnOJm4<x|(le2;nK7k3t~c
zmM(1)-H!$RB!s8x_&7=<KMi3^2wOwE(~BD{P$6s!VS5OFhVWMipNH^82tNzw?+D>b
zZu!%gA4B-IexI*G_*#ISf|AqrZt6E7>|*#HazfY}!XAMSrArjp7sCD!ekhgyPJr(P
zWm(`G1j?Mq&*{?1e?Y8wP|!mm92VdRJt+Y5;inMJ6y^{d6Pz0DqPN74hww`XCqg(G
z!tZpos4c&S@S6Y^(xp=ZOnt}0<xVq)cVrQq5ln(VYZQ{64IwWtli=LLSs`2u;XEsC
zhV-|f^)n>mOJa2XXwOxqU#W&G6yBE3xz|`aMtj))Vc8V;x}Y=frILAz#Xp3mVLTqj
z9Txu(>WA@9x14(++-K1a<IylWWJtX-r2ps~+5Lc<z1%$}j7P%JZkaG*!-xyx`q?yg
z%Z4#7Ln0_2MmZrs{EFaI5ZzXFeU-upW=K`Ss2WD)Fh0tVF8t{u$NAG2A4csk>V%OH
zMl~T;J&c+H)DV<n`!gg`h;FSg&Wdhb+R!n|=UVl|&|_k`s_%Hn<aQc_(NOHGQ5cQG
zXd*EA`|I>MS;I?EzoXPFj8<W^4uiOP7%c>7DQId(iOe=(B!-a^Mrs%?!EYyMlA!J|
zJObR8-E9Tnl<pm+_5vphIzj013Y->3dKkV^NxuLc!gxO2&xskLyXC)B;*J6@=qPm(
z!0IS<38QNmJ;Ue~#uH(*t?0=Q<8ntSD~#+gwse$o!gw-_gB_(@(Isbck*k~FkeL_8
z{fZuff-uPM9!8-66*@)5dW2C#w^#HKH|-?#4x>*PuZFQOjJ{lDT++xeMupKYjQ(Lr
zVGIaka2P|v(GNNYhQSvhgTi=9bjf*|Hh=4zRV|i$tco8R#;`C(2tApdqOVW-c9MpN
zae8^q_COJpbIRy2#)L67jAz4mCXBIR3_b66)pCssW4us1QLHkdlQcm9zT|6sykHWy
z5Jvf~zGV}VsCG&ib9P6+$T}^I>0!)fH;gwsNza8bgH8@(=U08X*32-l#{WVXvjiZA
zugOQ8^1a(hdXe&Q5xhhnc9Q0XF)xgl!?-c8PusdK(pSRhc)M_Z7z?=c*rX1tGS5|W
z9qA-p=_GwQtzc0YuZ3ZTVTG|cjMu}E!%)J}PhH;#<E=2>rv7mB<72iZ0_;0lur!Qi
z0>2YRrA(=1rbLqnih1I$_oC#~g9U0B8k3yi$dq*95F?C07+oqRP<YL^Io$QxDz46%
z(v(bT;>vV83@41`VZ0xXz8(&R5fNsD!<e?k#}-_fUJ}NlOzB-g-xHMGGadZ&#)>dj
zhOsIPzD-!#HD+}fAB3ZyX7ZJ1wXgdw^!WBxbscK#S{uf?FmCO^?LAl@#)dGuZ${x}
zY~&eddaS|FHP{r!$4tU^ap+xq62|5*E=F)Ef=}sTW?ck5BiI_oXUyJ6^qa}s!q^_h
z;fvm!2tE(vi!jPYP%eTUVSE|JA7Pvc<EwB~a(@`#F{T24E$BCba%h(Ty9M1N=(l0)
zEgjt_z}5M=-wSXgjI7#j&iaAf6!(vUc|g#Ef*zth0-UJmrPxnl91Y``;G7hc%%8(J
zF7Pj<oD*RTPm8MkwUl!zjNeM}X#su@Bk8MdlsOy5pG-3zfl=<iSS9??iI>AT7e@2Z
zZnpCR{2j)HQqDyIE``x_xQ_x?#4fH1wbx2l`A2|%1-&ll_KV(|3|W|e5}SKla31g~
zP`ct>!MP{seL?>dL;K!}i4oDEe;$dTjKHxEIknw!5j@o`mIjxPph5)R2z(J#jNs7-
znnchvf=Uroj-Y1bfBUK;CRUH2ssP+<d;|#sS1Z-Y6>F4YJ5xdgwIZk;K^;=R`|L$;
zT`}6ARHmK)j|o~|&|j<8XedA<L1|uN0Y2|j__(m7T?FkTXcj^92wFt2d6b)<rc<n?
zpsh-0wHBaF1c?F+9qFe`Qt7B$0FR(;BjBPOO^#q~rj$a>qum(gCQgmu;|U&igD>X#
zBj`W_BFNyZ6n9z#LvOk1gk6~uyB&q9&JlEppi=~#o+&s4)ZA6zEJ4|QLV#}NJO7+1
zWk*0tW^N>Ue7>qugF3qjfxHNxiyD(Ja6tsGPfMp*chN13phtwCA*RTq+@$39ir|e1
z-i)Ak1brgt8$rJa#z!zAg8mUm5e%Wh5e$gn`BDCX5xhOD2N(M0#oVVNcshc`r+W{I
z;QV+`*ADK%qDv0(un2}nFeZX$A{Y_DNUomZ9?eyfeWN0{KP&f(PSG@Gm;7<R_1;jq
z#@GnP2{8_lc{WpeWt4kj1d}3oA%a;EOpf5-jVjMZFfGD&UhXM^P8D=hFlBlKGduZa
z(9Q^wfA0NU1T=$S)(HRP!`_(@<j%^a<)kl0Fgt?z5iE#cP6RJS@cW$Hxe>f9@}yo`
zHHtMajtb8n?wc3ED?$~uoemYe8o}x}a$gsc3nN$*!D|sdQZp*NxD@ms<zAoRC+E7q
z+7jXRPnd5JyhZOturz{Y5jYWqB6uf);s~?|^ayr$aLW;F>XNKRpa}gZ^%yGoaJ;A8
zqcv79&NaAG3XF9J1m#eW#w^ZdHM1f(^JXrGZ06)Iy$Qk*L?T!j!Kw&KB6wF!SuWIm
zcB9IW<GtUDAa<0W>HWT7Qrijv?q^D?BlsYK4H0aNU`+%c3jVqXm@|)EtFo5Gd2||U
z9qIZAz8D=%X3`CZy|m=e=(LZx7V|%Xx|h7@ERjS0rx9$4;D-o)Wc`oevj}!^%Momg
zL~G#Z)DuDGoZRiAORyt?FC*9)!PoTgl3f1c<Esefj&@U+l<gZPSem=Sv*}DrcK1Z^
zt(f~=1h?NU+RGy#y2PBaKLR#aXNmax2==T`_l}GP=m0Y+f<NfJ2oCWaMes`mCn7i!
z!A}t!;}K(VTV8ZDf>*O*yLOg1Wlg0Tue_4$O>>V+_8pJl>Z`c~C+T+KrPG22D@PCG
zsR(|f8O6EhtO9nKguiq9qx}6lOJ^haQ@HWGIG+A7X@7~#KPR$<r?Qik@^=ImSSS6}
zXfxZ`&eG)wu25kK_Ltyl1lJ-MRuZjX|3vU_1no-Dz694JxDi2o2@*<hGlE+z(Iu!@
zg4+??VZ=)iSAx3{+>78r1TiJi5}o^RmHRw;zx8JOk8vO8A$X(&WyI*qouxO%x_KTm
z%oI{q<FX}q<E@zTV(D@v;L#(KW=tO$oA-Lmqb2AtJGZi!TS>?apPO5y1jU`Ds$%H;
zs5A;xD?#-VG%7*k64WR`%@Wir!DA&r3G9EX(5gBms8xd6LQnepMdS<`99LI#X~s9f
z6msg9pg{>53g&4&X7i{tGRtjD{~;9Dqy$Y%(7FU|O7M6Inw6lX5c_qkyLk!LRIJfL
zbXRni)Em*|TG2)SRFO{fUiN5>DSAv|30x&eDv6d9F8AVlMeY)KN<a|jk9OJGmcV`4
zOORZGloI5XAio5uCGeJ@a|ybXz*mBCTl=M#Afp8Tho<WQkD_?rNN7?*eGw4Bf(2YI
z3V3%M38AEr9+HqOU_%j96!`&yNSC4@MG;g~P`vGTw<R=Dq)1Ufu+aphqf!+RR6zW{
zJN$i~dA{eJZ@!tG`P$Cy-tLCQ;W|fsZ|C76qWY&^OueNEEp?^BI|n-K3i8B}E)LZ9
zw_uMbDxOW@1Tv!j38g0`I|WvElQW~piu$LU>?m@?P`#qq-A!iU;4D)!lJcV{h@x*4
z{h}z0q9}^8DEdTEEC%T<C=bU0SxQ8;R8a1e&UBN@qadw_`dO5KMW#6>`c3_#csPp3
zqIf)tr-W}jLWc|ovW9ngRB#wyT-UNWerRyLPek!#6azW<ErEIT1j<A)D2l;RJWXGU
zVpf!2VB}v8g3m`WRE+SfphE<GPIRpEzb-FCF)WG+QB0&7qZl5=m?&P3Vnh^QOv`>z
z(2;_&dcf;4>OVZ1b`+S2kxitW$=E374T`Xgi(>qLm`#(Sm>k8lD5gj8N)%H>$Eku=
z?Jl>QoXrtfE?%tnY7{&QhngY4Ym9|w0_4o3Gk5n-%@1^!XGh_L8qSU4jVLxni|0iB
z(<nh!clpgI9_=nK>Kq^@ogc*lDj|xcQM?_+J5hdX74JpyZWP}(4nI({+ob`aDdLRq
zzOeWQQ7nr3TiJ|D^%h6*VHD9Qlqf!mVu@JJ$HapJR1pCub7WpNsTzeQ)?!C7uDh&9
zVMP&(!Vp!?-~12EnwOokI6p4>CdAU_b(cTxE_3aU7{QIg6M&LrE~C#sm-1N@t0_!(
zjpDQJ^2#Vaq1%K5Y}(OXX5LuEVBZ=1G>Tuk%d2(<KNqcAqu3V3nkd#ru}*Nlh++d5
zSXQ`RRGXT`9Ask@o1^&B*Q7rt%fH>_ul~bZ1mLi@^pM%awOl<Lr2ECffgMqN!w6N7
zr{LQtzGL!H&{)CuQT!0awJ83HVrLY)qBs=AVTMu^duUUxy;EQ>ec;_HKSr^Sih9XE
z(X;FqCWu_9H-Avz@K~SulMp@_1vjg#9*N>;6sH+PQ5=in)2G6}MDc4B$D=qAg*+%s
z4$IG6(b#MPyIbgF6sLrq@9!bA`tX?ScVEvw8^yUOE=KW36u(i!J>>I(68uizcs-lo
zw`lPNzqOcNbV-B^qw+5SE(`i6PX|mRw*>x<;tF%DlBDb_rOeeR`uC7~{IARPDE^J2
zx`G;te@3XHAW89k<|a~+AF3)~-s1+Kn&9tTSf7fmsi2mEx(ezkxLHA(l2lvacVT>O
za6?r`L7gW;H|+}Y)cMTiddUhJD(F8Un*-KY@b?Fu8Ymbt-LEFi$o}D6u!+KnA)p{d
zK~n{{D7Z@;tC^V6tqNKS&|J_K3fu#wJP^xm3R)}t_jspPqKP}h%kL-MuHX*E-zAdI
za;Fez-Z{`l!QBe(QE;z<=6}_b6x^pk9TaFMXj=s=tX{pZ%l!(TpPlWO9`cI8f%Zb4
zO%Et|P(fHhX9YZ8cTn(<f}nyQ7i4!7w3DFE@ORTw0eVhI@wa3wz9u<C1w9n>R4`^m
zL8`AbbQSpH_dA^o1=1CCQ~Yzp!X^zUz}0nE@W{E~#=WJJ!+{J1*$R3o$W)Le7E9(A
zM@sLQo1G)7@?>B6uk?_Uo(|+IC{Qp{!RrbN6%;9WLBTKu#R_`U5DFevP@<qzL4^XD
z(^%B0Oac3rE9fHtISYHpOMCd|l)gfsp8|5W^pM%a@>!_iBMKf>@C?<f;4uY{D|kY|
zlL{|QSNpwdXn>d%yB9uMjdY-b!3v&M&}v%tQwjzNKt8Km?(0IpR)Qf4o>MSX^u76n
zZ)MWw>0>8KBbWS>^{CDb|EFL$C#hhHf)NTvDtKAJSOqUCIM~C_y`vS3qB0Ma{?<b#
zt=?09iF#I0_DtaU&H>VK#GL~Z6ilR{I|s&#>K#4hNeU(_*oe@CL!}hx+*9`DI|rsJ
zn5N)0Ax0*xIbC#oRm8{*$DZ-u_)N>Q6wFqzO2MZJ<|vp;zfzznctgRPRHK6Tn2vhN
z^As#l@V0`tM0LKP<PS{`aqqF=T<{$QscP}N3ci|@%_`~pbZiAn6nsoQEBJjwmk$+u
zq+qeYtUlgTzT<6Qn0QoAIr<-85rFg#wU|x10z-kPpi+S;v>j6rS6~S|y{B(?rj&#N
zM{wwtHjmiZ-!L#PToE9YS*l=}f)zp!eixyf<%+*uf4OtRm4eSMp9rvIPWERCRx8**
zC3DW58-A`}t%7w5)`+8|JeT6>#aEsVtXJ@b;1D-@C4220|JTqa1)CKtj|8?W_>wwN
z@HIVoOm?EDyhXuQ1=|!5bF*|_Y$MsFOl<I&6LwJTA9VVLrvL@tG5L$Zdt9o=jIBN$
zVA=L;$}R=F71WQRK@58o>}A?9aGQZ273@>cPeXqV`xP8e@Q#XiRs2MMV@RsVQE^DY
zVFk@pG*@v%!BGWORNSQEn1bU9E-1LD;Dmyo6`WCUmJ8_~{)IV2!6|05MC4aN_idHx
z%t<*-OPy>t`tGdrkA*09Rd0Mw!Ea<T*?u9p$a=C{xb+U{)Xr+>=~t^H{ww|u1(y_D
zQE*j3PC|<A2whh2Cl%XMZrUUDFQ!}u*9M8zeR3czJN24^e-!*Hg!lH8f0>hVU0^m*
zj3Ye#xl~m}l8SmNl2uewQC&qX6*sF$ozsW{HB{VHHMgdUlUig&w{UZ0)mBkQMO_u_
z%W;k*hreCkfRb}NHz23JiUz7bhg(!MRQVxMG*JN+&khJRRzdlJ4YK<6Od+_@y{QVP
zaTZHNi|~kKwoq}aiU(D6P|;GwZ7S|l(N;w(6|Gg=$@!=lnO^^P6%#G#4nZ$<Pkku8
z0jq6P+^yoJ13CB5K*%B|<*&SHH|O6gCh&Vt`I;-WQ*pnFwN-;DDkK%_d#2V@BkfgG
zn4v@6eH>6hI?Rgn@0t35io8Zy<abojNktc`Ma4rZf+{+5bv;u<D#9G?Y)<DoS<=$T
zpCbxLe;QHn!t9g?Jx72v6<t;IRFR<~T}3w)-Bt8Z@yK?mMuvQ}NBzvYS?$&|KC(fo
zJEzfu@yOJU4cL^aB1^^PV<p6m+(<SL=SCjLOwHw#RE(e!ROG8DP*Kjwt0+`aq@qm4
z;(b!Fir%#8o@%93-AhF$HwNfPB?7<NGsRilD8o(fqvDzI#q;EVo)nZ-^i}bcia{#+
zspzj_fQlzne7sV6nDbQeD354LkL;Ho6AFJ^<<kc;t7Q6C$dG?&Tll1kfhq{dA!X^D
zA@8Xg98Be_7($0pQ6f0cs915ZFwd5rQ}H|vy0G|vbg+apRK*J_hN-ySmIm4qIRqm%
z`FOaBnXU3#78f#PUQ{tk#cL{Ns2ELitC*x>vKV2Eig7B&3;eRmpK|`N9D#I#ifsuW
zOypWNNzL};49SoQUQsbc#dNy#$b8ysD!pQ9WEzK^R7|^9wI#a2t18wVEBQGdqRdPc
zudA4=;tdt^4(7~KF<Zs5y`i<?1}t+_H0{uU{HYo8n<}gfd7g^5RIJ%55zl9@+w$I4
zvFbaCWdVoHkO|0S>p~UpsrW<1B^B?h_&~*G6<?}YL{nOlqC%x{ReY%8BNa<%9Tibd
zyKdIP4bpZs!p9b#S}j%V2$2rX2x}^I6)RPIqQX#NGSF1GoRW%|ii8SV#hbHA;woBv
zBOP@@BM$m>ZKc#YDW8Y?eplF2LC#XHPQ}!vp-L6U_vMgJ=5iH{mxflT*h2?)LXT7g
zuAc0=O2wy)1uja(XDY6)mNIr#`&@w4bkVd_a@H_#PKPr`q<p(kTCd^@6&o4j;RdUh
zM(Xk9&&)-eBsLA&AZ_Atf9)z|q>z5al%nDQ1B#lNld_ejRPnWn-!kM^D?{5=>`?K&
ziXT+$TPl5{;#(Epan(wM0^yiM%Cfh1{!SIURP0spql(=s-aeAEhuWx>zWH2EolJR5
z{VWP^J1Xr{v7chK^V?<0Ju~I2hy4)_GWo0cnI5j<Fq1!z*tYN(b5ys&qYReip+{z<
z5R-nhH|MyD6Lh4E6!J-br5|#(Dt=dSO2ugvXK8}=>1XJQ87WO;A=>NBojGfFhR+E;
zn^--s;)05c^r%><Xn)QJmj5V9|4cb~LzBUo;ma!iRC(nJVGVz&_*=y-8k%XiLWQfS
zt)Y&FYbySsN;Oo|a9zc}DynF>NkfYjQgKF@gT!}*`GiYV4O<c5;P>*WoLH#320rOi
zQ$sBcH8gy=S{l}(^qxe7bD&K5<(!)}-yvVll<N{`XsDr)hGY$I%}lAUq0^O|{zoL@
zdfBNB1e02AtRdF6VN(sae;;n50UBl$`T}eshxEHWxy?B-4fkrePs1adq+2!Iq2W#q
zEj8Sxfj-kpLu-z}?mbgj9XPJf_3kOh3sZ?FAC>OXaJPngG!VBDl!LsRDZ6#EC~)Y2
z)K)_~4FL@)8b;19xnD!#GpW4>Ni2uY9BtYr9l0y8bZO`T4G(JQ$hBx-mCO!8IP;)H
zv4=FIR?VGQGe5{ht(RW%LVRjz+tN^H4G|4_8uB%Cp^S!}8ZtDbY3Qn<hvqwHx`u8V
zx@*||U6_SB{4T=>k(#ATnh5u+4D~`*riNY`a!8Str6F5@+%3}BJvq5zw%(p<g{vjU
z^@R&G6ly5dP^O_sL$QXVS95x6er!%&Eq%8<^xnT+$te+hyIy)94doinZ<YFLsL&v@
zdsdih{Pju+7f70RQ|{bdVGjN<4Z#)Z$k*|xhQ~Dg$W>@~T;mh3ct^v#8lKSbq=s=C
z#%ma;;VBLO(=c4aAPs{xJg4D#4Nq%$M#D>SX^7_Ud3qESvOLQ{cIDWa^5oP)Hua4~
zhH7|0!!RLp&+!trp1UPT$*r042%1d8Xbz&`MGd1gTsoGUX@`DX-I%AFffsVK9`ZK;
zV>G<1iH(63dHoY<tiU&9CJ@u>G|bd6iSD6cnuh6|vlZHTM0!QT6b;`G3{0$=GF8L;
zt<vuOxom24GUrtduW8u0C6YHVKzdJhYO@a;zph~xeVdXRW^0(E;SCLMYIwVD{#-F8
zM_~6enKJ3={ka@xo*0%Vf(09rIn)9Q(_OPuDaqrKF4XXzhE*Cq)$qQC59nPQ;u;od
zSgb+Q@ZCP?Lk%Bkhzh)fUQ{RjV+LuKywH?R@AJ>alu<OO45EEGa~BuAG`eW;QAyWe
zXfQQYRs_cP30MM<PZ<g%G}z?O)ipRgTvC3UeUeM3t($(TTbRYuKw5jBv`oWt4J+v|
zJ?j5FI+@HB)Z1erg0B0dPlQ-eMHf~-)392@7A6)ApKDk{1!~x&VXcOB8a}+ca6P>`
zD|Otb(#_9==TA!iLc<0PUtiB8^9MPj^JZx?GmnO^7_eCl9?eRn7@H>LrQVw*r)A08
zD6HWJ4LdbVy_U0G!#5hf)v!aune@~rH%ntTOI3f&`A)QcPlwNvw|6fek|lGHhSzg;
zQFROu4ZS-wphLFKPwke`fc(8=rl(HJlJ{#kz~rOjE*(E<IH;kDj+=BG(r{SAISs#Q
zIKqI^xG}~l4aYPb*YJymU%5If=L7}bEB#sEW?JOSU?Hn=a+s8b0;h$*84YIzU`O(A
z8kx+d#aZ(23{Pfq4OcZ>&~Q=1WetC7_=DD;S8(}Y&LvuBm9#la{y8Ugb=}gxMD^8J
z<Zl6%6a{Bxq}TZ+=bDCpnE5sQtHE2;h{9YfDVr$c{++Y9ZfR8=NjjS9xJ5@b9o2Qz
z(NR}N4IMRg)Y5UY?#Jx$EP4E)lEHhV9!;}q>v+C-7McAHgvqI=BUwj79gTE<OG##Z
z9SsDg@Wt6Fa~ft5G}h5X2Xs{a+m%d;jms#E++9e}Oh<Da%WCAe*3m-8tvXuixHDUB
zspB?I;9?#(NVT$M(s-THL&;eKt(<e;g>TpKzga1F=>DFHAe7B7j^S<{={maUxJSpm
zIy&g+sN+5zZFStQL(<Vs$MiAD+;YG0aifk+3RB!jdmRBCDLNj|{XO~j>0xcDRI_o`
zgPcb9Ft^;q<Wsnlj)!z~(UGbnsDlDw9i4T|-Q6X`12rk+HhcQsP(;UtHiaCA_~TZ2
zX*$;T33Syla_RpMPQU@X>*%4QmyR4Af1Rk&Q}+{Brj85&*nR8KoGcyL%)J|ue>yDf
z?@@obE3IA9C|AdfT{)H`y>vB~pg>2V4qJz#qew@wj!8Nu>*%ecM8|V9mX1;#WjdbF
z@uZGEI?8qQ*YU893LV^f_0`c&hphX1Hf~^eu6#0E<{oVJq9UKe3FvrC$KyIq?9TO_
zp)i$a)s>my0aSQSVde<`bX+kvWuT6ybUaPd>!|ugGB*i>bbQt=b+DkZ*(t=_E<UUK
z`-dSqxS4!6CJ}QBI#kCCRFRGsbqr(oO@ZM$M$p7MKF&z5wO%5nr1w}TX?K`(l#bCl
z#_AZS<0TzqvgI*4UKU`h<3A=$I`$iB$(0)8b^Oq@bfTaWbiAIC@<z7IrcwK)g;la%
z(J@8G0v&Jbn5tu%jyHA8qm$@(mBKn^>3EF_*D;gJUoK5JEY<v4iga%<U|kcbybDkL
zvvu(7KZkBWmpjDYq><$AsmH$d*Y$=Do>-lWIdAFsc~-UB*#WgrAhu1KPm5>~f_HSh
zt3%bH>8L$Cd7+N?b$p=v`?2?Qa9haj*&>}^g2NK(LC1%*-Q}E*bnNfgfSU(CL(RQn
z$8RNWBcqJsSV-ZV5BU2!j=-%&I4i8{Fm+fu3>|qJB<`I^V>;qGXhiOj5<2d%B6I^*
z>4D_9Iy^3xb7r*aSgK=(j&B&DI+p9$sAH3k6*^YxSfgXDj!$%~qKWBCI$Ey?eX8S~
z)zYtC=&$d?J3o{7^W^L%>2n?2iddgWi=EIqMud(H4AteKF9e^U@97%+6+;<fs&2E6
zFR2IWR>xO5`tA;IVfy_iliQ>hcZCVsE)9LHW4rD@Z@zD5n7W#mQ9=C1dg)t^spBB!
z>0`9Jj=eg5)Ui{?E**QA*49hAna{^0uU{787LJdc^HKB*>!ja$hRNi^>HDZ*9S0bm
z$oh#hc|B#X8M)Vz=6WISkq$FwZjz4ZILZu=74DFfa!ki@`t9RYUb-!>PmfeBTV|Nh
z^uOr%mBI$9891rq6f=X4i#kqInU$e4I?mF#PAIf4`J9elOzAf!TdH@PRMl)mCG5%y
zpJ$h~zS2nl&~Zt}bshgQig$)D>-by86&-&vfzV7lbJ^uxHNwZ<uj;s_;~x=d+3TeT
zwo7cy$xI>beQV*I`6X2haJOI8z)c2D?N4Se_ARR7KaXGCKn(*;4cua&rh!@p>KkZa
z;AR804gZ<?dIl(2$MB=LuE9%W5vpZ*ekwt-0UnNSNnFytu%Us*2AUZDF1nHEMLx^K
z4gRrU;8iEob*a>hgTy30nBT%ca|3MU50K_Rgt=k9)xd%dg->UNTN!9=-~$tjOx$kZ
z4g<eZr3UUaaF>DU9Lhi&19uyE(!f9i_i%v*at!1exX(aa0}%sV474+Fzk!YhIvJ1*
zv^Vfaw%ox$z(9(D2Mj#Oq1H(a<&5>&@_Hje{A0Epmoo^)wJiK-o%E1_pn;Hqu#hD4
z@paP9R(UhiQae*iz5HI}tmv7ZY9P%(PXieSx*Fj1x9$dd7)Uozk)2v?jns{fvBtj;
z*D~F&Qh@wS16c-o8K|m9vW39%KlAch7S{YTk1}U3=TRolK)wOlKwkp|1_}-IF;Gqo
z8z?r=+dzo{?h_c!v(m$)r3P+n3CgHmOX3EA`v=kij#Ob_%j%@XBa<I!=3lzGHl;~F
z0}mT`#PB!0{S9z?%uVd01|Bmoz`zp*>THXU$=1h(4EMC$&~htV@7El<{Zj@8iKC1+
zFxbG;21XeeZQvOL&l-5az%T<t3_NFGsDV5)f{gml8~Ay4qs?{GPu`s0|7ywFpQQU{
z*8iUYf)NHr8W?Wiw;v^z>b3JpU*uvVg<D1!wQHWmYcekxm^v|ijDeSF@r3kn-7Ido
zzwO!}b7uXq2F4k<-m&n387W-d1WwGrBm<M#MND$X*rZnsZ2eri|5J$<W~Ue+rQ|fx
zO2EsruNjzOV7-Aa49qm}x&gz0NtGIyO`kNd$iN(GY`gT9f%yjJ8hFFNn+E1_K5^;R
zZeccMWu_9ay1>BOba(>`4ZK5ti${26ugT|)2@1M}N#8T@z8H;r09M&+!iBuW20k>P
z7*Gv7v_|^Kz!C!=3rw%LtCt)VPBrLz|DrLg4XXt;1G)iTNhXIfoqNgm^bJ@BVg^<j
z_|!n$K*GQ>1IrEA1{?|-@W|=ffJ#`f%~uFZCF56UBO?(yS394ao}Wr9IFrtWD-C>N
zfY+`mOdXQ)O7)^;(r47e$(%K`pn=r}J~wb}XU^q{E_+Vq5M-u@*BO}bTmypEtqYa(
z@CG^(J<Y%_1DhD>JEZLfb{N=f;7bEv(M4$^1KSwg$8x2S`J_EZ<`3v4Ur8;TKRe}X
zuIM|7%x?_vdfj&hzBll#z^pQ?Iwl1fP1mk>{y_v3!EOV4Xln!eh0o+2FWJjm0A!xb
z;mkQ<(gOy5GH}GeQCbRF2Wimq@F7NhFZrvcS%*cH9OF~zn1SQ;sMj0)Or0MsIl(zM
z&05q;etEaVj&+-6{lcLR=8$>Hz-a>=OmsAH#=uzv{~D-b;+%noO!5XU($x+8&H)$a
zjPN2Swn*m<kn#jHY){@F2L3egmw`(RaN4VG*3rrkFR8KVZ%)9BTr=>G09ORPD(Fw1
zbe;MfQ^ZRyQ%-ixnvudwE;pH|YT_0X%}gYjsAi&piH0Vs6Q?z}*+gv<HB8hbEeSpT
zb540qYAq8t06z~=$3#67$tLOwCOOijJeK+<#>_~eFgfg4e@t>C6HQFO#D(_)jZM^9
zC*`k|3cgL|X@X~vrlx;d-_;|fxrr7g+L~x*;#LzaP26eXE)%zzXvLgw;tn3sl3H&T
z#q_Ve@GUgtkn(!PwQ)&pOx$haKF-ID40S^HnBWfNUO}_6!`zVYG{nu@;mXMUCM46p
z?h!EY>d(3T{>`Bp+nZ3T<`Sfsc);|pkWhf-K@%%_$u%}holHDrVt|P!Oax7YOyru(
zU<jM&Y@(})bQ2M(^sl@$Hf@o*2z;oQoGRu({*_+x-v^~`Cc2x*HqpyO4-@X|DLqYO
znCP9_Sal*iS(B4#BFn^6D?-!~H$2bn4Ce?%QCIX6rdfh~69pz@6MeZB6GbLUOq7}^
z7E9~R@jp-Emi6Ac`Gb~5xEm=m(Z@u&$(tRR(5RFPoV{Oq&5Kmc3UkcI+|bJhl7DzJ
zzaJHNTi#<P`kQ#zMC%;+5fhJ^;NF$H)){U(H?FN`rf@(1xCvHy?e0kv15J!FF`9EW
zG04R8CWe|AY+_oq+-FQYYvO4WZMI3g=Jvyd+#x2sg!CNE+O{D#%)DexJN~>OnU3*-
ziT{}xZerom&@dBUU#+-B4va7{(!}aj{`KunJp%iz97?`O^~wQ)m*{dPW|^36;$;(K
zc~BG6O^h=!-ozvmlWD9Rc><fhktUM!cMg9Mblx2%c*VpNlYxV>9GSlw$mEX#{y<o_
zTVnN96R&ZNCT5!c4~H8a*-HIW%<fhGI_Fs>>%|;-j)}P@7MOV3#2ehDESKIiG0*fb
zq4P5PI-VL#|M$*(6V{2G8<)-J<jC)sc-O@Hrhh4Z*$!!;iJ!lb-ZR1L@D$_qc3!x<
z#S5Kysc5l@4^7-}L9+0Xi6tg}HF46!$0njCzA&+Y-b)+NS52%mp_$N4@F(PQliy*7
z$>TC)OziAgF(oO?qUFeO6A2o^M5PJaghN*}@y=0c`bvp(^7YJVH|4&2KJT^K`AbbS
z^(5X8T4wTQhqNX~?(Ir5nw0Wt2{)@ZWrja7vC71!rhoqB=Vm@L{cXnQCf3ku0#DN-
zSNBMBrZ!n?Vx5V%ij!8Yl-dofLgsqLdtvH;gtXDbCOWx^!zMPH_>vkk@q>x4Ol&c+
z!^AgSk%?_4x-@FcJ2E`P*Ypq*+r=Ts;dX)t;tt_kD(B|>@8}6ygoAUF&}df5P7}LK
z>@%_7#BLLNO#H|UHm%89yO>>ZVYl?&f_mIM?8%XLpUELUxZUR*F!2)up>EbediYOL
z)?I~^kKb8%+o9Yew6BR{jN+zQ9reg@)4x>mv&o%2PS6?Zq_fm*m!FYZ_*ag6a--BR
zS3YIpw23MfZnAL3#90%6n7G9JZ{jz0r<+9zquuJ;(*wK;ab-&Jc}`3W+b&nW$Sjd7
zv+z`V*~FhF{x)%ixy8hgTzN{a?BvROdZu(ZmV4F2H52{%h5n&$$0M6^W#UGArR#$E
zuTa<V2O7N5HMOdRBnx#drdCw5P~F1K76NvthUMS1r8R3>zD;l34z6YS_f>gw`LS!6
zwJng=v2Zw7CP=nW-$Dxuw_0dmp`nGw7MfUC`lHmy@^2RNqT=s$(g|RpsfA`7%EH7t
z{x!z_YZ~8T;YzNY^<xgJH<+WYWwx|%n}xeA++(4Yh1M4Cv~ZV&KetP_Tl~@L?-SZK
z%St4tFF925mlt{XjTAPuvGBr{;CeYge6NN3gnT;-Z7q;#T&OYa_QI}@XH)pt>y66N
ziraI&7T&P%riBy>4_GL-P+{Rg3mq(ETFA1{(LyH+sTR^KT>XuA!K8;Qelr~*3t<Zp
z3)iccB2Q)@bha?yK+e;Bx)4*Wi-lDg;a{qkcD0c1D_QDcp__%?F{!(#J~bk_F7Gw(
zsdnq|<enDBukg=k8KQ~zT(T|n;^zY?Pb*l+wNPN8(87wC|9dUZ0zWQzW|wsTCO?1j
zCm2toMHb%a5%7}3yh_7riRJ&cV(BA5sf98DiudK*;GgT<K(^4=!YB))E%dX{pZ2ow
zjD?3SJYwMq3r|{jl*6uR{5V%<VGnNvTNv29@WzdvrAH-hC%CB?XyGXu_n<V`@^ADE
zvcOZr_?an`=lviGH$EagYhj3m|5+Gr;W-P>(^$0W<e*v};1wQ*&rmLEt<-W;fR})V
zSzxMf+N_Z0f)N(B*2{WnY%&)$(!z_J*s@TwNyVfuSr}vC6$?`=yli2tSl~pVnQ;~-
zi0XJjc{2Ui3sL7(*CY#*EwIWvTzl3vA!n+EX%=Q$c-_Ku%TL0uQ57FG;+@1-MRnNj
z@C<rgQa+m=Jt)nxFxvuid#4W@Gq=yNFxT>LlCqU~`v#b2;Vlb4`U}B)3k&EE7CyE3
zYCF7RL9w86Vip!!SZwjqG2XNAzJ*0BZ5w_-XB$(r?x4iq>{Ksto5RxcIjJ96Si;b#
z3`H$`Y@y2b2DKVxv6VNH^7{oSFz-Z;W<j@LTW~BG7EB8X;Z&BOF$-~ed!9VRl}PDM
zRaW@7j|q5*#<lo<KP;!4S*T<P)2yqdWy0&|Y{YxL2;Y@Q;gyzu8Q~K#CYfxyG00~Y
zR?}V<wpsYx!Ws)3Eo`C=880zO-!82eU>!B^Q6F9v{KCQp2HK1iHnD6j4{R0!-z=BD
z65vbf`JnG+<ZSt`>1zwyE&O0%r-dCBzOnEvU5>#kZfSAz!#xi#&~XdL3pn3f;4X;O
zT^4rJhb`>2{Ht@^1#vHQL+rMP8e}c3N3s1D4p_Km;U5b>SvY9nl!en44l&(XI7Ta5
zxKyX+5#gUl>0{rAL%-*6bJDF_aqhRtCoKGI;TH?;V|^HmzgqrA<)*(1Pck}c=J(nd
z7@wR@aK^$}3x9AZ3+F8SX5qYr3rth{bN|;bRLczg&XC_C5u{(qyT}xjoKC<(=4GZe
z3x8Soo5`mlkkL5n6Dy}#n?g2S5xuT*l8bX#W#P{AI$hmD%@}IMP$h<&V&KieYJyf3
zG)d5|EwU&-PLHs)dd$yPHDdl8w$>`WIR;+Jt4n4KwPXGsyG{(n-%D*a_%|83ul~JS
zKCj&+$8ck_-7tnmF%-s86i4G2n#8aqhL2-Fj29}=Er#wf+!8~x7y>b*#L&7>Y97Pg
zG29bFix_T=p=AuWksrhDoI{?>SBZYtBG4*^<!`0%wbiWN5kqKU>76nEEu-a`<#&lH
zIc)^ENxYEf-WcwW`EUEVPf&ukF|_*+^Ie@%41A|edqD}Z`-LBf;X#fNqp$iMJH+r%
z3~!CdAnqtQodiuASazXKN-%~ml0&sWPGW0k!B34LA^<sE1b8k_PK)t9?cuJ15~Rn_
zb3qb84}us*#V|UCj2JS7{9x)ZhU^&1V(1e?uNZO!zc=+j{@8*+2o}eX7el__7f{bJ
ze4drkwXgpsq9TD=C1&BfnoEROX$({I<OvsQ+~AkT&^LyDF;v7LQ{fYnInUVnl3Fcl
zQlNhf56AF`&~5DDvPZ=Tlws3jF+AVX|L)u4f;k|DCj=npNdX4N@YH{tK{0%g=f9`u
z=@_1g;n^79|LJRWB-b^s+H)~1%aez3z!-+c@PcS+{J5{`+^D~n{|SNNf{qZBOm=xO
zh8kOQGV>d=`ce#IVwf4j>oL3>!`K*JiD60%<6;;e!^9XS#V~=MFV^+7m`v*>Nt6GZ
zVVhN<oNWJ#X;TH~RY9ly*E*e=8CH$0uf;G!FukmL$Ave}64ke2m><LJ80LuTTtVNA
z;SB-!`6~8hnJ21~jzx$U#CTH1!WiBb%<9b>zau~@-#!$>`_xzri(<HzCsQFeroC7Q
zd>F$=G1ScPmCw@f!%#`j!1jMDqA@5jREwi}9BK?&3_D}k6@wmw5yRRT*2Q3o5h`O?
z8iN%>EQUC}%PO~Ha70srD_zuQK}FbQwC2lHl*hxp+vrlRL_X;<hF%P-V)!(M*Nlu6
zF?=FAu8iUD7Fl^c{f`5(oSW=B$!E0h>f$vqtfr&(41VxP_;ar7k#L`3UDmznYkR%u
zyCH^+j374E@13_KNy?Wu#jrVs?J?|N+}&3Gr4ZW|!&fnE5ghj2$^?=pHR>1sbWFw9
zLSTAkfXDrY%M^ouAH%nTuWgQeCjbrcg8)B09A@0@=AS=fI2*&c81}~SV+==PI2yw~
zA;Uu)5MaNcG{H|X927Bfh<R*@AMA%kQ#jMN#jzNU$8b_`PB4>PZ$jqJjEiGk2!4s-
zSJA{5j?EO)I~BueX1VghGeX0ZAtwDThTmiOGlsunI3L4>7%q#B7YXM3;e08EKLls$
zBVlD#<n~9xv<u^iO@A}D#PClH*JF5dP!{KWRY<bwngAWg;a?{IxF3C0<G4wHka&C8
z4Vo0k4L4)1s}V=dINHY1E{<Ap+#E-PI2y)LJMJgjdT}JjQ74Xq7J<5gLniUb0*RpO
zeW)KtM!wAS*oetLj+SxU7Dtmf5XYxmtK2HOG>zkyIGV+=q+=O-)n1ZxzGpc>^El@A
zNogS{tAAc^K-wyf)^Xe&$31a8(I(|~LGO%XTfTHh9R2g<QTa0YcL{zQLHU8jH}d6s
z<FNAm{BxgJFJ*}Dk3)(hPjFamA4f2bP#l3cQpk++sw`Um80-|s3orP(?I5b;bQIwD
zsPu>8(7yCzdFbBY#HTXCarESp<LDd*s}VuF2+C?|9BBe~{g0C#M>m1H|HtVe00+#B
zBP)(vF}M8dh1qfRieva^ell!4Hkc!Dd}RhXT^_4PW_}#y*?y8Kh@-4n;>XU4<LDj7
zcX50lM@bx|am<V3Ew;wdCyxJd1a^s|f?A5>$vEUV`ijFn8b`nXbn-|XNBf5R$MLWL
z9DifJ%#5^x=SQ9b;&@z0jyhE`KmdMPl>C8lJRSGXbi_{y{-8Jp|2O6<hbx|m<5_ZY
zq#<z(rOx@9xE$%ZIGz{G1Nr{@<yc;bV^|!o?(kE}rF?lr93$iWC5vfsycowQF(93P
zbew-H@(=e)9An~mnL3PPQXKW4N*^1?I2z@<2nyt#Jp<$8m>_yRSRm76{5U4TWUjZm
z#O}o8Orbv)$jo@;Oy|+#m_sLw<2B)~Gevj0;tWx3BsZvbz3}xoX2mf(ju|5}o-L4R
zAll^(>Uoj>AwN!o^vyVi{9B)3ejE$pSQE$EINs(UaX4|lRE_WF$3o_9dQ=?m#qoX|
zA2BH6_<%lND6uSxV{dkq8+dUXAI9--YLHb@@;{CvN^|5&-#%WA%TeN3S|AyP(wRI-
zk0Ym76)TQd90p~km9dy{OfHZKC>D>SYQAKPE(zv@9Er>?wgySPI4Z@GSFx4uR9?YY
zTN%f)IF`q;A`Zsa`vvm(Y2{BANVhCW`h<&WlQOkf+H$?gr*V81$I1f#tEQ{t_?$5~
zKV^Eeq~3RifBGnCT^#G<{<r_O#qot0XLB51itZZ(-6-fLL8r;#uPC-P$g)L%ZwlnC
z0^Hos=YJgskFq_E9b*39i0Zctfjh$+=cllV$NeFWolHRqv`S!C9J}NAn{E@w9x67D
z<8hpb`=9OmF^+?A9E#(Y0(oB?`vvoWpg+aIZ~sw-bm0>J6Ml!|NPRebgwY`cjtSbT
zP_A0&f4}c%dTFV2HjZ-~EskGBwc{h{C*wF3$LTma70N}0GG)#P%ql;T`CA;n)9!`x
zpK+Y0KX(dUjN^|uE(px(vxRc%n(!r2y&T7sLiq;MIU31+v(aDwNnVZPS{&69sGh(-
zab%ZBCky2&30xQWUs|?MzBax5>q7aa1eTOZRTHRDBqs@aWAGXY)J$MZvlJvyD}kF6
zXplg|1ZpQxNAT+>F#eX5x(OtUYQ2PiUSJ{f!^Sn)k!97R;YJAzsLWt#l0f4GChaLF
zZdoMr>y`vf6S#%5DwUcg&?13b1#T|rjb7BGFE0k^TqL(n;PwQv639;Ajs)&ZAe=zw
z1nx?pO#*=gQWCg3;h*5zCeSW{djw|n-UP~u<oiT5|8T|q0!V^BSL7!ymiD5`&&oWI
zz=H{NO5mXccC-rBie+?2_=%#U5IDEpf7yO8fvH7uC;^`1SUpvgbh1_G{USM%K$ir1
zCXkUpY658qbWfm10+mH_*95vH@K)b2ak}8NDDYp`PtNZ4^`AKw`Km}}_2yzJGXVm&
z(hm<6$-NT11c&kjDiX*|ATNR0tx`%7$WNevn%NvIPWU;HU->B%^DIhW(5leoBAF9Q
zE|z=KM#Xa5V!4z`NT84Co?R?+5Ppe?R8F9;==d;c0z-=B{t17FPcXe$-caa&MEDWL
z&iNVyk0#K6ax%ey1fHP&m!k7hesCNEIXxG$i>G+>1YU74#lheNo=)In8&Mn2B=Bqk
zUnj7ghe+VL1QsXoArF+m&;(vh;I#x^NMKk36B3x1!2c2$&efGjFDEb}fsqM}N?>#X
z9Trs~^F`4Vnvg{NQUV_o%VPxRV2MP|!?p5A$0jf?!Kb{EO6$twMeF)!GRS9{L>DTN
zrX(;~@Lv&>{PiPJrY0~=RHrAv(rG}5e9{>S%uL|D1l~{J^#o=mFh79>RAvHm5|~HJ
zie7UCeKUbK1Xxil-#FsOkNH!*aiDJn^KBvUE(1pZwsP7F#RAV2^EHnt<a{8S29K&n
zyhyBt;3LK?-@}u@3hFk2Xo5FWd_^gOS_#AwP!rHZRTtDuz!0ETZ+||V05ujD96JF=
zfP|p83jvo3&!|U9R=f6=D@D^%L6-^25!%cuUzxxsqPjVORSA5Wz&cU=Owi90SR=q{
zS~jEJq&vc-9Ft{j0<t*J`UJiZw%CxsMj@P0>I<-JVnjdd+w02&zG6U?N?Q_qhy#=)
zbE{C)4dGF}<sAup!;rUezm0Db_>L*dMr|A4C-6f8XA(G@z)mLr1P&)~B!S%t>`CC4
zD_svHus4Ap8CInk`vhHdSLv9N@Z6FxIr{~NVl_%KeoEjV12X}=ID;JT?UMba8AlU1
zmcXwGK562QcAT^<<L3m}bb?GV$S(pAZ#@#E%qbyxS}<9?!9171ZwdUFz+Vacp1}D8
zE(?JRobchGRucY0%;chAvU=&iF>_8!!=7r-!T)9wNT7<1n`~T7;2LA9Ap9>q^KAM*
z%&45w+4S*&;3oxPg0)2%JzF-UKvf$_HmcjGVdLMtj9C|?YPR3yl)&W$;hHwC3@xr@
zV}5UWb0GL#Sq7_hY}B=Jn~hdB>e<Mt%xq|*k&R><(+V=`+i1X6zAU^nqwO#0R7GPO
zO>Ep^qnQoZc%&$U>TPP{jp7VqD&flE;K$9|H@DHk#;u%8Ne0)*CK{rpjbUXOEEP*L
zTibj%2yJYfF3I3Q@33*FIQp34jO%3?9N{h-#GJ$3Htw-O&b^#WYOt-q_X$c}9W2Or
zv3*do(cZ?hHip=|<$)9%#Ws4|c)-SkHhS8~u+hOrM;l#iq}u3Y;~^Vi8=Y+gZNwQG
z`QZ?odWVPQhqs)KU}#Z<hwB?!_F>VN?Sil8g;(c=xsWs)={CCA=xPh+p$-oRy9?Yy
ztc4y$uOt1uB%Em@i;J?6YlB+Kw!sm4k#kz2GU;6l&q;YUUOo~muu*8^y(7VVf}=s_
zNU+1vU^G8mBw7a)h2Ja+m)Iz^@i296qs&Gh8|5}CY;bN5f0#u2MQ>TQ(bq;lX6gL!
zg+sv=&li(&*dP11?{E8Fef3E2Q5%oh7%VzIZexIrr)&(O8x(|}u<@jgfi^xb4)5(P
z-?1$7)U_hDBCouC@T&{b=2H@@y;?Tmv7V+THy1r4G)B!lXXAMrui2PkW2lW6Y>cuo
zS{!1SjsMvgZew5FE^YF|BW#SM+K&fcv~l0D;FRM*(xXR%^N$9fJ{o+9Mz=B1#w0G>
z##k}JcyX-K-r-ff!{cl$l!7$Y1kuEq&{&ggykcW2J=Vq)M$LV}^S$Ly3d1802RZZp
z4+f{xK!<~`+91A|AD-o9R-ctMlOr$|Y%H)b%f@W_u#Gou%%LHkY&2J>i*`)T${^+1
zouk2dHr`@L9u3}HBD0!)EJ*scjdyIkZ{q_S?{az^t$lFQfF^W!21UP<(tBL#;h=IT
zxX8w08z0$NV&g;MUG?(A_m;?Xvm554vvFy}iVfAqiw?H`d%woXQ`q6ZN?_P9ZS1kJ
z*M?;yW@9ytMF+N#u;JOLv|-zDY-Em#q>PGOzLxgh_8Q}MNv@6h8yn@E?z)tcFGW_^
zSZQN>x6)-cmeU{J&1>;kQTs)Cd0zPJi0n^ntg`XLxX7nAKC^LsbmaCQq=8d|m%f)e
zUr1YHW37!XHnuVfO5}AmzOb>u#<+7`)-&_G7{Tvp8*OZ|ab|qvD;jZZWHVKLAoL}t
z>V&`8DV^FM8nZvt;%s=`l;AcSU)%VO>7DbT748Xr!#EvKEq82W2lLE~{0sX+-`e1z
zyByA1J1+8rjh%Gbv5{T$*m051y>N?erF}}|+Xe=9Q|#S>dhZncNM|FqaoNUx8wYIs
zYU8AhpKKhoan!~!8;5KhwsE9)`VpRGPIpzO1vx_I9mQ>`HhjKBKF&1Kt@MPApLvu=
zi<S(i_R6dILuTav!b87QKuOY5jCUKq+4$YYy|)&hv2oVMIcjWFWR@GAQX;>bDBgXh
z>rd|%oVRg-No-r_58D03{EIdwyd1gjQri0^^70b7`sK7OCGwv({<2ZcL3IazGf`8M
zHmW$dYU7%Xe`p1Uc3#=%(}F)t3*I#@!czWy&L}T@xI|`oa!lkV2UQ&;IlivuP6=+j
zv-rUYk*D9utKp!ggE|iCIv98+T+6}D4r&YhM~Qr~S@Dp9bV{Zz&a3BuOG|w_ufBum
zI|a!O=s9$ulxe|ZqYD~2XzU=<L6(Ci4&Wf*AjLsb2e&x5)4^R1nmK6hpe4s~uvN`y
z;b48=vRfVOeI;0{RGzZ4xN}b9-|BR0<=}P)cQ_z!Ehxp<ijiF!PY-fYzmJKuanRO5
zI|p|=xW~c0Vlv-(;rkqrKKO6iBd5FWsGVEwbl3YGNMhzxd(tk6OK49$94l^FDnH=h
zK?e~BT^w|9(9uE2LD=D|6$)0~THMLOLk@xt{`w>BhrEXL?N0S`ANoDOX>@iF+bOmG
zBkfY#5UV}^NK19l%|UkuX%4zNASc~H&a~jYALli^lva5ujmPcb_`#ClV9b#Go{k?u
z9P{Q50ftYugI*3EcJK&$2^$qSD0GnPAdjPs?2_-`gIkMfJC3mJy}Tj^#SSVQ$PQ-w
zp4QtznS(ww;-f_+4oV$7AI)Q-R_6`Lr&E=axiq6gsZ8zlb<mIIC`s?{VBO`kmMx0&
zO65QLrr&uutDr^kqYfT(@Qj0J9X#$}fP*LL4Aj^ziIMw+gF#OC({~D(9G;?mrv(Q)
z*m!U8AP01+CQCCa?<uBQo_6s1JCS2!BSRcK=U}*l5uB2Pp$_K%nKq0Amddk6M}|F{
z{(^%E|D<tU|8sEO4YSZ{dnQCia=;5E-L9p@j`+?zO5{4GyU`9_5_rsioR=Mp{SS{5
zV7#Cc1fA$$(toX!9VlI^a1eelZYpEP!8Hfd987ok|75(zg*ezmeL9%QT<XB&Djdvm
zu+YJK4rV);!}&W{z`4=QS_I~iUn;-h;7zWgRBrS_7cW*oKACR`f#Dl-?kG=D>Ngnt
zYu?)q-l6u|hIm)&T?Z>lWlFwJvr;p$f~bSH>Ni;A;6n!=IsC6UF7hr|seEx==Oqq0
z#|moJ34KftnOi~Jetrs%r8rO-Q}a{E;ZPd&yfH_2kTE}nz@m#fSmoeT2XO}p2bB(%
zI<V>LX`wsMckvuJ0=t5qFO|vXI7Mwk%f#eYGA)$J%Q;oYzZ1uqY-{abQ>Dx&LV(Ns
z%)x30YaFa~(7sIm>%p?mMH5%Yl~Qt@gAHPQ4!+*O7Y-JETu#h!R?V#-*zDj-2ge*7
zckq>iEe`fDAuvBU*v6q8d@lz4+Cl4a_?D)0u!BjaOn#zF{>JgI0A!V>P`w14B#-!m
zgIx~Bm-*`5NsG^|AlNN9)D@5Zql0}84mvnQZI{XW9UKrdTvO&>AK;XJqClB^u}nV9
z#C5(4yB~FML`;L#CVgZhIf={@4t{oU*1<Ukzc5JWR-B}+Dw2K`lA$^w9{LnhN}UkP
zX$NQi!?-o@n}gpO<_<2??HP=(SGgd1aagYFqJuv~l~!)tp^VHwMfGn7R|NP=40U5}
znH|blsLX#H@Z-oyE~>dcxbEOz!6B~V;wHhYD(Gv2tDJ9Kzq;%Hi|I}mce$wHqNeNr
zvALFu#x9zOrkh>VcCjckOtCsH>I!B(7s&$Dclo9Qe}o2t5;SzNZLj~A#U3YWkn$hN
z6>rwNMYQrCTulYIzmMEZfaWe*xc)ytZgp{+;Iwr8|LqKYy9z10w-U_OE^Zg#4ng@J
zX*RWSakq<f7u{Uk<KkWy54i}sxX(pf7XcS3F50>N?QFhZqvwjy{Vtl%NIA}DhYv{Y
zU6iL3{&7g+I1jjZ(8bc^((ym#P^^QCj;{aQdf)88;~N8=TzvFhm{rn{i?EA2d!$qs
zBezSPT|`{}pKlvup<_=}89FDWi{L-GN=g&_DSM=@>=Kinjz_w?=)uXj$aBHJzV~#I
z?SfBb9yW6_Tx9Zp+b;MtrSX&h$L6mpy7UsQ6v%P;)M^g@8=vo@z(tvhZ@PsGUA(YQ
z>g}S$^&iA85=SX^!3pzlr7jxO%I8yZ^J}Ho`!k2QkBeDfB=a%4au=n2WRB3+ML!p}
zcxdLKzl(=mY~sXdeHV|q_>il1@fZi>LR?I8F~G$WF8=3YxQiz_B^S@Qc-F;pedOtV
z<fmK=;)JQXqoG&VXFTnquw~ie=4HgK{&{E!#auk^VyKH~A9+E&!r?0-Yx?+a=6}J(
zFfM;<aJQ(Y4ND;&K{dJ<>tdXX7hQ~U@v_T5_yzfD^wBQP&+hUPm3dQe_KENqQROG7
z$gF4{nm9i&o>MIi@KyH9>*xN}N1i}cl*<H@UA*GrO&9ZAOmQ*Q#Y`8kyO`#peYyN-
zx%{e&>9j(*%)${~qgRNpz0Yv5rb_VpLj|*3%yu!?#Tzb0m&<d@<vA{TJ?*~)p0DVq
z@Dnu(S04#Ykjvh3G2g|zE*6SGvRdXYV8^+Ew_O})S~hb{mv^}2H5uf*$0$48<pai-
zi}zjV<?`q|LTk!>%`A4Yt6V-?E^|z-ZV6-7#VQw{Qim=S7mf?ph3Z0c5pxlzMfO(F
zU9_r@4K7m+Rj-go{~9q}SoCLsQ=5hobbt!^9yMeOMeSM;peBb@$exQz7b{$RP$4gM
z(dA^ta$esHc3CDct5YjvF7~}^53O{utU_k_M3{T<_Pozrtah>1#X1+CQ(Z2OSID)m
zKE!VX96J%I^-jju74mvceqPEKE;hLQ2a8O+(Z%ALzD-xY+Xb>r{H2SpTwHQ-*~JzY
zTV4F*;vn;hi?3bmq(W%2Zh`G={V3@N7dsdWg7dA5?_Jz+tj2eu+Fq6^#<Djp{hI;R
z#!d<BraMgu>=Tq=j{tjJ{77p~32aXbleu3o5Bw*yLThly#bGhvDHlgv9CdMmL2)I(
zGGbNIvH$RKT6t6%nLi8RUtIjkNSEd5V}mE@RAYnrQ_DkB0;gS^adFngITsg1-``yR
zH>SbwE>gda%$XD+9U#l+nZ$Y*v&sQ43b8)~{p#<mKVAGqcbyWb@8NG3SD2YS)bViD
z#WfezJ=E~<57q0Us^=@}UpoJ)#_{rS6%VA{CPi-YKqhgmNs%NE)jX^n`~OuoB~1y`
z^l-C>f++#wS{`Okj1X}CPaP<(>!F?)cK?8CoLjPo&*x_}eW=O0(t4~m@X*jhBM)qC
z;sKsN&&ERj^rQ$U(^PN@4>cJjs?9yL@K98V;!51=p{0ji9(H@U%|j~>lRQlJ(AvZ8
z9!fowdAP&FogUIWboFqThc+C|L%_rI;gP#N+~eV1PH#kn)%!fOrR30*`#pH8%j^G=
z*3Luki46(H%CaPyQU_&IAjQK29y)n=$isskI(VqkFDs)<N~1y9^F~A-_%*Gghk3Gm
zYo}0<U_>PBp|gjO!0M?qav~nOcsSobE7imNjv?h_8tL|w-qP?0ndu(7dC2jQ>!G`c
z9v-qhEFB){>G|K$etKw1riToH-<?@O&hWA%G6}Lhq~0Iu#YL3_K3bGRP9BZoq0mD`
zmy~=D#j$z>MFd=$hY}Cw6UoosAEM-_vLw>t@}$;%vt~Y#+{Z(?ho?O}<6-OC4i(Jy
z9v&807PPO2egdenOo2x{JnG>I4^Il_V}cIw@VEeLh0LzI@+diw8tW7q<YBOfr$j56
zf%auLH2m9|q|%`&&w3c*VT6Z~9-i~?yob7NL;v$I)WZuNsMuj17Cm0=+gpn{=hmGX
z-}Yc{GB1?`hI{DvPxU<$8@}jal!vh%#!-6@hDLjM$-@|G`$}~xr%!p3b|&qWPs1;J
zAc%DgjrTCY!$i)lqL519usq`VNPU9fgS}tzFonAEV0oD8VVZ|`JuIXbd3e>so3yOw
ze|!2h4>Rey)K$N%8Nv#8pGq4)A~MUvTn}$BE<DWfK+bMiJ}JutgUgdR?HRFpq;GL)
zBO?pAgprZ?!bSPrYJSH0ZNVY)9bt3=n)^Kui#>ek;eDD(SpNgjx=7GlAI|#7!xDit
z4<CDodQd%l^Gy}5h*a@#L)BMgnG1Y-azkARv(*p)edQR#-@|GKtcQdLn@;Fq8FR>*
zBuB`2g1R(TS<<Y>s}+xkRMNFZL~{SB&L~*!;S&$5Jgo4rr)mnzN)J+B`N;=+tL=JU
z=otFc!)Mgwwd%CpeJ9g0`pRpVSUha<u-U^p4@Xa>ZSb%lr$Niw!Sx=#V7%83vW&mK
z^sC{KjdYAeJr)l2B^}AbHV?#K3A)9D+*fAxYY*E!eCzS2J<3m}?Vu8P+-ud>{+h<>
zz|%hc-op<b&YVfx>4DDhd({-qhm@{D<{l4wJ)~6PflB=7VV{Spl}M_@evj{c#YqpR
zgdTqKaD;Of_@IYF9uCt9`(;t3j51P|V;+tR0j3MC`h<s{J^Vtkcs-izSK%|y^p#mC
ze4118@D~;C;jD*qT$hK7G@OT(r_z3B0-<RljZ0&`62|q<I@iAU)rk!k4UhamM}4K?
zWe=AaCc`6-Jy?4D{@#Cj_@iBDX}i$epVO`|`Fps|tWM=@3S1LY`iCL#L^2b|^OGCi
zm@UmpP^A(#Rr;BS9Z9QIqIxBoR^paQq(5G*MkVT0qHZN>R-#s=pUs#{Z?5!{YVArt
zn({|RNb6N1xf1m&(SSpZj8NxXK8?uOZ&-;&m1tb~|DHhoH>vbJ3YGX}Rd{k=`TTI-
z;hR;Wc_rFZ;_gbcVDhg-t4g%4#JtmKEi3syXFo;!A5+%>9aZtY0|5m!^be3Gh$3aP
zD+ozUfKZY^Hq-#&(L?XO_aePWv(XWdUU%QVy8GTfnlu3$f`A~1SSf;tqVWIT<ezhX
z=ghh1dw1^KxpU{v-LSm9GiGK<&dzJ!Ti?s78bGxGI(Eyb9>C`_OSYU5%S7?2;BXbp
z<dm!tz#9R0#Oi7WP%GemF4PIQQB<1~)k!Qqt7Nr$Zme?1;O~pY3rTMP{kmj)DE6o>
z*BC&`oQ^F6cq@SV0W=gc4FX6YUtrx#Obp=d0FnbpB4<{~GF>w|?~AKAyCj|PcmEbV
zENADGoIkfzqW~Jyt725M0GbETL}1R|G=P0##t}Ud(*(0c0O<i_1aQ2I#I0dt*C4TF
znF06%$f8)@7Ig5o7K>^l2A)bTO@(Zq<Q8flKz0BJ12_~w2RbK!B>^lApi=-j0SpLW
zU;v#1aIPli2HgMMmICNP5J0y8dIZojfbIdDDC2#v8nPZf*Lqkx&-mnC0kj-gjNc?I
z+U#Rjl@wp^0Qv;bH-I{2y?=L+`U!A_%ek7|UtqoxHYk9>0gMS?Yyf4ZBn%1Q+mi_+
z1RWZ{umFY!@M{?_|4Cb>tJLOP!pHzdiQdrxuu-`BeJ|;_0LBL}H-LEoOc1Ij1u!{)
ziCp{D<mbOhSdi(N62MeGW|pbbRq8a;eSL_AO$%VUFlL6JGX*7omH@K_ofE)2`TPlU
zyz>L7G%aC401N5H=R9Ag6i@3aamkAUSWM@1m1ynQt`e0j3*g-Vb_B39faL+K2;dXp
zPu{D$lBXts_qoP`o>g?+O7H3bmUWd*UP$;LfRe?09|f=`fDZ%M(^U$0mEPRtInh;G
z8^F2%)(2S4#>*MGgbl*5zq?A`ca=5<K)OlL&4PX`=oUe@2Cz*4&PcKCVh6kK%;6VA
zyTo4a3t)c$y8~#`B!OQe><M5mo&0Y7xNcJIHEA`vNpov^4g^5Z^SeaSKmfr2z6{_i
z2IL&CEa>q7LIEfNsA8pB06I_lYA@e7q7owjGk|aa#9UWI7_X{{@#(SL5i7tSR-kb=
zi7iT#1U{V4IU>MOL5~S~akuwVt|EYwOe6EW=K?q%z^MRE2XH2U&x8SI#T0G3Ndvn{
zH@3PSE0pbB&k7g;Ogo-HA99<%2w>xXZr9fVTwuNmqC^ni1aL8cTLJti9C9gu?*h2S
zkmE-{09OK-(oMP=K>xMAw^n+Id1LaI-(+16VEf#h?*q7z7ind^H<>vLxsmn*KT7-_
z;^p0>gSz*206zurcL4tc@N)pa1n_47j~ML%{1(8j8D&=0bPvw&Jnx?->|W=)!(?(W
z?XI8%_X4;t@E`e{2LU`3n6prTWB&@^u~>eCvR<WxkDOoAyibG~F9i`7#J>!}I~o5m
z1GJT%2JkF^nBf1vPxV|71q3cAXsn=x1T8EmU$5HHO(K0hh$4bhRL~dldtVfwtDYF`
zCVk#bDi*}GYG^gNBh4ro<S!OGR}G?C5T$}F7>F`KAc(R-H>-@;+pePD!{oqZQZ9({
zLDaA68vk+-^jif%2`UOuNzlqcRLSSRB0%W9I7aEKLA)MBjUcKA-8}Xh7qu*hs`!5F
z8$r~h<{%mb#Y;g!)DEH!$I6}QuA94)X8-GD^8^te1c6sjpP+9FT366|g1#jv#rRed
z_3vKmO9&z{h@ZMi)*9D%#%FR6DM2g>VQ~lzgJ=}QgCHIT(Kv`y##;~<gJ=>&(;!+0
z(I)7ArO+&hmI5>vG)>TSLD`!jKnp<&ba%f8$Q0NwXqKR@g6I;AV^`ZC+6A#Ch^;}i
z4<b8=NkL2w@=Jbn45ELKKY>A~Aaa7}9z>5II*Z|wJKVM8=LN+`OYey58bmk2sU&7x
zb3UPG5WRxv9Yi0&&kdsR;aCdS?=JEC4T8Rc-;awDLq>I%_TBLh6wKj4j0j>-5QBpl
z62#CThS8V>#g+(3e!atg@>9dQ8vc<%j0$3GkhPLrdqxX7Mo?-ahib<MF(HVFLGW(J
za?4V7be9h2&v>=FG$n|sK`aa6-5{m~F+GU+K`aPjMi4WDcqhnGmYBtT3}Q~uy?l^5
z{}jXHdPuc;xbB@N_%!L`opHC*GY-7xT__A#EGPvQ@mLATB|$6=;>HYj`Ar39c@Qgt
z_%Mi%f><f!R|oN)0ITS8A@hE|o)3cf{l_GZWt-STS`)<DAU5*U1hFoN^+IfepdX5X
z{VH@kQmPGw4PS}PT)yZ!Ai5^(NTh~sL3|R#u^^5Iu|0?#L4<-(g4h|vt|0aWv0n_?
zE$E&gKJ6jp?ebp1;Z=hNcr=2n*5W#!9ylbN9N-#zNLAnPKM`}uqBnZWwOkEC3&If`
zJqRO+NDx*KW{`EIFuGXmo=S-odP+ObCx>ge+s9_-4X5UsE~mni)|}{Y5Jv?6X#S>b
ze%gS&pE6ejaW07SL7Wr<r-L{nz^Qymh5;o%6HJ1$Jnuc-ef(T-zRu@=5yY24d=*41
z(My3<XR<Dc-uWWzFA4l(5Vr;RHi*kXToL$c5Z?>HQQrx0Er{y^^cUK02z)b$9|X7+
z#K`vU>6n^7*H40fCy1YeSS^^p1o5k2QtUTIg21O&<nWR0ZV>kb=f0qS<V(I?y~LkE
zJmPN3*e~O+ARhCi%gC1TcM$(D4a#^!#uKJ}W?dPjW&9V!(;%Lc@w|*@K|FccH{nuB
zEM;Ey#mFEoAY)HYsi2I^3O<6|RcVD}9PTL<7MwPpB^HrUR7MFI?0P}Qi!$P56qE6|
zM_kRdWnPleXIuscUhXONt>8liUvU|K_LSJDu%sA8P<KJ=GBO~evWzM+%F6D0r{x7L
zC!=^T$<s^vsl4xH85Lw`*E?4fU6ll;WdE0aq-?LqcvVJq+SW^|Dx;bZqX7eYNv{d~
zx{R-{ccvuAl2UU`8MS0ImXRu>wv0M5>dR<APFbHvhEK+uGOI}8;F_EddU?Gvx|H=1
zkp6DR)D>d&1bs_T^55wtCCEsWdEsDcLm5djwwCq1EhAaR!?Hd@w2yj81Sv8q4tF_)
z%J~|}AmyY@WHhDyGW<eeGr>=n@xYF0E>xw-;E;p8qzoDFmdI)$XiFLO%K6yH$&#_H
zN>XbXZ3Ji~D3zc4I;XABMkCvag%D6x2N@k@ERnHPMkg6LGDgc7BcrnnNk(58{U|J>
ztBme4ddPUMobN<0shjM+0L;c0dV9*~C8M{DTfL;aXA*N|ke(^$<LkZzeFUFfP6tna
z83SYtmN7&O9}{0@pa36~_YIQWcZLh*N<(D~lQBZZNIKu|A#*sRB3B}4AZXiMX_OEi
zCLYJi7$;+@jA?>7UdH@fX|jwXKJNq>)I3qfBmt;_kF<Y^SjAQjmoY=eY#DRJ*qMUP
zl2ITUQzRP0_oCNc@BEI8xzs6Rf#_{n&gbMx^JI_`FO;#pd(t8qi$yP$bC%nJewQnK
z(b2O^#`~O|+azPTj1@A-T*cvP+)6qvkXEOIr(hs$HBFN7Pp(v^x7*14P{v0xHp$q`
zu<R|Zk+Dw3df9y=dM(eO8ppB38w96iZ)u|pQock@$|*jU(Z9E}RmK(p$eGbw+Qxk>
z?D<4cg6%SP$k-`km*DJ?u~)|K{9fwkBgF_v5AYPoNC+V@ghMg{GJceCTSicZEaR+<
zb236Q6xv4T%TRedWmqz789IYjc3%RIFzpo0G6fC`{6;vL{EinBR;A_SQ9edx6rPa5
z=FkbfC4!^0b4bdkGET@iCgV6K>Mc>8N=Q%2I3?qZP<v>6##g<iyS=5;;*sDphJ7Dt
z$Cp{8=Vg2@;|34r_>3=Pd@18w8JA^zMJJET_*%vV=AS;&0yU0#=^GgrMUJ{KHY0ac
zTA2l{FELG3@DW@Q3Glk0S7m%Bz?*%f%s$dJfeF4BU|IzqRo#?P^<oAm{ej0p%ud|5
zkMxs_pJl{`P$-07Wc(`QU#4XlzsdMr#v`V28FzS~m_0;VW@f%8;}0eT8TSQeMjwex
zwkFXS(vSMM+4WEQt&c=g9}D}R2uuEEfXQI8r9Er~F67Kn<G8c~eWa%{VnS{Xf0k!_
z1s}WkSU@lfhTQzm$HE~z7s9I{R1e|#5Q>CQHRSrOXb3L|nJOW?7{W^-H*8)GAufbs
zA(R)7#X~3|K-myV3Q$JSQi7Hil%qHiDgK99E`+?^ACrr-tAd!Qq7bMgXyyE|6niCv
zlYJ!S{M%pWaQW3j;AVx#X1o@{>mj@uLfsH*gz!cPwP|?>HHEgDFZ;PowL&0e<D(~p
z_z=7y_yjYriwfzkd&_dzC`O0SGxb7vD}?$XH!x^C{nkKWJ~qDhTv7;chcGyVAt5A(
zkP<?>5Zd$a{}395kP$+Q5E_SA?GVjFNDHA^d>O`nlMtGQu-=nF+$@BdKJTqQ?r)rz
z9*QGP54lI_UcH<{oqR26e+aEYV3$9Hf2Ovk@Y|CzvO*|$K7~i7v)sA0kZ%)0TLI3e
zm#i`=gT2`ybO@nG2t7mS7(yq}+ckuzoNIhWP6(YtkV2R@KI2Ixe}%phL6?ww3`dO5
z=q7}_3tAwp747N8Pzj-L2>n9n%@one*GKfux{$+Oww`Ym?;paHWibOo7$mv|2-?Hv
z_P!QhhI(lH&=7`EEQF~c3=d&M2;)K+AHql>JUWCi0*qqFeH_byc^(@pn1jVnzb6RH
zuE`-x6nIhylhbmppGjcSI2dlnu4y4m4`EKo{WD-j2nl_qnF8+<e@k@eE6ob=dh|B4
z1syb^#5*C(4Y_}N%nM;rUui)I^FtWbS7M`vg<>q#5-;Ii&=m@LD_9o7yCM7=!hazw
z4`D?J$3i$B!b+~9wr6z+?+LJqrzSUsoLjwO-Vb4I2<t-lfR=~wkq}rD!ooJOY?P_e
zJci%HtQY)^A#4h<ppdIAuXnS+dqdbqlS0@c9=C?DT>uW;7Q!c7OKlGuhmh{zo(j$`
zL3azf=YM4Ohj1W-NC;L42L(Tv-+M@afS}YS3lIuH2|*Ru5L6RX7c_5D&TERta0q!T
zvc=<3LD?G(!4dedphxog6wcG|X$U7mxD>*-Jn|u&3gOETz6#-V2xme#7sB}vD@J-g
z6ZC8dKlO^?;~#?l*3|pCP}povnJ<I@yYdA1J=@nIToBA}LZCd2xhRD5hF=chN(etQ
zU59WrgzuPDc6ojZ;aUjSL%12j4<UR{N7eS+5VUd6(!_c67UQ9|=f@CkbAPwS<S_{-
zKuSG-#+9g1u=KAXJPhGaW~zdve+%LF{I%Z^;I5$e1ieoS1$ZDRO{E3~!=n%$hw!&x
z{v{@Tf2Zf45J=gc2+$-qCeQOvLwLp{rl7up7zG6sR8~+$K|uwv3Q8y_si2U8!U~Ej
zZsg3|68oHj=M@xD@L#VOK9WgLRKW`hD_FV$FAB+*1dS84n4m3smZor35yPbvlvYqy
zK{*9w6m;0>fsi4H%r28h2X2Wiukcm^R8;V?!m@;J+>%xjn1BML?0Q9vt)buz1yvPP
zQ}C+7T8^IT3SJXk#CaTo*SVZrcV}xVsHMQGz$avCEAR+VN5PA`JR`Y~U7q;=!EY+4
ztDv3&0<SQpac&F&+r3^f4HP6O$WYKiC`nY%R6#QZNebRpkgOm@fwj|<s-U5QMhY5>
z#}{&A$m}HCNR#p&n}{wln+sJ8o4-XUrYT5QSRvE(18GYInF?|gbXMS3kforVg7ykp
zDQ={-5tN{{0IxQWX{)%AnHPB3^ts}uj!t5Vj*1(TRLe$zJYPu)y3m=qF+CJ?6=Ia{
zCLBv`jHT|18&nkNDSCSe{dw`+M?qf&Lsbk@(NAH)I{c>KcLf6!3{+q%h$<MQU@&b{
zuw20q3M-hZU>X;wV7P*D3dSoKp<twf(KJ<Y?>`#FC_V2XU~6>UGnRW%-Yu`qn*vzM
zlHh*jtO<<RiNz)>n5bZq0`-+P#RADJ168z2))YGbs)rW`kWN=HL%{+C3l+>%FiXKZ
zT!jKw5}vJqWqjr+V5#Ier7~9D&16;KdGz*P&wK{kS&#aS-)`>XD`8jGCoWR>|6Iw7
z6)d5JRob+?p1qW7yqUdBfqBfs!kgRsN(8LVx<bK91v?b%RIp0HY6WW*tW$8Juk;>0
z$t_TD>eh2V^p&O`@O-G?BL!<{8*3Zh@Z4+Nu&?cD6qoVaiyhW0*g!iKY*E}7>Ne8s
zW(_wh*red4itbf76PkHh((}N6&sGK76nvtf#?#ERpL-r&%jAVkEZ$P>O0n%!-n3!q
zoRnP(b}LZmC<S|XvJ@QPJ}TI!;HO$8_tVIeN&i%LU$G-d*`It!K|sONzEVg*P{E?+
z4P^!4Z!!s1?oZ?mN|fOv?>y2J=n5hXW(CLAv@;a<LY%O`rULYnF3w6lTOxyRvKgB@
zmCf<89A&qCiH?H93cgbCwSprGjw<f0AD?rSg3Egn&oe@HByZbZ>bQbWg>&ei69Sy1
z_wqTX6`T?HGeOS^dM>~BOvw&Z!uQ{(`3nUsMfD}awR}d2mJKh^8?76D%efSMqu`=~
zOJdZ&y<<3$ub)JEMZr}CKPtGb;5!A^6x>ws1J8ax={lo2rS$i-ZHaH<{mdIYK3}+H
zV-GiNb4x+>quxPpwizCqM8J~N*Y|pUVh)rOe-ZR&L3v3KBl%YaA6|D0Cf`wTmuX5x
zZ58(v+~*dnh*R;0f(JYcDhjB0sNhcpj}`pQ^A+;&4ZueVeyx)Am!JgP@fSb${G;HB
zf`1wI*WJhe6tHeQ+fxSiJ{LU8=kU^>f+}KFj69Z7L`5MLg;hMSf+56;(>xTcZ2z3<
z*0<*}S-g>e1@nulc!9QYE)~J2=}r5m1|yzgDvGP9prWFR5-NBJPH7coRFq_9IO!>+
zB4c7(f(-{fP*GOJ%PPK&lrE>DN8gwlhmy;4l(?;fxJN(f><PD^StS*fRa95;nu;o_
zTYRsoifSreQPK1)f0pYRzCZa@)m<GctB+JYtQbbzwsphTRn$=N2A%dzq3-^M>^itF
zv8D>vl_Jm&rPfj5QIV~pgNk?+UKOb-nyB!pcvD4v6%ACkkZfHQ^;FF1C$S(NqrG|a
zhHt5S|A#+zh)YnBsG^bZRh^sJhj%4*iOWb*@wSR&6)99JCw5d>DBdmM-cUSpmm8~Y
z4q;=B>!vE2sqm}FQqf#Rnu-=GTB=B=lBd~4_a$ctz%u*ayx5ANm8rUgsUztP7j#Mc
zi|?8q_q0;cnqv<ow^Q+Zmo#H<avK$Gxt#rptR&2mQ{=Q)-NeGH%6RBHs_3Mmw~9V0
za#VDt^HuazA#vB5Bz0H$C3$ie6<t-gIA^Czo^IT}Yo1SE&Y(heF|+XqH$CR*#SlI0
zVapXDHP<by+E>Lu6@&OGpyEccR@}b+Dh4o|R`}S?ck#Z%WWL+;-YL&u6+=|_jujRd
zBpt3|go=wQE-?;Oj8d^r#eNl|Rg6)wk`7lfR>e3Kb5+b!F`kj2Vv35XDkiF!#Jz6O
zkZyT$(KA^D2CG$bE<R3EF<r%M?jV;&!%Ah$5_F~zdz{sfQA8&F!vf>HfaV=K<nJst
z7CE0!Z>w0UVwsA+_9reBbg_!fePR}g;4j~{;S%9n_Hy=jc}!HSP{A6=Y%H%$wLkB4
zuS}vbtGQkkn>d^TDn3xLR>e9MAFB9>@wV94d`~j3>EY!ITRNq#QQex`ygY(e@cdjn
zW4($E+?3`%7Czm`(AuBeMe&e+tnz|3>{PK!#a0#DRD7ahyReN{^@R^4FTd((v@e<W
z2JT>>9!#Vqy!C0f3Kl0{7TaO3iaiXru|D$oDak@!EO&W8#X*%{Tk)$W98wWbp{P)K
z%vH!dX!Or#9u_gSFMD`h9T)hY>S31CROl*96=4;I@CnQQ(^20U?(IAg6;(5mZ2B{h
z$g^XqxIDNJK~$XFU`Eo{O&T6iaa6^56`!j(#&aqH@{Ed4Rh&?9QU$%id%>7(=mg$O
zaZ1H$l|Q>k?z=OY?}{@fKjTSM@uXQp&iKJ@&p8$UopC|RWzQEXzNAa(y31~@^{<76
z7X)Pvq5L;_oJQ{0Z)qMAmj-CKqT;HG$146-@tulmJY_2GsJO1;dlf&a_?e-u;--pQ
zLc<RX#Y4%wwC<G)Nehp8cw^m<DsD5?Oli9;=;3um->mf(+3Vrje^K$Pir*-I&@<wM
zYXbr4UFL*f;-5m>Jr(zbi~dmYfXSa{<hX|iut&iJexjAQ>S1D`{~rnAzZfL4Tk7o}
zI)Q0i!*d!hwJi0oif1ZfH2lX5oZgV_DbIUuB0&L-H3|}AH5AfNPy=^?ZT%%r<4c}r
zLrc;aRuOz&LlF&en)~NRQ4KF>cu8|VM3#T=e^CP|Z(eX|(8DbzznF&N8cJv=siCxn
zc|}|8Ol??7<By}=&p2XM-X@c^{mW`7r=fv{1P$diysV*yhBq`+&`?pss~W0nsKg~`
zctt~1%`IYCMZ@(#GRw^ov%)9cSdF&r_LS)pL*?0rQu(nJ)6C1;CtuU>x`zF68En-a
zX4ceDOGCT{uZG$hU%N{7Xvm0q>Ih1(;#1EFabILgwwE`y_%yt!ftB;?YIsXSeGT=*
zW5digWU`zfFAAiu==?+tNgA5dlN#REkgOq9LlX@t8X5{mHP&$Wo0!(uJdMQTvlDIv
zvbG-m|N4W>uXImS&HenMTbc>*XOo8Mv`RykhE^I{XlSWnM$bgQ1{%r5W^%?op5S>;
zyS_0Wobj+L<&2wWHeF22mAq{=w9`=RFp3{Wdkxw2Z5S_y(LqB;4ZrI6O-CmUIT}9K
z@P&rX8YFI$hWQ%qmh*Pe&__dG4P7;K)4-BA-8EJrE8R;&4-G7m(^F7_cmH_q!+uh(
zkm;>q{ooV|_tVf{!)Og-Gz`!%P{U9S!!(@dd)J-f25A_~J&ne;{w|4}AsWaGew|26
zCh2euBZTlsK}QMt(kD6W8mnQPhDjPG)3-_9@q$id%xrBpLC}PLN!sQ@hnKXNqJbAu
zPp8u~Ox189sU+{7o~D5`$Uo{d{4&%xOT%n>d$5-mWY5v?j)tG6v=}why;!-_hWc~4
zinYa0^pkjB^8yVExjJ|^(m(L7n-jZ8!(t6f7!Mj&YFNb;m5}0ECM?tNeLv}424u?w
zw&mO}4Nv;HUAuqFTCL$d4Qoa3`x-tF;E)~5-VYhu`J>QZS|cz4yVh}P?nPnG2BxF_
zZZ(f{SCYuzq+zp$k2P%3plDDvY}K$$!#)kHA@hmmR-W0eVFzQrzf}8F%ud1IO)9`H
zK{p@HOz$rpTUz3uE6IDQ@Ng!_?$>ZY!$A#)Gz2sRg=Exh*Q38AAI*~KG{GVEor>9!
z?VHiTxBqwtO@prCh=!vY#`l*D4Pgxt4W_V!#;oWsSpx6rFF6`)PS-y<DkuR3*bY-e
zf43gaF%8ExT<$M@rr}c!CwPK1oYruXn^>nf1x982w2q!rLLuuEk#j}^nUp-M;T#YC
z@eX93=gDm&u~GO-4PR+!s-u~XuNf6gH9BhQ_=Z8qfYDJ<$0ZHlGE*@^I6IR+!Am87
z)Nob9cidbJH#A&h3Sxd6Ae{`vz1uQ%@bHXB{Uy?y8h&6RZQ*jN4v;Ed&bY<h@8fN7
zIpggC(rpdDuP**@yZ0vzF`Y{g{HozM4Sz8gu}i}p4G%T^$rxj%CEo6Rpy9p->qr*y
zA4~%C3laP;<>SgvV;%|NE(4^CbyLXsn|WTtQw{$J{u4pT|5t!X1EenXQbx=#M9ZJi
z5*-8y^;1?1kYaTd(g7W1brja|oQ~o;O6YiAM-d$-2S_jKU`45-I$qGxpnK;(yLYy`
zciuBVqW@pg@n+xBKMauKbdVMkl>CyqTZgKYj?y|POiT@BbbLOqBLN%v<#d$SQC%p1
zSw{sOuj-gOuVY0Wm2_0m@rqEA*thhv0a9fhq|}qAys8*QJ=JvdZ|f=~zrsL?;5E_p
zx}Y_Lh6V$rS~_aecpV8k>ge#$Y#nuV%v{n+sq0Cp<B8YNdZ6Uh;nOi}ptNM56shB>
zM<oNLw{%e82$c_%C|qC1)q&Dq1EoYAL*Y%)(NIT{j^yRBZ|m5)#>bW{K*@!%d~>Xk
z&imTXdv4D5lW9j*dQ)}8Rq{T5l-NYajE9NT&|F8Fj%_+GdPcgA3>{;1jMdRXM@t<!
zIy&pf)Zy3BMn_v6SvnSXPin2BR26S49Xn1Y6kJh?G;w61R|ZL6zSyLlj%*zrbdb|t
zh@}jYC|qk~p^k#tNyn0t32bT2V<jD3=tG@VgV0q+HywR+^wrT_M-Lr6b@bA4`B-w^
zES#5f@eRgYT2&&Et+&uW^|Qo&0&tdN*>O38qy{4k4b(A6$4DKcbPQ%7T}T*8-|845
zFcpp&<h~3!Ts)4@LCg8b##u%S{qGKvxCGAb8ChtYj`2E{>sX;<f{uwg-qA5v$0Qw-
zb;P{aVz!Pcj2|7dhxlgcIP-4IG<sOaxXEsApHBA<@a}JtIFkmfuTReB1HC5?r7TH{
zog;?t9wgmQ^3LO4Cwbo$biR%S0xYDv1Xv^}1r`gC@z}kseyPCAbnpstKC+R&QpYMC
zYjv#Cv0BG_I_@=2{7^`~uY=c@e?Z5k#X5r|XFxJPiTHW+k&ZQtqH^AmUnh{R*Resz
zCY|poq0XjOJ08UGX7-J``^mLsg}b7UxwL+<TXk#^YCYmUbnEwoR>|J&j0zp+bev}Z
z>)55k;xW{*TgM)r2pzJHy*l>keBBNkD*N{9yuP_JL1xvY13JE|<h?XV%B`PB&LJHS
z21x-P#wtEOhG@JFQ|EOIP{mj>Kd<c5bm+_*gC$~e3?0=5OKN3bgkqI_98M;IcS514
zz{hobs>9K7SUghTh>oK=@+2vIjAv@FL~ud~oaTlyPIPn>%u@mkA1r+)^e-4Jo&BGQ
zXzJ%WzTi3KS{PS4zS41#NuK#%#|377_70Xl9xQe8C$L2ZOLqrL&&(X+ZyD|UGfD7^
z50QR+r{fjQyDcSlZpUlP8$+a9I)2n~UB~x4l|!T(I&L!QaqUBRLwyPdQfBMbb_BO|
z{KR85MEaShz@I<?zU@FhRsEv#GIv+!?>g@2sBfZyiMtFE9j}@A;^*4;b^M{@eFGmD
zc%b7UQ-Og@1Aj8ibW}D_#lT-W9y4_tC~UazQT(mrUmgGH_=m~O?|C9<`2;C;a7yFe
zWu7vBGR}o$_f>^v4Uq~MC}<$oV2yh3h}Jn<HYBo)AxjtX@i_y}8z^C*q=6y^iW(>;
z22$+{23|Dql7ZSa5>wA6lkQU7N|<p%fVEzW8|aYkWvlVNuatq(2Fe*IZy-;gi~$&!
zk>%kmWyRD4fmeJl8>nDFnVwV001IqZG;r%?G9TGkf$jI^UKB`u#Xwa99s}_Psu_6I
z086UYFi@RSkL`G-OqtgWyk>x_d+u~5t3Iw7BC-1G8wP3`s6~Sf41CqC<a}s|RL8*T
zZeD`(VpF^Zd<GH?BvF-tx(4bSXkeh8SkzmB{#e4#Wj@-Nxbx2xE<8aP|BDz-55H|7
z*+3HmO%0?NXlUSzG;gXHNYF?;HWrkRTrVkI*UUh318D}*4Y$ZAZKgM<e@>6K83tMi
zC)2$}hDzk~jaI*bECZtqj5g59Kx+d%4D>Y6#z0#GIR-i#XlI~3x4=M0F+2Z&&n6h#
zk?m5MGRI#@>LmE5yLmf~OCyyGbTQCPFfVURTp<efb~QlE^|EyrUC$=P_A-!bV32{q
z26`LlV_<;T%Dx8r(b}#_tkuaVsyH@{H9Y$>R$EEjpn(Rj9r3Oag+qrJ7;0dcf#KZ2
zp%Qnh@ldH>*CcMr2m^ml?l@A+#X_LOorg+e42(4}*T6gj;|z>9Fx9{`0}~8P6q1t-
zT<@PY$zYN8&dQjy2}315(&j0mm$jP7pKf5LfmwnxgE2P76_{;cj)8X!uoiTKxC9o^
zqs=tq^+6eVtDbLQiGigC78qD)fG@W%GO%i>v{>vr_ij|TB!<B<1Mia0a5AvmzzW0t
z*U&<7h*laHu_2MW#=YZ)4vkBoi)hb#22PapbD|Fod}QD%jW@8yz*=fHU>I0OB?k5x
z*l%EifsF>X8rWvQn;>m6@G-+U)3e#Yj}6>>(tUR4EsWl`Qi~5r+c#AD#K3kc94hTK
zz{uHQU?+ir<3lAz(QdI9dqiAuQ+ftcY3hZIDYWX+;dTcM9Hf5?Oj;Rp$Uwk=Y@qls
zsdM)v{`>B)p;C~Rq<iNz_mUYB{`_T3+LB_4ssR>Q)&!@{Fv&C!HgLwkX9gmIdDOr$
z1C{}sk_H?he}o<`mdFU?Dh?YU;5j1RGP2Nd1D_f=MJBhYN81wyPBH)rWYOB0vl23f
zNnAB0J)Mew-ZYiFaMr*%17C7=JbIgO-oWQ#rF4{>5y#E_LPXcO^qj8^TrhCSz_$jz
zF>sMbX<S-f-D6gZeOMri39wFX+GPWe)4f*=5ML10T<N823^oH#4LmdOy@4AB?ijdh
z;HH7H#S?!taGSZyz)0pUv1(e#fc(k8&jx;F2nn%Y*fq9e?lAX6a|?bKk~Hkn<jyIg
z$oxG6_c=QaHt>fC*M~ex!aom~TgJL)mPS5e{^v>jDEZMnFP;DU?3_u%r1ytO{|JTu
zifDPlWH`Gs3*P=GCOt6B4VV}c1x%DN0TTsH#F~gRQOrak6NOFi{Jvn~ITPxItRg0g
zns{Dd9u1}r1}#%D(<bAAY3fB2FPZMgN9W-kPYsibn<!zT<DCvX0wqn9GTo1%(xw|5
zM@}Xb-I%y-dIEQo%(5oRnW$u<vWfC0UN%v|L`4%kBdh+(U^}v}5bIjATKG%r-3rWA
zOuS;Es)=eQei|mx11}7hSYMY3guSntuK&Nd-KIJ}I&Zg`H71Q8ps$;#AwEfo-!M^A
z;97##7PO9_9zo*;^$O|}^i4tQ3R+Llw*+0$(?^8~CK63-GO^i2l8LuXOfxavM6!t#
z6TMCJG11UOBNJUsbTiS|M5>7#6P-;oG4WA3Z%Y%ICYlP|%tUh&!E)X-6OqL+>^)iD
zn{I+ML(mq28lRT%n;1N}SkvKBC$4U|lx3ooiPk3Cm}twtAIf<<n0TRZLOVg*Q+auB
z_gda;0mvt&Oh+ME{k<~XhfBwrwU&ep-c2RDm>65j`)X>*zDr{$7GEQ!J3}IrnQNkl
ziJm5YF;jYpu`7m46NgK*bJE3PO$#OTHPO$+I1}Sd^fxiU#1L+!i9N%mfkOFUK?ezH
zEspX0oWZffObj<M+C-jJBSh~=6Q7my_LDOyFv`TAwY>zrYov^!ZFFpn6t?5TrSFDI
z6HH7oG1bIG6O&Aw>Xr6*xKw6@G?}qILYj5J)!-Z98rd$n^b8X-O)N37)Wj^Ygi#lZ
z%{4LG#2hj2JA#=$LfW&eI5%RR*pB%o7Kq-iUhkng-i0O>nIK?WOn!M6EHm-03A1d%
zM<$k=SYcwdiT6x=v#faFK;}vltAwh<HN9*_*0-f(&k@r5CMJxKJ`nUnL1`yBYfP-=
zf%+nDor(3dR@lE-&3v<tcY}$I+}6`MG>`OS9#s?PO?+-*tBGwUJ~iFHT0b$do%War
zlj-&DFmb@dK@&So>=K;a+!qsjP2?_%*)>9<%svzQMc06VDSUicP=Z6W#DrlYz$KWF
zg^Vg_$b>UOQUt9#FojqXe2&T-<SMzgvJfe!h?uZM*HII;08x%&kPJ+@G(tKoI2>}s
z1kK=(JbHhGbj-wYW`=<&MMt_up5PHM@o#BgpNH9}7$my)w23nWJZlfL&oO&+^bnlQ
z2hDSQ<a}Y`OGc52M<%{9@wJKXP24bXfqoPBiCp4NnP63=izZ$j=~f3~)tzrmTsCpV
zL|QRi6Otn<das)J&IAEl-q`D+YyHKTn<jp6PX~VGVzYg>n4?73k0x&OcvkeTtmsV}
zDN*y!+}4XR9M0lDznS>m#2+ShkCg5({6yEnk<vXnXQcF62VdQa-m|qk+&4kMsy=5%
zN)JptG;vedN&1(G#|()uUJT=J6aScq38O&RUD^{9Pfh$iQu^1#f5I59g-U1xd!OZ-
z(d1N2!7vJk@mv_OVf5+TxsafgA+9(|dR}NN5=LHiBl3$14of7x6h@rDWy2^IM)5Gp
zgwbe}R3eO$Va&RfQaX%MVb^&2<l9p*G=Mly51oK8R#x<Knd~hWcKt?Xg)l0H@p}Y!
zBB&Hb<uHEZV;EJ!cqNP_VJr=!Y8chR=ojX-M0hof>R~h}9N&n-->1A5Mx8J`VZ0tj
zjWFJhYx_nRwM17<LCKj`*;89|-8k5)%JLHNVR*wx2qQ5JU)U{aRX2=!VZ0f3zj__(
zcWXNnyv11rr@o*pb<P6j<TqVYYVa$*Bq|IeIqbgQ&PTSCuv@;H!yAT?$6?9q#$lv}
zF>ZQ^CSkM-qkR}n!)O*p^DriN@MZ`~kQT-d2Ro;8UwnxKEx4$%-j;$AWD4LHG%Ji&
z0<_NWZ4*XYforvEP2p^Tdxp`A{|gXC$1pkx4rj?Bb6)c5SYNMEQs*$Fd<|W=K!LmE
zbGi%AL(ow9SgOqxxK9|p1sJ>{nasXazPw$+*%VU##E+XYAdG>GoJA!Eg)xb%3uFIy
z@8B?o2rx8^VPWKq%^-7l7$d^i_;YPywvl0s5;CI&9V6&ix=w)cg6<T;69k?Z#yg`V
z4xAFk)G!{5lIDgnjoT6CJxBPfqIdeKm>FTr3?n>BS~p4}=lzqJv%<J2@EjrYj-YRK
z^s#qd81ute5XQnV77P9&M)+tcE*kq)8y^8>YLAwtpUhkq#=Bu03*&eg%fna^=I!VB
zDD2kSS}Eu%L1Qk&tQLU$_XK!9j1TfT0bVE>#@aBVVch@IyDp6NVb&@^AdC%kOBkPo
zu|14UVQl7*Ft&==2=^`YaXw(EjGdo+vvtBY!QtcXd&PIq`C;r0V_z7%!q^?gp8Q@)
zrkzZt7~6+SN^tx3hjB0rc}a-_l)2H^T9izMoPsn+ei&*P8V?A2cc(2nnXJ&6qSsbq
z`KX6sgc0FE4&%s@5+-}|=DN|C`l*D|^)1q5gTS`v;wVR~mrFh@z>zSH=5x|VOP_{u
zB8>0CxEAIu)i@Q#g)qM1e`z&JJT2&1CaclX8E*P$=`%s!8!ep+<2>_H7+)|it;+r?
zj4#7DFk0d$isb>~ufw1)!AsSWE{1VAj4NE``>~h8_%;kOuT@JTWxHx8UlknUuD#+;
zjFzs4-AXJ!hVea{mUBZ;f|~;T5XLP5u8)?;ydB0*Vf@Ua+QIva7&uW>jrdh?Sc2ec
zPMbSn+zn$!1T!PJM-T8=Mc|3x4+b-{XauDrco@c?VHAqsZ+IUuCd2qQjQ_%T%$%R;
zVf%-l0s`L%#N~0Gh{p$`rQ&0xr^FGQc$C4eXJN!d+)=!*;nicA1qGj7u@SUe(}DcL
zVwUFweO}Na5fqK!g$T^8-WMZyDS}6hlIm7^J}!b{5fqQ0<`{`x-Iu44Nl+q!k`cT;
zMk1e$!et^r#Qhh+>w=bz;N=J^L{LsVPMX}Yya200?)5+wBd8`GD@9N_f+_;PB52+%
zR8<A`kC9GP&T;<<5J7dpA%0DOE#l6U8WFr99%~9(OVHYa@?RMgj*q|_L7NELM&OI!
z>OF7$2pUj8;JSj=6Z9=XStXJ(2@xbl&?JJU5hO+2Z?+po+;8KrsNT0DNRA+dOUw20
ze{7j)-yd1K5yx6FjUz~npzjz-9T(5fj!9#rW)U=xpkL9(SrMc~kRIWsz3wAhMg%Pc
zUNuJAHb&CNNMvS4;E&+!80iLGDmY}e5@M|d<?rR&MbJKit`T&LAUlE%5p;~8Qv`KJ
z720+>nXSlJi8M!W#@F={caA`cpyF7GtqTKBfbJ3Wh+s$rLnG)JK`-i$;P)lTxe=V7
z(Yg<Zm-Y6J;H!)d*Z;{lxFIQM<n)aoW2{>hfsg$o7!bk02yg#H_puTO4vyfnqp5cu
zrBHrNtAt?@43A(!1QR0|5y8j^Mn^Cvg0Gh(r<^RcuSJJZVmhiC8^NTp(s(iNxCj~@
zOQiu+MJDH(BrKuW)CeXEnJI$$K1x2fGI{P;X<7u+BcOR73;9_Q%;uIwc<nppMDR`o
zpG2@dg4k1ub0b(5!MhR6i(q~Pg`+78B5=B=Efl>3iy~MY!4mPfG=fDtykv49Tc2pk
z@(5N$uqJ}F5v+`0RRpUec#qM$BIa`A80}e|n5wa)??><<HzmgNK?HncD^NAILjli6
zG^uDJ!Qf|g)<v)}f=v;uk6_`vVwG0JY>0q-g3SVK5%gn0_wDUWC0hk1*d~D0IA+dk
z-kM8ec0{l<f?W~pjvx|&6~Uee_C^rkj{80PBG?~6{Z^iX5gZ;Xb=_O&>R9Q3=vsdz
zh5SPiv~J}g2nwbwXovw;*rNzapbDTxpbKCKYUcNbBX~^Bg*|oz(Fl%4aEw9qaqQXF
z9*2`MQH+yjy^bS7Gfk>FPC6dJr%XybV&f!Al9^}H#-%yLrz1EM!7XkCi@)(WM6h9*
z_qzzrao;2OCW4C*d>+9Uw7hfD*AdhkRfynA#wriRIEnbhb#W|5#sX*;cpi^remJ_&
zB_Vt{f`VTpQ{Y=MiZX0hcz7dj`7*W#L((ewVz1GeWxUrT7&lJ(K7tz&+!Xi+`nGF!
znX;M1-e}FPA0xOO!A}wV9Ko*<{6>)Bi*{*C`isCNOU3Ri8OujD;=4@#bVw9OqPWlG
z&xBwj!^Q(9e>%j%2@8KR@kWqip|gd*=vd}G3$I!DJA!|hiY*kk@FaqN8KM>nS@<u4
zr%d%03R-x^=p84;SiINU|H(M%$Z9`<Jx*FvDCOLUwjX?wKJ>1)u!ZL=6t(bzh3734
zvEZBKFEL)?pIcYPNsq=!95OOktk!txMGG%k=<oQa6-xQ-t~bsC>Ffn5B`lP*P~O7J
z7D`ztZK13MYA#~|7J81ChHOkv8!r(|-;_>TP7HkgXxq5UNjuu7Rj^RmLKO=YEzJ5T
zyOM=T<E83r{U3(>uUM#Rp_&D!Z~Q6V8j#xRMymg0yR26&ym2LoZO)eL*DchrkZ2)^
zObaz>zlAp~{?Nu>%R+4nbp+ns*XyxR>vEEpM&9Z~5HB9r{g>QvZ+3QEd|eAm+NagG
zK&vkIjjw0nEern^kN4+f-N?#nU?IT*7u&0XpN)@iTS&H$VWEYE6blV4G_las!pwlb
zk%h(<QZ2kcUK+72J85rrp`D4J?MU3W%iqjGa|>w}vNzUO?<5}>FD2(Te6%!`kLec3
zS-#lc(n6+%))v|bWBeAfESwrI9bJ>{bZWh2eR?Zl*x70w+FEF5p@W5v7TQ~Ac{iE6
zmQ79@KULirFBQ%8-)o=N$pSrpdP9BA_25pjWTA_NcP%Wp(A7dW3u7&eV~|+rVPUX^
zA>1_!y)5*#(2twgFFw~o9}8T<vjOqF8CL`1=`lXe?d$K)#SVxcU|}E!wn!sCW^Ste
zyJrxUjA~n8f>fei)=&$>sPJ;qNDIRSe}vFhae^CW4JJqn3M7rPFxrCmM%yuBbqoyR
zu6^UjTbN*Bu7!CPCNefG%%GDw-G=nZ7N%O5W?|#r>?syFgg%)rz_ks2twkC+r-%Ay
zapO3=V*DIo;ghT^{{)GqzGLBNihuE@`W!Xi!U6_>g{2m(E{V?`w_Rvqk%h$;)}3oh
z^ET&Xky3IQ9n#R>dxG>~z)vPQD=e(EaKOSr3#%-ww(zlqEf(Hm0C2d4^%g#`u%Tnx
zM;6vF8bu&YxtzqQ<zD`^l=&~2GZMGUZMZ@7ZW5I7w$VbR9)5z&`5ZoOwXn^?E(^OY
zd}3icm&{p?x8+__&xa$jrcaRgxRZW+n*6~8iE8&)*lS@Q7q~9{4<t}*zlEE*{sjr{
zkY!g>4p|6TFf5oBf)->8ng!iLh|BraqcAu*e3zeon^?{J;imNA6>@ezY)cLI4*3^N
z@*kKWg)PwAQJz){5xUWW&GQ(}<_Y3CsyW5qrmz1n^HsytqZW=?I3h3~4-EAmw=gCn
zjR8!55|Ex`%v-2nqoR$|7S34s-NGG)jfJxoZqRrO=PaDJ@U?{t^zfeS&n<jm;Y)g$
z9@v!rU}v$#edE8PRTHE(e{?$1KJ6O|7cE?|__rC@b;$y=(6>Cu?_}JbAYHc5U|>Ak
z_Z#YeXW^QK>lVJ}G3@KEu0YsNtGM-C3vqm{lpieIvhbsY+ZKLp;;)|UKNHHPH#qfA
z7JlIZ+ouu#OeF*2iAjHD8t>ZhH$ge$T?_Y^b!`-}ao@rpjC>|=kp~_y+go^S;UPZ)
zn4fd~)ZpzG|468<+dJ#q_Gy1x_{Tz--hN^V5InJ<jL0H*%0p@))<z*4F*dsP$|`8{
zH+0zr1m;4>VY-W%DAnkaSlD*G_neIb8~l7^%us((8!y->V*@r`wDFRS5;jWOh_g}5
zMsXYKhqoQNHC?@&#70nYqC`$98=r6Xm$tzJk}y#sZMn?5Z;Gq7tmvZhayH6~8DF+t
z7X_at-yYVMppuQsHr}*R*G3f^uh@9QMomuiG`T7lvNQ2D8`W&QYP%=2x{aBCxv9IK
zpzM8J$kY&&v(&QD>S=QEBmQ_BwFRzY!y^EN+fI}|=o9bdLXP--f)el}=C_yP>)A-K
zk!a&B8+@!UXahn2$ju@r$;R8Z8!F9gB-==_(bz_+?dI6KANd(k4MlGw+l{W5ilsEM
zF?gaIflY1RE|J}8Lwc&y*6^pj-NxUXs@nL|Y;fvnN87fr(bC3V8~bcz+VI<$U}K_<
zEShbjzl{MlTH9!2qYL-ZMq3;0=!c0?j*a#<`i;oSw$Z@`6%JaE($PjI8w)z7eZSug
z+P(Yzd4S&QY(o-mTt89bV>cV!ZS=I!%SI0yKS)_*GGV^fB8@ngf$>+TzBa}@AKzPG
zd7{)ufS-nC^|R5aahka(E$;2Kft=UI@c-J5<C1L*u`$Yq+A)psSv}W3)W$IO+F<yN
zurZQgqQp3)Rs3k+XI9Lb?9oDgjEy^6{bL2@@Yi1L&~Q`ccrqKM#r2A3m`$?rj*YoC
zCfk@owOJ`s>3<tDY)s>*%Sq()F4}}q_g2%inKnz1rOvW3n<0HGwcni7IrP<>)DAff
zUkawqvoYVsDjTb9#6M16U}GsKDiObs{Q3!fI;AbLvDn5E8ynjs-S3s!rgd7ss|m~7
zHC$%nT^q}7tgun3Y1&E~=ZmC-Uy8rmt|40kB)n%sFCEYJzU^MM!_4`CjSp@7`$GIj
zHvW*}*D}1j#joMEzL7AuOFTL21b@Aa4V=!#Ch@pU(9ME=EGQ+n2(VSqdT%C>^NEe^
zHg?$9DVTc%-DP990R5{Z<cU!-P$qUiw~sl8T{aHdIK;DQ;|m)B8$q5*8%M=<%Qg%f
zrj3vdMQ~Iuim_Kbp246oL<jk=JoJ$MJW&eUh}ekQSeco!^jRlM0Gs}N)~W0B@d>-r
z$#(?vu%OhyusLSqIOF+;)KfM-6;qs`i<V|^<0!y(Qn;7kG&7iu&lom5o2|3X+bB3m
zI%nhDqSV;dS-&{h1ckHw?Xyz9wDFaV?`_<$@wJT$99SUdI~(8FxM<^&jc<hpGL!eD
zSDYkWw(-%<^s9ni5p;Tg|N6xl+{gD<XGfoUuJNSrNxyF6*1BTc(3?CXHhyQEkYnRV
z8$a9l#l~$RcI@9`cmMHl)KB!rQx6By&R>~8DC1<8-kd@^ou+<bcHOmc&jx*1?2$*>
zk^Wzal<RksAJ}+kqihuAqWIIsBO67dcp-|vY&^DE$pi(X_}j)mHvY5ml*xgapI}}F
z!|z`nip&%?PW_B|_=lv7c4;|}Juy)*XvrjwjiOML|JucKQDhg1?{Po*(;D$R%H}*D
z#hoA8@+YlDqIlfY-=SbiuSFTO=fx;;w<MN|qW7-0FGUd-MbDo8Vo?;2qJ+RRYsGie
z(@$rml#F6ft@s5>`h}J$rK8{`mWcvU*L$3Zt$5?K@=?4T#j8=&9TLO8!z)DHV^SsR
z{&8M0isM_;D@9S6hVfr)ThooW_*bItM*#m&sT#$TPtvPJar$X8{~1y}ir1oeJ&GDp
z{&qV(8pRt?)Qn<&l)s!ptte_o(JG48QPhdT6Gg))8bwjMb9}s@iBWi?@Cp286!isQ
zZ`~;B<>R-a?r9~nf#4+M^It4loXjNg__m<Qf~E+{QS5CTMGFB^qi7OEQ-RY2WpA@6
zn&;y@ZRz4MBZ|Domf|rpU&b#$R(@}rDB4CbF~7H66gg3J7LV-(&5ojj03D;~ls}5|
z(l#lIE>ZN0qJI=!g-j1_q5$0l?Vc~+OFZ@#lw))A`F#YZZ$7_|mOLPefl-W#Vl)FF
ziov35SQJC@Wrhln=NZ!BQH+RUWPUFJm2iqNf-^3kKQ@2H@li}*IQ@^3NdixfVoDTK
z1)d(o3<0L)OU{g9Ruu0D=4?SZ#hiSd#CfisE4t=I@l$DcuNOwKNO0sR7Durpik(sH
ziehOL%c9sA#il6U<!OrIgD5_XVucW1ov(jo6sz)ap26>l$M^HC;uIeV&N@NY2)b5K
z%C8q-L;fR$Hw#R#EsBrx@s=pI{*TNj0&man-SIzj?T+F=K7UUXd-L%=0rm?@KO7X`
zP=0SffS{nXDkOjsg(`p+MOXk@rAJ{1YzmsU<cPplzKor3&)=`7IP~Y|Dc_`|9gX5x
z6ayR#bZ|V1Pbuu6jDr(VoQ&c@6c3{~#ls%Ow^3Y<;!G5uMR9>SXQS_I6z8J&B8ttE
zq@+pG`6xb*V%Q`pdy@MW_k42R@_ZS^S5a7#q<Z%|e;viuN$$Jcq~ApGXp(d>iei(c
zOUxdVr6VnUvkH{R@_MdBaWje^C>+IiQCy4SdK5RJD3a{?EvfX*%_-kA>0ORd8+h)o
z_mOD~E_o}8AEUS%#l0wQGlZh}EsEcn)7JZbj^dXnevN|jezv|4Y2(SR4Fe`iccPdr
z@TT=XO75I2-4|l){X>Amlcg(@rGNY3Pg)zrvnXO5{FN{Bj{uMPDZn;ay4=!7`h>}f
z$##l#|4HNj=&_c*r-Ig-;tCXSP|!h92QN6TJ+Tg+6QGcT(CNg&4(4o0VcYg)^79Tz
zi#T|_jGv9de0<SC2?r$|yyPIxL8~cJF$cvR445LlcsYhULZ8f@B2{kSp?oQ!EpH$k
zly#8dpoN2S4$3>I>!6;4mmO4aP}@Nr2NfMua!}pDYYr+qsN!Jq>BLtZydo^D=Abd!
zS9P#qitD}ZrTl!HT&Df5mOgs#0gZG}!@(O4R3X6KEWNnZ#VJxv2elj!u-%&?d4#rj
z2VMt5{%cGnJ_jv7PDxzv`>tUtf;YwExB?|O`&$l@9i%v@@1OzwHdU%IRZ4J>=-`if
z?i%T|BnNLhNS!LNangnk8aZg@pt+bxnkqG>i!yzw4w^8kJGF3@v})>rl#RXJvWurV
zNUHB)Af?m28+~k4-qJy)gH8@|gdV?xHV)c4;Ci#@c?aXCN|T0^Z0&%qAan2rUpogK
z92840+1^3619FPZE_SG_yLTOhl5f4P&7B=c4thH1<)Dj$t`2&LC39YG{Ysi7%;+v?
zX4Uo_a`)SqTnD`!e(#4{Q>8u*KJSO)Q>DHR_D*%TgSelVf}qKelI7D&4x#}Lj`2{_
z&klw<c+bK64u&}x?qD`!!@&p#G;h3v2@Xa&80EmfC1o^CI-NLHgx?qkYnHU)Bl+X#
ziur8`COVkpV3vcb)7+^iJDBERx`QbWriz#;I89<HU`7RdXE>PY;8I!tUt3a0=_}5d
zJk53cI}YYLSm<DpgLz!+)|3Sd$VRQ^JLot~VnmIYCN*4LyuqH-#SWG@c-O&lvBsr>
z4&0JL{mUG1E{<B^V5Nhd)1+0x@}<+H)=3?&rj_KWSxp<3w4!f6aPXmn{SFQ|_=rn$
z@Uep}4%RwY=U}r?%U$?)R<ZSrbK(Du4mJtf7#{38yS@<ZM9Vnht(?fg4o>Re6WYA6
z4cm4x>NleuF#}+igCo<VJ=`V--&bzG+d;MDR%17(WW3wjb=~R2eGaZolm5zWagclA
zz;+OI5O5H5U^p-x$jl55G~rmq!8-*?sKQR>Nk-j2)1<|(v_FtmQWt)p!mxuM`M*^{
zhEtrHRm>8YQ*emm;IOdpC=KH|TJO8k&rL)GlS=t($9sM`5%VdJiG$xA+;MQy!6{nq
z;D&?K4$e5Z;NTkvpD~c)J?9yR4j9#E9h?(@_))T_>~!f12VV&ekKUIK!sYyrmb7|n
zy7aY!hs#^%9fXSv49f77O_yG+*#5GED-OP+Lmd3_vAelf^H;$x?%;K?v%{xL+|#@t
z5Z!dZ51O9^{eee=Yj<#)5j9=<i91-=!?tC*#P(x?=NBRNtApQ|Pgb<%z`}P*+0&)F
z4(>56A4cq9+~?7lBGFO*GQ&7{Kx-ZR>EIs+kETnH{*R~c0FR>j-VOw*0s-=ZfC37L
zWH-BjVK*ee0w#fk5IPJ+svw{sRS~53-n%q^^xhRjkeS&jJF`1WwIB*Ay?4R(y?g!h
zJ<om4^WHP(o_p@O=bVA;%v=`#6L`jgne6^?jPwUnEMEfeK^ciT?7mmAHTi#vtE|Js
zf1kiVC-5%=EX^G!$L?QTRLQYYJ{hjDQme5NBcXuIkNTpRjF)8;l<~n>sj!S9a%@uy
z$(UX*cE2ks$7=7|vC_Ns%CJIC9V<P*-?2Dl`jz@#+yN(l?oE(UO2+FN-q285Mj08q
zRP0ufC<8LSQgB#7SsCSIY*VmZ!7DP#%Qz|Hl#B{8D#{ok<6{}G%6Lsiri?5Zm1I<w
z;gwNKMinZT@s^C5GD`nj?+qE%WK@^YXjMv88SgDjiC-7^Y<1vG88u`aoSa#HMatFr
zDLual6gd)T87h&)CChNj=({4N@6kZAjFdG0h7SVTSc$+R!~c(mptg)UGV04{AmeSy
z$Vin@PexrCJ{iya{!iPr^vf7OIdkfgls+G25~K{sOq22RvXpc>aB(KV|2|J;BW@@o
zAft(lcW9@K#&pG^ly`;|pAt#qblXq*__OlJuLFHg`Z8n`SQ9gbW;d15Ovbx1y2;3v
zkt3t6jCL}b%gB|{iZA)fXd$EO@|67xQu1U_2|-H%5}r34Jv1=tn?M`7@o3<e#VL1w
z^1XSnLwgw=WJoeP(XnyfjxzGs_2;e6Pl4`n-p<^M1t}lR_jDDYi=efqd!_lFZufJ#
z%jh9v0AoW&PZ_=FZ5e&oZCZ*$&ZYW#b7^xkFAfXzmGQoeelq&g^1A+f*L}^d_<kNM
zX)9CqtO@+FGUZ;=*5rIB<0Bb^Wek)tNSMvJGShw8mwiKIoXJfeCS$maHS<%3itgq)
zo?BOaV|%2sHJy|BiHwmlHp<u}<5L-<WGs-eP{wE(pUIdgW0H(9GAKNbJ0-(d7Z}SR
zzviQo^NUip`u#KKrcB^kz6lUamN7-fOc}G7fQJK98S^q`$e2bO7Ntbyr;yonY3{@u
zzKgv*UtCU~En|+1xiaPn%Xh?ir(E?h-exRM;YQ47ta`J&SA5sp?H0*c%vH!(D`Sa_
zr7~8@_*}*^8Ovp?pp#dm)Sj04^}@{QM*`e^4qqvBK3SA9acRnGj-8mvkR$(DsZ@e>
z^y+2b7c$n%IPLd+p6p*&!t*~F8-(Q)V=FKqbF+*s%s3f`Wo%`-$=D}jzl`lNb}%bt
z?3QtNQOlil*XqFZ_4zr9)>8i-8G9Kd^F7x_XEuF5GkIZ3k$XAJmjg1slyN>ei;@SK
z^)k3$Y>DrAxzZzZQ;x{^T81hkDC4M%Z)BX1A<Ia}OFt&#xQuU^AUA!lEX<XybY{)^
zuL6t~g*9hZ0X@yfG-L{ly5iGh=rSxBHVs~oV#qLMgk;?4mC7!MRDHEMZMb|i5S9^<
z;mC*zgF7xs*;OlRM!@@XB~NzmOlBE#|1^V#38<ivg0nKtv8*X5s^B{r-^;iq<F<?+
zWc(=OHyOWkfpor%i!v@TO>)yOFfbx%zcAYSWd1Cp=!cn{nn}0vndh};rFM_=7F(L~
ztBl?QGa1r*hX*dpxGLkCjHX`)t`N^pS>HeNy3E%A13l(v-jKl*2wez_y6L;g;2+nL
z+U{^8Wc<OxBGUgJ>%WW#tctx-2cItyzcS^aj7Ksa(<je7Keb42l<IrJ-E5Kmlm&Ku
zV1*}(S;k88T*jZwXa(^K{*v*xjDKYO%gU40igES7xhW6kc;Xb~Q_#CxVA+}gqnfjK
z``2^XNh_e>B?W~PB=<@!QoIopq@aS83sd%7_Lb?CI_hwsuo9~<pWe?Yrr>1-H5DW&
zD6XJ{f{F@WRrtqqB(SzCD5s#5g3<~S6+i)#s|=l=n?C=#FaMA{Zq45dQs~k<^HN^<
zFyR%2?_3AUE2y9#^SX~E{rv?gm>Y9)n}UU2Q&364>k8gbP+3701z$94J*0nTv8%qr
zi!(1>j#bX83aTlnp<wk>Uv(wskdt2o-V|WPf)wI@D^q5y4ZNkmcQ1$XE(LA{Z!1XQ
zViioC?`e6>=T-RC>wrf={w0~Cyjisr)K(BTFi=OVIw`jWD_g@QDRrqtLArwa3j7LE
z6{IN`w<?bzw{Ah^n1w0zggnddktHcC6x=NCT>}NdIPaPFGaD*kp<pC5R?tMj5CuaO
zyrUpPL01Lu(gO;z6tq#$RzXuGRvDTr$W_oxLAC;WUM5|1b9qXRg16HBbYlwzc?w!l
z;EIpJEopyU|ETk^8b!Ca7X0+-8L!pzw^L$wmW~P}1??4d-XG{7^pC&nV;FQ2S38T%
zqKl~Q&)<Dr6tJ2xyt^sruHbzI{S@?2(3A0_;5~-f;lS&|15D&z3N~Hwu~7F>&{x6D
ztWsyfaV)&#Ogk2+k(b_I!2ksxDi|pI^K`7#^NQ~SfmtU9Dfoz+_@v-qD!&rj(;bsq
zvS=iXlajjyhA9}XV1a^#3PvdSSixikQxtrnV5EYv^uK~n6^x>b>iWkh7)`U+1|D4Z
zeMURa1U4RvVY^4>BD&~d4tHu~vr^*~Oi(aUL9fz*Nt6$GmzD~!^byp$>6@xx8kzKl
zg6W*=s&D@C+-K`z6_R(=Sqf$=n5$qOgZArKxlVlIo5QWlOCP&9C8=-bd<EQn2FAa&
zv*tebEmE+UajW2e3YI8Xs$ji>KTr9VDOk?DNcAmmR*Ge91p_k8Uu|jZZoX2%DkWC>
z*gh9vwV-PhtbM^>r=VCqF9mkG{o{@XHqZm-eLpIm%?dU$bQh#-;sS5PqN2&#0Qp-K
zkZu)p*W#2N3U(^kM{NprDcDV`))n7NlZIvPVIt?Y=wHuQ>uHX;vPI2t($8_;17frE
zS&3f?a8SV^1-$Q6{ydkIPN+B}?}&o073c~K1xFQpqd-w&kM$lCl;F4kRjS67tQz;N
zz$XNinNU^ZD4>dNP*6=!GL4t=n+ihASrsWNEGB}2=k%e1u!4w!iwZ6&a1=yitBaj@
za#F!51!q|B6`ZD%$4T#wll0o2IvrcjX;J3J-8Sc91t;)5t*!0(j`1^2S~1Z3gJ6=w
zOXs;v1sAx+Q1e?T^fT288P`J3FA69uoo(~0g5MbJ3T`Q=d$!H*Liig0SvyX;Ob-~o
zD+;bMiV|8AuTN-womS;^V7nmzHQ!cnN5Mk{k7)lm>8^tN3LYr9r@-pjj_vX|spxo#
z;EnOpXGQ&wS$xJzf3RHK$zu13f~N{PjF-kn+L8_(FFj*$j+b_im;O@lH!H9TsQ8DW
z$XczUgo-#7`Bc25qM(ZDr;F!T5wD_v3h%?LltZm%-Ou{+Zq}p1g-8pjD6Gc(Q%r?6
zUMixZDE}qjv)y<1v&h85EMkI}h0I&;wlAsT4$l=*QAS0Aic%_mA0P87Wscp?`nr*C
z&%v}J=i00~UA(M{aw@8+{7DqAs3@<Zl2B4XMetNQEvcxY=7X%~<E2+seBQe$+iL<$
zR05S%R8jG|3eNa2?5nCWivw>6%8ANOkZ8l3Dl+e6C8=<!s6j~~OiOC2_+~lkPKa5x
zt$7Ex3J({qLYg2Yt0;RXi(@&kmWtXc>IjntPmn(E+LBBTxl_1MT@^kR162%C;a8EW
zqMeHND(b07Q_)mKGZpD7>Z@q1qKS$IDrQZP0)jGf8Vc}LLTfS`3A|elyrUw62CK+Y
zv2lWQe1bGLs}%v|34WX)J)IzBtH@E&N=0iG%~j;mwn6E6Dq09o;&zsMqLeUEqBhc&
z^#4TZwR>6Ywo$R^c2-+%oE*rQDE-OTJmo+K6&+RdQqh}hSJ6pDHx=Dgbe<@6rqdRB
zx~k|Rx<kpCD7{Ouvu)TGPn7yb+V)V<ld*I=i+JZmssFt;+Xtn;r=pLF0V+OF(N_gI
z@2lvif{W#h?Dkh<S;HaJPxC?(r4Lp7Jy9w<NlMw*@z;scM=A!ZSfFB|iXkcwF2{Hk
z6I2XSF<ix`Dn_Xoq2gnzog|G^araIZGwTy>;v|VUdy+&x!C)mYTE%B7#;AC&sGpqi
zlccdK#)%;-CP@b-#R7o&I8ntUW`T+s;?iWs<lU?(D#DYbHuthFPm-ppn5N=*b_ce<
zCP_27WkPbUirE5G&*?CSDK=TEHCg(kd54_I(mcVRFKF+{5{+4;VzG)ZRQylH5*15T
ztW>c|#WEGkxzdKYE0{Qi3o&{Z_yeOSOT<jT&sD5e`H)81nk@-yRIF98Ud8Fju_CsP
zo}4W0o-7^u)6azckGX-tqhgx~+D$4ptJo?q<(Y<CUf`#bB_<%5+g0q~CQgxdic6f4
zK~8OZRP3d}K`aSkpNjn|iUd(KhyyAPs!&v@Dh{dmQpHhb6Ze<-xXIIBk30MVuzN(s
z*D9V@_WUm+p6wWYsA5Z=`<qLN-?ILQ=hb)ah=CK#{S|FxX6O`&-5^ViieFS*q*W>m
z6=zhORq?Q$*HjTv;Rqb!U4YKvPI36Pj>ehvk2j=e`cg0WQlm`0Dbh(59i~WK{HfV1
z<4>u0{J-?m3~7HVWk{**oQm&N{Gj4H%5O*~^MfhU&5oshRB>L#PipL&4}%7mm_9|i
zpyFqS^nlpMBD|{$kpIOL>5__HRoqi?U&U`MbSkc^xS`^*iYsE*uBrTzcG^`D^Yw4V
zDk{6*oG#Ab|B4fd@VKqwmPofVQ)1hC=f7}eLH^6nI?1y3fQwb}7t=(=Bd$WlGkR6U
z6K<|Qz!?5R=zl6`{@e~MUu0IeRPaxg?*(+APTnI9+-dcXihrp#hyuY_c9(juX<QKb
zf@twghx|dbQvwV*4$P+nUJ9aM5QT!V+Zhvw0r|t>;tayV!B`<>mpY3D@p2GS5S@Z3
z9z=;C{6VA!Q8I{xAgTxPW)P)<C>_MBLA(}3nIIB_C?CXx%3cUsHi&Y;*sBw@#oJP(
zy!1*CH>XH^TdG1Z_RdsAK?_Wcao8#aQ6-4igQy(Dj*qg)d1I>dMiA*!C628s`0b`j
z)r5X>sIx{8Zw28A!W%@*Ad+Z9WpA<&a0%)blnN>T-$Z;PfVfr=DM756D%B36P7ohX
zl_>MJuxGNchcb1=C|?jXgT~YgA}xrVVC-zQ^dRa7@lFsKLA0;rJ-&*MtfOHN-+QE<
zpS9@O#vKTvQ4o!Tcx6P|mz*Wiyh#wpKWjn2$D1>Q$PUJy&CUv<sQ`QgddEFavmgct
zz)O9a#x)NjmpjNUXy$7ZMB5<pf@m2;bgI-Uh}MFCW2!Vle39(sX;Ql&miKO1;H0mE
z0PTYqbgMZz9Ntj~SDPkv4x&pC(}I{DMAslc$%_xT{2;mo(LES@qisMCJ%Z>NM4uq~
z2GJ{ssoOg?nkKy$L~nuFr5GET?+1}T$K5Xoe2z}jq~x6#GEM3q#LQ{2_s};^la5W3
z2GR^_4q|kW-=W1|G0Vq64Eb-mJZX3kLxVUwO&TUR)J#k|LUcLZCqax1;=vAl8pMCh
z2SVVpAjSkSp4$|}SRp)4&`EjH{|D2u-4nUqZ1)s~R*GkmppylM-Khe+JYAx|XT|(8
zf|wh`JlY=wyR(9r%}`vMK+HCWb8Y7d*9GPaK)gVJm)%*!3xinnf*<TtVrdY|g7`Ct
zzql7ctl;hk@of+*gIE>B(ICDF;`1O@2eB=P?F_{r)&{X5h>bL$Uj|Q0Ul+uBrsQ<#
zy^=X!2=G5aXI*MRCIvPHu{ns2)1|<4Y56}bKAJ9V31TagXi6KN+dgf&v?GX}K^zL=
z%OG|Iu{#($ko^EBnl9}T1NV|MT`GCSzfW}c3rZR4JSc=GK5W76S3#VdF6Emc9S-99
zbct7wu(r(L*RW%>{Z&6@`0)R+VC<EFk7mUcC?3z<Kfz21#*PAfX=a=fgc`(^Ag%@x
z3_=Uyrywo_p);gAwg?9ip=1zd5Fw`U4C!V$x5W&dA$8lDXEW)Fx!LYlZRs%h87e`X
zqe($bI-h=;fiWt5#IJ!<R5e3-e}<HIIOB|9*6rBhJEo+-=Y#kmh#$pt#`UDYrQ9(y
zq^;j&6;E)t7}bgznr8Zc4&s*}E;871{e>b~mpDZO?{D;8(bmgmNWXHwynYV(UD$J(
zSyMS?73np)C5U@L+z;XgOI#3lg18&R3_JT)5Vwg3B%fL6+do4J&5%kKYP|noZsk5L
zpKedxmf(KC;7^qv2k|6`ha5XY$~RMbMCbh5sz5RK5xM=-ApQvA8T0pfs}Gv^cE9XC
zJtX0|u)+1LRk@kc-$BIfa3yMhhJS+imt76{G!)WMSVMjd@mlQOda+9C+cTvC0vFWq
zk^tm4n<@Q=i)i4jvzUgL1t_ZF-I)>vifbq#IHfdvGBb9=C9|Z4g&Wcn1m&pG+W*~o
z%Lo~AV&}hWsG`LJpqz$RG?dp+LBnerDrvFTIw}hKs)j`~C3gAdg|W9)Wx?cu@*|#m
z*vMZrFP<8zYN)2+s*Y<qs%v;t!><~C(@;ahTN<`&*rB1Oh9nJqynL7jmj<_n44SPW
zS%XJI0}Tx|cs110@V15&4Qr|<*Va%+<KNy>i6@>&-IL=jQ8c-(2A|;97czbg^)#eu
zNEKa5QYKyC{{7NgSBi~&OHI8Zr*>%CF`%K5hW`cAn^3-Za$^n0t9V+E$*Pc+!7k}L
z8m`^*lbNNVsfPD7^wH2vL$-!a8aivp(a>B&YYlBQ<Z5W4Ax}f?uAV0+QXl3|oSHAW
z&s~2@4Xreks+ipGL~7lco(8i#Z8fyh&_P2-4P<WE)Uv&XQ@8wVyeet<c0gLUxq-Ts
z+cq}RsicdBZ8JSwNKXx2xzXI>qRHJfoJl};fk({tP^^arQY!4Fp*M}GkbZPb7Ijj%
zuZH)9<VT!QLw^k)Y8a@YVkmup;C~<}yUAZ<a^88fJ#&Yojmq&3Vub81!R}xUL%4A>
zrJ-Vh-B!fxp(J;3xP}oLKBlCGks1~-%rtzeVU&i+8m4F%t?}SjjMp$h!x#-?xw++&
zS9JAs)6(ax%N(cSalH5ME}pdM9y0kr@|JEn6E#fY)`!w5NzPOa(=^P{FjvELnte8X
zCSy<I6K<(9G+aEMN^omU=4_#A^ap7(2c@w)Ps4l$Pg({iqGmoAU+qi(-dUbS8WwAO
zARntWEYYx3!wL;6H7wKcbLHeKvtyPl*Lccd$6ELN9823;&dgZFW#0B1Go|c%{xurb
zYS^G*qlR@F){7PWPs~M`FGQDsc2Wb)+oWN$hOHW`10^0G@^8^_?$aEunsaf1G<BPX
zK{GN4c8a9<QP5o)c5B$9VXp>FgRWtphW#3jYWPOO0SyN=9M*6|IOLFqujqd{^-G~V
zrvH$i-GS3%Q?UEBhFfE@*tmpa40R1MUAiuluKQNQ365<Zvxi+SIqsfc(V#Mra=lzg
zP^_K&m<KeN8cs9(sBleYNJB(}!=-7kHH0<(!6()HFm1(+_T0zXVt7<|=9Gq$8aM?T
z1!xJk<}9scaXXv%y@s>%5;+Ck@}1a6Vs69_oNiqv=RGfc@{@)O+}1-mmv8%j*6<7K
z%)Zo}&Ak^{MmA=$T@sx7kJEnFaG4RSW2cTQWHN+wOlMKja9u-P9X=g5G~CpXr~^7~
zX}HY_tRr5>9SwIiJkjt}L)q%ydm0|lNEYn^>GuWYQ}K`Jv9jqU=X)MAek!Ef{tRAy
zH`wM64bNEHHT=t(R-oZ?4S#C*OT()!?^u6EnQQ43{+rA%Q%{TxJiVIrna3NaBcG1b
z9`Epx0m|?aaRD7K>3CU3aUBJ9eEPg$VI4(iYJv1ZIwtq5fB*B$qB@G{pdL;{lL$zu
zp@fc-I!f!{bTNe*5_FW(@%+!0)Jy~Vw9hG{^S9A9w~8cx>G77;QBFq<9dGG)MMrrZ
zRdl?rqk@?3H64|7RMhdR9$V?2gmlhAGb-!g*xmk&VyPJe-|`-;kp6}a`k@-jKK)rF
zxvG$-<-I-LH+4{eqo{!<)zp!sqqflR(&5(O)lo~xC+nb3JUXN|JQOCT1}>1JIGoO@
zqvP!tOG^<mQjC}UI#PAC*U>>oJsoK}n&@~(N4gHaUDZHGLjmdw>U$%d?^^|QG}e(=
z)swv{vyl!`zNFLgZSS%^IT<>SfkvK=mO8R@G}V!#qd6VEHj@LJQJ9zB_VU%RJNMnB
zxjIJObGOiAukBFz8|yO(THbcI(s8?%x2=wLI$G;!BSww6mc@xU-O!C01Z-5>kxSMw
zSjP|@opf~8(MLyL9bI&E)zMu?58}0%@9OBL<Nk&c-s;JrlF8)MyzcI)qZi%MIxwtc
z@||Aky>+~&gM3~+SIc|-P%82JI{NAOK*xtVIIyzU+h4~3E~I@9We&K#)8=Fh6jOY}
z9l4e@NXM8jG8Yfd;n+1RJp@B_4AU`I$2c9sb&L>GjMDM3j!$$f`y%sGK}YJK!bQ&;
zl0!gM>Vve=+*TcXY9v$J7>4w&1cJTCQpf9<pkoq4TF3c{X%p$C>R$g{_mb){v!}dR
z#Z+Old8r{sRW6@CL&r=V>vepgW0sEDdhFj4^SJ7PE$8T<sdE_syAmkre&}X*zK#Vt
z7V21}V>!c2N1gqti*+PV&04Bs3H_Xr@yk0IQ!+A^31<GP>AbX3$0{AGb*$0BOP`BN
zq#VnuYjv#CLCI%jll$$+<Zw3X`JavrIyMTER;^2UaHQpdYk^O%1vcr}Os0;lI=1QH
zBh&4D8Km2br4wuyoNw!T$>Cad=}>h9b?m0obnMl!PscYx=YAarbR5xRZ$R+fgo8A`
zhVM%qhv>Q*zSRrckPhgS{FRQwI%X72CMMl<KkaKV<fxAC+Gk|k3mnsNoH6F}eapnp
zPL~<&m3$|33`P8}b$yDCi*4$!dM%xoG#xt2g^pi@0fr7oM^uN&P2ntMk}ZZ-x+g5K
ztz*~m95PRAOo#~1tx)1gG4KMj-sL+b@M%HM2zpjfuKFBpdx5{#@xu%JqX6f1{Pcno
zS2q1|X2ynm=@)fe63ojCus3|u0~x<E%c}c+6ZCgM*{$`K?}{*{yP5bXCG|RsKkI-A
z+r&*4E7lVei6(Bd_%j*}Og3;=$2}c>1E~h?>v+J5YM_jPhdLgy6dNdN;IWP;I^qoE
zGw|z7=_zZhjz4w$!MRSlpV3R1scc`VZhjg5FBa16?tgUf*qy&wPfYjI*F5C>%XI6I
z&aV^XHxO^2AXV-5r#@?5z`#oe%5L}bL;CFUTnyqu1_~SK@Ker~4QZssXGw$RdW#u&
z*+6jv#D$(VFJZ*a87XNX!N7+v<#sycE@j}+y=<PcRDG62y3KJX8h`<QYCoA%7$|3;
zx&a<!^NNA;23|8z$v_1I6%D*<@C_aJfrz_;6Khu-H@kQDxhor}V&Dw}RSoRj=6~IQ
zFC$gGo6Uo48qSiARm-bpfTI#VEm3B_zjA!;n+9qac*{Ud`gWh&CDc-qi%k+sK6N&A
z+dlWngMN<zuYqs3l&)jI-jsH@VL~kfwT;-JGs%)?b)!6jw+*Bij7fK013Y@hCupZx
zQrFZxo+VVzK$?M$1|$RN2I?EgG0@yV0|N~WG&5q~`41RqB=lz(JS@r0(=-|zXhPrC
zFY}IpBK=bb%#xb+PvzMznLLod0L^GB<ezUU{rI;W8kS8z&yp5j$R^F@6s9}RKuZHH
z1U|aCG&!vdv^LPzKsy8aQTHCj-G-Kb?N;AT=&>h_2f?)Gj0W<G2il}1jQ%d0oNZgv
zIvME9?J)4Zfi4ER8t84{Jp=C=v7-li80cxBn*o>Zex$p*Q~2LZ@=Hk>y$nqG!F}R*
z4D*DVJ_gR+%HF-py?ATs8Y^2d#`+oPPfr^7#J~Up9~c;7V5kv0pXfuzkAaT_9%!Im
zv8+lN^*wF#cxkW^JHmrU&y+k`XPALI%Uki}sSyT-8?lqB$mdxJ|ACPPJ~c4fz-I<-
zZ%cdUJNGC9q)TQ=JR)HXl^d8~V4{JWjZ2Q>jv#M57cw&MTE3j3x3YQI7SECxeZ18_
z+4aepVqmJlU+(aYfoTS&8`x-IlYtoqW*S(**$vDxFx$Xl14|6dF))`qZo3yT_?y+A
zM|T-mKzok2+L14Jp%FVUXy+`6bn|c7XMW4(!6+1FTWVmrh>B$*cbGmqd&Mn2QR3Dm
z_bLX`Z0~9VYYcqOMQttp^<SCVMfX|*>kRyl+kLOqdX|WI-;cZ8Ux?wv)ZnU>u;qw*
zg8_M#^usJ^vw<xJ_A@CAblUG8)84byz&6&94(Zzs>@cvCV-+{MyA14RY|AC~GVn6%
z?=diJW7^cysXU*B-MY2%_A%MFxp~;lK?8@l#WTD|4DfukFaOII>ffIB6-}BYeR?^2
zP?6l<HpUJN`kD)ATEFmY=@?Uwb&NHES!UpbfgcT=r=12A0}%s`0o6dzfJKD{G={DL
zld;{Re$JI_gXZ1H&i_i=>xR2kqxvD1j<Q+YeTKw*&0R7xA#5P&T<mBSqhemvz)1sV
z44gGkqEFn0CV8hAX1o2T4R8yp%$9gi$T<VwF(#ih|DL=2t=nFm_jbIG$8h|>{hH+^
z=3;*`aKXS816S!81HUj(zjXg@;G%&`2DrfA1a%#8|0=eC=l&40?c462bKZTKv2ou0
z;JEvmf$NMt1Gnh9occEmJZMld;V4gSbF+J!v2EZUUB{_^&b~{`-@7}e`)5llyZd?I
zOWthh0RwV(8ks|8OOF|ov!%b79R{8lcxvDe17qGv{ZsG>o*8&<px9h553u{QgNG@=
zV}SlK@GmR2iCclxI1~9y6f{xDMA!M={DKw`G~UG1pRx-D>c1qqQ|5YyUvl#Zp~5DL
zntYnhUBpC7UjmQAqyA!M?2J5~(6_ooR&f(0%vhl)X`+;g(q`<Kp#(v9j1TbCn{B(@
zTypwBH%yc@(a%JG6Xi_2LWL$;nJ90ff{8jN-ZoLu#H%LWG*QDu-&%>UnRwmA8zw4o
zMiZ-wWfeZ*u3}={Y-!k5KWSB(J*-7F6MLRzv#2)Qj4RpotDD%@(NpYd_FE=unsAvg
zXG{9*(zKZiNiuObkXovM&ut=^cjVcU$AnibfyJC%3fD4GTa0?7x!FxIQP*V2MROBA
z6MhqoOf)u;YNDQrh9&|g(r9E#LVXhrOr)EbTqbtB)V&{b3e1s4HBP0qJQR%g-x|Nf
z4s$7YFm~uq6B8LGGEMwiC*d6vzct8X?q`{3Y9gCTcBP&C(cR3%;yGRdwzwa&Z=8)C
z)t76+^Szr(Zehl9^Sg>|^XR2HQo}hC=WT7Gjfw8u0y7r3ZB2AEA(^q;bUPF6O>_{r
z@QUJguh^M)XAZeLndoeyi{R&tjwiFLiEbv|c`2vV5%;@X>0UPh4+-LQJxv}e<nCpn
zw;8*&5x>VRYg)grpnU{omr6+A=j?MNf&nHzFtLcsF?lc?2AcTH#27BqcF&wsdJs)D
zv9Mg$U=u@445LdA`iBTgJ;P0mF!8C0Q6@e%@rj9%+}5IPr+nIyhtts{Qg%1&Njp=i
z`DkjGBXvkhWE`HBGI*TXSZ;@jDO{b2@g^pim>Anlcg+XQCz;q;BEXjPz5mG8(kCR(
zR1?!o%r!C3#B>upg>9CJ*(PR~xVqInQ_$GiRavQX=$2D%-b4AXlv2C>mk+w<n|zDb
zeLF5|feFg|hZk};cgC1YOe{6AgEN{~W@5RCwTxsFD}>uWH&MM@9>rEN%zkgPivK>0
z%i_S*Cf1n9+LP9yLu$=qWq4lOdK04?d;e!*gNgjS3kdpC^ZFZ2Y%;Npnw!_(Y+?(O
zVu$+^$+Oi&;U50_m74Q7HXb2FyxqjiITEYT$V)l9OzbxCjfrEFH?fyXHt`iRh)dx9
zia2B?KfuLqcQ2ahCFb#khXlWJsjQ@kpPSn~BXHQn5w2@w%dZ)nyZlE@3{H%lANSjX
z>_+wSj*H=n3Dv~6CQgXR;ngZlQe_hx=SUAE53LQF&`jvU@@6-(4Z7&NoMUsO5R;K^
z+~IybBXFmjujkop3WrTZOk6W@-HcUE$HWB_Kbwe}IBDXPiPI*&H}QkGI-*$C853u@
z`$yfI!|tnRa?Y9fj=tI+!-u|e|0q&v>X}rkno=O=JOidc&QE6SpQ8k1{=z(ElA5?E
z6gE-amrOq9;ci=~?e2%!zYFHMInrelR~RHF7M#g$e<qdx08TmNessZogQdpA9TRuC
z>Am8<?;Y>!SKt<zhuycyIho4pbWbRGWa6<f?7rweF!7LKf5Clcj>Ox_6TzfCPsJ1j
zY1Q*cpPTrT75ExTU&CL_P!l(P!OdUrkBNUd+`%Uf;zGz5!cZH-Y~&B|vsXy5P}f3%
z5MBylO9)#-C>TPa5IziHU<idnC=x<u2w5Q%4WU?we<npr2rq|FJcMc?R1d|T3oQ{s
zg%C!6>@FEXLI|ZoC>=t98%YSEObF)(x!4i~keay`eB@@gYzSxX6f7siUJ;b?<wHpR
zwIG3CN~#zF>8paiCTJx=D+^jh(ANchL(r;%&R-PQr>y5qp|Dm6H9~kRgqq?KwIzp;
zB=8TNeXbBl-GY|e5$_RvZzvW>Y}}pNA*BE1XRGrcNcCLllvp=})DY^0z*&4D)c?ch
z7xeE-B}&{#N(-S$2pM%e>12lR_>{W=J@BZ(tb#ej4Fx9<LL&hh3)-@LD_&}!D!s#j
zAxx;`zO~NJZqpE&h0rR5)*)nvkP|}75aiB@%|mEd)|)HrygjJtfj^R3gpe0P`7&+7
z9h2fV##if?#N(X!4d*r?v<;z02t7k+$IZQ-#P;BISNjk;gwVKX!F#O>b__uZ;qaxJ
zdtI$NaT9xZIt$lz5wxqI?+V&Y(C&h+J`~42>J`GVww}#7ZmR7aiv7UH_8vVGihbyh
zxUXQoFK9nO`-d<<0IRb1gAhoSZ{r4q@KFdeLYNuC;1Gr|kV5#3Q5wRq5IzZEWC+7U
zSkla0y0DAER(P&7B7~0_oO7iDn?0obHrf@jx=%wG6^ecCep-enI=|zX5b7+Cn;62R
z5XOpm$A$1`KG%4L_tPY{2_d}FDVJcfSl1Lznwx%WPzJv&H<d1(D@_Zb>D6qzLfh%w
z_w78f*FP(S*&!?qVOa=sLYN!Eq7YBCjAg;R5Wf5?XF&+_L#R7f;wRMTgoUBl$%)CH
zJkq4rUY;P|qO4~Lw^eeL-0N8$!io^qhww!RE4lmz>2&6r5LSioc?d^0dR8-GJEY!r
zl_c#vS6WLi?RBpclz?}}xtsih=1P<1r~NO44Iyj{Ve(vQQwW<w;Qw%WvLw5o=hk02
zSK1cBc7|LCPeRxc!p;zWWJ-pxD}>!49HQ|IlAOdnAsh(dpa__~A?#y8Xw}NUsl|S7
z_bLCeIv$=X_4iA$B6+?*@>dL=5RQcKHECl%qav@7?_xF2QQ^;M2+yx4eM7I_PdXOD
zal!mH1SJGj;1djK0mgJM$+4M<uBrbf1qDY7K^MRf)E3kXAtV5WEde$iiVMHsL<DdI
z9UCfmQY_(=pr-{rBPcz5HiUC8@OL46FYph7{(7n)1%3+QLI`(4xEsRHA^Z};<q)oj
zh`q=pEgSz^2$$%bxzewK*7(Uq{5wNph-X=QU(3;{S3_9cI(CRgG|hW0gzF*P2;pW3
zw^?=9q}&p8ZSnMX!s*pZCzGxzlYHZ=%zGi+XYp*FczbT#>$T!(35)6jQ79gU@JIlb
zi@8&LPeb^FwZ%fBg=h3L6|#(5u{8WMgug=gn`<1J%5Lp8o_|6}tK-RMp<mzZe;F9p
zlj5ux&8hBL=}XRUq1zNsgAcM^vQW@M5sP0Mk5%to9lWH4EEJ~j+}N1~spCo%6PHR`
zv3l~dh2jE~uu#%M0^8L<;^EX%7Wm@=|5m^6TR#E+4105~#52)gp{#{u3myyQEWBdj
zRSU0KC~w6|J$==tyo*mRRj^{uomRB)&)nFPQI#xIwqhk^LQ*_W{H$W3niZ?kuUmM-
z!k7|)sun+q<L(&oleTYCzq+_efj0%HA?RCz))X{JP?rU_04((szEUgEYvFB+FK5Nk
zX|*iWwy^JdQXLCBT&^Yqnhq@J8Zxk5(iV@8)>?2ZL@lIRsAplkg$WkYETmiL#4WH;
z-$DZm?JTsn(9lA_LY9T578+S-Y~dXX8ToxYTd;|Rk&pdFRnNau;}8EBw|J#D!$Kzg
zuX>iJrjs_akZqxbg**#67XD04Z*HOVJZTa<JY0+#axFez<Ke)T7Ft<oE4rV4+J<9W
zTWDjU#yp7vYy|%acd*dWf+S{1f8yt*YxClH^`mL=Y+WpLwJ_Mi5DV`zFc>oy`djF3
zp@)UO7T&jFKiv1U(3;QBMtsD*1gE!!_XHrPkA=_H6ep<lD5hUuTzu?G?*I!QSQuzw
zkXZhzY4IP@!^w$s1<ypIs*i;6_2)^)R(PAO^bWN!jQ+9s0yub3+HeaWTbMsFhDTVj
zqt@sF+VF|6WZO#bC<~)4Tv%UVjL^fSv3<tKeCFpAV}+8j7t+RAAnh_wnrLB?g|!ye
zS(t2LiiPDCR#=#7VVZ?G7Uo)*&QP2hKg+_zr3JW<85U+*ptp(1nJuQ)p2gNUkGAoW
z#Z!P|o>{<{w6Ms+LeV9Mqqxg_;$^8Yj}EUmJ${+MRK=?+Ev&MznnB2&6{D#3{wgoW
z(uOq*`)a9lRI%yt>n(g?;jo1x^n-;B7WP=!Yhj~>O%}FU*luAn(`tR<77JS~d^Os4
zYIp|ei9h^(R(k(Ccy5P<-PAMDvr|OEE{kVhdf84TdKf(9@3XMq;s*h6NEms*!tF6W
zD!G~H`FNg0$u9-}E1_iDkft2MUHIC<Q42u}nuTw~)W<D+%ivMck6GX@zq_@=2@A5A
zjvGB&s3KJ?kg8(&1UeIHUc6}`#GtZpZiRRKJc(0S7M?uz(*|2;Bc@4V3lTBb;dv6f
zCt0sp9BfpzaoWNe3lA+kvT&AqEL^s5#lm+MzUSsHF8+&!A1wT6;b*ZNI{!Q~x?lQF
zB4F4hzQ98FY78)thIKD~(ZVI>^0pSg3i`W+-vl6sVx-$vd9R8cyl&x!0M`U%K;E?Q
z^0fHd7VZeQ-x8~!Gw-q%S$H5)<30^|5-SUg3aWDEN$gVQG1t!eY@?`+rxyOO@Rx<Z
z#gJzfc)Z}B0zVg&9_zWj0Ga<-_?Jc7#!GgrR>X0*>d9{-pXm1eD4ooB8=Q#k_j%G^
z^Q6T2QbBT7dJEaHM5{SpDr|$41B=;s*~Tk2%G)SzqlAq_8xUe8ZIrT6+D3vM+b^a+
zLziZ6shY}tFJs4ojm)w(eqLXIxSWmVY3cL{)pC{!HY(bvV#gNps*M)Y;$O34b@C8j
zMV#+ps8q6J@l)Bxf+0-_X!h%332*hvt!AUTjYc*a+j!GP4I9ZeJT~64!Qn0&bJiEA
zX(P$TyKCY&V+YpiC;sJAJZ>A0rWK%aJoS5R_-&-xsAZ$JjXE~ow&COIp2iY9#f~L@
zT|1U0=c}eRnJ<M>(|L);*RzpkqrQy>!gyvYJ(+If<B755H?$G3W79Ecseub8{%1y9
z6C3Z?=x(D2muVx@Mh6=mZDiSKY9r4^OB>CEl586}b}Z}}jjVpn=^Pt0KG%*F!yR%f
zQaZNAbAKy}B`3BO{G@VHYa4C2>T<D)O4`mwdoF5$r^9@SbntvhveC&#SGvVUXW>km
z*F^yC0x`XpzCN*=jpxe?lw6-kX1!_gJ#F-|(a%PI8@;*X)8gNwTWs*Yld?XsuZ{P`
zdW(G0k?Wlx!iEM6pj9>o+4zV{w(y~ifns-lhD3L*oG)>%!8V527(FeXzS=)uVpK2)
z>HOg~M%cI&#_cdZw(*ILVqv@-#z;<T;~CAfF^U5jV+=(bpV=5=V~UNbHpY_KuJkz0
zRolI*bPiAR9B*TS=uWgT$;M=XtJE!J&zA<&_wj=Uj}Sl2#&jEtxal^Z)<ci}r8s<!
zjhQxP*;v-U)J@Az&TP7Fd<lZNHs;Z)^KtVTpEk-Yh<%mf#(arj;fwAP8%yb18>^{-
z0k%L|ZexWF&F{`@(=KO$w9>{Z@<&PST<+${?wwvYKMAtN##;K*<^Fnn{P)vZUQLM!
zud}h<j(v23jo*0LU}K{V!-i>Nla0+bzOr%H#ugh}ZS1wNkLhe<I|E>Nvz<0}ur_uM
z$RD&lRHGTe(IKh3Z0xr2U~DRJ-v!bh8>Ee9CQV-;?YD8j#z8LpV-LHBxQcI@eMtir
zNCfM<wWE>(r!$V&_}a#|Hcr?$YNJ)P_Qwc@#1wvG<K)65a*org1=5%uc^95%axPg2
zsA674&`3L9kPfk-a|eCRTNey)(w`Pc{>x26HY}D78^74FZG>%{v2oT$#D+u8%GT4n
zwTs#)`EKSZ=8lu;bZmCghU=r$DL=Pb*1g?nv3BY|XX85?KiRlo<9lY@!oZI<&-QBZ
zgTQ|;kjObN7R%pn8lTEIG29csE3fjdR^>0ZyJ+K*jhhTb8^7B4&BhfQSH-}Q8`FQc
zL3-H+&88C42Ol)MX5+>SKU^0e#vhxy^|Q9OZQQZ(m}N&wx=X8iw7X~HJ`2}EiFQ5^
zPJ74##X9-0Y4$>?*Fvf8s@6TTT8~~RJ>e~YIk>A;*XNmoBdz~n={uFNYN7O}jlUQe
zVZ0QM{a@g38~@sf3*#TA!-y<$e)`@=oG*<0VZ?{=<H)SPI|tZSF3w}40N>y!7zSV5
zC>oBv#8F7l!h#kFgYSBf`Q<{1w0IaLC>h3vFiM7z5XRszhJ;ZnjM8CbgpnCWnJ^N=
zcsq=gFc3!BFsg-7J&bZ;yb?y`Fsg)6K8y-s{5q-3YhhFjW9DPet4#B1xzn6Ht8fc~
z&_bzF7>ArZUb?VQDzm5L>tVbhBq>7y@~ejNMd20%Z-!ALjHEDJVO-o@@~tpxhVfIW
zG8{!owuqDG7Gsmc@PzSrp+u%Pj9OvT4x<hyD%^teQWYsDomIF+u_7@}-7tJ%)DNRU
z82&I)!^m>-(#0&)P)}HxMprD7-dYsXNe$6RUc)c~VKfe-k&q;%B{Z80`EQCQVZ0;k
z;Seq%D~zUL^a-PH7|p`S4x?+Be?ve{7|p|w!sryn=}`%}VYCP%kH##LXkN<~8ajs2
zN_eleplt-D=C%T~6SRF89bWJo%=Pf9$H|*BDxq^2zf3B_E?3<pjNc=9zZP!MEsXBM
z=AL2n5K~itj-~yiy~5}%7EUIOe^2ZJhrb_2zc2=c@eyMti~&N!z%bT1c^`!Fp_rXx
zDam;`@cgI*PJMJ#0)4_pFAWXH{u4ST9Q&gR!7$MsF6anBKMvy)0Y(b?si30-9W5wF
zeHO-lf2|rD#<(!XhcO|HHDT<S>z){n{ik?R7?TBPyGWW6M$3H#7KgDU9Q&`|)G(%n
zF+GeKFSN}SU}hMzUT|iIG3NyiN(u7>o-gPEK^MNbx`^IbB+(?crC|&l?IKvlkhqhy
zT+kJQt`wBaRbhNC@M=M651DJj$T!=)E{yf`vslH;?c%r=w%5=3H-@n(jDz%Q7@Nb`
z62_h|_J*-FjBR1;76qZ}Pifo3*cHa4MbZw2)=z0{J1Jk>OHl8xj@ysLtzIPY^rC(A
z{33}*AhES;<=!900l^`Y-7mxVDvW3tC&M@##*r}0FhXH`9mdfxPJ|(c@l7~(bSB$z
z0gefp+a<>QR^ZHEJ1SwQVQ69Kbbhx~UJAY#b#8J8Zx_7U1^;a6Xb9%YUpra?L|(|)
zVT1)fwMe?YNOA<OC#E>XSPkQ6hIANb!Z;ho4=i_KoD(wHU4X^XcVT?b`p`<^y!jVP
zAJ%SnUR?btj0-Fvi(~voLK|(PB^SfE6vovsuCZQ)@mm;|!?+TT8TmVz>*Fb(y;w?Y
z?WH^i(qMAfu7`0`Xl~I3Hw1_unz4Oc2VS}p#$A@s2sTD=FO2(PydJ?D5j+UvA&W@_
z2@yPEnF^y=1TRPMB#ftF{LPXc#`dQr{|Mtx)~+1)H^V&7SfyE-q}bojGuOB6(yQHH
z;u1ltLWSmx%>6fvxCrt^VwqJ`(ENhN3tB+Xmjo^NABTVc5umW3MFj0LGxq1-Ei>cz
z@<Q=Q>@<V{J-r<>I+TdS?l{fLOQj+x9pMkes1iXL!F;`}r(y)g0#{-Lh@fl)<s#_4
zSb8Ob@)6`VN<Mn8;gq2r$*Cat1mhO-!HK}D5$vz#el5apw!14uuxznZr<b?)P7jZ1
zpbgs=OI0JN7Qy@o7DP}zf;S^rxuw83F=>qm+R)(5p0^^X89`D6t_V^is29PIOEujQ
zcm+s~z!Smd_1=_nZazoKOSJ^Qb_8`Icsqg=(dFM-cja@{jleIuz6jWr86h>_PWsHt
zQE3sRM^Hb429enFsKeHHIHcZpzJ?J5#E|EcT#X{JkBBynpqT)T1#KeeI}v0EK!HpF
zvLdlZBH7K3AV=urb8ZC9#nq=T`*R~Wel4#>1bGp(jKto@Z!IW6D*<@*KhQRUb`i9X
zpaXR>0G7GgI!4elf?g3w5lp|}V(TP8=Lot8(DeoX-3Yox&|P%73bq~*ka7t1^p4=;
z7dqdIpicySBX~c8eh~~8{QeOP5MZ#N9|$@~&<`URC{$4o6_S1=_+%0f5p<}K8TLYq
z{1FkbOYn)HBL!vm(+Ebrz@x>e&%~(zgvW|Y-!GQNM=&9Ri4jcViXxa1!DL2Vn`XB<
z_|A9Be6rR*C4#9;w6%V=X##Y)oHR3nSrN>QU`MZ{*%6E`7w74l^k{y|A{R2|M6k7U
z3xZGHO`0bJiuFrc7{Ma$LImp>^F87gN3cACu4l53CApSFurvY!wq+6YxZ2>e;;t18
zU6Eg_B3Ki_q2=z+BZyRTv8|3^d}H5)JlEPt?8d~%zq>g0!YtG3iwN$*^FJn3J1-kg
zDBHwfW+jQ>egs=+SOk|M_?3AY!S)CaQZujeBO4+|_C>IhksQJ9NbHCiwmky;@!Uha
zS40uP{z&Wxjsp>V|Fj|7!l8jLBls!;JA%;hI>p<S<X?lEEb<(V;79~TmPlVma5RE%
zA|R73D8Mm6j|=*(peF>CBTxjOq#8kmCDMPRG{MvbH3T&|odA}g6sBaDUJ~Xx5u6o(
zrbY!gDd?#PPQT!viQwG%I0~GL;5)(m{=Z8R{P05NM*+^$Kc`}nY!@Q<`Nh>=1h~k;
zHKZLc`M-$&ErJ`Yb!`(_b$^fGas*c*xEhK5f&IFm*92`_J@xlVt~yJkC7WEVlQ#wP
zRs?@$CEt$VjsV1WBT#J*!Gj1MMv&?7ADMU*!Q%+(I`BDo62VjM?DeD~4*rPX8Dqx5
zOAek#Vt0W!2l*WQDKNW#3Gla||3vVw00Yk!=Ox;Z-$A?+E80B7inMTrLOeFQpo2mV
z3OljGtSQDbfBA#jf1uogHbos2bMUf*;tt@Ttb-B`D&9!v@1coK>{ro}f+jd9B|vFG
z%Lsb3ZvhIhoi+mH9K7P7rh}77x#h*xsl|P-JE$NqWhx5rs-Uk4TFF7>7gwt|(Bu6S
zd&2<-Ru#0Gpw$I^Q&3*2A;4RL#+?jsNRk7W1Gi9>?7;g%r$>P5RpM*C;M8_dN8q;w
zO%Zfnn^sifcaZ8}OeZfrQ_n$~gA8uL^`vwM^&K>Hu-5f<0|&Q1@UgAvpKy4-mw?QG
zgGS;iabpKf1b*iQXKb7Jz?hEI)6_vT2a<zM4zeBOIA||+s=0$)2W=dLr?hB6C+GQE
zI%wsf!FvVrD7Hizn&+!hw@k&lWm-G<XHFUxqzzsoQMj#xb`B!_Tg_e~@yMYL&j0-)
z+|fa_LC%IHQfDU?KRq0T7JIrl=<4to4*%WC?spw@V?_1zba!xkiNqHhhhNP7`*}`J
z2fZBhcJQ8q{tgDvIS%?d=tnc2WSw6ky-)L&N?c1^fA8ZZlB-Kw(hnSb=wP4&;sa#^
zZOaFaRgcj@4w9Bi9|=k@*ujt&c&LM6FYs^yMmYGw+m2!*9em1wzkvJ~Fv`Jb2k)Lk
zw{!T6TjSvBDO@{+u@1&LsC^Q3PGY=+33Ou=U80!iV3LEo4(>Ua>|lz6{SFQ=P8>{Q
z@H<%TV7h}D4i-6B>|myYSq|npnCD=&gE@5jv!wigB{lgoY0$qh;2Gqe`b(Ml4i-3A
z=%7c2t8j91?PWgC0nh0wF4pZO4wgDt>F^vG%&X&C=3u#l6^y{ru6-k2OKQ2!RCAHv
zxTkCTjikqIN|5tQr1TobhJ$Smwmbaa6V^M}=wK5);NX7_>h*JPVC>aSem2roZmetM
z-K6qxJ?`i__T;6_++qh?9sKr%yL!B<-<_mLqU(nbV=_A&>~yfl!I9)bJyTq58n|{j
z*v<0dckxH|+I?KRo+Rycu#W-rS5l93*W*RLwmn=29sYj}4g<!)mkz#i5Okn9I7~f^
z4F}&k_}aly2j4h2#&r0t!RvRDPLy@^D(fPC(#lozNz%(jT_+sK4ipEfgCEPfDC0lo
zdB41?XgQawWQ_86K;41CP;_89FddAn8&3~wwd2>n=cY?-#y@RyP^nJ5R@jyImVfVV
z&wFs8yX*Knu9FT<Ik@QHl7rI@&N%pi6FDf_IsUAJ?;L#3x|iZQCn$$+>yTTef~#61
z7pFMy;3o$^JNU)H1xEh8q_<yjdEpv9A|^)RBMn_w_&E9du3za`2iF{2cksJ|%MPwE
z<e0N>yB>{jE$-@i^<mP+flVt7aaDTXJ)wf@hJ%|9?l?FRELBl&G%Ck+i`#lD>1>Yc
zHp9v1BKT^EYf*jIeFqO5)QIA(C?2x-v))EgJc`FG{(OcfihNN#W$|ZLI{1t6|GDp(
zgICLzeD0v-KS}Ekcy8QHdh>Jl->d)*K7O~<zl^sL*>b?uaH;gwy`*`AT(h{?DB`0i
z6h+}Ee#wn15XDPT6pSKT&b2?$Rp4IIi4R?Grn-iDTt%WN8bz@vE=sQEZCw9R#tb(u
zrGTqM6eXjm7{#kmBt%gvin39Zi=uQCWui!o0#US7JkK_`7r&iM5C2@)_3jGyyn~)4
zd>OZP{3}tEkD@{p+}Xv4JQUFPdCs?WF}YrgqEZyENAX4!m7}N<#k*%p^)BYh-^b;=
z>1x{5)#PSU)hMb(Q9X(`>7tshGw(O;)4{!Igp0GhG1}GtpN6XnxN1g`6h)IL-ig8$
zg*ysg6#giZqwqvgJBm6{{BSGDOK{Xvi<~~L4)>FO4(4c$UE7Mf-i{(Ain>ue8s!>O
z-Q|Cn<gV+Qkn1w;CZ$GEFNy|HG>jrGib?fc=~2{=;$W_;?`|JM<%4eS*0o$ru|O1!
zqG%k&s-2}~t#Oxb=wd9*uj}HY5qEvAj3_ecr6^iOkrhSLC~~4`9tF*47DaXxUB|hY
zn{D5U+0*VDPi_<~qR8V8c5v_S;gbGM`l_{SWvf_f-z?dvbrfwlHj0i>w2flRouqbA
zw2wmT7;_67moTQ6`@)kXiJSGFzfZ^FouU|hBk4$|+&<M^iG^HU>FOwsM)6G)-J<9o
z#hfVSM$sdRo>7d5;^QcKMbSHo0a1Jq#d}eF*xA)Liua@F6Gf!9>%lJ1Keb&|*Sq^g
z(Vt<am8hEMQpUOJ4|FXa=lU>;fl&;JVyKvRP!u0UF*u6DpTz29zjCfx87|7td!Dqx
z=NcBp@F?uz?wUz1b*Q_DKjykmq8J&)1eWnAK8<2j6rV*gCW=ta_|Z`eigS(a97kGc
zq-!kAdzdsXitz-mxQ^dXs$M6#Z9=1xsjd>^U6Z1i9L4k~W<)WC8}vA7Y82BL9uJe&
z_jRksJe~Zm--fupt>u~-#VlsQout`xLW*m{<D_9puEC$TcNcPvt>u~*#r!BX)7w!j
zh+<(BpGUEpuBaKeD2k;~EQ?}s6icFDgm)dDeWJ9B%UK@9iYQhxDi|K!T{V+ktOEt=
zyUq-A)pRAZ6gO+?S`)?EDE=44270@PYaKHsiZ2*!on7s_xmnLQKTqPmpBwB-9~8GS
zicK`*c@j$&UCnzz?ZK|CQEZE1e-sCz*dE1>DE36LH;NK^iJejGiefio@AcSSpnd~a
z>g%q;zcm;+*0nE+Gd*3oPm+@IO7M2Tq&UbZE#dkyim#$LL~YgMhVAlXz2-U`#gQn!
zX1on@eUk1Xr+>ip*HYj1?(W}<yN*S1Jc>V~_<uBA1-KQ(7k_l~s2|<U&c6G|OFX*c
z(RJzWZY2anQL&|4!d3)DT2KK6^KIw7S4Bk-ke25E+x>rh-+uF*ot-;7bLN~gr)KYi
zEPR!Pue0!57JkpdH(5BD1&wdX!l^8r<`QS&CsJt^zT-M(;fE}oA(K9q`ZN_CM#yLR
zs{{Rco2y?y0JFD8$&9lfNIz%c7fP)xC?vvO;&ECaoH^RV9mSw}X+(ue@$ygC>X#)W
z3uYF)EcjWl!nJm?;AX+*x)c)EZb|R1mlIXQoKg|4Y2JZyJPQfRM#{Y`G&mUfc8Pei
zy6D<p9$#FvZ6X%b7Y80o=d$oe7OrODS{DAy!e3eVCkvOda6SuvXW>E?E^^&#1ug%b
zD~j|MTT6*q_oao$BK_9IE>qN8m#$>tUkc0$f-q_0_Bg>Y*kk4E6#iMbO;Jx#&_}e6
z6~4(WfUA~6{4!XSYcJXytDkp>xRZsuS-3|D*;h<m7khSH?3dAk_3ykLeVBzuoV$W@
z3La-6ML|IYg%o5{kX=C@1$h<ZP>@qWE(N(2yn0=l)>;gDM{d?b<cp-88ze~lqbiGh
z3b=RVS5SaI94Cr(5P9!N_cqIg|CNe9Eeb10RZv0!6ckZVR6#KX#T7KmCi>(R^9qZ<
zXNYv}-RE1RbrDBWL`emu6zmw9Qbxg_DS~<nXI)ys51Zv`??s7N(ocB>6%^D|P)k8Y
z1(g(3RZvX{jNi%%s)WGy$5Pz^GL?#5D|%N~&~9hZMyFD0D0sc3pvsYNnrJmx)K*YO
zfvg}+!Ir0rF25^D3WNgUpD!f?K08T76r?Mt%LYFeqk#HRq@8*wHLES&ye+-6F4jOn
zL(W=74i$|QL>0WHV6}qA3YsVwr(nE-rkt#TlikEX1sMvOE9j!2tAZ8^T5@0t+AC<K
zptXWF3fd}oSgSYZ_*@<_`Hn<N-aSmrSua<~p58%0M+Kb}bXG7iJ?*zKa*Ni2#DAry
zP+JNoDn1w>cT<q5ptpiP3c4%kp`fRNUJ5R!iWR$Ms*V)zo5u@txLkc_^jvn)S3y4o
z{S^%0+uxDDC?4pR<*!RzT#84QL!S{b1%ng}Rxm`t2n8b*3{^0UW3G{7xPqJAM4O$m
z-%W6VIL8I^#V7@%6^v0ZRsnBIZj*ogJhDnk<I{TkqjkAKR}d381qIJ2SgK%>g2@Wz
zD445Yih`*MW+<4cfOCJfy_lw8I-4~}Ydcw{@<uIg7Aa(2(YZ>o*`$-Pa+lA8#bP;6
z!F;Zrf<=6<f~SbCVd7~8e?^3~NR)3TMs*eWtBR?!g7T(bbg_aZVVgHb$axlv--d`~
z3YIH)QNc?Jo>j0y!Sf1MDtNbR%5&_ndWwHj;#G7<^um4V1qC&31(dM6py2H)1uv7j
z6uhC}6*7wgGWBa=nQxSwPZqOekzPW4UqQSXR`TiQBass`<+^Rf8U<?=oaU4jtW&UF
z!6yp#DA=H2qk>%ub}QJVV6%el3RA&BrE80VtqQg&_-cUMVPEvC6Oqr#isS2Iz9e=i
z*vYQWw^%+|^e80ubQ7~iiRu-_JDiBZe^kK-3f@ytGF_Bzk%N}S*VRRj>f%EMA1U~l
z%UUh4HD0?Z5!g0HUj9^IaeS&^uYxZX99OW9{H5Taf<p>ESFm5f7o3rTM|s4wJYw%M
zk)AhDkOqwkG_em_h{FnwC^)L%7>Oq%;CePAnJEiIVwk)sPtg7ZC!*kMN)pP7f}(Jy
z;G*cX;GPjDNg-(|qJenjfpm(m-XAS9LjF#{83pGR{H@@ug6|cm3N%Uy1wShIS-~&l
zl<D%j4RZXX;GcD|YT3l!Pj|^8f8CdqP(Bb{&*m1(_eR&>m2?G$f?pN<rodESDX__&
z9W(om5wFxuYm-O(Ge!RU!>FUc4X40acnbUwjz6hMgg`PZbFPp5uHc-4KPbeMAgTD9
z1Ce<%<<V1Qst{d9i@!MEx`LCMx=FsE;G%*XWF-z&!6gM(6#Pr-S|+~kFVmZMnb_+f
zIE<?bt|?F|iLY--%6)13W$C&C?iU;?%UcR=^IZxaDELpo9R+t4+#?we7G(DQdn2zV
zo29l8MF)!BS0pN{54mKN{0dT3)Y>VN-EPhncMnES?}}zq(SM#yC1+wjaXYWbsUnw(
z`6?Eu$gLueiWVwbs>rJ%pNc9fs;bDZqJWB$DoUv+sG^XHqAH51D6FDedX7{TMO09%
z{dYxLwLRLal^_!4^%uoelu$t!;Zt{#INo3Q&xkJz2MtQAD5IjhiVEzchA68t?kviw
zXud%FRZS2keO6RaDSTR)UF8wonhEPjGyrM@bX!eDbrtng)K^hMMNJh#h0OV?sI8)o
z3Q0xRW0Bt;ORZ7@%_@DUXw)FB+-UJdO_8P|q9R>IU6w<|l5xVWBWk6HJC6euam-ek
za03+$RUY#}Q_6o8Q5B8VK)+o(QU1Mlpyd)iT12$(A}aoxyP1j%4qgRo22Bum1_)}!
zY{PA(m5SCXMyVLBGE$GWDtfEvqoSRP_MDxHOcfo7A{CufbXM`%BS|z$>wGmRX_?Xv
z?V{qml-5;+F(TL(Saw&@Lq$&&y|^^#X?&WymH2=A$#*4Q^}30^D*CAyq|%v*{wfBj
z7^otqBKviz$_%lzl{hH`6I`2@5d&qhwu%^{VyKE?Du%0|K-=9v*p6F-!fknZF)AuX
zs2ItKL<9Kes$z_au_~sjn5JT!it#EYshF$=vV8(qWT}{_;-|^t%Og?ZpSM%ON5v}%
z@l*-UF4%@t%uq2~#T*qCYvh>8_o_IsOTKYaDpf+XOAXYyF(t%Y74uYlH?PYl??jm>
zPKSBv{^BVWPpkM)#YZX@s#v7rO%-pcSgc}+ij^u}p#Mk3QeG#DKBr=tisdSvRk1<^
zMLOj?6>M5ngpGD$>I`B0Cq2*Qn^p9)&m#G2ix*YAq~aA7uc}z3Vo#GC-!2m`lUni$
z8jO^06o9X(ShH1rUBw$JhRh7)9`$xUE&EVnxtdQ^ysct~inS`%so11qvx@a9HgM^m
z78^+qw<OAn#Js>_r9npz$rcq`RcuqST@B>_p4tH(D91XjkCNVK-oA8S+DT?n@t%tJ
zRqR&rj*555DGk%oZ%XX8_%N9=pF)1bJ?R6|Z4KeiE*gC(aWAO7TmD$ZCo0aW_@0we
z@hPXQ;+TrPD)y=Pg7_x|s`#95uPgSG$8!hsBFw`()VrR#E*(^HNX20lM^yY#F|gLD
z4_7EDUTz@18zBB3E*I~R`K8Ju130PTl!_DVO2yYIz9D(skqVRz1jU$UqQEujlT9*{
ztIMsAohEH?iB+6Y(Y>QsSU@b=8l@dwrjwwD?cw-9%Kf0?M-`3=mvlu=RH3QRRs5nN
zONF9BRdKs}F#QjT1=544ARdSWV#ZKms<2ep97%QYQ=Xunm|@TFRTkV0DaJh&zKY*e
z{H`LdBB3Iw;#UsoUx`b=Q4s?ap>x(nb8VN0b`j?|eHDMI_=_TRyG%mjYEt?=+$b+8
zA#zL&Y_tn1E^>i%ysP6M6_+?{4Zmo(tl|n;NyBIj|Ejo3simQ|hHEOWlcO~h)Nn(^
zO%;z-q-Z=(gxf0asr-I8{-eZOAG@RCu8O%sTD_Ygc#$etl8_##cu2~hQ{oY+B125+
z6Ff@X2y`2&G}$y{*N|I79t}A(<kXN$LuyK(K++vSx7ENDvGtBbV>zz|R_4=?Ujysk
z?k>*OZd~eE<a$hQK2j9YP*_7bKH|?c6wv?;B{dY)P)tK{4J9=6{ZHD}LC^!4*+!5%
zUMeD}U5`2#DW##bhB6w;YN(Mv@Twi1-s$jIvA<V97<7bE+Ema`QA1S?)ihAUsidK@
zhAJA`w+j@WS+}HxlRMRID9C8l*@=cf^N5;!bzZS;g4o+M@MN+j>9&prNkc~soiqpy
zvW6xanrcYX5Yf;;LqiSe8tQ7Or=h+EE-?+s4r`)krim`=V`ILGRF8>Vd!mgrL^Zsz
zwOL~gUvHNWJ&;~l)s6O1_KEE&;hSm5(9l{#8x74hw9wE}Ln{sQM+;|yOuvd#T8wTR
z_%?Tr6}`%ewi?=TE*d&;q4SFuY5T8fe`K_v6N&z}O>3j~+KSE^x@Z`nVW5Vt8oFud
zrJ=WmOby*N^w7{#1BC+xDQ%fm5m9GeCgI&J(|h+2eTaMw{WSE~urZRhfx+t{f&Xgw
zY;iv&a6bGuLyl<}q+ytb;Ti^O*xyME(J)lQqc$R~k64;bWG@k1pEgVzp<$$k?~g`T
zO)L?x`O_lr2hq;$#TX4^HEhwaRl_(9<25YRuuQ`Q4HGrY(J)uTBn^`_OxG|&!xRnl
zLQmB&O~a0nGQD|ui;ML=L~NM+bTKiL3(XE=sk6g(T^J+Q*6Q73fJ~d0rr$gwQ^V65
z7HU|a;VBJ#YHpWvjt(RzNtYY<A`Oc*EYa``7qqLOX`qe?%4AuwGDS446Tr(gJgea~
z4X=~DH9V*BTj+R+!%IthUc*WaFKEG@Mf_9p5UX@E#s|r(G`y_g6%DV3EqhlA>OUSR
zR&^1VW(p3KO4l1C9*#=GI(D)+^(_snHLTI_Z4FUpN?_M-IvS}lQBYM|uVI6RO&T_9
zpljmJ@yJGYyG`bG=|8D#E<uqybbGY*6tPXib`1wK9MteOk*48e4WDS(sbQCf_cXk(
z@lX0dN6<SO-X%TXlXi^`TxZ`;lIgpyI8pvU!-pC^(xBXvW-Jib%ZU{+v2tACJEEIt
zkA_b*d`<!=EcQ|$G!*+Ze5Qfx@~Dugd`F_r#%s?+dB27)xH=t!+n%H4dBemZ4Tm+H
z(r{YC5e-K*oY3%<hGQhliSm~kj)&crEG%lwl&MH$6%DMUuQd?(M#D)`S|LG$outV3
zULGOuIT`s@!*?2f(D0*%GaAlnm^ndwuOZvlk=1VpO6=0UnR^~eD|(5aC}h$^%ga)M
z(elPe(&R}Zi*qFR>1d%t)u2(b>By}^*I;P4LNTks)L>~ir{NC`Hu0t*t|6hp)!=FH
zDP{)-c5$t*qyG<=5M2b48h+LAn}**h0n&pSHaj~;CQ54zm+9tRIb8lz!(SRMXt+rB
zACP)p1CLw&&0kFr1h~rMzK;AjDD@u=mni(nm@P$%@`B5~x`ucrmzZBS?J9-8hI<<B
z^S2cK9E^tBB)O<K{AJObT*tdb3(k-WeHHmn!yR%#hPbQY%b9}CC0@lEi2{p6*{#tB
z8Xjs$(UDEZBMPfxV#@3ikGZT2P!5v)t<jaGM0OoH^gxx(sUtE+CbQEu%1w}M7_i8r
zBd?AsI;!f(rz5`(=qRb9fR2JXis&e+qmYimI#PAeO*DH<V1ZKDzT6@3`8+Bhis>k>
zql6yVo931%16y3R4Y`9=)(VSKI!f!PprfLWGCIoYD5s;m&hLMU3T*;)no>PhQ(S8-
zwhfe<<`9*1d^1e0tb-FFwLIG=h(wSMtLdn&qpps6I%?>ssYB8sbex_b*V0j2M;#sA
z?n!jPiTZ(ie8l?L`QeRa9ci4kj&vQYOua0<c_LDCz7XW}+tPydu~+_;>g#Brqp^-A
zIvVO|r1Ka{v8W#SmtL^@GhDT%ZQx>}meN#5Gfw0wk)a2urs_@!$v)3dl6%w<Er|gg
zvvthT(OO3vqD#kM9c^{A)6r8$FCFc5bkNa7M^_ykb#&743O)b)Nn=6BJ|#TM%u7;<
znxdPIOdZ{I^w7bO%I317{~|GFv7oj?@$&xEK)m<X(MLx=9sR@grBrWtN$RVkRH|70
zL3DtQfjVNu+cjzSJb6#w%&7-6SkFDE`BE`NXO0TS>zJT3+JfOaM(g||6^zg^Qs=kV
z3Xjt9u}CBGe`qF%GzKOJj3wGXP8mnc*B6s|3u3ZkeNp>gX`+rvI;QEE&bic1nat(W
zF;xeL{Tbc+>tlN&X@88Ce_0ouxGg$E$4niwbWjOzQ8Dle(#&~(eeA>O@?0JBbiAtL
zHI6~Y0v*rlSi!Z^@wAR-bS%}eP{$%2i*+o~@l!-l)hVA->|7J=pF_|TI=?p1oR{fX
z&R1j=JM>BP`1+Vqt8upB;zU>RoQ~&pyrg55j+HuI(D5Qkx2O2yNMupzV4<%x3Rt*X
zRJ^R??@r<s^2KP`SRZ51gtT3%fp}fV8#*@X*rfB|Ki<-@R>wLWR=QYCYMj||4cV=s
zV9pqwMP%XiIyUGSJFEAfRmGC(VtP@*$x@DO*0Dv$4jnsnY}K(%$95fWhjc}Yo(B7m
z)dYPebk`GRSb3L@tPfIlv+?a*m)6HfevA<P-Cn$><9*J^z$ybD==hK<X7F34_=wA=
zBdOz89iQmf!?Ef3R>!A0_UbsI<EV~(IzH2JK*vEHpX=DKV^lHm1&Jz*96cH*@69W=
zPZWJ7ibHx3&X_V#KCFX|$BBnCe(EIH;Fyjt$uAr>@tK)&T*nC=9687KXp+pq6aI!o
zRVU@7j#Ez_RSD~>50TaO;yWE@bZ8XaI?n3&o^80SMCo^hi6~w_aBOqrYWc*^I)2fi
zP~ek1YBkQ{kT%4wl@=@0((+G{`{WlqBhRbBEZNXu>Tq><To)ZSweeEI;k*V>g_F4z
z@|J@A;x)<Fk*BnXb5fLnGsOMef)RGsFq-gIL-CuA-*r5sXw`8}#~(Vb>A0@rPaS`;
zPaT(ZoF|>=xS-=AF}WcyMjGFi%FGl$f6~5VK|u?Jn%HF>S9JWV<EoDM+kxYVgz-lY
zF{g|8_H<Y3feaSh&~a189WuL)TRLu2%H<dTQQ{R44C9J+;>^eGxdde1dphpxc)+#0
zAkp_oC)*J!$!USs{o)+)SVxM1LIw&O$YvnBfjkEC8pvTFr-57savPwl>hsO=ogIOj
zmtNnZ*~I!0qUo&O`3&SYP{2Sz1FW1nF>vr6kkUT<BEnlb?OCQ8C}IExO0tcCVg`yE
zC}H5-qX78~Mh6juDKewaj4YEMOBpC_po{^|g8q%GqvSzS;O@BEDwtP!0~HMPGtl2a
zMFW)#G%?WBKxG3}45S%|7^rHXnt|E|>KLeQpoW2(25K32+(*3e$pG%Q+|KB@D7_&@
zRgED$$$&6|TnpL2wK<~L)7{QJklvUos!bCQXNhzJbq&-v(7-@F19RHs=s2_=U30_g
zrloI)H8jx3K-55EGE|qq8_%CC7%I~)pzVKtb9BMd-pveT80c)Ei-G0_S{P_+pq+u1
z23i?tZJ-S?{GY@iENvn#+0n{^(u0JWu}HKx(7`}Q1D)8zh8VqqWe3Q#qiH+PGqYf^
z7};O$YM`5eUIuy_$TZO1Ko0{w4Kyn*zMIgVd*aQ`fgZJ|V<y$DJi`R*`xv-fq;+2-
z(6ac5ez_6-#Q*~X4NNmI-QXX)V32{)2F4f|Y+#6ip$3K-;O@pWjG(+N4L2~tz(@n5
z47~SEg!T*L{$+;;PopJ+X4gxKu?EH&m}p><fhC7h&+L}RvlB|2i_$mE1LK;m&i3hI
zvVkc?0`apTxTU#GfY+RIVupd41{N7uY+#mw*#_ntSipraFxSBSAB)Z7?Y$rrNXOs;
zhF{BxlV!wHtQ;yoZD64RrajOef9j@GWU^qepv)|JiGgPftT6DLfu#nP8CY)MSp!?9
zbQ<|kVzi5jS@)76TPIPUsSfkS^9EKLc)`GnBq~X)*c(ZyF1S<B`k-zzac`7a2QM3V
z#lTGiw+y^$;57qZ8~BD~Y~T$8?-E4@-Zb!*fz5o8fz<}q7+7auJ*n=NwAR2=hx;={
zgrTVGa@q!R!ECY7z$UKgZD~2B;@@2v%jo*JCF4+A4Qw;8)4(nR+ev<DDQ|O{2HqJa
z)9n4f37l(`;C^IuEzI!HZay+VfV$Ij?J|k{_bL1h>^Ja*fe*PH2KE^E)WG2};$sq0
zCGm-YpN5N<#>&$!_aaU1HL%aXX9hkG*N$In89!QnX<c-F_8@ZiT>Z44+GidxaL~Xp
z178|A#I6h+F>sX2JyjmuGc%Loae`n<1680^RRi<kxPcSoyAt9n;=imI^htZ-Vb@GS
z8<TFIlLk&1h#N>4IBnot1DXNdz;_1DaBK#CHgML!_Xd72@FRQ36jPdtTx+8r4HW|y
zh>;s&WGJHU7Xw)a6ay+*X<zhS`^^4%1XC|gj+7hrm$}4+>j}evN&Faa+0PQOcUMu%
zfKB|IYjJX;JYuM5ms@zGkeuTD#1cMfHK!m<y?XTG-bn+$8aQv@Zv(#>_}#!C2L3d#
zyLTq#Ert0xzPhEjdR6+%2+Zwy8)Adc=4L(Z#|s878u-`1RRjMRxMbi8#p#2hxG8lm
zCN2{{*Q5pw)26g5PK2LdBCZj`y>Z>Z4Fl9+X!0-$MrF89y}*rg+rWPYKY0gX;*Np4
z6zL{XP23}!P?DR-ZQ_A}hXztiWHa%IQnb8yOiq7CJ~CGj{%)3>)mvmYk;4QtlyaJ&
zEzdj<mVETZ6q#mk9#)#jZ=!&S@dqNSmZfr<`AjT%Bz-hNE@<M!@W2);WCm39R^z~S
z&@)646Gcr_Fj3J&F%!j2lrmA;L<tixQPRZp?@}qy#!Zk1KahSD4d{?(T%(MMvL?!z
zC~tyW0ClZGQsAH%DhX!q)LIg_2r8MVY@)h}8YY}wDOF5VHBrqB%uH^|&kqmcq<5Q%
zZJXtqCTf|eZK93|YD#qU?TpEC&%mj|O)Y0MNP&}0q?zbwqLYb;iF6Z9O*Au6*F-%I
zBd3U(sBfZyiH0T`nYi&Vkk~~IMfr$6)#H<82IvVlHqj((KVh8MS4}W>pJAf8i8dzM
znrLC7rHNK1TARWCPUQE_6>R;)+o3L*Zw!#xXFC(^&A<xlVB+ks%*v0XwWY=3sdBe&
zfn4frqKk=sCi<J`YNDHoUPQQwhwVkCiS8zPm_e+8Eqihn2<)a@6J%5ur;bJXn2_&F
zeN9k5pSC5+9dO5(pydD)15FGzF~kg%w^;bYK_=eV5TpFrGF(ilBS@KafRhr2nn5xN
zscwXcktRNMu-CyT6QjAlHj3LAV`41lXrZ-*aU>NJKbrW-!~_!)O>8o;*~BChlTAEh
zVyTHKCZ?L0V`8p}X>8d^%rG&Ngb~8S3I=*RD<AhQJj=vvPJEK!NO;jvKhMN`6Hl91
zNV2>lE#Uf^{9Et{SC%#o(fdmuvB>1N(ZpgBDyQF5P$B$bp?K6(5V15-mzh{@;uRCG
znt0a43KJ_$yudkD7stDc=S)0rVwRM~ZN0z@(Qblx(Zow8R+)I&1P4aFsKpX-pikhk
zSUE$~oK}J|_B9i)n^<FFEpce#O%rdKSZ#tE?t7B>Vsa3Xr=8A}7;exEyR0*@-oyqI
z8`<;rC^KZZQ?nUUYq)EF*;=q>i;1l!4wyJ-Vw;KWCO$Cnp^3Lm>>$sYc-O>E6T3(}
z?Zj>pMs~s66^c_zLgrd9E2CI<@g9kJee``!HdR#kG|Gr=!>IVk#K$J~n%HOJ6S9wq
zOV_1OO%%E%(J;4DgUl<lRiNQ~X5w=b`%QddLZ2cAj+GheRo;=y?2j_N@S}gEW$9^$
zOdO^tF!7a%BP2x<<U7$XxoX4Zxvg>>3vVf(S$W(Hwr~1LKBjtO;u{m+n)uE{%97NR
zCQg|+O$ragUQ`qr?V`qb?~z3J&KVQmlZGiw(!|+NJ`kX{=f@4PwM)dpPU2@1zfe+H
zC}1JWgks{di7O^l6Pk&niC;N>69(mm3D<;a!s3!m7dE-+u5>kB@Qu9vJv00?8Huxt
z@X4?w(J+mWZOH!gm?cQeDJ{tkznS>m#Ca2cn>c6U4-<cy_{+p=ql38ik}yYt$r8K`
zv}MMBO<Xkb4^d5$j)>K>1Lc`f`@di4S9GVmx|_(z6#tsIN?C2<v59LYu2Z&~xJ$`n
z;--mPCT^1y$I2WG6Z~jMQn4q^aBKUI!n0uj+%s{XlApqXKyI;ra3Jm$whg?9G+}65
zP#C6I$Yvp@g<KX^_Z8VK<lt=)!F;Fp8;SoeOMRD!+!pd!$ZH{A_=q*6c^W1)zlzYm
z#4VC8rh*m<S*UKIhK0fwQZ1CRP}V{b3q>uIumB4WItl82#Vi!Jz!)esKweb&N?Q1*
zk|<@Nv;{d`5T<L0LY0D%p{sHh%3G*pp|XVv7AjhxTex_S!lx$*MguQY5DfoSu~5}Q
zH49=`(HDvb@j-5y1$W5f3I(Q9O$)UwG_cUnLTw9mEJQ4%TaehEZ?urcTZjvFgOq6|
z$T3ZhHXXBGnZ;Mv0_*EpsBZ-hRp!YsznUvfuj%{|aw7{-3mF!gTWD;diG`*Xnpwg2
zT|oryWtwc<@p;P(u|F<LEiAMQpU$ZeRMJ6BfS&3$7TQ{P+rkcuA1g+C3o|Xuve3ao
zM+<{247Sk8LT3xTEcCX}#X?sLnHIWRAP;i0U`l5<E6CU+(ek#3g`O779w~o^mM?ch
zipM?{`da93VE`w^CB859Bhq%rpH~XfG6!0CxFJS7#4IrNh!T<+K0S+wAr^*O7;j;M
zg<%$kTNq_wv=zj^R&>c6VPT|&O?#u<{aG@uapX|O7z<-5{4MAW0uLLNWR|;~flC<t
zwJ^!TR14EcCnLpV3sZ=?8$mK*hnax~gTQqDaFm!~;r~g7O?qeYmL81R7Uo!Z(ZWj>
z=31C%VX1{>7Uo-6U|}JrZ{hKK?Vlora7e`kFA@W_l*Pv*i!Cg%@QfAM!qg=gx#Lp;
zG~tsQ<@WEUEVuBSh373iYheX(UN4R5B2^lTMXRF(R$6$0RJ0^;`#i21<YYE3Dppx|
z*}^&t>n*%u;Z+N7k%=t4X5n=UZ&-MfOfgudi-V|U*3hR%g0v;tdJOukv9Okub1m>x
zb6ZibO8w^rbhW|4MhjakY_&kcpG&#P!e$G`b%}aWv5m1E!{t+@#Wstd!3@%zRyR&3
z75&jXAljW4c3JQ&_!f3sc*nw57QVLdu7&qFaSNYYc%KAg;S=K4!iN?<vhXn<l@;V=
zPKuf>@k85?x1U<rYw`c2Qul=oIP3CLWFmx(Kg%ihTlm7l5er8x9I*KDXB@I{n5$Vt
z&`UPIpqM^LW?J~6f`M+yUmdgXrG?`pezM!X=o>u+vw%Li5g5NDIi|RC1O3LrNee$)
z_{G903#TodweY=#Z!Ivn@jH?nM=R3klBL3VCMHO4B*Gso{K%!RC4M6J<q&i~cH1id
z+Dx<<D_EIjK_T|Y3l>xh8nODc&`AkbBzginU6)7($1}uR(}ZQgCXZWiNsvVY$2AQ=
zyO<a@wG-o>jMg=1CgK(n#EFHw7LpczwQ!NL%ffFKe&=#nIB($`Ut!@-3-o%uJy-Cz
zwDJ2^6kN6Pt;F9Hh6RI!lM58NHzY>=niUsyHpVVlxJ;>N;f94P7XGzx)xtFklk*D3
zVOyn$u2Y5CAdPq{DW@@Lb<@Hvj)6gQ3&keOtiK)J63F*yD{7u>bI-zkif$WuZ9E`%
zQ`FnYZsQTzghKVYlwyP7SEf~bo+pUI<{vL!%Mdwi<g}5?Ms7R!Oy3w05Fuq0^+0qH
zBQwO8-$e4+$Zw;tjZ_;2Y!tLnh}{+v%Ri3Nlh3PHs~|kYsj;$%4XQdtZBSvL^+%X`
zMF|_Q@tcj`ZIrZ8%Elrai*1y)QN~6W8(nRbwNcLIXN{3=qr8m@HmcjGVWXmrN_N1=
zRcutY!QNIC7UmqVq>5G5Ml~DlHpa#+6x<dWdZ=lmmJMM;wm~^u+eRH5l8yhH%%^Jy
z_HwtrV$YJ`O0$C;d&Y|yET+$`u8n#&TG(i5qrQy>Hk#OIYNMfzMmC~08rz^1#?*8M
zF6q-7`DSkdOmwF=xS0(qq8T=t+n~M7q%6v3Cgc$K;j+}qMr)4KMtd7=IJ-kd+p?yC
z;5FrFgsaTO?O>y$jZQW?hmRO==Rz=u$xNixor0_+Wqq`pjZ7P3ZH%+g-9`@^gKP}8
z(bGmR8~tqbx6zw}w9(f_)lxx(;u`<<lTMp4K}z%CVPXK6#zxEzoIFBGV>$<eaZI^q
zo2N>OAvT8E7-3_ijbS#1+xTjFkWEe6*bxzfDUl*#6kkzSjHdF>mEuu?M}f)q_5$%j
zj=*U@o;}-`MRKw+k;GtQs*PzjCfh-9hxv+AY)t7BoIqhNP1<;Qx{Vp(qnRX<@iOE7
z^w}Qk93*qnhcL&+T;kKl0vk1lq|CFiXJ?fD4f>*)UGtQUr)@0c`VNzMk$=BR7i>V7
zq`Sn%GdA{-cx)`SvCPI=8|!Q=xA81_!Nw{ZD{MSx;{_Wp+IZf^JM+a#F3>HB!^4JX
zzqv9KI2p3!^pgWb)4Jki8?V@S!^WFj=rZC}8?V`TJ%pJ|#Tq7pvMljfYWrB4$iF+b
zv6^`3E7sUx5=&~iAlr&h*W1{@*V%a2#zq^PY;3pjwvEj;w%FKeW19^+6PORcYy_(D
z6q|2f4SZJAFn8G4X=9g--Te7_`Hh(}eJLbkV`7kC!1%)O(c(QD@7wr<=(6#FjSp>n
zWaDG5!W}99q(Dny*m3<VIb)*mY6Q2R+Stp*T9V2d-fqqnT=!~-&u#3t@x6^7Y<ywk
zfQ{oePS`kT<B*M`Hjddi%mvyQJ3>ivPa-8VHIDAG18IUM;24m~RabmTp)n({cE7Um
zwT*9Wd}reu8z*g?vT>T!K1D3QBb7K2Vc?q~QO3Txd;XD2FkpIy1K1lmOOmT3C}6+7
zCGqx08$a1FY?wBFw(*M%#fC~2C>uy%a$lAWCW&#E)W|HQ1p}-)>11P+XHV#9d3Zyz
zY}htD8$PL#$0%%233SPQ^8zP7hx*q&DQ+WSBWdGT8@y$2jIA>ezy?$cE8YvT*Us7a
zgW}6UHwS;R8HJdG@(#}1_?zO_K@JBOY+ST)%f@XR|Jb-><C=}@6lFH9*!Y(V&DGx^
z7YG#qdh!R45IiuI`;ydWoXle&I|rxUuyHe-2vrCUBWE%3pN%^<9#Rh5xNGB{jr$b)
zb`U9kzPn(y^RP8h!aQZhi<|Oe8z~O5Ik-Pa@M7iE@T?j4;%Zx>IUVG3P{ct|2e}>O
zaZtcPK?iv``1?{m2l*Y)WkgtE9??8O&-u}l(LxSx>`E!@AeB?TA<<dA^SVS211|!_
z929p@(m^Q)B^)$ql7ogY95BKA>{gj4yzXz3OFJmzAZ4pu*1;!RqerL7JORX8wq%0}
z4k|im=%A5<N)9SJsO_MRgDMWHI;ifTh7%~0w9cwIL5!^N-pF&yL`^3+%u>q<La|Lo
z%e06YY+~?5av&T;9Hcv-=&qYx$PUsR#IiS`F-xPK_GVoN^&Hf9(7*w+?wOR!z$n8g
z(>e#LAVb@XX-4@{2Q3`5<fI%lb->NKxr1g7Xa!_A!KOoi5~KM@LAlK&(uXzqSITJZ
zpuK|*4xU+&+Qva!2kji#bwp&L=$SKcT$50lciPcGCkLG!bP2nnO|flm7pAA?YLHgH
zjbP`Mn~F>a-5o4pR}Ok`z78fjnB<_BgWe8?IvD1lkAuDr26BQ9`Z?(D;LHdyfQ$RK
zJp4$6`7L9QN9Ylv>wA!c!48Hv_^5G^#KK368CAF>5oQ2-xPuW6#&F>rjHL6&!DxpW
z_{HPn#8@6BxFMxH6YO-=rw38yaU8RQ2~Kd5luut97(BAN3+~R79ZYdB*TFmoQyolm
zFw4Pg2h$zo8&G(LgPBBo!?Y98AV^B$-@)Y4#iC?=F~`C2ML|jPla7@64i<0#4oW|e
zo^k?N{j`IH4&uimtf6O&C9@EJ$`p$o@DalSq>!Z!mN{7OV1t9@4xV-Jii1}jtZ?w0
zgOv_m;Oex_K@F49mgh;*mxDu9_t!>Wbnr5{pon<M!Rs4itHP2x65+KEr9ZQY*I46V
zwSzSdJt0NkaPX#sw;Vj$9c|0(cb@MkDBk=gGHgS1Up}#xc#g^IoFG4z`5vDQ7iafH
zH#*qlV7G&J9Bg*5#ld#cvjgmnY~{iYm$y0ia=u`!^GsRMXtCJg1nEgT9qe)f&tdU)
z;@~Gi5Rj)wse!!f;5{y-gO44s{(VxrgAc<gQ06mhrAXJzj*SG*i+$o?kArK=0+sK@
zxiU-fTQe$t`y716<@PYn!{-k6J9yE>OD?`}aDd$BqN<C74h}iE<lwS{!w!x(P#mZZ
zjygET**W-*W9Gt<4IO+#%sBYU!PXg~%*a#<5T;AfsmNQJIVT;Qa&VgTa9<iaFPH*>
zzX}LGJ>%dkC(CI%_}&3U-wzIcbZ~EeW~(`Y0`^9WfH7HaSQ)5@zfep$NQ}s=F)>gc
z=oQo)=nj$&esy3tFdeuKJO>t8&w=CMY74=ambxEgw^FQ8@#vqH=7(}G&aNmfNK`kZ
z3dbYe??@DYO!oWD!S4?KqL6oR&cPp){AB+(Q)y3;T<Nl&Q#t+LkuvS3zuAw2iw^z?
zsh7qSb)<l#E2opx=}Tc~_=<ynDQR8gb8(f+;ou>O$H8?<R|o$&xZ~iagIf-6vl$ii
z`r<zx6s#Zc7b7W@Y<Gze3U&t%IN%%7{pP}{mo~AiSW#2#&MrnZ4^q?~Q_Q-^;UcFC
zen=#ni|j6Hl?(LVe`szGm#Y*Px!mA{Z*CWPT<`=U_2g9-yE0NncN`OC^SdbEqNIyb
zE(*FR<f5pHVlE21NOe)f#T(rVHwo3q_e%z`Ia;{XKY!~bin}P`0xoz~i=$%6^I1IX
zLmRNPi!v_CyQtt|W$x5!<waQ+<y<hJNu`ugu*Zc1mA;~jN-iq9plkHK!h**Psr>We
zW?juibr=0y^mkFiMNJpYU9{lTT-0{a&_yE`bzDd;A}-Qh2p6&oO7b)p@Ab^&k(OEu
z0we2(#}etMu8Vpu>bq#*f)R>awM0fe(VDLQ>(YRU9qFW^Uo=WIGW)_s6Bn&_6=ha-
zQy0x#FgY#5#rs9Y<NAWhmSokX<Hf=jqNR&gF1onr%JweWxM=U9gNwE<+I0}GRTk|y
z<^_VTuzk6MTxBjtM;D!3baugXDK=mwooUQce)E#l%|)h*o-TU1=<Wt48!LObfz3s?
z4=*|xd%Ni4Vp&De*A3)@(_bd95#W_oPz-P}(8UZFGhM`74018n#W>E_#Sj-GT#R%v
z)Wt9t|JF+z?gpm<89NxbE=sG1N+yY6WlGCYE=Ic;<ASz7g$bkW^fy*r8_io%jCV1?
z#bg&#Ts+<vndpMP%1JH~v*mAhMu~9hz^Q}9R2S1+On1SgUlJh`U>HhnuqR5vIE(Xg
zvB<?@7js<9b+N$3Q!eK5buRi2l<8Tbw~BfWEk2ItY0_a{v5<?tAUIG%(q(|@*`tvq
zE}n7mtcw*cmb!s_SVrP^k$;0sdxytf7)WL1{PFU0E}ka^x_E(9v`pyp10{t0a0jPP
zk{J<XyHz9`7dKtpa`6h$;^Ipe$6dVU;&m4vy7-7J;NndeTU~5(@fJyfE9hdQi#0CR
zx>)C8J-J|<V3H@3wV1}wa}dmqpuSDzc9V<EE~s*Ealv3K6<y{8G8{%doTsR^yLj8h
zZWr&6Y*NJz7du_-a<OV`knxpcRv-+SnaL>OyCiJVp^FdP;KUZ4MZ`82j@Cqx%>gBo
zj6Zhq31zs8LoW8X_>{<T@wtn=E*8Gko*3BYqV9>vim5UwllD}z-i7v4{<}Cp0<IZ&
zOFkVTrqm1$;Lztom)c<$Dc==7N}S9WM_lYLB+5mDr0!#G;F{xSj!wAv%7yL1aq+c_
zZ(RJ~;zt)JU7RAnyEx<Gv<uQ0eZ}9Bv<d{qH5r5<Et=1H{wj3V#rLGxnnAs>A;{+X
ziRA4<qp))Ei;FB5iVKyzHd?6Hq<x2@Ogn$6cMz51*)DE;h6|H~6iKtVSQmp_f??OC
zn>?FeEjV@Py6{~5<>I^x-$mTT?=H@fZe1iP7+w74qUDfGezBqHEOB#QKz{tl12frr
z&k8hZ?izo%_|paL)|cyu*Sd<+&qw}talyqEvXYC7F8*P+gXBx35N1srh;Yf?pDix)
z6~kmkLU|~aYQ|L;*InFjvF}3HYh2}+{OQIR&246>(ePp3^=%jbQJ{Gc9`3lfOWEt8
zsE2zl?z_nCA&-X#E*`qb<{`U>M`T0J`d=x<!{%7PYdk4AmS;3N32MkWJmmC{%L@br
zkDHO^Ni+ZD3nBs>RbCJIJQVhj>LI_!&)cG)he95BcJEz&zhaSKN!@H`Yo-Z_j>E*a
z8)M8J{ikbSv=;MF+(RV~l|7X301st7l=D#1Ln#lXJ(TfK?`UJDFLroFkfWI$$`2#Z
zTf+C2_wdRnxq^p^USJoHsfSN!|LRbgW1|6E#Y0sOH9gewP|ZVi4zjVR;RShvWNpSi
z7-e9J#i;B-R&8w$%mA$81!wda7vl-;j@zTMhcpk}J@oJp@sRGJt%r6V>T*aPq8=K1
zsPCbHhlU;+c|i&*jT*k1RL#RL2dW0g=*Uw|JT&#t%nOXupN~bENXFzb`rb*s8SJgA
zXdad=!m=g%2?5r(4uLiv{@TcID~a|VI(X>fp{s|E9y)n+gck2igkO>P=@l*+X|)eM
z9#QdUETx+lq#$MzjSWPl>75AEAJWr9FAsw~4B=or^zksj!$1#xIq|1OKO(^c(YvQj
z;G*Fa7EhEX<`OXvgSfI)gK*Ls{^P@Ki5~1TRm4ya!#s@iFv`PlFOZxs_sucF!xsg_
zv9U7uUvBZEJ&f`2>Esl;m3YfXEa`3<?_mN_=cA#Ii5@0-_`$=E9wvL3;$fSI?H;Cj
znC9U*56^p;?qP<9r#&q6Fw?^<4|6@t^Dx`P91lMo%%H$wM3^}VwBz`S`5qQ{pb&eC
z$e$JD2{2cRj$*1DjHxa1u-L;=56e6(@$d{+`A|_(4xQ5X4rXxS7G08-dwABv3NHFT
z(swB>S5632DJG}gVV3(tX{Co3JiO&$wTBlyyyWq}{P3EGRpf%f;$>2%hZe0x*II$|
zoWWuqINh~KyiTU@@TM2AHf<2PYv{FZk(Nfb;sM(=9@cu;=wTDt;gPh?!+H-JSottG
z<4Fr;@3bKJ!ne~@+3aBp`ymD%NIVsiLbLUu^mt>8pW=Dj!wwJoxey+9df4UR0}mg1
z*zMsR5ATtYr>A7wmGeH;>`vlckAE5-06Zn}z6Tm~G|E2m@Ue%z9`=#5JnSKFK9)WW
zmzYsPI<G$HFY{zyvl-$u_Sq%na|)0)Vzm&B?@D}1_<)Cl9!_}p%EKWKhdmteaMS}G
zcf-?DSWcOf%KXD)9=`N&+yh-wbRp7>#{YH+y1gKM?co~_-+K7Y!$}XPi16a#v<Jp3
z`Lyb6nYSGz@k&u44HRcQoFzMuL8M^E89qN)adyRY=$|OHI6M!JJ^bP!%flZY{`8=D
zP(8RFJP(=&oxpTqQ9gu#NeqbKAF1BnDbu3lVI13o6Fy=+FV4~T5clw_hu=ITJS4ex
zH-gh@JnFu_yuhXy{V+9pi{Cw*^H5}9VXkR#7N%Jc()!E8c@Nh;+#sKNxZvTkhbyG~
z&GJPL|9H4WalKQfRmkj0=36pA%+vY={`GLx!!-}gG~==QbDu>SDb9T$%G;YBZh5#%
zA@AX~hyS>0dBh!x;st_98Z-ufKhU2cnE&#N`xO4<plR|$viv-mTkxBc<qqFO{$$$E
z0FmM&n~zdHO8dy}BZrT|K2m+;^pVR)ejf#V<o1!rM_wQKd<^+2N*_M8Wky4IOt1b`
ziA!Vu-lCun>MctLi9$YjT<hx=jhQAbZ;BQ1QPc-~a91tnqqvU}VN0qpY)@5<NqWo(
z{W+J=XUZkRN31O4qpXjbK5F?W=cBxj%08<2sNkcbk4iqs7yP;fJDGnggK69JThixT
z)kifS)qT|PgDh*>3v5P1hRSM(O|e{s1eJ%{KI-_0_(=C5`4B#2A89@q-(hdprNDxq
zg2y8y{O!<9vARC$5fy8r^@*tIfu2eIhlT)cQVN_#KB7K0`Pl5Ev5zJ`rudlZqp6Q(
zKKlFoqhw_GXzru4k1jr1_-N^)t&eto@EwCzK3e-|!wJ$?b}J+JwoJR=3=tzo?R|9c
z(a}dIKL{j^94b?2GbNtGqh|8LK>3+zqN|T?K6?4+?IY7icON}`^z<=ej?C`}#ij&S
zGtc|*d>>sR{4P@;AA@JgeSP%v@nMZ1I!0rGkC?|oN7FzbF(0FSjPWsuEqx4US6p$Q
z-vq{r#i_%H*olG1^=QlVFLDK&=G+<b$grzdt`{BUg9<8l3YN@-8B3J<nB-%!kMTYx
z5Fu}-P9(PfXh|m|gNe*>rAEPV(hp24xOyFNV0MXVKBoJ4map?M!^cb?3w<o|G0Vqn
zA9H=o3vu<$44F3m93P)o5MAiq^|8RmQ$C*N7Q-{h6$5pJn;PXm53|!A8MivR*vAqd
zOMNW!@eC=voS-+JRwo<t5ZsM1#c5daqe;tsPzdlV4bS;_-p8vxUh}ci#|u7Q^0A79
zcQUe~U2)o>FY=`sL4MB5T&4=*6_Wi7nFpq5jnY0P{JM`fe5~=Y*2kMZ-XeTaS{-7E
z)I}#4mucxp!LK*0^ReE?1|J)J@Rkuw^1{eY!RMs7I#jtcr^;J=Z1wSzkDq;P^ReB>
zK_7=WS`w0vk9~aNW2cW@KHl^3zK`9c$+F@dAMg5LfR8X$Q(~UL)LDVE_X94RkB|Hy
z1CuiL@OYUzDxWfee2<S$iCZ$GkG($j`S{EaQW=-b4Kl$7&Jkz#Mi^bC!{G~J^0LHn
z9`J*tviP&T8J^(Dn!`Sh_&Dw3TOUV#9OJBgeB<LwAIE*1@bMK_c2kUuwxME>yGu-(
z{RBU6LIOL<d7UqQiW9jPxQ>}>OGhZf0pIyJ!{0W^@q>@EKE4kd@JljTbGp2_DMn_m
zR7m_tGPo&iyD!mr|HVg^kMlnM_Mve6J`z5XJ~SV?57&q1!|-8JR`{@q$*U5VmC-0F
z;SL{l70k`3wV=y~n_^e{3f~Wo(b0nxrvRA}VC>gs!8gZ#_3@jJb3XncWnPy)99Zmk
zqKi9P$)L@jeA-L=6^@GP5L1g8bUU>vcEQI*ibNl`eEj3%l8=9VT=j98!eO#}#mBlx
z2_DL(r-hDjy;qP>dd<gmE~O7z{f!3%fw@6rWZEoDe7a5A^YMU>eBAMI*T+2{_kGYu
z%~1IDnZ0?slf1@n#WdqyMq!d69{G6eBZZ$yd=MNErgwT@dBG%Y+7LP7$QehM1iB`W
zD~{Z8d>F?^apZ|3ZyeD$8pn|@j{Nc91F#~F0&x_KqhcJD;wThH;W&!NQ6dg^Q!JH_
zsx&DU$DRS{MdBzL0?C8zdCU6!Yjdzf9HrtY9Y@Kq@tK9uo10<<HplpsSDEl9W#cFp
zNBKA^gtsrQ&GG*p<jt|laa`#gsTD`<II6@^HI8a=RFC7v+GaK5s1Zkp&9R3+v>LuS
zMu085rAFu8?r}NU&3~&|oj9a8z1-ba7HB*;+49XIQ8|vZI3jVR6A2fk`f=0^0mAh{
zfFHsleEVL}22bi6#?gq)+6F-)inS)hSkGw7I96_sHH~BEs0goSab(0XYHHEuakPkI
z-saf<>r32CZ56g`9S6U!-X<*D#?da0_8fT}i{n@lN5?oi#W5(3!EtmB+w==d{-jGB
zUE}B$N9L27?s1sCbMR4*IC_Saz2fK-0=>g>{pR3X?!5YjuO`qxtRE1^K=$7;!kU$9
za>nA=7q%P{$I!6B%s7UHz*wSsXcIOY9><6{MuwH6!g6#R?3Rysjfo?<u@HfAag2{+
zLL3w0m>S2{H904RZ6-fyNnG)o65b9vo>I1d`m{Kvhqp7r^2cx_v*MWj|DVM1bO_8P
zGDBc~91G%@(M!J2J$N;*r^5RGPj+D(=Qqa|amlvCIKgM)Sju7izpJkDvN&FO0xyr_
z**I2&x6ctjal8=1&lCU0Q`l{#EwLBFnwR5vDUMYk+<Z%{Qjg%J=iUl1|7sks#qoOh
zXk8rZ<9H*EH{*CKj@Xs}`D@}>9X=)eZMax#<Ji6^%3EF=!bh9Ja${H$rJJ9$-@<8z
zootIEtCzezj<@63@#N_{A+R$}zizKxaqK27Z5Y62?DpL_h}ieSU$N%>5cnW0S8a)X
z9LFc*&;*JluqTdB<G2*Z<v8||4C45cWL7Tyvp7DF<EJ=&j$?lur=FG%#Bq>Mm&sp*
zC2J1FaX5~z<M<|yBXJy!<I6aX$8judP~s^$@2TP^=J)tvnS3ISuSni2BavE-A1;&M
zTPTm&*XyV0=_lE99N)(AT^x3-$LTm8z9R2D+KesTdEL&$aW;<c<M@Hhb+lPD)}!J4
zZugHiJ2kb>?YZ5Gy(<66AuW*m<w*U7QzI|LVa1`uq4Foo<PNnOYvB*|IEox=#vX<(
zmyHnSEgRTzIC1<M$8VHiaqy8xK^KmpUa368nm6Gq;&CLx-Z<uD_&UCk{rn!s?FI6m
zN1Oc-BIjIq%fa&>8}|-t^%sdSj=w`pW?YH<Lt?lRxe!OIVeKzcK3s{MzZ_xt?v~h<
zIR1^}aU3ZLbQ;{`Dy3N*H{-Y#$JoJ5u7@Q7KDxzM#Bo242XPb|+~mJF?ovwRk_q3T
z&=?&2+at?+A-uO}SHchDIQdCV)+at3_$d4p;cSUO-0{jC0@)MD@&B49^|?Y|<YzhA
zCQk_G4a<CCnLjKGgk{07ER;au5J(M6{;Eg<8*&yQP&|PW2@Ky}sBQvCpkxA76R4Iz
zsRT+VP$7Ye2|TFLxJ&}&5-6WQ*#rhXow03AAy)D_xh2Nip9bb2Tq%JnVPnFT6EL^L
z2t2noC(G&y)JQ-|KqPR#YQLHZ)JmXs0uz2~Ikif^ytlg(;8iEV|AR>3A7aW0q$LnZ
z;O+Gh)?e5XTUa>9-B#)8VNJHJv6<D1*Gr&&0u2(lzA&Rj0xc70m_VZhq6w7Q8f(gy
zKXqx$nys-WVH-B<y*1V>gfkL2b3tmJz`WmE?aJ!Ua>~|Ns|4C5&_03I3A9O|Z3164
ziA_D*|Anow?hAV@c`4Q*fgM|8of0T;J+;Tc?i~{tF|d21f!#avEg`^HbW0$U_)KC%
z65SK%kwBc2N}y)~z1U#_UnlU=dy(D=^iN<w2=_^#ZwRoy9~*CJMPMNRb}NB55&``T
zVwu341m-3%B!Qs`j3??67#2QVRitqV5gVSsms?}JMkFvYghxH8865&+5*YiWW*p)B
z5jJM$6BC%4T{b2J|2;G*>~L}dQ&<_o)53B_SWXYi{NFX383JrSD}mWh;FtF2m=|`t
zJb`Bun4iFc1fB|O_^!nXJpBY-n82bCUba66A1w*tXP!J=n!vIr@ZCcxD-yVvPhJ(4
z1fC0l=fiSk0xvwNe~}1$0{0jdc{zk%3CmZ*^0lyhJuKOPUA>vWTM4XAU`+yFgtJ&1
zmOI08T>|SvU_%01LxA($n82nd@a6=zgz$oAgKx8Mds4rhg!csA5dv!#M|UN#JAro+
zcsH!s8<y`S@JR@~AC~OogAn*IEI$g%k4a7sBYebbPgwJ5SWX!gRPGDm&l31N1onp|
z>p7$YA$%}_LkS#yQhzK2j)dh=5@*=Sm*MU4usreP5j*)Nfs+aRn7~g7oJ!!&Z0X-7
z@Ld9@LzuVj))>n(2|U^w`ys46o51%^o?hG<V?7)EoWL)X1_@Y+;FIQAVQD0wB%mg+
zbYw9t0i7JwrU#!|n<D)0gCg5vy<0?n9GSyTz#%_w$?(Hpxe0jeYJJWPI}5Wh8?YH~
zStb*B?p%}XN#sc4*93k`;P(X1C2%!?YYF_pQ6=zC0+$l_D}l}>GyYEC0;Sy4_U98A
z{dU8Wcbe6%lRkH9`-^0s0%;BZY4&B2v=c+po_o~nh2m+K$;DM7SNN!N#=l`{cFDM&
zzzs^X1TG)wa5I5hT&dgr?<8<LZ2TXIs%*x${koZ*Gp<f*_4~mlclpCE8TUA_gH2vb
zO<Oyw>w^RyCXhVX>`?-b6G%y-Y}bt68%3ut@4EE4R@stZd8tO)vF7b_CXp+NND}Eu
z<W3?_5~Y(UlSJMm@+DC)i9$*GG&<x@;=`7G(znG37YJ*XOqU8Lk(xw_B#^`#v!x<Q
z6iuR75;H&S%%?l5XTI@ZK({}n;z@Mf7CU%KDw#y7B-SP+J{=u)RrPym(Y9FGB+4aG
zCy9IYJC#qOLK4-IsGdZ{Bq}9QC5fs@R8BHyuYEU1s%uNr&vY(4Q_@vh*3!mpv8|`2
z8cEblBJ;FVD~TFsCHB+Y>HUl&9o!bH%|W*6leH}-B_Wdd^Ry%<k(R`+`vds)OWR@<
z6^R3`n?$`Nx^SpT)K8*85^a)bn?%DT8YR&riKa;mJ={5(L}TJ47R~o=?|1q}hkW0m
z@5v6$lE_G+RT8a}nD<%d=1H_jq9rkQqI<q*pFG=RzwPZ?(rLeYORJ&FBA>p~`_rXO
z*u!g$y0uH9QxeklSo<V8u>WNdsd5p_igZkZjoGYo5_LyNtYO)W6HH=Y5;4mEBzh##
zJBdC?Y^a^tGl`L}^c?N{kE-v0lA`FsUDze(@PQH~!%jlLonZ%9giS0tEsf+PL2}MH
zN|Ky&&KZ=bl9Qk!Nnuj=^mI@6ASfaV_`WIredoP%>U`&`TeoiAx^=52b@wFS{ik&+
zVQ0bF=GVs;YwH1rYwtlj4>(-CG3j)v>STMSkkg0EpWAlypc5x0#W&w1eMb2dS7BFr
z*x8}82g63U?IN&wkG9=C=;6UB55D%GCu7ydKHGyi9`y2{w+DSZ_?(&^4EKP4+Su2F
z0Umt8)=g4B5BhsB?v;~;O#?j`By@%f9PGgm4~~uLP<ngZwc>UvkawGr`NwPL2oFYj
zFv)|-LUWV{qdgcSIF+e6)`JP6I?jXfg79y4N6pA&)5Q1kO%gfF6j7bw!BjygnI_0|
zftxD3W(qP(;1bbmt_SlxSmwcUCY}fLJy^&XGIM6w7YK}5U9{oUL{=9w`RUt~#H9jb
zXV{leGQ-ZMUwg#aE<|-!c(BrgogVD+VD~0zl?UrM7T3;$H6Glk?D#RWLrin)S`WV6
zBt6_DZSY{D2V0q?9#Fo?gUy2QZyH!-*&?bhHc8t(*x|v=X4YQKt$8*}X5Z9|$_^Ub
z?ZF-ojxx5)Ll5?GWj#3T0TuRpaKM9u9!#w4sJK~5+AK+%C0bb5T%r+@Bf=mFM?dbt
zo$q2!a$j$WrR0QYqJ3(zBmV)ab2<Ar9-Q{zj0b0VLVDoy;G75NJ-Ft<bq_9ZQXX9K
z;Of+N-!VfrOBX%3<iYoXQ%K2W`je;W{LK=pEaX=`_%Tn@JMA-By}>~}c(Gaf&4XJW
z-1gundeuJj2gYZ!MDpW%;=x^dA|#aG-z;U%%>3$Lho3q3gB|V({6*k>4;~0Y`9nb-
z34AQ@SAiUtBR=uqsTi77j|V^h*@ndLL4fI<%@Oi|f2bid&pWnMdA0~4B|#pETcZE9
zQGKf0u|>L(*jn=-QYs-^YCD5V;DH)ID1e9u&$y9&Xz9c69z6G8ix*qHc;Uex+}-u<
z)4ll9gO@yrylCvjUmm>T+2}=OFaGx6wFd>gDCEUI9{kJG+lyRYyz$_z2k$)ik4MTD
z>3;EqMV?fW9&PQ7mBcU0I%B-i&6`bNb}wQDp(M_W9D=9B7G{<D+EPbuFY<Vi*Nc2!
z)Kgufw@8aKrTkuW*&-G2g8Y*ec5?s3c7?qt;sv}Y;l-{0J}K%&F)vbXBrH^2hgaGc
zZ;^^qe~VOqyR)PhA9zvTi;uiGR4d~{FUojP){7YxGD>+-+6xYyl(z*j+p4G=yS7N>
zytuGMD!jAV&63XgLmk8lUQ`sC55?4~cv000H=Xq2)0OsWUVP$3f){al6RLYr!;5$?
zEJFWdFKP*56=)M^_rl>tP5QIV#SvM4-y+raLM_&U*6Mh1Y`B9Y_g3lI3cHieZ<Xrp
za@O_2<was2$EMy6V#-!2(F;zt>sF~gBj#_O<i&qQ6UN0PG!Pa@8hUZo=Nz+D`qYc{
zTP5;jFUq+cO}xlpxV%X9BF&3crR?cK-l|gS=!G#<SaQeJ)Qe_bboAmg(bQb1we_Nf
z7cJi_d+}ha)LQTpTctLlI-;SI!ggM?_ac*X%&-oRw{{SHUvHHpp-lVDOWA8*j_Kq@
zH!r%2*3JUE2<+-br-d=}s)rXny%_1mC@*?>!Cr&B80<xFFJ{JD`w0A8Agg`7=$FO&
zdodu3f8hmv80f{Rkv5VcSw7GKdNS0DVL~!o;0S?leu*{(I=DuAG2V*_UXYIwI9A{|
zFMh9;N#R6MohFdgNrFuFVu~PBxmhMO=R{t;E6mo<KXT2WS6<BWVzw8{yjbqV97Z^Y
zHLgJHKjotztLJ(#Pe{HLIA7obfoxqU$Rg%;mgFlzmUyvLkRkJ9s774j#cCm`IilT4
zMwL6Ikdw=?{Ig=e+^xCBi?v>?V^(;v!Hdm8bE6ki6J391Yf9WC__{<FIlIuvHZQh&
z@q-t4yx8HzPA|@Ln|QIyi``zFWO%*U<HcSt4tl}Y)_nrYv@fuqdETQ4B?r8yaM4XN
zBERzxQ`d_lUL2(lupeF=d*vVJG3LXJOe*kS$dA*3znmuomfj{&_%)N6y%xukf8)hz
zVgHOb`sddR?iVCdeohEk{Z{1O6)&y|@}0o%y|^d{<8aA~%URq}JBgBOUR?L$h7i`?
zCfyX|mKRO8@xlq~SNm|=i&nKV8~>Qd>Rm5>^di3x1$_9)i=Vy7?gPJ&x#z_%UYK4)
zytvOD!8Gtf_Tr%zkGy!|#Z$&`qBVY^^|2Sy80&&b)?dA-zTEm7Gklvw;_<@ENlmhD
zPA+z~WFemye(r*?)_h}H@av#XIT|*dXH~oidZBv}=Aq$5$P3L2-(;&X!}@%bb?8*<
zlv&oT3#^r63;jOHYIxCgx|O8YXzQbPG0(iHG}`*Yi$9oYW30b>QMZQmIghegR#yM?
z;-wd_nYUham}>n?;GC&e@>hHn5LNO8v#k{Nm~Z`;F9BY>_2Qiu*?iIO?pXLO*?(Td
z_@dvKy_fJyu=m1PAL4v?&@G0s${`|_Q(&oi)?7a17M%X%5hSk<`2?Zz_(nww`cTM+
zIzD{jL+u=n!afx9p|}r4d>FS)D(Z{wBNlEYB7FG3hYx)yA><`}`0bRvN-hVn(y{iX
ze6VKemlmXq4`l@@=R<iPKFVsX;zI?&D`rV5`A}JKeo?@IstR6BV09mA2ompuMG$^1
zuwBl{^4>R_5A8QN?LIgJsVR_>kA0{mc<n4niP}jCJ~(|?TH4XXhec%^E+3M7Xy`*-
zU-Vo}^ug@|-yreb5slaLMUV0NV$cQxYafiG+NVBzw@qp+x-|0Pt8LQWZP9N_l7&u+
zz*K>00@Hm+?-5nV5M7%3P_Ah7ug98+YIA`P)i$ksXzjxeKX&@j#)q~(*!-~j(T@K6
z@QiOTe8}{ngAZGM*ye-eLr2cVhh-eahfY2W@nNVBoqg!yLmwYL_o1r~-F)cbLr)*J
ztW1(0BzG6&>(ObK=QV%0P3q-CZyyegNn@cxWSf+8yVTdm8~Tz5`0xc+aJ$q`V1F+6
zk1bdo=))i%XkoDE*zLQt$<tja+ogGf(n*H-Fx-cUK1`yYcJ~M$#t1Ufhf%a(xN*>a
zA?zMa_nO!phI=eC&4*r-nvEA~6MUF5qZvE0ls(sEGOIq!@nNnHQ+=4`!%QD$`7oXH
z+AhuTA?NufBtsV@Ts7R}?6rPg!i4S8Y_7|8=|J7q^L+TyhlN~ju38iOd><~>YPG<J
z{oAD$E$q};b0+yv3;SZ~`>@0p{aax=xl~Ohl9xZ<WVsJ3eAwW_MuvAm!nN(vO0G^*
z`zjw+`>@7`wLauA-IS~o{;X$MTG&|%H%ubZ$R-~)b9S>6w)pV6t^M32H}Po0)FT@@
zP`I6o?!&J>@N>sbA9ne0&4=qg?Dk;~v(bl>KJ4{jAI<u3n7g2mZNCo(d^pIhu_vWp
zJ$vt28Grv#__sf;Y$6`<;g}EW8zdj~;b>)BzWVlm%Gr+l_!&H@YuAiX&l68^`F!}6
z0rBA*A5Qyl&WH0poZ)n;*{b|g?5q!ga<<MDq9vt*?MXfRCrG$j)pmg!<XO_;8n*9w
zjMTGV^5HV$Nh8IgY6t4s>C6=$uKK|0-I6v|>$>foa=UN%aMOo7KHT-;mJj@=yxTtf
zKp#rPvW#&SNi1pSmo_9n^6>ZJJ`Xe>er6D~_<I81E3o>D=*}NBANugfha81-y;pmf
zE&j34WD{*#O4xt%;fW7Veef`7CG0FAAG}%ICy1Xj6-3UGD?S9Xxaz~mnMK%96B0d3
z9`?Zy+{}_hIO~t2Lp=B41y3_Ss`$Zo1%GfW`J<=kpFX_w;V&Ov@l5t3j~{<C8GLx>
z!+$>f<HNt)5!;)-^&$Vn#5bJdx~3=AHk~)4`INh@`mbxMRdvSrk<E`dKXUldeO5wt
zKSm#M#R~pS!?vepG~fHKL*2p1=|?Wn6!%~KVPg_o-)QpkCu?3m-_4?!AI1Gx-p!TY
zk3xPF_M?Cw2ahFl+=6Tpq=+AtCMHs+s2{gBHf1aQVHJLq@Z;R%#1H%^Ngo;{X|och
zyeqW$MVs}dTYV@-Y_+Lr+f_|V`*};Iy^J4a>6>OL=SKxUD*EwcyHwtfMt;jj0(W<H
zyz1Gck{>U&OAB77ufA@1`9+7S{^*L=@FU)jYJNO_X}@tHrn(@tF2r2l9LrDT7Ju|F
zP-n$uSp6us&st!I<nW`WAFX+8`th+Jwfso+Bh8Q6e$??tfBR1M;}bs;{HW(geLtLj
zxcqRFh<{tI>qlZ1zgIEl;~i4Q4v9@~uBJ8cqxTM}k!Vd4oYjVYeCo%<9TH2;^=XY6
z$->Q+?vM`dh#vAOeiZ4IMw0GF6F*irN@(uK<JyHX{LwF~oB44%&e7D5hi~i$PT7YK
zkE5`KA1(d3vqNg-hxALE*qu^nheXnrhrb^){g~xPdp|P$81BaiKRQs&kB-bMhWchA
z$9n$)-N}#6e)RRDpC6ajxw`n#jZ5H1SAX>XOmCgx4bE<o9)7G`YUwG2yPCD>B?#rc
z1?eO3bLMBA7z$bX`|$-McEM8qPs;$&n*1((pdY@ZCTtxfB!dMG@nfhU!vwOGgO2p`
zmlW(<;+W1P@nei1ll++M$CP;YSU<-5kujy&I4<Q*iGOmvs+oO)kSuRypXf*3of2E8
z_|bN!^y${5`*RZ-r`xCcG0l&GJ0%L=SlqNcL)f3TQ=08ZK|Owh9~&7NKj!)|&yO$t
zSnS7Fe#~cH9Z2u|Hf@0)>vl>lzDioih`mi)B=F)+iF}D4OBo+ORx#9;_RF|m{8+)9
zpO8NIJNLM|$z@h0d3H*F@03>iv4(c|8of(u-5`A}!@jtM|7w$R-?lEcD{5-JANS%K
zvUQUmoBi0vYGeBrKL!nR^x7p&*d=WhJY$zc$#&5?vV?;=ySNMd=pVp<0QUH?mx&!f
z+W_|Yv7ZwRpilq@xO4po`Jwr7$dAK*{8-AqVwZHpkE4EE_2U}P3O)XqAKx(L1V8S_
z2|*}7Daa{-Uke=GGM4f)eta*gX9b=Uc;1f-f_y9RJ3ofpiT;iF`z{xSkkw0qTo!mm
zAl0t>al?-XOn5(TW@+B#*&_JuEXfao+{v>1qp1Gm$IpV?6L_B|svz%2=ZGYagd`x4
zlE;4h$}KOdPyF!s;T8NT_l}q#b$ovKv-JP(MC2@q;zv+$Rp5IC-H$LMyh}=*Za4fe
zMN_T-B7Qvc<DIDfF7P=IG@d6zEF9<$AtCu!kU#x+Dac=0@>hP8>TdsA;A=nr5v23Q
zRusMwI&TG9HvaE7-~arG2}HYO3q-G6$}W&3Hh{P+o<oqF0-yL}atDwnfV@=D;|mDP
zCosRj^mfrjKebCD77n0D0Qq~{s|HXsfMNlZ4xmf`Jfm2O2Y98Biv@y|2%w}OA7sft
z6r_|uzC|w^K)C>_1W;p}yL<p22~sJ53W88rQIImtT57u_Rx68Y-0mnZ>MBO87C?0h
z1BeeGU3hB=z#2fk0O|*#e`d$)bvbui0QLYJV!ky6eiFdPg0Qt#0JXDtod7ECmMCON
z2*8;ocLh*4izf==7RdjqYrxQ5ib)ouCk4<jfCfr|PerwH0F4B>ceDtjSL(N%#FPM1
z14t8c-qCZ&nv23uCbe!NBpCuJX&OK?!J7+gA+V*uRsyNhI)E36(bZ`eK>Gj=bt~Q_
z0KN+vQPZ9oh`vg82tW#;V*sB8&^dtqCtC6ChqJw#*eQVdNv%mJylZ!M4WL^9-2*uB
zL2T~;`UK$KE%gXQ-xT!}*eig0OA=V^)8GDi0Q~}(mmFI*SHr#m5VtH!J2WjVv5x(V
z00z=X04D<&6u{sBW(6=ifFS|sl?zV{U{WCZLNiq0FlLS*BLt2V$ktH-j23*1z_9|y
z2^=qwIuiuxuv^-lQGE2;xXA%b31Dgf(|87+kE#1x;&d+An-04QIA#hmgZNvb{wCwp
zn~cHirNz$)V0{1^0+`FW1n?yT62Q^`mN7T}YrP<VMFA`hU?B}&O`p44Y803DRRFox
zr!Aq|57IWh%Y0NMomKMX0jvmMWdN%J_~Ufio_om@&byYjI)F6+T>c_`T>xu&PzyP`
zcx$9AzL(5VDA^dmrU14Euq}Y=N0T=PuyMDvC4l2?oUHyfxFFvQY!6^bcl(Y2b_US%
zgIrVlJ9cq>dBO*9kY)qe%enV=>=$b89Q?kq!M*?<bhi&nO1PBENy(uA4l`o|IL4LD
z;XERc3gkw2d(6q^d%D|MJuZ5+t(bZ$fUg7iK7fk>e8bH7&vHJ1k>%{C130x?IupRz
z0L}$)d$-iQzk5kc0!d)ERHDD*LIB?eK*I7}0PlqG5`z%HuRJa?tb-k~R|2>Zz|8=z
z2Ec!cxh9b0dLVk=G|4Sm4&XkW;VA3ke+b}5F1O%!1l|qsk3loa^-cIWfR=p|?gj7*
zGp%pJg^Bi0?j-wm#h<yG!Hy3Dcoe{6jwLtnjI%G;7C(QYot#4AZvi|B;AsG!0A#MR
z9`6mn7XYs!=A%LVf#?Ic0%Du<R)wBzn(>;zvIi5C0D_FRJ9foyIsa%Fn`5U{V{QlV
zK@cAX5e~oz;F*lyWtcqtxw100$#@pP?*WXJu{6#4oZFWBQI7ts@J9fD^5~OMLB`7f
z{t6(sj65>Z_oclG;NJk=1n@Txw|!|WuLJzgWn9qGru0o`^)162K&*^78UF<kBO{xP
z>@xE8OqgIvuh}`FOzo)JfVWQazJ1ek$jB)pmyBPg#plVBbmMVyxvBBleoa37IC=BR
zw7l#nqqq#n$S<SItoXt*ipVG+qo9mJGHC6G0_oTzk#tB*XGiK3l~GKFG{DYLuAFK<
zD$ulqjFK`+$tW$OW$W}0WPB*BY5t~`JyPZ#iM`6mC@Z6!jBlsKvpREtofb&SbCk!)
zg%`D}Up>8|j7l;-mC;B>Wf@gu)RFOtjH)uK$*{|C$T(FXy}FEe85S`_4Ix?m)@hYt
zEKj$|7`sQ})TR_}&IoYUHD!D(qqZ2AQR0ZTWZn*(T=Umt;)qSrNhQc|%BUx!zKqsy
zoh})PGTegKm2qKo+iJ7<0H_qs*Yh&-`HOZ9WF*OGd?dZ0j3s-ddaILm?~xdvv|p2H
zt+9+`8Es{>laV4LRYo%z&1Ix<i8=JF_zW3M7@}X3X>fJtgw)ybiBsd7iUjz1fIVYY
zd<%wAMjJ6fu2(C1B7@2o_eiV~sYdd0YJ7VcnKC+XIb`0onyfxbrrBrH;+YH`Wn_$L
z`x#?6ChC7DQ61=SS~k$Mi;S)^x`}L@o7(Pk8Qo>{kkL~{FB#*nwCy9Bp6ro&3$pXH
zlX>g!--=CrW%QHLpZ?I{;zh>D_=5A@+I*ypQ8M<HNf;<_kifw*h6qCWP#MFr_;48`
zvUrPuZW<pg<F7r@U)ETxJzI`j7T2Xwv2k=p#snD?Wh|4iTt@prmPs<E$(Sx<vWzJ*
z_@Jr>NwHI9@cAUX>$c6@LNjE{lrc}nmooZXw9k?;N5)*P!e8;TW!TDEDCAxLa(5RW
z-O2m!=F3>X=*d_tV?&$h&Fl;1=;Or6d1vTX+#P!*-t4eM5J&Fly&FquvxAklkgSlg
zQU<RTU(bZxE3J~Th7tQWel^phkcCe;<P(|Jwz901v5u=L{&bSJk8O~#QN|`2n;D0a
z_AN}&7xBE`FnzDoXRp+n_o|%bmzmfh<DQJ57Qa)*E*Xbp9G0=0%5Cg>1?~~Z>e-n^
z_sQ5Vst06rES_*saJ5KN{)R<`BQlQ4xFX}KjAJs6%Qz$Btc(*fPRh}5pH6ch$@p5v
zH%#fa_KxlBu5R|~-O|Y0bhA&~D>dlRuHyZKb283zD{;!)7czWaSKe;+?2S{eE$=|`
zJ-6z8_eB|(giUs*<;&bza}r2shj>lKbs2YM{3zpw%rhCcW&9xH79+V=8qld7ho0<p
zy_}uUqmFb(M!2){p4m3noEGdWFY7@3N#=us6MmM#5m{y|YVnJV`!XKLcu1FI_+>nj
z@mPk3d$673;9luh8BZASc8=c!UfnB^d-qCDMYZMVI4>i!SNdDX*%XkW$_UAjg@PiG
z@}P{_?HnY71ZpyL(G(VF2&7pmn1V-mobHQOpUZf`>{XDd;13yp%J@h@1qCme_B^5$
z<WlhC9{VeXWsm)xjK3K`8UKhXC2s`zSH{Q#ajd@0l3Vvl{|O$WAe*o-WNUURWEVVE
zL7X5t1XA99Yxdj<@+c^*pooIJ3X=Cp`4r?=&~2X-ZfKvpPb#3G5G5Ou3MzOnA+pMg
z42vo#rT_{`C@3yk%QP&&RyGk!D)>M_!=edg6nv<ll!DSiM=F}YRu(p~kdzf_<ph=&
z*sF6gn<^@(q@a$1PZU&EP(^`*-p=Y!RY5fcvAL~w1=SV4MR(g2Xt}I41ZOo~5Q_q<
zg5~=p7Pel^Z6&g(Nij7Qe5|0B=yhYC#4eQA7S;Xxqy%<X&{RP)1ug}3mFQP<sR|O6
z=x1}cs8SMnkWf$X`U?1ouR)ePiBk~#Q-O`L<c%3#!BYg9`=Vb2r70NRx_G*RCJHjL
zH0!k}{^w5n{xZ=k^qMPZtDv2N77AJ_XvIY=5Zjs_O7ZW1bEHli1-B~y?^l?d`=e&R
z?U&R+fu!J~f=dcI(z1d93cgU#NkL}?y%qFPqCe(#QP7pkEjUjG{^HPGK`$lxO9x92
zL3#?zwLY$Ir>OjMC3<Ck{r!@(U&_3l*jKdnQ_x@dzjlMG;(lqMf<X#4DcG!FF!gC)
z!7K$s6%11_PQiFiT)_whqZN!%Fj7Iv8rLYg7j}=_FO|vd>UOC4PfMFRa=KU@t6=>q
z7n_c)bxlw(QK(H-Fo_0VCrwr`MZx_;&1Vm5vuM9WwfZC4Txy-RI;U%zg6T}orA=oD
zT<~oY`D_Jq6f9M+Ou<|Q^As#nuvo#D3g#<VpkSeb?+-PnopmeS^rY)wN#t+;PRe}O
zjMc9cEa6hVPWn}8Mfr9)ipv$OP_T}EDp;vtm4ej@)(Ag~#5E5rX-b{B*_y9qsFyXR
zZ{(EB8k)I5!A7CRs%3N=;@17r76n@s99D2d!LDGdZA1mT6>L|qLnsej<J!r&uW@nK
z#61f3Dmb9vAdimRu9wf7?NhK{I7x%?e>Niy{;bF$W_X26Izyd0xm`yU98+*w!5Ia|
z6`Y{)&x(Al;G}|6!ni#~;_TS{%Kj+%M!|3UB`(CNHfd)SoKx_ff*$3IjDFkfyn=5P
zq%CWDA!{xS^|<my7{KopB&={TZfBM@y{zC0PdNpDDY&ZO8aI@JUld$da6`e*%*hh=
zn<9&TQt<fz>6U`q3Vu*<N5Ng5T1xZ_jW_!xmR(yM<V1cj$$!DtJ|m&*foSHxcvk4X
zf(HtM3RF7T$@P$KD|n*dk%Gqx_;dfSJkvf;b{>%U12n5o6?hZ`xVa8UXCxPYulFkO
zDQJE((a+#WuC|?A<Rr8vizbDw%_UxbA7V%ux&zWP1v<|+1*U=sj}C7Kbsr2KS+$e;
zACP7okY=aYX<@w>^mhf%Mbirfe+rlA#vg)E=lwvh6#UIoE{M1wUb9KTI|ctK_*cOj
zCHjdwxupFq52cd!AMzHvIVmk+d#g{Er^N(O@M4o}L1Ygi?;wZmViUK^o^yLEmIo8l
zas-hxhyv6JB3BT(gUA;|{vhgJY?6oi!KgKweeSZ~S`<TmZ%v`=N8CI5*=eLu5QT#%
z7DVwNiUd(qC_h~t!=|4ONL2O|EVk;H8$py5O(lYu*wab*d!)@$L6qjWDsrnR6GYh{
zW(6@jh;l)!NVmF!s24=}AU+DBLJ$>$um)iZMn5i95?Ebe<shmELV497stLYoSsbf1
z1dq>ZwFL1^y7jNr7&h61s2xNd(c}<VGl-7`sU=3IPTlgZPqO;D1W5?ODaeb|7@De^
z)tZ<ktRF;!Ai4$7J&2?r8V1oKh?YTo8pMorYjO}NK{N`Yv8X;=8FPGP4CSdoqy^C=
zhzuc57x=y@etw&#K{Vs?b+WG(%FToLVP#D5PIgLG<#x6TqID4MgUAe`jp#^&Z3S7s
zGNzp%8%0OTI|LyG(J{#XkuSjNXF+rl3SENeEC_9KTq8B=6-(Ew?mdF&8N|pSMg`F;
zh~7bb5yZeC`ULU0&>0}GufYBS`w5>p^iDB4ZPI7j92CUhAckc5FjOd0J|c)=K@1nw
z_j7;BZIW)~EJg=0CWvW4Ob=pg5aWWF6vSkqIbPtzASPtlp*~0CxD3veAf^VvDup!l
z`?*-+v^9<yL2Pedlze6o6h1#7apH4=m>a~6AZ`XRFNiOL_?ih5#QY!@1hF-UZ9yyy
zVo?yQgIE*9;vl{XVp$N&gIK}@2;%?7?cB;38hju26+x_GMhTZziafcJugH66)&{Xo
zxV<q5Dl_HQ2eCmo%<k`f-W0@Up|d539bf-%A{=Ntt3m7!;sEu7d{Kxd*xn#^)9p3w
z-_LZ9;0!w@`-B25upA8HP!K1C<gh@FevBKrll@2#M}>se=<{*G-+MyI$skT;wZ<Kk
zP6u%&h)Y3S4&rPO=Y;1}J1=y;6IH5R;E{Du`c@!YzZb0+1-4Y{bI>b6Tn*xSmSqli
z?f>ELBY7)`+d=#p#7pLX5O;zI1R)1;H;5mDcof9rAbtws=O7-4zW0LoMUea4Tq5x}
z9ghBfE)PZ1d;V(>zXjn9!Y3m9B#8TSV(HaWp+nC-%)K=Zk_HF<w=eubyiZXjh+q(A
z5Ro8Mq0do5f-vi}Aas8JBdRpGsympI2J<1elb*0V3*vbYFNDJHSvD#EBa6RJp}&H7
z6-2BWUE;ra_y_Seh<8E!BRc*okWD;K-U!ZlF=+n<5hJ=}SO4cNb+QQw72eN1PDKtO
z$tiH|<NxJt9u;|2tW&XGMLrezRn%3HsG@+1f+{MgsHkGV02EU3p^8!}3acoh0tcm{
zDvGHnuHut}(t+EFP(dt7$<Iwo2;Q!R^==+3s~@PCKi5rCT8;k1NnTDxn}bpr6=hWn
zIVe#`oRZgCUPUmk^&=IY+lj1JQc+pO$0};6sG_2(3X2M>ifSsVs~DKWvFo5TYHRV?
zIUO}r#H*NhP~x>ltX9g&e@u^FedJJ4Q-xh{R!^Uc`TAT8C9QKruS%+|qK=9`))yiF
zL<l?PbhuO`2=2^Mqw@K4G1PIZyhIkCtLUquzKRAaI;rTaB1uI<DsxgQK2_03MKcx6
zRWw$StRhWCx{4GP-8(quZFZzGh8-O5`PqX~6BVOwCS<6%e^C1OXmaD}2~7pJx3N;v
zLWTE?^KgaORw`Nw&gzOxNB7CG?A2C9I~AX);9WvbGac<!bWkCw$W+1V{JojPj+}lQ
zE61fy?m#9v%YezTT~zG4nb3{hb682bs`zno?6t|U-Bt8Z(Nje)6@66XIV3$hDD`H}
zoOiaklfc3%g(Uq{^ru|KOlF9RFI0?HF^21+VvvdvjM5=#FxOYbFcrg94CPv6SU)-x
zy|l0CFK#059ZNhU5nCOSMyi-3_$U?21nF_P*jN?gRZO7G?ACDtk7l<{q^63gDyFHJ
zEQC{3>=9i?2Qn`R@>Jk-6|W9SEbKl@#cWz;tW?ZVF;~SR6^ofO!oqwN3sih5_@X*d
zeU?83F63S~9F=hBHc2rgUkSA(DwcAIrQ*3(WfDJ5idmszm5SA(b!C=sl|*0mTBBmE
zXsRnD8&qsm5msTS*rZ~!itkliRIx>kexBW`VjEZdur#8ubGwQiDh{hSqGG3L-J@bJ
zmrw8oxvjfZxbGKaug?!l`&8`b?h{Sy`(AiZ#UT|F4@<=Z?w0wSR6DBTn2OUX&hW%g
zaYE&T8bJ9;p+-%1Ty|JG#fTl2*yX@s=^GX5`6xN7;+%>LD!ygDt&L;rdC|nytB0jv
zQq03#R+jICkajMqxXcZx;)#kYDz2)y%Vbk=O~rK;w^ZB~-uezpH&m3!V|{m6x~YQ5
zsj>SHDqiQd-eKt0#&yVTrF{y2Qt`8jhbkVa=$6NNk6T7`;V1oHxRklA5B=^3T-=k1
zEL5nT$NHH1{^*DOU&U|?1)Y4#qlRY=UFGId;Zq^2P?);qi=TF6viKP#M`j>P^6n4k
zcR8(WWg!W%%O6gi21RaDLIvtSS>-mx&iacPs3M}`naXbzoxiJiuHprI#iwTLT7Z&2
zRFpm<k^CtXUJAV3#!1QFT;g1gcPjp41bC!~TlxM`@vn-nj>o=HqqkwcRiiiJv5A^7
zA!G|7PY8KK(WdMn#D$PU@YoP?pO2w1r>IW**Pcs|T1O=E+@YvJl6)cL5257|sc;Ad
zLMSM73JE;()=mYg(a5{6W7-{$rCPBNiihyb#P22$LWvNjYM7>>WC$OG@QH>54IhS3
zDumxccoIVCQ1s5(O(AR!p-c#6Lns$Q`4GB<&^3gQLZ}cz{SX?2P%(r`A=IIf5GsdI
zB?L<d))1<OP%VV&A=Dr*Y`u8URq=7m-on=S5Z+WMMB~%SS=(2zb}VF_QQm3`p=Jml
zhd^!@=m;SrpLO$*X1j}9YlTodgn>t-GNr5&J2|J6v=%6AO$fmmLShKtH;kcuR|s`O
znBOSMTNSku5AS!mL+}^0veXk~_7N#5goYtB3!!-kpN7yVgwznyLbzMT>hcwB971vk
zKdpA8aQgdQ^tM+OE2~4UH%kwpX$UK7N=@ik2$ZmiIP!Sv->XyCACX#cIYQ_d!e=40
z3ZZof?LufDLK_ZI&Kh$fwrvPXWowZgO@1t8HT}&pL+B8~FaNZX7|E(u>RcXTdt1)h
z;&BXxokDnirrDWl*3KdRbx10s#2Hn-*sNO!-9wnd<qM%l2tDaZ2tz~YC0yzkLVxB!
z2z^30ctomI-ulr;*3U!eD}u>*-Z&x+2;mC`GlW50yW^?K5s7kQwxbePWN-*i_oenK
zXl1B}g)lsX@gYnIVMGWcLl_;xm=OAHc8+2`9F;B&iQ{^;C~vK-wyAqm>bS-+mJwLv
z7$=Zs7d>k>F@#AWOb+3CiReN*ZlrP)+GlL1g)lvYWg#r*iia>WgfF>*A<PP4b_jDq
zm@7P_C;pwOlk!_z9hK&Vz>d$_IcbX31tBctjtF6iSbFV5>Y@-9hu|n=WrDH%^?`M1
z2uz`))vff060YEi5LSk;E`;?VtO{W@ci-6LwIQV6$+-a5H6m8j{I-~t@>Y2YGr>6M
z1|i?b(3Ov7)P`%#wun7K&AlOP4Po5eLfb;v9>NY*%UJht*OavG4B=3I>n{2bLa}$P
zy6<Q)@Te3#<Yp7EC*K#s{tylbJ9h*gq<#p8LpTz`cg*b&j)rh7gl|GP9m4Uf5l@A1
zLhzFUgP+FGjjyv>6B{=xRK$8lRL==KD{$4}X6LhXE(r3iz`<*ZUJT)q;I~4!9Kx0N
zY67ncjQcbu?p70y!g5_mZiI02y_y!^^msGMZ;R>=T)Qi&tlrIP{ZWvgLikybdjfyS
zYP}!AgDn0qghyHYaR|R=@wrDO8hk3M|ApWY#2bQ-`#OX`2rokTgNfb7DTfda!QfsC
zAsB+n&Hhd5wxg03!rSYqAueAHD~TQgg>y<-iDn29o{b^=&V$rlX!x?^&kr^0y~X*Q
zsaw#R{Xwd=gq0*z&iZEvFL`{05MRK0?x^%v2!Dt0I)qo8!cl3&Y3Hevsi`ko(Ck0#
zo8QXvuOKZ#&E9fHAC=0+Ti=D?ZR|X?*%_lDn}+OK^rS5-Fjiokh8!AlYRILbxCUs^
zlQ6fyf&%ks$g81J?}F@@PeXpui@bm!35{Z?Ur1;c)=)$cN{VVImc_TiS|W>o$X5Zu
zKghCE>zmY4S*@i7DI>7Z*rw%#PI(O<X{ex~q6Vu58=cWmS;P2-G1WCx5jxehXatIF
zE>u-R-P;A|9;;NSp&?!<u!%y8;ID2Lu#4_BHGHhWL9->SUv-J4LM@>{Qb$8=VUv7a
zx#(WrA=2KdAzkRW1lG;cPZY$hp<b4xzJ>;ZCuK<*YWP&}MgkiPOwMXe(U6+O(*((X
zOlrbVXlSaTnTE+i*jz&k4I?!ySXQ{DhE^KB&@fO#YYlBQbklh0EZS;lr(s4BYiAAZ
zwdfHlY3QgSlhHfVtb;%jF4Jck(u!Cc<@&Uf2A*0x_IcW{+C}K_b*d}lQ^-nXo}xW8
z^rbZoJvH>w&|5<v4WE-2jGnQhhuerJN?T`@j#gRvYZ$=fY47AfwHFk26^P|&Hb}!@
z4Z}5zct6?wt|1!i=TmDRlZG<p$E0Ce^p%T*$0HY!edSe-Q5r^T7^7jV22UaD1Py#q
z9>+!0_;=pX7w9@At*i1|A2f`aC=@0M<XouCwVOiCK=ja<&ah~>6vpK+W@?zFp=KB#
zhcR2j91R<FY|=4T!#qw?M}Hk(YM9TBqa(YH1sWD=xXA7r7HL?l@nS0M(eRaqB^owq
z*sNixhGiO7X;`gcXxAdcUO1O)SfSy}x|Ed~LKSUoI@KF{#ofENZH<Pt8a8lHuKPds
zbsC&Mw_LB`zXkTO7hKdVJvFseb4T|9iBHzpCp~j+(Xds+HVxY~?Co0b_N)xGU!rYm
z%8+hxJ2dR%&V8GB^Ltn8a;{w({u+?@GS)H2aPHNxPs2$Kr!?%>@Z(kYVT}(N#sLin
zHFT+9Kg3z|vXKnyWsCX6eN@A@^D~ZXI1!y){4oang6nC^4El5AvYj3d&g=eK!#5hv
zX*jRpH2vAx@{ESFoX#`nojLZ-o85;lx!Ctb#JQ@5?E)8iQtJ0K%dph2eJ7BlLV0(=
zytaPdxh`wCqQS2rpy6sXCGexhi@|VRL-n=xn;LF0O20dAXy|aweaD$`Tf?qPnc9Ko
zcQjO;>i9uJ=^O5e0}^TNE)TKB3H?gBf7WnM!($D<YWPLNeGLyaJks!h8)sPJ@6HUW
z(KzwT!HMOPT;rd*C*+Fy^P7ez8lGw(r~e)eUJcD}xP6S3>1=UKTKS~qszw=ok4d9U
zr_4mv@La<SjX%LdWh!bgxXRpvkye@pox!P_H07AYMI80SEnjgnEGD<-!<Nr9)VS`B
za4y%}A1q92_^2hTzjI%F>mvC>!=D=7Xn3pPC0A3!-x^+Pc%^|eWzgu-@&SqKO54Iu
z-T!F#S401Pi46xOa;4T?buYW%ddFbSv*-A%UW|@4o$dc=$h|qm*{NR38kuX3NwGSw
z>O^fFb#&y=kyA%S9hG$C(ve$7aUIZ+M@L>Ag>)3wkxxf{9R>905~O_Z$~7!;MTTQw
zIafhFx-@&gv=92yUPQ;o6H@PAa~9K4RL8$f9Y?-*5w8zSZ1AD2gpQIrO6w@2;{zR;
z^X(t%C?!a>KvKtf_SmYn_h!rLD5ry&UqMHCdYG7;cfS229Yspp$hlt4OSz96lk%jX
zvW_Y`tU7Eus_M9TOsb}%x*$7VIBV$G`H?+dk1plI*H-2>cZY==+;EbNo@ck~s7ar7
zIN0lwD<i}4?SRBTPZwYUbHrLY{xMs1o)GtmjszVUI-2Tm>Tv03sN+)|b#)}_sIP<D
z^Kgd4t)rffIdkp)#Tnefou?(uonz<p8|X;V@yX)i^XevPgEB6aw>Q#}rsLq^jK(^W
zbugYOI#P997?S90l)zB1klQNS(seZ9v12-4t+A`k9L;nz*U?EwXB{ncv}E+SB8-)e
z);ijWm~RfWY@_pmY3{Z<-hGjn=bHQSb$9TX)LyjGALhKIV{10s;{k~sbzb4)etS&f
z`STgAy>Qa`E;_o3pnc9(9o=>G*1;9*p`)jcUON8xt7XAUE+U1AbM4a9)P<W<Vt#k_
z(LqjOUmZM5`c6zG4$$$1j-@(c+QkgiF-XS@J^Bu0u#O=*#_AZSV<`1?jHKIK?vhq_
z;lg}tJzNKI1OrvTN-~;Dkk2|s=Z<#$x6<)tG3)D<sd4$N<8@w-he<jn>)>1HiHt^3
zYu@6~Gk<<sf$;^bQ*@L#E={B71+7!X&}XY!r*oj=5({n4)G<rPY_6S-g*q1T{MRv0
z$9x^JTb%Kulb@BheyL;H^fnKQTR%MFW|svzy!oR;ocqYSSjSg7UKg~sJT48bXuV!3
zbqNDi(#p>r%XB^t6f1PBB)JxS&%8=Ug*A@V+>%_l;#P9r4Z2pxdhR0~>vTLAWxYAs
zO62{a*=9yx{)n4(Y~daZBYzlMb!^k|i;nv`w(HozS?l<Ysjg#}j*~i0ai=tn+pXgO
zL#Jbpj=efBV#IzudWCJ@0(`lN=UrDZ{T+N#;vpS}bsW=ioHKf!^9c7s$(%=Z@WvnB
z_(@G(+j&Bdb~)Upu30!2t8;7Hzt-^$(^be%>o}w1oZvLeq0fqecpp87J1^wC^MbcH
z@gk)cwVmJVxTxc@jw?K5mc{&1KX%Gq>m@GY9jiRULVlIqb@V$fUDI)0$BCF?v~xp`
z-nqkaQ^zgAZwvfE;2nW?1^y_Inr)WH{H)_1<3A++);9%coTeV=c&Ot)W@8wSbUfDa
z8}~0I`QkW7mS2U#wFkvM)#1_crw(>x@d}~~^y%<t$pi0+Kt)GT5H+hcB#5R*f5N7b
zaF*QAVG14*_$*8QyN>5s`~^2!7Uzvf?EX^6Us;k@g8VJ;HBTx*{>^HAqvLHBf2U*W
zaf#itg`?Mp#D)<UM)q*@#XZ;{nV2JtS;IRpN_oP_8Ah%!a)%)`Z^jGA|4D8}a#Y;Q
zlQ$gApJJIY1;Qv8M%6H?g;6LRy-BKk7$1dEIE*4;6cv)<Vf6SWshHqYxOY1SLPBAQ
zFiHykfxr(1mda`^El8O#$_i30OP;o@4((JB1}h1y7)Dx?A{1868l_4Yj@2=guv8Dj
znkBCxNPHL;K??uVfC{#(Ry%uTadxj2M(r^FovOx|F!+R%I^pQo;I1$}2_r#BoC449
zv$Ig4ZWxJSxWlLy#sHyQUm$z66r@2INrE&K_-UBWpO4yX97YpC$dkiJ$>OPkqzOz9
zW6;9rGXye3wP}`4voM-x@fKnDe~jw1%96Aeq)ixY!)O;q`z(3qFfy}v2QG0I??@8n
zH8xSNdNhvBcO#)o<Jc~u+Erk;FuHRg!sr=BUm@ugM(;5Cgz@?R-|PRi&@YVs|9|Tj
zqB>CEAc2Dgve%F>h6+9`OEO%L5n+rBgBLZ83S+d8@Jc8CKtRdZFvf*3K8y)rY~jHe
z#>6ltg|RG*<zY+?V@ep)!<Z4qRMBx-7^{v;yf2%NCg4$wL9KE%DLyldMPV!sM<0?f
zi=P5W#CHyJ!k8=gJb_;doG);Jz=Z-Id2>?#D+Z@+^tvq9KI;<3WQcpIK$0WJr4?bU
z3}a&$o9I9otHW5!xnvf<bzB;fk-#mvCX6*XTKs%1fmydMjNxClSs%s*LFD7o+v8G+
z6H@)g(OGW}qrhG()wYGPJ&faFoCsq_7(2r_9LAj$F}t|0!`K(b{xH0i?Pqt`_lRWP
z%U!>sIg9Irv~{}ufC$K;Fb)br&)c=Krp(B!y~KVbjHAq)9JXIJWpZlA!uWf9^j?ya
zVVnx%Oc-aw=vd6jE?<Z7jp)wzSAEtxPKWWVr2W$t#m|LtK8)|fxX3~E_zPjQJ|TT8
zG~=r}zY`?<g^NvZ_9kywXy;>oXN^j|62{dqN*gF+;2JH|vi}^$y)do|enTLIHwC#B
z#%)1<$dca)<8BuJQIMYm`cB9G62|>-^kR}i1|Ed*FpM{0yyf{H#^W$TVQ69e$`gS5
zC>*`8<VhG$1@VUA5#-47Sjuy)h+QYH8}SKYj<lFS7;+ejsHy^k0xt+PcIlfMqlXa=
z<7F6sg<*tYhVeX%7hyz%=Cd$<7lfL#MX&M+E_Qr>feOhVqV-QEc4~}~W~Jm+7_Wu!
zZ-JE1G2%aA{3|3U)2#hdW8Q`FUl@4|<TVguMCX;wKz2cBiq%*HISu3zk~o1m1okZN
z$}PzI$&M1r`GkbM3J8*4;J>1&paDA1roskVtcxvTps0aj1}damOB(pVKyd>wP@BJK
zFOU5)HKv4t?VQ*0*w!;*Nj?;sB&7^cNK)27IRmo|%rQ{jz()qU8t6tf0~HN?Vj#gl
zB?FZW)MUx9Rxwc3fW?4SRI3TBA+Wl@^-E%?7H{A^A-4&+!+`z&QK0-$@!}r~33)98
z15Ze`4b;h!ylGm@X~1P5%|N<=x&{&rBxkj{4Kx(Io`L!XZjDZAz!6VGf7477l9_^k
zYM_yUnO$6SM#nX#ymvb)96KSUh`y=pDAc}P64S&$h5?D8PR?v<pqYU-2HF~E&NvI@
z)&hV1xnN5{wogiEWk4PseS8WzuS#uapgkogqz(pNzs@*+H8E3YQh~kBFDOjX(ZFX0
zIvLRiR`7X2oek{k-fZWLLgZZxcyA?;bT`mLbewLWr-5DuMj04wptpfO9HL9R!3I8O
z8gOY&N?Y1l`x)qO;0p%Oz?&1&^iu`yk4PP0fQV9#4^K+@x+jqg5)xL27#M0`n1SI2
zMi>}rfbP*ZmUh9M<^RsfYO|A)5=a~){G4E5qJgmn#?gn9(Ib86Q1^HPTgIgFrErpg
zw}l<fB95sBCL5TNRVAlznt?$51QtHbnf7OJEyUDj3GA>U`k0Qn2Ig@!O?+zNO9S&6
zLj#I|1qK!xIBDRNfkg%u8`#W24SYpqHEFql6$X|VxLMq`)W9+WKN*RAs@aHBsybF0
z*f2bGwShHspp<PDcjfoaTL)9t8d%3B0~?tw4EPIcpY|DvW!(EecD#IM{n_r=#Atl&
zx?9Cj{F^9lHL%U#qg|2?GUqGWx3gN#w%foC13L}uGVth_>)(p@9^;dS=XaCuF|e0w
zYGA);I$)sCaaV`@ZerhYNkr-#GH}?y5$@A#&Z7p78L*YI<=fhFB5cPE3@Kqd!M?Cv
zE)y-Rer@2J=<M*bfzt-g7`S5Ks)4fx&KdaDz;_1Db4@GS^SP3rj7z$}$j?gEt2n}C
z+~4y=s^hq1;LmQhi-Ny)CsA^lCw~vy%bBT^Uo&vsz-<FR7`S2Z!l9H~2L9Wea?`+H
z-CRQ}xrq~Yq}2a6@s5FTCEHyCKN?6mRG7SSy`=Q-o%_q!vKMyW<0_mhaG%G%fnN-K
zTG2i{udQfB`$JC0;1fmggjp2pE>}O}v4H~BY`-#Ahf}y-#HR*0gwKHAfQRcMs$3lk
zxe5X1;kcw67o9)Ua?EB1j!Oy}Pz{tYQPM=nfX2*c;u+AnQ|6}rZs0jxHDDMpx#EXX
zA_jI>bBv#z>KdL($DT3AbSot<cnlhN$(b@lJohTvrjJX?U)>Sgw<uTbm4Uwv{KK81
zTjjBFkH*GXGm>9(?gec(7uYHMS2R`s!2OO9Gmzgz0TVGMvYE(XBBzP$Cf3;<fp|x(
ziAoz2e+##bGr=m$)=KVNCLYyx<RxBl<~I3o5`1*Rb*hqMdMVr6N{$u{GV%$9-)lPx
zn*3J?6gA;|W-V-@VM$xIT8<(n;!e4eb!(B6t{*D8i<u~HqJujbCLSJ6q5mw*w+~Ew
zXd>Q(#Y8C+rA?IQKqktV{3SP)4wN&oW@^#0qT0KvZTqa$m>#wYCMue!YN8rFH!<#*
ztFnn1U$k6U&bH!XM-|R=LJ~`S8C!J|Q@h(H=<XUO{&6^#Ow4$GweXN~HmeDni9{1_
z6Lu306Lm~{Vxm@cTTP-M<R1%C<I4>4+9q1oc94wuGGj)0TLR~6!e!!E30qwgoa32n
zZu0c;Nj1kO)iY6_K5tC<*t8CZ+qFNX0SCI|e9*&|WTMG27fB-%jZJJevBgBPi4+r~
zOpG>>Y9h@<XOmwuBAv=6+L>r?qL<x~VWO#tW+r$V+*_B@+(Zi#ZA{dSceFGy*x_hp
zqP2-hRc*|}dC_X(>Mr$)Ketk$En^k$7&18{lM7*@qlwQrP!HQaBS~WL?T$QF2a)@t
zdWWW+O!SR+l-r+D`d~^|6WvVoH!;9OcQd+Mdzt8MqKDu;1rF}$q`Z$<;=U&OnP_#%
z`8nOY=-mB@qkT&9fbO>H<!#)IUziwZVu*>MCI*Q~4HnVk?3j%c%Gy3GXB%c>xQRvH
zq>&~@@XCQ6HkPd&ou@0=Y8`V8oSC}5yKRh#u_or5{7wwxOpG@%&BSyQ6HLg}+fHN<
zcw&F&TwrrdHgThnZ7M_ROh%l0iU}U48%|0TZd_}hVPYozDQBB&ViuPyBbi~GV@8kP
z*#dd|QnI0>jXLvaQz(;vWmr3Vk`|g+W@0(LHL=*l!m&xc>o|C3eq~~biKQma*KlyL
zSV&fwSjl`gv6h+hk$n|=6|${n;`Ov$?P>cjT(or++o6ljbtX2@=TolrCPt1;BH1-I
zX`_ivCN7Roa#XRcYh$NytBGw?GjY?zb`v{HoHlXB#7+~tOdK?E$i!~0&N0_s6Z=f;
z5u8=`$=LlS4lw7P4yNK+n}a`(v!s0OI&9+WDz>A{YR;vc?Fctx9mhwn5|5iW!6tD&
z6ewXkY2uU#&sAra@10i;rSO<7c_8H*(K>sLorl<26X!(VD~y1N3nng^`21kXx2%5c
z`p(4nf+T(5c3B;T4yRl+F>ihb3GuRtx3g259ZX^R@#XKTiEAdVn~+YpDn_i_;O{Cs
zZkf1k;x`jdm^>!#nD~jCg0p^Cti<fpyPT=T@uR@WmF#(X+76v^-81okhYxpsO7brz
z?lT{1I#_a+cRw=m*u<|qqn=wi?zFdwEcEt|?_ylX+C1e<IW^{$*g*sP+P)i`<Tc^r
zZk?Mdw{Ge;VdRMl6%#>no<-$tDi41Xx`{B|sP4E}-Jvl>2e<sNQ8JN|yfvbw>VhPb
z*$%gw*A`*KUL~^ca}zJPvafLS75-p%F6cAteukGO{xb2!GYou&S0?^8aXEr35xnN%
z#tj=mzX<*{@rDOl1T`agYvLUb)d<Q&@E;HV2ns|{FoJ9mWRD<c1i2!Zu)?x0J}EYW
z*-I?saYB+qVCsHL?g*A`x8#W+FO7G0Q0MRsON&Of>H$l>2uioG<&W?I3zlI^EQKN{
z9Em=wrzDL}w-kw>cm#+*J7p;<u$aJ?4=gOc8<u)|EhQqT_9jX`h~Pufx0Jwd5@W7k
zwa`@A2+B^gl#k$}2+9d=8y!PQg$OD}P$hz@LRcw+lO<y-N3howZ5?{g^8B);8Xb$k
z5`i^>S=TI2mRd4YON|KPBOp0fvI)@^0p<1x7M!!3Pq2}XTIeGGID%RcG>f2l1hpfm
z6G8n58bt6(1PKu&M)>y)a7N&w+w(2|EVk5*V8;eayADm>Zne~(*pxie>Z-@t&9XdQ
zV)=NRCHoRfQUnbnNRA*Sf={_R2P};v7&^z&D1srUE&rr6`8C0|Vy9)&a!YCijndkr
zN6;jKG%nK$%bAnX;XRgV$1E8UY@KIm8bSC-v^wjyoz)f*w2Yu*1fNCFDuUJ#w2h!$
z1Z^US9JUNvVCgg_X5?ziKQk=tBk0qG|3iTe3oMxte0$Q;L12z*1<4D~v`l+#=@dcd
z2zo@&lVq-?O9WkKTe?NiCCS#6tFy!M=%l6NDob~cxXO|?)6y$~z85UlmRR~kux5*;
zx4?-TEuTj)^_!^tyY-g-5e#4=MX)@AFCrKi!HfuIMldLX!4Zs!U@U{cXhbmVE6Ye?
z1i80bman&rh+udGeE!d*R2z|!8Gl$l;xa`rnoDrrQfjTm{&S&m5o}*=nH0g~2*xvY
zBcS}llQ9#yva2m;BbNNDEmP=E1k)o(pKX~IL8q0LuY;EOVDuYZwpLkf89vuCi@P9#
zuOe6y!JG)@M(||>^CJlTW$9;kZ8>C_7s2C`(xZiz1raQa@bSf#iS3dOtM)|^ERNve
zBFn~Umbp(Xoflcijp>%95j4JKS?;mCyJ<;x*;YibGJ;(Z?2cen1gj%hAHfFhltq>`
z5v+}19rM|+pO|i8Id;!}d%xvM>(q@A{2!ja14@dbYkL(CQCS3e1dL>XVrEG$LvWY4
zOtUUwL1+;KF#+bRs6>${NJaqxQ6!_H<eZV5bIxfy=SIJ$=l#!rPM<orYq~4kR8=?h
z%-{scW0ds$VrBt%R`SmUm{ov`i9%T>kGmnZ*Ug(<0G53k#^w~D<W%v&0`dApkv}#u
zzGG}2MWX;K3$UsH3ktBX0Dl%>X#w^P6pIS*djb9^z~TZFlXI4^*%xA;H;S<we<kbE
z*@%-XToz}_N`Fzx3b33aQ&#%B0I$s!&9{jD)e<WxjA!CcT^B>!$G#aNRu^DR0oIeR
z3UIb%KDll!2iBziI!@sSv3ssKG*tY1HNLR`n<<RHi)HJ@CNjXe_|V1TUn6r%0a%s|
z#P$O0C_r@uH5BYDz(3Sr1xQn{i~K-MQh=KU*i(SL?4<zbIF|zKCkYC0q5ua9aIk=X
z(G~A|spg>q94^4o0vsdG{}x9$+IU`kc?-f%FPG~tkL=+MhKb)h#7-9A6kq>N{5?h#
z86ye}7RM5?(|j=zJ43eVkwM^m0WK8a5*sgo7Km|QwYyk=?)wB1v95!~l>%HXz_>l)
z?s>6ck8t+IuTcq~7uQqeJ!%%=TLrjX0K0&Hn}|D<&;l3*DEm>GQUI0mdop{@Vxbkl
zUzn|PQkQEIfrQC>1WbzIctLVolpse;+$Y=uj83F^e4e`fc=E|=iJ$->bz|rJe+%$e
z*NnSVR{P>47PXMPT<$nT=!cW{D7aTaIR%d?D5RjUf|3eKDJY`gJ_QdcD6Syuq$sN3
zxr5^V6x^?CMll5sD7bhm{z#Y34=VViYNC&k$ueERJu^fJ1;#ZY*GVjWEbn0jUJt46
zD;dY8i$@d`tC&|tL0JW*6-<~Zpx{xiWiLto(MAiei?Vg<KTj1=N+O)R8h>2D6ACIQ
zsHosc1s%qSr`gvP@$qu`DFtmh<ri(8QC@-6T-tFvUUF}8)N;9!f@c)$UM^QwP=yQS
za{0Rx@%K(At18$$A=15+uWIalwCHspE)>*MkfWd#+aD-m3Ti8;qadyzLqRQtpVt<H
zpOyI2Ki>%UUROaq1=$LkD0o&urh<kFKVZni4yJvaMxrDXR2m^lT}cvdpn#>(HukJ0
z8Y^hKUS#ntO+2UI;{o)4i((C=f;pn8f@TU@C}^qR@b99zf@-q_7tM>`h$@GL`K?fr
zQeQs;lANi6_6qV9tno^>R*<XU`P9e{e$u(j^<<uc&z`B@R>7&-QX5YHbTZK_HhrOJ
zM>IYzU0E)7P|#69PX(_kctJrYj`q{Emr~>GtUy-qBH=L+ca^vmf2BytE(&JuPI9PK
z^I}~UbR+UBNiQpSMZx6!Sa$_I6!bY9Z+ST$E|;%gjc-2Ih}3^g!RrcoE0K?EU{>r6
zwtOc0O$BB43j)*5i(aW3&XEuFA<kQ*6T|N)cvrzU3Wg|nPr>`d61yX2>ZN_4;6nu;
zDJZC!N9F%eJdZ9XUi+trPnF31^qIoHw2pus-wT#sq~N~9`OWC|O9fvk_*y|f1p^gO
zqPYy!*%j}vV1NSgZ}P#v1g}G@#2^I(2B%5_rB}$`rkWa0UR5wu!7v5-!cM~#j7inc
z-jf`mV5EXk3cgdo+o4^gVkfc*j85HVtdRE|%l=-$SOv)yau};Wj*T44{;qq*L<N(G
z-c&o26--g^gThc56r6~EG+vmmN~HeFE99vPeqSN~L<UnZUBTcL@((NIhmI!s(+m<T
zF6~_*|Fc`nO11MdJ5|u`73miRa};cSKqCBWs^;<v`NQ2}vB;aJV7`Kl1~wU3pkN_k
z4VyG9Qm|OTDiy0$EMceQY843;e<=8q5=vQ6uvEcc3J#G`iADv>sErl;qhPs$6$&;{
z#1yP#BMR0lSh7>BrjWiatx>R+Qh72ye!D1WFR|pcP65l^3j`nAz%itr=YqxCEgZRm
z?Fx2KDIJSHKS3=0IBgq|lNqBX8PQ$3yFy-EP9kMT6qR-<*rQ-CMP9+(%rslc<i?d7
zt$hmiD>y*XPZN4o=^#fwQ1Gn}E{cN<VuX(<II7?hxm3Y11;-VfR&Yk)SLoxzV(BLo
zoTMgf72{$=ZaGB;I~TvcKYmuhIRzJ}`V^d3K&j+Dgd_ZFMkJvpx=Sp1bvjn!ih`@8
zrUFI5H3iod+*EKY^-8xj(JMEo`W9ysxUJw08Elg%J42klCjOWu78HpQU_1J@xT-)S
z*HNSLT?*_<nH$B%`;yNcPn63@<Yy$fopThpY)wTO6&|@lK~WX=s|XZ?ROu>;sJN@(
zUn*x6_o_&HE><^Q|33w3YP9kDCL@unWfmGPcvWhezWr}eNR2jB9|p-Ajnf;il<!k{
zaul~Z=CH?NDjrbru!@o@9#rv=$}C7xT*c@2NL{Ch$Lf{(Yq>~QQ9{L&A~A7}(Dckz
z<3%YIkEkfE0xH^f$>7fI+QZVKtMONU5u6TRbgsqAswk(Tx{4Yq9#iqSiV7+!s(3=B
z8!P#gil^D8ih8y4I;N0t=~BFMm@Kd2QA6}uDHE=wqOyu-R8&(@Ma7_%@>_S3RaN|b
zuf!eW_^FBME9L3ClB-tAALiuqYm-7nO%-)i)Kw8v5m%9+qLvzMv;Pj0{%5VytCpfN
z)F+GME9KfMKkOVIxhT7yih@?@#aGFhDvXu#vnsf=s$DLxX5U=ywHl~ssNzc%U#V!M
zqOpoDDqd3YoQf<J&#TB&k<F%5v{I2&(Nx9vqeOEREmZudXEsZfU;HLkXEbi9B8Q{8
zljL|l&W=sGovgG<ey2rDQqfvPu8J9|=ushWcO%KJTdMIY`P&w;HY(bx=&0faHQLy>
zQ?Xtb`NVnZ_W9fxr_+JMm=JN`)RWnrR4mHPmsM1arAq~+JF9qcmCR>eRHMZ!zgtGy
z3ei<XHx+$Uyrtr072Q?5s^T>jJvg@8C0<d%lL8+eRXM#UnW2#M$zYN5n<(Eu<8>8p
zs_3QS4HdlQb?~<6t>S}Ka>qPr<Qg$@S&Mt-h__X|qvB%~pQw0O#itF@-sdwahF4F#
zr()FJ_`&t!LlqyXk%nLJY>a#UQpXxCyHxX)TjEm{_tY!(xr#5?S5E9R75n?<@`1i8
zc--LCsDJK|TX6zktLUd<wu)a=^j9%J#aI>NIC%1jiec<djgGg2ReYmj2nR5;Gmop^
zsu-%`MD0AnYyJ>olKA4S&MZf8rYgQuF<NCVaHMcXskr^JG;x*8atu}I#W**X-xEd4
zTeKM=`WBJ6*o{{)L1kzheo`?}#UvF!klZSc4HJ`9Oi{ru8jOgRMFM}9l%|qTR)}dT
zGMmKSYAn_37#luW@U${R#b2xBnJQ+bfUDmpepYe4eyrNjc)unw9%0zsuPWwHd#m_U
z#cwL+s+g~0ff_B!q{2K_PL4V{UMYPcd4L0^l&R=FJz6mr6Q481>Ru8{>bJwI<bqW)
ze_G1!IP7s^xr)D2TvXv1>EzeB<fUa~_@5$`wSt;qQcdpUSE`IFj#IkVs939_nTF;X
z){!Bpe>B{qVS|c|D$b}lt74Oi%_<I%#45I^*s5Z;iajc}so1VUDkc3xf|5+#GImn5
zOG^YePM$`ozDVv}D%fL{J6U^GaC5tl`l_x}@_VspSqsY1eih40O9$)Z9#V0b*j8~|
z#nh1^dAP(8;_&IbSFgp7Qnw5gGaJTEs5q(Ol#0{r=&tBcUfL@12t52s2FvDy#r>=0
zb1KfOxI;al;)05cM81j}DlVy*IWYH%imNK7ZHr${-IiZ1HykCdksMxfUiDJF#t440
zc-CNXlU?M*Zc)E=%i!(w%QbIv)~f}Tm7+qW_Er(5YBWwqg+->Vo2OIfq<|@P^LT5k
za47EwlRlN$E%EB3(wbdym#YAIX;++A)73J6t)7;3mmIrBH2a~@e=5#BBK@nP@3XN7
znn`sZmA38__i8Alp^}Em8VYMDqM@vYavJW_P*g(+4G(L$Uqdks4{0c_;Q<Y`cElgl
z@X2bq%W8Rl?c9GWOI$wEUd~U~q7yfdRBNV-QLE*W8cJz2rU4or(eUeP`N-3fpB>8_
zF6>d_Q4NiM5o=e=Wi-s6B<v;Glpx+drr~i7PqX(5(h~*ACp0{z;qUgb5A$MAYIt*@
z`0f49+lGiC|HR8{sGy;u7A??+Ue7NVPux385U!%3s)pJc>S%aILp2RGHN-S*?v_zq
zLk$f=!x<_6_-dJS=NfwWlHd{+*P`zd7w`DU=T8>R;2br$tL5TrWYVR@T2WU+Jq-;t
zG}5?}N2Ug@5%o2^I!91N_c~I)>KZwr;c)ki2C4FerV`=C8lKZ4lUfrEE!W6d8nTI^
zhb7i@`%(N4XsY4)KgGh^$!QslTktUrUu)>6AxA?i4R3JD8j>0$4P7+6q@lHjTn+6s
zwC9T&@-)1?qEH(RG{}q`EbjX=lH#@+7Cs?$Un8^3*U&-33mSMF=&0f7&w^VZZt@8f
z?wQ|7LuXEHf{-=TZ4)Cx2)~%BdH;B#tA=hGdT4ls6FHv!vWBkp@{XKLcGobWfyAqI
zM&q7Df`-?%NQg2<isDz|uaP33rV%EYNR;9aNWC=l*6@Lb4>j~5ZcilN(eSQ@w>12F
zCi%98gPo-=Q{yaaJ(fou^`3_JHH3wvzJ;aqPtyAL&HYHj#~S)-_)^2ZMrogD_*BDZ
zR3<Ov@8MQWi*)`MTC`-eJ=W;`Q`tP6e)?~+=0@>NN$D#hYJw=dSd70W`fC`VVTOj8
z8U|_@q+y(f@frqe_=eXS`8y3mNHPt>HH^?AyX8;~!&1QT-vw_ME^61Zt29!>dv8ml
z*xG?)a=#$Vb0rUMqcx1t@V$nY_m^lQ=Zw`bxp{1Mo!rjHM3ZA;f`*A2e$+5k1MQ!a
zG)y7TE;gA1I3{@DA`XAhxUJ2)cci%VVg~o^(=^OkBmYEU*_oV9PS`I9ki^{U&eHI+
zhGiO-YnZL!7Yz$YcM2L`(J+q~+ZX?h7@H{OYA_#>emvfYs&Db(XcIo4f?PhAB9`cu
zu}H&W4S#6(Q^OJszmv@p=^xJ$-7d#jauw*@PFkwrFAayz#sAh&{&4)6(@{OOF_#9e
z5j^^>(6CCwYBI(qv66^2<CofIuOa`87i+2fHC#AQqT^y=X2#Z2|5Gz8$|k&SjeLBK
zOn9?~EgClJ*ra2thHYei9Z4PANm(i=9ffu5)bNjns~WCp*rj2&hT~*=qD#YGvJi(y
zUL7eo>wOyb6FK|hz0QaO)NKDGFD%SnABe*mj!+xy7RNNm^`)carJAME7Zm3i|8#SS
zmO6Wld{V<H4QDl+quLoGPP5q~@iWByNZJje(>-s`b2=I>X}C;fHAXzLL`)hXE^0_$
zEAt#$S(c7wNo@ZLsdGG=z;*HuNkCd_xT)cm21SFa;kJf58VcCs(Gs*{Ox`8t&FDPk
zerat{>Blk&O@mHJA192=w2SXcW2+_%4b|7md21uZWovM#g){_weVTAJc+|ATq;5uh
z+icOn5D&cHF4S;WLz<3zbo@(YI7IxHl2ZbGXA8bn=A;<eFqX4RynjgCtK*BU;>iV~
zh>rVoRMqi}j-op5*YT*1GCGRsctFR)I!fyNYg#;{gXgJq9mktUwD>)o9V@P*_gb0U
z#rhJdUw40%`-CG(>5&z#w2nt~tRF21uXrxT6FT(hoId@mD66BKjtV*|>Ud1Y<2s(w
z@wAR7bUdkJ;#axLjtL6L!rk$PopM+<&&VsUV`|5oT4w~|L2KnodL%)Wb<phJ`LLL<
zR<5FBECo=`p`caMQC&v^9SwEV&>?hwI}vqs)YK8v5!aEyDW8o0&oo34BT!4nKYpZ3
z7p;}~SRFT6S4XCf`a0_Acvi>HYX!~z5ATn+oK%y~YbTQlJu)uwU`w-GBOQ%(G||yi
z$8$QeIPpMKeL>3BabT@H=|Hk+3#sf|3GrMkZJ}tUqlJ!^ItVw{`8kC+<&<TOE#f#b
zb9CHZD|g(JlytP#(O<^^9l1K5*U^&?>&Vm5MrW)(IuoBd+Ua;fk65?8j(nYe)g86j
zL1+3>oI1JV{|ELYX@}WyG#+mrlXbkPqnnPGb<k|pMaRuaHD5}>Tq(MyT04CpPJ{OP
zcCn_5vb*c(q4Q5h#4DufI{ES15-WN8nvU0XyhkeNctgjVI{N5%OUK&g>A{^WD!N`e
zXwB}eW1k}kyscy0e(`Rqd`FK~sLLngG?`|$i0uf)2Rc5~(O1WpIzH0zv5rr5e5T_Q
z9jM*7!+h~ZajC{SnE;(fpL34$#TPmT4iwGS$*dVNU$nn0u0Napm5#63Z|y|ohOsNV
zL_Zx}cMAdobqvxmi=-s;==g@5rel(hAv(U*F<QqM9Yb{t(=kHFNF9{x;i<BBIq5`)
z>@iC6{^HUo9pCBv<U+j5I+?d$tdsW)65s3a+U1PXF`i6F*;y!t%oSPN!~`ARuajx$
zm^oiqmy?7i>zJZr8t1O#2c5@2ym}_NyJ{&4_*5O%PO<Yq;ZJ(y^Y$klr++UrL&r=C
z#Xyn%N1;ErMW+uM=XcI6K3m5xI{qT1bo{Dgj*dk-7VG#;$6Ourbu1t!RE(@`yykIg
z<?{$Ue@iSR^Y0WtHAv%5b@tC<iH>E5#2-5T<fJH-qXe%`Qe+5ye6e^jD}AXBy45c1
z5X;!0j#WBV>&V$DR_LJX%9tir>d_u!$CG(nZ9CLXtkJQK%ugPmq8Kga){t1POT;$l
zIN~MArJGVUn{{l_(ab<|16y@$(^160eFnDc*rDT!j;qxF6iFS&*p7}}I(Ac(sANc4
zs+Xl{jjqJ^>DWurJ{{jGXS3X&noEN&(cs^nFAk+<bVSGD6aweA%)GlRxqP8GN<DKr
zP6c>^GF!9$SsmweoaA)a{`kacYQj7QAjJuvN!7ejM>?<Lf{u$iE)jd@;xwl}u{IIj
z5M+tVMD;p(eXRuH`J=@(9oKc(IvgE0C{{WObSQjxx41>Q)^SJ2=5_LezlzQm;uJkv
zsxPjSRU%o3P64E<shdtJci$$0b+Snr7m~%X9W62SS5aoYysM@}y13*wY7YbV81Quj
zl$T8DUuw4Xa;W2OO0ndxmuXMVEGr$_75{j>{2xi&JVs#JdYM{|;&88lLIw&O{C=$X
zDx)!L%=WRO2JScTjDczfiWzvoKsf`C8F<jZLk3D3C}p6yfph~8lXhD~34=*$q6ghZ
z+XZ)Yx6eeo&2_b<M+}rUXs$sSBQoa00DT!h-WQ!&cx&zz$M*=D+{+rMXC+zlxPd1O
zR4`D{z>`L_S$f*Qy;}0A6g<O8vZlO&+0P_8YDw`ztdfDs<eUR>YVRrrs-_;}(r|sC
zSmq?1cKN29UEM$p1J4@BG$0JrG*HVxZ38g_aRbNWQig$`PJQ~?zB`osVxQQ)OPnbx
z4QiBLhqK!sugkgDDfP#Cxt@VlyOVwQi)Xq?^$jEpWE*H=pn-vg2A(sJWnjvIcq0SE
z`M$<d<J2u{$U+PE$D5qV=C*{(K~p1A_0m&Psc*%)yco4{3j-|;3^Fj-K#qY{23|Ap
zx`Ctt$v|fVvVqnHa@jJ`XyADRc?Q}UXm5bJy^Vpk2L6qg+IJzjxr4+8&%cuKQr7bX
zKHQn4AHSo47f7bvf;yjyoy^wBh*pXwr?M-(-0DRGT?}+L(1TpmA)9>ll7X%Ux*6ay
z!G-l@_I^ITU`ym%&v+^S6$3q4^F-e3u~P4a;*0ZfD%e*I)M+p2--$O2ylLPa1MeD<
z&hM2f`xxk*0$Lm^!OE-q#9Id5HlkH~$9kFNdxQ;qY2YgZ9~k)1z~=_OFz}Iqj}3fc
z;L`{R$qU=X*RN#sXcYU5m}wLnFff+@H9z6A>*c=edSSG7(+|s4;A;c@QurBYpg-AZ
zpx{a|z`*%(k!E<WRwDCRsq|jK&Gt72h8Xynd}ZKU149i=Ffh@;FayI4j4|-Nfe{8q
zlGgi^-x(Oi!PJ*J)`~WJt?Ee~T`}6g)E?Q~zYX1=97{f#FaDA9#~T=DL?)~s8%b5R
ziL8BsZk<U6M*o%eBcC@gnH*x^2b$%#L~EJZG)5iU;YfU%f$0Wj7?^3`uQCaa_9p}8
zdO7!!pfREFC_%5^ECb6Ih*$p+-hHuO4E$=~4+DQ1m}B5K1M}G?1$KixmstHYZ64WU
zvAD7@YMfmxByP8gB}Sz47a3S=piwR9{soblqNkaxwL$)!jW3LrfTbLOfi(u!l3|GR
z*<yu(m3)y8q;6^Juv$yp?XRM`7$W|xF0D=h+#{7&1vjxA{5k{c*~qSVyZTXt1|8xX
z3><keS`juI*ka(eg*z6u8rWvwq={1|wv+b^bTsjTiJb=ip$anbpov`ucJp}ycgRi#
z_VRfHrwr^fu;0K@1IG*;AkL}HQWQUAfLfHhizT~6^?i{C@CY&gn$%{4%yLDAbYkGR
zffELr<-{I&CY>WBeoh-WW8kuZD}3F+IRn=o&$~#@Nio0$PB24SeJ2Vn-~vJTQtAOd
zL&m#G*uV_~H>p>Li#?UnuN%;6CV0`he#^jrJ0dq9J?!jSn;;4dC<gA5Kn7GkNkUVJ
z8PG|@J;E^1YlF=3=U0&YJ%X@pz@eN{Ws$2l$gTk|1$<OOqK}C+LvQ7WY~+ce>*ML<
zy?MWhDI4Vf45XR3&qPrZ_n5fXL?IJL=N9L#l}>y{$gDpq3Y)0DL=-VWS3a-VN8<OJ
zC}u`3=ARctbd1$VU#CXELnexwsAZzIiF6YsOq4fK!NkKRN}71g#N#GPnRvv+qbACj
zpu3^837AnR4y{1E<qmDh2ARu5Srg?<ymmm`>6$<AZ!vtTC|^Q)g2Njwo;2|kDSlkg
zOtkVZk$yG#w24^<#FS<dqhBhTsAQrV$84gqNlu7YF;Ufwe7=N@U&PA#v7H;_XH3u~
z@yyj^4HLpd%tYKok$a_@Ci=9<q!p;&9C7wfL7&|}d*ZZSW|%m+J5J+a9TRm;v@p@q
zL_HJFnrLLAv58FHibTRh12b|`)HlIK=+5Z5Gv3g|?G19VjdDXnG`m#uIWw}TXPanZ
z;_889mWlUHiKjNoO-=k)C9j!@=4NF5OKg-!d=Pmn+HI5>1(9Q-m5DqPZA>IdvWcR#
ziChzsiR&dK`XhR8l%J=Jye`o}z<zK1C3;oOYipt%=YBhxZ{o@lL9Ybi_Nf~3K!+5-
z%I!^KolJB#G1bI06S9dHO$;zG&_ov#FPV79#JeWCn&@WYbrWxxc-cgE6Fp75%4?eV
zaGmI3;uX?*XS`NIV&F}Kli9DCk<)>G3ih>elpy@3iC!k&GI3{~=xySoHKGssN)z-@
zteq?>oJg>K*iiAd8O0P4c+bT9CO$Lqxrq-<e8@3eO@2bO&k-M)$oNrw%)vB?(d<@s
zSDd$>a^zzLFIt1YFwxh<S0=vZP(3ldOU6S(#g`@$E2HlEaduu5+SETqj$z-6PHiRL
z4l*&=#3&Qrkw3|qX0%!jH*sl^_?FCkA~B2uHen~yS1!sPRzLRZ9r3*s8)0H33Gtj1
z1wWL}qq%9ci7_T7o0wwadlO^HZzd+07-wQU<zk$eVB)|@K?@aK7&WgaSwlw#gQHmU
z$)fBwshSz9#1E;5ha_V^rT{)U-Na8O)|gmpVup#CCKj1kOc5~gvx(nK%r!CF#4jd(
zH8IDGY*ysA{u`s17Wy^%HjVWy^)P{XCgyWUO=1iAa0RL8L9xJ$V#A)RnHaK6u$~T!
zC1hq3%T26cryJ!zO#EfyZxer-SemL?IV>VHJqS%EM=R_y^5=-ChJDfdu#$YzJ!2JF
z{SQ&~8$p_`Hlx@EQfD1`gHlXZH?hIQMibkp-c1;5#U>MMb_<!)#IlWYqaOr4DO*YX
zVUeGL(OEl8(A>1s#6KpUz8s%hDzZEMv|gOvD9<~Z+(W5nFD8zd*k@wDiGwEpoINu7
zF%-?Jk$1oZOL{11xq9Pra#N8Qe>!U7n28f)nBDPv8>f|Ontq%TQIK`d8PREmc)Vrg
zk2`JR4EfE%n-<QRIA@}Yg{l_Lo47#bX`zsXi)0lOiV4-kWeS~%TNHm2gSxi5YT_E1
zghKRWoX+JN9L6zmlXE#I=qTy5N*EjEx*c=wam0pxxpz1_D_KA$8K2<Q_EcOmp_5ll
z1jLdFlT2vB;p}eI;KrUOXp8gZyL*Id!Xuf+h@Y#M8hAVYYEP;0h2-8AIiZQWR5B*g
zEc{DV{H>thBzuTBax~(Q>&?^ev7!yYcwf-qz+GZt3q>rHvhaw7`z#c-P|U&uR<u34
z-@?r@iL<|m;R^)aJr7!V$U?e>5*B(_OBA<2`#g_w|J#6ZL4Vi+!;nf^(V?#(5o7S!
zpDkmhEx^JP{K>+jR%DqhYoVNlG8TUSCpr<cWaVQPZZwZQZh_W@N;{ML_6b_3p0e<?
zh4L0ESm<*zS#^B0ny){atZ1Q<h00cBjABhaHLH00DD;IfC&bJ%7OGjuweY-!>K1BP
zNLXlKL0G71p_YZ(7ABOCrb3EYh+Al`WaV5*W?1O3P8@A0agnNHp{|9EV-lHsrH53{
zij>&17DFa7dE4YtoVQ$(>T_U|qiD>A78+S-#-@m$UqoXISr)P_JjXHYPSPpHl5rqS
zEO4P|N+gHTE#X^|)WSkb3#}|9E#z2Ov{W?9D8=wO0t~;Ah_`{_gC9g|i+`I{^MCN(
zYsowdZ7j$ZUbN8GLOTxLLPrbpx@EMtkZ*x81H6{%na{l>)#{Vr>hpqyPFA$~+|wa{
z_)}8Fsfo@+Aph%XvFKvqB?~WG=+61(#=2Tj{Ad3PdEJP~3voKf&lV(mSa`+4YZhL&
z(9?<>9CU)eYDLQ&9T|j6EE5Ayh!&Fsf1)|A7n#Ju9~S;3?JT@y;X4bXExc{v9SZ|2
z47BjBh4(CcPKG4ES@^)h#}+=ZK$ZKUg+ueiM;7KtF{<=V%LH#T5^0}W;C|pU3+I}|
zsNo40JsjUwIo{X8R~EjuaC)iu(!%A7@g<(<XMz5aZNG`?TmmT3C$f3H+B*O0wd5d9
z!NO1rgDrexMV^!*6T}eW@I+#5_YA6_VHS2T62mQwAlnZWuP+i0HkC$N7)9QQ*C$%O
zR>UViiej7OF&4hJFvG%33u7&ev+$#ZsTRhQ%`8l|FvY^e6iO#q=v+PVKc_bF#s+^N
zhBrlrajuUaPL4!%nuX~WexfiQZ*;t=H2px~CY$8-_r<7k>583Y;b#l;EiAAw+rlrz
zkA>fe=St~ZTv|UW{YrTm7p*UMH;K7qgFVT4WRI2Nw`7d)<734_3p~dyA~SPHQv{C{
zOE{`c^6w;#mLx#!G^Knljjl^A{6!8SAuRk&_Or0v!VU||Ev&GxfdWEWSXgCYwS_g5
zuSw#aO>(oE>0EcX9<8;oj^a$Nej%Sht*jifNgjP)tXYBBWMQ*~Z5A5-Dz>D`-Ys&r
zQUx7u?fw`=XOXzmH_7~UCq;&Yu&^h^X}c_b;4%7&LhE_a4*X87#9j;gEgZ1WWSQ7U
z9{yGksG?%kCb@I#SSH=s7LJe~EL^d0)WR_fXQ<ezqgXjuoUm|`%4CEnTuNemLct3;
zr^rI7pUSNe3|HW)caF-Rr0j}|7WSSh!DZ-z1zjW<sLWuYOBTQ48~-IQ|Fav(s}`=2
z;w!~1N@9&t*QwK}LM<?&NzTnDm1nh!HhWx^em*7Ue34sVLE&I*oU@@?{J&a!V&hXA
zx&?z|vQf*1X~Ck(weheG+k!)NZR0*0u7ycQ<DrGS7Ca({{q7Q7I_C!zv|7?5xiRh@
z|E0WJxYtG@8)-Hwx2Ll&_Z~Zn8{{E~PQ9AdCE7g-+u-5!^LDX=o8&uvq@p(7JJjd_
z8xPvJ-;P!;TJMY57#vSDY!`dTPMIQY{Lmo1cnYSqZNSYq4MF9a$4c5LWuv@}3N{|G
zQQAg18;{xOx<wp&IvqA1wNb{7PK#wZs_7-^HGcJ^_@jr!P_D;qJYnN08()5q#=v;S
zcRguG0g7Wy!HxaXY<aCHvPz8nR#dc6$woCB)$J&Zzp{<0Y}3Y_O>z|*jOSlEr$x7c
zncVzqmm-(Pnx91t8#Qgj>?mwc*m%8ZjL}U$Y!q=eLP-$`w!_=nHtN{uWTUf<x;E<B
zXlA3ijc09S+IY@JmW}#05;hvyXl$c_jZHU1LpzG+|MFzy2q<!}1RYZ4oMhX0I&rdO
za-nP+P3$OQyv5-pL&Tff*pVNjy^9*)s1$2qqos|uHrm<9vC+y#Ya6*X!jti&4H~i}
zHhwtrByuCMc5$>8Gd%lw8-+K^c{cK{X7OrcN81bnbdI#Qk#D1ejj6|?hdYv6CW;qq
zetbS_Y}ve<YBFbvc>lxBvW*vQ^s>?0Mi(0|+2~>86+4Q8=xXC-8{KVmv-#QE$VI~A
zbI;z=%4gFFlVMKm6+MZT!QxFDuiALc25VkV)ezwIMyiHS^3Z*wVtOANZ*dkjKH%JM
z$KSR=H}ShR-r)p~XFoJEBI|oL=ou;gcIU$HbpFte5=lNH{_EsDSt)(p^RbU@3_Tb*
zm${Ak%*N+77TH*A;|sE`jj=Yyk!@^zW#d~uY2#}f{m8L4zOm8Y1|tUs+89YM|41=_
zL>w<BYguR8#0J@s4XseM1U((o6R~>_#)nX{ZpK@kNS4YhHO$6$Hb&bRZes*rw=v2F
zJ%&b&^iCgkCh$MF`5rNb47pkUo&(5e%-zeHi-Nb~DLbTsjcFX-9x;(5urVbCPvVo~
z60H2ej*cEb+Sv81G-_QTMv^B_C97wanr`DK8^76@Yh#9unKpj0@vDtlHh!j5u5LKn
z1`T5SAJ2QRcVy9OxLKb6q%?=*xD;8s7~Y@slHE7U^VsQ&84GOeZji<Z;rSG(G7@X1
z9E>mIU=GFy?-WaH{BC0_iDKgq8-LnZZDWm%r8fQ|fov?NL?4g;ZAX#D+;C357VnuK
zV*<hoGGVRsmBiu1=v+V_$0|Dt1SQqhQVeaZx3Ph;KU(ZOEY2~|>yY@XO>84Y#>Qs;
zbTUadM_rLlOURa#CSfD=MQ$gP*f?b4u#KHI{vnEN>?Mjg3z8#|_Tlm9vqFq9pwaBV
zD(U-d?6+}{1Zo(0)en%XYvpC#jDLMGNj>va{m27y#Kuv|#globZ5*Rg8YxcLIBDZJ
zIc=mEQY*no9$iaToheSGex=%ZaDzC*2S$rGI^}P<89z^iQ!_Z|?BJq}OH@`4o^){8
z#uXcPZTxHFs*P*Z-ZsCE#mo`huu)(`A=@tyH*MS^^Q2&!Vei<{*8NvK86|y;5ff`S
z?zt^Kr=z5j?w1AivzF4*efJ2HqD`K(;gK6R%eD=N6Z|9Xr9Fa21_lGyKb!Q)>W&C(
zw8)gcC{mJ{DIvAf&g26vCB^{%N9FIJgoB42+~eS02lqKB>Y$K=!VZc!p!bT#+q5V1
ze%~zb*&OXg=-0d7K`{ppIVkSn0S8QD;YEAtwOjEA9k8TIPbaWB@@#&(EBWtcna=l;
z4oW#F<DjgAM;w%P@Tdc|a}L8H_!t~aZWSZ{Fn?ipW?JW}iDi8f^@~d796aXW`%gPR
z&Ud%Sw4m<qli-r{l!K=oBpftwm>-7<4&n|n98`2r$w4&-)t$(!RM|mQ2N(7yt2pRI
zzt4(jy?Dj}wJ{?T7!X*)fp8)pM9hhT{AYcdwlqIh(}}WsxMn?_DD`WN^jZ#TJE-U2
zStrufbsQW&lC0~1K9RIrqR+|f|2Zj0tV{=44P*5k{B}G}oUm-@ppk>t4ssndcJQ2o
z90#rVn1gHwO&v6IqMddVC(?c=0>PEnXf8E(7`q}`q)GyBKP0tuATQzOP0+ubba3WC
z;ckP3<V3DU`X-hhOR~G#Tjb{*v~|$VK_17vMdsDUL3lh#|3Z5Q`3^cdc)^Lh&)mj$
zNOj840(RYci%i!rJ<e2pvV#|ia|dG`baC*KgHIfM>Y%HGZVujZ@V0}O9dvi_Cb8<E
zhl5v~==k=!1BO-ibnvQ!*HSRkQu=I>sj)|Gk=ZyM9B(+-IWjudaSYC(D6OWqgFfUy
z#taM*qjpD{^Bo5tI#DRayAIwX=BwttPm+xhA8-t##gAu`L~Qif1JXwh=vMpK0b#mv
zKXdT8gMkhPIrzdsUk6_~_}Ym)K@^-XohZ6y+U-b1P__0WdoL6N$N+mpe}@sdS@XBZ
zbTsp{IM~5A4u&}xPA+ort%IS&`8YwnI#rhFJsi_0Mg_~75e}HcHOj$v4o0%0GfBqe
z&uJH<au`iM+#Mf7R$P?buWdeah<H2B!FUIMIQY}S1P2ox{OVwigGuCn2h$z=<Y0<}
z9~?||aI9haj}A6%k?X6`3Ag`oLCNCar#T=S5LkCb%y2Nv!OsrpGnz@}mm;6SYzMz^
zMhD{zL}4sFr6&1NXO_P?nCoDngGCPJQAZ6F^C>ldrp>99pl@hFs;2zK<WJ3_(67bh
zE+^WL^|&FHIAAgY0Y)V;vSO)&zZ|S~u*SjP4!0s$;b5hM<sGy6Je?8C9sE-<vNP9d
zSZY<OSvpnSViH?e%b`+^h%54;gAJ)JHapnpM7e>RC=PR4l+TH=<V80$JqVIWCqB0k
zW9P(nVkVv-GIx-X$PbfivXXw}Gh5`{Bq#;yE}GxPUWdjI#64tq*ze!~8Q8^VE)F_4
z<e-X+sxA&YI70R1;6DdPiET=>gR7Ko2Pa5w2WK7Zt(<q#0Rz`hJ2;iPr6Y{HbZ+Xn
zgE~je^MknP;F81tGZp7kGrf>1Y22fJc>dkOJW5>VS}-^=e_f+uabS`U9o%qm)4?4F
z1rBbJ?(4;rS2Aup=r=AB3c~YN3xyhz*}ka;=~mVp=#-Q#;;AMv5@PB$L72IC+%DP<
zoD_=&4qOuMY!p1^QHTH1kg%U>flk$qS+UT;T?cdz@j%2JJyImi#XT+_bMd%~dtDTA
z@t})`ToiUu#6?jT_q(7K?o_Az3r^|#+-S!_`0L$i#auk#GX5}=JL(}uW=<@@b7*lF
z=`P^nQ5Pj#%$h1nx+vx1;S_9bk=ZZT&_~>817A8-GE$c&INs9X#TLrADC?q}8*RpT
zv7WKe1iIc%Qg1xr;z<`jCeogABU3{q7f-t=@1lYmW$bd+bOjQq=;DXjf&dx2GHLyL
zWXylYMKu>4Ty%6%-9-%-O<go|AzajSQP0J*E@Cd?E;3xyV$FRyY>?4<G*}VIqdrNi
z?SfVvUUgj5b@AV!BroPZXS%3#DBh5Wa-;a?`fjw`BwRE|0rY+IwlVvypJx0bvWTDO
zV$X3FV-p0jT{Lm|FSj)d=0_=__9@ZaMGF^gT(ou3(#6+pVo4X0iySu!SLTpf5eWkY
zk0-5(fA-ih`#N#xV!{lON0ffns@;`1YfhcYey@6>oeL(fwRe%vpJ+kdBDk?(dL6YN
zPv0-N=;Y#c7jL-e>_T?&vWxC6UUbpL#eMTdHy1Ctp!KyYhcrUa1IP*TmgX#`Wb!!A
zk@RrU)5WVUUU4IZ{K!=?tXkeTXT{^w1kH@ExfoQu1Rr~o*l?rBnfG1vcG1Vh%C@n0
zN$Zi~Ef>RIZuO3fw~73bg4*WC<)UNRJRXYQb0gim@T*)Nkv`x^Tzur>V;9`vuyMBb
zNvh30ujJEn#1qZuF1~Pa%*AmReO-L%;%67Li6vr^I42HW^mEbQ#RwN8T?`;iU3}wW
zh#Prc1`%B@zv3QQn|aH@&=g63>$fiS8Df}=q2!!-f){hThx4{#9xr+;M!ERT#aIf6
zi_ygDxCFDOzjrYvMJ!IAhL^T=>Ju2xxo5>DxzX8h0=uq~;O#_;VP=eH(#bBSkbBun
zDjAv2)BZ`AaqQDvT%X;LdUd*spIlr%+GvIg*3V3J!P{A>Th@@!zqt6-#d;STT+DIt
zn~OhO{OMw@i!yc7=DS$nVqOZ{+*)v&w?>MEE|$3Hk)LCjVv&o*E=|qi{w^6Te|Mvp
z_Wc(G%cU;<a<R(AY8QXISmt5{N$Fy_i_%*oKUc<9dFbKz?rqV2hI>&~G9s54TSL;k
zR{DR~TkA$n*mZ6cD8kizql-<Xsf%4MHoMs3Vuy>JF1C_6PsO)W7LGN#eIve&w62vP
zKu2Wmiy6HtO8Hx58VauSi0ww9j|ZsaUF>nOH>F$lxoCAk>?gl%mFdWCxW6H9iPA&V
z2`-Mfc%p5rN)72KvHfK(%{7C@M8DELaKgn&Dk2Z%Je+cI+J)o7B`b2+q=JhZF3!1N
zSja_kOA0veBJ7fJAq6w^eN$KIGG#|kULm4-Npw|Qb#cw5Z8OPJEoGnaQ8!)Oa-q7=
zT-+uq_Qday!|O$#3!uxOk)14Xp-`*XN#-lX-;gfcFX=8Ua&>_)NT9<a3Z12bU6lRJ
zR{7{+VY~c8D8a?T<MgS$J>2gh;J~QcJrweA*Tugs(mdSb;XkV7quD&pFhy5CAu43W
zE_QFk+s7wHXPm-b<Y+6BDyg&y-<N_b)=UsC=HUSk4|^!-p>(|d-IL-$4-a`L?jhX+
zgM9jzl}dO~D$V*M+5Yv&%Ex17DL&5#Ne}Swh{uClQfn3a@m#$0PNBRe&8U)i)WhU*
zd1X9IZ=S!tMJ7W99`jJ%Lj@0ydw9ablOBeZmY(*aZNO6=%04L7C=gArid9;a9#zpp
zB@Z<`?42PNRL-mHp{f_fT~zTRN7$=7;)9MSpYc$Qujl8`1k^8<sP5st_dD}kQ16Nm
z9%`oEjd@W3Jm<v&buACIJ#-JyBS0P2duZXKrH^{V1{?RV+C!#?`X0XY@Rf&zhXx)x
zdFbq+p@&8uBoD1UH1_bEho&Byd66E@@{sLCA8nvGKhaof;ze4H$)_xvvy0R-Ne?YO
zRM#?dJhbw_j4HxRj^JKmza|d;D%y6<_@rK5u7~G6<a_AA$L1B!^U&5qI}Z~lh&CQ>
zw~+|YBF*ne%-t%tCz*x{Hbw2!(ZdTK=tSUn7~M_V<M`ci*~5z-`gnNDLl+M(d3e>s
zYaY6K=;on^hgUpo*ebuwPA7=&q*oj1(Ias-NV&dsyadxpdh+$d@$)@09zC3V-NPFm
zKAj|brJjG&!>IMyyYlnvydK2~_a^FwN8bN^OT^nA-tq9EhmSnGOQLxEqh5UA;b6<y
z<u@gk46dM^=k4Kw0?SB=kBJbr?BO$y0W(Q1M)$@OPXtNxTk$y=BM^N(eBq(ijb!-)
zjaWJHa(u@u@wJD39%g!&<)Oca0Ujn0Q6AmF7{sx8_|C&%58sf@JPh|R#KX5<l*uyG
z<KK>V{%>lO4#{-#V_W5oH4{v48R21NtBjFk?C%9@3JquOcGhSQV?2!YFwVoaiHr=0
zLR`N0aC%xpzDtUar&bvym?OF3Sc12ch(-_7$o6DEBR<8$4<3H>pl+3at(Z4)PL!E4
zm5hB=yw@dz<;_~TKY5@DafSzG+;AP|0}W4P|LkEl>plGL;TI3TdYJEFfybPq$nP`P
z!&WJu!v32FmcO*foX24w5cD_EIkJ%OHhGa3ErLvP8GgJ3fyGo5h)mO$CW${h{N>?q
z4}W@CN;asSUVmGZB=~x*#>+e`CkKvAtR%X|iWOwwNrH)xoZ5)-kqx2e+4vd{YdsY4
zai5QM9@cxf?BNP|$-_nuhddniu*t(_4?BozVt$#}LhNxaM@nx^-LfxMZYO_E7F9}0
z^Y)8>s6#yL<0hZO_OOS9%ScTBPPEx3Gaq5?P_dVt4i&w($p=VchJmHTit2(*@$)HJ
zhgu);aFleR^m#bu;kbvBBn_KtnLc-vI6-FECa)SU4zCc59H3w3-D>Gmw#jEbobzzO
z!$l8eD&;W){X7L^Sk&y%F$u~7H=LKK0Y(Wr)*01s)x$Lph6mHbb?PDy1s)Uv8M!wp
zp&sr~6?mw!RP0bPDcWp@8K$F;MQ2s!0ID8z4{skRas6-!&4ZotbTHrWr8`*`Z>iPE
z1|A#_t{24>_#SwCpu6XV{<$7yynn7Z)+q20QV~5WU0N-uuKA^f|2(AmxU(x>$j3c?
zlrnj*kCCUcPn{COe~zAE>SbXckN(||7aJ_<<9;7ieLUl%n2!g1l=JbJj|Y7`<fEjI
zQa+0NNcSU;PYFL#{)@NCOfQW9CG%k)JGaRM9`R9{&H5<g<LtI5GJ#nG@S{!U@f-27
zK0ip3TvJhEREfP!Cc{7O;|V{?)Trp=Ngq%7c-lvKAHDvL&Pt!xPTcGyF-(ghR)G%;
z6g)DstmLDzk6Q<mk^c8VgVKP;87!;$sP3b_kA#mJ9IB5DAGLhYq*l{M%txGMdI=gv
zxCHRaBqRa908raU9qN1^&-$Qqr>-Aqzomy8ZC@$swam=)v3R8@Gr#bnagpnXa04F=
zePsE__R+|XGQ@i|NNemzsY(2H!E+p2mc;9WuJ!4WY~mxxi8b}HWp|vn&3rWX(Qa`z
zlW>_7%<lr__-N(hfRBSdl0GCKBS<M9t$pPBc-O~!9FLDYAKiWQ@X^LcTOYEI7uk-F
z_C7lLc)>@$A04|o_`r6VTzaObM1ZFIPChyl1N);B0i8jNf}{7m+cWjM`255{va647
zeq@$>$&V~BwDHp1#PVg5Y`56lC4>1yulVTcqmPfbe7x%8H9xZ0yy@fh6h+?P;KwI;
zWQc8-%N>l<Jll&rFk1BXG2ovl--P9kYw@>zyyJs`aOa+sKKrpDqgB7|k@3Ed4}A3V
z(VyM<_{hf>9IB6xeSG5Mb00tVl0Nmpp!#oX=YB?3JS;985={FVe=V|T(IoYykEP9G
z3;AUpKZ<AOm<fN)(VomEFn|<q9vkB0TOR{`4DvD92UQj~rQi6NT~vBAqcLF)Z>W!9
zMD?F(!+kv5pp+>~j52+;UvB5Rd9=)o^6{OI-+lbyV>I#RV}_5JKEC%c*2iQYQ+$l0
zQ23bWW7c<x*A9s1x65}5#01J<L6mgAqIGPN9|gHF*x&~rKawl%CV%oV)yFhWbGVq!
zX75B#Qa^m%K1Y#a^mQKJ9;dTx79a32*T+1L*~c$Fe)TbjjdafGwO#&hdn6HzYW~fS
zLbAE?c6d@^F!p@P8ZkLVEcUU`M~6#E26Ha*(fe$Yf$lsf(o|lxYGR2W9aY8+%>0v>
z^s&juW*>i%C48**v4+CsW4Vu&K30)N-KFMpqxEP-3TBwW-0jiF3g}bjio=hDto5;;
z(zjj^Ugtw?mBIA<4HPT#%xbY=yUcu8?&r7o*y>{!D^r?e8)b(IgxJeT-|qiE^ZPHc
z1W(pHx%}h9csYZCuQV#|VN;FM_W9ULKAbJ+FQc1`7~4<gA1s(1e~4`0<M9Ab1pLoC
z9A!OG?c*4m^>M|=RUapOoTPU0agOR@lQ`w$w2w2ak+ZM;Dtf-v**zcU28<1!_i@3;
zCBC~o&NO_6bD!8QUnFB6h!fy994-^dMPe8BB(M3nPS)a3ecbSI)5mR+o)oW^phvrE
zdWl;pnD){F9||$!L!&I;ij$ceFNo47sf*UG5D#X>cw{quSUy~8p2JZj1CM654~Gip
zhG6CbldazUvW=JemEre%CiHRFM~MIr2l&^=e?E!?xGz9jfO`TI3Q#xz(*bCh<#lg>
zkxz7(v_GzFml?}iY=_M7^`Zgp5Aa}shXND}B4Rxdp#0C`gLH`-1|D0uRjB_=qIiJ#
z<z#vQere&>z0$>7$@aDKD0C$QAi$#mN(Fc%K<OaT9=u9jjWcPEc7vr2(`X7P6L9l}
z(W4XP0zAeo_e6Q#HNm49H<pB-4DeKdtN_^oo@Va>G6K{JP$59Y05t-L0F?q%4p1dP
z)gU@3^|&Fb4aj|Jhx|-{hCAfye6mh1foegtS0T`GhfMntJpz=GngL>L`C^<VvUm_F
zy`HC%hsKNA97%xs0TKb~2B;U{*#MbD=8(u(!56zSQhH@W`X;(u5sdF@kb1XafJOn*
zSBnZSWiTL|9>B&yq>G+Ql>`_k-y}fO0Br-b3(zb;^8l>^B!kFt(}E-1A-4>`WWzo?
zA`#9BQ1FyQQ}9naWGTS&0rCR04v-sQ<)tK3o*9I&zLfM#GFJ5$(I$ujx_Eu8C))?e
z5Ab4uE&)0O=op|=fX)H-?~M0rCh^lKF9eb0>P1D2yp|*?<bbZy$Q;KV^-DpN?9c1v
z09^xg3!=|<k@FXA5;R#bcZMeMR|515&^|<dh*tytkti+%xESE|0B;1C7GQdSH#ref
zgdGLw9iUHuPXl}w;H>~}2l#;eKt8M?y%XTw0Ph93lguX)=yLKtO=Eu0`vGW3uYEqk
z_D2Ce2_mP-$3f(jVdfx9)-!qY>zdN%L9`rv5kyD7YL^7#ANmsEJ7liuU$c<_-v<~Q
zpnre?#BhM20S1!!cgTZ?_7uRDAMcz~sdxT2Y>FdUDZ1EE4lI*ihXoiOU{rwb0*pxU
z|HvRRWl#|M>zM;iWHZiibP(+~cnBRsG`^T|qe33z-nsIQqfi9+ftY9hZxGolcuk@f
ziX|qdZkYx<Ilz<vo2uneck$H2Z*%<^U@F_WF066lW}V!pI^_QpU`Bw|0oDYV8DLg`
z`2iLL_&LDr0JoZ?&m)Zj{2Ji50CNKj>XSc*U2hj7o=c~dENg0<RvIeg!E&^AXA~((
z>@5tiD8TX{3MyC}U`c?#$io4C=V&*{e-eQK{$RgOk`J(CM8T~cG9w4-42&WW9^ERI
z1$c=Gm?H(h&9#CINgmh{zdlf`O0{`7Lt^yT+5qbU><zFlpdShw0&FK818n4!$^3)G
zR(3i_Y-ar~v4xNAi}oahnUcw0w*}a9C5yn$0ROPNJz@`ucp$!u>L~RhVLs0c9mXdR
z&beROAK*ZM69G;JI7s3W+X0RSI2;W?+_O_At?61l-Y@r9fSZ|8*`4xn3e>xu2{+r7
zq)+EmfYT&#fOFJfdy;3Ub4Ch&PmC~aTr^4#`=QZ!DxWRl-Gh;R^-_S#0Ui(WM2IT^
zu2R8<xHrVL0M`Rp0qg)b*jE5G;3wm7E5L2?7)6_s;wI^dd%tqt@7?p2R7XtJ37hBe
z<om|U`Fa3@`r$;<Olcna!l<37qj(W!=>!M@gem3Y2Jiy-)VEjT^sIf=JjQLzT`GU#
zuy!IXjP^oI(xDdmFNi#7=F&(_@tHy)3WrD!Q6fZ<FmjU>4RL>n`$90rl16m~Rep3P
zoj$c<Asz_vVCtENLKF}2;>F0Y%wS9Y`oC@D!y!tBK!`^}B*uwGJLOU#9tq)Y7fj44
z9inco#H|#6$~u}|CdBj$$#Nm0EPycjh)4UK@?#+;ywi~%G2^#1pA7L-h$bPLhIl$e
zc|H@OPKXL2Du$>YqDF{HAu5MpYtMxE{l$zbA*!aDq5(?jm&-P-BiYr$NI5Xzfrd&Z
zV~P;*5E&r`Jd>!IDr2dV&(sP*3qRvm->y@i0CT$QhNu^!QHaJNo(+*1qCtq>&!*Fx
zU!QXfqcaF$retzk+k0oEw;P6dH!X|%tLHed5M0W$!)T|<4Jx;egWV)OeXML2qIrm9
z2q^^f=30bk6-LnuEkoq6y9FYvVHz#)A0^UWnpb>D<20HOTZec)L|%xUr?YcI9K0)z
z>7}z?%<s2TZWE$y82QKssmXRBcGYe?H%p?wtV4*7A-09s9^!=%okENW@qLKSA><IB
zhWLzh4ACV-FU~8(OKc=WPb&5h-NGo|=H(FGQvescwDNgOcj^&F2KhMya$gC-lBb5(
z!YJtFjWAm8Ugt#WNnGm*Ge`JMww50OeL}ny;=K^>lS$4e-wyE(5tV`&1<kN$W+@VT
zVP^UVA(ove@nMLMLNJYMK;zg5nt&)%Zt@dya`y~6XSr#w(Ng+6#1|n3hxmr<+Ah|Y
z!wB(ph%ZyOT=DrehJImm4l49Rhk+sbhf!MnfK*9<?EU-^F(?GTknr<Pc}R$FLyRC5
zLNL5!Xoz7UhKG^O^U+RejBtA|p8j^qyfcdUxg^NOqf@|lsgk2&O`i+Nu_4BV_#?!h
zA;y!RL(B^CbBKu{CWV+9Vp@pFA*O_AJy86Z;(x|47p|Q51L^yq#G!JdyLzY0PZLZJ
zF(brGj^vE^DMZ;p(f37ZxaK0r6Dz&9v%~0X5A#DT2=PmZUqdj%tFW7#6XLfp(yol4
zo=ed<8s|0df56!!8Dn9H#UYk(c<02TRQd3V`0qq!JW(n~`r{ixfFE648se`ID=9&2
zjdTgIJd70el8ik1scD|2?p;A%S`vK(gFy?cL#zq0F~p`2Ybh^frFEo53gAiPf%?)1
zwMuPB5uJfvWP{BiF4joj5=Kt#c}E4a-M116M<Tksb0ofltWLFa7Z2XWKji8VH$vPD
zv71^b#EB3mL+s^v$Q2=ugxDYA0OcaYA>Qtk`GI1($bY>n?(CFj9TCg+G~%Y3n)7Ig
zV<C=HrPN60EfuCRK2cpSP54xZ(;+T!R3T_|IzueA&pF4rj}d26B~P+lW_CVLu0ECI
z0r^sh%jC=u*Qx(0P`i>>sXYIY8KRJOAxRPVUpg@5W#aiH^L%fS+#&9U_&3Cz5CtI|
zs>cvY2sMNe!VIBNF)oa9;dRdCMh(XE^Mp<vYf<C%kr>}@rvNHm*7FF@(hCu!q|&EG
z;+MW^N-PgIi-oBc_|44!LZscreRomxF7COD4Rz8B-9_QMxc4rYP0#CtjJ&@2Iox~}
zxeEq7gkwdSBjWzMk>V=WELQApv<@=gkTc?t9=eO-cTxTB|1tF)P*N1n{}Xm+CoG4A
z{tyHa6%>};+r8Z*hr1))kwKIN1QA6<1tb_yQ4s?Y1VoacprC@FprE2+LV}XRk&~h#
zhyr3j)S3Bzrup6feczi`ucoF$b#+xuPlp;&-xWEoDDR5uuDH?_SGa<Q94ok@qANDl
z&7mKt<ci9!fGeuF{4Hs)myZGNYHf<u+??eyI`@fj^{uKas=3@fn22_c^OlachAV2i
z;#yZ+=ZdRbQOgyzU2%;ou66|@0rIPyXY}YR$lD8Ta=3YHVyF0ne+28`bzH&CY}YgU
zxL93s^+n*2IfTAJQuwJGb43GJG;~EHSHxX0d9{*sMamT~Pmd+szz^rTVpi`~)Rwv5
z$MRf}CeN<mfS;kN^BU&l%W_`L&$**ZoYH9QiY9JgK?Sa8>WXG;zAIYsy1Aq|bG_ZF
zg~Xd~&XRKYn;-@hhj|?Aaqk3oG8DQ&|MuIQZR3izu2`+&eHHCo(cTp=`C^_gid|9S
ziU&RMkS990qN6L0xZ<cQI=P}V>vhFUS9EbjS67U1#Yk6lb47Po3}T<UqK7MPbVXmX
z!Kc$>Jzdeu6<Jr@<cgc!AadIMo3jTGwi-1r)|>YAQ!xW0_hFe_R$CZsbnjc*p`R=I
zyW%!i40Oe<Eac<t04h(t#td_zjqNyTb9Qk$nDxEg6|Zg1-oYN<603Hg6=(Q4Ycbdr
zce&zTR}5tj-q?fRyhB`Zw=14JnYhOl9hL^sI5)Y)H9N$Ixq{0a!>K2XF?ehHD`OQI
z800=z%xe=Lcva_7t{Cl#XI$~DEADs21Fm??6^~OUu6W2554++KD#?GvV_a^!jt%}i
z*gVgp8H~;Ns4K?0Vo(1P&Q6d?&e#)w!WHAl1C_)LKH*p0+>SG!*16bIu6WwzAA4gw
zzwqqd1i#APYa8GGdu)O$o^!<%S3K{EiLRJLozH7N*%jX}i8Z~Ugu6HSiedOQjvS`C
zVwx+aOZDKV#JeMut$Si0ABnx-iW#zG4(;Y$NN}EZmMdnvVy!Dab;TT4%yq>wS1f0b
zv&pVl<ch_vm`{at#X?uS>WWuf@%iTL^j+l_xIt`N;%p0-A-Ekkb4|%>G>U942aWZY
zHhSF^Z!nE3ma>X1F`n7kCraLA@01o-of6FRa{=NlS8Qn+AHo&Dxv{rh@eZ}l74N%Z
zg)3IN;$2s~N5SqZe|NuJe)KUh4`gw@;KKurSGnTsu#z5wgAk4%xMGbfK5_-|58dFr
zBu}gD>DlgMSA60M24Uc?iI&%P=2SfAkv=2;^xmwOZpRg0x?&?$h04&T;W}4*<%;!g
z5UYgYPcLmzHn`&S_YJtMh#Mrh|AC)ZU%TQPO6k>D?+zvVHU}YRN0l$X)fL;=xvnUs
zPkS%6oi582yIiqD%Kz-<EWgoqyJEp39r;Pf4pPqtyCC+uVjuks8Fs~fDuByf^u=5t
z;Hos2s2D4Nv-%w2A0~%S$B<u<+mZ*?D>>$h<8&IHh<oB&SA6FR%M-RIPEZY8anTij
zyW$5|{76~3;#XIkq$;u%uK3v%r>GKj8*`S1At|^s{M3KJr}QI_c0A(-VXk@NyGON>
zv#vPjir-!Fhbzugu(e8lbHxQZ-Z`;O=NodDNRO^P=<YaT{L>A-J^zxXajj9pqPQoY
z2`;(f9~!17G%twr`7fO$%cuVQmiW&VXO1TrDT|6Xqkf6+3dIxL&J@~`<>V4$k?EcY
zdBX5S#1mmpa6={?CZ`4Jx9@?|#eO!o`j)Ke1><K9U%5HT@kG=UH9S$%6XiUS<B3Y1
zsO*XIp18sjd9j>|9^=XehXgBl!Rc~sPjRPOC0veY4+>Af6V*IX-4j(j@!Ix8RZl!z
zKZp7gy``l7${3HA@*vWcp5QDH4@+`kf)ip_d7_pl>U!dOPh9PZ+Mc-16LmbXVR7sl
zPh9JXJLmzXHEzBoaP@S{)Eq8%{&sEW0b8;+c%q)ic)x<PY7`fj&+3zZhEYv4=Ae!<
zQJm9Acp}#mH+kY_Pb58&@<dxtv}0R5k@iGOPqgwx#uNFTXzYn5o@nTaMxNl{bNqWT
zYRDJaTyEGlE;eiGiDsT??uiy&5N(fVZMZmCxlZFwXM#{IAAjD8OR)u>DD*^;Ct7>K
zIpuOQg3ykfifKa+za`5z!t7PCzLiV3pQODfiapWU6J0z}Lg&w1Uv=x`iGK59Jh#YG
zCmp?Dg=NN;?2GsGnp`iZs}}@v?B<E?p7?iW1FnSj@WhRt*q7V9rziOB&~HXCF=!tP
z29R{Hy*!ci#9&X{<%!;&=;Mijp19o;eLZoDCvNq`052Fe_oIYc_vp_@AGYZ_CC1N+
zHqXay^MdaJT8b!)GuH01E!jIfF^G8^=d9b3<$M&`yOY{Tn>`mhG`!akPu%T^;p_!Z
z+~Wn&!iRcdm>0}J-RlLX3wQ5Kj3_PU2~Cdb4{gbg@Pg%}QJxs>iIJZ8KezdUjQsD3
zji+J{Q2l;M@LT?deXaPNIEGq81@?vMi$_>2W$TIco*3(i$2_sf6N^3ZxF?=qv7UI*
z6XQJbB(1;`6Fo8B6Hj^K8S2TU*wbwItDR%RdU3gjr<=LA>RC@rpnPV>o_a2}>(^o~
zq)zh0WKT@<#B@(g@x=2KSErJxEOueA67*Dyc)^jFyCqmEeSvz;h4`%s-w_o%_h3}j
znVy*CiTR#**%O~^Pt5kjTu;2@i8*Az=vZ@Wmc&lGV)LkVTZ74DYRL3IVy}2&fhS(2
zy?A1wCocUEyw27<+>yxMpJNOG%GF!0Z*mXG>z;VS6YtaRJn^O{me3MC{t`tjr3L+v
zc*_&ZJhAS&97biob!&FHC*JCt%h&xKTok^$2hDSZC*JeKDo?ER#Je5`sKw;`gB8J1
zKJF4>r3{L@nuQ;XjoF(0&=YIu7T6F^eB_C#TeHX03Rh#7Yz>yY*LvbpPkiBtqy2I}
z^Tg+#;LC`%%wYgS*K&Bkc>7<H8G4?X!2x!zcg#N6Y6Cl$`rwH(p4jAxuRU?l6Njkh
zp4jY(ou1g`i7oU|p4je*9iG^>uhlm8!ogt9oI9U+yKZZin<StABvx;BgWaCkL;d%}
zeovHoVlRa-A&9rk@k#%uf|&oKzE2!rA?I4Qs+E)ZqnPWMXZI!!d*TRvyC=RU^JJU0
zOig|=2-NUS`SP5X=2F_Xp7@UPxvqr!TQ04+neYcs{OF0FJaNhsC+Q5g#SU)GaxWj(
z2f5c`!%M-r!qZ+b*yGU~?u7rv6Tf=mq9^|L#92?A^TZ#XxUe;Q-V?tOp}~4$?cws=
z8p^NKZ@R=U*3!8!efnHWx^X7^Qzrh)6DyQpz5WtSm1gA&%@_ZA;y+LLOt3K#D~#X4
zKyYN$6VA3QMZK|32_c)K_~PLDAPj}>i;y3zR2ser`+><*beyiKw=K)Mc%qY|M9UYp
zFS`4phc6soM17I)MXoQ(`69;`HGOfFFUtGk3SU(9MKxbk@I^&m2w%V#Jak;i7j3s?
zEBnC|=!p4^`)$i|{{LJ?8NDrA#TT1)l;`f*u|49|{ou8Gr7vobjYJ7q;%o`G>j&E)
ze@WEx#nryJ-WNCcqP8!t@x^t%sN)BJoZ(U?XVR|qgZVUmq%gGUBaMTZgt~q(0^ioL
zq@FM8`y%Fx27VAtrIGxR4Npc;6XJd_wBWdrbI9RMv7|3jz9{rXkuUOmk@iI+Uo`eb
z#uxd15XzvTAAAW8$uH6GX*ZyCJHC#2#-xcan);%-FIuqqe>Ph_u!ILHn{o8cvFPkr
zOA5gccG4F3f-1)qaQ^9l8f)HFGUvNQYhSeSMF(GWq?CNoj=6kM;tOtl;UqlQx!U`|
zuDM_qcXBY}&D9_78tUYW&c5jCi*CLc-mT=$bmK055WtO{&Rq1UoU|X19~`o{(HA{^
z@qjNL^u<lSxY-wX_+pSRdif$t`S_xrFM3np<70h%(bo@lFUQK2=l9gqZP_m;2cxF`
zzPOcg_Qh>}puimDH$IctutFKgzS|N^0NzfmYZh!H=NckC*qy!@?2BP!%olh0Vu&y9
z@dYP@&+RDB((d-f+8=^2KEG}Zb~)ZlrRDa1cKxY9E${Qi2w#l$#r+h^=Hiiluu*Ch
z_4Ahm*QYo*U%D-;xUmCy6(795<jZZ@hkP-{7ZZH(oG%`x^Y_J*z8LR|M}0BY7mxem
z312+si%TPW@k^5jJYxr9<mAA%>^NW4I#zsoKo5Q|3||s^ifYV|LB4p#7YEkHDC$>p
zbDs5sFS|Q;C%C_5`#;4KeKCps=!+SCFiAMs7ti}*sxPMa!S(>2Gp%<+yJ@U?L2SA#
zZEfcsd>xekAy{E~(HAp)G0PXTebJJ^RDUVnT_=amr0q+wIn+QYf4WBwgc$gm2X*KB
z;$>gFq2NsgulQmC3si8Gf`z_#l``?gF<-pqi$xTsFFy6fVqd)Oi<Q23m$`iLrZ3*|
z#WEUc-yTaSkZ)o<W3`mZ&!Jt@`0v|-k<xNs3{2;|<BPv0$KIBZE72>Ydea^`GyI+}
zR{7#XU#y|5P9#?Q;se>P_t{6wf<ulR*D<<2mGdK}EQ){Zi%(>NZMWq95-T}=pm^MY
zW}HU*%om^gVuvqw`r->;e97MQ#W%iK=Zmj=v4LGrzri?K$7Abd?c4%tZVw{EY?9ui
zbzS}tttDqaHv3|WFShz(8*TGqahoP_@-W(npRAq3&F$MM-ia}uLDO$8*+oV5#eR0B
zFZNLPd~y18@jhQ9PqwUCt7I?T$e{!mWw>&|*agedIR~jirLjYFP}KiJiPQTM3r+-X
zhu0BboUKsu-`v=7UwrEeMS-f|J71ijx%uJ`UwqFjzW9aC!52UJ;-oK5u{u9kd8d51
zIQtXL?Qo**_UzBhGCy{P8e6{nE*Tz;Y%uE1SwA>*aNZZcQGtK2e2%wo#i}e1jxW)c
z>Hjat-uW<8@+T3N><iZy7k%+J)rJ<mJ^R?nmId2`AX=CFU_pmb9sc#j-nYsT=j(=%
zFgv80d-4$}{$*r)R#TuWD6ilO1tA4t1(pI^!T4`uhJuI!j*~grb@6y`q{vjjGod_x
z<S_ltL{vdJ1)NdjaT}(|QNZIi7xNl(jpmf!qJn~o3aToorr@hBMkNJ80Ti&D$_n1@
z){gr__<dSMK|$>tF5#_iSMpr6gyZ(=3a(U8Ljhj|n;Pa&{@g0hVe{GC=Cu@Dtze*n
z+ZEJSaE*dO1w{(3RdAhxl!82RsGzQbxPpX&>lNIfpuU0_ldV+v$x}}OgR4-s&u-5)
zP;hZyF}IZSi?6hG4-Ql5)!*Kp%~g<8!0jJ2koW85aAGj6AfuqEf@TWx6*N@PSV0p7
z{7uj06}?6Z_Frho=>m=)m}^7BoH0id%@wpzzzD$HuFsjkmI_+2u?py-skeU)$YmT4
zE_X7RWNQU&6m(P2T|rv~{3~(?1sxT%S5QnjY|r*O603PvkCWGRKC-l2i2{x@ulc9A
zlY-6^FC)Jx;3N!pw^CJ-dI@1y1&6n1+0q^gZdA}$!7U1UD!55OF9lhJGuhxTMSe<k
z<V-c^t9ekgcv1|#b9*c3LmAdDp;3(K)`Mp&`YGto^bH!{Mu8tq+^T@<ECZP4Nb!dp
z{~rn#ak#=#HB)kjf<X$NRWL!poeBmkcu2t*1$QYJqToISBNW^%v)`lOUZyNftld^T
zRKYL>!xeB(9hYhT*`DPfmc?>ZPh_NmQ3~!?@PL9Jwk3ENaI^w;U&S3kAkFWV#rO^K
zpv=p2I(!j7tl$v^;}krp;86u*6|g%VSMZnu&eXLmDWOK?E)V*MpS@48ce<2}|2;Nd
z!BbQW1<%N$IDX*zCP%#7h{e$nPpS^gSDsTaQNcU~^A$`|Fj>J2c7%c{3Z7RmUBL?q
z-dYfQziE7`f@w6X=VHsJHKqW$Wr!x<a7UICT%3ZNsbCiCRWL^Z=eHSJmduR&BsP~W
zWl!uScF^Ql_g{-Sxx^6yPb|Jn=da*31&b8$>wAHMSIOt}*g`6KaS5jo#ZQS|Yl87W
zZ+UEr%Rq}2yiU`b664Z2X9kuiSW0tHk*ne@1<Mrttl*4-<upSDTNG?n@Q#8N3O=KG
z(xMf-tKb7ljJDIhgn>2QQ?N?GYAMV&_=f^Izy+~|ZwIq{3$E(Sal#sQih@rRa6$Yd
zs_u^LwsV1y*DCl_!J3a_1$$!r)+WN((O)R|l3J}`lY(`04hl9X@OQ+x>4MH-J<Y#Y
zJI+OOj{&9k&hEt53Z{08uWeegS;037_6+X9TP`hei&6aR*fs^*6&#|%E7(CM$HjIt
z4f~OJykwU&5bhV^R*g~xdugW%4$v03Au63ixQ|M^BfEZ4(=GK%==2U!OQ#3FGUSxe
z5d}xtDGE*~_;zRcV+xKdpo`#yf7fO?FShCNE#1QIAgu29R8HA_r(}X36`WM?lL8K?
zIF{xY$FqHUaH4)eaS2uTG@a-7LHN606#PmTsv<|lSq0}5xC%T4=N0^>;BN(&6kMRY
zpkGz+mx4cNGTq~RSrBr>MaTssR>AknMFpja=0yIXU%F8FUj_fsYDNdsI2>P%m=>4@
z!{+!@Ar+bmT?K!?$Wf50f^R^+2RWz<sR*kuR76y857qu&?f8h%222$Uwrr`eRnUb_
z+!J$DaH)>F#~COoDsjd<B&EEHD^y&iqLzvZDk`d|s-l{TN-8R=U_@o85GwdldFrni
zT_T0^Li>^`D(D7zT9B)y)m89!2{lyIRB@#WekvY4-;h3*LZ&%z@p0^q?A0o2tGGc$
zJr&oexK;(vk6*9iIu&(PeD!IpuH=((OLA*=W^|4Uqk7HW5gbaT)znuJQxRA3!Hz8F
zW*eyBu3GwP2KQh$(PsIHmsF8bF-*m96?rPsDmts^q9UUrUqyk6LKO{FG$MN{nz8Tb
zLYb^*k0vTO6LL+rc<B~{Q&`Pav{2DfMJw4r`X72`#(HI!aeTu6iSWmBMJigWC{|IT
zqK%4A+cs>=$$u3`>oq3cUPYC|!K4{yLMUzGTxspVGIzu}spzPJy~Z_to=D~54nqxe
zRnbkw02Q~X=&quNimZy>DsEK45$sJWZdSp+2lk`{rp1WxGnS#Tda0m~;v07ErC1*o
zeO2^VajS}3s0=fM5lBBOz{X(LlaVgT)GCSXk7;#t-kBKuW@Vs?+g045Vh~#~DTp@E
z=DHFN?C(@DSj7+(cdOv;T!-<`C+l~qU~E#h{T>zfsu;?=n`5imwBrm3KZ0hp4FYp<
zOaFZ;MyPmE#Y`0=Rg5BgDxOp^n!2juVHJ<4ctFL2D#oZ-JcBXZ5|15A&}}|MPIkpO
zA$GB8u=M<>3eF*qRq>b_SmNn;4%_m$iYKV0PX#A0xXq7mu0<nC#;bTr#bgyzR6MQX
z8S0OUi7K8|!8K6Y&ID@0mIMoV{Ae+G=H%P84RZK&64h@{f|Fp+%POX+n684~UsELv
zR;E-?&1SIDkAhj0(k>-bwoYeavsBC`^D16fF-OH*6$?}>RPho;&8j=aUs1sr<0D(<
z%vbTU3cB%aJF;uLwxSOAUJ|=yaF172d|ST!YbqA8PfLT%NDN4Opi`VjWf^?w4Ha*y
zSgzu26-!hsrRP_%jPUsw7c{v!Jcv2DBTIqvm<;)UN5u*?7@NJPqIouVr3%*dt_rrD
zM?pKKI#+7bZWR@2T@avyui6h(e8{%zxK76!6(3O*HSE#wv5HSrwAIi~!&>UI3P(d!
z!)Gj9#Yq)E(OOk}$@D7rP&a6>D!x|njf(XuHmKOBVw3Dgnk45%yG)GPJG0lk99Y39
z21!$~g(6k4O$E2LGeP}#V~Z2bw^OxLaI#`24SZJY_{3mCJ3pgpUWo0YLn}=XDOItT
zEmCn@#Xc4LRUA@rn6g!IPz84|GGZYouj=p2G8hXFLO!)7c0`5RAm=D`^`~NPStsOJ
zk;%SQae@q};5P5?*p{6Mo`3m4MKGwiG5(`O_=Asa<x3bu>y(PqD*k3SsrXsN85O@#
zJyiUn;#U>tRGgQFHtd5K4?CQtR=*hpD*R$kqF`s1rvo@G_B$(5aZv>w$e+^c|KeNY
zWO2^v1Y=qf;gJN+GBJ4FKPvvEhu5HM_)mqaLeZdVxU+g^Ps+!a^5HGl%jz6%#g#9}
zjbWUj4QU8#h-ff17#es8mkK}SRB`W}*^WJXSQ>0Ca5&s}&)tJ`biuVXQBFgSh8r~0
z(@<W+6&h-4xJp9>4HY$1(@<SQB`q)$p#d5yYk2W&v7TSTm-5U1RIb=8UPVJy4Wo7j
zAEdt?X|;5F@O^rvh8iqtT;QBrw=HS(LyVDyYH7Gy!*v?!Xz2M@F@0KX4IHUn!}2w7
zK=^+3k`*Pv*tM>P$vd;u=j%1_lsehwUg)=XX6tK+X~@^mP(uR^aSeGI(i##Pay2A1
z^u03J<BjSiAIgm=!x~mhX<%dt9_h_!;0z(Rdkr`cBf=3vBMpr;w9wF!;?mGmLvsye
z{@FbpXlQ)JH`DO_kP=3>;2$d4mR4F|P=y+bG!$s)-8tTIK(HiH^jl^Ap|Z7xHX7)o
zzP+#4+`JOT$7rviSi@8e(=?Q5=%8VUhPyR%)X+)8EgJf1=&Yd&rJ>;_4P7;K)6hf1
zjT*R5hOa!Dc6SZ@#Mr}-zZV)3;hAfCzneAmA_E%wkmm-CvKsy#+mXY5egbe$%bj1x
z$Xj0xKV(W6;ap31?62Wg4YzB!L&E?KyS6pEO#^)h$H{Cjk%4UKvEc1_yox@E`lewp
z#WF9^sBtjL;%=_H$d!x@#e<ypXt-CyV;UaUFjT`Z4fkt!K*Mki_pw8%3>tWfkl&ai
z*pFS~MEKRottO*2@KdzTj|omX@%BLt4{3Nr!=oBF?=*&j<&InpOk7;t<DaKv9Bz$e
z&&odozM|%G9g5QhPiPpY;aLq6G(4$cyavB&$<rF1qD*2X3<pFG-zkmp!~7Wy+jnNK
zJQkbuL-BJOCXyKqQ#3FTE(hK`gEon+W~l8+F>ZR~tK@m9gj7EULY%JQ1r4h;ysu#f
zbzZ}(%&1|ehFKcsYj|11Z0b)@e2#{>w2>7ts_sit=c%sqGz{9Au-le!<jgMPrqEY3
zEYPr!nkN67NwIS}vF5TEqed*!uvo)e8kR{Rzpmj84R30wGO*-WjgloAmQrB~a`^eM
z=V-95&97|khgq)SZ4E0myvxqr5qn1iPkF3h7oTs**;G#E@Rq^2-qWy(>UuoZGPi`1
zY&tdgf6xasE9$C-^%~Y__(;R2bn>*Rt+9_ad_w21fuAG=JjC=?Y*#iI5-<$W=Ni7C
z6Ii8uNd<T-c2k2!oFMw7Nqim4IUf6YXVyMkyg|c84O=yA)3AwtY*+Sc4d1Z9EeQsS
z@1M=x(NN*IakI3nE%XMvvNW0P?7M3^@1$mG*r9>Dp?Fz2B@CQ6??7?;qs7)prBuUS
z4gb<HYS^b?Kh;~qj~WipKr|fJ@U4bJ8V(bm8@q8=_6U>lU*5a2$JiD+uIGb4gIqZ?
zpm5@XKjh`0lrO38G<3hv@C5mxdYo^_NhH!w(f~F5uHg?2r!<__a8AQ{4L@r*qv00~
zze-=qlYJa>{@N-2=RLjFe;WkSIZL}<AM5sY>^BV;=%$|I@wec-3_sFW-_V$=Z+~j|
zi<ZS*vfTVhv(>;C^gkNz*_GwVzOilNm#FYOU%xAeq{_VqF1wYkTZf|u-<v*P2Rbwz
ziVg;5*<h6%Y+RA=4qZoBhoJ`}rI3!Fb_dQsqJu{fd6_zRVx0%gEGA&QvZ=uzDx*5M
z#9u{6RUPGY<mf1`;|d)WbyU)^^xtC6^j6RV_Bg3HxpqlqR@%8l=-`<|#$M(R+IZv*
zI`{&*_e`Rij_NwDVfOvauGGO-=T$mt>8PQD0g-CznA<$gBSQSA)zvx}6T7yKZUY)K
zOdsFKe;zF6+#r|uIdNS_M_nC5bqv#Sy^b4n^wN>lQBOyG9R)fHb;NWu(2=jBp$<BP
zxQ?Wbl#Yasr*~y@C8WD9*EG(3;CWIeM0llj5N33A)Jv{g+_Vu}RI~H(a}8VQXsn}&
zj;1<pEAByJGadaJmJn|)(=ccTi7j=s(!tpPX4!vtFTx@nt=TU+I_qdd3A_|5)={FP
zE!i#&1~%<<wAVp|7g_3{!wr>itlLoseGUWdc3yt-(p2LvI=bpO{kGDRV$soE2TwtA
zKSmE7HMzm~x5SM)_@^`CJ^u@SA<BW@O*&pWk+@mHJ@Qa$Z!%A5>);<Y`{?Ma;}*6;
z$6dGN_SbQ%jtMum<FIf58J-{eyl-xe20gh&d040T?G)hKvB6BK;|?A7{vNCd43fk<
zb<E$D<x@HnYSa)al8$?HaO2{=I{wX5i1Z)biyg;p|HF0Mr(>cX3^PXP7^&k4>X?pE
zI!5bwlo{WN-LK;T9S`bwh<u)k@$?P<%KgpAUSo7HbQ_K0VM^fZ828BWWYZ%$7^a)%
zFjmK7I%pmLO>6wP)WDB+WvPdJ^d#G*gGa@W?aGeV@f3Ss2SY&c^}&*#(ebPfB8<68
z$Q}OA>0nSwhN_z+`J60a_H5-T<m&oH&$EC3h)rc(r(#52&@n^DRgJ3EYE<n-S`(YR
zpvr#>s?5?cTSv9JRjSvmGKad&G_z4_HeS*(Psb1U;lt7K`8r<K17yblyrN?P1sliE
zI2P)7l`K_2Nd>&7V-Y#DFu}rN9k1)ijRaZV(D5d<)IcW#4}}v;biAWu1+9|Z`f7sL
zTM}8OW4T0T`02OVHL(_*9?xH?<6Rw%!e|`EdpcI>@O1b(R_l0Q$G1AZ)A0crqmk;^
z&hfvFk92&l;|m=h>-a>+TB@Ipug<2QJQU~kZZtWfPi94*%x5~Hr_;QhI4J*19qV))
z`n&m8tS*|Y*)K!3nT3?~>>&AQqlB9z{8~aj{YE02CEP;$Eu%B<4jntG20D)F*u{R)
z!P@uenARsVd{BO`V`=ihT1ur<_e!`=!u>i9NQ6%hvOtL+maxtYjl^S;$>Wz<y(RO`
zcUq)g-j+U@6I4PS=XLzXUeocTj-Pd$(Q%S4lol!(VC_sv39y-`C8d8}LFc}iU!<(g
z>NqEfze?DnPi9Ep%=7&+PrR1sd40hJs*{etbzGuDIF|l{n#th7I+%u~{iWlgq%`c8
zDIJx68U7=m{zuz+E%7hg-YI`w-;Aq+476TcXv|6~A*dnL4&j;*v=H<VazZE{LMViA
z2u>)-XoL_6!3x0+1?psmKmoGSNuyeHD@?N!{k{R8WF{Iyxez8CO|y1F=Di|>3L#Vp
zp=t;fL#PxAsum$MJFHE+CG(+^S2={meKXJY%`gi>VAr2Go30i@^$@NKp;id}X0*66
zgc^Jl0v}OZ2>Tvs&5H>6In}3#X|5*o$Aa5yL%1%4Ss~00p-u>OLwGWT@gZCv!VQxD
z$3v(WLj4fNgz#_(u@D-B&^3f^A;d#SgwR?h%at%cgoYs`Lr8^?Cn*^TSy5Udv#J&n
z?=nMcByXFA&|D&oLuewArV=vE&>32bGQ2<{EkkHkMqvqs5-<86N}CYchR{w@I)*?w
zx0iUage7GuJA_b>SHLPdl~FoNq)P~2Pl=G;J%k>VWC;Bw{l*Zo66r}nRV}<p;x|j!
zOG0KTd>~Nu-XZjnl)e()QudVG-WtMy5bh0Os3hJN!d(&>7{cu#+#&HhB^)FnOCz6y
z%kazP4+-IJNx7$tPAM_vFnK#t!r>C$N6jfq^X$!$Q6Y>D;eJVZP{Iewp0b38%5d_@
z(x~%<kA(23q>q*GF$r&%37%kEBr;ACZ|s*Lou>L!2v3Lbj3g?DwHHHpR^k&vcupb{
zLzpTNmOn`%lS7zNMtPnZdnjOl*EC6-F5wFj&Io~J^3hBdD@~y0y@hi^m>a^X5LSoq
zQV8=xSQ)~*A<U;5ABw*k3f$MrW#zvjkp&?vl!(*BWNEKSd=bqmgx4j$Ou{!Ld^3b4
z5;=89TPhJ|c}pT2rbL!Y<n0hnb<BT9;w#G1@F`QiCvV9~O&ag$`1>JzK*J2<sxUqb
zVGUW0CVvRwqYyq0VK+@|W-gO`62g}utdn`yO899ApGo9%3BQn#DW`p>eI@a&60Q$n
zLkJrs{!Lk$P1Nc#e8VAav&6TQQ4%w>Z4%!u;f^x;&JcE$;rD7SS=XKrN<-Ki!ahkq
z6vE*U_DlSLga^ygv&<tBKOVxjAsm(Xv9hO^b?mYteJ6=0B>X;vOS`hH=*JLFhVT=m
zN-r9Q9meSpeh%TE5dIC}j7)qkg!2;lC4^rka#q62G9mm;-u@ZF1&RD#_Vf>l@J;bo
z2p1*(w}h7@q&%6IQX>41UY*@EI_`$x(V55uyw$=`B%Qb_5%!v1M)_Rk4ToV!N~DZ#
zhEaKU&^jlKXc!_4$VcTQtRP`d8095$g@jCe<d9ZT;*}(<Tt>fKOBH!rO~R@Yj*x0r
zUE)`UQ9~juhb^Mme@;hgNy^n>)RqXX_?j@T4dc2n>V%P!#JXj<>PzH$32%_Fo`jTA
zEQ|&ck4u;<VM0RkoRkRbC7*c`Plu6_NWO%Z{YFEHb3D)_jHY2c6UMV)Gz+77825%T
zG>jHuv<#zv7`KMeDvW|Kx`xp$jKVOA!e|o)2SPNx2Rh|*kkC3DyxI8<Z5u|raPZD;
z9}euR#}fs`@|Kj6Fglds9mD7(@y=zGF5zI@#bn*X=s|&q!k%H=D47iP%kWiud7yQZ
zd~~yfy(G*^*jqy8>LZc965bL<zcM;s*#pA3EsQ(E7#t2p7X!n%BaA`e;7xry`>Ruv
z+qb8QbF4+NusL_JQDJ;@NMi$ed$(-kJz?bT&hnN+9SV6E`44lXiZNl_C!2hK7!QOo
zB8-t?Fyp8&MoXl_q1@2&)V5oKF%{v16lP(X-uox1v=4{zNEnZW@wjaAqhai9oxgri
zKH=Cf9?mNu@<bRMeLWe*_{;q$Z(ko;P`*w6Q(-XK)70TM`Ii$DnGnWvVJr$`aTpWB
zm=wmWFlL7_IgBY`%wUhR6=6&bL+h0P0%anLWuvCc+F8zT|Fq_Shfhg-QC3HWXNH4;
z7KdbW!k8Pzf-n|_@si9tKa7{dn8%Lmm+7=SJ7{;7RlFi^nT18MKq9Y(K_z@mmP2Xt
z;=t_nFy06wZXjXc%`ldP@pl-P!dM!{TVZSsV_O)@WGy$1(pc>BFy5B8?}YK0L{@~c
zl3l>Tzr6ie!c~M4VG~w|@qQWp0SlA{OZu8HJ}RTLJ3f*4S_wb>ANuEEd_lD@qkJ94
zIx1}#>m`M)*eH<=QfFA~rm~bX6_vN&$lJ|ShB7*N*dE4?F!ukbU8Kw<o$~oPj9p>u
z4r7m`90=oJ7^M>5E8#u~S>}G3m&hSWIUdHhVH_@ddPE{eB|Jvel0NV|Dts6}N#ges
z{wN^}`Jt?|lVucsM4XcN>Hnde3FDVAewCC9W%RRQoRj!@34bf2vxMIz{)dErO8D3R
zJbguS^-mc8QUm*B8W{LbKCNP)ssWep>rVMz7(P9}5xfy1226>l5^4r?10e%pdCLTb
zMEqG=H#tnQ4A=%L8mMHzDNB=MAS&^4Wt4klrR5D=QAVj?VBPz{fVpxR<##t2v<L%`
zl&_`bR+D&O%Y*W(8@N*5)-X`pz%>SH%G;|XWZqf^t}erSN%pQaaJ{5lS4OWRk-8FQ
zbIlthQcuGA60)3_MCgJjF}kc=14#qz4HO$l(Sl}Zc?Qxl&9*~YMk4JGYqW9Z%{S0c
zQW_a(Y@mt6NiQ(a)Ic+N+uT4)iL@wtT4jdT>VNP;14Z(-wSl%0Y4bl%+x-vDlKBQK
zDWh~S@RPK=&IY;|s1`x>2)Y{RX5dQ-+(35&Jq$c;;28rq8t7@@UIRl7++^Tp1GgKv
z!$2<suT6{hHqghwJGUgW2KL&iUv{MWvhY~yRs#bJ++v`gfxfR7^f$1)c0vBA)Hk&Y
zKHZ(IRldb-26lBV8fakm8}UI->a%+rRlT-wkbyf5FxiGx1&^&u4K`5lwsx0+l3FS5
zg(~-B!4Ly?8@R^+%Xy`4oBg}9Bn~q$oU9H>jWuwefe{8C<iv%6+?L6a21XmW-@quc
z(JpyM>m*_Ims7*~XRh3md4P>tkj#pLwlB3_{ddtA0}r!bwq$bt%X`GYqXyn9NL}|u
zvPI<pK4#!?15X$jXMhRD8(8p9=1Bt^%cq`sGIjcn<j^q%PqDg}Q@kdA6@S*i1h(41
z+XkL9Fp=pEEHp65z+?ln49qq##lZ6hW*B&p(m?)H1JevlH}J>qY{km<6??MN|4F@I
zAigL2`~xY%9od4%(}gn)RH>b6yFFzz%gmu6tk&imc-g>Q11}kvXP|$x%(85Y_J1Z5
ze<nu`OT9v={+Zm9E^IKgQOVH^@mJY*29_GoPNWtYSj-NcTzFwh{B;A@HOu_FHTkB2
zH>gzGQ>mjF!X*Z36&0~G!nb5DW?W`~DUUBoy<=d7flmzl)wpn_fp-mjKut5S@^I!o
z1FH?ZZ(vThf>j0v<rL){$;5kQ9=Vj8Ii5LEzGw|aDpDWG-kEzWL;PcjvzyA_omy+)
zQ(mjJ<?Yg+8Tg!CU$^-e2A0H&KJS(3G$S=-P0?2d)*JZ6z^?{2usaNNJe=BVV3UEb
zDOIZF6Y*~hY?jD21M`~}ZZWXcz^NbN^?oei?K2N2?>?T|ZeWLjod!hvCdEfGb1J90
z?#WiTyXb}51-lLGF;Hs2ztozyi*l3m{w~^QV84L_WX6jhHgLqiLAuS0NnVFoxRU&O
zR`@6tY)^KA(c~us#|#{&*r%kwHPGQ){5$!Gx5Q6K%J&9-kO(P1O5~)0=06mT8(i@F
z_{=E-rw#mUp#1R`XDE4&lr|?rA160XN}n}wj#8Q$cOp1%;5YJVK#AZ2JLTW_pA>ud
zg5M?1+dmAvFf>zjWacje7Y+Pv;1WH&Ov7aV(0A!A{*|{EhG&TXM;CEVfOutTW<F4;
zMxaFyVHN)t>JhNCu!Nxq_;hoq#mWZ?4M}McYVqFSB2%WcBxDvlg53=Yh+MHR9*v+}
z1UV6ukKl?3szhM6OWrggQz3$L|0F9#@Xbw`iV^%VB=vEPROJXtR;L7KDc^|mLIjJ3
zq=;0Nxt5MgGVhfU)QF%?1a%{*8NpQ%To=LiRq<L95~&@*)e_%dUgJf|HS+e_2zJQZ
z%f#y=xFLcDWx48=J!Sg(5j6QE9*f{|N>btxEX+wH%F-kwNJWqrK{^84gkvHTK|Y%w
z!S4|?jG$2jb0U}<L1Pvb!5t9{ilAu(%_0~OL1Afb^9Wi*kd2^s1T7<I6~Rpr+#Epx
zpGHs=LF)+K+LZgt+T7Pp1dvyo2s%a3IRfHsBWNcP;_V|SmUu}Sr9%WA%ka+{B)dqw
zsh>A`N^7R?8bLQn=`LZ9vXnPUq^E>i-^<N>m#VuX&h)(^c-cu1=|lBfk=s9lTO;Tj
z!7VanrIoo4tc&-PX_)Knt|_K`O7eVL1RL%2KnedSm%3ddPc<p5JT`u31P7+3?~Pzg
zz2x8s?uuYY1b0WU;EDJ>5ez<`SMP&d;=Hcc5<?>x7Qyfc?u%er1k)oJ5y8j^CQ<_v
z+NcOdNAOq#k4JES1P?^;a0HK#64xG#;GekmPz1NfHN{Eu8WX{vW%#2JkTN!c7l-8b
zNoY)YIn5IhJQ=}w`E;Cw%<@zOPfPsS|0(U6vZoUwcuwM%D`NUd@^*3rQzY_y+0&_#
zfv;BOGR+GS%%G|yv}bY>FUkb7B53ZUXG)y>U*=~v8_rfFw3i~77r~bitczei1s=iM
z5xf(@E0kLVZ$_{r0{7AM!U$fY;Yj>ds?%Y;Zza3YvZBQicvYLcPOGWbWKG@V8}gQv
zT0a&orFvhJS{A`_YMo4QV<nrE_J?(*WSW;NrB_6-GJ-V`d=$aE5xhq^RI)#eU{wUG
zWnCXg_&#;`u+H@4<TB)K=Sue27I_~>@JR&SE7_k%u$BsZSpQ5y^7E;zlr^$CmcYbc
zP$jAt3|yW3DuVS99F5>u1RJPA5$ud$R|K0P_?pH`lcW!cU~>dpWsAr&8Qvl*A_F6L
zW_Y_zK4L|@C=l{S;_e9cNS+TzP#VEr+B?-!vef3VzE85j^q(z=ACzJ|BooislB&KV
zLsp6KIwDJEna3meHi91`I2plrH2*EB?<4pjf)lc7Ebwyete3U3X+K49DuQ1lI2*xf
zDgQGxs0e<R>6w_!vuSJ&aq@po)_y*M-y~x!gdNHR&3`jlSL<t1e?;I@b4>inVykEV
zir^yUHm}j&5&Rp$e-ghW;Xe|_4(GcP@yc$Qc=Dbsp=v@iLG83m=q6gG5-a_BhD1Up
z!V)oGP@Zg`h?w}Ic70RA3V9*od_PieqbACk_`$@FCUQ)aH}Ry2@g}Y?QNhHGCVHBv
zXrhvdh9(-BsBA)*sAHlo>orlu#9LP48WUAbR5NjviCQMkoXk`=aWOCNN)yvprq4eg
zuOV-1N=SOOA9JrZQQHhg;N5#>Ui(Pf`bvCSX|i#<!ltL=*P6J_#Pjh~>i77l8U@#z
zxWPo+M8ZTp6IXu|uWuq|V*eNM{ngtvF!4<JM3eRL%5SD7_fH)WdATM=^iSoPNSjES
zNSPpg$+qN)_Ib~@%FCE&vLK!>;iM`>#F?0|F)1e6nP_jKsflJ3orzW^?wS^FE=#EX
zWb&t#=@yd0ECnVC+4dVV3n$t|ChlJrZ*AiHw{oxjDzmUO)y70y6QjOJlESO-t4y(p
z5)+*%qWSR-Cd_)tjwU*pINCP7;`-)SHO^lePmMA1dMwIxG11jTH<_{r`=wv9yNUZ2
zWz?H8tZvHn&1Wd7n@rqnVmRq0dYQ<YxWmLC6TMCDM$YSR;#L!VO!PHzi-~?Fo?DY4
zot#YjBDr@;{M^Z0N_zl%^Uc&i6StXo{MmTxmFXsxi*7eTq+0(JAKhtUu!(z2+-qWH
zVcuOP+LTM&ZDNRt$9_$9dNWl#EzWEEi8zZLYGRm)+iNy0cr%$os!5$f_grR#iIFBA
zHt`6hVPeYH$@@(_z^*)#8g1f}*AmSii+9MR9yD>`eC|Wku|=7Vzh=gmc;%{0hid62
zvBF19jFnHHV5KHr-;;fu$^I>*s{A{r^|axsNxx;rnOrE3&pX|E=vVQlOgv4!GO>n=
zVd7a6vrNo3F@ZubF-;aV(ZnPwn28!6WhP6mrkE(5AMbuXGGcwe&(n=t@X=J7#?k`v
zJl(_#REAelGfaHBC;OraV{wMcFjMwBRf~<CV`8p}H%%-t@sf#oCXUrgE|R(Cn^<6C
zp^2B}Ez5aDBKFjH{*K&Nsdy6#kMGI8W`ei87EX;XW=l=HLFt{2Q}LLE2sL3TRnEja
zCRUhOCTl0d%c+yQHA<5B+fs(hho@GWc-O=#6RS<AT~qA(`{yLzGqL^6BsGCr_r8e_
zr1~)<Z--XO5H33%|H#B<6I)Dt%nmZKma;Xm&cs(HPSt4o8BHUR`ohHLY^iKGqOHF)
z@!y^-HR0HSqV;6#bez}MCN@Z1xi-Dg#3rdiRA8#gn6EP5n4rm1i?*8BX5x^E!{p7x
z4ig7VTq>Wp)5I>?IQ73-{=}Y{-6r;#D0(-&M=EWpgnK2VqTc;(ib_iZM`^Zuaq6In
z2NQw!psP8;Hk$b6c<y&3uC|%%n2F<bans`Nr}1y439s7Qnl)1APtb&AEz|lXX}l**
z{AA)L3pZOhW#Y7n1{UHLex{3~OSDkg!Y{Nq6TS(>!dn&7XHA?p@f#KFtJFEVh(4)o
zt7L`lnF}WVpu;!uJ3Ztl$tBH`Q|?awMHx0vUSw%6r&jDO>NzV;<Zm`#Qi%T}k$)*(
ziMVBSk41IMFo9}8vryi`6&7?0Aq$oT+d|mF<Rb-!g|X=rk>4iABNj{xjd~Vz+8F2c
z=r<|HLexSz3+vvFSKXN0`+9P4_l$mLinloy8rDt|`D{bHf`#dGk`*nSZ;|)<nsn_)
z)9W@R*Nuw{3pFiVWdRndSg2~DnuQt`-uXGXY+5QkE>oQ)kBeVvq5s7suOU4$hr+4p
z4Vu=naJ7Yc7V2B5ZJ|@Orq@`w)<UW@+u)6)S21xNcR}2qyum^p3w14AZ-GQ!+a5{p
zdo)Ajp*5+8YqyB@jgse>g_DC)4?doLcyEh@g<K2mEVQ?fWPui1T4-e<&qCTlV+&0z
zWGv*fbr#kh&24xgg+Ch)wG+>8Nb<Ikg-tW#M9wZuHnmW3OR|}TAD>HKIXT(fLJJEI
zz1V`pb<x(5pPJu1E4RSHM~P$`3xyVnEPCL)_tPoTTU!{kDLMOMvaL)|@_3xdSZ1+>
z4i-9ESbjQHV&T%*%=$NTJ6Y&#1@FOb7P?s2_-^Kt!X{lUxL4;b_&dH!q??>ccDK;O
z!aZN+W;Y~nw9u9%UrhFt$X~CfdRfTI5=L9-ZGl+^Sh&qX9}9ggJpN(w77P8@3zSKP
zM87sE`_<&F7Ve*v+%T$;0{?MNa-fCVEey3VjIAK^7Vfez#KN5x#`nm47D^7b`0<`8
z{Uqqbx9249wve;eyvM@57QU;H=vbOPusFp>s~<^IVP^Zu;natX$&nWBv%uRC5)wIC
zJ~>KeAt&P(6y0y(0SgaOu;kOi6BZVA&y2C~h=oTjocS>Mu!K~_u@)Y#oO=ED%wtj;
zo7Zi@PA_Sbmp?H*&cag`p0@BLdv;=aJiFtH<g;|76Vn}f<&Qbl{MxFiXQ)w^QbeA!
zFww&2<?uy0OrnjjJ8X2aF~!337M9Y4Eljn7uhf|qW?7iV>Ih4dr0{w{KAIuni&pT}
z$q&`p@^-$3mo3bZ_*@HrtjXo|l7)E|{+^sXI4%C`*U4AdiqG>F%QP%)frW(@UX{16
zvF#GM{N;NYzAh<mSa?$+ORWF<F24M985PMwbsJaOc$;=-;ZF;HSy*9VB^8OvY~fuC
z?^*baO}4Pg!fIN_eVLCeyl>$H3u`Q#8=3h~Di1aAny!&ePb5EGoGhB4lK!!UPvoPu
z7Pd4_eQKfCeW@X(*-dtm@CyrH%F@=8^Q)8VEDZiK^%eVWRA%b1%+3EOEbxY*nGF_x
zofRx%er@3!3#C*f3!6#ottPCzZOl77vxV9+GPBjfxOBn$qcYpsOba`y$rg57*hBRw
zm-p2Nsewz9gv9?pvX5P0;kbowEgZ0L(86I0M=TsFyZ*d4!)x@g%ux%+$}UnmqziZv
zS@do4JM!>t@{ENO68T<2Qht!gj}o4g@FxjRSvW0`pCxog1%>eXg^iMwvl5<@@Vtb4
z`kO>9Sopn+@&{daCdhb^8e+k)5wUT}!aqzfJfqq8*TR2Nsy@Ae><D9U%CkVZ?anoy
zo~_NfkjvT?8>)>nHIs9jq{c;B)V(jG+aL_t2up-`*Wnq{hGpXl8x?HWHXIu{HfEfN
zM{Sg|0}1R%MmFSIlr3dWAwN<hS>6tMWYOPNMH`iDRJ8*)RoMnF!7NuN{~Ma&6c%h$
zvBAFP)6$pY6Y8X^$&~x%1`9nkY}B;Tz((B0RW@qbsBPmKmNqhTwT(gP0v1B8W3Fpu
zA%EYQyq+u#&0J@rjzsE8SgT_Ji8t7&XM@eDFRO^z`2L>E+ZC;*R`SHJO2S62jYc*a
z+eq5jQKM<b#xJ?4l#M(a9s30Q5T<3`(s?Rp;qvWZYObM#eP?TtgQ+GqTH9!2qp6K%
zHk#XLVWYrCp^cVOP_1kX_%zoWk)bwHZp4dhnCFtbsMWl^jI^}_i)e47ovf~6IH<kY
zMv09MlEPc1no2oSXq|0zu@Q@+K@?qWbhB}-gX<i0x6#AKdK(*T+-RexjpuAkv~iP-
zn{5oYai5J|HnNnYjXQ1hw$X>|*|^QdlezhQZQNp`pN;2VOpi<E_qTCJCjV9&R~Iz>
zd}jJUB;9*YLD)?Ha=2)qjobOu#>=mpq&%G$5T`v`NPMu3yKLNJ<6av>Y}`%Fe6Hwn
z0zTz6X=ZwmndUoxsEuJZ-g+bV*y`4g?9?8emmXnbq>V>yjI}Y!#%LQ4+IYxD{Y-km
ztn~dh9<cc#pSDxMHD-Ti43#sLe%Qt%5>eCn0}o`5?#+zsn76xq`Y{`ivt2gE+jzpp
z{)t87WHM$slu1w6m+Aa@-czh@Uiuju&r&9Ah>cfE)B95C<6UePGQkE@lHmZ_m~3OQ
zjo0b_DIy#5*?b#QZA`N<)5a_t(`~#!GqLd^uSl9Dyf8aW<fl17nY@-o((PxbXWN)d
zJ#UadeO`JFbInWV&q=>zW1bDlnYWD&WI7+nykcX44KlgN2J<c?Z?ae>;O%P?=Tm)S
zy5g<*Wd02sZ`xR4W2KEHHkQ)Q+hEmfIOYGAOutOR<r0#yJ{!|4;T_r0@h+KnZM<jW
zQyZVzSVimDm|kt;eVLf$@1GeY{($P8PIEWuhjy^7bd8OVB=WI@q<msyZ5jSxsNCl^
zzOeD7jdeB}=BG0+rbo_9Z_myDibj{4|3PW|nM6MOlyIYsO*Ssr_}#|WHojqB+c+pC
zu-V2=8@p_5v9Z<0Ha2ipn%TFr>ofUO-7CIN@1Vc>J|OP4v4;|4kJ~7<@!#C^=~?N$
zvbwLnPuDC?KR2xKj@jv>v3x6)Pk6}2VH-c%IBDaEjiWYB&{5bpX5+Yx?`%*3zLnW~
zr}NnaD#P9V@{1efKeQ(I2OD0^=&IcOf%`LT6bt;x#wi;UO0(x}oVM{ZU5brg>2le*
zv(iUWMbqb`TkgvcSu!tumNlk|&e;gW(lIYPGe|%+{>?`By!^$b**|RjN%!j@>fkRM
z7ug&eu4L(N8~@1cVKaS+HqzZDZ|tCdnf~iQX+0Z0y}AR#;fyHQ*O~*}fhzGS8`Gh@
ze41X!;ml7^J0<hEnT|Lx9V}1f+fHB_mIFRIlgMANr+~LiQ=v<yoP!((RUK4wP~O26
z4k|jR<e-8R=-c{18EVV#Gt-M^1eRXefp7pP5F^=RU(-TKuOdsPF;;hQrGu*+)N%qF
ztRd-x^73oS(ncl%-M-qv6Rq-j)t1C2W}5glPT&oQ)NxSP!8;CCIJn-y4GxAn80Mg!
zgZd7-IOysi=AeOth7KAzh&xC)$a9c((62%M+KuU42T2Fh&49xc@!WiJ%fhGDh-Mtn
zS>?-mSH=Qey=q>%v4bWK+B#_Gps9S+%)ztYr^lG-+WG0`4q7;9Dd{Y~S32+jtsE3c
zN}+_L6gg-u@ir1x8CFPQdk4i1Iy&g&AeG23aq!T_bO#44mK{M3gI;z(O(Q}+iBOTc
z(fK>L)xiJ<JsjNVpf`KjK~D#3OS3mQxLIaldb;#p)PZz<mi@A<sNuZy)cqN%bYBOz
zP+XaGf6BxO%xZi(z34=m$o%1j?-ke!ohG+A80cWIgS*&Ynf%)w+`%rRRP)mZH>K}%
zK&MKaWd_K+^biNMwbIh;Jq|8xO5ZKv_yd{J8R>f+5b{Mc+`)a+4F{7Qj9}M0c+A1$
z4n{c`&9*xj<A92Ezk>&veNoW^4rpj2_hr}%WSb6z*TZC(>PkJV*@V(&Gx=z&12%yd
zMf8M&aSonx@U(*`CBsy8(wTU?gD-X$k?m*LgVg+Z{sh^TG-@`1efpe(iBeD41))Tc
zWr~C69n5#QfP$%14+k?H%%c9tj4wEt!2~Y`*2F5(4f0=PyY^*x(adK%nB!osgO?mo
zo#ua^CY{KQJGH#7_Si^z9up+<>1<zdu)x8a4wg7r=-^e#!NFn&uSsQKf}8S!yd_%U
z>kjy4dBX`jc8xjd!?V*wHocf$>fkLZs+nHS1d^qV=|JXWjF9xV<x{${l@8vehjDPx
z!Fvu?IXLLxkb~6@-gmIc!PgExaPXmnj~#p>b#e`vN#}p$z@C?0l1fuoH)ZnII{4JV
zMs{K>pYO8Ih^Nzh)1B7}Kc}1>o`)*r^`%7CIrvH<>m}S!_Vf$B-{+-|r_<j!*z91Z
zgIx}`IN0jo&)oEO2iv6jQ3HRyGFmN>-{j7G;yWC$;cWhH2YVdsb+C^*CMCnCbR%Sm
z%<Pwiu$&+DH2FUuTS59^2S;dz4o*2Z>fo4z6Ar$2g4gtM2j4pQj!#Ro6y2WJ&3n^9
z_BrYF4-S5meuK%bjOU+}>Dd>=TYaBC?cirN%E50A&N%qR!C43AoZ!9r()uD+`YW^R
z>9$`7Z1d&yz}x^5zi^pJ2fsV`gHHQ!@CJYJk<8ppX<qIq?QaK{=zF8MB8q<;{7WAm
zg%QPn4qRGyG+^6v;7fj#D42`I`lVSStnuKcv=)UP4QdZXao?T-rtkP-@F)_68HE!?
zR2E`IVMp<EUOopTMseDBI5V<AemU0la3&{;73nlz#PpxLXQiv{%~pt_ViZ?JQ7ei{
zQB;niS`^iz@Mfe%6jh?A8U>=LKQqwJdg=6KgnBsfMEc4oNMXtvQ5?P@D3Ewf7MM=|
zo0q;iirP`sjpF(!u8}3sQm%{QT8ZDA7mT1tsS`zdZ<fdnQ9PHMuE(cQ@Rqt%XH{zo
zoMNXk#G^<=@oN-kqsWaS8O0M(jEf=_MP3xQMA47sM3IT2IEs=e@}p=NMNt&3qi7UG
z<0x80(K3oAQ8bOBc@&{|K0SZ4Xz-?BC(@&`AK4t*MXM+Zq9}}F*!O{~D0w!PqaD8Z
z*i2H|MA1%)i0y3~Mfa)>^R|y-Oe&DT3-4(iqUcC^6g}kAPEmA`HBu~{DeX+Ywj<Lu
zif&OXY*)zl*AE*5iQO1Q&uH*I?GwdKQP8GtCMW4Y!B}jsD6-LDcpo;?Uo}bhj^eky
z86thDQ8EG3_mAS%DDI77XcPlv-aA-e6t_h&P$p}?H_KMs9u0;TmrkVbjAF2C$UW4<
zx#_#2xLYDaBxK4nMlkXT<pqhe)tU^8Vt5n}M)6P-?C$%b7#YPV+3*ok8Q5{7WxX8W
z-A{q<%aH#EWY2P##HVATc=oTxkFtwp2@lI$k5E-ofdmfk)E*<fefn`($SuX`j$Q19
zx#=gP7$3!ZQLKvMsVJU~VgW@L#WO4|imB|xC?>ELS?1&@CPp!d{hrFFMv;M*yNjrA
zG|4GZJTGfZbq{gy%qC2a;sx4T6fZ?FBZ?QJm?I0BDS4h11trXk^<PTQmd&In*vo8J
z!%Y6XDCS4;N)#L&y-cH<7tmQF4WBsQ!ql->qj)WfB~dJmVo?-}qj)14yhfRfkT1vA
z<t^>>O^MLHNPjDeWlTRKy)p_WSS}x}kd*&N)ptNiQMA#r3kbVR_oSZNJ&7P7ad*3S
zW=Jlu0f`Do93+USpadnVM8!l9lq3iSl$?>MfPmzjB<Gw|q9{q^-TwIJo%hbEbI+|?
zU*)fAdZuf-=R2@K2vd34#*DlKT_g+tbn$BRlcf$Ub6~Fn`y5#Az)ucrbYPPMKRd9(
zfwlB22Ua?;ieB+mWQ_yAaA&9+;a<T#aJ7`fjfG!lDDoTPI+>33vSwL6o5!$0qRhV8
zfh`Vfb6~pzOtn9nBay9ixy;y+y~#Tq*y+G-2lhDZtG-==tc44oD{fPTSe;1`7Lpo`
z{pP@a2TrjN_SAucv~=L81BV>E4;wiwEu{OgNvwr<Ot!(}4xEsr)(7KUp(mvcPgW~;
zk24OOrI`bl960B|c?T{y?2ooXY4#`e;>CIFBO61@%MM)OhUvf`EI}?su8JkAW+VR;
zPD}bNqipaE2X1mPDrlwPmIJpPD5apZg1;QN<A9<-Rq(e1|2UAWAisjU4&38{a^R5z
z_Z{}7`vV6aa-Bx(FW0Pvt>XG3|IdNPG6ne*aB#R@=zgp*NwGg27<RvvQ$RsM1%(x)
zD0oUiA;s>L+q4_TqKwUvbrU103W_Lj(6VrZpPRi7#%V*H$nDgrz@<P}U?^}a_8!jQ
zQ{YkHRiH^Oe)Q0nxcrM8ibBEux07%7$+?ym^D79jF$#(*2rBkOH#?Oal0t$9?C<y^
z55|irD6ZgX1tk@fQ0(RWZ$^y!YP(7H^)Po@wt<1W)-wvqD5$9*TR~YCq9CTAl7jLI
zDkw--kRiR}j}kPls31+E>?S*FDzFqp6tqr{@v4A5%~Zh2B_ZD1lN?P%D=Vm?psIpu
z3Ro|{YVn$oX3Y4kf-D8qMW@0s=P1=sz>fxd7{89>D9Batf`Wz$@)X`4MI8lo6|g&<
zt=Mx4pVX96TS2E~d8<0wSFrUI)K}0z!Sf2}Eo=!tE4eMqI2b3V>#|ji6f{=QLa~3q
zc~L<V1x*z+Q*2k~3S!`NG*`fN%@R0e@$->yG9xWz7T8F7#Y^n9f}skADQKght%9Bk
zdMRk9;AKvVf{q-z&5`yBIw*Kmv9C^F5rvmtES61rO-7QJL!9DH3f@rARY5leZz|}l
zpo<J$-*L9LtUefLd-%C?Y<l6h6uhmV2Y+4vEw{V)3ERV~BYuRj9R9LYH8a**K_3MJ
z6%11Fj)Hd;^i$AZ;ZKg>S9pfL;@eL+vky@4Q$~cpIPH2nnGVK}q4yPhpx`3~A1fFv
z<G|hHLk0W@X5(Kk9O37}CyXi>qS)X2@*j?JdvCbK_6i1mK_1Q@{}oJ8Fjc__1tS$q
z<P<CTT)`I##wZvo#g0-iTCsoZ;>uzh_)U$=aGZiK6-?luahaUA8%FOM&)MNFS|Qe9
zc$8-BESvPTf^QUiXZv2kw+g;f>>YJ7I~$GBbI93Xen!)PGy8*rtB0bT%4rIwD_Ejn
zse%~_W-6GkU;#Z!!ED98?wY4yj)J)g{Ks<{9X&B}<Lw-FoL`!LI~1kkJ(FKqs9=$T
z#R`5@z&6{z;jGK04O1CNmMK`S;1>m}IlKyfR<M%(vpa`_vx0>evOk{q^^nV)1Gq{7
zx5PQ)Y)`9OH?oFqP%}oI)vZ&oo-?STzlseCHY&KT;0Ar0#r94+B)C~{i{MtlZ3?yv
z*&(=7u)}ftmccFsyCu3uaIfG#L8ksDWWRy~3FV-Wz0cb}J|7l-M8Q!Z#}ph_a6<S+
zLE4-Ya!SGJgmOl~S>fjd&kJ4<{86*-TrgZxa9NZqf>#Bp|E}N<;eQHV6MR_IJ{W&f
z_&?m<`6-~_Hurx~m~`Nv{r9Uo68&2+_Cle1oGI>XDk`XWK(FKOt)h^Me-%7Zkfb76
z#rz}If80`3%$QL<mYV*U`(bMO^IKDh>-!`P{>;j+f~24d@&ba4jvZ!pb|n>7k)lFV
z;Zu>SqKJy68J0(dLxrNkt>XT@G*yLDwaav=`1minX*%0^y}a4Ka%S6KGA?v1oc|A#
zxxA9M6(8rJLRay$ijpb}6@C?A6-8D123$ZzP(?_^orUJ6*R78C(*B&Ek#X8;`ISjt
zOhs`OB~+AY6xrRvdUa&ltjn3B23e<fnx#~fR#8?(ITg(K3~gATVbz&tS(h`J_vmSJ
z>cu1`5!s}QD$-Q6P|;FFx{3@HxhnEhm?|t4Ra8_}k*Ol0qLPZrDxxYTj7W>A_F+Qa
zT4e`o@5u`{%i&$xEX5pG&b)arUQNZbDza2mS8*dZc4<!9r~~=i49KaWqNa*$wnybd
zZ_?MFPwTbS?h%{Ba;OyYTD4R>r=p(9uhN;dRn$>YSGCuIYpM0dPmz@2wxcpIOMMj$
zRJ2!ZZ+TwD3sUBkPLVwsRznqyI8*o28VkNC*hG+GQx(mGHy7j`Sc-8KtyFYY(M82e
zDq5>}RmE#6+Nfx&;$^!cyXEtSCbd)X@KWZE@#g;dCL8&RiVo69j{lOP_Me+LAg`<F
zsG^gKH|T8592D7$z9&;zLi*Gs;+rbi1$Mcsif$@;spzfZEfsG|XM3pVuHx*Ug=qXi
z(<EBHvoVi#^`zq+;=5)t`>1$F#d|DM3Vc@@uv99lUe#h<%);y}e}IaC^d%=kP7LA@
zso1Gvmx>SQ-fWwSnJPY1@sWyADn`?9ReYl2GZotkrq{fZ^(m+9N>=sEBE%sohD!8M
z3&$`a!v*_~NE;#c%ra8N=bW{F(>}gnej$WM7sjX<OD8w1sj7XLVVsIdD!x|jBLrWn
z7*CH<QR-0qD-{z}+?`?HXnu0$f&3d4->Ue5Yq>$y?>G_LtncX|LrtD!n9NCe-F$y#
zM)_tAp2wIXHtx8Cmd9#jPE$dgE;yx?W0s29GPWC4%#qeERPm#bxtvxZ^Ep-#i!EQk
zDhg-v7{($Mi&d;vu|`_EM72+GtmOJtu}sBs=@e^OA>=0&KMP?YPrAUP5hSZb{6+FI
zX|0N1Rj{)xYMm6zaoE6}M`{n=jxx$zlUq7AaaVaUx>>~*6?^yPZB_Ala{6{QRmJeQ
zgJEd(C<lKB*J);vT354nt60}6=`U^?D)umoihVLfhgBTm;$30>reePoazMpF6^DdB
z!S~XtvGAiDE;^oyb20+QRh$uWLd8iHr-Yy8GHK<=EFR$yZM+pFGD<wJ;)04lRQ##p
zqKZo@uB!N5#bp&&Bx5hh#Vmz~<kFt{o2?uylSN$<euHD8;<^~u`Yn$(w^Y#hwkT&0
zSx>6#pPl))ihoqNoNzmFSH(SU?@r`*+D?04#Uq)`2Xy8O=0oAs|CQk_^cDX)m;RrK
zj|KBNkt7*u%%lQN)H)O|>_mza^s$0YJSBt&T?#pE_gFU7Ocli;NSh)~wDm>WoJv!i
zP@T4OZfRfL>9l>7;wvjNk}p{vr`;Ic39l1WG(n#e>=6T;V5g`XPUssl8T?KJ5}bY*
zcA}^gvz?g3N=sP9oT%wUwiCsjDB;A@PLy<_q7!LOlyai96BV4;(4pEhPLy$?yzriv
zV`ZHvC;ZrR<(bM*|5Q2R<rC!?XqN6o{Xc9aDkMYD6ttYk6hecDkhJA7TE?WnN`jT0
zsKOS`$fzn<P4HR4EWzr6G^pXUuW3ngoXB<JeJ4I}B99~QL`Nq&aSWZP?L<o_;!eaG
z#_BlnJhM1a*NJ+p-H9%9qYa#x`CN>o=G^GmIW{(QqLGNrooMXDgt^fdooFIt#>wQS
zLOz+6Or4>b6N7~?V+$u(!i<Koa&x1tIGawi<5<m&zT`w}A#La+)v_2UGQ7;`bE1PJ
zwP(_DyY^R|c+H8|#d6FtTOqP}uN;cg;0-6<bfTvdy`1RmMA;e9Zce-<q>ErzCsJod
zsWZIoL=O?W3sPay6W-g2KHSNjm~trojuY=X(T~pK#CuNkbz<LhF_KHq#d<f2y<Rd(
zGQf#<4#j6*hzt}m;!u2Ft=N{AV(*<y9xyXH*ohCF_{xciPJBcc<v2L8=1{y{QuGri
zzW69-s1pybW`63#5Fz!lB8(1mVz?8ZIWdAZPK=T)ecMzY>BP=mnS=g|d@jmwhvJNm
zc4Ca^<QERbSvbi!G5At&yckRn{v`V(C%$%KmJ>g(G9R|j{l<yOPJGV>w9oxk@H=MV
z>!aJ}{@_H$KUJnWF^zscAvVQ{`PXu(Om||26Ak{UGSi6x<74*^#b>&6w8QcL24@G}
zj`rwmW*m;sbz+_qRb8m&!h9zda1b7)DK0E@;zuWbuVen}#3CmaJF(7*^-e5tVksNx
zM5Xq5%bZy5#Gmiytfa9g=O;GRi50^8HMZ&=j{lTit;6B?&J{VU#QqmS+OHNet!vI&
zCwh0xA^BAZ%iO@-z=`cn>~La}hyxGDw>tU1JZzCD%WU30kGPGVELE_ColZU_3@4m8
zDec)!e`sv6*gX>6OP6rsH{q=PuoL@*9}qk!cqozDt$p5+1V1X|nBZ|i7JJHx(@s8c
z6=yl%U2~pvljNKe=bgAIW)}om*Y83u(i??b7Q7;ORggC9%O6j;;I)K)-H98*L+$fu
zcFT#|PW+Wfz30T81pnKKe-iv|Vvw2TzK9P5A3E`*3y+-m&xyxQ<Z~g_1^;L>$%SMW
zo^qj(3;A6rAYwrmUT$7}`QdoZ^laKNI0xo^-@JNZ7gAiH&OmXWU=dLq3H{5N)m0aq
zF1TE9yHM7JaxQpW@VXFmA>@MQ!jf*4br%d5d@i)PlLHs>?&N%><q#S5yATkYSCnWu
zg@516NpGANW`T|KCMnTkE);d)_Tf17v3GKcyHG-mH`YvH_NS$&k}i}IQd*GuGeXJ`
zixpwCybBdvFkP@DZ$%f<h5XehFU<uOTjWSQLlicZ(Sb@d(}k!DF&82(u<E*v^GY3w
zS8}1U*jEv8(CVC}W;P4iBlxTfSsY0h+PhHQg&Ho@bD_QqHC@Pdp=tl@S}uOmv4=WO
zaF0JFSH}O+_%w>d=UiAh(W>o29U)Zey6|}{wP`Qw)uL7d7drPbUv!~~kmp@^K}bVE
zCN&b$Sn%Pga!p-m=0a;1+Iq8_3$}D2?m`RUHIBsd-pFkwoCYtkwJl<A-Og@xB+h6X
z>XOv^NW7g3<9DRcnEER&ba0`k3%y);)rHqw=uTg{koLL@9bI^nRlCs1g*RLnaU{;`
zD~5T<=C#(XXL1?3xX{gow_NDzvM=p^s+c?bNSp>tV)Shnrl&{ASzr%3XUAlc-Y)bZ
zccY*i@3`=;3#VN;<HCC`^yS{=!jCTWbD_Tr6I`gZG-H6^2QCbDVW99qf=qg!{+!Pw
z`Ot-rL>w*nu?xdo81BL+3CmAi7?R*ah0K_1ewI)^7c#<ykqKqVh(av(3l~Nul-pn1
z${2}`bzz*4FB7TbT_`xuZpl|JOmtzA3tvmpJQu!k;alM|UHHz0$-<|)@O>ihA8XAY
z5`2ma*K1iUhhdtC(_NU6NPT~YIV-_uyD%rg=W_09M4sfDFX95hUMI~(E-ZFozY7Pr
z99&rH!a5h$OX@PgRf5Z1_({mmf-3}B;7TDAAEc50;=*c)t`S_Du=&-6yPfR5Z*XCw
z3tL>+DoLAM*qpFwGrBMhlr9e9HWzj$^zA}+2<~)YS3=J`o3=;zUcr3{{Wli|ePB0+
z;h>1eTsS1;aKh$@kfSb?$;*6Vd0dnef+t-#C1m;^b|Gh7ILGbCg}+?DY^&!6^SlcU
zoaq-_xah(q7cRT-r`TT+{6p}nAhZ82WZ|i_9l=yauO;;BF5F1)n?i26aB#0ZN_SlN
z+l7Bc{73L;C-b3@yMp%w?+ZTQhx;PCzgxZOG<zf>qyM?^IKlI|k>s{lO0pnHem4%E
zvAyUiHww8?%8k-)6m}!UjZ`;^xKVUi+Kz`AQ<eXDn!^pn4b=^bIZ2k&4VN21H$qaN
zTM%w|gm?utL7yNix;VLzF5E~cejx$DX_E?t6Z+Fain>uuNO8duiPT4(Z4W6a(dS#6
z9JFWL$Z+%EI?5z$%DPc5!OOc*L3l;Mw1l26WKs2q<whp^TO>VCl!zPEghUgTF*ho?
zQQ3_uq8yrJFLQ>f5`A@a;b+~*5?<Yn8i`!PzbjNzc(!0pLeF)h4*wA#CDd}`Iniq;
zQtJpAIJr=LHyXI{Nl|=S6wkZyf*YOv=;B91HyXKdRm1NZ8oTkL8@If;?L`wen!1tf
zL4FUKxzXH>`ED$5qlFtS-5BY{=WfK^XyryPH+sAAk{hkv=;X#5ZnSZuts5QOc-4(|
zZhSW{xxL`aZe08@ZRH<U^DWU=Smu`KFV!q6uSsgzN72{am^?3;N=G_R>CDxSqDLM@
z-*h9pMf7bq-U{V)cB6|M16xG9y3u_{DoHnqz9q<L?XA)7ZuD@2B{SEEzE)2+?mUc^
zDj4g-&EJgyw3O6)!_9Zyc+ZW#ZqV#-y{i4(7`MorzrfMojdeY&tw-X-K~is#t<k}5
zyiZTw8fExE$R~lk58e1k_{S{7jX{WglCb&IjUfp>)Qw>YKHQDZg#Ugd&Z1aI*{#tp
z+!*D?S8hynV>FFZ(iz6NF-G`U!E4{7KGDB)W4tIc<~k+_Y0%dUHL@nT@wFS@aE{7E
z82y%`>c%uTrgK!?_}&c;<`h<aFY@z$89&Gfx2$0$Z;4Lj^yTLM@OtI6jn!wkG1HAX
zZp?Lq(OGWP{nVW8hVi{w95Hr~qpH-g7MkWfHyYNrI7f#cM;E&BqZ_;3*yF~ZtIb7j
zY;<Fj8;jjo;>J=pmbtNt!|uj%H-1}f{_MsIAwLQ3D4VrXNRB&`*`v=^y;LN&+Kn|L
zu6JXt8^3Z=r0{1iX3&O#HpDe`tPNZy6-<V2j#``D*g_Xwle|+#=AC!Vt!`{{W9ysd
zcJ4M@4rY|RP?Z9|ZYePLr^xl^%w2BmT3(o~+Uv$Xt_3%KXT5IhcjKrV$J{vJ#zB&^
z<{=i<JX#|?v)f;3RnKG`=8(E^u1WzWmG1B0GYU9C$K5#T#wpf5$vh#*#}}~h)7<fD
zm}jJ%5eF^uv&<_Z`FS@kB=|))E+zP7H?9b0y)^rSBjCn8H}1P}&5i4B+;-zHE~RZ5
zH@I@Sv24p=xG7}(j_M~DIvBm<#@}M|kLcgeaxgH<U5S3zGD@2VvK}9~@t+$H-T0R~
z-d>Zd<_B?6uGz=j^F8)b%ICqW8#5X9Wn0_VM_P5NT)=~Z9`yC1pBGPgP{@N~9u)VW
zum@k=&rm#2g`^0kdQilJnOh4uB<eY7Klj7wfy)D*2k^k{`Cl)*9<co$iCXiMH6c%W
z#0Kjg1Uv|eXn4?jTZW%`kH(o45-}{uD6<q5URhF0c<?l%9#r=5$Dj0)9+dT<oCl>m
zn6$>)+14!W!80C|@qmkn22?J7X_fb&f(NDtmIoCjBlQdqh-n_Ai$deR$D?)DCflMj
zJ=24q_ok9W5~)!kF+tW<#e=FIT=L+u2h}`y)`LMFyzfDl2h~03=D}MY)bQB9<Tn<q
z=|Q#!IUeLnw1EeCLTFG&NG-wVJg6;X&D-{480{a@C0fse`a-DO=~R&Tyaz8Nl!ihY
zaf&7BMGu;I(3G3M2QPcjUQ(M2z9iVfgO)<#f-J3-2b;J3?_NV|588;{Hj&y+2%r7(
ziU%Epzez_*q;~Y+HQ}!(l-#~aorJ%UP(H1f!dg0e&_$H43BCBZl(!T79S^!Ecn=SH
z3hyP@Td+?e^-%4kcN6?QdT)aF^Ps=*0Uit#^7rdWX(yr_mJd7_?BQ=0SmeQnlJunq
z<30GugO5G<M3m12+0IWr7$SVA;IM=~+=E*!{x?b^JQ(T0=aTe=2V;bcN?4BeV7QFu
z*n~39gX6wj7CwP%$Aj4keWC}GJ@{UtlRWrZ$Tx!DCTzarGHm(3dVla>st3~~X^P<R
zhxVP&>B9N&r5QqI3R0iN-buZ4M46k==Xo$+_=1G8kSlA4UCUw*mUwVT^rapw^I)R~
zn><*auv|;R1tQTEg1-o^6kH{kG0vXx)gG*oC^>zM_^Su&gsd0bkVsv=!v4d{X0A#P
zc6qQRp>OqIoAB)kWrqh_2Us-Tolt)BV2|*<g8LHse_iaGW&0(1z=MMc{n0+hVc|zS
zI4a~A=j&m<Q=B7-o=8}p^x#B~A}r*z2WLDuEBblCa|xSDy^35&@QXrfUCh4X!Br1Z
zyh!!hz5d;U2Od21;13V}6q{=v{3YbN;0-}q-lUHSznxIp6tPF<jzs?!{73Mv2ls^B
z7i@CWzD-=Nn6-I(^j}dPdH7FQ{(NCQ_Mm_?BcB&NYb7NKPZrEC$czK8+GACap8}#3
z5-glZr9T((!r?^+Q4}v!FHA2iFSt`VMGSi3^1?0L;|09Xz3@s@6Z8qPmNyC|83~?U
zHp`#j0WVsOD%_5{w-;eAii%#+i&8?0c~M+QiG=;rY=Eq?(q25{MMcre2$mBpo3Ok!
zB&mFYR}j)ghAT~Yx)&LV)XHDvWqJ|u;(0G#@FMEP>}}CpFY>&Ic~QxW%3f3v<C<Pn
zP2|e*qFRDK>&5Gjv)Rq+qSQ#}ZydL>h36y`?kBYpysnVvyr?atPC}=**Arepp)?Tk
zv7XdWNK-GGdC^FCW5E{%n+UQQH)<y}7v9Q?m%M0^&|3<L3v%{b3u!0VMzF0QOSt}K
z(#yizCzMybIC3eENw0eG8vE--M=!d0@s<~z5;k3hyy3;0LOKg}Nu=JKnslX~?br-&
zd(k_gclV-)@ScLb5_;!s+qjQJ-|^yIA@3zpxqI~YVt^M*yjbeRKraS)@x2#6c=5g$
zA9yj+i_g6n?8S%l*y83e!H)z#_2Oe8p9nJbQFm*I7el?+@O0LpJ0_9ha4$adVno8`
z{HHl1OU9^w;l(H~#(Ocri_u<;@nW18r-D}AbaSj1+h(SaHz{eox6mZ{(hC+i<O}O7
zDd!t6zV%|F7n4N)T5A04Xq-0p{>=T(i@=wulM^+v83$jqm^8(Usb0(%onL>Zc`?(A
zSzbK2kvZLq8D8wzVt;$$6(GZGFXnnNWo<H*Ib2EwW4sQW$By*1_@#i+1yasJFMjlb
z4fcJRy2y*gUa-MzHhV!_=EZU^PIz&W1MbDoUhMQ@mlrF%Sn0*DUaa$Cl^4Hw?W>5j
zf~&dqw?)?o=R@K6Y`u!7qFhQeSkG>9WW3n!#YQhSdF@C1Z52yqVc6`&7Ri2Zs~z=D
zNF7ql+94~E$_G6y+VdfPyS>=s#Q`r4dhz16=w2`Cwv7HJxX%kdt*%c_ZswTe{gTS(
z1RnC@F#XnxqujnuL|a_V$4i<~OOl@u@?)}}9QQ&yYchJui_>0Q@#3l%XS_J;<r^m>
zm%ONcHhRvB^Ilw_cNL5|&P3IxVi&!*zdrM5sn~+@)rx&!QoQU%&3DbYN29;90ktF7
zytppp4=?@{!sjJYXUlJRanlRd$V=`U%T4xT*7oRM;@d$DAq{uD_}hzrL{T;S1Ldw4
z_gJGS4pANmf9S=(UOeK!PR=N(+4!IE$AXOJ6ER6cvXK0O1qAs`fd)?rFC@rlVGSt>
zo~ogU@F(_))cetw|69dQ4K7jGJhu>!pjU&I(0xK6s0$hz{6YeP%*$qkH5An_P{SY%
z#WWPxP)|dB4J9-@t)ZrdYz-wfl+s{our!p`@Qj9X8p>-ZqhabHtE`4m&7)^pn>&vt
zKfwwbDrz84*U+|9W}nf?#5CbW3&h?Xotz;VFMe%iYKUm4s-c>OsD_y2sw`MZ?B5xk
zJZrGU>{T@U_j59{GZ#yKRzr0$U{V&lP#{LK_egRL5t$`N!`6sdTaYAIL!O3O8lDs7
z2~vMh$*dzv-Gn8R8fbW4!y6jj)bN6ah8kYd&{{(yjgJV6HPz5eL#kpn*6^Yb@+LxZ
zio}|0Xf@typ`oRQ3kS?ej#}Ne7Kk(BkXS3h+oiKQ*2sL|$Z5l-YG|+F6^?vL%w0CK
zorae+umu0B=JzSF*RnD@Xn0jahtI5z8eS8#twUn3lV@epp5=5K8l!P14d3Nu&L|w~
ztf7mBo*H^-=*lj5B5!NxuJM0NW;YFQY53^l=*`yFiSubn6O+j9^pH-~EuYm}Lmv%%
zwNigk-qFxk<Fg&`u7>wGq3_woQ-<dBe4MrBS~9!*%{<4SEv$Q+%>mLvroOM?0}ZP+
ztkE!7!-pECX_(GRHGHh$TQ*X|CmKH0Fj~VH&WOA45Di~w*cUS&UyBaaFibpixZr0A
zFCC#_r0~xZ%C2Eaqa+tI-gIY<Wi3bJ<1~CJq{}q>dU(8shl{L_Dwz``*H?lQ1t$r9
zE%=Qf?Tgk=G76iM+43^h4;sGL@atfUj`Z?4GkH+j6b;8JnNzuzXXbRQ6Pv*y(y&Cs
zQVp{-<UD81)i6)PYz>8$q_N&P8rY*}=bJ2TzJ`Swe$=o)Ls})XNo6zrjJZeyN&Fjg
zv9z<0W%G^Kqy465EMt>2{LIoK=5kKK^o(XfYlViDEMbuKiv||EO2dQM)+i~e-5RUJ
zI@54R*0RkSj%YZlVV#Ec8g^^gqhSMg5)IolY?tP365OI;vk*4;g45bcZ!cppu*@BF
z>>JUY8Xp~Ive#8Bo4YhPb#vwwv&1cPFGpU(L21TsV%cS|bwI;@4NYBD9R;mVH)U`H
zN>?!tal5Eua&QiFEjTUz_2`g#v11xebAf9(uHl3RDkn9Z5<(tZ;5czGgLsyHvMJ+&
zhKm}`X*kaTtZcG*9JDs`9Vzo1mo!|~a76>ht<}KTYn9ANtu0R3%1Y)R8vdlu>zJzJ
znuhBf6W}OtL&HsW6X*=w(r}v_8j#5sWO3Wqu+xWKKK!lW9}Sg!sO-aC4fnXy`uG>`
z*nJK-7v|8I(}$BC%!eBO)v!u8$t%oAdn8`;A17TyJ|B{Nc*=)DJ|z3>PmqFw`2`CI
zQrt4nKD@VWl)a@F7SZ8DijdTVO%We%-2LCTQN;%}p|9DQ$^)5fjN1o~4>ebsULX4Y
zkW<bF%?F<k@Im*Xq}UsYT=j3|^9v975cDA=yr>VwgoFi`B&8Skp@a`lOO$P^`(|vT
zT)>ksTFS?V-rJpOUq0&@A!P*1ChU)XYxk(U4;6f<C}NrqnL^S9GXzaRT3Q^df3rv!
zB0fY#k0nz3eps-I4^@45$A@=)sOH17KD_BeXCJbB_C8tNhZ@Y4YHx!zeaQBqu@5gw
z_8cE-`%p)Cu3(-IwS+t;$QoDgOeNO!;dxQ&3Dy^Ekg(Z0+x`{k1s@uU(kP*qDxTED
zho(NB(Ly^BoB7Zxk=opc775<chj@ZF8WMX+cx%Bn34QPNd@uXZUZPj4*kkyL53l*~
zx(^*hd^KVD;;z(=!ru_=l+aII&&R-wU3|7@cJtvaAG)%Td(m&hd7Rm|eQ0Kw-NnA$
z-6(mFMBbi4dI|RSp-)0zcRk;GbS)pg_2D}o`icGxo3z{N@52Be2Kq3_htGZZ!iV=I
z^&=lX_VJO$wv!AN{7{h5|E}4`wm*^Ra34MuGQ@|WKFnQZCk+#2;=O2@UiJ?-pZPE%
zk$0pJ>Z62wB{<s0<2o2Ce7qoYjT7>v;3wh8goMt%Oib`eK71`aCqrSDe~V?6dc&IR
z!}mTgOS!wzAAFeN!$Kc^^kJ&(0J9T$rwN(v!wexa6Z$N!n)`OM8RoD@qR$hYpRidV
zB>AejNXRN5e(_<k4@)GvRPbjXmI+xdXcx#unqsfM6$xdfkcq33SNpI=_$I-%KCBn=
zt01$i6LMl#>INYj6MC0h`8NBo#fPn;Y!}>?NZsyA+L7RMo=@8C!yX@w`f$vLy*{k{
zHF>`e2Yk4voBMqDO$hn@!4{X{K_3qJa9EaSmFm^GgB_vLIYyTwH)mPLeK;Y7X8<RC
zIOW3wA0GNJ?akO}A1?WD*@rWU+RyrMPWXAj3xXFDsnd6*Uh&~78{oqarL%rd=(m0N
zL-?OQT=U_2Lcb~G22seZgig==i+kyM`<IzJ{1g!VpG4|iIzw-J{O?OGy!v8Y|N8KV
zeFOr)e`3ieuB8HxeaHtS!S;U!zQu*_<Rsyn7>NZEdWBu~&ckPu7ZQcf>|~VN9g%@g
zanMBJzjzfPD&Q8vR42f@;!iB;1H2(X&fkHaDBPDw_#r@qpbi*`)K^QV27!=7D*|C5
zPYV_mEGAf7u!JDX;mDK(N&%%sDJS@hV3~wXS@020_9!uw2P!1=6SBv$Dd`D?pL(Wn
zuC={}83Cd|1K@ce22=uS05yTi0PiU<JPT9-ssh!3;@?@s3Uy-CJ#}IvSz=b5cSS_Z
z26BK}z;nRdZ3P%|fjr?;cx&%bluB)&4p0xM4^TP0KAB=&;dz5%<koPDB9mSK8UoFM
z77S$~jes-vqfLOuz>C0Z?ij`7X3+}n81<&W&YNa4;O?m?qb-3r&>naNXa&3kv<2D$
zk$<DD!7mY!HbAdq(VQ~X7aWV0zML^&jrB5c_GsMytXc7X)aS}wG}G(=bObs9<gW_8
z2D~n0SDr<2Y8`us-k^J&Ga0V#Ezkw%3d~`bfo{NCz-V9$@HWsL_z?IA=mGTPFuH0D
z5bOoKC!{yfN60(CyF!|2xin*VLi&o>59psTh!m?eP{cuk?+bn)$XtVgvgKnWH2WAB
z3Jl{26sz?K@Trg?f-i_cw@1<8z!$(M;4@$ZFp^z(6#ZNV|Fzn&&$V0*_>2vy%WKEF
zl*wBE(A>X0bu2Ir_#XHH_!1ZoOai`U$33wLtYuTiSFkU(d1W|JqP&cx*u6s5H^6tm
zWDZM(tZxM$AB|7D9_2+Z(KE@M0!#&F0sIy)U}EYtU<Rk7PK?*I(^*Svix;0WVPBdu
z@H%-my>z0<t8`w(&I4AQiY@{c3z-ir0Ct~_GAv{k;qyl3FuH^<C;&D98-ZoOa$pUx
zmJ0;<nSbKHAN>XPJ-8LXN?;W?oG$i_vxeu)2WQOvMJ$rl^wM)CZ<cX&@V45oz<O49
zKI5GMIqLwr6P=B&Lb3_i3~U3o16T7b+H3(1)Q+_~oVQhK8Fwto!gtV<fnB1|KW|*N
zRu-{#i|g(Y+zadz@*8ka2)%m0kOP9O>yVJci6{+@0mp$?b-bqI1UG-~2|6-#oB~es
zXKWpsjx$^W-1Ky)I?e&-xvA>-{NLyWHmR*y`%#p55x4|g2Ce}4b@1`LSApNT?tpv1
zAF{XH5d2f{njrV3>%h5R>?@6%{0acv7X6OkUkRJO3sU}0@PB}>YRk^gJ@Z(c;jxeh
zz{7;{FYt&T0c^}4xip|XF`sVRCkZAC(tt_<X)POEP{&gVUPwq`!4yI6KkRZ59S$7@
z2gYt+Nv6X)b!=^CxddAsi*oAS!YO)$aLj!=mi=g!(otFmbm%$^9e&;ZEC}fc==LTS
z)WNmGC&6+-F_7mCh=p|&6|-W3v@b5CgpQ|$luYPDt|mXDql}IUI{(mN@4#hsl+!_P
z?B}e-O{~0*1D7p^tVUMOlH`gyh-tdL*YWW;rVdL-Z5?%VWa^0MsHWpt9Z?-I9aTA2
zjjT$#J?sosbW~38>c`?8Hl!|G;`nx30eWMWj_NvU>d4knL&wg_1-{6R^|@&7+McRq
znK?R~cg$R!|I>^V_QrmhW#;LqrDMmDsJYB~PRHZM=Ebv7VqG2ebhOsdMn`=e4Rkcs
z(M-qlI$qGxP)8#+ta#R^#j`4IE70;-oV>A)7eyrRS2(wc@EfDD8Er1Sg^rd|0t=xS
z*U?JHOFEyooXhC9oo$>vD!Z!`+g8WRI@;@K$G&$q+nkG5-B#cg9h>{bcAblM;1JDE
zAx}OR9lSdEbsgQuq<x~}Qym?3bkgyLjyGAdj{Z72Gj*fYLq|_ev5u}fy6Jd}UxYu;
z>8^wSp?jMi6*j*bn|)+-gwg!YY8~Fp=vg4vOGh6a@920x&+N_aJ7WD#nD6Sy`#i0$
zMBfvBshmmW(B<5xO2syBv<B!HtmC(2bD)kv^ygBs_jR~NMLy6`UXM&lvB<Y~u|CxC
zkz{AFAL|%!*~;l+5r^m)s$-0fv24}-=rA24bUaFm4cG0x>oX48vFOMXR<GpPNbUeS
zz7XFYrDL>?PmUzh&p$qr%nwR(V)rT5IJ%0Ci8{Wdt9LiY3zAIWuuQS|;W$Z@Z*_d9
z<7?sH2-4+fmgI;{*73cLAK0En4mvO!aAtFXCpb;VbR8cU7;In${Yr<=u&=9T>6oqK
zx{ez<=IEHKW0#KII_Bw^uj5x8>)0I~3w12#3exeTjzv0_vM)ORahr>E@TD{Sftq}Y
zC>vK=d;tw#CG*kOCT~XntYZcHrCDnP`8Jl7I+h@|ic$F;`xhOng|h@((X6#kk~C|*
zjtz7q9b0s46mb(>y|&qCW*(1%uwT3l-RoF<tB&pV@{Dg2<ShVlh8+^!Dai9DdvxsO
zUajM_j(wbW9fx!r*0Em)UsuE~9FQsky{v=WOcrMFz5vA|I*#f%&JCY~5YIlw<#sa4
z+sX`S)6A1>*h-6mZ`EOwNX~Fq(Q!q`Rqp>f&g;0K<D%r^ZGFDOs7bX<-jZM=`D&X>
zIxg$>0RWyBApXvcsF-z)%X3?_@nrK4E|Y%dpB(?%MMw%8)p(ENrjA?OR1G|3;I@vx
zbo|HNK*t>&e{&Pl@sP7XXMQ$%Pse>7clH0hv4~^KTPnf+Cg0Ih_g}jW|I%IQ5<M-x
zBZ+U@IjH82;m&U$$v^?a){_n7H&E{g58+!J3f^wus2=WGnf4t|Mhh7zY(O>O6yp>@
zhk;ZfZOWNNge=asSd=214Ip<JV5(OXw*k-plcWi!&G1<%x&gyLO#|5m{00IB${VO)
zAZXzFyo}-oN*D+U4;v^-n`LRmnB}+ReD7N1ca6x?2LD`%G6tyZotII{z%#U5k>SxJ
zrG@<1&Fp(MnMq|0eD^Rq^>?eB0g9uOGb<WMGf>GuWdrF3G7K;^V!$+D8OW6A{{5*G
zS$O<#;U_$5AjSdQpL)w{Qej0^3{*8Rw4Rw|pqha_8`GYZ=(;h5Xft%FgGzM+H4H2~
z7N=RmUz00U$jUL0Yv3gVtqtTEsAZs`fkp<NGf>+=T~3ODbG0&Cx~w{eeGo3EfOVyL
zw7!86`_dX1c%Gumdhfe5)TqicY^w%GUNG!4dpuy)*x-YM(A+=^15FJ4wKw&pfmSmE
zO<CZEwBiG;o-T_=?0C+tB^xl%YGv3*+7{O};|7ioN$Wk(8un6kDs2q3HPG8Y9|P?S
zylmiY1KkbmKNfFqpo4)|4LnYcy<%W)ZS!Q6s;?P%-LOB$-!RZoNGHQSB}gTuMU<^Q
z!>7QB-dV7VU{^ufbTjZ)g3sBXw6d+E@t~w026`H>o9ePyS1;)!$vXz#HPFvMe*+s!
zn(wi{`_lS~<&)Euhh8yXc$hgrIylI{Kr#D!iG8&1eGxfUJV5xNfsYKnEd@pW_}IWF
z22L6{W#Cf-Lkz4n@GGa%z%T<7418r^xPi|Mj508qOGB+X!ocT-eIRqBVc&A)X}aBy
zB0P=xg@IKqqC9jrhBGxRXPkjA4Gj1(V=ULguC%FhtMgpzcmp)%+0?IE*av7Q8kl6@
z2N{8X)!5etzNN<+_^)5=8+vJa7RhA8K6(2+J!ES%xt7Hfr@VE`0y%n9=&lB)8JNz^
z-@q>hF5gL;$<5!u5-D@G-~z!pf^!Au39^Lw>>%tb$%Uf)D7Yw*x>yMBCNCAT%)oLI
z;VT7y7G(Anbf-G@nVeM#rT*-c)zY3df;<w;wyiU;-oP#nf`JX39RphoY?Z;>WMH#_
z_nwb#-E5y6W~I>!ncF03yMY~CZq677^Tdn{_I;;;vwuf8fW$op_8K^7;E;iR^gR~X
zFn7O9&Fv{^3pPjJ84+Ra2e{<>$9fFRKFl%=9HZNFTDREM_1F?UYJiw!n%%!QPZ(%W
z&EnBn8XsyAJ#FBOfqxA=Vx?S725uO*Y2dtp3kH5S@CPTz0O#crdn#R6`8e9oZCx>N
zl`FTeT@-u7mb1D)=|ZJ5OSXt!liJyZ0nH-UIeN_^oaI~G{0-bSaF0vaz#Rksu$IkH
zb~&QP=xl$}jc;eNuE9-AM(-QoP5cMk7HU}ZLn=I${80MNk^GNK)qukf#gBY`B>7R$
zkEi@d_9MR^1^jkP*rZ1fBUAseYv-Ba-)>rk{OI%`n&L;Q9~_Xve%t+w3z_T)$BMlu
z;s?o_!*WzVoPN-6{eIi?U4Glo4L{r@qId;$LCp`J5dJttV+NifC-MYB*coHv1AYXh
z>X08Cz`b`P93`GlF6KvZKkE5W-;WZ0JnctiKdSgq(vMPpSbn@vH&)t@XZ)z(M@2u%
z__1b)RnBkUntw`5FYCwKH8Wo+mqlJ)I7ylx=^P3zJ;RU53sOiJ`c6nS{opnEu%9FK
zo{DAq5usV#SX8i*A2A`9=4B69kxjkgyp*bbRP&>zAK899>qob)m8%P834YWyKNW@=
z5}m%OK#m`|e*7KGs_jRfh_(E9PKc{stVi6UvAb*KeO)To@uRLE8;0eSDw;K6Y|4*a
zDmU=+-3MsxM;msThyVR(?neth8u`)KkEVWP{+9Y+mQ`|7;TQdA;>TM`tWzk9_+cn(
zQZTET)XTAI=|^~?*=w%#k{@wDW?isa`EeuJeEw$IYv;`!Ym#d%H6J~Qw)LYUhxc!5
z)7Ap*{CL@qpZ1#V1xa2J(!q~cg}f&Cx?scEX*B5M$M0oLhBy4+AA;WW<D(%a|GU(c
zo%Q2nkSApD7N^6H{s9aKpt~PE=uQE+0_f>SFF!W>vBi(xe)REUh95Kic*l=-{TT1Z
z1V7&Mqpu&s{21;>KNjN0hpfVn0W>=r8R*9#ArmwQqwo9ifggiKY1S);%7jN&sq&d5
zAN%o%A4C0Ed^-9mOMYban3pm{$em+x+E8H#4aoV-j}d;1@?*4=Gm<u%;|t-R3ukG}
zOB^HOICkfFoYApTnsP6f{7bs%f^3qnI4pjA>&JI&bEY}Tk55(W8$Z4la(jI;MJn}!
z=43y<=S*EUr;6ndeoXP>&crk-oVB$R`A;Hq8hzuYtxWf$>}m6G18bHavt<g__%X+i
zxqdA5W0@cG{8->JfAnLKAM?pscuMSxO{vz9*g`-5^k?>{l-a#-tpBgci~U$aAE=R;
zzM+8nOxC><g_m=Fxp=uo{P>x!xYAtVw{QCMmOc4OKL*ZpFuM0q7H_-rya91FC$3P8
zw*u)2YyJ4uk9B^m_v67NTiGaNgJ9Fm1vW{8-}=kqKdQF+v5iqb{_tbFA3OXw;>S@x
zcKWf)kE&PAgMRGx^RMOUd;Qoa${zM*zQv^9MDLngbwB-NTLIcoJizt)Fq*PBjr@?<
zAEw)EDR8q~X7etUkNI)dk8^$;_v3`L=cFH}>2HNH*`8C}yJn}c!Dsw9m}}0<Z=L+k
zJnzQ^iC$*&_9b8R<F`VYm;C%|ZEXJe0^}9zSXV^6N`L55nSn`v`f-hWrXP=3%WUhq
zAGiJZiwlsO+d7lVP0?@pk#RiED8n5;?)q_$>sOMf{KJJg$$VmP-;akJB~Ps7pVk8*
z%VH*r>i?(ppC6Ceo&X95kS~Cw015<9FaWD$EIEMu0qp+E{PuCQy)RZV5LvRu;?E9G
z1#tISbF43xe^p_IlmJo#Py!fH(&Uc-G%gZ=BY>}yVna*C#+-}p+*r7XFQx`?<XUpQ
z<8gNYo&c%^@N59y0JH#}37|~C9!6gPMFS`nu<uOh0T=;$Ti{>eLIL;#SYnwBfdGQS
zIZcdmrosVm)2Li2vv|PXPf7;B`Qrc1N(At<D0R1(ESzGg07^?LIS0IK!1l4U0MY{}
zC!Epp0ecgx5J1HMIIZ-SrHienHd`)lW<~&J02k((C+??N0b~Yn@TpiNfGPp3`_7C?
zluArUCBe#q6ZR#4xhSn_06UhYwSAP46+m?k!j3{O2T&t`ngP@cpnd?^0ptY0ZM?Rm
za-;scZY(!|yZ~wi@LT}h>c#lEK#?2%qmo&5*qyN{bp!Y_l+~w>Y3xpI5Ww>RGz*}4
z051g4Fn|}iTh@zBRbq_-xZS1l1b^Yi0TkL^fZ`RsYLft(2Ed~DnKG?J7C%#3u$Hcs
zTL;i4fR@7Jf)rZ?FuqIWmn6zIv<)Cb>TMT5-<sKM0L6MEQrZXbN&p=Kcr}1`IIRJ^
z7Qn*3v5o<B;*6KcdOd)S+X{5rR$$JN=o<la4xmeb@B72A$I_@gC=pxyoYj@JaQp+<
zIw)GJRnFT1gugP)r(=x|Tiu2C5bP<)q+UXL2hb;>94?*t9-|jcx@A9c&b|`;enT=v
z9=#hFz@PwpK_H0t1Nb0-RRR1Gz~BHr3}A8q-v{tf03Qc1CV;Wx&z}S^EP&ww^lxf?
zDrF7{U?{tDJpP_HHnM1SUKo59z~=!B*_}Fq-m=VM7|D4*61}}4`HKKX1u$n_ftu?~
zUT=)%bhpZGa3(q~fG_Fl0ZihErDu+pc9L+pO$gvCI>6^C!?R3w^XmY(zH(Qa-v+R;
zc-A)@-UF#r7`~IFS9eD)oQeJrz}x`l1u!LmsR2x*)1HYk%n~wPaE9Q_0LGoQlV&Gu
z<^({I%KQKpa6@?4{F&27x8$M=U}*r?Pe&I8>~oBZ1%KBZ<W+PB^<`W;A}$x)<uEC3
z*6bvneq0d%aix^`uxX*y0j#0x2Kc^0tmW(na43MoTuK3~=UnLKZvkvzHv`xiz^(u`
z1+Y1Q?HtSi-rr+xp>J>i??$seGYhOTX}?W!@yq~k%r(ri&$pENBwBx#wL5^l0qhI#
z-Dj~q0Z?SF501xq`h^c7<BeVB-On}Xvkq{{WSIxK7-v}|M*=t+!07<aNXf?nI3Z-}
z@%VAJWPyWc37Gd}0H;JJ|0*f-Yyjt&Yp``Cfb$&5fPJj)QUJMgQ%EjSIbbsEzn4qA
z96*c5StM6!Hq88;TNyp!jo8uNG2Y52xgNlc0Fr~qAH>Z7ZUyi#fPcA`1Ne)4YsS3*
z?r_ii!2E~XasYn|FLpLc<;vRR|BLszzXjl4oy;u6ch5#2ahE<5Wylw_$$tSn7UgV-
zSdR-9l_b%N?MyBZM8P235`8L&LL@;b5-l7AZ^{mNCM!jvYfITDU5f<mUw|3by_l;8
z;S9nRv|IS3F>DnZX}9xi)DwhPlC<Felqb3#gb~EtAm#<(4<Zo6h#*D=5ey;}L^oa*
z1`!UTXb=s8c%CH$Q9Ouf5V0Ui1o3nb5#q#HNkLw+RuEE3uyhd52%$k4A!UOomr%+F
zq29`1QpJRlCL~=jBM4K7l}ODDVpX0=`@YBRTnsM{EnF#x%0W~KqN<qH2%?%0UagJ%
zA&oZA29cF0p?VMlFWV*56eT-|oFH-&skMX1OYmAjJeT0iRY!PT!Fmb3J~y<rc4;pJ
z(J+XYf@m#C?|fi360&JTtZ@)83U3lbQz6ZQXfA{qj}^^qk>D+Zh$ncfAntC;rooXl
z=A8O=6>WlO8$`PxUKX2<g6#!gN#yDv<kcWvODL}gakW$?vomxG;tkQ?Or&-e(nYXq
zkdH^UE#D5Jdk}+z_%MhbLG%pbogm%~qE`^T>3D~-`vj3)H)YHXtHp=rrw6kcK4@<;
zycfg(4sQ^BgJ86uAW47b+GUXp;^r?Ud>~0l7xEaWGyHNq{!tJg2k}`DU6OM@3F6Zr
zh6OQPEQbU!RLHG^*+nZ^tdUipIvy`B*{_VZ73TUph@af%hWeJ{YUGO`Mg=iCh%rI@
z5X6)q#<GJ!ObFtuAifOZ-tl;)liA}bMx&k+@h_}s`ic15SF$GtF-gSIL-Jlc5iegf
z_v;|O34(;-TOr>GP8R%LjF~hwh-pF03SxE;)45I?MP~#tQwWQ?`bsvDwNRh)|BF=S
z2eBZC<!pZtzNY3g{nHi(@naB+f;jYD`r;s#aK+t9DOs=ZQo5Ws`_HF~ER&?=pXE{9
z-#qW<AXWsiCWy5`tPI-kcU~>HO7IuKO+VZ3dhT{2PUJ&he+^<2cMq;dK0R1)z2Jr*
zHVP?Pwic7NuwfOm8IA?9HHd9NY!9MRhlq78^Jow|g4h|vt{`66T7ADD$?hQbB>3JS
z_9gglLDU$VLj#5bK^#ozhk`hq;76o78nAp;dR%mp6H;ldX!hwK&TuCTqevKMgE+?l
z4`EIS=YzOF4-8>o2p5C6#2qYzPzaZUxDrH42&o}l4dVA89tQDm5Pt;mXApO|83u7J
zi0j<*gSf>lcR=Ju5EoCS)jyV@k4x(^+-f>Mayy7$-j2=~oc8|ejKAo{t21&+oBwc;
za`v|rT3Iyu<~xz9!(x1?=)E9__k(yKgnXGl?-6&`ZE5*JNDAS<ARf~(e#jW!&-&~{
ze8!1*atQfDC=f!y5E_1MQg6MkTDL~lU+c`e-=?u8PlfEab`}yW9KzW3QAUe|;0R&;
ziMSSm5`r2+zh2p%5U%xzIYT(sBj#qY3!|<O-kKUAS&&|xqF2m5xtB92FU1$)&1S5d
z8qq^ALhy(1VO|O?Q~oMU5|AWDTXaqihfp+xS|L0a!hsX<Vj;X8&8iqeafy}?d|HsH
zB||6`!u1pJq?7T|Av_a88A&QDSWeJ58MjWx%L}g{SodT+Erj$CTAz$(gpgG!D>H;1
zC*x)aRtQ5*#u>gj8IMR(R4^7or4TBIP$h)wA=D6Y>B)H25UPcsMYCAQvlK<&!J?|!
z3Pa5hvO~xT;q1xy6D3z{dQXq$388rJWW06=bvPp-Gzy{R=DfNg)C-})``M0DaTZ=b
zga#ozFG~IWxeW_N9>;QD2w`5e2yHswtkO7yCLxe8ycj}>Q}Jvw(lmr-Av6!6MF{Oe
zc$u@KM_YzaEUkLmQ}NiTcsvARs}Nq|PzY}mLR%pf3P+h#Ps}R57HuCwmk_#gmeZ=g
z5<-U%D83rPYeHTR;SC`@PQ^Qh&`CHA!W(nn6y7<ZRJoedErc5{<@5@nx3uT25cc1!
z@^%Q_LzrwvdI*yA6v76R_X*)$iQZhF`;L%<FXp@#!pEoLed%MO^k)aB+r~>a<`M^m
z@O}tm=)fU-5W?V){Y;h7f*&%Y5Go%D;j7y}3E|TaNQQ(kDj^OPWmpKqg?uJRn-L+5
z6#jV#UkLedN*cpw8Ocm#u}?}K#|09IejmaQA$%#E(eWWnNbs*hm?(Ub;MWQLn-IPg
z{+;0Dg#J;1$mw0t{ud%sM42i$Es;81$PB@mA<PoeV`*VlI+v~z!Ub+tA<Pe9K?uKc
z#f7kt%i%yqp-pN2!`6=>EDB+92ung(5#lWvEM@af#g~WhQwT@%MVAR~>XAGDRGiVD
zLs)w%zF+t%N%|#()gfFGWernB{9B^ed*srXxwh>~TOY#K5VnQz^^X}FLf9C>rVutu
zbc-PMkvpr7xR<{8YWeLU?BH~Sa43YGA?ylaZwUKBD117;o6F~P{Bob%lBeT)LLl-r
z&@E5Ld!3H|MyCql=a;Pmf)pzaHW@t}!V#|YjcLaPk8<y#la#fn+?`su^_q+fkCnMP
z^F#<I#o$y3r$aa+{2aG^A!kE4KEQr~GQ$&PpR3v>ZvG*@^%z&#$UbT3ZkfD1Xg?<M
zyY%Rv5blQXM~L6(F*$$a8kax_H$(8QNV_fy3B#=r{-%9_$n6mRqRpPd6z_=Hf9a7Y
zHm|MCycfcKuEa13gz+GRhur5wcuZG(EBe{#_`e}M;s;R7^mmOi%sL&<7Y0dk801O9
z*PV`2p&6BeVLTPa(BWo&BS*au?LItGD2&2kG#MUgaxIb)#uIVM?@>n>N*H6p7)vn>
zXBc(Es27GS40jl%!YCca{sGyZFlL<04u#<jLkq(fMtTYRS7<{B&v!Da3pQIB^@n*0
zlob#R3ZDEWk4iX<qG1#Z<Jjpq!_z{FhfzWTZ#F&AOG=ddnJ~(P@ywZcr7+5dQSRNe
z@?lg6<J+5Q<-%CF-z2FRMp_t=Fp>|L>0zvGn{5h`WQ1`qoI_%TktzJ<={TcB&e#|Y
zBPN!?D;b$Zb1H{XC5)<J9tf<)@LU+x!gw}}ED6;`pD`fsNooy=))dSZ%n{5L%nPHI
z5E{3iVAT$zjugTuOL#oqtRF^$FdBu?n7#No?RoaDjrGyZG+ws7z%eOcHWaK;&OCo0
z?Zq%&3*&XpT^LQnXck8EFj|MvCX5zgv}6}P&TbV(-kEsYGx2xN#N%O%V+TLZW_XF^
zpNTWtHjH**yduUghtWQaT?w03b1mj&v_qJ0ZwI4K^0KIoVRQ<kOBh|lc!OTiHS&LW
zIt%EyjqdHojuXcYL!aQTq~+C0%MRL!?IaC0+;kggm>XthPD2edGt(PpW^AZo<}}<i
z@LgSh^FK%DIlp=4&edo%n%$MxE81E!v|^p}r%ul4r+Qlx+L_STgnr~VGcG-4jjz4Q
zxGFoab~K?ALuV7Zn9!BECu=v>?yMBwgQ0IRe=p(mX6QqsRKv*J--P2w{R2!GXhP(%
zalsBUVftcUXlv<F968v8A)@V26NU*M&M<;?qzMJP8reR@_(#*+i1Cjx;SYwftm9b8
zA8*10<`Qavijz#3Y{C^2u9`5#gsCP>qrIEpj}G<7;9Wo1zxJR$!-Sb+-U@FrL2j7h
zzo^fmNo&F!6Xu$*hE9qJ^Guj;!r<KgB_=E|VWA0aTc-9o?O$X9>DSh&c_)MxGgFb6
zwxt}u%!K78q&X{0SjoIfIIC%TEXqQ)>r7a0!UhvIa;wUFl9#;=G}<3aRg{qS+kAiQ
zW)rrU@IMo_nsAb)gbCYB*lxlh6AqiO!-SnC?57nelKT91WaO^6T_)@{(bwP;_R#c>
zr0z3eFBfC)M98F#!YKFvH#tbF#~q`1go{VH2^Ev>M1H*!ImX4~CY%sHB|L3{DUy28
zgi9uzG2tvtsz~ZNnv-`T7fd+MMcNmc6!tK8!e1uzx)Zs~t)}q4sFPH6&4lYFv@)Z$
z8GoB_gXTl)Kr=ILnsAHGh#86*Qj-5REgEK|H{*^8cWFB9)$g%>GU2`n4@`Jy!Xp#j
zneg6($8@A7yfopJ2~SP*yj?su;RVO<?;d!*L2nxyAZR<mZ|ErhYZLx4;f)DzsRO5z
z$RVG0K|o5Inm_P?=2A-^ZB+cosg6uFs{UpEY{GvGUrhMU@Rju&D~0{D&<IXvMwHp;
zd|ENaj0{|iHDgBA5c#xaG(#H@-gGCD$&5HN;?2lxMt%;X+AIvY%*ZO7Yz*1W$RV7Z
zX8ioz=y`54^04^>Yd%((kyk`+z7R)Y)X4&76f~od8TeovpqT?qtV>tx62p=SMh`7!
zSk3s&j0R@d%&?nL&x~FLf(|pBW>jIOqRR}Q8GbX|!cooeFl(&3@V#c7xf7u#0W*ST
zB%6_9Mu=+@%}6pMY(@eX3!71lp@?W(l)Am!M{SD>r-YfFVHzZdwvuL)68^$-zUDRP
zezoDJno-7#vRqZ#j0-gbWd0~3E1FS`xx8>H&|&t`DW(!Tm4*M4nI6PxB&=#iH8!i8
z@e4x@5mVEQTFgHSr#8c{myK>m(%6hT40T1!KXbECZGAK75C|HY@xtS8WJb;?FBKD2
ze`97UHeqPWdSI`wrXFf;25Ae{maI?jMB13quxy~68STwja^3&C8EqMe)8CDBpn1|)
z?@g2QslOvL6+4;HnYjyVSJrN#w!0ZU1oxy)GCxIOYS_n&d<%Si&Bhm#`q8=j5bDo5
zfOR12AXcgxY{n45@84t|ZpH{2Lkl7nj5K4E8L|vT#%MFfn9)K)O9_9NF_z}AgnSal
znK9ms8?;=QF~N+9W~?-0l^K7UG0BWMX3RC?;j!RkGp3m_oq38GQ_Z+iIi5DEn%6#g
z2K%#EXR>y>nmXHz>l{E~^URoU#&R=WR*qj_#zHgR9tkcnV-W+Hi_Pd+A)ZXysO?hr
zDfu$GmQ7)Lqzm~gXzij@?UPrVvBr#(W}Gr(tr_dg*lorhGuE52!HlhDY%^mcH{5K-
z7Be<6w``pBxNZ_<qvHSANh@w=-eJa0jwExJ8EI9E%EzB-oJ0-xnz7G}LuMT2nEhrP
z<W>jFpp613EkRnVBW4^m;}{3bEgyf}j1wG2F%(G&3F?@`r)dlehR@UGL)R}e70)u9
zqZ3gmOvQ_4Tr%UT8Q0ACOT=6;<FXmuOh!P=ui^h=0&=d?s{jK9Q0*-<ZkzF+8DD7h
z%(!dDYcu{a<DMD!&3J0YGcy(+3qGLEGdyH{L{q{PZhk!2sb~V#KA|&SA)eql*S=(Z
z!Ad@Dub3$yeov-1X7p>EMB4{CiGtsm@m}!ItEnH&_{8(%Uo$@Qxu&U-He2Wvk1&V7
znvqFDoP=*?d^aPVgeVCaBxID3S}{IaLUP6U7zxzF^b(fxSamXo$)pj8m5|1j21iq>
zcnO&$<dzWXpFmp{3E3oM=VDd~Ys<%z*=|Tm4hgx~%qb%4%}U<FwRwc|0|QtK6$<B<
zP=NX)(GNAFpoBsa{1V;b2%99BC44^?bV`sU$P#Q4svij|tX9@b1;Q2yq_?9&R8_fu
zf}M-R4hduyITmzD^vzqS5^fw0&Nqd12_9yRmCOf&qP-FnHOVI-(HzclG#FhkDIg(8
zJ(LiZP>Q>nAfYe?Fw?;nkx)!RaV{1WBS42!LPG7=DQN?;X?HM*1IQ^U(drtefMhzx
zLSf2~A|a9(M}00Mp{#^j5`LCIO@5T<%P`@}%;hAMmry}MMJ`fpRK{>6<`&0-RQyT8
z{(|8u5~@nLdo);$hD8Eh9h9NuEN=}uxdp;CStk|<6W8XktuNs>3d<P&g-19d;aBP&
zGmSu92|t>`wAGX7gPQ>v3xyj<XhJimkiiWlG-7VdO5Gr{DRVQ{=DbHTsSm9rw5GmE
zxF?~Fgx@91lQ3UGTM6wX43RKYLVF1vB&<0S>?@%oO+1OdY!K=$VbRfGX9-;;Jk1d9
zLMv^?@al5$#I$vjaIJSVK@Se@$x5wyN$4%O4?~_z;eHbOOL!d#50Eg3cQlZ7*~Dlv
zX}^QHNclqrjdgOEgy9lKNEj($s)T70MoAbgVWNaTDJL!d62?oIz^%s8`p-bAv{)k>
z9rcQd(F-O<Q+_Ja_P>eIlO#;$Fshm&;n0yF#gkI)bP2O0%$6`i!b}O&ihK%N$jvFw
z90_yTr-o@c7f4trVTXjB5?W;lFOsla!V2catV`&MW?05LyLU8&t(35eCXa;85>``Z
zB&?UPfo3mVfJcMtXp}O95B7~FrENj)=%&mY*{6fr+&g-Ug#U4In}n?lr}{=yTT%+9
zZMy_&NX{+^yJ?O|I4!|)EVxI)K{{#)dnN26%@p3x{@;C~srCT#vA8htVF^bh92K=&
zV#3EHoRC0poRz?IH*%7=cl4N;Fcr^8I4j|bgsT$HNjOi7fP}v!{9pV92^YET0*<G)
zm(x=9j&4T>6%)QD;W|6FCH&2BQ^GBV8xm-D6hpf+f;pawcO)2nhzZ}9@IXR38BsF+
zJQI8<8PE28F5wY%DLVX^mEZ|YV+nhr!_Qb-oDP!tLc&W4uV`{g_$c8M4bivIKN8+b
zcqicv9mw(EvmfKhr0qS|exO6^6-|C+Zw4~|W%CP7PLBC3;XiiDaV>>?rS+dKZ4U6?
zjpWmkLW!Yh8R=#GAk)9CB1T3A85Pb1bIQmlBUZ+q<H4*lGBG?n5sYVuV+~b`&n$yX
zipj#x>(jw(4CG{&k#aJagNwC1Nt82}jNF_&59^l`!EV#z^2*33qo9mJGIpE{=9f``
zf!aRRGmw*}CN|A7(u$Id#V3PQ+woM;BEu>pSwV^dn+&^*bu!k=aL91V7${?q43`YI
zjJ7iJM}<`x9vKy7RFa{|&}AgbNRr`|;geBRMll)m3%T@rSRol<nI6!CI;Vp6mC0?J
zBoPG91QTQwmQjSdq$bsFl9bDnM75!qFa=O8X>l1PsCi77!l=oYnQ@y>1xv~(C8Mm2
zAE}colapnn$|y~vL>;RX-{4G;V#>($W3zFTftWH=TS`(+MtN>x?4nZqhZV^cs8?r<
zw3TK2B%{8J-(*ygQB}szGHT1%Sud%YjOsFK$f!Frj<%sq!!>2pl0iTl1<+QeZ|PrT
zMA)n=<5%h}Gx=%pqy@{S)?@Qq<0N_jN&^`UWwemdQbr>gjb${G(VPRC$Y{#DOG`ox
zsd-G<)U<4AyKcpiZDh3OEv<^eerNxe=x{q3?PYY3ab8X8CZjt;M;V=Dbe7SDi%-;~
zt_*ZGDU3#`hm4*w`m))JwKpr(HqtZn5lo}kPey<0xt@WNQ0)LdL5tL+!PN8l-Z?Vn
z${0eOkuglhaJq_ROp-Bz&WnscWQ>(Diq8d|`Z098mEuRspp!+XjFP8KgK;v(%a}lC
zVMZJ|R69{jAv%M!-^ntj@bs7|W2%g4oMAdoCp!By@hYAO&JbsuGSDt&$(YSywBJIB
zp?Naq%UDI@UoU9^`%7djm9da{5$j@B>KKg=C0Qn8g^c?%<Ce2eJ!x1eekFH|0*F`B
zHJBKpgllB1<;+y1-EEMuQHDu@S-~c1OG#urkg-L^|70AOaYDvc8QWx>I~hD6V>=xP
zU#<K2BHbxtmrOshhl1ZjbiwYCv6trR>EK<uE=~k#)uMHhs`hj9a_PhSzlRRWI3(k+
zj3Y9R$~Y#27M3#U!nCR^KVfY3zlXB)iY7fN<CKi6GOo!uE#nMbu!X{Z$v8{dWL%JO
zkp{D1cx}-HdNXrgruze70(wV8Z&WVHpf`9FPtIi->e1j8*?0#<?{mnZ*SPDl@ka5M
zjK2x!dOv2otGr1oWWjLOV?heLE#nUDB{qCl#y$E}s3uX8Wd*`b3x$av%6KFroq{L@
zk7YcO@kz$Nw1UZaCgZJ)cQT&KctJ-e;~!f0>LtCDL787M(_2J(?@jOR>Af7i{ib*3
zZ)iN})zcI{bu{>1#s>~gIBtBzqqpTBX(>Jyq$U*knL2C=f0gl{j4!mWBf;gXQ%NcL
zHyPh$P;t!BAZ?xMCPgbquONqloC;zT_@lxZ6~rpYpcu2O(TU)<Udfph#3{(CAR7n7
zE6Ac4Ybgb1W~UmjFm6v$ploV(#aLuaCycd=mZ|5*gSiy^pa2STE0}XCn1=&0B!;M#
zR+YSzN<jeyv<Bu==)VSn#<D}jrzuohNCBmy=Pr>?ml9p1k^+xnT&=PKMS(?uRe@W9
zs-W}9ppDg`z|P>;Gmz<ICU7zQl_NUMPg6~SuF&5g;8RdcL2)`F1px&K3JNO-D){AO
zFw6}@#L;0YrrwQEHadLLA_|Hs^dJc%Csh%UNm~g8i3*aq>i_mwl9KBgN^wq#AwN|?
zX$21zJW^0bL0JWp6--g^qk?h@+A3(LpuB<#3hF7Sub`rWN(!nesIFjiY`C(5Dh$Lw
zDHs<C6I4~uq)#+$#5EMuR1i_{D~Hum@Uw#296+_dC|DG0G@)REeX(KEIyAf@C;izs
zt(M-<{zg-R8Y&=epr9c`+1PL+1$C(5(O^>r%@nj$(2DxmC%QT7kA0$B&~e3vX(Mhe
zTK%q|4KscEpoCOKTYCi^6!ccmM?psg?T-d&>&noHwX=dQ!vF1Vq?>~7T<oEsr|`Q)
z!o8R&fSUJJ&`-fAIwA$1%Ek9rFi62*1p^ce<gIk3aGOkF(jhdpGKGgJ7*11E!TWOY
zz3)cI8KGb#HQ^X4j%TxE`S>vk{!lPM!9;E{R>61<8%JmAYAS7MY15MYsbCW4q&$>_
zwnKfQrz)7H;G}|63Z^TVp<si8jS6Nen5AH;f@KP3^RX;Yu#jPng1HRySm!H9JIsZ5
zBWXvyNWo&RTB0D$Nz>(Qu2!%{!3t5elFe0o;51h0V#8|{kgjK4$GZJ)<cHWW@g@bE
z73@{8Pr()i|5LD2!7c?`X~pOhy-mS(I`v0_qxwXX?x11m6J0-JxB|_|jN#oh{u#sM
z?;*cjeD*%kV`zT%iQcc^fP$k6j?tiH3?Ec*NWo!_`5(tq<PlCq^N^a;7S$*EIGs@5
z%LxVZGluE&+Gz!66yww4bp>Y?oZ}<9qTsxO3v>-~k;eR@f=hJ8@%YpE-Pb2NjV~*p
zHJ_ZTBJvsoIe#m-!I^I=xThGOJ#TT5_H~=#4(nakaG&V=qV@q@Tt|a{9|=BI@I-;r
z0+$6(6+ENivLKTM&lS8-5N$DTxxAz~&^YP6f)5H_DR`~m9|dm|yjAdyUP0<6(cLq;
zCq_5B(r%7XFgYJ-N-OwI*O4jwuY%7U`5)_y^6_am-@YjLN>^p$q^(y|zi|~Y-4#q{
zG1Af&WigJOAic%7QAVAKu^<EYia4VM!-^)5A7??l1-UKAV?kyMvRI6r=CB|uLpD}Q
z(yu~%b_=GJkEdGFoa__lvcO!yFn_QB7RVOk_F7&G@>x*G0+YqK3r9|V3kq;mL3Ze#
z8<}Z$=g2WzK#s%#<kM|2#R7{3R^d1-urb?(L$7+&oRYgOP%S8IK@kh+Wz=JVk9J)s
ztXYgZY&xr#m5P%p#``S@a6phXY(a>DZs|~~1ZMC(oT3&Kv!J2{l`JT3K?w^|EJ(E=
zk+fob5)Cg^4UVP`m$Dc)*^({BEj6m5J8Ziu#FIm>;H542(SmXol(85u^yHW2L!jF7
z7P<=^CWo|w1>}=S*(zJ`lLcc;;h!z2VnJ2rS{77esKHvD50-8`QdmuP2<WAs-bIjE
zo6k5ojRr;kYC#<;dhn+QbuFl8!7nNzD(YMCn*~!HnC3tO3mVdq+EB@cMiw--pp_M^
zt!QFFQwwfdaLa;b)IB-`3zk^W!h%xEd>t(4Xu-MJp_X)ZZtJZq#;y3)tZi6-XKl;c
z&Vu#~6jSkVbSDcsTQJFj$rg06psNLgEEsG-Hxbjvg6@KQSkRNX7i(|f=V)pCph{ml
zxx(ph!2srg!g+HkehBk$8f^=PG7l5A&dcd3!$>ZUwP2L+M>CAE;1A)vt#156*EkEt
zvok^X6D|0Y`R4f)3YbEZHgCdIx>9JM_6L8-lsKJh=d#Wat!6UJvS7Aw<}loOo^Bq)
zeBm#!U?KA&;Vjx7v($oRGyyEwYr%30R#>ppf?XV-?+vY_K77<yadEW;Yb;pHywQS9
z7OZ1l&$@w?x_yL4a<c{7gtLV}@K%PXSs{wtZov-We|1Jb&yu*?f(tuCz4wRa?+V?$
z9N1^UehW@maMFTB6$1w>I7sJunSL@;A{7sD+rz9!SdWTq$1FH5IOSA^)r}Gs7Yg1Q
z9yn#eX$#I+aF!;U1%Hc}^A`NYd_g!DEx07O=5u3iT&8Qyf~yu>WB<CSU9i~r4NPx6
z<DA~G;OFtilQ?c$aEF#DD+*e1*MfT%yt3dmt(gb?_qpK%x@4~UQ!a%cTJVUjmu!iT
zEqKCJ`;;&hpE5sVea`xV^(8CqVt1yfe=K-oK{_j<tj6{7)`IUA49RQ!gZ4WPdvC!9
z3qD%#NwoUUf`6Gm3#Ur23}2YPTJVkG#P%3xYvVWE{@Go6Mi)KWiu6`E7iSqBN+L7H
zig+tB^Byy>X0#%ffoka&*5U-;nr8euTox|=U`1AjY*u7v$ibSMH79E>tMQ-I)FclV
z2{PYF2f=x*$j6*tIHPZ*FJy(uiexKNtT0<KWv4%2MbHX~V`M87D=Z@3&S15|CY%y+
zi4Hn6D_mB%t<Z(9GF-0^@CZk<V%QF2(t6qP3EywUsm;dE7c?yq2wAbRMUk)-#5D%#
z2^>?HwFqlbD~efBoH>cL1S>U9WN5rER8lyl7{;|Il4`{QC0x#m@>cpE-h|TZmtiey
z#g8JM=0p4$y#g2OT2YY(lesdrV))65DppjrV)bO>w}oq1QH}lTtmI_kE4L;WYgsYi
zn(-5SwYm6<h>2M7tKd3TeC08zXGMKBf1`C?)HYyfXhkE2#==+5#x)h(%!=mBEriq3
zikph@Yq4#t_}z+KR_wN-trhKP5Uf~eMSCkcSkcvrZdP=(qLUS!t>|K<rx3<lALw*0
zsQKdf#0g2U^|J*1*#h0I=wU@qD|%V6UJo`{=9`-w3e5G>|D^Y}VuTeVt?0vh?`uUr
zhW@NWSO>5Uv|<ngb!@N|C+`~1&Y*25%?jZUx8hQgaqW+?Vl+)fE2eVQ7}g1_e^@b=
zVH_(3kEi49YK-$l;rwaEB<9J&IdREIJB^F8S*KeuL)6Z+VwT|Et)k~J&lS!*E9MK%
z5}#?26^pG{X2o(VmRPaWibXp@mv_Wae)_ll_r(L*UIkasG`3<pUDUHf*Y}23(e-{t
z-^fW;v#w!XYsET|dA$`I1dq&Yybf;S;$|zhr1_$Ds}<V>yDz5SVZ~0`iU&^J(o22~
z)U$;5Sh3fNoHpdLVV@QIt+-{yZ7U8~=|?<p%8Jvp-;3cxRveobI?OzdUrml!aa3eJ
zX2o&ACm2q$KHC~|hSua+p|e(;v(m3q1`4b(&f|G2u88;x3>R51S@9RcWl`H^iLu&W
z<>ECft~312dPBtAq?s_^SS#+(;%~)wE7I9;&x-q2Jii-xL(}ZE-h5B!ffWy}c*Lz<
zh_;Wdcp~_z70(1ew?dw6<fQGT6|aQ<+KPV!OADgjTJesH@2&XE@PYNCi1}p2zk;`H
zi}_FR7rK_2zX@k=i|8mDqHXxlUC&`ddYkbQ6URyr!;ry7zn5kBw8h$xNpQm<(eZ*a
zGh|`SYC|^RXSZSNB;%PNPcMdtFAwFmA&(7y8v-``V8hzoF?nssXET1UGyQ?kql2L_
z#r^qhC}4xlh9$-QcjLTigItgk7P7&_V75WBL1wnFDy+04_YvcD+{(q?v6<`)4jY^d
zE>?}z&8phqVW3tg?xfS1y{tY~8X~F++7Pm#$ZUTJ8^SgW-4*(lKY@Cfz%hkci?9}D
zr6$E}C@%O(^-PI;j7c_>w4s#n%h-@CIE5kAhSI`m&1-d8F8*jkIfnA0wt@{UconT|
z!%sGJx1)z0Rcxqg!)hDW*ig-e>NX6a-rDHKQMiT;wQTs=hQE)eugPb8+44|r8-B5&
zr46lYh}iHe?WJho$sps!t`5Do7yGJfLp|pDtiK7rfej4>cRLVj%-lpcO&OZm&|Ekz
z=%nBFQF7W^+l;HbyA5q@_?-jV+R%xiorrJG(1Eoh>#Ov}LfYAeE+VF@4c!FixEIyK
zhMqR`5>9`H-mHCW=u1^s{ryBO4FzQzV8cM+3}P5eJ;`Xi*&AlVa2r<GusLgD@3_Pf
zHcYi)nhhgu7-hp~4xYd|hV>6tYB<)0am?d|Gl0+LL@xfxI?0B~3{ynR{`Jw*ZFuo(
zpi6;-`E1UxVWy~^Wy5UdIl`H1!#w6bJ&hq<ApC_4i)>iTu*8O?HY^jh%NZ_ZHAa#?
zTdkytQQS}4DjPn{57BvCYr{HX8~(Lny$u^|IB&xR8#dao$%cbA9O4X{ZP>}Zr94~G
zlGF7r_Ogv(yA3;plP*5fF6Q0B*~74xb)OCUg@1tN<Pu|^#Fh)^h)+Ch!x0;f(uA?$
z(mvn(xyB-SoP*EWa6+^?$#BYs)51Ap!{ZAn6inMWHn%p)bdi$S@Y;sT6{7yK;j#^H
zuLW*#?G+n}&I-|IRf@mL&NbHStbf~ZgMn&qGSKI>+cw-`zRUWIUIlEp&-{S)&hU`+
z5i7M#Tce)X@KiWMR~nP;ISr<8UfS?VaJnL~cV-6u;o=+WEyFue`<~&04IhPLeirxH
zhW~6xv?IxmFE)I&A-^33?8Z9q&4vtiWVGYEh)-uXmiH(-q8W(O+Yux9No=NAJN+(@
z5tG}FIN@hwh_@rNaI)BuRdDZ2#t~)bVh+}vthrd}y34~rF+VWS?==(WWzA>DEWTI@
z+EK`kfE__QOm>*<P&q(irFgp?GPA;JVYP}{n;kj#{{Pog2b)eiTnugzGvTIj6?nL)
zvFdhs8GItf&u}tdLWrRlYnU~Gl`<4&C}KxZ;f&oGQ(SNfJ1+8iQqqo6cKl*TgogB*
zKiQ6Qc9gdxg(Fj0OS6^{ZObzJ$Vx9p6&R|rR%ETjTA7u4@)NxZ2<|o{x|$u;xmbg>
zwjDJYYO(&zO071xGG69r#Av4dN}XKhYsgh~SnIOZv!lL<|ILmDf@#%iWJhB=ny}N-
zj#dm!?Pw-qn%mJraPQ~Qt?g)IM`z*uZby5;ZS80$xc5`z(`5%cItr%~!_yDO72Soo
zs~z1$ZS(bUJ?-d4=iPx^4)nI8j~&zOm~Ka3JNnr%){b#@^ta<$T;c#b22$pN37y{Q
zTjz%c*)iCTA$F|(CD1vxWal0FP&-C&=3yfLaE9hnjrWHmnMbjXwquNl`Ga9Z_DtjL
zm|(|bJEquiYe8tD9e>&}$&T@Bl13E@u8<No$YJZ;(6-z9Q2Ju(?WEibLR0NHT_C}K
z!#Bf@nRYz2;~8BGcFeZppdE+om}AFWJ2vw!=Gp0&<gu1{0qZi>g{;)WMRqJ^ULu^O
zcF-QFYPlUN*j&lFfIl6qVqR^>8WDf8VDdWV^{g9MH?nSGrBpN;TZp;1m35CD+w9oR
zyo0sKv$&lMyI85!ZW`ymjFY%mIQ#6_&wM~Q@7z(N_k<2}@uD3^>^RDNjP<k~#~Dtr
zo@716N@)ijNq@$Uvs_%tAKA_^pJ%<mN->x0_{)yVc3ffSfgM*FZrE{?CJFO(R?7J|
z!=l5{w}f-oj@!(4gtKf{%suA&!r9A9*+VWqVtvf|gw>Wm>bV^+Xf?JYodYk~{AkA~
zhF5mHw&Nc=-f)rn@PXm29q$<43;$@WvEH8MPm%xHv3pl2cT4|guKkbo3+q?bZ>$u5
z`+2%32aYWdMLUq*fgHO-+jfRNX7^It7zZ*qj5Rr<1DP3!V;#sOIL?81!AG9+T_7%I
zWzEK#opOqpcX5fi9mwNAZ3ljF;0FibK!O8>9mwlIQni5QfbKv(2l6{`V@GJ?GQEHU
z1sy2lfXM*|=P`?H76!=ynL!bL+6Y*=Xmh|W{Is*+bil=qn^hIH9tUc5G2SOk{h)gt
zpbK#Pihz%6{URpdK#)1a8W#SN*i1znDC$7611Sy^b70$|01fG)YR0?h;v81OfkY9X
z#8A?KQo?!KG<~WAr5&i*Rj*1zG+C$nqSUsG17#ifk;BTdR$?vhKm~@1tQ6@eY~0GL
z?7&a#R1tpKecEacR2NPS+Kb>?4*V>5!uq&~1HU@Z!-1X-wA&F=$AQKUG;!cSaerM7
ztH)ZO^*8z}fN0y0p%H7h^>IyU*sbAa4m5Y5h}B>3gWf_!wq<C^+KRQc18qd@?+o=@
zMYnUHJ#z;Kx`^7244oY4ES!o%qPq(2=0JDB-E$fDzIxI6??4|mXJ?G->p(vT#&fa1
z0|OZTU>(Rh!ht~!40d1$7b(L~2d2guPy89i&T!$o?i;gxBo{|HFq&bEsI5@VxDv-Y
zFpixkeCLOp2@XtT=T8wiiD9w>Q-nj;<8%jRP^1fgx-ip$Su~7Jv~Xg!19Kd(I$?8S
zt^@NNxa`0c2j)Alz=0DEoOEEJ1B)Ek>%cw-7CW%Sfi;|Y|IXlq-Nv%N)PZGUU&|R*
zu&#7qmGD<Pu#SV*5;(9v&1c;pVm2~ta$vJ?wm9g|<;Fd|tu+7H+|IhofgKDxMdYAX
z(Yu-V2q$tlddY(Del8wxAj^K=<!i?LKgiA@2M&wKBMuy8J|>*w4y3&q7?U~ilmlmI
zB{>u#KJ5T$_Whx=bQBlE=Q#enXm!DXi-IpP{6#Z=opIu>I&jTFzgvYoPF#23ZwEd*
z@E@&69QM$GM-JR%zU9De2ktOGV5R1F9k|DQUpP@yvd~*-s(Q@MO9x&tJYjvx`pkjn
z3>5Z)R>*C}%{tm%JMdok|1i8^ee1wG;onxHJ}`e2&L;={6?|xQrY{bBrME*)<4qmq
z{N_N66B(TN&N1nn{N|rEnl(KuMbcl6NHaQ-ML4leWMYmJPCP?qC+L$J1=E(*iEN@a
zyAwGC=XBx=|ILfKu{fvq2Pfzqbv`HZI{_#1IuR3>NFUa=Cx-^@3{_noD&WNa1>u5D
z<7P{0-h@ITkBPzTgd`l<2}Q8QiR{x;sT+1D98OemqN)>4CtOZca$?22klP8>i84-<
zb;9F>=0ss`tF!t=9<LKV=Cu0&0pSOo2r-9Q6NFzmbNV7q6y;(u)>2LsXDA_J5}imA
zT+)e*_l!Ht$-+rtNM$X}+UjsL-HQ2<_E^zh&S~6ziY;XP-KRX)R&b&s1MQm3%1(5>
zmi{LWqZ^*}=7*{|QQe6KPBe5HcXetwQOk*+ov7(V<M_mLju3s+En1MC3xoPj{N}_j
zoGrpi34e8>j^Mfs^;ol%iKTNyA0)qKPJDPY(1@}*(Zq?SPU9}(hdVynHQnxO#y#mj
zIKe$XYVTg-Gj&TRJ-H9LT*&Q0YbQO~0n6!(IPtp^ZRspKG0cf}PIR0X>gGguZr<LB
z4x$eo89F)9nV}17S5bSeMRX79@WBvGp<?+HdOFdIt9r8zaH0=GUlHHWiT;A=3Zmm3
z=)@r540d9O;PsQU45wLIH1jwo#<MxXiIJjqloO+w#|Y;SC&mh<Q!{~irW3QAnCQfx
zPE2BF3hQJMIr_G7|9`3z)7Y8LIz!Z^^>8*97qZS_o$JIrhWV_NVFAOXZ83|4v)G9x
z%u9u{jG@fG=~g<i%883kTykQy6KkB<?Zh4@)^Y$Xp1Yh_=frw0ZeZQ&#72fqteaW4
zu+rZDNAWw2w>{g0vz=jw6FY_TcgyJTyb%2XbT7@==-?42jykcAYxj$o15O+ie8`Ez
zf={)KK0U}!f3rBo&T%JBFq~vP%X*6Sv=e6-s560`G3NxIcjAKJg9p?9<-}ztZubbh
zrB~JD&=n`HI&qDTB2!{Ya_G7fe>?HWiN{Xd5UuVq+;rj=!)?|(qBhlP%%yuy+-K(j
z>qAjn`g!yd=9jEbh5wA<xf3shb7Ek+SAt(V@elJG;ry02>YWqs>560Ls}tXx_{jW8
z#Qe+f*@^#z^TmlSm5f#TyA$bL$l~IapOwr^E=0SK-h~+9WOO0J|MAkOSix0dGsOvx
zcOkRjUF)N>x{!^FM|!8rF8mxW<P^MgcT64^esH0^3msha$R*@;p^OV<UC8G`eiz&>
zs4g6Prx$QRalzt3L2g?}WH7mK;%#~}7bO>D;b(}?WM!t$FI#G)+L-O4*1_O(!6ls1
z*`r2f@p@bcv7@o-tX@_hD~*ibg@E9o3qxNTpA^C_B)Cx6g(5B#=h~torWnK57SXx+
zrb-DH5?x3VwJ8iGSxdQ)%y5(cpigO2xmcQ&-p5J@LO;4t&V}+WR4)|#)J3nrRkdCC
zg`uJgm0YOo!cSbJ4Aotz!dz82)m#W)GhQQTtKmXT_G^jSpBW~+(<3hY%G}I_I-<6L
z3w4?6vDRn(P1H`WY`n2)=t3iQ8VkRP3r(5nb6nbfo4e4$g_bU~5;4Eis{nHw;cOaa
zTsv)DXeXTdkJ5E?p_2<kXxLro>_Qh82D<R+vzH>fy3o^wUM_Uw`0lJdMB68P!>zXq
z{+ass(&0Yr_hs$J+Mjg*D`mU?Z@NJ)40d7IguuI9p}$HcB`wp3xiH*?Q7&YynY!q@
zKEj2OE-bkeq|XI(n~0_veTiih{fav$8RNnq3}acxiOl0&m>^hbA3Mo~$#g7kba7*f
z3sYTq;lfK7rnxZPg>^2hcVPxim}UAZ7gp1!02gMtFx!O>cm4EvYLN?bINMy-c_Q<C
zh6OGx6b{{6SS)yn3rhtrV_5FO3gN7D!Ftd*Qww^hTjRo77Z%@*r!Vl7a|Vll4_+D_
z*x<rO7tXkF)`d+jY<A(G3x`}tsT^ukCA`H2`n>!<7q+^vjdSj1-7fO)aA7C&F5wi)
z7qv(5UKjQ;?-$Mi7p@O8UPtI|7~K{-?7|V6le2WXCqU*=S|3E@afTBvoMbp9{L?Pb
zsiEL=E}VDao(uO~h>Q<hpv*4(?ZQP7d5PgK*2^wjVYn)4uhGR@z<AR|+YQ?9@=#7C
ze3NT$vECMucU-tDn67=(g_M-1p$F_d6#gTI$E;6SpSti&)IO)PFyGkGD;Hk7;B~|2
z#y>8+q4m>^TyDH|;T<ioZe(|(+Eo907rwiY&W#Tu!$-O_T=<uZpIN`L{^!CM5%blB
zYnzQP`OxS3lk5FaZsS#ewoDAstm)l|5q<`SjI6P4^gi_eujn{-;#o7hk%fWsWOZZg
zP2=gVz3t%~ZqTiy!6^y!HM6>O|Hq9yZb)v(Zv5azPG=Bq<Yl0Xl$zvogYJdWx6$&8
zYz5pX$XrM`CO6E2r!CVJ=4#h<ox$RU)eRf7-3_;hbTBwsU98n*<BqrLhKGw9D>-!T
z=$0%c^t%yoqmmny-3Yo7awFM|6gR?d)Y_pZQ0+bc+yy?mX-2IIbMqo@6m_E*b8$D4
z7)r1vvQlIVzSmmPjZ(s)RqmA>PIaTS8)e)ere(A4hXB0@QhZrAeiV`A7|Od*fuW-C
ztDcRcTRlIyQI#f!8&zo6%k-&j1GI=;YZ0#Q#;<PFaifNaugOr0^=H=FtiQMsVW9o4
zdZ*WQ)8l*4QaJS)8ngb!+Q5y5qP7u((mJ{cLsQmfqP96h3peO{dX&7C8?D)C!`hzp
zch<IUv}2$!nr|JLJF<2Xe$Vo;UES#B#uYcNy3yT@9&RjiW4RkW-RR}UR5zy4Ty>+5
z+jw_3#f`q)b{uOzH~PCVfO)7J!`v7sG7n-H?8Xq`G#?)|oOv|s2;q-(W0c^Hjibge
z|G_#|_;06X883K(8xxuTWSzu1S=7>A-v1QtP%uy+52m}Z#Ets<Lo?jQm%(TpX1X!U
zjoBPLhjjt#TsP*44D;QfuZK}EZ42F4#QtJYTV-d=Qn&Hgjy&0mbtvv%;l@gecVmwm
ztLUWApk+<m?8X|7r^ky}3MH>)UdOtgbpz{0)=jLmuLjTKwh+7FY8;>s?Bs0as%@;>
zS$DARbYm9-#q?O5<>O0zuN$Y_IPJzhH}-SY0XL2?92Aj<+&C<FZQdZYJ?h3Wc8&}G
zgc~OX({~*`B?4#Mxah`5C0w>~;H(?x+#sOsJi`UnxU<GsU2@|uZhM)PJ`|97&5i4B
zWL1$(#oun+aO0gD@7-vy%y-j`J8s-{;}%UV8s{CM>a#+$$JEpMJvZ*V@!X9UbQL!W
z&_@+Y^}vmXocWRH;bVp;ZafvvGg??K{r~$XFKLlP;LdsDUd<~v{kXlcKK~;k-_Wao
z;IqTyKhQC{5w9Y%icb_=BQS1PFj_U5{L5jV-T05;iyL1VzPXW(1HOwq^j*OycBoaW
zo9WUEj!}_8a7Goe%$bA}r(#F5BGlwtd?J0C%c7$6gYdRxAv%!kDsrf>s<5dzb2vJu
zirgylaKl_G=sRGhg(3P7_k)T;A{$iX6`YSDzls731%=<jV@z)o7tJap23gc9DlCHM
zw2HQ?aH#OB2&l$)+ng#r-4$*+A~}J+@TPKP^##7wXN__8sL(`PdL*!y*(V&iR4lzB
z1XYw!k*Ff1BFt3@DvB}`7Li35O6@dW5sIlOF8uzB3@3?(NJSYoOQuD#CaXwcNM)tS
zl-)69Rs6`s8m#41R1&r2Ra9WEC>*-*E35d4i&a>wsi-Py^AycYIjeIqZHcJKTua5z
z47EjM$7|_-RZ&O9YZd>fsH>u$iajd!()a&W{H9`_iuo!UsA#BSxQY=f8mVZkqKk^I
zDw?Qhs-m5W_9~jGXs)8AidHIGsF?jIOxxV2F=^VGowlrPMD6b?j$|{!VseDrbV)2d
zD%?RuCmOU-VcI$}EUTZHxU-6#9M(-mcNGIv3{=sB^Ym8HhoL8HFBO!Ha`sixPep&R
zue2Sd_2>Gd@E{d~xoRlKP?I5Cq$=9cFclQpsE<y&9;t%NKUGXpF-pZ~6=PKVp<<kh
z@mw{Q8!mVnL%|eDyC#PcPGFtLF;twaVhTm7n4@B<ifMdAGq^47i`q`-<E7>^x#27>
zQbWo>eWSyfD|Scm3sfvru~Ee)6%%p=7O7aKV!4XNTzow;yhO!P6`g%y+Aie?ub}2#
z0>o=otW>c|MfChER9vmXH!{42m0A(6<5ufM+YO>21#hMmfc-5re^hK`-o~1Feiq8V
zota?UD}5(3wc5q7TgAT4iB#ODVn3}CD$df($sRtS;y{-G!9gw_QgN7O1@kc#$5k9<
zrbD2Z6Do?844mX9)asQlOnOQM!D$uAIgH{tmHvwyw^ZEbunQ{wQgK<uMJ`guE^#E~
zA-+OGN(;UU;;SmIF%Y}5g(>F^6?(4lO>Ri>#H4pr+*R>N#bXusRNPnbkS@<$;XWM`
z$8<=1pkl@>e;|99v`2#k@}H=9s^W!;mnxpA$h9+k=aoL9OX728Dwc4C@mlZc55J-%
zJ)L*nD}DJx{f&yZw48ci_u!q1_p};&kjaA&Dk$=+ilI5fA6W@LG5o9IGsAzZUugMq
zg)7gErhsqkd{>dqV>FNQ7|mlmh~{E?)>Y?yR7HLUuFdE{=(SG8I1l1I82(D9zGe0x
ziwAi<$mc;;HgkB8(}Qfx**!-8ty@DBoQoYT%KHODZV&P>&>>JQZS)j&(iWW(^K&bS
zwSWf&847t|W}t*71`4LORHRL2P&}|OSUHuk>w6K02Tl*ldr-jxmj`YS!X6}$IV!Ar
z;Agm%E$m^?JkUMxdf*fOo(chqq{kqV2G|UGK=C0Dri=_zZD9|Jcu<C`ih5AYgHj$O
zdr+JmYL)0g31$kWCgdb}P?EQ_<S8ODm4T{Ci}<3Cja`)G;*TDb^MH!9Q3on|P|1T{
z9`yF0vIjqT(8PnL9#rw5ss}%NP}_rQ9&Grk(^k`i>K@eaVA{Pf%_Y(_zm^AS#a}##
zc+kKDnt0^=O8@!gK|K%ZaE1?E63L_{^*#8F9STd!P~=HWLvGcGwJ~d2l4c$>_n@l>
z-8^XFK}!$XdeF{;RvwJmrPJ1ip*1UI`(60dyuF7WbdD~f{~Z}Rvv%@e;O1zGFYzR%
z2Okb;cMp2dq~!oQ%+znOv{B5*@3CoJ?c>2PniU@O^`M^z{XH1q!5|L?^G*kHLpoRr
zP8*ydoFwfShjQ)h&WR&9V3Y@=*%|3UTK+Ly9P7b25B^}2x|B8u<GE@AkG$`canzK5
zk_VG%Skn2gYMA1|R1eB(_))_&52kzY-Gg)*W_U1@PPYepJ(%UeY!6m@u*QQq9?Yd(
zbPcWWVCCp!dRd=GwTt}oJ@{vte}M;gZ-f?ljJJP_SQoQWaS6jx)@7{AJ@}!!@wO!K
zUSy>Qq^mp_pFY0R_P|;XE}aT(@?f(E>pWOb12rVPfu_X02<>Yl7xOF&bkE`6;z3Gg
z;}gm@%E?T{tqk#5jd#D>J=np!Bi`x3F2TD!_-~r=HL86c?Dyb_2TwgX;K5@@rt=<L
z@Zg{ahdi(zi977UIo<+^{v#e7_23vMInH|0gA)vC*-kN^W~Jn3JUA=3;I0gZ7l$hC
zEPauV&Vy?nT<4Me%Y(l=1+I8-nTs^GxtAxAbCoWrB{~7+`J0p6XT9OUO<DvzxXs18
zBL5u^wmvleh;vUki}D-qS08ZkA?qX7$E-b^QO`VhPAATTH?%<2NPXc!qj&yS9=zlL
zYWpH3_}YVKvyDF7nVtHU7Jm=E(rmvM*_hS;-h;w-12fk7KZy8`44+v4W&O<hAL|#^
z1bfss4<_D=%sde7$ej?SAzFh;gIPm*4KW&WYRIJ-Qz&#JltDvA=2#7J8sar%(je{d
zuf3E?npr~@&3IOFb`4oIl%1V=CX$>@L%;n2;t7%DRrew}*gt$PLSeZzwEP~<uc5}L
zKpy5FG(baM4dv#f<kRqVPD<Xk$@HwT`D2n4cOr!q&`^-$i3@4Cb1xFM1|$u#hQb<(
zXizj*G-w)h4OR^{4K59C4R#HGj81m2R*#8)STUK3PA<x8VyUQVAoZ|P0M(LuHTX1y
zHRGD{Yw*lS-9A_kYB;(nIiMkb?$Gypk&uQPb&{xxiU}N<zlp!cS6@*L#Wa-GjOQsA
z*HA)33Z+u~i5ikLBy036!s4y61xjitrGcQ}oK(_6_amgE4+Lo9rD{lbIe4x^^qVfx
zb@Bwt@W>Cp9w?`wyoRZ?L};j>p`wOv8oFz!q@l8gh8h}a_(?+*4RvT(UKOpXp_+!;
z8h+7GokmXs4QVZ^x*w@_KSEklLmP&dS2O*rA>Z5-3ZPRkxm9XJ!|pk$ziRlaee%kd
zsibu^)YDL3!*3cUjR-ej9e6VC)84?|n0QiRnk|hrw4igUp^1j3-1FYujBh11)6krY
z#I2oCtu(aO&_y^|>Lj<(@H<VUI>~J{bkfjSLpxF1UPA}wj>0*<#7`50y4sAVN>@I#
zq0LgLc@GUeH4N7<Lc<vT56xa0dTZ#Tp|6Ia8ctVC=%=B-hCvz}9g^>zOB$fz%i5%Y
ze6X+ECl5T8JnVjCu!bS*XU>&eW|Q7<W@@h0NyFG#Ag7GfFpBciMA9%iswC}tSK-vr
zl)qUD9pG3E<7idau(4HYi}_KsdeC#g$8+Z=uuh~7i({FjVX|NvMmo_nbEebcuVELR
z1+JQ@VTFd38fMW<(=bQFTsp?<fn_w|i=@&X=ZOsSH7sCW$hwGiG3yf6rL5Mj#z|Su
zNhr^s@8ef##sauW!)6Xx&ANtlE$ceg^{g9MH?l6dANkTFVGCWnQ3>10(Xds+z=KKK
zgns$SPsJS?c5=+dX<2AHa6hs~!(JM5PO?wKeuncJ4ro|5C~%C6)X9Skhgc7@9-%8y
z)P9?5tggp3oDj}QhEsH+g>#1CtcG*K`EW9R_pH<l8ZK)1?|4dAbJ8W6a*<@>%QRKi
z`LBq`vqhq>X}C^<L#IAt{2L8#>B85H-<-Lr;g*Kmv>ef7eqHprhPxW>X?U#RiH7^+
z-;X@h@JPc0W-7kFAIbh8B0q>w^YDYn=+xp*H9VsW`9Y-OgGj>%k+BaVOCCgCXn3jN
z6{mg8O8Mz`@cv=m`5=O)!FL+o(?zY*59;EBhL5xu>QHpFi4T9$5UV4Tj(;_LrURs&
z(~{0r1*ax|rKMh{M|I$vhMSqg<b0>qb!u`t9Z|Xgw7rQ7N7|&Uosv9cYVx@Uk+>}3
z3_3_Nvfd*{N4$<aI)2cRSw|KfIdtUIkyXe02a#+#vg^qBFtYJWYNe^k`5#8S4<jiL
zBb}S1j+&C3OGj=Ut-hw#co=zjAUWgLROrY{yVg-iM?M|-brjIi>|tcZf#iPQQ${Q)
zUAl1Ur0*#`9!AnPNj2#(>-3ls<oT9D#hQ&%{~&*A^1~-Viw>&}r;dfU{Wcx*DgTq8
zUB~43Fad229i&?xMqE1F9H#0hqoXW+^3ZYoVMNoR>*(D%?9~z0k)XrJML%nRHOLxb
zrO13pAuX(<gpNcVMc6MYYK!S8E|_{nkx4pIgi}&SDduG1Jog1snM<>#wf#{C`LtEh
zQI47NlxL`*qas5k*2=6uu~K~I&f%)e)mW<wpZZ)&$Im*N=xC~=wvJzP{HCLUj);!N
znS;+B2kPkfm6?jwa)z?y57gB`T936pYoDQkhB{83)f?&1rX-Yp75w>_Z~7j8W9ro&
zKS47c&FReEk8Z8gZ<dByP*`n$&B1||I;icYYr$4JNPijak8JR_(b09ZUr85ir=z`Y
zy!RN~03CF6)N!{Y?v+F*9i4TIDuK}@(1n6^R7pV91a#BUT}R0PN(InEM^9oOO8L->
z#*n6#7x}#Cqoc2mCp!IXAo}U(uVapmxjF{u7^q{6jz4q^(lJ=aa2+Fb4AC)Ehg>*%
zn2xvhV7Cpr?~|?%3Y1tExSX%}NSa;4!Yzk|N9p)0OYp?^z-StW?f&Jt{2SN$$LhFQ
zFJ-!p89K)47_Vb(zTgD9zJ`ZqsQ!sMj^*(G$x1MZVKVC!9aDurO-HRaVG5Y38&40M
zrDHZ-ZjXWu&iJ2f_uqGhCMyBz!#wJVj>|f(=vY8gTE{w_{{0z?bS$R*(ov7_@6GIe
zQaHFo$5I^|DhFnD@-NdtPjg$&x`K5j>nhgOtZP^)tkF9ErNufuXKI6vjXHMe*iC0m
zr)M?=HtYDZ!cWk3luodP&Kf(!TN$>oZfD)Wx|17Hz#bZzQTh=bM|H%02<&Cur(-|E
z0oH@8hgc7@QsnV|{<)b0$LREB4xFXSmf-~JNmlYt={U`NMmS?08?DZ9@w|=;3>R51
zvHrzMG1+G5S9M&YS@GC^ljivh{ko37b==T#sG^_t{&`&zg?azyYdpe#OUG?7$aiSY
z<OtGsm*F0rIN>~Cc&OtM!(-vMtLT45S0$~MUc`Fwf_6Gn|E#0xS>H<?uXHqAl=NE1
zKRQk|4V3EZr&@wHTzt#=j`cn32iA`|J~8~uO7W5<`9B@>*UT?EzUt_4CF%1S-#6Y1
z?dUs0I<K+QC@-QJh|@E~c#%Okvu-Dy_&X_+7n#|K^MZ=;tUp}QM_$*nu%Fe7Y+hvd
zVrhw_tA&EaehTGareaPnaxv!?P9BCISmDL)OFjzA??nMGCVMf(i-KMh@}j91&Ac#q
zVfLbk7e&30ypX-nywIsOLqPGu;)T_Vz+3-|B)`pzS$UIJZcHweGxhnxB)b<5F9@8h
z1THV!%qpu#_*D{<UJUVjy?DAiOkqAcDMS2zR)PRSkTt{__9B6yFe}B>+V3ysMR6}`
zdGWKCo|uM28X}j!k{3x{B$o;iKYkb~=|w3oJ|-t6v;OEs3PUPuY1T5V6jPRA$>(4>
zhVsI%z);bP>rXRLSY_VPPpnl~tFqD_t9emfa1Dl<UX;n7OjSMSCe`+$37fxo(XXgK
zLW4X}|J92+40Tx>cu|jms_J|38}rwvnW)%M_>H`1%seDtR`Sz7inMYkHTR;07X!T*
z<V8y_T6yV-x9ILgYcH}K(A#+NJN2z=p!O_pTQ3ea&d}8h=UV-TH+nlSNZYe^@S-C_
zC)UoaU05lm!%<(wZ2sE&^;<X7wanq|;l+?E!Je$WSgF{XUIm!@3a1}Kf7St<ioym{
z(TkB@jPhcr7sI^BS=>Lui|N$^zpeAV*zOxnCwjZ@Q;|TS+}>r6^|@>H(KJPKd&khV
z6C3RISU<kP_lFl_y&#}%9K(1oCNNAC{-0h<68w^$Chx^GFZOw{pZ4X&3@?^@vBHa)
zG?VFai1E+y!gff1eIqvThkrJWVRiqKWdB?*=6SIyHFdrhM;7^3z48$+U}vEhix?KO
zlD~wmGUjE%iT&<dN$kb{yx8i+YA;TH_x1Vi-$Lj5_rMx2n!oj}^<o{vdRB5aFl_W<
z6T@cV&yxf6*cw-<z?Aa-%76GfX7F$GVmqC<4E`Og1UtRhC3rW(9@f2HysR5V0S9Of
zc#+PBC?5`aaoCG{Ufidn^Wvx%$7sZ;w>g7N4(Y|J`+M#5pP-@m?z`Z{MY?8t=_grF
zd2yQI3@iC(y*S5wUO389KQ+AM#owHP_%DXbUR+_g%6g6UIxEFkzxzmUaPg)Ww-|1V
z+B;s{6+C{aKH`7+13E4*UU@<Mko6JkW7a3EPg$SQ62$O=mEvDr@gM&dXwqAM?ZrP{
zyrI?aQG~XCy?875ofq!~e_;6N#U}<D%(VE=T>Q_AFCy}*7vGq_3#Z0XJ=%x#K4h~5
z>^{W!kb&5T>^@{<lV$}~#WE9QVu<r0o*^@97EznkXUs+l%OM<-4><+r@*%emd3^Xm
zIQbdCn%9SX!k-lO7ho<ZoI(uU!+x`HBp+nKiVqgSRv&DFZ+7uJn4Lbj7~DSieF*rV
za?!)8vFfbUc`t*{hY!PyV-E_ys1G6LFlz#9VNqMehdy77V=pG0;tVBxNMuM7{>Io~
zvJWXfc>VDCk?KQfALjWm--j|jl=Y#F55N2HqYveLi1_fU59NKRK+WfbYWq;phe|$F
z_TeWwkV`@Ohc)_A;`|<gXJ7RSb&{+2jGxk?t*Q^zn5zq?h7UCb*Ye?K!Hx1I|KdZH
z5=qX~;LmLXb$qDn!*4z`@S&a$2QLKc)9x+>&wni1x3clGUGybe`p2$@KD6?oHN||;
z8~M<fp$ThKR`Q$q(44u2a9aBC)s#S0WB$^2R}N)QPU^fvZ|g%lABOob+=uo)bfEX}
zKJ@mXBTdMCesxA^|IO6$UxJ-z9KHlQvv%>JD+4**eCW>HgSDsdca78g_&_()`ucEw
ziQYe}m+r`UO8fiy(BB7w0jvXA2eFbl*oPs4hf=qfCXqS9hmk(a@?o|QqiBNd%=D)Z
zo5s@P9nmYfIBjDX{$L&J!#IZVtP@x#vQp%QeST^<$%o0DVG8S1R`RDYO!r|1!%X3K
z84;f2L&-;xxjv*@>06yE(D7svnOpLP7WlBxhXZt`=!E*P*oRd<tfrw$@-OjWnGeh9
zYRww8)MtFQs`V~@1)0_TD}7Kd>l=Udzuy@sS<6o!@z(gT)`tx~Z1mxF`eN&R=#u1L
zPsj4<|M7GV(2^@{+aBAvM`w8EjI+BcNq47_#vXglaF1=<wr$(CZJn`g+xnk=-mm_(
zvaWU2U6pjacPEv!nEFK<SX!JpBQ`m(nRb;svARytXvBn5H5#@!K-}uUHV3vlu!D<x
znUwEzU>Eyt<{p*T-sRZGzMpx3nfz*e8s)G9M;!Rzz(+ctIB?8?GY*_};J5=P960H~
zDcV1u#7wcp=d*&QbDGxDbv<EP8E=Ou@KQ@MR{rO}IS1}JaNhy9u<a`1yaRvwYZn~2
z=)fg*D&AnZ%)G+9>cBOY>r84xS9fnJzvaMf_B+hGD*r`a<UTv-qaQf%(1Ay^ziHl=
z4oq)ikUZw%69=BMJY!P++<_O$Po~gcaeEr&wS(?rN5*~2e8+sRYUek#Khdelfy@F~
z1im=%mHuc7#1Z&LJJkX~+x=85@tvKDKOFd}{Fej2mH(j~NkrPyFe{}VS0J8<Y{#_B
z_{?O?1Vk39O~jH|APGxSm9IM+*%Oj;F$FUvGZiznKpGZm<7jH6V^7b7$}<RLWY5Gr
zvn44t{!1XMK>lUoAAzG&wQK@M7RbEijqCy$Rtg$&u;diT#qu{ZH}l8*q||`M%_ESP
zCz6kupIP94zDyJpD8#O*q(lWn2uOjE0;2?U0Yjj&KotQ~z$s8fps0XL(5{7Of$h{G
zp}(*M`v26z^wB=uBj9Br_p$hywm?ATL4lC+Tp7JJe>iCL!U9z{$UW`-bg!_OKyiVC
z+l-0=B?O`p>m>zF_fP8hDQeyemlEi(GrF|EV6R<<Nm7=joIrV%R1o-A`S6N%-Vb^u
zfuBnqsSb#$0@VbDQiIMiMxeStp0iqSff@oe1!@V@7NCD?>9-O0HWNkGIO+)0r9W6{
zWM_eT0`=M32sB`6#-!SY0*%-ktE7oQQ|0tudUNG1SXv6SQb}u;4O*zJO4_lsXLewA
zWOfpf?+Em9G<4ylE3=!RUJa3%q@f2(Pk~-4+0jeuBhaL=TwPxFrR})J(T}zo%K+v;
zCgp=z1`7;PN#bJ;8hx0+aDngV93w>J>p+>zkx7jf7(+X)L?Vf?0^<Zu2%HocFEBx1
zv%nVG?sK$>0<#2WvrnQ!k7WvTDsvihI+NPZ5SXdFVaTRr4i}dQ`dQ@21m~&R`2q{r
z7cv(y7pq!FqtH@;Wdh4NS*!9DEGq?8v8-mUQMGG380*;AGdD0dGB+`42C{WD+VqfH
z1@;N-7a-q8hXczFCM7!scCqhf?qTj#wKe{;({(ZEv&vr6576E&KyrwAn0bUr;ZcEO
z%8v^y?id;66de%)&jnrxoDn!Ha97}-z<+dPC9r9@DsWEud4UVcFA7{@zs$U%a(PX^
zru;g~4dzYeErHuCcbGK&VV#Wov^nC-^Vjr_52#mo#A$da@JRV%fhWqJvOJ@`sG~v6
zUeaD9@S8SYwEVY+d@b-<;L3hE@S6TcfcTdAPT)NYB_CKm3Vc$D8Q=awXM+O9SLQe7
zcP52DSbhrpVu@40ps-p;;}7kn`?XjSv1LSPh$9h~JsvYYGl8n5HIrB(i9~*h0uo6j
zl1XHh$R?3oB85asiBuAFmF&P_ldgtUdMYZU(ihFuQcI+fNGl^3)-p3m(y^qMfJ!p3
zWMpQN_<hDf&1lHN$zKxPvqg%Z*J{}%@=09L<(hL^4vCx+H}@CL#r&I@n@Qn6EP0rD
z=|XW~o5Fat#VzXgDN#tmBjJ_MB%&nT5|+fW6_HPINYogi2_}hT(IpI(m@H1FOTtl1
zr)G53lxBOtbgha{_$2%iHm%a9f<BQ}MVqH0b+V|<b7k>gT1X;Hb8aA)foO@sRMZiz
zqliRNiF*?FC5lNDm)Ie(Q=)`KNr_<+!zD^dl$Piz(M!UaB&v)=1Br$bWhKf<`V9q9
zUZQ_4y(W7FiGL+3vR7hOV^)@^!cvt<W7Ui+Vw6{><x-yRsGzCU;%U}q)?wC_sK-*D
zNp0dJc2?aX8%g?CO?H%MEYU=wsRV_sna!BZnJt(tnbe?_#E1QYgoZW}Z8>kJYTHY6
zP)=9B+da`cNf0|TyGV3pp`;t_C+s~`(to7vEzw6}$`mn_PSL3aUApfp@pY4+p&!k>
z@&POZnS&$-vkXzSPvS?>^y@T}BP2#jETvtA_DqQZOYF%saf#9FR2)Np1(c7I7_WSS
z#6<Q<D(Rm^r{$e0k$$t7D=|$i<8+o8%$dwt60=q99F{n5<g)H^p2U2blkRc>b0L$8
zi&z#jmq@yIA8EW?(hr)5Obep6ORQjDDX~goH9J*pWLd*pE3r=H>m@cQr_DqyH*s;Z
z#1@vV%x$Vo@+BHIqovy=v0LJh#9@g&5_{<woFooN?2|}5JaXS;KdqlsVqUJudT5%`
zb5KU^l63gvKRQnykvJ-GQsR`vG0N#gM2j;(9ylfL3^M8N%&C{6{0iB0ka=3-44n`p
zu1b7dE6z&LGEPh`{^KGg=OoT6zrb>lc}e23%Afv`rItzBTV5m=*Cbw6mDia!m^YcX
zByO`%?H!4`%4x57An{Owo@&ac<B`N;iTFAa=y*c&_FQ{UySKzsiDwee>BzdEJ)EHB
zzo5OKW_Prg%va3UObXvfyk&o<l48%bj}kMUYw>ino1lGS|19x^c2Rb!`pxo<&ciDC
zA@P&_mr8D2*8i}_(j!x&AvQ}KW?UU3>lhSLv-|VxggO%G_(w<Pqjq8)Npz&ukxoa&
z+D1|xacdjPCuqsIn4C#@3LPogQ!!IB)2Q026SVX?TGln9iiEQ206P^k=*Y;PiJ6(1
zMb-YLV{&bSn$a(1XVZ~gkNjkI4rWd!6?5tMn?1Km>OI%;=oqrxrnOx?V>rK#0y?A)
zT}MG3g~)ek4jr0~C>_<>NN;X2W|n*vkl9yiGmAwF9Sz264u{y})(su+M{7<UE**Ck
zN>c~5?DZt3LnGnVVd<FuB<6d0vAmM-=va})`!k31>h$9~(#P~OZDxQOWQKH%pDn0a
zVLJKiSgK>0j-on>>FBJZi;m(tO6aJgqppsUI!ftq{L-uFC{6QoKr8!8udJgCd!)!x
zj#*wu1(p9xE1$iRN|LYDM(6MjJL;&ACV5p_b{$uK>M=}`>MS*wHJP=TwV5vlCatHV
zzK&KpTGOX|5Dj#EJ|SANH)J+qHrCOEr75!+vpKT`lg9n~geZGS(hZb0I@<Dd=(f(7
z0?{ug+wF8**Y$g2?Djf{9dvYLA@8K)u`Nlu>gc9ps*Y(oy6fmcn_I_F9oHT?dg|z<
zqc^RzuiD+JMjtvb?>nAn@ETQ(pR2XLwEkCX{h0lA3}6|^9K@vB!8|U>FdldM1#OCs
z;p`)rBblRgjAj|boWLBbV;swPCVjN4nn9e%#YxP`I!<#)xh3uC^l|g#0v!wKNMxtt
zOqN+XX0yyu`CJ|I*ypRH_`CQ|o@tA8EY`7v&OFbwT{m=E*o$AakE=B8TzEO{nL5ts
zIICl&j#WAi>o}rgwT?A9*6(#3)Uj5_Ivv|}?9d~>YrkGc^WK{26$|gl4K!o-<VGEv
zST-}aFt;+Pb{n@RNglL&6cBNz%AGoP>3F-=v75PvNyWV^`*iGQIl!d$RCP$lmSpnN
zZU@~bqWdgIb)3*~QpYhJ$LXLrpzS&AD74NI|F?s_v7VxJs3U0#aleI3HA+%@3jfn_
zj!szyvKTn8<ARPiG<_WxbzIW%v4niA<1))_<`pL8S6Qwxuj{zMa+7(BNo{U5H}0_C
zW!_WyeH{;!KV*4C>#(UoqtNg~$5U1NOsBp)k=dZ(g^ri(uT=6{N7inUvEI?qN~d1~
zi4A<9lUoNP(7}jh;B{-`qaNWWI$m^qVgJhfspA{VcP6#@LFbKD1_=$nbo}Q0kE)He
z!;WpBZX1J!I0oXf$79B4CSWFHQk&MzjShG8BnF6Sm`M#JW1%FuffVd1nW<Es+Ca(!
zk{ZyE)<8Oyr#ArQ84P4(&!m#>7sH9>Xnz^VW+1x(-y@OLfUCLj<97a2#Y3W|$YCJQ
zMy=LH?N1xyZv(jvG&Ir3#6Of9*kE9zfxHIt8R%!Azk&P)3K*zwpn-vc1_~Jn83-HD
z43s>iM;UM!Sn@!>B6VS)?1HG06{TgM`C(l$bpr;A$#gPZOgEESc7LyXXlfND4PF)>
z({I35d4MHopj?5%)GXRSVFQ&7{Ic{S1}+@Z%P@;Fi!muIZlHwnk}RbRlvc_4$_BM5
z%f)ic@&+of{L8G!ti+_2wf+%R3_SVbsA`}ZON@a!EY+D*Rl`6{<+TjdR!+akUYEU|
zO0qo{4QUNm6paluG0@1snT^^>f8kasoJ|efxvup!F!z+!jMkEY76w`x=*Br!wW7_f
zyfsT3W?KX8SlX-FSBG?J-;s-*40LAc!tDD0+srn)EAPS5(?Bnl-poF#wp=OM^sP>F
zHNe0?1M>|mFfho#U;~p4OfgW*Cx;jqYJfi1b3vL%?UV2IVFrd9AQ{0NX<!t~Xy$kW
zV_2xcSOepfU;SoGV4ujGr1E3)#Z&`_7CPn`sPSH(#!kiQEHjuhnX{O)nR94mvQW$X
z|A|+#jrEVTg$5QGSZiRR&}#^>*Z@s@i2+*1AD@h+2K{@iFJqD{XIa5qX<!x0YUUay
zwaK`^vChDH14Szv>mKR5PHEI>c9Vh42L2d`Wnzngtp=_dxMpCRf$cO)1`Zq8L2KAo
zc+(!oK?6J4cQJP}_b~S|so6dQ``Hhu<l-!?$f8h@i{T>%jv6Sn)tKcCA2aZ!hWL+3
za@@cP_LIz0DnCs-9{X99q)r({?a$F)0hL@Za8das1DDyas3gNX?Ye;*2Hw*t*T78!
zw`eh+#Jn<a+W_4{+IdbqqFFVt_=85nT?6-&-)DKid`R1(L1Jo9p<wi5I!x$bEErA0
zQ<i52p0m7QzEri9=4!9$Jho4~p@V3N_LfQVj?Vc}lH{X-PX;da(|#LBJ5ADEt<SV*
zOEen3uzY2HGw@yIKUjX!=|v^|K8IF?qie5m#5NJfL^>1cO~f@3&qPWSsZ8V>qs2Fo
z!bFY7f;<5y37LsZBxXs%q}rq`$(YGa-2R|ZNF(m}OQtr_cL_ZzhqNYk_BV1Lmu)A?
z=xd^TesQchT}(#?6Xi^lH<8hd+?>i}BD0C)0THK#$YSCz6VilkBCCmPCJLB%ci54g
znVU()942zI=TgbvCWgF7N>w!cV<Hddc~vbvU`Kg=6H~TpBn7!xh^eVIQ7jG<LM0c+
zXod;XM3@sN)5mnFHf|FZyNBsj`O0E~KFH5Sn;BpRnIRKbn@egCZKAM=A{>@v7G)M=
z7H3kk5+*uYCP^tyN;Ata%c?df^NR{5{xwnGL<19po<twotyMHp$wXxntI7%*YM7|P
zUR5R4OvJEPXFeSshnm$?wY6AkGwYbB%TiC(9<j_%siH=d&~FUYwr$rMn`mO<qKQi;
znwn^4V!DYLCYqaQVWN|X&L&!#Xl0_ki4G=On`mRAt%-If9=&vYpI127MZM2OJ#J}}
zdas?Dr#)Kf=xAcxe6b~;PPe?Nir&)P#Y9&V18D(GbTdJtbT`q%L~i<WdqeAKLOWoG
zjutMx!01Kuu+pZXw~0RNeVP4K-rvLk<@EBI!L$pRm}+7g?d|&nb#fbOVwj1>K{=de
zgN1wq%Sh%Z6QfziFvl{f4c+4&&pv@UkvWMunK^|?Et8fryj?U}{Kt14htKOXP0TW}
z(ZnVbvrWt~vCPDB6LV=N*=o--;s30g^X>lm<?B1<d=p1%84FA-WLd<dWHHMU6H8Sx
zw`JldX`@z{m@q}7(aBfRMl?Y}!)g<2l&@u3XJS3e29@voq;ED6`<}kl#5NPfN1Izr
zbos0wd*j${Vuy(fG?CBx&6>te69-KkGC{t}#BLVyJuG`o>|@!_JfLca-7=`nVH2lR
za)jlmiDN1`ZsG*{NtLAY*{9jhsN^ime<secoLBjREt;#gxih}JY~qTEpC*3MF=*l%
z9X=-Bo49V`hKXBrDx-b)Nz6^!Hx6sot?2cS!x@W<J0|X$=>8)7*2FzJp!&#$$>pAC
zdEdkX6Aw9|@HxvP6OUE$#KcqfXG}+7NzGoczhu5*zGl8*QUm7?v)mEkt#5oV@zKN=
z6JJeyqOJc}e&#k$CxnZhlI9UX^YB+M@y*0{6F=zW*-QMcEz^IHzqg5cv1QMV;<t%E
zbUJmya3Yoyv7Jco1e`dO(G$msxK6}#qU|hubP8kUR2koi<W5vMrzLPA{}u-g37tr!
zJh2l=*po7osl4<9k%Grc$xOve&7?`CaUv~yI+fVZWd<iQI<a+$mfs0Fdt_qfbRsiL
z7AEC?Igyn;n@X}fkwf{kF&eeW#l^pwxtaesk%uKOGar*$_Fm(llUo62<YZXTi9#&o
zniEm%4wVQeq;gtOrV~ylg4F-~rsGC0&E<rf*5q7`dTylKp;5;S%Lxyy-jxm-yiWL(
z`&n#ez!~X4LJdMrgn3fYP84G)%%q7IVJYgwlTS&hSe%O`m?c%4QY@vND5H|HECmg_
zf)oEbaofTj3l*KH<V0yV%D7RP*1Qu<U1;V)RVS)BvE7LsPQ*A--HFLgOmU)y6E&Ua
z>O?muYB^Eci3UzIbfS(Eb)Bf^M13cyyTXrB;`JL5z9zFh2~+=&-n~VaEus-kXRvJS
zL=$JEFG2EUqA4Y|pxzE`ooL41oJnB|Ct9+%Qb}tk+9;npP+QVfwsWGr6C^ZraH1o7
zCzW(|qKoqBcSLt5dN?u6iQ!K4bfT9NgPj=S1a)s1(O2|#V&Gl*`bkV5Cy0HW=*L3d
zpJf0wU>T(HCAC7d6tjoRp|r?-MZ31L=u2&c6C<g(N{n*ia}%RfRwMCCtyKzRG>2oD
zW0~Wa)N(w_1Scl4Oj7ymMEX=Gra3X!iFr=+-=|G?qQF)$%ZV9I%yi<#HGTI9QEh>E
z-rYIdi8-_eYKxZ}v^8JFu7Ez@i3Lt<c4CVY3!T{ZMO!^wtYTTjTudv6WhrwRb2*b5
zuW(|e@|nlQnFV6Clb$aVYn)iiLcWe=y%QT)HZnJ<+JWC4TWKfnCD%>SwmCsvJE-qO
zh4Er=7qQccT~2&+;=2>Oo!H~V9VhNOv6l{?5!!htE;zBziT$+Tx}4FV@Bt?d()LQF
zAEK4Ra+rC9N%>JHj<FwSo=`d6%R9w>nt4X$XPx+u{hUgu5C26cE;%u}l(<bt`c}v1
zr1G*8lwV<9Wm54P%XK<ku-sJnEhip~(5S&+e)i#>6LbsmqZ6N;xKCA1Jak5GQ_^!2
zFP(VAPQ}M`6f1w~#54Bi%oi%}{6@T@GjQ$5y~5WlZ=86`@{akQ`GHAo_TLwuo%rI!
zS2~CMBW~Rn^n3^1cHE^)x-m+N_QQ#vPWWB0UHIk1Zzs~Ykk*BLYqdXg7IGoB3lGmY
zUag4Sj*R0%64(EIdffks3-MVJFcUHp{jaLFNbCaLho#v_>cXKUQ8XlDN$x@lmXyp?
zsy4MN^4JJ9OXos*7yfY}4<#;SaDnEz%VbGwETaqATp*z#lM9)ZXK~>#<ylz@_luof
zB{^Kk$)1b(H#4`Yr4P;PqW2k!GO42+uE?gz$IQ<x;6g!`LQIVr#iW-18%wxA<4PBF
z7YufjX}REJp;{M<+l8saA|K@8qL=AYZSJ-y9B?7%LM<0+yAX0A>_RCQO1nVYF8f6h
z&Fi+XTEj(HiZY8ai!)2OP?CjKKHaLOXMAWMF5^O37s}Bz{}F$(=v7=O&t8E^;lD0a
zWUr)>$}IH!PE{9Z6dJ0r#JEshB{f{AshsxtIxf_8p^*!XU8qMpK#Hi<XB?w_f_Aq0
zE;MjO4ycAqx`9qk9RTQ-cM}&*r<U}{OtT|ea~E2;@Z5zLF0^!^l?yXnnB_ui7uvYc
z$A!Kwv~@+gyZ3ORrwi>|XivLJPpwe{F*jjU2N#GPUFgI@-kGI~3td^dF}thUOK%;$
zTu53*E@~!vyHH`6HrJug%%@|U*3X6hE(~#Ds0)?1X#-ps=)xeHlZJvCM>@m*bPRTZ
z`XN(?^D6%et%o+uh4C&-aDjZd3nN%YGASA5!f54VTo}tfP9=w*$w?a=2@h)%U6Eev
zlb9rvS*9?jx-gApI&%h-+8j(FX1g$lj$9Y^)1tXB&xMsPtfIA7Rd%Px!CYA2!a^7Q
zlCPu=(y7O5i)d%)p)F=EVJ>A-xXgv+>?>5V^|M&*!WtL$x^Qf%)_S~F^N(Y#3+r51
zPupv?q+uJ&1{XG}WE0C~7q+l$Rr%F@`gZmm%$>|#%-zgAOq%A%9$LzU8ugYx;KD&V
z3S78NrwiWt7hJf=a+rC<g`+fY?8jX=!*YU2yUIxyPO+a>2|a^A`B^Uh$2{l4c~$ER
zi+p{x3H$U;FU2JnF4OMxQe0t@Ty^1^^6M-&m^WRZf266w9T)Dp@QhA7OT|6fKjTL}
zi}omz`&@j$e8_y{!ef>vOltF##pTs$f2gv^@zRA?F2IcpZoGEk4Sfn7aW1@d;T;{+
zm*gipTh<WoUHIU_N7~Rw1>N?lRYD|bVwC(~9V?+nCG&iC;fpJB{p2f?<QvO(<_{Ns
zviwrDa}hh18?oJZF~?5tMjSWdx^cUMKbafx+}M^VYWK(JGFzpin~d*90yjt!GD#A#
zBxWXICUxU_dp}hr=ZU0X($rGAkxF@LmNd+?%ye$hi;t*Tc^QB4;ZR05GP#l8jRJ0D
zb|Z@$dELn8#$Rr9{jLAwMjkhIyJc24vbj-yrba_{H*&D&Wad)&-z>S^xRpavv*h%q
z!Q@eyc15S|720$!VbR#0i`hK$*J%aaDC9=SO|RVaXl_Kgaq^MocH`{}{nY@|;YQ4H
zjRwIY-OyPKm78uj*<C8ReoMD_A|579&CB9r`kA&H0hS<>+7yg0!)`>o5es7DE=OTE
z+6*u^J=cr4QPd5RVoZ|aZj@jz$t<OES}kSWDCb6Y3pp&5ccX$ETWLGG@vj>d-RSE^
zKQ}7TKmRmwH`=;Ug*IFo8RJHEH>$c(jf->FMDC!S42v3W)O4ef8;#xY>=Cu-b9-xZ
zJc7J7Cv}*0-KfVxd3}}!ZZuTMk6v06ccg<Qb+)9*Hg)4q3rRyWH=47zP)SQSTCulQ
zN#LAp$K!TzqoW)46|Fsu)muBY!O_W$&TjN^NA3?6jUCm+ji+Zsp<|A&Zj2f&yD_^n
zsn~<1ryIRkdaIo79;WN9l|AO@@5TT(7P+z5je%|qqJ7eh;cg6eV~86=Y2|c@ov&i#
z`7d7qN%u6<`gOX!cw&X5PaomNNSYvR$EVsPHzvDL`n@*VjWI0bV_C+zF`i`tbE2y4
z@Lc9?E~e0a-dxOfV=Buu=5*!^Ce_Y#W0rEWvz)^|S0(dU<}(+#u~6l74|IteOWoMu
z#ztC=@uHTwL3enU^O~fG=2mc#l9ep0+*qxWHEyhBU-!R6<+Lg`xv`ly%@#Kn+;{wQ
zUTiv`QTO24NuyS-aBO#DhZ{HCxar1DH+H#k!HtWNBNuzzI8PrjU+i^b?nv`LH_o}S
z&yD?DJmAK0mV?Yg%)?A-e8i2T?8j8{y0l6830nD_oKpE|mNRagRY}V|dY>D5Y-uO_
z7M{LJqZ!CV|82TK{Q<7Han+5>>>bXTlw4!K&YV-lpybOpN0O&8x9F7RMtlni=nFN~
zy7A79_q3BVm-pOwLOY=w_qj;P12-PBKVm*s`9g;%wbt>>jWxBzy)@qEZcvei7c4KC
zujsD;%NyofCbfyPQlsZwKDhDIjbC&;{?tD*Ke_Rlg_18UUzy+B_|Eb})s7!q_&1#j
zl1Fu4YEP>WBKgC`SQcVik(`D&7UHtUV@`^fltNmfgccH8NMa$81sa_ay4{e}LNW`<
zEu^q8f31U(6hHOed80c{ktr=?uu!OlBu`}_wFMFy(pX5VJRM7V3s6a|{30Wdm5E8C
zXJ*O5{EL~@LN--P?Q>elWnr9!@fQBJklR8v3o#a+KG*)Spj$93<gt*~LOu%{z9*3u
zI-hV*ZGH;{xEXmtmO>UZmMEr!DVWqIiEZSlZ4|kpn--iFN?Iso!DXRNH_dIqvOt}n
zLYDql9m8WGY=MLZuLU2wUnMq6fElz9Qn}}w9<97EOA!l2RZ`5N-*AacvxG`|T+vHg
zC}W|Dg{l_H(uO!=q^@WDo}iUuFVCc~f`xyTSF})xy|PLk)HXIf*Ct)jFQwF5)-kGE
zs9~YEMb84GriEG-y3rQ5P@9&NKf0}jx)$hDGSoGiT9JNY^_caU4J<Tdp}diW#_Ua0
zQoNo)V>PqToOX}8MhhlMOAD=(w`OT$VM(1xV_M{P7TT+&?m)YW@=h$BEp%b&s`6#y
zHQza{hlQRNdeJtjW4PWpDyE2fbX%joYInam`&#Hnvt(hE1uFKpFv3FRZ~6c(4rC5u
zQte<1LzEA-FpPb;N@$6`T^Cs=XrnERu|R#y##)h=I8o=lGcUBYwT;tP^o$d=2^J<=
z*kNI(g-I4BTUbrI>l|&0g{c-+T6i^En`U9Ug#{L<Z^H}=$D0{fPHPQY88hkfT~a~A
zESA|8=BQ+@g?Y;7TR2la(#(2eETqY{F&0@^%(8^Jl(~$#oVkKYEj_WKR?$A3oBlc*
zuiG1IEUdM#&cb>N+bvuxAve%Izg%`~Yfu}KjTSa>LcW=0i-oN$+nCd9$Dyjqx#hm5
z#x4uHEnKj0(ZU`JZ=#)hE$pM?qLujWj^{k=*iXk!e{sUX0UGzP;~<mdkcGp_kFXqN
z9;20`@|?$wlRP?2;S|eh<{9Q$=6@E>v7Bd8%i=HOB@35n(JWlIaD^6UvYjHJU$yY{
zn(Y0faOdrgJWpfjKkXY9Zd$lSXRUnE)Ju)t`c>p<OwCbR`eycB3-{=_@S=_v_boi2
z#q?m02M;YgqNB`%${swn@WeuT58%O53(qWkr|oOuxrG-NUensJ@RGK^g+;^TEORE^
z(NDYhU1Z%U7yi`V(i$71y|W_M-pz)h*$@3aI~6}z_^AAoh0n^ruza=fO(l7*iJunr
zDnTL-5_|C5!XJzJ18D2)!pY+bx-A~d1G+yRn@JLfC9VhYR1)8V1ndb_vh}Uj;Au<}
z50ZM2%!6N-#QpIi&(qL3hnd`i!^<TNDLhE2JQa<|o`#v0nNHQVJEvvvAfpG-9u)RO
z9!AULL2eKJ@gTDYSv)9r&Zf(fe|aL8Mzb=rF|#u%%;7;!_FT-rRZb5l=J6n}2l+h6
z@4?iC8a?gUs;tPr+fl%S`%^XD1H*%Y>{KkoqA{bG4yIsA56+~rsTmC>CqAar0~d>%
zX)!%aFO%BSrCOrj1DlfoGsp}v!%S+^_OdAA0bTbl=0R}}vfHAl2TNCLiMPoT9+dQ;
zq6fQ%2wISYHN?Y!DCI$E+T{WfFXKU3_HxYfDzCuuFRvDAM%Rbw8h8~Cs(LWegHaw-
z^B~59<{q^0VAW8wx(AIsXzW1^4{CZ)%Y$brbn2=dJ3&-!b}H6ksp~;KmDKm30eeH0
zP^a!D9yIl!?K;`agBfSV>Zr);bf_cxfrQS7sYFW;T6xgdgMJ>gOYFS&Rkrq^4Xw{|
zqOAvAS=uovY41S?_Kqs)<UwclE-Il8;ncF52i-a8!R)DOdwI~Cy^l)b?Gz>ZYW+PJ
z;KBHpkzVn%m?Q%|7{m$rU=N0{4`mKx4p+4!JfKeI)NHf|V?0>n!CDW-dO%N1%<y2Q
z2ji%v2X6+O)aiXeQZa$rdq6_NB$mm{DYSp8d>YGi54Pu&)NGaqvprZ%$M0~_=r5y5
z9(|4n-)7l!J($NbpY{+I3Kw{=kbRL#7PBnzM4l6&2Fp~w+=CVDE19cQPW|@h4KmME
zmFqm9w;S#B(DgTcy$2gSpsHbsoxkFXjdaw<7n_)yJ=nssmAQ?%ow<WaEol|)VxRLs
zqlMb*!9EX6FPvWN_uzmBsl4>64IK2~5Unc@-qOjzgCibX_uz&HN69bgS3S7q!7&ex
zdvJo2b4;o_$#Tkr(<(XR!CB@1c~JkgM$OK1azW)6J-EbvnR!L!H`i$oF6lc?$ae8P
zt&4|mdayUQam$0-w4}4NDwp*;G@rlp_b22N5AJ$E?P<8ja^HgoEDxEFn2(v%#`nW<
zbw~Iq9UvZ%JZF-;@ZhELS021pPP6fjcG{y_JTKyV@!o?E9(?p5Px7c7D;+;Q_{9F1
zN#Pfkugq^Ad{_Ao7CoV)N&Vsp{$~DR#_}SzH}WZQm~oj@eDPeTX(sR@r57n?YqY!x
zy>PqiM9joqBw?W>DN8ahlCz{xIjyeMfAk~iMH(;YdP|udS_UuDdXdhH^gK;?(WSMd
ziBH+(pa${w*crXZ<V9vLXkBIT;x8|@53z6kwz7JW%}YP+QJ5x@-HRMv<VqK%d6AQa
zJTHmzzrD!K{tq*c%GZ{a`PlQTq<|L%*$b)U{%1#&a)%c}x%5J3H&oJmhvxFq?@P*(
zUi6IPaeHBT;qk)j#pNzqF<JyK{9cTYwrwvOoz(PShWoz$>xU8W!hEO)X@{Th2r)^*
zUPQAOR!I>riYgyJ(kSjl2`{LV=axkJ`c|^%BfXRtrM)QQMOiPZdr`xSax_0)#CUNo
zrKf@y8xHF9%M^3BI{sy^$gISqs>)teVXw-prt;_S^wKNsd586yUW}Wj)$$_QVg1{4
zNnHwQF_-@`>UvR+HjNKieW>q6121-YvD=G=w3uED^3wCjXzazr$D*efy}W4RMN==D
zdC}a9=NlXyypih$^yqF2FX%c<OJ*x36<d4JMtNH=+9_{OyU-Q~HR#9_>BOX|b*5cN
zc~>vGv3FNV4;H!*)Z2?8Yqh>!^z)*R7gIOdy>m&rLe<|3dU|(&7XxW~6_6<tisK0-
zbuXvOR*%2vL%bO3#au7udFc|U80N(US}ykCUW{NF$)ws*ETg>`!!njRjyawgX){_*
z@<yH=p6taGFMc11?)fx^US32m8lv9pQ@xnx1qlt)y_lhVrWdo=XRBlm%a6TwR2pNx
z7dvRRU)9MMc(KrnMP86E_F^N;66R7bmU*$9ood&5vBHa$TwKLm!(8nJ^}449H2l1k
zXdQ>^nUrks;^pT5tKG!mW-qp|Y*lTx(J`w$cOkLUOK(Gxw6@9jc(K<D_|U$TxsOi%
zUfl5FrWXfjKlkE{7iYaV<c)O6I86)HPa`?(#Su=(k9u)T`EiyL%#&W6Qn}-U45!w=
z+!O!NQQ*bN720)L(u3N0`Y-*UM!iHXaFLRWESKnLRml}EuCiZKNw+x~bzl6nQQq?6
zwiiFV`02$RFYbErj!wv4-1A1dN>ZnnXDs)b54?ED@`y<d9((bG{i#Z5%FpTe?Jiz0
zUou}YUo+n@-!iG$vLV{lZem3*`N4}z{f&=a`W-q+!zV93EC0gsmHCZ!GnF@3A`X1e
ze$oEs#UI*-KTG-&5zB`ZT{RjK`4F2u4l}OG<FUl|ApuK5m8TjP87r|5Nqk7kVKN_5
zvm{q-Qm~|Crt*P0AJQmkRBc)x(y^ykNujiQ1|Krgbh7E0d<brKWbq-h5A>3gK11Zo
zo?2Ij{I<rC&4=thRP~{n4>^3u=|f2$O8Jn>hrfL=d@y~;?ZZDl<ntlF4+V1Td3?z0
zi#)g0_mkMXS8h#ftc@)zBuqAkuIc3z1$-#zi#!5GLm?K;hbR^YQ~a-%ssGP+X!Mwv
z(+8IiAs^!0mu?^3I`q(FTVys!EG~L{@Ur-rekRr0J_M8peW1CbFwE15X3_);`%pxA
zQ6Kd}k9<mTm6Tv9T`);$AIkVp$p?A{zpRhm-V=Eu{$C%;(>nR=sNlop6WaHVMwjx@
z^jLb916tkvT16jzb~5Irm-{;!m3{c!#i&B-xs#DCuMy)zbsq-P?By3Ve5mO|FCTjQ
zP|JtfK6Lk?hYxjpsOv*JA2!rC>iO_Ab*LGAR#u&)J{KGK(2%7OvoW&?vni8WQfId2
zJ`7(fX=uUHlG)0K)+%q~LtEwlrq}7?+SB}$5FMBu=`Elvlyqk4;zL)KZYrnFb;(c3
zo<8h&8k20ao%5H2ihXE>`_SKq0X{4lruAd~-A2$N`%0VL(}~Mz#Xuhh(Sj$8I=?Z}
z>8@KVImCydJ`D3=QgIPjC5QV^yo#hz$Z6R}`7qjt^MT0Sw=q79_2GbxgEq$bFy4oQ
zejM^+f)5jY(ENz<W0DV(eK_jFF(0P*Fx5vdOT;oCrui_Pw$4(=EFWh0Fq1yzak3E;
zwC>*%K7XOn3jm!P!n0|eRJ7-Cv$@Q9%=yd(%!N#v&LY|$lrN!`|3ss3xeqIRIKEOl
z;KNGVSo!5<AGWZpqQi}44U?+Y`mj#<dX^2$jXrErd60U6`moK1{XYD;qo??!-}+;1
zj~w7O4LewN`ml>-H*=4w-Rr|X<t0ApG<v$&#z8t=_|WQ$e%Oa2bZWY%ljm5aP5P{l
z{GuQC;e-#beR$);Ngq!6aEbPFA5Qyl#)toWIOjvZ#>Vf&Q9r+kvp#g`tZk1Y&iin|
zhl_N)Occ3ei-to)ocktyt$ySe*<Z;kKF~{$?)h-vhpWEGx9Ot$<TW3t)7Nz$Zm`^B
zQgX|O+w6B#a+i+55;|2qpmBY8MZ4k@?GYV8n#^C^rmx$NX_wol(eQ-jsSnRso-<!C
zUoxo;y|?G}hRB!nw?4e{A&nnt{W$Cw?|t}02dobteE8@?mIAV6H!(DY*mX^Q@!>12
zD1T&O>C!>PzTz7lv%4HLeD~o8`%mUCmH%e><3lWeq~!^B<Q+<J{D|vEJf03sDk)2R
zKN7GcWF}%JW+q`$OM2%LF_|C9Rg!`wB{P*Dsa5{tu$In`^nT>@BbOiWqiA^}gC80F
zxR@%6`ixQMx=enYoTAY>%uKZ}wJglPm{iQ_M>h8C%p5B3e_l`zw7>nJcR&^LBex$^
z{D(=B$B(@1`BakMj{?dIve5gZtOTOk^ui85gdg?&XyAwRL-)h>BjAVOhv|pck4`Ox
z(~r47b+;eEk0BQ=_*(7968nlrSbli8NI5-POZ53sp}&|s-}d_>*F2}Z6+u5jepK?~
z@p?ztk7z&2`BC1F!hRI-qpTm)+hpK=y{JF(Hn}2?{Nt*LVtx>dGfVhUlBE>0G_wqo
z+T8vjW}ej6r1w^!-6psE*N=*RZ20Mz8&A-??C33#)TU%cqcVMpA65OR=0`o+KtCd{
zxr?ENN*J}}MB(cG$jbm}sNqLV<+W&6VXwoitMWLRbQ&woO|79Hjr<tx#~42v`_aUY
zK7RD|qp2Uw{OC!GLpyUb(cF*mJGBme`sd$n;m7lNT1!7#v5>d+qmA;meza5G-XHk|
zSZdIb*5?ha6HlZwlcv_ikFLtQv2<tl@FUM+K@I3PPka0E;DWwko>r-|M(?ld=SP29
zY4gPZS`{<olD$UsKy7#v_dq`e`9WRrZ(P*NXY&lEO_R+t#E+pY<il8oGe`I_l4X>t
z_3YHf(q#SE?#B+A2RixtvBe*Gm+VA3`P1guE;joy*^eoHTyA2lpfx;7o9d6eC3~SC
z)3`X@j~Og8nRA)5{Fu!$hZz~`iy+SPV?HMfR8HMRXljf6Sj>|pU&6AKxy+B{DxdI7
zuH@OEIa$TB+K)9XYw4h1S?|Y2mJLj5Nf%K!DL*$#Ta-PtZ(8B4er%(y+}JL4SyJ(S
z3c1sdU4HEIW4|A}c@6CGV=o;t1)}LqxzvN@Qy!hJw_6`2jdg&wLMHu0wEZb>bdR#;
zVLy)eajZ(BvNn#A_>s~^DjUcBk-xKV{CMlf2|7{uamtU=bSU}pg!ZD5+8O38KhCoJ
z=f^oe&a+ePRX;AUUu0flUS?ilQk$qt4&pT~UT5C$<EE;u{4&vP_B$%M>&HFz`zm?h
z$3x|h{P<nppb0*ul~BQ$^-_OE$I(kYbW1$vWqHA*g?h>Iiuu|PSA)o}^JsHI@BH}b
z$1gv~-}~{wkAuUVADN$+pP65nUzyb4n;+lVf2br)dh@p*e`w#fk<3Oc8{2Mbv2Db$
z>AI+(*I3D|lD?m6y|uVDy*Utcub+naHWDaL$dbrLVwNN-ryddX-8?xLQ`oqE*+D%b
zs51$Dt4(bqjg1mEsGnh48|iFVHas@c+klN+HvYDe!G_Ua%V;AL&B-u9@8`*E)4wYs
zhTry+h5aukg;`m$F|#vs*vP4B?_P7{w(*aRC>stNd2CSE*7thk&F9o>H!sbh9qGQC
zpILxO#eyt_m>SL1V~s*#Bk)EPTPH4@lagI$QfSyPl{;;?*xf3jF1218KKf`Io37Y2
zHNTCbHj3G>iR%RQzYW+3+L4a9Atp(fCE7+|mLe+Gh6s99IK5dY(|nu8rMI|O-k-Fj
zjZ!vf#!B0fUbvM@i86NNz3$W{IMZKxIUD6|RIu@{jkR{<366?3D%luhW3Y|Nl-Ou%
zqn#c3URKpcT|4qX96g;^&5k^y7sIS>qXtV&W-VrIW*sKAq%W2AY}Dt`8`x;ZLX&F9
z(#S?*mL@81YSVvfiK#(zm9((YQh6(u*333Gs;`VZo!8z*2OC$P#`Lt&k!JXBQDKaT
znJwvdSSR|#A9`mSU0Av@yD=&6Zlj0t&tch%C(@hQhe^}y%hHe8-^KuzfvT47z74T4
z)W%91t85IjG2F&<8#8Dx8l#P1PGF9-F^Yxq(Kg1gk7bTi`FNJjpXEfBNh+UgV~X;r
zHl``>Ix^u*n|{t%ETjYKo|wfxn>mL$mpP9)pGl1u*pVw9B#U?~8ga3WCCZoDSjN7b
zxkBalc0?Y@Ty0~G4Z7ArmnP@|!wNsd%87EFjrBG**jT<>+hk)i%SPt##8F#pY^5F5
z#(p}P(0Xew=`q03v+V8cRNTR`)5b2A-ON4Ay-aFD?dcQg;>?GqG3h+!AsdHnGzp+-
z07vNLPp5?dG6!&sPX07|w8PstL5peQwGDc|>nR(jZQQnT$Ho~OJ$E^-+PG%ptc_C#
zlm17wEsS$CZZqRN^8)iC^AeM)F59@Gd{Zmqx{Vt)ZrZqI<6&E)|7@*XL1RK&BTGx;
z=fc8mTN+kNgWjlc*T!=jFKpbiBQIE>;Xa*1ls{y7#C&Yy3CmOFGbXjK+RlhtV$)sw
zmo{F}LbZu}3ccmvY%Al9jkk0x@G{b3ez5VLeRc;)eSto*)5G>u^~J_lI;98bu~~ex
z@!dxJ01^c7!^TfK&j%1Y5P6UBFB`vY{GmUi&tmAm!LE~J=WSZjYmtu4`*vt?0*D(x
zya34QRo?N=X^$2;=uOV_k7&XGmORlC2aqIyL;=u?sp$>jG$QqpP8x`Gt`-ZmD;eeD
zhmI5hqzoWU0BHk=*{7!pME(VB+e1qoz_oGOsA1Y>Q=|(ZeE=B(Xi!z2?m@rU5$TmZ
z`KP1~(p1dIIlbYWYO@6JR{&K4s2V`l0I~&O2H*@Jdm!>)krqHy067B489=T;<T07Q
z1IQgf=R>0P_{bNiaT~PASAam|i$ES`US>XKerACH3bGVpQcHTK#u12ogOg0bq#}LW
z(gQGP9<s`Zl|?YFPIpmV0k{JwPm2(M6##vI@dn@v(9e=a{Oc%5Bl-id11J`Ve4V73
z3<PjAuBXStaFFLY#H2hNKs0+{W)WslReL*SRB@gHO{7EsCD}_cOEb$b%QC4=Ihv*M
zg5+OXKY3&&+7NzGkv;uINpGpG9Ef}uuIlzsUM&!Ll&Nt5w8mlrs2)I#K;)ZOP3Ede
zNy%%m*JjpX)@9aX)@L?gHe@zp(unydMmEHnRiaq{%>&pFz{UVt1kf^o{s9aKfS#di
z6+pWH+6T~@i<Gnpplu*>8IXQ)Oy8|{psh1NbPgcje9<uw`306v0f^0FU@V*7FxG_@
z_J-&hKsP!BmS~%s$?gFx%piIMFekI5p=SWSl=lvxkMh0&^izKIM0j8Tg94aG)2GcB
zz>okY1weg7>ED>40Za%)I>8PLV0Zwf#!}a4K{q%?1R}RNMlweQFq(yuF#(KKJ}!Xq
z%IU7hMEaEbj-uZqU2SRNlLMF%z|;Vy@n^|rF%;4;or^O9n8`xPEZVs2bC`2gPXB!^
zpydtV&N|1s02T$Xm=4$g99Q)MU-jJ+wGCHveWJFMlVwb*S{}d(<tqbN#lD)khPhVN
z(rdNW2QYHH)-i*gWv9I<fX#fd>udm90(iPoJ4l=FvbHsV{G-infym>)+XL7U06mqw
zlg>gljrrH<u)^It`feu4o&feL-xt7s_5&)R=^Wx|9%j<SkI+%WevEmXc|z5mWH}YU
zX_hl8-?Q7;)5QKSfOCP!*RJx<Vu%-b<}Wf^^pAfjfXe|~3E(Pig^l*L0QPh?=*J!C
z*3xzM8_b)`TTE(jo8=D8uuAT+csm*o19%j`pK^#*9*+ZfLYt--78S$O0G`o-7L8NU
zcuvQ40Bb^68^X%~UeW3bVrLMq19(G+Mi8xncpJbwIspceHHh~Cd<Y;#5PPmWJ_hh9
zfH*<K4dQbEUjq0_r~LpLCXfC&)9#g*e*Zn(@PXz_TR2?{^LqfqAIzTt{9>WxH_M*@
zVg(}&Vlzo@RFO2q3xc}HCJ%x<J~KfO30V>`6Emqc2}@FDvLL-<IWl^(zFPBVF)4#c
z6-4SF(gcw<h%0@x-mA1xMNL|SENAU>oTO)hnSn{oGSa69kvWJgL7ctfpy9yrxciUC
zCCL^<_8@#g_=Ct1M9v_zAfkeiS4`vzqF@k(f{{*Bf7AS2(sBp!4-0u7nm6`*%={`Z
z5Cpx3f*R2OA@or2eaobOpBzDmAY>4F5Y!Qi{tKe%4}BJ61S9vPsve5mh#@h9aB@QK
zVsQsyv3QtXReLyb)SR5c4x)GvC4wLi1QBE*53z)q(LoeuDWYnN22o5oy+@)Xd&M9s
z1yM@nrCG`ZQI@5g%F72)LHWNy{Fx=`<7lWHL@kw9VW}EKHI>A$RA<%*qNd8}#T~VS
zsKdp&L3$HHWI<@C$5Nl!fZ34QC<vNiYS4s>O_@||#?qYGA{e<VM`7zA+5|Bnh>1b8
z4WeBT-Gk^6MEf8*1kpK&F0^qo$L|<Kr(om@CiP~g9_;jPYPu=eHHc8!sBS^fVOt=T
zm%hw?bw}RG+%t$?K@6jhXd!zC(I<#^&BRdJD800zQwsMDg6{Ux7v6rs$b$p@nFE3t
z$TEmIm`SxmSR&KOCF!$Bh6gc%r%XPQYL$-;VvO>!L5x#AK8T|&BF{lg3Sx2)>x0-3
z#FQYW2C*oJ#X(F9VtNn@XqTh?q>%WqT+rW$89@+dGG_%bn`I7@^0_SYf|#$86UPKS
zn9yNCIOm$kE4%5n-b;d58^pRGmIfnl`KDnR%km&rsAMI}D&}hD8v3lHQPj9ZH$iLZ
z^-%}?mDw1?rXaS_q10S#4q{6XTZ2fn#z8M$qc8jM3Phg5pi2sLpLcr@L&_(kIkbL@
zT|w*)B0~rnL)a6<-XQ94aC{14Ul99)xEaK)APxj^kPh}B{tMzz5Ql>}li7JDh);?2
zM9t(8Iv6kMN14Z%R6HKU3HFoBQ_R!<zxJSbo6Br@Nk13F`5;|}@>~dlF8a~SLt<7r
z=%=YJa(IbJwU_DSqx>q%HQLQoa)Wl2kWI~Q)6Nqz?$I_4;!Y5EgJ|?dr>l`o8#)6k
zv<I|{UbkNcLBF6u@-T=;LC`!rW|BN%dCGhi#B-Jxs+O)yZd|6l3WE4Lh&L>6neUjC
zzi0Un#7C9PTqQr#q6P6ah;Ko}3n6|8-)X6rX!O<K2c0CJYP}napR^UmYQLDjnSYqE
zLXn(?*er3FaYLw)Ku|cPhDZ>iWd}(@W+EmP6Niw5Jt;Gp%9DqXLivtI4r-Yygw&j*
zVWwrKW2R?P8-(y~T2hisA!H7rP6%~F$P&U|Ayf^aS_oM~$QDA05K4xSJ%k(~xI%D;
z5Vx<$$&3mi7t7zw+#&qKl80F!guE>InE9DB?!@7uAbTOErt+_Tn`#|g6igX{&SI!G
zW(ZE@r31PZ0{uQ9b({-@P%($$3Bk+aV^ZP|!B!q%35FuCAf_rBD;z>}2qZKV4xxzh
zq9GJxFRqfT2}G$7N{3J;gtGMiLsd!L3yGC8iaV#o(0Q_42(cc>^2`d%f0-4Tm6(;8
zRhZP6dgamb#?W>Tp(agsh*_Q1aF@tRpntGyh0tt(tQ`Wqtv9)4f7mbR1-bP?s2{?p
z5Jrd4AcTe?^b4VX2#rE$972~6x`xn%wpw37Lz@tqDsL7-bM_X@mMU)*LTlyJ?~%r8
z%f)sfv{!itmX0BGQb}iCht!z*7S_(@r&kAe3!!@`@(y7dda(3l_6ni5%KL=SSNW#-
z;cQpLfDk%U&)5*CW2zit4hluys603XloK=z31KMvFy?UP2<Av8wV_QgCWNs(otYuf
zZ#9k!VSES^=yMZ9#l*H3Jd3%RMobLhMM^IXlR}uRd`bvYl}`&{y7CzzJT0M9<5?lh
z<|)&gtLKC;mwjFcOIhYK7cdtx7cpsx7PBk~fqHdPk%ncQEN89=VWn!hDumU_C+Ck|
z7sC1w7KE`dj13`dqys99JYj4KVRH!gLwFFvmJqgva5jYhLf96<_7Dz)a4-~kQQHpM
zE)9*HjT7$VA|<=%+`_(xxtF<*xu5wnTXJf4h<3lG;&2E@Xg$P;^_DyuLWc1M`6w-#
z?qVOK4M(fxiAKW-mXjfzVmZw`qiP@Dm*+w_AHuB=ZqvNAkr$XZnHQOtLb%LAwO2y8
zs{C3A*V%8Vq<Ppw?*XRw183Z$-3j4t2={3HWb{%u66&5oeLs3s7sQ9OW)?esgzz(j
zM<F~8;R(%82;b<mOeg0%+A})Wv5-Hf4bA?N`HK0P`G!et-iENhjzL1hdk#M^KZfv0
zwfRgdko~Jlj<uEV_t^B5P}K?A-ExJ0(T+VqOBF`yFn)*dhYtL3<dLOBVLZ8_$7YYi
zjLW2|cr5Y5NWhX%<#)zw^!QKWFp|)uCPX|bOR_MMv!r0ARJGYs$rcl}G+|^3<F7E%
zhC#)2%=An!GcYqUGchwWsWCl7Q}cx5TPQ?N17!^(8%?K<k)4@?NyVID<Wl}OOYU&w
zQ7@{>8%Dk`8i&y&jQn8~2%~5i#lk2UMxijQFg#&sVMK+oVw&a-!x4^j;GF4`C&xQU
zL>Q72a-GFsnqfFq?qVtMPN%WbKG3~k_`>jqLGQ^Nl*gpbpY$%xeus2Bj5VocAdCzZ
z4H|+hp)kTKiDoIxEE2}cMH)3L9!7~Us)td7=5xPRGK^ATlnx`_(ZW<L6GrxQvT_(b
zHfd$U_|aXKW0I6-slfa<jEXFkRPBgg26gGILX#DuY8cg6$YWU6*OxVEHQv_~rSQ}W
z(@$eN3S1Yp!&o%Ns6(@{z^==z$E0F?mIlm*VKic)w^LG8(=eKa(JzetVKk?08b&AD
zH2f*l*OXo?*)oh)VJuzhXdT9kQ3efdSlWisj-|cIJA~0udFv*HyM#ggVEfW%?bo`7
z5%+@Z#w6)ZD@1uumR@1>X6d8yyKnRwkM(iI^#NfF45Qv7eOefU!WbOJm@vkMF@$DS
zh;486n@b!dL%BFCjNvRJm?N1~J1UIP?DfAHR2&xub@yGGPN&_5WIPuqFeipFiG}jX
zVN7A4s**vKjOjcxGnh12GsBq0K3gSoSmrY4G3V3acFv~8i^5nOM$2flipCOJt8~Og
zBV9C>(eWF`oiOgweojL>V@DV}!&u3_DvZ^%bFyz_u4S%cQseb38^Y+@Nu%N>m2VDX
z3;R~)HkEIuBP+M0mb=23yk9#V#+fj7hp{J&y__6jQq?||{b3wX$w8JwVH{RT&;8m_
z<;TJ}&VE8AC&M_!9#vY>1kZ-?AMNcejjR8Ur?Y^zs`%eG-3X|>f)av=68oOI#03s;
zPj>?sL_ktXy1NAFkZzQe?(Rmq8wrsX>HdHA`~A&-t-YT0%sX@T*^S;adnQ%?vG{l@
zPNhO#MiW25<YX$2`?E?>!qal+vR3?TDt5QEh{$Kpr{V%vB7QLym*|(tD`dmE8Kmm3
zR9sKRJ308NxFHXOg{CK|c$$ivshBs(dMg!w%L6tQU%ss(%Y#(>qx?=P?$Ym(_f;;h
z?@7ytEIuOtO~qqX`yVB>wMBOGnLM)QSyNYO&$;g})X{iJd6kOSDtVKNx5{s~uzW~G
zIvcXvki&*?tu3osSYm0W^fqL$A^j3#MlutbnUpY#4O!{gR3fhpZkVpg?-x03|Mz}k
zE*o+y|Hy_s^t@y~m49qQGydL@-v-!F&4%hWd}c!d8@{rkgbf94*qYn)xeZ^~ARPt8
z<unzdzc_6uY|~F@5wa-xC0UG=s^XN2mvVe<LrK}5KTXkYmT%<awiJU6M#{HjDH}>t
zq^gV!W$7B3r1Fh-(o8ng&0s$Mz*x}+Gu=W;m`o{0mbak-<@kHU|JtY6AfKv4Rwk?1
zV5LZ2l_I@#Qf;u=P{W3rHrQ>DeGJ$zx~Eab?sM4Sv|&vrlPoTZoAi)g8+;T$DQ)WX
zGzR4uKG#B|NZ5u5J*twJ4RPfOn{=Y6F3oD$kY>XVHZ-*1_ljn%hN-rk5w}r}e;qj#
zdyU`8u2H@xC8=jaeR>0xtbJhIecRlxhN+P}c7|vdG8r4&AZ%hoQ%W=PM^f_UHndQF
z?5&}-4L{j1#fGUiw6USB4Zqkh)P{C8w722@9Ah6FI@r+BhE6tgw!yW^BqOuQG;s3L
zoOIZ$yTjN;j@wF2maaB*qjy(H4;y;Ydy&0Wo~?<sFIV1=lyB*8!vN(2Z5X8dXUbr5
zh)ti3P8tuhVYm&!pmCB7BWxIHLsA*jL^&^o<&VI|Q8x6+VqBCkj<!KKh8!z*9OYMX
zJSnvk<j=yp^~TbZP)3=X@Xj#VhMiqZaagC>Fx`edHte-wh7B`q*kr?jgi)4RHY}7i
zusGW$6G;7E{+paf`dpRFqs%84*sv;W{ofk?V6w_4^9bvoT|$a1wPBg^<u<HPzS4$@
zlk~5aWi`V!<XXA!RGalSY*4<@hI*yU(s(nIEh^t?!#3sHDLZ6;RkF*5-Sp*C^)Hei
z`}Wx&zv%6k$A~q#N;TsF8xGoV`H0oI&Nv`Xiu~4g*oGr=S{)eUz)>5H+0fjM7IqxB
z;e-u2?Z{=vNgGbt@XChQHk`KMj170>Pw_UKwc(r%w`};^hVybw+Hk{$n>JjOWWV-V
z_2jbCHIYj!Ubf*1MUtzOYc~8vxvugJrOoH=q`kP4R`Y~5{EB(O74vNy@?A0iBR6{~
zb6~$F{&^c~&EJgoY<OV9L%FVOSX;>0rH-+lF}Y2_lt*%J%4u3_t#2{O8blu3@E?;W
zq$E#mct(G&k{33-RK9kg@r?~{ZOCj#7CUOg^3H}2Hl(xTy*x22rXq_C!t{1zup^@#
zne2L)`_q&a`D`))x^&+X$|9Yz^1Rft+Vvk$vfE*=W6Wm9i)L0&inYK~Qx3a6Hc^v(
z#@u#%WJh^BD%g?7j)Hg7KDXlwJMz-=krIAP`NWP-Rg&Kh&_5#!{4ZCvt%hiY>?mx9
z*$#^xMeHbQ$G3KrvZKrx?MpizW;Dys$HiEbq&Vd(vV?3Kr6l<cDQ#}-HprC6rR}(y
zSD#C|j9ni!OO~<}&5k6BLFGm}Ov+_wtYkaN*|Av0(R!LgenywExn#t!A?vh?cBI%5
zl>=o*CA&VGw$l!m9hL2<Vuw`@OTHxeDZExXW6A1<s&)vg*-@P$o=UOF5mt#q)^j&a
zs$|>TcC=e)h}hw=L%!5&$E6WQAL%Eh7@!302&p7&*XN#=s$<DUVcf2dt5(B~nsy}Y
zknpkJ^uK}5YT1z{7l|D*EqL%Zt&VK%Z`u#!cVt~s!td><N3TydAcxM(DOC;WjmXBN
zgiY*dN^ho;A1N<~8(Z4Z%8qk(oVTO39Y5JI+>Q};w6UYD9o_BdA$x5{dpkPW(OHh|
zEmH?MYd4J@Wm5}Pm%n@#&y=!bd-Ci#)-HB*wWFJyDS6Gal-X@EuP>e~eK>1>F!!{h
zmmPiW=x5h^d-k@Yk1W-!MR!?BZn4SQwCxrdqPf4c@mmJiVLYYvzNX3e(gWpUvsnk(
z@iRqyupCe2zt}O9K1?Mtqwz>PM%l5<j^*-Qc8sxOiXBt!7;DEkJ0{z4eW5{mkp3!X
z*=mycl*ilk&ZV+UpiH!562-GklTfx_`nyiEW4ayl?2w(EVb{B=-kD+9w#hP6E{{L7
zS>$YT4*44?Rlif_%BA?;EXDb9k1x_vUuX;L5H7T15k>qDxt{4u$fYVjQ_Z@<jtS?D
zo9x&u+i=>vQa0n1c@?>uTtlw4V;x0m*W0myzELGIfVP~wEq3g+W1rm17qzW+Y_mf;
z+-@g#kW$=9*+uTQV~@&f$lSLVwf%C@+99V#{D3?+E@}tKL$Z&Q!{ib2C@F2^tB>3D
zLB(Y`K{;v1DavV;pRwbt^6#FTF4%EVu5$<KJ8;R4%XZ{*;A01_$mM6p8#~_Gae9h&
z&5k>E+@=3TUMFwZag!o#Zc+XwZ<GJnAumlxl`Qv|Jh9_GMUn^dOrt+i$-j0yrvIms
zr&F}2^k*u0F3)7;FDb9=c&(Dc*UYyc8Q#g0-wt_`BF6z^p*MyP^mGoScj#dTGAEgl
z%;Z332eLSjmBs92Hd5L*Z<m}yxr`z%NiG(1lOK_J9LTHM$jcy~IPj?hDGpR}Aio37
zLz*l_9DwrAC<PoSsFKee_(FLh2MQ~%SI1OT*6ctrCYs8NJMfhQC0P8LEJc=d;2X-f
zq<rt|N_Jss2g)!htMWnZl9L=TuxKQcNs|L+iiOO#G^c#L9KAeQfviYM)u3z1l^v+!
zK+u7Z16GIru8k~C2ddJmsie9Csmg5**y#?HI2IUPbhk=86ffy>z_0RvLmz`(zGB`r
zbJ(GG#;EB)!~r=wvP3B{2jY|jS%W+<G?z4}#gC+swaGf9tmiui>e9bg$?j|B1`hn-
zKo18R+e{5*8yslkKwBv~(8Ph(4*cXmQwQAF^zLetW>}j!AR^0;4m4NZ!hx3bR%B9}
z?9!mgN4EN9ZFyRlF10uHZEtGlKzj!|IP^I$A~TJioT)Nzh5WqL(Sc45{dca;q(~P^
zSF)P}-6@fh*`=zd1HByhXoab_1JVb(j{~#cXwoaYuLJ!Y=+98{UmO^qd?00z13yy+
zlS5Q(pZn&a%7-~HoIZjaNsdyrrU&M+4vcePu@g(2_|<{&a*;UUa$<r56CHT!z%vIX
zIWSrN+tq<%4oq=isskGx*d!})V7dc~9QZ?$zS<1gk);NCUs8M~lUcGalsOLk=D_cC
zshv-mOU{#h@1jY#fW?KXjr47hNjjwSL!PyU#qzkjYFy&LQU{hfu$)Cn)=*ZED;-!x
zS*>cN$ELJd%i=n6y#pImt-Q6mS$14r<8@#!Wed5L+~&Y`$_{cTxr^LQ$_K9&ut<-K
zeGcrnlq~&?#rHdKzyXni<RS7;@-Qh?M;wqTFhq{aHQ>N)2mW#3qywiMsFl}L;($p8
z#yRbP@P-3tC}$lwM>#LgdCCRyB6*3tOv<OKyNp-q*T}!f>#A0c=S})8mHbV4e#m&o
zfx8YAnW^2A6Y4U`Oc~c5@<&MHeFx+%-3M}%DkjVFkn+fZe^v6B@}C1wR3azzxdSic
zq3T3_Ctf=6O3tzqd7OCdz#9j0Ig#6`cXxm5z=Z6^OisL$f6fLO-;*LA97yNX6Is$b
zk%693CHv1C-h5%o?1V52nbnDGl<Z^<GAAi*KCHCvKVp#4u%)xQ%y^sEiNW=Z(y{*&
zC-OP*u@llYeeE`*bjX*{zYiSOmdmvCPJHHs$qBO)1)Tb*;07m*($a~~S^UC@;!b?!
zL?ITXL18C~C@<>7m-J#Pk#CeXC7dY5<ZH5|s{MxYtrLk}>7-d{m6xHEbwX1~5=F)p
zmx+ugWHQO2km1KIP9!@~&WZ9)$gsw3W@_&S>O)mapZp3={PSrg*|myJNHN8UN={U!
zOR>5WRg_yPRmo~jym+gBJXO`&oUqd!DyjX*=yt;6L`x@HIpKA}=R_?h(wxXy)9801
z;6%`gJs&6SyKj(zGCa~(*{P4$5hf#~6r+?F8J8nKsX^8xrHu?RTHA>_PBe9*nNuIK
z<2xrBJJH06x=zfhV3Hw3zIURYoUg2=`lLt$$`4L7q%>0b;k~AGXUt!G(9WLKuH7{J
z=tOfTS~&F)O>1A*hZ7lDJ^7QTnhbVYazJuxIiybf;>1uV+BnhHiJngMa-y9R?IldL
z_HgQ>xO8x0>OM_|Z|%sUB%LUo$u4A9vYQj#Dbi-or^X6r%=s!=dvj0wIMLUMSDVce
z9zSI5Czsp`lN>i09=5*|1LSh;S$!ZWGKlgsIoOFID!-RMWtbDgotP;{#)%P5jC5j@
z6Qkv(d#DY`l9J(oR`85@jO<J1luPBTa(G3?Ix$ZE32<UOb4jMizXJ4$Dw*WOWaTn;
z%2fI^aymIf)wWw|o$bUNC;o6EV~&*HoY=5WAMN&j)|B72T7P#!IM<1Jl=-A23!GR;
zU!)QlBlp@&o9%+O)QM$I<Z>am3(K8Y;lwE?PRpg}#40DYJF!D9wx{ORPOR&#ZFORe
zT$$HW*D_p3t|vE;(sH8{o9LU#Eh>-QP1`1i{i#{{1SXv@Z*5m)r`#{Cj0c_A<wVVu
zrromH?W?SMWZL7zUitP%CRz4T_LB#kkWWdtrgyeOPW<Uazqgt!hbc##II5CkP8_G7
zAWy3NU`yi}C(b(YmlM~WIOoK9Coam<&k30;v&kfr3^95^uEUx3ws+GmJ8{K{t4>^#
z4I5>;KRo&9NRv#>nR&K`U8XA|l8Y^~-f-fkJcs4da^jW~f6KGiXno|wmSM@&f3>bj
zv)q=agdDUq%N<hWt`qm@_f_(M@=%_K6EtZcYxviR$6VEaq$E!$PswLaJg2-+wGC@q
zUORE%lDW~@%o$y}ykYSz`Hp-~esCfk8>A;QkkWqq2E*b@=1eYRcHw=66j`!RvXa@z
z>@MV><RqodqKru&xsb;Nn+tXq^16`Eh0-pRap7YZK5=3ARP7rVK6N3#3*Hmvk}f!^
z$qP{^Livo8qyVKL`8oN83xz0!NokW|kwIA0g)f;DBa4$?ktN8lNom>lck6nSwappx
zw=R@&Va(mM@>{I$E*NH;tz})%T&V8C^Au|mDN=!AAdN1VRBm>`LQhsnIZAmK{Ef=V
z2W6?~LJGr5s!e4Vs?e=uRkE6@?YGX5O5eXwJ9NqFaKY)q_b$|Pq0)Z_mmDh>d@i_M
z@VHPnm>fQ4h=+_To0<GBq(5mccibG1WBXn!_Gfa?g^&wj7uu9CJ^j{F(}f5<O2)`I
znILPB(zr#gq*^Y>M`THJp|<iml<(wwRZ^{&vAzopT<GUQe>v9!v>#k(=t3hG=ASgn
z_DIs$h4wCVaG?nsG<BgF<wqA<Q<{@4$d+U)Qa*d4eCkj1HY#cBLObP$8=E>R??LHA
zc6Ol)r7PKu>`ux$<y`kv-phsF^gb%-D`)3+25DC8q<Me~lU<nN!ax_KILL*cDT7@Y
z;lfB4hOqbxDGi3YFpNH2B|j9XF8L@He<erD^`>gax-d?;9Cm3rp2Z0+OjP+Kxk1k9
z8#C2~tq%-xW`7MPPoqn5I%S3nGbyuFKASSfg$2bbNwc{w%#-8qLsK8-ODHGEgT@{#
zbYYQPEpCi(%YT1jv7A;Hp1H8Zg{3Z>cHxW*%jARm469sNEnD?fhUG4-aABoO?>#F$
zJY}?JZxhoR7uLG4!-btLtaD+#3q4jEHpr!$KIvJCQAWw`-%H!ba1$xDn<-mlJ5{pH
zh3)j6p={D%mrL)d`zN`Z+(SyZm$J`={geYLKS(*`f(%+N&15<3!V!i?Rhwfj9H*Zk
zPm-rpt?bKL7tXnGTe|4GaNebli+<6COD=t+qYH8YEYnJTWW4Oc6&Kp>H)LlY*Clt;
za(!&N>cTabJ}miP<aP1}Dd9~QZYlrUg|o{H65es)t_zP`_}7Jd@)a&TaN(f~X^S)&
zcuL0NmI2b`TcnG!w3pG&`{hk~?81L8JaM5<&ZKi6B}t!W>5D6UYo&|ta~EE?P{WOy
zZoG8il?x@@_}Y!vF1(RPu^V~acq`vB$M{a3(k{qg5i<JazKPlg7qYtbH-p5}xgktX
zW^f}TB@-!mW=a;fKC_P$v$?V1fKit0Zsbs&lakAg+?0=0F2hsgbK_$-K5^qyH*V%J
zr8c$5Koc`N8}qvXHx@*VBPZ%(R($5x2fZvp7I32=<#X~2QfdoP3cK-cy#A4*EPhEA
zQ*Da7@fCf^<&4s%q#NJ3(d~rhcjH?(O1Y8hhE0yi3u9@wK9HuFUdD~G6pfVHB#MDF
zx?!TomP?hzjbt~<@#s}1<uI0aqXNAmnWFMaZpeTh(m<9f46SZdrBoxUtCps{n%%Ac
z2G@G1QRdZhxUnkLEQ^!kBHeCyC|=S>N*kGdDZt&7Jq@}MqKC<d%A=H+8*!B+D5G8)
zYq^o;MhiDux>4JWI&OULMm;yalS6dgR9C9LG|HKh@l@s4Rc{VceK+I{y9RFj;FgzD
zjDydbWSr85ZvCY>Ii%u^+-U692QQVS38g97%#9x@%~h?89MVeG=0;yP`nmCw8*SXk
z{>0G5tq;&TqKiq`){S;7inn*8gYu4)PHuEo$<;MEWq^^cZV0=%(VZgR!;PNwUSw~w
zkE)fcvA-Jw-1uw0Var+5KsV%9#cA8MM&s>+=u-TdGT4nFD*45Yq4Z%Ykzad9x-rU)
zoF3%zV6+=!+&JdOaW}@gG0u(O-1yxsg9u@~8x!4_<i-TKuD&$M7*IccV;u2M^+0yB
zbTXXm#uV9}@+oy|8<(UrO?5-^X|kK;jIvCp%phlyv)q_XnL|n&X+PJEd2Sq%%g>GZ
zZoNb1dbum*j&oxni;Kt=@~;3z8Z35WiSngxETb=1$=(5`mGo8QYH|&^mRv{5dPWb_
zHoEoxnS0zwa#=+-$%W*`7KU5h*hP_i8)ds2J19F<E?qsPcDEauN@W+3mF$(L5ZAV!
zl;nUL2kFwuQ;PqdPCM+z5jT#?EpJRdcsK3Px5itfjGJ`Ajg$Jncg8FpoO0u|e32V>
z+*rOyJLAS#xBTayQC@tOfzi&nao&v!O#UJ-lG5N3<+2-BRC3jgYs%~NGF_+NP{~co
zE%I;jwi_we46>@bZrqboFOM=e7T-7AcjGBV{DB(}>5s^NRsNXrpBqn9B5xH*`)4dZ
zCtr{+-FT(iyr#Ty%gpHpX*~3eQT}rHUM|JA+6OY7NB8t(1~MZlVI~hUE0@U`vwD!t
zgX|vt9ef!*FNa6}i{iVA$?|TLyjYZ5iXK$+pt=WnJjm-oaSy)oAfE>xdywA)c<_k_
zKdmr)>OqBP+L)6j8OrkZ0U6lJ@|j1UO}l^x1wGhoG<Wx>^h{XB8jYWOaHLc9FZ5eU
z@1$4AgTnM8WKr@<Ra?x1XEBR3E8)S{9+*5Zdr;DYZ#*!1^ts)KcQZ*>!{A8!w;sJ)
zW+}2XS%xg@fku(qB#Oa<=uNW}&;F?m`X<@pL9z$sJSZ<~&S$b^Nb(%6{@7rbnX)T*
zAe}#DEYOM`eU@!mQaq?cuS`}Utz=bF+BDCYl<I-agE}63=Yib=hX-K~A|7ljYI1rI
zl7nfn-kPepJaBt(`<5n)hvN0XNAZ&ZGDu1ryTv3O45YI`)Pu!SHIdtwwU~U%8^irC
z?Qsth9*EQ+Ym!o|MM)!T%bqqiN?2FckSVF22lYMp-UAszUpf-^YhY>M!4Dq&wa|ug
zKpq*SoAHsm+U{57>YvnVeP(XrK~oPJdC}O5W*+?L!BaUw9yIr$g$JuWSmQxU4_bLJ
z#)GjQeRz=89<=eGtp{%x8GrI%?rH7gLY8(Ow3q8@s5V5drCdoep;!kGI!b#F%D&V3
zks_Tv=;A?F7Q2zXJm^m8LG~o2rTmpr*xQ3XD(NfN`4&yW{wf*Z!9e;T@@I0es%^+W
zVE)3b8cGf$hkG!BGLjrc%9f9oJ=$j#8Rx;T9!&ILk_R$n+jtKq$Zhhs_UjeRc*c-^
zvQY*<ne5U3emF<&I}fJNr8t!`&4cMGnL(LJ&LU^a5v!~Z5Ar*Ui%BWY^<bXz`IH6Z
zLJt;E{!q2gAM1aLT*Bf~50<HXxd$u$=j1At%O0)uV4VlYJUH&bdJi_p!@+|+a$5H!
zZzOklu!*vn+(K?8w~^9vy9YbyJ5`c&#VomWaq%Uk?)BiPJVS0;_R0C}Z{087Qraxb
z0m?!0kOzON{4nK+2Nz!H&Hfl@eRjig!h@3@T=n3ZJpVm7EsvU`hBF?07L|_EO`lIU
z$-7Qx<-VI~l%Jo@dGsHu&XX5BxJZ%Yk_VURS5zX?um9!2br0^z<&-<=23IIQHpyyb
zxyj-!@^85@DU$y~xkKKS6Kya`D07|MmkX?g>466iDUV1={-r$j;6KU}mCFn=&pmkI
zK^ZT~dhybOS8|Vd@v#@LJ$U26I}hH=wdX<6HHKqDk}q7(*>Om6{TWu7O!k93%)Q9&
zMLMrOkF6}}y~se%NM<54lUc~Dq_mV-Yah<ja(E$Qa(*al6wm2}Fc+EIi;pOI$h>6B
zeL1DUCtiH&MNu!l^x{@(rCy_R<o5zz{e8f(nQfnWaW0Y~O94tjFFsev7nDL?6s8nW
zdGMXNm>2opnPn;Nh4Yx{fBqH25?*|*YD-eSA-^R{k)^$`OtZ?TG%u38h<Fk8!r+C`
zi^^V9@nYi~gUO5UhL|dOVP?@nCX?kzX;a>d3d$>bk)pgyUgMm-#&9E})vJ$P;PS%l
zg>QkWs#kx{s2W+_i&TmvHZSaShf17Y{S6?g`ud{P<JDgfE3nAq^+MhQlEp{ydl67c
z(2J1ru$;0+MrjuFBJM?fFB*7}@anH4)$pRGSARz-@6XAy@@C5nHI|!dd6DLYh%B`!
zb!6XFQkU{QS<kBv!XVA$r89Z=>IW|xda>l3Nd|i#Qq&^v!8P%ssTYT3gXQ_}#gB48
zyx8PLb1zzW(a($iUbOV$><&{WFFJeC%8S-sn7UYg@?vIY)BKK>HY~O!+mY=_Y14ty
zk=%4VdlxT$?quoeMdk&Xtnfg4OE<a{yL-_?c~9AKdT+81*;myL>1Y|?MW!9b30_R}
zVxSj;WVK%X5i!!MzazPRgf`d<;Sll{aws{>i{X?Jq_jzYFHJr&%8SwbtoRtpSTDv=
zekI4N+Nx7clf0OaWSZ^894{u*r;rj(rA#BIlQZNfQD%|Srtv)OH~Jqc`JFP?i+Pm!
z<N|Ubxrmg{%EN83oIVzplB>yO<Z^O_7b_{NNcoh!t+|H2Rwe5w>%G{Z64~+1vX5Tu
z^kSD6TfO>Uc(%)dU8c#)#oN4)7nbEO9`ZMh9rB>qXOOp^cYCqNi@sg7gI?_QVxJfL
zy*S|22he-HG*$W^%BXiTYFz8ZR+*6H{b<u6FaGr6`-wK`vUtI49#h_W)Qe+YeB#5W
zJ{<Srgcq;mk?6%qFHU*!w->j)I4$>xTz>K-kqfW6MF!sa`X@^suPIOU>ZSH+=VceB
zYqDJM;v)T$7ndnlWEWKJRWGj5|5C~Qw^eS?Z>r>$7f(CutGe}*<sYy9_QbzltY~ey
z<Hh2Zmb+fuqln+9JRl#EkK|&gn?b4`%cH5QrQ|B@KQEqmA@Y<Ic}96ozL0+fR9?nw
zdgH}gFS7cO&4+h#5Sm+L%Axo2bjq9}Zw-9#>N60@lFp|~dNP9#87Y}a$us+qMftf=
zmh3*{Y;Vc&zoflo&sB3ydM?!_w+|mF&qK*e<|9A$=`Rb&YV-R5A1eBg;=^Y?6!4*h
z4`2IG(1*``kUt)N<%0~CBJc92ld+(EDCC3u)vGXBge*#aNfslElhW+SJ413MeQ<!1
zK5Q*(Ebl`FAHMP7TOUd>F_NXpGNd#sOVP+A(%{o)^ph%COiau^SSZP4IdVy^T+%>B
zjF(vgWh{3Y+`f_zm3>I_p|%fIe6af9^1<!Hpo#XtI#X4jKGkM5QlvU1)d!nO>^?Z?
zPL;?{T^=8D9nm7B*N377Q)ThV7Ag<;5Tu7x686FH&MeI?bgUAUBkzNVEO8$a%4<++
z`cO+Hb30b4<HL78yq>K!_F;MhW0P)1@w!aDC+qo8pCWk!AAX=WR7oQr<c|PSwReyv
z(#(e+<qy#TGz*})4=v>U`Z2(dmOiwSi_?$nezf-CCm*)R@${jM4{d#z?ZX_O3>1&{
za@>6Q*@q5tX-(I9k|G@`oyg8)7qY7l-6+zgyAM5-51eD|Mej}aA^Vd3NNL~ShXM3~
zD%pG5JlKaJK1}lI(|`Qp(`U*ULk=aSILwFP%18JxQu!!34$AjW)uiQE7RQml`Y@g{
zft*NQJ(5wHE%~5L_CbD<o<dIbVH!n}>697dOdn>cyvV(@-+cJphjl)zXE;}m;c{)M
z5A#@@uUamkEcD5Mf%;ecq4LE(EKy!|mvx!kfGzEhPio735UwCslB;}JO_6*JWv$%K
zeybEW_^{E3O+IWEIcSo3RAqPM*KpbWXGct@1|-Yx{@Z-m?!yBg9{RAuhn+qg@!_Zs
zyL{N~!(qAj<tKX|R*kZ_2PE(9rS0`WeoU8TpAY+$AD|rc;Sl9dmCGC-l^&TMbTCQx
zgJV9Nm#bR-6_C~LHJu<&lBY-sPgBnLa8@PfC|^D@&3#buq7MUGn4}NGB_A%!&FF)K
zvfT9HD*c*D{_^2E{f0_1UeRvR|MuZF<sb5{4|gazZf5@9+U~J<U!H!;t&%+Q;a_<U
z`;p0y$3FcxefeqrKOX1bZ7ENDcq-3|3)(aCtq;#BFG$H>QeMf;NO_}jxfrDO9gFXM
z_&`bL*H<M=dOtEKmkDq)`}KP*iyvA2de;J(m$prPeNx(GSyQCLMh-u6`eFCO;YTh%
za{FQQ!z3T^Baa_n_)*A@ynf{K<H#-Z$9_B=ZrQNg{KsvB^<LU1e*HzoH`|jx^+TB7
zFISE(pOFQ~f~16>Q@Z_UF6>7UzswtAHuzE0k8;l~-;iIDQY=O(PJZP_3Ch=GNmAOB
zy=wiIUWzPDmLbcM8ks~&`#;v1=KXG$FE#sN@uR#S75qr{L*5%bwk~HmKdSl5b<Ldg
z^iA^SlF1eQ*!Ptw#g9sU^dDKS&2vj-Kf15d3fwfypSeV;uxRz8Dn*iNl<Iz@Qfw-h
zW99V2<wt!#8u;P%!{bLCKfaUe!C?3L;bTjA!#Aa`(N7PMK|ex%gw=Wyl!zZuN{o!F
z+W&1;4Hj$qQHzr1M{P=zXO;<>lVl_7`tdz?t)5?h`B(mSSL1@I*gI35i-t=5jX(I&
z(2vf3bn&B+AB}l%TKjQmUvd*aoC%A3q^TeBUCqcJ$>wAWvL)Gy)c+oM!~7FhA_ut*
zrL7<BRMOs$4)l&H=_FUkNQ*S?>WBQ9uAd((-<i76rP$q%9?E-Cdil{?C4KzT=U@Mn
zEU~YQ@~&>D{>FiR4D#cqAGiGY*^j|~EbwEYA4B~3#g7SoO!Q-@AM&PK|2^8Tehl;L
z@9W8nd&B+ui*F<R7)cpLjwU4^Lm5kslUsY7T|${(V7wp8zcr3|XPo56WIyIg13#wt
zG1ZT0T=Sz<#x}DJ#j+)h`@=BZ4|!*Bh97-$nP!qAv;3G%pQDoB<V-0)RmdVMpD*|0
zEUU~}u+^r&C%DLuKm0i5$7w$n`?18YPx5|1R_;g19@;uT*88!{k6!N$GDZ7x*~jkM
z3OTS8@l}-7<QhNLQe+x;soLPzU#r<cZX~6+iL#m8;>T9XHgY>DZEB?&cPigS+3m+3
zmF%VL^JBkC<n5J%a+&d~|Mcq<xXT+ZvH^#g9P#5QMUrEFdD~atg%jjSmCJiTXXNbr
zalx+-k6C%H;hZ1m{rGFPK}NH5?$KUmGv^*;yvW*1q%^zi#})cj@|w#3^5Z)FhDzF}
z8vmB7S{?`iR1V-DKkoQZJb<qPxa-F~KQaf9C4l>WG`*iqI#ECK>*H5HkmI9wJ;Ec3
z_`h=3EB}x3M4qUWdO4G%!E?FqY^E1}y!7K0{R1iCYq>j=zxCrC{k=*WEUhkW(glz{
zpszue43vyyCfU50-XLoL*#i2u<qIHk+K@c}&lZ#Pe-_UXknunDP?lT)<feb5k~{(A
zRW2X@IDk(A_>`;qf|M{n1>|RBfdC3pJ}0Hkv4)mH$_ocjM0wEwzN8mZiS)HD5y000
zy^pt%VaWgt0W@uAlJ$HOz_+SpsQ^mT%c!Jm02)0>B?TXt3v9Rk*U&PiXI2yU+8n^p
z(*_Hf96&jWB;^CBpu8d_B_M<1R+p+O0aybF1`rCMY5>&&um>Rhq8Dz_st1r7fGq&&
z04$xl<wq77gHC=-$+A_S?#IDqPSQoXNe}4_z(?_u(moJ?^x_r?%P|k=<KWc|AR0g{
zfSG-@?*f>xL6aWH@qpg#IT3(NDq4fAN!B7IOrzA6t)j?pWD?324i6f?=W6Sb^~nb0
z52So!!vGr58>^%VWu?dXqx{Ez0Ox`@A4H1)S_besfH!ie185z<&jAb$;HLoE1kfpf
z&H=Oypj`lo9>$IVv=7LfV%83FD&HDq5)+vNrCJVS-kruf?XxDWHf8x+>k>fs0D1(_
zHGpmbWY25y6tdi#VI4Tj-gvdCr+hqs+pUb^z2w?nZR#CBABuQiO1}X5QwER&Rc-cv
zOefNn`?<b#NC3YCa4dl1a()9C7QpHN)&wwI<eoMsfZqZb5x~d*MlqR6jt*c<0AuMB
zNNGGSfM4n3RdVfJj*0Y1<YaP+s!jLCAfKAX;&gI`oKsahD}dR`f1GTRkz0P36ZcWl
z;($KD%iI9wQRb5iNXZvc76tH!O49z(mISc%s&y$TvW&7kfEARL<SJDwGbRrlr>zY@
zxG#Wp0j#HQAh(kn1K327Hk&D1$gKfvQ@Pf_vV*>p+(qtIwR<Rg1CZa9WF@lfXL2Bb
zgOo$$pX6ck2ziv0_VSxl+p*e-04@e_DS(r5X^qunITgTZ<!2~o$#Vgmr(96ADF<_2
z4&X`vF9UcLz|{b*1<;^+^?w8Si{EmGyiVRw-+PmCD}cY{+6&-++w+gAm63Vw((kF{
zegF@YKMddzeZ>^3?1Bv6`Z$390uYhqNdQmj&s6f9@`9IvG?0nN<?P6O<vYh{Zv%KI
z_g4^ugLognhX9%c(KLv3L8K3&SP;d7$Ph%vpxy(gKoFUNIGW2OeIar&$xLP;vj&lk
zlAV<HIVd@UdWR4x<__web7c7_h&=SXLF5bKV|sq_6Y^71T28rO2K_UY$mqlcgYx$Q
zqYO&?c@SR&_0frCDMTqu79ooU@ujMj*TcUGqJ%8zjlm$k4x(fb&LB)@jM6XVn;<Mf
zBnR<r5T$}B9n?FkB#|OzC}l}4h{V4+B$UMvgpr|%G?S9c8~Www)yeWfR0yIXy^3m+
z5=13>WtB+h8TqU=h^kDgsr>q5W2$l+#U6x%^1sizf{-?D(nESl34KBM=>e5U7oboO
zVIGG_5Ve9xqesbD5OGR^lw(yRh?>f^ps_Z+zDnu@@g2RcO1=-Gp7IXg>$52}VDX0_
z8mhce5RH|0eP?JE)Q8~i9z>5Iehi|yY+fh5Ls5$$S_aW7h?~8QvUH%d4&o=3v<adu
zy&c(J<<dDv+II}16O+y=??UMsL^qZEn8ValcHv%HN2_sA5WRvJ*2vVG$F`3;=6xys
zg6OZ30YMC;XPu~@vSAxd?_e4d#4kat4`M?QL%B!Of|yPj7R2x%Mg%dE#qs1QQg(cF
z5Mz{&4PqSqSC!mfsZF3yRLLaD<RGR{rm8$|M$-(r-J}@Q`-VxUzF9$i$cqI*y@TIu
zat`@h5WiFAlJm&<q_q5JgK=RH+3#zM$UjIaE)HUe@})s6Q$GEQRi?*U5yZ+M+TAs-
zB1KjQu}1mYAlA`?4{}PC%ucm2h}}W#31XAn!lg~JY^H1pVk>1Ext-iW?j(1S(%zd@
zpWJG15c`7IAJm6@&ve#!=AiLF5XV_;T*Y)yuCywqL*$?2;UJDsj*?P)j3RyNPViGF
z$y4NMQr3JXh_lK|4$pZZh>LQmgfKjWOF>)?!WV)+geyT@l?O-&r9-$D#9u*~CkVMh
z`Xpu7gLoCh>mY8(wI`3(zs$FS_>b~;5VwQ)hc5X8${q4<5ceqeRjs_)Ds3LJ_$Y{f
zDUVg{-ntg4eG<e|l{^dLIsFCsQssxISf%9~d9ZWy-ZFouYTr{n$iD)tm6qu#8A9?N
zg#N)yD$g837J61P8=0NVK}utpmo0Y)ABFH)2n9mO6N1(*SvKItHFI9N6!V4fvGPwS
zpN5cMB?w_lXQMP5UDx7RXDt}Q=OO&I*ZKunoGe5Z4xtD|YKw;OCB2wRWDQ@@OORia
zCCP8dZ%O&Ad|jCk%7#!Ogo?5mA$?N3_Q7)HDM_S(G=^ZJNCPv)5<)VioXXw5CCQ7!
zZ=acEms3JW4M9YfN|eeWR8fgFgsSvvWOXw4t<3*xZ)4FOf`cNVlj0)XA$TZWRVzcO
z2SNyj&^Cm2A%sE*hfp_!??Z@$5Dg&~LOg^;`wZ)s8t=R_czS7x5TrkIWBy<vQX_<#
zOvG!2kVdaf)*-)BwZ3JXrgp!fUI_I=Xb^%7`TJuC@@vZvbSXBZG$I?5O~|GpG^0ox
z`Ef^v2yPyNutf+hDXqxXq~t$^&_;QQ-G=rdbO@ny2wg%lSh}fW2%Y2zv^8C<Xl*<^
z^>Cg_G9zc#5W0mhG^Ee<DNFZ|K51tE5PGPjC#4tJo9sjOCHsZ+ZkF=F0dhc!nFo@C
z$e+o<q*M)|{1TF}>{6t-AZ&d1u;PdiMuxCou7?mtg)lmV<sqyHVN3{PLs%*&E~jZ+
zNFPUcS_soa_?0fj@&6NYA~}hiOil@5Dn(jKM-kx+7UzX9lQN5(t=i0?{1(FRl({PZ
z-_N!4Ls+1ag_K3)A0aHJEK#+`PTOVB;AJ6{8Lj2|)wnW*RUzyP;dWi)>JZk1u$6nX
zHU!@?gS33;PFY8n;`$IaDBl>uCi-S_i^}B{?`>Sec5(-~liWq_CijqgNjZSh$3}jj
z@BLHugCQIW;cwX<+47+APkCznlXf<Q!*Vr-@GNiA(UAU@wESPE_%SBO$rB-*q?{s8
zlV?b2DX#{f<EqY+7s!j`r4TO5^Peu?bv=Zu^lRi_|39yoEVVa6xXI*}%H_@Fe?qt;
zUlh{+XaBC;q#Lw*A>0q??{v$ozOok&Li$+faeIpRL+;lj^4}01QzZW{geUZ;Dv>FN
z<Sz-&Ly-Tqe-Xk<SxH`tEU!X%t^5t;Z3ypF@;(HaC|R1N4<kbu3u|FfEo2NMQy4$S
z(L9dKVPpxz7KJ^EtYKse!x(`ng6v`B2;=uK=7y0oj9g(f4x>pJxx@G<jIYBe8AhHk
z@=7vN`#g+%VN|bXk-oT7mm5SrX7Q6SKBY*KKMc@6BMXoPRqf!{<}bo16h`4NZe=u{
zDr7uvNM4X)E)s^YDETE>j4U3;R}`r&5k~rlb`cru;+rr`VVGrAZw%jtQHmm7I*c;(
zvZSW+B#MDFhH>SYz7qRNgCz`K82&Jl!zdR<`7k83k|Gtts7OyCE0LASDx|b|^3+^4
zjA|@a56kqI`Wj?OrPzcNhst}ntGnoK(nESx?e=HpKo}#gnG<2u2;=lqb1;k$B}_)h
zC@HluN<0ilDU%dyQobi8sTD?=^4gR-VSGoatMc}BE%lVw52FG72eKjANY$3BYiSxr
zvoOYoF+r}YFq(%kAPjk{x<wc*!{``Br?5V4S)c4C>3P^HjMibj_oFO7h0#WN+c4TG
zZ%^qUm)~i<vtsA4-dR-UcdJp^DAFa2u1vax(VfyGj6M{p?HNWd<-IBLmb&D9>HWg!
zuWDs&vXKMB7!;Oq?DY*E9L7kB_z=o3<WO=LIh-63#?#y;X(r1kCZod`Ly=@`7~|-_
zs^oA!lXL-{7?vqi3{%3G6vkv86M4IQ>aWJW_tGSv%Gzn<baF-*GbvI#i!z&>L;e=V
zii}37nis}=*{Lwz$xR`*c^KQn*dgl=<BzaRe2=AJOgotK-CRS1yV~L~WYFLO6;oQ)
zv&f*k%fk9Ny~|})l$GR$u#6q2=d!F0V-0<+O4fz3Uitgg){V+HQ8tIMMI~Fq*hU|9
z&>*YY8OE+K9)<C57`wyR6ULb^&W5p9wLcQZKIQwvIH3Gs7>DS8l805k?0d^m<;TJ}
zPCr4ORQV~n7nI8=!Lk|W!nhj7HHPQIxS(n;hH**xWqBGXKfW~QU-W;->*NjcCV7ke
zo4ifRx5!Y&!aHHyWpYpD_bCs;c&HLN5s$<8FN`O0TE}Wql!<$!m$kcr<tdYAq*Ohp
zya?kZ<rVpwd_zi`1K(TThw&kdq7i%<LAnUiM^HGTce5!YZ`4MRGlE<ZnMK8#k<3J9
zCbLA4m6DCjPUaw`z4Ww^DUHf5H{_1sqX_aukomnq7DSL&dA<lfR{ja)Q!;-<pSD99
zf2L{+PzsWtNALxukgAoJ;EF^bZ|xmiWSXAKR4jtx5tNKTw&AM?N<<(%aK4V{{dP<X
zEvL2_WbewKFsyiIkOtpG@GV=GB1@B!mx-V(T_clJZs3<n19JqH2-ZcgK7!;3%0)0e
zf*BE%kDx*XT_flgLB$ACB5+0Ej-XNml_RJUfmIIgZRzoAmY$X}guZl)T+rWCHG)kA
zD#=nUg6hgsDYgjg6bI>4wf}rDd1S96$d=F8Gy-2lAK$)K1d9hJ`{{uQf)Rx1QWcLN
zOplOJmB%7z)yXOi5=?54HOZ=_b4Z>RLG1|YL?AsmWoZz>cl5d{`96Yr^!h3(Gf(@0
z-cTitB4|u+qLNSd8Jk7$Be%bK1nnuZFD)Wysk~JLt?55S(1y}Bf_AD_W+;$FJ|atp
z2s$$FM0O^-kb_%gmj>M<=n=u-2!=$^GlJRqEWIM=9l?qT#?=OsOp!3<sIiZn!5dm%
zQluZHKRJLL7{MS_`*Q@#hv-ub{1U;?2*yS5YXrk0kn<v)Y2~yIkLdG}$uc5>k;+F!
zFq%Gw9INv2#Y}QQ1`JHTQa5#c1QQ|<nMjIEieNH*3OSXWrfM4(vdoNNRs{1Rm@l{6
zI>YP;=0xyY1ceHelX21x{$coCw)~-CZUj=CILjtO#-#);3nEw;!MWk4#d1<M*%n3c
zM+7p4-sNSc#3t=|qjHn(r7ekIX+(Zmuq<O$i4UgbEK0J1vND2IDp^fg6Tw=Qthkr9
zA%cw&JdWT$xpX7g9Ko3g&PHVFTWpQsU<8LE*cQR|2zErUQ(B&s{~1gznLBCcV(Tth
z)ih1I3|-2dw41(%lyGkZ`{?`01LSCTda3$T9%b*%(oO4h1bv>E56hK5RXai+C6AHE
zBRD}hNuDC5<(!(v_FK%qzpr>Mg7XpFjNq0$6|ZX-<Y724`J&wN3#{{|TQ9LF$z{rw
z2(GH+S_FU5udCz+<@rOy-*SScYq#Y(k*8uQ>#g_NuzTitOH$82G2DsZu6*MY!#(mo
z`GA!0VFZup|Ei?5JM~EfPb2s&iULtQi{N<#IikoJ#fu1}TTZ$t(noc9$>J;WHTi~o
zOTLTXJ>>%_?WGgc_2&lZH<cl(_p{1Kie!o+Gd+t+vPO}Oo?Rsi-fOv{$Q{)?#eGC}
zKCca%Zj}LE@<jC^R`Nzsw}L$%`7!wk`6($?`6-BEQ+t~f3r6vI6kkVCGKybh^q440
zaJ6!x3q?^l3h574ge*#aNfslesyOAVsD9R@DC4fk05#u4@of}c-kVdRC>2F%)=pSr
zC==CtbD7Dqq((}Z6oo;#F$xo1I$!;-zm|o?WU^co<tY`&ilj9AYNN4I6w=$Raujk*
zWT`^2l2xOqrt<1hq$;oc#^8v;8HF(hQw**s+)?b0;y@IhD7;Zjj$%p_z9{@r{1io-
zC<0Lgqxd0;hEar~2uG17^4fgPY&~)>P2L5IL=lbZ?~cXDI4Q*hrA8DrDYaDo-BGPJ
z*B~pY6UBG*y5#pNuScm*Hi$xA*pbGKqG%k243^tEiY8HPTWRgM+1lXG<fimyq=Y|4
z(Oh|pC|c56sYG5|Ti#VG@Tg+jDB49aK8guZw2z`g6a%9e6h+4<?%zx68AZ9{R(Zjv
zlN`FJ{!UOAQlx7X-IRBaqKESJpQQAPBHt{NEWM-Xqr7hv{pkHwGC=;f*P=JudRae=
z@+Q&GQ4Ee^h+LCV{ly|#Mp1^6!^q*}h$u!<q|MF4#?kaKDj6HaIQp+DIkn#^0|HNs
zVp0@uWx%C32H6F9F3G6BQ=^y`#p)>5L@_;z8BwedPqWOF>*11lK@<z4m?i&ve%d-)
zF2X={S>{CX8~t~3E;)~!PfDBaChP4xTESYDMN!BQH?sT@#bV`4C`-v@<nk!?70E8m
zRz|T(E|N>;RnIjk9=M~ejbdFCyQA16_mmvxC^pKCEdI*yc8TU5Vt=~RWT|P{IoBkz
zS<Xe8Wed4gPB&#cDfx~lcG7pL<Wvod?Cf6oc6mgYtdG+yG9=Dg7(<bigHarc;*A`!
zDE^G%upG=NE=G~5m+43p$D;a7#7Cnz-OqCEXH7<XJI>?;d6JX{rzoeRI72zB@^ev~
zS1yxKUy9;#6nCPyD-Wgf#w$@=jpCZ@_&hE5{WO`mSUO$&6@`dCi!tQ}d6T>q#ov_M
z<UgdeoK?tlPp;%B9>}FQPcO=M$;8%erdg%<Fp5Xa|Bd3YJVxj*NU427c}hMbpUX2O
zlRi!1OBP>|ugUqp<dFPb6z`+>D26;Se25}l3?FAVXNn<x3>jj`7}MXx`Fyf9(b2N3
zy`@uoOPyoZw;e5+W4O`Yl7-AlW+Nrc9zza#PBNFub5lCpFy)OQUkqhq(B!*f_#}o6
z9Ws9v!>2KrJ6Zm%Vw&5*l0OEp_!(K4ED%FMiZuJ2@<j}VR3e*KgkF^VQsu>BD6ago
z%+}GFttDdkItJOPlBCEtF`3j}Ph=?-Luq;$mHgb<BF7{t215+B+gr@7DwsO!N5l8r
zV2;5O!`&F}#gH6Bxfo`~Fe`@gF;s}5MGP%ts2D>^3^ih?8AGKQD#!4*OwJO+gXvn8
z7#wnh4{KHyC8<iOMph?NNm~qdinPh!%HouhCG$13u()Dy(><h@^pSp2+N9fP4f0Dv
zWSEp~h)|+2#3*qxp=#w_j9M|I#qfhP$Z4!CYlC%rGmFeIQHL(Y?_#J+|DLQz)+ZZ~
z(&l9|i>sZbVGNC8`W)Pi$tI)}n^KyQKgQ5p<((TQw~C>43`1iW7Q;_5w27f#4B^J9
zZON{r6x&hS$Iw9~9b@Q3@2rw8|C1jr(!N^^-C68G_Ec?p#n7AHCx*V1BejjP$Vd9K
zI6$==NEsBv&ng)l!w}`aP-g8g$!Q%P!}u5`@Dz`TVI)QJQ8A3Bk0HmB<H%o0X|p?j
zbvf(@+E`>&6Xgh`OPUnJWQzC{%2aY1Ih~v#SMvQdX)rs6IWe4w;baWI#qhh_Wif1w
zVQvibVwfMpf*7i$vuu1;#Wq*#`K(Ht_u4`^$nUik<f0h<pe!brkW#ypvMh$>ltWMS
z53W?Tt72HKd<|tSxh{tFDlfiB+Z4m*7&70`_Q=+LsJ=xmunN{-)s(F<88<IkmTfU?
zSH2^LoyvE`uv@u5W71x(MAoy9vOk6cl!GxGis4UHdz5lGh9fE&UD$Mteq1H(w`!+i
zkZm|4$3KSCG4y$AmNm<iwdZ2^W~bq=7)q?Po{vH1(!IdsB6*3tOiHsWF<e!CEvC<t
zE8+DR<RIUOLALoODRPVQcMP{x@=pwRl*@Fz_vL<<|JaMe9LK{L9?5exj+}A)8^hxm
z-o@}fhX3SZUZp*et&%5Uk8;x6+4ryc_EYUy3}c2_o|7*~DZZq<B45YwhVoX`UOQ^|
z5JS4SK4nt&IKpSF((O5Y9D(bG3~|UjN3vv$Ba`yXab%%qRY|ru{`|ALG&{4ux;JLZ
z6-Vwk^2U)bj*sHFyxm^MUoKA^r_LMu9I*DtkYc}|_Hi6-`fFdrQ7Dd2=%14LNs!Xu
zvp5RS3zDC!T&78q+QKY;O%{oxsH**vQj9E4eicUvRa^51lYF*h9N#ecmMj%VX-b(m
zk|<?KX{p8aX`4i3F)%d7@l(hsMN1sXaX8~}#ZfMf@^RSWuuJ<mmSsq(7)MGR!8u7X
z28EoRN^u;&ugQE&mE-b@k3P>-6^fOt8b>viSC1oA`N*v{M;zIYX&ahXST@8YC*2db
z$gmP_X%NSEad_hR=a$(U$EypPFAl$)xHx2Tu^1U7Lu8ngsz@AB<vnEti5G@=90?{h
z$eMA~iX$zKy7$v$sm<_zE{*HP@qHZi;;0|T#n%>@Yi!qSgY1rUm2V(xHrhR}E#g1K
z(J&4XSsGCq$I(P3P2*^$yvr(Ui#S@w(V_-g)<CN`TFd$qsGq=3a=_zw7RU2A+Q!i?
zjwx|WjiY@W9pdO8$ACCG%6j7HDjU;N>nz8=xT%YriwTC+BQ<$5{q-_ah2F+)td$1c
z<LIHhXB@rgy~#dgU$P%5?N9D74vb?^9HZhG9mmh&m8|v>=8<s>jzfl;`R0jvNF2Y&
z<@CfX%g{K6(T9^G$TuHy{I6CzsUCk)@qyJiMvkq=D9c#NxHx{Lj92-DI4063k&{*4
z`F`58IHt$3DUQu?%!p%V92?^Jp_+A89F4A-mdCLoj@k4%ar_p?@AO5aG?+`7N6wF9
z0cD}8?K41=Hh;vin8^}yDY;Cwk<sL)&9<zR%liw{@H1NSL&K^#R?EHc&>+hi%35+A
zxn3@(%sHiMV_cu_KxQA<^jO;x$5y#?<G2&Ywm7!S-60R3V+L7v#Bo6R&Nz0_cawWm
zzL&Buj{Pbb`OtV!`5}2CDL+g(LLQCd80F?ct9;RkI8MrQiOEG$!qah_p`Rtsk>|+^
zq_mM8za&pK7O%u{gK|~XUZeaaJFAk>TQ&LAO%`v-Wkb2GYDXS7-;Lv598YCcC(SbA
zqGhWl0~_9t<3SuEvOJ9Ak@9~jkIDbyc%t&xM-4JQ<fvnY7je9d<I4n!CGaYa*YX@r
zAWs5s;&>ZJx&+cE@Gg$`an!hP{2-5xwc6(VrsTq=niW!Hkxo__63Cc9rUWu4P;t6-
z{V%4}^QIMZjPJ82$;?X9hb>D2Srd9MK3TF+vL}#3B{>twMbE90$@%pukn$$*NdliH
zkS~Fc6X@Q;ntOq9z%^6VgfV{tNT6s!@4)7~uYH!lAIauoXLT=-K*0n=Wci%(MFNE=
zg~=kSR(i6{>uStoH5O0cs{|@1P$hv934IzSLjuMGzD}TI0^cMceM(nf(1%m|Hh~|S
zT1t_nNhy{|pe$V@lT<#mkI|HXj8ON+XRMTfnJz_30?EqDB~YGTfviZTsM?cOy)WG0
zi$-e#RTD@}z?ML5tFfAF(mG>x*{_$zx);nJ`f2%3nd}KT5~z`Y6y@MM69^{sez4-M
z1cdGcJQOb}i7x@a@<2jHRn;5I)`k)Y%LU-mJ(56Fc`SiAJ)sggzcu-d@};#XX|jbX
zsguBW%IhZZy>jV+*+7m`0{<rPIDv)<G)iD{0#g!boIsNVdMD5)fu;#GOQ1&rJrnxO
zEI%gDJb@Mo+&QLAY;8I{%+xXgVF$8R0<9@Ok!{Gfq_k;AX`j&NACY25m3N|aPN0iQ
zx+c(#-d!cXG_CNv&m^;uG(4j9O5plgQ*q7IH-UZ$jF2;xKz}*T2@Fr@Q@}`@&1UQS
z6NZ5a3`#&mmY*qu$syz~2@ItSBc)A^oK@uS?Xqp75|D44B-i$A<Dc28j80%o0wQC{
zaikP~O<+8If=VXJ1_v!tC3A(#)aO$Zn3lkn1hytHJ%JesEJ$Es0yE`4y{i8LJ4+7c
zIPG*E^K8l-@;CB#axN)t<|QznzOQ#qDYmR{S(L!41Xjy^mw*%(lS@b`E~PA!+gT+m
z5?HBR=C@swK&9Qr(l5>F&YIWKrMNDE_4EzoMwM?$V6*a4C$((}Y){~30=MM)uV>kj
zz`+C#C9splUF2?3YWF0tSNXmK_A5Ui_xo{88oaA#`7?o2a_HppyQ>{0k0fxEa*RAq
zo*++>(sJKeeL0hW@NxoYDdOi6I8VPoUL-H6TKN%H+FVKCDwAs}|4Xhb`VE!Td1R20
zvi?rsQ9}Rq_O|TuSWT9HD0dRLtCD*O+*ke}frrYky(%~Ol{xnj%YO+xNg$;LD%HT#
z1fC^Opau%o!1DxN$fLUkGS$FKdH5&rTJCGPLb4|Hd~1-G*Y?lX-X@S(uXT<Z`@A*E
z42kdLa!u&7D1IPC($&z5>1!YZ<zVp)Qp{WfS!&?oaATet|Bt7$0Mnv+-#?%T?9y>d
zNk}8J`^GM?z$?3Sm%N=*FQuZi0wN&@2nb3^m!O~`C5<2<q0%WO0@6qtApd)w?{EIs
zHP?N8&U2nQb861MJ9Fk7<nvlz1-d?QGLihk1w?5~@gh~YplBh{!glO&#ZgoeDJEK6
zlxda_C@EUX3kbYu$3|Xvmi3~X7d5=7=|y=jUSfh?aGR~S^E$kp9o)mKf)~_^UQ`kw
zR~C3#w2Ej|(Q00B%Pl%&^lUUf+fmDFRZe}cwLe#FVFq9EqK+4e7inT~i>8Y@Y#*l=
zE}K^;of*QJwxzBY^@Izrb}+%IHv{i(b~N;&kryqzXz7K=i&wqK@uG<rjlI_1TiIT4
zJ1~8)GOd+^yKbenb2jy2z_avbUNrYwn}ub3s4&CKc|Lw;n&D{WMQbm*dg1lrW51(~
z7q5A(ZOF)N#nR4;_5!qY5a=k{Nwl+Q7cW-lbJ2mDh_P4rSUFxKyimRPuY05XkDUQ8
z-uF3!q9M_+Xhf7zQGu8jaofT#CBNCJXzYRcUHptx_kuw~lwf+1w7Hu=cQ1Mfoa^VH
z!|QBWFDCjh$%i*tCtm#R#XnxW<;B}{^J1kJeZ1)F#TYL>^rD{^T)BOy7w>t|UzouG
zUJSH(kQeU=ziV3tdoe_~%+^#oKRWLm=C!^Nb6?9Qzt8*VymPqd2rotoj1v7obhPO8
z=Tqr6){AjoeCowiFUETjspU9R%ssuH>mx6?E6oH^!bC47+5E8=lWm^j#V0m%)tzZx
zO!wkzueH7qH@lhP#fcZv=Ckt;cFgqRGXe4}FJ=qR5uGbK&yM9fU<<rh=*1#A{R`2>
zqDw?S7iG#zy;x?m*2hW9ml9kqx<d3TFM7rcGAdNkiN>yPy;$YNDKAcYxumCKHM8o)
zRxj2_ke0Oq>qNg3T`#)9i;V*G+2qA$o4G&8Hs04O9p8JgoqhNZM}xneJJ^)tlzm?8
z_u>cPouV}E64>p<9)TZ4_u8>t+c*x`d|2QoFMhTyzX%-k;*dZ*cOfRo<A?;0iXQXg
zxB%@Zyf|qyxAQpT#jg^)<HcDoxRuEjQNlTa^P(3-FM9Etz$H=o{O-kNn>(jw(Q=iQ
zU|X&UTo=9J#Z7@*qPIoq&k106**y*^>uv`A^x_`-zr)4jzQ6-79@>^iUOX25%eJU1
z9shdqgu{*xjeU5^8{CU(K2-PNnHRZyDC0v}A9DMU$A_XmOq=GYp;{}waJ`r3eAe18
z&-;+qhZlUvCqY^Y`jB6^fM|+nsvXOfUJBV<SfGdxS1J_ZiNz%S;-V!)ONy2fh3Jc-
zrA3(;E=tA^HWP-soDb!F;7T&z-Bn&<>^5fw(Tbv#L@SHFELughswkbkKPWYPsOiIr
zUFnT{m{6%fEgx$8@QM%f%j7Uv$A{5pJ@<Af89qE$J6jP=6HOO&h&p|63Ajb+`FlSn
zPtTMz>x$MBtuLD8Lj!?^qV(h?JU;yS#6{qWbJ;%R_+a>8`q0FOralCG2>Q^>hvq(X
z@S&s6T5r6C4|7t}{yCIRZYh>lKC~8~rHw#aAKD4Dx9#-r#039PvP-1hT$}!ITY6_7
zy7)lg@tO}^ZT1TIeDDi!RW3SId&?Q}LHD8V;q>dP(!)M{kDQ1PQGu9fTr?rdSk(v3
z<|6qVhyQYOX|JRY-F$e*hj)GG?gLkk=YmdyeAXPT9zOK+p_lOMqJ2c)5Peg$H;W_i
zwkXe<o8_SP^`W0w`il+_9ccSpY404cL*Z8ggMAp{1M@$@hoL^qT#`QKJLd;JyvOP~
z>EbcW$3J%e$HRRXAv{ualx=4XjOLB-U-}qP!iNH5eHbS&-nM@v(6F|1-zi6%NzRXb
znCwGoKg#$q#fMLPxb4FoA3pVAD*Lk!d)P&NnC`<WA6EM?gE!`E=NF<gefUgZmgqts
zW(&*_rQ2K|<_XUiU0~bye`$R`zQ~8gVp$^kx#&{SWuo-qwqIY`yxfNs!e7~zuYLH&
z=9NBtYcp3!USsnXAJz)56aCJ%uNT<h!$yHkqMQGJ>;@}`TP3)S9mckA7uX^CgAY4x
z`z{|izn!O0fArz74@Z31E5?1IwD0%ffbdVY<!6CkL=XCK$hPwn^`kx<li+31<D%z8
zPl%rM;gkSVJ}q#@hhGKG+V=7VGZ}l{hYMo4DEgZnd&!62h0_P8((Q`yRXg?%AFc^s
z7rh~RQ}mW7PvJTMcR5!0P{5BAKfe1Q;~vLwAO7><z7G$4*3`AhMI8?rtmb;;Lyr?q
z9*+h7^5JjW@{hp3qECD%R?|hdUpd>Yoa>nnx%}8YyXnGljyi*s+<s)Hq~+mP00QLa
z1@ijwf<Qje{B~>^-I3}?K|f0RQOb`ujyVhY(LRyFErSb7u!v|;(PE;-MN5cwy6@mA
z@PkiBmk)Ei=*Ps5ov-sFh*1viL0s04a(;C7ql+Kq{dmcbR(`bhqk<n5{b=Y%BR?wn
zvA2Y?mLIkKsLUuheqE`&><6`qXjRc_epDBzAzD+EK6UyzIqB;aruJ{T+mAYaFvvp@
zNE1yLb%;9sa0$?dD=D>_qhv5wbCgWcx_;CXpryVaS;7r$%aqzV9zS07qop659L2e6
zvyONg`@uO#JhBCHM4N~<6>a86bAcA3^yF--!M7Zl8$E6OXzND@KRWtxVvo{}Rq;$|
z@5k9n&O<i?EYZtP()Eg2PZp$ceqARPxlr1&yjidL(bbP(e!TC8*AJf`ef;R_hu@EY
z-<qhV`oU>S+(eA?@q(<kLTMpC!U7RdTA~6mKjO9}!9Mewi&2^%x};->_7XKklYVp)
z=q}nrw5KSq%YC?BxA_e}-n6;5z+0kk`>n}xbnfRze?QiZ%osq=5gC*9rkv~5?s}tv
zew3)|sWU2L5L<Ip#yg_#`Y~8wi0Dw!_eAN#J~P~p5q?Z%4f`?DkC#iPedGscujNf-
zjFPVMfghs<#@IdQLxHiP<3z{%t$B>>R7`M!H2Or*Nq+vPW_6OuqEkc}{KSt>ZDxZ`
z_hW`1pZl@Yk2{sJa>2npyk`3Gnctc_H%oN3A9MVeE4)y2p6Gnh1)_B3iPS~xsA5@S
z+v}8b9UbH0|Md^e>}7t0HhH+J*m6Hs`0;ZXzl8CXA7A@1KZpfEeB;MTKb8dWc>v$~
zv5NP20Hp$0?Z+DSF+a}vv6fBX$5ubK`H`PXm-w;Kk4=88_hSS5<TvU36U;4L_&0a6
z-})2Wy=dAN_UGJb{DHww5p}0))JfO(e(dvOzu)>2aJwHn1js-5vD4;V9HVUBBk-f>
zUOy5!PCE0G#`b^Z<AyZ{{P>B*@mrhM{Nl%PfrFxlL=THH_J|)xg^$^mhg;H52%i)^
zC3@P9J;PSE**81wydM|*c;v@pKQ1!c2OMwLcHZ>kH$N`<!J+kc{?T8U#v%GLPb}`Z
zB6?Ny4^bMgv08+0*p|9&T(|sSQny73cLeT={waD-^u8Yt1nBdSEwbCnz+Zm+?Z+?a
z&eQ<@@#9}Vo(~{z0Gys}G;%%h<63bikEa6vi9Qp}6|kam2areLIZ?|pCZp@Uj28mn
z9~%BS$QJ;E`9%weGMEy;oh1t4$TyCH0Tc>YivaT|EKo$WsAw_K;-V!2SZEfc8v=MS
z03!f1fYJe!3BVD6Gk~%IlnYoNj#Uq!d;t7>EY>!wn!rn<6+|lrP)UFel>>O$<|+YH
zwfWV?**pGm@pPtEBY>KcY%Nh*Y74v~S|<QSAWbw~ls;AFd0YXw1Lzn)rvNen$PA!G
z00&ezkGcY{22jto)ECGSZ4f|1+ukSukIi*DXY<^~63h-D$F?^KpsCHx1eyn|m6zz;
zQi84Q*wz8GvAJyk?S$KlcChVRI=MRs&?SI_pDKF5S`+ED0Kx*~t^(cwd;)&k9ta>P
z9I`F@#w!uwsA$Z##|09is;Cyg>6<Pl-a>bGxaCR)&@F&>1DyDW?g8`&;Ee#@3}D}2
zN6!Fyv1kE|UFsY(#L=Ni7MDRYnc-5d-T}N7z&in~Xzl2^#948GQtN>8?Ew0)GYoO?
z=qu1qw0{5t1O|!@5~WWfx07p~JvgHb31DadGXwZ6fcF9z7QmzcJ`UjhfVJ=%Fa2Qv
zbq6|!i;f6jq`)ZA4@4O|I)E`Y?`!QC8?YXk@)#Guc;SykC)oCh0-FcqUR>YB0x~m`
z1J;spQv&!zfc$9yQ-!CAP8XeF$68le>YNq8jhlhR0WgKx0bso{CxE#E^F(QxAHV{e
z7Y4A%W?q^r)cwW@9sw*1AUz025MKoFWdIKYcoe{L)^Gqn1@JTP$^gC&V0!>N*kilZ
z`zC-@Ke$%1kKIu?+vHmYIsON%O)j|0#zuiP0ZvA>EIif;d>6oafep5ua~L-9a$Ve;
zMG0F1*ebkD^n2U>@eJjM06MgB9^id<St0C{;4abK0qha@QIxTJ*^6x6&oN}bbxOCp
zuJfmrU)bRTco495{WuiB;Q)RM;8Flb0@mIfr`aJ_D}<u~923iNQCdz2oDATUz|@_o
zG!F0LIKxKi;`mkctmwG_&I?=+y(nt=bg%b&0B6!2$qDY80bCYl@QT3I0RFHo*8;dM
ze8aXxFDs=Nrr!$SHV4Cn={)WPa98+G(R-rz?bs%lUG5srQPndZ2k;k1zaY54=HDFr
z19%~bd_gQ)?)f)>CjmSSfYUbe7tZ>2yXUX!8UJyh+paw0AlA^CD`;tM(LAEhiPHFd
z5P5~wWgZ6e2T>r1N<mZ(TI)cjh?W*j4WeKWg@g->mJlrxL{WiaqQymdZk4u~C520g
zLi9yDmNRY22$!`j<pj!$z7#|S+g?#%_TTPHhddc=oSYCf=Crd)5LJVy7Q{bBz3M@5
zUB~Wiockwd{<y$VBZ!(o5Ne4MY6tO(a2?yC2&4t^_jM;7oI$vP7!<@iLAZm+2%<v}
z9fQaWqHYjPf@sP#d!*M3qJ9urL0o?)bNUOe20`mp?5w?xX&wimp#&R=dPH9hqOm}>
zXpSg7^XGT+J#4d}^$NJXXmimPqAf*RiM9@+jX+yb`nL;OTeA@wHMX=<&{`HI6hv5{
zvuGF5*MjIO;1#8tF9^SIz_tVh^4|(Xf`|r@45C{QFD`fR9lGajPb`Rd5Yrzk2~mP7
zpar1|7^0>f8}qpMzPo$Sdh7j`XpbOz3iJ|vUGxpnH$~~$TS`QDTP%G<``WSng6J<i
zKy;vO|6qWF+mO8*#D_tQ4PtN*LxPx@bPo;Uy&#4Kt)1*@bacNTwBC=eE8^k`JcQvv
zj1bF6(NUrwh>jK=BT7$hc{VPH@j*-rV)*yUM?su_;G94$)}X@G9PW9?DGd{Yn8XZB
zcJTN(h{?iJY|AGCpNdYE{Lqa_O_u~`h|U!KOmvp$>>%a{&~t7O^K2e5*13>3JC6_+
z^9W)|5RZfSD~Qj7SQ^B^APxnwjDtUa+Xu0d{dT1CWe~-RJHFze5yT3n*3MmYmuJ!?
z=S-(HRp#rUwWBDf27MdEsvvd+u{(&>L97X4XAp+V^LU|W<yyyD-VQG~*9Gw%)34lM
zz35i9n!rX;+BXHUS$K<WnSaMc`!)%FAH;Tn9il(jKBX3U#w|_frm=g1)`plv+qs$T
zt;f=T3}SB(XyM|qPhfu#2Lyf+{aN%EQTm)N;5y8E_F(#nAWjBxB#5Kzdj->&+OZ&x
z2f@u`Up#2dW#XrEr-C>g#0_?S-l0PsXM*75rC)>Kl%7^D&shnc6Fncqg&-~p)8~r7
zZ$VrV_+9j}9b4e{^s6@i5yUm&>$auVtpIEORuGSZ;JhYI%DNrI9ro3c%3aYvMem8y
zcwgXw=tK5xr-#O)hg>Ye-yHYYz9BRX;ol&haI_4eVhB%z_%DbuA(Rc_SrEBG$Q?qS
zkhSyCW|#B%sN?bs2lpa>E@bUUo*KgQ0(nJgc_D;+Hs=qafXyi(@bwKH3WiW9gu=GH
zWC%rsi;5Pr?ZrbVVKd)QloEz*c`=02!rt74m}a>UioV#Od<ZXvkW<Yufzw)2Tnl0j
zGB=v96hh??ln~NF)+>^iLwF^GI>J>%tA<cbpt>l1Y6#Q}p_V{x+s=KL+T99pKYDHg
z^{7OH^bmL<M+nXkxMBUr;}ot@;9^Nb)?x)b+yWV*nIY7*?e#*aFPvptLUL|H2{sb-
zgz&0BW6^BU98sp+u2@>L5SoY3J%k=1v<RVP2wg(R%9YkC1Wr@u{t>N1sM5#XvAdhx
zCWN*jYg37KqU}XHh;|h1B-&Y&ZqvJDGpW}?=o*4olJ$wIqW%y90>KbMA%ulvq7l)k
zC{yTj-W3;4*p`Nu9h%L02!^mJniTD3#}2yY=ovz<5IziHYzVK1@J0ylF^3_%$s#8l
zJO+f&Tlg*8@^%P)g!_v26YX!urhV=iC_Kovyc5E^HV+mU62eg1l7FtUWvfT&>3*NL
z$+=oQh6{`cVWe#tCGbHAqXov;_Nm*I)ji$gLYNf-VSET5g)l*w!B0b&X!9h2k3}bo
zP7(bi#8=pEI!~40G|}mzG|mv1Df(H+`hJAQ*%F*%`^*htp74CzvOr*A2wNg~=)WX{
z&qHv9;SOVI2+Klv7{a3vzF<!a;Zg{{hp;?^6(Q^nVNVEOu?dd4z7F9Vc8q)Jj#*0I
z+pd)%Y-N{Nk-ql_$G0J@;w3^@69R)gHiWQNc%A5XwtYSS2J!d#4~~ttWm5>7ZQdgA
z?WLS;Y>syB??nmQL)anwgKgOv!Y-S;SI_v7Cx&o3Wc~3{c6j!MFsWkZVcznO9Q#8!
zAVB^};O7v25jZG%$d2uFMmZ9~l(LyTj)ri|=Hmh<L{Elr%C^_3;X1>rE8zMygik;7
z@Hi`QPV{^T7X&Vf{w7Kv&LX=U!j%y2g>XNFt0DZsv2maC8uQ%V-C()GY;YRe-Ip`2
zhj4=f%K(MPO@UjYw?*%W-VNbT0s3@b?)kcHM&ww=gAg`kdG6eHF{#HP{KfG$jG|%u
z9l}2x)x*~3VBGKW-w?P!(DPwDVRN@|JQe*<l)+~Lxx&aDwqo;$5}pfND-jVMUv#`a
z-SI-$TBImn7<2BX=MN+A8;$~^gp@E+Z7wKKD2&3kMf==QER5n|lnMi3%&qJw5r%K4
zQZj5UKHTJ#quU|JjETyNVU!M|Rv3ToO6M`XnX^n7Wy99)oaIDc7A-IOl4yl6Dhkl2
zl0fA!>h8;6u!?Q3Do{<ddKfhXYTB`U6U1xP4&xR3x^==(Y)%tM7j=Z;wC!h(DH&m8
zhVgM2lX=B3>V+{VjCaDQA4XOfUBmE((SXHVoxf?=TCcTX`2Xg8H4^ZMzAD;SG+Q($
zj3xq{A;y(DnuXDvb#g>$5w=#oZ7<w1j8+1)w-#s<MqAs`E^O__$fyo-N=H$i+ex6a
zXqPZvv+c_!D?ZkI{j6jd-30t$1i}c05t3j+G%QNDh(J^{#zbtpZ;HZLH4M$R=mLhQ
z83vatp#zWZVZ0^A9=2ysfnK7ohw+BMn|5sPFt~UxPkh_9^a-P{a6i%hq60(+iqiS~
z%Jg@`7#s#?CyowdNEj?B?H>pX4dXq5VWNzBUto9`BLqf@j<REK{Ny=v+*)*Hj3oG>
z=vYyvKTcr0=trUxL??zZNq|f1&}~W>pM<f3kJ-ccG>oZCJd7{Gn8vny=$gl<@s1g(
zuIao_AG&6QF;n0((OIIj&*lv%JlD2dy^}s)&Rrn7P;`+f6I>j|5}QBgUjgABZ)Y&-
z%P{gZ$^K)xvOJ7NrL(y76Bm+de9`rF7~imuJ#-!5Z4$<}yz#@>6h_)(YmG-btO|p=
zT69eqYXxXoC-7Yu>jgI0b}kONISj68$z!L$mN2&3mTh5tFTCBh>=5`NY%RvfQ+C<*
z-2!{U_)%c5=swZ?qI6E#>tN1*lH3vwhH;4ZX%v&AI2^{2FlI+ECxWA491Ejb1l1!r
z9>$3<{^GD1#>p^Fg>gNM8)2Ld<4hP=!}ueNU&A;X#^o@sgz<0RM%+!Q*h=MG80UHG
z^=ZW8g1|-5-@>>g@Vn@=<*9VwmQUQjiOQXoxM$h0xw)@#NbK(Ey2#UXpW`M6#v#h1
zFdhrs61^>YNA#}fpJCh+xG(xZlqWt6WBS^3Li=tGesywpvx8rq{KKq<Q6hqp5j+Wl
z-^IKTLB0sO-3mMn<3A4X?>nC4c%HE%<#=*MkehBf9v*ojcux3v(Y&_ZU)#YCZSqG@
zAcB+#ydP#f_{x(SvA(|H#*TjtvSJHHP)ID~!U9DiC@N4)w74D1{U}RCtSuv}L~wJk
z0^t`$X)G;JCW5jNloKv5T1oV!2r39v6s5njR0g$j1TTx_(x&_jR*m4R;!g94Qmlfj
zMg%n@=n}ze5!8yHb_5L~Xc)mO5!8uT(?aS;;5nfv5u`<s9<eqW`?I^ln)30Tlkcz`
z5jZ0txJ2Ee8KN|1Mo`!0dXf%}SrKbvJN+Bw*2eTkG)6dk22CP(HG;+wWJka?h4>z-
zU0El$!{hpy*+Ue*8skz$O(SR>0pF1|i(uW?=^ssSHjki11Oy%}1zL%AENZ<<YZF0R
z@h7(vXfN79v||LF{ulc{?eDbK|77z;@GkQlfiHqyTV06=-xIk@`P}{p0<4e~N{|jt
z506j;Vd02q)V9YWh}+!wm`9C3i$IrjdWkYYL%@t6DbP){yJ!#5o}%>Zb1CQb2;Pw3
zo1*<9=xxWoCGd6xeFXa2_Lf0+f8hbPWuU+y(RU)a<nS=@ArTCX;KK;UMo=Z-elLPX
zXI;bSvp_L_Ro;(aNXR`rf~N;Fc#IGjDLN{G4+KWrv120m`6J7%^u&yD5quIs<!?OX
z@obR@2oppJ6C;=;{ITd{(J6K;S1|ZAg8GM*W)A1n2&P3q;4xibhUm-)KC|t!q?zb2
zmz|S0MHJ<um><Ccj$jd-h;WxcEQ;`#Kek4&ID#b+tdC$r1b@%=d>+B|XO3?o2u^b@
zWp8=awJd@!1ilodWx2o#-ZBDT+xBr`2bZf_8NoLvJ>N#KN?^6<8d2KU3ak_TE`sw1
z95il>U{l0;FS$8lEp5alk}m$`yzpJdnrDu3V=}fy@I7yk2=+&;IVamASUJM+(zg8E
zDRoB#Kkzo(<Jc*>OO(Og5$qBEQFO0uKVI3{f2`v`1gT2SPZ1or>6kw%<7W;L|2ThP
z1Fdu(6eS#r;IPd{1dc{<%(n0i=E(?7Mes)i*CII06uLUjMDQ!`kv6WLFFVdgFfime
z#{#kmyiTq{$@MKSL@=e7<Bwhr@<on*6P4dYFGcXX04<jVu0*(Ws^!4r%T})I5!{I2
zaRh&H0F2-kho*VTqX^zF<>Vg3w<F-r!d&n4P6T%&*2=MeiW2Tca9{X==tJAS<i7Ic
z2PZcR{yTzyB(>sEYf|yQ9M7Y8K5D(LdctlT`M>v8{|P)3%@sv%amXV|&jIh{<dxG4
ziZY!S1oDaIkD`D;ifF1ReV7MoAqf^1Eh1Vpiek3UKN)#SM6JS>6eW}rfar^&rA5m`
zQC47d4=3GTilRakoucR*Ma3v8MbS8l>?kTn@p2T^qNpB4l_<_ucFbzgq-qqy9y-<~
z9BWE8;3~o2zTvD9MZGAu-E`IztrbOWfmfn%3e*v$gAzrW&FKP;D7eBcqj<QYaEmcR
zG*h&$C}ZztT5k2D$g(XBqG)JyqbNMWuZsRXx*(l%qG%FD(<qunF_PoI+sWm3UL50T
zdDz)JiWX6{jN(DbjGMnGt)kY_I&rtN(>WKRbrfyHLT(#HJDb}_(LuPQZK-}*>B5?1
zDWZ5Uimp+3qj)=tK2i9h@JDgQ<Lu6Q*sXNk;Rr+#jH1g1M<@zafE<n@A{-TsiN-|}
zqV(bER84|<6o!B)nzVhoMbZA4lWskt;1;etdJ6Q4;&t2dhQOOq^cHx_wy*!u(>IF!
zMN`(go&A`8Ugw(mj{Z?FI6#yzFp5Doza#K&6oUnZ*!Eu@Ifq5@eiY-Q_$Z3utc3G<
zhd)uqMX_y|a|ByKV3a5=9|(*V9TUZewtcL?)+b8JDGyKQ*8~%ym>9(*rrFxbF9ob`
z3R*iqIGe+rXr@H*39lH#M=^XF#ndSB#PD1U)1sIj#oj3PMKL3anNe(rVq+AaMKR^y
z^u<vu5ttRlYyleQL@`%*p6Gnrz95Q)!i#K6nd7d{qt=RQOQTp8wHD)A^3=su$T)%R
zizvQ~VtEur?<=cB2`i%b%I2@5_(pi8=(o0g{IsU@Tph(4v8)wcC;FY}dQtl9)}5Q8
z*c`QHH0|N-AH~+FwFcMjC=TuSY>VRGLTTJ~@Ozd~c2wLhup^2eY|G9lb_uV&okAb3
zoc8xF&yQkZp*Y)We-sCzxE{rgD1M6KXQs@b`s~2JDZkL|sq3JWnzQD%)N@`s<~qVb
z<B02M6o2klICb#C9M7>Rj!W=F6qf`}MsZ5ubQI?V&WQ4qUpc(kTx@85TFystK`a+V
zf3ssbOO3I=M{!v!S8V&$DE<(>W?Q)S+D&Pr+pMT4Zt+H5sRZ^aUc+&hm#gIbJ8G>V
zM)*^L_eAe=Ob~b|%GgIyJQn`Twrm*f`G@^{WX8Xe{u5Ew+f#x6M4v^GD`xeO+@gd<
zTRqRmkT-_37}8^SA%=W0RE(ig4EbXy5W`EfOjlB3NR6Rn4E&UsZ@XUO=S?>q1!LCt
z#f4%hEI=+IP*k*748;XX*s%*PI7>+i5M@#?3Y3najBP0^P%g&r1g&fF82L{+uUH`l
zexc0QeB1-2atw81xbR%o%P~}u>@_*z;Lb8tW7cLg)nceFP(!q)DDAaks4e`8ZF%&I
z<IAoNC5B-yIP!WOju@OVw2YyZr0I&GK@1IJaL14lLziKW*IKzQH*#dgK&=}?Jppok
zfvgx(COH}81}KeU@Wk+H4EzxIu+m`ONQECqH;$p!Cyp^EoY^c3qfR)Rh!UC#G!tze
zLkrtp=&+-83~gda#?UQ>wlTD0WyY*6Z!%Imc$EHdm9u>e9hl(~P97a&=p@|PwseW%
zHQ}zd#Te`K#o(7j0x`q|m|!r5kZ{<xL}G{v$85{KE7=K~RRK*@kHHWy?O1-r+&zXK
zG3y)fcVp-ov%dT8BTDEc@Olhy2)t?AdkefJ`nDuRXC8fH=x6)%k70n#0|f@f@Q!V1
z^OAdT3`1fVO1J(Bk5K~ei4GHeUv#+W2+@%->=@|$pZ^Cjj20t<V`BKw=CK0fV%F9?
zjG7R`#25<2Q8<oCym}1BV>l7R<QS&JuqKAJF?_<oKZbcR%#Y#zcIQ-%|1nhP>+b%&
z^5(lv!t@wsh=n{ehR<xCB`{lbP7HHxd!E|v1u-m)VL5x(TxDy2H+Qk;qE(C7bqBZ?
z$FM};b5UBB3M`A^3xO|f`<PpS6_NrI`AXnx(Qiaoihe7)Du&epp@SYeuZ!Wk81~0-
zAcplZY=~i>q`8q}$TEe;4uMUgn?<+8u+@&;Ch&a>+ilCjCQhF9g9LYq?h@S{!yen`
z#~Ak7%xYYGE5K8>_jUiod$6DT7*p%({yBzU1P+QG5<M(>M3g>91v0DV9eK*drN&Oi
za4Lr9<H#Gw=@`z$a3_Yly#05%evRR54Cfeo*;Qa+&UrTLc=uIN!UchgqQAv($+rK_
zaX|QrZ7KJv^AF)`qStNvjTmkU-x9rT+uwia{xb&7X!<9He`B~O%;5bP9tc0QEsq2q
z$MBbJ`8#IK;G**r_W#Su%|cmKF1wxzGx%Q&&uq>Ww;XcEkw@S;QCfKJ3vuL&qd*)f
zaeTT)dAiA+KaR)@C9>JMbZL5O9M<|jaclJ(u9?GAwqJ6!@Vbk{Q8bQ*aWsmfSRBRU
zs1t`0M~OH}#!)Gb%5jt$<SZ2j;&?HROHH!A^*f3*a+Z!`?Q2ec^jank2Fr>P$_bQ@
z<0actA&!bR^E1+y<7hX*@yWr|DsgPR6?p5ugCEaUjiXu|=ihZ!7p);$Q?!<7ZP8am
z>Betz(^&RrjyEPNS#hMt;fRADP|xx?olI&~dizC+D-L%Y1Rfc2WD3_6ttVRFj_tBk
zIX1=7fMr~-WOa6U;&?TVSloJ%{pmTSF(Hm7ab(Bw-*V5+lr-(B(ln0lXY)3TqdBkM
z!o^P`Tg1^a4qx1QDc?%8qiAbU8r#ItR=AyLd(jSdEEl5hWOHYME^)kOTe`;KwR!P8
zg{k=^7>FY%5VB*#Y;@tMZP7k-#N$ZBp~j)b@h<hLqQ_yx(I*bR^)};ZJWk>9dK^ic
zyRm>a_lWa5)Bp476$djw=QqUirf6@`w?y9-?K(6Uect@T(Kilizc~5}kOv41jAM|%
zJGPy31_sBiuO?eQRffbdl=b;kc~5kh==-9>MHw|hVBdR=QE_|_$LRR~{lEO1z!)YK
z$JjW=#W6mPy>aY|<D)nx#PPj2OyuAn$LcuNNbuu0X2&rnj>&OMiQ^MHwdn$%#xd2l
zOpD{>R%?F#46)1<{Y-S0=v&90W9(ev#c?c&W1jGQ(FLLlnfbJQi-hS+rhXpBO0g`B
zW0}AgaV!`3()KJ|E^9>`U&V3ZAJ^Bsoy9)4nzatV|MXk2tg`)$VD7bX@Y8iVY>H!@
zuoaABz3>LxvN4W@t)2h#+#JUiJB6(R+v4c*Yc3|T-L~%#_(621=&m?++p&9iKiWL>
zign`tIL?UWfap(blu~tnj^h`BgK-=epz%-~hiyI*$5G*9q9qoj(cy&fNzqfHr$rgH
zb6z^H^=lkw?W>>Tpdoz0wp{!lw9I`ej^BkZ$5AtZS_$-YHM<hW)j0l$<60co<M=0z
zf8)5p7P(d%<(-e$=iH3rRvfqExD&_2I396SJgR(KJmqd2e+u7=;{oq1BjdgVn?9FA
zhxvUosf#N%cpS%Har_;}fxPZzeVU%#?Hcfl>yuYJug*?;635dxN+(bzf&b!o#vwO>
zjUzI1C6GITlmt=}$dkZx38<Nw`4gD!azCHIY5r9euIg$+`wI!=69@9gnVHXy1_~t5
z(A9)oFo8k|6ia}fg_+KoCPfpVLy-jT^v<D?mZ!G@jaD};o<NBNO3H~y;N{x^rcf$@
z+Lam*cnU4`ZwFpJno%}^atTyOpke~m|Hv+%z)J~y@om$7TRiP=2lCcw6d97^o}OJP
zf%j7~swY6M%mf9hh?bk4T~(l30!{TMbnvBQ)JWi7fs9_a1GN))C4nuwT%iQ&B%ma)
z>pS;r38W>Eo<OGrIw#;rz?nc3o}Pe<NhOe#K!XG_639%TUIIhDY&!ph^YxEBLqpEG
z4BigBcg$TsfjJ@PE2T0U4Qkpjfkp|unn2?O=(g{3$MKImo&@Mdc%zXcn@M%b$dTC8
z^G*6!uzZ>&&^&=Q3A9acG7J~NcJthp0@H5?$gRY`bpq=p*e=1(?$9BDj=bEUrpyel
zPPaq113Y*ABBf=u%q|HG&Yf1TWuDQ6(>lDXkh><}O~9AH_O~<m!iefm;O6Z>Kr|@Y
zs=4FY)O7y14JQyuAeuldfp`K-68JoU1p5Q)KY`&1XbI>E^h=<B0!9L60=<~Y1d<7K
zOQ1WOa+aI@in_jRK`M_Pyf4K5&WQ{LYq{NTB=B|ueR#{b-EWHa7JW<fc_lMtmiyEm
zcl&LwzAW-K*KbGj4@h8O0`IbPV#%A|J%|;4JmZ}NLK$uz?>EjIlEBae=BK-dF_TXB
z3$5JmC2)9}d+>Dkq!St5pL6az+#?bgnZTzBOif@^0v{wWF@Z@5j80%o0^<|-D1i^z
zQK!1ciH;Q=vByoz@_d$d%I_`_&hD_sJt2Yb4>uuvEEj#p>7J6n<ODu;x?4_n56;MJ
zI@A400;Q+B3DXjop1?eMCNLv`nNrd@qMz}K$1`RpFiV20Jyy%p-ImTxAb323z%&=|
z7IwN><V6WA6lRbao83ESF*|TtX2)da(gc<zuqlDfyonO{GJ$UrSed|x^vvZ6e3d|;
zOcr@X0^6p#YtFQ)=xcVrPpztE1%8{rngrIets7^qN?^6X3MG@lbqRbYMO)81s7;fz
z$1-YXxS1L=wn6M0Mf<dMZAoBj0{bM$^taJJ0mAp9gzb{~9TNOObf+kbvs++~=#P@Z
zUSXc~QY*Ky&9$GsZky{s0%vNve-i##H04f!<MzP>4za}(IFi6o-X`7AsXLA(aGZCs
zf%*ncByf_guVJc&QyltOC>85foJrtU)}acQin9rvqrIPUKY{ZCmqjnI8Xu%z6#Y%K
z&)3SO1b$DT?o@@xxP=)!>q-Jw6Zj*6YYANEz?i_@1a9yyOW;-lw>c`_b{UJ^Wk)D)
zRLpeFb8M*W@V3dQywmX~qgrI#<M6xr`8RgBE|zeWY>|0rj{89Z4-<Hlz~cm<;zbpI
zCGa=hRODCjPXhmPwC6aSz>@@?GV_~Ve=T+1e@7X3UU}i9<MMGwE)}^|<WcdQ3SN}i
zW(E$o$ncfUd|pL|2THNZ8F^JOc&9?<3o0^7y2u4oq^KyYqKJybo;;~43aTi?i=KAm
zl+T?0Na0oHTu{o*b{ADqOhqXbgHERuS21>(vvvb#-klDXv4o0}DhNCV6?6^Dc2{{Z
zv$TpbDypie#wZo#RJ^33f(pi#SJAS*bLe*W%A;1DR8&z(1uwV5?V+})m|1z5Qdz~z
zDh`y+tRk9{?Iu@OQA0&-6|bnMsanl9aCv$y6|971U%0z`na&gIs8Cd-t8l1b&eOz=
z`KhzXJzKR3MI+1g*=)tlN>DLT95PkZRS{DWmtZ{=%~Uj3QC~%tiUukgs%WetTSX%k
z9u=>u7*i&5$!6E(o9WYQxjL73F*vSZT8@e)Dw?X8uji({{xL^|c5ZIi!BxoK>)>v|
zf~)Yd6;!lR(ON}&HjRolD%z@Or($}6M%=$+&|~Gn7B^2URXA-)YNL)SI!UfxW1-Hb
zcUHlRa?!JozjSs{K`r*AKvxyK#PB<=oOW)%ihzo+iinCJo2+nJqaO-}Sc+$^ulf4>
zY<h|A*2+;2isy++vLzO}t1odRRH$qn74I`C6}pNyRrFS2s4!LZP|;IGQpNT8N;ehV
zRrGnFtazaGTJNcNG`;OY_qDlh=BgL_9vi((?$;&d0|%ABGG*@rg=f8`;%ya!RSe;|
z>>DLrv=3C#SGb>wX*=9G1)KF(F+lkI7$+?U<|~6#)Via*qvBlwF385<P^pAmJ@UM#
zf*B|}OF93$<J^mx!{xdiD`bsUF+#;i6{A$}LLdCkZL9mnYK7D7Uc2oYqvAt$V-@36
z(0_u8Rr8hcDn61R>nfA0Sysqm1{U46U=piZ#bgyzR4h~Rg^Ev9d@7flN6U}ORNi{o
zsjOJ?G<K3>In!0lkSJPa3VbFyOLR8-r@&m%>@U;lHeba8Nwd<Oz(N&^RGgoY*>*(}
zMlELNsnTSL=;tby3h*j4eyL))inVg$3Kd_eSgGP$6<@3PMsjkXV*#e4*U9cNA(N*t
zldDv$R<TB6E1$FS{6B4UC$LV^S@&5c-8QJ$$ULaHpkkAX%_@FTaZtq;6<by8QSqaS
zZ7RN3@q>z;a^iN;9lUY0+)QEXR7-j6Qn6d2$fNRE#zXb2|7iBA*w1@h#Xi=2ru9!s
zg?g6$q~c_C=g)G=)g38altR`i5<I~u6^B(EQE^l($5b3wk(z2HyLhE_I*(pyxlc*#
z85O?@oEBwjXW5fS<vJ(9fkpEF&%e~QJQr2`#?eEAL$ijLODgWF_*2||XO~lPMa5MW
zf2g>r;+BeQOh?5Hj!TuZx@`AweN=usKu-Q@apjfH+bZsGL^ASM`YN54x?4P-w$Hey
z;yy=R4Mj9OQ1MVjE)BUgJW}zPqrHlMRaDQP^_PmjRm}ZUxn($CKih;UA8~q~sCcS^
zE1>>I{nYuWQx-olxPB@98QbCug<tM(tLo09;W-WYH5AbByoS6QUeJ(FgRbP%)Er!%
z^qp=_9!!m&gap1+QZ%G$D5#;3W))=kcj+G#OXDSOedl5NT$PkiR6{WhFKMWtp}2+;
z8eY^;TEnfhl#&`sX@CZPv+&whg<pBJEa%Gj+EZ_;^X?&684YDMl+&!GP`edNE3aYc
z5f?wcpaaXr>8}+vRMJpOLv0O}HN32$iiWBhc-_=Hjks7VSFAl;H;0K=)4)ouE?Psw
zA0Ikv3e(6hN?y@WM}wjvO~dCKo&5eqEuGDrvmlv=TyGw7(c;wL(h$}V(cspQA+6j&
zL#Bqh8k#bNa;|zB>TB?5cvWK`Mgt8EH8j#N>sQ5EGWS1)rC^0~HF6e#7iz2_TSF5%
zm$NF9rOuJU@^U4L<nZdO^JW^FYiOaNrH0lT+Gy5?A#8}Jr_)<$cz>~n1#HVE$Z_&$
zCopYvW_tm?q@%H;hE9^(&Ki6g{4BVJ*EICMm)=#wnC(poUJbk`kH&dY0~&fyRf-;V
z1zEH$o|Rjb5S#2^dhg?|)`wkD4KWSxY8b2`t|6h}4GnK<P&H_Bl^*OZn)Ss>QUh~h
zXfQQIcW1Mn`E5&?m7Z=Iy7O{}UFCLrSZVB~JvH>w@H#91s~i@M7a}m{z1gxY^1iL1
zkA}CH&V^hDw<^3H`fBK>VUUJ*SPIE4?-%yr0d|`XlqP25(!R8zC(=IS=H~Pv8ir~Z
zt6`jm_n1QsqcnWLI@B;+y82J^vRM@)H0v8EwgvB_ks5*<JcQA#v8~D&4IgS?=O^br
zV)fX9?K0Ro$7}dV!^avXYnUJ{I8nnS-Wqor^*HQeBeKbua|R19aZHg~{e(SsrM18>
zQ{ZqhO~Z8F$U5@qn4w{&hKm}0)9@KP5AO~Q$282=Fh|37sbroqSHl+?zGQAS%-66$
z!$J*9*qv&*x?N3K#11(}SuDzF1HH>+aZ<tOyn|R>WwIPA6&}kpYo@{ObFSqYR%lqq
zlr?;%;cE@6HLTI_jfRyPzSXdb9WO11QxUjH4gGm=E&-J(hpwhjnc7+nzZ6WHH#Bv<
zh7BB`+@7r*3|A@}HJof!a1*;tb}Ah<YuJC$wM9dRpBy}qx=q9P;(vFwhyJVAc}Au>
zcWC%Q!%hvmH0<Un8V<1ePAGdc>}4OmnEs<EEv<KDQ1?mfTjyLqY4};gVF~`C;h=^?
zteKtJJPIn!sC4G(JnM+~6g%gl@y$C*tBvW$HJs3}XLH6$4gcOzPO}5AR!)h|xteiC
zjI{r%;jGQ)G@Q5jf<UVs&Py78*Kkk6eQB)AY_;x<ZgZ^TMqnDQvU6&<CP7+mX}B(Y
z!?xViu&9ueQHKUA|9s|nx<<J}pPG)l8eZw+_>*JuI%WUA=?^qK)G&iSyzVgNk@)1~
zOM9&0FAlbUI0ky$e@g~<R=ExCe>FT|L;vT<UgvnK;Xn448|lw9<kBseQ^ys(rF?Tv
zx!uh9oQ~&pOx7_)M_wH-=;*GahmL$Y^6SXdQCCL+9Vt30>Zqh6RYyS`(D9;<LOKfT
zD6XS~jv_j^27XZ;#RPupuk=3cRMvSWe(TA4-@%3J`Au#~9i?>Zy#s?!FF9!`t)q;N
zmvrlk-T0B*Wp$L(QC<hn;)m56ze}f`M{JG4vnuEqUL!Yym36$VqqdG$bR5m^s-mNs
zj_Qo<;;5>F&c!FXYv`z{gBhqLiSu*p?GxOejVZ{lq4(c&)nSwlrw*5nG#%+W96H_z
z=AT(9i=K2~26*4`^uFHwZr%DTpP}Q;v_`I{Zl=II)YDO4M<*Sfb!6#ip!10nn(27|
z_goEicyzp~<J-$hBW5)vOWEmatRq`Tj*cdh+K7pn{NSDG|NGF*)c9%k>Nc6pb+pjY
zMn_v6Ep@cg(ONRkbXX|9d?AdVolXCCI@;^#prfNW94eB<`egP}mU&pW|9+oApDsFH
zV{Pb&>*%V(t0SNzsKcj&n>F}#Yd3)sgA{Iaz`E_{aD;S(bwt_RR|-T}Sg|vQ+$4e(
zGGt{sUj`*~s5(p?NgbLFoyned8oISTL62Ro>iZPd8xyDQx}4&=k<yL*>QC36DppVE
zsiT*UK|0>i@j7dp)qdC2PtJW)TKsJty`^&A5+l=Wc{)!YiRvrLWQ%Mnz_a?xxdTK8
zN{^!PT^-zp;6oi_bquCa$50*bu~+CAA)dn|@%MF{?4O^d<0)*`k#g239Un-0{ckUW
z(PA7UTCuc?2kql@jAsr<D3f%2BvET8=A9@ofsK35MSr#?cYnw%oabZ7)vr(7pXm6M
zSJZJz$5b8DbZpnLL&tOu{yM(W@wJYbIzH2}nD?fRSvqFxSg2bwH0J1-tMi{kYndhn
z=jmwVYRWZyI3s9j@igwfw?N#2^<0Yt=yT#g#^*Yg>R6`Z3wD5b?%}snSj<HiQofYp
zFW0d`$Ic^G3PrXn+<|eyMy2R6<r^I<b!^nJiS?jk6%(Ytj@3HW=vd1e-=CY;<=mCN
zFFF7DuYTGRPocD&#jTv{b!^a4uSU+U;%TjWI++^N+^l1Zj;*{4PNXcVmwM)OO6S4(
zc$IBBzSr?q-mL$*aksS}Bv-q2>|w5icZt%0+5S<-ULD88vQNi;9Y5>%MS|QY@PLk=
zc(WW(sx)lE2|uimgDiXTv_m=$a}e8TS=L;4Ic~V<e1!M-4cAc}eHy0{j!PmZMAskj
z@T}81&Tt$vP}IP$I?n2NpyQ#Ab2`qmL+ZGu<ARQhIxgw>T~7Rs*>01!_m4{Tkr}L+
z%Q~*;xXJ;oX+d6s##iz>nY~n>V|d}L>pE`exTWK^j&V7j=k|M8dp9`>70X(E#d$}^
zT^;w?4O%(x?@`{!vD)QN9n^a|x*bpm&8K8CsYf~<>v+z<^9KInU997&j{kIPHL8Eu
z19d#%&6VT%*>Er^u39$m-}JKoxk@}xp6SSCAh&@grxjLL9>W^e$h;h<MbVPizzYUa
z45S*!XCS|U0^-B%{8*E0HSTW7it;pUQqVvl1BDG--I)98S%nqI`A82!)|@3SSys$I
zaRaps)HYDUKuH4?4OB8v$^Z<MF;LdPi-t8Zj8m0Lv$j_%Gbg!6^>lK>#Bv788+ge;
z1p^JADcq#;<i;GP$<8zGM}?>GT9pmFY*;hCsvD?cpsImt2Ac1&{z3cb4;MQXJ1U*Y
zTz9L6c-G`8CDWMBD+cNqa2jwK)-9$ONHdUbVA2{-K%N}dzLksDbr@DJ<$dQikYS+a
zy1Y!BN2Y<g2ADYOf$A#dpmUai1_s(C(LRZW1{xXYV4|Z5kAYVW>^88+Kw|^hEV6+?
zyw-~J9E00kp%dFeYPhL^W-Nk%76#fFXltOQfmR0i^slvnp>=XfeCN*hSlPeR&Bt*~
z=egUlR?p>b&kONMro)x5d?ugo@lji?ika&UTlws4AYveDpo@Xm40JW%H4tD`7>F-R
z_ZgV@wc=+D99D9UW$=MmlNU1wH_vyWcJ7dYuz@0d9R3QKd|-H`Ty~7780cZ3r-6h4
z)qrUrX+Sfe8`i@&!vNi?UQqb3jz9~avvo7@<Mov829}>y?w@wnE8}7mFWSq%>jvI7
z(1)cn@TP$~ryOq?U><t2!`#Z?MdxgG-|ga@m+dx>Dt!&~Gtl3_00S(zmDQgWCbhC$
zCY{f3b5|>$`Hq2i4J<M6xq-n3h8P&jHe$UQcu%T#l!0Le-ZwDffBkt+p5X@gxRsaS
zgFZg)tJgixNCQ6~&EPXY*4_sOMjIF-^}vUaAF|a7x^4xXUCU*TH}H{x83tw=n80c@
zFvY+p%w%T1Nd`VPFqyrvd?xF&?g)itVUbzDPYp~pFwMYp1Ba@+S-o%PcJt}zv{Q}|
zo87|}yBjY{|IENF0}Bi+G%(x190T(V%r`JsnvBm{nPE28!@Zsji=E6Q6X#V3i^O3u
z%b4vx_=|IOwG3^$d#RLkwShGTmKpfMz?W<b1K$`}$wA<Q+-2+JUSZ%X17EYcmN_?O
zyV)^1&vx^f=eGt{8DM8%;=Cwh8O3X@Wrs1a)xb7M{5#g6fsMlJ4e&Abu#uUY3~V;A
zMU4H*W-`N1XE|93Y)TgMdjs1I{9s_GIDFGBPvmL+9n!KF52ru3%gra=yCka3CU>tb
z?jH^8<)CCDpJ@$N`wUz%@VkNi?05#B72szBCk>o3@QZ<i296py#u_%zzIndG299tP
zI_Ti<mPJq81$Viq{JVdgw+u(QWgf0=yr6o<yzkPhTyZH2J*N$vF>sy*=ZIwBEIawB
zeCK#edfogz$#nMC%i>R2{>mNgOW|*)iw1r(z%=Q=-+0{q>9XYfu7N*!M{sO3@P~nG
z25uU-W#GDj8{)uZC%3g4j=$NM0Uo!l?%}+{>o#<7XC*Ff!=GFC4BR*H#K2Pn4-7ms
z@R$R>q~KIj9`SxGpNGyh@}!Nrk@B~}rEl;r2krVUmY2T(`J0eg;!nH(3_LTC$Ha3c
za+%0&BI31%O8(~LrRmfAk^6ZQc}=UlJQ&4agRGMcJ6-ur6fn_HDnG?Us)<S_cI?S6
zXrhpb7fqBlQP@Ng6U9xGFfpcS!OPbiMNJqJtpXM^vHGT>PI8wtQOZQ^kDQRGUM&h<
zn3Bn;hhsB$PRMN5qF@;l<xG?}QI_e9v(6pZGv_4}6--o=Q$F17De_A;PszIOz$cmX
zschn96ID!9HQ_MfG*Qh&bza59D<*1~sA;0u#HO`Ol$q@uawiZ%CUgFC%?$2hMyO+A
z+MPhU6h{$FGx1i{ri}WZo6CgTL|qg0BsRlDrinw@&X>D4Wr7zUx(W47WSQ2gK@CjY
zn)!eBob~Bz?gT1SZQ6)`0!+MWqOpnodzCgOvQ6ZeXlkOFi9t&WHZhTLs{jjoak`_g
z-$_ez6D>@%lnSS%l|XBgD|R|JEOW1_lwrXIrL82`PPDy=4^}EXwsmjX$wX%p4@^8X
z(Z$4TCT5$MW1_1GuZh7XhDd@wR;dZogx^HKM9@UYMBGHeM3~*fMASsgM8BPGKGyzR
zv$jy->j|ZW^YmH|Uk#{|h-N}JK_lNp6ffL}pZ^!#>UNz`k|w(GT;|P0cN0BWt0vwy
z(bL3*o4MXJ(VK1EAiI}|*V(l;INx9mS8)({xr#ry`E5H##lm-7eOPJ}9~Q|Ux|_<k
z2A*ZgPZcwHi2)`Cvi3~8W8y}UtTEm5@WFdpB>%hY31xEgxjmoc7oO|R+N2CM@tz63
zUisL>Fca^a7$-R&Zej#0&BSO4wpx{Eq=`|I89v_UYlz21(g<UCbrWMv>(v0?L@;H(
zZXocD#&|jLBT@QKU>)vqPc$(}fc)wLWwMDWCO$FoDSMiU>EfKyEcerzm@4(g7eg~l
z%rx<tiCJRd`x+LIyX5e#5G(etehObP%r!C3#6k8w6Z1_hFtNqNR+FnKVv&h&O{_Ap
z*u)YOUzx~1*7>=K6?>JXCYG5vw$Hg|gXaseGwMqdFCZ&3J7c+RS;3p7RTiVZHlf~D
zzA>?q{X9E^yPtDO*n@Wht4*vivEIZ66Ki?tdd_t$2rs?Wlk2$a?hV(P?>wB<&jo3@
znfOK%n@nsrt?BE>k9eqMsyZuPQ(nmB-e%%^6Z@qSw)2KEvCG766F-<ZUm)e}Re5)s
z;3@o7{ChluSJ`9YN7lTFeR9e)SJT&iZNjU3waN4RTo1o%;9YaT#7`!E=6!m<z`{RL
ze&G<e-*dD=79F^r>R}T{Ok6ebhoo@S#2FL6vQBs*6DLfZG;zwrX<ns-lb=XDyQuII
z%)`#7E@t3nzO1t*&Y8Gm;&*0}z1PG=6Tg|(9`Vcoea7dtuEnk7S8q;dZCvKHmZe@X
zF{62Eo)zh=oUfiK^too@x{13|=QkuXw}dypntD@$d!`k*EtWfM;(AUt2Ok*zDVBR2
za+jy`!;1Ut0Q)^m@R5nf9CDK=n#5lmd?ba1ZLL4n|Co3_iOavG|7+rjiKlF@@frV_
zc*c5emb&n1YOW-5Cy^(K=aSaG%vbL^jCIQA4o~EmhdW9$NdLS^ypTk`B=RSbnnb}Q
z3M5gud1^}1`iPSLbUO;imsfKNCE?D@TR3U`X=VzV*G(vRJ*8L@#gk|u_7X{yOd>rA
zM-ruyKoXUccsYp|lPH};xg^RbalEmoOcG_qpSwg=edc_vg9FE0FC|fddFbG-l*DJ>
zcs9E{^sJZ!W5=FRcyN2EDoIpLqE-^Mlhzt0)sm=@1U;)Kt+h>f^qJtSnZ%#BTs*Sc
zyI)CS_Rorv#G?A1I!SQTB^tTvR9X^OE~J+~;i1Kugp0rAS>7ag33n2iNz_duBguc9
zU9>R$dPy(?4U#z0Jl~w5j{2;nXU;4Z@R*A*tg)3<PZF;tk)1?N5{+4<J3MPf=jQ%U
zx!PM5)g+0gNi<7>D^PL2ybcXL1v<J}wB||cq4XP-oLumvWzu^7*-EsvXq%+<Xq3jb
zN$?RUxkC~ilQ6p>*$thN=$yoXBz{Vw3o9y#51G#-y0UVT=#fNEsbpW08=_gQ=1(G!
zL@<d^5>c^)S#OycktFV1Nck=^Bc7Q-?WZ_nNl@bwn-Hbj;J?zfB=jT<w!&s-GKp@?
z2^+Ni|D)+Tprk0CK1UEZj;ud|WRSeK@q_~wE|5e)QN+W50o}=AcXk#KQ6xwdQHg?*
zK{5#VCkP@SiX_RBBnJV>0w(-^(|o))uU<`eb#<lgotdug^`h}YFv3FlJ}dF|#3n4)
zV&3m^Dh53UgV&{y8ADtk#4YM2aI1Tmw}}`WcKx8%709_@KC1$wBE4hi6GPt^-i~2l
z41*ZeF}xGQfEY&g4fc;=aU}9?4DZEo>+cAE?)lTd>2{dNo@>GPMQzv3k)C(MgJT#%
zIj<J*_(cAEe-Oh^#`X;V|E5Rzvz{A@q(+5D#4s|3IWf#7^B6u9=9&@1=omhVVPcHO
z&0$OoAIC5*hVe0cB1Yn;F^r{szV>m*aNuOT9^_w~-}%$eKXaeJz$gfF;3STQe(n+e
zEQZN+eGDgai`O_;Xi5y9$M6LsBoO3KZPFu5;;ADellJ<i#V|bvHf(s&WBYQ@`&Kzq
z$TLg8*%Y-%Cd<E!VO|VdMB)4x7R0bBhSf1FjA2m>U&XMTMu=fa3`=8J7W4jSo(y@h
zFA8~IJl?KgRSaKKquyy#{w+myj!X!${C^zO-NU@)ys;*RwJ~grVG{>n4C`XxpT&O{
z!}=IVNqNYSt-g(caD#x<i~kf)o4oTz8sX*`z8AJ4er#k!pC0@{Nd6;PahSwF4%<Y@
z{V9llH_v_RJ7d_zIZZ+l2|vfMJBEufT%z4p`1T0mV;rQEA%^{o%oq;Si94eQ>8ZUz
zUcYem=oTh&h+Zp}NraEzY<oly92I=#Rm=G`hT}1upm%5l&J{77;-oYxd^(0Rbnyxw
zKUeZ$n~%+WBj7s)Px3q;!-W`ri-CpasZfWXd^_|Y53A&x$Ymke^%!o%@VmgT2zWJy
zYjlJj<i~3IbWy+Dn+)9;?ulBK{1L;SG5i(7ZCWD+e!t~2{M{Is>d)tSekH!wr|{n~
z{1d~!qF;8$hxq}ULllof{ue_b34CSfU%5odImOc??@&;_YZR4GOhUGV77`wkP+UR{
z2{k2eiYOtWjD)fhN=itVP)fq6O=%etN=x3iP^v~D`OTbKfA?3ooP_ccAfXbk2Ehsv
z9+vQkgo=U{B_SCFmhVMqiZ)MXRhCdi!Y6HuRhLjz2t$Va!2YP@ttM2Hz&9^m#QEmM
zSFl<VYD;KJN(pr&)Rj=5>PTSM^(64U>@msv7ELA<7J2Vh4J9;^&{#qf$ukkl=>>j8
z*R%3zD^gOyOo@j>A}k>yAs~6LU_l8X3H*@zMz=8O@5{`$yetWiOK2vcxdbk7(EHSa
zO9nTd3zLTLVvL`b5?V><ETM~psL;A?A75JuttGUPkRu^i!dGWP`4ZmxBkaAPE%oO~
z;F};1T>be@*g6wxC!xKB4iY*_VB04pJR#xZyeO+WNqF{jhzKw0@)WC{4N{A}n?p}?
z@|RE`p@-xhc-vLNa}v6dp4x3LK^hwHc?sPmydd#2i1+456VbMO6{YZW;)@bqlJL5O
zHzd3);T2kdV%IL*Qvwy_!UsitRr1cc<weUFv3&CECE-m8L%Vq2$4Jm%g^$jnrz8n7
zeIemD35o<&!U_p1C1?_K3F9S9kYGqKB@B@8K4VFOEg>nvl@KS-(OG;$bR;AsO#LKl
z{U=$^RmdDaF?VZDsg#7?wBeh<_ayX@&{x9S68cHrn<n27|C$=$xv#7pT{7DfNkV@K
zd?$UERvn#1WO>yPS&{!h34<hj#7L7cSi%qqBN^L_A_?a|&Ke<sFQ-EV&f8%E87}(e
zEjjm_nERo)CBxAIA#=XW^39aU#}Yo3FqW~+;2)7i8huFqhE~OQ*UMw?<0$aNT*^67
z!XybxB=D10_h9~K6273mbW<>YvVc<r{9Highv+m3(<RK4Fkiyvju|r;W*hUr<nSDm
zHB-VY5pS~vq=a)M%zc0}QK!+N^m!j<Es(HK!XlRE=M{P<_~cC=FDCZzTFi*upWCoq
zaH)`InSfsjn1431Tms)xGp-eU&9)NG2+pe{td_7>!afOWB&?P2qlB#zzLBs_!uRZG
zd-&>&@OlXwI7nH$J^ZbN!<D1k=7u*)*hDQJ(9CEQ;dP(B=fLn52LH|Q52BW>uJ81|
zYW~D=Ct;_AZ4$OKgsz8=Ee^lfphaf0$mqG@T@na)3;45yFO#{UCE-2dmK>(6_wSdm
zw2$uy$GC(80zW9>7l9n2RJ@i%zpWYM$~DQF?uZ_f@GFDlhVP_=;~W~t3Z0Pf&r)wS
zoa^I6xPHy+6zw05o+iO(SzIfpoM$DRdtmwVoDep6^UOsFmn3A#-lTe2!tb0;Wt5Up
zFfDwAGk}D960S<PM)8jNuS>Wq;ZF`d2{$?8T`Ran#eE@uh5LgOT8rRq0g2oZ2w$21
zqH)G${7nftKo)r4>xOR(@!K6g=<&Ppe?p$3GK$G4BqL46ru;}@8AXIVUOH>V5Wn?p
zo#y@SJS3z23nfd4s^T)3a@p^;FLz_Oq$t_cB9I}Yw2W#ps>>)NqpXaMv%*zml#@|j
zMnxG9%jh$(5Wm*)D`Ev1{4B{&&5y`v`mGNFvagH#B9#Qr!pdy8AxxyIjQZ<~@|*Uf
zviGH$UwUiEs41h7jK(r*$*3)(o{Yz2@SANN8Fht7{KEY1P9MLx@)Kx%8Bgu=HIUIz
zMtFJ-OPB%6OjpwIlW7z7C?hB%B*Q18$*v-qls^&Rx9jZbVLv5DFd%y$hk3C)EF(gZ
zzA8+!@Pi~j+g|xD%zW3!Jps^M_8wnZ)mcWij21Fl%4j7cPe#6ssEpP!as&;xqLZ@C
z1AO&CA8&JIR9zEgRa+VDXhRuK2!i%9I>_EbZ|*lylJT0<I@(FblcM%10Z*Lq^9kAJ
zd(#?^ri+YULeX(!a|yf3cveO~1Me7kPDVEw->6up;&~a}WqhLGQw1+D@MLV4u|q}=
z886BhE#o5@FVPy+Lk@eF@v@9pWb~vXWXLiU8L!EBUB;U--jeYKU3|yaivjRckQcvH
zXk8-wh7*$^$yn7cqy2$mEa%4)e!U@7WoR;N;V+#k$S`GC;&x;8EPiq!2WDyV8w>4O
z@oisRMnVQtMmsbJ@pBL}V@vk+xiUTwO;R#?Qvex#Wekw<z6{pBE#n;-{i!=`)iHAF
ze|fQvks?!k@5(rlmH(cMwnOvR<z`h}93Idpd~U6Opp5ye@(0TpB!jmdt`!inWQZsq
z&@3`k#xNPfWsH#V$Kb*r$`~no$+Y~CHH!AR?F+n`!&4>sv8dSEq7-|KkZrz<1u{OS
zsbzdBW2}r>GG@ydCu6*f&ty!NF@bizkUmkyBpF2m>0C?Va^b;)zE3)26PY68a~WUA
zn9A526ghk>#N|J(w{lUBYp*PsCSy8>%(Nh{88T+d_<C^Q`-cO(og-wJC*WKed#47!
z6!6DaBL`Z0Zwd>;X$xg6lCeg{S{Z!1SxjQtdt+K6W2uZ~boaG_<uX>t_(}#(k8f4a
zdkI=8i1~{2H7$0nV8O^R3)yOwXuDd#z0p#9!}><XIvEE?g}2FAFXLMoTNy}q!y9C#
z$KZPzTR5w53X-vzWE-P=)#4l3jB5q_0LwSBQ@6vVI|P5=_?_YZk(AfG_p*BvqrS!A
zpQx;;rAX|EUF?*xixYx^`U-xQv0KKUGX4_k?~!p*#wn^VV;}SXWgL)kOvbP5l;cIl
zQQp=H(w?E>!9y~*1j*~LK#tIT9kO}LWlb9GI73Jf-=_(#i1OmH>}eTiWL%YTO~zS9
z5hGT{MH%Ng!xRr*5Mprgm#c)o?Fn-A_L7XtGJcnFMFtmM`N4{{bS@po|1;tmI+xe4
z%ecWX&M5T<2j<n_O&PZs(!U3s)lm{~wUnHR-<EMl2I+Z9#$C=BgCa!!mhle*LqP=v
z|H}M>SCmjtQo(<m_7xOSP*lO_w~M7ISkSCgVFg^Wr$%H#JM_PjUQEG53W_T*CVN={
zTyLEo3ULLt#noWCf>H{~D&Fr`hJuw}6f3Qui~>d-X)YBGaS@s8>|FRRr(ns<bS@dM
zyW#yBR#Z?)L1oeKVFiyUsGVI53b;PYi@j7)P*p)q1+^4Bs-T*J>I!Noo&mXlP67%;
zttku*$kc_}3hF4RtDqi5>K>rtlYj75dnqUX%Bsv3k7omgNAyEhpeSghps|9d6m(Y5
zL_t#pEfus<;8T#PAgmywz^@>nAjnP?{voe7)+l_z^#J*EsdryPFGC<p!Q%>=DQK>U
ztb<~$sV|AM*_IzdFNQdZTPR>Y0N3;hqY7Fp$XC!-K^p}*3UU?XDWIFkmO^sLp5AAG
zF%szCb_&`n=tSlUItUjql_IBhJ}EmYAbdi=ONZ0Bvd@5FP(6Pj)J4J53SLz3l7eRx
zbXD-Yg6;~QRlHn+=M;2PKt7X~`WZ`HaOX)Q4BZzLOze<Wpg_;hppV{elplXQ+CxG4
zcXH0&^S!L#6$QN%ys4n4f~$wqUsZ7ZhazOiPG3{Jk@7lS&@zwL8v<dv1^>zCEd?<J
zlHx7y=adjJP%*&N2wG27peYz4!a%2Xq*2gEfk}%gNGNa=*utSSPFw-yp+jk59xRho
z;L<OO_wQ*;5~xu!n;}7&IdZwg-&eug3f@yNKtVqR?<nZ6;9U_vB&KV)luzC1AjT?h
z-&ZhD!60fucO3T7CbSRrqKSymi7fd*!B7Rm6bxseD)^AnW|SJCV0xMCk;0zA8X->0
z^!{iCA1N54;A47iP=t2iVByq3tvRllEU{ykZ>)lGbOe8bRg70KLBRzDztIH>CMozq
z!H)_)Q!rV<3XUuVQxtrzV4i~c3cgS<Rl!Vplku}ZZ5m}zFhjwj1Kv6X*JZfo!rvhN
z)Xt_EZ~4CDsO0G}OM-LQ#dp!U3b;Li2p3SecC$diLIq0|EF%Zfx64?}(JE+IJAFp@
zaz-m21ih|O78hl{QoOAk%M~v61-UDv?j3J&<ZF6R!M6%FC|IRnwSsjD)+<<}U@hIs
z{C|a~5QMkJ^4n+T^LL!T-OIo9ksEhvu;i0vg}<W#6>Jufut{`5w(Ht>E00{z`Ch>m
zj?=3lo~X=nkClR-1o068w<*}EU>D_oA-J8&t_$xFOt>!dvx40U_A5A`V2^^m!b<x%
zy>t#Y*dO6@$i{EO)a9|dk%J0;QE*7XVFhOw_>W&J;Ey;({k)F%48u;#HwYb7a7@9k
z3XUr{t>BD;6ADf$I7JEDWsn;mPADXwZFp`reQ{R7IR)nxZ^4L?a}kG@B+|b`aKfhW
zMFp2Q7pZ8h;<AF@6_ij>QpFXHF9m-p_)Ebxjxq&*D7a1G+h^QRa8to864Z)t>5XQ*
z|CB}kcZ4apI(ApV*b=R{w}|qOs22KL!9NNLsYp}tuY!9DsQ7=JQeMyE;u<|ze19Z(
z+FM^MtfGjDhg1|-JueqkQA`Cl&J@|?tzJ<(F8onJZkeGq7(D4JN~w561yp3HD6N8v
zgB4ViQBhV!IThtqtZ9=^zf(MR#4Z?k#A$6Br=p4md7+0%^HAodfxb#ADyyibqB^g&
zMXRW&s^U@A`*ESsNYCaJm|x3l&|Dd<YO1KEdh2~$A7oW+)zg~H>!_gayy~i`C-BD}
zl+<UB5AcR6<~-q%k$)2v%~fQpXsW`eB2$H5MMOoGihzosija!1kc1uC)k3p)+IHE@
z*&8C1yhpX1DcjQ?SJ6yGx3#|Q%L3H&-D+7JhAmXIRMAdFdljuzL{;Rd$W=kr_{7*+
zMH?0WTq|Jsbv+v-Lq=L24c;_^V>VxO$AD?ehF^M-(?LZ?6;G+?tnxP+r0=BSNfnH=
z`+lVE^ejc{qT*?)sp3$z(87Bm!hYX}pP^oIgz`VD;yD#>4Dub%k1%*h&|Sp~DkiI#
zqM|@W50&Thpq~)nMHRhNys6?P6)&rJMMX~)ud}&|qL%}&3Yv@W6@E>{cN;@(7KEof
z92wNo+s%}HIo)?T{Vf$S6>${_6%tMQOpc;LRUxbBv@Mu?LVWyJp{tm^C~T=P1kJWP
zev@i8%OgGUIC5-3K$>0E^Z4}csOYU?@T_1`g{y)zDVm~VWKyk+s+}TvSyAGBRP+_C
zSi3JT>m3#SReY@C6BSz;gx^&$L?G{}7$A`MRSZ&*ex*5U2Qr46g^3KN@D0K@=7b49
zP%%`+Fcrg9j8gHTXf;B>gK4cvJW|Dqa+yS)Z5j#0gQHb^L`SROEz1wi3A2#+ryLq`
zWC9Ix#y_e>V62L9qNMWmg7GwC`ApVM6tyInq~bGymz@&j?dK}KP_a<OA_l|8;8Ybe
zR1_ZSo2KG;naFej+m(qNPPTfpTx6z-S@d1G$g6+)XRGM`Rd9}qxuWDtj<vFpc><rW
zV$#1pk}VLo{vE!>)UizDe=1g~SfXMn1xU17rh2>MR|xzom4A8Q74j%!!j-gArwFgF
z1v2q;WRX8YF;;VEt32-_tK#Uu{`}Bd75O6~MAobLRz*rjZyg(`G7YO?n1+oiHgODU
z@M+l0?o?b;ah(=c@q>zkDt=M%ql&F6_KLv!iLO_%OU2JBxTd^a#SRra8TL2*TxDMK
zQ;-X?7sloCiJI4L6;mq~-lO7=p7|u;f1z@HcAwz0Uq!=%rMRGcfFu2p0RKqzkcz`9
zPOCU02#%=um9|xJRK+nBTo-0rLh?DG;w0m?S;i?U`%{oB#jIjExp7hWtcr7-OF2!c
zVEK6!7gYSl8K9m=NqQD?Ihd4}Rs7DGU&U2HIiq`k{JHG@YM?F2w)FRr;SCixIn8P)
zqu~}6p(G^MaGSG%ioaC+t%73QWmH^9|C5t&qbNC(54-zE#h1g2{j1_0r?oX+`Jm&T
zS-84Q{%INtYbdUvgoYv-ifSmP;UNvr70aeBucu|-m*>7xT-GnCAzec$4H=r30Kjs>
zYnMXoh~1GV@v<7qX{fHDhKBMQDrl&rp|XaG8Xl&*FQh}mBO17V{gGJTXNo3m!ps5w
zeQFgAD-NYs)$pjsqf{cJ>gHFYVB4aZW4w=1ji&{<?q5?wEe-WGG|*66LmdtEG(4uE
zuI8D#-Z!3JTyr1xP&RLw13(F>bwdq}G&I)GMDyZ=k~bA5V*HSRIFU>Zehp7+ct%4&
zLr?=3^gC$?X$WhGYG|z?q9IE|3k@wbJg%XchUOZw$$46ki4g3F7Nh-X3g$fUZ)9iI
zOJnLqD-G?Bq_c{KZKEMaL!O3w4GS)$=ZY%&js_$_TMg|rbksnV+iT$8_;#S_9*?pi
zt;GNKWyuqwmbnV|&GMv%r!;it*!efazPf1my;LcBgm&wy;aLru2Aw|D&`rau8eY@z
zyoT-?UexfCh8HvxXy~DNM?})d?1*_6OlF`8RD|Q@Weu-r=qc<*+tOTg4Gl|uU)S)4
zhPO1tH2nB{2~Ru?Z;IF;CG$q8l%zq{plDDvPe(SVWm1O6hfF9Ztz>90HT2QYSA(U&
z*5GJJ3PtGII31yZ#<?G6Yi8%Op-X}JbD$w5su(|HOMlVnZ)@nM;RDS}BY8)I(IJ<C
zG(;f%1$<Y-djetA0D-)(Vc>(3K>`^pVC0)ThV++p^T~nShHDt1p{$N_I!0<3rD2bT
zy&68$Fq)yOVI|{M!x#-yHB8g+vBo2UF;T-L4WDWlt6`jm@fx^avTLp2%TaGH7&nMb
z;E4Fe*ZGQn+tDbuf_|o9vW6)dKIaH(5#`24ZgX2aHHZ5*N&JQ8ZQ|p_{e#n~yM}oh
z=4+U#VU~v38s=!=A5M{yTh-W6=AO`84PR<#7!7vL$n4xY`_X36V)uLtG%VDxM8i@J
zMvbd5!NnYR&7uJ*LQ1wG@iGlxX^?tlE!S}AztEO>e%7+;(IbBDYW!Nm|1^BBVT*=U
z8dhuApy4|WYc#CYuwKKr8ouFBk|OKa%gO+|Abhe{79n>&a^oQpT41AwO^jX*?~l*m
z{zvXT+>xC}mARReTKvG!(y&9rP7PZ%{&fzvYu=vFZIpj^Xzp!4w{6mrOb#I{X3Ol-
z@Uw>9Y;v^_Z~xlm?V{z$pWNO^Zu>Os*KkF{RfdO#gBnh1IHlnihPQ^J8jfi=%)wGn
z;t0cdb}8=TqhI)6Y5be8U#V19vEv#}(8bk*6t&SA|8(Y}JX4H{oYrtg!*3ccYB;Om
zoQCrnE@&VDHS&~tGiV(MvB`)%A?}&Iq~WsA<#$0thILQ-v^;)h@pg$`({NqGKN|kk
za6`jQ&h{Ga(A~clx}IC&mWDq#p`G!!?ci-iq^<69IB57w!`~Wc4Q|WjMU@#>BxCQ~
z4||UTkkh-4;yMcHNYhbNM=>3Rbu@U<+XYGc6wwj+Fvy+1gxp9=H*u>b1umhZq>gkQ
zrF8GfoRr*{On7>)rx9hy&^>pQ)=@_HHcJvGEU%-2j@CNb=%}dUVIB2!Jf`Cj!GwHj
z>VS?)Ix6d^qNAFQ>bkf8w5sm8nEW5ry*-%RMN3F|I6!LX2(R~Xqb`G_mX6vK?2NyT
zj=DOUZOWj){D&Yqz4qQved?tnpd+ZGp^ip6d^$39G}e)IF1?A4raEYFYDan+jf&jI
z{X!QiP6^pjh&}4a*3p8-VOvVbzS#BB;Du8@j?k_@MY+ebx$gZn9y!pG49k|f7ptvw
zM0NgZd;4u^5bk5;zSMos6wA?(tK&r-FX_nBk*}k(jxIXd>S(8<qmCzZZ<c7UW8SD@
z9dvIaGj*p^xG$Abb<**qj;E;C8v%Ns%;|#7b@OSZr*%A|qnnQBY1k7*y0R^8C@85B
z$*AVpmfkMo?mAx3QJ|xT?(Gey3e<(=v^+(f{k><6mvy{CE9ua6^wjaHj$Tw#$GswH
zujzPQ#~V6G##xI2%<$&UVm5zEM~tT46H;`%yCW*mtwl3sQF7~DUve)u-DGj9QFTy~
zL%p*Ms-KaW(BbGXby$MZ))A+gy|O&wBYws+Cy@A|jHC`%$IA;!(06n<M;|5cqoXf<
zZ6IjiZ5{n|Y|^n=$2&Uu>zJ-%2A?@Mgx}Tip^niy-qSHa$NM@4>KLkHn2td@2Giy`
zK49TDVJ@-V?(MB25#id|?DCo1c`=;I>KH{1+l!23NdM2<bii!(4!wOjjk0>Tk1)gk
zBOPOOd`2d>{2%N1M8|j?6Lfs4<L4zM$Lbiz0eHvPtwn&D_T<dfrKjhGC+grWuSq(%
zY2wE(!aI)puC4b?)-grL=Q_U7F;&Mj#^H2t?*k?D7P)4HxwN;ZNye|WBV65^sbhtX
zl{#kWn5|<D2a%5XIu?*8qe3psZ42|n(96vUm%HkP_d*?ubbO^_xejLLFV?-&V3u&O
z)b#dlEEQTT({ZhECe<l?Hb5F46vMp|JeTHc!D{#y;dMlGtkSWXTIg7-;~QEyCtS8>
z7Wb`CFfPNf6<6O{RL)wjgH67rJ9K<U7fj6CD2RLIW^s}3{i)#=*9*Sau|>z9I{wn}
zgN`3{9My45bhlN<E?Sa<OUE`H+jZ>Fu~P@P4DfObhxT3x(PdQa!rt87I`-%|pyMDX
zB^~>8?B{Q{T$q&H89~!=IdWPx@AR8rbR5!gSjQ0^-21>2Z0MI0lfz%;dwVFjVwg5P
z{Hu=RIxgt=O~(lxCpl^uz?`)@W}MQ!?H;FT#>XOb5cfOq@E`I&r{g>)+f?y4wt3vR
zV}-h3)NzS(f{s7vm;A_O9am{#4(ENo-*sG}yHEJIQQ|(NJFas8&I{krA<yyO<Scq6
zM1<wlXNGU<xTE7PCy=S(IV}QQvZRq&USxjwZyo<|b~RARz`q=@oVpEU82FF!7${<(
zsDU)Ya~99xDQtKy=9(t=q|n913_N6@xPcOe=SM2Sgma2i(g2UmVejdNx630hBg7y)
zF(XpiKp6uS3{*6bbI4cLKsf{D4ez8Knu6=3{{Mx!EW5W>gn_s0e?=cQ@Q49=is3Oe
zC(KiQDjTR`z-M?rE>#UYYM_CEh6bt`sBYjf1N9A1HJ%_;L(tSTz=c{~wFFXIz&Zlf
z6|kOxO=e*daD)!7ltqWWk`ZcTps|4_2AUe6J0@pEzxy!2MQ!?;{^iD{Awvph8s26o
zzX7gv_h=Yo!;pcnf#wFX4MYrN8E7VC*xx+xxIpSOPaC=4$6M~X=1%Gs23i`>MO7;U
zQ3E{;yl9}cfi?!7H1HIa9T&_o&`uz^2J#FXDw&s0YmW-HrP-_Hxc(?1$=Vy}V4$Oc
zCkz}t?C)e?$+`&3dF8gw?{(Tovd#v&&^27-HSn~7Hv++D43ypGBl1~~a90B#b`PJP
zpGW*`k<4xeh;%pbyn*vaLxqopUb$ZIf`I~YOER|Vd%Zxt?SIKYPXn(CAzwD|3PYlG
z{<jCyS@oKM*A2uBNbJtQ(1!VM8Yo;e^SPp#y@Z@AYUjTt5LOkx=#vd7f^5<BfGS#P
zG*OfMi!X$88s)!`$R(L!z%*bPuni0oXXC^TBn<R1(AU5VgGxFETmvbCf3M?98p!-L
zbfO?g`1Qz)-s1M@iCNsf_tM|~w+(L}U*NIA#7WuTz`F(tSxB?+o`C^0xQTod?;9A%
z$Tx7^z#s#Ih09JE7-HZ91M>{br_2<F7Beu}z;FX242&0KBMpo)@UekUXkG)O4UD0u
z_5^vp!AIn|+*@EJ{&cRFNx~G7dq?v=H89q|I0GzC9SaRwm;P|^44%wz?nmDQ!E>U4
zNwh$fY!b7{<JU_~G4Q#883tw=_`<+c1JevlH@s~i+%WQ7o8sII!mAzkbSQ-*)55b1
z%r-E`z+BpGcE*B2=^mxX<v4mOeb=e<FDb+I0v0YXu#jWKz-9xB3@kRV+Q1q{mw}}Q
zRv1_*L|SIxD+9|7FO{0#V0o>7D$L|(W+{J7`cvuuGq8#SszIn`UX<C+Bw#x9KXU$B
zHZic?z_$k0vD43@L$3H)%amqPGE;hkf$t1#WKeDN8uHitbmM$7XVv!xws3whu+P8`
z27WZK)4(nRTj_`;(QO8{3weGrkbB1$`Xc<xs35bfcNicCz6fM5jQ(t3w}Cx^fDG^M
z3-P&&2)m~6`wbj0aD?$`;GltDIQk46rU$17n1juW3D{)FR?Np{BKk1{zZy8sNrUd_
zAK;P%*Ab`)A#Vv!a_G4}BBzDXstnIMW8kcTa~x9!E*Q9M;CD_bt4jW6;G%&`91b65
z@sK43$<>dtn0dt%tSg*052fE3mUY$ePKaWT7LRfw!41LlQ4`fn++^?=_`|@&tVn4S
zWlY>QaL2%11AlT#H&M*QUk3i>JkNkP@ee0|L41#P4n>}QHGf%y79C56*Y*#*G$5R2
zdVGi%F;Q6Hyk+gepjY^iiQ*<onIO)qgo%<S(oKB!c9?C|&5`BJbBRp*&YxkT)57r5
z>jjT343{-g&O~L?o5{<Ys9@p|6U@%)TfHQ+vo0P?uPAOGHqmQwc>dfl#BC)(&)d&N
z2CE3Xs(>eIcowKG@W)KlH@(lNHB8hrQOiVa>U-M9t1io*O{-&iNe)xi1?vfVBCKNb
z1|}MrXl$aP2@aN(C%jS9#6(jQ5ffP^d?qqY1WW`?_^EYHDLRD-a&*d=R(T;4Vbk*+
zS@EK?=sRZ3J#M0ziIyf>nP_f;^w}m_n4V|Z>i+Rr<ip#jsBLYc4Yh8X!?roJQparO
z?2#c;@^VeQRX>kNTNCX}Ts3jcM0*n*Ow2Jc*F;AXPngh67&NtsCr!LyqQJycCOVt=
zy1r-aE+(Ef!C$fGO*~_IPgz|}JZqxop#Xoyo-@4%OBV9B8`Zh(<27ktw7Y1+ayE2U
z7wuu<WfQNM7+O2>qNsYw^zyH^UoYrMgmRjQnYfqU>NV<O;!P8;i@r`y4!*(K4c>DI
zh2if$8S)fC$%IUsm{3jdd6f?m&sWLfqYi&?`3%gb2#rpu9k^3FVw$i_j4|=C3EM=R
z^d<(FNSJUau!(m}bX{FEX~Jb#o-9PE{`xa3Wumu<J|>up^|lE<W)SJiQSfIL5k97}
zgz^ksP@+F;$ulR+J;>CTPuK687-(XYi4RQ-GBMc1NTDpX;{!HT7-HfBn!>~|(@R|&
z&LG+6J)039Axem_gy~@$z6`dii_s=NqGvOTaAAu}X*{uzPrsj-_|(J{6Q7$HYhoM+
znu$pqoBPwpbNu%9O)x?09hep1xrIBp@mAQA8;vKMUZx)(u?YF3^o5B_?IY7o%rG(4
z#55B$ARqa-VfNB-A6M&UnwVu`wuuwfya#W-R`9utRrf9MB?q#JZ%oWHF`ofxVxfsu
zH0ccgA`^>Ed}U&}i6thMnpnnRKE+3;kPmg_v*<yQHAlOxFtL&$Cxqnl_Wy+Y=xbK-
zf$*Oh;ngPYT=A_DF5r7pqxz9`Cf1wSZ{mQ7Z%u44vDL&+Vvv4k@;MEgIXqhgH&XcW
znM3D=zc;bP#1AHZ6k^bl%(&x5V7_n>p?B!JZ6>yx*ll8ui5)bQiCy#vtvbW=EQM+I
zd4LaobRu_5^9ldTH%0fF*vFBz-bbbQ%t?grBL_|VLa)`#I%(pNiNgXvZh~e%V&W(V
zV~s3&oCL=N{;PnzWjTd8L1k-4czepkX%lBmoHcPpFk#_2j^dhGd<s1;N-jJo|4kql
z>CguymreXG@OYP8Hl)o7uba5Ru_g?4)5I-mC-91wgMZMxCMtFc-ewrw@$<T4V%zxO
zT@!zblEs?>EF{6-oOb>U5cyZM<ye?>tk8cZ^3t={h63MR@)x#H#KJxc`z;i;P|Sj2
zLACIZh2j=^T6on$2@54H_$>r1q+2Lup|XW47BVc9wgAhUf67=WYoWY_3YK?150k*l
zS>9G+X2=sKK}8D>TX@6*Z+)Aiggp9Y?%!b^5LC%Rv(upt#|tsLzN&>sE!4G8Pq3|K
zp_YZ(7OGpQA=+}^L`};(golT*FvGl#g+hl5_j<n&oAcZiZUK1ALVXLZKMFUs(7-}N
z3ym!_vA~T0jRZW%V>IeVp4c2BWD`Q}HSk%;WWVP^+%!!l+L~z4LdZe~3mq+lEkrCt
z$<{)ag~u&qTWCSCEv%_lxVeQZ+lx_ncFI3`pi(V`@am=XRu=jc%Y3>)ggd+0Q5y?6
z7V<5$wUBEePmob^?k}K0*qpt$v%HNAwS&dm3wemQZdr<KpRmx$!m}2hv+$&arz|{e
zVSa8=R&}=UV#`u&OT3Ha?OAxbLGT$1T`h1o0rU3BoXP*)EIe<a2Z=3Eu<jOKuux!u
z0#jcaw%hG+=h5D;67BGk@Z-y(mb=JF@QN_|lI6bFEW9oxe`&q{4GSME4oDVc3%vyX
zrhsn=$f_7aD?dbJUB@8T2N&lCxC*IR&;^IR77Vhr@P&n`7Ay<4g`pOPS%_OmSa_EY
z?G_vhNelg`(V38IA!T9n55c|`uGY)zE$}`T#&-*|kk{|m3*Hu#|J4tZ;G6BfcPvz#
z74C0=Riqq1)hrCOFo>-t=HA+w!(9fAMrRGCVSh;<A_Uu7IQ!{sc^_EdRsx<lM0~h~
z5f;W;7-wOmg;5s9SooNnM`V3yVYG#h9yA=ZIF~kLw!gQ%y=v$a3*5QzspV}YATc)`
zuyDME2^K!HFxkRH3lfjL;x1t7@?jRqmek856K)fr7*i~KZh1Q$*othqUtk);*upm!
z)>)WgVWx#87M5C=Wns33FD=ZoFvr5egXzpjpUXl0Qz@Rn#y5+<ehALDu)xA13yUr9
zST-K=w$K9KLC#M0-G5IZ*;^wcELp}*EqqO-EDX-cUv6QAg_Rb%{1xJR4T(opEX}NV
z=DM%4u)1+*HOB&{h^5|(&kN_%S+bT9o0-d(9lp`5xA3inpV+B|4UBMVYT<he8!a!F
z{-Gx_HgT-&36l6e^DP#Bu&`CsQkWkZ8&$G-7~QCrQNCW0EnD&0Zegc|U4m?f1(LDw
zXA8SUTMDyBlu#ZrXIs_|lD!Os0~QX_GBzHv@r#8+7Oq*iZsD+nBNk3uIAh_cg<}lt
zWRQo#IhBIHGC049oV0M90a+=?>jX_SJVJ!!r)d0SD<WqtEH4|mXyFnKYvH_Tb-}`K
zoGP#RZtn1r@{@+ar^`kzGv<@Qk|QF&(`D6z2g*mT&_u_AyspwX{|j@}+^}%d!aWgM
zw-`c}x48eW<(*b{+rpoWPl4YN@U8{TY1K3>lkjgUZlV9bzLQsd?3W@DZ@AOfuuSAX
z&Sp-lLN?NDk56F%XYTeBFJhypxOSF}@V2;(5;pqUc-uxv8|gOM+vs4Ul#L7<jcqis
zQQAfs8#Qdyv{BYZIUAL2RIyRsMg<!cZ9HsyKM>4OWL{kAkdG;*kJw&zCDRC54jYvO
z0TT;(Th+#+HmcdEZhKj&%&jFEGxwOb$E-Z2((zB_YT2l5qrQy>HtN`@Yonfx$87NM
zBC=&iY{-m0W>hjAl!q)af%E+n=?!f(vb{Xj-<=?{aGB!R)P~PSGaJoqWZLlC2-yhR
z2-pacvO?yf7R8yIS@D){<z63iP$M?7Y%jO)aU0~o6hW%PTvKLmGCMKbMhly1E6BCc
z()JEwYGs2mFo~3@fK2O++GtJYmqHT{N81R539ETF@@=%W(ar`Xr*W9?%H8^8&KyDt
zNt<+}DQvuH<1HJVY&>bBz(x-nPub{f<2f7MY;>{lw2iJdp0)9e4Txk^F0WHCZWw2p
zC{4$dPO3lIpZ2_s?lxYakER7F50e-Pnas&^qF%J|l8skwyk_HN8?Vr<J=1#H`17Wh
zr%I_PB<)PdoXpp4ykVo4?fugqQ<2G`NP0G9rn6!;BpbGkxDDBcVtdJ=rVZ7GW_wAe
z2Cej;Pq)4Emv}N2o72npo0HPAv1NaVrbyUuY`6><233AW(#GQR>GU8i&st^|Gh?>5
zjXpNmmJNAbJml+V;~g8zY<y*-zm0cod}d>^jrVK}u<@ad(Kg<<G0?^bHip_5MDf_g
zA>R-i6sGMJAM=N46FP_{8fIg-jS+%?MxfY)B<3~J#wfZ20bZ2<BO7CEjI}Y&#>X~3
zp>y9)XBsdq|0$!ZxEFQA835yLOrRZXOcFh^khW#eGNY9Vs7yVjB2#R9ZeyVhCXs$&
zW2%igHs;!xW@EaI88&9Jiw@azAKgLbvxJeES4>}1{@D!U^4V|ZXMAa6o{jl77Ko@L
zH|FI|8WdqIm1Vz-u|+hjjU~313D3;%`)R97#h4<#+{OwUTW$PgV<lZ?d#81M$6;$@
zm5sGFz7dqGZLDGBzg&XyQzMQG4x)8pERcS^?d1d0ci)QUEZHECpDu+q+Sp`cGY1{d
zQnT@+DF2=@K(=-BNkB-qGMk#lXZG(l8{2IhvT>Nkv9XihER%h}#x5H_3w$?qui@E&
z=bo{O*B(*6*Tz19a9Y?ekhw$h5Ar8KIQNg8UR-g~I6?tzoV0O@2C?z0jpH^>u%kBv
z^b1WygVS#JtwhV)h0+)&r^P(R3~ll}YvY`_J<sS$U~mE##O-f3F50*x@ZoWch~u)2
z-)&ssAhHpOBP)(;v>4~oILgIw!^TZcym4;|y=CJM8^r|9+uJt&;?ylz-4XCE$EiSA
z`{eHYe{B3~qwoXzd!nk4xc!f#va>h+rit5PWxc1qA`d8w3M6&W|Byh63plh?phO&F
z2Zl>h$dA38oKm7ZL%`AkmJzU6=iu4W-roQ6anz5aK^zt0s2In?aXb=7jW}w?!N+gJ
zQB~0E>%*1es2oQXR#ngA=2oW6@j2(wII6|HjVJuPxpF|bdK?|^HfJgzIoFD#o@h(F
zb{uu$s2k@|_TFqcYi+nqY41ttu{iqA_tJ?Q3QFb_5^oeo<2af;XzPpP&5hBfaXfj}
z`%|GzQND1QCwxHQK>>5qf}uFV0<S;Fv(@8qG>an^hZINiII`pD97mTpTEx+k$%}F1
z#*x?D+b`Biw2BJI+tvbUBVc@YG*2My<LD4azQ8xt3Ac^Iofv2rhq5iqe?Vrdj+9W;
zJ|Q4WI>jL$@jUp{gOWKl(w-Lh^Ko>K;~9Z>jpNxkZfAs^i=&$;=}^YA1Fu<KO1wa$
z#qpXbzc)14BaWT|e=&}i;@<g?FURpp9ACWV9TipKc<z7cp6;&-8X}2y#a|cr8*%g!
z$eVGzB@pfi_-czM9?zwesYo3C;&>+xH4ZI~K7vLU&=Jsx!;FhVr^RhN4m*xTu8(;U
z7uI{hmWbnnfY&>(B<&MNDvsWQ_`;i>zj!^jGTK*^ye(iq$9vN2FYx!{7#PR90)J1y
z^ECnk;y78=Ydc7k5E&B3V1ZXDnaSG^1U^*29m`7$6UdDL;gNBSisSb<uEg<S9HZk{
z6UW*(K8j;Z9Mj^M9>>RVd=kfmI3~vNsc1M(z_9{Oxa!5*c!4Lj79l=K;8O(rOu)$k
z{`QM!#?J-*g@989yemF$&WK}X9P{H?5XUT0K1aaW0zRpGj+-m+F9n<@;PuynyVhnb
z6!>xh7YVpHjwNv{jpNoT|5u`f<6@b(y}dSce~hdU<tqjJnlO%444cC_t3^q<_Q64u
z1HHcWRzSXqV_h7F;y4_~`Z&IgV{05g#j!z9ZWi!60XGV`Nx;=*GRss>`(EH%1pIw)
z;D<PV6!`V}-Z$ZG0^cX#b^&+9u``Zc0{=OV-EnN3;YG_HQL;CVe<I%I^r~Zmm2$kO
z*e}Wt2zXGy(l-iziKFR_f=LerkHm2_j?;0RiQ|~4Jucv{0<OsM(lAa4{G@>0n`fPh
z<EHqNg0rIJynyEf^cD7E?1I356Yydjm*UuS)pt3LjEB8h;>K8CryB)VIr(#9NuYTG
z*E#uf!b|`O+@uTQD4al%1pW{l{)*%8IBpC4j)2$dhwsMmr@+q+_h!O>1Wx2$9RCVD
zcB5c!#G4ZTi=$BD|L1|U1o~bM54cfKRFsq#uvh{QB~Uzp5($(MC7YAJk^;#{AU%On
z37Brg-!!zRxaVtLr4y*M)!*RboU($foPZ53dxN)vz$*&)$e+H46F6AIvq_}{Dko4U
zfw~D)5w+C?tSaE60{%TRQjLm>|Awd`N@@yt`TJn41ZoSsAlHkEdIFCK_*eq<6KEjt
zMgo3zqo5&`dc^yZ-&mA15s<e{1>zGhQ$W9ffdqmA2?-b$@S)0{_p=24xPV$w@1u8i
z0xc4FErHh)XqiB(1fEXdnFOMOrd<N<6KE~)HVNb;@cHmyZUXtDBrkzgxy8=phX*bX
zwiP8cTX|91A%TwK_NfFutl-7T6XKRgrv#o9`21fz-8&1si-46^dbaH<@a_UWE8uei
z_C>f`0{edsJkQ6H_MR>;i1LC2dL*#oM!|~-yqv%*6tZ5{OZ4?1&x1V^sBj|qs-XPE
z3>@g46MDjH%j*rsPXccz&?|vA6L>3uSONyaBY}*KeklP}w3<8JFDLNxQooWws9Yxh
z>r+cW7gcwbl<424_=VL)tpw}@oCK1hJf1*8AQc*Vy6+!djEfzvC`l#ITOi%%cstkn
zByg;sH>2`eR5`1ks2U*PI|B9>@Ld5X<OJVKVA4hJA>n;dGEl&+?|XI|lE4Ryt6``!
z3_}wbMtR;w@@))HU<7@d!ZRt1Okh-kXA59n5+5conpR4pR1zO0FeZVv4%#{RIDt<R
zn3cfn1U^k*YyzJpFgbx&_xgtI_468+!1x3vBrq|7omE2zzxKyB`z8r||J_iH;l3#h
zk_2WXFf)M#Z315;@bURV(}k#06PU)rPTnxzbEDwO4e#%+mXu8++lEWSgmV&@%XuS#
zTa+__c?s-EU~dBR*(!n639LzAVFHWj@dQ>TusDGw2`o)u8Aa+A-P|_xUa8Q^j?u3e
z!_P*?e-&I#*L03%Jsa&fIjiK&f~Q6VzfR!4M!{7HG!5tcPr#ntqT_Z3Ruyl%Hi2&v
z*qXpk39L(CeF7U3m|7_N+XOby6h-pi?H2Vtl=WQ#U)0Srz6cQi<caX61UA#ib;92#
zuqA<dHw%U)1H2{jLjpgFlIKfBdAluv?KD&ZyAs%uz@Yz{_xLYR`9`4lzqvjAIVDO2
zf2R6Jf`f+y8r2Ez=BR%ym&iVbeFB#fxSYTNPC<;B1b$867tTUA0*4YfOx+*NC4PHS
z;PVom`bQEtnn20pf%4VbcHb8`p1_F&<~$cYm%zycy0nj;NucZF*{2fxm%Sjb(*haL
zK6;iGcq+;&3YN7gbY6Jvf`Gpza8V$18MXdBfh(NtY5C^Cs|j4AO}a)$9`mtN!d5p6
zzH}ouL@f!nwT=Ffz-`W!4yro1lfYfh(hf>E_%ngO=#c~pIl!~gzZ3W;fqxmv-J+Cy
z{&P9^Xp^?tJ#H41iAT~`<fb_&?4XzfscW=|gO*K$(f<NP9SqLPP2DU=<>l;{m|Mc1
z^N@o>o1?9}1xh+dcTm<rIR~X2WH@-_$v|lbD|QCX)(M|M4h1elNk-;<db42Z&4Tg{
zDv*Z4IH>4=A@r~VO0xZC!OVED^b<Mdhvc%!vz?>M+D0omptUPIxZN&F<WUFJ90VPN
z98`DsPuXbXpt0lqVD<VZx2A(y4wmJIYdd(cNnpaEoI2vRu7LFfWbI=DsV`sy2Mr&T
z7pV|!;^6n21wIFv4w^d1zZT4TD*EYTLBE551M^0p{;h)8y?lny)wa=Mw+g}zznGzw
zgQ$ZRWm{x9=+Qa5nS;kESe@XiP!1!Zxr1!hI@tG2^ofe0mJV_=q8XVji2r-W-`YVN
z2RROI1cQ6dWy~%UIQMXLclT(ngR!?mYr01BD24+fPrel<Z113hgXs=tIOyo$2?wr&
zl!HzVo^((^0USK#ptFPL9qjxht&4-F9Xu;cL@Uj#mG+E-t`63H<U8_?k6$KhuJk|W
zV12E$ZVt9=4!+nsK-k^EsyuJfdx0IT2sEw|e9^&6w15N4!OIR_anMWf?CIcD2d_JL
z!$I9&1FsSJ!S`jkaL;die_r$PnXUi%!0qe4&<x+34&HJQbFlZ8-w<sjf%8^&pgh1;
zhu<na8vQ}Z2_ro?);I9cfbC%Q-`-@Na1eJ;=DPm?Gqc|J{c=3&I3P?q7&ybb?d_nC
zgJBMaJLv1+Z3pkO%0WK|?>KnZ!O=hb>%aH)ckuPeLg~{3+|m`h>to@24hD!?;vW@j
zJ&0lNVBDOX4;<_t5Xr0)s=OsI#KFn(nLI>gsHkFXt%bf34n{hd<lr+0qa1wbV1k2*
z4n{lp$YHu^_!9^JeIFV_%de02NQ8-h>|nOyA*}sW(2ONR2U+ui<Hhag>AA1|<E@eX
zGAr1pPRV}X_$SjHWz)V8)|=v>c9X#80@nIEKzyo$4Oa_I<H%a&<F$3Rf2M<34t{d5
zjeR+oLjy9F9L#m_rGw=hqz>jen9r~;6!MkLT;O2LzQ9rkTaWt}GH$2(7I6Z(>02z|
z5&`*L?$?^$gUvDrUon_(6&Snxgez%G2bcT#X6;CuJt6IX3?cSA-}h;`;Lt6B59bAI
zpYg4A@Qs5X9Q;T-FzOusGdng4b-tzW4$@ABR?ZAKEwhNsydK;{nyG=!4!(ELZM={8
zf-%80gM3>YJoaMX<cZvW_XoCex|`~2_KA=Gax%7y_g=Hz!43x(9Q?*1;9!@7;|@+Z
z_}Rg32S-GAH|~b^P|a7u9Z_;GN8jDhJ^_jB7svqt4>GO<a_B+rVNL~w!z5!zM;&Zh
z6F%nPSHY7d<A(cAIymLvoP+b6wJLir7pEOG2^K#iXwDMO_VGI0+T$>=yZ6-Ht5UIx
z4lX(P$HBj}p`iSO&FL2hR~%dwC94VoE2;;sab~_2x-Q@i0eO2<Ah(43czZ|C-(KRo
zOU3sGi@p-La?AfGS>5vg<=}6Du$H&?7?uu-CQ&Sj@>K(clIU11P$Y@8<o~|~6i#|a
zG0g82V0rN~zU5oe9!i3@B?Uoo;v;+|__Q<KM`Y5sf#UClGm<EsM2{q1OrlH@Ws`U;
ziTX*DV;AgbpTBYv^_m7MB+<NR+QUgy6s$%s@Ftu`1P%c!CGll;h*#rE;VMZ~CC}eH
z|2`^eiBuCvbpdN6QS(80tt4tc!0RMYSK##?lw9xSb<`k<hDkJHtA7fWI-b@zi6%*O
zN#f}wnhHu^5}5+I(yoL*i9iy~C~y+NBtl7KB{5)lemIE;6<il6o+y>oI*&*vf1u3W
z;Nw)YNQf6{*jIKEd4g4oBwGCDJ&U#!x2*(>Ced0TEN_!U&I3G`&yDT9cYI#?NwiI(
zov3P`#FGzbI?!JNe?q`c56buCrakol?<|n>OTEYSXOieDZhPMHo(!KA_;Uhw6Oe_^
zC(&KtFFYtI5J;zzX)h)5auS1*7@Wi_N%TzOjU;*{@oEx7T0~z<V#{a2eLKTrtl;Yc
z=k2PazBiM2D+w(LUGRw|AtkY-U*Or#(~s2-th^JHlTc{V)_JNhCe2728V`C;CSfLF
zC1Hz_t>c2v{2ho3Jn?|W5s1&{g@>C&O5FNmf!;|>FB$5SMBgOdPNJVEe^0=71ne*1
zy8^Op_Kfra5AgQ|GLWiG@ZK^O6>U3&ah}BJBtA%DsHh#5#PB3WB)J#c8|iI#1V?hb
zB+*h2l>H+xI20l>_4(jONp5P$`Z$SClBo7{aEyRU8wNiWOg?+i<Jcs|34FYO6CRXL
z6v!mnVVEb$<Rqpf@p%$oP`e~%2%}9+Vp<Y3;LYcQ_d_vJyzNY3)mZ}4sw|%^@Hrfq
zcRjMX;+9S3C$S)j*)Ha|SeV2j(c?rHi|Hv21Q&i6OOsfZ#N{M@PvWa2mM5_%iM>gz
zNMdCYo0IrHiLbqeSeL~5BvvJ{I*D(RxRxI(@JH4pu{McE?*({OzvJJvCwL=0bZkms
z?{mR#lh}~NcS&rdo2rJ+uE`_pcdKA{;k+GP1Dlfg=ik7_9+A4y(3T{ANMdIayOQ`Z
ziLFU&OJaKxzf=kTM8Cfq*s$M6wy&=A6DN}$NzCmLDY@A{=C!P!*~@+(5fTsU5!ua|
zAsQN=mbov9{Ye~8;zSY$k~o;ektB|iC*R%r<g)9-NgPU|@S~wtjRQMp=1`Z8>+&xC
z<3GmWFI?i+Bv?XLWcx>{{F6zXO5%JH7m|2nkN<QMXXt$jyeHVdT!i`-ob#O%HgR9e
z`nz<v_(}h7NnA|gQWBK>zor2~n&|3pt&Z*XUrFL>5*1ujba5?->q$K1qPUA2baWE8
zlem+_El!LF{S$8${K4^9zQuqsIaHs*+)d)oB#O8w>Ux^~mBin|{?0jH`nBLc4}9^j
zK<)|nUlN5}&qrwj5-IF@Rwbg=2o-bj&YmFKuH6t+dPGXNC@ILwxJY+V$_0&C+VylP
zQ!13<;<0ypq$Dg|BJ^FcKv@^^4PQAbk{=?U@`4-jhh044qLz!=f&eZmyQt!#l8Zy>
zA>(9l&gei@cI2Xli<&Ozg=#LUyF8*Ti?*V8M4G%9rG(U)qW(7{ScfXRXy~Gmi+YsA
zMST|yTrU`o7RsbZgk<|#S|)u&7n5gW7foC=b-}-QyKv4&izQ2D`&`_t9@;%PNIc*o
z=;AFGF&7~hVHZ!h=;R{eBFjYw7o*Sl9(U2qMbt%W7tLMIFD+cObdfFaPakQ)l1JD3
z`G4!JTx>b#V?febZCvEIXz!xPACX)a{lCtoVEHccI37m_Ivn*ePTIO)VLJgwb@n9h
zR3^ZfyjvmCQTT}C=t&n(xp>jVOD;OQ=;ETAi|1WDEo9qRJN%rBX9P}BySjK*;B*ad
z$*}J`zV0qwaM5^adJiEmgRnsOkrty2^e@f(vWr(-^m1{*_4O1SUUTuf@cyd;vZFT`
zqUoXSJ+kf|^>d_f6jxZ9{-z6dF|KMzqN82B>*75ZiVM|6(uM0nbD_JiUBq1&E<Yrq
z;O!jC1yy4R(Og%a3#N8?|5i`72^WqF4rJo=APE@QDHpw6yzQc&3wo^&dvrkp;*DO;
zU@TFXLXQOA5yEpY_IJVCqr<ZZ2e^3O#fQ|$#XuK>TzueSsOwEWgIx@vgs)|>YepA6
z$bcE<Vz`S@3<<l`2%+yt7yr9eKpMK0t=JuB22y_HdK1)G7vqHc#<=*{#V3?=rGH72
z00a0_j+%eGDQmnCn}%gDPjJ0SgDO+CNiIGkb58y)rV1oJEn^B}mH4^<uP<CAwnc~(
zc`q=Hf%INrx{Dcf_ji64&J-oH1mx{p7hiIGr97$TxtQ<bl#A0Y7I5-+vChSM7a6mB
zi(D*o@s+?AyI3L+mM^7)rezRW?qY=yV2z8F0%76*TzoAk@6)Uj__pzZ)dFch$43Fy
zy7<Ng3rSD1Z(VF~vCqYR7vH(q=wiFeLv*pp#by^jxhOry$Lo86{J??pprq_7|Bnyw
ztql8NL6U8AQD=DI^BW}zchZJ5sVG@GFz_>f#RdijPRk&?&t#8izE_mjcrS23P_p4M
zQGSq)<1FNY9TmA+jQkG^$|IbM-U}QRG(<@Mt7v#!l$>yJ@<CO%8<8_E&bmlTp>PW4
zT%31t%f%mp{(^wlT>QoWaB)er`rXA97nemx?2%oQ|5X>OGXs%n8SIY2Ul$E;aCTy>
zPRn2w$w<uWwu`?Rw1VIcgWtuULjJ!*3E5VQM#+%ZzoO(n7xzS8EFm`<uuuwpre*N9
zND4($D4jx?6pE$rPzt5^o%1_?aRG^xNO_UQxGI@KdJ03PW$?C9jz>czL)5acESb#l
zRZMxYN~D~)EiYgN0pFdL@o>sh@Db4jf|A6Hkjg1kNug>AkEW2FLJL7wErt3iG)SR(
z3N=KNnkm#yp$@O%fm$it{LZry8P*jgkBL_GQV0oK^_`YMJ5(tfZkR$CJir}|QfQn)
zlN6e!FmFu2pMsBll@0RB6iD;3VP3oqq|nzF;1wh{frlTIjO`I5w=BW)@f4Z~geA=d
z!X{JdhFS{Z4k@%sA(}$#6xyWFHidR6<fM?B!e^_)`2yypF!53@Z+Q`66-(Nuz+SqX
z3H)`y>nkugqhktBq|hnl1@@D)#(M!8pEiFgh0ZBtrDt-8bxGmz>`;mFfdyarx~A}K
z3Sale|9a!O6uPCbaG8Hf3eTs|Jq0I)WC|~&P>{lFDZEZcFr#2?s7DGfrtne<FQ?E`
z6uy!|^WHvQdu|mFUd#SJroID8isJj49TwPKmMB~@C{cyk?cSXM!3B1gj0mU*Ya)oE
zfJhK`rl+T;XL<q|K>-CpBnOESL~>MelqeYyP@+f{{cb;g^PT@Wb?&+K>Q#F6s=B+n
zdZuAFk&l>eKeN0myiY#*=A&mm-jnG2g1rQ9)^GTM5GsEtq<22nrrK{eK9cAF!G8Jp
zI3N9mf3_)ysSMZT;bmYx28n#%fuu?mGCs{mzC_0edh!v@M`)V;y4FjZi;&!x4_&xF
zE-{1z@?i=I3WnmTRz40F!~S-z9cAlB=;8Swi3tu794a_WkV(V&7C`t&!BKJfXd#~o
ze!J8*(b#<Zb?WE&_(Dj2tBi5^7%zN6KE4!EbXoRSLM94M5@fEg^HHQ(W0EQP_=e*$
zEo~}iga>sz_%<KY@-aOhGxBjVAE)v$Gas|^u{j@G@-aIfbMmo*4v>$zboG3EpN~})
zl==C<28Cf!KC1nqd?&a-aG~Jn-_*sTQ>eVUBp*v@iY6J<ztUb^7SFq!i$HU`kRMoP
zJ~rj!Zbil1ulz_4U!I=)hC*B|e2w7Re5?~f`TBfpi1Us4c(#hI%uqK!d#lLz=i@*=
zPE^g<mXDwE@$IIJpX2)5Y1Mq}%*QT~>=WEAxF@c&mxgNKep2RwsPiD*qh7{@MD^Ev
z9Ll#hEt&L-C?C$p5g|tfkHt$k&f4Sr-g;&F!p3Poq@T{mnS7M-psWXH>1MyX&gJ8L
zKDVu$g<C5Z^6^_f?$8eTxR{S~UpRlyN99+Pnv)vezN=iy$7Lz-N<MDHOa3Dtf5!RM
zd|Zq3>+JGK+a@<fa!c?p!P{}2zw=Q_jCPM}V=d*sd=&7Y)nn)Vd_2gv$wR?Mg8v9U
z7G%=DoY!leBncikJb223zYD7cJ@&vA@gT{AMB#-5DJ<*(%}A0glHzfBijbm$se;8k
zwyCLELZT%FO9@g~nk{rRBpLC!${OK8IS(p&P|1U@n<Vew=PK_(1yP>1G5wW|woBA0
zs0@5tVNzue0u_`hl3LY+YVk6k_TU*0s(Wzewu|}<H9V*pPp##_niQ47XFYh%1Ji?`
z2hV#@*Mp`WWP4E01E&X>9=JS6^B~=Wo>dxUc<{w$mm;WA?WLr)FD0!no57?jucU5U
z<#Kya--9L|ygI|R{Hm*g2aP;<(Zfa3&dAVENTuw=EDstBAD@#!O(rork<qs0ispEb
z>%lu7boHPa+w8$x9=z>A3lCa)@UjQ(X)zC4d(g&%$yYPFFUtPx-OTw-8+OtgxAmac
zK=ma-l6D^SZ=FOk`1gzs9=yqptVw6IqX)0Bom~Ipnt2{{68^ei=eWF!2ceFc%<@KD
zvi>WT)lou{)-<`96xhv!?jH2^ppOSVJfQLiqF?H2(z~qGgZDfrzEpi*aCeW)dmEg+
zgio2Ne8_IDN&n!Hli1gTk38@bM>ttU*P?0tq@0i05f26k&lemhI7sjl!NG#e^{J3@
z(nya7-nd-zz!&Gb2g48BrZ8ydqG_xyK*xJGlO*JU<-u1TOr+m>aIK<iga;!%hzO4g
zQW*1Ki149;!{YMcbfhE~6-IHqs<;?N(;7Q6Hq>qWSzI#4gR#Otk4wG~GEQ*3-~<o8
zjHfPNpD~Hk!GqZz%;BJWFvWvu9!&S(8xN*(&8PkUO)v67?yp0fMNTV?=cPCJBlkh$
zY({5zK%7OFo0mS59dWC7UFwp{SxLjP=Xx;DgT)>!@nF6O-*HBJu#o;=Jokf@*$m%y
zQkTwA7I{$eP9BBjbv3C#v!xz<@4<2pR(P<CSvF)ShKp5y+pbyqojjJ@qq{<^{BpBZ
z9{lLROB&i~Sj|btE_gB7i?trC^Pr&@jl5Xz!3GbmdvL>pjUH_B;IIcrJlO2P77zA#
zu-AjF9&Gbq7n4f5e&Q6kmA%7*ogVz`vHzBx&u-gk0sb5NFgK5~^V^ethf{dgeYfbV
zC0xw4k2SVd4|s5p&UV_lU+_k{t9f?DA&<SuP-9i*FPv-H84N7*s0YV9IPbv)rh0IK
zD~SjEYxrM1IO&19)^*B*S|wejOWQwfH{)V%qk&ncSw$)SyPWH+2j@H(w${bp;^P7P
zhE3GpJp5-IT=w9K2fy<gJ=}GPrIm1{`kkwi(pcJry2>9O{ORH6b;>mkLAvWIXZ`y0
zUVH2k_-Oz?A4nhOy6M3!j)fPcy!gw5+aCPm!DBAe9^9cdin|_q_~js8IpcWX0o!)Z
zgZo^9o^|oF0{)2KkZKKSCH}kpo)I~ZJoe`~tyX3J>%o5>6!ap|ivnIGc;WD(O=%Zx
z!VeAjLxMg0&d*A?zWSh9AukGhQOt|tUfeH`Rzxt>izFe*f|RFtxoKuA@bd@aJ4tE$
zgdux~lfV1dYCu*AFFr|kJ^i~{+RMME!P8zm<3$-S%6d`3i;7;ri*jC+_u9W<$S$1y
zB#Vuq#R~nEUAmO3k{6Y|sNzLcFBWujvs3)eBD<uknim7Mr_*};Q9-txHm~kQ4KJSa
z;(0IlB}GjyYI{+~i&_$0KQN2J&|sB~eAWvN1jB)0E`A45*Nb{y`)i9IIliS_PA}5D
zNEb;1K_)3)sBxa*MW%3<7w#v*y2{SFN_}z?`D)_@k&kNYdeMt4FFy35w-=4QXyU~y
zUcBl>Q!lc;XzjH>_qcQ`n=YE;MXndky!?|F+f`b5!NF=lg#lSDg-<Q*dg)Hy)RN79
zz2u^^weg~@7cY6yPU`C5MbBZbm%X@N($$_d{_WxyB~=GzW!`kMijLCdW)IR|^P-a%
z-M#4H#p_;l_Tnus-u9x47kOU1;l-P*{RV%g)&59?KQhTS(Ej|1NY0&i*ybV5u3mKG
zP>xojrCjeWQuwXP`^D{P^)4GAgZRF<(|cZf0#+ED<x5IqGkSUPffv93?b>`X*B-S8
z>3zKD>qX3qAzpmsML#dRUT9v>`9J31dNI(8{!%qZZAK~AAUcwy4ra!|SuA1EZ}v?2
zRD}709<Tk08ApL~pGX2;m|o~!_`UXX&E66&4v;~gAL3m4L9?J293#uiGj&<?y%7DA
z|0Q<X85RkJ5g}3WVMd2~G0cn4z4*e5;a-gJ;xjMayOYORHqvX)yU{GrYcEYS6no8S
z$Vtr_$9TbsKh_K7R`#|5S>wdWoM>MP8SljeA#4?m{}p@fwLjQl$&<Wzc*&j@bj~SW
zeB;FfO1zlLTD;im#WpXdc`@CK@4Z;YL2Q*V!;3jy%=KcX7qhthPIP9RR(Y2`+iTye
z8;vvOd9kmBve1h~Ud;F6JI<8pxqP?2z>8B;oqVs?w6?mK9y{H6A>v#rxt7pZD=U22
z$2&&jPTq1aR&ZIkmA=7?l{73@cn-H0U!&nFPP&51k6z5EkvZ6(NxoVnYiOBj8I1Bq
zdOf{#iPFTO9`rhIg_>>jVv`q}+1l?DdJoIp;>DDooQ;n<BMzn4B<D|F{OrX!FV1_h
z-HRPw9P#2Pecp>*UhHLGyx8qU^(1u<M`yj#@Ird2RHe;J%ETAc{azfPOK^F4TD`e~
z)!`Rv-c-mBc`^P@9top6BF_3bnS2?VwAOjdi{oCL;L^0uHTs!^#;X&4_2MKgLkm<?
zZXR@{q^PI8c)TS0EG?6wo)Ikbr+T}n(r%!7!HeI#xW*28agh%1#T769pcfTZFHycj
zxy%)>hRPf1p>>qsE<5MssjJ7Te{x9-Ij;(mJoaaXQ!;LNagSlWa+9MuOT9(=j8Yl?
z5^|em3b_-P-xbpGTjzZ?Rdbd(q^vBP`N)fZyr`t1vIZLSF&9G(DH{Iu;y<qc8WJ=V
z)R4&Q^;p%R*%k4Df}GEK$M$6w(ok4K5e;jaDU&NH?_N?T6to8=NyFlZlccDIR1IY`
zl+{p7LvanIH9V!EYD}$fWR}oSQbU&l>RbP*hyG44#iGnij{CdIm4sgtR!(%XG-xQN
zfp(~%!EspGdsXG$LU|48FDd>K&5qSpD{A0?mM@)Fg~e)UsG*UDY8sxVjs``;vO9TI
zMmV3*P+da}4bQ%<mRjO;YN)B9mS(#;O<G$+?~2)V1WBIN@SO1H1?$G;^)$RR-ARQs
zR=UK=z`Ux43=M7#^)+O#b!M^wJyjPi)<3IpAd|M@lW7AD<6EdlW+$|NF^A*@4a0qE
z&lAoUHDqbX)zC~sV+~C-jCxJU(a=;wAmE<znUby9v*sIzLe4?&w=unLMWwlh{3%Ln
z4Q({E(9lvtE9R}L@MsNvm1I?I<=^4Xwo+-!DoU@)wuN8T&|X8b4=Fx$(9n@q<$!8<
zMZ>Ead>V8OuW9I{;XMuSYj|BlXARvnbl2<+t}Yth(D0^)JPq7ynmAG6cGH}+VsB}9
zTf;jn{5ORg&Rs?M$(9uN)1C->Xn0pcPu7@Lj5}s?vJzQf)le$cdTIDT!vGBfH7vcT
ze5j$XhL42z7VIO~b(YdkNPj_Ue#|m^r;~IZo<kg@;S&vBjo)o4gGDD_gNHTFQ$N+P
zhf8I$y7_@xtEPKUqMJn15L&L@Iim!g&+uz7G>p+OmS)#rYKUrxY54TV^q_{Y5b}@)
zi*~!MG~220o-?B1t&vX3`yEz?Xee>tIYPsi_mrXZt2dQl9AXXMnaZFam6KBy%13f=
zX{*-CXj-_C`k5$Gfk{VtWqz*V3k~0Dn5JPI2TsFe&EEf<KsC+YCY_|=E4p8k4DRbr
zq%#*zBk#Og<t`t?*P6X~9*(%CX!wSy!<4D)RN=I}omKLI^)se(CeCz{&(bhM_)I|-
zLiudT!mW62($3Q`U&9d%N7;T23p8xjutmc{4U06a)v%7UTf-6!%QdW^2Nt(4@k=#)
z&$-6JOSvW{rSa0no3tS}oGUpE_c&LvFLd(Zt{>RJ;x67Wtk(FIhkaG8{(R0F;f(Uy
zw_dYPoo%9<b$4$NzLBfMa+Shf4u!(iIqFso+t^<XyQv^8-ytSq?|zo(b`29I*c;lk
z$xg8hIc>Oy^IgM!E)=G+mkv<L?mPFN4`}#B!(j~vH5_7pcPmt&^_X;Kw{p34#_rYj
zHuW(L$2I(|;f{tA8h+JqS;G|#CpDbXa8AQ{4X0_7O!fY8^{lwc85w2z07v|f^{xvV
ze$()~2&r>X!=HEZ(o!3ezyGtM{^Y#GbtCMgFa06euWPs=<WCJ(g<KP)6SBaYQqEuE
zpY)<z5^Xivaa+UmpOuySR66Hf4flAG8ySUsxUb=XhR0mqMe<N4@;~&n8X1o?a7J@u
znNxekfTaI4)Vrl7_~7uNfY07xelq0?`fND^HHnEnyJV8Wah)PQB>C*+g43KyMSb>d
zRcRld@*!1tF&~Qiu;pxl5)v&b_*bHR_NkN)lm4(z-Iwv9tPf3n$o2s~l=C6Yhjbsx
z`%uA$>OR!)p`s6!e0bW2?k&`RyQr0YAXX9lI4iNLkZOYUZlyEn86S9A+0|Gr<Wy_=
zP|Jt9?28YzeW>HZb3Q!p!>rHMG_U(vAC9e8c*DRgyB>~)ZC0wh-?))h)G1AMJa2!+
zu)mXimR|8e_2C5{8v2mIb+x(T_SqLcl1v|5BH>BJ+ih}_?&j6^p@9!v!>dfRPi-~w
zfu|y0WbFm*R`E)g<%4fSMq?kiRyXls?6Pczz;$Pi54k>c@$uCsn)%S&hgW=f)rY0!
z)D}Lp@}V`0>fvbV!+YbL%-hC?wmx)ZFZN}=<io^q&hSspnpKr{>~gB|vS5>KN_!vv
zel52HvsYFq=hbTc8TB=qH0B(A(AC+8PCmq3&3W7Nx(`!sIyaVTWOux~`wbu7^x;Dv
zdb6oMyzRpWVwrb*=;}ic+S!M0(y#6uteXluxbrKebW9=d{EpJohxdIj*QLMb1Eaj&
z5qWFW%V%#6ll(SXNp7Ce$A`W?4Dewf$GvpgM?Ms;s`Qg$dGhmPANsQm#T8ydZR=f9
z2KjJvWjc#3H_kq2%3H5beaQFWObBN~@c7`RNez5%K%<>~xTWJS9l8&Gx{!_@It(8I
zKAiR89GmAukVEOi5+6c7SU!9~5BKp{tP<u4e;+U3i1-lo;ZSQO=EG1Qa%yDEzLGt}
zhY`o~C|v)Qo64svsUv*+2PJ$){Zp=yK8*5#!iP2Nq%mxg51(^bXDLViR>}>^ezk_m
zT(uV~wH+DbeV9O>^kKFSU;6Ns4^w^kR@yMphp&B@%=sdvvFeK{$`l{I;h=X?y^9r=
z^G1r&`f{@xck`Gujnk)>GQ)@IKCmKIJ-2$+OdocgSIHOF&6*=^U^C_mnJYMtj@M3Q
zQQ!HnKzh26W?ZZ+;`Hg5`(iDX`mAE958wN++lM_qEc0Qx4;y{h<iiRdR{HRx53A`I
z`%-@Jfi0nBR{5}FSBkr%f*M(Cd|1mK`LKbxeoADZ!a92IH;TJ#2KlkE$wbOGbJ6hO
zCm(+HVXF_HUR1WR`*W3%HI!~!5*b~(De?EG+}nNF>BE(>?j5xGaTg_Bn&vXPON6`1
zy7&69&xfNll+XSPv;FLs55M?ufYafTi+?M2&<A48Lhi$&K%FC;6mTzH;COf=qcPl+
z9G9eDMe_ugyP3(%a?*!W91aS7VD>YdSuurjM{|`~&iinI3yuz_j^AhsA1dppqT_cT
zF46OSxaY%VHqwV1^kg6Yp!a%|t3LF*?fjDsFx1y)WPWf!Ik--_=EHT?vd-qMCZ*i+
z;V(9x)9`?Dn_h8TJ#o%Xy1GuOoa(+K@?C>-mn>BZC93ziqUtE8<ADzkS>x-jVoj7s
zKK$duW3HAmkxS_KkITM}6y09E69h>L>u?A!D3}<R7t-Mg+UsEvkt7Kw$5R8x97W?i
zRYx)5#p9AE$K*=tC>58K7V?yiGI2>+9XnpP-vbiM>!_&PeJ8J=^WUyr+j}dOMDoNM
z2WBQ$)lpqX4IR~VJgwsy9mA5-?&hep&+5u5)oSXfrQ=y06xL>wnkaR2^m*VUne}tx
zi-x*uX7Y17p4V;T*VWN^a}o)aiD^30b+ps*vJORusv}27u8s^HnK~NictMBnq~g+1
zUkJHdN1=LIPfo7Ro|)WGM<X3gbTrlRqUdDlXsp`@@EZM^ek4bw=IyHLPY!psZl8DU
zc2Xf9u~mKBpTlS~$<m5_*U>^pOVR1I$?>FoW^b*djgGcDn2}|^BqftGJEQG&bkI?^
zWb=1)bky;RjyI%)S9QFmql=C_9jv{Rj@Q|7sq0C-6lUGcV=WDqq_R`2k@7cnyd~M+
z7R`V5rciBT|7M#XDP7qB9V9pZ%l6b$-__Am$2cA1b-btJeI1sLu#R3jKG2a=$nDqh
zp^n}<KGxBn!@<S*L3%$Ot-H8L`s(;dBujpEsXJV|mN_UKpkp9?Pls1VYLJe>IzAQt
z3B9*tF2^fh$JQDO2e;wb^o1K0dW*)UvZ87#OVD-vw8QmQOU1F!K{9WL%g_<fVRHC(
z+VY@|uO6fquU6=8DJ8@*zf57Sh>oa^kvc}{xZXmU`Y3}=6%!{MqGM>>8;1!Qu49Cd
z<jyXtF^tyjsr`kx<!3s^=oqWxa~*FQ>Yb8lY$x57gtM51PtftDj#WB-WJ`2R)ZzX_
zU8-Y}j<0ph)-gxNWF1p<Ow%!4$2U5rO78|wQNN{!mr}+)RF}a`LTs?yF+;~J9cg!z
zI`dLz(*CDhFV@I$&P!G2rOwqcPsais3pw;x3e4B>o!H#7%t4#8<71XN7O}z09E<5W
zJ6s%^?OT(GOE?jBxM-;F=?ptv%XBQ)u|hbbE2YhEKb!S~5K72b>sX`X04<|qt&Vj%
zE{<3C>R7L10|!ON&pI~h*reO%W4F?gbZlSaNPXbiqN97M3=$%f7`Ewn65Y;)LdPy0
zyLIf;v2BfmI?PBN5~}TyLKvk!zfzphO5LYpzmBRCQyBc~)k8Xd(Q#JCIUR>}9MN%H
z#|a%rb^B@Y{NFDe(~&qTd1qhyd1TMHlwWn6)Nw}t-xJCy9nD5NPt%5?z(>oX32r{T
zOq-K@UdII;m)Nzf>Tk4vQT6Z+wQx=MMXoay)ZYbd@|<#+)8skj3cJ5t`9sH_vJ4LR
zBl&84J-kM*6MjSRW?cSINw}@!Z(6{Q-G1ER=yR6&5%%Mrj{97={80ROpyMG|S3k=7
z@rXXNTq)p3f*=3rc+5urkohmye_oh)nMlj+)+}SgdIwwL@S~s~#r!DlN9VhFiGCFF
z+b!I8QDJKf`|T@55kZn9Kaz!~2o@Dgji<J%olwG$l79YsAWHk~ir8x&etxU3I(DnV
z_B`bW3C}05+o8gba(-0xqnaP({ou*}ihfk`qk`YIAp;-(87QwTsqRXRs`%0WZXP91
z`|*q)AFp#b{iyCo4L@r7c?K1H>SxJpe5vx8wf$J!ULECdbFkR*I(|GGZ|8F?P<UOz
zdU1K_4-?Y-_Be7eJh3uK^&`WN9)7&*N2VVxKbrZ`+z+=O_5H~5qp>usfgcV1XynHW
ze$3mI!*)JtHoL>7zDTPMw}nmoXzE9&RCli5b~%0~lkG>2A8g+Bg7#G)bBw~R3@*Pd
z{AlUNTYkLl$D$LiR;=+8^-XDHYd_lf(bkWbB>IYAyLkIw_M^S<4sl6GKMsW5>^{S*
ze!Rv8`0=`=<_UI=YjzQGrJ4FhTykTV<ITcK-Db)=?C*~BZhpMdGP5hk_fTHFehr*6
zmF|9f3FW%I{C;jvKi>1>6F&y~@xC9u{P@U^etvx5$A^AgF4wTHAL~nH_GYJ^Q@FyA
z_o3Ha%qF>7Icw|}$^AZR@G(cQwR-?Z*^k7ZQ!3QVdR!xGpdW+iQ6DvUu1Z#Nl`JZM
z>PNmGx*vW&JbrlnJZlP{AKm68f7(hJaxtCCOZqlwu|1K*_fbK^&p**<5b(qFqg9ox
zwl%VX90KNQn$1clR>@*6Dzy8kLBx-!A9MVe>qpFwA%1-3#~44hcU6b_v0{lb!jEAb
z&^npJ*}KOshM8MZC?6@QqXb6_7WzgV>&NGQd`T<$@r4M-`%!U#GEVr|WvR?KK_uay
zQz)P4$0R=<C%C8j@wFenTvDg_@eQYNs(Uj1t%FL*>Y{4jD-Mz-3zF60>bHJOW3Kfo
z`E);sGX!S}&hlfnkn-2knKaLj`F^bRW1S!0`LTe_kghFc8~Q3s{8%bv5hsq2P7O2I
z@x&jJzV~C9AItrCcvg9SNow&Ql8Bg=!stqRiyy1};5TKf1%H(GEUBlmRZr!rYv_~b
zl~E_v_3Tkg_a;9!`>}y5j2{=fs--8UFpzBFa&f}7-7gmfKelli`th?Lx3;EG&i1>`
zxEOj5Yy4qnWrrU-{pe7`-C%tNtJvemUd~VhE(81g*v}P@W~Ar)anO%H{P@$4L#*A8
z(|(-s<FFq`{5bB%39cI-sz?1OGgm$4$H`<jqmxpb|MrVAy^s4>O8hv*g>gzs(M8IC
z=N(T1`B@sIm~x&zf8TYEK3`t>b7AURtCb6W{KkHX{F31Bg62MjnwR7J3Mc+O7bREy
zxaP-wE_ywc>wesjHry7xDR_&*YYsN-FNu<zNO2SYmgpV9ySxerSyN77(gSJR>?HR?
zj((E+5v@JcP4cfF|FI$i6%7<HkYFI$K#GC=<rRm4f(8-|e3`DU+~_D|;MBVcLt%q|
zHtHrRVjxL0pUA0J)Ih3%rwo)aP|QGa0~_Y1mNrm&ow{eEqlA!>f|QgJ@;KQpish6w
z00aGoy356j-FV)?GRqs7GsI2#_95;{1}Yn<ZJ>^UDh6(S=ziM3GX|;}XqfC~w3;;X
z+iF?WrI2L_X*CVhFu=xF7;0BUNi74!DOH+1YoO_BCEb8x;5h@&8+c=w(y(~*x(4b=
z+nCBqod(hjkT6tBcC$&8tL)lPH$5c7K<?b^=kL4R2I?Dl&%pZz8W?!NKnDXI*)Ri*
z474`T#=wgPvZ!yMnE~&4S7SE7K(_EEf^&*xR$u2JGBt;(n-r4f23i<sX`q#XE5}?f
zjZQv#%~7|k`_wa;jP5z_>afC5_lTpdftP9dEQR4EA?*ZP+{!TvxZ87Nr=%1rpuS?@
zRReDuc*nqN209tYW5*4=Zs7YCYG*;up%n5i+&npylKpNDxqq(m!H&c?4V>HJc#HC~
z?k~!^!~eN9o>RLT=waYp1KkXCH}K&WmHGu2Ca;~Vs5RWnMkG_Gr-3osl5*E6y$pO{
zz-K_Grh(oDJ~1%ZKpz8r4SZ~%zX3kQe?(7UXUn?D3s!43<d+ok0S4Yo%NS^2XiYcC
zw9(0vmMDV^5NWY{FDjoJ$TvXJdrKnGBit*fJ;9p_<$eQ(f#C*57zh|J4NUpZHOxTJ
z;E&KM<e_zrkO9YemnBFN77`JR8i>W^L)aMMM{8wJjr$U8@JIur=$vzvF$RBvz%|;y
zX9gCPb<-O4$ETd%;%Il-!S+|~qkLgtoPnMu-ZL@Yzyt%^0{AI_FAaP}D+QnjFp(Xk
zc?0Mfz}E&Q8(3^$3EOPo8;+wtXAXV4r!v*REUN8Qzcnz;z;pwzq`0{>%@FccLdHx3
zNBX#nU2qVoKU;Eb*yxyRV4i{bhJA;#z`#NS-_eIFstmj#EOOkrh(0_e<<QEc)G7);
z?psO^q1y!TdH~A|Ea!X-piTfQ46NkrGjQ6#4+e&`v2QRokPmjQGVr5;)dqhw-j3$M
z{s42W@O6Ug1u0xIHD#lLO$Ig_*ka&-$hXog26hYoNpOeY&w|?pnfKJk2|I=Fic13b
z3+xfTS8!ikzF$byME5}hhYb88(W3^A2{|lyL~!~w`+M`_27Z+&`3WJc>ttN=F%r%g
zILrAJKuQ4T44jvwdj>8T_|3py61_;rHgHY&CBZ)gFAH7~Wcf3@CHyJ;YFv_YA>n$Q
z-!O19&Tkp$`pf@LMBg^>x5)1Z-i_;2x?kYF@CODS8hB*jA1?9%I0ASq^8W<?jqAUE
zzCeM1Jw^=OYbO+p^TGin#(ALtI>-TL>J$keDK3A8|A#Id0h9|MHGpCPY%Ob#b#alG
z2%uyDrG%FeEG<Zdrveyp*Zv~4Y+Ul`Yj(!+5`89s3IS9UUMYa8LMjVZ5u|2P?WAhL
zpN>oRwzW&BF3}nR)D%)Hp8EJ^foB7FE`Uc%)ved<?WX4gPy@&apswiD6C8vDX8>u!
z(*+el>Q`->kQsn0faU?T2*4dceMxE>K!do>ivheKyrE#DxcuXWi7X*2fW{(e5|?+_
zWw$vyfE<zJ3O0+UzI?wxOW_>^TLsWsNSgrK327_%k|4_|I6wJi;qBv+*Pco0DEt+{
zR|Q{-r*gzQ2hb&ew*q)OfV=<(Y*pV7T(>QeoZ-y?w+fY8r(Exdyt^RfT?6PQyjZ~f
zM6*W#v+w4SM-!Fz0{Ae1-T}N%hdGznD}WCIuqvv_Wt2YEvexWY`vlN8fc`8YfRDJ=
z6;t~K@G%|rl+xsJI-}Id*qlf{Fn~b;cmnVS@JRrJ1Nbz+PZV)$R`TW_oGmJ4bsd|`
zVvQ1+J-$o+B&fQ!rf31wE1$^{di1d6{s4>sX0dqzzIKNh!1w?r1P}}$6u@x0BHI=~
zIDkk1QK}`mc@s5zYa;KXVgU>ZU}ylt0_b(!!RtPkQ!cY#ZcXG}Vzf%;oMO#Kve{RZ
zF@mE47%k*8mRUQ4_^7v=sbd59Jb*9Ql5HuKlHB70s9n^SGcfvP0AB?#C4g_Z{>QU?
z9l#{vEP?uyg;(E_$mrAnzLi?01waW)ppbP<4`4<BGXo%JMT<%*l(U6%0+<`X>HuGt
z*lnH{z@h*av$It)=Lhhe5b^~=778BBQ<em<l&%uMssO&{;?G&xQ(3`DbkDV%OJ6Z%
z{WZtL58aHel*Y6vtMUfv#{lLOaod(DV&6LrpfLkj8^AirzA=DJEGi*weE=H*_FY_;
zWH)hh09yjMI4AYu-8^2@wu<uMvfzbm>)pJc1K1uw6_YP^u_J(;0o(}SW&pbasI=92
zB!Hs<><(a00DA-27r?;)4l&CRciNW3{Q-0=;x1l0>p%d1)yg8_t@|$l9Oh;Bo;{kp
zOC%Y-#&Ilw;{jX<;I{xy1n_GBCoee9a?<_oI4S+znBpGvU)HGrPIIk$Rbe>86|c9O
z<ltNCId(0{eO|EZw493p{2suc0bC8>QUI3&xDvo00krutg-;f22Aj9^ykmM%g*Tae
z3Yd7`b>p7vS^(Dr_Wkqyata?MXo_2GHdj#-rA^!p;O_wb;bJbe+zH@*01pDVE75y`
zqf*@cQrr)PvptW5U`h(*Y}LO3{KvkSC~BgBi3AggCJLFhogIP&P0;!Oy_-j*<qMlU
zv}509B%5GVnX6JWNi?54XfR5WYNEJ_5|X!=;FEGrmQ$!u(!_>pS<L>Fi83ZCn5bx?
zEY(iA7|NM|iS20_4EGkNQc_-$W{l3^9!@3G-f!osLSC5--lqC5sntw8Z6d=&rio`v
z@R$0YH{o`;tDC4{qNWM|WTlSCnN-U}ZIPs%RVaT}_;Z5HLIq-76ZK3uO{6iDQ_`ih
z4u>2}QcS2O2Gq?;e4I|CzKf|QTA65VqI{{$`X(Bgcu{x*6E6s%yrGGdYFQ*%CK{W_
zHj!hZa>LvvCYqY)RNBq3cW&ydR~*D#6U|IC7dfME7;c6qsVz)YH{2}+7mrJBW1_8z
z*G+Ub@sf#lCSEb|D($dIdD%pJ6CF(SsGG5*fzr`LYG*ZXvT|j;<6(W};6dkWChr8C
zZ_i2}_Nj8dYE~z9ZIYs2RlAtTGttdNcN1@zc+<q&Cf+f@2Czo9<Si3_v{XsDN;BB<
zdb5&ux^hT1hSYazX7r$wnCM+ceXqW9w!h+U>we!vFB9W}7$3w3CO$Ori;2V3G114w
zbQ3d7^fmF3iJ>NjndoQYV-AW5!$f}?+yuL@Xlv3y6Z4BG<l`r%3^MVFL<gJDg)r$;
z6ZvuO5#lwW#U(zPw313S23jCs!Zcx-2%89!%t?;SNscvihfEObHgqq1Dw`N#R3z?0
zjwtQ$RQ8xmWeA%(C)rNTX*k@(2s)UFNhU^`7-eFtiO)@pHt`wBdDj@hb!AdpE=*>W
zf&2>^gm?ZXCXg&jWmr+AF|pMO$CsQ_lI5}}Q=ds+oA%E06cgW=m~7g2>|ZQNrQ~1%
z_f!+#nwVzV3m_!}qE54!!a2g-+L<P1nOM(BXJWRAIVP5x_};`^PWCm*e3QqP?45^s
zroH@fG33U@0?wMKYmteC9I2SA!w`F~p!Hz)Vvd4Lf9i0HV3~>KCRUpG!2}nm6`b<-
zU0m~d?=fU(&MFf>npkUMor%?)<~^1A?Ugm6Nm6&Vlhv_aE*DH<X&X&!GO>;QGO?Lc
zqmMGXV%8QDyN<aw7t7qr##hYhI5)NZ+|-}BKA6~NVn5e^n*FMCw~0L_c2b%4ub4H;
zok`*1;W@;aJ5%;@BFs&#crTAhugy(8Akl*+y3S4QUe<j`N+zNH5fex0ghBKR;+To!
zCjK^Y$HWN}znZvc;&&4#O`I}u&ct~Wr%jwO@y{*wtO?$A)ahj3WAK*dc&^HOl?#&e
zn~A|yoADmTF-JM_Qwo(YnYe7?nu+TsnB@v*lZih$-TqDI4a`-}h-z7z4yJTIl5}QR
z4*3leH%<J-1>eLiDU-FZeCF-&$klUeBFki`w>j~yiF+KNAbJLI-^2s1mb21d4dS7R
zM<$dY)FA#b@tETqM6DqHHSr%uEr^mq`?kM85QTy$EIc6yhmeATiGtK=mSNwc773!L
zNRkAT1ykZWd*&yn#(A+IipP2X`vpn`QCgza1fL3`ToC1hC==HyD+Ge;x+PQ)QaPSl
zF^EcW-h5X=l{l{|gm=hn+tWcjBhl)DHR3vawtD4;i)$ctY6nqA<j)52oRH@Qoq~0P
zs3(M)$J6Zorb#qiFn^zY_nr|%iy(4ZsF^{yf^Y{>UsAJ!Xb{hvCFF%58pb7!f_PDQ
zna}MX<Y_FtiD1*XPPAlFj__Q;W`fP*scrZa5JamWT8rdm!8Y;Kwn4lkyj@(<_kMx)
zao!<_j&c5qkU{c*_L}fcLA)MB=ODUB^z9(t2_i49|3(mR3V$muDcrIsyP%%3ZQeDA
zZX)k4*dwm9$er+B5bp<VKkOSsFE0K;d>BM;dRM^Nuz|vB(*?uXCy0qv6keMOY){#q
zsq9mfBFmgypFd_BYG(L@FoNhG#DE|M1~DjzPlL!0f>)N0OS_4m1Ti>>Y?pHJYh}g}
z)f0r5H3p#vG3Ip_FG-rD?yRNqlEf<`Yvh%eSN}i|W)MSy7#c({h)@u*AX3k|tRTWc
zM1qJ0ae0HIT2Qg^oa=u?qE95lM4ws41Tj2_5kZU;$*8z|;BP8ZM+Y(Poa?h7emm=8
zlwoWTpNq~Han0t>sS|?uGKh~t=oi9Qv`G-o5Yj@J6vWq@DIt^(@i3KRauDAJF)fHG
zL3|Sgci5%|!R@t!>m2P@IJhM^J%|}W><waH5Ho|=kl<br#KItE$+*mpkIoz+a|P!G
zF+VQ<j_bf?`^S_R76q|Y<cot?62#IVz7JwuTyvR_RY5ElvO;iWJoN`5%kSCG*FOfa
zTB2*>scSiXBx$`!HVAGEVv~^5*9&YGvL$HmtFwf9Ugx$TehT7ek?#<se7g|t67LkU
zD=yz1#GW{xz9(@%ZJVzCvLN+p5C?)d7{s9<ei4O>f`<i92p$RIsE}iV#|2r}zt<eU
z260lNr-C>q<h0<KxX#%isyxb~^7**r0>?ehxjW6I--Ea$lFNcu1pkQZ{28=2>*}}7
zxE93qAZ`S4lgn}lMMAh0#9v&)gLoXoZPC9c__yF4!MlR2rCVeBXQ}Q>^nu_*!AG1;
z^X+BuUx_+G_TvAa@B+dU1SvEMBoq{$C|D>iuk*gWDke#^m|(JCieS+YQiV|Gm)$AF
zg_j7SWC*2%mk}%-*Lh0Fi}&)%#w7?r7vHE5Ld6hjgitetLq9qzg-|twY9UmX=+B!S
zRfLrK*Y&iJX9OvHBCj4o$A4YSSSy6uAv_zxb0K@1cd_QK6T;rxO5U~<BKKyW520=d
z^+NV!;f^}@-sf*hBvxDJNDn~?AuohCLQq4<2=V_r&^(095L_YD51~N_zpqGr<Alpi
zofEFc%N)cPLTDI5P6)XnG!l6eku&K<iDo@f4xx#Vrh?gmSAI&QTHiWZ#3!Uh2rWZ+
zC4^T)Xca>15ZbUwla&hBU0mWw$|ospncBdfDKCZ4PAvIy+@9@2=pejfT*AG+*FxwN
zvTvumuwRpu*F)$W!U4AuuCFA%ppbOAsuH;rzZt??A@m60-H^St`*sLjLm0Is@g0e}
z7o}3zErjkOWb}!oX9(|w@L>qOLwG*~uESibLv_?%A>39nJ_v#3^SOiAM_S%DWUt|0
z9&>zs%<)?ZweYl*k3;Am!sHO9gfJk4fgy}!6(I}?;S;WeAp}Dh9Kxp|_~<Yp`>7{C
z1aAmh2p=?bdsy|O+!tpklsk(kYyht^eyPj&UyUlCBLX4pYN_@Osoyy=LLpe}R0u;u
z2!{{}@#l$@Xb5~t;suN5Wl^yZcx|Ft9?nyT(S|(s8N$3wWw;oV7cVNauI?RkN7HC^
zGrkC6oRH5#7!$%+dRjwwxdo}8i;(>FdwJtSm=MB5F7=$|%bZ_w{SRUJxa1XX`vGds
zWo7JG2Orbe{;zq)wZEclaj=$eLYNxD+7Q--@NEdw*nkke3t@T)GgwyxWljh)Lzorf
zW{5hQ-q=EI`IcIuoWe(#Mv3n9m({r;ytq*Dlx#RJgaVV5cONJVLRc8WGVzl|($vKv
zED=)jaQaf|DShU98t}S{SMc*S?5pZ>(GU9?uLxmf+{b<pvMPihg{&4_6Hj$_DYBl^
zjV?!f+U|i(A#4p{TL|}mQZ|R|?I~_pZ3*F0p|tOxS2q`N{}jT{9IOy_hhWS}-5$b@
z5O&gghq&J<sdVV6yqA?h?0+wB59hMi$sL=$)ESXYzAt2N;Or0KO7RSmu_cv5A^Z};
zu@H`ja9C2`9ibix;c91lTkL2E6^dtaGl%t_2;o;Mgm5Zk?~-w^=5Y~soxEnJrKzo-
z&l+09%{H^a=R!Ci!sQ6AL~tR5-$HmTj80)(<Pt%5wGgs!i3)6<1*e58A^Z`-zajh=
z!k-}&FYNw{vx992;hIFRhj5dULT-i|AtdlD*`~x>lGON|>(OgPDET{tyCK{Q;SQ(U
zSr=dP@x9@F(Rn1uybnTnD4bQ?OwT6%BgH<ZosYZtgR2EBBv>e6p`-<eg@P6eTPR{7
z(XyvJXHy~a7Zgqb4mxk=k}M=!C~6_qvY+%Rr@y6G_EtulhHl=NF<Q*Br(toyMtvL1
zs+m>FLTL+?EL67elqD0vLU{{iER?k{Zma{Ay&}#2RdLo=rf$yWbmPS29I0U0j#|;e
z%~BcMx~XEJs)ZUBYFhTJuV#T0<QWUxYIxeRy}jW?d*Q0i)LY7;fLhB!Z3`#r+c%tb
zEM#7Ht*);;YhhI@H*dwCv+z6{BSmpJViE(3O|y`0;dKk0EhrXL3(dtE87#p<V+&0z
zxGcCWG_df3g}2YS`1Z5DWxobx;4|#dB5Fgn+_K-Uk~gwI<g42(A=@sya-MQGwXpT+
ztQ-ru7T!y6XImJvDUqa^g%0Z+e4o2#X9@{J3kxkRw6f6J!YdYD6~nf%@Un&W!rQX0
z8Olq7?JUsXjCPPD4n(8l4q``%#<nEBCZv-E@+YZOChuY)k4fx>#dlcFH!Qqkp{s>A
zE&J-g@D_V2Nqm^10-d3og&r2(<xnOm-RUQf)2Y^zV?D{fMeoIa31{?uA)Op<nwPiw
zy)E>y(BHxU3w`NJXI)J_%Ev-Jve1uhIP1E2&c#iDk@xbLG|<8zj<N;A!Y396Tku-^
zK*?Qdnfj>(qDL@au*pY_`5u-pum8~88eOiB;<KO&>2_0LwB9l`VBv>d$tDMPi^^Iq
z^=-@-%9e#Ny~V<>79tj+78Y7qL_=}(IXZMU%RWv#)UppJkG3$(!f=s{urSKP(aP#z
zLmkQH8EUc9uG>pec{cSk_Vj_1M~->$_;U+iSeRnr8~VJ3@fIf0nOiCoEPP38FG`=t
zIif4UvMP^PeZ{eEnQ5MOy}l!z=RCi*Fxf)A(=N2k>~%+pS?W{^-&&Z*iDO|J!?~h2
zRw{EXOqW7f&I}<l1!q~9Eo4qSl?TaKazFmMGQG4w#&*BDz(Si-uHs!>Qy;pReX+$~
zm%?TXTP!T4j)gTA)>>F*VL7eGNn~M#g#|geD=n~9EU;c5wL<Mo9wPnG!fFc>(o{Cs
z*~LEM#j{?WcDmNlP^)q`SlDP`y#@X~!Of2v{BS9cc{j1--nl$W#>P~d*leqXZJf~-
z_FDLfL%&|#VPU6`pDk<`LLvVeiMY$c?zn`9JWs7irEs5x{T2>c_=OJ4rY=zqa!ijo
zNFsvdhb<hjz%!!9EZkUOpTasSnl~<~<dh$mR7Ou)I7R;qqgWWHEu67%%feq4&RRIf
z_1wZAbd?L~=Pg{c@VoE}7Jd`L15rHFRqDKQ$--qe^&REM{VBu&)74fR96aUqC(UwF
zy=md9g=-eBbDi0)P=3R*&wxGQIdvLS#~PP>+rr-#{<ZL*g*$XV3lA(jv~Z7$(n*!!
zzK~YS9OQQ=raYn}{p0$FMR5%g;S*$&wx4hn2qPhkB4H$j;Ru6`EEq;&7^&|nv_R^m
z^m-3mg~BKtwhOP@%KdV&<~$+x^fzj97)8UV@S>6u2BSP}OWZq0sdXv6co-$ZP{L5d
zD9JLzs79SIN{8_jtyf8{97dV2{Y6a0Fe-&nRyd;&QckeEV1=;#0Sl9?Nh!?uuzD7G
zl`yJ?!H-k;Aq>AU;nyzDgi$?=x?$7{qed7t!{8?^&xXOTb!vtAKRDU7!w8McVNrD?
z$`5cTd@hXVr9CW)-_8uEp*kgcbbe}j*#4F$Eer}-KEL!Sx=+anBQuN^VYH+*!f=Pt
zB#fqE)DNRU7>&aAIlvdfXcz|n4`txe)OH1PNq9uC#!UNs;EQ2oiB4ldO3We7>@ae|
zXfEc>6?wBTM%Bq;paOCCKdvY4x@n-=DvY*ayc7m`>oD4I2)4WUNlWiu4cdkAau^-M
zcqNSX(s-JygII|j8B@6#4RW|*=Knq&65Eo$9!BRdo{6A(1YN?&3*%@Q$HI6cj5leq
zFsv}%3ghiCdWX@6qxn?EJ7K&VMo-~g!{{c2^6o-<gmLnLlhOCWct4B}!r*6!y_mN|
z+V2aLANDJYPur;<irUTRGTe_`eZ%-D3{M!|F!cKFeqjs><C8F!smjM;e6hmWUvNMe
z1BFmBeyQ_7LdM`QKEAEyhw*6`j55?anlv$2VMZ+sUl@TfOqLnO@M3O%7)BV|uP9fy
zB&~1lZaOmg_9m5QKJ6o*VeHJ#?O7#j+_uDrbJZ}d7sltTD~xCuu`nnf9mbF_hKB7^
zsUxMpVPQ;Z?H(>TFi#~P5ypj@StO&v;0aQOer?>Jaa>xv8ODS$HVjtX@Y(FID`$-h
zV|*BU!`K(bgfPAgV}2N?k{f>&#>6lt(-S^wFiEgx)vT|>n6@pE5{4PY+|e3YQ^NMc
z`!``s4dYwk(*$P=P8XaZI8$&Ii>hUBLClfpT)}yQ6sC_&{w|CKVf%3G!Y~$xu|)VH
z8n$l(3YUuJI<`NI?>RIQT`u@z7%SrCtR#u^RU}pH8dpozYvS^?bh!g5lrwAyV~5B$
z(xt=LEc_?IErMGGskx2I2(J`_oj;3YdtCnV!IYiCcM0x}%l8P$IgrBBzx%^D7{(#m
zxo?95>{{OjuZ>JLs$~5V#^ErIaAYs0^MEmr8S_YRQq?Tt@i0zsVT`~L!LRgH-pPmY
zdl<>zJ5Px-Ul4v;@JtwIg)sG;`0aT?Mt=+A;Uwk9dKq-oOJQ6N;}#7Y#+5L5ko7tz
z+6mVmVf;z8&yzpR$-PQv&dKHJ)@xzh-kL&kgNw{E$4xF}#obgMQQUnyjK8TL#-lL$
zuSmVa-WADs!0GeQd6(`~!hJ7{`$AGWsf?B=;$HQFGUG4hpD_NTk+&p14&z_Rb+cDi
z#=RE~=PLDDsRbfvP(Ooe1tUm|phN^EBX-G!A}AWcCk{7x;RuR|Fi9{uf)pXGe^$Oe
znnX+$O)3`?Qal0-Z_H?^2uep#E`stA`?J2MA}AXHKkF+aQA&<(PQw4;`DqyyBB&HW
zWj<1sbypM|Q!k65N(5E2-PI!Y`Ms(U@LrA^p-+o&P?OxxvfVWzs2Rbu2&P9+D}ve)
zyb{5y5!8v`*$5g%@M6S%Z}nURX%VDH@VrFp3f2>J3i4eT)fkirG9t)~K&55YD2`<J
zmHEl82;8(-1TU~(PiNI<2QN67#J5^R9t+{=*@kS%hbmu}6SE>{96_@Pnn%zig7#So
zw<WV9XexDGo}Ww!>&l5BHv+yX8<6ZKjxFkL5kcDsUW%Y)1g#<n{qEoqi`EgeiP&eA
zztwXYxYtVFE`pa?GLy=xR2%-gqeBE8BgiYJFqKF-@wEs#MKB<Off2kOLFWiQjMy90
zT_X58!TnYQZ!=2-Z?GBTQ@BOO@Fx3S!(HpW+;<}A8bPm!eZ-Mw?-oJ#2zo^9gN}bb
zn{~B}`(5G5PdDxv0i*8;zAwlqvrzMc2>8-%&b_?e5%h_mZv-Dj&@Y0IBk=WUJgRDA
z`U9)uZ9gA!`GIGDT4|F~|GYYgP8Gpq4n5m^)-_l#pKcSuw&VZXrT0YOjX+~j5sZ&u
zkE6LBfj@#_5e$#Oi2U!ITR4J1oSP8@g@@u2D}v4U?2~B>5fMfshzS`I*BKhYvi0_E
zD#M5f#>C|#BN!!owBToP`Thp>&-jmx;B%3D5tok>(n<b$azX@O#^qlLnHa&Oxa4d0
z>uY=E{D%DssC*p$HezpKO_k``w-g>);K8;T5zLHWdjvZom=(e72$n~%B7!*)P-hX7
zGL^Xz%!^=t1m8ulAOgNU*?ru>vyoKDAL}44q)U|GHjzr@#Stu#TuTKh`96Y&^_6Ap
zbp!ipZY3RNva%|IAK6rC%#BqJ`)N9YHMC>|TOwE+!MX@GM$m1XvYvBrp~A3%qdzT$
zq}?G0aTA><pfXTrD-FIaeOm-S(W?(RDEwI@6m}o$AhP>A+5HGkaEXp!H%WbEUj+Mw
z>=E26SpIVdlMY01M4|^HI26HG$890QFA*FTIXSILJSx#+5gd=pxdC!Af>RM(ilBIX
z<#YsRBDhE+%u~;bRnJ9mo|B@!^7<JUH`6ZAdR%iF*!#5Hc^i7&wWfDtmi&9f-umFX
zEpDx_%s(RdlV*uweGFG4xW*1fF(iuX5!~QJj-o>pHzT+eLA5BJj^eKfZbwi!iXu_`
z9l@Ol9!KzR1a~927qLHue#FHjf?~DY3=f4o;F1M9%0Nz?e<CQgD3#>D2nw*SGp<Cz
zgeV+Q{8~Hf!RCx2I}%9>N_0=ELP;UvH_D_YMUfmui6}}&krD-uC-F5+u_%g0ks7r(
z-?;5Y3E%7&kJ@i=_`O3`F{M-#rK6}2wT~5jo9uon3Pe#ZiZW4@jbd(!dsrVkd{o38
zSeRNqYH$7RIGIFE3M)oYDT>Nbdo7(@)<%XZQB)NPIlqH=CW`7&)Q_S;6g4Q1+UtW7
zMXe}mN8x@tt6mg!qIfon=cA}AlIQ*pdLJ}fRwiZYnC#ozQmE{VA}xyaD5&#9LIujz
zC^Dqv%qU#U9>s+X4jPbkJt4#wqG%XJvnZNJaqB6iQ4~$0Xd1<fQDjB=)2wP^8m){%
zLLBSJ$d2M@9p!d?cWx9*`YAb4P<Sz4r6g~yqeT>J-&7ge3TY|WDvH)|c^e^r-OPDO
zNV_Orrk~u*d6KK?gWQf$yb{Ig`pU;qyc)&#XIyWx0a3gbMW-nCo^ib%#gC_5T{u|d
zQ#wa6a6vM4@}l_ivHFJKx#OASZ%6SC`yNH_D7r?`EsFP|cwZE{N6{mScZD-Mm3v0f
zrn5W$cxJuh=|iJ#@?KGVAQcr_oXTjsPHtAsq&~Fay*zT}>KnyJQBcTS{h}DtB$uRr
z6a(0*C<aAgL=lMMlPCtW4eM1-BI2h}c%#sw$dAGk#lQFRD6G~Ym*|T^7frvQoz&L-
zh2b8|BTVa6z85y52t{E<5sYHeTPk-B7aVi&l>z5?IEqLVQ7V*jbFZ6w@7z3W*gzQ?
z#jq%Tj$(Th!=o4x#dlHuC@w}uF)E6$qL>)PXilY5%GfAACz+#sCOAfra)vLWm=Fbz
zi;#~K<?&IxxjdE8FQfK35C$FynH0s>QS5q@J~N8RQA~+q8b{%AIv;Sp;X?79GBt|u
z5QR@e+BN65QTtZ2`T}Ko6qL-Me?D>*PEZ?8P-aEJC$HIDL-s0j1m_CQ<2XL6%oon2
z<^Jr2TyT12t&3uP6pNx*OrMNmX%s72LKM7F{62~mQEYlXYgrV_Y4g4fc2COT-6QWa
zDNLS_vWlb3Y0h$<%ZTkr<Sk{P1<Gp4d+HlyZPdO&<sB)}Stn~l6q}>Ca=@`MYCpm8
zhItdccZte}xGhoefstWr6x-tbC+S+L(Mda^*h%xo@I?%}qSzh9$tX@mv4<1wntCXT
zU+CMci<9w+vY$g!u;D>z(t#-cEa7Ie7Zg+}Jk0URRgOn-B8nrNiBS~(Nj+LyImT7)
zd*?T4_Os-#lAY0t?hK|b|6V;E#Thzk48vkL8^yUOoH3-uaGuW0#W{wg7&s8W(P)F6
z52Luq_6xrx_*WE{*=yl{aP1ZHry%vO3b{tFerVrX+>q$ac<L=7E3z|g3;8>WJ5k&f
zeqZpOATwUtllUOcZ*ER_6vaOheN2Cg*$w+wqW=jN5J`d{lOD-?-hvWMjG>T_!tvB!
z>!c*dkP@@qfc{f7hSV4;$517PVxm(zhNoiCtc2ncEfGUWA*JFa)UA<FMtJ$Sq^uAK
zmJ{5vDWQUpih`8{*|yT76RO5gO`^{VJ}p=?hG&FS7px)p|NBxahT0;j6PF*7Q}@qF
z^m)O$g7so}^SFHqB0UC$JchSosP(;5mDJZ_$cP~`23HL37@EeA9YcLdYAo0wh8JRJ
zDEvi17S%||kWUh_;u2c8iSYKX+OO1eV#tl5O$=>C*er&YLYfP<5TshmN(rrmw~kBp
zHE_HX=N)2bC;a8Oq`i=?jWat6c_l7?HHM1!?fctKB6(e~b3C<640*!eh)d`{Z^!UX
z3?7kmjiFl%ePZY<(e8rp3-%CvH-?@<-V<a+-RdXw68?eUhl0K1sV~2s@R9I=F$@yY
zFNTkW^cNf;$a0G9wNGJv62slU?E^@IMgFN^eq86lT|3E34~)SlLOljEhF}c-xQ-zt
z5X1gDw*47GB8kRe2?@tFBQdCV?ECzfNQT7a)oUaSkKu+x85P6m82FR;BVzoMBV{DL
zqPBX{p?(&_zOBwNG5exl;T?5o8zqZZ{Fr@}-&G-FTnyu5m><J;oH!Ge2{B9)LjGk8
zU&Z-EA(I5Z7Mv_NMev&#rV9C1ka>OW)#)+JV8`35Gh>(?!yGzQC1q9&lPf4Er#bnv
z|8ryZkN^KaroID8isJbnkaWiZg76_D3MeSchS??F!rlRbVju}ejwV2Il4!gQv%8Zv
zASfcJfFLSK6a)z>f+#^GC>hC7Kr;M4Q+)6Le(&|G_vz~D>gww1o}HQA=>_?y-Q7jN
zL_nEE`B;*VrTO?GAB*$xB~9g0R>bplK5qV0lmcUqIhGk2|CaaM`l%@CGP)uk{r9?;
zOB3X*5HQ)}TA7b;^YL9i$XuO|84os`G1<2&ACdAt0y^hlQ_tFb{E&|UK@1FHT|U<5
zqi7Jtg4mFcjrsT|AIJ0YV?KW38q3ns%Fp@Ol#iYH_#+>`<YP14%i-htPyQ*_uld+2
zz*E{cthBFVtzvu@_gg+*sh<7G(8k;IQP#-VAp*6wXTDuMyTPWSq`UI*XFm4j<F9<|
z<{IA4w^wBL<b!qjFp!*Qs%KOG-~5#>&++z)03Yb_A>ILzIhc?3k7QH$u-JJ-=+S%}
z%g6j|7yl9Y`5y0;yWSJ|I7ts*b>3mL<l}TcF6ZM)KF;LZH}V%4JiH6Y$2pEZA01@)
zNYB%@QMtrSm*~uV@DBnr$bZ8AUjQF9T;)WN>Nlm<wR~L9#|^=(PPKdvaR2`Zw?vGb
z+nn9<DBvz<aXr^PE(JdO*=eDmeF-ic<acpx@IcVMgb`Gp=_(#Xi6ERoxPmAdL`Dz@
zqEZl<L6i!jd=L)>krf30Yr|BU8s^!1V#@?kR+tY4Q7*{ejV_iRTxlm_?whR;1pk;r
zW<~0(;3AWM-r2IgD1XLO4x&mBRfDJ&M9m-`4%)wh_!EUcW2y&HBZ$-WT+?USSMXY5
zZGEAS2z^v&ZJ~99vKMs)JQl>`1)O>U_-pEkAf623;`U66F*OL<^W70dLlLO5+fAlB
z2u~2t2Ju`FN)S93qfrozgZ51K2JP_n1u<%UQGzBxG!3E!i-Kqt#IfI;TobYdG!Np3
zQVoB6#&xxt%O3<krs|yN3Ivf8#4|y(r~ZqMT)N_vvlThjT$R6Zw+^CX84p35AV{AI
zqOE{-LdkhrK<Bv`cW=8w|JoCI^g{RZLHp@(*C4tD@j?(Cs3eF^LA)5WW0;ROJBvV<
zAZC7_bFM}<pM~;aH9x1o2cZu>?aK?IcMyGo=pICmAbN6`YGm^Z3B7{gvuI*QKI5OC
z5$GF4KdQRpopZ-~@=R{l>LUFmJLoCjpdelf;@cp;3*zM<UI`)+gc`)FjD#R21~Dm!
z!9fh6d=SHe7#g%Ue(+y5tEzy17a|@W#E2lq1;KwXy%BPcq=$nTU63VnOc3Oc4T67e
zVwRLyg7HC2V3CyGXTJQHhyPUK7LLj6OAu3om=?r)LF5PR7xZri@ph0ur16$y$>9rn
z(po2ryc+})@z|Pv(qPbjj~^x#X3vSfO;f$aw-jMfG>BLbp9JwK!y^bSh;$IsgV2L8
zXmdqhl93$nnL$_ri0j5O5(W63yd27;>}loWgU$CDRE&_||NhxMGl-uzXL3tGSJ@cw
zVGy%|_$Y|kLHqXbW1)?%=XJQA$6LQSlASA*H-HrQj4lddX%NeTm><M~AifOZs~|oP
zVj;)$Rrlf`7BOx!d|wE?zy5HYA%}lQ;=cgC7C!IgmlOzmb*>1XPf}nxRV~U|8N>=v
zMb0-I+-v+&P&RM>`ABmWEeYam5a)vUo)H+to*?!Hv6j;zh^;~V#`Qml^+Ei^ZgTw(
zV$6r`;KS~X0v`Is`(qH-H+jkAx0^Nzb2Ar&Abt`4{i0t5U)-EYF;*dyZ^?fTVn+}=
z8G%<_+k|fCL>TAZ4&NV={WFNXjYW3dFM^L^y9J*SJn49meL)-w;&71XDd6uQ_ETY=
z>mcz_2cJ|NVDz5P;o}QtKUkD?B#5IyoCxA%5RDpU9~1gd5ZOO_yR~p1mn`|4p3fyc
z6~r0goaSmKfMV6RWU}ad5EpnU454@k7lXLOt_5);h<|BG8Q)c*ml;$?omT`C@Owur
z`Y(uU!r4<Kmz<kH+zR4u5ch)M9;e$3gA%?wLHloOWzQEO{`GElA+~ZeyGRHRgittS
z|A&!${=uzi2;2e1ja7UI!%4(mmk6O`h+kAd)etg5$PD4Z5Xyy6Duk>M%7johgwi4V
zs~!A&6Tjp1>h(NgCVrHOA7~=8d<YMPfDkH$>@R^-2;n=RV#xlM2(x@iO?u$#ta6Jp
zDu<BR=jF?2a;k;U>Mw7Nko``ar%qRAcCwG}oofo`VWBLlC4l_eA=C+BPYiows2jp#
zA^aGz4@-JHgnA+L38QZq^+R}qt%tBGgeOC25W-6#yc~ifgoYve=BPsm&JbK7v<{(7
z2<{L(A@DGTmTV<tf8D)l2+cz93igH2NPuy=Xk!6Qg!0@&O7c7W%|mDr!n3Qr#MvSH
z%lv+!y-#@Sm9amw9}wl#pCcfbeH6e?+>^<(A)X3>Co()6Lfa79h3w-b_?7slY4cXc
zGa(G?U5a0uZ!g)bOM#_Fz0c9ZArSB^h8IG7i&})3{puJ(rw}@a&?STyL+Bp@kC|ZV
z8bWWu-9pF<p?d+pr+^+I`_PU1lD&k(qZ9fF=qt3JP=4k9zRUp04iq{l1Xd^i6>;pu
z5GJwjA-oo{&)gi$q7X*1#d_W$Aq)-iV<1R{y~9HG*#Y#=t7F{5Y3F47JO4Z-VN}RI
zBV$|${P^(b5Xc!5!q^agwOTbFn@u`CgwU95I&DITR|k8@nCQmIAxxnUL(oH*8p5;?
z)R29Mz?&hwC2a*mcspc&{Qq6az9V$)-4Zl|={?Ej3tcD7PzYhkvNR$UX*R#`9}OWE
zvOo3D6c=#xbWwu_hww=VpGu<^`xru+L0%x46ma}>(di+)FMa$tgrX06XN2$p9Tmb%
z$@1I>9(6%FD};|iAfRVRXA35{T+TZugt;O6915#<DV{T8^e**T2=m0l%R`tS!h#UK
z3gPPzJ`Z6br+Inr7a=SXpx!O<S8b*1&jB7%K>p$oz7&4yZV6_|&%aw@3FAuSDY;Ba
z30S&<<I7%1U^BwM{XcR3<e8$Y=_^kEFe-$xCdBWk;NK7~hwwuP>q0ojg$~O45H^Ic
zo0B($jhwb2?4-wLxqb@a=Ma7i;r9?Wh44!VTZPY)p|)sQq?<#qF{kQ|oL@uys)oWW
z)97BMD6lPr9U{M7C>2tGl%;=2#a%-G6l&|yvi61$ZR*({!T|yM=w1PT3!PD+8B3WC
zhHxYVeoFU{@DB@p`+6RWjtc*Pmc<jS{t4l@WKV=}CIoU$3MDud!fC<mevy7Ia?VQj
zoY3<jT%c#TEKAX)0>Bopgm5*4LSYmR<3D<AkMow$Yh07}I<M2)dz?%+xVj2|R->lm
zlXE+SJ0ipET`9UJl-VL-yKb2<P8DtVfZ(D+$t)H|@d8{zKuMt)LNkSy3L{GZ<x2}-
zb7e)_gF?#*rSkG&WMq{ls2B#qP{QzrQ7MedVKg8u->^y;Jo@30Fh6o`f0wvw7}W%j
zSv`yzf@=zWIE?*Eo&2P5Ey?b!snixwPiP&Xb%j#TV_`gAfT@b9ei%;_aGng?U;ZbP
z1~|lwhC-cTxCFR`veXmC$~;@l7e=EncuYoK7>&bd62?<uv<;(a7|lqJIs;)e58H=C
zv<PGMGIzFMzfhKv-%{|JWf{adVdRQft1w!J(MB{-n57gZrG|FGd@hXV!+1K3X9^Uy
z7eFP?hWQ~E7bRa1PUkSXgwY|4j$w3?y1c(&>3y9qhS618yl+4^Y3qJNRMlO&)<Y<d
zgy<PYFS;n<=*_`h=49dt5&gpG&uj$cBN!0o0W_E!#wTI>8agP9U>G6V6UNJ7yb{K%
zVN3|yCm_ET#^A7hMDJ*!L&Elv$0Gy}4dZnI!-R%=_=kt>)1N6!nUP`e<l<3bkWbDS
zkr^wL*>PcvFTfOdBaDf(XS;J!7*oTT7RF@B^7Q8^VJvT#adbrXn_;{a#?1N7_riEv
zO5Z7vA(M6Al`Jt+enC-KIyi$p`qvQ&LuC+dcSggo!bpS>3nMNZEet&jBWxdyP4h@8
zMrukaK~eyj(*>kNGA&(T>HCtU5@I$qGmH-yt6|KNc0U$M{zn34i<c-#U(E^I$8fXg
zQ#v+`Jz?w(V_q2Z!}v`sUl7LUVSF3LcVYXe>xE%_6~@<s7lrYKfW<<;6v_k2DMq>^
zj1^%JFf9#Znc(F@DcQb<pZsqmyD|)Nm|evH6R<gq?-^iWY!IDPxR#?SMHKrXY@gjs
zz_dP$ZMSj>Hj3nr1@b=$_&JPC1)N_5+^@AIj9&|~Tg4bQ(R-@vcWR^ZFm{BoGmKqf
zkokwu@yjxZneKx>!`K~0m5MfpXG8A`<F7Doi^u-v0EKZej7yB79qt2R91Y``;Dcct
z5<vc80Y`+|huRnLPls__@QDJ>NiK#3m;revjI)wGC-gj5yfsdqZB3mQgu^WHzrw%9
zZVK~?Q1Y+xD)4{AD12QcZ-jAE06Dif9jbZ=?u2odZV#hS1X(@&84(l~aLMf{5kZj%
z9*Cf*aEcZ1DOOxC!Tq9=5sd0nirLHvO0h^v%L*+mw2aXEG7k#AU-zL1DnyVMLH7tM
zMz}!;N(9~rDn(E^g2y8E(orR1uM#yPs41Xo1l0so7s{e?-HJV2fNMuks{lU|!J`rT
z1nm-souqZBzlWFdbt4$vwHU$U5!8!de|K;F2pS3?enP;L5i}6sxSws}W|32{OQ>5Y
znH~W=6WkX;BQf}e2pUJwB!bovJXh1xlwI55?7t!>CxT`XG>;%#IAperz#l;i$#Oj*
zhs#btvS+&%V>UNppQ7F>0#@JfgOkUFQ(>D3o)XQ(Z6jz`fS-=w8NuxfIL{Ik;O7N2
zT%OS(f{qb%lI)8GrJW=AdXTG&P|8qqSHayxAoHTT2k)CA_#lE0Bj^=D?+7MGFeQRM
z5%i7VwFm|?)%5g>U=TZX+|ggM0|XBgOy-3P?w5o^{IY;oB6w8*>rT8_a!5oDZ5KK;
zg4YEMV{{4NnlN0z2#(-!$4Eww(@W;)2*yM(R*J?KNRAUg86L$>8KyUcGg0WI2u>ci
z`BNj97J(W;G=euHcq@W@4(N90+Y$ScMDT6|?+Axjla=|sh`o}tG#Eihioy{@3S_uq
z-!F}c20a2pKs*9Xz^`Tz)-@xrq{{n36A>gMNQq`PlrCtUs-_FRZ_JDcW>U}pxirj@
zkmEF26TwFj%#PsW2<Ala6^Ac^xe<I4!TbmoL@@4m$EOi|7QsBhk1omdF3BX5sfK{h
zBUmIw3xyV`=DA<`g=7~;xKqnk!eAg>62a04z7x)}2$n~%Qt%3)_cc)LoBvbgTfyY4
zieNS8=90|sg+of6slpApbg$)jMgDh9S;v)UhJSqo8zR^!cxsnirW)6rKSl6!1e+rG
zh4CN7(@|`WU<-eBs2Hf?*9f+95~+ZS-?#$Mf#RiY9Qp{3Met7qJ0jQ_v9EWBBKRYM
zT@m~x?fxmuJrV4c>~5j=uVwqFR<0@cvwus`evzl10}&h)4)ObW3j1<6f+NB?Dl*aM
z?918l2u?(BCW5n!Kn_RT#Y;1TpWsvkr-egYzH6~_5u9hm2(CnMf$lotxFqzV&<`KT
zCFftk1k7IL+<YMSzX+}gU=g$Tg^6!Oa5I8i5!{X-Lq(>FJ6!bEdLB?wRK;Dc36ClF
zA}FNVps;Ee5s(%U4nZ*iC4{o5xcWcglES%Pk^E9B9#m0IMV5-vD$1xRTOi3%{{K45
z7wD-V;GqH;3Q$!g6_r(VV3CR{DyphztfGmEYAUL$ctXXKDr%^xsp3%;wN*T<;+gK=
zS}Gn<(QHZPYu&v&%_8K~yy`vBwHQGi6?IiSrh-|PKCXh4sh(8i<f>m#kyRR~aH#O8
zP(-YuP^XH2mt`=qmP<Hp757{5s_==PMncKFFGfmjO{rPMQ!3i3Xs#k#ML<Q4NcvT@
zU@xwEX(5GM3X@re1Y5~f(Mm;YY3qKcNZW`E<%vn#sc5g_Srtzg@ShQIznjmgctNUD
z@_FGe-kw9vw2*VNlZsv{daLNHqKk?bRr>;zC$y{3ZbEM@%OIbryNVvd=_&N)vW$zZ
z?4J;QI4*0P{e|{b(NDnGem*j<3@=4GNX1L^m5M)9ysY9C6*E-KRPicpQ}M2f_f!m4
zF+{~k6{A!h{)^XD3|Dbhb(|~g;lXgjRP1i=esr3$vaxT3iVG7QO?@8!G-b4kF)Aji
zn53e7mV2y<@hT>$`1_(`oQmh)auArqvfp5wlyvhbL*fG$noL$PMaA1H-cfO~uWPDm
zpDI3$dKm4yT*PmxcuSbnz$}mF<2~1vtFBqs^YT>$RU}j-If+`kLMkFERMkFLF09%|
z@N8J>jH-yK_Th<^3TERfOw~TYO_MA+x(Y+^mIvL;*1YH9(d0Z`k>}Q>SaGRyx@w=8
zlNMY}bMc@bo<;b+YM;1G@PUdCRjgC7Ud1dGAE{WXVwsBBDn3@RK*i@O=BSvf;u960
zaxzx6k2vHZaXd2nGm5SA%%h(xC<I?$bIs?FwQ)1$)OD5o+O<%{V#enKu0@;z2i#u>
z<uP+Shwe)iUrEu|DwYV~5lfV0qMqd{R;c(^#dj*cQL*xR-l;mCm8yLR<H3<$-f=IV
zqBK?=t5mF2@q>!h_M~=vFO*=70G?4eJgD$^ZXQ|4^L;j`*vL4k;n}9*M-@MD)aE!o
zk2ro-u}Q^d6<bvPx7T(H&oiQu)>*FIE1bWo*s9tG8}ayWo-NMPmwr<*`eVoMLV2rB
zyj{f(6+Cs3rwUU4l{4;LD*j|(M}a7Ib0|6ARa{oFmyw|2xQY{`H46Ww;-HE{GWvgW
zfCNn6;y%DNbApc{ahOvw;W$ROf8{u$qVHp_qm14aP9A$i`j2X#(8Pfz<?)dxRh+To
z9H&&Arr*Zc#~aaXhW$BC>h><4oPLSXvNUj>#*}hhP;pTJG0%(Kdp+;{3BD^TuBs>&
zMe!*9Q*n*!xr%!#u5;O`;kqMHbVD$+HwD~Maa#Znq9Su?!k%b_q9`1-&kQXZ1w&<8
z6L*m)9*BaG-$`@PR}}{<9k)B_=MqtrjG{~wWux|~@flHMMp24&&)esCvR_$Il#X)O
zv4dwswwvJN5b$_+cJ09^7%JtW_LCek%SXXesA|0Fekh6xQ4laOs47KKIm)AV&?t&3
zQB;kheiTncQ7ww<QPhs24uzxW_@}dG6eBekmxW$Cybnk1V-}feMe#@hel!a1RoFCD
z>7I1ejpDJWeJ&UypD|Ejg70y*%Ok*qa+*9DMT01uQMjUD96F-*L}(br&41k-i-C{2
znf+#h&mHBP0+%-m4}D(Kr9{CgoSf<+9WzzA^S8Tk)PCU8EQ;n)G>PIJ9s@0$Tb4up
z)5-U_*-^BJqGc4_x&-{Bh1~RNfXzkmRMbANGnZyev`^`3B^}|RmaU`q5tB@91n|*K
z+o&DD+(AM4XQF5yMLLS<Q9FvBjbeNh6QX!7isz$vA&L%Byc)%8bXpXhqUat)5Aw@;
zI}7b9v`Z8(M!{40-ns1Lk=EUWNt`E43ilLFzbN`g(JPAHlCAx5)`0TfK6Gq(Z(pI5
z91z98C|(wUK|)^=$|7nbWh<nwh-N-}As!sX2##hHL!uZeGOr6ACX}^?3!ps|9wm6J
z(9uH22xU>bt&VX8n2qwx!8f9q8pX6ICPpzSYM%hkbDt-RsZ%)LFFJ;d&gN^BH>3Px
zAR<wyQSf->x1)GBiua=SA;Ry_sxjF-u=uA-fqVvMS?{e2j$qV2!Z<|7j&U=EqxNaV
z1kosBQJ7I!QBW)%wU0ieek}@JnlqxfcCQ5MvXn1M%CGh&M1PZ$UgBgFDVn|7#;=Xc
zd_RgAQPhgzkr-x1@j(=;qF5cp!j`Vx>)ankF^kqlF*}N-Q7nt%<0$5ER@U+_j$%p=
z_gtZ$M)8S&|E}ke`I%tK%oEA^LKg`AT<F3m773ut7g1bY;wJbqimy0-rS1}1Rm)Gh
z_EBHUT7Kf?QLKpKTh4ktr`wL)clTuMbSU3Mu`-G-<8qni?pD5wqT-D_rWcO2`kr&2
zGm9>wk|=(N;#d^_M6oW4^-&y-;s^(#kFp_(pQ89Vij8#LJSWqS0-m4e+{Cu%$^Fi+
zXZSZqu_cOqQFzNV{56WLQS6N34|;W;^S3B|7eLHf+oISm*&Xc5{zCVeq`QQ<SLmMw
z^1B7>5lTHbS_LS{CjOF!{ua7FiUR@;3Oyv0GHi>q-i^GYG*~S~e5bc^oFf=&b&Z4N
z$}Jr9o`~XP6sMv%9mN@r`>pJzx3XDuHi~~m=A2M+&PQ=U@WleoC3YVH7F`z36`@y!
z{`Y@mu1kwIgtP6At^alucj!{nQ9XvcQQV_>F;t47Pz;4*s2D@DOWwO197SSyAcmqb
zyj?~4`5{lS7>dWRrC#<!F_efQa@kQ@C_%{>G6ZJ|EmgqJit%va00o%J#86iF4;GY`
zi=n*WKgZiL6=EQGWR2^7mNrz5p^CI#m12MAP=?I=rPT^5)`+2I3=hZb?p%A*!Nr;9
zP;)!YqcPNu;fEO3#W34&*NMRygNtv0WBjkB@>mRy$51bZ`Y|+!;rOe$fg5>G#PFn)
zR#Uvcc)VMm_SSn_8Ty&xh@m0*Sqjr@Pk7xicw$%>!=f0J7`!p$#}JI+i(j0+7+#6t
z)fgJZ&^U%BF*J?g*%+Ra(q=IPV#pEPTxhmXzt9#!Thf>fUaHEKY+IqNgtiviMkocI
zis7$zwj@)#7@ijXGX<sXW9V6|A&Z`m;e{Cb#Lzc}4pQ1(XvY{j#n4%BSD{^mvdW7w
zwEW#c&`mgb1^iVnHSQs}r_f#n{N6D<)!a>arhdYFNofBV1_&5fAUP-otN;HbUl!)k
z`hnDH7c0Id*}*Xk5im4{H)5D5`1Kfu#V|aE5iyJu&bSyx2^b@k)knwR@Af~<V>vqC
z*m!(F>4X^86tOvzg!87*$wH?Hohp<9(_+}XULkmkfhWv&gx+_;yD_{c+0`x&WkPgv
z)RBxK6~lyQy<x^=45|o3g=#Ux1W-86AURs7(l)0q97Cun)GClk#PH(3wj0xo)iSoh
zAH*;{hWABa2IH-(Z5z|f7%Km5+wfrwv!wK+7!L%ugOF)<3?B=gBXn*7|C1P2K5ECz
zXTq5$bbdkU0s)`Lu<sR#s~8r?@NEp=#jv)9_sbZnSNATD;j0+Fj$sK0y@vPmYTjNS
z1UmlgSsKGK;gET#u(GYEe?<)6(BNsll`LB0VH)r-D8DKOv#R%d&WmZj)k52?bF3k=
zx_501(M=vE3apP|Lk!zu*m14N#u&;qb^XLSPJw>|KT`7;hj&iHO)>lu!`2w4lu$M^
z*b++dcFL9*w3W_cC6!;fUbRzJ{Neb(qx>c^zYC@C@&>-`)EvXk82*T1w<w&_K-tA5
zh>L))*rZn8p9TfEq?9=rINq%Uo7>0f7DFo&txfzL!+s_W2bf|w7()>a4`?_P!{Hd7
zh~vpPj)=~iG29YxG=^g_{KMHD!-*Kq#c)1`lQH|NK4++5ulH08r@0#M_0Bz@Tr2J4
z$9c}iK)}S(3o%@b;cCqOI?yFzXMlf)yv*f#yz5^PiyTmhuLy@q{v%VAUytEN47H*G
z{_~5fNU8sJ40mEc+;-#L81BVTI*#{RdkV!-IF5g>d$Qsv62}8^l#F9!Z>4A)-&>AG
z7o5eVv{)Q_4*F~D_K;H|4$_;;OHeE$j!cm!E+v3PkN#bX3d_V%RwN%34dvq~C)xTp
zGdB%)KP1cwLMsa0Ro25=mEx!zN0m6L#!)Yh*>#j^aa50^b{uu$sF>rg5l5{!9*Lu7
z91q8Fsc^%tfo9*{_I!BR`KV+mv-?NqN4Gt!TQ`n-jhe=4HG4dc$Kv?5scY($Tnaq<
zjhnQ-=%<+D#heClIN}J#5sIT>9L_j;$I&MaR~+s*o{FPw9G*CoI0Dr3p~D-;v@wpR
zg&H=G!^eKb(KwC@1HDb+Xd1`suPNgOc$?9gvm8ui*Skrp4N<b=@W;`D#w>NTl+q6e
zdRa>0?+1Ew;yAv}@#8^HZk%V#{jYB8I9_;FX+s+V{<_1Ic5ysSP8=QLct+%(6Z-Op
zj`neoK1<1du2CZt;^*V|{hzEULzRwkbP};1LOaLNO#qwgBH%@-)m3oM8+myGx);d2
z^`V1Z?kU+`ar`q(p|ySE=oiPRI7Y|OKaK%$45ML#at6jRh_O_t;Se@j%Jotluf*{x
zZHr^&h1|_Ul)A4guhD74mBB)r7Hdj;c)FiOUFx`p(tB|bGj$!IP{Z&zMu@_ZaWwzO
zz9D7Nm^jA9F(r<vaSS<~JuZ&qI>$u8<AqL$;|&2UrRUkiB+3s}CdZMp)NyRMGL6O`
z^t>I%xep!WzbP8tk}8wRdEOEJyF%X+nlGb9VX6wp5s7109Dl~4#u1I<i#Qg?5sM=p
z$E-L$VrZ>%YjGr~HV!=wLpo(jm#sM1HTHt4`px#I;z-Bwfe6rV)8lww@Dr(4U#)Xc
zY(^Y2IRP67h^xG&oEWTp$Pql~xivwV9mmIU%okU`IZ~Mu$ER^VVaD7zK8fSZP-V(K
z|F|1@bYr#Q$~>{Ea-MtOP+Q4@I6fC)nz1mBMN*m`ri_2xw(ZL}zKUaG96vIo3pM<j
zVIRkLaV&{rsRZY;IF<`wFmNs~!dGy45zfkj=w+O*l6k?Yu`Z6)g1;BKCJx5)iF=N<
zlKnv_LwCJ^4MKej+^qOh96!ggKR2)=j!kj=BKB;hi)1GLD&w+6Fh_@hN=s-GZT^k%
zFT$Kt+XQUqf-p>BQR{lHopCg&<NhNKV$Q+c^l%)f;y4}0-Z=KfaUhO^ar`ASol*3+
z1mTqd-u*HW7;no4cn`&KIF4hS6s)c(M?~AvI5?y4&uiZ)&vB0atI7!}DmPO3`gP@`
zV7ALqI1|U&IR1;{8pAA(^Ko3^+PlVoL40_LYomaRvJS9o@exYxSq`oVmnC8eXxmkp
z8mx6ajvEqV_u{xIKDiyooj7jA!C6d$n+#D#4_9a^(_Mzm5E~TI>{(D)17`|Hgwvs@
zhGH5*8p0ZiYbc@NHO;<uFqNd3hUywJH1IpOnHoxI$kI?+!$TS>XegthtcGdlOO_Xb
z2Q}~uy8Ol$h0AH+ABu_18+oJ^S@Dp!vSxpO02(T3SaKup)+Q%Ex=UI`_*FIRypdO<
zkz!K~H8s4Tp#yblsHLH~hHMRwXn0hELqkIiwKdey@VJJ0<Xq1F>3qqJ6$5oOJf`tr
znn10S3Tb@}PiT1KkDMo|<fL-$MxJ%V5uTus(?A3Fw-Y!uxHL4<&{#vcZA!z>{B8{%
z4TZmODH?nl1`bxdn!Tfb!~-qJB%lT|n`mf8OFr{A6&ZefhRh9<a~7U*5%@K<*3d>n
z3k@wb1T^G`ovk$FiahP9JxZbF6s8hZe@a7J4bN~aCMfMFJXm>}`rG+v)zrbZFmZbg
z&x*iv8lD$0Xoa8huAVN^jv6{?=&PZhhRzzgXy~q?hlUq5Py-d_3FxY!n*cJ|BWfO+
znbT84FL4+3P_lPHr}~In*eROPU&8<muZV{!Gf=}zV&@=+gmi%lUzTpt&lGr7T4C2%
zeXzvU5Dh~$yslvw$3??L4Z}6Oz0WaP!x#-C7)TmMY0!Ik^<Lg5j|A5D^p?DtH&$fE
zYnY&6oZuS0ysSl;hYu(tMR<~i$r|2bsfH;cL;h5@l5|pRnua$uP$4ywL$&W{c$dxf
z@CK#1_cY`Spl0f1qJDA+A{tZ;^EAxY5Y@1IYcW%Ur6H!_xxJn^9lp+yKUUE+eoa)-
zH5eMoXLx)Q-7RK05*m^kKGHB-LyAp|RXz~;v<Oev@V<r_qGu)tYm~BYta5F>e@?EO
z^h1%HCH(!P6}I)UhHqQC2|m*>M=-N<1$?66QvpX-Ws*r%-;YxkX!u;iuNoT6b}ZDe
zNW%sh)-PlPS5jWXVhvwv_)5dq!dxMAiO^*lmI`?2ayDnva=`?QkZ%OnUy#Y{cN$h{
zSgYX&4XcH3PZI&(Yq(#F!N9q;j?<Q5{F#5f%u2?LwaC`CQNxc?^pl2PG;G%Jvu1zI
ziD{Dnw!+!UnL^<$8W>J&VylMVH2kh%8|8Ppc5B!!J^e#NPs6uE!}%-Dot%9MpMQb#
zk(+sR!Y&PeYItgpa($pu^JC{8k=d(ZpD_Q@@V98V_K{<9%10%n2l?ZlP3YLJ<FJM!
z8r(WOI*xMH(ok8qSId7i9M^DH!#xcrG@R6Ml?%vW&nXS3*`tMye>I$;@}9~$wy5E(
zV5PbL<U+@=Lmpo*<${Kb8ZL3k{m;XS-jDsPMSNMRUlHmk?j!R*(R@wAby0Fd!!0Ro
zv&C^!!+RsWb5=NRYq&!*7CIL9QkZRc%~ME6VI5gIN)sIR6wz&CN(g>HXi=fXbQBlR
zYKfC#lqo5a89FirloCq*OrurXxed$cct{6@AH3!%tK&f(6$&fmbd=Yz;k;74wY&XD
zFMC0O3OXu^Bryb3654vctBQ`QIu>mASJP2jM;#s2#fBO>YU+4cN3Fx2N2J|dGaR*a
zutzT*@=Pz~c~r-z`<2UAJau&x$qm%gQD4AgLLb+0@1TeLCv>RSJWLIBJgK9B4hMBE
za*PwhzG3x>IZhq4WZ4L>O9%V4NOdVXygJ6}7^lOhqmhoTI=bnYw9467M;jea>1d*(
zsg7pC^y_G$qq&Z39sedA16MgI*=2yT>1@fCIs!U!bZl<f)P2sgE#b&z-`S#$F~>b$
zIsIb;?n(oc?>i{0(pE=19UXPNa?8Q=w2o(WJg4Is9qn}(&jhGBvdek5zw*3}7j$&c
z(QudZgR>qg**)DoxT8Xy+Xg6|bad8nyMxk2$BR1to9@2ygu-mrK!x&oI=bt4RmW>O
zdN42sD*bfy7tm8jFCD#g^wH68aiFhIDyPh-T~69bFhIx4^vnQdppHR0UXqHWG=NMB
zydw73?Owz-Nyl3qlx=5AzAj=zbX5MqKUAvsDb;Y8j^R2+=oqPEl#bClXngTbfp;pq
zuQl`2W7IZOb&TN<3{aYMRL1L=pktPfk93qPmGg#<d>ug@6FCYxCJXc8OyAo&NT=wS
zs$-fk-_$XCh}Sr)yv44aRam#j2flYijFRu_c&`9AD3ue^5oULEUqVMj$KA6^T!+R$
z5*!suW=zK)^PL1b7lfx>Cap^PDyTk#BQ@5s!Sa!5vE9ajY45s|I#N2)I{fEdkL9>$
z=$NkKeI1R@DY2!_mGhkhGj*_t=>swHL&;8_>6@+NV;x`XSi<<%F;~YI(&8ta0s=nQ
zv5s431<#lM&eL(;^8J~x?ODM1iTHjzVVk;8$0Ek+&Ady+8?vF7*E$yKa5nIKDYd>L
zZR+apb}iMhOvkS}{!03m>sX;<JtsAnI~^+@%K2W$8Un%J>iA9o`@2fVrn3qKR_my8
z&IW5awKqA(CVcC3Y=q|rp*7ZcUT@{5c^kQ6sJ4Z_==f2`Pda`s;A|3LiT!ilX|-9h
zTZGaiR-y8(((B)Je7V#0yHNUhhmM^LCj+Al{Gnr)j+O=j2L7}M6qO8AHn2y>ULDtT
zT-ULWebjME$7wDyI`->0LO1F-pyT9e$6(8GNXJ1P^9{#uXB^sQXPcdl!#e&s;3#y<
zId-%2n2r-ViXC(i|D)qL7mdv}pTZ|~{C3*$uI1=zI?m`gOP8K@T-I?;v|Z9c<>z%=
zpe6gAcRqDq<hr-T2BfU=FXPQ{Y(J^6))gIBIg51+t)Iax)5HH{-OzDUM+pNZ4cy{n
z=elQLQP&(cdWWl@j-H#HcXgb(nb~)zqtI?oA;abr7D~WI^B4FZFi_M$F#}6>duE(=
zRPUn{H$eKv8ApbJOatW%+s;x3JeH%h0h-4iWs%=c=~Sj+8H4}1#)AgPY}7|-+fN~&
z0p+C@D?VhPg5X`(JrxDO0F7Z$6$3-|DYXndVxX$vYHZp-4Ffd|JS?2AI+dbKhigqp
znaF?CKy3pJ4LA+dk-pHRdIp+rchoho?2O|v15ea*J#OGeAW*Bf!qWO;_7eu46wp8@
z`3?hgFM-Q|+dvZoO%1FL_&o-E0*Dm>UeU~KqXK?o15{2<GvQ<lZC+4%eNw<LxJ3b{
z)J{i^fn3A>!O+h@D+8?!bTZJ{KpSz(GX`HWDo+_`YoMKQMwpJL4IZ%WK6yI3Q*VVH
zYj5CL1J4<F-oVjjO*<NRflA6WEb&0o4hE($y0$88=(9cwOTX-`bTROvf$j!+80d1t
z)0N>-v|*lsZU%l~=?xEsAAc~1pr?Ue2KpEnUCG02!~8&R!3^VXwkmxE=M>ImTm20T
zFz`TcWuSrAXs3Ze23`__=UpoGvVnf59Zatnc(nkVl{}2VAqIv?#i1Oa>z>yQu!HOr
zL!D{3fwz|UM;IU`7|o8;S_5Ag7;9jhfuMnqf$;_=7+CtD`yB&|)4n$hOf~SK+dWaT
zlZ28#S-=zn$rb@-r-{s)LMi-~fwu*-l-YMh>^<T9oc86jt;PX@urxHoz)S-XgOd?a
z12KbNGDp%t{r4Slg0#;tpc&8^KaHAR|JgM#?YousnFcHa>y8CpZDl8NQU?Ay7I@#l
zhF43a4NNycVYVJ$mO~|^?9>Oe!N3AhJIlaF20r7sEX$c~;A3HaYG96VXyGRU<_e_-
zCbmLK{yYPd)4usqg?6$p<bQ5pp>T-V^kM^F8n|HKqJggrd~IMGrvujk_S(RD+R2zV
zu-w3R238qZVW3fCf4fq-D;dKE>fH;hKjtL;mJ!&<U#@a%cUJCd1K%6?f$^}>Ke(~K
zTV^iP8b)bW?pmonx|>odD|elNDwT8ds^)Ao@S}lW4Qw@_+;skAU=t(Lz|WF>@QUYV
zrQFS2h3*Bm7&vvX)T^a(Dc1H%ZtaZR-{|n74VnGsnT+2J?6~Y{)IKNoQ^yViI}IE(
zaER-_G_=RSUIV*$37`#`xx3lBW6qN8Go~zZ(1v{+7in(4fxqeJgZ@3)O<!oAL7RyW
zi1Asf_mM)%VJ>u6JjV^3FmQwu(7-VR6&nY--^}}mi_)_h#I7rzL}o6{IBDRtfipCl
z?#jrmSuA%~sob*$&PjL9vtnlMP(C=_=pT60LAte@a>>BI1|Bj|!Ng?)SGcg7$S`r$
zz<*q_4BX{XSxC9YmCe9S&I_mix`76zbI0DyyJg_EffkFLR29guy<~P%I9T_%*qSJ6
zqL^uSt+0tACLS=6D49!D90mGt+GP*>#cXjCi*DwXFrnYfBcDuKm}#Pvi3d%4fGD43
zqKpYv`SoUAX%qAzWvIEViAO(oEa|4OsGN!NCQdEOq!K#3q6wI&Z{i6Pl}uDN@d$-Y
zR54N2L=6))O;j`SM^<ii6QR3-&N8g*OV1g8Y8aK7`>=^xCYWU@IrHuY7;?2u)HU%K
z`&A~ljtPpLxS7Z3V)e&O)HA_oY5q_v+Q#5~(nJFj%}r#RaF}RlqOpl4rX9M}=``Uo
z(IX?*ZQ7w*w};|kY0-vEiV3e^pU_4Hd~dQ8C7YUHU^ASEo3Tfga|!$=TA0WYKesdy
zptmI?KAF>sgHC&j-pZrXa!ruZt8Gj?Wny6hixOySqMeBe7T&P%w25a-ylvtg6YWhr
zYueY2w@f@|;&~GjIh0Q*FPP|HVx(z5eCWvTuorZciOw8?3{O|nemc>`w4W`!Xo3$V
z=8RQNwFr>e%|xD*5_dQ8&;ma}FB84#HxsXk!ahP@qL_((Ci+X34GlEWaiV*GWb2)G
z4=UiZ#g_~4D+2gHW3XvIwHRvRbrUlK{vjq7|KM3SS{Y_y*hKdTv0=F25>0Z+xo;j@
z8D(O$i7_U|imEq+juSdwC}k!HxIISk7W4Bv%#%#auIQdDbc%_o3{(^O<CN#dE9Adv
z;=gf9<+|DAR9o-ZvDfpiiT4=W7Rp)3HxV@PyNPWKLK9)m1ruMGh?r1K%r)_eiKvN~
ziIj=7i8w=gwAV0U3eZe^|A|ZIY+aZc9OAVY=cBv{q1P8?5+?;8JDf$a=_cMc@qvjC
z+0an$xf59wm_h%DO!ZrN%+3-_@R5nLo{|K!8R|50h<A>O+pl}cVLE)H$y*HqpPE=8
zW)Od7f^?qH`9c@B50LXYV@$IBzIVF+b1pXVrHKtDHk$a##MdUiGqFnaFEO!#!DeEq
zWZB{}0n3H5*DD2lTTuGgiL4XXN>Xe!ogmB~gsu^~ma}`4UCQ*(iL7<PTrafi!IISZ
zqqy!@>F-Y__j_QI30nAziOn2~y2{m|UOH_H1Nc@R-9_AMwB7fu(&gVcI>Wsb+iqfq
ziE}2-o7}&RKTI4namd6j)4ql>?J@Bu^{0KiIg1-L?Ond<!KXcYP3#kazl84RTi^nD
zUbqhkCSdi$CXR45nA7ky2hQz2YT_Rg$4wmLA~xMO;yFLBzb6D!=9Gz(1(>Cubnx=B
z%XEgLDN4xU?|};@E}FPw;;uAwi6JV=|K%mX#1(p}ae%*4uA25QnTOj4=B>==cq{Lk
z$XqvZL%>a;qo&$FW^OSyBwKi&!t6a0g)H0Jl9ug+!WLH6SBeWRBJ=^FMJ*JwFw19m
zlMR)y?B?7Ha@cx?g-i>jEM!^smn6#w<&TQeBJ;?9B`C>$m1Q>VqlWSp9<tENLTd{Z
zEL61cxP^KaV4;$Q>K1BP_N(X07OGghOgoBp2?UyWPVDwnwZON-)hs-EEQkD>79O_j
zchGe#)UvRqufoztEUX@y!#C8AiZD5~1+Y3_bJw--m}KLP{h#zz>RWh%8Z0!n@T7$X
zqRnH$A;3wsyFE+|EqnJ@pP7D_g@&yIOl}K9DrFKV7Q7aGVsOP>xp(>~)mHhB>{pst
zU=z(OG#AiRC|{lP)poWh&#~aQ(85AX%YOgPUfA8F8~50DvcKHemMd!6N*fDLSr}&F
zeOI8Zg?1Kta!|PbTX@Do2MZl7w72lAh3752V4+Eu63bkH=PZyi)i3R>*QG>@Vl7&i
z%51VAvy+9+7V-*8yI6S9LRSmtj=QLT;XZ|+n}s%|y-e#fGrL>pVS!4<m9w>#F754Y
zp^t@EEWB!=uZ4aV23TmiAd{*{`xmI9ByAYTZWe1X$ihn&UY17tm-ZHS2grQQ0)?q_
zsKr}I43R8r{qC|$Uzd)sUE<-=_Yri6$d9rx#==+&qv^&jC1@~h8)soW1F1_1_F_tD
z?<t{dXrhHl7EW3?W!cxq$rff?_}Ib}3sWsjv+$+`(}HE;Eemg3&@BGAb-ZJt^lwVY
zvhTPF-sLa}hdAFtumJNWH*6tdLA4OI5VNr4W+v~C$X{UE4+P?z4rgqz=fh&UV8a6M
zqg!A1u$2TSg@unS``$TaJHau-Le-!BX$#ZYWe)nSyfa(<ytxa?z1U1C{eTnJvhUZ}
z1aF0A(efpJ-Ud=hj|)!ragK%WEUdCH*TN?jKDF?fg{5?zg?W~JSGCB(7Z&DQSU~1!
z$LAInGFHzx`d;@Oy5ZwZdgxZ(Vusmf`(FMl%f5O4(z0&}dFS}GWS0nS-`BpKKl-V2
zx#;=ELbHvo6`aL=l({!ENmp9<mSa@O!!B&R;ahESKMD3(_=^+P!dmLIu-U>7jJKV9
zAcl<s)^P{~kQwP#q=xDE(ZbIbChqq9WPuj4<Mh=g&fj`2-epty7K>m1z)lN)h#R+x
zqqfuGlBMwP9OB;{+a$}5?BHtCS9!gW`>yHOB}}%m+rppJdELXC+#CB`<m|Dqmn)L#
zU|muc{VfhWW?{dD16-g)p8AgpI3)D2&?7R?tiq=#&m7L8+yAj}TpUH_2?;YkK{{>W
z45v~8uO)DnbH{=!0e6B==WxM7<pioEaM8jg3mFMyCh)I?%N7bHP&k3RJN;KIT;~F1
z;i_e4nf?=S%|h)~c9!X;aPA1bW#P7fsZCsVsbGS8oaP_d!f$Ty7fGO40>u*`ejtIO
z0?M@rY^mpBDv?0R1WxAq55x20Hh*K&QR5GPsRXhTD4#%nMh;Wy1RfMzMrhdrzFyhG
zTIHmAg_1cBB~T%OiU|xoS&U6rO7K^=0|{g=bw*4FIqXGMsaq$3x(QTEpt@vh2(6Vs
z%>;jdIUY`Md#bBMD?dB+NI_eVCQw`Oo@RcU^jHFqC*VkcGWCQKJdr?s!So5UPZsbS
z2w?BXY$({7z>d=;ne`-~B=Agv|Mh@30bc@v1acB+MB_P#_5J>Y?a3wyu(Qn*XewE9
znhE$pE0rzQe$d24541>t4xxE11*}<;!|votr`jaYN&q>n1zbH{lK3g!1xU7?(9cho
zd|JTZo1SMAcrJl{((C6Fcp-sq3FL_-9TMo2K<5NHN|v^LxwTlA1WJ75Cw?)3pX>W+
zQdcPrv{cAs>Mq&dw7j5JPXWDHv6Wqsl6?~VoIC$ioA<^?{uiGLurK`++>(cZ2@EP2
zi<bqwB$OjXnO8VEt?Y3boWKz3Ou%3mB=9<A5(p+REP>(lyoAJv1V$z>u|V6X1jZ&X
zPO_sD7$bn5p|<e}Oi17j4oXXfu{5G+DSEz7`=*Ruawa7(Ie{q!rMpfC=zNw=V}vL0
zRswG)@NNR{B|vBXk`thX?<8<7V245PmVwW1dVEWAT2~2#5(vw9#pwA2$d8I!RKYZ3
zQb+f*mK~OH5o0S_0<1`2CSWD-Q3A6QNF<O<;Qa(<BtZSC1kw^D90&&Obm<puU>DfC
znVc*ob3RPq1CgPA8phID2{aeaf1JRa1m;PL?Ce|`Ba!w=0-v&Ldz@5z{!4}ar#9L=
zU;MBjfzKsw?|Xxe`XYhF^hOeIC-G$hUvZWt@o*AfC$J=e%1Qe&x-`KPDzP_#eF-d2
zU_}C36W|+!ZxUFUz%PQoP2jr()+g*&533Sboxl&o3Hxb$rC*%iC$NTtKGv}|0cJ}a
zaPi@M)$N|I+6I_y#aA%19UBtZNL2~^#Q02LQvwU`xZdDPiaV|io1DAXdHCXB<dj^@
z^lg?Fw+Q`JD2;itsq41{{w&m#t^A(AHX6Lv!L*%oS@6yR&L0Wv68xvo-9q;iloqPw
z`743H6S$SY?F9BGaDd&M@4TGAL9PbJT*nhQk-#B(K7k_%w43QWmcTy(j*1d;Mx1ca
zo=n3>V@@V;imQDB=Mp$As?Lbb)VV9=<BJ~3v^0F@6S%;|KLL7%tz1gjFJk@`O29WM
zN6#t*R}#3Iz<&(X1a2^>)_NMGeDo(<yv|^2<)<W>H>K#ir0)(d99*uGD4oQ;1PUcl
zB8ieo6i%W@(ym@Ci7B6F^0m|hNfb?jFTChXzVuoCuDf^=mBwfC9T4?D^k0*VBr=os
zAky+{6EaIB!A5B+N4!iDWs`U)i3&+PnB;CWU%4dWsx3)9w5oj4_91Pnm;{pGOD;Nx
zV_GQ*I)Rv@OwCo2_7mf(N&C87O(;S2Bx)qlClTOtX1;S_K-Nm4Qxct%cqEBOllWzn
zQag#qlc<-(o!Z%TlBg?8@*hir$2?{D0`;jaiDpSOPvS{-GYL-;3S*udZ<26|d_x+!
z*VFNxTz*T_RiMG0#Jn*IRZ-F_@=b*Lk~}TNuFel>Hcr~-C=s_Gt29m8rw&n1b`t(1
za+7G4#L-boizHem5lGqxMIAqyRpD3`<*7C&iP!de1`P_dPNGc`FC@_+iKoO8)_Pt*
z+a%fvcv|Q)LfJ%nYAe9ciNR!2Esv~<y;y>vBS%CUdVEc0mn2?HVmL=FiLOa>OX5#Y
z;H4z;lISkDe-b^CsIx4G{N73QOk#bxoL=;m5-9grpv>HceMF3<eFgLrT22WJpu?+r
z21?!T_gsULm{i#P=14oeoWv_hyvjZ%F*u3Wli1kWLxn?<7@EW}1g5><U*677&bAhT
zVRTVd&+||D>$Gpmrbi|*Hi>abj7nm364W;TRvtBvNrJ`@jHj<U`6o&16U3M|#D<BY
z=j}h-MJfd*GrW_SDjX`GCI-+#R(w<R(EfLlc$e{zf|9~}N#rMSC5fv^1d|9Qv5tO7
zBAi4diTOz^NJ32_n#B7_%wQxZvEenv;#6Y53uabJLKkcZHIwkI&LRJ|?)IL{WD@Bl
zN{v#uCo`1<IouJ-4Vlw9F0%b~W)dGH@hOA6l<UJJW+gFK^nAqV{l~?MbCQ@XnAwl%
zoZ$)qdb%jjZJeJZ?aj2@vP+$xF?y3&I@sR)$*qr{C$W$Llf<`4EK1^wB$i7niy6rj
zOJZ3PUvcqIVu=_=%~ZvGr&P|Jr8JL#ZE>^ljFHL;UL7blL}Ay+XGgwEVpS5~C$UCs
zxNp*GMxAW#ojlCmh`2V1AClmfRMz5VS8hGsz(Gm!<ud+G;>RR@O4^&EcP8yE(?3&B
z5?hk?R>n<9Jn&@BFH%a^{hGwqq`ir8dlJ7T@jK(66Q`exyBW7hT^dQuEwwwOIyX{Y
z8Rz&zs_$a7B(Ynn?@8L5sOciABG{Y6KH(74Jle27i4#ejOyWQi2a`CIwD*Dkle9OH
z5*$wAh;WXw<7@oK3i#X($~~yZ#gfd|l~ZEF`6Mm~I4$&y(6clniC^0W?r*xj$X*2e
zwD#X5E{Onb;O<s(E_3Og<*4&jssEC=mPE}I9!}wU5;wT^rcfb;n@QYaXr+*qvbTcV
zrpHn!n!=qV?sENSt+kHADVuWNNTC$C1tq&vfY~A`1aCPAib-h(>7s_k1(R7Kg^~q$
z@c<<=WpB)wqm(42Sm_kXrtn}2FE7n0lLEJSOgrnTa?VpO#rOW6@+m%EYeuksf}6Br
z3LE%HlSKj`w31M6ajBX@wG^tS_@{5jcO!gXobwQHCrphLxCtb$Q-GRlrR+^L^-`#x
z!Xqg>nnLXq>ZHJpB9BSMsvYf3BXtE6Q222goN%!E6Et$9+d=1~@MH?N&wA*G1}TKk
zdBzP;oGG}(Z*FNWzg<cChw{^w=5VKtHw9k`AEfYM3XM`|oWh_KUSjW3Xqv*aDLj`#
zvlN=A&^m=SDQvpn%uXREWp8I9_NUN7m@S0{=&@^_*G76-)Tf6#H)U^aYL!BntDd*&
zySZQMsT7_T$+<uI+or(XQ|(fiR?K(kpeMU>(`Qm(t@bH<htitTKFU0wLZ=iu3;zY7
z9a89+LXAWA7P3`s{9RIbF@;_!^iH8GoqWs5T0K(emO@?%8xMIZH1~5SRreG~-#g^x
zZnT~$v|Qx)alg_hWp5$t$9`>b^iARDArJRoaj#T=;S3PU?hF*bU05%t@Jb4ArSNtN
zucq)?3ZqjPBi$LC!s}w*5TQd;`1q=ame9gs!ePIL3mB0CTNx>Ml+a0S17lMdm%^kJ
zCQBE_r$9U3NMV8quv2^5_^DxH3aJrZ>ZHL_=r?g)yQ`k5oF>ivbRbo|$#LxMC3q)=
zcT=!ZNO1j6AwLB*g(zo43L(aZ49!Q2Gq?+mLqlh>iAV}`3q2o8A)bOEj?!pY+knpN
zh-~MhAGqO-yWq?e4qWw+$-zp}u#~;;Zbk}ex;h08==&*q4_^J4mzHz0+z(ehu|uAj
zG7#+#d9(lX%u3;-6b`3wB!$`ZSPJVoWm1@v!rT;=q_8xFPg3}l!Ir}3DJ<*Y|15=(
zolDG5VIBvfbBXGnX6k;&>QYV19?4pm0>Kw4EEdT{RDQ7)IbX8l`yF2iUDmk-@z;W<
z2ws-La#l>?d#S!6g>O^%E`@JWSV;q%0XEUHSyMJWx^oEvDqO`uaR!LjNR=Px<POEC
zb}h%w)9mO#_qr6iKi9ORGeEJ8bZH7ZQrMZoPbvJ&`J2KP#*7$AZNH>Y`A8N`r4m;E
zRdjAm;Ws*=a|sIkE}U&CY!}el86b0fD}U7^Sp<JDoamx5uD?_Glgm^J`^1brqJOVc
zq1t*K{51GNYd@>}B?7c<KSwZygW`=tBEM^um%=-xiK8hTOW_vRlNA0*;W!tl6fW2C
zF`Y=^bP8uAdoqPnTv$5#*VYa2qu*y!IG4i36ngIU4lM3FpTY&YbZHLL-a0(4G|*SG
z@g=F-zm5NL3RhCNn!>`p-v787GcC6znXadBgNwfu9UkZU=T;smOaEA!b0>wnTvgI2
zo5sBq3Z+pjjpAt(PGer{rVpgiqm}>Ot-K;>lzuw!=X@8lMbijB+^q7yt`ceF<z{B4
zQ7Vm+BFWMW0qG9@%zK&4W~K32XMbsG`^(J~Y43k9jdE#JN~3Zb<wdw+8c5@zG+3*`
z{p!_nSc~b`3njDnlpw!K8dXK0dK%RVKn<~krL>Lqu(@=#oLXr-l1A-QsB;RB5~QK8
zfUyE~()PXTs<~J_7j@HkERDz0sF%j{8F+sN>ZkEU8gIOhiSOgdG#aFlpGGhZhtzVV
z;ZCEWV5iW`^G$~2=TM<1jrPJJR?_gMG4fNzmqw#B8mG}Djhr-c(`cGT_S4?%H2i5a
zOJi4CFH`e0_!nb>7E&4z+VZ~S)7}$xOBbn~#nM(H|5O@n(-=4}&^nDjKT+DGadSd0
ztG5&Iw8-37_>8EndOMGGpB3AlOXK-8UPz-u8n34DS{fbG=tNhi(KC(C9EfSHx~9=h
zK$kRL6tKF!*LyoJFO8QP=Pu7L!YswQOZM5@dA-u;O?%SVw9VNkjlOC7Z>Rm!=$A&D
zM&2)v79!t!)_L=cbAS}F^geTtRC!70%R*m~DwH3b#*j27rZFjvp=rFH#yAc^Pxr7i
zh6@;z#s~pqj!a{;*H17?IHS`Td^?ZXJ5_VX7RZn@K8*>IedGVom)m(Kr!ggsX~JZd
zrBl<m52)nLG~P<%ZQ(HcUK;NRrog)eV#LcEc|#0BdUZNpn~q2tY8toFxSd8cjhHxp
zTN?2+v^18av6Ru6hLOhXG(Jw_|MB!4P)=3f*D%x>h7Ox59i(OEy(EKVU|^EaL;<Bv
zRH~v<6ciAUE*+^-Cdo_QOML+wpokQugQ9?n{uHE&fE1-kmG<qN`Oml3U3=|&?z!#U
zbI&VDZa&Dz@_gv|`2J4jihO=3246n>`B;^YlNFp^w)P-z+!L;R$@Y9A_si|M9daC#
zrscY~xQSXm0{IBiF}Ar+j7laFgPm?qYO;FGuJ#DGUOrX}kLDwmkGOC%AIBP|Q=yw`
z|Js>FvWCl)&o4?PYkesAQ9eEvvU8V}LZ-EnT`#y!kmF=KsS_<5^6>>dv$*5?d>Caj
zHqxD3S$jE{d~C|c=6r0)$F_WI&&O6#`#K-vn`D0_oSLk-yh%1IlI+OG?tJW#qMd@f
z@^N^Wn?*$0iivfpyf2?0(c)V=ymU(8ccM=Pma;*%d>|hOMaa@a`S>9pRqs2gz@nen
zY(9R@N3nqA1dW`JU-H4p{*U_k_$?ntBzr6$M}@HH_k5iB(nZ25dKdd~ZtcI*x_+-x
zaw;FE^YKqUuH@qns^#N?wESm2&gSF1@N@Y%5VP!Vm`-F1toWC-%<R~w?HBWLDIb^f
z@wcQe?`Be1P(<ac`M8#kyZN}6kL&rkk&m1CxFyZ9!GH5XWiA9YcQ#BX-p<Dz+W&4Q
zTcGn$Lh>KGYnaYdFouWuc*IEPMN=;x=c9-hmA$CqMNuzOyeQ+vrlOAaAK8j|lU`BU
zi{f6C@S>z-DdEzW63$IWM@ki*CTMM#MoGFCWxYxFF6TuBZ*uN5RCzCGH(HO`iXyD!
zO%9$zt?C85_%vo|;7u+{H81LTF)OB4muwBT>_sgvYJ2%HdQyQcuolTLt}G^!y3%_+
z!TN$6Cr8pynr$T5SdhIm5pwT%ZZj{Md(qL0PF}R|q9w7bqpcSfFEYHKRa<+pJZ8!C
zqDUEAmKTa-RYA(FUf8^t-podB_hQs1NpgN`W-BkA@`8j#Ki*CHtwXGl?L`|Q`?8Y$
zoa041FWP%Ct&5#mmyld9oI)t%@=@;gqJz{TKk~V&vlm^w@Obfp7f*Z9)r+29^ztSh
z_!%#{dC^@=^sGp@+&v^q6Fnz{KJdI3G}?_BHezoterTBfTTiv07`%@ceZ4qY$4Lhu
z+Fe<BUJ$=+nEs*{FNtHk>_vYs26*vI7dt(9pf|bkxyuF%8ARjA2BdIEVbLp6aj4*{
zg0Bg3iP_O`FGhGV#FxBMkM!aVFRpoU-HSJAQZGL8;$tsHd-0YR^Sqev#oJzt@nR~i
zME~((oEPtUF^LTxvApBOcrPY+!IMCEGLrI#GSSPo>z1c`ILYs9Q+N{EWG^Nj%N+Tk
z!jr3~cu{(XHTNsabT4LjF^4{OqezvXmG``u?M)tjHIwFDqA<;(=2sSy{pn6B%$4pQ
zEl8f_wZMz_z0kY}c(KrnMP4lP;sY-hdy}WtE%jo{lh!44IY(}T9aiF#jTIi@wcLvp
z92*C}-MZ3?FFGdAQd>pOdEdg*&+_R8#T2g~2@kNMnqQQ^zhw`4p?eYaBId=<H!}?{
zLSBR^OyR%uS|W6eXA}->V+WNTk;lEsbEp!6B&H0$!EHPFY7wpx{7{gG(S5?v(lNaF
z(TlZStn*^47hiE#K33Lyv4NxY;xjKk7ZVNcuFiSe#k0RQdhsO}iwCkXR&-Gs6?ayz
zr*85lPq^Cb1+%pCozF9G*HpgtVjClX7YDuA?!^u-zN3fBO6~MwH#hri%Puc?=oV9z
z%PNn3+vCMvFG!g7dGU?#Zwn>+g?u+Cb(>)+sKs;Sc2vyf3Fo6<bRF{YluHZG`1;9<
z!(N=@-lW~Q3%oe(#UEb$&x>EZFdyWd^72gucskkd-sF*MBu6BBRFD=sMt?hNVLC44
zgy2a*F3^-5EC1B#j2E2vpA1$!*NbQO<yy~r5nQ71R55zgUtV1B;*uAay~)G(F4Bgd
zD%HDM(^E2deA(Y#{Nu$HdX5(~EX_FOujCPJJS{M-kLzYhl}>(xV`H%L!Q#VBFK%&N
zeAqBG>$VqnXn7w>`Eb{ZdyMT2Tt57>U-?hQf1jbFwn9@pV3c@LdB{yS(Zck|i?$=v
zNQ(Nv0jKy-%$GdGY{!GV&`v8&%B@t~2l{OZU-E!5o|{+Nhg2Ub_)yV@G#|?NaOOc?
zd0+DQJ38=@ZA!WiWqlwiC&;tr$Xi~|%sX$d<U?g2YH`0$$g1MQ%3FCnY_O&eRfRJP
zA=P}SE~JLwoN^f~;(2|Oi>tML;NgBe1n&tSi1e1aKGgG}z7Gw2Xu_fTFz5-Tp%0CG
zXw2^F*)%vF^;4JBv(e{&{L|jlmppy0nGel<&~Doo9JI6$8}d*!{(lyY$ukc#e8}{n
zgAW~jP<&8*Xy-$FAFMvue6ahF<-?rb>hwPpo^$xtOG+yrzi*lIln<?a$(=}7cleTl
zsI3n<G}JmvHfK~Rqm6KGTb|E<?XaDRD?;1m`rz`R=7CHe3+ePF|0aM3#5sPjyM5?3
zL8VS7&f16GKJ@W{F42W@AG-VSv=3c<$#XAHpH;b7&-m~xXJ=UW-vq?R5Au5W@SIOJ
z=9AXq(^c-!=Ox=yu$Lf@=IiT2KVR~&%0WKl$xs;~`}^SW;RPRF<U)5)Uh*aPg>8vK
zPC|DY-~*42WEv=hJr0%$(*7@1RA2Vt6(9b)mo?M}_u*o1`S7X_ulaE37yIk<(uDek
z55t5E_hEz&BZX5wx^6mkNQiIxFiNT<<)T1g`mW5keHi1zSRcmuaQT#l!U;Z%?__^R
za6G5;S7w2n&GO<h$%i|v?!#osPVr%?57T^@?!#6Z+=m%HyeCB;`Y_XnSv~}O2>LLa
z3+=-PJ}mcPt`GBkSmeWJyX{Q#eRyB^0w4BvPf7x<lDJTWPdv<9?86ctmP&S+AQkR)
z`9HN4^lcyfB46c0z7Ia(Y=I4Wg|~W`$1Lj>w5<8S#>x5Ur27!{A?AbOOFoe?g?tDX
z@`#XXe<$T}ANF@s*9e+EBz#y+AO1UeWDpYxAIGTn5uL$@Pki{)hmACa4{N#8<Cf3p
zaz0$_Y+EO|o*^QTJSS>{lzt&dwIaPz*NiAb!Uw=jK5Q<OmwK`Ug<Dul$k+5wAO7U#
z^<ldYgIC+W;ZTL_@L{J9yL{L!*}Z~P*yBUbhj}DS`{*jd_xtdj55F<O`0%|C2k50&
zS|9e|Aic$hAAI<ci}f(CTF+F<i9d-#pISLj^i1tj)5QnLpMChnhyVFN33Yzu=Bnu;
zp$<!r`tUm=8-=xUj&Y0maMFiUqJN^GDN%l^cFt+Zvf>}~NqY|UYt?iS3)(#A!+FMG
zAFlZDmk$@{u09<5#CFk#PR=Zv@e&R4i^>J!x)A@CQYv)onR=D$`!MfcS*&Y?*0}D&
zjY3XS+?3K=g0~A-pKD5=zsD%;M@2vW6UV0Hz7G$CKlI^|508B);zt=j2Ap#j^&`cP
z(tf1+QOwUHxKU)5t)$=(yPLd(A8qV8Buu45&I8j5NLpd`c7ybEX|1du<%Ik_HkZ7-
zA0+Ihk{^}*c;1hmepK<Jsvk}HD#j1^@xuJlHT|gNM>RjH`*FvxEnaD<!Mb&`mV9k}
zqi$AhKMq-}4gF~3#}j^j*lMXGNK)62dcx}qHYk*z>958sW;B+H#Xht(@uT}q%aeZ8
ze9ywvJ6mb)M+-l)sP9jPk&TBfE&Z_gL6YHz%CR-EyV9+hB2fh2o|t77xlND?c0XQv
z-A(e8AFci9;73P49DWoH+w4`WIeujO!I0HPuq~Azwyyl8t@HL|X*)lN?FDlMoqo84
zQ115QYMm^SPJT>Cw=zBBM`z((3MEhb(Y26|&Q_@NtYo_hcK4%)5YG2GA=gqedil}Y
zkC**;#g9IIEcrO|1wZERveLYL{pjaMo*y2{>t=CMi;LR+ooI39+Fs;>9##AS%S(Rr
zC--BZAIuIGBpJlIy;4b-h7|Ile!S|(dw$IH<265C_v0Nu#``hMkKum2?T7oEeS{w)
z{TRhg*DG)MvGlC{O~I4((hqHPGdr(#4vR+n@s=N7>~)iGf0#Fh3$(^IR&bmkvs7m3
z1oqY0KFN=X(hjS?D`e7Y+hi%4B1oO7LZ<mK-H#c5o?xs}$aMT+-Yh?6`?1WAAO5z_
z@nfzZi~LyZ$2{rl{lXsSORWWx9n(+c7#4B`J2}`C`4aZ)N8p^@=xk?p&^bH#?9TQN
z*m!6Aaz9r1u~PUd!F(Flu(60~!iP4$9~ze?gasi4{0RCnHHc|J=zbV}oY(M|hL9g&
zuCj*bG(`M}`th$HH~onD5%=S`A1C}U{Ydz+(~n(#tfo_yvVQ8vS|Mxv_|T7!{P>vL
zu%eYkpZM|BN#~+DmOpR0PY%dg=f`?KHqi2ZjJ{bcRz3AIKR##s)l;u@b{y&AXmKic
zBaOgK)Y-btk4=7T_M>Dx_iI1u-f~m8h2uHtWZEj^D|$|!9A>wi%Vg<xKX&*rtz*vb
zliie1zT1yIety=2N}aRz`mxWCgEW3+`!{}k%ZY5VfA7a9Bb5Du-}zBzr1H*W=aw?+
z7tONHCejXwyjC^$A+DVtKl<^LAHPTocOT}xQQ6L>4omiDKaSN%Wp>F`d(gD7&0qca
z&5t8~9QEUOKgPDrIwtKOil?=mnpAl1xJuzkKTi2^&5y62cAWO(4?ix_u_rru7G>2(
zd1w6i(~q-$oZ}k#@s}U9pLN8acZHVceA+yloFCf_Zr1h!7wCBxKa;vdi(SgS%pfV`
zA4bSWc~|IBkMbxdzbbN)>l|JU<%S^1;kC9~e%$sWQ-h-6jvsd!8#UC?aF1c1u~b8K
z4fp+c;73^v<up9>;}Ju>hGH5XGaz(QifZWJ!%;-T^zII(Pl~yj{jI3GxQ1t|r$$;k
z(lwOOlA0w&vy>opN^3|h<Y_|6Xc+k@k3~lsD8%v_Drl&zp^AoY(;Spk)KE#o>_>SU
zyC-#`kMgQYzk%)!NEgpkPyPB)9((-#QC<x#`KM;{W@pvZc*0fg<b%#y8ft6!?36vz
z?SAt)dtD9nG(4%HsfL5qRQ~DM);5m%8X9P5$QJtKG}6#mLlfz-)|lK!Mcn^B%HteU
zyXHPMLTM(wSTr=(z-$Xal9n1))pn9(Xc#mrtL)>vs(D$e2CIh78o%EKK2g}Itf94r
zNBvz3*V?i){8z7SD-9zSs7ya^SNU&i4h=aP+G)tv&_+xCrP>cy-EBFA$<DU7+)W?n
zwbzg<cI%+QDTFq03vp?v+aqZ)A}!xhLnm6Jfih9D#d|oO)-ZgJ^H~kW`z!piO;-)i
zXz1`bk4byr?51Jhezm(G$)lsr=QZ@yutLL14ZSq<)-aw1*U(2pUk#oH?ok^0X~@&?
zsw{*@!wVXQXn47=>qQMOY2e-*#Ib1@z-A?#UuF5ctE0_vrC@iH4AxL%nL@(t{IZ5u
zSUsGswQ;mumOfNNvlKV^YZ_kHz=;f_x#%#`-Ef)pfX8`UrZ+UaDMHS7MKL$0|H90)
z(X7?R@s@_SHB1@j8lzzx8_aQx&9aWwFmIH5?&Y@cXmHK6QF8lt=R^(fYM8HKfrd#M
zCTn<4gC&*>5mV@L8c3#Un5KdIx^8196D3SDL{hP0)=UkvG(1s3nXO@thPfKPx>3wF
z!~WBaV)sh8Pi?f!(?Hznbi7YBpYnkQ#*l>?7HL?lVTp!i8kRrKt8vn~=Y(@9XY@F4
z_8`~UTo;9(JkE2zp)A+XV}QEoTV<7od=0xa?AGAb;M1^H!#WLqZk!Bji2koZ(-4qs
zP|(nz3wh#Cl{)V>&2d(=Ml?h<e8d5_cEmKqHLT%sw|AHt4&;@n-rliV!_Ib&gdpXt
zRqBTOL_5caj0VS@`yc0hOpkiU^@)b_kMlkiK7L4U*&BJhF07{yXxPdPs3or;pKI7a
zGiu;9g4vB6{Mz&jee7RKDTSMaY-W_`noEVRIJPd1?Tl3StzT={#xWdqQgXbLgSdlP
z@er0au3#f(bSkq)!(k0S({<}P_iEUu;Tuj_!+s4v(9<H8?=*bRsd4*jC{o1JwWRy_
z>NLu$cW@97vFn++58V#pj~aerr+pPRReE!7{jV&)X!xIo6CA&WU&S}L<&SCjjT=qF
zQIT-<f7eja<)G&r?`h{+A7^P72R;9rrRk?MoYruTQDUg_hlVp+^7{BEN3txP3jM3v
zsCkwVZ>Wuz$mI4Js+1b%y1-DNVN(E`1GuE&GNVcWT>|)9!#^5o22d-2D>NOAA3%u!
z&nm$;r=54jIM+4Y(D1KFhRt`~)^Jn!Ey4RIoYbsS#B)ajUGClP>OICK#(z3b8^>b~
zEPw~R1Tboe<e7+_TaqawVR>_mvuFUslmPV4UDW5sFBVAd*@M^JB?BlGK!pG*22eVH
z)Bwr`l6H7+S$bN4A8=dJ11J+fu<(|E5=RkFInJv_S>7a+7v(-hJk#dbDg{tA00dBD
zq`h(gs|Vy%5#D8*yIKHE`P0P!mb__a>DX*X4dKssb+WW}08a$aB!DLas1rcl0G|CO
zXGsxHy#RP=xbTL%aRBuLXb`}2moq6jI4i4R0F464>&56I9$p>VS*(l8t4%qn0NMo5
zHh|^<v<N^6Kn<W}Ah}a40b~TwJ(2doN;NY8ZjEDkCC-=0;;yOL#$gS>7Qj=YX%8SP
zfL6lq<T!ebOYWm@%4CtVZtDOXQj|^ml*wYtY~j6jj+_A6NwXcLw0!_B$>vJdDM;lx
zhT;yO18p@?VS~GmJJHV3DFDj3i`nVZ0dx&uSpXjd@C;26!0-S@1kjCx4`4_jx#B%&
ziU3{;pnm|*2hcNsJ^}P)7XkDRB;!EWW$8OUNatwT#p&bDer$GGdY+7j!DLK(2WR97
z;DrEwe8%yj$SJwk&M_d6jK+iM30-ps3JwzNb;3yrQ-i@dF9+~S07C<KHITdtyv9Xe
zoyJk|TClo^=k)-FQQp_J@+T*eE;llOHv)JsfSL5e07eBci7Okx=m6dd;M2LTcLQ(_
zRNfBY8#Q}nSI4M(&M^UurRF{7IKg)W#|usnoG3_zeY>4|i+IX^;+hh`)Bt7#a5Una
z7J&6>*Yp4ezUrFuv}5+pTz(gYIJI{UOJ@ZzJAn5CSV*%6FgJjEMLhEZ$nTvqPmqHl
zKV8Jrtw+v+03P*pvy1gda~B1$n10KSdgq{f4%I3a^(>{E74?u)VR-;60{DcJ3ScFd
zY@t0AKsbO^Y&HOI0KNbM+)Xs;%v?WrN5n$Hn>{T6VnJ}z12ClM$<4V#OS-pJwfBC}
z83`a7z?wiZKF0#dn`$$FL;!Kwq&FMo@=DEH?$z|$&ej6H#ixEK`X2?5GSF^$?E09y
zV{i`d|JTxIih4c|U_$`w0$3kN{-x|^f#eNLkGEVSi+Z@x<`wmP5x|%9!<Fhr4*nSj
zCEO`oP+L7^O8{FLF@i`9;wx5XM+|5IYzts}0RIc%SBAk$xjX2M0qhdaeM-sh0KN@i
ze*k+#NXcFy`?&grk`aS)z6;=cI%fbs1#o~Z49qzsNODj}xTuHx2jRmmWX>O@)EnRS
zZ~#Ax<QKtjeoEEf&!XCI3{x}|jdMBkXaK(laE9~Bc5v3m===ekq{5NR<BX849NUU|
zPB9+JKkA<5kXB}{oRvk*Kj^*B*-8Ek;A{Z@^~<8U=09gYN0%$=q22xp;6eZw8T<qI
zhkRDnHHYIe<G=75MLk!`+MCbH;ut>3c3cUdT#BbjisyO&Hv)JZK#?H+Wzd*u`!9g|
z0o)AWRsf6Kj@tp;;daQf*6i+N>0RN>-V@?V@jT#VrL%*Vp@(c_SvvWnK=P)JL7T{j
zprSz(528d6DM1tqqH`Vfi>SisvuOVng}1LIgBVxL{d*fnsUW%@bdsb6Q6>mi5bhw-
zgD4wBt00~VqFfN=gQy=wgJANpqCyZ=f~Xoq#ULsL!TWID!B!5US#dY-(qDDtAc$%~
zJP|~lAbx(}tS(q9h#EpDsToY}CX(7g^iT1SXt!M3X1nSJlaFAG2K9nCxmq2c;vqH+
zqEQgdgJ=;%hQr=Ch$cZi8HDXtG5Tl28mTG6m8R@Hh?<k!<agUR%5ThU8H6PWH3(}k
z>C72|nL&Iy%*kM=NS2YDMf_I+TM+gjvVt(~TY2L|2}39wC!t|m2az4b9|vrXVAAHi
zP*&|%rcDrSgUAV@ofPE;@$g4`=3yJLeGnfXw^E<U8N~A?I~+V_>kvdo@*sK!(TU3u
z#IwQVda*Tb-Y!8r9mJbAixsrrm6JV{`wY#?n~m?4ZZzFUd-ouE1o2!jc|C3WUTI25
zxTAXo(VKOH7!^dHAo>RJauBZs(T_{t-St8cF9wk(oLNs0X}J!PmuUGQhDf$aaq9qD
zwYYVV;6QfQ-No!+$=2-ZByW=Ipm1oA-=@avK@1Dx-CPHodW{bJe%74HZt4sVVnh&c
zNYSvN&Vq^~3%j5i8yOwMTcR*2h_{0n6XfR<7%w^n701#oMWN#*H@jGx;+Y`XcY~NH
z17oxQH@r*k$sEa0C)K8iPG^T>dXQfxM-c->4ZIh`OgfK_#yVyNF*}F@K^zQXP7rg0
z*c9Zs-<TJ~{2)RcNjr5x5bp=!4Z;`1!XOsWNrG5TpGom7rrCp78cg2dJoT1qnFuF0
z%;pj>QNr7s6|yv|WU*FqtvSw-_WWS-E{L_L;15FMZaU`FgJ6Vb@DB(H29p;88v|g9
zC#QO<5yaUP&%+c?IEY9P(I8^<s31NGA|Ax)6V3#O!Tse^OwQthEmkRO4d-$p^Ftb;
zyUP2<E;SUAk65u%7RjeUtPSGxAT|V(k1gw@k<WryFABAad8o!qQmbMfHhy<$`WKw_
z<GhW6Bwq@#o^-Nw3kOV3E9TiMOZHU|yEm#|bJ0&YyR)4W&h0_$2x4atyMovk#5Yvn
zPFb4HfV_vofjJcqX6_B*ZaF9U7uVh2iqXCkq$T$Ysd?M^z1WRLqxB92@dM*bF;6ue
zKQgSn<GLKg-$DFDyD_8$@e9L65T}CpUl6|raU_VNK|Ucmsrj4eFD&MnQ`G%?5XXWz
z9>j@Y@_~pF>Qjf$M8(eJQ71m%b(-6mr9u29MQ1pL1-WO1|0&2?ta6S9|I9^lL4+3t
zsaeqJCCUCZUHyj<gWjm4sE(^aTnpmAAnpfoJ%}4Y+z#SS5L;*1{te=05VwNZo0`$f
zos2vTVsGA8c$auLh<ibFzg3K!iOR$~e<&mm7;|WrAQ;fzU!C?i2-eLt)7rIAD6zM3
zr06K7BUMM5jwQF;#dVa_QA$S%9aXkiRu}X9dBHhUL!+zC(mKwKbW`$Dwxf)WbRCs+
zRMt^eM>!o8bX3$)UdQ*kyIU8>-eMjS>JNR8e9$=7$~|?CT17`y9nh1loh;^gcs}{i
zK{aMsrMiw9I%*P6I_v1DtD~0i+Ja9A(lamaQ5ZApaoERg4RqAklTnw6_f)OIYC|0}
zDp^_7M8}glR_a)#qp6N&I{N77tE0J&7CLfuICZqt@sh4)>QHpNQQ2<Mk)bD_==n~M
zFAr56RvlS7S`nYkvFWhuSTogCqj>VBu2pf*^Tj<+>1eGZM@Ksy9j?0_I@;)1T--Cd
zxF=grUe|b?`nb5Kt<ICyJa^~1^7c9hUU&1l)?UZKU!A!RoqUt&($P^zCq4OA)2%1p
zb9T`2*H{-{O?1}LMaOeGp4ag-$M&`B86D5+D1O=2Rd9mC)lG+Mq`IS{y}OR=j`n_E
z+k5C(*wId5^j~M6j`p59dPxz5uOGJc)<K=D73uX4*!$_o(=kWKTpb=AFX$LaQ|Ndx
zX&Jn%;}sqKb*x^U_NY?EU>yT=4Aik<lI^?Vo<TYelvj4vNIhTNGlZ7et1K$7y!oel
zsE${44AU{3E?vU&nvRpzQ~z3){(7MfHAfV3w#?Sp&YL<$>6oNrvX0R@-qJBa$3z{x
zIe%ME-U*BoK1Ro$sjjiYKPuuL)Yb8h4&r#h`X!P#1GIUku8wy(7ry%Ilru#KAA4u$
zc#rMqn5JX8cq#8!>3DQMdL|uprk;F&nkCLjk0qZil8!wUKE=;tYu_p#=$Nl#fsXfS
zVVZrMYpIS!9P@saI*Yk+#<@DqQ<iWrLzA^;|Ej)r&Am)Vy+L+nmvdYFlF6(83a<EN
zJ4wC{uZ}NtY}Db?;ip-2e8_%v1a!n{gu^*O9lDOFj-_*5ybCpSgt_AmIzxK$=A5^h
zyy4`%XoQY>Ihl>oy-RrN_s*fC^6uBvk<c+>nM%Hz%l(<cp!yLVQpY+S>*;SgKGm^S
z#>@weM$OWR)4o(n@n_U|>2r^%pK*lEvNq`WT*sHDrGE#NNC_wPrH)NHF6;PP$7b=m
zeLB9;u|>yL9ba*TI(F#Tsbd?r>H+(9(czOjALQwc<|iq;bnNE7J8a!cm*cPx*c)87
z?GYFKYJ3*`nVR3~*stT5j^jGMORgP$({V)H?*Mn1j$gQ&m?qf{aXHE-{qP4NKkE2N
z$l*eH(L2R<eWUzO$FDj_SmoIo*(Cl+wxc?JXE6E4Mu#L)^4}smJ(KQwLdR(q(UZk*
z-!0)eC4?2v==f8|iR!8B^!!kDY#;ksZr)|-tawgFc%E4y7X&XB47<E?NeFBGqvMK>
zn>ubW{&OKFDZ5Lg{j1}ej_Z2zH8p)^e1>{MNBb)F?|Rv(u&=WHwvIaz`q<H3*<$x~
zJfI6rvfb0c-TI%5ic@$fGkv5dUtMy(l#o1@ET@@bpqPPs2L3Zp+&~EfZyOk6prpaG
z0`QE1XAP7#kZQnUAj3eKfiec_8)#r4-9T9bFi_1vIRoVl{N6aXvXOjduVA2}k=(Z2
zl3$eUKvKy_-nWxf5jAR7HE`pRi=?_}vZ%I@8U|__sAXVP2@i#91)nfbM@s7&s3(L@
z&Qe?V9AZNQjSMvB6!>nO{Hn8wfhUdR#fW>kX(4H5fY&2#ZC;-En(K?D=`9Sjlv){I
zW|pw1nFbUCE>6LK%9}&Yd9{Qm$AHy<&4ArV-aNE5!0UUKk-X^h;@*nY-*G)<ptTTk
zhk<P2Z3=LD@@AlP5%-}I9^RL>GtizB?CQ)FbP8s5cTv*8Kt}^j*C~9J*U3O<15X>t
zs~evVx)`|dr_*^n$r(2&>}uddJSTbKGtk{Yo&k@69tNH>l24<(4a^;%`@Dgk27XYK
z_3^Z(mz`JU*m`jVOL|DC)5kzx1O2FQ)%|U@gQ25QNzV%gUNkV=zz72`8R&1|6&lUp
zXOtLdV2FX24Gc1HvWR=Ifvv^e1H0ysw=e18mC;ku!{E$xMbD*?Up4T$ti@{vCYAIs
z2p3%IhjC>~dOR!KBMr2H!h2f2yLf}cHZaP-`Chpcp7}Iov~XtM5;c;s2F4lKWni~~
zcMOa-5HS!nFu}k?14|4nHSk?g^<6HUftl>oz+?kc4D4N)#ppN90C6f8@uX^8$eeCq
z1}%2oLLoyUah8GE2If)C02L^lBXwDQF8dvrL&CJcz(Q$?{CxxKN_t2Z8Q|N7#eyWK
zk2#ka_`pEE0k70uE>%_vuHeqP>b75YF|DGhm#N>(a{HvOfPtU^e__9xG|2XK4#_}R
znhHrNZ<0BrGLzC+O2Qsv2I2<3G_c8lX&_<XQv++I{nb+CBLiy;d?;gJb@tA>9~buZ
zi4fj(Q@+l?X9hkuuwI1Me9rwPJsYI=jUxF%IQuQQOP}5?ce8;l26h;@dOnj6Ut10Q
zI@$iUk$g`4ioPVzhT9Bmr%%FK?Oz4ATAwND*~$5u7N#e5rR`zMba(@2xCh6%_R%v9
z{K$=F;9CRxN%;7~y(}%Wg-0bl2MioEaEP0IlC9t>+<2Uebx+L5`pLjy14j%THSn{6
zUs#JvZ$P{1Vi+W0sAOW6={J!xOYi-iJBuD};Fy8qtoy);QpxM7wUp-+`zqPtG?%q^
zPLEO^-eypr_Zxp2IBVdx#HDleTLV{U2QEQJ`(Fkw8Mw^-Yv3Y1r=y+MHQtqtDCPN^
zfuf`R9})7FY}jGzx=S{aYX+_xSY66<9NDPf_J)Cf4cw&jpI5l4i3>}4_~P!Cfp)*S
zsc=X7y({~X!Ej$G&wT?A40H|QnGhZtctrbz&@_a{qFEt?rGs;dgithuln{!AkQPFj
z5Q>LTB7~A5lnUXSxvq1iJdD^3(WOI3rDo}5yyeSGehSGc-#p+-525q&^s*t8W0i-_
z`lUU*Pc9!y-j7j}br<h*Rt%w12$e&q62cQ9)Cr+#2neA@2sJ~f7UEx_Ije_~9}I0M
z>26cn)2FnDlEc+gYlTo-N?BBNp+bB;(^@x#dLc9np-~9+Lue3!rAqc6AE+U(`d|B`
z0!iZ#zOA0xgtJ?y%qrPo<nPWsCEV0$7DDq7+J=zBnf6y&grJ0=hWK|F$ycM65HdnM
z!7uqa4zrmoYMjeArPfgL?k<ZuA=rf5L*QF7dhfyv`%|H$<2gde4q;{qck2*FmG+d#
zv^Oc@=G{@75Z*8Csh4S|4j+Nrh0q~{jv=%UAvc80<ucZk_Bf?YR|sxOF6G)!X6`BN
z;b|?MXxk8;rZI;qr%QW?T|)RHq*}gHIi6W(mHHPf&xX(~gwY|q6+(B;?yhS{2rq}w
zBZTKdcs_)l9QNhR7enY3Lhlgzg^(wbJ|XlCVePCezIEj1?0g$ZH4j^umGwdh%<?6t
z=SUtuMmaku=cN$(hcF<7fgDT-gG0$Tfvoj!Mh9ZYIa$oMJev8RO#GD)UJqdy9Vyd3
zG=x_}$&Ea1OXh1r?sjqvr)!;dvdXY0)e#|#l<XUVqXge9;Ke*t<7<kyWmHo`m?mV5
z;Mfqx3E_a>5i(wILI@KJ<?jlaBsf`ciXh)$^TA;{*DHisA&}1q;k^*}NdY+@H)hkX
z2ItJ94L?-o2%js+i&V1)DnEYWD~R_)SV(`4piTsfLRicN4Z|7667H-Jj)w4i2+KnF
zAcTz}d>O*>5LSd>hLGUMy~@f^GUyp0tO_AN1aAmFkq1NYhoJGBKOs2wSmu>TJ3hTg
z0U;i`kgkhb@%1(~QiA>%LYRAGw<QunG=vy8cz-1x!pEc3qCHe1Qa$(UDyu`_BQ2|Z
z62cnc9}0dX__5%$W?2O~pVBcxSQo;2>5H{Cgz#A*|6CfUkm(B%vX@PC-4MPD;rkG_
zgs?S)T_K#To4j%TDunGJ97-rDRqS7fFr;k8Hu}adnbmgjR2jz(ZhY?39_o@3Y2!Y!
z?3P-4Lf9L^KH+TSTl$0Wwfz-lnf4cEm#woM2;nE1w}^U>24818B>02ikAg*?ElqjT
z=2?eB_?a=Vc^1<zA^fk9{~E$?!jBY6iuSP|3*k6jB8&=QoM3k$T;;w9;Zz8x8J9NO
zFD5r5&V+CwgwHEv-?*0fX9$0B^+%~^8Ad{&g!1zu$+)Z*$O|;7a7h}uEcmzJKY~{T
z+5Wgn>UB0k<AjkC#=jwKdtkW}!d;H4uKi{RZ_ZF|g>YL4i<rF^!hduIk=z%2D7fmH
z@_?RpO?g4L<ZLTL&Br1y5>7T!t&NpfER5n|lnEm}j1pm#3?nU^?1(Lw3L`a)#dAuL
zmo5~NPo9}lfUHhVEGrF`3n%+x-HPGl*Rbn^Q8$cAVN?#IN*GncsLAPcR;iCLs!N09
z)uislBRS+XgtPHlqDkf2VLT!Ht4rz3)(fM47%jqR8BV?}X%NPfVd#~!8%nlO7>&bd
z5>CEO;WImtiI%5A(=eKeCVBHPy4J9fSi;B%qg5DBg^?LfE*z6hh!TccD6xi<i(61?
z7h#s*l)uwkhv5h#hwWTevjy9VavM>gkhPZHN@BY(+J`|0NJ>VjbPrb;?l5+Qu``Sg
zVRU2+Vcjq~h0!^TF=31iqe~c1hv5n11&%q4Ips5+3*-KKu4lqHdBgH7SI44u3!{4&
zAEsvX2!l_H_sUx-WcK+mdWLbls<l@beZmNr&*&{kVoUY(E#&=#<cTJWUJT>;F6ygc
zycWhwVe}7UfJlZ24iu!qAQ`}5PGOymS*Dl6ctuKwvX%%r!q>wX7RD%18!n|I!+0Z%
z5u!siRwqszk@BWU3bLcacq@#zMZzMsQ_$eJFy4{T&g4wPm=MOaFs?1O>_3$`kzR2x
zb8;Bu?}jlcj5}5<B}7W5P;Hw!Rgl@~Vay2gUvDh$(K)xLy){6swj+(%Sz*kkk;6FC
zIcdX%Lgot26PzE$0wM1UQjN7}>P1`#X|SN;vM@dfBOZns#_}-#iOjMhjFm!GA5>O_
zksn5g6A8l`M!o%(LuV{n7(U_tFqoyV&t`idj3Av>B!-k0D6<jjFh#=n{D1DK6j2xx
zO-jhwX(Eh|xi1R(6<k9<5yH}s!u*uM%3eMVV{I5)!}uzUbz!UzV-q)#NBxX898>y>
zFgCK6FgAp7vw7A^r<G~rI+fYfv8BHh9cC%q%)QXqxh0H$#*}7tN;;IyXjIqn(M8MG
z>?@2So9#^7!^pm9A=xES;^#1a31fE{dt~r?Wql8Yu`i5oMDlGI--Yo#SGLds^LC_h
z?gymQnOmIvU>Fx_XVW-z;2)%gAH(=b$l)+*4Nxd2{x6JQ!?+j5e_{N_U{&4yC%0r6
zN5VK7#_tRf)6|n;oDy=3J3<JBCxr0Ku+w4u!OgfcjY1}pGhrBUg^8u-!Z;tsl`yV`
z@mClhwRT+!<1)t<MzL2_ri(%-e|eFmbc39IE$n~O=1=DQ!}+$bQ#iP~dX3?ZrVitJ
z7|cHU$95x(USXB|i|O`TVce$8!yxaS>LGS(oD<%ec9*_gFNgeo7!T;x5mbrbVHl4X
z+apMi;4$qVLGcJmM6hqKQdF>*U`hmQHmQ8MXWN;^qLL9znqf;7EEPfN2-aOpuaIt~
za7_z4vuV_CVW*^Q1mz<5w7gO=g7Oitg$fb=-+J;r;k4#uiR3pg*(*gb;mZ_~suA3X
zD>Wjh8NuLbDk7*BL3QDLm&F%i#VaWM+Ew$xYOM$+U$obbVA&>>Y3Gi#x)IcipkWk^
zqNpE1g9tv0;B!hMXcWQJ2&P5QID#e-zVgMh5j+_|(+F%49@C9x5j2lLjqpzs`0obR
z77<t?$cUh&NDk~sqp$!o3w4wT#-w@*^sSs@ld|N|gqjsWn+V!QK;9~Xry^(_!Pb3>
zLohpn5&PWCGQC?rCnth-5p;~8Qv~fJ$c^CK0-HMmX9PdL;&cg8^6B3SvlUL+Iz+%!
zkgYw-);WSM5j-8is>|uj5^vOTbfpdJIGC2Fdb&l>J%ZOFcs+t15j+>cOI(Ero|le#
zN6;sNp2FEnFCiPIWc7`pUj&{AUWnk)UL}vyIiAZ-SyV8X7iC}t5)N!Y1Op>@If8q4
zErTNXs$R|z!NGzj8s$*J#Oy1gGgOeuuL_y;lyz7H!y|Z`CXHa;0%b%5Z$$8>@R5S^
z=cZ6TDgu;LM~h@0C392WBA24E5sZuAUHW7M?{HEJY!f1Qv9e=4=lDv>=moZijhw}^
z-4khqS+<3<Y~~EhWV*pV%ajO~%(sy+&HW*BdIU2fh;aELcrSuM57hS~SSVy>1hXQT
z9l;#Q&S%#`<_eO3d{L!7(*lt&yC{Oi5qKl;v6l#za;4~3=i4q51(KCQJ`h|kxFUj6
zS91&68U0LY>f}oma(@I`1i=XO2m*yIP=5N|q#BbEK`4U%FJU8Lsmlgq5yT_l1V4?y
zjNrolO!TsU7(s$2?PX_nwU9N1*^h*<=wl(D6joU)jj)|{5v(udXRg~fMDRrfS0lI<
z!Nv%_jNq3D{ujZf2sTIXT?F4pu!UP7f?5leeRPZnp4hCA?-KI0;5NbSf;$9v3ckcM
z6C&6X!Ct9OAuCeI7QPV$X1^8Ter}M(D&+@g@Xg8(f(HeeJtXAop7tMw{1m}qda`gL
z<*Z2jmCkR?J|4k|2zLKt`%UmjgkKU%W|@AE;Fxf#F?*6r7QtC=AMVEn*3%K35wfLv
zi9cwT>Ln;-`jZx@UV^qdFFjt4;O_|jqG2PrD3VKp9B08WNSOYK;7XyK3I#gXxyK`@
z6h-AI{*B;f1f`-V9mOpwhm`*!xF5l7;mqC<a#!%4;I!%X2Mqq)V&!s5MDd8hKZ2Af
zibYW*3R}4x%8N#mrJtV4WFlcIE=5#0mF_N(l#GI<)O;~JD>aI;QU(38(xNC61qoAn
z6tACh_L^!h7e#qds1QX(Aq8C&V3lZcy*Tk&QB-B!D5^zKe3e>5kfeGPC0|G<VX7&@
zgBw$7N3rx&<`YrWiK4D>X6r{$k7n7CwjtHSEK>t1S{BV|97U5Tv}p3_<H;zRMlmpo
zK~Xe|qInd#Q8=S$5k<==o{A;|IFls`H41AK86wFnlq*7RtZ-4sCcKrPJ&LSColQ-0
zen|CDp>-6FD6$LX?V@N?$lD6Z5nNx}*}hQDaOaA`9YyyjdPHFlDIKEd5=HA-wvN$c
zkn9xY@op#xj0M5)=_tBJar}7hGf_Mn#hqsMrrXn)?IxVrvo~DNMe%$zc|Ce5ik?yQ
zioz4c<y24aDEdUvH;R7I|GS#-3Q}-E;gyBG=gAl-yfn%70?$y|p7vrC3y<fr{h8lc
z`bRM!3X;=J%2sP`9~{LHW}}!D#miB=62+(}Mn^F;idUl;5yeOu=WFzhD2DM+rY*U=
z9B@*c$nb(mNqApB&HiU2CwqT`4kK!PGVHYHTT#3n#rP;DL{aXnecN8km?*|lp<d3T
z`=!PSA%926-dVPZQM?;XUQ(w-!3HPEOefRx@0VJ1#?4uCrc<Ms#yK|5nI6TADBg>L
zGiA0^nuk}tBJbOXRqt75N3kG^_oJ92KFrqUayg_~^7&DeXqpq=lDja9MNxbZ#quZ?
z)3>Ae`;$z%E^iVVrg@e|@ytETg(<dWQFN+hBUur}$|$^1-0qvTDvErLa7aq0MV10A
zAigO4GK&}F`pZjmKs-4Zg&u_wMTq+`inURmd}Rqou|`Nlkdmm7SQK#~e^kscg(L)5
zM?neIK9uZ7f*%V~_=ylI&;skC*bwD=PLQt`{49#kg&c{g|C?^#D9W3;vOVozimz@G
z+%+S)#B`@EQ4sSlr+*#AHtxGMaIV4jD0XlRah!=`XB4}l2*#nuu{(-AQ63$GgE8!l
zVqX+BW2hCwH&J{m)Bi7u{ZV`u#c5WL;*%cg_fZ_Cp;#-5gHc?6T{#rR#&osgf65P%
z{ZWwepE$@V7Lqw@Ex$x@G>YG&_@6ZLc)0p&6u(75azt={DV6*f?=V{`T_z~Ug*07V
z<^(t91ZCUa%#%@kf5CDpihs6bw*AX;CdxmUc3p|$D%~TBvr(Lj;ykw-hg!wPDpMRv
z&Tp2#qPP$R$wk3Sg3S8jnX4~Y{*Hq9PZZ&lbdqaPO!_R7y<C?;lHXvgW4tY=Z2DBW
z$xDEY;dT^vg;4VjH%r9XZnSz&BpL0jX~UHJQ9KaqJ&YnXhO`(SagNlyp%#guWDIT7
zJmf`VNQt3X48>!~qJ`a*5-|{mRLt&wO(m8R&C-Ib^0=i^CWeNcl!`I_qotBAysRLF
z<zgrwLxmXrchNn!u6n<O^~Fv~CDE)LLzNh+#()^A$B?y9Y4?v(Erw~El3$i!c3>~H
zhG??cmQR+g9m5kb^oZfP80y55@w`<GPsLC-hI%p7k71b8(J;mjOl=K>GyC?NYNHq$
z$Iv8(Cu7Kz(xx#qi=kzVzXrnXic0esGHxj?V)&quwSSst$066;dv?lMotP0rpN7t5
z|EWq0Y7EvGY%$n5+89b#&u-MlPGur1cB+=WVR<flY|SZ{mUc0;=fuZmIcO-SD_eLQ
z!L~8v2w`cTsLgd$$&I0744XDvoG~!#5_A{vqe_PuCZ>7%RZs_>QaZ)ZIfgDVyfWAF
zbPUhL@T~Bzg71u1&Q!2<i=lfA&f@BjIcm-&^~2p33ZIXmXAF~Km>ff|7<#kKlGcHo
zU5sBIR{OTHz7RuS;r#^j1htE9PYesnSqpStjNv7!wX*gXBpDFH>-!XvK`{)boiF4L
ziQ$bH-i+a84oM_Kslyc!{%Q=baUG8<Wr}7Mz2g2U(>^?g5iyL6;ra>tYKN6Al)I~r
z-lNW`m^~_nJ;#){V;B>|XyI=O4rroMJ~oDN^oLgJ1d^4?JA&h5Xw*UJv(-hUaAFMa
zN)@UtPxGu#^Gu0hY7FaQSkGmOVR{U!V#tqSMhx$<ZW+%9F&wF-%#2}940DCg5}X~w
z(lPGy`_y?c%%^c;SS<1dF}%+WLd#rH=hah~4yAc6rg^UAs!LcUhUOiWWiga0<6*O<
zi(5%p#CDd)K!>MquZUr#aDL1B+Xt#Q2AV~SArOO4xL=UQp*$Fa9>eMw*2G}M5Q-rd
zLp+ACte0NL9*N=1SZDHOW*vK!%604?U$dLB<m=6zgHjW+ngv2iK9pJ?$M8uEABi#-
zy44IN{&U`^F|4JeayB_NDL?tp^;ry`GY-=@wX!$FFz;gSHd%r%V%R9w_%enqF>IwX
z$FNxxYCP?v+Pc4#OIs~piR5e1q$y~JFXp(m$FL)YoiXf^ruN3LTb6Q<WPd4c<ytp6
zm|VVnBH_wX_^phA!`L6gcZK|WE}2~&KFWP4h99^?<2=7287O{~aB-Pt6mmF*pJVui
zL5a4CVS7LOuZ#u`=ZP5HWjwzLKN7>y7=9OiEQaGkhS$ozSWzv$!cFDV`|T%1pZrt|
zr(^gdhSbk;bN8!@Hn}QC)ID3&KVvu>!#R537WI4#7h<>=!(Wn}U$(>ZoowuS%y)LS
za7l#K=I8t!!#^=xk#XJ=yc)x`82AczXm#857;eO{q?7t@40mFng#2a<w;0Mq&ev!i
zV)n)Dt#_rAFNdkK^cUqny5cX&eZdDYJY?_}{#dX`Jo!S5uSTg;G@jH<5iAx*aUqnH
z5K>aGR6P0Wn8LI;%EXZuhbNBoILgLhi6cX7UM`M0any~Yd>j?xFj^`V<ESB|QXG|q
zREeXSkg9QjYMs;@#jW2wRBR1w)kV&4i7;D}!;@_7IL?;K9#qD|)}9av^^L90dT}&}
zquhfeuOCOn)+$NEI2y%~*-mL3M+**nmD(hZCxtYPqgfoy<LG=^-M8P)RDQTRvy6u=
zv=jv@vtni(N*rzCXd6fMy_sqpKh3wdio+^dN^Ei13wf518dVkQJSCc~1s#IfoO@Lz
zdd`&-N4q$liG%ZMALkEY6n7jQ;>Z>56l4o7u?9;!#`#ZVna#>ry9nvTF$<xv(*;-A
znzpCo=qk#z)ykW>&&JU$j_z^vh@)2=z2kT;jt{D-?5<}V{3+k_QvK~VE=nlx{)gHp
zj(#*q8Eao@oWI7J{y3LecJV?SFUo4Z8^=pRhQ)c9yxKpG0dWlE5|r@_iDU8e%Ak1i
zQ;flaV<)7Ozbx`s;uspot8u(0+1I5?{cXzX>n`Fi0SoI6k7Gm}Bjc!AQytzwc_)rH
z;&_wmSlu=%&f`__w(!w{)EN`U*f_?;@xbExx{QaCQb#Q%8)cDD!WPEIL7WiB#5jKA
zjxOV2c2XRZ<Cqf1RE{K$C2>rPV|tvwO2}Ri$E{ZG8F9=KLjInRnQ^Rm%KcM??AdY5
ziSwq^JvWYdam?pP>R4xelXGl}LS-U#*v|XX+Csrag8aVpQXzj&vaE<>neYz;mkaXi
zrmT3XrLr=PRdM9U;f=!=M<5PXVG$Kb{BdX^A%CZZLSdhIb|a1u7bT8OvNYj1;zA;V
zQNfttt<TkVI}}DjGmeBvR>!f1_9<!oFpg_wJnQL2eU*>m$q!FIj^mR!J{8H@IM#`9
z;6Lhzz3tmx%A&$&+*#XIrqAQp5XTpBY!pcWQvPEREBo3U$1idGFODs7Y>nfqIKHM0
z<Je0lkK;(WjP2Y$<J7~uEJGeBJL34hm6d5{9J>nnZf=&JR0{WTzsRr;$I)eqC2}V7
z+c@^earLR3@3_C{jq5VMkAqDepp(a84pk4u@k1Q1v{V}H$t3<Lylnd%a;j1PXFhif
zS92?85Py}%e~*JVOH99Ucp~8}j&f`KY$0Jf7RT{I`3WH>=|YclPsMSX7CUSCx3s&$
zF6B>#sW=8DFgSs8ah#_OO{_QZR~#4UnI=Y<xERN!I9w*&CN6Vj87ECtF!7Hx`;td_
z5XY4`-pNv~a)IKw&Wbf{cj$+;vTwxkZyY!2qH)}gV|@)P)&82TQlb1emQqJ@7G|k;
zMU%?+g!~uBeIZn!@FBO)O65@;kK-s}qNs^<6Msh)URzU4lrT}!L@^V^O{BC^DZf}$
z{jgGYDKmMyRoX<V$)_z*Zl#j2sWcO1Oz^r)PDxo4uRp1jGr@^4%NA(8iY6ME$;<Jc
z#aWe1R5nqCYWtL`CaRmLVd9e=3QVxHnu)kKi$yg})G|@WL|qg7^=@sGM?q#iAxLE^
zP&xCAQqM$vsX`sfc{@sZLlccmG&a%xy3*2w#Y7VmPfGhuO|+2inwe;Bg1<vy#o<<!
z4Q_8+y!8oZhKWoQ4iniX6ceh6EEBCvSWVbWU|X);#JL7G_CjP`el?4PT|Z@_wM>d<
z7Zk{;+{Q#(6Ff;H*F+8{VuJeZO{ArJ*4$T`q<dNvadH;acbds_HaL=ZiYXmTbTrXl
zEJmYsGSO4`#@b3}6T~hio;K0d1n&%=G0}|^F){GC@~nwId(^I(N)HpynRuS-Qd`k?
zsqY?F-u5Svx8JPZi?chH*_+BH`kL66l9gxjKpwT9$XUc%9uqH^V3il8=q2HiD=w<>
zMtuOgGtqmJGRVYG>6Co1NQTfKie|lR;uXnuZkfw_*H=a7H9?N>brZvc4^ZsvZlug^
zj)}P@-Z1f|iBTp-i*Txmn)B4ROiVPvNc*;lF(w}J5x~SdCNh4tw6NujGcop7+TrJN
z$BSeFF=1h1QQa>x-!(CbUi3vK(_|A<3OP%UO}0!kL7Z-4hLHD6%w+rLU9(Kg772Ng
zk1`o}N#@Cr;)3%{EHLrDiG?QeO_aB)o4;2UnOMe!OZV_%wAjQFGkKk2T1r<;_grgh
z{lLVK>e<UptT3@sG*@v6x>_kb&|N(`(*Cs5!KS<>d?x%RG!p?6AroN}Q{Q|lXhJt(
zm^`IK={Vm_O*X#Z*PLSIvm+*=CSp`;ZspZ*$gs@+?N@zc?0pwFDWMmc^urBGf<9wn
zjqne-5g3IQTRt+;VTt8q6FW92x2xIwsp_X9UrV!WP?!4E^e2?hOngqun0RDjgNZLp
zoHp@?m|~-epXq7jCN`Pa%;Ei{?l7^_#1`SqZZ+|hiLWKQ&BS&t^beV^S&5SpO7AMR
zT_$!j22RQPp8J%Wv~$+ClHE)H6!MK=jZ^kN%4H3zXx%T_?@ZW_tE_c@xI#Q&;-JV6
z3H~5R`Hw<=V(bz!d3Lf2ZIU+A_CFJz9m=mJe&fDgsUDH8j|)F);&&kj`YXpw?7FY4
z_}zX&6ga$-CQg~Cct%OTXJ__|i9b!;HF3|xS=M4urLUg1obcGsGya>%%e24ohsx{)
z;THuj39{%i$$1OOKPIl2xN2f;3uREzjDHyerz+P>T<4bWtCHVfB)Mf@RWyU8H%;6!
zahoo&)yeD~#>{OzY|~P%OmfBllht`(qR8IN`@HlFC_|FEC-diC>SGEMXr4feL^3QF
zO`t*o6@{lHP%MGs3I3Q-Es+3U-J~W^QnIB4ODFJIt~%sG-h$m0mZl|8CV_O(ESo_2
z1e(=VS+`sQFC}tFn0?MrDoNw)t6l<?6R48FmGZW#2|STNY6Tk-sFpzW1ZpHuD}mZl
zT2qSLmz_*hUOgb)J|UeXw`kcqQdC!vRoKFB4b=JxG)RD?p<tr~8Yf`8nA;?QClhEY
zd}6wXEi_AjZI;T+A*X)J1S|>U$p|wN$V{M10#7HPB%mg6;jG1(fHi@Xk1Q33yIQdw
z;mq2FWF_!INrl;`Xv5(yrq&5Kgl7x35o}vnnv*~~;q410xe2UH_pqWXfoWwknA{0;
zNT6c^YtucQ66h@QwPRFfhd$2bkh&)DOajj*Fsf$uvs|y83Tt&s;Oixp0^U7=9)+zv
zm%xE^PybIddnPb;e`YVi-U;*((wAg^X1@fUI-18)CK8WWW6Ub`g#?H%CRZ~_nEDGD
zAUIHP*t^P*1plxA_Y-)Kz$*z1O<+C!B!O2GcrAf<5*VMr>s+8;iw>_=bd)qcEP>$(
z>}jZspaG|-Od}I`L-?Bs+^Ue#=O@ej)QoNyb4Rn6*7mmq-%g<DR&@+Vp5QM*ER>HE
z`M%cn2?<P0Ad=vxIe1sPn4Q3!1SZiAZe?-;Qxcd;p1@2Rw!1n#f%DCjeS6dy9A}F1
z!#U->1U??2Qu#u<XI26YN2ptzYO%7Oxe3e@<zNEy6QFQW0*i$#NZ@@T6fP9<;{Rjn
zJD{W}p8q+52X{w?k3`8J;;^&ffP-7OKoF2<fKyad6a@hj!9X^W6%Zxoo47k+cMnMt
zm8fJT=PU?F_<{=m&ou9T@BiMsdY`VYuCA`C?wy&Po*C$$nvZGu_+Iq;O+LP5eDm=g
zrw{4Sv>6=ZaCz?F<}(`0^-JfmmsvvcT9Nc}(}K-z$mIW!kJ<T{lMgcIa-Nn5@StHl
z2x#_vVb6kmEEHgopxLGKSjAbklsR8BNU$s)%bCViTjuA(%*UM?eqtpbYCbf<*9A2M
zWi5~CW3wYdGAgJg=);C?K4ST}E_@r$M<O3b^Kp#De5}aFp?oYV75I@($mgS;_$?o+
z^07J}ZKRwX%*=eOWw`UPIUheUy?6RoOwU;_z&d7E={#~a<YOaMP0wlCK1}+|hq*uJ
z<ClDF7tAgBAZKenwsCq+&!GU1<|Sp)HYpx0H6v%I=#FN*zba=}KB#AJKK3!UOUk?R
zu}1*n_J0TVi%$O#n%VmSQT#n06Y2(8JSh10DtksArp^@kh|tEi)Jex4&&MU<hZFfY
znU7QXV2_kPC&1}^oDqP`vrMW}egax`UbyIjpcnIz&$B@(=dvjNDd-hJDS0&?e=+)^
zEyc(gdR@MekH7PAQ}laR&|CT5)0?*iy(8%V=;wc>B76{0Jmh&VA1MdD$0`5I$NhZF
zP%u-$gM1WG&`81K3X&8QRq&{SDhdvrl#3}Ssi2gC(cApR6_gO*5kbjGRxsfox%)qI
zih@)H6-1MH*L-OT%2C@Csk8zX%LrOl(A(L5OOwirS_&Ml6=W|J6;u*!&uLO+h3|*)
zy5_MaDYsHasH%cmiuc3BTjJFeR9C!v<27jK0J)}uKi9~Q33_|GOk7(*-QxbM?c_QH
z3JB^csITy=B60%-4G+rg6269_NKVaF{>BQPQ1Fa`XGIrH6odtMQh}u4-;MsJ3PK9f
z75FIjfnQeOR}c_YtPKkAPUkQ;1@wM4yO{!l7MuJT3YrV~7J@^jv@5rzf>sLJ4Ns#$
zrh>{Xiq1;N#H|&Owo#C!Ae*C8&{07r1<7y7xeD5{iGsr;!mph3w-=Hf6g;J1eASi%
zr^vK{ZK>y@(s`W~JguO+XxK$TR|VY|l;eILl%cliANcv=2!b9$rl*3MoBX4THYMjd
z1<xyZPr>^N2A<F9rQl@+uL#^*L7o6FD0opp9|eo5wtR{DhvZW7(OdrI=W-t6z6$y&
zctZ%kD(GtpURTg1BlOyutkeU&-&D|F!C(b@OXt0%;NZU80Tg5M`224x_@Q(jwY{V8
zU3q?*I!JUx4r|@gc|#O%nC~j6QKluC4_)_xf^l?(f)5o86@wk7;1dO(Dj2R{gmBkK
zVz3`8*wZpZSI}u3???rsXqae1=Zsb`M!{HWYm?1l+3G<GKYl!i_%j8cE0`jhf1%(@
zrta|^D)~ym*9s;ppzs6*6BW?5NgU1;`Jf05okPsAJl!$O9;Y%JOXp2f@D1nJE&sO)
zrVHURW%Afplgj?`9W%b;7!~}cV3&gL=@6!(!Vjckwt_hdmMU1L;GcVeVQWG!_bob?
z6H38+1q(QN<<Oy{zQqa_3e4gn0TQ|C<S!Ae$XqU%)DTgSFR-FO6+ly92vC}r00OX~
zDS#(GHJ3E1z*1l<_^giXD2NNSu7VhCelACQD)8+cAFC*tP*8P9E;anf{8zAE!3G68
zbN#ExZzZqcbjt{==EOW4B3LV!<o_hVIzhW{FS?Q5e#*b)W&f`VHYwQ5c~>d;vx4n{
z|BHexLUOC%Z&R>)d^(j>xfh}s8}1NdI|Zc%avEOD-OV^EsH38;ioFW<aph6HwPnA8
z0}AeOL<)Xa@CSp%aWxMd<XWWQjDoYAg9?r)IIiG?f};vfRr3#;l6#C(H4vaA>AW}P
zwN?BlS*75#X#P@h|F}|K?Yr;#-z*h4r=Vqh`GSIr3eMA{iftR0$qRIoFDbapMNGjJ
z1r5e!lgTDjwX1pHa($V-^z*m<OTje-*A?7Qa7)2$y7VLYZzkUGw40(Y7HLEEW`R4R
z_&)`A6|hrkpsI%oH<gtCRq&sJGAfSNk?(Wy=L)Z)l!_uMl2kmRa@W6HR7Eir#Z{D0
zA!P<;Ci!_RsV!%h$zyGP-5_zYklZ>r^lF*B6oD64X_=<tlQMa!D#)kI)1?BXRb0;t
zKUcJES<z!T72kdCFR!A4C{|Q4vR%$Ul>#(|-k@Y<ArBRgs;DAxRTVW<)KpPTMRgV3
zqkf99$-8v|kEy7oqP9@gzhc|D-^zE-=Mu1LW|=&OwVnuWKt+8O4OBF~=4+_p2^CFL
zG!jK}9w$)2CJaRVUj8Rl5YTTvj$PoU>|(H=LwLxSRlaZ-42o4IkB$whV3b2D(p5B5
z(OgBQirH_-WYU-xDl&vXOF>(y2<3&B49%^$)IYhT92SzTRgm9C#r86JZ1`itoE#Oo
zD!z&0+bG(qXeUN-$-vF0{Ozen#mlOPI|%xepdAJ6q<UXI?JVfiD!K?jPFDfC(R(U-
z2;5W9-YT9E;8{VR6O{7LtLP;#dts4Bo+!Scdf#AuQQ$s;W)x}qii*A}{?c$w!>cM@
zQ{mGfYj|BnKNTxf{HWp$6>qBeTEzqv{Z+iBVz`PCD&AHxfSFb{?>&`kLhe8ngH;Ss
z@yqVeJF54T<{%ZP%jB`@r78Y*RdhHa@sY(^qk?>R=6w|(sQ6IDP!%OxhlZ&bo$co<
z6!^6822*<WLTKQ6-$yDwR`HpNwZ-L6RPd4MQ4~}0DHBii9yzAWm8a!T+6DQn@)#9k
zRg6=;=a%n0FOR2Wfn2w2-mNhqDm->E^tp;JRPT5BOO?-jhQ1Q^TpJzYqtSaU|3np&
zR4h}mT*YJ+Q&h}RF;~S@71LDAP%%?Q>lN}hD!%2A%gKC7{L6ySbmsZb-s8=Gl*#x`
z#Vn?T3XBT1zb%(tE`P7`hPlk+2PVl84_u!laTN1Z%vZ5U#bPE{^P~mrcSUfaiY2vz
zd|;c;P4QW&=o48>RH*g+OI7d@VuI~o2l-@dz6wP}Tt$MlDl`>Q6&7=&gI`x+s`zie
zOl+ulag;<5;VdW<Z1SaFY8?D@lw_-LRJba77in8}f&bKg`T7_B7@d6G&tt{{|EKS#
z6fmz&`THs*S<AL7Rjg9+H&c|uQL#qFVHHOh6h8c;VyB8<ReoYvUZ-LUmkt%{RcuhP
zQN<=^f{MIVa_h2r$4zN7Eg$LU@iV7e_YlForh!43^5g;XHqN_Q(srs^oHJ^xoY^L4
zhl=+<ldP5UZz^`F*stP%inM8IyHyNqP;#$|Jt`Ld?w5b?U&#&->=VVy^Zfoy`F9n6
z@E9-ES|xYc=qETRiiZTve!+iK#W58ZRa{bWT*V0$XH=Y3aZ+@8<BoJn%-OuMdEE=7
z(<(l?CTFgaKYdP~Zpi0UoL9k)ULkXqbb&fw@Dp5C@u%>^H9@baxXNioTFT#OtGr^B
zOd~ht`#9d~OkKLJdkB@h%erf;<Xb9ktEj928t$n0AG1_LNzHTDT^0W_rkshZ<a;VQ
z^$7i=V&X>snrm6K=RQ|{4IJ_VPQU^3pEKq62FOVoifSmPp}2-eMD5N~A<C2x_>*Tm
z7jcZFr8J~yD5s&khExq{8cJ&@qj^86smF6@FaZrd(JOmc*}SqEY99=B+>pfpRnYKv
zn!l2UiW<J%pF_8BXcIDJy6aI5RWvlv&`?8<?xCt09@9`uLp2T6HAI%nWHPKZG?3O5
zbj1>hM{NytG}NWe4Oz822kX%rm4fv(ESi}`8;D;{lNr!P8ooE>#u}aw;Bi5dKMj)E
zM8lIBBn|bdc+az4>y{B(?_2u1+>~Bz9O7edehmQ)lQc}$5Y!OT&`U#a4e1)1Y3QV(
zv*!Jq)|{N*d~Gze(2$|wt>@*I8d_<{q)gQy|Bk0jqbr$V4Xrg)XqCm{=r1MGEDhNj
zax~;>=%C>#)-K3ttKq#(QacU41vz|8aeGlDXWC0L|LE^XV{-lc7j@xOiF=x!)-b^K
zch%5M^LBo9(a^7bdd32&yXI|#c~--)A45Gf^khea<TYPP&uI8yom_8Yh&zLx)9}0o
z?#em#SBPTVHIt{|1r0;lO2dm9`e=AV!<)i@mo)U{g0JCaQG7+vRg0T);IC=8QY1jo
zkG}!}v&fgja3kve$x?qhM8hBrgEhQOYc&ki@cu=Kn?1SPlzU*$TS40P4&60Mdf`d`
z5aG=CD5K$BHryyZx+JvI3Z8z;_W|9zN%~L&H?&q8ClfboB@fpyLc@3spD`91KGrZs
z!@_<3Pc(e0VU&i^bnG;VTSrG~_-#Xo4N1AbjNahZBz8Sk$d41W*^&@9Lw&B{3(@K;
z26{;-Ln?Vi$@-G>Yq6j5)b_QgouFZ&0Mj>w$ef~Ks)h|3Hforr;TuMT?q$Mjm`>%)
zObs(M%wz^?_(8*W480xXF-zl9&>=ot@oJ?Ii?cP%(Xc>6R=&&-&($!W17F~Udme}L
zr3d&J2IaXMj@#1~YgnRTxrTg=&v+MIs^Nb(q-AvbG^yeQKX-UN`)H1$fgVsrk}x5O
zxf}73r6EH@)t7mZ4qE_|Gfu;f`O=mpp{T|OFGJi&=xA^?tkSSrLrg=Q^Ih|H#{Jt;
ze&wc@%n30I-dz$}q2Wi7V4s@4mBMB|!9vT6{_14{Bfdt%S`9yGSf}A=yC4q+ope1t
zRyL0>y4j>*vxb8j4r%yV!!H{4XxK|jG;GzdOGA;*gWEK0*YMh9|8F#vLD?zq)bJ~<
zdQRru56+IxS3*oJ{v}=X+0ex6A!|v_ZVsVr9%s#tvU&S7{Lb!f`7f5u+ppn(=5560
zGjH5RO27TV6taVjrb>r39MN!2!+DyjVMu!06B<rxIHuvaD0cZf#Hq)f%cnG)*06GT
z))_7cS3)Zv3$<G=^BJnMTt>!7%$%AvvoC14sNqkpw9kev37T9k@3Mwjze|7FUjFmn
zb5>o^@MWremFr=-yhlnmy{_Q~S56%_b^NX2CX+|UcRFrqxXtv?k*(tnJ#aoyK}SU$
z|I=_+!#z$AF6KH)==hgwOS!!2^|OoW_>bwKp-q#P59me~|MnC2Z5Jd+62<SP_>1Y@
zzAc_9QRgE%{5?a-I!fyJrd7KCuD5rll#Z;g<uW=_bnk8Rt!HPa3XmpfX&rn>n|$un
zD64zhH_8cGUQoWTppuTtIvVI`r~^74C0|Dk4&)8FijJx}s_Dp^B_;nETK0EHF5h(j
z66s!@0Q;TUEW4(T$8>K?S}h%Qb=1?rv!mKN>Igv0v!MDq_{J@sH@3f@OTZo*>3Cd6
z3mq98nvN%QG}YnL!Sg^a^-Xkd*WOp*(33hyB^}<=%i)l$gZtWe9yp^(O9H=+fZz}Z
z1qkU#7ob@ozd22+;-^4M9jlM}W=)b>>E1alF@I|^b%b^Br46kGC1@i6-{g>^BUi_8
z9V2wK)zMDJTRPs>(OyRf9o=+v*YT9@ZR+Vvg*rOw=%iy*rk{@y_8lAKMi{=Ryo-(*
z7ejpAN>|-`<2?^rviMS{hmPKKsg9mHp3(8F&TWJK=X5+Tz)R)wJ}#HnO9$!xWin~A
z8~ztp$S=@8Z2~Xpc#+2nnMWVpdkqDjOn#YxCf2>vW*)Bz@T!i<O+pVjuj}YnSo?;K
zHw$rpCgc^b$p9S#b-b(NJst1RwpH?Aj<G<RzFZ!pgXbhXQ(|$5U>+UrpFLZ8U&n_!
zhO(Cd@&~lGL14?M&@de@*9wpBE%Vo(=aW2DpwB<j@u`lHI*30O^b<ju=c9Ct*6{^B
zsbh?eu{y>x1UkmiGowP>4%2m<zs&_d@#i`!Y?mk4AyV#DA^l26|KD?XOcLO09TNnY
zC@A}SSUXu1rwBS#&}o8xqvKlvC^lVy89MqL^IFZ)@x6}qOg!B?kNQE!5*<r*%+@i7
z6Mw0HE>l#;LLHnA^K{G?6XeiU>6v=rMQpN6V(*JZTh3YTcjH!_WjdCVqhp1Rd>x7o
zLx)L)6#}Y`Wy}2<T{Kyu0et3P=WLoKW&at9=!oiYb;NX7I&99(3Bh$YWS;nO^M#}1
z;w^928);leqZx9_BKeoMd<lWsDLFstP*a+&)Uk@g`9&sPtz!+>iq-NuF~`^H;MC^+
zf}cb&%k**L)Bdk6g*NKgq~oxTBV1uj-)0@Vb?njcvyNYMY|*h*$FDkm)3J?n<c>_4
z9Xht_-j*4zSEM_|bd#rLbJFc%!e0q;7a;@seYrg1y*f^R7Tl*}KiACXWy&1T@w<*c
zbR6V#>ltE_bE<Ob;Hlst9fw*6cm_CqtB-F4I;!KCj`KP$=s2$91XbxcqkDT&x=zeJ
zJ5fF<G@RmER3y-TOsL=5&{-Ylggx{&HE{8~I>moc$0Z$q>9{81b(z`DiKc_QT}I8w
zq1aEgyuBw^b<}UtlHfYMH!}21M%E3+s7_$_%rIA^;Hc0oPF@`!8Ti=19WMJiG7W?c
z+|_YUM@<8d8Tf~bKbLL;r40P1<Gzk014Ruyp!dF#Kba(P-D4L;3@;+@bqeq~<YESj
z8z^C*!e^5ESh}-2ckrdqBL>brnwu;r0auk21E~h88mML<%|K}bWet=w(5hpgjDcvK
zFavt{pr6;d<qdCl6?e7p3b%rRE+az~1+64#WkJb=fkz8*6$3|Z`N-s@dUXRe4DThM
z#J?5DH^v0V{ZFc8ptb>@0ogzu!@I_>XP~};x&~%Fkhw>gTcr8^&jtqAs;Pm7hWA20
z9*qn<UWgkTc%l$D5#UJ!QXz-?j*p&@Z>{ky+?eb)kZz!vfq(&CKm`qi4DbTYyM$aN
z4_hTSH^3jk3<E6<v=I2>xlD43U6xxJI9n$C&G+6_JpI<%KpO+S4dfZfGLUWHX^z@J
zj)7bQ9Sl5WpsnHUJ#S~Ay@9nGb6;O7^Y@M$lsI#_f^{^|$v|hCy424%_&vE?=Di5s
z0oYoi>4+8nt_Hdpc*el9hPSi3yTPaK{XGrz5XEUn0+%j%{-OT=j{2Vywmom~Q9aoy
zmsjjfe=h?!dgNAY6MDhGiw52>@TP%223|7oI<0*}e%Zh)23|Grnt^NK0Oug@WAtUt
zl#@T$;$OVT&t2ynDaT9Ueuno8OVHoITLwNb@S%aXIjG_?kM{)_Am~6r-w||>po0Y+
zBIvsY-V=bW`18Sqf`D%+=XSrL28J={lcbZi1H%oBV5~1@_PHYS;;w3`rk^lg1~zl-
z21XhfWnh_s<pxF@7-Qfo178~$Yhav#FPOc@gX0bF68mnuz~=_EnbKzlc>UOStGwz}
znOCgr^h*Prea}?L9Xe5-U|^ns`35E$m}FqGfhh*QH{d@Xn92||34KGiUzVo{%;H{C
zzEQ31xAbtew$lZjA?Qp4-w7~FP$nJ)sN@F&vxT-fg3c9`{F6;W3k)nYu*kq-2Bn-_
zeUblA2|t(Lo#pbD7+~HmHSqkU5SI%y2s7OI1{4D^191Z?hh`vRfE(^~PNI>?h6o?G
zc(<$Io$Z(m{R+9o7yhULONiM99K*Xq#U{<_1YIV~5~<-f-!C(zgn<HvhJG`!!oZIP
zRvB1L^M3d9Qk@szD-9g(9@@5CrdP>aV}N&cZgmgw?uU2(hyFCYyDsZFBUZ^1p9s?b
zEN(QgN$`pJ)ANggErxf~;Fy7}2DTa4XMorB+YRh6u-m{M13Q`X-$}n3_>GpV^3Df#
zaeavU2lq;6U%YFSF+jdGUg8ahy#{#mfoeB)m-ibuAmo2HaL~XZc1nfqyt^(Fd!-*X
zF#J1-t&Rw0+pY3Z11$2)g!H(96I?C~oHB5R(_xj&oH=cHXD__-b0yiYWXfl`W*Rte
z;DUiFz5w|bIkbEq?^BWT-~cbP31^Cds|=8dgz23F{AJ)e^MUT=-5vuor+E)7{mmP~
z2Kt(K)x<3Wx4BT5c*4XT1OGEn-b4ixcMaU*0&e0F6aN_a*Fchqq9*=hI!(*H&&8i>
z!s6iBKYbO}<#s<T6){ofufW!u((u{gVkU~4*swq8e50b57D~R-+3(f}d~h|8Y@(#e
zS7TwxRbMF+DJDv@m5F6F0;wk6zbVz)7)&$K@<Bj9Dv_SQ9~f05y~kO9pZ%e7CYE;c
zKv<C~ny6%=risT)R5k$<kD91r@*h~KZRJwVLg~Vhr2Gb`YNDEn>Vm&)U8sf$TKi{O
zrg=ajn5BhlnW$}|o{9P<l1G=SW1_Cf4;uPu-u*|@Ij(wlqy{D$nrLL=aTAM1_?LDL
z^4PIZdS<Anq<z!e%dXVK#FHl4nrLT2GSQSnFwx3{&xC9u-9$4JeiH!`K@%YpjsKE3
zC^}?b-O!z~P1}{uT$Y;oSM5-96GbwUTbRf&@qO1I{Why{fcCIE3S@F1CeLS(%>bR2
zThp)(X>Cjl>>6TB7cBO@mztSlqV=q_ToZJ7`E{NKc0tYUO>{8P)5J3-o-)zVL>CiX
zg`Q3(I-7V}xSiqa&?w++4AO@*vYXJ>-9!%))I;}fsG0u3Dv5xxewMy6@uG=7CZ0FZ
z%S4`u7fkdvL9=NRjqJQQnD&#zwsa|rr2XH*OD0}6@e2J@I-4EU+UJ{eK$^2T_}A6I
zYbIVdG2O%r6a7rQVd4`LpPG2nM1Ky-#Cs;*5-}QR;vExjn;2l?;`|^jXBI769T;R{
zu!$iizO0&FZ$Yr$rXVwr4rJG%)Xeuyd|+a@i4i6~G%?h~Fp(beQ6C3IT6|ZSIYwb7
z+eeJ};^4<3T`Sd0&)Xbiutu5~W#TInUz-?hVvLE;Onh#lyc!&9Vw{QbbXSc4$2ER&
zkVE6BE0<|HP4j<2lQ@dS!G(?e%xY?89!@YZ(Zm!JQ%y`Vv3$Shx5*~okS5V=`ebQ$
z`BJ}P(@cD0;#<zpvQ3|g%j7dm&FjgN_GZsC@tp~q^JtrY7So1GOyryR!NhD63rs9D
zF~`JQM$p833U3H@dn|*!bPk3YL^_Rq$#bMdCKhvwaWaayED?QiUegtOS9|x0D=rT5
zcx}9-m{3jVCJZrBO=M1`>glvCW0ho@h?t0)u;{3+p8Yg+?)Y@+$+Qu7ytJ9X9>vn+
z3K|piVHy;eSYhJh2tJA6M-wYKs0hkNu*$@06K6Poh42~^+e~aXvDU;-Cf1o)Z(_5F
zpK1T8lno{}n%HFGK$~!>Zoz(k1$NvIbZr$b);To%RLU<VwwTz;@Ew*$w+XKfgfH%r
z=8cq7y9Rfd*lFURi9;rSHSwE?eJ1vs*kxk3i9IIva+TN+zCXiHg|%|RY_(1I@i_fN
z?g10OoA`r?x*~~vQRjlEga6wXs8u&>b~Jq0#1RuGOq?`v)Wk89KVG0rgRVg;A*C_Y
z`T14fDJmI+8gklcy0LR8Fh5wgc*fx`<Z~v@bL};8-^2yBHF3kl-zF}ZxNPF8iN8#+
zyFX1(&lMAcYWry++j4-{nC)pvMY;s9bCIu{L4!vhk+45-lZ(HJd%~r+8E$IevQMu*
z9po@+Sg8lzO?WC~6Kea%#J?uUWJlzjJK=pJ_yK<uA}AI?wJyOT5hO+M$0YwVU1hc^
z9zlr+N=8sBf=42})bf>l%b(0*w;*e&pOPsNq((q{N=J|;+MZgOLOu@~pM6K7+Hw(;
zkDz@79U`a@LB$B92%1JvDT2xo)QzBC1c>0#2p)@|@w34y5mb$!Mg-^21gb?)J;G<}
zQ|8_cvWoP(5>0<w=&KpQH+%iTM*g-jsg{te9YLK4-#sGT>KSAeY5fQqP+<g5M9?sT
zMiD$t$#Qw0o|T3i^0%HEd_k7$oeQLG4m62i;L0$oo{V_EvjmG8hB{pf_#%+mdjzc_
z@JA4cAU%R+5xn+nFc`r<Zz9BTJr`_Lv?=wFHjki11R1n>S2AUm{2Qba0v@c*j369A
zb_6*QjM7WCj-X8hS@g-2V25qe*5(-_N;IY9w<EK1BWN1|+qR?qyJYGi^FvwYLFQ8t
zbfgUtyiS=2I!Dkeg5D849YL1}x<}AM*w&SfJs0RE^jtU_SaB`DLG_H_nFyYZ;JFBn
z49K<DhpBL7fv<XN|ML+{IvrpWX}v^i^CEa5f<6(v6v4_GMd_9oBbeFGPh&_2*T{W2
zf>$Ew%V=&2(|Z(n>Yg{=S0l)j`CwSMUj%PNFeHL^BX~1{{&aE#@6fhe!M7rKJAwfW
zO@kc9f^BC{3Q`Yy9~42mA*gXGFgOA#<nTYb;Vr7~Meu$ELn9a#0d45gF8PB9=&=ul
zSX(9BDKmR`1XsRD`bY$EgrGkS$ZZspXjRr(>C*^C(y>vri(-_hrP_=rMn`aSM`%n0
zV<Q+B!FXC2!M_oF7QyGtC@y6Yd=bHy5iDlc5quTF*G%Jn>2o5O5W&O<w1_m5-V@Ak
z1ZC~y2&NR`sRB%+^0z{);_+<+(+g{76xLGDcS75&2)-A9oF5{XU5MFyefg$yBiOY)
zG*8g^5iAg3p`eQdWi2JE8sVj)M?HdNjNNPLJeEh0Ux<|m)IzKYz*a^CW(4ddBB&cd
zQ~*m*@@)YeK_A)^6F4qtf{y+Fs#bFGkKota(uoLGN3e#=NCev>SSy&D1ZC|{5v&t<
zy`UQe-B?)5UN#H-v!K5e^0x@ERg95Jc0{l<f&&r!PJW@x9szz6bXNqs3;Ardw-E1(
zV1FSd{||wW6mkv<a7fU@5&WN3M+N7YpvMJe+mjKTir{nvXPAl+TowGYf?kZ^oB-zq
zy&&lSX}c7`Wx@GVP!5OM{)*t5DBg+SdLjR&05>A|TY!feZV7z*|Km`@|3vX_1os4Z
zsPn%F?sMKny_|m#K@kD!MUfOm(I{$)VzDTSM^Pq<vZ7c*(3B`15g=JmHZLhaDM1;d
zQ~}ZoYfDGLDjwycC?7@DLVg7SAZW!XDhW_oP%5EX9*>G*mBOlO0#p~2wKWR)j|osq
z(AtHybp)s@x_+pweiRJ^vtgl3BLN<dqOkxEdv6lOlcFdI8Wgl?6g~l{N*2H$ML>Xu
ztwM#h=>jy1qIn^wMHCNZT1L?-ip(g&Q5eCbtSAn&4!4e?O%xwK2vix9RAyj_hAmUM
z9HoAfl+D^ZDLGN(M)6j2f04}ay+?D}N6{gQeo?#;#ZysqjN-*8`b5zwiq28=ih4g=
zPe;)uiXKt)jG}84-J*PA%HwZ85=Q&L&IMVaNO;JBz`fsm&qVQT6wlM1b16e__})31
z^IR1D%Qr1{DloA`M$h%(Ms+fJi?(@DybuKicJ}iRnJG0s<9kW)srFR?UXJ3GDEdbE
zS2&-1@L6l6n*(xRi{kYtD4#Q4YFnWw!JE_{#ivn><e;K>JBklD_9zBKF))h36lO0%
z;o(ZTgZS)|>_2<Tm-ec^UqX6kO6t2&ycfm$QIHew9o%{(K#+MfaCBm5XcWVu_$Z2x
zMXTXa+_~!;A@IMZv=1^Vt*xD2V$+-WL}*AWnL3KgeiUCs@nsZaq8J;+XHk3}#keTW
zUz5j2QLRrhZD232Jr^Xc{Csfyfs`}XictSoQG6Z6<S3>@F(HbHQA~=W$?jzBd^RQ7
z{HJAM8qela`5f1q2zN}ICafZd#*<EuVn!70W9SgW%qYH#0uCN^Fe{4hsm;P<3qM3L
zJBlq)Y>i@06mz5aF^ZK@%!^`v6wxTGC>BI9;+~{O@k5ThP+%4p39vYdC54=&Q7kLO
z%LT|6R1s7aREr|z1wWhjuP7S~Rz=y2A|e2B;|&2j3g=<ynZw2WF4u=^IqUBEVxkxq
zl>9^#s{%5?3U>NL=KdU+bX63qqu3C|bCSF!inUDIvQ5`<c}Y$mSugMt2i0Gus+F06
zf_u_>2I8`hV58`66Bng1(q_8oOp&W?{Xa)R`ir3b`^(#+*d9eK3$-omh+=0H|3vX`
z6u(CCTNG!aI2*;TD0WA2Fp5J$;hre=MX^7My-{c>!RM=_UtJ%(m|XHe6u(FD2NiA#
zemy@J-W*I?6inOTJGsYqIEo`toQUFN6xlV>k4AAUisMm~JR~R23l6H8{$m~a#0YM2
zN<S6F--rC;Zu(9~q2z`J)k^>Cp!|yBJIB0Y6<3BRE<|yW_DAto6qgvvwZ&trieF|@
zZ3y)FuSMDS<v;0}_vI^sQuDPauG8BGQf@E@>c~{sY@9S`LtxzMAn~mzZbxxXG`~aF
ztqJ}wio0T@92bwNYXY={Bl`RIV(j9-DDHFBwNTl@gD8qvc*H`o<@KIqp_ql@7K&O>
zKK7F{Ix9G5u(yU(pBpS;Va5pQYsFvELMaPr7D`)qZFTV!3#k^$eVTOsrgXHW++ny>
zY;&-Tg|b3tMGJHwRh1LP@`AEhL4Z@GniAis6N2USlJt2}RSS<=e7{Yw3I!BDFN(XV
z!D<#3WCg1WT0>A4Yg%~BLe@cvn6!?Cx)z?Z@Vte37V2AQ!&(asEHtzrTku<GWZ_!T
zrcYXsEWRcPjV(N3L0cH4(`a)O3nk0v@i@FL)Re+^i)<fT#79@;hU9%xgBs~ImjnYA
zf)<)vXkj5_Ve7(Rx`k#Ih87J}EC_NehdcTi9SUby=(H->(n2fRP{X@xmuZ2uJU+QC
zg$0xR))r>n_T;lI<gkf_&KBRFjJ6g!&<_?r=$Twck=j{k&q1A#*yE^QrCy69_A>Nn
zk&YHdt`G7~(f&ojr!91`(8EGc3tbt?D@D6m=x%}TjXoNnZ5#!LO3cq^EIezWW?JUd
zTItmD#y*LfkN*_xWuZ66VquttJPR*ac-z7N3olyeW8oDGeJ!xbOEjid`pW_{F@BW-
z1J?v!WinV;nHB73@dMUDw?T-R@H*|UmQDfk->~qe5a@4#zIsdG#tlQP8ff7i3-4NZ
z&%z+fn?Zvu46(3&vdqZdPvIvmg2vq7p7x>lEqp+oB6(;qyWkX{@!@$vb~N0=2n*va
zd}iSz3m?-t7Die4L}XXNC&`}*Z?ILTGMV{%vqxJPV_~d?aTdSJ8FXrg-j7K2%jXe{
zUK;cj1g}-d_}s!57A9DjXyHo>Cu*dB#on1bwbHp1oU4+~MPTd#Z=uK?lzOg3YDS-u
zbF-4C&^Z>eZ9dh5X%^o_kH46E7QVGG-NJS*R-8>1W?HZ;*cQHH8dz9lVX=kpx%gX{
zV_~i^dp2jpiDDTUIUn`+FA9X`S(wi$U|}KK#%2C|^GEsf@=f^z-D6w$@z-QBmsnWJ
z#I~SYSY~0lg?tWSPoT^)dDV4k>S;gmUVm7zpjse@HyKFzD{ojZEkrDAD_5GDUzf7W
zw+tJ*15sxCRo^2Evm6Vqg`X^}vk<cox9}t5Xd%H#G1FgQVTA?uqOT5bs+UV+2x!kL
z3#%=xv9Q(x`+aC_!;%@ayieHAGn4$if%O(PSoqn(FBUdh*koZd9TEuB4C*<x&Knmk
zA>Ja!vXw>(ZFMaFnQh@`)=K%U!t8pdg<m<*EF7`$n{eQ63wtc=viLd3r1{sSS))pE
zGVZmo-@*YQuuo8)7yWMG4+{q^9AbRW_@-Qyc>==|8~T=-**ob`3&(`~ISa>`4;Idd
z;^YcNPl||~vaqjv2|D?-1&(w;T2s2>tdQZ@Ih^wrE?B5)g)dsTYT<VGj7wZ?>SSCN
zl;BSbSD49vc&B08UQPE-y>|JoTe!iM%|?A2e_Oc8<<~|T8@H%|E4GbdHttyXpN0Q8
zQVVx2+_UhHg@3t>2scv6rPKU53()5T^w<MtNN#Eo8%Z`8j-<T-4z{S~;|UvGRNO`h
z8zpU&vc1LmsdGghv5{<h+87tNL@FJUVk4C@1>w<kvq;;FltUHdG#iiZ@^xGm?zYQU
z)&^L#QO-tr8x?F+v{A`MW!oD#d)zGSVW(+Nhp3h=s$!$6jmK=%vQf=ObsIHo)U>?>
zrjb0GP2U}OuVd1mt9?xPj(Y;Ng?V*s)V0Ama%P5~r?O)Ue3ZXZ5N^Ps*=TN~g^flw
z9=8#&5wy|R_D)crv?1Ae!bTHePoisZ?ujt@O>OvW$Ts{onym>_+qAV3UB?`w%}fl+
zglrJ7wwaA|`fzW6fquxD^m-EcZypI}*l1~kpp}i*Hrm+8v=J5@x-@)WVu-VBFvL9a
z&ZRKxIH+73ZEeJDBy6;^(cZ>L8>4J=p!03KVxzB(jy5{kc-F>qHagpQ+D11U-8r0o
zCA-+@N}1AWUmOYd3xu2ZOK*9@*F%J<r;TT9WK{Q)Bc}uyf@w9qWO&|2FB>n|c+tkx
zUMan8yta%lh4E%V@4bPsr=`kE!hLMKWaDKTcC-k6%T%Fqx_Z)msmoR0t87A-+IZK-
z>o)q?c-!XlsCa{ewb9?kTO4Laj?>@2e5HTR5s4Qg^lIflBu0FojdyGevN71kj4mN2
z19ORM!kDGu@z*7;5A^(dHr}@}%*JpVAK3WNhOxiIP$pH&@PvHdvduo)z(G;%2r<%+
zY(Bi_<!v3I=Mx)Q<?}ch_cY7?)aH%5Fu`aWV{FW^G1tae8{=$Dv@yxXcpIPD_{zrD
zHa@rUg^e$54E!jWt0D)>zBr4y>~QQ8Y<^TLi%ZAyP%<;0225sF*qF|N(34#JZG2<n
zTQM%mdkfTpEP8<J1LsKj3i3=F-`SXD<9m9kd{b&Ty*E&9bC_!y@eelobP2t=B|MvM
z+!78=_Rq61--c>Kv$4R&LK{nLEVZ%7#$qPh4IkCA7lw6i8?TpTHkRASx1rczpeev9
z)5q|0Wn*`oFO=8mOdFOB+lI*z*@)WSPr$z2-en`h!B#vtWQW>9$*zqUqs$HQdjlNH
zz#P8)FZ}ume}Rn^T#;<tw(+Bll{R+S*llB#jny_b+xXeW8XIeEthcej#!n(k8KcKX
zm0Bkjjf!QnIrfcQ0Y;@he_z_f?pFHQQQJ0Q{=WQTV~dULHg<@SZneSSGGUlh+c*(!
z_&BJYA|-yc@f&;G6X3-xoj`~1;*{gvV`Hz4V>XW4*vFjAPCIDhkd6H|4u}|0A$$DY
z#vhE`T8RgBUKr^4`LK;6qTi#;)mGt43$i#b=#~>UPTDwY<D89CHcs0(V|$mwrOtRg
zG7yyESQyarHZIt>Y~xSPh11!rVme)9T)05Z^z)z(*`(o`oGT)AuZrQ*p1*8d6Zm=|
z=LUZT3h_+=xY%;O+~E&_gW?YUXXCDodp7>D@xVqA2On1``mc@uY~1JAyO-e93$B&8
z+E72I1A{)`k(49{MICPr(l+KfQ;5+i;UL99s)I)yBs-udmy|1A(&5YQ`1h;t&h1Rf
zv+Fbmr5%)WP~Jfq2Zu@p#+67d>v$2Q60Y04`B1?@MF*7}RCd7m!i9*Aq7!I5{ZsF>
z_iJ0lK~)EzxcJmXH3!ul+;wozK@A5r9gK7^%E4m}YB_ku!Lzi%K^+I_4w^Zr>!6;4
zfa9He*LTpsL1PC`(5kdz8*@Vq9W-(vy_#NZW02>uk2`z?y^m+AO&mN)zJsP5;JhGD
zn0a}{iyfcC{W9K3=8NU?WCsL($GbKm;6ryofkO_zVVA^fkYja1%^kFG(Aq&8$6I+a
z9JF%0OQe<#KQ-c=V^1}FnGV7ZewRJ{JSYEQeK5;GwuAQ6?;yuPu7kD?+Bs-hC7o9#
zyjY;AypH1qDK8V)<S7Ro9dvha^hydZ1Ufn1#ZgxWojKTsAs$aV{7z7?i-Ug`2U+Y!
z|0oiV;X8`ah8_-jI^L-@uWLx3bMU-_*B$h8(97WmVPWkHz2bmZ3V9AbEuZ(2z%K~;
zqJusHY#irZO3+I$JKmKe&;PIF`TII}mE&a~#!0+D=(p4}_zeedI(Xl~2M+o>c+0^c
z2ZJ5FP3Jop=-?d(940mJOn%pIeqN}~o-5JA9Q6<f?+Sa~bHJ-z4wFnqmKO3d>O%)Z
z9el*Zb}-Dra0erVG0G7?1<r5sA~J8ApBMP4CyRW-q-v4+DFx<x7sc$68b&)9;~?%J
z;b1JgpeG$HbTHn*XAY)1nC9Sf2VXdt;9#PIFCBbE4Gw<W80=Ul!~jj1DX}kl_51R9
zlN?MIW1r%97ls@=4QBY}o$$Qzje~D_hsVM94pwF+PZ#n1&cU+sO=mcm=^$1<kE0_U
zwlO#-J^X`%BF&R|$vNM_Y>`e(m^lvSiaeYrC^<|3_QG&4a<JGz#6i@-5(i6}x(-wa
zB?e&`=b(dpPKO%l&8r633;j$dFwZpyx&y<3$<QlOugB8ARD(y>1vw%nOwm05aNTD)
zupPLf$DCg!Ufno!+S^5WFT%e-9#yJjOk^PaP~c#NgCopLhu=EKO8UXUHV3O5tah-`
z!6pZ59IWM(aj;GVi{ZF(H;Z#Ku}50(fWEqXT;gQe;NW`gG=j|zes=JSgDs42T7Xv3
zewxSLX)1GO@72I|2Rj_>bFkmRP6xj-Kn`|sz4}9DjCg6rf$tVmn;Dy(72Lyhqour8
z(3>4Ih!1c|a>;UV*x|o6(jN|}mi&WEj0Hg+R&_6*d8N$SW2*zl92|G>r-LgFPB=K}
z;JkwiTpJyncKE5R^m7i*2v7;0tIu*>JuCCzt)c(s_{-M`U375C!DR;x*A`!vlF1C&
zJuk>`^OBPWUv==8gTEcz<kI2by$eOIb7dHm%F9n)=iU(cF!xnCIxl$3!EFb3xZpde
zHcrZ2;2FvB(uT)wNu$SmcOL%XQovQkMLQS&Ik?Y7()AXo2h1@S<y@3^k>sMNi&8F9
zToiLr+(ojB&c&K8xSh${(Is3w;_|zh{#kW$*-*Y2C@E@p?Um-P@s{^g7ilg^KU5no
z!B%BllodtRvK4P-Q`>>P;R-Guby3AdMHiJ^RCWOu{Rd)T$0XJ&^>X(;mQl8GxGEQa
z7mvB9<)XTa8ZK(OpuiIg{WrFG$G?l3QuF?8{@O0;xTx#m`q%zw7yp{({=2IK#kPkZ
zoRl^g;rcEbxM=92k&A$fpo_;{G<G4mXzJn#7foDjKN)z^#g9(}ZdMA(mPBy>NY2m4
z0zMbA3%|>4n<d8IkcJ%%45^yYVUM3OotkEcT%^0m<}icdb6cclE}FY&;es+x&XaN)
z2Qpj`{A+o*rHfWB2r>mF2n*2KMVmrSmXK#vj*DCu?2*__gxh6#e+{&E(aS||7ad$Y
z<>JGRp^h%PyXfJf6Jz1xX~FEu5p~MwBJhr-(hxH^rg5;Fi%|EhW971Yx_E~2+x^e8
z$y1?cT|6g>^PdXc7#k#?Ow!leB<Hz!L4<Fxix*w=anaAk8!ldQ@v@6+mjkZ}`ih9%
zt1kMABKa3)W;22WJYE;f;`76AQq09b7w@=u%f;I+4*u;Mz{oz37%xV%sNrMO%m>mS
z7yp!QO5E{yxJ2L3lC|L>F5Y$Vo{RTg40SQg#Rr9{^`Q%<A5*Jifsgb-xWsT5AG!G0
z#ou>QMzG0RiCM?v;*Xw8gO;fyU5sKb#qd}Rqg{-lh0GimV_l4MvEIc7dfvrnF7jO{
zE<Shhg^TZ9{NUnC7hk#fM!4l`7ZY4ebTNsX&gtv#dC%DJfAGmJcHQy*`d>deSi$s9
zarrQwf2xaVLTt<KFpJ;1nC`-U$A8%8J%KR8#Z1nK#lG(ZC79*n{2d>`Y!`D}EON1!
zv*vbiu8RdO7P^?{Vm>qNOrZIxK<8UQQgTA;L)|h`iI=!o>SDQzwj(6xYzoDexwx_^
zz=OEr2q~v%Q`Lp$BIY9QLU&=fh`O*`m@ZDgi6P^phzmYw!N(i;q(sITxykY*+lAx8
zb&+)=z=tUQJMBFTu>D4WG70*`#cCI8T<=f$6`V~jRx-7&1t!kT+BsA@(n{uE`Kw$U
z`8Rm?kW{)q*1Gt~#X9EmHi_O_&{O7<0Aq_~_dOff=wcIB8yEXrY!=?$>SCLVp9TI!
z&@F;SU8&=yz;+iqT>MIdUHo}6Tz3d|y5N^nJ>SNpU7QQDyxYYdX8R#OF&~HELl^YJ
zKkGvKxvIE0=Hj@E-(CFS;waaOm~_xZ>Xs7eWr`kgamdACTHZ<?cR$3jjA4&A0vtP?
zKx<F9I7z3uI3pUK65ZKnC60*WI_u&bqv_&;;4>mCAB6ab1--#%68cOGUUYFujODVR
z%%VRTtU`QMfWKT6IaHL#4JJ01>liA;aMQ&tF4{2^i{ZAI#s6}7cX7wX|3vYwp!Wo&
z+J6Kn{-?|d&f~s|2VC$!l9IDiSu7GmQp_u^NXj4$<)o7qkD(-)F_ehmk(jq`yfpyH
zF)VDA%32mvVn~glOblg3ZCVVaWB9sNDwVKy{e}R$D;ERTmL;uHkIeFZbVj9z`5Rg>
z=HW^)@7I<$9xKOy7#@wGN(|Lws1d`|Sh#8o)r8oGgK(m^pB#c}15+9eOgZ1a#QPmG
zYQ<1HhUPJ}h@nmlbz_iXXc|Mk80w3LjRkEGL&F$jiuLnl{?qihV6yk`S|yX-`^vl7
z^+XI!Vt7(iebzoBwY4{$eKEA$DEngw#2^>8DpN0sRY6f~7DGsYbU~9=`=ZCBP^qNq
z&y~y&oNPf`#?UH;%oxHkv=*E$GrX>ORGXL7MsTtOWpnReFuw9AhTIt13TD;ON$mt6
zzgtK7sTexOurh{Kg4rpC4+Q8O!_xwEiQ(-S2E@=chHf!*kD*75Uw#R_Ldw|f^FJR$
zuNa;YnA<|1rFl*L&+)%VZinCJ=g~Wcmtt@>gz{o|L4X$p?IR?)zm-)KdpQO+Z`8Tu
z^bw`{#_(zkuf_0s4E<x?_X_(7`UYdPRpR#tAAY9rO;P0L%C`g{lV9%RKF5JE3=+ok
z^}_GOyq(ni?&@GFyzCz$=(~cl_?`go3)<~v|A#RQjbT^}!(*5uG>l;L7^cPWO$@=m
zLm$U5E{5?jd=kT_F^m+<F@lZ~baV{gUJE@41t?4~RuqZ(k<ia#_$uaY<orB_FJj&c
zwZ4pbFWU02P30#|NxzO^f)JP(!(=9N4FBs?a#9R@uQhj=J_Kw&Rmkv7*QM30Z#f;V
z`KAj!>|zGp9>aGr%!=_PFj=z&{XT{t1fcx!pHfJl`z4ux0&`=S7sLD*7Q|r0U^0j?
z??aZ$Vptx-B7qkRx<t^Wg7O2Glp)QJd0)fSVo(GiR$~|?K9Q*l&ataLG9xiWWB8H7
zxgl9GJdpfu46zt&!EyN0`K83FO8Ne{;1md&h=B*2vzAR(#Jmq~60mD>R>!c0>q7!%
z5?C9<PfV>iUX1f~qgc<>jiXB(8)DeVr6!K#I5x$wIfjcdT#Di67=DT2_Za?&VGFy6
zVOI>hW7tNMx`cMb@LTyjg6*RCYR~MQ%)J;Utqc9etk{_If)(<xkO}n6-V?*#82?la
z?Tdj;_6vL=5<0*f?wS2ba%rkM7{j3$j>d2-hQsW%N!tsf(~rEEeWrZg5iSTlvyT)H
z9*^Nf3}<3E8v~0cMenD`DWAt4PmAI}qbRjezIf5r=eQ6R51tp4y<ZUEtIW*HG5kqi
z(T5Cr3|DCnlSJtJi{aza+B5rq<@2te4N@~l@i!NLdd~{o7BVe<_VnKpR#89s6O&7m
zb2o+}anC>ZV)#dl@!uGBOey)FkfZ^$`96ayijjR;13pNna8evaMJwWBaTG7aCE_Su
z!E<uSI7-FwWE@f)DRHF6`C47njw6i%aXcDFl{m`8Q8o^Kz;{#EG}3Z$bb2L=fJgZ_
zDu}9zf|64yj>-a~ki+i_SB;|@bD(QlO)9UDS3QmzqLy>8O@%zR`f!8H+Q;JfyhXU)
zD}Hk7#L*y*hC-}v9QER;AIC#s*4}<QXaCzdjpAq=#}jc7KQ1Ugc}z@!CZZuRn>3BX
z7e}i&GUMDl0)HIM;%FX6K*)qdr@^?lAaHI{Gmmspq^Y#0MI0GIk~Xv0Qcza0mv9`d
z<H(L9hqlF$CB&$QRqXfVF3&}5k}LS_<7g{DJ3(nGYkwN;?;wg##nCa2?qg*#I|)wb
zI3|9P%wpF#y2bI^JHg&@TrL{uF6gsy^bnw@pi4$e&j`?TbLcq%DEWLGy$bQnw|sd*
z3H5y0InXDLm*Q~ah{f@89IwPNHjZ&|+-%UcZyf#Ncq5KinHcSYJYEyvb>>gc)QrpW
zn{o8_EDU`T$6Il{9mo4|d=STgI0nY?P8@^imXFi#_Q;u3E%RdK^uciqiR0Zk`c_V_
z_ELJS?3~^e^300qEWQ`Vuo1ZgAI4FqP0r9bDwfGkAC&dt#Oz@L507I+93RE8<x2L)
zf)Y@sLn52tQ(?x)I7Y?6R-*|zq>qVX=*Q`L>zrzLdULbV_&7d`V|pAj7`QmTh+|S5
zljHbb|KOKQjCX<);`mAw$@!Yb4-cMru_*Zy<2XJd_;^9q6nbW~f103E<Jhq<hsD`F
zQoo7gTdL}j%HpdjDRX+H&Wz)`IF?t-RO6Tx$M<n8h+|<KKg2ORj;RMj^XS{8^f__t
zzS=uFA)B1Jg5M!2eLh`LA&;D=eL0KbSRBXFIF>O7dZjOkd;9d~JqQuctdO@{jGAM#
zy(A3fi=rZEuQoYa9C{o^9A+HRIR92gM3}^WshrJ8kMzm0<8Xwd=DpyjT54k#@i-E3
z9F5~x90hT#h~wutei1hR$oWz}uv*}iajX(xTZKHTUBk%|$4_ybsgOs%ZQ!p!9P8s4
z>C0(YG5vmpJX*d{xO$VIn+2UdC`e%*TjJP7hs3cpj%{&lr-vy}BXcL$pFrDMJA*tf
z56k^kFn<%2wQRU2j=galh~xJ-YK{o*;|dT5UX<5==rws~L~!x2;2&`ujN?!ohq<!t
z3^KUvmtf?f@DU2X6|7P*kNDuM+~aYah~r)y|HN@Jj#HdCar`MvJsrpSI4*F2A_vY2
zDp$-q$MvLQ9`oTMP5mZFC6@&FXhLYu*c|qLMKu2_j%&=oLBXqBIV<K-?0OtG;<yvX
zwDwtli>jM(+~N=Af$XI7*~P}@w0PI^%x#f@1pgC~cLimWA}hoH#_=DQ?gUa2p62^p
z=MyNFzyqO;oFamsB<Ri8L(Lmy6;I%i1d<b=Z6y+(H!A*}$%A%MVaWuN9?xPiHGyug
zhnV@yYJxOTe4}Ds*#ycZP%nY{2@ESDmrno*Jeu&HBdU-<MZqM$k^q$jz4c*Q6#;4#
z)>ciRS|P4pD8p7Y1%8ZHB~ZJNUnhaO0$*tV1P_WeNT6W?FC_3{0*w-QJb|_ev`e6I
z0#78+B7uwqnk4XK0&nxp?1D;y%7Qjcz$XA}$5hPo7vfndDSew|1rrD*kWN1gZr)7L
z=7P2x+?<@WFS1%D&?<qaddt}fTsbFaCeWIeEcX+K1t%*nwN0VUtOP#4mbvm;W)96O
z9m-8$V5lTrdUat=`vf{9@Js^FQd<HY>EQ&rC$Phx)hU5433N@Ma{^B%5LuMdCM|_@
zPQ|?PeS_NvHK)wII+?8+1$}8LJ!ns(Adj9LS6a%4Z)ZQ3!1D>zsTX{qL~HWDuawPk
z^-7?30<=F*(E07Mi2Ee)QUV_)Ff@Ue6L=+ow`e(iTcUN}1YS+xHGw%a9<L|RFM&4_
zxX%y$waB{JIJ0@(%r_J0pTM1zl&n<m=o`u!z%eE;B!PDmcqf4igPIQ(bWoufWj_4W
zPXSgv)cjro?<eqq@ZKYNsbt<rNg0;F@B~IDFeZT!2_)KNeUiYZLgu3cK2CtWw^^G_
z%D9Xa4&UE6bCd`cg%9N?k4<1)0uvILn85f1K1<*$Vf^PJ7GEUrWdbFBF3y9YS=Kvs
z&#0mVUnjt!O{ts}ub4MU$WKWiCTC3+m}6(?e~`1Lvd7dE^1tQeN?^bi4BUbl3Cv93
z-fH}_8s8-_D}kIJk^3XQPk5Kc0}3#(06%azCA=>%&Q4%X0&^3Xm%#i4P=H4Zupohj
z37kmaWCDv4Se(Gd1U4nGB!Q&~xU?jJWeMcI?c-qxuw2l5L6rp5!dfi>y%68|Niqv@
zB!Orlwgj*fa0)s7cSv!8R|}db<QF8cq7eTmz)C?^3Hocryfp%>6_mF9l)yTH*B5d&
z2q3i#Zx&#;pg$+@ivU{$-I2gn0k#QBJ=+;Rxzxk)?i9>l1^q37U4=5fCra!|U~dBZ
z3OR=a*q^`w0e%<skHXr60`M8s!vY*B<R4AoSRp>1@E%fq*zc(X{$%1Ma5{lALg1{R
z=Mrf1M2Uwo=LP42pce(bl)z;HD8N8mP2jHtN)>pqyOzLpQB|w}Hxl?ef&U66Zwm0g
z1a1j%yO4i}Q?;<KyUa1c|3}b&1^uRh{Lqs7qWB<zBBHM(L0MH)fVUqsAue8k5~BD>
zVQq2&pZW1@bH7P`s3)ZWsRc+YK<Pr63I!-5a9Kgi30l6e_PhVQoUB-YN`g~aP-nI0
z!zu-+T7ahu(4_#?3Q)ZO;R3WSK#c;_EI>0M`B(vJ3E(S0Z2=k-prHVD1g%?udIHoJ
zlxi7w(ng}#M9{|z@c)?l4lpT-E?QX$8$j|QDkwogdZ%Y*M_6EGcLB*_A}mT0kf4$g
zB`6umlB1FpP!t52Jkw#O8w03-3W5lVf<yrU1L2*%{PW)XzWUC0>ej7v>sD2Fbx%(N
zAq@pboNPdaM#4!HA=!e(&o)$rxKpVfKfEcP<A*QB?bAwQ;Z0JKTp>*bn+Y}-{o!gx
zi<C}lKk|haq$GuRiC`-~?l$9zRB9VP+6r%%lC&4n!H>J$eA183ehd`hQz@O^emw2R
zGZKB)kD`?PIU!yA=$evr6VlxecATbQ=;6onsni$z=qbEcN-}$#yHASu74o8BKR@~l
z86fzQ9}FyQ%0J#gLdXaE(ME>muXmJJ{Fv&;G(TSTW2hg){GgCwgdf9&zhBGE=tw_C
zNp!RzpHWgcM)+%YC4#T}@rICbg5w3LIYG!oKi>57JD*M!ll+*RO5I&L^P3&6DSo~&
z=oCBMj~RX>{7CvS(~r0P*yhKFe$4V?wjWFVSmwtZKj!+ez>jzQ;De#ikt{yDndb+e
z3eESUPZzc9JHF`O?uC97ZpvHY$0Cl-H?GBk;X@wsq2GF##7}%I_hYpmYy4Q@cOKBJ
z6kH|9=(J7lcl~(Jj}3loq~^iAwSKJQe5vc+&{eJdp=-TxM*Ch=Hu<sHj}QFV;s+m=
zz3+$B&#lR`6-FO`nm)_DmF<tX7%e?5=OaJ1`w{XZ?8nD`eB#Gve(d2W>{EC6vD1%F
z*^G}0mo{?m@?*Cj?!8L+b?zH)`?k*WQCO~RuHTP<-+6oFkBUVxK1btfa8cR2TB$!Z
zhYxxpenkB+rG-})cw>IV{m}d%=UXVc9|oOMci!{in=>>BU!HVc2>D#$*{|h??Z?&t
zwgs@)kI!l902T)Dg&$w~(K~=X0Zjc<`O1%jejM^+pC2twdiMMAHOJA9ldq`<{1|j1
z=UWct3D5I;)P1Y+NbdaX`Oc5;>45>X4d4eq4%00IXcfQ_KYsM%s2|6;&z5k%cf`}b
zN6SAR&;QAf<9;XsWC!rGA1C~{?Z+Kf;m0q2T=3(f=>O`+86l?xe-r#&kfog#QnO0I
zA41Lwo=c^k=X|fzoNAXu@|Pdig#78pWg%Bmnpf$N4?3FHIc3^8?fln|8<P5WO6MOx
zGAk7^iQzvH-W0s$hyQ*j?>zw&3!rKM)dENh;NE~!PPqVz2T&q_(h@Bxm?2n7kUHrB
zJR&7$rX*PbY%h_=B!)5p+?SG<6>_FZZutNz1W-|;NTpT^pmK_{z$z*3@14eSss~Uj
zfZ74nNXcskaDR$F5OD5~sP>>p>IG0gfQN+FN$J!LVD!+OyRE8WC=avQlGH%((Eu6>
z=`_|$okqe-Y*Fs&y8?JDfW`r+BB#(DfG5Sh0pz5(FMtBEMw67}aUr<@uvJZkHw&P7
zDm5<v8iWP55J|pZfnZ@uXXan&t%XNwG=CyRnB~9`Pdj!zfE^F;gKX#!K*s<&2k=w?
zEtk9ZXQ-V5@Rn)G@T3q*o)+b9g3R?y0M7>ST!4RllGnRZQJ0jwYXCRb<x!!#NSLuG
zfF1!9uFI#8(HDfX<emW>n_ti?0N-S%#=Zf(7{IUqh6m6ufI*|x{sDZv+(**+jEiJ|
zL|+mdNChF34;C^cfR|H}SA@JOI5dC;D;27Z2w-FYeBWkz0HZjd0lXf-8v%?7;I#mz
zyVAx6z`r!ApYN)sDT%eN&{fxx!LD%uj1TZ1rJW>7X55!OA%G9oyCw>fyeUZ}lc-rN
zn`)B-m?A>*sY0d&@KL*ljI#C_(uSFWZwt;6oGmy<aIWAyq7dd<5WovJ6p}>&EDm5z
z0PhB{B!I1pl%?#Tt^DU#I`zq37Qn4K&6f+3tO#JG@Ku7V1)q7@o7T|#UVsOTN>@WU
z-alt;0P6x+&w=oIHV5#202>0>DA7#;Od8;&yw8xlUJX1XAJCcAJd!PRm>qd<Rw^R@
zkR9Yq528#E+iCUyq5;GL_#}X?i<Ei0TwzPy5x~v>J`G@30KovRH!0X1z-IyM3Bb=X
zho`raKzV@c=kRn&%H<X?%0IUa1rU}jkpL)U>hxndOo|7f1@LbG{{^52U<9x)fc*iO
z0eq9;-783v5RweQ5@HAN_Bk)*8#26~i{y)x=9d9{Mc2CIq~>RMzotBZ3jtgV;M)Ku
zTAn`w_{s7d;IIa8D1Zsob4~<sGJx*__@3*(NR9~}7Ca*Oqac-!as#T7L-JEfa-6$>
z@O}5CQ_k>90H;OrYf9%-0KajfNwj^99EQ7^XGC(aw$r4u0i2VzRk}atJXfT>9tv64
zCEE6L&y4^!fA0BH^e+ou3E-*_7WG#E*MwhBN!C;<`dfJO2Xg-58dWogMct(T1fX1P
zUOb4~9Eg(Mdx9ty#2w*-ANNs`7R0ee-W`>S?hWFD);{vUg;F;IN{Jv!22m=ATCcZc
z30Xm;2ayp(X3!~+LLNhrWWS$BY&*nzUl3)3s1ropAj$<%K8T@58oaRHTY*`cHUI7#
z^?@KN3a=zsSrCF$s1ig~;nh-->Os^HUNeaMgRm+UQEh!^U$dutwSr)Q47G!JQ20ZF
zpN>~3%$TLt3nDuRR}l4scsPhhf;iB|`)Cl2g6QJ$HlQ^YdmFOjm5M0ebI5zUQc;D<
zMM@AO&BCjyR}I1)MDrl>g75_44Wda9xg?c~a)M|a#N^6Fz92eQE_y78L6wUbcK?^Z
zT1e9%ejVpqbGv1;ApDh!$f<U)a?#^Ks7;&ek2Nn4(jtg_A?GR=wQt(I1d5o{Du~uW
zv<M?Vj3<I<6GX!h9u1*w5bc7v5X8kG+6U1gh+q&QHXw*jLCgqZW)M#X(K(1$Y4#wV
z3gYP?dIr%eh-ZR$Hi#mIu*&dU5d5rJH`*a3=^AvttI4G9lC<Dfsk@pzf_PqZUPx&!
zx>c$-b%NkGy@v$RH;5NGYA(;fp!1FKe!>R?(O-z(%}3!&L6A^~oFDia6vW`5^QE=B
z(U+wtmi7v*9ac$((Q}^886Cu!Ack`|rYQ^~g3gDzMg}qJE}5qAv*fQyE#rb1FJx>G
zuM1&aZwO)46NJ1O#9Kj3ObMwli6a=qw3I$Irvx!IrNHloQD=H8m92d{h*?2w31X`>
zX?76Hd1%942Qin{3u1l{i-K4j#DbvnH86e$>>Uo-z)X^bLEgYBGcI_^mjs<pge?_3
zIWUv*Wo%n_N52+|RtB9fjI9r1LlCQiSRKTgAl?<>x**;Qf}b2@SQ`XC=T5?ps}uP(
zRR66~8(E!^|Gp@15@b=EB@2~55J~7(DGIj<|2T+Gg7{GQM=Aa7LRkI|A-jUuEyeB(
z;!}~_ErEr67DOPGYmX4W)Wsw=i98%cgi|tz@7Y>Tgwe{rAog<v|IUxm0fNwi_}ozS
zAd;Ng!VN)FFhR2n%%lQ?9mJO++)LzqpI`c}{0k9&WT;;Wp^#a={xtvVAiAx0eH-K(
zq50nk4o}NFAi{%!hXhOZOQYHkK^zX^Ob{Rcoqr^VAGzkdmGfH=N4YozaWaU)Uvns7
zIX?w)JczDoc}^9d=Kn03CxUqY-aIP&BGF$389hY@b~Pno_&tczsb+M0u*4ry`&q$r
zf^5clF1FI1OY|SEq9Mm(47(r8x*WunAg%`S7nk1<GDEl~wXhBMgm68G8xs9Hh+ACN
zg7_zhe_3q3GE`vg{{?YV6xbfN>W*-xGU={Pu@KTixHsf<oS|e0#Y0ZxON1N)X6?#n
z2N_C*kS-GHFf}WL(jin10U^-5WkM()a*RWMpGeAvP)^9-b-WZ-2sxHyffYljB<0+V
zRtceM2oH#)S_rfc>#8Y@sZJC^37f&Z_lp{PQ7eSnAv`Ei${z}0dc86%kb#7Dt1AYq
z7s8EWN`1kHLwH0;gAl$s<35?@Wm2OMln};-@OlW@A-E*htAc6>kB87A1a}CY5cXEg
z_J+V$ahiotvY0zZ&=<mELK+J;5zGx?#W!kG;ryvPm6@w~2zipdV%ajK8+!6XC<x)X
z5W3KeF10X(jv)+Ksk98CRS2y^cp`+xW0dxSZ3NqfFyxowSnO^mgsF^np#2xS8GbHP
zrc(${vI<dtTJR}JrDnfhia#TgXGKyls5ymQL#T5>=@&wOnmvT>ArytsBZOWd^bR2z
za6ccy3n8@prTFePX~dpX_(@&iR+-c%guWrXC=w=7LLG*?q{Tn#fDi_UuwkF_Qiwn3
zQ?A!{52UZwcMlRYx4VagaJh@BWUDWW+AD&53u|Zy!$N4zlPdB5;USC&VPptXH@YV6
zc8v<5>{0jV5ISshQ8Gs4uL%~NalaA5xDX;CL}diWhp;Gw#UV@xVIsR0^u9^W5T*%#
zD}+fQOb%fRjXye_g^vq*sZ(Zd`gA7kcCm`tA<PJ2W(aSGK=~}uq)y`##hVOnPBKSY
zGFNb32=hZ&Ae?#M3GuZkrx1pPAw1mDL$V}<r6GJ2!uAlBg|OW50q^_bkSjuXH-r-P
z-76(Z7hM&?>J(qYk!|gv@VyY$hOkaFsk~9hdch5B-mr8EH%WAJN{2$$@<9lLX6J1Q
zVQUE6SXbkMj2BB#{$U86X6H?so%eAFpM>yTo2*-7vUY^9lQ!fSjq`pQ!uO4GS~n@!
z6T&^+3U*0!cL<*ep=9M*PxsO3RG@MogrMXK2~rXkGA!hcg%D?x!YCPr7J|;YSV9O!
z2y^bq-Y;l|kf85{U`g~##~HkK2%k%od@miKZ5GKFlEjRx{VPe`Cs?{|7KLBaZXqz~
z+Yk<l{D4F$Va7uuA*bdKAsi0j*APyHa3qAR@!p>WNq!V^RPa~`Kc(cyLoh>LDx643
zPKNMHiZk`M5ZW{@xJFkG;r9?uhj1o@KSH<=!o?8IO6vJGS?5Cd`_(LJGMpD-$zkc2
zgivxNgg<FIiSC=(l1UU^O{M-NWO|)4H&}@9J0bj&O1&lI-w^%_;bsUgNflIP3Aa-^
zEbyK%|4<caVW+hW_lD6@YAG&~yZqar^HyZ3Fw(=w2qQBLR~Tv-Sz(k8<Nh!n2%}8c
zsiJZi2;;sm%1ZWfg5|^5qZKf<LaLUEVN?pEZ?1Z`M^!{#EsW}6R26>LCN;vi+u)kv
z|7Rs8)e57ws5J=V!7v^Q<6()`38Stwqh1(&niOPePLEi1eTg;?dD(_XM3Zt>-7t(t
z!)O$S5=M3yLlXIS>%H45DzgN4*zx=(VdM(&gy9uJVU7@A7>|XW-Gsi>SO}9Cnud8b
z>*Q@F_<xh~B>H$5g)`HbO2Za}u_}z!VQ0H9r2WHa6-H}b{D-k1jCa`JFxrMOJd6=x
zv<rjV){|j$X89p+`!G5PA@3-pQy9Hwwq*1v>FM)fyb#9IVLTJYvtc|J<}JYg#=1)w
z-BY}47~Nz<?plUO%lDAfyF<{E#nQH63>0B+Du?kR4VxMxx=KGu>WZS)!_xZ;r|}2S
zVPqf%iR9%lUI}BcaMm(J2u)4?s*K%G87xMJNt8((myuzN3S)8@Q^FW62Bc3;3}Z|f
zuZ1yIByR}5F6fwjX4<$g#!Ga9V2y4CT&bAEyl;j<d`oZ=y-v&9e9FZ^oGK&ub{Ny>
z-s7DKK0S;XDLyldrLz<YXNlVEFy;uE8^$~#^a0i~U-(cIvA~64EDB@gq=MPa3Lg6}
zeR;lnaTvrUVP^s1BDOS)Wt4Eln-r`NTp7kM$6GS`PqPBznlRoC<DLkLMev?D$yZ_Q
z3-e#Uu`Z1D^x>KA55xE<j16Ht^@e+67@NY_ES%9TLf#krAdGX5c$y4X8McaKo1kmE
z^2`~}_AqvZu{(^9!}uhO9rT$qo{g8?pN6qhc-FJ-a5eWs?Xo)jng1Clbr^9j<6$h}
zP8~*ANI;O1ppZ})kr&;JM#6}O5ewtg)qDmL%1QJvj4<|w@i`3=Mj{L=3_FbE|ED?P
z4M&rKaw0R{C0~T`rAVmEDk$6^#@At72;-s{>YFfr3gb9OIgA5g91QdB2}e28C*?7G
z7slZf|2~W#gug9GN5UZaQIO<r(lLpW{~X2%I%lo?-#8g*u_Ethxw)q}YQle&BuXCm
zH~ntX?_rz{<BViKE6Cdakm^|4xs>F*kN}D<N#j|<HMaQ%|Lx1c%Ys+JxGLpS@>dui
z)Xt~c^)POT@b54fy(yai2>&;X|59qqa!Z7_1zj)Y-Jz@0%BMUnf_o$A6G7hyibqf)
zg60wAMNl$=QW4aMpk@T=5#0LGRXXDQd)?K03o|140Y#Y+WJT~?nU?2kHs2h|DHFkc
z5tNOfTm+RPKm?!GQ<Z6I`3NdRP%(mb`&_^8R4a*`q*aaF%P6YCG9#!S;V-GxYJyo+
zipZ^=IgedxvcHA;QLmi)BX}T!Chul9j-VC`AC%WHf=45$9l?VUJQP8l2<k`ha0KHA
z<kgL!9+L*-4KAHqZ9(4drFrC!L~yOXr+$^92AoQ}^S>y}n=&ZxK->IA5hxMlMBt0y
z(rs^c1TE8ZJQ27gN{K4OO>E|6)EhyW61j&;dfVKaGvs&g6Zhvl#@>D9`Eqv-aa`Qf
zB!b)sNSa2_EP}VTxX4Go;UhjCL5m1FM$jpOd}5#MCn9JQLED#d3L+?EYLy~}mJzfP
ze$QfW>j=76DI(b)QQAiEOH|oDOC@g?0kM4q9fUkI-M#4_Wn&rllM(cY;Q0tTNAOex
zL#q@$%>jy_O9anI^jSg5UwNdkgtt{!mQRI^dEFx5ze`X;EE382rTiIP{s7zcLd3al
z>>WYR2pDDPC1l632Dt9}V7u~S1pOk|6M;X1{!EHsUIg<acqxK`5xmaq_j?XpQU<Z=
z2!=&4I0AjTIz;eg!B+%d6=c%PUh41&Mno_wg3%GIU+Eqh!J^e_WK`)h%iJB;Wsr}F
z;I#<G(w^%wI<LzhQtfWi8?-+?ffYTFd;5TEZUhsAPmJJAjz|Q*9#UoqP7<6fI7M)(
z;55PMg7c~rQGcfJw*_Yj&K8^_cvq8kvBm`vyh9I<U{?eS+3X13<<iYwR4G~<!BW2V
zBYcTqv`W$P2o6;#S`op@2pGLwrD#<It0SmewP;NQnN^FJalxVjlIB&5p08T8HiC5#
z?4UpMvu~Uf=iLmOBiJB(V@k3~$fG0G_apcqf-R!|VFVvVu$5EhBXyf7^xW=Z_BSUf
z+eLvdw0xW@;gblaR9BhGigt1-IHL@#qV5*Iy_MB`?LE14;LjomRPc}lA_zwCT?F4p
z5Tf_aR>ptoibpV}YEd|X#Z`+U>>WFmRTLAXe0S9%jUyg`5rG-OKF5=hh~S&5Mac*(
zAuWgIGipchRRmu~us4FwBlv=obZ9=K>D7wPRV^akRilK2C45b17XFPCQm5MgbPhyt
zP~=oQ#70WSMWuZ|M8L7T7Qx{NjzsWd1V<w{9l@Chjz#bj=N(5mf=Gj$R#UtT$2mi%
zcz=%Igb?zR5p=6oL{h!bcZ!P`ZP>_B{!J9DLu%&5Ca1hPe?)LLf(sE`jNlyI`@D<#
z=ehb7`ZhGk`KPUu<x&KHO43y}qixP*I?^`p^ChyGbVW+L@rL&=Q5f;CmnB^1LS4f9
zdxrN$1b@@uJ97RJB<ayV=O))}j-!dGCT>S?hx1Xx8yfD3qF5B=W2g{AS`_z2u{4Th
zQ527&L=@ek=pJ>hNJ~a>e-sZyQ7Ve`C~jZQ$%vw26s2b?nNehsL@}~j(S1>rjiTQo
zUm1xGZ>E-G;ZamzmKDl`(%vDzsHN{IAbHQ1U!s${QWTY=KonJ?s4k^djpBT{rm;_4
z)uMb?Qz;md#XwRcig~rvnj)kECAFfc9p(3V&^U^<apl1%>P1mMiie`;dQGV#NK!Y7
z{!Kig;l78Xcq9rXitH%tYf6JC9*tt?n4BStT@9n40t;yr#Sg=MmCNzR#W}7hR2t{H
z;)}v9rOi+C<_Pf!dIgo0Y0UfkZS{pdSyXNkMQ#*rqi7dJ(<qunQ5eOl(K$?N9>wEP
zw1^@vigo2Y6i%9vkxvVh%Vv8D*q9N%mZNi+^v*S<rQ~WQNX^z!JR!V|G@cUo7~VDH
zw2z`?)b$KYo~v|-qGJ@DqF89EPYOOAMQ0(SCuKer#iZdrCS{NCu?psTHj3vYJ9!r&
zU8DRvJY~v^j3OCyj{C4EdPMPj6fZ>4la`EP06k%a@5FLnuPAy)(I<+&QM?!hC4mOs
zCXeOjY{<5S_lx3hTc!LZN#&E=AyEuu`}tg0kYsQayWVwEhp8_|@k-Qr;LGr;kfDMv
zwI~=K#Rz&-6r-Y;8pX6ICdZZ0QA~(pN1OaHQM?w#*eG6)Vq6sCY0@U%H=-D`#JBv<
zH1cwn(`rx6=(W_9Jnd?`)HgATH=}rqqtG~i5{rt$drB>zQIMRLx%a%6VM-Kt`Sd7e
zL@_&xIZ@1vqTzDi+w{X-E*5qEfU<CmGK(%(;J&Ad=W@yHxlt^j0jWTryx^r|eiXw`
zD<s!f`4&d8IEsuVzC~<jRS(0kt7%K5ky%qSs6cBkkK)@X4n(mcij^GhC{{=DSrmJs
z{G~JAjiSyXbqD*nS$&T_&-RO?+_weIR}`#|Vq+AWqSzo4@b^JkoQ9i4*_@$#7{&X-
zKM-UITZC+lVw(__K;cJGY>$Ha9}BkXo<aTzE%1<+WM>qga=fCT^7t|N6z=9&cs$P>
zOlQOVQ3N;;lhnOY1UaE-!zipM!cjz`(4#P-h_d`iYCMW(Yk6XVBrTSz3>v4#Qk78#
zGm3<0esU%4!zmd|VlG>dsog(S>n`#=JkR%e6kpK2>#1MT>{HeKQG6A}nF*yS*~dkR
zHm|2r{&f`Jhyr=qS=YfR4vBmJ6UBE?e9r|ZiVIPG>QH%WrSFF*4oC6%W*2wBBT@Vq
z#nC8^$vB?miqXvdQxw0gS5HK7oa7Ic{AZC|?vvHysH<lg&o5E@8pZNzMW>{eQ74t(
zB>KA`<)_)m6#pZNv%=2_?y6Qqg|fPGF^a!9S-w&(MX^4l{7J*!Q7#K!5oGjglqahS
z$u+uMh3w9&mFq%o2>vZNbC&PlDE^D$W)!#RNN#s#3{^(v-xgk6_#H04BlGVOUW~hd
z5K8WiIr=2T62eQyP)Z0T=`m#dUtZ{;T2>6DV<;2DeW?=4#ZXrG7ZcPk!wPkt8l_f@
zp;8R3;%FU5<romdXDo+mF;tDAcMN@Es1`%@81iE%h+%lXS|f%!G1QHrW(@boaQ?9J
zKnzDF=R6cctr)(zt<;X;!5A){aWRQelJGO?pgF#JF@9kKd^yb*!^1H=5`!xSHHHQ;
zG>k!EgJ&x<XZs$FVN}ojMln=g;A>^&@2^(GXm$)6dgmR#&-;6|qRy8UcMM)p^Tgm}
zvGTj+t2r_ByzNfT^${PFiW<kzB!=9W^Mc&tF|>%Gsqkik%?0xWsleTkKaIR+g1g!*
zU&hwL!Wi#lmCi9d6+=s!NTRJ{Xe;CiK`OKn(yo72yBONX&_SY43U(Ci6hp*P`Ydv6
z&cG=7(=^lswOb6&#PDnktIiib7eiMeU1Iorxcg4EA_^J$wN|OwJ%*wfdPuJ41$)Nu
zf)J)^>y=(9Ua;TQH-;Bum=nX?82ZJ~KZbEJjE`YJ3@^nnBF0ZKU|<Y`Vi+28*2ckX
z#>?uE7+#KHUZzvpD<XL{h6AnC>kq13>N;4ZttWG#Zy0rUxrWD3K3DCw)%D~__ox`g
z#PC`S-TzD*O=DKhp>S*rug5UN<9;KCt^cWqA5vRfc5uWBA8`V!9+NXQhG{X3zO7D-
z;msJ{ieZw-C&$1YoLfJWNT$S`D+H41bcu4=vtrH##th+%&Wz!0;k>$FbT(}`I){7r
zxT~e+#V|jH)iJDzVF7z>s;f9<&M4y!^J8LI7{j6%7Srn*xR(o(EQw)h43G6ISeBC1
z-lMJ%zLNI2P{=6N81AHJzZ=7QF>H(BLn(Hx;Kmr%30W`5>Ndpiz$}GilSnqF<nPDu
zK@3}HACCBD7Zt8vaMW1xM=|VuRjuk(8QmVk$6N;{sGr2JQwaGE&cQtj$)_UOCDGl&
zSr_I07y>b*$B_|7FosYJCu8^}hA_P`28$+*;n#L*GzL8eBZe5~W`R4-X}j2`aUEFg
zt9HTLD67B}Ig_|MCxj=(XP88Vy=-|5-^B1O-H+Z*7hU7q7sFRE9NOY~f4+}Zv>2Po
zt)JQV$M7|c(>VW%=HX_2Acli6{1n4+D#!30*N_<AIPYDv%=bNqY?<!|4)jtV3BzHL
zJesRg;YU$BDtJt=?P_26FW1j8d~#4dA&qY`HG^GPdo}IX7*54-C5EdkKd$^n*NWjZ
zM}LeGO)oeT!yhqRit$(5I2*&c7%p%@JD{+?=easH^6=7v{6NTcF~;xmxfs5io;hK)
z@1t{tKfL3+%$4E1cR{B2uNbbya65)OF<h6zS^j@9+z|eEO7c$(|E74w>rHM7za{u`
z>-@kL7lrr4Q6i3#aTJRqE$+1Q-Z<XuT39@eQpZ(Vk4WYFW1doy`c6259idug99ePH
zjiX*1rQ;|QM<p)laoiVo<~Z$EA&#=bY1MLZ$F}9;&UpRZ&RsE%mzFw%RsCDf{5cBZ
zxIc~u;;0fw)i|ofL17IFW1i~556n`!oL1T{^VMWU%Y9Eo)LL=Wj^m*?*qBOld=Ikf
zCSDfKjE$E0*snTq5NXW%aXids#L*;<N8)G@cMR(hY$(_$jz@*i!QPtYR)l8@x&+lY
z{L6f9;mk|#@=CqrIdS-ChyAX{MAD-$pY5U1a^q+kN3*!&er!YYxa0ivmV!9);&@!T
z)*_DYmN^a1mnbu`zx08^I9iIKCQrzuou7!K4GWJW7DwAS+Ql&`&I@3)kE25zz2fLi
z{Z+n>ade8~N#XdapmQ8g#X*vG)Ae*5&&1I!j_z?h8^?2TbY(NXE9gR-S1%&@ewB~N
zZHUp{<1>rmpyc^DUSKnXGxhQ6MY+8)812acn&o35#6EHKjpOw=-iYJHIQqpgERNxE
z^q2An$1x<10UT?obYL8p7C05L@IjKDWX~$!%W=Fa`sA;~L8K1DP!Y08BjOkt$HA6`
zuL+J4923WAA(Z#5UUZj_<w&(GWEfDtaGY?aPKaZCO3vuSRIWFLyd_xsQuirwOpRkz
z9INA)7RU5B=F#^g;|#%>f;1_wDBg}c*A=tkm@R~SP8@T^R^*AZg$q*hB|_d2To}iq
zlzed<RHO3Jlw?^P%Ts(s94k|Nu${Lij(6kO635m!-jiWnOV<)IHKeQ;%}pu&4MH}?
z!AlF4&#*a;_fx4K2)UcIEsoD<a4F|Q!H?qDE`;6uSjZ=WI|O$Mek!;tj@?42nZM1&
z0{v2BSTMj{KuAcCsT`w-@F$IyY*IW9jgwtNH4S<kMjXGz@p~L5%@W6<IQopv$rzoJ
z<hl`8zKO%)&N4d379`m#<a5C<;`ma?SE<x}aqLg=uQ_T`)VFaQh-2WS%!6?>T9nT6
zxpA|o?>K64{1C^eYs#@Wev0F;a7K>^`7w^8oHExGN_bUpJdU5Gd8gtyAqv0H`FCeB
z^(2RBxR2ylQJ^wwVPNX%IL>f^)o`zdKjJtW$K^P##BnZ;^PCsb%?n(_%4PF@{9@d>
zT<J3-qxYlv2ghgr8AtgMzROb7Ra)t`dM%FYlI1T>vBfU!G4~CT|076+zlBU`mqGq-
z9REr5W-9eo9JhtvNlEU}P)u`5W?+HEHI&d$T0<Glv42So8A8ZQX-L<cZt`4(%9$e1
z(*D;BO77E8Rzn316*Z?j<usI+R3`B<i6;!SIm@Y}$zhA;3^Xsj7@(nw2+3<-Nvp1*
zhK5!eT5G7O;eHJ{8hjca&`?W*syRD;Z4D1<XrQ5?hKDrN(ZIdFzJ|IQejbulPeaiX
z-_fPM&!)Mz?sX9#=8;zw4|N_9&At)!Q4NhWWJ_r*u<jBcQPJ>xrR;~-_*@#e_q~-~
zKy+*Hh#IqaQ~F0HW^#FdOhc}QrWzWHyon&Qur%KCH`DOAh87yQZ8fJQm-zAo+t2pp
zOEU@t%db<|For@6Ek(i&n$agTw9(K@LvIajHMG<4l!m88p}mGq8lDv1K|@C&JaFJ%
z`EIc+9(Qz3_4ncP-e)vCtKm5fT{Q5Df_51BZziujx@zb~Luu%tf!kkq&DpA$dhst;
zugV3_YtFS<PtCbXA$dWf+?D#e)l=Ow`e^8@VW5UV8eY_#i-!RkXlg3=)6idXk>^a!
z<nH#8hVAFQFOJO|On=bus)nI7uZCA>J=q^Q9L&pWeku>sFkHiE4P!KL97jm8BQ<ak
znM$=$A{jBU@HLL$GT&IXWSufkMw!<Ml#J6bUV}@As$+tNi5jkJxS`=qc2mQb8otsn
zNpp@jKh>~H!(<IpG)&bnO~XnJt29j4kQlAZ)i6)P3=K0iyscptN9VkEj)vKE?<QVz
zv5yVrwGFQoDd#!Td<_fe3F9)CXn2P<(XdFvVmh|&p?MkR_se1nX+WL=J<;F0RKqe2
z%QbMk%)PGX7y4ER=cyDWt2M0Auu;P%PC5<mX;?3*^rf{L)=3L_*}xH}-?FuIxec0g
zg~RGLYj|J7hm6v5mia!=u!TnBe9Tp^uW}|uuk+4z+BOZ}9V%pWyM~Wt5Lp_H`3cJ(
zl0_%v<?arau-dm%ke4yLIS?B5(qaR%_Rxl0!`a!XYCwa1&>ayZ2?_~m2n#7*U!^cA
zJeJal3(@GDwLDBUG?;8dJvE`h(wt+Qq(mwCW=e*w;q~f8>!xJz6o`k7pKH#+;}?SS
zcNgr_uwTPj4d*m`t>GIkXc|sy_*TOK4JS3Ycjq1CXjaHRtl@}|L+rZ{3cnZfgJ7BL
zf*<MFUn$20k7_t3<YbF1clq3(=q>l<GWBN>o)9!@yD9labIxiQe${X)#edVl;~EN+
zmDDrRjJ#%r{Nl<VqOj<Qa$ds)4S#94rr{!2-Ry#E``s*%I+ry3$sVP7E(?-e5ptD&
zbwpvb$0hgR+f7<8^6}t^&iuEybXnbT?0+=;tKmNlH#OX%L8fJ<>&_|SZ4JeB@Z|6g
z*9RT%)hR5dJLmRkI^G|xjtOMkD^W^#D#)Y161sCLSW-tRAv_Xf^wF|~89Fj`=RlGn
zOGoJxFQenW6z6GSIUVJ7RM1gT$3tv@jv95<N;(b=a@W*RSqF4f(NR^$vPab#I;!co
zQCnS9y{Nj5!k!tEMmqev>fXN36-E~;_e)0p8}b7>#=qmMrK7fveV5W6)SbUbW~e-*
zd0id#7=1jyp^o}Gcr^X6j+VDw#wYIdLJ!F!R4A3*K*!<U?(3JFzc_qUckY@S2`W0e
z+*Y%7xPDT4>{s17JUZGMe6t!}o!?r-WgS;^_;fs`BP6D7tfPsJp*n`?$kowQ#|t`o
z>S(5;xsJ{{p3;%0<K@|IhC&^W3vZ$0!y7J2@^#eQ>?+VPc1~XF7LHC!9j!#Cwcrzi
zZ3NruNPi-?osRYr?VzKRj%-)cZ;q=Sbr6~TNg<_{E96h>{Bb3^>gcB9?LP{i)$yE;
z3sZ9HG%Mt>VYH&!MaS6<`8;W)%XQb$LkCHbAc<93B|fj?)zywdFCD#gyrg5GE(c9I
zUZl6^=&L&ihNxe7_sp=rjsa|Ep{MLM=Rm1bXEnCM$MdK`x^v9+ijKiTh6qyfvW_;Z
zoC7O{S4CL0vpQVI2px-bEY>kn$0!|BbxhMSTE`e2Z|Rt%<28C$Rsrt;FKuy=jMeeF
zNXXw1GEQ(jcL5<2Q>kz2SlBS1YLn@Kt9?`0skm}ut-@8bXS@7H>y+s_X6VkzzycjJ
zX*wOVb<EM7^Qc*zK7F%zcJb?ZFSE?0P{({4A)<0MZq(n~Vu_CnCKq$wE%Fxc9Z6cK
zg9|?If0xiXb$p;>3w>V4a@L~bT^&1CJIX6`usbUSNml7tEu0lG`ks!pIyUIosDqmh
zw+Y_%uG5`0f4vSCPCIPUv6*w3({rKI1}5=(hUh$%n4@gfu}#M=9lPm%%&6lNalh@l
zbDCQDJNK*Gm5+7s5S6|}|J<SDWUm~CokBhp*Lv-&>obnHjuxks0G<2=bz2?PFD2|>
zSkQiskMbaU_m4^vrmN_P>WJw$$oZ=yt~<XFOzN<7XgYK@HBB`*mHt*t9e0+x7)@~A
zZBQ6^25alsORv!Jm5!a&i#}&XLim+YMkfzy-1*DGeLD8*SaR0+bK8|ubG~LfDe13P
z{7bp_xI*%+L=Oli4!XXh5zZ@Tb)3`jz0M69hjkp$@r#aMbsTukTXDAUM^?Jfca(#>
zGw+z-PlCq<e->oY30g+@%^%#1ve;8P&gl3<2PMDh_+1G3Y0j^sE|O&{3JL}_Ccjj-
z@I2RzdMz(<B6n8#4CMmXpGnTsic2E-Q>I2?NB5pZ>Qx<oam6$6pn+>TuFK+6%fJl|
zJ#A<p%fLUfh!r!CX5e2P|FLS3aDBV2<Cbu~Vtr(wdM72n$8c7^%3GCt4HP$=l{wu&
z2?He!{%^9gQ}A&Q7kT34Rw^I*P(qyy!&!2_u3l8yKp6utP{qJ~2Fe=H-c~9yqk-}U
z&RtL|7zh-qTypPBaTgqNU94WjH&yHvN+ko84Kx^`GWFXnN>u~Z4AeAmzk#D$3hqDQ
zsxE{IH4OfFrF;Dd^#OLgx0}VXoGn|^t1fiUTj?y|4;iRqAlE=s19c75GvMKJZ8-a2
zeFF^*JZj)!!&v|s9$}@zTY8;cyODuuBUG0G)qo<L(QE^)vpgha9#P!}YNb0L{~Ws0
z#n)_d#6*ut;k1L#z^_-*NS>YLYiyv2;jFIY)aMS>jDs~(DKyaBK%RleC2zigFNQR4
zVPMZYKL6n67qis@!`aTlUGuvR%Hrs^G|<X$+@Q6ACxo1tm`UGg!y#VfBWZ7-11mCc
z(LhH7oeYdI@S1@q4RkgzMB2s%JZ0cHW;gJ(foBX1THt=xzz@$lpOv=TmmqdE(9J-R
zfgXmlm3OBZ7pdddIS&Lm+|L_$!N5BUeFNFNbp<`yixmaEL}z2!Lh{}Q`iQWv;ERHk
z_Y=}zaDaiAgp{dK#3cI9AOnMGXOD;19xKXvPb~7iY~U3GB(EA6YG9aw;RZ$-7;RvL
z!GGp07-``1v|K)PJ2G1xvs2AI>tN(7g>!A~pvGejyl&t<18WVu!HyW1!d&8Y<7t*V
z%9{oz7?@~aTUqz8bLxa~ne?Bx*z5i3Bm*C8RVEwGk2{Vu@$hVXnt|yC<{6l8U<S?A
zOKm&PH_O0G1G6f4-xe&k(#K0yPTScA<`|f3;POh}z*^o(`&<LG`~@_cffWW;8dzvx
z5obj8rb{?a_qh2qlUK8gDX-_u@uiZqOprRuIRWddBrJTDfg^twt~U6?2RBE2je&O!
zu-=RNTn%d!)gIe?oq_cRzBKTafei*W8i*Q*8Q5fCvw@ukzvGJc**gOt8Q5-Mi{TtH
ze`q*o?^}g$qrxs1g}lz^d3BxRD)0V2rWu#|b_jlAI5$Du&Uoj-J#m+T-3G$6%p8SJ
z;Xk7T)6+P!&U?APu!I07>{1_hr63Ky+81IM;yg%Ec;3r<jR+TnT$LLr&*<XpvH{(|
zhXXNqp6|XxiebRws&&&vZgM3#q$C8B2Kb=~Mr}#mEBLt}mA??ux<=7H1N#jeH}JE8
zuMK>|firNJL%hcKt#tW20|z8Z$w33Zm2)35oZCi58NN5rVxf<x>qiXd1%smoj&WYM
zQ-3s2xW>mbc?y3rutX03$vaMKdBVU+1E&p~G4KnOStgD1m+KS<BE5k9Ej8D<Q|7kI
zXA{5E8@ITa$}0XaoO|ta2F`N+E_U{4UN$T%mUW&B-~})5zb+a0lU6nHh>6Pvu5i|y
zC~e}ZfxirJZAmwA&A@f8@CN=f@L~lIFVAi^&Aq`Db%F11!G8p+R%?3Gz%2v!nkfE}
z`?ld+e&1uFm<c{*yTfJSWtEbFbqY5==uI=xr$*7xboGrIMa4~&Fma#dDQTh<tK0A9
zJbL~=7w<dNbDj(nnI@jv>TbW>$LDUm9V=rxi)}>{T&3?bQPxCkjXI{1^R51JCd!+r
zV4_Bb$|%F7EKem9l}*4z6%!AbsAZz6iE1WzMS8!9>QpvS)5ISK+?Q(S&OPJdLe0z6
zvquzOwX#*mb||c<wuy&K)G?h+<Utck^Zd7`x2$VoQQgA&CeFH5l6ofZgIpv>mgaXo
zsWdRr(8SXwo-y&LiAE+`ns6Oe71Mc0>M`LJl1-ryRnRR+1wLKnHl1UliHTg(*|L3t
zkC|vJ<gP+f6U|IKZlZ;W=4`-PHP1xHo8AlWdaE9Gj~!Cb;%g<}M1hGy6HCgw6SjNr
zdX-BYuMMuv@-6P`Ze^miiOws0Pnc+DqP^){mbVc}TR{#)2X=p@ucPU#QCxp|O>=h=
z&ghfWF`fHyt|U*1kPFVUCZ01f(8M5ymib*w6q)E@qN|B+CicBoj6<1QOYKfio8!~o
z%6#6$3nqG*=xyT0QeRJwW3F>9LC!he$3$Nf{Y?xoQKnwuizZ%tqBO6X_+CUm(|J>3
zS9K5ja_ETq65l=hxZuNqjo-HN2AddSVzh}dCSEr2iir^{cAfj<v+AoRhME{Ajx@~c
z87^c}r+hjLAJ%u+s*V)RQ7oMQ9JInmuXv3%JmeZ@V!SxsSQD?Cc*Df`D=uC}{#MPy
ztBwgKCYqRJVzP-hP1N_Oqv{sEWny-rhdTX6s2^6$USHW`FIRavL8qE#Vmcd^#H&fn
zFfr4Fo`8|S+a_kwXA)?Xz-*I0c6J>88xwO)%ro(^iBC+-H?e>%F|onKJ0@Sp!b%gX
z=#b)~=OW5d6N`l}5u}SA?VYvE<g0+nazT<6lEjOp*T-eD{i{u^k)(I&5?P-2q^B4A
zX07FvS?FFTLS7Uxsr3kTqlxX($4w&NY~p<rADGy}D0@mfRP}B(v5n2%<Ra(w3`wnf
zJ@y#&BNNUmE7d$idy0F9iJd0mCNvYDn%HF`Y$9S}w~5c#cXoEUO5^iVjV0`n@~=Ig
z5fFJ$FeLbA<Kooh3}p+WTo$Aay!B?_#UX=E-!@^gj~7&GCM1_d?=_JWe&vM1T|2$H
zXD_`})IJyd!o-(UTcKPjRKL1A>pjkt-!G|Oo47bjWfB#>HF3biK@*2e{Ac2(iSJB&
zPc^y<XNQTyT!=n*oicI6#E&LUm^f)VhnYuB9Oo*r%twCA#7}pHOPwf%KT8s~Jn~;m
z{AxOn9m%=F@~tyI;QP(Q@1k?sbWVW(kXp`|;B8v#+PP<09S_y#D%@x;u(eY7HPbn!
zz9e|X#Gl*(qy!4NO%SiLqIT+ECbHJ}*k<B&PEU3%nBm-Dn)pYG{g*4-d1p7_K_B&R
z@#Rmh=LwWe;0_B<I1gCU6DXEIS^~urD3QRor%LnGm%H1&31^4m7Fkl%N+rO<RX&I1
zE$V$seOv+9jEscS&dda|gpij`piGLhVdWAipFmBPkU#~IS4yCA0u>WrQLN?i5+A6O
zt5!{*S^`xP&KrF^t9)p#Qa#~p+%$5HgkvIdCefY`Bv31X`U&R>q&8>bGT(y<Jd|*r
zrLLNl!QHb?0`(+XHvyjEGw`H+#Vltm9!}s9_A9-B?QbAD%-%5JY}On>&SfQmmlJp;
zf$RkTMFMI9?gUyT(3;I&;PWKVB!S$7^9qnRfgB;^J|T|@Hl`(G9twHW+LU?sD32%5
zjOBdqW@w(^cg5X#2{4t>7764hP>?`j0xd~~WYv^6U`hCz>)q%R3A9O|a{^B#@MOD!
zwh46L2wqd$aYg#X-9Et|m1i`Wlu1ru#{@b_>XQj9xUAk4KApfb3A~WNYb%sz6L^jl
z9dZ>VoNc;G0?TR?bxnXXi}SskM7s-e8ZwFZK0Ok6o(A`*Ts=6`dnV8;f!+y}+@m%a
ztMnDpM=+yfu@@8Qm*B5!mHr9mp*fwLd_V#(iEyCcAVJCp3mGDKV1x21vy4{WNMKw7
zLxm4ZV0Z!}*!bNAV`%UV*&~II66Bkrqv-~_3!XaXV$y2~j7{Lf-36~FoVQGQGJNz@
z{`dqYB(N!g%?V6Q;LQXUC9s%2kiet_W^ox$U~&Re5}2OAj09fn>ij#y)C3mtkpHwY
zErAv56wZQ~3G95%n{R@9^xFyW)`K@45!Ev%fw|Jug`6M>v}^8OAV@Mlfjx74BokYB
z-=S|DcWGVRd;)%JxO+(gOA~l6fweSs0?X<41G84qHx8)WB^g%GCLb59<WPn)NLDAX
zCIKE4yeqh{R|a|iUK#5+hzaL}VI$|=bKVV-$|w~WCE-QI`w4uIz^(*#C$NPM`KagC
zx5{=QTNBtuizV<8`}?kXs6**MbuSf;)bV`GNtf^Wgbfq2ljf>l_^I$;I<^dUEoAgF
zb})fZ!Z|MRC-~p)t{_c1Oyx^-fdsBp&*d9*Erw)aVd-!J5zev%cp1#wgm}War-&uM
zrK!}XE-m3)c=I6c`z1b;Nn9V2sFXx90V{!9VqQCey{tWfA0_&E0$;PnHENma-Y?kq
z>fSE}ze-@Ako|%UvOG-sCV^p#ecy7;Nx+=tJ1Eib*=!--32s~Lo0V2bwIA4pw8F!p
zNpduSW3*}le{ysZIG(_%g!AC?=Y(_C_Y3ER;v6BKNZ@1w?HhUcaD*$>uXM}hDz_e{
z{>I5JZ9bjA*#yodaEAV~yWkH&k_pRw=M(&o9$ZYITk}G$etd$=r@+&e`uH9iUmoMh
z@Z|*lPT(I}HG!)M@PzFzE=n!j*M(oBVc*K6@CHZohKpx+#8cOl%X5`~#SZ@o(iAtP
zcO<u^Nq4w1ysX}nM6o2&lKeA1WG0c7MDZj_B$1xP=kLm!c+HEKOgfqjrG)%FBO@c}
z+&=vNR%r@LCs8Je@{&a1eL~75QC4&)Y0@);S*Te-lJ4fJoOI^<V@Whl0!dU!qG}S=
zM3|k#k3I6MCs8Yj+DYeNq=sNk!TXbVAnAA=4^O%%>Vru<l*GeHJd#A6B<dznKZ%vy
zGk8`&|F4(C(7w*09H-LJUp<_;4U%Y>M582>q%)l#P2!Wfg-@UI@Upzi3mKf(6*qYq
zTK}lJl2D~R?xb_?mXm}>qTVEC?^PIh)#{TZp1bl4xk(baNpw!)sU(^v(JYBJqTf7;
zyd)k^q6J&HNaYy_&r;?*=*g$uY816fI)^GG1xd6mTUeNMp2f5jq`Y;~IevLU@P+Of
z<ZY8^mqhy{IFX-BV#6qv)3!qr9YxY9>AY0Ax@#ekN&FSY(@AXEs}v>CgT_zdS&23}
zl1brn!n+7|73`KocOefRSE%rO5-%iitZV*DNl?-=iN2}SULxr&*hg?zU%V)(%-Byz
z|0D*a^q+YxbIv^9z$6AGF*u1KNih1dV2NoN<P0Q3lNd&qu+YT9@FYegp(UXwF*1o!
z9M&XOiAhH%F(rwqNsN)`Ye|evV%pW5*OM4WCrM(`CiRUZcuzs$ge3ZJRVO7eIqBTb
zPE6v>B;HD*;$O-m*)41ST9~~#@Auvrd{Z=inuF7ln4ZKUDS1W`Gn1H~bk;X6Xm4{}
zn(LcGv-i%MMK=&ao>5d{Zqix(m^x2%GT+MNo5Kr|&es1<5(|^g)_)_J&*<VLmL#z>
ziB^5pWl1cjpHEcDSI|B7I8**^lqXTEr41j@hHUUk-<l-eO**%n?<KJ|>D;caV*`@d
zn8f-dcs|U#_|ND_`(2wP_5CC^C&4HKAI%(o&dqmyxx#OyW$5-vY)j&=Z&Zd4lg@hb
zQ4+6Ta&H&T8^9e&>`WpglkQV7<{mct9p5fG`DJD1WMwyvGg<jeCiR|?s$VoYF#|~i
zWrp%$9M3t!B99101v#T*LgH-akmigUNtj#&EdI9CSr!sW{G7xIS~3YM2|MXLAUl-A
zcbv0amzXPwFO&FI<X<JRFNyt0e9d_=$H$hJo$Gu3eBn1q=ZPB^My`jvt9@mz?*P>n
z7O<#;T=e+$!i5FjC-DP^h8AAqJDkMgQ_2x8K1t^dbMD<o>DU|9W6V{fXn4L#PBO1*
z;qj#Ne1uuHSMr`r;ujgFD}ui!aW;u_Nt{aJH#Rb?@aE|EBu*!Bh6)!HKILD0ukQ~!
z>S1N;9OdP6uJcLfwf3X4eSao#LE3OpkPl)mCDE;x`tN+-W$LeW9?cN1a@3Nz#?_Sz
zwS|%vZY1$Hr+*T+llX_jH^R9u`;RkXg!*q1JZvAQJCd7phC{ABuV>y#;vNh4TDbcT
zaIIx(F$-yya}Y`i{}?Odf>K;kc`X0K33n+A=@!aZoIc2~kZED@)Qr*=67zjo7Lu3K
zx<2M1KZd3xn^*YCS}13sqJ>Hp%3IExA>0`&Sk7Azd}yW4_VG-tvL&x#_RZo+0)+G0
zfHxi0!~y67buCmEUc*973-?=iz`{e8b0Jhq<PTcTVJS6hOSG2dKF?#T`f44~;e#7$
zGPRzC`W7Cx@QCI7XyQ=|jV$Njw}FL*>{N9xUm!19(o(UU8%YMQkZeJhpepDV^jL6i
zmRBe_7JQV9ah_{DX7OK{+`Jj*g><fkrWU%{=x(E#h2|C(Sa`=mo`uIP46yK$w6=xd
z(-!hA6j&&<oZYsKg{gCVBrPqpvYe~g)`Cw6@>-XYwieo1Xm6o|g(od^w$RZ+gBrP=
zEXPCWEqoZqLVlX>Tzo!dInUr2<@G0@#64r-S&r9S-*arCh3*!*NVKcv+|<m!l*V<k
z$a1c%RyOzar<E)`Z{Y<CqpBA66n`jFvuJzmR<vp_3%#WaeFXaoQvRZlel)_Vdl==x
z_4G5Yfg*f^EwnI*qhMi(g_pU)TNq*C6^>5LqG9aRa^I`MhYC{2r^){<_wiXFSCx@$
zhK12G3XG1i@R}6M`M!FGYt;Sju@+vpoS)3_y$DM9Uc`6{6GUf*#g9PZO$(DPOtJ8m
z2q#%!;cR5GLowFQ1F?7A&LQVi3)5(j$;xz5o7^XzFC=hvooV513$rZD7WsVk!sDJ}
zVV(v3a@t&pQi53i%(3|-C9<67EDJ3xvT(=3JvJ6wSYqJ|3tw7T%Av8a+rnoSmRne1
zVS|N@7FJqVC8l0$VYP)d7T)8;IpKcSa(*fBX103zj;rK9JPK3!fQ)O%I(p7#*Ln-w
zI~X{5HwoWHpRusn!uy=pwDvjI7S5nq3ImrNzVN@*0v`f0`jLh07Is?rlqSknKb8VN
zVYH3Pl6OdS?m36^Hv-*uD!VKkUFqfwy2fiTn!-Zdf@UFLA!zZf07NZ>Bv+VYy;b4w
z7dn*9elJ_)JtLbD;|!XpvPaiBc`qosXqsG1gcvmDIT!0nN^5NkBL`-&wU(?-^X|>v
zE4}+X)!&P)++SJPXW<VEXD#fv@HLxf;TSWT>Nge+SU4ypf6Fz5KkRDa;e*aY7QUxd
zIWFnh-_em)C>OUVReEI5o(zZSsE3s!7Jd{`zM{$o{AA&{wBZ!Hd_noy!buCi2tUDj
zz0&zH#jh5=OV4KGX)Y4x`pv@c7CJrBltPwy+QJzrlf26J>NyMNE&Ofa9}5>OT$DCn
z<ML(UPx^p`zbssqGOuubo}i9--#t(o!_pWA4piA}_UJmd01F&ej{e3g&Y1p7-<FDQ
za!d899fzbh->>d+t6bi1S)c`O-|b@)Pca*5HXgR|h>d$~6t_{yMr9i%Y?QQdpN+CM
zO4&%aQQCGkhz#3tj7;0<DL+NaUeN2ZY_Ktul(C(qmF2U84?e1vW3C473bxaR^0wn|
zBo%GPli7aXzY1(rvGIV7S~l31s*Lu?sA;2`jp{bO9j{Qo22&?G&O^N4cD$WEt$fi{
zTlhmZ>e$X$KPb^f$JM&FGeA@$*0WLHc7EQ%_E5qq8rW!PqtHf68;{y(WFyx`QyYry
z7*Mt0mab*9RkIYA4gLm)g?nsxZTQ%7HfEVK7jkT8vXBrP+yC3m>C#Pvv)Qb%nT_T)
zTG&`KGb2y*AD6x`3(KSqKiZZr`UQf_LesUf(b`5Q8&BGJ!bTe#9i&GY_o!`cw3qI*
z;~4eGpfdkBl8(osSYStKGdtT^M(P<G&kA|U#?wMLe4M}Z_UCMLvC)-7EWa>fmTj9{
zERCdyBWUAG8(-OYp7nAKw=ven3pRS%=w+j~jaO{EYNL;hzBUHg;JY8R!;3ch+2}8A
zV07DD-vHa$eFoZii9KrJ=8y7-3``nqV~8zpJq^funFY@EQIi*Mb9?3wwVh{zBWw(_
z|96i+TnO*SN7|THuW*!&(Kg1ggkRJ$`B{88*x{=4d%D+cykTRrjrVCx8{=*KdPaTE
z#snJ^ZOpbYheKfFEf!*9x{XP;bM`pd#uRpQnXke!AI~MG+92V1DIZhv;E@NpGi>Kj
zcP2X<QD@A|c-zJ-+j+H^LaOnnNpo$?<JxXxiH-R-7T8#5J3sx%yQscnBlwPU+R2{}
zGrGtIuYCAgFP{T0rEzSmvay=;>$tj{dFLoAY4b|iE7<1M&O4<nghHNSuCehh$3;#-
zd8f(CB%Yb9Wi6Du-RtRQD+)F;*K*$mTDwI7e^|Y?k-EtS@o=c%0~=d7ZEftLlXHw#
z`nJ)?wzD|btW%8s@DYtOF7p%HSqZlbek`+z3Oj7<WCtr`w;SSSDEFPR+s0=$q8t<(
zduTcvAsb;E0r8fg?Ob5+jgGEAx%snw-YM{%q9awj5!y#y&WTOW7&1PSKk<m$&}`?v
zQm0GX*i^63uwk;PdzFOk{91&6F_5%Dv_wd`EoAK#<#QWf*x<hp@HZViOH8|1xX;FZ
z8?L=j_u^|C-`F^7;~duz8wc3s`M#6V@q=82Z2V~B5T`kP?3Cww8$Z}MO#AeA^U#bx
z<5d^?cn-ibfulB#**GEn>QvMHlkMDY|7_zp4U(x+GQC1m=QoT^JU7Q=a;9(;excXd
zIA!BEx<p_1X&Yy3{4NdPi3HCd_>u!_`Gf0HdH3msKEA_n{{Jxb9Z*sf-`B9j-C+r$
zSCAY8L3*cqX2}dJtf&OV0LUVk5JV-TBmor!iGqS;B#Qz90+NxS$V{i{>7MQZ1W_bO
zmMrmqyZG^)@0>dC+<IN%)qAgAS6A2c?8CWz{L^6+i{d;7z7O~IAzu_1=`H(kZ6Ej)
z&kedu`*4-s(y_(meYnC=RP(p;C;%V-$>d|*b((vFGV5UE#y<QfWWFirEkSP!N+Iv;
z!(D+thJU6de-vp^6pi}NbZr)A7l@)z6osQG81>i2eFiq?yeks*4`+5ADgRzA{MVA)
zZXH{si}D$Qa?#kjON-1Xibqi<in3AA)k{S2NYp<pS2BuHQ9Km&-;C3lOGo`T3)~5O
zIO;q6{R47*7l5dLp6$`7{|bQfg^vu6MNu(|N>P-HqI}f<oqmO=Kdm_9_(Oh{sT{?N
z6Qx>Fel#0ZqW&Z;{Y_5QD5?>ElT%&L#|5n+D48{*c;W%(oA)Q9{xe8c)ZdV-Bd{ds
z@EQI_CHE&8ACxFUQM8GoEoF%Mcc1!EG>9TQ>c>VtwbhOKr{L;Ekqm^+{Nmr28%EKD
zN{FIS)PLe=9QDtkU7siO+;3ABj^gR4|KmY!e&$5cJc<@k5O14~+$f%kq9y+#YG;Ti
z=Xt`MO5<x9zO$f;o{8ewC|X7R7b2~raL%W(7B>v3WWFeQE{f-)cs+_YXp|^kh$1hF
z&QwtpFHzKUQirJj3w^#0_EXe9aowH`POdvv4|Ws<UJ;ZfI|;yhCC@p(Dop%Z6kVeJ
ziRi9T@CbApT^heAr~B0~5AeJx3UrU62Yu$}&|7rl2~xKx-j4cT^DxpI^3@5CG;`;w
z`jrOnL~(eW)RSrvfaj_BUawaaz3CqNv3)=KMA4VBS!i#eUljeLn5koyjsZ~&r2Hxd
ztN0*_4=GFxJ!2RY#o#DTM{y>KAyEvCVo4NBqZk&&M|3~>SQNvf7!k$qt~4$RZH4sv
z=h8?zVHBT4@o5xeqx^uOGD^_T1Z8$K>&}ZDeJV8O0q5yf%I5-4ZCa3*)~=AoN4X6M
zf{B7o67->xndD4~VrmrMM6n=>FWJ|(($}0pqQF;C94Ql?MiWPIO_LXvS4df4W)!od
zm?H|$67<(<^8N~;E?cC{Tco*B%!^_^m2)V_ENS0)kx2>v(!wY|!YnPKBNbE@3tanh
z206>3_%@1tQADFy9%WF)mMFGH`A!onXsoiz#wZ3j%E~BK(;MmbQT!0ac>Xr(a)^9_
zwNZXTNB%L2V{?@8FGUK~N+(zs#d^UZ-XOqFQJ(aZnLTw<+C%}OsChZWMqa*}A$3r;
zMX@7_pQG3wg>^eP{8@Q_e|cvVyEy6StG5GFhs(R8*b~JsQ5^gt!1P9bh4h8m=>!c9
zx7ZuSZ&57U99aEGqwgDrV^OG4?B^_?H950RhiuM;DD)@{W*PjW_-kb(m6GzdL_V&X
z!(?$FRH?wLb_SB7fG21(C*+Dop178gVyO8o!dk3;kPZ{YpDYta`snOK;?f`V?dHm1
zf!Qw$9}$=>AC2PgDF64z?}e9+MNy|*=s2UzwTwD*bBSY@GfqZvDvCpwGyZwd<F@WO
z?CWe4=cu$8o`~Um6c-pdV?YcSqxd(90x=Yf;Sx<VM7|ltEl%ex^5rP52yj)<Yl4!0
zJ&GFw|M!4%<C1(kiaT`0(New`KX5JIWn_rR_ZV8w%KZxz8_+q8+59o2#nAm`u?B_Z
z**(G?&dP;iC>%rS7`DXZA~6(=p-=}oox*IDUoR8ty;8oEkTYWVda>N#h8&22w3wio
zf)<aVgaG81jG>gk4+)w#Mj`XB<-vzz*pX7Iq@+h<C==t~g`-LgWn*|OhVn7KLy<}r
zP|U^h(V0>?Avq7USBRlv3|IbCD#iGkkME;p>&bK`7Oon@<7|I^q%R*yVyGTNrE^Nn
zcHt8r%Qa&7{)~Keol^U(R4azsG33VZR18nXP$z~)F*J@riXkh8>=^3C5R5^NAryo5
ze)@Yyl+S-xlo$xc1?43{`Sl3B5X3wCq}Pk_ZyL}rhC>4s7TB98)F6h|Yl6h~x6+CC
z)62$#O=5_|(40f)A~%g;!-9zWiIfvVGlALQ@9(FN?~~46SfB-!&^P`2x6)h2@N^9A
zW9SgWGci0H0}H$uL#r5$Bnq{Tp$(m+S%|%~r5dM5&kG5k6HLs^y>u(oE`}FkSockY
z!t@Qwq%Vm^2F_4kj$wJh06Xm%!z(eo7Q^c?kl!hW&M~|iL*9duEYl^1x4)H`Hugy;
z?JBbG4wE^wH)41*hPP<7c<`Osfo{AMLys61PnAB-%wpHwV>mHGV!HT#y8eFpC)aY`
zrJS^23|C`#KZag0{1n5+7<$LhCx$68OpT#$4E<vGG=@<zd^kbs&p02$;27F1QwGFf
zlu`!9@KE{i2OQuE`9ndO9TLM2W{_!k3_~gZYyL;%h6(VIpnVreBVzp90?a6=e9So&
zQa%w?Zk1D5Yn&Xqxi&I7hDkBR64GZejEP}v3}lXrVLV$9_?bHrITPp`RU1u=L9Zwi
zj47`)+aVE57Ij(u3mRxifZ)p*zKY>HdSDFGVwfJoycp(l;!unjX2mc&hM6%O{y<tY
zQogq?vU72un5FRJX*1I0IfBpe&K2V&_$G!0RBsGR=-x?rVGO$hS+W;g6ob2rAHtGI
zmvSOBjeJWJ$N29d7%@(6Q9h5K)T^>2@b$oq@eK-2ADFQshLtg_7gtwN33SdF*3gZ|
z$n5=EK>1*YMB&%Q@FRs^Arn{5&423QM(bGkf=sZ1lO;Rzt{I$^mbod0%@j3;Km2fk
ztue%f9=64>J%+t8{6-gz;b%%4!){@Vz-PsF#?bVF%odvEM)rsS{u0Bl0&u)tG8;ah
z5#osMXn{$m<b6~%P0vZXDHvtrLMl~IO;DPEavq;0Q;p3ZmrWsO^$gjHArXTegA>Dk
z(RkGp5=$nju^2p#dZe6+K`F0DWBs}WwBvyo4#x1ia5lPD^<jZS0#k>y!jTyMWUP+i
zLJWT~hTM^k#c(`^qcQv~grShT*7)W)5yQzCPIDGFmN%^{LapxEn|+F!9~Ss024Z!j
zd`4V7%LzD7IVYT%UOjJo;9?9c^J_-d^)d3{qw>G>*cdJ|m~0O8X)QP293b;r4A&XQ
zRMb&%BZmJt{Z%}w;${rD7_?QStGFG*9fo%m1ys<ucVoC0Lp~LqCrIN~$g2|)U5H}j
zS26x{fR?3w3#urrqKJw@D(LV7cL)AjA=3(DN`?w{m4{Z8S&_QRP!UkUy2VtKP*GCg
zOhJnaO5ZD``m^aF6{Q8>q<C1xgauO9@_CP_z6PFNEB84iuV^ioQBhV!H5JuWJSM7_
zS5ZMlITchU^+2swR8gu}RwWgcRkUyI3%_xvOl>eSR8dh?g_BTdblUfE6*W}U5}no*
zbX|$?6QWsdabQUKynpJ2YOB6_nU)U=NGh^abWqVzMNoyTBBG+H3PnXoMFUatm>CSK
z$W~ET1*=mJ^p<)m>I=nk8d8&i2?2tJDjKPX9tbw(aOOm))g~(T4a{JH$&KY^Dsogj
zucDob<|@{;Ra&ZeT15*LxhfdYmX491QbASI_lTcS!LHk=;CN|{XI1~>imgO})&kQf
zd8w_6=R_HLII~p#3o5RykzP{qq8K>ciN<<aFx#ts@TA(Q{8v<TQqfJt+bZ(t7(&T!
zsD7k<RmJN<dtFp?Rlxv4kzNyZDIQy(5`JAFze!;#$!}3hD`az5fVjJg9xC2b@xF?8
zR1}{h^;GdL73&4*JhT@L#}JoyLGGoZw~Br$`m5-pBK)aDL-$oNJAdY~#(t=oRz7b4
zt+Ode;RmW1*dihg3w%J;JuZJJ=<OB$lpmsEsEWxNzR)mC#YZZj;ZY64Rg6%vMa5PX
zBUOB?VxEfmDn3#1sfsUEe5GQP@bk}Aj8idM816F_$(w;OD#p_N0$Ef$6Fqr6y;sE)
z6;oAA6uon3lLeSW+X?W6pbY7pO7t%E4{1bZLk87pDy9n!%%B$y3sB~-#ki=+kJFWz
zDrTv8`IPUyvsKJd{g6JFQ|yc%bFR#m81TPQu|UOA70XmC6n0sAE4V~}MJg5x@T$1)
z?6>{+@U4pFbO{w}#3cGo#Y$Q~pnR|L+o6FK!j8O4a$IDt5@z~=DoR%<##$9Ws@SMv
z6J1pJ|9TZ0RM3;Dka^|(yBqI%KhXnsNE=TFHj7!18CE#nKMw@o8Ygd4v0cSk73Wm!
zQ1LT8N`<LnCtFbQ8)t-y-NM;8NA{?oKTw&!urD!d_EPMTGH=bi%2^*3-ZgcCq;Z(S
z-&Db&FsIXHoferOF|9727gu4aIIQ9i6$v4^ry`}oW_(b=P?n@_g|3Kc1>S==mi;OY
zh-uQcRMtVEt`~;|lw!*7Dh`Qh#VEv?MS6sx=7e-q#ozSCdCH%H{v|BSEN_U%RGd(8
zQpIs$#AQci2CGvdWc?#J)G(Q+1wJDvZOt<0Ra{VUN5x&C%!?{6skp4-U)5jFP}Dyv
zgs;$cD*j`TrzutcMtPlX-&$t0;pE~H;s)dP4v8G5Ta5oI$RwvzMc=i^yr&|chJc1*
z8uDvM(@;=DA<d6h1vJp3Xa)K$r(R(VMKq*qzDpF<{MgHsex^{#M;j4jX#Qe=H?^7L
zWWA!CsiCCyzld5~LkZ1aIphyyk(Sc%kcQHN^RR|S|0!&r{6_?4metE>D68Qa4bN(L
zOhY*hiiVJe@){~=sG*^zhKd?0QQEF@bq$p@RMAjPh+S3leX@Atf?O^Vyq-UkYGEwm
zKpxkyAfV7{PiUy6`A)*%SzGgOACiVF4Nq#Qqxli_{!|UGZXVRYC@pLLo$L9T0d{xa
zTf!Q$H8d6cx}r)0f!Rwv4fTa!(=Pa(HsrW8G}ipN)<jUMYt^to<N*d(j2d!8wz-B}
z0a~!l9TI~cef}v8Ej53Q$`+m$R|&{(rJ=QkH#EGdp^b*N8afFXp40sM$jcm;hUYc3
z)4=Kfg1Gde<}U&na$gcz+Kcg|gTNfxD;hdd51WDoPRXkd2k2(wR>*l8I%{}ULl+u!
zh5VZ4&zi2nxOI02e$fK+2KZtBb&Wr|4-mYip&KJDJJRsBhVB{$YWP4y4-M~V=&hlT
zhMvMk4EyhD{;Hm#^*xQ>pON1el%N-#WUNfkS3^Gy12oXv`)mF!<L$)(8kB&POlCjS
z{52KR5DkMg^t#r7X|Q1S{7o7vz_15pJ`#Wf97#{sFiOK{4WEeNu)$A-TQcI^@8vVi
zzgvB-VVs6B6sdf8te^x>agC(m+zMr)m=P01vs4|2GfC)>@^Fnbg>J^lr6W_vmm0p(
zpldKROw%x3!?zliYxr8j3=MNM%oT1kQ}b`}j4JfQS;DnuYuFxAQXyrYhWQ#6YFMP<
z8x2bj2Nuw{A4rs(_gPk<V06^Q8kSMRYosN@vP%V}p?QhU%wpeZ_?~TQ*r8#ChLswA
zqUJTM;z(D>>x4Fb(6Cwq@9Aq82Lu?HmdPyBkD4EX2>AH3Uc&|rTx>I#aK*Jr^u><0
z3b0wj7FvIYe;+54X`A44?f0{Wof`IW&eFj+RW<y=e(B!Dvv!M7@6mAmw#4jSf-y2J
z{+n<BF01Z4LrjAzL}f74sL~6*W7CZZ7^_VUaSi7+T+m=?NKi-(C&aX}HSE`LK$y%C
zG^xSW;0bShDIQD-CM`(oAJp)>hCk`{^yC(iLv)ys@(0zffoqS^0fo#Xf=R$E(@_n7
z3l5*)d`?I?rs2@;ToyQ~`S%Mt#u*K#X!O$o%KVRp(_(1%-TN%ZHBx3er(sI|OoEFV
z{?%|>!yU!}4VM|d__OGYtScI>3hn(zy$QwMc%c95LhZYc%GJ{{srG(e@TLZ?+i!_6
zGUnVBk`&ZYNXI=5`E=yhk*0$IoGlm7@yXY@TspEY0jE4=F03P6_l-qdL<eb69c33q
z2*}LP5fE2Tos^j^uA_vGS9EmJQBp@K9gTD}*7<pSl-5yQ$KyI4*71mrayrWE{6?97
z|0=@<bzJ*bdQ?ZgQ^8N{z+<|9W2JYs*{#s-T*Ow;QBg-_-G79kc%+P|l_=YpLIhQG
zRArSG{^K(>UriKawuX+HI%FLRyKWkJLPs6lS4b@#wRQYhKxSZkQul)!Cp8By>B!Pi
z<v<~hB`8V~&>=%Q!aC~dsIMbi$I=B-UEL3iTmbXV#c6mte`W*ye->=WQE$xPBOZ;&
zC3h1Y5gjdcJguXtj%FNbK%qb6=xDCvDc!$I@;2H+N3M=hv!&`8GM|s=&t&oun7;jt
zj%RhepyNd$b1NOKb+lnqJN!+9wmP2E{k;)-U6o<JYcV)HPmb<K2_}x~B^@v8Xs@G#
z?tgfnZSo<P;&s%qZe0<|L+jrUt$DPjjt_KvsN+>yN5}g*dg=bHu&a(Yb-bnHH65?(
z;PWzP+#9+d!&#k5=%(Xsov#V}y9sYqbZjnJyX$@!?;$AF)l<j2bO5pLWwG}}VLpS<
z`n`4Z)zME!AKkyjGmP`bO*iXL%j*8K&j1~CGx{Da!n-8P4AL=J$7mg&=@_D8sE$vC
z6^7~fNXJMWAJZ{TNW*nMFmicGIzk7vN+vs{?HHy$p=YLL5{weU(48pQ7#(AEOwlow
zhR(?PT*m|*6Ln1gLmDT9880-+b|z8aQ}P$oZDW}gCyPb~eXZQbjOSnK_)5n#;ZE#v
zx+uvuXK?lfvc49S&#>&52A!>A4vk`By@|Ox=CLmWYYfcS@r{n40olL;9Se1w)p1V8
zA{~o$?BoD-ETL!8Ls(tMG97%l`<_(Cw>p*!wR|W1hc}x0@nNM<4m(|~W0k-^2+Bcm
zxwuBhTHW6(<IdQ}+^*aqt=F+Z$7UT{gg^Ww=q90`jl!#0hEK$twhVDwb?o3&+97SD
zUBn$^yO=n{KkNSH6<55ZyLIf*;p*^o{KBSm=sFD1=3X69cA<mMcfSeFK0z5&*%3wJ
z>PXe0>Hk|MF>C6GbF!CLEMaj<QdajL)e|~w9ge7;)WOFSx+~)YFLA!4bnNG3p^NJN
z7UBUxf7ii{!GpreWF8Vsc1nDNE$BES4E>i5-aD91>NqO!-#U(oT4Zvr9T&_Kg7S`b
zN`QX^Wr5SQlq(U?y*VGx>$spJ!$82mMIHarHw^GG?UIhmI<D)uq2mgpw^-g^({WYz
zSN{EG21uu$_UV5*ZtA$p@J{)449lN+TgM%Sh*}ZOKK4Roa_pR3`3!K$L@#A)f!zW6
zaGHSv1{S?07c@{<fI@<nEgvG2sfdB1f|D*NTO+fWflLFH4OB5u+&~Ef4;y&I@J(D&
zP>!05?NSCFGEmy^7vA?Di0B){Fz}dxat0nXP{u%6QQ*+L2&*$i%^=H^7tBfqDhN<f
zP_E>8X~2>IX;lN&3_M|=mVxR99yk1WNbzcjk}Ocu@Snv9m^cS(8)Bcq@FUfe0@o3g
zn-7xVZ|L3Mg&6ue6aygx{S5SH0R!0v+8AhSpss;>2AUdZW}v=-1_qiKh#3B|r=fvH
zh95AAx#`zfU}lN?&-54AjMCf?$T85|z*7cV3Tayy$Tj>>L&;g-ek3P-+Tfq&_#%=2
zj41i6P(EAW1aEEpZyV=11J4_H-M||xL#BbwhVPj#l2Qo<IvBn`U+x%qnT8naFWczJ
z9fbxu39(->{5bY*y@u3Do@kbsLwMCd7sFrsT?=G&6@U@=H3NKV=Kk%Q2HrC8j)9(3
z!f2(Nfwv8GH~eWr^L=zm;c~GDTW&2=;MR)+?;3c|;9ng1ftPK*PhrZ3dmH`(S1-fg
zY~<q`18E-$+*s}_C|3dl3=A~zg@Gv))xd`aMjH6oz#s#I4Ga|u;ewE!#{2jX(Iz!H
z%)m#6f8!W#__xBHc7SReA(Y99`H6u~Ma6M~jxz9>=x#La^0@rhF8}sT8O9hG%TbHT
z!WqOw=6C}W3`}I#73E2W|4_-tBKA1h@ZSh<$fQ#Zd}&~bfu#n%GBC}+Jce-tT+;J-
zVY-2@4a_hw)4*KAe?p%nJdir)5N1E{#yN)nxIu5EFkDf5!{BdVAq5u3;w_sie8#=S
zhQBVQS!uWyw*tJGE;I10f$teT3@oP}PAT7sanZQ!f`;bv4h5zg@Tq^LfmJk_;qL%Y
zHu@?JvDUzk^kfr_O{_Dp-oR-CXAEpG@RI?{K*GRA1Dg!|Y+$E>%?7s66V8Q>zZvd&
zHni0M>2~@<3uPO9TS_O0p9}3UaDAu5OS=s0=F~8t8W>$h*<;`r`aeb87GxuP4g6+c
zPL1@afdjXsnt5sa4BUPpeCe$)>8CG*JA56`-wd;sMxBdZ491YR!lr?1vy^RjiuIZ(
z#f3cV*EZl7_=}#Cqa+Qu1`Znd-GFC+BJHQ+4Ms{}W+~nQx>oxfR*cRGys<iG^;_XX
zbRh#h`YV43`lo>-0#I5q@8hEe{x)!oo_RKO!a%oe!Q%!_&JFx<F2oU?G;oS@vr0O}
z{)e-sTbQX>xA0k-m@(7DBPPxpxIkwxkk7<Lp};E!t{V8)z$G!p%R&h~J}Ww_H~(%g
zc#X<5a7RdT!@z%><3gE~`HfM5n?e=2+k&6hQ>IXFV)z6U`0fMw^P5OBkzw*X#wcK-
zpy?Yl-9#Z1g-sN%mR{6EnS7Z8++YzCq)e4x%1O=*ycWp1G+pZZbD)@sOcSL{Uz4<B
zaT6s>Q2EacE5g1?3e4=jPHB|tArqvfP1JiUOaK#)ny74|iiv+$WRx-SnCUwVwOZE1
z2PZ<TSWa-rEN`O116<KWr3aY4RMkW^6Co2}6YR9Qi6>3eG4Z&G8Yc3pq}Md@gy@=`
zD(6C<-;!#XnBWF$n`ls7VRq>YVaY_$glr<q^j(OY+h;@8TVb_X!+B@9wg4%IoNc16
ziPG}|um4f3o{9P<8j4P1<?|Yt`25{Mv<n@8Svo3PXksE_qPK}YCYqXPW}>Z$=S<|7
zJjozGW8ztpKhi-96Ppi7xhB3lCEZK}iJvmjQZSzul$@6yQmU*D@+wm+6Rk~t(nM<A
zs9+ltN8eKl-3>l(qMeCO9I}ZQOuT5~WfMJ1W(_QurJa&qGV$Y`VAez7cArV@O>_|1
zjwS~8mdCD<UJ+RqVByXtUZr};*%@rTM(SeXH50F!=xXAfO-h?fQjgE&H%z=~f`w=E
z@TZBzM}yr=oVXqujuyMn{Mivw&Ty%_i5@1lPR?Z)?@$sG@0!@zQ+}W8+hQSt_e6Gn
zF{PK_usibmn&@X@l!?(M`qS%7d}Lxc`=T}1OE=yL520_E_|U{4de@NffFq&a?}i7P
z_+w3A>5wovLrrWqq}4sc!zgp5LIfk|<bA?}dxuAwnAs<Mrk9UDHt~r+d>?;GKkuaU
z=pX*f#26DZSj@y&8q~y86JMG<fDs;NVxoyj#MDgh@B~3q-Lmh!7oKe53(>-y{^5ar
z!*%+H&-V^bq0D{51Nw!(GI99bFvXb07AmC^Q@rVd`L&?u`-f+lm~CPaHOV;8J3NQ}
zX2N(cyuW_VToa^^^a{^6@r{X^Mqq)Udyj+`njkGwz9{Ju6HDnoCcfun>=j;S;#*FH
zRtj;YOBu@r^QC~y><SYrO{_Mt#>6TU_b>fmg1X)HPI%2xiN)56@;{0e7VcJfi51Z^
zyn!L&1L>(aTE_8{iH*$CKTYI|BYzxQXl@gKn)u7aHd?_%jDBunhl!s}>@#^5SK4V}
z7bn`8&~GMo3qbsfi9HYSfM$VT1>P&@$;19PXPC~7&iCedDQe<xH}vybNi(5y`plOO
ziDnHGmWc#=EUlOnUI5~y&nmVFhf>Xt95j&>)%Tk?V8W&R^CVBul%UM+I~&}4Tv@+8
zn5@{a_Ch70MSiCz%ug#mUph=5Gx5W{(6Vz4j+ppwd#J|f>_;yIj<QV?7Z|in@X|38
zCrz9(ahx+kaH4aiqT>~c{f~*$wDMZ%yooc6BstlXup;EMqW5!xHkl_4ADM4QeTBmO
zYvK|+GI3MXy3Ei-6VFe(V&bXu(p3}BjLu&EP!_+3bDgG)NxzMdZkQm=`6j{--`z5C
z$K+BC_x_S@)4{%rY+aU1-1we!k0$d%WveSJmKH~WII6`_J&uBL6pG`~ILgFPIF2H5
zl!&8b97W?ukK^dIV6nI_e?}aK>PDFTNXiJrVg49lkC~!CaY0w?3h-*FxUZ$saXcKy
zLvi15OmiR3d_?f+3=p71D!^i-tWq|PrFR=tj^nX7%EeJWj`4Rw72~KBM+H%sLtx=O
zt0HYrH<{2pGIyV}<~gNG9Hdp_m{}#a+&$^>IBLXEH;#I7)QsbaIHWkT;;0p;`6TsB
zsEz=&<9Jd4>p~~;C!Psa`bP@JL3_z@C~?pM1|5(>abH*AI1b-!zz+~nY1slVtgr0K
z%&H$pgE(^H_^q4LFpfrXG>Ib;M{k4<Tn@GymEAZFqe#Oio>zD*t*KB>Gm7-QGI^A5
zyUuq*&EuHsL|TXza>W=6qanxmbR5sb@pBwI<9IfXR&k7qV{{y?<7g8{_c(gQ(Ke3f
zDCb$J3wxX(KOe`-akP(P`vIk$pf3peVw{fyK9fhbNVoEoR~)azF?F3Z<%Zmm2I`!4
zaIeH{r#SKizq6pP3QGR1y;9dWUW?=PINsp!^U}J-@n#&In#oLWao|@n2zdUg`IU^h
zG5KwJNM0JjJ9M6+O5Zs8#nCg4cj-<qgx`y!4~JmO@5j-LlE-npeBP%0fuqmK1ZRJc
z2ey}a<g9-j1L7DK$47AtWU(*h)%oNP2v*9KBJziEFgr+4g24g|iDT#k&Z&HU`QdTA
zGfn<Dju8ToGcu0s3JL+!Cvki#vMjUVVCb_r#>6o%j`?wnjpOq;CdDzC^Wt3K=)ZEU
z@8ofDG(Vt>X8`P}Oo(Hm0L1O*M|dXfi#VpmF+Gkc)LR_;t|-(t&z^l5$5(9aclotQ
zXpg6S%{JT1v*VZ(#|+N0nbJ%_X9>zI6+WSyqTDQ2wt_M@4r;aGd-6ANETEsqu{Mr{
zoQCwJ@0IU_2^Pn(j8_NAy^API;@C4-SxRkZD9n=it+=#2j{c`*X1|YPMI0+dU!&W|
zEWAqKA0G6+I*vPEOBCbBIMy+$$FVhz^>J*Vv5JQ`aUhd@UHuftw}X|9oSWwqrc!??
zE!%}R(^Bo_($fRmL~A=}?g9#1+s+`<Ozu~pScg~BrrlL`#j%@?VIkeZo;ZGq<7^z~
z;`lX=y>a{z#}Q5kDv+@yjyR_z9eBB<vE&DGERKJxD5{`j?zxho3x2=LvJuDA6SE1d
zI1+K}kK;fbAK#YkI9vgUoj8&Y@Q_t9IiAR-;<%qZ7{~9T!NYXg%km*XkN+89*KC}0
zbFK70<M=C%#?9q3v;rer9P$$BM$ynQdU716;`k?y$JYfv>yUOLj+10A4ZiY>tW1{w
z{xx{wb}?p8Q+qk`pnE}VmiiZxpWYohAIF6_?#6MC_6mkB#&J20D;y@n*Dxu%T)GrT
zmsNp37NlKeSZ<>H7st&wuElYk7O#|9_#-J*M!CUh9t=&)ktY?BZ!x6rm5SU8-liKD
z@;P@{zC#*8J`4FRP@WRg<TQ&P*9{f2aBGuPVu@71LO}}z`4*;;a$JQie{@AGWGqZ0
z$gmKw5VnwQaYG)N7OGgNYN0r5StxJ8y%;QMp_GM3EtIkFkcH9~p7}_Eg@-LXVxhxn
zc~!n*&;OvD9wyam6e8f&Wmf`ag(QzzC})8~D77F!!7fRe1hZ}jD_E##fn%&>p|U7>
zzf9V-45n%ps#|!{LLCdgPm&+EP*aSehRBk$Zh<fS6BcS&s7<ME2K+(ol_>2Omu1Pq
zq;b-r$#Ry3pauP2Fgq)q`jM$6p{S6BW7QRMjJ8T$3-v6twD7cr`W6~kXl5bDLPHCU
zEJQ3cwQ%|;c|k$Bv4v1&rHKWMliaW5d*$<J>*@D`^xLV+CAvX#3%TMdaSIF6I;7Dn
zW<Y+*!cQ+Nv<_=MW1+Q$HWr?>aOQ516<b-@**=Z!XOEM*9&ggt!gChpJ`sA}!V4Di
z4OQBSvENycHhw|iMGG^Ym0uE+y%Tq^(9y!kBtA~!6$_m#^sw=c&HpS%XEv3<^9j6a
zp^Jrt1=~Vb3$I!D(!y63Ubpaug^w+KV&P2-Z&~PVp^t@b7T&h7Y?IW>LU%UEv8)Wf
zXW<<SJ*g{Qd6!MCm*1|O-sN)Ozv}5tP8TKfx*L4oLWRqLdPBo?OE>B~T;91^?rY%#
z3m@`V0Q7`yQhy5rEc~3Q3>5TKsT?wy9YhJ!LLX82*QCJ~hFIWv@}U;K?wGdjc5s-;
z?%7y`%w+lSa0??W5R4SG^L2&zQwyVn%#($*qb-c5qjpg~voOZON9*OW7CyHy&cdoz
zzF?nrP)?j^-ibR8;m`z8a-xO1J)6v0FHf@YScSZ%s}z>`!b0Cg!6`!8sT96OI^~&W
zVY-DMEUc!4w1tHQ78Y`v+zHLJFq_)D(qa~8(;A7K1-C=Y&JoPHg3c3kzJ+gSpgaE6
zar=UcEG)LL(!%~18aC+Ie2In0l^cCWhwRvVsi4aQ{no<r2W6_R53=#^Ev%pbxBZT;
z7s+ULC1(}YcqQk|5owKuwVY+QL#l-zEv&P!)xtIl>pA7;MK)U4B)|qif3o;?CP4mX
z3rh}1w%iVlB^5ZiAwbS{3p*_AW{?*n{aMgm^j-lt(!y6Vm<ZV8i}NDCSoqcAM=zzl
z7NP<W|0cjb8e(6N+1LYqYHv{ERJCAOc>GF^Df;DAVs;%DSxeCDA{h?tZt;W0D3yR~
z!LxAI!a0tVnz3-m!eI*sEG!zE{bfn{P9gaqJ*ubj-R8*ebj9)Vw5{?V7LHgrYT<7S
zg*xF+TBLmVFE&*yRI`-awWPeLRQQ;M;}%X>I7xj@my4E?<3Xir;VhOs#h4(f{39qi
zoBO4cp0UuXmk-WcxM1NX<FJK`7XH~PU$b!C!oM7^h07LhY>*!<BVQ5V?hPeUB65|{
zrbHz3diD**)svzB#HCjY$i-`fIEvg-@@)%uETkn+Ac4Dd<Il4Pmz47*aE~*zMre4q
zbka6WL-`Y^P*~1NDg_f5{aJR=1kw{IltAGG&cB_`0!&2`*l<r~v3!3k83`0iATt5t
zKmz#-XHg#Gc%fIzWPbCvR6GIF5((`2TOxQUfzk<NCr~$mhZA@tfl3KfP5=o!%IwJy
z$5keQ|K>&3ui^iKfs&U^U`rK+oN@`27rj(SpkAN!iU~Act7!N9^w$k#QY2C(fyWc5
zkwDc1SiPE{)e~rcDSOdFIWxy(*G%B@<Dn-KsFlD+W3uOz3)N0QKPx|(@NFHxClf!s
zPp(7R_Q{f<S%L-=kOd%LNgyO}SkO<)g~+UzK>Y-oCeSQ_BcEkANT6W?jS`qXPPs59
zyKw@4Jkg?w=!Jq&fe|XIRp_gp>GqiHoCKOD&@zFi6KEl-uN^1n3cb;ho=W)EVX8Ak
zdPb=I*#ue%kUm~+bz5$oKwGM}NZn7XhT0_f^#FNKdR<zRoOTJkkbspyB7qkZcqxGi
z2~14jW$Gk>UJ3M0phE&36L>R$w-R_Iflie9UhuU9@)GErK-UCTT?oF)E+)%e68=hH
zea&>@ciX3N^};(c7ZtBl&m9%sCErM(U_x3`E4^Wbylxabfp-$%{p;-nx(h%&?xD<{
z?0TFu{C4nt(d@f|zL)UVIrI02x_u;F>M!?6pl<?$5*VC7wR^#S6uyMa`#!twpTK|w
z2GSFTDjy{9VFGOGbggt|r?2x13`t-p#a=FrO<))eO*c;Xi=W{MjNp8~7+l)ZU;m6u
z_zR&=1^rmiPZC)EcsiL(qv(^HB?7McKBH+SW{*kuE5P$jBa^Ja=LvA_F;39&Y=3u%
z*+~gZPGCg>D--x4fhinO0t*wEN;ghmRsypV_)6$-25G4*Ds!61PEX)#0eFul^H_0t
zW&)(+Hc4|t7jrqBVG^q}d{Le!@O(kPp_2%}(Ji9s6Znpu7Rg#7=u#T@Mfsl&X<RlC
zEKA^9!C5Y7i#<UyzbEE{K#{D>G4iSeen{Y#1b$8MT?y7CuqlDfLUn6tVj(j-`Z0lZ
z37q&b$W(m2ydi;~64;o)b4w&Ht0*(Un1b?_1hyvdbApQmX`4_xt+Sne)hcvlszgKY
zNPv{K*eS~F5_GqquQZqU&>Ne}tUI8&yf=a064;l(%#D!`c7>t|zEgvdz{y`FPm)zm
z;RLRYm3c`^@ZW+$zjRVa-+oIr6aLddJmD|<?=20sn-#GWJQ<GaHXgT;q*Mu9W!(fk
z>N$ab5;)DmnOXZe4HNh?fddH~OyJZpi9hrCJ%K|EbjNcJC(us(poaJlTJ~Xu;I9OZ
zCUBgZN#Ji$<(Qyyt#nprs!=q9El(>LI4QaalP|!?zUgNYIGezw1o$hSa}2W-n^SLf
zkm&*&d_Vo7$PzHE%1dM7FKaIIlK4%{6#=AL>DLpu!DwtF)5d=Z++?V?QP9S%1a5P_
z*#58N?y%FUIjxpO?h1f55&k6Y9s`#XBJ<0gf&4boxcuAV{{n8?fEI;p6t?{;0UJeZ
z6t$5dvSq&yuzb4hS1h|Wa=-eRy^$SWi2F#zZIrN4&PI6~C2f?lQQF4Cq9RK&JtTx-
zvya#SyFkOoY&<HMgL*66prfc|Y?QU}-Cc=z;*4DWhK`_ujf$dJRY5D+s4T#Mt}XZ*
zx+*pb91Sho8_aPc)dc?Oat3>;VWTERwUJ}v2^+O+WZS4~qqfbzp9^N$2-<j(F0nIM
z$40S-6v@Wbok0R_v&%LV8)4hu*$&z0I4`SZ{;Z}6g;#67E4REUpZzIV&qjS4&km6r
z*=S&+<=WuP^^t})f5#mhv`6B`cxp|sv5h7+xM3c#(UkJ6kp`WT0(Io0$RuuVqlJwZ
zY`kbA*Tz#eTG?oA<J}R`YiolW_DC&lJZ<y4>k`v50z4~d>nTbbYT!<=&e|X)Y-{5=
z8_$c1?7AI0Jt?sf;uZUXFWGq6#%nfSx6$542OF>0=w#!d7kuQBRCIN)qYaLo?<3R|
z!8{wYUsSq?A$PX%ssMazKn<|3t~O3Qr*P~34I6LTc#9)?SFT=1Ca1tmg(@QGX5(#+
z=tHHupj0VwPs(OvnuF;M-m~$(jY~Ez+vsJZw~dW9HreQ7qpyw0HomaY&qjY6pV}B@
z<Lo+VfQ_LxhS?Zs;{)nsz4D=r!8V2nJjllAVUaJ^$^2C#cNkhs3e0I2{>b+CTSnLz
zX`}5ldAN=Fivk1<X34MB3eCJOeQaaq66q5g`mb{FvdU;1pV^pTW1@{QHpbficG-B^
z_l5B1G_)KU)>7$Mzu`F1SC`%LfGskAia3cAWTq53>;J%z8y(!~nqp(Bjc;u%xACQo
zuh_4RZ#Z_2Wur9P#vB{dZT~lkU)z`=z}xSHX9_Tjjx;~QOFyj*&b7hav!?CkdA7fk
z#zaXvPYNusv9LmTsf}d>HWtxQCj}PUSVAi!5^fSHF<V*mr$YSpcqNsPGi{j#zGM3~
z*4p^d#tIuNZHyQpud%Vp#t$}XWXnJI@GExwGO*f@Bz`Tnu)cYSdo}B5>(}M=bUcpY
zuD_Y{6O}Vo9`R_nZaAdnhA+2H+iYWtjf4%`##S5K=uS2?`gW=Cb{jiw?6R@L#?Lka
zw<T^O{kueBr*8#9yKU^FBLzZxZ2Tg?uQv8_EOLZQ{<QNqfw^-<PE-^iKW5`td%rq&
zFLk=XouEmP9#IUs(8fT^UH(32+=eBL_>$Q9bU4#(9JTScjjoS{TpPbru>yO7rUcz@
z<A4Axb5H>G%l*c~HjXf|-H`c{)jw##YW&Tn{HKk1B|?7*`eu)?Ej2o3<2c7&Up~*7
zV&kO1XKnO6CZDqTL3_|oUcHh*dRpK!f-*}7J0}XWZnQx`(hD{&3eLZRj+`1H^9su|
zL^x>U;F^u=HYzx%=->u}zm4J!N;tU5;LkAVprGSRa@)pT8~1G7VO(7lxbl&2;`b`c
z`5feTkmg|RYK1?Q{mlvFN{u+2MvDW5929nt?jXbQouP<>q5`BH2xL$4Tc94u4>%|$
z`1HN|K9lKS%diMNr=){Y4pw?{83#?8$qzYr)WPQQN@+G#RC(9|e*(<(hyZZ#+hT>;
z$%B<6SCq029&=F6!T18jKItAV@8Fxt=>#Lc43JiGP}xB}2lX9PaZuHP<RHsIH3!ul
z)O7HK0~UMS!M*|wYdomS7T#DGsO6xxxLW4{|49LOiG^8)H0bz0kzT)F&UPRRtO!bG
zNPw_|vy0{XW$HR$N$z|$aL~{}#6eRBjT|VyNsT#h2g#CI8B-K)`O<9|C|;Q;H*=8V
z;3)?!9W-~)!ttY7E(2q=bOJ`0(F+3%XvBVUe200~!GtOq&xn$L{iU=LfLHI7%Wdo6
zIS0KR^l|XKgLV#HbMU%@7pNcE4~gv^{vVnAqR77F;AO{mMMg_r?ckuJgI64MVy#-C
zE~42yQJ!M3{mu?v6<K1|>M9yxYn0&)$KM2g+d+3>!8h6Rv!S;fbQ9o}#WJ%!9K7S;
zT~Vti4O&}ic~+{s(pMdScz*il?DrhJ@1U2%f5guIa7!=`VS>I6`Z@T_!59bq9e$<&
z!ySxpFwnsV4u(?Z`VBu6YN2KZI~XK{=SVm4ad@3F#6f&{gaaJr_%{WP>mvueD!mtB
zFd6CKV>*C?+|Dwi>!%L5t3S#CC-1ynlC_}-L&s<boXF&i<rqarQw1I8V3LE$bW57U
z!9)sQuo$CX-i)GGhDHeZ!}c#6OrgwM{JTS>cRCZnmk*@<%E9+F(kbNE4rVxbD2dWZ
z%yclzf#o3KV77xf4t{X3+Tkl9FuE>su-L&o2lMHuq8&0BITr}LP*4ty!(8HEDcg6j
z!of1f59!MVCHR&~el@N2J7MDQ9JD=Dlz@?ZrQ^qQdN1iJdi6RfnU}VP0l~oz2R}Rb
zkpbj}KbEZy*3s1+Y;f>M8+oIH=rrXgL0Mq^SGk)6CUY|*fT%^xOWTAtwhKB&Xk({?
zT@Lng$~)LzviWYtt}=~&6;<{)_{Bkwr$cOzm#8Sd0of;7j<LY~W<@sdY(R6Mi^6ds
zk|Fr!eQL_alY9#-mpc%k47LNu!4>L?^U;Cp;135!L~EWXf6zfnWcLetKu}h!doIBH
z$nP|FIpq*b=2H#}%Iu$Xdk6o}b?HK)kz)>yJNVlHC1G7kc*4O+ap{zx<bPbS7}Y|l
zDBBq-+`+#NE;%^o;Jj%0g6NCA{J)Ma3Qorgd6z{2Dulf=k$=s>b%xU<(v!I1;6Deg
zipT|%xar`QgL@A0C2`xq9S3(sBlqQJT{eEdo%~6pB~c&=wsybA`}BTE-l+>EQ8?+}
zve|NxBtEQ=N5E`G5}8T<O^<&mko5a4mc%<t3K4L5KxT;~N+$h@F#1oWRMLM>$Cq&x
z&j%h(;*lg8B+)PlB=Kkx)sm>5L>bXYl_Y+hBbQC$v82BwD3?U}Bq}7q5PEgHQZea!
zUF9SO@pEuVe`&#m(EOqy`t7f!TT~Tw`QnT%Jf1{$Mx<sEPbB^2S&bx)HTBn2wUVfv
z<PTk?dK9CL{A3crBxHf>2r3DhmGmvh0*dI7on{LV5;QC*uaaL^V3clDKj|+Qxk96;
zjgn}bL|zh|lW3AeghNZBb<$r+HccWY$q%vmxS62NOKB~VVDxw@iIxK73d%Lr(*iuh
zVgfMQ+z&Xs#PV&DXq!a)BswJVToTVSl9Y<P$VSde?UHzHK>FIb@(W4uUd+V%^-D>-
zKSX{xi7ja|liF79NWn6ch5VBL>oUPBBHKw&2Jlyt=)x*V^h%;D8%+Ak>F!Cqp5!0q
zN^jCYNxYH7@*gDD{bYK8tB7t%|GnYcl%c1>kB#I^4-l|c5Bi3vPTVtzcOT&QlHi?@
z%-%`#5zL{&UVW1on8XK3^h=`u|0mS|zO7j7i~1quiG)~ju&6aiWWW1R9`c~&sTJ~u
z3H;Fm&Ts)nJgE2yN0G#I4_|v2mBi>Iy1VG%;<F^iBylZ?>q(4dl_Y*nVrLTLk{F-F
zyd>r)F(HYGNqm{aS4m7tV(szJ=DWc!l9-&t?!QCBk4s(l%Ttm_G*zYwO3>_J+O#C<
z9}P`U;%m0NH&p&;Xn`)ZtEtSO;gYy@H9RYcIh<mnWa8NruRwExxk*$i6I#AJNcv3@
z3zGOgi4{pmyQM^qvM`B7Nh}t%mL+ked;KN6v@x=j{g!B$b15Y4QONvOTw0#QcLI3P
z95PoXu_}q5lGvEU*`?AC9EbqKtCLtGFvVMZH1y*G{<<XA3%ntTb-#puSrla9O-XE~
z^CuBs7~CT0rI*9olGw^QJ~VArg*;{nc$H~~VD_q;yNkL?^52Ky(Fc<Fg#ssGa|$Q%
z)CNgU!boCo62B#}FA0jl6l0WF9E@^+zlO9+A@u=Y6MPnUZgG~$iPk-*{k3qMlVWie
zlf@Qpg$dZKlf>1R!hJ{a)BIABanDia{TEIpu|J8ENt{aJKoSR&_*3Zf_aqvPk`E{G
zM-qo<^jl$O$Nd_(H#@N8c9`i14f=QJz|ge6k~o^g-wZNIoDiVq2C41QAn9>V(g%PA
z{z>9=67-ONlQ@&a?8*%<i0s)U&WY@KL5*JnDJ8_KFCPtEWH3A&Ah;w-UKW%sToK?Z
zBji!v<!&VLUlO%k)OK-`?vz9^7nv?@b4oJEyC~q|t|&|={PCi4FNtCKGV{5<x8!$G
zp?qeUW1&O*S&fTt{|^0kS}E$HkjsxT)-UX$i0gl_uEpJA%x2sUq`N4#H^h|TV&Raq
zfQy>{h2P&Ap(Mp!z{R63O1LQL`mS5b#lx<z1UmLZE=s$2_GXxv{XXJ?`k`8w%D5=&
zqMGX~=P`ogq4Jc<#mQr#axQ<BT<l9nsYw2bkbNUunJv3mB8Pf(uV11^{VFcVWU9)3
zC;Onfi^nOmi{QmjXIXwifSNA$RmkgIGn?NoBlAfYbtssN=coi1SuPs5XvmT-@}HKo
z1tpLLP+Wu_aKbLOZVK{JUBRj6f*$p8EK*;9L$||?Tr_s!{2FTM;*+c4CN7$}$Z-)7
z*`_XxUdm6C!ld-T=Ir{5a4rqxC@oyLwL`BRke{N47f0sFPt~_0Pm89Wq22^&<)V!M
ztp)x3pu&!rP(Jf{7wufU;o{EU%CmbzFSvNwMSB-7a)7^vI6+=={TcL3(PAB3bac_h
zMOPQExY+b%Zk~(IE;<SP#Er1_XYf@9LpA5r9Uqgn{5SO41G~TOqV<PG=MPDv^$q?b
zyz9q3hQYU7baOG{M)+*Gx^KH6<yR2janaMoWfxamyzAmUcHv^Pi}zjhaxvY-*DiXy
z=;LBEd!!Cs^mFl{i$N~>yWrWjMi-QUE_ga?fQ!Ei6(fg-zCLjI@l2^kX4YUAL+Cc_
z*TqoR|NPf57azI&`DcVD>v+zJr|i~lZ^83>BVBy#;!_u+IM{8GPh9X1j-PzCA@O}s
zs&)ns{<S(18RKHC%M-$w=;Cu1rH1ER9-TdoweE)a?_=X#j4RxbRal-!#U{D_!LYAf
zOm^{w>mMGQBIuWbP8F2L)eij@;iYLV>MzWlJwL7T%HRwaGdbN{EO#->#ccY(AJSqM
zb6kFpOPcTE8;;S%Jl8*db|F1uYS~Qgk%oArhx5+GA{Qr=+z!_>MmQ0k6`b8PvMc!1
z5*JH3%j!jz-3cwD&&-#2o^Zww!S7rQz8m`9#R?bS_4Dyc7pq*X;p7sReh{i_nZIG%
zt<q}Fi>(qn`q2eBOzS!I&~Tl|*7-o$z#y}r#ZQ7BuB>bnKszpN;nZ;9xk$O#=3=`G
z)rIC_hl`&Xj?PQ_T<mnQ%f+uQ_PU^|ce~i*f>!9dD?s{-3nuE;H;Rj|ZUtFuQE^|}
zn<fXMRMf!;|6(=92q0%1`YXWWdAb;;#cAdG2NX>gabYRygeMgjd!Yp511F1%$L@y6
zOu7hkl&N8tE?T7FXYVQf3N_sC;(&{PT%2}s(B%gMag@$R_v66%=2xhQM=lS$pfcIW
z5f^__W1QFDM0!aX-&M;kG&gdhLf$dPG@53ubV^h?!3gI1{|QU6^H<EPS-4oIf91TR
z(&Z^(IwTK3ZrLZDp%^UV;yitLpL9_S=Yqh@^5d)j(l?q$E(yx>lf+kDTyv4@;VBQ-
zUEFX{#Y0sO|IrXG9`aDy!z~7X7wH}{Jp8p)x#Oashe96iy12&}GE~mzp@4_r7cy~v
z&*!8G%5M_hXTJTpRM^Ab^sJ&Dig@5R37MEBy}2w9@KDS{3D5tMVWx)`2jt=&{v0da
zzglZ!(7l>b(!*~JvP%j2)is6qVGoaZsNkWZ2Y9G<L4M3b{DjhUm;9)QG9HF}Bb60&
z?&@H%--7%`VmS|_<pu5dt2FBisgj44)0C_06;`ZF!FEUl)jU-9P{)Jh`3Kz}_fW$_
zO%L+}S<Lbr`x73WIqOLeJh@QILv4?*ZWX3cBP8-aI~vTQHas-&@NMgC*~7yFn}j@s
zJ^qUa4)$+SeP$qQK$Beqnq+&Z?}4DMp!Eb@Rw<X9h5egcoe^m0p^*o28nX);VxZ4#
zLizhQiFjCbSRrWUA%{vhU9dS-C(6wFJiwAn1T8&0?V+EC{vMw3@T`Z|JiP9qm50_I
z+Ie`v!}i}pZ9H^QBF_ul*28li>b1@3en|Rba`yTIkq;K8z3Aa351l={>fvP%vlrxc
z^ze#@_8vNT`1FZT)n&Qs5I)%>x045gJP(yB<`LZIvwRo9?<y#>EXGUgA8qu8hc`XE
zOZ{{VzvV%ml-=D!4-efuyiKXx$maioyIxLP^>UiCCD^!P-a8&n{v-9I44uONb_$ce
z=iz-1y*%{xc)k&>7b;aN=aMq@5!uca^H}}Qj^P0w26~v_;e4Cy4?KM6VWfwTMN@-3
z4D~QfG(MPaBgEryhPja+7ReuZ7{N>RbBTw0AU(V+^6eC5z@gA59KMG?&ILbbJB~EU
z!)G4Gh=Gju@YvSK>C(AlJv{$H!_V6_A5<~#t-LVtIJ)Qzi4BhDNGs<Kcch6PCV80b
z;R_F6diY8RIYqQH)kE2dMW-GLvEpM>6$<Ze&zL5Lc5{0M>(1~n(}R;jGKE<bgXT-2
zehPCu%%yA|j(C_y2llX&KIY*Y4+}he=iz&gFD_*s`d#Q@k%z@}$iMP&w`7@z!!<%n
zJpWwiQbF%N)aY9e%c+MEG9Q=t@kTy9t>E<W@RNs)^hT=1!x|53*;k1WH_x}63#=BH
z`@npf<0Jf!w7%$Zy$7v$XoH7;+lA-<5jj$-5djZ^Zt}3j!&VP`U$9w}<evH0J%igk
z?C>!9W^lWQ84;OhP0wGDfA(<t$#ib>rf*hudwc+d%4R+MLT7kR<`LiDSd0H(Cg@)J
zZRa#*_i>D}ziAm2AjW2gMQS}0(LER*5*}<1CL;-_Ntuwvcr{b1b2cz>tHNDMa(G(U
z@o;RU>`^=qNe_RAWtYCUQf5k24ej@Ez{4RbP{@DK!|!6493WLqdT}}b@k)*tQ`XLq
z#tf4GWKi{xKZUduj<Pit_HfBV=34ofhf^N@VdJiH+`|capohYJ(ibg|c{SgF^wS>B
z(C*zM=RKTdc==6YIw$IuJrE#f#exy}f`_i_q>J>Zb#kj3q01hwc(}nJ@8K$=E>m2-
z?xAkVKYU9|(ZrOHXRvRIuI~uSPH)jk7Ra|n`viAA+!L4brEsf%I{TtjzZ}dhkV3%}
zDx^>`g+eJ5PT}Dc9!a4{3Pn@kwr!~t(o@Jtp?C@<QV0m<@r8l)FQxHnF_Fy_bljJ6
zNdd@zy<M2u&F#Vur9e<x@M(HpLJE(jP%ee?DU?b13MreyV=45!l0nQ=s9-TB?j&ER
z?Z2Vu_H{1zEi0u^IRz<&tQ4xG{9Tu7DO6ASA0w?QvV7gc_YRMzP%GsFrWyj&OyLO{
z>tCO9pVk)qCsU~NpyVAW!4%|_|CQ0~6qFP~DTGttwlGtz=>aCb?&-DAf5%ieg%>@U
zspTfQK?)617@ESc6dI+_IE7bJ=#oN{6e20KP2sr|nx@b!g=bQD?>i+Yh2|+dmBQdT
zk?w86Em9!OP2uJA41)W#rN}-lF0ojtnxTqq!_TJBDuvc5kWWq<ag|`pn#l7hv`b+`
z+wdoC!Y@#^6kbW8QwlGoQ0>=n`xFi~^!s`_h1(Z9k<%fCj-q<3M=m+MR8>;)Qs|t*
zqQ#L$E2a0{(D13bpI;AjP2sf^`lZl6h1XMfgF{H+h2Nz&X|LzPZ?lmU-V&JEZgiv-
z5<w5@<hgK9DrBYfj-a`7BVMz}oC1M&Q@GHu1@ZeS^h$9J9O^A-A3--B4-84q=qtLo
z7>x`_VPFa$ic7^+WyGJ659mc!aNNZJWytF%4@#kGGBh}aAt^AsJrrT~qZEdxusVe`
z)JX~>Q}`-{X(@ax+W9nvQ38DOpvTcEd?tGQGKDdM$;Q7(VXR;he@+KZVd^4zyr2^V
zohT@olTw)c0IyyboFZyX6|{CEg$1TP+A#B2U^*Q&g%$L-6lSC_Gllsnd?Sj@V&qR@
zu4rVopsyw)^8{c;wve+gmo0OE3&b!NaX#*n7Ye#98Coouyt*WXr4R5j4&(t|F2Hw!
zelKdV@G3FVM)yK{=rg}dKTwD188pY*6n;!$PYS<~b6r|TzkOQSk;3`s!|Mgzkit&_
zkh4*MO@eMtVaxw9^&L=B6wm)~#JdH_AHhJ7pn!8bvvXutIL?3~B1k%dfMgKKQ4kY~
zi7X-rVgMBh3W`b)Q4m2;K;<Ux%<SyWBA_BU3BS)YU;gj^UcY+PH9Z}wt7~R@s;dOD
zMZm2BvdlJt+-=0aEy9i>wBI3pC*V#2-&zwVC38#pT}9Ykg#AT0P=p`FrJsthS0H=H
zt~GI%Vaa{ePT4s>7vXyLdTs3CFGc8fDtbut_SYgDEJF0A*1XC~q#rKA05_h#Gyjhw
z94SIq4c#;p6+tUPISu7C=v*U3IL+l>1hWWM5&q>Gl;d_05^SpoM~mPT!7U2+LQ_TX
z1VY>=uZ}250l72zYQr4vMy89xrwp$KqS&P~%AZ9zMm|vEtqbYL1^tA$i&shcs|ZAR
z??2+wNv^wijFnv9COt)M{8qTTezpkbitt|%t`^~Z5iS&gk0<U(Uo66F0~MZ9xl9!?
zRJ~Lb{s!Xjo|kWuuW+G>e?ZrYP)tKf4W&5b!!i#IQM(q`K$xYWga)3zIZ-`4hErNY
z84cMQ+LVY<8`FA$?-*sZaCeu-Uici$(GbzX&H3`xS`gl(p@IfgL!O3;8Y*dMq@l5f
z${MO@sG;E&4OO-9=Q}jqtf86~{u<`{246h*NM%o|YvJDVkh@~>Zt|@fZqsm=hK3q$
z*HBYKT@Cd#@Q4r(3f0n3TSFc8wz_<WfJCnMe16Ts`WjkHk8nf{G|VX5f(MSmCx|FU
zgii`?Bh#{C<!<S24U!gekMB9T8loCxEqqU4e<mMPIAs3%RJ8D)bxZ>jk+n4on`mfC
zK4`dKLo*G{HN-XC!!8Yux6sf^L%YH8mICrmBJtMZ(w_YI(}Uw}wD3`N=ymB{4Q(~#
zYau83yP=&Hy6I*r5D53xIcqhy#~;wpUPDI>k7#&M!$a)eJ@UgE{wOW;5EdVc9W=aC
zH=A!b_GINPFWO1NqZ%ILSca;dweT=b7cD%Yv#U!M2X+0l4*!zynbloG4-Hc^Ox4g+
zL!pKzHH^~GOT&UcmB%&o)6iQB4>7HKMed`4u&;od`7@pKvOPLT!(djjL>{2w2@M?G
zK#^syNF1VJsD=?5Mrs(QVYmjqkMX|%yTq3+GPz!HS?VZ1|B6C8oZgc1l!nn7#<9;D
z#!!TgwSHEKjisP=lP~uw#UDDfz?mR8$!9JtdC2XF8YT(KWC2NOST;6|J<;%%h9w%N
zQvfu)%BD3uqhY2N8Xml?;aN%=nXfCewD6zB^IG@|=0y$Ho|9hCLigiDNZ}8cmo(51
zIe%>NJ#e-Lz5$YZuV}c~D~reIUKf+~25(^#0~P-6pQ~XWXR3_+riS_Cq!4oUoG-u&
zH7wG?lV8N?(VeHdXcfS}SBoi2-zjZNM&8!2RKuql)@oSBY1Qz)h7UB_OoAu5R<JDw
zO1LMseyvPT>?^tYu7q!W6w&vz&`yA_#2;!{rD2T*zE7^!FnO``v4&|K^N4)JMaS3O
z`SK?ex%Eo;D!X3U-8-w{LV2AAvh+(0n>DQ0uz>}r96pmj7hL5ZCH8aU4GwS8@Wl<h
zxu5?PSGuQgX18egTBwn41Z>nIzU8*?uR1%nUBkB=qlf!F?9lL?hC>z(TiB`Ldky;y
z95C>MhFu(;j_o>jYxq&ay*lpGu}8yC8g9~2LC0PV`!pQY@F(YsH)^mn*cuLSjx_wv
zMZpQua8Sc<T6l8gkcPJx=NHasyR2;du)s?$ELbu?9na%M^W-B`{*;g_ilO1m{q1sj
z=zf!|X=u_rU#Ff??&ZCv2GaM`EM&2ShK;S2+#^zwYE6wh8eHneFQXpC=8wq1*?Dyr
zM|_q)A~B^jq;KGXKr#Zd{4ov3HJoOn)JU8u4LjyZCpG*{UDQosVw8k`G%x}}$9KY*
z2>)t0#eTMzc|e9lb(nls!#OHv9c6W#*Kk2YmW~p{n<^JI6xVT2MfH+~%Unb&<5$R>
z#rZ^-{u7j|?65$J>0yEGN{o<)Xm)KbQ&I<8FQtRg7N$I@WKD^D&X99@7@dJgwz!(3
zBch}Hi5LqIj##CXV^#+Xuo(NyR8dDI9SwBcsbg%@SY;j6b<_}e6&+Re@W?<l0ilEE
z4w!BhNPRPYi;i1a+hVzvjv1wMZxh9C*TWM5Jb=I(YYIy9nc2i^>-5+b)^>-Ex;n1C
zm{(6^uiVwHzD|SfmZT8grK6#a<~myFXr!aD4q1ny<8B?24ju}ieSWTv5mnTvj`g);
z)hA>VCWmIz0zal><%@Yub)4QQt2**nk7&Ayj;#yhJ73IW>&<i=y{520^`Y4<b+pp)
zOLwK6Ahy=gMyH=EIWDsI{C_3y;!B-QEd(OD-?t?bw0-#nI>-c`J-J`U13F&O@v4sY
zIv&(9h78p4kd6*Idg<t`<6#{gb#&9wUB@Fj=n0{djz@LeUMzR-F!hnfYG)mf>8P?g
z-h~Akt3-B<31L@3luoy<F<dRXLh3Y3?V+P5xiLZ=I6^Jdu{<ZAcpn{obqvxmSf{y*
z{J0)EOz5wppN`LVN=$61OHXBhjwf^w87ScK`laYefX)Yo@Gc!s>KLkHn2zDZr>G-z
zG!c#(ZWoaFC>@y*YK6zMp3*UTq<XkiWQGwR&Dj~N(k;V<f$BINli0M5{)5!<0!|Qc
zq7GhVp!O*`rs{ZB$8&-{O~7Xad|JnJfy@xFZbD`yylbWow`O78PomGWp+V{_9WUv4
zK~%^BFOs*L^6y?Ly{uz4`G2`wk58hN2dN~UYM8^jUeob91w+SsI^NJRN5?`Pi*(GT
zguJ12vD>wKLAtcEV4jY7w=45?9P^_KbR2lMEs-~MEY|Th=luz}^S*fPb<wwU5Hc;{
zTFcELvQ)=1L3~FPTOr_bHhNX6^IL5D1?62qxwlRHeH|a@*uWXl@u7}YIzH90`TlmF
zeJiczLe{~ae5B)JQU3L1QlGfOcGqy3{1#&+EVfq1rJ9AjWgUfIXEdKUJ2_Cw|6JVr
zg^n*dcZXveDQtg7H*v6sV$Khd%{smkb#Bq|wT^O?%76By{0(on;>0h{$bNWFoDFT&
zF@PU>?PA~R*g@4~ppAj=bnMiTV<2MSdmTUMNb2x)?4t75aahN1I)0?`*TE;qKCZYW
zba9M{yX5tY<9kK+m0nrgQ2JTNem%5&IH2QKJ=_iWMP#|@MB+g~A@PuoHC@A#?@Ygw
z!#YeIf9N>E{&ba#_@Ei4XnOb#zz3NwvOLgDq9t&LnxVFAa|JDmFeL<$NZ)NymkVTD
z)Dw`8)Rd02j#JbXIs!_2NBJ){R9en()l=D)Q2x|$T!%L&eoSN;V1=){C#Wvo58vMy
z9_4Qx|L8a=dcJy!y!;h~kMDnVT%D)v`MTX19cOj?$E=QX)CoDt1sxZu`Ss8=g6VV(
z^^(A^2zXgQ60cwF`8%%ZC}yCvfieb)8{x|*-ycdEp}kF(ff52C&bRbZ#{c%*Xg){l
zM7}wfHIQwD#&X;zWa4{!IRoVl<Qj+?xXC~T12qiXVuTiS6%AB1P|ZLk1C@<%$CA4%
zRg5rn3lE`l^NP3g-55sr>cVuhf$BzRh)A4_y4ApK2I?B9XW(`tv<srmUM(ZEsH|yl
z=SQOXS#2U52u(!F$b8|v!vIG*MviygCD%7_r-8dfPZ}8E{8m=88yaY2Kw_6XrLlp{
z6=HWAp$`PUO>N&NzoeHS&P$vx*??l;uQEz&12F@tftE&SQ<P_*i4ndrwlKorI86<(
zt>y;aUMM#+Kx^bi!U()fuP`zW4INvFN+wN|`0~tsr??T?qMs=(w>6M&V2XjM2HF`Y
zFwo0DZv*$Ts|Gr-m=V6V-EV{@PY<y`FZlrj?G03^RY*yAkZk<A9Sg+cGQXiZ8sRc|
zjGZy?h=ESzSR46KBm7G3Y=nEie1+q<x)_+LE8HCBSL9Qt^12zI8FqIAJq&zYv0eKX
z@t$m=MVzUST&h(_q>q8V21Xiql2c=#AH~DKKqEBe?OP_+-w4e<DdYnTT&}EMIWG?~
zFxbE_BYYVi!Wq0E)3%lqN--PCp7dzTRXN-Uty^itHNpr#9*K-H!q@V#2F7t*XOyP|
z9Bp8Xf#s#;{l(-*4#meCm|)<k66Gcvm`FiwBePC^O6;}dN#x#ig$Nx=j5`sTX5eW9
z9~xL?U^*M+yl|EcJj3A|c+tQt1LWJY243LAIWlMMIRnq%m_BB?;mo;vi3}7A<aHz5
zk)AE!tKybd1SFBSzs4rEhqt^TWSinWM<8XUN9G$?U|@w2e(^0du*kqt1Kj$4lPh9<
zyPxx7Zy8u@fCy9RB54VAV@~94BmDMZVwq)}Su#P$DtBx7PQIjf7UlL`11pVihxt7t
z+|qpCz?M<r)ek6~P?-1~z1qM>26j-{a()ebV&Dq{Um93L(YjArXJEa7PgyxN%zet*
z8^{I@*}&%pHnOT><?sJH(&6t274IgpeV0rFW)cZ&-W1zx;48LkU@PT;%fY~q!744m
zsFeO4U6!!o{Kz({_sQXh#<vEzFR@)f@|F~S{_Nyc^2)%H!titZ2LnHH!43{BX?Jm4
z3nRM?P%AQ9vT=^uu?2<dCm~vU4eS%h&jQk(jhB8g@GI#iel~H?z#*<C6Ze@oY~VMl
zCKDA+{BGb61E;7c3>=|SGLSNm779V*)EICL=mrd-`Z!+GfEDsBW*bNtxSE~ICBrPu
z5s7<LK5t3vVV9MWS7*ve1HKW4*5ZSJD=sjQF+elLzYH8T@TU>lrJvx43bVKvj~O`5
z8Jr(}$@1C62OK}xsbl}9(9Tl+F>sPq(cY|V>|a4)J<m?bKSOP4psa~(6Xy(^H*kqd
zkGigtdO>uCHD5HsuQ~2iu;weAL<3nSN|?B6;2K#`m{rUSV}WrufT_#LoZ_r%h|0td
z?UE)+nJ8nT`TPj0Ds6^a2USXzn|fFxLi2d;hEafXOq4Uj-#`%)n+n6vSehl5H*u30
zDs!HuVcafik4h#go4CtFLlad@R5ekP6`J9;STz$h%<uyoCT=!S-3*_wyo>*9=t+h@
zHE6DRi-}uJ5MjE_#O*h5{^qD{qGLz7ff@c?TD4TJW8w}IM40Ldq@KyQ=>Jj7^)idy
zX@Vc@#d~KpGQoygnrLOBv5C7W6%}(O6HQGtGm&c|YC<-lm`GH}Z6aWqDoRWsq^KtH
zC|6&}Pa832nTRwOW0~_pg!0fru$StH_Li+hTW!tovz?8`P23|W#M_wodXhvW-CE8!
zLD<d&S5|?*`EGN+i3dzfH!;IRdlL_u=xw5piHA&dFhe7s9wr_(LlddaCYqd6_wJQC
zns~%yfFy~jlRzF7uteRqT}(V?qN|CIE~_+<>t^EKsaf}a9PduzxsXD7PZP9^n)JF_
zXo9d8nS3Sk!8w)IXnjo#H8IS@<0kr<*sw|JZ-x<62bvf_UcIh9VdC8p1x&PD8f0RA
zyZB%eLrh$rqp}!NXSrZFXW7IU6Jt$`H1Q;BFhl#vQ6_$Cr7*oVHH+{mk-hc2I&@d0
zks*(x@Jx{=vP&j*u8xiuaDsrJKdF#1*#wcPCZ-64c;$5p;WQIZ3(EEEGbU!5SjX8h
z@vMpG*hv!$Ogv91GV!{JH$<H;ns~|Nqcd!4mWflV3aXxr%{D`8z*kJXDiH7QoYzdy
z8juL-gMO9>=a|^_L3AEDTs6k&m`g3RChNg23hno3+_lieA`>gfB@=I&Sj?4@jJ;#x
zEz!fbO)NFB<VOE@UQ&tETx}Uw&^m>~pWmU$nb+0jCI}n9p{_LXo{3LPtTFMvi4WMQ
zxc5WR?NugLb95b=?3=ByDzbt#5VFpXMKKQTQ?8Dj)@ubkl$%YQDgTeW4V)3K6cbxn
z(!@p+n@t=|$2OUGu|eMAwDhHkFUZ46%FvUsqL<6jmbI-beZ}5R&H9?MdO<DQJob%1
zC`;Q+Y&Y?viHnBxt%)5bzBloMiSO7?6W6&%){&Xl@m(ew{TtgYAdw17BTPj0aM1}V
z`bkLLUK3Kwc-c}-_M13BnYYl%!Y?L%r6#dZ!@@xmhfJI%yUZ{o<zW-135#;Y#cuK;
zEB|4l$b=^FBPJ&Dx8T9JZiZno4HFDu+2w4`td{ZXF)?iuS9o5DE0;<@;LJJ#ak(&S
z6*B9SOBpFcXd=ZWEZS}VP&O+GL`fq5-Ie_(B}$ZBxS;GYfgCq+LLj{TFM<4R;-4Fo
zlT@<;Z!xVc3o!A<v((sB)D}uxIB((tb-Rgcly)z6k!^|cmrPu$rd$?8BD}<V|1-hc
zi4?O?+(MRx5?0u45}8Ui%#MC9m$b0Ki!rPx>4j1|a<7aP^02anJHCmOwU8~cIRcU%
zu~6;?Uf#k@0<R!oMFA@b_;yd3g{xSoYN47%I}rJ13!9#ckO&KmG0L!{Y>|{(EZl0L
ziG`*XZnJQ^#Vt5QE!4D7%R&RzW}&u)I_!^yx)wIJml+QA@B8FO=g2enDfKLdc~a{0
zmO1jC#S!9-u14;%(9pu&Oo_<)Po+i{8jE7Q!~!HT5s@rhr^r?q-IXcN!kQl>#X?L_
zQ~`ShGOdqjiNxTo%`7yxP+;L+3sc{Xx3JLKLfk@2k!>YluXp3k7D)G4Xxm0@YvIi@
zvF|U%+E`dsy}XB5KF9cbyq$$b-{kWW@%t>?Z=t<~cV{X)W-1R@R8WyepOdEzQjLM?
zgBBj*!22o07xhy*SUk}KB1|1ERH&6l<WUQqEzGqr&q5aqk6C!iVgOlmwb0GN6BY(q
z=x(8hg+dFxEL@l(_q1TnkZXMz?PNs>dow#->L(zPJ_6}$;qe<3ZgTeLY;KVT2*_yB
z&%C4zvM|`f->an&0uHe-l&n_cq_o{umdG#*lN!szEyichKk>9Q(!!G#MzPKh<GCM6
z$G4U}v9&DmF&4&Jm|@`=&M#eEt&fhgFy6uh3ll9&Ay+L_JR(i9Q2*Vm$rfgBij>Gm
z*Wolubw+yH!gO)<mf6a6daX?n-ZIm|vljj{<yS2{XW@AZvn;$s4qM?~?u!C)FL%tQ
z$mmTGQexX<FSCA%C}m)KtWwQbx!Ll>*CI2L5oTYr@H%U#8GFOR9D#69Y^C_Q2#ND8
zEMWgB=N1-njx4O;oKgTR{P;&~iN)hT(qe(XWx*+R&*k#DX9u@^ThNzUSSBvLV_~@!
z+QHKHk9RTA;B%#g_b8bbKDF?^g%2!zY=Q0sKcrAuSj{PZA&)*YyA6`*O_8RsC0E2h
zqVWF^BE0m81v-JG9phTcUQ(jn=>|brXJNf)i=HiMTgw_gv+%hUy6dFpLmDxDVc|;)
zyV)@dn=O20;X7{QTl8LwZ!COkVTUNZ#lkj$Y!#3`JnOb<$4a(~?D{ndEopgLzvtet
z4|HPry%=&)3;ZCEU0mib<k9ew{MlpSCo=y?Y@Zd{!IDKZqupyEA1#RdY+=8J?Wd#z
z7JjvG?(Zn^Uo6n7llVbOQPa?3mhd+Vzf)m4DC6J{3r8&cW#exfMHVzlwT*r@bPI+B
z*tpq-Nj_M(LQ%0`TS%~D7EW=RECf5HKP?=y;9BrFv!m3cg*54uYAUWjV@xT5&`)fJ
z3f7{3X(?}5=v$QtJ*i%(s~)$oZ=^b8xkQJqC)gRT7YqMbI4S77l({Coxl_{HE5!fn
zlXcn(_ejrC;afOk;ViY{>Ns~t2l%BT<J1clE>f@3VeDLWq%B>taM=Qp!*e754_>u!
zjrzexMH|Iz6t_{@Mj0DfHh5PFI~)l2Z0oL&N(#J`fJ-)(A)TAFWo?wV@!WDL+eVI!
zh>a`#vL2nHma{RmR^bb^3g@qkGrM-AdXtT|S6b&k75a>=WTUDLdfcsSgB;jZt!))M
z+=!-c+iEtLrGwlVPpZ{z)UeUoM%?Ck2i$6-p^Zj1ZnJSar)H;A&qhtwP%3_PvRd25
z`xDh#HeQ;fp5Cd{v2lluBm1PfqQIa3<gg60^=&k;ai@)eZR2;@7&Bho@J|jQ)5LFc
zR*hF1+mLN2Htx0|*~qo&)J2I3NMv~Z>|Oul5Q*7PZ8WvfjP=|2XoAYr#KyL=5h5&5
zaZ65f8!c?Kw9(3jdw_216ka79|7}<U;lAmSdu+6^@u-c?<d2Pf8y##sY@?lx0#-gj
zeZa=OHtw@=zm4IO)D?P+HNQVeU3wtG+NQ<}+S_>021mgWJ!JELgu-FoUG|=iVstFu
za=iKoN2JF(*_d``oct;EvDC%JV>VtHulBOh)yCd&syA8fE|6|E7Hx<O*JC|w@b;bp
z77EBLS=3v!(#J+$8`*K?gF_J}BK>U)u(8F)RvS-{!!};C@w$ycHU`^x#>Pw=Lns(F
zCfb-}hi+hpaZol!*!b?_NZr9%Bkj=t?UOdB1gH&&j}kbuPuUnP@V8&c8zYdhHpU5L
z{Eadb$ip>J7M^T}%l~N`(``(#G1U&;nEd;*G|k4zcO)+Sc6{^vOrjc`VdKO03LS&c
zyU4SYWb%abbvgRH9lGtEMRB6QypZ>TfG^siGNIaGftPK}7Q_k-<8%xB$nnte@2lco
z+Jv*f8#d<HSWVfmG1taC8%u30v%$ji1$<M$1p+P<aFMv31s2<QOW;dvye$w`SnkC<
z!n<G0d&kCdO1n+(YM~e36<n%Y^55fvIu?7^#!7(@=c9qDen&l(2LwK}Lo;~ta}`B#
zd7OjgEg#$X#KxC4HrwDR*4S8QW4(<}IZfY1){1uj*r%}3ST%Wr$ZoRn*^T~uE|87l
zUY23{!Uj8h9sf!o-`M!t27As?T<<@P^S5z!*k`I%8{gX4VdEzX9%bOhy}KzMy0p{A
z_k!{RbpmBl;Oq~(`Xd#>)z}_8JR`v7*j3W^**Iw9kd2>hl<J?i-^KwOzlia^7mH;L
z3J3nH$nrsO*v4<v4>stMcW$k`-&unl9_1j%=(D$|YI)*3C{aW`FhSvC(V+6TaZL1q
z&q~XN!>Vl9RGUX)3D#34N2wVj?vd3t(l!DcbRA4Pf8R!mI;V6w;yj)}n6Yux#-CKP
zYomNXQ!?v(7M@9=!{PRa<l{C@*cg9%$ayktk)HDp<<`c81STf%uZ>ewi3!}3z-b$2
z$chARP2enrld3y`vWd`x)_EKM*|=)sf*rcdx@hB)jmvg;=?a;-G5W^VIQ?Z2p-a+h
z97O_$*G5Vw(Dquicmk6bDWwFSl|Zqrd>O#>FXfVg&H}s|UmIZ!^czV$JAv{E+>}60
zB6M*X5s*l^1YSCmL!?3i6%)8Q5jx?dlhR5FR8555N|`DrP$hw>RYUr!RJ7U+Is~$?
zYw_v{)JTM0u-+2Bu!=8{Z%g3z1R5sLD1n*@)Jotk7XCo0oj{!g>L+k&Z0KgQ_qFI9
ziO@GJJ(AT;pk5+$;Q8GaiLikv!(w*|g#5XyjlvolC%E}0MH7${{3yWTbFw6AU?sT%
zp$9D`fmi}f5@<?3mz3!rRZSp|b5Se%>8E5uGOAeu%@gQetX%5^S|qUGyU?9!D}l5W
zuxUw|6hgmS79EYYA*&O3B!Nx|<R{QBfd|=#4?+iM1!8FQru9!R_1*;TOW^(l9!P)=
zui7U<Cs#y%cqsI9RXR8JP$G0c%ey)x@UR$K#{|C23n^vKD~~47If0=G3`?L(0*@t7
zm_V-tx+cJ>?2*8-UMi7pBHLX+I_Byr=;OL&@oMh``XtadfyWb}yD;{g&RRKyehKs!
ztZTe7Yd``|PzYCM4NhQSB6PFHfoR_=gT#a~OAlk5>mlsGfwJ@fHk{KpQyQ7TlL?GS
z;Hz5YIYH#=s05x$U|a&@6BwPqo{U7Vagm3W1Jk522@sA=U~ac8BCK%QHhFTMOkcZ`
zD544MPT<D`rckaDcsqfm2~11i=>+ER7D{pgGZL6Z;Y{F}1a|dRo=xDn1ZJ{_@5IgX
zIix(#Vt2;wl$93~P(P2qz^i9s%WD-*KU9jumlK$sz-zp8Df$ZMx@7LF0w+SsnPqW8
zrq{_sL4VH)Df1FYw~D{BU0Iai26A*hB_V-3zmE<ap0_Z8&wtK4vp<hl-%NmTaRP4%
zWQl;Rlf-4j6WEl%7YQs+U_}BSCGaujFoBf`lsP7Sc)dAtet6yo3A}%!^*Y5=UVZSZ
z=qk}P@zn|X2QFkcK1pCr0&5dkM?TZV);a0Z1THKqV8?b=%3UwYv)E?>*^t1|Q3bsH
zbCKOB;M=FmvcQ)KY);_Y1a>6A-hL&z{Y?U2Q{I{>O#O?gTN2os07vxFFqxEX32YZv
z+Z0ooy|r2VJFYU$NCG<r!^!jS#YB9wEZ(JAob2U|GuBFb68I^BWCDHydlT44G2@Cz
z;AgIJD#K>+n^#B4t^=Yczb5dDXoZxq+am`PIF!J(rt!lG{3hs?U&v>c9r#^j*?A79
zh{}qi6I|62&?zdvONM}FwyA@D2+P<BBoc506UZx<6~3!@VsxiY$A~j6Sfr#l?+N^s
zz~7=kAmA|pGvud0{uJ=wZ_*3Rlny0wk0(HQLcnWFBmX3DGJ$gmoKK)fH2yDj>FVei
zu8wb|Q`9_yNO~z>Ix8;m>Yv{z7ZSLbz*P=bF!NFZm$@*PMab3k#mJQe{-ZwmCC+&v
zrT&u&VKE2A9b`Enonl|Y3B|sofJE*;*SeIze`pnFwyc9}2e-SZ=_1EL#K8&&?>Z>w
zpuB^}9rSZ>lY<HlS~_UuprV6H4r)87<DjyGDh_UOaI1r=4&GiXRdWDRw#0e5=Vm87
z`@_>Q)dj*sLp50K0OheBD&cQE)!Q7@a$vrt-0t9uLbaxVBc6>D|6*Itf7J@^a8TEQ
z<RI5UJqPt2ZuG_OcIY=oYT)2b2N%1mWvdq4s>JUSII|6T_1%I-4jK!}g|1CV<k6mE
zf96CT$PQEoc@7i@XVywF2Uq7R_ic=uRSUY^k$q*I)Wktk2hAP)enD#H;Et=(>N?pK
zewLV)7OE`-{lx2eyxQ79+`+>RIy$(Aw;Y!89kg@M#z9*LgEmXgcKcuX0tfdxJQ0b9
zI3o`3ckqCNq5njfYTB`}MUms%a)`8d_#G5$^;~@L5~YI!LS7<du}2(qa?s5|cL$G(
zVqF|OCXmjeDi-VNga^l%mNSA<vjUE&hXc++F9*FH^mMS+iZK;BbQ_yTgeCikTlzY9
z=gkODmhpTUiTxc6aPXXi=N&xZV4#C>4#smt?2?1w4n~mT=MNzRzgIZpLq&F&fG2;B
z^U_EMPdXUwV2p!N4#?F3+j6d$v8M!n>5V*!1gChcgBm^5(q$v|YkAdP&zs<2BInM*
z3<r}OaLT4QnCf7%DE3GF?C;*lo92Wk#p?D{pB4pL9n0e(tSeh{E)-Lrp-2l^8del3
z)l+?z6Wv`+)+#JkyYK}EFFKg(V4j0n4qkGw{k6PTg-nv+FH>CSDYJ!SQY>E)m5{<2
ze9gh@4&GolK8zGQAD!cXkg42)g82>>IC#s!5(f*#*g5b;4qkmT^4I)=Hw9&}fb*UU
zdGfZv-=P@PYRl|W2g`2U#R5DHw_Nmx$VvzAQO+IM4&Hb0frB3%>~Zj+gH;Z`aj?a~
zY6l-V*yv!BgO442;)E(|t%Eg`z*W+xT%>1Ww{6X-QN0}@DeD}pcd)_1XAVB+;$0DE
zs#&TXQzs~dRLfLZUpUw-t`h%J)JcRTzjE-kptCTukFS-sI@rPfe=BX{e65wX3-~S9
zPP2ILrEyZebFfnozjv@pASC|40v+;+>=u+(RSH=CCkK1EtjP9m%034_J2*&v(k#B;
zLA5WHUj%-@!Cf?MiYvR%=e#vk`IU?Ao)(psMF<Z$IPBo~wHVWH)Cu25Upt-uhl3*y
zipcG+qPl>rP@|60A}nAC3Y#+p((z0z;lOcl&cS&u83&$&f2niMM3N4C2Pe69Mye?X
zX$RcZIYCa2Rs#pe*tgMYMr4l)_@{txk5E~F>A1);=+9r2TL(=(QT}nlus*DWIHA&)
zAIs7yQS7vUXQ)L-sAncgXB|8{R%QJcsK=;*T~u&!$-!j@C0vwranCsQ3e}f`YgA~%
z)c>4tlZty##auKUt}+#O!x&iHr^*r(A|#e_@$|N6HdVcg(k{9TSIf94>msXIF6mwC
zDWpVPgquGC235)vXDTnU+z6`ZqLK@SMylq9k(DaDsN#YaiRdje%2HK<GrNCo1TJo7
z85cEN%$y+I=HeC?-z=AI6<H3S0iH-FLx>R8a#7pG=Pow7sN>=e7Xw`ka#7bsJs0=6
zxZg#67Y$sraM9Amoh}}GFD|*rb#a%A0UM(Y-T!%6Z^Tai7i;X|Zh>509cMP`qC}&%
zc`lj=L>5qS5fg|i?qz}P@fP$(PLJhuz24MCGgtUv7jVqt2#KxS&?7p_6u4;ZBF?#R
z(Z)qP7mFTJ+qyjZ8t>k=B_UJ3$Sx?=j+a=5p4jgd@Sb@&54dR0Dc~qvJm_L&jr@mQ
zbaX>s=no0lLBPi6Wl|m?|HT;ThP{&;dV{Ag^p0EFb#^g*afC=$7u{Sue!X=UJzVs3
zQRs#q*Jmz{a8S?fkFcIzVz7N(^cI!(5wPZq;ib|4#X9bf^dsjtMf(dlK)@#iB#~nu
z>|%(EDK4hE80un}i>}Wo6I={;F~Y@DE=Ic;$pM~|o^&yav$kI$?n&9S*=8a##>H3)
z$;q5?F6h8Nm>juQuV7!1Jf1>Tub{^R@`)>vi7xCu$|M()1##&)dH#PgEuW`RdR;7V
zv5=#7F~h~HE?#r-3?<6N3oc%C@vMvIT>LU4^1O>H3nFFbMhFj7R<hPBB+hd25{K;K
z6&Eja;wq}Q)`+o(3^zdh@FuzQRQ11l*+gC^lU>YZCtb{8bM58dQ~B%(yQ=@2!&m@B
z=DT6=0^Zx}pPWT5-gNOU=h4Mt7jL<E$Hj6NOI*Ay8hWf}7UK>q<q$T><35s>31q(?
zWp;&&2_Hy|EI^!{WLMvF@jk`O#fQANVHoCsR~ds~l^X^uSnc8?7ysU(u931ocJT>&
z*t}i6y4h<ekb%;4vclRvb@_)>S}P!tbpl!MV#5u}X9Ag7PTAz*3+fgZmtB16VzUd=
zh2`Qa7hk*h)x|+BTNhhg{ODqji>)rUx!6fb$c}9%2VCrM@tup`OUC>$3W*I*Mv2cn
zE1Mgn0~K0+@8Sm+yIkxRw;VefVVO~L3J7b~F8qnY;NoW&`#F$0u}8eN`&>+XQ?4{J
zj|C2hTYA@5e&MPwQ;wAD)gE$jm|82T6j74vE5GsH$K>AyKIa|f4;M$MFl(0Y)KodO
zUs-gbKy#tHV8;wf?3Box=M|>S{bk!l!o}Y%{&C^Ba9w0v9ChKjNV-V5NW1V|Q2c0|
zPZNFG@IUgS%+mw`MdC`BwWRF*LH?gEj&Y`*RgSx0$<2SsuY9Cz9H5@yx>%+BB_I)g
zM4#luxj0ScyWydLQ)KUzC@u3@`Snu(XI)%y8U9H*Cm_q57d5lpi$V@rlGgZFT>M9k
z>fu%oSGi26zC7IIp_qr_9!h&C;~~on-^ojO;oE6zJN83&l}JgEE#;wQ?Lxl)kW$t|
z#6vn6Wj5PGjwrxaN?szdoVfH<>qrF;6+Kk*01r=eQ!5F2WiNc~9QbqOr*D)h9;$lb
zVSFZLZ)RuCN2`0N;bA&GNX%8}e_&$|mG7B+JH5@r?H*(giiesWYI&&dp@9d!vDapQ
z()o2g)bVhK7rqKU`JO_z1C|-%3wb?O*hBrPMDCp)?(%TA2gyT24~@L=bE7e9vtxY4
z<=g4iW-aIefN%JG1?4*-U-)yq@ZB})Va%QRr@E;z52}aO9^xMIJT&ppf^6~7)Z@8(
zG#6uGZETt~@B@J_e)qSGuoYHLVk-}Xq*Uv!-s7Q-hqhk$Ry<@|&NF5#-$Q{HzWuiI
z!0fzh65+ibUg)e2PqdS(-ur-u_8tzUa5#kr*?A9k5{V=_cwr>IgS_P7VGkWWJmR5~
zhs7S=^6;pK&K@RvnBt*}hsQh&^)SpsR}bAh^!Ct)#hS&sdl<A@>fzy!XQlOh<enZ1
zJ#2m|o5Wt?5|NpSJi@*n`g<7Q;c*XxBMK?~JXqtD;nU<Nu2Tp-3?%EGmRW$1IFTWo
zyRG@m5)St;f?V}5*272-PkK0YIrfwn`dWYVU739t<)Oscg1;YVG1?3LobxKZtdA4;
zcn=eJ@0k*$7nRPP=!MSGCwU-FzvwegMsFXPJ=McBvd+Vc9&I5o-NUmUp7St6H1UiV
zx_Mu9TH*kC?@U%ZGDNaIl}LZy!+UM=$rIK#%fm|^=6aat;bk$*S3SJuVYa}>FIHah
zKsaH1$cJyA%6{F$8y>cnjIhIV#Gr`O_%%A;1DhkhNDvozSm@zw^DMN9RePYtn}Ybh
zxN8a5pocHXd=E=KEc5WGhqWHw@vxkgcv$UW1(#~Owz%5-UCQBm@vWs4;w#y0uC=Sp
z-xu%$4<BC7ZkC9X{t*{KAN3P1y5cI4k10R@wj;8AlDvl1x-lZI6I<tDy+^|j#)F7_
zF(&Wmr_yI0KKHPZlCva>X_JQzWAiSri+mxFk;k(dPb+)V+1OVUZx7o&eCy%ln7poi
z)Nef8`?0)*!q8CJD)4OrN@Md#+2P?k4|_fA^Kf`f-cAocc-ZCPd&<N4*yd%CKhDH<
zd-&1APn7U8u{{E^OUzb0AG_RJWg<OiulzID&c^5g5Bn+hWAbiYlEw53XS|{EtA~Hj
z#n?T<!ybO~ke@`mBz~u;d#I2^#UzeUc&JG{T=bxM&?zJy{`6pYFg>^)JP&23L<Tj=
zw#YP|T$?9R-zGdb9(K-%Tq~11x>a~uD(S(emZLa%v_qB|(ul7CDRNJohoT<Nc%k;D
zHl~(-_?^fx568(X_Rzx#4}W?1+rvK|q6G?{)IY6>%qWw~8pb!u=E*D`usY@8G{wfl
zIVztjEz?&bEOy2NpB<}bOXoctTOYq(dFN_j`AZ%yQ@1BkCW)WdNLQ%&J^nnxe;y{D
zQ<6VO^x;!13A*TEDnXvik%}kzlnh<{(60`OC6g$X#7(Os#J@V56S@FOg61x7u8|@F
z$rdn2z>i<en$tY5ToQjgr<ND+rX=pJ5+kuv5|xv<Gl{#BsFFn0B)!$q-T>8-VI0`T
zZQ?bOfWU7~f>CIzC$VphLSOgv#&b&&_l!{(9QM{E2<gziW-<(t+o)p8J6Qiu(OLr5
z7O;+h>pCfqyHedG>LvM#E7cc}NP{Hk{|6}FFo{M<v`nH^5{-FF5>1n!{~sxdT+snF
ziD(isdw5Dx*xaNDeFqIWpTjJXSQ3nE%MRp;!c7EZx7j^b(kzMQqP7+SlESdOt&@;u
zNDRNr+Znevo@9WA=siia5lGu47!Kgr#_&=>689!CFNyg{+?T}tNj#avs3aa>qe(oL
zMAsx9<Uo>OP@6}o|C98phewj=l*GE+Sj{52V-mk@kozu^2j8AG|Abt7Mb`c;Jld&r
zPNGW^jQhiwIHWKbO}8YvlQ~KBOQJ^-eRfBBCDA*Ho=FsPMjnxCRfttwk;SM+-M1)x
zl3)NMMzrb6yS6Bd*F)Gpi2+FrO=4IQPb4ugi7oF(2eb1P<&(XYK}qx-n#}`o2mfnL
z`j8}6-Vy6GP#&HHJ1~NM9w;*ij`M3|WD>{A%S|7O5k8f~=p>#_VtNu|k{FxB_#`G!
z4jY757rr8o<E6pbY<(j6#@1iVo0>$bqRin>=A^s%Q<7k{OkYHmX&h0u?5@aaI#ZsJ
z#50_fBwpZ<f0cR2jz{)pCh=@CJURGWGCaq}BYr!Y7QC3mtR!AZ;#CgqrM#Dtn4Lty
ztUN{zdRZX)geJ_M=w0fyBwkNqZZZrG^@b=shn=65S8rC{>{=?z5Hb?e9mBF0B(X4w
z&yx5&iA71gnPgB2e2~OqP9<eKi4|N&NxYrJJEAs*QsPYUEaB25mL;*Yk<9ea#|pzs
zJu)!+T{1I?_mYTR4kH2afaKQdEqPdyW!UJ4NvulZqa;4&a@!-Xric#9CbxN<kTdv6
z5^E?eNvu!eQ+8&yLT-?a&VG3<`?FXk(j+H$Loz(fxM!t8{DFbl8<W_S#4hTGWEj!u
zizL3`bPN1T0XHY{l|a50kY)ayEpJU?TM|1-NrFvp=TuggcO>zx$db~adHg%d-qqHm
z-*+L8k&K2tuN+(#{eicXX+q@3B=#hsC7~zrQxbcrTd1_DBE+n5;`R&V=OoHrYt899
zAhN&QxcaL=4hnckz{6Z10{LA)*1#4CIq)JbvD$?zZc%oxjvGQsO}14oMrm)nTC#+g
zS-wPuI7zr1f{&9vyd;v8A|KEB@L7f`%SRiZFUbg!sN|!vj|`ca#N{NeB=Khw$C5ae
z#A%9s5+{=Qn^ln~<&}9~N2ve*q8QiB=64xCY)>Y`&opZIe_3rsb=H1`@Jx~p-=gP}
zxR9j%F!nttpA(P~^oU=iF8x~O_wpq&_H;yUTEO^s{BHd(iL2z2k8F0en{tiX-bV?a
z(YvtvN~E|TUJq|q(g(j@OAE+emGZ&Rb)@jSvWy_M9H4r?l+E!`-p5ToB7PWC?|`3O
z&c~GLGE16kA{Bg8^uy2UGIRg;P0i?jReV(S(a1+*A1|Des`;qyqlORoe6NdEP~$ff
zzZ5(2PrF-u-0Gv2kJ>(N^KrW<P}9e62lH9-tgmhglr`I9+b_oI__)Kzoj&gJQP;<V
zyYn7R#2PIrsOQs^I@-gF*7wms(0S>^uToPKJX5`GyH_F&eazY!-LWx#w-3ojo{uIz
za(zU7s6IOEmt-Gb{w95#h{Xh=_%Q4kDR+*{A+qvwg_oN8bO4LiK1SDQ!FGe6q~<=u
zm`W{twDhs4D6Ylgt$gqj6Qc(2o*jv^o(=H=RcY%Z-^b%V`uS+*qrk_*K05li*GK=-
zIS=?~&q;Yuxz9(PX#9R3154-hS()AbHuXUt4{;tVs>DkNQU{+Kk_s=Wf3|(ZM<*XW
zeDq|aK05p8&awOG;^Q$NU43-(!IG@-dU@8+c1pPcM@zA`R?+yf7IC&%=%bep*1X4x
z5ccLRKKl9?(jq>#cHs;qe_FS8#QXag;PWd9<9$5A?)ezuW2BEkl&FXDn1=ZnEbt*W
zC_{aWeJHR0@sj;6Mu(H<$4j!<lRk!yYdyvf{ppP&H!en>B0iz@Xo1h3(3&{i<&E`0
zA9_S4_?SqMI3Io5$0Q#srb~+(%TvgZUD3%to-UsIeI0eGk1xKBPV>P_qZc+IoGxye
zAt3L4#>dPXc*&*l=P8grU6@k2;YA9Dk2O9%_3@IAmsyFAw|vZITMMPve7r7@R|I_Z
zI&pTfHz=!p)rC|7tD;PEe9RU2JOSqmxWGqhfz;}d!~%<a^xhX8vp{;&2jPO7V@rIz
z&Dwmt%fdafmWrB}`Dpr2l<hLT<72rXcDX6{-&4(V;_6Btt&U6Y`yl?FXhQ0*e&FN7
zQ1)W01pJ817YHds`>P)d{F57$T0OJY`dCK^_p#Z>hQ8{0uInCIk>8{ZK0f0D-y8p&
z8bBc9Z;rj%BWshuzYx&*EXo33`S_Y;ielS+eB;AB65HZqD|KK(YWzyM5BsUx*rk5z
z;PsJ`UEAi~+m<E2^|3?TLi{_*|HTNAAAIcck?`U8*zMy-AHVqc)yEzmKlwP|<AMI_
z_Jz`3W=AVO``G6rb}1(^GqUq>mHgT7<LZKtQE^8a`M7$J()hTl`OtkFq8?604+}`-
zH>xaw|Ka0^kD?p&KQ6?MABeMn!BJ3zj!EY~$zg?LUHs;l<-?}X-jqA_xWueW<?r)M
zH@aSoCCPjrf#Au2b2)8_N~Jh_pE0~+tfcz_sZxLS+kR@s2jNj4e+q<nM2qqE<J5!;
zr4v5>^6|HitmD!}L*Cn0rC|K)<CM>U9T=X%X&+~(KT~L&!db3*b~}YCDV+Clfyz9E
zk}0gLrd*`r^?5ibw2-{yqinyd%L1nz;JHcaRqFf{lu7C}KZFmRixL)3(I%&SRth!m
zRGB5LIbJQ5LL`N9B#u{0r%*;9#LK3TeFM))VJ>%v#)sw0r%)+{s*}{4QmBx^Up2}{
z2eqx3!j%c?VLdi#g4%gjq{n!*Y6{g-xFdzSDYT6$Na3~=I!{w>PN8}VFHKZyq;M+-
zyHj~;nsQ4D2g|k~@`4_FznyYB+fCu*`LeZAsKai27_XgzGePZjFwUwTua`{<M_n%k
zHq;;$a-crzoTQfBl0(X!DcqF;d)1J8DYSSTuf`^-cc&nw@K6dJQpn}i6yhn|lY%Vz
z&@_c+WLFBY6x0+?pkPS9tR^Xpt)Hz-Ry$5siI761c?vC381Z_fwU~vLDYQz3mX<XB
zq#fy}wF_yn$wq0I+J*y9p&*5OQ(%@hmIJdR`6;v$^Ro3?WcCF0z7*bBF5REP11a1x
zL8VnE8A7wq_F_;R*MkCq9^1E5dN_ryDRfJrV+xOm@pej~7HvLLc$B<Np-T$eC#fI(
z77h8+P9Z)~bgVlWl|ug%2Bgq4g~Am2rto+Qy+rwYR!F^5py_Gtepw&wQTm9Uuvc9t
zs2j$q{n+RPl}sQ9o=9O}3aoQz3WLPGpFf^8B!$5OXD8X>XOCyyTq@3iy!Uw4h!jSq
zu#96&;mH(6rSM`3vr>2}#RFxa1v0IL$B@Y>%t+xH;^R^npTZPM&XejhBh(2gOitmI
zDeA-&CZ&+MtvtP0v>&0;TgAlH5z?ooFpXUrp*~H){yl$s3crj}tDJ643Xx}0n3=+}
zDLj`7|9l;uR6q|H{89Bhdoo;oLBKL4Bl)A$mr{5+g+(bGy3%?!Tcot7FfWByQ?Q4t
zZ=^!2=JmtW*HR#SUDQT|zBT5gQ2Ts@X+HZe{AqNF$O{C%P{2mYy`+yk*80s97N_u5
z3QJOWo7_%?ZZ~?&1&2BO?re^Qwe784xIBdwDQrz)TMF+|z*6`qg^yF=|G4*3_<&O!
zk&AyXy)SywV3Wk`hl03Dz|{iszuqS)tVv-*3ZJDylkYAg)lXAcn+pFnlI`nKxG+>*
z&xO!IsdXxce+fTNVPgtkrm#7MO)2!*Bz=*>(>tYK`(%+<?=3G&{3|gRTT&p$z83g5
z0@fX;vi~HOFB#dM!nbTCg&$M+d#t*HOJkV&eG1=+EGaw5mSHLpnz;Xv!Y)qhh!E$X
z_N2g{l0OUh6K@pAKCYJ;5%z&><kkHt97v(z9_g19nv7Ntrtm9Ohrs{hU)0em|0n*I
z!tc~$8I;Z7j}(ri@NXKY(kLP;D2Hi`N<&Y<phimL_B6~CEcPmeVrkeZBvLrW8Bc`<
zhfWG<^6ewZO~FfH`Z;-0XPMzplPUOQRCgsMAQ1*O4LBC+(ub9!Dg2oVZ4`;q{IYzv
zEaJ1CkWZv=nd%~6{)^m5;UDV8^U4KMRz-=NWIqMvlz^n17RVU^&!%urAm;^a&^Ek<
zRb8ay*HJEUq4k!DTuFt&&Htmqp>pn?^<395F^qWeG_umDm`0^EN~FU+lun~eIvhgD
zbZ9<WDviZmv%WefmraMk;&akrWZ3L9{r`k^hR=3aB59OMGd?Ds@0Rsjt?~?Fep4EZ
z5?dh+hBEic<PvAKmD8w_Mpe-S<Eyg%YH1*i9{DnZb<&{m<}|AF>dGvdnAS++mUL*9
zdTSbW@<ZEB;wRTeYNk;ujW%htO`|q1rO`NzyVJNM&3FN*mqz_Gp13o{5a&mJmS`W?
zAdP=CnXyC}QS?rMGkcdn8m7@G4X0vk;P+7ytIaGWrIDLPR1A$AlhfebscGbK-~x{c
zxaY&@^lNgHG+1rZbQs%x{1D~Y-fA;}Hy5ylfGq`NfmQ-(okm<B_Xv33Zi$!j(`c7Q
z*EG7NQIN*HX*`@p$29Is<Nh=rVpn^q?92mcv`^!~G<KcIS$|cz&JCL8s+S@i(s;dp
z)`5qWyxi<Z(&&^%7xr_v#A)KF84>=`G&-j-<7$-Y^B(eJX*7K;&N>-czB~D!M&C3Z
zPh-Wqk)CPvN~1Ryg;c(f^8b}o>1>2Sd;5sn83Z<QS)TA;*?wvCPh)5r!_r|e)&Xe@
zqNtR~CH{n<3`~b6$IK3<V7yr{L_i{p(o56U7M<ncqC9UIA&`;jFfcB&Po*(Bjjd^H
zOJhtLW7Bvijpbx@8spQLmBveHOh{v58c(MgCjyhww1<pMNr#`4{BoR}4nO+%%{7(9
zyePl9rja?j^H^p^8qcKhY#Ps{F_RTO&|+krY?l#ZM}hEp){w@ITFSnk!g{(%*)OI;
zI*Sp$oW|@l=BKeBjaSlmm2)vCGM8+0Vz06OG~N*HvK6M>M2ugWbI5_Bc;b`zk^aiO
zH0JD!|Nc{aA&F@$O=DRaZ*p1jE>60t@GJE#cCUI{e$O7QUC0mHw?*sMJHSya|0BYW
z%F&-FE6A=iK1pLu8Y|OyFO5}ctWM+oH0D*0&0U0_?~;jpkj95;hJ1?i)Zww?(nsn4
z(LYXOc*FS7c5#*={FG}sjm>F%#Y!&4)}?t68=t4Kp7PM41t}ZSI2!bPr@6e5E3S=N
zw;=u{HA5O-u=Cf-vB2<K$`X>!?AO$pzsJ8xV@nz%F2#5dk_Q{F&Mi3KHtfdsG`>ya
z_cZ<>pVRm*jeYDDRmTs~PD*teyQvM<$lr5Lzn6aCT5esE`=!y!%8zXBd+8@G^UtDt
z1kA0L_3nCkZyJ~1icEN;fZNC`TFCp;IFQCK>CmJ5uW1}ihcQ^Uyive=52f*28vhQH
z4~we4UN1BD>#`-0y=9amRQ^;}X{5xB8f88Wi#p_rtW&g(N(MPLLz;1iGI&qaP9vGd
z+3nE;^#<qt4TX_atF(@})NHL|o`Cfa%iQUW7fI<ff;3K0yOxO^{YB2Cag5{5ml-Se
zD7pHJ{3rEK#g^O|K7NDFtAC}#{q4WG>eI;2D#sz8OoxG7i4dMn;|#?<z>ENA(>O<c
z65yTy=hL{5#%%#^4{$M!OVnTi$_2Qb#uauTK#2hL%gg_zQ7piujnexO`6`tOgCnPr
z=#$TFx8ebo{whZ=Nc2KhGC-+-pZ_QmgnNM8t^MHUaO;(OiDd)4ydo<*K(z^><F%Xs
zxea0^X38Zi#L5SFvyM_ZK$Rd2t$tI03IQqxs605E*-8OU)l`|dab1<S2S9+E1F&gE
zW`Ay1oRwD(;7p9)5`=-{iPQ)%{jat}ZVkd6U2f+R)(lW9Ks10Hpmu;d0qzRWFu)xF
z<HF#_bJ-1o(9IfmcexE-kE0I4{cw)`)|d0_ALTm()ObI4-edWVf^gILZVqRq(z%M-
zIKc2Ch3?uU_F=!wu=2S92pM8t2@ng=G(fWeY7jb?Yr^b9F>W^I5fNVCIB@PildH`G
zoanB!3eX}5H^YnhO3NU08OP}Mt=Zuf;YKvKquT^%8=yyko&oX$v<uKFz@q^Q0^A#*
zLx6_^+!x^f01pOuC<tBHJs@WAaBro($Z~U)M7GP|^$R~!xC2bLcpU@o8{m;3^qa@H
z_MD&|FXwd*LN|0wkFow)d0hfrXdP#7y9VfXT`E3p%Ps5f0l2ZbaEn|RpjUvW0*nsO
zJ3yZRPXrhkfFbGo26#L`KZ;-JTn4-EFJ`Lv%XwFCQU?T}kbFF~ZOu!{pa6pd3?oZ}
zaQ~TGyZnhTgte8Bhf*e=koj|=OKo*T5N<v{8DM09-7n=aahH|yHY&jU@-ZS~0*nnX
zA;82S+@hx(jtek82!9sLuO4oCQ*tH+m>ghQfTzX0PYLi%#o|)~kSCm0&N$_VeIOkD
znL-hICcw-9Uk2D5;8}`afW-mc3h;b@7XrKyU`~J+17wYmUk)&vlQKu1MM>TqeM!J&
z70SO7;MD-HlRsAU-`&yTTb0*1*vqjV^CCTtM?P(y$2b&oDT>YW=5Zha;>VP0?<fpu
zv49ICfcdhtFu>O5RHj7&DSp$v#2Ff6Nr1Nld=g*{7h`~B0agZhFTgtimXp<#@PA}h
z{^06J@lgs7q%-?&fKjI<rDo3i)C1qit2vx+qz?joNL8>^@t?>dTqW?OSIT`9gueor
zJ|@GnbBTN!U~Pc)0XC2=`xFl6_e=7+0E7*6`7;VqfQ<n*vFB@~eva%^SI0Nc<AL`z
z(-o#K*wyI@gNA$+;A<|N0517Y$q#Taz#)z<z_tKC1lSc|dw_2_M?q){L}QyB0lo{c
zlTuM%p)Jsr+Dhe3W&bUVU(6Kr8LIRtly{Sd>@bx{fIR_z;#!*$*~@;Ol{XYuXv1@K
zl){qxD4%mBA_oLQ;xDXIkI-W0*8q)kLX)17bqWtt50Lo*ERHU~AEF*3z!9#d06N+J
zn5?nIfBy%GC_`mh0ky0r(=O=Uvoc#*H(j;^Bm#WeGtO?aQ8wTONCr4ZCCt@FtrFm$
z04D>axw;eb(Exu22m)ldw9Aw$|DZhdrE=`sF^X}3zXPl*77m{yqB+xvfc6`0{}RMn
zbqa|W=7fFtmpUZC8LH3#mpaLxk5WkFU1tM~xJ4~|Qf5i^=K_^~fUDF|EXIWv;7Wl1
z1jE1Fq0qvLY#%pBeynU*C;L_`gW?&K%%D^Tk2eVWkd@)7dA!iH1t;Q_4WZQ&Tj5=$
zGdu>OFfE@N$<81rgDOW+^(Z14l*{0~4BpS6d<HjV&^v=Z8C1xiVg}I+<P0ihP&tEI
z8Pw)o8C1>S)(mdTpjrmVphgCD&gI;k0naUF9Y*y`cyg1$=o!rY)*s`yWWoUSOlx;U
zZqH!+=^RFougMyIjF-z-mVFjwwoV3jWY92!Mj2%Dz<36CW^h*q^)jfRK?6Z7f2G~b
z?d_&)YsUf%4n=s#h%;tAgUdJ0K*}IDgS#{Mafa0TYK-U28Tn{&tbj)jvj#!QAeO-c
z8MMzZN(%BaXp=$P44P!nG=t_Dv|tV0lxCUmuL`aEXnb|(YP4krtunZWBb_d{&QON)
z;~B1|{QJLaOPr86|JNL!5y{V>T?Y4MaDOH=9i%;BK?bZOG#<-<Ro!wl#+vD?mWBtk
z6MHa&hcf7zLAMM#WbkkXk7m$W^r0hf%%D@|e{N$XKQw4$;y)w)0HS4Dmkb`ufJTFN
z`w{wsP15=_gB}_5BD>B>th^`r&lxG3+vs%U^n%cgfkqB=eoIrsz7!HpK?V~t=*K29
z7?#2C3>YD3Kn71_Fpxc&BU3*NViO}|>b=1%-#m|+ZAb<~GocR+YA0=qOl>(LgOM4O
zUY<236NdhIGK10NgD#KC{2xu%0cAzetoJS;Y#_r&MnK8V-k#kh=OiF1h=3qLlpg^D
zAc#oLISV2nisT$5iIPDiC?H7z0ZDQv+&D9LmdyL6d3(;BIyE(&yQ-!`bv1skD*8)E
zgw8kkm9ZH2vj7GKKovB-RXUZ`kO002V0Hj=0vH;=mjR3?>jp3^fIUAeqXHN$k>LT1
zkjO|0Zx_hmS3Y9`SoSD=9P_>AA1gn#Pfok`T_RQS!~iA*@Y5P)x(qX!yiquPii9l2
z)BvVQoZdf3?|0ijBjD-tnE}j_2+PLTv^tq{1DF@Uw*f2-;Hv=U2e2dnR-Za~K>!N_
z_=ZuIHu&0$=qGVez*E|b1Nh_{K{|0hMA%%6^<4npvzp&4On+GbKLk9Td~jh(i4iFa
z&6ID=lqtW7l>w{@;7R~j16UovngDjQA_4Duk+lJ=XBPypjuBUQzOd+}ipa(QwvzEC
zsha}W9PnI0^8RJI=G(%&<gLxy$hQG(4`4?CJK3u9Qs~WZO}EDMV@6~bbLrNYPtK1U
z><Qp!vU&ig1Nena5y0U9js(ykDE0+BkC6ug*w3DAmhs%H_Ce}|-VNvh@(`OSe>!ox
z+CCb<F-l?pzXrhDXP$e8KOVq|08TNkBr-7RCj;PR<xG~rNO^t(`x%yYg{U`Dy+C=K
zEY1c%m-2s7j;QDwi1QK>`C+JXkxM`n(vj+4G7R09{ViWfxy*Jrs}T7ofNKH718@Vl
z9>9$N0@Q@Wc}IBwcLVq@fSUo_3gC7CcUZz&qW#aJ&PSrmij)#%RQis)N1n`IhpyOI
z82ULZ^Pj2*U<42eAR2&4*8NirGX1lH&LQbjJw&leR>J}BLS%Nt8<)Jx&|?AE6wC&K
z?PkdaWJ5UtTx^@chYrWG7@mt-8j>_T2;gA=&jLu$c&(xOD1gTSJPCMs-%pe1ud+f%
zL7$dSDY?_seGSujGmcL~P7S#<&yiiCh8&vb*78CFL5Ff%CZy0S;|rR1H9&67^CVAC
zl8=rl$yELt@@dGgAyot0Gp`0Z38WWydNZT%LAtCgprN4VxsflVc^)r6Gdu_T{5s;p
z47Nj24bU)6!*mVBG!)m+TElA^N@yslLDi71p_GQw8p>!Wt9i4+4M$Qq(bJ#!U(`@e
zLp2S5Z1<PfP(eedBT8irX@xRg(oj)Di-+R1IqJ)j(qo&ylB9UVe4>hm`#A+CSyeU9
zk|(&!UtPm18Wau0{hDW$L?n%cnWGXB8kX<&*Q=)9ucc;a$kb3rLtPCl2`z$Xv{OSv
zP0cgup&3st4YlQ`#)Z>Z;CdSBGiwcP3wW;$Gz_mM8p*me)Uau9o-<GUq%_vhM1E>2
zVKWVVeo~uDoa5vJuZUNfZ(Y%nH9e9-q?Lw?2mPeCVZ&<pNW;hMYYlH|cuzx5W~ZSY
z+eE`V8s5^-UPE#}(Lux8nm2oGUr1$X`xZ!J`8#TK*r@V3bv;jK4P9jQIfH&zLstzW
zcv^g*+D*gXTm5`$p7&sP4Lw-p^In_q^?l8oahEQf)<?q!8hUB?pKQqwCA8Oz-q{En
zlXzbZ{WRPxlJR`n&guCl8a~x9QNtt+{WT2GFjB)P4FffN#<tQhRKp<6vkmLEE~Ujb
z|6mQDYu^2CoY4=_Kq6NINWYvf?MpTqi_P9#lroHo)Da|dZoXn|3Lhf0Hyf>Coa~V?
zWczAjti)LuHVC_EynLO&F!Gg@$r}7$3eMA~c!g0IWvZl*g=T1&so}ha3mRr=n9WjY
z*sfuYhPh-L4J$OvqX>{CG|y&ZzJ>)FmT34^!`JM@(iw}`dId5TYIrwG{YJv0hZ-!}
z;T>UE%tjuT(XyM$a}!HCB`#%}BR#v0?^v(gX+)MWDc3W%_(8+!pA@xlo|PI_Y1p7)
zBPlXRX1Y$p8VzeTFy-;bl;DXJ!u5Qenmc(;%95oi99nGBuvNo04VyL3EB@7-Vv9t0
zK!7O+W~bcUkU~@T9U69OIHcjQhFuzVYxqUOUJXCVvi+=iMl5?MyoK{HR>2Z^>0_Ui
zeQcaV4fq_CMcS`{PU8=-LtCV0{wC^_@50jxM_3+;vxd_ee${YH!*LBKG!(VfBN^!&
zf&9j-t0mFO@uW<I7L}~pDGk4Co&gLEW7t-NXUGqUUih<`ceG?=b5%K+@~4J#ns<nU
zAsOtVhD%feRFxWN!1))sQNt}VxrWOcu4uTb;hKi)<bjSVP4SJdQvT6kZ%BFC-803x
z!7hG3gU2z5|I4<Ws(3>wjn1qP(_m@1tKmNlh6Yo9y{93dLDR5jd@9SV6Zbb@_t7ke
zNR6&df*L|puoUFgYFI<F$Egc%q|k<w2u*IHR1~cRPjIkFZHnhy#ifQEs?vpmBTE?9
z(E0rg7L~*-4ZYiC+#Z$kP{Sh)1#}eDy)Jl6R@aeB#}f@t$#PZ2GYvi+i8^?!BS8l{
znn(`aV<dLmrBNw=ENDPGpBHrG){&wkRrgvWkB%gX5GOkkChJ&L+Z&*gXV@%xb>!1M
z7X%zV=GVPZCE2EBN41cS!a7RnD6ON2j-on>=_syyBEY8LISA;U?d!6x8HMB(3?+1w
z)IHG{QXqr&t{kbB(NR`Mc^wsWFiqz5qK<Mpp0^c8;5>Z6a~8L2H-2MI%8{-a6?Ih7
zF(qfQsX2>P)=@>r=UEt%g{nHL>98WOBdD(96&>w^csmG1N1Bdp27WZ)*CBNLqvM(m
zRY$sx0Xhci$k07|`&K$y>&VpU<q0)))Y8#NM`Ineb=1*OUq=HSb#-*Tk-|TCJ>3(0
zp5m$auDE|ieWzM7Q{dB3$A*3){;we3gf-I9LPt}Xelw<%o|~>1&ZqnM^;I1$S&Uzl
zXRnCFQt2($h)<6yujy#REOd0!@w$#TWW<g--jql?9dGGqD{;=+cvz-AYyCq5rq+S=
znxed|WA}~}j-?0ws*c;KlHN(jJ2L#11kqVX7ac_2m5^S1i8D-h9ldn?Pe%_O@5#VD
z2|J4S*;8rhTz~jL_tq%fX^DJ#>-bQ|$2vaI(MLyL8NQzmP6zs&6C8DO_{!%a9c!m0
z|GM96lTUT@m%&mCsd={ekJz4Xz0Y(E(y>CvN*#mQi8|)!n5$!mjxTgf(lJ@bP#s_D
z7_MW4j${3N)F;DaI!rUVOC70W6!~1oSoZZ<f1~}%p_H`IIzD)!EWP0yCqs_cF+oS~
zm%Rp`C@IU6J-qhyCWLP!ClOB3F;&Mj9n*Ep&@of@7I`=tr!_UJGm8v7T+C)h3zSlm
zlsX^yKJFosa`@)4$~wN4Y0lTNK*u*a7RlFTIa8SI*W_UxmmepT{@Tlt&te@*WB}fI
z%4=H_i)2Rb`IqYWPRI8;mg)FG$8sH&Pl|+6>czdH{x?dqrlRl-|2qrCq<_^_lwuvf
z$`sbHdD+**b*$5|UdL84IeAaVMs}`zTCWlpHj6PoiA_4L=2ACH$YR81D(@Fpf7G#E
zCbdh)4mR@tQg)J88>t^pSO2^r_`Eiw#=-|;!%Je1j-Pex)3IO2FER=f*{kD0{`Be(
z{5)Q<sEB$%$3Y!OD8(PwKg7T%ygBb-9TafRPiaWc*P}W};XNkAkFk+uQpa_i)NxA3
z3Hkc;x2C_0RDRd-hmJEk&g!`SSg~d)r^y(b{3rkQPyH`}x&Ntyqm(N$$~g(oOL#%T
zi#jez<Sz*s{%?s~mT=eizH-;aRVtb59`j$<aYIL51NjX6tK+5)mxYueZ|Tq_a$Cn8
z9d{+pC;=V+NxaeN-1l@0Q^do+RA*bV#vUxEPB@&-Foq6OM^HydN0@p^hpi)`dpBe~
z8mUBC<ywMQ{ERG+6eAnYY04-ASE!DT)6LX4Ra_yIZmVXT5YO~Pe!4HSOEB<2$3q>D
zs90`$O!ZX9V=8|g9j9h)E~F0GsBG=-Rq7do-4t5hbf1Al133)jG%)<SFWEpY11}i(
za8`0|1J+w2b(QDR@b*}d$H3(Sf=`lxr_+@K%ajxYw+g0JxtEY?U~jV8s<AJ>LGR^w
z*FaYT1q~E3P}4vy1BDF~F;Lk+6$3>Lz`%<J${8qTptyn32Fe&HVW6aeZkxo{KPp{k
zDg!I}igj&J%0Q@rDDJ5HAB)8YMOgzUu6TmHuBfj(%Q-H!f`OL|yjDu&i}^2{%(=Ij
zc-cTj0~>5n$?z=Fr&sWC!T+cIqN;&v)bIv`f$9ccF`yVoGd$b)&#I|7DC*qtFM90l
zp%2ZS-u;PRHIQ!L_D&^}rQIt^f8@1WhJl;4e7k<neX@Y4VbF$FO;mH&Hc-bva|105
z)HP7gKx4!EU(`3a2#kgX8W~*4SD&r&PqoCO`O522rAZDiwZ>ohniyzm;A(n0tDK<u
zo5>2kKf(8^ftCi^8fa&rm4Vi*qk%RCx*QTq4ybt>dJDp@8=flrceC<_0cy6q`F+$0
zZ_2EDo)m8xXm6mCfp-kN%>wN9cQEM8$5T_Qt%N<DMT(WcVi2<8otd(M9jbWVkGVF9
zS4;W28R%|cx`7!6dKh@mzz_pp80cx>eFJ?B^kV@G^fJ(!48!UN70zebga0#ND!wCQ
zls;_at15et6=V<Id7AK%fsYM*W?+zkPYir&V1R*v2K1Wg{ben7R`n5Q;|wa2@y@B7
z?AfH+iGvM%Zh+@-*+J~+P#}SQy>x{#)WDalk%6%WhLM2{j5ILHzzFi#L63FG24sn~
zj}piU?C8-3*m3#y_;-}@jWaObz!U>h*?o8XNnOMQ0~1;0C;my~irndw4OG}9ekv%4
zzj;Y{?X66*0l!W&@YjBSi(3gZ4a_pI+`tM0vklBKu+YFa2Ii9S49qvMz`$3AcXu|K
zYDQzh#hlg2K62F82DriW`$Exsv2r=Zx5&U^uMv{IH?YLOw+5CP_|5=XrSl;lxut#q
zU!@UBx7!J1p-QcM%MAR$FdwMtZzsQfTRl@f*GdDc46G;H8(3{%je&IrCLi;!C5vi)
zvaX$~QgFyuWRih@`8OKaWMHe5-_4ZG3u21_G6Q*|@*R&iUTB$zZ9-<)POe~KOnh(B
zDiXWMhbG#X*iANL2@O0pu*bm92L3T{&A=~I1qRL-IBQ^^f&Hw$fnx>^7&vI)h=HT*
zWyxvemcs^CTH@VD31piuEBhz{WEJucIp;S6#|@lfLot!Z;)H?CXZ$Cb_<ptEav!;!
zd_oQ(d;DSGG?jDAe>BramY7i9_osn#R8|JA7&vd>f`LoyGRZ#|nL;x`-XJ6WW+ae3
z{wBk`koI$$AcuStNg!9`_}PEe!1WQSR7C9h>jrKZFv!x>{}g`%cMbf<rlWF@vc|q9
zW89IPb2Z&l6m#bLzPcgq83-8AB+F4z=myx8Glnbd#OFO5q;fOh8ptvbHV`pj8*mIn
z4a6wCKYLPB;*78Muv|Ogvt(XeUuD0?rIz^XUc!^NMU}z6`&9en`SPB^uewAz)idd#
z)C}x#w$c--YXjv?R50<3{9q!liF_t}Ce2Ne+e97{WRDysa+)4XkO!zMa+w}KykMeu
zp)?|7i6qk#_GA+&CN4D<)D@|wr<~be^9rZ2?|$|9@|!4NqJ)W(CJLG;WTJ?PqNdk_
zee;RJrl-C8lR1leeFqc8n7-+0@166Kp3C)fX&uDQGEvsVizZ5&C}V=clK*=j`zu$o
zT<ocGCfH>wA_)}gS&@X7OuTH;A{zBgR5Ve^M4Ab|iOMFbm{6(hO;j~e%>?_jy6MR~
ze_Is!7R`O^;^+~dVtPVN>8@fX2u3kc(?l&3>87{QmSNIl9rHG(vV{i>SN8AlQJ>c^
zL7^t4wh0Py9oBT0pme`j&FAg^n&27^zcw(@&_pv6%}q2i(bz;&6ARN+@<0<49BX}i
z*iXh7S<Ba3OW5(D+QP)ECR&-^AB2~BkOx|tP^xC!o+l{ptxZp&pZDzRCf+d7-^2jc
z>#*{siEbvk%ZP1Fv@`J*%V6Sd6YrSlY{DraI+*Av0}S4%+Vy;$Ol&Taq1E$77d1y^
zbTQF0ciOu$0AJ_d^mjGsNWssqe0rGZW#WG(-ZQ~7dOc0NPnKY_6i(v`8`pv;w(S<@
z?rq{j6a7qlWTKCWz9w>fqq4iXMwgOL(7uA^86TVYMCS6Ti7p!zPE6db-r)S~c~u*t
z3^ehXiLoZenHVI4eQ9EtiNPjVp3f!a(U0m76LV{cFHCI6EryzSSX1OLCWf0BAp?wJ
z!A2#w9HH=MF_OJ`(%&jY9W6iQ35zi%Zq)PSWxR<ACT5$M!%8vzI(ep;m}+8@iOH<&
zPBpcR7<oYbajlpp<Ia?Dx{0M%)V3AG3==CKE5oXaStfq75(=iKJqRVtW!CHw_Ogku
z*noTr<Y8W2_lN_>lm(2kR=ry}Bdd_dJl~jDWMZ+Df*lJKUZ1gqi7!@`lKF$;TPog$
z-rtZ1dOqCkTV~=1GC&Z%AeNh0Vd9L5v$9AlDZD1OnOJ3FwTU$*)=K(j6YET@XDi9q
zaWm9jMb-KoIzG<aXkruDa<^iYtaBq@#+2zbn9&xN_CJy9p7_zkb`yIjXfopEIldkI
z1(?_+Um5Zz{sq`d`O{`A>dBtIW24k1OO#(s>@{)N#1RwwvO^xAfYes^Q=n!jldXh<
z<jj;hbEhkZOx!)=CvsGV{8hp~&t?u@t{jv2ZxSAt@PvfS_oPHlQ71^`4+&38c=LuF
z{F^u@Uv(4bO<Z7KoA}qnMJg^6|CqQ&VK?zN#cGl_zq@SWiixWxUa#GN^O|~TK0c)L
z9A&Od-;r@jbaG;mhk34>xIR_+dY^LB#4Qv5CHwB0xGghc;5#O!(2`_@n6^?aen9!p
z#61%M_UsF)CPnW=hIl8@SGl6-_@B=(VVVe1f11cLao<GPM8t$eRcs<^qSHzdGcjwu
z>a&yUZuW7up0U8U;D*vLA{-NOigP$2)?BzU_dWAH`F%hUF!9L5V-sII^FJQ0QYW9A
zsqFKoKcUow)ww-uJY}c&)1OI56HwxbLF5RcRnXHmIfKX*#4B793F3tyatBc~2n3NQ
zh$I;xUl7R>Vc@($qy&)~M75yOJ-?4P;A}1I<4}i&5cz{B5JbVC=UAYygoPxe43bhr
z;zzcs#ES({JcueX%@Pup3Zirn>kEmJK^$DJRvG6j6GYh{UJBynASJ@Po3eZm6@s3_
zjdDS66^;l`LtlT8#818Qs@yHD7(}I@x0gyfDV2kuw~Ytg8W&DauPSq?7DV+RuNn1v
zdGBM7XVQZ32hlW$W<iJ`)F5}S&@hPfATole6+~_3{vaVUh?+s17b=&~Yq05d_=y}Z
zlc;U=)d`|*5cPtn&q}@NrMzyW2RG*SU^w9A!lzLXje}?s#M8%Oaz2$V^nE`iMQSy8
z`B#7QAcxRiN4y%u=t0S)UKTAz<a!>fWe}&gWpufk$=B9FycR?o8S-@r+XX#ah&Nc}
zpvP}*gP?lMSz8dkB?HjQ0X-6Q2%=*U`NGH_MyDX&VgH7J5IP6ZC5Wv-YzyMuAi4%I
zJctoNbPJ+;5T6FoUnbHci1&i%8N|=Gyt=&4OoQkrKlKXYKqv8G5PgF9Ul6^6=<u32
zWF?#~sD3>-xi9-}Qf7s3l+43^BK!YH{wRo#gShdzprt5(f1d=gCBLAQ4UnlZ@h^fH
z7{q5m3<_dLB<JTr3<+Xz(7Wl((~!UAm|9tIuothC{=Zz_D%Q{-z6@d*;S)damf}BU
zZv`<jh*2`Z1#HhC#so22zK#uITo6-(m=?tNASOuSq@cH6NAEg0G%+!Vg-K$}ySXQ4
zmuE_lO4a)hZmT7xOX92`W&|-ah~pR3j$=j2k{UG)fBTozVuKnp*qk8dl0_+5kJG!p
zD!yV1^cMF|WX`AF-s&gvHM0ofn;;eiu_1_!?6@G71hF=VbwPX^M9aiF-^q*y{?~LV
z^ZLun{rl|lEDPd?Y<zhTE3)yG5?LkTY6;f_QKEu34mr0@S<hCDWb%J)?o+n3@ofrX
zGdqrJ{*>h_o*nzhrDEC;aju1@$$t!Ddk~QzqU?eob_Vf#kOqF(MQIA+Xb`_L{UG*G
zPGv?v2k{GKd7oG`Ibm-Q`-0fd#DiG&g&5T{i5EqkuI33s#Y-OSmEU(Lh{HkTzwa%O
zDwmWa4BtnbT<t$5Q#&r<ZxWtQs8Qv0^+XUSgE++o-<0~3^p8Y)u#4kUPX}=(h^s;T
zBLnx$^hD;Y#QzN9-18J9B>jR!E>Z<$Q~r|3-x6My@QQ?6YWc1OaXko4zTODpUy0la
z;${%Hg1AkVSR(FBS0=Xe&D6x}?R=F#%qYFo%l&Q;{{?Z6@^wiKP@0yhQ`R;i>|DN!
z&hDPB7!sO61cL}kJj_-tnvu}I{-E+*ikDM=7*IbJge7w<7=j&yLyZx{vmoL@xRU;u
z92>;_ARfq9DiaQCtBz62cg%c94L}u_Dhj9h3Z{yAVNYP6P@?nJ;p{IV1YZbAAtZ;8
z7($K^UI-y~2(PYDIJC|gLaq=VE>{ZXPwNv^=1x=!*G$Y4^0s<k%&)G!=KpE4NC|mr
zDqjfsLr4uFZwQ~(7u#E?p(g1>F2A61t)_qs!(d{H*W-mkD4b0x5(2rg$why$5Q>NJ
zeF)1!C=o)*5PFC3VF;x{C>=uM5SoNgCWNvf_(KpO-baRVGLdQ_ln<do2$e#pEX($i
zq`w^UuEOls*H=-#-plU|v8qVCYRKCxezd?V46SO36RFPhUl6Z^KpRdagtQRqP08d#
zb4@jb^bqQ^NF~*b5Hdrk9YURuw{uY=!~vDyopd!ro~tfCwOGPtDz{@er{Hv^Zpa(L
zu^;QPRm*r~Xb?if5Z+rL8inAN^d{Qp&np}fG!3Cy2pw6r5SoY3LKd}s2y^QCUJap@
zeC17!EkoWlms}fcEh(=_$Yk3{<n<8VkjR_a^tKXdC*fNXw%Xu(TOu7o;2q+@6<(>{
zq4E!*TL|4l=)z9ihpr(k9N_WryCJmi=FN9zmG82&gy_M-hwwoNy+Y_2@(fMim#NWK
zwp`7`fgj{%$p3|K`;w@?S5SM@PpUJ1WNM!f`i3w*gb5+^3*n;>J`Z6?2p`M1j508U
zPna)xAWd-5>HYUa{}Aq5Vt|BMWz^3?7!(5AYF7<!8)Yz=ZJXe7{TCq&4PkT$V?y{c
zgkd2JXJ3TC1185_R=H@y$;e2u_a#wbnrFlO!Et3&$Xh*NrhLZA0*njc>M`#MKQn(_
zR%BublR}sk!t4+xhcHEknGwQNiA>Kf^Ry81%=fs6{$36=^%9)PSl86*Eo;mPVQvVE
zLs$~Ryb!($VSWe;*txe9GbApw5?_9+PA(=2R~BEhokRFWrpZQI#5zv)lB$y-{`lTQ
zzLlT8lW=K>gIG_59~DUdzO4E~2+KqGH-wwy+YnZUa4>{JA*>4VE(7e9QBLp3vnGTM
zA#4m`Z3yegu_16k$lK?u&KK8~iJirKn?l$e!k!R*CQFd{cdA=u+~L>gO-_t^*|$x;
z{ush`iR_S&#n>6bu55hwb40@akpvzBqEGKSi^VVGpIV~&3~zwFFNFOvzyWem@pNAJ
zILqfd9Kw+h{tDsm5RQiMYY4xG@J9&8LijC&Q!@PV5EfnZpP)k6s~o<h4j$t>8A6Y_
zdHyOaxJt8lfx?}a(;=J*;ZLfR5Y#_?T9LYENm(mC$eVUNSMqO5)M~{t&a(k2xglI)
zH7lj}-QuGI4O*x3IqUaY`*H~Xgm5i{D`W}w=4*m0tLH{2iw}$I&nx)3a)Z73%<Ba{
zU7PrBk=v<A!$=I{P6&5H2!{{};lB{>g<#59fe<u_=phVVs(!v-$*L#TjZ*2D#Rz#9
ze_#5?7Yrf9zFVd&?;-w4N#lH+=|^QOTf$ffRtT?rkir2*=k1=@Iw8cVM&#El3GY*Z
zKl42Nci5vm2!ZgSgpWdaED=(kgz!}2&m>F;d%^hd#1PZW5ylH)<PIZe*wgKNa)sf)
zu539f@`RBjiK$^EOC&|Yo-NeYZ3OQw<gKZBB}I*^xhjeRVH6CbNCZVAC=^EFFy@D`
zfRr$bhVgos7fAy$e628Qhfyqy;$f7Kl$RxB?j<EsDvZ(+DU(ev8^(*-c)2jjXX6zl
z@{)upYTk-rR0^YV7+hFbeOox37yOZ0C5)<J{Fp;j3!{1%ugJjZ5-Jj=Nyyy&VTf#8
z4Wnu4F3;N}BaF;!dJT!xlrVQVp-vce!)Ou4t6|g&qkb4o7%}V}C2J5yqc9qW!3FJx
zY>iA$drYs8@#*)1yD&{FdK3I+VKkRX(HOq#FM_;5!+X+OhS55V*W{;GVFb2ilpHVS
zCWtm+oZahf{Sd!2RCzOuwqbk}#>Zi_3*)UYdW7*_80}@m4q<c*<8793aw=_r(<_Kh
zlHNItE-Y2pn=mE}Q%m*9^==rcB}CUSx`n|tqS%(C?qNhHcqPe-<RC0Jw0_Sp-VY;Q
z+}B4Y@<AB?3!^u?wXNtCM#@?7Lus#qABNHYHPQDskC!^%Q~HL{FAV*1gK>|Qr=v4#
z)=U2+j8B<$7(-<`{loZ7A`Cwu?0JkC$nd|24G$6qu`prp^yQJCl+VK$62`Imyu{qc
z8+Z$iN&Pa6VPQ-OW2%fkJd9Bi84<=v_VN>@|KMZ_7sqK#d2|?KvU3?5#<*;JyhJ8Q
zI8nk$5>5{D-Y#$Nep(pQ!<ZAs+%RU4E!(QI!e~`e%#^`ym8;J%{J+c&gZ~=tdYsJw
zhfnz(j=u1f4D+zOx4`ms7z@MrGmLYR_)Qo;gt0t~MPV!sV~Hd#4dc5ozNN4f_R)Tu
zw&;wwRPlWu#xgSY6~WU7T#FcBiWOn34C9wD_J*-4jMXyw#xT}|u{MnL@^u~asv(|O
znehqAol(l@`w1J^=?ldR55#mgVN)2J!_o&Jku(0EWt6Q{YxDvq;g1q-mvD!KJ0;u|
z#%=}<V^7#yUgN_ke26%Ul}&H@_Jy%Oj6-1@mT4Xc<Df(eZd1xmRu7F+6Gtn}XRE3C
zl8=OOG)#Y1;`7PMuT%vudG$RO#&0q_@#7LXA>qj|PKEKi#Q%`+jD)8p>=aEnE0Luw
z@-X80FfLFDgpn1-MOHJ6|H8Nz#$RFl9mb6?{tbgGgqOp(8pc0iT#<1Zar@bv<FER!
z$=B;)EIpTJ)fDefv7@f<rX=19<967)9hl2>Tm-li##SroZrD3+#@BeeOpb>GVQ66l
znFTpH3?mGaJl`o%?DCGrjBF~l{itl;r`$Ut!eK-hmrNeU!)*<stl%z%>X(aS>#F*y
zo>y&(^8yhM!;!hKE$?Zh=W9y$!*~!zo(Pg6co@bb>hOrC!ykw7B#ftFJPTuZ7tyz}
z@LK+vNQmIta!)D~BeX^qJ_)~RE^^3NzP9So@?COC`~?YfOUUr63)V@Nc)n~(N(8A9
z<c*;8B~kJZKj5`_{s;<0P>{+$f{W|X;dBz&FYo<?9tYII5%kCuL=Zu-2o^`MB!c1*
zl!)N{2tJ6QWCW!mXcj?prWrw*2wsUmi6HTquWSS_M^G_>7b7SaLHUTcJX;|`%M&!4
ztyHX-PL67@Ch18u;d*~xC0W9%5maMI@~2gfph^UDYly!y)rOkV<!^uW2!6<w&ULnD
zD^$LwMc|L1P6Tx$5D};{daVeK4-u3y+Iyr&kP-0=KQbjGQX@hSE$H^MLY$Cm(Y0Bs
z!(z*OzIrlxg9sW%kiJ5x9|0Fvi_WRhh*^9jnncj)q8K+{G>&-l2%6dK7^^mAYt&Is
ztj%l@!K)Fx9YKc(T1L<+g0>N~i=cG`uSM`i1aC&rCgPoLdp+U_EdLj4b0*)~AWq#-
zQk#m`3k#8vm&;=82sM!YmMlqo{)+?Y?GF1n-ss5OS?mb9NAQmP%8>6y&^ZEHws(;f
z8lRBZRpJLGdVSg>JLG$8_FOy^=^6C)jChwgzg00$FA^gd8^O2;dPneK1VbYDBEl;S
z&{swr96>*cd=kN@5quOu)Xn@jf~&)QJQv1Ob^Rk45aH?sK8t`iQ<u$|hZj8?jeM2T
z1-B#y$&T1qIPK{cuV9}?U_SM83x@d62!=;6B7!d?;P{G^VG*oa=&5=>BO@3i^Bonz
zXo<A%;Tz(5qd3)8?pw<E2qr`@hrB_CT%b&hV0r{IScV8D%kWboShiYBB{RS14a{;D
z5Yr+ce1D8OGlE$W%$C7uBz*NR|KJm9-dW0yCh46UiFuN~K*FyioFBo)?Ft{Bar>G=
z7r{4@Zr}DTViiVt)2@F8d;gkmBUs8VruangT?F4pxCn-wED4#GJQKl&2$n~%LPlRB
z;Y!w8BD^rY`#%4<fhnsg<~K4bewMP9a<oXSlV541!SpvuoXBR0Y>IgMr$g>~Ew&}X
zJLa%0f*+a7$p1e|ww)aKNbr?bPrD-6Eo1%hJdp?vM{p#9JrVp&+1aK367hVO9f)9W
z1p6Ww78U)D<|N!70Y|?Z8#Lu${vgGCuX0F2S{@#a;MWL_QL-Z7df=1mD(A?ZTc($}
z=|9dyif1fR#fb<GO;z}ul*p+FekWHf@+jx0iPI6BiQp{N$Qbp{2+m2wU9NKPa;4>U
z_xT96$NjH2^~PG4$aoR_6Tx4y3V%PZ2xkEl*bd@K#IuJd6Eftr2>y-WW(1o$CtsJr
zZctAD6{V`Fw<5S5K`4T71a~618-X5y5y5{E+>1b?e0}Rp^8*pj^kTsi&(?ykJZrh=
zL{jc!iaS}D6p%iGKjNTFS*cPtl3kK0TV|yC;zF+sF-fF(r$Y&)YI2b7z-41ba6X0$
zG2D;f0m~4@-6$SL@Q5-P#fMQmj^GKEXB25sJdNNP*&vFtQ6xm+i=t2zg`-G}B1aTS
zQ6xvbUq;R-az*h%6yLhuQuB)q1Wo#LN0BG$Exit^@8fD-^-I2#C{m*+5JkbLXK9l+
zihNPzk78V@^w&=$akG+he=dnLg|kxyx4L*8DzBF<5=GG{O2~}(2~iY_qIeW;iaM;U
zXjNLwDVNctxJrYxk}^#9r)sGvN=y8v{NKG8MLGFeMZ)q?yc|WvC@MtpQWOvFE8z_F
z!ePN{Sep$>suV@#DAs?F$TOrgWa9oK_b8cfRT;Nh6x_F}F7a0+Y;rWyABBkG)hJp<
zp+=D&Ma?K`$*&nKdEty263>jH1y7LmR!@x1;HGNrDC$JfFp5S|)QzHE6b)psyNi@-
zW0d+)Z$L<Xj>i(X;$3Y<X5%QDFj$++<}%nTV|-1cXcomVxf4;cQlip1xrO{RF|XH#
zt)gfhMY|~8isCg%C-F^*w29KF!0Wg-Bot@8ouIaC(yhwn_taoeX&=SgQFM-?OB5Yg
zu)md#GUT8YO^A1j;vM-q<ARsb25I{EuB7}=!md$tlSp?78Ky@R?`7jXqj*0X|3D(W
zB<xbf$2GB0`7`=N(Km{PQG63czbHP6Vq_GfqWCz9Ph`lUQG6Oje~Ax?Vt_;jMX_wG
zGBAqI7<aZ>>VKlkH_ElRf3W=exrDcydxFg83%0zHexjfFk_{+74Ub|(lrA0Uf<`3S
z{uYJOe>)~dM=>Uf8BxrPVk{XoiYZY{jbeNh6QY<bBmSN*ePR?tW{A$m#NX${B&PFW
z#uvNADW95G+H27<<FqKIN5R1@4N6b96t6B;va&q&GE1f~JBm3>_9ta-6!W5<lWJa^
zH}lVwucDaG0_06wAc<c`@oo|Ngi#1R^T;R`N3k!8{ZTBD=`g{~ltBtz6yHVhJsTv7
zAELPYuG;P=g}dZ$luchA#fm64%J5&w)uELVUnSvc3D-!tRzjw^P9p0i+#uoNF1}3?
z;kgV3*b>FoD7Hz;j}ktblF0=$e%c<z4oTT5At}3}*!>)raF2vPOZba~dnIJZ8!P<>
z*dr`|6j!1+6vg2v&PQ<}iX$@2u_%6v;wY;*LHRZ6txwL~uGIKjJs!ohq_jJ=a-NIg
zL=-f8J1OBQ%ITx@-z6mSM--<een!Hx+4MhUU<SD0_!s677o)tT4u3_xy{cYcH(N7Q
zy_c2F^CN#pF{!lre6Q+i6#qnVQ<mx)S?dQ+E^b7zd91h|#oP&EUPbY5)LU%XwAwdj
zqqn+sD~j7PeB>=J@PAR<WB<m`HHJVG8dYlyDKSq-^(gEp92wY%!i*vqMJS4J6tO6*
zC}!17j6@M-l;)!5%FKFcDlLlh)$y!}?%xsgZ?J8=h*P>{3W+gfN#p_5eiZj5{v?;6
zKZi$D{?zj^_+q#+SD_Q0C-Uo4<~~n-7NzN9voVL%7U!GLu`>@mMgr>f78yBW$SKR2
zD~1<h$Q?t$ue>8Rd16S4Vex7|-B#4wrY7eVD}EDO3W(Gg^2U%JLq?3_2jq{Td<+$0
zD8Ps^9a;qxilJ}}Mdj;}-QH$jkr;9`60<r8HNnU8kBFgI48>z85%Vr{FDW5!X(wJv
z#wsl#TdzzEWwY@YV<;!_VRgJVe<_BSV-S*3F*{79m}k<Hlprc+Q>sX$s)W@ftRBNF
z5>X^%QfU(LOW5`^pDK}u>($ev)yx=b#PE6yZ%AUz7@EY;G=^I8wYG#zp^ilA#!ycp
z^|R>>B+@X3M%k3c61iE|*DQwSF|>@KRSer6`CG)$reQigIlLMJ2ZW?d=^?no-a3Zs
z--|XeeEg+&ErxRyJRQh7{#n`gW(;j*YMo+e7sFdIye(hblitfSj^&0aJt3TW&)0!n
z_DI2cwWCDtKTzJ0Av?#AIaTQr!@rG1mrzc^ZZULczsIm7h8{7z7sKcn#>CJwhWBF_
z7{g~Vd=Nvg7(S6H{7=F@F;p$+>m9>~WP3UEnkbipmM5k6jiDc_pDaF-kjTdpd83b~
zVLpwazf56(gr9Eoh<pacFgS+KC9!xcc}NUj#4t35FJoYv)c&qPp`L1!g6c5#%jC=v
zF^r61{F(;CW1ja6x_}rJLrK5y!}Uq0r}@%uiYMi}jE!Mj46|dH!;mpdh+%3B(_)w?
zvzQda<QTY&Ie(Wzd!DSv3Xe@qVX}|a@;~^dvyW_VD|S{4GuQ<)l~yli%#5MIliDN>
zsL|Yt`sd1Y=Ed+8xw?WkPoE#df*2OY@J-A+Z1{D|`$3Dp{KR)XO;{A;#+Lf(;dCyZ
z^APCs9n5cI*crpF7?#HHT?~mu6TgpPeGD67SQf(%F)Ww4aG_~k3@aqQQo>adGSk&D
ztjWgLN@Uy0rk!e}w>z4+F@{YsY>8oO44Y$~QwVyH{@?vf+HYL$?b{Z^j}$`+<^rX9
zsz_<=oA65dtL1$=Sfg4#e;e`IL9v?&#&9BrlQHaJYN6D<G3<-s=NNur$$t>{8mRO=
zl6FzuAH#td4$A@@WZNdIha}F;#M3i#t@&JR{L?$1azql3#_+2|NI52v-y}RP;X5_F
z1<z9wKO4jEG5o<!d{yl`S2-<-XE+{q{ConVGkA{gPj*m@UQI;Db4rJId>3Q5M2dy;
z7XBi8P<Smgvv8S8(&JU6TDVGyi$RaUh~XN=ErvTW+>PM|<w9oRf6I3>hFcQ9%~(9T
zK2M>W7y1}U93%C={1lMziv)3x61_!btu;xZy%S~GBpbx=IEE*Z7>ePcM8YvdBod{#
zEfCK_nKAilNoY&R7I0#SOWc((E1P~_A`c{NK2~`ok<@n^G`Occm3R&dIW0VkA;F^K
zP|<I_;<J!wq0~$<W^CpPBeTr|PvUY}c)>z$3m@e0YLv&q?+cYA3&|E}Tyegd?_ML1
z&ZEsUZ8fijd=_4|P|-qu3k58cuu#(S{&xi>ENr2WM1GBB=3b-}vFKnQuux1AD>U~N
zZmK?d(L3B!+yddnT*;*@l(tY_24Fg6ER?nIqU9Zr;_D}aeX+@EIm@$9<+@Xcvc3v3
z<VzOLeW<Q2S(i&Ll`K@Y&_L3wSg2~DmWA3Ds!2)>3pFKDUBXu+R4k-P#4jN;5)x4*
zOt+9Bk<9F`snydjq^L(LWGpF_PKP{oEY!77&q93*`dWpSE!;X87E-w3)oz}5s+#AZ
z8_KwiEHt*j14=Xh%xuDvob<oFOyQLx%`LRBFweqQ7GAZ`(!xg;KDN-xLTd}}Sm<ow
zH4AMlyltU_h1V^-VWF*scI?5YbUC8DX?a(o@Yz%;kvp6IJ{if0;w=kfD>ZE|AuB~=
z%Z{=bU2o@pddA<$!lVM}HNMQ%#lpK5dRlnjLRZVv2|X-a+2Zde16LU1>(0Uy_5L_q
zmVA#~)G%ZI`5Yfu=w;zU3w>C~HsXJ5rM{xKh440UxxJ4E8%r#q6FfgnCHq?5@xy)=
z{z=cv!>zpb>l1djg^?CUS?F&ebk+Bng+Z+8S4jhyX~Fb?7U;<CLUG?<3!hsUV&Mzc
zccQ{W&0p*lfBlhjsD&>ra4bRFl3^BxTiCv~!3c8Tsm#JJXYgTZNg*6<VT^^z7N*GR
zjJ4=E4ihbmvoPKQf9~!HA6M``zMrsql)`!9o)TgbKdn&el=V%uFwMeDW@KS!k-Bvz
zDbr;lGbCi<Bg{-1ug<nG$HK|EYRf0e-bFtC7v@?xT)pWzyY_qw3mDkK9t&SvSZHCb
zg>@Fbv9QR(atkXgEVi)3!gm(Fx4>mCPT#&|f+N+2Py9<Q>^{|uz7To%x^-`LnT3^^
z>JJt!^%TvPdrO*>-<1|tTUcXZ-@js&g>Ijy&pz~>x~x*nuUXy!{Ph+#uzf7-u&~j>
zCJUP_Y$412B;J`J_@`@g$~Ul1;;5I>w_4aHtCp|7Z&hFMBgHwVAi|5Ycd{gu-!rMZ
zWPl@kJ$d8_-=}@+|7_tGNjz?0uLW)k9<gwg<*~5e0yp3eSa@@sa*%SpGNpAv-ysYC
z+L?R~OXSe*Ccl#FEKr&MMn0dT(h1u;{XOS1BW|TPe5RgY+gdn9U1Z^mg|lp^_G;M<
zf&<h)ED)Y%UAFmoZwL(w|FpbIz!jQm&r#O?<hx+uBD>zkR2!G5{HY3T)Uok5mA{4J
zHcHsILgi1%wP27%EnKs3$HH9;*C|{ti+?TLv~a^hB+)b58*s%p{IYV(Lid-`Z<9-_
zh~hO8*Zd>SyyE*$Ho`p%0VY*NrK#2Nbv`br&TAqxGU4yyYAnID5M-NJh?DIpEEZxG
zEGBO8W=U^!5v3sCRCk}wU7@z8X>F>DPim2`riyglI+SC9&n4R^Nn8;vY9ouv+`<ED
zyd2^wHGD`V^3cK~Ng@8&!V`%vDUin3XBHA{_-s!_^T}@`(MAp%IVB}U!dy09kVtL`
zlO)Vz<K`o8wwo+piEvFLH5<=sBVRT?NcD<cK)x1~u#k<y5-E}$=F?3+*a)vvI7BaI
zBh@du#r-91l(JF9MpYZ7WylIPUb0cfMp@f)$nc_#ayFg}REZDWo2R@DJ~fJ_r&s9m
zvW<$icX2~yrq)UAzA{fG8!w(yxGg@bgYWZ`e%{$s%|>+_s*Q9Tuh>v*q}lM>=<`z3
zJWbPS6~OCGXn!JXyxvtzq(Qqa=8je~WJxlak?pOFRT$&B->+$VE5o(OIa~bOU(dCE
zkNRMiuda=HHhS6kpN;x98rW!Sqn(Y0HX7M@%|;s=jcqis@v4oMHirG<Z)&5Njpnvz
z5!$Gbj|VHhzm>boL#2g{PcC^Kw4kMT47`<%*0y(Qk_N7{Yvm#O*JY{Ru<@o1n%(jo
zE-#$odIGIqUf8X?Wuv`~PBz}Lxv!e=wv7%pI@;d;l)YYb8=Q-Vh|3;k9(*UWvrMO_
zjrVPIvGJ~rt~PonsXc7Z5Tcun?lvzL5kn$kM3M(-^Y)(Y%~L`f)Ux@-kUa`lO+T>z
z-x9dDjSp=MvGE04)yBRSzE5rRx6#)|KN}yB&E&rJCpIdSPybj#*0J3*k6{Mb7|7Dv
z7-WOPZ;nq^-}UcnqqcrgZ9YeF%ZtG_K4+Mh)Hk<h5DvBRrH!#R#>pxSWBb?`WrMqB
z!&&{a{t-5|oKtcs>S!BdZ1CtP=dj#-;f4#Jq<_VD8xw3yvN74lL>BlbHE)JWWyN1W
zzNNl}zBHakDDb6dH9TXQjp;T{+c;xmhK-p_*~V5jk&W3lejsz&n8U1XERuzpXX7gy
zU)xwn2HUKxnJ4D6vN_cSEJkUy;)v9%w*-&beq&>$q2@WC*lU#-kY6mev4lKkW2uer
z$zV3VV}hf6JUv?Oo_Oh7)lODv^pe7hJ0>a{*Z5X2x{b9q*4f^wHEm^Av9oNfVP5<E
zEmG3CLVjw2S|pmV-sVy*Hrd#0b2uk9+PI(M<K&UH)@=EQMO9AFs2sX{Ew<VC(Z*i(
zosI1_cCb1&_Q*=@B$B1<Vmc8&7qLI@m1noj%Xz(1w?9+XR;K*IGLKcN1U)T5PqXxt
zyWhqE8^>(?X5*mk?L;58am2>kFQy-2yNyqx^(<#Ym)>rA)W)xreQ6a#<A>(WavisE
zLgxDiYxka7{(v}X;}jX7di~#R6wf18&GQjwUfr9kG<`g4<4+q24tx&I**I?_Xd`6f
zf{lwdZriv+{Vx-|ZsP`Z1%CnZRgsH$mnDA1##M<h*?%N*O+wB-KH9AQEAd;@gyho9
z#BYYwrzdBg$z|YYwS9MO{Ac5yjR)z1=0gD+n(cWpRew@j?^bmih7Hrk?z5Q<AF8=`
ziv7D(K19McBJ2@Hv=OC{+Hh>dZCDhm8JSf3TqJM5R<X&|YZbcZZ8Fl=?5UrtLoRdt
zBst6WtO|LK@1c!HRF709HXhq3c}-ndyxA5*WW6iic$PpfzR$>$8<bjm)!DWv_aq_F
zK@JDS9h7j8(?Ko=`5oR3jTao`c97yA)xki~V0a5PkAox!f9FyAT=yqC-aKpcXwRO3
z8;*G$<a4~MIl0_@wX*NgA0lPEub{)zrlOF8!Vccs<^QN`I%knZ9Q?jX6m{_2Discj
zIjGye*_#!*5H@HaN;)Xzpo)X44oW*H<Di0rmmHLJ@S=moWkh)gJsPC*a5Rk}%Q-;%
z20xU^*fLs;74^OBfU1(Sn92?+I;iB};4IH`+HJLY{X^;9Rw+N5nbjOrcOV>`{Ykvy
zKyi49GyKl~p9t$)N>HY_cRw|^O4uV+d~Es`Usf_4WIEUp$IduvIH<`=#Ze@VS`KPE
zSmNMYrof6g=<VP`2lX7(chJtkTMimHXz1WI$NSqha?sd8a|bOPG?5e%o3iy{ejW^I
z=6L%-99@qp=X=#bO9$Gu<km7+D+l*y3Qjf|esK}s8*d2uk80!Kbq8<A0Bt3F(*Z|%
z9C@}rld6nY^R7|aJ9wKd#x8Ksfj#2jT?fxp-#-OCecQ>wI}XNGRy#YODMA;=8wt0*
zpTJe7qb+iFb<oX0cbPJMy`~-aazB^p>nSPkOGwJ$les@|(96O99B@M<x>wBlNbq=g
z)fe;hanM%=8|R>(gO6A|2ZJ4aEQy~w=<nbYiPP!;B{Bv`oaYOEACYUI<4q{a%uqga
zuxXM)dwAycxr5;jMmQMa;0p&s9kf}YeCc4A1DYT3?CNKiyc3ZXrz`nd<QeH;l!Gxc
zO>O{jEoig@&c3<X#07jVijH-_!}wOM#PLKNOmr~G!B-CEJD4nEO>r=l?bA`EKa**a
z(nx8_vFLP(&yaAYge==EiOiO8j)Ze1oG0OX1AR9Wyf$Cp;A;m99ehK6c5vMB4#zEG
z<5cJ}p_Y$Fz!-)rd#`cj$H8|F{&8^4!S@c9IXLOyl!G4}EO)Te!7c|Y9ISM(*})c>
z%PI*sIap2JD44cJLLzG&tjosNJJ^toZ<Gidgk}j#uBLD0-r@@7N0|tJg4-N)s-2T_
zneCFYLqZnse#Bes+U;PUgZ(5r*yG@52Uq%tUu2k-W0azaUS;<>C@Pl}4p0~!`Y^{a
z2i(~|<lwM_BM!_f={X1GYF($spp|)eg6}9>Uapuu>n_Grt?}yy@tfB~o*@~Z6B3~&
z{9WeqCzZT|KO}zI!5Ip*#0ylX%QEHpZrXWIQ{it(zvy@exGqV2a#PjqFZd(=%Ry+2
zXXkvG<)^C2Qm;DLI#J2<qu>#$e}}8r9o%pbWH1N+%D8tO{O91N#BVvc?cfgCZ>ZXK
zgSvWeB7G2@o11)3e$^!mP>{)8iQbO(r@h4IL19R`N#*mG!qKDE!54NAq1KHfcN|d%
zF$Yg6rw%L`^09*_4s3}#62>KDv0VpQ62G5Kc_5L84jyGw4(#x8H<`+rMn~MxNr=N2
zM`E1UtzvDLO!}6&Hzsw;IAz#Hf7j8<gx{2$ajaXd=8AiVP?$xYIFjPXA4h?>r^J%u
zNRbHfrX_r-Ol`T!CvO~YSI^8B_jb_kTvrRmQ7Dc#26$T}oS|oyQF-ASkJJ^70}L5Q
zhd7GGQJfkzj+!#T5^+?Fqf#6t<0utJX-O;_$BPmv6UVR9J-;sH;wUdEFUN7(@>hs^
zXA@qEduLZubNgtH^>MO~T8KMk%(`+M88UE{II6}`EspAO_~Q_9yb|}0#L|*biF;eL
zJP%82t~4t7tKKR{=A=|Lj&xR`WCjm4Z2Lt#x3<cZsYTa{y8+LOOD*~OY8<uWs1rxs
zIO@gGD2~Q))Q_Wq{MwK|i{paZ&@UBNM`fs77vj!-lQ^2j(Lx5`%&u7+4PQv(7SE9B
zN^`dS6NQI-XPxkI?WkoOt>S1M$7^xC8AsbV+QjiX3l{gxBY9?rhSnUmW$p0)k>G6;
zY|5dwi=#cCvwof%eTyA8TXnwh(S(5hh&sm6DURuJ%!uQiI6BACN0y;W9Ph^QKAS?m
zc8#NZ96jRbCSN&h=1rHZ?|X62QDM)xH$Fd~JDsLGylIj2UUBr6A&LJl?wzOLHGdz*
zv2`SP?)AbpwQn5#;`k_zk7cltaeNZTrxG6&NB=km#4#}Los6cb7!!GEnWsQLlN2tI
zkv=#({m;o`68|EbGE^d8#xYDH!?WolBvO7w>ZmwIOMFZmQ{&iBv%y&TI!?mz5;D69
zaZHr>q-@G$iA;G8kNLQcH;pOC1wDqJ8OL{Vd>_ZGIA+H&Cp*?xam<ZlUL3#QR&SJ2
zdEt2Rwq7gEk7Gf0n6D+WFph5|vM8IrSRzZ}_%@reR3e`?@hu~(v+!|jjAJ<)nev+*
zW@Q|!;#e&umj_RJO%}h85!SPWHRPph3XcP<lOfkjI9uAWZ;E5HeEl(wE$pc{w#nCD
zCMZ0JL9;Y&GjTcVuMab}OFB0QxVN|~j@{%R7c*S^6vrNlr;Bnfevac8>aI9qaqNv_
zUmWM-xDdzwI1a>dJdP7_9F*xCr69*~D2~Gvfh(SI-Gnyc2n)YN?2>21j>Ykt4B6_q
z;6J5GdzA}cC*wF3$C)_J%1^&b_(vR^xy&e^ewuk5RPRhuy44VW%1`Gc9C*S{xBQ%6
z@QBvMI4;HUZyYz{_$!XTWq^Mq3<MHrd~!LCD{*8FQLjo!0}0}^X1Nwelbq`HIBrOU
z8>W1{702y3LUDxSxD&_SI5f&*9RE>5YpVCiZzGh{x70Niy3j#WK;|-}aGJraQ`1|w
z@dc^$c=IXYn}Qc{a%TE>TVF&58(KXtS;di?9abDR)vt?W7fu}UI3CCGBn~%@tT^sd
zhi~u{?4Lf7f4BPPnUn`?kT|FZX7o}Y#qn7;@xehs&Gs~oXEO0zE)raBH>-*4KCb27
zS9~tssMzep5N|g&hl_QSm7Egt>kBS&yL7du(Dx=6tMj;?23~i}m*OJT1zZ$!kyobk
z-*>)3F7mm^@1lT<g0441<gy|Eq+_gv=diF0S;R$Amp<n`>CSQ8ll0<}UeX1}-X&a2
z?x*rX@F_2P+NP9?(k{xl-Zm&-58oDLUEV7yxLIG`MFkffTy%8tl1q<sXz0@QA1b=2
z<U)0k?xM1bDlR^3kxOw=)kQTIugJVOckWq6RCiHF5maIYj(VDZteT$Y!tdg<j|6`o
z)SQCtuv%R+!I$A8(?wkww}ynZB&_M8Neh*yU2rt9wxraNkVWORw4RIlE_j7R3t!sZ
zhN6LsyQ9U<uD-^M<)UqN$fhn{b<xsAvusLp7cH{!*S9on<)XEV*V#=jUSlzIg_iJC
z=51VD{4rzhMe$5g-*gf2dF};h0hQ~RDD*^WCsTOKMSGW4!3o@IY_!Y&Hk)NXy~`za
za`BFf-fSEfon3U1fj@BZu0*;^*j2)AE_gC)%|_APLJt@3x#;P7_ujr)U+^w~_g(PH
zT0S>oYA+Z6lTnOM@^EGHzY(I3i@q+tbTQ0DKNlal7|7;z@v)0fWXS$xnEMK?Nk5gZ
zz2zzpTW<il=wZU$4BsFZgI#>i99?gt<op_C{u)6yN4z=c3s%2C8a>p}W8P2~r-ysL
z`{6D|xESkVoXfkJFv`Vf7h_!T{#-8ZU9Bm2KAKYi{$z*x)r5`y@h&FFtf#t|=wgzK
zDJ*IZb!ZijKlx0SU+E5%!>6AI`=+^|b2fUYrV;*37qeVEa`D*3Y!`D}9C2~f#atKj
z$T=?7yZFk*d>6|Y%f$j0U%PbO$t6TAbn%UgMKW=&SBo1>X>iDMG);W!Vye^K-p^vG
z{7U3|7vE6?QquTbOiAZbJZFN-U951iT83FkDY%icimjT%cjF&HJ7=Df<}iDWi?!q#
zI=?NIK_{qm)3Je4=3=jleUwlan_cX5u}dbh#l=<^+g!Mg;8NR<F1~n6aGJlv1uq`j
z?joGS8yC@#Ceop4o`Pbxi#=5PjLUZJl*pAyp0XdjOX0Bs{`!BR=q(pN-AdRm6F(#&
zqaTpSK?&)Mg_OfoCY@9cu6}iKj56ZlKbJRp;JAw`F0Q&b;o_u=^DZv9I7M~DzIJiO
z#S6cvf4DewN#W*KzM;yRQ3+>V{ORJHi?_Z~c~pukOJ9r?IV%ZHO9#yGU376t=6l)2
zUlO7JTmB&amN-koqnaG&&?W3YF0Q$_De2cGydfdA0bN-9EAff)T>mYJ-<I%>gdOE!
zje9NvE-V+e3r*64E<!GJ7lsSd_55PBs-I3b2z?)l)<+Y=RILqjMqJuOd*|Yf;ffoh
zb*|@>EJmdySNt5A4$FDpMV#G4oi;|zqH;)9xgfw}zXyN!nD&7T_K-rI;aL<vp@dS=
zWua~so>BQ{@dj0t&4MoriCM^(h5T8_k%gRD-tQnO3%MkcN5U7fkUI;HXNv~AQfVH{
z%~tNuR-U6IXCWoa+s)xmCp8Osv+(KHjobX2L3?BRHYt#Wf>|h<1;|7SNmwKcmshEU
zv#@NCS4i$RRk)`Vlb=dRSp5HJx(+BQiY7d9k8lJDRpcl^U~gykjwm@N1q4(;0TGZO
zK?Ff1OOB$F1O$nakt8_>34(zjDhf!HBp~eM{l95`-p#95*W2CGp}J?Ly6US0J<gei
zWo7o23nZwFkx?)~2uY8F$U=$mI1+r(1cK{{$CjYQku5=G6I3FB4>y9k<M{-YN>J$p
z!S-NH!OS1D3eTr-ZFi*?5>!r<iYBOhf)-UWpkAnupfRmwT)<6&ox|h3v9tsMCwU>v
zGZJKq{P6@;Oi-l+r6(vOL3MW<Uv4mlZZN=9PEeHu!4Dlq?9hr|>@SaaKMPQ{UQAH+
z1hq}js|l)+pqiqd7741ApxOy)l%U25sv{EXCa7K_^l$BFN%c*$eu5e#s9}QkG>CuM
zUd~l0y(_$H&&90%a+3r##h8mycgGmb65&x}^8~>wcJL;7OS<_|B6RS~UNba4hgPAb
z$k__rNl@zqwMmd$&`kR-_QF(H`%86l8jq*SuO;a91ih7@E+X^7tZKUi5Q(V+ChL>v
zn+fWepf5X^ZzKrrxA1F#WqT*gVCTA>6QSbb*0(ay55{jb-%e211Pu_CbW2e81ocnQ
zdkK0+q>RsQRIe3oXgw0tQ>1|JC79lVz6<$zmflw|{RGWlTi!Z1lor^^maS#JFA~@N
z9c$%fe2}2QxT8n!do(0LA0}wDL!UVGQG!0kDB0A)rlAQMmZ0Gljj(8Vf<{0>EXr=t
z$OMf_(DxWXluFPi37VOpS)%eW37V3ise&Jypm7NrpP&htj#rIIi4fsuVuEfwh!vP^
z3@RKV*i24@XARJwppnzSCul~3ri<bTj{-&OX9@aT{QCul<;zg3u;_3!{e(K#sr%y4
zI<pfrCqbJrya}3%p-#|O7~TZU6Gc$xe2n3989$UY7d%V(zKOgjL0>0mX@Zs|XmNs;
zBtq<8j8ChdV#>S_SqpB4%M-Lh6j`01ZxRF()>`kFtI)zR(Us`zUK1%eI7Z@{XEm=C
z%(?`v7tDrd>E8-wqoA7v?c;>6ZCeF@K+x|5-Ik#3PyZbl-I1W3g5M?RZbA1v`*p8i
z_6fQ_LBBT(2k>Bm4q>Gy=-s+i;TLmMFh>$pv}O1zh;RHVcctSAI*~veSbC74lL`7E
zL4PLbFRb?jorcgR=t6>iM1^z1BIgqH6Bbv3eo4@o1f9*Dj)PkK1V@0gA`kczZtOgk
zq#s>B+<>3pZ%D_=osdB#%_%RZo~y3?A%+WMbumE)gl_7RX!dnTLV_+Q=n5LsuEyU9
zx{AG2ldtUvCH7i^5Qq>4U7$A;bSpvkM5(^t#{Nmr9l__`AG@6((0nt@yCMYz3r#lW
zjWh3Ki*92?B>7>29wjKi)-5vpm!Jfeyx<=v=n2FoVnPGZmt;FZ4%RrfYlwX$4M#jU
zT{_&&9Gqbw6ytxFOg}-eY97Yvl0~vb5sOkRQY=y}(yee)#dZ2n^tU2$&7u;S%(FG*
zKhkxm*^!>fqAV6=wE%l=WVWEaPy6tb)Q9~;Wp%1W#dk;dk2OGZSd`PEnikbU9*c5W
z^t?r-EXr+B9&wAJ7Ui{w1Yf+q&KBjfsIWy34#=>K%5PBtiwau6t2c_oWsE~)nOq1(
zn#q-3jNhFYEn*SQF7Z8xZ>3_muc)VlMI{AO^>oI|TTEy&@pWI?qB0g$w5XCrWi5Ka
zqNqh_7Nt|XoJHkD{#uiwwd&QVfc8v?LNB-Na5!->i%g5+B7<SkjB#NiJk7WL8ij5-
z-3qM^GOW-o9qE-Vs$$WLPwy@$602GC?dZ_*1Q0YUcSoyRR0EwFYT_6UCKgbu*0!jQ
zMXy=(x<z#@s%KFXi<*k!^#yHYQ3Hz_VzhMwFinHz7>SWls8AYX)@%cizs)RaE^@ZE
z=p~C@wg_O(uUOOqBYBBhTGYx40mF;>5{`s^&5)nIKRo=wJW(m$MijLFjkdK2zz(kp
z>U?Olv#7mA?^@Kyq7D|lVNn;0-nQsXi#l4=*`l{Z!A=%^emLvR3faaAOfwi>LIqd6
zeE5OTRb=R9QFkl!9IrAl`i@0C(Dx}uFN=Djo;@b4+HhtE25x{jk?Cy_JU}aCn0+nk
zXVLo>4Ya7gs0Rc19;U3k2`7{R5T_hz*t_sJ7-Z207JVr4teGGWw&<ZR4Y3Ge!Y+Mi
zUh5rxCw^qn$5!aR)Z;sOs71pp`n0Bo-MH8=6OIETF<cfUEV3*bZP6zd?XYO4MPn=)
zYtcfB7FjgTqVeJu^DLTR(L{@;qY{xaNzf@4J?>;qwrC}11=DV<In|<Rko?&xi0A>O
z;tY#EvuLJ8voK<4f06hX78N~XY~}Rdm)5{H2tH|NLy+)D`lt49HRE$dwXfWae+iLT
z8uiZ_;L#Uc^TkgKAbS>JBg*`9=#TKVMT;$3Z_x&emRPh@<XLUeGK-d@Rp`D&ez7<X
zMpsybdB=(NH&~26he&;s&qh~Hj>6F!R>5m5T8kknE3dN%*d3p*F#ywdPppM+E!twy
zR#EdtD~yV`Nzly@-J8)cNMe!rcNT3I8DOQq4NFoo7fd(0<O=V*%c9*DqUq5Ui}pYu
zEjnw_Ig9pLv|kiCV$lIe-Iww~iw<EO4KvrgWEAXZ9LBcL!hq5Ykk0tFJt{JPFX%A~
zVYXt&(Idf}wCESXAn^ymoU-Wjvy>k#`so?}vtV+2#+hd+@S{I((XST$DQd<zU$E$R
zi~g|aH|$rVqBH-KmJN|FS|POH@*xI*W&R!(9W9iTe_3=16E`-CdCmlM-rp8owdk%z
z_bj?5YWqjf>lWPr^PB<H4%ph=L{%GV+!7SG8`<BuZP6XPkn}eS9*X`H%eZgRzoOt{
zK_6hd6U@tNqYp8RXN?!1&+?y0fg3Vvcp~^_cQZciXWFP1TdqyHZE`L0#7_~Me8DL8
z|9AMnqNGKVP4HNh?NB#+d1k2QI^Qd-P_+qAx0)Rq5$QJJP!bkCDK=#i#WUNKYEw3w
zvWS0yOP|$7V7}<+rE+$ga@h2oO@KJgX%h}oaS91X(Z)k6UaYEgdQJwgC+g2*Q#qT;
z+c*^>vWacVXHzkoirbXmrUEt<vZ=651?><G3H}0=il;vXFT%TP5u1QsQq&HOQjX1$
zVNMBLsS-Aow5c?jiu7K_^ETn2p_ENO%`~>y(&QcHyRA~o+M%AmUi%PB^I@*|3pSl^
z7QP--uqkTOi#AoaDb1!B%Gy-XCc`Gv4xM-KP>b8)nQXdE_a+)O))<?r$WKohD%n)o
zrm8kov#AQ0OECmkf$1OuSDox8FWzhbM6uNGHQLQGYuHp%3|BotYuQxCrn-1LjT^N^
z!*KS8Wtg*|G37RF*uuw3eVZDH%nb!aN+ZEEwyDXpl%|4dW>a&)yd>xk4MShumNvD*
z%sTXjL$BD>+NMi3UAC!>O>J$OX47<=UbX2poBG()R}_5Rrj9msvZ<X-?L|rlJN&YK
z)227XzrBSv5}Lrb*GD_s^p;J%M0yvS-o_AN#%=0qQ#YFym#zCoW8+FDqu`L#?jp}G
z-3(|%-(PLQaIPl`77HP0;6>OQt(qB4{WSGm2t%H9_{;aRslQDh+Vqhq_?}IJ1Tz3)
zX460jSZW$h=z#Fk?!EzV#1Cv5Y!fiyhuHLZWX9AcafJBUm5@Hh@Y*!artvlnvuU_Z
zqih;&(-#ZP5jG-Ogdox*kuo&3#6q+54f7M5E{w_;W7Akj=2^4)8wSi&pp3%Fc<<Ko
z1e+$>GzAlPPeOp{S!7IttPVC|_c+<6`<o1e^SFInnQGI4Z0Yzg{M4oyHtn!!r%j*P
z^tnxQY?>=N@`X*a1v67nOx7%$emNB`y~3%Xar>7x%@aRuv1z_d3k1K}rmt*TXwyb4
zlicYraa?56N}FE#J~VgyTI5+Q=n|Wj3TBz0%LPTXD{T7a8IK~XMA_AXt`QVft+i>L
z;MWVf;aU2(HvL(m9WrdP3AS*sh#R4#WiMgk9CIt`v<cBJw%N4ZrV};Hr|3+JvzYh)
zly}**8!OSKpKaP>(_Wj7*>v2droei&>99>lY}$`OvuX28V@MwPpiPI6zk%6iRutEO
zG10s?;(whqv>nD#4E_c4d(nl}8SxV~owVtcP11a0d2IveB|q5YtgC}~XTXL!ZPSlf
zLAA{O*{hYfC?R0MFE*XQs<-J^d>Bp%eI(D?bj~K&=O^AV0EPfH%LP$6;7b0m={K8x
zw?nG~*f0ag3tP}d3<8AwNc6zrjK3hFMM5irRZWd6HvMhW^A44A=&DWEY?2*PoN%+f
zE-LhFx?$5zn{HvCM9N*8ZrgOnrkSuPUlxM=1K<m^wNc}qjexe%`!+qvUF~0+5@W+X
z^MOqdZF+>gLKH`e1!;fAKS8!<{Ko>}#1{WLg1UkRxkCZ-pYk>(ZMw40`1_hEIf#H9
z?u4pCnnUCeJES`laVWb(IYci~97+{TCWkURG<-;E7W`B+^bXGI5U^Zujjd86o5+L2
z938`Z<#Z^QL%E$0{pL9*w8aI06*QcA9Lnnugalu6d!Lh!spf=gsrekr?@$qkiaJ!l
zp@I$-a;UIFIOxX?jI9+0<d`75#1>WK*dc)oQw*7B86_Ml?)+abI;>VYcF~e3E<EN+
zJ5<J@#!d)~T-Ko%9LjL0qC@2zDleKEbEtwtQHRpRzxVQ(%a)t4F@RSNtgo|`H4KML
zhvE+5DFctobd1lFSjVz5j>}W3D3u(l>`--wYKY=h1bxw=st#4dy%rfzhy{lYXv6Xj
zF%j|}V{#~yTvKENU(2D|g0CZJT|w(T`?bD<KxUx`H59bbvvfR3n>f_ep=J&>cj#4-
z{*s`tIMmvqMiq>g9ctlFONUyagBxO?*IzPmA((YMdwLs(fSLJbdjn`=ZJiKv?7$4;
zHHThz=x%eP9c1`a?2T(FV;*I+cVG`0&hncMb#&-MF_N7e>g>=!!M`PFH;1}A)J3%6
zZHKxF1}Y{f*rA+9@pl~RFA{q=)YBmZcIo9%ABXxn)LZ=fu7gKO=!6IrU-ctq$#zCR
zhw!a*FT*&PklqtzQO^K}dQ3OpcPLByP{1&)gB<!m{5lx<{|w)ghak_xD2&ZM5^Y1C
zk41)|XxQJzFi0=%=+H=!h)<qT7{<xr6Z0u5?-+;1I<ytPisIuO`qH6!4vlwcf=HR@
z&}YwTo+K)nEa()6raCmuq3I3*K@qC#84i7lW%8Ab7zE#p4xI<#U+}po`-Lbn(+Mph
zXE`(*%cM-`iGya$!ARaV=Q>n+Z2Fn`VISv<B5NI5AegTlTIkRshrSk-tZ-<tV3s(v
zR4^s)Ny{8MH$C%mhXx!p{^4o^ilu{r$KN+jXm`3&WLxDR9Atd8gU_Gn8bQHiG>GGl
z>%@)Li)<Sl`c^O-9opp3X2EZPkROVE`9r8#t$H#1+S=yOb~MbTMK0}dXeZW`OEH&r
zIkej$%OTsLJr3=4=)6O}I<!yJ^SwjI9NO>D0f!EXlp}&35_IlP`LGjOv;xres7Pt@
zcR26I9a>pByy;nyctX&V4*eh)q@Qx=^fUfP46@*V7W5ZE&pi8e@2yaab<PQKU*W5M
z!J*$Ay5-P6*isz&!=WqK9v!;q(4V5nC5QgPW_UdY(?O`RVN}_)t6XqW`eg{!$c$Vk
zjH?b^!*X-zh65jY12H&&orqvSK%;&2P!z$kZ#rS*>#l{;Z##szEq5Kd=g=KdIot%=
z3!wG;4*iEk>d?OqJ-~>qk3DqgkrT!lgmxOIcwnFddE!v;nwfCuQa_{1hta{`XMzz3
z{2U#JTx_Q<6>!OO$ag5KOQ|jexFa@smvomTmt>a|mpbl>PMHveVc{!gHdvLz+eLK=
zku?xQA>vYsOPNv0Dg#gznG$A$9%d#tj2(%HkXcYqDFa^$Ek{e)T*~fJE|+q<l*9f1
zSH|L_8pbxK`1d(MVfTWRJZ@-B$1de{iQLe0=b@S!B1^nPIC;tEhNq=#8p{P;D&$g0
zm!5a2@UuFLxl}~(MZv6z9Vl$pKbg6>OL#zU%4U>sDgWCBuwhHNRNAEqB4-(w$_l2O
z8``VC;L@G7v3y4ibn3N|p*WRC=DOi239hJ1YX^skhD)YP{at#`g{v&3yVS&`rY>c;
zRMDk+qQXipRd%U{OEq1p;!;(Ys=4%{OV`&JfPH`s(v}Ue>MqTh8T)CEnf^-*_`r1z
zr_>T<Yr9m(rPU2X{V)t0+LSYag;LiIqnphsEZ29bflHt5i#K$skxPwTI-4o2L`fN6
z2V>qd-hEPK^xSAOmzrbxT<Rn$e95JDF12^*WtUorl$I`i-#EU%XsAGF<<cu65qxWx
z+C1aiy7a2xUla6oL3{NLN1(&AJa4$+SO4;E=9?}}s{VhIs?ILG<<h$@^>L|-OK-dM
zj!Qit8!mOj5M@aN2yl0o;KvFB5+K;CveBuzIlI2u6L~Vld$|Ndh>D9d^-QhW+a*xk
zv9C-0T-w-L#)%k=Epfn|=XUtLFu<kvT^jGw1eXS)pi3hmLN0wES~yJ5!7dGP=|h)3
zLSqg`KXyaw;^nW%CHBREdfMP{bf`;Efr7z}hKnL2Fsi~DbM&*Gj&bP|!C%W_w0u8&
z?;7jUIINVNrZ&vH{79OJ5x~5-^ts43*`-efGX-Mo(lj@OEp70g0aV-RF2QC7uEB7F
z?R!I+;S$s}uul2HrI{|x6Q%G<Im@NlkPw#ufQ-x-x4ABT>4qVP0J-o_F&VB{gC~U3
zG2f*HE`8;Onlu1n+*^d`Jn3J%v>1!XBlc*COG{n42Jv%gnM=#D_qw!O+-QYM>s(qd
z_-|ZV>C!65o*M?|f?W{eH?4t4Z%A*|*j($<ztf`NH@NhzOWQ<|jV^6+X^Tr+UD}Mz
z;lCIlHQ>;C|D{Yg2>uQ$ae7ub0+>_70A2{jw;hiFmv*`|W=kskq0Y}Weq0lSgTo$|
z_PTW3r4taIp`ppjK9}~pbik#9kX5YoL$O0H9d@bAJ`=vfcV-$#T)I)D-cgq>y;cYL
z!Gj(Xt!ggp1Wvm2gG(1&`pu<NE}eGi45rnkAJN~3nSXNWXO}J(PhYp(czRZg;=hRE
z-wmmF4pa8X_|*-A?7)HLyhw-tJ6=C#G?jlB|NiOHUoQOtc^hYF=Z%XlfufR25GR+)
zb*O#CC0GsNtt@+uaL@ePrK?y1_iG~$Tms)&U;BnjHz61pZI^C|I{$U)flL3mbQ^n-
zOLtwm54p-k_aJGJwC9hRaKVP5b<N5OV8dfIjfbMt6G0!j^dBT4YZ^3o2i8U(yHtB)
z#@CBO2}!s#ON#^6)j^N2+q;y+)-6i;f+A0!li?%#@hDmHNcJezqih~2Ubthc9%)`^
zi@WQBse2R=iCH}AXk?@y&pb1;N0~fod&tBEoLHowR92C#alMLjm(<QK_~$&z<xvj7
z=M)s#7ELj7dz8ncoo6y{8J?;3F*C16ts17E+hq1_80yJ!<@4xyk4kxzUz94~Q9+Li
z3BHI&MLjAkcm%J1;~le@N5wrVDN>-0K(N<6dE+HKI&~#lx}CYPy4m87SZR;Sc+||J
z<{p*x=mn2zcvRD)avqiU$nePYsDh{=D(LZ{27JoWJc@a=QHsC3T}IHl0rlm$__eyA
zXlJ@d8PE8N9#wkASN5oi;HwH+P0$wwUHo=9?DtxmMTQ%-L`pr6>U&h%qdFd~9%10n
zw!{;&u1Af&jOJ-5H}I&T7cR8M9xYmHHWEef@&KchTHE9%9yRsCZ`-YtE8;@9ikCck
z*`v-Lz2#90k6L=v&ZG7iVUJ$%=v9v%AJSTTG<u@h#-jlzG9b*a<&fJ7{^hI2-OTmc
z6f|G+XhUV=b&tS<>EO{Dn0=2rd7%*q0BxZ4dJ}gM7Pfc=!doQ{CB10fE*`z@Q7?~r
zd(_pVZXR{_=pB#X5&zDZjM$#6R%HzcUDIY8Jv<<s#Cm$6BTu44J5UVEyB_uNsINze
zZ2<)-Qu=xH9z?~<3Rr;t7#{%+&?;{nwj~2S8st$IiQks^1CIvd@He1=0S)m0okZ{W
z)WfHbJo?z9GajAwfY?C8us3?N)T7}ZjSwR_!=sTNzFTRE_;<8Np9p4>pko9b@6lMy
z&Y2imKF$ka$Ivib6Fiy-@n~$|LJ;}Vb&biGj#e25TN+bE!D)g{_vllPwh0%=wiUzW
z`I$$bqmSZO{QI>>Gd-H+(QJ_d8^}c-&3X3gT#vqd#?KSXe2*3g=BsDv3k4IeE2q|}
zdSX@Bw#8UM$4p=yEc0l&M_ZA>qZK0C8jsd`^o>U=#lNc{5>*v^EU)$mFyM3~D!mxK
z0<9CjZuV$Bgu$b4(Nm9p-fe8c^2u)0xhUZi@|Qaj5M!zhm$!(_RUSzP2Ai$c%G*3T
z<k4Y|wu|%~f}+lyg4yLE0#vxq?0J^HS1|ho-S5!>!5n<{>*NJtdyaT?Or#urmi|4Y
zMMP#f{w(E$U`~4UgJ4bxdivR~KMLk2L4U@Y5)58EQ29BJ&SM+#sf3RZoOHn>$tT&T
z-#q%=qx&BH>(L(~|7DM^c!)Ade`3Dso3QHq%cDzJgN`w-zl`$~_zC_ka-!O+Sa;`Q
zus*ux(RGgi`3T_08`wh67&iq4bIYTD1b<u5JA&SQ_Uk>t)UKjDz<Tk>_Q>(*kw^b|
zl<)|42#>LXu12e;XZxX(@x&us11g$09n-sIwLC&NPHYaYN1g|NQc8L>tx5(0sv>5h
zkL5Ed`lTsX9&R8OWc_t97@aCUsXjgDQ!bx0pLCzH`jqNZ#HSRWviMZtjVzh`aPEK*
zm02(^jg=9_=}={*BL0R)v-y<Wr$Lt~haWoIV!J?uZkWy@^k+_=rgSuSo|bd_l*gw6
zJ{9ySuTSJtKA#Zf$4eL;q9*%7httIb_H}-r8a4?dD~*3774oSt>h!6YPgiCbMSOw-
zAU=%&#2SLj4XFr}q!lZpW!K0heR|%f+CJ6ssgzHpeX8hFC7;UpRMw}MPk^y|!KZTQ
zj!%eEj}TPPS1@o+SKcRBbT_Rc0|oRz@$`>g%1HBR<q3V$CE4^T?o+x?89wdX5e2IG
zrEyW1Cn0Q8<@9XDP8s+Dsw@Vis!!GYFrsu7p8%tTuVW0?i$2x#32t}Q{m^N*h9AbG
z0Rv>tTENu15yv%XSV~==>iN{hr?x)T_o;zTO?+x9s=Y$lP)|c2#tES(RAZkI&0*`@
zXrEEhW<E9dsg+N!`1BHL#`ruiTB7>`jWc*)wD3ceLKKG^{_YNPmah$jF>3A8=E4R*
zGXTr;s!y-^)XAsLKE3W!JD=V_H`hlIrVVE$?S1Ot)7Zl40D2l#BA)FP#66^rKEVP!
zM>iRkpChizZ~2HmNnL&FhMYO$Z~LKA6o%F~RWDRf?(WmM;wAu)VT<^vR6PIUw4Ofo
z^2zrp@Ts>?@A|aGr>#Eq@u{zmXg>6rPyKxA@6#xsM*H-hPXm1V7^4SK@oAus*e>*;
zA37N!P{<(6=@#<?p9cHnq{W|VjKRSB2AKRGVfHlx7Ra-1O2d2_?$gm8v5`KFz_?8{
zfD?<zIJ7OAb-bM3*gPH>pZGM!r%66dMqhjy=hJwfCSZJii~`C7E@p`7FwrMi2;&v2
z9i_wH`RD3#+Z)OhpQiaV9gVDOO!Y&bh=cpX4S!wUYM){X3LCIE?Oa;^+@~*mTI$m>
zpJw_r%cliCedW_^pXT^9&!_o5;cO9#BOGwd_32AYWmN^{e{-@`g&Rn6V+}a-X5JWG
z=o9dJ7y0xxIyl%w7?j0WR+_QI56#k^_GpDTgIMm<3ZK^cw9cn*Aksdq_Gyhzs~|I#
zjn8hGFP#nTmZ4O^gB5_Wh+6^u>Uy6x__PUf;?uWSZs(&2gn_77@c7t>3ZJWnu0=*=
znb0XS05D;#`khbPFeBJDecJBR4xf(sblj(%KJD`9fKLZ8kN<|R4ZD5XgKUSRd;QRB
zejirKsT#Qt$Ux`Y53$b`pPIus1Q`Qbf=}Q3bl49Ks~}59d;*1i4)Dit`~-BzGR@@^
zKAnVsiDmMGPp5qP$)}%DDsx)dY0=XdlRr#=WBllc5E+##nZIDn<+QVC;m{~xQqCa%
z81wVI)q3PiYm-GjFY5W#C$E@U{AzS{1^IWM{_yFhPq)NR7k&E6r%OKlDgK2$Edn-O
z#-hWl`E(Ux%;^Y{`@!ijR5uWEfGl^-r|Za&-NcCr!q?uwj`yF5m%V>{y6w|{K0Ws7
zj!$<*g^vWihpJA+uFWy-`}8lQeU0(J4}sYq`UK>SKc*T;!R`uMRvb(}!QKKXomA1q
zEI*D~*uzuP9Hgv_+Je3|F?4wtT~YBw<?G611I%^OCn=z`fMNm30Vx3$4X9W^YCu{*
zIRknwAU&X5J>;xGxaUU#N(l%jr<nrE5`>UM@D0fv(ANt?2Bt@_J3_Y9fPmMREuic{
z_?`(qM?eb%gI{w6ls6y>2o_ek11i44$P>`thhiTTl{uh%0Tl=UUqkuD9ii@<orpI7
zHB?;SMYIr_lq0QhKv=WzbSM(g;JqeXJX*9giU(9e6e%B2$$*{@sB}POL`o?^Q+8#7
z`3+uRw*3(;D^gxS&Khw{eL3+jx_~du3WARcdgZQ^OP7s+%z#=4)Fz;KK<NS145*gK
zkP%STfT{&lF`!BTRmNbJHvzW`_kle_j4A=OoDuH2SJSe+7*O?q)?JOls|7<*16{tN
zbnIc?(9>!MR41TD0W}V&uBf&_Kn*d@0o4x(mZ;e0VJO(LxIir%Zk8W!;_=rcpr)u_
z<cH0Cvw&U-=;eTBCyeGnXa)M$oO*~b+ajPzjpHzf#$yyMflpbhfPhf+3VIPqyV*G2
zHlSAn>KahDfL;@|y%|u)fL;%%T|n(cN{1l)F!^h6sQ-UM@b!)xNa++%=YYD1Jo&$i
z?roWoYn<^`5IWUn9h2I<Z2avYgc|OXSMDCrJ0e@(fO-VfGoW_^>Jt#WZhHmPJ0Kjy
z14MD{Z3!=;Eh;L2-FUmd3@fHyC5(QeAa311pl@rWzZcNPM#cb){4C?)26IqA9|ZJ9
zlHN?xV7&YX<OJjf^kG0B1@uEervmyoprHXR3ut*j!vY!}(A0pYiE2j#G+8hs0~!T!
z4d{~~d=;4#gifYo(3c?8d5#TeoJgTUCTupIWKEk8(8PeSJaIM$i`*MULgN`=PfZcE
z0ek}p$<whA0-B2f4`>F)S;QFnEFeU`Dzh~Dc|czTG&7)Ckk!q`C!3AgK^RIKTl$;;
z-aQ6vPT<}MW?m2)+AR)fNkH=jzaXHm0$K>M@uQ2d00UZ4H|{N}0kjGj%b_uCUo`M)
z3XqvCt<9wY8B3zqhf6C0`X->A0qqKCWk9Pio)}C_Xh3TMS_}C^wFk_hH%x3?Lw`1b
zS5snaXgR-LbZP_Ss(AQ?zA2#10c{Itdl2H%YzctUmhoLcTLaoVUxqfXRfifM*Z#k?
z(vE-t#|mQ}6m%Y%y94?&N9z874g|DERJ#{qJk9v*iMbE+=!e;G9SrDjKu1J|Ls&bh
znQ@YG6jcRuJfIT+0VU>GKycaxD$eT%jf-Cy+MC7(MLrqO(y<1vQ<;s^0sV*(-XDDu
z&`$yV9MG+R{t4)pfX)PT1#2*%vjLq8==XsBz}V(D&Ij~sK(`l!NSjr=$QJ_o4Lw~F
z-Km?$mm8oL1A>phpQ2%S0OdR){}s@sfG$J8t{C!M<EdFSoUE@xJVdq|0bR$=*2vgX
z!B}$Hgwy5Y5;9=oZsP8r8M!aYw*$I^B@ob~fbIr#FQ5ll-Rq-p!M=}$c{KKKKnP1z
z`hX1O27tlm<%%Of-hTl-hNzzm<N9G79``We#av1b2QYz|!YbYswF7G2EBtzbX21)`
z4=5u^6_XSMlnf|Gl5!?VN``woE?qFPph`0I^HP(fCGqHwov0JO#z&GsI;Bh^L)Ijv
z3MMmh&N8zk!*?E3k}VnfnPyJ{*2#dU6;i;!g5tR(<w9bTN+c<FlJX>J;&Hi9lJX{r
zl9WG51(L*~!qLN``2<r~k#PzzJCOp97yviH$*W+J{+M3_!8-~k@#aHCQEF)B@dJ%w
zNop}VHPk?2v#ltXOw#kBhVn@&m88;1DkuIelO(uTluZ(RFyU~4$k8u|^mgxt1@Wlb
zRWn{8Nzo*wB|~F?{kJGRNwFjuNivhvD@R&9Nwu=3!BM5^mMAjd0}$^^+3tj*UMWfS
zl2kuQm6KE@NmY|nElG7m{Vyh|x?pN0=}IrNMv`hKX?T9)#d7A_5%SZP)W(1eGJq^v
zszmq<t(&CZKMMWO8ziYAhBQg7lhi0ljYT~#C8>#EnkK0kW&~#B`{T`%gx4^{kpYnA
zhpEQ5_oSCGEJ?a_*l3v~1pAm=F1?lbckaS^2!+;0)PP&GOH$h;y_%%glJt6#Hhvt1
z!+xvW>Fp*Oc;^ScYx^X1NQNH^FawK@GjIyuF-e`0bQ#@AQs*SSm85Tyv@%IulJs_x
zCMRi1lDa0TTarG8U?i!#xL1!P^-R(`$T>L*MLN7D2QG>B5<k6{q~1w-HyNUN^hr{`
zB*6*-d|!x7$#!6FFRIf&Nub~dJZt&;f*C02AVEJ6ba0Y}2<AgU(Z`PjgLr(yF!D(n
zlccdp8X*!#C24e$MkYg}+46e)n>CpM>bvm1^6+xXClL56p}uaM$T?Ba@kw%rMsZC@
zhUalurzxAFlait7b!=glsY#lar1?o&kfiBJ`ZP&1MJZG=BT1hn5i}}%e*-KVQ1KDC
zs^op+izKxlW;X0A&q~tlB+WrpN%}HL^DwqSZ15Lm@j6D=F2+YMoAA4NYQc-zzDm;9
zNm`twg-Ke3MV%$|76))BHi{)lTAHL4sLBlO?v^D(->81`YvA2rIb`ojh=7L(p+IO^
zm88{4I-R5+le8vDYm>AsN!ydOE=i9ng&p6Vr1eSKfK33M-4{aPZNzHrX!aZ<@0glt
zljs`2*|sEUEBGXo+XkSGLck52+<g??k))kT+MA?(BIm9o-8vWDjU_fLx;53@lMG?C
zZniK>|10fJ(t#u$O44BzsTX3uA54ahF!*A^Svm3p((TBzkvuAx?*%=Uq~n4)A?Qg#
z(efVzb4t)<KV<m{wF&-0l730j8Fc4a&a+86CwP3f&eBYPWx)yb;ne7_VxxHZa_!%+
z7_svt>0*-p!U{@;@l5|rhPK}@0)IJ6d}M~QdrIhW562%sF8`gRt4S&&aaoD4CFwf$
z+ax8EbR$VOF|bMc591*2csEJ+lJpM*8+*m#dUvqQZyMM?VVMsT{reD}vc|tjdVo6~
z3PWo>#G*?{d;FJi;oS_N5B+yB%i|<H5mnhqN?`nv^Spu&hYG#So<+?CMbZ}x5KmqR
zZ4yXOQ7=h8=Jb6NzLU^tFT5C&B$g%4D=|r|NUTbnDseW6HHmeJGf9lWj7SVu#1x5f
zKneHHPL<??Bc-ur<;)Uik$Cx)@aR0N#I4$A!OQL7Sy4bvWtaFliE~MuL*njM^x9-2
zr^J9^2ZNK%+!EuZG>^o18p6*AQL{g-E3?G;BrYs*5sBCIlk-blP~t+UA;l;l@l!kG
z9b=@nt&Hb#8<p$IMI|mKaY>1vm$<mZZ|#V|p5$hMcnOJdy<NoY)Y|OP(<mizX^C-q
z2>in<3uTz@1A_PkiOWgcMB=6rmzTJL#1+vyiK7yyi7uy0923mmJ&GYQPNiXf5Gw<m
zYQ_m{T;dzaP(h6=L*n#0a+NtoWr?duTtniT5}&?qR+YH_VzZjWaQYbP#a@)Sy2O(Y
znG4&RN0f>PAW}=>+7dUAxS_<Sc17z*Tu<Wqg0Cwm^yCOU2X8N!eog*GZ6q;#&ETcj
zSmIsZgidEbEU!IGZzgebiCatDM&g$wei;)XTHXRZ8kXKtVmJlEA{xM|i0O%7LwLh{
zMPj@`0bQ`I#IH)+N#brJqOVE(y2Nit{3eQYuGmiE_7dN%VR*g)GbfnucEGHO_~U@0
z4UP6CUaV$mC1M+O#`sGNb6*&C;^YVhU0qS9#6uMxrf_$O-;ubB%x}xwL*kwiKa%)A
ziF--hTjKQ+Z;<$1iTg<Wg~T%@?kjOWiN|8rFoqJpC-E@RqX81XFY#cBhe(Wxp7K+4
zpu~eD1}57F5+ioTLr(%$9wr5Pk`E>R7!8mZ-y<JMJR-A+L;vUV7=L6li)@d<w`I7f
z6PZT{W~88_1RX8tClZel4DtZ)YdktA@pKH1#MZ*B6ET|-Pmy?%#6YYaQy@KMWoE>4
zgh$3yiKpT28)KDYGN|rKGoID+xx}AIe0fC-ewqNz#kT;CU}i}?TjHe>FOztV$T<%p
zC-Gd&I41GC=*O*108e3GS|IUP7<P%5NW4(uMG}84y7u&p8()iW6_?Rp_{-qvu+O6?
zo)<WATP`to&$3eDRig405<@%pjl}p&xY}P{jpZisI`I==<*Hvd)?)EiF^6rfGwR<=
zWp0{(7B#+=cq1fP;`0)3l6bSkM<hNf@fL}<O1uY48^tBwCh<-PC#Gq>xn1H<)+!%H
z4MZc_fvq6bgk4t2PUddN{C7s56!VKt=E4!?K8g2Bd`RNM62G`Cc0giSwjYE{3anQ|
z4n>^D@rz76;CdgW0;95gFYz&nf0XzqiH}Q+m`6Wgu}FMEVgzHo*~d7EwOlKFB|D9s
zXS}hbczWMVAugyR{M3Gy_!s2F(5*FLYIQte!1?7Y`rA7L+MX2!lwT#jAo1T4UzPYb
ziGLTva!KMpB)%x|pA!Ft$(?VODV&b85~%*he`UbotINN!m934-XgqeXx#9B*Pr&b<
z7}q4eF7ZDS-^Pvsp_TX+#I>M-r41YMGdIkZf0+Lb4&#&F!CI5}zQq5EJ5F3K--B#V
zHh`rA2&}bjGrHKu1BoBv7MYB1G8upO&8U{ycr5V~jGN5W<#3};VC$ASyUdovw!{u3
z6WhDYip-v<)|WWIN}L`YyVKNnM*&oulvt7(D*E%sbeQ!5fn1eYlR1;jnPr9)=`zo1
zZboE&a5&cffSe+8%{Aun^9E=ZnX}5AD)YVN(fL61^<#jg#Y+p^Te_T+bI6=i<}xyu
zmH9cDbIDv#=0Y;(7EL9YS>`-4;{f8v2^o2121OSt*ctg`&M!0cpLeBrpY3u1k$<%k
zKW!L=WiBFf&jVCaW@wCx$qWO(5;DIhqBs>7Ie~Zsv^^+xoQo3B9iNxEl+3sK*DH-4
z{S|^eBJl;8%gG#**^s%s%oSvg%AAJ8J5jtu!Pa+M<%++yF=O40O)qEqwu))W9GAHg
zS}QXQ`_pC4khvn-OzEd9DL^6q_ObNzYb7}<T1Don=xHkhF`(fXJ1(PsHJPiu9X^O_
zVDw~eC)!y{=Grp1l)06R$1CFj*i59?lexakO=NB=GxpL3GB=XBvCMGmZYVQAwowl}
z+3{hH7@+WKzxTPZ`ctz@&sfTZXmezf`DK~^*%-swoZQDezADy2=DRz>r`0Pmx0ZQN
zYL-{UjV}1%gS(C3+X}jBvizE0UKg~!IA3coa|fB1ACTX`Xp8hWW$q~RYJ^rFYXS~;
zLh<y@GQTA=o-%`0N7H&|JeM!MtIXYGc4T&C?k@8?GOt1r?EjcPnJ39SS>|3c_m=rX
znLm>GU77pH{JzWsW$r6;Kg_Aj18{3KM3%ruUw@g;U6;N;6`JS4NKbETzyW#7VHza!
z2Qm+q8AwWiONCMtcnHIG8$(cS1M~J$`D4-Mkur~xd8o|8WF9Uv96IK4`UshUkKHUq
zM)0qNRh7{)e<JfZna9g~^E-2l%wy4*riMx8@VnvT<Af<ska;2|C||WUdD5TXXXIXN
z)@_sy(}gKAPnCI|%=2ZQCi8TeKbQFnaqCY}?c^*oFsD^3!p`$EnTM=55FP%aCeOs;
zl6khwb7TgF?e2KI*3~Gim*>j-``PHIebFy5fHOj00C=xBKZW0h3uIn|%%bM6WL}8-
zW>3dDeNbFpEb|hXSIGPg=4+s_6tW6N<~3K${L5q<8^JlwycIioOvZaAw&+^6u~KHZ
z<`sG%t&w@H%s<KeGe%P8^)m00dAH0PWbS$;WwXp%Wd2s>jWXkV2cZ)XmSq$8+0mW@
z<*jIpXwMEbAZB!bY;2QRw_-RG-!3y~qcmfu%)p>Pj}8u%_Q<>!3tZ-7GVhalzs!ea
zJ|Z*x^bcSwlgxv-*DT|}AQ@hqhp?JXXCOu-d}NM7#s=4EaLW9#zBvqWfn`1+^A9M9
zO=d(CmI)^@>E#SuyBepIN=XCo$Z0H6nIV>Yj>-*|8?g%dFEXFO%98nx%x57~GXEv>
zB}jtIzlvV`A@c>9f5X1<w~X+_FtF@cLdNX;jve6VSoIsxi!%R-ji`+=d4!DUrI?h<
zGGCGTDrERJ;YmFsciP{Wg;vJXxCYlmwa9i|<{QuWn}WH8r79RG<dNYn_EMQ2%lrgA
zmHA(pAIkhlW<ZWSKp$(Fh<OUV0se)@(|<DKGz4MXVP1&ncnMLDC9^G<CI@Q67Z_j~
z%5}42!tiAFv1KV-N#Q`|B=%T^3n(lpEGwK<;Z%hcg;j+!DV$kht(>7L98ow$VO<Gd
zWpSOqrR>RO!X9ti_9)bPmHLLpx45z>oWFGX=7lw~DV$y5JWBX5%Aqjux^pR<Tj87v
zKd11Q)fAYrKv8q4PnK)>;$Qt8O)YG^+BBY5VNw_|1X*Ex_`}N>Hk0`jKGP!9Hx^X5
zkiw-EE+eWftZ*^G;HM%A1MRb@!Z<I3FJ5tlODGI4-I5BIQuwQqbzye(yuvL<WmM{8
zR?cMnydqR~l~p*ZaGJs|C|pkA@(NG*B~}613RJ_F1<-Lje`e$pwstXv;|ixMY$$AE
z+%l&jS`FUWfG`hBNOiWEp>UONl-0MQjoO)&!J`s|TPa*s;c5!kSGa+~FDhJJ;ku&D
z0OYBmFbuqFDGWf=nhN76x$GDjrWCam?!2sC9fe<+8rrti6ZsqGH?g-j6ns;Kn<?B#
z;l>I#!Faj`EH1G6o<AJzCVV=YEBune?P`Po?{I#3Sz*BYhj{x6zn0U4jmj$uw^q29
z!o3x4g9eCddkFffpxu#E;nz`#!gGZ8S$l=wUX%%Z2Zi5I_)U?mv!ERXMN>N|d|#kc
zy(Ln*JWGFD;jYj4Zh}F!cQE)R+s&(98+7&}xu?QVZo?J&U4{E7JV@aW6z;2VKZV~D
zMfzh%Cq!||_G|VuXij4Hr2z`Rukc?5s}5B7wvnx-C4omXa1B;?h{7K#jF{TL9<Q_O
zVyxi9jE@xVRMtQUjE_Zy@V*?b@Cb#+syt5RkqVE3<g2WzJX+yT6h5l(_X>|e28EX?
zyj<aN5KG9F!k<A@6rQN?G*Q(gg(su^3OAo*!t)EEVPJAIaF_|?`Kb!m9vX%9@^q1N
zYVM3rA*HKg@ZJ7g;V%@PukZqeXDU2P;kj5E3eQ#;N09igpQA7i3uZ**g(+!U(`0}&
z!W!_wlIT1P(Ig|^@0q_+c%j0J6<(q+Kr9h4c9FtgW8xacd&N@V%W!{2W@t@|tdHTK
zVX49>JN&Y=Lg8-|-lXtmg;y%PO5qKnZ8+#(t?>SXv{vCY3K!iH+dM6dY^&Zh*5ThX
z#(GFgQv;tBP{V$!FtD&T3VQaWx<%ow3hz~TAF5J#o5H&k-uNJ8J663B-=XkMg@0LV
zAUrfo9TJs7tnwed*lvaQC=5S{0VHGPA_nn(g%2ovP~k%g7a3vPUlyIuwPCb;SYar~
z;PZ7vVI1ZnCLI<a&`^&ld|WjCk-{ewKB@4Z5DC<&@G0C8TZh7@75-7-pF}p8Rl_l`
z-ZEqBXQ8t9XN7An3m>Lu6+Wl%1%-dZhiZem=dsZhk6$cq{Hk!%czjPj)6EnAU14Af
zUBpD|#({Pjf1s)D!ae`~ug3a=`Xz-gLk<<bgB=W0j7?ABTMA!QxK1hKy23XUz9uf5
z$--J2h7eCpAYl3L>E=J!az}*mVvf!X!yn&O_#Rf1!vCU!a%jnOyKKD38uJ0#nHqm6
z`f{R$xoad@-HqP;GX7KevBFOjPAHsI_;54XQrK45!N!6;aA@>V;W$2vfbiyF+dO6X
z*u)g^?en3GH>h97%lK3Wl7^&)J2p_TWR>BNzGy%eO=Vr>7Am(?Iihlk%H>tApmHXa
zGpk%k<-#gwQ8}y1&#9bCWj~!#MI|{@o|%A8I%iiIUm5FV6EvsFF!JnGFti!St#Tff
z^QoL)<-986#TD8WR#_PrB|(vA&>^GK@YDh-7gQOJDmWp6+Gl)HI(j1t6;KhCi>h2&
z<uWQ4Q~B7{DBkLetDO5lZTMM~P`RYa(BM6<aw(M$bd^VaAL=||EZXRCIQwN)enB)9
z#`$0MH_E9D6S%o^4d<L0RXI)NIx5#yIi|9qa%GjPsBEenN2%;ax+s`3A{|OLxE^Py
zTv4P~QaSZt6z>Me14xRhDpymvrpmQceo^J>D#OdZ1{z$-Km@m^6uK$8DvdvH)<$10
z7!$uVwkt-v4q57{TwmO!smcvhhKW%l@h^JRP~{U<%<@5|#$awnA<|7$21TcusoY%U
zmsD<gGX*NRmsJLWYm>F|Q$Mv<qK2+2cT@Qlm0PRaM&-6Dzo~LZm0wl)HI>_|c-dy0
z!@jPDdvc!^ForSPsSIT`m^VZXmv-n6-FU7q!nM;$<<2T!IT(Fg<-5ZwB49U;rQSm2
z<ukeniaf9jy_#CFyUOpVJW%C9qLLme_f@%{$~{%?rE+hT--Vb>Gx|WTmc`(txjGSh
z!AwE0za6pgM*UTOPvrqBAH7xwzU|q)`1>kvtZf!Nkx{0aHhq}+fy#qb9;Whem4~3?
zDt{zy1dTV&^gp;6g`#XvG2>&EhpOE8X1(wHdQ(eQ93k?c{?T{}2!0gW6E~||th2aE
z)lXC&qw-g`6kJyYeDQddC#ZZ=<y$IGRC$uht5sej3QmU1t2_(irt(ygGEL=ARh}XE
z>5vdHVxNhBamPpb(?3`F3kXl%_=!_84y3v)$UIx+Ik=<B3ss)0@|O_f2jM#*u6ZiY
zS9t+OJA3%`ht*NGXABShqf29pRQ_7!6{6<FXhUOTsmjY#-fu^jVAwf~Fak9A<&eV)
zW`W)YbabfU8<kh8e7Uf^3T^u)e3@_lZ**woaJ1K=ELM%m>r`H^@&=W^Re3Aw7q{4`
z@+QGht@yZ)jLm}IB504vAp-n1mA9+BN9Db^<1llF_-Pkfo-=)?pl96phV#a5)O_Bk
z|DUlBncuC97UKA|Ux9FcIH>X=mH$%tlFElg@$a$5RXzgxQ}ifSV(TpM-KN~~ajXKB
zPpkYRc8Q2_Qsp01KBe+gtLD+uqgywaO-i;ab}Tx#mH88PHkJQS`Dc}XQ5kwvEF4&a
zoKg9#%3#h3dR|cc`>S9s2>P3#dH&4QEvtD^<v%e^uVsLrEyckY-O?|McK)sMRl!`r
z&iO}7y%BBlY5FyhavckKx%p<^bQs0mz%*qx?7PxGD&JN)L*t4X-@zhMIh)4WHNL0v
zeU)96J(d4e`2otRY++9mRXtYuiOP>u{tp6wz?`@;_2@o>OUST8p0zy+r!XkHY?0Fu
zbos5?#}*i?QVgI|`q(ZovzC!r<D|-x7H<2x#<Iq(ubA@-8mh*M#!$QUDQSShFhkSW
z5?bGdsTmQCQ#1wx8-q+5Bjg88y`fLeqA`HrvTC6QAXQ@kYoOX38t2rwgvKQ`eoo_D
z8W+;IFn-lIkH)NVK8^EgOd6+q8P289R8<~jHl18?mTkbIHFblMU*iH=sFOKbMFCo7
zL5*>~Fd~A0;9OK=*tQkdxR}O>TY(_0Ro=>sLjl|uu_TV{rsp*-rE!|ZF^x;3c^a43
zxPr!IHGV-0Uy{pd3}-PN5YVXx;@O=TVO;Kz0;47v7ezIOa}7Le2Idc=U>F*k8pkyT
zh%`=7kIs(%^`D9G;^`VgFHuC5D`{L=<Bl44(zuGoRW*KD;}#lM)A&V=>ucNqL#lBN
zjq7MU(34=hQd8qv8rRl%eBSu=(lQ`2mOYe!!7^OQR9EAA8b4i+2ogQ{l-y9`MjAK8
zK>ePzF@|nH?OxxSP+5$hZZ^?)ZOL%mHA4}NpL(gkr16Y<5_G~B7e-rZ+)CrN8o#RX
zD;iJfthCm+4Myf%6jo|5^S~QIsD=LAcnw3nsK)CU95gI<T52v6=N*Vc-CpAk8o#0O
zn;JuTK0}G;+ip&1Vmv-!!k4GB#&2o-KKi9`7meT6xVOgdYTQ-hZW{O0xEKDNZ2%{;
zJ49=R@s6N9Fg|J7l#7P<AdFywlVu?H;wZn5#(gz@Pvf17)A~WcQq2CyzZxzB(KmC*
zhYv<)De~9v83Qy9BN`u)2Wk9)#=|upq48jihiE)h<6Y&mz+VPOV3kf}e5mn98h@<u
z)Q0Joj%DD&SPg^l&o^Pgi(pJ6H6Eq$7>&nj3_F?88pERa6OFHb8@n@H+PWv>TpM{@
zjx-oB<CAKf#yC+Oc*~rq@g$AUr1IHRo{Uk|`1MTOE)!4Hcp91%;lUA}uJNZDZ`65{
z&NDRr3=*hw1)V?F_zQFm%Ut7`8qd;rlg67ho-Gz5n)kKFa|AzE<1aOyC-?;#!;0_q
z>(TidpKMog&pG)ktVBqWZQvAj5pp(CzR#WZTijTz@e=gnS#95FyiDWe8rLirUxCR@
z*F!Mp4-ACVT!~?6ZLHFGH6#aur11ugztwmhrfik5Ui_N1M!aXqcA&dbGjL^k97B<f
zB188=<`#{&VjMI+i`!|uP2&@2p2piX-l6gLq79#4jqb!84ajm>{JTrg-Gc7Xc&}jg
z3A$fUjKBen4?g1$38weo@)3=XVol{RQ_O5|UCDY$KBn<;jp4KfgH_mHfuigW8vi7U
zoYMHT#y@I|(4Pnf`d+1Y*XnV^k@;EtidFv$reFg~$>&7MC5<m5Gek?{3mX3hY1bI`
z&oHj&+`#-@Y!^>;XctBLpMs998UG7gS<^U7hOUTuu4{Zl<G(e&s`26+;f@4}y@pNT
zJ!4e5d{g6F8vmp5ZH+(t*MO}u4Cl%mGb}a`b`vPjcW~=5a-9d#eU1Oc4yiNg{6OP}
z8mH=<P3K3rF9cX)N$1BJKM^-|HBJZyx3e_v7Y}W3aM>C=kiF)5>I4H(*FBAWjRQ<^
z4x`ah^EcgWkTBL&mSvq4ol|s%M}Vq}hl0)#oi)K%8mvRn*XwZ==zC}Ohyn0Clg^oS
zUh>fB^rM+YXPjST)$uN5;)rTn6(hSSg}Xl|m>fFi6bvi}fLDz4T;ku{I_J?DMu4zV
zo7fc^!|=YP1<j{(e!&#bxrELobuOrLA)O2BTtsI?MK7jvQJr!4l9o9<>zP!tUB&l}
zD<h5KI^Q{Lg4x(le_rQOqLSD&<6Z*;tN7$s;oZyVTvnvNASfU~%IUnSWIHfXozp~O
z2c2U&8-i~vsHt-movZ2`7yqUUnxS(=odH8Jb62#I&d@hj*15xNDtsyS`K4Gj^iE_0
zxLtLfYY4uM&MT$R=Mh&;oone_TjzoM;y5?K=?P-|)z!J4&Ts;SFPQnr2tG9%h=L7u
zZlp7CGw?Yd0v%5@n~3zLIyVzcbDdl3+(ze@bbeXq7CN`o`4yd4tPP`cwnDFa#-I;J
zAV}OAn%Lvthr-!blx?T;t2)1?bDiGiN8RPuMdA}qN2IO(<ulsr+`Lnb@2uz>I=`uN
zN1Z$A{GrYt>D*c8w{(72=RP`j(fMti-_f~;DBe}j?mC~@8|$X?tUaMc)4%IuFlpN}
zCR0yH@5qc^I>Vq2YSjl*qP=y7KxT?%L$<yc6H&ZyEu$auVCrib@98{1=l6A<I@mm1
zvR%`{>0lo3G6(7WfzE?<9-{N1-BFmkz{~#fbQ!eP?W`Z`JQPzSY8$5WaO}o9f2Q*Y
zok!|CO6So!Hz^&*kpcWBHq0|V(Rqx{6Lp@1(bjpK&J%RTui;@I`qCoZnqop%iGSa3
z6DCg9p&8(5I#0&{PB!2c3f=5f(a74-`k(3y$Cg~{>e^eQ=mPl9b^b!<<(L<pXJS}%
zo~QGCooDMj2MbW=lZV2|ovSk(FtO;g8lhhdkU|GNjxEsnE1kdAd9lt5bq0D8TE0jy
zc!!5>1ayhcOLbm`#k(UsfkFy`r#HA0hESiqB#hzv4I~iTNdEN6pP5sO##^j5R_Xk6
zw{$RT#3-#5be+!Yb>5&ef;4q~C;eNU{h49#4p8_4Y}R=T7E2^tvs;m0=j%G((0QBA
z+jTyo^HEXB4ng<pyc69K{BA+_>bwWDnI|3FCTuhIL2mPf#xorg;RE`B&Id7-kb%el
z*DxQ}**sGZaIfEs;y<CmIv>;dIGTqM6N#s=5;3I3LzsP3g7D~tBgSc+f7HXLHgIMZ
zA2py>`bA_uuk){hIivGgozG!Exntmc0~)rRYWR_LLFYeoz8K16*vD6T8^2>0^1?5&
zKXv{~=f8Ens`DkCFJqZE%RoqIShFB5gStI-MQ2dhcXiopT+<m=`t^Fo!2dl<zNzyq
zY@QL$65)SzzO8d0>PNMAbbg|9Lg%|W-_!X%WFtM>1Dzl0{4YvXisPLVc*2j6VT|z~
zc8T@|cc@YDAF}dQdyFo057)JYrJ6-{MV+>wj-c?C8vB;)VUwR7^~Ih5$vMGFQfDc`
za)gx#N5pKZg6e{55k?HbX1|--eghxTaJxu}aHdEo5?Fm$EU<Xb8sXFk7l?2{Q6yW0
zpNnuV!Do+f4#D`p8#yDKeycW^+#-bp%@g6g5e9xc0NbH?IG@jCkq#zbgn<{7Ur;~>
z6^d}-2$zlU3lT07;i3_KUgSiVi$%D2giByN8yR_5MoUH*XZk?KXgn+oiiZrPA`An_
z(h)Ay%P6|jC==n2O8wtHxm<*!&*~{3;R=F()FKS#@|7LVbu7Y0gv|)YBMe*Ox6q3S
zXGFN6$XPMMl_Fd<!qvpTl?AO5;msHR|NQ;+)l4r&xO#-^M7VB*Yecwaglk2(w#Zrb
z6CKEVIL!e_4loiCHL_05a7gP#xW35Hzn_UsyFrBS+7jMrE4?2!tWks;N4QCZn?|@<
zgxf~=)d)9_@JkVXCBm&E{Bnd_L>PWLEd|B<UXZIA{>9ZQ!a&mn(?<LR20uYx1m?8}
zzaHT?BK&3~w0CM3VVo<q$FN^Bw|x-pfHA*ocJG!Bg;hsP@nsV`MyCh^2oWm8&XI5f
z!G+JXE|{_icNOh_M^Lo6TZFq~pf1I5QVCVhYjcbq5$+k`UJ>pc;ddkaUW5lkxKD)p
zMz}u`hlDWE*s?NjGy6pt+ZQ%ZY__E?)ObI_10y^r!ayFVxY}5lt3J|^AKn(oGbF+v
zM!0<ncSzxnBK&cLe~a+%5gr=hVG&*s;jbb*98w+ONfDkbnm01SW5wi-690}C^pgmW
ziG*LZ(AfWWF8rn*C(_3YIw8UnBMfkOXyFFjiXuSOln751Kg|<#nxJ3cD<Hz3MtFw!
z7whFS!Sp$6;tTZiNN5OzL!6lro)zKQ;wOyNT*%L~=p1}R#7qQe*cCUwM5kb}^Fk=h
z^PkpSNnRM?MG@W~;R6x=I>L)1ye`7)BfLapSn;g3r4e5Cj9-qH90@D=Mx?Ba@G4Z&
zIrHiWW8&68ias~S=a%t+TN`0e<ixc>WZo9xZw0e4!kf@Sh)0CsE3q}gPZ4Ezd&Z<C
zGBi2gVT;%m1+zT@wM@8q?u_v62=9q-_N?(;SgJRoU~sU$7ah-Rz<~m$LHi)aZ-&M~
z$bT@x-$(eED0?WvhXr#)(4!H)c{MuR40~~0r2G=$GuV+Ld@{m6MEI0Q{23c;edBb5
ze~j=?*qu(sfcg$=s4sj8?t4YM$mzo~5Fq1hgwKimzeZpQ5H=MTZ06r;8Lr<8BBjKh
z@LqpJ_#zf^3fD;CKO_8Cg!L4Tr0^w7BDR+ZKZ)>_2>%`7J6Nrv;8ipgd*h_A&TIc;
z>N}vMD88@RCG>Rep3oOb26C9)nVnf+mtEL^L_q`<hb$n9D1t~5M2Uh3W-(zRNe&8v
zC?FCIBtZ-yq9{S4AVEaF+i!pSKi@fh-nsSa)vH&pLZ=E9(Bqfr9~E#^z`D);QxN&b
zIckaUpF$5+_wQU4a?(#%z<J@EserQr&QaB4X@9X^w!{cHH=BzwFG$p|jZyCIb%{|D
zEUVy(0IK@80{#(vm0i1Tj342jI3BoG0smFN^$IAXAYB3XwLaG{{ZhpQC&i^H;2s?%
z6XdRbl~zvieX{5q-vf$*fP#>MumV;1mcq%IzJR7+(h6NyU?|{3!G*sCOvS(FzOcq`
zLXHAg#5Q*E_3#QRxLQ5Mzrzs)o`UKMYAAq$iXwKSf*TZ65?oaQk6)>*po#)+40x%D
zf6_NM1FTjvt(pkzvkmT;eUpNl6@R85XU}q7^DPRv7HMaPw3-TPDacTesi3yV*Hchm
zK^+BLt6o<q!It;qJTik@%`{LDRs4H*$sIhsx^Hky5@sogEB;H|!;Af=_k=K$LbHW7
z6xv8=W1%@hDV(dIiQs92{C36rNK*y3DOlIa4>nU!prB9$iWD?wE((ez`2LVsZjD$A
z!EF?@RWLmoZ>b>XooFist!dKv=z&NUDc?8-CDJ&rj8m-JDgLdhy@J~nbWm`IBu^>m
zsGyUAyA<55;7&3x#@a8AbG8h3CLey$UsKar!95DNqISxa=%|Zjcm(sN`Dy)c@tx33
zL3ag*75u88hk~98<|vq}pqGMs6+EfnDFwYHqhUh(uq6n%Pr(2Iz3+(kQ*gh62Nd*I
zaA>9apaQ*%PChpZ=1Ix~4~ZnRdsxB1Qv8U3K|%)$eN@4a(%8oY3>7-<QkmfbMkpA`
z@n1oi;qfOFj1e$O!Dt0};TW5G-HIM}$mcvgp8mrny<-)OQ}C>UX$r=RhRH%FD43}5
z{Z8RVl#|%N6#vE9o*Uy?8(gwIMP&GK;28y6i#=6A$$Gu%3Z7H&hJrU0JTEdYDR^1H
z3kqIj^P3(G=Oj6a;uT@Os$d4a`b(5kO*nJ)H3hFL;1LoW^LaL<)ui0kA=+Ca`Hq5j
z70gudwgS$L=WHTQle_CslAGDSr{H}BvlQ@`2Y-C<qv*b(*lhOh&oXzXWlfmm%~SA!
zg4GJvD3~wW=;x&Z76@G^bdiF^EG9>}AN_jg{6W%X3YIHaAp#!>{ZQ!Ozx`*Vm4XRY
zl>njtt&V-7V6B3$=|BaavRw)POQGw8ZdR~f!L~ASUK<pA&i<(23*lTCnZHTF<xa&D
zHWplc$rsq7U@N0I_#Dri^;eng91yDVr28@@l(~PUVCgyE9$q_WzhtqK1Db-}f)6M-
zs9=v^%6zL}ui$;9obMFu7yP}@A4>T@D)>oobg=(=!ar-=b6|MAw9#Xthe~CB5ulb$
z`%S?S1vdq7a{#}yIyf3D_(#D}1;-Sem%d3Q#}%AV@Ta7@?xx*jq@7f7TEQ6wQ`YfK
z1YFm{LvqiGz|l?7zZ9Gk%&i`l?oX?=(_aLALBZb&E(-sWP-^~WcG_ij#;yLI-kcI}
zRl&astN`o)t||CW#MA(;vr`28(YrzbY5aP*FkW7Q>4M7&C9|A>Bj09n-qDV0nVh$;
z1i*O?fq*|F^sbyVO;YIr7y+08@MIP~;PKZ_$yqJb?*tGDz!NbyfM5XkrTd=(LIKn|
zRuB$glB^|%2;2}rr2r}l=3kgHD>Ewxu;H9iC4i~{@M{&Hle^c*susYF0hDX(f3D|R
z;F9@2w**i<fZ_m}2T(&aWCjompe8etVC?|v22f9Moq+!jh#OzflKKHeg~{iT1_6}3
zXJrUy#SDM;T|9s+3FZZm5YSL)GJxy=xMd~#@?E>5CwU4?0F4943E<6r`Fv_^5<o6F
zGxI<DGDdoFXKcatwEO^?2GA^kf&dBwC<@?_x<$t9Xk>d@#@;wred38k$LC^mUX0%w
zK#Krw51@l&*D`=s0%+2NETwe-Z31W;;AA<yo$xu^=eB@9+b8#{a_s})d_NvhH0iH0
zoW9Ooj_(MdV*nqf(iXhscj`_7+!?@K0o)z%XP$Hx4g3_-?(Z`6%(n7rT>|LJf@pY4
zL$?6B6RUVjMUMb_2Jj!7PyoFGxHo`V0n84dcL03?cs_s^0_e+HX1M|wL_Y^`zbNM<
zw+Bk?e>i~tbRF$~KRO_Q184n%6}TGiA=br@@q14D&w&F2Xb_5V8T;S>9u45h0G<k9
z2rDRn5dn-8RYQdiXPc}L8x{Z;wruX7_Q!E=<)FahrFlIOz^DL5vrE>G{rYd2>ZhVD
zE|nP*0KdsJt`J-Ari~TJi9*K-9Us7i060&QbLsh9!ISGJm1=uhz~lg?2zW;5RH4rb
zohEd;(C375Vg`%D>%{<O2<IiCFAF9A6#=gb<u>fE1@L+RZ%A-v0B_UtrIK$2z!`lD
z=cT<9z`Fsw7r^@g;OQ7A2l9i%g`c8#e-dXa;zkW@QF8*A8^ECeehFY+03QUfC4j8~
z%olA-16UTo0>KLdSQG%~74s0E4V7{ili8zSiBL{6ULL@T06r1PHoNo>16V~Iz()bB
z41kN&J{_6H>EFFq##%ob<5_RK>8xg#pC4btTKmecN?vOv`KLlZ6S_|5dUkLDl=(b>
zje@@@<!lnLIe-^8`g*oWa7O?;1#A!C%K*L#_@9vn&(Gu+gRcYd4`CPD{r9|G0qhRo
zr&4Wu0{Btzw*l-8a4iqM3t)c$-v|8PntXcX6dj(*LHt7i+;HRIuQ6gS?B(qA>2~~p
zq&*nG&m8EE`-QqtFMH<=X@>)xmXDJGoC@GKkvU$P;}PBk*x7fK|095-bbi(JV;qO~
z#RxwCynq@`h~%H8@_geX^Rxud2|W|QSpjdpQq2D^e+6(pfD6JoG}2$2Px-$CxG0=U
zLN5!wB9yWJ2)HWrU!m6mSl7q@wpK<(nu_~W^iz?pqO6K~D(b5!r=q-y8&tVLs8Ccm
zDqIx-;V_}8LRF!u*nS|UGhwrsLC$LbfuA29xz^Gum9$kn@VxJ<po)+RPxxUK?C%l5
zT%y8VXn2|!U!^Gq6%|!*y3SXx`eSb;6_r&~5y@LrR2NWHMKu98s<=r-%WF~2w&EM*
z%_=xEhoFYU7X0beR>3vMHC5D7!F}DMGqaEVlvzhbUDcnN)`c58%icQ;R76$Ws-lI8
z3>BFw8mefd!ffLA+?a~EiYyfg6{`knNlNNjD`cBie&^3t!IRLr;F_PC8mq`r(Nsk<
z6}c*!h#C1Rf2o6;<8kjDzIAe=`-<Ds`JTchhg4pmqEJPV>d#^=w_Ph%G0TkeoQUuK
z@t5#7S3ycKUM*GJrlOtbY^9>LfHo?AKJVXs+6v%4qU}}OuA-O3b`W}}in~<Yp`xP-
zZkXRmnCn}o9jOs-n487J5bsv;$g(&OM(?bG#}o6qM@33-7olB+b`#oNC}nyG=*cEj
zA%nqtRrFTTM@3&1+^~gbn($7_L(ocgn!2COK*bal&#36H;z5;bvi#OHK<IE4BLqAo
z^kJa`X_bIMLI(?Fl1Bv$5&D>lp#p{pJ-geluaSaB3w>P0C>2~)$_GW>1bdXrdP2qA
zWy%;DFxTJ2>EVCNJf&i+2#-@SNx*m&6IAf4`$QFyz40a!<AW~81~yK6TE%1)+*gpB
z&xB5u>9f?Ym#LEE6&25_m?n6-iWdbuM^~^0Rj@X>a-64G5!`y!e@uNz<xIcW%PMFU
zC%3;U@-u|K#@@kZe?wN?u8B8Pypx&r@`}vSZrV&0Z?h+Aa5cO`^QczEeiiRYs--HH
z33#7PNX2Xwb68Rp3sv0zi2tTJPsMx@_&~*v)zhY(_+PtPpkmErf7bCL6^mKG+A$tI
zzeEMM?l0NbVmXVfVuOm$ReY%8BNd;jIR9N>rD$WqHS8B9SjB1;$2irnPa5}#D|vbR
zL<Ki3S*v2{&#@i#%YUX~or?7;I5mrDx!o4m#q(irqlzy$o~ZazRBckRrBwfB)t?i~
zX*^q1Y~v_YDT_NK^S|4wyn?S(e63;^`=E+%O67N|*inj$Dy4B&3>WF_5ze<N_OdDd
z6+Lr2kNcnVywQEk^!YgdwQ;Af?>S1SxTxY1U8LeC6-QYdNq9i$FDecS_*umv6`XRz
zS2=#w<N;5ISxoj~4nZpZ5Siaqa9uX{@Z|BAJn_7*lQwKjtXEpbaTO<2oMr<Mu|HLu
z6hLqMb*3zLZaKwb_K$Ij0y$?@oKx|aiu`r{=il=xE~xlh<SD>)^uvb7PE9W6rbb*0
zMS;s4x;0eLa7D#GDz2*dmt(u;_cdPER9r93>pvA&=J@@kjD|D~C8tmFum*C<YAB~6
zR6E9ji0dmkWnIw_(6H$JLPNvn*L+KOsTwp5x`y2!_<L4!Hu9b+exouqSdybH^n&ON
zQlW;<8t%~$))3K<uc4_1PXjb$h-5_#H)yD(p|%7oX{e^*Mh%rURMEimh`H*M`m1Uj
zNix3gAFqD4{7o8e*1)sQx%me7jl4y0b!xsdRzpKg&HuZ{SW+&csUvEsp}v5+6dM$;
zr-3gTTmCN7Ktoi+kB4KNb<Dl;M!X%()DYA7Yp-csLyjcLqCG1!6B-|+V@VC!8X9V7
zq@l6K^?m+H+2r#Z`_;|Sl3=ceCK`H7h)+G~<?&hiOgfitm8%tNCfeEwEznRXph#$2
z4aEYQ3mtx_%&i()XyAh@ua+8GmEzU{+GyZ@6pXq}<ok7uaaK=z4YzCPpy3V;oiyC3
z;XON}BWwBj=n>E4GEYv<q#y3maJQtYxjey@o;+8#@7!ogLl+H0saB%8mZ;@hfQIfY
zi-w*W?h|G&4fks3qoFU`Kz5AV0QT0vjV!n=$?YdSZb!*gsJytun|Zb0s^3ooH1yZ-
zpoT{^4AC$^!$TSdX&6lB+z@+M!$4_@d@tx5PU8fOM`&So79SEa=0*8oyvmv+_rvE*
zgU8qo$7-kg>pU6!(~ADjui<PJtbGk5#I}(d9@j8R!)Of?G)!c1rbM|-$`cyKXn0b?
zQyRvxY1Jsavqs@q4ZWU9a>f@i!GXUs$7>+{?Lhp2Be6-E{|o79R{g2?v_)x?nM+=*
z-a&<Qs^s;GhF4jrTVl@&ohEcTTaEzopV#n0DSlDFOG01Pz>1&%?Vq9HbvDJ!wAbiW
zF4YX?vJJl>`YVr$@zrLghPO3L*YTW=cQm}qPNc)r@t(%98hbQ+t6`SNFVV16!)(EG
zG|Uw+Pv`>nBMtL4aH|l`xw>j5_(6UlyS9eK8aNl7Yy7!_(wUTOo8|8Uu}s5S4WDXQ
zu3-h6J!M4CY7Hv|P-Yc%9*b_fl=ZO&Zpgf6W0a?i@l)^`4V-84iRQn#bDqg(8rEsp
zuHj1!>osi9uvx<v)}!dzD3r_kcm(|CX9~X1ut@`V;~DyUjGOQ<m#rGMX}Fq9=Q^4p
z+v5E3#6Lb?Y4}<a?xrU->=3+5!%hunR>k-qaDFsxY0@9lDh6Uay0pSZZs=$1)v!;)
zNe!n&{yPnaHT<e!zlQIH^MlX>91R5gr1`%&@P@DFpoX70ULA;X1CvAa^O)E#8hAwS
zOJ`!FziBukN&eLEyM{kB9M^C{L$Fu;D2KJB(PNtbafVO7JZhE`4yka(M;_nMUENon
z)<`)`%Q^h&{)l~6!#NgN!@nB-(r{ihU(#?vz~AIYO@4LcoBq#NV;7m@>`d-tc$tGg
zy)h>K4@cT|@#_<kCFhb;p&Lo(x5{f8{?l-sjZMeo%vhR^bR8YGdk-G+4?N-nGq19`
z|G-=~9xtz>f(}JTK!+<<sX8>Be{*2#(1l~N9afJUg5R#@e<kCbD9&c&3f5@57}u#e
zI{2gKv$|<P9U<NSO~CCF>!!!TI{3oHJv5-BB5lxdhmIRWPh3Zqj!HTzOR$QLn|0ix
zgNysB>Zm5n8-?Cfg1h_gQ`L3U&{0=MJsmZ5a8^|<9krS1&zYPZM}ayzTAa@sbvTP#
z5Fb5SroN5_I%1+Bsv|>3reHp?aHesGk@2Mu`8$xDdmzSR;`zBaq5EIgi*+>Dk<^i`
zqoIyQI`VZim4uCT<OsO3B$J1S=IUsogIhnf`82?j^73?$a(yl>X{Mt<M<L5NE|$GB
zlYgd)bUfQG_Wccsl9`{Bxm8DN9c^f{j+Q!FiDsp$KiqMLPrh~$wAIm0__qn|S~LD_
zqLBRdwC&^Q?K(KkjN4;&)X_-<Mv$Z9F2N7#xLZeOUQ?pIXq%3djvf-#MaQ3~VqJA~
z)BUxXJV=xWBz4y@xSKy+oWBVUD``D-aAFm|kTkd!y;nzX9epHiKOOh8mUZySr)|@$
z`*c*v_g7)?z=a2Na0wy5SFjiN*FnmkaRYQbq~l>719d#6W2lZt*kG8Kjz@Lu%#3de
z`g8pF|Bl-n4bj1!i1>2BGvM}JDKkuRJRjg@S+SZ&Gl%Q`N-M7S9I4}R9iw!N)-hhk
z1RYQ47$d@Cbv!9x<CFe7=2N==Hd?Yb2!rETDNd~LzSu;TPRBDM`7|5JA8Atr^W*$v
z-T&Y8*3W5H!`S0<GN-cQbWGF1RgF*n5a*$0?@dZ3?l1qmju&*?Xy7ITFY0(n$FDR`
z$IEO*Y{@!4)A6c~89L_cSfJxITB759$%U4@p<|}tH-&OrxwmwGRX$hyzAc=0=<r+O
z@A4MFF1bYG6<Z&h*~`DP&k}*zLg(n1tHYTdpQqyk9cT9>IrHa(F^N_qqYHH`(y@wS
zIu?uYavdvlED^kv6?AKi4?@dy?ENP;@T%Y5wuZ7kl-Q4StfYm{#r%Wd+Xcp+NM9{{
z%6y_@jo`iwV%#2?vvJny;9shDK8ml?v7Xv=?9;J9$LBh}(($#9jXLsX1-9tes^beu
z%Z1*X*!|Z=H|yZaQ-W<ej-T<i>-bVf<Y*R8m*6G|JRFdZ*<B~czmZfsb?g$bgCoYe
z7`ypy3DT-Ptd5E?E-L?4IEx;MpKg@?U1{u3I`-?BH_G^)Lm!8`<*^?*bZn1}*&d^#
zc#6aUkvyp5XEvvE@k2U((edtc(Q0?bcrGnwB@gQ$UA{2$h>qWNls8bpz#lq}O2Yqi
z9Had@&an&VIKloU{4+XE3OFtFl#c31dpq5CH8&RK;Z|pL44JC)>w!7VzYm`0n5pA$
zHlds2OS;7_>bRuiA01cOq7G(qLx9UVu5iR2qx?Rq3}**1$;Y3?hE9q7tK%A*-!swn
z*=bzkb6W@hj&of{83Sns(vAPUBa|~x)&SQ&bN<-UpOgvwyCl;r6$7RLOT+>~RiT>U
z@8qK!s4_Zc2<<XDW=j+dR5aiia1HJOf{=lT0grkTaUSUvHo(2#KXh_0=a#Eb%|CpN
z%ZR4ll6Qlotz@9Gf$$pt)wPOnstTR?eHPE%<C9@E!+%%hzKb^-xW&Lz2F4nwZlH#N
z+YNLuP}4vy14#qf25K9qBgtbz>l&zUpn>3eEc=*fxoeqG0~x|m>v`N1H`DM}Le<b>
zd^g-Y+V@plVzY!MgmQ{F`3(&;Gf-flk%7j-&oPi|fX7rF?G`&)Ki<SZo`LZVbMg&r
z)nZNQgc>OZi8~L97aAxs(Aq#71H}fK8~$!KEe-s6S5d<zv0DwaU<Fmk;3qqN)ZPDf
z`Bnz_E1WI!(#Pp-4ctbZuSMG%{uiWn2KF{6I(#|Kr*ZRg8NP{(TNS;-Kt~#5pud4m
z2JSS_%|LepcNw_bz^|SBFM*v6++!eRpo_tM0I~)|vbf5=Ri#*016)YXuS48}g@0S}
z=lZ|Ddl=|t;9dhgrLdjr#dbTny$$p+(9gjA2KpMf&j7!8eA6;Et8(I`lgs_j=T*w(
z2F2X;HJ%sSyEgWqfdP{IaRUz-c-X*W28J3KXy6gy58~|lK5^dW)^3RNXwkuJW(F?z
z_6N78SH*`=riXvW=QYg0a04R@e*qLf0*^HOhmEIZ$6C*h@esX=mC{Cu!qEnvV56EC
z<vvB+lxd8CC+W0c1~)F_-|%s)AOjy6SZQE_fr$p*Fz}{<Nd}&l<j=Fc8JHsYSp&}q
zm@3pa>6vV<h2dnsX$GbX^Em_DFO<86GS(fC_5yDK23|7ovVj@wU-S<RHvHLEeCQpN
z<KKz4m-U<3>jt<JHFpo-lQ3WFKAV>ImVucD<{9|Fz}uxc&NBGb8t)o-&+w<Ra}~_{
z)b@Jx<h3&VO%@!RHrv1)16*@7mpv{LpKv6`?{b_+G~d7iQL@6oLIaBoEH$vq@E2n)
zrjf_v+(LGVfik0FyyjlKhmXE|HCt}@Q=K`<xu90shmw3pIL>G6Rm2818`xrCwShGT
z_ZY!?5%|Qwrvg~0wXE(Q{(eNCv2X5C_+fzuSZ|QnjY2;cx+fOrCUTVj!oViOUvA7f
zt9t9StrELi=r#k}=^_JP8Q5W9r-83oNBiTmPGxc}KPQHL!{RK7^ZyQ?dw0<TRtERY
z<~wP>`Ra@z-W~(rik?c7<9qYs-x=uoUdGcdCcD^g;Cll<82Hh^tu9))_{qQl4lg#U
z+c;?8XSNCxZ<;t{;1>ft_v$4RhuMh?JZ@r?iQfzyF%UBmH}N|Me-3>nf+mg{IA-8)
z8p9!?M(VhMQ>--uCk(W0pUvw}11AM9tC3_-Ym#?{j;fLR%fML!44xB8FlKML^9C-k
z%hX6AH?M0VZ+cGNC3X!1<xG?}afJ=fz;)K3i5J>uUp4TrfomKXJ7hEXAKP$^RAJ-1
z#WhlI)JPGNrkO}LK`^dy9%)&@1RHCln#@bOv(qb>P)r0&s3t5Ewu${UQksc!HIgH9
z@{ZL==_W`Gp{7u(`maXHF+qWhnyE-lKckR|u!$pCd9_VMOl)eGeS?WgCOpXzCMud}
zRWmi9abBWEl37$XQN_efCT=!S)kHNDH%cld%vhEDenE0n7aw$-o4mzDbrX|orrxfZ
zs$t@v4%xL#JXSMBP}4*=0mKA#Ow=_|&qQ9sy!s{@n26=(rSB~lHIZQ=(?s)c%dM=L
zqLC{b=aJssFmHQSUY3c3i91YmG?6rsZKA+Lp^1hj8kuNnV!*;=-G#}<CUQ+QF_B{;
zEjMr8t=T(SoQ26e6Zs~t)l5<5Sj|+o=Gm2NrJ6~qz{=#5TeFKy6q{&of`w{s;#T^>
zL~D9xL9&I3mL^_YnM_-iynSVI?84*&M-pvJ5VSRMn~C{H5>(rcIj%~^YNci@Og3NO
z3p4lIO>{7EuuJxZIY~CHPA2X&(Z@tz6L*=o+e8-=T}^a0@lNyXzO_;*6KA?+-(%wT
zTB$#)C!G%2!)v9wndok!mx+5#JXb5#gNCh2_B8Rus^r{Ssm@!9S(e_c^qQ%4wNi^#
zC0{y{V8Z)M^fU2@i9sgrH}L=qYvLgj{Y@;-%6m|n0X_V5(sy!;Z_BmG&D->CxxTr1
z51SZBS2W4vwYOGku!%=a3^y@?jVF;e!~~oDFjlSvhYF1*@)$KcC$B{!FPWV;wJ3L_
zG*LEkHmA`ho-na%apq)pkT;Yube)NDEcoR3lO~>$DDo-5YrKhx5=A^g<OwF3c$!_H
zREA)RiDyhqHSsKcV&Zud(?kz-PA`@GKlv9}eG*&3DWM!aUS=`(MPD)Ts(?!eGiL~R
z%|wgWqpu6L2FKnqG1Ejl3+*ku&6=Wq3jqu7ns|@njEO%?yl?W)5w@AwZeq5HIVL_e
z@tKLaCKpR$iHW5qK44QZvCzaK6AM^hwNj@t6t0kM7A!bcC3i79+V&`~lNky*1mr9;
z@rm%4n^+;BX0U+QhbBHMm0u}fmC%oct~RlzG`9TF<XRI{m0sIljl0godWqU(g1K)n
zv5}T+EoP3N)7wXrRL;D<5Sg1L$z~H<Ol%b~3h;W&EB?~NS0)ayDqF|DHt~&#Z%ynq
zvBShp6MHyH=j88VNv8)Wuv>x^{)l#u7cw}uMbX-N+CCHCnfTGfPZGOdR1Ll<MS<@H
z{~(l-RK<h@j5=uIXO90SelhVY2Yg9;STds66QcjLotWO;V=hNb_zGJTG3uy^KTVtz
z`C}%I3pgRPB-2wSPMf&Q0i1o%#95QyM)0?ZbG*frTJo2P^Ma|9#$4%<f3YOkI)2GS
ziG?gO&G^T}RTE__q*?fvBaeyeBKcpb{Iu>~iF2rjW~5svYoWY_3YPEEa@PMcWsVH;
z@`YOz(Gt~yW+B%?6N@`@!mx0og_|sx7KT($L@am~EDN>;M>s(XApx$1OKtKgLqHl9
zx~X5my{&vEEL0IrMWHtcCBKq|$`;Ou3?-|U@~a7x?<O}}xWz)Ig_wov5?jkcZ3{I@
zC2I;OsGX`~aT^CjEo4}zC(H&y>kIwAENJA+sY>yk`6U+8hPZ{Kg=`C177`X1OD0P}
zdwSGPHMG#kLSs=v=D<73Gd4$p1T0{lg?tMI778siwfvUJtC<M2>X0C&Z;OQA+`_H&
ze~Y4G39>?4SYU0o7U7mcPrp>usuZ*l(AL6j7MKyUqeDn<x6r}Dehc4QxWht63ol!E
z#X=_wcUpMJ!owEsvat8{=sgxv7VZ|@S?K86skdsUx(M!Wp@)U8f+^fhz_s1co)&sp
z=wqQToj|u=yvLc8=xt%=o7u|u`5)I#?W&#1-=4V7Ld71*2Q8eao$6=dehUwX41>J-
z)8=R51Or5jl7Tv@ffgRIFwVkw3xg~SX7MeIvG6EMD!D&yVZd|Qk69RQVT9nJ7KYJ=
zIw|s*X|p=1V>4q>BV(k6E_G4_qa@+z(o!(?NwK+lrNXCJHQN(3d*u5?W7%RSC5EOq
zpI~94h37?nl7*)QOtZj*lPx@BVXB2G5^Pd4&g9REHUcK+MQ=>E@SLO?Q783iy#mq~
zB>19*muPmK6rDL^QW5E^7G_xZ%)&YguMyWt&9X4t!s`~^U>mUTmWB5$Y|f6)<lt}N
z9S-{zejid?G$cvk6?IaKBKY-(Vlv+s4aDTku`t)d3JV`vm}lVw3kxkQV)Bmqd<%P;
z#}=@wR?lO3ch*S}EVi(OwNod>s7ayRrQ(fcq`~HlWx19Mhxj84E7=!%Bv-TGl?qo`
zpgdDC?Z={l9#~`H6ANoO4m@6*R@c}0sbB_=)=8~rH@T9v#llt#8!UWoVWWjF*dAC?
z3m<pX2mF}$q@zCia@NXk@|ShgORjAewp-Xu<1Kt?;VTO#M`iD{&}~lU*B0)1E4IVJ
zH*Dd0^E#um$vn^|pLCZ9RH>UH^IO(}g$W~L-&uI_?^tf#)IN6SUa@8`7QUJmBgcL=
z`v(g@au~Fs*uLhUEd0rgEF7?K(8A9a4q5ok!VwF<uv7OgpbftYI7}M~3$Ju2WJY8%
z?e7+jvYm(le~4k{V_C;ndUzpmoSnkL$Y+xEHWYSXuxIuu3#Tnyu<$oWHV$8R<+FMG
zW#O!ai?7GdSs2|Wo8bB*MdvLvub<U*x0*Ys=pqMI3uSD)u_JNW!WEA87Oq+Nhw?jO
zRDP8M*9(b-=L-H-ng;{T|D&H*Cm40z;%v<3v}A+CrrAgrC1q`t7eIyO1RSl<e0SOG
zk9Q;jHdGr`Z1k@k*KFuEg0}AggJNo&<+TNvLM@@E?B;7fjXO3-U7_5rCuAdRW5=+(
zh>eOiZm{9mfbDyaVx8-zvPQ+Jwi4x^PgIsHx_^))=drq}s<wac;8o4WjW%wQ;LSpF
zEO5|fR1F(7ZA^FYoP%06YTNkQ#y2+V*r;n`sEuJZ>e;AoqrHvWZ8WeEwUK2bVdMJd
ztPC4(J&+%>k!ge5#k_s7@$|Z>xG-zf&mHz}aneS%jXWFqHct0UYe=2x&2wxtqI`#V
zW1$4$yjZS{CN{V$=E1wNkM)dk%Z{ctn%QV!qb18_Bet_>Vck@bjh~Bi3T@oiIG-C&
z729}!SV4241h?A$uB`;EY_zt~&c>+AMQv<+b|uTzvTn1{*5>xw@r|c5$?5-J<3k7Y
zx7AH$k4SW|afgljZ9HJ3BdwCJCEaXv5`1SV=Pm(v3+*iQ9vi9B*e(LPvb_ELAA-EP
z+vrgm+tWrb!S|MOdJE_yw6D<ng!U8qTisND8xPueRDuI+JY-{#;D?0{wE3Sa-m+?*
znq9yxYaX#dTCQGdFx!b&%m>9<Hy01F@tBP}KS>_wUU*ZzRI_@i;WkFtc*n-OHb&Zb
z+{V*3CX2#RHpbX^(#B{Bep4g%1SN0HdiqL|d#5~QW1`K!7#M3~oXsb+*myRQOUZlc
zrHCg`&*VaaA@x!n9xTWY$H(MlO|kKejpuE=U}LK2oMxlzO|fU$<m&lLcxE&znr`Dz
zqNqjJ_;WUD{Ft@8cJ7NdUb68zJB5vxZM<URRU0#G4)yW#-HV-biIHZ0w^Omxry9Rz
zV@bVK&wGnMUSIGgTb+%!>F}SjX4=?RFZENq;<0tIzB`*B{<R+8*Ye+EJF&6c#tJcJ
zmW}xWX4{x!qw(<Q{x!LCZOpUL@L<6QHgd9Zw?0&SL!IR5G4Ta97Lq?Tf02#F%-2Sl
z`l-ova+lh8xI>KR3EEqu{7|`!-KR#3;6oc9+1Oy?a~msdtg`V5>*W!D`q0NVRuk7x
zbq!~1o#B7OStDj_zpZdBoqVwPQ?^(e>umHK*l4{_f<*lkDU)op@dXQLW4nzujgp&e
zoSam=*+!pT#SCs?2hT`uwXtPyY|BkWq+i<j%EqO;3x?KDb*!ISGCSJpa$^jR@367c
zM%+P`gIzXuQ^v++8+&YgYvZ_$6E^nR*vAU8@r#Y`Z0wirb3m;9Z9&oZ0)7z6Qv4|3
zC!wReBo5l#jUlVWv7(=C%>AV3J2!dQ#;-PhxABLK-)tPKmV1OZj#IJir(=$hRpHCb
zH($s<$_7(Eb&Qq1ATe=HeusI9dh7DLtu6kO#bkpo&FhqnGd9k$2J5FzbMz}8f2pSb
z{qUR(cWCxsHbQF?^Ss>SRu+R7B-P(6#fi+i(ZY*tx6#6`bK_TR{KJZHP|3kn8~<|9
zcAz=9X5&8_X%5mIe<<*t$-mB#BrT(i0~V+DGsy#ycv%Nu<rFIp0uIhKi<fgy-od!b
z++Z_WK>+_jJaxT*-_17HPrY)XKzCp`@EpK_>A-Rjbl|jz+oTRA-CoT7fp^u&;)d0(
z1JWhi{LQOF4#EybmCd4L#KGbEsqf1b6Q`;cRdn$1LyfMnLTBW+9g$zzK@|r#JGez`
zuIl)A?VDJfj|!_fxKRLc_Dy*=H1NA#bq6&Z)N@eZ!419gYdWaw;HeG;#I+pM7G@ox
z%OB1ov-2zQh7D4i+r%0;{D5DW=^*Oh_6Dg82Sd-q9vzs+sF;IcJ2IQsit#+AgoC7m
zyBypt_GHs_4q7^B=%A5<#tw2E{yjvIgIotq95i(}8L}|XL7$z8e4$HD788GQK1te4
zVkuA{;MD<*dQWR!?4Y@WTOAB)kb1sBs#jKQ_^||^lP5h|!~(W*(AL3i4qliUYwe(o
zgFE-<hZ^RmCgits(B8ov4mz?34i5d5?BHN|gVdD+1t(w0Z&I;1)F-<W<sBSdn-%>f
zKI}y1PI21WDaD-~+~eSJR*Hj^gDwspVnsOU>Y$s0z7Fnl(A_}~2j?54dOPUpVC)-3
zpM90+MQ5(bC%%_{UZ2lv%b~(PB4$QY6z=EXetPCi;{6Q;kAEMn9Zfyp;KIemTTaLO
zJ9y9m`NRWQ<Y<aupo2#oJVyW10}iTxkR0sbQ3nma$z1$m;SdM+MpL7B)rx;}Jab3Y
z*f0mLwappsz<sc2<COenk;DkW431>+w-*wOcJPFQiENNkYh&1oXsv^HTV%C6UNF|d
zE78<A2Llc!tS<|dvN_`gPY}AhYCic-J7Bq<aWK`v(r9Y3gDDQif0ZbBJOA!I(PtgZ
zc|68j{4_SmXwe-TGOf#TZhZ7StI5F?2md&D(ZNd&zGVM$@G^6B@G0BX(CDiUW;mGV
z-~$%K!S}P$-gNL5JH?^G*B!j!;DDDqy;;_>I`JyE70h(-4$XG(Hd75PU?0pa@PF`q
z8BM)MPdb?8V77z)eUcYeXOecd6MYKu=dj@w<j-|bb%Y<B?_kfF=n@vh!2$;hC9g#e
z77IUCEoYgPqClnLaSjX1=tBo9=&@^gFN`SuP#Vui4py>lU&}liO|6ntt64#Z6HN6n
zUG2sQdW?v!aqtP-%!ue(p#)8KM?Z70&cS*I8yswPu+72e4mLX2%<<t=G4D8EI7rJ#
zZDOTo`v?5>u9nLUh_=vspBDZ0X@2F5)OI$=cZ!~iCiR_(_=e2&os(ZX_=d?H9C5IN
zeJ~N*>tLUQoeqBP6yvo^z;2o<;9H^1<8elDJ=b^aEbKMMvTk3Vxt~?w;0FgkI{1lV
zOfo5c!0|U!<mr2)ybel`d|t#%_>0iP4tKiqgPYbXq`y1(gB^jbogKDQ!BGdN9GrG=
zOoGRSo)F5|KOLMDeD|yvgPDt?XV~e^#m~~7jqzLFiSy6MIR}3^;HJ~O7;M-i>u(N>
z@5C=Vp!`J#mn2AeE-@gV^s0k@$#hZO#Wkj7`*fkZxX!NqUIwqSF3PxgSWQ-}kW6!t
z?&7v8NnRT(C(F4g@1jDLWCa(uZ_f(2cy?Qs!rvlQlkLCEQr-V)ps?Y>bWzd84K6Gf
zwu`WfhzrMs>*B>K$)E@iNtI`gyVeEzeVG+<@oMEHL3+1*&qcCIvQoEvxZIXK`>D!F
zidAw^*+mr>RrzbCTJp9hv-_7%wyB)Fxn6$tty$Gv-00#a7vr`oH;eKYEBUDyMarv&
zi%b_W7d2hfa#7nw9T#<7)N}F2_AHw8WcehEHl}xeeHT#|87>;Qcx8(pMY^M0a_p#d
zn%8AqdR+836PiT}X|0R+{$#6N31*b-qM?gME;fuzUW+s*<<(e%IWBSqG!aUEo{N0J
zO@%(%HjB(g8L0vng)WL*6wB4z#fqMVzl=!!F)EoAY5v9@f5J~o7f-tWjk}eL)-Kuz
z?%?7M0c}}v0w~Z<Kzr6&DW_tiw2m%1xp>6IAQyMKxXZ=8E_%DT+eK#)>*?Yi7bzCg
zMK>4PPs*<^q(A?AnJyB`O+UK3$QrBetdiD))qUE35n!w1%<W#Kxx7|I?c<`a1Rrv7
zpNoDj9&pj$#gMX^`b_!zU6g3sX(x6SE3LmQ_n?abBLC{Kc$3Ak%n`ANOSKIYu%|_G
zu!~1sJTAc@E*=vw!o^S*!vqg^(Qc6c=ag4g&A{<eJkrIHc0PZUi_s$ago`l(xD`@~
z{ELm!o)Qj&V+D*8I^M;EQvO5%lU!_{;GY;i#l<r&@+u?0GN!Uqu#tNRdYI;7x{G}w
zd>6uVE}o}Y5L1JAfn9)YEQpLCUUKoWi{ma%u(7cVxLD_6y^9$xUURX`#c~&~yLiLJ
zTo?0P{I)mxri<U5ocCP3<zl9b**E6C?c!aRTf-&Zk>ERJ6J&O3mVM8OtoL2aB9s07
z!{qs9xpUb5ixPYHCx|ISZ6CN;=wgwJ=G_YBOY8y{jQuYou~@QOD$FH9FSt2O&R7~i
zffX*c-kSKt#fL6FazV~YN&B(jRYEDe+Qphu1M-_?Gb84^*2Sk{Ej4^5l0z#bHn{lQ
z#eNsxyV&UB3l}?G>~gV*)%``mRu|h`Y?f3sehd3fvus*I4clFO?cy7;=S!hq31vnU
z=yo`<!v#w{EhE7q>~^t-_2QyNv+TUxncuRr|C-qAas&Lr#*2!`sj-NU@u)ODyLxV7
zZUx_&Ke#yT;#U_x@)xj+1L7GfKjh+|i=SOkGc&3+KS?M2!mhMFNk=u%5;XfajxbU{
z;v-`G?=IduoCx+SIx22C=7N~!y;DB%r;C#ufrCg3`gMIu3VzweX%}Z)oR#DkrD*3|
z{6%lOxZvV%aYg%#6qP*vcVp6@Cl-*>KbJ%~ZDT2}xcJA#RTuwCYoY%C#IS2pxeW5U
zE=A+1Ch0+x4I&goIEZpVznKMsP=hER^y{L6n8z|IL40zf-&)Ajf-r-yf__WTMZgGh
zXQ~8ioRW6XZ+mW#-w%ClUzblX7!0CGQGzu{8VSM+qFN9)2L0xWASwm@TB|4usq+Tv
z|1e1-$*dei6^SLTDgp#I1#xo_^@8{`nz)5Zf~XzD+v~D;)d>1+wUz{H2K~-LCJiXe
z^g*2<>Xu4=GA_G*5D)B4HV9(rKEKxxX9f`q;<g~#1rZM-ON!7Uh(r)c!TCXCi#;q_
zj@Z*Mh(^L`EJ5Z%RV-I7iyQ<ii1y@(f5>kdL^JVNK@i0vPd$YKiiFSN^J*T%twF!F
z@M4gqXc<H+DGqV#Ale9STgvI%R&O7~?LiC*VsH>0g194yenH$HM8_aH1<@^t?m^rc
z#9fk07om3taZk`6WI9Wb4nI(w&g@b_zsJpL>F3*3Y#a1zqDK%tgXp6q`UKHSK<^-S
zXC&C2?+v12MxsZ*WKM2^oW2r!Ux~1iAoIUji3fr>u|M%p5d8%_NVT(k{(vC9DM~Qv
zVc`%A6oE&A=+Za2cy*MVN7)pE7!|~jARd$0p+ZLp9VT?RP^ua!3aOUKM+@_*AjXRF
zCnRc25Kl@hg-dK07sS&+T<Dt|AH)QanHa>RAR0fL-)3VGWhhB)!!r_-gXlWDXi5+t
zA5K&+pYv=G(}HLiLZc9-2k~4G`-1o`i03)@2eCScHIna(tfnB|68usSF9-2T5U&O?
zBZ$|@@0<Tx5I@c?I<_SFW|PDtnTY{q3*QKWpl?QsoSAH~LCg<g0b5ZJ@A_RYXHF3B
z1@XR!%?@G~vuKi_2BxLLhIN`V$O@esgdWdr`c}rgAU+79WrjaCk}eElQ4k*n@lg<q
zgIE&8@*q~QBZ!_eE0W6uJS7G&IdxJYDYIB9Hm{-+f_Nh%#aJ@0XBW}nMstc%nTbz=
z*uriY#9H>yAU+F%%nd<&E?}L|^+E3DlpvqiM&WD<;tK&!evmBTZw_+%pu~Wp#I_)|
z2eBuJCmQ(j>@r^l@l_CCi;+8m*vVQGS7a-`19!C1Y3(kyPZ20Amnbp*+aPG_UZDho
zo9FHi;`<=n5P~86z*=B42;%P`ehT715JxE)#6kArAbw>Z3F4ok#5Zly4+Zf{DJJKz
z;Eu(KBkWB<{PF)qo!ysCfs$0D$AdT>#2GfrApR7wlR{6iB@`!i4k=igk)ocnL7WTX
zyhQ!=|7oKP1!w?OT?}%Ucw7&nOvtzDau8R8_*aCl2>nNNvQ;ydW?W<Q6Am%;RI8Ls
z3n4uOH3UsGlntRm2#VlxLdy$fj?@qk%sVWDOs<DugkXkXg)lLmOZT$<klG=?-4Zw<
zG{2t12E(D1oKOhi5Nd=_GlWP8UI;gZKy3)2qJSzPY`xa_h7c+VU{u{N%T^9yf1iBb
z%1Nt+P%XrpU=Eo#3SjfDI;ZGnNq$QR&&)|?mno_q;;D{BjH(qv?GR!NDv3HF)D3Z+
zdv-L0dLlqQ4MM0dsfeFynoT;sS`KA0LdX<hDxu}^5VDwc-~2=f6iW&wVAk0ou<_IE
z#v$Z{@N5XvLdXrFNeJCT=n+C*2>Bu0Bi1$zp;-v6LueD?PRrQbv7neP3ZYP9nR`*l
ze-hyBlFDxlp``>{NT#%t%vM5|ElRSaZ9}*%gu8^(E`;`?uu}-Pi}yN&a0iw5O;Rl{
zcBqcx$r5LhbElMI>>r7{MMG!t3Cq~3d?F>7KI{@gSBYiT-9qroTc)UI2)#lWO8<m#
zZwS3Z7$Cl4ar%UCUkLp|=qt*Z3(cm^`$On2Iv)@lsD~cwyFTkdvDqn?cqoL2Ll`La
zI4Fd{0v-{!v>2bw8hJE?$D~|CgfjW6a!FFE8Xm%k5dT6#o1YvR!s9eJgs~xv3So2z
zPl^(@r6)odBW2mJF!|jFNtTG_u~4ME#)U9Ggb5+A_}QC^NFOVkpyWj1d^D`+=@2Fp
zA5KgOVXEZyjL^85!z$ywfVofS!+!`Lhp;+?=R<fQgm*%CH-r~McqxR}#Y-=XA7)6t
zuShXp6(`U_>Um9K+3e}(H$r$*41Ozww<YaNNyQqZOW6SE%=bcgKZFG#?m+8zrCCDf
zhA>+s=dgS3Dx^H=ybwMJVZKx%`7CnLz5*s$6vE;VR)p|j2ung(DiyR$oLo7Ck~YJ<
zmP<FGg&&EvOukBNTPc#PAo`P!3Twp9jUjv?;FA#6hVW?!pGm6ql7v;ZPKrseK{%fa
zEvcPNlnmkP5WWdvi-^(4?aW1Fwn=t$PP&r#QewXn!)PIWvLl3@(q+CC<}MN56T)uE
zovnptvz4+GdzqGxB_AgF1h_wh?>Xp25QyN15PoDuhcP9LpF%hgLQxpSVH^zMXAX2>
z*kK$B;g=9DhHxo_!y)_{!pRU$g^;R{_$`D#LO2@25ss@$f}G!l|KJ}!J{H0WX0$(X
zoQ>pgVlVG~a{bAHv{^RsX%YTQ(lYs(5YC2hE`(QjH>{BOHku$fFR>Rw_*;ZaqS%!#
zhj1l?Ya#r{QCf0ggZwvytAaQ0OAoDyl9G8ngfd~MVQ68bg^?acAnY4oHjHu%DhVZw
z@?rnBOJN2pguy!ngY+1)Bj9*WK5f>+oa~xoN-9H?kV(LVP8e<&wZf<!Mlg&}7&nG-
zlSGBXKo}JTN5X!e^1{9csF`lLA&kmlR0;bosuV_Sd^WZ5s!B5?318Nj#5Z7X^5(Gb
zoEpL>xFrm_qPkEjWU88BaOk6aoiOT#(Kw8pFzSU-pPFfW7!4%r3@L9^Fg4H{)Snsl
z8wvGLb5<Bh2BoA4>e-tlzhS9-qcHZ&DWJhjJEeSrRh%o5&BACB=FVfjd-KC+Doj4Q
zP&o@r*HN+{j6x|zR=*^ZHxJ|1FzyfIfiPNx(Ndzi&`V*o7Ti&kv<dqSsa+Ut#fIA?
zin-8?_7cU|+r#J(#vLNSATQe7DU3UXb5|Ih#cy{@kS?OT?xCp?q$PZ4C+!+Ww=lYg
z(L?gRFN~g2HTQ~GFDW>SLrGq}MWzq^FMxddgx>2%VUh12#)Dyu2xDXz1HyPH%&mYi
zM1&s>;}HP^g_c+~NGu#&nhUFvIv*2(VN&Fw;@kOc_2E)#=E71u9>yri?x`?F3m8+X
z;R#909!JBT6wJmvHjHs$j1Oai2u})Qq5%4YPNV%S8eR9aC?|L(jHzL43S)B^&xSEA
zj5%S<4P$y3&xP@N7;l8}d>Ai;(XdwH)i7QZ+i3YKlH*Ha^UGmWXOC8LSY-q=MEJEZ
z`0U42q;HDw%rM>#<1Nu}n^4;GP8jbCepgIlS>BTdT+%OQN!0AH|7u*)lIMl-VHh8U
z@qy@^FLZ%WTD35YMWuLg7)t~%E#)i=W4YiJr5t)-Wf-d@>y47v$6>5xc44dzV@(*I
zM13M%o7HjlzT{`(&-Gz!pq&y+$I>=lpNls*ahLeDth_HolCevMq;CmhYZ!loaWsr=
zVQdd$e;D6O@-M^K5ys9izLMbAV%s;8mU=kWv0S@^xmN^svjK$ht(a6Z?sveS-JE?A
zB>pZ8_C7voFy9|I+K2J8r20|lPhlL8VzS^&btsHq!Z;Gf?_nI49DfzcShlO*L=|g<
zL1Gr4Otzn6VeVF)xERKzFph_DB8)%7pl52`mpmQDNx`Q?hRloIiqDWE%yVJ<6~>?)
zfv?LZy8N0rAI1d{D>pv-Zz&+bBYl&XMfh46|AlcyF!lTs##O=pmU39e>!rD*M^Gl>
z+rTR=0y>RPzr<xDC@1{#rLh$vJe(-OC^Z5tf+r#v6M-Iq5y4#%+#TT>6Ic<{kDx)s
zFQy$qBmz&8I}y00dV&H%5rj)Q&8(cm*BT>&DiKtTprY`9?wh<J0(z!W1dOdLw*9&-
zi?~_@w@B2D5!@8P3p>iv?3*POWBEE+U1DoQP?JD#9ig>pYEgnZdH1g?3hN1<$;pgH
zkP$&n1i2ApM$oEXGFx=UgvKLiSvHXsK_Y^rq-CEahZjeWh9X1fG!knY(|hBy>vS$^
z5<wnSiF|$pO(VEfa5JHWLYaGkfXk07MG+JW?leEyTx{FCI+M1w5N1oE|IJE}**bzY
z5wwlqwg~PJ$#xP;Z5<+LFPO!=J%ZC!JTk+4`I2IG6yZ)0+$l0tPJZVI?up>h2!=$E
zlCty@u`UsGji8(0UgDGPf_n(<DU=%cdGp=~dPmSlWazs41oVygj|~hmi*NQu?~mYt
z2>M6xptO)jA{ZbVYMyTVa0CxU{LiHHCrxD&9Vq58$hI^{q6SCsPx%DDM^Wcv5sZxZ
zFG@p26+J&Jg5i=Woijozi*IeT?ePdkNiL&>vJH^=WCTw|uquL&BN!XOxCma2V1^WY
zd<0V>cqW1g5}a6Cvy&n`ugC8xlZCQG#8V@9HiDNT{s+cs5lk2GLIlszpC_{TX`LnF
z=f3B~RDN=KF#>+K<lTRKQhQm1iC>BMU*P%e?lrcMXyR>lGy$(i@CIcfc#E3%CuUMf
zVPZ#Nf-?HCMDdBNcj=Z07DTWxf?;PHzaPPz2<ApGi=B&~N0_Q*;`oT{OXYIrMX)s^
zMVSvGIMg)z^L^>_MP_`t1Z5UQu$XR{pIi~ak_gD8<TBB@RKye~hYFWV)SL0#4~6+r
z1S_ewX*T6~F{9NHtcl<hn_L8+M6fo3Z&_Z^^JxTIC>+6O5v+?~eFPgK*d%&B7lDlt
zd?EU21}~~5WnDAh%_2}-wvbkBi{P6Gc0{l}f-fWZN|Jmn0<_^m1K$!BaHnXd{O$;L
zNi2)Ws6A4As^Y84z6idH;8%Jzg8dPEAHjhL4vNAbBKS!F&G=DN4T|Sd8=dwuHHgB)
z5&R;6_IJIffch!CsjW`2BN6-_!LbOANAO3fZAV2RHBg2YQtU(oCxuB3e~J<onQq+L
zMnA(g7D1YabPwku_$z`RGg8;sP9nGv!Q}|9MDTY6On6Z$jwNE9UgGFcwvc9!{v()7
z>SXY01pf+$Su;p&|4F&73$u*pCu9_b%X&~fXdY-uIS=JMRPdm9ev1lten|;fST+Ot
zQx`GQ^Ba}n`Avuy3ut+;g}HHGI&Vyl=RZaFZ<-yV9uMOyVnRhkJa`_40FMFiP|?F-
z55Ibx=7&li277qaLuC(DJS3UiLsbveJVZTYc(~ESO&;n<jyFq2H3hR=w|J=Tp@sx$
zDqjg{68W{n)Y?)~a_UNu1*zwuzJ~^$--F0!LHJIZSsI(=Atw6c!r9YQqfA0DCE2tZ
zdT8X~b`KpqH1?3=q0mE-<euvxUqF*m<$0dpUuaBI56wLE-C0=R`R##O)0sb<YFzB0
zxrf#s+IYCtLkkZrJ+u<%v#v{WB&ER&(vr3wZu8L2Lwhl@MCN~VUpjSuu`m4&4;@)?
z9=eIyT<q4#!<`=PV%Fc5>+Ink4|mg;+&sFAv7}szmGaQV^S|?Rl^iK!yL;&2VStB+
zJoNO?%R_I^Uqg2;BXzGNk7lN{%oNl15q@8x_X+JMl*0FWc%T&b7x19alB^$Q!E^Hl
zvQ;EFch+AH_K1f;BEYp^Og_ZJV;(;7u-3y+dey^A9$xk^+`|YDlRP}_VWfx0Jv`-M
ztcOt^MtgXY=B>}-XXGb5jA8JDBwH^ze30W;<&XCUZrPh0Co&UQz@o%>!F)U8<HSVa
zkV)am9;SGB&cpK_p7Ai1|9mBulFxelEttdCQYtV0p<p^&a`^<+G9fd1!NZFpSwUV)
z$z+mOJiO{*mWSCMW_Wnb!@C~d^YFTdH$2Sr@HVTyeBw<HZ?XMvD!T8!B!f&y`i=))
z{9wha<Wm)y?+d3SNd6oTb3H8cu-wBu4<C3~;9;TYoG+40!mnGTi##kA{!$N11e8QY
zn&%Q+x}L+2jVnBS=;33rgv^gTtn{!-f)rz>kALoeF(Y1G%3S05H)t|H_3#-xct+xY
zhjkv-d)VP&r-uz}#vZnL*zRGYhc7&AVFzKe^srgXU@p{L*C?c&C0Ue|n)pi(UwN1)
zpXR=1lgLQ0$js{-!SoV2yFBdn@U4fvqV3g&dA#;;1jtMg?DO!QhaWxs<bfae_Ivoj
z!_}<3dooks3uj<viVC@wu&9~u2VN97C<S3zeim>@=r3%I6%zc={hNm)9HxL9f!{s+
z;eq?Js=!eX$2^n;=*;6DPI&m+!$l8&dN|1uo>`x2Or57ZoRLm<+QS_Si+J08tZ)8V
z4-B#ot}gPgzdW4xa6tsNZ7L#%l9xPO_HfO^f1>IN3*v!O0;u*Mk)+ta9!iACzs`Qt
zH=n^Y_!*S}Ztt7VaW9>tao>D$c)$DN!z9leBrOkA5Ws!<X+QtGkjZV^h=V`~;Jz0I
zz;&7Ab0R-ygA!OG@MBYr*oFTmabi(|KM?6Ce*5|2yTow*>IEVqOc{@N0ZDRfeUiZ&
zfJ(r!cy48&3P53gKx_U|qN=3rUe-^36L2$72owRgfcs`30VIJMKusVDWB|29XFZ{{
zh1L;D<LmO+fyGGzUiHO{2Jrt@Fql~?6BiH@dTU#qQCR>%Ny2R5Hw793jey1yWK<IY
zIYM)V@)<0TP7u7ITn>LZm1t-N6qK4#Vox#97Pw6$n=>z<1<(>`1+<3$C!Gl?Sz-+B
zX(P$`yS5$B9_Rz~Wo-f-=$zt2XQ6ihoq#)mr!rF=fvMxNf1Fr!mqgtyl#+}J7AG*N
z=pG;ibP;~<(%7!RE19WoLc0S!1d!7c=q32xQVt(wsg3g}?gRP(1A#|G$^Afo;6dPl
zQl0ZMQ<NMaLE1z75b$tm?3TXCLBNv7(jNu*tjlXKaJeusY+N=k28RN}fIvm46)_wb
z0c-*`10#XQftkSDz$joe@Eq_w@B}ahm<UV)o}?>)@$i2}kA?padYoW_qUGts<$p1w
zCII|{Oz^bGOa-0=CIeG|D|@4yC%{j~&j1sy=P=>4QVpGQ6Vu`U&hA{!|Fg{hVlMzM
z(?7tA0RKCX^AfwvUjMy`Bjl^VYryNk4ET>pd~u)vuQym_XB)pooB3x=C_m%#4Tu8o
z0Pg}H0Q1=a*F@iA!;rS|z656p<)=lymCO<TT%q%rQL|i5&*0>Q1;9dJ74R|eY1iyU
zz;fV^CV7h`NX`-gONA~I`c+=u3gE;4$J3R-+f;pj^Gq4?J@dKeoO{nXw_I;H_loB|
z-k?+}5#^zjsaZuyC6#7PBF&=+r9p}$iD(`aQlwBCC@ImL|97wVd;ia8f7WO1wbx#I
zT6>*6AK>qv<u3v+331NcJelc;ybLS@UISM0O~;<)uK+6qS<Wij(1b4uyb2I9sO}wu
z*MU{+cg)+|{A%H(915rR^&<810P#10w}2hM*TCDrJFGxp6MKD8@-8bG_z-wcyzjG#
zyQl*m*EOvAh*7GO^}w5>E7t)Zi}#3rtv?Zj3=G{Mu{H`1z2y9iIq6aU1x-g%{yDH2
z*ickkcdvYl1RXY@uod_c_zLP0`gY;m25ej3gq(~^N8}qCfA(LhE31^oANW<Ge-Hcs
z>=k?$up8I|{0#gk(tZ-i3+x>HP<UOsgrpGuQlEjktM2=N-+=wB;kkK6KOhJnf@m-^
z`4jjHXsDr)hQEP-fP-|o<X_s5?FkVsbNwe2dLOM$8fa?ai-`Iz<dVi3nrdjKp^2vW
zN&kUoQG~y_hNsOQ6i8w#4XrgCui*p@Z8Wr{5Dhfw?KB*s!O~!BI8;;Lh{H5=*3e!<
z2k~~)kQL+BNxWpBF+@FXXwU@L1=d+Pvp$qj91X69m_jt9H2(c3;R<J<fj!aF;0wY9
znR|N|NKb3XXle<RF4PbS&Q3w^;Tn$6R4*>l&_$50A}uF4r7?*8_kn(`i4;pvi9}~m
zUQ_$FM{4M<p`fXKv~JAU=!*Ab>#c`|G7VK4sx|bKh`lvXRJlm5(9lamUG@lRLn<ZD
zOo(Nv(a=XjU)H>&b(C;2=xE^~KU3#7^jHo3L^7isr}0nj3FXi+t0!vcuVI{q3pJdi
zVSt8V8is2asNrM{wVE3J4ib2(KzawW-Ztb<(QxbbgykX}qN&j=hrUCFXM_x8Pt$O^
zrnZF6)i6TC85+)#h-YdTsbP%Zlr~DkXc0x616@kHb7J*a38hR%XIf{A_Z&%utD_{I
zr{R2wbwPbxF2i1=sr~LtG+e6TVySa_$7`6Nfhz;dD&tPn)OyYp8m{D5KvM(GNfbLe
z&!PL})TNcB45gc_VG7Hl;VKPZbV=xFHV5`DyGEj4OWin3ZIn+HFZsFdbc2Q)HSE^$
zqmG+2+^pd^9sP9NqG6hb&oq3_tZKMT!;>23X}Fyk;0lk1nHqRD?+y)jYW$UCGF{_U
z>mGM$IEv%s=E;<wtM1k?OH&hs$28o-Cf4w<ct><i?$hvqh6gp=ui>AUbEI(AJg8TJ
z2*27730uvO%11Ojs$ob;8F|)rNt!iH9@j9N)uMs?b2T)4qnc6XXlmRzrb|LEdFE?a
zKt<B9T*FiB%Nl6Xmugr@MV*&_Uc({{&j|jkKoXx59wIMjSS-XPLU~c(O9Fo=s;y%q
zLV+&}ahV1>E|D?rs~T2lct^v#lAqT!tkSSr!%AjmlNu1d&L(cAPL92yVU32jgl(<B
zH#Kk*iXT%BkBN-o!MvTx+ZulDRUqX(4ex9CSi>h8KG5)?hIO<{6_p=JES~ox4{IRD
z(L%H2-Ua#fk`VDv*?lx@)Ua!+lEWafZKA?-RYw!)-K=4Y2I$aqe4$~hhJEbmR4r=A
zg8Vlcb_(*9hHZk7xSg#d_}BFmE}?v@;X4gKvnn)vui*y`KWg}i=?V|$p}R?(q!wPd
zEWl!NBD_aa3wNC6bN;?%VZOPnA&}u0mReJ*b80nXL4Lo6104M5Xr<$K4S&$!>u9Xw
zPYtJZEB{x+e;W9{%3u5nFsQipAAxri%84Hoo`yO~ifhT-K!+uW(XIUPe0dWcO?5Qa
z(Lz@e`W4qU(=l2Y=p_T2b+UL{>u95+qmE9xO0=zxb~+A`Sd@IIuF~xwK{JYL+v{Ll
zA`~)Tq93NCvxG7(=UJo^(RCO)3Oc&!d<7krjw5t*(P8UwbYygdI$Rwo9lnl0$NT+S
zd%EgPrCpQ3-zGfP%QL-v7Bj7b$jdVm!idaM3t1h9>xgxblWzTX1y@aI^m=hE@tlt1
zrxr>Ws-vsKEz<G*_JppONjFsp`4b@$*;ri5SxTLdBXx9VB@`!pbo9_srlYrxN*z6g
zSRpBv>u5Q;f;`M*FQL#&IrLWPsMb-V<Hnu|8OT{jXP%GJakS9;>NrLROUi7J=U82J
zF6L@Q-{g25C+K`X84v3?QAd9rSL?V&$4NQ{=oqf!G#vwVb!d5rz>@_I(lJ<&Q*@jv
z$n?V$58Vr!8WYwEaj1@Ag7Eu7;^{g@=(s?~I2~u`I8(>Dtb|-LQpYGk&Z4U57$a`1
zP`)d!?KYv3JS~5!;_CO=I?fS#9g&pt#7l<rb^J1_g7gb@T%_YN9g`&JVjUB7Tq5{*
zfwc2vyHrw{NL86o$%vG|Pvqq~uFx@A$5q0~oLngg8JGcbG6PeDLjH3W=C5T!U6UJW
z<OP|k<2pfTx~~`H2DW2$LhF4qjlYh&bj;8(O;=OJI|bgV<2F{2;3VFm<G<osB0Lhq
zFBFmK62y<!OdWUYxL3!0LYXD-9)UdKLQWpYA-rEG4+!L#|3N|8mnfN!=y+7eVjVB)
zc#IuN$Fpqo4a$7YW)n0|=IeMukU2W$vVJ<?NgeZ8D5nPvBN=FB2^R>@Q#zj3!HM}o
z=4wIy8DXPMrd8xH<2lN|r<(409g8Ft;x7oouk%Yfmgsm>$6Gp<>UdcMuGW<$U#8<V
z5lf5xijL(vUe&>EZsvh@dxfs7H<MtxD|NgsoWxfN!o0m9qDWbzW33P=lV`Es*71&x
z&vk6p@ve^dbbP{gq|TI;zpvv%Qp(FYh50~7R8mXiBOU96_%VBBiTXCt5!oO_;+u4A
z6#UcrxOF_A>8PV@q48&rlhCa?C}%rOjgBvMd?mzfx|$80R8m{V|Fw>9BtPHkYBI%%
z3`2Jc&vWJF%;$F!O8f`f?Vjbkbnw$jPJShS(y>R!^#*P*@H2b2j=lztG4Knki-y!d
zV?%8NaqDNF&VSQmzm5acG}e4|^1Hx4b^N8{55b4_Yt1#BzXj(i(7!YVPgnoLh+Wh=
z^R5}mn3CFq>{FvF8W{C!L52z?rHO&223i_uWvCM-%?J%SoKwF8-oj9)N*L6dbOWJ*
z$Us{I?F{G!3<HN4IMh%pI750SU3Vny4RkQj(Ex4Tt;1^;HAy-dAna^l_}SHm2~OKf
z3QeMBC_8*&^MuCDG+-G>8So6)1~(Jo8p;6D$n)05ky8szTO>6*67u_!R>lC$GGzva
zGNEY$SCrHaJ=lX*nmLILWDS%V=xN|^14kI>X5dHzT_kSKKv%jQ36m}&eX6=G!dS%y
z?uz=*l~AVOiNL(TLVYM>b(i9d-&NH^1fImr>qb?imm8=sP-URnKraKm4OFr$P1T2q
zxg{GDWhuy9W1x?LqYNBvsBZyNXLLelhLB|;Jl4Q*2F4rUysRJV%0R7wp$1McaH6WB
z{2;c-n0$XjZCDRvONn=YK+@TjPBzq0C2o(BVX&~BV&GIm?OAhNJ;YF776x%zF^nZL
zFxJ3X22L|@Iva6WZWOb3U15ZQGsSy`fhYHNf3u0&s2yp5?iij$*{%lIqYaD^9(uVg
zOUl^>&NFbn5YI7it{_w-#=XG6IPqR=fXv3a7F_GN(7;88+V&*_VV$%I)K~+T8klHc
zih-*QTqgQ?Ih)&1r`IMKcz!}7B3BBX$Yd#Uozh;#8f&H&(ytNb>qN<!hieTrU7aeh
z?#vPo%iU<;CIdej_{qS{25vF1%D`#^(+u2d-~j^<Qq`-I+YHPwFw?;8?4$<nG}M~a
zU962w$#lWT?JBKXxth|i_1zNXUV*a&-XoB5xW31T_ZhgKrITf@>vxqtWZ+=~FBn*C
z;1L6l8hFaU(*_dGAPmegFjw%$4a^qg2?NjcDll|pqpBwj%rmgSz?L!jdHhT_s+w=`
zf1N$(4sBRXFYo>=6#i!nJS%Kue$K$zx#W3vObKG#wo?marX$X{FB*8+z%m0biL@mG
zm)1*W>aQ4BE<#p{%vTMpFz}k-RA~yQK*D=Ju6|wE=JEnsufiJ!));u-zy}6s=++8+
zN9^942Hs-#$tBzbf7<}}!C6u73d4H>xj)V*9~$_Gwrh07HUsMnd~9HofzR0bLfmNJ
zQv>S--yrbp-eqK_qw%3(p`rNPz-9wqO6V2?Ul`bGsG%M0$?{dzgk<Kxj1fuviqf_x
z^lmq>!@$=DzM+9)-!!mOj0r=(Gw?0@X7hxGh&`PYM%*RxN6gLd7KDADLg?K?<8L4^
zkv6fH#-FCxL^Bh=8rWyxKLZD8r48(7r(nHp$a5*<fPp{RWE&O!yMaFpwc^2r0>b0C
zPSU38Zv+1bb56s*?7Xsc@Z}TL4NSEFLbk@HT1aVVqLCnsLV6Pk?Io)g%}um0aj1#*
zCR&<mtF(=&ZvD^>v@+4!RNIjpl5x(`R_N^n9wLxtikuxxbTna`a7=VEahM6+gkhqy
z37F7KrOZ@CDj3yZMlPY65h2AiL1>xi5cMI#Ao6gr#igjx6`rZC2Bb_iLgW4gDZU9F
zXeW{}5t?df#Ii&tViVm>xSNtJ3(_Q^>uTcgdi)4Mx|qnBxP7Jy<!V5Y5Q_zt2rL!I
z(8NSu@IpPMn~5Xq@vXhfdI-+l3o`dK!Mi6Ua!I6@iQXpOPvL_UDoJPUIcVdc+C+_s
zA1(Z3p^u59OdMgMi-n_2^fmDwqnJ3x#IYvsGBLx%aVGkiIM>8^CXP38f{CFfhOxXR
z`m;H@l@Bp-5-+G$mz`{4kcj~%2D0Y!<(JIOlgNE8@(ea{iiuNAOe?7+@$r({r6si=
zl+@B&YvP`6<^Lq*^bR+1nu*aS#)!bvO`IVJ*+vLkYUhwMO^h^g_m%lkB8?HhE~%w=
ztZ<%X;%q^fB7+$5920++)biobPNlWyo4CNl)h4bnG0wz=R4@~lF}W_uMJC3Zm|)_i
zeyuMS$}?Tm=E5Z=G9_h~nwZrk>CCU^=aq4@WRi)?sZl$Ut4#d2J-Ncfl_n;eAU_vC
zNFn4rarV^06zW5><QI-Wb|lxDn94jednT?kalMI~Ox!H7ZV+iVnrg|2{7j1ym;uJ3
z%v-2+3-YAgMx8M+U9v~|9VWQ;a;K>lVdy0f<1)95K9f~sauF2^MXP6-c+|vWtV0v`
znz&Dh51M$$#QlOlAdvQ!non!_unE(|BW&g735_}X0ucs1ZsG|Ob4<)O(R^biDKz`!
zpKD^CiTNxG>p!O~4@E67@svoQ?PYX!G|FL=XG}b6VyTIjO*}_^<0h}b=LIejNa717
z7T4qK@}#_EVo5!PU+rZkUZDn>SWT5~T(#W93KOrHcvbSiY%?cxb;wE+uM3?NW`kDi
z4HIikylG+$<xDNmE)mkbW#SzZ@0xg9=%jE}hp<GJM%n#8F!7;@CKj4n_{hXM6Z=gZ
zpb0YZiHUDbd}m@k?VE|MCcZSW(Zr`FHdEh<l1-+%we-2E?uC6OkO=SM@#Y;vw@?90
z6qTx5cyzp5_mzolCbpZ{VS=F~-rE7Be=XAJ<<&Vx{Dw_Ax?-m=(EGiKA58o#JiI5h
zi~ZfiPbPK?g(;Gmi4xN7G11@?h3_@-i>dDA{c2*LiQm{0yVjD<<mzq<GOgcD{9&qH
z*M=7UG}SQXKk@#>UdA3LIEnvC5ZQ>6*t)XppaeCr)J`brjVvXEuCWC!%M)qFAPXrA
z{9d=P(9%MC3mq)9veb$S$F6NHw6@eou#E+JN#ysjorOb$$nP47hce>m3L+gXbh2Pr
zFfANrfom6J;QnrBkv2{~!K7&9X;h_)z&Z(*1xNVFV_V>8nJKzLp%8wQJxZ`Jk@qnr
ztD%Log+Hz>WCZfd%c)0XA-0gU)HLL9VW#r8FD_6NBjzl0wQ!$>`z;h%D7G-x!dVtd
zER<TPwJ_8|V)3a8^s#W1g@T1{7RoJDSUA#BTGZV_4@;>Km4R(qCU{Q^Y#@GZ>zb^W
zh29n_EmTRAkL9{08Q7-0cUdh_D4|9W-n%^7LSGC0SrsDZ7z@W*I8NeHUHe%op%aDq
z`1-gf2=c%vbxD)s$pIDyS~x|B)FNi%WQooU4-#asK+;bYo*|Y}Fgk7^4ztt;^h|-n
z1)gT%bW45fM_4$+QtR;i)RIR{9CnqC6rNF*S~nPNVT`3VM;Ln9jD(c4Eu3Rvl7-7H
zoNM7c3*#+Ju)w8;^DVV*aFK-zShsWY<CrDtRYfI(=(yC+(2Ff_iGT<hF0pW#a9+wf
zFH0s0PEM{cJk+Zdkt-}*Y2i)_(=AN4a21=I3l0LOSh&W*wU!#UUu~%q_(Y~!xX!}$
z0=dh4M1!(3rxxnAo5^saM7&Ah%@XAn!KVqlRp4y`Zx?unK&Hsi`(1+1v~ah@w@_4a
z7jr+fCZYUU7VfcduMicpaMr;GEIep|M+M%s@Q{UvEj(>uA?u{1>=6rd1bI{-ukk*{
z3b!zu&0(oa!Pg(`K{g^>ubXSBHN7V-%(F0G@TaIzU6TcZlary`_+yPdW8qn*$V#^G
z9QFUY!YgdP(dw}D^A;9ac)`NQQwxi!`OVcOdg3oycu9!Fmk6>{;L8@43Bm(W3|cO7
zDC$)~R#<qA?R8hx%6dA_2Ct^&5xsib!Wv8Mn~>ox3u`UBDJhcYk~!5RhNm6LJ(PDW
z5Fr~g^PYwGEqq|%Lkn9he8CReHTj74$HE2+>%{x9K+-=EgroY67CsgHbAg*^nu?Rp
zEN~FcxjB~<I02{e*~~`So{+fJ!j~4lV;^BH71w@cVFxp8VVi~RB7xHfceR=zd?Q{W
zJITB~;mm^gw_<jP(EEefw_O%Eec<{tQ`t@1(o`k4huz%5)i$oNvDd;c7JAv}ZR1x9
z`)DU^z{YPD_FMSd!ao)cup?|r{$PjtRvn4?UA%k8<ca@j;V&x2c17oB`d<tGS!iRU
zt&M{g8rW!Nqq&WSHV%KHWg{DnZFFCxX3b4(H9_VQK~r0;B=7(mXY^dJYa#TOHd@)>
zjRxAZ*0#FJL1r=#auQA0&PE3t9fkQ28;9CxZ>t%79RsCxveng_y0i|n)wLilH87Nx
zM6;2$k+GrMFl?AMEF#wxJX?+SZGo;p$5uv$a%g!{Lg88~mCYCaz*gINj2PO8Y#hm=
z*@$gqZMDUpXOV3jVWX>!A{$+Vn6oi?eG~pqfehSm=N9~mx%pxnr8ao#sKi!V?F_1e
z+=ZuG*Q2~3al6$?khndBvs@sBl-anHe+01Ap#pj<Y;==z0;E*hsIqaEjk9f3+o-XX
zv1Kv)*f`3@$u<Vrd~FGRNw?A8#xXXIwb9SU@ivYVx2de02x0#o|3lvFRC@xMdz4S%
zvZRdxf-43=2HI%1p-D|?Eh&R-oMPil8zXI;YGa6vVK#;f8<}fu3>C?gPid7y3#ZvQ
z-NqS0WGW;Qj<7*UX=ETAWn(n?B?^PaNGKzcXRHwUViIp$o@3)88yDN^I>xy+_=d@O
zHqN(k0V(ZzjI(i}AbgL7ULH;$<nsG?8+>eGqOFX>1RIyw%0^vkD|1BK!iPsLvoXoW
z<*dCvWmnp2RsRZB9k<ms<j6BwC|3z&&=d(Ga;=T2HeR-|%*Lk^8eL~&rj5I8TyNtB
z8#gk0Htw{Q>AP97dYj<P^DQ=}35EErY|19;F_znHuz+N~gR1pYCHuv6;lGQSFH7iV
zh<=i1mW_LC%(d~Pt!~!bYvVy1582>u`+YX<XAfGIdw{L5LtXjd>i5I8`s~gY_=rGy
zAGPsVJ^r}JA(8G0A<nV!uib*)c{b+Tc+ST2HWt`;%EmLc+DYU-<I}d9&M#!YlVip_
zpw2Bw;?D{L4<|3O@q&$)#Jkv5Ta)B}QM^3e&Am&WU0-5@hwzsQktdwF>Hmt2<u<;v
z@x6^#*%xelVq-ncg^iUqK9EFTx3S8`+cw^@vD(HP)W9K?Z`x`<bPX+rAY4-5IySdE
ziM%E9*_6z~yMi;T@7s7!a4u`JM2B`$+om5%+>dOmlc0}j#}?#yc$-2vO4(pzqm6C0
zS}*!kf<Cvg*;WPLL`%!feTmL()-6)rFKle3xsW5)l=G!T`AQ%sIHZu1qPB~`9Rk0$
z@r@um1%698vUJbIs~>FaQtg8OXhm)OXk#Bux{aS~wSBXf+RIfSfj`@7Swj)W<bR=F
zm8reyUv2!-BH_?zzfk_L@u!Ugf^%r}yREjcxs~&mNMn@0X@8m}7dCGDk06xB{T&W?
z4$|N|XyT}$NCOA$a!Er6jl@fw#HNlKAhoEcG!t)gfgBw%s3n6q5pdLyhNWvuAr2<H
zxXQ&LWOMMLgO41vchJGXL<g5S=;)x6gMJQ<cW{`4&JGd>c?Uc)t2yu~%7HE^x{g}w
zGaQ%>EC;p&heG7+Uu|hEPd;#EmB`7tBqemuQ5P-gB|YsR<KPGfT^xiWCw7o^5IH#T
zohll~b%#qV=AR8mFXQGMbahbVpje`iLP!1*NAZ*jk@CsR!m`K(rs$}>v!fgw>8RG}
z?V!>@cjDqLb5J2jPl4r*+V&zF$Edx8!W}Vs>8c#mIBJKk+EIgHwjhap9HkH3tz&B*
z?VzuNV<gtGtSe#IxUmr#juS7(dnY(J(ZL7@XE^BZ;3P+xiy;mMILda>4RSEhQ6JNj
z1u~RJ5C;o>ii1-fWok&IYSEO{((7QDqpa&`0*MS4WJ{Mur%NnaGk$Z=bTHDvIS$U1
z?2U3TMshw{AhXH=`B(>MIZCnX@_e=fmWw4l&%yZ)E*4I*UEtutIw8%IaZ(kmv5TaD
zb=5*R-oXS1mk8UX60xpUJN(#al7q_~Jm%nW2Uj?_(!qTacd~=49Ng~U4hK^lTulXI
z!#TLd!R}l#Rp7Nuy0mtBO`a!{39lpbjD(?dH#&TQ5Vr{1O%7JfNP5;N`ZNc(I=D?J
z^peORI!3?K!F1uD<=`$y9b=w2Gnpxr86ug?cT)prDmjGrNDxKcD+u}TckqCN2POZk
z!-pL_RFCIoCXWdIXg!7VquCCgaInh3Y6o*1%ysahgO?mU>0q9NXB<51V7{X^_?~j`
zv>*!vJ~p91;z9@99OQxXI`4B5w8+5=f;{i2O-2SSc0f)djLVHeMqJ`xse|PXUKRSw
z4wgxjI+=v8)X}Te<*XGBUURTg7%1U&K`4+xbS>sozri}$p1dV+jic5a)(ZY6weesN
zt`QNwE%bMU@~(sT9JToH`mpNvS!&LAx+Wh8!a4prYCa8!3(LhPWOLBWMROM$9Bg#(
zlY>1DK6S9k!FC5b9DL^Ba|d5KYS7Nbip_$2A#jVM_A5!>%APeQPvKn2=WzWi2it^!
za|hDtzIO1fgYSgx8wWdS@g#`wdj~%__)++G3BzuIoNm<d)GdH;hvH`kdma4g;4cTi
z&~7;Ro%QhPkbMsRUXZ8TPbELH{5SCyPA-sgfQGccLjI`dQC>EygN7~|x%gM;WIO2K
zKfx)1{0-dy$*l7>cG0AsLguFR`1Pf=EnGEFY2%`;t41j;U9=KJ84VXB2R0$nj>g|b
zCl`mgYA^Co7wug&lA+_tXTlCb@8}{bN_aE0v#X{Un(*+}1aTTAvgtzM#-hPgc&%(q
z-eyD>)h=pWxGqvIj&RY%h3A4di0L9%otO4q1TNApGU5&0{~feu5NFdgV&sfnWF;1f
zhr4Q@lt|7+R~J28l({H!)y<|-7m15vy0Y>Tfe)3|l1^{lMK>2mx+u7KZ|jgHrL`o|
zeOOvcZ+92k)*<xvlvqT1Q=s4#0(;fd$z188$^|2m?Q4O3TpZ=%OjfCjqnSMyr?@!P
z#W609b#bDL{w{cM<v4-IyXfbty%;Ra6P{3yli?&61Eih@xfm$O$pX19#LC}aT1!Yb
z*aeqTi41X3%g=W%8R4o$gP|^lyK3=#81o>j1jJ8sak>jmz}eOuW~({f#>z8XwY<!T
zqg;%3aiNQgT#RusmN|5Bu8Xr=aCMhFXH$8m7Pun)56`UTlJi_}75V~!=eufOk}nSt
zjuU|lGLqVh1)t#J5?5_vj%VF+J(>HzE+)FTTry0~%LJJuLLMzv%i7G(6)vt6;q=xm
zj8AcKHPs`9ObXYyxYotnF5Yo5)x~u#9(3`Li|bw7;9|OqyIkDp;wD$UtaXQrn<WVr
z<W?8A2u`un1YucjlkAalyNh9qYe-?NJ0&ik>Y5?Q-7aPcGSfxf`(5{lmz?*x;G0_a
zikAkTl=}sLKp@AB54(88#fvUpVmEa0n2Uujo^kQGi`g#bvZY*gLy*JfC)fdb4893>
zlhwr{4%g?on9l+>NuGAW>!loKFQ6sl?WzXVPf^>GS|XKlOOX<ub@9B5Ma+*xVJwbv
zUtpnzR1#n8s-Zp+Uj8NX5*JHdyyo%`6nL4sH?_b4#;Y!t3I2*e5|;}yxH?%ONc&E0
zIL6@G{_C#VtbEhODi^C=yur5KknblOlxqa%2xqMzJVE`IAYsQg<aw9<&c$vQKQce8
zOc&c-@bvqK)QauNr!F?R_{haNs_TTBk6o;H)fa>(E<O>2E5jQE*;wyo=x3}h;r~kD
zW*1upp@c0izNp8kz+Vc^DE!=P6a2M}jmXA+vBSmJF1~TG)5W(gejsvakMAUJoVR{Y
z&1sr&N0R-Evs$`c!oZyW<YJGDmMOGK;b$h@yX=6A-(Bo=@e4cAx5=+Aesi&(npu<I
zC-9`2JiT-rtC0AIi$Cc$<Qk{&7wxu-|6Ck&@eeDC=l|>3xFkzv4pbVX&@iROFpW}5
zCPy9Z-pms@sYbyjDKt%~ec@&)G*6+0;H-H%p0cB3LakG1lY)_gnL^tX+NIDjg-$7C
zm*ox-*k0hFDf~O8n#2y`B~s@-ECr;X39++4CdXwZGU)Z3^jay{DR@G01f~R%$4z1A
z^Lg^qF%@6vfk0CDib9w|l)}v^+>$~}dJ6qgI6j5LQ#c}pLJHkdYQwin3MDDEWJEkC
zl&&ch2~sSO+qewk_Hk)SZRzsvSzZvDL3)o&p?eBdDK%oJ>ybja;AJV9wWZWCW6s?;
zajQt7mk@gkv68~&h%%3(kfAz-8fGJfqf$6VByezhbP9b*nX8WN?OL4YP@fYz;>V_N
zTz!h1Bb<=Ji7AXr;ldR9r*KjVBT_gcg#jrHOkqe0wJDsOQs#Yd3a6wnNbtH%KyED3
zaGjb`=SHaBv|U35KaKg>kqk?zJwy_Rr%;{L5}`X?qBHc&6h@|SUJB{4m5e?rg)u3N
zrOs@u9Gy~PiI9F)3g@Pjkh4YdIRcp(2GKDa=ZnA#>T|`edQpnM&%=}yu1;ZmN^KlZ
zOyRN=CZuo)iy+rIxk-I#3WJl{VOxhxO5t)wCx4<Yc%GZoUXj9;DNN>WyKHcCcbkrM
zGSA|NCZ&F&dP53dB(>M3Fjc(QrSMi#+q84-_2MPN(@8BEZWOkg1d?GIJ5CCVQ+P3j
z+t`RHJf6brl(J@bq%b3enS$S$QvGpy3U>)YoQEs!PGOexrbkk^Cxv?@=%Ezu6NFvh
zK|$`Py0)o$KsXtZ29Rew9+n_(%`l-y8CSaDV?t!;6Df7mWPS<@QkWz7T!BvtWYD~n
z+EgV%flskHHsqfX%F`)zfMlUShCWLqh36$`kqGAsE$J@^&bUndr4*L1u0+UEDeP+k
zDf8tNmN9M$%SlOLg~TGA!wi;=2~iq_tW4o`30jrH8!4<wVYNtOp;+*>67*($Tt=az
z<}>=+DZC?`?+ScR^2tyJeVD>WZ1DhB1z4BD$0>w9A|Icmu%2q;;ZhG9QrMV6%7f?O
z(-byQwP>K&Uz#SLrSN46U#0MQN=={XHVd*v;1?-u6@-gO4BD2$_7wKeT&J)@I`z&J
zz9j?Y%iR1M8aEz&;mgk{e4oPZ6n>Nr`vd!aO05R4+j6@7ZA&%Z=MoJmG!#Fj>X&^|
z_$7ruSOa1!eobLty-lc-|C@OC3p^n3_mtW-+jvC9U*ctT{Y^tRp=KNpmWWth-TIG)
z+QT6p4yMq+Lqkv9=W61isfR`+=8`{?+Qy!G)s3r{%{(;s(Aq;A54;6NPP!HnrKP}D
zp1Kr9BBKzt_5OFuj7cBrp}nWRT$YCpo|-rx=ApAtI(q0N2&db}&PaHVSMy+aYNo7v
zYDZ)5m^>ril2+G#P2pq^XAtDKh0PJ@dTKR{LB5B;Lw^q^c}RQ6c<AY&+(YOg^3c^o
zk*DUcv4_Jw9O0?iYt~b9ULtf|B$U%z&O>t&%1K8tE5XB&9=Z#q)I(kn@+Y1eS#iIk
zAe3$bDW5mBd(`ukd05l9Esx!jpHt=v551U~qNJaP-X1DF^zm?%hbkeGUM<LAPH+Ta
zXJJzw?V+!Dj}^#A0LXca;L+Utadk+My5VxX;3o(?v7TO0QZ~TDKo6&T7~!c6@sm9@
zO&%)vAP<8*oZ{hB4?~E5o74)O$3n=-fi5{Y$sOjYK|3kKJ)B0(8CyyEEw7cH;o(dV
z=Xp5a!$=RKJe=c+h0i6UJ&f@%)>9u89{f1VQ)BzH1u8_2|IJ;QKUet4Q1?x_z{5oz
zF7_}^=oi*YV-#klj%~aL9vzt=K@>ib+T!6|5AS)H<l%A;k5CUiT;btL5BE#XCwsWc
z!_6LU@zj#$6c5*WnChvO&#Rdww!+*z>FJAFTqg|NnZ1EU<Ay9X|9iDqdZUM%$j@G1
zm2}A0^6=p_54U=_)5CO$a+`<SJ#cxDi<V@&L!y(JN!;aOhKE@m?x6&3G1nwBJ={%o
z&8ZWNxqNNis^+~S=RWF#$Y*AlE{C!YczBS_H=*VsX&Np&JS;8s-GHjcJUs5<Id%jO
zvpqb)`d^rT+QS@A%?B5Vcdmyg#XC>D^F4KgkD+vYA%Xl)dFt^5BBU&2dkOQi!psA=
zBrfvs0y{4wdRXk?MfMaA%RF^_{Ur}eJav7TjyHmr*5kiDsjhv!;$e9`<&CoPR|RJ*
zcI}lOUT5#{uvUnxJiH;uY8Izl-3}g<ujS$SAJ#Xa<TpLM&F(x;$$U!~NPNcw9TD=s
z@8JUvzq5WkeCXjL4;yLNJ*=ZG8mnG5ThBrX{)s?dh2wtc22UM$=E4Gxfo<~enTKyY
z>}0?8u-U^7PaVMC;^7MqUwPQ(VXIKSWL5M{7{rs?MDE;G#UapkvdJ+{o)YI05JSKA
z)QJ}|eCy#m4|{2*Jbdrr2M<4bYQbuk$Qjo&*-cAWtOT;tk^d(TdnBQsJ$3AyLKwu!
z@~<BDdD!o%t!)y26P~(M$Ut|%Q#;5^{Z9{nd9ZxgKK`bOqv`h1*2ljz;GS9}Z|>uu
zhXy_x`)J~$p|4btu#u1R^0maNqGT(P74@b*n)xagb)G>~?-o8<`e-FY(p&rLRz8EM
z?c5h==i?9`oqQbT<7%Fe36n#8wD-|L_&fTzDql<fx)%=X66)+j^Pvj^-*KQQGB7#A
zSBI!gkxws0k?#0#ef6?I;3MTjy&>R(uLtm=J)ti_=gJ!bX<t2bz&8ytKJWZj-;uA4
zePn&C_p!mp;XaP=afOd7eRT1W^D)TBU>{w56#44Y-_J*}j}jkcK6?5n_0<+qftmD?
z2%Z<n#{oz`QgBX_yZa!WMCPZ5uO1fQN1@zTGvyi|eSB2-=q2>tKB|0F`>6EQo*EsQ
zIc+DTqxUEuNBcO&$FaWJ5$ns^Xk5khD?UL_FLAORCq!-zGUD+*PVjM}uU;5n{s;Q#
zFZf9U2MDYSB0O2VT);WS$EiNfWz+i@;-l8b89vVR)n{?2kKsN}^D)f--{lb!`9&jK
z|3z}Tj}gB52tGYO&#xOlb0d9>^>LPuQ9efd7$dP78Y(W?E-EQITg0B@tB-7*9MT&B
z=li(8SG!b`e2nvPq2Ln)UgWDCmWzG0IdXBwR@}N8FLX|SE+OJ$qOW#LF7wqqi~A`Y
zZt(yE+33C82N5z%rq=m*-p3*zQ>d0y3?H}oYGTggpx5}g*2h#P!8~_KZuZp)((75V
zpI6=}_zk|gRO=kt<0kRadhkLnd2aF5t;1<PcmtO!mW+G5kNbSw&j$5zr;q6(aHfyD
z1-VP$41p9lOAt!CM-U!kzL$Nisk+R|!=exPc+kg_)NmgU`FPmJ<348lc*IwSQMv#1
zm>`c*Z+jI;VNN)(e?mkNpX00ZvDfx4BR<zxSBZ(t_tmZ8r+qAxoG<Y4lpqY^fmN2`
z86VFIGt0v0jP;y&8T5jW#XeT~SnaFpAuqCSshnf;FZo#FW2vv!c$cvUwd?V+FwjdS
zBm*hSef5Ont3Fmp&}%+k7ygw#PH&|~dT;#Hot$jbH+-y-rhJc`t~y!k<85Dko!O3W
zN<+Wpt9xo}Ww!4-LV4Fm>%LW-T)gk&10Np>KSS5~_((*NnM0<JIRy}XU@DY$-h%u_
zb^#wo05iZQAD^*T(lAn`X-{YYe0<}plL=ecdC7KN;R}|oI@#*0|H#n$CHrp^wV}Vw
zSF2tO+Rn-pPR3%{cl!92<@NE4kMDeZ@2it1Ke8{=Jjzj!-82-wdjEmXO0W`E%vF!4
z{p4eh5GV34@V<Hoi;gRJzxvomOX%ZIb|0#JTO6Q$NXqxqb_oOF?~(+Cll~WtzXbhD
zZR}A_ey0A97$Sy}nQ1i$&@e!I7C&G6O=)?f0EDdqG!D=tKvVHH7uYPo6G=Hkc}kqH
zMSzw<pDPht2WS(ZtxygT*iIlh8SBt`d_}&tLx7F}It8j+e6OdjbcY4}54FPCQgswf
zyn3K=PKp)44scR{0Rfx<Zh&q9jtr0r-~~7$K$if10KOa>3k(9J17rk`1cn0nz$|&_
z+BT^oo(*ug&_C#2z9e6s6TBoqX@IT)iUJe|c(8jp<C6KC^75B5wTzntDAY+4ND8A9
zGL)b7?g4rSs0`2}Kv|%M3O$);UiA{3LxqX}y#jT*b#GoRr0`r>Re<UM#|7vYpe8_{
z0DS`-6W}OT^5}}A18`S}axOgBgChj;A1icz@hO1<iKydh0Zt6mz7_Ek0yPp~Tt@6q
znLCmubE^k319S5u1B?oAa)3br1_wALz_0+r1DqOQNPwYinxve{P%F&Of6}B*RTz;C
zahecE1WMmd7iJ<<-7^B5DG_;eikwul(E-K;xH!Q0KwTmj8{qr^7X&yfQ1=ne4sebj
zyoqqGFq|iFp{(Z+jtg*MJp-dN%0&U{t}PIs5MW|}%SaI(QZ5x__csagNrGPyfKe`|
z4i{><YIG&_r=Zq+C}c{2s{?$R#-=o`32-f&JB=ibsR6DFus^_o0M`e&A;7x<-V1PJ
zfSUp=2=G*Zn*-d!tOmF@z%(WlV0wVN0^AnhcIql6&(G7H*{}5!d1dZAuKx!h<e9e_
z0cHl66{z9&-NMOt=g7>}U^39n;1h5G?ho*AfJY?O0|6cq&IbkZ84dEkJfRVpi98x$
zKGj~Hn0qWx?{z#ba5lTDAaewgK39+@1I!bIaY?Mp*wX<PvRRp{0M7(?Ho%eqO9MO?
z;CU82U;bi%MeJ*Z+84x2<itYlVk%pqc2uF33@_EwiN73RS%6mpEEnRsf@-@uIw9Sw
zLeFlmSsCE<0B;6(E5Irtz7b%JAgj4<Q&7y5zg8$r?&iCy>XLgqz&k>`LQ*FilXySC
z2LZkcur0uc0X_<_kxfiFTm|Zqd?N5;_NlRXz7E6>)A~Stk2VDAP$HlGA<rf@-`?(D
z2<K-3J`b=tP&Xj9u*OE`8N{bT_{0|RtpSLCNjtVo{T76AY5cdd>jn5Bz>WZ42jJ)I
zn*iSiYN2>%pjPtvMc_3k!tVlg42*G!?+Wl!fIR_rvqby5|0s|HMSff;^XCA21N=f;
zab1C5lV1bu3-BA|%Yri*==jxOC{y`8z#lYvX=Kv)Gr(U=I*s;e{2kyQ8uK)ortvSE
zW@_P}KqCJIYORu6Ee+CWm`0;C_|8n@G<ZjhOLJu4N*z}fnx)Y^jn-+jNvr5B1hz`6
zM{HWAaqa}Q3sART(^i7$JtU2Gf|H-pD4FYW9n$EShLwh$MyIrTzKPGYX@VS<R?XB|
zAe)0hdRjf)WD3PdtEM55uFs-Igiac%G`uuiiOv_C7@hon8Wh5(oC1l+MI_ZaU6U}4
z!_zn-jflDGn#5@}P0k8VgfrqUX;uG40*U0(s?NKn)j>W!UP?-_1eK)KNmqLFX%uKN
z(zq^-ZfP8u#;`Por_r5J(&(4Q@oAK$(KC(eG-}dnkX)WdZ$T>3Y8i@y;a+JFGN@80
zM5+Yg*tm}b9i2vBp&TWUp~r}XW5v6;cPmCePH+y$*`rTLtLgB7GzO+|Vp>hl`=`~_
z_>+Xr*);FApPa^^G)_&c7q`eTIE_;zlr2T?ZG~E1S05swwF1dDG_9`H6FDu7)6=*t
zjY(;YNaGAvBNZTxGo^h;r!gjtk!g&gKw0&r@^BS*Y#L{!)jIasY4ti2*N~}Z%DW-Y
zWzX}{YJ=&5G{&XXTJ-s8bvcn2d@f`Shzebr#>EoEDB~red6!fYpCA!05gvLc3c^xw
z1(l7?1xdoo)3_pyE7O=veMn<U8dtMX=BZU^I_l&#BIH_;&w`UeN96i6Zb)Ns8ZWZ>
zI15PQo;2>I4y18&8n+0MW8;}=OcVT8fwu{~T_9uKk;a|%`1CaH5`0EIg)>u*y6;Y_
zxx*}h9D(1L#{FqLnZ`VJMk*WsRhP!2f;=ejp)?+5*L$cdg9sl><8f-m_GC_4E!)mc
z;|cMS!gn~i`9&h}xkBWk?))?sr15N8U7C9;ji)6uoNjPipBY}5#xqP^uDOwc$a85t
zpT?pzUP$9oxiLp(a`FZo;Y(>ON#l())}*nNdYH!R?0`FxWoczOms1VcD1x(P*{qzG
ztw`gwG*;4>)W4SBo=4ER*vlU?Ez7N<o-E6)7O1DxdGEDpyq(57?72nBn*!fT<2YH{
ze3xpO#wSvi_tX46J=RHanDY<Q_(<qY7u2v6ynILaaeXLrzMk!#1}U5$(YrCNE&~$z
zjQxw9I)m#o*qp|eH2P<7QU+h7v6Y4^11Ezo)A%Zle`rqA*p|ljG=55B56w;*U#Iay
z8oOA!-i2>yQJW{<rm<5H;`{Bg@6!05b+ujHJ*OkGTSAGPAwSgkQ7jDS_&=wyH;n^n
z{LU_%#;<AoCM9A%d3$l6G!t<)#QwCp>d0?83;u`D|71IMNmv6c^<Vr1Q0?cd8;E3}
zmH3aU!W?GMHiHHkG|Zq$22C^nQ;9|yG|qrYP#MVY<Xbh%pm_!@GiW6|Ed)|e4swZO
zd(t|iQXxN?>#Dk428U#DSO%RlI8;JAWY95#_8C>lbX1|b%ybe8h0x3QI<*YU46KaG
zyq-}LVMB0ArXx>XTFer?ZU(80GUhcIcp3N^6f)?RL6AY3Vl&8Qkjbd;4!=iHM%^z6
zGitMp6mFJ%wzlQr5?Y!;BJ?8!b`h8p*foP9L5c;I2&9A--1*I@Pvrk^x)DDzgYFr%
ze^eo`M@H=__Y}NLAm^|QEzhVe65h$`l|gUfjg!g@sxqj~s6`Ai&~bRcTRFkve4h-C
z%HZgXItP192FGU5H=|Aw)5{0pkISH+cu&Zv_u)xo(DA~|<GUvcLLwLC24pZWgL5-D
zFQYzuCrjQ&W-us&!5N&A!KoRwTs%C3A%fIqFjP3-+1O~9P#BA=#H(b9__Pd8&ww9I
z5=RIdkuwB2Qy@i+5@d7+W2BA7ijcDfKTDvBE(mQD`OnYbf{Z#B!D;)r3@&7i@qE4r
zxhR9nGMJRX#TksxV1f`Qioi<*XX=--X%^;*P#-9b$mJPK&fuyHuE^j@kxV+>v^mub
zWm#A>dauslnv7Z-S-7#$we03y)Kh6wGwN{++OZolxG{tGGx#8bn=-hWrOsdhrDZUU
zDQ0kAMs4BUn!%kJOwZu9j9RL?T_EXqkcYc_eXH)uDC0acgS#`BAvnF<N}H8Y_cZSj
z$jg|->G(9_{TV#KKFIFF{}r-vh2fD59u|Z=b&n#F^U(|*%i!^hy0b|yuW%~2DS0A;
zIT<xjoJ*Z)oIJ@am6WySMe@eUJSs!)GM?mlDubsp>Isq8Gg!!umca`dEY2uf@vJ2D
z92KToEvYfZ=QCJTpE}1sFJ|x(n=gaq87#@D%jPd<)I^U%@ul_1vW%MR&6WArtAf8K
zkTbFsOeInG%~#elGw!MkR<j^%HIC&ncuSBq0@r51u{!B*XYfu2?`H6xAl>BemV~^i
z%6pW&EXg~JA7=0ovzoyl8LXq8WUzx(!8XlceFj^kLN-V-H)ZgdlyReYKh3B|!f)mK
z58~Y{khQ_t93MhtReX`bR@(oJTCU%g!S)QkqUD)d;B8+XsN>B_BFq5KEwG-y$>4id
zZw5Q1Az1(4N-KOP_0MtpF6q2`GWc1L-2#8i;3q-Ym-)}rz0AC<2mYGDFJcmD`e+#U
zW$+vATS*yL5%&vnKp@8wB>tJfUo_VtT8H?X>YY*BQjJ6W%i5S)Xc(%)Y()MO??HYA
zLPe+JaF;=ign_@CY!aers0>asfz1W-uu6*%EkpJG20Jfz$M~FPn-Fb792TlJqRnY1
z0uL4bLj-bPfODeuAv%QU7@||Cmd*xUT*cC{2*f*wYWT;;nrWZ4P?>8E>WG^mtPo9x
zq3JN#q5AvzJqhkj;Di|WdDab)3gLzDL!6jXp+Sgri1}SGYgH~2A`F4Up&gDWL>yvM
zjL%|ZLmVFBy$J6|I3h%s5L-ih86p>=YlsI!JQSiRL@~1z;+zmAAxcA>z$8K>A@U(A
zng0-lkh>cw3(+&gks-Q=nBKSan4YbV-%)h!z~UYuJ~+RGF3T79LR5rUyR%jA5R;mA
z?G=JNFYhhAYkkQFm*)Qcx`cRjh?)?6LmU(0sjhAMgg7e1(ZWfF(_hS)y-J9X|JV@6
zksji_ovr$X`0n-sqj#K?qvZcSt{_5h{}3mI7|xmuF(Aai5JN)LhG51{4lyXi;1Iof
zwkGE(EcmKiZb=1`IF+^9wS3iI38A^J`Opx3Cgp|+ao)V5S))}xPY*F7#OM%XLYxue
z%n+kO+&a7kQy)oDYf4N1P5R%FJioJ)%#1Qth}WzsW!cZ7GAyd-I42o7C^?t;XMRFV
z4RL;m3qo8H;!>s+;=&LYhZrB?q7a`nYB>GA9L2u(Yw4exbK_1drUX{S1gUK%F)_qt
zAtqDzShpcA4{=3^D?^ay@BPUa=hl#C^3EJ9yn0Uwi%B_CLR=l<8mSEmB(c@}3bM_)
zBe^cb^^_dqt`IkbxG}^umM+9iA#M(FOMP?HH6I}#8l!}5qgve-;&zr!+L!e2cb3*w
z@14}8rz@xiGeXP^ac_wGLfjo<RtTnePl#VnR<+GSv92zhntS8%BI5UlcpwC8j4I7i
zu-#j9FMT+~Bcw25h_A1#TDGS2(GZV?cs#`H5DP;*6XJ;wb3)8x7YH#|YMb@&q{z8&
za|tVu-UT5hu5J2Mh^MI`nc_vODkeX#wDG3RCEIUJo@E~l@j{5jA)XJh>&>Q%sQ>>a
ztT$$ZHAy{rQ8NEhh$T|bEH7JMWs-~kdrOyvctuj&7-D&dS3|rV;++sHLcA7YRfyFg
zR<h5Y-s+sSrLTurv@@qPa8-^C{YHp2>?tAMlq4v#@4G6`bt*bAD1IvhtK!nB#qY8U
zhxjPOx)ATPuhAk=t9!O44=ar|`Q1B8TaH;<`Z2XA#QG2$*sQlE|2$qqI`d57?654(
zmZIWMCBvISd?wxDbAk7#dTbVCi@+}gvIdx$uR?5N7l<%6!uAk57!;vvgs($<6QX^@
z$7--M#J99v5t>H$F2wgCeh=|Sh#y$1A@+wjK;*I9ZW^2or4{pYKZ^G!fqMl0EO2j#
zU#KT+jxVxwzlGQ*IOEn)h*TY)v|Cyf{GR*d_wIkvfQL93qCteYua-Wsr)cDdxxYjF
zL-os+{wt8ke}c5`*kgcI+Au<!mAOU{ZvL{mcx%z{1G&Z#2v42dx><zg42{q>LW>A3
zBeaUpIs#=fxk<n0x<sXnLS&j%+ApbS7vYcy+rDUcXaq_oar#pw*`IS0mgksg#|WJw
zq#}3`4vWw^f*!$$aLJm)D{qYm8tbjRYOYnf^T(nhyI@AJBG?g}2*0gJjtq)_Kcwp)
zmncz0+z8AA`HB0)BV;2S9w8ke6CsQcG2-z_*}>A`8}l8{F21*AIqP}ONyTvlMyZQ<
zM1(Gq0m>xBEURRmiy{<9=ojJm2qh6pBUDDHijYLeM>sM<_Xq_tBo*Bvym3zFIa_io
zP@v5BAItTKP!^$QgmNMWOP_KJY@L&~<c2<!s}RcOmnw+&iqJa(5xRCOlIjRG5&A|r
zhDz11d7lVJML1gOu&%0^^KfqQGoR+>99MFz6#O`81=dE*&!w!f6C#`#VMv792>m0R
z6yf9ugCg`;o}0bA$$$t0BMg3^q}{v9vDF4gIE8Fma;LJQHs+ZMi_e^}qS}rr85&_&
zgfk+XNll1wT7=UhjEFGBDzMI}RO5fksVaRVdFIp-3K<z;RD=)zYB@Rrg$!Drd-jDQ
zHY;7n*~wWE&W`YSgxL|!iEwU&8zS5o;k*dvN0=1h@(3417#CrDgb5KYjBrtei}{Uy
zEXM*eZ<NVY=-ye7ToU2Z2oob*7V+L_;o{cib?V2Au`1Y`sCZXIxH7^u5w49eIl@)U
zd4#Lk6aOm>)+9G=ETxqoGi#MOq>4_Ba9xCddbYk^>U_fTT;GyX7L5#S<(t?wBHSHe
zR)kw3Op9=5gy|7(jc{9pJJ>Z&Xmh(XM_qSg8?9^6iejm9cSTtCN|PB8W=3FWof5K8
zS8c0cL);VL-UtsxcsRm+(yaHhcRbUXMPT+Gh`<ccJs81%tSOO4B0L)5u?VdE0Xs|X
zo3Gk}eV=ezo32kpm=odk2&>rlBRm;lQG^#F%!@ET!qX8JMpzK>rPBi4Q&j9Ns`yh*
zOo%)a;n@h!MR;ENzTT;nMC!?e`8lc$n}De=j__iHS0XHr@KS^&5tc@HS+ts!Pkx$$
zt{svl>nfIsvJH{yeKo?02(Lw0DRzdTKkq56%L5gUUdCF@L^tN&jPMpal;CS3tYs;z
zQmXwAk0cDGdpp8Atn*KE#F^Z?!pWAR_XDb5glA$r8{?x0>)1(S^oa3sgiqK&F<Qo0
zA7Mj;y%Bziurb1?wB8YRMA#JJvj|^A*c#z;GH)*49AOK)Pg(KquX5WvmKH5d>?e|%
zN0Tojd_`q`vS=H78CB6JoVOymV0Gy>yD(sO(bo~ap^ioPK0>@Y*%{&62(O;sd2gex
zFQoF>Fu%<z{19PRggp^{X6hYFe|fE@$|~%R@FVs4==@I+{+L%n<iid5hqvWM&r#`4
z`7rlugnbeIi*S&ZFv5PaMfj5%JG|<%=Q<ytL1Xl<a$`2+IxbCyJeK?w;ctdU_%{ND
zEcqmNTkCQ%T(v4Orsno-F8TQ3q(O{^F`C3^8l!4;(kMpbSP5zNS@D6(ax5duwZE)I
zvltC7Z{9rSql*QG5`MKZX%(Y&3@?TsqfLyqF|-(ZjCL^&iP0&>VKEMk(LP3p7#%5p
zW4=@864t}vWhE@vzFSKU8DG45cD~K(qRuh?`m=zT&*m4H`R$(+vG_&|Glm-@6~l^Q
z$8ciQRmkE@o*84Eux416e5cYwF6hkM?z=n}#7M{J5+fHQ6C;dyldh1B5ygmO>^`G2
zIazQfbaBJv^v{bAk8wndJDyebR#lm>)Lml~#Ykf0Svij<#W6}^l*V9kdsZd$Yx0M<
zg$vvQ(|yoyRfy3o#*s1peXxW%r-U~?sXFz$B9^f%M$Z@*#<(a(d5nq}gJKMh(JMyp
z7{|rv7o(EZ662^CN5`m+Q4^z&R05M&ez|H#rpVH*-&5K*#xYV$$Hshbq!4{v%qn6t
zJ%>^%!0|Coh%r#==foKOW1JLYfRu|>L?H*ZtEOaCQ{Pxitl^Vcz)q!9?^9x&8e?RP
zQ89+ZsEu)Yj1e)0#uyf3c#P9x1kFoXz+?GoSei6mn@s(!h{b1xu$X7WpyV@Suw~o7
zp4@vNclC9J(J{uvI5)<5F~-I?E5_L|&WUl$>QYwz@PE5Eek190be`?VyzTt7_<Rb9
zF^+n;rug+jEg6_GCXsauY>|s&jAvP5+!<p6l`zINF|LhqX^e?6E{|~qm6qk5t#UPq
z_|bW`CY$)lvf?XaOr|y-oxh5OnqPE^R@h?{*sMx_V)VT%cXf;h9?B7!8soYcH#3tl
zu8(m;j2mOz6sx|&+GBnW{W(YFXa29Alduk_#ke)bZ82__CSxm5y;;L=J(xT>HOCfY
zW~RruE5@TS9*Z#}#>^P^Gr1Ud$Cwr4o*4JWU;)`E?DCg3D!q@ow=|(PvIhD;P+Ytr
z_h5{N*sL)gksic4-+grcPPfo$kE%(wBirKf7_(!{i!ndO6EWsUU!EI-28UHa^TpbD
zl3jakLQ_-yVQxW;r(!%EV_^(RU|E=G-|i(WDJzOCLgCNFcs|BEG2V@_h@xV=8e>JQ
z<|B(^EQ|4q;4j8_DaI1YDbzA(sSsaQT9m)>+2ThpDIsyW5C>JaCjR^AHm}848Dn*f
zH)32lsq^a+x{AhGZ>1z$k{dm>!5SgHC6JW0G2Wy#m{-wxZ;oQ$uBSiRA^)D>>uBU-
zyf63%F+QaI7reul4H$jlCq*NlRg;2GXc-!IC9+;Z@9E!kLyV1Vml1_A?ed=zuPG(|
zxrAPu#ndb|$Ji3%ix^wkowF#<;>#Fc(K2MwD2r_@c#L0S{2F6NjIU$-L{s3Fd=q15
zj33#`T}r-<@m-8vG=|6YnEh}5drG^x@B^Fd-+X*j$zO%ql4&KoV|0GMir#h`au=4=
zjJu}!9+C62z`ZdV{ZmA-GaDE7F+Xm}?=k*}@tffLX?45R_S=^`5aavZ)eQZUh9bs6
z8tp8+FLQs#_=j?+-mm0-zqxQ(7nRC?)Rwn%ai3~>56)^yM`YT~EgNUiBnvYOD~qOC
zG|S?UEDp`0c@{0QXq!d5ELvvKDvQ=xw8>)01BC{YODKxbnFm5TQtAYft$1If_E~h`
z>SPvL77w4@`s9hNI%d%+3ufl9Ecz|1CVyw~l5*gr9(opk^loirk^Nk$#HcQnl)t{F
z+RnnsBFZAp!p$O;MLLTNv-f!`FAG15fcP;zDmGS8;5oM!D2>JcW>(8VD?9%@yk(fh
ziK}Z^3E3<T&mzf!Yo_|c#Ybe3%c5%*U9voyRYM7F`cxM&=UJ3wQJTfPm7VK|)61(D
z++H}Ovc?K(7_pE=w=BxCs+Et-qI*^~Jr{6Cb?EcxuQ?JY*Hlv=r7<&X=!z_QWpPdx
z=VsA6i^?oc&0<Iv14q<UWpNy<B8%!QYO?5)#b?F&qqFEM$Wg+hk1rwTF<BhT<|xe*
zUs#gA@{b~N9-qYtS)80j|NeQp69qYmP>_7L+6iY?4iNnB6Y~SJ_}Q+m;~bR5V4>4{
ziXbEB=4!JTn#Gw}jLc$K7Q?d`!K!|><g_d<$(5X*MeX#4M1GiBNg|O=S0rZ$!}2SV
zQCZMCI*Tzvxp7T?ti(Dyi%F}RpT)YmI=OLtf%#|LDTVy^CHeERxFU-yvp7GC3$hrO
z#f4d1Cb2Hcf(#=H`3ZttoW*!S>WG(QacLG4g>uuvgp%Lu(}Y2jvbbELvvMw<R+$WL
zIXSBg7v0raTqXDv$tM}ed`*4maSM~{vba8rkFr>o#SK~9n8j-ndQ%oRXR$DgXR^2@
zi)mRrL}kw6)+}zzVrCY1XK{NLcVw~n^NQ(NY`r!A)OS@(@lNtI?z;2;c)AjBovQEc
zy4Q3`hIpwI4eC4dJlx5>Xh2A#uarz_)=a5{CMiV&G7A|)gcM51RGH_QDDyl<|Mx7v
z`+uJEtmob9tiATyYp=b|+54RDe7nrPDfAOus-?^0aN7MMg)dVWn8H^nF3fSJW%d{=
ze?SVX*nWmi`u|D>F<NRjxOIQR9Gb$g6vi+tQy8AYh!nm~VH8_mmpw9t=kv-_hApz`
z(Hz11T^`g^p^be-+8vw1I3}^J4h6<@g12-hhzzSxY*)1gH2&KZCZ}+6qCPW)DFUVo
zotnaTj7-a(mI52P>`&_XUd~c}hA;_crSO9=XAAvF=#Lz`l^)N|k#^tO?6CEDDf}$O
zUqtf)!Shr2RUCL@OP9?pOkt6n{Vj#1DJ)B2aSBT)IU*TQ3cOjn!E$o8I49@Zze`0n
zMCKn%IQRR+D^pk{wv|$_I)yci{}hg<ur`HtDV+b!{)fT9iI&3d6!xUBk!e4L?M&|}
zY))Ydb3XkRl&ZT)f9!sX$5wi#i{A6N-t4@ydQtg1R@whf(RZf6Q@c{wyI7yQ)gk^X
zg>Tnq?@QsYLHb_C#<SJQq~zZzkP@@${bIlYp)4L0a43bt#T?c>mcsEA&XFU`6ATsF
zKP~^HXg($Mv`}k`P9<kW|8p%e*vbXs6f%@#yjZ-L!hh`PofU{LiI_G-FCk}_?R02%
zNd=h-vV_A^?DbV;Do|%>;gnHOWqVOs1?3cED=4qvDh29cy@G-(6jV}BS;4P26jl_m
zD;0c{RrJ#`y+x4j{jpy~K~)6=Uv~1Tgr{Bz(xlZCY@b|MUFf_g8W7i1aJ7OFDn_cf
zM!~fT4k$RNpq7H`6wFaDSHblPYAbkEL1zVZ6x^WTVFj%e+^FCt1%(QV6x^(!t^!wq
z$Nhf=w<<6dSPD`K6q>C-Q<7b*r^ed5*4w1qancnKa5KSBlAQ-0Z#Qvm1&)H#?_`ia
z<FLaG1n!ctimxD0kfR`1L8u^7_?fJ7F`0+|w;@L5)5hvt@8>DVS5P3$apg-r++Z2e
zCAmAQNB(%d>&;$$1q~E5Q_x&NLj|`fXrkaQ1-C1>LqQ`2@BNuMs)@_}J+6rFR8VG!
z`{ZGhJ5G(IMeYVvEG)C+q~25kcbvFjPj*Wbv{3MXf(I4cqu^cz_bcf8L`f>)UcrZB
z%=;9OR&Af`TygvB^>w9MDo87MNWqx34tH9(2gt=W4dzDHBMKhn5Z~g=xYcQ`;4%72
z!P5%buwQH?BfF!5b_&`n=%C<n=`8mamaou%i1WES(R`@;^sIcUdP2dI5>8br=CKJn
z<QWCeDtJM`iwd4oz=7zb;CT+gie%@9GTbV8^R8r@f?E(TDR^1ID+*YVMJgQA*5U>N
z{oF;tYYGM{7^2{H1zi=qqu^ZyZz#z&!dnWuDR@&byFkv{3Wkj|33>>#dvTG>o(eeh
zZ2dh2?<?r1;4=juDCni2kAhDakQMSiWP~gDm|-^B>dmm6<I-}vkvk#W`=ULcD!8v&
z#=P_8`YOpT91W&3xue33ozE3~si41tFBp((G8t*~@Bjq^6?~;&kOB@R4dXr%bu#3*
zHOHQES8XVbR4_@ww+e=HnsB6)WLs$@DSM%SgL`#e`9X8CMsf7B%hHk~wY|fON>Sz;
zksK?O#c>Q3!E9xM0_vYwT%4?63e8J7vlL8aU@Mp*#c2wrEBKysd1Nwh+`npmU3};F
z7VDBTQ)HTqbXoBS1+%5tZ(GKX3VsqiyL7U7%WbiF3Vv3wLBU1^zbKfm;CBUoFncIi
zAhEGT=t2dH6#S;(?8Y*jEDbIt_wzg!%h}vR$qZU5c$v`UoYyZ}-*wghRIoz98ey&!
zx=LsTC*!h))e4U0yTogSzfLHN>p2AH^}o6%>xE6UXMwp(!DczTMZs19+Z5~&u$?*N
z4*PUnn{+4hz#+SWX_4+$utx;`Qm{|JUiSCANwHUZ>3?&Y6u4~VAEv28`hI4!FeW%8
zlC@RTQE`~zO$!wqQ*e!%Wbfk&PEcE4f7M9+B>n%PUsc6bDo!yqDL6wH(W=5^k=3VM
ze2!6CE~fB#0T&efE8rqiw~A~PmlXUboDwQBRb;8iP%-76xTFdmtXt#dxRi?0g3GEX
zBY^z1|7B8)fCnYZ3;#-?6@*?Pl+`P$Af;F(;ZzpNVif^ub)$VBznThAOht7SEdE#5
zC1n?Cs<>JOdrExohHQ40_*xaU)WieVsY&;Hy`D{cy@;`RgNhqfyr|+O6*sB4S;eC&
zTC1q5;uaP4RWwj>tBRBgPlc~SQK70ZRah!C6}k#TMeRxE;ClAkqw;yY|4W1JyY)`%
z99xB>!c|eZidAp5^Ib>#!&MGXO_{5I-qZ_Jgevk><g18O@Q;LZReV~@&S90gI>jcv
zq7%$~vs{}Rg;ZOhqMnLE6-9LQcr*OMer!}eTcKopjZFjUtacizxJ^Y175AvPUBw+L
z?o!cI#hoe|sc5XCiHgl@oU$_$J1I|_X~}adomLZVJ+9D9MROH*iveS1Cps&RwrKq0
zi}UYQai5BoD$*+Mr^j~d52$#MKKa-lz0jn#%Uz~P_wFeFkcw6+9#Q%7gYz)G*VY<;
zU*T?P?$FFc@-Y={RD5(ve^y0X740Y~#r7&XsCYuflPVrpQPIgiGr4R>o*I;RjDDa!
z99c4-QgOYRUH(Yk={Wxxsk^gHHWl)CPDLl-5I-;A1);6-?Uz-&LagFr6|btG&bL%_
zQ_)#P7m;~Q#hb!^T}4;n{NCPvgON}t?mj7h&RP59f(p;(=D)3?yNVA~&`VU(L&ZBP
z-c`|4#nC>cC_p3MQ^Dcp@xJK!@t7V@%%?n$UOXjrdkZD!_pE|GD$4CKKV$1EJ`wz>
z(7r1ANq{XLmqf+<#vaAKQ1O+DK_c*_iv9w~AE07jF{b38E&5=JZPACR7$RV(ie{zl
zx^wFD2?a-gxCm42*D6NQr5b8$7)`4<vot`%H!8-eSgT^4ig7B&tC+3gM->xPOjPkb
zwVl)_srXjKcT5Ni-N`DR8fi{d@rUkw-bJ6H;+K!DFE?6$uP)+_(~gneG!@fT5L`Lm
z<u20<(J)iREEOkOl+7RF{-ENa@$Sw+HtA0)=BW5n#R?U3Rm@Yt?dWAHex_O#3so#q
zF`vUX!Cat%`nlWoE9dp?UhjEHihiSV`ZqdrqRCo|nI6aL1WQB-!BPSBD>%zlOx|Js
zPMbOX3*FnV_h%Qn++pT+*-8~_B#RQSQn6aariK-`$;K@*ZvEX>*ITb*gNpMiE~wbZ
zvnu{lv6r(<YViT<4i#HeY?b20?q#@(zD>n;PRupQjyl!uRIy9NZV{l(dpJyfzH^h?
zsE)@60sB<^t>U<t`j3kJ%<zJDl`{^gIH=+fr{M_w^^F$y{b&z&;kZ|MgmK6$k+zS~
z)wPnnckVHAdzrmHq2eTyzlzhM=d92(LaV=$_~)Ep4j(a(f0@iRl+kdJ$zM+W$DFUB
zq?QbE2~9?1ft#rzOG7Cw8HI32GU5d69eqwpmzLE~QNxuQ%4x{fP+m*6e=BIXLgSap
zeC3cwdG4>C8RmX6$El<x54bC9sG`B%lu1eM5?9r5m4<2>mJD~V8SEBr)LD_eW|w=<
zE?Yyx)mn1BtEpjDS>w4Q`tT$AH5!g*IoE1vRK;7_%d4f~It?|h^r}?xZm#6j(Qt!?
zM>IUD;YJNNX~@x#tKnu1bv3veJWhv6<}Dgj4Vng~&094v@uoB=8s2J~P0aMDYv2sB
zH9S?pFa(=I$+R@AS(&70N6r#ZrqL?rGWCTS2n{tv8sf{GIZ1N<CO1D%L%xPPX}^X7
z4fQmTf18FvPSS-YkNO&l1i!qi1TQfSM1Xmqp;${{9=B__L&Kh>`R$#2(#F*Drp4nv
z4NWxMrJ<<?UIOmc&_Y8q4b9p8vhiyj?R&pZE)(}?$yMoI4XHgzp6|56WO2n@{eBG(
zXn0UVOAQZeXr+M(C#`X3*m+3fd!9MG77+6iHnLjTlefA&Xjp3vkI^}d6Af)NwAJu}
zh8OAoQU&caJfY!94eg~!P6rK-Yv_EzB<@%Yp3?BN2J3*+NyMIEAZZx%n@*XRYT3_e
zc)nCjK>ECfQ-9c$+&4SpB@K(#Iy|}v^JUf=q`$)OGm2iNe|mbIHGH^Oe?8UUH4U$8
z=t|Gb*5A~ye!c#NVAdt)E#Z*aO~Bhi$?vJ*9Swao^b^jz8v4+UR~YYUcwfT@8m8}e
z?qBEh(y(QUUhB!~A8KH+x6qG-ek_zsO7i%GZWj&YbiU+J)n^(8Xc#EW&-tR7hA%br
zr#Bi@puobbtgeTwJBR3B(Hk0uYZ#$nu!i(5oySlOLj=G1n|{UNgfmP-!^3*>K{~69
z)bO>2Q5vp)G~-D3676xtXboeS{54b_ZnMgqs+N77b8NNVy<$90-jN%xVS<K<8eh6b
zB^{M@e5+wHvxLmSDH^6~_?;<2!*?2{X_&3yN9Kpeyy-$Sm*o?G&+H*Z;+c$uve~nw
z_=AR?+Y^DGG|bWPtA+&{=4vQW-TFmC?^5wR!Bp}yC$H0h{Q1KFATGtTJQiwLtf9g?
z-q8cjA`QP4<Hx2|Cv%AumkM2`VYvYEwRgNfHLTEZNW)<bD>baru$e=qVKsACDt`@g
z%h>!i*TvPRRbMN39fzCAaH6?E1MS(!iPqX<ag!7&OeX184f{0wtznyn?NV_EX9}mu
zjSYDAqZ=FS63pUmYS8eP6!$U({ZyaKXYVK?{fFtRy0u^El<P_o)8GRd4ho03^62~{
z8jdo;HJsLPj4@x$I!+6J(<w~M<Ag9zYWQ!be(#M9Mm}IIxageGaF$NK=$vDAt!kgw
z(5-xVf(sh{l^%W4+H3ZA_Qn(DB^lrU=zkp<I!fxeLf)Uu)RCpbJnEF!QA$T?9p!ZN
zJLZ(pQC2|5O(pr>6kniv$g;@K*6~mipG?xX+f}ciW8b@_-kwypqG-EPXx*jy@(Sgv
z2);#VRiRf2t)`>84(Pb%KfR`ot98`S(Iz9Nk?hwsI^Mi5yOy4GGizx6wKQ*NK6`PU
zaCn)xUPo=g6sRNM2B9|!y-CN-#b@gZ=ylP#RYyvPqC?ejyN)|_XgYKqt`1K}pOucG
z^LIVAML$T9cf22dW0GSF-_gPQE*5<qfsR}qc{)NJ)i&t7zl}vEqULHbi#&4l<i1zi
zl%22hEqyf9ahr~MItq2v*U^BjZ_4JulwPDK>D|h9Smc%EnXUCJEzDoI%Bi%<!3uLy
zrT9+qSR<j2EGlI88|!%V&I(O*+$GFAo&2UcNO`a$&2`+ZqlJ!pbab}S#pav9xKBq%
z6Hl19U&jNq#6Y2e2X(a6(VM2~NOMeeyr|<P9S`ehrQ?~)EwU}0AL_xAI$8_oF^-gu
zE{BrGG;M{`LC50)+UaP|k^Ri>Sk>xsULSF5PDdR>I$AB}I`1toH*ZN+c2DVeT7(~t
z%d$AMO+tA*E6nF~bYkm6GoF{?3pz&ruK#(ZPx`WsR~Q&N-qP`^ob96HH36M<bUppQ
zU4qw%b-bY?e_^tF@K$a@c@*p~(M`wOBLA+??mFHP&_ifX9gC|PKROnvHoZElyr<)R
z&WJG?ABez*LVM|0H^=0<o&pm}x*s!IIA0888~8-Wr#gPud2@xnoH#lr>X@YCGaaAn
z7^Y*mjxTh4sbipyuXOb1&~MBfpri4RF7NkvFT|(SBkOpBbPT57==trLr<x`&knpiG
zZv}_ySo@24v8vPRj6Q;%(fLgzjMeeAj!`;B>lj1VU5u#59%k+6V)IcrA2jn(JHa@P
z^;mtpjtM#_Ku)a+$(te6&wI{qbxhXri;np^rs$ZeW44YTb$q8|nvUr@zSoll0&np6
zSiIaJZw6h#E(}gy#^54i7M*ZI13q;AK~G*y`Qv7f%%613(J@cQ&pPHxqcrA+!}`A?
zUEcFk6<dGtTb-8ts$&72uVaahg$&58nTvG%rh_j$(A3eD4ZadUN%m+dW3_zVG9AnH
z<lO@r!?$RDsAHX-=W@mIr;Zgm{?_r2j+HuA>Da1co6bL~#u^<PbZn#pIS|z|*6CQ!
ziBQA8twDVnz!ziqk^}v`Nyla#TbLWuiTCLC(b;)?)rV&AHHPgvcIep6QPY$4&Q2Y>
zbR1us&A#v*fNga=>iJ8@UYhY-^?h{pR-H|7UBkB&-XE9T^zPUBO-`KEaZblU9fw$*
zs^}aYN7y4B$7q=4u(`I&ERGkKD%}c`!QyJ-q>fWMPBVr#WzZ*+hq&~~(JC<m<BZNv
zGg*Ale_qE0W;`7w4E(F(qK;p4tV=q$UZW4||Dn@q><Fu57$|8V(?FKNKMM5O5QnvY
z>EsboDFeY5dTAqhQ-bdX5SK9$Z<jTa1p<rZ4OB32tAUikdoWZqaEp<wC9gD4$v`aw
z*BPj6po#$){1hIl8o0_pH3QXo_G_2^<Qk2A<iVFoNI7;j4P0%Y`IPF{8p-mC!}0re
z{Tc&&^WpxQ{68<BZ)aU^ptgaVjAV^j$G{Cn64EysShm3Bt3-4)9mS4N;mro>8p(o!
zFNB;qtW%!mF<Ka$CmY3z0aeaw25f`hR)TK8Fu-v%4Oj;1tk0ZsjZZy6k0d@_1D=7<
zKxDu-z)@b-y+lCHkR)>0E=M6YkYk`gOyan(3%LgJ4CEWh5{VXaeMG=j9=p%iqKXXE
zH*na%5d#ejG&JzKfvyH_qr3rbjI^cy4cy7mF~HrYMh5nLZr7P&H#5-KKofe&NcJeW
z#%XGx(-+CcRL*geYk}ql?l#cEz&!@;H881VS=M^DvO!8=UTe7Nale5FnEz?5fmQ|{
zF_5NL4RoGX>S2Quus+udT<>tbu&G?Kzx1fVA7|k)18od^I#=g@NXzj$uQgmXa65~8
z5!?o8XYe1y(80jtw8y~n209ve!oV{Io|PUwY2YaXPfK@r-E5~9aVLuFGVTjK$7mdH
za&2{}z0F>5^XCNvFB*82CK-6iz{>_+p|-tcxhCQzk}Y=Ynbhq*(>!{A*)9fNGw|M$
zQru;tPOj`SRy%JPc+<cv13wse%Rn~+0}Xs-@E1eqZr~$>pI}7~13eAAZ{Pz1?-+QO
zeH@klo*2XHFD+q1?Vj}LieB_K!*7z=o3UNRq8K;sxJCBO>STr3hsoc-X9hkuux@^Z
zPYv`n(2vaB$wnWSW0awbcvJC(fiDg8H!y(0O+A|G9X6M3Nu0pZ<UIzxJ;=ad17i)0
zGm_1^AqKuSFv`GC1H+7DN2o~0{@vzq`gxr*!oWz04Pr*fXilOP<`@ItkhwH}?je(s
zY<<f27U_5c6AVl-Fx9|B#)g4!4Ss++v4ovs@3=Ok57}|r!@H613`{dH-N5$-I9}91
z|FcIkq-naS!d)KQomp(aYy&?USZ!d9fu9V_G4Pv##RldYm}lTu0}BlNY~U9I^XY%T
z6r+fnkaPlLi7`+8Jg9%6fkm89$4y2B{YGP!7+7lHPXjAB-wiA`@VkLOWGv{S%Vx7~
z<(z!_oC;Tp>)6C9aR}pzzU8U493TU`4D2?r-oOR}TMcY8u+hLK1Dg$OG4OC(pWdL~
zNU8JfQTcaV<1ps8GyZE7?l7=Zl+$vCF*itQC)e+L4E$yAw{_TWV6TCFEdHMPH|I;O
zWcE=Boy?9fZW*WtM8hEi2N{Z&bZ#NCn;b7%e$>D*1F?x56UUitm`+XZm*S*>QwGYI
zC~M+06VVFuynzeMT7p?TYv7#V)_1vlK=ZGGiv}`Glr(Y4z<+ewaJ__?JjCJ4@XU=5
zR!H8U=3}W$6ImuonJ8_dTE*lNki1)aT3_4SK6-=4r)+$1S<XbZi7KpaqP&R;CMue^
z(o9|(=98>f`AY#4o66-;n9rUnnW$_gKX4e(%%y(*5P*-3uA*`iHB8hrQQb^_EC3Vp
z*Jkih7oWKCp&p-IUTxwU6W5xkWhT$gXfU5t@_8Z+;6qr7@gZz&6Ln1RF{p3i1`{{Z
zQLpN@iJMH^Y$9bsF_Y)Hb@?+L6StblyYB2JEAstenpbJAtD4YE=q3!-{m<beKgxet
z!7$C_;TJKV(pqNne2tIQ_yRWdJ0`g4>azQ-3q6yc67|RoOwduZBs3A3`0ZdeasOxS
zToZXFnwn^4BHsjG*e)_r-$a4ndO{0@vN}zw)yQdJ;!YEd*zrbAL!q|`y<O-XCeDn^
z=P9acOe4$X-6i}c)IV0|Zrh~u<v5zn*;x}0nRuAWO>mSSFp~#-_n5fXOnz-K@uYqq
zmjEUR$p3q85(y8QXla6@mNxl8b)S6xe&n^9g#@ikJZ2`BQQ}89;!EvEMPX|bd@{>l
zk+d<<)<ioK?M*x`k{ycW`2cso*yNEY1EAs&=SdEViH|INY~g7W&zM+kVvUJsO+05}
zfQf-7|4b9lo8Vr`M<!k{F=&eUnu*s<yl7&{fBH-80&N(gzha`Z`M<r9S4}iouD9*!
z%^0kAF|q6~eeM*!tJLjoq6c*@*58ogn?m0b+Ren<0@%d-<yKD<@0jRC&#ZIaHSwN_
z_f32t0^DHfxLhB|Ev8G(l%MLel@E*ZKQz(X1h-<i4fRbGgUpXj^fB>?iBC;@VS-yO
zeNAx7g~w-RvVGJ~D7UH_?#TY!#GxJ@D}Koc9G%}^D7F2w%KnOtnwUW!a{7p#F($uu
zh#`WhcBqMA#dx@Y5hg|!bH3)F7vs?asDG@9ae}9r7%yOo&<R4RbE1GrLccXJSpX~Y
z)KtOW31yKwr<>SPsT}e5!sG_sEE7MN_=R)X#B4L!+?#7+o{1j?v-p#MIrJ*7U~%78
z{bw`TpgUM5X0dUv62F>QU}7nU&%{Fd_JG5Ew%^#$6nzo>Y!neJmbh9Xly3aCiNBoT
zYI2E;l_vgR*nE}2k^0l*x0>zD&Dk8U`kVAsjIny<!ytL4!(y*>&RP@eOu#}73+qj6
z;8>VAY+@tRmx<-aTJk1vGn?j&8|MB)Z6>yv_{+pz6TIu*Zeq8IJxpKb|6U>9$!OfJ
z?_w(GoV+T0wXA4(&(G!3J`=z8(Ek=yyp81jB=5bcmdAc!9uRua1n<3hmi!|oE|~b&
z#8Ji%^S_A`%=Q!$$&(^^iYC?ZxI$qq-c_D8agGVOVVUzLxL_flH=hLW-r;pUtzTsF
zrw=VuwD6ya5*Er>C~G0ZLP-m~rc^I&;e}>JnHI9F<cAOSk=*x|63ilB*XQpY_=<Zu
z3)vRRTc}_q%T;!VH`Vki7f|^NllQ~f)|D12S^S|is#&OPp^BBPBdS`UFmI%Jug;|n
zU%$VUomX^Y2AO<@Qr!X{fAIFWriH87sD=A2Tw~!{3!#O`LM;o|S-90g%EI*)YFoI$
z!i`q4hHZGRL>&vCZ7Z>Vjd!MwcN1mmdUY+_VkKjDvz5FP&gUj8{<Qf5KbK%!{wNky
z3$_Kvf@VRtU|O)O#Gmw-!A6HzJlGxfnt)5Tc!cX(@GSW34mH>DXgPa98Jf+Tf2!re
zHnxys;SLLTTFAAKXQ9YKeGB;(3fRY#Q)r<(m(QJ(Ut!d<F!ptu>k+;-&yF;(_=+8F
zvv4~{WWGZgMj97NT-01%mvKxR(d`zRTe#ao6AO1)XlkLE1+F!?BAztA0o76!mo4lI
znJug&Z{K6#UJG0}GdQV)t1A8kgG-?YEIi0@XLSoLEu<~9x6r}DLlz#k@R)@*7Ft<&
z#KNN%T3gBc>X(;Sj0EcELZ)qY9!=#lrnVN^QA0tQtvObiGdh>69O%a_bhPk{g=Z~b
zWX4U4OFm)YNqX<FPOm=2*h||_^FlDr)#mA>&speX;du*vzDS&Txg+#5Bb@zu$->JP
z-lhXBykg;1`qM&Jj<1C-R5HhXO?+E@v(5*9j4|#Ba0<L(;Z2E?PZlIAuiioWEi2i?
z;2O4@g|DlWCFo(HCw*?=LksU%cvlSjz`}d9e7?h4mtFV11wIcQveagP(YLJFn||9?
zg3l8fA$5A{eJp%JzuAe;Kef=;!oL<STIk34w6Mg&Qfjd9g@tb|Ot$c)h5i;sSr~0$
zfQ5k;hFTcLm|2@_L40K;TN8uW!3idh!2*U@$@5JXhg%pSBl5KcK4%;$F+e_lO~8rC
z0N`W0F&4hDFoAR7jS`>VS8l9@aTdmN^3FFIQJkumAHZ=qCR&)pC|#H=#u;@qV2XvQ
z7G_)c(ZY8Yrdjyj!VC-3EpRT3eWrR<-cgTpxsx-Kec55ovhafiPHJkP0rW6kl=-Uu
zlZ81Jez7p$!dwgUEdGBkxTxpazf^5M$#vKH95M#duND?qSZHAp^F|$yrx;6oF#4N?
zIt!95EKU=G#q7>Xi(r|B<ra2X*iD5N{;;r)$=t%97FJkTWnncf4@*%q4PI%1dtCgX
z69Z|D#KT$!#xL%#4U&y7n!3TlMhjb+1S~M!ZL+Xg#5nrQ30o|1D`s#Ti!R#EsbpcN
zq%8hk<IYhof5brz!wM7Sdo28A;h2Tv7WP`$XW<a_Soqt*KNj{|IKXT(GuhZ--eC2E
zR+6TeKba)?qc(099kFm!;+bJg3%gWEQUT-egoTq9&RRIfzK9b}v#uD~xMCi=$^8dP
z5_1U7Tex6hR=qMDO}d(fF^ybe^0(mH@NAT@kzwOn8?|hdw2^6}qKzwUWZ5WXqnwRw
z8>Q{!=TT*Bl(oUfyL`^hZqnLyqpTK#-SRfNmMvSs#uYZ`1n$f*EAqj&c5i+9xsr{_
zHejQMokVOE8&}z=W+xYysy6<bU~-f5{>EN)8@<Nb^e`=CqONJ<Y8wp5YivCCx5w=!
zh6?iupBFP$ud{Kz4U5L)*tKocv2m-7l#Ltg<VR#T+PKLEFELcb5xLn;vLao<WK!4W
zkM)zR!h>xoHdH&g9%(k1%4Xf*aVsphTpstAbQ^|^vEy9c_M0}Cm$+=PrA4j+9GTi|
zoriCufsKZ2(MD(|+dGksd>aKeVjDR&a_NDe-8?(lDdNv??(T2#CxpcHY!tFx8};pE
zzmAh->I9Q}xpXxjg)@z_r?*j|jeEFhZ*y^hJ8j%$qp6KXHX7SW_%*S?G|t%Is~VTH
z8GohK%tmt?ciU(|$vPe<5xdV>!#<L7k}^c^vvI$Thip7-;{h8F+GuGbZ6|Yq7e|`M
z#Li0thnNx7rEFd+8;{s{)JAI#O^?Jv#w~LTCHWgPUY^)`8*xip8|`egx6#2yM;lMr
zc;?S!*Zpxh`|5&B;wNo9MZS$^h56m&<dwXqsd;L$Ip6+|EYj!X6hSAOU&%{yDUTNf
zyeRY~8!roZMd+(S-|3$0{J&=7bsLYn=;)%W@UL=E&A}V&ppCa|bhG)h0{mm+Z5!Qf
z%%F^o9yWT~7-VCxjdyH*Fb92Xd}8B08}Hlr&_-_?A8<ta_<TjJmyOqcvia88y2XW^
zpDOyu#^ieL$2OX5$R=k;zl1;SYUfiMeQkVU<4YU;Y<y<pa~nKGBYBn@TI_LH{I0#-
z-^KtrMKKnsc_5>@kI&}5l1ACe5F0~nOtdk{#xNVhZH%%p+Q#PH&IlV6_}a!u8`R8N
zbNl&xJC04z+A%i1VLXd|@~M`><7_;Adxh~FtUmq(p#=9<F}`JAsKmx}(K*G&Q~^Aj
zn94*^!#O|9>e0tP)yx0hMw<=UY=t`MfmsY@8!K(BvN7Ank2V(B_|3*oHs;uvZ{t@R
zb8XDC@w1Iz=;5jPtoXsAd}?5?Y4(=`ifF^q!t!ixfsKWX^M1)|fy4UwY<IDZB{u)c
z2Y=XDDsEY3W4R15D^lz-rG`Jnd-U@PIZMl_fdZ>-tg*4p#&#QP=@1(mZEUi!o-z4P
znGNCxnnVqBBMlo|r|f1MTWoCQv|3i5`d{5spWdTY#2ls_Hg?(AZDXehuorA-596v+
z^}lTFwUhT1sp`r<3t4^IL46;6dr*Jr@$&m^9ALh6lGr|I<B*L@HvY45*v1hX=a|iG
z9ObN>YMrJVfANmlIBug-8~=ojlQvGtsa(EcRntGUB%fl-_IPJR@~lu+Y4DeK!NyAu
zCU41JwDGUtfxoyvjCCiJNS@i1aFF4koP%r!B^_is_<dJ)SqE8SRcR-wTS_oNXU{1k
z9414yOFg5XtzO=NH{9jf3R0K&iee61xza%;2bCS{>~FDH)j<^p1eCeVX;dwvx&t_P
z+(AbNH5}A*kmn%Z!PO3~agcJLIB3zyzSco)hku4{)p9Vbl+EKhC;0^H^+Nf%<2nv*
zaB!o8n;g70$*Sw1^}Tlf%~z1#>>w0yi<~0oRtMh%X^PFPY^e@j{55%;tvS#g7!FK!
z!GZ6fS$0vk2MR3*wu6O1+HtTwNV^WMy=bvW{FRXtP`QH~2e~32Iow#zi5;8^(#wA+
zx++Y+W#s5#BH1WRcL>u34(d60$ic(x+99vd;dfc{nmH(PP~SlV2MrzE;qVzQZgcQf
zm|nT9@OJj)>vH>=)*l$ANgFw6?BFg3O&xqM95S2m5pgkQEpk|~xr4juJqPzVxIRih
z;NVc0E)}Kkb#R}9w;Si*?|?-D9uMs<e9%El2XT}pKkZ;i6Tj&3BGT)6=}jLqF3i+h
zIe5h3s~Q+^lh@ioTL<kNej?I)OlTVi{U>-E#(Qtv<F^-12X^EpFK=q$%G-R3J>lR<
z2d|c}zIE`Fg9WeK2QHb<JJ?^&dfG|$bDnYVEUnEpJQO|W@DF(t{NbGr=?fethM$9%
z9em{AV+XHLm4kO3yyu{^gDwu<q{leK4qkV#d7{_V!GrwXU6lU$FL&H1@9XvM8x9uD
z(h0h;`wqH0=;81?01Z1v>DQw)zm><2qW9z|WELGb8u9;+-r>++5wpts4nA<u%fW~A
zd3o>QOYV0WUdyM8re7-R?O<q>o*tz?iqhBgFYM#s69>Z`jBxO&gT4+1G9(=IW7ARk
za|d5I_)PG`9G4s(U(%n#>F;2Dl<x6jgUkFuYrTU}`sBk!gB%QY@L!Z3!r&J`JXAoP
zMIQ0_KZ`~>_}ak)2U{L48s%WLgRz3g2qp6y2hqg(1U#z7>2byU@dA!b_9hCLB$T#M
zY%&MY!Bhv|IXLFvxPxg9raM^XU^)HZV1|RA9L#Yr)4?z2^jVzUbm`R=FXbJ&>9ZNk
z)6E}A^WE0BT4&Gcl-ar6ob^$expHcrP|Ezw>JH{R_*FQ+30+WpcA<bpLaPiev$&YQ
zM8Hy^h0RL-?(k1kvCF}3j@l{vPX{X<tm3?2S~#Q+SYdIR-~EAJb*H}C!5XQx*1^&Z
z_I3yB=y?Ylgt=MhMxmR8>T7ix$zzKYw+h`R^!dSMc8C(^g1%EY<qqk47%i*Ky$<#{
z_=_QWz<lCK>r6-MZxPrp^dAR}UbJ}JVOZ3BK$r)G9uj)k!4UyRg;FMSNSPB3PC5u&
zgf31wIPKsH7ZqKc5t*_s%DG5ywazmC2<N<m3j+RSR(F%(xai=LaQ<WR7fuPGJT>U6
zG9`;~rVDfH|9V|YnEXg*nc}mXo0dG>(9U*I!39Bip#-B3n0!5>g5q51qLRxG#e;uK
zJD{sx*+p&s$CryLqM@qG@60F0RC56rH3V08v9^BVikii()N*mP;A@IG*Sh>87n?HI
z6?3k4abQ>(a&8dL=7DzAZRU-FZ{k-)UDOq<2)#w<twLEP<zi~Dq>rj_v||3@!HGhC
zpqkXBRb>rJs4djt*XMfaWP1F^-AtQ@@8bOl7D2@Btg{-qXzU_(k>euQ#jGk$eNmMs
zG+$_eQ0lMeqOcej3Fy+SWP@T(Ll?IRzFp`Y#r!)3^c`BJiHo~jv~$tkMN=2egkSfH
zveew%#XT<Wb#ZrbtrjlUeU)^L$9;?w;omRxfnu2l1+)}8{;M(%xp>$`D=D@X`iRg+
zg;Gz>&@zt+Zd1%@D`0*%eSmGfcSYF_F8mAL^<P?58{1E~c+$m3E<Segl#8cbbav6j
zO>TjvrOQ0y;#n8ZNipiIzv`lsi|1YZx6paP<=;aj;6<U@aGjXP%Tj#B#k*M+i`27g
zQOVa_yzZjAiyoq?tBbb;^l4?i;o?mf7r)Sl_0;Re=@~C%bfb%2(cgB#4<MvHucwQ5
zT=Zh~5yrbxi#p$P@!4MM^fK%HV$KHw&Q#6#kp8c2@#rm}NuN@ETzo=#7oWTM)Wz6p
z88dGC-+N7cT`V7^_j55m+a>ryl(gxYEPrw*n^ZEu#XuLg=i-iBeC1*gqdma;0S3Dm
z;$oDC(H@4n80MnQKL0BZ!(EKvtn^UU!$_C^(1FuT1(b9#+QoJkyE2q9LT54#U3^1(
zT#TauE~e8zm6QoCQoH;~F1}?j3;t$f>gt!n7j~v5GjfinzH>3f#kJ>CQ(ZJUmKyQ8
zL&~$$T#%|~v%aVE%PUkhgJL5bf*)MWcJZr=1ulMc@#VqPT+aQy?oV`4DP<1VW%np-
zrB*3rp74Km@r#SOtx8jd$9xy=5uae8i$$Dq3|g1}$ce=+{&4Z9izQNPsf%R-UfSy~
zXV;!_#<g=;i^bm=EqfCUE7(~wM;5H2<j8`RQoKD*ua+WDttkfU1#EP&Nn|!~?4B%5
z0Un!O{yiu@ZRb1?r?cBRTLo_uN+vnSPNjCZ*vT>4m|~;5T<mtS$HiYR_PRLk;snDu
zPQP@>-$y$)rv7&EkBj|u?}EH7<D6s6U@{g5g&q=mSm=>r-yUTy?VtFTt{ywec{fg<
zWd3(CBTf&G(+Bp&e=wNi^jQ~wZ%gsGDBzrn^8zji{kQn+!Y7<doH#B@c!~V#+DfK}
z48bLZp7OHD&+<^pOCqhbP;yu#E$1QIL!O6x59K{n@NlDtn><|Mp`w?BTn!IbdZ^@~
zs)wtDGq`Lf`IQA%Va2QxEb>?+{AwPm%P9ygl(RKGT<zf+57&CABYgW@$+o#lEf3du
zxGZzM@M{bGUR2#sESZ<9+$=a0TGzuZ9&YuJ@?d$eJt!VjImLTTO@Qv<P?oYUPSY>~
z+GYy>vbCg+2VXd@P){gLIuoY@IwV)2g`|=2W1%@hbA?{+Y=MV*9-j5^9DBjrTo3np
zxX(j<k-6Q&9UdA8ZYcCNq2q5VpjCHzXyoB84^2Hh_*Hn>&c+^^hzyG_=P1ntxA1U}
zhvvony9KPvRqCEANikZ&4&LwK0T1mww5K)?Ej>KuVSR-XX%7#1ctol^EVPw)hNoD!
zC?|2wqs5wAd;IUPnEW=vX)Cl$PU6E39v=7jk8(*!@aX8_Nx@GD{bqIEiX7#s;<LM}
zB+8%hFla$(f=(Wu_t3*bPY*AM%&Q(c3wTkCdC9}e0$veX?e4^?E+X)T$N!kaYl2@F
zN`+lLoFABY>@DGR6Uvz3@V(8D$WeH77eJYJJiP0nuZMmf-t+i3DCq6sBdJ0MejuQi
zPzrzOVTE|+V~GKBKJn0p2{}vIT%iQ5`cy1r{1Ef(XCA(gx}OWZ92Mk$>7l=H1{7-^
zSgd)FOu)fHhX@_&VVH+K{X<UA;ld#p!A1ptE%fT$F$KnO`uv?a*~1i>yx({jD`1?5
zS6&Fm3+AMr;9+7hp5)<MCWH-sr;VvkK60jd_>SS~qmz$m9;S0v`nc9lK1cbzhZ!Db
zdiYmOGR7<qKX}+l`#sF|@FT;?!v+sOd6?s2zK35u%q8t=K3Yfl*~2_(k(Zm1*#+eM
z;w9<PudOWbu+YPw?7oLZbjuC#QV+{K{N`b?$A5E+YwXM<bBUZHUM_%~KRo<?nVFNO
z7&%pUX08;@8lkI%t`;S;Py3ez)_Pbc{A+e*verhXGB=(!#NX`UosFqYLf^|S*y3TU
zhi%Mqb(E)$q_#8lozEiJ!L(3YDZkIB@NN!@hjR=z4}W>s%c1vh*uy6clzp7nn^XJQ
zWjbd|s`0keKOWqiG{FH6cOFiS*ykVgaC~!W{XeNA9*%lA;o+nQ3M}29YMzrm#<L=@
zyF>|!o$_#+bALzbtcS`C6)HdD!Kk5JwK?_Xfz;y%Q!n3BaDhYPp`4Fw9~V7b;;hL@
zXZrZhLkT~zr=*VzAKz|G&1|TUuFNXgHYZK<-q@PT^7;2k81-phX&+^LDAg6}?6V_P
z)=#W`W?PD!@;)l~xXMR0A6E$fN*|ScRP?c~UmkV#$w^oCQN_oPIq9lCzR5|`6+Bpc
z?6bVJIqB*?;A2^(QZ;>0`Kg>VX$>Fca}#j2kCEF_JZ{ZR*Ya_lpIm?*qs<%q>wVnd
z<3=B~rC3MkK`o1?Zt`)nj|&w`+CJ*?!*WMr-h^mAZXx#JEsyW0sib_|mYY_jNRH~G
z#>Wo%x{nP<Qicyx00Z)&+_dH6mE3fb<-X&?WfdR3kJdg)j57kC|Bl4JLqc;Ok&l>a
zecbLN$49P@d>;iq@_d}Q82@(4|Mg=0MKfpNT~0k8g+AIHkBjKx8U^I@AfKH292Ys&
zP$)SRxP!j+(Zt7~)A7npd5wHfxG^nko@k@;EgSOg^3l}CM}10@!{dwG^xZyM_-N@P
z?c*LF_xiZs#{)j@^TFmeUyP^BE}*2lA@4ySJ5Tx4LnbZkydlpx?my(?VIQp+Ja;?C
zHfO!EE|0>G_;{3@OY!*JG>cz-p0_YJO+V1XZG5z)%|6=u=)f>IntH~^O(m7beLU$W
zQ;A1M0Z;gN<U$sUPf77<5i^fuJXKqH*2lg~g_);wJLh>HFZlS==O04hMISHu7~*57
zkC!<dK3^I{A0My!IDfKaPwMf}*+&;2ulac0M>ijD`{+u1EXCtZ0dENHeX1lmZwcPa
zVLg`WPTw9&^$^<nbjihCoS)Ce@A`O;%G;IhC6e_9h3^Ys-47TZPdV40OWpf(!G}J2
z)3-kt@c4)!S~rV;GN1VP+{YI_KK0Sp2ZhPx(T^Qm8Gq*U!|YiEU;5~EDvSI<KKfJ7
z2)|Rw5(9k9FQW_;`W0j8M2bbq3>E`M)W{p=W4MnQK4$tD!8s!Q$v(aoFxtl$#+Bfj
z(%El(jP)^zahRJP=VQE&2|iNIls%bw&rMHSZ#XZD#fcod9?m=69g2O+33VYwFvZ6m
z<x5TV@f~MnUb=Q(I><{;^D*5A0gvwmkUz`E4?ceLvG}q*tqNu{u4ef^O7SO7#*IGP
znj^)zKIRD^=Vt-Gu)hL+6}mv^LZOsdB;bvQ3YG|1=3}{!rGlI0r76JUcOQTF=qSbU
zT^)j!7c*A+SjEl;Py(#>v4&|aK<NN$nWKCh^>NI{dQK(g79aok*yv-Ek6k`?vpYLe
zn|*BavE9cOA6prCr&G_Z$Roe@e7|5(!44m7Zq6ceCqphTO+NAU7c=&pNbT|Q7xj$s
z_tNv9mFB5VB{KI3hj{0+1(n~-+wUXmUFU$0gFX)V7?79daoERH0Y`*Gfu(ur;~YC5
zmzcVJob++Z$2kVovD9fg?QH7V|8mdz*qfI=BgL~d^CrFPv^kqP&on4v|1$qG51;c{
zg`r4Fff7M7f>{9=Q5gYB2C$B$$l=+{AW=?yVy1un`nXJhvH{8ms1TrBfb0POmMroA
zs_6ObW2q|wR19!!fLZ~r3{WY+^4?C30F?t&2~ah_RROx6NR`M>zfh$Ft5gf{DZiQ&
zpu?$Db-^s=j__Hmcc)S_z|{e+36lA{=x8#yJlpNxtm|l4fa>|_TLav7F{5^X8w1=F
zV9)VX9icZ+;9QEun*-DhkasFIu&J_qj(<ylZ%?H@JezyDNXjX%2G9Z&1}F-k2QUJ-
z0lWZ%Iyqx@CXJf(iMWDATYwY5%ul!I<oNU+^#{loKI1<O5C!<=OfJ0<2T4lF5t<vI
zQGWXGT|Vi>IetL^(s}`&e!8Gm7l(X$vVMRD0iGf=Ktpydz=Hu=2DqL6?BO(~o&a|U
zrrJ9NGz#!gewt_R3eYsbOZn-012hZJJOHh|M<_Ml9iT;V7t&D<IZfBar1u55Uur!d
zl8iBGSf9ZujfVoX=ePuTI6$iatphw(tn;J%^dkWt4M4zy4fT7+X%nEWnDk{cWoYx9
zc0rO`$fvf#%6X3mcp|`)0Xm8jR%w5+<mmi#o$7h)3+;a<z_T*YuLO85Kqp$o&hC%r
z<foqxu#N!}fSAMjq5xukDQV9P|7DK&48PkQIj;uj9H2{p*8;p1pc}OX=o;XS0B;7E
zd|M71WtZt37S~Smd64rq12Vun0cdIudcK)LvwH?Ol%M{gVqV{WVrD|tdN;t*|8faF
z2+%9Q@c<_Rd>Ej2fCB-B*HJzS@Ntl=l)nqmC%`8`a%=rHLt4NPq2%;sL&f+r0iOr>
zLco{B{Qd$42puT&D@J30>pEvr!{7iDtt<i_Ljw$Bqa8{U4;RT10Y(a_=Er1?3NTuV
zV**SP@J)cR0Y7Dym^UH7_?`vh1sA;-R)4#6uNT6J?BEOGgI^bXD}0Jg4lqUVRH09Q
zUC^R?>1hF`2lzg~`WnjY06zwp!CBL%^i1K*3h)D`|GxOC0pXH!S?+-FCyrW>Yy@o!
zFgHM%!N&XmzXq5WB)4-vGcYogU#MYE%-b#AeJu$1xDBhAt^+Iz@EbEpfZrKlrIf`S
z3yyDA3F0LIzB`>kz+)MeluejC{s^#Ago*#;B)vviK|Rak%V+PFx@!V#6q&UQFahg@
zZU}H$V614{B+Si1S$#`@tpQdnD<CG_E}hyTl)c*-U{`?MjL86hv1<YT32-t)*&8HV
zWcvbqP&=wxD%r!?kfCgFvoe}yZOJULpMiHtr5FS0poG(*0EY#Tb40*Vp~r;YlwIOv
zfKyCXxiE8aI>4C#IXTG9!P$V19Z@Mp<rwD!TnJDqMClO!ik~w>T*^=`2DlX9KdS2B
zlnl|XrcxpVZ?|}4gvt7gcgs973({F4&zrRUTl_L1%7*wo!XFXJg~$%EImDI_<wH~m
z@p6b)LR=A|VhAgQO+8JWD??NXQ8h#*DON2=S7xywU8<RLRfuXKt`2cci0UC8JmGg}
z=F|v*5V!L>w;_)*HA6IN>ZA(NT~7JehNu<d<`8v5To>|lNy+Urt5CSMRJlQD9igm6
z{*57Sl49SDc`TB7ONd)TJXVn0wH6knQz4WPY6vZa878;Wx=;c`0QK``o5fpB`lL<>
zH^jpsT7~dJ_#qmEXc!_05r!xXQ4}JQiaBC=9OBjEK94p{oi%Opazo^WAjlU=P#~b5
z&~`@?3+snCb=>!xIb90U6HocK(f$zkhPW@p9U&T@_UVcyA?_61D8$ZVeq+IX3(`Ex
zPTfUI3ertOG!sDFJjC6_xJ8J2it+e@^!;LIIs|X{+4=(<h!8D>`Q+z$<XmyWzx|Z|
z5Y0H{A84QVNQg&6JQL#C5UuIS5Kr@Ho7W~p+YnEL*t9e0MLW^(c!>4_ItZ=R%%NmQ
z!IYs-o(%CzLHa471Z0jr>Nnn)_Z*`!#0w!_46&gg%`QAI@xzFs8P^|(kMHzf3Q_r}
zU;CJEobq1{(U}4v#)jw;;<XU(hxj1G>mj;^csoS*5O0KN(WmrVA-WM9^WO|{v>^Rj
zQ>S#jG+oUl&tnDY9&D~d-oE|uyAqH+L%b7W-U<KOdTG+y=i~Rp46V7-E5wH(J`3@A
zh~6PS3i0&`zh8)tMWC<rv5#PO>XQ(e9r8YvB3mS8FW483_!l9*6#mE%{Uur$W?xAN
z4G=m|D5t}q5Q9Suk+B;VVt9z5#pB4aql?&)5yGLVEPfqgREW{ikuf1IobovZILipA
zZCr@)A?Adb8)8C;i6Lf&m=$7Dh;Kvu+}!y-#N-fDI7v?@6LV^qtQHBr6TpSxv=A&#
zm!58{lS4cs#F-O5=S!y({tqE$hxjQ3M~6M4he>~wzU0y2r+gYYj}3)b&ERJMgqR;<
zInxXEhgcv!SxWih$XqO7QHb9Ja5>CgFDZ^C|6CT$TgK3>mo)T;@K;H5Tpj-z^1TSG
z<lr`U`khKVKtShHa;-G9DFk1nP}=9MV?t=3w_fOm5F6zzM~Y0k?v@Z+Lu?Cie}o4j
zY!9)6*(}0U5q5^y6{19hj0n3!><Mw2-U#tmh`o%o5XVC73-LFTSTpC481|3Qx+nbo
zAvm*W%mLvXq~!jXjUE=^BSN3poW+XA#U7e^QY25%y~lmdsZ-+lKF9qboAOxkY>11@
z+ai2U=y?VJ(`?hMe~Wv>k>W7@CysirUi!^uPN#b5k`Xc^{<jXwMQFUz&x*iPWdxTJ
zT3RTx6H^UGGdn{02$dt0YUWg+6OQ>;M5q{H92Y_x@~(_9REEP82Ud!(RzQ^qY>omP
zg=!J1NAM#A5fGt9gt`%KiBL1b)e&k(s1xCu2-ila6(xz0+Z1eTb&DLP1s1Q1_)ZIE
z)Jrhkazlh0BQ)ud$D!xd;if1_>5Raeqok-G^|_I9YlKt;GlCUCiJ(R>#D4Zj6L~t2
zSZ7a9C&5e&Ow<fEJAxwu=Qk&j<5Edehldv>dpHDPgeXE`grX?f8;K(vX_1pBRdOQa
z3gESji6WoZ(0b_t;ZRk*2ux_Z>ZR*PXb|D92u&k2l(Qc-cbY`FEyC>)pH3!XjYK*1
z-znhT_Bo9OoU4~6lLFM=EJE`L_eP-2l?&5%i>iABw}_I2Mkd>(Jn4NDZkvSPgArOr
zct64i5z-MJitt>7P7xlC&?-V(b~C~w5gz3jo$%X4XiZNRrrGhwXm(+mon?U0dsM~H
zqPN>ecrwCM(s~D>j|=T6^a-I46{eHzqr05J?ed<E@Js}PXBi9|@(9?S=Oerjp-Y6<
zB0OK1elfx;5nh$LFA04)0#gb#@aP=jqr&v}oAT&qYIr?D*9hGrye$eDJa0rv)_POu
zTSAj!GpBom9-{4Cwsp$qh%;~ZjPOo`v4zQnsbO=6lk`0fI<HM9{9X}0j4&y}w-I`?
z(Fj8r?GZkX&?iFw2m>N~BGL6}guZlRy+jGqa=!>)O5}VN;qwSzFks{YM|TmhUFKVM
zWMG7^A`FT!Q0@m9hwq>CIej>72g~%K%&-W<BaDggjdX;Z5fMg4$*t7aQF4<rI>M+3
zhnhO%bUB(Ne_nmYa(YG>A7KI`UnUg&Jijoxd7%EoNBxNs`MkzWjxZ&{&k=r!Fg3z=
z5q^l0`!O~&jgv0IOlfO6=VmkKd%?$>I~xkqvnY1d=hgXYxn#_a@FPR?Zs#ZA&x<fe
zigShX+QCzlFTFNzeuQ6T6zZ+XTR;%;bt(Kt=Eaz~h1Yu8zgQYt8ev(4C4zbFX4e>a
zq{|sCYw~y(LHuWg6%kfOSjEt-sgx^Q;-4lCZ*f;gSQFu24pWuFQvLJRGLuKx5n)}#
zH?OdPQ+1TNRVcy62%92omg1HO2ey<TlgDMSjdQ#(&En1oyNDwkW&V$_C&GRTNBE1A
zWt7R|?+AMZ?<?l8;y=Zh8Ypv6iid>m+*0DO0E+R{u?UCP6rC1Ia9qF%p(mLbi}_`X
z(q{ypE#{nyaK0E{U?0~MvHHabmm<DPh7vLMZz)kBMn;U1G0MfDLo$UDloF5?qrxaN
zDfZ7R9ivR~*|GwtEn5H$E-&D+L#~KXF$S5eb*1pBq)LpcF-F7~8RM!L)na@cCriTW
zagwNSi19}TKa!i^8ga6G;88Qi)y4Q40oMwx72`Sq*B76y9ixt5hAu1K7~`fGH^-<O
z<3pM~*tjLetufli=nx|nLy3_SBR5V$S{16r$sGcxgDyoQh8e?(VaI6jV?h+d5kTw<
zaARCwl=cMkUYh(MMkqz{S>zE5hsC@Y`7!Q~@j#4%81-T_iE&qqLTRhM&?2E@j{Cfn
zH;B<N#%;o(g^k$}-iiyoL+G7C8^y>x5c3pem?fIVXcpt%7@Y6TrEZI24R;IRWVxr9
z!_M9(k`xY#k_7djoN5)LrGT{1hl=GNrtqnxp+{mo8l$!F+r(%a<FR6y=0)jtf|+b7
z$%EkW7#(B07~>^5^+b%P1w0w!DFGd%bzYdBk>ay4o{P~*@C!np7s}f(Dr7e=Ykpan
z-G#mq<JB0Q1$U7!cq7JZF}TWjU6@^kGUKuCn}Xkp(M`bHF~)7qx~y|*xy&9hdd7Gs
z1_SARp{(_;NWLeOe1Z>R^ol{iV%MT{Z;3I6*+&9$&z0;G<C7Sl#^}qwY)lP_(J#hl
zF$TmK7~}I8UoiM%sKboDMQKtVUl*nO$CxF>WkSD-vG!6tIL4qDTZ_^>E=#h?P*FQf
z=<B7F;f$^wnOwYo9b;6CpJV(IV|0u$F=kRHeG+4=2v1{wV=US4Pmb|qEoFR+2{9&e
zw$?7)?g3|#oErR~LxFDvlgS-`DKVzT*nYio%S+*RF;=YiKWphs7lq#o<pa<eY-MAL
zX8gbisiXWD<EI$2>CBC(!$oP*IfCa3y>P#C<8=y|^Q73SwKG3X-k-_LN$9UJ7BCgW
zSQO&|eON#JTa3jqw$Kl>D#p?nH9ciRjAb#F3tk=Lcjk~7E2a3S&~4)izP+nph2Z;K
zg;jX0;@(I>!DYOL9+tD~VyutRr{4egW$ULm3V)MO3U3zh2nx2*4>3;0IK>PQDm!BQ
z9pfK5Fvc$7>=wE=#vTEG38mx>_0#(VH@+>0#r=X0$2bz>fZ&5nk2_<YI>Zt86@sI}
zKOyv((BndRs;GY2*p&!BT0ea{#u+iM<ph6uVZqrL=cF&cyGob(>GN`m;9v3N#Tb_a
z{3ra39F)jOJUqLFLwcZvQ!)qaK5<qKO68z*&i^s>9Z**j&)W$2(tCL<Aicbyh=B{d
zH_7Jarrlh6C-iCq8&d6ny%#_!0@6E32azgZMa5oFQLvzZ1;z4HzbE7WJ?A?oXU?;;
zyR);ivwJt2NiNEy(JGDlwpKQca_OYk7pGA^jaAvWCJSuUE2Q~uwW^p#rF1ebmD5<b
zS+By9J@v!cxb3=B)ikOJv%1h4LRn^1MzMM=5mH+y(m1_YzbFmr!>mivxHOGAY1B=l
zK^hIyxGaqs8OD}q^{B)1spHwWei}^js^3Fzlt$w;TBM<R=uOgSDnLu4nSka(sUdR<
z1#>`&OHWE@OW~-tNp9;jE>B}(54}wqdYX^vaYdSOciP1rwVzU2yEIawZBd$s|Jt9~
zxP2NOSZ1F|+)<2hB9r)1(Nwdt8=EYahMz{jCepCe$fn_@lf%!9P)DfUHwmKnxL$!*
zoFs>jvq{4=a%q$@P})G0Mm~+jX)H;jQyQJqxH-+o`sk8I*EEKvF)WR4X>?DcZyNp5
zn02hMN1E^4q55ZqeB$3Tjb6eezunow_fHr0NrRLT1^v^A(-@KlLlFj~F_6Mt%{i)=
zWK6;!;SUyi$=M`afwZw34^Lx68rP?BLmDH~7?s9YI?S=c(P><n#x-eNo5odXFf8F}
z4&w1bhA0#rFMRJz0@&!7G{)7|Se^yQzp!M9>(WUS1cg(>8`J#nu!3=-@J&L$`=jKU
z(@E<SI6!GUMSn<RQW}%fcp!}j)0mRREon^WiKrWY1?|=}?nvX#G;T|S$=ijpMPe$m
z_m7fyr7<;)X=!}7B}E+u)Ykq3cc*br8uz9_t?o<Xewy@DqTy{w)b8)b+LPu(X*`_9
zH{YioPva4e5wypoJC6$1pEAiA=f<Q@q_OsM^GPX8z$!D@oirHQ@oXATr}0c0v(uPE
zbDb)z?Q5j>d|{H#70$dgHl8Y+cB+u{?}8HJP8ZH+L#GQDa4K;`(u^>PndG%d_-l9S
zOVfP45$~t*L7H(FSdqq|G!Cb+k~24r9h_omtWIN18qZTW)uT^-Qn)US^_=D<OAz<2
zR^s%T!VPI`gU0bPUss#b*qp}JH1@hNIkdwT`k@=|`=l^@+}xJNcF7{27t6fB#pHP5
z?lkrY*d?M~<QzX!NWT8Lxi^jdX?~gv`#8})H!s+lB7KR;PYMrG`A-T9pb?W#fiI`=
zN*eEoD602r8gGiuuch&N8gHa=gfrdKR((?VnH#gfm`@Xje=Ci*(>N+lRnd#tE=B$6
z#_y)VL3~fzVinr<!!$l(u{3^3<Kr|wN#jd;OB$a_E1#wDc^b#ksPIeyO+m?DaH;tr
zMS5HSCI2V<L>edADPKEHzdBX;HK#MZi$hOm{;rVMBNvo7mB#m6V9S*FZ%lvS^zk*0
z+8?zN%K3OEjk7W_e-!$YQ1a<H=hFC9RQflK-_kgr##^<u3oa@6U1r&zY5c_@{-p4a
zG&qUq(!Bnc#@}iDlg8YqOeTkO3w%6r=5N0*EMX+$eu06K2AX>@rv{UZAiB^<e!FWM
zfPn%7Wh7bFNcJ-|43sla-e8nYQifM`0~G~VD&|x+P^B1GHBhY>@BO|=D_Npdog~Ji
zrh!@_@FscmbCH3I4Ky>7(2+|FTxy_^)T(2ku7UbS5}9+EP_|gl0OgQV`^Ew$2^vUN
zLjz+<YYaOfv$0ffVxXyjZ+h#L+}yyBlBEiz70o~kDc@2Gd|S3eD@jtq^l~NI7`Vbn
zR%zFOZX`RCv;o6FTfyxNqznuwd*OQ}O7UuMpo8!`8hChyUL<tOn$)%`nkjr%w+&bZ
z|9BlQRVu+GuPO5jGLq{E%^G0&!R3>OM7Opq?HLSGO736&`)SB=@i!2}2xH_$u~jBk
zo9JYqvw<!~@^J8B1CJQ!YM`5e?o#GKp*;-rG|<aHZv$5vxXR$4WhX<~-#~1jui$<{
zxr=*kSit}T1C1n9Z=``i1_m1#A;}>^hY1}j)bU~#8*bpH2_1MXX<d5$#17=}8f9R#
z@L$-RV)AMO*BF>iQyaLJb~Z4@z%2&G8o18DL<5ryTu&Vg+-zXHfg25sJe9i1z&Hc<
zjn;|Z7^)xrw1~S+4)+8ZG7j|E0s5@#N^!U^8Kn;|m5lpj$?D?8w;H(3z#RteG;ll3
za-DweY+<h<`dzQ5tdbg?@cXif3*BX4s)1<+?j4Y9cP|{RlX(x52JWZMUfjA$$@}=@
zd#Re*Hu2tuz10KK#56CS?Zxzvhm0g9jlbQD<b2e?CIg!dJZ9i=15X%u(!fdstBfQR
z_9+7k1k5ln)4(hPPcz!zz+7QIV}QZZvkh$V;;u##FUr8wd6G5XNa9qV6-+)upqaeb
z&=wka&cGrAi>20bDX_%AQiH$6j8sg$mDc8@wPlh^utEwv(6}^(@LFwPop9C|cwYip
z*GiJL)*INsx${TK=Y_LTD8qpNZjeO$ZZWWxD~5?e6Wa`IH*ns-?*?`l*lFMu1Fsr*
z!N4v9`wZ+i@FJIpKTH2zPutBFI~J50tnc9rs;})e@KinR+%t+<Odc?B$iQLF5d$+8
zs)KZuvxNj4td|9|a5Spmr`J>Dzh>Zdy0?Mv47_3Bh=I=xd~V=P18*7l#K5N_{B0u%
z+GNF3gY=^YT2EK+7<gB*-V@5K_YHhdj6XE+k>HPuIgfm0zT(A)M(UJsjO)@YlfWFU
ze_`N+fs+P~(>Mmc;;ipjz+SLBv2=%$zZN0iuwNtfbKj<_)l!Kj2EI3N&cLq*elT#_
zz*z%7vdg{I83Ppl&q$pHA^1ruva>%6X#QsE7cMn(6m@uXuuf6GaUK39#YWj8%l~2E
zPXqPL<Z16;2LI9;HB8hr@wb703{)~v*-Q-nuYnRKE-(}GQn8(*^pYk@nV|f}qxBOb
zb%N58ywF5}0CLKhC@Z*}(DKFn3IZw$r4DC07F01&)kHNDul-Y!oL;?Dqx)2KX?lXF
zUCTsm6LqLqJ+0*pd_IbcOk8ZD&!vj`Tp}f@CzGU?nz(tUNl@3sWoF_wob1hhyx{FY
zdVT3>0}~BRG&0fHL=zKDO|TV;r6|@q>BVfNnThP+#H#D+7icD0m>6YZw277`TA6T7
zcqUq#xZFes6CEjbq~69vJ2oduUcr(#bkI$-6$PjRg|`=(v^<BNBSqmwl53mDm`Iy2
zOqkTUwz5np6JHKaOigcOb#nd#j)^J_3RrhcFO{VZ(-q76CIS=vO~fWb6FCz-&BQSx
z6L}L|OmyYSFIMVof`0X%4ire-O-iz%9wxdAF5$<Q`7t@?j-+}Cr#DS)qHpn#^`q%V
z>mB{%R-LU3Ffq`?U=u^cLk5|+@cP8D=`GKW(uWqi&2SUL%*2P=_foz5c!Y_OCRX02
zxP;FCHbr`+$#^{6VKO=nSDU!T#AFjwSlz@J6XQ6n(uJ|o1&-8pCaxzwlDfg<zZv2t
z6Yq`EDTkV~b!vD{%s$@4MB2Gy!2~mzRtM@OV=>9ZJ-rk)q_(%1poiaP;?;Tu%(|5p
z?pQ$ibb#As90~3+G1bIe8Lw$3rki+@%7`X+o4D7+eH3V-{2M7s;KZa^xboj`f~&y;
zLJ1xe@Q{gzi#d;&c(fQlX5#T;`~+RJw_=qUCT5xp_QPy3<1E_w&D7K4V{E0GM3r+K
z=g>rc%+VyK4)aVrYvR~6HD457K))KT)9V&W#ph&9=|YQ4EEW#&5)(^{@iG(3i}4Bp
zD}}ZjrLQrumP&ef)WbRx>rH%?!RHxlFd2x5R~24U*l1#ti31j1vas32788{$RJO2{
zT76Xbh0tv#wwu^tVyB5$Nd5Q)6R(@vUK9IF>=OK<P%?K5*h8^<O(si!p4x9>z8@cC
zE1Zdk&6lX&G_&he^IktD|B&P!Hu16mat7=&U*+<W$iW*XJ~r`*i6bW7H1RHl>@s=1
zC9S+8$+t}$HSvxglmFLL^Q<3V^=Hw0Cf+x(cZvRiiPAy*k>C%7?pm25XXLa*y-#V?
ziM%yQx^qnEXQCvNmjp3i<2uf%ZQ?5vCrtch;_xK?Wg7!Ban{6-Ccfe5Jg1-H)HrN@
z%QfdYo$tzh$CV_AtG}qo{9dwtFmYM{#hwu`YN|PDn)wrblC#Xj&n6o5(tqKy`JCP@
zh$-_o6I;it-%a#enL2Oc${?N^#Pfpq587d={-=qD4w=`j&}&aO|3`arO*46nuN7D*
zW8q&DC9I@J7g%ss=@(ikDM@ll2`Fu0R}eG#agf-mtc7wGDp<I>t155dvZeaZrAjh)
zzyiIIqg50>vo3YDDpukZJuLLJP}M>;3)L;uu+Y&$k%gKTYFTJ*q0quFL0sEH9Se0W
zK#~^;z1YGf7A_V1WCK+$j9GI3c>OX9^(+K4^(GeXy34F@p^=5gf*V+9Xrb4MRBorq
ztPketTU)6P2hDn6%<@g8Rx=AfZP1z22%gc~Sh&JM3&Bjb6wpd&Ym0H7Nf}-jmDh9&
z?<(!uEvlV`wibp~(^|JvtxuZdq%4rO7uvx>zMWz+ZNae6#ljC^Y+A6$x6sLgvS3?q
zExr_w44as#I~F>G@#OLPj9EHCR+3%9*tc-gJUy@wTDWJseq$KtEXI-Is=4}4)iqx2
zCn(aDHMM)gxU+@rVf<DYKl)W_Q5f^~p{s>%7LLu-f1IGYTUb_IE18RXS?FzHm4($7
z`dH{|;SmduTIgq?zlDhwCRvCrhLz$fj;6(fZf&52;TA?%7-V5E>pI#HcHaUUozYw|
z$u10|4QJ@H)2hiHv%zk2q=mIJ^-)4cvzteXn7q=$xEVUZlsWn}7Ot~!JuPNoj0JMW
zTA)1%e$*0rgD`Jm6#+L2y(||q>t?|dER46%E*EzbCiyhrWM;`I++*R6irOs}ZnJQ^
zh2I;hTglJG({nNTcUZWS4#O@?P|Me<sTQVLxLe#~y3jGd6wyO?J#oS$t@XURmqSoN
zyN?F3@PLK#<+O(^?AdKTXhE;4Eqg|PIu|qfurN6yk6C!!!eR?cEIeW1Nei<qJZ<4A
z3n$BIm7dXOSa__nz9SdUwD5K=zN@lEna{}J&g0y%Fx$c$3v;dHZ1c0jCMlhP^u8L}
zce!}Jg#{KCTKILm{%<ZO<@KB-7g?ZuCYN&1E$|L>1qWg-KQ|CBr|U*>>qcta4t*t=
zD^k6qcuW+pA*TOW*kNIvh4ozFS<%7<3(s5FD07P5b#D~Ut)>0)qPfY!tuys`QB1m3
za<{R36m#l5vqc?^;zKF5Q!KX2V&E=b5WJ#I0d2UOCbB?3*=OO;H7dCUep=sa;hi1&
zmYemJ8}$7azKi05e0<QtAq$gLvXUIO@Un$gf?u)lDpv-DI{abcGG(ExLOF#uEF7`$
zJ!hPSH!ZwHV>Z)1r+F<LweW$357~+^|7xS&<<itfwR^=Re$QfzF+Y{2rp-^0eq`Ze
zi+|d#9kcL>0OC&teA-xBxmIWLvts_lb@~?;j$8QB!dKK><g?uqEKrP33iw*+sV3UD
z#r(LjcB&ZH&BuEiXs0dw%oWc9@fize1rYzpg~&odGmW@iK0e2Rw(z%we>e+P>c3gI
zxT*H1h4Yg9U1-%N+8-8r<YN|K?q3%ENB3)^h#$OM{mYfSp;k(vv_c75uc6kknRbCf
zw?B$XD$ow(Tqt~kG6D){;kJs&m$#av<rOL@T%r<HD=Jh{jO|2Cg~|j_RTQd9*7$r}
zO<}_uYSk`PT{stYPd}KC)eGjITg_SupN!WpR;aB21#&JDTDp-&yf7bkY^o@Kd-)Qi
zbrmjC&=micU8|>1U!jpgV}%9^4^LF@=HpZOct<{NsQ5i$MNqm^+(e<NLNkTVH|v*m
zikmB>I>m;r3KiaNu664akL?uS-6?LNP;s-)tEGTvJH@RPE>~#7wiJdFuhVsfwhEmn
zN}(O)D0m8cR_pB*Iw;tRu^bq(TJI>-5?Z8?7C^qCU<!V$vBo4XrBJGQg1Z)JjzU(!
zRs0T&+S(~T+9{@Ua-`^=Y{Hj@0)<dOPUv4J%t%09=;=;z7cp;7g<b->3hgGeyFw2E
zG?D$H*;}EH!a#*V3Jo{weHE^4q{RyT6u+jZ#?DXmSIKhMy|o%3Sw(wI78tBR&lw`l
zP^xoWr*lj<7^?8-9&?y5Q=Q`xivMkjQ3|6KZdABQ;YvDH=lE)cYg95HuM&D+bBzM8
z72#tQ#t4|$IALBVnBaN=H_*;dOpa5ySz!{Lv!OO#VS>UPo#TmYu5(P2ax^E@QHz@-
zphH9L#|GLIg<BMERk%%Io2(nRvx>rI1s1zg;Vy;w3JVmbQl`Q~^dg1nqTcE|%m)<i
zrV$kGrL7tj+$a2B8fompZ|n5?IpQyx#Irib4~hlWb&elVV1bzmv&d0+OyO~rOw1<~
zo)j=grVl;;DTNtgv2-(yHr&=sds^hrR+vK{5KQ5Vnrm|f&lAciK<2YlHJgC*jnqPg
z=M>f`P$imZk-{>C<zlzR3QGhmRp2~gZkszys<%R6B@J@Wq=}eZC78+80#-EA)+($M
zf$N2C6uLp^^9rwaj@cHkO$x@^)K{J3En-iabgPmjw4t_L;nYEMhr&*U7Zi3W98h>k
zjPoLWm42wOTay2Fj;X^w8PlT;wf*9CmG+ukrk>ww9#lA_aG0hm)b_2_xlmlzB`$Z7
zdRgJKUFsE1;bs~yE>^E|Y2s3l;YTKMMBz=kijDC$-eMVrzZL#bILc)~aSMm{IC;Co
z_2=s4=juUY^}fOf3g1y@#du?UF<1Xg;d22WDSXTYO5x<~=BEnBxHuSU{&t<GyDT=2
zl<qx0!CxtK?-C!U&v%KxR6O8S<!9?BSW)3?g>MwTrFpApEID|d&OH@(2rR(;-uDVW
z&=d;iq{Y)he<brR^Nhk-5jbOx&Q^X>_*rt_-)XWgDVe|0<_iDbtpBEPUg39zMOCyv
zxP+?Ycb^UMnp{mgvL^N1OXmL+hK^4vGWjo;eH)RDyp0QNl(f;rMpGN5Y?QW9+Xif0
zXrsVJB^#A(lp$D?Drcj-jk1DU%-8Sl5^u<<3N|X*$<KG)gXXHI_2;_8??$SMl&NN;
zx{azf$YgnLyldFW!cx;lEj!uzZhAXKvE=-aQ!H?ijf<(q0==HlOKjA!QP;+$BJH>N
zI!pfgm3f(s^W`q2OkNW@s`@q>*l1{@k<Bk_6*RWdW3Em+P#J2)i=df}<~E9Kq-_-1
z(Ac_-Ha1$=VAHMG%0ZLDTiSSghEA3Esg2e)*dqIQg$><C%0_z|ZK+J8+KGBB!!6%i
zIaT#elgd+02OAxw7Q4oF`~F>I*bGpFXT!H)*-%o^v0=06`Fh4qzQMxgSf0s2GxV$t
zSByzz*tL1T6j6u3M$Sh6>KbK+He(<ab(pIcaELqE=xk#+$3^_Pi;aFPX``!+ZZ^8p
z6q41)PWHn+ZS=Cy+s5iSI+M@LO(?I#yXNS9rR4J2dd$vti3i#kB%A>@$YkNcHdu^V
zLv0L^tXU0J{ki%uDbF&@8ewCkjZrp6+ZbbGtc@#eu*@|!md(?zvT?NyiXz9#YSj5!
zJGm*~Mdo!juD5ZMsCR?V8>L0&azoB4EHlpL_FE&SCKGH-wDG!)H*8F@F_~^=W08$1
zHf~`nHfGzn)y8c$?z3^fjaL@wx7)bO##CB^!?9K0uw1{Bbsdd(nvLmF<{le&OK#co
zC0T%3tavZIYfXyahQEs*u<@XcCu}@v;~^Ul+xTXp{+NwNY@B;mCw^2os~73Km?Zyk
z$r`XB^^}bng1J4LX=9d@eA>pYF7bbLFI=P(zuP6AV`DCTX`Q~%#ykNFY}C9(J!^wo
z(D^oB_tP5aij+w%;M}>nFPn>PEU~fC#wHs}X>%LxZr0b?;QG0oqqbUKC3pqh;7)U;
zjrTXCSbepPH8$4TjDbvcn1|LSdy-eXs`YlVyQ72+Hl7zzL)PhwHl#M&*kWV94P$j`
ztBq~c-^PnJKQ)}_#wsre*dcVM&}Y}^6nNbleYcH0!r4dR0$854m`nO!)&UzY**GZj
z58HUz#vx9DwaM=eX)+KtUX>9cCX@6vNk(^=M{K-l;}08ua{cFYw(*sX6E;5IWgfNh
zF^8#+ddFtG3f{9(V!Qbv*Mw%;`|La2X`OzKKMiYitCIT2#)zicFOGJ9BkdC#pV~NP
z<1^N3qJ2SW0!q|VOtLyF9=GwONFaw2$UJG|Ya3^!BwPQ+2D^WX-QS>pO9!i@zO(Vq
z8lBAVxeC!m8)>I)oDneVK*DD(CI84-VB=>Szt9b&>2o6LSJ9ku*dniH6ZG>oez!ru
zx>SJ5|7GKUHY#LLF@wKt{Az0#WH52H{ts1Mt^X^O%n}*QJ7|(qGJ{f5pmYXhGANtD
zg&7oN_@&n5!;2g#(sCJ;m-1wOy-Mfam=!B`jVonPIRj*HQ3h2qsG31d5yfKFGN_S(
zwMIYwctQ0H9$BYzXZzA)1w-nnTA4(v+LFrx)coQMF3F&t)V)+F<=4%iPBEq$mkFjE
zs$D;W1{pLI4ka|ofLgH(F)KFBpjie(G8mdckER99GyK{!vKfZ2L(8B=1}!s4XJD*S
zjO1yRL7NP&$e=a#X|M6RJcApWs%8vM$e?Wo9WyA(pj`&33_4^ma$V}biY(bagRk0Y
zW4GuZoG%$?wW?PXWZD(Hye@U!MBNbiCS_*8q{{FkKbkH0h0S^<15ySHk-B7d)H-F*
zIRh_)#XWRCgJtbCUIA+f&J}Ya0ePXU-X(*s8T8|LZPmMF@a^%UZ}*wKGU%ScJG$1m
zt=1z0(w-dIp8Cgb5_#2IiuIu#y2gDoXtZ0gK>rNh+-LHN1q{ewpnyR_!>;jQa=OMW
zFf4=N8EnsBM+PHkjSQw{FfD^o8H~>0dYUeSDcj8}IY7PiYcsft*4}DfEy-&#cyhg7
zuvBN(b*oZiG8oIguS%_-W?n~g)mH>JW^hvmw@58!jmzNX493$v?kiv}D^AE@lE`6l
zVg^awRjJ8rl%u>#pV&2KlC9jD!EG7bE^_Y7;EAsB9rV)s3Yf(LcL|5gEvxkD8Qh)0
z{0tUka8CyJQg{YWW$?px^S%ro%;2F6?&l_RnNH3FndCQx_+h$q29Hw?XG#W-$+d1>
zie+jn)_JiEuLMssS!_lIGc%Yga%N@lw1C+eJR^W5{{xgT=l>HmFN0?@Ad?c<1Vt^(
z;JFM|Ww1JfMHw7etS_ZAh*pawxkNOll2<L&muL7oL!vp={!gEkBJI~V)tU^}X0TQ4
zzfLM{$l!U}QySs{FC}lxU{eO0GuXm$T$*&h^U>7WuJO)^I#r?&T9Vf`5yC1v>D3v0
zlHv0LwJU=cGuV^CUM?NJ+AWlahr~vqy7_><FM|`OFZeiv{cJr0o+rPQ!P^-e&EQ}L
zhcY;v!OL{xD%z0@E~u!zlEJGPyhb0}t<HB=uL~f4gQHeKBj9!2Y`y#e^UVz2%HX$Z
z+TpHonF`uFboFiK`*gNKMer`|)?9l}m|t~OUrsYW$l$|danL@>fXUAPD<U2JV2Ns(
z%RkNFScdP^T+T@Ka`noTKBaw;!SM|GJBXd+km^hJ%RvPPU$HwGoaA_YRCr$K*BN}n
zxt76q(mRgGsSLi);KvMpVu6MF4;h@vpxg@mbS62F=k?|){Va{SQ2)GZTz0$qS@^#S
z{Uw8Q8T{Tg<_3cgDH=K2ZyC&bJef*!_$(lUKQj0;gTJ_dJK!GXe_Z^zusfKyRR4!2
zTBtYg7MF1FZwB#Vy;`^U@WzC5frF9`PEJuyxA^NtdT9q2Iw){Zh8^q{-?L0-iyYzx
zO0lhS4$k(}`Ox8}ZgE8il^nEn(9S_+F-21c6Z;fYaZuGkH3!ulT<V~Xlbl1=a8TO;
z9Mp9FZ`WGO0SAjG>i2ewFLILmf=e6_U+jRR)~jrCzPg}Wyro-Qm*(A}H*|2B!|;35
zckq+k2Q_f;8a1qtY-RgSP>mck<|uTF|LGQ=s;D(_Kw4B;Yv!Q2gF*+IgJyNq6%JZB
z=vbs(PE*{h6SS0ME1|80F5ITtI7vLurXz|waNWVK1Ll*}lD%unL3;<jgRadAI<T;G
z{Iag9$U)jkPE=ZSj|~T=1IIzuf#sk^_gFa?v`sy`CiT}VrtKi(fVaBj@ao-Mb0wEQ
z+@1s8urHaQ_m&+_;2?C6a}YV`>7bW`yn{#A>fIbn>K=D;l6_id2VI=x+_Ec$bWgT1
zZugkUscltv2VXbUdN_EzdtBI9>rK<`P`g^Hz7G0uh})=T-IH@da{4(qzsn>T;9#JG
zPqO$li$M+sJDB3&76(Hd43(aaX2q>KJ$#rXhqHt2wGl!`3T1MXfWO;mS30=L!PO3~
zaWKI__ZHgR%e8AA+~i=KgE0=q(g)~!EwmdP-00wX!BYzrIZIk<D_5uscj|k($2Zd_
zcj`~I(#AUoj;Z&$$EUl;uPs*-Mdl=-6h7I(uvQvN-s<2sj&c?)v$);C9kh>wZyns}
z;4TMS9Bg$k)xk6e&pBA+py?_#-NBO%o^o)vgL~+Q4(@aCpo51v5qiY;J9xkWqsr@a
zR`+z!2r92q7i#KZ2ah@U{fnYUsG+7Fr9Z4r_@_Fl#~nN&b(zcSXkOj3MW5kdrh{1y
z&gj~Ag{o1H_-O~E3miNnV75?l<_MT8bRJDDV7}02+G#AXP%r`QyqG#~(brN#2TL3*
zb+AmdUEyG*faNS8YOkV~_K4Yfw+<S?YDumU+9<Eq(?fdb&pX&CBe+4j!@l%xS-@ds
zFE&YMH`5QlOggpA;hPJ1%fZ_Yb~xDSV4s8i4qo6K>8W__=ENz+FAC`0BPM^3;Jre-
zX4C<P|0k{vapF68$-zMfqiM#Tih8nxjCg<9!K)4kUU5+Bi2?!!`M>7ibq8-aIO5<<
z(R@Hf#jFQ5>y6qaWj3u+M;*N5;JAY?>1;jXcbz0s{R5%zIhfodeqSgf@IQ3$k%JjM
z;*TACF5Umc!KV&5OsjjuQ;w-)4nC6tETeZ!c8Oomo%WdoUvcH>k)Gd4o#2YpUB98N
zMtsr%>DLawz?LMx<8s7xGK(r%eDB}~@*Vu+;541V!LJT}<I?KjM+d(+;Pc;~I8C<d
zl~(FMa{-xV?(Y#lxk&%4M|^umJI8g^)tawNacgnj!5<F(<U+C4{GEQXQ2(_@%mx21
z2mfQm#d^h_ao>e{gPyU`Gm-Ew9W{%BEJ|c?0hL*$m&_(V5T&yCWP;waXMA1HxO5hk
zSEk6M%re5SnC066D3`^vl~n56RQW8nF4Ze!F|B9JGC#dw@~5p*HhJ{S)~jZdyX=dy
zxHyYySya!WMmABewlq{Ti&eYKT3G}cZORFA21DifX{v1U>woXs)FoM5nnmL*nq*NY
zn{2e|XVD;wx>;P7#mS9&J?gw6DLK1mys>B8Fq`~t4%u!t%7V|k3HZo+^Rh(qrdc%4
zqA-hQS==*TS-Z>%3w5^0-_3eOnnvZ9>$R5at+HsH#r0X-kj3R$@c+;9S#-+c3R-DZ
zs$&*KS?F1`<^Q5B)!T7B$!P6~vzWgs#fR*#_l!GalkFLk6?U0VG*;;>R2Fs?Mixw(
zLJ2I|@U^5sMmV8RCyQ(ru3#?<UjTn?1NOR?P6b$=*V#j6PO^w20SqDNoJAMfEsKG|
z>6%4f0o{al&!UHbo>}x3&`Y|&0|yG}Bb;w~#vCao`$@8Y7O{Zax+jg&&V#bJGK;IS
z7%XNVlEu(0h6x^?#RvgZlKX*?S&Yu|Q{LJrVLm@eFVQQegqpqLt3@X9wK7=OWbyH@
zMXWU@i?La76LOsl^w?&Ku^CL>n8i(5tfZf0F)oXnvv@3v$Fmrp#e^)s1djW%n3%;R
z@@r~$XE8a8DOuc^O`bU4B9!1(`oo<j!6h5iZNj`==p91Go=Dv#U@F}}07bFzbit!6
zbvjb_WRs`oQ8n%UY;uhDV3sHF_^z&cfPT^|-ef3Nc{qzlvfy6jk^ScXYO6;DckY$!
zUY^L}$t)Jo=PPPYWif+*e$`OT%wkqH*_q7Af{&q}X0d7-!86(9!RYM7M9Jgn_La1e
zz2dpq<a5DjuAY^;tUh1BpY7E`k^G!cHnB*+;w+XFbCwENCUkigD+H9Stg-OwEY@Uk
zh{n%iExk937qZxu#riBZWKp_EZOh{MEH-lbRM$3Vu}SK(?{Ak+sx!`Ei)1l(t8|%Q
zdloyS?r#eUC}C$dId3F*F^k<<9FSt&*Q-4o%8mMd_G`V`o5j8?Xg6YZdG$t}55!-}
z;$RkEty6_t)Wj~T)ja)Wx<?joXK_@7yh;;g@kSP}alUj>XAYRJmP-PskH|2+#Z`!_
z#~yQPD@7(PHoBpDCyRHp_%Mr)5*Nk$^qgMt6=o7gF{xKv(o!E#$!BzGvb|^e<185X
z!6b)xb+7nX7N0TK#U2-*XYmC+#D(MHcott~QPM>z7hh#@B8&4`?475dq^jk$Q(WW)
ze4WKN0?7PUz;{B~1l9W?i!)iA&Ej+x-hPu$(jTd)exy%U)qc+67n-71{8JWhRnU(0
ziqCQR{iu*f`oGdudc{XIMf_V9q!jgg7Jrb>^>(c);i7$4^%rfM#orv+1LnV6944rL
z1Tz?e9NMkz9Q^_*$-*^y$E96d=%Ry*nZ4rz7iC;r;_`<EWnJ7|Nvq(ZqKk5F61Gv^
z<+pa#htKG(d&iYrRCW`EYrCl8qN<DPE_UuW84~c|0-d*D)!gJpjL{S|gkRG|Ef<W^
z>1e5zJ582^i;G;a{KahO_M{?XZ~S?B9T#<7Xf9f~xXeX87lm$eqgUTW12>tHO(ogT
z1vP2xqLGVR*QXxbZSu@H=p8q4F{F3QtY%V}<(msQ(oXSygw|{6V&M$E-yXBAi&idL
zyGabs<t`@oj;|2h#>FGg==OM}yGd}xxIO0cvy$@dT#%-Owin8=>*#_HS&CewUA}^p
zL=D+4dhIq%7nTbpRxL4EG2VmbJ)PB<wWfERb>X_0#713sE_@e*skV#2Md+ftiykg=
zE+Q9QT<{@C-eoXVV)@Q2JVWoq@j7VET$eh~J3iQ6b#>8=!(^yqsl@oyyeD;VF~Ch8
zaPaC)ZHsXq7k!H{gRGd_Uy`v{^}q51g)>O#$GzjBE{3@n<6^9f;VwUbtc`Lp+QkTt
zNJ}-+#g=vIjveNfJ?csqSBac!UHsHLPE>8EuBNN>iLY_7ZoW>yk^1AXd7X>vT}*JX
zV3NAQMe{!KO)kb!;BNCq)~&8pd|toVP2y(;^@+#RTzz6<UJQt0RLn#d7dKQj+N&up
zZlPp1dG2tli`(c?E@snFIp{9#b#b4IJH-PZ>=REF-R^Sn>7C~IKJhdc(_Jj?lLYhJ
z?Is~QyzX)FLZ6u6eisjLntYgg(oN>$gDxJXW4L%olH@e3puOEECU{ghkGWvKn0#E4
zPq_RzuwwEl7c=MvF23y(m+BkW?;8`$lH}7aXbmRkxR}e?vEN+jVxEg<T`YC6%*A{+
z342>8lwg5?4<{?)=UgnJ^1>OrPAw78v2V<*<t`W|w8F(NYgMnl@&7ug>-)xI%4w9p
zN?KVhbd8I(0?4Nqt#`4(#q(mx9YQy{*yLifV48QEfGt9|Qgil29`0;+!2llOoiv?`
zT~dHiO#kJ+=;Adgw%5fz7cD)s^042<0ZwfX^*y{qbGbO{;zt*UTpZ@;xH#tGWf!lw
zc$5C-;#FCH-k@WY)m{_K<>+-z<i1IeSnOy==$z|R&vM$^9P7SujamBpE{?i*heK9T
z@lo2lTrT>??CE>b<=fv-ACM#daMiKYM=m~@t@HYrKyc@Z8k3*7c%q*Al1sgS&s}^W
z;J8rEYtBIyIN{=yaEMR3__`Q>!%;5A-*I*`#;l(D-o+2XJT3H$Q2q|mpPBoUi=Vli
zdi=;UesOWmMF|fVc=(meDVKt$^?&Ht^Y!yC{^#Ov!M_XrL+GDE|Ke=@rHIAO^^N(9
z_F#F9eY9(6|GKEqFP;Kb(nBc^<vf)4l1IIzg%$|CP$>U^fc!Fo%X)Zgw_>t_$G;l}
z!z?S4@1b$O_^%Br-7hBK!&&mHNG|PG-9rs8S+p<nP}4&#4;Op5#6xW_nG_d!$qGrp
zXpgU(DT1o=bsqO|gK?>cx*iz4R>w=iEc5M?=t@37Cx_B_irBzILl1=>{#maYQ3nr8
z4wxMGCLWr4NRE9dykE?Pkq;2Z^oyH&;BN}~+}&wXtA)_BH8lnww)Swjhmjsed1&L|
z3J={pboZcpXzRiDknzyYL&}5cCC?%m1=rq#;ek(qJ9uESqfmk(0coLZjyiKpEe~f_
zrId#<yUl7xlK3}nQ5+Ah2al~()v{jlGfmI*X*yH!`EMr=frrpTPB@WJX0iKu!FTtI
zne6Q0nSOB>FY(*1LJ3y)i+gzJ>0y|M`^sv)JoNT3*u%L6dLIvcX_>OxAP@aK^!Jjb
zb)eAL!vF!~aBpy+-~X+&pY)6QOC5GlLp%(X(fsYJ)F1ugn*Ea>o#7rvcwmxKfK89~
za3vd+@x98!)gC5!nC$U&DqQPfoR>Ua=QYN|^~HFsfa`>|=^x)9;8Ghmdbmk2SIhru
z-7LxRLMM2bD1cdSZdFq}+#>EYjlJHe-|FFZ4|j0j7U;KmU@$P3{hu#YcY5G(PxWw@
z2PQlISu}sL%J+}C_)qtem7jC@ZuU`J{a*TmrRekg{kmUr9}vo74|;g07(Xn4!Mcxm
zc-%vuZs^+$Pk4CJ!?HY<=kb(>86I|r*b`!=hglv@`#9s{X^tJ8+{Z;eW_y_9;d2jP
zc$iD)@vzgw3m%^JFyF%p4=Xv97V8T<EcU>#dE$j0p7XHC1Mh0x#mNI}-ia^qu$26@
zsbyYrKfc@p?|gZiKfHf(ueZv>Y7ZMcJWn@RsIOt<zeu~Sf4tTMj}$0sy;Phj<u`iR
z<YBw_f2Y%%J-(p^9!k7A)#SY%!B!93ghR|ziydrktIm@I-evFd@S=y;SeJeGu!o)9
zYQF4YuZMje4oY|S({xLcQ;q{3?mVFLRGIiC5xBm8e8|ILPCC8{u`<<pnn~Sw0`Q85
zSB1&D>7A=mZ+JN3;R6pJQf-c!hj%=@%ZV^Sf7`=R0k8FsdGF77`v-Z{xia;hmmDm-
z?}14ghX)AX^p8LC@UfR1O&s&UUVP%=Q?68TTry6MIM`WAV9C!sbckcx^SFmEJ^bsT
zgr6AaD-Yj!I3<QU!AVqXv9CRRBlugPe4BuUzxVJ1S8{qUJ%K9&T~Tt+dg!`T|B=&h
zf!;ZeJ5M(Wev;(KI0?xAMT(u1v15`a66ZbqEd_q(9Hd#6>VFFTOX%J@>VF;%ylC=u
z17<Z|sQ=^P(2CUUBJBbn7y2mhlUgNx^k1o$@=@APjPS9g{rGE986RbRRQ6HDM>*-{
zq9Uy#eKn5D`>5b2CsZ5b_?0-W#4;OnzW(sFNUrLmx{n%CrJ7K_P(Yt4F(9t#qm~br
ztX*7%9bxifAD8%;;bW$cOMTSwG0MkiA9a0P=EL*h`>5xmKDG7H-bVu;4Slrq(aJ|7
zAB}xzK6nes9b*&rqN>L5@1{O_@Q1)hbM}rQ{nfQXKiN|9;;L9<K-|K|GgY;>x9VIE
zTl=`ePww3=_mkzZjgRiNG=@y`PDl6AmThg)+ev|BpI=#H$qqg``mlXud=&ZkZf(jG
znik5W;p5Z!I)UXw36o7T*|?nMQ0H<Q&k$SzSz4@-B4>I!xh)NRgg*NE=;ve5T9xzB
z$wy}&k&iq(6)EaA$kKR=+Qmm#A3dqFDBMkG4^mpJyf&&qQZi>Ily{fCee_{RYHC-T
ziuXakj@OC%`-s_!kHJ3Xe42Wtb-@5116gvN@_8z<Kxf1_6&vDXgs4h9)W@)5JX`>8
zQ7L~U$1X~Gaix!|eB9~dE+1F>xW>n1A5(l>>+|I%+~i}Nk7YZ}u|96}leZPF^Kre;
zcj1%wILPPkIO+EvCGEBt5OcG4vyX`!yRzDNp%bLhXqHY6uSvpuyRvqRp9GTK>L*7-
zd#Y*vT6LR`N1oMRt*YJbgY*ue{0*JzV;Zx3JnCb*kGna7m9+;cwu*L-j|aq0i0`GF
z@f84{pC(rK`^mWknLMxH%O))UkdKF@;=ERh$s22EkNMbCReQq6;~ef>a!j<PhDOel
zKAw^+VylWai;KU{SEcX*J&+U1$MZfm(*8c?`dHy(rH^?&p5?eVR7-unA%z7#miQ>F
zrtRmQ-GI2qY<(d;VYdF9&_zNQ`xqcuXWl5{;T7vH6A8<G@MMF@Reo~g%xf(tOEF#}
zz?!1SUnh9I&<#HL6HgBz-Q=Um%jR|;o9SBX)fOLHeQfjb#EKMsso4ROVDf%*hYxNA
z#|?;$BDKrMi#|T~@rlfu-9GmD*zaQxCz`4DvQws_l04u#;NvA9@A`O;cJ^_|$15Br
z@#MokKX#`c8xX%NNxCt|?lqaAM}@vF^bMh$wnu!tS&ZKj@U~D69CP3C!NW9y_x<GD
z=_4AUSNwrsCO;IgWI%lK?Nt3%>Qj2Ak1sjs>}f^y8GokBYhU<yr@HpJj~xTJAS*_x
z9p}1KOS`?fI^pA_k8e5dT*v0<U$fT(;%_)=T=cpm@!~%Wh`HLF^6|ZoAJ|q0#Uzy}
zH8AFsr-o;J{OIHT03QVS$;Z!h%K-NT_{GOLt}_8L0e<!I8#M`Vae(tae)my6K!pH*
z`1sRD$pEDS{6*n3a-sGw*Uy15qoe=k>T$FF4_$qSBKWzvDiI{n@65U&NTT9TRZ^t`
zZ0n|o%Lcemm<0jK1Ylr%n}PA`ozev50)zu&7EU7P15^r7D?sf4l><}}fi;CP*uJWO
zY5}SX7(6g$l^OxwXsRW3H|u3uD+HJz{L5PwuwANpNq|cOv<`52fI0!{251zZae&JL
z)C<rsz%sU;kDriQ^+j?67Lz0;>>3z13D7h^^8kfZzO|wenn}OdH8!fzwgcl9Qjtl%
zFYwdAxTPdp31zW10j>zpAwb6fx-i=XNCkXrFR@s`prj+bN>@$<wlD5Nk>nZy%pfs!
zIslDKP-jp~9W2T$)Ra&H8o>#W4KO0W$N+8tFF>CFeFOLb0!j$bg{Cep-$_6&KqP=Y
z%}cK-iWgPtD&y5HKzHdN73&e8{h+v~@Dn`;#oY$Qy(HON=+%SbegXOi7!+V|fH=Sa
z;SUu3*~GL#G5bisF&YwJXn<h>hD$C5lD}Y3{GY=x$)1i1Fgn1b0Fwj0kcg`STo>T_
z09Oa#xUdWd?wSDCN^(qqv0^c1?H&}9zD4??x*@>L0mgI0yTmsJxGBImmVZ&vVx<4c
znIL+y#fbsV4vGnAged`T32;Y%I|JM*Lr<rrlJtSw0^BYf;<AI|y8=uNFkM=w<NasD
zX<}HuQBrSk++lEhZ-Dy(YzeS6!2JOp;4BC*Kfr?l9t!YVp*AbP!vP)%@MM6e0z69N
zY|x(w82X|;CV0}z=Hmheu28jGYLB+m-tD1guw+YZW`N%HlNcCH)6SnvJssc~kvTiS
zoB-rMR9TTfSC~xB6Xwz9)q(&E1FQ?MKEQJU76n)yU<KEKlc~i4me6!{le$TCO<lE=
zlSMea3RQ_?DTcnRq|Ny>Q|PJy^9mJ{Yb3c=D3fzqXso`0Q|1b7BRgAJJx{0FuCA|8
zg1z2E{a2{XoEL6VY+Hcs0bUAlFu;xg-Bzky0bUHSQ##J_FNkh)J8HWF?BR@Pt?diI
z>eQBn_eyT}!SVh82Lw~*)q~^Puh0$!I2_>B0IvmjS=4w%RC@Hj0vhn%j@q=r@#|bn
z0=z|MU|$BuN5o2RO4C%5qDr;Wjs|##`t(rmihLF$bL-%kBl4c`cNVG-1AN4(7ouN?
zk2!(?>W63$;?n@fxDtja2=Q5f&jb7$phSo-0vr$UBbVp^Uk3P!Ua?6(E%ZcyuLY2E
zQUKpmApR!6x03v>IQLY5?~Cyd?8V@i#dw_&=2@Y+S50z$=9*7W;IDu%KfS{|CxCBP
zoe%JPfWIaAN03B=F!1Al^sY6jKlv;0{|PxcI41KS;ruIYQLzg`ln%jom69P!h2R@r
z7Y&K;S)>2FNpC$QW*}vm5PbEcYKUqf%7!QxqI`%7Au5GQzzNG&lv;0BQd90Q86iw&
z<q%aQmzaU9)kD+>aaou|fz}LBzhwc7)eccBOpL~>S2w=k1TuMDB;eu@mk7ADm|rJE
z-C`UJiP>&FX*XS2H4M>+!b7MKjYBjE(I&(dVe;x(Q=yvBW<r~XC=|e43L$L~qGgCy
zVG^U;I>hA!oAf)5rI<BjNKAV5Hd7D5AhDtl#BD>g6OangUO<Ns9YcJuU1u)Cs&5+-
z6QqS>gvmf~P|PqHnx}@uc8E-fFhnkd6M}a0Ltver4dK$Z*~Fxt6h6MyWEC1e2*Ed@
zZfv4OA@U)5hUgWdQ;5zXx`pU2O>_wnU7;Aa%;vg=nD&bKU%QmX`05@U#IB0E^$zjU
zt7adm!alN7V;XAIynl$8=Mo`ig%}WGV2HayObsz8#NZG&gt#$Gq9%rf7#?Coh@p}s
zXIPko#1M=OF^bj*agAh+7J5~PD+SctkYbsn*t*oU#dWU>F($;=5Ic_-F^e&@4Bogt
z1cO@$$hj%RxDb;={@0bpn2MW2Obn9`B#sZ05Q|IqnG*ysu(qG8CUNq*YSoZ<N{CxR
z+#2FGsdz`2L|;$>1>Vjf>#2zElq`a)*QTb0m>%M>5RZqrJH$O99t!br$k&{4A6+y|
zq5<#ckcs|p4v8NS%p~J{s48=ZhKl^}hQyDAVC2c89G4Cn!4n~#q;ITNGuVr4{FLxZ
z4~>b*WW*7}gq~)9L#zm~GQ{i<b3!~vKW8^X%nPv~#O89^vmq`W8qepjmeW2etBt9o
z$Rt=8Vn_J|kS-3fq`bB?#4>^q)gLKfv35h_<sr6K)Oh{JIbTn$3b8uG7V<-^39&ZB
zCi;9&eO-w4A)XJhQIh98wL!oSbrf@#zF?M^q<0<~6KoDKa%entX#Dihcw5NV&+$Tt
zl7mX`kn#jO6CrBjP)3sIGXu4Y6SIYSkpslI!Jc~BS9?S33vpqDf(ZLV90*Y-hq^hu
z6yjir|8dAd913w*x_p*1J;W;^KH-8)Pv)R=;)FO#JT!h?#2%5R-$*JdGTH8%A>N{W
ze8uZ);k*;#y%6t*cvtlK-dBGOjV~G&e-Pp$F8d<kL!qsQ#mub~CLQ;O#mBh#hxnRn
zT8PiN_=h-7ub_MM)K4`oSaU@IZS|E@JQ3n#h#|w`$-`oHlW~%&r=HuXz76qR$PWVG
zbcj<SzUKt2q*(XSVKFVkxJov3Ch?X8Y`aU*daV0nh@WIwe-80$h~EVNBJ`YCX3m}J
ze2Cve{K+NvkplVy2l@|At4eC+u$c6(5W9!P?+lCSA@u)$xQ6FYE|<*Ze?ycIKzu<C
zC37g1L+KnY6lQ_YaqTs(&n!@;xa9Z4;_^9E$f0HqwQ{JK1IzHLBA`+Zl?5<j>IYj@
z6<kedb)hU-L%_cab)I<h0JC-ul*x;qP`pU+#X>L10sBqzFO}piht11!sF%a@Ic&_K
zehv+Ce6Js4a%h-CqZ|h2k_EPL4oz}UIoLTg&7oNiZF0CG2L`qB{gLJr^--$y@VJnl
zWn^cE$GlqP(6Sh}%As{JzC4FYJ<=?ov+u*>j=AI!20_~#KR%FfQbGyZ=g^@T^8km%
zigMuLd0MI%LissJ@-3l{EY>qQaQTgL$Wz1Nv6DkKhqL=lUakNy2fvsT<PZwZ3FWUg
zi}5w0PC4|*p=S=AbNJ5I_SREfa_E`^v$_fGE|lBRzME6Ma>*lx-nry4eX~8vA0GF~
zB>}g6g+pdP0sV8}H!GPOAav;Pn0QbQgT=f<au_LKXb!_T3OkfqnHru;z6mfwC|^zG
z)0t6HX0*^Ng<d6;Hn}>7YXtL|8pmsF4%g+dGKV*x)349r1~!_*^c-%?;U-b<4th%t
zH|LV`)hX0%u|7VB2?B^2FEp_jPs(9(G3IdJl1n~CdutB2<&qa7ZkObg=_WsuOa7fA
z{4SwWh0+w0bnR{qP!98Rcx0u1Zw~k6@MI28vBlvre=P3L!C0X`ki&xl9uoR!4i5`p
z)+0GE@NCH;llU=VKAyu90(fvu<_x;!5}nsf0ei|_I4g&z1wWI+JOQ(d%ghllSLlZ?
zn9mB>T%=fi0lSmKb2%)^VX5?baSlsz$?lrx=iI~7IK*`q>C1|3vRuFlp|s&DvH5DD
zYjRkd!#ei5y|zI(>jg9U#flUo201#L*tHx!%HiW2w&bvtQ?HVGC5LS}Y|mkT4hM4B
zk;Bd$cIU7shZk~q%U8Q{crnLqvwCQFvd}#z^pKaVa(g-SJ@tK@tvz*u9h{YG)oW)i
zcqxZNIULU6U@rN+U=|lc@{e3m@Ny0(DkgQAd^LyH=oLBeIp7iM%+;g3_C}81D$y80
z^p+%#3VmBBb9YS8-^t<K9NrVo`#F4&1Eaf{#aNoXHMI|g&x0&-KFQ(J9RA4R&m4~B
z@L3M0xO%WJIebAiayXg8@f?~TPkoh3w#{D(CE&LmhVdE4R`cr|zM=1NZc@GB$(D81
z9<yF+#n+~Yxug4Lc>F^Sr*rs;1DC^@ToOgRV3jJf!#pdP`<5RCa0UJ)hjYZ#<cp$T
z+0Elc=V|#biwJ&`B%Qp}h?tzZBjRgTCBb`t<?v6APyZ3D)Bl&l-?=23k<Ucvio6r&
zZEuMP7evYHU`&>bP%1*{DCrC1#@mjF`EojOnFwVgd=lZ)2<0M_kMLB484)T(s2Cw1
zp;LrP5h_P$6`^&6DiNwiXc(bUglZA0N4Pk`B~h}yuMzQKZUSlwC8#B!c9gsq#w4$c
zgu@$$O9`55bt2S_lD+FSd(EM*nwLeW7lEJ!6ls0I1Puhxu#F=$iO@o-G>y=VEw0nG
zDA{H=k1%{h%-8EWjfe|bW}8VSKl;J$a~s?;!Yw0Win=^Pn+Pg`9pQ=ydW3WYgL1~}
zZH0D-&`toq*pQ0wWn0xg!s8=i7U0z}LXqSW*KMoV1v7#bVf~1h_?p6Gf6nh<WTNEW
zhc_2d1Sdi^0`Ixp2+Z<DTQ5q!2toDuHbD>}jIec^nG?#JHDbEi;Sq7?2wfuF7~!S}
zT_bdhFe1Xp2;Cz-AVB{JafF@`dPV3PVcwTTy(9EtTOBm+JV~1$FCwLzF{_^x_-~&)
zfTPCUeuRMn21SWy9v=}8mL#{(%pEFt7_G|O5pfwWVUCJ0I>NOP#ze`!_ev_<R=YaF
zRT1cuEKp-)e2p;4Z?HNE)gDW?`LgKx2-gW9hLiAbpbJUh_qYf*N4Ph_eG$e-m=NKP
z2zQD~6Qg7zQ2$9$5*N3<lbRfXbP7jPz^y`W6MDN)=C&Fc-xXnMgu6w^v<TDx>*nzy
z?&oQl>6v6_&Mx001*rM`5gv%}M1&_fa1kD&$3}RRBimkkIKn&9HDZ5cJnneWV=R2U
z=y9<CyG(q0+X8;EeDKJaV!NzM&5STB!b=ejMtGV79bs97<(!El<Jp{OubPV^%!x3U
zBf@@hB1FmFhK@R)?T(BW(wK$X0`XWfpNqf`cl=j?PW5+NMaNzeVX4&O%JbJ+eMN+o
z5kJ&}tr1pnwswuzL|97=cc|47c*nYGyuMCm-18AOiXX0zuz?P6JVn3dmSfGx<c*TJ
ziMC0KZKiASn;VtXHd-~pixGAUXGesc;=sHy=Z76$pz!tj!ft982X3v-@_VRN1ZEwG
zu#eNQd(64qprOVt>=y~-a2Bu^hoa=B`xVY*0f)IXMVPkD<n8L)3kqI~@H#boL%l1^
zHzK?hCHLA#BD^V!*c&5bRzEp1IrMm2vW{{huTH%qm`n6~5#EpRL4*$@d=%m12wd@A
zS)+!o)wwt)wOXkf+srzfQ^z8F#z~roo5$x7zTncAN2NTDbNWX(7vWcG7~w>O?<4#W
z;berbBYw*W2Ue&RFPq;)_%;F$`gm-`H&*!T9Mx5)s7#@HetB}rckOZp8)IN=?WYK5
zBAkuDVmy4Szf%1ef%M;zF;C%sj_^yA96Yj$bCLQj!ubgQMktX_>i!<#&j^1-_=9S+
z(Rid*YgGKd2!GREE31EK>QOP@qdCZLR1~Uy%@iBGAdixHl*yxP9;Ncw{7^xS6K3f=
zSSF)s7v{kv>lWnk{zOGwE|2ng9NMN=$R}#t@<;&>HhBv7*vlp*SI(nK9xd}|l}FV)
zs^w89kGgqOr<^>H$3=P6%%fI5IYO_UPo6mNY?<HT;UR5iRC0uSaXvXVA0Ob7d~#II
z5Bpr2M?5O#0}B?uERTA5G|QuT9yg4N>*vuhk4AYk5K)xLGCW=;VBN+dp^4C@d9VpG
z3nkei54Nl2@hByCQ_DuhyGA9a#I5tVJdX}}bYyu^@`^n4Jg5W3w#}oRRBxY0N?PR8
zkpCJzy*+sfz_aV3JkoinJnTF=@p!qLGV(C<$vL)_2ao9A9TgL^%b9%g5X2FI>>!_v
zd@DM5dH8vZ$zyCDK^`HypT~f_Jpaw3d!C<lLX=0I@@cC)UaO&X%cDykduHo=^2q0p
z1YPsVBSL~kCsHSu={@tw{=82fukiVA9=-F)2T68mYI7}(kFoj+pIQC#Ntn?8W9mDg
zr6``S2~Q*_N$`S#D4_6`Jn)3YbqONk?##~a&dl!i&O=biIX`k%L@^;rKyn7jk_ACP
z(4PqtU<5HMiXuqT?{@Kj=X~ePsdKwJS6A1h?&^#L`K08t(g=ER=y!!WM({`kk4MlY
zf=&^1j^NRV{twIlvs}x>e_Qivg&BNInEaW=t7}C6K<^g8V~tB(=X4iNs$Ag4R)L-o
z^or<z-~7q@^@6;<5%i1TsR*WWWFr_5!I%ifa=2eH21YO}f`SMJMKCymA<~{>HwU=l
zYp9gK<|Tg2V->?A*i$huN@^Jq!I}@kBL(v>-e{J#-Qaf7VqMj^2*z_kPK)pp5lo2i
zuz)cC^i38pQRpP0)w(LKsczO)aXG=05yZNxDbgOc`RNFriQtt87DO;Df@it5CxRKQ
z{Wasc2wsTb#R$4}RnJE-xvL_RfB(5)p6#3-(N5b4W=1fJn!Lk!nJszQm>t0!0US*R
zc~MGpBbeSI%wOvB1k9)K?+TN%kXm{&Z%G78BXsYhSIjPEH_zlPt`{cdztLq8ERSdp
zZ^RS=f3t?Gg;zzeI)bYvu9;X9!P*FZjpDZ`)-fe@DGD=+^$~1{;MOP*#l{FW(bh%q
zO$3`G*b>1(ng!1Kv7xQhp9pr)ZnO%#MxCr2*hV3|8tz&-urq>P5xgG3-UxQfNbx~>
z4=2kuV_{dt#RhE5K6dA>@cxM26Y&NIx>=Zc*-ZuyMDV8YiMh)9a0G8f@Nop6&~8}a
zBN2QM0Y~#_1aGqqT@}ZI+24uaf1FKH)G^i~;C-Q79?S$EMsQ3NfC67rBm5D|DHGuC
zk56S-Pe$;01fNB4oCCKi??eQYBoqAJRWZ#M5tO+l@D=-hZ}>|JVP~k-nGh*oigRM&
zQxTlzypH0=D87y0Oay;La6W?XBKV#Xj^MWleu(Hr4nNa!c2fjDM(~qxxUrN$GJlaM
zem6KP`b<s!oo20@cCkqO2j^4-e-=iO!(RN&f#7IHa4mw15&RRu<p{3OP-L|uzDp4t
z7-H~WKPii47V0o_{TtDrAc{n_<o~1cl+?4&*cdJvMX@M~N5PdIIZ@oe1P#JW!z<WL
zI~XJ=8P(~_M^Pb)Qc;waU>Tuhh29j!%>tN=27$C(R4?ivs2Ig9QB;beauoYY2Cl6S
z_phi;#I^gvoEr2i$bBwVqNp0heNlv>xGjp?qo@-_-6*O>wHdiHio2qy5e!$4;tqnS
zUIx#dGFKMlb*&YqHK-ZYOB(Kug1A-`wFR*I4Bivf7K|&>xwVHDAUBG}Q8bAn5Jf!^
z1%*&QiUv_MjG_^RV1+wv(%*2B-Sip&QZDi_qG%SS2RXf|q-j(y^7)!>Kcjl-cu*)o
z^C(&fUbivKU`xSVFG0+ODECLvMq2etnLs#-R?@HD-Bjx+xW4GqgQ2!jJP<`Y>BvJ-
zbYM#avtR9_bPT8$W(=QNg1demW;2e2B0>qcEWwH*7RC4|CPZOJ5s#vK6g{FyM3IbY
z_ppz%x+vTzRFu0c;R!Px#V}d<mZF>&8&7monW$dP#V;+d#>0M8?{4cD#UoMu?IoYV
zZYuvws8bZ3h4WYx+!(&An|d^glS>U=e7oc_Fz)_i`Yus)jp|ir#NDFc+B0s=V|6{F
z=o>}9D0)fxTnpDbiat@jOO8$$xL>S)6j$4~91_LQC<X`~D0Gm}!9uwbk7<TUGsa5e
z3!)ev#R%by6v~Z(ta?-wqa{dBxz)EBV+3=R+PEk_?54PZjzvw3Vp0@)shm+vW~ZW9
z5yi?Vo{VA&8y3a%D4vR9YE*yIexB`@?+;H$@l2GfIKtB?%%t&bRDYT{+f6+u3CQ7R
z^A`j+YOg<8ycER@b~%cLoI%~y%qZqc?5rqeNBM~<JSVDOvgjCrd0&<?SsF9Wqn1Xw
z07HN4<`;N!_#tIc6c^ivmqf8Nip5e6KeIDxnc(G81>18yJ*!(4#p)=wM)6t{Yob^i
z#ReLA+W#nCje?(6n73wkU0sXrYCU_}NwIu>*51SdyQ|Gn@UwriyV?@fd;i%0(rr;}
zk78F8yQAO-8OH9A+F8g>0sK3#hcc88IIl~O*hn&&;EgEuQ*EO7Jc<L<lPKP0Gom;c
z#i1yUL~&F~I4rr|isJe1ir?zlB$oCzs}uhJgs$qY7PAWZF~O4GkK%(UKH;qA5KGsN
zMe&i8h7Mth;$tRwP|NC#?)nq`XHguF;zVJ~Iam}Lhk*Zd_&w?i8nGz8kKzYO@KqGw
zL~$yLucP4CdlquMyE;wd&(V+KI}r}^cIco#>9eO)82*pozW}EEky)g{#6R)o+g*)p
zAO3~Kir9<yP-mGviib@^O#BhWIhsuql}!A}=})t4qJ*hkG@Os(auio+16kvUFs};&
zE>eF4T#BN<X^_wF%vYnhM)PhWZ?X1C^=}mQml{P({6}-NM*EwJ6&Pn%8AVOKWVg}8
zP;pc9b4<OuxHVVgE;VYdFm5z)vx&*{<=sP-G*QY#X%l5kH0z;mGSP2^!9wT}nyy7?
zG0IBbawf`~daZH=Q=5^BCK{|X*ea&9dZ@}KZY9S=LlZDj#Y9aLwM^}vqN<5%CaRmb
z&D2e0mfKCx$u>8W-XSHIZ5_DNL=C~L@#GfcE>n9onY1RaTMxy?*EUf{V((@-+l+fm
zZN9ee2#xNc>YB(kwX2zciFziUzmdx-6!+NH7tA0HS|byUO@t^A6HQDQCYqZVvdm~I
zWwJea?6`?l{DjK_R~z?=#3-e}Mx%wKWa6NSmV&uf`91;k?iCjBfQfb{TA65VYIodi
zOnkP?Xe)i}vo()<y1BXdK~sBlc}Sx8^|igkvKJh|4knM$448|Js0q{LzgKK9VVQ`T
z7-wR<Ntc_5o9JPpr-_7#q=}9u9x>sVa7`!^SreX#l&L>)XH319IV~chzcS)a*W_{C
zFO|VJwHD<|)vTAb^B%#i<(*7)HqpgIR}&k1s7FmaCfV6|I&6R3)ZWgS-SA6vlM)UV
zFV>xUyIHFl`#X1~(aS_{6GKf5Gtq~`VPb%Zft2bJqo2tQq=EiYAU({`*$9Ia>>v|^
zDLqp=9_Qxe+N+FL))+M13>KIeZelb$Vq$~|-b6;47-ix`xwWw+|LdW+w3yCPxOlru
zJj@P`HNhLr=^ko=iHRm&HZj-4Bx*QiV&XaKp{U{%6Hl3Vl5^*3kfLCv9E+(Yo;LA}
z%on!gat}p+IE<Y}ZSScFo;UG=i5VtlvJEDvlhaMSWa8Tip{A2U+&fR5{Ck65Ce0h=
zEEBU$%rUhex#NdJRFZ4dz=?XP`8*TzO)NLD!o({kD2;_C7O`Q=jRmADjGc>&#Z(3p
zOHC{@(W@ZLwfCf)AY2l^ZmGe0E`2Voq^_D+Yhs;=)u#4Sw}wF(&;~sfrxg>o@2Obz
zt0qpr8)ofiw}&^H*ks~!j=qV_CbpP(%ft~ATPa}^drZ7;Vw>269UL+f+oeey4lW?4
zs_Zhco1CrMLCuDVA#U@}_EdXK?4x3vIB4Px6Z=gZpxzc3^u@$hom*;fr8*}REfpJo
zNT$_cDoIa8A+uGyYacba76r#ld}QJsDv62rO?+VDT^Ww|#Ng0Y&<J#zYw!=_GpF)C
zWC=VDV5t^3N9SV`pKw~4I8JTZp&w2@Wg#ndo2h1e8aZL&q*$KkdMb8@&w(8GFHL-9
z;v7w}iLXt3W8y~>KT%tj8mBn2CeBbe8;sK;go}H^--+gb&!Le*SUABCCKl790$ul;
z_{GFo4(lR4wY#k}XlZ|yEWfdYMaH7>;ol{e3H~s_QveA5GPR$dzfD|VgE<RKaJvW9
zn-6RkP5fixk_nC@b>Ol{gTHL9nBcJP@2MYz82p!JpMAG*+(HoxMJ;$1QWlC?C~hHO
zp`L{t3pZG(W@+P4!orOfDq7m<Q%MV@ER?nI!6JiuG)h~z$->jC^Qg>a2wo47PXXR+
zX$9jJ{&JF%%<=*%2>qs~y2awF94bqhEVin}<LPzzykMb<rEN7a>1~Dl+bzA5h0N*}
zKct|Bg*z?%6YXwG-_-76o4?MhCA6jmca?Fer=lx{+LoSr91H!s%|ac?QujJtotJBY
zbC6N>Ei|yu+Cm!(4K01c;`C{1@sM|v?WGzsV=qM=Zeqc(KpVn|$$x6iSha<FEi|_f
zma4f&qlJZ_g_agd(~JH><30-^iyn2t6AH9m-EZkrB>3lrLL*=cTUpv$1-sDJ0+s(^
z3lU2nUGad0b{1bl(B8sB7CKnq(>TZa*f3qrgS}ME3Hn%vs0D7=iHXE0F4KZ#>3ebK
zUaFv%vMsu$MM5fdB~4N=OK>c`^MZiWeDG2uZ6RY}u7!CPl!dH?{uZ6t>L+&JLKh2N
zE#zD1XyFm|Zj<r2w6>Gr&O#rx@EA)N5@zhQUW)YlnkCqzZkE3P_O#H8Lur9tK6+SS
z<5?;1+U#j>O27iedv2xCN7RWkkwWfgfg69=<$)FkS$NXI6bpkb46!iA!dMGKrAGx8
zhFchB>6^<A{@>xoCF$cx3!@~#@?Ki=N6WzN>7`gQgX1iWw=mJdBnvzWWP-#}X{lp;
zf0=CI_Lbo$B)hf5pt+{Df6_}mWnrp?7cER@J1soJ31Z<nOTRAt-b;PFB0S9kovU#6
zJuk)bSMLj)S-n-&0)6AC(p$Ym30RmTCC?N(%ff6C5zp7)jHY#>Uo{$>hP~CxqVqIj
z^DVq$;dKjpEiACG(84AQn=LG20t>4wthTU(z2*S*Rx2zl;}lq7EVs1VI(C-$!QOfg
z(MnddM4Q<mz112EYpGNg)=M+i2_3z}nATe@?X76XHdxq54gWEZn7yOisJB}zY?YKd
zISrQ^uL<5^VVi~R)YaAj-jR3pR;?H5X~l8hWnni}R68{V^?`Spk9%uRr~53tVc|Us
z?_1b!;edssl<E@WO$!I9nN+z6p+i#mVWE6_WJiAOt@!xC!jDj@eYC*ew(t%USo*Qy
zU0SMOfX_~pB%e`P`v(?2wD1WP?{e^%Xa%3LKDO{t;Vhtbak5k9l>Dcn1DyCLES$8k
zC5Ejrd~V?jPQVyC#PFqsuV{H<xHE>YEqr6)Ukm?PIAvjH-M|kPezb5}FoWL;I77{>
z9r#Z0_d@AFl?xz$vhWK>$HLDPV;@D=)^yPN8%;+a#p{BFvlf1*3Y`i4K?~ML{mtn{
z&8G_>3x8R#CE5AH^v~QK*c%Qo<3$VqShz$z2?wrlRvr$KdD+6l8w`T07OuXMcdanj
z*gmRA3`Jx74TN$r6pQKVN(n74G$)1|1eA#3#uy(mRh1fHrr}jm_(gfFz?o2K!DWQr
zB=lyX5A(~+nNax{D#viEa4HC`7{e_wL~8{q#q>f)rkT3UfJ6~ji=j#kRb!~tHgKCH
zxLu;?M3k}Yc=Z_Wi0L0;3|4(rGw+I_W(-YZXvSQm5mh&a+!$)dKxy9{!#y#)vd-WS
zEcykl6Vt+}a4Ihlqti<?is_$0^<&z>DX#`GG%Q|>pkX10GH)D1lNgMc_P$H^_%r(`
zmOz{rqi+p8^sQssg=zB`LIPR{4GL|^@+Bh^@LJVJ-7oyGP<l;o71Il78Pz6+wlO@w
zCapKx#qeMZSZlB%x^W|IAJb~Ui$8)Njv*4mpcn>Ij4_xobc&&K3|0)WnD!W~Vz6U+
z^qm-70db*;7?J`QHKlIAW2ZLcm3bqa7I~&(*xyHe(MOS!iQ!KHEG-+Ow@>89&`}B}
z=Mk2FDM&!2C4E%*-D2n-!($Z4<>2EnJiRfmOH40#=qiQt6a)V3>k-qx|9JI}p=S)e
zB-lHKegfF>J~8waJbj2x#;a6cH9$E0D>qOEl*}RI#IP`iMKKJEp&*9IF+35&@EAsL
zxcjP!F^r61R1D)-QEp(g(6K`4Rc{Q1P)GlT=Q#_c<Au+Epc6RgZ->aCoF_?L?8}oe
zOo?Ge3^QYRiq$=?o{r%e0aJx?5Xqbtqgzo-kKtJs!e)#Ok@>tNctOURK~8g0`o@1r
z_{1C6g=YzVIfl70%oaQ+1|BOw2f0izuQ25+G0czQ+O}}fTwNXexFDu~j1n)7VMz>Y
zVpto)Qc+0i<f<5!30_{vSs`Gh=oJ(2S{(yD?O(_1Bz8lLuNYdTd99aT5Ns^uY!a|p
zC>I{Q7Q;49JsY)bY>#0_3}<8bov|_Ois6$OK8;~_40~c+xq)|Lc%4%(Mvsnqna4h%
z1aDG31n-aGfB<Vl9-VA6>YxM<#c=XS=x||rI!R{K5eXipnr#a+_`ew5jp2hBN*oQn
zC(WjPct3`4UqzSK)OMaz@L>$cV)#hXd@Ph^lj(W!zcvq*_$-ERVmKAU@fc39Qkfkb
z$1f=PL!r;9Bn|Ze6Xbju!&kfoPz~DZpx0NCp4P*GA7l6_hBGoFzAv0F-*NhE4|AsQ
z`hgnWSD&Fki$vl7EVF~H{UwH9#pe80$f+|f^hXTmXq;`7xAA8Tf5lM5Mo}B*sZlXp
zis7<kxe&v}m|pMq?HPS^!assJK;-BHZfFvZhW-_LRSLf*n6{Dp|6=H2gb9k-C~l*)
ztxYSh904VS-XOGkqwtLaO4=x8>)QeUT{7kEbpvH=++^csi7hLXw+2S#*DBFD9H2R^
zV55qSsx~Ux|7U4$u~A8IWgE8&=uWSR^fE1&*7df+lr?PJZljuw>cY80D2+K2)A(OE
z*LMo@E*rZx=8<39#@#j^vbFuc$3`6+K^rY?)D=!68;xz`+6dTs)l)qi^=&k;@mFoV
zxT2x0Cod-^4?P*QF^{;3a0r^)Fa$TX(ac7kjiC>=yw}!uRmQSvQtA?E3rWTV_t^;9
zc)&(G8~57?+h`+AZABT@)Lm%J!L7|(VM|)b$$j-kgSIvn^i`DGgVNge9Pzcr?!Joh
zr&K@bt2)?t*ha)g)JDQa(uQfnvJtoSQcRW^vtir%loPHr<KPldy?LwUU4}=cIJQ1Q
z#pRG~HK@S9(^}RHq-|tu{OjUBm%d(+wNWOCo09Nt<TGW0i(t`_?O`yEj&XFd(b>l5
zHoma&sEx;LJY!>;jmK?tu`$ZVXd7K^bYn{{1q*C+x6#8!KO6mp(^F_4p}lNuIvVQD
zG3uk3m{(t0Tej<XfQ`X6hS(S=i3izW7u0+I7dup#!))zXmFd}c(&54!A#|iro^?Y0
z7#m}4{*K3FTR-ZI<LK82Pp~nbjc*&^K`p#PO=Q*U!Z-9&O~!|wu<=Tr0FNS?V$&O~
zb|6ocrZCBQ$_D9F8&3=1h%@*sN7lwx8?UjEHeRr?$i`y&f3PuKhH`<8mu$?CVS3rd
zOaZfn&XQTf;p0r4W8>&Lqk2EZ;9MK?Y|NK5uh@FQ44K-){LU~BNLpCfD&AR^aKvrx
zoqm(hWj0pYSY>0m1Xl=UEQ?)jV~qqi+WJVTwW5&ggu^vLuX1V&-XN56V=k7@r&a=9
zn}xrH1G+uL;5Hh68;5Khwz0#;P8<7e9I*9K0=sPN6+pb(<_#{q$Hwczq3tD;*FJXK
z2G{uz&si6K)7EbAkI*^1t(UsdS8daNddb{dHjc2J;lRg2j|zR?#@jX>|7!mKY`kmZ
zJrN@x9m%0xN;C}<d|=~44%5!?F;O0JKH}WzrwBNppGfvkg?>hXNS5O^P6+3uP^RQl
z$Coy~vbj_V_2c;3#y8X=&V3uFY@D|7i;Z8YJd^+z_>B+!VB?I9?>Ia9sfmX|-_yF*
z)e1)XqYWnD^^=XCZE%?-asR`i-)wNv(Vs#I&I<V5#veA$*%+4_Ad^?ix`DqW>b#A=
zrAK65uyK*|uAd_Qr?7-eHZBY1Dn#<Hae~th$5Azo|7;YAqf8t(#Zfe_4?f6=<Aykj
z2`(PjPljZ^Gd@&8IK(C6nBGs_7}w9G43>)PSyMU=3Yix<?Apz7l#ioATz9r?9ObT;
zRyXi!KgH*(igC_UREq0IZW`Olaoifm8ZMZOqYY2RT5pg!c$4;cOnh4$x5xFPLT((@
z;;1h8?l|rcK>l3<Y6!hEu8-#+vnGLXSQLY`1#|4~5x^T_9RYRYINVP$0k42?co;#0
zI2y*$nvIF0Q5=oqXdXukcA-YNNnFqOJi&(0rg8mX*(?qY2NT>YJ*CQV1yL}r&#DLs
zZ7K9Vp<nb<<liqiEcDKojaC$OAWVMSI39>2PI<=Bj@|5|ctzuQFpl<dJS3cm(DN)O
zjzO=79*%?eDJCo3Unk~e#$idC7)LobU{f0X_3>EOW0P^D3QKn4a0PoZj!eM0kd7l0
zhZ4RoluuAu0X(UJY527H2#tRn`{OteN9Q;mjbmmUv*LIxj>jp4IQ>zh3kAp%sp9A@
zplcl61d!Q1jvf>p<<?&@$lZ3Ny!ym3ke!O7ucYiJv_CmBbnF0%rN5rAgM~jtC=0os
zcW7KcR1go3V+6Ys$Fw*`#xW|6uIs{+;}|VqoX{~s$Hw)&lCiYsq~qh5ApD6!$(baD
z6Fd>elfs-L^yxUB5-?RNWdgojlkz3*S(*j<edRO}@SM=+g}xy4Wo~rk?!P#AbD0s>
zC$I6QGjv$E_U_Q^IOfE$F3zufdd2U{aV&}JC$YJ4%!^}wT)$xU>8}>W^$XN19HZKS
z1)PcNjfHW2Y97zbq9!bk>*ryDrEx5aV|g4a;#d{O>bQQ#Tp8D|+kB0h++T6FQu2Jl
zVT0FjINk`Yz24f|f%Q`FYjJFgV}sz0acqiXvtTx9ivYfp5^s%b(@n5FjvaCAiR-t&
zogBn<#%@v3U4rNLSL9Haw)9u8$FVoAKV|HbIrWBM-etJ@l+Ph=#&Ix?pW^sAjzgTJ
zaeNxbXK}n0$B{TbkgEA%;b<JB|BK^o0q+Q<%^{Q5yApgaj`t-!-=N9-Fpgt!{XqDU
zH0k5GUU|r)Qa%xpvU#*-$KyCbImGde%<+?~x<%ki!Jo(Rg#b==n(?nhJ$Soh-%rJH
zI<C*Q`yq~R1$-y;j8O7#IINF~`(A={?fzpSzxUD5FLC@DN09`ICh%JvXF1SuTo4`j
zJ&r%)_$!V-D55t*=i>T_?mHe*Su-$jyS`<dkLw3H-oa_>F2?bXDCE^RE@?BXKJ2fq
z2)N8-3-ZXJ_2#Hui{oF~e@?(U0cr~$jR;zA4;M?Icmkypx|W;-Zb;~}fl4J%BB38D
z8m~1<Cg}fMV_wWitD?vKP>5PxCZV59c;n_;&9VuUOJHvT`w}RhK!pSzPoPTz6%)86
zfd&aQOrTN%l@oL@j=K_ih54-sR1-jq1gaF`sse6HU~${<?Sgl;()-t{CvZn$ni>gx
zKq{Hs5L%O6Xc5RwaK$*iaO3U-zM?mwW`Vj1+#|S7LLbq>H01N36YfnT4kS=dG7{Gp
zz$}dtXq-U11Rj)%nk3LHfxHBaggy?YDI4D^@L%gN8^&DsCU9Q@A<5f3fffRoASiiT
zCeS;mE4{z4mNo*y3A7T>I)Ur;Hj%cqP2d5FI%#m@8*{Z!;GqQ431kxJAhpL5umwDv
zKqP@^0;UA5gg&?Br~ZnqVi(xXxbO*F0f_{XY$redC&0wyGbO1f!IW@1B3xm7SS9q@
z^^OT-6L|j1urD3SPoQR7wJV`T`iLaxB($@X`Dg-<N$|a)VeS}W_O1zZWA+4INT7QH
zJreY?ju8p;lyds9x&(R&?k$vs_etPC+6oD>7IFp%9-P2H0fP!tvZst4lE6^m3`?Lu
zz*!@}4pNdM6WFmgJXz?d1V#%OBXoQMV+B-g5f~?c8+Dm@f^>6Y0+TrU54I#{;cLbd
z2|Ss=6iN0>0@DOMB`K#S^tQ*Rg+sA0{j-9f6Uz3J({EkgiwR6m;MD}yC-72&j^(k0
zvrJTIW&*Dyupoh13CvDljxgtn!ZZ8J34JgS6=@#xnqfM|pU;t6pGVHZ1b&f$SR{$(
z1;dM_NzBFWFH2y#1lJ_6B7v0&tY${;eQpt0#kQRevIJsoUZw)@j3MS)E9ut>Woa7{
z*qFd}PNI9YB5mRfO@_B5P=jl15;!;1V1Ks?ll<4Do!dCLZNd!hNML7zo)&c8JwkU2
zWw6vuMP8Q%6SI~#64;+Wv83L$aUg*=IXx3Nlfc0Q4$;)m1SN1dfwvO)UjpwYXd7D|
zkruw4z)_l)Q$aSKlj|K}vKJVjn(Pm~m%xX#NSqD{d>|6zUOygZz^HJ--~mP-CGatu
zaVpqofa)+nJ=ZE6-yixcfzK28B7x%xFv#nKfRhQXzSap?{+9`SoxnE<y+!V;!Xcn4
zo=SivpOy*8WRxm3@Vf-QPvFl4{z~8n_N!^&XPpH<3jRqbcepRAmqQEoYXWBz_?>rw
z1SlEmcIN@A$m!r839#8L^IQT9a^OhMQxpkYN#JS%7ig4P1bAH%a4~^@1pNMG_&WbG
zjd?Q6qn()dS_1!aipdC;jf9IN^=S*Ae5rd^R4}b5ImMHDXMIkR8BrohTSU+KVRo}*
z5~Y&*P$~wQi;W~Lo#dGyVODo@5@nO{9HbnSOQL)d>yy}!M1>?OCgCzFiCdDWl*Hcp
zfmTUWPU6-i0!h?M0!dU!QoC?x65O#^HHq5=+$NNq4rPjvR+C_Lp?4&)U~72#MxJP(
zv)m)JW)igo)E0Vo60ZjWjOE2G7^HQQs4G#qlAS(4$gH2l3r4_5qG=Khl4zJj>0w5r
zB)T;YG!fi5slBz3$^8z~zsqZuL|zi7YlZJm(vtw1C;8V8p(I*RR$IbBp#<Eok=kLj
zOk(5!#o*FJ_{|0ZmT*J8z}<}k;iTR@!TlGllW3Df+aw+kP9lkRQaH<xB=Ml&_Cg;@
zqC*l73+`TEFaa+%ESiLwgjJZ!PGaBYa4d<J2B_<4;u1wsa6d>g2`33QY*_ukdt1Y)
zBo{7X1RI$|CJB{9&m?+L8Tj!hiLOa}T0f94l;BYT9Xa9xI#Jq2fc(x9d}wp{vBH#(
zC($K|r>ln<yRLyw(@mnf3+=(e8){~68H=Gp`y{!jQV(UnBnAi|?w<r5(Gc(&NOc;Z
z1|>0A24zTL8WuH7a6utwcoGK(C}tUz#ONemOk%n;W=xU?RbWyQV<pJujT10Fi3v$i
z8Cp69nUjV2oX{tdcv8R=QUPqwQv#+I2A`qCR)(h~@vLw-te+21Ea!O%61<Sa?7K@4
zyp+U@B$jXzB{4IJBJ~6Fl9(@GmeASKj5$fXEPY{uxx%Na6Tc#O(REG|3zMi{JIo<q
z)M8=M9}Y3EWl5||VwEtLC$T~R2ZB+n1+NvlMktwd?6a;AzbfF|0JSlRO-Yn-aFc`0
zNo+~t6AoVzTScArQq7WhP4KoPwkPRXPEU$mLU#&fkj>jIcn>F|fC}Q1=hBw&8%gX>
z;%E|YC-K|X@PQ=$8xcN~#G4$xB&bfz%R%J0kbhWW-x7L6D7*7c5}Zo!CGoz1|0VIR
zfM$*L6#F0vrum3d{-*GUGM$f!R6lQ^=Q7U;`Zx*V+ZzNvOX4`&ki^*}CN~P4NaC9$
zP9<?tf}bbxMG{{MX6#o2IGaihR9`3YOZ@<uyiO<aLt&b4lQ@&acS(FNlbR~Q1Prn}
zKT4XPlK45P{VDw-!C%EvT`z}c9{rxgA4wE*P~6emxXvYUK8e4Xoz*oC@cK&t4e5m>
zE+)~tUf`P0f26w0(yB|e00`F_sIJhQisiXV&{&(Ge<d+<{U@M^qf032;JtbQf*ePi
zrc#a`O@bR7ln~C14jyh07<ekLq=V2v#V8I<X$NYcif#$t?4YcJ1`Zn1{yQk|poW7x
z9aL~o(ZTHw1`kx!v|AihTb~C9l^j%daJ@-1jJG-{Z3HM)##V7qRg&E%lyWAsnv_so
zD2uwo(Su8HmxG!P?r~7ZK`jTI0@Rk;#71D#loEG4TB+F7Iq!#?H3-xdc?P6Axell&
zjH>6LzN5#2{iOs58aZg}-~k8i95iuYIJl2pcF>er9JFvyYIQiz!MzTK)ekgxv^Ar<
zDq<=Fv-4gPlr$}cGBInp-$B?xYX@zl_EwHoOY%9jX+0=`w!&Y|4S<_<2@g7G@4#lm
z96aQpgVYj}_CM?(;vni^?skKY9axAdc`cz77dcZ0Dvmxu!oljz8aR%=^ClfEW|ZiI
z>*)I$oe88JWGFEgwfX(uLDs<<haM5(JIHr1-oXS19UVO4pud9w4mvsL?4Y}Y9wP9j
z535HVJjM|$#luR_#nIkVxr2rqWC*%C=q4QEhiZhmRHG;LjWXXB>g8bgg}hw@6<6={
zanRS%hu!q!=x@mDxJ;jC_t8K#(7_-FqbRO5#$ZSL#T`nqI~c+Sw+V1TAlH)=IC}lh
za7V8k<Ju}Z^(7eL=p!aa3iIqhHQK=#>RbDkV>u{;)Hp|b{pA8D9&f~@P)tA3!88ZY
zI+)~OvV$ksHKw6778+9=ee@C&Pj&E=U<P@>5SLn|h8fSW<%<k1#NzUy=Nuj>f>#_Y
zaPWeI7ah!SFq4D6#+dHtHG3~{UJO$7sKEXBTzbTMc}&bK2eTc_arF7!a~;fc(0q`3
zne(w(m>gd79qoDYI?f4(7dqNI$5IE&94r#NSSSxbSt4Nm!{OyDq;g<|gOwcITLMk1
zhgVSn<`}CT(32`1;1k<}v^V&54qkQev4c+>taq@%!F~q^*!VM{jSgOOuubqLp_?6S
z5wKP0>}Fvm+wNe8gV$NU1N!vfezcub204>@mw??4_BeRygD`#PlFt*>_c?e&6y|q2
zp&g{?v4O5H-*m9>mcZK%-f?iy;UNn+ESw`k8TA$oOT_@e(L&DnLF#`F-lgT4Z5*S-
z*x-HP52$Yr#?=bH@8IP@YR@3WjY3}xQpHZ{wN*Tb{3B*B2v;p1_|(B?4vM-c=Hj@6
z6Ar$2@PmVsoJt%f2d5l-?%)eO9aN|kk6!^@pm&;SeC6P4j<so&9ju+Aa}UmG2WO~<
z4!(8t-W*=%Kh%4OZa$O8ajY{~{pjE)2md&@<ltvcWCy=FI7{6athh<-%Z0|T)H<H<
zve5XQ!nrGO&cUCK{!sIW1S@aXpW6Nse8ItaPTp|fZwZp09jrg$UX<YQ!RoSuD-NzX
z+GW92D$gN(m>|FY5pe%Cng7x-N-S{^7qbSdje}Kj7dbA<yQtt|^E%@O7o}bOsg1aV
zaBg(<_wbS~N=cA>ekLm8;wD$GB{(uz-R$cBm1TvN6Ut9a<WzKVi;LS`RC7_uMP*l?
zkXY44?wJssF@FB4ajOebxTqrF+rf&#+awuNUK*_EWTU!^8ZPd1afhpYZd4qinRf}U
zDYVYr^k$GpA84d^yST^22p1z=)M2a(-$g!abP;fIpNo)-dM@g_TGV+i8n|fa!f?@)
zLZ}sJ#4JNpV^=$@V~~F(nz-5-1wHm~6EQ!=(*IsF7yD}k2<~;!oI==Yv~cxq^q`CO
zL-ZbG;+DeUFUxU8_<k1;x#-|>V>w#6Xzij6Q@Z+Y%ktY&30rDI{eX+v_XOIxdMA6w
zA?iWOB;Jx|G7cW1nBZX-5f^b62^UcprVHD}!a8BzA}xw{ecs7c8pmABZ=!Fe++99x
zh)TNP!>udS5z1g2BjCA6xk&TR?}#ut8CO3E5Nyp2C`pzT%H84}UH!4{aTi@&@b>hG
zi%u>&yZSTBqb?qE^=AQ|2zlKF1aVgv-CXo@(ci_&O-6SYJzVtUER+2&>}D?)eOz!+
zH}_BVcCliJcDL2n)tij=4$&UQ2DlhVeREOZ>ZN^yTnu&fI^n?*Bxi_=PlqT1ZV=#x
z1ullK#Z$msy-S5_$hmW5l#9_W_Hl?^jBzp6#XO3|#W)w^T|DVxii-)n<t;TPyZCvC
znkbmTNdg)#$a{iaGs8Dt2!3);_$e1tUCeNKE)t%0@r<hvJDBcbnu}*$6d9^s{W33q
zhVh(>7pQ47jOT?Ca8i@L$XxRcf|n@Cp^6uegkaPx7js;^?CQBco4T=D+bI51sNOW(
zWT=|!>S@m9BCohu;9`x7wH$62i(FVu0;^ptrdm>H6rij9+VS=L%ME!;U63y0<Q=LA
zR=WC&)+(W$hALuy=;Ie8zD3f1HE$*BT)gUHJ&W3D3?HgCP-!``E_S-u#0fjw*z979
z0G`vj)x~SH7(>-|rY{#@>^6zwUUFh?n<d>P9D+RpcDr0W9A@x!>E_<TSl*TPyEwqs
zy7<b)n=THzIKi2_%sAxYu#00ZK9U*wmW%(nc-O@d2_ALvwt#o2|CfTC!gSO?`kpX9
z5c<AQ{`(+bCvf%uAcE}1ypLUc!rs-@c>PfIsf*992L~(K+vBeOpUBvgu09y?bGBii
zp6_3{di5Z|*Dk)H!npXw#VHrX8wb91_4h755}alWhpN*<)foz>dEh%v>S5}87eBc8
zQSeVf%YL6ne)D>PD#O&TE`D?Ir;EQhK*Q8o4)I*$oQvOG{2?6b!)t>LM)7PQ-Y(B`
zScj<#E-t$GTQGw>i-f1>{v*cZGBwlHhwAd;09`3GELSD=nycTbIRT4!DC%KB3JX&x
z=ApQUQyxxx$nkK4#{+y(;Gu+v8$CSap@WB#9!hy=;=%Ax+Cv!+)jizd;U*6^d#L20
zvd43s^fMT*3IfUrEiaT0W)%x#ZxO(48n=3Yhub{8`km{Ct9Yo&8iN5o)N#=-SI)C2
zM&0hAnxrA-^7|Sd?(|T{<0(<N%R@~McYAt&7N4?ed8qAy1Hr9c*IUBn*<4e7kB1%H
zF?4g7JEw9z)bmi^L%;(Mu;v0_uYS0JhlU;+d1&l``-6BaGPg3Z1ij0qZGd~bcnWh<
zPoMDE!b8wQGf%IC&+~Avr<b)i_t5vR9Ijzz7Vgn#>ES*Ptv$4%l(rcm4`EL)6z8s%
z`#pW)Bs<&6)0^754pUso-`3OHe;)MoGwlN&+Ie78xzw5Vjaxt1=Ju3)T<@QK*h9oa
zR}bAhL_L@uk{%on76<NYy-YeTAm(B8FlDoyvVxt$Nl10viNmL2*F)BW@4@qs@{snB
z@t{1t@ru>)v6cs7l5%esgZUmhdg$!oQ4fzW%_6<4sFSC6n!Gej@eFq^x~9M%^YFNb
zE*`k#o-JpaxetiDTDWw)yN4bg26-5~)adD<mxunI-d)n0z%=?wQ~P-OFphP@R6(0S
zKaT7gy$6c@WwHU1c%Y{@Uobe>)8|VL@xTpzEPp6l(mKGBhkF>|@vJWF@i5ZEDC)L{
zg)H2|7!S{Rc;3TU592&M<zcF)-v!2VEIdr|FoBXhmUoy_b%`<A!?lSaUQc>>q7d(2
zZICmCDGM~<ZRlxHxoIAr;aK!g;}#oV4^!O0^{mIwvx?h-UhwduhglwGdzemrTWZV@
z`jW_*9b|WAdf=wH`71P@<KbmCW=-BJp56~Q*Ta0Ow_^~`6AlH!{YsSB55<a8Zx?x3
z>|v91WQoUP%dpnNIuFY@1fG7^SnXj2XU7VIYxq}rSb2SB4bwXo-&<j@r<`bOIA>Sq
zab5kZp5FPgL6m2`Q1aQTjcmqpy;Fm_y4k}P4_iIF#x8K?_E6i{_x5VLhhjGr=RPBz
zugc-uL4#1B$8nd8BQrAUbq{+zd?4-F=iv=cA20H@hy5N7aCR>?-tzD!&BBLyhp3ao
zjDwui1&Y#OuW5b{OXJ^}7~+1eBOI4S#!*hO0!77shsE+t77y=wcu$n!eW@j0p!XVZ
z;|wRohaQf3_{hV@oCPvrKjAd@a8l~x?u^eo9QSZSf>q;T?ib_p08JJ*in1f0Q-KQ<
zcd~!!;VTbcQ;`bPH=NXU!ki$~9D>IuhQ9T1h7CyJp%lLJ@V$pBDO6422ajjH;ev;Y
zV)uUX@F$JKBI9QdztDs(H-7bS*2C|fKCR|AT9Q@zB=<kWbiA?5IOpltWbSF=_5^Nx
z_{-CKe7I}xJWce((BI71OUvOO50@zU6w0P>*~1l2zbxmZ@Z^Z_RS*Aq_>amg7KSRs
zy?8}Z+Ey1&{h!?^%DX@c+`vU9Clt-E-i?^jg_KC)Mgb*-mJ&++DV;(Y!IVFf-6WWs
z9BJ{&rO@uJP^A>gr%)lKZAHZtZjl6>yi`aQPQ_-L$|>9`iHVWYc8_4egX*>v>ZXvJ
z!tE(kOQCv7Pl~%zsF}hYf@=u9Qz)Zove@!kQpMfUwc06dF{q#S2(yk*wsTH_3Zzgk
zh2|-=NTGfT4N_>9(wpfTrchf>y=k1%8&VpjkpEVQ4}?up;1i}Hw5b%!Acto1Fe8u5
zrN+G!(S;zT8cd-ji%Mx*cV9}|d|s_m2noJlXjr<*-DlThTc^-Q_-zZ*-zc}9b}2lV
z(nHT)Y${M4Qg}Fp=b86JZX|_h3Vl-On}V5wl|nWJKZSP+R4j!=3ds~`>g^QbDSc0&
zdYmax-2UUF@c0rVO?fUc+!Q<kDWRM!R6NQslY)|5{}w2IqsUL8V+xNkqlo&E6go4(
zQoYHpQwp~Y*SoZMr+zf0ALiTGs!Ix8Q|Oh_cjRu={{o{sCA?DGoaVz-55YZCdUq0;
zET74Gr}Ta_HlSY${Zkm9!h{qCP#Wxh3M0rgjX^04OKIPmgITh0xJzrO0L}#_C`jqI
z1L_`?ZDb0gQW%rM*c3*KGO+wxdDzzWFh#^!HZBEjN1|+rsXP-?n3Td(DNJQICx#|d
zAlr;5D4*e~|8VtW3R6;gH{6urs@yWYZ;s~u=@gz#;kgu^Ay}$8(*$rsJ!QCfxY{#Z
z@j#^)Qh1TNl)_6X%uVT?(KAw*nF8;dvs3tZxZ>!{5^4WAT+R6+cTNf~v&%d5y^l7W
zJE7)DuK67Il)gceLw#d+7NxM5T9-k|43?y@G=)xSbWUSg3d>XYH--OFSdqfY6h2Ae
z(-c;vu$sM2VRs5^*s3$3O(|>^ur`Ht0?2$dh4oY(32qe1?|VG;l2Iq-8e3A>K?^fN
zZB2o}*Mx3Mfggf+!sB)c^3c_t)Pc$Yo=S7;UEw_`yiR*qD)2!HdsEn#!rKyjL+G0+
z986)q-~&QykNCgy<_<~l2nT(HI-Js<yxtPdg$jX>_l1uNPL5FTaC}pESAwkNJpnyO
zsP_fXrz@Es3O-ht<|9hJ5c3G;&r&=K5`U%idb1Op&MEvvnWyl1N}mk-O$w(3e38PJ
z0=}a4SYUiDc<Kl>tWw}~3g6Psr}Qh{;t^`^xX>9+mII;hgc5u&fIhf>lr(g0#FW2q
z7NqdUYsR@0eoKKTa@Lz+oMkNwjWulozq6JZ20!Bc!BHEbi2qE12O#pT^W0pX<cPmh
zxFBt2v#+FZu@L{00zW-nlHg^be+&&@EsVXE(q2-TrAQh@(`cARqcn=8Q9O-X(x{Y1
z4mmT8(rFB@5Fofgf+d9Bm`2GoZk=zCUn))C+KQk|8aJh}w_f<>w0?&zo7Nt#9=$hQ
zPJ--6`7|n|Q85jk%gF?d59o7>E3+I)P&*BzQ6-H#(x{O})imyJ8{pZL)dk!p^md`u
z()z?q#{N`2OntjEjbF+Ic-2hfu0qW7dC93ILDq728uv&ob%X}es4IZq+;Y>}Hxbj+
z6V9D$^6ID2APpXnN+u5`Zk$GwG+L$6I<0ljNTYcgEz)Qz!Dd3q&r9RpLd>)Of@!Sf
z%XPWH{b{rme4o$|TQbLB6pwcdr$N_Ge3fHI+N9Ao4L1!hjR&Nh_GvtnM!Ui?A57z7
zsT)4qXmpV7Kb%G+t=&ZPm5{QHra_ua!xUf%B_}4pP9t8(NeG~KIQGsF%tNVCX_VU)
zQfXw<NT-oW<D(IZ$1c;o70-zDMKT?QGFLvkAJo|&5e`3E5<i;8V`*$oV+&hVDe!n2
z<I|XsMwc|YrqL~p?r987V^|tJ(&(8+-!%HA(MuB3KJ=E6;v^#Olh)^0(bTa0{nHpI
zjT}(e{wE(&<PS<?a2nL-A;RaUS27FI`XKcYX^fPH4W|HW=<~U#45QK*lg8MzKDc?b
zP=BW}PAcU<^jf2}<>wJ<Vj7dAN%PW}%tF$5K8+XBcv715w9qL+*}|vNn3~q7h!V39
z(q|-U8fVZf<5|JaaZZiYoqDk_*K7gP(|9S38EMQ+W6s(<CSVt4NmO-7Kc_JL%W2F_
z>*G-E4!WHAX}prgf;1Mg<J2f=?V>c6(%=hToW>FXbn(rBST1;_PzG0|wRs^}l?FYe
ztxn_IF8wj#-jRxQT^bt-Q@)zU`a(=sU5wqB#wND8x&E5X;MO!=OXEAXEsbqyY)|8T
znu0WTq_H!NgJ~Q}V^<ox(|99|{W2nZ(s-Ryd#JKUDoTuCFB?!XurH0uV|DNVgL8P&
zC_bNUaNtNevuNaL^bV(SG>x~@cq^^#VULmO2z6t=LHte{x8D@_UmEYGwXx+#{&jDM
z`tb<(G-!l*@!;kU+21t2O5<zlb{Ze2aUzYAX?&8_cR*gB3HVg#ccB0|#|6_!eokc`
zspgGTUkdm_^oJa(;;n;?OvS)AoH9JIOX#UIP77GEMMv>EBf%E;hkr=p$22adaV3qP
zsH<uGnZ{pK!ZdzmaD@6Jjo&Ebk?O4IHtz^DO}}5qL&Ljw8t23sG^!is{q8&sY#KE;
z8ULhlA&u&XLKkU*j_c2cJYkl8$#@XkB}qW%a!htLjcc@QvyGe#{!QaQPRz=Iq8WWO
z{Lzt$N3|BoXiIo%q$-v{@eKYGCJW)zppm&DqYZM2j6PqRx0O;El+Ivj2Fo%ilfg|H
zJd#1D3~tV#YzECUXpup=49aJ4R|YjRsF2Y&g<CUvq$;uyI{eS@I5||#fWNEgOO1sS
zoGu?g2343qQdSqrEVmJ4P%WcpG=n_CkMs_St&sswzP?j1eRq>zD}&k@G|J#cTK<ea
zxG*=Pox<IdL7j|tBDZ3W!T&OKGvKodK|o^b3GI*<uAe~z!OYT70MC+coIw*Q&=8s@
zv}uO6T{ROtba#l=-J3yjyat?B!3-YEpgq%Ma9>7Gw2;tNl%#;LQ2mu}SEzLcZ8B&p
zoCk!G$+ON$+fhoR6v0CobYS@zeb?Z>r-w7JDD#;bM>2>CHVZkFc1*A>G@j8nFQ!an
z5S*v8I2pLY^fFKxWHU%fFikaBsOMcKqkY^F(0!<%(LcGUbu2bNqg{-46zLIk&fw7u
zo?)vpcr1g*Gy2!qgbccf=musmD1)vUbjzSS_3D8@&kTBH(1QasL>EXiwR)q`I|I^w
z8T83$-=xHSGyI0H2>MIZ05;}Gh|fIaa9jpwP{0II#gGh!3Seo&GN^dJKG1N4a0td`
zFfxNt8M?>-AGdf6I+<e%WBGu=;J6INXRu(OcC5!w-)#Rx>BXcBCR1+(KPhx-2D=V~
zreyFG2diS>!x=g;zpp+mvHZ&VY(^W{=^4Bv;5nhsXYhi67ll#?Ov6E(!AfN`XJ#-f
zgV}<~pO?WL!7mqb<_c(EJIvVm8N8CwPhZ5;eA0y(EGkU7m~R1;;Yh`28%8b9U_}Q1
zWN;~il^LvJ6lWYoD(&CN?qskggS8o~6V8?lwr22Z2J0obA%l$qXjs_aO`P@f41&$V
z<k-C?V7t(5LK({`M!F*dikE=iQ+H=@AcHqE*ptEQ8SKp<(k$F=r?HRvJVFI`hKS$D
zfOLOG``#p=z8w_RJxqg8I&g@SVvf<dX-odIek+3`(qCFvj_ErY{4ax(8GKGtFvoZ|
zgAX$JFay^6UIy=H&~TLgW=_>TChaHqD1&1GeU$UZ8GMq#r(&JRKOx{Vp~tUdc}(T~
z_Y2O848G6c2Wox>^XQJXOyJuLz83sV2B$JOUC5`Jal$ge8R2{<^jayM<;M(u%Ha15
z{>Xs#>gNo8qnh0u_(g(ziTE{x@En6td{#M|(SOq03^mSW@TaurZ=ru>a9%(=Y2H(R
z=J51(w*Nu~7llvEBQ`E)aD~QD;ckVi8C>J+P`E|mUz&Frta1uP6pAX8R4AqN%q=D~
zN1?cYqqDSz-=I)Jf*ef-Z&bMBV2Gf!FbQr}D5Lb@+BYfC61E$q|AzA_D+xHW2CvR5
zuk_nr1*LBUiFrmPg~}{P=|ki>rnf2{uZ-Ijpio6Y4K+HBQdN~c)Senb%3ReHdL9Z@
zSNN@En9qLXJY}gG3U?~xtj)Vi=~vO3Qa)dlh-(Rl6X70(Itncn?o+6%kgL!{!B7}B
zN(I<L0riAFH%gJ&K%t=o8!0pvKzFs|^WrJtO{I!Fg?kmgnP)Up+BVX=DW^ko5kd>4
zjS25@K?(9%g^~#=+^^6^p{+t#Y3s-It(4YwdR1*LUE>M$WImv<e3W`nXgi@iB9<I#
z1!)JxV^y#;%Y#G_QHUx$qR>g<$FFit1xq2OP`h*y28Rx8Zd1IcgDHhszvjjjCZEVn
zC?o~+KauMwxC#WkJcW10HD7rmH!WG1E5lJJ#90MjaDE}Dqkz1%C3sxVqYA$${HnmC
z4<1)otFTU?i$Yh05eg#}x+!$0Vo;KbUyIRGp^rjeg&OB_dvRQ1fpdT7_Ey+CN)eOx
zlc+&LPyU_TU*VHcYJkvzLYeH93C3WBYUM*i6o`KvrC3^lWEn0rHx?kL-ua@V6h<pd
zQ+QTk3^hvONrfp2;}lk$%AKe%N#V0tV7$Tv0mO}Z8Kjdr3nm&&L;Qro#2Ebp1R@W$
zd`jUNh4NKGQx#8PYxy+$cr>r|M4hGKL?iWf-g8t5g=HK&N`6lsOL&0;tuS5TCF+L4
zLWLO$GZp429-obqHwKE2R<jho+?zLBT4nY#DvwrmN2|FC^A+ytZ_K0Wj#kyi8Kf-m
z6-hRvpV4l#TBNXqqcB=67ADg$!BQ&8{})_A#kd!16jo9_J_@dqs7J5lu2%FD+w$Qn
zx$H7?y{fQY;XQ@-CBX)TeF|?VY*g5!uvuY?!XAa!C3dUO?Fz4Pphv5164ad?t#&Bv
zRM^GqDZ{^b-)@CfqgCkdT*lTrpL=k$+N<#SXcZY@@FH`+!U2UNGH`DSZFHq5hwq>a
z?jeQqqt#)Bx2QrDLL6@M(tYF{Rd}0;ujP~*qkcP=`wlI`x!nH=eV0NL<_8KNQm_hN
zNwLQiKBfvOd?djN6+*0q*QW}{X)ZW7$EeQ~{+MJW$EXJTa;QZo*;IuuL;;rE66!TZ
zT~~&$IsK)O?-Wi6I4yK+#Sn9S%k*OuuQLj>$EfvV)b|QMh{F6xt%wDF61AcJbf_5m
znQB=vMDUx!S<Z+o?#tqLHiK3%i`%m}r|_r3e>B%w{3W&gqi{)q3V&YVZ-omA7lqHh
zJoJQdbc~)3mCA)CPcSYkTw#|d8CMm~2%k~cB=NsO=k+&=W>GAQ(pi+r>RDMliyO0g
zQsiWD_;S%3vbazw#H)mWRHabKte!iivMBLckl;%35a~@>RLG)Y7B@?5*)0AZqj;6e
zqI@A{vRksKltq;+s%BAHQg*pk?AEMSPR5oUt8hL0SXF1NR&`!fhH6<<&%(%}X%=^|
zky+HuA~%aWv$!jZ+F9J4#lDF~O=(iCEcc2U176Ev-qMXUZ9P`qlSQ2@9J}T9GOJw6
z31qnnPFLDEi}YAkUvNXg4TLhPkuWv5QnX1H1EfiPw&bzRWH!qpPZHcKG?+#6EQU=p
zT1c=%=avh9*7Eu4NM0z5`?H9%VG<S2;(;vMWzi~&)*|yZ!f%_^)~wf`xzAPzO&zNq
z6lVJ@9uhG0LT-mF9u{oT{!=kzPDQB|C5scA62%&8w`fV-i)FPE+F5j&Xb>dX{VZl?
zF)IsKD)qC-&%zU&VwbbXWWfo`1}q(`6tnj?vROQL@jh#~LB;5p#Uoj;83kGF9;-O|
zowDeh#iLm~mc`&KhGg+LtIJ~Nsa$)k(KU;1S@g@Ie-_=dplRwUw1-dzKOU=k3GSW6
z*|FNb^^suTtTuWK@*0rEAYl#^TBc-x%qmxlkq+fFxsW?dn$+fMF*Yo6Id{+D62r3?
zk;TX?MrH9V+n>egEXHK<WENAh7@I{*5>Jqf<Ajc<MvYc1f!D+=CS@@>izhfK#_3iy
zm+ESdQ|#AMSxl2GQ?q!QRh-H_xjT>iXR>G@;J$IXoaeK6A&VK3@<pMkIyuv`T$-4d
z9;aRs4wDU##E)MsHam+mf91}n0%S2Ki<jAeaf+O|!smTtULjZ@V6o7JLYZulNQ`%o
zC0Q&Sr=BTRJg_HkIrSlnU$givi$!+@R%Y>j79R*+mBngKI>BqR*qFs8!RxYkRls_o
z%(X!PA1a79XK_S=Te8@iMY5pyYZBa>#Wn%kg)-$1>VV)~g`C|2_GIyTA?KxCC75zw
z7H<@C_GfXR5WgwlpwL4!M1}mfIEdc{nek{L=WPM+WbwZ&-W7cOm*9JafGK}$ANY`l
z;>Y68*UveY#Yb6uoW&<ue4WKNS-e*?@M#t&Io$l@OI<yYdt4~N2~L&;2A_*Qm)I|a
zGTE0jU(EtvNsuQh{_$(>sVq)s@og5w<0}<8lf`#g{E)?=N=5ke^*s&jEgJCpuVRrO
zCD~6xnf~W2eksIroB$u*&Svo^C$)6pcSdohXHoQcUaM3Nuah-O+<iRnd{#g8&1{nM
zH_bBJ`D<>$_r)(}@lO_)vbdZ@abG96B7ON+in=QJnoxG?e3Kjs=RYZ@h$Jp5w3yKI
zMFV#f6z5}PzZ1D7e0<mu$2#IhA0>U1@=@ByGd`yIDC6TMAN73H_ra7m`*8XMD+n$t
zw4BiLLeKOMo_jM`(Z?-5D)}I;?4!1TTYW%46(4s9U~E+%w+X&oXf>hLg?_hP7sacF
zk2{5Pmr!zQ`lwZine6UDe2;)SKI#g{E#wCZ(>L(Z&_`z<kNRlj^RO7?`xtpJ*u>|~
zg<#l6D<6j7raqea$n$ZpkDzdx`)EO#3<)x2vsDdujZ@$C(YU3L`+Urv8w~llUsAq5
zPJKU4{WnfAwzZEoKC(Vu=oM`1;{hL*kC>0kx97AIiA4oJ=%c-lhkWF|+HhksNI7@#
z@vtO_2(2<iGZ|&FFT?*2+Z+oYWNw-fjQf~1FqrU>^zlA&diDyE|L4%4>%;Sr@^N~V
z=CIzhk7d1r86V2WW7TuWY%wh8OAD`DExv3;!;U_FIT$QIUOnQY&Un>{I&d)f%pEz8
z`FPyNlRoyYZP>*}%Yxu&A7gxU_0i48++M-%?7oj7K6?1*DWd2l&Fe=zEZEyeA0K_C
zJCp|NeYrr>{yyHWo-@G5K<Qd?NN|v(VHB^SEFlqOcZT^W@G;!S2p^-QSjMumKlKid
z^l@a6PCWI$;-qZYSV=IrSC9%h&Ijpu9}|3(=pURYL2@Sfm|TdT5OCjkHAQ;&l+dX{
zmtQXaw2vvv8y0j8J}V95ur3zxoY3bfIsqJ@7kx|@{F2Zah5VTu9l^5;IdgoxEO@Ta
zd4>G>K3);LppdiB$0EV3msKqBvD8O{gTdH%wamwIA1i#U<Pdk%ny|{pYHDddrsZRe
zkF`Fk<)eB&*7<nV#}AzNKGyr#;N!55w<skan|y5dvBSq^pPO)l+k|fMvDL?GoGi&;
zug8M3djt=53=%g=1{?PZ?)0(C$37o#_}DG!IYxVZ?D6rsk0;9IupC~GPY*Wf7<|2C
z&VC;Ue2gBi4*KXaUNP!TA5~rtG8gF~wqbE_meN^{_&Dn0q>s<36+Yha@sW>@S%r^x
zsn|X~5PewkPw^S!)q8>oSk8w&j``T%C0J!u@KVQMA3u0YGWdy)PkkJxk?9!x%tzBM
z!NFIG7he)2U>fE+!I_&0j&XzSdIZ1l@r{pDQs$RFzVh+4k9Ff!aX&b~37(v;)6c4q
zbK1wZ)D|D#`COS9+`<C=;HSyp_dX4B@a;!~q(Axine*Dm6;34|ztRx-_|wO4KGuwC
z^t(`kvy$b28zlZin4L=H{N>}kkAEciw~q?~DrbThX@Se<EOCP8%jXp986>FX1uyyF
zAy>?P)yFlecRp^+$G_5rBKatqk4eje|4DGwi@{>~dMXvqM@~K-Lk@BIlA7Ki{6~7~
zmY2*&seDw(N5y=U&PSPi92~F8=A&cDoSX8stZruBOt9*b;N@9bAm#E=K3@y=oAGMl
zBS9v+B_EaYQ8gd8<)d;wZq3KevN=`qwQy#Z&w(VSz?p@mk;y`C&;Ng9y?2xp#rr)B
z?63q0ipmv`B%;nJyD%^=1IvOUNR9$FPUo5K>F!ZLkf`LGa}bn_Ai)3_024-36h%>@
zk|c;^B&xq#_4)4m&wEav=iIKYuC97g<!bzJEsG)}jxCE<OQ3oJJrj5)ff@<aOyKbZ
znkR5y0<{vTmq0Xu`xB_0z#|E?R^tyO@L&RwgwWoH80}V8SmFya;{y$$R80BdgwSN-
zU}d~c0yzof%6A!3SAzI6Lbrc4;`I|~kU--E@)L+9@Mr=J6No2psa)u_n^}yXClmj4
zrbz9&ROUtrt~?jFP2{7d2{cQfAi=%c@p7|7ILmeatoUOI?3oeg#cw^4K#K%ACeSH?
zmI*wWK)VFmC(w$SNuVuLsL+<osZ}!6CIRYd^;=o1UKiTMq&i4>ZRrvxV?Q=TNaqBC
z>sj3r=$=5A1iH#>j9e-nJtZUGHA3kj!P6{w7s2+2SH&-u4Jk6P^Rjq?B2M7B1bQW)
zC7>tZB;Y3SY^jiufSmyK&7?~il4~WfwQKy}ZgJA23{OeQ2s3)b(+RHhjt3OewJZWp
z-um*zqdnrqX2&y3GXVl#RN&qT^hsbO6*Yn96X=`3pacdd&@X`(2)y`!1o}%bYHB=Z
zgu;+Dr9z|w6F8y8_dgvUlEAsH@nH!JPvAugB7vb~e%JVSiFk_<%5*RO%Zu^r$vETi
z8bP*?P##IgM^i1!hsGu_E`ecl;$z6PIdOf2GCl#upD5ELm>_TYl@~@R&n4nh5}2C6
zMJhuA(-N4Tz<W$5ff)(RWEm4!o4~9DW+$*Xfh7sdk%E|?z=8zkO3u%d)LtdD;$``C
zk)*s`n81_~3c)K0yqdtvwunQUB3()jC$KVsRWkDO1d=ziRwUT+k5k(jp_m$fO+H#9
z>1uN9_Rx4uXc{j@SeL;11l~@dw-&!uF0>(mHzekx<JYp@lnD~Q#UjW&Y~<5f@l6SA
zmI=O-z`F@-8==(dAE)N;8lezxp(Z4-FM<7hl)wiGe8b2Ie3-yT34BV|k-*2yIW>V6
z{Y?DC()cF{wgCj717Q)UpPwi2WddJGJ^Uhp9a3q{r{X&j_&R|<M<~Q!=<(7cm5*k`
zcP8*%0zb>h-zTsufgcmtEpNAGhkl^D7^%<_fAd88Kgn?VXJG{^;(I7cTHN6HuN2L-
zti2L5GM~~?4kU0ef#V7MA>TTbz;6lsPHvP4(Wf0w;0W!)iyuqisN@yjx_UE<l|ueV
zg_sGRNZ@1we<g4>fl~>brX`M4=;i*D37#SIuV%5DU<k7}g9@3zc_Yp=FG$~bp4K-~
zVF;ZDQ@fnN6}mVT52*M%fvXAJsp2jb*XRxC*i{r`b>BIDgH9%af8-}_N+z>*BYXdq
zA^%a4dI~cyA|tbAq~T|&2&pKeqO6MIGQ5<e*=+o)cyd*|q$(WFgpms0W&F}AZd0*h
zq(VhveMgR!Q&C>U9V#lQxLv+W&Dk?3{;_05ct`xu^(@AG^JdoFDk`eDS4CA7P=)uX
zB<aC^@q1L^Mt&ZtFtD<UDl(i7fmK^I71dSLQgOeE8mjOoyzY~rrph(0;+Ecnw7C(l
z{j8`x*OU)EsNx|NO;t2g5mpgVQCCGhRrrvHRph9`OFW{YjtbhvPwPc{W6~S(m8C+t
zD$b7NuLR;z74=obRdDA_0~Ik9pDXb^`QoE0zU~*NS79Rkm3TvLt?4S9&*ZN0y<Ovt
zWt=7|l{22N3V%XpRc4e@pn@RMGya&0$5pgf(LqIX6;G&WrLyKi3;AN{(xE3MXsP1u
zkHsgLX9l)W(N^Ucg$QXUBhUriH%j3x^F!KE<pfZ?tBOu4I;-fSa&Ke&XX>`}eth(l
zif$@4l@Bq`^nuJw4;4?VP*n6(u~fw}70;+hs2HnaoC;NirlPlsJ}Pt-hKjTbPlc%p
zhm%y1Qbi?esjwv&cU?FiUXBV^hO8MRZl|h(^72(YC&P&Y6&V%Js-PjySRId#QYZ+9
z_hKHj`0T9E^D6qP7_MT3ihe3yP%%_$SAP`)R1BghRZy9CWQPXIaOx*(F*Y)XP+^{l
zzr<Y4jK3%!5wPXSK(<weQFBU${@1)2Nr_OIU7@0%{gXAC>{W#~_%1DUn`%E^#RL^|
zRm@W{QN<(`v!rHDRxw4zbg6{Yx2Y<oso2;(-f5K5`ssMdJ473d3OPf?Oc`f>ccGuN
z<-2oKE`*5lVhzYTg~FY$Vu6a6Rc=O(FH-S}iiJ{k>q>>FRIgHXONSOq;d-MK##usD
z8KF?1e7c<ZCl6J8tYW2#RVp^9ctgc&DpvDzh1@1T*$!W$it3(xrrTeuVjYDm@p=hp
z(Qm4FOT~LC-ly)dL@G9`ct^!O32c(@k|*TMS5xEfO2*QM(20?IbUwVc(27-TQ?b8>
zXh|~K2ejP&@efsWy*<QR;)kk+%9RRzqT&k`U#eguVY_6@r;>gq>F1KhXUD&iiv0~s
zA;AvXodmyZ5EVKVd#AkpPUV!Jxcy$mr(S&6C}kJ3*CkH8Tg6Y*y1n67#^Glbdzg~}
zcxnKCQSmEFok5=r_Nv%NN0Gu~DePBqK*bFMHw_$Aaflv9!+)Asfc+cIM5A)zcNK?K
z98qzUrPFY~hGQy@t0<|Vl!iZ4oS>IhaaF}hI>tJo{?X7Sigj=Jl!{$7?mA63zBl%#
ziZj&z1<}9gg4!!*CFbop3C^pyP#AJi0{yNCM{h3E7afaVk@S^O%CAKu+auZ6go{SY
z?8psP1RAn5+*EN(#XqW82U1iMl-Iws{ZYz)DvA__aA)feqZBUi3u!2>p@b|Zm$-AM
zShgnCE%PTeq|AA{8g)x+xJ^T44OKLh(NI>y-5M%tX!mWroQ7FP<BWEqNTfW&{|n!)
zVg2#&9U3Yyol(l2<l!jgE*Z%1ikxiY=N9E~z^c|;v3oS^UKZn3NkiKUVS;-#RMk*Z
z!+jd6X?Xlvyt)SdFS1qZMmLt{*3j_9go5?Q!u!S-^f?^vvp@E4Q65qeuC3t#M%K_=
z!-E<g(h%cY8p0Z;bAVLC!<5v;@Ts=ZmnIgx`Cs@E4TFnE?r4@<M?(%vH@879zgs*~
zSJHZtMkTE;X#+{0$;x7!yUQ2J)6h^uT!VQc#<Ki*B7XXbMr1-G4UIMAYiOd0A2u=M
z+MQxgS%JK5s-c;N$0X*uZid$ztvsQjg@&gzbkopM!;>01Yv`hh%^ED1T`AH^Lu)A=
zrq+gBlDJ)ANP7((3UNmXI%(LEU7V5mE@@ZhoCh~8jHbUY=&qrMhNm?s{Ah3Sn-Xf&
zytDCBO(PFHAHBa=B<LDVXizn*qr5a|8gvaqH4M{Wu&^2e4H*rV23tc)gQFp-iRtF;
z&t-jAENj;<LL9D!w1)FpMLZ2#qVXT9M$Yw)HYpbInL<{iZt*O}e^$eD8v1JJr=gcd
zUxYpyo~PXZsLvEGKhcPToL5f7Ne3;-A$>tZe+>gP3?w&3D@>vC{uouL`Tnq9s`wz8
zhrt?NYait`MC1R>1%64=itR(h!!?Z1Fjd1ent+B;8f$+{;ENQ8hPn+x<76UZHT-%m
zyrf*tpbukf?M9R=zcNw7Bn^`_OwqvXF(kf8Y@Hx`DgB@S75YD2!wd~`G|bg7lLa}M
zHA};6%Hlh*NRO|au3d1XXoNzUr(wQ^g&G!-jg=zF(aHi1+pdNee_HS|S+OP7d$jV3
z%*+Z66GtnrO4VH~=@Ln)$xAgXlX!Vy2&ZyZYFH&-d`;3d8dghC>s(QC>~)C=)@tZj
zs>tqAMK)-7L&E_L2Q|E@;VlgxYWPUQ+Zr}%cvr)FGUg@?n>D;6UoUM(!$)H4PK4VP
zk1(k}{wn%DGq2$T7XMn&EgJ4!l(SXChS3Vatm=^yS&>hN<dRDtYxqRNFJ!NV?HWGS
z@D=@M=^~$L_?$*f-!d?d(tPTUB7D*6mGvcMJ+ENGAK??zqdPP)zWud^Z#1mfl>aTA
zh6Fn${Z7O85`1!Z0iW)Y_y-L?O7P`qg@HdwOz^XY-$pBY<n7<1mD=&_y&Cpu*iYZJ
zI>zM?90sqpCCbln;QbIIYdE9fFM56rhw0%pb~f=rudE{)j*{~lN*;~BbTfRMrASBL
zyeC43!2LUON9Lc@a7x3UEbLVAYoyb}B?@-m6be&zjKY#qk<My3r{R)@%d{5_7s!?&
zxfeB1Po}nM#F*Qb#cC{!k|9?#{H@`ZhJWZQIz@XAk6zVqO+&3Q%60mDis_fE8}hdC
z82&aTx~Qqx1WkweWTnVM=i*eeB07rdxZgl+1I2V?>6oWuzK)QN;yRwv(M?CTjuJX*
z>bOrwNgbthl+#gOM`;}^+eUBGQAQUz{Q5+=EZ?mX=~E>_kIGq+5p_bh>$pQlMIF#l
zLC0r1<5UlN+B<dJrDJ!=BBi7f-mRmT-N-*D=0_-T^7$Sem2_0rQANj?*Q30u5pWfd
zj;e(rJesw7A+908#XF1FVsUiDbUdn~wvGpM)Ys8KN7pe5dHbL)OttgX_(M8K!#W~5
z9@g=Qj$n)u)v<JpQb#_@(ect4C0Am`tgEA*44E-TVK^@avK7JAo<~lE<43ddbTrh_
zSVz7tW|ZPOIDtaYNXOe_l=W}KNRRzhlwxY4qd-Sf9nEw+AtSRc{=A*ox%`-p$8~W~
zOmj*3dp_b8I$G*@QpRjAX)8%vOWH<KeyFVk?R2CoX7jd#yzN-{w37s#b#x&sbR=aQ
zMq}jeI(q2v$pIZt>riyqjG&{Zj%Re3IxL1%iX^BHm*UNjgjF3HW%@`&*F_tKO!(%t
z0z=1+F=8Ln&gD6SDi*LfROXZpM;9|wo(@+k$(sklX>z-Jh%E{pOhL7|dvOep)z9d7
zR!2V_FX+OfKBuF%jy}4mM0!yT5+Q1P@4Yd8?s*-*OH1ji^N*rA{7Qcv19Z&PF-sS-
zoRtt6sAG_hX=jTv{$L$Lbi7E}>EPif({v2gF-*q<9TRm7XJ$4=$5P4LC?j-?lz`i~
zcsoks(UOjly2mZO3?C;$#!JdQs*`kVsu`IqDZ%wI%9KJpl_gpeW#DvOEOh5JgN8F!
zAz;C0lQS&i;V|25b99itzb>cv&?rL|=y+Mj0UZZ*EYz_`$2J`wklQS>j?FsW(Xp6?
zr2*<#r6W96St{krrpq!N%XPfDB7fw|`72nWm-CfBVx+H0X0Fw-P8So+s~P8Vc#V$N
zCE)xuZ`bP}KR4;1bGW!ayg|nsItbp>@fIzmV&rXkyHV1vm9vW%E5fH&E(*E4tK&T#
z@9Ws23r|IdNkg-)#JB3W=TMw8u(7cUOKtSZ`cTJ5I{#vfZ*+XD;}acU>iCMfw=1@t
zE<(rWQm;Oh%$asR_QBSIFBsvS{JZ`u`d>T#5i+{waEx5qA)|FGUW8x&R>w~AP{&^K
zL7Lt!9Y5&!UJ8z9V$gN`NQc8r+W9|80ntaPr6bg<pXn&<{Kv*BduViHm0y^Gyxpf`
z?XK9TR-=da$G8SyzmDx+32;cqZ}ff!ZZq(^j>F`Jj!P`Hj-xvM(s7nK?-V&k>+Y6A
z1wKx;91j1X<Aek!b)1&ql#a1K#rY`sIsT^%AwHv{Muj5lR>f#F=O~&3VV3ti^+y+V
zD3zqo0nxU+tmBG~zja*IaqhW1a^TGTyfLTaeX0~((^14gQ3Kt_D%W*EZ%BGm$1MpM
z@(<l0UG7+g*MBmQb<ksew3vZv6QiXJ5N8<(87MAsqf6mz2^e0&K*>T}p=~7RY`oIV
za2W$-4OBKz#Xva&<qh0npaQQ-k=qT?hG%<{*`oubC%MzWJqAyTXml5;fr^GO6BdC5
zB!Gd&>th6!4AD(Xb&QbSYoMxu8U|`IhX$$}qQ2{SJlwi{^w9noc{2S#?3-gkEABJI
zqQ_bWc#&O~zl%L!;6Vcu4NNldkby8cW1xqDh=GS$5Ce}Jc*H;*e%C<0fgA(51{xZO
z8>lN2i5jSH2>#bIgu${7ZD1f~;86x{5T719R#`Mw*)Ud|x|V0)bBN=2>f9S)qo@&Y
z+eNwRo-Z~r@IqErQv=Nm6d0n?WMK0Kp)pk=IsNj!7^{q|UC`XX69(EDXm6l}f$`B$
zO9M|D*fyXJb%|Qh%0L@K)M7OD*5q@uTrMMNOP*X054;-gaVgfpKt}^zB==6<S-@91
zNkMcr(6?LY*y4P$nn`sf4-IrP#L+`68ZR~=pEjTv7-HZ>13e8q!$b`9GLSH!8n6u{
zB||g=7Bg8q(qAjk4HyR7;RU9o1bse;@zEYVJLjU%RrW(u1{^*OqOO5wCq~nTun135
z0^dL&aYoW-3&VfCQLMKCHYWR#Z{)mz=jGS?8bH_3mVsGxR<z>&1_l@yWZ=iK%IcCu
z*cTgU2tURW-C108mj*NarLpsaqc0g4YGAa1F$RVi*xEa5xPcKe&1T=mhYTzjNjA>U
zV<ke7jgk^~UX6}5Fph#SFoEyx4O6Ar5#V=;FU>A!wND(lG1<TrX4}9P15*u5GqBje
z5(Co>%rLOPz{>_^vXvDL%`-6Hz$^o^W%_dr%#|5nUA*B+_`5T4D((5PqAx?YL$|rm
zz#;>$7<iR2&xF4&QRJ7lQFhHJM7jkQv&fp9r3RK6*kIrds(shcasz8=Df6;d7+7hD
z&i*O`uQ6|b$GG8?e}E-eZD5Uo6%WQ=rym=qG=4ZlyiV$*Hzc~ASskY|8K=By;4K61
z8hFpZ+XgmLA8HqHr5X9-mnl+wUj8Nno9QLy<-a2-K`1V4lln=st(J*yrRo~kW8fD9
z9~k)1z_$i=8u-Y-#|FMKa5AgNCkFf)qD18FcB<c`=x#6ise#W75PVKfdLrZt17FGz
zW`MUl4A3uqZQvX7`GBx}ikpSqQzYv<13yq74A4J(PlrI&l`URc+-_;Y1V0=2NtTy-
zQf#v@3bOZC1A7hpM#pYopMm`b4$(%`5VxNkFhsj<^u_Q&X??6ByNwfK`sJR;VFO1D
z9H*`tI4aXDyI82lF)3o^il3lbGW`<<%B;vaY2cLfV5ez)68vf4j0As4dO^~&lAe?F
zJVj8gfQ-E;Z!by8+shJMq1K%hZA)HPWym#2uS>eQMAj_>{}?!I;fRHQ4g5!8S;)3f
z#6(dOgG>xIQOrb^iHM1ZO@vGoH*t@NN+z;RlrT}=#O)?ZnkZ$WjES<QSSZCxhi&!J
zCT=rDWk;@(EoaY*{yq()oQV&&=96i6n5balP7`+#REi9~5T3MB$cqhrE^6Xicblka
z0w%s%n?phH5d$lmsA8g~iTh04Yoe-&>LzNKqEcWY)l9H0F{pi%F{zEKPsQnM&uxs=
zGI76&+9n<_g@Yx}*&5+uC+hs$!=ewG!ht_zBFsW9$|1Wb8iqV#qK*mMMAAf#iChy;
znrLOBu8Ddk9yigP*Zy$S6fNFIP1HAWWnQ#_`F|%J#U$YA6L}^YnuwdCnUODPBS{;Z
zaK|ZgIz$=X#6*FKrY3G)iSc&UIHj41$4va%Q9R}K(m3S_6D?#8$zF1@rHSc>!!xfH
zCEj=_-r7VPQ&a&ab9E%#)<nV-ouhUp+MDP=X<i7AxD@VYqNBu}B<(C|7fHKH`jn*O
z78hZBUftzw4@sYvRFSl&q|Zn?c5xBa6no@(X%gs?8m8F##6U{Nl1%mnW~EFxCVW0(
z@hO+mMbai_)D5v9%>1g8anBSswdtu)#>BHGUNF&LO6@rlYsM*ksADF2Q~HZ?xDke;
zq>eprqOXa5CO#i01`{X_g82<1OpxNPSuuYAWwbAUprk`m`9n;+XyUMmBPL!lG1SBd
zR7(@XObj<M$;4#Jy;5X^iE$>zn;2<gl!?()ypvfau7_#wV@%PlpdiLdz;J$ag4ASw
zl*gz}WC2IyF>h6`ho+dAYGRs+E#-<cKhs%W6AMi&lA1Hq#4HoDO&l7hSjWP1OkDrE
zV1X%)ALMSbxhCfEyIsYpr}HH^J5J%*O)s0`1Sg(r@rq1jrHNG%yejEp=1PL4k}_}0
zBv@`@MPbNi*~MQovD!rUf8y_uw<cbf_)SUInpkgwCpGcuIvK*VdWbiW8@ET^kRg3v
z5g~8!-Mb=ho7gA=H!=MsB78H|b&(kRB7T<&FP{>>Pd-SzRnl#eo?R^tCHsh_Hu1BG
zJtjUevE9UO6F*Vs$19(j*h$4O@tFz!5scU85`1CeO9{Rz4BsKa*OGoC>9>-0ZljzY
z8vUMDTq*LSw4Gfhevn}I%xs!cwY52XbpLpTqNmSc*W(u&pos$}4w~32)pDN{asTQ<
zwdg4J)5MaEsB(u)(Y5C&R_RSK_I7_W@jElTJcn10yhcY&95eB^iK`}#oA|@TpC-<j
zIAP+XiBl#{o1z~7pRayqdi3DAIE|Xx#r*tb;;e~tCeAa3aD)we9*4quglj}E@T1KC
zf!IY8m#Ck6MG928B2)6Nn4-evRsD4Q8a2wqEffEkxM4#5SG2cpQh#Jg=_l_^g#I=0
zA3eN<w;m1^vGDTwI2~Xyiz~rGMJ+KN#WFHxmL)t==c(CLPPR!(SSV>>w1qJiN?9mv
z;V}!3Te!_a84J}d)UZ(2LOBZ+EpYu%c?-8&xXZ%bmhky>!gnyiqLB&~?zF(R7C%Z~
z!BaXp0&uCVXda7^e+!i?RJKrs2`&_6Cv(V|do5AMYD}tHc2!F_;Tati(!M6%>77;6
z!hIGVwUB3_mW3sCLJwGY(8B$es4TXP&#P^L4eYI(Vh>qj%#b{3+C37s5V7zu3%)3)
zz9nq%5s7(QM}iy+xrHHhEz~Q-Q41}`3+L0o5~t0?$brTM)mkaLTPO`J#4Qw9XlkL6
zC7j#30eOwdv3^<f2Kg46$Sh62Dq5$^8*4xgDf3Y?3*ED`b8<t?Ej(c%ZNcMLEVQ&>
zSTHR-X`z*cgauV*qqT*$vMg;ZEFT$F#w%}pDbi_Yp}i$4z77^TTIgh<vxTQ+NEb=F
zNy-Ra$x?}*J|E|8_rmZVg@K9$Jtcic(!R9KA-S5w>{+nSsLRakIuT=WEDN>;hdi-B
zsqNVtPD+WVEFA77<h%a2*zA8o1Wbg~w-8u((ZWj>G8UdCXDsxR{Gpz()kG`n%`~O3
zp107)!m#nmi({e<iskpU(9gmPlEX}jU+*vR07(Z*I!IEAU@-Nq5Od&bDATb}w^)&p
zmKb1v_>SVkWj;qxjjxBPR2*KYv^+LSeuCK;Yhj#)H!QqqVZ4P278cNIEKIa8$-)c^
zGc8QEFvY@D3#<azAaC5I(Sq?}IG1gtX%?nSE-|0fz*!b%^K)~u=hD_r#OF|~`$T8|
z`yyE^HNiX!^DQj96=yo63oR_Nu*$+~RC^1r@{z@(nL>-HC*5+EN?Rzlqs|fw!&}yC
zZ{);fYje3JCbm{sSV@x{8-3v4IIoor8?Cmm#==?)>!eUP+x0p%wzx2G@^HO{!JA_o
z^jKo%Z=k|2%71x&{`&FCTNd87@V$jy7B*VgWMPYitrj+0c*nwf7QQW##hf#R1$v`*
zC964zM^3&^-8&y|e7)E<3m;hc+QK&$KD6+W^a+&g#}+=3++gHoZ^pJu|3geK^r^(3
zS@>LnFC=C7mlAwsVMk#|-|5kBEj)iF{+;|ZwQHw^tUu#4JytZ#)ejbav~a+}K?}Pr
z{AA&03wtck?a&6PA#}69Sa^TD@~eft%w!__kQLoW!5xV0m$D<+JzgQhSr>2^>X3!s
zEc`B+%w{JQh75GOM=JNrJIX*NVq>3;;}-s)Mc8m{oS?N@sAD6?#wiP@E&Ri#IE!H6
zjD^b<u2}fX!dVL!EL^m3j)E>9IWKLEUEO6%v(H>DM$Y`PDR#-i&=;fp7K>K7Sk~Vb
zu3ETe;X0k|VlfuSe9~J^`8Lj0@eK<%`IYjKTb5|SHasbwGR}W&{M#sDqoj?ZHj3HE
zvJtY;=~#Hv{5-x+ttf6I+Xi)j{ZMk1f%Lb0x0H?2HXgR|hz*YF+-3_SW$j<aMp+x>
zY?QZA%NBFlyl%He%MkMR4oNH6xU=x-T{iA6#1(DPoaQU{*r+4}`C?@oRczcV6X9(Q
z393q3P15R;vZ2DKHErA{Z;y{xczb_g%C#kUK+*?oJX9DSwh<}B9C7ONLLP@kX?L}+
z#&d1dwb9bXlQ!zvh}vjkqrgUe8x3s4Z8Rd?6ph)UaY%Rfs4XlmPf~)05>&Y^D)$r5
zM@bvoqU(`wW4av;ar3Xu<JLn@*l1y+nT^M64DOXhHGAAfbC!2e4v!-s!^!r8XJXV+
zihwm#D;uqCs5UekZEUo)(bL8=Hs)Rw9h`Qys3qIm=wPFxjm(1uBU&n*Y}_2LRGy%8
zw$a5#SH`iyllS<D7XhzsHoDv3Z4XHap0=SB;^i$05;k_EgoC0d|LAy}L+iQ?!-mOE
zpAq$V>&s$FlwY@~3@k!}5Obcik+MY<%t0OwZt!W^hG%1$jpa6cO3KDi8^f4YO2Ou@
z)iHqaZB7QEpN$u6^p>ypu`z9O^iuU~GLWOq&)ev0|KF@`+Rmqvvz?I8#f-y18-rN7
z`k|L>jIYsfFy%Et;TYf$8!y`EF+i9MGsfl(4{WSnrC>PAXk(F$S8R;5G0MhF8?$VT
zreX_83B?{OmHhO9*fa^oNjhHA36f5fbdrt963`;1*qB;~n@&)=Pf)0z9Lt?ygOguW
z2Hwu5A{~p<pUmOcIrw0UCLgbPHs%-N1roe0=|UQv{Qc0YQjwO}SSrC{s?ee+4@r1!
zsVEl*vZyL6Y^=1g*~U9IR*_dW*4x-%W3`PnHrCo$N84YN^SWd&Tfb~N-gUhgb4VHe
zuesYHC-eq$YvV0)@|6Ncp42|{wvA0T8n=t~V?|(#<_#s1nIKwX@7nD1;zJuBF+Vw>
z_ib#kvDFq$5h}or<MD|Tlx;Nj6$Om^fh;m@?PD9CFpiDSr0Q;$`C%UBPEby8=vx}s
z_f)g2$QL%gv_YT7FMef<Vb2}1_+Lx<jild7x>M5cBrSHWDC6(4vGJAIh6&0KHhv@@
zCMdfl{YlcFCEX(_AN?Z1uaf>YwqU=F11xnCo0B+b;}G>Wi6DvJZ2WHHwj|0VaoENY
z%E-o58%JsQHcryX)BoFeX%{Q9Mr;fH!74zOj`Kmx64xHEdOB_6G8r{NG$#MFaYjb?
zOVYEFo|E*vq-5g-8y5@lCFZK87-YL*i{1y7|BKbJYc{Ua-fi5Xbk4+C!Tm5nxgq@t
zC(-CY#@#7i`Nzh;HvY3wB#9>f#zRRIPvY}^v7$+wnxGVuI4g<Rx_kyMe>FcliR_6=
z$s|f7ac*t?$wm3R<y9()(n)k#CvJyq%rBcnxg^XatR%`OaeETsBqB-Nkwk?gDkV`l
ziDt1772wXK7@E6F(z_+CC@BMx#61#oI*hke1~R8g689!iH7T~&@v40(-tbbqT2g3N
z^(1OYP&0}9lBgvy!yk~~{v>Mu@99L*c70IdhYI7=oT${Fs3d<WcsPkilBknJPEr^n
zTlKj~)J>vm66~YZOCr_#u{IJ%libdL1~P<!O~@sQA59`pf`&;nmLQ%)BMI0(;njYk
zk}q!ww24ZA#7)VNBpyrR@g!O#(J~3X)jWwO<kNl=mC@6qV<detiB|Gy>m-=Mf{6;h
z{y(~QqS998t(~OIaQh@WNZc`rPDym8jFMn9KH{fI{|BCuUtv1klIUKDdnEC65{kU-
znM5K9HHmF}D~Z2;kA26?C!r@{$OydstuQlu%B1Whl1X?;%)44NMbIbDNy1Hvy6<S0
z&<7X7X)2p^3+=k*@Rrj+tX48fJe$PqB<3XXToS#K7?Q+`N%ZE6NeoJ2a1zf`iz-Dp
zVAwY)6#n8wr5`zVCH8`({UseB>A)o3X{zuM^@p<$bUwFDQdmuM*5IWiMkX<eU)dWT
zn#8aqh9~jhBxOWW96wIbWRk+uYuSJwoy1s~?J<<&B{3%XKyGMU660wjZKD&Cn9QVZ
zk4#JoH#kXBHgt)n$ndF>PLp)Hq>Ma6f|-)eqUk*@#;fO&S4pf(Vto?xlUTrFb_=aa
z;^ib3N^PVGEFwta)g%_v5ahTeTV({dy%b$Sqi7vj$`tm+x=m7+C9yn-6-nGSIJz<^
z=2>c1D8dN5f=SA2Nvuv{4I>=Pf1N6k#F$A6F-34FQlHf*!G<K>NaC#|-j-Z?lOLU=
z(Es1fiM*T;MX-^caA6)#KVxCvJ{5T<iFcC-rBFPD_xQym_9XF35?hkkn#4y*d`$ge
zYV|{0`uIT-?DOuf5&1AFMguq@Ncu?<+v#(X_=4Fx75`MqmuAQUekSw4CKCq%{wIYm
zllUr$9Z7smDNhnxq<=`_n<TzXih1pw6hso=OWf%5*e(gqOi~z=*AJ7FACvg|Qqkkf
zW4n|1Nj}~2W$b4ON=#OMO=52nhv?pu*q6k9mQ-dyj0EltA4rNpS7uCAL!5(P@9B3s
z|0K@PG?L(yH@S3#=CdnyG>K`a<GhYZa6E}WBsd}I$-<|nk~l5#pOUgt<11(BHjl(O
zUr;n9Mq|!VzEsX6E+)n8b!pd^B)%-^6-ob=^s1!SBxPip<P91Brlhwd{YTP&CH*gn
zA}QhGYEBkzq26SrSPEGwVXa%s#W@zu7DaXnB~qxF!hI=}OrcZ?6;ik}h0-b9mO|MS
z%2D*oqLd?7QI<)GCTMdT??N!Dd<wUxa7PN0JBk_Jdi6uiCo9V@#qLVs?iB7xp;AhW
zWmRO#<wO?)ss9^E>p5AeoWlGPkt!*U*+yA;acqRlzc(dBP&I{W5)fBUp++I*GQwIZ
z+@HcjDTGs~ox%etu~_B7lu$ON_QGV*Rw1VOM^bn=g-27!OW_e&Wa@KF=D$t~IVs^H
za#O<Gc-2jzULlUAP+#H(l5!e?5tyu)e}5sbVG8*vG?D4VQy4Q@X_P`^35YpDNZuBt
z@bYA(X-b$U-`zA>Su!;GcnZx~SP#QIJdr|+6xzG!;G$&;Po~htL01Q@QfQsx;f>gx
zLYoxYrZ6Xkxhb?`WELTX=TqpALdO)m6nyfwTc}eCU6~m&<VdVDIWs8QMHY7Zxj4()
zjnYpck;3ME`Q20ajyaU{X-Sn7dP>0N3Lh=2R-mSkO2HvlQ(|Q-FFgfAVpCG9Fx*Zd
zDe)(N7iF|1e$-8Yy?``xRX4=jx);KvK?<1^o+Y<a;0m8Zf5%TuR>-1WDKS#VS&5f=
ziJ`OJGSB?`bKeyDQJqqllEMoq^q0{lr9{th09A2{G9iV5DGW+sa7sAF;VFzrfeR{z
zNcv(5FELkJVhkB7`9F*icINYTqy(d6AVc`>Xi6=GvDA>ii!s7D`KadK#V$=&#;5Sl
zs@R^<(TP$AST1Ig8D{TwY6{a*n4LoIvJ%s2EZssgnbkgdn~N5k!S&?*qJ2M&&Pw6I
zDax&K`J^=l<WbY+QQK44mcj=qETDR%@Ky?Mr?4<3#?xL&;nft@FN`iqq3IN%!;4e+
z<AKPM6qYinU*lB=Mp-9znxfF^mr1{|JcSh!Fl40!t5SGPg4HRkN#XSr*2>!rlCGnM
zPgd5`(kF{Vc(M8MMhb7rrwn8}gb_BTu!($NQguVt6d|e2DY3$V17+`|@Gh$W8sqEv
zJzo~r$p!gaQrOCJEsIsTQk2n#PEkHg;iDA3O0h?Yk5l+0g-=uXEG5ob-=4zZm>8yD
z|AKb$xwJuA>lY~$42p6I(3h0H9Lwc*Il=UGN~|^dhAD8mFewIezNG_^#!lV-E`{%@
zy>c1et`vSK#LVhXDg2y56$ke^*ptF9lqR#y7gN|vjY{EE3i~Lm6n;zLcWUfK(aGhv
z4y14}g+uZav!^JVJ4U#;<uJ3sLLHC)kwS1Oew5{%q8yVNyK;&`d|Za?nWCJKFS11c
z%!-~SV^cVr!Z}$?ijVqpCWXJ~mlo$3v$ILhlOesL7paG*<15BRFHolAq8+b@QOZkF
z@h+!uB_-M+e@l8*(rYPPm*7SUw<NeJDWg5gV^QxaPVip}MI4lNaGQgo4vIO*c2L3*
zv%1VlmV=Okr$b^j#kna;aYwXyD3Ov525t&{HaW_=ugFxTlmpV67sF*7lyv|H_c$o$
zpuB@S9o)s+smkq+n2x-|LH(&p%c;t-3-Jmvgka63@ZFA>^R4KB__LYO#8jbC^C~nG
z9)oN7<aaAO!sk;fsye9VppJta2h|<aa8TR90}g6BxX(c?2lvaAb2mg!^~w96+$lAl
za$mV<)`Jcna`3Q&M;tL?6P77cZ6c1~EsI7fzG8zb-eWZ)xen?&h&yQHpq_)MgN6=r
z%NMKfpaDz0CWmbpj)pO}F$a%2q876%NAetKw-;j{pDh7$jN>_t9ppQB+(B~(?!g%S
zKojQVT%12RC~(C85t=$^CIRtdj__jy)U+oYv~bYUL6d%2-wexplFpyeAiB>~U~+@K
zxz-NaIJnX@($+yc3HnY|+DpK|4h}jN;!X}a7h+b{PdVsD&3EvNgYFJ`IGF8V4khkD
zanRR6KL<S>JmbJ{U^+a}R}5<>9H=ayEdG*|7@OkAzwUsP*m7Vyc-FylG^<59EJ%`=
z8*R9V%Yoy_j+LYgNlV~K>Ps3(nxO<Qi*Zi=PO+DR-VPqLqg>3-kUkEccd+fCILncq
zgy01S{T&Q*Fx<faYNmr19lYcSp$u{`!~wh56Q(MI`E|A6#<f_FYmJ-SlRs2`h|)QE
zGW=$%M%4BZ4n{hd;$W&HJPFl+DU6~_S@5z&#_*}!FEdtxaSp~8hD>lUu@FykFu4$K
z?4_{NG0njYDbVRm_MbS%UCEZ24rWn}uZr~#r~Z!pH!eEY!90G*!RHR<J6Pc0EeCHq
zc-g^12P++{a)g&-#uhQ>4qkPz|DX602dkfp5-g_8HdP3g$`A%FbFf_E6^<B_WXO&-
z;&n>oHCoNAC^#2P`Mw!j<KT4(h}V)`60etZLt*$E4&Ib_%~XZaHagfuDLD8*8cv<-
zvCWQfeeXDU*TH)ZsuatA-@zwS6@vF}#zz**-{N53RAnm*!UOk;<+COKp;V0Re9;jN
zvyY|1d_w>8SBw`Y5k8e66gvL~`-Ouq9ehJh(pNax;eZ2NUrSHL2weWhe;$#UJ;vqj
zbnu;n@2QZEsBmc}R6iE{2Wjk#v)jRs4mgm=!1GfTo>2OegP$Gz{c3buq<{y@|LS0`
zgHkR^yVyrQ(`5M6!2t&c9h`M=&cPuEzd87m4yQqgR&TbC{?05N67vX$DJciVJ4BC?
z^EBRzvE%fI)07i3@DE1}dhqE<CVMePaLU1H`H0P9-kxFpi$?yE3Y;@dc*64zE;!)$
z|0SCLzSu<v6Z(iHH<glLTRJ=>?=mg4exu>#B3B(;bMOycCAnQao96;ucW}eOO$WDR
zf^02N{h0o{{pyVKiv33`c9G>G<cdMgqAsTVSinirVlMh$j4^v6t1jNJDtO2--fUO6
zrV^5tl$5t;S{2;pqKu2Ui$*TWx+v$Oii>+)ly`Bvi#uK1<>C$(6<pD}V~JW%Q`kXZ
zSB_I}ce|+QqLM4T1YGo;AHBzgaw^XMb`i6ENL<-PyJAI7Uyrk%t?Hthi@GlAxuP{o
zMXK(ihAZs7N0(?#7s+X&X>^~9S}yK)#jmw$yNI}W*u?`b9(3`Liyt0}toR~7>|$xz
z2+yM&IZa{6BQl&I$3-0%{5{R9GCWs?4=jlA5p{-sm^A95zKaGfVlEzak>{eJE7X{?
za{qtY*hN0u@GhQo(Zof8i)Jn!bMfvprKt;g04B)#@&2bmoF0ALMROP5PgB_1<eb_Q
zE?T(4`LKX27hP5>GP6#ojf=J}TD!toEoc)VW9hP<dMMJ)#S<+X?VqMxo~Cqk(TSo=
zV?Y|6U377=(ZwbgU0pooVzi4fF1oqs?jqyjSr<KAJnh1CVNnDwdb&usP+dI3@Le%p
z)H-^wGWFv7&KA{NVe+~QPCxPgU-8NL2D>UlqGhKmHl^Sq<-&1=QSe3jF4mPUzuPJ5
zNk*kzTyGcRi!7S&B5=jzJIhElqkcZ;qL+)8TnweoP`EAzxftx?d4}&539@P0m${0D
z`njk+U3r0#r{(u|F+ko@waCwb60=dkDwxa};tI=pk(w#jHsnoLsB*(x40kcY6-`Rs
za`c-S;DYv%E=EbE>M~snFN}3D&c$38^IVK~F~P-D7t>r!bTP@rWEzevDeFg$II)b$
z=?XQItr~uJx{DbuX1SQ{f(r#_QpvjsCE*+*b3)EAKHL9uSjOoJYpeM#7PwgKVu_2F
zT`Y95$i*wJ*jCeoOD}E{^*+a`o;)3YRdSNMM?2<(mbzHxVx@~!)F?Tpxm-S7!FTtD
z*Pn||k>!1j$<~alaj{w|Rh5fzK7F09G>xovMHjwknaDa9>s=6Rkn{~n-<0$%N%`n)
z3HmOMZg%kw%{+}e(s<X!doK3UZPIDD*y3UrZO6q{7uzUb7oWKJKw3J>LeKmmRfraJ
zGWKG-g5~7cJNetG&(#0@LI*x`@i`S{b@V%`!HZ((fJ;EXaPcLJ;6=ZZbcdv0OUl4+
z=#&caP8tY%mtK@9e9ttO3-F_h-7fY}5RyxD-CP*?6OEm@ov!dIc_hqJ-PqLs)fE*k
zKg#9q`{_nl-ZYA(anQvf7yr2^k`~h+Y~xXUzq$C`#g6T<!+gudQ5VNtT$cJnl|Js`
zyu^RFI6*y;__T{ZB{;>H*ToFQ85e)akaIHR-Wx^F%3D4n{$HF6GUTG9mn8jP_!Sp_
z%iF7x{_EnJ1lL{MaB<VcEf@dL96lEAm$ds+Vhsi_0zM^RSy+`&bEt}0X@t^Z@muk<
zFbXb8=ZM_S24cThb{Zwp`0bB4uaaq$D#WGJxUCSENuz8bE|*66LQIpakj9;9Jd;Ku
zjl0sgJB?@>_0y=B7HU}~jeFBVU6B@R%<f5}QX12GD*Tsd<urboE)JjP7AjU%@16`-
zO$(*1mPYk7YB0C*c1_tL47@LmT4~%bLmo)u!8B@1%t!oZ&_ij2)2JguB56FF#v>9l
z@msIN*m-A@piRRF|I?R~My`BRS5juF9y2CC!N?8Lh^6s#8cG_ErjeIM(=?i;g%7Me
zIlte8Xu~w(X%IA$w6Uc5k}|M~1O<{_nXZ(bp*)tx<7qT!&SxlfU&((WjTULNPovG>
zv6hmyCQaj|9-$}GXeC2FJRjrJMl+PQY4kZ3CvGRhAGjpKJEYMujZX3v-gaj#AfI-T
zlp$RucuLZ4Y0*~Ui#-aTa$zm~q4{sPr&NQf%VM-9H4QC|RGR-fgr0_xMlvl{G?{5(
zFLa*NA1e(zEnGd@58Y=7H+$~9=w7*Lq|@k?M(?z!w!AblX*`>TpGH8@FUsjPLm4+i
znNRv@!E<TOQD$=qD>uDfDk0Wh_DQ2J1<^M8d>WHZ)cI_&XwCLZ<ApS?lqgs|L)kV%
zAsCp(pfrx9aXgK|X$(nYb{ccic#(WaV_X{J(-@k@urx-dF)EGWX^cqYz6PO5o3fWQ
z5L4LPw#hx4qth6Z#vi$%v1xGeFzYW?J>2_Q<6P`k%gBT@CZ;i!`pL|sF*%JXY3!^}
z<kNd14R*$Ft0KCt+&9WypVQNrk;cq4W=S@#x)A@VWu#W6NQJ(6+#<@=8r-WgH;s8|
ze3QnvY0OV!0l%2WYU*t?^fE0XjaMbd7N)U?g}M-at4)OM`Ne6RIW8u?xk_qD8t;^e
z@LHP2GKrTLhOCfarKGDQ{c(n}CXLtA_#llBB}><)u|ACr@+<44ELd|<BCMm|plWez
z7+HEL%<HW*-j;Y{8k^GCEb;q=Pv4Q?-89~lVC9O~|K8dnZ?{Uijg`ep5l%~|tN)0J
zbc}qQ#wQfkoapv6H_YM-i9eO}GfDZQy)V=FDvfLRiEXnx$gBLw*OC$}9#p_z$Pw&J
z<GVEWrm-)L@6*_o#vXbzSByITkj8FVz#p0OrBPn|<J(VZ{G1j&_h<z%)yU!ZU&z%N
z%CBkhA5y9=Gx<v0(0)2GUeVA2Rsq!57xUQtJS2<5tv7rA7F~?r(>P2W>kvI6=}}49
zHDJgeX`G-p^HABtNiv)s(nC29r_=b8)ryBK4`<T&i=|8BdKzbCmbl%R8Do8PE{*f)
z|63byL4u2tUXt{(q*q8K;QE29X}tWdII-b|EHA}Z)Wc1BGr0@?RvQ0M!P-avmGnPJ
zd0WI2u7-ep4Nf+NJQVj(%0p=n*`637VK=$rOr?Y;#-mu?k{<q>p%CBZfm_{aI2;`2
zbaNR`tg6bLsg(D?B?NbRxXZ)sEO?gKrgw)Y>XZte@bm0q-0h*F2Y9%LA8HrvJT$NF
zP%-qur(siUJfz^Nc(~U?6AuL*s(PsA;Q<d1dZ_N9hKKt+)bcQ-W`v`}Z0XhXL|d-L
z4Y9TPe)$ywa-g;+)VSyHylZtr4|#al!y}$(v4>@TB1|nV6rLWhjt5o~xr}o;o+D}d
zQ}Mc<__Z0YdLE)4>dV^(lIBSo^YCb4oF^MZ7_*_gjeBS$LF2-w`JQOcGeT1j%{=sF
zhCMvy;c*YWJoNU^TxO{q!>biMAv4LwQVWlN&lDMc(nBi`ttD<NDFfSh;8-XDuQ6qd
zw<qU4bo7Lq?djne51l-8_RvL!JmsOA1YJG6QCF<e;nm&4(=xEf|LC|pE=%sgb%ye`
z#Y`pPLG|Exa6O)L1>HkZKH|HE2dfa967XHSFr@QLG3}o6@c)IRJ@_61=D9EqvyqYb
zxx$cVB}mD4iP<3RLl#{MadzN&O1x|6g_#P){ep-79#3$>5US-c(Jvn0VW5ZI<3u-Y
z%1mXD2hyh73wZk?Rp?5b>i3d|^;e2gb!XlY8SY_(hr0t*3^3BeD00b1S0AIP^B!){
za6F9lFpjMDu-C(Q4--7B^svgqL=TfZ%=0kc!(@KQ!!!@mrBK*1WNkQ=s=Fv>Mpo9x
zOY>(?zI(&0RcCs_m(G%Owud<q%=NH(rs!*&`9k={1s-1Z*wDpNY9O~a9u6<`u!#E1
zoLr8P8=MY%RpP~xGLY_z3j(=`o^+Xq?Ij}1J**&e<j#&^BMV;RCp^6C;XMy)JiPAV
zEl(`FUF+d9$>%pbtRrXmq0jT{4bR`;f%IsHf?YF}H>FOJhnME$-WU*ln>O2`(MAuO
zJZ$#xj)zy}vFb(lh||uA-}kV^!&VR5JTX#Ai{`ucwr#`#ZB8H4x<By5A=Mvx_{hV@
z9zKyw_)Hq<b~;1Jice)=iCN0$9=`DKrH8LP?DFt~haEEJPD#I(^czXZsBa~xJxlqn
zFywm=rd$Q|qYU|3(%q8&R2XMqx6mGme<=*%EBid`r<eBdr-uU`4l+L;j(a%d;WrOQ
zrO>Hzzk68tcl?O-Hiv1{a)naCET!8l<-H4Ws@YrN>_5ocuAviD`>s(=`SGojRIpZ&
zQ<5IC8=dj+7d?-Mt4tvlI_u%Gha+7>=cGEF_i(|(MVU9M$0Z34oQm*TQli)uTKCYr
zdh6xEGV;-Nvg_f{&&NdrgJ-<Z2j24VkB5hRgnj%=*G&ofxW`8kA4PqX@KMr7F&|mJ
z*l^11g?#jxrDXfC=VTT4#pa_c6^gTGO%KUaCgwd7D&^x&A9wj;#c63DxA`dJqpUA_
z8MjMHP)>sKzBtRBx4iC<Ar*XahCFZC3cA}zMPGO}E^y`O3hO(zt}FSd?4yQ{n!eaH
zRK-U%zUZTQz0kcr%sE+AWyZL`Z_+F=O7{H=(bHb^J|DFh-$!j9JD(7{HaLku#e2ZV
z%2`VEFJVXg-|mCHIJ=tz4iO&@`)K5&v5!Z5)bUZzN0bFW9M18P>!YrZZPTN#l@QzR
zIOMpkWg~K?zK;ez8v2O)q85w!c+|&=2~iF_(%AES^k@|!yDpv&({C^DEN11{TFCd&
z#77GsEqxUD;%I`VKAQP>YnC#QyHiKxJ?4u}P;+05ggox!z6oO6#S^|rlP>GUWzi>n
zJW;kt8y{_D4qN&7e3sIh0=*=DV8NyoYrS^9IKPOwZO_Op8+Gu}Q3B#lJ~~VM^DKq8
zPx<J^FZx*OqdW8LW1x>gKA!fW_;7usef0G447u&Y@{#bN`p|snz8KY^lOdN{j?asA
zh#F-0CE-_@hv)wa+dh)y>ZPzlFUpaBUwCh}+y9!SkRfzO*{{buAHI+0ee~sr7GwuL
zf;m~ed}MsF!sl5Z&-vn9{o6l^%{><GdqgzDdi&r?^*&Nn%Fb5$NhXZy9vUFQ3%=M4
z*q>$WFWP2<zKwHP(O@P*efBZI$BRB*@-f`U2p>bq)kMgx8yZIapCW3F=Zz>A28{GE
z%EwqA<764D&Q?ZK%A2BNe9`Y<c~5u+1cO^fI1a}0PV_O!$6O!td`$K+#m8(Pb9_wo
z@zEdQ={{!oqAfH{()es8xFOD?nCWAd%rlp3Qq`F(Rh0Vzy5B6yT4TPC1wLN&vDoK{
z*+L~=@x`#uLWZ}AERwX=gnVN1hwrkhLUF%$yfJNjnUCc@4){1og{02=_>ejAvC7A5
zKHl*0rjOM=)-XTSv)7TI4Bso1ha6bzi`|zr!{a~1SWm6@@$9<j21%>G5`D|Z+dek?
zc*h5q%5S9B9TC;gCZ;(;EJGsC-}UjHFUGhyQ1CvLs&4^xV~dYc!wNdjR<`=!?X4{Z
z+kAW=@z|ycLq7KLiI4An?DDbQ$EUPhDh#c=QY1ZFA-6xHo=c&BAt`hCrH`*9-ccCx
zwFKWt`mLmMc=E<<;Tf1Q&bI&H<45L=kECR&sJneJr1q1KpQUj3&<7q1bNLGOjUU}h
zwW-l?zf5W$B|BTuxSW2r!eu|y;X^)t^YOQjt3H1BaoES7KF;_!;^U}~)AU;NvRV5#
z|0<tFIOgNHk3W2zkV4-ob9It_V04t%DG8R$7N)^h{_=5_2G~7x#pnOr@zZSOf{%;R
z&zz^fJzkRf!$Mu6`D`w@EE7ESalxOn#m}Z`YuWEaulcy{BRfEe0PMxwpttw&pO2e9
zZqa}45C7wX8%QZK;%Utlc0b9|A_0m9$o@H>1DM4EWCfzT5t6icAeLOxm+~Sg8K6{v
z3IXm6P&&YEf$)|b?c~I0nE+)2lncZpDO)4M7Tr-k!0iF<2t-4abE7=1g^hdy-m;H;
z){MT|Kku$UxVZZ?AizBVz6!7-K&1ec1N05hFF+MW2+%CRV*#oLs21Rn0CfUX4^Sh(
zg8?22P%{AMJMIrqJHUN`m>#MXh`k%UO3x9zeIO9N=>9nh*Rb(()UI%VNPvd};lsH;
zpC-nMl2U{6njDPfum}O-0U8CU8=zi*Sb#?Z@KH2CeKJ<gp{%`Gq=772vpM2qA-crw
z1Si9JfjHEnp)42s4vhok2Pg>8G{Cx}`DA+&mabnOJ2=cqFh?|xhtCmvg&q&kJV3Vq
z-2*%kphbX=0XhX}8Q{qPZ3DCm&?-P{-d2imgA#xG#>}?~aP5ocyqdk9%Z#<>yWMg+
z$gdNeydnO$)Hy(x09-rqRDiCM6|?7vku;9p7nk#B%tMa=PX|x~Xv{`~kP_gT0EqxS
zDeg*QD;C*E2Sty>(y_gv2QUHz0WtwhnP&ak1zg&PA$e8+Qd`nwfK-41{qr128ScvP
zw4|P-e&M5M13VX?H`#t6{H0nz@pT>+?G@myISN6a0M7@aHX*kuFY4F}0ne1cs{s}>
zg#ZHsObIYGz@Pww1B?kUHo%YoF9vuiz)&W>SBy}RvSC1{H!J|p3>i+Y?u&61GzZd0
zuon<u#-4m$qgbdy%y#>@0OJEp3NSek;|W~;H$f^tMKDpO%!XFicG1$MB0QFapO{7s
zq*?};8{o$|*)syn3^0p2Ts+cYfEZig`3bWFVeCwS-ez8a`2k)I#Nyccts@HpIG2mD
zy?yDi$oo|b76w=((_u5|73yTCM!YU{4=o9>l>7<sc7SC8mIrt}z*^c}BD5mF$^ffq
z4u`^A`NsJON|{~t*8;2#utsK{)ilR)X~OFQtPk);fHzq>snwM7h7Dpf5!ZZ@;mk0P
zU!#_846rG{wg4Xl*c{-U09yiVm3H(ld45}jzu$c?!21E%^<&C(r~EW)0e*d4N%60@
z4+DI}PXzcZz{iX>G>^*6^gju(of4U&9Gs&JIUT=Fqc{@&Jir$Lc0JXIo}AmPmftM;
zC3C(%wtQXw*NhyXOa^5$_%^^!mNek+9`Id&?*r@&u#YbW_#wbg0e&X;nAL$<pLP%J
zmLH}6UnLt$djkAIqh_9Ml$k5$ZWzu!3nj&!Bl`m!2yi68(EulMLI(pJ3h<khxLE%w
zdBvg~4#25=PU{m>$BqSJ-066LKLRlm&7`9L2tJ>naqSOt)`tCp(*gbra5KQI0A~XH
z72raEi~JUkfD3SrjyFKBwK?P%8^#nOU#ADY6yP#FbAYQ<tutZnQ@bMbus|*hz9x%y
z<!Z5-!wRkkxDlY%T&2`!v4(S%oqJ;c1o$^V$qY(m@Lzx;8DwP;%AjZl3s&TC89dW3
z#uHEvhqq14CoP^qb_Sd$Vxeev8`>8uk->_tAqtCPEuF!3HN<6Lw`FkG4{^4j#xBm`
zVuNxSl+U1L22W;idj@x8@Nfo?WKbc4J2SX9gQ|?5!QC0$lR>2no|>yv%m~{|@gH~@
za4e2~hO}}<c-kt=ZOP)42r<K3a0)ns>KV~5h-6SBBPtiZyKt`9Ls2t>XAZ{i%b=D7
z_e)w^(g!4cP|}AaWz28}!{;gltOxbp(K;FAWY8#s#u?G{%FUo|2KAWX;=<>=HCOri
zwVY^1bZP5n&>(|YMohjxD(Smr3W)P0ZYXJ7(lL<;!}Bv}l0nmqXxOkI^vt{pSbQn9
zX0rH?W$<_g%`;*qjx!NG7e@)6$e=|AYrf1U?!PU+RR*n@YzAfqZ8B(^LFWv*WY8{y
z_8D~G>)f?;Kqw)<!aR4(2=nj6_}9XmFr~eBWt>>(sSLVh#Lz2acFzb!QZnet#4pEt
zWbm{E?78rk={%Exo&h)B5+^cHrCf-$49-EENySI(_**Pp20;cH>dd_CWCp1W9A==U
z7+YgA)y;@?TywHTqc@#_mw}(bFT3*3Oo%pH6=T0RQ9tx7S&>1nj99wEBV@S=k!OVR
zbynZcXV8}d>Vw=q=$F9@8T5V*eV#-A3<hLS@mb(m49s9q25)DuF@wPw49Q?Vb(@*b
z;H3;EW-uv(p&1OzU~~p!DE$mZWH2&=QG78sG&omueuw0Ss1HMPL&I`I!#M?z!MF^@
zXE1@U@Rqv(azo>DLz8ktlXF8;azj%IGMJLV%nW8_Fg1f|8BEV$Mh0_oLvwRO^KwJ;
zb3@llWG&1ME#fCyMrQL7*`C3?43_4GmgR<)=Z03~hF;4Jt<DXt$qf~MB=m9y3p02v
zgVh-<%HWj@mSwO!gI6<HO#S4GENO0NV{T|uZfJ9E=)K&~`?;YlxuLC0Dub0$^s6%X
zI5+f3ZirrJyDZ&jOkb+^x(wE5@OlPoGx$0;^i6K)+uYF3+|Y&$-pJt14BpE8Kc?OT
zOp4-pAHO@6Y(NxVP*f06cF7CtvB!Bva#REy$pR{H6L#{>%z_C?iUB0&oXn`8VnD?l
z01*i$6!?&HM)|$ne)&KD=b5LTnx2`S?&_-Q?&|7lY-|$S)Fk#(li21av0s|Rw#po~
z@sDJlQv6to4W)Re6z@_DOYvDLR+nN;DLyR4N2PeL6z`YfgHo(5#jYkXE~f0^=ln(0
zy!}mL2b#oAA4q>J3;78(NhyxV%t`;_O=2fxEj};B`ciyD^<IiEO7UeWzG6{JalT3H
zLX+4(O=6sG<TZ_j4P*IDV+BoP-^qG?Uy2{7xSGb6{9T4pT(N0v|ABO+rm>Bs*i?#R
zr8r)SpGvX06gx`sYbkyv6OyGF_L&N*Y3!P&v1(0Y)td@VsM$2OtrXj3A*qL{18HIV
ztrWjAr4)O~MLlBd!T%`5pQYGI&3Rp74>_||$zSBOyAyv)xJ$y_WWv{yOsrU=WPa^(
zO;6_UE5-g&94y5lisbhA0n&Vj@V(s8HnDcHa+qHoN*^U{?M6qWesEfgV8WCgdj6a!
z#Yt*!6)_d3N^!ar=SUVxN0ZnYDW2R_M-_dR`gUex+Dk8#;vedH6%TZe{acCxdUmSd
zxVL%P<`+v*uU6wVS2yCXf0-;6><Uyd%A#SXtcr3fDyz6mMR^q!RH6DRs&E$zTMF5j
z@%<{PLRGS3r8DH^Dy~p*jf!e2u2k{z$u#Ri4O4}JS(4y&m5Qnozxq<j#T6nD#F5Dg
z|HvM>hKiahmZ(^&;#w8gsTiPQpo&^5u2<1sMF$l(sJKx@a}_OA)K*bPMFSNLRotYa
zu8Lb#)K|r*{$`eWiWu<UIX78P#Vx8pHk2tKjH{S8qmUYjbxf$(eOuAhQ<TZmiyNtE
ztRl%@c*5tr$wATaHBr%26=7_fsiJ4BH$}03O5HO>q25cWxQ*GWxJyN$ik2!`sVJ5N
zNlR!POc$wQ)bSUiT)vvTT^06N_9m=siHbW|sZbaeem|4$GesFN2zRTvN5#GJM=b`3
zm{A-Iv{unZ#hTN?Paxho(N+avI|(^?@2H}a3Pr_3Dmts^qT)eSFj7|)-BfgEi>tU#
z7KY74^?N_Fx?aTRB#F2MpofZHs^~*|s^AEpk7!ufbDQXSNd$hvta_`W6X~Ohk<3ad
z7kyRqQ-!IDYZ?7joZL~&dOfUSkcy{Oj8ZXJ#Sqp)g{k5Z6_2VIuA)@MV=9KK7^b3k
zk68PZuo`i)T(_nO7s=tbszOttt1y_Aj2XgWRN0g6wxF0V@M3phsjyW<Dsn6jS&<}F
z5vuT1u_h?A_n&cJMV2Mm8fTCP!u=KUCe2B4w8q~Z|0Xp;#Yk23L{F%ATm@U1n~QnN
zr<^jAEKic2hf+^T$O1g0Vzi3MDyFCyBS|q%#dsBCCEoeflsZM>f1g$HoQes2N8Yjr
zd7jmg$1A@;{!#Ig3VKRUR56Kc{9&r;hBR+qW;-5_|8G-@IFYF;3XZ1dshF=~nu_V<
z5LUTIY=(-NDpE2Q;w(OzqRf_%$Q(AV3NE$t;_U(z3rQJ<66zTv*DX>-Q*t}oV%f?Z
zpEGfpisdTGXozW8p<<<qttz&uctyplD!x|njf&UEMJhg5v0lX+D&ADFjyX`Y=cIU=
zEvfXDid8D!R`JK<$#+z&CSOVXT@_U}^1P?y9dlCesrYF`axGbXPU?LLKTz@36ot3E
zK9ngRN%*mfPbBiAeEJ!s>3_l<i-q60C&g_YU#R#}1)1b43jTNLuYM5@X&ke0gCVC0
z->Udd#YPpIsJkdc195w^*bh?0(F68J*-{%MDJVn-rYJNQ{6yXIU~IE0!e6kNekNP4
zPHmxXNtgV>YQ9raZmM$Y>g0A6J5(G}aahH#Dt=S3iyA}4@2sqfKdI$<#2%ed$e|QD
zmPOjB;x849LB}aG-DUrlvP{X^!!oGYui}7gQwku}-Cikl`y}M1iQyeYNuK;JeUMu8
zYypdUM8#1R7gYSC;+Tr#D$c4nr{V;&-H|$_;xv`jROKX<%!N4PZ{IOh%(>2x2acqB
zOjQV(A*Z+JB?X96<XcrJ^RJ4Fs@SGY0cRpV$<vUp3A6l`v+)8A>Qr%tX;}^BG!$uQ
zrJ=lr3K|+{XsDs0hDsW$Yk-Eznh0-lg@!9R7~?6x5?-ze6DYOZj7%Zdlv&d%8m`h%
zRTB<-S8Kvyj~e3|4b?7P9Gdb`4GlFlT&v+aO~}sR$CA6t<b7McgzibTG-0xfYq(y+
z4VviJxIV={-l(CrhQ=*Q>S(x0B6H5A>uR|9zr+uV`KX?TTjVYATQ$^|I2~eno6y8*
z3(rkep1wTMi0K-dYiOaNi6&OZnrdjK33bZC+;V-nq=vUniN$4l@>2xJ04WW(X(-e{
zzYZEsTWU0_C(FzJI?YTv3pLB#i^ZB42DjJHLBs7DN;KS|;Z6;QlCgFg?$U(2S{ssO
zT*=)U?$L0shDB4A)|yZbL_V6Tbo((q;O$gfmas`oU7C!#m5>^&en**e7Y$uCbkfjS
z!_)s0vuP?-7MnlqrlFUH2jy$`X}DiQciBb{XhLCT|1PHav4@79Ecqmbm+mJ&j}<E#
zdTZ#T;UVq+f@cQvQ*?&!tKm@%pO!D_r=h=wty7f&8Xnf*ZAg<Q12xbUnTdnQ6@SJD
z%k&`<@`Xn<9G$8VDL9>eOv6x_53?G^Ur4-ELRCWT(o<a`{KV8?X}F-{A00M%l})1~
zsl#Rd8a~tTxdvZDR>LF>FKY-ige;GSCp1K|`lLoq0~cg96(b}O8VpU2l$=I(dQ!tv
z8pdfDPa0|%rQsP3qvdNfi2eDDu(XdM`|+%Yr6S(ZSWUP&u?ZH|D0x=Ha~fXKFi{gd
zON*L`Q~i<?G(4{f^~>({1v10r<crL(LV^fKq#W{b&HDO7>B$<VXjsS=Cx>g8reO}-
zLc??o1%Je6YM90HaE7Z1j|isBmg#JLwlZ&HhvM@z(4lmJOy}?BYoaUXQ$}Is3yU=@
z(eR0+z)}s%D4QBSX2GTwE~i}lo8GiFwL-&64X<c;Rl|E4-q-M&2Kx5DE8*)BzM<hw
z^1p`N#mc*<Q*UcnrJ>B}6kns=gV#G6zVws4<+WPF8V!7niT}Ou0mb%o>O&1{<%izW
z#k^f{GEK-b@4hy1Z*y^~?>b6urMypB+TY@ADF#1Tui*<SA|2&*e5v6p4ZBzd4PR^c
zM#B#pe$>#edF)#z_Ktn8;X5iTxt)hi^UA0sS64S^*r*9(#orn>QB*00=i)nM%d#KY
ztl?)3TSyR6U{rD&xmrWLXOcTK{HlSs+hsaa__WeAMdYdBcMX5Y^nTAK|9kYO{EGN3
z)0Dqttx1hX_NTe)yiP2!hc%+SYYf+nHYsUB(XdbIwEY?m$imP<o@Q*iGx-PQ?VZz<
zBNQ2OFRg+)j>$ysXOHPPuHl4+lbY})xX4UCOP!MVX$@yIoR#=L5}uRryo7xDf<$nt
zfcU?Z@oE3(b&#inz6bd_3M5iS!ZEwjBR)@Y2u+V54jah%6?9b8alMWkbX3w&Sw|He
zSLwJ+$2cAVqvHxT)6B-4SzM`$qZ4=?eLY!lq17i^vZ{`&bwEcAU4&?6`(C39>8Pfo
zx-R;T9WNL1oNITQQd6d1r;BmvwYpGKT<IpPr3+O|3J~6?qqdF)IvVPzBj3D9M_q~J
zpBHOtH|yATI?W~KdNT7{bRn&`N=T%>MB)-AbkGx+iH&rzOy5{X6CM1Jg``2dsV;gV
z3Lsyw^fJwLv|wd*jMtIUahr|@btpOtb+pvcK}Sa&X&ps6?$L3tj#fH~b=<C_L>F#U
z%&PfRVGq1R$DKOXwMq0nlU`A#m?O`-blj~YJ0&@!MS{V92wUrDqob{kcDfJ;q41qT
zs+ab%NQ?u_+}OWxe$h!sXPu|s<9;1H<hpUMSQi~#brBo9o2)+V+YG1dp2+XcD(mQ>
zqo<B3ONwb&W4Facy<ViJS4g@&vLMBw3!CF19ldo7*HNmYkB+`N*H|%-O+znGU05mm
zGw1E8K9j^6H@!X{)-g!OV>*WFVzH8C>-I}(u#O=*XdUA9h>k}u;mHL;>Zy=9#v7)C
z4lQGw##GjeRMPQ`4qb;qYUm7$gp3YTR@v8K>0s0dTZf|~wmVIH+%)CA5lL4EVb#&a
zo{oB(QbfqNtVKxvyt4`27+4-2G!W^?kqPf=K0-nwBXvA3@h5aVDUqin?DlmDpFYi6
zzg&*UXdPo@8TxWTSt9K5x$`J@r|>0sR>yNX-qo>M#{@QkjyXE!>UcrNi#jIhcv;6w
zWYiY1iMkMHuKtWF$fNm!M3~Hm&@oHLY#mccI`UOlVe*=;WBI$OnS4a=_hHEyx>y#u
zdTr{ZGGf?6`jhMnrippzJRS3OyrSb(9Sd|UB$0J2(XmL%QS(|w3^a7Qx$yN`%2L%4
zt0yaUEMxvU$~~Rjl3z@?f+_jMY$jTg8Q_|6HeRE+>3D;(P%|;~)8v~v-qMAskU4Nr
zy^2z!;~ib>Vdri6JA`@m+5wG;tYKT|bQHu+9q;S-K*tXhc{ZGm4|RM(wwH3sl7FO&
z?($<D?XMDB8+g76H+OuhW5($emnvR8o&HS6=a*!5y^b#={-uOpT}uC2$2Zgx^7cCk
zzn74H4#L%;TXF;2u32oej-PdGlx??37W*g4>G620d8x}z7HpAprj-4nqhC3(Lzczc
zDhaqv$97$qM0QB{tAxKv_`8IENXS?geCIEn$4TR)j#HA<yL2>a6l>Niwp+&@DT)6h
zO{OVFb?nvg`{5L?eLD6_{D6c9B|IeIVF`~&$T#onQgn>OIh8&x;Rzkhe<|i|hYhLI
z)G&==tsBM8QZ$}b&X9+@$LQxkRyn8RJb7DgBO?4)$3@DK0oy>HfqVl44Loe1z(5%T
z_ZYa>K+Hf{1I-PzFi_4wc>{F~+-#tNfr<vMGEmh(C8kU7l*<fMHbhT!>-WWkmm9dk
zz?BA1Lnu1*NAVxilqwScoZVvoqN@$zqjHV$e@1mq=&BiFFwYHK)eXQv4Ffd|!SlT8
z7`RsA*GX7Q!s`v(Adwpl)RqX}?B7l-hUR%<ynWN9^m+zvG0@0BV*|GusBa){AYouw
z&)Ck2Wx22U{4}M3foidWhBBYYvqcPB@*!tuO$;<OP}D6!H>zd^lC1kau?OwOQ|W2H
zq~0Bt<iQ6i1Gn)V1FZ}c8lrz`X&`L~!x}k(_KGJv6j8;oNW}(jH*mKh)cBrHQYEay
zxa6G%?l6SwCab@*ZpmGS*hfENf114mKfgGrTx$bu4D>Sapn<jq+VK|#dKhSLpo4*K
z2JSP2_^>zZXrPmU&IZPH6{`F4=?YClT?}+JK!n<Zkgwfuh`y{lt1JV9*PE`~+_Gpv
zvsh1AFpj%845J2MAr%AtnAj%qkb&O(-O2RPZ&NcS7WXm4&X>N1nA&g&qrZUx%xzAJ
zJ;?gqBJvooK?WW%@Th^oGKV1&Qktml`1CP(Tgr+{WSD{B2597A@t6-^P+3R=x*<$J
zhJlRCpEw<cIYi_OrXj|+q^e`UHL%*i8Uvmo%u|tpoB?0rSqTFJq5Kgm&WrDiFfh`<
zcmvNGc-+7f2F4f|D_?%nz-ak0Uwg{H(*{Nvc*el%oeM~lLhij?-uPub(Qr?iZOxL<
zotSW(q$(Bia|R|DSY}|kf#(gpU|_m|83tZ7@REU-$@7QO6Uj5hVv;_|K*@CFKfKp;
zrQxE~WCMg#B%Er9Dd9AU>otmJl0R9<>B<rVvstQr=}#La7E5G~gmWdFC*gbv7Z_M5
zkwp^nlex`fnd!>?6%$KIr8^TZE)|{E3Ii(*2GPa4WZklfR}8$y`Wl!xU3pas1$puf
zicFBK#3|~#DI#x@2V}}B3E!5G=_{uz9C~rc$LSAS=RJcbEa13-69zsou-3p11HT&h
z(7;CqHW=7w;9~=y82Fyr<6!<e*#vB(FARKY;4_MYEC4yY%#h+UlauSo-ZPU#*xh_-
z;4AV54^Qck_?j%#A@Plb-x~N%B21a?Cx2jT{ucjHzRBK`?{6~jRO1-0Ukv;tpKdnr
zvw<zdIVqT~&|iYcSJRcP2DTa4Zh(u<M|gOU-H5Rln8R-dem8K)z+nS_82Hn`0RsmO
z?391u3lxyQq`LT9!d(*XmXJDRk3{|_;a&s#B(h(^^V1c+K+k`wprw8pW_85CJip9Q
z1IJ`hNeaplyJlW|deXotD$fkA&)~FyGgQkNT%EyLL-g|HGpLXe@_x?1c>@;={6oTW
zaVsO>zY@PlHNHwL7v{;t{0s^t!jv)+*<_R{E0J;%eq@y4!d%6SH1%X~c?OmE2~RMo
zoT!`;11&B(FuMB{88E8+l^O6*F!m8uGFWgheU*en-rtbECWC4j)X1Qw%&K}ua62-1
ze0O@*rZn5G`V29!p=1BG8L^;A2Z`%4XgEU{9&gCt#td%Gpk79-ztqm4P6js--x`1U
zF>$CIO&@hLVrCKVl4w0cxg~>JGiZ>(sO~Z9Rr=o4&mf+GaHZhD{!A*70e^=sVgS=H
zgGL##xs3SR%actrXqLeU8zXHbGiaW{w<f+b(ISHs$!nsbiQ6(L%wQff%%Eik=?sQv
zP?|we2CXu<FN6CtD9+&a4BBMSHiME3?#STo4DR8N=ucQyL^HTEgS#@K*JIPOJD_@*
z_`meM8MMxbH5a-*vO4K0V%ex&2JJKGAY1m0&Iv9Ck;6M?Fvw4K%Am8PCj)kMVNo}w
zd3DWzy;Zl2@WkV7_Y5A$;Gqn9XV8O*!-bmdnZcs@sn+9@y)r^x9?U>tK0Absi)<F0
zi1*2$Zw8NM@K^@@GU!hN9*+;oU_b_qyT|C@H;|tUOL8{-a7L_g@Vu2iGnBy@agJx3
z;mIKxJi_V^Px>>IXKEDJ-J2dN+l!f3=K%p3(eZIKtFlt$oD9Zfpl4uYU}j)t#JDk&
z!G#9GT*)qA$M<PFg9(kfrU_TlfpWn>WL^gJPOmy4>1UA5;P9z<km1p0C5;A`gc(E`
zJU>IpNjQ>iDiNm8&iQx-Ph{|921{osqa=Ka#goXo8443`{k-HEdAn*sinn7k7?;7E
z4CZDqK7(g7m`Z+|T1ZMxJ)Qp?%f`$zVy?>8d_k6w0`ekTe0%&Q2`5T8NkS&RERo3>
zOu3ZOJ1=iqMof#QXD}m!+G|Q?lK4NAT=80RRtB?W%5$|!m`)E>{+b&$NgVpoEy!SD
z2H$7!1KTu%#Tk5@!6z9kVfiz7jit(9Sq8fs#$L(b)eN@IP?l$~B7>C~y!}zhi5bec
zN{Ml6#d#>qke;QKmp3walU$U+>I~k>V3ia}P6W6xL4o2aCvRu)4mp372+>1Gxm!aX
zn<+&2y$s&Z;De0lK|ajjBeo{ncTc+fOofn%wPz}~OMD$QOa@<O@Kpw%ktH(1Z|Vz4
zkoBbYU&3NQ&sBE)r4J=Jao*G?_BG2h2;cCX7Gi<>+YG+TfX@8nE9$+ddF;mwHe_&!
z%)s2pjT!7AhiC9pMx534dj@~VX4;&=&rInV+maEn{eO|#W2=PQB-}3H4hesi@HYwB
zDX@-zX0S7ZU8H~<mi(2$-;{bTe$7;JN8&9G$7$7Jk#<Yjq;e}(u{R^4G#sQV+n3&#
z!Tt;mNGTXIQ>i(p@wA!3Es&$rBN-f}ZqMLM2FEfuPF>eLc1o(^7W>k)TAZL@_Kls)
zVEIgC-Ar+S6hAymLCBztiT^c@ozH;z<eS(qQ@N1AKN<WhmF-35d@@e0+ptXDx-;=S
z6KftQB2r*t|4fBf#p=Z|Q`i;DnkZ+YV3ruPls7>;Fcmn@{HkQ4vWZS6I-9u6#N{R$
zn`mO<3KLhFxXwf^6ID!HWdf#<g{mg5Hbp45>ZX`XU1N%Iay1hiSCl;#f4!$TwQ%z|
zVc)1>qNa&!S^hQ&o}|Wa`D>2MuQzc6bC9_)@kSGMS+FKC;<ZiGG2v`T-6SCqmh)y7
zW0q3Sq+ul4e3o*HiM`EZ+;&mlMBEe_HDQ7-J^Z|ZDXdIWSEL%6Xk?1f(I?B2giTE}
zGjWHBJ53}_G&j*o{=J2SDJp-K(=HT+IT|lCF<^rT+uqVdnuXsf`sn$KQbi`H^ah@b
z7n``<6kTVDDJBd2if0ygnx))j;%=E?2MO;naj%Ki5~uIn=_itHOth1?3{c<J#ACCR
zk+X!qQ+pD5X5)juh{1D5`2s7|#Y9&V6HGjBq8saOVz`M?6Zf0wZlbq|KK#3h9wr_%
zp_u4timtPl{G8J_PP$n_nwqKqIh=b)7I@wRMblm^*VjZp6N5|)HqqY{Q;z{;8_5{6
zXDI_sJZxg@?LukPjSE+K&Si#}c$5V;@d#@)HkleFY!@^!4K>AyKf_F68v1IMa^+rO
z8B<MYCL+?`gl@txg-4=qf+6~Oo?6C)Y2y0(%2~2Vts2K{6YrgiI}#FcO|j_UNyytQ
zc~!ni7sn%K<DpDncrHG|#7GlQns|!8+Zun|#1rh(7c^$HLv9`<vU8U5wEU1yIrez4
zX~8JAAe;VvWweB2SWODWq9jvzSmZdFINrpw5)p|ePiIhwykO!*6CapZYvLsn6G<+X
z*2E+eFPoTWV!nyVCZ?E}X<`-|j?>`*q63|3Vj9bTG(O$L!NciEPnOIe6K+j4J0G8I
zVh$5yiMb@y^MandzMCiPX>Sj0%m~Q~Oe{08+{8i?izuGlmc{A}O)intK0QlWDsP!W
z;;)c3eb>ZliL5m7ibP(O@HKLUi8my^N<#kYO%rcj!s!>ml($X1^Z!fX&h-4B#l8S5
zqi_>3MfiO_?IvWIoJRPeiO<QFSLc0X;$zt^<fTtctTXYciE;m=KQqB|F(^&MIn8|i
zhm!RszA*8nY^ks1zrHd>e_Ca>@SQGgSM-gEmYrinzBlm$GqEt<!jIH@)JqncSlDP{
zlZjI%PMi42#AXw_g$lyYCbpRP!^EG|2`09Z9~dxaM{1ji?ea&zn%KdDNk7ApT*nzu
z#4hqT6Th3NKU?9@v`E68Y}013zfAls_1o0;MO5{jW{X`6yQG|&9K%xunK;1aGqH~<
zf*Zkpi|?12GyDsW3+E7mv*1G}4x2b)ikUSjbJWB!`Oa~vwRlv-LoGxwXEyo?6IDAD
zog}v~E^gbz853tYD78?@!Z{P?sU9tqv2ek}KPK`l<Xb}6|24sd7_$0BihsMJj=hB?
znH3x|TlsG|8naN=LOBcNEpQhb3rV&l<P@GfNm#)W2At~)%2c*+nT1;{+-l)+3s+dU
z(L!wtS6X5|&OyRe7OGf6>2(<|Of*$3Ty5bR3)L*tv~aD3>Xz7#Tth-gIAXTK6ke6K
z7GEb*h}V(`y}lW#;Cc%;$lI-TiukCGg_|s)&kxJ!nsqJQY@wbdW`&bxD<l+Ik)>s4
zUEdN~tAT}v7UGuJ<&hvweonJfpe*oF-{DD~f7i%DySHOZX=<UFg+3PgT1Z-GZs8sa
z_gZLSA!Q+Lp~%8*mhh@7w1lajG#uQzh;!|h%%5jebxO9fP;B8&3wK$#oo~t&!*zSp
zB^LggP;!Ta%V#UZS^m2%Y@Mx8iLIM0dfV0(+F0mdp(6|VORBAf_7;AqTDF}98n1X%
z2j4j`TcMS&lZDO}x>)EcE69->qoxe)P}I#5bBfgiMPI|0@3Vyc_I?Z9SrQ99EYQoe
zH`{u?*bd**LNA%Z#0Mp!5K4qvj)}Y;S(5B$p}z&!f@fiXg@G0{3%Vsj^j|Dr=3xti
zEN}|OmKw}Qbn9is|4lz48|YC9ACr*v9cp2i#D`lbwV+xeA~Dkmzv&@@YZ>Gm3#J9j
zlEShn#e+mSPGGFszxStYOAwrm>sVqY^<Gx-Eo3b`Y2hggfrZe*;})KfuSFJe%%n|%
z4$O_NEZ}PO2n!=Ey!>ivV(TJ8QkY92G+%Ip`Lu;mZ0NK3V<n$+Pt!B90HY}sb3_A;
zxrFd=TgvRS7M`>4r-hvsCXf^sKCrOX!V4B&B%@kbYT+dd6WJUVW?PuV5;l%au`rbd
zkQA6~$)40HWQ_)O6h^#h6p&|%c}<td3<+mSSZj_l$HH6-bGpYCOW~SlVS$D3%O&Pp
z;7<J19HrwN5ol|nCB%G@h2HYkn4>6dik4YeZsAo6uaV#uR$6$4(kg=)vY(|BIL9z-
zIMU&D3vW;ZbdSAn;Y|zC9OZ2b?^t+?<dr*%S4pJOsTgVUt}MxWe4lk;eP!2BepE3Z
zv32OQ(Ar48RzC5eg^yTNa<YYwEqr3(D+^y+SjT3vu-?KKk|3X1;E|o5O9rMWksx%5
z`I3};KukKgFgLj%Z)97sCG#6gxY%*-!!m!%`pRN(rHr5aXkmkeEzFSm-@+#H*r;+p
zQB*q#OAeQwsrpFp%@%%UTg*{-@sz-=7PeVpHTe$<+hx1|YT-8vJ1jBWT69FL{{L=a
zN(<q;$gNTgQ$u6g>N#Rh&0iM&Cg<2_ZDSWRp+2-x+r}Q|L$PJ0EOGw(UJC~;9I~*_
z67jY6TR0#~#lnzQG(J#ku{y8SE1^O@YT=lL$~G>uahyUry71#O>5~-U0XSiafh&dj
zl!en4&dA%p<|yY_@kz<Eq{bYDx98afSonurT{%(4M$E>)RMD>|dBn^`vhK2Eo{fB4
zAiN4BvZ~yJ{IINzN;U?(Q(VsG60pdsyp0MHuPEV`bwy0P(57hd%;e=ZuCP(l=8zay
z+NjpHsERH6=#$K6u5y+Ae^&jf61iH!Yb2~DVRZ>1VGSF<y(*0PB=vPRnzt>gWn;_h
z!ZJqudK)*$M9yD$TgS#tHcD*VVWX~%n{6RnEp61Zaf>ZDr@oD`qm#GVxbc>BjX%q<
zU*K)rM#4q|8}GbZ%wrLfHX7P!Wb>pj+*+%onGMDjA#I!3g2GL0yuC8TLqmwqxwWLZ
zOeEgI#sW8)vT@s`ltPJ&|E45uqsSHk7+cwl;fcqJON!+!Q+P;j&AAFw7GKD})5hJT
zl8w7q)U~O%--@*vouvO5>rUQ&<-2qn8*TZyjiEN$*=TR0KU>5`2OAx2^s_-DA$4Xa
z8+|0TJKN}DqpK}8g7vb&jS1asw5nZlpN;okPu(x^uPY|H)2Q`n@&S3<!$wbu@U_Ns
zl?UZl3UipN@biak^p+_d?Bx0%OPFn6Tg>3NErsqGEayNQ58D`QV~CAGq~0%SPA%C7
zaceW5KEme6FT<81m-6;eTgWMU#$h&w+pujoHcD-%Ot+yktGVJ>Rc=`t*i9@M7&c5&
zhT?4F*^g6Pz<Oq`V%gx>BQOh@;k6g@S2T*bHt0snpL)z;e#*Czl}I3AC}H$p3S&y!
z7<ICMuRU(#2^+sU_|3tSEGL=DK??^@^936__{hdHHb&c6W@EXHF=Qn2r;XV*#@QHe
z<0TstSul!>jR`iMw^4t&uw}6%yStXK{50pXbzYEs_@WI4nWqd+vhlKw>Ql<iw83hU
zMJL<By=@Aijd^pGX*Om^g!pv+cS13dHFFih*nxD_X@zra%(b!D#uC0}W4?_=Z1l#$
z^s&Ge9+L0;E9P+vZM^0RDv{>Hj>S*rmubQc1-6JvO$u`YzQV>z8*6QRXyX+duaeIx
z5&X)=>o(rtBOdnGN%+Td1jXKy3hGT;sKK|SoUXF5ajvqTd}3p@jrVPQKnfgA|ECPs
zkmYRfh+dY2rrrHdBpE7@1!E>3+4z``Y<y$m6C3Mnd}iZwTX6EHyls=XJt)k7x;QbR
zn8O?Xo#TP^HojnG&*gt<qhOx$m4w5)B#3`&<2%aoh5SwAOi60~;zwJ|n0}x}Iv>Ac
zYia}At6cF$5{*uS^OWiXihi=O*~ZV*tA7@6;jdZiFH$?Q$*s0n)ZQ-PHVFrID`Lub
z7xM{!Bd6IY>!6&2KWzMI<B*NRHg-}U+W4Q1y%cjQf9iZ2r1oxG47m&EDOIh)C2u6T
zADPtXJWttYW511qHp-=9>~^^$>;Tnreu5|Yl7Akar*QCp#Kuu-W(Nfhj#2sBIAi0i
zl%NwfPT9ik@FZ2ixj4_wWVV#b(>A``n@GnSo};=u8vobEMH}a3Em-&qHvYMUk1xo}
zbA+qvlmX>-9u=I^@V#O?gM&AgE8`&M2+J@_^1ifVly^|UL0tzoJE-WOl7pHKu60n^
z!DSArJAfnP`f^8@da5~CmrY*b;7VQ_imNz+?XQxMNL2?{OZ*xM`KCzhAOhp_n4TJr
zP+Y7C<2L`)J$9XgS`Ox)&adN$lkBdSPis54!NHCEoNjwngg*lhT&B&LHlKMlif?k@
z|0~uV>N&W@K_dr^9o*`mzJs`fgd?`2?r&FAZBnxC8zP8k14r;DE8EaP(dyL3<8f`C
z(!@bi2M?`^B^@+#1Y5RiU$m=j5$pJ$PjBm!1t|x&Ihf$!c?X3KS~^fk1P5v6<Dip+
z&JJ2RD0a}sL0bp6J1AlK9kh1v%sk}|2Y1O|w?7@f(?Rp9d32k(+rb;Zr0#J*TRH<`
zvtX<XCx(npM!cPa_VSaX55zi1WQp7tz}Z<xM>yoqnx}Me(3NfHV6cO34(^k$^>IWb
zz*X~<`yF&A>Gq``aL~)agARJgTc-4Mz$h6+ew?Q$4))Gd$S@B%;4QD-4n~hi5@9j=
zI_O7**}ka11G2{e2?t8}u!Kzf;y{Wa1%^0yR2G2p_=qE>KYiJkIT*^~$qnqo91M3*
z$})VMn(=Kh$xEcerzzcm;b4S=k^J0&=^*PMkXc!5L5a}XZ#!@txD=52%JMK-Q$pVn
zqmE|t6$XU}<(rX&^kHM+*_1hwsIf2`KJMTNwgs!k>d1GVqVi`s>x<DBUmhj7dg;QX
z$(`4olVco=bueDONz)Kh#z~w`xqO+|vksnf@WV$byMGDc3l3g%u-3tc4qkFF(ZOs7
za~w=^@Unxc4yHMnEOX$uQ`q#K6M8`&@#n`Rr%SGz;b5kNDo5gUgYQJ!&iV8#`F_KH
zTk*BI4(2&n?O+Y7d?tUse6-ZT0!K`j7CKnuVDr)Vz4MjD4wkU8$K#CuOluN@NGx-(
z+!04Nk|6AwSFj`p;wv4zA`#-RI(UuZ%u>mew<Ua2!nZEHvq~a|?i2Bj-jVpb5;DC@
zkJx(-K5#IsVeEZJj0CbLV%$5!pcAwVd_;ET-yMAC;1j9~2kRYt;owsTpHbp^#Xgr+
zur<;3aL7c<B!BTG<-)<&4!)7?!U%g*P;3Zpcja0MmvVSM_4lN|gDs>US=Ye^2b&!H
zMA`40*yv!~AaRNuM<bjaZ>IK>`TXbb#tAhS$Zlzy*y>=Lq$EkYT_QUq<cI8HsFcL`
zpUR&_b@922KOO9(Sh;w>#a|Boc2L7bO&7Zy>~?U`L7s~}tPW++!3D{CdmZd|aKOPn
zN31M!7cGORPz4=ya9aNBkfhjQi60?{hsse2k4ebe;|@+-!cRIlbqW7$O7aZV@~-&y
zzvE{ma!$hIf5*FVA4=2MKaL1j#k%~<rpYFsJ)h2ZQQ)GAi>q9eaS?M-*%iv11Cp{X
zD!Ah1axUsLjg@yX=3tuFm2DFhT^>k>KJ%5z6%vnqk|Mm!#pSLzhv*6ySGwqQwpBP^
z;VsSk6Xz>cU0m&A=HzlatL0rI^Mot(YBd+tUBMo-b+4SSaAe4)+)%0PwJxr6akq<m
zT-0)Ly^BUJ8oRi`#f>g*c2UnoZI;SKT^DmlCU0`#JuJ4!Q5cDQK41A`zH)ZH!bvgz
za*O<9<qwK)W$ivFt}kKSMM5GCBxHI+i43coXyT%&i&id*T`*iQbp@xx&0H`zc~ZjW
zE?P(=<>EHJBXJ68k&BiR=bLGX{1?)kk8US%yu!OAZA)0AFnNcBce<D~wwSk77btBR
zIs91sUKg!hbam0qMH?4wU9@x2-i6&g(REAuh@2aCaD~rRCs+7Wb#$>e8RM=ZF3Way
z(Zv<+UhDzcaI}eavKSag%#rVRL3bu<2D*LHb+d<yo-Uqu@q&w9E*^C8h>J&EC@vmy
z(bq*kSFG3ccEvu0K5Y8hEtw(3jr8pAVt|W>T?}&RTP}vU1Bus6&_K#2XtY4t7!?n8
zg%%p(V#vw(cMp{iKIUSmi!96RVwj8JtdR@HMX3wbg~2u=aa`#9dtYG*PcKjkIwdNc
zjuT;LWV*;7ncP-BQFtnCxnht;#C37s0>x)7cBDKPCF@I?FG)SNKsk6`n5IJ)k&DM&
zJmF$r6EV_eQ|4TZko+)GLK-OQwM#td;wd&q*~BOpPs?<Qd7DXv{G^4Se1@c$Tryh1
zF%piIaGZ<rE}oV6o1KdI4zK6r?F0$;{~3SL#Y-+0yIA64BHNnW?qar!mt9PDF`X>e
zEcWyQWr`~nA34UJO17bB97-?BB_G#I4&(%RXUHPWl#u@9bI9{9=DVDJiV@d5S4<y>
z)IDFogK0QgSV&nuDBPvyFHjco%>~MP3zVfUmXQ-&yzgSUixn>3a<Ph#CqlY-)#YRX
zuejK_K)Iuxpw%9ETKelQ-eALZD0-9JI68UTmh`>_%Bl;k-gfbhi`7z!-*v_Cpw`GF
zm#g?;!9u0w#N-;v!o=kEDEWblwJtt%@evhciv%T9bg$PX`WzL9Zg6byF}cVU%Vg_Z
zeCi5skhQlfN6rXEz23zaR2?3!@$jXKuUs5)an!}vF1~TGU-H<uF1~ZI!^N*IzIX8h
ztKec2+fg3xOSb%xExS<J;3B<HdA?I(ZKuRfl5Sfl5iWkF0-Pnxdc11)FS>7`@{5bD
z{At<5HVI3X7jJj5Ew3z7esl3VMUU#;#UE7uEX+x<sdJ|*3<ZCY16v8Z0WDNSD1*D@
zkN!sqWiLP-n-umdTCHaqCBJ@{qP2OSE8-^*IpE?TWlh$If^*nK_swaBf~RHjkJI_b
zWO_Ld<vkoHtH|4vEV+j=9!|M9?c$7NkFze$xp-`$7^+eEoF{Q;>UVL$6(=nGBX9qe
zIMbOznCD^j4JG*=o?NI9;hc*N6!U}w<PCF+%X*lyPz2Jc;Gv?2%RF4}p^}Hn9%eKa
z{wKU>qocr*138_!!oz(J#Hx6>(i7TjM?8JSUuCZH@L{M_^}w^Pc&Q_j)jU-9(8xn$
z5AcMpxXD9Z4>dg0^u)%xYdvno#f_fmfUfgU%fs~^UL$LbOtP;he6nu|iC<g3z<26+
zLizASduDaBhg&?{DzmL8As6`Sdx(43P(H7rCrrl)PsGxh!6|?TuFl-pRm?%Ylyqz2
zp{a*^JlyM{nTMpz;SLYY`C(7tKh{G2l#^)wE9K#*h01Ln3MJA~!nA}%9$HDH*h7g#
z_~z{%c)%GEQhx73g*n_Q^S{dzZUc9FLY1*1OmEE+dT8fi-$1lsdA7&v|CVm=p@S#l
z74U^uW)ybhSDsi*@8qGghb|r%KH^{2qN~zX;@v#4?dU#<JMS0sDWlbKDBi<EPY(;9
z#G)tB%fo}ba!`1&cr0yzI|B6f(8t3_ACLR!>!F{Aw>`Y$p}&U#9wHAp4+A|sOagka
zJPh(Mm_PEMc^Km15jJ<7#Bf==M?DN9(nfSlk9io%2AwIwN7P&-ju-rJa1q}u^+XJ@
zv6({MgFy<*57ktRmibrviu%sZ%Zv4m*)lzl(DC4U@I0}>C+lH-UY<`rIh1a>NGU!k
zXvl7zFqDsoj9_)h&mN|Fc-+Gi9$xhD5;@<)Qy#{87$>uR+QTRh&&cvK{xh%99>(yI
zoDNfi(JheNGTy_p9-e2DNq%_F!vqgJ@0Gz)xW_!VLqz*$ls49y(|^K=GV@7fZz63H
zbZVL`Q+PZgC60cEEa3$1?e#E+zxG7b(CL&i4>LV6t7Tumeqr$}53?y^ixggyCzQ<d
zFyF&656e9)V1s&CO3ojGMY2ds*cMyk^s-p&q1Pudy5(?jlO?Baqy=w<$1w@s@bIR5
zjr#T#53f?n<hN{~*D0YhlaDMC{swfxWmcSK629eO6{*)K#*qfK*}GIA9@0LFe5~>C
zo`(w_{_*g>hYv^)HmirV)BqG851)DXh)uvLfQL`yk2)7CPc2gR{L^ZkC&t5MPV)cf
zY%=P6Pi&YXS-$W@z&cLiXtLlC@hcBsd-%q~w`{4(2~IXS9{A3~CQl&Wd-#Fu`a$wX
z%DYTqVyo`LjI)t^cq&bV*H7}%W-8UsN_hK=hpiqCdpP1@n}_Wl4tO}|VTYhn;UA-v
z-#z^5;WrktVQh87*qVm1_Zr5S{s-maqtu@sc6#6~v-*pw&%-VcyFE;2)!51ut1nB$
z%cGRNlxX=Tzxpp_zr5v}(*~3rqR4Mc^?JJG@}WuU)uSGcc{uIi3^l(e#>{NK`CCg)
zc*07+>m>F6C49@t*jY(Z&W<^ju6#EC9KX_%=OtW!B>u05iyrFxi2KO%k?*6Tk4ioY
ze3bD~)<-!X<EjgzO3W9Ex53cly+f1bebE_xxk#zt<LyOam85f&Ohuxvuk7PWUwDXJ
z=Hqf-FdH}ZU%_wJ3S%12EUV(<Dj!vS{Ip29+80AC4u+}vuJKXLM|B_YQBS7V@I?=D
zgO3}1)bw$!kLzSQKdB`VKE3|`L&_#<`>5liu8*62+$68z-D7;27ndUm|4Srt%cXp7
z^~FjhGfDVp;G>z3Bp;oP&G*YR^wCIG`JeI0#y*<(XzB}U597%cvx@Z=Y2wX&wD8fA
z)vO?F+N^9FZUpdgn=gDFc@?szjG8h(_5AtxH-}QKd=&fW;G?6D+kKQs`n2<LhmSjb
zw3fFFRKmaC<>PK26KfW8j(?AjPj3`X)c3MddxYhujeN7M560xDfb^PC*q)80m*FOE
z20!WKqqC1keLUu)i;u289`e!KM>k)nUtah5&=;3*>)HKmM_I=QeDv_ez<`-&rwfyH
zPanNx3h@VhD3|bK2U2~g{P}Ai56fco^M&P&OQrpN4DdytOA|3iHGRG)9wakoo<n>L
z_JzTL{VX?kJmO=tQbH3=VV9zzK8E@5eE2?w`zZBc`*3`r`cxm5FNVPy3+xNy($vFg
zLn0Yj9`jPEIOQLHc>zhmzLHgQeKFYMQHfMj%?6aq`UrhQJ_1=D4ia87l+JqvC3CV(
zN62Dx@s8T;2_H}L%Hk<r%*V$$ALo6H^6`w%J+1hPh4(SW#}Xe)eT=1m_?Sc5`WWxy
zSsyR4;e61A<2fG_*xV=6n-8XGNqe3JV8~N08T)vVk|o!U2}zbovS3qvyzFB#o4&KK
za!eu1F{a1SIQ_t<`IzqGo<*q{{L!%FEFUu|7mW3~DAo5=0i9`Q`xts6pD)kzG2h1m
z9}CF_#bO-0cad^(Px{^y@kQhcX;fd#-!URF2j>%&Wj>ZuihaD}V}*~EEV++YC0Quo
z+*il}Gi~^<$rgEwBI)A|+3vOG3;qA5EC!KP6g?h1XC+C)cYUn(@tKd$`Ny83yIkXQ
z%8B=VeBfiPj}Lt@<e-V~ro|#6T)(-gk9=(GTlh;8fq(3S@Dm^FB=V_*Oc^n(dER2N
zkgYb2t@rVTEXEIu1hakZ;~O7;``G2<TXKbu9X@{b@x6~9m^0;3GC$w^k(#G{2^nJp
z8Sk*D0$GLDBwj!HsI^$x?Bi!2TSx)+UyBu9SI#TmD)DU+ZkLdWeDs@--+lby<4<x(
z<pf!Xb~*OTJK5HpR#Wp+pU?-sY+i#d%A;+u+s7Usr+l0yJ$>x;am>eYYKduu`+PjL
zSUKWjzmEfw9}fB$(nToMLzLph3a`Tw8M0V8Dqo<iCGSZTel9GfCw!cwq_0hpEBMK?
z{cwgE(nGIi;w<@Lsff#(cdcm33qJnwQJ6)`EdKRz(MRnp>SU3ZMSd35vp^OFS(M45
zd=?e5h-JkTjCq#JqHI?50=p_E@@^`jTBCFCx&!HoSzMJx)hsGyQ8|mtvbg5w)Xv4J
zDp_1E@hc=`;+0v^9TS<lSage5Gd+v97Ax$*t7UQD?(~{QF+yJ9mUN9QYG!eLR+wk6
z&Eh)w>!*U^uR0gi%A#mjn$khM*@r2{V7wuVZx$;zX7Rtp3YURy%A#%-jk9Qy#m!mN
z%i@+SZe@*T3JYP4N{Ktp7u3%po<&2MZP_JC_s>&_EbiZwZXhAOD~UJCV&p$!Xve*!
zO|xj0MT;yLZF8)&v@<=KMf0p!q_}B`m|<}X;cZ#jDep*8)6x?=&7x+}DT~fow92A5
zi#A!b&Ej^3?9AfMEbhwUj;zqk^oaQEyEKPt<kAP96cGkE-n%=Cdze3~P^)q4EWXaW
z`sBujUo>mX1JgN9YnK%V!gkD}eHORL0(9W-j*I9qEX=y+l3hr>ECysTFpF-aa25|_
z(IYFk;(l52*uF&fEIyQO(hSl_e}jFSOL}I}D=SVHeK3oM<ZDV6cP~+RaXV^n{-Q#n
zkA!_C>?dJ=2^r;yPaozlve2_IvKY+bbxuB-6>Dw1mncJ+xHa`i7SY&ZB0SUZu`GsW
zg@4qrEX*a!a0yE#R3+3TY;r2ar<ttKdz>IxOw8h^u}Lab`lH%eFxCMj!pXuVKQ}D#
zB=ob$N+ihQ35kUKbrv}ivr2+TdyLFtgiIedC&{lKmw0ncnNcl4K4;3)S&Yi!a27|h
zcqWU{S**xnWfo(|23btYVtN+ivKXJmb6HHt;_b#U4&c}J!?Rg1OeM`<&u8&M7L&4g
zIg1zhLRDeaKX^X<68V2adZL6xI35#S*x}UVET&{dUFdN=RnnjD2VbRTWHB>~MWiI3
zW-*&p&SF7UFw7hZ$g%WX$q)RHgOhn#G2N!3TS(Df*7&y0VpW2Y#a#(RmdI?EOSqKf
zWEGYui<c;bPalh4^KYwHvUoL%O{8!ZuVwK%<tvMCvv?zmH?vru#TS%Z`T1vLs&2_u
ztXCGFEK%Oc;{7Z>$YT2v<=re+OJt3N?@7pX+A0}OU@d95EB!IqFDnM&#6RMPxg?QK
z<fC;Gekvgod4@X$?ei>7NmeI+a*!}_N$N{#t)<FWY|t#|_jtoYC5*fN9m$dvVOut4
z@k16rvLf9@c-7d$B_zvuExAFeH6k2FHe9M~&f@1Re$V2MEVfXD*(ewDf6Zbm1#qdt
zPcA%@JY1$=8>^57w>JDzC$S@o^Ir*sw$R_$9C>*ZSjOxAGmD*B{3TnEYqIQL(%crE
zMen7`t}J#-qVbbGtjNvj|4F!4!hI4laeo#EBz{oBLlWvs6+Swe#jz}E1-L%I@hnbI
z#|F3}z)8MCT^*oofYVu=VcD{{ki|<|OU|<GMi!nU8&^*Be@)mAxq$u;l|L1JfYs#^
zB-cga=i_;S7@}~AeDqSWeXk%unLubWIx$jn@=)e-0m=uc5TIfp2IoB3l%q06glP7N
z=%*?LqIakq;IaUW(!jwg^$EYdGC-98)dExxa8-b+0e)%_yGFjekNZG>i(eh!qmyy!
za}E_~Swess0j>+ggqIoCly6=epr}jY@jfLj_2lGH$-l>oKi&}F#sCciGzw5VK%D^f
z0^AbdrT}#VJj6iIG7}02J=u7g4+sBjj#~q9fI|HMahf$o6fz&y@xO6SB0z&cj2kDv
zkbL*yqQ(K51Sky9GC<P+%>uLtkP5Kuc${V9l?>245TeRuS>|(FfZ0n$M?k@Ucd4>(
zL^92m;(#GQt3Yh8qhYo<5CTgExLy8;6L9{WuF-b}xGTWgkd`sr9pIh-X9AoJaBqOt
z0p<mmAD~TuwgKD#UVwH1+6U+ppl^T<vYISU&j1|*bPCWpK$idy$aIST8<Ul;0lKmI
z<YC131?aIWeSd)Ntk==_&$latOrd3<2T8gm-Ty&hX6Y4R<5K0p01Am2fE{aZ2@ft+
z7#E1JUx5Ar)Bu`nqX7Z_H$QJ!fPn!X4lpRd-~dBejBd&9^HM|jyLqX{Bz#1|M<u^8
zkr#2kMkk`-fpFj~4Z!$RBrKau4`2j1&@kpOPafhU|78Uz_hrfqP&p8sU`t}so=hKR
zE-7+8;s?kEm@Fv}1PB9+2{2aPMgg7*@N|G&fDr*k26$YS<Vl(H*{kxNkhdG!CAbRD
z%()-%`vd7w0q9XbI>0kBlQk<FlSFj4sLJyn1B?&we1I1MJj)g@n|O|-U;u%9u>)cP
zn|_&y6+`%9fK^iqCy`f|DK7<>Na~G9GDrn4hDUpuOukI%x=bOQ5@2e8X#u8_sRGOi
zFoSfKd*NpW!b;DA%?gBD%f)&z!nyJ(x9TvRohbtsEC{eLz~%ry%K|UruLHatU~zyY
z0hW@D12EFyax&W>5gUO#PYdvh0AGGxvNFIcvPI~l@~Y(U*8=t<#ji{FhJ?I*lO?%?
z4_l_Z6X4wdp9T1wiY36B0Ph8OpENm`-zl#wPq^UuK_8IGrS|xg#9t<MadwO+KBNX9
z>v9Sv;U^NVqguNoA&#_;C%7Gniw^4pd=X#+*^-htMqzjGWguJ~zT#hYroIkfNelKj
zftbvGE8%w(xBrj@jeiL6qkNMu^My^+MGVx|Ch?Q3U@|3^nP|=1LZ!#%BOeCX8em(1
zzXJRnU_0ryHNGRjuYB4jv87iDZ+{E$dw@S!s&<JRZi)R#@i`mcDH&<S84(+t&9QKM
zqg?@Z2iQY`$m5wf3Z-8bAJGzcepGT_fc*gu1vpGTXZ{6c4$3##f3aO?^WQb9_(*`G
z<d#(IG}RX=+$ni75Ci*agNu#_I6(zFxQG|seW_kfQE&7RQNGEd98{bOaGoL@qIZZ3
z0saYaZHVha{2SmRm3fFtA@V}xheG9+4^a@JOo(#wmNTPRC>XDpol7WmBNZcCjmu;_
zs-r?E_?%yH^J(P}mxZ`G#5Ex<4{-&v9g3<Ut_)FyuWd@PQ{Z5p?R8a%G0TLWtiN9P
z&CXh;Bpg%=@pbvUnjvU}uO4D+m10O(L&Df7F%{)FxmL*4QZx<GEW`~VZVXW`#4RCe
zho}?c=1`2KDS)IKbG|7QVp2E6tSf})|2xZsf&JDH^;wZVu?C?yy&@hW5sGe(E+Tw~
z48ZuM4fzSzE<>@7)0jHBK}nMkjPb(jhk40lh~^>g4beJ8ix8<0MIl;+V%_bw5QU-e
z#hUn1^6Or)mLbw1er6EnCXIP<BwQTg_7I!vCGH7P65`O2RAakv!!qTL5O>PkyCiJB
zqqzLh)ZP5ij$*!ZaGAoT)ixp8hUgKZXNY#8;0;!%Lnx+5?PY;!<?a}wQ;5!?7-ruW
z;{K2)QG$l4t`c@*na3u1`ycGiOhWwAu81k@`iXG*Ko9?3e9cG}Bk^DeMbfa`a%Ea)
zp$z+k=o?~eh;bqMh3Fr`50MQqAjH5BLqiM;@o<PiAqIyS!p7n%syy6;#Gz(>B*bGf
zL#p>j$t`6Q+)8l$a<R#gR`lT^R5DwLQWCR#V)I+VI<1FdfyUrhymknWYm=<9v)CgK
zcP_F**dZL5!bDdh*B(jJ^ugP5e)1hZ8H5N!j12KO3wb6#3XuyjBE<HEB7b@akc^DO
zMnQWb#FHVO3h}i3>1&<EqjwI7Risgp)klXyn?1u9w#M0-{Cte8&bVib$MaE$r6HDu
zcrL_*5VJ$f3GsZ07edTrwsL{&MRK_O<R!lOg*d`~VkpLDlR~^K5#p02GKEBt$TSJ3
zUwV4yoMh`+#UvfaV6!Amcw)ue5c5JT4zVP}e3}2C<;tQE3qmXmkzB5D{?&20!u^jd
z^I!MJxZ0&J7jEk8ZI_2w5#pT??}iA@=dTR$R)|$0UJ3DPC{~&%6t7ACfBljaydjY{
zL#|^cIWl}(5`+_2@+2FJ=C#!!)`a+gqIxo)+%<Z;h%NA5i1#JmKDk^hB9JAhralVs
zF<T_!@xJ&Z#5xLfgxV1s9iNdosis1F9%4P|A7XEaFG74tfu&jq@l_~JtJy?}W4ni_
zdR8>(H=(eUejDOD3Mm~3CHz6cA0=es28nExka~<|o9z~E7NUxmB{%Y&Euk2yG5XNy
z{4(1@{25{=*`rEgdx#yx_oR6J8sayJ|9&auk5DYF^3h)*{tmHQvJI8VE)w%(yl>|O
z9SL}A{F~kriX);pXW18Ge~4otj#F}<EO&q!AjIJiuh&Q%48^F4m7)>mNQk3SzfoB&
zT`p$p{rclXh?61Cg*Y!8{ZxoEQeB@8QTO8#USnS@H)d0lvsAg8nsCrUx#o^e>hlZa
zlX>MHnVq~y<sYF+gsURtM<|F;AwtDS5VlN&ScI~Xm`id-@awS@*FM;FmWxn65*m_M
z#hs~25h_QxJi-+bE{jAT+RHCw$mQu%#pdxVBf&zw=>RZN1l8eD7gZx%9ic{qnh~yv
zP%RR!ycDrD%f&J%e^H%(kA&(ble}NC3<c-f2-igzcP^jyH1Zg)S`n^~a0Bz<F7>xW
z&O;{^*NJdbg!>}gAE9o9n<JD&xFbTn2)9H?Mra=4)(G_@G>Onu)+-*N5z8DQ5urhZ
zh7owi$A;x%WWvR)KaYx8=f;L<uEw%FbaW(a7KvVu@u`UOY7rqFp-2`u72&o>*gAL>
zN~EQP>jo6jt(SchKWr7DIKu4_Xt-uvedbAcXN0>Vw2ja%!ri1;gw_!rJ(|C3xpHqL
zr$UZkn^CKiZ6e{GM<SD|?IW?dtV4v3^6#WxrwFzFmwu~CqDzF%5olZEn15BB#L?wS
z*9hH6v@pqw)`sp89^fw`JQkrxgq{)lM;H*HSA+*6^o`Ijf+B0$I}*pEJQN9WU_cCN
zo<8J|6+)%lv_fgMLNN`YRcby_NQ?2n2oFaX6oHQ4|Iw%ZoYde5Ln3i**N=<{6p7&(
z1NjmTjd+MEtO$05;Sow%i%58;k;7HiI^w?FLS~{xSh=Qn+kzyS$6({G5UpeKlNAc%
zMl!af6TyuTMu;MK5qy3~<muupsX-ga=;TxKlj~<Uo_Rb?J8f33*iz~_3>X>Vaq@f)
z6?1qZ!jlocjPO;2ry@KZ;mrtdMHm&~nF!BEcp<{*2xB6QB{xRc*;nvD+vf`_or;f-
z@T|~UP1yB3x-tD6>-$%$8wZw5AdxqwN3Sa(d@;gH5#~gg8(|{(?SwejU>4iu@AxEg
z_zNX3vvDOdMM9=bmB_RR(=VmWkjTskuV0Mwg<f9aY}xv>0nUpspHlpb2)D@F1rZiT
zSQLq2%+Dpalix`5#ccO($t4mlm2er0Dv=cuzAE8L315+rj_9vR<aG)8`5TgZiL8q7
zc7*pMd=TNC2=B7p+4?mToaV5*XGcJMjZAq@5@*oZLJoM=M))wo=MmOZ;dGCEM9m*z
zU4)M#Op-@-60+ewl}hF_*@(0lGlj>&Ja{Di1%G5WqA2l}UPE7#KPk%*cCn`9t_a&B
z>>#^F_#wi^2%Fe&J5t6#{3y$?L1su6;+Ti+^;3i`5q^oVS(5Q*3AddTW}>YUU;aVy
zHi?|Lw}e9XM8~3EBm5TOj|hK8!h@O~kH1q=+K9uL=B!YNR6d{HDfztF0Q@DtWhb~h
z!k!3+A{^$+{NtH?jyLv4*ej)swc97_OGP2J07N)QJy}+Se_XvnITGP0wQ)|g-7)e{
z9pNi=F2ZqgZ2O`U5}uUsl!T|{-_J<=tc3LF=9}kbVJ=AckA(k9cu~T<oX~Rl5*A2U
zM#74=;PbLMFzR5r9LmeYDzlTDRw(;cD3x-koI@&y+j6)phs$$74mEPPB8Mw;sFp+Z
z9IE7mgYi{4RF&UykVCzCbxtT!28p6JyC#Q~3&c7##h;1X?@x13%^a@Hp-v7r@fX)6
zuFGM}se<cssFlNs)lK*nv%MiF^wNzv)Xw3#OFP9nO(?9J!_7G~%OROVy&P`IA)Z4b
zhg<pi%*OR)F^H63snl7ilsgx1wKUlvhbB2R&Ee5=>4rHp%7LT(#;nn@BvTj&f^p%<
zHr9<rY!?!wc}{5NkLx5_Fi#m_uj36Rg*mj$p<NE`b4ce<ltW1lcjUw|K&^6E*f&<p
zS~E6UP0@n4%VJPV-<iW*Ioz8=Ynf8GQkk(fb$1T;<hZ>n*=?or*h&#ZrA<yuRVZ0)
zb3%)*swM*OlUyBg=#)ce{)mgwIl+@GUYDF0&Q%C-pJbb^IdG3ax15+f@<gZmbLgJK
z;wMTT$YF4&M6Vor$XllLWDfKac|sfkz()_|(3_-t91R{vpB(z;uw?{(8G(K|^k)N&
zz;z=qAcuiDtY9PN@Nf=;au}b(v&=b%Avw4?csV>m!sbw#gPOx*ISkEVSPsK;;(%jH
zF-L>-J`>h3HY@4FIO?>QYNT)uMh*@BA5GT*B~|V9S$0@Z6cmM@6;Tk~mFB>>?y{~}
zK%@y$pCU+66jTrqL7dln8I>YZEPw^2_ulPYP>~`ED*Q$1z3KN${5<EKdopkGlAGI-
z+$1+k$|&>HzNfQzCW|8*Geaez*vx4~MZ>aq`EUuJXG!oQg-nddVq_L}77mG!#i%UI
zEUYYeEzt{<$u}}u7TGM+EcBUT(-GB*r)70^0g^rxj2G(_wc_>wt@z*{MI4iGJmY5J
zWf5c%W-)Q5;%CJnoeSO)H|S9+X3kU?ZLf6$vBx;cBA3OaEGB31ViqrDF)oW&h-4O{
zDU%GpwzF_dR$QpZ4>!zIcmw-b*_;ck^!O}Zm3lEzzL}5}bEs;cis-xiio7OnuVwLi
z7H^YZS-g?On^{cBVk*)5Rq&nS!IPxZvSQj!+;}g^TUl_Wm67_I&&;gvk1m7oE=iFU
z2T0j9yq5(d<ZPd*yf16K?oMS^7PGV1oyDFk=43H9i?vy-%VJ&@^Rrlz#nLPmWU-JE
zwWV;8{ECBBrnz>oI175qtDde%@5eGqZ<o|68iYRBcC=)97AvR%rwdm~czmW<p{Dw;
z&Wge08kVzI3?$ZPu_23Zv)Gu$2V@7u>GGmas2Zci`tRY|MIUAHaaKh9;8z#SQa;V%
zvn)Q(im3JLzb^TPriL_^dpN(8iLWI5TEb3$<#X`Eb6%UW_%4fIv-nL?`}-_@pkQak
zozaxQAG6q!MRE0tEN3e%$t-0X4MLn|f_lfqcKP!s33o{NvxL87u~R0PXO~Pc-plXQ
zf@5O8F{w?dru+AQS^PmlWpOTxy;=O3#bHWy7Jp^2FN*_|4Vu}>jo8`kmtw}fTU_k>
zsfQRtes`|<p)773nNCh+j%I}u?|2p`vN%RbV4Sp`DaO#_{PbiNrzLB+`g7`E9&Il?
zLzB`+#Ajoa!oRclhZbAKg(@nj$Wu{8#d#_!s>oM`Wv--(6#>c{r!y%PC9>@WDk`g@
z8|pYqu!B)zM)xg!WR`NiDsF@)N2;pAz;-aos;Q{1;t~~?s?cXC7s)a&R{!67SwlrU
zOL=>iLP)09Q~?#2sbcz2OP0Xd3d{L&T4wbu<#HAGY%F2oDiv3&7_4H5irOl!QE|75
zmMZF~xK>4D6-`uJr=qTkLKQ_S>Z!P1#f_?PE^)cDzKR=&d|$9|I(&YZrHIY>m4r3E
zNks!y3_csNuFH#>eIa}Z4OQ%&rF`;kS+n0tgqur6T19geWh$DgXhxc-C{>Y>O=Bx=
zQNdamBEDF~t*Q`04kY+~A440>7TzcQ3o)C!`fT29Dpw!Sf;9iNq+Av9&!GCWCndAX
z=&`>;#hsD}e1DgU+|&#s0JkDyDjrnPQ$=eP_p0cq^42`GQPEaKI~DC^?fqX;xUxwr
z#EQ7y#}YcIxK9<<gP~Nawkf(_MQ0V=RCHItV!M!lL&TJ-s|sUW@fxRCm|5<Bey+HO
z3WWrptvsOO&>tn^PvkL8XZ1rg{wf|(@u-U4H2y03s_3U;eQOc7gx~g&G-RS=w!#~D
zdDy={IeSj*QTeG^YJiG?Dh8=|Ow#Rf74(r(DadX<PpEi`0{NauKdFk|ic_tQvz11T
zOP^LTRK-*k(^Nd8Vwj4A#8L6Ais3436^@GMRE$vZf{Lt)k;H9q{_`qEslw_$Hd{#A
z4mtQ|aAQ^0LYiwTh$PplbQSa36d4kl67r`d6I29O<<52lDnb>$icfmoY|K{Z9U^)}
zp4N%{jbw{r6)R8XZK)zi@gl`Q#VabtQ@T`)Rxw7!SXHc`aazrIr_93$z2j6=JJgs%
z0(L80!GBf71WJX9*M*!EPgF5Ua`1{_#k@3-pG=lNUzx4Y+Vd+`{f5d7)tDk>Y1$w$
zMIv+GQt`HmWh!H0;~f?6vR*bv#dH<#k^8DR|9j~m5%q-!Y+23>6*DPRyGv%NV%ERw
zWZrD~lW*q8#C1k`K2=!75*15TEL5?G1piwMq`4}=N*Al3TG2=nl7mF-v5IA+&kE8+
z#i!In6{}RNR<Vu(!*Yf-T%!sX0fU&WrP}rpwuL069oQh-_z`8>Df>Wb(}yZAqf}lx
zA>{L8`R^wxK9FqvT*VhEHmSU524AZ9O2tO04r`~Bea)QPGrUCL8x;*NE&o=+pJyvf
z)3OybPO--CRjvw&)sr7Y328nY^lnkHm95h-Qo}YC+i7PsPTTR5iXAG>syL_OXBEGw
z_*2DSG=M60k!~t}S0O?Gkt5d@(P>ZO(0c4vv4_U+=G0!=4W6MUq23b%9@hQ`C9uC(
zh2fz0zGH>^RP0xAM8#1R2UHxS_Nh2bTXb2`pOWL$GTIjI^yWq*aq?HiaTO<N{f_0G
zU@hClMWP%;@p><Egcj+Piqk62kOjV+Sn(d-;l+Qe_=omc!=)N3XgpAZ${MO@sHow=
zekjn;W=e$_bbe__X{e+LuNpBVWSMLc2k_@<nAs22HC&|O&pjpQYvKe@RSg$tVrX=s
zhWt4SpK3BuXO6<a9T#h25<xoG(D28bX+BLSrfX`brQr$<S89NU%QRfB!MU&!YhmP1
ziUji)&rul1l{eM09~39=G+eETF>q}S*Jx-xM+jRZQ;Z+3(@>YlYiO&Xo`&l+lxQf`
zP+!9h8X9S6tl>rtg&G=YXs8Jb(_?&b5&s%i%(1~utoj?VAEVzK#p+hhr$x4`iH4gs
z5krP!r?iHq8r@moy#PGi${wVdhKz>EAC}$1if$|_)^J~ka{g?3b@@g0iW(10Q^=cZ
zDARDKhPyOu=$@iEx=lm5CY(9k=zhC~78+L*1pa*P&_o}4)-S$WLrV><G~A<Mc$~hA
zCpxD$;*ChGv^9zUTroEUGUvUT(AH6Nly(~0Yv`k)uZ9jpgRIohQ$t4$oiudQ&|MQw
z(fc(Kl&On`&YC#yz`-Gh`du}Qo+B(IA%}A$eh&?b%+Etu4`^bhd9F)}@F7hM59pWc
zrD4V#VfT7#Vq(G(%flLOxw44eYd;PBH9V=|DNWp}@Q8-TH4N17s3y2MK*M9?OJM`;
z{RX^y?!xyQ@Z}&)=sw3hPiVrD@K_LMc7rw0|1gAK$x1(%qYTxAx#o@+*7%HuVNwj9
z)j(cQiH6Ic&q+w}*l?occ@3j9e4^n~4KHZOYIsM(yBbstnuZrOyhP4wFf{lY0ya~F
zrNO2cP{x)EStZ5pJtO$yYVb5+y6Ma1Pg0)4txyv;v_=|Ya_~zL_iy_gCDG91X>o*s
z-{z=a@9~P~{Fg~#4U;G;8pdcCt6{u`SNT*f8Yc<Ja5S%IsMeq&?FO}*6+QlRF%@}&
zhKXziPj?m;z1%^0O~dON-qP^4hBq{xdBjv2rN1(~aeGhIio|LPWqX<sjA@eEbB_va
zD=iVy^}jg^d%Ecw-qWy3!)guhlZhG@Xjn*z(lATIe2VC(#<MjnZ(K50rsrt*XO6;d
zf}ZDjQaC$~5IzBJ!e>sZ<RT5rm|rq(F_o)*(Gm?yshfuiYt0ow$a(qT^QQ_|$P6o4
z<GW=I=PIq|Dr+=x>g^-4Ps3VLzFTUY<Q=`}>uHhpWj09ofrKAQNVf8{5hrncG7VFo
zY24z1QyNZd_=4YR*sWoYhOabytzj!ox0IZ3G<>UJqb4?I4hzyh$Y_mh!X^#hY4~0f
z3t>M<$e@u-Zzf0N&n^5!MzZD0?WD7YpEdj<HE4&1>4!xR&ih-1#O~x(K4J&OQ*)JF
z8h)iUI3hyecA2aEM%kXL{4OEGX8w=Xk7A?YkcPc9o|4G>D9nBF7ll(A*qS^6H>&Y|
z$-x6Ok3Cbo-CLcjQ11?FIHuva{OgE@qnhYOU!BX~8x8x_E~iO3Aq_Is_9W$eu2AYT
z8qU(x>!_*Y9PP7)^L13!@ehSlM-?6C=~y^dq2T4|sHkIZ>(YE3DIJw`AzJ)dpkw+E
zC6#r2v@rG6T(Oq4d#=JbX`E|NFeq%4*b8)AsN*6X7wf2|<BoypdYc4&_-}PxSRUSv
z&HNnpuxT}PT%rr_4f_<rS~{Skj*e?}T&Cl49arn9tqa{@<}3K-*UXhVuF}Q0ng#wd
zSGi)Il6p>fHLuaZ-L0HQPo0~&PDfoG^>y5!3oFNg88g(=g>AWBLK=KwtoCJY)KMtk
za2P-&N$>_b8tQo5z(50ybTrnnLB|I=n&`M$hp!{hk=D^vhoa*F9nExPblk<J>9|El
zv5w|C%5>bSqeRE;-BP8x*g#9FZjhUuXt!C>Z92+zah&!}ok4wzIR(C5M+;pT#yfO0
zs$P+22I*oVO}NRHoqkIlt#ouIsygn`(OO4G9i4Pxgm0UtbRJrKuZ}i4I5OlExUG(M
zZ20lQ_B#Fw(j9a>+`g1Q?~^Z;dCL8=BG$$D$?cC-<c_bdI=ZoSH>A4DGKbC+hp#!t
z;5?{@4j!fFi1a}^e{?*l<0%~v>FA~7Q5^$x^k(@w`s(N>i*5OJNgrMG6r?t1oeVNh
zz35N6%~NPP9?^xG&>8!fj-8EC19c1{wI!Q~&z;W+)B1#t*XJq2eiT6hDf5GM4AC({
z$4Hh>c8qE~RL3*A41GUJ44BE{VY2FHbrIrnIJxtha`fTS=X9|U!^HDCM(Ob6x2)v_
zGA>rKy3jQ?Q`N!4?|d{J`hRJIO^|8pzc;o_IHbmZZ-#u5;T35_Ak-1*n5AR3j#x*c
z;|(2e>d5JMQO9^4uga=l(lJ)YI2|wRm@`iqtz(Qto7<K?nkR<qujt~u1L;O-A)brJ
zmQBzxQOe0{y4aROYD}U`b}8blWU|x(dX>vZre7!5P8SYw(^GUz)$zWL89JuvcuU8-
z)L9*G>%u;~Lq$GN!jri_&r^7Eid9_SSj>Fi)4_$CZIvs`mG^IcII4gb2hSu!rHgV7
zO@R&uSXilJo{sq}O2<+i7hF?$fsQTRQj2Ieq!x3}B(-ue8?`;dE{5r4I+nAXaryk5
zzNQtjy}Zqte{q+^Djln3$!m11)v-?gduE=}=tbdJSWoM8ri48UGk-{%L&IXAnt_i=
z3LX1(9MJKpj?Z-L(DAd5&vksE<42;T<4fYB<2xPS>-d^_A?d$SYWlab7KV>z6{I}j
zCLL#viBp!eOF!shOvQv&ShSf1mK9aHzkDl8Xp-8dV>`w8nDE{Gq>D}aq+#XxN<22r
znZ+-ZXB~f1<8<uO@vDwMbnMmfo2-tDr+ak#u46aN7x&<`Rz8FfZ<g>sT?ipJ*KxE%
zy748)4Ev-;P_PdfB1i=nbPnn`M7yoyZykqq9MN%H#|cVlgVZBEQb%<hV@2CDH*FIa
zXYii)lR8eZT{_N^2!{%L_7-D_(?p;_iq+9>&?wO_#Kb=|um;XIP}M-5fr<ty87MG>
zUAk_*l5Ys3#53S2Lo7xJvuOxJN<3*Csu(!W;3TfB*?gswT73N{Wqf&of!+J^s25Bh
znp9lfz(odbH_*bs#Rh5^sBPdHmS*5m12AxzfoJpcYZ|C!2<>JS_ska^7RP}<r&E_3
zxWd4dhOl+qLfL&%@l}QpW*SeTakWH-h}AK0t$`a26tci(sp|~XmzZ<2XkD48XNW6N
zt~W6BO!I&5M!A9Y9xtR3C^B%9fl>p_4RQ5h0|OaD4CETJ3o!6TnC9)h%6z4<fhGo+
zxLHCb(lXJMnPq|=Ild%Tw-_ikaI3`AA6-ylfRH#7mPuqTyS(f+);?e1JeQj>$_+7i
z?s&NH4g+@@=)uwq+-2Zy1NRzeW1yvhRtD}d(Ap4F9ukKS?<r=t6~31tXDK{w4YV`R
z)j&6r_mJ>38uOL*209qH&%mqmm5v7PH!z2sl0W&T`*&rX<(u_HTP6z2#bEy9cQV}#
z?3k~#$OvhFz`%nB`Wtw}Ku-e?8RE#>!v=a8;_{dCA59;huP|bEZ$oU|Wb^yTHug2p
z&p_uYLS|S9X9S$JJ!)WpfyWHAuT@U*9{smy2p<aVAOlYrxWL4PCZ1#!29_FFW?-;^
zAqK`7c!kB1eFhu@F6E(B(K7}{7#L|_m;pv;e3lgJ+Gx0e=M14!wH7F^{3Z&2-oPjW
zHU;mweA={;FDWk=VmoWrfNG%W)QrXqn@cPMIvIDYB2~jMM6Yeie@RT9tYHR@%6Ptv
zXnO{723{mv4Fu%l)5W17Hg?8R8Y2TYFA(;ePhyDv?)8?+O9oz+WEpD+zwWrBg`*A8
z*^MD=T}qok2gviIgkp{-cMQB|;C%xV3`{gI&A?mKM+1`$OffK(WlH&^58(|%Y%qSE
z!uDDtR@7>N@+SGRK&d}GO{E|^zOJ0lGT)X+zH4B*!4)4l_3M~kb0UwJPnlHARfCV3
zmCP_O)4+TK3k=LM#1wlrMZ(~%0mVdkt`t1V9#`(>Nx>ezKw<3Jg$5S!r-AB50o}i^
zf00=%%l}*}=86~%7pquqV1<ES4g6+crGZr}%D`6!RvTDj-~%#Ch-krD1M6r^B$YVi
zBja9Lplpz(P3x4VJLn@Ce*>Qz_(Jk`bBCf&417un8Ik@>e)aFd3V*)4fB`DS#H4+l
zqOT2nW8f#svw?37Y&7tLfz8s?Y?6BS9WBH8MQg7r|DNi9tq9jZ_@m^`76V%)2U$Cv
zy4wtFH}G%Y@w`zsc!pRu`kAsPYu_nhO?fF>m1;%1WZ}0lH2u8H?=*=9P8v96U=Kyt
zz(E6tBo2QV_|w2&2KG{VYltb;kK+oswQQecam|OZpDehxh|d8Uha+PD<YD4KacYt}
zAxk)Fh)5d84AHZ!8-U{y4Ib5DQQQN@m!}P!F_1D*$;4R$=L}RZk!Rv>ne(6}q>j6c
z{vq)f2*X>^6c>z=1wSrO@=a0f%9q5<5vM8^n5bgnJX6$IS^o7*AJIXO^@QiM%)Fwi
zCP*2MU8|X>ZlZ&U`%GM9;$jmwnP_05hKWn~t%<8mTxy~wOEYnWDUAPtL8xT{rWkv0
z55r|9_AL<8RnnhG9(=ptN)tCfj8;FDpIV^QHgS!K>rK=*!Bv$yCayJcohihdHm9yB
z5M$8AdM5ro_A+dL9?ilH@_mu4jy2wBg3)~o3A>6A1iU<jpEoqo$i(d?T9{~TqKS!O
z6SuNz6KNAoO*At_@58eXbcVCZ^tSQn9~X!-CT?N*vL8SARl39!t2WI|l$qd-TBRob
zB^O&)X`yl(TRp6}+{D5zDGtSHA@4A8r-^$_v@vlPQ8LlW#62eHjAC^(7cC|790yK*
zJKb91z`DpFE)ja$E3`Gy&g2#{(VLJ>Z2pP9V1#hy>1d*p3D<;Y;(imI$s-d(Sb~YJ
zCi<Ir#6&lVZ4VQQ3H7H;cT>!~sL1@Bwev9Y1126c(elxBPYEBAu$P3rCFEZZ%S0au
z`;w0`!Qi_5>rs|(Vvva^Owm(3CRxA{@8c#0n)qc`S&J`(gOS6DCn*)vMU=CxJ2Owo
zhEUnr%%@EZHKCc%Dakjbo*}P^WRujoS?OWs|KH;?T;_ky#0ZMVp~8_SUXY3BCFGk?
zrtp=Wtym$;X3Ce}?8>w}m&XIwh6&SzLl(%5E|!U2*B05Pm?@B?e5T$gE=s1~&o>d6
z7-!-Y6QPO7#7ib#HW8a*pprB3qLjmg@3&{D3p6QLEmYVj4vI#b;<}=-rnp0Aj477j
z*))clrvc}N<na_&6K|M!)5HW56HUBk;*JI>GMz^_$<s-ciVG@Cmbyln;l7U7sZf=Q
zIQ#o{Af`|Y{+B<E)R34kxD!924QF@xj)`}Pp(oabr<-_>isRr02k)DhK@GC7+rmr}
zvnYEO?zS-7#2nUQ;vW-pP0Ta#GudQfzKI1U)|yyH(KWHi#7YyZOe{9B#Kck)%gE3J
zg<L?V#Qr!cz1$Q7>C8f|;G}qxYlSIJepOM+S4&P2y){g1&u}G?6yW`m>nRwNc@rO-
z_<)FUyF1NA&lF?dQ9MXVYB9h1#KdPNJ~zd3!>6WjBXIeiL-#M3mTmu18Yq9fn9P1{
z;u{m+N}^F=e>AaCrZ-9WorK>@_=AL-C2aqMFlc<X$e&v!+$Q0634fAshlISpZ>Nb}
zCia^+VB%MbnTbD5{KY0v{Y~sOF<S0z+e3QtN^TmN#wm^f|B!Uxn-eR=hDmmsAL#|O
zLhMranP3Oa^g$DcOdK(B)C6Z|hfRFaGsQCn{Ojz~#m7t>H*tnaA&WX;;-raFBzuK?
znx@nL8VcIy0<jQ7b4p(v34V?;_DK4xabk*5!9t#eD=b`Tp`wL+3so&#U?F9RfmS68
z1r`{aj_Jx4s#rMB!kFa+<OSalb8?3Z%I90))@b%n7h0%hp@xM^<mc5bTx8*5nWi_U
z<By`7<8%K)<x&eZEpgHF<rdT*Gqo(?+qujFEU^;AIfc;rorRCf73bPB8eL`KY70#)
z+-#w?g=;L_VBtm!bu3)Vax7eL;UBA<T6UcU<Kcp4CsTEq?NlKHP>_;DwZ0{0*_<Ps
z?TbPSMHU)bXk>w#Fj)~_-ejQx8_sCAcZ$91)cVH6{B+@<g`#uhJr`*UO)ZpJxXluq
zx|>-jws5P33==PjT{^c|qSIuhB^F*do!8tF+lDDcr53mR6>^t8b(xGVw}f=Dz!sKR
zO1Rw;QbCcp!@_fS2u;7!5;GkZ)zU&M3*#-kYT+IWtt|{^9^!1FjRnQR0~Xp^XlJ3b
zg)XFC=Tv(O_gUy@3B%RF!uK+|V<$^=3fYCq{qjAd>$66#kg|VVH8{Vkg>GcW8=3AF
z=#uI|BEJAmPtZq9lpeIu)50JNPgr=!LN5!Cv0V+s+8LJ*dNXs=6bbvVg+7wPeI@KC
zVSfo9k?>Io2S|A8f(rbER`GEQ11)S`nr6Rnar>etEj(pm2(h(<{L`WimY9<i9D)wD
z5G+)lvBYSNTOHWIVHTdXzzHKW5E;S|7DieKEkqWcw=l|rZNVWsEMzU{lnoZRJ)=@G
z_mt4bPV1pr!iKOpjF!d@nj&P9zk)Rx&IJfv3!Vj^wUZ0-Gzt+QgD9oEl!_*fcR0ot
z5(_U|7;PbEiG`0BnQkJcQEcW*L_=;E<5cmLn^R**?dh4xM=O#GV=auc@QQ`iuL>e?
z%Pw0n!NNof>n&`sFv-GX3v(zW7GAUPI`z@QbW7|gdxKQ6FqH(6RAOBmy%SEe@U|ru
zj5u0*%Mxn`q!o*OhxN(;w#@S$ZN7zB7T#yE3x)f4hAd>!LS?pv`qMMqcSjv3N+ixa
z3-c+H7M5CAU|}H}Xkjrae6%8qVk|*6q-LKq2RR!{ga9wIu$(Qju*MRzo)wmexWe}<
zEv&M{iXqc{$g;JP6r={@H4(#gL}rVaGk##<Lkr(gfGvDv;bRM*S@_(-Cv5MT!cV0F
z^4J$8gg@!p`ohAO7QQCeEM8ojW;3Z`U&$8H(tb<r=$PIpe{!oH%kOk1ZxeOrkXR)B
zff8upCks1dh950#u|OXtJ#6b1DqERtc>XpE+okSs?-n1PkNa6-USMDsZRUdozgXBQ
z#e?>cLh`Fj|0e5Y)x3*g4~+?Joej;#9~Sn~n%TJ7#-A4cqRF*!p^beO_FJf6BhSVG
z3kNNnv2a#4_K?KwsD;BaLFyf$gd8a0@x5bYv7{UO!4s0*CnY>3;kJd!X_@G|Bz=yS
zN7zYhZkVcbAj5n8$l{g*F!3!hy{%{?-$o^yS3+Y!-PCoxkg_qOpD-N@2coi#DmLaf
zN`+0ty7qZCs@h`s!N4!)+hX3$fixjaTs0fjZCqocj*W|KTx<h2F0+M)t%i+DZDE=&
zu|e${JiCl(Dp5@vwQNxlxlh_&ZsQ6YSK7GB78>W43ZbG8^T-`VoO^PXbhVAzEV-tL
zMNfFGjq7aOWTSzNx;E<BD6~;z<9b_+KyDzxdD^8f>NCSM;kmuh7Q=q-USP3A;Jjl(
zAP+87$jyc}8recU$u)-UVr=%tM5CvO_?ouS)W-cbI@@SwBV*$(mSf`<8^t!tY}{t!
zRvXVZO_kbcZllB&Vt@TJ!kDxFWxZ7wDST6I<8~W&*kUSo-6DnNsD-2?+fLUUQN7a!
zrx-+_rHxiLI@q|6bg<FdMjIP#ZQN^%U2rrh6&IC};KYp%K;~yF+S#ahGOxXjy>f!U
zTSPm`H=S%@C+)-H#1plqi;b=}9wQfQbhFXjMsFJrGmi~LHovDWPA5HJi&Nx{7AdUd
zK~lAY@ajKgi@|L#l4Y`(?opfi*ywBHQ5yqnF@x(z3>PW=S;Ag1w0lHymbkrlsW^!J
z*Q>?v91?4|18oel@r;dOHlASS3o8w_F~r7`wrKlPviyIK1GBoPZLwO->+R^<A8L!i
z2IoE`>9ZubjZrp++uZq&5w<WOB<V=W;@*qIxk%#4liDvVQeLo;wee7A(RuaYEa1-)
z-G*V~Ya8F#Fl|^i=26IP*u=-i>o(r7;o9)nWb(^~ZzHe~+emDLwmAAn0UN(aOt&N1
zOb&o6wZHlOMM{p`rz|y2(I)e-4_8}8+ZbbGf{lq%1;*MKXX6!qwLQb(2L+Pr-Q!s%
z>EE@qo!N~fBAi5Fu(9}LUUjSZ?}DNo+cK}oil}R3(3>`<*m&E<JMtyFo~bsbNe;ec
zV>6{oTG~~Mly_}Rrw-bfW#c`Wc?Q|kKK;H-Guz=s3a8jikgBt7%%w$oS(zi7P;Id|
z^ugfg{C9zkg`~fYbv70eF^Zy%6*iVo9r|G@t%oLLfZnZT)Jo~m<%n)26(o~dV~f6<
z>afbjw}G;nUkz)>>UewOi<gwIx3Phi#KuRqm`wfogiyl|q%csTKBfTJ_>2N6S$xxC
z<x}|=+0C)arn7}#*!ap8ZqhI1d!l;7K*1N*{;iFTHqO{MYh#m*?`-^P<2M`M+xWr8
zHXGYXE2)p%y|b0vVV=&ZEs`?N)f66kA~}rvFm3Fx@r#X}vLX)NekL(@X84eOdsd{4
z(|NljdhA&kq~doQyKNk{am2<RHj38X#$Pl?HvZlx&H~@DSfL2*C873|&=bfz-S$aq
zL*)0%a#-~N8wX|jkc8}W`SPfZV>V9MIBDa!ji`3{p=Z;)gPT%8**?YQv`sU-2B|?O
z!)Yq@V&#!qjn1)N8#NqU;@}?}6&#%JpsIsB2NfMuad4i4eCPjVfTEjn@ZE&sN)j?r
z;Gpt<X)<oeVx?-4SgfQTaRbr?4yrr2$dOxsWFgfY1d9a=$jyr#@I(W-PcdeXe5r$)
z4z6}k+d(Y{aB#VUD;!)VKm6=Iv8k9J(%VnVbESi;9JKzSeB&k&>4<}B+R1Ai)NxSP
z5%Ux>;@=R9*E(R__3IpAyGVz6j_7N6+0*q7`s9mkDmOYPbTH7xAQwdrZgQ~Q!A}kv
zIB4j=bKpB@<e;&Gz7G01XyV{z2e&(D;UMjxse@t%w>n^T%^dJT-dh}G9Nvs0R&WmX
z#?-~ao|iZ%l?^F#(3~xuE)M1_T&&Pmuu-=;nDADka)&p2iU|=92HxS|P6rP;=;h!p
z2X{MA96Z3LG5)74=N<>GWP<r0uTkFG!M%<cy|i)ANxpCEh}gM&+Q~$F2|GBr@4xpQ
zW#ZANalibK-*$G;<-c@S2i;`4`+skG$ONzJWxF19uqR)1!4&eI{Hmk8`Q5?86qrHi
zqoNNhnot()7u_iHjI`08>~`=B+2P<(2Ll{D;qdAuJm#QMKMZs*$id@|aQ*QU^Nk8c
zkAedywwD878pEd?40bTY0V6O_W}cR9{C2Teq+opMp_H6T;!wb|4u(5W9cT`ob1=fe
zC<iY%qPrhSK5{4FsK(DbVzNUiy>(vZP>r(X$3;h(br{AipPPJi2L`2u#F15)gxfPS
zrlu_iwj;VZ$_y#sbt;|EUxYW|zhq_LAapQ?B|C^5#17tcFvUUQAm?DLgK-XC<mV1v
zmTlxG9AB}ICMFC%Fxn9p-i?tpGREV8zCz<(aYQKH@#MQ+ysBgBRSJm%UTQqi5u27L
zNyx-xnRv~?>oW1ifA9IpR0q=>yhq25gBrC9-eN6mrh~T~oO`+W9mzPZqmgcZEEdaE
z+y+VeFoPDLYigz>2u&O@nI$PUn@TrXxc%vin@3F85C<PPSm0oxgB1=|I#}dju_HR%
ze;59iI9N)2q}=jOA{Ip_1DCUx%c4lhRSs5@L>AUMV*lG3%K2h(f8sXT{gF!RXbSpZ
zz0A)OxF0(BNK$EwgO442;^1=!UpV4Kz^AenF1`@S&uBfGiNOG6?@I@p9pN7NidL>t
z(bp1wBO!l&D-#<XY@!{L>F*u<AQOKt7V(Yww7j%D@0EfdWxZETNpE$qjf6ce#)^D6
z9NOXFX9w4~sN*u!Cw4lh;3Ch(F4_SH`yA|d@SB6*DTfaBI@nG1p=E29qCk@D|D!3p
zOpK$13#e`SPa57vslOa?Gc5ll5e9WmbHsbV!9fS79Gs@1aB$ecQ3uCpdD;nw@DV9j
z+)6=DGPf@tcf@U^{Og2+lO)s(;XENVXmIGMI70!TS(Yt2O9GY&Pa0|Xk7RV8t%W>D
z&Z;ZA$ahiQ#YHYsE-JY=&&Bz!Fkb~OD!YO;4Wl#}SH%^~<st>up{fgR&b+|Ig)S~x
zBIJsHRdYpwO|}U8_T^K!*hLK&wOE2H2ECWKB7|~H7ni!AQn0IKi^dNtuD?XN%;lYT
zxXQ)VE*Q#;pVQ!9;o?eJ;H|QJmR#EvI!?q|HWY_OuXS;qi&ie~aZ%SrJr}pQD0XqZ
zi~24axM=9&1{XKd=DR}t_#sy=3SBV#INcX4;U?K4GKk{T$VFopO<gpTZExZt?TT>=
zk-1r-!3i~S;4$j<OT_ppBfniBCrY=vC~<MSixw_QU2#U^Hu*2JHD|jfH!5?*o@YuC
zC9T{QqicGr?r?D@-@CZ`Uo?glGfF>q4)d$0o#K}AC5g{UTf4Z|h2r7?7j0a$b#cFo
z&Mqo;O|^4zpNo#JScPftqJ#XZu{=<Dp;O$+1?7#EQt+teU0mV9V*HJ+vPHD3-N>T}
z#ob->kZ-8?k1r8@_k*O8i#{&;x_HP%FE+{*9TQb-cl{!LiPBrPi`_K4>_46^?&qSv
zi$`4yaPf#NYWv$_mKUxTPR_?%u@q7vDQ43Kc1u0(ijn-dCCU>no^(;cLmu7KY=Vm=
zE|$6&!dAF=(Zx$HhVok%x(ma_Fc;6d80F#x7sFjV=VGLb=P6PD<naoX5iX+&h#4Pi
znXyDfnc%}dni+m=l*;m77aEI=(=_a)D*a|;y-Aw5a9wz=xD<)s+7uzVk;9S1q`;G6
zzKg&`=n4l5b%CEpE@Br6C9s!RGT?_fS6D@Q*mwwtKVNn++Qr*0-f=O;#aI^;TugK^
z&c!RFUe8n&Q_PP2D}?J{yo*;|;Z@@*zYv&`f=MjR#p|-n$yAX3LK5C^#n@(wi>VY&
zN{*a;Q?;o|(_GQzy(ROrH(?>I^x}72Om{Jdf4O+i#rrO1Hc8FoPkDfAhHM~na)La|
z#cWylPm_wNn{3ED7xP^#aIw%8TU*&jm!*VblO$zDi=+kMs`O$Czq})CnTzGLjV^Y&
zSm9!&i;rA<>|&LR)zoXMzl$|4PBcxeb+L{{;HXeTRz&wBIo0155h}P=@_~yFNp0>}
zmS_K|IG?!q)WugWzIO2$)kmWJCCT_#AuS0>{RNScM>2^gzxu|-w=TB3_(_T)DYntY
zCR&3>{@*3_or~|u@lK^b$f7n&_@jhdBxIReU2K!-Ol{#ar^NDD&<?(Nwz&Nu{7jW>
zFE+;PqI9`9=;Dxz-(398W^!fI#cmgSXs_f?s@4BwQO{l_rWNdt_fj!k{KdBXmf7cG
zzx<bJR@ACM*qo;a2rEkUKkVX&i<2%+$)b+BIOgKGOw$gZkPTeG4Moy2bJla(#Tl1}
z@^H=tD`K8MW{JTM=iq<SxP4hdYmi|qAj-qe4EvFa9`Zf3@zB;o%0nd&4LvmSP~f4m
zhbuf>>7j~;^E_1daFK`eJuz}%br*U<=Bs+RKqfv>1;6T5EUM-SEuh)C*h38uwLHMX
z`X$QNjhRb4{IEp1)I&{A%za2tVoven4D>Qjh&Q)JU+xK0HuY=?;Z+{4_E6u$4IXNH
zxQ1VOsOt&uJ&(iJA-2-|Uh4^(?^>eN^T1UzdOYaXrifneq3HAS{Yw<e!;PNkYH#wm
zy)a$K_Ywi(Ni?1tUfe*|-gqDyduYO(9?Cu3>>=%;#6zivrXHHfX5Q){L;Pj=#h#dk
z+(PrURB60V41?)@;a?2&MD6BJnwRDt$~^FV>xzYfxwm_0;i0uG>JCqIi`2EdJ>2Pu
zbAqJ6U7i@#Fee9TEj`}5fqNuw{Fg6@>b>$?=HxK7orm@wp7$`yLkAD{d3e;r01q8K
zbn?*K!^0ltp3S?T3~ik1CClkdC=*>J>?UD%342JWNcez<2R+b}NgrlU`G$#yC?xVe
zSza8>6S93ICjC7;;-RmHex8`u6EU`(?j~Y;<%nWFv{8?Fc-+HK56^fQ=wT39><PaC
zyVoZ?{QbYeCn;(2F0BifDo;uIq1;}-R2kw46Zf=-+Y_bBOtHsfn1^RQ3@3M%ie6aI
zM4~r>Ep07gRgI*u@gjgqMSl$|e!)Z5gXO`d5cYxULGz${*f~h}D+~`k3MyQh5&>aM
zSqST*Q-VJovcu!$p+c@)51vf$!2VU^i+ehvI|w~Q9_WbUj9Z-2+EtRsmDZeuFG~25
zgfB}t+QS%+;SMm)!vy)}6-hnf|Eg@`cxss`6p9bM1QR_>k{RgJzI&-MnK%y?=eAz=
z@P>ysJxuZN`e?i{8dE(?^KdlAv6yjO@wSIoLW~dbj)!+WTo&N+0Mk9ZM}qsf+sFGJ
zW_UQ{;jo999%gy?*26{*vpvl5u++mcQqsdb4+}gj^zdpou^EHUd`kNc5yY(DC@hlc
zCB*Q`qQxFYyxZu_JhAnN{-Wg`R>*(9^sv&yDi0sapS-X&zOsC^hczD7dRXV-0}mgP
zSrpDzrF<Afi*SSdIkt1^Bg*rxGH$1#BoH$Fi7e++51;YFc7ht8dt$Ba3kfGysL1qJ
z9=?{@zVX=mh_O9U>b+Fi<l#FHyFC2r;d@#k4_iHK^RU?iS7f%3qzzMf7nlD?)t;WA
zlbqIL#8PFuho3yLB)yZGSRf{<<jxKcKYRFvx^PH1u89Wg{oe#}V*NK}_OQ>xeh<4n
z>|rg}6#PYeJp4gRBEtyuo1NK9YRiezpG>qXAG=if>-KUMK4MAcfQN$~ghRNS7@*GC
zm6^Fzbc;vGVh{CvT<_zUhvPKJKF;@X!ox`q|IqIFIOXBAhcmR9@(SiD-)0!c20vxa
zN<lhDMWey&Ao?s$hZ(dy&llS&&Yj4s<O_YN=nL`7_t9WQc}l{MmnsE5a+S&|`}n<O
zX%%1WqvNw<sZ!O)1wO9uaixz7eN^*N!^b5)s{3MmLYiFU<IGZ}_Q^b2o{N1f_*PiI
zdoM1!)CXimHGS0bdDvgv6U3+1GUYNKjg~2w`{2RVMtNm~R}nEE*ZR0lep1^PF{SJH
zxW-53aABn}>6hQhaC04BvT$)c>e`~ZK6nQQpZY#-@EJJ}86P+LDD=_TM-v}BAYbI8
zA?xySlP`u$Z;w$L_#nJznZoF%{~oKqb$RAyA8B6%*5<T@+-d5Ieus`b-kSa5rA4>+
zDE5U$+~MO^A0<A@<WIgS_0il1$5F)U>8>e8T;wUg+vLCHJ~)oLUBVU;@@K&fMYnfP
z-6^@i%|9)Dv?5|Y=J~kCM{6H1_{g$$A8mX*;^R>tZGE(3TYNm=qrHy~KDzkm>f=6N
zbiS<jejgoubn?Lica%>)Ops8WB@KHY74cVBepk}XM|U6Ycj8`*9zIHYmUn1Z`ppNK
z2YvMP(c8zvlJZ>adq^fYis<EwWlgFBM>TzX^!3rt7nl2Rb5yNC;x-Ll#noTd!o&a{
zkNFr(M*Dc&$3P!X`gn@PE>i}Pv%8zpMe_u?BbOMSU#75IXTQcBJKT)KQT>k$p5SAs
zk7s<WeJk^<kKsOs`Iyi>#lTG*i$3S$<z-6UJBvoJ#!kZiGd<GB^FEm1GfF1Xb26$A
z&Bs_D<9z5o3?HG7$cIT5`w0GRoe#&y%C(vImnpo3oTDk%hes~7FMVlb+V>gTIsI#I
zk-qw{SVD?@BtAy_7(+Gj@gg($!YjBboBm*#(xg)UR~7SLrk3fA->lY%@JQP<ce#_8
z)aX}yjHlH3c*n=9Y>|)2<eiVyeMJ+g+RH`nwtbm0iFvZ=Bg>T6eZ1jgs*h<t>NC2O
zRJ1#8E1DuP|5_8X=HCaGzeOS0kg2y^;TDM9>of2Am`;uGF-K;5kM>`F$cW<f%*^mH
z)5k0p*st`V<q9FSyTx*)&U$fD_4(xr2iWteycAs@e^6X~Eb_6@$0i?(eJt_usgKWm
zEG6-MeCXpNAIoL=99ynnyAG6aO?;)4$yL6HrMz0gH4?6skT2KySTEBXB>dpN_q&>w
ze@yZ&S7t94bJ9<IF_mVZ37QwqyFd5wwU2Lnv0dQ{%5b0ZFRAGx(_i`ce7V8|oA51l
z{AdXUwX~D)QGDm)dmq2}*y-a3ADew_@v)T%OXBPz1saREpp>F*KDPU!_uoP3tyqDV
ztuQd`PqO?Y%SBM@pM5Z}JQKUfacbH1sXab^^HF7XV~z=VHfr;CCBOUFEfs+$@~W;-
z>aP$y-Rt8|AOHBM5a2H#`+OYsam2@d9|x%8L&Q;HBFqwQy14uxC4XP$5aoGjF<l==
zY5ZyDeVnEk@6Vi>pd4oxAjwiD_mG?<n~n=hd&b9YE0n)|!R51L+@SJvtYt}tPj`t1
zl`Ahm#Q;?UTo52XKq?USzj7dUr;x}z%T_56QOgPfTrpQnTdD*&FTju$%AU@p3}kwK
zfIt>?VSs9Za0p)_OQ;^;;y?rkxQIo4kfA+!ZG}=Jz|s}U_bZe?Rw$PSsLA{%3u^^H
z!0m`>rvJVF^lCGGMSv><><@4tz*PaR4)9!n5dmrkxF$fW0QUr_L&O4P0^Abdx&U<p
zGziczK)nFh2Ph0s6mYvvx_*Eg0^ArNZ>7TPhS|ESS1O!NF6$@OsyJA^DS*?Zbj!8k
zdf!F?8V9&JKw7q9=JO4k5P`{!I3_ILBgQsO1F<wl;;@`%GS6$9N{R#A8sPQ-EdqS<
zC`wpwAUXxn3j}B$VC9LzvOpXRqz{eoqv@IQ0KIyPUb5w2+!5fe0CxvC_iovpft-=`
zOx1oO-7>&OUx?LGnjm%%tpnW4uLATA&?Z3J07`%d0<;UzK0wz1-H6Y&%%^RNIs}5_
z_ffPamGS8)6P*Iw|KFR=0iKyx)<yojYO=UaqUlO;(zAPj9z<rFaK*EM-atGUpl5)G
zWOL}5WFG5aL&AX{WgaH`0z47m$pC!=^b7DvfJeznNfz&o3hankNXr32q6Wy9j|Vv0
zrS!1?><XC}$jp5T=;a$kB2Udcd#vJ90R|Jd0K>@Z7t%xc6?uJmQN1n&%hfc!B0~eQ
z%vY~{>dnd($-ZX;v4N*XE<HRDTfCSU8Q}Q<ivuhPFe>1s19&OG%K@?h)BrYl9f+}k
z7QhT(1<?7D5s6nS23v7O5yPYq+mf@wu)j2^*bU$Xhyui<!%D@cw3Aa^8}Vi(W(!%=
zvBFKA3kZ_{Ig04tA`&>~AdLFkw^sR!RH(g0OpFdNCcu;cQv+W2iE#m53-Ee?jYZ|G
z=#@b1&!l-7ABanxUJWooCYYWm6O#f={_jl-c|XO7mC73dZ}u#HQ-0g3g_uE43-DHe
zc>(4Jcssy5fpD?TWnBzx7+?<h*k1Smr&Gox-QJgQhJ-UEoF(CG3AwqHv^{aOgkLcd
zEJH55bx52cV#5~%SQy~pZ%Y<Q$fJTxFAcCPz~=$J2(UcBiU1!{fCKC~k+(9y+5qbU
ztO~F?K(bQd2xkpVMEfE>Z>?0`c{Tm|A4ThBTX>**1C2xf(hnpgyNft|pk|Q*l!q&e
zxLU+0aGYX)76{`^(s8o<C2<b0Ex`5wU(@CUTxG__KrGYKS;w6!wEP?@Yzl<ZeMi=}
z5Z3Jb06zrS%$LM%rNT46Q)mh(LNc+HEbCIrH2?i6zz$lf&Z%7iex|{^Qc#iy!AOl?
zq-^h$UmZG@`Zd6Bf$(E&TB-alTeMq34l?&pj{-5;<nu>>z5k{Eq$bMrJ_#v=%y2Nk
zp#WteZVPcZz!93n5Lbmb8sJ!fN+AkD91n0Jz&`;hgg6=C6!nW{B*5uFEXAIoF|1g`
z%@w2}Cr~f;D(~JXMXmgsB_Au~ku;JnF9grB<%eQ?TQLM9{Igw~?J{;fsSrF(!=IHy
zR0&ZnMD-Bog~&ZzaDIrYA?nIlvKNG6^3FxT3qwS1n%+G2o-FyI5EqBIEX0^5sT!d$
z0=1Zv`+q|4a&z7Wa%qT~p&&I6NAo9Va|pq`)~xYz;=}X5Y%jO2)exk<Iz;Ud%|c{C
zToa;Bh#NxO7~<Lx*M+z~M1A5D3bNBm(E8O2QSTWrAV2G+7}Ik?l-Ma3hA0ZrB*e`u
zs!q{Op|B^7LNo}`P$I(%viX!VM(gA0#v%5uR2aO16L4O9lMaRO<gHSghQjZ+dU@uS
z5XGSgDqb3jbCI`(D3L!!2XUovlX{P&`ET=3T+zsi%0t{9qF;#qAzFmEBShN}?Lyoc
z;;v8_x>h0XW`@g)7`&)u2yW}*OFmeo+!LZT>y_D<q3$ZBO$a_)Wd`1B**-+a5S>DF
z2to6EpKO}Z7Zo}y_lM{lqFadWB#~?d_n8o%uB6iA<y4<O4~q>RJwo*6=kJQagCdFl
zK!^uJ^bC=0QS^|6bssEvVqvBi8*)hzW92;@qECpvA$qM7&Mw|vB`!(4ujr8wkA?^-
z5+MeJc#LfcVT5=*#J~`PLktNqD8&9g>8C;=El-4al0r2lQ&$GR<(?THBxiw7hZxFw
zL#QF12{G}v5{ANfA(ZF%2&G&x+i;n9PQnqCBAIwz!ch`3Pp1y0{Fc2N8_r$3T8PH0
z6h0i(nIWtYF6l<{t`cj_wiE`3s<*9>m!L6#JV*NiAI5)XlUFGLGpthno}Y<BBq2sq
z&Z$aGQfp4-<wCp|;wAnJMUODJUuov~^r{7!PFi|*+fwEk8)952cEu1A%K7M3Vk^k2
zAtn&j2ty-G3^6IhIqFM@$st|~@oR|RLcAXGa3a1B@k59=Lre*=F2wo}Q$tJ(@m`4c
zL%c-_Ur^!Q5Yt0^oGN;oIeX(BDq{<=6v7Zs6er3LC3!}OnIYDMSR0D_f@g)89g49E
zv3h5fGAG2`5c5LJ53!uJA1PcAVqu6SAr7okmakG4g;*@#f4@o$hWXeV%g$S^ER`9S
zk;R{6{(ZlK#mbzkBwQVWmmBi0x~s)tn99QAtL3Ye4YUj)J`eE)MdH4K4~c(>PeOb|
z1>cluK1E!2$o!v5hW1;naE|jCRX`@b4DnTnjUo13Q}FeF9RDUnqXXiOdw%sTS$wb|
z6Pu*`cj=t^PMRZ9ely>M_$d@)wk;Aev7MSF(<IuqP&j7$jLYYpFZ^pqh@UCj1MmwO
zy+3bPh@Db~*)i?TuW<blvCHoF5W7hSS;8I(_lEfM-@+yQBNTlTJ!yaa`*KI&KJutx
zie`kL?<d!;6_+3!l>Z*09ELbT;~(Obd~+-mG56S<<J74UVvczt6juEtt;(tlFA8Ux
z|DKj&e1@MNEIdmKIVCgU$IL$=Dnz&<!j%#7B2<h}CBk`;XnuYq+}f2SOhsb99DnjD
zh>&TRsvKe9MdkYU<>$-H7e}ZOp=yK+B3u}uT7>HI{hQ57xCBF(T`g4Uq6p75EnQYw
zc(*QzP)p`vkibh>OC;`b7+9x>5or+NvIv*UfA2qEY#gHFj$1yiig0y=W<)^#RXalc
z2scEyCPJME*G9N5!u8Sr$6Bu&;rnlz&~I?nMP>CO;Zhi%RcL#O%#HjRp{XpSC=#yV
z#u1uCxQP@vnaA_a4I-{_gOTJLMPPJLo=T{nUx9ZYkc>A+NJqj<5g*QmdOX1}DS}P6
zL@18XBZ3m))(9mLT1U7yLTQBN5n4sy5iMq;@RUX1!L+x}HNPzaVR?kxWuk?IcSv}r
zgm+2ETm0^h&{C$EUvbm-M56bpUr*rECPLc?_eba)p<N_K6zq#TM54QFPn4#JtvmNc
zLT5Wh!e`Pc!i%dFK77+fmcyu+-6GLlc8x@A1SYyiVxY+5y)+RIM0hYlp9p<vjvA$U
zQW7Hcim<+wP^I3H5KdOgewI;R9wuSsO#%HP^pEgFgeN0Rex=}%NObxGBO!H<Mi>y`
zF`4E~1nl%5CrbSanArMQdQil$EonM5o{BJ7e#MJv*mvLcLHQ60Pv6q92Sw2SXCe%X
zaA%CWVmupRc!Vz_e8mhAMnrfg!n+YhMtD9#j)g}U72$;lCS`;5c1~s4sNv8ev422~
z@MkY^M1q2$M=&BxzrSF{YNej0*b$rvVT4Fx;zkG}>{zXM5q!$|ff8QQx_-5YV@WOJ
zP3YgaWie&on+(M@;U_PY@!@XUmm<7OI*_UnMn@PEVO)e)WX`dYfZTz=kqNJIIKEmb
zEEe|;jF0dtTa;HcLBfd=PLhxlRla|nW#;Eki7++78^ov1trUqjB||yHWeL-$jBAv)
zBfLeX^brz!;&*Y+I2kcL!g~=`MpzZ${RlHCHWB7Um`U}Q_Y`nf0L5Sy<#vC`YzgN?
zIPRAXC{yM~SP<dky!_=67DiY^RXv-xg!G@5SsaNu3um>w*OD|@8eti&!~r22bPqBy
z^i0W$2=&$oQ@=XGng}08_=sXjaqXE}A7Mj;b&?>wv+|+G#Kt5Zi1;8vx%`Anx*tdQ
zB*NzrzKDd+{8OpIT*Rcfein)88*hqXn#bZehNOf2>j>XOI6p?!7~e+N7~w#KgAq1G
z_%6cl5q8r`MED`Xt_Z(I;4MGwgEmt`Pv-p?VM~OqlB7!ym2jA}jS^L<h|l&2KgskC
z34fOG7YTPt$UN+1xu8i$x^Q4p5$;cO$H*QcOnHm&msGJoB>r4{CwKOe8tu|tqE-8d
zV{U^j?2E9Us=Y=Tw1!7<(}yA)ra6jHImQuwm|x*kgwvF$zNJSa9E(J_q~j7YaY80e
zO31iLXCko}XRlEz#W*YF;hdDEzbTfxO8$|sLM+mJ@?uo{FP$$FDGC2wh&*~Kk0Z<~
zG0ux|c!=0yO7&map_K4~7#GI4IYv50wHVc7+z{i&7#GFDCfAE`eM}ck*~PI4>Qy7g
zC9xQCUmBxkEbLFM7`0^r5?&VLa+$b7!mA{_QbI<|WB#jUnnhhB6MR!A#<eni-G6WD
zl3e@5dUt(Ry}9Jzy<&6Mlr;*&!WYIUiqR-W;}|!^Vmit5o(*VHwiWJvFx4;?^AQT_
zh!ev3%o3W!;O0gih@kd0jnOQ|tuabs(Hqh*W>|hK><QhE#ccA(bj{8M{eQ@m#%Lbn
z_82W<l*PC$7V(s*o-3tDGgfDLER5}|lZ3e55sRLehmw9+qs;rX?CuyXW4sgN-59N6
z+!N!u7$ah|j&W~{t}(jBXcMDtjE*rn#k~GCzg>*>F*?N9E6abpTzGDUZHW;}%<qr!
z;2?A+ePZOT6$jRiG)h&GF%>(vDe4}hM~sJK^dUhw@{idg;K5kLujUk{XN-r)qaor-
z<;&J8JYrLJ$<4iD^p5dY<C`0<RkE9V^o`Lk#uH>jvsC{WkHmPC@~~fw);K_-F~4VT
z2_5DGV&Oc0EXLz9F;K#`UzQDuQD;Co|9Vm)@KlV!Z2MYe2n+c&Gb|Qe*wZoYYg0Nj
z#xt?#*O(^czt75_!(~ps8A%Stcsa)C7^7mm5W|k)#K^`_W9TuA82i_z7$8Ms6V@uP
z_bsg;ojF_zF)6XJ*g;3dB#G$5;SDuz3_nH?i#Up2EKZ&C%uz_Gh`EhK^vG;u93!E%
z`Mrd~#-BM-?0+SXM`eT*p_gLOFY|`4F)_x*m_nAt7#HJ}7~^BSO1*9?Tod%wPzWcG
zl8j8-p>%SLiLto5VUmQzbL3j(a<}ZY7_U=D+_E=fycvu0&P?CfuYhn`EH*E3y!tj*
zfnzbU8nafJy;foG%szd3jQ3)ELG6q2evBD0R>fEyV`hw5F_y$w8e?{hIWgwPSP)|v
zuSz5t<uc;D7{B%_rw5F1AqmT933)|3*D8x*ERKZ*`*f`sa?o!^E3u4KlU$OO%gK&K
znYP2lfPsM`t8K~T*=1|UP<|ETqZsRAtfwxZU_&fUU9nis(YQsHEck$Y%+F`BACoCW
zuXE}%mb@_YX)Lx<uzw+`xv)t1IR!~>7yK&5*VHDeWQ=cU{A28h@pFugF*e268e^Np
z>N^rD#^xCLgUi2<QJ|+!Q7ME0EZbVSXp2nLT&FO7`6prrPX4L9Uc<0G7DnJFTChq*
zJdW{8jGdId7$+O1XlChK*hQ7;R8Xdr|4LOlQ^>^cvbyqxsogQ||EKw$81$Jl!OVN9
zJ~8$Y+g3$?#zN63f%{_|h;cB+A&S!(F^}Nbo0}X49xgmAi{cdHNQ~iMl~D-O>y+a$
zPS7m8gf=hXWQ<d!QVz><IL(Sk*aRCAoQ-jg+MS?Jg1=+@L;IZI#)LcZkeA?+1eYeL
zm>@sFg$b%9Nb##~sq+$?pP*8Lf<y>8%}C`0RT4b)Y&n+^?^VlQ{G^QNRZY-#oj5{B
zDqWD^y;&jxVf6%OZc1I0;9~i0`ka^!Fhh+*XfDkT8C^3$tpv3bT$2c!g9KM3xH7?I
z2`*1~*G!rN@<;zH`SmGq4elzL=W4!ZV5oLt@%o!RnK}usO;9hv^$C{tN%OqPL+h05
z64Xt2d19K+3q(x%f9lK6Il$utyf8sgf;$u3mEfiX4HA?kxGh1$1dS4865NuYaUwdJ
zn-ioHG?Cx(id$ZE+mv5zD{Phs=MS67<(RRov17X3sY3SV#R+arP{M}vOqC{Ro`Ay=
z211;<PTYOWhlz4o+8qfP`I&lpdx92;*bvSqU850Ow`!eocY>A)+9hb8pjCo<5_BJm
zwtP7x-I`UCJEI!Y*UehmB-p%8Ib@Vm!MXj91ECHH?n}@$K{r`Z#{``c+@Ij^I_1Lk
zO6No@(RN9|5J_UKcD)GF_}Fe?vbwXDNyQZJ9`Zv)LcV_>!Gkj0^S?I_$wV&+drNru
zar8~lFTu+RMknZ>;E@EQ61<S$(F6k$Jd<Epg2zaZ1W!_g5)4d0C*dG6V!gtvFmt06
zZkT)`!56j4N%=vi^Eg5nOd?b&8uD+w{OX<bPzjk}*o|isVe3XvTp2iMOX2WDbllG+
zh-LRpHjPY#qyBl~&qyYd)7b=Sf-pgpKue$}a1(e5j6`&rSIy4Y3Cx6Uin5<imRJc0
zd5ijty+w{Jr|O&H7&3<heu98#e^s{pqYMuSa~2sVND{o5;H3mP%6yB)91pPXAoVx`
z=UL_(w~E2=@r#SbBp91uI@Kh>IC3Gu>j~aSFh0Snl(b`cuO%QgCM04)Hz~nH+4f&o
zX4D#GJuWMoOcg#|NcS37j_6i;lX6a3<xoGt)I^vjK3uD%c1%me=t5bqyq(~kMBGi!
zty6sSuFRIcwdnl>GZHLFurR?)W?%^;@@EsVonq8Pi^MLQN<Ak5!<f&d+8!>PC*gd`
z;ki6+<5`qoG4(FNGBS6)vLq3^N8<GggRioL<q`qziK1B}9afOA36@kZS|#CX3D-!t
zRzm)@F2R<GX(m2M@L_`6b7+ynM+rVoa9$4Q=kQ5_PZJzTa5TYZ2|iEozXX3!W)gf!
zJHyWt&`C?Cf0f{Ca&2PSQ#}fVt&qrkE8#{7H%a)Ngx^c}gM^zUY}+Wsn73^H)&$!U
zY)|kLm2SQA%X;Oy85t_t4vI&DUlK-AE&DCO`|FjR<luT`mwdyQzsf|*vFYCvaU5y4
z{JD2ZdXG$eJ2t&H!Ji2ZQ85$zMIw{4T>MS2M(%`UciCojro6cHK!Sq_m|!ddLWWk`
zKPr84y_l^ZOK?2FX<FI@CkO}QB!!0v9~3L&&-~rI{!lULtG+=wo8Vl6e`xS?!Ue&X
zf3qXt33|C*IWNbcg~emW7U$<sF(*{1{sx72I;3QJ%7sOhawy1w2|kr``00&w75Ves
zS>;u8xFCl*Ib55=g*jAX`8iyZL-iak$^kiCCJVVZhZ;FtlH-~2!Wt_wm*!BqL8+Ak
z1I16iSE-ppmklC8cRGz^?NFHa%X4CLGPU@M9IniP>Uq__aCYYE9P%3$@lEQX6mQGo
zR(W0!b6pN~Ss+W!p<WKx=g>5VW;xW)iGjh5Inl-3AmLNp#4duu9Ex%nak}uP9MbZA
z0|}X}VGfP{OE=D;iA>-8-y4Q*I8Q5Q*osU}XdHXM;vDXO61U`V#lxa+x-}=FD|2ek
zqMGMW#`jO)Hi-t+fzu6krsX*d+#vMvilMk8hdXnyb8vFFD~G%Jc@EFy&@zWsEIEhH
zIoy*&>m1tU&_0I_lbZay$@$(KcwbDL9NNmnfVHVHOGMOy4msSH6EiFZYrV%wcg&#^
zi#nXya897~;AJIUa_E{v{~R94iJrY%4iD$V@T_}I^v*pbR3v;rLcV-3hn_P1kc7Sd
zd*53oybVg99Qx+OvQ9rDsg+ONpnQ3#<hMg5kLEBS_kT293Ajzw+jluGqB6uUsZ61J
z%!ku;uIo_BtVpR{G)TroA%x6RIA@P%?{oHWBSR>qLW(q)=UGA};xALkoP58v`aI8m
z-sjzGuf6wL@3iLk#lQp)59ZV0lk$BM=*#M}*ynR-&H78^;p>IpNC@LLAOSjFdsE`P
z<;u&_AC*BQegbQMR1W{B5DrOTXab`W7@fd72@E426Br@cK@&vxCafl9``v^XBeQ}d
z6FB#y2w_0@UIJqh7@xp|gcx&Kr(<I!XUCBm?8{xqS<yE_SHMehvYSp4qom0ROi5r~
z0`n7?n!vOKQVG}zyq~~yDoz4P`TG9e@fiusq;_=9X2c3|mX%fc=uq^IH43|M8Vi%a
z1LJBN37833)R%>ImNl%?KdXLD^ExBC)N9$Mo|8a20Y8C2YE4F#&?9r@6)ddBMuGid
zc0N0fiWDR;JAn@q`0@FMA5b3?n0u@~@zMX*r*U9KhMbJeVIt-HQcjIE3gJfyEJ$EU
z0-q<aQ2yeR1QsVmgSAN3;$tZf&DMzW|GGK)X+muH|15##BZTB|Ip&K5zD!_w0*pw@
zV7N=Eq%(7u$+wPn4N>N~*8kJGd~)II1is-fk{Fo8$^=%?G9*zsiEk5FoxpDi97*82
z1invTa{^mrO@E;Lkjn{B#eO7_%eG*L<mR)Xb+r5mY)oK1`A(-sJX84!dhU<254K4%
zee<(oljK(7EHDd`!1e@oB(OVyJqhfj{7XMhJhnh~?4qKT4D&QP6@=UT_R5Njh}a4I
z7Zm%4?x6z-{G7l+R@TX7Q)tu;A4=dCvi`JiTX8rc#%uo_v-*|%l0gH1Pv9u+QWBvg
zjwSF%0yh%)CxPP$oJio$1Ww5xDQlGfC2&&WL)M7pX0FqnmUL#9_+kQQ5;#lInj1Zr
zz<JtIx#0en)DcD%;q3+5idE4{m$Lp&;1bogU*xicS0%h6A!9%={TfFBRK0ui`@Al)
zjU0rV2^31ABOM$`?%$$Tdi9zQtwWfV#Pl^v;iRztn@)%ckfKRsCvkTYrIRR@MDZl<
zNTOsCC6Z!+fEV-7+|3ypDV4;$HA-HW2%TfxnZ#X5F&jLtW0=kysPAQxD4WCsNh}$N
za!D*a9V?#{J=lAac)P#oNRu7x`&CE^<A5aYO$y6UQNsHq<ZUHBl{hza@pj~J;qSUi
z5>=CUB8gT>R7;|IQfPE;5)UO&BZ)@xwq_EwlBk<Ry(AuH!IGjOxO1%%PGbL#{Mtzz
zUZbpDqj2`7j>I_yacPZGKZ&np#E^zbG+@Oqi^=CNyNTJ+NK#C?Qji+U??>ea*=#+M
zM30{Fi^alCl87admqgPf@{?#Lvvt@N<w1snYJ?Z-9#5iqQb-QBj`LG3_>n`=N0WGr
zwOA5uDdFQ1^0wAmrM3LXGf6y~L>q~>m9U+J?UU#rN!l@qPDz~aAoi|5DN~*z@gL0Q
zZD)D=w1m9vaywhsB%Vv6R}#IGcs>awiC0;XBwmn`@N!bDetteC@?w(y;UnE7>@ML;
z62{gluaLP{MZ}rkCW&FrYmy-6Cq{ZE@p=+Br$;!y^j}c*K1uXV;*BH*$UObzFX+I(
zzeKo6gMAWC;Zm1*bzQ3rVzwl9C$Wd3lEmO7=2Fs<7?Q-$Boav^lXxeIVM&ZlVq6l#
zlNgc2yGe{piso-b9kI~aXRSiJG%6{ScXSdh<t}KJ_C1oKMR-gS%S*+Hj89?$Ih({Z
zD#BS2VQ?bF{$vqukeieg7GrV}QzXmyE+egTO`k_EId}Iy_5EVb^dx3TWTu2nnL8({
zCZQ$a@vS8EB#fkR1nne6JTfyWX02_euwY3M6pT9t87-P~#gv4<8-_Y}38$0DB;h8p
zqFmiqyVNVxxBl3^^@Ah|lK3!*IZ1qw1ZQ<-vE*_`7Omp!B-&k$@_MXAeGWY+>i@y{
z{Am*3CGmX{3#fxhEKOor5{r`fn0!p)izGggO!<`DEE--+GM>+&7hHZ}>{{hBDsK{5
z`(nJ7_65%;&e;7tN%SSTa5jtXM&Iax<w<<Sq9%oN1G4Yyr05;-+{el!zDeT2D^bSj
z<JVTP2}pvo8P-~5brPSgRW|YaYn30!jwCiEv6-USAhafl^+{|X(>bM|6!S~#B=N(a
ziKwqs^Nm!@&m&yKC!@EJ-K0j<@GesFRBT%kJE-qNa<|JG<vuTVM(vb13vg_$!dZG+
zyuC^6OQNufA}aPL@lz7#_<9ltlK44^BT4*Db?6#8NVAZ{FU*h?K9m&4U3vDC8uY7F
zCB|XlWXNx_Y)zWQkJ5ZyD|{@8Kd471qFtR_HrdB1kX6Od>;$zniIYi`Dwfal2xpV{
zQ{tzRI8Avdmd|uvXDH;HODUGm6rNc)PaRC+AF5Ik7nArqi7QE5Wl?1~$V;+dtl;G&
z9$z8O=2IpaGK^AsEs5*0);HEFHz;Noa?EM@|I+frvJ0umQgMrBs*@O<G3q7FK2JpQ
z;(A9&MNt*iR8&`yt)iHUiYo3?QC!7k#(Y=B**$7R303ID9jXws;Hf<7S1A>Ds<=zV
z-OTy1QdR{QD@#k9w`EjtQk_USnSPIi<t3~jAu~h8y{eEs;(3=tl~mlXqKb;Ds<4(1
zsCZBnic@}_!bzmcD(bFN7>LuHE*hHW8|L+uUO*pGQA5QeDm}BIrixlBYOAQD;$c;^
zEMeCDMh=(qb5wDP^YL}c^Xn8=p{^=fd@_76BsK}uQ&FE4{4>@-LLv=SL~i4aB+^(#
z^mfVzjY3US#8kvpG*^))zt&VmzACu+;!WW!i!RqVqu5LZA=f%vNYb@d#aN6_AC<R{
zsc1=od@}sFiYHVITBi{Ic4DNJ3c~kgQQN5CmX(*LMB1z9pyGQCKWONv;z<?vXeh7Y
zDHWYm1S$$tbXM`Sinmn^R?$VpGb*~N=&s^fRWz5po>$RT;?GIQzU7SzIf{xGNVkL0
z7gb?PXYZ=Rj!Mne;g?jrtfIe)H&nc$;#CzrRJ^8&1C_UGgt*<eGA+M~*Hx@qr}R<L
zOGSg7VwJPEiaG0)`(}u6OFWa+S7u<Iev&Cf2B>&b6(QSr4P?btF?%!gt=uE!1#zf-
zZ>iX`PV~u#s2HkZhKiXg-cd13#aI>NC|xQ>s2HVUG>cR*{I0AHyG$d=g*Px-o_Sf>
zDzE4`v2^vGiZLqOsSyUyAsnw_f{LjsrcuCDyx%%JS+Zl2guh6#i{6?P&XaAz4@zIV
z@2i+DGjQ7f%YH&c6C{NSM@3qNszOs?t74vt^TT{fR|&d`OY0OvLQ{pM;-T#PyVffy
zDJOiy$_{urFT=8_DBVr$G1zw|%CYdZnfV^Mc`?UVq0G$Z7H)P;KTz=<1wh3t6|*VN
zB(jPxRV-C8mmgHIP{kry!ucvbQn7%-SrA?KbauhJqO|<iv?;<Yf2`s&K3cDQqKZgl
zizWP2Lf+O|uPjlqa(A@-dgXKSYrXOX>99&6vP{Kt72n8Td?l511ue#zXpvJfnv};|
z<$bN<%1W`*l6|L@WV(t^CPltgG5L-ntErMBBD^hnHTr{!A65KKvZz?2VlAak#Woe|
zRIFFAS;ZC=8&uJcWob7`F1)s0M1tN#j!T5;#jfR~)+<!%?J9OqJkDmZQJ}!=l#;-+
z=d@S5sIVo&yD7$*$Q~7Y$sMX2wN=F_{v|(LITk*k;ujUaQcr2h7Dl}0;e#p;sW`0S
z;Lr$PO#d!sfqqkQM8ye`ZoWwTUBxjKE9jDlzxW_hb78#r=KMcY9H(Mlk1@k|neBfn
zPLfmah*$ok^gbGn&K3A+6)ir9oKbO>#%fvqITaUF=(8h#sW>l7``bs+jyvMa$@~{-
zlN*PJEfdGhF01%Q#ZA(gO8}(RnA~eB=r*4Oxvq+d%4!>;Hz<uGB8%56|I+N!L~FQP
z6T6QJY23|@ysKGR8VYMDq9LTwwM(RwhV|=}q8hHQSITTqzPb_1)=*3)GQGG&N@%#_
zc1lSNzphvK=%Ee5TU3h;O66HfX-$k@%4#U52^&~O!}A-I0_oV9@=&Ki;bAvJ6*NFY
zHx1o2+^eCYhWZ*BXt+;9B@NXyRM&97h6glM(NI;xgBsS<549ejU0D<BCY%x%acUUj
zvVQ19{ZKLKZuB7yH8j-H@UVuO8b)*%=}mfPGe39j=4c3OsH>qKzfdk-TN6W`S<)`m
z(YU8VDBwe{=KVG{GOCl@`J*ACp{<5?8X9S6tRY`RGYwG<k7&r%&_u)A8<Y-#cyaqE
zA)iw>C^1cRIP)~dX%a`Gno4BW1|_bcxrWvn+Q<woG(4)|F-;tUWfRs?!{ZtbbjhZ6
zf4f0>LPLc@`K_3LQiSIt$QP3FzI`$N;?5po_a?dDUPA{Oe}12RjNy2a#$OW-1YY2$
zu4i@9@U(_58agvWzX;i}lRj`X?BAd~tATM+y6lae+n{un_;X~C<W%;=h$0bYD7H~~
zQR6anWNfLTwfjb1((tl|w1y1jM8m5ZrfQg`p@)XoH1yZ-hK8ORUf0l%HJy;%B$?lf
zyxXYs)<i#nI@pJgF68j)OTu1jI%a>g@$kqOJ;l&|fQG>uhL9r~25Q)TDMXVyNCSHp
zZ%O#JguG=W`l0fJ?5w^+7Hm{5OvxXn37a-trt|F82n~eqY8a_ul!nprcA|t#e^0|0
z4P)i)I1S@9OwiDNqrziWQ{Ihy{Bv~S$OyAdx}ATrM5f3*On+a)bPbvYo$1{|Gc>4@
z1q@>`Q$s>Sl5*?Sn|xQjEk(uYHXdmwgXpE%Am26En&@np8Y~j9N|PQNg(n<G6XD&d
z*OVN#CKPN}gQwvW4U1Vd)?LGV4IfcT`7aG0YM3LXh`k!pb{46(QJJmb1yAAZ{akWT
z6K;!W4@nlfFyg!=>A66|LJc3wV$&us(!kxVBxAQ}5xS~lJI<!_Q<g--R~lAmSfb(2
zYgtP*EYtA0hA*Vu_>yw_mZ;#cR0Eok@<sEPOS0eneO<c1<(ll*8otr6O2fBOzc?R7
zab2kiw|guqGpyFcB*1qX_FT)Fu~FeT<;a-aAF17xXB{1Ntktki!#z66>sYU0gN7R#
z{?V{e!zK-9G@RA2S;H0$ziBw4VXKC+-9tMx?9{N0MEfIWyOd$7%*S0ryI5aY!rJ{K
zd#DZrBm3p;UJd)?ZT9{c6X$MJej-!83vmkN0134``m=-wB|N0zuta{5@K*_$XVpgK
zcMV51oTl6!$T=pz%m_*+HT<FBI0-mA%DGU&6B7TQCc3!1{Zqp!8mNwuoMz!(bH%(g
z$CdoTISqelxUAudhV!(L-9r~NT$CRtci8nM{G0Wy7`{X?Yo8Y>luvk-nm8}}nv_F2
z)1bM#PJ6XAMvq4P@=cjuNJo|~Y{kFw_LhW<u~=9~5gm8wxLZCA=_slrTjFF~F&)Kq
z;SZTZ*AhB@+NhM&QA!tzd512{2%|4GDqHAI9c9~#;+@~9aNu8B7b>6MJ;ZXB;UgWK
z?k4NY>EL$glA9F53Oc}B9gi?W#qhm49@0@m;uV=+M<t2hucNvygy#XuL(jYiC9EuA
z6$z_K$Vb(55ec1$O~+!$uBoGzj>fVg59`R$(LhH-U39s_I_l|Sd8_6orM3>jI=bLX
zU5OLnly!X_@l8s8d(j1r=wMHbg`_q$(!tPUM5xica&<IeP94p4#B}75R=?!r>u4(f
zOZ;$U;Wzuqo_Wo5F)$QQd*-#!@u-egI$G;^Oh-!{kLz@AC87p|d*(6!eMe)h`u~4S
zF8+>8Z=<8Fj&_o;bNh)P=IwPcwN4(9w(KxJspBcuLdQrQopf~8(OX9!9Z&1%qNBTx
zmvlU%<5?Ywju-fy?xC(ap3^b7d+6L>vFa7WFZaxQUI))mlpT&C-9y8=hhEgtjZOyW
zskI=g4;Dk(mvy|Nqo*#U{Z$=3C=#_puj#_A>!zN0r`qKG(ld{K{Fw7~9ldm%pC286
zI#%NKybC?^`s(PXV-SBWU+=Hu4IKk?Y-^ECvhbw*n=*Z%g!GHf7;2n_ew!uKF;vGp
zx(FROgyK3nn|~*v9{f5&WSEW-I#xFb5g)FL9a;25N1RVb=@_jeC7JS`jxjoB>PYAq
zOQd_~eI3(vjMFh*7Z!;`o}i=dwdh0%CrQZL$vUR!*f2aYRi;e4oz9dQEZAGQ+>yfR
zVqPRdQirO;JD+9hVh&l;q3bYMfL7sIJ@Y>4DYkmDY+QX1khZRmh?QXLaCD?)Ihn!J
zv93^|j1HGN`%{!Y9w~23_jS=tWy%LSW>F5)$Vp?ijt?n6DLj$F9369Yd}rc&6Z3S;
z*YUl99}Ik?V}Xu)4OBF+P{$%2zv}o+$HzK8;lF5Rbu8BLsgC73zS8lTjwLL=j-`?p
zpG&QwjD5k|!i5%G<b0YqIk-$pBZrC{=Jfx!_6k}4A9Zjdom%s?j&F2S>5|85rH)k+
z|5n1)5`HJ)_qsgP-zDz{dCLuZYe*K-O}b#Bw*>Bz-JoNmj_o>j=-8xVGwGmXs}8ya
z=8qUTf`wtLT60chn=U$aZv?_I<4zsBbnK<_Qat{MF`&tA3Ov0Vkzx%)oN)V~Z)87}
z$gB60jsv>rLi7qEKhveg3Nb74i;jcx=^>fI#KTmj;^CPK#8XZS9HFx4C}H3Z14nfn
z({Yo8((wlsS;r|Ir*)iQo~-b^K}AlIIII_A5ynM?0-EJNS;wkznxiw4jOTS+&~cWP
z((#v$33C-*?6&b}<nGzgi!`=6E>W0QM*F=R;T+>Lo0LxPMlQ>gD-!b2RUOwPeqF~6
ziTpz;dO^JP%E~C=EggjngbWllkY$LvbEcHlDQuvKfgzv7FI|Z4Tqfj=8j)>?S%_kW
z*iOt84)BW`c>HElA|(x!GEmOIJqGSHL>=!kaJNLLfTayYUq@L(7(>pImEm_bDZSmu
z>FY7}B+DD9V2B0+hS=>ud7dr9t#Z#Wsd1lyN(P=a(AB{G1|Bfb#6Zlzg9a)asAr(Q
zfhq>7@=?)n9r?#<hUimq8Kt^`hYZv(P}4xzz^zTnlub%416wvJM>i=C8}MaHj)7$o
zsm*_FRvK<r2w9%G{PGV`Zm()!prL`rtOZ}8>XnQ0NJT{AjYxsb%FCOTM+`RKd1MV=
z%r#(Fi}9k4<QZscpuK?(2J#IwGtkCBTLW<e%?)vAw6!57NLv_q>RRkk*3qlisdo4=
z14G}5^J>ZOlM&qI@=p8-1Fd9w6<6HyN8DOW619CU&iU1L<V&s?3v?tGZe>wTo;L6#
zKWm_qWLalPWXd`DyFfN%Tp{gZ;2BEn7-iUIh4488&(l5_SYSXg@PdKy1|}GI(Lgr?
zV-1XxAL(x3RRcW?yky{I;#YIpUCnvL0PO&;;NRG526{55fwv93ZlD)APVp!j{xHbz
zZGiAi3HwOcSHgZ0_LuMt2?rSX^Qk;$9w=`MbrLvXa<ej+Li=l!vcyPCLr4<}@a)Jt
z21b!bb0fo8@wsAtcsN-<Co;moyD~pt8EJ^X(?s}mw1M|z`WOj$u8rxORHTn_9+uoy
zEj-b{By!n6K$*!8Pc}qfcdF$36bY-Wh)*-b`4MvMeFM`C%rG$15L*)s1Ezt5#FG-L
z5^56a67ntPv?NX>Z6GCaTS7;||8nwaM&7y-dJ=AbrwIGBRg4Io6crfwz`!iRev#P{
z&LPnx!j!wN#OB_{=SgI~gd8s{G_c6P5(A$b_}IWF20o=48u+3hPKDyAVX+|&#ZcHj
z8^);daT+>d`3+R>i<Jge8JM?O`I1u9DY8_;Wd@cT;O3vNBwRr~{WHefuc@0SqTk3w
zI)eC?;&CXt+7R}++=r27J@6fMWQ%Y-Lgo6=z#3|ei4G>#8dztbkcli4>kVu$aDtY^
zz(xa`4E${1pn=U~kbzwWb{p7Ag)*>{-#-}LZeWLjT0h0ui#zc`oLj<pobbEN3Kol)
zVr+$<eqC6eJqGp~*k|CmHsSq-SgZQU!1cCy{lAM7KOj>MZB`B$I857afcs2-G4QJ)
z`V|zI-wYgK?Wo#63op=j{2OCT$?vL$&u&(j!Uz$^4E$l>IK^y>!h_yl_`;{(Ns70D
zO9n0*IA!3pfiniq(&lVYPBs@qzvf*<$LXAb3(~m#B^B+w0bZ;QmF^<H&^N;CZ;3S7
zqFga>)xb3tp0ad0hjw_xA0q0|4MR9Gx<$%lhyS7d=@{X4)4;zH@3KX>)29`pr>w#z
zikPTxqJfE!iJ~U%Fj3M(wuxdUikm25qGz)>dw^^acs7=6^dz7d`h65FW#Ud#IMK>6
zahHj^O+njQCQ6$qV+swbX`-x&auUDa#62cnD2VWaM9Q0}VB-9TB86&uugpfgqKW%t
zhDs9hs3{X4kWU|!kYBEBqRMT&s)=eQs>|DlB&=cL;f2B=a88eq*U!zwLd?S^Dvrx#
zA;TtWo7j0dRL4YJS?vB>l*8L&leZ}KOc0Xb4NXK$#7#6e#YxFVEGoD3n`mqzYKl`Z
z{0>JwkC@1nUua??W@72AXr76t65&U9`(H{kQ-tK8Dsd*Hg^5Q^v@+4!#AEVZ&fT>n
z3(n_^y;1maQ|w%Nf?VLIF6Qu5S{oB>O)<0G&J>cs0p{vO!V~H03(<==V;xOAX~H()
zn0U%WCle!0j55*L#MAt^iMLI3G4YIv=g2G*#|8);{QL2|XHC%(bu~rrSKF6QO;=33
zZlV{-ZemY7{Gy3&Cb~=fB?;#iM3~O&WqJFGgs+<DA(7W4<kOxK`Ob^<mh2d0V!#KH
zJ`(RsG3cW7laNS%6K_a-fP`<}P9G?df-TBdTNJ*_?)_jBLre@c#RzWu7IC`p9Z9-(
zO$;+J+!O;k&NhrN@%cb8-^Gb~winznHQK~`<f(}%CdQbePcqTOBokvzj59Ib<nl!R
z1PaFFd?E+8h@JMdNX*7PsO%t-R#Qz(GhvxXnRwq6ofh^t3=`8$%rG(26g}9agb4|G
z+h~4Nl{h=Jnh9Ov#g69l5v9?Tq-eb?U+{E<7{ySQ(k3z{7MfUO!ZqQUm~G-ia;Iy^
zHyNu`C>Ki=m?$tgOQ!7nUk)L8H;W=Fd%|-}%r)^53H26tWQiaM^C;(x9l)I`Ca!Ez
zRvyl0;sVyXv<Nczv58Mid~M<z`Ip5kqzT3X{!~)wGZRZFZ{zYmr)qCizB2KJy#12n
ziv<y;FEz1@#$jAO@#XSSeu*%1^5ZP32qJ7^6{WgyXtgQ2h{cb_zLmB3_Sw)STlAvo
zE9nRRnj&gpu!S`={^Yxb@)p+7_?tLQwwl;rVxx&eCJvj}WMZ?4T_$#uhBOqnvbIu;
zO>}LO_t#`)yD1z9b5A3Aw1Wz6qQ+K1BL0g<t@oJNYvO>3pH1vD@vGebyr0UlUCd4W
zWP<yCznq>=c+eCB$%#|r18n7c>16U3=BMtM_`^h{;rPwO5mt&;$cR*UEq>G#D~vo!
zM#D%`&uQ4>CVqJff0{UD;soi*4-$C<_jA|%wZdHYuj$q6@n?)3Iku#v*jW?jXo@X_
zEc``NW8#{L>n1LkxX6N;V8l!g(*KsM*?%Le^k~rpUzYTo^H=N&h4VtrRX&}b&t>1p
zXxuRIkBOV)i}X7;bcVwAoz?u;#4Qv3YljP20%l1_q_9M2ql#L{ws5zF(iVzY!f9}E
z3neT}?HHo!{lgu?mf+^X{*jUvx*dt}DrMnLiQgsRGYjKPEJM5>CJruA*24T*^(o}#
zEHJPjM-%kzR>1-+bhhxcg?lYjw9vxBqZaP7P{~3A3k@yYZ{Yz8RV-As@Sugtmatds
zIsDW|=mHz`GG9fiSz-`f-2&ZeF~St}>mds@EY!46i?3hEd00ZuO%ac8RdVEQSi;&8
zGQEyO>PlEo!ul4zY@f$R5etnhG`0}6#5B~Z^Eo^L_u7N;M=W7QDJ1meo@?Q`fug-@
zVj*TB&qDoFq^X7G7P$92-$FB)vTa@@E)lP7oEdm=Ys6y~T3Tplp}i%#@sC?*Wudht
zZ1NMN0D~74MB7+mDVB9_Yk^1M7|dv$oBQ^eoDLQ`T6oGrCkszXrm)LB<B4$fUSg!l
zjp8&@+_BbmtI~yhwD5|BS1mkip{oVO!V4_6B@UiH{9I`7D|lXhfu6PKV)64ac#-V0
z(A^TG=IRN*!>_$0Yt59GB`?k{kN2<`@*DjqJQjLdc-=x@OW4?cTa{k?<G>;;c5e%P
zC`(?wQ!>s7<&auKd7wXpH~2vd11$`YZ;_;LtrD|jYyk&Za(!GDVANJIY93-?sD;B8
zezEY5g<%$EQ=%*kw=lxObPF>qylY{kg-I4BTNq_ww1o*4Cd!Y$XVKT0GS0#nOT_9L
zOSu{opEF88o}(Wxe`jtLTdZeu8{V6_?DI^q#H7<S3-43@WfiE}q{EF~_++c_R=07h
zGSfoBf@i_EkhGv$NRu7)LY#BZm`KYbX~o051{r-hYD#EXNJ+$&aQR(D`N$zP_UE&2
zmXWn~`C>2eg*s0~0t<9w`+<d7vMvRd7?pE4(6dj3eNILcr6|s^FxSF27FJRnsB{*-
zvarI!M-~>a?iLnH_RagBIHtPL!XgVF%MvzzDVM#+UEM|3=u;BM!ZHh=Sy*D>bJmD%
zf2a;r(i?&=^x4Aog8s9jN4F{>%Jv$i*8TD27G{1Jp^rh*=W7dpzAiS*3_dQJo>dmU
zW#KLCw6NO3cNV_4@Pj4B>|Au<*q;-g|7;ZvIxW?YYz3&%v?p!C>nv=bBDW5&rz+Km
z^Wsl8S}5EqZ<B@17Pe5=F6L~NdDt(?zZ7ETZB)9c`P<ouY*YAjmxbLHsy7bpwXjG2
zlyb=bvZf8TDf=jUi|Xx{4EjmJ0}@hbf0oEW3x_1qp^H$!UoHG*;g*F$DIB4`SU5*>
zZQ-beW7JJn+`=DHky)t|mN-Lq+`{=|F?v1vpZq%|eBQ<EQ!GChh>H|DYvHsdM#^os
zDQ7HtK99V3r70=XbDMJB!UYT0E!>bCzi8oa3zzuEHwBv*>5@#pY~c!JeiW`!5k9JS
z%@SRG?_!L2=VP&dEZn42TOuy)Tm6M1vw5On;pQ>+aI#V;oI>ps>ZDL4g-{A*QYf23
z(G;>%D3QV)DKVxfmO`PTby=ioOO)a%QB*1jRimejepoUkOiihjkkUI-xQpMhB6my3
zMy+%Tjb}#=Taj`p+>^ot`rb^Td`hssVhSU+iA`J;Qb0=Bw|gZd@-O4Rq=W&il*0Wf
zJdnaO3nP^!B=Vp{cuu^EM5;<yErseSJS6d25;A9v6lzMm$-*daAHJQQBax{wvEV{s
zsGCB)6q=<FPtk6pK}ry+aY`7U9s`RsOd-MyLvkCXQ0i$Bp19$lBD{^JKvVfh3b`ra
zk)}xs`4WjqIPv>vUJ6Z9=yo~B+9r0H@|))_=QQW{FJ(QN!ec41<kuo4g7~c1rtk<q
z3)50kX2Z#F&wgl?LhBTc+c;sPO$u#OXlJ9njdm%tPhnRIyHn_pLdO&)r!XajCsTMT
zh1XN)l|rW!I;Ze*3a_M)6%9R|LKjv!CB_bPR`6^}_z&rpLiZH9lDtL3&q?^ago=bO
zNcf_J9Pn~v{ZdNUfvHEuN^axcbq4(#do_g~DfCQ<fyrz9xD3uhdXhNgFU=9td#BJR
zg@GvyN}+EG{Zi<k!W$`U+a~t&w7VpHGxF5@fE3=8B1As}Oy}-9E}OoU!rLiKOkq+A
zgHsqHC2a)Bn-bvzXuv6lMBYhZm`oWiAyYnjLwQ$b9x36d6k1)1j!xk{iHu2Mdxr>9
z#>(4q67qJuL?%$|JBg>u<!KbUS}J=nXKD)5Qdp3}!W7;o%Q(}X!rT;Qq%bpuAccYy
z60-ajRVIaG3a8dbRS7i-bqNg#cTQJKvSwwJdF&LN6g_5$-ex)_x=EQ7Tq*qAoX?&A
zBtAEPato+0YqxB9e&db#bWqHN2~MYcAS*aa!r3YGz8?EfLT!EiJPK|7(EJoWN{QaS
zXjtihw_{}brf5qicTox-r|@+O-%u2X;gb|Tr9h_e+csq}Ex?lzZd+QC67Bd>DFa-a
z{yZgio_vwQmnrP{GD5tdQFs~G9eQJVN_2j{l5mBD*EYqOvNDBL<TVMN!nY}`W;s(>
z$BLwIdYiI_igqaaeM+oev1~s`z57wZ8uOx|?INbq`V=;#u$kYa*q_hYn8GF&W3q^O
z#9P9wei5EMp=55A@>zO2U1H|%pi&eRqG%O*LD@+g;)x)k;qA(v6!xZYr;WR8>`P&P
z3KvqiNTo~RKniD5IG4iDDI84UPzr}r(Ek;Oa4C>AHVD^bzsRy3PvKXVr$YQU36Dtl
zdkRNWI41EwBxHsswkt1gSBRV-CCTCx{**#;p<cLEUxm{er%0Juk<$_qIYUX98zDk<
z`-{97fb%3yBN4Hbq=-Hl`8$P6G}<<b*tnd+722p2Zc+W|ATcX^H6{83*HXAH&Bzz?
zlp85<bN)XP-jtBH`|60(RixfqjYEZO`gn|F*+^W^Ari7th<j#i6t{&s7qyXX3+mDL
zI7ikzUsl3KDO;FFj<4^q#U`JU5=KiF-P0w+W6O8jC~c#Wjm9?0*eJ`VHmcYtXX73l
z58A@2Q>e<@LbM*RQGqEpW03G(2`k!I^HctPHr&gxN;2iG?aKWUVLBt%vpk$F84wOv
zwNcGREgKKp;OsZ;San+r5FU~x<T$Q|jhZ%{mgMu|;EpPgV~eJT?#iidVP-oNt!<-@
zEp~g>m9U<K^(AZ|p)mM1BDe83Ys8~A9<kBF#-lcJZ8WiwZ=;zl4hU0Q->(pk+3aQ)
z$+OYaX5Ux@WhN|{Bi4H2wrHT6+c^1MoShTG$86l{5Naa}*3t&!2t3ZO-5KW+z!SDu
z2xw)awM2;1xV5#xSSPIJ<Gs<rMn@ZSY|ORsB#B^Sw2k*{bh6Re#y}f`Y&>nFi;ccE
z`q_BK#<Qek*HCXs|8Qry-`)meZ#`$@c^iM;8CPt)VB<wwH0ZBN*iFLj622ti%M!jK
zA+t5i3HOlrYZCU9@O24$Nyt1M21okXf(0Bp(Qfy*@rI27Op%FP<E8+UJ`5W{KC&s?
z^Hu&^Hr}=|%*JrZ(3S%*m~^nk*mLl+AvP{UZM-8{Pg8R)H*W-m*2YL1zea>G{HR6l
zoFoo3jk3X6pfhttmv4-Xu{JClDI4Q#jJGk(#``uV*qCTzvW+RW*dsAzyD~{~gp)I6
z*2VXYtUuKjJyL#wjXvRY8#8PqZKyV8lCYg3Z1_0i!AA*lfgZP7<<Y?%g`6px4c&&p
zV*C|j57y+bXGM8cpO$aia7ZE>fsM3{j4irq9)+J={!<*tWn~Gu!=H*nXI8u|U<qx^
zqN0@*<(X}ZQ#rJC%<$ov*oQXg29|%BXJfvNoi=va_{hcr8(-O2VPm0<MK->mUfB59
z7QK;AZG2|q6Iox{(#1CT`uyz*XUmt6P^ZNp_j4PRH~xj%x75Zm8_UT-2GALj%fz3~
z<&fZ{8;7)C+xW)DY8&6#SV;piMhu|7wXsSvk&NIMc!vE_^YHgJez39D#yT6@U;Y2t
zi65!{HjW*OR%#n(&X14gueaGbjP5&-vw@QNS(MjC8=GuwW?hCv{!7^+A8nOzn}pkK
z?6{r((5C#|Hug|3q}cDJ@wf4_jf3)bzl1+Y)g!+S$Z}R5pUc+s5ZO_@&@VP(gM{cF
z=A);=^k+hwkn?-=HycMNjW&+j_(Q7Ike}km<ky6d9Evi!0jJ{Wnf8CwcZ#lqp$`7E
zaf&9<K~+cCz|%Ia*tja+I%DIkjdQe|b;SbuUpCI$xM1TV?a7HKXEt~)<8N8K%Qh}i
z+PSCeV$Sk@5gv)9LAYk)x{Z<!N;$YerM8jfps<6RHvXlNVehd)==<#oPqLF)><4ni
zr;vkBtCy$b6mbx8P}~8%PqTwp)Iqi*W;L7t5U1~sVh-r-aDBfxVF^bp72V<B;CAKQ
zcI5*%|4s*YIk?wBMF)2~DD9xUg9;AHIG`)zat`j;p_Fw{_M0f}He028oc|9Y{oJrz
zRuhhJ#ltp^6z&=?e4m3#e9=K=N1UEuCz;mZeg_XY;0E>L!v*Ze(|Nz-@DLw^PgQeJ
z-NADXo_Fw&gBlL<9W;})t?8hagNGe(a${_rP>zGJgC-7Q{KfEG4m4^z;CxOU2X!4`
zmg_la;NX?GQeWOy8Y~hU%9MzNjU;R=A+tptJaQY)b<qAojESs8o`a^2=oNFhmi;KM
zDJyH^aR<#EbaC(u2{jTe96ajaF-NpVEJ;g82pB8%xC2h?bM^cQ2V<|tS~+O#ppC?N
z`xFZ%@piXU+B@iQ8}I0dsr4rv99j_JNpt4!Bp-E_@M#Iz6?|6G|In4JuCkDQe-tig
z*d{6tUU0zOEQ1}q=%AZ}p7OT4gO^xM2d~P~zDyR6$>#(JMUKYm+y_xgIHy~CkQ)1A
zuaWY<N6(*(z3!lwgWeAMICz`Hq1!hH{T!g9h*(#pd3bZDNad#^{Yj0+;Ws24AmN)5
z4wP_^gl|dMxn?&1NCUzWZY^8r9S6f4{NUh62g4nVaNs%cSv87{g9#2MIvC|(w3LLg
z629k%fEOe(rEZKP4%*XDZ;gb;$*1F4{*EE;mYn2ZvV->>Om{HF!Bhv+$h)o~GKf6o
z>>tnWQLh;xafXAL4pI(m`33gg6AqFNR0o=a{qIKT(@b|@P^}!$#o5)%A=5#X9ZJ(3
z%Ca4?N%A7XFFTGH)QC}lgNy?@PU*TsaV64chcbGH5;!Pu@UeqW9DLwlmV<>37ExLp
zeCXhC<IsEub7V1SHff6II+#Zy$mk^GFZs?|f5fuwP!{kPJA^+#ZeV-pjzWaoCcT)Z
zz`-{TRyz31!4d~w^BP{{bNS8th6s&2|4ir$2PgiFeMw0!9$qTpG6%~Yd_}V`P+{T<
z@&a)pIW5B42T>jjS>-UyJyx@V)Z(Jyr>~2Jvqd|i-%}pW<*<DrLz%L4hqA`OT3Sd4
zryQ(vu-?HQDzAeL4mLX2;$SOfFB;lJOEngo9pSTrq+<ib&ME_kZF8{Q!49cP+&Q+>
z!7kdCBROnt*bT@YjduqY*-Z)@if-GX>?4C59CPr8BNh>Ua`2lY)=j972ORv&#BL!j
z-5#Vi@jK!8)3xJ=9sDBkUnLyfIL>r_{|LW%B<FVrM<qghSNrgB63T)3T<Cu+((keI
z#lrLzaNq?oC_X7m#lvo=9h_lZ(kPL}SqJB6t7&N+{3SEoU`2`xCrIZVTySvF!QcGF
z4&@SULT;SMKe_SC4z5tDcPLjKTyt<;;`i)Sm{O@>oUk@=Nf3(PgsdXB9280;JB?y#
zthgD=N~3UEkcd(9_@g3egm@hntLHr~g^H$8qfMC8eePR=`_taarD)xeM#(fvr%@&i
zN=~UX?o8vZwAfL<?B5u#yVIcCTQLt%U#LvkG|Ht>Aq}L(K2PfYJ!#RYD9@B9!wV<o
z6Y`cm&}i!KO`~EO_oY!Ojr-H6nHKXx4@gL)Y8nqpyt0H<B+RZaT<KQ3ou_&l4@ta+
zgx?k`!l$*;`1c*Lt-9=Rgwv><#y$`GJ=95~ZW@1Pa4Lg(Y1AiKGAN!wgEShZ@kJV6
zrV&Y_Q5s4bFQm~pjc6K=rO`5tN7BemBR`F1X<@pXq|ub5>y20%kM30Hb2Tq5JU(&C
zl%(spQ;Db1JdGB7n#RR9BOJn0(k{F&LTvnAHqI{;{w?S6G@eMKLmC~^V#cyn8prE|
z+DW>#PNPj4ZPR%DQcg=X!UKIj(lt<8h%4z#4nCP?G+vD8jjm~QN~5!6D}!HfNcgnG
zpG~7nT8t1Ey_WY(8a$3coG)^!s@cD>=hAqdWvdh7VhUIGUreK08t<nuJ&o>Zyp+ap
zemsqr(>PHt#A|3;*#B43!YkveY4k`V_$u;R8a-LUw2-BKY4lH{m&AKZ$izNr^p$u{
z@uIxt^@hBCOTq!9<n5dTB{GOy7%PU}Z_C@k5)QeYho^DhAyX=bhp}Kgl`kvAk5-7k
zo5sjA#-%YnjZw1Vqtjx=_T7<@hSzf5OJfXc^uO5HG=9IDMTAWNA!U!0oWSjr2jUac
zn3TrkG=}a}zPK1$uv3{L@u?CraatP5oeGf|Y0ON+V|mg@Fj4+4orang!)JcbPD4vW
zPlH<xjWjHYm=ZFD8~g}U@|ONCoV4)y_We%fo~2?Okx9dqHRbdOdl3Oy#)_n|L?)J8
zng2l=vsmCXJ|tVyn4boBqs>WUE;H<o&AK<Aw}fnYKT2Z(b?Q=<eLS`>Eqn#@TAaqB
zG(MKMEXF6d(>c5H>23Vj^vLH_?O((hF7_C?c=u`J(9$%PrExTkV`(f;<0~o}g@N`Y
zjjz-AF^x58e8Y-22z{Hz>a^JQu#yCMJ9ibCQaYRpA|%dtX?&kX*DiTK$^9f;%lJXo
z>(q(Z+BDWt0UL$3q*3isj2461u|ACrX>3g6$^P+8X&l(8{IESnd~;fiwumqrZO-;I
zcBHYF3ZBN!G<K0DX+|>_bGd8<j-84<+9iB(r^1HgvBn`TJ?y6jQOnL`{VuC{H5EA^
zb?Rp+-hAtzL=L5KSR%hj_^X7!Nq9s;>O!9i*(?Ja+&}n1>UbJ|Q(5>~+V(WgrEyY<
z$De7ON{e=xOJHw4lXqI;98j?JKf^rjBc})BFY0o=&;^>5XsG<0_<5Sj?qW#GVIT$L
z5=olIKWW@#QTyOZ8duY}CaE`dd@kM2Uza#Xg;bmy5-*rt|KBuj(LiNTG=oAJVK<IS
z%4cOzI3qq=B!jt*!q6MDp2_A?a<)ulYxQucIQQByLx~LT$RNm|AcK+_l**t>2G3-0
zX9jm=@Ms2)WpH-}r8CIMAe=#&49aFuE`xhAVjB{PNj@?LI_p?IgUT7v`d7$^gWlkG
zWUSA7B~nqs`!c8`k^65yeLx})N?2l-QY9n$=T#-FCSi36ACi!dYGhDT;<aw4JS>s>
zn=7?5sFOjn4B{CadN03jM)V3A$*1))sLv)KgDSg}M|LR<Gw8TWiDb}smolkm-nQmS
z<BV_=$t#+{BNETOozf(O*lj#7gQmCf{0zqIQus>qj2IViO9mCNMMlg!@tb5*%M6`X
zp?wA&GI$~*0+qJTpiM@oUMpEDN-VRrB_%m+o)MFBJZQtMQ`|Y$F@q;F=#)X{44%pe
z%d^A~qiN1Tao&mhe8{^W*!{?Wy|^mX@}AA0YX)y-FffDXGI&0N*E8sqfs(<C3@ApJ
z5e9SF=~!}?a_mf2w+y<oY+LhR%AhB+CGv^CoWUzH@l^?#(nBJzNqEP+=(RG1*o)|$
z0ehHzNIh8>I%H!XpkGED#O^O^QMg3Wk9H|<kp9<l24q0I{wsNdD0>-<%V2y4Z)e0V
zf?*j9mjXFBgCQ9V&EWf83Qz95lfi;l@_4Z=<E}`amK`Ar|852&Gr|q#C<#Zi7#%~r
zeNW!9OE5+vV>8(Cu6Q&dgNYgV8C11Ju-8c$Ovzws29x>yBhiDqgvFSa!TT9Z&tQfu
z$y-Ckh_%YX=*)~5DO(x*wM$9JN68HS3mU7+TP*`!BF29&9?3EJ{mz0fEmucV84%hM
zIufQO%t+`;=&{O|MP|wamx({fU=~FygN+%?&fvogmS(UlgE>^;3_i}_lMLo%FrS6b
z;6Ni`I@$~nv$Y>FPnXc47Fd|U<*TvP#fvVY5SA2*S>{I8;tZB#@VPAHrz9g4d~dAi
zZe`$}SjUsGFJ$`nSF$)2{H4Tq48rmZzRKX+3|6xTRbK=%U6H}pq%GBFx3W^&8LIa2
zV!|ihD&EGGJ4%GVBm3kR=v?;)nTJZTM#}k*v@p%Z?nF*Xtj%DZ%*Nxf>ocgaI)6ka
zvMGbj862eAX0RoLt>j<^JE<2LY^Q{G3pJ051$z3DBCW{iT^a1oU|$CNGuV?6VH{am
zwiJ6az)$(S9@(w@B+GC>D%Y4d5$+{?0RAk0P2_L}zhrPMgFiC(HG|(W_&tN8q|dFK
zKf6VaWW)mK;XjJ7Bgcr7G;SObQ%PySk7sZ)!*gvyqE5)K{g3vrsMwB3V@P9uI)gL(
zpo=3e&Sr3qrpBe4FZ`9kc^X?6C0$&|;36%yi!2v^XK*QlYZ+Y6i1zVv23N`J!NMk7
z;g4j1Bpyg%1#e{VPX;$L_*edyiqGP)1-~Wj180Cq9F~wlMu-%4QN%^al?{EDP*E4z
zE{eG*?us+ToNHxi`8uV@I2tSAipGK$n~zd1?sO4zk>}zr7k9g8;G&_6(k{xlfQx%w
zly$}W4*5$lDCdIQzsH4BT0{>l@1lZ>$*q+$ZG~siimqst_~rU8?sJ80tmNW;7Y|50
zN5ThPRF+5;7Y|8<*{Zszb{ntmf({v&SmSm|O&7H!{_yRT77Ob$L)b-anNsI=dR-Uw
zZsW|%`fd&tinwUx;t?0QE*iUHu9XplStH74)D_JZsm&=h$^eC}i7UnebU5GCMZSyH
zF50+g<|6Lm2^Xzg*z@yQ@#g%|klYp|(c;LX5<Vs&Z(EXF5~q;xmXzn03CFj~YwHS!
z{Ow${mwzeod$iZSSO?bPpb&NXJrh#rq7%vMBJHBHi>F=mbn&{2E-b2xS6sa6;#n76
zUA*ApMVH56#3UOJjXv*UgLHhPuxvN8Ub$45YR)=#bMdm|OLrG9xmY|}9F*Y2fnK}a
zN|%3fdboJa#jN2)IEdysLC*MbYV_Xu(OxckyO{1`hKoKf`nsr;${y&VpNsx32Dq5{
zcCJ{Dj)dNj62<sv{48C$zR3^nR+JATgD8ab^vhbi7|dFq%$Xn|ks%Tp>VkV9-*GX_
z#c&rRT)gYzJr`r-(~&MlyNp5=e@2gwk}2=)R_xu%fHLvb$8)H>V_l4MG5+>9=gy4N
z|M2g2oZp`)6DLVHS;8qUrb=X*gzroE`EG@oXSztZn9?7%l!v5?ExUy$Ox1-(VxEoZ
zRFI1~DHnzdQ>L)uOt)BIiEtM&k)plCF|mvb*To7KU%T*J_%0T>Sm=tFBY}$o7qr+s
z<4<AxfP|_Tp5<b;i}kye4~cvx1`cyv%q4k06uS!Nv4W+;^Id$zlm#M%a>c!ui(Gu{
z;tLmF@?SS&pGb-NloEa{wpc<gX3=xtXD*gdZZAZu=Hhb~$N!EJU+Rj*2>xifi)Hdf
z3LaCwl5&#0Av)+x>>C#=dF$eUi&ZYZb+OUKCKuF{)so$GAM~Az@A-wb(H~slN$E!k
z=}&Bpi?w7NE9GKqPi){9zWD!WGTFQGkM33&T!ve7*&W(UQZtW>Z7z1Z*hBLY3IFkN
zq}=%Y?Jjn>AhJ_JBD*BAc(FJ|vX_KCkW=zj?R}Cy`z2)hzq^&6T^w}rtBVrF3mtOB
zz@h2Wc|0C+*u^iD-g7x(4uqblXGcoS5oYao7e}c_9-jAb%*7wH8y+6?aNNZS7ll0(
z@$f$vCtX~m0eA5yDbJZ77iV1I#Oaia=NlB}MS`<w;OgO77w1@pPa?ejlE`_s0=HAT
zEQwrlaoNR9wiNY3S6p1BncX9_5{n|&T+zPQKUakKbr&~iNft%^k+4rBPW)dNw<P@w
zd7|0M^2DkocWn{pVdRj9q8>_mDCHsBqxPYM2aZQ*(^?!7vy{a>tQrW06=U3%J3O(V
z!2jOq;VusqJ>2KvZV#nBRPg9jBvQr$d#7bRl=FlT5*P7*`SB$Y&Ja=#%X?zm09VT3
z;a*RitK~1ai<<{1DtV%d%Wa2j&e$m2@1bu`(K=N2P{l(-4-pSlJyhdc9&$WX_wbO1
zS{|Ibp&Fi8!XtlcvPgxCaQG>r<S?ioHyfPE3VW#Sp{|E|9`?PQP5##L#C#Oneb%ME
zhqsQ!8c4G6cl4OYVz6V=$U|cftv$5y5cTkghetg;#>_nY<q5+}*Lh7m#5~azWDpH5
zcI0_z>WP3F`4TphFfL(p30p|W42`;mI5=(T;R*h?o#+-mF2BsM8m&AL+>nt3*{^8p
zp`C{=9-blPJuzT;N|v12I(Q)L=;29;5MT6Kb|+5=IY*kEJv=RO20dX4zt5G#XFVa?
zU8NZ8n%IB>pm=m3fCU~FdU(-8HxIf8!$WruFL@a0VU&lLJ-p)K9S_4iv2C8p&K|<6
z9(u4YV{>2g(9^@~9(s9r)5AcS*jvJW680e<B~oW-5x&S*`g?f8!+_g~OfNUI$RK$;
zSVHD`OCoPe$frXjGW7OSzB1ecWrikbgeOcBCllV41Y}K5cE}s;;XMyyNg4Tcj3;_E
zw9lMW*)TtUyv(Udj!*C~(ZeK<F(@O`B%CZEZ>M;edK+)FM`6nQ9;VBb84}LC{WKww
zq=YItA~SPgsQ(_t^k9(@9s)AXgYCidu&5^-4`uHUv(uZAY)X4zgl_7>gguJufsks#
zx)_y(=iai<h6*U*o>&K;<>4a_m*2%~`QnFCYiI-Kc$n)6V@TnjCz1IcI)vj)A-PDa
zMIJt;E_?Xa!zUgVdsyaSxd%pm{FM6DDD*j1*b`kKYQYjus2)QYe<4%8^stn3r=xJ>
ze3WJ8GTB#D#{U)hhS1JlK`kg6-u7JRYY!_oix`*eoU9~~`wLZC?cqDppNj9{dn(Rw
zY^3sX@`tSPu!hq3pW=_l(x3C!v0!_Y8BaxsujfyH&fh=<-=h%OM58L#aY&G@{Emn1
zEWFfr{*mg;bsQ3Kr-xlE&*FUkx_kG~ZV%_b&fnv4FN!!EwAT}-8;Jbm;edxe0s02`
z*~38(pZoa2#~}}gJ#_T(q>o=b{7U2Iql}N=JRI?G#lux{!NXAx7pbST{~rGE(64Lg
z4DG)s_TI1zr%6f1e<Yi7!vB--q=!GLGRq^U<So;=fXfDb&M2JqaL&VD(lDO)z<stg
z|BbQmoJPJt8+${9<-NqWC@}5s;p*GGae~4$1=;PCYaXuCfHR<ij~gET@o<wmPV!b1
z{^2P<<Flm{&5v>y=q(S0d}R5kbzgqx<FUd%iuj<T(RLN{LlWU=k+;Qs6!%fW#~r?q
z4fcNj8wiy2g^T-AzOb|>cE;X|;!YoT`NHKaXEyHkLC+HX+ljL+Wqp+M(Zom0$2~sE
z`)J^!p^pka82h2Nk2*f?^@R!L#0AO4d9aGUSPQ$)M<t2eFX00|9+XIBU$iDQC0@lx
zRUg%SRQK_aj~X(O-DYOs$uE9n{T^}jua<n}VIMgxp~TCF3NsHc62GnwZbanjMtxa~
zdcLqB)#gPG7B0lPu!)cO$n`}BhAYvHd^GkEWySkNo*KmC3|Wu(;!qxES-Cxlb~VpO
zQy;B-wDytjqnVFKeLN-!wZd28z8Eqz_tApVwMXnu;c5|mj<xi~DF*(R>)_2tM;`Y<
z_ynsnNA!Fs>TP_qWjTG(;?Pwl3B|It_l071@KJxDP%a+ce9A{BAJcuz@X^`F(>{jy
z80w=7|Lfx=A20iO*2jQo=tUphWMR7cc+SW3J`^99_bA**^Fk>91&MP~g((~-k_g>>
z(MmS_HhTA7<rP_s*L?K!g_gbQqlZjk*=p`pUiYPL`gq$%FCV>q^zkuzN1T`6Ug<0G
zeiHWg@dgXy3zxrxWXhWoA9y>3>3oauhhd_EgMAFY6y?SJ@bCB-=3}gnaZL0v!pD0)
z#`t*G$4E&Qo+F^48|8~e@OZVn(LOGH8d>pJm?11Vm%{dxlqVeTV}g%~J|@X3u>GaB
zQbD-OnpK<ZV~UTd<oGCYDE@sP(<IJ!|4XTBM`rp+`0)56A4wmo4~w+&q505#oTw8r
zB|!|T+fPxRWbAAzV{T?~2+8Smo4Qsx+wqYm4KInPAIy{S@xWPub3>g=$>}TPIq*^7
zV~&rxOz|<x$81VbRCvAkZ%%`i`p`%GQjCK#aWufkd>^0rSmNU&Uv#_|_#*gnzol{7
z%!O3OrBPmse0(hNPkeBX`eKQHDset#3Tw)e&=3)R>0_ynQUUG^u*}DDAIE(B;o~bG
zD}3xH*?oNN;~O6vs4qTN`dH=T2P%}0ZzWUMl_G6dQ?Mmp9^I>aFOm7h;xF!1)=-jD
zk!nko^;8F6?EG)iF|>}AeI}1_czM8|0=CJ=W*<9!?D9n@-Yq`1(=<^Gco2a4E0L;~
zLwlx0=$n+f#*bWlEt~BWHHE{;-9GmC*z02-Em&KzdVBt}$gsW2%daX2$O|8bY3h9(
zq|m;FS~s!|Nt;09{M0;!{UwUTueAR@j_^CJ#4eiO`5jYu!=RbvW|E_n!1Fn|Sw)VM
z^**loxK8f-IO*e@kH2Uue4O%emJ)J71SF-KU#{hy_Ho9CF%H}Z&Teq{d`#b~ocD3T
z$5kno7k&IKk)C7XU5v;jUu=W9LcKO3mnGzC$UQq_lu1^T>*+Uq{6mu-AQa%HkAEou
z0kQ&Nu5bBb6vO@=%RF|pIKM{0=5l%AK<F~XvS@(pKy1+|83;u#7Jy-_`C{<^Ex(DE
zkdVk7ffzv$p`#&&(z`3b-2s{ehy^GepiF?;0qO)O8=zc(djnJqu+7T8CjbIr#Q3lB
zfzZtgfl%$(myw%0#3{V{0#pi6EkN}^*xUO9JP_c)Kp48a8-+NLRaxe*BHyKtHNH|c
z5aS4LIetifxu%5uXGLoS;;0DOK{2is2=|5$69x!Ne9>NoJ3#)oJ6bnDy#SE_jRMpU
zM6b9ZD?<POtm(m=`ga%R6)G+q?lle&4e&^S+yHdr!(Y=Ra=Q-8R==d!*7%Q|n-`#I
zfF}by#XJF;1$aEb69M7@ng@7{-<0)g5x`j#6>}_ml}7_yd`Jvf=r^0+d_q?^<ZKn7
zb$|{5ItG|`K1SQ#CP3Q&?MR9~XdmF^*1{1w!|^cE9N*=P7Q3~4om2gt0(1`WDj65x
z=>S~<JQLtq$$gI9j%Z?EV%GrAkrd}+uLM}%HvD{m7XrK(pv8%p5{R9Od-f`4_A1>1
zd^<Aoa)9mu<38u}dMOZwf(YLw!a1MNQ{mSF^bF7|K<@yrQ+Upc6+^a$+yFz#q$eNx
zW#Zx{ncgoz{{S@$P^$oM1Q-xtcYr;VJ(4BB`~V*X7(@;Rm=R!RfVTq-4lpjj_y9u!
z45d8tz!$}1mGbJ9oOk&2Rl)sXQXcMK9vLCY`)+`d0Y(KF9pLNM;W3oMZ=#<qiM|(L
z$%<&veF`Dd$I7SE3m2LoWoBZ4Nfg(j!q!a=FeSkIq>`J<31o`sRGDX*gfn(VxmA+R
z<fjMtty=u4H<UzxWB{9Nr6NQ_Y5*gEDRoK<pi2Sf5k*d1P{k}(^Q7pEr6e~Q)12Q=
z2gn3)S<SbEp0ZvX{4$Rx|L6xCkJk$%EFdcb%#!%*04GWo=HQx7KMch1bB;`(D<Ko-
z1=#p{5h4o$EDZ2nfbRn=3h*&W5#aLxp9EMOV8o5A&nU4?MG48KPbrf;f<bo^`;-qR
zN4^N~Wq_3dRs~o}<If)jB1Ql=2yyGka*F7YoUf?+`;_CKDR@F0ocub#Hx$2pO4&;}
zg!`6@t#RK5SWT<)PvL(1gwwNuFJ%7^;Ku-)slox)Py+j7Ed`9_oD=QQRO~5bM|6FF
zf5z6|z={N7@p=>0@Mabfwv2>Z0}*X-TY&9UOjT^CV1u}W=I*DceKxi;z^*_HqB+U=
zUa4@E>#@B7_5~<ffb0V7C;bEb8Q@fa1MK_<I1=FZKx`pCD0%lwfI|T~9m_dPLsT?;
zTypSN$&u97*lz&{DKJL^9Amu#oRp9L_%E}>C+riEaZa$BS7K~OsI%O^&BYgP={z0a
zOn_?vt_L_9;9P*eSV0zPT|QfI8XtB-XpVMv4{^WQ1#%?ddHl%Vq;}cxr2vyh#4ppr
ztWmB6xGHad{4l~qXP<I|6bo=GK%oLW(54Y%yWb?Q_bLBM<4LxTyd`FLvkF9@r6L6=
zTp&y_eYf(b{B@`R4Dv;O6)QmT0^C=CN(CrUfIA9MwgBY{P_h8i8iYy};LZXtJQm-&
zs{nTwfKCW0-c7F+ro5FdKpE!07L9g~ce)a#kJft%IDd|N3sA8@Z0zAK*$M@sEkFU*
z>{G6W3h}T!f657M@{57J?q}f(P_+Qn3h-b7Di@$i0oo1{`re~vn5?IsvP;8?R4>3o
z1!6+12LC8M8u1bN#fyWZhYOHX0HXkA0m22ST|hS!c(DL=3Q(6HEI_*g)GI*!0{X~B
zivlz#K*ItwEkJ$&A_Zu~Zw}7oPPWDch!$W=k-{v%BL&DU0GEUF3h?VbrAYy5?pK=c
zSFY|;Vlw4UdE0fr!p<{aZzc&9FA$MW+k7nsr1Zn^XaOE8K+6I#k;@U#;{|x4084H)
z<)SS!{2x<S0VT!p^l$F4JKXMv1$UU+p4~g(fP=fkB|z{?APExOf&>!W-9iWwk{#XI
z-I+mx26uON4}Q2Oz*p1x-+SMC^XmP&y1Ki%x~fLDXSN}^==(~IXvEs?^Hsu)Ip^uS
zO3i5D{Ale*8^3#w{+#CSM@v5j#wXGn1bxoAFV@k5w(?`rxwJ3*?uF2g^U~V--N$!-
z`Z9I&qn#h^Y5BU;q_|jeF0F$fL@9gFkJM>?_ex;RxwKAxboS#XKSuiTwIAP5|9%Ye
z<6C0Bj2z&{)Xy_@@uMs0PnLOJsiz;;&!u(u<2zciY?UvK^7in9=>BtQM0@et-kg$H
z9}fC*+K<!zoOZiVn{HR>D)D<i2KzC>j~}^{4DqAG)apO@G1QM?++CZRUOMa1)aZr%
z;eOEd5BU;VgSKA3JC{b6@uU10?Wb3PFx8JSevBn+_%Yd!aej>VyBA;+c+aty6FdXl
z|4W_d2i>&Nt=ytF0_AEl0<8-@&6q~s?#Fxz3V*~GZxUztG1KqvXr=3)yWKF$4`R;d
zl)xNU%;n7EwD06J!lc;GG-CalbiJ{VfFBq9xah|sKNkCOz>kAue?OK|Ao#JzkKg=Q
zMxMVY%NoD?|H8j>Jy-kj2Q?|3==VeRL-D(hiGrM}oNAovoEoIzttb)*@S;gW#3fQO
z#ES&Nepr6ke&o6p<@m9Z^OtkFf>W)kE59m3{!b3FpHHL9RC+IRtsm?BSntOMGVB1*
z4O*G=X@B{#!|#Html8JmL3EQJn>ir7#gDBVZ_D6p=O9bh+B-8^?V_MNpGH0GrOSh^
z*zd<e+Sn;n-bXIS|1-tCOzMI|6cm1(^y3s|C;9}0AIJSTLGkE!PZ0EJ>tnQJQ@xZN
z$ntbWP3MCD&Q_=WIOE4zN&+w4OVH#C30HorPG4I(M@v7x`gyYR<%Hvh>Rh5|_2a%D
z5B&7MSGelOO+Ri?T$4jq&2-(58-Dkeih7{`uqHsSU}taVZg;%x#~r_WKKk3w|1RW4
zrFQ4tR~_$C1kqQF{O-52NTr8<Jo4j-A5VF#rTg)i;x{f6=}Dc?LBF&<^W(W6Z~b`Z
z#|u9mK1zH|Y0!$JpSEB6@rv@{vr0P)yZgJ|_|fNl+R)wZ_u>wXtxn<do-!x@iRApk
zEFb*%=!R;cX`dJRL~6^J@d-0OL68wCWBXm~xQi$mnPgO7gBoj)Sw<Eai&kOrDrA+B
zO-8!_+6NFVBSv<^q+S5oW#o|2P(vdPIc4OM@uz~-3UbTHBjd45+rp7oMm`x6WlWNh
zUq%6vm(fT@K^d_!;$<YrfQ&*is>rA+qp*x3GAhcbB%`Q|Vl+g1se+8pWJ*EO<9nXs
zGVax7Jvt^3E+L~N4Rp^#M=1_U%P5n<Da%1QPRnyT`Fz^E>g;%aVZvy!vW&Icq&3yO
zTfE**w*^r~9G{m@hKB=5hF1pTnC5$?cWRBd>|I?U_O<8hio%uQQiJuZ8ktK*U75b!
zjT$l%Wz>>UTSiS8gQ~<wr?GZ_3&Xl(-*!kylJTR&>d1Jt#nW+k%G8~abxugRmI=uX
zS&EEQ8GbeUzQ0pSZDsXj)F*3?V?FMB8p!k+BG3JD?1yozv5Y1%zLD{*jHWW0$><=X
zqm1S<K9|u-#uo&>jcXASTgYh1)h-_qeZI9o%D0x$hWeDzUWO5n*d)PQ($|(ISkgze
z=}GL%Rl-HD_wSJrX)?Z)(MhI%ddl2&igdRh+x#ZtD;Y;Wc%B>=I?MQ4M)zXA!fM>v
zQqnKeBx>G8#&8)U_=sI)bRz*7-^o~(l-Nhc%MG3$GW4lZPnzTTG&*{5(3^}lN~B_6
z8U46ef11=U;!utUa5|9FK{CGQU@)gcI9;(@q@IUy`~#;{R1b<jlAp*JEn|#~kupZf
zcz>OxZD+@?vKK{t>t-etGdyF-@pgE|xpNfXy%kfZM2wd)K}J?j(&OAdI^K?8lgaWj
zHp$p5W2%g4q_YfJ#&ilC8NX6!$e1Z(mW-ceERZo<#vB>*WXzW_mz&~TOX2LAYz3c-
zGp@7G{$lEb_!bi+^Rnj`^85lmXF6LbBR$2tKD&3#Q8v0(ro}Rr$oO5xA9N(Lr80ga
z8_H;~()0d(#LHK#P<3IeUmRCTNP909eC+X!7teVmMTRP4rHoa4P)$ZahDipeRd^de
z>yFnTCGWUDa|C6CWY|B6yM{6<hPk{&0cf!iA3VgdWjLI<oKxbg;9%&5s6S<_Cd`X#
z$nh4lwd8Vs)^9euy*+vzC6M!JxKQuH`Lqo(hA84+GB#2iHDl^YX3UnB6=hpwY?X0J
z#%USbNM6QX8T(|ED3EQ3jGZ!ekryptpX&H_Q=;fC%{$HZP&#@YOUH*TA}O<9#sL{e
z$Q5NAlyOMLVHqdClHTrRU*z|tO=s#}b~-)Q`wu%N<2Y538E=U*#!In-gcCA-dn)F3
zZmDxw`o&hfP(U~%<E)J9GH%E?C*!<~3o<Uss5V^6cUjC^({=kxGA_%wBI7D0sFtqL
zj+b>U+3}9pp<3kVbt%`#)7GUB=cbHXGVW4pl5tzc-{fFz*d1z{4HX7wmtrOBzF6}Y
zHxlp5cp&4Uj7KuIeC2XBPhmx4T`+x!kS-%-Oa$S~HhU`LnT)my+9`N0;{|0l1!Wby
zq#QyCRzY3`uVuWEAt;Dc@K(k<86RbQ;>+}2#y>LtC4VUHcHV|1eURxhdQ#^i-X;yb
zL?aX=-tzb}vDZ_W_S_vbN<k(CF$#Ti3|%&QGAqcY&}X%zEDEwJXpqf&r<`=)F)Ou!
zMP6ai3fg97RSWs*&JbU(5OXNVsi4|uUoOi33g(=Qe;VuN7T;V}x--kCAisj53W_Nx
zprD`vC@7>LR&h@yKM#}qS>5f;h4y4EO#M`3MHIB(DV_+5zn{&PBcC*^p75E1;tEPA
zD5+psVYcDCI9qV%RZ2mV!K`r!UugwnMvAxh3T?JU6Th5-@(OAzNK#NiK}7{#1wI9p
z6jWAFRe`9uYxKF5ql$vrow5h>_<o<u;uLrkFa?r=@9w!ap<}?qh)T1?dxeDYW!(|u
z6(lIALDr-BDj2d%s;=OM>A7FcJK#ZV^b61I{lbB3o|+0?WM{RgpF*x3N^kd4Dz2lT
zu7aitnkh(DkU~~f&`?1tw?jPz3w*+-ICqr3Kd|~_pZqmTw_|(0llHEPZ=|5H0y{DC
z%POo1nQ^1oZCjF=nKf7Nxq>egv{vwUXVyYNO9lP*vzQ%Osh{$beXSI9eJFhz&(`b|
zv*%)M6lDJBsa093?h)E6=%CPxsF<Ljqk=SQsGz@sFBN=6trT=q(1~pLDz>wNuN8dX
zi4{1-zESWkt>8i7&1BZ;4_8|{y3o|#v3o70?lffuy%qFP(1VnzCiPPAs+ZI`lhl)J
zo|Z(yS=Nbt^5*DEUa?qOo#O3pu_qIA5PyJzfeL<7FjB!F8cxAb1;Z4aoX!T5scELg
zz4>=|`a9A8i@pY_KPVWX;70}dda~hU^Ydx{=~J?utJwVu!YBo!$u|^?C3=7@uo<22
zJlCXgq*YN?`H|Q^tCSMOzPlhyR4_@wuL>3^n5<xmf_Vz&E10Tanu3`MW+|wdTQY0A
z|Mxvz!I5zE3<cANF=;8AO+K$+F8NOd_P!;%A1fTmU2|iNOzZQqD}!T5{%2ZT1;5Z5
z{l<<q72?i{9V)YGnb<-Ffn@eW31P8<B?^KHLJF2D_)USVKp}5e@VkOP6!=M#83|R7
zcpl}cDV>!{X)OLXR=X2x^m~G;KvS^%Eej~n6&N&7BX(?3wvnq@&I@Tow>wF%HcKW=
zd9!=U4lCGD+Urmg1(t$Q5wH~;+bwoIEEO)pR*+8?6;>)(rJ&3@@yV@-wmgSWx|pm9
zYZUstA*QI9s$w1aEd{cQ!YVc>_={$z;EsZg3O12_6dYBsS-}<s`?!a1Rj`eN-3qo-
z%Id-9O=LS2>>zI`;`5efr!#r?osxFZl<#}?jbnQh>?LQ2#N#8b&09@~*stJ#f`bYQ
zKaM}7;4qC<&9x`h4!P~p^yJLP6dYG@Nx@}4)(Hit6`Ub2Qm|%#aEdcYvW_jCRd9|M
zFDN*l!5>n~?dQWNH*7C*X6LNlD+;bExT)Zlf@=z{lj(A^!6kkBdU=|~XT3r5D&Z@%
zU-FHK@3)BERxtRv)Tg+&<qN6UXTn_t_h_;T-YK}R-~r`uS_lOX6+BY#RKYU^=?Wf`
z=T~OAv$D@yvZzlHJ<Fs%Q9zW`c&=c;c=rVKg5s{0ciUKZ5d-6Lyyoh?;q*me-#>fA
zLfbv}KX~3N_=l3Vifk(WRq#Q9pdwPmM+KiK-Q7!$P%*QzPu`Wa@Ots1U+8$1W#(xo
zN_7)*W)+!KtRC&!flhf@IP=Ce_aY%$MU09(D)Oqxt|EtuoGNnB@ywHcH)3u{-=1d?
zxm8ef-(D=fDKAi@$6ZLvM`8t~0xAls=vG|HucB+iR02I-vA5NPSQSw5*=}jpoz%W}
zQ*&jPil`{6qOFQ{DvD8+iX;_vR1{ZHLPdEM6;yo68dp+985Lz!lu}Vz#n3HDf9#ZE
zqueQ!Q_+38G;s~9*W2^*y7Z*7R8d7G6>%y&Dk`g}LQ1ZZs;byHPJC8M(Eb(Yr3!OI
zNmN0Uk~UMZd7DsEMJ*MQigDjEI=meCIF08tfzxW7R##DjgG5fRUUHl4T#zk)obY%h
ztF2<}77v{i>Z(Xq(NIMr6`NwD6cwo|>Zv#(c=Mk1)K@WVhS-1tYB{?e13HY+;+wY-
zja4*J(LzN_(%g`ms@O7DY_6i2iqq928(&B(yi}@EQ2Lx~dm-&Y;hL>f{9V|)dYsfo
z#TP1CtGE<QIk1x*e49-6SvG)`3C6cq(LqH&75!CoRFS6QI~6@te5v9q6<@3PhQ^AQ
zZf0YhRCHF6&?<g;fYDW}d`|jSMHgC4QmIx-SMDLy?RhaL(M^S=?ke&Z_mwNp>b#eF
zs^~@isOYPrw~7Z_<JnrN_9Ai78#a8kF#bYX2bCS479VGd15^xD@so;?Dh8?eUd3<~
zBUB6~4;h?1lq{pVS7Jjry^_=SL&msM6J1|@TPyKL&Uw04+Bn~hk)z|IN2wUCVuFf^
zv?w|oL#sf5`Yh>N<;&S2zp(CSmMzsgo`NOSy}G;e#w(5%2bGZ~shF%n9m4u=uD9$$
z+B6l@RXkFWu3`p-53L<}h>BS%W~-1@DC9XR=BikvVzG*OD(0*77fx89BJsNC=n%n>
za;{k5>iLU`Usc3T6BlxApBG6aX7kz1h!d8mSjw5dtB6h$ep9i(v3D6Q%2ILi;|R5)
zn+=}TXMd<T(1-a|+L10%QB|R-SfOI23SEVv!cy@x$y<45d_YA=MVNeeHZxTON#SYY
zlk;p=X0~dZ=Tlyx<P~=Deypv+QL$WguPf-p^v$b?F;k@Lx1?1n{#3D+QavS*o6>5U
z_&hdyd(s-}KY^_fB#(#fbj0;4a>ud1XmKB~4b&vox9c<4%{KD6j9SaKsMt!5s^W}_
zZ7Q~_IHcmRiXAF;s@Sb!5BbJuahHnrH$*zcZyY6#9G!WuihUFp>Ffack5_urQW$vI
zv!9&gvM0PtoYKI1P^CvA9cx@kJ)+{MisK}#(obyCG4c?PcT_u8VXk{|a#E$&;;^SS
zYq;9=in{rP#zolGTEbZs=TzKOaZAN{6&F-oQE`>Bjm@UN6K^aKFH+RFPAk%#>17qu
zDzGc7J=auRr+|$VZcvzPWX7h*p@mq5OhTPF??3Y+Z&Tc<_%=nl&*y%Ja>8`+9wopp
zgu9$myH>)*XYRFSqs!t06?DpYsN%6tDu2-PSj7_+MKl!E@KnV!6(1;Rt9Y*Bg^G77
z-m7>?Znj%|t>O*u?UjnVWw`T`4}kqJhHcs|1%FJYd-H!NhnLCzp<Lv@Tyn;N_~y~x
zOLLMxsff^!gC5#w5Hv(;$f6;uhA0i=+Dn-<WY%yzp4oKcKSs>eOsJ)?Z-)rkG(>BN
z(LmQr8!n5T%S5hv<<25cl$2e=$ct|5<kFB^LqQF(8diqIJR0(8pi_Ka4Ru5>9hYNk
z=GRa_L;Z>MPEKT<H%Q|rG17Zl%^U@ru|gUO=l88oh@5(f71ltMZdi(G_)LSO!K=B6
zy|{+58p>%Xp`oOPQW{EAho{)I=d27DDA|}j|2Kkepw6VS@){~=sH~w1uR3!tdqoW^
z#;{5nnjI8ch1t<)Rz;4fszKBcr{P2b8-2{Z((rJ3#_9SC?j>chNs>=PyoMy2i-rUZ
z)il)9P)kE~4U1Q^L=BDiu^Jlo#7Fj?%<AOv-DEjOmlUj55ud8E+8X`Oh$QduuH6$=
zS3@#cKtlr!|K#+2v(}TMAyq>?K3uy5cQxBKW&RxTy;BmuDkpt4O-lP!YOJA&hNC);
z>1ay&(^}}ruA{kz&oyk+ut`G;4J|eNsNp9Ktu%b0p__*88d_^;qv0zJoiwy1Yrl+b
zr=h)u3-iQxQ^gJ%?$?t#YDgoKPK%|{@BZXojen`(-m7>zhi<;XI&1h^!?91StA=kh
zd`tR2^%UAF7V0Q;;c74V6fvc_du?Cmo;WXoeW#&^hJhLeY3Qk;mxkUN`e^v@KE8KI
zY&D1FY9aL{O_;YId6b4(_t=DlNV=>oI5%N{21<$98YX5wA$8o6`FjmRH4M`*n9QEv
zH-yt}$Jxaai9cv~|06s6$umO3aMH@ly5D6)+uTVZO-5=MrD2(d-!+WZFh;{d4Zms_
zOMb3lE_tSg@fs#*v`-#$G)&a+XJa;t{JecUfk_%BbIue_i8GZH=6HGrX9g`R$0rK<
zNWjxuI=O|N%M#ZttI+O%=W%agzJ{MQTze_~qJbU)M3nI@AWhPxCS}s7C=VC6<rNl@
z|7ciB@wh&I<>QDY8v5?=sEV7Z-d+>3z4H8~;YePoZH>r3H2BGZDY!Jq8We8%fQB>a
zQaE2tRfDGC%i&C?HM-0Uj;WJQqf)47Y6xlw{pZp{#Z!+WnywJTv?z63SsH8(2s;{<
zb6ozINJVPCO2ZlrYk9*zHLT{~G!Ke(9B&|hOJnOf9#_T919Y$Vmxh!`Z`lsgW(`}&
zk;un1Y}K$$!zm4?HEh?gL&E_L2Q_qD6S-5vE)Bai%>TeBpYPGISHnIH`za@sVUKOk
zrZqVZ74}|$ds%)dd)%hh?2v}Te9#kQ9|{ffPfA>*|05<{^G%z<2$1lf$1<(s8S+@Q
z$dk0V`#sk?XFH?etcDvJZfZEE;k<^+8m`d9uSpj)T-0!hypFHnPYtB}JB6LYr9zjY
zuWBe`3lz@RX-z2rKgAyURT`Dbp4_kfpsH|7!)>n5-!%6qrp8Fa`?JxBtlbyvj)vm7
z*<EtTPp(Q2G(6;znRPtUkWP6(!@n9HYj~pJg@%`u|GB_3%5U*GD=ihXHxWh_^gSn;
z1#S<o$TDMmZ#BHr@LIzgF1%%}ly!|;JKQ6w%`<1YBfh6pnaB5ayVMUFmK+g2X^7Bq
zVx;(ylDy5nsU`?I4qeU`rPJg0m`EK}M~E>w+0<z%UvHH%>Dacd9`!~?79Cl2WYZC?
z<6|D*>r!l5Dc|iL*{CXqj+{Ea)zL*qE*-gb)X<TrBae=}I{gy|D(J|kBfpNKI*REi
zprfGfX7VDO#_A}fBk7z7UL^jKvGoe;c(_cMx?VbvRmwAhk*c5RD6XTdj&eFm=qO38
z_OdcMO6e%A<BJJ7{(Tbh{IC>NGM;Gr3G9*MIe9gL?n-*SXO+J44cj1A)KN)?q{FMD
zGR;?qM+eif^lfZa9c8v=kJIr-Yf0pk)W}^Te*C{;wpDD|5^?1OcCJuOpN{%Rq-r{<
z>lo!_@j50(Bqnf5@=xw~M$Qo%?-$y}2sL%o(($>D7CLIv>~y5+s7IqDd3)^@>*%Pf
zBU#693j}&_ltNn7W^`q^<(xEn3#+fAfsRHx8tZ7NV{sbG@{Yaf$$G^|Q745aI)3=%
zX{w_c+2MrfJdB{E(QIOlGaXZ!>mW*+wA9f`$5%Q!k!5tW){&;;OC4==wAC@~L3{^N
zAch_NN@%B}y^gqsN%l?YEsyBG9>#a1Y0i<}JxM;8)B7wfX-Hf4O(E}zr?H*+0)3<7
zYaOd4*0U$u{v_hp#_YZ+cGc01RMoLWM|U0H=@_kJjE){Udg>UWW2lZ^I(q9Epkttp
znEI@bjt!}-AGyRC)|a%Zz(y8h{rM2#+-~X{q+|FlfiAxX(?lAx@2SIVZf^PKqkGjc
zjO?IeBrODq=@_BoN8Wb(Mfd5S+q{3~pE5kEz{RxMci8@{0$l^&-7SvQ=|%w4bWGPV
zUdIF-lXXm?b<{CQ$DZi8>+ijlC%eyW&TjEExZw^rmDcgDIJ&gd`J#Jvo}pu=j`=!%
z)-g-RY#sCn^vB}t;qTHM9rJV?46v_ru(>+ko~%beF6N6l;0ERb9lz*U$Q7FvC;X~o
z5gBs@tDYY5xH2nx)<*}4EhXO|`{?*f$1)wi>o9Z#$TM~LbtpPi9kPz#UGL;;l9p52
zx<`DFN1#Wh-x~Ea9l8$uB3`)^v!O;L^=6W!4oiovBlMqzDU?bJTO!=KTp!3@?-wF}
zW{!^K6tjKf+r5w7IiF4F!B*&4N%rZ%R&h$;PtrC6uhFrV<8>LF_2jgl>XFz+9h-FQ
zCS&T@tYeFg9XfXE*s7z*Vb3-l;im30=NadshK})VC-)fR&idL$aRi+OXk{nmSR@PW
z{t))+*hj{s9HnDF>6Rmoo+=#B(eHJQ-Fu_{9?8yU7Y>tqTjJr)><Afck+il?wqce#
zuj7>HXk`sdF>q4HDM}Ou${09JVWQ(-9UpX@)p1V8T^;vyoY!$d$8{YybX?SNi5u!N
zC8EvZzQyA0Ts0}}Um*{<&93UWrh}e@?}&?^ypQF2kbG0eEz<Cf_iyqm4|}qX-PS>O
zk&UXd)oH>V9p67-;}<Y`x_e*810Ao(VaR*`^gPt@SjQ7O3+TvHp7k2a(sj^P@v2Rt
zHdcJ9<C%`<lwg;L_gZFi#<3SVUXu47@!VO(==s>ux{R)$-;kT>c&Fn%g<(!9zt>CY
zwA%_d3jQIpuaMGW*xZ_~O+NBT#TdwL;FFFB1A>7_16d6>A>S_QjWUqQKxP94#*1%v
z#;{eM+Akx<9%5OzKx{~QvYKTx5Y3Cd|B0toISk}900V^#<T8-kKt2Qc4dmf6^xT7<
zc#v3L1MH%EAzi>gK?65lM4TVNV!6zgqpog^d2L|>ML4sRfuaVA87NM|`FzEeWhR*q
zvC?M-h!QSgpriq_wC}I-sdNx$MQ1knzF5{kIRhOHq!}o0pn`#911Sb78mMF--k|@A
zLS;ULXduo&)LpTP0VkhSl~Z?=H?bbl)_`Py9vnS2+3K8Z^SD^A0iS{H7t;y^rE)nL
z(P{>&8>nfZmVp`u${uhPOEhq^zIW);*vD<$Vr>IS2I?B1%Yb{uY7!@Sgw-){^rlF~
zWAoj)ry8hdpqYW@2I?DVV4$&qCI%WB*nh#ZFxJ<|!02i0;8pQ>aaX=6>9$v_zDXj_
z-!sbPd~VRcU!k>uHU>Hu^tCk5%D@)}PL*(LDXXU~5|_@18I`AITUzk~@&7Ck+mlM%
z4qXbk>)3%7@fWe(z!;)b{L(--nyi7Z40NJC4UF<+|JuMeq+2oex(I81%=4{*E(W?9
zZuYx9NT}3=HTn=S_Gk7yKJq&QJq!#o@V$Ya26`Fv%nE%Cti2!G+i*`GzQz*$AS;ZQ
z=pLk>fdS-%t3|ql=uZLLJn8CC7I&Quq_r;P`pjShLkvtX=pXSg)W9(6dABs)z#ES{
zyG~D{f8Y}t&glpPKXULBrz1&ovK|?BoJhww17kQIo53lQ?((U)B*Hy+Od@ZIVrxG}
zTzD0+ePoV?&uUCHFwMX@1LqA)H!#D%W&>Lc%rr2|fMP&3Fx$W!>cPNL19J_`GqBLW
zuLkBD_}Rb$1Jw?A`rdPYk)fmJ!`Rrm-d_w5rDEaU!Xg8U$v>BhTT8O*Erb)5+<E<G
zVDE?6KMeQ{`X(@bH}L1j+Hdl){tJ^eQ<`~3#91a&tCLcv1a@n(s2R`=tRgW3hJk<q
z%Ybd5^km7TDEOI$NUP0akgUDReU=;M_IX#_)uH#1td4=@238oj_&%O4x#_7+;zglr
zKJQ9e;(XrqZ^hLH))?4mU=yvQfpyf}zy_k3Tx~TT#Y-!*UFC$o$cE1%&gSr{XMIm1
z89n55T1w5&d$$_c#s@uWV7q}G26h?PP0l=<H9scpG>~3QpbO@zD?NK??gkDRIA~xW
zd8X#N=zhvqEu}_j?r>>OV$~-RhYTFyF;Y=shbizcxp$y1b4uglBaaz4Zr}tZfAZm3
z;#rCXO8&H7+dXH<*%pbthYHh2uqi`@u2I6c8*JxTv3?hJfu>KnD}cNKTrzN(e9XXG
z16K@OHSo~DBLmkATsQEyfjg9%4A2gen+9$f$eY<aC%4qJMyA^a-p@&xJ}~>-0=`}|
z6Yf%qD9i2}ctF09kKHq{mH!Gh?Qi$eB6l?A4UWmXQcS08W8kTQ#|F;kXT?Ub-*O4h
z3_LgR(!eXy`GPdN1glyn(+gr2NgQ`E?f1b_t~EkR8|gKf@n>nt#k6-cw1F%EWDVdS
z1OFO`2tWw9_Z=S$Ozt9lbThwa|HFvY7t=l&_#=PK359*_KC;LFB0ffB3b<hs6~G_G
z-P~1W8p|BOQJ$Hz(dM53as-ewfS3UO%<Z1Cvj@=dS?tuWSq+b{_f<r$0D62U(cYEZ
z0nnxz5}03((GNQL0>~dg)d0i*3ItFvfHDD;4InlE1W-JH5&_V&kwO6!37}{Ig{j+8
z0-ZQkOcIMxtE}v^0O%+=Q|g|T&GWe@6go-<F!F}CbO5CS?)i&;WF*=++8vjUasgBf
zpi%(k14t>yDg-d>3F~o#5v}#NhaSmR4nTUr8Xl`xC4i23lW*pd;sWplkPtw%09XLO
zRFCuq;3KgBCcG6-t&}!T6LQvLapi@1OQrY#P8VaFdI;46s1ZO?0CfUL44`HJwF0P3
zc6;lt@58*VJ~1s^8o}w<{*iS9NTsoUV!l{!GFLt&fEKq|)n`)C$>OaPp+09)lLj0#
z<g`%$jWhU70%)3nn+4FE<Ig#5!D-8k+ExL4!EtL&+i=>J)9?{DBXywZ2k@1JP8QMv
z_>$}&Mv*YSqD2f~h>4*lItTD|05<}-8NfFId>g=$0G0;OC4jC0j0oUIa*0=-a({~5
z0_YyVcL5wcFAWS}Lq0Eo9s%?WpciNM4xk?g#P7pFUry;#mN@+b7{H5k)j`EU0el~z
zZ~L>soDL;@IG}EcIV^x5GC0FIpEg+$|0i;c0Hy`#AF)BZWk%8R1rQnGB|MsQ#sn~y
zgK?Y^e>?~M&WIDa<Rnh1$>ad0a6FaM6LE}~Gx)sL9hDXYFf)Kz0nFx{d7P4Nb2ykw
z{va|c&gaFSIVJVH|A@bkwoBMTPJiW;ii<c{%qeyLTL8-fSVe{n;P-&L&mj~*m|`;k
zf55$qm#P1?q7i_?i^Nd_&^XpPrCMSJxEKMGgCMV>bB7fG{a!yaN;*@+{o&pYz~LOi
z%L7=Efmf1u<#z>E2e2l9Gx>d|16Uitj(6f;0c;Fl9mng*J+65+aH^KgNwu2-*c`wC
zTFn5q1h6%L-2v<gU|Rs&1GwB&+CiD5tyHmbWc~__XoD-6b_TGEGl@f0djr@<siOkh
z&*cgHCz&~WG}Rso;BWxP0yxfVj|4!s$ww*b8%I*-)b>AmB7l<toC@IWoE&<iNNP(0
zBuOB6Lp&3}*#OQ3a6W(w)Fgl_0kmB!UL@x)o6~scxfB4=%;ngu8zLQ71GpBz^#J-e
z%tT^Dsg@2Bz7@c2N@ykunfN<^I{~~5;1zY-lidv<oswsWMMtoE0o<ot8o?fLO5kAt
zk2s#6KaPrzdHQ|ADdpj(96Sr)IR`H|C4H#sHJQti-q6$n$Wz5#$9Dm|58%TZF^7qN
z0{Az8EG9}-VYD~nL%`jkA($@x$nhsmBTO{@$w$mcUPU0vL?(`-T1lBXaE3GLB&&&R
zytimhi4(&?cGLAnD$=+)P2@6>+e9AIRigl>c{!zGJ`?#faLnhfd_fbj8Jw${r?814
zCYqXPW}>KxVkT;sNHp=8iQ*=znh;HtFj3OP+jn9W8r{UykVr>)4oY)c#za{T%9$9l
z)~%(RDWVljROI|hoL0`LZ4}44#Id)xSe%I^=S4cInedokCM3@Baq8tX>+2{Ii03$g
zQ|kP`R@HfN!0xD;CdhPjEY8bnnW$|d$wVC!^-VM&dzwf#k!qrzi4@cI(nnV_U1$_p
zbCsArD%s?KnB<=gO*Asy7->RwtH2tYAQ=i1qG#gj6Ch6}PiSu9LJe<66Q7%Sc!jkv
z(ULl^<7>rf8&1FAv^5#CY)-18qb=vOGtr&{;&kAE@=ThEFHL+!YTK-viS8ykaZJU|
zCce(V-<bH83{`;<zl({!U$L$k#qYRGZxeku=wYH~Myp;N(2rt$IT*-kzl_@cCI)ab
zQlJ0zJjlfNyml}jg7`GhFcUwRs1-u(5Qdu=K`R?Xr67JZ@e_HYiIXNqniyqbqlrx>
zMw=L8Vy%gFCdQf=XJW32c_zl2*gTcx|4W={VuFc@CWhY>Cy{$_FqzXSoD#pt1aVph
zp3cDx8ajuUs%Dw6lM_-7duN-NL(6*D+vA{@Xztol-v-I^P5exDz9B9!A)8Q4`u8Z$
zFD4e6_|>HELAk}>IbF;t6_;?Z)WmNYoMk4ueb1=s56<y(N}J_~qnfyXRt%f4OlTbI
zoKls+L4Z@!M34g#4v~_lJp}Z3qRqQnZsPfM(J@i!dp50NO=`Qs#LA4(S8?#CiPagL
zH74?XE0NgUZ(`P)SpI;$JkAyuNZDZGFB1tNY3xvO^p~-lO>8l-%fxOIZwmRglATp?
zn~5p`vC}zLwpRRh6FW?t>Xk&tP7d^3(jF6gO&q5tslvxDzI`T+QBtkV_M13h;vgjf
zF^P^N930~GFsENc#~;n8eRMIcRJOR<+ua+S+9y1xOq@3H*u)bPXH1+mamU166X#5v
zH)#tWZc-eXxJY=TbUAnGC5lZGPX6TUCa##c%JDT5NAoA=IpaBf+C!9Ti4v#u=!75Q
zyw?TaEz`XgrR($Cq%gJ0<s(eA#Jh<6s_!1z-^2qGdp3B^9A^(H$_gbG7%hhTutz3{
zrkf~t*F)f`iDxGA29Ym_=O$j5hzuesh?nGPKZ&nR%!*4T@QMuU_YinPDbd6`6ZFFq
z{c`c%#K0mo|HJ>7_?L1lUC15qeB?ADh)-OyadzoH86k-IZBs}fQxM*KaXEv?6-1HL
zgv>!?;UFug**J~nlxkx*$R0!v4yI1e<{a?k4x&&=sbeE=o*>c>uq7iB=stpq`GY7B
zM5!Q32T?Ex`j!YtGU%EsHi$)Er_7rn7N&lJC>}(KAc_W2EQkw5Ykw9*vr@I6SFGv1
zmNFw}!h-{ui0;47N|I$N)~vWbnQHSM_mv5vY!KgvJl|(#<$~z6S}Y$#g&-P!?@Q_L
zJKQO<bAMmdrL@<-Csz)lN)Qu*m>5LWAjBX#1ko{wxF9@1Gzy||5R4Q%;;R!x-5?~g
zNf5pu;)B?fH%megf7x-(^TuVDU0N;ZeweX(5MO?*LPw1t5;?A!!KoEQ?F^j6L77YL
zV~yk>>Icyvi0+BCQ-Vk(Yb4gL$0>oDm(m*2ir@5B+9whnyxgVLCWuXfXc0uqAez#W
z?PASHrFyJ6rvyF^;_$2(0@Q!2Ale3TWv};(AX*2}CWt1dr9qdI<7M`Fxulp<N$rAY
zAH?ZRDfHh`M0c(Bq>*|-^a-MG5MPlENjGX$Fs5@5Uk5?%-Ie%C+&4jd8$_+_NgYl{
z&H35ag<~ofDd66KcjIfit*!JO2R(x58APujj#o|SO?F=Bi>{iG?DKVB<ohw3uU`=T
zgBTOUubJZp1Tip(5tPP*7(`1M#89#=(fiWiAcl}(V{4izNv{vGWk@FcLlDC`^ZoLa
zZZB%Iyx(zE-qf9+Nk0W~?wt6pwlF$~kz5DTY7_^LzjSYTW|*F_yqN2eZ(I=LNw;Vp
z9aNkY#N;5HAeIL)C5Wk{7%AT^>$D)I2k~<d3xb%z+s-2|ZI(PUh*?3*4kB}0_Blb!
zCC@qQp{)f6PKX4$eh>-UIaB5b@lXAFcKv$KUwBWIssBq53xl{_KDpJUv?7P1NTo$V
zEDmBx5KDvfFMf!yJii68EC?lt)hDIjgZLu|KSfOt^l*O5RNsJ0X+&poN&@<&G@@z{
z#B__ahzmRhrvXk)PJ^6=I1O`3VipHBoj~`AR9q3nN^-&w3Wt!;B4Je!>&W3tNq+`W
z=9F)B5NpULdSp?rZ!H=Bx5z;!e99@`dTx^qBpJlUAYy8!o+8&Gw+v!4X~k=4n)`#;
z8pJkU+#ba44E_$9R|eiivsPV4+QT_}Gx+<0xN*`=<_Cf}7{npYKgQ`{PLE_r9;E<(
z;!4tSJctt+{F6as-R(ZOI1|L#Af5*Cj9ev%^FiDR;x1*IAT9=RGeiCo2iJnQ%)yl)
zu2Kfh7fC(jdHBCyny!;p8S>}m2)8)Cox%B=gL4Bj-^<`U;^2M|4>)+3!9O(6eZ-y4
zi;shN!a>2(?pV)*ctNQkgiIm44B{1KZ(jR4qwTvO-f;XjgL8XJruXD>y!bDtA2>aJ
zF!RR@nWD#BBS(bX3@n5Y$pPW=bu(uUAxj9kL&y_CR?d&%G#jVU8IqYdWy&6+`x@lT
z;N;?9SH4I(s4F`1a!!E|@^O$qL$b~ycaup$UX0}wL_c>|r$`7zLr4r^d8@3&cvZO&
z%7^e-2*pDv5kkojN{8^~QrfkK^(eSXg|PKf+MI^<E?r8i_Rv!%1fpd_coCCAph5^0
zNnT=%(@LCH;j}WRjh2d4IS@IG<J80H)uIwLlsNWs>f<z?(}a+_X|Ni{)j6%fDK#m0
zIgRpU&5-*}R<G3Pq!8+auqTAQA=C{aIfOMKOnU7}2_ZFvQ6Y>Dp<W2}Lr4qZ%Mcob
z(2&}O&?1CJAv6x58JDLfO+qNRR%%MKOGu_79o@Z2M4N};d+!!ohR`a6HX*bP;foMj
zhtPeU_@88-_w|~rcV*~k7sBO>o(>_zo%FU3;l{h{1c=iygqbf=2z(Vnrx5yt&^Lt6
zA$-jh=pMp1A$%J`*ATjKPL~iqRdW@XsQThBrxA$0O?%{giAAOFLg*1f&k%Z5mx$l?
zavFhNA@t7RP_bVK{X_I0XBZa3fDi_TFgS!Eyyrn=%;TxlkdE&;XW8|nak@KJyQLCo
z_yb-1hwxJfBSRPw!m2~@RP`g5Jn&Ln;7MA5MB@0iieDUbTa5`}YzV)Fu#C%$3t?Ia
z(?b{^!h{eeawdsQCP11yNn|c65}m@UriL&%Zya%EkcmS0HH1YW%nH#*HL;Kj%n4!M
zXVNbm&m|nfe9j@}&zwnMK?Y~mS$9$TbBk>#9lw|hEa7ziM=w>;vM%Mt+Xs_=58;mx
z^bm{?{2|DkuZ5s+K*DMW7o*))bkLXHiMHO66bQkjAPQkc2*D6SAy^^Uyvb*$Qo<ZK
z3fsXa<?!Nz2fk<N|LbRE2!DpKnhcvU%73dcaKA_%NJFd*VIAd%2jcn={t96u7u&!&
zfA*9%g|M09o!ry5gs?4y?VPhUge#kT@ynBT@G9ydGEFMrXSAlY#JfV+&G}TMQTBzf
zKZML-WC`Oy2nR!W5W>R{4ux=-`U&A`2uDIV8p62{&WCU;gySKc4B=D=O{=*pNXH3U
zvdd|UdP=8hWiKb43E?b-Mzy5-e@Rqaxt0<Au~a=8@j?if_~;iY&-{@zr57XhE>kjG
zmQ*5~L;}}%?Trv_a&SF_yl0b)ciC@+a65#%A=Jne_ctkgOT0si(jdNdg%tC0+WFdv
z)b?Ho_qml`Cnml8Er}!_g^(V?+YsJ`@Hm7gyw5iwJPqL)#W*E=&RMoadY-WgyDz7a
zO0RhF-ZY8uYi`x)FS5Nq=AlvEhwx7bLKu-@{2RiD5F)~Ew)x1LeB$)@DcAkF-4c5j
zPi%9-`}a)`&F(*2MTL<m>?Q{~-06prEsQ*2<mJrhFtUe{gLfDc#>%Z?t}Cuta)w<`
zn89;Mt}t?QVQNlQ#LpK-{xAxJ@$i$IWN4s*VIYh`VZ`#TNDX3=WaqufFKv-P(J+dI
z5f_FhjL*U-9!B|OPv1uZ(Gp>V??;JYlnlG~5p<N|pfsmtI4v7SIS$HmN-`BVs2D~i
z4k~k6h105>K4y_5HY{DBKYC_iNHk>&`7C(D@P(1nLM{vOVI+jnYn`+<jA~(2X(DwA
zqiYz|Ij#{#A_q0YNadgwrzBQ8jHC=)CycrrCx?;3K_Fe2$|6auUKsVmXb?ujFk14e
zMj5S|anP94CY&}UnRJ0#(a}7N&od-ja6lcl3ge3~T8GgljLw|dHjH**bPOXcjP{(<
zfz#D|bn1sR`H~*~^PW3#vvf-rYBclyrykL-x%@X_d`s)n%sc$i|1_tz-NIND#^Nx#
zhw)t)J;LZ2#=tNJk;Qnc{$#x;QN1}P`95Lv<+xu4htwFr@$htEVY={r7=yzY7smK7
zhJ-ORj32}JDU4xZ{1C?QFh<Z2>B6`7qAIXR`sQu^+>xX2MGcc8M`X=1GK^7Sj0t0G
z7^B1PC+>GWj+z{kZAZQ;?#Dy^U#kgWOblas7&FKfNivKnVN4BU!%Q^1A2sTcFywyJ
z@Asod-;Yus3DdYu=tBfE!<ZGu{4jnFV|EyG!k8PzJaUHr*E97%u0lNoYFAzm#xK0~
z*Dw~6O827@pF~k_WQSX)#j$szG#0rejHO}xNujhX?zb?Og`tL_h4Fiaeds$>fACuB
z)=!#ntnh{S)YMDXi_0CUhq0V5pAkkN3^R;i7#8m#6h`s~;Rh))Osn6_OZTnh@Jd1=
z^JTKhT#p2Y%=@eoE%yp8zl%k#41>a9RT$lh#gVG3!&pO>PZze{kNTQL4ow%<g|VJ&
z6~<p-JP+eV7#qXb6vl}#PKL3W_p_VREn#fss%{HoC+BPrV@DWexbM-7en=PSFOPTe
zs$P#=$KDgh-Z1usL9^Q*#^Er%c83FD91P<SSBwlr)}tsO&zzh!3pF`PVVmqZ#+w``
zpGg;JrZk09yxZGh{2j*WFwTT=HjHzWrnn?EJWrvKE?f-b0=Fu;J@rE-x)etIlPEIO
zl`yVS6Bc<bjGMIX52CJzaf7Qt9z|bNBOkj(k@X;oKEFUVyc5RVFz$!(fDip&jNjvy
zCnIOi9r-Yf$6-7P<53vtB%D36(32>-8K=h!Pbo-Q<TKtd$2Kt@Rm<d#q;Px5IW*r-
zVZ7q_HK%VlrCGcU<6Ri<dGQ}kKXCdl8I7BiWIl3En{*+<f?y%iLX_pka<qj^mg~R+
z9|=?>n`gF=#X?pKPSz}yb4O;g+<Z$0CmLfRyM-K_Lq&=~niMSu;oKHz`gtr+KV<n$
zJZa~*P{2Yl8puLH3nVY*jx1s!miN#lT>uA#EO+?|TkiD9o<%L!!lVqDw77*5T&9_Y
zk`_u?NVHJXLTL+SEL621S}1FwoQ2Ak8&>5lRIpIdLM01HQsm-vq0ghJ?^tB_M^S{k
zvq-`uR>eYZ4&p3$D8pOyQaqRii88+hA2A<Bk?AP0kdKk&3HPChP8X_KsLltfVYzvj
z_={O2S#{}u-8PYGS*T;7E|;mzX_5tsP#QGZLW+g@78-DVDyQ`<O#I-w{jiK48d_*%
zp|OQIJkM8UkxeWtXOT@U_rE7dk`fEi<`zD;(1O&k+_>&Yqg0p3Xss-KVWG8!V04x?
z7JljNp(vxzIkvUjpl)ZO@OF{1WqS)9xB_Gr>Mf1)zvP^SG1-XI*}~Tr^yM&?;~QE#
z3$JawvC)OR#X@--6>M~~(A~l=3%f0RXQ79MDHf($?%ici3qM#GZlM>M+Cm=-eJy-%
zVX%dM7W$K)SQuns2jAM!_E&L$h4*pp{rkO~-o5*TSf4j?dGrtqF%x}5Eex}8@uj=>
zxa=#>k#AVO58@Mnjj-?|S<k{G3qM&HX<>|ou@*+rKux`)E%@6>T?$FrJUJt$h_O)^
zXQA^4&v*+9_eHN<C3b!u`$enx3FM;vlIfca)Oo^&?320jgdc1Yr&*Y8K_eqrm|<b2
zg+&&9z7Ml3%(gJs!aVZocj6oiwf9Q5Cb_!>)O!(h|419~=4bTtGY1Pe{e{zo7JkjB
zePsztEG#7tx1d<~&B8JZM<1|1$lwipPs_!;8W;b&1)`)9y^rrF=gH<Rbx)*?k%g5c
zdc{m7-5Ptl%8`bJfQ3ITthQj%>RYfWge`<Dge_P#QY{Ll+|uwI0=<J!tXAd*Z&*+j
zmRndsi(WU0cHn%RDbTUf!YT{t9oaYK+5NI!0&6U+wXoU37OwU>q82ug@$b3!`+r&3
zXkintiasd~PLT5Ejw@bGx_&v0_9<<(u#HxkgrBlIHrq~GMM>>z3um$<&=$v?yw$e{
z*y&AdkA=M!K3RycvCpFaTEgEJ?pQcr;h=>J<Ny{9SvYLrn1$oyczF{JjEy{Efp$M0
z<^7N{+vbTUES#kH?JS(PaEkMNA>lL`gzq>#LylU*-86F6!Z}`>>9V^|WAVS9y$>QT
zS-4Eehx4ykm|Wa@jaFm;qepXBNioZFja~$xFsz=b&`4?VbI(l+x47`2j}f;y2u=|<
z{3YJCaF61}!W#?sEj+OB#KKc9@Q`dv7B<<W8p0#XeNUwSd{#Hs_t-*a{{4h!7M@#p
zVc{kDz&Ljo->-9|PP#a{u5W+7ny)N8IxjY<E&Vn){;h>~7XGpDuZ3z&y*Wz??<uwJ
z75{z1Dn<xbmojw?`(WXtg#k6(IWBr5UVP_nP!Vk8vXR?Hq>U&WnQYp2<%zZtW79hV
z$YLWa=WHl1WwTNKh}3RVDq)fta!1T=Bc}~|+hY3}F^7#)ZCw7&tG;H}e0gl-wNb=I
zQ5*SeB!3lMz(zqEt1Ef)+h|=z@-z`*ZR9vE6|xa`S)@%wu%Y|KHuv0@rwZGMF2Isg
zyv1xcft0rC%?o^HqqvO{HcHwk#re6LxR0>t$n-;Ma@S-6Wo>tlZj)xhcl$i$Xlf6V
zU!Sh`{&HGH8<lJ<weg#c$~LOl_{v5n8&z$HHtN}^Piolk*r;x!h7CsZvJr11frfq~
zd2J;6n9qj&#PjRDi2vRcpttF7E)uKRcrrZYyN_;0O0-eaMjab<ZPc<+o2Gn5O0x0s
zsAqEn_l>jSuVd+*ePSlt`0zYF#YU=)VtrWdEJC9+Nj~i!<<q1FHX7P!W23E&Mm8GT
zXl3II8`r0ZO>8vfb9c70={4P;YsQPsIsKf|7M!-UQPJzJHNCmt+Qzs+tXjYLrRAku
z-Gp{F+S6KZWMA6oU;|guI@(CH@%KV${rKpLE8VAX=>=VyJ5s2dS?FxzYa1hNjI!~K
zjc;uXv@wYCKe<G;oc;N5U2XSOoo+VD7GT|Nd}rfXe%6ClA3g%w1F5HtUN#8O(VK%l
zHu`38`f+)xYQ2>Wuu*Q1v?H_dy^X;(ey}mz#t<7rZ49$P8*ArZbm#T9M&z4dY>qEo
z9~eRI_tHb(^!U-ndrSBul09!8{}cJ=RX1CXwlT)W92;|Oj3rapm}O(;U14IY?DO-*
zj<+$v#za1gNj8it5%hX2z1J|AOmxEat|>OA^4e*f5@))N863~#bo@3~9}2qJHcn5-
zLAxL4*_dx*p^aZj?d{%DDePw(3vB#Cj?s@LUP+@D`FGw)b^5XyBc(+&&A-@U8z-}R
zDIe0dv?X*teNlt@TxR2U3P2kNZTw-wZ)1Z^KR-dXq1dp<A#JE+LmQ@zAVm;4?J&u(
z5uk|9>P@*4(LEqu+9nt;#D)Jv44*E9$WTcvOw&B<{zyby(<%8lHkR91V`Ht26?{f3
zZLA{P#hurm6t*_bZ)Hyl3vWtGW4BAWbGd1A9YuFx?|LqOI~QAAP56`^U#L{JjW#yf
z*kNO*jm<W;*w|)cyN#`6{2bDe=N{UCTKtszS&R~=S$bG17%TK0!FJi$ZDWs(z2y8a
zypz0M+Tuc+EB4v+?MHXG{WQ&IQpF*{ig;J6LpBcExMAa_jUzUW+PG-rl8s|Fj+3@r
zs}p2WS`iy(Y;=C~zx}tTc-7?Xo}SO#1bEiQIr6<v^%i-g{xJ#F3$Y6}o`28w#YYay
z<GXC*ij8X&dc4(D8~tC11KYT!YurPi9JruhP5R_frgZ6+joUUJ+IU29#D(wKxNqZ*
zjk~l)^TdmTW7-Un*0sygVmy6SBc3)TJ|HK26H9N7q?1?Mpm&{KP%^Qx<TLh+bg=Q1
zCKZnEd?oEdV*H-b(wz86I(42soav>FSG0nEFxt-A?V?B@-g#@|osC-#Zaa8y;~&z~
z!2k#UQl6o-=72f)XyX%Q8wZ~`h;Se{$n7AHgGdKaj+<t)JILf9vxBS-vN_1YnZx7R
zwJXA}vF?;76m~5i?I6Z+zaF+{ND3VUayZE8AeV#JFI|)FTH%Tfzmk^MK|Tku4&Wfa
zgGH@{0uBl~_+z-c79X>*n@xlrPuwPj9DFOdt6aoEVF%5RNv&F>uKMIDN)6)#+8W)a
znN-|C2?ymJRB%wzK`93XB%!o}nqRZ8dI|Fvv!sDS83$z@1P8jm&Qv=TU(SJ@l1jLu
zgGvsnIH>BN@rVRkFZxteWe1PiOH=m<^c@e;K^&j&qFLg)8xbw8xmrmyO$Tiqv~%Ed
z5bvN7HFuEUpc;+qpq7K`4r(}{uLLAIXz)mko*to3cYXW7ZSih`P}@P0gKL$f`n>Zx
z4*Y$Ew5Jhuc`=z&5>DYD)j_=s&ZkaN0|yNqMCWloO7>+`y@!7!HF40?K}!d%9QR8I
z&By}Ngys%T40jFwxq}v@aA`JdA-g+SBJf2<Z*4ee&FPVfQokWWM1;`ZK?et29CUTi
z(LtJnZ)g=9eCgmT2b~>!?SMW#M{k<Yp59Iz|8gbGEK)Pqt*nu!nO4+Sf3En#leI@-
ziC!q{=AgTSUJiOY_>RmT<*sHA$KC(dF0;_;1?x$(JLqn>jeQf*$3Z^_&)>%PbwFRG
z`0v9MMV7==oEtsR!5{~JI#})Cdk2FZ{7RnVV2FdE4kkF5=wKKr<6yLdF%E`17~x=~
zgHg1C(cT{&oYdG)4*CvsGe2RX+gFJH<Pw(O79UE&SO?=A>?q+K@8EGf+w~@b_I|IL
zAQZPfZQeysaxmG!bO$pWOmQ%kWP;)}vPOL=-*_RVkhK0x*8f_~bTG@oY;MwWqukR(
zkJju;d0~!&ay8go&Y#EWd`^Gnl*ATr@QZ_m8Jt%?W?t-IiGzRx)4@^)zd4W{C=Ql6
z?#pq02U{u%zf<5iSbimqZZSHQ^p?66PnRFQLs6;&%|Y!uQj63?>R)$Y@ScCqlR!l}
zdLEO44nhtbYVN?AC(&mB^$Ss9!n9HjZuwY~ACnHgW%Sbh`R~~Z2df-(%9*&5T<fDJ
zFimW+m%U2NwEcO+8V74>$s8PXu#QG?u+71C2OAvx<zO@E$%o!ZYm`5ZKBKaU7q@kA
z*J7)KhwW0+I<Z47m|n}h$=cyyr-R)N_R#dRNV{lRtI#$)v2PpKpU;uC^LqC>*yo`B
za?h))5&L;>bY7!#+#v^t9h`P>#=#K>M@dy$dI!hInLowmUMC$Vm!8gQt(3a1VYhx2
zPC2O9NupOv=xxx3Q{4zX%X_=z;Ie~r4$f0o<HWez5f>a>qz(&6S-)d+5V+#tszZB*
z#TyjM4z4?R@iR;KDy7qMslj1s(_sni6S@ZekFEEBlA>zfhj)fWaz-AK1ObsSyFEKg
z4zeICNE8)VP%t10hy=-!K@^Z63J3_25tQzpJkw#w0wMwuR3xK-1W6(w>3h1?`JMNF
z&Ua3qI?t_Jw{G3Kb*sB)x^F9ISS$N|{jm|}m~vHkRh-|53ru<{%Bc8rBQ9>lBc@*!
zmzaFG1gL5wt}x6t;+oi#Rl<9fksM9`S8v7#v^p+vb*!meXRzH!8TwJm-y3mjBknTE
zGudu*p1Hlf5qCJVw>-z*$iF;q#;aRg-`{nzE8j%8w-FCGx)q*F`@Q#>6?-bL6>I#E
zCjvIv=X(iWmkPIv0xAls$fF`v#bYY+skp1A-+0NDSLNka`rTp~^Xs|3ZL8={EB4z;
ze${!jd&nvmZ-ok}D5|2Eioz<2sOVEyIejaoRMU*@4cx_5lu%JhMQM)O<t?e=*A~u<
z6O(37%-k})Aa}sn8+0z4p`wP0r&N?xQBFm96%|xeR#8PoMb&xv-KglTq~Zw`r*5RA
zR#tA7Q9e1~`RHa!RTWRFsHV!v>xPrDOT6K_n^vT{a7Lskb5oR>DuP#2pH@*z#kU`N
zrYDrzD(VzgJSx&uv~8!<QBhZQwreAkG+o-Bo#DA!)YY+obAg?q!l&Y06$4dds;H;p
z1r=RX)K}3!MJtuTiH0h_F@&ZnnyGlS(%V=?PRTM&=-vt$M-IB`@+x#g;pP;sp7D%|
z7Aj^|b-a;9olTt`by}*}a<v6Hw>oETKJ9I-B3nf}7420#r=tHxZyTDbg4d<@FQ=$y
z)1N9?=6SL6$~b3@cc8b6rFB%%Nd>oGxO+S0es5Q25pd6RLY;4mzo_CR6|bmxRmICH
zx~k|Q0&C7F?Fx9ispzg^#x!T$<)|1x!R30|JFuG4Q^lrtl*A6_jiFxr@khm5D*CE;
zO@(zl{S6gws(4-W)c(nNTl|6M=EgOBgu^0F+;6LRheM!YgS`J9@%CeYd5e6W<NdN)
z25H53<^axe+{q8`sTic<V-?d?3|28j#aI>NR18(|zKT&QMynX}i)WaM3GTGvs`Cyz
zcPbm9VkF)EpdlX<dRV2!%jGi0sCedrSA9kKK;=HP3U8Uy{&AkM8PA3)CaajDVxo%h
zi{4;Y?<AF**n8_;D${z0r`SiXsf@jc%7-eZsTi@(GvrpvN1W(!KJH}5Ee+Ro_x3B8
zF@w{m;tLgvI3p@%shFqYGZnK{%wh9AnRDr-hTea=xcCA~--zo|@kU0rb3gUDiiN8@
z^HnTR@vx-xKH!*1u7#?zI|N@0Y?9{O04`RsM8$FyD^z?*e5~Ly#`$#RLT_cM3evU_
zZ&$<nm5N=*od?NQs^CuztE882vXw(KoF_>-+)7!iVx5YrI-b<=wTksB-q7%-h7IhF
zv!EfrhHq7DRB=YdSrw`ZO~r05a22`=zlsEBUqyf`NQJ37uiJ#^H<g=Hq30uSgbSfj
zYE*Teay(TvhkMfz46UrhRTx~Y6TRb~Ql9+BnORGPt)lw8dLKo+d?AQ?!fa;1tJtn$
zhl;J7=r&5?-3C{0r)=X`iuy`6@REL~VkgbJs<;*@e2?snUtQcvbQgV6!P!}KkBT2S
zcPf5iics;Ril0;*RIyJ*%l6&_;*I@6+g$i>AA{d7r5sXmSj7>#qD146yk|%Adbf9R
z(wnz;{i@<9hoj=8ir?tEElN55qsj;@<E)G0qHS6QXVy-sI8DFhS4PxRN*;1*xtHeH
z#_r!${GsBuiaRRKG5M>wrs6thjcJfMU&Un=y>2VpuV;Qy+IvyO=kh{ak7b@KDsG)r
z{!*Q--njF?*1O)T%*k>OeuLRb#Xl-)?pFTh@HcyIahcRqx<8}T|2KtKvs;!H<U5!L
z4|wm2g((_b8va#rPsM#k=?mTm3^pdfq6+T^A8{Uo3g6x>z*lic`-t5d@@UAb;W5p*
z^Wts*sT%JGmH9s^^BSj~+p7FlKVJ>M6TJmA6x7f_LqiRPG!)kGq=sr5ifAaRp^OG-
zI55>)Oha)EB{b(3(HB!)+?2SahEf_zYj|ssr*>`E<C>GP%k}c^e$DmlY9~T?l+{pP
zLj?`xq*f{IoEj=>ctVPmHB=JNZ;X=XbJwbL=en+n#(#pmRfQ6iDwSDXLk$gS8qzg9
zrJ<&V+8XL;7-K0<Yy9OivzCUBqn^EGT^q)Fw=HyWJD?AXXVlf;(J(9Q%;V_7%KoDT
z6b)VtJ`I@~GNfN_P8)bmIV&rUV)Zl(@ww`2a9{O4Jf2hbQ*Z2bS0fFLHFVO@Swj;I
zO*OQpOEomp&|E{7hL#$h(a=J3t`nvgNGr6s9<Qz&wNUu>cPkCEcPK4uWNdrV_s<IN
zvl?E%?6~DQ4Q(`Z(9lssTd|~_hV~ksm!tk@AGaIg)70xy3!a>sd3tX_Zdk#r%k74^
z>F5g@x@hRGAxFcD(v}Ke*6<Ri`<!xKamL#-Tj{D{%>q|94XMvLv)n^NPYt~^^p+-v
zuco}B;Z+XJ<;>bU6_hnMQeM+=Jk`Zl%U|cXeoVh|)b(Jn_fSb!A5O8xx6ZLmLthPV
zYgnS;OAYU6=%-<VhKU;bYZ#zmxP}oL-qkRWp42c@!+RWK!HhwiwK>l3fxo?9aIhG_
zjWyUWpO=20!)c%lV~~vX-WcebRMX1~#gQ6DY4||HSbF<M@9jGUMsvCu2Ax|zyqQwa
zt!$T@qj4I>Yq)*iQ=y3K^ZKrmg}utylt~&UYnZ3uGYwNTOw}+`!zUU()G$rMbm^V(
z%>8~pV%Tt8RUQBQQqG|>q}Ef|*}8TX=T5_14WDYbpV#r~91V5fb@FhNao(K^JtMB9
zSigEtZFPOFVZMgNTqdo(3+SI^1s7`gf&n~Mp$|uUltqlXG8sHYmXlX3yYF!JnOv%2
z8JDC6O~Y3jmTOq6VV#B*8dfrg-z>9A!=IPE-BP@Kt-i=?&uUJnn76Qgy{4s=dwX18
zYgkW74I4FZtJ@9i@uBjKh6Q;P{#NF1<|}ixK<7ycv(V7R-pV_?x(2_7xCTQ*K;tGA
zh>AjPuN2Y{(ZGF!83|#|Yz1c}j;`u0v&Yr`GbN@$U*H*&$636lhJ=Pq8Y~Sqm;W@^
z%K5I`y&`LmE;w2#vYBysCw&WZ$n})<Gd<BOp6wcTP&sEx!*?2Xa;0cErD2zb-5P$<
zaFCX3*rVY`u_w~B1z%hELBn1t&S;kR#}m$V;64re>7|{{mGA+n%Gu%No$nzHhc*17
z;a6cEVfbzH{LB^F#dSKL>%8tu>~tN~&}Y4Jj1kTZHmBZi8oISmF81{vDwM%}heljX
zKcV67VK28KI<4W1hKm|5X*eqi|Ilzw!|xnIRb|Io=U0gH)Rx!#C!>8|>IKcY1^&Ke
zGu{rL9p{;RC*`t+D;lnAxWVWhqWq=dDhK;xI^XQ*^1SPs=Im5fvZ7C~q+EYXxvAlA
zjo+}tu8mHNeg4RKla~+w=bTHqBfYzI<k4}L$zQ`ghN6aJ6Fe>*tt06VG(6IfqT``R
zKHtx|4!_g1*^PmDKhwRthPz5%@|Jx*BUMLU9gpiMqvJ6h`E*>H>nf!qzwWGk?&nZ|
z+Lkw~bRwsq4i*auEi9D9A_9sEEhe<M&=NXI3ZTrGP0ponX&uYHaZP_NFWAePG8J_^
zp`)yhayrWE&Q{ew{-{*YQRu$2_PKvGx2>+Eqq2@FIwloQyHL{!u+v-Q2k;x72XDHn
z>8P&bl#bInYUp@M#{wM-b=1`Hw2odndh4jAqqdGVI@;=}qob~lraGGG@aRa>QC~*`
z9qBq09X=hII#$Vg_v*;d@xo{I7B8wt%6^Lscb0ZN@k#Gy&P{hi9gTEwkEX^te-m)#
z{qRUnYKH6fT5l5_q~tW$@r;gEI-b=reVy0yvbTkfEFCR%jQ?JlCGXLHI;T~=Pn0bm
zDy?-qM^zUU&om{QnlCsSm<{$;b3L!4osJiEyriSOjt*kR3pzULDEzt7iDPW7@alJ#
z+tpdBI`(qTuzbtA3tiFNNAq6R(N#x*lS)q=-E?%<k)xyd5f9&<I5(a@&UpVmUXU-d
z_s~K5ghzQr$E!NHRYLad6sxSS&)CAR>3ChoWF1p<yrJVw9Yb}zucMESw{-N^F@QcC
z?dq%J9Uc92TqvLMwvG`al|%P3xG~qm9SXNH;F}2V>KLeFkdDDR>`#>5C0y_6_*+%@
zD*-R__+URRAHu0Qk;5f(IMHgDj^Xr%j<M9HW2BDJI>zW2B_nNj-CMME{+x03N*B+l
zyg+%gk&7?V-aL|j96iji(a~duhwuJR(6MH*GEqkhk8{sOOxn1<n-_#rb$m#-bKp9r
z>G(*;OdUJ=xqP?Fe9ZXy!8?O<r(?0M+>pJ_9$V+k^(WFhH(km0xaR0MbTMU~j?Z+=
z)$u9k<+Rhw(fqPzxk5X8=QBzTZ=*kzcD?g;zNhdy<O>~(bZpe2imJsr)(cpo<4YY&
z1uxgJf<9mAS*Byt2Zg_4RR!hwP0C6Js*ZKM$k(x&L({QV<het;dz~`5yu{vv^m%`K
zhq@gb#@2P{1|8pUEsRpW)nQI@IQ+M|bNR-a4qe9&I`-=D>j<zf9h-Fob%b;n6lTzt
z@NQV09@Y_IM>=9U`d0MDb!fMoNUK-Mp)Zzku9MSjuf>_wk<h`v>BqX1v+tyH@owGe
z+?H<9u~o-Tu6G^VbX2V7+D>nCX20-^|J3yzIeA?LdpNcouc~}^U8!&*bGMG~nFmaz
zlx!xvM@D-33CF`f>e#2_XC1!?bH9#*oD0DRbo`|A7p<I`k1M2ybsW)gtC5>Gq=&wA
zGK{%0%^F?!R~<)n{HEg=Ys<R0-1tNE{`=|28T?DUC%Jgv%e$eUa)J^5q|$SM_ZL1c
z=y9FVah6Nlj~0IXuHz5pPe01|aZbm19glRR_;EqUpA2lO)p1eBB_|o;s*cNa?AjLo
zhTbbWaz7Gr%~G~iab44KUB^wGUusjhUt-Svlp8XTE+=xf-t_P;*d2ELqvN)Ye|6mB
z`ug2-hdJt!a{Uv}U6CAk!nrr(W_R~>+^ClEfa$TWGC4Evs<OU^3>f*H%H@aK&#$qg
zh#z_UNcAJX9|d?^_T=^BF+Wb9%F5$XLUv)_s%H88Af-+o1^p=Gcg_er%8kwc^aN*)
ziuzH^k5Yb=_M^Dp+2r%WK&7M~CH%M@@s1vt$xoR~-r-q4z{Te}I-YSh$GaFvhaY7{
zmEuP^Kg#>@lpi(ysNhFMKdSoiq#sZCajbnKenzB{AN40FHwwEd`%%S@pQd@6to3RK
zGuwCYR?AVU`BB{u-b8bMo9>%k`^vd$_%U>A=7p&DX+LWDkw&%K^40dEj^DYK^KjIU
zoT~*sq*0d~%~>f0wx=(f<x2NEFGz0w*fZ^Z8LuB19J?Qxe!hW=CVpo_l6rnL@S`E^
z5#wi`$k|@BUL(PS<+q*94V}{*kF~>;rhYV|tB))82d+25N^?I*S(W8SOIqm1`+l^d
z$NcE&$18rc_9NSm_I`Bm<2gUt_|evn=lwX<Q|SPOJ2ky9&%1V%GHaw)J>Y5Q$L2z5
zMT)sP`q9ac7yWpN6Z*LK%x0ytA20Z^q=Iv<^c?ke@neHT#mjytuDbfsjmpRPzWvs<
z_${ToA31*X@Pqp|?kSqH<3tX3?;n$+9DGZ8)sJ3&yyHhdKYIJ|njd}qc+2m6r{;A(
z-t=Qu)tomt^}jhAQgH*Tg{n7ExL{vDzW>Daw%_@a<>q>&*ORVFKP%1Wxcd7sz|UQ1
zFvt&YMK52Hde@IJTa<x*n1fy1r~3UnEe8A1Wq|TS57!Vscn!bhN=ol*%I~LL!~7WT
z$47pA?8gW{M*1<{j|qM({L7igQGSf3DnCB(<Fl}5oFCf_@8~(Mu`(~i<~Y9ta96ke
zHC+?^xMRB~`!U6jNq*dSxejjf9<J(KPE7TK`&@nK2X7PhX6K(KZM(njT=P%&V}>7d
z{Fv*<Og}#1z&S5PT>K`*kM~mAjP|VU;+ie;T#qlWaDD0r&ncf#l^^qjfBrF7wQpSW
z{aD~f<@_$*S@XR7b7R+IvPthEKNkD(Ab^JfEb-$@hDQLc0$A$DGCzLy;}<`^@?*Il
z8~srISmDP?Kh|?v{aEG4YCqQb@ng`lM(A3hKNoZFE9TCnUne<~A?F)EzWpB##mLwE
z&^Zx)SW@NpBgj#(_hRmVP|Ae;h;TT5#FEYV)L(9Mip52Y9K(-XrtL?<k6nK3_G1&n
zmGdGE|F6jwDQ*?I?SHCv2>wp!&ZM^QbIo8;_<Mx@AapOCBbMx!;vu02g#IM-pa^gX
zxm_O?RY#JVfA!-iQ&0dE0{D$N$B&18Jo4kXA1D0y+mBnK<fI?h1e_9jTId;})O=RJ
z?|%G|<ec;4yx<E-&Yyl<^y3njhH(B$@~`-v2bHOW$5mmncs*(J4YBrS(%OHRR~aoL
zc1P$vp?8H+!@mMJBgFTUt>_<eQUY)VP&9yI0k{Lm6F{MW6FI3u^9LL^vY1zjj|GrV
zK(49+Qd>}HuD1(IEpd^+e=}Y@fD!?e4WL{AB?C_IJTCI3M3S0ICl#_)nE)USiF3Qi
zrJSRR0Xz}FGa_6mfXV@61mFvxN>Wet0IDXfeKLS*Ndu^%hR8e>K+OQ24xm;5o&eH>
zSv!C_0n`;t$=p%=A59NH3Ba2)iPlnvM{dkyN~=af>jh9>Km(x-h31Mi7OR>B&@_N%
z!lwqRYW_bmEVc+BOE|=A_-p{J1K1dV8bEdc&jm0cfQbRL37~BNZwK&B0M7@|E`Xc>
zdIZoufDY39r2sk#cp>SHPEzbF&Zlx7U4-+Za5&hPMY5~VZUJ;p@^k&rGk{kDcrAd}
z#SgD0y}{aEBH261c|+84bbSJNQ!od@A|>Anps#Rpb@mIOe*nV*7%t2K0SuPj-xWGg
z=z9SS`hP89+aXdlROtIcbM=o1U`&8pDPp8BDLG2OXrVNN97>Lr?#3mV<Hd41WKsZ=
znP~&~GJq)oObuX80CNNQP~<-jV7h>5LO&8pZ8MU6eIlHhNk7bz;_RgH?EO=z`YeFY
zg*h*20K1+q!e0ciK$r`qNIvzGE|TKnq^hL>EDK;=0AGvnR{^Y&DoQR7V1+P=S4t~t
zVArb!uMxU7$zPuY-v+QjZ2RVaOv-Jj1)vA8KY#-w><?f|09ykH1P}}$6hJrtD*!uy
zNYah*0HUIY8e&N%?J-1yDU>FWlStNXO3H6ea<&DqT_k@Lx<dqZ3;r&EodR|VlX}?E
z_rlpD^oIcUCiUdj?h`(7$0f>70UQkATma_-I3)aE12`(+Z~#Z7;m@M^m!uNv|1E%H
zB6Bu?;{r|zJt6d@Q0mVe*XaPx2!{>H{9R_}kE9Hl7XtWGigyCI7{H|fZU*po0GE>^
zx+>s`(7%$Zu1WEFG7N4c&10tw>{}xCkI>sfbB(zxm}dMd;GWR?Nr6WJqy#Z1h`B+y
zf^Y|s9mI1%<Ow1*h^K?76-3@39t)yU&^aUI3nG6I6$BRuqF@juf+!h8p`erMiweJR
z&^cf5C?d>UClr&a;z1|*=hl`AqKq(03w>N@uFdQSL6j9vxgZ{#_3|h$fK?TPcp}JM
zQk^8muYZzO4x&mBRYkt0&?kjf6Iwlp8bLfIIM*09VMn<KaqS>7gQzD0b;QEDL3n~l
z6Ha;%J{b`u72$Y;$PnNj+`LKq4DzYAzHk}^(Kv_(f*U6NkUOX*L9_@WD~P7TZzi;P
zQu8y?B-c5)v}F*jk{X^3qO~|PS5=!J+6M7n5QBnvK8SWfyc|T=Ale7fA&3`6RY#$n
zg6J#_Y2*tsG-}|-7Q0AouH`TN5AGI3_aJ%)@tQDmg!T%eN7BxoL2jmjSCjLYYY+7h
zye`6hgLqrO8$#a{+DGVHoFg@z!VG|Sg6J<g`$^UR&C7rw-WC49<k+csa1cX+m=eU)
zAch9<eh{OA7%c+Bf*39uaxEDlOm;C+EF>6{<ct@w4}^{lVqDTKxm`~X{zRdZf|x8I
zcU+_&N^xco(~|s;1bi%Xy3iTP9x4Ax5VMl~&Q7}h(;(&ru|J3dL3|d(=RvFuVx6>|
zAH-4tY`Z|fLZM#>T_kjI5K9D5=1WmN;9;F*L3}05<w2}S)^bGj#>ya8B{{2uSR*)h
zuwM%f2N4NkeGnU@_>E9q=(j;^6rc)ak6O}Q#C~B0f(RySL&@4`5V0V>3u0#w@nr4h
zAPm7~5LOU&(jkdtt4&Esn!P27w+68-i0x9O**lVe2J902LsD{g5Z?>l^FJ~a+xwpY
z_6eZ7sOP634l<#IkS~NoK^zX^uOM&noaA;Sh*LqFrg=g962z~<JTBHA{ZEzWw;+xs
zac;<+km5<15psB(3F2H3=Yu#aZGRVmKLj)KDR4oAi7yNIGl+{x&L!~)tFB0^+%B#K
zaXpB8LEI1GMi4ip>UL7#ZvnLbRuKOrF&o}V>bxsm|C^M55X8eE9tDvSa<VZcN!g<-
z<TxQu$jRg^x&`D`rSdDlQcFH-^M_C%gr`HO6+*!f3Wb0W%7#!lgd!o7mWEVSRGO3&
zS}cU(0?02RfSOB%oHIpk7X*(>v5ZjmQZ9t@B3Uhj3c{=`#fpNT2%(bL&xW~Hkya6b
zszRSkno(Vf?6*b;PbG0p0qmuA2z5fJC&juUctXfb%A`q0-Vo9SC_<?x*Wip0d`Tr_
z@}Rc*!pRkA6hh+=M(xAseP|Lw(-2a&!?hjFLTDbsGX`21cqW7vAuNhwaTHl0v<x8{
zK`eq+Av_zxs}b~ypmhk@A?yj^hY+3%p-l*rLzogm+Yp`);k^(Bh0rd9_946#!lccf
z4k2_5p<9Tb(m<yWI*0IL2rq?j=0whe6FD!0Q0`<-mk{nA=>Ag87Nn<oX1*LkSI%a=
z7PVGqk@`;NbUvAr6GD#=dWY~@2t7l1h4zHdD}(_jbM|~%Z{o_dd!xN~k1GGPZZ@iH
zM#YTAuZQqP2yceaCxjU%b1q(J+NEIHp*LHsIhn(c%I&(EKBuG7H-zsxws<>)cS7hF
zLjMrn4Pjsi+fL^Ao3uQ2GG{;t_fF=NIprLbB)|LmmV-kW62iz3MqEuF8p8VoA@DEY
zVbt(hdVV#1xPa8EMfi*jIX_KRSUW0&(IJcp;e!w+gmC+qXNTK2HiXs<v&PZq7c*E~
zG%;&D@r-8M4Bu(DZz3HSg2TU<QRoBT)DS)l!5=~(glQp!5*hPDSP;TTA$%OdbPh9w
zIU&pqVP*)QgfJ_F*&*C)mvOm;FY{DRyHhz0H>ACFDregV>8b0|J`G`B2%m-UIZd+C
z*G*|WeO=nzGqomulXiAP`XzV9?Amn~hVVrQ>qFQ;t3p^D!jcfaWMDk!`!?J6=8*ie
zvVBWKSQY|{Uom)gdyfRYS6|Aaz;a=(2w`Oif0pq6k?rHLN|>udSR-JqP_|tc!q-Xs
zLbh*O(X?+k#-eF+Q`1Pl6}&M7RRB4f06hf#mjWyXx!7O#Zs8>E%m{@L4k5zO4Z#Y*
z4q@D>oLC4(2qqWTT2Gvx5pUM4Oh;vKfqDew5T^~Vm*6Dc&fFYA{f^2ep-1}H;};N`
z3@NacA;C%C?%B?O31KHEC4|0hQy(04-iO^4!tM~h=PIaJh8%wGSvllkun}<H_i_!=
zbzv+CV_yjSnI%H_MFQqP2uDJ=knR2{goDig!aN+p{CAv&)WCy)YPk>FuOS>|aE9?-
z7{7&ZEQBY*s1(NW5Ke^fM+oOa+`-IqGKAl0%*WnSLOokNr<q2!c+P~ddbaPZ;OnbA
zx0fk{8!P8UCT|#zg>iw?6vC+`KJIsMF@#GYT$Wm@x*Nik5dI3`s&H;5`PT$o7kY!i
zHs3?xzeBhc!au^ios=AKv;eE_gi!LVLhvt_l~mmqniA%QoQ};8lk$%kz>OVA9<DIl
zVdM!r0zJ+-dQ!vuHTb{Ud|`ZZK7HLrPyR3ph)lsSAfQkfg#{E5S~`rPVH69axD-nY
zEg_UT{eL*dmlACRgC=t$5vRv8LKj`lS5`ndq2+~E5K5Vf0{;C<sT@X?FkTDe^)QYd
zORpM63#ocCjK!yNs)bQKj2dA)6-IsG*A!Ye3{MzO3$7)!woq!W6ULJT8xf=>IT>N3
z3s#aGZy23wI*#%QCo{>f7sj)roIy1ZPQx&_<V9n_&5|-r!f2YrbDztgaC0d>6UM+9
zj)$|tXepdlVLTs3JL*izw-%5c#&bzd8v$*@{BT|-+qMs*gK&BX?I`p`p`F6$EZ_y9
z6z&p6xAW-)JYEXp<uJNRRX5IcQl>jwE&OlZPfyE7$(~a6N*J#uWqJwd9p;mn&e-3O
z;+tXg;nWXRKK`!RTb$zK9&@x)OVBrrw}nIej(~n)^iOgI2zWQ_tSkx)3S)2>bHbP#
z#t?Q9#>Zhy4|6M53=3mQ7%w*V4G&{P7~z90#<10i?x9mTyXR(&41;u((9vQ1Aj}WK
z7#qg8FeVRe<?fk9I$rPup%aBp63VK{VN6qe1ngpJ7#~Vs(}a@qk@Q6{gI%<2JTr_>
z!Z>*<r}Uc4Sz-KhDkpttz1hqa2V4BRFRO*(D|9;N(=g_R@kJP4y0aSg$^0yg)~9n8
zaG`mceI9mp(wiSf#%X7(s3O74g<(8unB!~La#0w6q-34{A!GQ07GH+3G>knQP8iF=
z_$rJoocb`9hp{4zHDRn3@9_+{GVCOWRbi|Sqg2$lZbdo|a`?B!x-h<`8<(eKm2sX`
zSRcj)wxWl}d(|+sFus+x8^egL^!)N5lbgfnVfe!+Q7CIu7=f_!PhW@*4<jhJVnOF$
zZypgA*-Dt*>p6cj#lx_qXb3fhl0R;2K0ApMoc&486BN|HS$bKr$8-6zXImKC!`Q(k
zY<W4N_2ct#_rle`dA<u{XBfM}xSOF&gR-0P7IvN_<hHkuulK0il)W5X4PT}5nfIce
zA9)H0V}BS2!l)cUl?Z+cqx<Qc%VAsz;~;&QsvHXA^osPuVH^?ga~LPWC=>IL`AZnT
zhH;enpXr5`>~NUQkuQz(co>hTHJ!4>doqkuY#YWIX7w=s4C5>t&h>Ef%yVJ<&KV5j
z+!m+!Xh#Mca@U&k($||K9fj=cqV#x4nB){Ik@i;@JZlt)IGcuD4dWV%TmtLU?+GQi
zA>d{he}{34A;&bE$9sov3FCHBrs7QHU&dRpjLH)gHo4x(N6O<q^M4o*8Dn9jM36TE
zt7$V=1QYft+!i1;0(S&?B2IVfeNMxF_9??2I8~1cGhYPx1&}lAB}brO1bn)_Py~eq
z6p5g81dj_Y8bQm?TNaC;cmyRPC@IWRLc94rY_;b1^hN)A-anmFCW3Mil#c)rE(E8l
zYy__iXi88)<ew1wOrf-j5ojkIfl3i)`%MChRpsPf^<+j+FM=mIsFR**!l@oX4FOL@
zP&WdP;F=LU9YL)KzU`XTV{6_julj07P)Dlzf99c{G{Ih>=|UBueFDu`n<2tJn%djP
z;_g>{^&{ZL!^=V&M9?sTMiDfQpj`xg63uutiJ(OUSyF5oK{El(>BjAzXM|FwMfG~5
zEqTo^wXKqEpA~S%_GCx!oZvPQv=zV)&9DiTJRiaM_Zkql7k-BbI!4e*a2KJh>Kwrf
zf~PD|Smg1d6kihBvx?G{kuWHe{B99+Pqxa5phvEN&{u>mujusKo3|?c($_`sbp)?P
z@OlK};Cmy2sS$h_!JCwf;H?PyMleDo-xm6w(07Egc|QUDg$@w<ZUh69wGH<a7$kVG
z&>=#H3VmPbFrmYRo?4kng(C$MjEZ1%1Y@N5K?D<%{ILSY2_4U{7Z8Y)VUtNonaKjC
zMDX?x9`boi6V8_rd=$aQ5ll}?ej33H!84PbPXx>oIy-_nN&egjYIbr{)jZ*R7QyEc
z%oqGcQf7gGg^VAOr0}8$7AI?$a9(N@B6F#5mI?hz=<=k@iU?LF@u~<`3tp4ttYuW}
zcZPH4-?a4+9C$93C+-aqu*l;Z0pAMUC{z`y3Dt%Ag$9HMBM1oy3#EpL0PcewkHDa#
zqL?0q$+(JOXp~<^O1C3OMDRoum7>@b!R83AMQ}ZWEfH*u;I{~lMX)V`?GYS`;BW*x
zBKR(X?<3d~ahmUpU{?gYBhI!+$|?_yC!KRThxCUC_D1ky1p6Y+mL_{2)%o_DrX9z4
z?%wq5r-oggr#|o;5J3DBZ79(ApimZ%i1J^B{v5$CvLt<L)28NlihQUX6@I>A^#gy_
zJ{|$-*$94*;6wx`BRCbo=?KnnfU0NR=^XwhOpw*5!DA_P3I2%STm*kcaFK?+>pLI8
zg$T}vonJv&q>;otHC+8yX<tRTM9Zrvmm|0$fcUQn3bxO<DwM?=5!{R*HHy4Z{2jrq
z2wYL*U*=i#MALuh`3UYt_{wn8+d@m_t^IEV_aeB@jJ?dm9f?VIdecaGJc!_-@QEKq
zaQXX;l&C{<Yu!=g5zQ=eN2AB0;3EyCqj)@ueB?(_Ac}%f6pEs-RPn6cqh$-q6p5nb
zne^g9iwb42SQL%!W~{hgs6>)eGKy=LYn2j8fih7bit<rZh+=(7g>Pn+jiOu>59WIw
zACyMgv0_>?WK@juUDWjEwBN5V04hgOC5jGFbc~{E6i-IcAc}@jREwf|6m_HUP+RHR
zHKM2)#nVwdB}H;LJ6)=JYei8ziaHF-AL_C=Wol-JRUYef4slu(y?@S7!~+EBQ9N|j
zCh$g)5#@#k^?g#s2Rk#RNKU;d_MgtFFO<bbQ8ebSI#INw{wSJC@IMnpvnZNJv7%Vo
z&|?{-6E@c-)wX*W+bu-q6(zk@6wgM{E{f#~(^^N79R-vBrWIb&=L8@7vvwN+<g|_A
z`6TA2mU-pVo{Ot|=DH3UoucR*#Vd3gXYGRLg(zN*qH7dgqIfZimxQ_bsE1V?9ci~H
zx|8`Ry+;&*pEGjku6Z8rNpf?G!Xo)Ssd<7z(2M?w;_WDof9!cJir1r9t2BEniZ`No
zGm1V`QmnqOtB(;#+N@RDUoWJU`ln%E5gX9(84AB6ZP~n^fc{Yoh~izr1EUxufOGwx
z%s9mc3ulN>GRb*g+%-(-@F@J<lo3&kjAB$2qoepRifK`diQ<DOrbeAtX#(3awtm-a
ztVoU%$|mEb`GhDY3WsTA665Dl`s6642!~Tcu{KLR_ZHUsd#>kZ6Yob+kTS!N&XDGu
zyM<BAOyW<Xm?e0&&^bcq3jI{*JfWWn{aon$C>BJWivg<od5f2n#}`t?j+R96B?lG9
zm^hY3u`G(aG5j0DSBwybQw-0<up)|;QT!9d?I>17u{w&~QG6f8nkYWb$<#R(IzNha
zTw;mzucP=jiZ6<160aA|hA6%f@c2*ZWU^|b2&hqL0`~pnB{L93FbX@0L=+*)KUAVo
z#25_W^l%gr;qWa97FiXK!jdXO_~e*TzS^HgFuH4A%JA3}#a5Bo9K{x%DFo-%Zi`}j
z6gz~oQ|Na>seui52_|51PZU2yaUzP7QS6Q4$0&|aZB-wi-`mGbwLSeOq5Fj%5PD{M
z8S)QCaY%}Xg_6ToKS%LP6u(AslwrmYDxX2-Z&4f*os?ve$MUXuNh>#YpNisi6jzzb
zxD2B>8^whv{*2=Hq~y6M{t*3qE1XTv3;w{BM$H$axFlj%n0uwK?&qAx4p~LY<1eWl
zc-nhiTCw@x!nwg96u?a<a?QTQnX01@-(h(01QEky43a4BMe!(#lo;+aoifZ^X`IKQ
zH@t-d1-VPlL;8HPw?m~2R}9Awr02PnnI{H!%$d*|1vB`13puGVy#7+lBKb4&#gIRS
zr(&oXLxC6y#!w-KiZR@~>M0aM@fb=7E*wLV7(X|hSyYO}VmS4F)0=xe6e}sXObm#j
zl;F}r9~Vk7%8-_gp`5h+{<ycyHK$>DDN^i-7%Ii^q!cU1FyT^a)fgyKB`Hr~wqmhb
z4Ap6dXnw3<t6a@(|4e;4hFUSyi=loDwPUCggA#)`hLTohU7=|)cm#Aj?Ikl^Fu{=$
znHfp!i(%2Dd}Q*-jG^z4f&>kuwowd?V`!KZ$Q5fMRn0`QX$%8~HKlyNAqD3>%GV->
ztQfwHVPgy}V`vq_doc`(;n^5k$M_9U^ok)nhUa4F9K#DS=eyo*VrUmb`xx3v@%b2x
zEH97tn_958gA_Z(&{1lO&-IbXgSC|D5<}M*x{1t-F}x(;<)j9Rb(dB>gy!Vpk;)(Z
zX(EPKVmMbz$?dDJTj?FcYccer_ex~G9z*xn>h%@+MhtJp&_~*m`IabmYTe40?=>KJ
zJBD|1<=qO4{ppYx-W3ju1Eu!=1O~@2B!)RL%%#lr7DHng8^gF5-j88e48vm>5yR*h
z#;|$ZJ2Hk*G2Vk0*q7ring7|{{S|@_Vjv)s)B(NgQP21orpE9gLnwxcF-(eKvd}3a
zOjQ(PTLLzj7Q;s|%!pxT3?Ik9=Xj@cF0QoXyW7M(h(C#8mekIU;rIRut9ax&lanj<
zX$<q2rDIqb!)Gyk9>bCtzNEsc8S`VHwl88>5W_-(V!qtA>MmuG2(Y+V0J~lq!!p6k
zng0cl@}Ld5t%z5}usViyF?`L%awezgnVdB-a8axky5({z@p{2r6dPh7hb!ot<PsyZ
z_j?W07&fyihBnhPwHWjm{4oS#2*wcSgmQlKXM|!1#}MHnTHKN^Wfbh|i^dS61Lt~Y
zzoL*H@6qhoSBl9|H!Z_&FWMB|=e0ONHyg4!If<C_O~y?zT$!pg=$3bD4BKKj##|J`
z_87m7f`c&}is8E$cE+$ThW#<@is73H$`3K@Wk(!E410t_1N<|yW{)m2Jf8kz48`tv
zy8o&0TYeW4nfze%0d~<$F{XHE040B7Ft<@Cv+%ZZIEEuJ{2T*?kM#BZ62q@C9OYcx
zR(RYg+nBpB<>KFjIq<OeL<}cmxE{j|rk5B_$8dpzqG!^SGo1Yx{)pkM6#2#QOT`+W
zi=psp&v}}<KzZ6yNb{FaJ}s_XjNwuYf5mV$hRZSJnV|4(?kmJyy_AXC%AZ9uu5rN{
z-V4<W<<@qo;=38c-!a?~owqnOlNBESB)dB}yv%KybjQp0#EY!;j9Om!9+N+_TpZrG
z^Yh(<7#_ut634@sQ{+)(eG69{?l_)^qf#7s;z*67SRBRU$Qwu2K&4TQtO5cai=%qw
zM)~5%AIIOd>v4lJK2%>YjzV!1jyn(7lUX#5`l~XFh-9unrFQvC#8FcC<>DwMfNIMK
zC@u7Hq0~S=;wT&EY1GSu3d>8?p~hJi;-JEcLQ|^wD#uYps%pnkRm^)T4)UKATumso
zRTof0C=H{+nsGcWk{nAdv6BO&WF3*IE7T)2O=x-?xy>`;@Wt`2xG^)1dU3oM$4m6m
zq4fH3G>)T*;0AFt6hM9>0XrwSo5s;Bjt+5jjN{uu-sW+%pz=7Li8~)NC1>^WGA-k1
zCAH7SF>X^q^2sD^Ei&10JbG1mPH-EctZEy_^GVz;j`o5n#wyZIQhY%gb{5T4*hK&Z
z*v0YIzL(?Z9mi{NbQR%laVApa#BqC~hsUdN^hn~K0$z#ZjUs8R>LtbdjTK_*c|DG|
z;^@oTI9TNIrhq;|mv1Wgb{vOiIg;fkD+KSv(N8%2g$_v8vTC4sn34IOfI&hB$1x<y
zA1dH|p~K=Bp5%`ZFfxu&0=Rt>m3$CK|BPopk7IruW9is9#>X)sj@fSC>^LS0n4Vj7
z`zFOPS@0C0Q<MA;<CrG+BcUHB`TvaY%@90O=qE}3ECKv8dQKd3<M=em|4hKVIQXw6
z4Im(0z_qhYSsTZ?I7;WwTqyJlp^M^J9LJJ4F6PbrGLB_&e8sx}DGu6|@#<rl%LT9I
z+&z}LLNFy)#<41nI{7n??aW|t4f**pdGH_Guj5!BM;QY!upy3b;<yvXU4}#)8{@oO
z^jzlZ5WlH$XmRLq`030zVsQlG2*wePBN9i50l!^&cWv4`>(l-?;dyI$+O0Kd>+&^U
z^>y0Z6>0G}40amFr8rDR{`$0mtJ8jn!(#KV(|Fi%B;wc<$7bPdk7Gw1TavX~1#A<#
zba12ZlKkCq>`dZaar8WsLsj1=IeX&B2sI*SZyc3Zr~MemzBu;BaX^Zv<M=6#gK-><
z<2T_P68bX(PrwnO_lGy~txjX}U*h;R$zk!BV1g5j=Oj+&CN!(lPD=3<<MT`oi)Z3E
z8^`ZSnezhv5PB|-DI#+rS^K8|GN*l&);v$+krmVKu1dQS$6s+=jpJGzH{!S%$MrZC
zoXO#lHL>Nc(msN}IdNSSf`6py787`*7A)RQO7@)C@?TD99FG~!pZhIx+?@}n-;d(~
zGyIv1heGojcqAajaF{NkZlQUErV0(5$(dZdHU(PqyEz8(8z^9)pn=i`9yd_Pz;h!#
zg@qFI8s!{C3=}o6bDpP|(BeW%2rVhJl+f(Xsg!wZcK*Jz^Y?05fPjyAlr>Pr0RP-C
zXP~@+3I-|~c)~y>1C#Ii#y(#!`m)lihqtl;ey{n`-ez;lX1FIREp4T$fhP@AGf>@t
z*Fc7W8U~&+P{%-B12qjiZJ?Hc+J^IMxo>0I8x57lOB)r~mELVcqyANt@oUpO2GR_q
z8&C{%=%gH7m&Tnv-XGbh&6>2>*XgTPq>aqZ^cl!B(8xez1N98lH_*U9Ljz}*rfu1r
zIY`Z#*SOK??v3+L_fG2Bc=umQ69Y{RG&9iLK(~>NcAv?)x;l+pNR@i8(b+ROW41S%
z++4{r(9*z>P55~eS{ZoOVE)JWO=xW(+d%gOauRsXKpXaA<98cv4LomPf{BSH+8JnX
z;F^K!wAnyM16vGiHPFdGX9FJ@_}IV;2D%vdz`$4oFH*ji?=1s;4ZLLFWrG(O4yT8K
zo&vhDM*}$q%+7A|c@Vr};8g=}7<f};dKq}l!0VivEO&1MmuvY_3i;+AQ!cf3SI+vc
zRUbOMU;2_-zE75Ta`n7z;9Ua)4ZLHZpMf3Oj%0rW0}N+N>it=6t&W>|-ZL=Bz;FX2
zq_4pSh8P%Xpm(-=(Xhhrv%5B_c1!m#PV^4X%d6A*3o7-DG%(7*Xai$7Ua>(xR%=5+
zA8T2BIothy$JAWg#xVdy^90WIM$cphl7UIWX`B6@{ZkA~rTwpXKjiWeKup_6w?CUP
z-M|b38x5!iW*Yd!z?TM=iiTMR<{9|R!11p<vklBKFqab{_IzqM|5!Dx?YNZ3=OVwz
zz<dJ>3@kM8g@Lfg-6z{U^StMQ+eh#9nxEc3%e~mZ5(9^QUh>&+nSrkid@arEFGyc*
zV6}lY238nY$tBRz@!`dG?p4x+JsxZ4<})p84XhJR^;T{sgmq%ldY%Oge8W{%$af{n
z-L13xTdt9vj#o7UIt`Xy{00I7A_jtddhHpX;&z4*qQQ(+y0?{kYnFR_$JC}R-BANE
z2K-;jZ*5X(iNQdUwie?*OJOV9K*GQ#1Dm-jTe^#kO?TJ!F-|yS(rpG`*27^g2S$j2
z@1*UIOcw%v5W362ZUNsL*dsy6@ltc{{O*-1T0$H48OUYsH*mnfPYmpqj^sg+Avk0>
ze;4xqJK~=W{9)jnfnN;#Dgs9h{BD4w_|3pE&Z&VD!ar@`q<~Y*RBoSJRtk-0Y@FdD
z<q)3Dm~zd-aj}*LaG6m5c>{k*D=NGo;7<b=4P0U(ZR!3s%YB(`JEpSL6{)Qtp>j3p
z%o_%7GV_>dY~pVNx0swwq?-80z-<F=(^<tl?ijdd;J$&oqJ+Kwn{>hh!@1_COp1wz
zQcL_u04;Qx&T@8YWnpqH=QZ&dnI@hvk<Uba6J?~A0wxLyC}yINi8+n_8)IP;MNE9z
z+EKz8DQY?yfPN@$qJ)W(CQ6xjTpHGHoBG7I0v)p5rA@?Y`51CMYfO=TVWO;w^^Kgd
zlrvG@L<Q5?p#GC=Csa6Dl}x_(4aJ04R8<jL(?nGhPnxJ^qPmHvgjvJH&!-A(%y6?6
zGYlzzGauU0{j`Z%CTg3gV<Jr?xzOsG7}hb>V>)w3N#+ewe)}NZ1Z&BpJsBe0z=Y4l
z(NrbVL_HJrX<jS$nJo8-PHu`Z=g{X3P5dIxY+|CRiJm52G11IKa}ym*bTsjdsA_4V
zm4Fr;RF*qSC_8%A#5VCjwu#osd7;2_Z2nqW8xw6!JkR8Bg6pom3C13W_VGa{-_mT-
zP9{2w=9f(;fEToOzaT{_?_%P`Bz{S1skv*C)6GP86FDY&$hf>&j@#)0>U@>1Ffr7`
z`zCsee18)IOuQ!ebrWw0c+<pNCi<G_V`37gc$|lE^|pz3O!Q-fjCE9z(qQH^MhKnu
zZnF2m0tT9R&%_`T%$c>vrc;Jy(DEUibOFOm3^y?%*=p-)4-X3P7-?dZiP0v;NbOh?
z<4kZ8KQNv2%f&TVG>n(vq^}qllT1uDp;^!^OffOl#8ng5Onhi!nu#?g)|&W8v@I~P
z(8R}rr<<4|V5W)LTm>dRF)>R9$Q(}noSL~Df{D*f%r`O5#Agx}96pE4anUoxjI^P(
zeGELV2-^RJiRGe}c#(<4oLsIc;Vd<=OoE|*wmV;Y_gA8mKID0jQMW>5Rwkomm5J3d
zxtx8@?>ZA-o7iMxGZ&XgMolLhY%uYSiEo9Ynb1va6wKaL6HEdGeiH!`K@%Yp^j?L|
z?qAxumoRm=O%0ofh&+4YH1W*Bg&a#pZ`_1o!Zcx-u(|eIx)ZX#=yQ62S(k<}47Si$
zCJvbRNmOkUx=ZMG6FW?NXF|<#?`rMdX*%aYCRIk%ZWG^|*kj@c6F-{RXJRkobCeSX
z^gMmS(<M84H`~3RiK~N~tr!5TJ!s-L6UR(`^Av|o9ATE=a+dBUXSshd@hcNZi*!md
z59g)=8rh(2>Twe%Oq@4y!Nf@ur%e2A;tvz2O`I`tRy1%#Y{=#`fMcXR?3y!sPHL%*
z0)LvgXyS^Azf3gAa$k}(b(t%xwi65#pcor6`RtQ3%XJesm@zE0uyB*fpTn^L3%8j3
zO%$+D&~lRhZRx^g;f{&BCjK>X&%`5PGScpwc)+x8f|xm(lf}_-Ik3n}f)vZ)^D@9~
zA&+QFweXmQd=^%8cIUO6?8GKDTDim7?)(;pWIO(3)Un?}B45%%VGBhp6tz%HIK^3P
zn>tM#vh-Ae5|)z<=o4N7l@fu{79JP<Te94|65x2tS}13smWA3PP+n*?3l%I>wD5$5
zN*1bGc#`%=RTZK16<x>art<ME-4B#9JxnlKs#~aGIo}L=%0f*GPfK4k_!YSZ$n4<e
zaOzm7D@qz#@L0|zrO!f_!%CWkbPI|FuZ0Y0$ni44a%u>8KBAsX3-v72x6r^sv|}n)
zG@Iu}HEAOYjV&~>&{Xs{v#_DH`)*4&Pf6X{yPI>2W7FvhPC=H1mKJ7O_{2gh3(s2U
zYvFARtu18J7z;02c+Nr_3mq(Uw9wYV^A_4stp#4)(Gp%IQgiN6fIctk#CazRoh@*%
z3_n(}uNN%mOu?(Wmn^(&;Z+O0EOfQd%|Z_gJ;l!Mma|xLL~_-4%{X2T>J<xTWFC1f
zO()aUy)C?E;Y|yDqziWUx`j6^=W>W+=fTrDvp4x~iCRt&Iqz8LXJM3u(H8n!7{EZX
zFjNHIweX&WK@u|qE$1xEkQ>aY@9e%M^Tpug>UiJ6Fbg9rjFeUzJnrEFc!pwp=B}4F
zv)w1#xyM+1*d9|XOtmo9!Z-`#EljY$HO^#3x9`bzPh?DzBN}KP&q_=$95U}&DD$C(
zX%;@R@Ua9u$HI#=DxYp)hUJ`93$%3d46UNI^!Y3cvn{BiZH|Sx7M5A~%EG4>=2=)^
zVWEZ3EPQU^LyvntW22Qbcf2v-6(chYC-Dmli=_Dyi73``P>aQ@jFvAgEaix<IXQ$y
zTDzQ)Y2j<mBftM{VU>k77S>8z%B&Vu91-=b6U>VrnoVmt{Phe-Mo5<X8w=lB*eGi}
z_Y#6>lg-%?a{{k7{1yTXOB=0i1TBOtxNNv>XL7?9wp!R`A;PZPyQ3Cj7UG=8y-I=;
zz06}+FfEkGcC#bPg3Um(owY;z*~KOcn`I$vv9MCkHDoeSw_Dg@;WUNC?C&fbu<(<G
zofdXk*lpo^3wtg6$lkNudl-1x?jN{P3Z~Hy)ZiE<7nA!e>}NjN=?sKff+2L!!XXR4
zap71vY~hH7Uo8B}AZ(M$Ry=-|9;sxKMBP!YlvZw@IH=^fg%g~2(R@<e#RPInk_ML*
z!-n2FYvFebH<+j`{9)mog^Lz0iO%yvFIafk$;~D9Cw*1R$yyxmWeZm<T(fXpWd4#h
zcvZUKOwkyI0fUX^ZBKWT^EZ>fh5HN)3;$TSZQ-tkf0_BEIjybU!AYmoe~&(wQ@|)D
zMz@c1`j9D+qp+O-<`VcJ+pUOZ<}@y!JT_8oC^oz{^4fUJMim=XZRE3&-$ogk^a3^t
z+9*jex37?m!ZwQ8C~iBBDq^Fk?KqsK(rg+)&y<i>&x+qTK^$)>8>MaM?vG6#w=uQ7
zGbqZ#Mp+x>Y?Qb0gpEozrnhrf5Xp+Ra}LT)3(R1ZZRd9_CMEX8F4+7@8`Y$vr)*Rg
zP($c`i3i%lR9Vx;(=^XUZ5wG)TgS$&EO%WS9??%R&Lh1<%Xtz{x1GCk<}QY7h7F&M
zEc?H^q)Z#nh=zJL>f2~wqoIwaHk#RJWTUZ-CN_B1qs_V6NOO&EF0C4ED?tC#cv{{<
zIJpV7rOZn!8(kNq^L#;jvTZzPW08%;HrnvV9~-l5%(n5ojdnKPwK0&*ZFI2lij7xo
zbhOclb3qL@I@@@`#!IYyEv<`<y&m_AHokB7->)3>8_i=C{n^b%cN;l2de~r=pkzQ+
z1OaU*%3By4OmsZs_p;I3##=V}irKFTeZ$7<wsW_|HOQ3srj0&~pOelt7+uHEdfUc3
zHu{TjKcS30YNi3yNwERR`F+pEARFUtOt3N7#t<7LZH%H-Hr|(p!#NP~4A=ND+d02;
zAR}y0AtRqbPPL<LjIr^7jocF-uUE+&Yh#@4T-q@Rxl}pD6KzbgF+;pP*~SzGm5q-W
zkkZjB?cE=WRn*UMaTFg5pTDt8x1BQ`r;qm2doyi(Vk0-wc)^*@+W{MMZOpUrnT=1S
z6{nk7i1NI4{XEIpv%xc;T~uwnz{Wz``Du%(><inu%4K*{c!`ZKZJ0JJhLeqD($KK+
zm5t>#zO}K@#tIuNZLH^-8s}MMW3`0nS{q#29Q7J$!Z2e3Txa8JuCL8bc;_0k!Nxa9
z$yF`gr?cIv4b4VGVn(;&w-K@twh<6LJOc*BC%Mtfyu?#5d*Q9kgHG<KjhO9ZV{&-^
z8@Ks+9S^<D;@obEZ6jf0A01_5la0*`MUMKB^P|uf8#`=VbEj>!vCVdF61U4t@y?n~
zpsC;4*vYn%-*(y9Z9BhNaq3yivlTV$;V2jwHh#37lLFU{6RY#nNe|fg$;NMD|3Mko
zFEpUD`w;!ixT@_t!qDY3$?qgInCq0`(RZomR|fe~&rwNe1jlR~w{gP8Nt<Ue=f{mx
zqVu$v%8qC!wb2+ZcGmu3;~eK`fVW8k=WSfDktc!F1pZ`-NJ%R_JhQ=8&qW)TIPW&D
z*!Y{d$VQF78uHVMf7!^MQtzsb%!-*jt_iqq<A#8nLO=92X4OA7Zrfm!2eec1jq~{K
zFcK6WkGlf?6?)IceF1N{vsm@e#wnMN$0H`3go9l|3ET;!rDPK1P2jNv$|v~P81f~M
zKY>ySlun>P0tFK&p1_5dGYfRhER;ae1l~TN6lPUdhf_qrZy$NcEGAXl=dk<$r3AGN
zP)a5+@o}ff@8CplH+(#SG6^7oV{UJqycy*LloeXDhH|u0MxXCJ6%%+OfvO2SnLwok
zI%YTHzW`Md=<04(S?I7DMV6juR-|;JY6(<N;Hd;^CUCZKqZ$beE34%D-4kq|*{5NP
zrxU1^K-~m93Di#D$C^#ccK6m1;5wVLx4(~^v;;y*3pVj3kS<se>J`eW3<3QL70gWF
zjY1jqgw_|zVuJ)4CUK(#8Yl4|O_inzG)tg)0-yBqwoYK+*_=)_T0E0Liv+R~Xqf<u
zJUXAvX_dgUbo<$yfA_R(AY$443m}0u3A9b%r37A1;Q54e2JDi+iwW>!-|Z4;p8#Kz
z=^(VD&`v@-3w=T8()Ov8+5S~J(=wYkE#w=W=B}QR+BJc036M_?4~A2Z1bQam-Gq!y
zcqM^X6L4*UdlPyk&^v*j6Z{kuUQ6Kh1ePT5C5M^7n+c3gU`&E9KH#kc1}88ifxZlY
z1m5L%6L=>9e(<z^0s|80m%w{hoDYnWlMA?<bHRHFC#w(Qq)Tlse`o^lConvL5u$|5
zVF~1Z4wYXY9!a;i%V2R-0xS~e(hm|Co4|+kRRZG@7@u%nJfD)l1O{OOlM<MmaK2AU
zX6{!?{}1pZn^Wo17ysjbl)%Rc%uC?21g0l2BY{sDT31{%IhzURGoy17m?ehImLdnj
zanXK$36!;Sg~<<wQa`^w{J9jVd~pKv6IhVI!UVoZV3F{1?cpbqdn;~YevXsh*yS_N
zOA}a@fIoo%XPg5`;9D_%MFJ}mSeL-p39RBQC$LudYZx<LH$SmTGycz$<g8C%g9v=X
z8I)Q&lYI8b4-jumKo!qxG7I|u%mQVCVqqkKC|7~tu+ZFZhQ<<zC$N_bDgh$_Gl5;w
zk(Gd*z%~Y00*M4RC9qZao5jK{(nYR?)I*SK&yEDX6S1BDe|GLp;CpGfN9_FJ|Fv_U
zSoKo^2NT#Y_`v_z$r(A6z+vI!hRqSd{G2PReof%06fY<68xs*TwiJ&iaDrJSf!`B2
z$!wXx=>+~iy50jiiW_Ph_8J>gOb>qOy~BEEc6I?947TYdgc{foAP@*8ArMLky>~*d
zA)$9dFQL!w)ZHnj2MD2e2)+03j(Gk5-+%t^J4fd^kFKtyE9pu*Gdm+)&Fo}17ybYA
zAq_nZ^o=99$uiz%jzlhTi$y7wYN6AU2`SuV!g~zKLr8M}2p+KL!y|Zf1dos4$q{^D
zlBY-T><C^T!J8v^egrR$;N=m#`oG)o_6XjwjPEmT_*6U9Lg&~Leq^apBIuN7ie?cJ
zBjPg=1x3V)$SNYIh<FikBC?6dE+U8MObR*+yBz1-VmJr*a?uo}QOhMFw}?C<@`}zZ
z>%c`*U3BJbJ`wpv6riH=M0d%Nl|0!Kmz9pv-o`l-BtZm3loe4<L?ID{MU)UxQbZ9E
zMOit;MUZka5s$J&QC_N)zQUkNDKCXmBFa!+F1j=`j4lRRX<o92)XIyfAi^yoQA9-%
zl|)n(QB6c;(U}+Jx#%h+p<{E~BvLtf?pL9yntV44$3;)Q@A8P?L=d5)au;*agw!HR
z6-4+byNJdj{35E0NEe+2q=tx^B2q-u5s@S!Sww9nuf^*6|Ifj?B2t+`n)rX1gY`tz
z7oF9wf#|G+4H>82BTkk#`DC_;&qXw4ycxq!bFhVoFGRE!(S`|Il40!J_Es!PZKo!;
z712&aFA=>(d?}*6h;NxO9Yh3Zg%{C9#8)CZis;1TU;kfP@r{VCOrhKVsTJKt^k9~M
z$6C?z|J#Z_BEA<fNW@?fKZxi{<%sCd2JuH4H8#GV+WV8}{89`MF_5+8<(({xR%WB)
zp{ZSw+gW}VF+{{r5yM1GxbOOf>Cg|s1J0R)!&#IxN01u(U7+k#>}U~VXnd~)_KBd2
zy|E%TM+@6Uj1w`Q$`LV9#BU;&ikKu~vWQtCW|JmmArF^?R>i#2MBMnBE6|IZA!0h!
zQq;fB?MQwlA6V%QoO92l?5aR~jtG6JFki$15pzX4AjUn9;p|O3@wGwULMnEdQ2DU1
zYlC}{h{Ym^EMZ9G9&P(WQ-CZK@h80%5EPb)Sj)03XShPdN)hXlxm6-oi`bK^HidDA
z1PW`&u-}C$$^1GI>qTr3@!^DLlZXzpdAbbPDB|iFzT*r2?g}^I77<%TY!jWUh?EU(
zZmGNSL-+Yf9P!DeebhfYSTF4)!x-63buqG6#9tyxHHxm*D4Nth;eHVZL>we9{U%YO
z<we9H#t$<*!jO_g5kV0lnx4Hqbap36M)u$c6{cW|P#Mvv4;cwFG(|*27@~9gK*|)3
z4|g6_SyawAfk=jkqau!pc;ymKvMk3L(x<g2MCSwB**o2*7&%SL-ALyFQH7)Kvm(xk
z_$7p)A^aoaJk61i^Xb{YA}&zx1+g)Riy|)3dm2I158|?jE9BcEqJp?8;+lx(B3_8N
zPQKBJyD#Da5fL{<+!C=|bl(-x<YI?<hdsAxz6|o+5iz!=mmloA$K?Mp^k3{iI+Ks3
z`*J5fB&W^kdqj4MctWf3o7zuBJY(eUhuVeOq;;FlH?C4Up^snN=y^$_K*uT4BvSZS
zB3_GlBRW@fZ$;-(Gu;}$6P>@n-ZRWy&AD0bANKsPO>hMf9Ynq$@(0ndIF}`e+zb3M
zLD0@5PkT9AYR3kVHHd{G9~X40ppY$y>_OyU(VPtP1QE|ju1uZWK@?-BaglyrCfxrv
zsz4B*1(ElJw`h<)Pflr8E@#0Y3O?}At#m>V2%=EXd3^L^kLbdT5HAv>J>1+xiUm<T
zh!R1RBuNkzgD4e5=^)AlQ9g)KAB3K}eXFkp$^=n12qF~rUJFF71uk3*JY>;IRAvwz
zN4e=3-zq^=rE+fZ1>11df^Y|s6hv|miJA6$gYYoUG2}Dld2huDLHJnI&#*=i)iYD+
zWYU_MoDNv5mC5S{QJe7;hIKOK-ZnW>GkIDN>6v`d{e%WI96@vqqFWG+f@mB>>mb?$
z(IkkbLFZ<<We{1e2b!@gErNJHq;~Tl_CBupc@WtiazwreI_KE-|J%Liq?@)EXcfef
zm~4T~eA^)GY*_<Ad=*5yAiks?OBUJ(F?xfqLlAui`Ue$&uRJc*@sIk?-7$zRL0ror
zlwFtlbr79`=p4kH438M=CEU@s_BSjw@Q;slz73*#5aWUvA4HEJz6)Yt5QCV7JsI|4
z*ei(M)S{NcfZ9GfZSeabeh8v(5I+VnGa==tAo?eyC<!UV`!PxXPneK0fF)5XB@GUO
zcC8s5#F!v{4q|C1{}6`1Fr?_vAcke~;f#!6IFh_2Q~tT=T~F(O5QIz4W$SmtLu5h_
z6PcZ>$y-(?P6}dG5D5iRCkHVlh^awL3u1l{3z*LIAZ9T#gW<1aY7n2laNa(p;CUD|
zo5|-eoEyYEM&{*rHcMCUMJ;5}WeiEOD2T;DEMd{#82&+~W~TnmNX2e(Ckr{*DJ&0S
z1rx4hcz3h2CqwbyTuVaS8XEl|))B7e?*_Q_L0DP1PrTIiz@{KJ2k|b5_d)y_#FijT
zQV3#e5ZkDzAokIWxE@IV$Gts>9YO45<x_85xaZjw#O@&WQ0K&_P}oaebUlze**EZd
zz>ZJZAH;zmLP1DD`oahYR(ZZY%gM>yp&$;E2L>SqacNO>Fo+i4`{wrb5svDazGt9s
zYqM0D)si<xNPVBC1fd2o<9a{~B6vMu1fjENm|=t=rEa+%P|FLm5`1<L8A03%;&u>6
zgE$t%^&nn)y~l$%5k!sq!Zot_r28bT)nv&?-zgS7&G7Fa&IECmaniZK$hjc?$&{QA
z;$OyTRV0Orj9<!3y&S|9#@BqPNvTwLoK;V3=?i_I8t%;B2!g&uzDZrNBz@_2XUCyC
zG-?mM4}!Q$%Pe)HJN~~Q?g!B-pYynwUZfm)!udHnyM}*AgVI%a6vX2op3v<3&-;{e
zRpQ>z<obz!Mzfv?N&bS7mkeJqd`&C)4xW<UvMe{{n8NqHAA<NuYi0=LLx>8&6+)2^
ziiQv!LY5Hng^)jlskKsLLWm3DtE&R>SSHCDLgZyCMM;>AC1q!rBZQockUTzwT$wy~
z2zeOKn<?3}&NF69Y5}V8jk{n7%VYV^7?M@fI|~UR5F&&^j1*=_lI3IE#X|q{yHh-b
zuCab{!V)25?2j)zGOc8YzJknFDn!S$;nej2g)$+OW&8n)RtTYD2&o~Yu|g_^;18jC
z2$e&q5<=Aws)exkJ|~1|?<ORM;0<BD&j0?0yQt*$gs{IZe_^1&g}{eELW-^(DCE!X
zCH|;(sxJgWI!2AoeytHgGF>f%P?Ku(2uUG2qr}(#L^|PYftytzwRQ+8)F=79bwa2c
z0!fIUI^`jf_p~QHgfBJ<T|)RKgnA*=XVx|dp<M`HGTt!c>~z#9gvKE>385*AlB87#
z%@}VU!sm>%prRO|D>wRpnsi#SD18M_ymbg|Sd@6%kaKBDWXQ!V%g4JZv=5;J4a#_T
zfFYfe@>K{O8ULDLCx)FFlA1Z1>&ndgj`}>t+bx6v<N0qx=uWjX<I5cL(YdQVLYOv;
zpEMv{UzOG~gd8^lM0&F;t3C|BIN|v|gdajE7Vq!N@JELI81`pKNk1_%AcTR849b)b
z4&moaK7^51IyWqY;nX?_VF@Eb7#V_3f?vX@5JrdakOnS<F(Hf%VNnQ+Ll_src=Elh
zzF(XACWNq}88<zI86ivzVG<4H(DcbP3qrWvENMyzC2j<~!_rBo#*M%<raXIS`mZ6(
z3}J2v^FnBQBQPt3*)&XFr~h~(Ksbj9@AOTlBntCGSimI2DQO`KluDXQLimm5S_no6
zOUdg(5JL!t@J9$ey#9UUlOZgl{-=6F_&!V8h7dM}urh>IA!P5KvO0vdj1XT#olwk2
zgu*%|TpvQek4e8K3Y77;#K5KyHnU>?WVkbgEsShsxQ!uIx;=y)jML90MRzg2o8caY
zdl^#FUyM}xF8x3V-R27iooITtg#slV3gOmbfx=-%jxc;mGcN=w1SJHOru;Cs%#i-3
zp%4EnZROf$L}@gRA%tmSu5_+r$JON*^s7RTDCy$X48fvn^$^a7oQLXm2**P>L5l;6
z9%Xop;ptA%t4F1sBrgr&Ecw77_vsM+4xv=1XyP@?@w6wynUJ$l0|iPtM?=t0xX@c5
z{5OOPA==3Yw?eoW!X?VSkGsL}atK#KxJpiPBe3#DfaLOxz?HfDHI{mv#%^mmMPC)k
zK}oln@NNkA7`emn(v84>A>0q)L1vURcWp~=ur2*enfjFX^dryk+5X2NJPF}x2+wGh
zmXKe<^AKLpqAejt!pjg|h44Ov4<Wn`;Y|o{LwH9E!b@+F9?5~vlbUT#eEY`x_D109
z9FErTkF@wpa7l=kVAmCBA3}PqcgBiD{;9j*&A>^;yLWwJtc0u*a!QDo5GNs<gzOS>
zNZ1k2(fn=oyKrGc;{9hG#I)pGxqRODNx3BCmgw#nc_pZ~JmNBEOTD2h5+4r}ie_!L
zt&o>CMJyoUGYO?6l$P*&^BDT?te}Jh$vN);5{gMUQZ%`cgu)VvNX}#Jq6~=~YaT;^
zNO8$|1)_w6ea&M^W~S0{NVFSd8OgbI6(p3EP)<U5vU#hsOJp?(6&SC`uoA<{nW<GI
zRL$g@n#8y>d7=bQCg&vZjC(UBuiMAaEeZWCSY1L53BO1fDxs!?BnbftUr9)oP)kBf
z39Tg5mXIPLT|zwxbtKF?>OE+A3F}HQruitON|2*`X$+^-7V1k#t(wwALQ@ISN1=g)
zh7#IG`x;4T<nld;@-?P1ccd=K@HUfB-1Ih=@VSKJmX|nT3o_%k?2j_MUoas_-kIKc
zRa06^*m%_2PC^^9p=wIEuT$DeAdIaoP^Di|6%vS0=s<n)Z3>Z&626wuOG0m!x08g<
z65ihN7K-wbJxxt-7YW};=t|{C_%Yf?;X6jYmC&7$9t<;FP7;NlEZU^D&_}}e5+2qP
zes=kOAP4B~>o4Ia34KXHLM6-FPr}(~AN51!n*pJ=K$-(243aQd!a$a>d27FuT>@>A
z)~9O95DBBJrZmdpqo}{Nf0%^f5|&8#jn;n&BPD!D6z0<UPihioO6XBd7$ae<gvr!u
z3FFAGBupY7&YzT&EPPlky!@Cnfee!{WUfFVZ&v4Tk=}Lu6?*ull1KIM&0si<;dF+}
zvj`;rRl>RZHHln}6=q4$-`AYYa1O)A*#xp=o`m@l7D!kqVUdJy<Ag^E7?LPd$|@{o
zrc!k!&j?Ft=*RmvN!U#DMZzBvmXXg(SjXfmXzpAUR!UeUVN4xAWmzp@^%-G}gu`=%
z)^(HrttPBx{GY!ClB}1oK|)$B;Vk_eWED12IawWJ{*<tVM)o`3ehFJ8Y?H84!Y&Eh
zC7g5%^kcDu95So$I7WE<ZOYVGp*)|wTf!a*duf*O$t_O#{-OyRokqs&qefK|h_4#w
z&s*JpK*B)@hsXw66Ic~TXt9b(3Xx+=p#BjV1|`)0m_*UVb(3YrsV&46^3{z#A{tGN
zzXejbmL^1K)<~Ek<5wA`1dHaKj3gPhgbWEM8VS{89F=fP!W;5cngS%0a7V&jYL0|c
z5-v-)BH^@zza>=5AzYGhhEjL=&P({0ypD!XLW3N_KN70c5<2G)h$r0)SXqR=*@X)d
zE>hcLg?h+F_}cHknO&%JQ@ASOnuHq?ZqiJ-A$+mRcb#m@;*fpWg<BGCQ{gv+_^9MT
z<Rme|SKEC%KKI?DqOv%`M-u*%aG#toyYT9s@PNse-4h;4h;WVpk0m^j@KnMx2`{J*
zX;wZIw6e~iJeNQi`$#xOc_qA-K$U)e&_~gyt~A1T65i9oE2E%{4-!7osxBj5MwE=k
z-}&a=5VFc}$%vMbg-J*lBRl^oPc0|JGD(NKUiUm9PDVBv*=6LAo&M>5&}jl0f9|0`
zt<EJQw~V|p^2x{}V;3hB3;L)lW@QzKPq`=bxFO`1>9ufQ0ft1V0~2IGMpYSS<Ag#o
zsG_1WipeNUrX~tSWYkI*n#>iZUlEGSC?TVwj7l;}$|xnHf{Y^L{q#S0X&Gf@l#@Zc
z3^gq(nFxjQGCuPNL|WGK5z>sNq}*<S=2T_bnORk2=P5^t?kU7+AXa4;+%ghnjI1Vj
zWcXzGWpFZh>V#O~<P~9dJ)c)bpPPapV>_Qr)2ce_pBk*9vTh;AMqh#bZmKkyESJ%n
zlx5VGks_m|j8-!0$f!$MWHgbHDkDwC>r?KAGVOWpOP5h!#-h4@;`Ny1T~UzD4P*x^
z?{_znL38cEIRDaGLi{OTQyI-=d@iGz3@t`z`=};i{qDXNGQN<}%PpkE2!!;HKVfSb
zZDf2SqpOUzGTO=LDC27xT@r;a$<8|d0ORdx2pHK^1|9fhS|q=cokeEQn)C+slRME6
z=TE9RBZYWp@`3uvT^QP@+}&vC(}f-~%AE3jOXDkJW7FuX=|aFGbUPz_C!?o~>J@~U
zX9Rl6)Jw)+SA_4=h3{qjAY%k|xJ+lT;zt>SWDJ(^^B8|Wa>zKLzl@o_0Fj?$`c4)D
z$<#l6#}fs*!{T!#-ANRFCgm%_FEWP87(!ir+(RqLtFiuJGKN#1_wdnDJgJs5cK1qy
zaFmSEGA7Zmj`xpYJ~m#)lRExq)r7G!mc|I<7><t-CNMcU;Y8V425E_&EMtm{sWPU~
z2woAU%P5p6tSOn?V6Bggd6O=btLvXBW0s7?GM31gEn|+1`z_-a(WGeMyi+k(#ylDG
zWmGHfTOgx!l@t=@ig*_?-b(k@F5!z!@ZCx9{YGZUI40w`jNfJaA!DD6{W6xxST19e
zjLkAu$XF?3os9J|R>{a&(7#5;w$J>lWt_Pm-Q;`+lB|`{tzs+*k8Y|r{-dvs6}^Fm
zM#kH)C*R@dPxz;dEi!h}oRzVaN}$zX2)BbgTm~WW=(ch7GK818{1hlkxLd|v^6D$T
zJu;rg`YH9&Ip1I8sJZ+UeO00M0T~BnNaV)kY3F>07#@*vnCAOr|I>2*bLIRb7nwXL
zBg9DE8L1?spvVZzh%li_?kz*7jy>li1<Fe$<SOqsWMt4%Prm{(EEy!R8O9_ysjY7Y
z2tAP)dSXC$f(B8>4H-9OoRV=`#swJ{W&BNRNDc0sjDM)p7^mo2YI_Zi$axw6%DDYm
z!ji1~o9f(gKiB7hFR2E%ZK(f}j4Lv(%D7BJvy0Do$`!Pt^E~5r9pSH$>t6M>Ji}k7
zIqv4GEKIvag;3|ncqQWw&Dljc{v*ebaaYDYTI;^$Xa~-;mp&rHl$ZxHUXUkG=N^*s
z0qzmGK_QO9V{%BwpJqy)$#|a0w~tPE+{^z8+-n(cWV|EgNeNVD{=<AIoBu7%ul4ac
zw{k6NbMMLRsncke0EQh8aKxh(WKl3Xf;kbyD2P?iT*K!YvMPvE@Rf>=DzYiGr4lwP
z_)|d+1vwS`u7JLCk5`aOL7IYe1-TXEQBYAqB?WmE<Wo>oK`{kGd-C}ee5Rlv;{_Nd
zRj!tx01Aq*XdwlM)+X+_Td*+I-X@W<P@v~v{ci?HQe1KNelMY*B&#&#kf)S_(hABe
zID3gNqhM5?6bj{7w5)>f)l`Ze8I?v@LBW=Pa}uxRNuiI6xt_kt3aThr{!MyS1wI9S
z1=SR|6(lNH&?BAXhi?Wv3OEHkQ}Zg=-Xnd=%>X3{3RW@l39Bop!*psWsHq@Hp|9gn
zOF?Y~|Nd`kDNKj5S9!xxAW~OBs)E-{hoV$_Jq2GrcQ;nhL_v?y?)nTHFl?xx5hL_D
zHYGJx&`iO21rw;R6nsue3cgd&LctdbzE;plK}!X#6a*A!x8&A@jI_(0)K)<|1;aES
zZ8*H_i1$l{UM%spXE?248u1Q{*VKHJ@hg_ABSVsOR?vl-+1;0VEAT2!7`Dduje@QU
zx+!#kwXeGZuiH=LTLlTX0z|6Z3Xr6yf?nicrnkR>-qgc6d_OAa$4DQB-z)fmk-iK`
zVg0Upgzawy2<evRCj|o(=V|;v1)~*=Q80)_NitZ$&kBYp_=QPEFdWKoSf<W!a^2Et
zq&$*IMln2JKb<74>j`7Yd!y_0xfK|vfT9%Wr)r{tNebpFn5ST}f+-4qRWMV*R0Y!%
zOjj_2hN(5*aEW{N5%;|h9wMV|1?ZNR?xttaR8lZU!Kr%AJF#__@uWaWq(gi@wNb%h
z1xpkxRIrF?QW6Eq+p$m*Y5t~QDN7{<%0fw>vj0It!~B1_f;Eh+V7QVYO~zFUR%dd1
zbs|aDvgkU7>ltoPurX6-6FK(3l}T-jf~_<|v-$p0u#JQY&XWTx*r8yj0$o8^!7c^6
z6&$2_s$h>oZ>PBTDtNa_7+&7@u!R3F#`iJY&ybQ1ki%^75IIb)xP$AKD#(l+Q6Mrx
z!k~f><C203H+)*iN5an<`V|FP&vL2)jTKUToSTGwC2vH*Q3b~o+-vAF6qt+<w-nfn
zXD}p95*}BuHeVuzzp2TY{3Hzx<EI&t8Y!H~Og*dMTqggAkwq`u7nlv#72IG=yQtt2
zbyq__h0BawQE-)!YngItIPGVClh(`&?#d<ow-n6(#eJJ0kvojsWq6Na^bPL5f(Hs7
zQs2_#RWX|v9xHf43!REGDxNBMrXZV&>?)osctH!b>fG|YRPai{M+H$TUMqN`;N>ad
zgMzmT8XgyR|KfYcNTWr<dj-}nzB-(raNgUri6eZuPo|&hoaRz-?v@bEkVqC4F_}Dg
zOUSBXC@;jRI5kgLc~UsNM9A7$$e|*Sio7avs-P%^con%A-+RiPn-O|om`_E16-8AP
zW0C?Y5>!CNXDph77YZ`+gW!}<NJU{4MVREhCVZIZ2q{z+gyKwCk|9Y-sGusQFAz#G
ziPFPI!m=uT!-X^z=_<;rsGuTAMY4*DDk`Z+RN<jtv4uiq)|@ITHY^p~Eqqm3v`GtJ
zH5G2gsj<E5`Z*Q63PFXB4TM)k1GoR(5`hL~oG$oPknt31s#xI>s;j7xDLJ{=k*_=@
z)KXErv5=yoj*8lhSMdptqSNZCD7#QdRZ(SuaBo_=K3|~Vn=jN;QC|hMr5V+wqM?ef
zd_ofyjcAk?3S;W}8`GfZPPfo4_F~T8RHZ+H(=MF$#ruWkDn3`y&MUNF*iyw8jF5!P
zTVBn-_*S4b)q7HC!>}!-s`!#Mjf79GM7LMbK?RMka$E>7oiPP{<UF+Ue66CVie4%@
zQLZ(f&J4RS{6<ArM!Ko^j*)LwbZ2CEz33h)2q{bVnqETUy;by4AyYF|`i;g9Dqc+D
z4yov?;zt!rRQ#r*AJsM6U9OriQ$>FjKdBg?VxWp&DSE;~VGtvC2Kxr9_?ht`Dn@0d
z{=&#m6~h=A&TvF#>PQtsnx#@9qnTukim{B0V>n60_)N_SDkd^MV3$+rWEE3bbSgO>
zBhxZ9cialhVBEeHAk9y?W>Md&n4@B@iiIi`shFo?K3P?*-qT&_3skh4l=k3Opznax
zyA|q*Wzyvy^%kpGdMve{;5$~scil`~s-kMWm}M%KtN5K<Xq216AF6X9L}UdGmWr(^
zwy9X9Vm0}*ij6APs939For?7;eko9|UZc84e^0#ll(u^f)Ek{Nba~Q}{@zV0Hmmqk
z#TFH9qlHqp168-A9SC{H?@bE)TKkvviEGCtZ&$HH#a<PEso1Gvmx|pg_NeqqVNF-d
z>SfZa(JqlMQfk(%l2)v7Vxu*Q`&8^#aX`gE6$M8n)xI5|ZGy;v7PkZ6-45*CU!!RM
zq{AwX(1<VL(kBU`it1^pM1nM7CkY`H5+mB4928YmXev(9nxjHj5hnMhH+)oQbC?KW
zw6J@WpFGN7o@O#^d)T=`u<2rTWnzYkql_G5cwBXEa!)WMlENpSR`EAY9~F;PoKbOB
z#bp&&Xns+D4iNrTae;=cqW2$$=NZ15#@*U3T%-<Z$I)L}gqKw3zbztHRa{eXTg4p}
z*HzqL@?Up(Zjuia^4?<6Vb6p=BW{XP7D~EH{@gkJzKVM){$pi6H=UyBwfP4s9;%?~
zwv6Eh7f&ML6I%RfvDJ`I!!ug^RYYsZqTz*#moy^OA*4@>zlt|1-l`aRJ22;VVCC(=
zk3ad}2b0IHPNbuVP7X}^pyH#7C=D(R2X6-kD9KCqCDGAEtu`iFw*&OJe!`l>7!9!+
za%jj&*Z&&gG-T6|T?6feL(lxn?(j!#q>t9C(V)|-n160ejMtD$Lv9UuG*nohc>Z?a
z>Fq$=oxtL?iFDKv>Cj#}`85>KP)b8-4WDT!sG*34q8bu3Ktmx7g*ALVHmTM1q{7P+
z$2YDv`%2}~cLGyKB#mfar<jJ~8cJv=siEeb!0cmzj<cP&KtJo8NdE=U);-Pd1j=YA
ztD%yH${NaPC{LDXs7ST+NWQVrv4OVS`DsJqf9n%zOP~C+I#kh6RYNrmZVj{@P?tM_
zpY8-`FChA(WYgNjM5?Zq$D@JMz-#boNY#+0fzE6a7}jFw)8N-oT|*5PO=3toHOb%&
zO^8rP)-di);1jQ{A%*GG$<(Z?Vf*_3(M;FSh{@|^rq<WcAd@%LFfX&5#u}Pr%9}FM
zjN#flffgFRpxVPI5k^Z5tu)l<`QtiTYv^57c&*`$hBg}7YG|k7OASE{Ar0*{bkML=
z!|xgb8otsnNW)+a9cfS~qlP}3^TA*z4c#<+tD&=oE*iek@RK{btLA)(K!429heZ_V
z!yMA=uAzs9?^v$piOy%IJsIz%VU*j6QXulZh95NisG*;RzW-a8xXnWfB<W98Xc(Y@
zB=qqkA=OAp14+op&l-kk_*KJ94Zmm@s$sZ>5gOgy{J(+z8T?e^NDZT@qcki_j2@L)
z0(}8N#*d|8(lB1b1PzllOraW?!IW_lnc<H9R4=uK_*4zkG)!l5=RG>NQ^E|*dA}~^
zZWa3Pa+ZeK8Wz(eN{pVPVJ<6bA&sDh`HU}MwLf=9lLA$-g|%f7OZrq1t?)}U{Kh2I
zQfm7jWVVJ~8g?_`a)xU(tYBm%!&MAdGo;VVspPd9*0Jb%4S#Cb!uSRa8yO*mO&T^c
zzGW&$<4BUNEV@m@UmmA~?HYDy&Ud>zHINyfbjb2O8un^9lv&PSj2vLNkKuj|q(&ti
z%+%QvFC1q4NTx*0)R8pE8ZKzK$dVKdx`r_0ss=4npSmK#xS_!$Ka3Y>a4ikChEp0&
zYdGfOGBliEV{udiZ47cu!zT|sPF;~0P5dO2lVLP)f3wogY4}IO87kozcQ&&w8VIV6
z!g(hD_kWXL(r{VBLngUGox{jIhSxOQ&~TIS>zUqui$$r%JDT&I@@<-5tY=7ampKWM
z|1x#%Gx8wQKOeE^V+~I<JZ0e-bsB3s{oP4n|D6Eg3k@%s<||rP=__wfG~rtf@5lxn
zqjkL3@PSqs-FcVhBWdbz>v-K;aOsHFQ9#FMI<n}9(UDU}ybd~)<n*0DEF)PN#_7n$
zNOp#_#bpjgNVD+V6guNZ=#_G>SN2>wa_e~8JSmTkvSm{8>Uer5Kp~%wWO{i<$MA_h
ziWbz7pre$I(mJ4{kdC4{is?vN?k=q3;uCl0uCXuoyNl>}G}E2uZead?UvV9qrlgeA
zv1h!$gbtDv?aZZgjU^!|m(fvPM+F_k%jzh{)GjpilJY;tg^D`8S?Xl0q=TXjj|znK
zwhL8s5LRVajUknmsKcX!)4}WT>!_~7t3%LHxNEGBWhe6*bd7D*n5QgMW(^%Rb)@L1
zL-sRCGDG@5ol<KtUYjA=+<R(DUFtWgOGkYsOw*x^<tQngMJbCuC55noj)tr&ro8u2
zlq#hH8|!GIqp6N&I=bojR!4IkpX&(d_)13$9beFDucM8QmO4(}^R?13E7?EZa0eE-
zE6(Ro#n)CxI~`x@Xs=^@Yv1dUzCYbQQXu6HI;!3c{FpoC>-i}Z&6hi+qmEA0r8>UW
z5jR30HPR>SqT?GKU3Gj?rjk?Vr;z?2x3{~F9y$i<7^LGn9X)mQ)6t)X=DM$!jy^iR
z*XaO3CrZW;{-ERU+TOlojNzuzwpC4bh>qjAQaq1Rf1*yf8=y)DFa!SU$A5b_kQC+z
z>-bs6FmfjyLv)Y<zv##}Mfh`mO2!Nyk)f1yH$Y?rOC3oAG$4(lLhh9D%hMO$4UEw-
zR)<F2xQic0wd+`+W2KG>IwtD)O~+CllXOhhF-ON-9aD5n)iFcIuR3kI!cEh0t!nag
zO0AYWylV1pa?z^EGj(kIE_Sw#22=T2WI)yAICt{$?^1~9$9?n2X>}~pv6$N8PF_F*
zbT_b&h9l8ex2jV}(Q3&q)LTMoRg(`jiXj~m{!Z1+;-43-y^N7R7)E*t%gLUB0?FT3
z$hk_#Y8|_D?AEbH$66hK>e!-V9U0s;b_03x)RckI{`ES@wTMu3Bh4lz-^`FCX%$np
z>X4?UY}aw2oujjjCh4>knvy$o>|}HE(Re>aX^!mCu~)|-9fxU2(Xmg*0ang_hO4^9
zeyR~uQx38+sT`V&M|6l3)gd#rppK9Zs+T4sDUf?pE(!`uRaxy*rlw?V8b?B1M_5Nh
zhoPfjuapcOeFq7?UV^E^(qYqrHqMzQ_cx>t9w5+nF6BkvQJN{|>m8%%Rwk9QoS+WZ
zaZ1N&9nW>VAji{jM#p6xSIEtZbHSDF2EF*RI^AXCA06j){Hx;<Sr{W+poOT1kN&s1
zNWGd>=yl3ho=>KK>rQ1Ax{Kbc<P19QtasB}(AR0sZs70gxToU=dDI{2H+9@%!rQdU
zea+or{PEoYank%x$9)}7Xr0vY-yzS)t)2%u9_k=M(MLKSQ{RqpXFb5ToXOEiAAjUb
zd?LA@Im726(kpM`OC7IhG1u{ilvlgy7KvVszJ1gER>wOX8F$_J!g#OagN~>$nv~=}
zlII-pQlJ|p5)!(YJepw^hB0BpGLkinoQzP$xG=J1^6X*cV0>!JSW1e|l;>h3H^V$(
z<js_CUdrbWqd*v+g;6k!LSYmR<8V@1LKp};2b&6&(&zwFI@mO!p)mBPY(>H#LMNXV
zWvQf4EQ~%ylT)K|l?<a)7}vtM9!BXf%7igIj1gg!4WnEbUxm>zjPhYrpsK@YoQ1C#
zMx`)ng;6_9X9&70hmjbDhw&<5RAq$Z)fjOzoG{wWQQl!fb%s1cih9Ek822$XlK5Hl
zk2fCTH5jkSFe!}W%%Ui1$U-h9jCx@Zsl%`?!&HVOOba7DlNS=W`e8H(qhY3`Q5gI3
zdk3y_vNvWziZ%_SSs2a3Fg|c!&;@@OpVO6pU7-b&5V@TzSF12uhtWQa>0j_|!f4AB
zz6_%s4P}{J=X2*G`H#<eDuF^wnOq&1CM5-!X6Uv1>o7WnF({0am)#|9bDhK3zQf%k
zj4q^boBM`gSBBjflJMIwRvGT@G$M3Z+imW<FnWg3D~#SO?*N8<82%W>_l!`PKZLQY
zKi4;m(**>I_REy_4`XpY?kAQ?atZ@k5-A@~<OY+$r`<nOpD^+Z!=Vg^F{IS`UAd8A
zj0!^wLl0wg7-Pu7Fjj{#HjH(fxyfNn31b{pQGy@OZ~{Y$PGn>fQ={nAFs6kuKa2%b
zco;Lnm>tHPFn$fg+{(Ww=A9V^;hcssvluz(<)&0hp373_Q7x5{7hH)UO+w-e!&nr?
z(lCCfLK-@f#bGQ7<5S+>!l3LFNdFI3!m==ylRZ~rDEo>qR<bG<G;|8gQ`}40NqJ2e
zYbj%NVu)-GV|^Gq!`KzZhA=kLR0?BD7@NY_OcOk3_Ln`mS2N=Y&ozp!cOhnL7~80C
z!`KnVrzA?Hki5f9sU*?XVRsmN!q^|i0j9GzjK9b^GxbR`M_Zn<<hmC)7{(!*<1C5t
zR%#rbbRp(bQAffMnLL=8y6!<edNW)KLk>Hyh${?Lh7|3SCovpGB#dKW9B0Ba{kfl~
zx((_U>aGi%#n5J$!H|SU!|*kU&iA+HL>Pa+aZ@-O2Aw2$lHn=xG)74BHzQ}l;C6T@
zdM=EA!bpotJkRhF!+#lGV0e)sX_C(6Fs`sD@vDqbMK{8@8AkmG8boj_jN7yXMNm0{
zJ7L@nBVPphBe)mFe>8&B162EK?mi985bjAB4_NdeLy|vY<S}{p5-w^zo-#Gke8$Lg
z^5mKE6nz!OYg#duxZ@&t6Q;lT9iAnEcZ@_uoalSTiF^p-BNdx7k@&x(o&TO(5kxZ`
z;<xu@i(x!AQ<61;gpJPsP}w5L&V)G_=3<yL;*=K8kaTiq=E@U6-iY&YC8d(QK!gq;
zb{CGI2qT|GP>_)XhG1CelVrW4S(LhNkGo_9r6MTCcyWd#EI}pTh#^usf>uYo6v{JF
zCW5k=l5$MvQ)-0>DrU+lW0eT1Mvxpqtq7`-84o<QGdOPqvxjhQhKUS43^|5;1QRdu
zq##7#i-7d~5!8s_fsd=sq9h?+lkuboNJvo<PX2{oJltJ70@oo=3d1@KDO#72REB90
zq-V<OF+$lJM$jmNpCcF&LE{LTM9?LIZz5<KaaJli3pEfyvk00;@OcC+BJf;rw~L^_
z755hrw4ds36~Wyd?v@d(&c)NcFiBc7d7B7Q{^Z&+Bq8PclH@FV2Zl*|93hqeRRkR)
z&Y`PcGbGZ9k<Jl}E5cE<YXobn)b15Q?+Dty^mJqRZ3NvJ>A~<jhCP{P+I=^v^@(6*
zrQ{zY=*NWLNALq9eIp<RN+RsfBm-GqivASA0G5mR(LDY^ES0Jr%m`)qC4!+5Op7?D
zhz^Tj$5c1D$7n`|GaSKiWCWuaA%$8EW5z`OXJr^mEn<9p1QQsU7{L@qCNX^e#yy!4
z@+c~KDs#n8tIBjTJ1%iX1ivyeli@6eB+sp9nH#~p2=-XmYhiu_3nIv8BEN}+5iE)z
z)j*no#Stu_^?`;gg5M%o8i5jl8o}=o{6Pjsu#*Nog5?oxj9^m)E2uZ9?GdbtU=<B<
z1Z!xLirk(ye1QwDY%lqByIe;u@oSF8)$E#meFRtQdzG@>LL_g9;ICKiyLY+G5&Rj!
zHj2_&3A?y0jBJgdP$TZ(yQpSGT=~7uhi2Q!q&=MGb?u5^cLawbI2-}(n!bnhBiI+g
zhpqhH2xczgDi(C@CsUts2U$@E80wq(q6eL?)gBdg9bu9XS^I-aj9~0;KFB0=`VT35
zotR4^f4(Hh)R3(F>h-)9fzA{zMG%f4Lj51XnFx#s%m|J}a6AGl0-M@iG<ycQ({gun
zziY!Lu5?k?QJR1P-*Os9c;rj&L<FZII32;s2>vOVRA^l4fSue|H@P-Hy6Dn+!WGxq
z2+l=tK7xNEn3_HDp9rel3+ye%(N;D!V_btbyUXA5T!`Re1aF&ixg}R(RX%?w*X0PV
zP~S#yErJ^n+>GFQ1Uc$+XUlL0%W%IJ<~GN<ZujM<uI6viFh#p=(}?foGCt#H461i8
zg8!(u4HPzTpRA1_%7Dwj!w4Ql@HB#F5j<wir_OmoZCvhtT)-7d^ilMA1TScvCu1Ub
z89|=a?pM?;F1~1C@9pC*Z9M-vg2X8TX}*hK`X90HX_#nfs>^j56;G$b44LXuhw>lE
z!G`jr6Kx=if!qf27>F?tYaqLU90sx)SeoA(XCRw_t#`Sm-CaF<a=z@YDyuyodB-<$
z8u;~=C*E*esNnUu1I74U1_q6E%FJsZpMm@a3J{4;99n{VI+y!48~>Ssf(DK+;1Ud+
z?ZPkV>iQ-wF+R@q-vSN>Mt9&SZxI7U4b)`C7Bf)XKs5ty10@WUG*F(&OBq;QiYsHF
ztbzDed}#yTGTdYz|5r}${WS0MmcDY-gb26d44<AHTfsm@12;!SRWi`+OUJy*2CA@f
zh*xD~<q%h*0gnN{f$9c01H1vjfR9RM3OQd!CA^HHQ>xEzNPAb``%hWd#(n(v{^-~3
z{C}-;zj+W<!=Nj0&!Lx5Nd}T>MlbNxGEmz<ih*4%vent@^imyGR9%LjkBloc#p%X$
z1N987HL%V=eFF`s4-E`9(9l350|5hH8E9;viGdadzM$wd_xTxIQv=NmG&ittg!AF&
z=LXilb-q0HUUjggfmQ~-G|=8aYXfZzv@=lWz2{_z8&$^Dxm|i&16Rjz<?{;PeDHL>
z7uCVQ+>2aVG(7p8ANubmx;h&8+CVP@y$y6S(3!f<z_$jv82H9OSJs4opL^)ZQt?_b
z?_!-^{pU_XcLO~Pd`AvbFnL+obQ12Hm;T~jg1a5x)4<)WDMb1h_})N21N{v=&^<pG
zh{UJ;XrM1EbM+NISKX8qGq@&l^iKu`7#L`Pj&ym|nwxjseGWpe>HaGV+=Jw}pA8H#
zFwekz1HTv;YGAT~DF%ia7;a#!fpG>#7#L|_4E5XlgfTBtN0I$0Nuv$yT$Vz%4WfOh
z2D#JD@vX{dqm8P@8<=Qd5?S)pJ%QnXy!^r4@els=%!&5?k=H-fz%=rC12YYrUz0N3
zzziCiq3-h|xtDESb<a4XIm^Io8ux?TTm$FE`bw|nCg&68P>;=aR=KF6eDyTf0va^~
ze;8P1U=g{Bfh7ihqXCNMldgG&R_2c0<d+)w-EjU^IM<V_mBx*H6P2?$-&u4mH?YE>
zJ1nd=kkQ>4`namxN~)_T*DltzhI*j1kd}|{caM8fnk)J)YQ2FCG}Z>L8Q5rGlL65{
z(7<K`e^Q4V*k@o1jTd>Tf!zkS8Q4z!L;gSCy@Te$NFlP>HS>f|n8ob?|0KV6NS<ta
zXhdibUqv;&7Z@q<Pg=Ti3~|~{VZVU`1`bkllB0`^$lkJ|>yUxNRQm<~eJoe8hwF%e
z4|#=e*QOkr%!Ld{v<{H*24n+@fn&5d7*Gvp<gv%yb%I=}W<tVe!n{!~-9XrYv5u>_
zA~ixYdPS<i&@^B%VlyOphJmAuZ$INGpD=LJz~2VW7&v91#-ym{V|=G+Le=+HTgPo#
z?5sIuUhoOKTw`aX5&wq<*T6*smkeCE%Kb|nc-wu!z!NXe<#E+H&gcH!MF+26rtZ4p
zxkCLG;D+yUm3Q&YevZ3t;D&*B2Hw+xW8jv7$CS~)Z3A~`ohOGkkUBE<F0EP{UH7QB
zpGPff?fQ=v+qJH-v0keEp@By<#k?GK^^HQ_HT7L|9N4V=DNhYNGw{a1TLaJ8OnGVG
z6(cVg4h(V$o4D6hoz3Td9YwsH;-RJKK?82kC}C4m?t_7kRFR1|6Hz8yCSpuyQHnO{
zoj^W|iOJg#dy~r*a`k%R9=FC7OY&BncGp=?vYE(kBHlzU6O}tTW1Yjq{Y||4ZoQl)
z2uYItjwiQ?JSOs*C_2%dJIO^iZZ*<f!_Lw_My>)TJ~MIM#0?V#O(dB3$;1E?Fj2@v
zZ4)Ub3Y#cm!o#d8YND8l(k9B7^q~_<m?&wYl<9o2+d|{$0+sGxW|a~;Jm8K^@$H`J
zE^DG3%UIP!c@q`LP7_s33|r3k-QuojqLK+(I*!!x{`<TCp6rqSa+f%nqk+YDc@$NR
znqWFVpou0<f5Uw<*VX%8fLg?v;7xc<2quzP;l0z6d?sp`sA<A)qPmG+$Ma7tzVGSO
zY&YCPE_-%1bJ5i6J2pPqL@g5^rn%d1k3QOf`!L;A$3$HdUz%udBGp8iiDo96n@BfN
z&qM<g4Otc1E!T#EuKFgnWO#_=Sjjb_?s^&3#6)AVWR&mpYIo@<FV)hNdgii+?EKtB
z3ll9(v@$WtSD(I#%l#Agg^4)@5@SZkkGdP(+C&=@ZB3lX#*e)l-Hxi>$hj}`N49x7
zec+GVo(?7gCcZV%-NaWWIx<T-n|Sj#|FwxuCSE<^gaq%BC0q}kE1JvI#l$xzx-zxB
z^|@{)I#+Pk(kZOpdYJgm#P=qCFwv8`-9#S~x!-xC=W^SAaIKll_crnVG*@qpyKF<Q
z{1)^z@uP`;Ci<J8t^b}sj(Yvbefe$Fh<uKxeOmnnniyo_PwEyEgH8NwVu^|0Objvc
zi;3|jCYTsX!);=uiBZ(v+uTKuYq*IKWXAr4^ir<f3%FJDT%*b6&Z+$#CyX;O#>7|?
z^)IL9e#3Rx$xZF&yWTJ-)i{y5ku_}rO$rlJOiVQ~&BVN$&RSvKcIVX`!={^<ZNhgY
zY6ep#$*+veG%<^jPcwz&b69jPmB7e+h6!K9QWAxQCKj1k%!E5X)F#RGio#M8znfTP
zVzr4sOe{08k|``VaW}7P^<7@AkmL0$_X-okYdGu1)gU+FI=9BeS`!;gY@}Imf?H>T
zzWQ8mV&7J7m)muufw%6!9GhsYH@koP&Ar*A7hpUOpGBQI$n`%Tx7EZpngu3I6WdMf
zFmcetArm`I?4qiv5EHvi?4dbm(#Hbak>&1$;qm#lyH7rjqNjF6t4B+Jxb~YkV4_Jg
zj=m6|UDP!soQ-TdY~qLs*@VKHAeso82$`6>)agbF5|b-4vgaD*{7R}OG!qf({N2$y
zOA4Flc8}L@q)}>G7rw$oVe*}5;+6^9#6Kp^o5(P6)Wk^>r%cSa%^fpw+{FAT{N&DD
z^Oi1s1%HAXcs8X~0pYZXzfGKFC7+>5LDRgHV@dVD9AnNg`O_E9SpRF{f{Du}u9&#U
z<d;lL{MkvGo0>lGmM0<Xx=Jo5@bq(e&BUV=Z*&9Kvc-;VH%;84IcuSbh1(|X(BfvH
zsD-;G?$HWt!DZn;T19DcnRspDfr*DEo|<?@<&foF_!fKk$FxG$@|NwwKQUoNd+&GP
zu6&vHoLNFuyfpEGdNrG4eDP)6llT9#_sAQXU$pp`cuPI0@bAcfB>uR^SK)T*M{<cq
zUV4B)&pmR_bFLqvEo8Bf+d>`-F&1Ji&<xFCq232igP*vp7UC>qv+#BYPhUp#dleN^
zlgm!6XvmW!r-gV6xh#A=g5D$L2hDd8Sv!o&YayS7LKa5n$e!Oq0Sg5!Bv|Os$SeC?
zO^b4$Ss-lw$i1>N2MZrEJck;%s=asmzp&-}DmB^SG^&_|;uZu8J_{u*l(bO6LPZOu
zER?oT)<QW8WvJvAp1~vI9?x*oo#~<XQ5j>iSKIC>Pnxsbv^!1Q#_W|WRJKsfg4;sv
zD87n?s+RNEO>yD!b)IhI8@!F83%NuK9t)g>6IK?gooANN+16gt|H`>yq|=iL{T8ZQ
zNU>1ILJbQwEjmpewMnNSpJXA~!uiu~*Qj{X+_&F7)^dI9=%Qa(I&6LAy+B<HsTLZr
zlG7}tlY8`a)wi4n(e*4$-so<+Ih(TCaj@pUa%FySHMG#kLhBk_lWVSZ=edk(uBH~6
zSr|oqYoWP?&n@(@@STMg7QV0$u<(_ImKIuB_|igq%4?ww4e@+eTMNTZ<e-vI6?5(l
z+c6uKU+`3qc)st<b+E7?F<0;Sq?D-%hj#NFX-qAAW1*{sP8K@T;|rr+7Yj*!xHSb_
zTe3Q16m`(u*XQbH;aeJ`v98La`DtZ@?$j+G`3ePG6THs4)YC#Q3xg~Sw$R%`9}E2~
z^tbT6g&%0#3%L4H?<Km9UF7yo_iujbX}O8}(ZZhjTudj92IVIU11t=*Kz~Ni_0_W>
z+<h+F$g<w@TeAIZVTgs{7Dib3h1~VW*rC)w8av6o@JPHghdVKeA2-4oh2_;a`bTUe
zc}vNpT8aFIRs0wWV=b((u+qXf3*#-!vM}2M-8oLMFx|oo3lmxYQ1(eQE|znFO?(Oy
zPPH&CGqrcuxL+*<x4CCpu)A==SjUHnlzZ-(V_~j^B^G|OFpnPoSXgLb5tX)#Tj1jR
z`1l2ubKg3kJGa<!ZW!s6zjkA|8#DZbOD+6vp<{V|Ipq@hKP)V>@XQ~5;66{$9DXiW
z7LKkucF*HhSy*jhvxPsINo&ZLEUdS%mOSUZJF?iBM;lnuyeNJnDSz*(Gt;#xQ$nd*
zENr!~i~MSG!ZxbqGQY#ZP75O;Y_~xB>(U>iU*t_}{5<OC+wNTf*Nruv-4;IGkNjm}
zA5DP_BxPW~g##8Q*qCVJpoK%U+}S8*<FJJzv<6zZV?m_8vT)SGF&a|~k_FvD*n-UL
zQ7uGI&rzrpuaN7G65^`o(nx14{prK!Ns5kGFsPF)WLPjQl#ffa>+ypoxh=A`nTxKz
z=xKA^Y3_l)^K?&FrX6?OnaDVA;a>|UEu6A&md4S-X$yZ_*y!emX7&Cz+<kCBj+uG*
zGZqLdKH}*i$v?EF(SDGAetis1Rm^_D!bJ;LEL^p4iRRjG?jno0%j73>`Pk<Pw;p>a
zdX4<ND0jocO<J0+`K}X2^ZN>OgQs)HO1OS%>b+&rTc#Y5yB6-z;%_6`#(x&>TX=2Z
zjfDpm9#ZF%6Iysgi)RsM;GS4`Y#}Wv`c?^U%R|QlpVDMJ<ThS9`~@wozjCiEytGiH
zLiFZ&{E5Td#DdPR&sz)cXwkN~C>!rBWS<uM!NT&j+=5N+jW=8kUUDC4*6eduGhZ97
z^I9&8jTjqwY~-~OYa^?T>^5@PNX#$9+2~%|o6W{xw`0<*DtybeuADaFZRE0%+h)&`
zi@N4~;4UY-=!Wr2IzE03PdAMDY~;65$VOos1#Em~Bf$o26tppWMviL>ozf@-_ogj9
z>F}ANV|fu9bKY|UV-oB1=il$+`>f@Q+bCh<3mYwMl(bRGMs*uCY?QW9#zqwzRc(~D
zofWBqjfytP*=Te>LHe67Z=-XH_tas&l8s#@{Qk|{_N7k0Rc6X`qI5MIZX28po-`-$
zi8f}9;5|0<lYD~}I5gC;%4<Wg;j`hlvGcj-i=wVuA3feEoZse_v$?uG@(|Xvkz}Ku
zjrul{ZPcPZu~ElHZC25wJc;z;M9KG2k2|{RGD#}w=i%N?c7CtZY^2-hbfb3vr`$ny
z{oKGtLmN$OG_{?R!5dLgSrZ$Rq;vd*vgvd%^qFO`&1^Kc(ZU8@-gNE4eNH?nx?N$f
zk)AU54nJdva~avnMr#{ASdDFLw6*ayRb-=`jW2BkY<y+o(ga_78y%?AUbz2`_tG7@
z<a0)Weu-jVc{<uSv)7a4_qLRyy=Giz8(nR5v(d%IH#W|fajx#@7LV{-8z0*9WhV07
zZERS}-)-%B-i2S))%Bf?o;G^f=xyT{8$)gMvGKi)3g@_iHhy5XQT73h^tJILBmEfm
zxABvWMJ^YGQCI%w+NRS^_aGY|f9EL-w()Z&A3}v!=154T4YM&kv*gvj*b$76WH^f9
z=*-kHjEuE0j*;;U@4B2{$w}0=Hcs34+r|_dQ*HcdV~dSxHm2KHYU6hsGi>}y?rLMM
zjhW;;Ha^{q(}$w7NoPU5t;gN%qn-YlXJfvNh14ACy=5tbruarjCoZtDd!}<2u-L{D
z8_mx1lZJ7XPw;1Fac6w|Z`AodzD9Na4;#yDtg^A%#&X+v%t%>Q*v>Oy<DxrU+_jSW
zb_7>8-nGWYS{v(W2yColZK0>oG57g{tvR|8-e_YJ6K-ZW_)piBPObtsT+{pW&9i&A
z+Sq18wV~PAZes_n;WiGD&(qwovB$<<vX;t!>dv~?O}lQk-4Va8gzGPw*X#LxHuh8N
zo;g=dFUtfD4UIp*s#u=WxsN_<<A{xr4T)^~*CWytt{zQmNPd$GlB*YWu14Jd@QsUb
zvJJ(iLtY%es#4DNRd1JWBW%O6VcUqXG7a*;EY4&<eJ@~A|M%en2f0(7T^Tlx+F0;S
z+$kH!Y&<*fE|nT{!p3ppy<-nrd`X!*$x7HM`RE#eO30sIIAh~1Eqxh?&A>Su|JZnJ
z(<2m|xACuy+cxglxM1U=jcYcp(|oaUnby6!DObrc4tpA0i89XeSIFkGPJuada})Zw
zZrHd<uKP9jFq&(zQ^@g^tBvHnWz+5}&J_`byEg9Ict8$zo{qA`f1ld*%2}G$zs~;9
z#v>;Abe+>?mh*JwDYb%Da++l}o|Bu|cxB_Yjh8k~rf`LtdS4Xb4h?taNN_A)C>!_2
z##>rsK6iZY9V=}pl8Il>@O-3kEY7(y5S8I{<Dxu{PILycWT53(Zuw}Q!q|82tQm;Q
zK(P!I&p@^eWY56=qU$}Nr6{7VQSOj)P}m?yk_?k>&m~{D_mYDG5@Zxn6cCUgNK!I_
ziKHN4ASX#82q+Rof(g23rhBHRCtQ+(C^;htZ};Jw_gw$`zqM-Zwd>TWQ>Us<*Yx!C
zR6VYutcoHkimE8BV$)BBi;*|YS6oF272P5p-Y1;h=DG8Vx1@?vDqh^>tua4i+6<4{
z(o;soV;tlQd0Kz#eDA}I@w%s+v|e6C1tAbTHzSW;)cb^riYm<V-X2ZTPhBrp)bjjT
zKdrKgDk>VNaH^=PqMC}DDr%{yuA=*@!c)E}_LPdu+x7@Ff80|;#cP_k!c(5wD(a}H
ztD>HYEfdpt7W~xy_C4Wy3$yC0;Ll9=-ze%mVMm}#g<D0s3Pr_;7Wq8lk5@%TSNk^?
zra!+*^D(QUkqUg`<X6jvDk}fu<yT8$qKv1o-_xdbT2mFxRK!&zRQ^(oOcnD~e59g<
zik2!~R?$yImWph#|D1{(6|Gb}t>PIKtyQ#9(OyLd6>Zs;=58ly4X1e~7EiNW_Dr=Y
zn*MO1yQ7LuDmqK)>Wa$ejT|dF*%8=<lc=JHik>Ro{n~l<c6v7z&#D-5vvGG7<7I6p
zr{?WS-a<L)y~IL?3Tanr7U`|RuX1awwC6c@D*CE;K}xCIN65Q}-7_nBc~|+8WF7rH
ztMaD3qT*G_&QQ@`#Q+tfRJ^HTAg4gZ>net-7^Gq_eNgQ?(wWkWx5nDDFg?TmtYI3a
zVz`PapEzGX=pHaCZG?*L@hqk{RE!kf`X?u|qg9MiF<r$wD#of9r(z<5bDL+=dFOZ)
z6U2?T7@6mtOmA~Mi@Qj8vGbC@wAC|71#vPP5<)&z#k3UvWrj05pZ%hp7A#blJ>>wZ
zcu&RqDn3*(OT`CbzeNwvoN@M0@A(R|Rr`U}92Ij_{PULQ^2ddb4Y22k2?re?tC+9y
zIUcsCSRi$ms937v6BP?pEK;#p#peuw2}M8Up#A3ijPpLqQ_x$S)!Vr|-(7SLsqXoL
zP4BlyX_<=UD%Pp^l9$E@MOUa;sbUqcyZPQ{ra99~D63WY#(3ANSfkpH*V3*RAu<LY
zyO?J^M{HctjT{*j8^jYDygD>L?<C)^?b*yQ{@UGA){3uHY*lek#g8hssrZI>^(uCA
z3RLW1MHRbL>{RisiiSl!hq`#iY_j`1Omp)Vj?X|I*F8kuGwe~ZR~q_3u-Lg)`&8^#
zv9EDK&nbJMJD}nbp#z-RLn;od2&f3EIHKaHir-WmW8IC#ei946sQ6h3-wb5+JQF;>
zs`#R0QxaoB!54OUj;l}^w~yQYXrlRMS-YW-3SGr3PdK6~3>9G&B^&39sMx$VZNOt`
zr{!+h<SbwF)UV_r-p|goRK&!>pbpuzkW`V&1w=!A4JTBbRFO|ZehsHooEEjaD$c0*
zoq?p{vWh=coK^9+iVISDPQ`gn*4OSPWz+r?$+yk3{t|MpiEaO)aQ|h`n9H8>ar>Ff
z6_H$5aYMyb;lDQWT;ru(+V1;J6}LoqN5yR+>09lUeA{u`8q)zK?H?8QRNQAIs7TY`
z(D;l64@EhTh9bp1&1$4sOVduhl6LEueYfMD>)}t~qh>hsYB+w{UhxWOD5#;lh6)-A
zX(+6rn1<q--O#;Ng^Fk>Dtt@TbUw!6RZv31*Uj@irr~kTz9>oxmJ%#2SVps#O%|2a
z@QRgIqG<X{JKbg{Z#l{(jrrY~zr6Pe4HY%i)KE)9B@It%sIK8D&Avb?YpANBnuce7
z_f*l)xTNxl-`lrwLAvx^OMBk=NUDa0Pv_bf^28;cdUx{F)=)>o;SZg4HQX(k&To8F
zyV}dgONJLt0}W0My*2nXxHPym<Y;K6!K1;ears3<shh5$+_*G_?M`zpeN6FbXmHh?
zIoY0zMs!0%3k@wbG||vh#w1g)nTF;<!sDD;(zB<Km#>kq%Dnt7vP7OOxVN0``JlBn
zw${)_LnjTLHMG@`cXnF4M-~E}KAS!5HFRLqm9jNEioDMn+u+l5Ohb1KJv5wdo7P1`
zHx18f=qftvo7i3cD4+dgwfR~5^KsGl&SrnOdurg9-(DJ?)3D&0_wQwyg-a<U&ue%=
zD!!?qkA@dD4AJnqhQ1nJ((tN={u*8ug?^kz4a28-x{pYE3TXwWC>M*`;W0qNKn;WF
zM#ST&nEo24a-O|ll2@MW87y`ARDqJA8ir{Y$tix<?$mH88o{=Td6LzXHzaErt@vP#
zyNQmXV-LNdU1_5=jL|SwO1EbeY~8%zIN^5``(FBO4HGn+Gx4X1i5ezp*s5cjj>#IP
zXvhvCCy1#Urg7?na0M}4!#j+P0R9PJhK89MItI`wfOj>#r{N?AT*LbsKG3jA!)gs5
zYM8|s)9{&w*&6Q5_RP^RmztF_e3#twG<?MI)ZojX`LTwJfBWZaII1X@eF{1Ml7Fvn
z#wQvUYFMOUv4*q@{^RYliO+Ot#q`_rzF&HHKG*Pth9w&QcwOP9QtVWo1<Fzl%QVDG
zmRqi2cLC1|4R3e#R=D6_DcQM;o%_do)@WF(;TsLxHLTO{rN-BTy<clsuW<uFe5Ki&
z3NrXNY9MZ6RJXOWn<aaAw|D4Q*;`~J+2WZpuC0v!3;u2F@_R~`3;tmj{5v%4)DY2N
zYWS9#8lnq}9MiB%!}l5j?ejl=D$i~Wdo=v4*>At^)v!+t9@Vg4v!5X!l<Wc8ykLJd
z_(8Id_>aO52_DvPL<n`>&1WxAKXG09zzz~B|H6K0_)VIi&5alQk1QP5ph_)GFp#nk
z)DTK>U5LTD=ktWQuxzluOz{bDR6~}c<Z7@q#K?6et|6)6rwe}agh<M~WN$$nz2HBg
z;b~t+kuQ{+ZsoLwGaShP5Ww%8GOm*W6c6AmgOENKD)6s{KQ)|Z_ch$t@Rx?aHC*AC
zYdBOr>w<>MRO{et?aaQY;gSXtrotO?svpa$cO?B9?Hf*p!9R@um9Fa=ZU`a2Ddd)h
z+d}RL-WBZnzP<7LjnYk6ar4{Gd_fx<k8?iI@K8gZ0MY{XrCKClZ=&c3pn#CPf|TS7
zAiwbI7yQf?6kaHRQWyP&1NJ_U-|VorTP!L@9xs(%{i44_03`!>Jb<!P6FE27rw^qA
zC=)>W*RviAVCImlIYYB9o$w7Gnw30he>(5@y%1CR04fB~Fn~q@JP|;}0N%UR*cm`2
zu~S{}$p9(`P$ht>0aOd%Qva;RV>16P<~e?^IkD;MHh(IB8UfS{pcco!W7g6&9v*X0
zI{;#X0O|xlNnOd-6Ra;1mOkjGu&DgU1ziDnZ+hJUct`>`UD(B>1dyKM<9M2UVV93S
ztaoMvFmI!q*~S4h2_Q3o76CL3pjp74smzQ1Mx&MH0sA@XkOgk?g@fEJ1NgjZW*g~I
zRsh)n<Z!jQkliYP)&UH>kbS3`a_P8x=AZ7)OLCfI*+bM;l-mW+K7hNIvpNXA|Cf)v
za{x~V@MQq&19&EYE&;p|z{mi)2GET@1kfh{?!5hMz}{1+djOx^Y|hW19s%^^q`d6y
z6@Wj0=L7b)*XIO#2jD#IW|o_o^B>myM+rAOWnW$l;MD;7izj^pc!>?ocQU;kK))1!
zg)RQ-rtruv_kaL~1n@e06u@f%P%<b0hT@{^e8j;4taT~ev2ADo!vYvi$66`ed5>|<
zJtVnP95;Cz5wQ1OD||6~Q~+-VFgbuJ0d#jNLl&p;@WjypjFCYeD=v)_<XDXt@|NJ+
zf)fImm@1tV!29zHP;F`e(*l?q!0k8fC1rX5bLem}*E{?O2;e{u?@UG@mH8<k+4Nj5
zg?%pi$6xe+5Wt546v}DEZ0Kuc76<vFf3_fXX4O)vO>h*C<eevteiXpR0n88J)R*oB
z0W1n&aR8qLaN>rSl7#{6s_b2H#9rY)Wncuj1%!Q7e#T(SV>`A)va1D`2CyuE<-%7A
zt`MZ!oW}MSgjJI5TqkXfkhOyAQaUf>!G-`f1`rP*5x}MZHV0q?@ZwXBuL3w+w$PRU
zzGm>`_niJYeJdNv@BJo#?LxNEpN{F2><D0I0DA-2#~?qM{w<BO3jvJkll|n$^e_8l
z7xH8gzYkzH!?I8Io&ailvij9+PCk0IbAJFOs(XLskOuIBIChY+k@E1z01nX;R;gn5
zo$1k`21f(<DW&tXkY5C=*Rs`q3*cA)$3>zFh6J?$0z#-06jHTVnl8kW=h)!@BAoP7
zStb{aBTkER-6SI_NFjIUiv>Vr=q3Zm<=P&=ADlP}*<7Ile2JQtPx1PCwcMC;`DZP0
zoetoeNTV|WkdvI{n#t?y4bQaz{*-pl2k=(_gHG7@VEs$j&$z1osr(&4>40(}fQwW+
z(u(|20GCC0MI=`l7}Iiw7RhGm^#E>&sheDczjNLZeoOE+=jccK`5XT!&-cCW1#mxr
z`av`Z;@<!sa8V7SQV<UV$P={x?959$EeNhld4tFogd>PLr}8jM%pXL7AW8>OCWwMT
z6bgbnd6o>Ka1cd;C?2%;#VtxxroydLiv{f+L1+Kq>+MmpJW2_+SVZCWp5uxrrGhBc
zMq%PUsE-Blcn}EM8*HW(QOX9fdA*}t5aisM^V!SF!&Xhp2f=+!nJNVFgm7+QI^d{}
z|7bhnP@W9hFIra)qDl~XPp4N6qGk}af~Xcmb&)(JSVQnu>3Uqa4sCZ+vvv@5MOa6$
za&3h|rh1a44tE#%t(5mz%OYIp+(G<Omizs|D<o%FULFHPN$X*G(}Pfg$iFw8$rnUM
ziZ>L}NU(7bO;YlvK{ONIJSE8tqJ{95f?0ycn%ASjRzb85;^h$fh0rF*y_=9HgtQRa
z1<^i;<3W7VuxW=NItDR~x2!>Q3Ziom{ve(Y;^`os3F2TK<^F9?mms<Z?QIzvwR3P%
zx&_fIi06WMHi+&)^a$ePrCHqDwr9}Z;kIV&*6(^0N;qG=gE-eMdt`2J?uN?j3qkY=
zVnPtN%PTJi(Km>GLA)X(#)0MNy(IkQAbc;on0+;f{y~fi;>{oi1Tip(*Mk@u<nf>w
zb~tBH5QBr*x>zAE8u2Z>=&w33V@MFY>$WBt7KAo1gXxVRm>nL(2qEVeD9nxwV$(%G
z)2&I_qk|X|#9K5wFk@^GS%K{FjN8fCR2vrrZ^lSyr^Df##omm!8NCBDmh1M>6%!eF
zj6gZYVsg+v=VD3_uQpbu3MYAo!}zjmY#z^nAZ7$HlVcdfdqI2}#AiXgPqiRE;^+nO
zVGy%|n9Yl5hy9O!{`sBA7d44<IL<{}a|P!KmTBvlFNE?1LZ<!T{3HnO$+M7SvdXzg
zkYuqCzPt5#5MKoGWf1FwSRz$c1+iMlQqKMl&Siqj1y=;IQiyGKuzO9aE$-^Z7S{%`
zE+wJQ8-my<+3g(Cp#68zg$M1O%s0z|@RcA}hAl$A=6ng+7Q{C~ra$dqDUnrn1hF&a
z`L{y86WkTV_ng)s_5`svi2W&@eL{$gOm>!u{09bY5I+WSD2She_&JEOrCf&@)u#Js
z5Jxy)lWh0w{az+HPrvA8=`TT${1(KokJ8W1(`7x>JSOt-x9!7IREAR!fgplGgxJj>
zc(AV?gb_rNBhS7B5eXt5#GImv8ALP)E6AMzxLa@b%An`(Qkj!`WG<-bE#4t(S9;dK
z!I@M`1o=hJyQfX&i6Bk}aUqC{L7ZZv3%uup_=_ZnGm`yXaQ2aG7X2aoEUzpfe+nwi
zGFdbs&D;5yXIZz*zq!)Z%F2A`>1B8>1#vluE4=)F%)Z<@lbT<@;XQfAOL8rU>p|RL
zkOy%ui2Fg@;<XvXKU@Z%NWVj`&UlNq$*k5R^KK9aF8a^a&Lnng*ks<>EPhh|8^i;y
z*jyZ*&D{Q>Z}kafWpz)<uW~-9($o<`-Vhpx&?IDE0{KFyD<ppi1wtqoLZJ}Kg@6zW
zhfqX{N{3K1gkm9-lx%T9)-54qM8M7PW44rJ`LLRiRwjhULfG2D@puSjQ~Ey*ve(`U
zD>KW7P$7gGB7Y);iXl`9p=t<~LU>Yyl|vZN*xnJe`ezwLrg=@2Y9UmY(x*abQP;zR
z3@EQTHk-KThP!46wWPGRU>(8R?`QDPZ7S50Z2b@#gy0nJ6?6%@1*zr<*_R0kQ+f!B
z$bG5Oj1U^8c%u-g{7AED2w5RyOSV}E%~SGB`YF6+O48$QdQOUW453vBt-1b-q`hF<
zRB1aQj$dqNItXvpz|kp$&g3CH6GC4Rb_t<t2z`W8vs(zyrTDW#x`)t1NKe6DAp|rZ
zHHp1bntmbA3%-z2qt1&d<(EXbWv|`eS3-C-gp(nh3ZXxzDTFUVSQ5g(5MB#mS_soa
z7!<<b5XOh_RtQ5vcs+zsA-u_u_})1*gke-Wt9;>Y%I&X*Q`zv12-%xszY(&xzh)X4
z!pPS4Cf+aQS4M|0CWNse#0U7eo!7V!xED7Qx0`O&JB!ar-VWK@M^6Z0VhA%@Df|jN
zJfAX&{9%(RAxvg?7qbt-9^F5an?Fwt;f>SEL#Of%6+-whWPfqvnP@XZSo3rG`ysp=
zf<LF}dxG4J-1%4f2b^5^+7z_+YMvFs>=5RJkS|^NC<JbGJ~w1<3ApZaWgds<K>7==
zjE_amqWMA=gz$-wg@TI&7YlwWNX^fLd@g7dP?m<UEQCEF><wW#?ejVcVOt0*Ls%8U
z#t=4zu$m5sur7ozsaY>`Z3va~`kv3@YwRe@9#v|t%sZCOQyA8VFw^1NAlTy7%*`Qu
z#RzfuzGkQDXKo3B8?L_5smS~X$_oz^9;pDO={F&458=BIc7?DbWS?8HGlXwL;2{(|
z%;MZDna>?dr;tZNd>_JYx_aEs^1O+GMYE$173%B@VSfn6Lr_CF5W){3{1n2^ob*mb
z4u<e!2!}%GxWmV@9u7EsheLRf-t?$U#F3DF5(NEcTaMC>U)XvGzlCs2N{>lHxx2Ct
z{F?6j&EC*}K4=V4h6KYSgkT7v5F#O%A?RF5eoHT^rW+yqjET4J6bp-yzOUGO!!kuf
z;4=+wR9i1z%nE@9FZ`OG2q76lZU`qru=4mgAk-XrJU#qtI!~{7NlWMH6{kZu!&M@L
zYaz^aD8CC{6#PT*YzXIs{3%GC^CA3|;(rUdKv!pYSj2QmB$q?DB7}#TQg}Ut8}wX9
zT^%<=_D+mNbbMMg{T8p05bp4L38B;_|AP?z3EAg~XY-);Oa6Ny+?VXXbnl{l>^M{O
zqW@tCd32=daOfzcgQtyCIj@caItuD`#e6#Q3#oF-_sJ>W>XBX&%D0{J71qI%%9&`Y
zsE%Sfit8w$qoR&VI!dyZj<Pz+=_swEjE={2Jg#F_mdka?Uw(tD!zKUSt?v2bTHRRZ
z>VL@(9p!aY(D8(hO?xxj6|H}8aKq7ST^_4_)|jjUhnsHt&ikZ}$~w2NL=7EPbX3(*
zO-FSd6EFFn7~SaAN-mxWTd`Zq`Ir2G(@nNs^4HYyaEP~-j@tC(UiQ4DE@peLYdm$Z
z`|u@yJ$7?~Ge<`&9rblI(BahK(lNc2Big~?*6q`0JUX~37WY<)S8VDPo~}cYBA<>%
zLNatT6tcV9|C~_6b7~svXd=R<I-2Qdt|L>jS%NKev`kfDtw$+4C1Ja*b+plOd98D^
zj<!15>6oEorjGVHI<VL4ozr!6)X_=DP#wc`bk^}Sr$a|K9fwxBCvJ5=qvP2#=}cXO
z)Vtt(R!4UoqqaB)>*%55*Y~}C9nZ7-fB1TGj>Z@2rQ<n~_ZFl=ud{_;(9uW70Fk_y
zlK0cmSNKaQ$;)&;OJS8)bkr*DdNn2QuOlPirkrV@j@Lv!C{_A;tnd(V>2*Q+_Hde$
zTM7@?F^LcAb&SyQhK`Xb{c%)F@i%ph7Ct5=8Ow>T*5pxJ<3;$E;M+PTq;w|g;DbBr
zOwln_glZih@0m|tP9Oe^XPOQk3;XtV=Q~owQ;<Tp8^5dLJss<HY|!ycNALSOX6u+E
z3Lnr~Ti=I*vlzEYC$n=?ZFvmmJQ|ej$AYVL%-69%$0s@#a>PWqNboZqpX*pGobG)p
zHc7rnNtOy(!azD=k2BLU9jh<>&)BZexofLEr%bH7TKJljWUY>M!oN&OX14Qfq_C-H
zlStGj(jV2`bk5DF`$}SOi;k~_EPKLB;Ws+A^D;5uG_XVGL5eu2<3}Ce>iAB_ZXJ7g
zValn^yL9{LYHot}y$&7%&eN9n>e#2_2M%N50{a=sMe7~V;r=@>kF=&557*}5<2<98
zTRtA*#n{1H*FZf3hlL*zJgW0$Jp8QV7ae&G<TLQAj^A{g(eb;EV>*uO2<gyus5&$q
z0UbfzK5+d1nhYIb9Whae=rDCeby)wqeq4M=2qtyp>Nug}q>fWMPXF(<{?Kt&$KN_G
z=s2h2PaWrV{KerqmzRAc{vYY0j!QbO>$t&T*KtM1RUOwv|Nqc@l)Wkb{Hx=Ej$6WS
z>$s!iE?06L_jKI<-|Ifqk;g!q0f%Ax^M6hG4HPg?(Lf~w1q~E3@VJ4p1_~P}VxWY9
zk_L(zC}yCzfi-e+{XjX?e!CncPe~~Qr45uZ@R)&h7t@Me$ov0CHeJpD43szQsb{SU
z2A&Xu<o``i8mMfbn!yuB?3v}6;8mnbRl!G=Y2hi!)-dqw<-F|*6{u;TmVs6m(`KD>
z)|R3=|Iugc)i=<zn0+dJ{z3)#A?q^WHt<InXT$ck6&?dV0~v<Ry@Kh2iXhLtZfKy9
zfqxA=FwodQ69eN6jHgWl&FF)H?gpA0$TZNxKuZJROa6m>viY0HQ-^$62C@zCeBP-Q
z?d`{N41DyYw==yp@Y$m5)`BE$gtQfGXP~{14uTy8snbbF#tYd`8$2ThUD)WREXQSk
zHv^Y0`MU}p-<)0kvVB-;4+A|7j5ILHKraK&8R%!=6$8Bu_!$qQoi7@Ap40k4xfcxd
zF|ch^_P(gQbB~OC6|&QNWJIIxz6M@0@G{d6UOTa;zuV+h!@hGK&Yr^G-@pI^0}Z@p
zU>L0p^9?f4^>6nO1FstxEWCl`rliZr93s<D235Q_37a6vUhW;i@nN9W@lNr0=T~jb
z&xm==^Zzv8`KE!<2F4iRl%>~DI;p;~oRQBI*Jb}(2HrNX+rS<J6AVn`$QbzCK-G7h
zlMK9X-~$HObmwHjDF&trnZ}S?@1=aYWZy9`LkJ}^4ZNG;?-|^Q$WP&i24)$UZ(xCe
z*#>e3WX>@#m#qxQ{42dRv-3EcBKNFwGt0M*KV~3p@>JgJUOT$^C$uxH(5D6#8eo=b
zk%7g+U8C$Q4@Di5<sG-k^M!$x238qZVqht+yQQvW29^tHb=l7>(+W<L@G-ZuRvY-n
zz;<?r)_C0+_|m{v2DTVzQ_HtraD&0m)@){(Hi~4E!JB#KX5o#NdK~4`zh)dhaBt%h
zQ9gaE0q%i7LJ7BeSoWK;!@w?H*B87yS&?&e**|MU=643ZH=Uoq;UIp`m0^RYRDJJT
z7oB?z>@%PnFbwQBz@H$G8u-bue-Aof;0FWwPdE=6cyqDyN5MmahXw0;lp_X)TxrbG
zpAG!N^`x%vxPi9keZLy`joH@}?v=+a_>M8=%jC?u>|cG^uNu${1Plb(_Y5UuV9Eh^
z_5pWrzx%Tb&TsDaE^@&B!IyW`VFM8Zrh%w|TmvV#z6H`P_Se9M5uTmDDluMh_q_wZ
zRhUf}NQ!*#Wk0hg4V*G?&A@fTej<0;zy%>^1b-L&L-4F1b<P?1)4+Mj{$=2AA^g>z
zMIHAjM5c=(yky|Afhz{CN;a)>ITrC;VB!stklZx*RocmW)LSXZZ3A}<erv`*BDtTE
z-xI=L9v@kIXdq7*W5XC1Mp_t-Fgk?MF^s%n<O}2RFv^CJKa2ul6b_?E*#1^hFpNV(
z>~Bf@O|Xzi_z;i36ci1k>k3!tFp7myJd6@yG(YMs8AhovpZ&Uj*WJwWPY}cxk9y05
zxsk8$u`qg_SD47lg@G_yhLL4C%ZE`R48A^5IgBU5Xg4^MsZtp3w=yfT#g8%%Zu6R#
z{ZEELymr}NC5)<U^ol>jky$N_b$K(Zhw)SxHNvRLT48v?s1>#swEBXz1?vdb6=YF8
zAw@N%fe@#lD^)uCVli(R>5^?0h9aa<s?--oMv6BS2WYUdNSdVNO~a@-<$vBCZ5~FZ
z$XldJcQmyBYMK?sgfv%n7<}-XBiKr?wO|{;wu0@#XfK4CGcOkG6h`MTo(ZFi7<@X+
z_k|Q5EnV%3i)Ooq@#+z0pD<nwqZ<dXobTB%x`)vt%=bgGn0klNGsSy_u{>|~bAl}L
zr{vEIc_EBCSNxRs<=D>68pY4Y$yqOj@p2gb!WdMzz$+Z>i2MFV5C4hqY8d^)7?A4Y
z5FrD@cumM4!NIB0J@VJ2*TWbpl3`&C7cxTd4M9i6w2?yCsSa2CZ%XT<1?k2ZA%m{?
z$A|G&7{7+`TNrP1NW+*P#sUWR4&THu-Vfu0FeZi3x|U~h7*oQS8b*tMyaji7@(gc2
zP5AUMnBBM2`%V}$L^4zGUBUMRS)H}$$%kQ_k7mxIoh$z3SNyXX!}T-g2+kFp7sf|I
zJ`USYS6I69cslVD&R`&IaTuRUrxu2>D2y+wE8qRw>ib$bpM~*x7{7$kyF!yM!dMc<
zmN32!V`&((=Xl3X_AC!$neczNX7yU)S`o&|Fjj@pW~-ZNa~P|`SR>iBVQdhxE>-%a
zko95Qo9KL`zmfMjsnXch!W4cb*?pN!$hU^^O&Ht5a87b=3uEvk=l+q+cZ9JsjGuVP
zAF_>n8^)e6_DZeq1a}F3AI5GW)H&HD-@X+8F^v5wejtn=Qv4uSp)x)y9}>x7!6T{C
zqr9#gcv$+gw9BUH%%|7fQ>zs{7RGUoQsF|shoOd{F$NxZPlgc)BN#@KYeG{c6o$?P
zZ9qmm41*mRnG+5p66Qbt(hWYdy5e7b#&3oZ4a4FZ)!)Z-?24Zl<MpN5Pk2s^^(4Z$
zy)!%ail0A@=Z0}23?7b2<HS>8`_AWd7#FjBXTo5*f5lHe@-NTm>S^b~_><SZi54c#
zhw&FjEP}le{2j&xUeOVBh~Q!vm%^wN!IKeO4&zD~rSEz2MsStO^7rn$Vf@2r+3vX(
z#`Q36gmE*BTT(>4Ere>^T_^IG=Z<JH%XCkQ9@3vM-v`D6$?iT?h-#<v+m`c0Y-CD{
zz>(sat33H4$R9z02nt3}PUM9mC>%lY2ueio=P*wZ!D50%BcMSF@t)_Y;dY`YOeG^A
zmJ%#2SVr)%2p$*0(y~I>3q(*pf(j8lL7SzsDn@uzoG0IK4|`3^)XZp^UO9p)5j2UQ
zX#`axs3wjn5mb-hsR*1AxFV<#u?OnxHaFd<DV*6_LTU@viJ)#uUQbAU!3JWD%1rJE
z7c_W9{`oCWx^$4EH0D&H=|`L#A72C+5j2dz9;@M=#zGp28nYxc(oDM6GJ-52&8d^>
zb&Ci-n&^4Z){`AUP6TZtXe&jn1X~NTt^aq5+5L8@x)gSdpi=}NMldUa&JjEv!RQFa
zMDR=mT_PA9!H@{LM)>X}`bO|l1kXl5uU?3tPXyhCGutDAp2B;jB+m)y9f4oS^MdR(
zm0y&>*?*=mIh}blN-syyPjnvn`HFB`K}dhW0fGY~cumM4LF&-d>%xacFg${xVt>x5
zLTqRR{ro;>WCWu`_(lXhCfk8cPpClhri?S)7#qR32qr}^nE^1|GhT2)1aAp>Tadx?
zC?+RLmQge%f~gVAh+w8jrbRG4f_EZ#r0@t?r9{EBcO!UDbl#7E)+nKz<b#wcW@kq*
zCxR^zd>z5u2<AnwGJ;i{-v~aA;L`{`i(q~P3nEw;!J-I0iD2>FVvj5^&KczNaIx5@
zHD>AI=W<zn5y286)TeN11S=SIEz_Bn30W@q$O3V71ZyH#AHjwQ)=I^7qQF*Ik*$0w
zIIX95V+5Nb_)4;@$kNRzQ^PvgSt@UhU>n0&0`(j6DOrvR={q9WE~Oj_>g?pAQ6c?X
zLH<>T_x8IYNcQorJLmj90^;rn7~~}TBG}JBec9E-#DNHYh~QoX_aitM!H*H-MsOm+
zLw<2Mg5wdW5gdu&Xav7R@M{EjPb)t~@G}FuWd=`BV)j5GW%UB(H<3_yEQ0n8GDz~8
zzPv{jErLJ<W(3g)f)RuwFd_&umX0cV1ZAFVlJTj1z!QzIRwM$xW5Dy3<}9+ay%#DL
zr|c&s9^sElHenj!%t)|b9JJ5uY}H9Q#FG)6ir_{BHzPP5!I=pD;*u^^evjaf2+oSn
zL(>(ebG$+qDStA~(-jh?^AS7}Uf|--bv}Y?jOv3qm$?2%aD{F!Qj`W6FTCw@*SC8;
z`n_zD>k$yCuxg<~aw~${GCnkTM+V`pj0ua_k$)n1u|dYig%skyoQMc2ny6&rVFY<h
zlrT}!M4AbQiToxCn6`%;)oZJB@|yNg=QELPqI~?RQqV*p6GcrFGi`%~O%yTlgI8(z
zg+lysvEutMhlf&m+!@79P@lvwdY3X$+C*6s<xG3z%W&QcDUX|Y%*3VvzCP_0z7gH~
zjKV2nTQE`HL<MR0IYlXd)&GPEc7diIP4|-~Dw}9v!fB$4iK-@Qn5b!@nrRQ(Q{sF+
zS4MUETt8!hFJrye9^_gkYMY?Eo{2gpJ}IcwH4*bEbbzJQ<jGldxIVj<p$ze6xJ<ZB
zq?=HrmdAwG1YaX*6!lfjYTA8As}7EApNR|;wBOjos7~n(O*As?X}zLkJeup3ALg*M
z->3F3(M?S|=9>vN7v#RpElp&ZFigC!yR%K?&@mGWO|&x6+Qd61W|(MJ$JfThkD7a`
ziMA%%nP_jK1Bb4qXR?WoCOVlIVd4!FooUv@K+`@4v()~=&zN}GL_ZT<OmsETP2|s-
z=q}`wx}F{;dYX7%vfQhomx<?u^G{DFR(pF3rzyXQmPI@yFPP}Vd8d<gJ>1LjB@?^X
zy8BYCYZDSG+`dro6%((T=x<^GU%4-yeqo=7$}D~7F;DI5>E9mk(9~-t262AHe(@)i
zAwvG_>3dzsP{Cn>!v!CC&KFQeniy-^f2AB{;!Vck=NWWkw23h$xE-0}w0G*u9wHUS
znHVpc<ZqdHTlfUQiGq_-r96YFpwlsh(Q@DZF@0+N^l2uhn;_X+Q6aXt>VNL4|FgC3
znI_&f?Y-Zb-s6;+_`t-6CT5wKYhs>hA3Dr;R%dhW`umvX2=V-(e8g+P#C#JAO#9_+
zo^8!voQX_4=9|a^%@>*WfmS;?XlI>^O?+zNGZUYi_>uu;;tLZ?Osq7q%EVF=%S<dc
zvBKp3Y?<@iK5hZQ*T%M8@h<3<J?M7h&;Vt%i8UtHnpkJTy7Nr=QNEHlJtKB2e7yO_
zRsWmKGG<-%Z!ocu7EEkqEScDB;wuwdOw^n0ZIZv<RexrvqcZpfUv!$QXMa!4u^HP;
zd}Cs}i5-m0hE3M}lfLe%f8ol^);rvXulo6G)S8aoZ%uq>VwcJ1KR9aQCq{^gJzOG8
z95k`l#6A=IdHHi4DCfFW!gczpfAFF7_K_B|-)-RB;JS0w|D%aRCJvi8!gcAIzxFl%
z_e)$^*Ze)N`K#QmyYOUVlym)T;ujOD3C+Z>CVn$<%*1i7U3Hpl$#I?hw$Z-}olI4y
zHYriWxqWFyz(mkQ$b@d<^=tlT_j}mEc4++3kS13j)Gzp$w{O1mFjo)LeiPC(kzg<g
zj|y6XF%xki(_IcGYR>KK$TjV^l1|X)?e3E%PMJ8(DK_zkiL)jeE_4o^<@{X;ACgdq
zocM^GH}Mx2u9K*B5`UYxz$s2*X%ZJrTw?d*I2y-g#v7|!Xk_84iEAccp}d9bCT?)i
zw(KS4rioi7a-%pA#cdOJIF(U+6~$c>|1eadSRTba6ZcItjiOl;|C)GUqHz>WqI_u+
zd7>zC-OooiX;C<$C>h0p?5266SiRE4R9Hy9DDn#_kdhY^Qb=&ZH9s|rL{U_-#RQ8B
zmiUiCsVGWEQ6`GVqVP&9k4I59il?He5k<Ku5JjaZo|K|_*Zk$9s381_C@M;#V`Yx#
zFp*S_qDmB1qo^i2<P@&G<|mR@mn`}B*Zei3s1-%MDC&!_b`*7l924cbDP?9GMB$Vo
zcNDHDPG0j9X@rD$>zdya1(7^G3MC4klrq~;NJbP?V78IqBOmrGcSV-Dc4jwqE^{@H
zA~T9XQ4EfvMHK6oxy~$g)mY(b8AaXe{;VjnqsWP(RTR%f(L0LPQM8Goa}-ZU(N=Ui
z2vWJ7koHluyzXbVqhvb?_7n+)&qUEJif5zflB(5}txIY5l%!`AJ%l%1;bIl0UQtXG
z;*a8aDe51^3sLlmqMu}6Ox1lUioPj6@4EkG;a^JKSA@TsD(yZmhn5FKF)$^0O-QY}
zz9Afw<*qYJT#KT3J&M^YTtlN67RB%=Mnv&W6f>fDBZ`qyG(m7w6l0<o8^xQFWtGuU
z?7r?NVHy|3TPgYYC;}pXJ0<z!x_@F6lcJcMl1vpcC5k*ZYzxz(n9gVv&TPFK{+Us{
z8^yeo{(B_C-;d%0As<FDD^;2)6}t+~iDGU_KKO?JqbNR(Vtz{UiI4??lSF@E6dws$
z9EG;r^{F7qXHk4E{0qS)f=dNg-SAUkMHDNeSQo{YQLN$>7sZ+=)-r6Cx^}K`70+(E
z_lAG{QrGUKuD3V1Hf1+mAH{|!Hb$|Dm)kPefn~1e*13LHpQ#n>7`oxVy~NdKnQKdw
z+oK^6MKFr3QEZFi$0!a(@l6!lqxd0;gHdp0=F9EpZ}@jav6JDk)b*|4cTwzOsqlS*
zEZQB#9^rdalIu78`&0Zt6p!S`SGY>_ZFK4P46dt(qc{@9(I|e3;>J=}v77$R8(qg%
zy2{=3|I91;K$Ba`UBB?UzUgQBHHzO-{FspAQK&*R!E8|rMWII#jlzn;h$0+CBnmT%
ze^$HuEqC>}>F>JSRi7she$po2S{IMYj71TTA`wNB(>K#UX{qbqicO0wa}B%cue#Q?
zp{?uGTGz=aPDSx|6c?h1?aVwK1wUucMsX&J-=p}0{?B(Zwe6aZ&&)~AMe%2p&kXSw
zFZm+&Z;pIfm+!SM98r(_VicF6$Y&wHh09S~;p!d5{V1+RagD1wU5(;8r=Y2FBZ`|s
z&V1!#_LlHF{1l*trb^#FtthOP+ndPqyN#Dx@ucq=H~s%cvGk_@0T=%$UTf?hR#^F>
znUcpsUW=!?=cHNK+*EN0ZoTOzr|^dtaxOnm3Roya9n1cYSV0R-{>t8RKK<|dnUnA5
z6tPg$LNN=)El|>-xl+QC=U_Me?ei-?-SqRBSSbsoEtIkFn1ynd{ZY&GxP`L9`O5-d
zu(?0gO{ARJ3KpKQ@RWrb7Ajh(WZ}+TXB7)i3gOKXvz0Bht5U4~UAJeov#Q9e39_iV
z5Zb9}aeEmwu)zI-YfD>oEbvta{$^47R-U@T>j~ButXav$(i?RY7xx#o;IrVSlN+2K
z3tkK9mi;>d)03Oh_&LtMU7V}$rNjR|mY!kRf1udB9*sFT7GAc{&qC9bes>Gagg3X4
zX`zLMmKNGu*w)XRWg*+bmeSs~7IOGmf797%V58O+T3HBo_1?Pa-}rGxuYTS(9Q=TD
z%^szlg)!Sadj>T6`KYghg^m_FS?Fw`i-l=}8a-{Helu_N^WJAfjr!ypfAV#e(r$uO
zd)7joSG=`%xqDdXX<^=Lje1#l(SqZq^EnH>E%@nM52cS3JujTu7cA^-=ABW?_swQE
ztMs+7pr4oNB@28ti{upxuUhykhQDLzZ(#s?6ho^R23mN{!afW8Eex_S*utk4KI4d4
zc-_Jx3yUobwJ^-W2NpiGFq}QAtGsDpw1p8C-mq|LNF$z(H&Vzb%RYvZiA7^9jJ5EN
zh2=%P<1CD~FxkQs3vXF?+rk736D?H9cF<a-6iyQ3E4tc;5|(VLOl5RsJEmEfE`*wo
zlpocaVPU3)cP+eU;eDz2Uu)#7J4^ie$il#-PS%|*YI7{i<>+yo2fOXntaUn-KV~dN
zo%1<v7CvEfogE7;G_R-d1sI1Qb^dPi|9Shlg)bO37Is-!VqqySOfgQ+mswb2VXb7B
zTUcRXB`?5<?&n>ORTftBswrxBnMjw`S@_bzMhgeJI_Ttjad?AdX^N7KMQq%Zl6=L0
zwD2`!sfmZxw_DiC7_hLti|t#_XYzf+(a_zj_0Iw9U{qN6*0Oh~W=Ggx9?Sc^I7a0$
zd$3y~e^09Qy{T3XSopz$X(4LipoJf$O2on;3x|aVEgZ3MlozH2&B9L{%s$@VEF81&
zvxQ%{I2>^vY3ulvmz(sIgS_~mhdnyZh<fNbBUAinzKDTTB!p7F=@tyG30xww+{fBF
zzQ}Qud)l5*x@}pAam9<Fa13z^2@BVF<82{nA=kq17XGksA{8(v#UPtFW#KdpD&8{|
z`i^(j-&BaEcpU0kE}IrETDT-t{<LtOmkHN|Y{wg%aSJE+VWZP=fy@30C%-H(U>FaV
zEnE@HS2<s89URye`|QZ)EdSibal^t*3;$YpVBwYpzFL2m%152I8Fg!l1@_>MjL$BK
z=YK5Rvv8l`R9B&&^pJDZyPoopm;V}f-Wc-4;LLWU#o&n9UuyWj9=gHd%@;#{mKIeC
z#85lOQ7~p(;Jov{7<{LzNDM_|sKuffip5Yo2E<T4h7vK9jN!2ulFOZ?VkjL$nV5Z*
zt&y=^y&Lp@XIqEwX~*L+l#SWraNOyrS<+E1hS_Z$Y`sDZ4Hvm9$517PCt|1=gU)L$
zhUwXkCu4T(amwmVbW^ix4Ao+IDux;{RF8rEt<lP!L3WTHdZophF-+VCK11LErgdVd
z8$$-|$51bZ`Z4rc<o3qUfFlrtTRQ8>am?IjFF`JL|Ae#eLboRddP~CLN{>N_A)4(t
zU&&rWd@=h^CG@0G42@%GK~Ij@>p+tjn#YhCLsNDz2EKYkpIM!w$4Tb^9@q^=Z_606
zVlX>7=y`U`4jbMNuzKql+QhIfhA(4i8$-Jo-iTpj4DDm+5W_1myc$Et7&^slKl>14
zcshpXB>N2UsIyxP&&KfaZgh!(<It7<)Uzk9dkj6;YnhQ>+BkZ~&@J0BD#spn#s<Tc
zYP8uq27e6C$M6Ejzo^o5pFOrLO)ukmk$y@;oKs&@&r319%<*aJ=_jLSk4aNce^D6B
z8O(MJ;75RDUrVVCl5C$Gd#0F%NcQy@hQ=@~hHpAMhRc|YU_%StoH)iL?Tm`y%^0RJ
z3}P4^!<ZN*#qepsGd6~CVqv^AN3W<%d@F{xW8je!bZLT+iGq|cj3-N#DKSiyT6BX|
zsQFF|Gh$dC!-^PY#_(<o^J4fYhWFU+D(CDNCRgyhAHxSy{X@=d3{%?Yqm!ImMhlys
z6T{pX=I^lsn`ZCq#mCIXuqcMboX2d(f*3xDVPOm>_u_PC$M_t_mTX72y_lTi_%w#k
z#PSkeP!rvs^NNe1tJvAo)xoHylS^Y*7Q?7|3WJKs!C5Kez@ec3BM&=Q#jrYtH8HHE
zw|i`}Y=Ua6yFP{ujMx~C#BivIlE0f{qcpcEhRs60ieVe4K*nTC3}1_IYiefMyX`UT
zh+$t0`(xM{!?!VfAH(h#z7w4vvmLu6wAgW8ZX6aas(WJC8?%pV=MWJor`rc&_#uXa
zG5i<<<Em_qqj-mWjdC2EnkNqxJ`@A5UsmTzcr=EexR}I{8^g~r{1QVThF}c8if^j4
z%jSNI;aCjEX)xQ-qq8G@uN}8^Sc`$(r$R_(-;!D!B|QcshA{o#?20hncu{i!tY=qY
zkaO@^oesxR-HFGL_|G_;5IZMhIK>E=oo@G6BxePA$8siy-{sP~&_3TEB4o#D{9Fuw
zN|sg5i$Mx6#Bh<TUmSDdxD>->uETMZjpK@F-i_g(7_JJxCU`xD8!_CB;g)1Mv$S?w
zqKky-PRjB<QTR882Ql1dNOZRE0jTg$<ay#qi`y$ayWof;ZyZJ9C>lq;xV>T*jN8i#
zQ~o##h#EENEhUBGDEuEuG0`u{$5v}?<Hh4B@t@LCag>h3zZYfVcr0#z=r9a8yu7;E
zO1U_|(m0-vqkJ3{;%FI1Rvb^nQ8AACaWtUuIG&87miSXy+NzfFtx6nK|I=3WIG&QC
z8gbMVIsM_a^T_ksapdo$)QO`m8~VXnFK(}XR<`5fZhPvTak%1W6i4GY+;Mo~@Cjbn
z>Gp~#lJrztN*v76EHNXFhX0YX#U^nyleU`1u{BYb9}2|gab&Xlt?UJ=Mclr?xnghx
zvg61RpL@p9Dvs81bfsf)w27lF<#F)IcDp#*$I&6q!%V>ogr6N;UKmlG;&ATypSxTx
z(flxaI*w=J_Bz8b<|k&Cxc!OA0cWGn#=$!%-W_$9=6a-jW>GJZ(DUcw=q<crXM3Vw
z5dL}`L*wWZ$BS|FjpHQ|zRGE8sk|J=D>5VfBufd$gcWJCe;flub6^~U;usvqYjN-c
zj-$a|Z*F6EVMyG*0Qu=dCx^u`JdU^Gcsp(%+dU$VF>#EQ0emBlk#UTQ+jmND#xXjM
z<!v48ESC#@U_JWKjEuEoZ(JPX<EYXh-%z=ipkzWEQ{$K>b|%I#DUQi;)Ogwsi79dW
zSaaT7@sp7gG+lJwi{qU*X2k9PsLmwD?X`>D;i^R^ZCB&?AdU~knOPi=@%EATv_O5T
z&5dJT++JOOjN4yzKZ@fkAs@#vU&w+umd3G+LlMWqI2OgRSmd9_@u`r{q(z1YFA!R2
z-^%et97|*#*;D$^x0Pdg94q2j7sr=ztdv@-<5&~NDvn-P2S=D*5!c3XqLcl|nzj13
za;%SIgD7uejB)h~cszTtQ7rR@YBLv~whn6Y7IBNHea!)hV_O{G#IY}q{c&uMV@Djj
zIBRk26dkV8-^T4b9Fp(E6wN-mS=t@PUeVc;l5@T|j9dW@i2Mh^PJ4JTxAP#QsH@}Y
zR<;9&By0`~GE_K;KgIEL9LEz-6Zj>LUm4*Ej7;FSIF4~uN#OAWj>n<KaW0NO<Iv&=
zaPCHBoQ)$GM<|YX9Emt|Mo#6NNF1gRgANFx@WZbZVl)m*B)dI6W|?A~>#r1=O2&~Z
zMQ1pwV*F$rr$j;{kL;Y5Z0TEm>i;gB7XIMWUvSf4t6$xepO51&E)EGi+ralXmytMb
z#c`WU%}DP>!7GB7xSR^1-1mK}t0{g>$aTRRf;VaHgp+D_;xHQe{*B{79CzdRCysj}
zxgSU6KRiq<Wg>Yf@;nJ!P6^f0QrwZSjpP-~C&-(J0tpmMpilyZ6DXd*TjMf|B+&59
zLhB7ru>`KIQ;G^c`A;iy3aL;+)Ji5$N=Ruz%F86|duEcd36x79D}n3;kU;qaY9>%C
zfeLNXD<tqF{Sp2|0u|ZrTh2<7{qByt_;h8-<G#F0oYbr$!m5JR5~wcZDM6OjNZ8+5
zNNOigCjoB)=?Ub!;HjHHebFJWm%ylDMQOi5s+KbWSBkrZcmx^M9e?vG2@o?A@ChN$
z5YjM#Mkz^SAx#9E3N{mLo<Q@W3agmUdRrvWG69mO8|6Ib%gjljRRaD5o=>240&NoL
zoWRowv`xT$%ilqeq+J5-Q@rCXe@Ee+1iuYr1#T-pjLLW>fo_bh1iB=^Y*#^UEk)iv
zfo5MRJrn4aKo8-YH`!HY)hM<tyVY|EjM=0x^-h3Uk{1%_lfY2=c`EzG1o|fMY6ATe
zcqxIi^?dU>`1&RAvheKM8Ps`&vnhngG$4W35*Q@HfvkAT&nlD;PT=(f9`PXwJgP-G
zCBssdhbJ&1WsPl(O5n`|KIeocFgk%aFUbVnqr(Y|O<-IC;}e*ez$6aE<(v-`-&+a1
z&C$!wm>}qTw(zTy3hg(%lM`@s^!*%g&q!cO0#g&9^0Wk|C-4q~<m1c(6*JGbQz});
zp&E;3a>04p%haZ!?|n|qb!9F+XRQQ2Okh?514en6!m5)vJApYVNtY_wA2Hs(R<5ef
zPZIc8`1}Mna&#^b{=k>X(uE>fl)&NyJ{A6Oy7RLHrrq){yXB|y_V%roB(OAr-3jbT
zV43J_N?>yW%M)0Uz{&(xC9pmLt4hvl!F7Ub5?D+5=<HXwD8!!?-<OglkCo3PZV<JN
z9KhO5S@)|1wj}Uv0^cRD^M>+u0^cOCUHDeUgOEM9{4C19UfIE+zN&<;DmxRH`=zqt
zibCvrU74{(*_FWeGEmsnidm}dO<-RFM-n)iz<!yILnMax03$Pjg9-eYz^|K>;wuZE
zDWZ_Dh(eOXf}FUY68M>`Jty~y-RSC>1%K>W_!pKk9;)Op9qw6}MaQ_>TvbZV_G$?P
z5@?!4vm}BEgc7))z`qITT+rA-?kSW&IDtq4C+PnXkC{N;zddomsGucCVNA%>HJ*f!
zq+o6W?bdj`=hAuF$dvCqClffuaQe=3TJVe@v%d@ZL-1?@=Y;&3Dm~A5zE+rOe<yGu
zfr}iU`o3EUY&hb%l)&W#u5hkJc!R5}kn4i4&T($7ok`{AzwzA^$)oJ;1n#g$-#YIm
zaE~rsRQ^feK^fPvlAcF+>t4YJ(*06NluqJd0(p|)Nm6M^<WHi2aED;tB=RNg(=%)B
z@^V+zf=QIU>tre>q)-xtQ<5S{6ixBsb8MaBk}V-vQqX(XStg0clBkzN{UjczFo|kO
zR8OLPtBi6<R7m29Bp})Hf^3&NWHMDuVt+nQl_V-9@ksKdkjjEQ6{4!>(@Cm5l|+ps
z>WHMKDAX3LC6aatCv{kbcIt{`k?x=a4U%vsK_?q0;Y#udT_{QTlJLk-q%%9&=S_ly
z77kQVm}M;vPDT=qlAwh0hDp!|5|$n~U#y83+<(N`qG`V7Nn|GRMiL{F`0WFwMH1bU
z=#fOrB(jpoP9i6X4oP%OqE!;Dlh{zh+b)SV^!x+m-gmyXNqo_%P>cQ!^348@4Mkk-
zMMAYsNpw!4t7uaGw2&@IJi``6pB6|y>r|*)O7d(HpPy^ax;>NVl|;WJUP<CqecyBR
zKZ!n^g-c3rk@$r_pTr*}GAlOly_m$&BOa!gljut)cX_vz^t>db++-i+zC%S`O`?Ai
zLy~wsi2+Hx*xF0^Ye@{`cpfS;rC#wz76v6Tm_v842rV?MrcgLkj1Ny@n2<-BBa&#i
z(n~cej7s87_VhdF7fFmxVoVb6Ch=YpW0M$1Zx=eX?>ys^cq@siNlZ)P?Ib27QRIMc
zGIg4?nwSLBB-Wkcqp-u=Od``1(V>uOdJ^v>F+(&Tsm)A+3arjV$@@uski?ZKzQuwc
zCh<uUH`aJ5nI)3hNz4&4S8$%-M}pM(IEncwz95O=B{C^oD3V2jWo9@h&2fGz{4)l|
z1s@eYr`vO!<lg3<i9J2bl330@p1`ydSdqlaBx>iPPA*m@u{w!bx%T(#HA$>ZBAG;P
z66=!qGKn9PIK&pMx=%fHujiB{u`$U%EaUqmcJo?(%egs;9ZBp=;;SUKB=L0;Ta(z%
z><1o}@|J!ZuZ4i;8&M{q@KMpXNqi^5T}iuX%2|uZ-^hruTmC&s>`Q{=@-6>f7Txyu
z%*@y?k^_Q22p$xC^0uFvV=uc8Cvp3LQ%~Xu;~|NklK7b``Mt((-)sB}XZg5tJP9?4
zUwJ_#aZDtCjP+8^<h||Jk_aRb;uzj*%oJoi+-rQjVFr2U+x{W9{oUte8k}4nACN>u
zh$$Eoj0#$UPc3uCg-|&mq}Fz)`j_(rmzrGMPES9{@Jr%!lBZiDe=Z8-;&)y$N&J(<
zy(G>iagOiya4k*Z&m_(#aUqF3O>$5+-S4#VuO$BFg;qA5X8;k;yy4}MB9|EhN!(20
z7RRBI_bQi#EAAUfT$Ai|!MYthEUNgsgGGF~u48)o?IiB-qFCm+E4ZP%hi`K+o2=%!
z&()so=Hg!lMm1aVKuFo@p0r#za?!hYX1-kfGThg_kZ0!rPu^V6;QP1zbZL9t^n$r4
zl#5Eacrq7-b5SH0kL9B76*p7ST$IekgcAOo@kNW}qIfPc-t-(U<SCKMBgs5tu6jyI
zX=y>Kl@UUpAJ0YET(GTj(t3qlK(hQJO!-{AS;lsQ_MgZ_MUHbN@AQG5I|DtHb5SK1
zRdZ1-*B%r0k?-%VzwMt>$iqWe0%N?@bMaKJJqX;HoLDp0-X@NTzq9kV<8r5!y1A&A
zi@v#dDHru~(I6MibCH<~XD(d1NY90mi^VN7+_^Z~Kg*j7Pp-We&FH)eg*W>9O64d%
z_AwXbT}qQ&G|WW{r_%nE(l{55gfm;EQ&H|++4^CVKT0)eDw@p%y~Uff$i<6!m6o~4
zqLG3MEi;?V!7P^jv=rs!qLmQJTj!!pinq;0JK^n9k`6*T=Ax63&MEo7N0n!C(IppM
zbJ2~$T<~}NXLHeAh(8xSg!IfsuUz}RL~h@g-AwuJl%1Z-1+jN7xE&wK^SO8-7kzR;
z1xj}RKTLfGloZAHHS8|1WRP$PDoK>!#@SUG8Qf)+q@rYI$T=sGBuW$oL69scl5<dk
zN=85tj36LEnd!-$W)@I#`fk7d&HsGo)Vb%@t5@mOtJgg}GhNfONmzvqt}5c_<w0)`
z3VV^@MIR6Pda%WVtseCApuY$2dGNjm13Vb$!P{I=F5*DvAP;U<Z!*Gz!5$3ZLOjT<
zHqtqi3JH#39?a{O&NN&|*SRUw9O=O*j-h7yXu)8fgZv$u<@=1W9*px~e&g&vQyS-`
zG|sBmY`g~(IG&2x6X|2rc_C})K<B$2zM|Yg!t9IbjVF6B#e>BjEb(Bf2h%*5<H1}H
zrh72MgAeIB9(>@zOu9i6=Zt%4^;<a4zU#a-z;WWXi`iKo%=X}8u2&1YG~1EcIV*Em
z?d+}<oS$&m9#C@;N9Dn%9xU+iJY~E)#CfHS^S}T{=jD0E#O%ry8n;@I_gz_A!s<)u
zY#yxgV6_LId9a+rc-Q#_C9gVHc<?z_s=1RbJdynh<-ZScuJqtb4?MSBl;6JXsx`40
z8(HJQdJi`6D&WC74=&tjRCalWV^{7W8RSL}HhHjF#ztjMr)>XR4xT#OJlO8R84u2S
zu)~9$9vo$l9(?7&*B*RJXYgQ`2OR2NddrK-ZV&cw0L`73e{gaDlz-y^=S9-KvU8sY
z`#m@;`t}4pIOxG4ZnU*|G-mlbE~*hZ5w>td8XWR%vtu3{_uwZFPI2z{(oS%{E15qs
zdU(M3R{bH5{c>qea*bLz>)&ym7PVhI_*HE6Gab9Klji~b=E3y}%I_Zh!A@H^*~q>(
z9VtWXDqO5TJvirq?t$UKd78)r)dQage|d1xgTFoahdp-7x#YoR53bOjopYJxYOYZ;
z*qU=<GY;dbbiw(0Wbj@=$~jp-w~|;s!uT&k4S5je9(QEY&U+T-(N8!|*44y5G$4yi
z4=fMvcyQN)s0T3*{^JIbdF6X>!-Ic?Uz4@FF74BLXUp0SX<PDM8mD<n404<C@Q#ZP
z#*S#!dkjbE&Ib(mQhHyk%2n|BG9G#G*n>h|+qL@ManaK_(<kqwPp;@n^diZN*S&bd
z%V$a`>cul&)b*m67s*~c;Y9^6|LT%n+>26Pl=h;87cZ4`mh_@yNoQ^;XI43-j7Z7}
zmSqd2oHvy$Zu9aYq4KrExfQ*r<V7_vs!MB?$(>nMy!hqW9C(pg*{PLu7OLc|>cx9^
zT#uS$J?X_$Uep$~r@e4jbl!fZNG&gFcu~`fuBDuma8yLLKU2x7<3*&Dvq7J{#TA{;
zdhwhWjoG^w^}MLh_Pua;(ZGv_UW_P|nkM+X7b#w(dXe*>$>TweNyk!HH1ul9oWYKC
zQOF(P$nfImfvk32GP1nL7U7FtQ29uWBE%QSV-8kl#YSEzqCn0nO}ub=@roC(dU3o)
zk*4g$i(Ix=qsYr%^c>-!PBYFcl%D71opVZ~d`Ha(P40W@FT3Mn%gw!L=|w9qHhD8!
zNV6POYcD3~>1^#a8sR|`7F`|eXg=D}#)~(-80*D2FW&N^trr8meAz78dC{JIdC|*@
z4z&D~EEjv^!g<k&%bn=#?6u?M;a+)Nyx4QcMahSW&aPfG3uIBbhZijB=0$grytq4q
z|GB0-eV((oNcwuwPnzvR<0Lo>YVGY?ggX7b7$8Ng#q3}&hIldBi!PONhI%o~i;=>a
z9nRT#@!6Now^pT}zvCjgcE?5eC=rsp?Zp@`m?dX=N95G3y)$pT7nA5PGz(p2XWm3X
zl6N_~0qG=vKilMeFQ(8S(X7d|XD8>-ap}Yccd{s%?!^r52rrI#apzv@*%nD3crnw9
z554%vi)~(P_hOb8v%UD(i#eRaqO`KbGuB+O|2wd8U)o$RmV5EyUDqdG%=2Qt7oU2u
z#EYd~EbwBX7mK`D%r35_)cHA`DfjQ}lT#a(x$9!}I(J>mII8CpoGVIy=C$8!$zKCf
zhwrmm;l<}(eBs4PFV=an-iz4zv@dz*@5LG~R!LU5(dhj7G|JaXw)XqkTG6I$@47Zf
zcBAb!7<|_?>Z@X19O;|A*y2Us&vVIZ-e^R!HJ;tUJ+dL~E3f^31b&yXlf5j+m|G<M
zYcC$$PT%FlZXtWTI3#4R7vFgCt?+|_RQpcIJ}>rjqb*7~AV|U@zPXWjIIekw{x5t?
z*e*Tp#R=)Uu!<jO?OkaXz5G9mJ(wT8IO)YtUYzpcv=@JRan6gMz5lzf`;~D+IR8z_
z+q~c6^54DqLpZ-+IwRyPy*<U&IWO4@bmmp|n}O4o+V_Wld9l&$B)ROx6))~{Y+n5B
z#XnyB=fzDgu6p6|Li0kWN!O&cf2&mT&NMH*t5>SZwOE_x<Jw6!AlaZ`NH8oI5u~Qp
zHi@2KFdY4q@~;<1sy8;hu!KYfDT#TJALrM+xE|*>grvQk#JYSh*)6V%-rz2c(>Ccg
zT~|u^(TwTW7aHH=l-H+`@cSux>_hR}$6h@0+7H1f;Y+Ky=!I0<pIa`;PEe7kB1uKw
z;IuM=Bt?W2RZ%Q1Nmfx@cnQIhf~5pY3$oU$14<Fgs^ELt%c&?Y@+VYOP*G7uB^5Q}
znw3>NDI6-Q2&t-~nh@p91U6DVt~vV6gr|f*9hcNl`JTfflvAyiirR5`9Tm?AFDQCW
zMLiX3gIE_teH9H<eB{F{9~!E7o|-<?^&v$?s)~pTO+}iDbQSAVtXGktB2&dM6~k3H
zRAi}WqvA~!*(#=#%xtXk73g>|EAs`SiXXk1OpR11!uJkyFxy0hQ{@TccvZE-X;T$B
zDsokPQLD(ys{PsuMq0|7sdfa;Q|;jV(Onn$phRbL6)jY>Qqh{Fdvd<(Tco8Bmae_)
zdQC+Sx|~#bU8;Z6w+M?Ef&bW@^OlOXD*C86bl25RMSB%pRJc?-z;+PqB-l~q8%{DQ
zBz6`_R;_fmimoa)6m|Ag(M`n%MV;MMyjNMFWJpnG58=#yeYZ(36}?sbezysWs7CCo
zqMwTXqBBs%AQc0IA1&(aT)EU>I-822GAh=hki#Pu5MyiJ2o>X1Oi(dW#V8e&jF$G_
z5&pJ{F)E5~PhnyaTNo>)<5c{0*Tw8a74NE8sA7?dN$i({S20t?`zj`@n9e`lXc?PF
zJEy3as$!ao&j&lt9nO94>BjwjPT_k+c9d}580?&(@@(JqH>x>4q^qcytKt(CvsBDh
zF-HXzrVe&e`C}DL$~l>8x6Y=JE$_;6%oE|K(!zYf3vF$k1tMoJi&ZR9u~NmCDwaxX
zpQ%_*lJ8o^=(i$$PbFmq2SyK(ESqKH2iiKPH_l=yKLo83`K7_mwVciq*{fBo;p#s~
zp&GGYyJoDifv%<6+x&uxO)A`%9otpx5VBcti;As6wh2<<)?L?56<?`1rsBAYuT|_)
zv0udj6}wgJQSmK3`R&|d?>Y9e%8vAJR5aAH?!KQj<L49#zf-Y~QQ|#Em6PesALZRB
z?L5d;R&lnp^Qel$Dsa!mbVLZN6i7(Emu7#Tn{|ToQgP1A`kmWH#Yq)EGk|c_?xg&r
z;*^Th9A3l5&!seGt@L{?;+WK|+J9&Ms^T{l&n-@$GBvBY;o`HkH}ARrP;rLa=bx0b
zD*j}%+}GD~-YVlf&vq^}<2X5Z5;VyAOT|SMmsDI<;ZxyPaYcOostS*azlGDc|KYAr
zaPmgTE8B!yMpf;*XcE5niMOBu6+w=Z?|fz#BOQznbkX_yonbo9JB}e!o&QwI)ak}5
z=I=`@?t`hqQgQpA6#m8_sv@T1fr^JJ@>N_@aYw~nu3*RX>ni?Lc_K5GJ(qbyaL`kk
zH-!w{=eVunmhhh^r&EFYTW2|$_`l10QvE(-S0yLq{O!jh6^~UU_>kzs(2p~=CuS7#
zVa5kpEG_Iq<)#Wrk`EKUOqro(kQWhNRIr#Ji;{&j-&nGQ4<&sl<wI#7s`#+_TIPTI
z(#rTy)`xOFyf8h5zo;J@%`NXkMIT6>5Ue10^4;u;?V43$r#_HFgex|uPn?s>Y*ins
z`7m*KR&~KzK0GOelBaxlT6hf~YWgtjo{Pd`nYqN;ah*CoKAUyTyytq>hYr^orTKWw
z9G(+iPq4lZ1^>isz^i}{&olnVC8<7qp2WXA+yBt~>OxkA51Br^?!y~CIDE+RA;*VY
zAF_Q|@Jp7{hpjIwFZl4H53%AIjRYGDDs0opTiqdp@|Q%?#D|slT+BB0fj18?3zBSY
zm2~=S3Xe5u=0hI4_$BidA6n6{$1`8`p~q8MOwE005$7%0-RVpUTZ<0WUK28<es&ul
z-t?ir4+DJm6V$hS*!OIPKD=35AKLlQo^$u1s}J3L=;%WyPN8D9%ZHbbrFRzW!Xkgx
zTeY*@ck?J@soMu~O1iUmA9{(}w~w-V3fbk)qW+#E8NGez<HMoNb`>i3^?}$=aQ{8m
z$iFfN`jAm4d#Dd>-c1?g!#{e1!9Je5VgFl%@35k9m=D8!7~#W6AKsxe_%O<c(LTKG
z!x;M8rqoJd*ZF&{g{xA>KbguuYc%9BRl$^TK8*L_LoQJH)X$JQd`Id8pZ(jvi9W2I
zth_5Y$%prZyiZpbGTDbIK1>xpU2vKptLXP!1^k1!WTp=V5_ZRDU$cGq*oT(_XcE92
zALjZn$&dH^_{4{KK2-9fvLEw(_|%7QeE60Y_F<t9-Tj3&`LKv?>B9;-m=8-h*~|6s
z-?I<E;$Om-`moH0&wN-;Z)}nAe1-I9Gt)^Xe3|iu&ko~j1Xud-W5x6@1xZ$M(+OYO
zDLviHT<Zg0d$LY&z2F9){l2x0V)kbzrLc6f4_kcp@fKS-+WW4(KKt!n+o&dFhae?8
zg?uIWwcsuvcE?NiaCYZXsKyrVtxErnZboPJqqraYeK^4N^`X|+83*YSKAd8AJ{<Pp
zhz~z-v_2g5;d^eVqnTMP9Z$7%ykE@0Q@4(BXE_|leK;ZHk_b=waJ{edCyqZmJLA5K
zyw%05>aFv-+;{!#!#VER`>tOEe-&i*Hy?f%{zqJLM#x#gKe>6cyHM@CWG@K*B}m~#
zA1(>MEO<rmZ^1LZG%9c*uKM8d!Rv$SgU^REeH?}T@cR(pP<^-|%M|oM_rVYz5)2DQ
z1U0&A4g0VjQ?gM(W-TFQvvOiW@_jg#VIOOFO|or=+5BH0?!@)~^WkQk-x6|La8$M8
zcYU}g{Jsy5<2ny~co^r8X#Z38>3fCzws$e{^ebY5pC7DjNm5*1#E+uFi^U}uPbM~>
zo?OC@@_tl`rIqxflpm%2=<G{7yEdn+A7%V_|6<Cgb@Paqf5<B5N6DhiQiF~s{0M}a
zRq*4rx0_THB%uU;RPn>%N0uK|{ix>0bAHtG^X#ge>V7=w$5Vd$*cYCa@U$P77C378
zQQMCi!fOgrI3+K=jvvqXQP+=W{r2ZF{$`u$?TOh+p;Ufp<+_r^xANBagCE#a{Ydkp
zfy~H1DWf4*a8kzef+>Ei-j%^DjgT%1nSOkDKO@7BgguVP9><)b_6xwX{dmETm;K1`
z<3+!HQc@#76hC04@kIfRrQ-clX-)hX@NDKwe)|vLB;jKzPCuIZk^E&!$+sQ+E-BZK
zn%h&F`H|<xPqj-{u8{MJAFuk+(vMbtOtw;*`{ApS)xwWWJ5u<nK=MnKvRc!6ehl(s
zuphBXC0_UAP+Dep&f1SQe!S_&TYhx(qmv)}pMG0E+6y6XC!}iS5*^}_rj<){7Ve5m
zx(FFGuDDxB*SNf!kkE+a9&t%eKY9u8?MEL!`U>yw$E<P1*;hZwE?ZE7e1PzQetf^f
zesus3OdR6J^;#Lj{1_@l6pkHNe7GMYBs)@Yte<b@x2G^#@NGe6#|U}H55CHV*>RE`
zFE}BtGf~L9ek^U7PM!B@Og}t+c>S2-$5cO7`tc=O@MF3k%l!DvkH$qx&ya=t*pCnV
zn8|hb<0DSTkJ-d?X%o$Ce%u~;-^I`GWmcx}^?Ga0X3z0sF5^FaU`EPP!FlxI>FM)@
zQ~0SL3*vmCAB%)9j!TyCdhvyWYHy58FS@STa=#rpzwl$i_Vmj)i?8tGb3e{E$yk+?
zzUx&-t=z`^dHE{3s2^YZvCEG&eysIlrypPWvCfb6er)w)8+*L(+CW#Q+xRigk-g=<
zi)UeP_T%Dx*Qig^w{W*UoyT<azH7T5S86CsJGi4iNIz1&$dMY#3(M@2t(GoL=eq<`
zZs+jKxZQsI<L7f@`{1fQe(d$*8$Z6Kx%~Lqk6--Q=f}bODf|66Kqu_o?7#c2gJR4d
z1rPag*pDN^j|;M$qe8y-<5*mBV`SC|;XerepZp|uhe%Edo)%;av+|NV7SH|FkKg_H
z!_QM|!R%+Z^N1`x<Huj3c~<aG!E=J=1*vm^;cL|Y-q3hagqQrd9521%$KP?@CCPb}
zAtL#WTE*We^}wZaV=@2+P&oiUBby(0{Crgrf_{Yju>6Snv2a{+*bki^lG?2H16PC=
zXqm0ibWb)R;hB|&AEw_v6O)|Cz|v=MTFj4pKd$+);!np-KW=fS2*2USze3LU$Ys%g
z!au3>3bVKU*xfUC#5o7EEV{=w{iqN?#Q+}o@sLs7ld}J(lt+F%_9H2PA^{W%;H3wy
zX?kWt0GsN*QaFGq4V@&30Z_>F<^xyJ0Qx>~l?<R%0L21G4&d*X9K{1DA!N)07qd+K
zQ*h}3$^=k8VE+;LqX(|C0jzxBy1F;((&%R80w8JC&H027avttL%dc&fvHNBY@BI)!
zl>izB@O%JO1E?0T-^5-kfa)ZL?BgRF<~DvZfTsee_j<<D0n`YfW&riexaQ4FN%%13
z<n{E939sDrrq>RjP5{pYP&a^Q19&dLJKO)IuOGPT1<>c|#`OdEy+Tfdv|REA!kJy1
zUMwX5zFwH8jB)p+29Op&dH@*#GzvfoVDFL4OhHEgjjNPk%93n$051e^sd^R_UKB}#
zQ<>zS9&$Dgpu<IH$)8GkuR57^2JCy?X#q?RpeY9yKu!R;0SpdcNPy3UkQYFg09*mQ
z62Pkgv<>hb{%9URivV8dt>#fj%K)Nxb6Rs$tJ0ZTaS>;vUq6!fk;C~~07S={oHs<1
z%58+aDfm_ZpKVT|ustXBc}nU285fSFb)W(BQ#uNgbPAwzoG(sp;tt?9Z%X;^9ep_L
z0J;UxovU*z{lc7#UP5{V&{N1qRkI7^y#vUPWm2JU0Q~}3aKzDHa9{uf0{HrfgDLr_
z!<yS{PyoF?YZgA0F*JZ-0gMUYodAXhFhT}!t#;P_^%)=4${HEK#lwzK0gUF-1aRcA
zV{k03+!05`${9O)XO9i=(L_pz>e=rGFfM@c0ZgD*taN<)qhrI!goyz=s1{@=1@K+~
zOAn>LPY(}ZGQIbY6yllc*%VF<U~`e;B+SkT-~+Z3#Ka(G2Jj)r8AR_OJ_=wK8>BY|
zFgpOAQ!rPM<YOUo1W!G1QSwOu^Wvq8YBX37z(Q_~Aj$@@D1gP>0s(jeSi&I%ur7f0
z0W9MJaSGm)&jVO4#MQJUvrH@KVAE~F^o10y4B$&4l&lJ1weU4@$y(|!v6YK0OEF(|
zYzSZ@cQ@x4z^MRE2e2hzpA@h+fNuiW8o;&ywu|H|u91)(f;$C61Cy!DLn3xbcDEoU
zd$?XJ(n-Dz;5!li5WqgJi16<NI6!|6WgV96!Fa7hj75LuveuEf<fxGG{*+@vj>qLE
z0=TouKF;7rk(`Xne-hF!T>R$%exZ9v_E-9<kPCvp2XI!%AA)S;jF9q;i~lL)TwH#h
z+kcOJ9>ia9$@W+iW-m$hvfvd4IwAkWb>4kV@dltW<_8c6z!$)(UsLLYQm!SW?h4sY
zJc2arYWtXm#{q-_2nP@eKnvhT0RIM{OFL0Pn#d4CnE_bw_I(4BW5V+Vuf^rp1DJHn
z9xc;<w2#Pd#!GJna68TiT`7K7_`Lw`)8=vcBOwn3=PgOuMl;UJC=^8DAQFP00~8A)
zIf%sI|IU&~3ZjVcqHzgZE*|G4g7&!~Y@uXaQc6haApZKW80F=t5JZb0S_bh%5EX)`
z8APohDh4rhizByg`o`%gm4c`o1f*isAgTpXCEgmxQ$5a~l;N>Wrl&;sbPzS-rL*&k
z)sFM5AnF7${pE~jf~XtBvq3x;L|VMGUJ%a<uP@jjE^ipLcMTg)5lL!X-t!xz3(pYD
zjLRKCbY5fYXR~4uF9y*_ikb;3f=<E4f-ea+5xlV%O@+KH$VPI6<OcD_3EOQr@jQ{d
zBKT?$&EuN&CM35C@~p0mo<TS!B)1Nt%juNYf_OcMH-cy*YOWyOjO%v@;w|BA1>42t
z?StrA<$tH8bQEDH&M02mC5XX~8gV2{ZV`43qMMNJah)DPeEzk4{>YjM8SjNs`UKIJ
z%NoS6Ao>OEPlbcn2zyzR+CPW^K@1F{jAeho9RIM<*rycAd3@@mgK0y8uqNBLl*5A<
z5yY4v0$bCVMg}oj_^7yKOpV5G3t!W$DHYxcVr&rO;-%w*cvzzW<^Mcz5qS<~&&_G?
z1~Dm!_kw7cm-K!RlY{n;7_a}BHYJFuK`db1^C>f%Ii@kf2l+w6F+GSGL43f;@+Uw+
z{944p!^M(jWRrXt#2TN2WL6NfrQ*jyd=kVw;d6qRD})Vh&&ghu=%|*E`$1pl{2)FJ
z;>#nMOmlpWg}ej=u{ek&^xlh(<y<}^b7>Htad+%bx&6SkOd5H#&XJkwxSr(T>1Hcv
z=OB1~*%yK&E7_p%Rf4Mp*9g{k*e9K>4`M^m{^IYQu>Jk%MmlE*N(h^R*i0*3N!t>{
zPHw0mwg#~+i0wfX{Wkr?4{5Q@DLXi@rRl%5NdGc5{p%oh1>p(88^rD)_Rt_f{1(LC
zAifFW`yh@5@of;_1#vKlLqY5dVn3JuZpwimN<DOu@Us%JfE*6uNDxQqrN0+yQrwpF
zGt|Kn86^I5FCP!$L=Zm(aZ1|xA&4J?I2lB2wf%;iy3*P|^%W|gmM(q{;uj%Lzm(Qx
zbSj%-QPYR6-?@o`xGY6yf;bz*c`kYoe~N@U=YklLU!R1ji!}RJ5Ep~EBns_hU^5Te
zqbmA(>nlP09mGFDT$NN%i+;$j=E>C{e7vlOP%Z>N7cPi9LEH@@7(^(DC<h-zIEV;6
zJcw(@n`vySYc78~rw73kSI2*!#n<&1L73ER>|jcqlEWA83~TJjr+yH(gBbbH#TWQo
z=i&x&Gl(0sUNOhNf+Y6Kf9Ts&a=4q2(3FIYtV(zMs=Dq4ai76FgyJDQ;GzfdIEX?a
z{P@UGzhu@Uj_TLU*$?eg-3y1XJt1pRLnkpIgv1b%M8a(Ml3BzeAruu!vADcaUuXVH
zjuIi141wg%qg<ZvR!TUtr9&ta=kvDZln>#F5bB4}AcP7bR1BeR2+xL4DTK-)JQd=9
z(0~y5lA<ahzOE;ShNAy>XqsJ>3MCxXLeTp+s~*CWA$#sje5p~55Zd$5*pO|vFCMxm
ztQA7-5c0NX)d}INhpuNrw!sUmdgEBL=cwP<Q7?qFx3f=d$|>9}uU=>S4XzDCm{mFX
zLfhPQb{#@W2v&9z8Zb44>tAK1g>d4bYu6iD#EcL!L!hQ3gzOMr5S}HNwmI)bA(tPz
zsKB(lpR;iYFNKg0Mq(IELU4vKFNFCaG!5b95ITg=kygFiAt!`aLKwL!WlEBg8$z=X
z7A7g=c_9$VS@dcM%|)k02rWZs6|(;``<6&p+B$^SLU=udH$>hhgf~MN*CK&Mqgo`8
zP?^|P^xMU2wHHEprw}@aFp>5TVMy3PH|P?AE5siop=$^us1`!E5W0uZKZF4x^a!D6
z2z^4B{fwiRAW3gdt*C>9ComHGhR{!ncn%{IB?Chk6v8kO4i+3DI8I8bFqA%XGK++1
zc*s7bkz`Z|qeB=U!s&F!+aY+$D`Ppe5XJ~+_8lR`$|)TA#lB81H-FzdA%tz!l}A2D
zAlJd)T1;X`A$%Oddm+3Z!eknjiypGy1a;>1tP_*criM_qNyaq6>4MD8;24C@6#OtQ
z|0o3ReJU`q1*SP6%njj_0<|)!_fir@rzHH5W~Wa>SU>~*m3fP+(<_yaj~0foD1^l!
zED7OK2$w@x8p1Mes}OdC@L34ULs%Qax)4@`_>?|dssH?f_NkwTF!omcF9cT#ekn-d
zst{Jk`5GZ_ooKwCTfXj##+s~}8&lhCO5MPXvnh2W<G+y2f?EVB-%4}EdHzG!PHrC>
zCxkyjc=1-diak=#Zb|(*gk2%*4q;CSLkp)doep7d2;WHdTfrkCd>6t#;rl~4DCB@(
z!XsB?>Pv@0IL!Su?4^Phst$kYXb9hn!ZB{N5Pk^ZxMW#W^^xnx5Ke~hQwXODgpXX=
zk6f(FB9hj^f0m+O1b-Ez!f){^_hvM7N86nV@nV;9HiT*IQvVb@C&=u1As0gUOUOk*
zev!nYD<S;N7{WLZ!apHg4IvytgbTDjb?!5%o)GwAz21*p-Vlgt2tFZx!GIv;!4N`m
zKH-szZ+*<#oT@Qwu1@7+UY+r+LXHuFDZ~<t3Q`_p2o=7!Lmsm?Lim?K<DcUHh0tha
z>hz?B+l&T<w%Era-{kf$pUQu--wxqU2zNuc$LM-D<+0#>!H1kh5D$dks&8L>ABFJT
zm={S3g>B`+g7i}Iq%ewv(ISkNVH6Fc7>mNF97a$}DgQ7tIcz^aFCIpTFiM6|DvYvW
zlnbMD7$4ng#8f7XW6K>R{5EG>F~_6N9Ob2`Vi-?^Q6UU|v-2rmo}6jx@W|9t8QBP<
zN*F0&q=r#7jA~)j2%}~g)x&s_T}-jRL^w0W`BWGeraNapay?C*1J2eRbFOyCsTD@;
zFrEveUKn-4cqWXxVLTfK&yVIU&@=7~-stvTZJ!+dbhRv=B2+(&24OS|<N2_C0uj}y
z!&2&u7@f^T{j@OB!+43IJB*AlGQ)T=j7DKN!nidv=Y=q?p3Ef43L{%2<ZNp0smy*y
zGh4OEQo_(v9gV~Io{{`=4(~8Gq&l2oG!28#mvX`wRwS8(>1C1pRY=JdLP@hQ@`S%4
z_-b6<JdDdn?Z;EC!e||aJB+SjycV`kX6KIw+J^D#?zGp#ctZ$z8zFBBz7@u{AB$1g
zE{yhJbdWYXh0$3^M?oG*)+OGTi!0tfoqbI&*MQjJczU-mdW6w4jP7Ckr(%O!7bEf|
zc)h~t8%Dn{$a@R+5oD0;AI1RAG>qY43=9LOFf@!$nmY!Ck#jm@M03YrHWdcReI=LJ
zu5sqc<_^7l#)vRRhA}FPzxHGtR&tYCI7W+_w~9jkb{J#AAYmzSY#8Ih7$3$2E>;B2
z2quQ{ZW!J$)G#K6@m?7F!q^|i`(aEDV^J83!<Z7r)G%g+(f@kJv@oV~NW~o=g)t+H
z55o8`Z2wU3jMKrdWoL5f$EGk{Zj_mJHN`xdp1CjCA9KuRBQHBY79^P?WG*KtWL{i8
zpC*m-1ws}I{?;#JNf=AR*c`@|FqVb!Sr{9_;HUEC^vr45tLXW4@>YcLc^I1>x&Aqo
z_kGayMHnmTR6*C5f(IYD$f>qkl-Go@HjLj+W~`I!dO?;Z*2&XaIW~qt+$7kuwPP#&
zwpRL{F!s_n=u2|??e;Ks#Q9DkUkQFKxGRj^@zR|7CBF&d+b~|Qmhl~TC0`|RK824@
z`J+U}5PsElAdG`yoCxEGFb;8b{&e!O>fx~c#o{U>=SUdb6ii1skvKmVwqLS+oJ;Sw
zi+&8_B)565)XVg09yb%l?_vBA#;Gt)GfJ$;_*w8*!CwT&f1N}5Z^9EMlsps0S&og4
z6vm$nBWhNcSn_yZ);U_KRQh>AenUsjqKlHfB>4T!OeV^&gu$;r{w7|vKcfD_jW1L1
z&=mYXQ3d;7MZPfnbnghNMC{oG7$?IBg>mCyq2C|5!tDBw%vq}oRfr%$<1;dZVKBf(
zP&8tHv1NwwZy5iDZEl4T6%q?0pVkmg`3)i0x!3r`+1-?bbBj@UlPf6l!V%mKgXgS0
zknA17yMp%w?+da@TAAdB!XF7f7Az#guuF%ON{I8s2$JG_uP?1w1j!L>_%o4eOvR<B
zYy>6ZIwgga5-c4-nYjGn=f%p!dHD#Q5PoHFDK=73%+<KCvr+`a$`Ks?IGv<w1l1x)
zjUX+8>JdB{!Lt!O$2rzae=34nQmbz<$I}tih=8P~;Pqq&dF=?MSeZ<9ggg^L-3X?=
z<*3%yLE-tdym}Fw8Bn}_#QrYt?j$sbpkc&5yzlu4QX=-@eUth-*Q`n>IaVXH%riNB
z^qL+)Mg*g`r14-f{<<kM0!IWSOj!|RM=<tg+UyDGF9>;2u#up`c?qGyOA-5bup~_*
zcsYU(BA6LLP6W9T42)n9#}GkY1RW#jL=#2uY6P!E@VZR4dBncl@WDch2wFzaDuUq6
z+`~D=TSrj-$@EqcJCVG><#;8%1BI8<_>%TE5fI-Ld`qycU^~I~f<K;dKJ{5P&vxXV
z?Hoa`2zYi_mk3-DxFhHqLH7uH&~G2P3O#mp6Y}I^*9(tbJtLr`<;)xkNhs+pL+!)0
zh@f8t{Ui8O&m0iJjpA7(ol4k9elyf%a0ElRIuT5bfZr+(jbKa!??f;xg5eR2h+t#{
zqap|l&mw-3-)M9MZwqPn*u_N2w){pU|9Nu9MlebGop86&xCq8aFoE%(c(>6z^>bs<
zMkMdD*~cytexd(f1n)=eFZ!7#3%Qn-OVdq@*grU*Ax%xE`z_CTJhIuWm4#j7ntT|+
zM-i-xU_E^%g4q!)h+ts^`M)~((}It=iw9)QiC`|*?sVEG(!zLeA@X?<%oic~r$V%)
zB^E`nID#)ljnQ~X1fS6e5j!$3jo{PAu4UY4tsOfbyH-T-c?2tIjZhlN7ecs9%yvky
z&y^tg?XhbWmn?#xFQ=~&Bv~8byK@~R8@R*~?1*4z1Uz!|YK6j^q~FbgTO!yR!L|t6
zRLf$z_}Im?Jpv-LztnF0RRq>!*WL*DiukYTsH-w|3GR+y56xBMl|y|pDEx+-x_;KT
zY?B`QYf8Na+4~}RVZVcEe*_1F9~3+kmmd~#B!Z)HNzT@^;}M)-2)&M~*YQIHKhl|F
zC>g`a2!7(0i6SS8QxTkwV3UQ-7JlZ2ir`HHZyESCg5RjGqoj`CBlv^<qhYj$GZCC+
z^w98}hCd@X7r|q?tA_ItT!=uAz=+_l2)=HsT#dlPxkqqGvX=$_5xf$?-$K?EO`>L(
z1xlGhZf^uCU6ea90w1wV(#;OatYyltZ54k6#5&1I{q84bbXP(Vgc(4(D-o_TV^O)J
zc@%b1woXc0&`&XGWCoK6Zbne`VPZ6b7+ouZgVNWRZsi(x5S?d}a$TBzX_LZ^{*7Sw
z5`{wYTMUd5Jm8euE5kY}cOtkaqrJXRxl7Vc*)~|&+F7~J<?gI_2P+Rn^N}E{)Gg#L
ztRX=|B@LA|Bx*>~P+UU^%^pt?4eh48ifWkBNny5_WNC!tI7#fPl+;j0Ls<=_G?doB
zG3U2e8g5jah1?BGCY96hgoX+l+ILjSYgpDrA>ptqY9LaXSbK&Gn!O6uG*s76MZ@j8
ziB&Zem}pNY<w*@sY2Z+6YIs`1svgSm4od%WNi#btH8j-eXq&y3hT0lBf34J!F+3v;
zCa$%+sH<VdJe$<hP+vnU4Xrga(9lprQw=X`cwR$_hHMQl&}ZCAs)h^=nHthGq{}$J
z>7#IX5AP>BH0<1|aMoEGeq5@M58tHFj4x_vq@l3}uBoEI=~9^3W5Qy);!7HuP$)y{
z)lM1K)fWEUMaj{St07OrD;l;;R5;V`dnwH{&~v6QR(35`I^9itRYP+PEo4%x)lx%b
zjgr>RHuBr|6JOKtx`zH5255LgLmOH^Ll+HiYIuulM6+wQH?D1Oo2ab@WwFg^*bW*x
za%uzZWo5P#m%gh#uTeb|mj<_nJ~G;_8oFudsiBvK?iwx+RG4~5n=`uFW0=0imdtIh
z^p;ZkdD~Bwz8X3da`)44I5}y+e1$e)?*laq(=c4aAPs{x(3nHGlpAbQ4AuBYJU2H5
zafAjoTmQ5&QbX?!cEuTm++5<fHH^{l1I@1C9Svh?Y7GlDjMFe)!*njOh6$YVVr7zs
z_cTn@;NPq;y(?r$ALV@wlj+Gc=0;`AU3=C{%L}>dmra_g;optQGz~Nk$p;!{YWP^g
z91S08_^OcmBMr0I%VK-79Ntfb+)T4I)LUj7ZLWq-G|bm<OlCSyL!gkmPnjg{Vvc`T
zU*%JA=HbPY7HL?lVKbLo!x9ZkxvVq--Qa%WG7ZZ$tkAH2pz@g@{fE^VNj}%`g@(V{
zDZ#GxYOWOf)8?x+tl?%U<lZ17Un}x;vT$SW+Y?+b{c^w?MU9%9xETw(Nw#X(rr}!+
z-)Y#cVTXp@8urk=IbXJ*Vc<H2i4M#jNzU(3b}^6^c5@3~>!s|KW%@=Op2qz3ej)?T
zJ`MXdd`~-QIKT$GDTn9-LJkUYMn^Opr7@Q&ES<8%wjLee@N(NHk85a_oOD7%PGL8F
zhVm|j-6u8tM0;v{_<&OyPHQ;F04{U<S;KD{eivK)!nq4!gES!19~#aw?9(!L63@^F
zN++>*%GuFZJ?%+dph-1&HK-acN`sd*T+whzIA_WMj4bT_TdeBQ@Q;S8!YRDlU9sE>
z-J9+B#1wvZcPG(VIB8a4H^a{FgOrelu!g%D?s3m*(5R;28Y551BrdnE!I0H4HAFSU
zG+2xhNLpLi-C>b!7DfXOfFbU>h8r3f@ov*gHT<XHmIO5F+?4Uuke%DWtuV^5%8|nE
zI}$FqeeP>`!0@gkQAf4z%0ms0G(6UDf0%8DmhF^6ItuH!QrI0CW7~v;n53hKj^euQ
zY(;f@KQ`{8B<m=q<6kigv1Edq!n?9erF4|m@r{meb(GOjR!46geRP!5QC`OjI$qTA
zgpLY2>g#BrqoR&VI%?^tt)sFI=%}fKo>oOiRUJ?3_^gvsjr?Kale+Ci9BOqPp1X;h
z-BY@KiD8`KrLBgJrtK9b)}_u54-@O?ct*#wx*Z27dB215>@KCQjyK=6qw#aPeNCw+
zrBvV|Hq`OFjtm`{x*c`dBU?_<k*Z_aAiI||9qCl)Zu1_46^9Pu8$*<A9a%a)-Dn$}
z?!^60(nyD*qYb;$(OAbzI`VY9qN9m!U)`GOcv*;3(AQDPp#>7$i>JDp>Btq%AyM-4
zJ9e{7uj*)_qovN%uI&~$JYp-|z5>1`NYa{pCAdkLUKimTVj?=yTRPh6JZc%8Ib|K~
zb#&0tQOC@(NsRn#>ey{NO3-hKbOvG<9o=+v*WuFP*1_vhR~<*jDs2<&3DUtBc6x9T
z-AYd#<P_2}z34&<mC9R`zBHqbSvqFx=&xgdjxjpk(J@fQKTOAP9fNcX*70bbGKBI3
z_fQ>H(IoDsy2EWtj-U-SjM6b$s*KdJrGvdv?5KNk(%Zbj8>Dax5Xb5mr{e=oN5^=b
z|AxkUI^Gwjov7noA-r(YhnXhncygUhChM4@W4f&4RKaP2Tvkq>yNo*IGo*Kt52YRU
zo>VUBBQ9k}`*Odav+}WyIXYI-)U<<+Pv|i8TOIRs%-69<$6{&WQymL*EY!g}qR9zv
z`(|uX8e3bO;HE<^(ZTzHr8-XbRHpB=yZ)l9eN(YqN2~72=em8fv4RfJ&K7<lLe^r@
zDjlnJY^HH^oSLVs(Xn2~23e`KI@amfGg)cc&A!LjC_c{~Hwh`1Y~RFouavY^$2N{o
z$1WY)#bI`GQ99bg+aV*TOMk_|ceX9xccZdf$ANar9vypW<PHk?)pzUx(+3#wzSFUf
zLB>Fmf&J9f@wd*uc;KLpLo}d{-*g=2@N}He@q-So^-&$i7$`c}_dMUzdOekG3GQPF
z?&D(cs|oHOb?{Cpp^tK!<7uayWQZ87{KWYR;i#D91b=2<U6fx0Dg0f>A3DzKxS->V
zj<eF*pE9HW65OQ{-3*(&gq;&PV=S)-f9V*yR=K3(B0aWv5+$_oWr=$XeOJUd++0@~
zf+*B+O@~*9szcMEOFKRt0Ube!A%1pxCy|z+B|}mg<__&+XDN(`gtInum^$hux??(S
zZdWWWL|-K;oU`C|;9lT<XO-(ZZs@qD<37W$j{kJr(s7%vSj=8Zrkm1cPNJLZaz|GA
zE`!N~L@o_uBOUAk&D+JkZ+Wcaq3}n7Y@G5!1_~Q+^ivWHxDxGcUNF=m28tR;HIQbY
zn1N&i)eSspptyk&1}Yk;WT2#hQU=NyC~u&&0WKC(S;M~HE@RlYlpGR2JFrdm^@M>6
z{IJ$mc_7&ngKc4D129n4u;W`51Meid85rj#x_|7bkXI8qi+B-#%D~eGo-<I-Kn(*m
z4b(C4jA6%zT7vAZNb#iF!q>}04kfzl8hG48VR}{wBgy$uN__**v(tx(4GjF;TWKix
zS~r{1N+|{wC)!u`bORX%ni_c7KqgIOps|6M3}hL|Hqc1M)~1v4f?;1)UX(1`B=2|1
zp0Xlxx;Oa+8BY@fP6Ol1B$=h{waYP(YoL{Z)&_VJ)y%LzKD=Te&#;|=KL1K*<y8aC
z4UFifv=D4*fKy<Wi7mWl*n#v7>H2lUzI~<Z7ToQ(kt~(l8fa%=qKS7+v^UVffNsDr
z(9u9A1FH<IHqhDN4^i;Gfywj%18xIvb4UidO3Nb+j55&8Kz9Q@4D=+aWRJg>f!?Ap
zM6i#6eg^sr?@Q;om&i*h)dm<CEW&|;{O~eJ2(Q;GirIFi&QOsI6CBQ&3ZZ<aTM3J;
z$Van%Y49BbW9gRdl!*q$$uuX>_XaCz^Of<G&sUVL%C=%j41lpj_qzs|on+uWPOyXR
zko*8X#lTcr+rUBt(+o^EFvq}L`mKQv49qm}Axk^k{z(I_dz|=@0d7fVXB+m7!7L81
zon1u9$J`D{_FWU#{SyQ84a}bI;zzT2;_A;Nxjz+>KE&Q@i|AUCT_F=(Vqhs7q>m-J
z?VF8u%4ae!ZeH@`!g<^Oxq&YXtQ2>8xJ&s`NU)ni&NkQ30tQaghYhSVu-?Ey1BVQ3
zFtCx1WMH>}P14<FZVkHqTHD}T4Qw;8)4*4B=}ihF(sl!7wkb?IM45!w9r_aSYs0<<
z@#b)kfxQO4HSnEbe}4bQz^l_-BupG9KOgO*=OnrJ)18vs{GdU8fSahhLUP!^5d%L+
z<3~AV`AmAu!1wgYp30mgH`n^O7>C9@Vf-(O{%GK&%=ag$cuF{T`iX`1EPkQBfy)N2
z82HV=@1paUfj<nKF>ubndA4KNcZ|GXRcL451pX=6Po}vRY*sFaNAW`(IVW<_z+V%U
zO9mLAxQM*D{oBAl2K)vB2Cf?L81NbPCA)t=xjAg7cnzqsOtX5}%g6o8(sfDhAXg#D
z9hUKgxP2Dcm$`@mhBb};*2jKU!||K+D+V+Z^-V+##28LZls1uX;F^Jl+}#GQ8@OTM
zwt+jc_y09;OPc*pvUI|mLio|1u}hiZ;vDZ9xW{$xW`7K!TizG`K#;;VYm~<Z3YjQs
zqL_)oCK5~}nJ8jn%y4_}B%1g$$<4ICOj7$kN-W7;WwY&R$tH@MC_yaZX0tci**Ao|
z>)XFpDQSX8yOl9f)<ks^PnsxaqP&S}rXBO2Fj2v@Kf_ivQIQjDuT(Yx6R)0DDhX1D
ztub3gvLyV}PyLNGllXys2$G&MQL~7<mWkRXo;Fd##7jlo>~Y$BrKX7;TWrE+I~8%)
zG4YIvx~6?ic~0<IK~9Y~OZ@P{mK&I8XrdiMqKW5Cq?pJtk!vE=L>gN*(Zoc$i3}4j
z%G5GVj4I;JGLbFBVcP!x_5H-<^OP5)@wG+VbBnl{ZDis=5w~KZv1vaD;=GvUK5~j$
zQxh+nwr_Jo(I+`VUfOE*R+^c}Gtt~c3)8-zxzx*EyH{um)4tc8utVXeyp|?fnRwmA
z8zx$txLm|NV!i!*fQ`H+S@zY&#G5Ag3F3MY_gg~Rn)W4wIuvru#11Apn&@w0fQe2f
zI-B<OtEY)BCR`@EnMf|`=7SF2JiASFHSI{qinMm=d-e@UcaCbBtA{KiNiP$<P4qF*
zms9Se^pk0lT$YcGj5alkx(AvVWMYJgktTka>Kbffs4U+Q^MB7w7^~U-FsVD-wC^04
z9c5y)iFZtlHSsoAq@%+0_ZAz+NcLpWq;aMl(8imXz`3wW4~3DI(_zeMT+}_u#Cvo_
z3r|^i-^64S7wCj0rkI$@W#vklm}X+SiA^Rpo0wtZ0~2datTQoF2D8${mnJ?m@sWvH
zCT5#hF7l5}%n`EC#9Sc@1V1q`&%}J;{K!DFGkr==D{9|aajl7qOe{9BM0A##SZ4n3
zy7rk!s4!TR`7mLHiO)s&U3t5yFX;U8L2Q+Y)h5=66V6LaqIWUuFaj_t+HToaS#M$^
zC(>ToV1f@4X%He6cmd_-mo3~cCU#28Te$@~D%(tK7qj!0gW0cGWMZ$0Z^Sp~Kf6r$
z>4EK(-KKpl*dxehzm?tn9qmS+X>Yf`PpUk#NGZC>zJoo;6*uvti9;q1n>b?PsEHFM
zzUyIsZ2#T_?*Wd}4H$(M+gFe;in{s9f}c}pD>~Il6F+eanE1oQDHEqn{K6jT*rLyi
zGWRkoGU#zIzlpDM`h28JM<qGKP-fbX)XvIeTgd&xIgwC!UI;ZWnz&@*o{9V1M<%YA
z&`lWJi6;Kx#7zWDTs7e_;iF@eP2vYbuW3IDP`M?$+r5*so!v#<e1OagLC{24EE8fp
zX=h8gE)f&Qi@JZ`q-dPcCOZzBCM*;Gn)r|L-$cyB4cS)tCa%eVuXDv`xHu8sO%d6}
zxuR}9)_b)?(oGY$MCXo)+d}vhjyl`|&ks`WiiBA{gnVG)p^1_fN?CR&cx2+Si9!|_
z-no?uTS%}_)Iu=}yd~qtNwoNqe3(VuMJ)R!nT?Rs!N$3iWDCVD`!<zAX1P)&ED-th
zue8M<c%y=aikAJXrmTf>7Rp<85at>^VWIsJh0Dif`nP5hA7WRsP}#CC4b?6FXBJh6
z#oX0MHrwW^%25?_Gw4yDIt9qVKW(9g1(yZ4g_;&>S#VltYN57;Iu<f4WJ-_ESg2>A
zzJ<Dy<rto|@LZhVTdFj$(9psYOO-ScK5rq#vY&7BDH+X}Dnbr}l61>{)Wd5>f_w|$
zu#j!x1q)-Rxw6<}G22~VwBWd(s90!O%-ty73m;Q7w(ydLCYJ33oB|&~kQ`m0ylf$d
z$`)E#e9bTV6>~S2TForvS@xBMce50}Vu8;{UzH+~7DD)pf|teC!r!#;mW9_Wyl&wQ
z3vDdWfb1yH*<KNj`4c|&7tQt-ItXb;!w$BWucL)dBI#n;-ziYS4cnQXu*tr+;bL*=
zyISaG;bRMPEOfWf!@>v)BQ5l_(2K*i(BDFD3&FNZ9}C7JWmGXYAGnQlD}AZvR+^Pa
z8en0dg<-PLgDecTFqDorUm0TACXL=rTsdE27awMJurJ>n#&8)GKgx}=FxtX23)3yU
zZDEWBHaO10J2J<yf($rxkCO5TYrOQr>;wxFg})n@OcL@QuL43Q$K_LmOttJ^Zm=T1
zg_&VtriBkJd|=sM%FvixUxs2nWaD$ck1WixFx#?2E3+IeKi<x@@QH;L7CyHy&%%7m
zej2vi!l&FR7M568Dl?kUOX0R%Xkii8y}Pp5vM+Od^20_LJ(gMcj1F1Ljx7c8gw9`_
zPZ%aEUszaa*<S*#v+$*bAGytWXKrDYh1C|;(DOSge15{A?!RppF_l}Uthcbi!bY(Y
zr^W|R95XGvg%S(@TKLbxHVfM={KGA5VTXmC7S34+eW!fI0So!f!Y&KDEu5C@9t(Rd
z9I<dzvfo%ZDCAoj(84~htc3&Il7*A<rYP$-rn0H_6P3>6lsR81heY$RAb+vXU(T@f
zdrn6xk{^?z;}%XZ5D8yhCY7mm$>&c>_9sC{nZ#4{^Imr2KU?^PD;V#TjW7Au?(ugE
ze~9uK!9OjW<<j&m!zz672$4s?pSN(q!e16Ha=k?D5+eX7-cF$zslcZ6p~~!H?!Top
z$*?PWEO_ba438F63qBTE2#bQ>LO=-B5)Tv#3g0Z<(J~PWng!j0wKa9nmQ?4KRE~2=
zF*l84S%`}Abqg^I`4+B8mPVs*a9RJ)Tx|J<6mcDITDZj+7)7n9y=1p7Jh1T4!W{;A
z(Ya^gz7UqqKbFg;NFG^u%sn1Ou_y{fZ95m1>MR=VtDhh|F>0GPNwA0@$4p6b6vd+`
z8$~%$8~UgrZBinNl2Me3qIA>_^;~*l8Q~=K0b=<mo{ZwDD4vL-f)rJZ0#W<ATq%mm
zQTxj#s&Ow9tBAa+U^PLiRTsj0jHjb0a4imrZeJq`e%5ApwWFvLMMe~vQ9Khx-6&FI
zkk3Z(Toet3*NdWl6b+)bf7TdduP>Kirz`>ceO`1bE`PaTp;Mzs6G?h}E{uncD6*nx
z6onE+b`&o}@nRHQ5ssV&WV$gJT`w0Z;Eknv(<ojN(uDmAVP90>nsO0Ia-(P##RpN$
z<kX^gC5j<Y42|N|D4IucWLs+AC|X3(GK#K}Z52i9DBg;qZ4|FX@zI9VH=<}0#p_Xg
z+!a~(5?SR~G54EMd~z?5i3*gDUR#KyT@>x3=nzH6DBMz)%AKNiDG5_&>7q*%E+Ld`
z+o!xKjdY8myJ+@^qL<WdF+k}VMQ15x<GrKs6?69yWVWBQ&_9X+QKXB`z$gYqF<9hO
zV8w!dhea`5gwvuJ5yi+T-izY>C`PfnD8@wbj?9J1OmE9HS$%92<D&f88{Um#yeLpO
zA&P?0-ayhf{T1p{$TTUgFgc1TQA~}`uE0bqAO3G7(?vc*W>;Xk56PoA8^xbd%!*=m
z6#JrJaQHZiIZ>>RVoelt*?1JoqWCO|c~ZI{iiJ_k7f$6*>Af3M3n#l5iR9G>iHn8Y
ze;{#2_|mv!c@!(6_&ka)=mVm_7D%YPGKy8AM#+~#C@;`i8^yXPwnwppeM!-#xaI~S
z8>1-bj&(OjQ7PHIMdVurw+Vh&HHoD=>F`nPisCB~a^$SIJBmF~d>h4gQS23YL2KXq
zf1Gt2CcB9o(*7t8L~$^RLs9$^#jjBurfsA6F^ZE>9F0%ySQOt&3#=8IVu$79l0CuD
zB&1+Sl>a2-KPAF~DW8tw=XhNX<~QMg2>u?I7igY|&;48!=c5Qm5sBi0=y;;=M)6k^
z7bSZsioc`yCyLAQ7OuqW7R-xyH7-%<>QMyan*O+)I)V5E$wQ*Rk!VrqjJh!tj=_k+
zjN(odccs*d;#w5fqlij2CYUeSL`-@kihm`0JBt6rowzQygxnP5TV(%leM#<#@?*jK
zQ9KaxQ1DTK@IfM5Xp`(NSYM7aA!a*vv6$^AiNcd&C?ce&AWIAEnJn4jG25%DTq=gr
zF>H!qa|~r-C>z6&7>34BE{5_k^o*g=IECp6A<bi`5JSZn|00UYF{H+j7UP*Cw$9Un
zRRpUFR*NBXs!~0MtfVBSCq?*F4E;X08>}JOnxa!nuyzb}Vt6Kox{_@e!?Qx_#ZX_!
zbAs>HN@^g4jsH+8Y1m4I<oUQHMaY5Am2_#psbGd+X3T!8m_slthU^$#h~dQ;UW%cK
z)M_NC#K30RCR1aPEG}thoiQ{Ur_9)#`jeEtEN$k9Lat!581iB$P^SJXF}y1Bg4Q_Y
z7BRGpp;Zj6rEVv|*92deQN0mEn;71V;jI`tilnU|huuyHn<8%?Lx=w_+qJYU>@4kc
zkse)w?ijkp&`k`^@$`tHJEt~P*-5)iRcguvdr7U{G4zpT;voBqq@Q4aK?(;*g9Bq2
zBxJB4+qCT;!|)hp#_(YbBVrgC!^9ZgjbT*GzWlu%!x$l>1sSW~iD7IE<6;;ev#)Ul
zSFQq5aQU0Sxyu!YMU!Hf9K#f;`(Dhx(!I}${S_8X72&iPrVC*UGh+Babf`uJUf>GI
zM={KbVOb2HiRSDW=CW(yAIC692=#j=yXVC)KZb=dEQ*00QONXZ3=4#hN_O+AM9E_5
zWeFE6e)U`$voGb$E{|bF3~RVLF?=4w7cs1i;Y+E`!4!;V6-|9Fv0$=nZFPLU>$oLj
z*bu|UxIRk@EW?T<#4Ryw<yO6h^+S|xF>GhQ`IwcD9Wm@=Xv#-IKE8_KxBbfg7!Jhn
zHK(&Jbyp0#W7reJy&_59#_(MXdt;c9>>fN$`6dS9m&xvZF?=JE)DIL&eo1y8jNwoW
z*J8LH!(k37hI28TkKt$x-^Xw|hM!|N7Q=DIoFYj-#c)EJ`hi2rYD~#fvy=m~l^^*l
zP?1x}W|>aK(08tM5yP)BoQ>g64p?-|WcTkJ_H4WKj~I#;cb|#NDItHdxIJb^aW{1?
z#BeEw%Q5^VRW6EVJ5jh2!{0IZV(?4RKQVY1TRv8<N|trsmKMA*s3PI?SsIWQ*nTL6
zV4QOzl!Qes5`!j07c>Ofni+!?=g}Bqah@-Pv$#PQD(=1?!-E+9jp4r-ZpQe!72J;D
zj_BNy$x?Eciz{Q}knY9D@I!I;Lx$V~$|I4io^2cUG3Qv^T`1o+9kU!~Vm^}ck&}<y
zd=$w?%1otVJ}Tv-Xg-SNBRL<%^HDw@^-H*^Tp}N3@=-S5u3Iu6rSefaAMA*eeSNNS
zTL@b&mv1jFQ~46^Cq$Y06@;`b;jWwy<Rdko$M&I0KC0%URz7OyqfZHUwR}94kEiod
zJs(fz+djrd3Ramd)DTHc89a;rPhKY<&*tN~d^{sv)Q$JZ2J3O;QY%G-4TL{0ykS0e
z&#`U7rY4qf|39kU0_=*admldV9HbsP?x8zXR0MSp3v5)RVJHEEkWxSaMZ!R_5Gj!o
z1Oo&G18hY=coh}90~<Ya=1j+#@80WqpZELyuWPP#ty!~U?NvKw_MT<clr~Sz;j|o1
z&!L;7DXYC}4xflZyXSC54n1->TgqYjGX*(I60;m#T0x{|4(G_DGA7TJ1m_8bMKL2`
zuN->kFfxZxIb4{-MLArV!&Nz4OlPcSTq=n#$teqDA-pcj;qn~%2>l9yW$e*<iS*6k
z>KukjMg4N<FDe)$ko*h~`asEbsG8E(V4<-2L!=5K!*VbrK^f1(a~L7FOw5d<bGRml
z={ek#!x%O*hZ}MjpToEuuBBB}H?GSm(>hkoP)1wLxITxD)m25k2y@(kkI5{px-lt-
z0YYao5^t1S;!|>%D#@6I*R=9vH|H=Thq*c2mcz^(?x}9vlEbaS*sL7ZRX14LY`L9N
z&h4vGKIymTFi*<7OCH^k!vaBA>3k`l+%C*v(f`SQr{L=)?A)D0S#$2q;l3PBGI6qr
zB{|%m!*4nKp5s;pJeb4o9A3=fp&TC0;i(*+&S7Z|kL2(~4x4gVmcyettj^)F9G2&>
zf{&i<vNDHudsH)t6Rwg<>8ixn<nTD#mBacR)|Myxw7S8R%*$LGq=b!>xs<?Me^)m)
z=kR0>TcjK&U^!)lZxx*7GvhOoaeEHW<?w6{+vww^26Hjx#aebp4m;UKEn8L*iO);=
z7bL;1@-oT8OF6up!{<4Ck;5xF?8)I!4u@$@IlP*~J2||Y!)rObp2J%?yq&`vIlL*^
zyJ*?wrOG6Dv9BTQt!38=vX9DrK;NIkfgIjr!}sXCnC4)4z3-Q?u}AMFCH#j$Acv3X
zm_q+Bha+^KQll){M^bND6)fRs4xdUgGQ&zg6F9llU=?5H@Kp}KNR409fOGghhaYmd
ztJGj2O#Ce?+M|D$!z!WtD8!!xvgDnmM#a7Q&vM&;kA5tNev9>A<(5r5P-^^<!=E{%
zIb=-ymBZgTxa@83*N;n$xg5+K{wZ(ozk>WwYUFb~7#tmH7#Gwq3OU$PAf-o69Kq|<
zP-65-4KD{jhaiWLo}NQY#}|2$B_c@<MS04^BPGjhffY<tG|}9|^n3LZ6Il~=Ow={O
zT$M~zGf~~d2_`C=s^lsrs+y`a;t$p^dhXH7swg$_b`7JJi5e!#h&4?-DdpFe^dx>!
z!>DJXz6qGnOf--x8cMM&ja;!Pvxd>gL}L?8O|+?Ll-5*DYa)f0)k|VCse<$tCR&=@
zpoi8bI-2|+8QPd=E7f%{(M}L1Yj5J5ng$F1pK4faXA>uys?woS1sPxh;$2K05{_{u
zt~GJ0iPKCNCKhJ1T}_;BqK}CyOms8R-Ne~s!^9aT&NT5vO{0g2v!p=X<gfjVInpAA
zyZdXZFt~>a?$*ySaXH&t(>T|}d6M{i6F&(97sxI7=_N>SlYci;>|G@AVu6<kyj0+2
z0-4~5WUo`pxYEQ`CI*=pY@)A;t4$0jPt&QEF^$$pfsiQikSq-(54DUDwG?kdOgQ%`
z9~^38W-X;w;=@e7AyUi_H!;G*NE4$>j5YCnEn~EaYuL;avSSznYbhN)BXGY!-a566
z>r7m4VyTHoOx$2%yoozZ%qL4GCYrd}#0(RYOx$Q<GK(@nwK5|wYKII=H8G7gDMZ$I
zlL^vm)&4JUOfb{LEEBU$%rS9`Bx|8%Z#BV`ooX92PAYV+iQ7!vZepH^^J^<UnQ_V<
zooV=Vgisbxzb5WBaSyAjZ7gD$H4It;Q{HLfE-|(;mKK}1*TnrM9x!pAB&#Y<nSP0>
zJah@`6;2)!$XnL<u;46>36`07lpV)i`rbSB<tA2`SZiV(ZFP^nlCr95JSO-m6RS-X
z(n%*=BPBd8aAR$yvh}9wj5gBnOdh(f<i@<DY%=j$ZR1H3TZFio<?qpV?a>+Qwwfw-
zF`P2-u|4|JGX8(2Y!)DJo51ZRo-?t-#7;VX9;JCaZ{h_LUzx}~)n%87-Lwi5d*$|M
zZR14~FA4s#iC0W4zC}M)+h{UPk7^slUnM^#j+pq!#Oo&Bkdz;qc$2NGW4vpkMIGZU
zsdw{4{cRKPn5g%f-gJ`A+kGb9GqK;q0TYKz95!)KQodiFo{8s{WSNrJf7rTm`l)pc
zQjQc$de<=q)iG`>$$o6&6RDa_xS@`5)WoMIJ~Q#Ti7(3OkHjT>y0B^X%W}$1amm*v
zzA^EwiSJB!CVU#di65B2glXbON%^~pKj_6KdfcS5gr80PLhZ<-Urjt%#~|@Hxt%Nc
zpMoD3_?N)H1v1$ab&P)m|5u=s$&#2afBMa<s(i~tK`3^4jgARdD3_<I34w`FZmZ-G
znTSnP$}8O^<>ge6+oFlIoRZ1o1>ud!D$3ImfmwlfPg3=sAb4f&&Xbf?^LVDDPc<Pf
z64BMjqh=m^_UhDrt-P9DHV{apb{=&EuPd-#IlaChRCmL?vK(H><MTSoavJB+B##q3
zRQAv`k7ju+C}3d$&GTrH$E-YV$)jZ+t@5}ikBjqYokyEIPRpZf9&Ph#HK}7Bo$_dx
zNBcZF<nem-EQzm`W|y?ej&7y!&Utjn<CHv3%;O}<a&-+wKUr|5KQ)h0HPpIIm0?-l
z5;;AOZu0bkJi6y`Mjq$najsC#B+Nt4<Ig%qrFD9bJo;|X|9GU<*_4<px%AAdwWCYt
z>x3-LZ<ReyGM=Bu%WKtg78kX8<<VP+SC%SHE)@LW`}!q$T$;y7@{`A9d0d`HzdZWq
z(I<~9^0=xjOCD28vuq$Us&$q5dfz;*&SRyl(vZl856EL+9>el5@)(rIV97XC;E+6u
zbqr=?%4V`OL}Yj#+e)(|B!QyWHI}u?GX3a0uF2!ZJSOKcCXcasjL&029^)kC^#ZSz
z_FhMgNSWR08f^Ftd6ZQ*vAoPlY+7A|h4Z@nkb+b4n3l(MHm5wzqWOBg8cGE><#BT!
zY$GK$x~?%JkD1iMNvHF&*6FwAF*}cSd92T4P9AgfxG#?-dEA!g&&shVk2|Hnc>?dq
zgKA}U^J!XnEEFP_=2#B-Bqw*}ad#f~2%S}zamcC{3*}yE*EHe${yZMYV~x-s%;O=-
zJdag*Je<eUJeKA0XdaKqQ?6ku)yV4K@;rL1Q|(<r-k$1m&IWx^U4zK#JRbW$i3hLO
zXO(7|<?%e$O55AZS|~Ga$YUdo-@+vpp2%YppVH3hQ+Yg@$L>5{%wtO)Tl07-kEdz6
z*(_Vfj6|Nv<5|XbX~niYw&yW?zD_ZIw@!bKo;6>mgo*FSV`m;j{#~PPUy$@{!Y)CW
z<)u6-4a@GyV=v8Es(3{-LK$*VktWCLnEuuB7QK<jn|TCzgn7J`$J=>)mB-h4ypzYf
zc^u5+eJOcg9{bDddQTA6c%Yo}Woh<M9*6VzD36bY+yCV8fjpg5BTME#%;QKNGdAe-
zLEi3Or+<>i(L6q5c*)~a5qPdNOKJ0>64}_wHL_ob#gg+c1!0qkf0M^gdHkHmx0HkU
zGMn>#9zW#qV>v&J5=&Yu&Hj?du{;V)HedfWkKgjJ@_4m0`+K>S{z2QQYf#RA3PSv^
zJpL}nj|=jTz<&ki1e$r|1!4N_b&XF-vn;{R!;yy2Y}`D&JbV!a+k1VD>^^$O20h9n
zX7IGo+(JSJ&!d`!>K4*GG8QUZU^uE^DQ>d@D_SVA@J(HV6kh)bQpv&z@|3Eay<SDI
zDi*3*%CE~Txzs`p3yp+Q(?Tsl8d|7rp^l|&sey&Mf)KB7p`PFjCcNd9)-~$XGj@to
zz=9^(|6Q-lrm>~GyNOVm3Z&{uZ^06HYvFVYtt_;*aFT_SEwr)FR+61)p`C^H7CKny
zNbi`ZGYs--U(YzRp3!c--pN8|Ny&=JYRn8%CDR_dNTsJ*IK@(q$?Njc>}f)Lgpr|j
zwws0S7IX_eEL2*j;x^st3=4#3S~$zX<@F5We64V{g`O6AS?F!y91G`KDC3`!JkP=f
z7H+R+oNr-VJ%i3w2A3St*)?2ffubfq7g;KR^XYqs^h+&VX5k+T|FQ}TeJrfCu+G92
z7Ou1~%fc-duCmbA!Wau<EnID(pM{|ohDl5N3mhbHfWUzk9;&Be{$LA3ghKYpx;(bp
zurP{s4b2W0IgGGCPvJFE5GELHVM?p)HRV#GLyfa=t%a#fVBtDT^=lI?OtNsjg&Qo4
z7s><+1;&=Ox+!7&$$G|(Y;0+EPHA?Eg~?=ooxZo8a!Fo9XaLhK+${3Hsay+mff<6&
zq!3zX|0Bt6WjUhj2QAF8FxSFD@+LaE&B7fP=2PHuJCBC3PN(ju2*R<Y*#&HDX;x{o
zG<&CoyDZ#m;XbN(oqo4SX0hP+Soo=)L1LMp7H`m(SRf?jeo62EJ!pf@i<E~fJZxd9
zg-0x`5}T)0EE79fY2i@|%LQLSBiX1-h}RSI6g>5?zS_cL7S>SFhm;vSPP>|=vyUjd
zU2kE7g?B8xYhfdsY+;9mofQ5WeUpW!Ej(jkv()&cg)K}Yqk^p#p0Y4OA|(Be@$Fe@
z8q0sq!Zr(htwVgf$gm9O*yDK%F9_u|3%e}rwy;NJ_@d;cc3u|brE=STMf9TF_OQO!
z0u}VCP;AlB>lWUSR=;WCElXL*${N|sM*VHU+0j$``z*X?;VTPYTi9>mfQ1h&9I<dv
zEbRk<?^`%zfmU?b!ha+$ab~}`h8i1`#rBUZd~D%Ui$6rhCn62D`luj`HVl%yrAL1*
z?0q4SfttbLOGdo<%J9Ci@U4YEE&N3W82_n#3qM=<-og(SsFYc)v((6s7LK>dQais`
zIA-B@3x7y0zY1KtPXEmU>KnXRBQMr|qTqjv=#H0bfv#5;A95B<cIyRPT0oxSVstH_
zaRCJjHicin2?aP7Tnj}8bE(C%5LgH;_;O3-GN?v^$MoVgI=h4WXzCmEM2KvDrhp0s
zloV7XuUJsAj(rN@&Q_{tBrz+G$WrA3suWPGfZ7FAEudOKh2_!$7um8Dcy&Q8sBh4(
zNv}~r%>pP`c6_|$Ri}V@1=JT}UCB#_rLQ$8Kr1LOYgkZ$6atO<27Qx`z|m}z0-BPC
z0!}ZW83+FboK(Qc1+*wA$81+X`vO`P(5ise1+*!kZ9$Dy$^z-E`YN(9c+zoL8tEMh
z=qL#~70|hWOzSL(geMkMjOFz}eHFL66mV)m^@*nxxW<*`AcsWWo>l<ZvCh}K70|ta
z^9nehZ7JZ)0?sL@E`|~NEUJv}d<!ai>jFtXyMX?!vP;+KJ>}`9`f4P6u4JioNWY+f
zUIknvHTD+aP+}Jr@NH?9eGSFfKcgzWSQ5P2DtlQ0mlrUs0Hc6D1zb^3UO$v7DBvn7
zlec{fxVnHrl7)Hu6)>P2?=M`DI8c}&w`6s20YeICP$SC*HkCGhy<U$Q`3o3Pz@!3h
zEMQ~-qr@JrD`0d1*9d;Cz%d1k6NCmlwt(Ft`7%o`>rLpA*B5X@0pkl`z@I=Ztku6A
zs$6v<n<E{;<N~G?a7zKV7BE#xySacF1xzcbC^5Z&o5;DO<n8-X#Y{=Y*fmQKs+*(4
z*#*og;I;y8FJNvtooq}#tb*G-q1^F*=<@}qK=^b~0e4cWHm<O7R{?hy@KynD7jRDj
ziwoFH<_ox&7E6OEU{wK23b?<3Wd%H1zyq|F0v;-;k0^NYyNI%nCDd&JONIVO`O~sT
zOtZZ3-_LSZ$RpBM7w}jCYYSLcz#4h_c=@BUl9^_G0UN06|Che;|J-gWFLp}-TZR5o
z0Z$e1bOGB7c&>nF3V2rN+h}|8l@XcwU->)a5pQ28U}ri0yddAyH+Gd%b{FuX;AV;X
zaOmX%UMXNt`P0_~*;~M?f*h}}J`H+Z@HfiSyeUXp-*|^+Fh%zZ2nu*t@O=W`D`0;C
z2MRb?z@I{Szkovp{9M2<1spEmKLvbUz&8baP{4-;d|AL(1so}0!KN<7rrAlwk^`^m
zA4$fK3;0BkqXJpor-FP|z~|+ZFR1QmIv??3US3m^l5c6QlHdngW>Ql2^n1p%2FA=O
z`sQNEk5b)F0{6YH@*XSTH#$yHCH_?q(#g{A1^gk&22N48e@U@_7jRsVe+tM6@~^<_
zgbkKpvKJ7FC6JUt0k+_dKv$qw{&aD%Bow@dt)v<W9t%tgC>D@1`q?<mMpqjZY*e(-
z+D022B{s4)YTBq}qmtw$lQnFdU@Lj@sw_wq8&%6G)ofH3ytE8HUWLghbJklXz}hzI
zNKq}O>ve6^6TH48ZX$RC8w~|v76_u*Xe3BufpbJ7O(jb+fz1WB5ZF>6D{WOqoUXUE
z(ay%HlDEAOI|$D5+chwlvZD|?3G8g+L_tmxc(OpI>0;xQa=hwvy-e??+vsNFOeu}6
zW3ujopCRynwsDpXy}U*yJ6rIc0?!e6u9SS9;OE=8z(y~@FBjNb;Du$BDf&f%Tx{bK
zK`t$)UnWSIjS*gH<0>1oZOpOJ*T&U0rrMZhqo1ulX&z)_u#NsUZl0(QurW}O_FKE0
z)xaQShz))aJ5k_J8^Z)K1dg#WT#ykqM%ox<W3=2}W8<gl>NDE^3&+|RCr_`naf2Y&
z*|`4yO*!7ig#VW^NmAY@aI(ND0?SICZmX|oX4sf%<0i5#xBvSRW|rLEBJh9T!`y2B
z_lwrKHg2==p^GCfZnrVd#>);~ad3x?`8HNKSm|JajfFO<IH>Aik&QcTyk}!S<G+o&
zZEUi!*~UFK7TZ|PEH>`7ai5KcZ7j91#K!$L9<cEs#V)%lxJ{Cu^}bOf`;e_RIr99L
z%NwYjUys<}ri^7a9<{L%**e?xzT<T6Hsv+0fw9uYDjRETJZ`HUF{^DnM)Q*`#?=St
z^BNent7X^PSjW7qae%&_oD9=9*yue<Z3gk867CM*Zh|LltZZQHXrOjDK51i%jTdda
zWMiw1r)=z?CD?e{#xpjy+1Sp8k5&5@o+Z7Xex!lHjfc;%`8Bd}1B3Pc+CXjTdfvth
zHg?(IhJ9|@<>nE#i@fc&p)!t9`&nML@rsQ%ZM<b;kFAcndR3agSKz4=^-iPI2i~ty
zP$Tu%1-`-bOVwWNw{5(`!fouc)%II%uim&*ZFJ(c$5#jF+@bU5cKv{jgEoG(@tckJ
zZ5(1s8(-KsOmW%x*v2O|KA@s)9I^2cAKj+6AELOORV`bsTDHMZ#V||bIRHm(e8!N)
zk{cSI(zdrL-gtxs+56JQS2ljI@uQ8eZG2;^4ddV2_?8lzdkO``4O8C<&fCT{vz;3n
z+@0~0ji0Gp8^>(5pNN}S&u?h7d|0)2XhVZM5c%E4A2tFTp^ZOn{AD9=!?N+WjpH`{
zvGK3)Jhh=gnNXoQ+W&C<3fbwyjaMesI#g|wDcG=WxHdc*!?S9;F}ZSVwF8UCXE7u9
zEZ^JE@NKm6OZX_V5i`6yC~=V3DB4JEWE^#r$HzN#p0vQ-YHSO|Rl!k)x4xk|hAZo!
zl7q^QGGH3*3645rfg6Ijx#@z{`h=*28}6z(sP3SjgZ>Um9n^4eii1-f)O1kGK`RHX
z9n^ME#{nE@j?ze72lX6q>nj<fv($Icz){9b5j7-B4Gmu0TG+@zV+YM0v~ZMJHgV9@
zK{E%R%hNwAs{=aRhDu+&crHpyNyd$+^oTYN+B)d$;6w-Q9JF`P!9hpX+h6CA4y=@7
z>^4xZ!Q<@*>zy2Rb_zFqo#d!Z1Z3lQP;#<^E^OBm>R^!eP_>-qpsRxm9Q1N<x`S>G
zdN?@SL3amdI5>-sq7n*<n`@Z(Oh=vO!RmAe+_TBe(PLiGdpbDB!FdkOCs&j8a~;s+
zDD7TQr;(7tolvw-7Sh|ng$^!raJhqv9JLYno~Yy!2Nye-CpP^1DAj~ZrOETg>3tkr
z;ovF<eI4bV+_^a%#+43e&n%5>9Dhi^n&ED+DxBL%1~?e#;ARIi91L<W*uixUu6HoR
z!B7XI9E^4_%z+_|8tGuT1D>3AGYoF#8bNsuQEo*eVN09r(64bY#=%$z;~bp3O@9b#
zS9q&Hon5fMsJ3NY>)=@uhv+vr81LXl2a_F4V6lH<qJv2e)b7-A`iy#6`X-s2@svKr
z!Bhv+984#llXbc$W9dE^w;xnnoY;z+Xj+?f9xFG~!7K-NIk?-wEe>v_h}cpGvmMNF
zaGQhM9n5vWoz#bis~v4$L!HvV650+>=f*Gs%xCa-u#jQjL6d4(md}G1c-jNE88WWk
zNn72a(sSqCJrt>f2OT`*;9dv!(QX|)z*Y~?Ef@{1)0c=ws%T0wj9@%ZX7mvK_%8in
z2ah;d=3uEL@HVRgr#z@XD!0p7=13Jk>tCbzSw*7k-rC^sWK@Me=Aeycta0!-Wim=%
z>tLOuw(rp&nQ^_~yk)yKI(WjtCI_1xJn!HI%GSXa2hUIi4z`Ld@zkcL9WbOnC9X|o
zCM?%U+$Kaaw%q|+P2@QTJH$74I{0ve;(1%uEFryhmxC824Q05SDj23VdcWkTBT5))
ziSMB=vt2G8a`CEz*BoSBRC4jUwCG(2`=sq}IC#^+TMq2nYX9=vjyipX(tF2IM{Uq5
z-gB_u!LJT}b8vvJ$_T(P;^2Lzbnp?i<KQr(mV*z-B%3d4r6|tRj3dlASRbk>yQP0I
zaMk+@pEx+`;8RC!L}fCnn_0;4XLR`m!$|y+a&YjygC8ijxu<+hp*i@L+!jmdS#-ef
zMBqF%h+Fx{>W>b7a`1~JUNl^VQwElwDSz3>e2l)M8MNxHv-IB`{NccN5IFeL!Cwvv
zY`BBJ*;oqGfk_J)qW>eV`Y%m-tIk_?TP57cDY`qYT9)o$F`BJZ$HFjxI}Th&4FEie
zC*+5XTBIo>U#%ITgUCVAK}vo!BX&@&RW^|z&r_a^$;u-#E-JXF=%U0`Cw;M-eqU2N
z=-H{M_Ks6s!wD`bySUm#KNnS8RCRHRi&I@xb5Y$zGZ)QWl)9+lqMnQTE^4}{<)V&@
zx-K?Bow-NGYP%|u^C$_zW10$06&o21Tr_mi*hLdpoe%;Sja+pMl;$c`@?0Il3&*Q0
zWMlD8y(#PES)h%Si?wjk(nSXs9bKiVRxaAOXzQZ23u=Mt?$*d?v0QKGg69^}vxXUZ
zdsi7YyMRtEI=d>go-7qnTqnBxv!U9=%3YZpu+gFZs-NxRs^h0P065J>R~Hw!=;h*c
z7u{T(?V_iP?k>)7p}Xke@=qD6_hk7Tcd;)%i&CBN-vhF^i<y<Ox^rBd>*72Y=euAx
zO@Cn)cCYLif2*9OMwqv^iwj-!adCx<i(Fjn;u05^N@)!5Ot5dHei?7as{SIbtq#w*
z+(ooX6?LVHt6cPT)e)vlNrNPjY_Mt~{ap-jG2O*YE(W?7<YJ7Au_C>}E({mLT?}zC
zR2o9j4HK316={#4avNkvx)|lED8#cJc(MTx6QFWOySSl|ag9LsV&hy~>tYf`=i)jS
z*Si?+VgjGKs-ve8>5K~-8S5GuqZbV8xm2I%szD$R@p!S3G1<jLp8w`zs;kZkVM~uT
zGT6*%E{-=+G7N_6H@leOV!n$7E`N!FSuW<d{3#x8an<PhRu{8fb!Hk(f)>TS+a$8a
z+e9q4yO`&y?to3;X(5#19l{m0M)zOnVv&o*F79=4r;EE>6({du!z*W5+TAq!{%Wv9
z+aofsO7=b%OI$oa%ZI^>624!|iDIeJSeYo>^{|VjE?%T0`|FRmSmt86ixpDoqf`ga
zvXDNVl3D3um5V1`Y;m#L#bYkkyV&4jjTkLCS?l6)N^-ekl?;=z&Q&3o!MRmqW21}B
zG|R@u6Lh8O*&jFSo9GLRh7n<qXD7AQ#Z#1wiybbWrqWqg)hzQqOJitk@Y*I75!o&j
zmP~x7i|55tUJ%Ie&SQtk^NhyEE?12=c8ipVyyW6#7q7V3L%NH7F7`6`Q#()V@3=ez
zJo_3WjElF~3%GcLN_SPa!qGAt!Vc)Z#%i3*!YK;&wj}b=doK37c;Ce#;q8EngD%(&
zz2&Rn7Sr(1q{9?uCF27+6s=uwJ|cxIG4g-p;$s(ox%k_~CoYb%6)wJ|k@FQWqgm_h
z7cM@du?dB%#Ju=se11vxOSa2ZFI;$iO~a5i<nLU3@8VY%zq$Cq#g8;OYMkSL#)tW8
zv7M0D&n{k)ca+B{6M2V4;_sAsW8+UL^A8uVH8!|N%Qq}6pRdS|yZFb2=fZdKFKxIq
zYrAmRY8R%9JOxOR&R5IY1$vgemnY;k^srjlcImvbe}@$j30#COG9D^;h{{`0WGkNP
z64O1`=!r1QRo_&IEa5-2oOyah4_ObDJd}8<MZEatf^flFov%5FRPj*N!%h#+d#L82
zx`zvS+g~sBP{Ttr56wN)^ia!F6ZZNZY70_VU>$*FTT$wj<GgJkIMX*21OhdIjXX5=
z(8N>wVmRM#D#Wr9T6k#bLHE$ZLn{xhJ#_JKiib8H+Ir~dp_3$TSDvN46w<*{%L3EN
zcMNg4ptFY)J#b6Tb|Ic5$xapucjBDt;WR0so6t!ipIwD=y7&L@JnAl#GX$O~@GOC3
z^=uD4J)H010uSeSIM>5@@`&Y-6DA-m!wGwN=q<(mk4WSq4;Op5#KWZ??iOiZ=HYS=
z^9AqY;R+7}JPh=3rBJAjs|4W?k$7JZS9||G_pG0X{^j_w#>OBIgC*q*PaSy0#6#qE
zsE1)53=hLST<_rq4<kH`^f1oDwI0R})khI}@EaSWJzPUA$lh(vHO6>qp2fi%qc@*2
z2J)o4>x9Uu5Fd^AFu}uA57SstKb2;phe;l8^e~x5HBO%*bXHNniE(NZH5p`4(>)Nc
zQCF4FdYgWehnuPKZR!!>OyPMJg)m6J#lx*0W_y^!W_p+>rEwH7*TZd+fajmHrA&E;
z+!A3SgngPA3#6Qd0y%VC<l#=qewRRU%VhV+)5QYs^>CkuB_8gll$sdZs5nVU{4oy?
zdU(hKk0*NA!)i};XG_b=dBnpq!5<a4T;K|UD+R6+$f+nRWk$~W*LZl`!&(pPJUr=P
ziw7R=vEIWIQuPLb8wIj<c29(xJZu&Uv-5VV;LlPlO$^>X<>6_eu-ke@OyYkTx3hL0
zH!6_G4yxEM;fVJI54$`(T*T5McGE#TEKjf^!Al-qCMOX#MR>)-9?C7iT><ubc$J#+
zF~i4e9$sf;@KMXh8y?>DaLmK69^UfsHihHi3lHyjc-O-R9zOK2&%=8j-uH0GQ=_~6
zyj`Im5S-mQ@q?_riScX`HIh8+;Xj^Qcp=Uc<jRmE9zODL)WfG9KK9gLk3GvLtgeZ1
zhjfv={mfH~Ds$yHQ_lE^f9c^X5&n-JzNXDr$$sPETLw2dd*?e3-^<ejRkEKnF@7MQ
z^VK18#Q$w#{N&+hM#ZMaFRboq{h6qwO;h8evHEWwe)o`gD0=wA!=D~34+Rf@dHCDI
zzaDZPj(h4nkbf8}T4l#QqVp&@>Sg#S-K3`ozI276<UMt&9uExR@yNCZk3Q(Z@!)!D
zw0TZbqhC{FLQ{1nSis0H;vyb;AY?R%JvByJ(A3y5NKYx}mf1=^PVkZOQNc$=A0>ox
zR8-bi-o(W89o9v>GN1A^5+BukRPn)usg<kLA$Zk&%vzzB`l_SnY-LqbgMzK$tHECN
z5qfPOb$p!T<6Iwgebn>O!AD0Q^?fw(q4{X!t5b#=`hbritMwgCRmV+Z<Kk6gA5DC;
z^tq6QraqeaXyL09V|cI$rv~Jzxeww*INjzVWNRO7e6;h?-dD>VG@G`*G9F$Bni}ou
z_TiGtPfZQZnmhUE?4z5H?mkZRaT059W}NEdWFK98oZ>5M;px^Kknl{@ewDMlEjBey
z^U>8;GrI<>_0xU4I9?$v{0tvw`Z(K1PbS!*pG78p^zgw`>uHJ{hqu37T|8fr_Q^>c
z3*^e)c|Oi(lYI>Jae<Fs6seCZef0Kmp^uAvT<oi$!6R`_Z)VWoFY$4ykIQ^q?xSBb
z<HLFCq^xnxjJeH>!w2;~J_vcyNUrj+<^}y~CiBsk0<W!xubkWVr%rtg@-f&~Q)4!b
zQ^<inRx~qM3)dewY$ms4a+nXp$MrsLpoGWk!+k~ojPWtT$4FnDP4q%D<#(feHJ=(y
zZe>I|)&~`LEp<IWA1C+`N_C<dd|t<Ls%43c_c6i86dzOB{JMQ6`k3V7MjyX7GiXs9
zsg@n3HQ85_DTX+j-!vaL(OQNoe7cXcnL0_2>nemZX?s2rA4MOx__&qY@$rI>*|bI<
zkN8;TW3G?eeB9~dE+4o1nCD}GkA=P(+uz}<K4`wQf&$^Voso06U&86wB43R&xg^Co
z!reaZ@v(#^?PIZzdwm?OnH?pE19P5E#_pqQ4AIftc)-VlJ|6P%u&)lB?AqM8vbmZ~
zFZIE>OxcODM>nZ?!J|Hw``F}TGv)7NrH{4D;;W_6RX!f027MLrR#Wo*)ja*q5z5!N
z=I}T@VvK%mb7MU{Yr7J{Mjsn|d_PRBnNy)p_-gLV^#Q8#NgrE$Jj=HD*y`gcA5Z)E
zZi{-VdY0MhEW~F-2;`Q=w%x~bKIS(!b_kJYgR@31_wAHhCg5V`E+4xoJs)4w1$?~Z
z<A9HYK3?|mijTK^yzOI;kG(!#W!M*4(MVVw<In31{yyHM7<cNN6w@r}zvP)`v;WvK
z`;L!y*=isADK6To%mpe9R1Kl;@O&yBDaI_jhwJbAIK+~Dd`h#YsrWeJ<0Bs*h`+PC
z$D11;(jVotKvw-R<<K%q$$!Ftvr3&UOxs&}t^OHZ%*U4uP=DeJ2_~HHU&v!anyaA;
zFE03e<KtT&|I$b(I?9>8<Ks6UKlu1jT<K><jQ;uu&6QdH#D>c;U%yBIJSLEq#$fon
zk3Sged>p6!kI;W@Zv5%1*!~wouB_$}vc@gf=>O0XHYtS5FQ$*Y57&q1!}3v}ZF{gO
z@aNT{0Rt=>d!SC%VT7!ZWzh3|1U@1kv5$~}y@k=Fg~5MPFxkTAbbYg`;<OgVh9~rt
zPXk;M;L-pU0#pppK0t>6B>}Pl>IeKIBq{~`K`m+qs1=}cfGPp12Ph4cO;!z1ja__y
zwdD1d%(977Q#ArisH@fquWX^-CDjg4CqTUbT-;zEMD?+mbpy4o%TP>a#<egS20(xo
z0a^yo0yGNHBtX*u9RJX{n5J=n+glhbS{Tg&<*>~IHCSb%h_lP)0#T~~tpl_T&@Mom
z0MSsr<uDcWIM}1nJ}^_~dKc?u)a@9cQ-Cu9oEe~VfD;3p8sM}5C$YU;4hqmEP?3i?
zn=qoLI;8HDK%KzG*wr<_=>fVk0lVx0dN<ZJNF6&yLuKG%mR>9MvjXS=&JS=wfF1$X
z@`nxq&IxdKpma@^Xk9Go+yLhZg`F4sGAfR1HN67#=EcY#sPZoiR9q!9G@gqDC-SMp
zy~_ez9$;L6YXkHNa7BQD0R{#5Ym<IufW85)4saFQB?m$CbTz9+wqJn$0R{vr@-JSd
z+r!lQYVT1hfD8^WB*5?hBLWO1^HIq#>MKxhMwpmm0InghYVt|uM+O)bV6@l(|Gz`}
zHG%5u#|Y$7+gO^AtXncRUKil{05b#33UEV!@c||Wm_iE)FfqWS05>whL;AKB$`aT+
zQ%Cf;gDs37TNqPmY<|h~05?%kB5F!FXrW$f-Yl({L0!l>#*}}&T)!pYKfiE$fO!FC
z6B($_2{2bA$*9G=w*~5qyD~H23z|DbJ_`aY6phcP0bHjnisdunQ7?-EF#dBL?Ct>f
z1XvMbWr)QA?hQ~kM7<FA1y~Z`lK@BA_5cqA*cD)RfCmFS6yV7KTLL^BU}=EW0Uo32
zatSEFvH*`#UtI7RuP+bOVT`K+bR3plAr?qJR|a@zi(;5jg(I#t0Ui&qF~Ac64lUQ$
zQb&C4EBLwq>jfd5Z@y?Vd_?{?1#0zpGb`mWo`cky8;1&813VRATY&8Wo(}L#fM>;<
zYP3`<S6q#x5>=?@3$*|{0=y8Yp$^B`JLxhl4KAqC7@il&Q!Fnd``N-_F9vuiz`g+Q
z1$a5YD*;{)@J68e8XhCLheD{D-AgfwZ7^QF7O0ni7q>JB-wg0pfVbILQN-Am1`S|d
zOM|`AyMY>j)%Df!^~+lt`vV*ZaF}YMO$Ojx;C;55(P^N1(Mg8?9-*xI<ZJW~0(=<Y
zqW~WVYM^_BVNI4y$tpYdroMW?$B4lf7M}+AEPxZh4e&X+V!HzT7U0VOUj_Ifz>fjG
zCL4hoEH#qz7{3kFde`>>z7uPtFF)H-owrYhe+uw3YYcEq0v#Xm?I8!!Eoc6B4WAi*
z5Aa8Te`$~b{-mo4hsPQ8#^|NDtH|(o0Qwh^f2bXK*SxQ#VbYtbXRQE*0C_Rye-{p;
zqS-o|5ptJm4*PwMySxBCLv)C$A%Xy5fHXiRM8s$*isphXGx9vcBtTJu59bjaVp01Q
zLR1V<Ddd6e;ECew8B0QBL-0K*pOP8&n5=Q(SpB<}M&(c~u=BQBi0UC~hNu<t&x}TC
z$XSv)7?%9d2$_+IYlo;4qL&<g$N<iMoS~aasUM<2$aBLmG(^J?2ysS;Gec-08inW(
zqGO20A)16}6{2;BrXiYzXc3}ih~}Xh7}sj0?3P^*>!J;CAVHS+?xRh}4!Wdmh;~di
zTgC16p>kv<<{JkFJ@&1gLUay!A{kB#abk#*LM7xbA-M8SP0<%l4wbGuwK7f#)f-Q`
zA-lY;Ax@`ELUa$+U$j^+U&Znh1x`5`CFro9dL?J^QHaY!^a;@;#MvP(VDm%t3~^3~
z^Fo{-s@Q&Rs18u&*pd;9|NEew_iCj+x8S?Z-XSie7(-kZ;-XMl0%H*c&RiEu-b+HP
z->PoeBDRaKVp;nYA+8M3Kg0lv)Gw*{7f+SpF=*gi<LVH6gWNB~PQQdF!BTWwMHv|K
zcpNpM8yw>M(P|9FcW@l5Gv=_b92UX|F)PF^A%=$-5n_CZ2_Z&?7!_h{h;bo!(C)WY
zvZF&>6CzVHOXg{WV?@+bck0)MxGu!?A#NaLm(E`)@e>y^%n1>dMWs-B6GKc2F)hUO
z5I53_j$?9&DIwmhn&nfnLBD3=siJP9l{)iw!mavEA#M&aBUIh=Oj^-Ubuu<zSFNn7
zeCO5>vqRiTRfd=oVs3~#Ld*|wTZr33%nMcYU~FNuY&tAU(ec#)t#Lt!g;Xow0@KEZ
z>s)<$YvC|zXId-c*b4n_3NXaOR2k!ch<iiaA9Cpr_l0WUw<N@pRtDc1^CdMWFFX;Q
zM24dWLp6YB`45Rqh&&>;v@FD<G~+S)t2MIgN2xyuaLl<p#O788U%;&jv6^Ndp=pH2
zLaYh#9TgPf@epf6>}63Q*3ke$JWbmOu_44p<_+;=s751CgxD0~wN@%z^OjsufS<N9
zwuIOk;wj;TZ_qd;<P?A%5Z|>u8)93CT_JXd*dF3J+DVA#X#o5ekJuZz`nQ$(=NFss
z0-yF%!wJ4kJNG&L#Skxrcsax?p_<^(CVA{IGwun&(E^Q@UP(xiz82zj+DwQKL%cy1
zhd2=8V2HOuyv@9nRfu=k!;aVArDGmf|GHvcPLw#`=VuuEsnZeq39Z$)F--G*h(lrk
z|Dgm%s@cS0VXS3q<IL7Zzt+Zt*2a+#AJK9`d=cW~5TDk_9wiL%NvPH?Zj|5LP(+_G
z^zmJ7YlBN1Y}%J0zM_*xCErTh`Q^jcA-)mDs8%j)u5PV*92)QsA%0}u2qh7I3h{G@
zd<ZMVFCmVF_$$QU3`8M*3-L#YKc&*&#p9mesJ`mq+>qj8TqW}??RbcPSYrq?#91Tp
zZ>W~DIQ-+ML>ybv!D+ECwl+@Ksux1oAwmZB5Kah}u{VS-j=<*JQ%wbVzTx7@(w{HY
z0}8yg@;kn2i5c5N6lqSwbbY6uN(1@YB@?N4-=&L&Rfxb_W+%)>s1%`gggOyUh)_8~
z^$4XAszj(7p<1L?hyHG@=C(}F_f0<x>cQG;M5q~|R-}xCx15UdPb)-J55gBZ5$Z)i
z1T9i0jq_c9{Rj;r<;V>q6=r{{k!{Qua69!zk&1hqFgA|VTWR9_X##JXMQ9$uh%h`t
ziwG?voEK49XceJ#gi|7%8lg>uwh=l;=oFzHi)AaSWjjQ8c!H8A8RJqO&+4RLJ4ZM%
z!pRXBSWeifb4BGOW*?+;>_o^PQgmT~GA2ANLe~g-gdPzOc}BMgXGA!Y$UyZ|yzUX$
z<#Dh?L*iVIBWf~yR;28TpT3+Op=X41q-44qhx%+UUFlq*P*XJN3nKK2a8-o95qd|s
zFv4XKE{||ggo`6w65&!22p3+mZIt;jZnFxG-dPmiiuQ?cMT9FOwWh&U3l96qJU_zW
z)2k!&i!dm{;0XPtkO5R*wJcY4$nZcBKHZZu%^|F=T6SoJVG+30K((?8F2}KurfrN7
z5k^M1Bf|U$qauusFge1M2-idy6XE&@H$)gKdcT(0rPy&1IPm6pfDTLT^Q>%k(3>k~
z$48hLVN#?z<p~kaYGZ8Lq2DOHu}`F3ae~h_PK_`v!mJ3lM3^4&>nzNOFf+o<k?KG>
zgJ!q8X!w7vi-B&*HeGvNzcs?_2y-Lc7GaL?!+xC6m|>P7y<~{~!8rZ)2=jQ2)30o!
zyq;=W5Mg12<q=jySQO#T2oFSfFv49C?xs^jSQ4=h#bSzR!LWNtH`F^&o><G6z$2hp
z_=Gmb(x>$Mg*Og*+1`g}auFVhuq?t-DtEB@>k!?OBL_}|AB~j#Q}TR6&G^QDAFPb9
zD#DrwkJHO4WLJwo9wR?(49?&<jHg|#jj%4l2HKl6Z9Uy{yOI^<z=n_|3Xt08#Cdas
zCn>80GZJixu$3jpcs#~a5uT3FImU@Go{8{mguf#EO@EBAJ;GrsF2ZvWc0_nB!t1Oh
z!t)VcjPO#VM$|7*Zv5sa!mdbtEWwcpM-G(mV{MF=x%eMpFVz~U-&K&lN2Eb3;@2+>
z;5*x>KL+wW%Nr5ijCh1K_D8VmXWxqOPK0+OydB|S8?`h|AK}FwXCFhW{4171J`myC
zHipy2c%LDcfAL^Ms%WrxAmva5!kTT34_I}C?;?C3;Yfs!B77d<iwGYJ^PfaG8i8|x
z#t}Yc)5hqZF;=uS$SsY5$MQ46d`TyY@O6Z5Xrd2u&RD`RA-|_(+Zm<5Wdk|CkUz@(
z5aGuNzeV_+Oh)*bRZu3PHTJE{#l@CiS^I6uNtu9BBK`-hXr=P3KO;43=CT`?VL8+}
z9^sz|HDc6^@h{~TA&&TiRG1O+Y+VF5f)$}4<+Fp}vI(cFbOf7m=}|Rh<{Fw8A&3x0
z@JVcIw3cP?NSu+ef*RppDH%hG5mH9=7?opWVpNEcjZrC9bH<7>`nEMnVl;X|+4gm9
z4c^kgxN6OHQL<enM%5Ulv0CXRy&A1(?kUw{6*g%Y99wc(hM|=sz*;eC$7mX(S&TX{
z>c-GmY>axb3i$P7G>Fv_I^PdAi~%WU1wX)(X)iUx!W+kGSWblg+av}*NajT?G>_4O
zHO6Qgqh*X%v089$9fM+TH!RDkG~2j0P=7IK7o&ZQ4lz2$DjIWS!m7z$C#g<pf#b%Z
zN+u`8I620(F|LczCB`W+E|1YC#;Gw*i_s&-*)h7tI6cN0G0u$9Ek^Z0dXEw4F3ll_
z^V%AmVVxC2k1@PnmOTOo4;&S<#{EO|o-xiLhcP$W;M^GJ#po5IcZ`*74K601AL9Z_
zb<r>?l%Lj6vvhXy|MN=a)E5i4m&CYKkP5r?%h(+G<Znk?^$$Td;ffen#uygEh;bE_
z7-K+;fibQY)%1(O-i^yCWqomfDQACMV^EC2F=lVkhsOA-YIaDhVlsuvZ%5g!kj^2;
z@E9XvToYqVjFD`$UvffRGCIbnSp6%I7t7>uf-|qNvFi7KYHN(6y2V<`O!WE~H^jI-
z#=IEgV@!x~bBq}=CdQZ)V@iyvlJUkE><A{)Ft`RXUMC*6HKxUwPRe!qO_GK(XRwVV
z0eydFj9D>mWfLgRT3Loo>hzXatp;fA)JSGdjJYvxi`C5TjCRIV?Tqp53>qijRoxL|
zevAiWJQQO=jD@ipx7-(FQH(q33o-7A!B1!3kdOB7idFREh?M0o7AdhS;VR9&R7z!o
zTyfogNsRm1#-Yj)9uS0yAC9p!#-lNov%Mqmh_sOsV^PakZ#!dkJ7WdSAjV_Vpo3L0
zo~x;P@YOW(;VL+=?fgCHDKdp$8)IFJ`Ux5&SRZ3Uj2~nC6k}tICt|!8V?WD}u{p+W
zI#-M*V{D1>Y>aJ`UVnXSjHju3_5$>sWjg<|L48r<6cmS-RONPR<Y9dW`Qa`A5jY1b
zY~9Wn&&POyly=6h80t@;?bM8b2+jMY7%#_oBgUId#{YlC*b`%~*jUAx`l~Tsi`6?L
z{%@2+Uyc~r5569&ks;;7ZtJZW@5FdF#@ixfQur|y&5u8m+9#r>y4md>h;cB+QD%(s
zKFwyceweNo<B<3QyBId`1KK%7F+l%FnCJZNNUYXf*~~X)>mN&q`$UX^_Q0OyvlySp
z_&UZnF}{$te<i`>OJSb5xK_XhatQiutVT^^N8tMy-_g8RsF^Gm@%WRPA1L`1>Vw0d
z$$tz#MiAo|jWEVP4CWFaev9#EjKAn*d=bFHt7ZRSMOhWi=-}*M{-&`>v9t|pgjMHa
zn8Jn=BOk+xVY6iU-y9f}DjNkx*G=jTPTBCrjp2#2lM^<X<%BW!6{1pt6B5KR5{CK&
z6%*y-MMnNad232D<42N{)f9tP#|3j*Z%KlzBx6cW#OU1z+ZmM;R7p@XL9GM>pVO-*
zsFt95f;z(#0~~>rCTd_-BT@2a_f0mqct|_1%`^$>CaNpvcX9O+75|CzD^{*PF#<PC
zfCPOKT#-Oa_`4aLnc%DhjT1CU&^f`037RHomY`LF)(M&?>Yt%xzGZ?IiCX2RAu-_a
zhoS7|+9YV3phJR=3ECxSpQxP+j1}aK`eLWXNjhat%cP}sO2D7!O<1m<l;Gq9T@#$1
zsBe$EBse7jzeXdg{96|Dp2~_6H7(_uDq*(--9><BB<d&QbW+NY3(-HdQ$MWH6ZA-M
zeu4`UoSmR&f^!m_n}F|F`KcSZ<?a{`S<g!lwo~(TQtk;#dL`(c;Nk?AB)Bk9U$rq3
zGRsARtG7s%j7t;nOMuG~^&1q%9I{t=jDC3nzT;41(F9i|7?<GM1bq`+onTl3BSF6e
z{SzFlnH`c~fT(Fug2B{dqNaW{LPBbg>q3<3RqWKB(1#}K&2Rly+2ILBBp99Gngk=I
z$)ghW=><D_1`Vp7!mQKY7{dmR(8p5j?G4^?Xw86mU4rWqOi8$95;r6mFWDz2n2>-k
z7H_2bhU*i>9{6{>N##hd_6EC7mP}??(KL#Ei#}Zx&E>nBq!7;FjP}ON1hW#{o#37X
zx3J7aZM<EWV0NN5w9c2?ISJ+_>Xh=^63i3ic7Z&KpTs*@LVJT3Ppw}d=@++GdsO*o
zQGz>#a+g37xjlAqf_r&OEhM;4=u4=b1pmtJS0;Eshz})rFj2dD-zujwJFiFN>7xmj
z2@n6<b<65jCRjx|7jaDys}nqypi&Vh6tO13;|ab_@J)iX3D!|c%-$foKEZ|ruO!%$
zU?ZI_!S)2tCD_E06KqZJRDvfHy!cd?mv-xfytc5|_C^{0bb@X2l()|a@+=i3Dc_i)
z((j<06YS<AdHQ^UU4pzIkO@wEStZ*k1-_J^Ec?p|-fM60;-kHcAqn25`Vt&ynC10a
zg4cyTK7Av>o05z8TT<rdlIvZ;4+`AJ(gfMh5(Fu$ovmQv_Y)jSaF~W6oRl%oT0Tgy
zW{S@1!vseJ|487+<@8Sy94*H`P4JoEp9}n=oc?8kuLOTmiu#t)kbN1UAm1hUKEV$O
zeq>lnVAHJz=|3m<CBa{b8WQt5mf#P;e--$fKqmX0Y1*rI-@N{$#%0~|Z+UuL;6DQY
z70BR_OJEAl^!Wsq;DvHZr4EK8wX<Y5ftSFS+Y_s2NeQHUB4j>dFCe~?2rMQ@6J(00
zP(-$<`hto@wCG@z2u_4OOWEI87-Z;o)28W_i>OsZ?INla!P}}uR1>6n5v78>w6zQA
zH3Y9IkhgqVr--^mbS$D%5%r3wUqoBl_Eeo$gCYu3bghVnLV?_pzAGtdBzR+iOw&Y=
zrUIJ@Y%Z{cz?K4A713IdHUgQ;dr=kDP6}@?#12Ia)v~Oja}g&Nab*!#6>(A#Cl}GD
zh%1WdQd9>d_AKI@B2E$f)FMtRqO0KD1Tw+tf}GXC=w1ZRi$0^MPG%-@rre%Ygf2)A
zfux@;$lG`6=N55Z5f>G4aS`Viar1PY*9Aprk13>AIi<HC7Ycmm@6LR5iQtzC{Pjlt
zvLd?iV4@<@$8=sdKBo8Ypa#7?Zqf7Avwe%Wx`=^A3@Rd=s88x(^edwO484C5`)<_-
z2qd!mR()_0Ly8ztgf&wiN;YQeyo@4-34U7#gSTrs7{eKhIvCG(Fh)wsQ36|R?!sJS
ziWpnO;v$Ys)yEZaZ4q;5MVvnhyj~z*pp<#g4MmKn=!7`2h?#=$(WD}7EXOAoF-7pH
z0;iSJrweiuB_PO*aymyZvjo4ToN}umv&l?lgN4tP+uH=*E^wZ}I|R-bxIo}Sfr|v*
zDex|VcMH5nApg|NGVhi4-Y1X^UsA;V<@f`FJSgy?BL1DKGXb+aQpBMm4oe}+ig>h$
z<wdNJ+igW`FRJf<Ru-|UsD@Iji+GGOFXHhco+{$$BGwkMu82)VY%XHG<l0cg#-jS#
zjniAk2hKX5D5`-LFLvl%s%D>Lf}J||Y;F;R_*Oxf;F+TOe&bnzMELTN@U2<;b5imP
z0(S^xaM)SI^R#f8?(t2{E`9=9#EV6|BnjRv;^iV<A<kc&7O_VV;(an%zD(hWh4`yQ
zyjH~PMZ8hOs~wCti)xvX2*0s>OK{%4UBo+rbA_C@%(btG_lnpr1s<S#4ph^wgCZY_
z=zT#rx%f{JAJBzUbV>1H5l3kAMMOn>M3GVpMf_UCCq*1B;_D*5DXRI%r$u~T#1~A^
z!T7AG7Btv=PJ%ce=j8fJYO}=nimb|Lma_epf-U0bBEBoC5$t<|^zV!Kf$R-Z_>Y2c
zZcZ(a4oZFzsWKNQ8ow3sdl6<4`6B)(;?E-fD&lX#4h9Er9KJ5Ampxv@KSi}OG*?tp
zY|8oHA{g6wae0RWPA-dC3||b_9SyIj=CdrE>u)yO!oadc&DPzbnvxUog~OnzdLqtE
zm^dyXVH{3TH${;VgSDh6O_51aAw@PtrBn^1E2bz(mFLoUc*`L=?TV`qWkdQCQdCZr
zu~kV?HAOYSc{_Ql8t{|P8Yya~s4XRM^IEM`8O$h7frsed3{(vB`>1*;>ZfSUM=2Vl
zXqci|s`z9Yu8|^zmZDLrL@}>kwy_{ApQ>q+DsycrkkvI$(IQ1lsf)FcXI`z+|Na`U
zEi<O*n4*&;AaCtcbV$)#cJ0xwxM0{>iel9#r8qHFiv|rl{<mMATs3=2ic=-;07@oB
z*A(ZbI4{NNDY~V~J$t6;o~o||&rETaq&!0)A8|;mr|2Qc`1)okHwz2SM-84+R(%e6
zYp*_(JwL?-Df*<iB1NxMy_&o*#YL(5gsC^R^PF1ixH!cr9Su${E=|?U>k_%WW4V4A
zS(4?N%LTcpqj6=5Q5}u`sal}^xN7#QRIM@gO>uRqCZ4?du>?U5A5^!L*uWHnQVdQp
zB*oAavr^oWVps|z#SJOOrx>1M1l!e5zb?f{mY=FmYsRG*o#Gn7$ENDL8WP9IEk7Dm
zZaY%vtCMSm!bkj}A&J*ZIh=;jeI}%sl;Xxzxza>|41JR&!PFGfQcMw?x%ijZ=_ziK
z+nFMwn+4};D#bNJC=4=Xq2SgOvr{Z$g8urP6mw~!DdwlRO(^q33%3i-1k6sAQ7H?A
z!g(UY!a~8-d+PrBovB(}y(`7tDeg(tn%l~b#$rL{bTsZw!CTr48+d<;2U2Woq&?9{
zdoaaA#4Bk}RMH+!u{6cejP_|pdxVzrf&OiZ?@}yF@o0+WDORNTAVu?AN>-*=m109T
z{a}jKDIQDla*9_{tf6)W^ms1CjuellnEF+xwJFx6STFb!DK;^e;2TqH{i@TTA4>=~
zr+AXanPNL7`BBd;)UvG~ZP|Hiil<WWH-CLT=vj4N_or#(`@28G8sF>wEG_oE?!S!g
z(ejov2VULvnAM4JXNu=jyqMx8GCb$po@aM{A;ph%GrLmkPI1-Qo$v0Ut^?W5#P?Sz
zIVYPTzK5Qb;;j^KlhsUyJpb{1r&m)DzLw&3L5RPR;!VNh)72wh@5t@`6z`U&*+-8~
z@#)2#Pc?OxLqQ!#5ucc4;`c>dhXhh?hpFyv`hVnhdq?BL6h~5glw!>9-M>yTbNZPd
zr}%`r5DJN(vDk9_qADe%e4gS9p?oRuD}ir!H2CNnb}JP+uQ=W*t(*Bi#Sbam6dpy9
z;wOfV6u+hTImIt2jtS>Gwazd0RTnkRi`)|a&POT!q&)j}W`e)iOs%uYFu1<^-zkoZ
zdHf^rUxCyYbLCQ$5%ZGK637w?DeQ9GNwKR<mPB7_Z@#zdhZ&8P267uRo=|8h5(a;I
zZbrK%qooWl8LekVJ13)6$Y>QaTK9~0Mn)^iXxWTbBcs*KXq7VB2^p<4qcz*xy>dpI
z>2|7?(W+;(DuP!PxO-D~(rHmNu!;M-@A;_{6BE|TXtgt1lZ@6hqt(f1q%;&*S71GX
zoA!3EFGz!oHfvJXmUT0bTPD^rS|h<53p95RQzd7#<{7O+M(dc-T9l`3mC;%X-refN
z5}2%YMr)JN+GezN8Ex`?UE9mk&pH}>#A}Y-sZ&PloY77f`ibS`oSM;2%4jENv=w{0
zcM)Q3w<6P@BKVh~!cWU+UCYy#G1e`kohixA6nc-0cD5jAWi-7!<+Y1peAv_MX#BjT
zI|X&F(EDYy{u%AOjCOuTyC9?W%4k;!y>~{tFr)Pm{33yu31saTXS7QMzqFiE#?|E+
zP1~wuenmO`N<nIMGWrT~bvb=W#moS~2WGTE8I2KuxdvynAsOwNNnM9!G_p4|qix&L
zosHtt&YhIdjEpusqm5t$dlVxx+WjB(9F@`L{?w`RFFmPx-j2y=V>8-viY}v#%V^hT
zw1+d=(u{UpM!P<vEnya^^oERfQ%1Wvqm9pK6EfOFAx_R{Qv{hL@J4}i_bA4u3O+rf
zO{0qIW)5soL|)TME6t$oWwbjo+I(70M!SXlNa9;F+NjsM&KCSKVSY|VJ8M~2=4yL#
z_BNs4PQ#F*=4CWmARjHrXbUsiJsE9rMq4Cl?i9#Jl-ON@v$1yza*gnIui*CyV-(l<
zNB_&)1N4`pO3TdqU`BgLl2KN)Lwd&}6iz4O(Tui?&EMah2;r*BdJwM6Xsa^X^BL`h
zjJ7(XJ(kfnXS63X+M0~^ct$&MLf0oU+S-h^E~9P8Xd5%y`i%C@k)E?=cjY5q4Dx+H
z>Ph7GPR8Qj^-Yq6w-e`d-ICF^QokAP*^Ks7MtfQ^E-0<Ur;m3s=(fzbEu(FhEITQ#
z1Kpn!oR4<MEh)rV9ow}lqwUUU@6o)23NK3Q_LRY&I=z(9UKX6PdZirMo6%m)Xs^lb
zTjeQV&uDLCv|6tzp}k3#9_d<|(cUh9`VPJOQ~lkHMt|AI?4rm08SQ{1IGE8s?_@N5
z5X}32MmtoV>u^T<k0kzp)qSeh|6CP*gb`zJS6&}ww2uY<MBp1=o=f6qY{>Yo-70C_
zD`}r+v@bH+ml^G=jCNN=?e2=&&lNg<ozXt2pdGECeUs6?&1m0cwC^+8$O_u13fd1D
z?MM1u1+7s9<uyNv?_?`zKWDUGGTO0>_G?D7Gn$jpe*6D;x(;xuiSPSTHoMtmce4+W
zLkB@*mmXN)Jsu0#=_vJu4x%7kK&n_NVnI<+K#GW>qF4Yy1*C|8f`Fh%5kZ>t-a-B+
zm*4*1m+yRM?%bKVGjr!AnN9Mta3l+-vT&L)ISWU#a3TvQvv4-y9m~Q`XA;M$b|mM%
z3yH2<`Q1n#-+C#J@~M~fGg(NSPn^xdxh#x4n;;MGOP$Zc9X-<IJ4U)@(z}#}%UQUQ
zg_}~(l`LG#!u2d%mE@Fj307WWl*{6*yx`*0e+>SN`3h78rIQ{TqE40q=905cV)dk_
ziKN+RH=w{!5L6IS;3$YIFcrMMKVd1b6@-Ovdm)dKh=M2kr=tpDLMW+zJrQq~tnxta
zknO2#1qBq`p`fsW#z`-9IYBI_ppeu+{#erM^M2~$Wt|0|N_s^V6jN}If_oJdS5QKM
ztDuI0k_t*GNGhmE`xTT?P+q~^3hq?!YSOz)!AD82tb%fqv_eS=8K&B{HU_OsF{{)~
zrGkQlf-?^rInTL2B)z{@_^wh(K@|m675`LKSwT}dmz`;pEPhRyx+A}ug6azPB)wBo
zTTKNi1$7nViGD2wb)-U;txc<1=Z+ua=5PS%JWso9{dQYMMX#QMr`DzFD>!&Qk*4t#
zy}XKE0})c*P)NIq-hB%0SMZ2}Rtg?a@F49`&`iNY3L4!WE(QA=Cr4b+n>I}rZJKPN
z;FBgv{Y(yrjsxDDHgw5tsh|btt67rApo-pw=D82Eo~B8<E7e*nXse)|f;Lj&<SWWA
zQwq0NkguSFf@7C*UaIJQcP-&5AeMhH$s!bXR4})qN8Uw2R|P+b^LJCwos}qfLqQJ(
zk180UU?ivMY@(-v0SX2xcuc|L3VJE%t)Q=hehQvY&_{}|T&eeIoSZw}y*W1T-X6I(
z#<>eFCi*kCaWZ^1@%#7rgXm5QhDn8k6$}ybl!9r)-JbJO6I&#Qit^l-+*FI?=y|E(
zw7H`9ROd9aMkyFA`mZQ>TEQ3vFG;e=*~BwKCMY0(R`59m&kK1$kn$H5j1@jkaJ=Bw
ziXO9YL*YnHluFpsmxUDU<Gw27H9=lQPf}1}gj;8TJ6XY-3O?pcDR@i4+X|*Dcu&C;
z(VQyCdfrj+Zicgirz(2W=+e)n|5}qjL%~c1A2O+6mV(&|-d8Y(W7xu<)73@tICLY&
z=Y2r$I+vKsn#cOdT03%<exFat@d@rcvH$FIX%_iZ!F+lz$4bFx3O-k`P{AUpZGnO>
z6?~<jQ?uk3Voa!#$B8Ig$@@BETW%$f)-G1?je;fgw2O%qmzAXo&R$GxZkk(-Q!i8V
zJq@0dTA|<v`g0|3nS$jE8fOzMtG7t5RIp0HvgWxzD!A*%{M8E9NTa<Q=d$k{<gJ%d
zeJXitISZBiF<&PRvtGdlaoV31Y*esG_%E^q=$XGNXmC^6%Jn$X-K=1Xf~8H8MbG4v
z@1N!<jl7zme7l0*8F^IPq2dn(I~1IzzJfm$?4<K6IIdt9!@h!l6&zL2a%uWfBDqJw
zUkdgrAm7hW&q4bl^|yj^Rg(KS2z8P(b|#KjOCC^gNWo!IJE)*$wdAp?N!GS>WB%Mq
z$s-D=_I4$YmGu9}U6e>}`8;((!Aa3SC3tdC`p`VT#gC%tf6AuMvIz!N6^@GY3N9!J
zs4!Gqq%vdUg47?Cl3L~DWd+w1Tvu>K!MHj}{$1tFR`Q~UQ#TacRFI`YQSqOcbW6d@
z(KJ6u-#3xIO~_RhnhIU@v({AhyTfW}2D4gR%?YZoRNwexYx6=XsxEL%6=4;<+;oAK
z`IKK;;MyvlpP7oNh>GT%s%gsODza4+P*G6zhtB-O?^;%+<kji!^NwFXyIEKTR5Vu6
zL`4x5MO9Q(QAtHH6~$E~R3ud_tCTLGVr7|R85Jc}{8-5=b7!)YiaOt>ORH!)*xggf
zyHiD373EYMXrAt!NS3F0OY-hgQEk3^u0r~56%|yRtCW6dzI(HhhnBf@%BNWgd$+bi
zy0VHYD(b4pWA9Y#sFVD;dAbJ6syOtSTV2KM7U|BV(k`<)<j<S$)>M&Vg+uad(FPSc
zDke2d)~5aClh+UC(STePtbAKIFypfn+o~tYhN8A$ek!fvn<aVmRWwj>bV=U!#`zmQ
zbMH}cuh@Ja>q#UZRB^wG2c&nKyXCVs*7J~xMk=;O(ofBIc~H_+MKcwhRdi9&Tty2N
z9aVHv(Nb(~t)h*Jhh-2RQSohsWGfjo7A#cRYb!maCHX4aNz;4A<h55(J(1+lc`8n%
zlO4oz>T^grP&9+H!0G6!qMM2*RSZ_qT}2NSPpIf4mOm=<^*ATuU|vrZkE#4JT58#&
z`K+y%j6iQedy&i9`qKE~=>gITd)-e(f0-#d&%nEq14WbV4w5dgk|8RFs(AMHAgCCo
zf;K-b9T~1-q>6t1@<)gduorZXQ7T5ODAg(dw(;}?&g>ZRrDvqkDwVzGq&6D!yowi8
zyr|;6p=nynseGuiH(tdA6?bVUui+&X6IK8Ix`c+8RlK5Nj*1UdyvkBL6O&cEDdaW5
zNh)3!@`hl;AqI8c68^3rlW(h-BK*QB<sB{)J&VGrD&8%goTg$rE#Ybsh1nvUsbbMB
zWtK=9?8$lehW^_@jYZxUNkYw<tKvfyf2-K1;v*G*o=$wOVu6Zz!ar8=iI7iK%okEw
z&7zKTCh?i??O7yWsQ6OFE)`pLq`p$|H3=&$m0ZZCRjg96TE${Iu!>*JtixMUY<&sG
zQw&&29~1JOzo7iS@c5qoAj0K>D+GTKZ18DSDg@iOtbYyHwTexwR>ggLQ}ef^){4$g
zoTfpw*9oo{+#vX~;4gw31y3ArK+Vkz0=v_!mX+V=>s~mW*s9`mKaIz4Dz-_T%-ycy
zcj12s?hyP_aHk+ggKE2F9QFwQ#rU8nIV^kG-zj+{`+2jVLe-#YIH2O7ipx^=kcz`9
z&Zs!6;s_mvOG(8^KRP9ksyL?NI6dujg30!i3?g}ZHOb~qG3d2+PpkO3c#`tRDtqHf
zC(kkXGv;eqlw2T@dM-&rtNv42ibZDjHs08ucSXfj71vZ;SCOUpK6yjMP0{~PaQLq&
zR+1i{-agR1B{fh&HATaMO{qh((z=F#hHMR?LA4DHK@Bktg|uWygQ>yR5YZ6U(4b_}
z(lB#lio-j(jXS2Y*P@j>Xje{DloxA$Uzl_>+%+p5*Rbnoij_Q9Bd36dg1!#!&`?xr
zD69b*iiow(ZcMS=mVc)18|%+tXmq-mhRJi%#l@ayr~AU$Ws)T|l+r-LqqK%H!tcyT
z%4#SloZE&}xLZR74efR0>quxwYWPXRIt>*yRMPOOhSxMy)=))5z6MW2RSnfN+^gX}
z4b?Tc8eSja*3(c!Lro1i8gezHG}O}kEBQK_f7ei3uvHe`sqAl?@Us8V2dTOmI!w*a
z)39%9J|$mQ_IMG(Tko`n`W!$FC9Wu};T{bQIkrEhHdgkiPsxPuQuk|kKtoFn4{LZ(
z!$TUHXlN>}G!oRVBpPe}z8rTLc+)`(n`xM~CBKD+zbkvqX?$<@YGseL^&8_pqM?-r
zZV0r~&{{(q4Q<7E+Oy?I&XnGTPyCdkCif!Ri+qaQo_EmDQNz<3#%SoIp|gg58v1MK
zqM@sXo*Ew0&`m>kc4U<Ms9?3NIXyVMXA;>}ywqrS;?0~2RlLVF^kVB8`e?Yniq~7i
z)W*q1i&MPq{dZf6I*VTR?|J)bX!cB+WPpZ&8lKWHOv4}zPih#fVTk764i~xZ-w6M;
zIfn=DYKLn6t#QXH9)-h2VFV>2TzE+zrD3#&4S%MFsab4m<l+=>fvNwDhG#X5)i91T
z%Pk-cFKBq>vi`gzhgRV)LGGj~-isQpOv?LlvO8YG1V(%6XkgY$8YXh~FX+6DZNELW
z@|S#GRnDv8)qg0-+a*dS(d_++_cY94g&N+Vubxdz)-XlGI~v~9@Rmph-KhJv241)G
zSYE|@mkxO$F-^nvD&AD~y?bun#YBl~b(x$l!fjXT&eSkV!y*lf>E0UN*YL51Pc+Pt
zSxYWU&DHRM@Z;-Jytn;O!$*=_y*|bJ*?Ag>oaj$A%;$R7@C6sbN2$*=d@gEq-4j(j
z?(0(LOOceX>U}M4{FQiJu&TF^O^<QuAq}f~-)LB(VY!AC8kUOwcN)H@rtnL1Q*Eny
z?~imN7ZiHtGEQq%e|7wzVWoy2HLMl2RpQ308A6-nvR%6L8j%cJo4)7QJl?avT-D=m
z7V9~c8j9;Eq2p%_zi2qA;gp7r8a8S8OT%6bziQa5;SUWvG;GnZmE$IJI<Knt8waXM
z5?AzXBH=WxsOtSre%Zex-d@$evHerSZpl4W)!WICB|KQoqZ=@HkA|bNLGd?Nw1z_(
z4r|!2;U7^uz$jGBujI|iZqMwjgB<FsiJWTQx<>x(^AXWGs^MQDt*UuV$L1Z=a9n(q
z{&Pa)xAN2U&(kc+aHqr6aaO}Q4L3FXr{TPY3mUF!xTf)3fJ<EC7ZR80QCAWxM!9{e
zc_ddv*z;n7S=Ti@Q_Z`<u=Z*m7s%9V-sjc4TUV4@8nSe#IyBv1s)~;0quhtjC)QQ-
zrYuhBIs!VHRMQRJcVq5HJ$=UCM`8^@(eFLV4ePLUUaO#x4qHb=hod8|<CRN#R7Xq)
z4Nz94edMj^g8Xb9!>=R?aPGF`G+vSVyP9WB%;T!Rg8}(`qOk6F<m|zm*01D2M-gea
zsI*l~Y-4!g&KONCsiTyRMxsz!M;RS;bmZu`Q%6}Hm2_0rQBKEQIx4Vc9TQ*4V-zZ{
z<8IyGXS-U>Bhr30nv~p%R34wNYFU)Cn^kmF)lox7O&$F&>1?r@j_NvG9gJ+r>VBMY
z1anxkbhDNqbMLF})n-Sk`@3qnI_m1Umr0!$45+8$gPTf29cdwzZ|V(n)aMw6l03K*
zwR^O?{7?Sdh{Qd*zqq<p_ZZdh*YTi^UA^1~bd0L*pF7Tsa39j~>3jL)4DXFOO*)$D
zXr|*~9ZzOw(bJmiXu;Ndr?W5mj@?rDo6T}5c|=Dm9j$e=(Q)onPCK3upK#mi{>}32
zEjb&;=4CZcPO0wuu&1Mgj+HuA>FB7Vla4oayrrYFjxIX->gcDVtB!6u9@Fu-j_x{&
zHOuXx<53;I4oEMk?)B86k9BjKCwE;;@c5~^*Gorl&dUh5kB%pFFzfP-y2Sm}{kwZ(
zxZ8My+h4~39WQZebPVJy>v&qn7<Ns^U>&cI&L62`h>oE;J|F82*YT8&aoy77!*neD
zC9nOJ)UE2?W5;twh(h+&6thMNA1zH&LIa-BQSx%?1syNycvi=AIyPVNHJ=yFBCbcB
zv2=`aZsF$132Z{gcpdvihph~IF)wf>)$(%cWjZ{q((#7QefzvubxhL1PO&4e=^*|f
zecbg&PNI2oGH1&5drDrz^=I>K9rJX2tYeCfcXYhVs`e+Q>v)f~37;lNAw6@3j+t~G
z9dmWe(*1q8**f0W!95M0hURcCq)tXNp0NI#==NxmoN-zIP{&7738#Cw>%HN6pU{7F
ze5-?{=Ii)O$5%SOX2*4KpQLt7{ZhvQ9bd52<pfW5Y@NHZ44dV8rx)s2q~mCIV5yG9
zI=<1dggFu$x3tySBW^ab+S`)lO_Sg0_+G~{X=}NT6=KPjD@xnJX;%A#j@1kEd62Kx
zu|~&n9VcXI|41+5qzGTjIG|%42g>!<GxF>BMaKp@{2PV2XUM&#q0N#Tb!-x4@*i%G
z!|41iI=1TA$BEPNn~rTd{?xHk$95gR>zMO_-|in`l2af+zJs~0ciQ!w&H1}@?AGy@
zj=eheh)%0EI!)zD;lAtNjF2@v)bN-jVcCCl9MExC#}OUuASDNN9FnCsY-<jWk1i+v
zm3la&9L%FSj>)im*(kTfxdi9yq>fWMvI8g(z-cZ?9a#Y=0i2amG6OiL<GhXwT#QYU
zJh@zAOk-Si{q6J#J5!G=$|t|7<C>2DWPx9ovNYzVjvE&eH*~CTl*=S%mYO8DXvU?S
z;MhDh04;!U02ZHH*q_h?2nG-eAP|5N@b{Ce*6`FB`4e8ti=58+t*vf~8qcA;=CK2a
zNYWAHbrEZb1`v}Zy<$-lztMOA_sCck44_Z|$$)=yxg&tW0hD4B0U&@P0kp5-6$|*M
zgQ5ZdB+~q{PM&=}Q9OVW0r1xfo~Qg1LBKzA4XELj3E<8E$_H?F0A;1%T>((1Tmbwz
zgC`C~Y?dmxHHXOx0VD!gc$Yr0hR4e9xsr4JT%uwCl>(?7K$QTR+)#cypZNH)QZ;~T
z0aWJ*EXWUDO}GJ2UL$~tS9Eh^9(k4V?)kd;wF0Oez_0*@)3y_dIstSFptJCt0CI)Y
z4InRodcvCvrUmN@HV|wmc#q({>_q_g2k-#x37}~Jlk<`f2GA&g#sNGe$zE-e6!PeD
zGC^EhFzd{TM6&?;7Vt?Q!4^_mOTmW)9}#R7K<fag)+PW?ByA;0Njo9!1IQQBF)vAB
zhX6VTP_=ck@W}+RU!kln0dx(3_f`V}=oUctfd6}0zW{m&=_B|kr!RoV0ywEBdk64D
z0FR5jmmu}|xX8v~8cFr5Dv?KDIz~&M@aWGG)3Znh(oX_-@^*7O6Hf&&Son~PWT+6m
zlU`2qO&Srv$N=6DAs^lt6~MRv#s@GufTsf(6TmY8jHTH}Qd<sd2j8jvYyd<ip9|o5
z;V%eM_@a;xYWNR<%y`rwP6*%?Df^P(M8TH@nad)tX83DDCJDYSIO{;p<N)3b;H`ka
zeKbuhd|UVwK?>gq;N1+LDr9jDkDZzxz=E2E-wR+y05b!a^on~ts8K#EfZ0+{-&Q)G
z{P`e&xdBXw;-x4)4B(>x4w*P?VqO3r2mGyoAA|TLfKQnf#JnKp2k=<{8x23}b2h;h
zYT#Z2Uj*=F0EYuO62Mmhd>z1UDZWr}QvkmPut@mg0KN%eNdQYFxgmgW1Nct(TEXuH
z*9a~PV7ZVLf<Fkd>6HPj624k+T@8;y-&%HdqrWx5<EH@DWpdYZ8SeGvKL_v&7v|<v
zH!aESvW;}Jc5b0V+9oZzIe<S!e@g&csT07q0Dk9By&~K$$nBkaYLfd-+)iO_OzsHy
zn-#<UPVE$hU4ktR`P*we_5|=(0DA-YJAi%k4awafKnv5~COW_-%&dRJW^U$e8Dh||
zL!xs-^A-LL;AjBl4BTbln8^PN;8p;~131BD62PeduG8(+<mmvMI>s3We=eeZDN3@7
zCp&g=iRS_!o)^3zcv0|@;AO!pf>#5$CWIS$EOJ9?zA3o+-8Ad0Ts)a&ps0aj1{4FT
z0nOmU@hEHn1_B1!R@HYS9W`JWNR>|J^>l*<h#^5!Ff3>Z+6E#*sKd%<pH9RK5FNp|
zfovg^6cAESu#n&#9FvYNv-%b_iWnF#HS}-ovfbha2EU!h3QHO&A)Lu`C6lELlr~Vt
z0JHq$lg6FG%L-C>dZ1h0z}*IFiHBD(U>!+SG*HPv!ob#!Zqh*KPVS?{layCBP{lwE
z(X48qngLgMb-|?U1ag~{JANFxhki6_iu{6>m7)!L@}1+U+9KgZ*AbFqAlLA>`<j_q
zbq(&5B=Zc^%jl#H)EC}Bu%Te<0sj8*eFp9~@R5Oe1|Bf*pn)+4o-y!{fkp;~7#M1x
zv4JKA+8f9>(9}RPPL|>C7&kZ2!oVX2S{b;|+h}QE-4Nqpsr*0<kL!Y-NiS_};H?{a
z8v}hkm;1NeHe|c)q=xqg`8M$IXtROtQnrJEjs`k$xFp$Cu!|ryXWr0nFM%Eg9yKr^
zBkyV8G2#BEWpBUQ$0gZIu(#k72Kor;E7(u4zaX~?S!AGrK?a@_Nm>@#VBxoCq`{`t
zQwE454Gc3d-0-)%M~LL|(bSU7se;E+Pn=GSGB8^F`Sl*|(_Daq+=D&bXAL}O;7zIR
zdGYY^!e1ata;$-ILTcm{rXL=tTbNEY!N5xfCK`Czz^evclOnGOe%Rj+6x^bmWZ+f}
zZ!#BGP49KdVvu>m@VC%c9?#)+D>pgcGVr!I>J$T04NNmYJKqs}mwnlmW?Rz@yl3D;
zQJZ04rhz#IK49-YtvZWlbaz=~wiF?G-@vNQzJ$kI5jNiAS2FR%d`j-yo%6AQPv{R~
z&!>Xl7+7LpzJbpSd~RTYfrZjvE{87+d@1d6B{B$nW#DT%TPZ(i@VHqjxkxk@3)ZRW
zN9;d#CYBobkv>p7N&c;Y?+g^broUM#`MrT<9O_cZ<$@$Dg!~}5l9mfuoylEe;GSIx
zs;!mUeiCH0)x!Sv?|K6p#C|ILEJc2yhjewB++^Ta1Dg$OVYCUNKoDCE{AS>YfqxBb
zlTy14>@l#Nkz|njyMaFp?4a8i+;Yj<W$>p)KUVKF@KX;z__V3%9S>#QDMS626#vJ-
zUK!rM4eT?ppK&9mE`h;8UN+1}7C#`G2gMBzaR&Qqhv_q2{3URdfzH59Q8+GmL-2%w
zlLk&1IBnpfNX{5IYv7!?^vHq!Zv<uAxLj!OUenKWbu*Z#$#AJ8@sfedTt|BHih*ke
zt_#0P?=792TP(f7&<-8*PnQ#q`WQ;;|Isk%LRJugAdDcCAk?5A<Qem|AoQT`jmJwQ
zISV8_f<dg8-i3lNgV^zJia|asY8D5%qiYM2M1qJ4k7XoI5b+ET_izgaQ7DKfgZ?@9
zjvxvLQ8$P@Ng{~iL6iuhh$N{{H0XD;SP-!MsV^BssUXS*QI1$L*;&;}XEe*O-~i)J
zNe(cx?h@h(mJj0YpnrC*AW4!$5Xm4aN|M!93SzVjQDu=-$;hh)QB8RDjD){LP``#G
zYjVVd)Do<n(Ww(ePKM_S@z(fLUoVJ0LG%qG9Yp;g8U)cWh_*qr3*w$2?iJ0}LEIO_
z{T$fR$)-U(AY|tSg-IR{O7bDWMnN<dLV1%Qs-E_Bnq?%-g|rZC8N|aG`6EJF$*5AF
zR<&WfC6XN~Hz02xM1BySSVBpMAUX!|s3fZgv`#{}KspPdewQG+3h$PYbQjV?aOQy8
z)ae<-W0HJau$N$OLFPUoWJN!%pO6_tjDbP)&*TmW^4`i1s)IOCRdxDd-PY;BK@16E
zC_8dGF(!y-f_RE*K@1OKL=aDle54>1Mhh9m@u}ml&5N_sgKK&u#AkzeE{NGd|MdNQ
z5HGONAjZ;F&MH*kk@zir;osD_ASMOzdJy9?bxz=Xb#h+{Vq!+}vXEB<Uk&25jJ(&b
zH0yaI=!d>HgP6>&wRU;DS|t6J2;UB3ija2%-xGXSaB2|KgiIG))5(u-Glb6+WO9~}
z9}>p<(u>Ec>T`nlAP7p>skuRXD01@nZ|RSD@gKyJAePGTek%Bx;QSyu$T)v4$pwO6
z2!1K}RS;hX{Rp{Gl8b{_B;-;V-?6_5qJ2r<mw1ByHi++NKoBcM;rk$#1+hE`NAu_L
zb}K6+>$fug`JKnAAXW#lMufL7#kqbde`TMxHi(}@zK(qf;iC}NOLBwY&q4eW#Ks^t
zaV3UOD}-Nz*vx<yLNJ6aj5$FZ3F6-%eiQvYLHxxyAbfiepY2NgE=cl+kR3t%DP*VM
zF2UV`)L{hPD`j~G{G0al*BJSEb-gc${UWE${|GrCcrb`V8Tnx$?9tI6js<Z%h!Y~Y
zeY)Yeos=Z6&@KjXO8n<^rtFy@&Sv;IA?Jg*AcUceja~}kvLvqraf@A$bI?_hTob$=
z#0?=-zA5CtAojI!nam3L`idZlDnt|1LkI}zRwT`=PzYuSB||6`LOA3{Zyp7OSb}y4
zk&HYVLQJ?L7|+PFLnt6Te~{mLp^W?vA%z7YSR{m^ncQMRiVKzy<aJ%?5Xyw$hEN>7
z6W$p@QnJblmJ_^7kh$eUxI4ou2uXx+yQ+#Ad8H643$K!qR1Kk8hF2HD^KXq1YKBm!
zwSSNEVo2kqPHiSbcrAoUqLULs^AK8ukQ+kX5b{J=FNAc+KbP_Hk61s12PH|~KuANu
zdj#(lyif4{5FQXhO<v>>9}1z7NE!<^5o{{hOfZ(vsn#-theLQWgux*^5<)A^-5lew
z5L$~pykhAPLL1?21vyIXLTE2MKO^zDl*GrF+cAVr8F}Xrx`fa*gl-~vRIs~XkBm;d
zkbkc18A5M)?&Wa~MNgMUFHz_n!V@9%38Akf2MG2P>@Uc&bNg!pg%1+EPabt(L>&^s
z=n$S3;ZVV+LKr55rG|$vLiosxWK;;Z%Z>@5(wW3K&XioTJ`=*TqVt^K^MWsAO1&7u
z*bLt=z-5u~Axx06<S&IVQTWRl$txken&G?<dOd_ULU>1Nm>j~JA-pA=x21HO+YA5g
zO#M@YlsK)t8^Y8Orb+U>Oz!j$ehX#YUhFeOI5UJ<LS_rTFE~e#Bk(~8bA_MS<Hy)}
zA$%M{0}~BRd=kQ^AzTRIVhHm?_{^^v+d}v}gask22;qkiz6jyV5SE0nG=#5cd3*Qk
z5Eh2e^mL+7H@A5|w{w}~q7W8`5Z{xY-P7$nu=Y10ob2g7(a-%hgzrLFPOnpw-*bLj
zxy#sMO|MgXmz*0B<aAEnN3RTFRR|kG_?h--S*t@>6T*)~H92Z`&e{-u;_@kxTpz+Z
zx=K4gT&$K^Bkx_?D7hu|O9&eo^F!Di!kBLE(r)e@{oG9<5E<Nf$Gs(lmhD_VO0<=Z
zswH{1OWYp9?;#ut;cy6lgs>xozeCs;!hdbuKL!5^VP^=tLf9R`<I~f7LjIP^sfPJO
zillirw6t_`ZwPyeCBNdPN?&(B9oTdK3E_Zrna|-cNlOlL3c9;I7$1&=@NWpGLpT${
z(GZSttT^Uo)^P^X9`3}MX+G{kav}uYpO!gXgO3=U;_zz8caEiA=;xjd;k?Y|xe$t!
zPV$)P<}m*3s_9({;W7iViP9#ngm9G=ny^e<3*mYQhRK=Dx)H+75L6SIiT^^l6@p^=
z+gw?KU+m7A+}351Pu=hafrG$Cb<?*bU}9Jgf7sXbb=4Bdpox$P)5QL+E<4_BSAqw7
zXPf@5N4ALqCL$)HroSV{afq34OvFw6F~oSUoy(e8f8AeGoRNYiikK*BqL7I@Oq{Rj
z6*h5SjU1R5F|an1v6M%Xc)~4aq9kkJ15PGNnEpwJP4{T)GV8^EQ<Rr6ai@t|CTg1~
zYoeTqN+v3^YbMxe1rrGq<xSje`qRXDJfbBd@+8u4J9CmI+V|HeuW0(CP12-;Tg5~*
z6V*-p)!wao8&e*i=yy%jG*R)rG`m(q`pCzbQYIcsc_hF0uU*GPj)^=Irw7!|HT@Gr
zfuv4T=|XiSNm9>5+63>~xPi%f>YLzba~SV2aj%JqCSK+^n7H3WFB82@JYeEM6Rl0O
zVM8VwnP_R^Vbk9qYiy#4iKZs#kTkm)2eX@7b#Yz`6U|Nk<o+nlPI>GycN@6$9x+j2
zZ%!){FFlfGlAPny)<ioKJxx4jf@<weaMz`WiF}S;%H!dg=#b$ZO>`38IV0&Jq^pT;
zLb?lXIF@3;M`gh8FOue{K5l{$qfuLz!^kP4olnqbOgwF34Ao5ZGcnl25EK1P3@|as
z#LW)wK+}I9trorISc=0)x1sP!$ztz@ns~|thkcakKQA}T#Be%~%p-@FMeZ+?LmX-P
z=UftMj+Sv-lJcHmXX#5O#+s<o!F^8r>Uk5BxA@PVy&%aQ0gWBuz>YI9frG}fGKuUC
zXO>>XSjPe6JicP$RTHaBtTyqQiAg3F(G0F26K|M!-^3i&Y~oE5Z<%=81eX8}=3Wr}
zko}q>{xDk_eTP$DCg)wjse;o?Oc(N=AaiG!n3>_Tgs`?ML;U@L4@}H8{f9O`HgUF{
z`=P9<kErkFP=}A_&EraG=Q6;4V&YR1^QoNjxG-mzOn%1X7XOjU&pGVEzsN|w6!Mke
z*CrNb<Wuj<|Hi};6Dv&oVB%QHTWaDv6W`MVc_J|V3rmLLkB{bX(3Y84Zo;VL?ets*
zQYx&Z>vr@v$;;OAwsi0(ca4c3xw06wOsqBWlgZ~xvDw5r6YEWEF!3`7b5G88E6o5)
zFZ#vAMmka}_o;k8xk;9Q?`D#_g?6@gw~Fu4VSX)|{x9F<NoqUY#>8$Ddl*<u>|n$=
zlh|9M@Si4jn%HH6-on^IkLBrxYqM8vgZ#aI?q4SMn)q9K$Ftr(MncAfTHXN@Oj6+=
z{@SuA#q~I-So$ERM$Q+M95L}PBZ-Z@HjZ+jI1V;~HjbM(!8x*UzlD<~PBD~OC~M)g
zi8Cf@gi$k$vnI|l28R96cizMWM&K~QVO%tEiEDu&ok34cUN&)+VV`FK6Lc#2{74hm
z#i?#cu;S`wh~ue~1AfayRv3C1fiRS?f8tZa{=(<NA=koqxR%E{iALCW7&aXWBN+Ar
zJ6(lYy-WCLg<*$rM;L{}h=dWPk==~!uy0Q+?4KgzVK`xM)ptGauPizt_sIuO$txh;
zDHui}A)GHZ!AONLiiA-#49+iwT#v=V{;FhmiVNYYDItVUmX->mbQopAxHF7I7|Af+
z>SB})qkI^=8sUk)To_+nQ0`*##WWW(ec<jeDumIemPfawPgV@0QW(|3eyFb;_D^|L
z!dP7-O`oBwR2AFmZb>l;RS)yYJ%3lz<&5l1&>v`UDvZ`)v=OyhVbl(zj_{l?(qYsO
zBlmU<VdM#UK}ND(7{j~x{cR9N!!Yg*<G!%}6H?tU?g{&QiM+lg-XF#TVKfS(aTteY
z`4`d;N+l14{e2JKi4%DP(j<(gv|ml$7B&-|=7KFmlk%3FP~ndVw#vxq=WWAi7slUV
z><goP82KE8Fy08m3!_6A&xG-;RMj!eu$<K|j82m590q@I=@Ld)A>9NY7wjHJ4<U~V
zQmv<u#{}oLaw+K*M(<4S6P%6=?;G}KjSBtQT-e_;85qVeX>pJs2jNK}g9V3#F*GB8
zN=P%q-((mb#t2D{%;b&|GCGW>Gm<ev=$X%j@q8GQ!stKPc!9z&#)ZL0qj@lVjTJTW
zi9?O?VGzkDgz=K-OcZ=s@D;&V1*!8|*uVTEp*^pKw8`vF7;D4$iC!AU+w?j$Yf%_e
z=vQIP592dw=v~3Nf>Q;jg)u#h_rm^<Tr<LWU&u_sS%R|#*$@?Y%#q{=VSfvV$q%Ix
z+VGK(d0~8<k$fWLQ^D77sod<Pt8nFhE|LXdd?DmZLDuk97++`j!Z7B@j~$dR=K2a_
ziDWGe`_HuhApF}fz7z7j;4;DGf-JQ{ND<FnDMeNZvh3<G)(HPmkiTA0xGs$KVQdWJ
z#Abg7dqWt%gmI*`+p4qsbJ*XNqUE%oS)0Q6l`-c`Vzbo0L->|3whE#Aw=lM4`1UY<
z&+tDu5yw+h;H3W<_Rm~9!`LNcw;&~Zg!~o8-i(Anb$=NDgb}h}S~w8K!7y$zqH@iK
zaX5@?VO$UM;y>$17^i6}IYXT1@;DmCG2zDrPh{jLg`8qs9biz6ojObR8021&9-Ry0
zd}a(U2)P)>B_WqHat0IXUlk)sZe---45Y+dGwW6ung!iLmgO%r3Ka{g<u}BG8^QtW
ze>*&e5Z<%~h4AM>Uh{-4SQd&~C}F|25V5#Fk0KVL7QViw7q<M1E{<5tf@ArE85hhJ
zEFf4=u#g}X?y$f+9TIxrnpS?Vi(0%?&bob@T+H&<3xy>uloB(_SXe6ihovnXES|jW
z14T2x)Rz;TyJ%rJYr2_L-oo7$Dp*KZsBfWxg`|aw7OJvZ3zaPVwkPMKqp2zuYI$yD
zN%CAt342l9@?XTLYa!2qYx!3cHKcbn1yh2x1ZxYjNF5<L7IKBKS_<h}^(_C|jHe;;
zG)Lx)|7&tX3lnCfpD&YhuaJ8zkTA)MOd`AdfQ45qylUY=3lCXnWTCNz9u^+8(8NMh
z3vDg5v+&)>bTbPNTX@7mbM{M1wy?naO8*eDVOpB|z^yFs+}*}PYYQt&Ci#2?-{YWp
z<7#>BE#zD1Y@v(g-%9Wj*R#;U!pvG;M+?K-xIb-6f43*6lZEeVc_ddx`?teg={6;j
z-7Ksco$hXdcjay5p0}rk$1FT;VT^^xE%dT5$ikCs-NF+V`dR32p^t^%Yk7Sw@RH!|
zU5S&mJjP7^<n-*m)Bp<uEszwxt`lh?aj=CUw8X*)8b2kkT3dIhg{Lg=_v<~o(|rGB
z7#pqZnYI0^mys4maeTOCp(S}QIoiVEe3!?TQR!z`vxRXM##?xf9>`x6EsW)Oc5t7U
z<O_m48I`T=RoIo_Z%?h7x)UtCWTEuvbY5+bR|1pArzcweo$1TccM|@5_L_xB>=fk|
zUZ-Ie7Fk$qVKP^lh1nL~xA2yQw=GPwFx|ow3-4I|<;PUZzdwDKvsv3aFeg1nZbk1N
zT$@>(%J(eHU?pwb0ku6QXL5qHBwrVrB|`E!7CxYJa{XGEYvDu7zXton!bjqJ9}CVC
z95BOw_Jao(*LOYLPc6*bp58Dg{keq&7QVFbm4%KyT;BNe?&b@QlIOl$+xwbT)%F<f
z`1==cixyfS-hDLnjfEu^ezCBT>(Rou7Jjm@j^1eD$70E~42g5n-&<H_;oW_y<ra7k
zva+^EuUkRC+L-!*^C*OTm4($AzDCH8f^<|?va`0wYwSZK)9Xb@uijwcF8=;&`L8L_
zw>Me%)xuVeb9<M+jBgeTw{Xh3yK8qPmbP;_n7>(kF4|bz-rZ)Q=BV^`dSEN}Vr_2+
zr`y6+BE!CgT^5d8IALM8g*_IIN-+7$!d@YNbG~Fb7d@?TdGeu)ee7NF<bJ__Xsr-R
z4hlIWc-X>`jQn4Vn=@HdU_Hky@aZ5DUb>v*mA{2E7EW3IqXMjaZ9+e5;hcp_7A{+0
z^1Ou$7A}eci_{)!P?OI&5U+@w!rPKhZ>iTL$XsU=7H(SjPm-GLN1j`Z{5BNfJUzvA
zKS1$NMH1QNbKOQjlH}as3E41hG_}#pM%ebx4i#-wvSHb<ZA5HDZ4|NnF^mb46k>53
zaU0npDJWP#kUtnvq4H^k$m0$X7PbNE*YPMJ7PV2#MsXV@Y?QNcmyMD(N|6V(vNlTF
zC}ZQFT?w9&Xd&-S?vzTnFGmUAN^4fy?^JmkciX67gK{Pl8IrVd`^`scQeIhlR7H?o
z<LantqneHCHe4I`i@b)7nl|d$NZUx+XgemIV}m~_*0NDsl67qVWLmDLfByQcbvoBZ
zT^o6#Lp4TAK7>P3-$nx)_u6QrC2#MIH{`&cPTV6%Qf^b~KFQ@H3RHN&#)CE<qCIL>
zW3i->?LVl%gPm$35?-IP(dIT<*qCZ#nvIq=9+s>LHXgCj%0?d>eQmV1(Z)tk8;{Xu
z8|`d#w$a5#dmH&SI@tb2IB&*zZ_dNB@!pH+72$M88=Y+bzMe^ItbhOBm72DHm-i^=
z-E+I!ejMu|$U7{q%CW6nu2Y^#n@=*B^|*~*HhSB5!uG=^@1dwhynTP&&qjY6!)=VP
zF@Q6BxW<z<2Gh1O$$>ToaU@Ilnk+cP#!wqG&nUcMd`dLAcRH`HTV_|zFwV8?ppLXL
z%ElNQ&#>c7-NjaVG@Y=x{~X=ZLbx?od8F~IjTdbHp8YuyPV44AZ~I$(Brn<+YhxU3
zn36YMuxcHToX4wE@?Nqr(Z<U*Ua>L7_IImZwegybH*8F{F-bbe`^48d@_qdc^Jar;
zbL-|!4rV*IX&vuv8*d3`vi+76B^(M4`#Uz?wf%rb8;H}XV`Hn0-)ziamu>tg6FSSr
zY#R$~d|~5#8*^-YWMiJ~Z>P|b4{Xd8lRji|*;naV$K&M$&G^{Hr#9xx6n`S<!C<?e
z*&yL0el9{vsLUz*(#9eii@9WMd~N$T#T3%ig&g)V{x0G-HkR1<!Ny9qZsS`U%WN#S
z{k_ER#5cYd&igEXH$YFWU~O8Gk4W+K#Qk1!ddMmp+|*rTW3?z#lf|h(;achMPd3)s
zSZ`y4jZHRwweho!Uu<l&{f*EU>Ui8)<=KJrNTh`O4BX1#Ue;zCTR2dgQd}n7<k@Cp
zI~RzV#S7ryIY%7TI^IqjI~Y>bWGQ(u_D>rFOD1_~M0~J#a+idQ-Rz4HN?6t3Hul*l
z6vZ7;>=z5GN8m>AkBtM8JZR&xjVm?|(YtIMvGK2sbDWp%?olp*e^bY8oUn1s_J1^?
zOB1;fcamdRI(eEAMopd)95&22!y&EXapcd+$|5;0zIuUCMaU&_HeQ3#x9RFvZCqmr
zjUYRM>l|1cMg+kKZgTo;s1axp++sZ8YhMvRhGz+KmxD2oQTK8&|GdL{VTKw#f`H`S
zelBtJrc@{bD*{`DW(47gAMF`tIku4qE(Ek#1boRo8o}=a4EBN#<T#X{_D>(g0udC9
zpm+o&A}AEW9T6acA`$;t#KIB(ti-9|19GgBHt=4%XvDu0FBbXVeK&<ABPbO?<p`=o
zP&$GuNrPpRVow>tJ0svzQe}mgi{LIHELdL1-GUVa6Sp~kaVwsz7(u0oe-htb$Kwfw
z4=YxUa3?>jTExG(ICo9w#sxiu_0))<K-3?%nh~U=hFTH462Yqx)Q+G|1UV7pM$jvQ
z-VxMgB@r}>pm_xKB1lKjB!Z?9)Q_Nnlx;-0nrs;HH{TwL;2ufdD|nwEbMF`OKm-qF
zBpf9gaQkBdjU#;d(cg}v@s-W2v90`_q81UfjG$u#ourkA1zQU~5<x2=RD0l-`uoOI
zn+V!+zBZ=X36iuIk}v2*&_T%a|M|+DrR?K^T}0khkXhX#=$_#{gghESPa%&9G6YeL
zlgr;mpNODO1cM@YGJ?Jl^owAC)H!CF!QB4B8EVee@gFQ481Xk}NCrnRB!ZEWJ2c|o
z_zxG(tfwOWCDX8oe~m=KYvU306E4+K$x#uEj^OEx=GX|vWcV{eo)vsf@Oi-(h(cI1
zcYulGA{Z}{2^slIbju8XSqMG$wFo9fpooXO9>E(CtcqZD1d}6pGlJO>yiYgC4!kA$
zGX&p`U`nQ*cj$x}K2^xH2&QKw?+Kwd&WvE;j?}D-oEMODBKRPJc@cap!nuMUMi9;M
z2k;|F@}Xt&Pa^m<f^Rvk0d2m>zm|bw)@KoXE)wzuLcS3EGJ>y!+<t~<q3ACXTr9|O
z{zk}>2$p6frNh3LekTRL7hD#>av>`OnfpToD~0D>*O^=s!H*G~7RlNOeu`js1bZS_
z7s2`nc1BQPsK2STA;RyU_-l~-XKC)22sR4Ylxh9f2sUT<mWY29L1h;CErM;gLqr>Q
zJKa+F9~sFG1~lQ+XBgQf@ojNOe_!G+Y4NbQ86)jp5|OaZeM0s#{tG#fksplUknn|%
z_^a}Wl%+%dE97Vd$1;-R5u6ZyG9x)9gfZt#1ZN{SC-q#9;D(U%f)@lY3SJVtEO;e?
zt3s{`vS~i9NxT_BRus3N%J@&RZV57aRLb#am>Pu^g&sv9ibxbuabqJ2Gm5bApkPSw
z_Dc;`)Q{T*KQwF+@+y=zf3?Qo6MZpeMg0x!xZu5OjO-}*ZpH1LYT8pUiflcL`wWGn
zKoq^A=p99oD2hhWI*K+?6pNyG6b+(i7)6OFN=EVBG~b6yMZvqd+ELVzMoULgMhLU+
zjG}CYmy6=AD9TIn?kFlnQCWC}C=wZ+q>zeHjLPgCRf)olqDB-|Gdk6TR2M83@t^x*
zLp3wGDIv9@|9cH2CyLxC>WlCm{@%?lw|DcR_<g8xZ;sbB$Ez3RI~8cy-ld$#-(h)j
zWQF%c@vxM-H|k#%P;#Fn?~mevC?1UBp(t1(<&83xHx|-Fu&H1(!RCT31gYOr2#b?H
zB16|oaNtOzZ4~XI=q_39Gx{Bc<VXFzTrY|ax8)_0T5Gpc6rCm6C5o<5|Lo80K2GR}
z<Ed^UXAER3J)(G2l05|<i~6_Bj|;L3<WEG=N3zC6(Km{IQ9KvL^HKDVVgTnNiqTOF
zjAD5|+0Tz+P!vx_F*u4LQ9LCsN3R<i{om8tW#vwMSVqpLf=5W@`M1=O?1h=dtD2`d
zyjA@m^K2AjqW%-h&j^z6%^LHxe>d@hl;U<h)m{`nR`AdM275YQ`0W@tG0M+m;ZtBf
z@JbY~M)7R{d{+RkMKOuJa4^8Z>ruSHCSv$4hRIR98O6IXOpW2KDBh0ZBfhB}!;~oA
ziQ-rk$C(?&)F{?Q@lzDjqL?1V!YCF+@m>@&*j5ztqnH`REWX>t;!(_w;(e}*;qF|H
zSdKS`@;bTv&f5o)q=auYx7d-xcbVr!{nw>GiQ;Ce@W=Ge=E=MN%;CGz#U}WlS^JE+
zQG6N2S2QfgdtzJ8=Q-YjD88UP$BX}zCbIa~oQ3^~zjM5GIUZ|R9K|<Wk5POd#S%LF
z^x8|KxSZp$TE5Ett#CHYm!Ow%9-~+t#hNHqu+(rjlIyLC;)f{ewa#5hSNt=F$Iso<
z<#PR+`P%h*c^Ul2DDtkPSi`y~)<?0A7u!*6h~noc{)l2n6u(5Vks}<%Z&7TD;@2oP
zGj?4`eS9@F|6<PW(fO>6$t_X;t#guXQEZp)|1JYUOQ;Z)=4im5QS79PN?&qvy<Ji4
zj$%&~t#UmkU+(Ysg-739Z!fb(=l?Cpks%+K>v#O0C=Nt%Fp5J_9EsxJD9(3EAExoc
zUCs+RUjRSKu+}V>_LO=e%@@fjIl=YLh!jIIhEq|TW(1BQ5W|@$&T`74_%DictSX8t
zQCyAULKGLp{>zMS<9w55<$9Osfw>;Z)?AO@_oG$U7%(rVu5)}Y`R}&hkR-{XD=8X$
zD+)E{zoMQMgA()IW8ldgP9l4u#Xuim)`48lh#?q5=@`ny5Q@Q!;f@#z#}JOeiXk3D
zb_{k5kr-kzynJ1`nd`esl=7=79(=9diTQ)i0VEcPp`bL%0VzaY*W<9TQIg7aJ;YEX
zhT<`lh~d7vUeOqe#n8E~#|fe(v}br-uVl=3(a-97rDDD#O|I)Z49T4_aK``Xn7%89
zvN4pC9<d;E`3ise81Cj8+>!HBU9Un6d+T~UXak$B7(*(CS}|0Lp>m98D^R~$4Aq5H
zjo}iDjBs7)1wTqzgFVgj=&S5zO|gNbb_{i5Xc)siG33OM8$(_U^<t<S^C#%GoAFZs
z>;fxK$IyT}&6D+GIM&<E|1qDQ$q^`>=iSSWb9`cG62tv5oa~xzB*XP=$MgeYz=JV7
zBqT4-w~AkAWSvc8zBjVMW>RhQJg;IOzvC@pXc@!9F+38(uo#BN&?<)3F+3VW&luXo
z&^G43>)l1LT?}3f9b#xN$^0190)c~PbCz9Bbc~@>?0;WA=^XRFxAWX(y;q+9{&@1W
zysj~Hi=lhW{~`e;J!1Y>MoD<^ON@`j@OTXUV(1@3FR8gVy-Ub*d0rnOeFga<Icw%e
z23T-F3<F~r9K#UF8YK9n)Jz>JOqJG$#=x%}wBvUbnkJu$fv?yzcLXhrVO$L3V;B{~
z=op@h;dwgMxx`m_-qSIRVfVAMW?#^siQ!oW<UG$W)x@{?1!-ukAd@c&DKR#WA5vg)
zLJTia62luYOr*C<?rSl;lF@%vEaYqHRK7h3lQ{By{T}g{%*apg73DX%(yMyw^1LaM
zd?$wYFX%L5U!M21v^6b;=`laveiOrcGUm+vB!(HnX9~^|oGtji;2gmZ1m_BVDEN`!
zJi(6z$Ir@Qg*-l$<b1);1V0yCAozvgmx5mjel56AaFO6*!Ev*)mc+0$hHoXwn%B}L
zgnuu%OmMm23c())R|>8YTrIdp@JGS_xAP}St`l4@xIyq|!CwS73T_hoRdBQ57C~CL
zEr#t3cMenszsK-L42NPk9K(*7|AD51F$}$^{waK?;4Z=4f_nu265K2Jx8Od({eu4p
z9uR!zvcfufeB9qX!eNoGf?tT?U*Sguj|m<ZJRx{e@RZ<b!83wq1<whd7rgJP!a6&A
zl)5O%OM;gLuLxchye4>E@P^<`!T$tr31&IIdHkj~{Y`U_;~>|8?jYd6a1eA*&cR&{
zLJmv^1sxP}5O!cWh&qTl=zUSO9Yh=yyQtiM)9*E}ZTQLAqOEnu;Rn{TvK{{`yKx8a
zBadH*B`@HBF{;ZY^$rJx9Tay^!T}r<VI`tm)bVHJ$CWzu`H7F>b5cxlc1lw2pp1h%
zMU9oSw$ctR<oRD#S-=mrt69`9>!84LzesrpcRQ%&pt^$!4iXNM4!q?lDvv|nswF<D
zNFzA{t#d0o{s(NUI;i4c#<m=05mPr63S9>^9Mp19TXbqlB`L@M)~<C;9X>sujef3X
zRk^9uanMxF+9n3qb&%(vtAlP1>N!X=%Rw^-^&K>D@SuZ-95i%rkAwRi|1-b$a$wIU
zD$GhXT%Nkm0l$jOE)XA((O_1$Yl%h<_&J?Vm!xPINn=Si5v!PN?x2N(_73tLv~=*W
zgVqk(ICw+`zv_|{$ETGjvv-`1whnHnS?whE;LGmq*=c=K@f>t;(3wNWud6x!y6D6y
zuID8Ox|EQxI7t@=&t6wa&M!%E(s^`eM|c(xd{nTf;A4W13-%K1E%=0BAHlwY{ccOH
zDFYo0a*&k`B^ysV80_GjgYyoC&>ja<9ZYlZl!IZS|DuE8;>Pr38ZbhHBLznZjuw1c
zaE#zHg3k&*C-}VJ3xaoFS6I(j2jd)!cQC=hWCw3Lc*)^sKeJwO@TxR7QSfC4+doW|
zk^eyP8n66C$bU95i3R1q4Db{8Z-}r=J?||cZ#$UcAp5%iuO)cA<KSI-*Cmzzi=n)H
z)_(fNyy*_!bFjm~pL9qEGaY>IV3~ti4rV*}%E8y1I0thad`O$=w>Omw9rO?AISv?h
z=sfh#-D=i6CLMg{;ByC`IOum><@9|j-s@cR`F!EYi;43$6zVT<@P(|et{2t3dfu1f
z1|$m|ETZvZ|6&IVuc_ZSSVHsUA7pf&P<W|>cJ=%(yrr(_#P39N+QA(1<qlRj_|?H?
z2R}Gi>0rHs4Gva0SnXhqgC89nxS`B=$H@L5pWo~2b~&-u@h>)hV$4~b+R!+;jsq)a
zQhpGI@}C`Sbg;?6FN_-(Rc38}$(=RP|6oxTKa4Elaf^ek4t}E}-BdUQ+c-^({9+YN
zda|C!IpS>o;rJiHD=TxclM70g+hGU09qeI`uBiv;a+eZ+IoRi5zwo_+e><2yAkD1P
zml7vla{m#bDgPUV!h;TuT}~Wwz+5KTg(Fh)zk){vj|m<ZJRx{e@RZ<b!83wq1y@~G
zE;zWzND@c0I4(K3%y<~bopD@oaFvTRj%Xa$99-vVE)Fe@8xC$dxFr+H(DWZy%}SlV
zad*+YSL^xT@y?3-@mYyu+De^4hCx7&!-yjo$2*5}0&zcvGulum6o(l{So9g*tvKvB
z-cYlYC)|JkN!>2no)^DyIB_73B5}myek5nv0wg<fvg5cu*7wYUaTJQ<jyT@0=k@86
zE*!^Fi7NTyTqcW36UE{v9!I)p-p*FWj#c?3;wZ^V;(h?!TF<LF+-2A)9ml95c?^;?
zyKEfg;;0=*ojC4_qkJ4y;;0(O-EmZ4FQiU3oe+~M#*vKs0i1Df<&_+sYc@aOS5jH}
zOL?`pe>!mEs1ZkXDKdP*{~~0~I8q|vDUTKMs1^5vBuP#jxp6!oHP?+JFOGZSxHpb^
z>_{99;%FGhk(+f{bA3*YeEX4~PiF}Ix1Q%m)Jy7r^*rX@7svg#2jQZ^nmK?E#_^Ce
z+DNdmU{9IKCT!wzUAEpljusrrIKGXeWgHL3F`FYC$0KpHieq>jBjRWsN1Hf$#_?Dj
zZR2PcN9Q=Y#PP-4{PuBpade0ymiF>F&cWpNO?e&T;Flyzb@Tna6UX)$mq&%P*ENoA
zadeO4K%?CHX|H42+p;G0WZLTy$D?fVhFX4rugOx6$I&Z}0dWkB<LhVK-f{GeqhB0P
z#L<V-#LwfWy#;CiKQ;7^V@Q8@f7-ht$+c;Z-^Uvi_dk?3Sn$a>_^%w89Krz?$y1!2
z`o7vQNwUR4^}UhwiZ~|6@n#&O<9Irb330p>N8>fAF>yQ_$8&K!BTZAEEj};(dXXbs
z-=pM(I7$pFOv2>YIL3*5d?uH|iE+Ff$E$I?7Dw0m-YcAol_`FOb##4iR()@hSn`J8
z>w-HTOVdIg6>q3-$skPO;*zYl;~4vlyS%>lZXAEq_om13UK~?}PZQ*@Q2xrw6!GCz
zsTo}9r&BZIm?eZpGD)2|aeN%dCvkkhk-3zZD@gL8kdFlC#gVn%pT|$*m><VN5%NQ_
zp9%RQj?Xia1#vXLp)OnL*ZidjzY_eKPTR+?fyW||ERN$FAxi|$)%WM|yEwk56Yfu3
zh+|nC%j4KdcZy?096!XdE$&|=tc+t-92?^JIgZtFtcl~NIMzwlqc>G5{20etNm>m&
zCd)PO)c5n(vzve9Fqv-P{X!r9z`yX=6vsx<T=96C$zS8xOxFtLZ4ul`Y@THDH%U@~
zoVY!X-#Nk*Ud`DN$DeeV7hTG4<9ip?-Er)ZYEN?s#IctvH;#Yf_&bh$T;OpW;__+W
z(T4qT{1eCG-*XPo&l`9od)KFk4|UBw%pm!KUoCm-jyi=$<2V+_arRF4%{URqNiNa`
zUe)W$?WRxBT^o2jz8{l+hEXVvb7BUS&olYFUmKN)9N~*H&X)u)3tkbtDtJxsy5J4L
zn}Yud-V)@MznTp#8|SidJ{x*A0@)awjd9s9vJuS2{n>aR8=-8N*{GI{>e&cq!^%d<
zY?R7|osCE~3TFe^h-M>}jqGd`prm=y$@Vuu;@RM*Zn+J0`9jWj4gBq?g4rmPjXSda
z|1rUR816&<(!l$tfp_eB-6Gj2n(d$Wi)Z`0QY=+0+uuO@uYteARzk9vJL|eyIvZuO
zk<3QLY}}dse@uM`bX3*%H3UKjVcwg0d-}|q046eIN&*IwNbk~%83Ae1ML+}*5$Pfw
zL{K_N6GVyv(ouTvAfWW#M0)@BJNdo;`dD}EweP;?p4;!dMlJ#tl(3*AD^M|(z;Z2M
zap#8`4@pS)S0cR?V{clJNaKs?^vt6%NLZOt7Nk{-@ljQ23xXE#*$(T&(?gOipvb)S
zD)N7hA!^~9JG^5-iUp|_l#`~F5qz82BeN{Ku5~7hW8O3i+E$ERf0WwsN?Lgf(k)=+
z`HZpW^Rx^LXut}5Sus{Y_^EDMMGGof@I%E|Web*9j8)+k@AL9iUY6fkF~*u#x1fdv
zoh|5MK}`#4SrD_}eG6(^P{)D>7BsZrT?^`3P|t$;(r+x{{FBsEEi?I;=t9L9M}eg`
zvY@dA%~%;Jw+Y8_QC3s2uQuEm1=_G;SyDPH%mYN&^UXO-Y>ox(ENE%L2b>JUBW)~b
zWkG8T*v7(@Vh<`Bzgg6OZIPK!DVAO-_8|woUQ&AtI#@8hWgfciXhHMm<w-hOz$c&8
zpBm4f`B1K_1s`!(E$C-KHw!+t;1dgaai-l%WM_7#AJ)f$rj=qG3qI0hi@H@Zp2xCL
zpIXqH-Z(=l#y+#4FDGs5Omfzw<#1yVY5#=<OFt+#z=E$V=x@Q7GBH>;dKg;Cc#JmC
zf<YDxwipj8Uk{HAu^5j`d43ApMZ$p?Zo$_U9I@c21tZvX7Ob)0cMC>ZFv@}-EtqG)
zXbZ+zFpZ71V5|k>ESPA)w-(&Ho;IEn=4H+a7JOeRc4K`Of2J?3N}XiEcT_m&^xP>j
znU)U|r&z%2C`NfHRry8vYO9TV*s0=#et1p7D}fmt_j`%6ESM=I``Tc(1#>u>^gJ>$
zmn))6<cZz5*Pd^|0t<ezV3`FAEm&m1Vhfg7U>}yw`_`WreUiAMl5scpGkYn{xSQrB
zBE_YW#L|~ru)>00E%;4FWLu>eFHu%<kv2B&%~x5lntd`na%x~EOYe6gjaNj}*IKa7
zf~^*8vtT`UgAJ)0E!ZR#-oSpInaUf<&C=v87W`o`F2i^MRwg~`Pfl{Vj$*s$XS)SE
zEZAqkeh#tN@8SyO+<O?uEPI&uN#b5{%X=SIp3OJ9_rJsg798ZDJdfku5Tl1II4owo
zn50{_@t6h2=}<&wIbp#S3$9vl(t^J%IAy_U3ocl2(SkD;{B6Nm3(j%3d6>B7M%q6d
z<s)fqZ}wAy^Ae?7`k`V}z=F$Cw=>eWtQfB_uW_+haMyx=Ex2L9O$%;I!(VPl<y61L
zveu`5u{{rK%i+5t*?IZRQf^l=_DnjNDi1CmSn!bBk%ANjk2skvh$zOR!Y39ywZN&s
zrQn$b&$%-zD6HUx1uwa!E6AhZl?AVPL#^=XE=Ko{4BVH_UyvM%@k`yUL~fplmrFrz
z#W>)P%J4rkUsW>h<{0vdO#w;DCp^EPRykHs2yJ*9SVX}a3Tz5A1w|DUQ=lqfDHa8a
zm>ql`$8u?Wrh3xw2RX^DqVo?RLx^30LjhCEjW$ksi&i!&KpVFLkAmU~N{E?Pfi8rp
zJ_UZ^2jo7KN<cg$D5$t6y?g&iNd<2zD6Jq_L85{r1#c-RC2g5iFutx7(V=o|?AFYn
z_-WHFlNF#J)-a?Xtbo;Kl-<G#Q)F+aDk!61l7jCPlvVJyf)5q6SCFQloPtIQ8Y?KT
zAYDOK1=SQ}D9B`e6jWllm1Dh&rN5(~0_#&ZX=3FVu|=`;$`Y+2NM%vw*pPvdjg@27
z71U5rTR|NKH5F9Zl)J;!vb9)r-K3#K(vJ=1e=#omu7bJ>>M5wNU~>Pgc7q}e$12Af
zDBSVV8*;>}7^PgT9BXGuCvT#lsT9;g0mWttvJ}J=yeCmA%=o^7Hk)#1D(TG?(3@L)
zRy~l`Qo#q3w-t2;OS-K}tTl}}*@~n$?4Q+E2(!?bP3WMYqk^wE6BKk(&{;um1$`8B
zQTPW-@v(yL3jd>hS=xVOw!NDIwu=?+p`a(nu1f4v<|>x{i30v9Y3k&?MA>LbXS7C@
z*k_WrpMozG^i}Y=)H$f6*RZ6wsuKHmaHK!GLcst9<m@6MOC;X2qz_UsSi#o{MkpAf
zV5oxOoC!tJhe>C$!zWdV^{v9|igadSW4}=_Qo&dS;}ndNf~b#Hu&aL-D>FuNv54P)
zG6rHidva6mZxu|CMos*`)FSEZADT^8Fh#+91q&2>uiys-(-cfsFja#0Y2u4ijmw`m
z&NCFuR4`Wo?|d1hI7`871q-VfH_;4p*sEPKw^oU%ugd=@lX)H||4id|WTApZ3YIHa
zq2MP4ixn&tKT8y_2s-3hT_it?J#Vh*;THwVn0hbqXcgl@!Aed--t9h3{7u2HoNTqr
z(d^)}#8nDbE4Wc5wnp-DrI1(anYm8EdIg`^(AS0y3N~^mt@y->O$s)1YqFw<6<ZYi
zq2OB;lT`evV5@>$DsrpX#(`FFQNbkzI~43xa9qI&_OOE8T#pJ4anTKk>`|~!!G4a{
zmyx}SapMzL)z~qnmoOec9Z+!Ys|b%XIIQ4^f(u<Tk8%$=lFEh5Loxh+X41nk1qFL%
zx&}l}D)@{0hJwGjg${_EQgGDx|ACRyj8=^?yuB;y9|dRWhbz5m?3@BRVK~o?rE09v
zv9x+sV~qBhnaUzAE4ac{px`AJl!9xVbqek&xX#&CHFitEZT6Ug@l}o6rJEd%sxk6A
z(!+N-pi{G0I+LtjGuedyI8q9pD0r&ie5&?9!9#BT3T6$6&>I6Q{8&71sv2ASW#pOg
z=iH748U_u->}b{4D>gP?QVtb4RpX?>*W4Bwmt&ocep8KKf!in3ehTL9xFt1SMIIH+
zRJ^AmuZnys!YU#v@~bGI!l}ZgqM(XGDl94#6@^v29+qB2#TzR6@kw&kSWy*4s>O<_
z;Ije}7IEZoTA*4?Rbf@3seo#XmrXFcu^kSltu7RASK&~NKZD<WopEdm3DK>>Lsu#i
zRd`u>6@C@EYRrL*YO(llB2B8r0xCEP2`Y*Ud1q#7k7~xKl~8fx%ScH<5_%g|EtaIB
zl!~B=x1>IErG~r>FRda(y<KLqiZ#_@476uBxFa*FB1J`I6;)KEW*4ENf{HRK%BncR
zvQ(t2$WW1{qMRt@rFBd)!r`<V)nb{Ve0(%5I~rF##=Go_B68YPV&#t*H{DfLR8vt~
zMI9B@CAF3cTGkLwgPJO)9Zn<R{kx-j>|GUgRWwl1P{oO-iS<;}7efB}55wU{|712&
z(O5MmZBrR6&MSr{;*f+72jY)pWvPg%=&Ry$74NHPuA-xgPAXccXsM#Digqek$q(4N
z!)dKJE2_tsx3!A+fsr;UvX*Btu(%IZ<FH_o_NuWq`3RIl-$6yaFC%;e(OE?o6+Kma
zBBgg#(M`q2!aw5B*DY6IKvs7Z1LmeKshPyC>mi&`I_yO=6}?sT5&KHjW3lSS7=0$=
zo8zd_CmedVx}S<KRE$xLO`yMuFIf{6U(=O}uT%_HF@&SJDRrQVLFCezy{gB?RF9Dl
zRgK5C9E)MnjchFW@kfaxRD7diBwMFqLG>7$#>vbndg5UE-1eD#P&QhH`)n!|+K*K+
zPQ`fX^9d>@N>{LY9D>c&W3>5BHJ*gbRq>;W$-<`yelPfg;8ekBg3|?O2+kCoB{*Af
zj$rnii+SX%xr&plr;3H#T~%yVu}H;FoY-9KDi(9u)<{~WV!4VXDt_jm^Cg;!UsMEU
zrv^txuGdH+;S=>0DpsoaO$84FWw`b*H}O{$*@S$Riq(?(i5RR^u};NiaY&!*RcsJG
z@?jjK8#(>@YMWH>AwQ$UEh_$yLK)>*w0x4kO~rN<`&8^#u|vg96??@)n>oBCH=OKJ
zv73uUJ{#D>$rG1@84J!%&G|6yfQo~hpDK>3I3&3av+}c3Uyh8-sh)Jn63<8R$5d48
z968QS;2VvEK3^Bled1y6zf_!3@kqsE6{l64QE^knEfs&O_(#PR6<1Z9<%|-y7gd~B
zQGRyn1r^8SeLDHKgED#K&?Oa@S^s;+DMj?ZZ*J-}$-?Lj$#Pvqn}@kK+)Et(F!$=t
zk=rWnsJN%%KQX(j;$I;JN2Kp<n}@mbO4r?2@qk@1GQuJreVzVLIHPR)6BSR{u_|&{
z@l3^Y$^J^k3n4F6+`gN}p`0{TV{y$#M23&kEVYwzS`lYO9xL)%k;`h#hj^=T955@K
zTL=}-gvw2F=d&We6@{$EBw;9E1#JpiQ6iySm(7`c^Fqt+uZ;G-VMS3Zx?7FAl44d^
zta#IkL@N|4R4bfTxU9y7gw+b06`B=1-jr7tJU$gx*sX9_jeFrmPtthPM1An$EE>D5
z@JOzJ6<!9u_O%+fV}DgQu1rY$R_M$=ES<)TCRkCN&B=)I?EoLJm$0IwM5)kuk`-@R
zQNxOwR+O?L$d+1B-ip#zBwLYUMXJ?!*%Y!OVg-*m2uqYodhMjB)%fg$--Pgk6Dnn_
zC~L*rR#do}#zS~{*a1_ir&*0N7ns+`Wkn?`DvOg0D>AKkM|cG*Dhjz*J=Xe3BFBZs
z3{^y|W<^yYRCrtkT~(LLFj|XUVMQC(#ELprylX`>CRtI}ih5QwAP&l8HR?-t9@s(7
zvnm=|(TMeYX`D~N&{$HN2sRaD5m{EmtY~3HOHtkzY;HBqh@q45{USwb#2#AWd8*L|
zR<x3?SYNGNYpZdd2m?pIofRKi(Z!0cR<xJw9jxeR#S{6mrITdoEIJ)#_Yaf!O%AK{
zk?7q7KNh68h{t|y&(p(-S)C$$+0@I5Ppx=m#cL~iThYgg`Bp5j;xnsp0W;K!VOI1N
z{<&a3!7l{+3w|j$K=3QUfr5hs2MZ1n%>K$^xD{VZ^am?OSn-V&<E@xr1>f?IlsP%p
zicu1!GFr$OnZu0cFQbjKf-lJU5^bUt--`WYD<%o~PLMN}@7#%ecrrzl@2%jIBEIG4
zT;-`iQ>FB2g3|?O2+kCoB{*Afj^JFu9|h+L@)_?!S-HPivC4`?!haH6EVxAQXTha{
zzX&c9TrRjmaHZg{g4y5athQo}6=$tD$Fi(gYsFq}4pywQV!ajHt=M731}ipNv6&bA
zR`58RO;+QK4<519cXL)kjo2Sn{AtBjE4EpAw7qfC6VH310SOO!<B3ruJI$os;$at;
ze>g^)JuKp1!!ol*Y`+x;tT<}LF)I#oQ9sUonETJ%tV5;^k9p#WR7WJr13{SUxD|g{
zamtDlR-BYtW$W+Ni1FNz)7-f3C;nqKP98ZU__r0qbLL{S)o(_v&RcPTtAoRB#YHPF
zS#i^fTUK0_BCc9-O>$kaqWR=3+FzIG4eF!P&pt`}xJHb{v54DN+_B=W6>Ka|<2oyc
zPtky>?5_W;xNpT{E+Q))a0b?hJ>upm2f;s-8ul8UUU;10pW&$$&$;>VS3t_jK2V+|
zGU+8Z+XHEHY8Yo!<**^A4K5qpHpJPCwZrg+4Y`Ep7K|6nBbZk(pJ0B$0)hnv3ken$
zEFze_cIdOHM2iVp1QkJ5&?;yX)C3`D7jy_Z1v!U3Hh66)V?$XRd^Y%P2vND0sM`>*
zA<>2;8xm|NZZke>;UmNnHseuYNt^Kukk1CQAC|sp13$3gGq<;FC?(mGZ3xoUy~NTs
z4B3$SZd?w22*D_M_8VTV&9Dt~=A}k#h}w`Mxfo?g6`jU!+mL2Ma~oRNP|k+(Hq^1<
zT^rJE$grWB4b^S14Uc59bQ>z!@QygCAjn(khDXvW+fYTKRRvcLGahF0{+jQ^Nov@@
z4WX8_h0&T~!zTl5T5TKF)QH6|&8lm|l;?5vY^ZNDPS)n`(ZGg=He}flv!Rg<jcsUZ
zLo><S#D;@4Vl^M+tpA@;#CtaM*pSLI2kD$&x&~?`U0;{Qleigu-)21HE$}F@r41k0
z(9VVr*|9d`N1VUWZG^P8VPwlZRQTiD)`mh)a?-xN4IOOw#D-orbhM$94c%<`*oG~K
zQ#-Ts=cRVFp^HR$dOP!eB;t)d=}e-Z?yQmxJ!w-biEZKMvU@J2@gZ}OmYJX0aJ`1{
z)8EI2-W>ObiMeXVI{#->o~}N(p`Q(JYe>`Zg$?~}*k{9j8@{w*fDOxSSYg9gHsjiR
ztPSIA7-+*F8wQIqMv5CEe5l|s!Qp~m3yu){MsTFyD8bQ!*;nAG8Dq6m|4SS%;yfEB
z*f7zCZ*7=l!&Dol+3=kWlR0EEy}44l=Ro&D@g$wQYTt|agJ83U<)#anWy5S6W|;Of
zIo0Q<(w<?C4Rb|*CQm`B|0vN9*2$+?QilbC3k4Sm{v^0qaEaj0f=dN|5nLwN<yp>^
zw*OuGZMNZ8;lBy45?n2~M(}sRwSwye*9&eC+$gw7@c+K>+#=CG1pgG=D!5H>yWkGN
zor1drcMI+j+$+fMJP&YU+i=*1BQ_k8z=6J>FBew|$x$1Q*-%8o8yb$=aKeVyHssK7
z(uTimxNXB78&279nhVW_%Ql>`;cpwx+Hj5wzh;cbasDGSgh$x(`TThsE^tg|rd|}0
z*FRiDTzb8>W>Mq>xMIUK&Q%+(+Hn7H>dVfNx;101W@xm$VZ%)uxJ+nyOPp|(b*LG;
zYs0@bJhkDO4fhxxCO)*`kq!UR0~b`y*aH!_F3sYEXOu4v9?Q1ygaxh3;%l!?ca6^%
zpK}{zi|!@9vf-sHdDfYqXb!4rEF8KmzBMbShBys{HDgQUS2Vda<kgT*Lv9W68tfO1
z4I%Qhd>##xYR1UvEx(2W8VYKLXFBX7O(>+{<<}90B{gIGh>Mr>MKu)DP(njV4HgZG
z2CoL6233QVo;5f$*fjLIp4NJ0ZcQ^blVeZIL&M6tN$dxrQ-e!0K7({?81uM1owKiq
zT=*W*N&L*nFI4HAzXF=^X;46rgbk!voMp-V!kZcrHE?rCk+PCB1T~b_@RmeN339wx
zjbsfW4N=Y5VZ!X3*5&x2PDBHn&$|h7+OTJcshTl5Wi)Ual$AQLMB0?oP+r5g>@?=m
zkf9m3LSr;!YIsLOdkq~lRA8TLh-r9VLnRHBH8j@HL_-w~RaqGgbu?7d5O|rphK8CN
zs%z-CKGoMDlNW>xwdm@3-01~bJQ|hJcQw@2P+vm>4dV*MQ>mw6Mh)YzSDrY`(_rgt
zPc7Uj(ojPq4LfS`Skf4krW%@Qcy!-5hWI@V=W52XG~-a?oa>Eah?_hxj-+g^p@oLF
z8ro@Sso?_+Z8Y$x*^>LyTWM&`8WxJD=X*7cvxc9q$zl>6ekgvZoaz`URLe-}sG*aF
zFEtF%&{;zl4SmI?tA>w+^wQ8x1J5J=SVMOWzm3l`VSjoLN%};vryyPZGr;JClC@%=
ziqcy{AI&%xbM1z#&)Bh2-21g+^L|YIoSnv>08YaF=>@xM{iV}b+ul1;ztS*J!`B){
zXy{ohHb}z|4MWA@U_o~5Fbz+~My|bxV{s(IIkh@QNWL*^!j_KIFp8VWq4d#$Utdn+
z(a(&Il|dgTIG%&T4@(3m3MR@;;&&P*b7X-Uz!VMNYq+oBfrcM6Ox5tGhOHW=X_&5I
znTF*YPz^IR%+oMm!z>N6Wy;Ofj8Cum{**6p=Wy!YOXSDQoQFTs+Y96Sv;`U#vVSxz
z*1&I`c@M=4p+z#Wv)@-P(eSf|rCbhj8}f^|<=s~L=G>EI5v|~=)UZ~=It{;aXf&+S
zuv(T3Uk7s`aQEN~WtO!@^8PMK{3@FYQ`c+wWLMS}4I4CU)Ub(7zLB<Bs>)KbZFmKe
zd%E_Aw1vtx4cpn<8cuV%YS^ja0Oy8=UFIs=t6}iGtlb*+$Qm47%Xo{;jQcd~7n|(1
zAJTAG!wGKh8jeV<jtL&s5N@1@_S~+S@wf)QG0*n!mu7tN$aT#wrNJ2ue`~m@;g*Jf
zG@R9NRXm*Is^>J&a9P6z?rClFT;zCd&duu+`r&WQhd*as;Z`ZPbsUkCt5Ydn<F2CN
z2Dh&f5q^x#cP{Jar1E3k+Zyg@_?K<bux5b9a_>r4WL-C&f&8bTP|4g4uB5S6>}q}o
z{*cR-OAkl@9<%b?V*v$ts^J+oa3DYMT*C_uJX}3D@KVDo4LN|E{8Mc*Qm<tTWmUPs
za<`0w@nJAORG@R#lZEm~Mji#mqgTkawt0B<MV<DXYz2(J_l7r&Z}!2z*+T>VEe9e)
z-36)q@4VSO`{J3CjZuCOnjPhXe=Fc%RLpEJ{?R}aT)*A8hO`T3V+T|(=K|b-AJAc3
z#(S6~sT`y1`uIf8{@~ft))>=&$7scY5<nP;043QKLnDbm5{zG&H(`8_L9@4jQb1`S
z8O9Z6xSO%D2LXPEz$^cdltQy<FLLt#hH%D4ffOJUc!wTn2BZPy#AjK6m*O<$+p)I+
zPG;7vJTR}8@l|IAkS?6j4kwH&Tbfk>Dgu>(DnKO|zaw0~L{^np6~;m)sRrY|gTLv&
zH!!Z}YXY@^FM$3m7pMb#2($;@1?mFt1I>YYQl*AKBcMK8aUzYK(*RidFp;ydG0;Ss
z)|3-wLn^zGt-iB4cQdoS@3H>EW2V9$XaTeY+5+287!&dXDWa8No|3s+18t-U{67Ws
z$u&irc9NZ+uXF%90^NX*#ikR`Rgze4XZE~sR&3(H%#Q$mg_}K3x&u8VsW*%dT6)6x
zaqlH1egbepvWGdfJ{248LVbYGfWBhDd%b?Z=aR&wckqI-^mt47B`^S(3QPmO0tWJb
z?*gNNL6VDg9tsSW>BPDXk=k;(4FiUA_~xX3%|7J!Kfnly(kI1{K(u-}1~y@glsFC;
z4~!L`^wXe4o(aH27`K*FfNz0GVm4WvtQi>jj#b)VJnA7D{nk3q_rMPT9}2Zzotph<
zi28J37WkiNFhe}g6eroKbA)pa&jaR~ZTV3|Zm{!#1;Q5si#Sgfq;jUQ<|LeBOXxNw
zZ6)w4@Uw76mjb^CUuG)Hffd5n)QZvIH((Xlf*tSJu^Lzd+y@>2zXNMIQow0o9k3qQ
z594Um4ZucD9$*Ks3D^v50si2WNKg8rLDKy6q)$U}Ja6<*U@LI4k#X=SquXE{RI1AH
zraOUM;%ZaQ9J__k?H)0x&?Jd`FR;(l<CGi+fP=sx;4tu)=yY{N$O*}HRPdPKalzJV
zj*~*@?X@KbosgUX{st}sS0w2l;5=|a{G8?1)FkPg;F$(S9nL5@E{YjjbV&%0WW5Sp
z18xI%fa{X+274oCj@Hsl*6Jp33kWteT1~twHvdU>D*p<($Np>|VU(pTxSZ=D@QAyp
z9ZowQ15fxD6zq7zj;FvgAkL0lc08AiFM(IwomjebV^cN9Yc4=JA~uKJI9rxOu&O~)
zPCJN=8zkkn8-1R~j=VzR?f)~*XE(;NfQTgdC3^K>W<gPyrH~zkh0{6Dr7dblF*~ew
z*u>Iehblx7n=wj`^9_@-tHHdQh;~8P`KG`)$CiOd*}Cj-+Yz=SVu!~LuN{6nbg}e_
z!$cXT;{W9gh`9S!;+u9P*il?sS3*R#nk_9U%Aop5{DDc5yl>eNw4<~gr6kIB&5Ms`
zx$7GnqnRvX$PTSh5?dOzBgKxl?MSmDRg%hz^D=_W)lJFKt5MRe`o=i+xst1#9p%L=
z-OdlLa`2Si42gEWl8eqO*iq4rUUqzHM<qKd+tJdF5A3L7=U)y-V>_DIQB5+|wxf<@
ztZqjQJ8DXC?4nwBRA`*Uz{y63@7hsclGxI^cGR<DW5c8l4U&irBs&lAZ76-)hy~p?
zYRg<r?PzAldt$&kXW0=GC(Z46UqoiF*vRnD6~T73u=DFCgS4`vwH=-9=we43JKB<n
z!**tGd}zmx21yMXCADX7H%RIrNYYVAC(f(JNsQ8SS35qoqq`j++4+51j&9;1yO)@n
zB5r%w`F%)^o|5#5)Pc?HZATwFM%gjij?e7qYsVlv2HWwu)ch+kriXrZd|^j_iL#Pk
z+HtE<(g1dTqojPQF=TAcKs$QWPh#mq>=<gt2s^$JCsc+B87}y>9c9y#+Rw^EWG;Fe
zDLPBpTPrrkj<I%pYsVxz#+mvAJI0$eSuG<q(T;=dBk{HJd}qgGN%~#}noby|{D1rh
zJEq#f<DRF9*>u4ff-HTekXeEpl(}~NXvfG>7*z`M?3iyyfg}`6!U8)M+VMvs{!GLo
zJAPtsC!%{I7TdAJ&I?NvE{UJ*SZYVn0Ez|hiyh1C*y6_@ek`|R1*fqa>29pF<5xTW
zbK<@ezj3=@)Pdg|SZ&7|P9X=f9QfUiwRXfikjH`deW7)BoVDYe9qaAbzzJ!`COc{`
z&e+dUyC2?cM~kJ&J6M)P{}819r;x3J+XT0B6Ub4TNwnW7xpvvHTgV>4y@LA$X_LAr
ze1M&7#~}{H#vsFSI}V%th>)Xp95WT=_xKaSPulU9kW+U2ZKj?Ua>kC(T*K8rroL}q
zuJi2kG0}VM7CSBozi7uLA(sVj3SJSsDtJxsx*a!!R4R~054VJq+_vM6@Vln+uN@`h
zN;B!c9S`g{(=(jQfggHAAKLN4jz?)3kL*U2;jxe>{1p)L%+#OTQEP0N1~h(Y$1BP8
zS}=#h@Q_oGBu+@mo#fmc)?Pt|&eh`cI#9D_yy}3}fqV{JyBsOIE}Y*1VgbQ|f`tSN
zJ5a=dHykJ`QHx+PLE7&+6Cx@SJz6hnb0E2MT*QIzo~LUL<E|iSb;#~O2?tUiMI8<}
z9dL>07jz4H1igZ^_c<_Ta*#w9B_Nn!rWSW#aP1IN>9C{&Z#t03B=JwBv;%JmFJ&r0
z2af#^WKy!JgoK10SbQ~^dengwDh`x!pn(Gq)+Cp8;B5ygJ5WWUX@Z%8<s2w4Bwdik
z84gSvoJzv*j))ZmD>_g~$kH4kCRG()OOVlOLaGba5UlAyug>Y&erk(S$ANbpsOvyI
zi886akb_5pJvRm!ZD{I^gftdx;y_a&&CJyK6+$sCUI(VKstz=FpoIfpIxxV2mJWR2
zKu6Ap0^t)Uf|pxITR9NE9ck^r@L6GoHV(8E-cImC!S-fq2M5$0A)0k^Kpzq6>_8U>
zx(e^<z$XrTB%Ddz9QasxcflT}UNl#jsl6QNYbu{Q&|7#PQ~At+xf?TR_PHqi1ivs-
z`#W&yXo#s_IWUmx$bkz*qk}j}9GKwX-<XONuA4T*fsqcZT$MpS)PZ3RkT48);A`O{
zOywIPYvu$;iT!B7F@nrK)`4**AMZfMtq{ed&q5O&_|^duhDn_K!Y7-`6d~U`FyeHO
z2CUxDEy>emJuY-$kpnXvn8|MM9p&<z<v__w5r)}9<_OLe{84b8;Cu%b2%+V?g6XgN
zM1OK%1?$FH&80dkgJFq~pB-3gD!(|eO!#tBY4)Pfo&h0Wi|E24(V@jkuVSqnnBv6u
zPORbP@4z7k4og+nI<VD&Z4Rt+ph?yEvXjE=9k@Oty1{{sLdZ7>+3dg;Q~ASzKZTe4
zF-U{AO2lpF#Ap%PVYE8@Vg2Y%2fnBhX4oZUx8NSZy@LA$_d9UFfrG;DPYC4-WiZPT
zcB}*GPGmT7%z@($6m!Dj#0dvZa=tAJ=W^mN2TnQgklUaGryV%MA2_64b>MFy<QE+H
zNBCJ&IVa>i=hc@X8eBB>OF}LSUZMX%L8e|~>m0Zt;vK=8f=s$4<hBF5#m`*_{&nD<
znR;Kye-13aZ1`b#z?D8PO!8QMYWZvX(t#%?f9k+9;m=Lw1zXW4OtV*_ycW#iG=8RY
z3X;S*VarS-$?Y^cB;JWULh?FMNC?GzLh?INz*Gu4QRVFrlM0JcMDPtWwWt%vgGQ?2
zgz7|+6K^?r>UY@cgv$vxOOz-TO$Z+h*-gbE#OcJFZKE{sNHjsvE9evS3(`Or5^!Sh
zmI$K^#YHLML`flUnwE)9y!*hgDdj}aiI5Xv>4b;*Bc;vWNOs~vl?Zzy;>3XY!7_p*
zQ6VXUse&II36>S|wqTlIIYHW&cOqd$21%w94`Si!PSkMX9pQ{t5K>XFl3-=_r<qz+
zNHr(wj}OtfrW3WC80f?xCu%!U$B7S|Xhq@+z3W6HCmIW{D_Bpkz7q|E(59gi@$W@R
znwUz=iKZrR=EQp@&tjdo1!?)dD9r_1n5iwDnB@vHwY3v%oap7m(%&)|+B(shJuK07
zf*(53-iZ#vI|_DU9a^Q(xW$TKcCN0XcX#3=A>9O-^sy8Bwuec2h|<&4KXGEi*#G7I
z)QR3s^l{=dN$uyv7f$pwEk9@fZ26yMe-4MKf60#O70oXFE9w=D%C9^b8tlY3PK<Pd
ze2CysCx!{3GF-^lf+L*p-VRedTPrro3E~97(N2sJLS?Lwaf0JHOgY08877MIt>7fV
z?*u11arJRB4MI0_{NThACw_KfsuR<knC?XEa%jF2nJ<&;+(@6{#7vIGjdX@tPRtfQ
zM{us-kAm|AX~TuTz=;x>DGLQj776*uiN!)vHU}v#b>bIhSsOgy#4;zAJF(q~?;@2~
zaFfhadaV=Zh6PDhI`OM0zX`4qTrJ4dHBS6)@?w_IIwy|0qU!}W2yS#@laS3${3(P6
zTZH@}n5SQGtEq1j(kCT!ZBcNC6Fa3otkNzgb_?GlxL0tWnY!PJ)^~z5JLp8|5|Kkr
zOzN0?*oh<b#?4>ETY|@(_=lY@{Dk01{t7s8O899f|H3)`7VgdyqN~h2rNhHhNzRE#
za#_fE?iE5VI&sO#=S2}FG3+WDy24?Vq-##xFmqk!DwrM2wz=uVvsy9o+h*z=C+?d3
zUm^FLNUWYgn+HxjbfTXNU%2qdiN{VPyAX2Wi4#wqDB{8!E)?k*Kl79LXHGnK;ssa4
zi{yA0T7DK>(k1%RiC3IjU7`%Hoyg%bcuql*I3c-Q$ZaamYlW;uO6PH*)bwCp!F(>{
z7eb|g3k8K2GL^zYu51Z@S0hx^g@6kQE);X|udf>yjfx8&jSo3pm~lU%3R(qiE@(n{
znlF>=f+P+Xs=o}9xFn-n&?D#-^a=U}=~;JyR}Li8M}&*JP};@D#+7h^(UO8BZ@Q2u
zJjqnvVx5Ht1!q=Dq1oaNWpmHS2)htr*SYY43sIMGNmkW`YA&R>(CS7o)rB%5mUSUh
z$lHQxf;8sa3u1W}(uHIQ?p~Zs@g3n61S<+w5@b?k7pe$9l|RC0br)*5FtA~$i3`O)
ziq>>tYSVB77izgM^iDEEZ6S4BcvnbWQ?KVjec^gAOf%+c=t3jOPTp8Z?EwW_oXlwI
zLNk{5>h1RgNwQps34dR(xnK)3^+Y(*%7xZ0<0i4)g!r$VRob}FMWW<wT_Cn|;X@(q
z1v>~*@907&lXrIEOsz1*t{g!Zy18(EK{7)x7d{r=U9g8>Pc!us7y9)pm~Hu~h`j~-
z2!1BmSMYO=^#;RXe;2-V;i8Lw&>I6-x(naAFqysTg6m0WybBXt*kvs<$c4c!R7#9+
zu?%6?xiCx?&Ttn-3He%(sUuwY#^fWpURs1GjuvH%;8-(toRIDlg0D-3Cc5yg3zIn8
z4<^6f7P(V91(zbD8;5r0Dm}%8?_F5x!Y?lTz@gy+bm3<grn!utOIrTO$tiq>;7q|;
zg0ltZ2-0}23v-S~vUAOIfqCb<ut3N{!9{{U2{LuD3uP}DmC0-zdKn+8H7iV9=HihV
z*yzG07mjvLS>eJeA>=Dv_*M9Cf)8qhDXtd2#<cle$XXZH30ZII8`zUmgS6kwX4Z@D
zWVgGpMfe|re+q6D+$Kn~?Jn#vIV<_s{p8&)9CG2X3*>uT*eis5p9}kiA25}JE}oVc
zVbT$oahdeD;8DS2E*y8^gz!^>Ck1Ktmkat8<ND{cshn})%JO6?|Cq{IA?F0o3tn)c
z;g$^AT&6K+g&Xm1JR6;I)rEU5{Kws?ee{|OYv(0jcj1PRn}Sqsxo}(f9l^V%{;v>g
z?bv(M!}ncy;lj1WLGlM|mkT5ek6d^x{E6UGQ-9{dbCc&RSo$TG)$s_|>?`(OX85%W
zIo$ty&Xd#4gPaVW%T#<1bL4R&uN%p3gxtvIM$2D=UN<(zh4Z^nzzyHe$pziU+u4if
zB8A*2EJ_hK6d`X278NWeNPCML7w&~f7*sc`rfzdX6FzZSm`QYK7q<>KoI+fJZb7Dc
z-1zlIki_TaISvuO8@iBy8;L>^1esJ^ND0A`f^WJ}vR;%)NfLcau#_OhppepTT-h09
zbmcE0Zo*+VB5q7RpB!~#?C#`4w}L5doa<X5Rgk2Nkg{&PEhNp<%dx$agEYu+Bh!uV
zz4*b4cigDp#!qf6cB7&jmE7p+#z$^ccB6_LE!fX)RFzSv??wYRs<~0!jT)j<`88Ok
zZ?vZHT7tC&>j=IpSXYokS<h{3r%AVh4c*xAO{l3G&4e^^qp=W*P2Awk3rVp(;quGE
z?{T=tgc!2ihzWn+RGJHEwmkTO8?9KwTfxq5j2fDc1vNPoY|Wl|5^5vZ){S;TsC?)~
zd*K~SrK6BeZd`62rGauF+{KL};f#^vLfzc>*o`mT=r2v^?naLm(a(kV;KVzY+|!Lu
zg!B@m@~IoWh4&Hs%+&k3(I+`fgMQ+Ke(tUeed)#kH%7AB?C?&}uiO~u#vnIt77DQy
z4P23eb)$pbAP!;Ap9~KbBpK$$aFc)S#t7lxn99>r!O>F5@7?&pjWL{Hh118njhj%0
zaYDwsF~N<A!oPLnJ0X)yo5M>APB!@zHxhD&n9(vOI@OK2ZsWpfnj4HVOcydkaHbox
zOntVHIa~-=f;3~6AKjQIdCBLyu|W7j!9}KisA1d^H-2{Gst4CRSn9?voQED%@nD%7
z%iY-K#&&LE3xg}%Sm(xiz6IcP9U1&p#NPy039c5T<r*QsyRp_(I)54+k-zk%{mC2L
zux}1BY;<Fj@Xe;OMaUn5e+q7OWAj?Wc!wK1-FW22V>foWv75DZ<C+_L+}O(*E<L}`
zjs0#M<KlH2&lV22aa71bK`MuY92Pv{#)&D$!-4I`j3)pmOq(-8PP*}zkW;39+KrQA
zjpq*xf4lLIsh<^cj!Wr@k;Ex<K`L|6jY~o<3sS!#q|@yj*M;2W^g9;5A^fIkb4$o=
z!8?LQ^5pziENOgC$bW9!H<brM9=gHDVl;Td-k254>p?ybp7KY>jpuIT>2ywyfiHx=
z6nrH}@wJc~9z-S@&xaY}#5k8=ZV%#xP|xGRxCMqyeh&(G;P*iHpr8kZJaBq&_-?SU
zpiQud2XA;#R5+6qA;knO9%DbG$e@a1^<bgDT(+W#0ztc=!-M3L5vIB%>K60}dIg!}
z^Puo8!zSQCf(JJ)CPxH|3nqC`LP$x$Hw9_K4~d*fVG@S7JSgQs(1X%uYDh@32Vdt&
z%eD!7kaKtndDMdx4^mCbbPvjSP*$RE3zid1^Pqw6fBwsRu;569c{4o7l+<?wD+*Td
zpzG*Rb}5xS;A;``svcDHV5$exJgDwL4G$);!|O&DO$gTXps5GVJjR2&S{~FEQpbaL
zJ*X?Zp<q41`hpDvX}>o|h}cM?jRl*q{<#hDJrA-x_`-w!9>kdBK^IocV?6(C?m>GY
z<SjgC>A?pcwDO>}2klI~jgYn;<Nk|gymcZnd`KHTlFd7aO-BzpnYlW9&_bSPe&j(n
z5BiAyv6=dbknVy#1bceW{djV=w_c)rD%jhDfzyq0Ka*%*K}J6p($8Z&%w+USnKMH?
z7%F6d2VV&pC^$%v6KSvq_ih_AYM2MZMI0^owFlprHX}SZm=dDRNKr<a`dh2CF~Y|R
zjx+V~9=yC5ru{?@dj1~z)`LoyBa;M4zVl$R@F}M9y^tR~n7KDdgH_XlyiJ(y!3-)M
zj9QbifD6ZiSzNrQgR=$a2+kFx_@f8&Og^9U=TVsAA`gD@V7CW*JXq|(5)amR@Vm#j
z@cUWtSN;lk@C)~UiBex7WVzt@JULgI`rau8eiObbTQT*8XA7+LV4Xy_d$8Vv4IUmg
z`oHVU0W;$1bE8Bz36|R%zr}+;Jor<hTTRRN8|S3uHV<xgHQsdW5PhfMF4Ly<jU0Pr
z8XxxHhzI+Gb29Ju;DGRhrgDh$yi=4(M@9MDgMU0Y=D~3fPM9{Qgq#%o%fr7uQHl1a
z&D1j<IKI!I!f=+Urhd+Y^CrLG!6DsvVtmO|E(^KhLEvJL`gJaO?rC0xytwJXEe~>d
zk<*LY9^CQZwFmR3WXzpX`7TGfNX5q<kpIisD1`h!5AK`%fsltDJQ7l=YnTSi^+fVM
z_28M1=YlT;UkcLZm5>9ol3858+o3qG@f*PpD~SxbyvXfEycc;yDda_AA$h&XXWHcV
zqJZ#%rn2{SauJg&Uc6!QqFxj;xy6gK<Bi`DRTQhB%}mw2_@!r*sdg_MUN}Y9y$A?#
z3AzP6f?h9tLYT$xMfpSj`xQ&@BFWT?3n?L3(u+4uJ<*FtQ^L&1@Rk>)Og-pDX_Lpk
zkLQquy=de`V=p3JM7>DyV#)B7bT2Zz;4OTrU>U)(f^U0~CZwDoZOVI5>)!}Trq{Uj
zsOm*EA@6umK?uc)UQ`lZ*;J}{!7EZGRX3G)h1Bq(rm58OqPFllrZTfmlv(OZw4Pvn
z!3Kg2y+~agqCpccntD-VTV$LU&AfQei`DakUwe_|Ma+v&yy)e{`xN<j$BPfWXzoP|
zFItMyT98Q}2x%o4?v}HSskilF>#ZC#U}*0}XD_-)QU@<Onl_!X$$NQe(^dG#f*%QX
z6MWJ=XLljA=^>;i2VzMEqn}FjOTpe=^bzuzU_USV3ZdEOLf*fe;|n4EP2FkBIlzmr
zycj6T5K|xI#bA?f`Y`WM;loU2IO~78BHgmzMtJd!bl^xqDx<s@EqsirjP+vHHp6&4
zZ~DFskxcONgixc~zcp<p3HeTNvfvaiUd%2{o2gz*^WsMz=J_z)iy53DK2-K$Cf$1R
zmlvmq<ASqk<HbBL=6EsJi~hwzbuJ`79Uf#-WLw63FMji4l@|-VSm?zfFTOt;S}I8L
zlaR%NOT75m)KlU!nEH!EmkBNxTp_qp@K?^m0%4l1_TuTXWQIdttnuP^FFv?jeytbV
zyx8u=Ixp6X!3M!Cf*S=l32ycx@8n>%hd)I5Q*f&nmv0$v8Fq-W*NdG(b_wnlWa=KS
zxFcbbeWL6aJYc3C6mr!QI&3OOgdFwan5i81;)KahdNKQyQJ>RZoZ&9v#bYo2_VNcY
zbVp{wKitH;I48<gK_;E|;)3vtrgDk(H~AH=yMbYvF<cYzy5J4|3JAGnTHY2?X;uYJ
zv%6mWD<$4DXW)NA?h8Kf;-RT;&CK_N_4mT%gWHE^UOeXx>_br>UYNUCKA*9@zx3i2
z_a!fKNHn)#PQf@q+T`*X^NJ*1lsu-M*N0VaM5yOCl>$B#6kbTMu&EdE;dB#YcP+*W
z{1meKz=w(!;fkOt`18pyQ<-G*K@%Ht_+S_AFcqf{k=ijPd3^BtaB*I8st-ON{8C(L
zA9^N5b-_1%2neB)Af&ip3Bi&+gpMaOi6PO4BoW^dEF~BeWNLD|3aosx_zww&SqC9e
zL8hko&?DaXR;P^5xJYIw>%-eVq)D`#51FQ3UP!uNhR^tpDBJ!WA1atO6@3`D!nlI1
z;zLy*KK7xz57m6A?nBJSOMTSv8N2cP=@|`tsObZ5T^VZmP}}5ne0bO7b%oRutnb6Q
z=@~R;-iAI98~M;!2ze79nhI|w_?}>v;IXM0G-&Qa3m>NL2)6g3(ad1V*TKTeLM?sx
zz=t=NhFS@dwDzHm@V0{OO#MTS)cFVvezt@=_(1IFLnk4f1-l4R@9M)xChz7mo?KDv
z;lto_;UPX8nHlcs!zVu6SrO{x!xuhGn;rdBqP+#F_wnH~llK+!xnMsZnokMRfLZ$c
z@TKG(AV}pa9|oFykdVQ&FK!qQ^<kI~!=>lH^<k0^U;8j-MTlX958wDOQlg_ccBVd>
z#N=ar_%6P5w*7b?CYbs}9}3S8QV%u>f5$n~Cpg^)^2t6-5kmgG4?hT>YAVxwSW?r-
zGDEV=6lC66LT39g$5iGD8C@$h--iW06!N369}9h0<ima+4*2jBC!r5}eAw}O#uAeA
zkwrH{>)H7}Bz&8()Q4Y$EaQ3?vRrV5;7Y+?1!?@756ioTNmh%pM(}qtb*+$fKBQic
z(1veVHu#LENgI9G<ilnkw)l+KE)3g!_(S-grn1$CZNjTgNX@p{A<>=L27<eN_<dBE
zse66c=R^7D$>WcN*Um|Hz78Jr;SiT97savgVa^{PE^zDcVcBQFqdtti7Cf~rcub<l
zeK;ZHqz``!`AhJW;AuhTI^)C6P9c(iOy#VQbAsnNUek=!$&Z7Ve8#=rEgvrXz$n8N
zAFc|&CU{-&hM9WPXIv-H?6zdQBS;T-h5Rdc&xij^{k{(sKZ?@ep%0IIc<jRyA9DLK
zw0DS4WuI~bxfRUeH}IM8=iF?CycB#T$kf+d<}ITnImI|mkkMR1K6{xQ??<bp74is@
z<n<$;$@BYBz~lw}c-bOKgCc&s;l~ix#E+tW6!W95ANBmO_@Vd_^&`a()sNb_O1u1U
z`(gE?&v!wapeD#D|F4%_xWiPOLeB0DdHnGDak_t~lpj7nrXI;CAxPr)LpOQAj|Abx
zO~to3nKmUQ`leu_V3Ocler%r;ra@4gmlk9x$wEScVZn$Wb6-T6l<LR3i5c(sv0gWx
z`<3ydtp9&^xNrNB=0`b+miHq=NV=K&M<L^`HdCUL-i)i@M@2s>v6o7QYY0{rtRhIU
zsvp%%Ufpk8DN$soDPk>lrjR<O&AWc%u7L*iN&M*IM^`@@`q7AFWH8s{aAQB3Na-E@
zXzDj!#x?h&g^*@`yeEWWmLD;bzwbwSsdS1AEk$fA_yH$?kk+PU8$S=Jk7ir8^W#I&
z+ncE!{HUylnaUpMBz5TQhhJ_1KJw$iFQHHUXn!W7o8P!KWBAyQ?k4ZyM^BS~BBU3;
zP7g+C)|=DAkI($re<S#%U|+${1^WqpAxMM%ejZtvMl!%uzVc(B$p;A;>_@*XLD~%S
zW4Ip^{Fvy+*M5xfW9!Svh)<$#j|&%S8~uhIdmwqF;3z>xNBc2G_*lVlras<}xV#Y>
zeCx*~zwyX)i65^A2EX&;(uClT!YBJN#gFfW{~$P1aH`-mKc)*|t{EJ}TOksLSt8E%
zV~&|Rm+QBokvfkPK%QF97qUQbp&yG({U;%d{n&dknU+6G#g_W<i;!i0tl}^UUoN;p
zaHZg{g1>P|W*E=G7}kig-jCmfP+7~~HhI^P@f%FO(T`0g-|WZZO-A-V*}Z=B*3n1D
zHZDo-13DZ!cKET=kNcb<e(dsNw;zA`amtT9tTvtaam0^(emrR#J>bXZS>gSD<X@Cr
zB5wiWL3V{NtyR0|AwTM@tVnXyk7HtX!jI!Z2InadSd`4{C5ILa&Zuybvo0$xV^Q*H
zKhF4Z*^euJ{Ow1ncF}WwoR@<B5j@NJ-!7V+_ktf6#T(56|Aa0HZ?-6z^||WDH9zk7
zaaY9ae%$oqmLE5yAR4f^+fwK0$wr+S+GWN4>&HE@|4)*rFwi&~A94v$*HJ*nV^)Sc
zuph7dc*>3UafIQSAHg0e<<CW)`_bWHWZvJ=7k(6Z7)eLkYd>=6$fYB<j>gTSId!c1
zAs9!TT9Cp2dA?(hBFl1yXc?~~kB+=LrWA~frmLR|<`dpB7N$~AM<E@G4pm2C9Yu5$
z)lp2x8#>ONjkumCFKr%eHYKjilsJ3y=+Z|Ki|99-#%*sNwd%0xm^CYo|E>4C?kTKl
z>XbN52a){#gGkTjQKt@<jv6{@>Tv7u=qRJ3tPZaZpN`@>O6c(G&~+r}=+ZJ;=5BI8
zH|`Gl-VBz%8N9hKqhXQKD^5g8>UdK}X&uQr5_Kd!iSQk6DH7pt3G!_+^`P*JEuwfk
zEu<T-dLx1)VIjM2$47Ofu%2ScmCIZsKg&maTSuCXiaILkD5s<4)Qk+>*pbTX;I|*N
zOsBpz#8)j8GbQOA9TkM^-dTv^kcq*aABP*Zh*s7?tfHf;kZOX}b>l~tdiZsrS~_a$
zXrrU8jygKt)lpwZ108jBu<iA9u=$OjM)+cvzwa|921y#~h(8-_p`($GT`i)Gbu`h@
zlq2#qm05@k%_RDsjw~TmVnW{6(cDyyuFUvtUq(wEALw9(TM4eLlhRtpHEBXS9UtoW
zNJlpv?R9j}v0-A6-TU8@NJkEn4ibh=Iy&okG@=kW4TxPOY55NsAM02+KFC^i*Rdpb
zX%1o!9X+LK+Ur7}2<atAn@^<zB%e{yv6Wkgj?Z=U(=l7e935Zi=&xgfj)^*I-3@-J
zV}y=xbPUk(m5zZr2I=^klS&N_))Cwi9HwJ9eF|rEsE|1qBL9que*SClohy-{KUH`y
zZ^2;uvLkhj(s8Ilc&v_TPotyBGs9yz|2tH$6e&pl&Z)SkH^Sq%D4s>fvr1VNOFfHz
zt78)Fbxdb7tp&g1g3|H5j-|!IlR3~!gX=$wd)_zvgN~0cMWQ9cQ|a(wbV4XZoS|c;
zL}!%?YonqMFGQ|B2+ra<S{K&7DmYiikMyJC7ahyDWX$8jX&7FtW4;cWEf8EN$mk*+
zKXDe73o|dHOLY9q<vb_joddzoR|cspqZ1wLbY9_Lg^rcnA9SqN`G4u7zv?*uFxq8I
z^kuua-*m7;*ez>x{Lbb1IQslqwBf}_?@#lsWpnz*k@J1@23BTkWHTpiqv%E*_n$;J
z>4<w6Ol%ab-l^=(1sPj({GsDdc21{CJuX(t^(so-&dp!PZ5?-X?Bu-VBxKP#cI()q
z<EV~fI`-<=r{joj{O2q_f?jer`R1$S{mghZctG$V$Avq<fFQ$RQRZI_zA-oWQQOdQ
z9Vc|0)^SG1Ngcg5NBGV2UtCcC73lpsnf#QF-udE4imym+yDj)PSKPKB!#_gK3eL<O
zy1;Em$8{Yy*v!Up^n6LjWgS<<XZebuYdY@6qE{ulI#1YNF*M|MZfn!Hn>ucBCmESi
zW@N_cQ6W~~`Rd?Z9slZhts_SO_qZr@Jkjx#ou=afoBUPqG1t!7@Ix*iF3iLb`I#>H
zhjj`+?~=b*=Sqj?2k%r*d#2+Bx6Q5L=j^@eX|!3FyWmSUwpjEnYxtFp%&B3LoB_lI
zP#}PU0ptoGcK~?<7*M!0ONke<s7?Mn0odM&)F@cdT0Jda0Qm!0k`>4QWS5PF0=RZ5
zSU7+pLP~WGzYzfIF#L3wdbbC;=*kj+5<vL`q$fZPz#71^0G88j09pXe0(dU~{xJ)C
z0LcM_0&oQ23?L9dLIAD++yQt4@CA%Fu#?*4-`_Os3E)=KaO8Q&A3*yOk+<dt`Jv80
zJ)%o=RNMT;11J#y^<V%c1Grf@#867en}UggNwg92cm6!tHq25wfK9W*6W4}%AruZE
z5<q4E?*tGHAcd_6pz_d^)Bwr^(4uJQ?EuOOAs=5fQ~`zgg>YvjnifF00RPr~bg3^w
zOqX040Sq3J!tA`4sSrTL0O|!$KY&V14WLc{?*`CsXi60h%H8nZwV|pKrBY2u^#E!J
zsVP`Xuy(dGBaUX<hNb9vN?$4(s!PvpjrtsZKWx1kX%Ile02&2wa(Bfh0W=L@Y*M&!
z0ON0kNZ6CjhNskg5#oQb$qFDAz>olj2Jn6W%>(EVKu0!^ZJ(XdDuBe%DJ_M6Ah_$B
zLeyIa&?bPk0kjL?Lk>Xzyoz|^^L*Jz!YhjGXeUnTN0D9ud>SyWJvs-_MMzgcDjx~y
z7Qn|sx|@0rAw2{5#8g-ly6VkY%K6sa;C;mTX94sTLgjNI{RF=VpudnW1s|d?4Vdw(
z00xQ&@<E($Rl<V<n19Yl8WzCt044_TZ2(pG1iud8#lr}%rbbAV$~Qtr1~AH0Mhh9k
z9u_jr)W-{%5CE^8m~m17-vux)fN{;ElLP3~BjwEd(b)k^5&pg44}wz#X)sO5^Z;g<
z%FF;}nf%YMQt4q%0K~b1KML+z9OU!2`CLBdBMSr<2CzuTPlD7Jb43gPS#YV~FJ|h_
zyU8m8SQ)^-?6&}Z4dAx`b_K9IfK>sk4q!t78v|Gq!0!QYVy|a^>XEeptP5cB!U~*_
zjQ-QS;+Z;WOeNnGz~%t{*c;jwF#bQ_77pltDSvPY6bpIZi2TWESv156xs|&_ql)7i
zRphGQE^B{B06T@GJx?F?W`#Wg><!@W0R9PJUjX|9I3B=>01gCjFn~iGQ>g&6H&CK1
zcalHMMS3KFqf*4|V$ov(uzKITAL4R58NgowoMxvPrQ~NWhEr19ra*ow<%g&ADH@`O
zvjLprrok;Jfb#)d2;fQpSJ@{;Ll-$)mW3||a7m&y?k68DRfz@VtQp}dyB5Ip0B*?M
zHMd=U?l9MCM9$5K8`3WSZSE%nLbSO<=b{Xp5qDQM7IxZy0o)JZjRX`;z=HrDvQ`O*
zOTZ&GHaYw(fad``4&X_EXYPbrObs<g=qY<OBZJ+`ZhsNLs{mfh-uN<rA3Nmdo|z*7
zt7gO%FC6MPC|qk{_{c9I8s|zt{sa_AK<)%wUmJ=~K%NBTO+elB5JNr@%hZb4>V}xg
zyaf~RyiKTZ0tzKyHzNFOm?FEhNCFNIHTI%n39uyK%>*PSK;h<}09OLs3An!{WKF=k
z!%{TyX_HdulM4T&kzJA;f`4xhITJu+k|zP)1SAmOi1-qW3B&C)kN|%I{vTa$0cFL}
zt%1%NbOyJX54R(Iq`IrRdvF^xK@waBCqR(k?(QCfyF+jd!QCae27-s+798I0J^%UN
zz3;BKR;_P+wQJX|s$ILP`*fe~u2jM_-idr}`r4z+ve}WR`#vSjxW`RzsD{stZlfga
z%;fVmYsv)N2)a?gje>53+z@V<Zdh*UZWwMzH<TN*e~2PG^l^JKo3&LGP5tIBQM9T4
zHq5r&^nw=|=f;<Jie^VYuP9;*xt*}5RG3QBOPcp0+$-wX)8<jd-6-M45I2UpQPPc4
zZuD}adxVU4qqG~H-RMHYaigpo32xMPqnsP%Y53%MH!8UCjT_&(QPGXb6H=6IP%8N_
z2YdC1ujEE$s@0%WVwNOyKjM2gs=85^<<;CcI3dMfE~_TBGNM#<H)@3SNlw>cYPnIH
zC3W2NP=kHuQ!zraR?iKpwP}~xz>S7(G<Tzg8;#s(>_$^Jnz@~eT}`+@)acir;$v=G
zJ>NzlMH<TfK%?ssPe$&X7cJc&{E6{L##W52-Dtz4EhFg!`Wo%Xelm-AdpCZKwmP`c
zkx3^;l2B1sno2i%QozjCZ#PtQGDg_l?VOnPV5Dq@O$K3aH~P5I*NuK|9KBI+Fgd)N
z=<mh=HwH2%VWNb{Al9L5A|K|)a5pA+Fwuh%Zj5x}ksFWQ80E%jH#XDSabt`dW8GNf
z#$q?du|sOSiJ0fcc&g~eM3#`3rZJi1#?N8NWH)|cK80~=SpMOubJKjf8#COP$-+Lb
z9LX%^v)!1(WNuhL`=^NcZs$R~1uR*}c>f#c0^<@lmU4Cz<1)szjLY3v!GzR)WwMfS
zl^d&>tod*0iCEHE=f?W5WP=+UnY)$K%Ferdm*0)8G$V7xB{zN#YyRQJHs;&i*x|-b
zH+FIM1mkWu4p3w=-@~}qjeWGC<(2z6OUCd16nQAjkGXL;%#YAag}L{Q(}ClhopmXa
z_(?ZTxpA5$%}>Ps$ig#W{j+YIV}3p?x!}gdFn<*1y6nakH?FeeZ^mnGT&MjftaFRW
z4L5FvC4W&szL1Z8iK5nTQ!umqF5^AM`(e!oZaUIAmx~{=<R8ZKR~=72apNg%J|0L9
zp1JXy!rOzC9=u?kSG4WB@zRZZMdL`BzDY~?hKnLS&Px2(jklbA=f-<CJ~016&Gm8q
z*!+>RpWOJ&ge2B4PNQEr8^IP_jB8pt@+8cYdXS7saz>K7_sA#@qCLpzK`s`i@*uqj
z8JMSLOyfaXCg~Wd)|)o2jLfq#W@5}7F3sXWOqe@wZ42{a$z9o)XAetqcu=Ul)4kjt
z<Y8fwHm<x(G{$_4`5B$wGVyreW#S9V>+&k|b2h*j^dJ;26&~neKI*DVd0=|b$%D=w
zSRU9O)bgOV2aU^^aUK-+po9kn!ukcNhhbjWgCfj}G8PNVpZ9i^^q`an)mRemL1_;v
zhD*yZDaTlr@mL#Y$mN+=@ZcLJ-!hWCU3XU{=9L+%gyr9P@O_w9Wm33=s?MZFSYDIK
zp*|6H!jdK))b*eqXA?YV$fQ1FgRsu9Y0fHZL>>rBqV7jD^`MytKd_`ZW2Pp~a%kZ}
zOV0l2K`Rehd$6>(GaO27Sl-@)woHCvBzZdzwhwZ`n^Ff4I)>%9UPW|a-q(YE9&}|s
zZ=mSrLHDpu4<<c5=*6TrW1n#8_Li>x9t_~@C=UjDaO0I2#@Rt(oxvUqVLmi0NjBG6
zu*2ynz><++`FG=-qvvSOj$s_@!MJegc;de~qnPBu&mPqAqOKQ{J^00g&mMg7V2TG*
zJ=pKT0j@I5gZUmT@L;+JeTO-F+6<P@WSr%}?6BoIOy)AqV?5Wwwa|kVHRP`ztfW{<
zD;IgNIIO>fe9nAXShAdy!+e|JOvfq@)_JhrgVkaA8YXKQ<C~=1z+|fjzk9GTth333
z&0)TUNSM<evW+IugMDGi4kmj%*cq1W@?dwE)67yI_Ihx*ik$kpGw;8aaUJyF5KWK=
zH%ZQ#Cp|bt!FkCz;=$2y-D4gc5AzdDTnE)@CRZ8%@ZgLGXFWLQ!3CC_XLLs0K^02=
zpJ=?u!b=`pW^yI0bGEP(?bkSao$*h`!Tnu-d2oyTyeRgu2e(=HH{%^fs&&_cd(7{9
z@W2B)Sd)+v9n&9%b^c-Uh<4O?rzcN5c*>GzjIS7<GrsWPr3Zf~=W&|_y;8pR;Ef0W
zauG@1GFkjn<U1zs89#XNk;$Nbu1`!VRZ1Y`uO38r5%41Dh0E(4KC*Zb<3%KM$|mt5
zsTaw-NbW@nFVeF-C1YyFD8^{URE$*Xw?WR5Ps7=?UZe}l$5wHMmVvVw88b0vW=!!U
z#hn2v)(f{69<TG(&a7T!<07h+%Zuz`p2Lfr%wO+Lc|M2C%{-46d70$%B7ayjUs5%!
z*nejBc|@EyEcY?dyzqx5UuUb37s87QUVP)FN5x@y5%0yJqc*iJS*;kO^1}4O^1=?+
zEyN_wivmmvhUGQ*AXS*NMZ72)md`rpbg8%(C0J6D@!B$1DKCaqbEdU4OUi`x%Q7kF
zMftFVqK?$Q<!m*^ij0-KsO&`*=HGcyl?iEn&!k4@l)bY4#~alXC0^8IQj4)R<FnUJ
zeAe?K!HZp9?DnF*7Y)3a=EZa`8hX*liymI|^rA8AxA4-HH~tmiMN=lt7=K_SQ_ac9
z0M)dE)AWyCbY^+0aA|8V+IZ2{i=SB1AuMm_Mf)(n^(uzycJ!iCSn{_oWf$gM!;)@H
zx-&jM=Cswzi$Put_M$fn`-C<7GU><IpK$==Krdudr{WOK{>(U(CdG^4UX1W!EK5jX
zq!**Zd{m;EX^vq+r<$ZdX`C11!#Wd~Ok|wo#b;H76efG=r;XFxFD#$p#niAq&F>5^
zW_q#2i=|%73d`qsF`HKCb5WsVF~YelpT{_#aRK8(MzXw!$zm_w^Xc)juzWR><zB2{
z@@rVWlF2GBQpGqOqqN40wO*|AVm%ja@?tZS4U8MT=+iUiR61vkZ1G|n3!REyY-Rp?
zSW+y9V{p3{J6N(aEWgz@<sL8gdhyDO*Iw-NV!szRz4*(E16~|twabi$yf_}Nb=Zp|
z%#Si23(Lu$C%ic6#VMBj;l&v*PBYJ3{y!r+>&3;e{y8tsGrtg)V5I9(m}gtyEQBjw
zTn$UEF}cq8C*ut-9?f<BhfL{~7Y|r?n~@}UytvE!9^-w+u6)Y<H}i*H{6iL)KV^K(
zNOhlhF=JP1BG1B-=U%*E{xU4tZMoif@h@j1eHbxUzGeQN!ga2EM>|zMN#uhUA6fp%
zi%ff*9p*D<zc7AfjPN;2*u_ZXLTOhLAChu58DsfZX7X@p3MMHTqkM>Fk}6zEhp@Ch
zr1K%Yh76ixHoXs}eJJBY1|Kr|kcl;O`;do8W*@Tn@OM8e#)nuY^rq%)K4kYHMSm-+
z50e(fRC+IRFv-aZ$<9ZT<n_78Tt1Y~ZgtIShRRuaeK37EoX5=PLw+CJJ~|x7`+W%b
z;9>6d!RLcYNPW-~uldlVoYk^Y0_g;O_+gxoKFqC@5b{Czp!;wrXd5gi^5%N%kV*+e
zC@C(=`zW>LgY83{4+VTE;X_Fu3i?opvU#ndKD6Cy6s8XU7FmQPL?}@arD8t38E6-0
zq--fxplrMkiNZw9vObjaVV)23X^cKp@L{kILwxwghi|F#J~Z{Aq7RjPsO!V0vSwu;
zs`yZot$oLMeuG`zM}H_nRUfLcgqpkYF~z>sf{G~BU}0i&wV2oTp$?N83lu4j`$yLE
zA;E|GJ~Z%wvW<Kge^63$4XMK|9Maea;-B-FByUC@^P#&BJ$z{HLkl0;kSoYbRqd8O
z#ALR9WZvgoWGf$9`#^+*iTINb?R@C$Ll+;~`_RFMPF#iRcJzS~X%Z()tg@(ZTvrx$
zW1FOqXs4$Sy?hwRMZFpO`Ou$99}0j^Df+UtL{o`X25?=nK*B-Hi4652Z-hCH#_Pi{
zAD&ujI4v<BE-Vrw8Atmt$_MXOMMe7t2^^ARd>G3T(z(1?{q{~w@L?v+)BrV+g29J<
zTg1<dQz-J^iOD|v!r7Mn?3YXAROZtdr!$iN407pWNhE1{Ig3rr_F)baGCP+RX?i&>
zom}9<LLbifaMp)KJ}jo{KJ52li4RMC*yh7_AC~#B+=sQ)`GNMi=J6|NW*5e+_Tg6_
z$}Wsq^H{F*VU-U=DDAspt?}W@K}nkN3uD&#u%5FUeAq&r_hF+Cn|#>p!@bcK=@XJN
zVT$N_TPZdc#{BLB)!kPq;aJ|{B;3L6?q;M8?DSz5^SnnRDNAV&XZMDM2Yfi_!wH^+
zLySim4>KNNT;okcb99V3k>fs`+!IaYWLR>_htpyH2b1H4%bfG!ybrH@cuj5jaM6c<
ze0b!;B_A&PAT#K9eYoPoRUdBp@RtwQe7H_ad$_v6_;OeDpFR+h<W8{2(_PVow`hm)
z;SMWMDHZ)!hX~oc=fiy_#2?Tm#{3~|eeZ=+Iz|qDCmz#M9W9^x@ProoJMon98KY;n
zO_CR^Ksqn!O|6?FiM;V43F1G|0`%cuAKv;fVYKy*@gw7VA3iWy@|#UXiTsNXUuk#M
zpx%pLf<+=U_(YMU8eAG8nK#)TokRl_k=z|Dl8iZJlWX{^QUZ~b8lp5rYe=QR-fN^~
zh16U(jRvYhYS(JVktUU<({N{~wL7<!Q9~xG<wq(%GHb}9VWfsp8e%lWYKYfRS_3p>
z)nI6l8nS6vw#fEq@M_4;Jcovy8ggl9U(?RVlH3~dX!ukqA+Lsll@mxmSLFoC63NdB
zZdRtO7Krm{2x+KTTWT68OWyz>q!eHhWUQIFv>-p6k~%dsTa>Jrk~k%$p)ku$MvDfn
zA&zwlv7`WVs#1^%RUtxHgtJ986w^>#LkSj^VkCu<Oi0aXi#heDjE4Fe8fYl1p`3>D
z8Y*b0p`oURZ!~<Xp^Ap@G>lnfS7fZrSV=?2MRvxbr3k5r()TQ{rlBemDk5R^a5h(=
zxLO)&YpBPLDpWBgd8rQbx@?N<kc3h~SfQbYMjAS6=)#i58h+H!N<$M3O*J%QVRH>F
z*ylg65t^x%;VGcGh)-XpdFRrtHMAii%iA)N+D{s&3K43t9g{kh6FM;IsG$=Z?^Zcs
zeC33%LUq;9O+#M|{WNsv(e>2OOG6KCl!i&2r_@_RA1?i`oJfBS12hcLFjT`p4TD%=
zum*BtVoG#WqF0A$7{Ll;b2v?9p*SMsYQoWk8cu0AtzoQ&aT?ZYSf^pUh6x%LYFMOU
zqJ~KtW@(tM;b#q#HJpeoGo99phAA4RX%Ks&NkTZ4izbv;<4c-B7S13$<rS6A43jxD
z>Qx4%`5KBm6mvDq3ri?V@&y{c-xE#z*C>6lhF@tlHB!WvXjn?wD4o(W4a=FYpsot1
z^nE&WrG{0kyjsH=mXna`k^+(S8a8OyqhT)>ZPf5PTiB#wGX=mzv4yi+>3mPa?FuF(
z>I0b~LiV?5*v<+&7)i2|i*{)s<GaIZ``FY`4aYR>XMTY3poT*l4l_T(IJS|B-4jji
zQuinwXW>b5AQS9~rY1;}@DB}VG(6GpRKxS};;e>0HQdl}PQ!T(7idw>6C}T+;UX&#
zFM2ZevW6=fuCnA>Scf#PGgq$!@td?6YIvaGZw<FJWL~E3Xt+ybVLq&FBuOaU({Mj5
z8J<ojIpISMgpXKGI{#=OIi<%;NJ9J>wXPwVAEnn@FEqT=@I}K{4X-r3*6=~YM-6W@
z{Hx)uhIbkkluAm$knBQaVuVD+Cw))LZNJ^Ak)pOf(T*LTl=x>_N{v*JJ<+5|rIaH4
zaQPAG$Jg^tU79#5P2xvVzY}9rD^Z@Ddy;}NB_nk#%1@{IX^5ouJE!_Fe#H8bhIv{l
zVv^qPJdu&vj|_ek8YMC^63N8m$hUD>{5V@!eH>i6z+eGCviecLkAi+=^CP<-h948p
z%K;-qLEFsXM@~O-`7vao@cTg%k=u_ve&l7I-w(GR`Iu*KB+IO`Jj^vlQug{$?HlFe
z>Xan~vJ>zl=m+tTA3AFi7i@<JDU)XKy&;MCarCA^iM}F3XffJ;#D(Q=O|y_6h5cyc
zM`Q9H4cw3NepFy1#r!xiR}}X<>xFi(5`L6qUdoTMex&qElE;%{Sy;yJEDe$*%FBfn
z-n|sx`0>3TRsA6TtsfPcRPv)TlPZif{O7yWcg(3*)Lb<`>iALDkLrHZ@S`Rd)$*gZ
zALLsyMM!~1%3C+Z)bk_3Pk$;yLq85xN=ZU0t<P0x;3P@ZC*Fi-r!_maDS7g}(aet@
z{AkWTY021v<y1uaKeD7%*ke>gE3S<nZT<Mkk9M4G&qzxw=b}g|CG6zKfqBL{Ki2!v
z*^e%MboHZ~A7lI&>qmD#diXKWk3oL)^rII!@Sh~Jd!^{j;n&BHzJ7E%An2`?^oUSD
zimTIhe?Nw&b)Fa+;Kz~v)|$J5a8VxDV3PYWf+B>1aFM+$sT|5ihWRm<FJV!TSGpH5
zl7*=v3y<<+G@Z{x7N$g(xyJc1o{OgWF@Zee$IpID_B#&-(j!__cak5iySn;&ouA>q
z_%Vf*{XN9!(&kj==O;L~_NFtR;m1rrX8AFj#+BM!;>R48&t=@m7hdKupU=2}aUtU(
z#>I?eFvS%?7M8M|WqvHDPXPGwD`(d*u4G*0$CtAPX|Cq%#07FK6M77mgk)y}8{Fo{
z#<1m0G&<&6!jj*ZY-Rl2k2V#Y3&PvOr8}7HWZcEL+mAir(!GAn3p&m@z><rM2g9X@
z{5Z_~2*nSRV~l?=9;fxi<Rl{*IpxP`=6zcH=PJz^&YopF=f`;_7Z^!@b>)OhVSd?<
zE6lI@am|nGe*EdjOFv%ual?<Be*ELdBR~G~<CY%}So3zc?p;6bFke-~dCdi-dz`&b
z+d^gMMiQmJ{dkxtyysk-dd&P8;}b>_K4sFqkn1^<7mVpYM8w<4Ui<NeHtm43>;CJ<
zTQ2&__>S=-Z6HiOFgDNO+=u$)$7fRR;<WgM<wSaXDMlC(fQzjW@A51nNdQSXn=F77
zOp-Gm2sm|9GLK@UZ1&Ms>HyLNFd*dghf>-AP6cr~h;#v@4<G|;mSfDwm??nFOtJ)!
zp9$592_Tj^eWQ!ASs8y{rDqF(Fna(wm=MnyKrZIF8S^maWz5GIT}6@_8F2^TVLM(%
zUx3c}9pnB03NdMPwN!vfkTDd12tW_O2$xy`Naj>aF)_nMHj}sj3IsqxGF32KM9P#c
z%-JH0MFS`nK=A-dgmvNrD9N0ZOEDoMrJ0lopzQy)Njl{Ns1U$6tnh6B^@C^-M8yCq
z1yDJFD)gC;pfj}Z0{A|FxdF@zplSfs0_YP!-vFuyP$Pgg0kjQ(cD$O5Kd`l0jI{%(
z6F}Vn>T#BI8U&EQoXpl|ayo~rA&oSE#sM@5plJZj0w5tN|5m|?jsM9h+nj5)2%sgA
z3a%eH+lrA&TQi|5w|9!4=o=*qjGioM$JjoA4gquwpc7|Fr)z+o^8QbZbzxHEZbUaG
z-2><m0A)$-`|JO?%hrpFdNVGHboC3Me*iN%OC25%z!-9JMkh`NvT#rUg98{6z|gSH
zhyaE$C!OI;sJA1Tj0#}%{~kN(jOC(n0gMmO-)k|Ev(&`o046afou8TfdNRc?0Za*C
zY5>y$m>$5407yv62}_*Y%Kwv-XJ&D&*^F}-X+-k_SP;Ou0L}-nFn~n?Y!6@u&+Os=
z)&=lOYlBQJVg04#;Q*Egu!6JXfmPHZbJAJKghsbIu{40S|9f=nS-ydBV*q6$T$=*e
z%-Jop=$QN#z*a7zcB_YHVH+2b{!Z@C5yo9C+|9U$tLzP6A7}RmaEQr)01o~iYlpdr
ztQ}=?jPW?Doe1D0XHNxihRNvw{`fx@&T<i1xDdd_0A2*}GJs3mD+-?50bFK<D~wmU
z`n3SAbN0^w{$g??fSdov@+~eR%XgTNSMLUJFM#_2JYWgg|0jUI!=(?IP|!XK;Bf#?
z0(ct0vjCp|?@0ciQBC3TDgd(cf$P3zd=tRGv{aX*c+1&$jMVyjCKN~?nS2W1a{ylg
z_)5Ea5VTApc*h`XNrG@Or&^IrsL`ZMk_C}G_`g<GN|r~3^`pc3se?!pL|WSRgD``z
zf=JIrIT<qqo%jA_WS)sJa}ZgAh+&?UOJkW+AHXDALsvE?*@MUt1ZByBUdP#ID0*`R
zk(*2N1d%t0d_m+7LMKTDmz(9J;|s#WoT_-4P=sqi(03mLK?H*c1tI8A_5ZVj8C*q%
zEvT>sJBYX-;)5t1M1i2Qoze;|5k$eDGc}Y7F)7SgB#5F+iZK>voL;FgsZp;=vdvPA
zw4%$9>oV%!2miBj%d)&&5aolY5X3i}C51{se9N3HRAfT4T$xFgAifL!ubqT+s&Y}a
zAgTvZBZ!)8zi!w<tsrU#Q77mu>i@3Xdg0OpCR9Xr8V1onhyg(~VqxPTngr1_h-N`_
z38HHdKd`(l<Fe~U^B`74>n%9jlJQ5zRzb98LN?pbSZv2Qom&4Cbly+Wj*Hqec3|un
zM5nNR=O8Zr?m}HxH<ok{%NIXLLPmO!x7QjyS=fuQH)Ee5`i3?8af?x-A_fLAD2SCo
ztO{aq5JQ3(5yZ$Ke%IyJ%VKB{!-CNMEj4g)@!{;TRJG;N$_b-_7#+miAf2pY>Gir}
zs3?djL5vN8o){VzbY99go^b*rWhXM36vWSA$z)n_x16_xU4oh#M6b-U&jw>!5R|1f
zJ%|}$J~N0}VLm&EIbrVYBjyM3Q>wxXf>=oX@8>KE`k}Fi1G4UXYjMzdt;7<>rHsoM
zmork)3W^ivTe4V`T}>5(*cim7Al8x-Lgsq**rS_bT@Xv?+IZ!J4MFGq$(yIR91LPh
z5c`8TKx(YHjd3g0rEtyVoa^5D?EG+`v^|I&T)H!eF%QHp#@&pR-4n##FyBYZIe#e<
z9%TKKjAY>uP1XYaFlUc29%Vch#BnAk82z`LqkpA8BSx%^{UeAoEUXp6SteORhza3b
z5a)xqK!FrQiV#wUa4Cq(LHrZMqadyXag~+t1#vBiugMGFqBR@D^&tLa`HdiM2Ju%A
zca(FaHtVJ&9ZEzJCB*M=#k-6oyw4RMF#gR*6(2H5QYzJBp0ZCtd=BDC5Kn`67R2))
z-URV4>%0i!6)lY*UUHV~(_GU=N9af@xZVcwE{G37d<^0}cZ~M5L<QPs{;N#FFNuwY
zkd#l?zj8K$xhsT7CJXjBrwvp+(L%Bil82n*MWUUqpCxr5Dun2evstBLOwCBgAd;kE
zo;HMZY%M(_8O*>WBV(ozGKb|<D>meOh?jI~hLAOcY#{_g2!)V6gd8E{=c1g9G#qLo
z7x4<N+#%!%Imf2FA!p;w$D9Zyvgu}hQuc)44Z#<J#vKbV`WX|?vIt3EgrJ8|g=-lh
z$Ph||P%;EXnjsV><J^iBLIJL8hY%NTk$O(uC>TN^)*)Xd9<_^dmikkS9Y~~jSb?gP
z;<n0#P(Fls<|Hf~LK)^|$tU|#wD0Ep#ezmrA%t&3sK`x!!<gvpO3W*VoIO8rAf!xH
zzGEZbGgb|u8k6dbH5j{PbXF)C*<9CEJA^tR)D59t2yH@W8$v<|^+TAaM{XGD%zJ|n
zT{F>%(Cjx1fv^!{;}Dv#wWgdUc{3(IgwQ-JX%Rw8=0AodtwLxW=1T`T`vV<cehQ&o
z2<=1Y5JHa-dWO)EEq5W!5ITj>Ipi!x`ejE4De@!@vm3QC*wvjqK!;#zolNx#p?3)V
z!X56z4(}Us4%1YfP9dmz|B&;0jU<V`69<Mch})v-gF_e+!qAZOt8-WgBe^0qH=ON^
z2u~k1H;Su_W+Weu3t@Z+C*pB39uq>C7{c8`xK{|1Lijm^RVG%Om>j|{A&fCF*1(hy
zriPG9M{XU{LYPj@7f2A85yH$6zR+Mpm=(fovKhk35axt1H-wELY@&GyVSWfpLs%BV
zf)HM&b}bBHQ3%gBt0Ywt7Ke~inEC6;B_SO5%VT|9DWA$bwOq?XSV27rVKqfd2s4ta
zO}C7>xm2_Fa%BjF!&AsLA*>ByeFz(92+Kt5X%~GuWL*e%IH*!*mHi`Aj`Ya}FC#XG
zuqA}OA?za$gs?S)ogwTZzlE?ZgzfB>WFA?ezN`EUan<J>;&-qx<8^1ocZYELzM_vS
z5#K}2HI^qE%l)jdWw$&Y!hsMDa`q6BM-h4JIu;IxaD;_N8A)=C+_KUsDt<|X))}YB
zYzPlS_$P!vLO2t`Um@J0{h#$?_nS9q{}17O2p2-Q$igOzU6+{9n^mqcxg5e3CS>+1
z6MsXeiR;Y&WW2#RF}rL2{xVZh<~F$~g!>^ppn0d=W`bBS+`dPX*wBedF<32p7SVF1
z__mVlzSI6YgliW>&!(<NAv~t(3*i-8dlJIa5S~#0Ul#A~$Xfr%Va?>^wemUbmc`@?
zn)KYoh`bKrO$Z-C_!z>!6v;cp+YsJ`&?>v!yf*edo4Pha6iVv)IL6sMtRwPM2%l+1
zZ<SNes7ntcqZi0>p)?T!E&(Z^1R@2J2;>sTEs#_onLt{BbOHra%H#qm1)_wrKc^7*
zJ*D$Mx7DYNXn}@XRce7$f{s(k=<Rm&CY(Llilh-ZJ46Pu*Gn&uK_FJphmDa@Ad|qy
z^(sanvp^PsuPO93IbECY74v;8R3g2#{e((gTNRk+$|{hJy75@%6v!^{^lu}FK);gK
z`Bdf$sjknC`@5uUH(LI2H7XCiC`cecKNke@3FH@aFB_VGTfif5afh1z((rP(tCdJf
z&p`wp)uW!@xF+cn?`<j<AMi;|94fZVaD@bffG)7JP>OOH%~Bie#+s~LU&iKD2Fc&Z
za;KCjU<s5Ls32eq#0eA?C?-&VTqID4TWR${ev?f$Ly=<l<?3g$us{)knuQ`yMah#H
zRB?e40`UT+NjZaAQlON;cekC_yuU0MIVNARnA1ti2ozr>%L<ee_;apIIv{obC+d8W
zc)A?D{G|Lw;9II9@V!7qfl30Ex!unl)i=e=Zlgu}in30Gsv=OQW~n7TT~!6D5f{!k
zo2m=cpw0-;L*mUcnsbi3F6DAUdh~u#OQ1H(i4RFt@83*C>I&zTeRcA?>I*aw*d?%=
z=31bUzyyJb0*wWl2=o%@Ezne;nZQp1?F4=hXfE)hKr4YaH|2f5Y$4E6pvA}kT$71@
z8`0sSY)$?bXe%)DywiuaSxnj`F8!sn7ZL3RItX+TpkIMSqGU&b&g8c<suPX6fNJ%y
zRPTCn%NpbH53X(k-359G^rZfGckEE2|HW<QzsNrL+i9_nKwp6&0z)Z;1k#*P0|f>N
z^cNT)FnP1szt^?*y~tT7<zR~Nda_w5Gh0XbThF+2A7h4*PXtB_j1d??ZeOiN3XBq{
zzD)cwE1B=8%;s^;oGG$JMvtZOel*7kx}%DHuLS*@ecgJ|@MTPrs%q6L*Cc_T1y%~I
zq80^y5tu75Phbkq-AsX50#gO12^=0MPnDF@=@39O)kAgn$nFDWtFH3>H5WY=`f;+D
zEnrlVbI8y6)a>kXzQ6)DvRI(~Ah}Rrk-+VAu5`KW{EZd;BA8a)amx~crL0DL8I$FV
zD+GRJ^7)E$9=lp#jlgDsEdpx=)(LFj(k40Odg}QzdEi(1S9l&ba?vJ6S3C8az*gbh
z$J{~t1G##n+$OM{hWwrD#ZSqOEtSznWwomI_GD^qR@Y8i`&DI&uMv9$_6j@~ctL&>
z*e`HJ;Htm@frA341^%GFR*_psQaI^xfg=J(1y+m^d*{ky-1NVTVyEz*mNTpqCj?Fk
zoMJf*r{uXL{^iczdxo|n+6@FQanU(}^8y!`YqwoKkF0giRrrpf-H&LKPM;VdFNZB0
z+n(Z@z;%K90uN|C3f!QjBydaMChNSlTqk=AgCB>vP5axa*t@h?YD@8#x<f;#FBfIE
zrfBjW4JvoxPREVE1s)1K7I;F=DI@=(*j^?c(L!D*nrC(;`Q3=j?`oYyjmTm?6?jI&
zx8<t05o-^K_KzZ73cR9iSx0gmuW4}!d=~gZ8?V4yf%gI*1l|dx?<tooRVk*6!c%4Q
zQ%OJ4LZ)SM%9xkh-tuknw%uhd+qo<8RUkrl_VXk<TsnHRlaZW#v)lNZ!HJn;%Ulh9
zR7rLCiYKLP3LPnRWYUpYN0g3e9qDwW*O5v`Y8{0hs|^)o8XakM#6{~rbabtsDsQxo
zt5qYO$m=vJgN|%{qcZ9^Th$fOH}!{?YR&|iMMsQ|tW>1q^BK{~CoeRSu{xmR(c6dy
zaq|4tQrUI<Qcva3L60!cYvM#{PVQ%`jLsd6JUa5~xT)hW9r<+R*U?o+Hyv&r9vvlh
zlwxJC4xvM*vFOlr_;mzygmlpV^nyALPm}xVTUlPI+P6eU%hh#}xR^;AI;0Luhpj{D
z=+ZZ}$)?Vxc8%GlhHR2r0~M#EfR3U%ig8gv#=?w+7*j`;rA`)MKJ=~=ihpf!71y2r
zQkEcRO6NfHxPyw<QCdes9gTF9(NR`MRUOrIl+#gOM<pGVbu76pD^OP-h>AMC(ebU0
zV>d*;=dwmj5h4-2RQ4Z}b=fTX_YqZee5d2jYthtPj+YVNbL+4EmDP3B&{0Q6T^%)P
z9+#_HI%@0q_e3<MX0=uG1}-|^=>N#sHtXrAujBal`~!i8NejHIh<|H0piaJZ&L|q|
zXriNyj<!0Q>S#t&_B7^49Y5$;R#!FG(Sn4V<ejOmmQ=l;m9L?^n@M$=AjhAzTj^-6
z<HJQ&D4mt+FIS^pF+b^Or=x?8j%4;{xo@p%uj9pY)w8e6pW4-l!e*)HdscPPQFxTq
zSx1$^c8xBo+bZWgq&r2gjukq7)zMQ&FCF7`OwiF=M;{%7bqvwbS4Te`19S`|_coP7
z2Z;VU)=d@k^@oh{$<lRnt+3=E9be)iV~d&zbHz{{!*q<+F-AxB?cz&AHC)FCT6)io
zkvh7^$x+OI%Vg2Ntk-9C&S1x~pT{xIeIJqUcoIqzbxhJRSErv*_*utf9W!*yq>v{2
zxy)%grt6rZW2%l?Bkd#)1SKN-eiOOQMbp{Q<czK*uSADzMP})kO*7(Ab9C$}RQ$+~
zF5)NMa=wlQI+l{pbu848?7mF>BxZ?@MLHIf|Nkz1`kthRU#NTYFR3+4<+wI--P4FK
z>8<57y7hLdQLdFbR_WMHW_7IAu|~&69h-ElCI9HyK*2UHuH{Bo(U4kC&Yvpx4G>4a
z#MG)LbDt5Lb!^e;S{b&{s41w133`n{)F`=?wumIIwvFWF<Z8Q)9Xg);s&?tvNn>9p
zcPy9t(pY`h$w`^x`b5e4y<K~C?9*{x#|0hxbsW%fQpYJB2X!2xnAdScNBnt%P9ZWj
zQEQvJj#BVbaOyar<H}80=9pYLKn{r1y9P@C{7^M*EYG|uv{$!J>o`M^Lo@i&{)3VH
z;C~-ey_u_XX6qb9g(>Hcl^1nf;#s>!8v>InI<AuO7S1+!EtP(EN$fWh<0jt~*J)W%
zf2N2VWNoxHb-XG&UiHgd<d%-x6juhy8Mve4u8t%Ik{Y<j)}B)&>$tDufsVg*Jk;@+
z9754}TsC-P{6h<eqIZbOvBW4>QdJxi*Q&OB$`zl{`dY8X_D_AFiL;hp>UgE&osRch
z`kGcQ4dG$L+=s3=6h#YV_Ia+iI#Og(xznkWW0QT*@li*F0hfVKw82t%>-ef8*9Y|_
zt@X-d(z_O?R#qE2BwP6^)%2XMLFsiPqoR0@G~j=34AWi73?w%YG!Qb7!azy`nG9q$
z5M?0RKw1Oo3}nb8=_DtW0eaJHYJ*;sfPbRohKupjMoMjIne>M9Zi+PHMFxX@aFwP}
zyl$;B(nkiWBoN7BAjW{(fX6_r0T{??Ae(`?&mz)Pm-KpyVL7er1{VC3;?f9bE^-*i
zX*kEMTn6$oA)ebn9_GOUj!wR?JU{iEC0+wQ0~!s=aJ~XR?ud)tFG|1W0tQBYE3@X8
z#WFkC?1T~qbOQwq6f$5KkOoWxmVpAPWV^Y}?yX2t&^ZR#+)A8*?$sQ53%9EPb2G1^
zk17^6P{cq<1EmZUHBijJ{7SO8foC;KPfa58MyPYIjf&Z22?OG)A`)+)w1F}P7F|^K
ze0h4L^9Ss=8D(5#-0@d2<qcFY@RNad+~_w3Y8a?#;9CO~4OB8v*+5kT)eO3`DT}3%
zRSbM*AbYKp-?RRzaW48TIbwyFkx=T^HdURba+>%YqjD~Zt!1FLf%*m-7^q{Qu7P?6
z5-5y2$&}g5>~5K^r87GEDN!s!mB=L<8favosext&awTy!Hn4J;>&`vZ#6Zh($tp!D
zIvA1u4+feWXkp-X4JU3}8u-z`tBcP6Iw-Z`UM-7p4k)b+wBc-9Mv{!`;%d*lyFs7s
za^|{&fsO_`8R#6RIveO}pqqiIyHyth+n%Tvz2va;W~J8=y>iLrepgQey$lR6Fwnr0
z#ZkQt^fl0r?et+h_B3K$NS$aXUn~;+4bah?niynYuz}$QMvy<RsUZf28Q4%+(c7_x
z8kn|4o-Ja#X2^wETq6yPpRGo-sjr9BC<BCKVOcik5z%o}N|UY-uQ0*DL<7|&YDi2n
z@UwxJ<OBng4g6wYzkvgE{f7o(;8$`ZwPIkpfq4`v24=ARnFeOjev(m7@zq#9NX@2s
zSt{okP&4JE`O);B;kgt5wPnc|Yk`4<29_CEPNgSe7a3S=U<nCF#k6`U8sssT8uV&J
zDT=#%`OOlMYK4LLr0Q_Ayiihg?;(Gm6uHX4Y6Dvh{BB^4fwcxU8rWnYOC{Gj1MA5f
z6k~(zcKId!6kWbh(NEF&=heGrYBPo3C|Br+v4#3fu1;5E>q(>J6xnZu+(t1Fr3M{N
zwadVET7V7I4g)(4^!Li)H5DOwY`1|u2KLfYt(;;XEzi8J1J_hcel>fc_;^+xG;qkk
z6$4id95!&oz#j(A7&vO+n1K@pPLfy0i4}Rx6fNX&GCn~h`NjD~cFI6p_9CYZv|s6*
zA(R;}GPZJ^HE_<rMFW>8)SFt_dZ;8N<$2n{ZmA25$uEh^hV$t(`n>XlzG_b@Jxw~-
zH3QcT+@;Ojz@G+g82HP;Edz8#tIkyCAb69ay@3-&w|Um4l~pGz$UDqCZ+CXQ`vx8u
zcuWCl;BT7oqDlWT@QAjWo$8^16&+;BDhc#v8`9Jd%Mt}6pVCHQ;NeQwbJ|WHo0(6$
zMlDl&az(zNfL{|!uDkK9&}##4sH+nBCH^(=mNsOGR1)tDyr-Bn5Fwql^MQ7L1D_3i
zG%$OHSjs;JTP8{MuAp;D|HZ&ke%8+=5h;;OBDq8oiL_s1e(_6sx^~-yxTF$(rIM~v
zFIveI5-BC3*fKrmHR77gx+wNoLFs9bBDF*siL4UYsJcWti7XN^5-ARf^b#2)GD`a9
zuh{Y^;+NDilSF2Ts;?yR`^DAys>SID9xDNf0mszko^nM-x$;%a%UsSGes+l*61gSv
zNaU3ChJDd5zeyJgs3@1j*Ak9SUWpmoBR|)Ww<pQe{5lJ_gh!&NL@^1kgik_Am=YQd
zhx@NfOiilZei8wRphTaRR!Blf+{{p<Tq|`vt=W8((?saKZAfR`Nr?;NobAh!uq6sg
z6q1N;E#su~7NY_ZmyRa8f6(=8m|e+CQCOk~)yimAdn6|olx^QdoINXs)^HV<C?WBU
z#J3V9B}z$@=FY@R%=s8|e}LRk!t9&A$gI)PWhBay1&Q(!6*$pF4{CjTOPTJl$mLNl
zTF8nLl_b6=PfApl*b-~S?3Ps|o-P$tqNCnF7vD(`PJJNT<dOaQ$!ZiHcVyHCQLwbD
zrbI1?eG>a6YD?6Sm@M&&L|ut`5<Mh(N+d|smuMr=R-ys-vxP)UiG~u5BpS1%Q<M|=
zl$uC1WeM?S5<i4_b0)Ohew4U2zLbBaXf4r-j3iYvTS&WJ@#wh7@_Ai9QFusnmgpkU
zUZR7<s%7FvS6O(N=qS;NI`E?+PR1*|k;J=7bd%_nT0UMV6MfrVqDricd1mK*A$v*m
zmKZKEf@W5tuf#x!L9|%f%YG84mdODU{V67|iw#XJLf7}ILOs`Di6IhiFBtT@qfTx)
zRH8|`BEuxE#9IH>F5P>c+Lm38lo%y3L1LoBXo)f8{PA)eO>0d#Rywa<?-J)aK2?k!
zAjhS(#!C>=i!5GdG@Bh3lO%p7`+Uvq^ly^L6beF#6%xNnOp}-{u|Q%W1+&CViMbN<
zsJDINX0Z?F&?3DcXETx?4!>3p*SiicHr9Mm^J!*Z3i`M3lsMO#+Nl>wERk4Bt1l=Q
zOPuK=-v1jx*EiB<m$Tc;WzxAWx||mBP5FIZYbCi_Vw1#XiPaKoBsLJAoNBGa*bA~j
zn!<~R$#oLzC1`OKT_jgcFGXad1YLE>^;O37Nxg--C$UXpJFU2Ws%t;BRpM?5`8%zY
z944iyxr*$NI66n}lGsgw9W-}JbSx@o4zsFcv$hqGdnEQ!cvO;&b}35NFBk_T4pRRW
zQYw114u>TkNj#P~LUw48O8g~pOyao2Wtt#~`8~u5iIe0m>gP1k)8{%(f&Iq5@JJ23
zCI4Vf*)tMn!~7hR^NDKYld${}t%52Eq<mFk(ExE>;!oN)N?6wz?|v{US5Y@4b~IBT
zo4JA`)V@jb7Bxykmbgbd*e7|1Tt{!QaOq1oI;-P8E#&Sof73>tO<FPL0}9S63E$n7
zy{;J#CH|4nd&cd$sR*CY;-xh!@j>F5#B+(4w7u}`zaS6n5M6GG3NQb29rd-u8?s3Y
zXM}T>^_KR=+|o5jy`w7Gon4XmuleOiiBGgoN<=8<i11m$_)~mgn@itCSZUJy+g`d9
zA{CM<BvYU}J4qCMYFtLnauGk3QzloSi;#4kzi=r@*C$iWjEho;R`4iz6;dgrR>-Q5
zO(Bg!T7@hMF$(%`MmmKI3K<nj?iA@6sRNl5GAqPovR=KHW(S#Vnj}tF#<a?+S!*L!
z0Sa_&|L&fsq?hEMA7ipB<WR_^kXs=qHL*_S-fT>{6>+hp)yH(@QOK*1Pa!|GJ0Y%4
zDY-0LkrY?dnElS~-F>@s)5%zZ!+i>xf=x{;I-((<pcG7ntA83ng>F-%PQ$q(LyUrS
zwiuUND?`!SKb<G3>B{rjMKX0Ym2ITDJy2TgOnPu{arUSJ3I!DkD-==A#kU!k1)WzE
zQs`YyW!mQ|s!&X!1Px!I(oL(~lv2eN?)ofxI+A*Ir=v>Q+La`ay=k&6tx$#rXd<nN
zvI^xCRw(?cP+p;eLT808G%pI@Dl}1Os!)*(DpXUb&Yh{OP(|T81$v#JHi)(~R8^qO
z|M~)P>b8h)C+QBt>p)x$g_;WW6cQ9_Db!Z@+D4W8AnUM^<!P<D3O&}9qP`KYd|K64
zXrRzoVR^~Y4HZ`9u^K7o;`6r?ttO_VOVD&Vnr>T=elwCQv{GoT&|IN@f6-FmM>gAn
zjNEqOmhKSUn=TinQMYayZ4}xnbWrH1Fy^B16U{q~Yk(>^MjVfbYES%GMC$v->gkeh
z51rj8J1Ok%D(N-6Ei$>f(v;CTw!%aTPU^720EK}HJr#N>^i}Am=;KGSw?ZH4!=DCm
z?NtQ*_?pxpRmUSne??z#5OfZFX|2&ZA1xFNRv1mbtt5vi3{@CG3qc{pT`^2yM|NvC
z^G!EO9U7tr2F+1CsLA6>WnHNEY^CUT^caP)G~_5bPGLN!n?s$eWKRRmQG1fY&kA!C
z<|<59_(fs5!VHDYadL{nG=;J!qUL9ao2u~mgLB5XH@DgKcQv|?nn??-tei!4KN!>I
zyYA+(W>bWmQZ-}MJcaoROB9wWEKpdeuvlT+Bq!7tarY9jXO<$g2OeGNTBe+*GpKaA
z!mL<lf1tEqi&{x@s_>V>ErrzzYZMME98p-Su#OBWY*$#Xut8xHby%UmQKL;ZYa=&N
z?~(Irjx7oi4J7RqTS-V`d2Td5sSe~df2X;)X3#Aa+T3<1>{QsRu#a|(5w31q#V&>2
zw6Ye8{cY_%G;!zT?5x&}wAOxw0}2Oe+owI`ygIQY_7aLDE0e6=O0lN2tM^Lhtq4aI
zjwzg1xS()c;e?`B;^2(JNrh7i6twB*7eB4=`Y$ykUE#-&-M2_O!J~@fKRX>ht5CeS
zJjeJ;m4u55mlUokTvxcPaE0~+9v$7NBIRA%ojp9~dIuY<lKG#AKNW5$xTEEZOfI_g
zdQ+ig4t1=*yshZ(KzOO}iWa!SJ%uL<PZjR7HLCtl;eo=RpTys^W(TK^n=9AMk^d+>
zVui=#oQ=-41xkA_mwBe}oYv;Pm@F^F3s(59bYZ#_nRk%Wlh+DwsFXZ!;$MZg6zvM1
z6yA|f28uLE<a?U0dBxLoOXfeTKG3)(NDAH03SVd;XK|&SDd<}F=g!e9GwG$gE|-Z&
z6DdtZnMh(HsYxHKk;zQ7+b=d6X_~K1P4B--ZX$(A|7tFMc&n4B578#}SCu8V$y6rf
zX7yr!B)xt)wF!DPD3zu&k={f@6OBw{Fp<$j92J?!WFoWa9EpU9EGA-1cun|B#F~JK
zoF;Oa$Z8^+i5w<YB~e?-#AP>O4sk}^p$6R%HY;b6-scgyP2@3=&qRI`c}?8PW74J?
z8fY(CrecySH#gxiomXLO-mQMkSmbNn;>0x*Zp|?jFflKM?l+w~EOZkmXd+}fKS?@z
zT+LIOJ@&hF69$dTgre3>=M4b#-K%~rB;AWidPZ0#Y!fFA$Q-kiJxQVN#6=b~QOHCE
z6W^F9Y@&#XQYPX}6g5$dM)yLLF!6PvDsF;qFl~5a{PCxA)Gle_&ynKHa-qh!rcW_S
z)6Q?AoQX2j^FxyE;Ad8@(b=Q=KNjUpyeTY)uNAHPCHvMyMH4km)G|@YL}lu^iE1XQ
znE1}bk7wkeLiWzW@npaMG5J0DJadt3bJT^D`o#~TI(z2jqSzWto)<T3o2X-=zKI4V
zwj3){*F=Je;9FUb=B1{p|J5MOm)C6jDrU`od31?U=}^jgdt_r1O-zh7F~&qw6U|KY
zGSS<_4<?$MXm6r}i5ApJ$kry>m}p5IqX2tatd)u3g_F_|r06!4_l`|IZ%dJ8VpkqX
z7jJ(uK}bCxw9xtGPN}1b&L+B;=w#xbPsZ}Esh{LanY*3rYNES|9wxf+K)esj+-s!h
z{j>w_yXX%RJxwfb9oIY}u8&EVc`?YuU`p=<{jsE<iT>o|Q)+;Teud>g6VIxum&;NX
z4XA>KYlw-V)I+vOYh?JRm{}RkVI~e8ln?T|Mwl3BVicDS8|4JjuQi>0eyoXcESyhk
z#KZ&>Q)v;=T$`9=;urEjH~BOD`Nzb@>@NB=)faE{;0dDhK0E&~XG5F9b&Ev1rkj|-
zd@ij-Sv+q_eWr<7CT5$kCdfIoHV3LH<rLjXN%61UI@+Aa%2(V@EG;mx(8MBYuAW+E
zVmX=GEf<?uVq&T3T!AchND<PXf>x00w#Z*itTZual!`jzqCZr;t1fenE&XjVwZ_C+
znz%UBio-e+>rK41@y^Bu>O8Gw8yRhEGO?M0+(J<cTc{5va$Cq_VXKMXX-A?eCbpT_
zZsM|uD<*cB*lFUJiQ_cUCU%=RVB(;OJtp?j=CH%wZ_;z<_L_LP&&0=PVzpr(S|cW;
zvzw>451BY@;)sc(CQhD-pYd7rPN`4Is5aiQN8~QNBB$E@tvW$PCeE2SZ{n1R)3mNl
zoFNaS)EC_=J$0i{JM1gb=GK(@-h|?3sguvdg)-)#o-r3pTr_csC4ELY9hlcutvYK^
zm#&()Mj>b7k%{ZHPEFi1ao@xZ6E|t4cPw^?2K9~li#8t<w`svX6J($IwyaD1Gs7kY
z>i=DegpHy-edy<`@xa92CLYpO<I?}_T8z4M>`z5HMK$}ei6<srns`O~Mtb|HiRUI>
z&{~L9&uH^WZ)aN?KmVEIkd4n&*-|Ev*R&x}x6}W}2oY-Hor(7*(pX4q;RAV+qR2v0
z3!hAUrv1l6goWX2<QEFX#&P||#!#OxX0SW%uw53YGm(TrS+rZR$~){k9g8KiklaF)
zg=h=y)7iJ4i4+!$QFclTU1HUSQ8uZOCsSFDH&R=mK}C*mMtbdmoz6mf3t240SfHt-
z&S$WY(LyE*htt~R-pou~TP^B2J<J$u0T!}b$YCL?g?^t!Hp_X@9})6u)M%SRBBzC1
zG@SHy>KCQfR7q&trI?o1rvB%(oC69a8cse7`7OMQ(A^e%7Bq{VyH_3yD>@eQS}66^
zpq}_G1S}M=P|!lqLdb$mt*5gEBN2m%&PW}QOjNkkv|ur(!IE-ZSl+5bOd-peEQ-m(
z?2}!coL6-<%V-y~P~5^g3+pYEuu#%MPYb=MKNjLG(5Ge^StxCxjD^Y;s#utlq;y#e
z-!ds@p*&e*P8;Aima`3#0wp39EmX3QC?p*s-&y$HLTw9mShK2y8Ww6=sK!~UQa!9s
z7G92yc|JO(mW2$3RK5qIF8SO-eQt}25?e{2sHl=ar486Zs-E#AZ)~B7g|-%cve48*
zGYc&({Al3^3(YOGU<;&{*d=O$IJMHsLTd|TstsdeqltYWg?1EX7CKXOS?FMa<diyE
zNUYw8JNfKkG1BbH_Pbl?VWAsyviYD&LZX)v``Oz<9}CkgOt;XNBFe%T3u7(xr&P1_
zU<*Sm46rbeB5G#wK@<#|qxO%EDX}?<N{3n)W?`g-QM6uIe}sjZHA_<wsgXYMoPkoL
zPm<B(v`q0N9LJgyElgsY<1I{J3F(mj&lV<I_{G8$iUDqg<fJf_tCK=;woInz(!mT1
z^DNA#MlH;;Fq_m|`Wy>$Eu_ntjQGUb4pO4*0t*W*ET<s1u*kw<3rksl3FH4qf7$;K
z{%T<@XUW=13#%+dW;e;^Y9?zKlYf_x*xUvS8!g<iaM!{n3!5z*v2c|3e_DMOc3Rj)
z`@e<ld(<{U3W*X)f4A_pRx*<8U^x*I5|VJYg*_Gy(uR=9-fLkWll@_RQlNBzg+xf_
z5c9)~WP~KgEF8CR$--p|CoG(_aK^$}Zs?SS(-!^+TT5&=vFUSc;k<<lVN?I@(nSj|
zlu620EL^qlr-d6lifb0GvvOk3sXs(0-L&wRg<D*d*kS6`ZO#%Qv-d3Ar(My)TMG{?
z{7v>Ls%bxbVn4L-$iidh|4^7E6wg>Y8Q~L_Jf#h)b}~|XM#0Y#DxySL624;n*Nmk0
zhJ{o_3hykur%l^N3L76R`brNXY`AQEvhbM|zA}>X7Ym8jVrnNNBa|X-B(agq#?tXJ
zsqI)JVPd<aLqf`?w4Dy5vXR<Gl#OWn|LrH0rm>OMMtZJGYUymJ39^uht0xX8la0(a
z`r8;_Ba7|q+c|9Hv=PHR)^_%M*vM)lo9%3a*=@XxHY+6VNYUn@`y!W(+&1cxrj0x{
z*58vs8zCEcZRE3&pFSPHLa&W4>!PW&<1pc|v6nezeKs^!@G}M&FCUjwBy8w5%GoGy
z!>}Q36t_{rhO%MWC~TwA5^346nG~`SM;*8?DHXI)fQ9?st3=7w2_kh)S$2Y;Dn)D*
zwekCLNxT?WAwp^;ZN%FsO=C$GTZ*gy8*7!ZQP#%Ob<tFJ&?d(kDffM#D%kkOMim?1
z+4QuO)02ueD%p6wE}C>Iv*ZbLYMSbPZ=<S>S~hBPQ8gRYZPXy++%f9g?@?uHa#5b|
z5)%7UhfB#C=}?OaHtO5>$woUH4Q%?Wr)*)PrHzJE%SL0C{9vOwlO~K!8JpS8DJbdF
z)lRE>j2xPpvh-J<A8in}vC)c2YsM#0Wk^W8t&I-rqlve-F=K|L)RiPQI@;*Ok}iy$
z!=+@CbST@+Mt2)M!ty>$dNTI1(K{^9n$GGQ=KZ*bRDGb0K{hVhxMX9njUl99W2TLv
zHnt5BBPo)Z46`wu2?<9qiTV=r|4{WE&{7o7*SsZXB)w}w34(-uJNss5W@mS2chVzg
zRN$!yDk^3WK?Fq+6ay+rKoF25StW@CK{BEuIS3*kN>D&d2!h|8dhYN1zjON3xm{gd
z-CbSPGqW?>{aOsK$1o~}(J{P1JCw;^wmte*3?pJ7cvC2u?K;JneLIGc!XYMSjNoxu
z&R7BOWR*~6d<+z0^@%Y|ieWKtxfu>IOpakr40B_c62sIOW-?l1*!p(#{TQala7&>w
zjj_<VBso1dD>I~s_;8^``auk{h10HcNlG4?qICPX9QpHNSQx{HG0cx)fd~{!me|rf
zpJE>|I(X;*e`>KJOIeF_DZ3rR7M3!2V^|);`WQCQ)oG#_K9gE2g;IW%0Cs7$fdA=P
z6T@2RIXR!lz+SBr$|@VPlA8r=lA&=dMKWK+uq}q|F+RfMOA+`ghOY&%=d8Z;fwBZl
zJ7U-={N19NJ>L~W(I`@F3-?G7Tc_szF&v2DObkEETpWzyM@GRL;cr<{=IC$?M`Ji9
z_&cFTgnlpd%pYBjOT`~zI3a-ZSTvgioXwwNsC+SeQgjlW5^y?()1SqrZB~9^;B#r6
z5&n%UCs(sql?yaxo^oC=v%iu*Gt6V7YYkTZSf2YkS8M{IpR88?jA7W+3grCFz@HJx
z(Gb#bN$_Q%{|LPzlmb^{_*ZZ-KI_ehFnx5WVQ~#5G<4L^Nkd5ur8G3w&_qLN4c~QA
zYG|mbVb3>884Yi?4wcnVPD6R&jD09lffdW;5meMrNdo~>WdT)$UL&-shHBZ;>H?0H
zRC6^zLv0OpG+e7;z=Khy8wFga;d%`>2%b|$J^ypVqS9I#ZqjhGhBn>v?wNYWfHwKb
zcwSw}*3)o{hN-n1v8cX=2EuHlVg1?Sw`yo8*?W_XCeO{Iz;)dNO0~Qgg*Bu#WHjVy
zh-f_D1yKzt4VH#{4)fb$Oi2x@hD2^2&r*zO(6rzxrVBNM#)X<f6GGP?{_m{~tFz*y
z9!ifqg^k)891YDhG}ln0N}j91*H9qX)4=0P$SiCXYD$6k!l`FU-_^EI*&S}7;pL>-
zPD6VQEj3hrz;31C{x$ing%Y$8&{o6b&+?glGMcEnIMzYKFjr;T6;@|_8|EbTe@D4g
zpx&XOvxdbFL_dt9i-xXL8%KvY3N_rRVU>Z^2JX^uw}wp`Hf!jn;T{bm=l~kJbH+ai
z^V_qb8hU8BSHp&PmHRY2rr~k+;fwJ78hQ$NK<I-)9}?P2C}kej@JJRvDqul5i~J`<
zTa8vqpK{id8hUH|1PD)Q=&Rv*5qmmY>sgK8WCqRk7y3+=KS031wuLMjs9}&~pUals
z^Lx3$f?vpTUKB7y!%G5+R}H!`jMmohiiUA*3t!dH=#nyAFtb;7MPC!n>q6fUN&)h#
ztW)07FiFFE8s640Qo|@t>wVTctV?UREgY?344q%_#<qoxkJ_Z)wJjX4;av?AHC$+0
zIDtXewy;FI!t2`==CuoC2qtToqQPrdxRxHS;e8FCN!&5?rfHb3VS$F}8fFM{_mW)l
zXKI)w*$;%y7CJ}hT%nYir(x$%h2X`t;e~Ws;eW`VfHZt8c!|(OS^32ps#Z!-o@uEt
zm$5%1qs%VX&}&-wQ=tSaG^`Z7O6ck=fAx;sHBymYz35aUj_7k4*E+_jfDJ-73hgw-
zp}-amTQz*GW4n$oG;GuOmk_kq@uh~Z7_&MeI=<GholBpN;yS+3utUQ|4S#cV8g?<J
zG#uBsS(dt6!?zj^F{m}{)v!;)e&HX~P}U1k;DBU@ObZh;-Q<K0b2>B}(eS+#MV&zG
zP^%FCs@$iMdX#Iz>fD#khbj4kh7%gjYxq^ej~af`a7M$=8cu3BrQx(xU)esW&UAwl
zVq&ddgnw4UIj(F@=uAN%K)_Oh3mSgY@P~#!MeKJjP%Cq9_kxOSwBPDn%KXLks!gcd
zGvPgI^pc4EE0jf-HT;vsS2TX=92kL#)tQRv$k781+bULGEuo{Nj+w1PH|coGR7>fo
zprfJ)l-5y3M_Iw;gqGKX-WF+N^-4M_>&Vps9aVH(qocZx8hWruR@E`JeW;p_R_%lD
z<w)69QQexNs;C3k>bOp_H|n@v0Bv=Hjv_0u7R74m;8{_(_KNUNsq0PkW*xP4)X`B_
zM?D?4>S(Cr7O7ibM+0fS$c#lwsG*V04@A*KM_5PEto?5k1Z<J^S9C<h4xWzuY!6d9
z*lkruOoygJ*J0?0>o9dZ)wTpRPd|`Lmq_SH>Y#hD#pMmv>&vU`EibYZuymw#4Ce3u
zI&2*dd%HR8>iD;1KF_xrzAHk&Nu;E&qd-Sf9nEw!*U^SLcLe+vv?2SWqh+>Nvuh{V
z1Z(wJ9fUk(+R|dJL;RC$2OS-C4A=3hj!rsm)A6v5M|9k-;|{UvgE~6v=pw4_)zMYQ
z@%EuY9e3&&_ph?;K<-^S?$&XSj_xAUO~;W{x%BzRW!`(}Sm=cATb)a<<3QMAXlwXB
z9rx?#spEM!G`?x*0i9d-sJvoUe=huxDEYZ{sFx1XZF9qq>Uc~?e;v>0cw9=yKGCR;
zjwf_HDcRotzmGkoqp$Fv*0~Fo+E2&(;uXD{2EH*s$Fn+y$}}-MP{(uZhK}(oatCE4
z2kUr2#}H1vj$fS6m5}-(J-kJUii0AY0@C_+q`kz#FdaS4hF{k43Vonz9{&jZ(8}D2
z4b|6lysl%ej(IxX&@n>CWF1p<yeS<U$L1J2I^NbXQpYGAV|0wwxd)U=XB$nOt8=M}
z4bj;c#qUV14SxPFD{?0=`eujU(=mE=?z=iB>X=jzdeR9^VsqhOwc-5IXfz#1H&w@U
zsmq(U_jODYOgnTN8+h6bdasUIIzA9SIkRQP3FZjre?C87#~R@*;B4ynP{&6)mN9U2
ze5_-Uj>TCGMRCN6OLQz1W>HKPsamdMg^rcN|1{gyD#@<a@tJTaStLx#x@&cOu4A2!
z^*Xk4Vb`%i<TvTqtYafB;D%^$#yjobWM%FaI<OO>>B#(Gb?!E<|2n=BC!}Tg=k7(#
zOZ@Ey#`#9a4o<6qN(Of7*rlU{A&b9`Jvz?mIIm-`j(s|g>NqBi?iYGk#{tgZ*vLU0
z-|DEeGMDy0#O0{GN>^c@zvJvTQjh5PUdPpy!P;B7MTxJ%q2oH{nCdAVr*-_G<AnI_
zkK&3yWveeekb6=*fgdxRVIKwtH{R6nGhLCL`MxZ%)+TgT{EdsouR1PBuec!prsH>=
zA1bIh2L90Tr;dNPhGf*gbX=6SE=yZ~>$t=yUXlCXq%>6N4}F@KD19*Z3OlUxA2FeC
zR_6XoVKK<kU17!%#}zVgu!K@v=+Dhd5SKJiN@PkKDA^&fY8fNwKv`jyGf>_@1;LD$
zEd?Piacrxyfhq=c1BMh`W1xnCng*&G=({qvnt|s!H6Cy<x4HpRe!QJ)1an%?z%2$~
z;93LM8Mt0b>l(Phz>NlOGH|nj#qC1147B?;my0ls!xgW#5rpuK>&w<Lz%2i^&qao|
zr2sY8mk!)&pdmFlp$0-Zibe(+8;BTC3^ZXAPAE@k*a$8MKlY4Lm>Tvwp{T*n{-GL(
z8F<DG(Z|RqsM#hoe08qIewJ5x8KME>222Al8W>_AVIXPXZg$B)%7A5{je)iX(grdH
zni^<kz&79*@C^9UNxx|j=B@#bi{4%!%mW3%8os|>VEN{>yn&VmT1nB|g3#_2fgOg(
zC59_QYXclO7vXjW+8emTKxYFT40JSbn}ORogGa)&5*@XZ5nRPM#tt$}T5Nm!P!|JT
z4HO!<(+GBZxWx+{Z5QH(30%YPGBCLy#0Bb&rXh~>9s}JC^fB<1fgT3#HSmyuUIy+n
zaKH5J0XFA_8n~gJl4a+c{SzJ*4n1gqODosdhYdVp;Bf;_7}(z`^eDY$W$t4l{8UMc
zS4?)`N$Dh)<=zI!;pDQPoT<JBo~CaYc-BBak?GH=k(uR%;InqY#L?9!wF(Us=JN&y
z8yG~dGq|H>a4inPp;0i2FR*&k5Zhu8sre-XLk)~KFu}ku8o|K2qv6p8UNM3jp*IYS
zFfiP}s|MK0Yeuk5)9VIk6Izm*xj0bIn+D!CFp^aa{46&E^hxqZNmuEsY@GucV+3o(
zSOf0}pBlz7sHK!w(s$Wa3K*DcV3L9N49qYvle1u8ih-#H-WSK)-}=A%!)f%rurgg#
zF$U>ERLK6!5(^N|Ht>O%mrc{1Xd+gbXJEd8B?gunSYTkGfsYL=60r{rd?bK%xkgbH
z=bhoeil4MCvDg4tV0zjz1D_c9)W8bPkwnnN1G&6`;docKS8r-jVx<w>E%aTT%Nb<H
zJ~Oa}i$)w3;#h0obDD_pOFJ7_Z(xssy#_WI*hnum@U?+W1~wbm#&zQng=vd{tp>i3
zEF+O)@fR318>>a7UouY5hl}ubuK5Ob8TiJ)4g<BCcP-)%xlS2+py4aml-n&zSeH-Y
z`{;xQju|*^-~d-Y1K+XR2ELWH4jDL1{~Y_D<{?!YF;Uz12G{|DqoS$^$GYeJVBmy-
zlLk%+|3@wYV<SHaCZIr3Pfi;+!#Ld&VYYj_LQ>+h2F@9{Y~UXQ=SBZ-27Z^izZ$r}
zh`!&T<lCK<KMee7;G%)Q8A>ffUzSw=60uii{-^&E{iJr#PbPvZ2Ci}ih@(_IFy_Ao
za^eWZQH&4!R~sLAJ4{+!idb4A4&I0o&^|S8R!R%MOdMt7V3z!HacuY?5Ga}p;)-!p
zila#!;W#SCQ6-L>;<!1^cZ;YR2jaLkj%uQ(MjSQcs4n={A^*+Y#D3vi_GfEgPtxn+
zxIT`%mY2CPjw17te}hzM_HMYA02+bJ+Hus0<5uC+6?#h?_2Z})4{l#6P(&NVaVC_{
zEE7S)I2y%KG%0l^XpO04g2tk}I3jVR;;`aS;)up!#1R*@`EjUm!~}PlplAYEMdvRk
z{JmN<m)jmTg`W`0EcqN-G7eJWbR3yD3gT!Qhb=O099|qw9B&Q_1d1rPEcT_8ph$DG
zI9kThDvsuHw1{JHyF%xWMpgb!TXy5takPn}Z5-|5IPyt?Pt!{ewx4&p(epoboz2e<
zZq-YiZq$+UJ}`VIO)8+1(A$LG9>*O5I&&a#bQMhD!Z@gkVDQ`~q<6>BEshy+%#7on
zIJ(C%ERL7s=n==gaXiJ|#&KU9_s8*Y9FN4o-<NvE@n9Se#qmNx=z%!2;wqU;y`=O=
z%aGEt$;0OwJ{rekaXb;nlOlPzW$1AcphK=77<s86)H{xk+JyR${@akh+VQtLDtS7N
zesMe($MY19<C!=H#PMt#@6@Ws(tRyMl>Fhhh6Cdm6vwQiK}G(`$0E|fY$%Q)alAyg
z{I=MOoa>fNimDI{je{+I-!epD9x=@3UZH!e&3`M7w;30LUlmH`YjM1u#cv20!KoCm
z(GF2yq~LKvN5wH(z?eA33ZMY5u<v9sf8QG)$AmcE&2pv-m>9>TEa$yACTH;!0aJy(
zAICHSD;nfeEpKB;k2H+ViepY3bLkrmqaO&JE%cT_;dyb)kMq!Qb%D@}m-5V#jhJ01
z*?OS>e-y{Z^n^GT$MF>{5LK6OfFYG>T^vi}SQf`8!daQ+FBkA>94iFy@>(RnO0uit
z_$({AM!?!QJ{PclafFiVxwc4lqtMMlHwm3uDQ`<0TjTgbvfD^s5C6O~m$kkW%q)M%
z`da$AJ&tb}FAv0aaJ+GDYoqOqV^<uz<Jc3&!8pF<Z0_!|H;(;rerd0s8m;b&BlmHq
zp{l+<Ry`2sCw6MDjCLrFS0n0o^z$+5;W$pcqy7`oYE4wztjRyHS*6<V<ERzWj>d5;
zj^iTSr&T@;)pV2kBNrJqYGJp9ldMZ@Vz-IYT#l%JM&wx&KgaP)9G|`yem7s47gEp0
z@kbng#&IqVW|__l_%)6TS<Y{9{GP?UyZDRq6-Q$eO-%e9$0fRfiMl2($MH`bd?nm-
zaQI3bSGg3MsAl3{F8e0Rm?&!^$3)0PaT6s>Tpg|U%-5K9Hd9NQeBr2#n-k+OOT46&
zqQFa9X%k1U#0koosCti9#l$rN$_uSvqM`s6RWeaous%^ew^99LW|<sSyLgK_u3ceu
z6E#fSYzFTOYMRJ3@$1IOO(r0KHx<k>T`Sq^gkCT71`{_5s3nv#bM4@Uyhy&bFj>9Y
zopwDF4Nat;58q-2FD#hqo1k|!FmbDiANJ)EpUaeJWa6jss`-ve8a9z<;vN&-O+-v6
zCc2o|)hQY^kxx}7EE7}9YN`p{gkd6PLK9B0<58Xh&!V^qQ#f~CN+nD@S-ou1#OQ~j
zBg<>Y`&xIE*FJ1lm^P6y(b7aK8h=38HiP@{7A714t}s2JEcHzkWN}jy%>*~kaz@Vx
zo^dGFnlmNCY-ggaiH*x6?v{M=7rd%0J{*j+y@?LO?<llWR>N&3ZWnw<mebk9m+cB!
zx2uUl6L*@p%f#I#p4bw+GT<!`6G1l`VQhFZFEqQtJxtUe7=F;iLniJuai59%Y1MXx
zOxLzAw9Y#{X}a^y1N1b>_A>D>#cD+dn0Um*qb8m*(bvTI1<GS=h;}paxQS@{!bHLw
z*f`N!iirD|V3uOUr3a}5Pn+m(;u#U>X9iz*lG&zxVUY~!1UdWf?GkwdO$;*m!6%+K
zG1$ah6Z2@a?s;PiR4x}Un0S%ZO}u1csENrYrkEIJ@>5m(T01&Q=qo1P7C_E$0j~;u
z&BW^h-pH1YF!5#<za^kr$wpk{M+zpOhS6qlsKFQ$W3!U)m>8GE;{{AG@ve!9f+v}H
zFI(FCXhS9{nQG#F6SGWwU}9RfbSC5Ubff7eW(bFvl1yxlbha?(2;~U~Ox)g|_x8z|
zk@+STm{@4yLla+{*lyw@6Ca!S+{8K)i%cvw@rjA$CZ_j}F5%iTPFrfC<nwOB`t~vt
z=X{IltMSgKCRUjEjH_IGYo&=*44)S6YPx;GT<<#j=jYu#Kin;1llf<XwZ_C+6KX4~
zeYFJXdYZ+=7bdpRQB7<zvDw5HPRcN4$=6Ej*P@y0^1buXttOb&I$A3Wtm<v7FImga
zKcT5NjH~&TiTwpuKi3}WI@YSlL+uN{p|-i<9YP6q3fOg2-D6@e*Qg|_B(aaR=!6M8
zoxlMT2Te3iph*JXnmEKYErCi295(TtiGNI7F>%Di_guqGoZ)(C;+Xm0gTQevzXpD!
z|8tQsal%BUa^XY2H+rRg;Rlx*on#Y_DAPAtr_A6so)JV$&d(-(G4ZE~zf7E^B~4r~
z@tcYBoF-;x26upKvv=}E+27eNpB6<AOQ)1jM*ZSmWb2$4X{E(A|K0gtk}PlJsy8T4
z$*WxaO_WNYbOOZ^L4QI*333GR;fT0+0woeCDV)k>qvX7GJX$6zSx!J%p?s1mpXFCb
z;8Z4Px3X|*C2&&$RT8)+fvO2qOW+3KR~K3{f!qXY2%a}LGH7D(Ab<p}6AtmU32tTl
z-_ybM3G`VQ*x^Pgts!H%S@10h)E7`YfjSA)70d^>_uCiNO9Yg)m>LMbVFI@bAcr&9
zNN~~fML2=H1a3><_5>mcC<%B8_z6T4$QQ9>0;&LAXiTV<0G~;z?V(L!LpbpS%mhCF
zK4>%{9D?KJ)Kmgi0%_qmS$-w~JBvA3H;a#s4i^Y+BeZD(%@SyyEp3@V3&C93sGO;l
zWLpd6ves5Wy9C-N&_Qq~p_J?>fG@U)c_(~F0-Y1+k-)tPbdjP$p<RV0<r(D81nx@U
zZsBwn+AV>568Lycq{r0ou}Xn^6dB<@DSa@3hZ4A7a8IER2&GuTwxHc!2|Sv>W5Rq`
z=p%{X8JR_oC-6i9y*b^&=e(2oWCGl=fq;p#M*5WSKOd&hEBYlcEP<EBL;5Gcr^081
z4iNfm0s{q*KS;oH2|O=gaF+jqfER@hN#G>`Lxu9kH&$fpuOu)$fmfv`D@rM^CGdIz
zUnj6Vfj1Huk-)qJ<|puG0&gWSDS`J`J%N!4ypzB<_93Q?N?=R^V-pz7qNvJ5=72Kl
zle_GZWz<s7#>OWwA%T7q)OQ&*$JKM?Ycdf`q|SY@HSG&m98)JJFeQOm34D;iRJwNp
zGZL7Y03~0zTbq`^+MVunp#*121x>8lr0yH5*4dXkn;ko@&Pi~i745;z>in=ad~a-S
z0xab{?ScdrCh%zjD-!rHfsYbcmcS>Bg-z<m2`oxraRSekR+Wgxv?PJ0jFE`8v`LU<
zx-Y7dvz)WgD*vl|^|oCqBYI^5s~8IjtV{6g4t2E*{Idj#?~9ca3#<{&TA_6gxl_xV
z>!p($6QE@_B*44JsuR>r!rUyBoGrrNn!pzVwh8@GC`-Q*&^D@llfaGyeoo+*1a>B{
zD}nD4IFi8b1om*$3G8R6zN4Ots>^nV_mV$4n3Mwv9F*1%b2Zx=`!)gI>L23Fj!}6(
zT(XSHENx4}exJb61b$55C+YvO1db>0Ljo73yVP0rMw8Y)kpS($hYQk^(y>zsoE9c0
zdTmq<W@KONOai2w>$99n+9!z;Nt~y%CGa=BsEm3cf!`ANGl9RjhQ!q06X10J!DZpy
zV2X)nN7a}1$1aMUX*y0W4Sp$scQ?4~@Z|*l5qw1`nO76|H;aoU1F;;Tp(H<<R+%lC
zM5!doB~d;Zbf9!Hn87kh9E=54Dx3VzhZimKYMd%tA&F-;sTGs_qrFB4sKl$PjEiHu
zCW)%lnZkq=swGi9iQ*}gNTEg&HIv*B1LKm&O#(^uNaEfku1(^)B+MidNnD@A4M{Xi
zqEQkzCWBjLrrJr=%Ho>@+?>Rd;oz6aI!V+OPCcQw2;EshtuLT~P>S6ufWId<7Lb=j
zBpE!6G)W>{R8%2oNJ%1^<VKXCxG?jDYDuU9VnXLjyLu9aWch}UiFKI@^8%1eqGb}T
zl1L?CiA*|)f+R+?4`q_DlW>Gd$<}!xSFk747y9X`t}JSrL^H`Yr&kP&EN>cWkqkB{
z=94vl&2F7Un<P3X(ItttNwgEm+mmRYM294{H4WXy(FwC$UZ|6RqQ22+pJ#h}hw%G^
zLtO>jmBigi6bfbs?o4un!T-k9O_<$<-jn2Bn!!7Q`=s=~B<`mtBrza~o=H3)GEWM9
zFp0+nJd{MQBpy!Ukt7~X;xS?J)c{**+oNo%yviTdi!kXEocc-*0aI_0?32V(oD{)N
z3+<moKLLERut4<u5e_|@#6bFO5~GqBB&9=>7?#9y>~Io;lXxMCAxXT%G3JF{Omah>
zpaXBss6bj|oFY{(CxeG{@`opb2gz4N70vjn01Ce*;PoWl5HKRke^bC)3=;vv&IE&E
z8ZFteNsLLNfqVi{e3X`QgVx6<F(HX>lGwpWOk!dZ>)Ej+CMEG+5{r^poW$fLrX;aY
zluS+H{UqijF*k{6NlZ^-W)iccXht%4K%>s0xFGmI__LGTqcv!YUR^X~y6e0o=1b`U
zp*6o!XaRZ`#Xd~pBVm3ll(o1e_>v@+Cb2q+&xE-wiRJXhBtDTWJ&K;ZLh#BYR*3<x
zv<tB=6*92{Ym!(i0(=!k&gX*H38g!cQ`GH^No+}CYZ9B1*es=-2qw<R7j*0-wr7=m
znGD`)k^hx6_q9-FIf|k=-I>I$B)(1JkW|^td;TQ$b54`k`@g#35U2P+60CAi#25}G
z^Fl?PJe<ULN&Jz-pGh1^;`=0iPU4p&jwW$Tgij@LJc%EYI4Ri^N%RhfiU#tdaDI}Q
z<@;aus)&C&i8E4El%@RHB+eyqA&K7@=~DD-c5(Zkw%>)%Y|$LC?q5k<OyXbiQ}~;q
zn#2_u1uc1*9+jgI{PTYry83@Gi#SZuoK&#DhEo5<Ldg_LrI1b`lS1hf%A{~}3bj)x
zD`HhrxF&^iDU_FN1)-Hws3@RPDu^0tqazhrud49LsmZHAirZPEMk=r~IYkr4n9WTA
zDO@X(H)iFpOW}IKH)J_{q^%|RrvJmQlS17T@>5V#s3-hJDKr*vi_rQhG)UoA!Suj}
z0@!+yTQ*4{BAjrRpO-=lu@YqzVMbHIwSd`}Wc3t`6g0s_Lx>AbrjSa(6r2!BBXF`<
zk>jPLl?vXj(mr+yP6|C!cpwE=BwMD?Dg`eEKZOF}v`7Vx-Bd6&G)tj*7SGBH6-`|0
z6xz_>Dcq4l+Z5WR&@qKhslff(r??w)&~yi>#Y-VEQxWqvVX~-m3SCmTCxz}QbWNd9
z_;(AvQ|MhOZsix~p-x6<H(@Ra2X9V$2)-|c`%}1Aa8U@~AJ6|^yAP)DPzr-mcuoX*
zrSL=wPp0s23XcfqQK65g@R)%AtrbPx?w!KZDfCOBPYO>J38e5}k&Lc?3eTi4P>Kc!
zrFoxCVX2IlKWDKg<TE{=!r&BMPvMOeUP$4^6o#kps<`41sW>!+m&ALE`Y?=>CHz-X
z*wem{dbqgpLi3u)6ge>4qRfaC-W18v)RyhTND+IR!ygjmHExt-pOG7bF)56d>^mup
zqjLUA*}jk+E?Sn~O<`gREiJUNFe!!iQus54zfzc-!ju#ar|?}0Q&V_9g^yEMl)|(W
zrl&AJg#{_hNMU9Qb5od?!Yt_tyFDj`53+c+fG;OhC~Aui#>BB$DJ;y&e3Zh6f?u2&
zSdWPjx;TX;DQrq%Gi@uSD^pk{U|9;Eq_8}NPqP|UaEfJiis<STK1*S}n0gI;EHAV+
zh0i%6vBo;7Rkd}9pGEPOhAZ2K6gFlx@Wy~0*pkB56b^~x7b$E@VP6XSQ}|NMxSKX)
zuw+~RTEO-czR7ZS2-qofmr!mn%R%kUMmjI+Y~?@-2PJmC<pebiIK1SM^0uT%fQCAf
z!uKismcs8T98KYvX!|vV<0<?g_<RZ{1e{FaR0=-|{z)iRG5SuYa3+PbS<cTX{F22i
zeNJMHlIIvQf;mA&E9wOiV;}wyKt9EaX7C~x{}d`)sAA!gl$Nwm%EILo{*mkzq5r0E
zRR9(8$KhfYax7W-EtC*YTxijfMde&AOIs*op}d6(QpDEFS|}%&Het4?4;3v`5@u1h
zh+bo%s)bq>Zn99#LUjwUaIJ+J7HV3^6?tA{Da=GwMI*Y-!u1wzuyCUlTqgdPSjrZM
ziTuqLYFp4P7#8YSsB0n5Lc~Hn(b>Sltrl*{_NTsuJ`+k6wbIZ+V+&0zG|HCt6(ffw
z``-;xB&0}I&B{bA<XhZ%JLoDGhnVoSZ0STkCRi{nxE4GM3E?L#q%3TcDy(G*Gh-p0
zt;HfciyZ+2R|VHi4%4?#V4<mnW)_-TXu&xZJw><5MUl%OqHt>qZ7jTQ;SCFIEwr=H
z*TT~l+FR&g;XVuZTj(gt@3L^Wg-#Z3vv9kGJA`>B@r+1k3th84>0<qN55UMRlp%9T
zFKV%yg?p^vlGKCtl>T(Lf-q+)y4Si_vQ*g9!UMz>dRutV!b75*6?+MIOz6Ye79SDt
zs8GHGeLTy5!a@<VPnPpkwp}h?9D6?t{iSHAg=Yl3D0F~@XDtl0Fv!B-Y~AN9JfFp!
z<sy5&ARMmh)HcMzOOh>8PCCrO%NAY{=BpN7voPF3QR(J~f|)Av7Sa(G-n1~;!W0pH
z%feU-?^t+SvXmStV3dW?S<V;>2lxK>TrkeU1Pkv<(fF*JvDQSc{}$fMMgg6lwk`61
zmQJ-W*TOst?^~EAb*EeSz`|_7Gc3%sf-B3cY>Tu%XKD^7Mdpr}O6FTwAOhc5SZLux
z3#%=BX5k|XA6r;v;S&psL}0OnB?5{nE)`s)iq5cHrhbJ`s{Pao?iq^iQCC{r#yqr2
zig*LO#==?)n=Nb+&gb+u3mYx06NT%gdqsZETGX(~3Z8bUlNXDv7QUbdTKJlg#kmj-
zMWsbfNLmCazg^np^_qAG<02B;NsE<J`D$#Bg}oM@$l%Eg`aK=qXQ42SJJZ;2;Q;5w
z!nYQRr%@t}LsszT2)-)f>ypD3zO!(|!uNE%m{Kf_qZW=?_?zKr;kbn#ES$A)j%(c$
z$_c*n<+{|B8(rcj;SByJ*n(q5Rqd4UPg^)cM{OG=^HkgD&lY|W{*|F&a?V@$)xz&|
z1`8J~{APg_srLKB&eZRsqfaTl=DUAd__KZCUluNM!F)@Z{X=xpwaRrn!xZDjgO|C?
zb|}1J;VQ*OME|i6Iuj=NmvND!jQNOvGYAv(O_$)uOF8M_Ek;NvA0GMrPsubYq){=A
zQfZV<2VVr05n3*dvI2gxLu8g0Oi-^`s8SloTvboQNTYHZRnq8kI{%t9u1n+kH20uZ
ztEN$nO{7sniZYeVYX#I4nky7(C>;t}vCCMM|6sZyjT_Twl14a<T4~&r#w}^oPvhn^
zrj%3*kE!+2s4cjTP%`VLVMP-JEk>!$imSt-i3VvjN`rvuRsjvu_+YlTSP4oSr%`x+
zj36(KNE)#;SW8I<?^2^_<fp+GMtf(+c9&9nHc>eWHI0cS0-&X#mQ=ev5M$}DCDeEt
zi8PXF5Sv1Oztc&vGikI*qiq`LG%{&4PoqT|b{b9^ZW>-1k1UQwbnT6`vHs;$;)l+u
zYtN~E8U?JlGS*aRvo!QE4zsm4#agD(DvgV0)Yk0zN3l64RN}c$hn5ys59B!QIAzV%
z+tRo_jrM7DNTVZhzDi~%&Rr92KvX>+a;k4u$COs@NTV~SX0+O9toqwnwM!aZ)0o;c
z_zI${o8V8BccpPR10jQw8O;AU(k+diX*`g|J!y1LqemJ)FO4ug_@F|1ZyNWJY1;P-
zWnczHX*`t1nl#p?(JPII)0mLPyBu{IkEX%*k8h{(7|q^E>77O&0gnrPLg<reOs-Up
zrB9{NH;p&a7?B3gC44%K0kp}GaKAMA(~_aQXVN&i&bw=TxJAb(f3$y=+7^ZfrZFgu
zFNQ~-OJj(D=Y{q^79K3%1)(nr?XooYB>_X}Bm!Pe<5dB#2&JCkZ0=Z?fa$d~UKjpb
zH)+f+TA%-B8gHdh=LY+)$x3vNy24fmp2#1W#wd;@p^Q#rd>a3J5ZSjeGA0euu|nSw
zI!<WpXf(ftdF%D+#B^{>(j1!TU}RDn@6itQ@HD2UF(Zw}Z-=L*@qQZ9$b2Du;Yp>z
z@(3fBm_;+wm_-jyV|E(klf!SxxZx53-w<v6&iMMe{JCk&OJjZ-3)1*BjTLFkypq2#
zjgQj!IE@b(cgMo+!SIac(bS~yqBKaC3SBI8iO_2X*~<hZkA*);W4T~T)~TN7pAE01
zI~@yumd2_yR;N+vz3}*h7XQyUqH5l<N#VbL3xA%*x-|Z#hj-6gpT>qXb~4-;dTDG*
zV>_c}Pk3`0ThjQ7!#~w%E3KWzwluzEsJ@d=4in$8a_!<DPKkL>`?W~&rRTnO0q2`E
zb_i!i%P6zE)7X>7@ig}-#a<dbjqe#C<?@EK2|gxa+MmV&%6y|76iV=|fI~tLr}3SD
zBiYg+d7-0R_tGf(!ySE|N=}H*AJh0r0E_r1JMvGaaY`1JU#^QWou(%<g3|bfbG<SD
zH=zV)(>N#ie3tX8fD7s1AYBUlF4;eX{wee?p)9&6;FtHpm(sXQXQTh55y}LguUutl
zm(`exWw?JbhV6HLndl5J9dL3om~b&hP`;;KT!hO`a!O@TIulGymki2eP&R{f2AK@X
zWl%nY8#AbtL4^!PZi`jPfSWhIxiDNY1JX)DD+}#CCz8C;xh4bBszR#?t)4-R3~CC_
z&EWbBZpd(#YzrA&E6nSJw&+mEiamwCAhcEq?WPRsXV4&n&Ob+Q&Y*S%6FU^v$)Iiq
z^#n6}3%gfBBVZ!9HG_s3C>caEXq3VJ?P@rKybMymm1&$o6XB4#?T?uETba%$)$~a<
z!ttI|_g`!0XP{;f&%n$emVuUm&hb*uwb6~6oGabb^&eTuv))s;DgQhctMPX@!Jbod
z237{#zG>H*Xl7S_kF6F1kS|O>t&~@}g=J^pWY9E&W|`m@Ax65JftP_V2Jg2dmyTDE
z!GX)+3G>R4HqT)AEo!?A_}aGxE3R`|3MFVIpmhdq=Xh;MGx(%KA^C-#)jop`8Fb8`
zQwHmviQbXHZ5iAycwC)w16M|x^$&BAWD#j+&X-k|xN8Q58Qdv7>6yU;0`AJ-?hLwR
za8Cx^Gq_Kf^o<@F+?&P4CMo<tmrSPng}Lo$KJkMYJdz1+Fo++@pjTG@VFCPp_|Xh5
z=BP}MW$<_w^F4L%4EoSdY}B;zR0e(7dH%iK#?!oQ%V2c|pJmWLgJ&|BnZc|KE)5S4
z$l%2chGg(88!8^X{i-sMwXQ0Iggz(qd7*<dctHS5BMlS^zm&n=)se9o49#E|=Ou$z
zXz&bp9^7!D1g{HtHG|i(9BxJaMi!3{g>OpsEur_g!EtgUGZ-b=(L%=vC7-kWP6p#L
zIO|8pXYgJIlNpH_yepiE8B7wu(yuN>w^Yl!?XSobhGz!MPM4zhg-#PXvr+2(TN5mz
z{0xy{_Ja&}aK)-8l@DcfXJbmQIpH}p&YbYv4CV=#FO-}G87vfh;K4xbqYOUI1e+l*
z68eeI#ThISK>ktz%QE05_{=WP@;}XBh2WJ!Fa8}~#dw(>$gIg=Z3d?^IFrHWbj1w5
z&EQZ5>oeGp!NCl;N8-i|Hf8Wl20Jp?oWYh1zT|K+SY9i-HG?lQ*d~~JGBe9WP*n7_
z@V5(-oFXRa&J6Z&_!;cVV7JInLy;1e?qm2f*0TDk@PBnjI>DZehcoz&J=_qf&?ui~
zIg-I~Hk!frS-Tz0;8+&ZfF}f>%yNFr;3vTq>sDm-Q-WJn&ZCik&fu2}{;VJUVSM<N
zXQF2__$`CqGdM@%{2e~eMi)eXrLzqTc7?sbPR8>I{-8~&<yD9%f3vROzl4%`QNY?C
zN?gj|at8l!-MBSzC4;LOv}>UdZ(A7sH-ln!z-KB~7-b?eWTUu^5;jWOsA>m+R!V3&
z8|7`37F<SXS)mko#S0!tE7+)<<x~_<$;J>VVrdoOTqBh7)v}V+Z4_0{wE-Is+jzvr
zwKlG^(ac738`s;xABR61AFXHO1{*ip!Ih<!jhk%D`y_gFXQamA$jyRl3#}tmsT8ei
zgY;^-)GapuaD)anZndG=&}}rdvGZka(WW#K!2RHe8`~glA~b9xPe4Q{`HGEb7Uv64
zg~n`5EtyY&<^#fpjRCtOO@+o;Y9k@~lQz=AOi9)fN=a@WPMWb{ODVA<z_sCJIlhg8
zEdKT7DBHT)Lv3NBrHwmmbhgpTMr#{66SVd=+StK$fj1a!ZFITZwFtMP9sVx6r$b=}
z8y7khGIg}kDT{9ta62`eR#?=9eH*IWZKIowu7V4N-YJwtcL|uXCd>z)du-fm<31Z7
z&5w1r(Zj~yyTeSA?zcwpE8-^V{Wf~qc)-S2yTfnpQy;W>;%&fxh?BTa?Pa4%DK%Qr
zbRz1bHXgH4-9ZfpkK1^{#ugh}Z9HkCw~e`+QyYD__}h5R#_Klva`CtEA|1>|KO6mR
z474%G#y4fvXJ{@P&)PgkOie!!Iz39QSxy~wLgn)jpNyWf@w|<}Hhw*!=9E)kkSa&d
zsLF}pp^2PBoAY0yPuh5+t~%7lFdHx1s5L0WFQ}i`l3(hE82L|?iVe5%s*Tg7gKV$O
z`ES@5VPguNfkU(LmW_98jN^3J7-@5}bajjkK3k2lF`B+DUqO#}M;$pqz5J>>ma&kp
z-kGO;J5C*MV}cESi}Ie0cWq3hwVSCUCk7uUPqKq=Z}`ZzH>@!`*$%#2W|}o#ec#43
z8#8UpqGgJ!T@-b?jTttUmQ*Xx4ISQPk6Rr3z{YGFb7;(`Lu+RQ530YGQNQXJqQ&@_
zIeJ_E<TL7g8w+eKwDF;hl{Qv!W^H`T0JO2(#v&VwZ7iW$ns-y|-+gM6a_Wy|ga5nH
zZp&=E*Du6}*5PN=bbh%{ZLAR6R$Lsre`SolVneHKd}d?4jSaMa33ZK)&uwsO*x|MG
zSVcXes595Z)^Xr_V&yv)Zlr}rshjQKA$OB#+tMb+X{z3_1gG)~8{6n|HYV>c&X2Ue
zv~k7`9!|fq@ihY^7TwO_{1W?-73m(EOYdNpYQ=Wi*u^y4-fiQcjc;x2k?dZf`-JWn
zN|^&TerpybI3%2-LJtf5PUsP#6!>1iFSG4qS<Z1AKV<O<0ZVp7f3k7X#wqq>p?#X8
z6L9Ywn~9vCZTw>6tc`Ovez)<5jq@}VBb42+QMY3uZy+B_DXlx@6;zCQiz0T%LbF)j
zpEmyDl+~?qkt@kzrEAB+ejN*2o(tD&qLx_|zGUOFjel%h;R5bpdPVK3jel*Fa!}eq
zF$XygiaRLb@GvRmhwJQ+gXgw7OvEJxlh5p^3K}VK83$z@u#~B&sGMZ`yc@0HprV6H
z4k|lHPY$!KD$-)lryb&d*Oj=&K~>=}Tg}1GH>3z^I>>b}$H80&`n}u`6RjPzad54J
z>l|F~@SnM8>Y$l}8y(bgkaA!-{3kD_OpDy=U{dQ61UEaVEu1<+>k6$W^cJC%sV|^`
zgY$J_%r<n;$U$Ra<~!h)I86kHv+{WkB3Z0BhzjmKQ)OM%LCk?B9NmH8;63REi`bud
zwpXTuL{>x6!G>M=6i7S4QT6<9&g|ZKY&7EpKWy3#909ISay$XPg8~8d@=K7(A1#|Z
zXu-*H@Y(f=c>i!K8oWt}nA+4E64cz*!PQsoP7ZE!_^va*orCrcIymU)1Xog~pUy?d
zC%E0g9S$Zt!JjWWJLux@FW7j*L03tI4(^m9J`~&~fMWMKxI2rx3AjgSccDFm-pkqH
zcgq_i_e++br-KKw_(1^=Ip~$;EU`n6I(W>%2nTO+{de#Ld+uPcgD0I}XN>+LNzhxe
zeH=U`fSkSpo)+3qXz+FY#>g`c24wX=>tLYZK|-I)@)<jne8Ish!g(>vAL8JpEFS7$
zSQfwRfdA8HmEpp9HOqfZ!0Qg)5Kvpj{#LehoPf6-jLdRI2^j5QjDWF1-x0e1T%ez6
zyn_kCA%54vM8T7UzL({5nx;6I%J7jE-xvNgq0@!V5IR%nETJC=rOw$5H#<Zy&%u0-
zi#DGUUf^J8{n*Gzg1@INbnqc%Mr!0RebpoSv4cep7CTttV2y*d4wgDt=3s?`m2@o!
z@4x4MDwJTkgK{^e2$*n<x=OOE>9h`*E#m(<z+)QOvG8*T>l|!$u*Jc8h6!D<Z)E5l
zw{2vv`bNIJc-tli3p*AP^XL1I`bM@oxc8-M+Z^mGdHWX*MwKv`C|~#K8t0#ieC=Sn
zgYIq6qYb`su!FAE439U%P6xZ_V?N&WvD?8Ot{5Kbc-TuloI4jIT<mvnz=7%_=Hj4(
zZyl6(QNhI_2ZtS8bnv%>?;ITA+U0Q10etV^sDl#@eq_bB!~On^9CL7-1L+oRFe2v%
zHfQGaeL1|MeDo(SXw&j|z{DvD!;=oax}0JRHm;zYc2MQb=oyCIXG%Lc!Qm{Y$-xB&
z=eSro*jpjLLC>5we$1aaHTO5VYmNLr9Q?_}c0%}fhW4En^)x#ao_4a>jQf<o95nZW
z6F)CGxXiWPMF|)GIN(WeR~`K8;0hP#9nl5tqR+N2$rIBqT+T1%BF9C@#dEnTk4xZL
z34hx81XNPeMQImhT$FP0=gYx)XA900<EfE57b|65lyku&!M>@MQ?;u0b<3QJE-JaG
z?V^s0$}Xy~)Wx-&e-~9<)O3;SqMD0Wx+yhW)KBG9cfk|Zwj7A?sI?QLgWc56FO9yp
zDa;d@dF;h?F0OZx8W+CF#SLz-cHQWrmVoU?a+XY0=B+8qa|%uxIXAnw<$(3(xN!Wp
zVs%~AbJ5U6BQiyp6&nbsFLczIVz+XxZ_2;n-cbA6IgMR3agpaD;-dL8<-#tu{}_Gj
zxA2r`#kXHlcw;~5-l*at>LNd@?cru+sj~-nhI662=<cG23&Ta+MN1d0T$nBrE^HT$
zizJ8OBJCpMf~P6*SWL^s(b9QGR)kj!Eq3O1_uspfsSBdB<|(cV&qXtK!^PW+!aPjM
zcTwO5=UF_FUvkIQNK+SWHz~7*hg(qd?#SWE3J)1C{64a5XHIJuZCu>u;&#foXy>AX
z^tS5VIXq0Ky^EJOMsB-4+HZS_jxIV$(U=p(e(e<4{0<kLT@<>wlg<4c?!sBCns<C?
zxGU%JcBN*u#8Y=Gce%mgSrop9W0@bl+eJ4zMoupA7yFd)mDMq^(7i71bMdr`elG5J
z(bL7FE*_)Xd>DSfMK2c*yLiyWLoR;W5U%rR&gD<SXMQeL@Rzb@W}x{I7dO`kc7=Le
zy4Tx9A1Z0DK0&o*qEEWm(6R87Gu~5faB$W7meIa0+;cT~lvVeuk#1*-^>?{72Zp$K
z$;AK{&$<}sVh|_gqQVW$csfbsS>-vGn-PIO?!Cw<ct0}O#S79FasKFNqH=;KEnZVW
znR&L@P?vk<VYrJ|T}=2~X}(!`nSSeH>RaLZBXW*E6zO)n*t**4*-p{jlftjLxc5x-
zb-MI0^?1j^H(k8N)x*WNoJSWUT`YF7#KkBVqg}l3Vw#IF((X7H<6SJ=UVN;J#u@7!
z7ngQK-v1<Lf{S-uOmgv_i`TwVCc1d1roxj(d2S1jahc30_{o{V&bYX|F}$xr4tI<^
zeREEkYm~AFa;CeOL7gr>bTQM#EEls~%yIF>RfWfaeL(AV&6)an{?d)budT1v%;e8?
zG0(+(7ynL*@)-98be=lOM{~nGLV|Pgk&BOAERx=KI?3bD@|W)q-+x>=w%6i$*-Kq4
zbFtaQ77Dmn?qZFLwJtt&vBJel7pq+S^`O#oLU`4ZD1XO$YD@Ia<;tkF`Ku|mBK(=q
z=m_O=7wcTC=M;1G_#xcOF}c^}_XDClu;cjSvBR~MjV?CPCOwr)?UZ_*qgy!~7du_-
z;%vJ3(!~xJkLOhU$_0<L<>4|lhljtW6W*Y1ckvBpr;EZfdS(x>d1MdIM&IyjY`2R&
zF7~?EM^H^|e=z6u+WGI7&EN0h0KKk!l*cY}`0E-60kWn=&LJ0vxeR*2D)gO;BQDOn
z_|?VtbR-w2U7T_G(i6vBoN)0Y<EVW8a#z{XOZkD8nH6>(&-uy4g_%mhAH`0&ILU~6
zAo|J0@H@GQU+>GgV_o=X7r(eTCwAuYc$Om?80HUUr}X^lLre0+wAOEF7dSc>#XRIl
zH-2|<(Z$~`{$Pl?cwj_u1_aYzT)_&IVx0;v(LG#TrSH8NzEV=*733cmS6rSn8s(lh
zgNtdyZ&G=b)xTW)rvw#49*TP?Ez0L^j+7u?qLlPt4+@*jO1E7aE#;xw&8lBt;VD-<
z^S7*ravsWisNkV0i=<*j50yMr_V~p@zVmhD!Smtiv1k=$r-iTaf}@MB?^HN$VYIr3
z8Xm6maJ`3`Ua;KddH`D-7w*+JM{6Iu)&ozh{-b@Y`lI&p>ERnZ+~}d+pW&N5Zr2m4
z<zelM(VILxsVZ)3rNg<{BQHjKU8t#z&#6l>59dAn>fsg-^*y}dVT6YU9&Yt;hlkD{
z8hU8t!S&#IXzZbh2i=3=A?zW~gX$sXA>zR)t|%U&9=hMC3_OsN&*p4}Cj&m0QO}-?
zOnFPwJdC@m!r-#e<FAF2c~PF|5%*wvNO`b4e(a<qJS17`Tx{!YN?o^P1y{LprdZlT
z#^WI)`2&yUZ_`5?-psMtmWQvdiLR;>Bm&<<frqvp+IeW|p_zwP9$I^tel$Asxp1XQ
zU7LGo;i096+bSgv?Dly6DQWvD%FDf?i|l9{4|gvJ*3$MKI(X<rF%D#e(z~QGa8abA
z7o2;tuU*bvgPhU_!b^@uZuf#XWfXMr(A7gf5B+5}3q9QLp{IvCJ={f|9u~ZybeAG3
z@8;niD!(cJ#i0uM<n-`xuZR0QbQ>Cd>jmZGmEq01q7Qg@&_f>&PkDIALoW}#z2E>=
z%0KMk5f6{jk!lC`Fib;cS&xbS$Fr?GA>c`&zx-5;$F@#+BsizO?qAWq9-d}b<uvD2
z2co0&&@&ze(6%0id3e^tKo2i?c+tc21H*$jY6804py-9ia@algZ7?T&s8Z>Y!cjPV
zYd$?cGQ`769?rEXv-&e-b`_OphrR6aCrZ339T-m6YE)ra4VAZTcTdTwd8ix@t9{MG
z>-2D*u6Vt|4=~>J@Ro<w9zLUEdl>2A0}r#M`Y3v}hxa{<_Ati7SP!qgoHK<6@2|Y$
zVKBeKV{~{JPygvu$TUH~yFw=lo#f%YZ0Tfr>4GrD2G0s#eKTho-NVBS4>LXdHb>!E
z-pOH6ULeXYkIwRftMJ>eh4UIm2QJN-<6*9cB_5V~nCD@>hmSmb?BR(s$^s7`dbrSA
z=~&NQ=wabS`+}?Vx*RJzGj|bvV_tZ%45aQkrTsT0IbVmX<t!t|!wL^8J)B*nv?v!{
z?%`8T&GK-a`Z-6Qjkb6!XXmW&Di0^dMtP2W_#3asjV0GGggt!g;gE;VJ*@Nag@<h(
z)_d6CVUvf=TvFU<qMNeO!<8jr{xH5SR&m)c$`(fM$Ldzjh@6VM^+=@IsbXI;d^~LT
z@C`lit?<_#ZeA7~RnMbBZz-O;!^2JwyFKh-!0wFhqLcg*?6g3c<?+C8H&@TuE92TH
zl$`w@4rK8`4|Kd>upYkiaMHsm4@W$F@8Jgy%EM7E8qdf0SH$C-^o`+TLXVCOx4tHi
zCsUV*D?f5-Dn|G85C7x^r<C%f%U4=xr$ztIRL&(rvCeq7_QvRpYB^jg&vK<&7e42K
z7tLZ<i@m=rvUf?D3!GLD`94%1zkB$Dp6mzLqdytE9?JSWDh_qxITt<r>!FyBzdc;?
zaM{B@($H0*uYa9$B|EMS4WhhfzPoZxj*pO!5<W`$*#58b^&Qc(1xj%rmHLNgJy)!h
zkJbMurG1p~!P~-lvvU5pUb*IxoL?6Px54FoRPa&5M@=6US;a?XA8p5$<w?F3)5_P?
zqt|Ya{P=OCijQl2RP|BK2ai{NX1-G0$9I>N^_7&bT1WYIIM)YcIM@1E+%-6_HvNlI
z7t!l{ble{Kt6C1O%eleFjXrAmxXDK&AB}z7?4!1ix<2ap*k2gsF=TaoT)7lm_I0#t
z)6%#2sPChJk6S5FT^akBvVB8%WGLTX7->iiRTAU=DxH5JSazED2>Y0}L{a?U%*5u;
zXn8&&#BWBge@(5rP3bx=d}5#y_4$E)a7z&Lq4~Ja$NfHZABK-sK3e;T`!IcYK71bu
zA4wmM4_C&O^6@}N#TIPQ2tG2D*PXxba(P^xcBivrXtc8)ns0`R{}ldUL72x!7WioD
zqooi2xto{oW<FZ@Xn$F0?qg(LKGT}M8jnk!SuTgiS~a;6ZbQra=<1`;M>|UTxSbvL
z(SbJf(SJ;|@7nw!8^fL0w?WEne(+(5-akq_bGZ7&Af>a9iwB}z*#DWzk{fdRe5yS4
zL(ZK(?(%W3bbC*SoV$H==a9EXx(SEpn%(0Er<?IA-$OVo`nykbN1gm9_9{I&WVY+$
z86OY&c*sX@AANlE^6}Rl%A-CW^YO5cM|_mZp7zygTG_{aJmKR>(N=F*?7?4)Ie*2@
z52<ixIC|<}*{6K;_3^ZnzHvsm@O}7lMfJqOoclfu_oE+P2+s-U4Dj)+kC%K5^)b-L
zARo{B80-h<VLeBibWnIm>*dkmE^BjM5IryY7$V^E*<!n^<h{E)r|6n8%*V?<UiI-B
z4ah$xmr;1O+ABV8sGtq^G3h{*$NRp{(G601>-lA0RaSl(eZvQ7=^NFze7wyVEWo7#
zjPx;zZcqTP0Hb}3@o~n-&pyV|!F;UqvEIixALD&2qVuz#KHl~5fsfffCbA(P(|yeF
z@gAFQ7d=uXe~OP0hoX~xyf~&T0Xb8ByiW&aXzU1cD{r2jyl0d$QwBB52OpMOcMr}M
zjBX0&m?h@;nCoMqj}Lv!^D&>Xza!iy7HTy|SwPPj8IA6ZhIT7|ZL~kUTlvVx$3C7~
z8vgDkWmBn~$eeJs0Xa*2Eagajtn#spt@ylm)jp-UHb(MtmF0eL2yfB(rxkBiR`@u5
zYxKLqva5Z3#xQT0-@kFiH9p=rsjT(!Iah`XdB%p4OKw!AUnti4e0Y$Nv%$wkMzoIu
zJ~sK-?BgpRU;Er1U)kbgtB)^yL|24)B=pm-DziqE+~(s;p9g^QfUBI&)0AEh<!txy
zjgLJ(_WIc2W6SgEZn}2~Wv7o_TqpmG@gVhAdIcxZbEO?wDyQCt$TmHHpID5BT0baQ
z@DFm0@^Qq+w>}Qh+DoE`*`)`Sk=62eSnZ25bH4X+)W;7#PSC-|gpYBB6b<J>O7)k6
zg`!IBoF9GsL<<PN<h;@+eVp=fsbNt1<>c`B&w|tLMpw-_m{<B24v>pv0jd>nGYy>Q
zQs(2Tk6(RU@bM?3MwI;Kqw~a^s|%xlycGVOGrm&!gG=;zn|dzN<$PTB@eh}yYZHS%
zQ7$nkev5wdPb7Y*+~;E|@Yz|Lr*wW@`PWCW0+cC0*#hJgAXE@sN=g=h$CP{dImHW5
zq5w-G(Jos<O=pF7#zUnFP`Uue_9%^7<s|Br+gc*8Tmj1eKbo!rx{BlL=LJF_1c&5@
zyOzzHeeZ=5AV3J~`__U6C@o%~K!M^?yu}K%#ob+tyGv<tcXxOH?ry*TIdks0J3Dgc
z+U~f3SOM7tggdf}PdU;$Qlu*gW*3k{Ku!UBO0s9geU&D#Kg+oxmw=SV)#%ROyaMtG
z-~=QHh!YSmpooB?0w5s2fPw-F3GO%gr#uM-1Z-{1rWfHGHS!e}&}6wkE`PA|J#NC+
zfptfH#RL==P+CA40m4c@x%3hON(vz7bG(ADlmP$xh}o@!)oQS^0?G;CU$6=SMss}E
z=9zyJ`SJn?_I*|JD*+V+%u5J0PD`glOUCr${Q{VP$^w!omw<rBAL`Bo1%w1t67aQv
zL@%;?X;+j#rKOXV5pvAu4y~`a?W-c7s(|VOY6$M#%^g<xs|iRJ@MevldJ_#Ev!cy>
zH3iV6iZ!-!LvjXEhzWFm^xrJkX@6~Mj(}+b9k~fnfJ7}4&`E$SKoQVXz_$Wa0h)j`
z0d)lEBmx130FxwmlSNPDK7V9+PcTcs$vZstLu~;CI<a*zK8L8f<)85(K(MZWdIA~=
zXe_wb`_>nbVWYnRxvZ-!dU=+H0@4MX&cl9^gA}MyO$0iemj6b;n6&hXJX?3jM}uIM
zzsvHSfMx=|7tmHfa{(;`wDvgDQoz6heBG*S);EkkJ*@-~q;k6S_qCx`tV_M|!M%^Q
zoq+ZNeh|>>ESDvM(WReJOWEM-{tnc}>}(C^`%yq=0lx|uE}#n)BA~Z`J_3Fc&`m%O
zQWXKmx3V77xs`&iJ8^gjd%*jKG-G|fu-M#uFM*C9VPA6j`U>bLU=XoL@NR(@@Um*g
zfdZXPhXEv}xL~`o)s994+SFqWR<ly$5{Hn^mk)e=!-kQ9-QkA{sFo#(2+p3L|3v^n
zy5)R?fRO_J6fj=EC;{yn#QjG65iq$CKbojI&XGZl72M9<?*gVy;%KOIoB)F9!?`~w
zzH#*K7oqz7f)j}C`CL~pMZiP>lSp;TvL9bZ^eq{fEP$Ytz&7>arjpGr_g{$e%@8nC
zzzLGCfLQ`&3)m!Jvw%4Q<_cIt#!LDvV7@1ag#zfp<po65WbWI8tX;mq)=|Di-Ycqc
zv4ABWzSM)uJh=RSZ&wId`9FM>hpZM*^J8VoNaHGN1#BRpG^x4nzce0vmm@GMM*>|E
zx{=iThQHeFh%IEr0`>{mFJPO1?E-cR*hPHs(oa6Z?rmasm$`Pdo16wUsu0^tK4iKZ
zV>V~qk|L?2I_;~d0|E{TI81yKa7e)7x&Dv6_@2f2zXg=d=j*kTo%^%qzXA<_pk2q%
zvxdn>1so$O2=1-KbjSDRRxHPU?nFyQHxw^UOFu>GE#Q`b+oae6of?Eo0xk<U=TUWD
zzy)GyjJup3ChIYUzep-~lZ)HVMi=*85pb2bN-mLH!DhbgJMKym-|`%6eJ*x`9NOE6
zn*vt%=FU{{{ig$W1l$$yT)+zf_XOM*@R)4;Cs+R;c-1}h;G9qtnam>rtBR!7iDJ$v
z_C&x_0nf<NPq<4~)M0$69RE_lE7EfTZ;61m{D<wyf5fua#GEnw+ZnOL*7L`AarB=<
z|J5G^d?aNMu~x(<0iOlb7tuh(7lDqwMOhK$MEFERiii^tFCv48j3Q!1WD^l3B9n+1
z5i6&#Xc3u3I-Df3cm$tCgf=*;)iqXjemvRQ;UX-n=-zHmydutI7m-6mE)ls!Brjzf
zcCrWW;&O@@c7fIJ6HQlC=Mj-t1YO~pYbEz;iO;ys@`-3)%AK=-i2Nc7izp(xJ)p<G
zvI3&}VJax1**liK5-TKPKrT0BQ4z&N6c<rK#L>9mfj5Ek0j6|jB}EkM%}R+VEn<EV
zSAXab?=m9BmS%K+{qaGp_Mp`AA}WZeEkY3Sm57QWs*0#4f)kM-;%gC=MHmCPqc=i+
z5lqCLS8=?EN**OtV8BCyB0?UL=)wPbh%}Z$z0M?J)ONNw2cKuBe|?X{DwLpyOLMY_
z>LO~2ND)y(1ntfk8O4lce9{g7-!*)bSF&0nQbo`?LR%IxdaP0@@~7dPC_)kuCX&30
zWMaMuU4$ayABm|X!RkR;`9^SU8sFzN%X8UJGeo8cOGF(Jb-i4+2uDPkho24k#yoU?
zZzv3C?CaJ)X8b!wo}r$Ig?;&%yQ3S5NGExT_(en`5sgK367i#mCL+EO(V8d}(Nx5@
zBoq<NMLO#;bag2Aorpm@1Gzr1BV&CnM9>L2twfwT#vZi{wiM}1&MKio0gk!1a(^$P
zt%x5)bP%y?0H^Qc+K~c~M80FwUq>X}V_MT_>SJ~ku{>Xuv7Z>tM`V&RcNWn_L?01-
zMRXPMlZfsjdWh&ogp~@6JjR`><(q$j4cg}GDPmnA_gmasL@yDanJ+$}R<+yguRZRN
zML!Y!NsB}b6!Ei&S-FDrt)%&;D~DOPGQL3~j`!e(k``6XNXTFjiFrapsNRe`Jr*3v
z#Dc+JMGO~de*|WU7$MT(&loRaf{0PX3K8Q({4Uae1zMM^RX2ZNESXj3nq!EKIoxkw
zdMO`;O@;U@^+JD$w7nGMDt~+&ab^cc7Ya`#%^_B2@y*B_KUqYXBis}bQ$;%Cm#2H`
zSG{D@L`)YkgP32iA(ghHa)66XAef^Sn=N9Fh@~QyiI^*59!XQgBC4Vv>oS!;{+i7v
zok4H`Y2X+C$7ekKuaY-gEMf`Oc%Kcf>`Q9PX#8Qhh!rH(tiFr6*-8<ssP-F-{=q8s
z4Q`0^troFH1YJP<`>W9C<DnmaW9vw%MC6o^OTq>b8%5j~@qiRS#AdQh5ywPq5wTUo
zJ`wvxY!k6v#7+`DQL;L8Vi}{W*>;HT1#^TL*J_4Mwwv01j_nb#SA_pMn_W4HV7*F#
z10oKR+Kc#?nwI9y4jdBccoQ7<6q^`Qx0`#PGR+YbJ;`2Y<;yQ*N2sFibiaF+<04Lo
zxGds|h?62ti8wFff{58M{Am$qMVuqYC<V@VFjEm%fAmJ~pnAt=agou14}G|cWQN&;
zmqffTQEg+rTCoDVD&m@m+vHCka@R%N5b<OUyD8#jCRS#bkEUiQJ580|B6ZCfB;<~W
zyX4uPM$kaSJrS?|=Kszgc!S_W5s%0xi-?f$m<kc`hS)CRDY>05nO{(WBAyZFAM(?F
zW6!<D(%|GPYFaSxn%XjsMK0%eg(9<_V{IGz-Vuc&K8W~8g}md)EB4J1q`RbBujfCJ
zIgn}ZV+px~Z{9}idcpnhF~TPyQbJY<u@W*!$S5I;gcyld)UYTC(GoIC$RxRHL-&K1
zC|Het(hC3Pt34reo=e<}MnRgSyZt8c?Yz`%60%FkA-O|;4`;KR{n*cQ*(fDIqD;xi
z=a!I1Lb8PF67ovOC!v&t(h}k%#7ih7p|Au<uD8!Gp@0OMamYKs^-%>S)Og1Zo#oH1
zaQRt8LQx4NB$Sl!%X*IPpQ?1<UyP`gFo{E*?tHhOS>Iy5hVQwDtGSGuSQ!arCGZjg
z63R&^FX1Z*6(t-S$yK1HtzxuiA$*EIdm);W@WV3BFM&y*8?h54x`j6I?iAl)04v#)
z=g&m`(UcEL2uY|cA;}{(QNoOQtP;^v*`=+=2L5Xa#U8lIQ-xTX-9@TN5Z<$@5*FU&
zgz>3+E4nFb5I-d}lF(Q}iiBDcED5%RR0*{um|o$OOz;p<f_UClYzmSWBYRNspejN0
z5PGXi2>%Z^JVY$+yFq8`ZQ~sYX%hbWlQoo3M*>Zq*Oy4)QCC7eYEE30okar_-sA}m
z_P!1$9=P9#bP4Cn`e?aw#b*&sBzz;GrG!=zno9UqLURc%Bzz~K85RCjDBBxGt5}s~
zz8)*%^X3ekuO5h`$@J;&1aWH#Z6r+Xz}iV}Z|Hjobo=?tll(u={cR=CZyVLso)YAD
zyDjvE>L{TTRiWZL6+cp9(nAHA6?Bo%m82;nAmb+q-6ZUna6m$L2|XnIF5wReJxLFr
z`6&#M(92^&ZwYJa@qHxpmE4c!^^b1T`bp^jKVJPTVSt2z-s2z%gZ~#_Khd2=AvjdR
zFw!>(ze*S-VYGzdq~|nQ*^7-Jzn6e^->_D%*htc=xWorP@!jrnzeyNNYFssi{?Nuq
zP+Iat(l`lwhI17Dhz<NHVLWMtgheC{2@@quCv_q<_G+IjVG3!*Xhy@ZM1#MFt4mWQ
zkhV{g@N|&-Gc!}dED3WZ%#$#il%$|<j+d9FnJDp+dtARq{Co)usG^$@yVi5`Q!&C@
zXb~a!7E4$nVUvW-5|&C>CSf&kNy2h6rLP$MldL3q64(l2as>O3)BSj@@(QOpj^f+c
zUlKNYkJ_WqS_$h&2_J>ldvJpX>2b^}o~D(Dy@;5W;@cu&hnIe<gl&|5D8Jo%91dTO
z+<_s3YmU#rc1qagMN(b6iBTTD*Ms{!_@6iqN;pKGN=8N*e@i$_8YSVOD_Q(2;j)A)
z5{{5k-H$l`ztWCMsPaDI7_9=5aKei`>A^D|JSE}u|5DPA+*uDl=fVGKyddGC1p2?a
zL<%;c*5$5@RtwPMRSDN5+?H@h!gUEZyezjoc+-PctZ(oocP5>}gIFJpOWc)k&wKTE
ze|CAL>k96BkJMRsM9yErdkG&TJRuQFcq8GhgoOR<nFQxI_L7=*m_7I43sUAx3H10%
z!fOe0wy_-9`3&K7f^_3#lXUiud|h@nbOo2^QN%|HpCo*d5J61)<o`^y^kjVktj|=|
zA<pNM5h-JM_Q05qy!Ouh$!R>7n|(hNCDR^K6p&F+MzoB~GIGkuB_oTB7}<5y*=1yv
zQEv{*<~_#B;O53pcle1X{j_9-66EmWl^d=$=9ZC1M!XEj$SZ^XN&Z+KA4dhoCgk(r
zvVZ*tFS5e#Bfc-n&syQnFC#}ZBNsZjt*?-b!ZJ$9C@s@H4k#+4gjez!o<)^r#bh)p
z&5ycUv$za`R98vaT{1yEpkZGk%E%}yqk@dDWK_w)my_L5DO&1KUUsjkrC*L-;q;0`
zxeUJyCL@99+*NZ_Th{49G$H*PuyvET36CSnPv){JzMzbdjNfF8k&!5)l8n|e+Q|4?
zMr9egjIfL(sz^p{8G?+eGOEc)kx@$qtwKqbQC&t2ipjv%u88j=v!b6OYRY)l$hU=K
z4<0t4Ij?5f66gz?DuY^g>Y7iKA<0m@_O>k&==_|giAz~_zjuSm`&1b%qIgZlTU4O|
zDEg=wGE5nbWi*jt$*@U4GV054WTeTcBcrZY)Rv#!zUS6dS4`*k`?#ACuMfpHpyuQX
zrF#jc@8TQEAlP+law9M1@)K8+zmd^YMsuo{G~o*SRz@?Ku2GBpjw(9I4lD>AOiN#%
zHL!d>YboQ&Z9k1qwj!SF;cniI{jn`8-qiQKjJ7iR%IGJfos9M}x{@=O@q<@OM;V<6
z>5<q$rXgJZ$z|V<GCIq+S&HAH@xcLHkqo{rGG1Kw(Q=gBLs>T&-DUKU(NlIOQrk~p
zOY$V#-o@e!)=NeoinLjax1rvY?6bS#jt06bjY#e<<7XK|WDJ!tK*m5BgJcYr@!ckW
z!RH}bSXJ#`Mick%0&HbD)-x{~M&cvwk}+DwuT<t{)@*Cd;UwG%T!GTQ5i&-~pxLhW
zTJoK=befK*#SfPY@`n!i_D|r($`~hOpN#!7ekZMyu}sEt8Gn+N%9tx-o{R}HCd!y9
zW15UfGA0u~o1^bVi6-pucpv?HPa*cca{srd%a|c!mW<h?ffk!7<8^U%Esj=AuuOH*
z8}OJz6fWQghJ3VgY+?4`d>IR5ERwNU#)+)_<ZXP7wf=>q5*1j}R}t4X@k?YZrN;<<
zW+6VUgYW81K6CHb6*5-J*dSx0j8!sL%lJ#iTGB~k5%?!}_*+d_yPf`a1AXf}snPFo
zYH?rN7QXe~<L5`gO)@si*d}AUj9$y*x5(HkyTh9_p;mh|FHYj<zoJ6Vm>n{9lSz^$
z4Ci-}=(AVZ<-v6$5`V1{xmQN|ZAMhxD&dYm9*}WR#yuJLWgH^sFXN<)Q!)<A_=mJb
z#xatDj3cr;21x!S|JRW<IetSo?&X-Qm8!B!bk;X9!K1MJLEnt!ta~}%X&Gl^oRe{0
z##z$;Oa5uU^24&T8FWqXOaBEK7iHY>vRopD<fr3vBQH}$LxMGy@MekN6&Y8_;z|T5
zT$6F#!*6)-rU!3%@U{mj4V6F*x%*#%AGrrI9?Ezp<GqYWG9Hs+%XmqKBZH2BcuJmu
zoNaAZ_C~~neeTENInh%&l9asGIo2YY4SXB%iWEQwDcc+J#z)v&;`u~(w1Mz4E7%7a
zA7%IyL@M|sW5)`PR*QWmS8$gV3HZLqh)`&~cVOi&Y;RBg460;MkWs<EvsoquS5NU#
z3btI2uK17tek*rMXu=$B#f9iB3SuZ;!Bz!X6~roNK!qrDeIBwa?sp+oK@J5u6>tg?
z6y#EnTR{;8MHS>xkXHe9MDr^sH=4_*KrY1M6sX_xpI5{mC>D%Y@SBx#vskczg3UYl
zLJA5i(9)9&D){|?s{;={`;!9EH}?3u74;QUP+UQI1r-#OP*74qSt?dRDFyT^TUtRG
z1?O@x!oO?E4kzHx@-c+aGTproB51JU`PY#&OktPK{FQ==3NjtdK;=^yQ_$yEz!X$c
z@U;S7p##j3=rt{<fR<Z?6wuEV(O;*&kCy%1UC%d6W;EwjSwWJ5>I!NosG^`Mwd*&&
z*+*7Q!LY7uddXTX4#g9a>^;`W&1x!0QBXTIs+NM4hvR8%BxQE$lL~y^{j~Bbs<r|_
zfv7-IU?{Y453&M<xS>F&l8LaMY+_!%%Xq%YG*+Dp&`LJizItX73oH0<wI{X3Qs5{^
zQ{34ro8;wlb)${~Ix4@Of;q+5;~-yGfi;|!IpnWT#RdWtKI9FgD`=!(go2R@8Y^g`
z;3oy$6nvwgse*P2+AH{0!FLK;C}^pmnSy*%Vwx-NBCa8YgRRO0+7@G@O8Qz6Pj2|z
zDEMAMYX!eNXB56F#CrY^q7k`eRWi0!Q1@qcYh>aN3OXqGQ9)+~9X)P8-OM_9NZiec
z=Wn<sAL6=rk6jgXj}D|Aj;FTJm|KkvzU~ToDEOJ0si3EVUJCju=%=7J3GukU4=G`e
z1hV(~g?vMJMBn6Sm0f@0`FO7GTNYP{-!J$EDi}oMDfm^v)cBf%6%0`@lv)?Xr?2wm
z{>1&$ls)m$$_;G%n@`xv_gWh}oH$UJb<P{aMxNFcj8ZUK!9oR#NQV`SQ7}!xbOmD-
zj8iaC!6edQ1%D_QPsxUIv<y4@RNtQpQaeN)TI>$~Pf!rPS2Nq?(2Z=hClmiSF`7_w
zSALQLRAUsTdPt)TY=(lF3g#-9r(l+XLvI-MxMwRUID|`T=9@$9y~h6?3J@HcBVoSc
z&YaT3$^xRHbJn~Ic$xxROggM!1u;RvQje?46f9Rjj-~nzM#BO$rSkV(u4)B-m4ej@
z)+qRkT0#FL-MPjxqdBs*B)CN1y8k4ymFwRnX1#|~LpFHGMh|WxL-vsW#z?m**sh?E
zioz;(kew=cpx~i`T?%$9IHlmUf;|fMD)@&Sk%D~+_AB^X!C?gl6da_+Dma-nFr}R9
z4{4R%fp-z3EBbcS<%9k}#z#Eu-KOD!BMOcxI6)~DL~Z4c5%IgY<5a>q|6k>O)Ds`t
z$@gp|w`&>a+sv0b$e&SgR>5@zH^^fsIIrNMf=l$c*x&Gc=mL3_SuCki?d%D-tl&jf
zc2&VO1y@K_9>x_O!F9S-E3`8UjS|pU!S??AO$E0U+);3s#Iz{xHmUS(MvKti<Yvns
zvQ4D}_sBi=U`>zm_Z5uVk^FVh01X^HA~BKqsK~71iGrsJ-Y9sh;F*Hw3SKIBMPgma
z%^SzRAdW5bpPkENkgv~2|Gb-ilGJNTu-#v5pYNT5_X<8M_(J66XCD-NB<HVyW-gMK
zME|!^j{H^bl&A<5J{6hPaT!%as`#ZC%b?=U5dOmGnon!;G-EQfV3jBpx$>|~9;D64
z?N4!8RK%#rts;+#tSVwv<WP}QMK%>LkFwuaum{=L{-0TP73N`olMQ?>6|_vnSj5ps
zf64EB&yNv#Rpe6<ry^cOi@$hsO|+1MX0)LqzY1D%Ml(C_PxA#-6jU*35(~x!D$^qK
zhWy3GHH)b3Cnl&Oq@t*bVk(NOD50X9it;K-swkzRw2Cq+`hNERT#x_O$J4TTTKt^p
z9V<PYE30DeFuuw%Uj-FksdVcTcxp~0>r|ChRKcl8P@x_2`BhwviT^hXn>&O>-1Yzd
zggIZc0M#;@oAZ%Nj7+>cBPLNrB^9y?Ma9=DDyv9UQCmfliYh9qtEfQ~K6F2tRaI0|
zkxZ}taX&E&Zu>@L;9H1%O%*9BYN<F8Oc|b(kv2YjvxOTR?d$h2y2RZ0;I52<ifaq}
zxi7k3B~gXswVf97{dFc;B|25qQBhZgt|IKcvQ!wVyTgLIlctK5AN*ScpZ^lKq_fXf
z;iyRSl2!TD?U7OV<BPwZiux)Vsc5XyoD@4bnron<AqlhxODBTIv$G!~XbE@JTYnQ3
z->7J+;%LY{LuSx#zM;KXjj*rzUXFHEG*i)B#a#{eG_+9Bl7y=P8d|Antzxr^Eh^fm
z_+G_W72{O2Rq4_?^it7VMSB%LsOYNVCl$0%zk`a7Dmsx62c?dj>;F+jXBAzD{*A2O
z=ZKU(zW3imce%#hPNr4&QQzE(;_vypspziaNPLxjdsz<^JxLpb{E%K*>!|E{QpP@{
z3@Qez7^0$|ivB7Fs2E6;4E6m?@i$qvd^~LfKg(qs<ngCso&fCu8T-QJ(oo{3iV-SC
zsz}Tipwa1HRLt7pU(_e~tLlz~5BK1noBaN{{=;AVqg0G0fv#Y`smQyKA48V1m8Zvd
zLVzBBSMi66g(?=Q_*2Dr6*E-KR53xtL{fDXlU4UHC7S9bcR_vIw#)b_DyFKKM(o|?
ze{wD2d4VLFZ_W2x;&hd^v9R6kLbE)Y=a6EPGQVK6Nhga2m49RBshF=~OcPdMAX`9u
z4n@+!&P7Xn!ePFCj^JVyOH`~@u|~yG70XClRIH-(!@1=uE_IH1-GT9i_!TO?taexD
z3hUYNmO(lRA?I%2Un<s8r7AX%g>L3(1i1e=wvHGzfTNxW{a<ZVu}KAW2FW|^xgSCI
zw$M(Ettz&WKC8H{Vmmp175|dRRP0o-OT~Ul?=@sMrMcqYL-qdY4}2TFm+X2Jw~vMa
z)j<Cgp5Q?hhg3|@nB^bhz#=}OUFdHW%P+CRWX@~(&wbr>fV50*;%M%uieoCykpEF}
zoP?s{l#0{D=PQgxhEJ0BSjUDf;*O+c7NP?AtFmk>*``6<IThzsT=9sR_dH_jNOnQR
zMHP#qS=Af9ODZmt1PAcp0>P_|*!*@WeQL3*DvJEdz0K;oLCQeBR6_<0w^ZC#@lM5i
za;jt+Dqg90O`hQqyQkuXil4t__lYMn*aHs|@=(R2|KX24<cSBLdhnSCpOYW>$Wh|*
z$N86JRt1AM2k~!Iyd^{Kz+)Td<X}twiOs;0Qvy*RRD2{(s)*3=iOgzP@Kol6&-95|
z#b{)hK9ny`XZC6C0_pvCxC$dewDf{T5i@Ft(vVF<b`6;{L~F>RAx3lk15Ng2)@b(x
z`|EUO3T19ZWYt_r#cFuJf~VaC2X`@Nc6<&EIW^Z&=hM)qE~9~zTpDs~*xQoNqv3WA
zmRF-=26=icv^7LqA=(D`I1OZUU-gd5uc3g3Uo`xxp`eCB8f*=YhQb<(Xb5RY)KFAI
zF%1<oe5Ikdh7uY|Ybc}P^S^#0CQwpCDGlAP`d4c{av%eOzOqzKA4aQ%%WJqZpOw>a
z<<}HKXsyELBfg3nI1PRcOhZuSX^9t6o<NjOasM%R4FQVRuzv!(ID`Ea@1w!<?rVI<
ze`OOp`6_AnT0?COf`-Z(k~E}fsHLF_F>n%BRYNt6R`>D3hlpeioo4ejG}QEv>KYC=
zVdIbS1=_J&-|%JbrBYqAYOY`f{(Kals-bhSV7>f4QG=vG)1Xs0!pj<6z6_P<X~SsL
zD0hum`r^0AnQ%6fFRa1PU}~^5oY=|wmGE`_C3Lq^lzq(qrLu2mcD~~|Uz&zG8h)h0
zHPqEmPeW4;-)g9@p@D`b8otrckl4F~YowvEhI9?R8nV&t8T|~<@|B05B1VjJ|5T^$
z;AmQHyv&L(VBcwIMzYh;K|^zL{u<h9Xy-})tmA9xA(W++hqU%!8xMZ(K^kH`dYQE+
z))i%oOR`dR(y8y?QFGVqb<#jnNN?Br@)QZyycs&V+Sf%xR}K9sUc*lsx{-`D^d(tq
z=s~1vm_L@?2(q5UrD&GMl6MpiUimqZj@sz0Vb@qjNI$RAVltyGQID;xMA!fg12qiM
zFjT`J4dF1$a?d|l!|?uWMIK+4hD@mK8%Dx?%l=zB6$~eB=CTdfFhav-4O=vf)G$iJ
z0u2i_jMng*hKU*`X&9qntcGzKekXHy8n^3m@TVo5FrWRQ;ZF_YNij6MtdPjZ@plVV
zDbtWoos`&j5u?3_G>0`=!xRlOHO$g5Rl_t5(=}|%#?PD=Z(6KJzA9w?z1OfA8g?v8
zCS<mTIU43^bRB^2Xf{T(w{ta|F3!^`ogQuYq48`!*=gnkIyz>NhQ%8G(y&&;5)Dhq
z5;d$O{&aU2gfG*uoT|&3u(p72!*aH!xi9<2z$&6-BwM3lH6bTcE1ys4zk!v_z-V=P
z#~QwM9!ocRaJ_~Nq~1Ya(F}olm-vw{_)S#cTQ;JyZ!6KS;i!gV8nzSJ8V+grTf<JO
znv9Diu3<MRVX43#auh_;*R12)h<(FC`v@P%))e%uAL5Qca=o~vPy7eTN0nwYH(jEn
zYov!Y{G;JtQs8ZT^cwC6xsKsM+FALsJ2M9I7hn00lTm26q~WrLljOlPx^)`o$PiN4
zX%b@fz!?oyQy49c_+cz7-^5off<Ld}0?9OI&{`f(+DLP+7d7nZ<?8<x4OhvJku%Y7
zO~ZBaLfhC)(*GPTF*|bkZg|`%Jdy3cm2!)0ZGSC7XtCd<v)rUVxR?3aeGLzY|2mfH
zc&OnKX{-)a$72moh<F`^bUfAYOhZN;Q97P$c%k8~hIgc>R@RpqUTJu(q4$H(^KPLx
z8XAq{Xg4K&AOHLMzxN36>4?-_Km0+%M=z$%5bhKC$^V4amHVP0!b?ECGqS`C9!@q+
zABfW4{?JT1qIKlc5vL=wjx0KI>By}kMn_g1E3f%zDQt#I5p0#8YKhg6O~+l+Wl?so
zs2m>5ssH~T3R)g>`aPFNN8fcRUuN@pbzExb$~0aFZS8@VxK0J0RzBpX7#(bw%TEeF
zU5O~Hqlk`>jzk?rbrjQ4UPlET{mUm7*HKbODIFy!a<aRtI!}U+c4X6L!_qp+=(u`=
zFRQyd-OB0sBg{A7o=kh+GTr9B(os<duOpy?(~+RVPnA+jYXt_(j;EFI4Yo&)ni5lM
zE9<k8(Xt%sU<P$}R*rf!^rxCNtFMxduXR+{QA0;%9Z5Q>>ZqpE4d9G6sa@Z}s_1w#
zpRc+yzTuh7eInwMsYV2U>%(X5;H#-4MMrHNf{t1`Qgy732%O23khGR--oe-8lmE%-
z%%Tq3j`yf<qNHPc8@8}{v`kf0<VVbQchhJ(bRE5P^wts9Vd!X~qood$h}6+gN4gGM
zhohq&@$({|rsM4uUmYEFb>v^qeV*adW^*m_y1O|j)Ys8KM_Oj4#rm#iW~U!TG}6&n
zM-v_2=xEo2(T~&e`)t&G)>L;Fo>5QsJ003{?pqQ>&MG5E@y&EJ*J+IbdzvYc_U+#4
z#<$YZT1Q76opiL(@x6{8bac=$VI6C$qrHx96S;OezRJhb_<8OtJRKq$%Hq4!ou@Sw
z(>n9E82nL3XG*4{yN)iNhIG~O6RG8+|L?_gY#%)`!PS!<ItJzs(*Fi6haPo+^`v?e
zYg2q5(l;IBsZt&NNMUsRqT^Q`KkFEvW2jf=Kplg04AwD32VU|w;@uq(`4CClPfFzQ
zEqlVA9gZJHBJRW}tZ45Wu49Cb-$>BJXD(YN9wT*(A|_8@qjlVQ=BEYE%@#5`qG+s+
zt=(gqed2!CF;2&vg2CuqRkkhQ|IqQL4%+cYeaw|b*xEnXL>-fK%+fJi$7CH-bUIfA
z({(!J1Y>hDT6}vXNAMN`b8GwB{Kn7Fv8!Q-_8?Q&b*7F_$GDo~*c=^mb<EeXfLI-y
zG><rN(Z6Race+)ORydq55?H9?c7L{rxc3)(Gbetrjw)?@En2%HtIKpOC(REdOBgH2
zv~^t2aZ$%AQcE2NbsW;MM#o=7Gqs3(!YO_&u};SZ9qUL9DrYSB+5g}uzmb$p4QwV^
z?B$|vvrRgk5y2BetBbEk#cv}u*0E2=ejPh>>?A=<X7u~FOUG^<dvxq29{$4r{H12D
zQ>lbp=)*-U@h{8G(`Akas5z~Cv<r+@g=LL%CH}XL!#a-XIIiO#PmUD%FFAqVS=>JE
z2vsqFKdQUKq4YIbRyTA)$4MP$b)3_2iqxPi>$;UYqvJH0Oo?FQVu9+B{1qOf(pcXh
zf1WIBC(HdUUm_x&t}DHy<Fby|WX?LSkV_#)r{kWEYh(+=Rj>9NB(i?4zq(0MYsLrC
zVs3fyG_6LF6z+JBIYW{6bvz(%uj2{%e=qWp2QMf6|4!aTwS7-@Jk#+~$1CsEb8-{|
zvb^x{{}x{**GYd#2fbd3phd9NRz$tk@lHoX7``yx>-a!gLB>cP=BfWwnOYyo1`qgY
zAwiuOSGVaWmgbed=x!gj`FSofj0|D-OA!@D|5*OnQ$DIL%NTa|n1`;phL*{D8|^{b
zlN%F8)-bAvQ6r4lFtUYFB#feAWDg@p7<t3U=cUXUMy@b&Q{)`(-7t>+rs&(3CycgN
zc%y1YGWobL;=?EqM!_(?Dik%YYDR>SKaAhrvRdC|d3}Tp?dl4;kXKq^D*5UETm7zd
zU$HQXhY<=RF^m#kf>L3W4x^-pQ?Bt5zA|By4I>bylVjbr9Oc4TUf9Ql@$v#!-b+@&
zgI|SF@qfAQ=Bi046T<L^L7iphK|=U2=oKMqJr)e($BX>$5qu>oxd^|gdd4bYd>uyR
zu)A-f;laq^jaX6`1gWU1VN?s_;wgV}7zcu^OeY`VH$#D%VWfmn&#Sjq7^z{HVOU|*
zrW(Ug!cfC#wx1KjpjE6=*d0hOcRM0u875Pjt2LMX%(O7{FpMy0wey;v`Nx+Tt+5GH
zImLt2`=0x4?6a0^^s5*<j5=Z5yA*jXSAr7;_OUeLa8z}o?VnV>E@{hE_9pDBA4Y>P
z8itV`M&mG=gx&EjIuPLbQ-33BOZGsqt|@eG1FgCGCXA-U*n^D5<Y|<?V=-SduN7@Q
z*xZ9HJV;fv45O8YxAtJ0Fuo6?TSfOe2IrzH&30k5_g?+r!Tw=%@Q{ukqy(Kj<VO#7
z4x@{QboJm*9_$uIcaq>Dcch~0PkawAvZn`od9ZgFeLSSE2m5)DW|QBfy8`+-i~(K@
z;RC}M<l%!oIOKovL#Y)v-5G~pi4`RMT=_fa%0D8Ekzq`lgUNF+DvZ%#H0p!Keehct
zW5PJy31>QCY#8Ihv?Bmh8sYaa{eHlo29}0D!x$gN84G7EOdt`5@vDL11}0JBF#ZYS
z-!P_xF*S@`9u3o|K+ZQij5*%pbPvu5W9I)ToaG@+>!i;OV_q2R=rN4>VJz_CSBA0B
zLl$|Eh6JfCH1@kVj3r*oQV%Zk;BpVH@L&NWGo@S=#%k|z4QaTCq_lD8(@RFMwPE+{
zO1j`|Ll_&w*c!&RFgAH<D8ZI6HvbQ&DfJ7*-Fhi(4`W9dJH1yQTDp<#zPQRz-SalP
z!`S1!s&_xMmu%#IXkQrn$$Y|SaW8Z*On+#hzscf8)I1cX{rjOhBWhBb!{mq_gev~c
zAECp4$dnA&29AYsoIYv>Vho%J<761O!nhsAsW3Vob^lr~5o104j0ew#aW0JWWCBb1
z3uLyWR|Nyk&SW}*JF$K0BtE&|K3B~yhjAs0t6^LV<9Zl3!njGk=&?WZ`sAd7{CB9?
zvo%i$rTphc${nvQFUakX4<Sno<9-+q!gv(M<1ikEvGz(#uXC}K{oA>2_9tOHC8G}G
zIl0H9{sxP=F@^cY;ZW6+$yJ{FTOCNAzlncEY!Bm07!d~Egz=Vqbr>JRco#;_y~*#1
zQGw(dky#11i}3_Mh3Pn&WD1{2ffx8UKjR4h`(m=sK%{{v1DOnDFi?3zR7S(C^wIj{
z;l~4%hNwD}GaJEZ1DOrC5Q-;;G}%`(tASVpl?>{qCucK|-9S0R{fOi+kkddR1BDIb
zGLYLq9F=JxkM}mOfqaHb-h$WuM=f|NuwR|@#A5*%$Zw#4fr17eZgF4bJL?ij#88dJ
zYG*y4B~ZjbQ3E9nlrm7vKyd>l4BGb{O|K~B%C&6eHjcu)z5db$${4N?%NkhQD)h3P
z`;+r>E_-byQOV^ER50+Bfr<v00p1|P3~>e$4EPPuWye(13Eq_jwUne8Fc35lGLT5@
zTI}z7BCupjGG+0d2vFkIxe|utO8A<%XCTQy6$7aTY7?&vR5MV+KurV523jpkuI}+_
z!HK|)69JL}6+-lsYsOLx)FSRRW34VG$7V<%-U<dp1DXNdfMh^6pcqgMyg%X(KlYzI
z7NBNQy`&o?O3D~EF!>jsVZijNAhM~+l;-B4WI8#J+U^+m-auOeX$DHSPTe(+uVbLD
zfqDk&8)#tQTLa%2XlNkaKobMs7-&So)oV63(7Qn}1MTIx6c8d)i?2vlXYx&nn3?>j
zYFT}J@}xTH%?va*(AvO^TA>yOT2f;TTz=$_9TD2PIQif`jxzR153a3~-o{H)seZ8K
zMXsHJ_MS@o;=v!NA_IL4bTH7-Kqmt~8u-aTHv^pwbTQD?fYC1QWRav1QAx|b(B|KS
z41Xt|K9StrKo0{w4Z2DLQQw9t4h~U*w34axw%`{oB90N#*FZl5L%oXn6N?NCG%&~j
zy{*tLZUAX)Ow7jdSt#XT14Bp^=fwPy6qUae-+61`ul30Uhk1E-{qGNC%8BF=21Xj#
zZ{mQ7Q3gg6yG(p-;x_|h3_Kt;HZaz}ILc^XgMr^k&AdVu8~D?}cw&WtnFb~pm}p>%
zfvM#GNseUEax7aDck)28@jfu<IahHS_xx#AI!Sw)f$0V)o+39^2;4rv%`!0Czybpc
z4a_kx*ULW7z{iyw<uy~1g_>FC6F>7OQQ!}!yj7wo7wN+y161Jo70F8sEH$vqz;Xkt
z46HV=g6v`%H|T8iN(1{Y2dFwKjgU14?v{`Liwug4>pb@#4OHej137}px2AAX6u;5H
zCId&vDh+Hlu!Z<z;DCXx2DTa4X<!#w+?u%U26m9j)n!x>!CK|rX6`nyhiW9bJm>Zr
zbogyn={QespRP$BSv9%&ofxY0pn*dM{xR?`(QklAI_#x?nKwl3B_b&q;b~l!lshq0
z&M^bW4O}pAk^Dcg&cGQ1XAPY4SajNh#2Kn(&AR06Mfr0E?pM$HDpTxvBKT5(YNXOy
zjtE^MeKv51s>@XUih-*Jt{b>vfLeWx%CDZ4(opzra^g(`+gB&wGH}}fv3KVsw^-s~
zqaz&Uy=&keabOs`@8zN@mQLX)!6O5Y$(@?WX5xu~r{p0gB}STfX5hJjw+7xBcwykB
zfma4zlQJiU68I27WoLAcozZVdXS_f$rMB?z4SX>0*}xZSpn*2!<3Ewl+``ja8q#hy
zkK5cU7-70u=+S4okX~h68tnbnPxWRnk<mnyiA*M<O-#Jtk1>(i#KOygEZ*bmQ(XOP
z{<bT*{by3?ZB`RG5?mxZAtuV1C~qRCiCiXaT1R0MxlQCT0TcO6<Ta7cM4X9uN|2kq
zNOb?V2R-9z4dUq2MtIKSfdVGoYm;;{I;Nlra{k!^$z?Jp9o@ziF;Ub+DHEkl6f;rW
zL<timDcs=5V^dM&8_Bg6KM^pG`gf_JGDP<J<g%vwxuI_a74`k`0F_h0#8)PG69E$y
zO;8rU2RRc7CdjMP_o&0MK$e?sY0P`o{3=g)&_t{HF(DH~?V^!Ui6-b<Oo6JdY$C}-
zPZPaN_aj)vL>&`#O;j~e%|x<^d0PUFPlW^%)lJl(wwDdmG?D7Xr%-_&a<W9I%9lV>
zJy_d&yt^$JyPXqFNG2$+Y{E9-m{7b&icw8y9<Ki{ChQ@G2Tc!JCPtp-C^3Z|Z@4Fq
z18FAYwTuR`>zO!JC%uV@Z%owp@CGItny@Z#=_VSHm@aS>HYOzt*{U@*(S33<JvKG*
zt%(jMI-2;-L^Bg@Onh&mIq{kJW1_W*w_UlfOS04_ftJ+9CxPN;nHEf@rj^_ioYjMG
zYoeWr_9lLyjF0`p3kAk3<`2*0<~;V7tra*|C{SlJ*U7|>q?smuGSS%t<?Ui3m?tv(
zlfd%T{`PcaYuP|I6Rd4qcN0BGwekk4ZshMx52lGBBDmxmuD6Lko-CG_=xd^%iSZ^T
znCNffXA?tB3^Osn1Z5d$Vvq@{of<xvq;oV2(J;iMPhqf~5t8^o(UbmPO#EtMjES+N
zlO{%(7)`F8%G?zkNyU~Alsy$1W#ZsVj>4LST$jxpo5H2&!CMdg<4pW+;tvylk|E3v
z1}<<E>_UN!E0ViB4&>YxY%qqOXwtzlp&2G-nwVr_viCT}#5A(OJ;ABo<2t8Sqt`q=
zPABQS=9hjB%rY^XRE6}Alx;FU$E2N%{9F=Zp_*oqq~wL%)RTb)WVt35nON*`<NVrW
z;!o}yj9v0mVhXvlS6gagnTh2lR+!joVw;JTCRUmF%fwm}t34rpDjT_m8n`G(0`0Pp
zqwMRbKogrxY$h4K<Tj9VFoGLN9B;TynG&e^6<;%=fnej;+!oTt*KYiF6FW@oF|pUg
zPLJ)oOzb8_8pKW59VEUjJIxV!*$?r=y?vg5R?p;)zo|^pIcVY#>5PT87XCJInEZ@|
zTo(Q@@vqmqNDD_y95r#rq_JomGjZI+ITPnioG{UJq5mZ5xrwV4d{54?(<aW4aW#)V
zORzG3xp*jPR?u7&>^~^6<w@>>iHnrd#5EI_Ok5@rm?$uiyEcXYG=)F6Fi55Sx+@TK
zgu71P{rmw6w>{*BiJKmB>wobx3ndm`$WelOChn70H}Twi^}xhq6Oj%1hbA6*F@1Li
z7cL6s6%(JBcxr+wx<8ZKSe)kZxfdp0QjCeuCSH+;BnM80W@6oOF6R@jcb00E3nng@
z9(+e;wJY$RTuOZ6qlWwk6TM$^6h3-LcQN$EM1+O=Cqq8VO_TXNqw*K;2~tc2+Q-qA
z%U~g+g(wS|EJRz#Vj;#tW((BVI#t++a`8Jyu}o)KRtvEfsvt3kMOQflUtjZ6z1b{e
zx7>sJr(JcggCS0qj8DvMA&-TSMT?e^*K*xsQ47T^<g*ZGA>INk6tqytLVgQ}+sAEb
zA6LLahP}b=SGd?+emaGi?t3ciWh_FJoM%)~`r_dGcZtO<l(4{ANU%`SLMaR7ER?rU
z+Cmu%zP6ENEznH?Pl_bgE8w>DSeamsUBRq!Yy}HnS*U1%<U(`~*%~A^5@DqaCHgJ!
zGZ=3nV1W^lm;5VFhKQ1<xs$pt@%P)3F=!!mMvz!n$->tb!WIk*l`SMuyoK7t6AM)>
zRJTxrw6t|(HOp1JWJ)kA_}iY~{3^^@?5}AdM`xBoA|ML$1p58U(OpshRgr5)P_Q6c
zP%NkxUYzIgC5vQ1w(v4bwHY;o)ck-is9Dg7)GZl_>?_-YgX0sAO$)v$9x^Rh7QVIc
zodw&1W1+r<1{TsR)Ui<4LOl!AqRU$X{c8rB#Z)^khDfEk?-EI54K1WwXk?+Wh0Q%V
zqL2)MSVZk5K{v5bp$cDo5BrArwud$K;MosZnptRWp_PT!7B1`vwIC_S@h!<JuW*fW
zHN09l@z!b9#sXcEMY14)62s|shISU(TbONOj)fmAbg=M;g+DFOeN`PT^s>;~LMLiM
ztJEJYbhgmNLRSktE!?>opzxE0ZWg**csnZi>Uv=83BHGynDBG0;^^`Eq^y*zkA=P#
zej)9((9c4D3j-|-BI%@N{fmqJ*}?#-_b+aY6yWwGFZd7~Y+;B+vuqe<q0Q&ehgZQ`
zw*vqC#QoWVU)7!;;4sYg54SLanqy&%g^?CUk-}TpHXwouIr=8JX}!PvQT9)Jp7M^h
zFwVm776_pdNK!R#an0%kshoG`x$&M#Pxs&i3ll9&vM`wtF?QrE{}c;Ti5mqYr&(Cm
zJB12Yp9UzSbciE3!^<_(gR?wH#ZsDDkNLS4R#{l>Mb5J@-@*b53oR_7ax5&ju-L*9
z@&Nmy>J^GyN@8lyuk_mZVYFMq3Q`XX-~7duyd7v<ni0Vi?i}RSSon+dnKZlyx7NZs
zYO;mxREvcTq%9V<kPY4rY_zb+LZ4e4(M-Ie5VJ6u+sRR*wvvG})^Q*=b8ldWg`F1m
zS=eu3mxbLH_E^|U{G8>N-v=-F*`VbqBp1p~>F?eO9I$YP513{7L&Qui@gSM`QC1=*
ziQZDf4^t~F{7cT?!Z8cS$u7Qg$I{OiiahF3MfIMraMGfCoN<~w#!k0I+@8SBQ9+`a
zq(%+D`Xq49!g&j~Y}~eS!NNrgEp4>2amm7E(is~yY+SK$)#GhZ8`mscCkrLRv~Yve
z_(9+?ne&q5n^cH}+oY@HLq>*P)JdmTcZuiZDlOb2EBhSiSTDHo4ENB>MQ<NjpvS%^
zl5g{=`}kBU<Oz9|i?yCwct&RXed==yuUgjp_kJMDpwKIe{*d9b5ozNMS>N}e4;DU>
zEqM4l53X&N_?~3FoSQK_;S-6zM)YS=!i%i+O}~6K<%@?$*lx^&d%?Vg6EoPzXd{n}
zyf&h2WU}$@Nwu6dqHSchk<~`5jrmRZEH<2%)naVyX~NUv&RhvETZgjQ$ZjKtjd`Vm
zx$34<%#kyGN<fd4hRVt1m6qFs^fsT3I2-*BhpyKS#oK_5f;I}-`1duJ-$r8H^a5V_
zZCZ!+Oi86jN?F)O5!-Dk#e`djlBV%JT7`<)C~l*KjU^+3Wo$f}luAfR8>PIM(l+YV
zP5(SG+1?W>YonZv@-`|^`8F!q_{v5_8-AOvn*?VgWrIJ#D}fO1Rj}uqAR!cZ8vz?Z
z8{I~_G513uLPB18dW_ti`n8S9HmcgFW+RDG&h`@-RY)|uQ_t*5rbkMaY@=42RDy)l
zTY@zSx1rkz(<|HkCJHu04@vc4Z5tahCo~)79^NI{(7Z_5hGIjtktKgjp7XAT$31mF
zTNGmN#TYhB8;xu<wqbec9UEyjY#Y0;M$GEsj@j0+=@>NBx6!~xu^{SEQTN<(CS^|O
zal`%kH?)!N<=vk>^k0^CU8*(lVw&3c*2Xs;{^_op>pKr`?!jgrq{zMNgDpIKQ75-X
z3axE)w9&~%8!!HQ50W0Xwb9N7A?-c*18LylPzMrI4LZfOLAA^YKYA&r*_dvlvyCn`
zy4rN@WAe{72H5zCgkqz+jUG07+vsD{%vV%Qm0CS*8iWt74+ndZj-5;<q_6j?zgJp6
z?=2P5rEWUWMkxo{7-VBK#oHKcV~C9rHm1%BmN*$0YU39hzuFjP)9R66mK|(#-E@kd
zvXmcAim^92hVgZO;78gRWzz|e$&`y;HCXB&V`Hq1i8dzL7-xf${Xw=yx_UD3J28K$
zp9u4HilWEyHYV7ZJSLT5DDUQzfyp-AXNOy5Q|K*)sa`HB`I7DyKEuXL8;5QDV`G+$
z*)~?%SY>05jX&;%mex&QY-282qK*5>sq<|tBrCWdT3}<wTaHG{U)~Qb@?yqZ44j^n
zvc$$x8`bNEmf2WgyMyYKU^&^NhioX8^>%#fY8z{8>>@3)@t2LYHnvmK#Kd*PPaB(T
zY$jdxVg_yEHj?Ko%189!38yq$Y-}a%eZg(>;>Y$*yfQKI@4D%CAJn4A9p0;*<Wwgn
z2L53L_t@BLW5109#Pj;m`F~B^N6jf+i;(X}B_6bKh}hmC?r$4Ueshajcz{bjl|pZG
zj7j|0#t~1%mu(!iam>aU8)t1Cw{gP8NgJogv)$mH7LTm9*d1!f-Y)92mp-LhlycL5
zVg~>6bj&#$=ZRFCZp?|In2R<jJ*A}dm#CZ>{LnURSEi&ZHm;IfYG=M?<GPI-<N&F(
zH?C1oT{pdADY2Fz;f{^Fq@@meIJiebvC+iAHx3?nY4SSA=iniE9`Et7jkn|^sdZGZ
zjb}F9+=N#)UfU?3#7=k?d|~4ydEh^}^s-exhmxB=3+BHQ<5yzekZ*hz%sG<3TQ~i^
zjSn_5ILPSWqm55CA{_V}TsRZ+*+$#$kzc5dJ%b5fhp3SMaxIWzDL&Fc^X0)WFM?4H
zGC9cMpyZNZw1dnJVjX02ki|iagW4~GSsjdC5S+TrPw=ah#O|9@2`)SA;@KSpR=BTL
z?+)ekO339Pw*z{c$HA1b$^NH7abb`i;~d00U=DZ(aFE|YF$cvR6mYO=i9f1XVqpgb
z9Tajfrc^53ZMr)(H2xeb;-FI%He|NHsDpto{e+aDS{#&fP~O4(Y00G=RQ=$;^tp0r
z2W1?TrMAQ+QT$hOQn4leAEcBD4!&~0IY@9&(ZP53-MOa&HzH_MnUEj8cF$YzJLsC(
zotdJ@fP<g|(ShV3<RH;OH3!KKu8vEr<RFPyktOMC2bHNIk81rrHjx7Ty;LDG91xP@
zNKJx!MkU_5$ErI>aZt-a4F@$Hd?^$BFEM3oF*-4oc<VrL=(rDVbqk(i?3;n(vpLEu
zJ5U_h4jc!n1I>ZyVCCQ#-9gv^6;i!t4ApYsMu3VkyqL7y2~>#XVB5IF@}m>e9Mo~p
zz(GR?bsf}mP~QQSoM(9A!N{aLV_k&8z|o20_;_ksy4S!)9;C;{9#w=ib?~i&whr1k
z?q};e(isOW95nMDDW+w`sFuXu1lFfEzy2s|<>9S8*v5nO>U-kAJ4Q%*2R}Ht^TprA
zK?et2F0nJ6SVf5^q$3I1i}}%m6w}#5miJEV>bMsm{^THQ^&o|A9+DEB(9=OLvL*+Q
z9Q1b3$HAsO(SJMW>!6>51r8QE=<m__8!458pB)S!Eg~^F_|?I1$L+Zcb}+=jP~zbp
zx2r{6vtbTS&t+#=;1??AU(PoxNN|LMkq$<Y^hu_L67#GNQun!JbbyctVkne1K-tGS
z80TQRgBcEfckqXU$z%c!{v`9i!cBBA$-#IB)VrMEV8yiH=s!8qZR%w=Sjg2Wm`Jru
zC0}ulQG#g>9`6k5G%lg=L;!WxW;&SdV2)=6v#236f>(R+a~;rt(mXN*2h{DN4i`mI
zZ;JwTLKit$O!`2~DIHqkV5x(3#0|1dhpt({DhI2H3~G4m$dx3}m})eD&~;jn`iay-
zq@j{E4*qhm)^Yp4M8lbhwVrO{=*k%Ccy4g8(ZSQmgw14A)CKUUnvpy6ixK?fsoWL^
zTgjjbBoh6NKUF3r+3sM6gPjg`IoR*ufP>wnjSluY*hhw3G?BPRt)?zB4a?AwNc6NI
z4Pu-c9d*zFm3fFnxhQzzaiIPkKRq5MeQ@wEna1YeNe8DK9P#j@9;C=)9&+5liT}l<
z><XTCaK^zk2iF~(b#TtXB?p%soF`XFBD?InNRA~w@kgJ_ZR+`wx1qYOIM5$uN!gb1
zDlxeVBk2&IsYidq!Ngn*Z<8`RxalCnqnKL`qV_QAK3_k>-zDeo;6BOSlN8CK9ujF(
zhgv~x6pJQOm;AAVC*%OrP$CUa9XxZ8Jq<b15W&YjcktQM+ZPUAI(X&awS)H#J~(*e
z;H`sq<j0m}E_#pK^C@udh5uk4KJ%|U&1XF^GJkaNi42EkyG{paN{gn(a+FX0;vgao
zzBELpAu0`-(y*&@RE9KUOaslS(S#SJr0g`6w((p{bQ&_JAxj$GZ3$$Y?!FyaGBt*X
zd=Q{%xU6Z2O#>kmvZaBlCM0JXa;2eQ+W*mXC15^P@89}kW{|D%u`5~YYre}&48F{m
zY>}3`?+ZmJQXwg#lt`tJeTkG^sbtF%k|n!{h^$%Crj7oed;EKz`<&;!=brnXcRS~v
z<$ceMx`@gmy;Y=DL|Rp(zq}r8%VtZcCIKR6<>BZ9T3u9BL!|7qSt&DXNvJKMj)c0R
zBy)23y%6xb>(b<iIrXJzx8e>7zpjsVD45egLPH6SBs7-LL==umXe!}O33o}+*F4CH
zeD8UUY@XP?FUDa2#|F*Bql0bI2?<FFYgMdMk&^h2a@?ulE(LiK?w0VhjDa$mOK3qE
z%J`p*d<iWj%#<)oLMsWaSw_M@iHEwQjRZ@AEupQ10txp^ctAp-gmx0TNa!k|NWwi5
zI!m}$!VhmJxEIWg-S!eXNSJXo)={LLMB3zs9Of+AlRWuBPM>y3?tR=RMf?8UC?YL$
zXOG0VJ;_eVH20Sul<<%QO@b~#k|0Y^B&e)?cTTj!@^-ZU&RQzWi*t*FTkVEKH~2E9
zglPp?jc&{5CN+0DSjLgyO6VowQ3;*|Uy63sACYjiL{=anl+c}g?MspdZaVjnqAeAQ
z^kIo-N;ISE0@HgBm+L8^--OtgAH;e~=p&)OgeN5QmGGDZGW)m`ZKl*dRY>0n?$q=X
z%360IhnWK;JSpKRR^6#w-34jxZnI3kgGma3WU!(^5>KziOA-c4ct*ky3C~IxCSkaQ
zp%R{>F6d?;fdU}`gh?t>ZjQeoVf`CrMv!Ykf2Edb?yd6?FFGNNlJK&Gw<NqR;S~v^
zC5)5sx`bCHjFB)_qOTyh^?!4Ro${m%>3cxpN!}Y0-jvYoOy+nAFMOJF+p+|A>Y0)T
z);mGML<v(QOcg4dM7xzRSwiy(3GV)1IF*xirFCjujQji3Bur;JU7kHd2$S#5PNv6B
zjg7k;C#u;J=1ABrVUL7&CCrtuO2TRh^C(OS%h+r`P0yF`K6#h0NCG#l+J%`PNLWB#
zF2_kNx4OpOh%J_|M8Z;X^jrotF0G4EBiDX!om)A+?o!Tj2_H)MNWuyUpGlx&#>Z@8
zbK{>-N5r!yNg=G1aAIaV!p3LmiKFrev)JG@?bb*rc`~_$;+h&;D`B04&na^Wn}|?O
zOIy+#*n1QvHnIy+O_n4~ADb^EY?eR=jQ187?kv@2^?-I;C49-gMZ#ASc1jp^G+ljJ
znywVvCG3zuS#_S5&RvqG!R(UowZJ)SWUTYvBrR$$o3n%;C0vxSU%~+i-%B{jj!wcM
z3ExUMD&ZRmG=swuj<BK+VzdO>z->En$pvM8jG~k9orL3*?dF^>>KEO;Hcj6TD)fYe
zs!Jk2nNw`G63$3CE8(=Dze4NciOMCYChlyWlW<<b1)6b~-91)F3~a@0s(g_R?UIDc
z?CvD|CE*JDRSCaP!V(63RQjrfpC#-%o=G<wD&>uJF~0Jfgx@7xlkkUxdW$2IqdN`h
zB+FDQ<;F(+w}gNA?T}Gi2I;&m;f92NX&zT2yQ0z3!s%IbyK0t@QBp=JIcg@{lO@4y
zVr(h*w2g#NMn+i~rX2O;88R|uG?CF%MwX0nBD1cH@-iyOs3rq4Zjn(@Mim)VWwg7P
zxnX0nl8nkSetsd9@l0%5)!cixC!Xq@d#j9>CT5gbk-fKlezpu|KA)GaE~AEw+A`|M
zs7aD8#urV>t|e;W>-`p|N=}QhJPUVkTjuDb?0RHP#_cld%V;2@p$t|rt5wz=GWe9Q
z^R|(U(XFx?%W&+ntY}83hyaptr;NK~6p~08F&WL+d&_7kBS%JDMoLDmjO~wPCuCgJ
zQ%N!#B=#$*l$ts=CO1z;>DjU7GFp(@Dus7b8m9{huuN$^)#H=c$9k$2rMf+<jf}Q3
zTFXew7*n!YpLNNz=VN_mCzLgrz4A&I+(erlUppqZNX9)f9+Dx+XfLCKjQeGrP*WXc
zbdu3kl%&^9XUa-O7a2wABD&>dZ%P#EDLUKyx-l^-GwVJX1*+Liq<lK;)4~U2JSaz=
zJVjk|Uu#e(%TQ!!GISXumS(FmPM^&As7W=Fy+1on%E_Q1<JzA&1W2kSgl|)NGF%y+
zjK^j4li|w<Wb~5psEkks=lh(VcbCCg|EERmddT3E{9!qo*YkQr06pbsWq`N6W%QBJ
zSH@!^pCu1Y$-C{l7~dt#$^Nxh^7_koLdKIao|1WzOgZ8oAYNfDEOXc4%#sCJ%;`2T
zbC8U|GHNNPt>76MLu9Oxu~x>jGKR{SAY&r!^K$Gt8LtXno|iF9#&8)g$QUK#Wy*nM
z%XpCnNjtw1t<sM^n4Dj^*}#8eC#I*zcg*iJJ@$%>uexWCmhsuvSpU-bEH?IBGX7(7
zjEu1|UXw9S#&{WT$#`AH8#3OM@$rn(pG=D#I>ghR1h&Jm%~j)X)10=)m>=(vJ$qT~
zm#wi$G6>9;F-OKbGA2{q(_>R)%%oAN@u@PV$(Szc<y$jkJhwG=reB_MGD>I3*!FMC
zLO$VlWz3baM8;AX^JKgyW1);iGUm&8U&aSA7I3(7IQC<SWTjb&Bgc|o?8|9)B%+N}
zJ+-Lpm3sNSUCc&QzS(P)n=O;EoGi%rM8=0~2&ZEo$ygy{>eg8ORdEtlVM~%^x8jsp
z#!8YWW0j0VrF?Q!zjT|#iu9|6(U7d*wxZR7!P-UT*2(x>#yJ`1WvrL6LB=5&-^kb~
zW0Q=XGIq)MLdIq?MQPL0E@y6$u~o*GGCGdTJ-;{c<Y(y>7n05IPIDBxUB;cI6C`X0
z8(L;Ql{NpRBHn&2W4Da`GJPAcN5)<mQ*M;qCxcq6cpz43XaU(IdE`1#J#q`rI+uBn
zmR38_b4Tp33<~x*xt<m~BGPZ!lL+9LjPGQW*cM}fTk9qd?Z{=B6EePM*Ec<OQpPD6
zKd|J;Ts}Q5;|wXkm~&PJZz)n1esNFE(lYtHy&&U9cFPJ%D7Yx&l8oQk;$&QwafSV)
zj9+B@L_3jDseg8dqH>!nH=}lTejR)EQvB?y;;r5){;Q1NSnrnPuV!NQsu)%Ihm1dE
z{3GMKjK9c!<MiL`*^b0mhAdMf<oAY*e}&MBDWG{%cT^=YQ!JEZNd=`8R8&w&L1_j5
zQ;?}3OF<b0Wff3j8GJOffR=OmM$|5->*THRatg{TsG#5$1z-J`WHHvIXU9piaxl7G
z`*W<af+`BK6;x9&?|QPTf?E}^_7^JTC+Z~Uc1kdF<ck?lP+h?{s|snKw4xdUt|?Ns
z2<F#OP**`yCHfMLs2Q&(fZG+^rl9fhIIqcr^Xe<OLqP)t_tuOzRM1F4?$}JiQ2_-_
z6m)qzMtDqSR+WBn!o4cQUz;6^DQKpkpNjq}aumcBe6QdnxmJ)=Fhs$#3Q|O+z*FeA
z#vKaWO;ifHDrl~tg~An7v{jI=VC9@xYXu#YR7;XkA)lK{trVE?_|g*jY4MZ=YPLxf
zC@56WQ9&mK?GzM6uS8o~XRqblqoBQlXw&Ul4)+|J$f=nR#rv#ER~Z~_$#o`c3by}S
zj9YBnEaNsJHx}<x&`p7+Kv!_Tf(H~x3S<Q{Kh1ei!9%R2Ro1xWX%>FGTeO3zDBKwV
zH|7RzF3s&W?x1nyhns5#Nmbw|==oDJJ+zFaaO{z?sklao<)>qWNx7?lF!x4DPasr4
zbv&jZRM1^P4+Re^cvL}e1xM<Yc!cWcnca&B#ar*~N^?(^?C_O~b7Os!Xpglo-<4Az
z{+zst_HimgL4O5LC>W?<kb(gUo>cIZf~S>e^N}=gLzdL~r;{X!JW>vW6&_+x{29Ko
zx%Bl@2_j@BcQ%JAc#e-)yMpHx3{x;s!6XI46}+Hetb*4Rj8HIA!OIF>QShRImlTXr
z@Y|?j+kZ|bucxSpr{Zz$0&_#N=I%11sjt(?f>v3t3f{*k(Z(*XD?8HT6uhqBEhXCh
zd_%#T3dSo~U%mt>;Wi~{X3E`L-oDMZ6flP@Uo4-`^c@A06}-oWsbGqNsS0K(n5|%%
zg6RroP?e%y?kPvFuZZ2UI)e)3i+``roulAgwk$TEczo`E%DO3mM>i+?{hs1}>-!2m
zP_RhBVo|Jr!)gl@EL6a))yJE)=EX8g6f9Lxyj2zj$XbY;Lgqf{hYCI-wF-7ASfSu!
z1sfD>RPYHUpkS?nbu?@RpD9?SV6}qE<DyMfzRTK4Bq<^CH3~?4@P7Jp%0xl%V`k?&
z%68fuDV?>m%q9h2DA=mtOF`jg1zXq*Kg#C2R0MaZDZOp%WN7>fb_i*Z$ocbg$TbyB
z49hp9DblYM>{jqC3tUd@QLtCRA@(5(_9@t};DCaI6!QEW;$&gA2(~N|Ors*Hr1>!I
zRuFJCr-=B8ob83EjtYdw6nrND<{VdWf)Xo{AMLr1OPx~i13MfQjaB?HKXF>YRW=`C
zBxe+yrKlC0S8#!SzJg1n=egp;j})g%$&WPA4XHy%5_HbFtl%dF+xC^b!anoUROWXj
zxx7XX4K7RmqTpBdqH46p^_zm<6_iv_O2st=e^9mx{$X9mi~Y%->d#_-v7c<2;QHal
zIk{ZFx~|{`HLIe8ihtRkABop~H}zQEyke?wfSC~ac+fqAju~9&<7!@MmD4d)Qc+n&
z85Lz!dJ7k$hY!~hxd@h_f=iuE8s=uI9HM{#uW|w?FVYGky+uXE|DIm@v!IHKsw!?(
zQL9tAU9lwB&A8+>FEiRATzVp>nhL0>uA+vDx+?0asL7HlYO6RgHTB@MXl;|OSzN~C
zZ5=goF{(iS6BW0ssITJu><n_sGH06>>a$XJs3^H0)j$Pz4H}A+!1XH0;k}BQsA!=g
zUyVK@O;y~f;w}NlxE{xnDw^>Vphg;@>q}fbqCgTVxZs&oK{%y?4qdq_LklC98+z|F
zS3%dEL-WdUHIfyzRMCo0RVXT2t4OQpq@uHmHY(bxxJN~M*1I#KKt-X7c537uM7J5z
z!-d}>6~pGHc+tD5gNmbBtvjmN^?fle4maMIdTd6D?BA=Ri;DYIJfMOC>8j#B72O1>
z>CGuhl{%t>7T0DURPp-b*$=6ZL@ivNrE63D)6uFU#igpyRCHI-LxrxwP~oU>RhTL)
z6}HMh9F-#~ih|3V2WF?Z{>&v`Plc}{R6(byK#i7y=_W+49-8Ql>Un2>joj59COyB#
zdZ~C+#Um<us`zYff@`7IF2{(lw~9V09;aq&=W&gfVx)^#Ulos0`y*n!xYAC9r2h#O
z160gaF;B&lDxOj?TE(k^)2FE;0dSFFpbDmgm<r$-6+<E-&1Y2%RY8A=$YsJUVi~$m
zJWmOe{&-@ziqBUTzNF&p(c}v%MyMD`L20QM#nac+)N`uIVxvT{mqq%DNPGXDQ>IPP
z7*YG{D&9~rR>0KYYXTUjVxu?#{!NwV<V1^{Q_0<r$?+=QQt`Hm3F3B=ig#2@RI#XT
zuF@kuMUA{fCaahto)TszT|qup&1ov8tC*o;%=BnbJzK@h|7x5?Q_sv_U%uHK74K3$
z*Q1rU{c5ze{ho^XM6P17iuYA~pkg7-rgPl66kDM3hf~oxR7|~gac1)A5?Vrs#D^+R
z%*Ikta+ye%i&Tk4#aLj4xLv8@V^RJSk$x&tKIQL3KU1+v#Vd_lvOKTVqWl_mTylc9
zpQ~6;%h%CP#|8>Y#X}m!j!i1QV2`1pl7`JHwy<YoN2+40iZ5x3Do(1{rs69VU#r-y
z;)fy8p6qt^0I|dlkrLP`fL$W}YGKYE6?;{D`=6}#sW_<Okc#~(4v^n2xud_0O>3KA
z+Mr5_Z&VysafF@8?pXezbXK?2x1-{O`ShrYV=7KHE&5KyaoVklGbeHmwoT9MnyS+!
zm&I7-l#0ZG<PR!Nv&Q{N!e?k&>={&CRdG%{W#%OToEPZ@k^ZRS;(t%S*cZKcnMV6>
z;tK8L&w^n`V?V3-Ma3QeCVo@#s{jbIYO+t@?J4QsX;f3vQ<kRxRPh&kcooGotm~R$
z4zIsyQA^YRsJN~o`#|yrjpW-{<<}CdqPP}ygQT{sh7uY|YWxdH=~5cXi2TwT{->eW
z!ide1U2@5O-P;QYvwVhzObuBYUf-QlPD2F^Ef>bhi(5Xur65gR+(JBS(!8y#p^64~
zW%14$s%p4ZLlX^6HDqg%2gSNM>Dx6_(?I76XsE8ChK8CN>S(B|MQ#|iL|R*<EMxSK
zSD08-j|}p~{mI(|68cWOc_Ycf%&adS-Jzj@hK3sGo6$%^V+}v6Cd<$hgMJh&cBh8B
zM5V1X#56S1&_ZyXqaiMUZw{1B5V?jt4R>qcyD1H|U(L!T@9_k0>G<)&mB<x@Ky!hL
zq>{pXN<+gi;b(HcA4O2M){xfFMnhW-9mMMe8VWV=#d`$(?I?LxdSB$=LDv)_+1oAE
zUSK0r-;7Ok)WAobL}5CjkN~2+S77L(p{oGyqar32b<=RaxP3swgIeTpLJX`ZIFaUy
zG9PK!ui=0ORfDEsvW6)dbPa}v5gJAc-c1cXG(4=q(qL<Fs6Gw8hCqX-;mp&;=_gR_
zY$ja==tyvENh;JL_k->l=z+jTbS=1NMCuU@Jv9u{Fql@P;ZY4wXc(ZOw}w6%uI`HU
z6L0m^@R)|jNz&C6JqND*oT7&S{R*bmZP#Cm92J<!+b7BU($v!$7R*moTUqp!hW_(Y
zl{Ir9?WA@)X3lAn`;3Mm8is0kPQ!&mne7_2d{#r{vzbIf_<1ezop^yy>$V%llE0>g
zi<AHfW*JicBF%C~A!R#3!%G@QY4k$DD;maYcuT`*4X<h#M?2RrMwBe^PY%nE)zEKe
zyu$w2YZ~a0^7ZxD8yc?HO;qfZ|E7jH*K=8n7lF6ME%RfV$pYOz&wjB%yNMbmX?TYQ
zc{p>>U5UwFM%#PJO{KxJC)BV-!*mTZG<>9Cg@&0LW@(tG;XR?L*+i(}T>%%=EFrfo
zJ(m<NPmjNvq!*>xC2u}S(y&OwVhtZqdKwl|+TG%@Ptsja=8TzEz!5$tEF7FK(Xdp*
zG7Zbg@6{w{qZ}uH^K@Byw0@{z<xk07AH_ISj{HA0e4^pY?nR%oUOv*WTEiL*pV9Uj
zC02>oIj|>MR>T+AYB>2wHs@>Wv}o2t@;C?N2%H$!3p^V%Y!m=<Hfi{RCU-hUc*sYw
zr60u_eihrwry9z4%ipG92a#y_O2c*yyFQD&HCPwXaxSxr#BWIN)9|$xO>KDX*04vw
zd#SQ%1<bjb-q|zzpoT;277k?IqT?G4huH_}QGdwm2#s9BSq<N6II7{8hVRINhEp15
z-(GNB!wC)F({5|$(QTXi+T0*MQ?r00#ve4C)*_dC4wg8|nifPuBM!;VX*f^w)9@Q9
zT$pn~!$l33H2g?`*UWo+aEz|qmo;3`(DAcUKWq4jt>#*cLv9XBuL_vAqi3XkVXNF9
z)x{C}?;5UY_=lDzYWzdPUmE@<VN(--YEcXhY2ZMe#Bc|nd*wGY{Hvjuj^aAF3(tWo
zN6{Ra(-oZKSW-(L?~;1tR8vYvX&wL5QAS6mjw~I81u0Gt%Ie6_vG7=o8{dToayddP
zr=z@%3M^17Z)QP?RB>QQRCJ{0)TW}2N<yTSbu`e?P)8LVRdw8|BU?vp9d-055}}$7
z=%}toe(Aiep@SrGPQi)KhOE{#b=1<q`4M9rcw1LTJstIR+@XVE3%BWDjr6A2G$MAp
z&W);!8f3~yaDv0(E*Wg3qp^-W9e3+!qNAyfW;$|o+^OR(9Wfm<=B7BrrON>WF*x`n
z3-o-5>qzKG>B!Zi01a}Q)FV#}dv>bR+!Sv)AZMjt&PX-a(LzUS9cdl;I$Bb^vs0}o
zz%SxYmq-p+kn{VX$YX@#`4{_UGoYi5j<z~DNUnN0S)ilfa1?;RxlECcdvyF{@H_{!
z*U^E(F;Le)M;)CwQX-o=I_tPs$16HU>*%7RtByW8`s%n(M>idY4pYbdIv&s=>5z5w
zIFb3Fj)$nAEy<e;Zi8+lxwfY0P<3cJ=DnD~1wbw#a#@%QcU;!fsgXGaTnn{mB*dWO
zVI2;6*YVg?{`e1E(DQWoI#_1$>U6y;(ZXpUZn@moU5}Phxz<|aM)DD6>UdN~Zymiz
zf4v0Pgt;)-Q8T&jS0^K%i_aXpa_#Xk9gpjHM#m5x{dDx#@wASCI-bxmfCzOwrDNxo
z1gqvM=+tF7r1`g938LbH_8=X9-Dojb2bUAMs!3wF9Li<tXLSr^Chb|rb2^^aF-*sB
z8s4MXeEQZyg{+#(_+0AeLM7$%(V4_Z9WM)WCH$ferZ4H(av(X1_O>d{TdsVv@T)q;
z=y+ep2Rg>;cumJt9n*A-)A72Fw{*O%;|(1Z*Oq=$$9N8OkHom7$u)Dzhs&^CcEl#=
zn5bitj(4cagV91d2_P?%slh9WDa2X18AY^iS+qjSrSIvqQXTK=n5$!^j#)Zp>zJd1
z%fA!_HB0sJbyl&eZC0{O;!NG*^K`tYW4;bzqhweGD`M3wvw%&QZ0cC4W08)<Y&B$7
z#}XY&Nq?t;WrANW3;+2`v|vuMm+N@*P@GG(D}<sy*6|6A=TZwkrC6Af?3YL9eWqg-
zEkwsU9jkS0J)5~k2U+HVFy%%%Nx<hi*0XV~NN-zImU}2PNG>T~8j-t6#}_(&)A74d
z!DcpjcFUAM@#y$c$2J|ibbPJjD;?Wu4?4&-O@gSnHLybm8GrvqwEMu!-8%N@IH2R8
zj=d!Hdc=FjIq7{mSRHBJ{~ths(CjHm3j8oLb)3<0R>!wGj_UYc$4MQ>*dysUuHyt7
z>E#$jP4i<dG&VBMeTUz<|EuE%9jAq%4j-9&bXklSc_)#q?wpSEIxgwB%=SgfnI4W^
zWGmhg<0?8OL&{l<E%6FF0Uf_kxx#X;>R>a`x5a)Ix3nel^6|b{v_Ew?s{NV}S1ALf
z4g8_wPc{b~f9oh_ptym5bX*rU_AkY|FXsk3b2U!8Vk0`CC)lD%KnVk@tjq_WEmP6}
z8DYC1B{cQ_87O0*vVkfF${NTpP~JcVBT{Ilfh+^%jA$9Z;mBNeDcs<=Dg0Xuj2~I7
zqJc^VC|F9HMBdzdVS%a!ZZ%NdKn(-g2C5l=0p?SQq=YKCe`;jRwAGphY8lZ!MQsBw
z_KtR}Sd20!-1S21dIoMY_!}2YFmStp`UV^Wu7NuYG%!$LpwK`=1C0zM4WtY-HqgXC
z%s?{(O%2>>VACDhcNtNv9KU6Z3*#4@i!J>2<rs(?`2134!iW|(*l)9w=jV){qz~)m
z<{HQ|kZ+)+fx8VfH_*ZW*KHVL#-$8?ni(8-xkesWKUx_e+SUfrq^C(VPT+T{jS)Ez
z-mI>z0akjsZ+1IYWZ*sn-3;8r&fh>M1Dy?YVCQe}2hHWCf0)592v-81m=#4G-fKi2
zgIx@C74-9))o4#Vdu_66hg^Q4?l<s&0nLDJ;6Vcq8Bh$U2CmIaF=$JoUT(|fB^w|+
z1UOotR~}b*xE^R2Fb!A+Yy(_DI#DZ+)v;1O<<izab|ESE4EP3*2F0@m0s|pwFz~p6
z?gn}o=w;wh%4b>j!v-EP(9?*#7F(8W&5s~`5y>wx^fu6k>S&nTm%!Q-1Ke2GzIwSF
zkdT*t2KpO#+Q2{qPZ$_r;7J2d8Q|ygmuF(>>8S@M#i<dl9XaKaq<N5mnHMq#8+b;D
zg&~L38r912i8ebn)WCBFMjLpQk~c8Sz(|@C+l8M!+`tIRs&O?6?FCj*BagwV9Q$#M
z@sfd223|JsiV?+N-cmR3pE;2aB!@{HlQ6E0bdE7F*1$LeuM0i4+gp;_f6a)7E@bl!
z18=e+7<kLzulmyDy4QO-J?5sk0>*VSij>lrXke0oLq;^_e8<3K1D~-a8kk~Ws)2<D
z78#gE<Obd~FqbVcKWhe=H89JFd{bG=dn2L%$=OEaJ35Efz9-I$>&Ej8yl3D80}CjV
zg*o#L%(*QZBfT$fnL~|J+8ncS$VW3+Y+#9jj|{9JDg(<5ET?(UY>>wVMrwycJHE~(
zKE6WR{@B1LB-_AB17B~79!29x5!@FoVsA)s^tIZ+8UtUER0C@btYg1nU<+H8f%R;C
z2EJg&@@Z;=5xK(BJT_AAE#vFgr<f8$sF{oaC7wGbW^6U^rGahiG(<=#Gb3U;<Z|J0
zhk>1JXa@Eg*hON<V29k@2IzmwCc|dJcu$I#W7mBK_8T~0;Gh8-5(nXAhoi3{hvQs+
zq#QU@{>H#z14j&eYv2b1rwtr6cuXZu82Fx=HE^5_WI>8k28x}2tyL$)i0UMJ1LU#m
zI7NYHrfAsYi;LA~44fr*1}+*n$L?rdsq+Rd2sM!;j;P-+%BAlpN9Or$vM#Zu7`Q@v
ztCD2QFKMHWD0$NMGYKYxCia>5)xd9TWhNdq@jDx}fgBTY6Mq=^lTF)1WfOlH_?!KP
ziIOJ&x10BmfqxAYGjZL(4I!V}<yvQ4%B7%a0}TpN?7oVdU`1rDl!?+NvP_gS@jnw~
zOtk7<qO5qzVK6ri7zNz<w%iOeidxMyBg_QKo2X#o784as9M}*Emc1PD6K0?^mvbY(
zXcA+hu8DdkZZ(l@qK1i@CKg=CtY!ixs+-X)gRjsFx}A8PW>CwF{E%y#sAGc8|E!(b
zZ$3Rv{Okd4GjY3#yG+DP)F;8;M6)e6XI6cOi3Vn547?f&ppi%$n`k0{rXsylq%2c%
zVC=}1VlSP|pemb@k^>R(2@^?^|DZuv6Dbq9Cfb@PFp+2CZc4^PYZJ{)v@nrxqGcrQ
z+(`_zwhQU5Oc!nvLknD7IX`ViZM+RNvN=ULlX%)W8&{!;b|yNS=wzbE#62e3o9IBw
z3sPlfrr78hKTCeY?Qu$mwn~#&)w)b)6Ze`?ze);uagunSiEbtg6Q+s#O*~*iHldh!
z(8NO~Bon(I&*o>26CyS)0#qdpKsBM6&`I`p#fgV{<n{sW`H60YWW+LIQ}`yjn{b2y
zP`oY$Qn4Ae;F*!Lw{L<|*FdBMc!WX^6Azns#6(Xs>Z52;>?(<~&Tlc^ZfY4Ho7K9v
zi9ROgnRw4cUlWg+7-iyR6OWtdXX05CLrwHI@q~$|O$=nQmhk~5o;2~4iCqn%ZycL5
zn=OUR7BtAjU=z=n7$Q_jW2UeE%O6CHunn?Oc2Limc;3Va6C+KqlOJYcxQQ2poJk%%
z%qi_%`*Zm&Rr8{WYK^PCBv@vn=692fzhYvviD@RLn|Rg47!z-pc+<pK6R(*VXX16X
z!TAaHrL-KPqKVQziJ1}@Z{jTzQ%p>yA?=S*dgSPB6BB6CCMJ>DmhpE;{K*(EesGyi
z7Pq^<PH;PkIBB0mJHy0G6LU<wOCzb9=WH!8%fxIprEg<2D(aMF*eB0r%Nh}*`Efgp
zb<H>NzKJy^)|&W$&CSGzCO$H;(8MAWOH3>kZ8p1EHNQpHVhU<kj17Dl4XJUp$qWiG
zqmcu@q(n$lTw&s46Dv)8X5tfCHDxuYIEkcjmZ_D;Ir!AP^ePjpS!v&Fn%`ZkQ~X|#
zFsAEFd~Ra1i7h79(@H1BH<;MSMlmqPu=>wq)i#;<!UWBm%_RDWlxs}^ZZ+|xiJerv
ziESpnqFtHTA*kZc5$Ddo-Iq(+xQarlQuSZc+D()?n7M~$wl)eMpb9uDV0TU7?<cct
zuymQSaL~jdb{ZDSSop@oVG~zq)h3RZ_}0W36K72vHF1o6or#kszB6&$#0e9Zo=k8Q
zN=GaXM>!a#(-CKsr%e1{;xwD{$Xt$EnZq$HN3C@CB7Dxoc@q~*{74NBDc$r$=B_6b
zV{)o(x}15D2-%$3WOhWOXnN7GJjeW;`du~gvx&b={A1!5cK+m=W=2b%Qu;Uc{}k`u
zlAJ2CFdcq4*d9B&*q@@S`HRi}V1$QHN#}JFH%yeUP}0J`X5@iZ%tCPsoS|@f%bEE1
z*OQ#<k=jxgN?W*BE&Kfg#p!Cr+1c4+5&dN?WLUVvLIVq#7P2f<vj7X_ER?rU*+LZy
z6)fChp`wLK0yAr2?d`|s%}z#pQWO+}u&P?P)k3y~mHX11hEQ~z9nih!)h}a%{?4gx
zp@xMz7V284X`z<DQ`?F<PtIYxE{i5yWarUUv3eG6v+&TN%=#8M7rWg8sU<>E%Q82W
z($GR93pp0z78+Y<V&P5;ck$X=vZ)0vxA<>&7N@3IxW>6mdeM>KW)>(15<KR|B;C3a
z7LpcnE#z59i2|g71t>9+akm9^cS)+OxfQJsOkA8pemQ$;X`z*c$1U`;(Aq+pby?6Y
zw6W0ELKh2NEfiQNw9wH)CkyQ?6j^9*p#$L~(aet5Jr+1Su6`(!!r^p`)s<Qo>38^m
z(w(UwD_V`|yEFIZ^!Yvu-7H8JWDECOc)-Gg6pj^nWRX11jwu{sAYZ&_EyS;ocq^Ln
zQ?`^FbLiP<STHSgx6s3aWx=-KTJS75R^)cbN!*i_%3E!-XxP4mg>B0P7D7@!KCkPl
z7^kk(Am@)1-NP0hvGAyc-WGaV=tY~^QSzY&i*s_vGOUYC^|8>rQ6brR%!+1teJS33
zv6fd7v`IFN{uZ9FFv`Nq76w>&(!%o=hFN&Z!qXN8TX@F8o}6j}EpV-45Np{HHJt8T
zS6Q4h#KN;Am;xMKY^VhiMh4j&Xl$g76w+XZTX@032n!=E@G0luqw189bBmX6R!CxA
zwD1yDGd;#N5UyR&1@sjQqb-c*F`gDrcEuPA<1D;x@hsNNu@+vlaQ0aAS4~o0P&Sj6
z^M*kCrZ6*-MDw5kiTP~{6D&-!@Q#I#`(#eEB3Hw~ZL^kN&SZhf7T*4*488tH4An$A
zPqQ$cY7L=;m|<b2g=;SUa50N~(Z(F~b1=ukyB6x%xXs2~3-c^ovG9|H_b6Bk=S1^)
z-@*qL_6nGEE?@(+@EMh8VUfsOY+<Q|WddFz()xO8xrGl&CyBK1krkckw}M*uw2&wG
z-D#vwyq>t+CHGScr{Zbze1g8pO-eT7L4T_(thTVl!d44wEUdM#!NNug#KPz7G{)tw
zXD6elc&;Gbp6O;x$K!kA{N;D)O%}eeu$jHeh0L4zp%Rs$zx0<DwprL^;cGH0mH5iS
zb_+XbeoEw}JX}c)IGUu>@=jXI(PWte=}K!echf>FOkNbD|2A3XMepl<7WP{>z|NoS
zSU7Is5IcYNGZv1q>PI3a9=32qNZ?x*&W>k1lFcd_Ux<;C7WBGoAN@Ik*9i+hSUAn}
zr()k*ILQ{Rr%s8K$0QOyL#rU#F}W`s%p_GrLc;zimO5|Yf`uPN6&FRir{MojM!jU=
zvdAI++m98$YT;*gyf!jz{9@r(3;$TS&K}Rg?-u_0ujDlgf3V}CO`eZ-8+Yz2-gj9P
zNY&>+=HLI7X<Q-q20MQXrR=E57qd}Z03~fa&>+ewA#Mv^j#%SW_k3n)8?&xN@c+c4
zGB!pniI)}W=baN-Hp<zkYU5V%w7iXqHY(YuVB;2%Gw{XIWt51X%Hp<)NO^l{NyO~F
zu4S@qRI^b><U^#jL|WZOts|McZpp1-L;WyO(*{pD@cxYAxoX?sxdeX{Yeu-PjhA`w
z(ctXcZPd51%*JvXci3oPqsYcRHX7P!BoMX|X=58P8_jGq5w}fk+-c)3JBkQkqyW?V
z61jWZ=jYgn+ql~X&v;CTk|`Ux0!WJV!!3zpm7`s!JR6(8D%tH^CIjvmZP(mJ3mXLT
zZM3xU%K!2iYy4NOf=ct!t;LIJk+!k%=E_7{8wEBBZG;13?QATpUBGz!q33fMZqESx
z_BJ}$c;3b^8y#(QvhlEuM{IPqajy-}hHs;bjjq(4jR$SqXQP{q5<Jk(jzW4FILugJ
z1`#tbnNh$G*<g6DWJ9*Gv~7y8B8o96ShX>8d>+eaHgrm6Tppv94FM1~ZCC=f|I2Y~
zxB`A-TZ{z)8wbBEV2#}cYoWM3+N=4Af~+2P6#LA0;hr{n*%)BsNgI#a=xyV-(RuxB
z^s&*`#^dB=L}t^miO1|HdYV!twx$i*F;;p|@525zo)CQTmZ%u!{FIHSZ49yTtc`&-
z2H6;FgZwh^nJ=<NQpKp}X9R=Yzeo<XF*Z?+a(K>;qNMqh1QXkE8!u4BHm2DaK~inJ
zLA}^`(Z)+QUbQhslpjSKqbdb=L_++dS!wTRgP4KRYj(tlZLE#gY>X59^7eH*3g0F`
zm)ct&&L%wG##=Tf+L&bHZ5tB=N3+}v#%15Xy&bVpBgFiUjVU%pC#q2elWqJoqKHUX
zDaA6KR%&CujrXZ9wn`iCva7eF2z1lSU^-jCb3{sQ&J%bjmiKIs*;lrt$vd%qU}J%e
z#Wt1*OIT=Qk$8o*40SW&Z$*CyT`C??P((}e_|}Ky$j1L1lyR`a#>dpMjYBp*p;&Be
zqNv&GuOwI6SZCvN8=u)&Wn;As>FL-S8*6FgBct>Bcm(3c+Ic)NkEiopTwWrxe(p1~
zQ|oPPVE<M>ccTqtwI;y1#%3E^Z0xkLOFY_YgC(~M_)C#)v+<Px>d%hx6`mTmgU$9>
z4$ss3+Qx1hdu{Bqqq*K5TFAB7{B)UXw>0~3Q>tgZ68mi&u(5J>isa3!m1O?mTG0UY
z8ygpGT(WW4#t|Fe+Bj<CIOSvG7{z!o=Q|r`+LU>|Rvww<RQHLj)`Y*eani;q3jC4g
zjJ)O%c0aJ?c1!Vm#nUvTT1j4K*Z>85PNe7m%fBFiA6eby7>ixDamB`;HvXdaZCqtb
zvGF_k`d`_f+5g-4)#fjda_4qQE!Gk|0+Gy)oRhjnyLv1!XLYGRsFB9e@rgX0kL3Mr
z;~#eN4oWz<ZsP`fiKf+xIrx{#`ZR~UQwt<`-P#n{IsS5jhwPPfP|87R2jqf>ACfzw
zn)^VU$3>QPkl~<>gSHMb9b`FZ;Gm&{at_KnfP?A|Dmb{sK@|s89i)E9tmvSUgUSwg
z)FDqD<k5dT#gS}M3sr{1Zgr6Dpqc}oM)>l9WXDF)DT_Sfuk!k$8V+hYsOR7|2elm3
zc2LJbT?eFxeDMHDBIHSuB>wD;<a=TKb_exY(W&?y4)~NOI@WDejV7_NR>ANtsYVVO
zJ4liw2TdF_br5sVjMQF9-bu+cDsdN|ejDR~oI7^M)>g~QaX^{G9VEz9)yO=kXx7Cu
zDrru+4$nbDzJrzy?sm}Ji9VezNWit|M8xAi#Cdul^}^c)b@N&|Xe|nGFP>DT9n74Q
zLzh?LFK|%kKyjctXy>5FK^F&I9o*xfy@QSpIys<5Xmw<^gFv#iNdb{`c5tt_C1E^c
zlcy|>-B);@gKm_wgNGd4?|?S2qel4$98{bdqf}2X%;ABM5?TH#Av+*>JVKK&B}R@k
z2fBmq4th8+9GDJV2c84Vf$hL?Fm-h)8Z&WD%4kiq;VTq{?_gY`YJsTh?#q$Yg#wPw
z=-8Ng*uf(XdOPUjpr?ag4j!cj_vf$}-+i@QGZO#K`>|t76BP=|^mXu<gK3Mi*+r09
zmZ2H+ckl#l$wgHc14uK?%#B3N>nR8CJNUrC(+&nY8028EgV!DY?hwy77~<eX2QN8z
z*1=E*FE|+C;5izPgJBMaQwa0o49I2pFhe`%i$GvI9UbC*y<&MrKokE+qFNW*|3K+c
z4qm23G2Yg}D-K3Gc-6rert@<c!pYdl&3ltP51atQBpCzy8fD@{XLJ(@gE5)^ri1Zh
z&B1gBZ#j6|!8;BnJDA{LqJvq_WlVCSsAR@tvg+&((Ydue=6wof?nLLwGi;MF+RSIn
zDWh>`(0&}e>tHU^ywVMMSSZP3178rm_3GZ_90$AC#oEnH&vSTG7v_`wPjko`<FXk&
z%9vAL%vr!n9UO3Q(7_@Hiydqc7PZ8|QU|LXtah->!E!dk=IKvqhXVMR?I@jK&PU>Q
zg-D&s1)s3H=$UA?H_6lKS5nTJN%%7dr&~owvafNl*1>uQ8`!KIe9nF&zZ~OXNeLsn
zDJ9aj(ZME%=ZRr6Tm9llo)iehUb#$yVqqjZPpaSQ;7bSF9DGF{9qe(i-QiF4u+zaV
z2gMr~QjCn7X6P<smcOReRcgi%U8<Oe>Stce-0NVUgZ&P84ls}Q?Qm;8Q^sratwRpJ
zaqz2y-)O)r;NYx-a}K_BaMZyG2j8<Rm{I(ggYO(1r(Rx5Fld_5yF8SbGG`#|Ne8FM
zuY)tfT6lOqLu-F<K<=C-MKlaXb2BWLsyy%Df`cm#esb`mgNqI>Ik-$s?MqS`)X~jQ
zaUMa;=zglQLHDv(9sKOz7f$ph#Q2oK!aR|ll@j^y4z7`R7bQ3)bnqv8GY2<>Mg8UA
zZwLRdPpB6iV&C^zI|_$_B_;m~aTRkx@$!~<C~X2IU6gWB)<uSk(k}kzf@k2DaU)4m
zsyvsT6f)$QTx7b)a#79&Pi7{w%htt673KM1&jim&rtw#Baf@iJ75{6ql>|`P#mrZt
z!T+r;vR&l4xZ6cF7jRM6MLkibx{Eq)<fTks;u->|DbiXlf8~&0+l4zk#z!~(jc;@D
zbN_fF7mZ!q?qYh+IIsEwxWh$*|8g1%fd6Xw?%kXwE*@N$jJs&+;!f6eE`FDb95?#i
zE#a8RX(m!0EW^ygOR+K)^AawSF7E1>NV!;8BE>6L0Cb;j?xKZ@r(Fyb^yj<i>f$~Z
zEnT#7(b`3tT>l*F<f4s>wl3PaC~{HYqL4isBOkX$Q%=UT@&GFyX?2f__AWZQ_+&~R
zgI+thV8ATHW0}&ikOdedOKhD5&U;;S5x^{Z)O;E1MnSm<U37Qx0NHe5xv*V4<U(?x
zy3kz6;!@lwK9>h@F>P`<lbCfEh6~e;!g6^_VptKYBMq$Dq1avcE&>-U$+wt#E`DiS
zL^>}{$e0skv;3DsGJCjq*u`Tm9(VBwjmO2KE_%BW&R%YGco&(ySz{m8C2~jx-(>+_
ztgfGn{w|($@sx|qCe`A<lz4)Ia-$Gq`bP4iG<Y$G7?=)nG1$dQ7oWL!#>Eg9ue*4|
z#j`Gkx)|m1pUBbQ3Z8Q@!o^4z&$}4rg5lD`UA*9eA<tYE;8F(vR&cg?(d2!x7hSwW
zoCh-*&COdbQ*1k$d_^etRTpEZzOK2W+2V>tD-UB`u*_>N#<^h7H@UO<PlSC@$~BEQ
zU5s}z$HluY-g5Ca?a;;dbqgoBn8+7hOmQ)Z_CGPk|Ea$tfcBdT7`T1!AF-*_W4$6$
zK8^JM5hHx_(F|(b#cm@t%f)O#%s-1`{PO~TvOqj@UCeW_)WtFv@41*yD|NAm@^|rp
ziv=v7j&RoOTh!`8F8>5Uw9Hv7L_`{vuwiaWtk<}FoJX9?U3^GWbip4+eB@#Ud2~T~
zxYR=;+kcp5jiim(KBctH)cV(Q39oXo+Ql9=SQl$ttaY)~#g{JDx%ix@Tx=3zU+-cA
zyPDZiI6On+xgw-x7kuGjvx_b4(=KFEyfeq-Hmq92#S_Ywx7%niE_S%s>0-M;!sVUo
zb27Oy!>7B%TVGQ+E_nN_2&?B(63Z~ieV>c{E-twE(ZvB52VI<YafW2K&N}4c8yAPE
z+>*_xYbx=Gi<4|hO6pq|T!}g=QUb?Zd?(=JB0ce6{`a&uJvtnK?3@xz{U8j3w`X0P
zb8(*b+&YWM$tH;*aFeNvE-tYXV^bn|O6szUD=vPbZLdqRcAC&tK?dKV3Wn~B{p#X3
zLG$k}h=i8LizS)z_D>goxwzrsUk`t~_=ng${N&*}GhNj1P}7SV;J+>^dZ^@~n1|vX
zN_Z&gp{$1t@wAjk|0mMYB2_09FLU#e5v}KB3V3e2{Bi=w5^2tW(&arclUD@~w+MJ(
zER(l<rLu=xMKQuv1W;9^bAK<E{a=1H5Aaak!?ow5$d0Q&M#r+%@=)8ua~_`eP{%`E
z4-a{eJk;}Wn}?PjT6wtLLwyf99^xME@X)|RQxA7~Xy~DlhsGY7c+rj+kNBn^3;hA;
z$ia=yeV3E;>$uB9%tJE|se9w}+@R|SH@WBv!X3AB(^3f!Ne{Um@<_vmRD(|CxZjlW
zqUbX^pWN-CxrY`W@=475F*<zGO^Cj)bO4}>1-B+yX=@K@4;?&o^w7pbTMtDZ?(wi|
zQn>;Tg&x{@(MeX^bYtz@UZ;-`_jCJ-U3CKO1?Ak}>*S%chx<Hq^Kh?+E*`piQScXi
zV(Dza4Me)faQ}-r_j`E2!-HPrR>4~mMqg9<X3%Sw9wQW~>>>2f-Gkym^`LpsJ=h)`
z4~7TRgGKVbFV-rf^-XtNdaclf`28UX*MsN5_YhDE3vw6>HhX4@_5QRj#vN*sL6&=X
zc-TXK4^Mb_#6wRHeLVE_(96T4UKI1y+XHE)hX4s9gA7h2NssZ7hkhPDezXLMBq}O`
z+o{~a<ZkZ(4^Mg+?BN*?PkDIS!$1#%yvT=^LgOYc-GSOS%pF#cV$3619>OX-45fH^
z$adZ66m*J$9tAw(nsONCVL0FQu*$;=9!7YW>0y?Kkse<3@Ro<SJ-p;$l!sS6jPdZY
zhgUp|X31Z3czicEI_X?Qs%R(NgC6VQH4kric+&%2gXoYvjy6-V8L!s`Kpz!SIG(M{
zNN`)9k&JW`n&4rghshqMP*8toO!7cR-k}+vj$C?ZMYM;h9;SJi?qLR-=fKGIi?%^e
zDzd}F%xPdeWp1{IIUW{!SmNPbwm1*-X-*W*!kl>?-t$23HA<L%Uz7md2|n<!z{5fh
zi@fM`IGz?xA=68N_DrT&DVxSp56e8Ppe{TtCz6)&k33MeA9~RS_jd;}nQ~{AWPHMw
z>qQ=PE4}EHbt;Qnx@=$Eb7z?0Y7c8X?DMeS!&(pPJbdY4n}^RmtoN|V!xt3q#S$Al
zZ2Yfz($Z)cY&Dxnz!xR9u*OT7^tR#|bQJhj+HGcQI@o;WVLMIK!`B{mc-YA%&$H9l
zMegn$2gT@gO-=3gKnlr@)*@?<7daa7+Dn5+bW+~|4+lN`Kp}WI<l!62-@|bahdmte
zaMZ&wTFBhUE$v&{{QEgP<e#fjG*nvb*)Jl8nG<B$!$}XPgot?f9_x)1ggmwas+b$}
zWaNy8^ByjEIP2k@7e$Y<44V~O`i~wil1LAiiE3(sp#;<##mLq{WziXf26pwozVQzM
z{OsYE|8jm6z;7b`U8L7UT5NT!aCgZ+S>uYFzxWmK@DKZc_Jl>rA)lp~*?mP0(_%h~
z`_KaD0ZRBN>0`T(9X?9={D~5J`{?82e?H3iXzrth&vlr>vOa3~sOclaN2ZS~ALV>h
z^Kt+Ex#fLS@KM=E6(2=k<=o<<qK`^G|A>_P!2Hx<&CGTS{_d80@1j)o0g0+UZuODv
zgO9FhCUZ7Ck(g1KccES$--VCrKF;qbV2$Rlsaig2`)KH+k&ik)>iVef;|?G7eDJq5
zxB0l8<p(4V4M{zpmzz>D2+Z1$!@u6}X#<vAlbA3pdeqoQ6Cb%G$th$lO?}+uBj)2y
zA1AA~BMbcf4JmBqBgaQvFjXd*`(#j%@R9V9^0D#$=$6<0pSELKMK|+&{%0rmZh?~+
zh&JCxOCJyUkbJcA(b`8>AD)p&`)EVS__)VMTR-}fPN9#dt2X0R;75PYX|_4HosYHK
zQ_mfWF>UXogOASQQAbgdNIHoZ2^_rAj^*$5(Z$DK_1n!_p5QJ2#dDvJZlv7D$nB{I
zd_20HzM6?<y7{1h@7<YZ4y%@Zm_96lP4S`93<Qz7AixlXS&TS|=bL2O_R-TvFCUH%
zmnD7pKDztp;Un<D0xZVDp+LwNJL@KIhfU67`mm2jd=TKpl8^dee$Tt3?>lK@PG297
z`IzlvjvtLo9{2G)%lPQ$qrZ<Qd<^h0(8nOwn@T)MQ4rgA$)|jJVkdY-@MGCb2m5%&
z2mPX-69v8!f4Lgs<5?esc?}f+3-Dd0!+pHq;}svHeT<;Qe7sD(Hz@I<kC%Lm@}tf7
z+I^x;w3~JDmbLKOSUclYA7gyH<>PG@^Kq`8@rI8#1@M}WaRPXqly}UJ9<52|^@txo
z#uFC{$I~iaE!ei9aDtDCK4u9nR#wTM<YU3w<V^A6J3g2**~b(C5S}W4X(F92(itKp
zTH++;Yt!O{-}Nz<`941LG0(?)K9>9V(8ql0#m8bFOMHC5ihL~ev52>)GAWi%#*|~q
z*C|X&n3-g7DXqPB#xg-3Geh0v(~o?t@bQVr<SQ)jF)<4yEc2<4*H@(ZI!mtdvD(KM
zJ~sPUL!<Jsfe1wbK3(VIbD;}Xz1|0_rflhszDZ!Fz=@Mv_AI%@$5tO-`q(CHBWRgb
zt4}5oekES7A+*EtRMSo$yL>bbA`|-B$8H}#`}jq?wTC9^<FJ7D`q<}VzmEfc<TP^7
z#~~WP!6aP{=zPwUuhX^Th>vgC1^Kw(<EW2gKF;_!>*G5g$9;Uy9z$TGJH!bV;Mq-$
z3;8<ZQ=YgxO(%p?WV~wp2Op<NRgXB`MR-e3A(q+xUg>k<75ZcFIH@0fT=sFr$3-8P
z*t4yQ(;0^T`3z*J$Q^t?I&JAH>0ebyfZ;R5@GB{2#~Yx0fZu&w^YO2bVgdf}@uyF(
zW?W}uxsm*fT@zbG+bmK=M*@2OGc4kUV794nmY`1v{gjHc^AC^_ATvP80Hp$y4)DJK
zbO)j@5WVpS(yc3qVp8aP|5#zV?0+zG=*++X6G|*Ah(dnoR#73qEdgo<s1=}MfJy;w
z4Uiq6;i1gR0jdP38X!E8Nk-^pF}p(k(JkqXi_+BsAVBp1HG)Vfbhn^y6{Y&n$PBth
zup)X>)DBQ5K>YxB1gIOJUVz&I+#W=c5i}kii$u2^x=)Y>IzdsP4OnS_M&#@B4B8S&
zt@ukM|AGI;DETG<ng+Ntz+C}~0^AcI7NA*x76G`pmP51wQUP)U{zW1RnjkSr0k8_X
zuTZ3U0qzbkOh<E;sS}-`#VSY){aaW|%K)tcwB<TofYt%{3rUt~6GTBhL`4P}DZ`*A
zzET*VU4Rz{lx99%O=ti&-F4ar=n&umVb2`{bPCWVK-VC$RXUG#4sdS(I{y$A4dbS1
z-4~!+fcr%)RNqZ8(xr#5JQ(1i08#)sfD%9rqEIaI!n#NU9b;(8lr!zYpnj>Q5VwY~
z0@wj&1eh7X3E&189^eHMGdJZ0=pCR>06#!Lod)P0;E@15DU*U!j{pw`;Fz3_mvqA9
zc%IJK9KUg<&?~^BK{R`!KRicA90>Id@K}I>0R{zlJV3tyPXrhcz(|+rPm`c?=9(l&
zfE;x{NrnDd?5O}xbI|gBG}z-Xj6SHGDR4|RIKVRjI3;<G#5|roB*3!)h6do^mIG7{
zeK|B`F*=YxPa-LbmT`{d_>@Dh5kk(d2Y4gENU9^iO94hv+5uh_k6tEKvr@0{t(tlC
zEG3U*VN8Irls4HBWf%ZLb~p+p%baMCeU6jg48Q^5gaEHE${8PEUZrMl1<?<E-WDlc
zg*i=_7+{hp@J@iK0+=jPzA{AsJS=6J0H*(!&rOzD0cHm{65!haa{{~@U|oRE1I%SD
z0X_`yQGoXX%nz_Az~TV!2lybsf&dGHDC&e<b687&BUO$$$qwfoO9Ctnuq?oGDrIAm
z?zQyx=lGw}<8+uB<iun}fR6*L4DeZiPsq5y#*r%LJ~x%cY4WN7s{^bFu$C&@6X#Ht
zI^w{d^B}5#lNXL}*9X`TU}u0`w8j9NXfOe`v6Thb9AHa;t)zBq?&Ifj`8y<zuK6NI
z;4~Y?iIDQI0&EYkBLJ)Bz?)}cbF@$VoGE-AV0VE10S=Ih#?|%&*c)J95cx|}akM3l
z|EYJ*H4f5X0(=wTaDe`kqh(mmA1N7*!#O@@ASzXPG{7<Tt^xiG@Lho80WJjiF~A9S
zk^#;HI2+((fKvf}2yj|RgA)YO$(a|Y51gaX@09bea{<m%BQ4{<e4ojA7CliZbFN5S
z3~(vHuk89rVSp<Eex_}Z;LAzIiTp%4OpO}R)d0`yCIK2Pr&pZhaw_pVd7PcP#%9vB
z3~`b>o*TnT{|fMTfHEP<hWIDIb$0S0N`|-*;NJknLKF|9mPJ$ypW(qZGyrnV2@A<C
z6{2()Mb!Q;jG8bt#Z0b;(1)KA%LtJf;+7B<Lu7?07ovQK3Sl%w;<SZriez(!#kn@)
zbht!NDFjzqDu<{NM!`@tDo)L)FCM<l+w2h4Lga^N83G}yhqyDuU8F6HJ}bN$gs2&!
zR*2dm>V&8l;x^XXCN=o4Sltk#zR3CL;~0-6=~*SdX>sEA5cNZ>F463c5UW}z&wd<Z
zCZ9G8(MTYi>=th<fF>e6HY46Nj7~uzz`9}~5+RZynuW*-5&w^dt1o4@%gpE20L!F8
zG!M}tMDBl2^FrJmV$RMOujKc!=DVW5an)HF?QygU(K^JvA-YfqA=-qvCq(-YZ9^1<
zXcwYLAo=E>V)4?&3k6Kp_~O5>6l-y<Se<bZk`5s{hUgUHW`V+sWjZsb!~c7rP5vvA
zQr8d<h}Z86(T#<-#_tdD;nL{!?Mo6f^yny<2SYp*LZWQ*l2eiqFWgK~Lue$a7drHU
z9>NIm=)>s!Fidv-R9O#H?EyQ4L)COgjqY%%=n#8D><i(C2trH@F)2hCqI-zvLOdU$
zM~H_*JP~3*h(|*74AD2lV<CDGd5GR2`h;M>Acr4kb290WN!M1okM19t%YgyEt&fN3
z7otDi9S<h^eHndB`E}#BlJ3n<hCDkLgF`$+goWv+LktWtNH9)6(jQAi!vMx1@_RQV
z#IqrW(n=3RF3tQdb9}-A3~A(eY*>ilAzlqJCd3ONMud2YwnUBOm!ZSw$Ph15!XtAz
z4C9!GGliE!yb@xxD8RT*BBb<)ihi*4VICXewGiV&ycJ?xh}T2B5#mkKb~yUb)7_LT
za8yI8I5Hu>bnoOK<n0g>1dlAk4>5-a?}V5f;uEqHVoHdqA?Am8Kg6^U(?iUrjnV%z
z#LN)0XjG$%5kD!Ri0C8AuQ^?3-wmU9*tsF*(Ts1622t-({yU;iJlW?+VEo@XAB0#C
zVrhtFAr^*M6k>6RC1DixNj&6>5+lK+mOinhYB>!l#77}kuyK`cL$p)}M?{Q)W$i@%
zF<VWg{2@(>R)+X2#O4rN*!tKEL#z+6A;g*xYeTFH@j10NHF5~245?hogznZHb#TnH
zF~p`2Ul3LG5*)hlDJ9P_6)7QATiFqX*b!nU#j-WFEyPzLwv(ze2|ncs#WW|5c**9j
z5MQ&O5lrnSwiRh+mWpSR&MLn~VXCZpe~1GiGP*}S%)t<c*aL*P65^W>jIsSb#K{nc
zLmUb5E&I&xV#h*!N0DA?aa2f^Hpa~3BIg8IJ`@FRGq$?fy!5FMKZH0J;(UnHA<l$2
zOS3r`g|bo?9Ae$nH6?t3nhJ3-#3eSmlhM3`HbCLfd6=@LConDcrw~`!dxy9l;^z>*
zgt!*sj}X6x_>KBvuRA>&%@R3zq}wy~LO0_-L;Mw@RZf||$<eApK4s%#0Tw3ZH$way
zqEvU3?v7jTDO0RFig!ne?vejCX(-t}I!NmOc)AWKDT?RK9pR26gTjX(Im6!0h9k+r
zkwJnYNH{=&iJNC;ksKt6fQW#AprRn4M9GqK6eJ0V<RC}}5kXYo|4sAT|9kW5eO=vM
zU0q$>J2P9;%_>fm_y#A6K9B4KC#T3rmBF1$8Cp+K951>(6;2a2%qJtii~=$W$|xq|
zB}$f2SVj>UMP+pT!*OqpDJ{Ud95Q+lwS8GeaT$=EO<6h7=zb++@aCDuVW+4qhrX1I
z(lVyYm?7g;8D(TNqpG6OvNF<TxMh@+QC>y`85Lzzl~GMbB^i}vRFT00-MDjL?24D0
z_;Hg-ZgRriPO8hOA)}TIm+b6D$bAmEb7M^zJm+rcB<G~R0lCw;ttIyokz{ye)RR$P
zhF6A9Mr|2&WcX!d$j<&M72Zi>F;<}jHpFdD>dN3whTK$>x!jQCHCm%!azh!7WHgYG
zDT8|qa$iI$!<|n^vt%@p(Nsob+1V83{axPtPn>-SDT@0UzI5N)LgwM5P-LhwTFGcF
zqmzucWxOt<jg0oRn2feExUC8mXeZ;(^O@YLg%!Ca=9@A)$aqUeN2+n(%N;DaQ6#sT
zq;A|jk{oK-Sw<HbJ-M)Rq-1oH(VePFQfk3^w=ZQ9WXsst+5aoI0HqHUtas|E{|9%|
zciEzhJ~Afk^;hid?=9ogucezc8#mbNU$)18X@XCdxsSS!<uw_)i~%wR$}nUEWV|P%
zpNyc4kc_@E_Ez+SX@skeHE4l|7+g-wsEnAvrl6Lfb|N=UQM;W*n7h-kFEtk=acjr^
zGB}zX(^((+2FVyKW3r4XGKR<)N@oy8;C?vlIGY<LW4Mg>WsHz9Qiz=(=qMRu1sI)Z
zYm5LN(3wjmv&9b+{BbhICvc7Bxj#zaiS!MDCnY$`3MA7Nxf9M*j$^_6pURjfJNvS}
z*maY8(NHCh_-8U^%D5ooqKsKGJ{Q%G%J@RYmoj$A*ezo=E6Ug`V~dQhh27@Jm@7Mb
zv~pPK>U2fA);BWd$(S!=fsAiuESIrD#&<&C5<wRxbXz3AVi`G3JH6wzRK~JI?)L&b
z{ng1@$)zB{UnOI80<Zc1GBVc5SfAi;l(8X!UkKmC0TQCN%Gf4jhm4(KP^kHK(HDBY
zdvPY?V7VzM54fa1?4gIqI3VMo%)N%NpN_iP^&@@bku!5yp0o9>ic;0puAgLQ@7%*O
zj>tG9q;cONmZ42JJ2>JTf@3m%mT_Fh2^pv8qB2g3lD}}KaI?(;F79i@U5_{xr)8Xx
zaqj=so9H{s3Ao$)^Db}2HW}x|L_T*+qRdM&F3Wf<<8K*PWc()MmW<mnuFAM3<GPF+
zGJa<luBOfUEY17W*Km@L!%e@vNk8EUvrnClP`x`c?s6PCg=O56ai4yB)%AxA9#6>`
zz2+kyPbTHyQn!aP7F|gDOU5Ii9t}l-T-hjuxld&L!&O~Dvcdr7)PHGn8PBM|1Mh!g
zb>cekoWrd+`{+^)8lSZ&nG$j;$fcmLf+D=}yYJ1dAdi9+#aUk13ZtD_=Dm?pssf%9
znpZ)Z;;gZ}@(GY%L4gFPpn^gPtp4RIs-SVxe3Z#Wm@~9$a{9{(iYxd=!8`>e6z8`%
zi)9o*K}iK$x@Nzkz_0M#AWA7Ht>9G!WfW9ZP)$Ku1?3b}R8UDlc?IXXW<NaWub_aG
zCr%E$>2r;0Tv@@|KfP5Hym=vwCt#Lbl1cvL1ODm?YA8ro;8yTyv8FW@)KcJ5z@r9v
zvLwq;8jqFSeo>MXj57Ql1zyED>2g}1j6Ug2sTdEh^sz17Pfl$GbrihD>I&*AsHgCD
z!g*uNtI72o^+msixEeE=si2|a9QxTvFjw5q@#1fBX7Ti~CJLG=h$x71Tog1{(38DJ
zMhgWDN$sHEEd?zVv{KMo!Rrd%P@EXfHX^sJf_4HhOqZXHx8CBrwo_`aaDy@r!JDEa
z!)__3qk>Kfx+v(X;BCbTitenS&mrd^a>isbK$iir-KZpO``Fb(L3hPDb)CVSJkXr`
zrZU#_YJ<is^Nxad=@klkE6^1f6rw;@peRsTcbAVbt`x|KQy%HAQGtz44C=uZ5@T@#
z3W5qk3c`vLt<9icD#@5qs=)|ks>Dd(m;#gDtKcIAmI7PBFa^UYM?qhztzaNM=dSxb
z1^pEC7ad`|C?l>Ja7zh1h<uQO!3u^b7^*nuv-31|>cfy`TAQJ~?84BCneQtYq2L1r
zV-<|#SSuLKQMl(_k-q^AQmtwURvAP86jo)}EwesUFiydE1^cz844v(}%SZdLBwL@T
z;9~`!DVRyi)AQ+F3ipM^WIA)@;!_k%r6ZkjF{YY_)Kh-J%{~Tl_xwG_bOkdMC$^j+
z){Kj$typZ9g3lGqR`8YL#2C+e-SdTlFU7bp;F%%Hq>TIhTEQFzbJ^S?4|U+_>ZFul
zmCBf}U;!tuic}TfD)>&p&kBwU-&;tkV4Z?R3KlC^qF||l6$(}=Sf=261<MuOI-Qeu
zWxN&S-5Q^~cyq`Hja3R(D_Fys#c^4dNe*x7cvs1X8s6aXlT1D|tyi!?!EOb66l_$m
zNx@bH+h|^H@?XxgnbzQ->~-;m)A__NcfIWjb|~1%DW*8z05Xf)M)798{VnIIjrX*C
zUf8Q(pMswhzDvh`1wSe{K!;bH8(`isQc23;Z7P-FEi0cXb~Va(SiunmM-^w=AKsa>
z09!o9R=6?La(DNC-6s^BRB%VZUCvnrrxg6gQBd%!g40}56rAUD`_gqr!C9^t-JShs
zc-P9d_{YZu1s4@uQgE5z%S_(WvUT3IUSZ+oj!Lu`Dc|v4Q}DZjo3y8b>s)G%Ip2!j
z5NbHDf(xYc_V_l(davt;KaxKll$(H7y{F(l*H{JrDfmOd0|k#1JmxytH2<Gmc@+Fb
z3%}(2Q}E)(o)%;BZ+hUM+)otzqd4!G`97RocK$~BGLvGTDtN{p1r<3}EUuI9xq=)j
zl2oT@3VC5_Hq9rmTq-yyxmDz$=ZLR&`5eK2vY5puzPu{ZR5Vx7LPb6m`BhX=QB_3&
z6$MqiqN0?FLMjTYcuB>}DvGEms-l<*KAciX4k*pYM;^AwNBH6@N~nN}l9V&b&p%4|
zh)NUD&Kz9YoPQIPR`IHe@+vB*D5LWD!c_jRG5dLbYF<`FITajVUfi;*qKZl?Dy!g^
z(KHU-^2G<p90=N>nu_WwYOAQDqK1l^DkK#i6}42jC`5%@1qYFjHg9kCHaYDKAD?t+
z0czz{;ZxyPk)b-a<%u4Al;g87eTiyNVZK$UtD>HYEESDa)K~GEiiRp0sbGJ(>~j<v
zsK})0reyHRmz1VpMZO>4qQrLsO;j{h(M$#RHzSkw;bS0$vt&yZtyFYj-&M3$@j9)2
z*VR!)8x?I;yrJSv741~CSHW*-b4*WST`EcCS)E&Kb)d}jl()oKbAIt13;zn~q&jZ~
z-ljjCcXbw&g?C@|bmPk(>a04y$lX=+Q1PycUaIpL*ptaodEcSkZaI&%Y=TDaExe_V
z3T__7Sw_t{YiKb=g{nfM9i}GfDhyGJvx9FTI4)c$_<A9vB22yxkB*3nD7&MforahS
zQ^hqEzpJoR*eaH*SfL`WqOXdNRZLRx9tTUs2o)n$^j9%J#ZVQ)R18!xNX1|kL+GFP
z8ZbP2rYCdk_NF}5i?PZKgx>MGe}6cMS;J{A`e*%2Ml~~+!PTQwj8-vD#dsBCRD7Uf
ztcnjgUp6^m<P36VE$$V}SagP_Gkm?&u6z?zd_<R^Uu|}x{TUX{Kz#~i@b)JvCad^L
z#n&pPsF<o^rixiAK2<SI#dH-j*m_Zk(eDhvrUIXFM2e(SJ|o_FeiH-QKUeXEiZ4~n
z7Jb?Lw}-LZY>2see{;9H>t@jS92Ij_EL5?GQ%uD?&RG@T(LN8{3_+hy`ybC-ASk=w
z;0+!Eep$f2ELO2Z#Znc^gnS;J#V;3liWa-@JuOfqoe|@VNH6_M=1LW-RQ#yofQr?0
zxg+jv9CsCKXv2A#Yw0a2)(O0|lCQ&$nd=4KASerL6kwBz%>rx@bZa7)1GGcMP8EAp
z>{YQ#MPyRaZW>LTB1fCh6pU2gr{eO3w2GPe_N!prKJ{nRI!$qq?ycfi6{l4kQgK+t
zaTO<298qyp#W58>bD^u&nB&XBcN8arokrj{0{n>MB**%g_ZJnXDCDawnv@5(@$(Rl
z_=qd6Gb+xqQ59EIoKtaL#RU}?In7IX=nND>-57_@vACo<pI~qoXr8(?rcDaR=r<Kt
zxg>fs$!9P>&rrLr;)aUS8eY|KQ^hSVq#E*RxUJ%jivLtRRdH9vJr$2t{LQ82sQ12#
z2P*z#U$(gZP{HBgM+Xl%Juf;A#%}@s;+n9?In3*k3VzQ*@PsSs5%)hT{#Bi?57sxy
z$20P%CoM+*e5T^Lid-6UYsjG?Nkg)RoSJjq8HICpFovJ1QWTw`SxbK&4JjH@HRRQt
zv-ue0&%V>^D3JYPl75?CLjlcME=p)9sG*RCVj5o3P*_6|&C#JK`SYb%CC7U|ZRh9d
za%}Ep4aGIb;d5S0qi!s~k4I>BXecS9y`q7~(v{Mj)5<vGs2de1qoJ&Z`Wjx-P)<X6
z4Q>sRh6)-gYN)26x`s*`DpQT?IjU+1=1=D+SJA*>;#{Li*)M+7P(wpa4K5Ao8fs}E
zlZtWl`MFKuV_q7H|J+vD+=NVz2Cs$;4Yf7+G{?4n4c8jvquWqn%H))(qk)~OtD&9-
z*5wg?oFKFeo95An4K!qGXem0?keaZthNc>_G&C0WnY^Mnd&iQrJU^gVqxqX@Xs)3J
zd-}l5aiKC4%fY2FTWM&m;dRj>9iR=Bzw2f(4jB)EY_H)B4LddL((tB+4jLxVj2hn3
z&{0EJLqtO-4R34ct)Y*G&KkOC=&9iy4P9x;U~%4)chj7mV|m-0t$|+`cBh=u-X0ow
zS4q%1JBv5H?^45J$-P7t@3;BI7N19C4T=UsLqLP7LDSHSpW$fW9W@^Wc%RHK&Ukmq
z+ti?j->W9`JF*ac;|KS#$94JS!rUkqe>SRNv<8zcY8bBJeGRsTxP~DbhH7|p+4;hb
zxB7iGyhr|Br|Etg`X}%J0R{>>NYKF=_;kZ!Y;l;te0*RpW-Q9=trjP9`Shd_Vt__!
z&STMxx{b$Z_&~#04IgUwx?xJABYA%xoy=~Iqri=>@wDfv+%u|sA8vN;*ePwIhL1JO
z=QPnUiEg0bOAWI%Ox7?(!*mTZG)&d-sfKAx?r^>(WG}k?>f)E1y!of(&os=`@VSOB
zC})$G9h@afy65_SD(h@a$B*yW5G#JAp~ne7uesDs!yG#QV;7&!DE0;a8&O~$XQGnP
zC4Yl&HGHS>yiTmuuu#Jy4a+$w8u%4n@fCR&Ygi&Auscgd@0PLRTpzFRDSU1w!AcFQ
zgnd?vERH50WE!`1zICNOKWJE|VY7xU8rEyrz&Wd76CLlQi_a;1N@90-04|?mD2k14
z)v!&&b`3j(G<Ki-GHrcd9QPJ8Bwlp0-5U1L4>df|u$K#zhI1OuYkcy;j~b3^IHB=u
zJ{;6=Si=#n1}*ddL{pznIz*X<L}`2oeS4PYa4h#x4aYbUw)!ZRR{dFXo~PI%^*<>J
zpVIKFhF>^F)xGpamN~7V%6#dJhO-(dik5di^=<Dw?mc}q<AR2Z8t!PgtKpKyeXa4k
zhU*%xa5{5tZp?L+dOmc%1}#-Ti(h(P<BXf-S@O`;X0GoB7k>@6xa@1rLmvfJYLJiH
znsHLh&(~o8LdOpGG~CzlP{Usu{?PD%D^IcHKe=e!^S1POX>-<E(AxWQ!SqKOo;6Hi
zmB*aUhg@Xx>5{$sN5jATq0v!B$A220ask(orsJ80=Uni0<kFEtN0JV?asFi8nc&or
zI&-incGM<sZXJ1ar07W1oz;N7pmEp`|J!9lEW?q_rz5`(=qRb9fbP62D5#^5?tF92
zdBI0)R;1X%I*RCy1&RtvP)vZAbi6D;aY0K6%DODDzFX=mI!f!{XQzB`P)bMDCSFc_
z4hnP2>L^E!j%qr}>!_fkvZz~8cSh~e2In7GYFkMp4{h<WN);Vcn4r3j8ais~sHJ0F
zdMbyNr!5S-=yK_f^Q7x=>&UKAf^s+_EKgCPb(vlrJ{|XU{Gr3IBSXhP9fNe#)=@`C
zV;xO&)Mejy_{PumH=x=AGg)89YXbA{e*SmQ+)N!k9=jUq&bDcdbY$sHX!pgre(vqr
zR7W!%@9OBKqq&Y2Iy$jmI$G*zrK63GwmMqt{A)YqbsY?KV5kZIcBfeWP2WyOdmV4-
z=%_pUcfFxI(dGniiX;ObItajB`1l_^gAf=K&e-qHI=ZmGI=buVs-v5ZQTvh^3Bc$A
z28T0nh5z{X(9u)JJ36?N7`Fpu5CyXsJU}@NhUu-N5AWV}MCnU96di_+fDToMrb8Ev
z@<bl$$v_=On=nM2F#tgwAswez77y#rw%&|bU@!o~OSq92#m01)I{NB(Plv^(f0a(|
zOOESKY`jh5&&kWZ&KjR^zOd-0qrdJ%6Ahr1>N?>c3{zo@3OD=WK{<nU4AHSr$0FUi
zKN+fHGDn#z=@_o#eH|loe4t~jj*;xRj?p^C=uRXy4a?94YQh$20V>Sh@IIskbd1+A
zL3d&&XmiF+Fy?_9SAL{Bu?_t%xF+gg@?${>Ch7P@;2BvSCZ}@Hb$p@oD@9DxF<r+@
z9kVE{ZORNCpXs>RD21cR4;FZ_FQg2c`J9f|EI;EhXouN4zS1#I$9x@M>zJcsu8wbL
z?c**E3L{(Sats3DF!2i%#wjh(@hu&rT8Z!2uVc<ugbW?wHwz3bVK*1+Sfb-cou|EH
zsg7kjHtE=`<9i*;b*#~`R>uk*D|M{Wv6^}=b3RPqPPViR&GI7LosIs$sYJKbu~El*
zF-$B#g^zG^wj?KZh329SS#pbxtvYt=*rQ_`UHv=vb{#u(Ff@pk+{szF)y0S-D!+@P
zpX_avCod^?J>9EgpN{>UXos9w8g_)fL^oiZ)j=IU={Tk1R~?6R9M*A6$Irqmj&NMK
zxUJ8{@=v*mE9WCJj_Wu<x4Gc@MaM}U3`SyK80|wRB%rqR@Y6cZ=(wrlmX5PJ&T(jH
zKpoeRah?;ith3QQz3zf&g*&%1M2+E3mszZIhWiKK6)qz`_<qxIRRH2^Tz>?<p5WZz
z>M_m5tlK*7=(wxnp6-PDP!tE6-oo8tIYwL@XuStI{uDl3+u)mL{KbXWKmh}fbUYUP
z6a#<jc%tJu7j^^x==fL1Q!e<N7q`>6xy`ZW_5S0se_P^dygX)?$M5ox+}^R2Bm>C?
zavK=+TE3hHSd7Q)<}xt6m7is}B@Q`x4DhsE&LDD94QDEip6AJHfHY0ed<Obgsn29V
z1BFBZmx00tiWn$spqzoC27i?Cih)uFei`O^$v|-fB@D!#xn4F<Rr2(G?u7y3k_Nu1
zn|VoY%B(K#OcpL};8g=<sM14khl2UYC$r_QOjaQ-Z=eDt7^r5TqJc^VDjTRm`B&2@
zwpR`xsog9eDeL|)%vD{;VX~%y8Uj-+rIAxhXfkw(E8T$GfMmd9z-PcOdgK-Kw+_yc
z@n=t_wf@bWVPHod=hHTF@(*{_5e4cRsAr(Qf!7S=-|A{&pn-u*+NXs-%RocJSt$64
zN+ZMB=`^&^#}$uRjYR?a196AB?xsvGb~iJe;4U&-8fawz5tNLewSm_SJT>slKpO*X
z4eT_qixxhdvz>uH24n;6g(hzZ`lf*n2HrBz(LiSdT?{93rjvoU4RG^(h8*x8f4-LC
z%iFGovoUzT=dRucx(S>uD4E>_=wYCz0PiID?;7YOFh#wn%Rn8)fNEfhfvE;G1G<4h
z1_m223<L~V25bXC1AKKB7L;$pLM(RB*^oRUI0RAphQMZm!<UnB1APq);LzOizGt8x
ztz_V=QJfOkdh4KvZ_M~&iW`y-<TT0lFh+$h6^9rYN-s4q#=tO+xPkW#j4)8$EY7#V
ze80^%W=Euyj_)Ro<SgKzmvMG$XXpsuP<>!vtbvaVOf>MJfpG@L8<;?Y|Lk@`Q;O8%
zzV~d7(F=S>%6H%&8<=F^^!sTvBVV<BVmQYxFj8o;Fgul@@jo>%&A>tfiwsORFvGyt
z2Id&}%)m@eGy`AKP#avcIGT;}ea>z^cXnUo81Y^4Yy)2zPLL1xpX5t63S{4Tw(MNa
z8UynUEHDs#nq%SbIl3LqJ&zM`NEY9=eJjS=Zkqo)1B{PiXw8n_oG|Id29_9DXJEa7
zr3RK6SZQDtU3Y5I_XbvQ5^*DF!#Vl4><!lh5g|-XRvTDjU@g7Na86{PxoC~gPCG%@
zd}~S$U-ND-u+hL)1KSL2;)plRzuCYR!-*>A3ssuSv0fP`M7h{Q*LJQICtN!WXH!jf
z^Tpo{yAA9S4t!J4y#{`zVGYbW=-+2xzkwgAn1O>_PXzNP1BW=dxPlotO#H}oMDP#)
z;^x12|8&h}#h+=tx#`C_tqkNk=ughwxYnZvotybt;3Q4g(?bxi(Dal6{!#e6c4n7L
z?lYqG3yz!NoPqQ7rC(g+r*3V0q)+i8=e-x%DNd_P?#l+QiNeHJ4E$!`s)0A}`fl^X
zu}ki|d-DBm;JN`OrGoixh$=1eG-1{)QR_BWzi!!g1ifqEo`L%Y{@|)^;E90;95}kP
zfxp<t+g*omZc_S6lfTp~(mH{rj|@D%(bc)w@ta<Pe>l-9HvN~D@7aVW-$`Za{U`8?
z<Z}Z#0*HlShLIFNasZ2iSQ13e0CEMeGJsV9<PIQD0PO>KBY>0uQUj<KK=lCf29OqT
zPH8C<K)wL-2T(8o#<&&;VA2=9E~(C8j!(Dw7}#7WfWiUi$D)X!F9}*y&|(2pPA|c%
zmqoI803`x|z+{#Zpkx5ABsf3ZPA)C*s|n7D+sS1EC>KEa02+xfW=65HZUs@GVgQu{
zsGKNYMS!XSOg`^KMb-$QW&n)?Xc9mzk>v^?J>cBDUEAkz2OtHU4b`h}cK$K+hyo1*
z@CM)uz#l+{;M5nib^vt*U`ZYyKw4KM>j}Eya87bw6S#q(nE_<AadhC-h*&U*YpzUg
z8bGsv^Pytf0GbD!V{v$g!`?BsMF1@mC0hy5TF}=6Xp`WVotxAyfb3n)@ie^qdNY6y
z0SpXaPylZQ&@q7C0rUx=Qvkj8CU*{?O8{?+x{Pe+*#un!7`@Hesk>XixhFr!Ev`jw
zcR_mu&{KfIM)ErXyenugL8;-G#i?=tN&rRx0l`!Q&;rl{;5WkcN@nmDYtom_9{BW=
z$y<EE0IUFPQ8E-jI3XtzKs1440hkGVeZBKo7pJvLdU<EtH^F~TfPRAZ4`4uo&+mu_
z2QVanPdMlS3=Lpd0AmAK);DFiDDyO5gAW9FKY$Sej7-!WCBSGw#|TP`aUWyuZ~S2Z
z;{<0srIq(bOFA2-O$gv4!JH^4IUjR6B=Dy7xuyg#HGug6ED+331DGZNpILa1H$8wE
z0elv~Ou_tG&{=|h6~N~LQ05l_e3`(r1^Dk+<2Uv?!8vn8a&98`8v*7C`bpl@zvuYA
z4d6RYii^%|Gn1^cFn~p(z+yp{1hACG5tzBl1^8ajN|lSRNbpxo%fC9nZ?y4B5T$}x
zOMU>q1#mThbpfmo;HLl%1#mo1>V^P*4B&vMxG{iD0c;Lni%4z@V0!>t6EeH*P2M5!
z9zk~sx=YaAf>NLQqMLgI*e5vq6a1+aiu0EK>^9%QfOASL7Xi-M7i-Jm0FDH3G=O6P
z(7pL}0OkBFD*j3h1vnw-$%M3D0yvexgHuya2XICt&kA}`&~t*G58#3TlzFj6(xn8x
z9Ke+X=4r6k0{ES4X%KmWxE{cb03HYMw<vHk0PdB|1?N@(w*$B%m=6TKn~-oXfcpaf
zk>GS2?F{#yBKc6zzqo28a(}p$_ldwfbc|;ou;f1h{2Rc3g84Lnq@c4P^LiG*^F*y2
zg4r*aoE${ke9n56Gl*P?l7pM4qy&)~bS6%bAo2=6)lLiIyR#l{a?bMkg2<mJUqFC@
zK@<|8aDsm;HMM9E#e&XZ0bFoc>!l!G7P-X*Es-dRAWA0ix>-r3gLpLvB?vW$GC`CL
zqInQ4f+!b6`5-C<Q8|bTL3DrQsVHjkEhyiT@ntVR->wow)gUqjzgiI0gQy+Ed~wol
zjUZolJJzTfM6DpQsySbOxDxHA2jNcO_2Pw+CkU_L_yqMQax(<ri(HDWBZSu#v|bSP
z1$a$R<~9g|Th$RX6jd4}BxD8ASl}jtHcjxG1<`W5W2lxvv<jk65XJB0Z5?!8$IThw
z=^n)ELA2qJ1<@{u&Z1U(LElP9cq5261@4gGgtz4GC~zl1-%ju^R88)Zz+DCC7DRS}
z^Y2Y(BaR+H^h|Kx3F2LWdj*}>lD!lBDJzm?p&^yzo)uaUdJrRm7#V~SL?DPz5aFP6
zRx<a-rxyi<KX4h02nmDO<+`3|5HXQ71${3FD<R(&ATDTMLGy^;g?<9}4`P4-)OO$t
zaNC(Lg9RQU=+GdB2{2sH_XTB{-AhwP1sUdnnL*47VvOMPmG4JEd?4^xK|f5CA1A<g
zK_}3Yt2qr#6v>Z+m=we(iIUTTm@M!VL8m78p9;{DJ6ZAH7J+93@mV7G;_V!t2k}J^
zi|8Ktn|&F?>>#*BVd*j%UnR=S7vSq4<|H_CgZL(a=LHc@X-MG<5}a>2X9Zp;XnGH4
zFPAZM-ITwS6P(S3@MQ?!2eCYeH$r$bgcU)o4B|-;{{*orh}A({3F0@-snN-6g4h|v
zF8&GxG3~7MLlEnP*!6;L5p;u~8-v&+z-B?&=x>{IZ54Q%pxXuAk;u(qB<~JlPY@@A
z_(d@H260$`eL?IO;Kv{iCCVQV;9w9xB{)xYXE^B9M+E0+5XXYZ(IACPUOx-waY0W6
zk+#QK^jf4h<>3^k1oPJ*P781*hzkO+z*zy#33^`8*GDH`Oyph?;4-Zt9P(-q*EkV^
z7(Oj8_c^S7&-FWh0)n^^#LXZcBx>Cf;J%=@gSeC6-wonk0<XI0sQrgX(kuQH;Gv*@
z3HnIT$AYqC$4$BTpHbBl{(pn`FNlUAGz#Hq5YK`@2qi<#|0B<X$QR;nIaxVE&Kj5$
zLb3ok1x*Pd7deJw!`va{5lrHlZ5@Y670JAUriJ)-m~&&6KZF7y6ik#XCO{!U3kzCA
z(4vCAeK+q*0=z6}aY0K6N>TO7CBG6vsSsXzH6t^G(jmMWf=}d@388EVwL)--WVsM3
zCu)@!ph5^06P!vRFyN2^tAtQhFslh#L(uAimPS%d0a%P1fs&?+q&Eb&08%2?BY>UT
zxpl95BFQh386ngTp^m`y6D8{kP%nfJ-*X1;HIZzP$UUEtlIuuji3<L#5E_TD_jcO-
z3jQV`bldG~>KM~i@|vILeXwG)5SoY3B7~NrZW}>cCFHaY;q?SQzu6grwj$Y1(Ds7*
zDkgOZ;Vo(s!nhDRhR`X55h08W;q4GQhY$%N8glkc?Gl12s&u6$0%QyNuAtoo?ICE-
z5Z)1hExtS^xtGAb6P!LF$O){3uwHC8#FAPFdV+5V5C|bCKq$cvhn!u4SvV#*{W-W5
z{rB#A%@C{*2y8(K;sW#y;k^W>UkDB7xR^B{gn^>^AVG(RFgPK9hyX)F7?$AdIFa;z
z0@taSG}}lX6~dShJ_upKR^R9l>i2W;|5Iu;HU$2W#DAk0O3FKp@gYnI;j<8ChVW4c
z6KUAZxn_jW^%KwUsSQ4+^UU>45|Td&VX^>I1f3ef!|MNg`ukLHriCzF0Cs#&o>W?l
z{~LB{k$YAMCnk6}f}e}rwQn`yzk9Po_=;0Fj90?=I)phPJPP4)2y;XDCWN1;WC-&@
zm><H<5O%Q_A^g47w={%hA$*%?<vRfuhOkJ0#eyzL<X+jB>wAIM3c5VOUm?KC5LOAW
zI>BGV-w2lz!}dc6>jZPXpqmBVAm~OxHwmiOOxhyA))2OZuwCFCf>OwYbIww1op$JM
z!94z}WR~*m;Y<mEV4t7_`vv$hgaZlA!4L*j_cDtg3m*>QObBN~I1<89A?FzFDZtM!
z#0nZX@7&m&6!;fGnLH)HuY#Ty^xfNe&xMfpi0ftuw?a5Cm={90D8MB_uZ3_qgexIj
z5|4zx3FcKnDU-b>{XK;1f^#FmUokqF?|b<l2Xk+Sa7Xa((yK$bFYup&{vqfCL0NKm
z{gj6Z{FeZmS0w)(!V|9TVZ0Q^KOy`Z;`u~LdBgZG<ZMgT^s4{OV9uu@JPYA@qHeCR
zv-s!WTOa|F1<ffa`BFfv|6$}wa8d+F4P&;*N(&>O;N%Zu-yVO3(pd#WvY?=a1f`t9
zVH8Q=q5=%9)%ad-&&y#H52HjFxk_dn-|mweXCMszZ8!D4hhOpY)~i$)rNihH#@k`M
z8b+Bg8ivs*jIv>r3&S5qM%el1tGtj|EsP3@Rw@cmDU8YjR1vglBKK&Yr0NM=BaE71
z)C$9u;7DPl3+zsChUImB^*kc!71S5Tf!~}Z`szp*ZOen?YKKuLQNC^%^%A&#7_SN3
zAi>ELfM*qDh0!>SW?>u}De*6@CSmkDB{dDB=MHDLF8*J9|1D4RFj|DsQdDV|kkCqi
z)`GqsMjHXzCUVzq$<;oA-w5N)1nv;VTM67TjHh)Sm+KrxmoT!!=q|Flh8Yi#kv}b!
zn|E~!qvKQORZ<VC6h`kb`h@XL81IIibB%k2LG`F7ztHE_SmX@p<deft!U!c=QN!TB
z8}Afw-ic{~sS9d^5fC7lC~19`Kb*jkFro=ud`m7X3_FaQVcZHM9!B3V)`zhnjQ41+
zFi)7m!Z7-WF@Qc9##dns3}a9jAB8b7jAC=r2Man{&>?~j4P%%9!v%d`&=G>N{Kzmy
z3Eb~j7n8ikgz-TlcdP&(hA~cn@d^F}0bW%3IE*hva#9$d2ryaD8DUHjV5*>${An1|
z5_q}*Z2GeVXJ#0)68Q5lzDQuUb?jh6R{uJTIbkf|1P|7k8^$+b%nM__NbdZ=RcoJ{
z{Cb13NQXXk5qvAM3h$7}SwtJg8id<P%feV3#?DplC4w#$bnr$uIn4b&4ASL-t_WkL
z0IR}qcgtQaFmu<0u~y(81ZCE`FbX#GGHWB9f4=)D6%J!l7@Nb`62{gr_HwxhV_O*8
z!`Mal^ZRzt>^|Rj(|tQR*`tk#-{_W|%bT%V<g&mX0eWWV-XF$~VH^zOCys*KcYrIy
z>ZT3-KD&*#!riWi=qKqJ1NQh1)5p4H4?6BULf_cq8}hl2^ye^+hjAf{i(#Ay<761;
z!$@w_<d-l`g>fc~vtj%i#)xj&2mkDPI*h~K`UJd|>}-6F-qkI8=55!;ZrRnJH6=LF
zExYkn_oXnNe4KS9jNihz%tdKZ7OxVMvaW`4jk9l3)^*O`IZY~zZ~D7PKJ1o#cU;pO
zT=ynr5&t`+@$E3~aE*;1C4##&PR@D{!uT_cdz_@nzG>rJ_rv&uldg*A@mbe|9O-LQ
zy$_ic#xq(z)%%yAkHUBy#@|#%B>xqZx&H|8^<)q6e*&+&?|vRejtFu_kSoGN8?##m
zGLs^Fy`0G_IfA_n{4a2BGPARfeUe$7WwNtVBgh*;r^oK15xm?{N{is}B`Lqa`6BRF
z^N?9UFv%|{K%oc<3s5A%|NFIi#Ugkq0v=KEas<UAxY5%2u8qkO0&}e(=amRbQF08$
zV<;WLs}bCa;C2LMA}AZdxCq8aFys|~xrp=N`9=igBd8ET#Rw`zP&<M;5mb(#N(52_
zo(QT&&~vHV6+wCg)gq`KfjZn(BZB-3rR}pN;+ld}D}uAbT}-Y$<Y}DbaYsP9S(ldf
zm%I`9BFKnf&yVhJi+eu&+3k<uuYX+Q2YbrC=^=RMxVvry^&)5%LGuXei@KQ+G>qUi
zQL;e<?RupjK`N=V!rdr>rV&t77E4mk74Cs|TumZ~uW^lC=wk9nf9csW&&*S<77@H2
zL7NDOTSm}I0OHofgM0*SBWN+x)#!;t$pq~pXfHZK%pGsujG#jVZ_(fp1R@A>1S5Dm
zf?g5yj-Yb{T_Wf~`$YIZqkBQG<gO81X;SaE#ZtEjvLhh)sio9Cf`J~1_?-ws-KBR~
zJte*DQP-J|q(hrrXTEFPCjvPFErOzFT}lKq)@G^^tla5seB8|f1W(4gbdhTa%3`&1
zNudbB5e$xC$skuG0&Af=7J(VTk1O2K2*w<hVuM^(1fM>4_l@9iA)hVO7%<xtkAPYo
zSmSz+jsEFofqoJ67bS@Yuvh{Qir~(?6f%cIFjO#yMbPaZ*9Q>{r=bS9-WSXff{sko
z8Wq9l1Rg{6?m0~i|4$klfoqWK!-y0A!{merK8oOc1Q#Nh7{SL89Esp)1d}58B!V9z
zSQo+M2&P2vWdyU?(?_nU5$AN*Pie;X{z;p?Jm+*;1k)qnV+F4n0({0HPH<*L@Oc7%
z5dk+rVzI9x_&S1bBA6G!9H9*L`F4(*bgoEpm!bI)ED#mHk2vSLek<^I0>AUVYhgm>
zA^{e&j{+=B@RxBAt9xH)wLF3qg1_=bZlcWU2-YO<S~fS*(QSPM8@Pr<urGp*oQxw~
zymm#fN#M<bZb|UBMzBrb?Fr6~2zDkgS1s1v%}FOXt&-B(^v>WuxBEq-hv+8}9LyoH
z%mIQ#t)IA7TyPpaEQ;ma>3scnEP|gSIL%dMM%M8Nk2KA0K0WJ~2u^Sy()|6hvrlqi
z$?vaN&VMR`Upa-RXWgBbHoisP_OJN+=kuT8go@z(GzXvKr2Z_cbDIBR1SgZze~aL1
z1eZAXpLmO`c3&3YN(6r=`N+8z!S4~=<hoSLcU{ndb}})q8zMPAJNpIa4i|q;$te0n
zaW8`VT)3j}M)5}k52#xd<)ZjAf`<|30Fi=G{1w3?fpbOiSb+Zo{aa9$c_P3+g8nP$
z7j1Kq|1^SU5j+>198n}k9f7=(1o*OTuAB)D%jZtuJW-?woSNX|jUp|9^9hh&&;n6@
zi&TdK3yEamD2hZ;G*R-ED2fUEQiAic0L7yyApjEml2PYS)EByy63o(3yc$IrfnW6H
z1uZW))uO17s9RBhN>Nl6ph|*YH41j{h0N-LStE*?0@RAa6-Bzh?nL<)g(Z=EfqhZb
ziK4FH_yx@nv^KlB%?UZK7e)OjI!DnZir1oO5JgrLjibnn;+4|%8%EJ6ijw{sQ@7Nb
zX1JG*b2><VlPH=-G3vgnSrl)jrEl+>USedeIrP#fT13$@idIqdYm{r`To=o?j-rid
z^mReY?kGWKTbezJ_JY$<&^MxZGYaN*piIG8*Vd6h%JQ8A=j{Za%&t*%i=t-~??jOu
z#V1!wbdRD(6bEb957lk7@<t8nS*&{&b$&OBX|Wo;qS#WZ{>-PY;e1s5#<gIbTaH4B
zVoellg;+I;526?wg%*V_I7Sphq8J)QAc~;igrbNG5RM`uK$PPig%w3iB&jM#nb*8C
zE?%}^axD5r@g8jwMgJ%U3FZJn2PTI2g>SGVufb8gkT6V?85PCoD25A6`R_+DB7sMW
zl4QPUmvl@NY?neljA9&xM=?8!@nSSTje=&O5hg_Ok+25wL;*e)bP~;&;7=A{il9>k
z4c@EnD_wtD6w{;l?nVt>GotuR;F*HX67=&#?iT_qJe1=rQGH<)i^M>DE%<W;oh#@!
z)LDS}f-VsBTS1+M1gLbN>0%*=!@4>OYO*AXr2;Gyl$`GcSRTa+0ahmXs{}|bScASn
z<NOfCx+tzh@mmz@qu3C|W=f7?V-$3u#}`U$5?)O|p@;J>Wos1M=&rreFGjJQmh6@O
zV-yFX*de+@*V-w-E<txku_wXb8^u0>_Y3;8RDBjc7{yOQ8Yj*nF}aRMaYBH@f*y(D
zr~t<V{aH}X!Q#OZq$fr4OccK)_@@N;RnXH>yeM`yk$WzR^9g)G02a6u#bu!b{egX?
z8(fXzS`-htP)G556xX?`M{z%j8&TY(oySRc#eBaN1!oY|xGj9?j-Y2s)u$X@oNj+a
z@qjCT6gf8K<rJe0dGpEX#?IF1TH_JT%d8lZV)#3XCsF((#*}_bH9ieEZv1b;rT>fK
zX~NH+Me+Q_T)6KnDakS9jNzr2vqt5LA$6IXUC19p?igd$+<62|5tPYP0rCo(CTPBx
zGe?+3pD7SS!I<Mtyb1|WSkNMZ78SIZpkwmYU@zEWi5L*W@EG2Yp(J&Pp>_;)VkpI%
z{}?LAP$h;}W5~`(D;Gog7|O()rSg@d-m)>|^(GTcTj8n@b8eyrZ*n?bF@{Q_4DpF0
zQbvKaKfZBQjiFi$Zx>0f9z)F-$f*$nb6K6tT7pCDiXlA)H`O@mm8hox9znf=lHZ_6
zvOj?{VqlWYx-ry?L5V?)p?(an#n3v2*O?nbX3SaDsT&(@7(*jb_h`-J$u*sdSt8ju
zh9(J_O=D;#aPtJGMGP$yxK#`ct7b)BZDQyZL+=>c#?Vd_kT#^St@bgzAsT&C&<><A
zbc~^sNcIr)Z9%)n&{=>kf;uD8E}66&4IV>x!MwcLMJBJFi8AlR@NNQ=U(@GQ=_3@7
z=@Kg(vy*Bu=rOz(L%$e|7y>a^qD)Xw8id6{F%X0WjR+bQG$yDiC<~O_=CWgmi;8_?
zm?=z03)B$~&_9L&!Wnq4%Ry(;14YR}FB*zrhyW}<G=^abO#6?BVPp)?W5{7*R1BkI
zSP{d@7{<i#L5zEP_`jkN=A@5}VMYwoe@gu@hP%^}$Hg!{h6ypu-r}7S!{@ntABkcU
z1^rl1)|wQ<CkZ@RfC{%$$e$X+ry@Bmkvm<0ZMo`w#;yrGD~2!W{|$VVoA^GD;R{ZL
zCJqi>^UaQ-mF7pfkCYmI9mAX$=Em?1r(q0>Vptr*{221@^L`h@!WfFy%v=zI|A6;f
zcB*a$lPz=l53KfYJm|ISW-Q?V)yVulhCV$qmkPX0P%@{K_AeKFX1#jAyDEm=>)cyn
z*c!v?7}mtFR&X}NkhakOLk#O;SWnBeXgqF<cYSuYvehe%%3#*U7&eJAn*|+}%SYz6
z7`Df7Er#D?*b&3d7>>qpEQVdeo<9n@JBB?m>=k&wpfvS9+Gk!90$vl-eFtJV7{gB@
z_pqRc5+$Xpz9R`-WugD)7>>tqF@{T=_%WP}VZkil*%*F_q5X0HuN;&VAHk^@Oiz6R
zCQl3InHbm+COa%{axRARF%Vo3l;Dk3{wv2_mt(jZ1A%jKYBZ|<8|UT}-wRHjGO5>N
zxWPpxh6gd+WWRFx?uqiZVz?c{9l;^<t^i$f`F5`IGkKp&f#RPty~(lc>_2087{g;O
z^|YtU*KVtq7Whka@KFp;MAJ`V_$P+{Vt6zr>)#lDzT|tqQAYM<-`b6S;-`ZDOi&hh
zmhMY3k!)hQi4`Vtn#g714HIvg$ZaBziE1Xpq>*AG)kJ9%ubRkfBF)50CSEp?&qRI`
zMNM?F8W%88P=G=vHc#=9(=(?-c@;KML}WdFUXRIQ0u#_O#Z8nj(RzvxCN_-Bpt%~m
zea+K+<dhWrS4_vGrA%CI;xNmYC@VNsO_VcH-b5u6l}%JIQ8<^+U#>(&0gA16O`Pf@
zr;3SZ-}sK_@tr&2C*ZKsXr2P~YM7{LBGW`e6SYi?eqPUG!YhEwM7jyL2}vX`=k_s|
z*Mcby@R`UkQQL%H<dSngJDaqQiMl50nV6L4f930o0<Q_0v%6EKfxz^uMkcZZe%(Z4
z0h*d<W}=C}ELkSEuerc21%1#kqlJm3wH(Q9tNU6BW@|w+QhaSpv=z9WiS_~<%=teZ
zevvafn0U*?FcZT~bfo1?XeM+MZ=2|BqL+!@CT@<*=whO)iEgak)Hl%Mqr+sIc*leT
zF8jKRG3{ZZr{Hi2dcl9!#IJYi5_63Dh;dO&$O3%-v>TbKz|(3u1q>4b6Sj#s%cS^%
zCZZ-{0*6e51t33S;!>?-0{R2T%cPQ1e7r0H@?H1!HSwN_0VW2T+<U}d_2m-%O!TMl
zC4MFw6|6@(NMsE$F;r+cSR~(2GMV*BQ>O~S`zA)1m|@~G6C=6!n;36mf{BXteWOi`
z6<~~@9|%hRAE~|%O^g%C98-PdOu6d&$izewQw8&5I)I5!1fI4a`Q3D<jM+BdWWkvt
zx<Jkb!T;36G>*vqy6c+wrqd78oWe6r%rfz<iSJB&&Vjq<n{DDN6JMBk{9iX-UkX5j
zd~ITi%lD0mc_!wVIGXO8D>!7HNcGJ(K|i0d%Fk&&uWbDVCXP?>5iB%eUiR@?Vq%fN
ziv^`yl6ljcvDCyePH?wV=6e$li_{}nNr$=S`&#jDHL=RXY7=WrtTnMo@P80=y`bw%
zyq{8!SIO?#8w7_HHwxg(?b|HC7C~ztZp^H0Cbn}nmG<v2vD3sZ6HRY=FDChRo7lrn
z(FtGm_xK`fuZfK{G7p;AXJWqza()!_fQi{Zd6`_j#i2i$I7AQs(R*0XBPOox_cF<g
zKX%82w4Z4T6Z7|bDfxtnm8<>6+;rkobQNkc7#V|c+Qb?9Og~iZhqETmnfN=7CvluN
zae;$kW4MirbW{^_Eqr6)GX30y&w}5=ZzisCZM2Zz!Zj1Wn|Q<_GjZL-4HNfG{J|M#
z;+Ba!ChoGEf91Hn#@%ah%55$|y_|@V-KwXY=Go_y?s4+gk*>^4dSK#Djzvl7FS>nx
zscfe7&_scp(w;G{tSL#)Q`2XsOMjbq!gbq19t;1N_}9dLCZ3uYQ^uSAtt<7h=iqbq
z$94VBO!1$ug#oi&&#6Fj>A)gal7(aoIW6u_UT@$ve=Z9Xhxtz2@=P4!lTW+8+mkEB
zLS74L7E&z?KcDZEC9S<9Jx@u0c*fP|>*UKjT?H%@v{2SUISYj>6t+;p0xT4<P}D*(
z3olu?^`!XNGtyV9Jr6Fr%5Rav`=pmG6t~db<(XJF`RO#*@RyTHT6o36s}{;wC}rXB
zF;8h)_>$*TN#BH}CEA|ymV8#c(Wlbw&K}QS9=-rCZ=r&PsurqQsA!>*g~}GHSm?9Y
z)#??=)lQP9HRX%+!yakyCGTjjx4MNI7HU~=S@`%*X;o)W?#fb4%Xtv+)<{aX;I=UP
zipyg`vT$>a)bOdBH0!y$P`c!`Fup?4`tqI~2c--PwJnUWFw#OD3w15LZK1P;dKT(i
zXknqHh1V=Ju#jb;F*)14nHCyaXk?-0WS9G1jz;;NkbrZ!l4kTvX=0(Ng|GTa=lXk^
zS!ixydQR!P!oGW*ny?JPuwfakEVQ<;=vcnDEWB=^jfM6LU2o9ZYdvi(v}2M+d+vne
zZd=<}>Ylynl9acZmu23x&_NU~Xh}?VwD6>mmsckNnym13vC!2*KMVaWbhD6cLA9W9
zTsVA%(iMx_BTGFj^tA9eTY87KwIB=pu7zF#^cIx4=g&xXh9~7Wmpae^?;dge%&*MZ
zdQ~ZGA!5O>5U>ywoG<3OLKZ%JAbn9%dQjB6Hzq|b#4HT1CdFCORlu}hS+Fh4s^YPF
zNIyQ7_^;*WkEC<Ev-(<i&*Gh-WR#L9p+iCM01E>x46!iO!XTQWlN6pIb>8I~Y~lL%
zN!^FJo}Q3~(R(fYTfp}|M{R=Zg9kZkR7>i=FLm)>P8`T63!^PewlIZVw(tRm+rk73
zNy+)gQcoIxnyXuy)cBCQab;;7UAMGnZ}X&&I9V)AvhWE#%0iCCZqAGPL!_U#OJ=L2
zW|Lea<|p0tOD!Jfm}=ou_Qk^I7N&8CEzGd+87qG48d%;lxv*4Vf$N{;nG;`^vRX(p
zISV#=uJlR%!orvI4GUjeh)?&F8Z6D`Tr26>^s8q|?d0|&Tt$|<9`={!SXi)F%DJG#
zJkDZHKpRDDEU@scg;N%OweX#Vg%);M*v*buSZraXg;n&QhQ*g~IGWU3W??BC%_F_E
zSIXTq_xF~wP%P&nrg~P;Lv~Ad+DdzNI}Wzm!WNOc#==?x&eI>H4Hh<9SZ859C&k~c
zQ}aA+_qYf)Sr~gfd23mpzqxlaoob!L>q5PZt#sp8ecLQ-x3I&)g@+zqJ8AiTQn;Xx
zSpGoT!y&eC%)-wW_F33(;U^1+Ed0pTwT5@w2+sj_!6OwMmxK7A1=4ymrM7v!hq)Fl
zcC~6Q9pUJtO1zE=Fm*&@>VKT`-NH!=<NUc-Jau=z<od-z_2Hhmb3FYoy7Q+bowjhs
z!hH*WSU79p9F1V%cMIpKCs%k2S1nw$aEU8F2fc$-X}3!)mh}5BSD`w|T-L5wAeBn`
z-a71l=uSF!C^L3ax^Cfyg*z7Ra-ldb-Q;>`!TYcDdA(dr-YQi8HeF)6W8No!yIP)g
zamw7Y@XjXJ=#-=f7XGx5+eRK659#MF={Y^kM!nk2{<83hv(LicoX!?jOqZT<{inB#
z_W#S}sCF}6H;Q^l{}ailT#ENfFZkD6d6R4;+sJ7<WBt;%o*T{Z+~uj;J}H;r%y~un
z=7BT6Qfw5oQOHKBjl4F}Y<y8l%1?b-Il1|4<S!}3=eP>k_{!t$G{%+phP(Y5PnR5?
zhXKz8_=?&nW}};pY#T4xc-ck`8#Qedw^71ISsUeSz~(VtC}pFxjaO{k_}2C4dREu#
zu8%%+{dYUZt2R!|ch$b>o^ZQ(85{G)NXyGeMN9k2+o)ips*P$kD%v~`TH>s!L?Lf@
z>h?~mY@>>e;~%@aEq1QzYu!B0H}?{W3siL*KX3J%D4$%*hRa4P8?9}m+i=_P*znqr
zZ0!BrwXBE48OPQ8`<=OcHvBdk+Gu1W!$xh|-$s2Kb!>)1ds^4@)U{D*O2!8V-4$kL
zj2JCFUh8?yMg!*B_-vZH^-pdxA0BiQ6J*(FY@?Zt<~EwxxR&W@%CRWqnV!p=^J!gP
z#QocOS_o!K3VB-h>;s9#$ba2N8yg+P7`3HJdD1%w+|EXO8*kW{Rmxj!j`Su${$|U{
zdHHim@J^=pEgPh->%LB+{M$A<+t~P))Wyb`@flrhO#RK(u6y>ao$lFpUEOW;uo1Qq
zvC)$iZ74QW8}HiaWuv!^K2-j;>%bBTTU;KVN}Q7Zb_c2R(tNUwzT3R~>C{9kx(&ld
znVd=6$4CJiI|}%MHbORPt?~?6E}iR`w69LS{7s~5Rg$7MVytW9JsYMC%SK#C2n=#Y
zq4N%xO@(*3Cg(|7cE$Z&qbB`q^tUn4#vmI9hD!sOtR$JQNt-^9%tA?nZ49AT+>`n&
zkS0HshT5omHqB>n?~7(Dp1a?-F@jc&qhTB)ZH%IW**IzQEFO%p@x5sG0~=#Gb~a|(
z_)u^@vN6%dI2+?_?Ah<1U?Zz((#E4w#g<N_F|UtpOraTVOcLem@z8Dh$rblx8$bOn
z5u9A_{O*5hW15ZWoIy{d88#M9a1rELEAeh*&?(m}8=sSDV-Y8sjlcIuU)lKD#+O3o
zY<Bs-9J}+TmmBJtV`DD8@v!^*p3*m*7dCc%>;BfpTN4}4=lW0go8cOGUn(7xhV7RY
z$)4|QeAhrSx@TKKX|atZHsm=;%V_X*uB9C4$u9m=&wuv+x}78Cxtn;ojTJUl+E`^{
zi;b-|R@+!ZpAnjjsx2L8;aO|rNCD{w8|!SWxAEzRo(;6X#H_PLCE{`2v;VB@-DG34
zjlfV>kt0c@V~wP3Hn!W?Z{tV0gpjsZ(4FjpjoqAmGhB;LN_zyDo+%NN!)u@5v`+IJ
z;C#1nj1!r*wQ;L})ONK0Fn!YS9I|m?w10m0>?1Y?Y><wM+!c^EmXHQD_e@=zZ|G*}
zI92+^`S{`&8>ehMweifxuQpEGxXJQDnKP8bTYb*8yT#AisD9sl&c=B*SE&A=Zjx~$
zi`6gL_}#{J8<)9=`6OOfZ2V^9sz}~k;Uednz@Oc5ji~Cm!Rhe8)%ULF-xZ#p#wFdh
zamU7=T-a^gwQ<kJeH(vJlg-JTDQ?|YgHvp{R4GY%z~_zyuH*km**lW{vhm2q6C3|<
zrtEWfN=sT4kRDT$u=F>Fc$X(wK^p#p^skNoIBmyys!w!XM^dAl-g`AX&u!$0qe>iA
z<4B4lIgUbc6pkZj9J%8Bo+x)p97p`p-g)j;rKQ|)<cXtkPO11-DZbc~8b{tZ(&ES$
zhmz_o7)Os*QvNtPPj?rHWB(@}GRfIq)?2ceugns6k+}2AQaX-l)uf_v6pQ1fI9`sU
zL>!1?<^`#E925I{8Z?sHwUaK-aFvYXmAG>=P$~}I1~lv>Wh|CvJa)afC3rQCGI5lR
zqg)&n<ERuz&r06%ad>7)1n2JhE5tGHuAksycZswzTmQ+^ySwL`lb&jERF5Mgj@oh5
zh@)m4t~k=;Xg9!9ixPhDtlr_`jp*W(BzGLwBa#$%?tK27BCYJra|hv#qx{=`A5Ec3
z{y6rQ^M1Tr%2imJR@_%7j_x11>c&xzTEX+x;u1yjr`M0;wKy8Y(P+G@bg87{rF|U_
zmXO;*PW3d3BP))%aePB*aWskJy*T>C(KL=`arBC#cO1>*Xc5O-adeEMWgJ#oiPz)U
zbhim-cdIz0HJ;XS)Oy87K=ZcYsIen)w2$MBINpq-LmX=)&xqXKCR_cZ$9i~m{ziH>
z%-?K`uTvavbG+i{634C$o;Saecs&`BZ|zp8eVVsx9Npp=HQJv|+s5$@yT&1oJ3lC7
z@^@r>cjxBe-?4tuciH9I%`S}a^oc``BN9iHUJ-{HhY?304lNFy7Ra5%=MFx})|`;{
z*fH1Wj!D5d`a%kEh$*=SA7hi`X5RlAB`xUhIsGI@EDke{ILpxYo=8?4$GGy-ZSJ}&
z)J@8@GPTk!_sb7le;CrS1+Lor-TmVj5XXmcjEiGn9E0K*7RT^72FEcZ4&KoXrG=Nc
z=M+k>|4;GAw5;|gTtk{j@5eEMJ&j{@9H%cy?ms<+2S_9Nn9rBi<&wt4k$NoogE+?0
z<<`6ZC?-WxJYV<9n=-={=$kY?jtOzhh~xi=`U)s1jxOAtMRphW{cv}Br+Q`<U)WtV
zK!OBaoCJa-1eo^eo|zupAp{A*f;$A4;4Xon2@b&}xP>6^cKvVOJEzV)U){Q0dh2#|
zRdv-2KgN*)`!UgvN#we+34RnRD?W*3m-e~`tx25hcfKO2ji&kWgCA4;_>rpglbbGS
zoyvm<&{1K%HnKVE#iNVaPgEg(%=TlBA3sx-e#WwVbk8D1y)2ZT=Q?&z`21DOTtEIg
z#*SQO^GJ&}uqG8;d2fin_>ph5^R>9pk44mf{W#^vVn3Gnv7I!>kEOgPuJB_e^}c<c
zWt8)KY`LFqkY~$8*D60&`?1B3t$wWWV=Yx?LejCy>{mb5kyigBZ1!V4Rg{NqB3n^a
zB(Q;W%#R&;JcP$*szrO@Hs@vCE3ug#R&-**p!wo9KmHl*e0I_I*A72+l6~;ws2{sX
z@fIZP_v3&cyLqnm__5cIeY_u?8Yk@QoN@U%Be3O-aFF_%ABX+UcR`8F@w8>@kLxkH
z>x!Em#vJ3%Qjt&iaomsJ=~W&UX<mX}@$|YsNh<N2r3Ae#40hU&Gt{a5xbMeVKhF7a
z*^euJocH5TKQ8fj{_^93AFJ|-8z#_2>g=K)9}0=Z7bVVY>Acy0DCb#L+H;jl-X_aH
zHp-6^^VxMjZus%HA2<ED#W}>3QrOh_EMbdC^g!88Zi5v#!|wXg>w_SV5pvbZ{J@Wg
ze!TSKl^>6IoG+*$Ho5=t<FOx4{CMiebIRm7cUmK{+fI?*8qcUTFEM&$P(OM<I!%1R
znwIoxeZ|-O@x~8gif$L)P}{x8-n*6eoge>^y^>Kz#(OFV)t-bA5<dFziHwhgGzl>h
zT#{p)D@cfykV!&8356tNmXJk4P6@drWR(ynAwfbm35R9~8Q0zM61xA$HYT&x-CZB^
z)y^)V`f0avPavFw;?GyR&}(;Y33(*smry`LUJ3amH0vkQ@S8f|Qqwg-5OXIaemW?k
zC6i~cA@_wu31ki^C#5A6mQX}ONeQJS6qQg+!oN=i`Ib;Sw^&@lPd~8|5@wb4)XeQA
zO3dWg<af)&W%<~ZgRG2%vJ%QkC@-P^D$$wV>BN4o;<{Cj%{-W?qJ&BkDody$L6qQ;
zP*p-Tp01n9c-T#|Oq2&fLXzZkid-`VGKoyWgz3U>^*m+Mvv?)=B-EGi{aP`Z>TrNq
zLqbgn?Z>25m$2+u+O2}MYe{&zgw>HyS3+$GFRzQfjj6kKH%O6iEpKhY^`gu_PcdZ^
zt8jrW9U-JkXduDQGt*E)BMDt4bd%6nLK6vXBz!5Msf5oYd@kV&s!s{cB^>?8T2P&L
z5SuP{JzmRhv~iuwnw)Qf>(5Q@tR+}W34>BuD+#S7XM|6f9D%kH+DYgjp(Ev7!v5v#
zr>xFbGkvRm%<noJ^zNMNjAJ`dF>|vF37sW$A^ASy1U>os0oH7@ue*dE626k~HP3KQ
zPJ2<c?-MGu5vj3g@~yXoJ`%p6tS%L4{L}6u8&b+k@5;Us`cdmh7$D(87B*PIw-Uai
ztWu4QWglO694LW?C~bcf34br)MOz1ux9CXU5K1B^OY7sk+Brj#AWKjrs1kw_LJ~9y
zx&%wYr@SshLO_BkIq&hI&Dr?FE*kY||HMpL;TDF+pNmggy^meK>J3XMb4M5^!InT?
zauEqbB`jDX7RoA$*S!CY_2p89krGBpI4t3agwYblkOoSaEnzG#IMvk;62?gwPpTqe
zqJ+tmjauwkX_3B$CQ10Cp(tDwzl~2^)l%%X);&eSj}oRzm?mK+k6}6`y2tq)<0lC-
zC^KDLKerdpW^y?4;rO2=tX(d&J0*NQQkWxQu7vdxHb|I9T1r|cVY!6)lxGQxBrK+E
z+)KUk-f6*wJo3^@Sk)YCi3IvgTS_X_oIU>#Q)jrCIK;I=!b%BiD1OqkJ)Tu0vr%Z#
znXM*U(ITbsSRc_}C9IS1YQ5O%KSo1{$s=53()-<t*(hNXkAJsAu|>lBH*Bkf6+u^#
z2-`4^k%1!4Hqt!_zmf946n9A2DPb3vY_!=49p9E|AKWw)-y>l!X+nCfeG*=mX04|r
z@0V~u!a*`S5`Inbo{n=ats^@5BTI;3M=7h6D-xD)T*B|vd=jomI3eMrgmV(kQ?*Mt
zCE>J$Gm<mj{#1>n<rSAMO2k2ywWRC6&KYMVysORzyp8!&0u6!wl5jyn1v-4}t@t|8
zdr@-CHGQ#G|JHYjdVP*gRHav`AQJ9KxGUkhgd0=|p9<ZS@Hc5)S4P{IX&&!NBX5~w
znQlqAO{Sm$+gXhzeDB<LeNV!D3C~HTCG7FD2b9$%DNiIkl<<feeHbI=KN24E(0<SB
z(ky{6jJ;YXK9%r{3cF6+aDolkllqeCDkKcp;~xKjxht}IcVpg2bS40D$jB+<Un&$C
zb{VlU{-dfU`#^akW0hB=X|4~{>+3Vxs8eCDD@MkplHPlFgsK@SS+|LwCb%-m$SfmH
zM!XEwE!N-Y&LSiDNbnW&WR>ZVYUe%p(;|0*j8z4^*<`fLlhpK8Om^<=P?A0TL(C;3
zw~Ry?kda45UK#mi6p)=A*ZE|8wMOvCqB2@2!B9|k3_iI+9MG8R`C9RIfEAV@ncm`@
zS%hO+k0>gmn2cqnmt4;;#1b+}%2<8TS4zf>7lp_X&hf9Wtc-Fpj>~kH7Rt-0Ame)(
zgLqUGW%y(y%cvxyGUrs0!DNUss>-M)Ly(aqql%u*Ej#NhduC@FRgtwV;Tn{y_JA>B
zWVGm!;gzw!N_=cl&$!Q7&U$R`3!%D<8Zz3;=pdt}j9N0%Wi*gcTSgt8N~(;yGQNyw
z{XL#~GE!u8%`8sL$I5jOZw~a;mr-<}kHG5@EKPQH;2(Gx(@;hu8K22$MlIN%<><v4
z%V;8_sZ7Tpux72D|IXS@69`}aMacEc-JFuRBesz7IX!q>Y|=&ig5<l1gj>pJ#hHX#
z%V-nDUvkiv({?gWuV*CCk(x<H4;ejWWXR~u^WUAS=&q+xK2I0Qxs0}|n7IP$Mp+HB
z-n&yT9CuH9$toUUy{K_z^pnw_KlSmM?`sZv%eWgO_L1?8j1h^fuZ(x)yfjKAN*#HC
zjQZKwcQOXb_?FA>EmWIISEq_dGdv^K2>Jhs87yOnjCnGCk>MwOkTFuGAFCl#9%NXg
zpQNiYG#LRIrVL%iw7cxTqM|{Ge&#s61bg;vmUX`gr<Mw>Ca`g*gpiD|jA1f{%g%JS
zEh8d>?jSw+i8ZO?S}{``DuXEHWW@g};Y7By<Ica3ZG@boWsKp>A7qS`F;2!L8Ixs<
zmoY)cpVvj2gr6uolMn0HuvQgaofBByoNUrrR%@<6#y@{u&lDLy%9zR{nJMGLFkzaE
z=`v;zM@#<tN8u;V{Pth5-+bqT^k*5fWXzT^hx6x>cfNpTp0b@--XiS9YetJB^JOfM
zu~o)484G1BlJTpIbut#qSVCoyu~NoT>OnG=6El_3KD6MC7+M{xdd@{_G#9S8R#AtN
zv6d?B6!Xj%#Pi}B8PAK<BD`~nSjQ4OZirnkV}p#1GB(LLSkt$^EPE6XXu!N##ugbj
z`?@Pm6t+I}O`9NYUd4)UW!q)^MqNh60U0}F?3A&amzrkeXxOt$Mvh52{z>z6%fa?=
z{$7f9ZQMQ?w~BgN@`cEQG7iZ&EaQlbQYTn>mpE#(Ga*cEag_Swd*3nsV7}Jbvt05u
zKNx>P#z``L3Z1EoKX}khicQ8TQgRt*WSo_8k?fv~b283TtscvEfm)4A&RZpZljwY@
z{l&eNJA1z>D7Jm>yDa01jH}e9GH5kt{4z%|x;7NAlkt)9H^sIzt)qz1OT@jMy{A69
zkL+awRwdq+aYx1rGA5LzYnkrKctj>t#yuJLWl%*uATt#dA5v}$_&!Wbpot)Ik12^9
z?4~6=p%!#w-dXV}7bDIys$olbPCckPqd_m_;T2&r5i(xOcq8L2b?3!w`97iC5%FKL
z9_<;qa=ZAL_E?Vhq&zY{%J@Xx<TZ0Cpz$XSv}k}DqoDP9XDmvq80hHAto&cgTu?z4
z1z8ouDTr5)OF?c02@1SHUv>pK6wudtHU;zspL5@pQ$e*4!i{a>;eKp*9?z6=t~?6z
zD#)iGzk(Z61Tv>5+KX#PvFt6x)gQ$I3g%_;RJbepL#{#!5*0u}VFe`=lvGfJ=b@+q
z@t|<-h*<XyBT$Tci<8VscdHjpOO;YkMnPG{8LpRB(By-#eTJ)Q5mt^Apgt?FfEEph
zFK`{G%a&hoRZ>t{!FdgTYN(>1ssc%ctfHC%LBT!+`xPW9a4RqsSPB>=M>V6MjRFsq
zT0yFUGzC5d$qJnefI14QE2yEMmV!OATw|+v`|cCzrBGAB%=bC|Zs<7`5H5Vf>MBT4
zP)|X9imif|-W{&&iKQ2?pZ2g-ubiFpxfeM4oKE>y&{RPKUiO9x8Yx(KP29iC)tF*f
z$<{StL_br|OhHR7(_BFd1)nSUf^yyr$FF3gC6XbXT&H_`#}rNIl*00*Woe~2A8uRH
zY3{}KrGmB!`YGtIpq+yD3VJB$si1>`jtV*}=%S#Lf<a!EL9LnJLpu;U#Jaw}?CyWb
z)m6cnwPJ;nLU#q-6lZ~t+{Uf$L;b~3S7Ul9_)0-<1$`9s%9+$`Zu-{>o;74+%6ONL
z$@Yx`S~1Ulf%T<SMu~6yuEAN@!$&a#6nv{-hyuTY?-UGF@I9qYia|Z`8#Xc*qfx<N
z1$_@X^)qZRyLXp$yB70Rp;$?QuE0<rD^L{tcR<MVE=DC)RIqv_tHDzG-eLq6)Xu#9
zefD#<H$aU$A-SI52`UItttwcgAgsVvFj2uIDvpAo3dZqT9j4G!14b(tqhN%B+ug)b
z3hHiWBS|g0WYFuF==lEZY&Vy;sYu^7r+2Wi3jWeq%a4V|E0{pVnI+zy;Vct(`j$;r
z@PmTc3g#%7qTojbGZg$pN;QB@RWMD#iskOB7g>#Jv<<-NcY-C*iX<%)#QyA>$)o*Q
z!7M6fCbnuf>wA#hF5~?^N8()4c?I(oWIiR#qat)*BR|C~P;jL*+cVgg^{M+(&6Iud
zuEh$LDA=fAlY*rRmMK`P;8z99DP5{71#1+nRIo~MR#DYB&*ORQ&{Sdm17D}<0)0Dw
zH-^#cfQ<h-p11W1Hc(UkD^_{f3GaMWn<UTKE5=<AHY?boV5fpz3brcPreM2*-xRzq
z;;eVjhd}uZwuADfijCeli^%`$kGrYYP;6AUcf>YJoW&y=i&mH@mTJl#G+_r69HdT4
z-BZOO1&0;9SMWi>5d}vT+);2>!7&BL6<kzsNx|<5PEhYAv!>uA&n;EvDGvTna4zhO
znog4rlbt!p&ML_E3p@K(AbgG#?`8u6xwp6@i&NZg_LqVSqz~0=y;~p>y-Yb*@VA1S
z)YGRink1yCt}3{u;JSi!@7*`3b*86hn5=UFMzgzR8?#%~efo>H6%-$mjlL{WkBEz=
zIg38`6g*e(Lcx6n4-`Bkg&*mCO8s}4@JPWw3LcZ<?PNo%d7ki~HNynjr9hu-B=C%j
z(WmrF1+NsmBMa<iuNAye@K(XU3TT<2Yi<`!R@8hElQ%yr-hs}qi?8rB=07sp*PJ}J
z7$bgE@QIAA3aE%t;Zl)HMQ#<bDl(~vSCOFNYEiLGSuwMUEGn|9s6Jm@@Lrgd?jjJ!
zy(jO8*;EX>#YW34r;6+<&EutcN_lgrAeym0HCJ_(_%<ewio7cFt0<u2=wHsTKc9-f
zvWoNzQq0Ggf+`Nb@$9vQLMmSEaG$v9+Ic{DkjGV6MG+OHRg_Vk?od=kaTO(06jPnI
zn}0VuT`Ts{d{$DW&pn}(in#pZjm~jbi+i`_aFtb2PDLdZH-`!N`-$aMR8Ub-MX8V3
zw`>(We>;0Tq<zi~tI8^>s2E<{``LRo{~*g%!6T?hQqf99YZY!4Ohp|PbybK|C>6<6
za1~w^d+ltk=Vte*m~!1svtjQ}xw~B#YVfSqR8dQH8YR;wXN`&0Yig^Y|BGMs6&Dt8
zrKqT<qOpo5D(b69Rnd@2q#{iP&7Q><@uX9u>~_<*w}A@UA9eI?Dvc}18qi`{y;EYP
zqRz)xQx(lrG*|JNiVF|Y$mOrdTB!J3#TP1CQna7kJwCc=?Um-7<^9b4E{6UznU&ww
zM#YyZzEROvr7=9(spzhvhl=(pI;iNX;#hT0M-{!=iy109Q~fVtov7^N+3syZ#f8Gy
zZO$m73uSn-qe$JT@=v7vPt$tRQ!4&5h2B(<ATv*kU#a+7#k=$3kDWx?sPM%twlk;L
zM@7IFOCK8jRP^W7HAuw(72m2DsN#EyWTNnVyzrfh!rjEalLVR}Trov_l_zQ0ga-Xf
zvB4^asQ7oa`;sYKFW~j7_|#wQ)yJi%P^p<Tq-fAo=qfH#-c%TroQkC?mZ>mRSSlu|
zn5-hGBBWxZicu=UDs0jL6(dwcXe4k;7)n}A4;EuIR-t0*)txba{v_A^5AGcK#C1&>
zjd(|^7^7mMiq(BwV^ysElU<b<eZGxTX&DRKv(R^R+yoWl$};&jb3#k9>Nfj<6h_5N
z6+f%^QN>gh(^O2S!fqB0SYodYEYb4LAnjTu#NBYqJ(7P?aj+Q%H}lYh+bk8cRV+}k
zP{kY-b5;DJV!n!bD!$4o{_);jqf3U+PJH;N<Ff;9S{Z!a!e^{Z%$|!aQfY*SCDcQ6
zv63}o+XmR$8?Nvmb~w(pT*V3%J5}sbu~Nk<727EDR45f|RBWOKqN0(^I$<MKU`*n#
zD%Po3PdzcjHc&x|dhTXPx>&w0Z6Il0&vQAa7^8}>e-XD(-7XS8Um&F3@@-XVTf3NC
zF6}oJJ4olp2sBwiV-lKF|8Ae~<c@nc^$r#1RGg=RtJtUFgo=|Y`dB{NWwf8H3RMCb
ze-%f_fRIwv^)y~A99A*7ir6&|n|4R+(JSGYir=Z2Rnv1U6pm99=V1gk5BJ^A<@rO!
zDHUg^L9Hw^Mc1*>*;hSbr>U?{*xeHBtV$Q-x|(XN`E%h<vP;yVNC%!VTD819m(glV
z!}aVUnS%Q{Xb^shED1k8^s0($RG%7hXt=K82H7r^4h_cNWOJyzD*oZReM^OqJL$fP
z+bZr*zk4d&RdJ6b-xq4%C4;=QHEvQeGe5Bh)EQf|hgAGrj><h&@kGT76)(v+9}s`N
z&7P`wrh>L^KBtyiBG~6L6|L<|4AMvLfNt#A-!zYx`bNcDlGhNc;m#Y+zbf8S>8KA<
z$5c_WU~Jlzm{;!{>-UjtOKTRRq1<a>ZG?RyGdr5mknDe}lO&KyLlzBLHP9Y_%o_Gd
ztX6JzaHx~pIL-O$kJpf(q2+Nm;k7@C*);6vkxn3|hFls-Ybc{3w}w0#prNpayc+Up
zD5#;3hWr{9w{aEF=vojK|0`=%+C>K}(5_2baSH~7L=Enp*<0DnelHZ!P*ij5e@P8z
z^CT71P<9|IuE9rF>@{{#)0EKgw63%GPOIdlG)x-fT9VUSmdd3;)Zo!jUPA>QLz0Gy
z8XDwDuEf3c6?yM{Ol6L%a7vL><)E4dA<7YJ$GSBz4OB}Rd0c%X;(&W`Udn)mS{iC=
zNY+qYLk$fzHD{Ypt|u|H;_&iHwlhaE=N;f07R$0fk7>BtT}Q*T79!Pl+bZJvPOf?y
z>TCE}!z>M{8qzd;r(vLmbjqQI4jMXYXsDr)hE_Z$jWsmU@R{aJt~S-2QTM0$V#0nm
zZLZt?vQRV5Z?2(*MyuF(ypDZAO{0O#^@wbuzpJwjMU$(vQLwcJ+Jix^jfO8ZwB_E4
zzMSnewAY-?8ztU}v|FQBN7hM0hK61mzS7WHLl+I*G<4UTF*(h?cBNct$xXH71J7c5
zXwHc4R5I(SVaY0CpBWPy6iO{k_*z464aOq(H&j1C=Go!tqk&9Q$^&uwL04ZM)K5cy
z4FfdLde*m`BX`NjbIwgq*?E({*Dy%KFb%^s4AwA2LqLP6!LLCgCDfp5czc1CAU(2%
zEu%%+HsC#$iAKU2MWtcfLq=HV+Di+Ck4HP-K9+_csRXU<Y6xivQ)OzXoQvJ6=sh`#
z`Q|a38h0KWHHJ~E%^&9qG4b!oY=nl98h+3)MZ+i!qcu#>Fj2!8-a6wotP2QZH7xXc
z#&Np7MDpY=88q9e#3WAAkgXw`tYLZel-P4@7Q>ko7L(ugqlT#(W@z|H!*5sI`=9xy
zX_!u(rMS2-ziZI<;_?<)tg)GzGcIcMju8%JbIsN;N5dYT?p$gPry;O~dw<ceTEiL*
z^EE6WZJa7B)Ub^5xs@%V9!IUi@lp-<Ebo7tea-(B3Ux>(vE>?8XjsWZS8*y8_Rv%0
zmRxqP)$pr^O_Xj4=k32v!+H%HG|--h>7Ur7p==|SVygS)A8b{Zj6-2Y?`2<Ywv}gT
zI~7gCHjX=9WwbYJhemtR#hn^<QP15d(i&6a7oL$4+pWQFCswL2uJ}F2UTQK8`!yWU
za6-dL4F{<>8jfl>rs1%LBh+v`*rZ_sZAWSEauqx0%+S)FoZ}jut1nJV5()oK>iW9_
z{?KrWzVyqv&S|)~ft@BjALTnss#QAq45w76cdufm-iV=9b()v{OTz^X*$w0{a8bi0
zQaK%#j?1Ly8mj3KbX?VNjha<Qb{*F>+|clnnn}ao8g5ecYPipfd`m;u)$Y3*Zc}yT
z_H>#i-qApm_TbSQuu?zw0}T(U9;jbX&Na|V?qllmwvV>W{6no=(o?lSttT3NEci~3
z5Q$FPB|fJl_Pbwb7%%2**^1rx#a*wd>$QeA8a`_HL_I>ozto|~CQyVIIz78y=pE@p
zNLY|l%n|SUz%$nF0V_00_~DIvNKaRc4wsHN9q~G1b!5_!MMqX0rPEmK6_#0t`lCqW
z$xTNae0;|8g>umTt9HID2|8_i&a!=e(xLpGopeL=n?gBs<kV42M{ymwbmZ1ikYse^
z(UDh20UaM}#OBj!`duU&l3#Z^UAc>Kv}d5vjhInxM*BCYArf^!M`0cGijU9BdLMEZ
z(J`->*!VNC!juL@br2=75;{uiD66BKj#9ewf+)=?tyDf6C(Ir#meFYs8>`&aRh}Nv
zQBg-F9k&;{8yygSUBZ4}>%EcBTe}?lJDye6X|^9#bu7=up7nOzkuDiYI@~(i>1eNm
z=@50))sdpZqr<DC22ZQ67e+dKI+As)ohF1u&xRZB>J-~>c4bJmnmTIf&QUhCsRqsq
zbtnTNVfLGtk{jLIhh(d#qrQ%&IzH2p%42JwqoIy8;xuRJoKt4E^M0p;fHs(^ji^F&
z%slDLB;Vi0n&|kVE+f!PM{^x5b+pn!6X`8<d`>~s5I+g`TE^RDJe@|fJ{3H5){69H
zL5J|P*3m}CmpUHhsoj<yd{Q&^EQ`A!62*D3gN}|mzR}TFM<*Q_I(qV)bk@;DM|T}P
zbabU`|CicLcXpte9yZ12%DBUh_jb_+E&6@q_%=o(!(KYR((yG(z9`gNM<1%9{IzLl
zn)keW=B*eyN$EzMtDlbkJaSpb03F}z@avGM)pXDqN<&B+i+Bd=_?{Yi8Y9ji9W+rk
zm{Zz?LiqG(7R=*n^eX1nE=O}dl=3R1t2#6tw11oCR0BG69nTjr@)|mZz3|aaEt)cI
zc+3@~{OdTQ<E)Ob4qL|p9Se0tbPUxoMaPdMuVc85u{y@_Mj4@Fq>fQK1~y|Y@+Q%n
zZnTauIyzKg^ksDDzN_6RUxnET<8@5XF;T}P9Z%P|+l+5ON1v_lBTm-w1L?*i;o$|(
z{qw@?(=ICDn2T{!bxhOovyNFhrt6@!yctwR-Puw?Kf)AvC?-6vJCj!wEvKG+TWGe9
zIn*O`{6dAzU~{Q+<w%lt2(PZOPf4!%I!JBkAC`taS>>6+^v5xabS$RFb!^eGM8{Gc
z>vXKwv5XX6$7&sGbga;^lA5?FTcyKn%6hm&+CNjcOsBV~{crZfwK{&)(SoL|zhe*9
zxz$Q8`pUaeEq;TJjXE~zs228h-{^jFzizv?>|9nhZ=yh7=v#Gc({WVCF`oJDoF3Bg
zn~ohicIu#A!TXwtWLtJ|yqnWKoKnzU9s4-m&*_0E{~!ky+d6Ne!#a+Tw!ich9WJy!
z<vy<Ccj{&R+$VM1*~?Do==Cq7Jt~hL32CP54;`m;G<h$aCLJ#59oo=Em?Al+<Gha7
zJbQoY_)EtvG88&4=(tF>UB?X_mw4!9s<-yyvF$>73-JoQ0;tn%7K)U2(bl_bWF<C=
z`773)|2+0@9XF}$#l(vTgqz8+2WN`3A@h!oyQB{~p6R%!<Gzl^I-ZbW8P6W*_=il*
zNA{31++KXdnRU__ovB5$Or;km&b;WMnGM?gvb_OYJ~83Bju$#!Qs*+fG`gT!^x1!T
z(!OJ_s2%SMOXrJkbiCE^ua0+Q&kbZU9P{`enO_~BbiCK`fq)<$>EZg{KL2wa(_#!f
zdn&pNREYH~-R3%<pLLrQpV>eb0|^GQ8JPVkHLHPm18epRaR%t{K=)oo^SboSLi3IE
z+nSvxiFPFZJjIpMKrRET46HVgn<Nc%HPFpKUIY0I)H6`uKz;)S3@`(tfr17K87N_(
zq=7^OFi_M$F$2>wi-ipo;h7g6H26KQm@qaQ6{NV~oDxP0kxdplIxw?fY$*e!4OB5u
z)xi47o-zi?8YpMrOjB04pQ}6-%0OkqSvRK%;fj=*%AQIF2<P0{pz(T9i)%pZ>9ho2
zji*IBtlS2j?u8@+@1KbSre(|Cp#jm-dz_t49s^zjwG7lYP-eQ|<BwD~knTpZ;cORK
z{mA)zt6`uf52821^oCA8>u_%h)y8k`x(1Y*uIvjEdlYBlGa=PLnn6d9p(U3|H_+HX
z69WwlG^Cmz?fl?#;)A=9flWEY;%Tm?2A&r3erBK<)zVhs(E+i!ffh7esp46gN&MV^
zaWAcPK@Y7!`HrSg(ya`%<}vRSU2P0}X`rKlP6pZ<XlI~35BlHU)Ot@?i)2>^!`WT4
ztqLQ$qmnCw+UT6v*>Da3*>@$Ti-EdbSY=V1Fe|ycfgT2i8yI1rr-5DuBm=U6uMB)`
zV4#8T4fHn9$G`vs-x~PFKwks2v#7s;eg>9p5g+$Rpd1qT@~&r*=DKU-_|CwDS<XLw
zlhark(W%Tq1_m1#V!&@We;GVl=NvajI{)Qf&)NL7clD*CN8O46)j-HV*nnn0HxM*n
z<@Oo|0@PmjnPs4hnYQkSgdImj)4=0Q&cYde$P8;3N9#4TCB9cak8L1gV5k8y%ilj_
zpVp-eqxwnq(C)!O=iNIhyG9xqW#A_RGYyO;F<y034U9D~&cF}cJD!S9lc)u~lc*pD
zCQ{Ci`7U=!rRgt9F-LJWnOdqiJ32s|V&F$o&I?Q&=t|2h9?s^PW?(vHyR0YcCP9dZ
zGpOLzJv}$)_}RcL0}Bl-B7HD0$H072Hfop0?zsl$8Tf^|+ddXbj~}410ohzx+OfYz
zx=!sBdv<3>O=gcvTWny7f#p1hKfD&}C3)!kdMP!5fw>`Z@11nY+X@5pa~6S>q>bks
z&Kd)24LmpS!oaTv))~0YV_0usgMs4)emAg@)Y8BK0|zO{z!n30sa!s`mFV<z`dW`&
zEp9Wg-N0`Kb{N=0S^X%E-=4D5z;0@q+>FF_abeZRXho7Z)0#TW83n|B2KMt5duMk#
z(IHYE1IG+hZ{|5-;3%c;6{(o?rlZ-pd3!t?4`iY(XY|rMVc;Z<-VIzb@P~m@WDN|Q
zHE^0NSXUOYgx0bsuMkeoPdsPfyaD$W;evrbd0I1fihq%<%h`}pq~D0ho8_&$%?8(H
z16K@O<uWwGIkkxM@8p=@*);>%uem1gXG6-mZW#F6z)b_U3_LXO$iQs_cgWoJ&VG+-
zW|MI6SKnRg1y^E1$Jo~R#QO#wP-mPj)W0X@JLasp{6orVpl~tIQ^VQ2NONdU$Tn_t
zKVB?+o-N^-0oQi%(m7%Bi<p;W)5z8Z9P|F#z#B5u0b~#0t$}|HWDX!p0PhU^XW*lO
zPX^kQOMh>G-sv9<tjM2~TERu%&gyzsOaQKcGocq704)uyt&zFswS-v%S<>FrOaUC6
z<&3wp@>B@K1@Qe?7yZu_A3#C?DQ8@BGdn*BjLX7u1dua;LIETOkSl=P0ptrHe*o39
zvpfOh4WRxGp+Py%+KaBG%US87t^xtNsgo59;BZq<rdHz0m9DR|h_=Ut015|CoU#;f
z#%x6bbU1@pEP$c`Jb{bmLTL-)nCt9fOBemmyF9m8GJsM68UTxHzIBxjpiBT?o)PI7
zQgX-Vh~)w(A3%iwDh7}gfIEOn0aOm48ZS{1GoebrSv#v5z&BUiJ9e^b+k|byVuS$t
z%yiaVDmQVFHnIT306YQIy(`emj{eKLJ(khey_ZMA5?$2;s1d+Gs+<6722d-2&H;1@
zpmqRt0%#UMb9y#fhYhISqPQLh^#e%dAdS;>POD4KQW3d^0W{*A#+)|cv?-^baY{0|
z&Sq-C@t0A~=K*}daZ65HaoU>GHk{H^<u>GK%W*qS+jH81(~g{W;xvQP)X~m7TUU+=
z^x>de0Npw0!D&xUdvW>|rzH7x0KKD_F2egJiu-cVkJJ8~4hZ1eXy|uT=YKg9?}Gvu
z96%=1(Q|S`0$3El;sE?yQVKv0KnXw%U>@ga0q6lt3}8|KMgRfM92bDeK`?+&02ary
z7CLVqa^V2Ra1LQRfC$G!qnu$J3=d#LlrxfpQJjwEbnqg_a*ho+=V{-*@0j}W0ZiaQ
zW%@YdmdOG9z`e5rn8Lw~0DcPK#{i~s@3a7>b3nph?RP%?Y6OyJMmaxo(EW^S76<wI
z)gXa69M6r)j4SF?*Du^VpVI}LF61;%qby4}AelcoSQ@~x0G0=^B7l_v><wUF0ILF6
z9l(YFHgcIYoURLCEeF4HTHX}?UhDinyPkV1xN~kI5Wvm=b_K8{fUN=i#)C*^TL9am
zIM_Cw95Hu9Ik&rHkasut?x9w`=+qTaf6IjZ0UQY6_W(|i6$;=`0LQr4VNQ<(aFm0A
zgR@^+;`Ee-1)SsA$sOnXrsJIjzLNo*4&Y1xe{klh0FLi>ZNAr_`ZVX8@hoSa<Ft6q
z`12g}FX2he<NJ%O6P^DMz$LPxoPRlhD*@aO-~snu<@9y{*8;fC@eNLI2Jklr^p_tc
zaf{>pO`Z4G9ggpEO5S@MNV51afJXs558wso{KM&!03LJjlHXKF@=pVJ#yL|@I;+?(
zIes0$8xCFtP&UD-hqv5I;NJjfT8u!+#@UJf7r=Yc&uD0jiH}kIDS)##9Z6TTm&Ka+
zoyV5hL>A7>Y9gnJTqfe8GVvTFn8?OKc209}`rk1pw%jK2aBsRvH;^Kqi3%nvn#gaW
zfQb@3s34~>QJ8~5CK5TI$D0k#QiS7ToEDApEB~HYJc<h~ag{Vt%0y|-Da&b@Xz1Py
zS2+{qO=v!+YaBi7<ceG+6SYj#Hc{C`6%$pX@-<9UGa+zq5~thvBW{kF2{9_^G2xA3
z9|y^tR_8Qx*NmDRNOs(fUamSE*XOh@r<8{j4(f6G-yNsFr<zEMhHkhK)4)VS6OBwX
zHu1TMFL+QB6U{hi8kPKvgUFw8&7+(a94zN*)6zs+6YWg2GSQmz+nD$=D*4awLQ_sV
zS8TM8aypvm!10;dPWS0#B7=MLw0BhK)<IWS6WvTK9*-sC(VYiXu~5}Q4~~19=w;$7
z6JJw{TaLx<ZK4kk+HK++6MaqeGtu9~w-sWCc6FMgb-gSD$ZKLY7yHh{Kn^CD_@xZ{
z-o$Vd4W5dFObj+L#Dw33Zo)9p)h$XU6cZ}PvWX>G*!7#DW}>*j8qJE&(>3GA&qazP
zV8S#JHes8vOax7YxJ>1)85A=;^|*#-LT-_sjhGn9(;a4_Y1a&jha3sS`csLH;5iv-
zVw8!|Cg`a#CdQih`@Tr=jN_r>O;9|PXnbCgGC&}sDw}9xl8MPCelRh`#B>ugOawA{
zel$VpPNhn&$_Pv|aegEtM?pVvCh>pf%$X+ceNl^oX7NXePcm~%%;ll;Osq7qigIpZ
zzKI1qZ<O?64i=hN#KBixGbqnXOf2QaUuI&ti4{~ioPTFXD#cF%6!~fsYj_5JGqILe
z$a)hSO#I66I!;NLlGtcslZkCSSDQ_2F+p{{m3yfMhSsU|sj}E~Ry;{==Rw3I0ZL+r
ziJjB|%ZR&pLR1{WdwA3DHL=gceiH{w+%j?7#6c5>O#Efyf{DW>j+pRuN;yUCo>@G~
z>F*|vaX_5or0qp&(+LkGbHc<)6Myia+u0a75;$$*43FU~)t-s171Ga{c-qtnrAPkc
z92&I}zfNh-MH5#|I@L!ce96RR69lesx~U-}Ozs*rx``Vmj%Q+jbK#qu7V44S^kS!~
zjnnU#xJ!oALe9_FJrnm$ydgE{nn5W(F!9L5KUB<Y>>;O=;m0PPn0RjD1!;JB@u`Vt
zCidJ-B}`8dc+yJT)HUO!iB~3GQ_@9hAFS=67%1E1$otmBzb4+9v?T+XEzC;syys>7
zzza^5K;<R+(Zna7C_Niv!DTtwh~+dBr|oye66aIL6pA6Mg*XfG77{GvwrB#sQ#K3P
zE#$IjdBu~%Lg(@#F>_i@6-^r0fbhR}8(i3*i9!kIv1rZ30r@QCw@|=BK?{{A9t(vm
zx|qyW*g_EtiNt>{z(U1-Z0S9L=-V1%Q47T^1lBndO|&nrxP=lH7WWoQS}1Qhzmu2Z
z-qIGzSfG6}Wi6EBfMm$q>pg3_Bb~%5P_$g0aPGa1O`G1vu|g})yQ*0bEHoaDCc}|r
z!ENDC7>C1P7DNjlL--Ve$AZ_wk3mcg!e=4b!b1y>EL68p!@@)hlPuJ<P|Kp-3;2eL
zc3iA&;WG=(s7@@@wU9!&ve3XnLksmS{2Yu;wUB1vd4liI!ffAFPfxcnxq5oAdOFcl
zT{9Y4@PC!=%i(LnL1RvDb<JpMftci`X7e?-(85AH3+*j@Zs7|Htt_;r#wzY@$!TKy
z<kZz7dD~d{(n4Dcsc9Z^#3v@n6R!4$w}XX_WXUb`w9v^yhJ~&cx{=a;=j%-E(k-Kl
zg*RO@$V-mA-KnG((g;6WM!UBielH7OMVVjo2YXwf(29*4eBLdielV3}`a1QGpoNfy
z{uYkkNgHHgu!R8}e{118YRXXp@dsMCQe7nXJqN@YLdCaWTJ(c?+IQVDBnyfKmFnN0
zDs$$RNof?Mk*Zjj(Je#gOvA$N&1plsWvot0S<x+nj`FiOpPnM&utiHh-q99L&v)Av
zA{H*Vy+et)*uAe?+%OJ?b4r{M7DjSBD$1c_6~|cE*DYhLg>e?Hb;}rU;cd5!37qEZ
zo<X?kZ>f_l{9s|Jg=Lm=M(z{~(=1FUU9vEh9$)Xi^06j4I@fosA<Q7fpgwD1|6KP^
z7G_#B#pLkGJKMq>3kxU`5-7~(TKL7ne2(W?puYf!NuXW{Mvm|z(&X+LjpnB>p<1;t
z@M#*kZL#&5cF!0@n{ufw2KzQ!*kWOYg_V}Ghjx{PwHAK0u$p_<a7xo|bOZs-0j{&4
zpB6Sy{y(_aQ#(F#j$+tIUHG+olZ8etz2pcFOHbQM)ox*rg>4qLTlmcaG0E-ZV26d$
z4bnEWN*Q}a*u^>V?$o_h6&C)maEi)q;edss7LJi&`6cNfDdz)^C3p!RvT&F)2_LaA
z<n!zVjz>9TBgy3b-NFgZIT_^-ZIS&n$7d{@rB0o*7KxENN7`lKs)h4W$v-XpMQUK-
zBIjI=@-J~P!&8@@^43YXX5qSp2bOa*C2?+8xWxtj=JY0~hgvv!BX`@v9nQJS={-(~
zf1gZW?{oqb$=Dm-e=Izv4j4qQAf8xwYN1pRrGt1zCW36H+nY0p7ZzSxhz%lB5U(t}
zChKJ36ZK8%t%Xznv+$mSxAg2b-@g{#aqr|6B87h7_<xkV#Ec2zyOJIPuHgTdB!SF9
z%$hC41rZ-a7LJSV6|x4gwZ6FIkhsY2Eh2dng2)y`_8|N>#e@_wM-b<a3JyO-93gvi
z1(7?5JVE3QqEHZtLF5Y}e-Qsx?^J-(-rX~ZLtddqr-DI{moS2`yJr*$qG%9*i?s^}
z@pUL|PWOyrK@<<7L=Yu|s9q>-OZN<-XZa%pNb;9a>1Bc_8^qI5zO*1de96iM;SPcY
zVfGTs2T>vDtgR1wCRPlhQV>a<YgFd63a3>$t;VUqDG4O;cnF9=cqrW<ZDpY!AK(i*
zn`x7SxL7`Q!C>+0&r%AtNFz<&Ka<rAqE--ff~Xrr?I1#BQl(C*Uo30zq+!a?Pc>75
zpxqA1ZBkN$p!<XBaay0mvU|u&gQXVClO9BaAQ}eIDCisy+a`#{K{N@XMG&6{L5H<A
z4Wbzbp9PUt$NPJ_mzd<5bLMb5v^I#AL9`A!UFPC>Z``@mRzYMQnoN$43zjl@cQo;S
z8ARJ4+VLd1a@wBL4xD!6lv3}+K?bLtIqkyf>1p0>9CW8fU+U|@G0D%(<o$}8EJ(XR
zp;DU$ojYQ_38KSjVaHpsPY{p52=oo2Ul9F+7(l|)y+eZdmP)tF^F8tFCx6HBKu(F7
z+2b8V-Qj>YFx@*i2%^OF^9LnPDF&GXI=C`pR<agE{TT1KAoL&%k|zZSB20P}gcZcE
zHO2jXQiG%qZL$z17owmy=`^5?P$e@DaYhF*G>BnA3=g7d?(}~eB##K9XVVl4B|I{S
zQ9%$OH@38=zK}j9h_OM?rUE))%%MR{2x4LolY$Vc#!jJLvodM%+oZ`s{1C*5TuEOP
zOR5!<)FMljv8NIToy#;Wi0MIW4q;0OGlKXjh#?{PLzo$)5dvC=&?bagLCg-~R1l|w
zm=na@AbtyCM-cOZ_$7#?K`aYmeh>?SSRBL>s{ei7g+VOhplo6?-T6+O-MhVAe(~Nu
z&*<uHsYvqjApNL|4HVVZ%qxSaSu}Z75SQk9Nw{}n@@mQwtpadLU@Zr~2C<HV^-+G0
z>v0={7?-{7rYL7K2U|GZ8pJjZwnsyAG>qFB#I7Lr2XP>X-K49BVrvxk><wa15V4&^
zy2*X<Ue7)%QCX4rqnC=!=X(zZaUzIgS>q2y<2f9}5sr^WImb9S9;832{_kud-T!+s
zh(E~k++;g<c<EBkBQJ$BL7XMa5CRL~9BD7<B(-J`e+Kba5SN3v62t}S+Ef)h9=ekC
zm-$|zmoK}A&iB#<!B?rhDtm78&}-4Ou5)mM)4zkb$-%8?DBY2IhvU0Z&b=V+NAZIo
z9!Bx<zhfSgwg-U_3WxBNj6Y8<A><V5c@S^OX3|@L%fICG6{oK`eZwh9_GupXE{a_t
z{KxToPCt;L2;vjRF+5t5|KIh;-u%u~No)w2LdYCKmS|{P2w9_;?mLc;;<;ZJ%Eoc_
z5ORc&Gs-UzLN1PThma?Pyd39`hUVj-Kv8EIuHuf&1*7~zAtXlej()L4LMY0;caU5x
zgyJFRdiU1FoY|5RA(RcFTnHtj@})v39mQorXkE%FNO{hw9OYLCp(4kXqMQbg6RL1r
zHH2y*2plIxL#_JGG|0p**+d%rhfq6&Iw5#N@P$w#gqmC|IfUvVRNCu3Q_4rTK=w-Y
zZrd&%`q@kOA=0z8C@1sXZ{K_Ca^cTHsNB|-5&{X-i>6XPgwznyxHmn7#vC+=hBgeL
z5yy0~CPhfDNeE4&p>qy8#cUQr^C+hU2cL)V1qUso{8l0S#)ZEOp>2rnK0}`n+J(?Q
zgl-{p58=B6ZwIR35IQn%M@~D1kP)I2)l!L5d_f!u5a<#@R~}k^Tnce|aQqdgJvr^g
zqxzrl*BoDCUh;kuLf;UQcl!p0&@Y7k)Lso^DZ&9Ee9IsFjugIOEHVEV0|gQOK7`$!
z(+7nxI0VWM#X~X_B!wW8RSaQv2ucWQ2%|z69fB5u9>TB?hKFE;5C|b0f*pbxa$cQX
zZg@i>SRn*MsC&xYs<-dn4KIN;=X?|X^qyYioP{0<VJOK6UOFm#QIhvsz2sW8y(2=-
zFmELF$KJl3S-t!IsY%Cij|pLH2vb9tM&*k0jtk+fojfUo@gYnI;myNXI&z#MpUBfH
zz`T<~_#uQTAru*!OzuYx+Rx9?rhaYmP7h(sBHvFTP;vxjgwQ2_;-L>UDczYN{7kQd
z=Gpt6^`&L@iuXIt31LwPi$k=4i+LgZ62iM(iSt9W(+?C{#dOoHA9QmTy=xY7PTo}a
zk`R`LuqK4HAuJ1Fc?c^)SV=`Ngkcvd(-kWJ`^s1q0$ud5n)3;eqYV5S!nzRFhp>Uy
zL%Xw?=pu&Q_cGDt9UDW4<f*cWDm;6YT`N4aJ%hXlHhZ^*aDbXd7Pf`3opg`-&NlIB
z_l!Lu>>vd$%yx3RD+C&RmO8+8lM+g)1Sn`P58B5c+0O-td60Td2!}&B62f00TnOQ4
z2y{2f?;)Jv;25XJsnMr9%P}WI_=9uKb6Txt!YK~uk<%QU;q)x0=R#ODG>(Gu6|eOt
z>EUjHz{L<Qh473ETn^z%2oE^E%IPgm>5*$3T<7!#)n1f;lY_xGDwE9Z5bkjAT~6;s
zW$uSC@pKImAoq|nA94B*r;j;(LR!ZG$@KeFmFV*jUWD+HGhcD~ZwRkBc*E&iPD%2A
zd3Z<mKgxN}!3XM4JYz9oxWXtBM$s^0!^jjy&am^M$sESEJsxs7!pOpL)-auu;CmWy
z$Au9e27v@lvvHa|j3;|Mvj-)2sGCkt&D|yB;_>7TBM%38!^qD8MV>E=xH#A7e>?@E
zoPuGHw@?^~9DvipoDzS?Id`!ziia^Wj8S2f2%}^e-NNV|MyW7LhfyY8>_Rk*vSEB4
zMuUFta$%I`phXxJI1t0|gi$e!O59tSQ-RYeoL1$u8mFzQWT8ls!f<mh<8<$)Ld5iP
z+?Z2e7|CH&52HpHshm@jQxdBiMlFtOM>%yksMRtyg@bxgetiz=^AyuKPAAGiLrxoU
z8s8&>q9xaadz*&w83)ZcZO&=nCHtRD-%a8doI~E0VYCXPbr@|pr$dzgWf*NaZWraW
z=U{u4EFGhqPGMw3ac2%@tVr(4!T+kLM;JY+5%aQ07`?*yDhxX0itfDoI*i_7`c(vK
z7=6O{CX69r_`~QMM!zt=4dc5o_BZtO4<pxtqyb^jQ~-S<Rp^oN!)M+ZxxE9aeS2gK
z4&(bU22mxqNU7f=qjcL80-buLnmsZuB-fgHf=OY>Vf@u7g+9lMTuDE_lxbn;VFbc3
z!!W|w*ffR4^Ml^9PM_G5IFA)ZFpO{*c9?#FNeNNSv`A@{zxKp@wF>30-MV_Mf=|+E
zod0u=jG<u+3)63U0$EOS!^5;Z>K+lM8#fqTsX01~F=6NA=cQqc4P#swGe~tOd&g6R
z58Xd-Iw6d_7u@6~axf{3$sBwdRfw2B)UGup45B}VF_nX9oKEL-U@IR5{S?N`Fn$hW
z7Io5bY+)FicKT+AF^>bnb2ykwRsBqSHbVR*%Ae1{0&17TsU)_DKTa_$=3q$}lX|8k
zk7LWiSRTfTFji6r4`X{6tHM|v#(HWFs;G0`HDUZpjWsT1E$L4yUx~x1gx7J-md73Q
zw)Sld)7HV%Eu6E7lB0BcWXL5_h&lSackBNo7YOv!Z(-~RV|N&Pc+6j&^X}xKyQraa
zuq_LO(>*fwQYD9Rr%CDo>enaI_fu0AOs0fJl}kQ9F6AKg{c_3V))YuS62{RmLPHTA
zieq6M4`ZT@Nj82D;{?sw+7NA=4C9Y51RF^<PK9xr?3;~DHqL}`mQo4hZkYZE#`!QV
zg>jjhyMg!5FfN4gev3eZfxkHCjNqj^M=pl(j=r)Nczaj#UJ2t?7<4ns)iADwQD>Qt
z?x(mO23_Ak?gj^chjBBE=_`HG*D1ujP1T#^eOb**^j;YE!_H9T-!LA8@i6RM;`5XQ
zBFT@!cudBsx9=aasJ(rZ#4k6zPdJB|RSG6PBc%=FMHnx`c*7rj#p$U?GDY&5V*+Kf
z)OyQtyIi%%`!0<Cc#7|dazLqn;9z;)M8cmqj<KCwxj6OKLuMOUY!tCk)J9g@8T{n2
zk=I6?jd&XgoRgDN3d&|9JI6VqoR?qwa&eqH%DJ7VRzBMq+Z3=txA5e*F+ANFkI}sn
z1#J|vk;p?~qfWYa`Z8ao4(WwCrbmcV%tmn=Wo?wRQNl)SoY%hNEn}mk?c6#<(+;I<
zl(wNnlJlf{ha@JJIqPeB!&{!xvQd@zH@qu~)>_y+dqo?SY*e=K=2I<l-@Cm;tJrv7
zG?A{_sb-^-+xu{Zui>X!G<NFvj1hHHB&lu!9vfa84Q({C;j=;ex@&QoY&)BXs&iVy
zMok-oUa$+3gmX{bv_-bI4Z5GVj*Yq$^hivxk!B;^Mm_GW&nfX!IiRg*wKfW|F`foC
z<{uU23}SSAL}MFGY)Cd_8%=F|W}~Z(ZZ_x)y=FGr*!a>$a~myeWK<JB=d`7bbK`|C
zY|vkpx4W`doY|UFlF2ehY-^*P?OXxSnbY>R^V08Vql1m*2}x>_*t)6s=Wd}BJz}Hw
zeSsYDyV!U-K{!z$jkXYXx6#AKx0Hm9o;G^f=xd{&jfrEtBRBiLvhg+L@Br&=qYveL
zEW1%MZSNswSMq#g<HHq^z|L|h{cQ}eLHAtHKTyX;dyD5`Bs0*)_crD(VnxTXQyp^9
zU-^TmO3$SawlRdN;<7;4PXc{X^t*MhZ4wk4s*RyGhS|_;=r$}HK^umR6BX+Q$N~)T
zwQ7^{b__FZJnoS}AM#CS3+39SglyP09_?UZ8~57zgco&*%EfC%s5aU$5*Th{gpKi3
z5E~<HjBTAhhP><Dqil?}@%c9_p=XAiPyAUC#!~$s6vlBn<%pYbrJfn3DkL}Pneo#u
zHrd7xHugraFM=sHex%|=oLkYS^4J#JSYl%u$J1?RvS<eBjE$K#ezuW2ZxV6nC*N7N
z^Q-SKHfD1`cn(zpe`;QoLwO_qd>acmXJM4Th>KCsQX9)``cA>W)X+9o*w}C5fQ^+l
zR@qob`fOvhjVGC0Yiz6~E!yM$kiG7?oONr=X1`Jq=KGe+@e(~X+q=QWZ#McLirq*C
zwt{yPS0U1(%^YmubgPYRQT}!g?(~h_LCRbtd1sWri-X-Z_Cz^*ZS0HUtXnf5v~kGB
z4I6*kIBesHjX!PtW#g!gV_fXKjpH1gj6U@{HGLGntn94u{Xv=JoYS11iH4r#;2h~p
zwKNjjk(f+#L_{yxxJU+PuD8~9S}SxuC@yiy%Qmh=pS^118pqe8oWpVPH*MUqamU78
z>Ket9={mxcrNV9MBNtOB=6hW7jg2wIJojxpu<?*I(8jB14F7QOj1)D>c|x5oitA0!
z@jQxO*mxPm<qErANAa}nnNJi+{!$j++4#>!;|Q8W@SZvy*}Vv=MDWo@nX55bBZ!MQ
zz5Ww_FeU;Q_Yx<TgG>=*<{(Ryzw+1E_y`iXw@d`tBFG*=;Rs!XjU1erH!7Jkf?QFY
zJAyn>T=`IJK92K8P=JGi5hQX@C@Qo0VFLaie&oz=6y@GhoED3qI0q#-Ey*d#JP0@&
zz)DBZ;vZ*UU)d<XTm<Dgt`Ox^jG$5!pZX@YY6R6HNRH4g)etz}7r{64ofc1uz#Wxj
z9EhBHBJf7}3lGLlS}so8>zzq^_9CbkL46)nGlE(i)aJBKRK9KmDN(#L-j&L+k+bf}
zeNKvL+?&p6g9sXO(1=qC-Fq;$X#}4|&^3Z?5j2aSc?8GK#kHeSNAP(BZ3$d)f5GL2
z#v)Bu(o-!XXcdj2bp&lV{xZs;`L`QG(`iw%eU#H7f{sz#iGz#?I&;t^${%{wHK?fA
zohmAVzMR>E)1DFZ;@~Szzvi?zr+ql3{A~F(wqFD<#)@qs!kg00X14wj4B(;PMrFQ>
zU|<w~&q1rcv4bNR5`jMgDT3J%%!xpb&>J69BKR=^H3BVyQ4x%eKqqC+<_$z(M(`}N
z*NDJ4=p(Q$G2WsFA9{yH5R4!cL71L>;*F5HKJwaBmM31iY>Ozlp;T8Kko@onM(_vC
z+uo58%unzVb4&zdBbY!*#Cyj@X#0nEd<2;`_$cWIKX|)k^DevXofyHS2v%(o=zhS-
zl=Dp9A9!X8W%E*&rc!Rpd4Hk~(#Sh4;@ojIJ%SlL!bQ7$IoJC(X7T<Xnyv#nimGiV
z0fa#4?Lnjo7Qo5Q>`oLgfh0%=5mZV<sS2nlO?r{+?(FRJ1q4w*dR3GvDosS16sbyA
zL=fps5GnsN_xp3sJ@0w$d;8mFc4qe8w4_F#<m1zPOlP%cGuZR+;-SW8L!aei7JJUe
zvV6?ul=87KAB*zALEA1*nVXM!`IyhNQC+|e{|s?N_GWETH97QT;n3oIEX~K~`B;*V
zw})h`O%1UopU$OhQh5ehw-qU0=JRjwSeK9W`B<Kh75ThJ#drBwnU7WZSVN@<`K->z
z?-xQ``<)A+--o5F6%*hbz7diqn5d+ZQusWNjDn(YHc&5rhV%=ejY3UqxG5jsb0$~(
zN#=c}@+sezeEi6$m5=-R{yyYe^KmpE$MUf)AKUY>BOg2Su|FRNX#bRaKKAD0=X~s@
zjvg&iCs=q-zJJeFwM1y)?7*6ep@D~`eFa72%Lk={`8br1!}<6nA1q~^|F!)!A4e$C
z7OBkgvP(V_!SQ^Y$j5)2Wbx3+e4NV1rF>k@$8TJIKF;OiuY8=&#~=APlaD{Cj*mhM
zMyg%+g^~`2HXH~I8?BzrN7Z16sb|l;^Z7h(4@VD#7VQh&J{Y=?k7B1&F47c7tFzz8
zASLHYKCb5DRzCirB=d2dE|ZU&^os+bsb@o<@5}vUe~6>7G6!NOt464|^O1cZ^lv`y
z&?!DiVNDKqS1@;tP+7zsqAHA)9^~U;J_dyGUKmMXB!}^O*neh{5=NmgI)~9E%-4k|
z62{A6yb{JEVH6FcUKsVm{!!P(!YC0&TG&4mJT;8s0uawUUyr_AGVEVds)kWY0OHbN
zlnJA380Eq!A4ZihsFVs}R1BlCz@O~MsuactJ@cFamF_H5t{sqA0bxA$XvXVf<wwI<
zFhMF;RM~N$&|?LCRtuwg7&XGEDL7At5iA?56~^OX*d;=>!>AL+6P)mE|0~=gm;8TI
z@`-3#5#^~co(?0kQ*zxf26qc_$FRcR%5w*)&x9d`{U@0%!)P#EN*CQe8%986$&tfQ
zI7%2H!QrVfWG*`+sbP%T7|aOcpJ_6)&lSwDK^P6gXcWft9FF1*<ApG?!e|^ub{IKf
z^g5Q5(!E%dFs@ciF4E5bLYS$|Q^~nu+^V0v`YU<a>a1p>w-$mn4`Xi4WHSF(v&wU6
zH`fMQh0!_;0;V=$v=z8r7%zs=zJT8$jF-aT>-+wTCBC@tSit}BT;SC(I#I=Gk1Xv|
z*?%cn_Zd>2DBV?z_|5NiUkf8o;8EA=e$}BNIo-k_^?K&L5k_}mHa)_4OMsq&_7b$W
zpfsvJVZ14DR{IoY`wHAo(EftHE$BOfzANbe9)<B_@b|;8K9!cHgop=*F(~XG7d}|f
zA%YGS^aDXzG%Sqa0*?q|B=sWjSV2dJF(!<|CH$_|zvR<#1srB4Q1!I82&zR84kHrA
zzA*NO5e-A5`O!+lh=rktF*S^j!-$7rgpmkiVi+bTNvjLP3FEGzu76bJX@iFzRoyUt
z+#3A4SJp>GR4<I$+k$D^f~1qem>kAOVN9X!3ac4AgFIk2cY9E;uErucbGsHf`E$`}
zVSEzCtT1MW@o5;-!<ZSyXJO0;qe3;6r}y%Ukx{iOy}v!k6dLbmdAQ*mT1Xi4!k90H
zUbZdx+>YRqo_S4+sl@DmV>NYA7>lXUFxG~#B#fnDd>O`9TzlEdpNIJj9Ls2>M{{Sr
zpZ#nRbzRRqE`f7fPR9>pWf-d%F^Z}jiz9ZgU1Bv=ztgX<_>0^%VKDXUmBr<M6UMh;
z{1C>LFun_89S8j=WdlP>RdrmiEG5)vz2K0!F^o-N{|ldLr@MR~#^x~odM&H(4!{5G
z3z<KLu{DgnVf-A%wlKEyX%C|fW6}2DtTHJ(!q_R=)~c7qlONZ=mbE*KJz-pKQJj<H
zX_7xQ$oRFY`gc*4tEjv)Xckq;KM=;jFz$r$Zy1MY5@DPT<6IcOgz;+_zlU);j3W#$
zU5XqH<5(E~oex%h7&;!t#+|{FVVq(R*c&_{sM0KV!ujBDl=g!V!Er(Vpd}nFb|#EJ
z!{BkrXMYNAei*X4Wo6gTDz_{6R~YB%@?l&H<L@vogmE#9OSFWaf~=hMOcue|J;BRi
zOxqJY*DLFa7?(pAPExOjaf5LtjN6Q&$?8q9_Jck1ZV5n%{hFfAtCuxwZ}5jCbyEGT
zyPP~@bp&Y<+zaDA!+QjUBX|(TLx%kbQX<%xqW0vt5!BrsT)e;XmQg93#^U-}JSTe6
z!%&e39*Ll61jQnFc297~uAsXs*nMyC<k}p9)Ci(|)Z!8FAn9|vg8Oy_OGZ#Cf(j8-
zjG%M`Wg;jSLHP*EM!>moU0ledpMuCM!r|EA6><D@r3flV@Mr{8BmPm>h=84k3aeEj
z{%O>dHYq2=aVZ>Ds2)L$2)>VCa|AUbs1?Ed2o^-}cm%a0crSwYBmR%;IuZPs5^58{
z6A?Ta!BY`D9f1--kc*9=UIg_czTq(y{l)*TjHh_>`Q9^vDG8b`Xh2Xo0;6&<Rts_T
zUqY=T7__ID8bJmn6Tx$$PL7}r1Z@&Q!w4D){CotB1;`XMOHg+8Oq1fIKX%N{7Mza`
z`p1GZ<%(?62wsSwSp>~Rwq-%976J@@u|%r^&h5D=d<w@yc-uzME`k>$Xdgkh2wsoi
zr3gAikW?bnIf9N6yd1%+BKwM<<lp7frV^oBQc9-?h<TMH?IKFsrl)ijAWzWO1pQzA
zHw5k_X!i(uM9@><aZ<|vD)f$^PXuoYX1@sfNAQ-w9ILMYy~Vh13;b>b?-Z0SNKYA1
zfLUiCWot^qA{ZXQikj-62nI(mMBt$jd>{b%e3r;WFd~AH5loKYqX<StFggM&0y}~+
zq|HN2(Fn#yu)bl=%!WDRA{ZY5!H0qpOb{Sn&~OBi0{)PlswR4fMW721Y#w6$xWGmP
zW<meCEkX_rm^PUxHZcM(0&e_xzO2F#69v8H3@SD$g3p_W?(R^xHV;jSU}^-PMR-~t
zKBl_`vp<R8Qvs$4TJDXUrb_m7fos(c&4_?mf|*>PlKnqCJAye8%%z<Nv)Kbn=ZR{o
z%Xf7u`q_mMEQ;W}2-ZdL`~3!dd9gTxB@ry;Od|Lyg5?o>K}8f-zbLK_%gakmQ<p{X
zrAWko_sm-n!Ts8qUq`Suf|U`h64}*)uAw4UrR^9TDpo!7UeCO57;t*#5sw_+^jms&
zuRJzvSSNGzx<Fc8WqkyD`pEBZmp0H<w@VuZ-9%?OFERT=1X~!RB6vvujbLj8dn5Qc
z0`+oW8^<~t_$h+z5$uRyX9T|;2{7@?Skiml({@F$o1HWMlu0jM^w~q*vaG*?#QP%H
z&xlb(?mSyM5W&F+u0?P?f<qA;j^Jbjry}@;F)D(i6yu+PmR`oF&lG|qj2ON0h>t~Z
zJc7$70|QP5PDIeQSKh%RT}gkVFeA7S!NmwpN4V!C&PDK71ZQZmi*wILctOnjGlCON
z27CJ-WpC^xzgOOQuIu%zzXhGqE06dRhlt=RZ$i3du)>uH<OjJwoa*{@ue`6@WnYt(
zN8ZS~5y8y}{^JnA%v%xs6T!dqT&g~lNzUp9nYSajL$eQMc6v6Glpm~`xs49?%KN)P
z<~<6Kwwl}MVy`?kBXhQznG{8G6s4jl9YtL^)V!L^M*%5O6pEs76h)$VB#IJIq(xCQ
zilf!l;!%8CT`eXsv#C)udZaPI7njrni?T;=E6UP$j}$8z#pG>8OD@hX6Gho5YDQ5j
zigHnukD^Kxk47<~yHX*Fe@-ctqNo@}QZ)4IDP=+{rE(M~$QBJ`9qpc7HHydBwue$9
zifU1wiYpiHomZXH>z#MulE1&lPs@}Ox}-nd=<z6ONAX+~4Wg(M#S>A;Q7BP78O2jk
zJQIZ!#nVyn3(5LXyt7!XD{wtQ$>ev8CG#^zbj;zaiu5P~QUBEpe;V_;zz;cC#P=h?
zC^Dk{ixQ@g0BRH;EmE0f1b#LOe(OTqkYb6VX%sJT`DV)VQDjBYIEqX*$yCo|s=-QG
zO`^z-Vsvh5u3+YHsx@+W)MHY`EY>OAt7){MI;)}DjMHnVPEM0+_RiyeP%Wcq6-6ix
zHICL%wBa&!JgK8?6z!t;D~j_`yck9MsDB0A9mPvgbckYM6pNzh7{$v`jEiD?6t6__
zY7_&acrS`hQFM-?TNJNH(Iv{~U{W3zvN6;(iUo7j=W5IEEDk-IFTEDU%~lPKIqDlx
zbdTb#DEhL8&A}c~^cH})XB52(Fk6w+CyF-(=cTDKvy(?i{i1lA_OM9mPcujh9^0hy
zA@e(e^RA#Q8gW~CKZ=1-jEaJf>jy<KIEvw?rQw1O5%hy7h6+%#au$n*{jb7l>8CBB
z5e0Z8JN#8<>F6jfoRYY-F;R?-A~!9_hq|2Mhfz$3VtN!aqR5XT9L4nsp(#;BD0Z6b
z^U9<sG^%oEz>UHaAQpu#KwMB38Bv%5TY}mJd?$+PH8WTt!Kq5hL<(oVG~&b1FQY;g
z6jfRlnoQ%Nl@3xk5Ywwwv!+JzaTL?&Ce4DMMzOzH!%qZ`%u`O+ZpzcgrdLpBM*W}I
zvpC6l%4bo0u`4w8n*X40b`*1>ypvSsMxo|r%#ZSbRNQ|w_m_^!hjl{>qDUPnoh*~X
zqQ#;IX1|MKNfb+?_?-RFP4>xaqgWP2^BNgUE2H=_imya=Iq`3S6#`dF%j_~M#0slK
zcD0~u1pQi27P0a-6yVpPZ=;BB4$j+=a$}^lE{gS0Y=~lG6hB6>H467dd6S@<qxfC`
za$c>KM*2e(TLfpt6B&2wG}=aQ$`5_BN7_lD-3V=u;^6hr4lb%|_URj;me)f+MX`%M
zd)>#ZwkL|cQT!amz9@c+;&%!&iUUy`VeDdCMxlK{ro&Mj5;!%O!bHw5BKvC;J0~mu
zt8+|nPS6wu$ZwazO_om5TCPeTEtgJ3akp8B;B*v!L~$mHKch(0Pa)^Q&z1YXkA3x1
z<Zp|z^Rpc5XZf7y<d=FWf72#eU&EgoE=F;Qlh@En^FNxp9L0Z8+>847ilA2oy+->K
z;D(?qy&1(Vf&UTowxD+e{Z~-dxy!(~I6!cpp@y+h!xI`FGR$g#hAJA8HKb@Ls-c*M
zj;|Ccq~UsxrjKZt(L*ULXc0k|7*d(ajd&bns)phkN^2;ip@atR2*DGIOA3&t;YJCW
zoKhP8>Mqx*E|ZqkP)@^%&m^AEU0wr^GDo@e3IeQsE~6r+Q7*lbpahjQyt_mucvM4G
z4K+2?;&3m>k7=l`;hAfJY8u{bpxoXdld{7a8hF+fYATOw{+`cC?`2M#EY;Th$1=Qi
z<bEJeYIsURmWIX}p4L!TLr8<Fp`M2N8qzfc*sTU`*U4#fFDXf2ZvRUTk2aPmmUWV%
zVR%~3#P>3T8eVRrFm*T_$k6bthUYb8YIsgV0}YKd<X4p&YFJfGp5e+onT3E?Rm!K+
z>+;@aa@(s?hlvWeE^MM9Tf++)nrX=4#JVX>*~4(DON(Hx26Ljq6TLr=N@LH-&Bdx)
zXy~<3=JLl~md@7+I%kyD8ro=>PSt2=tD&8SK^g{Ycu_-p4X<hFrr{+G9W=b6;Z=@O
zG`*vSJO4^AYnYiXui2v<ULT;5cha!8bf}Alt{Q5Ll{;%#SV?KxIJCWdIzhkwa-Qa&
z{YUV+hBq|4Q!)6ihVB}AXgL0_^tOhc8o1NZg%ffw4F`Uc_|BSR^%f)cp|S)Z=PeC=
z1@2eC>966*T$x29FG=sP<}~Svf8_xh-s6;(OYc)ha|720$^%(6ULyWmk%wp)sv)XD
z)9?YEMZ;(fV>HOi1H-9w&hTJhgvgE*l>EqeiTlnqh)ZKNjHBg$6o_aTuYvau`GS5Z
zD6<m?)=7y=mBIxaYhK`~rooa=%P|eQ21kRdA+EvD{6lRl&EH(n)WBzJx9&>)3n|=|
z$JXE_$-}3}Jn;R{aLLm!N#hpBQbN#)f-+0tPuB2}(8UzZKhB9vrm3RB#~P*;)ci!l
zrv<oXhqRd*KGU#C!}l6yX_&3yOATLXn8V3vSgc`*hItz1)4w$T3n>2IWPyecTV*Yz
z)~+>e+Fj-sR++u?_#f&$n{)UFmZcg#*YE|k*)eN=DVhI6S*9VcSwmcxr!`dgZPjuO
zD>Qto;X4g0Y1_1cVe(oHXDVf{*04tN|MuIWWmb!JxnI+Gjw$>!i*$I?tZ(QwO|!bT
zYq(CsdJP*jTr1x&5)88E4fOZx@~7o;6UDP~wNSi9qs<zApf79qRl^nyKWf;eVYh~@
z8n$WpiF)syw_U>y4Ld2c+PPhO=S_N`oSvkxAAT6N?z!yC2Lr6LhsL8}pN9P!-sWdN
zm9sPd3I0q^za_6}m6cPe;Q`J6llUQuv1{Hz;%E8hLVhEVeVC!9X$}{1M8i=Hr!@Sg
z;TXlD;iLfkihyJBL$wncNPo!9;lF#>;qMv}z4J~p{?I&%ykND<diiDfRI4C`zz@~V
zijaOU=6^7Dj!{v=c@2Lvvc*s<h6@b-8q#7Y8N($Fmo?ng@E`l9HZKRRQeqlkuuA{?
zp8UE7eh2=q=HCF^&~Q_LTY{4Fj{vvn;{}|gektekWq!u?#Yg|Y+sQo*_eJRgK_6;J
ziut`I$52E7et4fEK%p243&7Hqz5I9RkBDs17>dP^Dsb@_N(eADHS_I7%9JDW{1Ta^
zVkjL$wHT_$P$q`5F;tD=F;T5t4CP~}5c6N7@LwJsriUI>$*3rbDhXOyP>uxwstEe1
zp!^QMi>DNw5qka`g)6F2P_u1zQQp^0StmapL+u!*#qdcCbz*oThJi5*is8u^o{Hh+
z7+#6t#Fxs`F+3Z?b1~G7p<WF2ML)8j&j>0Bnl5NSP|oM%`ofC9K|w<Wd^LuQ0?fC-
z4Ps~*L#r5C$IwXdo5YYE!}9`X3YsNoV?o(-${2rB?wlB!2~Mt{O$B|Spbp=gvrco7
zZ4pCD0baf6>$Hu)?FwqP6=2@+q!$HfFX&5xb`X?JI>x~N)DXNXIDG`|6hr42x(M7|
z(5`~AT3!sV#n3H=*9GT|0)A3a|DAiIZ7Dqjr>CI31npf=XMw2mrpUe(L*E$s#n8W?
z^xYWV7Wkb4&V{vw2MGM0pzp^}rGo#D57NP$fRKY3!w^wAG=>ji7#73u7(R?)LJT7c
z`WX|$$O1enhS3F>Up|Z#c$}c)3;3J*rsNB(2^tnOB4|`l&f$;Oip2`B9z(nU8!_ah
z`8$R+ULsjB*fBUUxT18jpq`)!K_?12Nl-RvxwX(o0#6Zis-Pbil%DTU?9&*g$FM(!
z1A;jthWRlp5O}7bpT#gsfZ2kw&p86j6?C4UFKkO$7{j6%w#EF9S{Ks+W7rVG#u%2y
z@VTh-O$=Yeuq=kvBFlchjA4bqUkSRrfdAx*l$8RnD&X}0rtq2q{B;a#1wPcw|BF4-
zw=sMtIO_ymUr@9A#nep#|0wA9f^HV{2SK+8${zSX9n!5atn2GL0@L;wc8JoQG5i$6
zE`j$7x?9jag0f~xKflS(G3+bgByCGM7{ejP-WV<l=3$!9Y3WQ1zr^sX;2aV3R18N2
zI2OZkMh}76+kly&lLh$v)<VAt{JWs11^uI-bm&*b{uKCZ0q0x{e-+^KG5lSCqf3jq
zot5(a{8yHjVz?Z`6&k#-t1Cz3t1(=Q;d%@=ME!qaxE;eyfo~P`z^{+k_KwKjjp5${
z{)%d;{}tf-PglAh!-E(e#*n0=l#bFml69o$D5fJ-M<E>(W=M|^)Xyobqlk`Qc1u<I
zhkiU2e5H<3RPd*l2(b<;6xWd^>JyjHG3$GUprqhDxl&R$No91D)lo&qqdLk7ezBQS
zB^~7jW+xSNR1~;<Kflk)0z=UHtrT*q>Uc~?4IMRgRMT;!rBZvQG;dmo>Y`4?w?qG(
ztXoUq$92@!@ofJPho~bs9lI!R&5+onT2lH`I-b_CNXKFwb#>I!@t%(Nb=24KjE)y|
zwAUf&NY|06BTGj>hpZ!m9qLeY1a*XTsJj2c>+d2e-@EPJ?!UQPQ&=6`Aj5yxrlWz5
zMmnC?!B=39?+7;3F}S+_g0Ecb;;b;Nu-dw+%2thaG||yaM{^z7I&yU6>S(H?@$_`Q
zBIG;4bJZ*H1tQ<64M<gA(EXPbsbwp-(9u#y8yzRM2Kjof<@Zu69UZm>=Z;NjE!rMW
zRom*|KzuRRPPAgpmsm$f4;?*qbky;(j?Ox|=y*lPt6Wi4wG&lbRlQzK<*P{!y1A;#
zY4C+wSN5Qz8%4A|n5W}%+u|IQn6J`a*YSpq?mD<e*8h3~&(c*n$zD2o>v&toJ34kh
zqV^F}?W^NW3XRNXvcm0(AL?9$fI{o1qdz53%^!|!-_^l64A3!lYp{P2|K(kUVrpJ>
zb)b$xIy@Z-3RA}rs#Qn6j-fg}&@oEKXdT0J4A(J2$4F|neiq+eu|vMb;>)J}^|BVV
zE<R~*a16C66&b5z9PMzo|7LBx4!$hA`a<sIhatW!`%w2^W3gsfM?{CNBd#N=L({S5
zlhhc8-WBAVGQNu9o2)|OC7q$e)N!bOmaF4*vTEsYsQRCRSGpFlMdzG`m0sk<J$@^`
zXq%{G5`9F+Y#ozze5B(O9iQr$qGPI#k9ADrT9Q@1ZS0()p57f~lk_B&@51<&jrc*Z
z(R3X%IIBMDOs-;=zX}fV8O?G_cDedlb9Btru~0{=y}{L@Ia|%+pbtayb?&O+gV!I1
zejJqh-L7EkRq7Jmzwz6yV~38VIzHF&1?@-24?4E!_)^DLI@WPfA4$t~tYBqMvTWDy
zZF!}RRXVP2kZ!e8H`ge>nj+HuXGa&U+`ya=`D=B2qvKl+I!FCZ$8U4g_KQQM2g|Ha
zyk5r!HrX$2)bTxsYpQM%*&p&HGB=C*OSXh~Q+J|~T;pKiM;*UUmAA6b-=uA%i$cui
zol$q{_({hjaTJYX7fnvbB^s)ZJv#R4IH}{54nAl5S;t`pF&+DK?ALLCc$EJL?vN-w
zNE5mf*gZZ(8hSPLS5bOg&?7pI>R<&{J|-w1;;}<!PtbQ>O=XkcI5#Stf#s<X(`f<D
z==g&oDw9sm<{D{#3g+#t#h5)u!+1vhOUHS^{G0w*yZHawUJ#s%1r4uI!i>yu@bTR>
z+T=XtmX3d@>zA^xi|h@qv3kx;LCL(W<BpE|oM%VnUqSy9l-avFF80hKV7e!m?Vihh
zpyQ#AB+>u>n0zqE3Mp|+nkNwy5=DgtEfPnIt6j(}7Ds9v72>E!IzM!HUTAqxEgnaS
zI2O$hrNvQFfKqXk6M)Rpag-7G<fh!RaTt5D$z&=onCZ3CD#cMbj+$|NeJzyxR3pSu
zEsowVHmoA(qj6M?^T?_c7LoawV4heO>U}L#J&qc2?$jMBom+xMwc<R;2DRg;6G#0x
zo{8g$IG(-{dWtlT-FF&18OLYKLIic=s3$n2<n(<byJeLu0x6F4IOI70pP0ou<OJd%
zU<G0&j-X&J?VZO&PDUKha>)it8F(&^263bq;1Sgg<7gCz9!ETm=i|ua{Nv~!M^+q-
z<LD4a$2gkA(LGmg7DubWGC_76IdSC1(NyqX;QY(WOlq^jOsvqHDv0~fTUy4^HjZ{|
z$X5Vy%)bz56Gyi?CHc&OXDhIR^}F<9+<yeoUeq7jyfE=gg2U36<9H?R?-<-Cj#uO8
zM2W4DdI;KC(ANa*B4}4Z^91d@Tw={`al9_F#BXr6Wiq-8$}CgQIC_cF-h#4-%s1os
ze2Vgx7_@I3cm9w$dYR^h-;U#*INFp>9}~yBajY9CN18Vr7zcOU9T4}Q|GX#Y`&?|R
z6lMp-!3s=+1sEdeP(eQsbeN#S;}{{pNI_YDR2-uV@Rp_W*f_?;F+Pq5rvi~UqNkJ(
z1)d-%nfY;q1?E1z%(6l>4o%dI3CiRDSY*Uu#<7Q!jKhk<j$=g}E9oGYBqxr!am<Uu
zrP$+0#4$0BkK>p|=Za%;98=<$8pqZJmCHXRe-y`&7Acp;WFK#>{MsUg9HwR`3V#yE
zr*TY=a~p7O5tdz~L@N1Dw@jHyBaGwX$-=X!-`2{Z^cR>KEth7;!3uL|kkcgAXAkq^
zSP;jTbkBD)b5=+T<5(gvvy0+b9LM(;0_2k}rH<lQxFzrf?XX|wGJy$Llcl6ziH6Im
zL{VW?9INBl9LEoFtfA+|v4IPmsjL;0;5z}niQ~*2`P(=)-3>gxE<paeIM$0S`Cp!t
zNH>a_n>ZN($YC`;vfC2J&N%L`l8Aq#tf;~9(l$W}w#Tu9LLTpza(9uR;;1x9soo^C
zi+&vk0nKd43Hj$Z`26rv9GBzR7sviM4#aUVj=yMBJ<`8RNk0_FuatirhvQ)O7eNW0
zIbHZ@9LM7LgG&%fKOV<PDmTeLdj5m}G*seK)NhXbTO7Z~abl)?S`=0O*)RGtj<YP~
z{?zOI?72Ai)|LobzoL+y7jyVqP)_Cobt*955!B8|y%GnH#JU;BtvIg6v9`K$P0;Ic
z+z{ZWCO&gV6a2$y7M1^t<DLMw>0$!>D=3TZQbA>9g8PEA4xuCi58`+z_-37w@j4}0
zA=&V&F_BZqz^n5Dg#|4l=p%v_6_iEA1V}YdT!0b<{4@h!9k0s@r45uZu*1Yo6J-sQ
zGw`>83kJ#?s9@kj0}~8XG*HPvGXu>HR5kzuPZ@aHKotXX_XVmNc+9|~2Krr>s^3x@
zttej2Ky?E(4b(DF!vK%T8`7x=Y1IevuT?_DuPTolsBNH*fp*n{!}dyVb(Ehl@T7qO
zzbiaflv$=O0ky7ydW_fx8W^Z=;28rU1F8YZz`gr&z<_KZol(6+klj|?AK>VUfuMn|
zzXbYsRY{q8b}GW63<J*^*jy`g=XijWsp^J6Lj#Qro_2?91J4`CG%)JXV3$$Z`~o4%
zKx1<1$vohXloR9X{=OH;F_3GZshD}~tYF81B}R^sUJx_qT6T5KXknlwMPZ=7fmQ}u
z8|cFM7-(Z~<8E{`@G{#P7;;u>Z{Q^Z`y$GV2DoaytJ*=xkh6{FWerVj*n3s#D+UN&
zHPFcb&+pi~-#<`nL0(p811I(cs*4@Y^9;OZpr?Ue2D%yev3K4ZtZd+Q1OJr_rBn^}
zD%+@sfy*x|gWo7|`o7G0&i!5KZJ>{VHx0aHfajEbbThlB*!Z`vfx*|6f4izYD}+Oz
z+a7w`z&n(TfiLUJ?{cN0+o1;DGw^X4^?d^a1=!cA2p2^a45Gp84-6KRV2A-Ot<x6i
z0|UbhQ2xUO9VzGtL4VnhP5!QlDWeUHF+gpOrA$7M#tF=E#~a)sR-#xau6zSw1K(4d
z1|kNc2Id=BU_dhvGceh}M;wvemQyVQwg7QK4FjeCEZW^cb`1Ur&aXDn;F)yXuvAJ2
zz0d||QC!P`mz7Bc^+zYCPcbmnz-I<#alNAEG~PuB^W#aHp9<Yg7ukhfRrWv|o?&1n
zCEQVFZ=}@VY@x@w2Id&(k(^GC*m_o)CzvcPSuD8Fz#;>y4XiP+*uWBsopU%IVDqI^
z`gHko1Drgi@r8k9qI1rT#>sxZGO*kLrL@ApN{Xn6%v9;Bv`QEl`OJPT_}?1%&cIp&
z-_TWWsS6yL{<7g=+ByU44Qw#5(LmNMwbZrD`VEv;os_X_a{BJAyvYE~i3axFCgleM
zTMQgF@C!}Oz*Yl$89MF-XkFV3>@@I`@R99;?hp-G!~?Z=8Q5chV7H(IH>&x3uSdqu
zbO!_b1^<A7gNzbcK~_E_ny_<PCM%QvYT$^0QwDxBaMZvtN`~HAyz6m#LD@!3eH#`|
z`Y}L2=1Ec1^l{~P1E&rAY2d5@3hfVJq7)|a8Ns1O&I!Z&bWz|hVG@i&m+H&s+3>zR
z^s;i%z$F8DCSEgf*}xUf&_o>*R}EY<P{hO|CaxQ}K_6j^GH}ztEfK8lFofo*{}{N<
zfN)k~SCc9>V&{xw{|fy+VeqqLU(qx_YWY4RKOK{TJu5MYC7C#$l%8Vxv6LWLWa(Cg
zOcXYKt6%_WvpSWPi<&5AqOu8?NHtO1L^%`XO_VTw-IX*^iZd)8Of&syOiAW9S4wFU
zWf=U~&%OW+mGdN%iIb^d`o7GVQ_;jzA5<c)B$|`+!=^wL6OWpxW}>=@s-|zxkC|v0
z@*@?8xNcOMQ7E^D>BqX7rXSlGa(TU|W%|+kaW>fyVB*Z5F!7{`#wMC@6cbOI2$@h#
z)HPAh1P^hLP1L85n+7El=_Z~Llc&>_O->JRMJ0mlyz&Q?s7ks?`SPm5C6`x&CVDk4
z%;0uS31*mRV4|T3TJp2(#DD4R$305mL|3(uiA=Gs8&@-*r)FPPN;b*L5}Z+DE!ie=
zOmr~O(L}C^rY2f&rJ}+MCLTX0H5a&<m?YOuTjdtzt%SbXnrLUDwTU*SuT8rArbCj{
zFM}707frlm`ti2C31*qt70<0;Tz#3-dq#d$$ci@qipl$>O5}7h(V5FP{cBlQVFrxS
zye=?&QL5ccyl!H;i5Vu|Fwxz_XcJ?o8WTOK0u%31CMJ5D=xd^%i9ROY6vCv{al(F_
zG5w1m0|mv~U(Ej<6YT$Off=A^f$y^aLb+UHi4i&Pn;2;FkHZ*dVi3pL?_a@(h$e#t
z<<)bj=|^v$e^#Q64HuFhVfqn<moVyLBnK5rp+*>R#+n#sB4J{piSZ^rG!ZkQo0woC
z-$axR&q};ng$Y)ta<h8k2p9NDZr908S)`e`az!c24dP4~CTtUq3DXoYr-MwhXSA_|
z*a>I=t_cPo&jc}J6y;BiOybZC_$EF!F_}ha`nNi~8JHsa88u95lb6L-(}eUsHSvi6
zyfkxB-Bzbkl`~CzX5uRo%T3HOF`G8rKv`;H4!bh3h+cC`<s|2sm~Uc%kO@6BsiOS)
zIGN71P*@a4T+E&WDy6rCPAVMsbJM?CePLpmi7!q64xx2^Q(iP_|GZ|cFtO6aMiVr%
zRVG%O_}0XCqU{>fk1%w)uT89_13r+yp?JOQ|Cwc})TZl9tT+8IPUoeu(GEA5V5Fj0
zNH>}Io`z@Q2NT<9)#B!Di-{k_<f%K}+HIvJ?3L(KbhPcFPWtLp*8GVU&SYUXlZibh
znp<dLVXujwIX4UCEbKF}-^3+4pos$}4w^V=;*^O)CJvi8V&W(@8&H2S@hh2S)EBaY
z@0C`+xgxEIs}qJQ$JnrpdV+Q`R5{LR4=PSj<%7&0hAO|A_}#=g6MvaFZQ>6TXH9$&
zP|r{xN$GBB^-uc6GP%XtP}M~No-81hQ(1c6MA{hXB)?#!Oc<1|N(0yV1F^|PE}^u#
z_^fn=F3-?vp^$}ZRGEppCjK+|$4T5YG3~x|$HXlY{|J1Wax0~BpeZXQ4$8?NY8qsn
ze@!f|rhL9XaL>ej6G;}v-j^PjsCia-%1|HDGUF-%nd@8n{*`RuR4H|CS+%f*A{L5U
zC}BY<tv+J;BNnqz)B=UWd2)-VRMFeA9C^ea>PT5lvrx)HN=#xZX@P?d38<wDIAtub
zPScZ8c?%URJZ0f&3l%L?vhcWtw{}aFEx<wzi$8YMDi$8K@YztMnuV&qT5}$=(6F&W
z0j?~qQa<b_QBJ9Dfh*-GwbzDfTKHtTT+2f2iu7hFwYKQ9j-c%P2@7f0vY)j0Dpq2)
zu7!FQp0)6th58nr;TkOjEl3vDmsR_eQ3GPV=@ztQ@|Z!HvIT0yPt}wV=UG}+Ed+K;
z1fh@*GAztEr?RvG=V>9=@|D=g!t)jyTWDh8zbjHEvmaz;S!h*G?cP1(={*t$$`(Z|
z&9SiagtBd&N;y*(O(|y!%`7}oMxFSy!X|8c?pk(BHn$MBU|48vp^b%p7W!LgYoVQm
z*DbtZ;YADWEp)Qb*}_W}I#_tw!YdYT?3Ox;X|qqNjH6SJuUfvL{xdX_a^u>&2m{Eo
z@R|T!EpSkpM2mr$Up^?>%|fqozQL@#qI9>=!@`@?V=47W@nBC2y*X}awU>p><<!w}
zm2>VRI6kwSTHcZ0ve4H80VPKIwuN^rjG$pySX(UpT?>OP45_RPpjs`wZ(-#h>Oc#F
zMCr-Fnce>la4a&}c8G<c7CvBaub1dQsQ7RT!|3L5l@2?xvcgWT7Y>fHFq#Y55QthB
zLtC{l!9u=;1LbqZSr|_Xzn)$5m%zEw>W389wrpnS-^dMHh=}axdL{W<cFNgYuH{(m
z5c|<YZ!rtH0OU|#rUi@EZs7|Hwgtz+91C+TxE4GMQ!RXKAz@*ng^w&uu`sGw`XoUo
zTey9`u%GRo!F~>xRht@Wq+TT&(liUvvg!;AGilWpKBX5d3QQLko@%JXj8UJ_T+6Am
zEYKI|8nkMH*&;i;l-hQkI!_qkBHG3}b-slK78VN3$gpctQ!*I@7F)R2J8y}gOKD3(
z6=s)N_>zubVS|OQEG)P1HC13?1vO$}jfLN@NUJD>p_!}cq-B~C#Mh}?uVquPJL}6V
z{l>z#!tv?C40Mcd--$57NV3ktvYRTwMhlxPY_ag8Sl9Oq)aBG4XrFO)vuMjTCa(>>
zdA{&g3)?L0po3W0E=H%lG2AiHhAA$NNZbC2PFhW&TkT=+r{&w|VB=?61%ru=sy6mh
z_4EP@H!U2raLB@+7S38YY~dFR$1R+&@Y|5gUo9M^*8WiGl}9YlRryPYE^|!yFTqK=
z2FDth`3LJ;Xt`OLC9V`S_}?v@7929!!x?HkuJZa$k3MJNFAEnfT(WT9!rvAyFj&=S
z$f5>+sTKR=(MLAz3((Q%3+WdNU$$_C!H~h9l3Ax-r`&SnLQmzKy{WPlt%Y`e%fdev
zirGlDahr~8A=yTXjejlNrA{r}w@~FT^*;;L)RIXV?1z^2z`{ei-jK{B8`FxV_Z%b9
z@F>jB%Bf@)vQgN^BQ}cKC}M+4Q~Kn6xH6T1gVOvM#(9<D)vCCS5;n@%C~G6l_5*Jz
z8>MZOv_ZvDo8`)?FZIcz^e7FkuAGhXHY(YuY=cYg`a$O2`%(oPJ8r5KZQq>Q49<j&
zDmHfS%b|tL{WF&%a$>Zf$81!yk!d5#Ms*uCY}B{$jE$N$YT0<o#?v+)w^7^16E<j#
z9Gce!nou3vw`v*&wfQ7V%lLtma$roWYh(71%zCyTBDg40$ws=3XKg&kJ`FWs^Ndae
zZOAsLnr5X`UJE#@kPSLfh7HvQ<;mU{cK)}_1~wYn{>9>X+rJI?ri>adr8eTKuSzs6
z%8)Z@Y@>;dmNr^ZSurWw_5)oG$6BW{n`@(~jTdY*v(el}3)?p#ngng0s^kPXA{~t#
z_V1I&X}7k~#`e9YEgKqYJKMh|a!N1SXm5ko!Yef+{IPRtM;kBO7{CfPUa|42jW=z)
zWuudg&Nh13=xL*i?HgM+8?W2wY9o)rp=?X3U7z+9!G5S#3W^u^H`vb=iK)BoUla(a
zvR-2JJ~n#W{^gq<LCW|~+n_Z1+IZW>JG8p{Qa>C0Z9nX@XI^4>J$l#ny^n^$+Yd6|
zw=vL$ZNsrK$i`qB<7|w#F~r7D8zXIuvi;{dAJ`Zs#7KoQ2n@F|!sdY;{=FG*hj=f+
z+o934F2;Ww#A9qwAe;bAlneRL#sr!!E7-`Vv<GHJZT~_Xwh<BCQZ-ar%Wnf4TPYgH
zl~qb0Zo{zs+W^akDeAM7SA1STd&m9TFe=)$;o10@i?xxk!JEm+Ha@a3QA}f!;E>5+
z$Z1cZ*)&$B+Ta}y1x3vHe`4cPny8IAHm2K{L6OobN~ugUdHzoK41({6WRg<;vqaIJ
z9~FA&TpROj%%>{L`8ToD0tI{hX_eN#h{kE7?KHHTh9x$Z+DMv=<jMG)=4#`bhwC1e
z+4z#?;i8j^uWT&05q1!9u!4q4*LINNV3m#4Hm=(K8{{>lHn!3is8FuU#zy*!jc;vy
zXJZ4Ize+cMQ`Xsd*f_M_#+7>fcG^GR_Sbt!b$*n7tfPEyW3!DPY;3V{@3uTLP5!S;
zP|H<*WDIW};veO_Da!di@`fd8+ZirwoUn0{Vz==VZNSD68@s61)bu?z_A+|dJlaNC
zaivnDacMu>*k|J)9o7a<7(7x|-f!aoo0OGH-;sD8BEexBr%NfnFna8ij|PM9wv#)4
zBadpQ=DaCquTYQLnA}x4Cg^cNnVnucc#7s~<C2ZbHhyOhHZIbnhbI4F<BW}SHvY1q
z^~w8_KFDyI9vs#|KK8XV=3bz@EvHlop0{y<O7Gy~ziDYzf;{^&I7#WfIk2*;yt`iV
z;2-?&hoi&fD>R!qa@Eh0ui3b6<A#l!l#-46Hg4JY$HraCt+ssUx-`3V`fVF`gi@X`
zQ+w7A{>!4vD#3r8Ps!lc8L5>*!3Xp~x#UBt-of>9LAzF0p1wL`tCYD%e(YLOAqRyW
z<T%K6P{hF_4k|l<gQ5<KIVj_xtb<es#T{SuCCPsnnEWtM!a?0ua++Yy?&BZpR?5M$
zampvJDWx66T4k*7lUL5+y&oz%sN|r6gUeUs-Axs*a0buC-qs-Hk0pU)n*(bn<qnuB
zS8?#DgMb6sK~)EjIjG^Fri1!vGEZh?=hehO)dgKTNm=$sU`u9lEeDS~I9J_2u$6Uc
zJE-H}2~p=s2TyZ`0zV~a=ZqAldJZI!t?%F&2bazz@r!*Xf^@<EA7-D5gDeM)9RwYO
z9H<U595iz9ycqFW2hTZZ;NYL~jowUE4(wCdgsGu}`KNu5>44{kZ{HIjXJVO#WX>tB
zG@&H72QF_5WINbiGvvOML)z5A3l6$E$aB!lL31{A(9S^%2Q3}6as1~qJU6zLgVqiT
ztqlC8Ne7K0-;R++k1f)0n!IU(@}h(G4!%pP{IY}56+`nEC@(qa;Bb#e=~}JiV=<|t
zgIi_NJ1)<9#lfo%KCWM~lY`C<x;WgiQ|=p)NAjSSq4K-C0yS62uQ}-E;4KGz9lY+~
z4Nl-orH_N|4thA~<)F8Nu}wn#%#35bl%DMH#hlJH<e%>aHoq2Xo{N2#WWGOr)4@tb
zel9n;pM(AmR=dSUIC$H^#p{8A4h9MEj)Qj{3~=zCgB_dY_XV@=AenWBXN5=yI~c+l
zI@q^JYE~jRlxCSwK454XBrlm4AfEJF;MAtTa0jeEdyvc%=SMpJKOII<4z%Po@)!zy
zg)~+$#|g^P@eV!|c!Hq$1$_RGAnHJKxaA$L(S{x94z^KK4&n|B2QygHf$6|<FxkOJ
z!eDF%398tE<G|$%Zz_LOPVQPM<WZ-ULN~^!lUOuWs&z)f25I;dsqX8^QyffnFwMay
z4*r{wT)c_$v4j2p@Zd1zu;hOY_;<%-{vGC12l-xTx`Q8T$ONA`nB`!RgT)SJJDB5O
z9*vEoES28=SNi!6buOnmE_7>Y@&X#|<8rya@-?1s)hBPE15$Ro#KBTp1@&0XALVm;
zeIa?ZSj87~UIEDe(!o~(FE8M%5MZUCs|4+JBzX;igK$#AwGO@!UH#HV+2S9lEpK`<
z_??4w4hB~Ut#`1=!S@a}IN0c*Usb<!##M=DVQ=Qr9Q^2DE9LgJ!X=Y#5z}Lx#}3K0
zyUOJByDRT-u+zbDhySa^PY!lbTn-L6*zI7CgP&>4?<sp}a%CF50=Y_W`LS=*ca~MY
zelKYs8~&>NzPs{42ZtOU2$FWp!C?x-!4U^X9sJ704v;T@9@x7@s{TzNkrJ$4D4FS}
zXH%Fc4IVyz(!nVQXX*H2?Y}wr!@(H`zdIQ5rR+V{^fd9~nXEkOxcuQj`A-MRWa*tZ
z<VMZ$mxJ?+GmL%?{&sMI>NBN_oI`o}bdkz+{*g`&FTt-k%8yJQ|A;)|e&C9O(v##L
zhRV;HS=Sxha8S)fbr(13!Zc|YMP2;k;I@OiG#&?c9IUBb;!xR2|I!n81lk-^x@O6H
z=E(OP+~<YcMIjeuOQ%0@kmMr0vP}Gts+pKgknG}(4a(558E>d^VHZVQl+X0v=<y#z
zXD%fDekxGn#bU)=q`Ii&qOyzPE=ss4?V^l}G#4dZ-+n@YAh)8eI3&503-wN=nH`m(
z-#4Nt%DSlN;>FW)Id<z}MbFTUiSmYArGksUr{=EyKpC(%aOw;HD_^*%;^I-4Pv(<(
z!f#a<V{+x|gXG6JrO)M?jgxO53QReZRKrD07eN;x7qwhG?xG%>xc*hCwu`4+Jnf>6
z$UfnMW^gzy_#`VVkX|b!AG|Bqb@B6FHMOhEODCh^GcF_-vJ1t<{-g{lF5N}I^|!sP
zR3XH4qE?9eJvM%*On6mkG)7ikWVmSQqLqth#VF6YXyD?9$1`ISq=tf%<Kp%`sgaB4
zU1Yk*a?#jD6Bj2=%MbPhK1)-1707n|3l{N`)-u!MXQf;hO<fSb;G(&U7A~5JEI9+(
zD<52ud2#vbzW^^ZtzEQn(cZ;NE_fbsTNjg0O6^=6A1|G4R&=T^zvx0=B8P)Y2NxY(
zOi0IyJ|Tvem#K?$!B?okCjP!d#O-^_on3U{5<E2Y(A7nri=SNVa`BprZZ2FGo{QIM
zAufiv80w<CiykiCcJYpjo-TU1c*{j!7rkBVOjh1>`TbI`kBgL^^4C|T_Akl2?ktQK
z|L3Os#7nvTT=ZwdVe;dz%H9e;2EOZJ0Gqt6yw4^T)F+mQR-do*o{Puk2X0giwfIdL
z=wgtI!PH3e(6v5!Oq}@#E{3^?ahWcLyBOg@b9s;CuV|!;Q7%SPn^CpJ^T~2U-+9Nl
z7%NoM>0#zL0mi#XT$Dc)bb_Gyf|40_5h=h?f|yF?&T+{*<_As=mE$yHJJoVwxR_BQ
zofmPFL+|$GX}fS-T%INO_)x9(eBtI*LkSlXc`xl^xr<3ulZ#m{X1n;v#S|Bxx|r_r
zKvH?Ci;rDQqf=K4rB;wv9M1WK!aONi(PGqQ;Trr$A!fSxjM5${t^H1Z`eM>!Z_Dna
z<g#h<f^hO2v7&h{=DV2d;{D@+Iy;nkQ<A4uldIlITHs=#i$yLLyZGG27c?qr^I%{p
zE03255Rz~Al?j%)AYOJ^{*p}=OKnzVk+RMT7b{(S>*6~Xt6W~h@wJP!T<HR7UztW9
ztd-Wd*!s8sXO?f+LwouBLTT!ntTl?Vq<!)_7wcK-Vw;N%E;hQ@!d1`l@8$A)rhYY9
z+2rDT7n>=i$x7Orc@rY?4+7s_<6l93<ZwNF*=~2SgEDb(XLa(KJ%LTvlQxw|Utc#_
zdqs)$mv_6^<D#&KA|CeA!Cm~};*5)ZGy@k$T^w_9z{Noqzqt67{ZEk&xj4)|PX%_o
zBG=9>!aXR4_AXZI7wOtu>4=MHnPBV<`Ph)+$LY2%esl3VV_nhYV~cW5x;W+X#67j)
z(d54K6rN6Ae71b?i$I~N%4u58=|FPH<Ud`Ub#a5?nr`mmFUrcr6~>Jc%6Y~;7Z+UE
zDalM1X%$D+OG1ML+mEVuf0N6emaj5;%$2V*fP_kR9h-5Do<26?@k?Fn+zMPtmTxim
zyLjj#$-`~Y_MVIT6po93UEHOC-B$i%6v~sQY*ea0t89%*MbAjw1#W#(@>>U$2QE%7
z@b?o-rnpLnijAt2;$e3Sx!<G7g*;R#9lCp1`S?Q4BOZz}>)}xk#XO{XDC?n|hvFVe
zcz9=5q0%1GJe2fM%EN||O2_BqLQ7KrTdwSmCy!54zPpzs9}bl9(Bi(-y;0%v9x8aK
z>;WFeu9qu%sN~_bR9R{#M;auzUZh+oDX*0Lzng6@)#&;iwW^25JV+kWJyi2h-9ycv
zD%W~dtwG@V(Y~&SS{@$v@WR&YCp~n|mTP;c<KYPpb*nZUaX>Cwwh`$IYa|xUYNI^m
z;b~EHvQ&r_QVz=XJk<B_jECSHsmMO1=n>^&nMMH*GC3YXT=GS!?j%`jo27W*kGK;^
zRy}k%FZ1^MIS&~gp7qeDSa9I#Y$kt7JN)@K^6<Qek3CHDkm(`I!<!!7^3d2r6Av$X
zXzwB0Lym{$6pn{n4?AYaFL-F?p{a*$2b6}{vbHPm#VsjZGx@1P{(pyCdT8aLjfb`#
zUYR1b_V7mG;N6k(?c~ZFu|h-j-Kp{u1C@3j5|1P^z2u<-r^=A-p`(YFg~U30SW;Ae
zg_0kqzUpCnNba1HTz9<EiDDV=dl@^NURBQHJP#D=<)Jqf<e{5~*EyVro*quERk{nh
zvz6RKfRtrQi*5>|R_D^8=q{y?hlM3Wy!SA_RX+Jj?z^jSUl08}jPo$wLw^r%dl=?n
zIPJ&7yB>y!i4|R5nZLdVczDml`yRN{`yjzzwm=@};ld1M=1OI-hpP`&CYExlLp^-p
z!7ZEo{wV3D=f{%~9!7Z>?O~(`{^$DpsQg&f<S`y@4wtjbr;qjgaF=;AX>3FJm-fjY
zdYItBVGkbft`YVS^Pp1>R|AV*mLnb-rOHtcnuk@-1*cDxU;0uZ*z~PbqOB75V9@r8
zrJEis54OOZK)K^m#%npB7Rw^=s0a^}J$&SG>lJCDhe;mJlvj8|IQM$e!Y)cm4|$4*
zsWgKp<PA#lV|xp;2lcp8V{^(U9zLZ>c-ZM-x`!DaR(M$HVWx-AJS?UXJ<RfO@G*I|
zhdGqz!@y@n(@!U49)34h$c<gi^KfppG~dGl!C5HiqJmQX&SjmY6t#!1JbX_2U*HQt
zmkG+76W*otH2ss=nU>S`8l(}d^03;&Mh}}rS8F_c>*2fqb?bq9Dy|ju8$kywmDhP#
z@8R?xNgL=;{ba3K@Wriie4#R}gEFmQ%J&{N)8IWQ-%3At*uoIePTA@q&{X-+Lm@dU
zCs?FQ&k(cwUsGP1pS<0}u9RTW(P_O_$v+W$IPT#DW0!|L9u9dp%z)<MXAk>59H6)g
z%lkM)tq?zFqMeMro3yN(JicW5K@UHj<{`pzi91Dq@$jpMBOZ=2u&j~Wz9x@qrtneB
zyr|5(xMS>moHFeZ<@LG6PSW5#{N>@ihu=K>E>`^qS4R_yD?_FzeHKV(#>uN*^Mk+{
z4}UU}tX9ra5saBT<QkQ_GJF5J`ZrD5!zB-w>F>GnjJtu0p8u@u_R7HMBgt3j=|$yj
zA4^v~jEO4SCn<kc3C`c2e1n$kVZ=m?oQPW<{-H@EuquJu9_~;(3A9b%Uk`T~<r1iy
zz<(a@F<d85K7sol9x#|EP%MFm9+DDBP9P<L3ftt3vz5k4$(x5Og%aSwyBQOdA_){u
zKyF-Y*NQ-wzoaj&$d4p&{#S)}o~a2GPoPu+r4uNTKw1JN6Bx2oX}ec>ba!Q{HF2Li
z=PU0YNiLIsw@|A7xl%TP?mtU=?j(IyFZtae$rTc)m_YReY9vr8!Lu{)SOV1&_;rMg
z1ga$PXo62{q$S0ZyL~Qqt(welVyh<nX#dDog?iyH=o{6Qr`sy;j7h7RKrK-;^Rjep
zeDTK<sGUF^3S@&^d2Hy(1R_;KPb4s)Wsuf#w0iKV1h#ipwir^q1nMWyD1qk_cqRcU
z0VRQ80_h1@x)k8r6KJ?stuR44H9<)~sPI{t{{trhHGyXncrM}ZQJ;~(iqX=aqveg_
z)cXc(lEAeW<R-=CN^7OJCnP<eBd@xfl$k(Q0=Wq^<&swi8jA^MC(tB;uEpibgR{Nn
z$Vp((tt5Wq)VOW(3kft!phW^L6F4+qesC$&Jb@W$O2=}3d~TIM>jV}Yle1NMKtkR+
zKY79?|A6~;3A~s<GyyGv_6fX{z?%uYl|Y9CIwtT2Rgl2T3B1BV6Ua+odc%~_{}z2U
zflicRQm}IZT|^>oawzNLFXa3?(rXEnJD=7qf!7n*b6T2pP?^~pylA#r>|abdnH~xB
zN}zWFJ*n&G<X5UH!}b;~Q&mRmpcj$)BrxlGr9(aBz6tcBkt8rQf&K}+O$8ka3`pRe
z1g@mW?<TnYi+r<+eDe9^j(Y<S$|t{<@UJrOCooWeK?w{_;JaN46R$74?ht&Cz_0|y
zC-7kc!xI>h07Ws56Ba)(M<y^Tfid@#(WD8CO(1hqkUz1@%*v`UOd2sp=8sU$|G>XV
z6B4lBmh%$`Cot)Ax$62Nn{P-FI)WxOO-a7oOlCHgfKH8bISIrQFcSDUfoTbtv=+8X
zV6xDuO(7(ZNWe+pVkgB-fQcY~K~|3kfr$w;z8~oJT*{iAO|u{RPboi2U}^$9Q)Ws6
zAFY!<Tcr$|=YK0cwPZ<_enO=uFf)NqMd##9r>55Xp}5Z-wbvenm%MwUl-UW)p&g1k
za}$_HBfL;zae{l$;qMLVLN0{XLIrh~_uXi)X0MXERw<EMnOEm>IYpNIA5GT*B}MV{
zZ;qTn<n9M383Qo4J$rZLoCPzY0)mQyU_e1ZkSt16;C6Ccf@B1gAUUHTK><ODl5>y@
zlD^-J-~YXN{c3w>db+EtYPu_R4(8-wE@v>mGA{@7bMSoxSL@dC$9pkrp;!?8oN=&V
z*%k5+Irwsu%*xSc(%6T^Iaoq^PM|^pKjmO)4)*8ZKn|AWV0jL<<lxtwP)E0dlbeI}
zIary4RXJFlgC}26-u^V)kr7x!5i~=rjmlQtI&R3p#vE+oR8l4^%ldG$IPz%b<yzq~
z^%qKpdSXMR%+3G9M)z(Vx8`754*npU<X}5VGzY)uU?++HuAp!5Z={V^m10xn-;bpH
zyPyF-vRiUz?8?E#G4gIUvN>F>?ajfTlsq}umxEoa#MFB--O}i$sLqLfyS9P1R-QLk
z9L&L?9Hb;5C2*JonS+}o;2a#u!O<LC<Il;;u^b%dT(j{UoXEjRO3R#ZJ98=rr*oL|
zQ=G{O7j?Tvh{wKCzV6ns{V*|jmN=J#^Q<2xZg*9(&ct~CC2|Dk{cP+?4w^hro~f>|
z@*mRG2tnY<Z?msP{}Sdd<9dXO8=Ry0GNtrw3V+J{9NeQc`&N|6E&e5&_Y$xEA@;6R
z?vsXpk{?j`Q%ZCd#d1r3=2vzW%Wvco?;VPzCXg$E^aPMV?gT!AD3(C+1o9-1H-UT!
z<WHbr0)-MNkU)zb3hg*$3TCevoy|o%ufhowNuX!~2Mc6BUtjQ~*R#uoI$!Y45(zw#
zfV^KxOQ2)|q#vTaR05AiaQ#yXX^$I+&!)<cy(B(+n1U+>OD9k^fyWY{YNAX6N8hj2
z!OqWPR_0!gJ)S_h1Tr4UymdRJP*G8*RlbS|R7#+20?#H;Ie{t()JdRj0#y@uf_Ekm
zOW?@_o=V{91gi19GZgOln4sy+r-VNzTsc=ypay%GPsj;0x|sG=JLz4*`GiP7NgykM
z>;%kO@tRv=8GGe;0<9m*%uJx!`6dO5XVy%hRswtfmGA$XHRz_OoxnSr<R{BZ)y9R%
z?dv5_pLZtEoMXQfM#MKrpdsIq!1LdSjJ)q<(Kvx72`sA||8A7BK1Vc7;KJ@K{@Wsf
zmI<`t>-hLTv5W%ofyLtO@{4B@SXx@NNnp@wrOdY2vb!mV%Zs1$O3$&)1l~)a2l1A`
ziwSf|;LQYHO5o)L-bkQx0__rbC4pCorA=~svh8Pb%8%hfrQA@#MC+`4ErHh)=s;xV
z$Q={mr|{T<#)LaXHQ(eBk}arKVg@88dU`8?w-e~fAtx|!p~yHGs@Iy_%6d0}ZV7y{
zQK^4Q<bFbQC)qgJXRC^K<>RZ~YT7e__Y?Rudiw_ne8@W^xL1Dh5nG!e$6}&a0w1&6
zABa;!3$wgEvOw<yhW@JLU9R*YeGU#kJ)b4eH+ryN0-v+b1x4we;aI4AI4~*w3wDY0
zprVS3K?w{_U|$0J6BxpF5}295tOSN7Fq|_>I*i)+GJ%l^j7nfc0$(LUv)bmK;_C!*
zii>A!H+axA&*%ik@Mi)E-q}+bOZ+78E&EwFJ}xSm=W~1l6NvMcnFA(B6FKRY!aD~)
z*|cZR5Lnq&Q4`P-&=WYeM^tMoan<y?f?G8eBY_>W3*9=JW+&hzFg1bi5^xjn5}1_0
z<OF796!8;SSUCRF%L=WKK>~fYW+fB2SfCkq>&$C3-W1>U5K|H`(nQ|x)2AgcollXY
zTZwzK#W!a}zLH9=Mq%(;^S8z91m+~LCV{mH%uV2X5*3Lsfq4ncPhe33ixXIozz-2-
zevHcV7sCC**eJ2X!l;Hhsg@8|R}{M7(kp(~Nad#llBwbBEKguXbkBt*(n<=Av$1|V
zVyihE1*;OF!RwWDg$mEtDog94+kQ=8YXa*N*g(v43ToD2BR?mwDY_2bld}Wy3mL7V
zvN?e*3H)9}bbUR%ewn0fOJF-|64*&jnUYpJv&fDFeoNqP&+KEPvWmPczJ5HD2mS0y
z;15cJX3B0(+)kMnrTreZnZTb>{a=(DgTzY%GO6aJnBtuWqP|^D;2%o11P)RDC-8Ry
zClff8z>(<Rqnt{z-f(&Ck|t$75yy$lG2%o5zt&K`Ta?;lpYl@G{LI;PnlqKar3B6-
za5jN+EUU!NN9CUP3KG74LtNn4$I7dda?5q`_Adz@7tVA^R}#2N39KT&ifaj6PvBt!
zZ)F$0k-*Ia{^c;)f7JcFxVROG+1upDO3Iz6B+&9o?R!LfFR|!o?0y2w>9lZ|LXGhQ
zqNrFVgBep)NGeiQ<WiAGMP3y<AH;I2D0NLKav@&YQEDG*I%|X?4Oe1)r4Pm`1ymH|
zzba$yP)J2#6(v<Xs-lRB*Gn`mq2du0MI*SFisBK_Z)3BfGvs}L3o%tbH6(?5)lKJ9
z`YaRcA6IBzp<y&#1yqz*Q9(s%6=hUBrs8oGJ04Zas+e|7Hc}<R%Wb8c8Zu73=}Prc
z3W0XJm5M6bO;#rVBvn$w)$-wC(m(TKD{rM#Rq=!hO@*%FNfl4=HWja^cv?j@6-`w%
zQ&C+-4Hb1%)Kwv?$WReik*S7)F{a|*nnF<_)c^m65_NC%$lvW4^J^np#ej06HZgWe
z)MQiR<>Aw$TG7wq6Ei1w>zMIVtn?76o{IV^8mMT<(e0G)T}Y{LNK82vYowyFiY6)?
zM=sn|j5?c2%2`rS+VG+npOxBNMGF;eRXnSrrHWQ6o>9?8MQb$-C*0IcS-(V{T126q
ze@ualv905Ulp^`6i|154ui`}xs#3vs2Ffp}_;Rq^c#!;br_9zv^E^hvR`IeLuJrbA
z4ZpeVRlG{ssA8~+*Emfo-c!*-MF%yEwR~4aHx(UKbW-t#iq0zDQt`Hm>2pLE6>q9x
zQn*hpXRYkk(Owl>@Pph{1#`;r!FP!2hM9~-Wmj{(sB|Ye4U~T>5ifC9Fi#q_i#=7m
zui|4BpQua}FMpuoBN9(8(RW$wLlu9#*nrg1i*LW5HZfbg_mA9LMIROYRWx5DK2<|S
zN?#TIRD7l~{iC?Ot}$zvXOC9G{FlV%D$0H>|MIcm%>z_?p<<wln`OeEyc+$UHAKZw
z6(cxC6~j~ne@MfLC>7l7cU~DAI74)89PfHZ<h~#KTE$2e<5Ya3VifyaEQ4C^F)Bu@
zxN|ebQba#XrfqJl3YKQy`roP;ucGH*`SXvcmd8XDiHMMLqS5W^*0I|F(QL9{dH8@(
zRVKicMYdw7FiGbsep6wouvIK0T1XfwToqGQd`I$A;j^nMk`w~B6mF%*R?7ULwlaw%
zI!l>Mq<M1g+TyJzq$wOr>CCZ3<1G9CAW!4CR4n4GshFW+rixiA=BSuULV6G?`F{+Q
z*($0^igi)`o=E;dUZCQK2$)Coril3}()SA1kD4Q{E>L*=$Z;JOb8{(+IpZ9ligzE&
zEK(-3%xEQrYvy%%mZ~`Th|oqW^X4^Mp<*TRqhh0qRVr4iSf^sWiZ#T4Z_#gz+&+)Q
z&(>O^&J_Ff#s{-fv*!roS!H?E_$H!A#a0#DRQ#f1vx+S$epN&Ll3Q8IXUg=q;i~fU
zV)>t}DvH*Tinho<Jx7!|o3@=qUPPgy>37neii;{Pso15WW>VU#;!hR3i7_%uy(W7o
zQD=$4l@#epe*JpNUn=&gIHKZcG;#Y?9HMY&EG7&S2RJAd1bERraX6~~J1S58Ab8KQ
z=#ld(E=0ibs63(KWCWawN=lW}D$Ydk+5gp?i-0+6LhI*|Lei{iQpqmi$>W#VHx<`a
z{G;NEiW62CJIwm46klz_b<PbEwu*b?h^U2Iq@VHfzwE$Y@@<kR`Kz&@Z$`g!u@*~W
zcexPSqEwlgHljxSfr^JJPEQwH!gXIFHJq#DlhRW)<kGOhz)AzTHRRFop^lGq<kgT*
z!xoJRQITIm0S#|zcuPY;4TUtCwh`A*SVIvFl{Hk+P*g)P4P`Wx)lghR2@Q{GD5c>M
z4F~4S$MTD=|HMiX9^ZI$1yQYqNYilpXVL6Ith9#o2u4)qN;FPAE0};$Yb!mb;c*R>
zG+arfmeWvPL!IpS!O3z34OHVF*`risC-*7T@YmQLqqe`rCi(d<<f>XI#-Gygw1y`%
zJjwo-5Qlqa^9(_rDN{{Dbq%tH3=J2ii2G>@y+LYdVKjI10_iagudbJA>=W!vEoJwG
zl-c7#oM&pt((s&y=QU(&sHvfuhUOZ6`$^Q&P)|dB4Yi~9*3odZMx0k&4WG5o;tdV7
zFb7~G4UIL>uGBCphZazpXlSZ|8i~q<rCkff8>w+#1X^eqcr@Nx!!ugwJJFK;za&~|
zxOP(zSXVyYM#J6mV(!OE>++dxH9V`Ked+jTXBCz&Xn2uBh<fsphL<(8)9{K$tECuv
zPyBgA`LUItheM~_=_QUT?KO=5Q8bp7*EGDYp@W8w8aiosgLvzpR4HHQi{aAsYT49a
z&?BX@2D+wn;SCRCRARjSws>1ZR}B-1It}k=cvnL|4WDc1rlGrrPe>A;^qz(u8a~p{
zOG8f$HSWvrYdCQ!jYjP!r>C#TqkKSm(@>#pCNHW<7ZwpT)_<&_bQgvDwO4QD>P;kQ
z_>}WCBiuLjB?%1{pG9Ti(c=6+`3p6O_t!8$!*C5>YWRZK(=bTGU=7Lk%9Kk@zdDq)
zyR{giaj~Qfe^ME$Vcr8}@5DSahbzN0Ox>%z-ANgt;VTWJHH^{lb%ec<oTdoqFhsgh
zF4S6F7?M)?V`;1wI(LoJaPe8OC^}^D8x7wQlNuUkFf&Gn2^tSfY({`?ggs6+NoY_t
zDg^L@22F#mVTOj88Vn7l23v!pfveo_2ZauhmWD~6%WFzVZuIK!*wrE7qS}jo`cWBh
zToEuSD*5kZ4O9LHPmO>>y(B(3O~Z7JM{O!wTPifn&C)QN4QiOLVa+3r=V;hU1+RwH
zuZp=OX;Z{M7FZj5rgka~!Fie4gXd<P5I<^Is9_xkrD2hV#Zmi9HEcYfEFte-7C%uY
zG#5`EPpLOpxm7>+G7ZZ$y#Kwjf-OhDN)4+>!?%?FbHzt(mCv)p8VzeTxKG7f4U~E3
zhBnFuHmKoe4ZmpN-jfr=S>D9CC>P(jSISP!-b`-&QRbq0akj{JJ7ueeZ4?MPD(Kj*
zVTXq68g7suHT<sOjE1usc52wAVLwSl!)^_KkN`CNrGc8gru)Pm63mlfYkN7UY|;HK
zCD|!+UnB?04pRQ(%7dI54M)h)?Ar+CFcCOb{+o<YpwOLLDU_(IYUevf@l`K=Qo|`W
zcuzh~QXei(kPB)zAaI(b__fltP`pcn`0-4!IYl|A;k<@_DAPD1Qjvzs8uraDO#9T}
z%JEAPdM6i%zqC=BvPfKCQ1B`lpHgDCaG#cV_G^!ca*LnD-8SN;hFg?=I`Zqdt>F&E
zxQ^U9{-toxkgA8vjC&exY6b4Ihoi)noige6frf{a$p_^WJuD?1$!!YtT{G?#;?K=I
zy1H-%DJl=;zmD?Nr2ek*a%E+~Z270@aseF$b)@M?*HK7EVI4OMWjvyzh>oH<O6Vw7
zU*S&kXs3Mia4V*RW$~!w#QkzwUj9`|$><S2^{5{Dx|HJE3uo~sbd=WdxQ=o<>c61S
zXSIxuvU=!8M}J)^Fdx&AQMeA__Zo(lvO%6$P)k(QQAtM|9c^_~)=@=Arj9HfRf&X4
zDNpKnif_*se?rGU4dVM7#-G+vO~)$=GW19R(yefH9W``(ai)o^LvF9oees8fv6)3P
zV>$$H&Xum{s2v%^xzUd6p-V6~-Pt;7MlCeeQHwX|XsDx+jygJ8*N?Bsl<Mk;br+RZ
zOZ9Y&JtFEyC4mMJaIIU%%DqIrwpoq!&_j$4Z%uRzI1szPpm8%D&2_Yh8mD2X6>k_U
zwbbd45ek9UI&wV}>+Z<U=wSK$Ecsa-&*|u*<4qmU>v$o0u%nI_Bj6Ps?MWVG;xFlV
zSx2+a@p6@>?Fd(CI`q*duSWO0uA_sF*CLp&czTyIa#L()wjhRS^XjDI4IQ*)jNd5J
z;?P+SSIhKLeoM#OI=bt4Pe)fB@96k2m-McV;l(rd?~PGy^7l5;jYQH;@rTGfYodpa
zp3y7b*OC2O?A9=uf@N@~@_`=iuy~xwvtyNBIzHBs&p>_ypXlhV^Ykdpj-KkH<0~Cs
z>-bd1XFB@o=%-_dj-i}i9sP9-(lMAg<Wv%<93Mzx*d%u=DGjKoTt1qjE|xc}lcc2l
z&YA{Yr;DS@m0>yteu|MV6ds|&yd@9U@uiML&D7bigx+^#6Do~I>KLUXAc^W2tz(Q1
zgEw;qb&S)Q9t{(8d_y+5BTC(ozh&PR%g3wd@3d4T`$!XY<d9l)qz*vujdDWAmPu(U
z2enbA?ygaw@R(*@54}B$We9#xEgiPbbJ&H?c|6+qa9PFC;gX8Jmxn@HGE(t$OuST|
zdtRC{874eQ$K(hz(^*~$b@Ef9pHrhpzKhCfQMtNBd{9?qhK`v!etjSo4Ql+)V&(b8
z${ZbYb?nozpYPQ%Psc_bn{>?Au|UUi9V>MFpyNl*xQ<0SE}x2ZEt0_loj)!nXtuB)
zl@=4>7v&{U`BPN#=Tgd|JMyyVXWA@frH)lm$JXmutz!*mKQ((Tfga+u$D~uY;*AIA
zp}KV)$v9n97^m=iv_S{$^{IDKe%A3z^z3#Wn~A^(-bNuaRi<J0R~=gke_fbTtK%)D
z-L`ZpG{)SKcj)*{$L~6J>iCQIoRN3w*sX)s)n2=E<-Vx=K_Pij*`tG=r385G)$wOk
zdFLOQKdU!t&~JJE13C_J)D#^$4(T|o<AjcrM9Y+nzjYkdaZJY%l1+AM-?8!vOY-lg
z4IP$soE-N+aPv!l#Zx*?>$srfqK-2<9$w5ktK%HS=Bo<#BMas!=XGp2l){Vfq)l?y
zp0P`uBf7&q67MoCl>Aq8T%{<}aaYGR9oKc-p#0=y9gp38UsOU}eqV0s;W>$SbXfOd
zM@wYfro^}tE|ZR2OM9(=bWg{95}|=y1|CERr2Z$xKyyeBNgmCVKOW1Jj4%oL8#iLy
zw&ymG$3R{q^k8H(#F|P{&%$*+xSMu!zFb6=3K%G8pp$_&3=}d@*g%$nYy(9M6g5!J
zKzRejj8L>bVxXjf;s#0>`1YLW++5+R=I$o>Q3It6lrd1&K$?Mc-aK6{Z2(3XlJF?M
zab@$*KHPyY-TMdJOL@$|;|894PJH`{c&V>)|9xrllGt-MQYsjzXh1fQVW5(M$_Ab?
z@U(#{>|RTea!z@|z)ZPm)u?2D(pqLdX`or54uq>2VOI9)25J~#_V|a2)aR@`XNW|(
z)Z(3dF;*Ig8^|<5TgjbKvO;mRIkvTl*!_;gV`%83p3jnbaCuDwwb(ZU&l{+1ppJo-
z23i@YYoMNiCI*@ssBfTwfkp<pcT@h{kv{sWXlQ^wHXnWydfL?76>DsOC41G3Bbq8&
z7-5!%=6vuCA^X|e55#DY>fJBj`~wABM~Hpaz%vHg7-(yRPW#lZmpmXkFIDKV|4c#U
zWPS01ffo(5H}I-~mkhjY&|fH=k#-!{Q5xA5deM*gIXwAvOL1|#erR8NExMtjf!7Um
zFmNm--0$!zcsb>IOlr~$oegv`Fv`Ga18*95%ixzC{SCZrpsRro4SZza9Ru$g=xN}6
z0~hY6bTjatfkiPzIUDP4fX6+sL3NDiVKD7*XdmHKW{mXEQ$FByjFlML(96Kb20k_L
z84+$UepBvkppSuJpUZR0OLSJBIifI~4X(^9(3fL3K+oiT?}<Y#GAnJ(#q;j}$Ww5D
zfiDaU<s$|L8W?0?uz?{4m|cYC_3;%YDxd3C5%h{bR8i2+XLvO5uQ<^L?th|uX<!7&
zX|=>}_ulJbBnPrMwr6-||3H4Bc*e+^X=4nGH89!06a(W7d}F{gV3EQNj5nYf&<so<
zF%)Cq5^@aKwji7!r*!XFYC`sN`<i`QUYzT$FeakGT%nW8_QYCjQw#(2p5ngGCfWQE
zb4ekbyYo#QV&)~~#g5XKQ)J&jU?6E=l_AxY()TnK9q*=4;!PsM-VW(!s)6qed~aZ$
zfoa72dU*zk-@tTo_n^X8N{X{BLv7V81EqhG=Ng!8U=F9OQW&6=QcSq7Dnqu2`YS>`
z!+Zlj8dzx1PZB?HI#$VVkB~$$>Dn=Ak%7g0%Vn|L!11PamJosDBV^K^`wTLd8lg#d
znSn3MDEz3U9um}){(LoMm4Vd;@>$4lVU2;cq!ttJnpnra8F<7*NfR3kY&3Amz-0rQ
z4E$_hzkve=ej!iYmv<QW&A?^@TZrmniu6-~Ur8+oV_OYu<6ozg?f)w)<yQFfchZl6
zKZrmByGWKzLYu;F1BYfP^(uyW#Ty<?*=yiW1AiIVXMnaCYP{*bvgD$eGdsrBW1n-%
zAG4){e8j*B11Aj}Ht;v8jtpXiK~+-W>?7>nA~`lLo0^v6<h5F&NpV3%^dpW)znyZ*
zz-a^L44fxfRuhAtlFpEK@@0?*&r;&$ge$rW6r@wrFA`(6Jnyy`S6kXqK%`zu`NzN&
zYGX{~F>%$vH3N4I+%s_9zzqX;4E$^0Ch3PFRFiKTxcHU$;7>`pCc0ITx|I>@{DKUP
znNu=@3v!wx?^F02NHHOqSTZk0_x^_lW|T=iG`#Scj}&H!q|SD7Qly&5#d*o2aHY+r
z@|wtJqKJv2Ci0uKu4WfBQOHCA6MdUWjU(Qf`A)vG_haLCWfeBz#ZjrVC}yI#iKWYA
z=KU*S;>$sW88>vYpzyjX@pc6tHBrjsP7}3Eq?t%J@uZ2T%uqnVL^%`XO_VlK#)RG@
zR@TI0CLTAjb*MPJK&qFaP$@Czto-E!xq=C<Mk<-8Y@(uxrmMv0uhQsnSjEJRvZAVq
zC(Q7R|JhpU<ziya_QHK;$R9P4o;Fd<M23l&iRvb5n2=4}FO`S8t(Mo~jDvfsdq*16
zX<Qa26cbq{vQ5NIWSU{R$VPWW!@L<&E~k9|m-5ah(*C2O$K81Gy>d+>R@+1!6VIA>
z&O}`k^-MG~(cDDgPKE26XlSC5iJ`BH24?8Jx!_VtV<I+}VE9{86HQE>051KRrL3>i
zq5OrA0b7`8X`;1>XV}!V*v*lm6>)VtW!ElwZGEYYiC4W0;=iqlHbuo3&*ph&zT8rl
zo;UG=iH;^ZnRwB}OT5j*YbH*mroU{W9s4suE<GiK>e*LJv^O!kr!Y4ui^|4Ne<<pm
zj2X-1*G+U_3xUjSY~?qV)%WB#qN(X@qKk>%dBU&Zn^Dc%CTLW8i?28;^P;k@L`l&#
z`inp}6WvYBF)`P~dnS6A7-eF#iJm6jH}Qpufzh2GnE2SlCni2L@sY_4nL^5&(aQ{%
zXFR?qZ=KZMCi<B8+(ds9pPKm0#DtbgUlT(v$d7y|g{y+vsUs%J{Y*M=h94AWc;nZT
z9UEXWDXaWhrSL;Gh?qAq%*0?m$UY2~Q}f07-Fa`P7*6`+%toCVVe+gZ@!V9I?!I)n
z|B7?>yK*f}j3oJ;k#DStHQyqQF)`MJOHwy6&crwDvk8qXQ$u{qzL}V4;=yb5QiEs9
z{0Qclp^sC-44nj4G!rxKrf`8e@Mel`!Z2Z)u*gbR1l`8U&5b3_DmF2eOL0ty%p%-Y
z%;_V&KP~jB^GyUMzB4h+MAF106H|%#KSarLnN($SjFU}F;e<w3+E(qAL2<!jjHa8I
zVPY2RNn<6H8*eHzO)%=VSc#0fV^UrllF74^c%~0k@!y-6XX3DlzfH_HvB1PO6WdMv
zVB$v;YfP*)v5+%PzBaMU#A1pOlG(!;otny45mvWCKM{u}igg!jYsZ(HSV3{IF}B*o
zN)p}~v5Ga8L@}<G6RnEZrILXJ{OWdTor(4Al8K)w|B0)Gg5J5*zS8G&BT3>lLDzy`
zOzaz;m3~Fu8UdS4Y>5C?{%T^Tmra1IbW4(UnE1`a{%AG_oXYy$#Gkx&ik&8QnPAQC
zu+Pd~6MsZMS+mE)*$WB**3TN0`4_o<uR?F|eI^>;t4)>i0TTx~(a#Ac4Ld|J*iz6_
zvG4gpM@;6X#!U(t6UR&(H*vwlMH44XoTN<4CC-uWOq?d>i;J@+&hTS*x$(s&aVj~f
z^Xz*vToRwIES)!D{}mpbbpL$HC1QZm-o!N%|CqR9qH}gCH69&Ix$PZ!Q1QCU&Sx!2
zi0c$_X6OXiWJhd&{!la4V0wYuChnL>u^?G^tZ3bTDb`4eChnTJ7a=6OV8{#Vu3Swd
z<)ImdB5q3&of&AhH-D;yTo!U$p%C7cFCLUrDvc40dC6m;=;v}?3t8>N3)hsIQ!@)#
zC}_d8;8`eSp|FMS7T&W^gm+q~Wudl(Vit;9sAQqCg%TDXVSg+<ZlR=wM=g}LP{s=N
zLZvLg3fKH;7Sb*By%Fp1wZi&gO1yd*@!GGsYbKNt&2a2}rK}ZNYPv+cT+Tvy3l%KH
zAI;p&V2T-XMJrsNRQg9yi+KG|!73K2TF9^vv+#t4CoMc}p_&DCy11Z=r!4TOCL+A|
z&6MgEYFLmhl)5T&(bes4O0OScGpD8ZTQAd~EG#G-xP@#BXKrLMpmKmL;_QF1%uEYS
zlu$~~-W_^Jw;dpA5(5pz>IqUE3w15DxA3ZkdKT(iXc=L(frW+^np$XPp^=50s-g*d
zct~z+VMim;{77TE$CNk3nAWM2HZ*H);bH^P!ots+1S#a#3@p5p*2+R_3(r_+W8ql~
z&sj8zDQzuKuQ=*}=-x8aE<SJJh3IuJbD>qgX@&YtSG+7<wD6Jz0>3_xS+=wA3UPQf
zMwp?yT(`Vt;dKjdSm<n_L-aTY)sdB(1by2&Ss0lvZuC$pPEYS*;Y|x~^Q9KvvOtf@
zhC7uSn`002WyA{SqVvx?7P=9`gXMSGy;*r`wu%1$k+L{kP4$Rc9$?`M-eBSV=;sF(
zKDO|Qg%2%!WTBUZxijQ{=PPuSz5JJ$zadX=3w<o~Bf(hs)It{#ZXEh@#w|>AlwGNU
zCHFF|XG>I8pKB%hTNu+{P}#Uc#y|^$EPP|(TML6N46*Q)g|96PwJ^-W2n+KirR#lp
zxP>oSxmB2>!-%>4adEg<;k3$%aaxSDFv`MM3*#(|X3M0*$K!M+=XdjZ9*G~*VO{9J
zkRJN^e5uUZk~QAK1Phi0o899qThJ`%7HSR^2~wbi-h0I4ky)AV<$3lw<#81T=W&lh
z$;?y6I(;LX7LzZ@i!;Mzp%dYUwpY6AP?_Lc2rT?#;fjT%g-I5EA%-nXwlKxQA`6Qx
zOttWx#gp=sA1q9>FrCP>@O{+I3=6X@%&{<&-Mbp&!Ctf2$vVnAlkziIiLaZ~D-X+g
zY^{)3K$a;g=11^@+X`!L=N7FuOFvpzXkoz9g5OPkAFtc;5;o5DyoI$EmReY5VL2&{
zgPJP;@?DI}tt(|RR}vK?M3Gx*t1YauKp)8NXJaf+Fhl;~%ykylTi9S>BWGcXd||D`
z9Su)X+eG5G!ovai6}y*5p#Wq^-IQ}#TP*x);h=>>7Pea07L9JNh3(`c3p?39F)%mA
zwd-#dekZq1Zm?958eSH6E{6U~yUBo)#UIgAuhf_NWGj0pql#q^_|w8)WZUfcJ_`pd
ztlOhJxF_~UcitN>7}?rwopjj3-;|Tf#W@Q{EF86PoOd2-dW?M0pw2I*Jk1gGR2kQr
z7Td7?q=i!!PE&xeC+~=}Z0&Z|DXGDtTUpopG^Kka%kvg4kl!h?eu|Yjs9dt}pQhz9
zS!sZvGInp-%&R0k3QrrQY+Sc+gWPSSfQ_3LZdpjNA=$WX;f{rS7Vca4m#DZX#tu~O
zQXn5{N*^<>@Q>7%=&!PNk$4ad>S0t8C!-658}n2fxozaJ!%sji8!yiYgINgYW&K6v
zt{TGmqJJm0&njr6kc~&8pM`B^9Y--6#qBV{n!DPn9Ys-_I#qF|mQ=zHBl`E##<woU
zvwF+tmrB}**O%@e5RDec(rl#L$hJ|_25gkJkzpfdql}HRHrBkDCEIw+#^W}gu<@jg
zayH7_c=x!dVuK;!6>OenD_6GRJfT!%Q<_}KM*h?|fAS*bRE=(a{z*Z5F+D(@vQgc}
zp92d&ZKIkUx|A@Wo+Xc}e0!f#!v>?D=v7j`my%vl5jGS%3<J!vLvwK4My3sZ1eYF^
zJ6BF+%8?Vbb5j&BbzUtSwQV%9(UiC<7O!KYfsKYX>e{Gh<3L+c-^PMuK{}QY?$Rc^
z5&un97B-1Dw(;Q|#TZoJsh+V@C#7cWl8t9<w6W15!fliN@m4ln#KTExdsXH~kdd>k
zZ7{5cK%IELMBh+Ww2f|<nw95y_Rz-j0bU63qK%hqOm{KE#mhF@*+@E=<lq$>?QNX3
zagO7%@tTeCHYV73-9`r+UqnrHw9(1N2kf4WH*9o{D&Muy#m1X9y4rZh##=Vt=Ho_4
zSHmmC>18*sLY&t8-RlIUH;K7QLD9`dcN_27pr2k38$C&-wNj_1i=mo4?P>~<@V*_o
zv%XOw{*jGdHu~83)W)N;(>}IgJxuFu;}ZhoWv<nOFC;oJbM5+>jlMQMw|U-8T0c9~
za!`N5RpQclV(vd_w2b%XD4xq25S3LrHydbUkd47MhHy4*jEu%I)W&d|J8pcoHa^S-
zZQ1nC=gRZ$AbEt1uh@Q+pJ9P3e&1hUl#S6gzKI?jL%!P_ql_JEV`!m_Q?2rhW1Fui
zm2PGYc|v>}-NP9<VM-Hi<k(ncW3`Qh4b{eXHm2FoZ0I)iLU3#tHl`L)%;>3h)w60=
z%$#;2W^sb({`WA&wYiDFWE)d#_%;GISXE5ojO@xva&mXZerhC5*%fLL^D3bxkRDb)
z-iS@L!PFU#ABnZunm*me3>!b#_|e8p8?$WC-EI!^|JbOoTp71VW-6ZkG_;w5^>b}}
zPppzo3TMqH#oA%G0pX_>gnqvS782W0S6A9tY-5Ry<?Ps)Fl6#4ilzzK%Q%}hsNmZ0
zK^FEZogXM%Kd&G=G!R8QcARiq9J~>0K3-X4W37$dHvX`&&c=F@2RmkCgN==3fqAh_
z#5S|V-iwVY6{oWLXFJS?&qe93TPa&8WNhrP@tX|>v~IProh&v;-ezOiTY?wetCpl^
zw#Y2<yN#U`Q_m`Ny?gmg+_{~$E9!i=D+*H+?6I-e#$g+O+jy`g*Pk}_QMBe2Up%k;
zMPAM&>OLy%XUoL-eQ_{)aQL2FhdAnsVF=qhMU;Qn#*WxHY2y^-#@g6X8^<ExcvPN<
zO4dL8QaNqo3~B7gtUeVo=`7c(lhpI=d_~8koVRg-obI5dgNrsU*{I^6s)Nfm{-Jbr
zP}0E_8&_@IBIDS&#va<ZL9uV6Xid?%N}N7;G<A(w7pHststNMQFT@?bm;X8_=HRZ4
zd&H6xx^ms;Fm0qd$mQUnjT8r^|5PL=Jn5KSV!5nFJm->9lxM6vp$A|d2YDS(fx}Zg
zR^(S0h)RI<`PrHio`1?V3p#Y|4i6w;3{+t!Ohiz`0b3)$`^VMEUEIOen(-1&7|U<m
z5!5>sIF<6KgHjI4veF5y@M#Xf&Nwh~E9nlV?UCseN)5@lYMG(`zk~O_%9{Rdp2r=O
zV}Be}c2M3y1t(O@j+`%Z`#F6<I#rGpIphrS=`e*sF-IrIPIeZ3=g3buc+x?(gPIPW
za`3bR#X+2Xc2M0xhJ%=c$5$vd9LNsR)`*USm6p9Eue6wxPr7qk77iZFQ=W(m{4DNQ
zmNI$&cj;MdYDAvF4`S`lg-IJ2gkH-*Z3hh<G~z&tW!7;}zd)UO4(d9f3HA73`ODiW
z^&L=`&Tx_j4!S%Yr@u{O2TdF_b<oT~_rX~&ofofEQ)nP=?tmss?%&ysWGr5+R%$B;
ztsQ*gptpl(9JF!phJ(%y+B$gF!AlNacJQ1Nej_@p3mwUxckn{=^Tw5M&GTXe#}6y*
zBH&dAukkD3puNMBi&K^zP1!jxbUAySGf2!#YS1ydtwP8ArI$*76_PqR=u}nV)p~!2
zE)L#w(8EDb2X8re+rhgIx;dcge&}?$tAlsgW`6Peh{8;lvGDo)d8#sN6W$|w+bj7P
zqEaaIcqjb6gAW{h=-?yHd+TuHRxLeq$z!4y=cuUo*a>$Q1$&Ckc_hY${5VSL<KR;V
z-#GZz!DkNoI{3oDKnMLeiPH;x?x4Q|rfpdkFESwNe8Y=k<CU!2nc<ptkb}VvMmiYf
zU`X`uR}Q|8fT2XfIWf$^@aQLR{xSkaL?t6+86+~JRX*C;+xE-Hw9=y;9Qs@tOU5jj
zH6|+g$T$w6fz;;lFraL_g9-fUz>Hd$=pf-h<*c<8IU)JUJP$;3pgW;)ZOIx@c!PZY
za0+9|=`dh9upPLZ>vL&^9~U$QZkeb!PG|(#QKN|Gz;_ThI5tdN7$}>u0yqCw2v3e)
zbl1T>2U8qOb?_aT$iW{D_BfdCV1|QL4puvu>0p+F#SRZO!)yn0$f^#0a4^>i!x-l|
znD2ysq2KfV_XL5Da^xlFQ}S(+H~gFOql1MG=)_C!QwCNqA{o@p{c7#p%uunbzx<Pf
zr4E)kSngm&CGpqe@$8{_Xj53>U?nBk)G*nR&dAMOS&VvS1oRpQYaRUJV6%gD4%R!^
z<ltuq#V5-8Y<UBjbh*6IL5m$qpI!<}_J_v?ZGBqYY@%$T$cl#in}fgdN?RS!Vz`ZC
zKNhR-v$Wm84vL5lV#D|_Wzf#AGk=e6-swOq9N!g{1a|Y;)q=oY2Y)&^MS;c|2m2fx
zad0$xWWR%hoNf}^Msa}j)<P+{UOMdHZwjC83d85eUlSGXr_i3VJ%2jm$B$9Yl*~Hr
z;C6RGN5>P<&y!L4&)Nd~>x_f5l<f}wiP}F$2}ZH+;5=pihR|&|_&nbw2a`)=mibcr
zFhg8hC*J%-y5is}+jMZp!8HfhNjVNaKN7pyOYGG0-EeS|w4E+)J`r9OtBV6OoAkb$
zQvFWsUoy)q+I9u=TKxHzbf2P(;=;vqE*?5aaZ%RAV{RxkBp3Ny<ad$k(krPzE*H67
z<Z+SL4R<08g62J2a!F%vhQg$Pi-Imnx_Hz@As2;Ro+m38b5X<%GdaXo7kb^q?)jpq
zi=befKyeo(Tr^)O+<_^NxS{{~gO=iCKc$q5G#8~^lyNced=^7v(p|s}w=ML*nLb+n
ztGA%{+N!qVlQ#=7NbPYK<y;6Cii`3tD!6#U#gi^7x~Sx$vWqG%T0W!9S|xWquT1<{
z;n$Xq3RPV&Vav9Mv02lkr(8VkqMD29E)N_Lxf_V(HATLKat#-<iwqYr7tA)W;7>8>
zPi4j1bS}!xZ8BA?i|&ZHi%b`dTr_r(<s#cfZ5MTjw|(*><uhx#`1+B$pVSkzT(Io>
zhp6kK9&uvJ4PD%s7kjjF{`xNZ)N9&+m65ab@smxsaz6Eh)Wk(o7cJO%7tJ^e^J3h#
zG<U<bD039lIUalJREYLgE}n7G#zpIB%3ho;)*TDyr7hR?ZKV4BC9e0L7}4x`7caQ@
z+(myEFS>ZiMK>4Sd5?>BE;@3KT)g6<y^B{}yyk)_8kq28>teZZwfO7o#@&<-F1j3%
zshApELF!RFgDm!ji_R|Ibn%u8syG^NQFwK6p<YPi^|p(yZs^4FZddV+i+A~RkvMKh
zOA9DN*D6z23wkoV=c0#;-o${5o-W>Z(aXihF6h4X0q5>kXrKC!lj4F-m~_ZI(n%1Y
zZgae+eBy$cUg$EKzAgPz7oWN4=VIfG7|rO^92P01^mTD;t=LgZ%G@10dZft!7hkxT
z=pu)7<zf)0#>L18X@gx1b1~e-5Enz)NR<7F0;h81PWGh>hE`F@PdC>QE?9oWxgITF
z?wC2s#b_7bxcJt^7#G~(j^lKEFHtQsmNW82DEVKVDso0j<9WkWg`xBlh~X~<bFkdk
z<%wmb1kvTfapAhqT<B4MY?jmIj~L$K!gR5^RGd~V%LU7sQxul;z@&4&=fZa}*~Jv{
zl#68a>?9ZeWhD4wTI_?{A%!rL)l?VXxtK;C(PVm#)jO9$Zye_DqTS(IJ!vMVj|AqU
zfREWO=8$teJnLbui|<{Wb#adL?_$1-KciPHaPb4N<YJSHA6+bTvDn2Dq9P_JUKWv@
zj>JA*pp2TN{N!S(i&Y$gi)AjByIA33C3&+|xGQ=6N3m~PY(|;73>)XxVA%c+YdEJa
z*1Oo?hN(H$x#7~WUrPF!7Ze@=*1UU1<_}~{91R~oyZFV$Z!Ug!vDw8I7dt3<c88Sz
ztBb8sKMAkA)O1?}H%Thn$>5_D0vXkne5SmU#L3x={@v|{xpe+;apohj{Y~-6eff=f
z${rUinRbc0OS%>P<zk<U{Voo;IO5`H^x*Y2(m@x8C`_WCbOvBR+25S{?ovHwH0`S#
zb8+0oDHo?*oQUpWuTHwSQ8hf4m)D&uY5e*#Q`4FM{X6}+Jm+0ppbYd-#=}Jymne8W
z<neIX#Xm0Yy13`!ii@k1!!B;QxJGob&HuG<qhFr%?*E^iLqDH#n+R_r?oc!p%Vd~2
zO*72l^DhNgTAVJ6_gy@2k>Ww}@X!rU;v4i(P{~7s=By_QGIS!<LoP2A<~8fZ^QK4)
ztGT*9HLr(!9!hw4#6x}$1w0h-=+TXW9{yPo`hXSoP{<2&T=04@SYiILWuHpLJkSHb
zxQBOZisKt&mmev@T%g-$7bxlBQ4eVz`~s<TLgNmC6I9AW$3aS)D{1K-;Nj{KSv*sy
zc+mov#)z^W9`lgxp{9q&J(TnCgoh_Rl=o1<LnRNDJyi6-1YAE%5%esgBKpJCdAhxr
zd1`#KDjuqOSYIS_;#g_W0x?dNp7QXthq#AK57j(W_n?sYKUTPItl=TUL(IdCt%~f0
zX#l65Qyw=89xS2=56lD@CIeg+yL?(%|4YFv4_SQ`CZ?ma?tfO-S{`b9XyT!%hdLhW
zdZ_QAfrolt_<221RM2^{aqm#e%FQV=GBxzj$O}_^P=VjMOuVs&Uu%hv>NjZSp}B`v
z9$I^tS4^yD6tIVuUYNCpTs&l;eBx(mNnzy~4}F@5HXi=-o%=7E`#Iv=!}om9!wVi>
z^f1)JFb^+zc-g~;9zOEW&ciDnx_WrWLwk=FWOVk>#RK!>y+&MR#yfa;oi*J%zFtI}
zXq4U2LnjY!czDo*=@W|ZqDqkPo1}p&v9~;Q`$hcsh5C@uVICN|_2M=0F6%wK=b?uO
z=B5}tSakPLwwhuz5T!1p99WUs)5H57K41@@&aOA805^s$8imn?+$8q$@Ue%!Y|6tY
zq@Pyk<Ka^ez1iFKGDCIdww5ksDxZ1yxpo#)G|W65KQUhV+(Um413m7xFo2Wzx9Iwd
z{8az?)Y5<9fu`-xyLYU!Sl*LAW3Y!I#C&~)p)m&vWi&b=5BKn;2h)S)VT6aTJbdHf
zTMu7*80le*hp`?;c^K_6@<lL5;>FFPa8>DAVWnmhiCI;DY%P}FlE-l@`;>3zO5;6D
zAi;P@@TovBUi;`HnG-!MX)bQoZlIEh%EWaKhKCCmWX%KJGYBxT#*mB3nV*!I+lB4%
zFbhocFx`Xe!Sj&xFexG=-$RQ9u^@uqEFt|mJ61d^bu!0WR#4VW^+KiM6tc!9L15fF
z%6A@?rG}z%hDReQW_g&+e|Lml{drc&MKTqsQ2HF=_Fh`~`zfvb?75`dH^d*^o6aW-
zcsStUpobqk{ODn$hfN+9dRXLPwTCqx7IRP@mU~#i{*bNiiluy=2Ri-sdqSetrOO)W
z@8z=jt~BesSm|LEQ8Zn?JTQfE4efWz?RrT&3Z<|0u#SXBvMj6I+$?dewZUT)r%bnS
zx&$*)^=A*ic=+AJP7j+sZ1J$o!*&mUE{Xl>fjL9AdSQHD`;!vm{_1p<CU+4#Nay9_
zzmXEkiJ4DJ*MAoeYNzh<u-n659`<<*m%|>?JR9M7r{-tAGA;tsHl&t399!c_+-MAK
znxESoM#}8>u(fFX`Vr;bG0GtihxtZgn`88F#KTz+=R6$saLmIA4<||F?~3DO!#y(X
z>A&bQm0hPuejd(v`0bb2=-sh+HEB=D%(uJd>pn^xD<+*M8BmaVxZ+{(>5!F5#^V<~
zu)IX^bs_CCNu_(oL9GQNhOT<J7EOJlu`;t-aatcFrJEjZkv%EWJ=~^9+?tE^cRk$k
z@Gq(5TIdzbixG<%6L8PNeM;aD8!uQc)*e+-d`LcW`N-|V+ov#dY^ooo{k*X%w&O58
zh!o~8&Eq4l59Uv!W-p%~YW7~ZT$>?R1$`9qG0(?*ABBAs@$rt2cYPG~QOrjjA9Z~c
z_ff*fQ$C*d@d#V?@wkt2J|6W^%13D*WqdsMf++G+R+^7=AMnHMSiOqpuQ@ogXTdoA
zh?p0;tRIFnG8xG4De=dA^ggJh?hxgDRPa&N#}hs(`b@l;$yHDlAC-JCYaFxZRrbNM
z;D}866>l1w`t6y<vns})^l|EJTHRvG^Cv_#AJu)tePsG5TR_zCA^XVi!}JtP>J{@t
zxh;I2W))gSzMd*65zL>onX)F!N4AfeJ|;b;^!q%FIIHEOwvXROXED~5-sUCB#k=m6
z>iMYe<0T(2`)J^!Au;Krg^xx)8vAJKhoRQvD%F4Spwfi(w?yGnF{Y$o@|<Qq7}Lru
zVJ&^M^3ldeTOX}`ycHKcewKT+5d@xze(q@|o@G;OvYzwtybpSMpUI#8{@=<Aei%Ld
zq7T9!$HbvnoIl(7c*RF2A8+_*AC2)fAFunM+s~^+=02hHk~;XHfs($C9ephLQgkdX
z(Vu^1QK_?!E}Xu;X>a@3K33{kUU`!p;LY=6+y(f3l%k6ye}d@hWB2tKGm3Qc(cQ-=
zAESM|N9_6N=i_r9J)`%2?Bf&m&Bq5mKJ@XCkC6oxCIe^Y6Q)Mty0MoZa`EEsVXDvG
zKKl6hG<uNnBcHJwBNe7mWmfIJK2oCuW!%g6_c6f7P#?p5eBp;`+d)1Ca|(8dfvn#u
zmgP?$!p=8Sm<OiQ5c!oyGygoBI-ErHb-u5Bd`(It8MIeM`1qq%>em|^Q_b7+3&Fe}
zBRSoT;&hWPxK<kDV=Vc_hwo#Yk8gZvK6J8%kMTYdK2(xDj~iRkWP*>0QJ-_7a?Gb8
z&oZOt)tAJ!<${rh^b$9Gn4~%%wjaiSz57j*eII5qV2ujE^ABQ<50}gp`4u$j6+RyL
zNcx!S<2%w`)a+y*Q#ge8Mfnw>hMZ=;kMb!D)0pOCx{sMYW)ZzFC^LNYwM2*gS-Crl
z1*y_(A9H-n_3=Fk><y)96b-~=ybSIu)JtN9BJXP20v|v4xaZ@(j~{(3^s&dsUQ(uy
z#Xf%a@r#co>;tLJ#~L3?+1pELD}9I(8OwYu_i?2|gLS9UR*>1BX|i)<(*>u+D$;px
z@#9MQVP0vik99sa`d~c!dI|?yY=}lgb4D`Kx3~C7+LKpo@^OA&ynAhFv(Frf_>ElV
z<5wSBqno#L)}}Y;T}|2MQ^_XLO{@6N((iL)J9tCsxVAENr;lBv$>?VK_H)lTZll7W
zs>aRYfABA%6m2X0>EkaS7kymvvCqeTAIB++d>rs`(8pmPe{-To%ZJGFKgl!ei~p=M
zM|>Rhaf~Rcpp06gkZ$RNZRs&4_nu}-Cn;@woMY#Goc3{sgS{j7Eg8DrJt&$<AH1_Z
zuFnrsSX5anm>c8*DXNdMccDV&y6od0AGdtmCJrfDizqju{$KS`>y3`r_|hY3*Q0v=
zMLH*8+>CB$H#*!7+#xc@$^ZJGnd76%;;xU^s)-j4#unC<9{6}j$r<2@04V{a0L258
z2#^{eSAYTm3I?I*%N-z3fV=^IF+*SXMsm}CODXvR<PSifz~oSc&VkySN+CXYN+}YA
zA+&`9a4qy-MtUayDH`C>nM$#!ywf87NPv<7$_99hH33QmNDGi2Aa+fm2XFgqNgpB*
zpmcyT0qzY<`7i1=&x05(tsm}@Cou#dKsmlWK$QTrjF%5kG3siCfJf}{#67`0!|Zvb
zsPaT{k-A5$x+mzROx3}Y0iFs_H$c4rPY0+LARZtyK=lAM0*C-g067TLg)t~279fMK
zSSWaP7~J^3T&A=GHhe`e2Q|~=W(CL&P&+`K05yX!&ni{-bd{+U{J)-jO25V_D`XlL
zODvEXXj4Bxg8)qfGz-u$K%=OKje}55R-c^Cbmh!;!VKX}0@!N=zctMRv<UD_fHpyx
zz^Y{cD#TiG;88TwtU8&k1H4V`-$n6B_4@2y+W^l7pwH^Jd!*+AoOxfGHdx-0PkAxG
zO99qR!um;gIY7GrUnDUwiB|%&4{$KxiPd;Dz-s}f2bjSY0(1y4B*4&s{-5X+;DZ1k
z26!Vt=Kx&;yc3{HfH$N5za8MM0JOi*q%~`)!iWsU@*K}jUD{86H$b-l?*-_=sad0R
z4{*{F-z8-xg7aRIdIq4!{`*1b6T(9-Hrz^~Q!(>geH5TqfPMi!5Abn-PXhD_@M(bF
zL6}eY?d7rb4RI#<>2odRvj9Kbk3FoNyKfN25EW}8(K&>Eas2}f;3NhZ%x7oF*AK{F
z1Q-~Ei7B|l{m<iz`GgrgJ)*66_r1(v0fq-WxEywXF9VDSFh0P90AB_8I>49!V>v)}
zDJ7jr5l01Jil@U}^R@U_jOGLx%}8wH0(`?~%P3tJi%tX5xXb>QWL7M+$k(`{Obn1i
z@*oldB#6W2iW-ET)yy3DY-vdgaH@flcTk=h9~Iy(#td-fAB73l)(@9gj+UGV$$o$!
zfE&Og<u{1)FvQQRh#nJ^WPnKlrUaNuelbPQ$EC^aCr?5*l!6b_z9SM^hav6L0#J$i
zvQp&4E23%b)R_ThMa`}cFgw7U04oBl3@|sq_W>3KSR7zpfcZo(c{#w<rh;i17H}#{
zWYKTr^|!LWJsn#Z;K=ekn>NV*Y0o&)C2TXm(tv3b<VoL%+MkFv`(yOkTNZ?FV9SHh
zb+%9qu_}5s?_U#Ob%5?q#W&xIztu!pOA;j-cgi2DO7c+b_wF4x1lSm0Q-GfXY!9%5
zQYgS?w)4LhwnV_MtSlLR6R&(2T6uVFi|Q|(PWg>26W~t{KdRXom3sr+-74*h;N1cK
zh=4s&$!BTn$&7aBg!e_2`zelU6+Sm7G^ic;uclo5aDcxl#FBVCi6b0xfZGA?1UMGp
zcy!O@04GTB5qzFg906?MYy_N+$}<77CWXR^*SV-h|0R6Og$TYFm6rnK8ye~r{~=*;
zE&^N&a5MUgmDeNS20L&gRQ>TP)iRXZx5)mjL*QQymhwD_g30jbJ&O7yQX}|&fCmA}
z&ygSU6OhDLvG~RA9anT0n+|u#l|=3&@<q4hNg{8OX%EBY1P>M&{9A734X$@wn!i!b
zpTzH3V(zV!LP-=(qGS?}MvoLpqG%Guk{FOHJX3}iE+(Zfo<xZx9!Z7)=BKa37-RmH
zsW8U8R1#@PAc@jRFqsLH9i=DH_RY``+4p8j88+BIyKE9Gn0%nL*nTBEgCOse^m0j*
zPof=#SP~VIsF*~<BpM}ADT&HSR7;|I5>=9@n#98S;;AH_NaD#Pm{sz_o3-DsAW9xh
z`65^TrDK$*lW5#h+#Hk2t40!X5+VsDiHs!Z`%Q&yEQ$Z@Up$4UT<-kwBr=ouewoNh
zf^L?--WGJZqymR_#%%WCqNo{_wW6|i5_KY=ZdCH$dJ#}RDjOtmrIEtQ#z{0uqID9_
zB+)d9X2~#-V5=mWC($B_Uk8eoNz|O0#b5_&gBke1&r`)o5)+?t0n>)Kig5ly63-?<
zMf7vgPpa|hjYAwhAN`zqMR_ramy+PIEH5W9zJ^4-$MUk`(wSKMBwkITYZCA9-y~iq
zmMUbvl|+XmIwsMX!%U)6lBd)uCtGGRo{p=OH;CJ{qU)L0pLfHwEi{h2nFPzGm($)(
zB9>W%xh|Q!_uVAA5qnAWN}_ub?<Mg;5+AY~rQ$tE9#iG_ljxZY_dc}pP*RoZuUy|F
z(T#!O6?B#V^_KWJiBFRFEQ!8J^iGC~?mkI;O5(g9D-)BBRO~?alGQVmQDd`dF6oy<
z|Nl_&mHc@UFMJiU1Fr#5Wv|z=2PH9>lrRZTPQs8RhLU>u_9TWSF+7PSye)|@lNiAl
zCE<`GlK7gqN@4<uffz_)OcG-`LDK{S#Ax3c&Awer<28;GG&qy~(%&XAd2Q^QB)+K=
zKT$S5YL@(4yZjTA$cg%3C6P!%jbM{w|5|7ftdliHr7_cKu3ZHUveJ7U83Ojo<&dNI
zu8L8fyGeLSe3!(uB>W@-z9oq%NhFh@*Au-BCndo^l}nqXl_N#%2Wfpz$WzJY^OOgj
zm9~dds??RHCov;>*W4s#CNV3C*&OMjFgc|6jKmX0a`z8?o9A#In};D$-$yski%R~S
z9{~%<q5rG-F#;B{1OKa89082TTT1r75?hzV`XrVmv7F4C#7Z)L5^Iv-`M;~kL<1zQ
z_h?DaS37lW^dNCXT{Pd-wt=)EiH)TEB(^58DT$wx*qp=`l4vPq>qF%iQpM&N<AQq*
z&eMK$7Lzf4>M2EvN!yax9yRqF<v_(a6Y}qfer~xWF1D4ZHLcKE>`G!c`74QAN&Jz-
zo+M8HA5GT*9Yyu^2}ODr_|cUrqgghTWdW&X*`)*sB$NT9N{56%Lg>9q6GZ_bGdnwd
z1{D=i5J3eSAR+=vQIuu@1*8eW_nYzipEKv3``)~H<+gd{zWWMrr2r=iaMI8Ga{*2j
z;QIocEx@?~{7`_?1vpdSZTl*E3f1+)1Hm)rn(J<Ii}Qu(YyIa>k~skTk$-^#oG$>k
zD&D%(iQ&JyQhq7Gg#uhGz$Ny*XmIa=<e2J-<mpM?f9hAFq5wDiN`EiF9|gEpfInH6
zoP3oHd#oi*C?Bg6EW9P@FDi-x&qVqDp&)%zR61JfKX2_f3-C7;d*L82)VM`;Ee7e0
zlZ#Y$3viF}C82_Ze+qEF0L3IcCgDK={w+Wu2}u$j7T~qVQy%%XUmhHc7xo(VX_XRm
z4_H`25ebnJ&1fh)Pb@yPZ%R=K3`f>UDK4RegwhhqNGK_xl;rIT(@=*VO&g67>A%#o
z@0Cza!V6alz1=T`E?jtR%A{w5JmyeQLL~_`CDf8oS;FHIs!OOLp^Aj6tg%C|8q3^~
z%=@8uT8F;wd4d%Z7<L*Xa>h-^v$W{r^+~lQ)RE9YLPH64B|IUao`m|6=R5I9i97FY
z1~n)_(=2v}M@u%RBn7(Ra7Ax(lU8T+gw`}a_>_bu5=OC+60KbDwB-F6`$~95Lb8NZ
z_FY0iLQ@H?CA5(cl#n7JB%zgrW|HU7gZZ0FXge`TUmq=4sf2qCN^&oWt44Gl*uF`S
zeyhR~=zErSO^eSbwUzL!UrQ$m?Ig69JojZCBycp_C_jm=4{r2M>L_{c5VN0a&9JkC
z=luM%HTtcBN185vw3~$P5~31f#Ej%!UBNLG*TZ>*O4jwNJtU+_=q({#!mlTiFMS;B
zDWR8yLqmeg-YMLuQq}Nquc$r}&g)HEj}JEd#fxT0$YfI`^p`ML!Vtfr0TM(BgCq=;
zaQA+2@Whlyqm#}Q1UYJb%1Ii-D?-Q;5=KZEDdCL`N%UksjN}`bG~EB3ceK^p*Noev
zG~wp4xa$X+j+QV+!bS<NN*F6)oP>E2=1UkaVS<Ed5^^O>lrTv`wuC8Ul6LJTOUUA!
zrFpZKr2=ybCGmVZZ98)$Ol7@)HKk8}#rGT~%)s>*f_W0AOPD2LHrZ@g3J*NyOPC>n
z-V#=bNi#|1WhwNh%8;&>Xpc&3u{rz;u#b<L@~|q8tS*qSP{JAsYb7j_uvo%!2`eNl
zk+763aU^BL+T{4b;4-GvZvOn(6dJgGzO3a+3AAwIO2sOYuT^Qz5nhzAnrOM+^p&q$
z(4v(q@arV3m+-QLS0v;$XvQ6F?u@@AVS|MD!sp6obndz{g|_{?1d3j9=-c)+37aHX
z5^M>ZC0t8tT_8b{utmb_5(?8F^_t|Z625AevW=vyoy5U5@57Q=ngmUPE<usdvsAN$
z1eHkePu+60uuik2U+?-JoBO8ljsQb~N&Kv8$-8yv*U_pUbl4ZBkb)AnldKYUNO+rU
z#%be(Am^l1P0OEb{uVLwq&FgchvIPGlZAK5C!Lxdn31w3wRoxXg?34JpJd|RuFnh~
z@U5NPKG1BpAKgQd?;iZnhxzSZANYvu*V6N<#HByFqWVO_r<AxjTE%fd!a-6*#$uVq
z!}y$}l<|yA9~$^l!ru~Z5fx-|3FjpIDB-Y#BN9$Y_+G--5{^pvPQnQZ-$*z{HoK5~
z+^_LlKinMkWS`~@TqSrth?7)M4Lb3B^w5(fHm*tGDT5y*Z*%RmgfqlyQ}4cjw=M>Y
zRB6up2+k5e51M{nJLxA<LBds1O2W?)ev$BpUpNijFG#pTVU%!@<w%(MUAxPCbvIdF
z7UWvNGg|OBKj-hPcV`j}&iA~N!V5k~&Gpv`@i5Du68@5KUBV3swCCZ`Bo2yrY2Z!C
zGvi;TrtsE9?wgPJGU+xIAQh>MYBKIp9Z4uIqlAoqB-|&@$S5M?0o9I#M-mFjpj#WB
z1sIl;@=)?ZE^^Y<&*UG9|6MjEN%nBUgAzq$&k*Y|8N8^jn2g^eNnGW&y99IpC|=}=
z7A0krVg?x%Wt5gZd!BN#cYy_gGBV1_*ypz6GonYZybPYnI&TGOFjh%MW!ZC7__z#O
zYtzLUZ-==zu2dBnbXWMqv`$>)hs?tos3)Voj2bd(%BUlwu8dkTYRhOfH%JGA8^1~6
znk_HKDf?cD_`2jLWOVBn<iUR~Za*n|E8d@IDGg*al+jqmQ+|)KI|dv1z{gK}F1(t^
z5M<B+8eNoBD3a3X*`!;0Qp!JDG+9PKMt>OtWHgl#WIJVak&z;!nT%&;w3E?XMhh8j
zWVDshQbvfak`b0saKG6HO_Tn+acO=ccne9toK0yhW5H9+9#&}1tLW&-yhMFZ>$aEC
zf#{OaSw=@0Kej5&tu9WKczAh_LI03Edl=;5*;E-tPX^E4ulk?Yny8GJj5HZN$^Tn}
zUD<0H-DN!eLQ2YeDb?~Z<#g#DY`K3;1|8V;lF?g6ADNy}>47RGoupiql=XX%9vI#|
zP$WYJ4|8S8=tn%<YTB!2QgCq@x+$QwK%HqAC_|JnQN|=0gJcYrF<iz78AD_|FJqXD
z!f#Zg5q_mg&4<dM<KMiw!P31;yOlgwT_a_Tk}+Dw7#Tbg&V%7Eu+42d)hm(mUArXS
z3ous3I2q$*@HokUeMxkjC?9G%LB?CVlj#nfu5TvG$dZvKW4erNpK4QOO!I*$ewZWE
z`Ix7Cc$}7(Jkr`QR|XyVuIrqXFJp%6`Oldng9c+WWz3Q>n~gc!wAaEi{~a5jy|H*o
z)fDEL>*t&&V?N0wg9}hh<g<{`#h!2WB{G)ExFF-AjAb&GvynuXj1}Zq8QVy78LMQx
zDB~4YCu6mYH8R%AcuDpSzOAJo+$h9D5HyNgCxgDw*=Al5#ak6B(#5Ro?MlBa<F7j@
z1YVW#nvBgdw#eATUR+J)2}E9xLQj1!O-*`T##R|TNJXEG|9Qi^SH2l7`XnDAh741N
zEF(@l$VkXgWoZ7ZKJR!eM{hf!p&p?7iD=sFnHtS488$H>W4jDT#?|5}^xnq%`=(|D
zr?yObgXx34Ye5EXOnFnrt2=`e)_BL7-j?wWIZ(!zq=Jl{GCq{Cm&MAS2d58Y?3S@h
z#`{Fqw@s^FDD<BV63@%fUSbblbq>DWplrP*DIXCzGCq}YfQ@e++)v4!)BF=+zH!RO
z6fQSN;88e<2OJK{*wemQ^Us5y$tZcVY4VjqyhiYI@@IpV%^$S*O2#1>Kgl>R<1h=6
zaZJXyGQO5^RK_>5cU|cXy~J1H6kZJX{-~sSw^ORVokZiY<1)@s`eb}3qtY|Y_?(b&
z(uYs^;rIVb|G@`N%N(Eof6lW$@ThmNZeG%+-5z33mPw-B%g;V~e<3fGN}*>qdi;((
zXm*K&mQgN_@^M_DP{_DP<t*bj>QxyxWZabT2k}o%pp<=<Oy`8xWc(?69)$W{>Xffk
zqkYcTtqPyJAG}VrwxelY-K4)MzkXeJDH?V)S~T%4<J)AsUsLX|*Ehp-m3GZYrcvm9
zDu4b0;wT!&zcL=mNQ$Fy9CeE{dnBV!97VKh+>Tk$+&eotzG4|#r*pN3rmehVt5_V5
z#Ze-Tl5x=6Ew`(R$BE~rygRJ%k>aJ|^h_Qs69)%l^iE$o4u(Syr<9H3RN-pfnl*d(
zg<yp^DzdIPo`|DT9F^mqe=x+ozs%!tn){|yjeBdJRpQ=adw|;kac|Q$JD$Q(YxOv4
z#8ETujdhDw2-c3HR-A{dlUGkqVaS`R>cqYKst7+BN4+?b;|Ro2KaK`*JjGXWH00+?
zlJj;XH{!S71$(tD+&GSM0kjUKzO^wZ#PM_-cdG@TiF+n$y!4iPjw>oP=gk^_EiBVC
zj$j<k<7g2_O5Af~(Jbz{@8DG+lO7a$G(Kg-=p;@ITau=ik~by=zHJxm7ETJs(K^np
z5L}I;O&o3GSQW>MaXcGGyEsP0@j@K!<LD4aS{yy&=om*Q9~<4`=<EZLIJ(5~9Fgfq
zGn*z|dd71m5RH4=m$5jyvM48bvW<8DozpXk2IK<|mFdooPYymhRINuGmtIH-*Dl;E
zj^1$$h+|+J>2dUlBO{K?IQqsxqnG993ei}a0RN2r;^<EzmQCSRJG5HF>5^Pk$h%rd
zjAKw7&&M$|jvddY3?|z=-Xf`2%8)pIxe`1dPoclxVR7$@$>DK~h=cYdUqzGt+dbr2
zjFIf!qox_ff}`UY6UPi<FOIQsjEiGR9651}k7EM4t8=qSB<uAcjaBGeZX(fDEJ!ce
zAHSD8IgYG2vRV7^=5$WDX=5ke89FtNX{1*i)8oix+m5FE`$Tj47D#@o4Tqp)-49Qu
z<dX`Uf^@^u^_Qesam<cmL7WFmJ+7M*_s*Nl_u;vII4=%fvNn8-*k)xZ+8%hDzi}*%
zV+pIM5ae>!Qa10+jw|9=8OJgoW^{QRKUQc)fMqTTRn2cug15r0j$=)nK0onE9BboP
z7l#^$7RUNHUW#K2<t2^{al9PI#yDP$^ImUyiwe@SCGSt9M`fO~c#R}G7u-x{P75ZL
z4sId|8m6S=1_vdl(8tBrI9BIjTO0+%o|{6GW+@Jt$b3JTpdhD-andpFIgme^(U~`7
zaYLN&=P_?pM~}mZ;|)p^N%mU{GY%&XH%@E7pcRKrtQM}ezh>*7iU%nvvHX_X<2dqf
z(+`_98+;+@Es`LPcjMUUW9;oX-if1!e_Lyl^Mx8b9{lUDrvu+3hs;gh@8{X&hwsPn
zfe-NQZXej=habkV_kZah`M|z7=)RTN{#)Ppl!N~`zK`PvYKb^LV`Jj@I*!l%%wNTE
zD2^}U_|lKwe<5k|7Ow$ZFXbH~@BGm0FxlR}-R5W<-^6h|j_=|)Mz;AnnWw{eAt|pa
z_?Aptu?@eXE1nZnSyV(XCQ}ohjC<SDpXCN=eRl;(r{g#i$3==&9B1P=7YF~m=Slsz
zXL|G#k^hP3WFw<al6Qn^Zqm<`jyO=g4G+X!ASX;{QMFE|!pDP`$;scA{xy!@D37s}
zE9AQJ0p2w!?Qixw`}KWOn)K}4<ed$<MrBBWRnS+#Uu+c>nu3N3Zp3jjj^YYRDEK>$
zTcn-hvGnaY?!@tc>Ydt*&7%rscgh7g@cy7swdM<wS0AcId!GB`kXKW<Y4wntxg+@z
zQFO8?4JIr6Q>f;{;L0ybBq=DYpooH^3W_OsO!<H7DX#Ne$W9v6rsb76&1=3G?71+d
zq=HfkYAUFu&}|XQD5$0Y3bN~an^R>KlvA*2f3UoQN(w6ba0LYw2`}l$bUH}vR6Ovw
zf+`BCDj;0NOdjxwcix0!a^*&l*9cZuFqKoz8^Ib17=76;$@`vaE2yL3356cg@MuV|
z^{2^o70)!{+|A^ox2w|OQauIr6^d1m<^)eJNc!PGvh_t$BL$5Wv{ukY!BYyFC<rP@
zQ6MOITER04k`>(An)H+$EV{Q@xh17|^FlyDQ@;8)IeDh%?AJZg)TolwOhI!6trUb6
zv{2Ae;mSPfUQMBw%Oev@a;1X4fSPym_^^F;3QhM3P|(^cG%!O%K^Fz>e0p_K&{;uy
z1sxO+T{ZqLw0TMMjtZ9d3O2sd`8fr2Lp^j`JD!ZD9a^dau3pwzksMVJ^FQxJOipOg
zRY4DhN9@r}L3eifP73E`GslRNzU#<4wR<YyZgO(FB%ZO|T`Hxwf^-GEFqGGZ(&kyN
zo|2&;(=TnIf_@76E68JG6bw)>P{D8oBNT`V1}S)6!BEBXRy0__XQk*16hr?CUO1n`
z^U<XjCUG}pn1Y8T13bulU}~ofsoF>dqZEv10~EZVV6=j9inrT4M#1aVn~zmILo%KT
z<vp7tu6CqcaLvD=TY`I7ywHc!-iZn(kuGI|ll?G@^xB-<?R+qsJv|?s;)gkYIMolQ
zDaiGK6?=oskgtHZ!Ol`Jo7}5_8gixr{+jio)p%BV4w0!~zJdh`=CNU&T2BqP;FOI=
zjaJnte7{07uIDsb(wwdx7b#e*V2OgI3f3rCt6&)kq~Jvb9M`Q-u#zHKJg|x>%aiGv
zsq`|B?$v^2=~9*Jw5t`*E&ukRN$V7>Cv_BTRPd654T|UDi8)_Z@bmg0j}H*0M=Z6$
zv#(MR8U|k@nF<GK-1SYzBo0?5B&uy8-W0Swgl7+7D|thKv<vbs6cAu(?_l^lkQKxg
z{BGb61B!wK5uU&g38)G*(jtKg3Frz81r-vgn1HFkVntLh3T(3U0AVMYL4l*dC0h;+
zZC9{^EHO!VL&3p?;Wri3IF%~phTkHS%nvie+x}Z-ct^pzJ{)-|#^^2u?~_jye6HY)
zeBlEHdlh`7V7G!j3by_neI-ly(2v&2jJz~Pd^A6>Pr;`Y=lOx9{X+W{eC)%Y_+j3b
zLQFs4!w3D4(bf|}Unuxe!5IZ-6?{c1D>z0fD>$s+2(g_d998f&2|c=O@AS}Xn}y(&
z)a9>-nf{G}1M>slP6!=W@STEF3j(JU98C|MAV26uPLkaHLho;k9^9JB%%3CrJ@GI;
z^n-%a3N}{=w|Nj@^qhhp6<ktqS;0>V&MUZ}K+OvOtne!2A{*BfVHHjGMt&jd?u}d+
z9JuHgyE8r1Y(e0Pf?pL}WljaZkz~|G6(WC7ne0s)FeR{mT7XrL&l57H3v31(v!q?@
zl?wt1be&R03@A9!vH1-JH~9;o)>3d=!N~mZ0|j^3@tn|I1^0Y_^}aDi?D%)&A9ihw
zP#m%Q3ceU468M*G9wX+=?#ZxF0!ay!OrTT(g%fxzFVJ2QiY7dkD3ZX2tQdh}Oi!SA
z>2PsBEa8Vuwsd7myQFaG1j-~(E`ioLfwKOG>uVL~S9j`#8J16=?8vm*wPOq`B~aPV
zFgSt76R5&Z5@<ti+*Y(|0(BF3B7tfNAb}<G0@V|!=>vpoBv53mNT8OVQu}}Db$npY
zl<<=Y)Jx#01ezpJKY_#(k(&cTjeMX%0u2-BH7nd?tXOh$*TxADz5C{b&Br<j2|Vq$
zC!D}D33M4N1`;@ZN=Wu$M)!1%H1$)M81#V@KWvsj^Z%u{NTB8a;E)frN}yxc4*VoK
zJwOb!P2kxC`Xtadfp!VBPoR4OJrd}^Yzd?$5J_NrZlF^Foqd4t9<}Im36G5lv$b6k
zya-b0vb{*mPmCszv(jVct_gHY;H!yVEqs2i8%ZNFCxyPv4Q$I6da~CE^iJS<R$%DF
za5~}H0d;Di=FrfjbwY+uuYp9G7@9Cv%uJwP0*|soEVh3F1E?{^ihK_D7eqe~vkhYU
zlmLMt2|S;`&;*7hu;yHZRr9Oi35-hMg#<<<@QqodRd!%x0-Xkh2;@!=jZR=p0%H^S
zw0e(XlS1PX82L@N)PA8)_M{PDu`Fa_0@(>nNnla}lYP2m`C;j5mH76;$!JajQxjOt
zO8xX{2`orpp%3RKke9&p1o9J@k-+Q(=J3hNd?u;GOcFP#!z@1}uxPA!BP%?YogE;|
zPhegGZ;u!DoJnQKUYtIa-T<LR2`o=wMFNWxAO`L%4=+hzX#xb6`5}Rc`60GyWdbiI
zFmtBY{#AZUhHa?KD5<tKfpvb0oxu78UP|Eg1h!Jv3W{z>;I#xcC3r7n=w&~AC4r3z
zyy|24>Xb0kx0ep@To4#MCA8-G*yaSbu-DJW_zb!zY$M;U5~Kv=1PXlm=FJaK?ZgvM
zsOJ+f5=fsMPEh~*z_h_3Mm2tA2+N)iF*Fm{(O<Cqu;WTW8Y?ood`Dj=0hdgez#9pC
zLSiNGW&&>|@O}ax_-)&fz&i=N>&xBS30%IJN+MpEBJ50H7g0LjQ(x~T5b7IXV!h13
zhM9rg3G7K=Zvr1B@UL3*Lo(jBqQCk%*N+SBqxh5w?@!?41gIV<<HhF0ejgkn0w-J$
z4kU0efg=fgoxo=ae9mkGLx&Rh!b7|8C7GWhzc)hu;Y0psBANei0@Qv~o=iMSZcN~K
z0^cQYEP-!{`PUw=b|ICL#qyKxrp~`0oJing0;kw(Noe1oO>lCU9ihmud1YQtJ)OWA
zR;1yOhO-HrOW-FJ=T-bjfQ+gli_rvrPN1=hr&RpH+DT;<rBqx@;8Fq)*m2@2fh#0d
z0yh%)HG$tq_XOI$FZ@nbpbAIxLM_LIwj@XP4->8?a4ms9iS|LlU;K~ni4tg<7iPF>
zm~b<JzZ1Bdz`X=+k%8Zc-KHK`BGlO}bQFa~vjcZ1p8aF*j}`x6e+LTpDG`rH2;BUp
zt2isr{9NQADMgj8qPU7eDw0&Nvqe;#87tnN5qQ0SsIZDp%eEp=R7Hc_Krxl)NrnFP
zBY))vnk^AZsOY=5b^Cb%IWNHcrB#$s>DvLdRg_gxPQ~LYs;DThqJoNI<HVZd#EL3T
zXND>>B`aLXho}6S(Kb28=#IEhRrM5$v`DC~qM8c+_@E*<B=Uq1WqJ)2d{xsA38Zc=
zR7b_)^w5(k>Zz#f!&PSnp74P(xq<qAX{2BSzwtwdgc_<IXEyRf7I<}OxQPluMVgA9
zDxOyHjEYVwI;%)l5l|6U(ON}Qwn0U66)jY}HQE~$u#glL%~a^)Jk}aLw`WTgAr*~p
zM9TaVVH^4-g^y*0TB#U6-2>XFblQpbD!$n#Ea?@YkUpzo-aern5k4feV_A6JpAo+5
zprWIn{$92~ZS$OpR25MbF%=ONAM6wONf(uuHukMmy8_{nMIsEls_5~*x7}29SG`|$
zk8iya_{o-jp<XI_t9YJusYv(B=U4qy^db5D4>SD4OcmSCd!J-3uFP-y6MKGx`{V=$
zsu2A=gH%rq4)Ni^e%Rt{`ITRKbq!N7T*YV=V^n-MB$T$l?FbbkRcsy<DmE=J$_HNX
zL#Bu`JQTT0g|RBeG5=4g<5jdACr<R?34YjVfWVYVetOzCF<ZqH6(6bCry@tiR28qQ
z*s5Zhid?eg^w35Xc`Bx>SfOI2ihLC_*g_TaRm@Z|OT}Cj<~VV-ia9FQj1!5a(c?s_
zK@MUGUwgABL!xVeibZ50AB_uD6xkI!G)`QiVyTMd<k-dGWvcf_E<Ijk$milX@y`vh
zl=0#!6)&oINyP>gt67DLbt=|V3hW|lRZJR^#`1qToK7v*ZM@jMY<SXmuMJNO54_9*
zRZtTy9xrw&mBum)#*442c+KzECKX%Agn421akHN?K0U;t;OZ%XZ7MIGhNHrzP^geq
zs46sHK;kMCANam<jKWfNk&saF&h)^l?0~MqARY4ri#W*-P##ScDHl?y6TUbi*eV83
zj-h*`(EjLl6>q56MM+fgCYfKw+bl%Ij{nJE!Nl;=jgPbZciEDOVLq&4r;7JfZvgpU
zO7j_^Kd%VCrH4LHv0KF+6$jHJA5x}vJ^s`B4xCf$Wy+z*(^Vo2_pA7rgnK-4QpG1!
zK5VCoBPtFs54Ec<e4*kqcCAW;dV9=#;q=zj&q<W6slAW({89zS^Ixerq=MRSlh&59
zc{C^RHHCVB@QsRNK5$gU-pL`Re5>L(IZee0KRq}-uxm!>(~}Xt`cKx#+ox1~PuW={
z{6MX!;w<Z;Am54X8ZVw1FH&or^HteBAO4XF@Sn)?52HU*`KuVAVWfr&RQ}XI8X9W2
zq~fxQ(i+NWxI&6k<!UIb;Wrh(tGK1&Hi^Dj_(R2?D*jS&)sJ3NQF(&MC)Ou)UBwNm
ztO?>x|5ewKLhN2@|M!K+1o3Yb6DNoS?x?t{;(^MaEbft+Cy1Zij@+kEl+65x0?6nD
zkrRPKO5caRhAgCcTG3N${1K#k`i)PpZuue_ifSmSq2BxeHAXQFB{UFAk7=In;!|7$
zQAB{scKzcK7E(&X(gqRXShuno%4vXx>Ke*xo>s4{;c>sB3K}YEsN};dKdQi2O)HkG
zqM^~;0P$Q^^DvMzCGhe_p&AS6*y`%b88tN2)bNCcCpFa4P+P<D{+{Bkqhb0Gq4-3R
ze~_ya#JU;?)L7fIo`!`vVLtUW?{`CB;AP?LtZ*X@jWu-A&{@M%8k%Tm${uMLk`)j%
zBy02@gQqn-qj}sL7%i|RTh$_sRZrH~P3r0t4b3#PVMQ96vm-@1w9wE}1LcuAJmjZb
zn;HmfXywDRevU8?IjXe=rW1HpLpu!}HBgHGnG|TRq1ez+2My<Tq<y=lEM>oz66LFp
z>qno{kg6eFLmv$h4P7+!((rnED5@dGucifhXsGZ@w5x{hKGL>L40Y3xxlUl>t%p$p
zX__bUJvGQVf$XK>uH*anCQ9?dY1sjWeKll|G#UnKU<ZlMObz`s`f&5cMg2AG9~UAZ
ztga~f6dX)MX&9t|Q)$js6XPm8&pi3UP;$sbk-+A)y@qKRu3_`n!uER^?TSak6U9*)
zUeK^n!>bxbYZ#*;U&9OyV>OJ^Fj+$u3!f-bLGc-{VS<K<8VJX1VUpj?>y08u3?W<d
zG)#_$sXj1;*x2Ibsk1UnVol?tfnlzOJRg|uhfJxP9hj+MmWEXtUeqvK!yFCEh<`Ua
zmz=D5zu<-Blk8C8oWL_*cbo60EYR?9N{Fu(X;`db3FR~=uwz+xsSiw_C=!8uyIjKx
z4LQR?E6GTYT5-%NUlOR_R%>|aW-3v-LBkpiYc;I%Q<%8k2RJZeT`!Tu{X$H9*~joJ
ze#ozg_SZCQBKb7DOMGhBqCwN3lL0im+2QeRM1lsQWh+_nec{|1LDIa5d0c}+a#K|Q
z3OrjV%y4MGP=Y;rJ$7P(2dkt-nHT}qVrZz`C1PtZ{dz4we1Bb2(%sSEYV?1CH#F?f
z@V3uFZ&EbA?)H|32A$K{?7f+x3%Mb(7NbmO%1(_gEby6z&o%7Q@V<tRH0;yxfri~0
zo_#Lzp@uyg9xN0J%@Y`oP0CFEHgzw%c000WqR4Q+1~Mw!_A%M)XgUW8pJ@2hZ`c9W
zn;SUj!$rD9s~_*jf#??+zNAiQ9Zgl+k{QUx1m2z~9wu^#1Op`ve68UqnOujc;~Ndf
zD404b>G)Q|aSeZIxUS(l4JS1Gtl<|8CpDbn2;Ub9miE2RNT<nfV?sapf_7}SaK=wO
zT)PMv?3{)l`N_GApER7;@YaA(*%^USV?$p}6bWC@a8bimioajrB@Mq);cL8d5mz*v
znGt4bJ@Z0~E(yOAZ;1Z%YU~dU#*{#8Mu0#4WsNfaB>6U{*C-pCdn=v5`HA8U4L3C;
z>AYJ3e`~m<;U5k6HQd&4$5+n8!(EEl!8FPU6&Hbfe)P#hsnn|vG!)W36-W4A^0~%a
zDuhRV7+Eb4rkY|2MRXL^QBp@K9mRBxMcbCp(KR#lnC__yKE-vUWQ6{M*V{!(>v(EF
zsGN@SI?DVnPgxxYr}gEx6hr1DP{DsSCeWv{&g<6^WFb1L=%}jWNgefcRMP<+b#&Ba
zy_3Z1IvP$AYwD=MXP!WoV91nOI%?~<-5`Tck=v1P*EKygJ=AlO_=Jw?abe|_HuZHh
z(9xK!(!nWALmiEDWDNFD&4K!&%>v;jIs_d}eQfMl7Jgbsvd&ut@r>@N1wQ0$rgyp)
zxpghVkuXzAU5hl+(OgG&9X)ik(9u#yCmo&rPeMA{=xD2>m5#8E)_x*2NlT-M+Se=a
zSsm?kbkvdUm)2fK2R{#ge|&rMa)cpCGpt*Ait}?iB09S0o@l4)*gQ8ddXo72^C5Cw
zR7Xt5NB1LLb-a@w?xuT-4~!C?ofAs)Db-6yZyh~#ZyLCNMxa5bNRO>Tx{kiYgAT4r
z_0jRcun+-$Lh;Ge(N9Nz9djlJ2Ixrij4+)A5@5<89fNhe&FXXvVVR_(jx}t&j$u0T
zb<EH)T*n9<lXYb27^!2Fj<Gt%ksopcFZkgY9iz!1y(<=ZAuT!~z~47tjn^^3uXmCT
z*7(Z&z(hau@f)eE{otrHObci0n4)8<j%jT9gg}n&X}`JaD-mX|bBPUG@CwwylJopL
z9QyL%+nG9M=~$>^5lQpDKpvjWKC;1+#JNmNi_X`%>gz=}OcEJx-W*%N9<}U6V6l!R
zI#v;%BZZ|bXP~f5$8sGTPYZ-s=v-$LSL%4v?YV!FxaVNc?<a|b+qlAuI=)=ffnTlF
zu}(*U4oSy)9WUv4O~)o38+5$P?&Jkt)$xkoosB-#C?k}V{H(GB_?Q22aD>2S^01E5
z$GSduQP`q`Va<-wtva@m5NkV>zn)qxC&aGFI^sGEwu(IVQU`@Z)S>FQbzWeUzXRe;
z)1m9$M26@hWyx}u4qL}tz7#k*Tz1EA&vuH;+`t<?GRc-iCdViLVU=XsK~dG({yM)a
z!*_M;)bYEHKXkmOW0#I&RIobUCxhuYKqa7Kw~jsJSRMOxun_*uKO|ZvhWGm6+SS5;
z^M(CXHCzv*@a6_SCi2IG2yC4m_*6%Uk0X5bnU2rdJRM)__<|kTm3Bx+&aA+fI=<4q
z;SCFC*9aW;({Hrt)1_pX+`>G3j`A;{<F`wd_~E-*q2oHf({WD6k2+51-bm?`j+<vw
z37jP1x<uO#4}GuW2UeuxjL!RFP<FD|^+>mC4P!SZi6k+j4eIszN$2zgSE$FP2Il04
zf7bDfjte?g6p1p*3BpAkmvmgFZka4H+GVo%upsr-jTtu%b>k<$`XByAZIBmW^s0_)
zI{wx1P{*G>SKOkm)A5(Dhp+3n!A4T~`?{2@(&td>e|mWMWbuxUySleNcAu&vD{zmz
zJwA=g;Qz1-14I0?Fp+N`kn1i81Rm)qWT2RV#|$JH-X}#2M28B6efY)gMM(6bhBwl?
zGFPDP-F71KLz9f+1};^O6rV3JEM=gyfmsG-8z^I-tbvXOIvFTupu7RW;Cdq}7^rBV
zj)A%cDjBG3pqc>~5dX@!IwAD9fhx>)Hu}m!p{juo`*@m)t6^6=MynghnH#QYpoW3F
zf2Z=9HCe1>ptj+6=V-(@8u@Bz_z43~8fajkp@9cw!l&v*`P4H|-vEK;TLn(d8X2hC
zB=VI1VPhX=bda3h#K23FMgA*?FBG0JknGpk!a%^sKvM%j18ijbhA|?iSbl)*Nikqg
z3p6t@e_PS!M9#E;Jy~pNAY`DGfv|x#2HFy<(*m4CFl=q$^Oa#T)w2fL8QvU+jcjkA
zg8^riH{jtKFT?+U&IX<{@VtSc22u?~4Ej9D7|6zuE(UrT=xrco;H$}E4>omHpsRsy
z2D<yr*gU`^G26q{e!faG(9_Su1yxExx`AUKx9w+O#S8uW80c#t!@$%U(M&%NC1UZk
zFy&=PUVs_;``HE<_+h2MD9aQL3^Fj-z!1Y5qA;bM9}*$M3=B6g$-ra-BMgi*FqRb0
z5=R+uX9h;I%l#uSF#V}0qrXfR=T0d*#=yPFV&MT1W*cW<ynzV@vY(GkG;sU%^an!5
z#m{0bv&8xhB3TA<4dn5yfhlY%+e{u?DSTEll9nY-GcelEwxM+|M%#WBoo--;kBxkT
zK0Sox+tV4&Bvu<n8aIqEoMT|FfsYM*VqhMLXh1R`8(3gqp@EeKRuS#1g+;`G-_ykg
zmKa#Jsq0b$%MEY5w9L=IJWTv=_{3Qxaq^;p)dpTMu+jf;je$9#?(2PcEqOjCu+G4a
zPNAKX11}laV1U5Oe)`hd6$mrKtHhOoZ3YSqZ1P`iG4Q$%Y-T%i!_2eQkN)=|qx_Jy
zGjTzdNFdJ5UjuKkA_EBnDoH@O%MNG;bOR@!tl+Rc23nj<oj)~X`G9F)bC&pamdK)P
z1Mkg>u~_~nse88@c*FmkOYzf7hTk+Wb4gnQZyR{Wz+M9%`AB}(z%B#tlh4<8*lFO4
zEb%?E#G`(hSEH1y4=9`5&oZ!^47^1+pXG@gS5rSUz+pUJ+4&yx?_&uYqx=1k`=n%*
zPYoO((;E2Jz(E6_8Qx;T5!T`Zgufu+@&YIB^y3iaOA3X7Lk8C61{mdY*w03QIlng0
zV@21a2EJh%E~GBMna)xAaRc8OIB(!*11E?a17{7Kqtfs@b=trg1K%6qiZ@y42S2f=
z6wBY6(fvekj?;d~3QYJdy+pS7qk*4D%{*U((?cm!!oL`}VBjM4q~C@pLdCNKCu>G8
z8@R%D=7i=w){%Q0zw)beZ^-wX;jP24oqHyPt{S+;0=MJ*cKpfO8MX1Jjq3((P)saL
zv~bhF-{cb$1txA$WY{|sX(sMaPf{70sAuAyfq$r+O_VWlpNi2y5fepC{A=JLWw}-?
z$;2aezgn#Q);5Jq)W05iGFvP;FU$dqEcY$Uw+p&nDIO_i;xQ8?O?*)*QryI|+2V7Z
zV<k*XZX7NDbgXhxxNo*NDO)UMV%=jMQa(s8YoeS9n5b@|ya{Uc$|fE+QNct-6E9_p
z7oLtWv6BBPsdH@OdmXBnsA{5`3BvO$M&3KskINu>saV;=ks2myny6!<u8CSEYMVHH
zC-rEy_|waebH(q?Z1LIF(WjQjo-na5ArL6oDhxjvsc)iziLi;*CK{S(WFo~xGZT$X
zJY^!;M8HH76JPF&K5gR0ThTI^0l|-!?3s4%yzq>P8d(B?8`)y<DPmI-K@-<o#cmY}
zx2h2-bTOkjTQym@_+xrY6D@pr^!T(TS}Zan93rl6rnWNi`JWNHd#sI#wkA?dM2I>Q
z$NGiZo9JMoorx;fqwFBVjwU*p7_vlo&cxbdJ=<!+*eyb56MMrk0>{cn`KpVF7i&gh
zCc2u45>fjEKBq;Y@%7YhCiWNZ(A`9(g@Jc0VbHwryIa$Hn&@RB&%|^Sy-lQ>7-?dZ
zi9RO!5(8aBLri3t$TTs~glM9liT);D%MbruKRUp~?ZO=<wT-^_RD{6xy%A$cY><gh
z2gEo%9Bkr3o<J#M;`1hkvgM02hnW~*BKusF@Ng4PP7w**-H`E$6@9_PXcJj{YhsLv
zu_h*&&|5?ja>h6l<4sI3X{?@+Iz=2jMVx5j`DvN2Oc7`J(Z8OFP9{!r1p-q{<d~Rd
z!k!{dC9}=$+9MR17m5%#F)@^D;_Ac@U)2pq@=eSzvBJbk6EjWBGO^IaA``Ps>}uDm
z!pzEZP0TUDm6Lr_#L+V|=9!pp;^Y)@fr*c^0`7(k!oRN-7MoaN;?K3QWhTwq!%I#4
zHbZzaN4%XY{4+&d-zvJ?1jDAyqpL_A62-);M9$#AYNnIbO{`(#O}yP8y3Pd0vDBh`
z+c`(vV4{6a-<M4kt`^(aA=0N-|1Q@fuaF9xV+39^v57TOK(YkxP@mnCw%NoM;wn%0
zJ}aDfE;9N^q;_g#tBLcekr9ttNhV|#Wub_LxCzC?VG~D)RTHX-4@~Sfp%LdMwwrjv
zgh5GsJ8GJ+d?2zQ(<Wx}Lyig8#GW3J;(PmwvwOaEJC$>1ZU?++;w=;Jn0VL34tB?+
z>*?^k0iku>BVvv?HAn1rB(jqvZV=;td6$Xz$l<CtguA5)?-L<!W^gg&Oj3tECO)KG
zP?M0iO?+hH6EYPgmkexT+1#Fk`bI|GiGEC7F(mfH((rSa1xB}(iybg=kOUnh49|#+
zxtIDG<#DI*Vvaa-qVOdpJvs9$>Zp4W0&0#}zfAOyiI%|*8M~ujn>cFXl8MVE4H9sS
z+QY;d6W^LRZsG)qZlX)c@OKQe0>kEn|H$`7N~cVGZ{i1jdpC9Af<TWc;p3CT_ZEe-
zCVAE@XURFlJdr?#>>J|JZtHHbAIX^s;U|jH=rjVqm?$zUe8I#;;y*|Hrev6_aNMta
zCoe|eiiuw-VpP}UC=<Vv$4vZX;tvzUR>!WIxW<O%h=gm-i2cz!lzT36BS*YWO=a@-
zEBtMuO>*SI7U83d(W}X^W9?$M$ZRu&X!lszsp70T;k#7+)bl1DnzTSePXEw-6A#E#
zIhnzQfgV-*fBs4bTE8@zAAV$_kcA}6(=FV6t~oPY>ymJ#XoqYqcD+ojsD)w{T3HBN
zc+5g^3r|>h(n1LfB`s97P|ZRq3#Bbov{1=H84G1Cl(SIY!o?|}T}3m0?;EPNLh#n5
zE!3YXo_Qr!?lplsfR!y??SU#5mcP;Wn~fc|)z7GRC{pEGlyfe!H!O6RD%P-2(*oC2
zt6OL`JIsZ$S{7<ssAHk71@X169nYqJEyf1UjB!7D$LZ*Vi_!QCLOoVw;Ta3b78+P+
zXd&`Xq=|(_78+Z4iqRQi@pfd)RFS{(&~R_;F@LHkSa{mPwi1!jcgtUVwdc&jv4Dl9
ztk*(w3%|c4kP5{#A!s3meVh?k`)-V33kxkRge+{DDt0W|f!dPF^ScotjtS593ADD*
z#zMM<J{H<qc-BJ9LRSmzEVQ@qoP|_&(?UlJo&82mDivOLFWSe>=w#uGk)hdtW>EY&
z*N#}&I;#RVv!WKdSl&|4s>=dJ<ISleSGu}c=x(8>g<ckVu<(yE(nzn`vHpKYxTR8|
zd}gd>g~Jv5+=)hdQ#t$@?OrBad1cqW7BVahwJ^*=riFeM23Z(vp}&Oz76uZ%7QUS-
zW^74cJ|Rrt`{BaGIe{t-GkX^6Fod`&QoK)Y_<2(QOtkTe@H-_URdd3_EsU@*#==+&
zBU#|D!V4BgTNq_wZSN45Izv*dZhGkNJ`simXH&WTH;!%IDvY<hf!_}af$*QBLz65_
zCZ26Hvyo*X+rlw6#=;Z}ITi{mNEW7Am}X(Ag=H3UE#z64XJNjD=@#;dA`7#ap-*Vb
z#LA8SZ8d{DxxekM#*x_;<}l9?p?smpr`aKzCh~VSmn0B{UnU9*EG#5(cSn~{BAUdG
z?vF0Au$bkKjQu)Q48JOTusgaZS9l^Xu-w853mYuFY+<E^RTkE;j}#&ctI4zz0w;39
zYxks=7!u-R>TTCqSa0Da3$NvcDU1zAm7Q`h^5K~Nj2<5qdd0#<3!5!$vG6MM5Mv7h
zo7kg!sbepA&y8QAxm+<D5_&C^`8t__jA|h;p)a?O(-wBUTs^k&@jjF(ne?@=+rl0T
ziiL!Q?H1m!pjyx@*cKcMx`jizA;W@6%!eXh9_x2&dT2?<h-HC0cbvkI`8Sm4!zHE?
z(?pjI%NNGa65h1%mW7=b-m|d7!rK<!vG6YYzA{{|daQhoP-|`Gg89PAhCP0q6YJI_
zvWpz@lJLHT52y#S1I-Qy{~E&OnPGDE>qA2yTG(shb27Pwk1Xu7@Tr9Z7HYlLb-#s=
zEqp>kOb=5X1y**Y%B^7w9BLk<&MDgAw_xNm@@Kcq<Z0ryA(1aiN58c2m4zb~zNQG!
zE{KBGI(nEWnirsrLDAJ=Mmgg?YT+Bo<M;q4@|@ECx=|o0k6ZZ8LQxyVY@D!gl9F!W
z4-2O(d~e}r3%^+S!NO?^=Pdka;l}TebF6;G!dY_cqv*3YQ_E(DdQ204BF<;EJx?Up
ziQHQ!^qV7Gx#Z39FR=R-u2}fh!X*orsZSOJPGv?acZyxL(rE(sb@kZltnhDCAj`vr
z2ZwTV12mAhYT=rNI~ML*_|w8)9PL~9n=MHQ*VzWPd5}Puo#HeqWwLO~!flHDtHSAr
z(Z~o-yAC=ioOwmKN2$pT+_&(6>~|>RAL4v{hpYv{zZM=^C}bna#v=>dbl@&$+SE|T
zhp9c*$D(H6!Zz2mV?}IyFNSD^b!2mlzq!Y36t_{!Mr|7<Y?QQ7(MBa3rEHY8LD48{
zV|B?0*Kh007s}XZyEIIlT+T*$+na`8*%Yl{dnTPunY5A9#L6~JBjAh>s@tey<Mf1B
zH5;%|)rYA%27VZMt5o<>gXp<MUQh3ep&B-7+91F&3Bx)zJs06A8%=CHVdF^~^=&k;
zQP1`!iNp*Q@`oe6MazaZ8rf)UWA-$W)ZyD6eIne~-aJ?Myh22<@wAPgjpd8N&)7(|
zv1m}arZxgLzE~_Q8XlrO^DEOt{xzbfqI*V#n2k$k&26->vEIf@Hd@*U*?7UmXdA6;
zgl+V)(c4CA8*OZKw(*<|&XU^Nc-BTcMuX9UbJ6xTI@st)R1-h-qgiA7{(Lp{BRPYQ
zJ55Zl82NB#-&7kB8{KSlx6#E$)aF7rP9F{*nkJIfZ%q@Qsn@@&kH$K=V#DXsd)OFs
zJep>srw^QO+=t5@>V&}2v3;+XiKN@;!*m;iZS=K~K}6Y@_Eap>Mn4<<iMmm-VXwuK
zrv@s=)46QeDpy>U8XIUs^s}Y6>%}Q^xOr@djpuEQv~hJ;Y^aT4Hip|6VPkQv$hmoe
z=W0dz<ce?f%v>@tlPTZ6oj&G;*eDx^P6`L+31e)GB_V9gu`$lZcpFn}<k*;CW1@}8
zWXMaxBr?_cXqpz?cR8JOd~#qU%SJZwe6;5mbz*PsiSEj3I+abbG2KSKjoe%@*G8W0
z4HaI@75BA>J}(Lj)#wZxGi{uEEH=wVB3GnE<?;8U`y0fZoiR$;TpRO9bQ>#d%(t<C
zsGbpCVq@t3=tA-UyJO?4?R|HxjqT1A&)$ggcTaoEr8bt?=<#VfGk=?z`Oz9-rHxhO
zd>d<6TJ6~Wfe}70+88ymZ=p&t3gcQE<(9|R**IJ*CSUKz3H7mDaf6MQZS1%4v5i-3
zY_wt7ux-3*<281~M%>0G8=Gxxv+?j+bPHuI7Te17M_pbgtDjB%GgoBF8y5wp6xfh#
z?5i1FbSt%7Zs@yrqYArhBQsAl$eG_nR2!NN-Nv<xQAUgBiS_fuXY<6BP5XSZJHxbb
z;BZd@jt$qw`xIvz+ikpI;~g9C+IZ8(TQ+vsc$*raamJK9@llaJ!}2oCEzwbCbXVET
zkFN+jZM<h=7d!r5&%5g~Cok-}B2V1%RP@~5p7q@5ZX0`Sd}w1Y+t4ib-n>A5(LUuX
zWqxGiGc(q`YX5zd1ySI{e{bVHjDBL{Q|ccZKd@~!4%#?s;~QqS@i{SR;|Rsm#+RfK
zS<8l+C$1hD%Xl~Td7ilIPPB3RUgzpXetWsYYmdb^n*Ey19w}TJly<ybuVXg8B{C-m
zPS`k3Hl7*&F;D!C6s+50P*#Y7Sz%N3q>WR==NrQQc#KQy3{TrQW8;#I%QnuEscf9L
z@iU_p(|)w^6Gb>n_-A(CUjKGUFCG1t1->BsV&kIi83lEjAGkn9z1(k6K^sQ1UhZ(k
z#;-PhxABLK-zcqlo|RPX>7pct+Fue5yb&!tx$jl#r9`yiluVkX{l&!}^0|vV7dLF&
zBpw`m?%;15x7Y;-qa56}amU6p4w4<*wQ-NS)Il`||Jb-s)$O2!g9kSLwNb=DQ3nqx
zYc>iwNOG`dZ)9AN*o%YHT1^+*t&GtSsIY^xLt|8xpS|3b3*#Sr5-sN7F$eQALhI{B
zGpBpI+a(>8a!}DhB?qM)lyOkbL3sz<Sm9s0tb>|&Q@5?`%}ML9FS>QA8>`@W6WB+G
zyG@!dK6kM%t%)i-c-%qkUC*MGL$WFknqTRC^{Z4ksP3SigZd6?upEc?c%rU@4^Q;2
z<)F6X&1mW`?#fXXw<;D*7oTvjWO>=52tDcGx9`$h4@t|JoYtjkxdsjzI%w?RDF+|z
z>iOZ+z@o#^Mh=YWV(yV>69<BWrycB{F0#uNh6FN)g}#5)8ylp29t}8X>Y$5*sDq$`
z6bG#xv~kdkjdak`LCC@B>EZ;=0vz0&E|O1JLgQ?qm4mS3?G-LPCbYlYk4U)lQAS$_
z&pPPfpreE1<74d{w0C$GSg4vWHVSoLGb+@oTeOpd&JLb)kjl4@Qp=o5?=n+pNAr>q
z0<C|yT#iN@^m{Yf_gH$&L07^K`a9_6pu2-~2Ynp$aFFJpmxJC8p2-)<`8|Dr^OrqC
zB2yJ_3?IuEIdt#qAj3hXgZzJ^58qGM4@G|;pQcVp+j=L$lmQL~IvDI=h=Um=qoRXB
z4%EUi!ryg{+|Liy+0(aiquBEfhB+ASVB+-HP<HUS$k2Roe!e(@XwT`(zxF>rWHg+c
z`GSMd4mLV?)xj7CV;#(OFwem_@`HnE4ssn#U?C2&9ZYdBiTwF#bh3ji2S06%Rah*%
zoe?{KQFz!gjSFHq4yKZDN22Rq6sAlKaMAUxQsEO9qj}`Uv7s3bW;&S8ezC#%;`&#+
z_Lwc~t5ji@<E^F4b})yWza;ieM&QGIv1jeriF|R&x~}sbEO4;O!HW(SI#}djse@$>
z7W)nOD_>mV;Da4et~D+DF}2#_*m4J_hD6r&7m`{<RybJc;H~``Z>-7046$lLSWSU)
z@REZK4%RwY=fM3kz33+4$@{769h?{yqqXzT8#3C@5V^MVGD)_-?JJIV5`lvahMY3I
z=3tY9?GD~>u-U;D2XP0AgV)J{;{%cd*}+x^+t}vp0L>jaB`lz%%o7OEHuA`n7{h;s
zNP<XkU^=kKu6+ZV1Kq*<!(u~ch<%oZ`4|rNlnrxk%h_U|A~D;6!`3?B+<)5)@xkWU
zq8TFLH`zf4yZEhx9S+`hu+zbN4&EW}6^qs_+2LIWe`fdPK(XS{=*o`i9F`N?mEWp-
z{j%_ZgWVJ{2OqO8im-#d6h_C}l^#(u)}UyI4TWOmzewX=`OX>QKF2d)t~RLECk{S!
zaKOPqhwIhCuHoLwQokcTH=a-bVq5gDf+)i;9DM1Zi3`ESR}Kz2xK9=5;IM-u4t{ZP
z!NJ!Kj*?gozIX7AgJT5BM~<`E+haTp@h!DV$quW!Mn6sI^Bqa!;3V_U5VuW8yFI7p
z-5FxFnc@!=a|b_?6C9kOR-{s0E}Zj2;*C%8OffAd#>DgFv9!p~BxQDp8>YXF2^ni*
zv!(?uI=DoXI=JEBvV$uQes}N(S>2BPN_|D8dQsS2Ayb{*mJ4V{XSKcR;F^QK9N2>^
zOn5%_@X6Sp4u*ad<+G`4CMT^&hlOrZ`8&8nRZmQkJx)fVGsW9fjKe$=7fwbFH0^PZ
z%Ib$yE+GHI_RsCRvwR=g9Il)h`<Eg>1?!@Qi$@L$xhUhJtcxTUg<X_zQPM>b7e!q>
z=AyWZVlHS4aim0S>ZlO+2)J2L-4qU1EY~qBws37mDHrV?^egRxoA`mR1?QLOiO<u|
zACH!EQQpPlE~>bw;G!a{8yTwXV%SWP0^5I$P|3wh54!Or(a_@pS0}16^UoR8T)_2s
zp!|Wz?UFI^+w?yDV*AfTYr3fA;%2Kp4PDfBQOCuTF6z15YZf>otLyUEg}~X$6Kr!{
zfIxkh>m=f!JCO#iXHU4lQ>;XdSi9Dl`l<9r%<SSRHtcAI-YJ$pCD!(|@U)9(T=aF3
z;Ud{ZfF--=<f5sIAlu_2%yJS!ii_qhTCju_;bty+^=w*aanI%(`nGh@<9KR_Z#VSi
zStm}KxHr_=MH?6GiP9mVwl1C}qFgZj%4VTS_t<0}A1K;^Go1_51DB=*I=J9;o->Qi
zE}nDIodvqc{xp{ABI;uFj8Mcy7e9qYI~>09Rm|nhQ|RVmLuqd{qwUA(96Xr2(pFs&
z(%3c^y<N{1x~Cs<T)k{kINe1bRy40GVQNd}9CNT|ri*?q#=02iqQ8p)E{2j!E(W>~
zT?}#Yyo*6D2D@0*EixjfGN;wUL(z*XV_X>LV(i~PN6Y`}o&Vw=e7K7dE=IDDDS;Vh
zBBNZqz{a~6<3hg`t)Aca^_gP+o5KC)V;u9$ej>JfVCcz>!gv>1?3#-SB<`&6L>H4>
zO!nEJ^L~MQ**vkuzsVGrH=B2uM$TLv&T%o-#od7+c7zKBw5Q_SmgE2FF7ip8?RaWC
zW{?M{8C)E4G0Vkl7mAC7i#aalx>)UEjf;6M=DS!y&My?^%D@5_i(M>nv5@IKqkI<m
z0JZK?*ISn1Bz-ws`*CEM3yR^pYTG{LV@%{hu$9D*ix*vRdcr7ohq;5W*2Ov(uesRd
zVm%q&#VbTn_2{ly;h(a@8(h5XqT$H?1;sN{llt@c)kYVulD&5e*NSy~@LQBQH@n#4
zLUJLyIQ_h5Ay#fd_;nXs$!t$Y2yb)2uz<B}76>F$JN5VS#L31p0|ZnTnu`xy>?Rdl
z7%sNEc*BM1!gApfz9<~-llksU(RSgu$f*?zj}09t6XOmnl?mUz>EbOH?-2hkcDUd$
ziDs^E6MJI>!u;<ry3<eJ<>Gx8?~#R83w(G!w92Dai%l=v(5%coE<SYexr^m@Q}?>~
z$i=5F4!Cp_hNCmZ{VqNxZiNV?;1eS1g20DM1Y9}H-yA#WBla^g_LxxT*Sw>STmvD@
zAI%pozI0JKBhuiP$kO}ihg}?Tam~e_F1}{TE`D_JlZ!$nqu;nV;o_u=V=lgRaoojs
z6o-!^-0$Yv#j7LJzH|g;JLTeg7iX!FN=JSm+FhJ+G4VmGBDT=GO`pGJidE+Ke5Q1S
z2tP-W$@X^Z7H0(xUKGx|xa{JJi=SQm;^Kmfi&PzhV!waW?-F~ICHy`)R&kbi=~_RA
z9m+<3b@984KYZH#Mv-69mFp*0shY9^w6eD9lpj|%!ms{vah)C9jxyVEgKE&lzb+oS
z_}j%T7x!HJ<Kni9X<uaAp-`~KA0s@KV?Eucpk$w-)nnY2<w4i`E*`jOGD}={IZ`((
zl$H~!a!`0gv}{MQ?RacElD5-fEQ)MLQ9d;yTt1~nI`e-#T?x2M<^Lbq_nnWOlrneB
zl^8ddd(j;;mTSA#W6M&KUG{yycA}I*qNwPsbJiK8NQ)(s7X2b+ZIh*t_<zpp@qeE4
ze4p?6o_G1a-|ao;-A?)5oTFSgBfk22&hS($Rwq_e=C27+T*kxO;#^o&LPq~d{)p2<
zbMwko=}Ek_j50E6$fzl!tc-FpD$A%Mqr8j?GAhcb#D-+VI8S#z5<Rin-{!o2Uu-|u
zCY^{bdbLtj8IVy;Mx8G^@GGNn_h@w)-(QY$ZivBi%QKN$GHT1HM+TUN_@~`E&&jJR
z<AxOd=t_(O$dp)p8IQ<lAp5&NiVhAwD&w`!Vq?$wVT${INvwJy*ic4L#v~b&Wu(an
z$>=Jhn~X*>!ZQCoji`)t8I5H;C8LFmCuB5{(M(1}#*;Fd%Kid24t8;@kA}(-Y~syj
zKlEkD{yrBHx#^M!V{fL6mSjdoTN$lnWXZ^u(VB&i$#{B(G+>6LC-XYhiysq3wYd~z
z7s*Kte&#$a`@<Ui%4jDeCZm%K&ZBX$UtC59O7f#vd)Z&s$m`mMAa6SgB3~nOWpoy7
zbdgbiS&-uu`7eekneH<3WDJ!tOhykGJ!SNx24(b;F}KZ=ePr~N(OdRM4jJdUwUg6Z
zY!R2<Nfgu!iNmS`Wd46PFi6HTGMcZ<7$}3YW<&<d2(*lHczlSA#HjG?mx3HC<M8IQ
zGM<z1f{c+ehRfh<=kqc~$l#_7&Z+JDBE}ImzT*)YC1c3i_!t>uWsH_#tn?>n7<I?V
z7%$^R85612Hc?LPO`swgXSa%UBz%2FCRZ#R`@A_nW2eZND&t)l?=k+%m@Z?TjF)B1
zkTFxnVj1}|X33Z>W1fupGFH!!=CI*Z&7Zw8XM`DQ_~u5%Es(KL#v*F%sTh|lumj@C
zgi||WU24ZUX1GMgQW>k5UB)sQ%Vn&Pu~PO&%WG7Pvy-YfGrr<@FZS$@pN$?o>I;93
zjF)7rr7l+Y_;GXa<drCgw)jOxn|Xy9Wo)6MWxPs5m9dc$ma#!*PaS?;#v8QKAEPH9
zi*n$Xoz%GtIsA^J&^F8HvNZT6J-4BM>H?$U%%#DtGPcQhTgE$V@2JSTGo*QHoMYYF
zW$cjsoes$f85{&Y{d;WG;SPlF%h)O7QyHJh*d^lw8J>)!3|WRE!<1pkP-SRT2h}P=
zCqKO+oVKQoHC&&aUOeMHIoM=agje+`zJb{?92u^Rt%b8Wcg$Df!#BDO{I46k%an}W
zGCq>=v5Y-3_R9EB#y(o<x!@0dA{>>iHzUlMzDncbm-|I|e!_kk2V}5+|Ab{u^Vi9A
zpB3h;<v~F_IYVOa|GCUzI(#GJTN#IB9F}pM)+^(PjH65@<CyHv-+lXN{HY5$S7%5x
zW=<V)potF4PQUU@>4c208TtYlTm*8GG9T=JPZg^f{f-f)YPnPNIJ({s!S7|<8XaU9
z{2!eq>CYUUmhq#E(+_2Hr#~Sn!AU*O%J`Y#Q9}t0zsNWz;~xb#75|;~Jbhn5mVyg1
zF3Pwh<1z!Uf})D=ZokU-n~CX7GJcow2N(Y^+RL~m;|k-_Yn3RFzvx821Q(AA^Oyzh
zS-#E&-YR`V#=z~q(Q*Y5d7xe0B&#y+(H|AumhrF5f0z5GQgDpoj*S246a&gIz3=bi
z!(5QYp_q}I3KdXzq9ZQ;Ua7F+cU1)y+!+@xByhf!@#qXLUEsxClf@JiSMZ2}M-`M%
zP*On^1yvQ4Qczk!IR)hvlu<-4HYHqE@!w3?qfr8s`8WSns30C)sa>|Bf=Y^i76%tc
zRaX3_@gieTP)$J{1$7lvS5QMiZN)!%qo!bn>4}q*T0(9_crXG-mg*_~5eg40sIU0j
zm$)UIyT3VR%hi>8W`!FlcuYYP1y3q?TtPzxjTD3x1Qnb-UxD&ZQ?PSxm@N&7V)>0j
zB3EanD`>3X2?ZmL<gmYE6+HceV_e)M-c&&|1y3nxp&&vPD^O>LGZcTCgZ1)5fUGiv
zQka<vs4q6HrGhupo+M70kn?N>t=TjMZzyP^psj*&3dSpVT0xG2!3u^bh$?8OpsRvz
z3StW43OXq0sNnfW<1^>QXQX276|5W?=7!2n3UU>6R?tPkk=g!KJ_9n{r}X<l;u$j~
zZXWNhAWuPW1>CvZLqSgk%R9$=QG-s8`C4qqOet$u&@L07Ia5l09_&NO&kgofAPJ<O
zfc*s=AmBg&2MNfO&yd?8eoPyxV3>m8WRlIvh(62e6l|I4&!SQ?ltcd^kr4`BP%v7-
z7zI}k#fEQ<^U+AfKh|KB0=(0aoen#}mGyd$6(&UaQ_B++yr^*50G2A4s9=(USqf$=
zn5<xmg6RroD0uth;8Y52Zg`p~jau6?Q~G+QwB~$lCYAnQ1#bB#{zIO>WqXc-`3e?L
zK?>&42&cujY>gKv6JNhQwvei1nbX7h3f3HoE>`?8b_OWod>bKs(uUwNVUsT@SW8JN
zSV3JVSjF@TxIT*h)#kPK6v%2JqK_xUU%wK2dtq>$f|sd<;@Ph;+4%4)3SOlFTne6^
z7+z1gO$l#&ELuPb?vF=#e!>O?{d-3^4z^LjCIz1;IH+JV4M~Bn@b?zjqVVTycvr!D
z3brapuix|cnbLLz+b9YJ&Li#KQShxAD>O917b@QJlWGS&bW)_qEa`okJsn5EU&DjD
z=)Xrg*PA7MAdu3BJN&&W%v*(q&3fl&XbSr7kB)8Qud*9y#uExm1t|r)so&ypOM%Vm
z=(*h@yq#M(+g0ExNGe$PdMq?K@>Y%b$i{JHN^JaV!95E0D)?BzeoB?5zB9N_;VGT|
z1~Ce)<c_@bj4p3Y?a4{E=IevpiNG=sDBvmxzNmky;4=kh6#S&%a|K^0_?lj<;E;mD
z3XUl_u7FD;7}Ad@I7*wGCH0>reaSQx;&pd+n>I`OO2LL%()53FPAK@VM)yy~<Z_(=
zUGf_WO2H`wKPWgcH~1YTJWKkX7BVmVb7r*Thragzr{G5grxgrp9^d(cPa(83yPvJs
zos_c*epc|if<F}eqTn1Os)9=j&a=IBV;2~FY6iZXC3)?-UCWDduKcosUlshO;F%h+
zr>e!(-f_a?4LV(%CB5@O>`w((6#g9yH>e<*P>sM<1=keRE1AI&4=zzSIWc2E;W+2r
z_~9_PY?KrCe=GhZ8pi={G59O!p`xdXf2p8{1L-OntGL4^E4a&K46`b#s|ctlprVwD
z(kdQOQBXw@6-8D43#rhTHOduIQCP)0=X1DQhw+)(DW;;hiV`YHs{ZTleaC#SdxXK0
z!;Cj3`kU9vs3@zVvWhAy%Bd)?qJoNws{caH1D6;f8J8-l7<?$oWt@B)Kba9{T&>Ew
zX2qfUpZ2_Ef5B+LI9x+TO%;!-XrQ8&irOmbsd$+9j12B#AXjx%)K&e(2EDchIaEj=
zXRi7x9#PTimcO-@r7`S0rs8oGX(~c08mdq$m*W6(kYc%*!%ncoY>BIp8>tAZ$WYMh
zu}*%#5e;OlenLeP@~@(;iYHYxRgtNpB@2`y%~bHsFrwm%@e$rOXLdpVvu@d^1kyr4
zKH^k3*F0aJ5NV|%OGQraNWIxowu(YagXMZfTC>2}5|O9*NJR$~9aaC`AgcO3a$H3_
z6~A_kk`hz>olr#DtNfWob7fscCg`LhS4DRfc`7=q{vlo61SHZ$#gSV%T}3$!{>veS
zuMqEL#yKZac3h033cXbHR^h7fs8bbvRV-1lRE4CXpNjD+CaCDIVt|V0Rg6$EP{kk>
zLsSf9`kv8es7e*n>coh@+%x*^g<!F{;bAJCRq>pP;WVm7(ZJB)z6(KlPxPnd!TQ5{
z|2;fDzIpc-RE$*d?zs3^6{A#)R&i@?#uzsLPK+OhTIKj3i-V*vgmNBg9Gf;<8ZldX
zQN=_RGgZt|F-i50@S4n)lBJFD(QV^XRW48oPFFF5ED3z<t{^E~UqthpS2504&5b9z
z%~r8M#X=QxR2(lFoy*(VQdVAc9xb2R$&2#ZK3iI(VzG)wW-y<!U7RtzU%brHj7II^
zr2L&3U#4QYift<1R<T0GN)@lFcumDB6{}UORk2RRp4rkG6)#b|p9DJ^F>dJKx^ZrJ
z`Q>2nWoksldX?{c@fy$OCSL74^I+$bvnBQ{8&tfmVv~x^D&E}N`3==SLS!SWSe#LO
zcKbd(<Gg)S#TFG?RlM+JueVgN%N|;-Q>i&p*?IA+v!#h${UdbVQL$ZxLTgvCgQ8Zk
zQ^hVK7lWY-!S__W&+@<T!85_i7Kq>69b4Ne_5r!=7?)Lin#?_QIOFj-5^psXx(ZW;
zMQ5CrXHc*zIGVR$a9*G0-HALsN3vC1`6YO+W6Tjq|2Yx|_J=f#Csm|W{H$^<D0WjI
z6gUlA#a<O3s`#9aqhg<mk5n8`@d=5^ZXc`IPX=b?aXBUTVNIPQ5kE*H8JYK~iqBNM
zm+baJ-=1E9?uV+x|GO0Xx@7#2io+^60`MiH)9Kg|6-QO%-;90yN|3i}=13cx#nX(u
zW6V28vW5mvsQ6mN4=Vnr;v{Xaa?kHne6M0$qxd&8DuJ~BH;1=$u2ZUiV#d6C&2OIz
z`dv2HhpRY4sgCkb0y$02=Sa^?$oNU+Ik7nTRP@!F-Ff`W<NphuQ*oY7s^T9N7gStS
z@t2CLDlVzGtm1d7o=#06l!);9jm*rECjT!+oW=6v@lO>_t=JVBl@_maFm|z(Kd^93
z#dWf`yl3u$_8TJ6NTqo1O7R;iZqJc0SGq|jQgM%gUBhh#f7L%;=|56_&S^eZx}$=7
z%wN11B$K4y6;IdH=w3j>LmCQeD57Ecy;wmF+g^zm5;#xWm^vzB38F<cTzEHF{q<Ne
z4Y4J`y(4<}o-3_C*tw*JQW^{$2_2<1l+o~mhW}|OtD&5R@fs#*D6gS{hBg}7YN)88
zl7@yFf*LAosG^~chPoQ6YJdiQuGZF2O+$4JH8s@IP($-y3%OvM2cg97H7CxmiIH<9
zMz8`y;vAmk_SkwF9@g-PhDSC2?$AG7>iXemea+u1#4(cwn!h~kF%6Gv;L;kd93C?;
z;z*J8Q~kk{Gz}pQPibhOp^=8Lh9@;N)sRlEl=u^xzqz2X2A*_8rQF?-*+lb)6S)nu
zVX0^{4H34kc|1cya}BSp>cLHC&96iUpU>Gp*58HA;B)YUV5Wwa8d_<%aU+N8)w49@
z9ExSL%t^to?Ys%2BYUgITWh#9BS^~Ae5#?JhW;9&8ro^-p`j;bt|6|WlZIRk?OD{6
zNCyoaHGg8Ac>2T$4|Y=~MJ8T|c4m7i2Mygd{MIAdl}ru}Hyan>gg#gQa=@IkB!$Mt
z^EC9mnN#bNXfF-DHNUUvtD%qPFE%@LA%~-{M1C6)zx-HCqACYR0>dH$Gz`@6oQB~V
z25ERk!%z*wG@R)c9jsx9=D#dmXxELmZF)vIdh@L2&wwnND~-(eCpWp4?0F3%G>p<P
zntJaRc|pTS4L7xlJg|ZxddK06_O0S$G>p|SPQ$e|Jx<(-y|N(Aev|XRW5)&gx&5Ms
zi5hljcvr(D4U;vj(y&^?6b(}~%p(sPrfHb2VWx&zw8qT%3=JPOjqY31h4cGXkH~Bd
zb2Q9lEgwa9%#~<zEq}=AKRu7@>YERZEYPq}!%_{)G;m$SA`Oc*<ZJj?%H|;C5)Ir<
z&vzJSK<<IL68rS!Or~KaMK?aY>EGCtB2ljM;hI>!nXLUex<<oG8eZ4%hK98o)@fL;
zflGt9ApDb!@s~BcLK%J+eDs+JH-qq7{#9C$hJ6QOpB#&A(7?%^ap!ySD`umHO&Ye+
zF*R(~@TP_>8s4ImevI)egHBQNKxeM6<`ULFipDN23BIl29Sz$x|1i%Lf5bRN^{SUk
zQ{fWp_QN9YX?UM9VWTwc)UZo~t-;aofd*NFra{-BXi$X*WyNBnmuLLat0!0W|1?)J
zG$b@w8lFhyE`2}#(W>~mRLrDzFAv_FD{&*?ug?{7HF)%8x|@c73PgBPP*TI6gCpBM
z=w^?P@6oWAZpCJ5`1eE)wp4mFI^^5nXC*SuG>md;gUf;TYdE0cIL%VSCmIfFIHcjQ
zhEJ*brqM0020z#E8CiWY%0(l8jSPQ5@s5!`SQD%;PdcLEs0MZ%97H{y8T(ShF*4IO
zI%!^eequD7Cv}=9ozU>LhHo`|$67whJV}lB3x307!y?>w;7!W-<$TWfG?H_{Q><uM
zUfPa0kK*Kn$geZwKWaEl$J7ziaYn;WjAJ^g=s2t4XAS>pxXbY$4d*mm(eRgs^NgJI
zL=C@dxJWnGa9P8zjBopcBc6%R{VZ7RpIGnDgO4r@me}8I@I0yS*&r8){y~XpsDCYI
zycPS3eQt}`ReFT)EV!lNIwJrB2*t}de=}=bG5@g8l{;fR*~34k_3xanr=zziUJZ9N
z|MVX2j*njMHvIKW4obf<B*L-NdyHc`|GI?|Itu7`NJk+Zg>}?v8$a-2W<ebz?7a7X
z336nth>oH<is`<;@T@Sdi00TMnn$@KrqbTrk~&K1D6gXe<G+qFIyy{^l+(eL0KbmR
zD69KBt$1z9k2Cf%5LINF*Mgj_t|XBEGNPPpGACwK)d3w%bu`maO-FSdkLh?^M-3e{
zb=1{SPe&~swRL~3X&oKY=1Dxgs?E<)E@QyOAV;Ae)=^*g-LQd<M|ALghFj_$)%|T~
z{GzYEJvQN5&Ucrhd`W1iBd8;+BV9+Dj<3H6hIBO2@y5*ffpNK`zxPMfx%!l_v5qHn
zJgH;$lrTSY)H=~7x<8=j{@bl?vo4&qS$iQTLW+(o9oafEbo}&Ntc4EFe?6u9pFHF1
z#EZD`OdTzCMCWE?t%<kNv2LF9#fl7Wk!Z~{I&P#YJxxxQ2aiUg>O85fj=;^Rygr!2
zEIK}&Cvl%qs#k<aTt|Byb9Bt5oON{6@vM&Lbac{@%eL$2tE01yE;@SX=&7Ttj&3@-
z>&T<@a{L*kqq#B85|)@9=Kf!9<k?v~)=NhNE!La%{BJD!XN)*sayT(9>FB3pkd9|`
z^w<3{x&b-{>X@>=GbjG;X2dv0#tGT8^Q6H-$U}4t)p59fPfj0jk^lVh85}nlM!`Om
z%^|7bI-b|@qK=6)EgdhgKpmrW{5#KI70_r*gve+eV`yeN#!)*}q8DF`zh5YNVMpe8
z-T$bcprhh^>0q@eaUKxC_2-jxOx7`7#|&~sbD9*HO2g3c!FS!bG@Xkl`CZQ~b?k^|
z>iD){Y!>xMHr@zwLZ4s#1-|naQ6E|spQmF!wXb8Njs-dv>R7GwjC3s0u~^4)9V>L?
z>sX>=DLJ7`-i+0+6q~*x&Mz9C#I>VwHYWk8>)#%auVj1MM^@?nxlc`smSH#gbzbBp
z9cy*0*YPS<uj9iTv6m?^mVY!BXcApCBJU)3^1c+jyDerGjlHI0gO1mA5YLaqxowSF
z+j1}V$}8PA>Da8}eH}Y>ys2Z0j(2oy*YTE)tva^pc$@CFCb)HMxZ|jJt7@IN!0F<h
z*p%nXk+?(0yE@*}{apZj(};cAfgN9g<vlrT%%$nOC^WJ(HmK^5b=>~bKLA0Y&@#F=
zdp^#!XMCiI1iFCe7vUkLrVfk#Xke8ATZhBwVW6%7SLdQBT-Nccj--y1j$=BG>)5Sh
zkB<F14(QlRIq3M9#?ULePsc~Pe}qn{64BDrGPul}`^(O3iF1p@JHsNM=r~BWX<GCJ
z1{NJ(Fj5VQe6C~Fq<CVBzbcqW_TG5YvK2@_qT{HJFX_3T_25tgmrQ(EuJ^a~Vmzsd
z2aA2B<AjdW4Bd2m9Vc~suj7=CZ`fF!3(^X**Z7Xy&h)=Jxl)42fEV(3lGqPA{-^W6
zE^zf1htasahlO(u1E+X?V({1Ti;i<TxV~jz8UN_2pLPGGk^5xNQ?|qMF6y|%m*f^*
zF0k;Sc|`X99GzCKCj%@umj0&WcQ(pE5d(kd_>+F2<BpCiI{spOU{N}*>Sz*(U(<1&
zv3h7;$1&kLd2#lY>s!Q^EsFoch^ONgbw?ilm%{;~ZJ)-TnlF90JjlLdNW0h<wPXM3
zxXajLpn!pHKlhkeGUFZ_RWioaM}xnNK4hSvfkKA=V#ayBj-@jG+7e@o<s2d@MGX`)
zP}x8g1H}!LFi^%oSp$V%$}VZ3l!4ML^P)d0<*jZ%>!iQ?`>SUo<qYmOM8TQCN(MOR
zRlz{JtI>)izUzDCz7{=~6v{5YDC7Nc8C4CyKn(*m4e&j!n!z*5;?)go%;>_cksR?D
zb~gG#KmP#RS_T+lHVuf>Ht^)34$sV&>KS<0KraKm4b(UAh=FVatqnYCpn-v=2AUao
z%)sLY8W{*1`0LepLj!3BLI!yBU(mp``O^Hy;@s!Ux$h=Nf}HqHH_({n8&F>IN9?)j
z^$7z_45UxU_-#g*xA*rD@m(%rpt*q-1~Ls~7<kG6mw#}@VC81f7Na9wM@JUz%Vh`G
z(m*Q%S#%ICTzuNs2={ODqGz=+(AGeE104)JZ6JqIG7ux%r82k|GHUpa*>QGfjz{qr
zit}fqTzeL$ti}W@e#21(bfV-9bT^P|ptFH42D%#fZgfWdzoJwDx99NH>#aiBw8`(&
zV|fO880cyETT>aG$Ulw*S2p$6lh9Q980c$YoPqHMBm?~n3^VYof&K;t7#M6|h=G9y
z1{t`PTlUoF9lo6y`J|73s@OAzzm1~6i5xo1u<e;c4Q%<j2fwiXKAiEKf#C*585nKg
zc>^O1j5PeMSll;#eo6+f7Yv>olSyRei5^QDL^+{3#_;#jE_|=jSgK}4#=YX*r_OFa
zfhJ^Nwt+bYCK{N;M+T-d_`DmO%mNKerCpWJ<wnu+cVh2N3!fR6!S9h724>P2IQdJ7
zP0!#=@tdvvGu3C6hz|Uu+gt<l3@kQ~Z(zQGyOrV#3@kM8Z`tVNV>$c+T0}c(>@O|Y
zTh)JaSYlwQf#n8P7^wPfbQ$GyIj6^8F*3h<eD3EH<GY@S^Dtg+&|Ym|je&ax0tvii
zV6B0J20k^g&cMqCR0A5-YGA#AZ3f;p@T!5=Xzd0z8Q5Upbpvl0*gZSW?t^d0@d+73
zxc8HAGr9dTw#C3(0(q1CkBW@;^0pfO=QG!s-F!DM6^QXA?HvQ#4ZLUIeFK}P=W#i~
z4g>GfBeuu>yqd!mK2^)+?liEA4rM@Q?enFAeIpE~Q+H%4hCjsGcuWSjJ7s+3@AcDZ
zGi1rY9s>yjrU8ec-hf3<8IxgCP-Fc?xx@NJIN$nkk=CApB!k9~V2Wn{P@D^axPXuc
zkRG0rSMqvvuYnH@d`t&4u#bXzJ^N6{=tmT6llXl+b4TU@I^d?@ClnNC(8l@)rtwq|
zPU(JT;By0K4g7523j>D?d`p8jaM-{R178_9Vc@8NFAW@{X&Lx^UT20Weqb8&rA3!>
zPR^GYptwhpLyKP<IBDRy{kaRjiv4mp=Nkj;&^b6y%J&9N8Tiq_X#+pdyI+rSm+}7$
zT%9lVS`p+oV5jjJXAJyA2N_g`yOvIj$>7leSC4hOS~2$*1Lv5MZerlPfeYk;f!)AG
z1~<kB1HaM5-idQ0;WABVdnOM<sMaI?<Lo#OJ!Y`wNeJhU=KN{k3WF6pg*owsn}ZyP
zcx_4iVwE_%jOzw&7`RPCHSjl$e`Nfofm;TO&I<n{V3h^Zh;}`>4xvqr=))y4?ii?e
zGWeh2FGV<!6~B8hc$Xn-fy9e)D3HKI2{cLI$pi`}P$+@g3DilTZ~{dVsF*;d1d1k5
zEP*l!lue*`0woeCl|bo)e^Nn7{)A$FaL?UXg>U?AJ4-hOH*e|2J-OFv#mgm7K7k4e
z-25Rp?9~<z_X}E@m_Y9pe|vPeaspKnsGdNL1ga*01h}-jS_0uEJ?Br09N5w6==40s
z(lw>K*Gyo`j9{$<Mh@xSWr4(Ptu%GwbrYzUK*I!r2|S!Y{e(ZR{#XK!B=Beg4aoC=
z$gl+x*Dchq)t&1W?AtLyZiIO}0r|ts{a*&t5(p)bo<M3~q}<V1Bi2s5M|9}|iNi<q
z5xzG3@^4P#1fF2|rDA+(A5ku&X#&j>=#W6i1R@DEPoQlAPbZL(z*7mdOrTW)EfW3$
z1|Ec)nebP<aMXo+J$Qb5Rsz`xv`(N6^Hz;>)d5%M@+^)G&qZdejn~PFZ{N^9=Ts~w
zfoKBl68_>t&XUIxh*RdbqwUG<<P5G0<q`;f`>-n{u~P!M3G_&yX9ArQ=#oJ91h{F}
zSRi#xpj!gpEs(f^od!?y=DO>=g#Wow)yX65l|b(V`X$gmfj$ZJP54Vyd5#u6j*AsJ
zK_Ibd7lM2f<LcG{2@FhN5bdFxe?~p8rzQsr7L9Y_X-EP?6Zn>Ok>><{xD=e7z?=l0
z75H-r3{T+s1V$t<K7k1dyg+RxFjhS6b~7?cAY&3RQrV-KpmQdX&!$A<=ObIngvTXN
zb8q&$L!vK=WK$EEmcYaWCW+h0)b**z6oLP?K&p2!GJA9O^aN%k_}}(ya<Vi#eP#l)
z5*TtW(q>JVw}s|LiO)@7UIOnW@O}dG6Z|VWUQghS1QsT+D1lcKcrAg&3FOmCXO&)`
zz>);sy%c<f#xS_i(gc=099~A5r>8F$aD{-pU75ftfv<i*S;Jo70lros>k@eR0VR7v
zmpw*C;ayP{&N6513v8fi&91O3zx2$!91=H*dN(KVCe2`0p-l<=*Du^<S$GS7{vsaj
zNMLIM+XVg&-L_MQKd!f!dauRXY*B7Hk>h4`djeBRHkv)6%lRGAcM~XgE9+$Y%$*7B
zN?>0CA0_Ysog#q`MIlN8Y65#{*z3w@g0hDO_IC?CfzgjNG6YNr$Xhc3>j7>H#1YUH
z&=W98w-U&10VkBoWJWgjx{<N>xejb&`RM_|k40Sv68I#6{r5T9?u+GM0-uW8ZxZ-S
zASV+z9Ep6Mz=hjcUkG?eK;9k}$dLq&KA?OlkYfoP7syu+=qD2R`T>5YL?c#Yw9YxY
zxjT{XnfOw$n1$jNPSLdJ#R>eFz)BOVOq@>O4BgX2%*0O#oTa;&sAA&h1b(4*61bbd
zxdhH9a5aHztRjJn3G7Y_{hq)jx_^}pzb5co0+$(b7fQVLghL-L>QZN+G-r9IYYV#k
zk-(n`TuI<BhL^PLkqf1=RXcQCDE*NhB62-}8wvcwxSD|ZMf1N|#q;GKeW85*LaAHJ
z$o7TOE!y+e%zvrS3LS0>yioV>9Y)2inbs4bj}}Vz5(t<mYND8l0;W%A`a&iiGV#Mg
ziD?R&xUo<ovDzZ3u!$n3U*P@hZ-3RIxQWsx%9to&qNIsti=<K}NH4svG9gozHBrt)
zMH7`wlsD0BkyOFNs6~Fs#F^%sxn&61G(sk;Y62!2n|Q)RH51iM)Hm^ni5ezqn%KHX
zs%N5>iQ1x;Is)b|lI|D6V(Xe<16f+vs@)zIPn*>4_Na*lCeloVOgv`daTC23cL|!9
z_C@oCCOT}*Y_ha7q4Y)b`;Qu#n7FU<$0N$8n+TiOvq)lkvd7C$Y~o21nI>AYX`9na
zo(eQ&!%aj?G&j+|LWieJuytn^Nf`nm{&BHBEySbiGjo{WAGd2O6WJzOn;<32#J3yM
zfBiH-yp4$*LA<j_YHLDj)#+&gX$*WCHSu0Noy53__9lj#c%J;5=xCxJ%Qw-<M6Tef
zw~5Xsy0E2!hpv>oi5@0;n&@sKPZ0mul6i7iWj5hjr4D4WSc_1##S&qY#Zt?4Wl7=H
z$3$NiyV%#4Byv@bmnJ^I#9(ndP{2U~K4W6D*Y&x@($0OAhnN^Dh{FVY*2McG%HJ>Z
zISOiH`h9$aiP0v;h%_&l7%7msi=|NlafekNYhs*<*(T<g7;j>NiOD9Wn0S4$^rDGL
zLWvZ}L?K?bg*ZjDcd;~;X4WV)g9%K0w^*8P;u?!>6e64{3ZErlg?zthb4~pAWN5L8
zd=v9%;U<>f$y#7yp@~H%-pmMn9}Y3^-!1$roG&dgvDCz^X?>QPSZ1Qh^ghH-#nZdy
zOLH<pI~s*nm>?u&wTU$*J~XjUSmsM6)|q(O#9DE?VL<qWeCZVv>nR@-J59W5;x!W+
zO>8o;fhubn8rUrKhKUPJL$90o^2rb>@n$_rG!AVhV<z6BQ<zwgFKsdLZoX9Vt&Hr(
zp$5%E+f4Lc)a4x$+XeErD1j6{+QF1GBthSwFD-83SHX;D@}*rSJ}}{$@Jz@i6cY&(
zrU_Lf)=d~DG=bmAmsr~2J6Wav?EP#g#7eP5vP{?}97Y4d1Bpa<MV3f}NfWzGOkE<S
zXn{*4wul+`2nvaN1wzV4CO$TC$;4$7`%N4$af-3X#3v>WnmA_SxQS0qd}iX1iNiFx
zCDP{%K6kR-Xcqc{K3=s0DXi`YRZyebmqN=#jtZ{w7j~(=s0%gzm5CGdJKBaHRl0ml
z&YOi!3jEC`p>M=3BkD&>q%xt<4@;!)P25=`@nS9iGx4K|Urd}c!Q0b}{3gx{{0x=S
zB-C(QCd*_keEPGXQ_<(C0!lR!Vu8HK;YD$ar4ot1(gID~GZC=xyNN#-bxr(j;!hEO
zuF`r<TwzpPD*Z)sTGWM6?$n|#3?|nZ8(W1K!LDWa4*QRZn<mCCmHwlBnz(J^U&eu@
zes99`KYkxz5WB;`*gTXG36VIzd)d3R;iVF@6tKWPrLct}79O%t(DHkYLKax^8L2n%
zq02i_N<}Td)ua?V(VZDfSSV>>nT_Q(N?9mvVaDW80~=*nnuWC%)>$ZLp}d8j7J6Bz
zV4<Rgu!VFBl`K@YP}f2|3so#swNS%CO$)H_RKrkp3*Sr%RTKD%#i1sL%T!nyS~?|E
zOHgWCs3Yp?UbSeTN1){7(6xmj=6cvdeG3gO1TB<mQl6AYEIi7RXM`G9c$}4vsmwwi
zv#@fhUs{v=(73!nnke(!x`H9*n%XsXwMZiiD<*~5mLX<NV+&7Mh+1f8p^1ejEwr$Z
zX`!iwW)_-T$Y2|1hN^!VVETx_SIi1MCD{9BP@wIU(2%L2p_4-`Ewr-GhU^UtjO!W5
zvM_m8s5L8^5z4mk)9etD+{vLMQ$lSmJZ<qOiM}wcl_9q7+gYKE$)T8qxP|T(@+`Es
z(7{4y3tcGowV{sWEkD#rls0EjfOxK;jGy9{5S$t6YN1-b-=c07?#>L2ZxG6CQvRwH
z=powvUX`-ss<(wc7N%O5W}&YI$-+nrqb&5Z(BHyP3&Si7urScVGZseA3{jY@h-w-n
z+QPyIlYzxTZi4x@mxi9T@SKGa7GAJG#;B3ug0bfX?7!Am0W~;oZm4%|>CXoRMq3zT
zVWNde7RFi_XJNdB2|}txdj={^4SkdEE4ugG(3M%C7X|Z=%nmiZTBPcrz+?*))S>Qy
zDMHAtXNIPe4UuNKg_#y+Sy*6Up@rF^_Bj^j3O>g+DL>D`@yVf#fr0r#K5Ppws*hq>
zWFcP^ve*KJ*>X*&<)Y9M3rj`bm%9g+i7fxl2vM*rXj&FlSy(N2cu8br18E^^=q!^%
zh3o)t*@TxZykg-O3+F7XxA=E;SQcyxuUXh&;T;RxExb;5v+$;cEuyZC0&Zfm*&zyZ
zv*73Lr4m_vOFUx9+bj&}SAMI7zb1FS--@>_yu3I}e20a1EvObW3-4KY-@*rUa|=5y
zFrzjwP-38O!@Df(5oHor1pm|9R+#p3X!xdpZo#l%3L>AD8Wd=r7f6Vzhv$~25?PL8
z!L@LV^0eStNLu*J!sixJ7MEV&BMTpk^m{DqweX<@s_E&4p=<NYvA}&6u1@nMzjZ-q
zzl8%94vM-y5e9IfPGt&ke5?Y6`Kh2&j4Kv~zOZme+#VJ1-u!ZhEySk!<s1=VWZ8ny
zm*UadX`%NQg}$<I!om+0{%7H9I#ku7Cz;H`j)4Js{kImrv+zBm);zz2I!i*d0V1aa
z+eE%zD*b3--=xqPx~+xN7Jkd~^*dxxc|QFqFL2hv&w_#CYfF<tnVh$9fw9F#X&V<U
zT(WS(!rvAyTlkeR-@+dZTusW~tx}XN`b}64GyZAeiiPWf^S@{YgM9X`F>mYeRROcs
zhT00=<_z?W>K_X?Eflcvkd0dwZd<rx;Xe!i3eL~2%wd@{Kf=2f?lEwYHygi-5*AJN
z9g2@eEeI8~QOHJ78^vrtvK6*{^C)8b;fOJcp_oW<+i&&q*`X3P7~B~BN{R$8&i382
zjE%B3s@bT{5^R*W{g7T+B&cA6W=4(BqAJ>`B#2qlLyyl3Rk2Z3+-^;_fDOjy_w#&i
zYuKo1qn?e2ZPc<+Ta-qY>ezmiu4`l0$nMjAD#Dcar9m;)7o0z0<4<A9gV+m*l4)j-
z*?8PWLmNRGgKRuwBh5z0MkkS=k&Up8RyMM1q}yn0qq(T=2^&ppG_}#pM!($BWd2DT
z!$d?awM_c3Ks)ji5hbvt1qznUU@jXph88wjvU401IJzd3X@igvk7<-rp==wiZRFU9
z3U1rjXlvtX@-|QeaN%E5supFt+S!QN=xBoisW&hXx6xi?k*k#DQ|hRLV3NpvKgzYy
z*+v%|U2XKX(Z@zN8{LJt@@zam&5xg~h3R|P=qdEOY<j5C)KD)Q4BC9!*M?+cfQ^CT
z>EPv|em3^JRJy+nc2ZQ|_~{{LVY}Ftu~`)c+ZbYFqK!#5XalTbDCJ}0SsTyU7-wU=
zjp3}?#z-5Z1oQM$I?)IlFW9~}?U@xK9Bre)GHI+xz(U5@*s{MJeU>&x<+82`)WX#w
zWd22whRtuiOqy(C3R|~0v}{>us*Pzj=GmBUV>&frW44VsLN(0AYo^FJOTfMPzVzk_
zn;fuAqCN9=fsKVW7Td_Tu}EYbKQKV=pvu^9UdgV|ajEYtOK75^(k}TSR=vW;N*cU_
z8V*+3SZyO|BV}WajhAfbHVhkUZLDL9Y`kUTWgD;9c*Dj<n<wAmtDJ%xY`kvcRU0=J
zM_$Sczh*;yxi^t<4`n>wBTQmuR=Z6$Hj4zC2N#@>A9+*Y-Cpi}D=&O$Tj{Mfw$Vsz
z?4%xTykldBjdyJ@<#w`>7e4(^#cCT1F)^?AY&=r1-F^J;U0ruEXyk=u8;U?aApaFA
z-+!vwD4Eqx6ZEHhgm1TLcdvE3gbkDK(;?&uIB}U|3B<PH*l-2Tr)Bq6Ae?fcNW1C1
zS1yxw(~4~TLC3VQ*T#o7PTKf}24LeO8(-KsWaDFIf2rUnHV)co(ImWIzykul>E(P%
zo1CBi89gN)zEQ2i_GQxNO!-#!Lya?&%cR3Lj!>8)anUC-OXY@-+W3-hr03f)*D;E#
zT8FnE?{b{-dA!TF%cK)Ft}K(bCEI^(V?lZsBH!Bhj#1jiB^%${IA!Ckjh}7&K%eRy
z{?W#1f&7nUE|<Dr$?UM8(;2}qtN2N9bvZq=!E$Lsm+&t(`Yw%}w{ebvZhm^-%iYN{
z=@;nuA^~qN+xT7NViSI4P!%}olt8ED5}SX;#$PrHIC#jxRU6lA+_v$rjq7ZSjhpoD
z<<j5e^K6UhO`HEi<3CWDc*N>+HNVd-x<J$BlMYl~ytDTmf#0KcmP`NHxNBp~a%t&u
zi3#2mFyP?Ga!EPcqM(C94$3(w@1U@QA`Z$pDC?l8gJKR!I4J4(#TF+&yDBf}+^2PZ
zpV&(kh+JMSm2yzpL4g&1vAo{N??XsVTJFhU$rT(_bO4dPl7LkNWSYtjn7!5tsj8q9
z>EdVPRZZNsSRvJPP|Lx52MZk3c2LJb9|wIM)OAqLLBv6G2M;@_&)UyqHgWKXgGU_%
z9i%yEz%<2k8#>rpEceyv<sNhJxPu-mBrfB*qm(7F@!`rL2aOzrCZ;zQFzg`R!Ic-&
z`%Fy7#Pmn<D-thWEb9pegiOX-o^;SuRM$+v4{r7#F~h-A4mvv+J2Ab5gG>i82XV5;
zUw}Di>)>ezt;8)USq`!tY@C?h+Cdu!Ulhw-@I}W4$2u&#5zcY2uvZVJxn3_2b<oa1
z*2HvHQFTpk<#c9y2OX%dqn$g6qB=UbRxEei(avnt<VQN?ibwrshnb*@gRTy`IbfOH
z9pq7c#dEhD?M(K1IOyr1mxB#uDzkN)PG^$XTQr|I+bB8c=U|+J@ecYs7~o*IgXbL#
zbTG)lFkbKUwriz7<6ww`O|{YoJK$}R+UbNp)(j72`V|t9XB|98{nqm7Oh(EG2QN4n
z>0p$|c*L#DTnko6d^*~J?p7Wv=wk%rqhlf?pH6Tv#lchuFFKg$U=kCs$qw4r&1l>q
z!~{g1Y1(`m&BnoO!4HWuXfWhzg*4N_s~-kVcMHuDB@>zBV6KCgUQC}ylNizG`8^p-
z&)bC#ZdDFX=%2AxAd4I<7D#eiIN!k%-Ucczb@*HJFt23-SuWrT2P+@YR|#abfNKPN
z$-(gz60@vxz`}XGERa_mtbagx)xm2I@C^caUBEX4+$i8C0XOq6@B%seRW^&->R=nK
zeLo)CkGCDXLtEX85__@T!43y+C-F`a?>czT!AuXcJiPB<r-OAaUUsp|!3T617Y$s<
z4is9HgX<1d2bzOpWSe?%U^v+4;3EeK2PVbqz;Q4pD_{vY;$B++tU%YSfa}0>u!lyQ
z6-YWrIoR!hPk&z>AgtIjlXN0Xx!1vm;!*DEz<uJ!4)#0vobKS@fP+sQd`dUT3LJE}
zG~F+s*IS~T&m2Uv0=!t%AqO?r1P;^k1=1rBDiR1C6(xU3>&*)A_AinBD+ebW{OsTt
z2VXll>EH(k|8ww-gKt^I>cIC7z7rYWY8CEUyMuEt?c|~|<n0tqPTc<J;Iv5a6PaI7
z=8V881XjU{&WhU-1wzbn&cS&He>nKl!3D<BK<J`_OH^5YA@a=YvV-45`Z<BnuMYCF
z!bC{_ouX@*NrVMnaqyP|ijKUI!d6@rS@`INgTHCpt}okv9Nc7xc2V5LEeE&RWw<El
z;$H`M9NcwqPvk0`U+6yv?_MbKr6?`n;@hF63y2aZNfyqcR%ZnYxxVg-xG3skN3rIG
zT~H20_>|1^5mT0MQPM>X7d1upQZ7onDC7ESD!C?5)<roN<y}+|Ps=v<oAb}=z^lJU
zDhf))&IK#E;B93AiBu6tRTp?bsV0!>0#bUlT-0`PbWxeZLNcU~6Bb+7MLidDR|g(;
zQQ!6DthK8^Ns{MBT$IT6Rr8pO$6btdG0sIp7eN;tTy%7i<|5?sAO*B^(a1&EMKc!>
z7wIk<yJ+I#Nx?0p{e(d7+whI7z=W)DQ$d;dK%327WVm?BMS;xB&a(?LOA8kiI5}J*
zq}_^Ab@8-|92eOxS_@X&h(cOq1@5OjlND&|`s%*^eCep`n{GQ7F&8gp1?UAVD(<4a
z$U^+S@lyz$T;#eK;$o<a&MvyR=<TA9NY>Rwo{JtXy1D2s3S>qKge4R96qH^<-7M!m
zv9Als#Q+xrUG#H7N%nWKuSF)GGVgsmq-+Pdc*ezG7i6AvUTpQzK<LM;z%UojvUV3Q
zxOh&m(P>2K;V#avknX2^Ueri@q>E85M!Oi}Vv3LwYpGeg1GQ!f4%x=>E+)8GCCYix
z#Y7kLT+DYd$;D(Bv&kXzx|r%>x{DburafSZmP|t(aIgq%a;A{>EK%>@f{pveGgr{5
zP%=Zfz{NrrOI<7@OId+MF7kzl*v7?z0p?orK#atfyI3J?o+>^Y2(1+2+F7RqLl7-w
zwTm?_^upy{q85ghrf|s5S{KDuN_hoBueez6qL7Ee9$t0vnu{M?{LjS(7q7cWx=6Wr
z!^K7yA22Mt*yLifi|uqt7jL@QBKX<n;w=|jUEFU1!yp?%mC;Au772*F<AU&3AoQ+_
z_k;v?K4{DP!nMg24UZXjv99be4MTCEy0H0Fq|{s(E)r~uXnT243!|L*Kol?DOS44E
z8Y?B&h3BIAmVzv>dbVFIjhVvS?P8CM&s}`sVy}x2U3}`|Gn$r*k6e80V!tSXQDR`0
z&jT~k7!J7jM9>ckNb_Tyy#I*ur>87TD}RU$bn&%|lP-=hM7TKS;<$@;%`?BGqt)&3
zUsm9zu&%F!x|#h1eLN7N$*r%`fx`L51^c7#TzoGQeCzr_l02LebXG*=5;EnFE>63+
zOUqv!IOF0c7uQ@|cX8Im&n_;xxa{H=7w3eWFVg0Ph^X!hRO_IE6!j-d3T+64J{0Et
ztBc=UTygQ2Xx;Au{^{Zm#-jGV0B?(^`(svsB@ACw=BkS)R!U@S2IIerzZv0O+;Q=b
zi<_dx+oA-r%8G6Y3Jc*y`}|Kd?SSRCf)`!*o{NBo0v;anP|)*RMDbo~kvV#3X=bN>
zYZnL=@le!5cMo|Uig_sRA?zXDLkSNhJ=F8?u!m9}N_(i{p{j>69?E*C<e{?XcTD9x
zl=o1<Lw5bjyj`CaNH5@PwxS0|AorsRnPJZY57j)>^ia#gxGe>1EGSc56jH<UyOsOy
zQ`<uwL9FZfofL~2yr2x>efzKP;Smo(4{0LJqaGRvgee(6AM^0I2l{41L8M8rSn7h=
z`z$QO5<(stiDK!zWUR4=Cp@(A(AGl}4^Mh%;UUvQQxDBNH0NzrAi~B9bES>7ZeNfU
zWr)I`5|DMpv%)Psw4wwAW#5uQ%tZ}md470j)vZ04t$dTF@SpaO<Drv>Tn|wX?L2f4
zx#$!z4{^c#Xkp1r-=4b5%w!WfdcO6N!rFOtrVQ5vx_OxRd!!2=Q5UWKR|}?Ox61@Q
zJoNN1mO}Q>%R_GuLp==h(8ohx4+A|6@*sKWM-D~pbY2!tanULU2+DoVpP|ioplJ;e
zLSy;=&x4s2c-F&n9!7c?<zcvo=S7+q1Y~zVLP+m^-$C1^0kBLu#b^&>*!<N2njc>|
zD8TU^CU}_YVVZ{**(lHN;wQ75mYK}ON+${Ppofw^#lxSOnJmBdngE~jn(kqS$U^+>
ztiWs!b10A`sw6Sj!#ofF^YEjG`5qQf5gsfL3q36I@VbXLJS_H*@8Km6YdsXY99-gI
zjpwfn(YdV1!!jD%q!97t9#(i*>A}lN+wn-+Di1qu2UmOGqYZb1Pp_2L_3t4S4zYxF
z9yWOX`ly%Ls2k0By&{nH>;(k!+5`I5w+emzLpiQR+2~=Dhc`WJ5j<@6aOG0a?37)o
zbiu5?8NWT+=q>82a7gvA)x$OqZ+m#hgX}@^u$@X=DYa>p`94_^_`3qWCm<gU>XLr@
zQgEk-T^@+=`hcbNEJ$SN!JKZ9ZcH%f-ws1R2y1K(P340yFGC;+0YB9W+H_|RAA8vE
z!KDy9eCT1Hha?+SJ^XOn5G9uKu$yMqKI5Yf8GFdgzC0p(1+sEqUYX0m_SMrrqFF8v
z>^dGQf49{E4|P`se(-QN75GFn@SulJJ$&Zjb0OFh9=;F=h5V(5LjphifO5pc(Fgc%
z<I;`^{J4N$3Ai|rCe=v$THq%I{Kmt#9=;Pe%lw}1@Q$xsUZ)t=q%<N_N85Gb(;m)v
zxar}Rho3y0_3#G`&%@7x&)+><TUPKF59d6b_i(|(MGu!~NE=J@`t8{=GfOtV?BUrL
z%RE-9)34OjJC#o#&-jgY^>xPW`r-L2r9Dl;)z4MF;^8k3e|z}HL+q!>h&t(4X>Xb7
z*F0RO4G#@PbJM!FO1t6Vh5Bg=o=Urz->znhw6Ai*%zoR$zYOe26inidhyOg>^KjtJ
zf_FV^z7#yLvBk4h!bOj#9r-yFNcwvJ>$Bzsk|2D!LAydp6i%W<5+#!;lJu?pzZEUi
zmHux>iYEOdJBlSyTp+Kll=!>GQc3<k1368?Pp``v^mt~OB+4dHE{TH^qP#7iM1>?i
zT`5&cqT)y4BTuANOrlYC`XjZ|=nlLM)=#UN1d^DU#H=K$B~d+z{z(i-qDB%mlW3hp
zo22hDwUVflMBOA$O7smrZ9$xe{M1Y0;UvOI-#zIU^^>sN=8q-uNYZx`UXKc-fq(^W
zm0h$e{CE-#lOPflkVu+9LIO6r59gIhPoi-WPbASKiL9hQk?~{_2MU&LA@HV2e_DiB
zGl4{sX#Rkb!2}O*&Q4|uyyXK*D}g-Ow*m{y7DYWbFwi!Mr<3?OUa1QuDP+F;Y}d|7
zM3Wd>CCsaxKw?S6DUkQmd9_cXgTOlq*h#?L2TzZdDR<?SfIYEMS5aDe-HdKYbWb9W
znk^Su{9L&nNi-`P;nh<hy#(wnV4o!V3Pci+Y5FDcN4GGMfk_NX;<+S-Q(0e?c_xWr
zNjytqAgmI;@mSiBBnXEJ_|x#Tr@n8_fh-#2>6Oy+NsLJ1)PjODI2Lg!_ySubkRq?7
zjZ9)x5~GtCLvvjztyz(_^+cS=4@TNJq1o|COc2P6NlX>UL;)uWI5~;Ox`$~1Q<CtO
z6(l}Q(1}b>BDgNVM}b{w944Bb#GE8vNn$<Ye-iVOSenGLB<2fF@{?GS!~$Vm3uy*P
zq`wweOyb%i#lEi8XhFC`$<V@}zv6<{NYyV-Vg(JgbkUMk3vL*lKIXfItY~EttCCoq
zMBrHVnk3dG@p2L`CGq@;j*)VawL<<xD6T;xIv>i)%#3t>HHp`fcr%GDNo)`zdLxOA
zNxV*@>J#LZ-7!Z0+C<CGOlQ@sWpfgntibBNrQb?oYZBYoqwOq2r#Rq*hm6aqvP#;t
zGCciu+V&)NB++{}`s~KLNgken%_+Q@!uv_=Orlr{#Z%ao#0N=SNaA7=auP}sUnOxO
z2{j2Vi9Jc|O+rt?NaDADg1eJQBw<p{)aLwlmVgd#J4blg0wJBaD;^bI(}K6jBvRt`
ziB%GB$$#m8f*&TaFNtHcrB%{LNqn5dktB{L@y2V>YT@kt^tB{9u97|x6m4QQ=?4Y=
zseqp)@wq@q|00P)5AeeR>HmCm%f0ZINkooj?%b5!<y!akujd|nFMOOez88M+trlO4
zkaCKUZr&kuGKp^lLj2n#zI%XwPj6i%k@&wPex#Zfg&V(8=yVci=&ecolEhDRgpJL4
zolRoxPgz9Pt&#}O(WE~ua-ITNCG8NDL#rg>my)>5kekH6N&HHY3N~&g@w@P#&7%sn
ztx)t2fuCI^{mH2H0RJnAt4WZ^>sk`m1%BfJ<?kf^5ja_8f?J~4KUO!TwVW!{=#FU4
zLn-{n_<1vUH;H>m>_=K4g#l&LNGXu=Z~MO)AuO0ep%m&5=u$X^A~co08EMbtlv<lp
zRN(L4$Rwpi3MEr$pF)QeN~KUbg%&Afrcfq@vMFDlbntR1luzN26dp~X0?WMHxl#(1
zQ>Z8soLSm~$*QDqTZp%2$`9#P1%!ar1gxGy4T10}UwD|MRtnpq;o1V$NujPl>IwL;
zfP7kCAWYmKg~w7zOW}XLJCyr7{CEn%6dJ9T8nRfmLxt56;lXCz4*c07M0yIt`{ah%
zuGP|+KU<`e&lI=1`@xFWlPNS2c$cOATUk?qH+%3jl0x$oGQ{muDYV*9=6<gI4|S!r
zw@l&s_HdN+6tYstPN6k*u{Eu23W0X%MB1caR?8(a=0^PK6lQ#%mXpHJ)e<S86Yblj
z5KCd%YN>Z9?FTs=XZDe4&94PJrqC&cnJLUlAvcB26jTcRQeYrjQ?_{*%Jx#QYYN>2
z(*O4&-Bb9nR(77a?IB=K0hz3qKza+<CxyNb=o5Y~(w|0>!iy<POkrROgQ&{O!NDm!
zBap8aROLlV$G;j5Nuk|}z|a(iiAT?-Fp2`HlJ=aqWt!mvd0xN~DZC(%kpfD0{r7><
zDX<(~V^SFV03Vma_y_oel>buA1d~#joWise;>**fq%bvwuB|fuw>E9cAMw|VwBNQ`
zB7Hg~nZj;?e<R?SGTmlVk|~^dBs?dDxhc#`VSWnvDcmU7dI2rAP-`NKQdpQmL1gf{
zPgyJy5MLq?rdcWwCSWJKJcSi0tW1IUDgoCExH^S30(nV5K3$u_I)T6ZfbvQT7ccld
z^{WpkuL)#>fUl?U#sm6Bfou}+=|F)kDZG_Jx!owg8(V4cDg2be*%aPR;hhvdP2sZ?
zwhLo;kDi-C%~<IjDV%?<(7W{OheMxU3Z`8N?@U2XL18aIH@On#^+AgNzLbclDQGEJ
ztd25IachP@@oLh?w`Sj7RA|Xl=?U6ldL}1ZZ>@^(k&}W;X^Ui@faUsSlAaVekrbsQ
z`4nDz1aWT)AEvM`g^yBLJwN@E6b=gd#|%dgavh+_waI3d&+8T>9NNLp{&@;tq!2j}
z;8(*TYHE#iGKFtasJ2EroWhY5cP@mF3P|KjfgDTW_yfvU0y&Yw*8<spq%xCn!_>D7
z6pR==RX&C9>Ct_H)1~046u7NPOGSU6HYbI@3HJCgh0_dl-6KrNoib-=<TZN{`8kDO
zQg~=L3hwq};JFkorEr<PU##ePhL<(c1pzOznNNh<uaSOD;kOj7(HbXp`aOj|Qn-@B
zUn!h>rt+{gQvS`zp9~9^I^V3GF?)@)agB790=(Rt*QCq6uhaaFhi;_scMAUq{9h{Z
zc<APR`ti^$y0E}^o(M4|AKeiN{uA)7fcF@GcKf*s2uNi6(18D$(>b*Dc&N~B6y6Q<
zcmI8($Zizfjbgh|e7EoZzt{D>l~)OITT;MMyHQ#oWdtlMAk&N)RJOuyRHRIH<B8oE
zwXsm8-Ken}HFu-(?*C)zJD{VgzOMtJDZOtHL`3RjW&}bqCO{}jAS8j%0zN^i4Mh+X
z5Jj4Fl-_&qAcz!YW?q^1=1rk1h+R;m2~w3JetS;-`POf(xAxli+;h)8_ndR@OeSyM
zpqdxey?{5CvM=W<HN2?l#pVrhL**|`68?e7KRKgwmD*nThoy|X;CkANI$k{EMO`nR
z^`f2^hi|wZm3RIySGjh>^_&;=y=dgcv?89e-+LN(aqxRjL&3)1d#-=)VY9LHQlW_#
zTe_w@yhsoQr=W`)YGnp{-J(|J2TwCE4lRmH@gmiWPg^B7_af1Y7GAvH-IXNxf)@+o
z-N{~fgpl8ytL&ehI(%E2UB%VX3%&>L=|w9qT6>Y^MH?@=c#-EtTQ1y-9IpCam-c*<
zCa*Oey+|+Q8A37zI|y#S8hZiC65dHLTk!a$3M>9i$ravN@QHa!r>{D7^`e^>-M##K
zp;P^NN)N7LYHH5kDQvb81-`cCdolH2m%7^hq8Ex6DL$n7@RApOyg28@cV6`M;$<%u
zd$GieeqQwVVzL(>dojR^fy}8FL%kT}#bB<byXy@uEkFJhZ|rUPYhFG8s_d)6DSTZB
z<tHap9OA{B(mel8xi@>nbKu)v4D;dxFFy2QxEJqu@tzl>L}!E-BMXgiIF;X(xvb-H
zqecF{Amw9(yp|t7RtS}8oH$OJ;{`twEWWqw1R)c>nB>Lr2gP5Ur@S#wq4E?4#EV&8
z%w`REajSXqbT4KwgKxW+&g`}OL2>Hvnn`b8%;cn>h@C}(pL#LJi@D++bryOtPdL@)
z3t7P8N$kodoIMKcFfvQMSjIAAF?+GxixpmM;zsadr5CGMkYahYAcw5+;`Lw46^vc$
z#X6CfofNaSLHI_&S*x-r*&=+W7rR&$UTl*lXJprQFLuz|i>-K_E$ZGaUHiQF+>1S4
zeCEX~*UJ{nvRAtH9?9P?<bWW%z7X<Hv8v<;g-@QReCfqkUPQczdU3=HugFdA0&Zd9
z$0k*wzA9YzLK8yCObM(Z&4Az$XTIe{(2Ir5lWo>gVr8m@ya-D#S24eDG9^a~Eqvp}
zF{aXs6JDGY;n!65H#;T#wD343v!Emjta11m7WO>ltmu3z6-(jwUi{!i1s^K<@S_($
zd2!#12VVT_#V=l5@#3l%zj|?=<uS41B`+=%`f$;U--L6P-&y2Ret(FBNq4-OdD)B0
zFJ|6rl>Ag;@--={TVCAu;!ok%1zBk~g#0CV(~IlQt`ySR9WU+`&UM#|y%My)Me>he
z$B$ykedxs_p2<Fx^Wk4F9`p3};YlC<^CHd{+nc3)DB?p=;T#e#q_{7(g^T%OTlmv@
z*$iC?k(U(w&R>ZGd97;Rl~`JYWqf$*-4r$p<}L4wZ4+LsDB=_2D^~KMvJcPtP|t@d
zK2)W?54C)#Cd1)F4IirSDqG!$blDNdcEqZ#rVnKrC(}aNktwxBlR~EZX&>rH^BLd&
z#kOu?FN5=(5A}U$=0kHI8c^=T^U~YMhsHj*3N@SfkWk1SLUznkoW9t0W>Scp%Pn#`
z)3i|YP)e-)5~b<!p@op7!ro*dja{+Gyda!0Y{_W&u-S(#KD72B&4+P5eB?tLAKLox
zwy3r9p}i0JKJ;P)e8})2*N4tNWcrZ2vusBnvP7*zp-tNF<U_VJ$^Vvc<@m7lQE@uo
zr9jPxu0ke#>0v^<3Gd-U_kv#8{<%%N_LOv!^!DLJ9|rsIiVq48e;)>jW*@<hd#k?e
zLtjxw|6(-QPvoz^?e6abvAGn$KoJh|foY=7tCFB0L?2!&&=+La8)9mpI~FTO=`E2D
z6{O@&ljLDO4ENz3A4d4_z7J!480o{iK8z8a_gF%SvF$Tj$SA>aBU768FGe8^(n!I+
z`#^m7yh-whGLXXYK1}dokq?V~nCQbKAEx;*UHqBs!xSO(@M9keRytKA6H?t2&hTNT
zkH4LVIX=wtVYUySNRE2E6f2mvms$~d)os>wuFSho_7NrX7!z?|LE#!3U5+VF>0fLK
z6X(NfAJ+J=tgv^bkmWLbg%3;Q+@t;~9|H0UMZQ*aHu|tm$a=vIg6xf4joIHMZjfyC
zVVe)%`S86D+kMzUJ3g2`?DS!m4@Z3P%D~+|?DOGsANI&VhU+sQ_DWYyVk}wvefYwM
zgW}i$kyD2?#x5QXhkQ6J;TpW7?3dE}l@I6UDZCgxpAUW!>OLGbUDQ#1(0sThE4p^A
zRrx<+J{vxKDb8D>e9VXALV|*}V91BC4-w%}!ACn|hsIGKiqDU|f}il=qz`9&ILoS*
z4MO25(LC+L*Fq@yMo7A|>$gJA`LL>gv7=I!BOX_v!Vf(BeYi;{efY_TpMChlhf6;E
z;=`{#{8nh^ypRim3`kU*;qc!@a#4_OT=wCL@Ed|xefU$zH9_k0Fuz{N3tpc7lBStb
z`L+*te0a<Q+=sh9-1Fgq4-b9#+lPNd=e{JR=6uB-k-|t0aU?%41<AZT;!6M{=5NLq
z`bw{MaL!la{3zl_2|r5uF}Hs)PF>WGc)xs<>PLpeu(&jNIIx#jDSzxmVaATKOl6mA
ztxEe*#t)|omx{7}l=I^cKQ8%E-j51?eB;L%KPviB$qz?0*Qb6|_M?g)J^je{qpBa(
z{CM7vrvBKw=<0qvCu;Dch95Qkc*>8b{iq|owfv~<$ME@zdudAV`O4#A>DO|SUYMKm
zj33X6LfiRyb^TbDleA!O&pDfV*7IZ0e1)XG9}Tz!KN`_bKU{t^_M?d(d*&+%oX(Fg
zhNhRAo!WJk=jTsTGK%-^I6LL`YR~cc%2m$g$0o$bJ_J~xH1ngmA1(d-rFA6w(LyFo
z@gvEP8KD&VUu%Jq?1x9>bH=$}@Z-O!DW9$K5K|W@sebfZpxn8Z*V>OXKRWo)(T_G_
zzr7#nezf(Y9b=W3yK8IiiH~w=uz0C9U)^y9@3+qIBa?ZN&m!ua@MQVX$&W5fgdf>{
z<oMCq&j$rp9#8xG;!j@7%k|@EAdO`Ark+(!db;}2&5!PW^zdWD9aqh=Nt}iD*Uigg
zQjUI-QYy21FNyphKL(5cz5RI655<p{{OIFHe?JEJ(O0^bEKpwd<K_tuEey>~>gUJq
z1qy|0YgDFW&+K9YMQy}{%vTDCA0z#E)sNTwc-@aTm_$F`@neV|Z~8He^%H4-b4E(2
zT*bHi2rf_(r>6{Mgr}#xEl8W)R(rb4clDc+!U(YW>jLFnKi>0Wk{^@(80E)kKgRj-
zkso6?qaS1a_`uIk+j??!yw2ar{Bu@HjTL1-WbV>(9xhNAoZgx4@qSEX_7Ok94;Ip#
z|2p58p28a7qCWOx3e)PxOj*KIKc+Db<tpy%-+^^PAEvV!=ce>N>6zunY|(l6O6IA~
zNuRK)7b^DDlzL_w^Eijw%8z+|%=crPAKN9}bg8&Id4V4bS)zU{_G5`3>-<>n$5Ixs
zA1nPZW>r}32i173V0mOG74YT@l~pnwo2x}(jo@0r+Vhh(__2}qeEPA4bJ6DZbZQ>k
zoleqkcyID`os+iualK?4UR=TsKXyv$Px`S-EPpPzn;XQB&$!GZW%r7t=R$=G-{(i}
zTY0`&spR_^JwFckanO&bIB-ZbeSY|b9QNZ&Azuk{$Pt#}YL8c%>t+{Ig;;``pe{&F
zLrB06lch2-lM>cLP=vN%$j_rJRwof@Zde;novQ7+bB#yEnPY;-1yAs7Nvh1QQ?l68
zethlcm!whxcQaXgO!`?rzV+jKKYsAz9C>Ek{0<4<acqYeS=2Fsk{|u}iK*<6@Vg&B
z3n9P2Bz8>r#gAWwoEL1pB#uH}ze%&e$VESYV5>KWT=wINAGiFt?Z;Jr?C<?+e*DRL
zI2Ze)p4W9hZus#Rqj#<to0YG`K1=6ylfiG(Y4(bYJAT~d0jr{-ihF+i?MIx7A}apj
zww)9IkR?>rb>EMn3zY}L->mAY)4SIrKPKEu{+C;(qUW(7$$vtqUsOfBiqbTgU1icj
zCGS{L*;=k*DvGNpp`s*@_gbz}Dt?`wPqJj8Lh^((pOh{(A2iM^qk?ml6)dNsymV1=
zV4+e;gw<437gAY86(LncC%sqvg7NuKQA5RZD(XvDO_k5=a@QfMs3nrxDmE;0SFV@-
zv=CZm^BEO&RrGq8e6@;;`p>GU$LnmlV+$1uD^8DZpyJ9x#lOPcP(>pZ6H`(ft8mb4
zjri1i$xT%B8{LZ}LB*F{l15E(5#1`DSMh>@6a!6FG*hu#!yXOIRV1qTSH)u$EmS0_
z*sEfniewcY6(6YhkfT(j&>t1ORivtDsiL!rE-G57XssekMJE*vR=UzuTrZK^M#bmF
zJ#XJhYb(P3f2Xxm(Ov~fx*$o0ip)aZK}bgxMHeaT%2tu1B3H$(?j6{?>Wp2r7b$F>
zpOu}bqN|D?DtfBurlO#?yNZSn{!g<^FgtOPlCR=&-Tc&F$_~7r)46+x7gZ=KUQzL?
zikDRM;fyK<a21P`zKoTMr|;*yEZ%YzE0=gU*Op}-UwWm1D!7orDh8>*{n!*gXH?=8
zU5j~MQ}Mcr_f(8h@rH^a%%+OBR16!QKe=0nKBYWHUWcJ#bNC{KX5UuvLyDW%FcrfK
z`8z5`2p=i<ZlQcqG0$ifb$WE*z_BXEsCZvY%~+(gU*dV<LhJWN=hL5YDn3%NRK+qC
z<5f&h@u`YAtOpg7RLoK_Tg7A*AFG%q!|B_}e`2ecqGGB<kM`M|USPa1o-<XPS>!2*
zZDJ|UsJm&OhyusXRWVP+A{C2O%x5C%<u6dNP{s0Y9cY}^zPgy#cvfddV2O(F9;W>~
zC;QioN?RoYC*J9{T*W#S>s72!u~KZVQn6OZY87i#Y`K_6Bbw-wu(?6SMio0$>{PKy
z#b(y(KWW>jDWkUXl(?5h&FsHp*m|j__&;gerHk_SGb-&;u}8&cGHSQTSKiM#yGS|F
zwhDVW<Z~7KRs5{t7ZqQqIH1B*VW~K%;*cy*S8<s8NQGa8s^Z}y<tr6l70mBTS5uF$
zqOPV^dpCb)UI(9WDp0~+UYe+JprPWyn$&>gl!OXF6}HOXLBJ^$A(c-R#!(f=R76xn
zRotJI?U<ikWq$Ubi#$|LEbck3;>YS$PRJBVi#${~aXW`yr&WBd;(Jz(if@=WhFvtz
ziY8-qPQ_d;?OSGTv4<pv#d6PSX&lSzM{fB=o}W~>OT;E3XUw_LepT@&x3h}#DlVw_
zO~vmjE^%9l*^7dIsHm`5X|!13EZNWIUt#_507sQ;tcUnqS}Xcl43#1=yrJSR6@T+c
zS8-FtEy>6|6}MxXDD94lyDFM5^z0a()97B#=gU3Hf3ejuo4%?gN$$&x5BawIlk5k=
zTP;?&4Igo9-;b^3KNWErI%w#qp@@c}8X9S6tRY@QF%2~}Jf)$yh7uaeYp9^1q!ufr
zG8)QiD5c>EX+Ei8VfPM{^C~Tpm+z(hy)c`?{KZN+4L_9du&bhmO43_RLuDaVH1NbI
zSt^#7s&wF9TEC(B)U2)nqQE1O%^Jc_j>@a0p|*zSr1`XlIvVO~U<q*{?PTH4XtBCF
zUNZMt4fTXGIMa*d(nx&`4Mdq;4P`E7jmk|lI5aflkuLfP8eBr0f>f~I?dI0-yfmBs
z5AsH}L=7!8w9?R8Lz0GM4NHH|dqIn3lLI{(hAxg(HIKd&4XGL?OS7ehWkOg~X&TyS
zNY{{|;kOUnZN<K!rM1(*0CH@54Yf+e{A7J*%EC)5^1OK=kCH46oiu!);X@7C8geuY
z(lA)#?}?+chF%(aYv`gOPeXSNJv5|UXx&xArMqd}WG>ptf1Hz9G`FXQy^EE64T%{s
zxAi@_r7z|&BQI)DG`y^#AHCAhM||rmSYcE*9va+n)Mps`YZ##6>V>?4(wqHz9xbzL
zwwlHx{S^(bY8a+rxQ5p>ysqI*4R1;6-_S5b(s5=%HkW_;an3Jq<+BVpcBlr<^)_Qz
zFQ5B`l6N$W&@fuV7!4yeKBEcmX&A-oN^!H7K_hZG+^wVQRHRplk77RXdSAm>4LrVh
z@$4F>;UiY8hD932YnY&6x`r7VCTf_(bSM?4iieXme5_##%YIQT5j>&`tl8qsGz};2
z=I}t6sbQ9ePc(e0VYUSJ5z14O5#WmEXgo$RU&8|FdhTHk<?|#;HRi;Y%majnRpU{4
zi#06KutvjLRuL;i!%9)(?x3~h8dhlF&fRl27E)HuDh;befg7KzrhJ`-^^B^9tr|9H
z*vJ|fnZH>BL&}q3lZLxDbIf}Al}5!DVm!*(reV8S*rkCAW9Db?kn-3m$U1p@UN*NU
zl|N&Juo86i)3J}rtV0ctHSE{$g@$i6oYQbX!$A$UhLDCs8V+mFH5eL7Kb`ueh9erh
z8k{wqUun1*NZwJ^d2gW8r@^m5)$s6HSCx7$jR7B-d9Ja$T21HspJi<SEF-|8YSqc4
z{pM~yPjA%pOp7^sKaE#V2-U(GA{xHd@QubFL(hn6IHuvahM)dRIjZ4Q?bLtAq@56Q
zO2cUlC+YluDeR?uavkS~Ejtm%H*k-rntDb<R?kksfll(X8p_pjvg<ny-_s2Z*H~#9
ze$?<gt9@+RPa1w^PBrZKIPDh=ziK$o6ULJs-JMY_ki6!AXW9XetDftEtd8WFMEAjF
z?u#1!V0bk&spY)PJzFD{7di2Y2uc3baGlB0a8LZ{Fu-|3!(WUWJ+Gc>KI^)zp~lnB
zTN*TnyJKzV9SuikrETollK3}+py82*s$<h;{E@J?iu1mP2P__!`=Q{qC!B*^?ka~p
z<4fiJ@S5{K4RJaWbU1Ys(NR>#Q#xwth}Tg}=Utlog;^BWQ9?%<9c6Wt)UiGz{RtgU
z>Nr!wSxN^}*|(Onw2ou--2c{dPpau`A50FI$sr@ToR0E3D(J`^k@@t!l!`hMUG6&$
zcO@McYC3DW+#^3oW3#G`YC52!hK|ur_mKY1>N*B2b<xgNEBWEIN;P#{sqa2m-(723
zC+F16+B%-rQC~*`9d&dp9_XyA<5``*<ID%(WHNW-Yo>DT_fylD&3ZbzG<QFz<Jw}S
z^qPzo1Dy?ZG||zbQ>R8c<~4LT)-m?41YVKHDGrejdMfp;*PJdLZXM}5GITtzqp6M*
z9jTl`M{}y_NYc?WBmL9z&Q=do5_L@Rq-}ZLZOkl}tiz*&a^E4(oSrRLFL%8lO_G*6
zTIpz`qb;5Hq|bJ`$6d;7t%GW5Iwm>XB+IHe+i{i+8SQnnd(O3{YU;Q|_p;p?nL0Y?
z=)p;Kbkvc>b?L~{(Md-(Bdmiyf3PVdN5_aO2_(FBTuWQpw`FH0@n%BprtZ!AJzaHZ
zW74|m*qG!VmE`WOqw(d0t4{Zs=iT`_dg*vkhoWObe`jw!w)H;WpTSCF)xD&{_q@BW
zjz-m;UlmF1qhnlC_k$|V)lWLlRdx1fzI2?_`6C(_sACY5qGO4U!8%@Hcy)ZB<5eB6
z>3Cb`??>Qu9iLCje2X*INqs}d5FM<XH+8%R=Z5y_<V4>9=TIGI_j~;NJ;QapqhpMY
z((Aj7kWueaS;t5nQ=7X_)^~Pn;l4G#*eEH&(TwNko@c)Bupp04aKEpkQhV3-m0fy&
z;rWnm>zJiuwvLZ<jMp(u$8@fj^*=RpvW|~+Ok^T-{`OPGh)wCW9PWixol|u1>6BAh
z%=<lR3-_V=&dr~DQhrXGTsL)wjuo9!RlCAW9c=O%{;ca0rd!8cRu>EAKzy$<sdIEt
z&MSFJCb#o^9Sd|UWI_ixHz8Ihi*(d(;H2d^J()GIRL3$M`*nPwV>zeLu}Q~f9V>OL
z(y@+vQ0Et)J*#!B(fK49Pthex+yE!ZT4|n1aBm=av&%*u2QDT&Jm`6)XQy5Nlpx=t
zW2=rmIzH2}O~-Z}yXoW?9)7B@L&r`XyL5axuG7!Yx_;fA@x<RLf89%Ya5;h7nZf+1
zo@*}?r(?tIgni88)6TKKw_eoLeeq&KAeekW$3Yz-9bp}ZbR5>9>o90d$5$*K9ex%=
zL+250_L@#Fr~WL1r#&wURULhvcWW#UcP!xKyk6gv5zt}kuyvewyDiRJC6!lDNWoZ|
z`a@6tC96|JM^wjA7645(bPsIm?)Y!YsfNy{mMF(r^Hy>TJNX1(ygu#pQF1y@ztcLt
z)=|p969&HFQO0WL5y5(6>UI30<5wN$bbQB`yhEO!SlfIR(D8$gA9dt3b>DfX6JL4;
zC%V7OO!qZ*|19;)lIH8hc^+;$F4CE5&W%$tf79{1j?*r8w*+^&{!SwKA382EL85bo
zX;qV-Omq_q$e%i{b4TcStmB4`zjWNw@i!w`&v{eFZB`@C!~V`&f)t(|;QVVq4DagT
zix<g1JYM=cALw`}<i6nRJ2TSyJ0A(>aB`0QPe+`Aq6Xp(e0i-x5hM0k*Mm)~GP8V*
zD`ud$0q*gVMr?zW5acV);q-K0U1za_p3yTqJ!zn{fqDj>Gf>7rSpzi;)HG1eKzRd|
z3{*DINM7zM7_rn;G!UJf$*WIQXB7jB>bt8MsBWODa5kIWOyDZAKKH=D<1L+ds1lzt
zP|LtG2I?B9ZSZFnE4`KAu4CY713Rvy>Q_>UFO^93H+0vZUyeJM+u>OQ370bWJmIWw
zpn(CG0k?sMbjE;#T?TKbck=B)V*>;JO=)5v$4ch=6ME$|P^X!@@}*Q(<|=PlzFm2q
zAO09fG|<Ap=|2)m)Zwje?q&u?k4<ZCpjT!(-@w#Ka3>jHemzF)fxyX}2&p`ZDQSNz
zCDlMn1DgzNHqgpIYXk2X7-1mIKpO)u8c+<hHPDW37|1oy-axv6js~)f*j>sQ209qX
zSfY?;(wQX+?^`BcwkN%l0drlVvP7xUq&Fqm2KtTfMbg<o7X$fp&p@7mt_FIDsW+D>
z-3&}zqI5UF;R8nXAhO9JJq`3+UzFs^y2NEml->qNb}dneFEMupUN!KVfguCjeGT+y
z+zh<T=?wT~_({QmGRt75W?j}G25ntp$90Lc$?FvZ7e(iF18*33)4*HIf~N|*hA;w4
zl!r?c8Xs!lZOX-t<5qe0R#>VOxH_C}cq&se(!je0rW=@H;63tP#l{-=z`!Ub#lRRD
z`@Vs3>$2hom!tlq@x98PN&b)$1CtC)76s1uk%93Bj8Q!%FeU~*9G1zzvdQVDj_PqZ
zzUs#YrWlyYgJNA`=k-Nt@Y$tG^QFo(i9^OxWu}2y29`3I24)-h#K1fQ^9_7zV2**g
zGLaTvl|C>O%F<Yz55!kpAo7KRze?{S1B<1(MDR_~r2XXvRv1_>!j*!n4XiP+N;s_*
zglMe+di#-#T349I4TU-zg|INT7}#pyl7Y(xwi(#Y)6c*eZXyFa4IDFY+`ujayA7xY
zO5}IkW8gCb`we_yU@xagck%k%z&`HHW%=X<SY~Ch0|pNA3^DK(OS(e*Au5Z0+OZV&
z5_ucs5d&V@U#j?6`NvWo?}^D5E>--6mf6${=*)<L0Jk}(?v-IJRZIgx1GWLnz>iB6
zUX$jgg$&$Xs_+UMsIV+X68knGMhzS_u%}5k-n7|pS?mEX13t|C<Z1T_14-)>PZ~I7
z;O6H1_nNw<+;g2~{WNub&691ii{z|<Zw*{9@SA~iT+zEu-a*}VnZi3EzccVX7k;_P
z4}v5=3i-*v&q96?{8jM0p!Y!R7RujQ&*vInWLZ9H!7ss`KN<H2xBN1N&Tz&n2Cnk>
z4WL*6*9`n=;BN!}7`SfWhJo7#?il!syt?a|yoBQ2Q*Ux<eS5#POu1#?<7LWfE}UoY
za~^(wkT+@ujwRjW)YFO`UZ&hP@W4P^07U{|*Fz(AC+cICYq{h{2L2UtW|_j~e+EJo
zl6!PZB{EPOU9NM(+(iROFPcQpiw965fQkWB3ZP^Fr2=>&fF}d7Z}kr7?t0<tTq5rq
zEPpn)G*@w@Ntpo32CyYAX}+^lxd6%suw<dDLI7o!E0mDmS*BDDph^IB0(d5XS<_Qn
zEOJ#1;HO|pwSe6GFG!pGDnbq6H3gq4l-CNNb|HV7la`IAGOxOU*te6O3*gxR8ZB4c
zL-XndFyg5m>xR4Q2heeO?CTqI-YM58fW`sb4dPx9P53>B0Q#BeZz3T8X8>mcI2(W~
z0CxaW0+<@W^8qvspl<*#2hc2l<^gn|wEz+WXc0i00NMt??@J6^uA~Hz8bC55urKR_
z<%%bO7XnzgT#4+-BDM^G!qx$V;38=y&E3nDG|}e}ss)!T?HKt0G6EoPAHdS;u0D-j
z=a(xSl^H;Lr|ZAv3Y%F0bPAyQ3Z<9mWCzeCfINmYnx7LuZU7@2yLfdL;%tygJ6!|l
z9zYM#?-s!6Ps+2ddIs?OrOf;Q!u`@o2Jg?haU_+zcYr_kjk~wf6s~%O@=`#GFq+>-
zhEsCCx~pFR{R0>tz&im9U<3kqorNKqgGB9>00y(!*hQPfSLxUa<+T93?Rt>Vr6B>l
z8Ndp1xZWbKmNZn5<h2#b+W~wP%%9dYbyxu7S12SSxSRkc1TZmxcLR7YfUyi?0HXr%
zuTZMMH97z~R^!F4V*+?TfXuZODd)wxJ`^32j{^91g)%OH+p>!B;wt6kR>ssO1u!`P
z=7rq;w%o_8mX!*x=KHgz1u#8;F9J9az>EN92Ka0`tYZxaFq?@EU{L^{1n_A9a|4(c
zz#MMsPs-Cyb*1a##$B^kDuZQ;`2j58idM#QN?f&4S<G!hHv(7|K!utv=7pDUX54bt
zWP{X|0jv_TB7l!-@VD)<Xmho={q;)a@JeNkaFX=_YzSaq0H5>uKLLzxm%Bx}NH$4x
zGt;qBVRI|1Zk4hvfb9Y72w-Obdjj}Oly`CYLY80c#fc&-x-?p)(4V~l^jW36D?ELb
zvOj?NtCStmB>8~PO$^{r0MP(%Jiy@qz6?MMKxYyI2&__$Fz-TW^Q#1xkMac9&#M%_
z5OP%}B{8TLfGy1daG3#EvTFu3NPVzMp(I$?#Q=s_x>9lxLHb#$k?U9h$64W`He^AS
z69JqQ&N^fO>A)$*C&4xE+j7M|%lewf(Q4(J0RE}ra<5jt4d5KJV4|Xl?*jNffWO%l
zzz+fZ7{HYPuJW)7;Ab9*?Q<^$@Jj%{1~6!~@;k#`-E}^I-&lC7l?(LeNGc`FKAWuY
zFYCK52Ji<XQ{Od?lIpI@te@3NL#OM=YUNr0e+KYZfFF^?YWTY3`iA&PO<ptBRwUk%
zh1_NJ25?8JqEx$FUhKLTK%`g_7f8Gxz=Hsan<!!8VE~T;_%DDs6aUKa>#LQ=JnO`V
zC)X%**SL$AsIn)kn2CCsxkUv@;?3A$MN)T-;#s4VG-HQAX%l5klro{XVpaNt2%j`D
z=G$^?{<NlISrg?<aJ?K`VNhj~@+P{jiAA82iOMF@Otj&2CaRinnoKaNnW%2!854C)
zKqjqWqNb49DLtMt@zxsUY1*vrBB^DfwuxzLlvQgKVjU9&vv9ftYm{eAJZGZ589M;$
z36|KI+rUIa6Ia(L4$jyh_4FF0k&wnBq`ZlVB5M_UZ&rdxSZVauZQ^+o9uqH^c(Qm>
zQxnZiB${Yu#u80u+N9^6dbw*0lixrAiKluJF`2I>S2FkR%_63V&#g_=SgX)xs)?2&
zVPUi~v8Qr2BQ}U%m6{#b)<io-$wW63?M<Yc$THE%M26^hFwxP(wujv_1<yB3bsf$s
z)i~w@2{GG5m$gb46FKy7t&%I)S=Pv2O6XgjiTlN4<<Z?l52nw=OD1}n$T!j3j2$e!
zOuSmVG6|KLT#^@Mc6v@uJ3W6d&t22UL|@S#zE*kJL@ZX-T?0%EH1Upw5f%oS7;NG{
z6LA(^p-mH;O>8monu*s<EHkm(#2Y4tn6Wnu3r)Pq{F?aK#1s=lO}uUL8HN~ZVwj2H
z%%F*PY1zcw?b#z3lhO%^)f1+zRf4;-FCQ=Q9+mTx`+t?w<7n0>6QfP6TC0pPQ40x&
z)+*%GKe1N%z{EKEY~n+)aH3Yi`Em*4g-<jw$po7dOdL6yxwvAN$*h63%AqyIs768y
zQ(13xfI%zioX#b0>q0V<z7=!NVD`6X%-mgWmWkOWK9OeG7t(*YlR){WCgzBQoI~b`
z1rDE2d0xu}Vu6~e8;UKGXe>6dgfTa<Hq$ZUW|P)0<y1f7;)4QKm{`fBu`r4z-LjL9
zw(_htv4(0U$lu;sEWUTvsmo2)nOJXPgNe&`tFpPt#6}ZE*C{pDDT{KlnypiMopo$w
z37PoW#4jeco7llPclUf}VyB5+CZaTGVmFJ^#Fr+%GVz&-Ygw)XCJvg|YhoXZ-$eF0
zr44WW%W{$IH}M5yvQ8PZPGNJwI^}-TE{8bFI%RX?)Wh7=j#O$MG2t~4G+~?Ynedy?
zO&BIr6W`8E(qxtjR+_#}p>kkCPV6#any`o=&yQlCUANaM2WRA!U$2BrgiS<DeB<g;
zf4$Onz4Fp}<%tWK)H!D2xQVkS>TF9Jwq7}5;<SmcO`K$f<mH}XDyQ_~mHv4io4%55
zzA<sejNP5MqEa@mUT^pK*2Fm`eZ4ZJVJ5F{=A_vC3ayDB=s(~53zGa~V)c53<X4su
z&$O3aw@q9y@tcV&tRkknc*5_@S~J%lCN4^|;QcBkmqdP9kl$>&X5vp1w@l<#b6w}5
zYT~Bwzhu<mnl8#|jaX@B-1YKqBKaK?cTL<g@i)(T6OT;%!)?yvu4U5Aj`73?+&-IJ
zP1hCsV!e`gEva-?e3`8He@&27%Zh)@7_L{SR>VS43vDg5vk-5gm<6W=mleB-sJMk1
z7HV3kT`IYRg_0IZS$M+2lNKsis3`K%f@Lj~vGDVH<@S1o%H=GS7y0yiohkYC<-AH3
zDqE;7I#j4)p_(X=R~52zYC11kfHa?Pm&&fEEYz~_tQET@we$w%)gQaow(zutI#%qf
zd6^Sjb%i{`CB*e=WcHw>!3L$Ch372Px6r^sBMXhK*p1@6TeYEutPKk9faNzYc%OU|
z3khP`Va0BX<<<P(;wfX@Ck}huR_rMm%`7yx@Vtcq-4Z%<OK56g@`|$Li56N|Xl=#*
zgk&>`K3MQrFuzZ!J-5;e7DjeTXlbF9g%k^^7T!!uE%-ZSSYAT#Y@Ro-qO!L0&IPVC
zEB2vE8$o{9Lf+m&x`n<LUbc{7A=Bc=Q^@7Kuev)hHT;gPg{J(Hg<uu~^}DB&h0&K%
zNJ1yGsL<I$7Yp4j^sta;q4%lOu7b1LxW;rX+kb=7%>t3l?Cr@t*=6BH3;A5j28EJd
z7H(}zCRx5gQ7rVaK=P6x$(b2$s_omLlo{;0*QIwqnqqJ)474!ZLfvXE-h(&D!mC#7
zhTg$~uL!bv<Ve}qEWB>v4J)?YD0y4R5XMIcg>P9HDtuqL_yV0_78Z4m-C0WG`@V@A
zY2jVY7{tIJ-m@^uf^NZJ1T2hUOjgD1<#ZOt(qRiLEPP<$Lko*7EU_@o!bcWnS(t5M
zyoCuCrdpV0VWNde7CyEx#lliY@|V8s;~hPdE&O^sd0TDISIbg~6rR|iOt<j+2Ibo6
z<e4m_f%!8;|J{$eQJ>9EEPQHVfdvks&KwJKEzGlEH*?uP<juEmU_d^}iaz-yG`>)#
z;MheL&h|+od9Xp@1Cy6Bs+|&+36k(B%G`-7Ev&P!-oh$+elMBVY9VVZtQA6?svDIJ
z7B*Vg&OKW;iPt6zn=NdSrfZ|J)xtL69XBex3Umf-RCZX{X<?Uz-4;G$xHc-!PsnBO
zo<ck0M0x*4WgqKP>HWEd{T9C9aq&&U5er@}&B8$z(#G6pm*mzP)a4M1e{t?%3t#du
znUTZmD<P*gDjedIfvN?+s9oBq#BGYnHJ&z`l=(IC0^CX#{<ZMff@L9S;U}IOjHHE-
zg%cJoG<AiU?oG<p%T10k;90#Qf>8@cg-}v^b|!m|TWG(#Q@MKyCuP(r3#WyAZQ&as
zgWk`iHR2g&fp1{m&-_;KoZxqY-wXaA_@iLKklQ6Y{bJ#og+G}}3+HLj!fzJ-uyBc`
zV#U6nd(q+#aC>+q?)6;KD?Mo4mHe^@uW<R<>1<w==Djf~<kv0SuyD`9-(2q?*I(R^
z7H(TOTruq?bF?-2iHd1=EG(;%cGtqN%4vrxr^S!Wps+)ww0|u08`tH5g@+dIQ|D6B
zxk&2tc^P~JMCU4LtIm~pWTDf8*0JBeyVB%8W+8}TLBtWSG<juaT#+D(3ZGalo|580
zlnCO<AWCzuHFcE?V&BW@rGiKwSM27xa!&+fFL0fnaudr0Q8tLCK{N}ZToC1hcrJ+g
zVyZ$ARfSX(tRzU|m4#FZV%YK6vstPIQ9TF*Q6q?_gQz3DHG`;CsQ*+DBf7-A;#FIO
z1<hxIc(zcdZlSzhp@ha86mmxp4TU!nY+NXBB81iw3MEb<t{~h&JYU#b;3sEq9z>fU
z+6IvrM2jGjM4@Hj*yJEQLA($|N}(jRaE%;WV5F6FwGJY!P>1q%L9~}<cSbmf4B=gZ
z$PA)G5IKdK9ffoXB1_2s_bR(^mRyl{7Ay!+o^a0IHHdEiGpa`rJ%h*(qL&C?4x)Du
zFADF&<Q9&4>3@dMU|(q#Sf<T>((GTDok2ki4q{gjyMuToh*yL7AczlxcrA$6DNl9B
zS984)#1QHSF*1lZgR#eA3=QIKA#Vxh4b2=D#Bky72+j+}8OP(O$&3757Gw~q*Ii?{
zgj#NrQPLzCE#&=|)87{|R`91iY3v%u5-sNZG>ADtd=$j^ASMJcF^FkFOb=ob3-zn4
zj|E942l4AS*(AKCh;XW4=_6S)q-*jfWp)rVgP0XW_9kWSH`%;i*`$0@Xo17$1~D&)
z6+x^FVtx<{SQX7&%UC~-)JjV#EDT~%5T8xVS-MGC9K`-j$`V16r9#+6{pCUQC{vMS
zRWSB;ZgmiAxFxgV`HrsTwWPHo+!n;TAfi{x^X=Sv)_KdM4T2kk*d&CK%|UD_<XeUO
z)-nF-XT`P$u_Fjt+bKx0=%wU6bS#K7L7WX@FE@UWAIITH5ZAI3J`dtx5M#FFKi=AF
ze-K{;L2^Klz2t|amkNi2u{Tj)3bN@9!WTp!2s0Raf%6BU3sD6r(SitXQkslO{dJRK
zh;V6#I4g)?5T{s98(h48S(|4I57DI$@+k=i5fMqWQ0J(SV?i7jazgNAVXyLE7Dt^9
z;_DzDY*M}v`K`5i;k9`s>bt%T;)fu93}QoxgmXcB$5|e^z7OKop}4^hT|exP|0#%{
zgSg2W9^n3kl@P?0Ag%^+K8OoJ{J~&eX~OHbATA33JqWMvdRW9U@qUw<|2Ek-#&Ic#
z+}~TJu1mNa<R3Vlws&`23*t{vzQI~LSNYRBO&aWVU1x7E2YE`M;$J~r>flh~O56(K
zwoJ``*xeCAHxhgI`a6h!SWaOq4&y%8#fb68D?@lFggo2Eqaglenu7Q*h;}yG+laGK
z#72D^4Qv#(5pSc4jjA?^*(h$~NgJhYl(13K#_(y5Cu}^J?8sl^*l^uZ%0`8L9cXsP
zouu{OJIdH7ONot&Hp<y3Z{yYs$EB+=O=5-3ies_k$HtyYHY(d#w$72WFxI?%xHm0S
zvr*l~(>ChZfQ=e9YS~yn$5YeBQ#P_UI~r_Oh;-nmjSiA)b3C<e^lI#(Gtbx<cf(Q7
z#&b66+I$de?`K8QWo$O(&Ht`K^5PQ5s%wshHX7MTw&AhS*hUi@O>H!@;gCf+ZMcLa
z*yy-fp=CGy+~9cL#*od5HPbO`vSZ>G4$7O`NEFQ^8~yG(UcBLGVe=b6X)$N!JHB7(
zm{vXh1sf?gTH0u3BUM88=AEPi7ZRSk>{@>{rqi17Nl!|%LEfTy_O2U_Ha6PY_+e#=
zo$X{Z-HxS?*NSv!hK)=c9q5>i8Jm^Snxn`XN6~qXEaq;Fqmy8f%`st)ja(a@ZFI3=
z*a+Cjv(c5KY|OOL%|>@RW8)ngJ#6%}G04VX8~F^TjXpN|+URZL)zNW^jhAGNFWRWL
zu2<w+$AztqGSeLIO?J$h>UfzYvCq-p#sC|8+B*B${MBa1GtS(VKe-0lh}O+wDEzk^
zJ2pCAp*0(C+I$KYUbFE!gK1-8jof-Kcj#2#RlQ#B8%)+hN1vsRCKnyQO?C{mv2d~D
zZ5zXEY+T@Yd8%W|Zwa&OX63eZ9^da6VPm9?k8F&$@ve>cY>ct-K7}hBqil?}`4ftc
z*Za8Nx#`&Sr=!VH*H{}L*!a-Kx?0`uzSPaV+%Y%HS>;ggwVRc3T-WU++MhswY)rK=
zjp0g+n`C3MjgM`dD3bNmBFC3A#0OSRv}2^Tlk1vpV}J49EW)nkvtDiE{Ar707PD_-
zr;S}UKC$tsjTJUl+L*(z&?Os7ZOpSVpG&i`$i@QVYDc+^jyM18_@?2Q`A(Meh~u{|
zS&KPjaYA-S=i`v;o7c10wamtH8;j>V9^X#7Gu826j$@UL)iyTU*kWUijkVk+Ha0Mc
zs~zo+y4JCzn<am^#<8QglV!Ql#@Fq;ZL&e$Uvt>&93MtqTWxF;o2;=;YaQEJ61roD
z4erMV8y(*{JO?$$Zl=}7VH;oC_{_#$8(-KsV59a#$37dMGXgdmPI2__>70MrL1FM#
zN0J{ivJP_XvmA$bn4C@{ssFpH^#aFNHjdcv+faGJ%yL|Lx}4XB&&Kp+shdx9bbaIa
z&vp#0Q%<vakUDgk<?lyT9yiQ-ZexlmyWotCvo<UnK^wM>5X*J8;~N`c8xdy8#z|J4
zjiWZcz2!J&qvrD1KAn^jNBpIc=Qzu$aqO%(Wn*7z+-WIn7BjcZ*Q|{dG3Don#1!f-
zaeQmzoQ=P1+_do>x2KH@Hh$yAwDBWPm_2dlZTw{8XPf^tbo|Ql`@!{#jdtf<Gj=#0
zU3Rc}_pF1>zj|fzVS~ThxM<_5jcYdkuyM)8WgAxt)_B_SzUe4B$#LMcV`<2-Bj7l&
zS@Fzw{AuI5C<M=yUv|N9!^YpI9m!{6alXa#jc2%xe{I~cao5IuuEoYZuB*NCZyW#E
zcpPzjG|5roJ6D~591DMTO#9B|IO_OflEc2{ddS21SjTNmJ&$et$KySO)ZDDN5Q>Db
zZjYl_2t`AfcdBE22*-~*t|VoVul&VP<x@xCitCFxjuIi141wgtW@XE_uA@60PlWJf
z2&F?P6T+l$?7S))Lb*_klvo;HK7<M(ye{&JAyf*XeHiIsR1Tp^2!}#A975F)s)aB-
zgm*%*SC;A_v<M+71pecJ%^D%p4B@E|YK71sgoYxl9m2Cho))Yl_>5pIgCXo+noLqp
zB+nJf>xaND${U5yIE1E!@+PtWA;shl!GuD&QwUAD3nkABDUde{p}8~@1q&=E3-2!I
z3E_nhQW)V7I*Wu;v<#t52yLa=DumXB@-!hd(oRTb2pt$J;prh{6!sR(LOUHp=oCV>
z$g>0syvh-tTe#8!VHXkR336;#A>9gfdW6t3g!~YCg)lgTS3>A53VjRpUkri&r{utw
zLg*ueX6Xs><q-Obq`%-m!2yLjgM@G(m0uP9mf&lGuZQr4kRc(wDWpKNV2wjX^0wfx
z|LGkO!boXu5_~s=PeS-Kg!e)i6~gEc#)y1M2=9k5HiU_VV?Pk`k>H0Rj4PCL72^x}
zgu<B6lSv|+9Ky$iz0{l<!Zc}47n~(HLvZH*jGbM`=Y%j<de;cf6I>p`{16rhUl_s?
zA)IlMki~)w!crm23Y(mLh47Vvs{~gIax8n-3SU<!Ss%g%;Ty%7f~am5$(9hd3fUII
z?hy6}-yXsaA+)wr$gaXwQ1Th~lnD0<?km*%yin&0ksK(L9~8n#zYO845S|Ig>SvbE
zafAm;2q!||vtGR+_=NaFP=#nASRn*M(4|QoBZPo(Q;?gHLSA+VQIUiSHNzo93OUt|
z7V={u{_h|*U5lHJlOf#W@p98~DumM^d>z6!AzTgNnh4K?@KXps3qKpew;`Mp{+-|t
zA$%`{#%bY4;UsMSBK$%KzlHFt@biVe9P)bz7elx#l0O752^LtR9g-{mqyMMyTY}dM
z<u^k3E5ye#$DA)1Sb(=fxFf>5g_<<@cL@K4aGxpQu^dL(Fdl~RD1>5R6c5KN{2M}?
z5c0<|@IOJ0Eh6%wVZ;k5aF1%dN{HkM!IFZd!k|Jy?~`Ga79pDymJ6eN7_~%FA&iP)
z)DT{YhkqE=3pJ~RQ8kQe|6`}XAXf*`DR7`>q5e}s3f5jbjHjhp=YNEC!|*muepawv
z7|(@KKa2)pB!!VI!iHhEg;1?g7>&bdB27ma&M;hIBuJBKr2?-4LgDjaG!3Jf^d<^6
z7o<+XkQUM`;GQtjr1?S^DPg1vZzb4L@c)l$ElrMUBZNM*4WnHlr&>msx2q|yhH>n+
zD>IA^VRV$&)2?AW{;^|LIQEvTlSufQn;k}u@La*pf?Wjj1i2ilabUMFx`)vtjGkfS
zhcQ5`^%7)nA0fR3UlddXUlODd>hu-<av1%D^#7l(fx-s~Qgd(^ul$eBYqFN9^Bi2!
z8{*Xv!8Zlp5~Pzu!+2ZxurP*)@lF^cq&Ze_WEi7`yemlk_k@fRq=#dKykFSM<$n;y
zhhdB>luQWYqcFxxlf4B4Cl)qoaB>(&4^;j*j45GE4P#mu3&U6y={P-%8DY!|V}2Mj
z!<ZGuCt-XVj{OBRI~@B1<kVHi^Zngy)(N`iP|h5kP3x5!$3GrZHaSjDb1a}6HyqV&
z$KH09+M>Krt2@o|Z?`33EDfW71Op;i7RK^0ehTB~Fjj=IGK{anI1)zJ9mQ6KV;{P1
z31f8_Yr<F?#(x)^Yz(8<FI5)zD8DX@^<iw_?%1LvZ&A7tdpFs{_g&3gn*}dTD8J)s
zldWNF3uAj2JHq%Pj03EMYDqi8*b~NQ!gqzya(=hn+!vEwYr7}Utq{LAjE#%ZKM!M{
zC{W1ef-9Z(i;mNuaxjcTVH^(Q%P{P{dF%h^Mw{<+Pu|@-ckX1@#tA8JY*D;n_`<Nl
z2!`Pg$38#N!q91OeNk1K1veoZVVL3A&Ch{w>_+9-=Ns!1Cv1t`Kx>B)3ghcAz6m27
zMkI_AVH91T9u=?X?J@D^sNjq(E=rCIU-nM1lS1ZgQBE;~Ta?p+R5%mHStfBp$`4^|
z-lBXPMs6?9cg)>n*EvD{r;OM4VbrUZRKR~^&5Tc(c{TNyFn$fAZUoOpa6XI+e6iz^
z8^&*8{2s>bFz$qLF^oULP`i8nWHC(2zZAx02FgxfKgmTQ$rWi{4da@SLmwnjxN?8$
zb*6rQ>Wwh|5^__Jl3NV*2T7Z|d+th<?hD>yg=|s&=KhjE{UgF(x5RF%=6%JF!uXfx
za0Kh-6no5?;UOPEu?W2Gw73Y0Mq>X<{nz(G5g|{PsZjUl61_il6_21qgwLgUp;`nb
zBPbO?<p^4R>Uu)dDn)R(X0azDc>Y}vhnE&%nFz`Xp`@IU@)1-JQc>`C-wW&tf9fJu
ziSQ{vFYu}w0jDFO@#+yk93!WDH6wT`61$7FmSCL-YDe&N1aBWIOQ9-A@=OG|6N{15
zi{QBkzAWbM6G8n58bsiTAR&TVTa<<oG>)L}R;AKbrBMV;wkla$l_n9a&g?-U6`T>c
zBFK!OLj-QFi))XdT?9=dXcj?Q1Z@~Je*Q1WN3SOe*>|}~i%9JD;3O_E0#5|PmdC#k
zK}!+xk+3Nd5K~1?(n{p51=~JZg37c>YX#U|Y?5b0kS=`oKe5N!7xZ?FAS;5-5p<ER
zP7!2BkRzsOAvXg46NjD<3-t3uO^M*8NbFhhU8UJg^t(sULkRVI3dxV4myq6qFADNF
zr2?;3O=31_xi3Rn&Gm95_8(qe{UUg0YwXD|10xs|!TksxL@=11MDSAtKS%It1g}M~
zAcBPvydJ?D5xf<_P!^9b`M++-Lxj8;!LLm+cO7)?@0R>F0~Nu%NbGk*hSPWiA4f1H
zf)Npn6ydlC-i^eL!S@7*eiBE{Yg7cIMKVT^lJ|v-75pHA4-4fS@=*liBbXo(PBbkm
zVPawLBq5XOWTEA$5zLHW?pB31r$sQmP;&-%{mK8EeO3gsMgEE4r-eFmIIxgkeK&Ky
zEP<9e>7oc0M{q8J9o-U^M6fghBZ2_W{|J^x@L2?VBUll^$_Tbbu#FjHt#S)<BQV0f
zdhFP$tchSP51$`WpE{G-e`5C=L!28T*cjoz(lWP1u!;L<h?BzdZIekhM__JM3M5qC
z&Uqu)&6I6bc1B`%wmgbt?_wghD*Mi)a1_n5Yfl7u$1+LwMesS3#myDL{s_K^;6MZi
z>DcW&j(v5Bd+xc^+Q%|^$JC)n>`pBTt8G)hir`2D{s>e$6M;T9?_}cyAA_(hr|C9@
z`crSWK6I<K#;T~3@OMr!FFgWc(uPbk0xN=}5gdykNDm{RSCI%pJcYi953}CNC2*qe
zE@huMmNh0PIeVKDrH2XKNsdRrpKLxA!RZK2a0!(XPO|p4DNVOzPTHn?9l<vdd>g^n
zL!5(mdT5r{nF!8ut8P<xvAJ`gi};;n=lckL5b`6lyfVdkqXaKz?H7hCg6_qgcUa`|
z^uO~FT!`Se2!4;?N(5JVhLlac$ed=UUhkCpM+BE5xE#U2wTYCU>D7{?$Hs2g==PzE
zn>_0pIsX)XU68^XLjL03Y3yY4{ZegiMR1$WlxowvY$}^~Be=(iagE>R{u4n)IBCZ=
zh4{lpzJW}77{Q|mszgyWihsE`FE=S4#nM4t9!KyW)AW=(E{bAN6pzOKn^q)>qEVE%
z;fjwUt#5jcnNsN~cZn!UMo}ipXUN2rlHMnxcrprOn?lJi+mwgf6e^b%3nXQuC>Q0u
zh$(yc?>RM&W-CO2?MlTc4jxSARY^!?!Sfqj)#y*Vq#9AwjH1!(xaw4n;!cMuyHCZ9
zTc7e&6t$vg7De+YYDe)jb)sk-MV%=4`>l1Ocvi?Wg2@+B>P7LK@CH%TkK&CBDaxo~
zL|)YA)i8=4onxd)6pkpGM$zKOl!PdpQFPd@yu4j;$#8cR?(NDGc?m=+KQB!ZPC>k!
z=}wH|%_8m>q9AV(MN$;W!n?KX>M11bN)f)bVmx`PC|XDH<6Zo87im$niQ=8h7;zbG
zqi7e!AE$8X6xv6T9>t=QSbP#0QDidI$5Hw?Iz-ViihW1%`B7v=(J6|uM^Wx5vKi_q
z_OdIA+$cInF)oUaqUaJuUKDRdF*J&<QFM!<Zxk;_(VfeW;>9QwCNv5@9w$GFUQzTb
z?%@*>9@nW@tCWYr-cc-R;d<kI>*aQdm!b%qZ`~(~kq>kDl$+mf=TO)$ivCf&&Im^_
zAc}!eyb{HYdugM#D}$mK9F0BTh<0eCOA8nA)hJ#Q;hPs)2kyp<aK<5wVHAJ8nn_-|
zMGl3W=<O(mMKLOh(NPSKLL28E8O6JdRTLvc`L!0VA>BIgDID)bV-MDFm+;KpuB;lF
z&*v44iQ@ez&bO)ZK@^8~luy5(_Gn)ASUR@C#pi*17{!rxRo+|Z`TUif@li~OVnGxO
zqnH@Qq$p-aF)JE-MAGCarbaO>ijSk1!mUx<^U<8_r6oLkN)P$;D85<jnIVqt+OCkZ
ztJ)IJ>?r0$F*k}&qWF{(-Abjr+@myh%|!WzujI^&Vty2CCYJKFd6<?pEOSv5i=)^W
z#U@6ZyC90SQLKw%Srp5oSQW+UC{{2UB|Iy+r>->Vz0^bAzHcUZT+Na%_RUO8cCCrx
zezm+WE9R|_f(pDS%)Fbnf&0C<CpX!(If^Y&?2ckj6kDU%7R8Pzj^E2UwO!fHvPsG*
znH1w3wKIxcTy=5|M-i*vOFMfn?XxKQ49_u`ogcGj&dvTjiv6tBC@w|uMHC03h(r<P
zUXJ1r&jgkVBhU1GT;3anFN!at_=?dG|FbLR4O^T_=PUh`?T<o@LT9Ng@(fONX(WlR
zb0uRuH94ntagVvPycvZRg&jpmh6g$6QqRHrX%}9}d^<U(*SzdUHA*&HkR4`5l3W|+
zXCIB?SQO`?`0oEP^&L=B6kXfoC@h(W93;rp?2u=dxWrvyXUTCS=bVFphyf!il0iWM
z5s{qX1wl-h=<ewpMlb;?0+Mt1pKd?T`OoQ7=XP~X)vcTBR&6aOcnXPAF!<>d)ZphD
z1vsUfH6pV`qZo0}Y064><E;IOH;q}RV4p(urZM6$wNScq3cCyVK=KrRqC}m-@6=qX
zNqX$(Q~2c+w0!Ajg7VoBv0sCFwr`<lTx$|5QNG(d(a2e1QZW5oFm&Aq8DBJxou}Td
zN@wL?r*PpE9*{wlw^O)y3fE5IIwgEp%B54dOmQWJX)tfbuAIWvQy3oHK=M*P|4N)=
z`EqzQ$Bk3CN#UQ_<1U45Y4)vCxP1!S&y`iXMx}w7Ebp8`-c{*U?_@mM8ozf6_k+f~
zb%Z~8bPA7Y^Cje$kV`^t33(*sm3*n@eKlWwSD?%`|FV=R)B9x3>Ji=+=dDBqBovlV
zMB;TH83iR2lKiWOX3ps|;@j+^lCSAcNNBq)&aZ@d_X~fLBB6wYp%R8kC@G<ogccH7
zN+>O%jD)%po{~^jLOBUlB~+78UIHXkl2BQ~?@O|+<>?h9@PZWHNK;Y5o|Aq}6$u6Y
z=tiJckF005#R>CnsOl1GN_bL24GB}X#Yr5NwItM*{0ocfu;*O;HeZjOx)WpLs`oSU
z_ROj$Ata%Rgr*XNgs_AL5*kWav@M=0AtGVW^7I+Yv!~t3s4t;ccmGzgQo}PFan=Eq
zPHc<QpphM$w#C;j>JpWZCLvuyGYP*e&#uxv>&06!=dJAKY`iW0&$c+P-yuM|+Dbxe
z3Ed_1kdPsvjfAIZ%t<;4?Id)RkV%t%A+)w*srC{&NLbz7za=c+_W1CtF#?sh$7zDH
zB>yI#6^pYw)A&p1BB85<n1uaTV;m?a=;8I?>X@|caX!3`jD2>K{9A^2BUw+*NWuUK
z110p9&__al32_Mr$Ht}&&Fm|op9HE>zA-VD<MoW5_hMHHrsv^pFdTPi=G<sxkc7b!
z-nkYVB4OQo>2sSzx^9p2PNDF_5_|NF;SxqjcwNF95=KfGC1IL`=@Ldu7$ae#gh>*{
zN;pXyE@6ByR-v>=?ID?$r}kMmEOUYcmeoebCQFz?hD!LnKn@3OKQxmTl>lGq5oVB#
zR@y8HvnAi@%;fAkl%czMR>B+!&(TZfPoFFKzJt#^QnElgy$0dzZ7K65JWt}^&sZSg
z1=4?VCSf*sF_7e!{`=L-0kAMAUy<-?0KE3!*U*jFn-mxcA4*s+;VlVoOIR*p1t}w8
zv4nReERp<Mk|;d9*^C}%sf1<05F=*xU}eWO>7%y$incQ7^F0agOISrzB`j#_%i9{s
z_l$h#8H;o*vo`qc2c$VQH-GxP+Zn8H^jmAn>IMlLC2W<jjr5eTNy5hxHj@!6)3-0m
zez#ycW$zOSFK&--k?^Sml95;TCA(#@0eQ;X0=G-pK`jd~AvJaeW9<sc&I?m^lWR9J
z_%I&eS4z}=2?r=eG6u>xDB+NVd@}OOI4t3R5`L0!TEY<tM<tw+AW8h&3LKO0wS;dZ
z94AjXkc2NKoRC0YQ+sqK-PyMzVsu`WZfAVOPeV$i6imNgyqhv8^Q44tC44X82MOO1
z$u?z{rbS*Gka_Fv?ArO#uiuNUDv;B5Z0yHC@*9oFlqDz<ED5%RgalQBF2SJ9c`yCT
zCJ{|S>fH?5{HLguM0-@MQmJlKkZX-%tn{|0IJ9ySJlc)4*y1(mN%l4<v-!Q)hVAjI
zvw9FdBjIOC9l1k&m+-5Eza(6c@EZ-6gmV(kbB^2NXDPjf($7X?p)=W^+|M|kFZ~Y*
z1pW-_3pb6lDcG8?e@nPXLnnd0bx^_d{43MhK1qMHJ${+?IW1N;PtH{d*CgDNa9_f8
z2{$C%l5m@5r)So>Y9((5Vs>SFJmY5U4k=&0%-x`dviI-Rd90!CKVWY%a?5xq;gN*L
z9CuCnwZ}0^8iljqjyP|S%Oj)ej(A=f{g-A_G8atk!`mGT$S5eIiHxQ)3dtxeqmqou
zGK$D3Dx;K)(lVZqQA|b&nOn>#F5}fz=_xYOcf@%)8>Pj#8~d<OdiIX^%(wiTuP8`m
zWR#UrPDXhdgLlMd?}*cD^qbYK;+#H^@nB_(3Ni@Op;QcB`77S*RfXuus3#*NqneEB
zGM<!COGXV2dLguVS@zMT*&M58@Vb0QoRzg@)R9qF#@67~Je$tSr(_&C+l^1FJ24?6
zETg`R1~O7*e6b@Qk^Q?0={v^VjM1A|JK_yxG?KyBb_LQ|HYN@4WY7a%?2*OSsEjlj
znKH6CWf{$6w3hit?r1Kfg^ZT6e+ix+F)qrcE2)@2Cvr2Rm5jf4#OYt!$Y?90y^Ie0
z$?vV($)Hv)dMmrb^6dFNvpUMY!_Bud-gI_1nhR>{(=s~A=qsb2jLtH$Wpt6zRYpuk
z4(YHnPS?N*lJ7mI_26}C-DGr^(Mv{e89g}AjaW|^8>aPXu`}N6bT)4ZThuG7kBs=v
z`0VrDb}!DRui?}><j(2ON*T|{c$7P*(TqOs?bzg<adP36o$*0r8R;own~WhchRS$_
z9G5Xn#&8+4Wjrfmgp83gCd-&2W0Z{1q@IlNGRDXlEBjaf5yO8`UD(}^<T>aB8I#C}
zRV^lRj<@_-uo=s>JL6MjOp`G~#>{}T(`8(}=G%%_hx(E5EE#h9GIT(UjTx`9evXW}
zG8V{qLG~TNJQ>fCT)(wGTBjggz<e3c6PfKP{6rz2b3OJV+eafW$#_`?4NK`=#Rd+|
z{CQRSLK!UM-BUQqYcgJ!u};PZGTxB!ri>LbR?1i;<1HEQ%2*=%tE9JOEGB*Or@uqN
z<ISA&>(f3T-5DpaRK_wH%Y*vW(|c4{nSP~qKRPdV&IYSwtd_AhE%v^QH8S3l;Wdge
zp5)h0n?x8-(mL_$+MvzSH@kc&W4(;cBqkY3xeYwsM=~}B@TBc2tl1>v<KQ*fwhY%D
zbJHSR2kmJZ*&^dw@$R2eY*wVJJL6msZI`h_#_uxD%GfDmmyCoARmN@^dt`hj<Cu)S
zB&N*&W}Egu8T(}%2qtof_CEmr+8L){vnzVW!$C6=f$r%@@bxG)_f7`w%&xpS$7Osj
z<3|~%WSj`l`;zLAnn9=b1quF+ztsAQGB7#w>ws(D1SQ#bG624n@m&CXACx}?Wv*Ru
zHsBm33PaEdS6g&dO3*Wd4e~;hp;H-UoR(pb<4qzC^-G2+!=gs#Pk%XBTiFzY0_n8#
zBzTwN-8`x!tzTM%%PyAmN@v)=j9+E^My;RG<E5*yPansAp(2#*#yE{7FVwx?EsJ;P
zog*D&+?8=p#vd~Nq}-D7GX9crLB?en|4@-vw)mU+vLgKwMW{*SBF$RU2t5?nLG)Jp
z(qe>Je<k=z__~Z6GH%MaC8Jw3QlxQg^t2wa5t+AXkQ>LoXc)W09(Kj)Us~_-4d8v+
zPZ@a><W=yH>MY~2j9dzajmV^T`)o)if%^?(^i#PNf11am5x(YAkY7PT1%(ta_A8+9
zpZaw<zC4{VA(t?D=JqM9pxHY<%%@6P<Ov1E6!c4=e*(o7q$t>`V4H#x3Q8&%tYC<O
zQVL2dNaqg~lu=MtK^+Bk6_is@UO^QFRTXqt)CCGED5$7l-sC>K?y{2N2T_$3UT>Je
z`#cBliZg)k`+MtZ3aTr3Qb8>RH55O%WwV;>VRj!z=3FDtq~y+>Q(M8(UB2O(yDQEM
z7@ty5PeDTkjTD3w2nAsUslm_J+=%tb<=?y-QBYq&0|m!}AO0IZZwX+A-;GHn1x*$H
zQ&E5YRb^Tqc7CWwR+<85SDe7sT{(0sT(&e<&_Y3uf-VYLDrlvkBgv?swSo)<Z56ar
z{7Y`zC^#~$4?PRve|E)bklT~^yW?F7<`C|nfF=D=mV&1hbXJh9`0l9_X}C0-Ze{jd
z9|2ly=V5GI{+w7am+HIYT@`dw&__XE1>F_&P|#cPtwf2pvU`&9O!e$YX}mJMmjael
z%;$K|>-_rt6!cdxNCEFmZn`@jC-D^wQ2eWjtrh7{-^<9}9jDnGsDP0J^>o6m7#;3V
zij#tuNDu|X6^u|YUBL_mBNdENFiGK`cwn@GF$%^jm_PwI+ifh#xFSwqT<}V1=N*;1
zI%k|29-FB6_f^vAOxPVS@^1DN%5DDisX;RW(<o-E(~osaAv{yTECq8E%;gXT(q}8M
z?qxiy@XxF=`IW+7=V8h`1<wT&e<3L62j%m`Cs+<}$_o@+sN0Xgi@_(7h44ZJuTXLn
zEK~5Rg4YzhNk%A`xF_%U-2L7dnE86p_>G`!J~Hzy1#c_9{a>u$9SZPF|8D119m}vR
z@Jq3GgHKBWva^OmFITWa!CD3D6s%ORO7T}Q?<rUvv?2V@8Q%=9QE)l9sF^kIEB+PV
z#O(tGA5t9@Y*DaY!3G5%DcGc7Y(C%iZd5=cylY7ZAAzQkj}>eV`ux10Z;jc2^`BDy
ze``HqO4)zg5Z=ztslrs=1a>OerQjz8rxom0ut&l73Vu+qSHV6ig@Vr&>{oDra;xAd
zsU0AHm||w79SUG#%eC150+{JOdOFs8rtmmxfn$_`-&@l)(BTr{6C|MG8~<+uB)=q~
z6nsMo4+u;2h%jeyl7p`Foi$TuB+GY1qeH0|cE`CM`BA|s1-b%5fuulIkWip1Jj93r
z?`Bh@ndzcgW5!9NwRzy%)ynr`|5k3_o?=pM6}XBYKw5zTw1bkXk{_02dkT^Y&fU#m
zbi~(HyW=+&XP;5<vw|xMt}6IN;U5X&FN%<Y-xT~FpnaY?7)*!EIv3QC!kjhn|0AHu
zpTSp33#s%s#XBu_QNg7^&WS1)0$f&KW=lS2vgrkg^N!Npt|_>#-~pQ{xIrCJa7V#i
z1-Am^nGL&5i5-zSw`uJBpiHKx`W8rM<vm*dCNVzu1AvRcM+zR(wkJ?1fm{jXP9Sdr
z`4Y&Jz_#6S=3u8Ig(c%6;-5c(0tsJQh$>$>1;T|BD3ZVv2|v!6x2Ov%izdLIaD~nk
zF#{et@stEgB+xj4CJB^Gpi~025~!U(=>*CoP$_}R36xEsTmnd-LITrvrm!E<q<jJ&
zcPParaK)g1R&veGl2TM9fvO2qPoPEu)e^p6;EnVbcjfRhbHXQg$7=?aPbN^XP&$KK
zR?@E4NuX{50}7=#NZ_di>Ln0PAT@z*J5oXkhy<qR&SC$&I(yIC*_>k};hV>2X7u6p
z!W6dp3Eyl|@EVd13H-D>etCDiz@B*BJ@KXqL=%W5kdr`K0_h2~OQ3xM%@SyyK<flD
z5@?Y?%LI5&Z^?ZARlTheXuBuQl@1?f&$y@=#+!!|yhlBwEs@+4=Y6~^J0#FCfu|Gb
z6jWv=kd**^O80!}vzKL0-xKE@;CH6?dHGI^p00BO*$G^q*=K9bKK<`xbV;CV0=*LG
z%{eB}J%OGH&^z=<fOr2o4`N)o(3ujZ8-0CGocAZs{UW1J0(}$yvWQ3$G3M6dBxVAy
zslI9qNMIoGQPD}oAo7JQP*GFGkOYR3xhhJl7?!~B1pdcP5?FU9HX?!135=mh;jVE4
zqY}I{uMZQ9jPSW`9h<<*2`o%tTmlTA#wRc#fr$xBA|-of%}-!*0L(~WW&lhH%Bhr-
z0AQQx3ID7w0Y0;W$~i$fJ1CzeTLWNjP|gd==Yo>$_peTSK7bbl<qJXiVo<&mlppMg
zv)L;F@~acz;+nH~mDEV!^#tBX;LQY<2VYsgC;;9~;H?07JAro+SRBCrmTa?sbsEbh
z2`mljmj&g&l`8_6Usndess#T1x+a155_ms>wY13z>`M5n&UFcFOyHvgJ_ue}^I-t2
z56TTe$!<4MiKx!O>*k<j%Pj%$Nl>!or~lP&4JgS5+yATCk-)!QapJoZI1o@^Pf)UE
zZvgBI%KiVAtJ7G2Fo8q=wK>c_1NbN@mOH1oiWC)}C2%Z(;|YA8z@<P{Pf)oMIFrE7
z2~5qE^JM~30x|_Pfv*$zCaC;ADEakd0DPOkcLBg@vXaja!RwDfdFsDUN&<-h_7YGN
z&;r;FN<9HH0Qg%Y0Qf8GzZ$|$0J}l??^wzIzWx*dr-Sm}v3?2Qb3yrQ0>1^o??HJs
zC^-sSo)6$Z68JNLzXJI0puF&3n|}wo_}}bkyDlg24{4a-|60N|+F{kVc-IrSk-!6T
zDj?v^1nwkoH-K*?a616ljKpDi@Bgd0A6P}!KMLC9QjuH5;{g8mS9w(A4Ti`cl=;;E
z>+RpJSh86`6@`MYg;f*{fFl1j=5SA_C>H#RE&uJ4p((9RiJ%P|lvHtGkAI_k85Lz!
zlve@O&oKP9CtgnV&FsBB@rAom=vFGIsHCE@ii)aljmPBmO>`9%RaM^^RS!y5Rtvt;
zH_>r0oZzP?Rn$@uRgtEmHovN<ucCp9x+<Phk*Xr1qMnM73ZWvbB0eCq;Oz`PbhV5&
znabuvfcXT*kj0`AE^``kI5o)ms2Dt>2lEnKgV4k^QPEWOjVg7A51mfBie@U>s%WR8
zxr!DlGE}rt(K47_D;2E+V6lv&tJAq&W?Xc6NC`#@obts0|Mn_6aOYRW_jL;Tt~Rq2
z$-=}1W2a0NS;YTl1}Do;omFJ3n5AO2ikONV6~k4GP|-z2R~7v^H5J`dbXU<wMPC&?
z0$TM_(OdQRLwoXv_xuGrlc+s<WG$J|gE-LN^$VK4zCDHYzFVY((B^aEDh8++sQN4P
z4|k;ybGqpvDu$|lnwseGCuGF1V1i@~;gKpvshFf<vg-ebl+h~2su)LXSEP?o!4cU%
zXE$EO#9+_~svnjwzL!yMY9C_AuTxY^RWVJ)bk&a=IdLM)Hrzp;p<-t6D+V6_?o%`V
zd{)JrKsFWzXv|eHU&Zq(<^`|JFgzEyGfs0sAd@esc#%Wo%K3Lg8GGX|sd!oS-6c1|
zXp^}E^@{56IyK!Jf0Yy{l%BIU{(8{K8$tOdnH!BPQt=k;+qD*Nt5~e!T@~+;9eaJR
z@lxKLC91!&Udo@po6XJEEsbN#R4k{uHHmpmB1@b4;Tc=5QgKPe<$p0$u|~yvD&AMI
zR>dh5l8SXIK2UK;#bFg6s#vdLtBP$ZHmKOB;$sz?ReYqP)vXv)Mw=)|G`tr=<!AI@
z$>$R)RH5`ODxTXLXOQ+O8`tf}dPaKNRqRl)N5x(hJ5}tW{M;|Go0Qy`clSHlYxc(d
z|32_;HvcyS;e9IhQ;`EaKieBu_r{;(c4z+dgFy`?^M5Likl-r5RB<$@Jg(w%3eO(}
zK2vclsNuNe@`(U0h%$3$^`W7l-hHLwYZWI|e5>*Ty}W<zjeirgiL6SeG5L<nDwO_%
ziXW*Ul>gFx>i!$<vtI~3J1WNPE+;6fP*mtD4BD2xewH<%LJdSkBXOqpU{0H&#Vm(O
zu~cz}A{~6SRd_0r<h}}51=AgEC-y17&)*qm|39fXP1T;*r~bY;6OU)}=1>%WQSqya
zKUDmw@+25ydy1V?aXvu!_dv_e1|>7V{Fh1Gw%}@xbNoxi1r>jjU)N)WmuE95V*kwU
zUJQQ7(4F%957mlFr(uYOt17Nhmo;?Pa9za>hF%(;)NoV9EgEDEg*Dt(aYsci4Y@Vk
zRdG+n1DY%q_k%t&_r-72DacWn#d_E+rB?2Kk7)c=KNGtqS3eHNd{G_^c{LQ!!2P&<
znjf~g6$<9p;HNn9r*rq8s#;L<Q_VbhKmr!gP*g)%4dpaEp`n<D5*kYKhZ@rN=1mED
zU}CC6-W)P+@v`jU`{JcEl-5v&r(Bj~uN{`j%?@s}_Fv<lSSYUn8Y*)*4ZZHiDrl&r
zfoq?N8aO)hx{Uw17-S;4s)lMBs%xmB`PO^>zWAJ58SUQ9CRTfwWYZ3FxLO)&YiO>a
zg@!sB>S}1Hp^=8CG}P0Osv)8wq(NwYemJaw6xg-01s8_vuEw|@!MQUpS6_pDzeEEK
zFBb5<&$?*rpHZ>K8k%TG;~X`7yR%r`oyD4Jhz64#I=L)=c)Urh(nCLE+)M*kTg;VF
zaaw9<r6E&8mWI|EGDrap9W=Djkl2>O>9^JVWjkfNo#yAF*XbEt_7Y%@j$b=!V488|
zzWCD`I%&w!&_zRM4cWoCE#FJ03dA(LGd%O&Dqk0vJMF4r`@T3gRoMw^-u%6F4-Gwo
z_Jc@a4ZStr;SSW$hXS)Gn@hib8ki;MtAU3-K3|sIpX4Q;Lo;btpV2Tt^LKms6N)iC
zI00_ie6i1`)ldz?G;GrFv4-IqMrfF>VTOj08b)cDs9}-@9{d=s;qksWxB149;2Oqh
z7_VW1hI9LPn_n*Sdhgsm?2S^va<b;9Q>JR*Uf7fXrT`FT@@Jan|K}G1Gd0ZOtTimw
zFk8d38eZ10P{SP3P{RTZFKC#j;W-WSH9Sv_pYau~(*AhE{c+}tDg|zI#maQ1#9t(Z
z1LAPO$X7Zq8lP7*ysF_14R30G4(c@xuLo@^jqvv!Dlbpxmf|7}Z)tctU=W3bn$8LG
zPz@VUY~I!QH<egR(rH+#VVQ<C8s5{eT*C?tt2C_Ur)X>?rG0;V@Um>~k#Rqc{qTR^
zbX}aCy+7XMZcN@)tkm5S?^E5*`{wQg4IgUwh;!T@U$0>URpvo#qXyEA8;B$J$7!RM
zrN`*L$xW)mW(}WcI8NpghyC#_8n$ZK7EI(*Y6t&o*#7u-4LdX(&~Q-0P7S*>?4@dG
z*sbB4{qa2-ejX8H7UJ~&I03d_J2Z3awiNCi?+^OPdmw&D!(q+O34a#!`9BRuG#sU}
zr1^fF5AzbFAuZ=I4SyhI^KhSrCn$s(Obr&5or0&~lm?0H=C~TZ)9}59lfe+*lD|u{
zsT7qC#HmoDM#p~8{8LO!RQ^atH}vyb^$+-SmswA>(x7U%@+fw%d<qXTbvzK)H0T<P
zptm6he7T)}AWlxvK@hezI2wM{@S6r#gGU+DaGG{?K<3tHB&qq%effbn%QNI@lgQ5+
zejynT_?h-sa`z+G%G`=AYZUvP_KJ3<TgrLbsCTo^aYiRHINz@h#19O}q}F`5J>@SA
z7c`VQgVJa4w}y*UWCt+^mo!`^8U|bg{}6fVj*dw>u4=fZ`6tiw=(w)ohK5|a|H|iP
zP(RKpd5frOxI<m$6vm}Iq^bEO<(`HulXJZ=K-?#hZ-@9i(C}JmLEsT3_WJ^lgP+&y
z?H@tUts~r2JW)hkoL@gL``3|QM*$r<I=bj6sH2dMB07rd{L|wCLr$g?)-k0^vG4u~
zIU~YP=qRT1@4iu2M{yk~I%??tk@zx?LnU;S(@|bWNgbthl-9w@GXIv3LkAy+&bJk1
zIj?8(vYu!lm|A5W6?9b8(JxOrD=P(+{~l}SYn9-&YEV|wQ9S_sW>LXGYwCD17`;|d
z)(%S6cYfUZDIN86w9?U9M@Waz(NIUDpg~wiBmh$XYv1UKf9}10@Y*0Kx7E+vSVt2b
z&4btDU*&45BRznlLCN-M0Wh<;X!c*tOI>rd(2;gG)H0~q@}Yl3U#=-Kbg=BCqm7QX
zI@;-IA2i4c>N^BwM;#rD3pUFPUXAfS%;)LgwcX!-Kb-?OTSqJa{>&$KjtO_w(M`u-
z9Yb_<*U>{qe;sihJ$3Zbc^<}Z(_6=c+aUsdb@U0~?$yMWuHsl5(N72Kw_fzWJ`=z%
zw=Ye2KmZTaF(?37^X0+FP#wc`jMgzm$MB$j)PG+`=olHm|Nflqm)!FE9IInIN7S+Z
zPG}qjqmWpAp)|?DPkcts6_Y7lB$|PA15<TO(_!c^bxhYWL&pXk8+FXoF-yl=I^NbX
zTgS6HUexiDjyXE!>X@(Nc^#C`+GE5#9na~=oh^PC7EW0pUg{z0KL{<*@d9Q0?~*&8
z^2KJ*EYY=b>dQJ7>Ud4Z>pEWfPp)1KfQgs7QO4NGM?G^2^$oufRQ9VQ-lS~j7K<pu
zsi}N@N5^6v@9D_fLA<MDiH;RIR_Zu1M=aH`OviFEdbC(~$L}iZT1crQnp_MKrB&pM
zjy3#xxJC8gYyRsYw#<1>ysu-ej&(Xd(D9*;_0-2_#k0@*4^iS%^lHdC5a&cb(y@tS
z={Tz6V;!4y>>&Mhe4=BEj%|D{gxXC=`BcYN-M>=i>(3(Y#n6fR;>^JC_TcN;OQBaM
zi(NW)lRG*N=-5NC3?y@(j>mf<XJ(2wJBhbDh~G9vDKH0h9MW-E$NzMERYAlbgi?=0
z*G(3G-4D&LEmB8?N!!nK93wAue6QoUj?Z;`$;RYS8L^~m*%Lax(2*y<=-paWm>Qmx
zOMI>48yzQgd`tUtA;fNP9Eg8ZLi9QoAve$F7k`xyKj`>ThoU2)<JHHZQ#vHdzm6(G
zkQ%#wY2KxnAVG@9gsMZ+p_3`yMBAI8^9{uZ!^7_t5=AeEzN;uK9kz~K267v4bhspo
zj=ywxI+E1N$D!Y7C>n{Mbez%gvyRh&on+1CPouxkdRz$&x)S<TM~jA{d1-;(VtOa>
zyN<Iu&gnQ$0k{?VLr1fEVs{@wj`y4_ShKI1xS->29oHx}Ixe!=#n5FP|LCZCzSSii
zKdp=IcrV;>PxK0<x|+C3p}H56VuAuzsg$@uBdp_|j{7=p>AWKXcXZsPiS8TD^C0v_
z36ZCa7{NQ%#*5S{f@3|<@leMjvX4ajBsy)ln0Fymq^1~}M~u508n!<A;*%nefxHH4
z8>nL-pMm@aV4#A50tN~iC~csOfkFlf8z^a@lz}1!YUHWEZe+O5+Hg?=6yqm?vRF_S
z56YCFED@AMn{7Dmv=5`te-*h=PxPJ{E^DBif$|30ZVdOGBo42N7HX2(GbUD_h*UIC
z$v`y&)eTfO(4mv4VxX#levN(oy$YWcUyt-Pw}ye52A(uf%fO5)p~}}ow=!dyO~ryy
zVt5&GxvAg2u7RfvG&Io2Ks^H?1E~fg2Hwex34W@VD{SyaN3rky@Y;rA_`2}6!Qq{e
z)cOV*7`RqR^g0^hKs}0x#)i+SrUt594Do3a0QcGnK2ZbrCks|KGtk_?Dg&zxv@p=p
zz%T>D4YV@Q+CWbZJvJ-DKpO)c4P+X4I!m-QFk!N2Z=hWOP~iE>r-Om>MSXeBVlx9d
z2D%VW1Dy?I8;BVgUr$iW@;4CFnxC48^Ml0CeZ*JU;*&usT@7?I(4B*>4acX1GiP+_
zK`M0-h0_G#+LOb*4D>e8$3R~L0}Ko#Z4LA{5I67)dHq%7?G(XhR)f^Zjm5cK;?qr0
zl4X#A!3KsH7)m+mE%H3yo#@d7kv<%n{5>#Ej4&|Lz&r!b85m_?w1Fu!;|9hU7;9jn
zfk_6&5qVCQ{p1l<%84~!MIQGMe~%9j$@)K=Hrc@3c=)xkStZ5^0@DmkH!#b<Y;xJa
z*T1IBq)fh<@@XkSR41pVn*C$X8kj?@E`;WC(2=56T+}ZlW=;z)`7%=CaCE+b=MB7R
zV3C0Z23|0*(7-DO4@O2`H1Lvvmnm<%BKpKIC9}|{QPEiZayj&>f!7SYZr}|AoAUV7
z9#dZQT^ap+Q}pw2D*uVZn8M;M18-9>3@kN3`}vN6#RlFblDrCRurEtqIq`XWv0}bh
zW?;F26$Vxs(Dz5atKp0B$YO%BN1)DFzg%PBJp+dg{LjGq2G$z5HB#&_u+G2-1~wb`
z#K4d5hd(s1!N5iXe@+(b4QyW@rs8}=Bn^Db9=ZuKJ>M{~=!5Xa+o9Pl#EX^1v2?M;
zz?NQOtAS4qP{PZO3Kty~-o~FBcrZvLp5T2ip>1hmr-5Atb{p7Z;DCXHWZcH+UIY6K
z><>o&c$Vm!OB6d8@6sns%l7fatY<rjLzMF!x%#Y)p1dA95-{SVfo}~QHSn2%V+M{J
z_`<-K20k}%!a%P5Q8J6q(TQQkBy&59uSm22v2OywC||}GhOe3kx}*hV#dik2C*2G@
zYAb#q8U|$A76YdYNF0TXn<u_1D`?FYu84jS4<`(qd_kxNG>)|{Oq|KPr>}&%AB^nH
zCkz9o0n32RczcG}?v-R5vZsLf;ZcZF^9&@(dJC^x_{qR&a>T^{Oq?<Bvw<uVPn-C~
zz^}B8Cd!!j&A{&lZWy>p88C3pz*Sn0&m-pz{9)j40~g6D1AiI#=9S0=>hDNV;BJUv
zA*1g1k3?ck#3ciliHU(LWPPT{epWPJ7NyIe>3e-{chX_F5ZB24>Vn-~C)!7%BWsIW
z25!@Io5*M4j)A)*j)BJp?$I2Prv@HU-XOl2k{KEpe)3?v#f<R#`F&~Jm8*3w6S+-f
zJtOj%eqc~*W3<lnPG-8eT2_#W`ArlsQPji}CJLG;WTLQ%A|~wmB3@G*?k>jU7hNBP
zXd-BQp8Y3O%tY@&DJ4ymGEv<0^*SXeO9Ulff325#_zCgqtKIvJ7xp|+)<iiI4NNpN
zQQibhJZYkqi3%nvny6}`nu$s#Dw}wxv#4U?!ashnM8`o<p@k$h7z|W5QNu({lY5RK
z^^*=adW(^JBL_3;bGX_j>X-<b5GLxHc*;aQ6V$l$QR4lIqGEngb6B|b!8oJnu!&R?
z5fk-IES@ANDr*Xh9T}o`N#T?dYaWI2R1u9#G&Yf8qK%0rCYqXPW}>-?sEITa=_ckD
z6>TSG<?rSTSmr>#T$U|bm}qIDm5J8;`P4A6x>iom^HLdUTj=s=Jc)B#6CF%+G||pP
zdlTnYMp^l|jwts*SZ<m((?p5WC2toIpSBdlq?3uxCSEl0l8I~+F%u(Aj53j9qKk?C
zCgLW#n&@Vt7dc|0yNTo^(ZfVfK9j}hK|a6A)faMAk*k*IW1_E#ekS(rD%ttzSl9Zg
z6glG7en*FP{ld?f7+_)uIcQ=aWuTlGWMVM+RYt@=3QsH`&Oa$A!xYqECWZ%6G=gMV
z7A2$SloBilg#2=}i7_Uoo0wr@tch_ZCYzXIV!Vk7CMKGgWP;@Cdocc8YAU109wWm`
zmPOrN(dh@{JC;SKnt1bIe3}V!Rhas6qLptJW}28~VxEcTOw2a%tcf|~f(foE>>M#+
zs`#b3_^XO|b!50+s!#U$CZ0F3z{Cq2ak`J#flGdD*<^i~7}DlP%ZZmwETk-%_`t*~
zCSEo1u8AckUNiB!iA5&fA~6q^e1pJ0p*J~VDe;x?MUk=J+Z0sF52bNMbZBR>;b8oo
z79zcSY)nNlXMK1nCum}|i8Uscn^<9DrHNJKY`-w)Li<mW5~YoeQjc~LHPU?eJrnPn
zSZm_!uyCFC!(|GJcH_cte&jop4^6BmwM}d{vBAVf6Q7vaV&Wqcn@oIcVzY^z*@9N3
z`{fX$^sf%a36JgK+kumX#G_{7QxjV$x_3id5Y@gJDwQL4@Fx@l6Z=f;qJ6s(+HGQw
ziJwBE)>Xg3;bW1PyZLzTH*vtkK@*1pNnoEPHbs9r7}tvnHfC(bsQ8G9qtssul`VW`
z;+To+CT^HGZsKzjt_jb?2@_wK_|e2E6JMJ6%EY(SP!k^x%loy7Z%mvF`u|~UxXy`4
z!&T9*FN9ub8)XEz^NYy$CVrsIX9`*^(u&Im$%Je|H({7iOe9RGCNzq7x;T3z!my1_
zq{vg^$64Je8yjj0(}YE9X2PNPHB9B2y>85(T~0Ya#-`Q1wlk9C^iBL>;!hK&X=5*h
zeldA5EY6tt+4O_|zF|SRJ-t5s8_m}z(Q_uwoA{m5GOatGvjK4HV0`Z&KlrDqaUX{M
zqA4@+kBKWL{x)&Z#3d7#DLi%4_Luja7Z)ihhvFponn>!-TcN9*(UkD%TcK<G$(0cO
z0z+=vkeeoMnaFRUfQ8#M{<O~%MJ@|>P24l_z{Eo`s7~JdCW?Jjvcu{qpSp+QwET}u
zJf`Yx%SEHT_KoZ|g9Sh3wvfjHon~Ik4<7PacxQ@eA5LZYdmd5HLLm!fER?lS*g_Et
zDHcjtC~Dye3&kuHx4<yFcB54Cg4UG^#bAl6Z+eHhW6G4YP|8AS%TF<p3w&0N5C3!{
z#AVLUYr^F$l(zs2$7YGhcf~7MsA!>mif>q$Ug(-n9PKEm)Kx50wb0W-FALQyRJYK~
zLURi>EY!3Ru~6T_lNM@Oc*;UO3$-oOu`uMHP+bcL?}vWb6efR(9+h!uOA)dlh>wL-
z3#2(MGjZmcku0WDW6NbNMFR^BEi|<dwa~~yV+&0zu+7b7(QXw5tv9<$%n{>8hSMyh
zTYgkSFEIQ>gaPdrH+|V?VWFjkEDKLtXl0?bg|-&jS;(;PSA*0x#Q8x;iHjHJit0nd
zO?rphTj*e+qlHYiZzI|?_MaZj1mnG0lSJVm;rataCkvg4hJ~&cvMt0cT*(kQB+mLU
z{SKGLzJg?nd{NQO;;B4zo*;UV!exA`&b3D8e?rtF@};+hJ{HDV7;mAkg?<)>TNq)X
zzlFGkfffc?*iue>QcpZ%VSt4mW5i4QB3zcLv&CQ%*1}K=!z}Q%A9HuT#et$?!%$J=
zR%m~gX!e45DW4c=VYG!Y7M$N&jj}LnnD4mRA>)U!7Ix+qPgeE=&IuMKT9|8Lo`p#k
zCR><cVWx#C7N%O5W??${9urp=2s)s7bw!&)@xxa_WCRs?mWA0Cp0zN?0xRV*J`+<%
zi(&2j7={flHBNob!hCX>B5L7z3kxi~VBwTVWgxNadBMoXycQZfJ^XSr@v?=57GAON
zY9JL9iTnNi*-?@S9LO)U*5VBdZ*ou@&)QgI;VlcfY~;4_HdV&LHx^D>SZv{4QqRJt
z7M568YGIv)4=gORu-w9G3u`Q_u&~ndGgPZ63?;;CdHukHR^r@@?&Q>a7T)LFuZGrI
z{yKtkJ8-#g==vRsQ(Ql^u-?K)7B*SfVBtgqLHn>V;4<wz7pk-mA6wW=n*3Dq6H3&c
zXhDd(7ef5{bO&GBw_4c7uNMAiVY`JL7WP`$N2XZVWns64Jru=GBG2G($rj>;s=jvc
zm3S`56#Fe4piWsh6ktwep~KzWSxm1Yig%B_y}ZLu)5H-AN2w9SjrQLHe{#&iadv(r
zGH94@Y1t<q&gBaWUt0Kz)1(}(^y7A}B^jh~+=&fE{W3oAEeU1eHw(X8_};<~7Ay<4
zg&)aBN}vVJf@DFqpjb$7UQhUzyya|vVYTG*$gM)6#TZd9B$%w$Ef^L|4hMgB6A#7r
z3=eZ&^s0^p*TNYKKU?rDBpLZzIBkK;sABQ(8|l75W4HP4g}UeW;R$QQzgS@TD;4K>
zgdrt|>jZJu!Z{1qEL^v6-ohUiE?T%`;ZKsw!UYR|Q(Q}ly%l{VX>dpcn&Qg&e1Cn}
z!avk#3s<RMc|@5>-TUw8KryCKCHI-VVQ_WB!c7bJEZnzni^ku=9h!aW@*RH}{%%t-
zJ<Vrv*BYWm4WDHXEIhRE$iidJ<wB_Q)bODb(XrjdqlV)Cu<(!;;*S%NJT~&$Xl0|d
zjeIup+o)lqri}tN3fd@bql}G0HVWG)ZX?A;5gSEqJYl04g+E(-H&K+E)xAPlL2t`f
z=B(c7>xUU7Y?QQ7$_C-ARZ$A|iW-9Jk!7_-SsUeSRI*XoMtK{sQNcz<8(e>V-BY}H
zD9*TojcL9(@u^`^#YR;d)ofI^F}$cKJT%PN(Ij51<=eV=CBcb5X`_~n`ZgNasBNQ;
zjgSptqpppoi14s*J>p+LeAdBVxjc;c>VGXH!ZuQEoO!EzgmY|?y6#Y%!4ECufl*@T
z!%#yTjclaZNVn10MiU!NZA5KsycRloC{B~hL=AlbgDdLkx!j_ejpjC5*l1~k^&DvJ
zo7wynn%=#+5NW$3oL7d8Ha6lmp0Ux^Mmrl_Y;?8J-bM!-Puu8Zqoa*X8z(oE%(Brx
zl*)xIla|jt3=ubKL}we>Hexn%Y%oQ`%86|R12Bp)zn+~D=7`;FbhpumXxQjsqo<8t
zHhSA&5@W^`Kb4WSB}y8;9rfjetl2OmOsVe2;YeX2u1*&_{%A#s8en6fjd3={+ZbeH
zu#FKmM%ox+W2lW`Y)oT#%}0!ba`b0X{g9X{OxYV{W3-JiHpbe%pQR-4c~V$Y{Oob#
zLE_%(aAqSh!Nx=zQ*BHO#+_tivW+P=-dz(V#Wpoa&3DBoHT7${jTts(a>|sznxbP!
zsE6V|g~aa<Ld%PYFaPXp4is~2%(ZdW#yK1FY&>UUw~alVwT<U(thBMp#sV8J*m&K>
z8^p@SOEwnTc*XWNt?~=;GJk$4#8k}SabZg1tHJAQ)Q&ddyTRhGLven3lg6JI+E`-a
zEgF9t@7P#O-dzc$Tncfcf!SKFl-VI22X%I-jb%2L+gM?PHPjK7v_GU6RkiQ*PApg3
zSYzWO8=GvrXXAYvAKF+?rTewyS{v(Zd_ch%Ci)Hu$8Lqb=;epm>|}$Di?>4?IqSIZ
zK9~XK(zRG&@v)7~Hn!T>X5$kZTWow9v}AnCv^?d60cX$Q{%U%=jU6_2+So-=Nw3fF
z?~SlXpVsNors#q~zWJr%?6tAa#wi<;jr}$b*f?S13mXS*9I|o5#!(xGZQoVVzyHq$
zW2B<>Q&-gO&YI6`9J6uU#^+S?2O;h|<T@Ou`DMPB2p{|?ER7Ri+W3mnZsS{;oq6JG
z8{gPyme)@dyjM^dEkx_toxZd2J?(>yA8kMCXgEcD5sxu_v3y#%{Nea3IpV`HLbjpU
zNZR<xMuN?3ST<}Mnho8CVZ*fjjgP7KL-|LC^MB~4j8;4h(fqEO>L<?~8?Ft{_U-e%
z30X8Rv=yf#sigC1ng|=e+2~eU{A}YF8^7AV`{o`ErJ7WtyWzTi?CuDcC%@ZZpe66<
zaNforG;|KiJNVPaUpDUAxM$;njlap_isBZTV&jsHD>km$xNPGe%Arx<i#&qSGSRCP
zxXWucuG_dl!cv9j`JZYp@QpmzHIxThR3gCX+z$G@6O_^*ao@%R+B64+9XzBFrjd7$
z&%t9Gxg6wnkjL@k_KrE?M4vEou<ZHsLE%=-g5Deya9}phThPIz$05#+L||%&WrM@<
zA`Xf=DB+-_gC`smb5Ptt3SV3J7LQzG$tNY3PaMjBDF>w;lyOkj0Yx`gS@HDY_=H0(
z_^Ia*Uy>Ps!9fKFO&m0JP|-mp2TwVu=b*BKDh_Hoc+x>t2h|)@cTmFte@Fw%<i_`V
zqAzw4yZebY<Nb}NS`KPEsN<lngE5yw)G}t3pS=;HsFUEgZ-w%=6(I-0LBv6Q2Vn=P
z4u&3%zwvy^?*S{hqety%;Gm&{Mh+S~;6};Nb^i7Q!%G4*KE22KbBsDjbI{g7I|u0w
znmK6YptZw)0u^oUpoN2$4(Mel;Y5|2?+o<`WH^|<yX4!~LT!StG#U)-<y6t$K?er~
z7j}QzK}QFfWY&dHmILzl;gQIYhkmlO@<Klu*vUa>vf!$}u3>`r*i4b*pbHtAMBXI2
zI_TzLtBY+ex;yAWR=OzYqNjsi4z@Yi?x44WJ`NT-c*Q|q2mQ!p2a_H2cMx|lgamQ$
zjDun21O<Meg8>fS8tSiim}nj3V6X#@t5y?C7gOwqIT%iAI~eO=goBX|MmZSG>30+K
z=IhFf14pCe1;u0SIA6NPIT-I?f`f^Uzi1*oxyE5hf65@oH;I$P6bDlsJnw)mV;U*u
z@IQ@Wj)NHvW|A`X^3HNV!dioTm-ouC$ZQ8>E*~oLTnF<UJm+9OXF4;?vjGfFC?NzW
zlaxBHL>4%B!NH4E0S7M!qtJFW$>$3Rm+JJ7T$H`);FEiyWe%1*c+J7<4&HF^rh|7J
zEOxMnG$B@8=LV8bTeq;FINet?C@Q!@eAmJH9UYc9SV|$e9y&fQ%q?Bc?#T_|rGJN3
zI9N#<I{3)JDhI0_taY%?!5T7gO!z$q?^8pwMEjb85et_FUmu86D<(d0@FBZ(uz?f2
z6(Vkw`TZNi7q0pa>-R^Yv|FJ~j=y~V#K9H^A3NAgIk_C-;%HH0(c)nA(?D^yQq15R
z5GoPp%YJq^*y+G_;5gXjV7G%W9ehQyIN0mpGY7{U>~pZ+!C?pgb8x`HK?jGZn=?h$
zOp$w1`0vqK+|+0@D7?RzIO5<@%M>!=D5YpbcPB-p*YHh&{hT=N;ByBjD575%Z#7?h
zK?NTlUU@x(&WNwf%zy3R8wauj#lcAj-#Yl-!4H9^d>62T)1gjPjigTgp}>z0PEia<
zzyf~Kl~Ea&ij)DC2?r{vbU1D}&>ZL-v9t({$jgv2&&*B?fN5h*2Nq}agzt-KwV1VV
z9e55dJNU;z(!oy-{-Ei0aN5Bc2fsTw>)>Yxzc~2S!EYp5!_@HVC>{O5n!dN<&=lR<
zm;8P3xmn_zgY$t{{%@d|_i>bh`j>+Xw7_9;(ZSyiXs?d+k8!W+#3Y{!muPZtho~tm
zuQ<5s;J$+g4z4-4&VDFt&x;!lZc<Ov#4S>?y?+eg>uF&E3|F{{yyM_51-pLgJ+h#!
z$e0;E-Pk|j^N_EUC>MELJa&-F#oa?udRU$T$Xi`B?;=>{b&=2Ycc${Yz9pZ~O_Ua?
z<r@ozRg|tmE(*Ko=c2!hA})%$XzZeii&3S;6D}&bsO+Mci{dU)T$FH8)<rq?<D!&{
z(k{xl7;?i8PN*id|Fn1<g3s~ZqPz>ZsNkZai?bq?S?EQVLO*2-Zk3krEUNYNGon>o
zRCV!`i+V1qxv1`<ri&+8`DaPag7&tC3uefv?6q9fc2UPgT^ECnM79m^(+)h{K{G|}
z@SzI}xezYuyJ+Ad?D~;Ls*8w=Rd;>%ZMp1k?=pA#>uAw1AV?z@OAp8SiEE81qy2uG
zx`?{y?DAjsAk9U(i#9IWvMU$OU9@u1+C>W&ElHMZp_La(zi~gbjV|VXXz!y?1}$@%
zpLy`d>MGV;4?W*Nv~$tXMW&1PE;_haxFNhO%eSuFw90bvw2MwI^6!k26fLg$hLn!`
zTz5geX5<rd(bYva7ld<Md^|~XadD=JKjrQ&9*qq5bkWQ8BkCSO$(r6S`nc%p`U}`E
zN(KJ9aq7|P{+ei9e-U@_jEk3v2HDMYG`Z|zw2OfxsSAd|gIx@DF^oK=L=6sy?}x_M
z5yM@Ka52&a19BhjYay;Q3G-COiUwkgi?J?dxtQ%@oQv@;CcBtI1YArcFCK&@5uZuo
zvwNYueZpMtPzy4vh^a27xtQT%ri<ysDpf4M5aKog0Vde<*6^1bk5dJA_nvhz$Hnt5
z7Py$}VxEiVT+DaDt&?v?hiRp`Qe%)@et(3cFw}V=!1F~HFS&k9)hq6A_Z%zkf1+P|
z#l@>G*17&Mt=C+<?qa!%6)xUz@urK#B%_N(F5YtSwu^T-3Xe8r3+|z?bE*<eO2Ov@
zPXR5V<Zyz_H3i7C8AXUo^$K4^N^T6Vq{z8=k2vHLG=r;MtntZGcH@p{&-voVA-+j`
z-^E(aXic=(iOA3<eq!wd7azJ<?_vXa?P9Zwjhtz1@sW#7uAjxtzaqM1a#+gp55Q0(
zKA~P;2yLN)kZbFrD~gG8mHlMMj<SO1CAPcRK?->2<6)<ZU9=A_a(US8Vh>3~m2|P!
z#Xc85x;W)xzl#GdPH-R>2VER;an!|U0S6De_@9d-<kZUOEg^^o-94%COuz6k7sp+E
z?&AFpu^BV{><3Txr5E!JF9Vw|U3^8ka`C;3uU&lO;-rgjNw;7Lz^GtggH-O?Fc4in
zz~AG0Fg1m-_YXubk0_twhYb=r<-&2{x=>sssJ1Q)*LP2<3%1cHbwm8EYL3WpO&1pH
z%Ltn@%JNe&!y~CD+X@Ce^ogE}q>G<j{Nmy#7pJLBv?sI0ua85wa{LnupVk$8<x+yZ
zRm{%ytBc=U6xtQNTFSR+%qpC7ao)vE7q?ve;o?tP!oK3Vi@#i4aB<niKQ8`uagp+q
zA}+CJwl8>J)bdOI+ppn8#p%x?S6p0magCHoP33Mc7tR+(g}K}#hSbU%G{5<L1a1@0
zeGx{j4_w@#VRvzl{CYoppB8Cj_(rx!<Pr_{M|m=YZ61=;+2WB4?P_Sk7?ImU9uEyX
zH1v?yLp~4XJ-|bL4+T7w^iaw}K@WvI6!q|ghr%o;hl_ar!r|ByKZmerj%YAGT+Bmp
z4=El>c%bR7liig_5>?s(9>Pf<5}sa3=+#AO4`n?Rn=NMDY*EGoYY3F{Kodlu)-&M>
z9x8gM?V*l`N**eEsOF)%hbkU=ZU`UxvshKnUj?81qt)wEGmm``uHm7khbKMM@-XX2
zl$i%6Y3B#W{02Aj7sCF|j)$i_2oGTob2jIy=YfVX<oR0PnV1*$1vS+}!~;)r)%S2Z
zHI?dfWvFj7n0<P=j%eheu?J>2yLf2gp{a*99@=_{dPwuo(nBi`=^mPSXzrl}d!89)
z{_Wu?-&63M11$p$0%4xf>QP9v_K?ATDvHYu{Fs66shx-R9-ijZJaq8T(L<((ERyAL
zyif&yL#idWyvvAaZGT2|Or1Ssdx&|+@xa72mp@d0u16?-msdv#FyQR!p__*h5Zy^S
z4_rjgo|w`jsNqj~d6;)G^!-z5tncfgpNEe;Z1T|GL!4CdFxSH~9tL=r;9;VNfh3NH
zv1D;BG1$Wp_TyoshoK&Zc^K~DZgW2l`F>B7KCXKgv1nBI)sMrYJdF16>%r(44`X&m
zxu-+tLKoI}n7>Ie&cnC0a<wfe#(UtwJO)vdJWM7Z14c~Y?0Sjm9%gu$>S3A(8hjpL
z=vYR)RZ@)H9-Zm=CpQ@DQoET4;3{%<@WW?4{5CRNAVbXa@SKN59^UdW-^24BUh%LY
zBIs=wP=HA~4=+#{*rtuRUO~`LZP*v3PRR|$LJtX}0A-j*3tsi`nupgtyunT`hu-x3
zwGZp5gSkukr;KQ(-X?k;R(V+MVX=pIJuLIE+`|$NOM_q04>rseJg8IsQD{xvUuZlt
zMXd0!l9Ktif4XDWM^SdQ#>0CaKJf6Nhxa|KrC^7}Ix0mIpY^|Q4AXQ|bKm-;!+Oqz
z>RCu^^gu~F-%NzJM~$w6d7Iir#K#^sdvH9s9zOA~g|g(~OAnuV*y`b+heIB=dDu=n
z?_m!W|3YX7?Z1az9;jCAaBCBvu-wb0tJ>>fpNIV(4p2gdhwsy!Ws8FA!;N=D>z5Tz
zZ3@#G9QN=({?@~B4@W#4_3#;O%b4)bO*8oQ=Zb!AiYLSv2{6U<xrY;;pFiOcR7UDD
z-NaWOzV@Jy@*ckNaMHu~9)6&x_Y~i<vFFDXOt6a-adKmn0mF|TPI-_#$ZW=p?kGXy
z%)|?$xZ8#OKIw~94;t+Z<)6YZCd}P%;=n^trU%OdUv1KX|2Vr(nDP0`4O2O(tMRZ$
zUY8K(J^bMzNrOh4;NcAAia2=q*~2fCYRXT;)M*iar;-+xaq`)!BAO<O9Zxyy;at!I
zb6h;aN5S4aQ~c@SFAq07-1Kn4!`~jRc)04}qK8W!E>oC2kgy#GhncKk_9i7=P{wFB
zdBAVx>gY8O*8@9A^IMp~e~#cf>z0Sx9v)BtJlvrUdbr0<JU{!ygDVsm3M$W&@QfS<
zm8Vl4d3fw0R}#6C_;YJ?)UIgZNGcEH&?tR2-FGGQ%lVSXpTydqu<j=mNTOg8b`nk!
zg_0<o#MmUpB~c`aqDiDBk)Fg8Nfb+>RuZ+7D4s-05*3oDm_&&rN+wYziLyz5ue?+e
zrIUV^@=o6{jTOzBu_jtBiGG_)mQMmn-=Qo^t3P^-AHD269-*99N}_TS)sv`^#Ef~J
zsw7c0iE2rx_kCW^=^vxyaQ#J6tiKYfnZ%PxpP~FKhF?F4@;QAtUMGpVNu(wbN%~v2
zPbCpbLIiNVBtGpO=1PBW7x9Y_;iT^r2(VfGBpM{qIEf}nESp%SVbb4YZIr~#ilTT!
z!L=%1n<f!WqD`Z`<i&Hvd~^5Ar4SS8&5~%IM4u%3Ceb2^mPtIFM5iQLCDA&Gc1g5n
zxA{Z{f15<xBzO+zYFvzY<nP@qn<lt}*&&IJNn|FGMdCaTG092AA#1olPTT9Bbeb(X
zCy|{*H_kVSSQ0s$5z{_N3>)vCq~%lVQiwFCr6pV_HMK_)J(K8_MDHYcnu3+dp5nLZ
zejqfgm*0j0(=Uns>>-KaN!-31iYGBJi9ty`lf(crx|q;9_~Jc2pBS9<x6g(oF_ip$
zLd1)UIa{JU*vt_*ixEj^S3-P7CowXKQAv;&bhV#f4Y4eHBQ%DyE+eY86yuYaKuJqt
zT@n+Mn3Tk;NxYWC<RqpfF)xYdl9-yrv?OLGF)QhxOqfndNaBawzA>p$T8zjPjW2{|
zC-H0&b0}RD#loV^h%nC;%x>Y^SZ<xr<M4HU63<h{l6aZIFik8-;stU%38v0?kc?=P
zgEYUB8>KF!oZl=!d-zHctSPiH$_{C?Ur*wVB;HM8NfK`+!E<zPCGmCuEF!SHL(z)j
zo#2(976&zqCs{xB@6b{TQWC3@Se?Z3BvvH-h5t$p6c$_KF_y%Z&&UC>HAy6Ei}%<M
zb*kR~)e{-fG_^q!@j((FCUG>0&yrZ5#D*kxCb27tjY)iz#1@Kl5}T6vIEl?kd=m6e
z1N+p<D2L#Y2ErZY_^HdSNo-4EdlEbTA5&ieZB_C8Pj@}?BO)nv&wck1av$Bzlg>+b
zODUj|Vk3f$lprX!lyoC1f?(G>-RE3NN+jg>ndASv)_<+DX3eQNGkf;lvvW=^NIqw1
z-s~<yIxi0sLJPUjsw`<+F1F|5i(KrEy0jw~J9Dus7c_UQogiVnFlZ1fN?nTW$;IAW
z?90Xeh>B^hq~(DT4)pIZ+^F8*I7Q_{xj4*;%f;zj9LdE|qEIeQ=Hgg{OUH9@f{0gK
zIFZQ*$SrA8;-q|)i?4I>O)gIH$%@kS!V(2t0;*JgiH4omQ-W2V$;Ef%3B<YxOV8%w
zTrR%Pg_fr^)lxENG5d>!mi<#Me$K@&x%f3#D6RYiv4}&UA&59kvjErqKXUOWiBv{M
z8M(QTb5T}CIT=bW)Lh)m#XoF07kVzzxj0YU&V`u^Cl_umtX$Z9caUUHkw~PpU7YGI
z<av+GmNTA<Fv3sX;u<7>mY@`Lm7;!m>Gk#T3%R(Mi>tY~mWxYdIJx*M7gut@*z)lc
z<M&DlXwd9W9`$l{k-~7D6GuAb7pqE?0cK@NH}|IaEkcjwtz6tD>y}YO#+_W;CBv7I
zPsYEwxW{h)9m^wwz#(EY#Het+?46^e{p;fSWfYK6kZhkX&gvt0V*xRQabb*eEp-sl
z;6-H=lTk`WX&K{>C5p=^A)}-WYU1B#2x|rjkPhYYy`=lwOJ!ta$lze9c`?t0)(qY)
zFQbBthh#L7QBg)E88I1>49K`o#se~{%BU=(FXdhtRb>1;N6LFFQD$F?=2I?GoTh3r
zs>`S+qrNP>Y3$+s8<RC;l$|KmjLKRv9*iorqmtL_M3uU-@bU4K=1R&Qe3$bcmj%Dd
zlF>j$ri_FP?Fp%F9_iZqNv^OBWi*oU_Nk1<?C=7KzQ{dqB=axmNtC8jJ1HYu2KAtJ
zGMdV0CZnZ{Rx+B)XhDGAi7{-x2i?=9#6i4mO~4L{w~^6S7Qv{545ci_+>+$UCEClv
z4#3t}c9PLq#(bH-8ATTvU1f}tF<M498QlpS8U19zrF+PDSVm77IkJ$B*dV!mFB!dM
z^kK&y6UfkTWAdX%;!IF#RYkf!Jl<c%02wJ6LuCw<F-XQ>8AD{D1yjNNL=s&s@rcxN
zh>!|MKEq@TmoY-dNDgp`<Smq_gD<To9wY7znj@kY#>f~eW4eq-WQ-$X$e1Eys*DLT
zCd!y3V=`x?zEp2tiZo6R)9^qxt@`sC33{hgHjRz%OMO&ZghRC2mzp7Cri@2rJSJn7
zjM*$>nR8^2MK7%^`5grxqy3P`Mz+RVb7jnnhEI8n(#{m73=r#NyhglglDR;}LK)A=
zcwWXL8H;5slkv2SUK`^}WGp4jBLpCh(MrRKpd`7iM-D5`$aprIFLss7B_Akouk{Nu
zUX-yy#>?!FEY?9DFL9dorPz6@y0jUtl(9<2D>7asObQDvn0}@5b;K%3^pj`x8Mat@
zUB(-nqgm3MGFB78qWW7=IVW4d;UT^G8X0RN@@eyC^8Aw$!%jBHc!yJ_V6cLXGByzh
zWZabTu8hqxewFc?j4d+WlW|1GQ5o;c*eYW?(O$*}GCq{?sf^ELd?e#z8J`ddFU2;E
zm5vP%VW`Hj1g(FZR$lyE#x`QzH-#8ZM&koz56Wyii6k=i$=EOB3mLm*?2#E_1hNq>
z@kC=Tms}2*wXuF*iU#llG7b_6WgI5(9~G>IBuvNU@-LJ8ANqfW<zq6A%lKBtX&EO7
zPZ?jy_?q}ICC>20ljOszldSC8mty4`GN>?iilgfwa&6evi@l^XGQN}Xy^J4ZoMjJh
z#_G#B$2K1jW1)mVn*CA6Pvj&re&M^_ML#Ks(ilQDnO0c}y_>s9zsvYTh9|?9@h6#o
z)RZklCi5p#N@SWcR5Aw{x(tKlIb1Z(uoJ?EP#XA`@EMW)l3iPb$%y#TCXz$6Z!5wV
zT^V^8#nL1*U>`=t&&#+#M$uLZqtkT6mw5f6j7u{9l5r)%g!JGXPReCY=v=`+ugbV4
z<GPF+G8k+*xT}bWV~X7CyA#YYp?Q!d#D8SmA{SE7O2KV1e;G9t)KqYn%%7}VL2(85
z*ck<d6ckpFS3y1n`4to(Qq>VTL<~T!F+&)^%5};iX%|$4hwG_c{fa0;73EP>!Hf;@
zrmN%R#{6Ol1tk?!R&c+9QVL2d7`{4rpTekhaA7U0i0m+8R0dB6#CfHhf`0X+@=?i3
z1qBtOdZqtefr9IUB;Mj&Q{1hh-~k2I6jWyi>Pw6Wt*YSreJO_BvZO_{1Oos{OSEa!
z;sXk@6f{s!TR|NKl7hH`x(ezksIMTVU`M@dI)F%woGh|CI=={EekhX=2xAFFNM96w
z$SSD?GY-F@f<_9G3bGY6R`8I*U&er#%!e0mP0oo)%!AuEK^T#mDrlylxq=o7xLnew
zuw#V8NRn`0iqBWM9AoEOE1+GdgMy9<+9>EdL4;|wRnSgB`{>ro3#6x)NK6Clq@c5c
z-U|9C=%S#jf*uNT_)Gz*n}VBmMt22&jgdO<6$&^b+-O97SV2!dpa@g&=OZNsIdIvf
zQ<b>gm#|eZP!XnkdI9<?VzC&Y2#)|c66cW#hD`rq<3kjr6l_)Sfr6n5hADVn!3&&I
z1tSzZreLmukqSmBn4(~+g3$`bC>XC`0%4wC@Vc=I#wqwj%4FO)WemFHCMuvNGD*Q?
zj$*vTK+w7i1?MlFk_ee;3Z^TVsbH3ZM+o7h)U~WMgNS-DMpc&%j&*C3$J4Rd3g#$y
zl*f!X*=($779Zm}!UyINMHMVl@U()*6+EF}k%GmX1qBNfAs{VOP>j)B^`u8T3Hjmv
zjv_Yc-7%$?C|IiCDLzTN1cdNUhQNA{Td`*p^zSX58zVhOXb+a2B`6k&Qy%nVzNlci
zf;9@NG#5tTmlV9LV5Nc;iU=<uXZ!k2#wrD`D0p4L8w%KAniF4D@EU2Yy2NnVQS-&v
z-&F9Hg4GJ%R=`;}dneXurbvUOI7b;E?+~FHtW~g1!FmN76uhfovx0ZX{1t2>#_mrs
zOTw5hSR65MKw%*zZXrD~{zt+4QH7!rg+{uMDSh#Q4;6f*KvAG7_?XkA;JAVl3O*%P
zE7+}IkAlw?Y*VmP!7c^c6?DtYPpaR+7pa&~pe-zfTLR$=Vqi+7rL?IfVxjjc*vC;Q
zIHcg;xqbE%KE0&_1j3Ej_M*Z>UwU`qu!18Bj*=A+?0v;L{_xEhMUH<93$GJTsfT{4
z;G}{d6#S^*D+OOGIHTY@qOO8d3cgivns}QfUF$0KWM1tOiOM()aZ~b2w3(b88b3>h
zL;j$E=`A!q)Bb<;uCOvuc=$=d&kBB5@P~q56#S}yGxZzsDq9#3$jrYUDAnkZL;U=c
zd_aLrv>7PU;uyKnZnO}C)gsbsT_jC`uHYX9w-gu(Oa<o^Tp&#m*@yt7+~46Sa3d=7
z6i}^T2gsr+RdV);V1a^AL7H4Tw>dR0-leqJYESZ_f=ddnkpU{WOz<kWqTnid+A!(L
zV3A1Z_Q_#jGX=~4(D;Uezau!`BpbgY@HTG`$!;k$0uleC;0~F*iXtlRa#Hw=iu@|>
z5jd(~cX?Iez2(<G86<2bL>`s}R1{QENENOV!j@|&*FL%<iHdZ{7FAJ9MM)K<RLt)s
z6<1M06-<f5&WX-GoLDwkDy@PVP#F~&s>li_O)>7})AxjlfI*DqRa8)sZKJ7;iYh9p
zsAAv&15k0Fif1%DtD&-r`&Im@BA0jB6BP?oEL2fdMKu*YROG0ruA+vDmMU7QsHvis
ziYyfkR6MAnw#xlpAgQRMqOOX1D(b7kCPs86eUT{<R&?S}V);Ig@aDu-WU5H;i<1Qg
z@*swDP3Hp*RWwqOWQSG3(;BOINJSGB#Q%?qiI~jFBg8ALG*!_|MROG`RN-4WHKPxu
z9X4Kjh{Ot$DQ-@dTB~TIqMeHND%z?TKQPXK`2uC78@)y3Jmt&|Dmtm?tm55qQb!fT
z1_@6`7ZqJqbmI`XZOHI=mHjCig2*Bm6i3o#7H6&L(!(lxayC^=<aDU$tzw9Zl!`to
z`l{%!Vt|T%D!8H%y^C0_$Rdc$162%C5&yK~U=?hT>K>7SOqF+88Ojc*7_DNAis33o
zs2HhY6w%|Vh+6!QV4uw+kv|hNnFl&n#W<Cr1r^4tP_GK+Pq1(eVw@6#X(y?etYWr`
zIVz^8n5tsBibqtjC&@IT!R;8CJads6w3lWOG9{&%?2?KdJ4Es|!zuZ|=^?_X`>2Y?
zRLoT|PldTT-fU8Q>Z^SyZO&KmxQZuKJW2d4Dk9k!+su4P2D^H7#JqphPg<m6v5NOp
zysu&j@nnhgf{GVaELHK8ie>z6ZRy$Q`qM;3LZ-0LSb6aJb1I&X9-v?Qq5UboyIjRf
zD&A7DTEz+#FROS(#j6oztyDp!eicceg;;`j^%i?3yvB<v-ca!-Auvi{1&2mc22;i;
z6;sNhHREj+YgD|WVxx++D%Po3uVMqoJ4V<E*%Qi{v@db8ey=ZlD4U2XDmJUwqJp=`
zPI)l;rSYv8*)Q?j7#rWJ;sX_jR2)|Ep^A@Ge4%2uijRrXDn3`SjkJ6zMg!5ODn27w
z)sVOf7w;)V!R?#^6+2bziYTaiUD4*k@uDYWm=x`}itSOcmoJ`39ANt`rF|;)M?g4J
zOL(jZc{2ZlB+olSAi3RAI-=sJitkjMRdGzkaTQ;y_=dbf#g{5hs`!djFjJyJ%03W8
z^sDl78<+)CUpl4YTNS5OoFN};Bw+H{p(INZ0_|Gt3<aTcD!y0oi;7=W{6Jz<@so<5
ziMkB+ydq-l7^}mk_z7NN`@gC9UBw@&SkCB=V|G&Y>2c<W@fjxi$tn~w0S%2cs46rS
zMKu)DpsO%c{H@|9@lb`Oa>r&|ChJq-s0g{ej|x|Xr@~he5G~(JQa7jRlBwDBkx^WK
z>8}`5>dtfEqv97-TqK!a7CefBrP{dTKti0VxDs)jYh-ARgc0v5yE-uLkBE~_udBEb
z!Rqz85|5LclmDo=MZngS3Te2l;*N^E8uDqltKwfmjO3|-+3QqN_#wt+F?^Kj8$m~L
zvFyWAehmdQ6x2Yr|LQ{m0>`FF$7hSRk8Kv#galqh6AYhW6~#3$ocKPnYYindl+;j4
zLun1=G?dp+Mni^%vYH@pu6i64$Ihfnw!kp33K}YEsH6dWxR>BLTeBpZ7P<Wb+nhK)
zO2pGpMMGT;^)x)7p{j;j?0|-98meokp`oTGI4$ieJSa%B<ec&#L$1y5<`-!-bu_{G
z8UDxdvaGKmrXisrOM|2#u8DYwOu{OU)NDhNh|0WpVqNDMak8TZ(Rdqb;53n$5cq`K
zLmHZBn4n>zhNOmULPJAu4NWyP)6hvnXAR9Yw9wF2Lpu#EHMG*uT0<KR)Hq6vi1YYQ
zU+yzlc*Yqs++ITmO{g9nHCRKW<((wPr%@oJ62W+KiZ@+23JpCpbk)#}Gsu+8$9oWU
zsa@u97BuwKK=Z<u0YbM;w-(SQ17uoC9}Rsq4A(G1Lq84uH4N4;M8g0L12qiNKy0V}
z!oUMQ&+Hxofuuy%k<u_!!!Ql)ACZWtjKZ4URe1187b7){(lAEDSWSdSj@E>IhLg+s
zm)y)y6TY+Yq>)s9%1&Hm*wwPFrAZo?Gd^3x91W8-Owlk^!!!*uG|c3PM#QIUctitV
zp^xv?O-Xu$*_mJEj9PhxVlqp^?8o9vT6t8%V;Y{+us{QCL32594Nqv8r(r&^qK3qM
zUC4Q|GlVhcwT<zW)AM}QGXFvii!?0N@RSAyf-WWy_O@6O)u*kAb8i{KZ5bPxD?Lr%
zWJp{n8OGU#VU3lf=QKRe=XIoXyrAJl4c9bW*RWi}OBzmU_)5bH4KHi>K*NU`R%%$K
zVV#Ec8eY-xDuJxwEe)>`H)h0N*YJiWv;exg=%FBNIZ~FZHN351jfS-(sCSa(pO9w%
z6>HF4l#G06KRnKasSO(5(Xd&=77ZIUY>FCuH^Lc;_e5`67zhDY-qY|t0baG-Rt+>A
z&?&}nBYuVMp6r{kk2HL&VULEr8a~nRsfHaIc53)c!{>yFhV4YxS`zbZnYPariZn%x
z;wBH2i*{-FLc?wXv!0kB%GeBND%(UnKy7-ThW(sP4M#N`&~Q-0Aq|H)-J=9%X12+?
zdsVPF#s%f<PtmM>Ov7;vCp3Jip<}~LZfiigBlBU9(yXRJo#b0zYxqWkp~2K}O2fAr
zejzDoIIZCf5k|ug8otwTmgqD~Iv0J5rVP?GLm5d#*0A`G(XF2}{7lH#5R}D(6?%#(
zrTnJhcMY-zMZ+H&{v;(v2>IUv$2E?^HtjhdPmHS?G;)58dju6CF!z3%B(Gp<7(2{7
zWlMvtA+6y&`!GK4Xz+-l<PUTuM>9nR%QU(}Q}YBGLQO0;9NnzAL@&t&4Hq?B=0$SO
zy~zn5XI#=iy}n*2>6g-Nudr_i6Fja)ce_mM^3H`APj6`Wn;cR{JsmeS{6jvhqoj^o
zWN2jjI`ZqdL*`FLdL@=e$G=g9^?T%3C8a5Y1rqjrFUc!;b@2>IxPXp=I*RBhstXoc
zNEiO`!mO7Q%PYrAeBgD;8^v@K*U>Rc+SgfP$<dY4QCdf39rx=fqa#B{1sxT2l+{sA
zM|mCexp02lGymeM$i6Q;U+OfqO(h+aG@#=?zS2TSHFa|YI#J_b09zFu59p|=qn3`U
zI;!cYuA_zy+FpLBCLSXgc~AtUQIY!igF0&KLfELo&RmH7Jh2P;Ek#Er(sG*W>xk)S
zrK7cu%sP1_9gTD}))D8ajs#!S(LhH-9qea|qCzZZ<E8HxOo^PCzJrH!G||yaM{^xX
z9oagX5_JCvo#NKNLWpI8b|I(Lmevw2kQt9>w9wI#&6bxcPV91hR=icM#%*-8)sds)
zVGdkJdmWt#8G`6|q66WnqmwT7X<<yl{?^il+c6pvX?X9dqnnQII(q1!$9c%@7`YZd
z_v~1q(F~iH!_oEB(Mv}^9sPCm*3n1D-L5%(br8p>W^x}Y=DKnQ3A6z^2I?53W3Ud=
z8rLHtIkV#_i;^@Fi=<P{q@g;7>DZ%Vua4n5M(9|nW0j7PI!5VuOvhXuqjikYF-6Bz
z9b<Kj(=k!UBwa)iGm&S!jtNnneg}5)a<81p#K{^0k+{DcwHtD(X*#B}hdO5KctjVw
zRm{*aQx_T#>-3M)PRn#%s=aeKakaRShV-ZorKs>ha9-%LpQmHKj;C}i)A6{DCkP)M
z3w5yv0!>m+>LOW;0OaW+9gB4=(Xo`Bzutmf;?@w1`C(G$sr7N1_lZSM>v%@Ti#nF;
zc$R3d<9V`u9mFE)gCtdM36<_1iKg|k>Bi-)mvpSq@iL)QLddJM))L<sZpv3)(ebK|
zEjr%Q@tTg;b)gw;BFuHXsbj5<bvoYCv0BI5I@a(y#Jcm2-HNP<CQ$Z=p>bq2>ve3<
z@s5s-y3pJyNF2OhNXP^-%?n)17~IZ)&v&EtHxuPX2^D~(`o4}2b$q0Q^{qOLjmZym
zP<P<KKi2Vyj_o>j==hZ2(($>DZ90A)Eo@K}KB?jI>(n*IwG*+IJ9X^R@r91vIu6H#
ziTK=2k@rV+gLYbG*|5G($9~QZyP@NNj)OXW(1oMw5MR;pwT^Fe9MN%9#|a%@>NrLW
zY%JY3Q#!7LLD^Io$#p+npFFAKD-yyYsmI_vTq}u?#9LYtPU-ko$9Fo;>Nw3wFCd-K
zvFKzTE<ht^_Mz{LiqbjK^5iZD7f9c8P<e&bV(HrC_^rtwiHaPZj$imK9e+k0`&Gwp
z1c)x=bN2Jz!YnEUD>_I&H<ogBkOpP4uZJaCS;@QD0b-!0L)VedKz;*;4pYZ<9XE7X
zI&2-jjzEW_!zJ4IB|UPI*%G&t;<z?sWl|lZ(J9oC)^SzGH3}7_r1LsA&xw~>A~u7%
zpbO>qVpLv=%F8<biYmN*C91skVNys$u}ro};{BV<pOjAauHzpve;v2U_M?{h%JCU-
zj)lAYJ+OTsALhz?Pe&dD+*&ZN0SZ*?0L`IPC>X6xQKW!@f(9}Slr>PuKw$$V43sob
z#9%5SiWw+wh+VTPuTOHZpnaR`0!wlax&=!aC~XL7u#AB*`%~3VB-wbGJuT=d=Ge;_
zC~u$=O+AKKSt=OV-B+qe7><qCpW26?CRX2Ppt1onhx-i?bwhs3C4j;MB?p#O4OBC*
z-oyqI)eY1z@TY-X12qlQGVm;$HSnN;+6H<X=wqOcfw~4-7-(sro`L!XnixnLh#8O!
zG%(Q6K-@s4frNo90|kyGJ9dz&PK&z<G2?^@Sr84LjSMj4tg(TI3@|#E8|zWmp0_{6
zrGc5V?yXq10jf*Q3^a`@Tq&44+1vp4-%ECus!~WUE44Dv!9Yg?tqrs>ux+~3)<8Q0
z?V~!W>7V&hx19+lo0Ii*GSJyT4+A*{x)|tcpqqj21kT;qoJt9LP8sIMxnmC*wN8os
zVFON0si%Qn26(Z=rZ|NMc7ud7AeGbCKtBUB49qmp-@pI^qd7qa1{xS-V3>j71_m1#
zVjyK;r~!H|$jYdgESuVeGf3+Sx2rlnJU+s}NCTq`K^MGEHxQXj_CV2%0ac{22F4kf
zY+#Ck@dhRsm}p=U;oMOec%Q15&3z{MB)J)ZL*Ld^1JevlH}D8QdNfI&3tiRpa#HJ=
z-c|bOh%i~tGBDe~d;^aYSKCQ*3_NCFZd8AiQ&wIq0o*ulo*^=TYEp#08sm!agn=gw
zJY`^+fdvK@8dyT4HL!@Mlj7VfgPQnaLns|QW!NhB)MEH0_er3Z_q2g$*nTs?>Z#PQ
z!wfDZ^LgID3kJ3t_<(&bEWK#pbpvl0SZ?4Y11pFa243Op6Smc*l?GNt6_Vc6pgXNA
ztc?Aw0@0p!lGhAjEg^!vY2YmbYYnV3aB5p(wSl+UY+Z?UKDov~t8t>vE9(txFz~K{
z&4y6_-!ZV!z$PMOL1B;~b$mv|=qA>k+aKiFV&FXk?;E&MLt+XH4bIHwriRP0d`RLl
zaKhjodidDDCkFN!*k|BVc8T*&j5Y8%sUFfc1KasbIyNA`MD2sgkHj~wxw{N}LCQ6-
zhiu_!;^zm2G<c!3fE7E?;z_af;(h}M3>+qeiEJ4X8#!p;5KrToTds>xE6V3b4IDGD
za)0VLsc(^VDJcx9g8zgudUj5d;tYIe;H-hK4Sd7CW##`i;w_iw6xjc`bc&Szm(UJQ
z8#oi;JnLKyIcw((d~e`q1HTyf!N8Bv-Jc9$Az$4uXZFNCZ*5I7bCx>MuLgcI@H;_j
zi1ji5EQtanDSAEKxW^LgByHfb0mVRD6YWf>1~dZ|OjI<XlW`fiZQzap(|~2*5?Pi3
zo0MoEFc2DW4S4JWGX=<77za{QOcwPBy2I$xPa8OI;DUjR2Da=^F_Vj&bLYoNrl*k;
z5+;A9;(u`x4O};H!@yMo*9_31L*`EjifR6AtyzzpzYW|p@Q;C8#Ph0RonngjihNSO
zE5c;T_<vd#?-HfSy-gH1anC>=69r8aGLhFrJ`?#(6fm(nA#p=R#y=2}Lng$Rx0M(e
z!w(fUQN$GPfTE_5aCn8}NrM1;Nb)aXqNIs3CNkLCkepJc*sq|pDWd)aTPQ5Ts;N1a
zHBrt)c~dyZD#kN;i=W$GrtP+7QY8~GQQt(&#C;}Kbd;*_b5W&oRNilbj_KYzl2uJq
zGf~ULgXI4vYM7{LVz$|8^&F8(PaT9MZ8(gpuWh1^iMl50nOHkmVrU1gKwO1s5TMVR
z^)C-6BolEH*(REr$TX2K(a_{CW*8-sk!7NRDcp8cZRlp5w?Ml7Ub3-?hfFjvku<>+
zKW4&Gq-5qPVZsI}3Q`_xW}>-?Rwi1rlYhlpm}qGV*2FsL;#~$U4-rZC43lVM3PwRV
zkbkx}(ZR%{CLS}<(L^T`!w6~<ojED7%x)(CV2ds$KKdd-yF^!>PK{HY?_nax#9#v4
z#KR_fn&@Ssw+RN`Gq{MuB;xfk#g-TJ4-ScE7APb2<wTc}`kCk-RahSoRR%`oAYynC
zi5EH7DHBA$p}c-MMylU@E!MY{G{VG46O&B-Gy$X7e-q<Oj5jfcpDrLJ2j?Ga3QHOh
zgX5x;{d}|h<RlYJOf*Gc2GO1|Y`i<g#8eYAOw2Sf&BSyQk3<MV&U|!#ioj$f&#rAE
zo?(`lUv8M6F~<Z0dpIIW^4vd!(k~Hgu8DajUNP~iiTNfT=h#g=XW|JHPnuY2;wcjg
z`1+lUg`8FsWKdt$l@=4c-2|VZJio*QGp&v!C6>#G1B;}mO*~_YO?7_VpDKQ>4d*nu
zZ6M>QpEvOWvC+iKCSEkL+{8;J$b2}`uTFMn$xK5rw41S&CO)etts;DwSXV<B*2qcN
zTkhofnu#|}yhS+IkY10<H=>f87#9f3ttPITSZCsG6KhP+g-810B2EE`(Jv&cBh=tl
zC*Lu#kr1;m!@?#L@0uuWp^SyiCbpQ6O(-VbGx0u0Vd9vHttLJ&vBShp6CV<bOnk~7
zn)uknCq(AC8Qiy-LIRa#QV_B9a}(Q4Y&X$$ZfV}SoF!4h=f-Z_MTfY$%fuHZ_M13B
z<TSCz#9kBo_=*0)XvS?-$XA~mB&eGk)^XGaO&l_D*u)VNr*<R>8CrKKs8??$y|+L(
z<tbDjH*vzmITPQT{PhD)n)sHmHSv{+uT6Zz7fE+(l63tOhD?`WF3Ii9ac&w<UV4Ur
zGI5qz#JMOX5QA0)E-^Hsl2iR);ztv|ncRd5KbiR1#4jd(C6s1M%O95rc6PX8BT?ZD
z7JpRwgYa)C{b?fC6wZCF+T?Z2NM-UnH=0mQXeO?kxIz9;j5QIONSiQCSSCC&HxsrA
zhoI{yxh4oqChl>7L~QBpI0Iq>BK#~Vz9T^s>+@43Zsl>_#03+VOk5_0-;DL>E47&;
zT_jeV?9P~$zf4>)an-~%a*}ys^KF_#xlDXGEY5wN*?IQ-Zxc7k!z~oB@Q;aGChnT}
zmy}4RaV6IJ`*L?o9B(N#T%UY$eUh)-Gm*zaUJLmw)ckB9`Eyng(GJr_xJyrmx8oGp
z3R);+@mH`YW{FQ1wot?pq)m_#P^2CD9E)2hVWFgjQkK}EYtx3f=s7oeyBDJ=Y4lK`
zJZ4xZYoWEpU!0?yh4L1%EHtoC!9qoT-9jx3l`OzQ6$=koxX(gm3kPHQ@3%xw5PuNB
zFVe5Q@ZT7ja8(P{EL68p!va(6sok?PG?jDS$=jcKQk*_$p|*wk7GfMAtw0v)TBv8?
z(tfdX3k?qJ9_^XJSZX0|A=5&_60uLb&YaE97K-2>ez$BV5w`Thtyn_~jV(N63CnyV
z3mZPj!|<dg7Lpd4TWDb++Y+0QH?`2r5;0xRP88|VBqdrH@~%r>cqiVH*Dc|mqohRm
z(?fUejbvL3?JNwjkh0L;LI(>ETj*(_qlHcux?1RFiAdef7P?rVHHO@nEB-4(B^u<r
zTj*hlFr*v{v;uumPHeu%y&xWFCn6Pl5jdO?-m=ig0;3xGvTylC!VZn1r<;rJ4PbvP
z4C26}&hIQNv8&u=kqE=UDjH@<m_scLvoOxWcnkD>47V`S!YB(PqEn`%F-2vx1y1xB
z3uFJAuY?Gv=c3OBX$_lTVWNd87JuLck<uHLlP$c_M%W*?*0eg5m`0@C66Z0UaJUzH
zs*pt1LHN(KFw4U47XGj>+rk|3It%Ywc+|pU7FJkz*}_~4^DI1NVVQ;b79O{-(83~K
zVZyA1CoL?9Mn~D04KmZ5L!(D>u?41hFR`%H0=Ic7*FlJ#cZu`8C9RnBw1sCZJZIr~
zqQ{QJvr$Qu;CQQ4mtL^&qJ`xaUb2MlO!bhEp#@{WXrVI_`B#*XR$5p^+NmO~xA2OE
zS1r6{VKsqf;dPGP!kZR!#uVL)F*cqCMkX85LdDE7x+dSYu*Sk#3+o8d;$r{y(>+DU
zDAh2dhh@!5Vh{NZ7T&S2(E>9^_!ylsw0mr}u*Je*3r8%xXW@Md+b!&{u$AMr@UewY
zEKsNW&_cr@Wj?Y%J-2TW;qD}Ed`fh(@VSL;9B)?<(!&+uiS`mTbXv6d3F5;}3%e}r
zwXn~^7Z!F~ps>A%h<Y@^%<(=ABo1Wd!35Q){T2?8iY*)>QCE~0IL%v3XQm1nn;c)7
zBW%b=EgZ9O#=>_NjuSB~d_z39@TG;5Y?*jVIJXs9<RnSvvv3Ny6`RODC@6g!O-hji
zsndM&-6St^*PSg%>8yow7Jjzyi-qqk{9xfn3qP^j+Y&Ue@SsJG+?cV8+-{{x8?kBO
zuNHobsDleVL%hz8?Za)-|Fn=x?qMUp4cUTX;crVAlT{0vg)|A1GibrE;1KOCm}CwX
zY$EXO*tN%m9gGV{gSp+fXp*0M7JLhVg^<X3QGC7fz&MA)XSNKNm<`R&T(EG_!W9cw
z$*G9CdsCM!{6$80AVu|-5*_);2N}|!p>3{NxX!+9Oy1z+R+c2A`3rA~owWZ*$2ymg
zZjzda)#TL{?perV<Bo;9mas(qOY}%en;sXRBkN!w6Dy27;d+$U#$zKTyQK8ox_AK_
z1#LWFqpFQUHVWG)YonZvA~uTJC~2dVjbb*6+h8(g2^-8TW2^}KLlK3D%IwtAHp<w-
zk(XhElTIc~J$+|+>3Y*F_OrZ=3O4SuQJL{SHY(YG4Z4}Q&eC2)J05489b+aV5$}E*
zRcrw?woJXAxu3MjSF=&w=0<yn+o)lqrj0r_>e@)2NYt|NppDw>XDUvVBS2X4xO^m0
z&qjS4Ef1t(wtxc(hnd$b`4uwcOdAOsjchcwk!7QS4erm=&;~b;<(?J96WS$srOev+
zLpGZ5TYQXvkr)$a$l20uNk;Ol>LtF_%tmt?eLVE_(1M?{aoE8T2d!+hwvo?4eg|!A
zw6(F;#yT7AY_zvA!^TV-9c*;8k+Lz=MkgDcZS=Cy+ZLOCbg|LhMh_cZZFIB24>6&b
z%!djW{ew9+9=6ewuxc(5fE2(OCPduhV|{G&wK34fARF9@r=N}fHU`*2*W-@#G<MNA
za6%GBwz<sy3u1$94B>QaOy(USktdVthuIizW1NlgHb&SOX=AjFF@*Dl*eF}<3{Ph?
z!N_u~EgaKCZ_YSPf}FJpHYVDbW@EaINqpGG6dO~C6>CMy{De0-KHxx#y!V4?V%{0l
z{RlB9Lpc68<Fu5{vN7AnOPmfHb8I|HWU#TA=xSrGjmK>~VT;Jjd4!TJtZmshV%+$m
z;~l{+o+R;}D80bOLR;+YL4AaVH8MAXh^I?zEVc2hjpuAUWn-C*r)@lA<Fj_cSMu$#
z1d)(>YXwHnwvvXImY%oqf{hn#Ea%Zys8^p1%3=Nv9ZbB-m6uPxY-6R3HhHACZLH!n
z*?8T?8+`s`24V85jn`~p3@2;tF(il3ev=)uvDy|3{hZR0Iw(%|&YddxX)1|pY%oEa
zt)<`3SZ`wk;b!BEjdyHpw6TNZwXw;@yEZ<s@u7{)w%8(gi;eeekq<j^M+Q&dw}l3`
zHM+$hWY()L?DLV0k2z8spA*5#NuSvGl&CIcl6X0gvTgcME2k5G8;4v*+D?RDlceUw
zMT!Kq%f=Trj@mdzEV8l3#sM1#ZS1wNFT#iY#QB(@EPC<QP7v-DzQ}eC@j5Ytyybk1
ziLpE=kZ^UNBl5V76E?oK@eQ$*biE^S(#BUrU53?_lmzQe<?z2DJY70pI>phE79!!C
z%lfuOefX{KY@D^>+X!r&BMRBb<?P$|!N!j^ezozNjh}4%Y~z<`P+T#IU_6M%L`D8g
z<aZl?a3UU*{<OhnIj8I%LBTo^Rk5Mkum~j^nhl*aV#6f-cP4)yAO_0{5t!C3q5;Jx
zhmF|qY#}o<{FPr}J9!=y+sd)!&_<e=U^9>#=WSfD@t2J&HZIz@#F=8Vv=i17VtLUa
zaXv4_GTD=>Hm=#YZsP`F*iHyq?G83#^ei7>njuT7RR7qxW#g`mfB9)*_4R^e0(T;2
z^;U6-_`t3*IP;#3JPz_YU~i`#NO6E%;_1rgL>F*S(7`ANqa74-P}o632aOyQaZuDj
z4F@$H6mwAAK}83Z9F%ZS(m{rUvJOf)DD9w(Bg}^6`I|<IMfT&ynXl~`@YQR{at_M#
zi;ftbfK^gr%n#?62XzxTxX-}@4yrn+?BIR}M7Ao9@O5&HBMvZyJl;Krb&iM=SIt3n
z^3`V2<Tk<q%5l|l@SuZC_PnfA+d&-%l7nRjQgt2Fb5P$w%mH;+`X4C|FbaZPf&;Jp
zckJ}N80S6i2z80Jg@hxF^H~lW@cE)b<EF!%Z8moB5PQYP95iu|bkLj+ILPLZ`w021
zDWNnd-h76rH*@f8C1I&($xb?G=b*iV)(*B$E8oUJTL;u=XjYxwB1vZ=JI`%<$s#&9
z=;)x61Dfm@-uZhIvEFg%<O5wDbaODk!9WMy9rSR}%Rz4kIed7M^ss}T4hUq{A4+7h
z?9oGTq&^P%I_T%1KLOiYgy^V~M0S6X`-CLPX6e@(<Y2IaVGf2n7~&x1V5lRUr=$_e
z2CR_Ru|iFDgoBZe;3t$8Xc=SsJovyE2V)()<Y0w^aSq0F);K^16C6x*Fw4Pg2a_C3
zcJPRU84jj6nCf7fgXz(SI1y`x#u?E~u~V%fHiu!<4UJ=DgKT`J11`{X=+ANRsDpV9
z=JTz3(qj(hI^dr9tP^{=)xhmHl8-xh!oib{Q2kz=F5u6*Z|q3iidGzoor@ei?cf;)
ziybU+u#}DDlb#};IASvyKFsZ-sY6jd=k-qK%027g1qUxWc+SD|>~?*Lbi_C-iXy~A
zewX_aEO)?o49Wm6J6P#ptAh_5ta9**gLMwpJ9yQ>YYyIWu-d`v4&HF^ChyLObH3OP
zQJQh)6|;nm<?X1cH4fHB53pI%b(dk{Ta2OIz`Go>gUy_&Sms8O5*wc`aSuJA#k3Ra
z_!bB6@pH4K_lcQT1xFfCNyz6p=Y@IaLkAx@*y&&wiPXU-4n8NgJNT3!<sAJRTYDfy
zTI1*b`}B4PJBS#)q+JJ6<kg%YUMInR;b6Ce{SFQ|*yCWYBlgVP=Lnx2-=$E&l2$~n
zj|VyM;?f}wyuEN$6S05U5NBtOIylBLx_H&aaR(<HBwS><_|m~i2R9x3Lwt7dwFAw8
z?%*2-ryTs^;8zFVIymj%dj~%_IOE_u2WK6e<GhD4E)!J8sFXEnoXLJtI-+JohV!F?
zpB(%g(Fon0><n*lL^lUYzd88bL9PSY!5<MurOQcwMu-s`DPYT>9ffT0tt636jpl`M
zqyqC3nT7+?!FdN4h(8W&2fl-VT|JO;9JmfVN5rBq4fB;Laf)Z$0hOK(b|54zKPjah
z5Hoq5On|s_(ZMALR~%d=B*}Xr{S{%dv0BUsbL}6U9>3<`x`P`I{&qlP7r7`~XthP`
zWy(}yQq4biGj2J!O=jz&f{Qy2?vj(cDD2{22lps~x+vfxkBhvl@XwMim{!T*kbLUQ
zmG}b=HdW9?U$QTz67(-c1M;1!QV|zLU6gWB+C?#!KO{v77bRUWx#SNdG;Z2f@s&OU
zGBdea(G*k0MTU#AF3PzA)yd2`JG6rlpLt3O;%P+}m0Z+xQOgBf+~?u}mp?&6Wf%9m
zsKO2xm$E(|NXbp0)A<->A-+}3#lh)as=KJ+BJqS|9!PPG;Mmy*{;=Rd7qwl~b5Y;L
zY5p$3MO{~Hu}+k0p3#<*&U(y+<Rb1OlOq};b?qW{JK^w&4{V=xcCvwshAxJ?7~!Ik
zi^eW`^0c({kc%cR+PP@&BIzRAMGF@#UCgH><D!|1=KSv3I91(qZzj1%G1)B5%dK3r
zcG1Q~+o&^~GEy16jU%RsZ*eyjTCqB~=;)%Gi|#Hux#;Yoi;J!<=#=3z+^K_W0cS+y
zj29P6SPvIDgx;?e9(Kk5Q&!E4lZOxvUopv|j?~LVZx?+yk1hte80?~-i~cSKxEL4>
zgs+IBwrHHQ&-(2gX^4xIi=i%t5y<z8wUw4bE<j9DsJ=ShWWMl`jdU@J<8|@4i_tE|
zxR~Z*x{I+c#<`f}VlpXucVfJY2`(l^eIqyK-tSa<iEm6jW3y9SOm)ToK)D2yaZ!b5
z`G|`dE*^F9n2VV%X1SQ{Vh$0NsXdvZlUyA*e9D2e32=;aUCd)w-$}ATZmh@ae3B&g
zgo`I#Jmcb77Ykf0bg_g;?g}w`kt_abvN&p!UAnJ}$jW(&16iM3=Hh7=`=|D~eIRvh
zw#45S5SW~)=UhDRV!4Z#T)aSp$&p@kabaYf|I8xh6Em4By~4%IE>^l&<%&E<{+5fp
zj)Ar0y|>rL2}4fJYc5`Q@t2D$F5YnQri&9~ccdT}t6hBIVz-O8U954j)x`%c*1A~d
zVv~z^U95Mp!Nof+HWJRoMc)W6dUe@Dc9o75y6iW**y7?n7w?laxIfrzaSR?Fzx}wd
z_|YWG(+^#I<l=J|+gyC?;u9C2y7(-@2SS(|3kXX>Qq23^Sz_za?Jjn>*y&=ID{N)L
z`ZOa>F^LWlPDGD^LXe|{a}VL>;(&|2<TLZ7eJ&op8Y8W>9-4E|#UYa9B<Yxo!!C}v
zIO>9bGGfRvn_@(9#=#U#*(71&_HokwJIQ`krIRkca`C&1KU{q6;v3SGi!&}xxhPUj
zSO&gje@>Tvc9Jmb5xc%~an{9;E`B0y){)M+_};}2u84AEEYrk=V#(&Z;4PGXcJYgg
zUtRo0;L{vYM{syj6IJG2Rx8F^GTrG<7r8Dx7e2AYh2p|=VYyIUXfAXY2C3<hE{7i$
zIyi?$=0@aXiXSba^t#$E92YL>Zd9CxSq4kcus?lWlJ3;NMMyj({<ui94^N7W18#@H
zBvvMaUvzQF#bt8Wi!llYT#geZ1a<I~1G(zrnu}^4s(ZNZ;szh{P{PCCE^ZQ^J>>K7
z55YpV83Ft@nLn9T8R;$&uf3FcPuQk7QVKRyf$wn%@bIVA`aeEEq{{D!X)5HQu!jO3
z3VLFLBO0mL4T6ZfFctAo)I%{3yhv0b=$?C`8xIm)Ne`twRPa!dKRovE+oMv3hq4~Z
zM0IONlAFT47|Sf@iQVVQdtjXv9+a9YdEjrMAMjAs!+jnqd$`|26`r<~e&3y-@<=)*
znspv7x=j*hx7lX`oE@v-p{9o>9+GTXl4^OV?;+;lL5?N5QpZDG5A~w@jq_q5=9E$B
z9ZQdlhq#9Z9vXVskSdw!A>kp*12L2B)A&DnN|*WvQ(WbHw2&HkXzbx3j<K6yGUV{w
znSA3s!924)H1*KQLuU`oJT&*v#zR}$e>}AG(8@z=PsoSd@q-=a^E8hW+DBI;icO8T
z^U&Ty2M--RaC1W5rH0ETiM}2_Ou>M`Z(Tfe_3*HVo*ue+=<cD1ha9#^3T3=UjzoV1
zx6S19jK?EY_VNUa=*>wCW1MU5wo2Cn1&n?k`g{1q$EQ99co^v6mWSIO26-6l;bY$N
zFvLU3!_yv~@i5fGFb~r_O!tJ>ez=Fx9>#bW;bEjFawkV|B5I30c33C78|z`5he;kL
zdl>Iw0ugdje4+=Aml_BEbH_D~k(T_S)f5j?J;9B6+IO79f&4#Z#KQ~^PkLD3VWx*!
z9_D(O=V7*oIUXMM@EEV;leiTLU1Kacd{J+hIpn=KS=M|Hk9&B+1M!?fHPdRoo)zaU
zW}YteuqZ<Br#vk7u*3t6ElWL+)etKRHqK<|2)A0|27t?mQBQIoj7&02lEbqeR(W{E
z!*d><_wWKyH)`i)56eBg<Y5I-x1z+n=5_~D{MO$^rQrutG;XXU9NGxp!lqs&pg3P1
zHhOs7!y6vfcv$P<O%HE*Snc6$B4H2lBL@BfIs4z%t>$#2xWX86YK7}OtS5eY-~z{v
zu|cu|;wQhz<#>~acRjrCVQWMbn>}nHA`yqL$EdGS*CRJ00+X|Sz-~{GKJ@TWgdQ|%
z(W*(Ily-amc;!<MpLzJ!!|ABopL^KrVV{R>9=7w-9(H=DMw#EkE+Rum=?em6VINK$
zF^whrv&R$3i8RX)u=_n6AjNt3(!)Uyhddl*m!g&rdqPJ(Lj1WMBe-~Q5(%i|(Oovh
z2!R#D;wL>YH<LjQUwil}s?)hlEABTQPH}*9rK{5<#&s|$?2L!+JlGx_4`)4`BTw^?
z%U3-7;Nce!zmh{1m45W_6B!pd5>r$ANL2?)dA28q&>6~on?3yQ;Sb{ZII)~@L@X&y
z(Wk?TOf<d|(>&-N6rv45v^LIMn}3GI85nPng2u#64;Gog=SiA~IhNv2O8@Lkki)nh
zJP(&VTqZLtBKaOd4{0{FGZ7G_52hFxcHYAUPXt9@jQA?03vzoh*nRUPhC%-2;R?CE
zhZ`QQlE>zVIIe4?*?B_OqlJp)-yUv~D#u9w5I+y5sK7GXgy9y<&7^p6$HQIHwU3mK
ze?8puAo+;<$m1igkFq|>`N-!ZzmLraQ>A<q@KMl5Q6I&86!KA+ckjfC_+Ybixe}wu
zqp0O^bMoSBu$ffCN6Dx{mmfPrlPQ75J@iWZDC2`c?+jze@X>FIw797B<=t3$9~FF5
z_fdm)eN^&szmF<D;N!mNTa|tA&k<A}nI%Ul`loVYZ$^Uj0iU})qna-?CfbV#-UeHe
z?97l3QcWMVeAMw#*T;jtNE+ozQQHUqc|?aS-GAJ?rJgTXM|~eLAKVL_fAwXoHB+nT
z_aS@a^O-(c_-N@P;UmjO10M~2H1U!2(a0CSlx^(eA#%>qaXw7G$DB|m|1v``+ecF$
z&3rWX!7B`7;~u0e={x9=PY?)QEv<aC_R+&fj*m7z+WP41ql=GrKHB@};G?4t3Scy3
z@h$d;OrR5|X1LgfbZRq+r-VRPAKiR(_l579DSN!jvSl?vaS!|GNg(^^?}OQ<z4(le
zKECjD@U$<dmHQ+#5^C>mZlOFoKETI7AA@`h=7{nOp_=Ovbsr{A@p-azx;BRT80O<?
zAJ6z0?qh_HM|{liG1A8<AJbTNkw*I%L*V$B<YTOlaX!ZTm_UG35`R<WqCitH6-joL
zqhrgHeQ;W*_?Q|^6Y-z$Co7=Ickw8(>Bn@AqMpQ-XZo1s<8dEP_?XR^ohLoU8T2v7
z$D_X3`+^2@a&K;SJ&#z_Lz>Utc9UKh7k{~hL<C^{NgoS*Eb+0_2mcha(8nSli+yxj
z(T5(oFCio%D!dG+d&<ZDxKw1Qw9Ln;p*fVUNrT-7#Gm!?oR2qsyyfG0_T0xxAFF)4
z=nF|{xsR88AtMo1D}3>Tp_hHUCS}s{$-(jgj`yX{60h*0kJo+iuijT9>}BjU9r|x@
z$_5IsP?RDvulDh_k4-+_^|8jsS|96uZ16!oz^2yu;unGZRy_`|ZuUDqHb!5hVVMqM
z(jEEvW=^+{tv){R@t%*r8{}t~-uHzkizIxhgH-LI%nyBVP5j8m$AshqVn1ZQeymmY
z3w=bs$!9)3CmIK65n!8-?LMygxXzjKvC~Jc51H8I;|t=dk8?hD``F{-xQ`P)_Oh!!
z4*EF6mP<?f$y<s@2l)I=!BJW7zM#)xA4hx~^>K`iOcmBMhHbpd-vo3Lk$e0-B4_PO
zA165rKE90x_!T?s;~N71Mho%;8gpn*CX=CRPdJ?RamL4YzL2jNYDEuM?N%asjf0|&
z@V$?peEiJWCwVRr5nn%YE@}&K{o><SAAk5@h6R09zwr|zrQdzA<1{N7k4p?^`ZKyq
zu<%{Qhw8)e;gSGn#Wf$MFV=n9%yqKU!KDn2sJO(xi1MQ4!;bD!3?O<F(>x#NeOw?8
z_y`ESh7y0g9{NZVg?1$<aMBaUUS0G-ap;nd%cQSK68BCaJ^tn6ijS)iZ=~!>lG*ff
zAO4JQ<?7@O&NA6-fQ$e)$?nLkDoXhSF{oSQ0Oh2+KDb@#ZIWkY=}uJV#eaR=i|*zL
zkT*cSK>X%|UuXaSI4=y~3|uJ?pkRPP0SX5w9-u@Z5WYx&q5+BpLRscx{QCw0&PmMv
zC&t}GO9m(vpmYE-dD?9_l{Eg-;6oL=Y=CkB>IaAgC?B9gfNBA%2dEgJQh@sdR0)6p
z_XPsUD+eIEW6NxZ>JNDx^Fba6z)iF&Hj=6aV4m0cnPT=gca&-bsL8$ss1txLKdzXy
z0zAkz$B1qG>B^`2!;5tT@Zov^?e?vx0g+g^GSVF*1xN(Q3J?#(Zo|Bi8DMB9fhr9G
zH01LEk^ve8XdFa&@c|fl#k()o6!r%)e^PFC)OgbX%{V&#n7*H6?P;-WLz1{eptWSj
z0*nhVJ`e(V>i}&6w2kWHU(C}kK>I-0Ee8eY5TIj#-U0dq=oFxHfbIc$5GG@!E&;j*
z=oWxIr;J2*IYk#TZQ^+jdmf-?fL?@rKZ&Yzm*UdwJ2B!IR|lRFMf*n6*FV630R5r{
z#i9^V3cEyYXduy`ycF*x4Gu6QK#D*JFfzcX0K)<dXU957BUmSS_LGz$@mu+X@0<4I
z(NUMi1Q;6#a(KUmMAeVOVV?=`3DGcT1lV}0(8Q=dDJuEV$pNNB^{M~6GA*i15AaA-
zIdo9$s5UdI%ZtQ}%n9&lfD;$-<wZOeU@p6wMk<YY0p=4vA-aWlJirqHt_Qe5s0LUN
zV10lM0Tu>W6yWs$Zv<EzU`c=%0=!6E;xKO|csv~-b6Mi4s9YA{l`{Exntxg1nE=lQ
z$a%Npb5Z$xR9<_xBd;tE@DiU4@M`qdiU2DE@Rc&RI={^Nrj9i?cU%=+VN>%;6n-tL
zk3G>%qmZ^Naq3`d@;&Lz0DJSs-wwd~TLD%R)J3ydAOB3LHBo(SRIdB~uD?Tg1~?nw
zp9+ah0p1O;hm8;k18fQKX@JiHOvs79M_i36?+4f#RhIOMe-Kr8cV(A69|icB=)I;S
zPkDSou=I+5b*A~}Wc~rZ2(X)U)IGjEz|>9ocLv-$QJnG^_(|^qL!0gj(0pi9R&LH2
z%!{dlqLF<8_6PVj!07-70vsex1~?hulgo)i0gePX8Z~m5<j^J0f2|$kSRRfakG{ey
zte=RkJe(8%D!|tP${b3aB369Tn^&$MOnnozz>o5jx6Y8U97^%Ug@;n#1?X}pHRe!?
zjh_qfeSjYV{1_k|!Rn`|%#F&Q1N;(I9$J^5VEi?z{}$lyo+W<|@JDp|XH@bopOFJ7
z0n`9m0G_V+x}P51wW8ACU^gessAQ#K>!x-9he+6}sT+U~2LZeQJ{k3)3cT2)N@12^
z^Z+Xjs}w#T;6i|l0WJl&65wip%TZ_8A0B^2U-|DXp0Z2VqAT@g4`%&u;=qsbDj^;S
zag)~r+zN1;-wIJS#GL?l1recOh~29a{|2}hAWw)EH?q5(Yr3pL;%4m%c|+t2(X2w^
z^)*?IUrFQ-F}7>@@~^Z=mroQ5Q6xms5S!o5DjXvJ*U7_gXB7*v`cSHL2tH6eM2Qe3
zLwr*{Q7XDJ_o)P*;jKM~QhcjSbn)L^Ey{%`&ljIbR1Q%gM8yyw!Rp!TDkP>YFHk82
zEB`Le&ypAK3o$jS+#j|4JLhywR@D%n{1|^QMC}mOqI&hH<i#2xuKyUX8KPDQw`ljb
zH}*L3Q@l=yx*-~dXcVGei25NCA+ka|dLt1FA%%$Z_2yaoI+V*K1V$uy)Ekjl*`@#8
za@nQJXJ0y$Y7l~T9!}n@#vvXG(UgD+(Ioor;YNw<5KqVA$q>)?%+HECFpGrHoZt;H
zYETv*Xvra0O7LhMqE%F1UakjE+k|Kv;)5X8E=0!=l}9DoN2eX4ve>!|-r~_II_(^y
zOH^4pCO<EB578sU&mn#ZkrU$K5buR}KSa+Ey+X_kF)KuGPS)Ynzz~B%-0R<>Pl&!D
z`VmPEr}~FT9!?F2%3g<4tj~F_`QQ*kLd<@(_tX%n5JN+ZAsU1j7GijaHmiD%4*8S5
z&cAf&HzLHy5LFK~f9r$nQ6VO89`x6`-aMUnIJNX}YFvo%(cLN0^Akc$icTj+<%Yv4
zJ~^4_w6gi0!zq@1JD2B`X(6VEs4<|$BT*m1!>R8Nr)Gqhf3PGk&JHmr#L^H?aqdDq
z7Ge>{*d{qQ#603&KWZ+RPh1M|M93t*6pw00QWHD3XmKR9_jH?ld9oL9_(xJa7DkoP
z_mcOG%vj8MES+2uqC?HBF6~+@<5Y%N8Ddq4i+vK$a85(K5aQVo&qY^W`KAp&I%-bV
ziy@YWcqzn+5X(+BWo!J(n?1`+J(7AkM9`*1)9>5-^Gge!z7pcq5buQ87~-`MuZNiU
zM)M6Js^rODb|m#ibowSSyj6?0qH=Xq^7QQxYyMYXOVWty>!VVBwK*T)pf;awvnj;8
z1ZIdWAu5$hCbzaRzUYzfUb0udtjg_M<jtFXymWFaF(<^IW3qn;@z#;lhanDzI26@C
z3Ypz6F7o&!#HUgHv#9($Dz}B$9#wWk<({bA8Ddvd;agusmEBRfwPe=bsIu>WclU=l
z@V{GpxLVKn;SgVi_&UUq5Jy8CBO3S5IuX(oFDl1FXf2bhoN1jbTr#U^tK>;iT&v{A
za`SIOoC<L|#F-G^hWPwQYQcjQ*x=wc;_lfasqaFZ3-NvL_}LIV<-z{cDVg;>c}35-
zcO>;=h(bqGKSiJ@H!Pa~`8C9EA^r++CB*L`{s^IjP(!@YHU4La+^BM?QsT{O<(7UB
zmm^BgH#DJz;Kd73sfREkqBcn^FXbsSww%R&BEiEB;Y4*egcrh(>P-qI&l5w4c!iQ-
zRI-u|G53+dtnj#grOm~t<+&?zE`_)pHOrRy#j7E%h3K3{mo%=2xIuzSqgon&lkJne
zr%@<PiwACn_?ILfqW#Y7FYb1`%_Shj;8IQR5*3SOR6d$&+dhk@dD6&tGLb)x0%_z;
zqsh@!zNlp7P^Xq11|^#P+O+r4)SQl4h0`dKM(H%lq`AXSw;4xMMbjvj#&@UU#iO!B
z8W(pq|FA>Wv_d&0(_mRDDp%C(nUO}>G?2!9X_QN&d>R$fsF((2$BgSeUObw*9K`Mv
z%F&l3+1pBKs9Lw>9kYJzm{sj;ymA`%r?KT|s!AFUq`8quUtX`M#{VkU`O7a8)zhev
zM&mRdN~2~PwbF>C`6~@Pm`3e1HkIyNkH9$_uaidIG|u<y`TLhG=DgQDDBYP~tRFp~
zpN(gf?i^1eGYz)cAdLiHDcv-S9bVFV)u06Hti07e!FC!(&op8WOXTq3CTS$oXr4xk
zG?tu+XQ$CLjb_mo4<1daM^nL<36?8AYu+-AR%x_LqkS5!(^N2<{(UsnCQXk_7VB*}
zeMeI~PMh%#Y5ZO+r&F4#i}5Wzdv;7?+wN>u*#6_U`gWzPTQL4`8a>nKmd0C^6Wyb-
zM^uj6Jvb+gjAJQY=g}*TerfcNZuO4JK56ugD$7?4<O2hu)>s*o#=tbpAM#AjEYH)y
z(KC&sc7~=gERDezFysP;r!gXp*Usbh^B9@ND9+${WS+<9G{&S+^*pMb$JjK+rSWwd
z-=r}<jR|QiP2;IFCZ;Ka#b%^2GmX(3rAg80<TR#472cXkY>DdAqw<meUB5jb&$Jh$
zS!q0(#!H7JJ~=y$Inmum(|9b6x&M1|KDB_T{&t1JeC+Y4{zO!k>|c&o7DV-hQOVOq
zX)OL<eMuVsy|pZjr_=bHU{B+jG@ec4!|0jk(s(|Njl`KWUWl%&O#dHG-vK2>@qN9p
zD@igeUO+M^?99%J=<F~fEW(m@Sy(bOIfLXV@+0S*ktiZTk|dRk<eW32sDOyVPU!CG
z>F#OL|90{1cTSymZoPVyU%l>`u6l)qS(u$&!W;qS3OX+f^RxK_vRtfdQ5KeE;p;3c
z7W^fGE){h3nHUNz&zAot3o8U(Dd?)VGTEtXve5d3M0tj_S@<@a&+66-yh+dvf^HOa
zOPd03<-Zrv%~{wY0GVyu#B9sL{e3)~YtPOPg6<G>r=T4Cw|V!7=+P|vD8NsG{+xxq
zS=c8q#SUg+e>OfKK!L2Hhq7>3;3I<mVlV%q6m|`6OnOW(j|<A^2?0)K;Zzn*XW>jX
z|EvIuN3^93+k7Dl7qd{xZ@2l9NP3=ytSnrnA)>zh<hYuJdt66ZxF%As3wnbz3%3Mj
z#@hn08FvJ@E9i&QYz4b7@Lz)dCg|^iGU-7U{t)<2LEld9!z?@!(Z_;5&BEUTJQ4IC
zL78``n7DsM^uH`T6Tow#9g`URwA)#*vJjvl%|b||h6R-crHqmVH5)hGQB)H+lFiWt
zFtT6@kZYOUmls)hNu%vY5kFoD{<~t_UT5Krh{pI4>qnd)IRu|sataW?slYpa<Ptcq
zAGxzr^9V3Y^o25%&nGyB!1?_skS$qIfI``+MFl94om$L~;sVDDO2uGN4DX33{3w|%
znWJPp`K3kleL>6kk#xcCU3ot$_)*c1N`4H^bS9o|{Ot*efT6M<RRyzqy0eNOANWD=
zp`ZjuPe|o6oz?tUFs5yS9}WSCnbF0<{pjsSA3r|wqq-lGA07Po*pC{1H1wm9pWd|a
zsUHnEZqIEm&~87Hv+<g$$>ezasOg7SFnxY}=C}V0e^oHIo%EigmLIhRC&iCCeta%)
zT|xOb8U+~Y`H|{J{kLM3Yz`e@GW+s`*v5XO`H?9KPtUHmsQ^s`&G2Jj6}v8mW^Dh<
z1o}uJZte$N{I&3-r4VZ+Xlp^+2-;TAc7jsAy#V}&s-qvBXy^U-zDG>w?9?uP{Gb+j
zTT55LoLn=u-|F=4d<yvOA7b}UNIm@^?IkEVef{X?$0$F(^y3RZwzqH&_G5?u{rwog
zX8WO>kjNk8$Hp~Y0_%ZyR7>YjKZg4;!jIp3wHxNg&a*9}zCz@W^n;T1d$l9Zdr}(h
z$5(#L_G6A8WBk0`4AcFX;m24%#`!VHkI8;qJlk?zFYkCiCa@(fos3QtfcR9ec2fkN
z=11q2&Z&M>J}Hq;$}DWmXD6kZe#{awtxihE55%(>2U<Dj`myG8`T{=|`Y}&*XTG2V
zPTGB0<j44yNsImT%I^K?Ks-6?PBtc9=Ev85R0-gN0G9i)!jJF#SWl&$6SI;9a^l``
zew5~1<;QA2vQk|Po(ToN@ne6Pq_rZI0^bU-PUK>A1INveupgQqn>b&7oc804ADjKy
z;>TV;_WA7#lD4vWoIXFjtk^nS<Ai-b><)o<`LUZL><7O-|3cS-ep`$7`0*2`fLn~R
zXMgWI4n}|W<6edh_WN<bk6-*a>c>IW6-=PJk0XAN9`fU`0L1iF^=6NY4LC*xsNbY~
zDaT1aj&rehNoF`90Izjpji*FK+$MU~k8^(f>BnDwocH4bb-<4YoJT({`Ei2=!H>(F
z+@`jMU-8=?ririmag7a5Yr?IJ*99Qv`5k@-yd_ovcWB>cH(w<%-0|bC!1uB_zfxlb
z{!P%>Pwb5R;`xW)zOCu@QM-lwtNEcHkNkMf+418sC3*J*yEDjkq42lg{$~0_Q2wnN
z-^lUQkAK-bKZyCko%ET&JaEd={A`ueA&XuI{0IsV5_H+W#by<DD1Q6TRR+~>e@`KZ
z_@VoGBn^cFF#It6$P+-`0HV}1)*C=<052#YIo?n$-S*8*FZmP@Wxf`a^|Glk0sAT<
zh8zMEUY5b*|8W7F4JODh3cV9Rt^hJtx}W>(cIFP?vkUgsNcjjR6<YV=odN;-B>TGo
zTaoeyz`uVBCnWN(^@0JAa^GW-0Ez}sJb?IsefP?Q9JVW%VnY73ma9Yn?*(|02tDDb
zU(kU7-VdNm0K_E&C>20yfv235xJ!!6vLaeu&~k!u`w;mR1SY5$K&5QV?*;TS$HPz`
z22eGCw1EAyu37*I0eAwa8Gs`IX8<1uP$PiE0Jg7<cLgx%h3i>vXa8=lB(~~>YsE?F
zqX4Q0K=AL;WYSLp_>^On+vyIV;r6%zIc?!xC#B>7h?!+>9;Y_|UjV6W2?r{GGbg3m
z0i*;_D*y^Jkdt1|T_=FLqDJD+19&W$^#X`FB{8tH25iGi7x@hXC~-<+;f(@lEGi<C
zA?NYrbkVOS?8PZ*N+V}R08IsMCMcPi0yG!2g`h11XeB^vLE8vQ$+iNp5GjBT0sI=k
z{Qx@h<v)O>tR;ZX0dxsqLI4v3=o&z`0KN=hbO7Bs-2n`2l{AXhtdy%~05?jx1_#h9
zfZl@BCxE^I^b@#d1NRpKP_jRV=#>4NWq{xe4B+1Sc7p^?%&>otu$&>Hw4nhE3t)Hv
zf9#GUbA(`y6qM15imzJ>XY$^ZuL2koK<lze;{*5~<<p%0bZ7N34aNqLT-!~HIxc`d
zrzC=TWs~-=@J<R~ascxJDF3}{N&r&>m>IyV0Hz7fi~y{1uIbd7K}r42#ZZRP4XLpV
z#IpmKBLwCK_;tzVyiJ`SzyiTv7{H<c7K>CSF)R^$3KO%yuLEF9RtK<#T^4wSpeqA7
zJT!F`aY_oq^i$F|0jv$+7*(-_>)Qa<1+e?HbU1+Th)+r12e3JS^{j|ZUF+Kzz$O;B
z)OFyLbp4d%KPBZkEgf8(w1v3>*b~6k0Jc%#1NecuRIA<20Ja#lKm4n~jsQ-sX<7cX
zL`wNxTq&m|*7#!pKXKAoNPzdYOFs*`U(me)><fUx<dYr{%)X~3Mp^P9_IFO|iqq1O
z0M4J57=8)x*7z1j19&K+#{)PKfXNyII2FKY8niP~wKLKgnxFt~22gHJYO^!axd1K%
zaFK<Gx>(V|qp6oT`!m~Jr9z&OE(^@)70&M&iGba|7Ql5e4mSiPXZacFmMHVKpsSM`
z+zH@r0K3je_X0R~MtXckVvWBA@H+=Ti0VN+pvncH3X}C`0DlGWh)b2z@zO<G@#j|0
zL#7^xA-2v)e+Td+fPVtm_#_us>(hY!9RF8X5`to9rT+xyncz_1c>q}f_=OP&1P~M;
z^1}7t=hzSp_%@FmfWk>XYp?xJw|Pjz0cZh40?=txgD4Tie?y!G4So=DL71YQw8l{Z
zEEW>LOMzbn@H#t{?{$=ULsP?C;$1OE5IM8)_xoaaZSFfkY;EIwm*3htIdX}l+=Av2
zG;a|3vgIG#&Xu3pU)paA1q8ET5QPLNENGEz$)W-j3!->7hx>Bh3j#qT2oAl;@mze#
zAW8-853;3$_%H~5pnN}wGC{O763PZqF^Eb*d-F-TAj%77l9o_`lcgq5fG;hTS(Mw}
zELtT9-iylcLD2qcOu(Y5iUO+%`s#3@O7A-yK{&J9lNf|c;G}HM`Z|t}gQyWiqaYdw
z@ktP$22neRlpx$eB(pD_UB00G9l>$P;|Zc>5CmSqmlwL3`fIV|&qS2CRuE0kN(6O+
z_&kWzAZ}kN$Y@<5z>M{>CEtqG528VKQ4K{c6iy2wJ%|lKYz(3a2P$YkTf4C2Aesfy
zA&76@bMTp-83Zr*ZV^QDAhwjSPwuoh<RPb};I|5*wE%4dEilT_mQ5Piuw4-C1xFIJ
z>WB6%;XH%fF=+pS=p<-oL7CJwh;Bi2528m9eS+v4w0E92tC6_(3rEi&NP7j*TY!zV
zlNjw6#1}!#3}RN0f9AXU2l2lk#s)DUh=H7uAO=(4MBzh7gINB)V|dW^*gT9~Tj8X?
z6mF^Fg$1M|g0_D%0)|mRe91A%=@>2OSAsG+Mu2~EIK~C-dzYpL@lko6&a*MYgdipg
zJW0^Wf=&_i{Wu2&C_F8Q=_1z*LAjlb%-KQA31YS2JkS#61~D&)`Lq>U0=0KR5DSC&
zT12@$bx{z@f;e0|Y0oa#V!>Pz#8Lq$&l7nsRyp~Gxm<8o2)Z(8JKbgKDh^b$cmi(x
zSi@-zV$b`IwL#lU>bHWf6ZE?va@9^=FE9a9HwE#15I=L|siK?Qo2eljPpADVyCrD9
z`fd$kn*iGd{Xx(jg6<TQ+uL?=<OSaImj5b&etLfr+7;)_O&uGM>DU*<fgtGfc0VUE
z)ArLydN62TSa3+t!-6t;M1WreJt}7ZSP;iW^n{=%1$~ofZ}K@4<SQs@hmjJ-xggF5
zkyl1O85e@M$O#JJZU~oxxJ=y(p+^W;g18#Q$05`R;hI>v4}$n3i0cC12;ycCx471V
zxK9-gCcGHz;0B~SLEIGr_XPcw^KvSN`_s7R>ZX$LTM*x^aZ>nqk!4cb0)GbaR}gQ4
zhza3g5RZcJ2N4M3aS(q8@tlRY9Z!N7zTEi_Ee|y(#zFiqO>_{?g0^!QTF5S~ZC3{L
z<ikC><Z%0977bcrBAp5bxjN{%F~~#W2n8Wib1FC#j?z|lIB5G?SH()Fb0JMI$&UyS
zsN?8*R^nYqW)RUJtRP+l@hXVd9Ii6<9+;Ow{M6O1oyUmyKLb7d)VAz5`5YnS4B`C{
z%7ifVtP~qUp%4m(5EsHbA>;}ncL;ex$QuIhF+45yiqOf)Br}1#-}6!IdBVGb<`=Yp
zpalixE?J)SD-uFc7RW8)Aruq*@wp1chwKyd#X~sPC$-PtwMv9+^F=?U+_FMRgitbs
zQk=&z%^58%vJ=?*qds+%4dKHOs)kT5gz_O&2%%yKl|;!uOl!{eFwFAARt}*`2v!xx
z2O)bebn<Rj^^x{~^F(B|5H>A$J3>eZfj))E;mx*A!AumCsjiT{CnrfnKN7UMpls(S
zqOLk2d>+E5A-F?G4#5*b?GWl5cI8dXT{DEw*#2+r--+H3d_tbSgZO-`6|%RcGl^4~
zBIL>EL65p2)C-|`2rWWL4WWJrO+#oFLW2<AYaf%w!4H8~4>Sy+Q3&0|m7t9Uhnqi}
zi1O70dvY^E;3?@oB^^<5d)jx~;&=opGlVy3MTYfl*fNAxA#@C(QwXg?XcNNN%$6NQ
z_O>Ck7a(u4qaCL^*|A`dLlX1CVi%mXx8mHL6xTU~E+KRil3fK2^t9b{GnLosz1O-R
zK~FY}V->>pA@mNRPYBaOm>xpk5c+YzL%eDPUxd&<gyCF7uN?zI7#PA3s$U3$LYV#9
zF*pS2wWD~g7~+&#F>f&eqr*ZNT)a3rBSIJ{vX2t<RoB=VwPIM>S0RiEVSES^1pj~3
z?OHKo8Lbt=;5!gAP83c+;fWzk4q-|NlLWKa3m2<k5=)yZvNP|-_JwDJFf)X&Ls%Zd
zEVeL&1tBaH0&_x`8^S!!@&UVWmdR$%7t#K&9nV)5Sro!zA-Po0C4#a{R>8X1k!6Cz
zwyg+ZWeDGfuuimgRS2s?SR*jS7`_pbYeQgOR>Ul%--WO~gbgBzBfv6QDft_znYHYW
z5N{4)O9&@JI2FRy5VnPIAcTV<Y!Bgw5cY7EMfZ1vuuGJ~EIYGDX}743wX?dPLijm^
zePWKt*((71n<D0jRqqdhnBY(dheP-!grkCUBwLb66gU>bajr_id@KK!|8~Ythj4~#
zUt~N>6A{8?n)eW|s>B7_e36Ut7qjbno0pW?-!|rIwhW`!L%0zF!A-%uB`}3=XUnhw
z_d@tJgx6dqA>0q)w-Ejf;Xf+yS?PBUNC=NYco4$9`p!Q%ZfB*+4V`~-p@l%eK>m|u
zzQ-Z_6GF8V=iebbVc%0@h-=n&zU)=-so)<QP>`HwAv_Nu5`rE=RtWwOGS|c?Aq0d>
zNYEe`%cLX<lgeyZedmGt&QPy-HH0t?h>#)Y@>%IoYRot18XF;)Aw+5JLSS{w_>^Cr
zL<9ajE4?5y1h(XM9p@{W%Fmq)z0Wm{k&#12E*ZIH<dhLB+ke}>BXgrT+JEV-HlPSM
z)toz<Nm{0-YfqLZkBo*Z(pUIvlS9dKc^bScBfpGMD!x=vKt@3s%M^UAppcBhG9Jlz
zETf2wqB6$H7$>8cjN&rVWTeZ8mr+9Iz3`|Z<2@OW@qvsFWt5arN=8{3<zyUK>Mkwg
zeHmqB`$i|aqaiJ~%Qd)$<80VI-B4ae1sN4(`(^2D75n1v9%CITlB1H0$}*bgbyShT
zC<8YoR+UjrMxqRtY`-2S$Z*JT%J#MID^I!TN{;8dy~P~7Pbx{qN3wmMy}E2aJ9rA4
z&i@aMaFDY&E8!CvpUSAsl4ZDMB+Ky0_)LaJM!kOu)Rf_s!Mg@{%6P<5ch!x~MPE42
z547*ud0Hi=mTX^$cDF`ir;ifr$oO1F1CFYUy38vhRYrXoH_AEqr#;Vu@Q$sU_3fK?
zcx473e3j=FYQ&Zgb~Ki4H#^E$+ffWR$~KXaA)~vD9x|HBXeOhzj5abdIRY|T${4!A
zNiP{KIJVmg-zsQ(q#Re=(Mq;AmR|}a&_8fn8SP|rl+lS(FGG^;6BZpfJ~iy)TD))i
zQ6EQdZgDT<=q#g)jIJ`e$#`d(ePWlJw>Nci@<J&7+-UNN<Ij<fo-%sL7%pRkjNUT(
z$QUGJu#CPk`pNi0Mt|8p+EcrSgGT}r_qh3-9Y7^q=OkblDBDk7jx+x!9Ky!S7$(D@
zrv<NlM;_0O@@}R%Pil>%;&F~-jFIsr=i+PkXc<!^2ff>IYb%et<}ni({wL$M&)$Sj
zZyVh6KVHTJ8GB^>C}Se0UdCz}Yh+AjUKtBzERr!*#xxnTWXzT^UB(O<Guezp`;f@h
zBesKRZe`~QUjn*`m?LAZjCnHXWtZn%=F9drX=Q@_Kzz5UV}We%^d@Jqj3qL@ma&{e
z@w=C<>6db`u=beRd@JDfF1&1Xg^ZOP{ECiMvV9K}2jNa%$JCD#c|w-%e7}*gR>me7
z-^=(`#yS}rs0{66a&Ig0os9Le{ZH@tJ`UbkO+XKppGOilQmOhln!QfgEMtqz9hlf5
zV=Kq1l4Bc}4An1^u;60{FEZmk-lvruJi4`$>+X}pT{3oa8J=--S@A3eoo%x3^f2&~
zjGtv(mT^VKUK#sj9OnX&v7bv-#$g#ps8nJx9->ZmNv5MtdX{4$+rPDMoBBn@QK~M-
zs+wcP30K!p!hk((c&8QbaX!g)A>*8k^D<7$I71C7;yBCI5$`B(+UMYS$hUxzK$qkE
z33)-rMH!dahA$k==*eN9YszjHd%9z2^Q#>H>W<qo?#Q^tLb#^(x4t3sf^XbnQfFt0
zA`Wg%A5+V|A;{C+c~{0g84qOqA>&sW_htMh<98};FUM~u-KAmQ9XT`6!AoZ8qKXb7
z|CI3;ON(_pq^j(4^ID3%{4m$rvAME+cjw<Sp2(=9;By84$aqT2rT_~5mGK{qt%95i
zp2>JFBg{dNktM?~BP7#n69Tl2{Ffue5#((4bnph={&5aoW=%7q$hP|eRpy_Kwo+~A
z?&$KdBO*hW@j}K+t_~Tdj3}2aZEQXJ90w_n@bE-o*}l%@T^zl65J1Lj8E<67DE7_o
z)Cz9@9@*M)zmL;CuuRu>BOS2{;uPdpP(Z;u3UVpPt012O-rtv7K^_G>NccY<)o<iT
zf0aQ0RPQSIB8TIhuZwoo62`w{`&=zZ<FBBof?^5^E8v3V4*4RA?FaQ_KKtfw-V#_`
z0e7v(D=49$LNWWaK7VQQ>O=lfzoez3q=Hfk66gs<L1_i=EA*m_DhkRdD662NVjG8Y
z3d%FDVt>qPF~YvhjVFbdiCaGDSiX{w;X6D}@qD15eGl8PR8{by0?KfjZZ>dKQ|t@x
z$e*5=NJnXj3X&Cg6u1;5DfmRerwTq&P+h^t3TklTUM8@#x>*UqzV?}>8eYfs=8he!
zoIT?mZsye!%JYb{WP1Rvslcn?GX=E>syciM_|1za9QntTb|#H}=4&fRQS1j0*XgQa
zj>*HFGy-)M)Kf4>!C(cc3hFE9prE6I1_~Oon+jSeXe4qqQIMg4js?>cT<0099!?gO
zE|P}qNNuX1nF6|o%VZncJLs5>o}ydiaGWUN7+@r{RM1MH8&b4Yz@I!^n5{WJ$qu%Y
zhq&7jEB0O9lF*RKgKR!kg}THur=1jZR?t&HF9lr`bXCw@!R_IWZXCDX_GP}jT!uHq
z9qH+$lgu7ep}e-Y%-#z6DCn<XfP%gX`cYvN{J5(KuchGqTy%**KiKq(%T+c|K_@j~
zQDwUX{>U2jQQ{B<LlsO?Fj>Jc1;Z75rC^ML5egP|aem1eR4`J(C?+*_@EB>Sth78m
z?Eg3Tbm%zJF^H~06pUqc-0ee6e&4~rbZGI$DfYifWKK{pQK$;1mDY*B#HT2js$i~y
zc?zZ}n66-^f>~S?&l6@SxKq#0#m5|#pJ28qc@D+sIJd8Z4@dsPHebO41&b6cR?vHw
zd!d4u@s8uQZ2!shce;dXJh;$OmS4y*sEB<m=q*^TV1<H8Dk`g3sbH0Y#|r*duv)<y
z1t%4p;`}ODt6&!!ui#q+>lAEOu!X5v3EwH$pkSkD=XxqnaYwDDO+M>tUpu}@!S@Py
zLuk$hj#n$4>RD;4f^7=6EBJwn^qjP1a15^)IM&U%L$RG~>=cEtk2DKBl*ik;_pqA^
zjwtv=!A}Z)rgkYfs9>*H`}-8^r-@t9j(z;-69+FEqtjRV=cHyHQgB$|<$6u%%8B0@
zFFUxWtjXr`w$s<63SVGwTtVyrdkLJNYRL)oQ$Y*Bt29n4I79tZa7)2i1?Lo8QE-)t
zG^EgZ1s4=tq>@*#eQZ*zFDbaJfTzn_*LD<XYcpw`dd!Qx#?_(V2G??&gO?8Qn)qiu
z9JxE$M}}{6Diu6X@P~rC3hpWRO~LO9epPUvqnBXcH$<1$Tsw<P+Ru9G42z|Cq)Vtj
z75qhoFW`7c3puV3AB*+qoQ+-zUnD$YX+!K+z9%&POjVIf#Zwx81%?7s!GARV3PK8G
z1<w^^iJ=ZE@Uw&TClE*oP~e4qQ3ywmB@c5sc<rE~Kvke~%CZu|w5SRq>{<~Aokei8
zdG?B`NIxWeab23vzAT9kk*I>#G&>3`1uqo5WCQX#UU8Wu+fOlS9ox@u&@n1<sEAeV
zf2H`*oQ_^OJ~>tJCKn!$jZ^Vm^MbsOmH$2FR*^?V2^H_D$g3isiXtkCs(4pLe!lsu
zC@6%V_bxVhzmM%<D5T<)KcTQ{zhm$m{h@9SI-M(~f(K)1+T&FeS3%+ahddPEUn29<
z98ghGMHv-kRg_XuT1C}!()+4?8kB$J&hBZSSE55{9y%+hqP&U<Dk_Qs-}(~dBAvC;
zOBbp1@x?N$sQ5rdBNdHRe8{3yB&+bKsHP%8MUsk-R5(=7)rnKZ_Ag=v=PJZEb6%L3
zsKTX!?gbe5ot<W?x{4YqK2h<pYX2Nypym8j1xJ$q9k~VIOB#P-@U^q13NL%DqAu66
z<nXDets+IW?+f@$wH=w(QteZp1oTi^N40HBopVx=mG+r3KB?=eNL5i^1<e;v*zvbO
zhd@FDm5%9b58k#TpaBhw=XRv2NLSHCMOPI~RAi`V!GU7QDw?TiuG-IKnpQrTsF|6Z
z=+3qeAAYIli$p6GtyQ#FA*uGuY8w^pRQvD8vw0kC1&8{;XuER~r@n)V=l$&`1#w5!
z{(rlZpq*Liu*QsbQ_-E(spzkwhl-vmXe#@v_G7x2irxayLsY9T8~0J|XD*F1Y1uY~
z`l;amRP9zf2dEgRVu*^N?6r!)s{KDF$Ch7$I8Yy!b}R`d3{x>&#R%1Y<n`X?8aUj3
z3KKJoRP9wm4=SToe5K;0idQPeuwE5Es`yF8SQX<`tWog|$6v(+mFHnGU&TZflT=J+
zgQ<#~aTVLTrcR}*O!Q?=@XeH(5j<;<G>zpqNLo_bt^1nKR54q{92FhcXUr1(9&1}O
z^}X(?b5;CW(mnK?#OMMQ3so#r@wJLYDi*6)qGG9v-Q7}|+OV{n^g`Fve<t|$q_!en
zu3`nXMa3#n=FvRyJMzSnKl7ZlT1DohRtY8TEH9FquT}9aD>^6bRI!eWPQ?}#TUD%A
zu|dTq72m5kT*|%foJ6`&;G+Y4HIth&`({!2&*!91*S6lq`O1;BUF9Y&yR^_bX@`n~
z^;@xpMbAqF^C$XtvB4_#aM<g(D8tdHeqQR)zS++z_KKo@7lrIoaYV&0D)y^5prTdL
z*n=t#v1)cXwH0e&Aak*|`Hc~+j;c6D%fKZ=l|C;W=YpbQt5`iPqw9HzJq`Ew4NY#&
zEN4`lRdG(md8*BMX-kpVdFQ3|=cNmx>ia5wQ*n{CoR==CxGcaGL2s$JD!?^CDR5oI
zjck0AJsRjEli{{t-cfN^fO~@eD(HP7u<d<&*sF{AdZ6MD6@RMuOGQM5uHvDJM=JhS
z@kBI9>YDmkfb^qnnCl-Je-)aFU@5zhe^nH^VC%+zqO<JpGp;NZSt9CJAqx=5P7SIE
zW#jO9Ny)~l0AcohppS)&Zr_Y$8Y)Z`mWrKu;``Na)p(0tQB*YMg9{QH_JWJOYbwim
zO`})B^==sX!+4`2CXBCIx^je(TY#Kl#0n4>MlJ!E`c4?7rWRQen?$?`v3bJCE0SK%
z^X3yEJx?7b6$qnXnEnRQ{(@8}jKX153ZrruMZzc=MoAVDMzJu8hY=q}i7?tVNZO0o
znhU+#)7?!Y4c-d_qO?c#Gugsecs|eBu5_56FHtUx@?n$-qimSIgWS!(@f@A+eP_D&
zZdUU6hVCEc6mFK`t`J7WFov!56mHn;ouuTUi+xqX_#lkxVSF6MhhbC=!#rFdF^p<q
zB!t0w9bxP{Qh+VLGcA3_Z5ud615QrJaD|a1aIHoyKN2A2f<%EDVSLxr{b?AiA~Lzv
zCt<`*Epp{_N@}{>&F1~$WlKCPJPdCbqb^9FiM&36Dbu8G%UWT~iA(C%wAj;DzB*xi
z9!5?Lu^Q@zQ7?==Vf+|IY8dsySQExKVKfM%VHhJ>LKuz0XdFiOFnWZM7Djp)Z8?l#
zGzrt!7FvbTI*h$blA4C?y*HU*G!tOa1&Pt-VYCRNrQr0gmR!7byB78Atu?7jlZp=Z
z5wr<on~-cDh9tzggb^;~>JUaJ5v5E=PUT=<vueqm*~q0y<P`h3RoCp)ZUUUXAoUER
zR~SP%9bxniqfZ!LgwbE5{voR98%DqETr6im7z3#%7o{O#3=;goVS881+bUR{c|l?-
zs~gUqmUc0W5MnH((wvyeEt9?sV{{m^Ikp_|Fvf&2F^oxJ{7;B&DHzMVW5XCHqT|Du
zAON=vRWI#g;Gj(oV~SwTV8)MIO$}o@$Md38<DxVzjM@d`J=Kz#Yv@I3rVyJYD8wMl
z6?j1y3k8@*4KMAQ9|r4Pa#30o#^NxRhp{4zC8GVy!uVQ%rC}^8?P5>aJeI#;L0jUL
zoWzULDpAypixM$YS5v(edz#jUalMXfV;Gyl_*UR&7o~Mvl9#0K!dNdj8w9O%N%CEi
zz7J!wi0)#01lT6%RzX=*yGzpcZ2UtQI|Sazo?em|D8R5=Fd6+RjGx1J6vksVlFKKI
zUpbX;9Q(sK5XM=4s14&_7>B|*7RGT#>l9PoI1Yz#gv<XRTE#ej3F9bd>XMWz#wq7;
zGWA3l!{0bga%pp%YsZj(It(Ulyd<3oBUsDD@>6p<C&W0<hjAf{YivvyuMXm37?;Ah
zOiLBx?6fZSiU3yyRi?y}x&M;H@^6H3GmJZ7+zsPa7+2mnm~>l!x-rfw3+)>7<#1wZ
z!S@%&+zW$QCg!YvKaAhP_&tmVVKDV!7=MI$aVP!?<G&Qw;vNOqs>GRb%*!?tv%xKM
zIR6ggNf=QsoK{Kygz+>Ce;9!<{uP}6!gwaY)l1UzFdmloyuKu5h4J?#iSm1v`ifna
zf?<Rx6Nbh?U}L!CSH&LL;8R6Liq&^}IwX6lUX~(Z=(K6H8<!=67Q^kK<XZu97;T^5
zZH4iI>-VzsGK|+W_?#oR=ar!2FH7&`cgJWTT_bP~f$wkd#c6m)!&43aYRIJ_w}zq`
zifQ(e%%h=@_WyP!=M|iM8s62AUqb;AEhuPiDgM>VLT_ndAzwtp+2%>y&PQ5YL%fEG
z8YXEd!AdoxX-L-q4J9=sYw&0&rJ=NjY8nzWysx2*hAOm^cbsK4l+#dALnY>&=ALvn
zy}X7B8jg+i@|#8RpHfTJX<3;q|294OEAQg|O~$WI|M7#&wzHaipy5LeKVOzY@7AfR
zfplJb-d6;thUywV){v;dr6Gy!*AVwVZ?Wm_B420lOGmA>>6;oh8#C71e3z$&hEFsM
znv&tx@TrEbyFH)m@r>HzVbYb$5{2uvYFkr-S3?~QpKI`G_)J4B4Yf5aHEJE1>Sh=I
z6>aFf%M%x@mBPA$wU+Gi)YVW=Ljw&BHTx?}s)ipUwdxD};<D6cSw{biltvmFvxU>#
z)9WN1>fhweNH0T|73obhWN7HCp`V7P8k%Y7prNCNObyL7w9(L3LkkTpHMG*uTEm<N
z$&IsW|8Kmv=T!Hy+fJ6iFuh7<J7%oevOVWZ!_|CgOS^b(r5E{BcHJ85)z4&h($JY*
z*3eDEkc}C?PIgxs>+Qm+AM54dbl1>BLoW@zH4Gf(J+>^Pr-rH<GuU4WKV6;?e?{se
zx>N0n#14L;p}&R^8b)dupkY|u0)tsB^Ky8FSkafYMon`sET37rcFIsr_XiDzYslHP
z*)Wdh6^V^MKE=&)Mrrs`!x#<!6S+of7+o#%D}j$UZ@Xi(H}i@#R>L?A<26jsFm<$d
z%XsgLylJ<0c{q||m#2UAdop`HS;G_!KT$&{qhXqcl^RxQn66=lhHplCmuQ%&VU~t@
z8ZQ9FY!0KSWiHh?Tq`cC_Joz`J+DY=7uV=3(gF?jM|r7r3pJc9mHD33Dt<%yA`OeF
z`5V%&XVoTMs$rSNlPR^o*07xVKRRP^$;{PfGgnYi*QfJ~8ymS=!x{~nHEdxUG_2(s
zS&_a$2!E?#ordoO<~S_ABCY2#DVfQP482ySZ`81fd9O&{i+0YEYY}rQw`$m?VTXpD
z8n$!UF3<RZlGEJOWKI?pn8UtH11ZBE4ZErH)bLB0tmQ`ylV>!cF!5du`!w9ta7)8}
z4F@!w({NtHK@Eqv9yJ`-kYd$3tl<~hlRcgz8s_fy9KRwR+wHkM&U;jYb;f0>wN6mq
zy2YK+aGJ_9#(PrGreAr_Xm~xvO*J?x+JEuuj3wi})Y}UhE>b@=Tw@he+?O<5(eV2f
zsnA#6%dB^|=hS3(sV>c=(wWz}x<`9CcY$4=8yaMxc+~mZ8t!QLQ^Q{x?rONlG2G+%
zUBj=UqWd&)U)foxsK41-QR~?>ch_ld$~+Jw{0F;pRbup^hDRFw<GfEq312MBc&y=X
z!P&YjqjUZ`rLRit_&=iihn8pjr{Nh#DT4D6JlBv#yB9%v1bz(xmK;IZ2!b?Cw5So}
zk3iO-Xvh&k&InWuVGf9fHySjm;xO0qS`A;a!8Dld5_CZgK}|uUf?9&U5R_t}ZN*=4
z#r4XV`lumkOauo8Co#0WDv{Q>D#b<+7eU?#@<s5`m#%jr$Q42E2p+U^-yEAT^?!|6
z2t%HTU1<TmP~L_O{acG|i7PtgX+nVr3Pw;Ug2EAW?Ut~sRKX){+{*?h6p5f{1n);s
zW_d#L*9op`3B@AVDrGPfk04&)5`w-bC<HAjC}m0sP&$IOLlPKey){ny%0*B<f=?rG
zM^GVxiV;+bpmGHN`=R0FwQ+gBjceYs(Xgvhl?am9kqADBpvwRc!-o-6&BoOtNXW*H
z2%G{ZW^-Huthg$%3)Lg25ka%n2_Hwm=)OU&PxE_@mud6~2k@%&-s*(p2s{zgji6ox
zHH8etYDM4`*cZX>3Prb%c6}DXqJHkNYYNqlASHr25%dfdz1)R+>g-}wZ;PEHT|<Yv
zQX|N0?*3v_LZb-kN6;VweQRv4QLcvU@|T|8U%9sobv2Hl;i81^Hnrk_G>IT1f>{yF
zj-V;q8NnA3^k*RvG>@Qn1brfC5kboco^*6|kDwK&Z+@eWViH>m+D1?o)i#25*|@y`
zQUo2cIlU{!bP~98Hm8dKT?OqXX!G5LSW6FfO;p$GEnOYM?%cmB^^L%6RNq^$Xuk*;
z9ecka>3|3Za_%A+8^NFm21hWIBR1YOx=Q`@(+PbKG#?V-#Sje%KE2Rz7zg1(!{LIC
z5Ok!VqXhjjg3$s{=Bo(CWaG;H5|qKNaS>jJfvFLUk6=Os?{slbj9^j(lOtg2>R}!(
zs{@joxMul6oRMi_UZzKIw@!^UZQU~>m`P=8?Rq)L_0b^D_x(L{BA6S&`Uo~eFfW4n
z5iE#cp~&@qj|7%5YM@OQkrTn!5iE}2WPA6L2%b%Jk-t<(P9El2F2KqNe!6GNuMp9_
z+hQ4AC77!PT@%4K0+7E}fNvvMm(BT(Z5Zle(#8ljMX)o1T@idA!R82lh+szqzYTWv
zyp*sdg4)9qwnlI$p)F^8TLjy)XLEkZqDRZN{<2fTgOv%|RcUtwdm`8y!M+IJMnGXt
zp`7hlMFi*SHT+r7m$MUyIbyTEN!ZWjAjA$va9n^xf*uz1h@ig+%A$@6a4Z6?LJXrP
zMD(PfrvyDMD3i`aa5fvqFNwLpDX?<=O8wyqEtYgKf=dxxj^IiJS0lI?!L10cMR1*|
z*CYxQxhCC+z;R8gpB*LVHs@3@??k{rF{XZXO}ZzTjLzK_)A3l$ZxQ?+0l|X^&Kz)E
zHr=ILImhNK_E!WCBS_6%vVQK8k0N-?k$-{tFYq_DovSa3{!#oB!Bc9WiT|1SH-i7D
zZzgh?ct+z-d#)p_Ba6nLD^y1x9RV7D8ZjMJbcAU9X-jn!)}c_Cd3EGs77kYgFCusu
zL4;<3tBJEP%XR6bC+pX?220DI$S`@HD;j}CgPbq1O~bbNFZh0qI$uTbnvW74u{z#F
z5Tj%DsFc@%WYQcuzAKPeb(L$dFO|_Yb6mCNxZ-p)>YC2%h0;=U>&T<yT^;##<khj{
znv_q+p#r|7d9FeEd=)FWGLCyLKP)_;tfzpEwUrVJ>c~CRJGD|G%PFFxsE#r^%IYYl
zqqvUubU;Uo4xfF~&l|6!gwBuS$>s9-GU}vVX_9p1M^8x|rFE?A=*l<8RZ0gb%UN~W
z^S+LMUwXHe_sy8;DyO5Ojsk<dPddky*HJ;o>Ej;jxW^GnuB78^deXvKuGCHSKhW`^
zjx-(VI;!fZro*G7rj7(14jt8Xd`$i-ms5vJN0N?29SirRVP4AdK=K?l`6C@iMig!C
zP0hDInPpP4hK^5ke5zyp!@?Zixq)Q2ZjW=aj?ODxeM|Yy^l4WAq{pk%y%Or`sHfvI
z9kq0%=%~YCspn?KjFv@e>v($76P=dAk^fxB54{tg&UN+dnYeqdD^*8*9SwD;!DP-|
z107o`BoZ*(FYjukqcQ86pJG=!$oto{lqNbdbac?sQAbl9&2+TZ(MCt6j^;XA>S)D5
zu9<S=pOhA&so_3}#GL}k5080bEBXo@_q@K+qOFd0I@;?X{-d00)z}7-jz`m7<;OSJ
zb)fBk6%$!qCmmgNbQ2@iS;zdL-Y%lRJ#$?D1d_Y!2+nf#6r3J9zCGa?P%@D!(Tn5!
zzXk)nseN_yV^4ML(D8+i{yL`Vn66`hj)6Kx>-b8?ARU8s4AU`O$BfyoAv!8=E;y7K
z`+5h?cEz0W^z2+@gpO0Wd?R&?xZt~cJ~=SZJ4(lwI!a|ErKKf>(vq&taE;ONKOK{F
zOx7`0$2cA1bxhFl!C-I4bv`bThv`Wl)l7Llwn4Kqo{2g>KkxhDnlwenZ>KyAQ*~V3
zoc3=8pLWXQo6ul}j+r`EP$zYIp~P$|iH=1&=5RI5bj{bXK*wAi^K>}>^!4hJ*1VrL
z<Dw5Gi*wL82%PlATs1lhMGJndW2uf;9bC^Y`j+YV>-)5<KYdg!MyFr&E$7<r=grX|
zZ55ZNj*U7t=~$!V8y)MoNNF5;B(Bx*yPEthEk@78#T8uVD*F<Td2)T>t^0*{y^ak!
z&Rp;@%8=Bj+4nj&>)57aI~9IY{VjrS6$|I@c4<2*xc>do^DHx^$DD!}uSx$lN!qDn
z7yGW`nvUH%_Hdc&IIQDG9Y5(vu9bE`$CYVmKkL}5V;@&jK40!Yvd^C!+t0gS$77n%
zCn;Rc2RTsQ)b_JnqfdH{==g<8QpY(RM|B+2agsC03F_~Cc}+U5;{=C&raif&ahH5$
zN)|uOUT~l~e0JlU?|J*r!sT5p`+CpoxS->rj!QcH{^Y-(H{*IwS(w)5zV9+y#c<!V
z?YO6nn*3(2>#yUU>pE`ect|zYaZ|@F9rsz0j@vr!=(xu<GRJjS2etia-po96UAEfK
zP5YIKG_JvpW1ca=<lm`^Pg4HS@h1y!lJtPNo}{$)C)YjgSu(Cc#p}{vT;r!bpI?_A
z>-d}YoDI|Qgu*|1p3+#+R(MnY(NUzdZ3+L=@l3~asydGl3QNl_=i?BSb19<x0j?k_
zfDY-p#H97VHIsFWn&nb-jJz%pxGN_XneEbaM5xjR#v9Oe7&I>iY8x<hL}_LXlrv!I
zctMM8Aisf^)Hf=sfj9%NY5aBMFp$$g!StjU1Dw7>{k=<$c^IVv&?rsMkw_!<j)7bT
z@)*cV83W}v)<3qPS$vZuu8sz0eYCFm3>+_?xZt`}d4Dpa1z4bg;s)Xk6f&@FOoJi@
ziW&&Gk_sE3aii+e^l>c|GjR53+Or)Qtf+*6_Y9Oa@V)^UC~2US!Hp%!jg{oH;~UJ^
zoVN#h8IJV#mN77|yo&}f@60q>!pM1Fc>@&;BpLX~Kt%(U3?vwE7>L;tSJ}Xa2C5pU
zV&DUI<O^@jGQNoeZCcH+P19e83$V0zeriGNG>~Xu^*Nu*uqSRupJtWkxROdI>Vv(1
zHcR6~R5$Rc0k?sV4b(6&>XfIz-zn7IPgwiRRv-SIl5D_Zz-Qny12qkJ4SZkT#b+*;
zXP0B1KMN!>I&+3=`*n$GTyCH@#XubcoeXp~@VSAy1~LsaH&D+&s)0rZ8XKr@pn-uR
z$2_O<`WhOT`eQ*F?YB0+!ymphF{Bv=ni@zq(8R#Z0*U9YOO1|sil6W_GwcWY)V|(h
zo8v0<PGnLGgGcAk)<8Q0tqim_(8l0CljO(OB@Q(M2brdfYpuNjiCviK>S*APm97p3
zHuft<6VcRgGWuwI15S4r16>UaGBDUcH_n%Vz6Sak=wYCzfnElBvv(C-G#69**v;r;
zU|i3{w@o6A@0l2FmiC2#{ssn6yXv`F1s5zA^*{qR_7?5Ct{L$V149jrHt>~!VVt0<
ziNg(ypsJ5dQx6pw$%!!VCFibU;*EaZRiWf9Lv89l<+1I*f&UpiZJiw29v6Sk$Cr(<
zY;Zmw7d78HCK#A#;GBW;1|}JpY+xNn%)k_mvw_71mKd03V7h_1)H(w*sFoQ?vkc6p
zcHNL>GRp~1jbGdDtnA|()Eol@``u~3p7G6Rfe)H3FtCtXebM)(Pue2RuQ1MQ2YNFz
zl1BdFE2ShaHL#N7Z(x~$uMI5cq|bA$FmPdjmv0)xq&?*1)g0Bn-ZcikG3-aijxx3x
zSxW^rFuX!y*%S|>1f0k91~wSjYhWMe%fKcsKm*&UhXytq*vjd?@8ffSi-B-X`>7OP
z#eU!8AajU*FtEeGZUcL$&!rQ0a;Qru?qaLvxWam~v0r#O!ao}L$-uGluAf=a8T(a)
z3+L_fq4D2u-~g?GffEJ}8aQO&h=E@WbiCl>I|ePrVPQb{JUwdQahXKEHy#s!PrVu!
z?bpbY22L3`ZQu+mI+V8Sv}fmnv{Mrr&`$On;yug3ydlw4l3p-y(ZD~{e*>2cTsCme
zz^|N_GoC9{9s@TGTs1KAP=RX(uCvT?F221mHGiz<mRR6-4BRzvTVTFhW@fddmj1dq
zj>}~1j?DW8elzfwfrkcur(IH$->cU04+9Sjy!fp!m6@DBX;&}!cAoXo7CoZmG0$TI
ze;fFDa~j_k`W=j=O7ork3Dvt~V)L?|e+~RcTW!EF@XWw-13?2JD)1~<mcd&vKvP2;
zd#C`XKEPR+=i)1YY(No;p&3xw*^{2IFxo7f>yf7E8#$TlG$Lf~YhKeplzKuV&)%&q
zXtBXuk3AE&bWW>#Lwd;}lI@pR(l^8=a+-)W@xl4xIZS)mvitsV4LaVC;!IS&-S(>+
z(%~m5k=P{1Szm4wc}#p_;!_iOP2@9C#za{Y@0!SOqPU586ALf83z&G*BDt^$`oJtG
zXdywD+>rii?kr-0w5W+<0`O}Bqdce26U`+|yk}y^4GAXRH*GHpB}J5+QUa6~)X_6_
z=wlyK%b6%|;zJWvP3&xw6l(0QVB$%mW))3TV&hE|ogH)WhE&BwMhRE0IWZpy@c4%G
zX$e;~6A30<CX!4zOgwL!w9)0F>i`0$h$fmSbt#5XerNoMk}aIoP4G(}Kh+U`Y{I%B
z)etm)1&`ZAvWd1P+L`c}sA-~>iQ4SrP04H8t{zx&j>b-(3DVCv+TX<zq?o8<qLpcT
z)BT*4=5^LL(LjK@Ch7@5W~u-!cD8G1qLFF)RcLOaF^B!4o1t^PSaQ-#q>CitChTT5
zZfc@gHqJD$cy9~^j=oN7VWOqr`;uHuTO_qM`2*9%&_;kR-QwGukWBQTN|@+iq9Yqw
zy;bq%NeRu9I+^HV+TXT1n{eKgerXoFuW(XV!6CDo0NqXSa}uMyO!PJ}$i!e1eN1d=
z>g;c#Zu6wR0yEmr#24B4mq*2!G(ZRp<X8<V$mkFgf!Zk}OpG)!)Wk5;_To64jc;F+
zfPtPKN13?YG>O3|?IQhBL`Mtym5H~^u_nfuh>0Rc6yr@yFmc|*1rrlZOfs>-#6}a7
zO-wPd#Kclo`qb0;$CRlirkR*-Vup!1Cgz$*y(!HUbhe<g1pVQov@SQLFK<foOw8vh
zFtNzQm{W~i$5R*Glok*db3b^u>9(5^Ig43uU*DOV(!-n5GUCF?^a=2diLcoy6W1Pi
zGRm}BVPd6;RVG%OnA*wn-*xvI)Bg0vaOt|+yeSc^HSw*9b=3CWN$X7%xFr#MN8M;&
zoPgnjThb;I-<#NP;s8q<5x1FhalhJb4!DV}CbpT_ZsG?M6(1!tG(4XA&!@hO7R5<-
za7~#YVAv%<ty|I_6F*X8Z%L=Gx_>h9Gov%&_L^XHpP=;pOH6@-CJvbx;`W_3aoEHw
zxQE`7elg+BmvqF$%X~>Q-%UEo3B4s9<A~jo2#%XLAvh-mJtfqh{2jNXGbS$Ik{Hek
zaE{AdL@%1SL@^Ut<eRu+;&&4dOkCwKnz+XfRx5O#{{K11cilHl+~BI2-loGmdllTG
zdWa#tBj{Z=@|HcS4CK(+#jhs*-r>4$;x_?G-If^rgUi8J=#h!Xv}v?p9J;gy&$Nt(
zG>o?;`Vt}io6R#Zd|f7|H90H!9}_9l8~<zKDXm0SGQ+Ta-v0!X{AaWkRT~lbsd6Sv
z6HyaE6Co2a7b9(K9%su=&6?hpSenY!bX(%TVVa4O<%@?oM@@^<&GMw%QpALA!aFp{
zpyu3`_S}|;Et9@(iof81vz^Ut*WAM<CeefFD-OtQ=`{_-3Evwk=i-EdD-zC*_2i5q
zHVQ`+&M4xdcqfViQ51|~WOaK3K&~iqN0BFryivHydh$on^Q`B|Z7E+A(_gvXjpBU4
zq$ADSye^o;)CQA$g`&1)D@7Vb;V9-#cNU4FXcWbwC>{j_Cq9Z2QM?yLw>i#7<DGLy
zI+exFp<|rCO?7sk<t!;=z9|>~*)-?-QIv_=W~yowWuqt;MTICTM)BoEcljtzUUWA<
zoP4%lJfoGOs4O^?sltxjk(l%W8~>s$@rO}tz385DIGI__*Y;Fnvuk@2qF51iM<=yS
zWY?mQqUaDsQWPIWQ7?+rDD<vPsz>o@6mEe(j-rMD<bOiR<t~EcC_GWriNgD_tEQj?
zpS=Z9_&5%CB=;RD^Nv(2irP`6WXlY=BegD?-g82e&!ZT9M_P18s{0l!aMzEbK@?4+
z*gqn%VHAy`xPM1#5=CS7;*OLSMLL;%Q%~HnovskL7x)(RP0iqVCZ*LsnyTE9nu)y3
zo*6~+Y}`VCmV&ktv~?711ZXR0J3-qEI_%vV%-%7IPONmYyLS|wqbNVo+l@0aHKj`w
zzvn2{m5MRZ`|e$-{9Wl(`}FQn^oW9>r=SGAqB#DbwfC;{xJrDVDEdZG=(3kS@cTuP
z^QM=0KokR`bi$9W76wHzIEsf+Jc?pS6hos}8^yO#42xoT6jP#@%4vO`FoKpmiV4)u
zC`Lu`teEG^DE>$7E$$f|#aB^$zA&|WanBg4!DR2aDc+TnykjX@+_QO#cU%;+i+g%c
z_D+n_B?t!Jl`6gG;;NrEqaf+zDB9kY;wL5bS>l=&#gZtNQpuy35yi|XW<{|uiem%f
zW=AoH>qU0W7j$kE^8{FYS0ZzRp!bh@7YL?zyK9jEOj<0!k9VbkbBZsEB6P&NGK#OG
zyq+Epo+V6sH(>?)c)uEPgSjzW;H#oo&6ZDgt%>5BDE_SMA*N4t(sfaM7sWo#6z8{=
zYkd?OqSzQk+P6u!wm2KDk_t3(Z;ImkC^kp2C5qiq?4i!zm9|FhSB@V9-X`dF!C}&l
zD0W5>->cm&!6Beq8}fgQ;-@I~Mlmkl^K*7m^E2@jpnU!r?O5P}C=N#LNBs3D4n=X8
z4W8#J+dB406u(4qDT>RYk4FVP!C|Cg2>kG_#K0~yoD`f>f}R%iOcZAYVCp%xHXC1v
z;-bJ+;}e;5Mc`{utSjicnk|#GB8F8ooE>u`ie4_~%_wd~aa-U&1-&EaT|w^&`m3N6
zz8}SJ0{<@PgKYjE0&H8A^p^nis88X?QT$ECwour@6aM)hMTAx&il<Th8%2w?o<J1;
zQBgSsUF`1&w&$NHn!IvlMNzYL(vJNuzlf3_y(<N&7@`X@b@gDfCa@x?8bw%u68G#8
z8zePLyeAn^m~2c5S8fZ@C@dOq%YI#~S<U$(iZ@ZjSa`{bsySZ?O7L2MrzLV9nc~c0
zq4$s$u@-V#V3gtLIA@%Nee;|@^l$OMQBD?>%R>4+Y2ZC6kA=Jz@>%w#>->Teyla66
z{rvxP6v*Zj6re+vuZV@B7HV7E41i)5id*>1LM;pN7D`y~Fr$U{EWko#3so$Xv{1^z
z`xeSrC~aYlyXCVFlEcU>^12prSqtSXeB82KMGNIE`!0YA76$&5`cCbX-fPmi6^9?|
zD_K~ews_0@z`}<Xsxym)surqQa9D6!NU(5sjF;K>Hc8=TgTrczL<=qpNfth`&~sI5
zCXpuH&g}YgDtE%{{3(^u8WujWkjyfX`KblBg&23s;<ueGm#156(-+*6YOc)KbWeIb
z+~>7$aEUjjv+r1^rasG_nw}jp58adAj4Zr=OWgP_g=QCY#N3UkW1+r<1{OZIP}f4}
zn;72XP|vb&b4bmOW=x7}XyMPeW{oYRS!l!&Yn{a4+7_2?p^1go7TQ?Iu+Y>(riJDf
znpyl7>|!XkyAUZq8Mm;|(!$^oN$39ZwX!hfQabsk%vOvNx3$pDLMM@{y#>hvlR8+K
zSh>mnFNB<qg3m0SMN#=*w*UA_d^Zc-E%;vGvlr;Wp|fz^!VPwrN<}5Ku);zg3w<q2
zvoPI4KMP-27;0gdg?X(V{W*O!`xXYUFMXUm#zM;TBZDm*>+IZB*1lAFh-IIA<YlrA
z$~cBwn81cv7-3-~hpvocl%V4U{Zi1;7QPaIsbd8ApP*wcj1!>1q<ALr7%a=@xtmEA
zCR0oEIEK%T;pwC)7N%O*pe67WHjhH^p1T<qW>TpvEVM9-qh#4Wj^?qaMI3W1%(b{T
zBZ0V67blOp@X#yUKi{&ia7`QFSY+Y$5a(hGODz0S&_1BFpoC+og|9h}Yu!Bbw2Z3K
z+qt5wV`mP>e<vHSw6Kbj7LHn2P5rm9&BAsIZQrf)jfIUCHd$C};adyqxLyV{_^w^c
z^(<{_`gax{H1wQ1p1wf{x7nZE@?iS+0&fv?v!E=8Nn44#v|;v|za{@5_&-|sNq`*|
zc3RkFq2uV3-4^x;=G8Gx-`3?jnBHWO`)3RLEgZ1ucO`Q#4TS~0Wy>4alOIlKagfSz
zF#RxRbCLUy1*KKXr`_AIk(4~bM|{3IUDG_rEF8CRPDFV@#tG^bSJomoOE^j8xt?6D
zW^qPO3+5R?&suoXy$zGjTex81qJ>Kqu8F!XbF4mgF=<uxA_P|~Tos(Qk8?4~#>5pV
za?`>s3x!^w@C)3waK}Q97s&YncP-rGDt>{<-D7{XaNojf3v}G^n}y#kMA$Ems)au+
z{6~Yvwcjq`PeGpw`j?;&1$|`Uu>gMy`b5xw1ZA%4_oR=fCHzZ6G%ca6x6yM8Sr#;r
z>KC-^#Dv+ay_5`yXpqa_f-JBiXxM@(K%}Jo#hjtf`bMP^n^er#kjBcO6|JB173XC{
zqRFR#u#J|57XlQilSG-9RG3`xx!1V(n!%^!8w)@0cWmA4nD)d;mtu5C82bW!TNTLn
z0`I;++zb1pz&kIH>ji2Kb8m0gDEABGd4Zq5bagM$B(DGk4mV_!gPi~WXu1k0sjV&?
z&)~3&+z%;U%CHPj=(0dzksW4m)_`UU6p9roUff-ZON+a<NRi@Jpg2WJad&r{$bXam
zJtya#n<w{O`R+~f@+K3ZOcDOIZ{XPW5>HPy>6|l=IYI@-3QS~+P*jA9M(EQBMMo%m
zgo-f#T<)Kk<cLtXW*|?5|LMk`GeV>8*3K0niV(b-+!2af9n)-m`P8#<p?kIRMkrr|
zK8aBN2o;P_p$Pr(W8%YqjPc783b3>f{k0dw7LL%bOJldccK-wSLt2T~-<Mc(TF7xg
zC>Ej5B2+p;Wg_lfR`Cc8SX8l8g#4^ygntc9KR2r%@Ji{tQIdgi-blMphbu3&tUn-Q
z%s_H~oOQlb;PVKTjZnD=eG#GZ5%&t4Hl<;#XQ&<nvSy5r|KoUUoL67LD=Tu(jg1@5
za=&9)IYLz;)Hp&-A`~B?su2pY`Vs2pkEs@MKTLXRWq|)Nr+S2HL?|Ib!HD~BIGq<}
zpE|n~-|y9o@C)Vgp?BqLc`DS4xR3L-St;+iwN8ZU{zv;)=cpf{1`%qJ9B3G!qzENP
zC^166T&UOQi<-I58=s#yQoPni5lW2^pKj<@ip%=vjW*|vuOehbs7r)D^+stC`Z_|*
zBlHbdsxbr48!Tkg2sMjPsbEb$zARgl#c08qKf>QirIry|@um`sbf<el>j<@pP{#<Z
zId9B3Z?uijcM)pO2ALjc7olGH<D|>=Iz)(@_*j@!iOZ%1YIb71*vOLuog?(ed4mZ)
zQU}F$i%|Cn^@~vdi2K(YJ=o)!<UR9B^<)^ZFCLZe6`?*JapAnt`#*x~`+D^2^Tq&g
z;KG!ckr5ggp+Ri?pDGQGQ0Ljo2#+4(l|#L9m{$&u(EK8CRjusoh@sbVjEd0c2>*E{
z6@C#I=apl<GUElK&;^4l$9tz0FBlUeG>MHSqJ@ab5t<UAiZ)fUX=;R~Md-RoH%yw&
zx-*hZDrC~k2>leHs}Z`!AdJwg2<?f`-U!WR46x%E)e)K-p?MKn6rsf|RfK8|4lIb!
zmVBX>bCo0MV;A!EH%stZg^->YyCgzO*%1+186iGh7NO-4`b~{uI)7p;mo2gchp17%
z_6@9x(CP>kZxrNYa%g&d{Q`~GL}+b<HgI%DXdU}>S*6DfW7m5`waih!MTpDIokLu|
zDMFhgv^_#QBJ?{;5}~aT+Qz{?F+Qzoh|2@X!L{jQnPwtuqu@@CTuI**q1_CL3~@Z&
zhKivZTf;0yhdzOQ>~7A+5&9=W`y+H9LMJ2iSA-5m=+6ipiO|sqy;>SN6rly(q7O5k
zvjusI0jaL!$0Bq*LMI}0zG(PSR1()ji*a=?7_Bb23nr)7hKaE|M@65F(CG-BVLWT8
z|Mq#kD*ShZxQS1<#)i*xY<3M?jL;>{44aZKuo&y2N4L#%IYQ3h05@G>2<;J=PzQu(
z&sDBR=thKWZjI1Q-ux4xHxYUpq1zF<6QL&&dK#g-5&AJ*@P35vmfdT|J+I`NhY@-d
zp~v1S*W*lx%LeI!+|=)a@r-rv7I+b%mz)Vbx^ha8Yq<3lr`ZTGpJ^A2wHJ&-7mRBc
z3~qYo3I8!d@7W`n;wq*Keqj0cRAN&^B4je2%S5*w?5~g*YcT?+$7ecGUoc5DDU(T=
zP5!<C$tLM0`AphbIi#4B_pV<vNj0e@Le)}(?=Bc@D6ULr61$91k=`UOXU<hJn3U0^
z>f^(#0@qCKAD_jftR|63Fe#f!Q6^<KDThhX-Vg>)+0oI{Z~IRSjLT_K*)7>?NO~@l
z0yRSn#c8QQE_0id$D~h8%5PHci$-3PYHbYVGpX`Lqd@I&vx`RWi$+mFXT|v_!1XCE
z5(=AC#H2nZ^);!eNuQe3z@&yI6*K8GlPa22$)w^Y`AzDP6#IoqB}|Gjsf<aVn^cko
zFsYPDrCFCT;VVDadRZzo<W%jh3lqB~$3~ZM`Ij|m%0*+uwoo~f=8g(aoK=etNr;Oz
zsXPbr;6R*76->HVAZpD;7klT*HRgSBU$S^6g-i;YRK=ut=5JCBwtSyJRj;h(mA@AZ
z-#nYLc51BzlY%DIG->75>}5*?tN)V{Jt{n)Z!$A{*fY6kpFk~>>X=m5q}r@+&sd&<
zw@Q9GFi_8=-{h$JChfmy@M+rO<o650i6$kP)YhbSCMBDcVp3C+nwgYpQX`X^nDmu5
z`^yd4S+B+>UA<_m$rCh8N;Bze&rnZ_g)5DW<D*WAV9%>T`I6Dxq;E|6*5q$fQwv6j
zNzG5xWAUbM46$M3UnZ{mJB77tZBiSPmL|vMyJYZb&I<`F)psVfH>tBpUA%canAFLe
zrK5LR^>NVnC*^w{_(kK+{@~ANQvQCC*p)k&)YGJHCUrMy?J3t3(y8RoU!fm7{=H1<
z%|N>3YMnJMoGv!$@<lhG`kB<<q%}OmqyZ)k<g9Db43h?#G}xqZCXF{~h)F|D8fnrf
zlZKge&C!ONG=lNaJ)n1~m;KX}Jo_pwKN>1>D`7O7{gN@pq_HNQnN%uWm$-3V0tNO3
z&tFa9)*nrpVA3R$CY!v^Bukr1#zf|S$vD>|?vpQ4r?8xtjHxC~<M_H{EUFpo6%I0!
zXElSDE*UdT`pKk4CM`DUXOm_zx=jAOFl}C%oqNtUX^u&MA5P&RkE({n%f@_@7MQe<
zv2@ueJv30nD+?ja4Da@eTf%cOcuZPl(lV2lo3z5DgTJ_0?rGB?%X8~wDCUP))@8Lx
zznFAjOx&+*+iW3L=R%GUGmH%fD|D;3&ZPAw9Wv=K<I1EBChcJ1P1<PECX;?QX$uQ{
zJ7u#;XFJqmyY<>0Zgbh#%9T^1x0$q^LuqJW++|}+zqoBRgXg-%ExK&%GHJI-`%L=7
zq&+4L&mD{(5x1AYTrRb=S<@d1p6*z0Ka0cyoAf7VjKV1_7|Z;xcCF$XoIDhq6b>FS
z>8MHPO!~*9V<sIp>6A&QO*&!HNt6CE=}C{cZI=z!h;`|_FUV%;H8@Uxm*osg%f>W`
z9mlPAFB{cr2HDHZ^E@ZOE5=2WF0ltWOI$H(TydlLvPoAsE*KjeJ6DVqhf-Lhe{DYG
ziZSboQL0DmO_OeML|D|yqT43jF)5!#pICI)<SmP2nq--D-=qg7z2RKJf$WvfOnPq8
zBhHH6=@YMf>Xn<X82re<J^6Uy)x7k|_%DO6OnPn7`-Lh0ww}0Ry!D#iaivKgJo=+a
z5s$ci#i%{PAMq5)bUbLA<d~GfqKp;^7Ks*V7U>pAmMfKPk>U~SbIW}CH$`!&dNrpj
zxdG*~D4lm&ZmkO^KGIusb*M{Z^6H~3inb`TMOiG$>ecL;t7NmNq!iD6Sd!mrrDnG%
zheiBm2o~kEXz}*!+?31focF3xXn&}8rh2(8%41Ppi}w8Lwhn#WsO;7MTch*MP=1RF
zSoEbul`Sf0Q6Y=UdczA_RK%hfp3b787JX_F-)8tNDrV7)dC{L)RNQheUR9(p-#ol{
z=^C(wci|{u5#NN=yJ`e1_v%^NqB0)CQWmwoYK*vQ@CA2UCf6FDd-e0K8s#kdf?sa&
zsYR8%$~cQESX9xYSKSM4_5?1ME%?K!gfkw!dR=rCi{dS6Xi=g?RV}J!QB8|N7FD;X
zhD8Y$1zC7U<BQrKY801z>r%c=CM9ze6Jd*LS-fUQ^(?CG%~FR=bl1;U^Fk@X`B{R~
zvj*#1)W9OXu(GIJHXY%X>d3exi;^vBV$oOLz!a}+WKpU`?4S|DTn{$(DoZzYuXKh*
zX%;oJsJTT`1^od<eQi-wi)OuTl+!BD9qxVMUhcoKsD(u>En=teX^E9hxMceJv|6n#
zYGctEi_Tiq)}nS6{mjEH`p%;E77ey&2;1DEju!Q>sHZn|C+1^O7mL2P=t2ws+pET|
z2SM!1-qoUR7IpXfoL>{}+tJ^wxxa7vP_-uhA1vx+Q9q0NTh!a4J{I-0sB6#Y=yY++
zA;0GKX`klrvCY4^O{M`B4YX(wLo}UhA8u;2-QVk5fA(v}P>Y6H^rJ-+EE;an2#dy8
zG}hwRTQtg|(H5=DDe%Vl&~M>`ZTzMBr1IF<YX+A&NEm0)c$UEonVbFf3%K{66D^u#
z@yDiUhDDPtn!+};Xd0XPLGYKB{?r}*dOKZ%U)&MOvBSUMdT1ukxW)gIMSovUXtpB6
z9lDeZS1B5vZP6Ty)?4(OMRP5hXVG$tR#-IOq6Hi{7A>)8AxpSDw8)~<xrBSo{LS0>
zU$plh+Tvfz>XZy+Xy;$X#z}Lp&ds_evkEIMT4nL~pJ^>aF`uy7qF*>DIC0Ia*t?l4
z)i8fbojrc1iGLmU$tf@~V}t+r+)!V`zrmu77X8U#Wzi;!He2+E#eeoqzgx7$qP-UF
z^L*6cnz7ZQ_Z$7&n0ZS-AKN*sJbI^B?()jr|F!P%h(q^N@_p?;x!&LDnlbE}aloR3
zjF27vO{=qiTRMLJHDg!HSQhWFMMo?;&LHO`69^vVXbNXJ#)1Exzvi1z!D|WJ=cGk{
zS#*kR!r=VI&p!rvTsp+oxIQzym1Vo;W|F@xI%kn;lV;OD7M-`~sYTBicoto>=oY7O
zPnS!a-z>Uj(PfLSFrJgb{$~E*v(U&6{_7Uqu;?bcK9}(OSM{11{_%a>CyVU6T{GU{
z<Zsafiym5Z&!Tco{X=pI_gSQCM%r!{z5EN21NnqU7CpA;2?zeO(ATZ}e6%Z5H}57t
zd+NDGFD$YwvMqXP(JPDIu~j{(UR(6WqPLt7zVdf3=t6F-8e(hkzz-IEv?yYc$<b6K
zESC(jsNZG|b*>iv7n~Oo!VYJiCVs&t(Wce81jfH)lWfz2YldPI_hbooZ>i7alQe(N
z>LJ}GpG^g9Dri$Wo6_5q-KHEiWw0ruO<8TqW>Y4c7=D>;%3{;&Ne!wRt`V+n@c-R1
zc6g&;lue)XORlosAI+n#8&|&b7rJg#y>8^RDVI%oY|3l97a+0;Hs!Wy?>GL{e+L<p
zOtAME2Kj9M&3l$lY|3vFWAf4O{<hZ*Mka>|1FVoug>4GhRLZ6zHWjtWZ&L}IKDDWs
zO`q9R+$Kh~l&>z&Qf$3DYUkH3unTnX$9PkhwCQS2fnml`z%#P_OWRb&rdV#Z>2sUP
z+EmV_FKilp-Nnzkrf!TZ_voC7sjP3&tD!g^qK7Nk#F`$uZUjrEKEG~!X;WpJ?l^SU
zp(-}Tv$785bEv9K)ol9JrZqNIx2c9rKiJgErUaXUHhp7L3!7@%6tXGVrWBjPHr2AJ
zzD*5ms?F-yRM)0@p74{KxY<~|Verqamh_5?8X8DHxK=}(5^c)2Cnd@2(`RmC#_cI3
zZx~v9X!6WjsWvsT`7_IuW>aIEn%MLepRNt%t`aP`D4bF`Sh}BobB17}8^+f*HMOak
zP0ek()Ft-qoWx4a>kT;9aQytR@?%_fEm*2sTuYn2wW+<$Yp2x8rq(vKW3*(5n|ChQ
zhE3Nf+?Ew-8Y_NC_<mm{=FD<_$NJ_ArEeG8(WXu|b+f6vP2V&8Z0cfDR|ZB}`Tbqo
zkpJUmf|C+^re}cZ^TTWPu&Jj_EZeBLN;)New-oMj!(isUZR*2oEH+KEsjp4_Y#M3P
zD4Y7*G{C08HVyG)7~HSYK$`~H{JWlTLZes~rpvnIp*9V(X}C=zY&u&x)c9Gj<&^N4
z8^)=7K^B#nbLD88#@O_uO%rTd@M&<YP2+4D&rZzm8h_CZ<FEI@0=eD(6K$Gg(`1{b
z*mU|t?H(s<pC1xvzb&+8d0n3F&<$g6pTKmRX4tgQrbRZ*wCN|C=GZjXrk`z^Wz(Kt
zXtqsC?qEM(cx0p4!as-E8r5rr=Gio#XJ^|Mih6p(_@`yq?q6x;uYUF{%dps{B{r?J
zX%z>HP0MUrZqo`5bE`ZJsB~&<Lk7mURmnMS8YOQU^=}&20(Dn2o|X7tSg%ZR<2EF-
zzU^)rYi(L*(|t||Hm$emH=B;zbi$?$Hf?0tI6Q6I#4fODn@!to`rW22Hf^<u`47Hn
zFap^K1qKED6Oy@RhfO<e+GW#j&sL1Xw|xTh--m9^O=LUs5$_M}v*{0;{<P_kP5XJ$
z9l--O9b_~13@rR6%uI3|tM~IwV^UnwVVjQFbkwF}jJF@$HFI{&`kMwLGkXU2)`iQH
zHvMJOWt*<pbc$VI(>YG^Hl1PTG8m?X|K_<6Tz9xO!-<D*I2^fYoVV$MO&1yDoJP9E
z-LD)xG&b(WP2=UM#F-~*vjMs1RhzEabeqH3=1-T?4V!M-bc?M$yW%FNeDRFIO+Dg1
zA5crYW%w(*cSQNiC*9?oaLc&oDV6J%F>#fjQTNcMN1SpUQXG10(-WKC+4SC~r#3ya
z>7`At*dR9(p4;?-^I?_Xw?}JpB(|;=V&<<o58N`|*z}e&p4^y?Fd}2H^{}`Zdqa$|
z4>o<Y$+F4zqCUc&>Jew!^tey>)c7!4K6*;nu}N@9bVzb&!{X$NRYI+98U1b<vu_zi
zmxp!+>TbAYs19ikWpyZ<L%KsghcY;n(V=t>rFZDqEjQJ$f*DUIo}b)+A)3jd%noI7
zT&H}|IDEfbfPHuG$K)dM!F}@*qa2EMD3?Rz@MlgbheJ6X3Jq~1n(<a*aq^f>$&Adk
zCu)DZWx%1_4&`wuZBSgc+eWMw=A^;+<f!??q5KYiagjzjRKTHv4mEP9u|tI%D$Lo{
zp?HUiI8@Z3(hikz=u?M^ITYjYO*MVyP;rO+4wZ1|lXc;&En@j7cq-9<+u+>N>dO!#
zv)qwjfF;ZjEalMj^~r3yOzA`Hug@JS>rk9S6&xz(&=(HHI#k{vj+fAFqh`k7{;q+H
z_Y(?VXrxsMC7uaZbf}U;UpiFTq3e_5o82}FtxYa7y%zW9lEb;@ZKJ9~)f}qpP(6pL
zJ5<A=nrst?5*%WAhE@&+9b&c<ZX4emuFZxDJ5<Y|+78umX!&j9&&-V*%unPD$-e}b
zd&jZNyKfuy9ctiEqC-jS-0{(TG-P#tOJq$yjjfZ+PT!iC;!vu?zhp7)Jq@w5{w+K2
zOm5=PR}TNx4s~|OVB<T~+MzZMeeF<FhrV&Bg*U31L(N&*>fsN!jr@0vqAlHfOU{Qa
z9s1UxR;>6P_xi}j<ir?i?xv=;4z+WrgF_r>-#P9@q`gB;l=x#kW0Uu}3G>q2gpLk%
za_CjQaLt#&W_OILyHdJ1)YYNB4)t@Wo5Np;p&uOT<xmfYdU`P9{NL-2!D)mqBAg<6
zJJg5qTqHDceKhl&bjMhA$Kc%9-=P5x4RL6wLjygN4svKPbJ!MQ!?H-@;pUAw#e%~e
znz<wMaEC@X?r)|4*%91dIe47&|BwJXVzfhJ9NOa0R)@wqG|r(#4lQ<QyhA@a^pitB
zJ2b(ei4IL;@HjMy^>t{9LsJ<l{CHI(SaGGBrTO3_@NSn&&)^wZL1fO^H^A5{@I!zl
zKX}KO<<M-0<~cOqp*alo9|Ch7nl(4E^QXa^cZ}-G>!!bJa6~L{Xdy@Cq1shs*Olc~
zB;!QwB@QihXpKW_J!O|Uw8Ej4j2X84+yw46zfJNghgLiEi$lM1yxcX)Z%bKLB{=p6
z7fbBE`(on^{VT0=XuU%l9opp3Z;aKu25Yo|BWPN!ukIS>MyGNRZRXY<albRhX4YaM
zOLvOv{Bx~R6_U0&wB6y4?a&E_b~v<?C2{D0L%ST>?a*F__IYBT67)UnQx>3!f5Khk
zN`|N$8N-a6KiHD#;=XK@a?qha9pYqi)S*Kjehxcygp<;o@bbF`W1eG^Zz|YRy~Z^>
z<{663c+#Q2SXqZIbA&o{+M#m{T@EY9y+WOJ=x<I4@u8D<-Q3RCnwOpc=N-D>&_y=X
zn<!5HEE0!R{^W4_dq&}V#ubOII&{OKn;aub{56hiM*Ekc^J?%{*<IY=q<6~`poSj2
z?TPxTd@A34@m<h8R)OsxV5fiw4n5@f5|Ad~5hs6#@(Rc&;E6*|`EnpY74XcV=MH^v
z=%d5mBXYs>+MzcNz2pF4W1g&idwpW7s8IaFV6NE-ZykE)(0k4{_l)FwMzb95-N>tL
zp)U7~h(jiayZ}jn<&f==<B%X=^gW|p2KVw*ZjOK5J>#cY{?bw541c-<E6;NADGT`6
zDRBB8f2Ik#fUE+t3GfNvZy;n4kWoN70qF%iyl2dPp0KcRu*3>~CIOiRobMFKB7iwm
zYgez!)cEI@L(?h+?`{c235XVuQ$Q{O*#*e=jT{2by=&Ards4ysM#cLE(<A@_atp}g
zO?0D&yUbfY6n^zjV)A|CyZc7>#r{tO<QGs?Ks5mc1QZkyBcP;!LIMg4C??=DHeioH
z5dlR7d@7*F4}soR=vq4Wxoq#zko0|WaRGh-B?MgS6Bu&e`1!uE^S*Juc<6MNkX9@d
z5Ku}$IRRe?C@r9jfX@Y#6>#&uk&fKwtevy{&VA!y>)2!W5*F1DzsMPNafv^cRTi*0
z5R4PhqHDNu;b5D!;R*t{tSF$8M||m(mA$fxSH^oK_gR-eSY1F3)>=SA0SN+v0%{4U
z?OC#>fRKPNtE0G>%<;e|^}x6tNvO2dUq?V)0rdpb=Yf<|%uGmrVBA>l=bqfkoeS@+
zmna}fKqCQ-1tbed5s)h2w~N6w6XJ(740o9l|KWSX=YgS#fUnqMOZ@#Gxbf(#mO89N
z3S;AI0Zj!=5HL|dGXc#7^b*ipz&EU{fQ|w>31}(cTLEnav=h)uKx+YK9IcIjp_AhG
zEb*s*7&IS-n#u9%GXHmss5znb0y+qoJ1b$+oP@4xL!*z@uRABip#5GzXCAvfa}NPs
z1auY9O+a@6^XK|=Hwo^!m&k(kTM?T6!1(s}#8nTBo&tXGtaSW=QQ=1D&I6;5fWADh
zfMEjq3Ft3ipnyS)ioA_-<Q0mxi5=keU-vpRSileg3zlcMeopCnFxa?$c>Dcebp6n9
z0V4#A6);Y~NCBfbUIdI`L_G{nSm9@jarAYJ33C{ZD&vOCcmY3hhr+?=%%KtcQ;g-|
zUO&0@lLSl_utLB}0aFA_6)=ZY7O>_?_GtoU2$(5A%o;VF9X&r3y(9dSfS(1-5-^)R
zb>CooGNM@EX)8iamiYN}Q?8_WYzhHO1T1CA1uPV>NWfxd)y5xPIyHZ$&^kT5H*;uY
z>C`-J8lNg0Tqc0+zuXI`3KxTuawnM&jJ&O5R|!}xV55Ld0)7$jtAMov)^P+a^}pzy
zb@pg^jer~v4F=MBc6yoA-vn%6zqF3cm?ac=XfRLi8GLAL7Vx`(9l4{n38?VC5m#;z
zu+_6LpUU(6sq_5X1<YHMl6zfB`-jFZ0lPVYh{z;jkAS@bZVR|0V4r|LIC}`VAYi|M
z0|HJ8_)EY+0e=cOD&UxaLjn#9IN~uM_t1qXAIm+$JR3aj)t}(t?U9x1e_xwYp+oEt
zC-Ibk(*n*4_?uzBJu^3*5ul0sphIpno%2Th<CT26=b^z^W#Zz0HP;1P5^!0-6|d$h
z=M9fgvex6!*cwT6iqz!zy}>EMW6PC1{Fc|JVZq>C0rv!a;B+eBJ|}+xuLQj2%*n}L
zz*A23ELawIVfis%0tEc?kT((pm!wNA-Q54&WAZ}4O93w)8r}X0rGNB)tyi9Pm$}{u
zc<1$b%L%Zk%cPLk;k|$?4-z@nA_7cCzR3E*5@0jlL`WhWZ`7%jfFQcLdRMLxJ1%Fj
zBw0koM~3f0Q1R-S=<;h~gC_~P2%m_Zd7?6iNGBq_*Xp0{z5*~F8TQjqw=+QwE<VjH
zB8!L$%tu645!pn1CZf2AC=t;jJ`s^$M0Wm9cM%YgTSQKeRW1=EVq&VBrTI`U1^3Nz
z?~d|_$SdMn_pJFu6nT_zx>4-DO>PD-zjS*R5K)lpMHCfrrgpdx6B(ikdklL$GGfH|
z-iKXRek!7vh&iL>au3|GGdvUdMU)WnxrnkNVnmb_QQ8|A5b=E;p%ja^H`F>YSZSHR
z?(F!TkBl-RzUkrWd;PI%`Ep+8@*=(v5i8<vkLQYajkt-AI1w2Z)n}rTh%ZGXibxVs
zSws~PHARF(#EYmZBBe*x1QGRzMOPD1T|^BLSI;GkLXrdbLbLtX6uvNVpP-0aa}sVJ
z4uwV35>bzbh^Q^1j)=M<26l<=@Gy~6D-WsJI{EWCwMsrrZ1AsmP5cc#;@Kmk=Q{Ut
zpUjhrFhrz@NEOk@Ydxh#H5SoC#8)EreG<iKtw#oTd7RVT$eW>4`BT64x-}Ki%rg!*
zHTP<YcZuetI&g!_xuuA2*{uq4DrhC5wTP|~x=CmwqOFM8Y=05$M0_V=kch$F@b=72
zL}w8lyi;b<QADTz=*EMiyLfaD5j~lkM|b<LwYx{?kKJ(iK|~)BeZ87qB6@TGG0}0k
zT-Wo_Ps9MPssDdtyHt0<GtfH?RSOOgF;v7j5#zm@VIoHT*K@dt5gtAAznU*{q>lFJ
zG5^(!^$1%D{wQLCN6%y=i<som(|G@nM@;cbo_E6v7e!OO)6YA)mx<{fJ;N&tJvM&&
zujkJqW_fh?#qN#JToLm)3?-zKFki$15vN3)7O_yoA`!of*dk)Fh$SM{h*&FPsfcAF
zR*G09V!4PF9;?|Lv!2mrf986PkJTc65%DX#Y;|Je$A<aDt?%UZStnw>h)p6ki}+2%
z1`+&4uZ<p`5s!^!kBx`LJlC&rwb->I^VdtV=iQvVRm3(Ce~8#GVml8Jv71x9h>I(t
zcXFgWHg<{lkT103v2jLnVYb&}m?2lxK99(QV4IpQ!vi7?ia09bn20|`91?L@#1XI0
zGf%wqPmI75qvbTWbNGpIT*L_xCq?`v;_TMY?ID$_AFT7@`?zLLjQhhYUEY#%XK1A}
z+$7?Oh^H)xh;t%th`1@@9}(w8T;Tu|ae+k@aY@8w5#64+0Gsy281taf?8pCqcDtzr
zuZg(M?ikllo)LX2u5qnd@#QDSFTE4ICE~V-2O=JdxFh1Oh<hULv+#ELl~0VJU%8l^
zF|Ahr5{-WE9iH|fIM7OXB;v7%_tWEl|17At@XySa+GS7jGZD{4L`0Y(UWj-p;;o2x
zB3_AjE#i%5ghQTeGv(mazY=z(#@;)V@SfFqVtf$sQN+lOf%i|0sHaA=4uO2$n_^3Z
zEkc%{NN_|55=04-guhM)YYeM%r+aGFoL>4}o>=m!k)w2yDnXN=OXxE`?t0H~_^HwS
zsj=X7aQ@R^bvc+`LIw$6N~kO$ql8Qnic0uYLS_kBBtSxL30Wm%laO6P4#~aBL`jJD
z2&S`|DGQ8XgPRFCB`}I|NgxTmp1Rh4d)!6E<fleBDK?LUyb=mZC?p}Dgij>omr%fC
z@-O!G??^n=JFxPpvHPjfa!t6fgd!3cip+tJ93#WMpCmHaib?oP!simoN+>SDFQKG_
z0IQHI>hW};goGH$#dfwLb@^jfELbTCB{~O6ODH2@<Q#W}aJeVd!wL;pymAu0kWfK#
zVHV56NciDhFwT?e+*9Mb!tN`ECr^zLRf82JRFV)H9L^#H#p2=4j}xm%h?me<LK6v9
zB~+78TS6TP)g{!BP?I}LNRaUBifH+n5tOi}P$=aq7vT(*u!L7@l24Qm)snzq<BxqY
z%}sSB)RT}TAz4Cw2@NDPl#nQ)_0;5Z9ReqwCFJfA+n`@u&x!G;W`q-~gi|D>N@ygZ
z?%4!pJ1I|6-e<1mnT~yCd?mq<@U4Va64E4mEup!DZzMG3N+H<nKM&4Kjm^5rjfgd8
zf-NMpl<-T&u+=dzyJMj1wNTS%Mr%&~5;{oeD50%{b`rjm(4OJ+%$WAfDAPOKcZ9p3
zy2hKjRM}7`3ExZTETId_pXRE}!CSp+Y^9RnwQ`VyWpj_%?h<;ijxrj^=*ec6a9zR;
zMvjEuECAb$`Ag_4VY-AF68cH#FJZKVF%kwy7${+wgy9kfNf<0)h=ie@I&~wB&Us?+
zq)$CUd2Wo5@P1YHkrGC6Ae0TZI^fUq+=xEse>)+NrJH}OgmDrkN|+>JyoA;Hg&!qM
zkTC183%tf%{CU3j7vJl0n=E09gsBpy@m$Z1c{luX5BTTbOi+i^D(ZD+&NC(aBw?Y1
zMG}5yCKBdKn8$Y5nR&KX&S8zZ8gFj+S=5HljSeKtm#~0i;kX~~Ld<YdH+Ry-5|&6<
zCSf@vg!z#0?{vXq{=MD&D<rIxu!^OX5IOFzd%)kJofmNv0`D*TCwBL@E*o4UVXcIN
z68@C1PQrQ#J2{{v{3c<8ge?-bO4ul2lZ4F@erFq=@xSlp&fZrIA3NaczUNKo)s=*8
z61H<pF~ai;lcV?rjeqcA|J7suq(9s~yBXLL{*bU=!d?mc*d3SMdhXM)O48W1E~*EN
z3m;%bYGo<<L)LcBjghDQha?>4pp)>ogd-A;a_*9FO2RP-$0eMQa8klo4?-*U)Gv3=
z-~O_{-k<K*CI>w?S~LxwX0b2%&#*?968LoXbEDPz#?$`xpOf&9go_d`NjT3cvy0zE
zUEmCM!N2Zr|AFU5z2pAN60S(ND&d+pJWIY{{~pGm4=F4ym&Y6Xxz9}rw>XK(fQ;J`
z?r?UMA<4Ka;U0&rgx3=8OL!pRiG-(|^dvmu?AqD?*c0q(XMa-JV9dr4JCW`AOu};s
zFC@J5@X0RD`)x9tmx1?Hd=h)=$5Wv<65g^OC72T4F;*pfknqvtIq0No%zMvW=Q73^
z+w2ibg3Xy<f*_;p(mITpd}ZD15p!l0?B@n!K$fA%$Rs1P3{{3EBfX3aGISXXA)kzN
zGQL{n#wN=-c4U}d7(5WsNf~9Z&C^|Uc`~;wGP26ZE+dDGY%=cm%NivkS_b27Or#MH
zWE--wj5n6K%vpa<8M$OIyjfb-vD^zIw~Rb8zK{_sBd?5nGW;@1$oND?ei=n%6qQjx
zMnM^cWE7UcvBn<=Eq~k{z9MfUHf){SevZ~pWfYU~8F!G;=a_$K|4JN~?V^(&UU$LP
z{H#Cwkx-0`k}}H3_*{0O7?4p)Mrj${4~FWzaBbN7Z2~K`@Ss0KexWRD%GwQ&W)yJ~
z9|L%+p^P{g)nrtcQ9(vU8I@&Jkx@xTyL0|8W&HHLU%cSwA$%~j;$^(-m$j;lvBRUI
zw)rCm{IS!*`#bq-$ViY8mQjlhE`uRaQ$|R}rF}uhYKdEZ7NeCXQf(P^WYm>WPj;`Z
zT-k9-@@ijr^b3P0D)T(V7HB9VQN~6Yo0yf1WEq2G43?21BUMIQmQ6+@8I5H$m+_5^
zChS}pO=UEbVaQ06@wLaib+_0hFO2Vtg-X5(?(k-Bbu)PHw=6vG=@&)|87*bBmQi)A
z|L>!T-^yqu<J_@CKFU-G|6AF{Yi0Vu3*$Q(?Pc`f1kQMn(NRVh8C|^&on(A3qqB^A
z+3M-dgWSK+N4Hd88r}Zm&|OCFrIkK=Y0NJb4!<;hkkN}xbT^?t*RzXd^p(+%!80)Y
z?pR`%6NznK8dqNi2fuXvSf^&<02u>i?C2WDL--ifzTOZSLuLFdW0s6zGKR~TC}Wb0
z5i&-ygJg`8F-pd08DnI;YMhO~&pGp@@wizEGhv>2mem<A<3|}2WSn_vzzB2wR&TmT
zUO8FD6dBWH%#blv#?h{^4NeB9vF^=MS~Yh=DN&1`uq!x|K_VmPE2HP}#2V}C$GtMr
z2GyS}V~&jFGFHf#D`TFFMKTu4I5ovTU&aC%3uQEXWehl)_{ZDeiImuGT?5>-gnNqm
zQW?u+3^-W7$15XccH;1>38~H8=~l{EC1b6Obuw1V_(jIAGS<kLmd<TuNhCRS{3}B#
z6JGhsHQKepq4hF;ld*vZejV;w+r3LXkg?touXVGG-#O#SxFchWjIA<`$v7@!n~d!;
z4$AnGtu13GN0y8~WbBf$TgDz4dp&4<84d+HB*!I(+plw<mvjDBzuK+f$5RRWWgOt-
z^V%poFns5gabFKEKN315<6+OZqm0-o@rPv`@lLCaiTfu{h@Db7W7N1G0w-jglyO1E
zMHzpwp=A8cXq0i9y(8nSjBj5X{?|sW*RE<gySW}bkuk1}?CSoHjPo)cP4V+|gI*gf
z$t4+=Wn7nWL&g=(jb{?B%DBd{b2PDI)$rQa2G<<xmVDv0aZ|?I*T$@jQMcGfPEF>P
z@r^shT?VrZM~0x_zKjPlUUQ;j$$26f&tyE8@mR(a4;W89n<Vv&D?FAzDeMlvQ6}_)
za|LIo+X=6{)*MF@S-dlHxKFw8u;Zb(GTzCE$S`HR_d0x#@sR`hjgd4m?zA2p@Wz<(
z#^B)=yZen{bDy5>>G)%b-1?my78OVeGAhWVKvtkA@F_^AVB5O-ssc@cu7H*8KO=nd
zjgjZm(ET@t^w!Ap)<~})szH_v3M##IMdhRUTO+fAEL^W3T0vF?*%V&xh~k5z_{gb*
zUS7}a3hJ-V!lA@NUM_Q=ZF4Cg1;42HRRt8}R&YweX$5%{<W<mDK|clg6nvtf9*<R!
zUqJx{aSAFZD5#*2f|3dX3JNPIqM(?9&lK<ySy6@8%yA=+uzF+t+VkCYo2hS&;tKo<
zN+^io89jOacxya95_+=5#lYB;ZdNa)ptOR|6_i!n>{>=~7ll@?&)#u?|HYMHIR#%R
zh~*}(&*`q!T>Q@h+**34`#!WHn?*r&1vM0Wsi3mQr>cS~3gTH#Z?P_am%wlBV+Sk_
zU2X5~a;e7Mmb!O72?~M=!U}3BsL2LY@cc~u2D2*h(&CG^#&4CAGQ2aE6bRN<P)9*s
zR^*-0Z%3%%yZ?J(T!CN%1q~H^%S$l|5)~vVFchRINLG-dps|7`3Q|3h8u473yK>m!
zoiQfLT?S<OE3awW!stayTzS6sPMa!d<`I{=XKk+F8wD*Cv{W$Ko44G=1}q-GGy3-}
z60gs<R?tR47X@7vv{lefK?epBL(At*_nm_F9=ApBjNAVtygC@}#K!b$IxBcn$eovu
z?H=>(4TIejbXV|$f?f*PXg$21J-u?+_y!Lm?#dn?S2{=cR?tVm*@OSD*_W8wU%>zc
zD;N?A1}Ye&V6uWK3I;0}!tyH^qhP3lVIH@U3Wh5f!A$bF>zUin27hiJd&(1oF)+&O
zGxb1X&%#k-75u1Rf`V}h#xqYlu~YSMdOI=lXK*5i60ZQ{5hf{knd$$!JbY(NRWMD#
zTm|zKOjj^N!Ose2c|2z-_{k%9)w+z6sJwT*Ia|RTud-L4to%Z!>|8&W1>YO<6)aG&
zM8Q%83l%K#@VS`L_1<Xe4HOso84|N%L(3Eh8KS6v*5$0=y-=U`M%kK)jhY2lDOjyw
zw}L$!1qyyuut~vY1#1+nWeY3VpkN)xa)zk&Z1X-@KW`G`cS*dM&r)slMB)Wirumrs
z-uPX?76scC?C_ela`y0uW|@OA8$!AL!6Qy0FBk7ru*<7woZLtsPJQ2~z+(Si1^W~n
zQE*hj9}4y>IH=%HuUqB}Q3pJN)%kZWK0T!1u!2UX-RlKI?#3uTzePHx;JAVl3SM+~
z7ynNx_=|NB^mI4fa9-irguilshJnEWsG_QhzZINQkXc0*75^wWui%w}*9tBuxTxT+
zf_n-sDY(oDM8Qo3R}@@Ta81E=PCf$y!+XSjD+hn<5V({Y`?VG7aHtm3w-nrFF`}dH
zFtp->TPCLNfA6ki@KV6O3E}$+9w>OC;HiR#3LYtV%*ml+fF<NLiqSvC^8(0~_r|;T
z#xo9i)`h{NAo~Yna`x2cUx!P5FyiusZ+DO7hx#%pv2PT-<<zZ0R`E{3dj+NfOTmYK
zEvz8o5hb?N3x9C2H0)@?eL3D%;4maqh$<pIV>^B@zR43B|G@}MOWim<p4XJlJq;=<
zR24oI=~R4iHbGPI`c_a^adv(RuQ~8>BX8sMDl(|Zs3MaJrB9gu2w>F*gBP`)s#SA7
z4kavgAMLZM$fn{m6~$FVsfbpQPsJxHva86UB9{tMamg&tYXvz~bo#yC!4JlZ4gsjh
zts;+#yebZ^bffs<2gB|guHP@5UQC+YBbf!rucCm8!YYcWD5!#K3aMbp-+wT&el*_l
z`?BG2MOA#N@~euZVk-O}T?;h$Xz(%u6Sb78eibEDlvPnqMa~m(F)9KoN~tKRV%w_3
z@Ata$msU|m#UCGy&somnaUDMz!#^4;J{p%l8cm+2e4!#%MI{wqswl4_PDKS36;*ur
zXw2PQKWoIO`eV3w#GRLyJ9q)GvWhC)lNY!aXCEm4|Jk8h#HgmCx{6*ZdaJ0RB0)u(
zimz1!Rn%0`P(`AOkczO1Ix6a_sHLK|ih0vqJB&YByKNwemvPul^|<G@^7U0TV5Lrn
zx-@q0)3&S+XKhf5m$s5rB&%qoqOpq8xuQ~7)J}m^72iY*R&95O0RNn%iHgnhQod4Q
zFsSaim&<_>7jjMY(D$7JO;t2g@tunHDw^{^72m38rJ{w3LO*6|sp9cp35<koPlIh9
zHk$f-{njelsA#LAor>uZgV$sG=LxNg7#uik@FNkU$g1QHDmtp@s-hbMK*jeeI;-fy
z4($+lt5oGE`?_l4-H5@Ow(S?rXd2yB^ia`L#SbbDbcy5oVy01~dg6+VsavlH&y);T
zHH|(h`l^_$Vv34>D*CG!rDC*-0V)Qn7^-5JiZjh(2dNmWVhCH?G(y8&ck?P}=Z*no
zSK@FLBUFrJ7p%|D%&U}1;?Q7`3gmY05UMXq8KYu63#nqPig7A_`zL{2P~>UwZglDd
z6%!dkV$vjLG9{iJeQQ?yx%k9?RhX(`nu_@<7O+iJ%uq2)#cWPTrZH2+Pbz+9H?<3M
z=S8_vg9B?-cpvO#8go=I-sZB?J^YkulKQ5G>)fABW1VR%RIy0Kauq97ELO2Z#Znc^
zSk0peQx`U5O&j@BImSl`bq<=w;OD`Wp319KtY!}iLDueyX{eSF^)Mx18EaImWus{r
zpkbYg^&F=fNW*U`HmJC(;+~3)DmJM&rs6mQM#b+c_Nv&YVvCBcDt4&Y$xIgbbHq2^
zreZro*D{K?tM{E%b6I@SE)}~yE%q>+ETir05Wm;v_shL3W1?mJp<=&^KUEy!SSTMl
zz^P+g+(DkjGV&${|N0^vst`V`;)sf)?7Q#7e00tlp7Zek*ZLEdaYDsO6&F-oRPmRJ
zQ=GLp)w9jDsJ6L6r`h#<y2QQb?658+VSUOuPW~#+b5e>lsxmj>#}4kD*kj8LTg5gm
zskp4-x{4bruBf=Gg7;lq<Ls2nMFJl)2e|Lu>Rt`rRB?-2RowAp<~OJ5ZzUYM667mg
zZrf-(%LUkd6%SO{DjXFLRXpOns^Sd?j*2HLo~wAFB6A-1?&ztCXDV8I$%;>Rv~zDM
zU#fWJnT~0`n{B(G;>rPmx19VrldCXQyypOK68xazqt|UgyL$Z2ojXU8U9@D(Cm$Xf
zZT-h#N7Y0@gQy{chKw2{4YCGRgQkIBH7XkTwx`Lo=o!U>ljkMq8hjekX-KcR87$Z^
zJg7~*sl5ZdIibSG1l|->(Ka$^$gCk+Lv{^WG-TC~O+%E1v%TY5{G9TvP3$Mn5*GiO
zxN%+Lhrw|<)+A=zo;`<#MBB*e@#MWU9c_0f5;Wx2P)9>u4S6)=)$oOeSPl6!e4^nq
z4aGI&*HA!1VGTtzoO>QDsG*PszFGY$_y6y;PVEmB<(^%lKh;o7L&N@o@SIxLUniWN
z<9h9zV<EqW5*kWrD6JtzLrKkjy&Lc(sdGMIMrQZTFZUd58)Y<nuA!`kavD}P2=X2B
zOxuM={RQFG6OuRD2Jdt#uOUuDyoRb8Drl&vp^D~iZmFd4Mil)^4V77prG9?l&Ubf5
zY$NG?V%MYf`Cf%@WvgkZuA!!ekcMTwqibkL(D<I*wewTk;9EW($a{WrI7V1QEe*9b
z_hF=h<H}HYp1+(LYTy`rqg78seGRQNwARpoRo3v827@iEAxT53hDJP5`qX3%DH^(5
z%hc8}>dy5up1HCy%iKR}6Lw$Ls4*UAX1=LdC{4rH8k)0lG&J=@TGA}o%p)E)4)T3F
z8!G%Ep@oK)8ou@F?czb+fW+?RgLiPX(a@Hs)6i8zI}P7y=%Aq^YcW5ey@p&pvhx0)
zC62*cwmNBGIDN07v*zwIVFC93`hRckaExvmx@-7BLoW?IH1uTm6_6QDXC343O9_u0
zV_1vW-WvL7=&PZhC&{>4A@0C@7@tY|Q>x6Z*k^9Vff@#BxTfK{hQS(!Xjr3RExSp>
zFbzL3>@^J6FhawR8YXBMsbQ3cu^Ptlyh@N?$B))9MuR>ekV!~m=Df$?{OIWMEd0Y@
zbcF`Ry~>FiCTW<eVVZ`?JhpJu6t<+0R>N!Md-!Q{{L?ke;2CH6XL{1|7OYB%sr>Nx
zYv!PNGB``aYz>PwEYUEBv7~VZ!-9V;zdrlvcUk6nbT1)oAtRqf^*A#VzN7xIBH@dS
zsY^ZPD;TtlD-FvvtZx%LA4!|No~tyh*6@plUp0(=o^V!3n|P}JGa-$=HgrORFHR;f
zv5tpmIHch)=YI_wG;G(fL&HXI>fbeN(XdIwX77|YU?i<cDNrD|m9aD>c^g~F+fBrK
z2?|X~=JlDK8g^;er{NC`yERNao3Ka2UgkeJUKP^@&rRTmtf==XN8YCF*Kk0?K@ESh
z_2wlM=n%`h`0|Qr2R7CpupptFm^Nl({UaKVYWSPOU&ApC$2I(=;S?L{dBO<|Cpq)<
z&)WU7x(%$Fyz7qvaGF8IaWUI}R^uHMX+B^0moi~zmY=u(o#<EVAFt`6hD#dGYq+5C
zhda`^bFSI^W4cC{HC)kfmGjTDgi1qdF|KaU_V*UkW{PRN!|H~Hn>?M4XdSmWd1{Dg
zFg4uKa96`~4KFm@({NwIV+~I<JkaovgK=2&BetZN#u;F55%+2``hCJ>F+M}ls1jE~
zPc=Majl?vLeco!tTh3l;c%|W;hWDPeUu$@y;jISVy2fL7H4EmN<L7YxcO%~ijV~@y
zAKA87+<e7bp=!1>EDbhicpaJ!M}we4*4-o{>X1C5r>uWC>_%LP((d(w4@Jjsi~Lom
zHqdqWbY#+zSw}h@>2+k#kx|FH*<rT8ovyJQ^4!12J@>Y@)3N$lba&%rRvp=N_d0UD
zc<_aob}1>AH^^P?l$>2h4jq0SC3NJ}kxNHG9ffp|4(Q0EBd?C!o=DaDWX<ROIyjw_
zmQTkgI`Zo%z=xE^8<Thk?7wmfmxH_&miLhs)=@-9F&&@jD5`@&^{H0|y>$#0i2=sf
zLEc7HT}msiyE{b<DJ@3lzvw`mjtV*gI!fs%r{fD9rFE3i@wtw&I#_rH%$<EHywjDv
z&$|aV-wk$^(s<)&tnTG29lS~JFG^zAa4xE-qmquQI;!dTQb%PSRdmGb{30@KS^vNy
zDUG4U!f%(-&hlY~s_QOdIj7ao!P{IPOKE(GWL7nGgmkpXh?W@<)=^8xo^;ro4z+dE
z;U*u#KGfAwk0sP`Sx0>x4RrjdV}g!`Iudp8my0^-NYat4<0~D84*n=p3afTKu8~Kl
zdS&=rrp6x8#4EYA*11e+I=<G?QOCl5jhgCcrlXyX?-&DeT5}yOb$qMi8?Uv6SFZg~
zGigl4Ryvqyt)q>OU1KU1meU^0s??S{)Q{y>W>x-l#q__VGL!b+s17=6%4z>LaV2;7
zo@LO{MMqa1Lv;+((T&ZbqmPch3@sh~ik0{_Ly2BG{_GmlQ^yZ1jGR{4h&fozt?#Yl
z@jL&e?@RP!eHX_JVhpg%F(vx51^guk=osh`OuuLpbKuX+Lv-*r44Z9B9TV~Y_|nfG
zf@_+k#Bd!W*nnM2jAXCr7|WQn{G)X2e&HX@&T3m?Pw5h~8kQKRV>~lFqV0d^XJKx)
zFEJpw#6%sF7(!}E{%F!<9aD7ts$-3gsXC_Vn6G1jj_EpP=$NHrHbdo`x-&UabQGSG
zV_)X-Kj|1%D`t18CR{G45#W+L%+WE|>r=a1lX)CIA)%+7#-CbRsAG|i<vLb)qZaE}
z>JdC@iH-{%6Q-9jB;+(ER_a)#W3@LIpML#K-DPr`R6FJu27K)p7Jw_)>R6{^pN>Ct
ztk?0ZeaTHaHgh)6@v?8FvBzs|V1pd5wb3hQe-bn9X8i9uw(8iXV~dWPnPb*wjA^yH
z=5`%tQ_Anqu~P@1ex5((YNwLBIKDE+?B?k*#?;ObvquMisF{zwoIe-W<bnHj9MEx0
z$8jA8+2C^8AsvSq)$_9a$$}x~T9%k|a@rAQ+rH$w{i%~4#vNrZM8(WsTj_+3lREz4
z&<K|QOUKH?$)|Lj){!q)4Ab9qD#<gR(ZS_e)<sU^<8O~Rr(-|G@acIrnvN{lVlMPa
zxX6T(#>e5DF;{e4<?Q4`ULUS;?o!g;ast$Go&N%igTg6sQ^yk>Pgx5cw;9q(+8rJD
zblmq^?{X+r5%}MSM^y<t@M<zla{oB^p^iu1DbtTV;&r=BZAL54SSlT_bnyQXKj)GS
z>y%hJQQ*?@{w4Xf*ZIwVW10DT9Uu5I<U@8J>S=X8a$@&E_93Ff<P@RRvAojO@iA1J
zPaPeC52Dw3O;n?y|1{vr>~$(BKBzuq_3AYrbRRN$w9hNkdnNZw=Minj*JL__M;BXG
zJChHYeZ0oYE6izGyvlZ82Dnc)kB;(z>3@gh@PWS>OJ14Nhr@4^`N-v+GI2M341CD#
z<0aoT?$%^tqkKMm;zLCrD*2G#hXOv7_Mwaqi$=y4^x-ofiu+K=hr&J-@hU&{;X`tu
zC^w}9xKGNc*n-Ui#k|VgHEQ~ODB(lEJAEQW$9P0ZAI45?+-+3sr{^mD6_w*cRE|<S
zym^TEY(12)EIICTAIkc$rC)40A7XvrnlF5qs-!VtjFQWHHE}*v@L|rzN?gg`4P)X<
zANT`zH8@uvh_38I6(8b#7_=&;st?tC;BVahGC2NnE1^0&Zhs8de>S01)8jD-J_LO@
z-KWwvrBqEHuh6D3kykBM%ZJ)Ny!7Ff4|O>C`|yts=h?hI)c2vc4}E-?{Mg^Xhwpr7
z??Xc$61|!vA5wfs^&#2kUKFyu(YS2nLu2o>9lOjUzVXVhywdQ>G_T~&U;EJ1qnrI#
z)7&FIbXT~wg%2(NtN+#`T6tw_uWaL$ZN2i}sk!XnLq{LF`(PF=&qpVZ=<Jo>`|wqt
zN?h5+hps-1ny&oYr<+$le7e%Zhn`+fZsMLl_;7AclU`m86McQ?=fi#<4*1aDhXFn;
z@nNYC1KILEOk#uhFxZD7K8)~Tqz^-V80N!*f-%F{ycuGa^-Cz1E9R48F?Tb?^#7&i
zS6O04`7qvxAAK0@!x-jFF;5G|#O+QU%O2dFI?jiJ1!ML^$4u~Hq7U4(Ur8HyFqO;m
z(J?oav?+`eA7(Q!e3<6LbRTB;Fw=*Xb;|P;JY)UF^&(2zPd@zY!z@O~nM#~3t7mO+
z{>xI;kJjAss!GGCn7Ka8XCZx<=L3&QE$E8ZzEGCptLt$7T*$EJh^QF%N8R#^edv%o
zCa0RV%!lPZ{N}?3A6D>m3?v^o$FA~WwGY4e&{|ECqhd;{X|>g~j``iZE$pwkhWq%i
z&WCRv#{HZtW<48IP0Ku_UWcd{o@k>Fn|#>m!!FiHO<S*~ZT8`JjtjPJg}CiL?C^-K
z-bC9xn%OEDVh*ZlrIyx<`89604|{z0!-q^+WA^%xD`N~R`^(BKY}I|9ZI4zH#2V$V
zsA&g%_|u2uKAiC3eyhMCP82>I@!{A6p<=E;#c~0EGlk2eoEgdmj(O#s6%9|ak1AyQ
z%ZF1wbWR^#DK2o@hclcy;sSqr<*5lm?alShvadJS+w@)FoL9-MEp8@X@Zll{tPd}I
zxa7lSA8xX(l4AIS&sR9}`*^)2?Wzxa%Ez;*jjnSd^1i`%!^bNg?iKl#54U}|!#?ui
z32Qp96d(6EcC@sItc6$ez{hJ2X$8KE4{B+TeEdlJKc=n&N{S-dF3hqpJ=4?EVS4(K
z6%0GG?8?CI?6S*(B!wj`ISi5oMRF1W$w4rHAUR0RK|~NRB8s9C1Tz>wLCF~v6#nhU
z-+%r&b?&+K>Q&XNSFfsjx_i14=S%T7W`c>z4-{G#MeULx)p#P&a%~!4u(>`ZalI67
zaIt&Q%!`|}hx?=#WxV*Cn;7?MFH|pXaogwS??ti~|CYjkrSQWpwU`$#UTJWr6q39+
zA1Zm5o5Ly9I@of{N4375)NX#?jN)EgFI94s68|_Q@oClc5?++_qLdfpDS}mxs$MTD
z{2RYKqm7TfjBTfQaa@%1&NpBe0WUN!!d~zV#z8N1A(j`07rhHJOfUZFnf>YhByuW{
z6GL9uJg42CG&i}5`x^5jX^zx_;LT?OWxXip#eH7f@5S2Qx#hj6D5L`0U)kpAnaLEA
z&_$KJsLY}>k=kB7;KhSp<aklTi-){;*o$gj+-pD8i=!t(F)t#b9QC^UbDCfk!F0h4
z!AAtE3f@RbP?PO{>SR^-B2ya7@}kn(I5)t!7ujCCeW=-iHSxJ`HX`PFk>^ECFY>)8
zJ1wburKIVF9uhX<OiQZeMU{~rzAKnRe$<OPUexvC%PyY!VikL-ch7szS0QiU#beUl
z<6=oe!A61wf{g{62;Q@{kh9Ni*^6$h=tT=JT6)on9hFQZyeQGCO=~aOdHFjoLEc6r
zZ3U;_ZrR?84)j~eM9Dw02mMkQemS?J7ehXeKjB3uFP<ow=<LNu9ou#BVtC2KEJ@Vt
z?nMtThI#R<7f*W8(~Ak)3pbZc^zz~<F9v!s$cv{L2_o<B#WP;?@#6I(HTrpZdYmBX
z>%|u(6Xg7{F!@N0%7=3Yc(J5+Ef!J2>|mO~Sw5W0mWe~X_<mq3mQs1R7thgkUeKi@
zycp@_GcB0y#V9YH_u?flUiM<N7h}A5!HcP06u%l7>qT6Tj*}|iKN6+8#?v<O8~H>p
zCJCP`IHgFwct_H{QqgH#O&rVLk#S|CYi_ykeE!jnzT(AnFJ^i%u0r%+`REKUUgaXa
zs7A6g_S}f<xEqOIi_DVJc`4Dx=Oc6I=Q7dxV!&MCY-gTWbvF=QAaYu=(2GT0EEWTn
z2(F;tge(<YCb(RX`aO=g2lthdT_w0$aE%w2epgwv&WrV4Z17?uyYOP07dsE6Z1Um_
zFSc@~(xRKa*dnCRj52%oxrY1!Rra4q_15m&x!>|)huF4VaFiN-vRB&MY=oBo6WJy9
z|M+xtH#djP>6E<V#k*4Uo**Uf3;BTS;%bE1kG$B+<>Nz+4<CE+i5LA8Zr#|&ZHFsJ
zLB4{|yx8xBqW}s%XPkJUDDWw0+rj$Mi$h)<_Tm6-*xTWttb*^md$`bkpAh}Zi(kC>
z)r%uul>Ra6s25**@r@VXdhs)Nv)0YN^I}u0W=yB9HzIy7*&hUd^x{}i>2V=H3C?QO
zj1{*QG&$kr*?!_Tq8BIG{(@-Uu6B1zCQf;AntQJo|9SC;c<GEx!Jl4uyQF1Yj|{vW
zIqStaZpB_)V30`ZMZv3rmjo{hUJ>NP1uv=BgkLX`+z_(#C+#mGe+&L2cuSDAZVRb3
zH0_QTcgYn#;pt9ml7d(JrxjD&86SBz@<~dxxPp1x(mf)XkQ3!xmr#(RxNC~3q>xey
zyhReet=+FcRbVLyu~`KJ#-{O&(0t>)rXZ+5S75hEzqO<x=fY61=U5{qQ^=QN+`A{X
zf;KlBa*GQq?vb?mou*3$)hn%_jDieG6qHp^PQjt3o~VNI3Mwezi>V(_P?3CVqx%(9
zQgEMe@8M>Ytm)CBvVtLp()-5(qh@B8E|o~jj6SH~Aq6B%4=YF&9ucg5K60X0G)+Mj
z1<jJ9>56;E=E0hN+o_eTsvxEyOF^88uK-mr?a5l3YsdM8m+A_LnN%p1@XXM%MWKem
z`=@C+3izUFrmhV<1*H<X3aYk9&r{I7RDz_Ig4!H4Ls!A03NOo}xq=o7>ME#58x#~O
z;QPAkD@b0Gev6ww$=S$bf{zO}6l^5Oq5>g}6*LjjRIqoYBo_VFKKj|E$dhW64NmyT
zY)M~jRa+})rSJ?nF{@OfU#a|&C5vx4nchx8dj(G^c$z~{kWkP=!IKJ(oQZT)@PvXT
zXCjkd4LvcVQ76Sc$aYr1k2!Wxz%P4t6$ypigmf2t`c4XGs;5-!-8ExVsYEXYOFwEz
z(p$kZbV5Z>#aEI(DV4Ze)BUn`AL*;Fg4wI1?~N=Nz#vqxUcm+hgA@!_FiF8=&a8r=
z3dSfHt6-RdXBCW6@Vq#m=V|;MJzT+a+&v1@MhK2%@F;PnPY&1M)V#4cn<E;n;NZ1r
zj}_5z3dSp#pkShc@0T>J7fa_avKJ4e)$EtS;Z$6mPMo6P1qIU;%uq0u0ifU&1v_Ua
z4H}gEqQbMR1e<+{d(_4Jj+<(|%<+B@{k4>Pcc9AdtXCDxRIpk><NkqJ3SMK(Jetim
zXDgUP2P#-DlQoy?PQiS|y>iv&$>as>;(FwDc6U3nQ1~Lj#eytaB4k^y=u**PEo!b%
z(DLEv_v4aRa>-PyLSFOv=qd$$`bT}Gqig7~4e4v8yLEyezn;Me*{EQXf~yLyDcG!F
zi-Kc}UIlL`*s9=t1s^CVSYCrKA%9cBHU)1f?)lP)(OK^)*sfrQg0~gi=+XKe1@B7H
zPQhJ*yA@PFlt%ptp6v9W(>~2=O8!PDiyr%sn}CAD5-J}l*sI`EM&0Z6lb6)`m^;6$
zpyEGeeWHN)?AZETO;?lLN%>5{{-SvMT)`I#zEp6aNODj}hv(I+8v=(EthhhDL-#6Q
zNoz+0j|zUx{pwaa(>DsfE#luX28#F(LVgr1>{h>SYwITkzbN=s!OybBE1r1F@g`0v
zI4P_3tb*SdnN`z&S8$3EyD6Fcw1Phr{Hfp!cK~mqf!AGe&c^g&8`GIBcqC3dN6*VE
z>(48=ApByH<dTrf3a%7MG8bfBr?<H)`cTe?n+pD7>Eo8ihrbp4qu^f!|0%d7&Y!$4
z@OhbBI{Y?0cFWy?xrg6T_(&Lv`M}edy9&}XYEU@vWVF)J^f}X_#eJB0Ci?57=yu1G
z>_Z73QhX@s!&P5~=0nhjQo@<_`k)kXpAf$fs*pgDyv8!mneuVn2ixcFiiQu&nu3;K
zNKomRO?g<jBXuEIS|nuzJ9bj3Q{IOPK2-Cex)0+kr&sj3hm4pH_xao%>9aGD`+e@^
z#7aI?_VMq)c+iK3e2DlE_2FS3Ql*qQ>1+-^l<?Z&DpV#(^P!3l={}HCjhMlfMY(04
z99}S=7)h(@!y7GfsNeVHB&JO1ae3GD#m(b4$7E#r5EsciQ_>grEvVr`t`D#Ku+)b<
zA8PvWv=6;~$oHX^4^4b%>O*ZG9`&J~5A}Vh<HNz<(mIaK;_LLeJJqGxEz(Iix&}V*
z^8pQgc+7{#eePjpY<G7p+?rm$+~o$1d^{mf6!_5C2mXR%8tqLq^P!Lq_aWg!b01px
z(8dRTRjs8Dtz>k)PABboKBKh{fwPf)w;K0P$v*$Gr>zg~KiiNesO@~%+a;~N4`n{B
zoxjfgwbIdt&OUVUp=aZ?Cj>kB@b9{0&gsX;YjpLYyAM6s1yA0N*O=!`5Lxu354~jG
z`FXgWbY>ufUx?!t{gepb^d_G1p^p!ve0bi6zCQHxp>A_)m=AnQe}5ka_`tIWZcq$V
zexG8X4}*Ld>;w4_ABGCqGN&H1#P_|4XMN!39)|nyoDVJQr*9mUHG)>%P9Nz5dHLK7
z;%Fbn_%O|f7iF@>`Y=JrI3M`2PNwlBAI2+=@l0fp_%PXrIWwbE1xcp(@PhEi(S%v1
ztNYSll1Z8F!wer@_PMuLUZD+k`n~U8yvowX?OyX?wvd^EvwS>RO;A3gT+$pLmiWNO
zqUQQAkCVtr>6CSb8;jgiTfn&DgP=Yv60%rO8|^-OSzJlr0b`jD%YE?sq584Hhn1Wc
zAO7=Ul@F^q*FNl&D&3AfzJ??9VVw`_ec0dwzw5N}+uUgzl8I0f8-3VB2a0@6rzDnc
z5l-@k4_k%5Dafx!ZS&zR;oFOJb_jWHc-k%>c2oaG%O8Ds$A@=)IK;vF@E)VfhcA5i
z(uWUx_>eK?bI)p+EVcL^?lbxEj|55hqvK;A4$O1EyYY#r?epQ&BK^;N*f0F^A_*g;
z#OrAXWKY{WKkc9o4fErEC2HM`e8olAKAY(WAC3q=D)@Dg{2L#>6&_O(-}&%;k-W)<
zP%|YlxqkXFAFeHm9{1rVAAa`X7s=if{8jL>4<~#$>BDb6{O-e9AI^#Vl;9tNr#Tl_
zLu}_y$&#EAvgorY`FY_NeYj9m+AtcpBz)#Nl?qpi<X1_AUl+U~So}q|k-vohE%=Y%
zEgx<Rd8a`YChFYr;jRx!eiZYgmy%d-rStnE$CBL}RmJ^K{P?<Vy2p=XKT7yfZbpq#
zg3q-~Pw}Iq@TV4Mk5&@iB2FEjAN+RALM6eIrGOurANBmG??=!N-4DYL)9+pmda1J8
z*Nq10mLDNM^8BdjhwbOpKa}yKtRIda@Z;_~>g0FTX=5AwzQ^P-s5JYPY&k#5`+3g@
zRsEQ)Ml1M{PCF%jD*ADsANTuFsYsG4q_Q6m6iFWR<00V>3yz%A@?PDDWTSqh38^B;
zqIvzb3_tkO{-bjdULuJ3@mK$}xF6Y~P|c4%{i4<V$P_}J<wsN1J=3OI*=rGg%PEJ0
zsu8Urm@CNRY|~X)`F_;$qqeluep5X@8u6$fb^Y!#uOqlwaZeqY_^*Tpemv$!D?eKE
z{;!la_Va}a8Jw?%el+sCN7VvB9uaz7jy0hfe(Z1EsF@!v{5*+D94u8>=tpxuPE2k&
zt9K(}OLli4mqopAG`oE=tBv3Nt<lc!?z(OLXo8ID$Y{?t{Yd!Hkpo;G?cztfYmYzS
zM<+iz3*USs{lT;D5o+S3C>5CQJk+qeA3glItl^4=C;jN@$FC|*sOaU#Q%owJX7Zyq
z14D(O;u$vX$A^CG@uROF{rs5f$233s`!T?e;eI^l$3Q>$bCPL@AA^JsE|Nrc77Q)o
z!~A$w__3V@R372SNIxd|F<FG81jqRCe3AZWKN<$z&qXnf72!BP#tWGsI8m^<d_#&l
zQzZMs|Eo2)N#ToryyVAvKQ{RBvLCPbv6OBU&FO-#3C{52RUtD4+1e~2M=EQx{g~s&
zT*)pGoF_P6keUnpSSWmv;9|iMQ#~wVdR?+}-ziwm&0qK$KUNB1>1rXX{Gg-m>3d%Z
zt}QBECuD-R0gE>J@rEB;MY73{%|$v}{1|p1`(E8QMfi>%+l0L3$96w<6lw1C<Lx3o
zuvsCi?2_zm!C#aFCGQG<@1C0A2ZG1nF8Iigy?&hX<Fp?i`|*h%U-@x_0qn=8e(+Ob
z2mSbrf$hhal1=$0PT}W%eBlQ_XI8ClEoRRjjUVuXd_ta^JtUfk1*t>HQSNVk{KByG
z;~PIp>-vv=9P{H_G2=TwzW3vYd*;Q`&%R%<xqVBTeM?Ck=RW3hhwu~kIwisMGq-}S
zZAeb|ang@>R|bFgV}3#5oiDRjbZGONG{R4q@oQ_#UTOS?AAkDsuOI*UamJ6ceq8b6
zsvqb4IPb>=KQ3}Ns8fp-*+sEtxtF+=T`G)7kDbe9UzQ=DOPgzc@N;H2xfl6yor`5`
ziyNZ(^F()k`SrJ1ZCW<|D*m_h{*T}-!P|m#!X0j~et1+QtN1Xeu~w3bVk(NO;CI=W
zt>a73QKwdPATOapRS{5;qN1b<j-{09E=EO#SF-%-9ECm+`UPnu6*S?rC#d4jrn!{x
zyKnQNaZ`n*B3DJ8ijWFh#X~9{RuNX=sJKtX{VJfMw2F!<Uj8GyjEb@<Hmr_UP*HPb
zoS&&Gry{tzF;jUJla4ka*?6ZZKXf(ra1&xB6_wfeAKCRk&kCI?Xp8s*Djt-k-m0G4
z-j`@^Wu>Z!sEDbkrXs2$O+|)^N2Hf3DyE)pGSHX!uyKQQ`loRN>c253eL~NSslG&2
z73`u%VQzI5nJRKrRE;#sQW012;=&+xvQ-e7R{hf88E+Oz4bfT7x{*dTRphH^uA+sC
zS}JO*XsDu*ibqw{QSq3H&W|*ztD>HY1}fS=XqNUituKS!?Mqx&TJfsU5nm!%$$DHg
zseIO#D4^MkTQ*U7=s{ynqCZh=Q``QP%`$#>q|H<mvMDR;r$egoXEsSo6|GpEbFHGa
ziZ=Ajsq6%&QbpZUHR$jTD%!~?+SBqD>DB!Se&jlDO}w!`!CB}i`cJ6n#L~wb_)az<
zcIBYT7Iv3fB;8cd`S<+LL&cLSdP>oXwvY9aiC`~1{E6P&{8fCc;u95pRP<G`ROQtq
z^i$Da#Y@ywF+jyY6(d!QQZY!yU=^vg(w<W>M8!}Q!zDXR#k2H(y`&+v(z-TC`)pCt
z^m<8DBfeTM>Eb141l1ZO4Q-J2yo%8(CNgZK;usa<RE$^gRPD5}A|avL6N}vH6DS{-
z!RnKxh>{mnWIdWTMa8jtY0OSlF-;_U>$#1;DEcHNYNx%TVwQ^6R7{t;Gm2VxRmDu<
zG<9sPwAm`=sF<%}fr_~*u1_@Psi@R5u%vF<=`#^#&(=v>sA7?dB`RK5!R%rxv`l|w
zgoj9-1|vMr)lOroTt98OiWMr}P_b3TN)@YAtW&XG#cCC6q|>#6_nb5NyA=9_cz>O=
z4JtNq-PK9kDERH;9&)D5Dz=EEM_o7jriyJUcB<H=;w=^1RqPuRn7=4#&*PpQDsI<K
zdz;<WNeh10;$9cKRlLJZK*a|t-j#Ny{@s@CyvJ2vJB{haxvb%J(>_$ON5w}pcw!BX
zh%J=(tL<LVZ(JvB^_;?eDn3<lNX21>fj{w?iqBPi!5!n}-2H;eob)eM5D)OwA{?JN
zy475Ng5)3_GAozlD-}mn{Gj4TF7w-&M^$_yD`=BH@in(WC5wcgW&c)$-_e18#=jTb
zP&R&yd*fX9+t9~VFxts~Vrwa_erDYI6Tb+OR67~}^XJr)+$RGl8NhEUephiy<vn^_
zRB=hgA1e6ayfd6c6}%Aor(pZ}9mvl~(Rup86QT~&1$us1EAO)EmsMO*aYMyT(YY#k
zUBxwSzsss$Y}@1>Zt#TI&R;4@1l-1%{+9OtQE`h?qvBu5QeG^8|BCn>A$J9nq~dFb
z1Jo%VfJd^)|4;albWth*ZvYQ#NY$VO;0xgA0DcL;AAlObf&dl<5C}jE;Hdzf4j>qS
z9zb3I<?N^tfEhqp@&KwYO|t?h9pL{Iq9MsrVhafiI)Vrw(JpQHrO4CEv&yi+<yiyI
zMY?a!Dj&c@G$Vjcmm?Jds3_#V0PYW<QUH|$;5S=Y#PmP_tp0oX=z{@#b2XAuD_U+;
zG&O)ofd6oe#shp)Ry4}Kgro&fMM!!8838;Jzz45tRAAZ|jaHSSNh71N0ICV6e9_ac
zLMB^CuaYIg_i9J8rPCZi_Fh9sZUFq?EVDHO$Pc(bTWST+Hh{ZTqPz`MJAg+6s1pEr
z-2e&#XdFPj0P3?=0KZ0EokjsXMu*=QeO%NiX&Auauv?VZ!84(1l_sopGtw-8!T_3z
z4uvdjUZmfegQ^&9A=#FKtpZ4!mqne;|3%uc-xh9b?E+{YKnFTMfL=0p9RqkGfGz=a
zrK@T4{n5^1c}A(|zn!9-+*8G(-2#}A8D*jk#O?v~5XqB*J=u6c^vrFyX#BQxR_PtU
zGXcCJQ`{$jz5z@L;DrGC1+Z+ThsvV^=pVp<0QeJrU;u*y7$SU-AZKJ~0DrWIK1=sX
z7sI3r-iLiIfE7X4l2IZbAviLC61~zWWO_b;m$O{U#{@9FpL@@Dtjx$b!SSLwLHI<$
zNrIC(L83f0fN24|7{E&b9JHbZS<!=4-I>ivjk4L7C8~En7k%|+WIDSJ;MJmvG+?I0
z>Z|}>3t)BtcYIN{$-2ZjqBd7>UI6n0;8-YMUMpi!0E+|I9l$#QED7LshC!+54w=EF
zj5;C90$46pRs`@stjfxO`(!MCx2_6cHRS=U4Pbo$8v<B0%$?=^i__LgJHxuU*+EaF
zZ46+OG}W<Tl=>9zF``>I9dD(-A-I*RCV*`Lyd_yqG>e$F2f&}boYS`h*h#lMt3C5h
zItRN;Jjom7?*{N*0G|Y~FM#(0VAmf8u!rl5l2TD7dZ0t5=j=1lj{?{mK$)!Q#{uwW
zI`24>PcfsP2EZ>Ve-XgU5lw4nXMD!B(<N=c;ODfebd=dI12`ZG2L%twyi@;h0AB@g
zM1<c99u@pr@Ee)0Z-rC&I~fZJgZu{({usb9A;*h!e&RlMEkd1N12_?YqQR%}kyrc{
z!0iD34dC|xP6co!fU8^uPV_Wa?y!cJg#RJ<X8>mcI4k^|;Q0Vfr$?!LL9!PGxn3x_
z9Kg7RSxj{JwE(WuU<t?@0c`0UEjKj!PXIRq_$z?FWpX*c4C!IJvq)HayIb19`=eYb
z|1sV;BN|dPaQWN~pqPf@ntP!vNdupGW>B>}p5oEmTfMu7M3Xf<l~ILhd<(b1lA61(
zZa5byrD0ZH)T_CRC^;DYsDGMYgQ}sdhH@GL8Z-?d4Yr2G;b>5Usln2)Iyb7b7a`=z
z!%?G2wBgFEpZp0D?$u$<-OWmCaA;wzC<J-$lDv!*v9v`g_v!BP8Y*d+zB{XehNP`o
z6*b%^<bDl$ZnXHn5k?f{l{t{o(FZuje<KfSZsa_qA!lHe-`XZdG(<Jb(D15;G!0cW
zJguR(hI9=X8X9Y8qTvw@RW;;l$kPzhP)$RR^V!)Ns%yBpv>;0`lXxzh$+xl~uHlY9
zF*vv7{uKo|8fs|hd9&v2gN5a`X7d6|O%3@P>S?G?=ctKV8Xnb9N5dyqwAvc77Z$|S
zM9chIo0{r%skyh{hfd8XX`taTI`HeXpZD=IM`);_k%j^dWA+yG+*`15c0rl^S}pb$
zG*uJZTeWqGhGrT%YIs6Jp@!xf+GuEXt!4`iKXy)UNv@&d(KPboB^$NY_?Ll32fnhd
zm2C8knrN$`ord-rI&h>Dvl1G{U8_mb`&!K^*J~QWJ89^wVd~#CpJEgpN$bKfYPfi`
zu&ah$f7hg>n}+UEMBal}frPUiX5Xt&*h`dG4=7{{)Ao9v(a=Z3a1GCC=u78ZsyR#p
zN7PS4e+~b(j92TC&WZyx4Ad}4ni{O(%%z&Yw`@!K5RnWOd=A>PQkT_lAGJnkc<_rj
zbzaagQo|?>&ubX1VZ4S3L^Ux+!&nZG^Sj@5<2*|C7Hm}$v~8k>Ng5_=m?D0rknPaJ
zM3z!{pPHDeVVZ^)B?eyM4zRM|C9Vh!Csq_N7-$2@bcqLs%1>%yCRdGy{Te>k@S29%
z3{DN(G|bU3SHmXC_ZQC7Fkizm4a+qw(6EpzNW&5h-5xAlq~VRLHUCx<7q(<Ctex??
zh66q7E#-3K^!2F6A9n8y$t7Q*VeiqjH5%3mS*c+aSDc1lCTWy2#TT@0(7W+E@$GsI
zbmOusH8)6hqab~re!1pmuIRpvx3E(UTQ$%*O$QWmQ2AvFM}1cKmWJ*0;grUEHSEyv
zwuW~!ysP0-r)E1D2JCu|F>bO}u7Bg*Tu1#I&z)aD&KQ1A!}}UO(0FE;_<nrWhZ^>1
z_(<cqT;h%Xjo(UXL=WFo8j&#jv2^i?hJ6}7B`z)ajO(IIA=d>h;nJADwBQR3UuyW3
zZr5=B`5Ff_e5K)thJ%tlBzRbmr5yfI4PP_nIdR@b-)Q(&!}l6~knGEQ3x~C=^&O|F
zf8z)GH2zV9#{}DW8&RLBTE)VjH2h3|a_cyp%VeZ9D*H{^dbJU~dQ!umTwi?}|3=4Z
zIK`#0CHu67Kg0k=BUizVBWd)*M_;F%(QsD7ITmTSz(pbJf}zDlofk+j<VY@QXc=$`
zM}1YpH4P(z7#YNM4L3N&XClpmxT)bU?g>Hnl=5#4|8V;aA{fLi4YxUoK?H*Mmyzbr
zxXVp4=w2@Vk73C*ULvh<zI*?!SP;cUUMdJr5WKTVVF{5W2hr(q_fCCE5G8|%Z?AQx
zWLl>Z?I`gEp#)K(X__wxzbN-RU+~{Uxhu+N@Rnuk9<A<sI`{pT8dFmb!U&>F5M_h>
zdnw+Cq}f4y-86&A5)ukx=^st+Ny0%mL4cN&O1md19Ymj@HOR{aQ9g)Af~YFBDg<#~
z5cdnOC`jAbc%>j72;#vYDhJ&IS>HfnU)gk4e<+BDMQu_bfwgI=L0BWQHfnrJ1)@Qa
zqzRH#2_jv1hTy*=Llnk>s1`(C5H*9S9z<pk*+Jw4`J{I!i=L5|*$W>X$t>-5$5bPT
z+#oL4ZZ@>G$>KnQr0&f0d{KTph+0LpY6tPC@H&EZ1?vgc7i=K-nBa;0TKC#-DA}!n
zM1jnHW5FhZ?~jZ&4T9J#h(e}+BHijli7kR?8APifT63a<=odtrAle4eC5Wy;v<sqr
z5cw~)=@i7bfkcNO5<#rqU$4WLp_K=+NIC}bgh<HeW#@KUTdy-CWNp2@ucmhkqI(ce
z1@Uwc%=QSPr;sOuC^xlDpJmCt$7J!}5WRwU-5>ArSG;!+%nrX1e?~~o91nS)Ac%)2
zd-?}4Ac&zs3=3jl5QBnva$)ii(Hu;dKA**p!qWiv?-il+;x%%gz1Lb0=K=}k<MdrW
zCOsz-+IG%L9~H#&LCl+!elUp9L5vAv17|jfu|bTZJc#*>t43+#gP0b?i^3-eP86IZ
zI5~(ZLa6zIkf}j@cgJFu>7^iMiSXqjomYfR7n~8qt3~peLF{=cc(2xLBAhKaCy2S6
zn$iu{|CYOMM~wv{e4R@}$U+WB$YMcOUlK%;miQu(zN|>HPRMe>6@n{+SS4h&AZx7=
zvX-k%bDvZ%Ik0fONE$xo{ugOe5SxS85_JEm#OxcK&AZXvLA(>hR<5QXwgvH45IcfM
zNphdF%Fj>QUc`ImC%r9vXArwMaZ5eanLj;=_-+vI1+hPf&l!_Jd=SLGAU+N9`ZM-0
zNP_rSDt;71<FOtyFPBwHFZFyPLh@zPlcrqABB52E(GszZ*?li0e<2ng5Trd{3Ypqn
zB`?fRIuyj=AifIXNDvR{cv#0#E}0<y3*t@?-!RC7_%nzzoW~%(58{^~ehuP>Abt$u
zSP;j9=siv^Q$7CA`<@0}l7FIkEz^G%EK|Mt=O4tF9oEWoLL|QjaVm(D!YThv$fow~
zP7C=Xh^y7&51a__p^j*W22?o9SfwzCYof5KOY(UJHusYtE(LLgOX)=5GCjGtA(fj{
zH=pX4kv6Et16`7ty&l93?(jkMN;J3`#9u-D!}WV2z@opUwe^42T*`_=YEaUqmFKny
z$^YeCYl;4YYTRY;=+Jc-I*REiuEVcG)#1^RtfQ0;uZ|KrQgoEmaic~0qNW~x)_^S>
z9j`a(l3Y(qkgw|&P;}QPKEVeD*Ql49K|2FF|2+qi+Fg<#?~)vp(ucbw(^sYrOGh~!
z<#mK~*gBx|E{xkqm^N%w5AVu$bd2Af&9tGK+hZ9W2gm7Ub&Pv6xx|S8n=NePsle+0
zm8huWJ{_DLsxjTKqq2?%bX1ZCInqY$8_-A=Jt&fGk+?4!Pt_68(OO3v9Z?-=I_m3a
zpreY8bR9W5YUs$&@rYE3>!_+DrlXpU>M|$}U$1V`8+}`OGIeC>c&3%-2bt4u;_z&#
z_?S#bu8uq%`8sN`qd_$qbZC$ljn`xxj@M~bZP9#GM;#rby9HYI%cv{ft|xN3olc-y
zLQ6cR<8d8Lbu^PAMoU8-jdT=9wy}=3xf#?PGEQ$I5?aDYqp(m%OC2@4Br{x_>u8~a
zgo#D1bTGC_=+d@2+Ue-7qlb?6Iy&fhLPsa5nD~Dl?x<s9b(0-+*3q>~@)KQ>yNFNj
zt%a^Sy6Na0jdP?N=94;l>gc1RuZ~_+BWd-&Gxao`CU*AL!I*I^mx#I~Q`t|)ylHLO
zW`7+6MC}!s#Fx4x57se6$EZ|1pNgS6hUs`Yj90>VR>yD#tqop=eNM*+9Uq(c#KcG{
z>-fvS-v*wilXcWK@Th??I>zdFPsjU=E5@6SS9DC*F+s;f9aD6^DLuk8Nyucn;yyRq
zWMG{5f{v*=wk^)Qr!!5*i#oP<jJ+gC^0JPk>=cq2I$qT=TgMz7GZ|4OJgoAXv^k4W
zdZ`$*$NIa%xg4^N6*^Yxn6G02&G;epi9?z9cZ)65u~f$|6(Zz|bS&1fM91r*K*{tj
zvE4mlR9+@J%LS?YNoq2iUBw~Ca@I?as|DBSSgT{5j{W^(nH3{VQ&YCwb~QI}W_4`R
zv029!9lLeBL!XrLyrIMK<?qt5ReEGcZwlF_<1HcE1$PvczAa>@jv3uutGaq3G_UrF
zyzEx7P}kVI>}6F7$p<<<)baf7)S3qN==g}+j)4*e_HyF5-gO+(`9l84C$v+?<@2fg
zbbQKK>JXcGCw150l+Sc16(S{D$L5?*{haPSpZbN4FNGWsq@>~1Vuy8nrQ?E*i#m>Q
z(dqb^{?YNZj&F1v<L*~B()&{Cw>o}c++Irkj-67ut7~}^K?;A=v9Eh<hL#{dE^0sN
z2;3L>^g!mXI!@>~rQ@`YlRAEru|IsN*yopv{m$LYo5XgCmy3+_ME;PX=+BvFg#5`3
z=WcP9p4D+qB<BSuc#}pQ$fW!dN6om^@wbjEI<9hC;9@Kuxu)Z~j-T4O7FKE<`~FgD
zmEuXk%c(nur`)6&Z)H;FA04-J++`3NxJ~^_sZ{t+$G<vAM$B|;-QiY{n*4~=-Ow&p
z%s_Di_3z8!G%?FYJO(&-r`yL;43spGYaq`+DFa>u<qcFYpcwEOFbtRm{010Hs(}F2
z=H!JGM`QILQ|sL+-fLlg(10%4b=_lIv;^grfslbR2Fe<+4TKFih8yrq(}t#87@9&t
zQ(>UA;o8jf>Mxm`ta1i^8lJNEi5TZ1^Hy?21NSjzMrOnf+;5<gf$9c&Z_j^XTV7=Y
zRSm=pJ|72WnI1Iokb#E{q#DRMof#2%&StkLYTz?1k!GNZf%GE%3?WM6*mvvl9^n8t
zx|-Dt%=jxc_rv^k*HVAe5*25~GNs2X!7&SC>^<ASGc98|25zQC7F^D$!CBA}Bm)a0
z?^sF1K4wxrx1-yswFH;nP9?8npss-h1{NBq$GI>t!oWxa4GcVH;7J2L4Lok3p@DV=
z+8bzOpuj*g1BHgWK-Qk}WVDJjHb87*ps5gY%30dnKuZIy40olpFz|L>WM*EZH7BK|
zOU^h>8{y2h6~c-g3?vM6Gtgby?`WX2fiA=gsZSW_BxFlrgjo)!tASdfBzDBn^=cmJ
zAyt^wf(c^2nbga`QwI7N=xd;#nbf*PWauNspQh79^BG$ERE$kM)jHD8K#Mk!!3KsH
z=x<;E<0P0EXz*q4p74d#L6W89c=O0mse3oM#Iq#LBf|vy=SA4#a0Aa7{JrM(P8>x)
z8<=9?1p}j{)>s3pEZ5*M2H$B`f@GY5@dhS{i<q4xWFpsvnM4;&mRix%t}~|^m}cNL
z1G5dhNN1i;ozAE*`2GRBY~Xt3e7ccpuQ15%B=T3KE{&gMV5WiQp`;J57NeaX6icFT
z<kezSo?~F{J;SV|c|s_h&j66pMFtid_{zW$14|6NZs1)5?-^KXV3~o<2DV6*<s6iO
z)xuX8SXtE0CsxuL;p+^n7qV86jgQTXY><&|GC;mj>?irYWrU&fhJmdHwj0=C;7yrv
zTJ@HJZBqRi({&&d+PLF=+rUndlbaF@yCl0?@Et);`uhexFz|_ieFhGjNgo>c*Z}46
zJl<}=M+Qhb=0)}jS==I0rG*<~pK^s7_|m{#BWZt8FJBn=T!MM8mBf%{2t}Gl4j4En
zPG&7ya!8a98{pDo_Nalc4V*A=(!e(czBTZJfgcTgCu*GQ?`fN8_L4!d%GN9H1RXPQ
zoSTn0VO5C|KO6YPz^}yCk=1#T%4QPDf?l!T4E%23PXlKRoMLD(<`<-}`p;L2{ULsS
zRziqVf7ZY`0~ZZkk{CNL1~fYDq1!Krgk(qa$Yldp3|!@wBHq3xYAm`gWbv<_8wR-O
zm~IN8+CK(v8JK5czUgi<x4Cbd@CyG|Hk|(q+;KhWmL{24&?|+6shG)VcZGj8h<Hp8
zlLbo%rU;fa@ozMlMT!ZZiPk3CnDCoWO_VcH-bBEJX2LQNG7&VPn=nk6CO)1Ut63*<
zG8i#xM&h9evps6&_Z%FvO@vK2CSW4*S>E7vnI}fH|6xIF-5aseCa%njl{I;lEK<hg
zGoq1)TerVFG`~SGQNct-6V*&qH*ued`%R>pi12)GcI>P_QprSR6AzeJ`daK^6JrOp
zzkh4&K@%@8jy+_eju9bY(Unq>sEN`32zgbLS2hx9CaRc77h#5pM@(#5=r(xR7n!C+
zI?s-={g}x|XCsS$NX;~nWunjod0eVIZla-yY!f+Bv4)8}6E&qMS8!M`!3Oh9)Di_|
z**jBh6OU3dJ61=qu3$aE`hqNKAmlL<eM?1{<q#Ulh#H$Hpa-_b+RbxE*Th6q>8qK^
zzbQo=#ce-JjWicKTX0gA#Bz4!wKUO+cJ9hMF(>v;>-KF;v@<b+4m8o;L<bW+OgzaM
zG11XPClj4b^nNzK*Q(eb!(vZx>X*iPHfaCc&b%%rP9DflTM;|BI@Z+$u^VTkWvsi2
z{mWyl($hpQ6WwlR4xo{%V}aWI_yV40YbGi^8tE&_B+r=WBNFnSPqioZGtpm43)g4v
zT@f2-Vi3((5F2dbSrez8%O7H5sEM9yVyBnKrUw(lOiWtplHt<bb0$U&YtNz%@8*qS
zRGXM09vE$6jERX<Hu1&SywmGrV;Mz*W8+MGcwdCs@gkqVsoa>q>)}Yo=GbHt{f6Y<
z{ymTU!wUH?n3zi6n)qNt>=hH!O;G-#;7d~XWfN?t`u@B(H^yeL@%?$TOkC>Q{#6q*
z8Mhl_n>WXt3i+>@m~CR%hS(g@pDT51JQTT6D?&V3EV97FDif<sETof*MHbP16H83I
zF4^TAW^SZM4OeriiDe?(SIWce3gIhFOs)|*mq;P55y|_s*~D5C>rAXSvBAW46FW?7
zWN3-Pn<h33c|&lEARD~+t7mHwpZ%<7oA9>;tNv3wFE{eG@LeW$o7gFQRWQMd?+AZS
zkk-Cy@`kT#;UYnj52ffM!95&lk$kU6o?Z~&XW~;6Z&~gyyU!R@T&ET~S@@jp;+|lk
ztc5R495C^>iGLV@CJveSoe?6_eb~g0CXNaJ%ES>9M<p`9Hu0SZH*e1T#>BT=R&7$I
zuZ-=g<1X#*rRWF2nlH9LE`;)*P5dN$;@Vi<b}7FI|JB3^?s8V-q>0}|Qh!M-y;A;{
zT~b(u>9mRSCN7xxLrVV?JR^8k@aGEo=S+OFHFi(`qKV5Qza&^<dF*2~>5A~HCa#&d
zZsG>@lRVU4|7hf<$v2%Q{bgc&kWVs1mTQrHhw^WkxXs0GLAUU)iT_NLvf#B)X=~;k
z6D2I1ZyC93BFREA@vX;l&%ldYNLrU(uXXw}vpo%NWF}kg=2qwRloZQ7$z&>Np@tkE
z6$?HKb&sWL7W_iU142|m9wR8((<@Bm->G<LHY|iJ_Y~B$++$XEL@diad-tBqv@L`!
zI8s`=s4rL;BIhBj!sC893*{};x6r^s1q&4|(9Sx7_gQQUQ49BTfEIS&%&aW<poIr4
zy!=oO(~e+*@`o%uEJft07LKIlkfezuW}%vpDuU@2GK4%LSXJ<VG{P#?E#$baK!pc$
zGNmX>FfN!a_&~XoTp_gu^DNX9l5e5bLpil9d|EO4o>l%x&ZAQF+X)XFf3RFi-Fp*3
z4=5ha$YT~Bx6r~uOA8GxaCSKMMi!2z=8zOvXe@qcVxgIZLTSILg;DqCEdMvBxfHQk
zZ~2rn!36bNS!it`A@Vk&+(G!~={aq=veI+f3AVTJTY3(&_Z-EMc9b4V=m{>y&K9~@
z=xQNlewf*A7P?!QXJNjD9u}Uo@QQ`$7J6FfWnmmO&7`Mfeg|;&Ej(?ZHy3Zm<Yz4O
zqch)%^<j9d&8#pn)|XzL7#ndVwZFt<)$H&mjbno>47RX&Ti!_e#KKSu!!10=`5hP=
zX5m@Jc__ccld<gj?Z5llC1v$QuO6`x7RZ;ia3zfVQ4;^p3yu~XBRJOL#k~X-##@-c
zPGv>B#K^HQ$--osdMR~^g{c;%S$ILRW(oJw!HdF)|0m>n`RP&)ms0-w?Ppkc)xumE
zHDh?Dh1ukEMa#%6!PhMCT$fp<(st6+?Rg~B<ca743kxl*u&|PYwUa1Z#KmY~iL|!N
z0#7?%XVD|Ym&$s%y)~1|bNTO?%jr)uiKVNkW8n=8TP>^+o%I$r2w7|4{bEV$EaYBD
z-B&DWqlHZ(*&@gyHnmwaS=vp0gHZCOg+;|Z_s*-gNh!~bw_Dg@;cW{$E$nC5i0gJ)
zJl}?|jJpHumfhg{VoC2>c#rK{_`t%)7EiPBAtT{L>PHNlvXRT(VtXw2Co^5gv{!Zp
zUXI`~VxNRT&fJtwE$~>=G&k~@^}olFFSz+z_|C%j77kc^91GPC<a}k}kdVV%4rNjb
z^u)zrKDQ$l9T7Rh^{9ofg?}UXtsoUT>4_gK{Kyo-F(wAQh1=XhE&OERXKtGoE?D@*
z!mk{ug)<gTSU73ncMGSuUMws>o?|2@@nXg1;VHz^jOwnj=$Dy)ND+DCOQ{>X#BTbX
zvlh--?lq`+P71SjB$)%hXyK9wZwg+va775!{_sSuTDWHMqG*EI>lSWs(__n?2;1ZZ
ztG_J#ZQ&o$zs2p;m%rw6F={fA|7YQjg%Kf)4B;-fmk>IHkO-kz2*pFF6hh??JRu~9
z;Dk`~PELssQbK%bf5Z%-WC*2%t0A1+mgfz@A40SFc`Y{PDIxeoc(_#!7V(M-<*XG5
zLAzJIL?jsE@`Mq>+2wB03_U@#LRh0GLLpxLOW1<3g?Zr+c)f)Z79oVvA(RQBtk_dA
zg!@7$7sByXc{H!Q2rGn8eyN+iKg4Tyi4-I8W$_Xh^aLdjgz#Vp=^<o<@Q_&Ya0sbI
zrqX~&2x%cay*4i@r3?N`rm%`gD6D8C9tojp2#<%*FoakLycSd=gxnCS39lYPW(Zj!
z#6!rYSGVQSFzRrO#2nEX@Vd+MXsUEkUoby}x<YD&P+Q2Og1p2;1M1M=1um&4!jel}
z-az<cg7h;bjY230p-l*FLuf4W7J@8lBBUuNNJybzbHRIEv<zXws=QVqw3bO^mBvXW
zh)nH7tv$zOxO3Dm*_G3o9c6%>#ph25?<ATWb(avjhR`j9?jiISA*=MD8-=s(lOgn!
zioFCWc`Aeo8{Jvkvm&o|2+xGjCj|1oAzrykkTCUQYnxp%AcTR^)SwWChA>R{V8J1R
z?bo|5dRF*zAq*En$$x9|R>_=>3gP(>){1;|2xCHcDTJ3p7#qU45T=FjA|rfh-gv>O
zbdHdTAxsKkvebG(a7t0jYc{(*(xt4$QIM0cyU;>6y%NIw5Eg_mJ%kw{yc)txi8>b1
z&$B|9!)A@dYtq_m4qse7X<^=6k<SyP0<TgwEned3<Pr-*yjKoZUmU_xskKD#b-_Pn
z_(R`pzl{EQv;FcAR)o-dL*7cst`b}=xJHmVtBu6E5Y~sVA%u-wIMU9h5H^Q!K=_sr
z-U#8n5Z(`AYtgK|9m1Q!w}tRl2-}O~JA`oI(-rya^L9#hR|va9c!y4~@+p5e<X(m)
zxu^C4=k!?Sry+b6!iU25a0dusuW%Oa3*qA;{z-_}ixLzv@jC5-d3pQA$S(yy58(?T
z?F2a&M<i$uhHxl^!}Qp~ystty62j3CFWMxSW%@dVZ={I4@_JYDEq9(GiL*AZa7Eq^
zA@@B1B*#Pei8IK((Z<g-=EuyxLin4l3IA2_ged$L!tXMC>YNJUbO@J1xE#VCA^aJ_
zMJYPNZ7_rj!b9Q{y5(GmFJyCf-6Qi{Fa006VYpk_l@M-(a5IFfAzTaLx@dA^VNuX@
z6_`%0$xE5mp5&hpZZTT6<rTAWo14|zyd)b;|Az3NWbbhQ7vHjIz~4FaDr?bTx~{nG
zj*iJA<et2QjTGD6{g_JHC{@IF-%VC*_-y!Xs5TxBBQ=bG4b8?X8>?*uZRoap!oR|X
zVZ*eMW}}J?%jTs~^ye)M8@3SGC~YGwoN`A<*Biyk*cf`FScM{aSs~?Ylov9&X$qAq
z3a{ETcAt>@1#kXWtg?*<Y&<Agszq%)L?d~Nut8*}o|I~%*Og)s$=;JtC)G@(+sLr-
zl#QotJYu7&jb=6qZNzL;vyo?`rj6=0GHvAA?k}c?I>)kX<k+Zq$`fZ7onuVdHh5!>
zgbFo8?Xf}bO^ttUCFk3yW#e%h4Q<r6@u-b@HtO4`W8>0*SY1)R-<wpWY^1;3KWbM#
z!h0(XM9%wqkJ;|6z$a7PQ-wx03T!mC-Mf>2mP%@3qe;aGZyGkW(I+FBoHqe^_vdC`
zPjed`Y$R;7u+h>+D`~B*jds#$Yr!^xyw$RNSW3o^`R#4@&Jj;>i5+b`VWWr5w=tlT
z?Vb#GmKK_MlPVXFbg|LZMmLers_q=o9rxZAQ=T`eC;e>WSf|*1r>k*L?{*58Rg&5d
zjP<thjE!kFUZk})`q~&}<9VCkQ{xw$BZF-W;l$Y(VB@ItGSJ2#8=t<C!cw-pXL9~f
z8^dgju+hCu>{%PbZN72=Uk`}g@VHjp!;P(D6Q9o?X=C$&%zJftN;#UQ+L&ZxjE%82
z#@QHssn`S?zn6`Sw-Fc=qn$*0o;U3Fbc#*3F~!CUHnKXza?QjyU1O6TPM*q0C>~LN
zOl@>F^CcTEGtO<ywebq4o^f(JdA9A|kDFm*mW`cVW3SRno(R)S#(duxNypBy*KGW7
zz1ZqGd1fSe!Ge@|Hs;${V&ioi9S6k*b&1iF3v4X3v51n+vBg|#1LCdC#J2A;nN7*+
zu#_vSY-E|>`9qmja?*0HujHfyp2$jBdi*KD1-Qn>S{r+8d}L!Cw}J+dEnHax<0R{C
zY!JytK}t5!T@23iIZVvHVPmU}H*IXQai$>lwoLR}Hp(tf;f-Sk!*<)fUA}|sMQ(8K
z6op+jcH4NzM)X+bdp6#;@ve;-$1|Vr@1f)a;mm$mBqSfv-?P`o$J{r<{DM#96C3+%
zY;P9%PE7sO#+Q=)%*K8jyq@s6jW2BQUebo*p3Bv8NZjlHHV)c2WaF^y{<!$Y##c7J
z=@R~8O#EvbN8|~Cqg(=ov3E{p60aUhUGqcgw_M#1B<Htq?}>lUNwN9w101t)#l}?|
z$8G#%;}6#5{?7%-SWQVf#iC=WzuGt<g#6Fs;>43SeiO;(XH$Q-LELFaPK)HF&-1Bp
z#>QEjj|F1D`OI@Rk}sy7m(tz8q>^6@mY~i>ku!Tq$Yn;LlwRYi<PIE$H;fxLZrb>d
z&bRTGjla3ua|Vgw$Uio26<O8aOiZua{zNEZIuW+a^rD%#%OgVAwLdwGVqp{y!z0-$
z=UfHlxQqRNaj`@g-&}M_N|+ZO6D0*pok&%}@P(mCt(_NA{Xzm^s6vJmOJbD`W`bD1
zf!i;C3F=`OVfT`e8HN=`C=5Hy_j04WR0)USgn=+_221>wlvG-TWd+L!o|~J(c21_c
zSRssxB79KrzAzpTa=#!IDuq$Gh=*t9{T7aFs}X)kB+>Jk>yM>I!ia`Z5JuxL(!!_`
zMphW{Fw(=w2%}mUjEd_eJ;X<ZR}CW;#up3Xl*}CLB2)D+GNqLKY)Mac7&#nZ81=%q
zSGPtOxuTFKSSyU0Lh=P)zK~gWxTm)8M+NH$vbE3Gq}*$vzDOE`G5w|3W5OR7&TK;=
zjRcj8nXJ_$jKZ*crL?JNHY;jv`<j&IVYCRNWf-l(=od!+Fj|MvChQ)a`-IUpjCNu4
z3gfA;`*cD3u)Ae-52HgEd(A{b)H;UoL>ToCweJ+>HPysTGtoKBC7I9EC5)~`yql0(
zU+49ZMxGR8YdwYdE&ewXy~7yXI{BF}s<usjuYY*y&=fw)@x|TZB^RaBp1#r@H?9F;
z3>5xC7=vi@52?>_XJFkhhJ@XN@6a%YiNb?cf)^5>4P#2hl<b_y@GwU2%CiT@Mustp
zJ}>TGRN?8(^I?n$V{90g*5!>3qn73V#u>*@S)VtV&k+^#j1OZ1JtOiX>+>dtF^TT7
z5<JIdb_y5EvCN59g2;<<Q^S}RcCVK*y%@$zMV#04riU>@CL-@4yc)(##zQ6CsDxQz
zyvC3ykG%5ko;jOQ=OFH2P8f5;m>0(UFz$qLH;e^gEDYmwhFlnn!u%@@-UwrB7)!VS
z!{AYDeHcr_SQf@=&T<&b#UZO?uq(n?DOsKs^!e4Zz)BpMmvZW?`)~+xmz7v6rR%~t
za>#w!WJ4Gm!`Q^(3{BZgmsW^$KbzS(#WSFMWJ?(2KNXL>8OF9S-VNiuFy4~t+r!u)
zq{{8&w>i0C><;4{k#wx)UIE)B{79)JKIz0GEG5@&CBGlW2lU3J)Q`DWq$YnTI(x+I
z3MD-sh27^p_6mAh#mGMiW1r}M8pdZrSa(s|*#08^OmgJQFb;(AOBla~aWITSVSE?H
z_u{3)VekNbG>oq#OTQfvGHXEmYwm1}lS{>Bwu!OpZ`q(Hi7xtq;T^_tE`%_SiDCUa
zyC-jdr+A1oiDxw=KT8o^#M6coVVn-*k1$S#@mrX00M2}RNXq`RnZJiYJQYU1QG#~<
z8O9mLUKp3dI7^{7iA`My;~b~BZR{H>ah@hw33hQ&+)l$dUsuFMSH&l#+r}uoMpGqw
zLy(Q!6l4ApP1n>g{wd<OgxnVVSMWc<3+?ig929eKpM(1y6nEfpP|AVVanC4{9i%vJ
zh?19Z!0Sl7#Kde#2WRDpHN}C?f#U!U{0>wH_J9=2ao1YFf#x9SxGR(qsIx%_rex`v
zdu}9NzvzZUh!q`v)y2b#OkoF|ihJk*@}KS$FYTa=gR&0FIe4sWq@rMX!3qxeAXCqI
zDO<}%h6yq-Dmkd^;1S2Y=EhU32OLBlq&axd!9$LF0`{<As^H#UDU?JU+#}>wSe>Vr
zT~pE>ESi{~AxJqn8?5ReCM{QUP~AbMaLQG`Te{3i$##(AfL}090ctqNb+E<38xHd5
z77pLRBnSBpYB}ic@Q;D0?ch-dEgiISP{%=C2MrxGa!`*Zjm&t=!Ny5(lKKul7!q&b
z;G&gCAL2?LcTjbJhlHuXK{E%14jM}>N}331Dp)+^Zj4SS(cIy+uS5&MGQ;EKtsS&+
z(7{1MG~2SfXXEXPT5j*)-xuOcRAvhu9eg_^-qpbqoFE6C9dwaeeL{)4p+tCOyhA8)
zqJNA!-5k6%GoCX!{-lGR4u(1y=Af5@ryLA+FvP*r4yf73L0=)g9X#XU_kkV?Gp5A*
ziI9AtgZ>T%&@Dsa%SOhDZAQii6_u7<luoP4jfpoH8*e^3{;UJmea^uM2g4n-of01%
zN>DP=!6*k~9UOci{=9?HjO0+F!E5n%-pYI}lo;cHgo%xeb1>e)yP*U%nI<^Abl~#I
z4yG^+94vP5f`h3JW^=oCFwMchq48H7On302xZ)*2TJ^GnakE{gQDKIInGR+-c-7$r
zgap%#P~tTQoJW?1?L<l2ozuAv&JT&tb1>gQ#b@K)r^XjJXg)MPU`PAr!{RJj$Y~nj
zp=61J*Bz|lqF9u^)WI?b%N?w6__I1u%TBbi-RWk7E4fDAY+rexhx|!9v6=&Su-3sk
z&N4keC9b@cx!%Fb+41l{#W!%(KNn|=QMk#$W(OoGD^l1L<y#%R>EI^^KRejQ$#w9F
zgMBjC?GD~{uv7RB$|WXuIoQn!ofzLk_ZIo&1Nzp%dk)?&k_@9&13c{X!y?JOkp4(|
z-^+zRJpQrZ%XZ>Z2cL099DF6E`yCwOG9T!nou51S!oimg4&19aGUK2$$kKZaK03!8
z*Wo`hk2v_+!8c;tQ95u+oJM}@p!AUV_YQt=@SX6c`|~OJ(ZNfDJjWdDuoK#Z_zFAG
zX+r!sBY&9ZzgOeGIQZ4Ubq6;Xkepcurycy^;5X^|l(h3Zx3%%{euF$jdh$~{@u!0`
zGI7_qLr#dF6}3wa&T;k~{>n&P;NqGPzbK`b?F7x}H8XzM!4(G!26<@7RrWGI?g_g^
z41l9k;x`@q<>0P^B;aoc|8Ut#RNs=0>P>OgZVTTr%jH}e|8ZlNHNpkLY%#d8WQ7wR
zxXYoqWEuICBm)nI6D0gFS1F);8B{0(ulxFK{0~*%0WCH0{SOa#Q~?oue3DJFyD7T~
zJ+Q!oB?8i$6x*^Y*suU19Ym=XilQjJ_uizV6ct3pf{2YOAWbZQeo+zB-zV4e{^$Jn
z<b2NO-kD5h?%bK3WG0hOfzN=_;f8Iv8@MOjwg+W_x<Eak9FSb;M}b)QE*H4Wze2dc
z2MVAv{RMtSe(CG?eExe>5|Nr)fx)BGyaQOUB1IAW4*Yki>BroY%Tp0vVvs*)zOMrs
zaHwylc)nLZFKbYrmu<Age_^Q~2R=!ARe-9130QzFDYyt1qBz2tU;<dR&`%0doV~>N
zfcH9OxNxPKq`*XYZDMtxhLD;C`dUJ|Kbc`@ZQ*r*R6%H;c7A;zA812stVq>a=r;fY
z;5K08j&ws{z+yiQGy-<4NZofPeQbr_7-#~tpq0A#O@Y;m{ANJ!`95RbE@t6sguKTy
z&E=HG2WJ?qr9^He*jn&>;heTWJD|Pfq>I?618@iM)3$U+pfkWlJDq@sN2giLJD2+2
zdVf$}mWy`oq^+8GcY&WgPSG0o0vTW;@G8(1$O2CTeS!PLdfkBsf%}CshYtX+tnj<h
zyqOHk@(|N!o#uNzfk%LMSNK;J`8|L~CI0lmnJM>XsCf(^J}&qK@T3rGXwqIRJ1w@@
ze+uX$6~xs(FXv@jJdvSI`T_lc=YZj~B)}RU3=ENI18K&U{vd!R;$n%Rw8O#FFi}!`
zhLM+q=}$P7dKTb{Am(-iFp_%UMKR7Ofa^fU0HY=4R~GrJ<hsw(b??aR$;-aPf-m;R
z0po$O;7~I=MHVU1Q74GmUzW1h7@g*YUMcX3*MLc^eP$AP9e4wn2h5lFlY!{~*HcXa
z&TjCh0@K*UwgpUf(^8)ct7ZT*fmy(8U=A>sHfiTK9Gqe6VA)w~6?O)%FZAjB3&af;
z151E~5{)qz0S6ZNY&%PVr<VH5fvwxptes^5o$7<Z{tAG0pi59(4XmLLu=z{g)&g$=
z8-R5pu4hFr;+mxtms)Wl)<$5P)afQ*Gq6Pxr2l-l&fhAW3AXzpwO!6-2G-r1*#YbX
zJ^(%hb^*KD;($H$>h_sio9A60m3~KB{ks4cl~LRaybtW-IBH3_AcyY3M6Pzq5Lta6
ziK#!9M)7A}c0b$H7N2K*A{yG?n(rR~KBwsv%u#R<_yTCIpoM}%z?bZu6qHx+74S9i
z8}L8i8{k{uH1Iue7&t=X0LK~BEI0~uYZ<)LD(~yg{<&_MkAEqAf(`(j1b%EDyxubC
z-P!-6MQ{o@I5ObD$Y)rm^ef;3{SDwLrJ4sPYvmRi>@Rsc{R423=dyVM)O_AN;OQjg
zDraA7n^*F&%+J6tY_`pVOTcA-nk$080%ytu6rIXh;#J^xAV)zF1%I&f2mS&61+Gc5
z%*NkB{sOMci8n;#g%<V9RPUa-r?cOza<-5X=Ap0xmZE#*?1IidNl^vG6qHa<QbDeQ
z2@htN!{QQ$xn%@qqm+Wu3d$(BNm5_|sV{yaL?&2P;UG54<3zLIW(5@#R8>$-!7U0Z
zD$o@e3MwhMRe`D?qF{F0ygUV!<q}N%j98Wb7K&(?ChbPfoM;NBbqh1!`>{+^K}<nH
zK~e!VaRsIVOSn}f*xxN<D`1J3A96=QgXW=fd)qwLh^xR;P(>p1T<4~MIHYp6x`G-C
z>ME$GfX@SKD)1H5R!~a;^H8!27nAsPBxqvy4D*u`KB;n+k(u-Q6cya2AfJ~LBQ%st
zG!mX>hJ%1+VK$ak&Nf!iM8V%JgQgOvOb}X?mSj$Dmt>nM94}=lwp7qc!9WFr6tq^*
zM#23G9#GI$K|2Lq6uvi#_6j;E=%}C*OZ{MmHI;K;(L0#)Rsmg$MW*TYw+uRqNlETf
zaJPbtg0BA=LBYL3Xx_tgjKMxVFiR6{$?R;Kcb|gGm9wk}Ivz9MO+j}Bk1KdW!Gj7O
zQt*g^N9A-jjfcfnKSct5X}kw7_gL6!m>;&F#}qu%BA{11sqh0;cuGMZIV-HAmO(E@
zmioPDg^lHD1$`CtlL)*nElg9;fc>Qi14Pd(U8t2iSiukl6BWFwU??x4V2pz26%1pM
zyJdze7$K3LRq&h`mS=s}A{Z&kQ3^&Y7}YJq#!KTflN!R}zo6hn1>+QqSMZWtkq$6c
z!IT!khL!<6fg-DNf`V5hotGsJt<A)l&r6;C*Az@rFqI`zz+_)nFj)zEgEtg(do!Q|
zFxnIeDl#w_+A5f?;LBRMvm~_{3T7(!^JG5b@IZ^uE9i1_70grci-JoE=Ch)ipn^{n
zEL5;a!LQZ5y$Tl7{tDJ8Sj)t#dP^1jSkqfcYnLvxOo3g)TdrUQl~q0R!M?Xjl&k5t
z+kCaA*Q86{ItA+$yrtl6dSF%WO~GvnH&nq!1)D_NN@v>^%-s}h7IBN<J-)~IDP)P;
zMe|mtV26U8!rvnbVd!opT<t@`;~fR>7U(m5Gt}%+aJEVq^uB_93YLGE{y@P;^mZ?3
z%XQ)k_Ehs)SM%m9$n0l%t9oxdo%vM3X9`X!IIZA-g3lEkQE-&~zXF!=OLq7|zTm%r
z5GwDC20Za=$;n{_<liXxRtWjgYTm5+UV|?FF)=J{dqTnS0=~MMN6mL4p5#T%fa3R(
z)Hwy`6`T>Po@J-xdy%!NQOkl0lJZ4bUcnE-*Q`tNLbStAa^lZy)LO7&dBA#kb6Id%
z!4)MOF&8iG{i@(McD5=%5Rd;UxXQj)4OcAx&dy&!Q5D5h{Hfp?dt()aRs6+np@hfd
zA0gKj++bHjhp7_$r>|Pk`&Yq<1EI+DbIW--D(cViJD2o|sN5qc)buRtam<;khO3lI
zFdHh)E(@yc3})Y-DXHS#RjE>fr3H=7J~i(w_U|v{MK-0%si>gh78T^>Rotv%Ve7o2
zWrH%C{E8~xuN#zH?&qnfB>YyvN$XP7PurHRtRgxn(6;!Blu;FosOaSenu>(&H9eKu
zn((43Vk&k=@J<AA6{d<`Rs5#HQemrjRmE#69L87iu!=`iBvrU7+N<cG!c$R2MZSs#
zDypie#?Vu#I)c>&YpJLqq^4kxS^*>Q@Kw|n&D1?U#gvM=D(Z=bVtpZZT+3(nD4I>Z
zhAKBL!EMZ5Q!g#pNJY<&(i9u3XriLIiWW3Z(&K{jrYcqr@NX9+X{I7?l~2-AMJpBU
zRJ^;!Z>^#YbH2%ME8>9%GgOw0^K0q;==am5nug>K6&+RFt>PXPoz!q)aAy@=RJ=Sn
ztlv9TJcR6BDwfUh*DOy>pXJ{)-G7do?WxG9-1OdiP~}IdaCC;x;{hRAl>^l5eJbu(
z@%gUcP&x0v&~7Ta)53ewJd2u#RLo!Qn>{jbPW2yE(L=>B70;@8OvU3Wo>tLU#oU#t
zCujlIriv#;e7}7jmAsqit>VLhnLcWGXYrIEN2>Y~|Cg;nKNbB|3{f#u#Q+8^@(0o_
znfRb^z|2wKU^TpJJCV*K{?s$W@#-@wIBpqMGnXUboL-sdRG^MGiq=puT*U}A9Qlk?
z@zcn3UaNrPYF>1V8aCvYRE$+I?o|Hsf-eZZDA=KK(8Tw~shFsS{pWaI;%th?1bXr#
znU_U;MKE$U#dbZhsy9i+>nirE_*lgoDkiH~qhhU!DJrJ2-sz~8H%-NK6|+>#R#Bp?
zSG2sh7TFmpX0k>;3wRv)Fg=Gh+?wVwpGFftuRz0oV1e*g*7}UFNX23mOC;qL^d%un
z1((t0rng+hUSxUQRiY$WEo7SGksm>Jor?7;wyM~s;!Sah&4N64gQT!g#U>%t)Qfvp
zklmu9RywFQ&EKx#Efw#n*dvbjw%|?`JA~Y*7tkAbvDvD4sf0)Vj*26@(j@N|MCd)k
z->c#SIs>}}6%_Xgl8k&NQ)7z%k&62og)bBFtWRnNpQ!j$#c>rURD7o5fQqkGd_zZ7
zaZtq}6<Y=b`%8M6MZUAx|3VF)0Bo3>`cm{?2`*pkGtRdvUK|?URUK7vSoje^D%IP)
zV=4wW@%nBF@2b92agq)|=TUKrKBMA$6=zt*zZB-*G~J1=bymeW6+ejEoM%IB6>z|C
zfu-*3@2Ztc-mY7QK6X*ulH_NmGdf+>3NEYoMffE_IxY2A)bQ_;|9Tf|c>hyzl`S!X
z2O{{L&c+@u0y}~~Ra|3F8{q?d{H5Z$iht?k5%AyVhKlW_ynj^ut)i5YUC}+W>`k8~
zEk7b%ID#ev{hSDjL=aW7)z7A1ZRZz_pkxH4A|Nj&m@8OZutX&6C0=<iU0THQf@K8n
zxXHUIg0jMSZn+3JA4kF?5eaUIpd#}VffflnrAiTuZJ((e!L1_Z2^Owcj6sM%iD1x<
zG@m1>5xhCr=TTqD>XGn43U6uSLJa0vh_=v=NqmOJN2SdO#_vq?Hra_F5ka#Enn#d~
zz>T0r1T`b@Sit36>4AxXM^Z(^s{AWi>{F~BLAmvQ=^bfetq6RUB7%H|#=P1Q)D=Qr
zCjvg4A_;kapI9#v_VXkSs5gQp5i}LjFoMMc{d5G4L<|HO;Wi<SBbc)~Me+7X_}bC<
zjeeDmnF>}w-Xg+@4|I%hk7cxCXapT1XjjJj&GL9_++wZYCIVtx!FCa}7jk8pPvspv
zQOR1%{crb$?W=PH_e5}S1YIJyQ%rqV1a}L$Wvb5zJorvrCW777z5604yf)P}68>e(
zF5_i|Z0^qieAe9*bc>)nH4(fL!GjSz6v5yKhD7ji1dl}UG%ICL@Mr`*B6u=_o)J72
z37>kU+Gbd^j#a$JBY1*&C>xNE*8-ZWR|LIj3bEvv4#Cs5_mqfzB6$6&4E23!y1f~`
z8`Up@{;cr`2C}*%pr%fnP`_U6Mlv*lXCio>F3RjJ@`s79j-r!~44#ePxd?_wFhazU
zg8V~d&?qHK94(Q@2-3rM>`A{E!AopquJ`sPe{2L*=K2+<`QsxPN9A09z?xudIj=@l
zZvy?Qsuy<n^!y0c(_<reErLlA%#UCJOA)~vQli-rOpf52&HntjH$8$W!lw#O6J(H8
z+hgdA2xjv1xHn6X<okA+IT6g2bgneYqgm!f(8tUrSs1}0W_!NBf}R$^l1MnBxVXSy
z%FKKkEE6Po>a&2joSC#dl9dsxV!K%BFHo|pBVj+eCW8OX@z=7xlq|({qWnV1ZirxG
z1luEci$1@=-^3bh9c-raEc35a@U}#-m6ft4;Om)vXZzbC;P8^9)Z6K|=>S!{olH<j
zVw*psU#5L6Zx>To84T*=zZ=1Ow2y{2H0+6BZv@pf)X?yL1p6ZRH-bVMK8WDM2)>Kp
zWCR~Yus?#YBKVq_pXq-r_*n#>2>Dcy9U6lUMDTe82Sr2iPy}DF2Uru3|Jy%|@MQ!`
zr-$U52)eEDj|qM&Nb#_cBZ5Z-UmxHfF9<y$gd?s~5uA?TN(8?~@O^}<$nbLnztBoc
z{Ih}=1kXiqUP%8%K7)RU;G&2>3jQSc`TQ{G#Wmr>*h>*yX18!t&@dYCZO8E|Qhc17
zyT$)4f*TS1&1$0a(+MN^BLeEL3;xNTpFKt$kD6=ji#laUc+_kX)a@LQj2xLhKE?kh
zg3Y^wQYF1*Yl6ZWax_%d!e{G6G!)fPRzo=rzu)W?(@;i3dE3j?P+UU^QBq$@NJ+s%
z+x^l7`hV`o3|i~oq=okj6PkMEHQcO)qq1AIaMV#j!!25PJJA14-?*beMGbXKk4GgT
zZ`2IfW#wrYdM16#BERcAU(pcL5Z9pcEM~8cr)e;R=z`S5n`Ven5yvzRObwQXDjKS4
zur)XuJPi+R^?4JQ(BNty;gJ-=`!#aj20pzbI8e*u*kJZ^>1tZ|)-d~o+FDRkLoE%x
zH9Vz(4+Uy#=&Yd&bE_exp}EE_ol#dqJq>||+cZ=kmZ{H_H8d2SuZ90{RPsn`Xe3JV
zOI3o)n|+d#>x0G`nrLXM@qRG-;g<Ac32*rE)a@FYY4{@Ub;$RKZC$UWhE^KdYv`b%
zwT3pVGBwLvjCv8Y)sQ#9FS<SKMcZj%7y47+HQpNJu1wvz+`mHuv7=xono-SCyi>zn
z8t*jGO~c(9?&0$e4fkodSHqNhGhJC&HJcGm_oIe?G;NmotdyJv0lT>SS>3MpV(CKN
zHB=gwd04|E8XnZb(NVFj{zJT0G$47Dby3oLOvB?EdI+but4i=h0q-T`New+&>9OFR
z0RbcMn6y0AN5j(^MratRp|6I18lKfKW@W0shToca)%K?cGTC%6fM!Vt@l~loyt)SJ
zhiDikM5`SP)$ok)qXT>fecvG<KBt8bz=!jqac|%npPl3=R+EO8HN2vMUN?qDR<kc@
z+%`FQUhoACFAAZiRaI}ShH>=pPX2ho34(1-=hF|VWYe3d;Wc{248QyG)T<hHctLcQ
zKS{&S4T9WC-fg#dlWAKPM8p3yOw}-r{hNjlHB8qqL&Hi9t2E5iFiXQSy5D^N-U=R@
z)ocxOG|bg7Ps0KY3pHeH@0{cDE#vvj(iWd&kp>o)#}W;T3-}1vTUx-c*9?}kA%C21
zJv_Za1O234^<cGzH5%U1@V17v8rEsps9}?a^;$St!%_E}tcyK9pTKY6rFW(IQu&hi
z(u-zfHftbm6Wk)WRRc#0RBjiMgqx!5(6Cd(A3M_TYuHjP*rnlJ4ev4W_5N<bcLb}~
z3HE59|MS=@gw9Ofdn4~9v-?=&q-QquKGLvX!&wdIG<?kNMZ>om4r};S!)F@4)bN#t
z1MJ64?+XowgnX{yppcB^QQv1shMf#27g(ZaMy0>jaAcAH4O{4h%m_96?BkhHEiy-F
zF%2g*oYHVi!*O;dHwE9(V)OkIY%(iSo760Ow&`m2Q#E{!#{vJeZW-=uaGF(L$@^aL
zj9}w=e!t27dA4y47d2d9)7zHjUCbFZ`=f@R=y;3#OLPx9z%ln1_Py)<Ngt$tUXkL&
z(_d;fSthtl`)DAUmk559)<=GoM1!J3)$xahKiPZhD5~R{hRIX>zcu{B27WyFOM0Q}
zf;U(TC5yc=&Hq;e2h1Er=ji+xjaNvpupW-;DVF1qyIo!}9l1Jg(NR$kM+n7r+@zzd
zjuJXb>L{gy&8M`EGCKaQ+LfHcSK|H-LHS6woQ|&RQ{{DTUCR-8w$Hxw&B7^G5OS@5
zrjia01G>Kz<msR{-l}833ZIWPD(h%5#fKmX|D+;1G#xc`)YPHtFm$*&JRMOTG3I1e
zc>5pMv7t`j=t$@=byy<Sp6S~{c=yN9q>k<zeBO1k>tJs~&T>^@B5|*(9y;Fnq*qNu
zYO3p4w#p}|rGpdCwRO~yeDY4M{o0gY-lMHjI(}L1*QeRbdv$fx)A3wmuhKG~n6IOO
zj#?dqhLO-u%C1N?(h=xLnW$^xHXV(1ERSME6iswA)$yf)uMFI-qnVC(biAvhIW3@L
zj*huHTIy(}<0&0|m<JtgbUdPC_HABU9qn|?T;O-3F?Dp%ahHy}b=<*Iwxm1hczvDU
zk(xpN;(h6B`-9G+=_1IWJ9Tj4jD%Bx_vpy5j0;0!-mBx&c^RhARYz9G)ph=TIv$WT
zc`I?hjx`+vDtjdYPQ7)P3_K|KkRbE(un;Co3qPu(hmObeaKiC%9d8Ztd+B&W#3u!*
z@2P`1B<U@A;A5XFZ>OKu(O1V99nb6Nr=!1)XLJmspXlMRlj#hm6AGs|NC?jwqK6ZL
zOkt?bJDn^E4fU*!YENWFO3-txYq<)C$0Ky`VbOmD8AZ?hJvCa#j7%oUX;vLC>X@u!
zijJ4`a23IL9TTKnW7!Z^q{iteJ}BV1O#fva6Lq|*;}sq2m-%yhWEQMRy(Xo5WK{YM
z9g~E=F8Ebbk0oU%^JFADRmU_Pvvgd(n$Krn(|L7Xg7rHpoUUc!iw61JZ6hp&j^9@J
zjK->&N4IYtY@mA_cIVT>TLuesEY!m($VK#9J)90(tYe9er8IbFzb_x%w+u+eM6%0u
ztkAJi$0{9bb*$5|nhk1AFe{SfybtHF*685;Ajx_?oIT<3rjG5+gQWv9yeP$u)VB;a
z>EU$bW*u8}Y}K(%#||Ak8IxDk@iuc6$#VXbIU%xd<a`kME*-md4mh*ad=klWHs?Yl
z>_6Yrv4@Uo;K`E3_Ud?_y^Vpg2KMRrfX2~rMaPG%1sYJtab`fr$2tz_=w09Ygbi?T
z@HvZ5zZL$OjsrRev{~xeT8X}v4QhKocF%mlCUYbFv;I=YS317d@r{lnI*#i2mZ#M5
zcpPR!a{`hoK`3@D6SUH@v+_gD3AXDl{y81zb$qAeq>fXp@lomTX$>8xg>!U74e@AW
zuaxhd)x$fW?pl_Q`Y*7j)$t>pSqpy9!}%KC0uz4{{)>*Eg;4XXmL*=IM=cF!7Jg;z
z>nLm>$H4#CBz62S-~U&~@9g~9150o7r;clE(QIzZe0J}D>3q?n0srI3jeeOMdiW>K
z5gi-&KkVhY_*|sH_Ra?;g$&RejeM_&fuaWY)(aoJ6f^Mk%2cj_;s%=c47X(AjR{);
zPcLDhq!AA6Cu?EnR@%V&$1`P&@X5@LgDL*4lrvD?KqCWzftw9fFyI(S7`VkiMFW}v
z-9U{2ekB8y4elTAk>6?{Pm~9@_!MD4F~Tt(htR5l@w5GiAP0x!9FrJE_+Zd95EVim
zGY}WfXM?LY_?B?HAe7y8k_DOVSLam>xCT5Cs~D&%WWAPUXf@%S!XW2=bWH=3j38y8
z7SEdE`vz(YsbhrCjj8GQeu#AqexAdtXQ001IbSespn;Hvf;)x;EDn#GR;O+=&~<0J
zxq%i28VheC*i?`~w;O2oAMc-`$bnEx1Fa3TG0=*Z*Rp&<(r{JkfmME6104+9VW6D>
ziagp2xpQ@@qma%8`c6Vt?g$vCi-9{0+$9=LrgU59A541p7`WF!hSxQ)+Q1qESp)YO
z7)kdqa6cm(=+9a<(9J-113eA&GQvBK2Ms)7;JlW7$iTy*;Yxr<ggh$9I6VwJR=^(@
zGOAk9Ck=eF*sp#%pUAGPw}Gb(^fkh6?J2=N2L9Hv6xqj?8szsg!hby;^tyrcQUikx
z3}H@w%jZo{B|XdCeugrWdwd?x3VB9wm>_53o+}6)E@T9qYG;~}M;jPpV5Wgt2A((Y
zf`L~Jyk_7<11~X-feDhIu|{}LH;#TgCzrYUW_|eFY`2yBvVoz~{E5;iUSTIDt6!)w
z@`H^d(~}ImVPLWW^4A4_n(R+8!j(C6%jpKDGX19BG|^DWIWp>JFdL;kE()5>OB+~b
zV7Y<02Id)9QPJblrujxV>}NI>8dzY2!${8l5UE*YV6kMFe2Iaj!Z~wFae5tZg@J!o
zhYPe;vZ8~4$0{LJ^z2##>kNF%g0N8=c+<dcR+fPc%(j8;^mDfBEq>X%GMjkCIsRq?
zTiAq!Q{2W1S`uzf#oHX>(KTTY^R^U(!-*XRb{gPQlwC}DOSo2w{9Q5Wdj@{sqrAs6
ztM{k(upw^>AA;>QKzv_tpWp`uJ`_UzM?&_~g|ZonpBng#mfsy5GH}4a=LQZM;M@?$
zkbFwR2R_^9`(Mx$6}%RDmdKdh^z7F>-9WV{sz>pySm`?hCk-4n@JGAgh!M_s9u*`x
zCgiw*69t-oAI_XIaGL%Q1)})gz!`R-Q51{ftbub(#K50y8U`*HxMJW}7E{Xmv*1O+
z9|eCBd}ns(QNIW$xn$rn-LI6_y><hNzZu}8iD&ifRsIVY;VkMcb%P^!W`3umw#<<8
z`Q$YNmAFSX2bKf<zYJVA!iSbOSn!Sh-)!=G(lhkz7p*h@82Fcc`>r(gMefcNmiRe>
zMFe^Jg1zb7D2hi>Hi~l5(DO?~Q6`F&M%XQv6iulpN(-T;*>->UT>qwMI6Kp9Sf+dw
zH%Cz^3O;eF5XCJ~T=oLGG)LfvOL!Hd;J#!OiHvZoM9Yh!PJ@7=62+~veLWhkF;J--
z67Yybp$XrlXDJ#{M5Ew6QH+tRdR3x`i)ad3f(*5VI8h`DG)W<@pch5nkrbm<jp7qM
z%jp&VP1lHqT~N&^YDMu`oq(K+S!+kpKZ*g&K$QEP;=U;EXAz>P7e$9C?uep(6!}rK
zj)u*)K@<&X#weObkrquOK?ePHZyqs-;!K_3Hc>Vf<P!txZ;zt6h|QuLV`Qmev=#;D
zwq*KK{Z=AAHp_1#q^)2(!S;eYi}&3fqu~a6e71j26rG~z97PveY?lA=EdS0ZTGk6D
zCj;`kqBuFrzdH(Yp2+z3Mv-BCP4&A9W~2C5&r&?`LHdCxx<%0^il?LK9>s%E^o*ic
z6!+{-KNJOTiyn>QVG$n@%%9~ms7Dl!MZvk|$D??Xb^3n#2@$EOkqU;+4F5)ZGvz5h
z3-weKV|EAJb8m8^fVa}iX83)h=odw>B6X{gojlWLTOc18#h@srL@_mr!BGr}Vq6sC
zqZk^+Gpslx`$81MqIj06vA!;(o{NHG>ETg~h=zAJyno?5;K(RO(R-ueoS>JJ!#e^J
z9_-?HfAM@Y>_9jye^C;ANpP$n*M;&D6WBTi1w3Ah;^hMVijaxyPxhr>rBkInMwnC(
z`nr%eqL^HuVaLcjrfE^kWh-0nPmhMTDl-IUMlmaj*`Y55?Tv7(HAgt7SE!j6#r!B1
zM6oc6C2Sg7{6%uP#ZhpHFUvBhL*~y8;r#eg30)@0Xq>@Z$s)7m#!x1P)vOEpKoqCM
z?bk-JRS4aF9WS@sUoZHk;0D2sw2Y9=f{e382#1v0qSzkATT#3n#R*pT;9y4-JEQnK
zii1(?qHDdE;qh@4yQ6p~ig%-UPm~`C?h)J<#a=qn==A#{GX9IrGap33#lRmHXgH%p
z{eBUPbN#1~PX#{{JP-{R5-?5=Bg-4EFQWK{l@i6FD87v1t0=yXLTQniZe&LqS^m#*
zl9v`f9L13+jxkrAGHZ<NqYHd4wLKce7lV8br}rA!<23uoF!Fa&I<DpZV@KFUoQ~qR
z0=s=L6>&!JY!v6%mZP{J;!jch9K{d9dAW;G{1^?FYLhcFzZB@NL~%*@F(Z39ilYO=
zf%mVX*;^!s{D0z{SEKkn3a*3wBZ|T?<izl26xX8QJoR6^?n3|HD6WfmLy$)MTgX4r
zaKSmF6^enQrmIGlOC~sfR3rw@3zv+cXbi<-$c@RZXbdHUumwH5(C4tfMdQ#`r5NqI
z)U)mLR(z1YDaLKF(J+p59OYstAH#+iHpXys3>9MBqX6AvxFv>)F*J#xX$+NOxHX1E
z49OVsVyGNLGzJc+c<{A>h;XGqqsFkigvTJQK%>V{t$kp`@bz11>SLmh$6yMvVsM1m
z1@ZZ?k<r+{xiNS#)Q+J}4EbffDlycEg=?kAt1?YdR*&JAl__etuV&2{YQ>N)87`*c
z;Y(z8bg3BX#=@shK@9a`s2@WkiY2}L7!Fqn8VZs$5Yl6=Po9pUbB_%30M5pi^lp>W
znL=YB?1XQRp&9Md$m=NCZXN^w>Dmi#5kt!uS_y9*Lz{wf@$^d-y|yv5E6{Ad#p^)(
zj|k0j2d`K%{FCiO!kov#Kk<8FxHpD7W4J5EFGqNtE~M^`fjQ(cH6CPGr{%*XC|Mz0
z1!;==3iS8Og&3iG3=hWeS`3q7cqoR4V;C00v-Fb~9*tpeEF7Qoh~cpqo{ph!43CTE
zi5Q-Y;e!qthVtks%HA>b5;9<YsO0gKh<#$<@}&PX{r-y}*k6#hU;~9*UmpyL;k&uv
z`mrIRAsHIOGs0;iip6j9o{Qmy7+#EFcnl+Apk}1t7{O6Aju7gZ;PVBXmHtu;V_CoD
zyjNlv7sL1%H=pz-#5gF*^1g3`8O(Yn^KuNFP2)jZO^o4HaiQI70vgJVW?zrtjTjci
zusDXvF-(yfpBKYaai>`#($l7iI6a0LLS_nbG{rp3j$sb{cBVg<&FWz4fAf5ni{gAa
zcYz=^3x%+jm&C9%hIJzH?s!=&eBQn~hUGD=pjFFzE9q>}?1VEZ{tK@X4Rg*oYb54c
z!Nc3r>&1cJlyrDjHk#cO!)A64apcCaC5Ejrd>_M^7`DZ*J%&$W_%w#M<gE8%*b~Fs
zG3<z8XF-eDEo4^=Tx!Bb@s5b^7KAn$6zr92?W2<jc|R7e6zUhvekk6{qV132qXN!(
zx{nJui~m^+2VyuH!?74>qR(UaR>(oYFJd?p!<Wo|fB!4dFwWd`@O1(IMhIIX^@oKY
zk;EyoH654g_%6oJu!cRxqw#>963IysPsMOrNagXlRGy9DTnvA(LyqBm3>RYfnJy8-
z4>Z)V)K4+=Ea~0dFt`}QkIc_4-uP(ND(A87b2!R^T#Dh>7=9BATxMMep`M=kKYFhj
zTos4xbtc7Y(KCOiZ<h|qHHrCm4FAONm+<R?Hw4QJ4VcKkG3=V|bA@N&c-T=CisK6}
zU_;A^qez@%i7eBk(-w_``1CDa@i<D5$HVTfBry&(jz}D(<0unHWzpXh5BtoU<ERiv
zS>fdbsVpyqErt9R;dyaXjH6OKG$WO_ibz5W5NQoano2w@6mJQ6U5)=NRf2dNW*mPv
z4D>jRIHK{;tKX^Ub*t#b;$Tb~kZD??Pe}T99FCAqWy7E((<vEF0nk=n9980|8b`G_
z>d6(W$5A7WnsL-((HaIc3*y1Xbpfx!cg%=&1ZztvD5gZLE66(qYU)cm%y51j4TSTe
zT!+&rjv$T?<M=3!+u~@<qQ&uI98KbA8pr){JP^n2aSn>It>S1cq*)xzg;3c-NXs}T
z?oU%}BjTNL+!aULINHV0K8_Bo$GF!i4lWnGBaV)7bl;LDPv7R9tQ&9ww6jF$5)Yp~
zF(&W9zmI0`rWi-D)qbs!>3ib1mzM~<?5R{H4$hZx_K-o@IPQ};<P7Efez!RK#PKvQ
z5yyjZjH(?x6vq>BJSqI)I39`PQQ<w}D7?ylEFL~7VzkFaS%ed>wF6$Ur)23V8hm8B
zR~)^C{2R?uy#7%*Y1=oBesS()8kVKM;Gj4L$1y<oKtb-nd@YsB2t!1CCXS&(s9C!z
zHSE8bk$~cJaSV@RglI+;#2G1hV<?Z&ag5%Y9wR}|$MIjXFU2u7j>T*mag2*&#l+03
zal9sEyx;`Em*aRv2qR1sa$`<vQXH?xF+GkMal8=+3pGV7Sz&*AvXp)N`jmSnJvEMn
z>r>Ns#r~PrwSt)vG*57r;B3J;f^#K%Oq`WCUo;B@yS(Wy6tYNsfT2s{SQf`-cGPh!
zr|->8t&U@jkQH&P6hh@HA!;m3zBZ0GMO-Jiz93G&^{EZQHww}>HnG`uXuwmp#<4Aq
zy=?pY)7#^Ci{7#|*d52)aWq_=+94+8k~Zdtw%r-WF42(Ben0(=M1D7p_k`>be831e
zlgLDv;QNy7zBoP*!c(Z+AIHaW+-f4v#3yll%Jvw?r8qu|<3Joo<2V+_=VIq?1P_L0
z!6D&a34SR^f4*m5n)o$)mD&Lbk8k5RTo8Ih2y@<GU;20)C*wF3$B8&<JKlG3G+OO*
z85KiM$MJm}7vlIKjx%wbjfWG^=i=eABDR-ab5mR{eqNN+=hh79{1@Zl%8j3;Is6#M
zPf~Hzv%%6<tlZ1&RpKaaqJ)WG<M=I(zvw@#&{h8b1pkQRs*v9WXVwlF#N$tTk!Whg
zvJ`KyXd)Ih@sAKHb4-57J4~vOiNYp&_s)<rtHdH^sOLdnB^EQ0E1Iv@rzkc^dL>QV
zWTLDI@=}7OO_UMRcWXdpIpHJ~gp?P&*$kbZN*=d}rlMdaK~C;hHp6#!Ye{Al6RHW%
zL=_VelglIhn2ER$O;8s!1fzniM^gwRCrntvZ9%6%&j;NMO^WE6;fex^Rn4&5tYKpC
z{&Y1H-)!Ud-6&)P>;nfzf|@2e#Ip28_Ljcnt+pU7R>#D=Ej~#-*3tL*JQ|p&FFaqc
zM=VQaLlbEe-0Y%}iKZrQ7aj=SW}>l)8@>D{f+WNJ{AMPan^<XLm5CN6TACPU;#m`|
zOtd!fsEHmX+L&l-;%*c7Ff(I=b|yNR=xm}rb8F%b6CF)#z2H`OId~?PCAsUgOYCCe
z!gcr6SoSUxpBM7(lsF})1gm4&y{FxKO=L{mZ{h(HT}{09a*#D~pNU4V2m52$bFplt
zf89ej2XCBpyP4>2;$ag-Znz!KxDT3m$i$j6?u84XNZef5dxYuq%&qfAa3hv|%*5j+
zo;K0f#1keLgQ4vYZf_GkP1GJ2^fJNp%f_=-Jo`XLpPP(Tn&dxaa%E!}jmPQpZa)+K
zO$=fknHWHR+C4KNc&KOYKojQQZv6}HPnCjw<ANb3_=%{YCZ?Woix&2t5s{i7Zn)2x
z7*3I!@R%GvVWf%iCMK8|Mde$W=S{p|Vl*o#o*iSN*xxP>p7`i@`7fGy$;4Qi^o)D(
zf_v$2mnCH;$I)Ez?3%Og%O+l-xlF7+?@lza`<(kKGkMlMbltr+$>&*5$Fq|plo4Kt
zXD6GOLeDWVpZPQ~&BP27Gfhl4q4&yV1<j6U&lmDoUz_9EyI%=rnV3zFH9_SU@$6g^
z<IcGx6{fT2$u6K9n^?*gYGRSe_YvGBwC8zuv56l~g&C%0evD^NP4btUAdZ|GF#n&v
z8mwS3&FrA#`KwuXCY;mmaT9AztTVC4#9ncg^(MB^Nld(HVuQ&&Dua!Jo1_YO?q(C^
zUiVoYiK)Rh6WdMfG_lLXTXO7~<iAaCoa8?@K2To^b}*lleD#LA+r*M{?mH$Hj16c&
z@^^((e9r`HpX7ZL`%D}%@ui6mOnk_G-o&RSK9b5k|C-M#-f!aLu%pP<G_xJdEH$5*
z;BkQNEybr}9275NtudeUr7uLJzREfGD-++EIBeo;wt6<e^PzIcKQ1$QBy4Eeqb81p
z9+Dk%bFltjm-ZYxIiT@RnE1}bN!ruIMPA6{Ya{sH#5vZHi8J)cv+h|TeQ$*Aj^c}j
zyvpZYiWk@lZn!^4)1xWKZ~w>r$;4$7S4{kD;uoptOHzr<HY=SGShQbRNB_9LNhqC)
zLDc`w8aLr4;3e><iEDIe3ol#vi=C~BsD+pn_B=PFx5=^aH~#|I^NUD*Aq!6xEkeSh
zuodnrwJquuu~5`PF*&ia6>g@GE4;WMW0tT`(n2XK+^ngzg_}jseS6ASxXD6U3*{u}
zzrB)(<wfMD$|_j6#R~WBsc7L=A(aHZoI+Ic$g?p0K#D|>G*v-{{+Gjuh?)i6l8t%}
zyM`5Zp4==bZo#zhf`z45@+}Lth1)GOv*1`rSg2;9IyFb#k~xKvLR<@;#cxm+sv=@l
z3)~`arkQ1&($jN^H7uko)U{C4LM;ovM7ukgTgO6e;fz!NqT91vK*FP*g@zW=v>}a?
zQz&2JG!W!=bN|I@WTA<Ld~QqliyK(D%|e?W!=T0z?ZoXF@}|P;mo3!X3O8qKW1+2(
z7FM`(X-k@`u-8hkwcz7@^4eKw&w8}b$3h1&(IXZfwQz@pjv{ulaF>O<Ep!&Ki{PDt
z+#{5>y+`<c7Vfujukef@4ck>nR!}QZ`2h>vEIce?cfkh*cl9n(sfhQG@U|yYO!NQM
zTJ>@{JuEzC;c*L3Sg3e0482?=tW$2c_@srNau&s27J3WkNAxH@ZK1D)k)NbSTIeVG
zX9fFP7+_(bg+U@dV`13Q{K3M93Lio*x>1zM|F-HHCP7S)8<sw2VYmgYPcFp~qOUe2
zmz!9QVw0JeJKDk+8tvOuc+pQ%&r5_a{d_vri{e@@362#UXJNdM4Q7@RUa>IILU$Vv
z+FV_a*DOSAXf`HUc-_Jw3tw7z!@^_>n=EX$Foo4>VVzX>G-lYslNa5E7G_wOX<@#F
z1@xth?ko%M9(Ctgm~CN>1@0&L<E`O_igP7CMTTDZ(amY@O+D_OEt(TM<u0<Y*uoO#
z&B96xt1R%8WfoQlSuRM;*GI#o9{(Xsfjc^`mJ6-1u$JEbU7AWBjI-Xtn-(@$IDgFD
zD7e?ml0VbJBW|&<)xs_dyDe<9u-(F27T#v>QM?fI!+fqi?)LlH-N9}_$)$#TCu{R(
z_i*7t@9>HiKDLlK=DsKGVy}hwEj)YN-NQJydS9JzX_I{xKCtki1#S!Z=#Qc1BMS$v
z<&f~$&oUl$fBwb&#KNamxToc377hwIAV|&Ua>b$-!~A?<;gj5Ocgn9Ud~M+x>)paP
zY)Td`(lQnfTR6gETBvi$J!;{Yknh<gUUa`Rv&Su*u(-LX_Z@o-*4<AjHsO<^VF&V3
z@gk?$h<-{@Pw@<W{s;H0g>$qL!i_6iRrYA}3l@HmTA)EF{$$~23%^O^U&5|C`>SO5
zS|#t2h0D@4?Z4<=5q}_|^?1?$S-2_%<RyNWbN>*R_)~b3xBPNe_By*q_Q^KN+W6bT
zKP-ifVm6razjVLjZV?-WM67CM3)|Rm(ajO$RoF){LavR9N8RE!UXhJSxtV7P8zt?q
z220r}BZR!PjbU3-|J846D_hRyTLZY&MxKqE?XXgAVLC!8NP^T<vcsN`2aQSO7M;o^
zmqw=DD%;`qJ#+xY#`o89em&``Jolu#;CxEAVc2MBBW)vUBW9z9jhZ&%HcUymx(&;Q
zZSyr@B<*nX($N>)BPU%)u1@0G@N87I!>Xxb<A-ZGt@1oxbi8;hmDOzU6xKd_W0t6v
z4c|t6=GNvWv0+fkMqL|hadqtQUxS1mSWkGdoI>OeS=nmG-3E5pqG=o^a-_M}$VOnJ
zi;X*N+-9S(9d`b0Y&5aa)J6+CY+pT(x!g>ZwQ#$QW>VzlVqw~rT|rCXtt4ja0?X5G
zZEdu((Vm&S7#8*p8y$ofyH=DM)^$fQbtfC0S&xMaQA0c2CF$I6hh56uHtrGeUdeOT
z=GyYGq+JC`Zoj$MeG<e>vXf!y9uTpcAWQv_jfZV)v9Z<0BQ_qjF~i188$ImsU#y>v
z{x%+?&FyeB@`R1&EG}WflQ#BUc6-|BMgN@O_qOqr4SxBh{neZqZM;6h_3`1iVEWqO
zW|dzbc9))V2iO>BhufSMy}#%n8-s1UWMiz2AvW4xai5_p3K?ocy;`{M&Q!a1i$2RM
zijomVv}`ck#=<435rQKHM+uG=93#jG&kK1$@I@Q5tSpt|Y>c<@hK<QKCfInHCbcoq
z#?LD<Onh@*W#X$gUbFGKT(R#R-Xo*^Ni@r7KQh86UTD;nai-8RHcDM_r_&Q2$fbtI
zG&yCPl_h89XR)ML3(vJN&&F&vrD{dz*!Z%A$FdXW+gQK|ed{fv8{g(Fv~j@7(pCp2
z`+O^Qv5h7C_px)A+StrSk>hcZ)iN8)ZLDBjTiKO1*7C2aoxe)N)q-mT8|_Fl!a5u4
zZM<po5xU1?BYOrreE))+uaBjhc$*}MFVBv-<QB5C+iYy--=D)(-+0T$+w314+~i<~
zjh!}5*!a%IE*raTd}!k%8_qoc9UJf2*kj{e8*6^g;j38upw(U*@6$1Cd_e!18_s*a
zz1_cmw$J4Od}hwqbGSBOzm1P+3N~;XpV;`6Ww-G;-5}pPThjZ?M)S!&UqbmZ@D9>*
zZ2URZ=ZEkP(Kn`qlYpEMIatc$Y~9y3zOixG#t~X+b?RF>e0h&=_AwDI;N-i0M{OLl
zaoi498#2MFZ>9NpugUd-{&W13Z1Og)+W6hZY4%h$ezftEjWagR@~?lPf6>M{8ho*T
zfmR*lbMfSP7JQ+<;kDc!X!*rH4=y&Cxy<JVRzKVL#l{u3dXnY-y3y%NHZI%YR#$h=
z_c=4mg-m?C`ZpW@V^dn<SK}hjEj|g?3ID+YvPW`I#KAQif7!Uf2E`6=rO)?(uCsGk
z=nvkK<||JB*!Y)yzJtO}xVm!Ortm^sFUs_}@a({nFq1_c92yW5cTmDXF$cL0xJZ?&
z@9I?Zeyr-1bns}MaPqfE{cv$?DJNVsTiQYUPI)9{9h7sx4cBTrDDU8A2N4IFg9;9A
zaiBQJ4D>5HsN~>Q2YGal={{Fl@|$J+EaTGYeq{$&r}?dK_TYf;qQ1H(O;nxm^N~lV
z`9p5@bcdhZg6qIz$_xCc1KWY)Am(7x0zdA+<caHj%L(5@VO4gT;ZsaF;RauPy^dSV
zB^hB+xayV2FA`R9!fg<0IH>BNniDQZ<cm(M=;}_m!j{FX>7W*aruo72aA6yBQpZ8c
zK^q5c9n^JD&%x~unmMTNAm2gSK_e$@CJh7|I^nWgHW|Jkyesem2V(~ZjU6;`aGL`@
zQe!5GoM<S#F4fe*_+4qv(MRlTa|bOPv~<wQ!4sV5T;ucYe(o&6Cs8$rr&~MtX_fzK
zlQ7wKG`@o_4(@c&!3p2X=<I}FC%nT6AGvp=omcst1i4(0oQC2<$h#ce?VziJtP}e7
zJx;g~_g>c8T>o)D+!Z9_fXiq(?R6hbp#}Flc)&r>J5#@A(9H>(38S&4%x{zF?tsYG
zjvjXKh=ctOKBkj6=;7cs2a_B;MrWfP9E@aH96ae@0Q2dfr-NP&*IMIg2i!8Ew}S_#
z`rpj<pQ7W<@p<qKT+UB1OMRVi6<I&Y65o;R&nj5rb7jjQ2ZJ3v<6xMBAr9Jg$$T&+
zT=F#331^Ntp?SHi_pJC*x0^kt^PGd>bbfwzb8Gkk(9P|GQ7j89#lbiSV;ns1;6(>7
zIoPu^J!){cW55fn#})p4lf$;g7kT)G__KT$z`+CuFZ0}GJ{SCR_cMm_wQGv6IGD(?
zFY{j&B)PHBf8D_w^fU*{9ZYsG#laj0a~({j^DOeGIhf9dvp#%PVTM%1EIP0gE?1uE
zAUeaR8=suzmzojwOEl3u8r%W1)NEGX0tX9O`<wkG4i-6JGx>e3&sS+k7K_Lwg<K)9
z)InlfxVCVGgO%)`9lT9rIw;=RU+Z9<gVn5y&HfrETwJ=coqv3uzn+ys+m1?aqVebX
z8=UYpy^VBuJIg6!a?Z7J%a_egxW;LV;8wwHg4+cTbZ)T2!A=MJ9DLwl7d_L#yAIx?
zFRe(u!;WIG&whjNrP2x6Lie!XOMEW+BJOqYKHZ~T$oT^7hYr{?<P^#Ih+RsXOz#nC
zzNy4jf}c3}ly#awP6D4fIN;!C2fsM@+`&Ny-#Iwx;0yL?Y~2pNb?_xGQOo;^t<MSH
zWc+G**t2ohovpRJor8kI4vsiD!B$+uo4GaY0ggJTv(-OFPqu>Nf+X9Phe7<Ea&Vdr
z#KA=e-#a)XP2;?Svup)?nAs<Djz(@4kh7Rv#>21KUSMOCeK7dv`y(5&gCF_v$NAwO
zTxUD`@pI`*4lc7NckmZo*TJt2{>P4y9o=I8H+F#e;WYi!*Zd=myx$%C;owiY%4B~+
z*?_N#@O=RmiX!WXdoNsfaKpjhPB<UIzb$&{KMwwNP$&_u^Le#+z&{}7>a(Sx>lR6%
zXact+P%(jG3FIbFE`c^&JCQ(%MA)EiN`wu+WCEoUC@s9>;LH=^4}6cNOd@=nhCO82
zM7V9#=W9|lY54?x+~VJy0N*=f3Kf`s-GECPDkX4h0+9r?1o9H7oPe6ZFR$ey5&ofY
z#$QQroo&E<DsJB9b7v~<7s~aedIClQRswbc(F9@%#1k+R;d|WtWHA3n-klRRQVtTT
zOb$QStI}u*Boas__+d4V>mm84$-@46lQ-JVR!ML%m{&D{&rj#?=#WcZO?dSLY9vro
zID@!tXf5HsVC@2Z9mZLe%LsdG6s?;;J<-=M2+dERK>`g$EWawZ)z`tvjk%2y2on7M
zBN`{r*F`@UO%izUd`d||O`>T6w<pjnf#!*D7`!Ke774UWU|a&@6KKV<UvYaR@K^$^
zSuY8+O`u%@cP4OG0__v1($i;zjzT&J-jTqSt1k7O66ka;zjFf9ujepM7fI@YC8@g;
zxF>;Z0{10wuUwSZ%_MMBD^IDL*R?>?{A$kq2|OU;LxSBBX!4~0U;^Dm98t3?PdqU;
z-Rytv!wJlpmP_%G1YSGkKAJ$`cLS2g6L=zl0SOFD;7NML2Px)+dFz=#uLOE0@DvM`
zSGivTAAXkZlfcsnJbNI&ahYNi%N<Pjr8gc--}HpvKY=s9xjg*uQ-czC{#SQo0;3Wb
zoWPI-hB7}13{PO<Upd1h^tlB3A4<J)DD|v}BwzgIQZs@XyYB92)1dgZFtyS2a7lR#
zqtW1tQ(s=qDYQ7npcm!RFG=Xwf~z-f({(}uFDJ15l)Ey)&x~TCSoMu%saIKW8X<wX
z-2a~qErDsYJevR=^_2VCHFt6XwdZ7>-duEwXr>A>=%x39841ixVD|s7pC#f<JKJqr
zhSBCFFh7AMR3@-Ms+hIBNXWtjK0cFAk;mc$F8mb|-c2l%YFbX8x#IGMXzf*ZMFPa!
zm6=rutWIDJMK;?6b|<hdf%OS&O<-FBZ?f$S^*1K4NyrAqe8Hz?vxr;RcsqFdA1P|6
z-)Lt`@#WtH-b&!@1SnFuBf-IWmeF>~xr|Ky!|y4QIi-rcL&y6wMH{{=mV8f=rMNeN
z_odYP=ql`368M0Qk-$d@>`&lu0!LWV1U^aN3%23}K9$G^1j`gpf0h7|w)$K&BnO#}
zohA7)fv*zyhR@9V=TZDRfrHobi#pjCT6vxN_}@x=e^H7-M-w=f!080OPvAJaBMCZ5
zKWXJX)+apoJJC$)>7SCzQBQs*fwSz*oa_&R=U59us5wt3`J-X_s!RSKUMvXxnY~{E
zMUp6*#H9o-C-7GS*IB0t{3^9}ErH+YHVae#OW-O!?OJ$;_<I6>&|P<?{-lqc%O_!*
zBC?i=6YtLrl=KZb{htK>Wo7Nl{aeJ#6)F!~mnoDC{h@FYHLtiMujjPr>E|S&+*y>Z
zvRD$iNt93G<|K+IQ6h<Y<#KLHqQx)yC6g$XMCl~{J(OZIXVYd-nIw46&gM@|*<{##
z&HuA-xny{Q&s+O}zq=KZsF*~hB%D6}ElHHTk#nTDN4!;1uAD@k1TiKfAc=#mJRUqf
zl7yB7zi+ZS2|WoTiLptHOCp*?EQvdlxGRZx5@r&$lHlgfRx*4zkW9iQ&+%*~n?%dY
zE{{YK@BWiR;w4cf89th*o<!ATxR-miBo<dMO2WOhiR3ks;TI6X7XgytQ;V-`uXYl3
zgtty2l|<cS_%W>Jw1(l;OCn!_reys3Nz`u?ZphFeiH1p}nR4aexzB?WI|7nMNd%&~
zO|Y?G6Tzl}jB|Su%?kL6Q>hlLrs_poCNcb3zs98^t&%uUvnIzvZKzLT{-b`YVnx~|
z(VnO5OLs_eU*mL_B<@I}V=`Rp-YJRBLh3kKMxchsdY?Tt_wFR_Nup;Gy^^>$iA)j?
zC-F!UU6aTr(JdK%G=XKmPl|Sb67NmS<>#dyNMcv1fI-CW5)>=yJ($EptdXK#v)cK@
zM@9cw5|0b%L2D}kliFCi@)ODMD>F~>x?TL(@PO8v_iy3eNj#Oruq2*MqE8Y}Cov$2
zfvmyeMfiz_jdN0cSvoc7C)i(*sST3Eha@rhyVPLeRC4-&^*)qNm_#w%<43`2Tq^t=
zP5MvH$RtKdwBba}8zGz@_!!O0A$VTIF|?$U<$<m~Q+q*_FABaS$S-${r_Y>nUr*u<
zArq2#S;#Ab6O(u~iPw@iw!7#z9lRb+b`sn5^}^%>Dy1h&oY_gtNn#4kBI2|prVC-R
zxz`KNNMdFZvqbax=@gX{_NR6|@6SzQUJ@(m&u`?-PhtVvg~VBy#G)jYGR;HzB`)SK
zW)nD_dKh6XFOkML?3?_P6)H1yxx`<=c67xZJ3bsRF!5EQtbC*Jnk3dHv5r=9vROC8
z^+~*$#D*j`CUH86?~~Y+#O5USC-HF-TaxI#$$vYE9Z75zzD<zI?Mb{Pd{HN#;!c*-
z$-cu1E$5N!N@BNYYTlcn_^#;R6J&%vN$eH=zTiH=4+=s*6!K9r9E&pYC-m(kzD(k)
zBtD}L+ungBmiNl6ULW*s7<|s2B#AHBMI^jKEX$TONr}zja*oOmWY|c*rZ*;WB8hL3
z_%?~d$?&fEnBWn?qk`O4g?b*nisY=F8}9!49lOoBsgv}v%|4G)LN++rGfA9fFX}>d
zaW0ATNfdUG<AS$`7m~P|#P3P`ki^AgsQEF8U)bRb|0#)|g<NW$VGxhY%<y3US5aOO
z<m-yRCGkI2{hHK&akz&6k0kzNZ_HX)k-C<|Uu;3`{C|?+3jgbZH<IBVuoV9mk++=W
z2kDj{r1=!3kP8lp`Hp!J7e!rEbWzDgF&DWm%DeIci;EI2O1miIf~);`<5SW_DHlAQ
zoCmjRzsU`EIxQ>lsaab$w_E||)2*8ecm*N12=*Ep-0EWA@)UQBsVpSV4d0sK5FKu~
zjSTnHdVRegaiO_r?t)*p*IgJcYPzW9V$Cc+>cV#6xQMxkyWx$)?AC$lf^P}&u!Qg?
zI^lvh&Q)Agb&+)8irAxncsK32XlVo_)m&6}@k-rrwLI5+)?jM!px((8aZp9icTw9#
z+C?K5Tx(iKu)d3wkh(7F3E|c#{kHpzknf^_i-w|nZ+My-9!x55ahoV_chOh~^W4P6
zpbg<!O+~{;WaQ0+e>64ZEtp9ctz5Kraj>j+uZuP=+PdiA;tm(>+;E53=aO9U9+0$m
zc`KSFp}9J`$ZYiQ6w`GQ?Che85U%`Zgu5id-GYpHkC5i2JYFRu*Xk<Rf1ZDz^al3}
zKH!2|YIJka-Nl10ZW`#bqv+w{Aqjn0@DagB1sO`0AU-DI<AP5JKIx*T%bi`ruBNw(
zK0=<N`z5l}5T6#!e<E*``nwp)i=Iyn5F98tNRZ0GLWT&wo9y~bfqs~fxpne}yBOhO
zoe#ccGLk9tiXNW!Fxtf!UerUbhv!|q;9{$bZ7yDP@sf+#F6Oux>tdXX^~c;Pg5zCG
z5Hh<)(I5KO8`rnq%k&=?6J5OOf||)L{*R~YfO4XGzq^|yQk5d*(h&tR$xNnZGRYE9
z1Ocg1mr$gmNJnW3ieklzbd)Adzyc_O1#BotQ$(bQAP7kB2nhV|eEZA)oOkZI?|a|t
zC7D;(4{=G}U{4VV`CCFJvANDq{Wrv=LW!X+!<-^PO$}k15K5+pFeBtYfJigbA3YqB
zcSD#h3h#$7Cxp2neBaMp9KyU1=7+FIoZbszK?n=Ql%4JHS#z4km4d{IwbO_G^7zrZ
zL^RFQPU&Ip(h!!hH-+#4g)9);`%v)LBLQ-nIW?5zDevPDR<MuzoAQ*ELRJZW62hk$
z`Nk!|H6g5J9@z*(_&kI!Lf96<_7J`d;VX&sn-JDX`23T$KEyjSoqeYr8_L%#^TPp>
zZ$<4pW-a7@o^J?Yi;y1#e+*$Go1gHbMY0Z6SAG({S&;fn?bZ+|cRQxE+UcJqv|Sun
zLimL`V*NFQof&-=_3@pl-^2^a?hy8b{CDK{hp;z<^cJsP?exA79+v|AgZ;O5nx<9l
z^q(Od2;rb8|IMLZ$X^Uc2tzn5gb&akzEz&qqhdWK*t2$;5=MO@gtM&N5Ke}0Dg;)?
z=@51)!6#~`&#+(*d3@QHNX_#h{1?KF5bo%Zx)8#}5H5u{e}(_1x?BUg7Qz+bM_L5`
z6>>G?{|zp1z0TxCbE(Gma8pVkNAX+oEe`dwoh${}3chKijN(IAvmMF<;+iYCp?&Uc
z3JNP|sGyO8A_|IfdR{?o1so}hE2t=HB?Q@8$||^B0c+t7#Sff@*Le~-sb5+MclXoE
z;jqBfQFF^Feyb}lNK!!v1a}|uD)BZ@;cR$S6tIm|Rs3dCO+j@9H8`v)xJTg(NxG&2
zwx#xk1NSUU-7TCgiW0Wo+ZUwjC<rM?C`c+$B(=<GOu><gN?0(WK$UV}QD{P<3Unbx
zM$QLgtPJO6A=Gr3uVF3;Lvt0(YpHNygkgGupFJPU%fwYz2=|KcT9JCp{$i)T;@43F
z1@|iWbbgBFJ_UWs_=NKN#r4I@IS(jkte};G))GP!1uca%6?{;Tu{TrDJi}WE`L=?e
zs%h<Wi4Q5rSI|j88*yr@pq+yD3a2U3AJ$HH6w*QQABUxcNFjZtMY*qn&Y6(ADCjD@
zo8ZHO-7~H|6!a9{OR#rF-bcaVss2FMPb7~BJ}TH>@G-#wf&&%I)ciEBn&u8sFjT>5
z4QDhAQ!rdXUIcX`cwE5~3hG1<ieQ9-kqWjc*sfrdg3)X(yF(u+7^C1x1@jfWr{F0C
zV--wOFkQho1y3t@Rl#c<?RSTsAu5=lpkFk1Jj3s8KC6JA4E%_AUcn1&S_)oK{6~cO
zCa+pqc~SAd`(9#esjLheVlJGL$7k|NZgwW}VBgu$UjqWKD|kb}WCc?cys7vfJ8!Y!
z9m=EY#zKKftb%4Ht#2!+IVF#zXisyh0zQKIMo%8n_n#D;q4?Y6W-6E^DSWO(1*Y>I
z1+&?+6#uLCT?NaA_>bJ>JZ#QYcp%+>s&DDRym<<$<dv`3%j9F4d}MQhf`tkeDOjxF
zXh2!6V2Oeut(5l_EM>{GRtE9U+o{kpw&4rel#^ep9lW;Jc>v0XtP2GnD_FsHuHah*
zD;2C_CmQ2^t@sCsK2dP<Sm-Z4{wvniivM4c<}(FrGJLIq&olfB1z!sPN^qUv`iyJk
zdii_>xN=+bI|bkKhuF#G=lKQ&Kd{|aQ#L91QNhk$CQE*FZeU}EQ}Po-;8=9j*`i>p
zD3d>x8=$X}@!-!24>y5{tQx@%Da@K-+#SZR3_-zf3I|)i4<2KIXDh!e*sWlXsMQ<m
z?&TPw;2^!T5*6_A`uz&{X6W{|2|h#rr*K*ia5%~;bYoH8AvSUm9#!zSg7vl2M-))L
zer_I-h9OY@<jlN(6dYG@LcvLew<6%2f~j|Trxct~{1-(}D_DD(he5m&e+7o!<88Xj
zJFnmZ$JH?I2;-uHORSDD(d;lT3n9Oz;EM2n1+NMYv2*Ekot>J=5XmjUn}X+>`K~ls
zVLvp^c;pBPgpnIYp)i7B6cfp9g48J@q;MFwP0cUxTQrR3|9IrZ#i@i~k0<;m&q@j}
z7e;v@rNSsJgid9`xHH4c3i)wUs)CTpg2=d56jDjB`y=J6gi%#^wJ>T3sV>Mc*U9s9
zcZE@qhI_)O6~>A%R)$eKj5=Yo3!{A)p)mMPSSpNqVQlJ=7Y@S=!wMrJRyB+U6Z2`b
zFrvbBK_esQbGLRFP8e<&akirFdHeS|u^xG`FpA#vNW3uAvrZz6WEiE+I(uuUC$=>6
z7+Q0an&frEnAJ0nq<$FphS4aD2g0~7?9UN345LYNvw<MV{mi3Vo`hyXuS8?Y!+0o+
zIo<Ql*G@ML<H0bRv8L*zY2`c>gKZv03kknvn5*_^Eqwk3r^ILZGv3Z4o@t#p+RSVt
zQM4tVb+q$NhcG&Z@k|)w!^jV#Qy3${7|DwJJue+bpD_9g?;J*#FuDrw7Df*t%=N=z
zbQiv}xk)cHJ;UfFk}5s&db7&vq**5YSW`E=0fHot2zfM&nU}r(VLTS*+**3?4UbL(
z!x$9CU{M$v#;`Dc-jg>(tW+2t#^Yf;As#8GK27sF>E3nHB%@eUpQpx3ZIX-*V~j|i
z6nsCG{}f66d^)lA$A$5<Xm;D1OY5^?Jjdb<^O+34z9xk6dKhmAe?E*C!gx{mOJPhD
z@-j>5lJn8p)GJ|>z3kA-t0H-g&8&Vttt{Ta3GdA?CWY~K802q-arC&?^Sn1Xj48rr
z2u>B89>z3L`#qIUwRV$yoGDJT!gwc)cZJUuq|>-MX<wmEdLEm4o%FIWmWMH)Z7GZe
zBB5}JkcD9^3S+VG&2`e0PoJ9qei%!cu&?uJJtD#n!uU{H)W?Fi>ZCskqg*J>Hpa$7
zSCUm>d=kcuFm8tNX&9@+I2guXVSE<GnlQd$HHEP@jL*aPQkq|_3(gm8A<fMv&N~nG
z&Rf*nWJCQ*oYsZ0UdY$1h@N?rvz>ew#`kQx=bU|EY>-a0DU6?_+5Zs6kJ7F-vI<)I
zjV-TU{^l^Ygz>v5Yz<?Zkey*{7xIgAOf8iDS*$x+C)j;<u;+@EeBA}-fl&IlFm{E(
z{!2;EP<pqx?g@k8j|rvsij|%Hk1+Og)Gd?#GYl5v0pTn_^2wp}AxYKgFwTT=ILs$(
z{6roR{D)O0<d`7k42^g^j1wX`$+`%oPi0&=bet7_jiXHq^PKSWVO$V$QSeF_mt?fL
z%otlI7#fiU_^-HLWm09pS$4^}9>#Z}^nYQTKI{AuO27GA-YpLA5!@C*?-piO1ldAz
z1OtMU=SEN{;*Ut=Lk@d|BVgT?j`-sbNs$POMo>(I#Ur>wND0BFmz~>%R2o*kq>xe(
zFw!Nz`5wzin0H1{HsTMJ<rvOQucGks5kDgpBK|v$bfRJTGrCF<R2C;{R*8T^*~L)0
zS_IW2s1fmh+-YhGxl54e)bGy7?-5c<uyzCsi)T?;i69(7oO$8rt?fl3&?7L!sz#s*
ziAL~I$rKHj9;joAFeYdT+7UQH=sI(VOLWCL#`ZiRiHvJfNQ2&qR0Q=Re3c2iBB&q1
zy%9`^;Q0vdljJpu;DHDlWKw>A1Pz7%;`teD%yNt1kq91*plJjTM(}V1-6J@at2B$C
zWdyAvXfD?638h5@UnP8Bts{6Sg0>N~i|{Kc-6q1*)5-_aU2=M?o14|1rJYpBPag<$
zh@hi{Kx@8`PJ(H{&JlDG(p8W;-S}5LH;aU(M+7}1=oP_+!hr%wZ&B+j*oWCn@XILO
zFO$0_O1ggpk3}#xf^iWHh+tp@!}-TPf<X}s7GJ|6Tr&;cmQ;p_m1HOzt)zDIhyZiP
z*q?}CWCWu`VT1(E1oTQMqa%1qgq@Z2m<XPX@Ds+*asduh(oaj`$4BsN1kXg!LxL?n
z!#$A>QjLK>$Cj2*nCurKcrk*h5lmz4><zsX!D|t`F8t*PUJ)`;@KwPVtH-JK2HQ^s
z<(-N_BF&p(eTz8~^0we)LAp+f;1kj0|NQ9@%#C1P#Q!##5y4C$vm#hKI`vKj@3L!D
zR%S==%RY~iIjmW`)1+z&aejo4Vfns(jQF1q3j}|Npk_OBp~x3SusDKJx&E5Yk_g@x
z;nE0}MX)@A4<h(dBp)(WLOzS&;|Nwnuv)BtR#R3+K>Q?vRYJ&{2Lr@U#meI(1t&Y!
zu=x$}4;HNzkDo{Ig^*7=`%5ZcMX)Y{^&+A5y9mA({!K>mEjz+l|4<Um_afZD9xCU6
z)}Qd0{*5B6`mnhvf}bKFq1h~CON2L3cv~abCS<$d&w{@Q?hvHTuR?YTvPgfAU^i<)
z<t5eF6T#jHY!!}*eG&W-!MO;|NBlqM`y+h%$0vVAa3F$%Y;qC&9l?<Z4n@#^a=;1a
z()F<Dko@?Dc{IcSiQt&<r<F9FXpXZBn7;l=w$%tuXEe_WIU@lUXfosr5nPO*nu_Ww
zE=6!Tf+8x4s<;xtztmTet>S6~*VxA?85X=A!GF?PJ_#sYYbd7&1^6I48wS6jZZg+}
z0=FW3ut3TG$6@w!R1{JXR6*r{3LfXlRq<_(vZb4OBW<p)s@&b%yiG-66(kISSWHE6
z6%|xKMF|zRt0<%5P8Bt)DtD;hI$$X(=O`srbgZiI<$6j=i+qZbE~{eum{fVyZ?5Hp
zckX6VQvL4$y;M|DNktVERaH#h<0qJ=vWlHNm9yLD;k_PlRtLX1)ld;qp{Te^LaWJ0
zRoo-ImWtX!*m(G9d7_F^N34$zHP2U7*c!tsG!;=5-M2UqK~=@iolRPG6^05+^&hq8
z7kaq?CLakV((sF(i-3$erovUxMMYN?aTT752UPIW`-j(p2^A?7^;9HP<go;Dl!NWf
zx*0-ieHHggV%7``axL;c6%AN8lvGh}9u71Vr$!lTfsoi(MH3YtD(R*wI;jZnbski~
z<ES*vgfwR&?~b-m(Ne6fRJ0cIkcti&%{D^Xs%V#yv=_odjvX_Sd?A!Gn`srhf6ni$
zqBl2|9QL}Ycv!_U70X#-Dtf4RLB)$IdaCH9Vz`ROsi~rmiUBGHs_3htpNjq}9#ip%
ziqa1%kFw2N_je9_aV7Lv<3#Q}CvhP(?nXA(B9FAq9i(EgC=65mjRZp&%astf8x2))
z^k<KT$~4n|cb-r&Ld94W<5Y}PF-ih|QuP;SN2?f=lQo9z^HKi<!FO+&^zsxNYGZ|l
z)~8iG!`zAF@Hvl8<5f`SM<xBN%Gm~gFZ~1+f0Zuuyd;KRD0xZ6%PMB5n5p6w6%$oV
zQt>tua3h-vuc~-W0;I3kRjj+S!W$~yRPh#bbkpMo2_g++nXF=pL^n;vR23`-W?X&6
zB<Vlb*>cXCu42o4hhZ|cvs5flu~5Z3D&AEwTg4m|^HpqYsxYXzD(0zR7O45=d2j6R
zzAq;AJ=NcmaeSV$NX23{wnxqPSrI*hOH{BV|7onS09nFI#fkAYAD8-oMcu}qGhE3w
z#u)RIvnN9zsUUtVxI#tyJF{qArTVj2JLWlyUoO8|#b+ueXn0=38Wn3*6wy#r!{^MG
zii;eqRD7x8D;2-9A+cCgtY?>JM^o{&ieJZ?2bA=8LcZacBZR`1W6keXY*6t-MzWFh
zqH=a3O+$rEDt;2D&Eji|@HW@7w`TOW38@}V@9&oSg`)@im+&1bDEXCH*y)k{CS(^2
zC!Drx<$BMUdsOUIaZ<%8jwCyreJn2KYpnSPJ&NQ{6^B^n!Vd@@WK$7B{rz9%|1JDz
zMsh^ReGhaxmXVzQ)q5_SJ}$wYP%-NlkKxZ5YnB+0IxP*DZTJk!T*W!Do>y@}$gFUB
zbvRAs6$4Y3IryvCnynPl{GX(MRoqZ<lfMEgt}(OiwCgJVQ~7C=Ca+Z`NFDx;oD8RL
zsR(Gur7sQH8YtluN=}B*I<<8D4Kv+ol@!jxab_&2;WiD0HGjb2fWR4VPMQ_dP+Y_P
z8X9USq2YE7rUpy%_wU`Ip_GQwn!i=Aq)1wpuTVzAof>LusH35*hH@IJXsD{;y_Za8
zmV1!OYyP%`3Yy=4Ay`qcl3-=QsaO0_qMC;4n!mY`Jm=qR`mG_ZcL~-Myj#OPLTU+8
z^U6h!;cGXtLlO}=A9^Q-HAIA{8M!7TszJ|43?U6~WZRm*smaw4*WhT#iKM5T55<_Z
zPaJYjLqbD64fQo7CEhBLbX^TR`;({nyRAr4%y=YC6L>Je{Z994xKBd^4Y5d?R_^2C
z<}Tvl^Pxr>9?;NNLq83TH8j!CLPJaTvV)<fg3TDFhO<o+N`AkVQ=@cNa}8q-hVH+b
z-AY4i4G(MRuHhjKZ8UUaO>OhqYG|jStMK+3`nOPMDDRNr9fjlzb`nerb{6cyG(^($
z@_lX|eLWiS_tf>!Fg}v*rJ=Wwo|?bWkrGx=A4%uYHO`zz%<63tk7#&Q!;>1GVrVR%
zmdX<vMo2+Drt!aSdVq$3LdXYc7@Xllgbd{>fRN!C`QsWc_BW}V8c=>D^DaU0M{1OY
z(HcIw7+Muc6Mu@N*#O3B7{?Tf&eLq1k@PbfSmsRau2L14T5e#Y+Ory-V@sartXbgi
zy?H^yiyFSw@STR2G`y@~0W+xK6%7+LOwlk^!>bxz)9{vtNg7_)@P>vrHC&IR4-PVm
zu5x+|3RIq@(aK)-wuVY0-N_oX;jTU;KnaO4I517abPaPf%+)YM10}OGyu*0ML}zN)
zIi@_xj=_O<MKW8wm%o}*T=k=1IP)~jXIIitLrpV48pc8|3kL@lX;`dbm4;6=EMc!{
zmivK*4>i26VJRE)h9JE&kYyT(%QdVU?vi|@;bRReG^~`kT-8rJLu0~7Xbz8XKh?0B
z^{Zj6hR-C;42t=sE6L}Q)b)a2X!ugYR~ils4jh<Lc%29t8snn!*BZXjF!}v_2CmEx
zQt~|$reU{+JsN&sOIFjHHEiKXA|5wt*reen;RR(&FD#9%8kUW4cWC%k!!~i<F8H&C
zU)Uao`f(Mcf2YWQ)38gD#5Dgd5+<)83ryQy4f`}4*T5+L(6FBkM#JA4{-hTvlfPJE
z;)_u;WCp^l9TG`zDJ}|+X!w3`;FyM^A|IiqsYA_wq_j&{4W1DBNe!ojP(okzhXl^D
zrr5g;G&A^804}f>>u96nqJ~Qvo{i$UC@yQbq9GMUy(s?GaFtaMg&D;)wmr6C?uCou
zKMglHbVpGnikq7M@t74wb`-aS(^?@|At#DAhnR(;2u2YQo-4@ZEy{0;Vo6uCS7oK`
z+3c^on&d^JC>8}j4Jt=bJPHa+L~%RQ)74kLBZ`tDEFA@{bS)*wxTru=Ml|n?qO1@~
z%0*FLc!i7vQB=(EN<tV8W2_?aR*j;Xkm`ap1nGL0keY&b3*IAGOR%<Jy**wi3Pm`R
z6pkVig&Kv%WOp-l^2$ofGfp%LX1{hff64Dvr08TtVMpPy<adWU7OQaSPB>8<eApb@
z-Hb)yM*V+8T!xEB`2?r3@OmykIucPNqsS94b))E?t8jPXD{A`LB3boC*e;6pLhg;?
zK2c~8#r;t<jG_^fl#|6p!v~^h9K}NnKZ+)z%<nj+fu^Zg9~5jBMROsPw}_&p@K%DY
zGx7y$x~*`|7@WVB%TF!tuIwNZCh3_dI!2KnMW-nEfzu_5u2H0!k|J51qj;~4f7Qm8
zfYL3Bhok5bMNjeAoxZC2tCmfVI}ET_6uqMu5yi+T!uy>*Q4EUupMm6kMba;dM}#~o
zNO^xDk3}&+$Us5fBSELg+0fu9hD5<_oI?dkhD9-4_~U|4WaN3%f}^5*F;n5^6~84}
z4x^(O!$ek5o)jc`DvGhf#|b_y$PX?$jVG7wqr?eOJRil`D9%OkLKH7X@qH8<qIfBa
zm!nu3#j+?~iDF_DGoqLo#j8=g7R96}-e$@F9e6#8x1y-Tb=xY+8|+FF3puAsm^K#U
z<S3>@{ZGqjQCvI|ni}<IZ2U=&GKEN{OG@4=>@WMyisGFp7DTZyig%-!&5DSk?X8?S
zQOu2EUKH~s92N@;xo-Dh!JG`^dZL>0@mBxe+M*~HGnPQs`|QY3f8uEDpdgo<>1FA5
zhoAOpFt9v|52E-gigi(Z7{y0Xd=|wThTJ{)aTF_~SQW(zNfmGQxO<C#Ny{fud>X}S
zR_<*926BFn$GB*!oXO^i;I&bF5yh8L>?o4;Imdx^CckqF?i-<mS8%N7m=MKxEVK!!
zM3Jm-qWG4*GAE0g$?XnH>Dx9YZ=|8?4-)UsOnDSPMzJx9O;P+L!fk?^qu45KjInPK
z2`lvMYe5zWCEG>P;_=`Pwv#AMiFIcbF_}F$DAwPi*u^RkzB}sAH4U!n``r`8UJ;V-
zi{cOA`vw0LJRsQjntzW9&0k_Y6vbgF@V~`+B<k;@J}P)j@E^hBf+qw|3Q~>R4^E4(
zGlC40#dSW43sF?i0o`w+7o)h!K|YF0qH~!;SwOiWxawB+zpS{;4rd#vc|D3d#mn>6
zmH(o+!Jhz*{841-C@u2*JzlnuqPpKnb94ms|4qK-ioB3uP{(aT3JVqyWcZATSWK+N
zb(GNkW=zTLI_?l*Nx@Qr1$V+QmNKIDjhZei@^U)L>zGzqp~9Wlb2&m*)KN)?rNh=y
zSw|HewRP0dQB_AZ9e3%dse{d<x{ew;dY{Q=JEWDp>2pp@>9|M2uciC5E`HbE9pWDE
z&Vz$YTS$i@ks3O}qNeK5bVMZkz0QVMZd8kkjxGuu{YEbEZ;YWab#QKn!?L3zrsIAc
z4RyFW;yUW-sISA*k<h_S@^y88HwZJ!0XC`oJv~qNx2aF8lwxN|>8RMj<gm#w@74KS
ztkOWoeG*-AtKYd;q4e8`b)ln~j^;WV>;BJ2QymZLXrg1}R)>ZmP_6zxk8^ID4+mQ4
zXenvnzIV!3mxp>LyOpG*wT>RI=6~PbY^$T4jvG2|>S(W{17p{*f@P&6U&kyR@95~H
zBdy~}9Z%`#tfPyL;W{4I(N#w`9RqX>)G;QM`>>8jrQCS6PIsxn9y)poVQuyj(p#{P
zU|+$0f{zGZFPzn1lE;DQF{Yua!a^Iwh;jlPJcsBQEEU1h_)|>}WxZEbhUt9yMIoW`
z6D(34ONIqUiCRGe8!1WRa5q|qQ7FIw$FKma`vdP-9piMot>fzRsmF!|pVl!^$E&(O
z3;K+X@lp}b3O*+|L6EicypR_JUle>v@MXbQq-v<f*~`~-yrJVwk-V;h*IuzU-_r3y
zu0Qxs%CyOXU+~E~c5HQ~=$I;Lo~C2Ejv2yNZ}Tg6rj!XUBVsOSeOJe99ZPk*RyZ(6
z$6U$vA|3N|%-6Ay)o~`|T+1cWyeHNL^b+^)IHJjl2l>0dm?ft3Ng9RbeI2cHmEzl+
zWxBtKXt|CLggkw~`A`Uj9|@^iF11p}DjgejY|`<GME#B6r#e>a_)Nzd9bf5Kr(>;-
z&vpOqCLZzNm4*i&GY_;gzmQ(=rH*fqVt3f?bZT}c#J^ALb$rb#C{lrEXSxn{zt!=b
zj_=vd)8+<tH{BmR$%!9d%>GfV41w04bZpkKN5@_rTXbyIar;nz(A%bCyN+LV?9}nI
z4jvxaq2t0&4#_V%PIos+c6K)-H*<c|v5VtL50lp4b?l~>?&fthUH@QSe(t@UhPkxv
z)A5Ine<i03d_R+_<8K{*>Nud|pveEyafqc|(H|w)GWiq6#=us3M8{Dbrx>Y@V><p3
z<&!#&3pv3aS4|nQ!~df~!keZF8t@q@sGKv|jc(=8>8y@(?AJxISZL>&5plgJNXaE3
zmj$l~7EDcF)p1Qnku%xXC9eN;j5^^DEakQIEs@-5_&+6Cg4qUg3<M118YnFiIu#O9
zN-${PHp6dSlou9B5d%eq6ca2iSVHi2L2BM1q@;lfZTxzn`Q>nc_iL3g@TB~OC~Kgc
zf$|0_7zi7P7=VF_25K0%%RnUql@0$d0dvHhRxwb`Ky}0aD_B)RrW55w|MvSh|0vcp
z{2%UG25K9)TNL<@^d7?>AN)Vw20{$Y_}}mTe}OEHD*3l^KE3GQHl`ZT4CEQ8Yaq&S
z3^>#@U>N?WYZ|Z&Ts)o4E^Hf^WqBOKEiKIxNeqPET?3whghU!Q{PCo${Ej3I{|Axj
z<ex4M*C_+_3_M`?SMAkjTsg{p1{$zz+nM(={4=3;!N4QOobffh`wcWSaJ`+`$iTas
z9gbJqr3*AR&_uj9Wimv<pxDux8)#wRl!4O*S{i6&;3Weu8)$8SyFi~b@RX2;473r_
zR<NC5dqJvo5Yo{=zK~7^(n2~Lc!aetyo-UZ2D%A<*g#JMy@Yoc>>(H~r&Sp4^)}E~
ztmJ(%gt7EvU6<2H`ipRofx!kI6FxwYP6G`T1U1CKPy?ef@?i#^5I$V+aY2SpFC&DH
zG(bZu=Pik&4UEaiDH&_{+n%2>Fy8R@mX9;=v`E$s3fvs(RzKrBYv2U~|FjG~$3|=T
z*SZ#5;`+RB^N{x<Ti_XorlpqVEa)o+UNi8zfr$oQv2wZZ_f-QQl*;0M;5Q7sY2a%E
z-xzqyz$DhAf!PM$HZa-1I|e#84^A;~t8~_M12YW&G~!glpJ|`QxMYr<PB~?=X0oE$
zJ<Ir<I-mD3IW51hwZfU$IR@q$m}h{OCvdiKzJd1`^6t=j0}Bj)TcZ}uU20&V;h$+*
zB)Hi4-zytS4F9f`_XT;&$1?G_oQbExd*+7*J~ps|g~P=2{)&12Efy;c+!&wtse#o7
zRtcx|69ePsnk(1mea7mpt$Zc8Mv&IE20qX5FNAz4IOaqDo!@oBdur)GAZzy`=Uc<y
zH~xcx9}WNL<#z_Yr+K0L1_ML(Iis~SkqVr|-e_Qxfu9U)Hn7jY9|pD<*lOT6Cf>j{
zj$=o>?FN1}P-I-{g*VD`b>kPqUu4-SxPxPe5K6cR#RIBbE-89Bm-xH*CE0EGYfpO&
z?4@L$6S<T_+;8Ad1AiGfWZ(b?t4ldty;`-y<J!tW13drE>#7cm$D=HN1AnuW8Yhkj
zj-Kam&Fdcn$C=vs&Ph>w>h(M>`kXL8<hmGRq|+G|dj;iR_Sx$plCuWRiG=*TfeXSf
zW+az{TsCkeBYBj&Rw^i04P4^@V&Ff<&Q5Bgx9NY2-87J8BHP3*4wCXI+U0s~j){PY
zvL?!z$Td;O#O)^TFcCCyn~CBk&MeJ)RZAB(!M(3VP0n_viwJTbY?qaJ#dx6Ry}UC^
z@`xqqaYbI;n_fv1r9{7s>2I1XnO&%~$%)f6d5hBNJH=_=f;<LT-b4ix9YqZ$Dw?Rm
z7l2JnU7lA-u(FBAKFXuD{`*m4H4)Y{akq);!YQm_;;sxoRVsatiCQL_m}qLEHqR5A
zxKCU|CKMAEZ{si#7KxVe6%nGE*tpP-D=Jpqgki$W==`_RccOwLlDG-aL`=Aw(fLM8
zCxqvjsB3a!Go3U!jhUv$l*sFw*zleoPCc<+*3y-h<lQU0aMV|8VB&rg4NWu>AtjAX
zJRtn|V&5Y(NPJKvyjg^trWv2jjHa8LXd#l8894)QZQ>ylZ8DN}LfT5cn6~y}?I1{H
z29<B}@GH_xc2=RoH*#5JolO*NW^SF8*TqCv;oSr&d{{_#!5)G=P0o6y>D0$WUlUK7
zc*;aS6OWh}V)_FVch@{>`hPzLGR@~g{aL?4$Oo8sWr2T;eZp~Xkcq)2e6my{4ka(9
z3=`xVq2!MXk~|@Vcgc(tGAbh<Eo2O9|3WU+#+n#s;$0K7dH&19GbUbUbSB1|c-Hh+
zRbDjlet&;8>N$Ee@x1xJ_2L(VR9WlaRKR7{mqeMoc~*sq><A`inEr6_n&5Q7*G;@(
z;!V?EX`N#F7u>yNVv;z$Ex4w!GMV8t_SbMbu--*ynqaxb`P64h7$(h3(VxYl6Vjla
zzfwHM#9R~0Oe{As&%}HabKVSc2s-++H%Ug4_t@P;f1!y*EXm!@V&=}oQWHx|f2G@M
zqV&I`!ojBguroO7uXlgIj2!m*jxOJ3u79+@ZXoMp6D#P;!cq$>P5(FLd$wK^t4w@i
z;!}}O__>MI!avJM)-XLal(l00FP!^@kS_(l5?sgOWqSGbCcb7LG5xc0+(h@S_#*kv
z1aZQcAWtp*VB$yCtc6h)HgcHaks`}KKC{WhPbM~-*ur7TLSYMAO>E=fM%UTSb`w9F
zxFY($2>xZ_5XV5_zna)-;y2+`-X~<2;O~OF1@{Q<HL<TxkZLr4h-ANsKZQ_oz{J4}
ze>#$TIKxkw_*?i9!J~r51pg5{E_g!lq+s-v#{f?YKO=Znkiv5&&I`XFcv0|@;AKJT
zY-;Zx;QCjrR|T(`xGv;B!5e}%1#bybKTC?MU*BMkkbofNxfTiu4+`?27KKGJu0<_w
zj`Afm#Y9+Ku!P|4mfuwF5FL_I7D`(vW8qG^E_NOvS}14XUJLhGC~u*Hg|LN)<&O!l
zP}M>;3l%L?vQXLb|3Xha?i8Dysv?|L&JR?#P{YDK7HV1Gwbl0wG4Hbc!#gB3E!5fO
z+-+fPFO#G;tripuoU{*F;3*rL=H2~Il9xGPb~h^&OQ{w#3x);L@=wa}3o&Z>S1afi
zel3<F>ATsnEZCO+HOlWG$3o0P!a~x*d+(%N3vtU|IG~}`6V4TrZ@c)*2YD7!mcO{L
z@bO?>3zYBeYSLOyg!M(4)&>?gO`!wRX`!KoKGED}7MfdVWZ?k|+_2QxLKBIO>kA8_
z={8->rsDTO35V7emj8{`%0g=kJ<AkoY59AZ-ky_s$U++ncePEmx6oE}+FAZ-8ix68
zHHAB`$a(UJ7i{KR=wzV>y<13I=xpI(R$_JEsf!dH7dyJL<d0b0EO1*C36ZYdS!>Uv
z_$f{0UaaoQ3M-{Ib77&cg?G<p^ZErAct6WOszWlbXzEc5{VhCZ`6rSFSQsdT2ayI@
z7%VMe1SLW^bu-MuQ0AhmX`Rhx9{;_bJKVzKk{AAsdBXDl%)Hmb{JDxUYk)agn%M*k
z&s!K{;YqPRCHS=9SPSEXtdFMIAfFLFUhrAL=LG3=ZzT5x3olxD$MXM_zGUHL3sWpi
zwfKi06Imt}-n9Hp$hEHKylUY!3-fZ7yrjYnrLS8k@m7%hYVoYMEWB-DvV}<&F3OH&
zZfzwgGcrItKO(@<avGal4P}Of>6U-tNsVK^@V8UWOpBkKzSGfYF7aJS$!x(nf^#kW
zvfG;{jdMO*h=m0f7Fw7ln=ltySZra5lq9pTHOHS3<&=B4hC=Hy3(GBxbTG=n2NphL
zCvtK(S@_7p$I^?x7F@yJBxI!^JM}6dpIG=*$ZEmQ1lI`eh^GCY2H{@_()y)^uQGg{
zh4sQ`UCg1=H^RToxPE8hd*K@dC!cnHU;&<XeiYnjp<dwttv^}VY+(y4<z%Rpjn+1{
zTG(b`I~za892<Aq_{G8w3&$;-V0UKAxA2FB{T6<+u*<@34i22AleV->W_meMHa<7-
zd?#~{g}oN`S>XR6USM)$mA}IEr-cI+4qNz}CYnBI`5*FsvB3oVImts7IETy`0OFKx
z<`K5QfbtJV73oLEq!w8IoKIu#%XvI_(!wbV*DPGOaN5Ed3zsciv2fPHIq`CleP7ac
zfrCt2lii2M2H6F6P072&9@NI)jY%9fCGTGgS1r_hA;sOE?DY(v<Ufl~+n}h8Vm5AC
zxMd;71`k?atgd9)$hQ5_l?MjdZ4dYKr@nJ-6tek1gY(RuRFFlt&FQx%RanSvHm)2F
z6iABLpqv9^+3sd>8@JoI!v=W?+duF~LgZG`k~T`&{yx$yJxyzA8!g-T^0GF{*@)Zl
zY?QZA!Nxr{YT3NQ0TpdjwNcFmN2E$N96epd_J0>D(@9T1cg!C>YRpT0-_akytJ|ny
zV{LDL2)fHgO&fRHc&Uf)RDc{4YTKw|BVt3f5wbx^EhRV1qvpbCZK0<*UacCF(riR+
zST<}MoUznxm^NP7<IxzlzZ_h^t5#9E?+NkLdd!AD^z8{Xc`o0TMDjKpPDUkcByBXZ
z@qmpy8+C2mYvVo}DI4`{)VIO$zxM&>v+n-v=;gx!?r|N_(VsJHz>*&rXlUbp+g}vu
zJvT*U+7_M79@y4wY@?aYzpox8O>DFnU^cb!pb&CSpEkF_(XRyy*#;+F8zOb~*Az4I
zkc~FB|AK($psmdv<0$W-f`j%pI#AQbUp6}0$ftK3@6hZHb+XafMi=4f0?9{CR~y}I
z47M@E#=|zc+vsoOF&jNtH3;%v6ngAwvuh|cy=-0;>+?PtNnf^^41dJNqrxB6)6^NS
zrw7;=X!9gE-qq8i4*OS&@Lkj{{qv``N)2V<+jzmoi#CSac$_V#eENAN<5Tkq!LfoP
z1V`E!C1kW9b;byJQt&AoTK{|s$BFgnjLtJQ#tVN|@HxQ=8Q1Fd6yB+_R!_fV<7GAp
zHu%b^?Rq*?UpcQS(eZf`ZM<sZH5+}Gq$V>L&CJ(@)B1*uH-*0?I4L84+r~4CQdFSw
z6dO~;*EB&&rVE)NIFn6F67a5#**13A_|?YFtiT)_b8XCHdTvj7MGMWhv9hGH%*Jw7
z>qF*yw*UI)0vii$EV8kfJ+4OT+LqM&HkR1fUfh3%n+h~bS&t=BBp=xL(8d~eC>tNK
z1={$OeWa+ur=nNbAg&TzDcJvZ<rCY#TA6a*Mzz}ZUzh$&kmPhc#b>oYw|V`Je{Iee
zHolZr^p%YtZ2TyEosIQEzP9lVM+xC<Lf_l??*DoD)P@ZIM^A6e@U22N+4w0V*=%Er
z@Kx3Q2YG3>iFLc+&m6%rnpMNfPWD_I`#4zH*u^o>_8)J3b-u~_aCY0+!yan;$C+7-
z{~qu<AN212Ja2o$)P4zp@&h*hwEZii%dSrGR!OQcx<hPu?*@xHDCY2WZ}1k%zik|`
zag@EUuyRoXJjSutNdLoHtD_vxr00Z?lQvEXIc?*Nkh6m41<wgqs-s*G!ssd+=}R^)
zvy&E8u5fI(af{Vq<Eo8oHm-C0<WJ!;hc7Bpf#yHaoU=ORb2r5+m$Mwdrw1I6XFJFd
zLe7i0DbICKNECvCw+R*&EFwsqedF?qJ1F6xw1YB^f5+_Y4(@PJ(gAPdq*bkvDtx<A
z$^ntao@d_apsd5YYJ=q*d{!d$WUCY(dgf)+5B14sfN)UJ@kgqdgGvr6J1`uW4yrh)
z>LBDmaX5RXagRMsH3!ul)ZisO4r)3${Y-AD`caPjcRQ%%_&*u<2)?k--z`(y@ptBv
z)Dhv)VmbW7(AmljJNRXCkgxMZI3ykosSY$DQ9(*{2Ys{s=X)#(fq^&<YzOKcIgBo%
z=M)&G*>w<?#J6deqBY?l>G0na>N;q{f!9IG@n1t|=%A5<dJgJ4xR+(lvKkrSoI?Zp
z-5=r~ypl)#D;)1<D>@&tjPwH%Z&L>kvTXnH8av?8{w56kYED5pG;`3>K`W6r7v&a$
z1q!W&KP0ZyFA%nKaN?-PzkfaXE8w7mgN_dJ9X#xyyMs=Q%Sd;2(8WO?Bb^o;{*u|%
z0kNBd<wkm}k)F&J_(neYk4D<oat|Bn9un+-M!J`S-t@(ybMS<N5o}BI%zmuLd1imd
zzq#uX!AA?QeePop1~~pq@<7M$cY_=hS!~iuK3F6}1cwR^6C5u1xL{790E=#PA^&cC
z?p+-1V2p#eVwe=elTxY^96ayfDdz5|Lo?RFgqFc^Vtrch88)-i&UnFR1)mc+g)caG
z(ZSaazH#u9gO?eygGmlvar`fWR~@`2WFnhr6@O8c!q-Lerr;aw4rfFBC$_tjX+LJZ
z?O-yykAru`b&7)-Lg;I%gJ~>tdFf!fgV!H6$!9wLU$t2rRraR%hk+k-vmMNF@S)>>
zbj)Sraj=w<8p?bJ-2bphLVHg*tqUA1%<vI^I*T1F5ry{!^+Ey0OI*f^n31=fg_-3y
z#Shp%XFFxg^hZ*9A3Ip#V5Ngq4!(5om4i=M4zH)U^L({~Pnp8|Q#32O<=4DV`OLu@
z_Q(4anzf9Yh54cLg<vf+P2re*&N|1xZ-L)9>m5#Yrq6G5x|->49egK!^9Kjt3)vu8
zGT?u(6yT2zHaghk;3o&M7~GiO%{MzZ;@~Jp1_xUmY;&;P!JiHeIQW_6oKxW!2RkIF
z;zhE!kov3e{SJ0I_{~ArF6J(gko+#zQG?yx{2&_a?s2eJ2>Ct-e+cJaGFqo}^H+Nh
zvKAa1VpnCZt0)`4_Ju31{qGzc`QH*UcLpAF@DIny7%xD^ads02MPn!y!$}9H99(hm
zFGnzr6*&sMUv_YYBaF-^oE36T@VtWy8Tmyamjt=aOOG3mJDi=kDlz87aLw^&1Fj2_
z{3qlF>s`n#!K|3ClP$<|g5&`y(p*8NzfcUp48KiC;TVc!Bz)becnl@PS~7;)h1?PI
z_apU{=aZ<wKuX2@F2KNfJn+sK%EoYa4EMxPxoB27@p4xT<zuK217bMZ*5vMy8bT@x
zR-&emDuPu7sa8!$bwPf)Frt13{H9Vf_P^7DwPL6pL!e*Kkyy$UuTUq3Pz*{8;h4Ws
zkWWNK3KD-dWJw}bK`n-;5M7XoH)1e_^FxVN8aoC~hLAA)VL3`X1}}y_G4zcg5koSD
zbPSzi$cv#a<BFlNM3gE(IX+e|hWcW?SCA>cPe=p7`(tRBkv9@DcSx{_kWMjl$SdD8
zh6iJ4meFY=q`6>=7+MNxCD>Y!;Xjlq8S=I<v=e#zjB5uW9b?GPNNybF6*F0!RofU0
zbcx~N7`n&sSt)dlai%@pjrGVKjFpuhqTe%yUQEv!e=UA#A-^ID4{>|P&~dxNHS~Tl
zJQBkTF}%pe7DN9So{3?643CN55ezVf0Wl1W`J0XDmwPz|u|*9v2gfi($WTE_hQ%;k
z_~U|42=be#VEe}?$s=PNEg_GQw*92wQ-W-VV`CVX;ZMiVqjVt(KL`e%jbTCzC%C;<
z{IXFEJK}$DKF?g&@Yu!3Uy9+C7$(N>atv#3<_sU~Z>o7UhSy?vU3^iE&7S2(<u^n^
z@@5RTa{T?AZ^tk>hVNt85W|!hrpEl~pwDBN7Q^%ymc_6<h8Zz`Y@Z#&93eAfm?h-b
z>Fzr*5Z@K_$A31V+$_#7EsSAa4D&^8d+{uq_k=GH++U*5q8P5qLGr~cVG+{%`$Coq
zepNi{gBU&({%H&!#qe<qD`Qv{!wN~{F*zc=W=9^Uwpt{W(KFmnL{7pJ)2mrTF=Q7~
zn4UE;@X-2NLC%Jee<7M*#_(0lKe7JJhycyH7}krGXVt%s;TyUp6q;{i_%6dIo9Q27
z_%VhnG5j0D#uzrmurG!`V)!YB%`yBI!!9X=Eir71VS5Z)B@633<%e9QVFW)j84~+0
zIs4CC?_lZ0xHyug*(roVn%`sC%~C3!#Tu!Xo3%&6*(>;)_}w4FpD~<{;fx3m#Bex<
zzl9$p3OOWLpwBRmaCDN`$v-{g9E;%}j{l-_Qjqc!EIKnyLUT%lw4ROO9Lu42)&<sV
zu5vyGPB4<Nc&T<VhD+kgJYLR(!^;h>a@ddI4i_a|T#w<u7;;<$T-=D^CVQM5!)NX`
zndw_GWVtxDFO}_rHwLg$3YYND^5?pKgDmW#h>$`qg05d>G`9)4SUjt!IF%6OdHiB7
zio5>7d>WpYr{?W0_M7Q5X1bJ%(k?2vfQvG&f6D&;5?SS4-09-vh(K8v4Q9CITolZg
zCQ4+{Fm_rix@cA+tBQ+C;>roq%0jZNG}|E+s=K@%2e&RF>k{sAQPV|wB05jR-7fBN
zF}@R??Sxt`YP+c15>;BFj*F0skLzMZT_`TXG;u^|T&OM%yZGCM<|69ibr)~A&|MfV
zy13}-!gOJ|xX<<Psk2=;Oo@xSE@CcR7fBbqsVwgLdrLgQ(w2XD8iffaM)<A@3RkjH
z;#$u|eHWCBp6=hscU*31yH^5nt#kty_q%B5qLC;!VH8%H|L%Cx;{z@lv)rb+4W_xo
znj-^Enc9iwgDfi-&0T-exP^;0F4~H`rHfWBT8q4im3~Obx=KN+wG-Y^kk<AtItc%1
zhI{L_K)&!!8P~Ln&Mr6+y>NzG^t98>#ltQ}x)|l6JL}X%Ul;vc|5CnTy%Ig8lvq%`
zg!FdN#|0<by7fvBA93-hi=iyuh<_nrf7gG(YJiK!gpiMq<PH=*NN{jQK14`oD?QA`
z@*(c<0=e)f1SuRL<oej)Xeqk!f@54f>EbCDV_iJ$`Zsfyb-Zz`^rHb1nt@iD!e_+k
z^yuKTE}j!U!NsgG!Iy<U@8Sg)FS;l<C_v?xMA*HRLe4b5B8i#k;#DE96{Ky5yX5KM
zn=amRvChSM7n3ACD_PMl-gYtB#mXmxQ(R1SG0pXtJD;APVrbLF`#UaX2$`7)ZI%#g
znjho4E@r!!Ba*o;7G!khxtQ<bJ+ano<u9I27#Cc~dSnM_6<o~naq)qRB`)3<ou%xF
zg940tnOHkH9=&|Xbc*$3!6mW?%Ys@V)_Jk=)cM54r!LmGSnFc7i_h4Rr@3s&Y?jSO
z1lYDGPIo_-CjEtrFF9^p&7~6)|CNgsS97UM&JOami*H;Ul#=<@#dj_?y4WPv?*)Gl
z+~A_1oBYTw9L^<YAV0a-EUpJQ$Uxb`(V&9zn~SX+?&hVo36g9V^0VMCE_P((zq;6&
z;cpFd>35fl-zAXUF7~+C%dRxk{d1W6hY0rxzO^&8pLrkVGLL_XgoK^_<eTOHlEjc7
zlJt-qadDL6XWSndj<L<Sxa8ups2!KyaZ30Jc4{F7*B+jBamK}27w24@7kRUVDRwR*
zd(Z?ceSv<rco$v&F*uSdF8+0qC9zy}agCW0U)LF9htz+<$Dj0ebx2X4DY+?fZc)3%
z!f(X&rgXOW%@L$RKuB&Jg@o{l6AEvOqi`HW;wTzN`8X<wQ!&AkaTFIqwGu*ZkK>NG
zKOAwySb54RCBo8ilo8>balZ874_syAKGKw<f|Vv=2#BM)=vNe^q*5G}g;$Al!6;2r
zHI8Z-?k-H#h~us}YQ}MQ9JS)89Y;Z~@5zMl)sX<hsUy}<9C==lRwd&~s~U$EN3SG$
zClQT9kK>^P+9Y7aVa74f!+g*G#J1vSA4i8c>^Ph_VsW@}G>@Z29C1cE)%D^?#PKAH
zeX7gV{A3(;<47?^aixUvdU4c`<K8&#i=&BXJ~G6myn*O6i=$nK)ctW#*if*M-~)n<
z1)B&q6?{<eR*PUkAoSZ(!eM|9#nCE`)?#Jy=)}uo+hknZQX-sp#!|Us9QmwA4<$Tw
ziX$Dz<~X**(K(JTthG26$I&&8ZgC8c<MB8ij-z`VedFjCM~^sq#?d>DBUYMgNjt4{
zuQ<4}OvC@xed1hiO4EEiC-q1ikH#@DjzJ_`w~Avx+<!ITF~R$~m^#;m&x9x$9LJD2
zHuN-yiKaO)NIo>~uV|BSzclfQI7Y<rR2*aD7#YX4@u^sw)RS?Hiet3+9TWF=0&pRz
zP;Y-HKs7tvzhVBkIG&DUK^zO&V0xSU_x?;A<KuWXj_2ZdJC4b5e|!7{R!|pnVjRzl
zm68{PyeRlm94`xbCF9zpS1@I#UuAXM>DL5bkK+v?ZwgZWmXJw;44gTg634re!KrcV
zI_69hB$*z^4B;~cXJzE?2<d32>36nxoD;`fA@c+&pC8A28UE^m;GP*l7TV38ez`4)
z<9$|59N)#UG>&C)d=bZ&aV(GH1D2tk{)m;BEPv(BRL3cKAI8Djr10Z7R!B+48|JT!
zW0eHX@?>0}2>(=YwcuxhYXsNE@wt$N)%`OFU&XObitFn*!i55qFp%|euwk%xX}*br
z@v`>6XZ6LwH2)OG4-&%0xW6Fyqj;wdmFazxSeZxGJ0)A=*cQiyI4;JqolPZ<f8sbE
z$1id0h+}sgdnAv)#<4Sw-{L6sY>Ml=OvA1?ewPMAUQkdhguQX>lc@K{v8h^+t?Lib
z;YS=x^5lTvpK%-zg@b}j&tF0g#c?<z`J3gL;YZ^*mf=5aaZU(76USL5_?UAtj#H9-
z27Wq@+iUn|!FV*|TpZ`w^}3ksDV%(m7!Q(PisNz|x8lh1a3zj^8A5gCMjTg}wO;0b
zar`kpbxnH2bq-T)Qg7R7rk_Q`R(g}eQE!tizhSRnwuc-KK@YciaEn(6cqruIzHLsf
z=Wm`Np(Y6fFD&vRo*xnAwa;c36;5k0A<OOb?H=y%(91(_4<$X6q8AShJe2lO#zSon
zbv)cjVHfi*4>diM^-#`3c@Kdu=JC!Z7oaP6fCuu5BIIIsB@fBAsmg*RRfJUa_zs#c
zr>QQahUXU!t;~L@vZ=d0+~fI0!F1MQO3J3#1&ARJiU*s@9>N|X9yAY8$r=lXM)k14
zPLt@Kzf*-x(ez+={;VvMN3=v<;6yBSEjPxZ^APv^0gWm5Jp7fpvnau|iJVS(Lh5=*
z38|Nn*Y|L5hO<-L@1dcG<{nx|6*Thjpyv;I4|sm9HTKX%<W0rOs$q-0xYc2GH<SEM
ziU(VIXvGA3=<1=hhlf0L@X*mi8;ONp+IeW};qfje4KG1zF9A}nmQCez@b}PJ3X_tw
z2VUGn!gfex375Gm*v-Sk9(uAiWd!Ih$~~kEnN4;ms*RHic>8$h>)|O6V?Ffq@CYOI
z@C1|Lp}&U#9tP6ywcKg(;A4__?%iUQ4e~J9!w?TcJ+PfHKnBZLhDkH4D9v)X=Z^;L
zHN+7T^+*q+gs?%f`j}w)8twTb*cg#NDJ90HJI=$?9$xhDl1OgN4L-wIB*14qJn!M1
zUgkkN{hUZ9h?TLltCV^{I74{Z!z&(UdYI*5qLk`u9$xqGs_=pxN{sytiFdjP-(*P&
zp?s2%w>?bGNTvvxDmcyKe>s1&oFP_5$42#zhj;l8L~4pf#0;`A%=WnImnO-rl$t9A
z$maT<hXtO$8D^h{g&r1p*zEZiVlVcv#KTt}iuN(zXZ1n((gV*CEM-x*QkDrW_wa#-
z4?TS3;d2ic9yEVks(tK%xWdC9uazfRDOQqI9zMzNPd%&_{+ZyKjC?ISxRa(bgZe@O
z)SUD{Imob1QnFs~YtLW#`bLoCTare~cOJeMvO(|%LCSyhurb3odH5;AnXfHuU_;!k
zg4+aX-OlbK{FjVmhlgJ?e5Z%sGJKbi-#zTkNcITXD^W10KRoRB@TZ3Z9<me2N#Gzm
zyN4qlj(Rxc;V`Y)%HJNQp7uD8(R!@Qz0-ZimuGDr^YD*UC>KqRdpP0wH+y6yd_2jL
z5i9vAA*Th;csQGppA&Lkux$_jGLVbHFL}7kp8(<idiYPsRl#e5)Vwa_e#gJT;|AMI
zMt+N9;6?xTW*Xji5lHxZm`f#4T1ajJg@gnJ>2#Zr!U+@+QdF>5#<h3?C4}Fek=!Aq
zWCFcP=h1ta1nx|ru?Wj1P%eRZ0$u{;6R40todiM&Ac2YrR7;?G0{#<e2~<ho6tB$@
zYyYN7`bx5D0z3XqQpk0e8VTH$z&#1n5`~%xtZbp&Ene<hlutfmq**)RU%XTFa){Qi
ze{r0aijqK>|Lqen6IgU58A(7(pq-Oun5ra?B$|Mp03Q&4^n8dZd3&~FNfZnumVljr
zlfXbH{pq!2?zJRyN4YEU4*$nXB#=zte#UY!l$StV@i?kjAqJaD;9jxTOQ3!Nm#!ok
z{-o7Tv#ZJb5@?VBtqhGBWP&Mdm_Q>5=K%@4<)si6nk3ManM$Bp0#s|6z}vq#%|)R_
z0(bnIoZzGxa+A$@bZwPDYf)ofXl=`!CNMUEaS60fpaWw}pnn1#6Ua}Xcfy~T>Xbk_
zfo=&roIq!hjEUq@PSYjfPj+<`?E68myO5p<To32=NN`y*P1k<Y-Cp90`jiv<B+xg3
zehL38eua~!<PqWgq#}PTfx#^51O|w&fe8#sp!Rfk12vuWv!|V*2@DgbCleT+z~jP4
zCGbQ7BN7-XX*eNKGxpbI3W9_oj~2}_f;XM?Q=&;HCWAxb(+PA+BAxVy$7d24pTM&T
zJeR<P1a2m9i^<^3e*!Ng@S^ZZZ<T*3ftM4Qn!vOKUSSapHXHUa`AEk^;k3S*z-z)^
z7koqTO~JPWC$X}GOctDy!1FDF_g>1TUy|twUOI}868JcQp@Yqt3Cv4iegd<^O36Dy
z-W8lJI7e_U>+VuE72Zo=?Qf|if+PzPSSWmv;9|i!%Yt-zKcll$$g%{M3;96sL%~_1
zxq{s)fnV7wcBWP(@JRw268Is3PbCZM1y?8VSpsY5ORQf?zL+VR&qeZuU_nm5N?@H>
z=~^K9I)QIE7$)#tM*h8!|1TVB{wR_y32e;hY!dQQ0-G}u>TeakO>lcg{<Dx@ICNwr
zjCW@Ozp-sdzL>Qu3H+YG?gaKEus4CTBHx$5A3}~Lus?x66F4l^104L>_Lc?5E(_A{
zUkMx%d4aV6DgQfxBMBU3k6RWjP$vGv#xKez1WzY$lATvVqnG~=^NdK?2+xVydBF<_
zT$Io*iS@GJ|3~_-Sg#6R6TB|?pWqEaMnV0oB(gczk%XQ^P7;A6{;CqxlE{_r0Kq~@
z1e5+m#BE6wNusFm!h(-I7%V2_4ngV^PojkI+XZ)5@n<ATCQ(YPrIWZbiLyzQk&u}w
zDwIp2d=eFsU}&^bNJ3vUBo&jWltkqu*v0M=tRh%du$my9swYt+!)Kk#u9?K$N!*h}
ztt6C;ymr$6gF)pwA_)mnnUZiuCz6Dk;Vmy^Pd@3@+m$ksFq23mk(6W?>7B5WV1Kuh
zc>1@LBS;cU!WAAD^aR~yK{_#0c}X-A?{$-?xGR+stS4AMiF=c{Pk0l-21(q{WF*lj
zi3gHsEW(eM2R~dMq+gQ%N0O#VJSYkUuFY9oE1VXBEt6=KL~G&g1s@V@BiJ^Hc0wLp
z9;BhK4q_$gC?uaDi=652EQx<uuuBqMljxSjo9D9WMDx_8Z2l|jp5(f4Ru7hQBc-Qk
z(%L79zDYF5!~J>a$7YbkyGhJW;?bo4M9$<SrX<mywV%X*BnBoij^!qP2PH8w304rp
zADqMx5e^l}uq1{j@wiByC{W%Vx^yFZgz&zZRE-kr=p@D@@qavB2b2^=*Ii(D!K~y9
zD54-RD&ool%XFTZ?w;-*GRV?KP(hKPq8JdBq+lY6<eYO7L{ShCR20mh7%%_^P%!|C
zz<=xQxBoeP?z#2qReDwRx~k(~CJ{Ni`_UwZNH4RC8GNEVhv$V16&#kt@FYegF*1oK
zlNg=E(@8v)#3)uz8cScqX0m~0NK-KO8JdOuKZ)nW2&@TX$4HW~GG@k!e7qo|CeS#d
zLsPt%#1yf~Btc3h3wdOLK|YlYm*8~4i(1C~&Co1b?{L#CNxYH7>?GzSF*k{MNo-8w
zl_cgTu^@@HNvum^A*VKP^(L`2scz&glHg(*K|YtgEQ#ewtP<f0K`QgZ+QgNj-?*i^
zHMu&8H4@~lw}l^TFNr4a{4#2Nd8!RUUgms}B+TShk-Su;5>stT;*u$?UQ6P2A>^AS
zLlQP*E1Q<Yp(Nf+Vp|e#C9yrJZaICJ#EvB1PGVOQt8<BWl6W_X-Zk@jbye4Yc2b|e
z8j)v9-s8C9hf@TjmhtW+K1iz1*T2wK{Xv6&wE0Lf{5XkElK7P4@JR93f}aWQ5u|W$
z5}%jzFNEw%;>&W$S4q$_P>shoBHS<dEn6z&`*O`6k~koo-b|}k_+t`3C1Gl?H2j>z
zFG(1h`q1TJ8iBr1Lk$hTCh;3b`?pOm((ro{N0T_2#D7WkYwtgj_$!IOllU{KUYVTt
zWKl|9lRTEhi6s7!RL7I()-vwbGN!`69I-9cHxD0vQvC+>R1&A@z%`tsspMxQlPbdV
zG*l2$QIN5fG~^2}5G*X0R~Eu=Kb|FoA8(}cxf;&XaDj#k%VGm1JYNHU2~EOdcFUMc
zZj!2+`h#sX!8UCZ<TW+a($Gx9H5zJbfQCjIuFz0NLtPD*YG|OLp2lAq;SvoW*QmX*
zWjt|3>79=h@k7M?2xol_4{a$WxlF_5n))o~Isa6c{fyR7L(@Oimx|Xtt&#9!n2j|g
zG+fDAF-pTf&ljneJr9)7KKw%IRT{3=aJZ%V{N_h3V@miD*XGik>ol|wa;;#I27Z9F
z>BmN~1Y2t;(a=&uD-Dy5SK#Mx+012c8Et6NR<Wk3zpf{R^9!Yv=$d+@lZA3|9&Rcn
z;VlwdgQKY%tf!9@|8k_5H&~xNQk>D?vemlU&w3=U6!GYw!Pk(LV4xw=kP{vX@?99}
zv=!b?uy(7MlJ>%Rqo<>WP8vFE=%V2z4eK>@)%Y9{Mr(LlLpKej9FQ9B)zDo-tl?G-
zJ!pKs{Hx(c4L1q@s%5R4h1?>@*!KB(g|`&GT$t#o;WiC@G~BJ>c4nBL*Nbjn!yU}3
zAaSN3QBsh&Q^Uc+1XJC`A_@~{y<c+r-l9k{p|G!pei~k=lGk4{AHYl!g^Pz6Bdg?1
zs+_n_!$1v>X?R@2{Ti0$=RL>)Aes+oc==d`K^!FcdD*&&hc!GR@*x_Y%Fi3jZYoGT
zs^N_)DwYR}?wp^;5}(j8RO1hm@g&WXpEpdyaGI;Gs_KILyb<MXY|<*G@}m5_r^+Rx
zgnZjD{}~O>YM8EJhKA=vI8MWO4bKZ7Q?5T&$eLpnCa{4Trb=)khm(*=8n!kvXbqN<
zl(Hs^e2U=DJB?{Vn4AhTHOyl3H7wIGTf-a;3pFg#FjvDojUR2sSZUgP4J#WNeXHcL
zgP3Y)<;0N7`3y&5v4$m*8{62aRZQIdV&QTPD>SUquv(&4N?Iml$FX<Th;SWkRhU>y
zo4;4W9xpTC+xdALXnYMnYWPXRMh&lM_)Nnd4X<k0q~UE1?`U{U!|NKhX?RP+W(`{;
z!>#NQ83rt<S)!1g!ajYI_9^5K_zGEP7O`E!4(Y_kSLRcpab87s)4LjWYS^ve1Btq)
zF8@1*_ceUEt7MntJR(1je3&%+Lyig!pJ@1qleBW8kC>O4f2v{ru?n-_E8(bMkjGvP
zUu*bA!{-{lkbL$De#M-H^pp&#$vW)U@GS?k$iEZ(fo>$P;`hR7)f$x(9NPyZ$gy;Y
zlTMQ7F3<m2!!H^t>B!e{Si=zw$2FXw|JU%F=>H}7yM{l6u*9Q6ILM>-O8#Uo7bM)m
z#NQf@Y5Yf_vK6Nr@gGq;so_5j|H`nZ@S!Sstj{S8XEfyLYBHXt<@58{vz%WQbUY?G
zFvE%xOH!btP)98twRKe1QANiEIxf_4maZHEkMne#t>YXWr^XkZt1HV>IIP^Z=j&=b
z(_HM?i*!`eQC&yX^0d41^J<jyn!4%~R)hLwIfGFWTSxGNokm?9#Cn3%VN2Qk`Z_Mv
z(Ll##I-bxmRLA8y8tS-9M;{%HbX=h$r6aAQv5qD>TIeX&(UcGWNVd&&Tq%SZUajLQ
z;j|15)lA1Vy7Cw-Xj$C^$NaTAibUZ$=5}R%Sv}dCEp@cgq3ish7619JEYn7?MDRxO
zMM)i+{=cq&NczZ>SX+mq!xG-It{N@P3KJwOmqyFzaCO|I<7OS64qrz{9i4P!bp%qk
z_BuixktA=cgZ0em%H^^S>=6c;NjqJ+vL50AI?zOw)m-kZql=`9B~@1)r4qbeg53m}
zysVAgC8}3WHTeb|H|m%!9)oxbhl-9nY0t_^xrdJ1blfibJ$2AyQ+S6CR)eIsj$XQQ
z_^hEatf+BPFzwyCdfx029fNiB)zOdD>zL>-!h3b~J)8j|xkvE1YI*nRe10b8F;K|;
zf)D5zB;-NChXfxMq$bbxkLt(_C^EaMe_jsJ)ms>k>3Ceo`us}w9%)L+Fdf4=N|Bf<
zID)MZa^ZkV6h0}O<S8Aagpbzow2o(Vm|YAW<8?eM{5iqr1;+@E6&xp+7Z#T3PmtgX
zf)fQ_6r3bDS#XMAm9TJ{lsLV-4l{Jj6h2GGY#nn%joB{NF<1CJ!TEv<1Q!Y}68!%<
zERo<+!DWKW1y=~J6kH|9I;^EVbrd)#bnudn^_*)K`dHYY<7FKSOe{3jE_<VnaR$a4
zctyvnQprs^{-dMN@tTg;b!^tLMaR23cIxQRDe;Dmw{&b5zE$u|!EMs}RM?^8ZISTz
zl&!P`CGSX(BoP(zYe?+Y_jJ6kW0#KIIzH0zv97-6@qvyHg*=k#&LEE!e>eR^$EWnV
zI*#c0OvfG_dv$!y`rO=xAJyO8D!y%K(HERtN1J}d0Xd{-pN<2WHqSkxeW_zizDEAF
zj&F2aeVegg$B&{zwQqHNC;WRIKj`?mReV6lA(0#u?DS~~)p$%Dsr@99Swo6`*71vQ
z%Bv2l6-9|(b)3}I7T`BFU&m1nQ62y4XuGiZPm!Mx{7c8*I{5h@wus8dbQ~8sd4B8o
zAK_@N*8fb%%CoGZ*70c_XE+lL^fr)Zpn?I@fMuYffl3Cd8mML<-#~$Z^9-DCpwLk7
z`<x?KS&+dh2F@~YwgiLLagWw9h3A&XKHNI~?r7-+1}+o{Un64dMdh&*TgTN6)G&}R
zaHWBo25K2N)H=T0Ky3ps!1swR73Dex>KVA$KwSebwN`H!tuHCP#K6-hO6rS**^(1?
zwT>Hz<TAlB<%R|t8MuPYEQy;)5sl01z~Y*Ugqlo#m4T}b6dAbAKr<Fs5?@PR5|dmb
zNtzq{hLX~xuw6;qLWHdhv^G#Id_+lUOCh~V;t~UGgzE-&m6Rq0HOZDa@SQ0l55wRs
z(RgA>Y#VS4bTx3jfs}!?fwl(P8ORuL4Fm>4X@Y0KH;|R)m*v2BuU3@AY)fSDo}J2;
zuV0bmB)GjKZf}6t(Lg5y9i&RMAtlu8Y@mxsXh3!rg=L-CO@y(5Qt629f;1o-&Qv!T
zxKR{t61-XP7D2||Dx`;jo<eRbm)|br4#DqB;yVr8W#AbD&x)jvf%`}d+-;z*fqn-1
zi~JrzR(ODrlO-`b>t5lt+o;OiZ{Ps~j~jTxz#sz;8hFIOU{QF;z{5gXh$fZUM&hF)
z9AfavE|uG361=NTJhDwZ)W9$UPa1eidTO`<cFjmp7*U=Tld%4y49sd1f6^u%ZD3Oy
zHPp$UmVrmYQkda$2G|$ROTsaNOgPry{lWNfn|OkO7uc1iItNWO@S=eo2HrL>iG?0+
zx}4o-V6uTJ2BsRAW?-R#MFyrDm|<X^fjwW8@B_Is4a_#wt535y4m%eO9aP9~GS4y8
zyZmzv^*IzCe86MA=qzAD`Ia*Om$cZx5_Z9FO_v#1YN)r3m<gZ9DEqu52@|d~u*$#|
z1N<<^Y6EKwY+#-SI=3%cD;cggu#RO_NW3I?ZvD#Syi&*amG~Lnjr9BmUNunXK&9iq
zR-j~)f!8ERPRZ-+tfuON$(s%J-zC=k4Fg*_a*+79I^Hy}%}~EIdW(ZWQ`IBi&Z>?x
zNZv8<E*+GKLK8a;yhlv~KO1<T6V1SW1K%3hZQug~pBng#-Ygk^Xy79Q9~&6^t;P!Q
zKTv;Htj*U$KB0R_#>{^YTVY_IfiDewE)Ap^zYx;@tUP|RnxAL9plLpB^_79IIZx$t
zlnj1DS5`@V&HFpC<N*T*X*YfXLhuK{7k??{ho%p4NYqRG$iXn6kinr1vHG0azZf`d
z;2#738aQI$SLwdv27WW}yMaFq{6!CQGXE%@Ex*=oU|g4?!cybmaYg^#tv=L1iE4|1
zV^UQ%WS6{Ebiz<?<?u74C+WBhoS_3TaY}S}q3pB}eieD+1BJ}Cf~h_`S@1z|MH5<n
zLVcNm|Nk;oyYdD33QuJdRZP@3ajA*3Oq^}v0uvXSILB0<df*^=r*9>ab4{FQf*+bb
z-&7UgH(U5Z*+nL*ny6!<u8C@*U&BOAA=ORvIJY(v@~CC14^7mTIvn8JaV8!qR4)+m
z^SSj*_4$ZPOk4%yViU)IDrVg-Z`GYurKEw0%S^N~(b~l2ESG8~t~S-1n2k(aVWP2#
z249r)Z(rENM6yYKQxgeO4eT>Fs+#iyq3pgZMY5!8Q8N?Qm}p_D&SGqH6GbMjGjXk{
zes=KVo?;?1VdfA1UcsoJSlJ}M*hEVcBoE$Pbm-=y5)*AqSSD;1XR7(7n=sfe^M79j
z;Q-)!g3QM>vALucOWEEe-!YLg)pT}Eq)jlZj0yg&jIpCe8guh1k?@ldo~b?@;R~`3
zfr-#WWFlwcHWRm-XltUKiBc2YO|+K`yPCM(L<bWc+3<>aounaMOmvne^Gz$}lO9)e
zN0a<I`IWk{v*bVEoOdKKb!d>@MLi{}8%^9~;$~C1sa_oubq2P&g*|9uZO>Y_n(A9g
ze7Tj#H+Ea=M#rv+`+F7LVWO9bhuNDZdYib@#6T1Go9feTcbOQ#fwZJ3Goh%DiMvho
zHBtFWqo0ZXETwwlhULab38PlFbaC~>J*Ijo_+F0H=|x{IF1pXe#fVA1Z)<F6kU)#X
z115T|C>})9nc!RG4+(xfsEB;9iAPO5XX1Gp;c;z<i6;gXJ!RrC6OWUd7|Qx^+?rUh
zwrCi8{KCX=@@Yk*U)S!KQ8c-YF|T{!vG0p-&=XIxPm}S$E~TSPj5hJKiLskB=Ju?K
zPo2aw9N~ACu2@n0RO7<Yi;KrFmer7&j59Ib#1!EZ*t(TP6HUBm;sx^MMWfdiz3{m9
z;d#a+6R#VI$)ZO2&>6+7|5OQ16J&5@kJ1??X42p$W}BEV@;N3xTT(pN#5@V|E&ILO
zH7d6qRODKT@iPj^7nxYh$!p;p3rnOEH=20G#8TnQOe{CCf+N|)OD5KvSY={0JJ(cO
zu!p)NY8`3H<@Xv<u2w^S0VYvP|ExfT4JKYL8yFoD9g{I7ZI3j4)x;)FB@+isyvC-P
z*luD6Nrk-4CbpP(!&IL?WzJhAt2a$-GjVS9yxSy)w?z14^}HQNE9e~(Z<~0>#9kAh
zi~L=VWD~o17BJQGOWZTQCxpp4dUu=nz{H2t?2s6zC8+R`iBH%~CO#Im)kjseKa;Hb
zR8!62vByLi|AJG@#D30MQ+;{$OHuoVUW@azdfwL(++0D`{7XsuovAjhzgExtUI=%o
zM>{6?C$)nn4w?AJ#J}7bnfS@XuO@!uXs?!6t5f1<6KksF{bJ&<3F;p)!3;@w4DOKV
zP&1Fl`JGW*Dwz0F%zK<uz*J9d9g{lzEy$WPAFE4(9mKhLLNwn!-1MZ0|4dY{P|;Fz
zmW7@&aav-}n8>rRql5ZPE=%d%Mg8cll7)N=XIXfwy86;=frToTDvP|(LS@N>$_(zW
zkw<y*NK<aU&b4r!h3*z&3+G$7z(R?IHWn_laFK-u7A~_;m363=SJOf*3)L)Cx746w
zw-ReuSl>a_ytV~cxWqzz3k))ImQ}|>T`8A^*0XSNIX_)J?^4Nx{l(607Zft9%Plmt
zkg#y2L^ZO|SjZI?I0hP2&r5Vr&1_<+bwyJ_%CE9;wS{8QY-WMuwz-9CEzp412rmBG
zV5%Yu>~Rtv*NJiqHs?swC7o4&wY1R6Qk}>QTU)rMvm!|gnuYcjI#|#x7#6Y?0t==E
z%R<^hMsnEHIbpM)+O-|ZyCis|gmBDv?vOZKBhR(qS@7A44vC#L!Bz~PrP>=>h*)8%
z42xs0<s`%XFKK1<Y$px>t6E-1vD@_)ZabCV$->NP1yty4p^MbHt02wD`gfDuO3Urc
zI@}=qRtr5W+-Tt@39>hD7IKS)|Jth&5*@76llfcdCGy(^SxRX^ZN}bVp<`8S(3ECx
ziMmq~QsHh3eMPd|Mn856M~;n)Yz(k)kA;sdd}85V3-?)AXkn3sffnw!Fx<ij3lCTr
zWMQy{M=d-k!{#B$%K4)LhtR_o9^rWCkO&S|8rdmfcS;Pg@LsO)F$**LR|>TRFD7sR
zKW?cX9X?@UsE}cTe{?n|9BJW63)87@;VBEFEIe;vjD^u+rEjX`Ju9YrT7u6Ar|>z}
zwx${?eg3F0R-z_ac#(Z!VY~z<Sa`wWZD{2u-xOa#KFPvl3)4h_&S7Qy#1sotCCKSU
zH7b|oIn%-{3v(>YwJ_z+3LR?X&6ZYQ+$GUM)aJ1Xl5oCMiPb1e`$4t5#dQ7_Ugu!8
zu++jb&OTniv9R323Jbdebvb3Fg;ipNH5O=x)fV=4QidWj$o0Tl3+p(@dl&I|$wH0m
z6C`zN=Dlp;6$`I&5OzpxwD3#U#Ori}y^1!`lgw5*zb1Xet~t57c#DNMEWFP`Eo`;$
zCf$yO?H0CKD6N^tJG`7+Ow0ScJ1o2{4SbKYOiR3DVW*IH1u3DE=Rv~JHKJPHZVMl<
zvw9U}3JT^`Gd|>i=~cua`9~IrtjVVqK4a@F{Apni8))HYR@lPl7QV3XorUi$^()MM
z(#&t^2E`y>S@_z*H>_|k)m|#>7tRbR*&Y^h8ZPZ({J<&SDe;qq1JVoo+9wWLIAnq3
zN5L`4n4A^nHLk-Jj#%nE_?v~FdKK|}O7HY5ZP+PsQCEX*_IGw7-Qa~Wjrm8H#9tQv
zrkA#Hwymb~F$<@e+`@4SCoKFUUgAF)_Wuf=6yz*uEDrFL1Y685%(GF!MuE*|2I7jg
znkGEsH0)|r63$@0kWsyhC@i#<$F3|`#Req|^7L_zjq`1Fj#yVC?_3+RyClxD!7kfd
z6&Ki`PiS<oI5)ens*P$kp0@Ffjp{aP*zj!lHfq|aWuwT(bvA0-086xSrHwi^>e^^v
z<1!odY+P)kzO6hY-44&QJjGwa3}q2QpM0s*itB{SSux>_Z8Q>c1@k}Bl%B2ZG*RZj
zo7iY7v1|fo)>SsHmSA(iW|HI@8`s}aM1`^>*V^F8oeq|g7B-4SGi9TtjaD`c3AVOT
zVk2oolVHbcd2NKSo~(l|oa5yF<`v7n?#`@C8<xmz8(cFu!UuLrP$4axIvF9ZjTfc#
ztc}3Ny*BQ%5z@l6wvFC4ayHu9=x!sn(auJD8=Y-*vC%=2ce2rmX8~KC2T96K7Mv_y
zCAOO&&nef78e>aELPCSzVB<y`cZlRB8#mjy#m21?WL6yWoCQ53$lBg!qo<U@v>dLK
z+-~D=Cv`TYGJ|*8xXV`SpL=ZdA(4awZ1iP|YN*a7_G8U?3qY_;$b_^Hv2TsMfi~{9
z@tBRrZ9HIOkmNAf#)CE<vhhfHO`>^)4+}3_vGB9`oLOx0qc(=vYB}`Dfl9>r)$^XP
zG2F%o5e^j`W`lCZj+7jpwDFYGnH6Af5=V)ger&Xjj<R-omOUtG7utB<#uyvZZOpJS
zmeye3*_dQwyp0Lep$%m%{eln{MBi1hu;83rA?1_H>p#`T6dOxAsio1BUPaSH-cO7$
zlg+G_H`i8cs{4b&S?u~FO=sJfBZOXs!Ff^{j<@+TTNiMUbV+d9F0!$h*-C7gWtIwG
zR$ea8Un@ki(#9$qt8J{Y@tKW1HrCo$XJea<w`{y*W4(<{HeR!_fy1m*;$<5fIUO{0
zO`hAsm48-vg+0})XjtdOtL&*R20h;Ewpw%2iEWYkY!;-ep-JBm@3Ga!M-7cP1?fz-
zQ{To;8}BjmWX$HgZQ~uff@I7h-nG?<o2MR*wD)c7Vk#RS+t@8~&iW5*{P%&u@kx*L
zq4*`9Rz4AOgQg7Iuv*@ybUwL4<+5yiZsVwpKWuzqW1o$mZTv##X5%Xx-`n`X#@9B!
zvGJYQYJa)Kz7>ygxV>sc+3+~4rg6Z=K^s5XXtAc0u8C2HL~UOeqi<CBlcZ%0>B<g^
z|NKn`*b(8smXDBsbA`${EL4^Xf7<xV#=kaB+W6bXF;2ryi4$Vv;~a-w)sEv>GN#S{
zk*M7VDpA6s|C8d*2%Zu=El7u!=P1YCv{RyjgNhC+Imj2uJAYNAoF=k6B`Q0p;$Tl(
z>}`v)9GvaI3Sb8~$HBP{7N)T%jq@Cw@1UlGS`PTW@CAYwIk->=CB;h%iB%m`6G?T!
z8s)Kbo9EYd00*lataebxL0t#a9n5f0&%wnGx;ZFyaEXKZ4m=0GgG(JWaFB3trGv{H
zes2m_IB4wf0jIbjQ)%&-!KIfRFK)zC$BS#VO{{>{#NjhDF@xky9T1DO_$miiJFp!%
z4w^Z*#=*-wwQJdswu$BrA76<{c--+z39(4z*Ewk6pjdcIK~1oggVsVy1gYP~L9(1L
zA5lb!E<r=k6to0iI9Va(Anjn}*_FEeQ_QEQG7ek^Z$DTxRErrTA!Z!}4ss6K(p*(*
z7o1R<A=~As2d)MU*N8mYIq2k|vxD{y`Z?Y6Z#6nN=;&a{aINv)5@HtzU1`;Sidie_
zv(W3=eN#(!pD1oLvZ%X**ilYWefi(PjSe1i@UVlM9NerjM1KdjIJnip?GEm6)C(Ft
z9Q1T>n}fMSO8Kx8f1W#Ci$54pYrzvnFPhQ8{5i#Ui{`ccil~35gAJpL?h@?7qF0qN
z$eV6`9q^S6<}iSLeYEKV4h9Li$HBc0?sG8E!Tk<~H_vD6R%m7TU&Xu!skWztl3V|6
z`bUpK@<$vDcJQ==XB<50V2FcZOz7Y-*12}!6O!%Y4rbj|#Dh=M4dvKA+H_6-qVM^&
zvM%`}q|T$*%zvAXbnv8*inVJ$C1mf0;w2l3N7JMmim89<uA*lhjBzm5!E+9tmzEA*
zsG=VDyW%(w$T`Im9K7IQyl~1{&^j%i=%`zblSKHUgGSp*8Jz5Z^_fD;AFDW3_%y*K
z3yUeA$ti%uViwKHJDBZYj>GF?@jSt~g1^lwrewbG1rF|dzjUF4MM9XC2PITk>L9O9
zVx_1pbFiF~!r`+nF{60&U!ruVu*Sh!8Z(VY(^$uwznm#)T$9FncAtYS4&HEZ&%WZ9
z9lYY;RaWU#{zlI9f<(L1`I{X4JV$$-wvCEj6TY}&0VSK6aJJUAVgcn_9lYt_!4w`!
zVVi@u*g+}uN@2T$9i09tT#~}u4j+$+-*>Rf!8;rzleBjQce3(qg&s3E{d5WCyXjTv
z%~Gh8!iS>sm4mMxeB|I`2cL-KbHPsqKNH*|xL2^oRE_!Y_`<<Hk$fpwQ;#Y9#=(9E
z|BB>W2j4mPjXu-C_YQt=@QcU~I5_BFz2tL9Buw~|gCB(-Y}tmvpUdU6z+vGu%Ml^J
z3Jy4-nsd~_-wuvBxK@w<aPX&tzc>L`{I7;=J9Ul=o)BcV|Ih-RRT0geFFontKL@8I
zijoQ`oECmYFfXN&N7615c4EFr&Pn0i6bghF3RV`ZB6ybI*@Cx7+Vg}%@ca}mNa4a1
zE=r+>NU91le|Atc;nfA7Y_2L<vplwzklKQ8%++?R)#{{Bw>-9<kU@G}KZQ$Euv2hS
zXpq8XDK*lPf|sYzD1|G8HxxX1D!*|GO;Wfng%&9^6(RMT2}uZEnZi{<t`>Y=S3jxY
zag79<3tlT&l*0O%8l#FONK%qQOX01`C9P9xs9QBut=foi*;0)^QqgGnC7Lc0BL%Zu
z-xBiCBrTOfI)&~j#3^J_a8u}%!Xs-nPcn>B$fe+?U@XzHf+T^EP_THJ*0x;UK81F|
zXX!E3ItcGr9;>e|?JPNW5$q~>y<j)NQo)z?n5Ew!sY+I8w+OjW@Fu~VX^k4HK8(FJ
z1!51uo`Sat-Y&SQ26{^~2bH(_PHEI#DfCI<ZV~nsyhpHK3jI^)EH)fKw@|;ZUw*;8
z<!SE|GEngT6dov-(*w}vhil+r)<1<mQ}`=|!6`gS@3BzZl>&#~kQ64Q@InfYrSNzP
zPl#|-3ZqjPDtuT9!&4X`ocg_MV5IOT1)mc9XtEl~Jf2SBxfGsH;hA#%XW4h_R4mOx
z9FyX6DKW{|6vmb7j8E~o5hdg?F@+f^%uL}$iJc@kS#XNrRKaP2(*-LUD($QkW~Z<*
zg;!FTBMn@X!r~O>3ZEx9UvPooLctH0l+qMSgs<QvTBtF&RD#O{m#6T}JSAM2!m1Qj
zr?7^-oWcf)U7Ny7Le>eg8r0<R!*cCqk&us=sw4*gcC<u$RfOA8*p$L+!e38eYq{p;
z6t)O|qg(<bX4*GXXt+dW@)l14DePb@%~+;6SIOT=;oTJIMag;Wl&JRv7tYo))0L3N
zZjpSzvw)C~QutWNCrq2dp%gw%;j<L>q_8)IZzbyU6uwB|s}#N#Z?jK?UkdX7R?M?V
zYWR&v_6s^9d3uKST?*fe<Ojh6f*g}f)n2OoV+y~C@TU}h7V?YWkrWOK;dG<&ufpjY
z$$uA4ax{fMgm;tT{!ZbT1Z$_&*gh`&ES{97XeUzmC#A^0DV!AYUkdpWbxMM#Q#d0e
zPlOfIs33%<W2#ERSz&S>1!)wDguHSZRfMzO89ZBxX6fgoaW1z2X`C+-p2eyOxgd=T
zg<MpwSyf0sBd(rStAZMWBsGQ9O5>7Q8iULeY19$rx`Or6xLC*~f>)$bU&y6tG!Sx`
zV8b*n7s4|*GifB;o~1aC#%VN3qp1iJf>)(+rI1;of3@%tV&Ud#T$_fMhMz`J8rP-y
z2t=GpqeU9&DO&5aTJVq*r_oX*tpq1dQRmPSCYh>8n>3Q5Nv;Xe(=f^<rVvZePQxje
zPc`DS6qgZn1$j<k1+r-bX~b#VkOqfbDA++T63hv<O{1L<>a<VerWqPZ$8t%hG&-lz
zC5^6WTrWa4-<zpXty>zUqTfA@_vS0f>^TZ=6k+c)*ub08xLJa?2;P>)twMST?wX?Y
zOk?v5mFjkp+#%R24R#8J?B6@nxJ$C?BRD|tZo$53^h>L$-9L@PXY#vG(UeIg>R!S7
z(ioV={lXuTJReA7kOUu;gw*Fj|1&zT;Ndjbv_~Yi=QM3d8jqzhFRi`=&NId1X*`w2
zs5G8PV`y5PwTGoKGK~+7c(?>d2wt&3V@Dq{;wL5QuBF;&8ZC`+X^c<f84lXXYBBa)
z8mEo;*)+aephbBF&!^SOYK$Ps*fjXJJCX@$ypYE9G-j|?X}p+5$-&~OX|-CIl*VN0
zi{_7fM&DF^e&SM%XZC55j~ZGBi)W_s{TgjH3tFqrce5nzswvu>H0H_xuDwWO6qV;o
zOBV=kuUf!XFHU0#+v{PdhoxyOOXI%`PGzt>jTLEh%%D>SE7Mq&<|m!;cN(kHSd+#l
zX?&W-+B8^`Eor>LT|gRiP%jCtPh$gzsPGnM%$3YW;jak3D!57THNn>fHw)goSYtk0
z(|9wD-D!M~#x{{t_<kC1rNP{`i)4r3+k)>1zALy>@IAq@Ja-9a4*bjBhiN_(5%)IZ
zkC{~(KaDD76WG!02$Ijz*ptSOX|*ueo5ts9^qHa^NaG91;Rk8&J{bdFrumRS{FUI>
zg5L=47yMT6JHhV-*)HlcH<ofxvOOe7AuINil=!pYFM@{!j|l!M_?zJGf=31a5d2e+
z`LoW)(l|~Zo54jHoRDFVpW!11@jt@<6+9{UpWrFM(}HIN^D=7SRS>KwSV?f*0yVS>
zI2g>hP_VLK6~VIv&lWsK@La+31kV?|K#+rwIaJN?N%i=u46bJ88C1`pMg}!AyfYp*
z&Y)HXwKKRZgUd5O26ZwhoTsfklV4YA(m;asgkLOpiC}%fO9i>#WNqJNRV5*@p`;>d
zB;*RgZ_T(#22C?aNGir&Nz++swa@iAgUvFyCIdf%YzECUxHbbfgJZ)>`6rd@GDu4%
zEi&l3Skp47I9)5wVALwDrC=+;)`BI1Z3L5ov;#GnMCVUgB&{h(i6z9&z!8!vmp8TI
zjMS5Vdt?o5EA}!l7i;`QV~|0ZK`w)~G;Buw9JAZ$lIg2e6nQ(5w3mEXRi^DA`H)bj
za|T^F-!oXjhGcMk24gZ9n?bh>N;7yYgU2)Io<W>J-wgU?a6<++W^h*qeKNR7^68a9
z?+k9v;GtRCErPcS_7LnTc$?tuf_Dh=EKL3T&*bwIe`f|<U@%C0NA^>D=4y9~u!|M<
z&tO0XgEM$EgL|aJ`!Z@_aIYX|E;$npl;Hh>4`eV%2%{ckapnABA&+Fh(izoH`kG`&
z1~1MlC3zx)p&8}Yp3PvG5Kd2ejN!sZ2#ze13qB<{N^rE`(}K?kvJ_^;<GBo;7YX@y
z3$<|>jL+~6ay&PK2^qYQ!PE?<WiYa8JTZewLg?6E<k(oE{Ptv#Fm{R%HhFpmN5+@V
z%qUMaBcrZ(kkH8!XJs%ugE<@wRn_@|Cl2Dg4CZIBAcKV&EY4s_23)@KRM>8^wkQMQ
zY%6|ro(h&8EMCg4KUlm>kY%mRU{wa6X7E`Ct20=W!8;keo59)))@AT!2HP@tDTDPH
zyph4y3^rucm7Gsc=l7khy_~_u3|`5g!gB4;S=tsWel-J<O@glpzAm^~a7&qFu~Por
zip|;D`qTM&i#2BTRt7sVcsqmbY{hJiQPklWX3h-mJDtCicF5pkDe?Ubc4e?TgAX#e
zVvW*d4qwjF)-TaMWM%BQo*jQAW9fG*X6z@NO0zX;GOIlq?9Jet4EAU6c?Mrd)K?ko
zlXg+zOU{(pT1z`-4VmrNoEo#WoE@_!-)8V#27j;>8GN6?57I$LGkj$L2Qz9#@p}e`
zGWb#Yk(ZBtB447GKt1gEXW_pH9u_<z_^aS=g7m}G=cr)Ac}XYCFZfHcI!=e5!QU)h
z)&R$(X~XRJAL(2Q|IOgeMOuxu+DY1^bDOz#OyTJa&SWsf#Z(u0E-JX_?4pZ{iY_X-
zXyu}{i+mRaE-rR)iHkxPm0i?yQOiXY7jtH57rChF;w%?`<rSRms&mIVg69gJCwRW#
z1%ej}X3r@9%;{E*+0N27+VSK?T6GsST#)eKbgu0JF6y|b%L)uAqW(vAe8`T+%+&^;
zR!*ay3wntkW@`0aT<YR#7tLHWaMiMkcD~BRWiBpv(NH85Ug@Hd@GArx3pNpKDwq(w
zw_*X6c|A=n&raoY_Hhba<KkKuMJ}34{V8M-*SVN~D!+w`VpnZm_AJ&~x@yvK9@Si`
zkx;F~MH?4s7a12x7n%#ph3%@@s=J^oFqwRrX1F-T9$Bc-OAsmHWi;wIE>fbrcDWL|
zE<6{3i_lfW)pwB<LSEHTlV$(u{Ky5dy^9VmnmTb#D%{pZJJICCEK}>~qLZtJG5^j?
z+j3OvPTbYS^)Bvpai5EBQtoY1y;2uHPS&~$#)3Bp-Y9sJ;LU=!2;M5#L$IeH*C)*3
zb{BWJ=;flfi~f@Hoq}xI-7fAD-bb*#6H~~eFZG?cp9>m<tF-|VdygO`R2b;ueiu)<
z80F#t7lT}ka52)wgD$R`p$&C0%*8{(9~OLs<9uK7V8KTPhX_6<__*K`f(_<r)Ewf(
zRc2~DhI7o%)OM}bo^;g)ibtin+8;tjyLj5gL>Di*c*ey9Cq6d3G|J#vPMLYyb1qgo
z@$-UX1jh=F6C5u%LGT4Zo;9e?gp*ucw^Ezzsw*(uL|iai+u_91TukR2^ia#g3>Pz9
z9B^^a#Vi-IU2J!;gA>!mTo*69*yv&&N2!Z7F4nqOz<SQmR=QZ_VxfygE*8u1-~gb*
zUm|>|;4;DGf-3~e)>Ny>muvN=Y23SUS4F;#({`%1-o*wNFR>;q+w65>B4e*xr12**
zhfn3d;^I{oZ@B!tFgCe(&BbQUrZf4kyWob7rSnYmEA5<$x47y`Mdevq{Z#xWO*%yz
zn^&-nt(&T~OvP_WO(^8-d)vi3oUkswa`CQ<oi6se_}s;NF5ahSkR-bVKXWmV7k@aw
zmTDgeekk~n;KzcW2!1NaX-iGkik^1v4CQZmeBq*fD&8km;zpSD>6MBp|Jud3oXG4W
z7qz#P?w7GaLVwQK?>P=r@zM$fypr>SOeki1h%>^)2^ask_{qhXi{igr{7oOiYA@D)
zaZ$QNJ1n^!5&o;-Z-T!I9u@pU@J~V3nW=bT`Iw92Qqbuo8ZVkr!V~?!E>5~Q+rv2?
z{-dj*SNBlh;k1i0uDVWJ(NpVzJP#E-<-@seU9nbU#pu>5NfdqHRqHgiqR>MXPc2KH
zOU0Evb@F0z%FpuDrD>);*TZ=pF7i;-Qzx49JzOABi&F8-8o1C?XDB9TORIV6$MKs}
zadi(j<QMSrKJ{yO7{69yTWWjYZLLloI(w+&p{|D(9*RBG^Kh|;YdkdfaEXWd9<KCo
zm4{0`e4dJ%%H6C6!Y>oNT(F^FBf%>K8w)lOq<3Q4zfy9YKOHwoD{{35GaWbc;N=xC
z$h`^iTGl5WU*};&I;MsB8Iiu}nE!w08Hy9OrH57?vK|5ttv!@@NO?$mXyft9bIheU
zuZt#yYl6C<A!rI(g0`R|$ht9Y##48@JP*DH*HeFZ=c$~Fe0I<@sqOl7%pF1Kp{<8@
z9wO<-57TkZQ~$4L-MCX|@1cW-juN$fp2nJUgYbJguAGUxc<Ack9uN0=xZXoI4|jUF
z%R{M$?jG*&(91*YAvaIE&BN{NFB&`(-za#K;LU=!2;M5#L$IeHTS5I+8TFs~Y$j%9
z=B?9u)56@ht}Z3-mx=p$xZ6WN5B;TqBQkMcy0}ctgI6;Ku=kf~FJ<C)GjZwn#q5jw
zJbaajAN4TA!$4`&{gUAW!UqXHDEN@z!-9_p4i?lZs-At!1C79)Q582Pd7J}2qk_Xc
z4ChGBqG}c+Jd9*t`{?K6Ne@qX$oEm;W0Z%{9(H<o&%@Imp7Ai#!z>PL56`g`9wvEs
z-oqFVFL;>fVXRnV90xf^vK!MT6KLnj%Av8BiR2WLa|g=cWDiq3O!F{Zn$Js-6i$`O
z)3tJiKm)dN;~6qmNoISP<Kblw8$HbRFwesp4{JTl_prdjN)M|%ER^I_=4f0be6ipX
z!KH%B1eXi05aijAw&Jl`f~+Kc&aP?NItgyzz;o4#<s}d6S;{=MZ6Vg4u2Q|?;Z+ZB
zdf4V+lZV$la1Z;2hu3MVsoG}AfepFSjkj<{U!#mq+$wUK;xRX7W8d<y!^7Jm-0rFE
zHV6MZo?2ADD>&Iz#^IKh%I|yF#ZowHJnW_;^6<TfA3S{M;Uf=Ud-%q~#~wcMz;n%4
z9zNwbpQ5}vuhV`ee2?H>!OsQ15ZovDr6Aj=E=WpG?f2BVkEg=#JbcUkTB6QkJyxqc
zU!J2KV62CqJpAn85Z%`ljrXvq%p^b3oi5jSmF5?Y5S}i1EpCd|vTDqP3=)6i_@uA)
zaK^(?4}XZle;)qy)R~tGJVpNHfo1(IcuerP;0eKh1pgI0Dae{rf2A9rlFG0ZtVy1)
ztWnWd4XNO(<r5W{e<fd4i8_T;@X_4IwLYr&>N-PpA2ocO<>PFh=lA#=ALskHz{j~h
zxWzb6bU0|Kd7+Psd{p&O%~yT5e`d2iZcM`S4r4i^=^1MJsO6)nkA#ofK90EY<vtqv
zfR8#p>iRrwDJRT{Q&0HCf|m%^7ra!kf#79=Y$;PU;>^v&jeRs>1qu>Z_*f`cQR;bd
zk>u%m@s(_{k7hou@j>TvHA`Hq-Q>mOoGEO@tX0a9a$*+wxXwohA02(P@KNj|@DciG
z>7$j8w2zFB);>ynI6ipRYvZdkyDgX$)C6@wL(mko1fQr-Kz$zd)|IAwe6&PaiD%^9
z6$)G*o)6zwLxm?GE>yBUc$Vj7VRA|$A2}cGeYM(YD~)X@IWV_@Ud#-6%4UXKBy{r8
z*~jfZ?(osYM^_)W`sm@~dSBg`zFBJC%~$J_Qpu;gU@Ulp;EjSe309IV=PkZk5->S0
zn>^>mJteE#q){D~(%Zz$jWy}z<4)F4Vte~)!NYFqBV}>zbhocoBh=?CAnEU8fR9gn
zeCp#KANTrr&d2jU?(;Fw$KyVp@NvJ72Yfu@W3Z1wGU^`m@ems&qw8T`ZMf)j)b*}(
z{FWC#>VrGSAwJHlSWr(cIz1+m9gEbCa;WGt$+JF&2_G&vLU5$ulY&nPjuIR#__W|N
zg50e$lU36cj`1<p$7&yIe2nuk-p2wCLLU=2)E8+pXl)-a`1pE-Hql4VsoIM^3P+bt
z5}YhJMR2O%G{NbDJhxJFmJe<`=WyQnm@PfRasG`LbK@{iqUQUc{pmBgv8CoBAB%k~
z_p!pq5?}2)skzk0F)!v$?b>PDGIr%;<-O_3NLKplE(3$BM42~q*7{iI<6R#+eZ1sj
zy^n1^-tw`*$ICvpa@v~lMh?`x0ygIjAFoIbuL^Dwd`<9m!OenO1lb~%#Z<&MIlq=E
z!s?N17sI~oV~4cyd|x>Pn)e-%bK&|P=jI}f<O3h?``9JM+%1_<$g>`mKje&%g4S0o
z_}Eu>0l52a>c^jPp!zuB;~yV;eSGfYFCTyV_`=6NdPN_He0=HSD_Vfb*;zimk!pOa
zW_^6C&v6y+SMw--(T{g*RgdfN=FxIL{=vrqnWqEf@+N)Vk1Utt+{f=eewHLheEjO;
z7axaZ-11z;gDWl~hcPpu$KK}0M}7RkIX+LLgC+jytNT-oD%0o2`Iy8qc-#lKs9*T;
zzdlZK5}hdF68%3Pr#Nh~sGP-VA7`kOMSd1}Syae^H>xUT)lHV26${8YRPL+ahFJDo
z*3SHbf~-2>ay(SY;;byr&*B0~M0jo%=VftD_J8Xc?kL&(jmy+vV<s17K`h9|muBPN
zq}QrtQ9X-US<KF&Miw=xkj20(YGqM73qOl&7RaJb7R|D_CX2dR)XO4~#g$oHoK=@x
zuE?Ts7MEnvCL7n!qMOQGx%UQwmkC}j*if*MVA)Q#Nfu4BYKPJ<8?%ATjmMQsHIDYH
zBy-M}tFvlOQGVVkt$7yLW|5MpqAVt_)Ql|5EUwF<MHa<bJe!U6th)NtQg|!D)`BI1
zZ3L5onjoDXQ!)Pq+1Sd$&Z=94ju?{*Cl=jtnZ`#lXmIMJv&dxOvUeu`ueM$mTo_X=
zkc6dKbk8DWCuWh$qHPvivhnp<w9BepKe@X3D;DS=*io>PU}wQDf?Wm6tn_s@?k1&h
zgA-?QLly&QhiTf4S=^LGpDgaq;^r)FVW(%+9q?PTIFXI-6zn0`Q}8yy+Xe3s>?PP+
zkO`TJuD({F9;oA0=)PI>%c8&J$yknIBCh~kUZJ3pc&B@^xHpS`Rw&m*&v1Vh4`eZ2
zYCb57rxt5Nvly1egTfyYd|2=i!NG!$3Jwu`Oz?5RCj|8h1<YqS7yns|$zp64BRSY+
zY0qcTp}O&;@TUYv362(gTJRacX9b@Vd_-<N4B*apt~M@<q9C4@1)pjgpT&eMUJxB-
z&dZw<g}*2`NpP~@6hZ1t<(8yk0ZA^1Zx3SL$exh}ai(NQGAE0<oZtbf1elk_{4Bo9
z;`=NXWU(-dceB`;#iA@0XYq0t8?#uF#nLR+W${uL%VaFk+7nLYFBiT-aHZg?th%DL
zT5yfvTEXRK@+n`R#fB_+tB#x}St5Ir3;0*Ec$Ia_Vyk4bDT~*$*ql{o`PXD{vN-na
zut3d)Euu3gh~La&TNXRAc$-sWp*r=vmBn`Hn#@{tg_e&f5P6^C9hov544fM8W$}I%
zd$aglCgZLwKID|iVz>AoX7T~sD3^CW&f*hJ6F2@Wi%o$#kMQ_3i%$c!Kjmt6PZmc5
zb-wr_s}{gtW$|@ZZNv9v)pq_%L9S!Jp(hOEZ|TaWs!HycLCEDIoi_9NA&Uc99LwT(
z76-*ve`N7z7KgI<F^iu>a#<KNpPxCKR%yQo9u_<z_^aS=g1-wM6{OLq|CjK;v)~$)
z8(7+$gzKCW;;9M)<x>91;@>PziX=b4wiVic!cU3aPG@0+@fpFqK=BHK6$L8^vMkCA
z0_An-tga8^6Vp}avb|>os2QMEfV24uK!9@toEPB202c)~KT!UYX_@K*;SADc(Z^N|
zP(4s<a`I|?ePE#y)(DhCdufu=sT}|Tng&P&s1u-WfJ*~32v9Fjm%c9%yf{$ap4YSw
zR4Smbz641w3vhXWMggt}u&+`9Z$(kqFu;AG>gCa4%*)-4C5I+~x|c*@KAnGns{*tP
z&?>;y0h$Gzq_~dlii)lYP`W~EF7;$vu9dd1&RpoSMJ)mpi)C1IW<?3leXT{OO@L&8
zk^pnUm{*J$rHNdpRfXiqFs44UH3RVJ8tOO!QUThvMf<i$2gn4tBZpo&xB)yGIl{RS
z`~cYil|tl)2m*uwrUsZ6APSHR@U)nsEi(ylXMno`v=7iBz)b;e4$v_`rvTRn=oX-J
zfG({6GOcS_l0|B<%2Pj)*CI*-bPsStfE#(N)B046IV0i#U(3Fpmo#4s)ux+gy;}m@
zDz>^kK#u@h^9yccW#rOX&p^#1&LA4+<1oG>KrfcHT%Ff?OA<zr_X%)!fX4zn9-uGB
zMu3L{JQARPfB^v>;@IF=68*9ZCiezvRezu0K*9S39}pZQ_@E%KT~Lz;bKnM_wH-|3
z2N)tvX04)W+T+XB^@k?{3=J?mz=%Lyh!{rWuhlq_St8Sp4De)tQ2|B=cq&k?gVp{u
zjLQh~XM0O4D$_j^;MoAr1$aKd*Z|`Kj0td76!WnMCZSsWC>|eRLVy<oObYOVw2M(R
z=|nLXOQg|Q)ybT~0dAkGOvHK;xf7orU`Bus1AG)<W`J1%UJ9_D<A)=Sh9WtYKbOv*
zMV!iC5n#Twba{XlQM^F-Lcv9Xiv^bmE)`rRShfaW61tR?0WMouN?Y-k#OeTR*!(Ew
zlY47fhe_Hx&XkpErV}>=csaoP0bd`+#sIGbcssy50bUL0X7LscxJr9X@Qx^cG>TuB
zVZT{$i{KlATLs?~+$PBUIYG8d+8u%uqnNq98>pu;b_RG)go{M@dK7by&)D7cPAjz!
z1lueq<uaJ9_+zE^aez+(oM2Zj);<mJS%BY_<*_Hg-T;RK90~AwfG-04BCXpOfT_M0
z%X}&PE5WY?zY*Lo_^se~f~+%B?WGNwZ4@66JSccb@W%i@3He!&I%SvI__+12QZ8%z
zTc9p=lJH=o{s{1AfWO)50KY|X#avu37yl)l%UCYY*bBwE_&B>PRJ+}Oq>cXyo)r8~
z@RZ<b!83w+p|VB=!HR-qtDu4qg(02`@qCENA*zJv9wH8T;=|b?t_#s3#5p0(4RJ+?
z#v#rNaejzPLevj&L5K@O)Co~H#6_XHnZ*f$5LH98U8GeLtS(qXu%=)w!P<h{M^lq$
zZBE8|p?XY$$HgIcPm1sebMd7icuD-S5SNE)&Nc|a2akELp<$?QOz<W}qY$^|)YI>@
zA@9653DGpf)ghXNNQ7z+&Qw>0xKcQ086`Z&G3_;>y5GUrYeO_=d!r)e#!QMrb*+P0
zan(^Aq9y%sh%iK}P~GE5g-C~J9ik*en^0{uoKS7SlEO7XUC<CT1ua2akgaAa_9k=7
zgm6RkWUn8BH%hz^gK}zR!h;pdN{PH+!rDest9BvUhsa6W+lJ~aNe@3R7k3EJF+|r8
z*N5m7qO(MGkp{9YylBIlFH~Nhi@Qm2rGhM%t!7zUo5eSTxG}_IAs!ELQ;3^G3=DC9
zh+Amh5dA{*578q;&yYWH0H5=}P3p$9!<J~b3%^6Kmtb$fI|c6&>?6pwv(<g2u`~jk
zymxKsfDrdco;z~!H&x?%L!Qu;sX0@4u!sj}mJowQ_+W^K#1s$9fZ>XQsi@3N=p$6f
z#U%%eAC;j(;SeztH_=ao>YVbl7-XpMVS>X2M+lA-d{Xc!!BK*v1<S7dFq3COJj=1P
zrIg2sTs$Vk*brZZ_&UV65aUC<65`bm6GFTYVrhtFAtr`+F+{d)yePz^5R*g94KXjo
zln_%xwb{9{Z9FYh59gfURxO;ShibhvLvW_xEWz1=a|G#ssI%$W()l44gjgs8m_aVE
zSFSE)6fZt6mOROqgz5pmUTx#$Ay$M~7vd#KIP7`LIK*n!WRluQe)eqXnh;#BuMIJz
zt=gJ#9Zu`553xbA+9=2c(#!0@ttC9TyeV7cYznz%z$YO-4e@%2%^}_ou`9$Dj+_<R
zJ0ac;@kXfDnOjBjrr<Wgw*<Ef?ht%iu&e^SgS<1udo*d=n3ZI1ypGLAv7S5$?&h2d
z@gWP!#vg_FSZcVut-7^DQ}E!r>$4Dhq+R<$>=jK~<BO1|)cA8jDy!{P5VL7t(#5q^
zm&d;eu|MR`(ePJ@Z#lH+mqPp=;(Mvvkx;FHe+Y3P#6giT$hsX8{-fYef<FuXB6wJ^
ztaZN%XH8i8(NHaw`NkYu@rQ5*S%<$v9HWblP&vZ!5GO)ZijW`SpAi3ss2Hhna#E~H
zeP;Ea@Kb`P1<wfPMauFO1kaN-ZCS^$?+PMy+k%80%_dZd)HpmVqCZrb(?2js(tNEN
zrRPOBKf>w=Ya(0_;lc=AB6N*#QG}`yq6oPN)gn}na9zYT32H>B8R4=Bmq(}-p>~9N
z5iX9@;v5m`M&Pqs^h<R_GD=qLT-aX{p?-u0BIFi;%9jc!;iiDdr9Mf+2#q3K!3v1H
zaRlxNu8q__qDh3N5fZ|i@o5}+JmyLXUL|;SS(M;45t<938lOZe5`IuN7sU};MzA8-
z5n4rP9YKqrM<|KZvv4$5l2Hq_HiE1e+d?4;9R;7uG9vYKmKmuB$w-_CsR(Waj~1(e
zG@CzP%g`*`9rN+C`6{6=IR}wCDNvFX9ma+t;S+9@vz~1ubQaBa5!y%SAa!Q)juE~)
zo&WwEtyA>BeJdXXVka_(>mziFFe<`mc5#I65gv&!I6@rZh6sHk+|8z)F1ay6j|e>@
z+!W#FNS)eliEt~smHYIzv2xLEl~2Ac!tD`yvw@Q8jtIRX^$a$nczu|u$eH9=+xRZl
zv$1+yoWi~l`b8KR;r<BynRx`>cDXOY-+Zbn!o88Y7R?-33ZJtg=ap?{@_-aED8hq6
zhAh$^itsSU7_aK{0hr|)CDq!gq92VgB*M@L!(?bZ7UA&-Pegcep~fczxf$e*06v6v
zZM%4Qgb@)&MtCwp6PmqU%!4^RC03<AdD(-APe*tr!h{GfM0l2VSg0O592eoa2+vE9
z8IGZ0XKOshMqm*n<JqXZ0!FdRCb9w%7H|wlm=s~MOv5=5rbL(;VJ3SjQWsaJMVKCe
zBWmC7Qf@i<y1|S{U6$dE6+UW0JIt23Nngz=IXA+*2)w*d%w0gFuF>(b39<T_e0rfp
z5f(>S5@BhCm7K^CmPJ?|VTBaUtf<4|mUimO42jB<&wI2}yO^~R)^P&naA^)NMOYu<
zNQ7S_Y>4nOM;FN&ZDWL2B779#;|Q-t*u=I>(msgrT7=gl?2^&4S%ljoOl%i#5y=~Z
zTLs?~+$Q*zVA-yOb=x7qw*}vc@U9TbcM5qg!uvv2w^L(-b>1z_ueLz@kdvZ@G6g5j
zC-eriB!@wS&m!z$6T<k5h--DFz=WSim^NP-nZdW)sl^^seHGzrwrjGsKLRgTGK%}k
zZ)6UVvyI=<=2GtWVuv3D4+tI<JS6y|;7@`-3;rT_Sg>k-0d4qOgx@2aj&LTz(FlKV
zz(hF4c{fA*lLI)2|Dsc^Sim6rh{ND`gcA||i*SnmKf=E<HY&7_dBKpeCuJ~jJn(UA
z>Qlj9s^ob&RLH5NHFBt!L!}(5=1?t%{2U5$I6sFAawrsq^Kxq4UOA`M)m3uJ6`Un_
zw%|E}=L(jsg?M`68kKJC!W=Hjsl_=rzg!X3YOn4FR?neEPOai<<<!cyrXZJmv^+f+
zm22nJ6G1GcP7ZZNv!39^IW(wW$cLz@d`V6%%ga(V$RW*Aa=0vq%X4U$L!%s8<WQW$
z6*)A{;aVz8(VFDcZSLm6n+i_|UMYB$;MIc71g{Ysl~=%2&CcW#izF?xx=sk2*)oS#
zIT$&ZIke89M3N+P>b%L@wbX2rQx_7sG0|uriRGAQLN3mURt`=Mshrxm*kV8?p`2$`
zT7%rp!ON*LMb8}k9Dinnt~p$vLy$w5L%ST>=WuGF@^VoQIa)Fo^YS>Y+Lje-AM<H}
z4w7xBoVw4**p4}MA9+F5n8D5>>>@cZ*iA_H9O4{GrN{Z84y$oP4maj-3wv#?c2iEd
zWp>TYk}a=Ja2@_59}Zlr-I@c7?jdppxwE(}rxwGvOHYyTYbU*P+{NHQwkU_Ya_E!8
z-8l@%sV{c&TN8bA=$}*nQ0T|*u8^Scp<EGzd%~i7MCV??`veCH-k-w*IXqb<F>tvt
zYlR_6@Gxzj!!Qol90up`cusxcgvX;f3@PXQ^bIAC(He)F@+&$|h`fvsXLscAd=6uB
zs5h<I$Q+)|;Te{a!?*p5a_!@%a_XN`qjDH6WXjN14EE?>iOM{l&EeMe@pFQdkIi9R
z4u@zQ$!&ZNpGm3-IlLfbVh&RzipnpFWKs^3g=}u73Ywb3{voZVvAsFW$YEv<ALX#~
zu~xHkn4RM<v9KnGIXTSDVVUGJPmncPl*4@C3(6%6g)AG?im{7xSR%otg7XF|A&=!b
ztPsgc!Bv8kZywlcZ4T>l*p|av^#3`m&*9Y^Hs!EEbT<AUQ{MqCMe%&SFR<hsFCbZA
zhv>ix4<4%sA_8yo&Q5+Hf`F2<Sy90NNK_C(KoJoWDw0$LQ4v7}6Hzis&Px97)cfuK
zeCPDJ=XP~<b$4}j@9xa(bVhTfkVpGeU!9SJj^=z(fG-QMUL;>-<m(t$;<v9wGIOcH
zhBjnM>C$h#kmf7<utkL53;s}mO+t!%zB!{myau*r_|HOq5-e)smrPsRxmurSO9%cc
zZv2e_DOtMuj{^KzfF0ueoeaVP3>(#UR{?exV2=p*2{H`!7T_=8to8S{(Ebd+eQ3_X
z0`S$ihXfA`9uXYgCYSPm3UG`YR2a8~z34hFLAB=7;0fvKNx@SEIL&}8z*#ZdD2#Ij
zIL~zyMro;aflIXjHwtjE0GFi7zXiA=gf{;xz-8g1q877ES0#H*u+*nPN^Ww)4<k1W
zpBSVhOGvh0i;-=M2`M4y7o<+{Fp8>|%t+|lGGUYrqh=Vj!u)-N@={bSj0zc@DncrT
zQ7Med!e5A5JIDPm-l~RC)G^wx9!8B!ErgLCD>`A^5=MQI*Ac8MSTwEmGWv`+T4)eP
z!;Iw3sCV9R^pUoW!)Ovlw=jQbdlMQ6d&{bM7>Z;mX&Oee3|}6#&i2f05k^Z<YZb=r
zVW?uWgJA10+Jq6zw9+n&JA}6tEb0||k|){rVKDfa%@3m^xd=Ojakr2=!?;UGQ6zU3
z-c_)R;5~xhX6EtU@c-6J_b_@$5o4ZbO!o{U9QH_o;Hi;0<U6C*`+o&vVZ_6DHH_E7
zNQ99L<B>2P4I>qX7RJCZ9-^Pa&}li0-eDMFZ@08*r>f5kd)uQWxIx}w#UdvRS9A&m
zi{3~^`Te5SH;g_ae?XA(H}>Ta`-SmXOnESj{z3*6SvVP>kfjfYz4srE3S&?hgToji
zriO*lLf%p}Gz`9{i)u{6!x$lTM`rAwj#{I`7$e!SVT_ZyMen#PdcWCYVLTqj<S?d$
zdF=vEhViU4M{5ri_@APGxc`T}H;Hku&q($0RIBQ}|LwUj59bBn6*eJ^7sGf-N+*W#
zf)IXiP=_x~eL0LZjY1#9l}Tam4STB^`}wL&7QMo(v^7<_N68*}>D=_N_jcJCVazO&
z3zm?<&JJTv7@vi)B8=C=m>b5DFy0M&uX=kUj5otr5JuH1zIpUgzA~S4TG_|<q%D;G
zRH@=yEM!p_ZwYx@kRzol-eIuCy<XAO(lFi&<HImMlBW6AvSnes&w!Vgky8HysmR`b
zEJ8|HYk3$`QR5S-LdmB>IO@;CSQ*AQVQdUzRT!&Ds`%E^Ct<ARoL2RH6~-5${G}jY
zR?O-td6OQ=x-h=xa!V?$E658`#be%kFHZ!%4dc5owuG@&`tyC*dvhS=o9MtWHj9uW
z;^=-9UNj>=h4FJ3zlQN!7{6qCyFH9;8D8`%!ZlTVze_E?OqfQBJhLN=o!k{8$ckVW
zHxnpK7sA*b#-1?thVhpOPlvHDQ~LR#oc&=O2;-ngjtCwSJj{xxg7cp96OW4IZ^3`K
zhd^OE7RHW)dB?*zA>^dUPYF^^g)^dmR`8r4`*U6h&0Y-SlJI}SxGdzqjLzy?{M5V>
z##L^xBD^kmQ}Bi~!PB>?^Yekc><DrqC=)^1h&SY1!Qz6&1pN^leAhF`R6-;rBPb<=
zlF|_zlhSe-NhKlW1uF<vjCdnGaVl6jf+`}Z8bOT+=)G!^rJd>#&s`ifIU=YT@w`+^
zutdxvuM<IC>LjrziFy&#k6=>*KP1qA79!{t!+kL{is04=9*^LO2yTm@aRlun=n(M^
zoNXf5N-z+CB82j$LYhU;Tu6(Iyk!JOAMjIw>2?vS5wy;fwh<DH;Es%>Z3OKyJTHPn
zQa3+>ju8xvU|0kpDeW0Sfsi`|?~0(4kh=vt3w9B_N3g5ly@K5Y*`NC&=$_#{B0$Wd
zFdXr|KPMwdMG%Q#YnH;L5si3TdQ31L@wW7YAd9pJ(h>BI;Qk2o2#g5a2nr+EvZ%%E
z!uDnaRs;*{gzN|$5!UM2o>`VQi&?!ylJ~wr&4G3<g?%D;AmW_>)jxv15uBc6@Pz~Y
zgzy8GAA%1?V9r;6I2srb!9cFBw}KBv@UZlgCjzwlJ1{7M!4a%KowvAE?hqjxryHGO
z*0rw6@CZgmFe-u(5irYC{Y2jA3?C<CjNn*79<cj}kVgd{6MUnwXX?oao{HekDDH~l
z=?I>QU~U9&L@-`-cp~R>LY|FaO+_E|pO0Wd1QR28A%a&Tm>R*05xf-PN2l^~1iyU}
zOvkLdRvY1F)+Eky%$h7XMUdHP&#KuAyt6*1MKC>r84=8+g_t!jX3dJ=zuf$jON`fq
zyedeuvm>DJ{^h|r5xg!9QOJ|0=0z}{IuTrs;LQjYMDRldn>j}jEQ;WR2tJJ9tq7X(
z*^(~pmvK-#0&jD<-OO4X!8;M~d)>LR%904)jeumSAjx~IRZ1c01Lge)ektxF`G|9L
zI<PW=RS|p~!SV<`iD31%5PuSW8u5-};5lwbJ`H{r!3wTonM6u>!U&^oHC-3Mml1pw
z!R^^Ow+>U+GM4hNCT4vRL9xCn$+`%>j$mU1-*Te4^s0sy#6y&mY>@0X5nR|BWcE9@
z`+!=pYG@N}RtbGCI3pRNq{&ag9~p-nNCf94s<%e4CxX2Z{1m~@97_b-xMOgod>Z7j
z6x%u76_h_X3v<+8>7TNp-y)b&JoG#3HV85MCkL`Dc&=G!2feyV-O1%JQ{5%}z2z#6
zJh343SH$~$dRqLvFM|EdMzDB)KwT6(C}eJ99E#v@1b@b?!j;AmZX*#?cqRY2Zc3we
z?f;H|_>bT*!Q+A_1W!hAN=T@9KGistXCgSuFuRe*R5-&=_p)^!<aZ&0ixFIk;9psE
zJWlALgm=<0SK^fju14UGqIeXX%4-q$qR5Kkdc@1#5WFdPHfB+h9R>eKl^ewm#eF$(
zD<_KelT=EIiJXKXQ9?{1ikeZBjG|N&rK2b#!pc#U6;eKm3Q?33e*AhiEmss?Ns!qZ
zajVu8m842WQZ<TdQB;p&e_Ow&AoAvMuUECAs2$~X477{lmMEGY3ABu&RTOois2fGS
zC>Bf%H4r4JAI0B)2Zmh>G>oEA6yLrOx|LO;Xcon7lBJ}vkS2nGC=?-g#w`}*P7F1V
zqD2%WOf*IO=0Jet_9&8Z>%*u@u1YJdqi7=}D0qh;OIKeH<VC?g?4PRUN3r@^pnVh_
zgbZz9G24;DoT`QdNm!**6x-`5oulXy#ocsiEoEESPsu$|bdBPU7}~~gZxr34_&kc0
zQQQ|r_b8r>;;ATlMA0*f{!t8wqJS>qxr$L3Lc&o*ghT~ng7GL49E)%&Yf+?x^AK2O
znbMM7ye(u#VF|xq&=&01Fqb-xa96NUuve5<JiOMKc-mth;SWUdh)DWI(Jxc_pb#GI
zIxvcdq8J&)s3;y5;jk!%M=>a)IXH?T89r1<P+G5gDr<yf$NI91S{xn4m?*|Zu}Th_
zq;Q-ltjYB~lCkipkjDfckKzd-MF&$p9mO+}eJ6_XQ9LVrW)wWT^SLNqih2i|J|F$x
z!I~4KbYc`Q2w__<3gNlHFAJF@I9YIt;46Yt1*tzx$aKLO8MCvZcvU2?MKL>yIZ^OX
z-J;RG9>shqnk)E*;5@-4a>C}D!WRfG6kH_umLQG19mQhdMP~;uiQ-+!E{)>jjLv&P
zmPPTtkPkBQ52N@<c+t6~w6;8oPek&m;Aa`l6+(FW?J7ol)ccN6KZZ3?tc~(`2n>o_
zUqta`lrO;dIL|ryid#(-o9XZ!fpvmk3$Bl1gXnxCxKZ$1!S4jW7u+Psy0rFV6kDSB
zDT<$?__t)SlXojyquv2SOysY<uKps~ZBab<wpt|L9>uR>;WxqG1^*EIQ*ejiPC-^-
zE4!oE6UE*r{)*y66esDK-GO~v_)+}B<t$lB4hT6I#UUYw1&;_G6{OC|7ph;svm^=A
zu_%uJfAUiqem;uR!p}r;Hj0VU{O7pdhgWA^)+(xgA&QIA!%Kqy3jQZ}S@4SBRYBI`
zD6U6wBZ`|*_+sFf|LQSh#gH9C$rwt-yq9AA)3s$zjDJ#YnJZaJiV5)(Gm;WQUW!|#
zMU%?qVknd0Wrffz<>h0j5c6idqF^P#%7Rq{s|r>Vq&_ukNXH;pQ?Qm`Z9(?=mKf>?
zuPazju;N`Uhv~TuVrUriVy{sQff!FTz^yS%udCb^LyLwXrp7{=#IP`KG21kTW-+vi
zVPzt>Ig4Uw8S}m~GmS{)(k8z)cetF*EWbzH9)lY5zC5%RBxw^vP<Zh#^O<cILtYGB
zW8N3w_A&5uoBS9$#=KKwI>fwh;Cv1KBWDAl7&^spcMNyNa90eAu4eI@A(5$b%scn9
zDBDH&J%U9#G<$Chb1!6*bdRA&3^n7Z6-Un)3SvA%$7?qnLnOxUmUt<KXbiC!2E;Hh
zhIkB#7>pRq7?LrhV&1ybV^|!>)r5yi`qI=q9bk&J%&k=0`yyw>V8_rqhWle!9k*Vq
zt+3RIc?S-<F%-toytdLya1uh~wAn|j^^4&F##Jx1uOLZ&U-dyLqE3HyQVyznD29h)
zcqE2L830l`l;e$IFvI3dV2D`e0c!W22@IzLb9|#kXN2I$jI~ihc(fTUkBMQdWXB1z
zF3&xDO!$*AJQc&^5)V%hNBDn>TRcRMwVtLz49{^YIm`#Vll8{Oyn__U|E;Aw&(Gi5
z%7mDAd>g&Qj!l&Ay&#xh()V%<lVW%`hNUq~j$uj+Z^iI-46np6HHJAcye^KN7Q>7f
zW=dzKGf+=wvFTYcd}ga8vtxKQhSy?fx+{-P=AmqF-LLYD!T}@wbEV4olD>J;;u|sW
zP(q%sH$R47Y_GR(ihKd1n&CvJW&0>(B3T^6J25N~3tG$E3hnqB)ttw3bJ)brIsW%z
zSQf*_F)WuJ&bXHQeheSP@a3SK4;d|Wm5XufBdPoAP_<@S{UnA@#XdW{y@apjX#Zz1
zjIQg=d#NqK&$*6bSVbSwS1}ym{vX5I7=DalOAKGoYz!M?_?9|1vcHPqYjN^jTY~Fo
z_NM2J^)b+&8$=#B5d4O#_(1Tly2^JF3H1D?n0Nl&_mUmzdSm|~hMR+OHcJ)8z}6Uk
zis27tV_*+|j(LY0ZWsMu1h<I=#_A*foL?E+Im&M_{4QgpSJ?-K+4F<_J7U-wL+RW6
zyJFZA!`>K=IKlYS0lkhwth+V%7pGfO&t1vg7X!0QLwW3D42NR49K)3u4#&VnbSj3^
zF&v5ED3>R<M2Vu~F&v|Nc_^W@$S5Tzo`~TjFJELUjI^#dv(LnEHik>mw{KGFImVbj
z=e+cJ&y8%VU5MeLl#(-0InsY)_)o%v17WOQjp14hRpQ=aUpU%-oxX~}7xxY&ydk3_
z$%-R8j<Ru-6SbT;{BabIBR7sMIZ81RdexIEC%Qx&W#Zn9mlP}|$ZY92z8I84!o&$J
zA4i4w|K^l+E5=bt>=cc+a>nK+e@@jns>M+~BdHPh0)SPR5C=`Iypf%pWz>$NTLSkb
za7!F@;;0)(y*TbppmPHC<7f~^_c(gQ(J+oiaoov@aoigBe(8*Tr^Ov{+!jaUIGV&U
zu%XgAjy7=w;&`f|pIIf2rXnYA7Dsd8Ed*O;<gJ9<9)~Jq=}6U6J`>=I;MNq3gPfjh
z8%Mi1*kWEB12(7~g}0BRgOGedmL8bu4~fFEtQ@L!ihCc#_r%eaBZ{MQ98+_=b4j|y
z@k(|MKX-V~h*x?)Z|uL9UOf|d(XHMs?)|R6FYf&YuUDd2&o~O=csS0_S%l+=#9_r@
z#}SPq7DqgeL>!e9mb+T*zBkZ$SD?qfKr#+J4uj3@3Z&@&zXDnuX(8mNUdcD(c;;B(
z;N@&8Ftu+4Ck{7`{_J@ih2*Q%`{`i@&pk@7I37P9=q+4HSPw{PU%_W~2dLR<Z=hcs
z#0TT}dRKrXl&}U$E&gbw{fF3@ghetqjv;Y8AIF3^hQ={0jz{8nG>+k%-+h4*ag2;(
zaKhqnM$y~H0!(9sjE>{f$w2P0z}Ps(F`N<>EuZ5^EBYRzyAsxuoN=}&oY^OY?Coqk
z9mi)0>zO#lOAl%MS?L%@^qi2N5*8JhWm^;Dcp;7#>73nx@#TFl#qn|+yW-d_o}3iN
ze9mSZY;<xQQ#ga1%{ZpTF*A-?aZDFA4s%8vC9{1b`^)<pcTrxA<Fz<mk7I5ev*Vb<
zSS{!KyPT(RXBXw@Ux5a@18+#(d4etOQD$~kz9<)>!h$%z%;1YSzKmm09B;+(374Lz
zy&cDrINlY$SnwS|qr7iv9Ph>Pkz{FPnUD|Sct0cI5GemJj{OO1^=@yDK8|B~rt~Cz
zlHs2VSs}<lt&C$;oZl9_&|+FEWQ|~M(&{9G`YMifar_d;HpW97>$%m$u{DkjaeO11
zKg6+7$R@#W1-}#gUeNOS+LiMaSz{}kMfhVJ{Z4p|GO_3<5&kSlN!Rk;h_*}i&p3V+
z@>?9g3;Ba{Bz@yxdv;c+xg(C9Qbe=N?ulbB_r?T@C-9d@j>K^^j(x(ZuwTdl!Gm!e
zisP{G8Wns+bNzQ5|A^$O;ITN53&goNj>mCABqtfeLb5wlr$MIEl06g0Qi+7~lD!ni
zzd|m=aZyN41#f6f|HW}xB%jJyD7g{`J3w+Rj_Xo%BaW;DvJ<!|Ss!=NT>(ZEF(-lC
z1d54-+5S?Io-Fcni3CdWN_zqg6DXBH=>)1Jct{z_Bv3YiN|{>a5~x7?9jccX$(K$1
zG*vNES~RrE2~-hD)r>qT9j=i;?TiFMY9>%i$S|3{TN0=v*}B~MGn(}hd}W{4|DyP8
zl)$YC+@64%z-<XM7PV%AO%hNtwE_wJU;H#p;Jb{+nkUdAftCsM6-g`6=VGV*)(Nzc
zY=;Db89VI~xI;LtwM}63zW+sFo(S6~@TAnumu$xbLJ8a{{4RDN0al@9ri*Q=*G+nR
zV3&k<fKHv&YS#qr5q{(oKeJ5ta`>y&oYnsB3G_(dF^=@lV9x}qE(u<HwQb)73K9q>
z5D|%$fGs4N;PFhJPFye{$ZRr!REBE_q%&Mka5wh!O~Iun^2nJSHY&swd7)r0!QO(@
zxj%tE!XL;;wu}$4Z~YQ@FoFIF3`n3u(i)h+LkaNUOMcQloWP(29^r?3F(sU|1}89#
zqexmq65w&_Bts=jK0JXD6ed8)C=s&s;wuJ^ryrfbm;^}13X+Ty!dj0eu;+9he;o06
z>&Fv#f-{o9Qwcnm!1HWN&W7VLOiv4cMsU2~vkAQ2Po=_y1STeMGFSONffo|q^R6!^
zFe!l-6L=}%{j#GP&$l9(oWPU>zDjuCxL!$MY62f7@KFNO5}2OAq6E)j$BYDKCNMjJ
zIaGT*e^vsoas|DnE@`Noouj@c{M%rNlGhVFs7ra1(Ku6`o8YGyuG|r#glV1>&1Zzn
zRheCoz`_J}lu%yisMLF1?G_BZ&9(eja7hC13Rx`pj^Kj#gG&>5FM(wVyr00~<?7mZ
zgAF?=ygagUiTXhT-QQ6MBrWpJi`1MZ%Et*@3Mgw6Sf0Qq2~hHBf<Ku(@|hsX3L&2h
zuB)%CN?^6{iAjs4YZBfu$0T1QV3rBd+LvOpTWR0A1insSeFB5O3^5p*oX#WJkia)0
z*(ms};CF&7JzP@ZT)dIAHYe~SgCU7wNo+}AEBAyX8YJ-(S4{%{C2%=`UlQQK^!pPy
zkifPCwoCTc1b$E85AHV0gTHZ(7;HNNe@f9F!5xA-1zEI9$nFG=z3*q1X|G8B;y%+)
z-6#0?#VpDXCh&Ix|8R8IvkuX>2^`^W*-u?3O&k?I_-xj(1db<gk!l>&S+C*=23P{8
zq~duoewrOlT4w}F&L(h9IIS_uDi=hJ4Ha4VSBx{uqALkprT>%2P2ySt*AvJ}dVaVe
zRc>+-oy~es+NIE!L>K8idA6w0NU<dRNz|2W@gzzlQ8I~ANj!fsYwp>si0GG2qD&Gs
zl9+lnt85bGlBgp3^hx<7DkMGUjJlXbtSFqMl90-Rg+o=gST%`iQmeXPQLm_pBx;JJ
zmSF89-=U}6B3MU|byrsO5$lNpdBY?caV$yPlf<n_+$Qq2Ni<HPiSXN#2nb=V7Sabr
zvQ3j{CZu_hT0gaRKd)~sCEF?q_KK~mNwgM88^JpSgVGs}h3WaQ7ar}B$V;Mqk{g}Z
zXQsQ7$QRx*BMAw)GYNK^3Y{c-cM>$xS$I*4U6Z&siTkCYZb{siL@bGT65T~7EFJ5S
zM9(A&M2D>x`K0`_p@`_vcr?@hL=wp)^o%?uRkTbWsF}`a8cCQ^YKb!E*B0U=;j)v$
zdkGfxv$t?sn0X?vPZAG^oxVvtBu4s4_CewOMRS1Qz)Y>8Nq;zrK}ig!8;7ccshr^)
z)bJ!mB=LR{A0#m{iBU;BmBiCYj80;Vn0-WWtl&6l?*Clzs0bfpEeYDklXyZTPYP1)
zc+z?%iSbFyN#gY+o=xJpB&H`ZLlmA*;^ibJC2{e3)`TP`N}pd4d{OYF%qS*y@RrzQ
zE{CMIsHbG?zak!H(X^y@L%C>zW+pK!iPw^t%@Li=njn39H3^0jHMjkjO=RlC<tCE1
zl6X6bH<Fkq+4)H<NMfPzH>Csg;UdYh7DrmN50Ebw;S$k#C!_gpMssNr?+NFMTP7|d
z`7nu(lGvQYk4bzirE8P;LdfzYKFQSmG>OkLe1(wDIns<|m5|kfYXozh+%JW!OX6$k
z$yb^FtWRP?5}Ty7D5B`4Z=`f%65k5>PVjp{1|)-xqx&HVU&`AIw<NJOiQkjn<10TU
z`R_}Q{F?M0FCqCwvfBjt6w3A_em&yJe-la3vnziHA66pg&my&?_q@u^Bz8%5{HY-I
z_a^aI5+~C*mBzj#_9t;x!#NEHk~qi>Cxyl-97=k3^va}AHig4U97*CR`<%q3B>qj}
zAF*~$kOq$lIiAD`Aty8PQ%Rgo;tY4xltneBvr<%Xap-&!7dUIr`8l+U8U2M<1OFv)
znGeSBZ&4}l>&F$(GssGL*Tb)}1A7D41g|Htv8Q??iC1<9ZwfX_Sv-z8JB8d7HWVw?
zK4s;kK;#o~Og&SUKZW9Ar$h=RQ{KaPe7tSpp&%`n5_#zqQU!iyIq-5R)K1}+6w0Si
zA%%)5&l^lNQ>c_e<rGKcNe+sTq-qM)QmCFnjf`foX1Nd^{WDZlx0Ym&mh{z0p|0>o
zDby3vK(M|bl{rjeL&@Iw&8vQ^G)mGWg#i1Yp|S=gg{CPyox(FIG!u7qN#ULpny1hr
zg_a`8^PGTIDcqidnnLRo+NH2ZS9w{i4M&md3v!sJvzWajg|;d0a@m;@J|cxICE?Y@
z4k;e#jtw`m^Hb=U@~$_&_lW<w5&lpLcS@F$c|+Q6FX`))0<R|BokHi7ccpRc*5L1D
zYILPAg-23&G=**{+?T?`(zos@^hm)>!AhZL3I!>iLW@KSVYc#(Ka#?xVmXX~R@uI&
z=#$4%n5L->>nKT1mI(C}Z~S{#+q4wYDO@e#ab8pHld_BysLAS-*eN(E^hx1?6kPhG
zq^}oy&Owd#7p5?HUWk_;d6AY^EbmW&m#le_>dxcAzA5xeVSqIBAbXYVT_x@>*|!Jh
z@UndJX7)hp)92Z~qSC=5{DYXStqe}#gDpX(Awq_xFf1b(p27&>BLznZjuspv$Xa8C
zj7y=|T9w(yQg}Rtr|6u3|A`cyWLTaFY#fxcFQL{v?0M<ombvT$h2x95m%?I_6rM}r
z`4lG5Zz)VqVWO0V2dOU#c_D=t3;nGAQVK7pFe!z}DZIkvUt5`y!nWPs72P@hoTht&
zuO1IlI8}<6osq)K6y~Pz2G>psuhMv3WljpOr4X#Als+0P-_B1mn~^ZUBP@MgbXtrL
zv2@Qfp?N9HPvOlJkK4u~n(d=9Efhk9Z~Lf3O5PF)v+ty^B!!hJtV-eC6qcsEyBo_>
zcu&X&g3D5PpV8Gamp40Dx~`7$A)`H8`AG0%LCPuNkU!!2+8X>ch0ju0A)L2_K2M=<
zZ}pp&nEqU7bqZ_PIyb-+)~4`93O}T<IfXC9bzh~hP8!|N3}2_PK81}bd@I4jklP>=
zq-QJN&_Zp6<U8&;*~+FA9!puArti76?hKGH9r-!<BbOfgkixGiY?Y#4#MDphbLkrF
z?ay39v{OgfCXKEd?C+zgtovIEJ5t!0!tW{k;cap1pR)A049R)RgLR7*$S&#jZifAq
z;GPurik-g%>63jz_6r^mJeWe^C_jsiq;NEa8!6mO;qMgwN#Rlo|H^VWmcoS;E{f&j
zGQbmpCsQ~j<h0-!!Lx$r1kVf7A>1_RoM}G?*-u_J|1X8hV(n_myK_Ndi)`N&?qG61
zh!c7(h3itc*v~-@pH+MsvNi9+f?dth5ILMfd5(r$4aG!WTtf*BFV_nB1$m3%(x4nF
zcRv;^sexEZLunyp1Su)2p<ITS7g9k(#f)Tj%BrHFs)k22JSt68(~uNWT|*5G&`?uD
zYYlBQ)Y4E}Lo*G{HE(I$qM@#adcx}nZm8?sk*u$wspj1aYoPt_4rW7*C)EFs->Ts@
z;f)2GWaI%MilDEZzvzxw3(4NDd3WVn3MXl$VMl#WLDfLb`nd{)K@E3k=&Ipf4Q(|v
zoR!~2!#x_>X~@&i?MiO)VE$xBZLfjYK`>viqhLtGokCc8mxfLmez%a$8b-|Ys&mvF
zY2^m~N@ugWX}C{AOyfb%=q`Qhp`oV?{Ftq}j#{80EZN3qvY3r%h-%=CS9*pDL=J(w
zM}i)HKxO*l?_f%UrXj6C*YJ>rhcy@+%jqmvL!ky!gC$dAYjA`xRJO^-#NQ=+y;v(-
z>8qiihTa<P*U(4v7AA!cX!vfjpCL;9i#guS$_F*{*Dye;46LV2$W;akr=0rC4$@Fi
zPZ^?NsD{Cu_oO;xgtvl*Y2IhY9cgv6hT(JzyH`gUsbQ4J$s;9w8#Q(K>8vptHe@SI
zV}*<pWCtG8@VJJ#8s5<GgoY<&AWsVxeZV~>oEsXIpAkNusNp&KB%wa9@prWPitq^<
zCJLea1tBjAz9jgv;3UDxf>Q+B)%Q=;_~8rQFl7_d#UO3Y5HeH4EFrH7z9u+ZaE{>X
zf?U6>GEc*N4XZS))==_v)|=AXw>2!#kaa0*Ay-Omg=vw7w}emWr82u%!#f(5h~zyD
zU8Z@$cct!94RuP_V0M{?_cibC>IWKDYIxK8fUrK)@R0_Rj|EAV3;9IDry0p-LRJWV
zE_nYhLE52(H5%4x*skGM4PR*ZQo|1#Hf#7w!#WM$XxONEyVKXwll2<fpU&c!5bq;E
z<n-0I+>}cCxCwvHh|;`|EymLP`~CcKwMheSaWXb2{87VJ4L@n#9=?TU2j%b!3AeJJ
z#qu`6Uo`I<8il;O%__fX_+7&Z4JS4HLCYHUYWRyQUBgZdyEW|5aQIlzy9LZeA@^!o
zi;3ZC+{`XLKeSKG9@B7K$bP{C(#eB@hiE~_5kb~Hs^RYp|3?VF1@S9Wm#Ck?&u@Jj
zQx-o-PiZ*Kog}HA(eU46A((3C(lwYpui=7*m(qASjf)yCaml0+PUByyY3Ptfej1lG
zT;YzFM&mTDYPiNYNuyNSyBT_&tN2FNO|DZu0;=J4D2;aH`O?TrV`5DuJB>e6R<Sg4
z(q2(6TiKDvMCCp^^89HO7ljgnH74=1(kh)snKUY=Q6-J`lfCCf%SuD#(kP!sg|zof
zX+=Sj#Eq;<!ucpEvsKfmmd353U%94IJ&lHG+%{RQk>=M1iwQz%rcp~s?Tq{uA$0`n
zrcqBw{Y+^CA$-KNQ5x4KssE)cVoA-~38hIIfizmD(S}2iC!Ccunx@fAdeuCQ7Sb6$
z0oyW-TQuu-$&$2^EW4zNgbrz~SwZ1<q|r8wE|b*0n}h8{(msu4YrGcoB>T{fEDn|f
z?3hL<jl0w6Eb=?kxJwAFvBgn0vN}ojt0`)iH0}}JBaN;Zoo?);@SI61&*Q#Nc=t@{
zy_)y9Y|pg!)GkRRjc6Kn8crIqG~#LKqM69(Cxv|8%b!X^6MnF`FD-;qKwlYYm}z9+
z$f|oI+e)KSl%L366K)!XX^c!`R2sd~=$%I2H2S4+f7*L;m?I_j$;|izX>6b3Ma6@e
zd1q<=Oz8k21JigYBY8NDK^Z<cjUgF6G>u^yK0J*P!ngIVPRpay7?Z}+X*`q0*fcnb
zacMjv11WmU_|Y_;5dFu}xNow`^tcfE@JUhYrCCpLESfcEjXFM!XVZ8-jR|QyC#75$
zyKiLeDS93r%0v;qAUH;|UgR3lto=8#s5U8$$!V-gV|5x+MB$Az=B4pU8dKAlmd5ln
zW~VVn9L4FTGiRhRQ#5CB`RvGhm3&9uYiaL5cCIfXb?C9zMQ5(y!W9OE^V4`UjrY^|
zAdLkge<zJ4X)H`*Q5tWF<ZVGJzbV1LI1Nr~RBZCW?03^xn#Oyg^MlOnXPUK)p*uw-
z`7n)-()cuu&(iofjgn1rmrJ*4ZI5PsBDHqCtTL)8S&_ys*Rxlq@wv!bukj+VsAx?Z
zYt#5Gjo;JwB8@N8*djV#rLiuJjl!w?H3L-~LcTtY4QYIn#u@2$v9whyZG9`6-wA%7
z#wH;@$h7__e6w(FEJZ=MHI1J{{&O0?rqQlg_Aip9{cS?F3pSsmj;N`OpRE4D4S~TU
z!X0!}8heB@>^ZJ0*Ryw}v0Eezs%D#md(-%fOF;U(FOB_DbU={XV9T_(QVykYIE^DB
zWcHslj%N7ZLOQ3dV;RYDAt&e)D4d<s9DW+#8`xyvY#Qg-Hywv`oKNEdU8mz~9Tyn`
zZSqn&G#!`t5s=1zTm`p=u5#aF^p;jGr_sNf?@AgEYKl?KcRh_8++%e#(s7e9rlYiu
zGCHz!Wa}uQ<CXn^EsKIVI#%ru6w{Hb<K6QCCM|9GML6nGptz`=y%;ESF}tJ=KFwH4
zaO{79vO3D?D1JFmS4Vjr6?9bBQA0;X9hG!c)lp5y?Cwfs(I0&=w~CH)X9AQEaW&8}
z$5;1kp!Ah&=%}fq{rNyG!Iv&(kLc}ZL$!6>qN9!uWvE&M`R)YO_$RN_*}#u4srAHW
zeH{&SFw3;7gK?{l+jQKeqmz!tI-2Ncrz1~CK!(slM@yR0(NxE=OL@(7G#7c(0c!uW
zRq9e;-G6zlblk4v4jml0s-v}zx6TIINcNA*f%KCGvrIu9Ew1O1wAJzLnLw4#g3qR{
z^Mlp)IzCAFLpnO>$k(ysognRG_f$I4;XRd;X9MRP|DDq4^d8FHIy&p<siQzg7ajMA
zC%fzDs^ebv`Fvp1G=DcCH`fR6)A9HAAcdu0%#RHX^$_Lc^{i*l1;RQaI^XB7#C6nO
z7>o+W#6Qe(X4Q+?>_$SzXUl>~I_HbvhZFMCI&>Xx>sYLNe{3;ym^v&S-<0t&YwK`y
zJfma04p&E^j&U@oqnGaeavZH=jE?QA)ZRMo*U?AE13LQZ7^&l*H`RVR9@M>P9HgT^
z!>pXb2W1CRVOeMZ{qsT4w=)0ZS?WVN9?p~&R#65^l_7NOVei4(p^_b@W4MqJg0$Is
zs(+L;eRQ<S4)9rJUY#4O<ITQm^G8CfF9jdfy^EiZ>)zv1kLlihTmCyH_HW)3I-b<=
z6gBHBPwU|O5YAuE>lHGtmdmb^oAWH~>v&biYdW6SF+s;<9aD7g%jZNLFUhE1(DCs_
z?~%n9b?;j!3De8$OiAA)9XB-ZA|bEry`p29j_GuZrcTwptA8X_uIADd`3xO1#Tx6*
z(y^sb9t71fhaJ<gK*#Gk<}xxz`+t2iM4dNu%oqK6I{5vTiC>I|kM#dG#QRyXP{*Q-
zHGXG)O9yKe{lIxg#}W=x$NQYhJ3XH;y{luX_=o&G9Un#&{(1HT5*-ac4zAYm5yz<G
zQ-+G}{hycrYhKRb<SR^{=umt5NmeizQr;hRSL*mYQ%dDk!YL=GwKZaMt>71eUkZLD
zI6rNz*Ret8#Z_$VuYN<6sri))O2>CPw$ZV2x%hh_KM8Kq@k2(wnF~L|x9Hd^ymAW5
z(-tfKEY^OZbH-HXjBl6H6*ux&^w5o_zv=M3+v0b@KRC-=s={~bU<kc-fAw8D7GBHS
zEl5J;z0yy1^)DU!GJHSR4m+H-o>}1^Fs$ui9Y?rh7<k*jQ7%|669Xross0c7-oSOP
zjvneU;rt16T*nC=Cv}|Caax4ebe!RiC;y;1D}>R@2hq>*Q-A}^QZ5Ky6lC_2kbiaj
zmyul7aV5jAawlBcl4{2*`Pljmegtrg2C@v?VW6#nYy&w4zxJW2fn3AuTRj8y4HPrr
zH&EO_2?ON}ls8b)K#zX{Ol5?W5-e?C&9o4OWizGAmD~yjDjKM6poR!5304uTZ16+Y
zqJCA$Rx|L*0ncXDsVYQriy$R64b(DFTe8<~1|}Z#)appKZbs+Pn}O5U0}beBpK_al
zh6X;m8E9mn^Nql*29EC!Y?!L%W+{!?lcRx-hXYLvRC+lSFfiAr?3@^CW`JgIH^3sM
z<_20A2p$cbPFpPvv@$T_K%k~iDWhAouNpYCC$F^#+ekw}10xRyC~RjS&%i?l9yZWk
zd}tUj4RkP&PvZtc?685J1{%)_-D%(+A>?-%=w#q-=~ZU~T@1{x7^1w~<WTP$0TQOJ
z2JSV`P1?QBK=(}DVb=nA*Z!wdU?6HBCPiTbk&F)iR~t8wkZjsOG9ynJxGKiAj3l62
zdWLhbmI2#99|I4tZ?A<M12gyL^)lcZxa~%uP=?=Gx9Fd%M*_VK^lfO}FFh=NFwj^0
z|F~}TH@v^;^)vW+VLd3^c{MaZJpB3Jfq@3MJL@yu8f4(XEM+*S`&wYI%-Rr<M5d}k
zWoCyN7+*2;yKW8eDI*Llo~n*CFp5R5sG}L52LjJd46)s@2F4k9#K5EM^N6+!4R5(U
z#sD)g)xhHho-pvFfx*0PZ{TGEPYGxCX#>w>_;>@)3V%-UdBF*p(uoFM$nY1rM%JpV
zuKRtH3`{n_cW&G;JjoQ{%&vOFxRIqyWB=t}UDFNBFi>wy+nI*<k;HqKvkbgy;57rY
z4ezsZf#4j$`37F++<lopSMUwNd4d#n-4lA#z^Ntbgs}#Zb;ljb=V!qp0|mp{K3@@w
z4ZLGuHJ7J>C5E^2uQ1SNOWwN%mP+<L10Ql84J?!F`vyussD2<wawg_Iphfbrl=3;`
z<pw@6yjM>!eJbQL1NUFg^&U|c%PR#}339V#TTE*WY!Jy8f?skG1-x#2Wni61$iEh{
zo@=C{#q2i*HX8U=gn706rz(WL<47xnSj6lP1~&7%v4L|2el)Pfz+nSN4E)+v*=pby
z1KSMzWZ-9!d{EKHw7gO7cF7(P{8jKb!QTb{D3W(o{uHu9aHrrd1G|On5!@^Im*76Z
z{etM{X9o@nCpp9(>J|ypQHHdE6O2ag3<i!F_`hC}tnaFv%+xw%pvcbYjO2`vO}~ZC
zi#Pr?@Sl(if)@>365_qmVN2d+`mMiu-M|eYR|KyLUK8YUxM{#=qNRyeCbCRqo4Cb9
z9TPbwa!ph+QQ1T>6MhrrOq4fKoC?L1QYK0ZDPf|d5DMS%d;j_@W1_4H{w4W_Ul}{g
zPjW{s<=Ey>1rrrTbCE>8E?C7xRTDKuUd=>x6EN|S;xGD-VGWUY^(#Y)EBvEq(I;Rn
z6SYlj&-L9`OZmEluda!DCYqQCn5b`}fr&;YZk3ATe$1mnLlf0}+59)+Z6=<P9!|~m
zH5Oh;{zm#|mQvIi#Y9u7$cCDkXfC`(Mv`M#x0_H+I3`>ZtxdEs(Z$3)CW0pJFwx#b
z2NQGxyUOO;nrJ6=^Gtl(Genzxf6U7_(b2?RCOS#cf*<ojCKg`Gx>K@sYANJ*o9Ilp
z6jwsUm7-mu=pUe6P26iDW+HB)o9N$XqPyw+Ka~H6?LnWL2#dTxFqP};%`K(4LX3!n
zJZgeSmnKXkO_(OEB4rc&4{2JsCirl}Ty{V=VVEFc{|`_1-oRF5);2-2Pv-gxP4qG`
z)Wk5U)!W2_Ci<JW-$WmgJYb@)C>K@iSER-R9CLjGObj&tw-Y`j^1<w$iHC&`GQoEU
zaB7H3ab<C?k3HvvvJb;ej5G0wi4i77n&5<vGBHMKv2?Ul+$;e$RyZp@YT_{y{M+*5
zqGo8hMc#hG#FGs8TFO)Ga|s^_)6*j1Ts&*yITPm|#`%Zwyom`W{^*TAdt;)B7wB*Y
z1rA;`@sf#`ZA`N9vMFzAGci}lBomWOOfm5aJ85EuiJ2mwW@5UKR>N}mHVnRFia1Lo
za|B;C@fz2~$hNZ?*pGVel;eBky3X*(ky$0)Ffor&ZKJx4`6k{py&qpKEi7OxnYdu$
zqKQQ!Tw&sK6K|P#+r(l9r-=`_zBtz=-Zk;QiP<|tt#Xv5CYEuc-RiXr>pc^@<vKGt
zZ*6=aI=7t4qvppZmUE5NS3WVlhaValYB^n{&Zj0mV~}t6u1>SAYIy(ZU1{QL6YEW^
zGO^mk8WU?xd?CH!jbr|W?dLy&{AEPVFHL+Ua%R^tRN(!<*<j)u6Gu!OHL;P#P3$wV
z-^6zec+>l5&~GL-nfSrP--B{^BVe<Mt|fiHn%*s>A5HH!(H5~uQ(J}nB>1!7FM`_y
zw{z7<hfn+zWL@h2ZhDU{{9)oxQP{zWNUJ*qcM0wm+#|@My=+c6f66h-z8x@eh#OJ1
za?tc{9Pna3k)u0odiNck8RP%k#6M#EEH{K~<(P?6CQftuM*EM8<OIk5bMPdmY*&a1
zXJmA|Tfuv6>>+>CoilNslQ_aZMDG0Z$L1vy|8k?YP~5_QCN9%m5BiH)xMJce_jA75
zvz~Iz#C7iTmiP0M6USf2#2Y4VN@skQ7f4LwhqV3q(NMO99}IQHv!Qjf@^dY4zJ~Nw
z6Ft3OrX?)zL4`6F%33IC{qOE-DIujT@ZW{Jy;#mdc?)$c)U{B-LPZPJE!42UmyA}n
zP|foEQ$>(&uWEVssVU(tLS~u1em(>XH7(S(aEo-TmgP<E@$4D{4eP+p0EgT#rRr1s
z#CjIa)lpJy%mx<fTd)gNrWe=y8`8doTP?7NlG`jKTy<sryvCx_L@<!iS1dFY-b}E$
zU<<*8z8qF>W#M)Us)g1T-(HNnEVQvOxkOGo3waiT(#bn4w6*^CEX~uU|M#Q2y$mzo
zLI(@H3Cn*|9?elYTHc@d_$Wfi@~$UjpXNJ&akquh7RFe3r$Fs2*wsSvd|np|#lq@6
z!t4EL+-sqmh5IaYw_ve{7J68i+b2IQ3VU}2dvdxhge^oY{Mf{rU|2~DQHyT|Lfk^<
zy9_4EJFnrtuW+V!J~?l*P)!r0oLsl?)%l<yXbRFYC5{Ex!T?UUg+ghOJ?v%i)oLn9
zZ+a$VklZgteFPt{&{s&mjQ)cb`U@{oe#pYZVr`^_K^6v6Kdg=rg&`J(TG)R!NSkZ-
z<dY1uFkB?$ga62<Lv~%y8%1wi3X)H_5F9HNU#CwjjI;2Fg-0zsW?_bfnd~QTD4h>Z
zwD5w3CoDW^VUb}yW#Jid_|q2F8Wz(VJM%dU<2kJso|B?=5tWkX=_1LJzkMc1e34VR
zKlqY`v8S?_ZCRkcERsorlLe;;z9KkPaGKzBK@QC*S8SGrS7oA^ef?72Yr;A2vn|ZY
z@Lvs!O}t^@0}CHYH|ANGZ{bY~Ck^Yi^T7oc7FzuNW-YSt9>=mLpPqcn!rK-WQ{Tc8
zwkYnUochGpe|kDgMMwv-$}*|=zF@P6`jLf?E!?!=v$5R5Cl)p{t}J|N;WMtUKKb8R
zV8s;{R$5pk{Bthe>v<Hewy;JdU(uR{TBb!|Yr!upd?`hg^f;HdPWab?>of8VLV6dd
zY-OW`Z!LT$Eq-rdlMFv>S}giOge28=2e(+*YT>Gddo27UItMaQ_p^mxENru|-NLUH
z_GIM03E3g|yWk&Om6_59Op7zJ)55NdWH;lgz>9XKy%zq;$oC1^FMVdwK?{d09JX*o
z<YxtsS~wx(Z$Ya4W8qkaA7>QF@}c~s2v1o!E#yo_=l*J;bHdMCxM1O;@c#ra3H~d{
zE1WdKbXl@jxC&$-*Tg5+1?zS)ZV2I|Q$Nc_DI2A2WZTHGd1i`w<U%mlMll<H8^vvu
zw7u=9dVyNP<|~N*hnzmn0>iS5?QL8YZB(*R)<!wWmbXzs2-Rwhs7?hErpjW9*($ad
zJXHlrXtst8*tpZiT{ddksAZ$MjTSa)+qlI>eH#sI@9OmBGQK)C>awDZ3t7q^Wqd@+
zXPH(*8w+!lMmBC0&7aHoZnH6SOb$yMOVJY3Y9d7e8;XslMF#VfW<u`D^)7d_R!bYL
zY;>^ErL6CE8>)>w8^fD<{{U)jqm8snzRI-NbWpN)*k~(clWDcH`7OoTZCdSZugZDT
zBIet;zk|}zMt%n+BuL`7tWGxWwxQWb+vse2SERezxR*@}zekY5X{~Z67WljI3ukwK
z56*(^y{|IsWS~305GIs^{ZwAu>uICFM%YHgM$|_8vc9B^nC-n&qE8Q{|JT7dYwZs(
zC2Y*Sm|erNQnq)k@8;J0+bv7CVb~aCW3Ua=hGnCljR$SmHXIv;HhS4`ZSU_+p10*~
zoZnUU_2#&2@Bcvu8it&=)IMzS3GXZGvtI-su+i7XpPvVNoDCcspt4GT8v|?%w9&G^
z%KkIm)!+N))I;pKWj!p&><}A6ZSU^V<LtccUA1`B#$&ekR=VLfM%WlB{N9tnQ9>vm
zZDWk^v4Z0=@<)U$N#+i3;azp#Hq(1b`3W0O+IY&w)8d?$Y&;`Fc;3bY8=q8A#@l$7
zPMEJUJ!fOy(qP#!#zY%0Fq{mP-=o%!Y5pQ-yj-ys=Yr&`-)_kvm%huKY-5UzMh<Ru
z@QRJ8Hh#D9hmC1ArrY??#z!`0&<JhvYrI6=EE})cm@WKO27j)vQ={DVV{+!$c%9Q^
z<8&Dx6K9k0!}Nv(4>~As+E`#?iH&y|+crjz$$6XeYh#gwI_Kyu8w}>6kR~#{LxnQF
z?{bx;Hoh&9^S+G_Bxv8Wu}nHZea0%II;)t%_*`5f=VNaEHa1e9p0V+%jjwF1v-yA=
zR@hi$W37$PZM;{;N6SU6thBL{t3wQ~7W~EXv*-&M9m$s><jN)gT7>IuY>=LC{jz)C
zFy1VSrQ}|RZG3O@0Y7ZBLC<Wm@gu!gB8Of5!Nz7;W#lEw`nK43zP<PFu&p+J68X=9
zv_s)`8^7A<S=PsO%`yHaErvUI<1IVQ|EG-|Hg4Fs$^P5eW#hPw6E=3s$~|D?pp88?
z_S*PMD$+muxMt_H<)mEipzOCnBtK;1%P~1eY#f!Q56cX)b*8_i;xUo`!%b#RTMFOa
zn&*{@PcGQFXyX*CaG{BWj-?;Y3O^@!UXa2cPv>#IIPaHaTK^UKe>N`LxRTMiZsTf(
zUlX!yUFdhQ>2r|fpt^$^4zeBOI4JF)jN|RGxq>Af6m#HrKp#@bR9xgG92Cu6Dao>j
z_cZeq$~vgvprV6vju*z|rIhm9E@xK~Ue)n-?8*)<=P6YL8OG$*GMbDNINqLF+rcdk
zY6`C<=y`8<sE*_9qIDhAb8v1<4z1O9(7-{_B#sgPQ=y@#F%oWb(AYr-$J<w%IN)Vi
zF8@3s0SAhZrh?4`n>*gGp%xBWI%wtKb_YQRcR1efU)90F!8vV2p|$hBr{!-tDu39v
z6=6F;R_99#2M+RnF|~IvYFOKOKJT7Oz61SC9#cmLA>nssBzHOJB>e7-q_cxA!tcpQ
zx;nVmK{v@ZSZ>^xk#`r;gHBj((0JHE#KE3I>@7spK}-hzdm-Wu5)RflSnGJ#!;`G#
zz;KXqpgBm3kblo%5!24Pexm8%EeCHqupHP990#t0#~eKFpwK}t2SXeTb<mrxb}&H3
z-p9cM4jy#SXiKnpN$)K*eI0E3$$PG{ABEY<(l%!QqSD$5bp|?kNGd+exlXHt9Po9H
zR30qZw`zqb9OhuSgE0=qIv63!d_xO$M$)$q_+0B~2e0i5vK3=z9<!ehSI4m%@-m`F
z9Ph>})1waf)Go;r4xV)IvV%zuo^tSX(UdvfZ?R__+#KoMNF6W2!9%>KPoHz}yn_i2
zCi0q(gO?Zy^IN>&crRll={3VoG9#}#`7p~OPIfTG!7K-_a{m{#X%414m@0f~C&SZs
zu(^{lQzYZ1)^x$w9L#nw&%t~La~v$SEPigj;ox-#a~+W9KBpc!A9!nm+WTrYvw;HT
zO~#~ygKL8eL}8s&VbLPT`}7QimBkL;aqzK&<qnpxV{+&BeFyIfU+UmJ&X=Yv<Jc>C
z??5J3V#)^&KIBNN{qL>FA2}F!#Cs<R(<f4KmEfliJ`=J+(7OfTU?l@X?hXV_23Cul
zwUROA3kP2^AQ_5<_{zaL2cNk3)Wz2h)^j<#sPAHfgKr%0W_@`V8y$S>-~`vcgYO)C
z&pC3i!$EFCWs`%SxG6dKfu3YceyINFV2gvTT<q;a->=B0g`C^1g-w)>%hX>OfewD9
zw;k`PgAYm-duCp6JI%HXQEkz!%J1CG93+<osm!{>AM=%+4t6;>?BIxl-CR%(_H&PN
zu-Cy~4))Pz1BJ@HR^-3<iC62-`bzNc;6bj775Rr8j9(gD^`<(dk;2k@SL7dM)NN3Y
zIoPmB{oBDm43f9hb@i1Faigfk;|@OGn9tHv4o-6}9Qa(Ead6hbf7~az*EwjmBL9Me
ziw@2^7`HP2lOe{m57kQ!W*f$gr}O`HFlcG;Xm8ITjkD3)pUS_&ZOXwl2iLh~KU8lx
z;2*l#E_>DOJ+Iqsx*J(8vRwoY<(F`g<098ZaTnAn=ECoS-r#sSsGghh+m{RV|2*Gr
z=)bxtzod&&E=s#7<D#sKa#DpJpnlJ1@^_6==WfjBttd88!9_(Em0WLHs|nt_T&?V)
zii^AF`;ULDRuy5*<!W^oHC$X?7KDqME^4{hYgw#S+r=#|>bR)ug8E;5tgbDq@JSL@
zS#(QidoP1J4O}#IF~r4C7mZxp>Y}HM0vETrXzU`-MSB-bI7}CN=Buj92O06=T(!B2
z7A~5)XvUF#l|OK)`q>EYCR$4u>qn}sT-@%W)o7#o;rvpst7j`IWj<D^)7nKF7eN<y
zxM=I5or@DQ)XSFj#OEp>s-e!eKZQojS9u~y2bT{jp^J-qXx~N1MJJBh#lWVaJ6+tx
z)>q~~K1*f)2Ywd%Wrez+taA1vHPj*0*+uJHLRXfBy1Ka6MGqH$%?ozpSXQd{x#;eK
z{VeJatJEl^?4GB7@>D)c!!9B&3SIPa5p@xBd4U(Ei@3{+U`V;pq_@SJhT7#RNf!^k
zuCkRh{Z?7w3-NRpXb|G7aoHKZ?bdQ(tx_Eq<eNK$Y$0@@>w53Oqfc13w~PB-4B((#
z^l|Y3ZHn3y)9CA>pNn5Z3Og2mDu3#s{FU+c{ax=CXLd(#ybp=yiKp@hxp<fzdn&(L
z{ZO57s7Hg)U>7@@hB}T54RbNv#bg&#T#Rrr(#7L0p5Q=u@yEqj&RrFyp>2(p>SJ8c
z?3J17I2Vt&*!Q~nC_DC9=rI>B&rt6v2)#I8jm=h{bn%pnXW0|Zf^9v`;ke*y6FAIw
z+J!iq<6Zo7OK8z-<9Qbo7%DDaaxu|`Q%WgbT6w|6f^YIGH4JeIIM*+`m@!kG<f8ej
zDoZ&=4!Pl>;43bsx|ru;zKdxtrn`8}#cWZV;bIo2<`cE;Y;`7AT+<MJ@~VsXmju~|
zHVs0J$}4kR%ysc!gV5_TMw;E%Ak-~C^af|Mq%tv2d6V6s16?e0vCzdL7w@=OLTnd$
z%f;I+7PAT4Vw@|hR91Jt2#vF?v7?N4T`XlZb_h|(=IEtYZ0mg&AGr9)#m5|Jp7Npi
zlM0->x96*6I)s*ICWuwMmEvNBiw=dzFU03AR=T+2;;M^PE>?5pGGbk<ak19LCKo@r
z_`=1P+~Hk(Ba{A>;Md$YC|Q+Xb%o~v`g6U@UrE;Jf)FEoBbR(t<vSPOa?)pc5!k$b
z=zEus8H6}l^#5iTKf3tM#qTb*xY)|scd<<@|0J{jGv{u;`kieZ-w~v7THDTmWR!Lc
zaVj~w75O2%qw<G~KVAO!0lOJ>E-E~kzte@UL5Ra-kcVoA=+ZqdT9#6{9O}N|E%0|{
ztNUE+=Z-|TxH#bApo_m<T>dVfYP5XF#bF7mBaG5f#!+rihk^`RDzNk)nQQjpm@E)V
zPBPACsOMaqcX7(aX>P3_t7l}%pA}@5b~rVxbwQ%&Ul$i$Tq2+A%`fdwtsDA}eURnJ
zo#DxbAx8T(7uQ|XF2pT`xZ&a^JGNM@SO{MsvI<e65G4zdU5K1QoLU<67vi@0YHlHK
zU>U^<y%j{i@uebnghO19#S6Xtf%{ddLX<8<*+P^nM43WxAE1z1rB+_y0xVyM3Wd1Z
zz51;kJbCrDAv&BvTd5G03sI#IRSQvrrV3Gw7J}YLs~38E8r5d5^0q{}qGln!|1Q5)
zq4&Wtx{AVWXLDtxP9f?RqD3KE7NTAu>K8&O^cHx7LNsL03(>d`<LZYR6?!pzYazJ4
z=o#)j3}a4WlR_M6910YI)3=~$h`nXgO$*Vi5Rv+5F5PB$v#WGPt3q)0TNk2DA#N}9
zHVU=S+q;ghP-ip=wW=GUX0Q-<u$4lzD@0x)+OvCAy{=xE?~R47<C-1RA;i`>ijFdt
zdkVd`)P@RS&rt6y#M;l)y9&{%5O<65&Z5&r@Gsl@_!~A??JC)O{~uM~0VPGzg}aF%
ziAWMY$tda$BG@pl3+t#T2qHNy1I$c^>F(+2=^-O17*JFM5fMp(BA|enMT{tBMKGac
z!GM5DP%xstukQZy-g)QLx#z1}xALvqUDef9arBI%mxysZ_KD-VIC{sCJ3quOyI%Ml
z>>N9NSslLr$CZ)Xx-`T@*pGjXj17uoa2)r<F*}YS42@$-98=>M7RT^7vT+1)RK_ua
zO&W(6M=Xw0Pidp$h_k5&@$-s$ff*H7=jgumT16s`Byk-6!<rt)EG~v0h?sF0dAx0v
zX2p?;BeY8Eyh39r-&h<;$`#7>A}0IQO0DuyEfYtxM-=ec?@y`b%Ed8;y&1=Q4`>WJ
zxI*i`OdA`=xH!hgF(D3mCkfrLP@70yZ4+JnoRXOw2RY08RZf1n;*-~-H^y;O95dKH
zRN9BNH&$xX;@G-cn;yr_anSq8!`dxWj1}6gLT?i~<8hTEi*X05Lw$Qvn@QE361_8y
zyEbTd#W9FVyH2~CUGqewNz3Tahg6Txk)B!>$8wIKIOdA?KA{WZm?z+Vp(CD-%#Y&%
zD$Grd`99XNUzZ1kzc7wP%&t~=aU4s9vuTmGgk|_H!eLvhX80k#KQB@Rdzk&jUvb$=
z2TC7_V?`W~#<7w^U{vf$_SDo4tK#aKu(g6$Q|ARdE_9919~RVTI4VY&b#XiqSD&8O
z3-!jA5kD2j({Vh*;WobPSq`XM%Lw*NEG8%$6?>ioHjWK6{&8$(YH@6g<E1!Wi{o`E
z(#zDY6Q!@l@k$)+XKDY;(zaiMA3iN7b943Zra0bY#Oh(XHw4_TDR19XC2z;^P8^@c
z@tLIXZX6%P@gdcK_NrHy?tPk$Ug7i4>q7idocm_6HI6O$(Bk?9<Zl!2Z+BLFB7pnJ
ztKza41fR$8h48lv{j{e__N%yBCD<X9U}qe=@_4s^JsfePVhpN}@Yft235-mDcz+xR
z;`k<xZ{zqbjw=$lGJ)@@MKr1jlqB#&9Eaj+@^yqQ(?5KeHnU*?0iD;N;Kw+AisNUR
z-#AWk#L>H?g7@(qi{m&AX0>p=MmP~ymqGuws^XV8eii1(QR-&%-)Kx|Y2!E@S64Lt
zK`~lm=CV7&+h%!%C8P7EQ3g#M75j%aKcRyDl@$JqgO~JG7ODF~3x!`Klmh1#R;!jk
zD1mkfT$Did1ZpJEG=XLb)J$-O8>^eZSq%LtQcGxUp=SuKBlOG!UThquKs`250*w;b
z_;YE41ky)Jw;wGX-aXtfp$@fs_N;3EgbL11ps@%vN#NBD5hU>C&!v<nJ|}_O_g4@!
zPoPBt=Os9cjNQ1mv}FR`o>CsR)+z!2nsDm`+9YtUFv(vvDmM4WQi3D%D%vJ+egYRH
zaL%#P3lk_6!1E#L4GZ2mDt7fxk@g8(oWMh87F?b{hXgt%aA^W%30#uEfkt61ft6QR
z5`1!Y_|Hb+P6?29P9T!Np^_pVl}Ybq36v+$`B-UJ_V^xE%`Os`m=P-y>gY=zO38Xf
z6Ch}~yY$ylv8xhFG5RMkAc1adt8rylCvXju-B;Q@fnEu<X4NBsT8?%tQwub@p6rG3
z#RS(S)G+Uz!1e5!SEGFrxTl}im*wxHar)3tyv3tqWDb;c1|=|9vS5xwB#UW9#Z<zf
zY~<SEVF?TuP?^980o{HrA)l^8-J($mj80&70&^0GCy-$D9^u;)NG6~s@KuxWAMHzw
z1WZYGVggnIDRxH!nFMTMvPO;oj8qFvE|q~gwy1H@s_2q2Wqw{Jo51OIB@eYlkU%a0
z?$jD1bSwpU02DV7iI@EG2~5c2Z-<slN?>vVHze>vzwp!qZcJcGK20ud-ITyI@!pca
zbdJhVCES&FUaf+g6UvG*H796%YXY}Pg2c>gMuJBclrV^;y(58{3EY{$T?ue^H{IO=
zGQC5yB-wj}lK<e)l6yH=M#sKlr!2jAZUXlSm?w0F(EC}ov1RiUctCn^K>`o5*G9({
zCa@@h#cY`|#q=(b(1#OvB!Q(=PVp`i+HG`fxd18vHxylWgZkz|_x`N1N2#j`tddX`
z;N=8XC-7JTkLTr|OkhnOuT5ZG9zP*qeFFP)YKPKO2|Ue#`Df8H9Lo~)Yy!^-c%Fl0
zeAx>$fTPtFdm9qSj*gLYr+7Dt%u7OfAL1(<)S|ktC9p-9uP3l6fj2lJ#QQ-4n+XKJ
zm%!W9_U9w~iu4YL;h19LcO{4lPv-lAH%SRUOyHGU%06N@O)tA}LNV#b32Y@(LboOG
zi3qa{EaayNd?sGv&joyu!1g@nO93NpF58j7&IEQPuseZaNeoY7k967b1WqKdH-UW#
ze9b0G;3tW4AfLkb349~?+dStx0W9i48U(6G0*8h3V**D6Y><NeHL+~iq_V0S{hW_`
zl$Iw~e2fhxGQTA7D{WU2;UrEbaEcZniCRfD{D0$k$;bL#z#p_udCp%6{GG>zQ_B9K
z9Z2B61PYQUPNF1<!lY`wB1wv=&7ZCmsmIM_)r3<c&krS0J*m2b3Pu6C`Yl4WlQ<)Z
z)_IvaNpK_AIZ2$EMBOCLN}^s8Op1xu&&xDUqCpZ3lW3IZoSo#nSZNU*Zc&LhNrG2u
zR&kn&SWBVJl4vfVg;1t&`IItR!d6LT7zr4qO%mry=y^%?A+oJd^3PAI&y*KP(1pUJ
zw_Oq!CDAR3tCMJ-#KlZd1SsEul}+Lj@piNuYXYd@<w<lB+&PIzQfb<y;=N30nbeoj
zSLce^r(KfhnnZ;J&6@kacB|U{7fs>{;Zyj^B(4(tq_o2|g8Sq{yEDxsu1%t+aC!^v
zl@Gm6K$V7H&jO3K^i85)68$A;FzYp5Wj!E?fx>xnbZn4x<!7T~LxeL_8l=^IWo*XE
zBt|5$F^QLwh$S&HiCdDmHHlG4j7}n##F!-FNhFf+i6@jD8QdkwwoSswdk>9{nS$LU
z4}?)FN|zFjEnX*yl^3hskBpv9!jqtk(0@k9$fV0A5eSF-=jk1r#JD7;Br%nFO)MLq
z#N;Gy5IiA?i2^7#Nuo4}t7}iI(qTrFyfKMs5{3MmlBm5PL@+(6?DNe+c~vO!ZAr{X
zVnq^<CUJWbcO)^F`YbQQGX>nsU7$(aCHQWk_XwROwEL~<wRv_DbHq!0=8Uqo@fg8<
zNz4=G{nYj(79}x1FY`bW3j{xy=lnarY;hhxoWznOmWuZwq05t4mJjVBiN80t_>nxP
zk8oBdu_lSN!d#WaY5|W4eLOGu#qFxJ>ymguI8P+8K8Yujcq)nKl6aoFbiWed)wEA1
z@eF(awlcbB1vH!azo2nri$D1xvO!XKF`x3YV~bzr&`9D#Y1>)%l)ak7rX=1-;x+bE
zJVy6A$N0oD0yg`b)QTkDPGYmD$JRU5t*=y%canHFiT9GYe|}lJljY>Up9H}NNqjz2
zap)$*V;?24C5exd*h+p9Ux@s+BtA=`!_2Zz#LE;u6>xVvwlp3ipQ&vZ0S0|3;Hima
z<nK&kR}xoxxXQzB8h;kd!aElBCb2Jx#|^A8@O2XVlW=vUbsR|In<VyjE-BX4OWn6g
z{7ieYyY#yxzE9#{5<evIQ&L^ud5Cox*Z9Yz+CgzRi6cq1g_2tr_=J7*?{YHVEiC9;
zy&7kBN0T^4u_Ui*(ta2E$~Tb{N&J$;ueATdnRB#|p}dUm6g9R*^tUAbX&WN=LqZw!
zXA*x2{yT}&49)ZZ74URCMw$PTD9}|dg+d96bo6c!B`DERO-D#absa-=4AoIXM@=1V
zb)2uGmX6vwTIy(};|v{jbeyB3sg5&s)YZ{M2XvgJ<K1}dt$)fJ3aF=}z5p^C2;dI1
zMmi{PwvNU+-riAR?5tS1x1#XNin%vv-gV*je@6Cit>l*DXU~Z?)4|_rn(Jtx^A9PF
zm^+iXA(?v8TE}@he)o&p=xU1yU)avo)qCR&pN00tW8A!YfsPAx^wM#ij#3@uT%@DD
zfUu5s0v0b0k$<s{4m!G%xjWKP$0a(VI<C;w1}9BNnU2eJbkecWsOT)r2y4Ah?HIgN
zN1Og?qhPs?E;=f7wUsf_S6#<;|IEs+I{x{!oPf;Bb^H;J5nQR`DjoNISuy!kq??ZI
zeY9(IaA)Jyg4bTwn4I2LMUP)1%&v!y;AG@l9X%!YbN(qOv$u}xS$I}f&PC~?qrZ*;
zI{ND9r(@LLCA^q`t_pPGT>xyTqVVCOCfuAnSYq-2P{tjmW4I1m$J0&1l{!Y~{DD78
z8WTWFKIusDj?ytY&yNd8=t$-{x(*|cO#znBl#T|87!z?M7lP$yMLiuE9Sd|ksKaO7
zC1^fts;lh;lXOfLkP|va$5<WXbc`1-1ttjK{sH2Ng6AHK+@NEMj+r{{)G<}ZjXG}C
zahr~tbhY(mnvUtzG}!}lvqZT?=wqK(aL3Dg`-|yj=xW={9Xhya<aP-)yQrNoWYXQG
z<8B>ublj_BmW0k0dXKL5o^i7oY1Kxux$ImW^K{%VSu-`3lPRzmRl8ic&xZ~BfQ}i>
zLv##XsN+o?n{_PGu~^3v9ZPk!DDf&=i8m?hcv8nxI+p2J&e7CNZD!!>@xwYEVeZtx
zXDc7ov0ec2N*${NucodFI555JaRF<Dt`$njbvm99d|o0(FCC+_nbLS<y7ALGp3(8F
zj^}i|NZr%by5;jU3s;0`sa{}fEY<ieX@jo*0q1en+zs`Tj+b>1OzTmDM@`bbqN_6}
z$$3pG^16;qRDQGU4PE`p+H+Ur@cIZ-dy8G8<01p?4ZK4Wp<|zpuh|hg-e>wczR>Z3
zjt@D^srkoBrzN#MN$n#YTXa6(wb@NVY?JpA+EyLg*oiD{Qu|CK2|m@atMdo~3NY?=
z9bf9$Nu~&Vl^0{s4vEOn-8%N@IMoo0av-5Ksm-gr!+S+?+3~{tH2yk%qvfFjh`~9i
z;|Cd5-|F~I$HaTI?}ZZ7?;WnMH$KE?gpOZz9A;dZ&K%)@omTdvj-LelER>w1I*#c$
zPUADJOwD?xm7UPli#jpypyVF@lWY)QJ0+Cfjjh5*zqslTnrH*H4E(9%FB<BV9sbtw
zpAKH<Nqm}CNSOZ$t@dCAnLLPu*EI6xMdD(iB|;DEDIlj>9#;uhH&8=33_7x>ptgZC
z44h-2sew8M&NR@#KtlsvS9Yi?w4Q;p1pK(CfK0mj;$=}A31}>o{Im07O$6|WqAK|_
zBvvy6=NdTAKyw2v47ALLwlUC3aO*sW1!F{J*Ouipz>F@CpsEB(FEmgpe4bsx&>Gyl
zA%K{9U2LF(fl&rV8|Y}@5(C#5=x%^#nshSIg-IFcY#?IbhyMzP)GxTyz#YpAE;CSW
zpv+J!vH#w!akcZlKh&*WbTgM1yxOs(!oZaVu3}qp|Br!}|0<0NzQO=Q$?RsR#nP)K
z1s=pvR=21sg&qd3H89w~5Cc68^y1K%rS&tgU`gZa4D^v$Umq;*E#P{l_IoMQnfFIw
zUjtPs^fxd-VhuF#W!n;lGKE2gI_`sDsDWVyh8w7qiZGOAW{rv(R3o1Id+7)RJk5l7
z|2GvQ*#f^R5I2x8FwVeu14#qA0mp#LI{s5=7%&Z35{1#3TFSs2BV@CE>J~8_roi;m
z20R0Sft*x1V}NDO8t}zSnM1w9EFr7V{Z!Ey18l~z20qvkAt0YAOfWFfz|973F)+!%
zWCJ%z+#8s+fT?Wov{og|V%*5Sdn7_f4!zS1Oc${i(;B_E8o15i&lGsbzzhSoOKUtp
z%B)4~9(HjeMoGFmg>#pIy9LY=N<ParTU8eK<~j4&&VujDb0|Z}`wh(h|2Yc`JecP!
zG_XkUVxdd&{Ao98%M2_xu-d?51|AmvD)wN{Fw=a*z>2)&qXt&yG24m)tTh||ik{)A
zzmyZNHL%XWW)p9jc*4MX15Hf8#FGY|GVqsyzYRQX;28s-8~DP&vj(0s@P>gm4LomP
zWG8T=)FuNj7}#LoMT2idc-6pb2413iQ#U@0zCsN*wT~_fy**eRTS^XX_3Iovt-{<j
zH`h=n5Vklw+HG6p&}G<csF&dn4SZzaEdy`U{u}tGW%zwV{X6q6ZA<Gg-FpHk`GJAo
z8%DprEJRB076YG13OtzcV|KwPZL5K82A<eeO4lu1@~MP=CY(Nr7@6BS91I?viti14
zWnhPay$1HN_ji`=G{BQHcN^Fx-l?S}+^a_Z9$GWLO(kMq8`y8)TLU~u^MEi9WYlG3
z-!PqHrNk7Q(V!afK^h7JCk>o3aLB-611AjpV&LQD(IW<aGVrrR`OyFm#bp*p4RwSa
z!Epn}1ao8Ci`ybq$B;6?UqzlfkXb_h7xo+5fh8ZV_9S00uB_Kkjel?bLHlp0-?(<v
zijtmYOB$$es;d2K;6Em7qK2t{2P-g9Y@);j{|78IQA8aWq4l|j#};VEg0h(<;c6yA
zCU_7r-y7+;*RiIFS|-jkQP)ImQ(Z-OhKcU2%O@pbdv-_bm`D%P=;gtTXPKyH;@|2`
zRKAtktQpa+4PyJHb`4B4l=3v9{ISxrg%UJ2F=|`ni6PVtG&M2N#3U2VOf)yq%fxji
zT9{~QqSQp#L@N`mO`K<<t%+TSBfa={RZ+N&iE}084~|6m>U+MauI<a!ZgQcC3rzLf
z9o=Vp%2}iuW6Ii@xX47gi7qCdsomrvMEP#q-o(X{0%bZd{i1M36PF0kgmx0zS!hHk
zWiB;QCipU;Y^bUh>uMs(eBTaLFfT;uE*Aj;3S42TzuT@f`7WeDH=zVqo46*Ay9?+c
z^jZ@=1@LrDiuE>eJ^RswZlaHgz9t5m7$oWUGkFq-cEjdSe~}*`lu<6|R6f|m5ECOz
z#7qn|G0a3ItKTd<HKhJD9BwKlr>60jMyg`_V}-;c*)JwWo0t+R=26M1g(1qsO(aaU
zy^}vJQfA6L%`jm~?!F1jM9Ngd!8QNijfA#v91}c6md%?MVNYmAC`-t>NtSwLB4^@-
z;&8t~+Bg$qB$QFcN?$h`s*yk5<V`o)1QXM=a)QYwZZL75iFquiiK!-TH*trF8%^9~
z;${=Km^l1z5r1iHR2-gWV!HHls4~hULz%*@;=PU0c@FTgQttSjVXE^#Ck@wTnz+-%
zJtk(GxXZ-dCT6kAhHDhyM&Ebje^^TPof@5E;$9OQM}~M><Ik3MacK#~=87;m_nVk+
zVvUKlCLS=cz{GMB51V+<#6tG$UnLKjSY%=`75iW(4hN2fC4!flpc{8ELifRn=rS2E
z{28-;MdL?ItT2_4Ty5e}6Dv)uGI8N9b&sc87Fs$o^d*08-C26p?sEPt`523r&>rVF
zN@$7S3fIy2n|R$s8(mvZ<8R_=Q~guPAkwEy^}lD!u_4lDOgwAiucGjCCSDWpywDef
zlE1;ki+Q|Jz)L1C(^OIDUNP~iVCGBj`C}E`Wa154lCj#j!O=IR3arJSkA&Vf@s5cr
zEL>^fT@&w_IBDXPiT6!>U}CR{eI`CM@e%EkiLXp-G4V0Q658ji$l&N!Q$1oP8QL}z
zpP1nD<x^^@FnJ9<v*`b6l=KU#WwS8BcFCH}(x6Fbhl#VpB~-JWR5NzXvC`cp_DIQz
z*(P-EZ-rl**l*&Xi63ZQOngJj**yHMsb*x%h|wQAUdWWcV+xk`z0j8}?GV+^#7`!E
zX5r6ha>T^4LlL&^d6xDg)!Wk6+!*C7h6i^aHF3;T$2T1}aY7V;c*x`swc-~OzltWX
zf>egzO#II7woq!}4-<cyD6~*y;V-J0oC<zg%JVmyZbg(oI8zh;F=3n9zb5`O@sOz%
zSc=Xc93?HbP-3B$h1wQIa|@`2$z`GH7DASKlHQ+)ky*n+O$(e2v9feeBw}Y+sAHjl
zg@%?|TKOOm;|%3Y3w14=WucyhF-@cOEq)wP{NE8J_#n_4SvcFmITo5)ptrG5SZE@E
zoGrOBQua|ZOC3wwLMTCV3#S)H30ew=0<A2p8LhRp&_)39xfa_~G3nY`IA8Duc@8&+
zhb^?T5V3HnrTWWW61~VmdkZr;W-WBI)PN%HAnkCnRrnGMnuSh`(ke{XnI$**TB7kd
zW%eLbD6>#*p^JsfEL4rSzY{U`W>*WBTZpOz)fAQPvGbIIecC)sZM<Vr=qd}{EKIa8
z$->nZu3;Nm7;K@tg&r3ATIgrtT1&kPU1y=UrFO{ow9v~^W0OA`P-lj)d8IF|x6p?!
zsWnQ*NI6&SFSWZTquE;`11$BZ9Vk^en$(6^7;3>K)50(d!&y@caSN4fB|{r2>5pK^
zTZUs67H*61Mq1)g7I-f$1>V_Jny`?xkh1tGM|)sbscyj({8&aaERaJ<%i=eb7~SFL
zD=21La72c9c<m;hg^Y!<7RFidEo7-G7G7$u&h!o}P+KO9QfF4@q~u0}YW#=#t6k-+
z?05^+EEP1tQiG0;BW|*V8>q|{mRXo$VXB2YE!<_{MhiEw9W30=zM!eMaEpaoEllUS
z?ojovbu-(cYUjVDe&XhNZnXcDymCV54of}4i1}okNqs)9F4ZOFbLwsjvn|ZAFiRSl
zV)uwJFIixk_ex$%BxtUM>yokigwA8b3Ls}bTPcqh2zXHFLZOQ+EEe$0kqCvE=29sh
z!E%d+1<zS{-ohgmR#;eNVYQ`BpL<kfs!j}8$>Dsg&`QQ0v+%fubsWV~o;7ToQ1My|
zw<XmL$gB&`x?e9rO#B%OPg;12p>nR>)57P~&p+)ce^&5ITOx^?1ut0GVBt**n=QO(
zVWWlDEWFO{v+%NoS4FZa1!nPzc=<yI)9({1-Xx84+c5Q<CFc!GosdB5L@!?*`J2XD
zmilqyK&#NZ7T%-&JLu`)eOd+!U2Rm@_|U>fta}P8QrN=i7DlBoI)$wkwox}y2&M3e
zg-<OUvvAzPXKWlP!%hod2-q%qSao(Ewed^wer17AhaEyWzIM^Vi0~c@`z(Adc&~-l
z9hK48PcvxYTMOS=>P2Nnb9EH?H=?V=?Y2a|w{TSS^B`?<^Y9OBt{bCthXfq9a74h5
zdHzope$HcBTH2XT$08>z{6gDq;ZKXFk!bDDiS~|ZzgjqH;gp5HhiLTvM#~V>eizC%
zB>sy*7XGu;D%ojT4-5Z_DdUjg?=u`n8%`Fo3Y@<bq)?bbQA!yHx?%y8DamuDHw#x!
zp+*W9q;O#hHB-FK42@DaJB8XQoRLy53=LDLlfs!PG)Up2e~X^;i|b1CdMTVGfb%kr
z<@zb`#Qt+-P;cK7S^Q>*vqCn0;}m`hiVuwootHwB6puerg*hjM=N^hQP2q7w`Cm^n
z@irIQLTF2&t%OptwSYD$oSWx-)=|9(wN2svM?&YPusj)~B`-}OoI?K;2Bgp~g^N<S
zhMLnl+&%@`^K#a4S1DWm;uJch&@lzhUN4a#GKsYmIti1wa|)3>zEnV&(975|KSU_d
zC57a!(yl@YDg<0EG@8N{dH$6Gu1cYsfUEO-mV`FEdkQ^LAfT1IHie!k(3tlUN^qTk
z-YHx!piiFPH-&zJ*~=6gn8KhGhDpN?W)B+Lkd%5(MLNca35K%Kk}-neDO9FVwm3Q>
zrA&P+#UBGTdWlD-lvVGxt2CZMB8A&hn8Bi^pr>#{3R6-rQZQ2(m%{iItQ1ly_$g#l
zcxhtDPQhjF6q~0xDYTV`rpFX^mhv`m(o70nw?^oAlXW0`+NCi}zc`%ZxK73hXeGv`
zl&yG+ul*@CHJg~iBzD=cLRyc>5{vpjx=2kfeiWNIHHDi}n3lqgDezPi@;46CCJ)gV
zcX|ppr*MnJS{*8;nY~qTYq^>I_7v`*=A<w`g_$YbnZn!@?n~jW6z)!8b_#P+>V)>{
zx;n6Zmf(9*_-a7~y>z*ip?euUS4Kzg^HZbqQdl}8I&&m;j!<8(Se*w_SdhYlDLgVJ
zMDM~B7EvaJhf?Y}wK(;^dD9Z{@+K6{aF<C5AEw3@6)#VzXH!*u`BWl!lwFp>-zl6<
z@#adbrfp<%rSKRBQ3@}nurY--DXdN5S$1~{>r!|kg(p*ZDy42nS<lgWyfk4de9SNA
z(ezC7X<-sPlTx!bp0PvB1qZg|^HP`>gl-VJ@N~&bDZHG*W{&g}UP<9q>PgLlH`rMp
zM_!ZO+$55(v+%W|;fW#IOeXcFF!}r<ep@iX`zgF5_}vuvjCfD*XFJOo^g#+AinnVm
zwY=~VjfSqCWm{9&mcp?Vj?@09@M#L)r*JTZ&r<k2g##&kLtWyLK`DHl!v2)9+uJ!1
z1T5PU`HH1V;mQ_ax}5@c3EiE-9szrW?i0#<DaN+qr1-R~|L}U0Z>3b<(R4_U&|+ss
zXg{QIh$c>gqBEn1Q#|cTJCagU{_%3~(T^!ys;fu*&$LLgN^q1mN{<nrpn*-{6dON<
zUnPZ;qWKjerR02YbH42AvENz8J>^uA&xUD#r0^%b!?eGIawUZLpA`O0p^c4mZTy!)
zfsM0l)U#1&qsUgnu#Syl8znYs+Nfp2Z62;>qq>b6HbVCQR&}_xL;liX+KFKrM_g@*
zc!mw{(h*F-nGm94jN%DVHYiiqR?9M+nE!q_Qr|`c8%=D$MnfBoB*C*KIva#>IS1#d
zIE@)p9G*QTbdHUtHd@$dY5(s{pqUMh`sOxR9Xb|+eb-9T>8-0fSz6obAJ2h%%FnaW
z*2cv)I@mbh#sxMHphr8&>q4QWLU~Kq1R1;+*=iuO4DAKfx+D6Fti^S-afwJ?YGc92
z5!Oo+ZzrLhZSbpf#8%5JTzMldllnG161j|ZJQ69l)w)C%q12PhZA4iG8*kgV!p4<0
z#@m=+<0>27Y}hs&8&})7#ztQo{cLo%(ZlBIvDU}NwUimFU0k=Qx2>MGJ#F-2uO+nW
zY~&_~IH%@>`g#%ObMuzXA)4sfdaS>V0X8ffDH{WA46-r8RyKdItrh`>*%&Thhz-sl
zhT6RDP)#LvAF8ZmH}S-zq2M%OwH}MvYNk9=D8VQjqgnpAnwrIhnGl+^p$jnbk|t|6
zCPXo2%K0N7XEP2(Ty~j_tc`$bW2<=$Kgnfmj2oj8^lf$52Hm7;#W@=*_LPsYG1gWe
z@;2$QakjE}d=9?psGoBQCfb<9ircu)#$+2e*tpxqEE`j7Oto<vd&<U*wwfbMvoYPq
zO@jL!i?IA$7T%%9ZnklYjT3r|4>(S0ZnaU@h*|q1hjvD9w{fS)^CjvI8#8V7HpPh*
zDHFWQ#tS9Y2<{Pm;Iw6qjoE^!OXYu;+)D*+9`1T!3F$l=_uE))<1x0gjR)v$8D3?p
zL#r0pSi<pQ<3Sq>ZGNAMEwb_C0~L#HH4&qinBXBB%WVGaqdjV4ISXTHj|gQ^AGXo?
z(h=m)tzdyU-P|8pY2(M{VXj&*3TK^EjK`UvjZHS*u(8(0Iw`}elE@P_USfBYgx51`
z;XGyIX`7#%Vr-47l%Em)vo@X+K<4vofjr(I;6<Sug>p{)vVd3eUfqbjCYeq*Vz1l$
z#t~y9@Wq(5;|tiEHa2qzq?Dtcykp~C8>guuHr})GzKt(zZ0GQ|)#+OwOFMsP<0DCs
zh2aa*7Ms7DH73|<V;haY80{05aHRG*Rqj~nr#3zl!1oz?r<W9yere+?8%J#%qiWgM
zY2%QM!yL#qcH8*I#<w>1h?efN@wJV;f@iN%w?XZf)TqD*1avkv>J@ePJE`yYHV$&6
z<jOv66}oF+ltYpV_Jgh7srV9gL<;tkL?q`&Y62h1M(k(d+$v?`tMYM<cN@P_KV{_d
zdNmHElQvG-_|wK;GUR`w39=C@3;ix$S_~G6w7hAQ3xJgWn?_Y4QrZ5c@u!YCD0NWa
zpwK}B2Mrw*IVg5e$HAEnN*uMy5pqynKsBK}%Z^FaaJUg2wH?%S{<q4(>CC_;p)(xt
z*M5!#4h=37)pfx7p5>sPqlVsHy0Wh1)OVEmVr!5#a&WeTa~w2vlo2C`P1@K|J=Mek
z1ay#VxtcMx|B6~WXyc%{gBDUAe&S(hO9!nS^~r#4-UAhkd#*%0-@$nT$Z6~F9$xj4
z=mO#JZY<)kgLV$e99-t$A_wgqXbw6#xY$t^rh|jt`y+KamGiBvqk~I?`H>N$;{&d0
z&e)m7U@lzwchuAKo#7fEC~Dw4=;Gi?2UiKdtAooO^;%WosKsOoaA7&>{O>7tg~JOb
z)By$E99-?7JIlj6o-Q51S>81cUY73^{9@9>!3$0(l?`#dqL+i~9K7S=T^GF_T<_p}
z2L~PWanRSnDhI0_^mEYP!7K;&I2hnypo8%aCO8=6V6cOcQm}5L<o+)QLmdorFx)|<
zgAtCJXmGwjdgq?<m~<bPR@jMjtN$)}Q`bg080{eLAVE#wcRhBZsU;og4%T;$8LXxN
zQ|ikqTMklrYzuH4xOq<6!8f}~DaN=N2foB5&I$;q8+pzc2V?V?`pL-}^PT8ml7rhF
z+~HudgBu*&>R_p_O>r=liv~vQ76&&vxXHm+Uqq)n$|kgI8l5KKSWX+8&~A3XwKzIH
z6Stchmth(GHa3x@!!;<bUa~=EI=Gt|4T^Hz^-c$OF<-8d85(Ekq#UZVrB#<OmV-GC
z?sYKN!F>)E2!Eca(0svEu=_<N&?fYNaHtjL@zMt!EEMk|2a5&p7E!)NPHY)|w1d*I
zha9YQ)P!gm6|Z{nat9APc*Ma92ah`7S3;hONwLI_5x$7h%Z%ta>v_z<;||_*u-U;H
z4pj#mDDPk$OB>UkcJPcS{1a?ms%ugBNe53+Y^cUpGI}`{nC!C@YZiXq!E^aC^ZLt*
zg`pRyJVoI%ufRqJFFDvGp)U)Qs{6WwR~)?R;5A3xYD#y^h>`L{N4|bDS$-#d!%=U`
z#BVuxTcUqM4R`P^hlzs^9lR&Z_i1(pt9Qj3W{e6z{E>q#4nBAAg*5NS4z`KpR!2<<
z*$!;0PuRc0{4Af#g}JgDevJG$DYTthAvS@F4_`XiDJEzKfiPQq5~0rTa`5`D^4$*h
z$XM7bbf3_#g;Hj}g9CZY!SbzS_nou=A8l-$9~>NV(96YjE)F|5!rpgL&&7`pesXZy
z!9Nauc5u|e30g>w<uPT)L_?0VNlzA<F^#IiivLQ(I70i=!CwweIyfbr^_zp=sn4dG
zhqAN&iD`d0>IMn|a_a4i{4M3-2Wzfv{_EgB2Q^&ObWz}<&_y*@*_<L5#V$%*WtV8;
zdYLhPO3qFRF+t89LaxfUx`eVAx*4nGqPB}VF3xn-*JnQU&TzrkU@ps_71ucDt?S~}
z*5$lYuWA-t-$er#=TpX2*RVEpakh)bE*iN?-}(>JICE*jTwJtt(aOa+t}?C7Tr_vl
zRPfDPBD9lTCaLp6TL_2XLpkQ9wTm_`c$Oyhjh~y(WvGj`uDU~(GW=9ZP_0GyLKmej
zI=SfVBJ84_i;G=!kn&&TqCL%NjGr3SEQ~cedR1jd7niu|P+6v+xiBLmzR=1!pa>`v
zadD~38(MLVi!xU<nYVSbF<rGlQ7)9Ai;J##Tp{3cp-~rC2)HsITJ`wo=BjP3OrNg1
ziykhnb=72_`SO$-&Zo%l>GDHljIGhz#q}<hx_HP%A2zIuaW2NY=;xxpixDnjE(W+5
z=wh&oAudjj3=NX*UTdlc8CNNXx_GU1XtNm`?y9wmVQlTi(W*s^N*5Q6)EG3<#V8jU
zm$!0gqa}L6MbbrFFqLPo=$<Z(z=a6IRnI$9XswoE%SFlsfi2V#>Ix+@?ZOkxZ_V`j
zF0#@ifr~LN#tP24{I;bEOxMtgU2MfjC%BmCVy=t(TugE?*~OhM?s9R1izzN{axu-t
zRF1NJ5k6e1jy1kfyeu#)!jH4mjp;6K&g;@G)Yv?}O~4GHw+p>P=u8(2b)|uHce58<
z%yBV`d1>YMu%ov|`0bc8(0gU1aDxHGIG{-9xwzlO0v8XunD62N7k}QNOc~!{sF_?1
zyRcT1g|0eom&_$D4|CQQxmfICXxRulE+3K4@w?2$aw@iqr(8Vj;t>}sU957kLUQb7
z#U6EeW0cY#R+HXecm;rq$6c&(@tCXT;~Z{Wc;_s8t&4RoDoVm!_uy@tPq<j`qJ;~N
zDQ@Io3QxOu#>FcxUUl)Ti|1Ut=whRb=Vi=tP`p6RZ2iA|4jZI>T5gRn!IwC$i^DIw
z;COVb7}tL|vv|$L>n=94%ws~E*aC8O@|%*>8?*+#Rytf6fz^j2Z@GAzefqV!qn5?s
zqv1Ul@3XJdxG#+lSV9*Urcs*4M=rLw_{GJq97Ha*y4c47>tY*QlKSjohl@{LeCFZ{
z7uzX$tdL`zdtE+v)s7e5WcsCxH_Aq^O}HS#yxL}qce0hJbuO3UwcRfEa47AFup%^W
zj6%(!5>9KcEWmyj2V5MYNq6y$i*H?g=i+-R<bjH7N2=7EPU>aypo<@*LD&d12;_6*
z^7(bd#W5Gh`4n*R6SH%1@@OG<Q?Rd(%248a(JQjlc0xu0yOLScET5!$xTujv%`|><
z@jESsi~nfBiVFUqUb*;-6+c$WN5J2-PMykGyMLIV6+11-zQ&uchiF`%DM+I*jZhl7
zDWRgYvS1}?R1;7v^xyB)>%^b3JX?7<QeBwul$QMA7uQOob{dV-Xp+VmY1Bz8b6r1;
z_`gMG3a*>RFT2Xg%s8R5gj0`VofM}*8V%EElm<_GruS?KC2rn2#G7G}#yM%UN~3ie
zP19(WMhnT8lFidt_Ev~vgpX9xmcsAqhNyCF(l|GbN3GcTY1HEpplP*g)RwuF6wu4p
z7<w;YMwP1j`gV+k(`c85PO&sDN~3)m*QL=rjf>OhkVYhpOVg^g$FvT0OyiO?v@|-U
z(K(H~;vt>@x%F5fUoH3=!#X~<JX)5<WocBTad{f$Y1Q~_x2|b)Nn`6dQJ#^`OT!OV
zs;6_5<&<|S4)80|xHA2}i^8uGK7+cY!69&U8rKNuF0_ZxYlZd{N|{~)Xv42hqfZ(`
z(ioaX-!%HAF))omY4m4#iuesHHXzM!b1`C`B~B$I7@P)|x%h@a<HIYPhovz*jaV8Z
z)2L)cO2Q-3SXZr>3wQc$QC_Xf>WoUO=UO6-H(G>8OUuVen}^XV%vnh?4Fc|zqokRJ
zmBy4brlyff!%iccMv#V+hMR_;#)X}bPJ^F`y)?Eb)h0j=hYWlCV5g9-k;7dRoWthQ
z7?Z|?G$y7oHmxQm<I?II`mdJyr(?Wedh4cQpVuhhGR35{`r0y?<+rpO(rU-TK3yZd
zF^!wjxIK+K7$uGAY21>=t!ZRxH{t6U=h`=?)wgEGx-E@+TZd+(`GqLPzTkDVoL3Uh
zOyf>=eHwRDRhotQ(VxZReaf?#$Ow%eP-Y9bhplR;_1-xGi0@6S`E18p(RpdypT_Yt
zPNXqEjR(?rH;wnwSdhkpX*`q0vuP|$V^JC_sK(U5R^i2IJVb?0V@VqSc8)DgtIaKR
z#LK1q`Q}OdFxxgBdW5>oJ>gp;q$|@{#qMJZP(#wnL_e0s<7rfV6mG$5kz0n>q_I|V
z;Z%z=DSj7Q&l0u_KS>1`qY-dX;wiyTOO;vc8r=Mo#`DyrG+s~Rg)}yBd?mG)Ib=HE
zMRs>_cq4mR*1KLxV?dJ-w-xnF#W=fvMcUz2Hg7_$y>Ji1CMpswKw7Qr(YrZ~x6*h!
zjdy5Reu%Jyd%HHKB-QEJze>3BFspWx_i6mo*qz3nG(MzWEs1{2@x`Y=8e620oW603
zK8w0d>asr<T2U*?>VJ~Pr_zROuFul=JdeK+uwCevLcikR6|hq%<#!3FcUyFC8vEFW
zX&g@D>ooRD-4CX5fLd3qc4B<Ty0i*^lg76KoLy0ROFxT#FABMLq59DIgT$J>pki!B
zE!G`L<3}m^PojZ8r_~&U<!8?xO{<lYV?sFt{UwcGX>2{f!^t#GrBULcnup)g_&trk
z(>R@$Ywwzc|BxpAGyT8ynZHC;IG6c{6-nd2GzvVm(8rEodF+}^*tUfpiai{w9WC;}
zvhml3iUr*4tqr*;8uC!xLjw;DJ=E|})5BSwdQ#N#P}>6^5NCQy!@2fyhKD+WpSny<
zRT{1e)%AEoih9Z9<A$7i9_lmeLF)Da?x1Vramg!I_1)@hPmSxwLJ9Z+e2#~v9xnFK
z!9z0-%{`p!;XDs5Jhb%C+QW{f>e<nXMLJf<7URB6db!Zr##8s`aWS^7hx0vzJ+$+1
zfhTI_{jW`^a;$YJ6D(3o(-(Pouq@P`8U0l<=D#8;%=?qn`d&v5mv|`m(1j&$7S=p;
z_7L&-tuxliQ#+lgY?pc{lLncWid`mREX?L?an+hhR~DGtW`uI_t-{09<As;A;&JVY
zUFFY^vS7U7y?MBshpU-#22(P)#zS`x-7>g3qnf&hhlL&%c{tKGdaZ|^9(sAW&O>hx
zH?hS$T<@We2bYcSp|6L29tL|D;-TxL%B8EdTOZT<dl=xUW0amq#Rhs<-?ws*co{U5
ziCh^@cu0B}=3%&pN)IDEj23|yi|S$0(9kFk?@v(Y?49n>WqUXE;}6fwA&raJP@eze
z!SImsV0$n<e2|J+Ok|z*&ZW^eT8CS=QBk&3gcmH+91o>ehSyYv&^hdR>OZfE%!2tI
zjAT6c9)c$;vO)t7IS&snsd#U5`IsuslNDnHj1xNE!vq1}tgc|J$!tImH+uMXTI0P%
z;nQ+V=oGfObTp@j>~8X}8FKM-4>x<bhuZGp77w?2xWiNbDR&qgj{jVG8`G=^&k%Y$
zHE?kF@$ZYtnd#w94|jRE+vER$>fd4hV>pZBu`o<Px2>Rfj;DUqnlF^#UJpMtDwylx
zJ`eMRdB3NA|KwqtRp)I!Ah|4{272lo?<&f?7JFFY;h={fJS=4+d)UkpdRXRRxrY}#
zY+%cHc*MgR4{JTF@bD-be`t6(uOgK!R(V)0;Dv_j7|+K%G#VCuoGm7&dJ?aen;h49
zc*?`7YSmb(C#V}Nr|_Q?u!w)Cd3eUdvmT!F@M6`qUmkBfS9d=C*05mh;4txvRAUdX
zd)VaRB@ZvN<khM%%~zxVlzdgdgpNhTuL=ITK|yA*I*Xf}H$1$_0p6gX{V#>QFY;{<
z?|9hhVV8$@J-p{(3kNkdP#Tbp^C1<CmZU+!jzM8onVgT<#SIFW)K(AMJZ$Gk_wb2_
zPleB#ekO50_wa>)>kk%tzZ6oQox3I|CiqJDJEUy<SC<8w(V$?rhdmzldpN*$>sYkc
z!#)wnFs}is0lyY6|J(gW0Mq%N>L*Dth3^=BK)Ao79d6Qu-a{S^({^RhCW9kvLl1Q`
zI4gsnJpAn8ADUASM`?#W{7R)_f*#ft75^eB^N^Mko;o{-2M4L7P86P^@t2^}LVx%0
zCwsgi{D*iS8mKym-oHHjEqvnL{ljyHs(%Lm^H7jM-LqnpDa<H^q$|#-^oueWGEf~%
zbYft*B!g-h5QGMWLjtO2P(uKjH8ZG{$F&8VkwF~+XXg3)Q?Ys()X(6Y44P)pAfx_+
zZj`~<85}!N(lCRL*N2#OV=2S9Mg>hM)2N`VB3#_L92t}jQjOe9LR$%KF0@5PjWSlJ
zWd@|@H&COA=hmK^!Fd^!XV4{swi%qC!NnPL$l!tuF3g}^1{Y<JZBW25!c0pu2xriK
zU^v;ZpzF`2?Iq=#E5bW^h29cf>X=aqAIad-3@*t)%b-(6btvQ7FI13rmM9n;F3aHI
zq2YDE7P3^A36r4%8x(ZSpdy2423JUdFBe*+T~%~cgMuqFpv}1|gC_@u>7M0(;`>Uk
z$)GZW5gByPphrfXu5)b$12XC~>7E(%%HTRa9Tt}LW!oa0URc&UgX=}?NRx0MYSh9q
zf_@qF7ba!sR&9?C6!}3J3})57D?S(DAsGzKfM8e#op~R!$P<u5fmjA3GjKCVXD}**
z(HWQ-SS+xJB{R@7cz$77LTJASDp*c~%<>QcU7tzCeJ(0VWk6ty41ptYDa?po1{v{=
z&%hUu%^;xsMJ0@$6V4c+^xpNSVvZH>IHCVF2~WsiVg?V1JVPgCFge4+-^w~IEbBk1
zcxnbWX7FkTuVrvk2GcTFO5qHqXK-@{cV=)`2DeC3cVsX#gIhDWO}qmp70(dBbZ(dO
zGw~;@7tl4GR7`w#2D8|k89bQ5Jt8?LgL?(crnXEfX8TiYZU*-WlX&ZV)jspYdw&M=
z1@zw$eSn>^sO(fK#!%LAVP1ZbfW;Xs5zw|%j6J?AgXI~l6VAgzR||ba=nA2a3T0|5
zGgy_!<NqvqjOrwXe_WVrgsx?O@x$4|vL`ZFPbJLYDdE2&^l70lW$;V}&kBAnqfVyU
zK($#|_Iw5}2$OlO9i@8bMe%OTfL@-e^s)&5-_WTSsdJxR&*0+>wq~#?gEvIr%?#cb
zuvzF^LMi!n2JZ-dSLk~}m!2$Yv^?^G;17j<By@|=mpZB9Z4>-?244vHMChj(d?sK~
zwI-C=E_fFWNCsaD{z~W$p%mDeLDg-!#CtN>o54N_V)U=`GKU20&)`6w^NoOSGx#pg
z`Ch=m41N%>R}NP{Eci%X=0}d%JpNh0QCdg=$Az8{db)=?it1zrr&yjFu<r)^mcj2C
zoEe~QpiJT)8SM12%g3J?{3X`rZ`ukUy?va{;GYcs&EP*;V;@a@C12p9rjJ@a3Vjs$
zDE3i8uN|x5qnfX5U3H-$U)d-+KKRI_$$hJ@3a#y{XGc9B^?jV-qYe{kP;jP?7v+Ic
zS3;S~SpsOHX=WSvXykLbPep9#D{D;9*hdo|4DI`K=_EO6oO!{=>V^db&3rWXaj}mM
zK3e!_>Em1<=P|S*+{#BAAN#LDYpKpud2o~e#xI3!S)C!c&_}6{*9V5r7kYsY3=O|3
zuX$k~?S1vg;|otaU%mER<fGNWVgfQpR)jnHxWvb$KFWL~2Zc4Eouw%{`QVd+lD`a&
zMtqP`;4&ZOKCbX_rH?MGj*rWIH2%4iFDk5KW^lMdYF)EYK~(Y`&`6yDc$JTCK6*&d
z)xz&Cm_gUDRT~ymMJHe)*ZSz`qn8h+#)c(lQ(?jNKKl6T(J<0SUtj6}aH0Kt^!G79
z@K84U^2k6RgM8F(8XoLpi12v@_N#qE<S^DSpIhugRpYBtLPz+B`G~YHVO%<bQ9eeq
z1$-oYJnZ8UwuvuiHTam!PWd>Z`!IZ%J}e(8YTZMTi9T!}j*q}c&IeCicYQqHI-K>n
zH7l0(;jubCd>_wjsGz&0Q*`ko8bSFj6;C~-9iI^WV1+iu$HH}yu|CH681G}!RpClI
zR%f|3!N;s_VS2B$V^xQ&-r!@3kGp)_?PIEs8+}akF`Zg%Xg3Mvnh!Dgq&NGx&BqKM
zxA<!HY5j`mt->e1-Nzk1?({(>z5IP<rpRz!OfTJ7J2uP5JwE39c)&-&iNe`F=K8o#
zQkWyc_X_1V;&}`*wEKPa8xH4mj6T<nF@*)fU+80zj|bT)H%0lg1`D=W5?SiwApuLI
z806C}6VBZoV#@{aGc=hi*swmHW5fDb>0_0TCw)96)nD!7314j`dd$b;0@nCgC;5`O
zRyb>=Ff7%2@p4x%gPvxOP$dS0pY`!_2W7f>MIa|}d}$%`1s@xH?C{kA4m|hfMIW1e
zyyasfhr{mDmxL0$?Bf-|uljgR!0STa@UcliyjC&A=-%|Pvou8TwvTswd?umqvH(7|
z2!3B^_v!_d`9LtihXOtl%A`IPur(jL&BrH#KNb3p9b=TEXI1-Lyk7|2?&C`V4El;j
zrc9NA`^h=w-%ac1<A*E`(d{eUOQp(URu=nwd`+|C;{bI#3nz<je0)nImIbo-&d2vO
zq*+wU;vl2@IO*dQtxdD=As;{a_}Rx{A4i1qBh_zHWnzE|ol~>msE=blewCp19dMil
z6U?1OCw!>=MIE4AGqp_g*#Pdy<+(RF?c*OGe~9E?KK`ct=MV@hG44&`;*w{hDhqP{
zrM1tZD2x9@z99R*)L0CzJ{8m3L1o0mDICh;3EugbMV&0FXHi3hYi3nywX>*|kIN`k
z@|(Vh@`t`Nv#6WJSy>eRR@fkmh9Xuki~3o$9zvHLti3r}Ym~*=B13F83pdW<id7+o
zK3)_)CyS<8bj#xEEShD}Jd4g*L>N7bmRXc$5zeAj7Ok^5FN?NWw8?^L@((_ineN;y
zm<W?SKZ^?__c`N27fSBTh|4d$5t6iB78hlqWu@?0{8*!)LlzxH{$fdiGM8k*beK2`
z#<;|tvg&`d?@y_9r%SUa6M<+Jmt|3&Mb|7UBn8%G<wMafSuktH`tMZX<*bzST|J>!
zWO1cPUd0L?EvF3IhiP7uMfWTQWieP%?vX|BEUwSuTJiSGqE{A7d1LGH>#}M?ARP<V
zCyTyW^v_}dduoVU0qd7le{T`97Igd-j<pylSu7CF5cXph$t;FuF)WMWSyW~*GK*1J
zjL71?F<LCE79<In8VlBCT6A<4acM3ZG4jb|Q*i61o>j|kW)>Dxh--#WexsoPb??!U
z+`OcAcrIvA&CMd6#Vt|{FN;hT6SJ6<h0h+OOjhj>W2_*Hu_BWbO3oNblVIj?)$(-X
zC1`@sJ$CHI{;KyUXK_OoQ}VHH%3^93H;Q-D!3e7}eW_X^o|eUQsR%XU<}7xNQ7Un3
z7Pn<FLv)^Me`glAXK_asGo|HE+A&6CB5ZAL9J-5&H%9yLRN*~Y%+BK5EclW(CyRTt
z{FfiAvzW^^%wkCvOS70qJ*f!K&*A~5*`VP5EVh1MOwNL=dJS8gMZwVMgF+W(u}Hwm
z22nC8bNZ7gWgf~RRi|Ki77u5k*C|*gly51+e<^%~`XK4>&1Xdxj|x7uNUg5W@s;c`
zDl@HC7GGzvCX2Pykfj%Yn#DTSG>ezq#@n)3pT(0|yp_e<Sv*BM);auK7S9WKI*XUD
z2tOnAS)qg0M_$NcOGWq<p&Nw0n8mgO<r{^*B=lvW)dy6PPvKWZ?6oXj&tennxVhqu
zEZntG=0*2r7Mmrz9=u?_bNHPs-lbBpp|U*4rOSI+e3(_|tGrJu@pn<{b|XIE@NYMQ
z7vg-xDjX=K+mgkdFGr@FEUmRa!V}DBv3ZL$74;L^XWm^^T<tTd_~$~u5V~C`TjNUs
zUkTkIbf?f=LU#+@BXlpzX%#cdeo6KKi}z;{9kWnQm^|g_yDT=ID5v|L&yF79gW@GP
zoW+qW{><Vp8l0>;tM(V61V3f*v*4pbkLCHt1)LDdSrsLJ&EjMhr-buc7JuX=f3K2!
zEJB$jrTAOCg@MY2?zDLS$>LuD{|PO~hYo93QY5%IKuLgV0YU+4=R>Ots2QM!fQC+t
z3D(MoUg*Tm$m2Q!%AMF*0qO;qGYR)jLj3>@0$ef?+C(%A&?vwc6R>>(&JNI+lb0OM
z%ArXB1o$&hr{|p$plN_N0=yZZS%BsN+yLnSEdsO*aAkn20<;RynrQ~m0<;NmZh&xr
zb^(g74xbm`!T_ZK+6L(GfOdX>3j)OVMhCZwu38=CWre)H<olZ8s_R-VVp2=A4gop_
z7{yCr0$d!ZlmE#i{pxAWs~NuToATe5X`KRe4$w6~MSw_vO9Q<9pjH;()A`!&2es}?
zwb>78lk0^q3s4^5_PL=}i?lAxdQ<d@2I0yHT95lemj{RjxFW!ZHN!lUzs?hpFDI&N
z0=lu*0b&702Dm0b_W*qZ^b61<z_kIc3(z}I$Kdne_nyr3rHWnw3eO0is1Zh&==A~m
zuuYb$iz?n&s$G9Zm~QU_+E*L3{s9ID7!qIrqxY?xS1&v;z@Pw^*A1^}7$#*q3=J@X
zy|X|g9u}yJU4{p!46w9)l=y~UN*<oCf<^@x9Y7CYuq6XL{J53~kPPtDtrdM%Xba|Q
zH6Pa=U#VUBux7HqHfUe0kJ<sO0I2{+UyN2S4?k2VI>N1V0_=OQqK^~feFR>BOn`d>
z%njfN$Of1i;Kl$!fLwsd0dAlkuFx<^8xvq`fN=rF2bdJ#?pomq)Q~g66InHOQ_XPq
z`5JG*AiigOC9hw3zp!XqVbK&e=G02xublm;c2j_90q$bl0Mi599N@M9GXnMb<CXw>
z)@VytX}lfjR%+wZ3fvxm(~#6-+Dvx(3hfS|<lIT^eN1BoNoNJPC%|kfxwJ!QmDXmp
zcJ5W-*_VcwM8dB;ueB@>-xpwBfE58A4RC*e`2ijburR;_oUl{9*K04`8@gn@#w(We
z^TTtZ;YG}sjUV744#RW9YsYJa>$D|o{B_!d_1dxk%Q+&Rj8HR=hocX(@1BnIZx?=q
zqu}Xi=(<YMl>t@-c#=g5usQ(mOL{E8<81bp(YG4M)&y9~?rt1?BEY%;pLehPqjAh~
zV&*LsKW(hw$C~wQA18L?oeF06bbx0AJV#}&9e#$js2iShMU-E2o)7R!fLA#H+k{^T
zupz*Uf;R?unZs7T_`DS0+rCPe?$bI^oE3g8!0RlJ=olw!OU{iB?HZ*5^D2$a0p1Gm
zeSm{h?*Q)v_%gs(0p6wF2Ka<M#oxh%ei-1RfF}m1J!WKn*CKl3k;s++TZQwn$dJFl
ziER@O_b^cM(*U1I(C0$Gp#90I{TSPW|NZ;3(TVK{uruJXZ1^U?t^m6Oe4S5ikAS@a
zc1%zoH}}yTH4oEquhf1Cs``uVTfyJuV|8;;^>fn?0S*QDHNZ*QmbyiU1OD!+YD9NL
zz>h*XPyCsKg~PKbd@R6;0B7ga4$R}i;U2SJ1n{RYG8y+&fZqd**;W3z6Z?%i)2aNI
zze*VNhlp`s=wE?)(ElCabbx;X{7bWzQ=I>VUm}>^f*cA37v(v{0!}zFhE@|CA{9_W
zXw537s|0EbCO9L9I)cy4bDFv_zJb)s;p3co&#9k7gB%*>&?tvFIoz9L1<^Q%dvcgf
z`=0}H=%2%Y9L~w1X%3MbF3q7?4$X52=g=;P7CE%cp=}Q5=g=yr)RH5#jeyoU@M|ME
z=Zg0{q4e%5i(VjDb7TK>it;Yk3v=p5*U}uuuh9s2=g37lw9nz<9LBw+aSV1~)~hrv
zr;K4oiF=9Ao^Ff@b`pMPp%i%V{BT(gm*vnshaNeU=g=jGt~pfX5cMnh!F1xQ6}(M`
z_Yhsqsx8v4B0s0DC8E1Rz?C_?x<(0f%fWPGbXVtaO&<5Tw({B>dgid}wTj+S3|g38
zQo`$mvPdi~>Ge7E5rMu!$>}G6r}q!cVNec}a+sXM;2ef9@f@t2dJGNCA(2BehhaGk
z&!JM7<d4c>L>|X-7%BLw2^xb&3y$YQ+s)T5-=OI^EN>A0Vq=Ao1HE)CKq?12hcP*f
z&B4jR<%52imdhcXgTF}gg?d6WRh&f{%|$kk18E;h-o9F;Hjdt*l@oH9C}2F*=249t
z_8LPIow|_Tki(Q5Zej1_Fg1r8+1kyb)1|X+Vg>7m`64<^ylilGAKlG4)c8m(J>8bW
zj2!M_;yGo+ZqMOP7PxKrjvOv%7NwghfDip?q6xF4{nuWl(yZzNzMf6^t(0FRuNtJz
zWSg7A=G^}w>N}vMD88?ESy)5~5|=AUg1`*Xkr5WwK@<ssN|vQjf(nv%Quj=UnVvC_
zbH+eUMi5X$K#V9#G9g)Vkc=pq|Lw=Gzwewr_uP8*D!qDDovZLo0VWq<N&$Zd#<T*i
z=#EVVn9dPVfOQ3UdZ&M80cI88g93b5fY}9@Q-Jmt{L2gQRsr5Fz%n{^N8dYwBnyPR
zOKS_6=gQ{`iJZ$^C}fe~VmEe)kfp5fv(AE?dHx(COL?yV?@MvyJNM*$RDh2Qu&My7
zMSn#BRtn*Iv(#tuPb9dyzq4=nngV<#^(X(7nLOj;inVJC@Mg>W&qdDd-Pt-GUr2C0
zJMNNygW$#j9J=Ud@T&rpY?ia<kbg`6ychjBvj;gJV1LU}3h;daxWzNqpr(W?5^OHO
z4+Z$K0DCWZmh-Zo?pMG^3OTiR`?tO0|G5Aw1}WCWJVtFR!1e;{D8Np7LI~*)eks7O
z1!xk2Kg5|IzZYO}5KDsiqX4@K@Nf{mApR`C?gHEwMDZZ@u#^H^E^zK~_6hzixW51g
z3UE+3qmC7DuLMVj#~~qy3vfipQ9)mEC+fKH6M`oNDLhqx(=LB%a6TnxBzRWvoZ$Ha
zTyS+R7T}Wbm723d<v#_uQh<L8@Sg|^2XWQayj_56F2641MgeZRl3PN|SM%?<l8m6!
zgv=lc3CR-t=N+e%BEqu;87wN~9>HRQ_X=(vq?8DvWDwPYcrXZV{#YuA93l4$Qc_w-
z8NsqaloL{3u!10UF4y!{6b``$1S<(v7OWyzRgn58>UygOouSH&COtxG2-Xy=CHPPf
zwS`cvj*z-RjH>BnutWcRZxHo@AgM3dK#;+PK{RrC;~)lk9OXxXXcEM<ApWlJ^#}22
z5Iuq@yU^D(h-N`ND?B%d=0e&Ewh(M3m>0xjLIQ#<1s@k=CQWK9#3v;9q+n~or-EoB
zB>O!-71{|WX)oky!485QgZy*EsSgis!AX2Bh)%Agvyd)=U4!W6%DW5UW}VLm(KE=;
z|IjOlU=X1olpuOb>=3~h1p5oVDA*^6zCu`5KbF40DfFcvUKZgiLA>h54iGYseX+>V
z;W0=ggM)k|?gWRrn!|z^?(z{q6u6uZ`NKg(f=C8o2l>9kX{j!#{y!ZdF~PVXuj;90
z2sZ_-AQD0-zqTci68>foBZEl0^4EfR-Q{lxsr#O9R1l+uPZAs>I6jE6LdFR)&zBbX
zCJ3MCN?N_=n=E{a;8a)6lUKWrf$2fa2!dp05VL}qEqtyZg>!_wMTd7K?*#F#a6TlV
z!aP?#KZpe`Unpcz5NBEjsIxSPWkFmE;(8FvgLp59?}GR~=xlWOzTo;GJ_zDN;U5XE
z3F2cR)L9{9rQjz)tP--?jpZf5r@}uITr2pw8@n!uFNE{;4YT60L4q5D_|nzcB;+f>
zuLZve;#)VCH-MXi_#uehoR;Y=L2$!U?&i5Oh%G^I=hL4ANq!cxHHd9OwhQiXV^6iq
z|0U>b1Ny5V$!|h_7yLtTm*AiDkk5Qn*vqsW>_Kcy=JD7s<Y*8Fgd7z7OYo53VL@sh
z5%SeLzGFg;3!V@>DM+1DLQV^wvjdcz3F2%J=R|Toh<{wo3qmdiaY@K!!CNhyBv)LW
ze}nkX<yVF9X6;50H#s4PP(6fOLEPpP9YU#)bJ=_+=wP<+48hD03JJ*)EG$T!A|Ypc
zT#}-$<em_U3BT8s+$W^CU<pCqoZc^_qF`x3W>Q8-S;2B4ly~J7LdX%$D`cv{l|K+d
zCE=9?s|Z$gW2=Smmt2X}5J^43nu4`lorglG?eaPy)OEQ>h*yx^%|h#k(7=st7(yeL
zHxA)pm-|9^M0nwT`AqU?2u(xKLWqUXEQH(;hJ`RZgytc%2%${~Z9~Wlq3<WomZ^`0
zoXh@|Gkk#%80671gvVXpO2`v}PYSjcd`gge^0o`1J^7kI-w;;a?|nLii5-1iLMXj0
z&_S@H;4>jSE95!BPJ-0wEQH%)c9n$PLg*es58;X+b9-J$&k*umNiQMKmGCmQx9}GP
zUli;k*r~j?pHz%>>o4S`5MCDYN(ci&7<f0<)p=FOpu0iZVNGC&@S!2hYT{*ZL<j{T
zghPn%%FXLMh6;udqV+cBUEYvq+j-oelRJBI=hkQlDpS4X`@58v$frH=5VzI>w*XFr
zV6YRX`>YTy&hl}KUX$%@5%}VB-{?}_W{(AuA=n{sH_r-TU!981Q^D6lcs+#kVO$8~
zjS$`pp+guQ!x$ODC}tAEr4UB58X>F+;nNU0w-1aB;q4IK31M6a<3pGrLdvJpGA^GK
z!err71gE<4X+pT|DfMRvpD8#?aJJx_5Z)3J`rJ`_SNIY^2ImTyCpcelK?n<lEE1&7
z;*hhiE6LIjmW8m~m47VcJ;C<{KM3JNAs-1c2{(Hsu8`o$5I%9`t3p`qaz0o5EQGZo
z{29V-5q=)RS0Q{Ye4XGIg6jo0gs@QvbN(`fO)h^m&nfGh5VnNylL)^R{7&$D!Oem{
zgz%#f>hC|||Jmiggs|1++d|kbe23sp!E;-4nS{r$68uf@_YnRNLiw%`9(+I{*%QLv
z5KfDHpBsB5g#9i*5W+#>e+eEEJS=#9t5XDzqahp<3Hfm$Cj?K1a7qY2hi25@uFe@D
zXW3t_<h+mzuKwi^{^1N3h9`_GA^gk9JdFFp_%DR3v}!W1Xc*T*&g1Cko(*J#9dccQ
zH$u26gpylAZijG32p?`!m>C9>6cQxK5>hyfBCaGmj9FjjGwPnOQ&2HMl6%9rPk3=x
zQX-6!!dE`(oT2zMwR9K=<AE?YH*_AZmK7`~SYEJ#V2)r#L8^VV+()bwMs<-?cI8!s
zR1Kq=D|s-CSDwhBGLIS}tQkfvH})YRwFT>h!CMuo@qS^>vjJ}y^}@~*)cS%?hS4C5
zhQb?#@tBatVLTj$FN{aRXfBc_f=ty^h+ptgT7Hm1A&+KZ<hnZlt<P)W^1Lv<t(i@Q
zfGcSk#^Ww;6~+@T-}|ADYON*sR2Xf9v~^?Kh0$L4)2^i4VC9)Go(*FMJDpt?MyD{|
z4P$N?ox|u7#+zZZSmx_0sD#m5NH@XmVe}C4ydc$jhLJD4mn#`~J@<t$UX)-sj6PxX
z4P%%D`?)#;g!B*NC0FvYkXJZ`{^Do016}#6VGIgma2P{e$xtD@!Q|ZmHHS-ZgkXVS
zP>@lfFjg#ebRuCy!%)M}!brKXF(H;<JPcik5r!$`?2-Tz@_|1wA(Et^9R^<pQJ9t>
z$!kJh7knd(bIY6(M}{#fjL~6?5&2BPv0+RWLWOZ*jCc72Arr%x<VtGSaY~;O##C1_
zEsW_dpAp8C1x_imL^4}&jvM=ykhjBl$CWf3tjr5zei+}-slr$g#=<ZzxAJ}x#v&o)
z?}xEi_!3vLG>l~~UmnJLE^j?pq5cP9eCSF(67sR&3c;0vzkQdtDvZ@(?$+%T$K#7I
zJ{A6%D_I-H=Pq9t#;e-{R9i2S4T2lP_)^HGFurm%@8<t?7%YPN^#AWT=X?+-u_^C+
z@$=2DxBnpI$1t{p@sseM!`LQdtE+S4$2{h+o%3W%C#(9k0>6ZDB#fhB{K_K2;OYKS
zLoeSJ{T>GKk1%$H@u%?Jf(Hcmgt1r1K0#{k7c!@wllGwSzXT5n9+sRLwY+csG0sBE
zeCNVA&Iz!I_k`d{!Bc{#1sV0XkTZg31$zxvc<XBR%)c1Mr7%iFQ8J3lVf@2BjbKRx
zS6EOO?ILI&!GB>~<vbZdjR>xVaXpNAt9|!Ja3hS@9}Ij}%3CPnked>`C3riGJ3=xf
zim{nOqJx#J2$-aB1Vw~o3*H++Q6Y@FM@TV2zI3}Ug5nXBaAQjeDH%b9*Yc>$gPNry
zC=)^12*xk>L9m=4gXO6yJjaz(Bw6TV)B~=hl90*~REeOf@M;k}D1<lW)a1ci@0t<Z
ztNNNnkQ+g*2p)={b_8`I@QIvJbt7ota!&+YeUCyO^&+V6^1Y9H8@jxakj8=!N6@^h
zqx^^)+eC;zf=7ikb>-s+E6pR|9NtQhq=k??!N<7dpDS-E<nai<e$1!Z6R!M8A*}_U
zilB`vZyRwoBB$ol5p;+^iJ*4`pU?Akj5ts5x(R<q@L9p<1Um_Kj-ZPW>UX6J4OU3H
zN1QhuJbDOuK7yXEBtL>)!auE*O@$XCcrgMkf*9p<eSIPrAcVZHkbV*LcO@?gd0Ft4
z2=r7Q)doiJsz?S!Fg$`05e$~#5W%5>!vv|!4kZ>yFdRWpNXU(?G%Y70JnBkR=DEa4
z5@&G{Oo(7&1ct<p5;P;Qgd_xC7feQAN01Vpj^H&R&n|ZI;ZbtApZG=uZ;G6Jq!@%`
zv`EId^05)lA&yyijF-N+%O{C&hT!A~rnov&g-jEiPES??)Snr_tO#a{@SO<WjbM)O
zw*=o7q}uE*`NX*rToA!LA@ki>zJgyUe32`uvcR`Af@Kl>5W$ZTERTS<P8%cmGJ^Mn
zzaPN|LOzUORRpUe_(+0O`&h_|2v)k1Pa^oYw3kt9T*>D`J{9~-aIGLUskSbHFNCZY
zq+~+``Kx>+yg1wxaUSOIs`9JI|DLgY9l<xkzZLvW@O#0{g1lH|!ai*STO#-?f<qDf
z6mgzT{2am72)0GAJ%T+Vp>T(g-y_)RN`4XYYXrZ!65iPUA$*tMpRRnjkXog@dxh+C
z<@+NzApD>!;ggob5gg%!8Fk(m9*sEocLZmI91}b)cp`$6LQV;u7Nqiku<xw!n}X*e
zI3K}<2rf$Ss^BHTD}t8={}KFhu=1~v{{)#^V7Z@oErRQ=<VM7K(?{Vgk=z!%6G4Vl
zI5UbYAyg<7ML}6dlSknw&a`vxzO&ufqEXx<yqMs<g7>+x#iRIRT^{vIMR9)=6QY<H
zMd>KYMA0^ic2Sg#qMRt#6f7Ub8*81<Y$`}FCyI(f5JgoX4+vHgWVV%sREc82=gynE
zY7%_Vjjb-Eh9Ebjs};pVQPh@TgD4sbsUuid&=ZAM2(zjuq<$29m&ahEC>lr6B8ohb
zKODuQLVT|NBT+PQxnBtH<C?mXW<qkKXzohZf0Or^@F!eJAc~eQe>{p-E~hU&>GIZ5
zJSDu1D;e;vuYD9xN3ncDz8OV_C^|;bFA9EV!s8hs-J*Ebl{^<kC*hq1ySVbMQCwW;
ze4WxgiXKrs@5*~e(bMJmQS@@T5=GH}bMKb&LKH8GypJ2(H|m^y7~5YYFGcZk6t6@v
zAd2Bpj1b{K!NG#BMlnbTlRPvnXNb#(MlsCgZ@2Uo2#-V&6%rH-MG<y&*aX$(@hCLm
zF;}vEzSBTG3d5BQzt3w$kr3-8qZlcKmb9Zt2~WF{*P?h`_#08Y8O8XId{oPS$V(h0
z^3j50T>Y_8jC1*TA$tcalcJa$#ig9Uw^2-qVrmo%qgW)inkM+R;B>(mQOp!FOOW=Q
z9mO2sZwY!=IPc@$5&o{LGgrvGDCWD81wy{fDzrF?CA71hw<e0EQRg!!9v=x=#u^HF
zPw;&=_Jb%sbosDlzK?~k5M1fXKZ#<M@YRC6KxMX{M)6q`Yo)l2f-LuQA?u>}Ldbf-
z4Q?zyYWh<6Cc&=+zZU#P@WNn)nS3V(qz%81VzclcqWCe2Ev|ff6hFEA=P0%c-zHdi
zh{A+Cc1Un%6u$`hRd9pP%cwu1*cC-_6(v-D+k@RvoQUFN6nmoB8^xh04o9&sik(F>
zwiM0S&k3q-;kNJ|;DiS6L8`$^@|OgU&CEH%iWSYE<d{f~avmF^P^a4MLdQk&NDt*y
z6sI}*ScfS7<^&tXOYmNh*q@qalb;oSE{gL)YK_WghCC`w^cAaH__FA;KL12<Mfksh
znJWGha#iq};B~<pg3S456t{%m7QExiGgPMz7wZ%*BqU3alEOlY2xbcwRdJ6STTIBk
zg7*nBhmtBvsi>}^hKl=DlvV*152z@kqO9r|ts=kwRJpE#W0vwFX){Ejyn^r?6$?If
z+S_Z0!V0jNl~hzyd4c4ltt?nYb<AE>#Zbw_$+K?ZyP4EfQA<TV74=o8%N|luN0Lyd
zwvb~JeRYL+q{3do+7o;%tATK)qB4($qSi=7V>gGR-IYgFG*MAh!#$ewMX_JS(<(Zs
zcvN+QO;t2gk*lJ)il;<EVG9*4U7n}nG2sDMGGSlfaTTppJRy?SD*Cr@z9N27g7r`2
z&b=p#k~S*tZYkSVMLRcbdlk=$az_=<sQ5_5$CRjePDM~fNOk^L>7?Qn6$4asR?$U8
zR~6k<^j7hLitcR7(Oe!qh4c`7Ugg3F%3XQBie4%d71M_(+@Jb=SN@`kexlq*1?7DO
zNj8c?f0|Ln%Oc!4L^-siA)~e|Z8%WHihZ8JDqdAFNOk`HD_g`%vvUp4A?!-JM-lHZ
z6(fX@4;S)lMv(#)^KTXYrEn1n!zv;wCa9RGBC0}F@do?4w@*_MW6f2hRNN_#H_Iq-
z6}k#Tb$IdeuvD1B8N9cnFTrm5D33={NUNoJt3J%DxGDem5GAeRHI)l5D6gxaCXZ=t
z@g^JfUj9fGqg0F*K9;eo{bPhPDr=}h94Eo?f?Q2vlInc(_71)GynnLv+7uPz%NCic
zVj8WgIxBL_P%)EHCp^6BU~rZQm(FiATg4o<sLjK^G7aBS@wSRd8ylosK3w!<1FF3%
zdCnD_Cpcelf#5>HMJg7nSR(v=!KEse30bb<?=!jY37>i-H|uQf$RoKQNRU<iP(`D&
zxg;x8tW>d4#g{5R;V_(+y+*~SDps)*yL(ql>sEF5l7A*0x=zIxD%J}BT>alV5*d$U
zy^45u=dbw<l92pNCnwb=6<?`1qT;BEuT^}bVh4w<if>hXM+ZCS`B_EZzdYa5R;N6h
zRlK*?GxDJ42Nl=KdwW&z{-|P$ik~ES=`Rn3GxmG7a(db8*(SJMkiq#U{J*I9RmCn&
z@+una_Y6Mm`Ax;|D*ljcznqfScWNH<uRK)Q&FO{Svfpz^H22b06}$&k>{GFy^6ZR5
z<-MT_-UA$B6}&9;R(8f;Duy6CecBT`>p9Fxpf67B^BkiWsW_+NyowVXj4IBkIIH56
ziqk5n{5R$MoFq+#Dy-6KuK9f0^I2=}ksL2uO@#|8F0yqhuG4O(JeO2lQNhy5FRS=R
zgrleCeRA6KFTblln8)Kk6<2B1y`I9SJ?(P5H&onIk)@%q1{QQn#cd7{mV2!bZIz*+
zT}5xEhC&)>qGqQ(%sKav=i8bJ^DLq{|M9gS>ijY1t>Depz$8CsXB5+Luf{+6@vMgX
zG!)nHkcQeCN@ysl0U93AP)fu7)IZ~SMOLdQt)ZOe{6bqsgp`-naCiNa@)|0LaB;be
z95=Qit0aH&R?=``VRlsw)ihL=*eb3LSLb+8cnwx#ppSW0*SLPTL+EKWHPn(={t?4<
zA?j$TtKm@%O*MElcr`TA&{#t~4fR=stjEHH4TLw8g#1UC|08eA%y?LYTnNHh^y7@j
zr{NJM@8)eHNaAOPoxLQ@G~{Y%so`-A%{4B+gMehkpPKVDJf=DS0<Uf96vy1Y5z90{
z#a0@+6)Dn2Lt8262@Owb&fnIpCHRye*AHQ;b{g7C@M+1GzY*QFVY-vIgUCCwl+IrM
zoB5oEP8wd(FhE0R4P7+!(D1yZqG7uVVSBr2=q~(jK0P($vzs*Z7hx|AFKBpCa#l3-
z7SiUK?15dpTp^^7hPT$_^=0p0a#p=y^?DC=mJ@lSP}WN<QEc_H<}A`e;Xn<qYKUlv
zN+yFe4AU@N!(b|C$d;8@_$T;K&6zZ~49*A*1sZ~MS`9Z=`tLf!u%U_}n#?dP`Eacm
zRfDGCbq#N5h-rvxNN7lEIMl_fYcRx;>^Rz!l{7V2t`QitC6kmO%l#(PscKq+uW8tH
z(ODmc$D0~nzEya<hLIXZX&5bevb)EM<`@mE2Gz#7Za`<4CkZEMn5^N07(R?)iiWA0
zb4DH#!!!-kHT*C(hrt;dW@;!BLv{?aG|bkpPQw=(=Fq$v-e+<RZ)@1P(7#;6dm7%+
z@UDirw9jt;g0|j88s>5EO0a2W)&e1nT1Z#V%(|<ySOYbe2rkvIOh|gDLLsv~^Dv5E
zDKu`h??VkANkN}#SaQhov4)izxP$Ww`txpo`br_<>E4Au(XfhUyx{B&y;{Q>>d2ng
z403<r&or#noZX^7*Koaka~`La!s|6`(6CFxpBlKE^F|H7Y4}~kmo&15uQ+U3u7+(I
zzR~b4Eu-N_4FmNYmiV3I_PvJ9QVr%zVVS3!cb)Iw!fEYzE(wpHG!TCl#6m~1UBeCy
zJ4JFgtE|~hhQDa|Rq`A#I*-YzT<NR8h>CfCaFW@TTkWD}w}w3$&T2TPVXuaL8g6dS
zJFQ{Ah6A)rDsV!>K@H|o{}ByGh5SW-6GGu(A<U=Jl}sMT*g=DRB*!&$xac82DVdyN
zaTh)6l|n@R!uGd@I@|KjFvH6plJj&emaE~GhKqFX4gMRPZ9el~(r{VBKN_xRxJJ``
z=I8ORhW~`$d(p$-RpBg){JL-^r;y3(FZSQ&#H%4I=4|Ah5p#Bq9#JTxkOVVh_+n=+
z<vd6jRXFCj8G}V*xF?3DF*J*zSPb{ZP%DOqVko{X@4gty#ZaC+h7vLCU7BAqhSD+2
z{ocPWo>MA@`$b63s4_7uUgT#R%f?V@XC8@ny}v>Xn-=-2#E=sMgB4>y3_DKbu9=+u
zKn#_H=Wp^?jycBR!KkV+REy!k7^=rmBL;JOF6C4xG04Y%0~xI83TwwuCx-D8b7rjf
z*Nx%t&HhF)BzER`SXK=6VpzG}-+;q&TOPBmFGWz&P$bNg^2RYd9D`4y{G#9Sd;cRb
z5SxgQ<WZ3i@7A12a%s#M@?+=~LyH*lV$RQrPsi|B3;`OvOY=4{w2a~L7+S}$d5OPO
z3{Qy8lQE1flwokw^F98%|1<U&mGhM7P^}=NV%r$nvC01ydU3t4eGIpj_#av7Cw5?E
zVt6KoXJhCV!}-Pj=VIs-Lzftajqx$7;H^wzXDOwico7P_vip|!=T@lLUG$lx2kYkY
zo<f|2hdhd;>K{Xub^hK`nHOSsQAi)RZhd3uC!CdMRbPtXWvSjPF&tXw9~8p?39_mK
zV|Z0KH5p{=V9B3kC~F(T@R;+DXDo(z3?qaW2nJ&a2?@s#VN^Ts_ZK{zrlP_bRAbOM
zi(dEW*F2T4dh{5K7~YBDT}freFfxWwF<9*V7?LsA?1EdFZ^V$23Z!E=u``!VW*59B
ze9>s%>&)bkhlJhwrt~%EpV2Xl;T#^rboN&a<0Lsp@%R`f#1OmgnG(Z9u?BOS6mup+
z+GH|E%|#E7=f5h<22PD($o0(A3Ezwu7OwNJ|1Eb;3^S#wv!u}3f^Yqt#|pd^0~L6@
zEp;H78^gR97BFoL{M}$a$KViO?)TXh+camRnE#>}md3D5GF%+P5+RhYUg-bvY438n
z_l#^#5za>NQvdfwfqT<`6vM}Kq&S|7V+FlBhTAdRiQ$tNR>g2Qh9fboj$us<f5xyo
zhEHSojE!~kUmL^57`|klF|6Z!BF(2A)^idll)>UQNOAKk=5_kF(54u^is73WzK!9J
ze?4D|GV9;xp~CFhIYX82IBF{9G5Ne5x!=o(W)45Z@M8>HV)!YBU!~liW7rzQc1d2M
zY!No_$a?=a>0j#ah+$_8>JtAitn>9k%#FP6T>o#9)=UL{XX(s572vTehMzb1N%pY9
zF&v2DU<^HPW$ue%zvR!!kaPH+o0**7{^CFw={qFT&V8fvSk~E$4Ca3{hGQ|@<N&{x
zd7Qo!!@p7%J>g^wr#TD7a7uEcB&$R7GclZvVb80+e_}W%_9-&ecZp-_y61ch7o>~H
zFN);i70+dn&?l+JR97U)rl~pqaaO$Oxf*lM$k$@H&Mq6Okl%>mJ=;e@U!o7(lFF?A
z&*2$yJP=2vI5OiX6h~Iv8GZM}Q7rCU0~C&<NE|KOd3j_DDJr<Gdtv5wZycrLC=<th
zlB#$dCE_R<cg~FW3ziaOu<=C?aq<vfgR#D{ai@9};wTpfgXIP1y_8L!6UXNEULF;N
zAdXY*oM7cRs>Jb(lu|X0YH_rPBQK5z<ES2oFOEkfszw~O<ERsNMnp})T7nP7!MTD$
zHmz<P_2Q@>hbNBJ^%WjoX(>sAI2y*$D2~Q)XU2Z{4?mCcU9*V~$MMk>53hNs#$b~;
z{8D1MHU3A1jCs!6Oh{9~iZ?TJ<DjrP?Q^R|@Huark-o>`2*lAkj;BPYrQlb;_#cm>
zRUA)9HJ*&)=p_%!Vg-0?cr5?))yy_=bQI;bakP`RT)ro(y-1!G9Pm`H4sj4CcJ$sX
zl(FZE)6zm$Gdsnd3(mfA^oygja0a^w=_=SwuzMUmggh@uot{GS1$)Jzxbog{ydeBV
zSJEeroB2*D{o{Bkj&*T-5y#7Myh8KFv4*vZV<3Axj>&Pn8poixv&?2Hj=}7jU{gH~
zBaR_)tX<|C8pp6WhQ~32jfx{g{M1(v2mcz*slw&L6b7GP&Kr3j7a$GC5s8B&DyRx>
zotv)-i3!Hp(Vyl~=fyrbCjI<nUos9$>^wO$FTpBh=Ful@i8?t{p+Y*2*Tkf+$MJ>`
zTC#II=gl}SOwS-6DZ){4jCNzk#4%R*IKlC*e1edPf*d|m;+Pu8!Z;SiF)fbialFl@
z#W5p}Kl(eX%f1!I%s6Jn@!NfY*>TKar=RzbGpf;jfxDbrkG;z!zlvAn+OzZHm>b8u
zIJ%crxH2}8%lT4y0mn{X9~Bm}rEz=^$A@%6?vEVDdvRn8Q<lY@m9&=&k`$Cy-WP=n
z<s7w-sMe&{ia1uX$>s2|L~%=W?)Uvk+*$3p@-T&bRovMDoI(E0%Ad2|iDZ8o$7k$E
zj-B}b{%qxDj{afJrX*Y$bv@g~PKjef92?{KGLB7g=O*`;IKJWxP}%z(9XpP%=^k;e
zt?K)hRc+#Q8F`IPzRhv`5XaUyw#D%yhw$8nKMQV&qwlor-*4ysB*Fcy@|!d$Ov!ed
zx>f#8mUugt$~z>s(=dg6)C=I!oxiemot?E_|A=E(99%47AIJEAxqrs7TY{U<_`_%Y
zd*av|$Nn?UY7!I9WfFO?y$9p?i!FK`zrT({aU7=GTUc-52*)qSh=ms|9E;;Phlz<(
zCQgvVah`>8PGi4wbJ94@#Bo~q?-^N?%;}X)JS&oOf^{R#in|x%xWryI(8IvxIR1&_
zCmlcQxI$0h_|kc!g#Y5W%4twX6CKy$xE@C-9rx?F!QmN4VI4(u+=}CN9HWkSGIey#
z@HQG3xI-iBcz#;o`_X|dCp<-Nc?#*+cF2>ZqvV8uH73w$R3KZ&ukYvIqobIPqQbvD
z>{))>^TM#~dv)BWqqr!~9~C%LK2SnO)mix^b*_0EFz$FN-SjZG(mKlMsG*~#j<Pz+
z>8Pj!I@bqNE+6%j*HMA>Kjz8N;XmOa*?H2_?4;)b9p8)#tQw|N(z%3}GHsYrSw|J-
zuVcz>&x3*_)!5$K9+K*=Wcx6smX3#X)Yak9@%J#Lw$5dOlsY<QpY&u5SJqDruw1W>
zdO8~DXsF|X3~#gH%7@21_1VCip67-ujdV2D@vsh`4hAV4I9ws&L1pGi;@9ygV|8@W
z(Nsq>9Z%_Kqa#;G?ZckObOdxfdE3)mM++T!I)XPn-|x>IecUtQ$H4iiftETR*U?G`
z?M!n$Ax2>HpA_rS2(3jzLSb7S?R1>T@OISEUXG`ws-JXhPRoy(9O$5f^?z-+@{Ept
zV*=0WSbMAm?YVVgptFuH>}4H2+3z}9ZqDy6mFY$cPxhU>;UV_WF?zC(W@IJvb@bBF
zm-*;WbWowUju)hKb4~sOCq3%^+!uB9VSgRWWuY@^ii5fRb-ctr)j{|8aJaH%xbm`&
z{9B$XqXO}Rxi5C|{WV;9RmUJ5Z|itR$6y^pbiA(P4IM*u4AT+Uq3al~V}y>7j<C*c
zDY$iSPLLKp>KQXJ5IN={VQud@?1@m}ut(Do)uHO31E1>PyX&+u9aLCx$MeAnk3r|r
zVe3dSD;)_PwMHmO9aO$PTq!j|DKjg;JTHz4Og-jF>v&Da69;lzj|<d1=JCx8oVw|G
zQ^!ahlj&VLM(J4QEj&)gc$!Pc7<TapWh_fS>iP1xhlc7lLYbgrqK<VpJ(F}ym=d6n
zm0>5Yni<%C+%r{2`8%E&I%evarsId(9v;(amJtdGm1ogQWk8Y7EghJn<1HN|Y+Bxp
zTn?yr8Pu^_#~K~;bj;WBzK#!cEYPt~#}XY&bu40?M<_JZVjZj)y^EY<ibH;xj`yUG
z$d~INE}6nbBouo_;6oiB>G(v)q{Ggz{a8ndF@cpjR?vHI<gz|2z0A14>!X~StYVi5
z`BcYeEJepAx}1*Bb!;FRq0lYYNkQv%e8GB-3OqO2#|-Hn%w(hJ&~DUZ)4rk&b!^u0
zHGPt)bgtE)d?$8TGTF!GUl^efKknpXNB^MXM;%)@9Tg}|3Y3vIJtS2Ml&ze*IH(QO
zH?UpD4js33+|jX<xzT&+$s95|e$%l>$6g)3GkC+(p+MQC;}4FG$xgdAOb*Z`{^XQ3
zE3jL4-pi2e)3IO2UpfxyI3Uvzjd@T<{{n@EqFLxp`hncTI*#Z#%Hco7cWtuo7-zgA
zp5uZX1>}hWg?LKGX&qNNadCFyVApX`$0Z$Sb(|Alx*(G<r-k!kdDe<1qOCY<-9G8L
zEbjfUj(>OxU>i?*4*lr#FUfy8-pue$El}zm_pB^XuIpfuoAixL?+s2+Cp}xLE9|~o
zGUN5T?a45ZX&}cyMFWKlWEr^6Kyd?w4HPkOkAY$avJGc?ENbw#Yo*i_A7^zoHj6et
z;^}qFbFTr~zv|Fz3h5yw4BT&^w1JWaN*Q=N!^`=Ea`t{117!`AH&DUAl`(;G2LGE@
zNO*7n&N%9s(#iMOF;AtM3Rt3nhYZx_`R=HvlHqhy6$2Lwl*$GwO$yM|RSi@#oKgQE
zGkiV2y5aN}JBz%Aftn($WuRzKp@c)Aj)A%cJO(<P^0bi?6CI3mm)CFx$kDNZ2ZKrj
z!<iNu8fawjXI_Q8v4MvTv@y`ufX~1q2J#F%W}pd;bJ+8!fu@EtSp2N;Ne@Xg1GxrT
z7~puP(Vpz7@Mvy0Gcy~=KGG%z0tQ+dc*4Mw23O`$9v5Yvd|R=-w>>;J(YCD(JY_hi
zIq#T26PcRmV}&RC+8JnX;8_FD8F-p)F~DpGW_mjs-~>xsJ!9bcphCX)sB<>&WS}!k
zVUn={=Fr7JSFr%w%OI!63zGw!(pkyp4fHfn%fv$_@(uJdu+qRM1{4Fm4U91`*1!ua
z#eix+GtkFCUjxGo3^&lvKz{=R4ZLdLB?B)T&Ut)*fyKw2$?X-fD$jbfC*^D)iyLHM
zuz?{oLQjP!Q*~A#6jVkBm7#3fNzcl$fe{7@41^7ES`Hf6Gb&L0wkO1bj(W&XO!Cq9
z=z$T*JjxzF;>@x1hnNA|K*~VefNsDLCov6JLe|~#EI#6lqlAIaWKK>}e$<(q(*|BM
zoa>g+23|MthJiQf+XmP*JnjBkIzY_5>0zTrQL}V_C&A1~fdxV3&}82@1LF<MH89V>
z1OpQdOlQ~7Hw;W>?;mwe0qiOI`4qOuz%-h7Mu1l}oNbyO^>jJmnQ36ojKCZNZy9K<
zW0ry0bT+;>Kj9>N+rT$L<sGpD8_r?)uHjrx&_g(#&Nr}tr5O0gz(S7Vo1SF`mK#{a
zE@1tuD@$16;mT5a@*U4_LFIH%p#!{UIA`aN#{@nw@V?=kiC#IFn-Ov*w53@Y9~-!F
z+_OU5>F9x6a<+mK$SMP?4g5_*8CYZBQ_i#ocF>px)*ATMz;^~dH?U4D`6X?;Klcj*
z>kVvR6DIrW?9Z(?A+S*lXdQLNNTran$-q|zzLqidjUXME&Pf+#?|*M#GbbN5M8?sM
z4DSzO85-y8l)z7-ztzAt_Vpdl&m6fY9mg)H;asONdFRrBod$j}u;0J|&LjqY<8*hz
zv)jP$27aoEU7V~Y1pYAaXh?bdmSb%O{}dr-)IA3F%IMxZI<QYjg)#vS_Jf?h7|ie<
zH*m<nVFS;Elw$^t+#O#u(IF2Hx;>Ho{^4QIys3c`22RprWda-&QcklzH$9vHIkY)N
zoHcNc^R0=ZCe9nUVBkLkS2^z)xMZN?)W8*~0A1p;fqys>_vi8)F=|?%$<zR2{}mnP
zbIrhY0~sbVP24bWlh!-txntm#f!i`s&>QLJ^dIJ6hZNS3dGhRB$V8Uu%tDk`m>DQ+
zqKN5Cm^_>C%*)HIdrTBF@qmd+Chj$HpNTRi%9<!{qJ)W3Chli)x!NgdI{wKMJuOh$
z1e?!mRCdkL{khD%oQd)#U~(Ia><XsSkcz}%*&IqaCWx#LYsEn~C#0}wj{3?bs+g#1
z;?HRT2CJE%yt;`RCOD-$$XaE1DWSLXcAzFJHZH(pRY<9AqK=8tCdQbkYr<oqyNMnq
zye8_Ic*4Y!ChD7LV4|6cToVmVG&1psi6(63q(Eb;9ryT5w3--r*aSx(gI9*-Y#El#
zX~b{hQ4>u~XToP2Ig<p&2Y5pHIpkb@H8=5?iGYa~rsMp1f*iBtG)_y}c1)m^iN~ok
zLfJpY>5)Sr<-d^9+H}q@9ZYmI@sx=+Cfb^4XX0toIU%y8?M-k9lhAYMLY!JT^*v+a
zS>9=8c)OVBHYM<!iB7cqF^_q|!yrd`XVbYNCGScFHe60O%z>ppZ=$D(VJ3!~$Y(Q6
z^fS@lgkm};S<V<QnCNYyTv+jh6-r(-(TCo0)6>^<M$@x3ozrC?th{96WfOx;XLfx>
zN*`cipy`}s*}A7D1bD&ustI0m^5_{>2AddSq9Cj^y5r$h(@;ssioFq5Mwp1wD;P^(
zG7&NnW-p)g@cNvM;!usyI1>WA2BS$e6EPESn0V7f+=R{^pX@Vf+gqN;rUVRe4-OWd
zquG6yiG*}3dD4U}JSCVGd`<9mLF({UVx);$HI#S5$|w`fGri<&Ag|=dniyx|D-&Ov
z7*F%EX(pDMm}p{>iFZuAYhtpADJEu_m~CRJiD@)Qrgx?Z-n&hwk!J)ZjSI|>ASHAp
z#?n@EWYpZ65_sDLC$zWdpC>&WgY-c5`&<+2CgsmFF<%D4s<5)a#6lB`rN5}KNC<}p
zZv%PD&wG5HvzD1yZsJoK*~EJ$-Z!z5<uZSkWnzU1&T>5YZVM|Pndo}c^ReKmutI*F
zMPzzcna=I@YRQ~ecO2bogsb~==@n~De9rM`Vgq~OVD35-U$6@%J0s$S2?0(i>?{s#
zUcYUmOPJWi5qHzmFrx6vt$ak`75FzMzBTcSiC?A5zBBQIi62>njEK!9uFechtO-u<
zTTJ|9VylU5rgMwxToq(^f95cWIIhT3<aY6a9aK2voH2LG)I=ZPME9GC-%T7e@t27|
zOzbkT+r%EuEuwt#q^FNmhWA8!P3$vqz;tc|cxAF*Jdg_HJb&?Wg6E4vjAa+!_M9+r
zgwxchz)=&&Or&ZmYQ%9)Ucwz`LvA}~G@k3(<Gk=YZQ^gvGZvayIAh{0r$h@CES%%y
zZz97&riBY8F0#qAxrs|0`=;~h$bX!mx_SRG@vrH8U~@%+l<=#GyI*nK?BpHT*?XNM
z^sMKOiR;f~A1<G9L(<-)A9nTL61;69($&jglkyqda;1=kEDQHoC}yFsg(4QREhm4L
zII>*E-ThFiboUmuoG&!E<~-&1S}0}Vehc?mC~i5++m^6UQb^SzMHuAgF2vH7^R*Z&
zQ`SNmHcIkjiRCP(hO9P`1?5<%WTCQ!iWWu>^l^&;Sk8_}4_Fu<aTbxQVxg*qdKT(i
zsAl0o3lCYSZJ|1=)Y)l%Eeka))RZDRc31xHmBZF?6@5n45usN~<QGA8EqE;FQyCuJ
z%V#)Wvz&EW+Q331(PXfp<?KyBvgM4Yu?6D87JNd;`F)FD?8Az+x9})iZK0WkTnnu%
zJYk`^g%%b9l3SkTd?3WnpZFmPKhAkff~;6e%h_Ls<Z%mK$~c_4J!zqhg|-%2OIm(x
z^OWW6lEdVT<=0TGXFCg*yLlUx&v@EG2MZl7JY(T`3q377YvDP`w!4K+7CKw##+sb<
zbg`VB4o0uZBX*UX?|!vH(=8t0`(l8vhlQ?XGY)q5=3D4xK@lC6wPS#fNafycd-*j^
z9}DxE<W96O$wFTX{Vepi@REfB3*3t9WecxZ7|4FNobR{>2$J0OPqt!^g~1kvSU4do
z8}l2Xp|rMz5f+9?Jy}V13gsj`&UFt2C1*Z*4Os|Vh**ePP%UtBo?t<<5Tl=1n6=Ln
zx1d{i!@`>u49ocwXTb`;X*qv(`0n?fn&-1DBrK351xaiRDdB0s*IfDQ?8lWpDvY!+
z$^sV;oP0EIG)Kn*-?AU__%%Ms7z<-XLOxCie_do0Yr=)``GG49HQB;P7Cxq<T9|5K
znuX)P<Sn$Y$ij5tGX!S}GHRBE*)E?W<Sh$tyOMV-yzBD0LgrbRFJyr$=l7gnpK-q7
zTx?;9g{2mjS$N;V2ejBe59P}_g3kNjli=KlLO!Ht;6u&;M{@uDC6AnH<(K(aSXgB_
z?{~;oTFx@UpK!|Bn*089*{d0}FzBz`Pc5vID8_y!WUb)mtn+i(muBQq{>NGW1`8W4
zJZYn~jV~>1l5AVr_{zf9?DqtQC-9AhZ|U0>{;}|#h41-9-NI1|n=SlcVXK907Jjsx
zjm&ubWZ{p2zAZ9c&_#cyOUUPc6mGY$gN}5_^OuF47Ji|og<Te^6!HE_Qxwkl-NJA5
zmZDxtIu*`H7S15~)52~G2Ssg<Acgxa>~;A*=F=ye!UL{k**#9ewS_Z&yOw!~4mrek
z*uv@&IedA?Djl=%H>Y=T>ErZvcTAlWa>~MKA>2!g6Zly-_JZi26Fe_?cOYC8g-fhY
zCoc!i6$}5eFB0%4@SlaNoLv(ro4_>-*DYiukeP5^tlY40ldfxVwSQ+1@zoLKw&m=5
zSbspy9afcRx~g7o3|c6GtOQCWoW<J<Cr~7TVhP-vKz0I0D|?G3u<37SAK|A%+4m$c
z=9K?#@V*2N_3#x>phN=o4*03?-5yWL1lpA;GGJCVUnenme*)ZNv9#bb4|=(~Vz~s$
zCr~wkY6*02(yKxO4<t}2ft&<h>E{a+%cz(D63$MM+;3uPPhaH(swA8(SvmZx7xwb4
z6A$jb`d|Xp6R6K-CQu`RnhDfRz>`4h+l5$ktppxQpmxGpPo75|A!SE8yKfZg>+>d@
z?R|OF6S6I$w7uc%UE46>>>m4Y!r9caQ3B!P{>BM#>-pb&xkO(Ak0fw+tyeZS-WiW3
z&@_S033N%ISpvBUJjn_q5UiNpJb}j&2uLrqNI1K4=dq<P`)ZC1aJ$Kt3A9S!iG=gg
z?ePS-gRN8NSA1<Rc(|SD$liD=fi~>i2fZB<*xk$5Ho-p!mG%i|!`XHTaC>_0WX+dr
zPqW-^K7Iq=F@a|ics7C5eF2)T6YH4(m#N=b#aXPrUUe^pT@&b*z>5j=q2&|kkwDJ`
z@)LNT6|U}VYu>kdF1Lbx^FeQ~#Q)yny^w(7^4>z)-f>>}z0lp)H-UZ$45F<PSQ*Uj
zpTNuP!GyCg?@O%AgWioJvIitEP$aJ=xL1Yafjrh_XHlof4u9<h*(HhxhOkiyd=_%v
ztgXp%b|xK>KmjddqpXb}TamzpBrYZqP9Q=HC(%0T+>1piPdG$PK%=crcwz}mOkh$1
z@dWe)j08;9Ie|AM)?!x*p=LrzQj#;6a^-0uuL<&E^34QBCNR#89VKK;!g<g-I)POO
za+#LLSi0XWhm22PLc)1?a#zm$Cnqq4!zY2S5}2C6G^R>mbpq29n32G|1m?5Chdna|
z=TLqicUA(kCCH}n3iGW5-j;g4lfYb#>q&v*cRcSVoSQ@@<iV@c1qm!n;DZD{<ZN)v
zvq+LJPhfEZON1{KTt=66Q+59{|Gfm>r>Tc#GZU6Y{KzeLrI3#kSRv%D!Y9Icz0Kg7
z1U{AE7wkJ%=ko;CvRy}=M;}bcYwvZE!`;l+C$PcQ+$iKr_U7&Xwc=}zf&_l!Ss;OL
z6ZkHH@0o)n-z?4lA%Pzg&cipBUO1|3ksN*&{E4GLp22RFV5O)+9o}?om*9>Bb_${J
zmxOaMPx3owqy!Eo@K*x668MwzfavVz7>_D@64)!oVOO&9`y`6Dx=hG+QF4Gjb}*O0
zL(EV#&nCF>s1tQ8f#aMu-4c1n!TW_15<D$<Qt%Wf4XG!S{4M=*M&x|d#%#|eaGp*j
zox&0?a{3ZmT~45I5=D~uCxI&*QzE>Uz;*V!@T-E%lZL&Kz)d<#5`~huCGy*XeAv!d
z>fA{nBk6R(-5@b5`Tr%1%1)wa5_OaCBymp?#ggC?CnRxi689xhI*BqODW2q7f=*P4
zB+lRRluSA=txAc6LKZ|UHa$>QBozedhvkweFTBqFTq@+qpspyAyGb5MqLKtFCs93#
z8c9@1qN+%$2|kzv&C9er=$0(BX3}~1Ry&DWNyjA^`;cg|AL}IXYE<DPM=E<o_(&2>
zgw#u-ei99YH<W5ToJ1oD@;OptA-oM|LZ5Ip&7Z`hNwkz8<xP`lF1%S1xk=nDlyW|y
zrN6aEB2TjA^MuEe2qc}iw0w?Dg~ugT`N_UkNjxE(<C=0>;Hf0$NvbwUv`wP>VNbgx
z`XtdeiS|i6okWKuIwsL0iRY7eh8=X+(<O<nLY}2%lIWCl?v5$%EW)$XvdOy%C#f+#
zo27J@AnnsLiTtGVw1EZjl})dt^V+Vrppr!Fwj+EYi5Eq}q3!4#^Ylxie-iN|^dw%A
ztOh4BB#D=kctwK7wCn*w2GagQ_&{<{(s|IwI=m58h(nVINfh}oA;Xgxkwk&;xuO#k
z&L;-pBqB*fB}g-BNvKKZDK0C+2F8;7;nc~KvyhR5nZ$U}q{K?%jU?WbU?PcR5_S@)
zB+|6u;B0!!-5g$X^<Phd_xMaWQY51VN3pp5xfIeMW0DvvLf(dqOLE`0Y?_5p6Ox!H
z@<~a&C1i3EQ<8XOaQ4(BW=fw@ZJI<)7o3rFp3YG?D~Z`6;iFdu=OnRHn)7xN?<DbV
z5_db1eZ<(gqPb*R_WUFk&?irL7P1GE_%Mk@Ni0rci3pbqE)`rRcsi<3`90z93(}I5
ze3Zn;N&K3`Z%M33Vr3FvCGm9<pCp|JeXEmLlf)|F4DvDZr!L<h<g+B!O6wT=Ijtwc
zFI=7VN#}hfqc%$Ke<_yS<i>K?ev@?G_<Wnhcbs#kXBSnK@A+gY>AXkSmc-^Heh~hn
z;7>_x5%S*&KNWtKa<__vK|V&?p2QB0kyD<XBK$>=U3@qAdlG-pm~7@9=MmqoB=#q9
zAc;Sd*qy{4k@M-<ULkxuyH7|hRpG0LgGu})!INxA5{HvG!GXq6FgW{25=WCbCb2Aw
zL1unjkQOFCC2eOE`Du~=%^YY<;S}<HF7X^EQjsu<nOsWZauS7Y=l@V%LH(1&e@R?r
zZO?nIB=Ik&-wPh@rB1w-bgtZPBym&7^&}b>%An+y1n+Qqw;hGsNxW7pgUQJ=Z6}{B
z8-;8qpIlX8@Wnz|j4EOy+eT4QxYx#gHtrG5sA8f_HQwYFx1EPY6oyy&O4uNlv{6b3
z`Tasl+xWJAF9yrmC~xBt8-t(sRj`p`!)v3Sjfys4gDa>%WTTbO%UvxVuu;iIW$OQv
zTg}FUHmcYdwJM-A^j5X`L#uMSk++~^pt_BkHd0HSB^+zmsIB_=-IVpPx0cOcO_feB
z<nx=u+BO;w%&9{)RjF&kBZPdqs?@h}uAgsLX{SC7#5fIY{4^=25tG<>*v32a{XQGp
zuN3CjzlX|I<X5}oO>FpW%&d|7sEy_}TG(i6BV&0(N}Acom8jm0bIlsLdA#TC-jK(T
z=~?Uk^*?5#?cuC|jbc@^8RX6N<7}_(++{x@NOH4Y;iqi0q1{r5q|nwzJBb>WLVFue
z+xXhXH#R!h=x8HhBWdFq8_(K!l})zsoQ+O4p10A{#-jc{Uf6f0xojM)=Iv^un~m<a
zbNiF7p8HmB=O*Ho;_G39NacJRy=)A$olPhd8@=grHeRyvg3Vn!eSK{7weg~j>3cjp
zK2Vi@Hh9rqBCBHgEH76!;_b<Is`9dp0qnIbFQZ-&1>U%|ek7L?X3J6r+ZbYlp9rcp
zhT0g$>wFs_8^h@UHVSO#u9FAr#)Ef8<ZMOQ#&<n@5%x==43dJXjxcIt$_{^Cu?)>d
z%tqXXZsWD{9?OPdJGZ)~1W85|%P1_nz`x$lx!JMl12*Q{SYRVf9d?<GS#$s!Z`c@T
zW4w(wZH%-r+Qt~M-Y9YY;Q7qb2mGwkSg9um3;8R(vxyUIOtdl8#xxuMocBz!F`3m9
z-r3{q%`vh_R^@I!-eFCb;lpZk#Bq<d8SKIAEOyXr8*}J#Hr}=IUnOtPaQ0g^-nOy&
zPA08QYrI~?%f;|{e>&I3JRAAdyy@G8c2{@yC0WSswy}!JHWu4hV&fwlAKO@JW0{Tj
z#kZFWQu#fOrt_KKboKQuma)H(_X8UrN)&~S)a(b2Wqq{Oze3z#rI?XH*8daR*}{(x
z7S`DKRP?{J@fpYRdCwO%)(cr{<8vFlLtjV#Jn!LgKvk%)!Nx|`q>%TC?arPoJX-F_
z-9$g>=WNCDl}o;5FSFbf0x5iNV>4adXmrrV4>o?Zod?K&+StMoDs#>*8$Yub&Sq}4
zv5htynlmVtwVhcR`StetIS=d*&frcPzqtHYA-@U!F8GJwyLo{_BYfO{YPXF&Hukb3
zc6&ZpoXraC<B;JPQI!KWZoJ_mDXS^`;`%Qehin|Sal}TA6u4W#Q5(lNXQpsZ3de1n
zu#uT^nsCy_DfX$2t2Rzcqt4klFXV5*GlFLYJ(|KK7i?UzaoNU25k6dyMd3ff|7E!&
zd<<T(aeT%-B*7+yi9D`}!Y#q;f;R+j+Q^e^sdL-L9nM!N<XkJnVB?^ZbD<Qnq^gBe
zC?aHul$b62u4XaerBlcl-;_!2mEe7X#Zyj|N(e70SW57I!Dlt4ObTUFD3?O{6sm}@
zg5U!wRANnpGtY`CK=><eZ7Zk1);$?%TBfSg7gZ&;n&5*e6pLiBZq-xJMW0<zGlg0y
zJe1;-nWnW<XqZBy6zZf<H-!>!H1(w5O<}yIFm_t9X}uKcOUErrG^MaX3j4-6g!wd1
z;gJ-YNbJKY_);kOdQ-|-2d4E){*OvE7;Gv*l4dFXzvj=CU~|D1f_ah;6<Vh7cnV4i
zy;EqF!V{d;Q+PUsCsWR;xeX`$6k4a8=VpBV^Hd5aclk+paMPl8Ojsm~1MrD((+(+g
zOrd)UJyLikg=bUf#DY?Ij?FLR=yM-WlI&=97s<I>3Vfc{Rrr`b&Wyo1hhLS~tm=I}
zh5QtHNmS1ixLG78*cN3K&gXpk#HV&Ir0`-2gGHfF3Vl-;m~tLl^-H0D3NNMbG8L+O
z*X_&YLp%plc(a$UeGlIiNj@NjDLtHgUS(C~@!g=5^L(<{`Ak-0h*Wr}ASbusZ1Mrm
z2*CnD27@VtgwNylQYW*bDX28XYt930o{_Z_5-B88&Mz=A!MLC<Xb75umf$-xv+Wd8
zDg2zm))dkyyq3a(6c)09DZG)w+!W@q2`P+Bfv4$rQy7)PXuAFKhSO3QBV?-JSiy0E
z;{_)OP86IZI9YItVC^c|%w(>n5P3`&;S9l<g0lo?3(gUIOYm*McLaGY!GjkS%#CC|
z9Y#1aT$IA%6jr6MI>rB0u{4GEQ}`g|T&pY-e2@Jrgpx@|vWQg=Wqp_euT{uDN#Uau
zK9=AL4%kCk6%S>tlpqxtqz-XS3bPOUzozr2@M#L4rLZ=I&r{gQZe8l*+mLlBXGOmC
zDSVM~Rv+T_4cy0#yNYa}&GWq6N$txNHl^^D=u=X&mG_(Vc})8)yW@WE4~(tu{Z2T8
z->0xy_>^XWMl*arN-Pz&2>D5H(5Ad?DQr)nLK-<~#OCJgNa5cU{!3wJ3ct`@Q}``~
zgDL!#!tWekDeO<->gN1iDg2qjKYg3;P2t_=n(t0w4^4N-vsP1xl(g&HyyTDmeRPa=
z-npl952V09M;O)c^ZY|898Tfy6wah@B!%2R@{e)a=cM$0{?QbU-f6K@Q~IpUKas*I
z&O+^*lb=jsz(POCwt~Rv6tZ{a9@CVwDV&o+FQsrkg$u$P#*~|y!c^sB%0-coTo%I8
z|4HGB%PaJ4el>+_oWRp4oW}JOZf81g3=5@kLpXysQ@G{w+d}Tpm(q@ArXYzjzv1N$
zzWhD8Mbcc-f`9WVWz){~Lq*fLCyiohw2dhY-YdfU(^wo+?n|S18vSERT%t;(QBq>5
zRw|7tA}lSEGJ;q8=P|0BWX}A{r}>|qLQ*jer13`@yV7_djY?^>OQU@nmD8w_cD9RZ
zn8y4P-amWfS52c@8o{@H52jHwjasbOu>9(RH3ZY|`X5T8b{cil@G!#_zB*~=m7mWW
zAW!V~Q-Le3F;B1LTrZ9KX~!)oX^_UPPXi>4(r8TiD&NCtJeo#Rwq=FSm&PL^tXjg`
zBn`iCF3wN2W@+T6(MmFGo_2h`Wg4%3me(SUOED!+B#))B`4eA2_)qCP>QLeFw6m%w
z$rEWjna1!B{H@byLxabatAFJ_m3CIeC*jeSEjr|or_<<=Mk0-58XePkh6SZDD2->+
zcrJ}zX((xQN~1IL8I<3JKF}vWLv!{x$Zj0CKHJwdjc#<3**+fK)94}mc~{a?NWS2~
z^?AM1&UoybMn54h2)>v`pEMpDo6o2TANu+;_@Qq=8UxdKDUFvUcu3Eu@D&<lo{ywj
zT%m<KpY)RqPGd+Kku;)d3}rrXWf&Wtb{29ZACX1@>;HLPFbyu_wtBwrjGafMBqZ{%
z;KAOCnueA}JPlpa@;|be5az?p-HbGU70l;4y6pm9GmWnkdDj0?bsbPr6kT_hU52D0
z60agb;*JP7Ff5Dff`TYHgUg6yP*9Rej@y$%hv^|BIfF_N5D6-xB8ZZ+C?cTbj3D5D
z`;Gk_|8wfxbL-ZtSGjtor>9F44lebHd6<-k&-1W}Ey{zEhgcp|X&uj$_tH-u{CNoE
zA)JRu9)gk-5@f6S8fu<;NfMP3`HoW-#6vKNn#_TPTpfAP^I%9c&T-7c^gNgnWgQYi
zCg)*_txOfNuSM<*TbYxGnZjq;%7;Q`3vvUTYwPp!FkkorTPfQzcd^Ys60$^aX&#md
zSuVIjko8%ahv>jul8^Ivtf#f&Rtc`l!-h6FtA(%0!&)Jq3etvOy4Tx$gOJYzHwx}A
z>fD@%EqUM}rwaz=Zq36NdH6BUI*9GdJnOi<@A6P(l(pQx68mj}U*}=F5bECu`Bt#w
zQWuSP<l%eCwNsGFE-qf-y9IBx%cb~}l=Ae5oIQEi%ROX74#U1Y>=%B(Ru1M_?}BF1
zkvtsD<6DbSTEVeA9A}-ma`SLPivB$hXY%kfH!F$$!a<+w`ZW({t6H1Jm*sO#<>5DW
zRI?n0(|Oj#izKbK^K2f@<>8M!Z0woK=%14Pd>$@v>sa98(Vu+P?M0bXSMzX52;Z4}
zS;!T^V=p>OOtog(jXd1sW~;ze-+7DG=1#?ZI}dkQw?fXpS^3_jN&d>iT`t}{Ox7KY
zGH|Z)guDCPQg&s(zRdMc9#RzKSKv^Ps#yD8KE*n$lW+PhJI}TJi|jOsrYm@-MK1LM
z3JNMHtXTU%A!eNAAn7p5!?QDZq%3(6NqV?7XU%N)qY55VP*edAE__@;afOFp=N40}
z=|trT1w2%OgklMWC!6P%RPg@S*^HK9l7c!4>MD3r!BYw<DX6TVtb(T%tgV#ujAD&c
zIRzDjlozD3=OZ_<q5|FJB&j;bRrmYsDhjG9sI6FAN;L)56+EZlN(m=VS!GT5LgNet
zP6f{@)(epN%tj3%<aa0J)D+8Fg3Q8wgHE0oS1v)G4dhl(PeD@!uPVq?P+!4|3UU-=
zDd^7~pt7@pH2Ld}xdpanzo3AaEec6PAx#v#qM(uRmlV7#gu6#$A)G&~Cj(E^Ezv4x
z@if<K3YsZst)Pv9=IlD@^HvI4vcnrW8E8xlZ^<U%n6_2WPT`+ca=R*MFQk)#&I&pR
z?<mMrUI)9_{B^}TAc<nGC^zR=oUe%{zM-I-f;Sa(SJ2Cg-d^-j(34%H;3^dby%p?G
z@V$aQ3i>LTqF}0me(VheqZEu*@RowN6%0`@RKWlR0~HKXFqm^p!Dqd*f9#$8t^#6(
zdsz%rs559+-6L~yhbeeZ!3PS4b8bAydSCF`@pN+jMRWv<XyqCyNTum5_kdBJzO7wj
z6pU36P!LowPQiEulh|nrCU6Sf%bKX*!Hq1I=pE%@DKkfTSg0bRUxAkct?*yWo@9OY
zi4A#3L0EyoS*;+#?oyz#k_s+gb;lGe+>~=+l*e;0yTUbh+GtO^Yi^x0d9>$9-)y3(
zAfaIAHTPuB^Ap+AuDJ(XbFaGQE^y7wjMEfMSFl>a8U-^H%v7*Q!D0oo6nv;)o`U&`
z_21ap(#*NS=di0=TYr*e^V#qPTmqS;7m5KD>UBnYh)WbKRj^XQM;!eha+gW2<>I0B
zXse@EaHNFL$;S#l;kPRG(r6EzOc(6g%GKqDdo4Re!B+|zZ^~JxV7<csSb4T8*uW7~
z_zx-1W(6DBgwdW&oReBE$>$Q?G1|i@yLyY5t-X;&<1ZvTJ$%VA+L=qTO~Ka+wu}F7
z6nv|o{7bpZb8^pC_mmmq`Az|O%`qP0P6fLZ{KieDwd)53yA}Mx)zQlJqk^9l98z#t
z!5#&B6&#S>*eA%|*v~0+-OYB<_@9=p%|B-!lq5!vu+OV|(k^8Etl+5dCSyFugd7(<
zVH=!OKr^<2NT0t-(Wkg7Z@aJd&GwA(oL2C=f-?%vDmbU$yn+i{={dQ7C}?;f`%mG$
zuV)>}$sIbzb5X%11q%*mU*>Mv#znKT4Re`FUj9PXH3iodJnx0eiyI1VDtO$BVqSdx
zAnTTbe-xy6aa+M11%D~H%h}6bRdD=4);-RgF`oOv{}%L*@i13|wywU_Jv3k#{wz|x
z$mc}?FA93Cxs>Kbeumbr(yd(SUVPccwd#o+cCy2Zb_wgy&q7`l_To`5?}S(#Uc`$>
z_&;ba?L_v5F`mE;_t~3n<4|@{FK%6TKYur!Hog01KjB4jFUosSL2{Mw0$x1nMM*FJ
zz=hIMVi}TFF7{!mTke{-+#DK~`;-^uyw)g}6(o6Dh;?{qp)}6Pie5b9h0}{?z4*4f
zr;_wcH7_cAQN_#ur+9unoLkikw)&hjzq%M?c=`Vb4@GuJ4X@Q*HQB>sJ<kb$a;#_6
z$?RHQ)Rt)Tu^xWwp;$+v)o!|*c~RF3w-@!i$n>J27md8AFR3qhk?lnmOOz-}?={x5
z{YdtUQX-F7&GBMluk6udJtK}}Upk!qk{2&~@roBsy=d$O4USf9&_wcna3Z_;(QMX`
zMZfCBYf|$mWBGWtRr4KVJ<Yvn;YCY!h!>r_=<G#nFKV=Lweg~@7jtg9S=A<OT<yFd
zb`WeY`14o~m5wsLBwf6C-HUEsyy@ki0X?~1boIi+`fSR%+B2Ks)>zLQUXXC<J#iqr
zyCn4xynf0}Glrg$m!uCTk{6r2*4M@@n{xVj@s<~FdlA3o?k_eZoZ$n!2zv3w4fjAV
z-tppHF9ylnnB>J^FNS#WffvKQIMT+&ks9j7Flqke)~@%w`1_XoeL)f)Xgk7-kzS1P
zVyqXVyr^>|d$bp|xceQkE-R0W^N?2`=NU)O4RgnHuyS%q7$%4^QLxcC59ey0)IkyS
zdg1fJ@5T3z<!4erX6dw|`DZuG4N1+zUPQczdJ*$tsTa$<P`%K+nCrznFLW<v_0CRs
zG1&`4IHPePreJha&J-atIP;HWPZcDY=EZd3C2zYKWtd4bFFuq)XG_u?!IQ@=gC9!e
z%<Y*yUs9KNv49omnY~bOkszash1Bb1d1Ie1_hN+?tGrn4#Y)NeiC}ia+>gBYSe)mM
z^U!j^4L5OO@9Z^Rd@43;Ie~j;U;D)p*NL)TaDyO?Kl5Uv%|92y{@<LO4;<NXo~?pk
zaQb=il^5H**uhTb_=>)rmNI-Tu4jEK%FNqY^zfZ<W`FaRd#4w>y!gS3-Lg`c>L2F`
z{FM76m%NwH$9nb&?h)K8%by|x7u0?c>;9b0=pio-bFui)&W9sj9OV%E;PBxX-Fk7!
zi_2b|;8Yx%$#Bk#pM{_F;ukM|75=;6Dcj~ZFHYP1)jS7to#DPWEc2|_x}{leMA{#c
z`loGkUdRP6E($py1zq7<ljsA%Yurn@$$QaZSmt%X8(!QLLM5L&>y8(HN%X$pT`%ql
zVbb2iIe!cPpM6Ee@z9HZ#B+)dX+FF(EHl;jZyWRZtlF~Lj}FUB_kqZ27x1B=4|RQT
z`%uV-!ah{;p|TG}e0ao%GCqKoK0M|_2_H)OP*i+AA;|2H`%p|c3mW%{gIHXmr6xK`
z`FK8H=H<FswT5Mu_JQP4uVdAsoY2tBCw(aE!_z)I<>R@lnSTz=Br=rqp@I(;S&%!c
zykOG)88LhATpDedM6BXNh7V33s`_}CW9H1Enbmx#?gI(K^f3<NvpziMLrouQ_%LgX
zqf%Q-taC0cX;Vv#Yy0rLoy+Az9h+ylv+DVf=|dAA{v4WFUv!cj>C7x28u+XsdqFVU
zhq)Db_G0FXj4BS2hLVf+jo2H)U$#9rmT0mLulUf^hgW@gO~h7$%><j<qt?QQmcsLD
zq;u@(v$YRx#D=`o;I#HE)Q8U_*c3rWA3FKaEx@-|p|cNNeCXjrPanP<n)$j9U48Hf
z&*i8MPNT@c-g`s*ck|&*X-IOScK6}M363`>IC}YbdTi#~J`51jTd<E{U%`Gp^cTWL
zy~Va1%%S~2Q3m@kL<Z;`!FQ#gL4wOBI)?f%%!dhnO!VVDAKv%jiVs(r>cep9t`$Cv
zkSZmo)<_>l`7qjtF-+x{`Y_gqaX!R+P<<FrSJJwW4^K$zCi*Z*lsq52KKOi4BwA{W
zgAMl!CkYA(_%QI(Tt<_rVG$#?P1MKVE3I6bD5ehyA9Ue{VBEG$W}ocCG+UV>WU3%j
zr`!4rTlrAPBEi`{%wdy-&lj90_`ixRkmy1m|88&9XR)2S#D}FeU*^Mdn-_V?xsqey
z!^b{+;=^}7?C@cg538kzzw%*?kk16y3UVAj6|&BU^*(G6K4Of+CCh4~L_haolaS3m
zd?93uAoFhZA@67o$(OdWY>Z=@&A%41UGN+Bs;&RB*zvs&J0<$354(h%5d6W1-9G&2
z!%sf!_u+sKdqm$S$b$Cz_%D8Ibtg+dDEd*sLp~h#;rQqOrXJxAb}1`qd5pU4;U6XE
zXCF@b@QWy?efV9-uRfge;Wy61F^>QBz!^z8XXia@m;Q$+Y;4m1c^@v=HWz)kB>b}A
zGfOO+YqG7m{ix^1by+Vre7NbuEgx=kH}hNT?v4+CaX$M|+>g6H+~cn9N4g~a?ZZRK
zMYH=t9&isIoW|%sKBV}ODrSu46Vh^mgFK1({V3wcBYrsiC?Kf?1q=BxxNg=HVp-Ua
zA1`Jx3;%EOsGpC6Iv)4qF)=GDNS&$0{8+A7OP&TL{3z*16-h1SM`<Ay{V3xH{3s{U
zC;fQJkFtI|Ez!TmJ5nY%l1L}y4CVc(;0ML^7qf`e8J_W@k{^}*e2Udll2}!oR1<tk
z^b9|oempBmO+RY+QA7B1g1tZa*IR8rT%tTLm??SbwvHclMM-uPx7<uWn)vaG-@1&}
z_ajRPc>_OQ@FQEIFABaSm?PLwu#w=yOYWD2G!}d?D2>^h`thpYx<tO=$7_Bx6W+;>
z=0d2q^`nK&Tl&$;=B<Ua5nMmcL(6u;+xyYMw(01{qpKZE>TD}rguL!Yu8^*_?(yT7
zg*nZ-<aG1nO%c2MF<eLwKYIGn%a7iE4D{n25&IDR=r6plV44*4mLG5XF+h|%A3G=}
z1MBdvAA`8VOA@1l{TOOz9FioLvPMjF3}Yvs&N5GDz0Y3qgHCA7Kr+IQkzzSYaID~H
z!7+aPub^>$j2Dr)rc889@}u^-w1^*3Kl1!g{P40{hGqKLQNyfHL5Is&S8cx^0a1d2
zR6>4)g(olTF+Wt961)7+{LuZ_?6)qdh97Z1Rth)$Ncb^VIFly(F+=zi!Ks4N1gHD?
ze3#?*3t69Uwl?sYe#{d6LqBE<nd3(?iDopI=f`}}7x=M62*rhdEVB7xKX@^v$gq^$
z)|dOS!p|RJtt9s9N1}i1$0tHo`SGcc)wcZ_Ki1lu7ngN@te5BpKQ;>aOfY%fq0i6#
z*dz)^jnOTBZ1v*{|G%HXz7g^zD<EW>t$!_KyP!w5%5VMnPNF+(o9~6}<O&soAN<(O
zy~vNBxSRv19l#zx_WE((j|YD2^JBjs7yP*Bw?6J3@Z*>t$AusC<B$;Qhy6I>$5Dwc
zznI0V0L2r2{4B~Jf+zhr<;QQ_sU|vpA)ny*m9u(irqVg*v>(6waaPReB;Pp48R2xY
z{$bWR;k}OLFv{?!M9&MhU*)(Y<fb4~FZ*%DkE;^B#+~1f8^T!}Q@@_zNRnG3-sVCO
z@|Pd?gj}8AxGOvJXA7<3{uWO1(2sw(O9xOqVD&>v00jdm6hLYK`2t82k$Qe1=>e;C
zj5-1+5C97$C-QSUNnx>hEPx_*u1ADC8UW`l4T{?O;{pDE$5Bk8{39WgN(4|f84aLR
z0Hp&c6F|iPo(TW}JQ=`K0hA4ZTOy4axbr+6K)C?Q2T&n^!HaX);Y7|@rbaGj@e)9r
zN&!?3po)0Tp6Cdi&SJ+N>YT$svuXiUm!ymUo)h8>;8`I%COB#Ykh{u}Z&6N*rS6&{
zCfoje0ImSqiBczkx<VQS;1)u+*#XoOo*6*>0J3cTg#a1|-!;xdGltfy950HJBiPWk
zv<eE~<p3H7&?JE70kn{$R|0s|wrMKl$^^%2w$dyBPPwG#mLj$Zpp_7|y>$Qs7g(un
zMM-`(ZXZC006N+pUJsy?%{vR}BA6WL+yJ`TsU9J31i(c>pWOr2_npB33<+4*yB-1b
z44_v4y#svvjiX-x{YCE+0KZT54Om~__>tqS0Nxh;-GKF>WkA5%9^YX-#T&n3&~wke
z4vuVWqGOO)GCEYu-Vfq~Ach6-UI6biDS%o*EBo*OMg(v@fExjf3}93My94+!fYAYr
z5f7^1SV2W_Tma*Ru;vp2m}v7!Lh=M(nPh!)_Xgk#z#l+B#IRscFeDfiGg?Lhh>8*u
zq;fsap#`7^U<42s@w))b01^RwCeg_OObK9d080Xx8o;ywJ`7-X0MjLPrr-=gdTTSu
zF)P3)5F9n-mcpC><_54(Qs)Igaee>`B$_lxBJCFiFkn#*Jy2O1z_I{74&W29Tpqwm
zAu9yeRPwOrY55UXnUu0BfYp+;K7cg=tPNnDM3bLPX!)s~k(^mJNHlwu)pZ*K_&k73
z0c;N7s{po1(v|?e5VBR!`>|!o@TElAV_yrQ@=XBSg(q*JQ2CZ?L29+bw)sAQoi^VU
zzz;U(qWFoMKX)Np*&D!No9`2{U+_Qx2W|b3kXB=@Djf;ns6>wia9qd<?u54G&jFka
z;FkcOrTMr1ze*Cn7&7l~!cViS$5^Rn0yrzmxd1K-`9tte!SjMNyC7s`ZR^YXCE=F?
zxMHVX4d9y1`FQ-z0B&(B3xfQ10C%{72T_;{WN7AJ0sJGDcLnd+x&9V%U+{t8!vMHp
zG7CeB<V_7CpOCa5(uL#~ED(f4$XRJ`!T<0gK|CVSr-OJ@NGU=3d@P8fK|CHrF;R-!
z`V&DMxBIPxh$RJ+V(B2tNEEjHlR-QcMA_iK<NJ;DYPlfF2T{ScsT@Q_;m-(Gvh_N0
zGo(roRYj?0>%0q>5wz~cu%6B!p0)KFK|E*knnIG@UOR~AgK&vbCx}i#bPl4fMBPEu
z6OtK3iy&GCQ9p>RAQ}YmLJ%(p(O6QmgUAV@q3{=j{B_=%8;vCTk|3j;|4D2T#494c
z7DQ7auL?d8gD(V|1<^dnM=AcDfjjdYt;D9CU~9oPg7n!o$OqCa%l5X?A&8E`lPkT8
z@Loam4&wD7a)an<TfQm8Blw13H^JnMrtZRf1kqCni)iFWpCI~ja*EQ=)&~mdFZh<=
z+d&KvlC0Z1!rv97pFu)YY2c6`hT8ftA@2!>Cpm@(F(PPPO;W=c8N?_~j1Ve>Fgl1a
zK}3Uy$v}?{Vw_}2R(pI96M~p1icfG-GF4C!^a`>j+(n6gi3WlQ+IlF6u+1Yu-kY+_
z)F8AV{tV)L5PA?s5F3K{EQojzChI9{HX*r|2u>E962#OXrUfybwGHxbcbFmiEWw$A
z$&vanh}l8R5#`0n+5aOfdVUa1#yA#9(t;os+BW&FWifT}f1E58zD#g=5G#bN6r|-3
zvcx_P;*%g&1+iN6Pwmt-Le>g~7F$hT7sPsrCYSKWAU>DqX~9iF><eOl5St~sC5Ww@
zx4d=-u_K7@gZL_lZ9!}g;u|rrt^z^uNV2hua=1*s6_KTUCxl9J?d+83?jU{)Viz}u
z|EvWX{1n6<G1$vpXp)1j=z*7yWM1+EL7WtWgFze$;&2d0Bzj!%Xpql{T1{g(_8)#C
zh@X>YcIqz@{WXYFLTLY+z1GNo7x9eXS;2FHe*}@dN?r)!Vi25@+{rHmaamFy3*kx-
zSB0mAa81aqAZ`n}9>fhH^na7viwxGCApQ#CA6vgG<bDwMg#0b|zpK@QARhjIB_(9-
z52+#ex;Mxd`uDn)9zy;Q93ktnQdp3rKnMkGUPy9LEMhB<gz%{F7vwTpG=#?`T1>E%
z;1eMf7g9oy*-M7_j?I62yL1R;LO=*lhVWDfPun*9^itO5$@N%{^&FJO`Cl=FXF}Fj
z^?yRB6hh??mWQw+geoCa4Pkr;6GEsKLUr1N&@qIJ5S$@23gM*?o)w>N!5V_kg-|nu
zTEd?X!4*Pn;jCx!f?g+tx}tCd`Qes2v0ez7A=I}mUko8Dga#6QA!#i5KYQlN5vAdO
z^p`_u9zqLI8VfcF;T3jH2(O0lS_sXONz%7ZpR?``F*KHFOG#=Y*h;XqAWLj3q@5t`
z+q0M2I@p#@A#@I5SP1Wh&?SV|#o+A_azp4ELNAGW>|AdOc_V~wLXr*XF1$wwJ%uDM
z&GFjly+i23u{)R6SM>fN^b^8DS=+aSlh9y52m?cSM-<j=a0u_(e2~<W;t*RIDkNF-
z`@+X0lLUu{Fd~GJ!bb^?7Nk9QMfw>lQIc^&SQ*}2ofv`^f*!)85b{J<1cQQJt_UH_
z<rfmLYZbEfa0rnQq9MdYQ3aEgWG?QdhHW`jNIV47RuV!chcLxfm~mPN(?ggM!b}kt
zhA_)cog?H!!P(NoEMjg5^Fo*};sV<;IV;%1i$qx*!jce{+NsNgBrC~&SQ)}cAsh(d
zU<e<F@Cl0^nz=)4RtatoVRZ;=LRc%&jUjw4<kJw=g|I$^4HErKkX1@<O2kc~Yz^TH
zA)5uag#O*NzO?PPh459#x_JFB@7Iz<<r^X2+Lqr5Va>l6vQuzZ2tS0dTlk(3_6qqi
zgr9`aC)-HeC(&f9_uKqX2#1B=3gJiyM}=Pr;h2!Kg2zKRA>`)}P6;_F_)7@C+Vde<
z#BU*-mZaZ9I3uL&Myu##>bVg92;ooBDP9a&-x1DB^n!4Tmn3>wFj-ZKS9ui><+|Vv
zLFzY!B**%;@H-*=6~bNN_qapamVXPmFUUe43Q2yCO9@-Qjs7I}cJhUh7Ph`tr-yMd
zj7wqU55o~gfiMb&F+Pk5VH66Za2RigF(8a0VLTFsD~vi}zAYS&h4EAvWyM3$Fp7s!
zB8<l+N}t7qJQ4o)H!><EMJXd#O0aa;`o$`F^AKS?DIzVYJRL^4Ffzh$idbH-au^lD
zs3`my!AgSvb5bRYs-jd2qq>l!x8(11&xTQh%@_SS!K7YOc(NL`g+KqF)Vg7~!{{7F
zmoVyukr_tIFj|FCKa8v}nuPI+7&izbJB$~FzaYq4wK-ul4CAFRUJj#?EwV~HkCn*K
zIBebcCE3|IhuAcXSHoy7mW;j@MzjCqO5Opc-a^D=v~?Km!e}o_8^N~XGnv{!luluE
z6p}0}iLZx|8%AHz>9cDX-NJY?438*p*gB273-1|5uP}PpI{o(+-Y0C`nobs%^xRMM
z{<h^?V!$E>hVf1q!)^UtA@2(g5*!@H5Ftau7#8NgS*@OVPZSc~uONOPQT~`af?ol`
z7-gr9w)HW#GB(W97Od%=yc0e#j7ed9M7Lq&g`tEoJ&YM)c*Q0fMl1}UaKB(6jG&NE
z7!e_K6&7;jLROMcQAL>?h8Bh%hGAQpLgF&RX_l~cPO~Y(rwUH9bxy^ZVay6+i6|cm
z&b3o#hcQQZ@>lG6Va%84f-n}@HVcKY(-sTikGw2vshzq^$nr2&*viVV^;$pH?UOK8
zg|T1s)nTmR{0U=w7;D4$G>lDQYz||co$IqO*4uo8-8wqi$WgX+mb)d%1-IJz7ysD}
zz6xWTt+ValFiE06h4Gz`9|U)V@qHLOh3^tfuGu8A+}$GnXxC(qM5*r$W1r1wd?1X2
zVH^tMa2UUZaXO46l6pLh6JZ<`eoXLV`Ei6Eeh%Xo+rvpt8_|E|MmNTBN_4*Ij%L3L
zKO4rmFwWTav|-X8VVoD`Pr;;k;XnLx*!sL(CxW^WTnXc97}vtM9>zamq(rRys5ivm
zZWuSiR`izOZ9zuwgz=ZnM{ai96Jt93Tgd$|9@xr5A@>wVY6STrC>cSih*fl21dj_z
zk05^pjtB}!^w9_k3MnF3NU(4O4ErlsH&PfL5wXP*>yr1F@S=je2o@7U{fP*Q+q{Gj
z-n*b)I)d^MR1l?11Q7D1;8PKl74mch<%IAqG$-m_`C3;of@egm89^l>)g#D=pmGFN
zBB&}#H9?k={QA#Ns!maA2tI44HeJkP$gEBvAu`m8ptha*d;~7x!!BkqiL1#SLH~%g
zpVW&WGlKfU8%NM2f-K<;B6vYab_5NDyeP;lIYN?~MxzK`vh|mR@E46&B4`>xw+P;h
z;ME9Ti=bTu?IUO=1}!6K6+v@5SBnUaT(DMdYf;)n&{hb4+Dq=4$shPS@ZlfPUyq=Z
zkj{e4*hqHQE)np$!(UZ$Bj_4|CxSO3|Nc10-|_i#7;mo9n4!C5>=i)|+e1$wn`Ddb
z9YG(7_Kl!l<liT48p}L?D}uKp7!bk02o^`MB!YJ$c$afKf^Y<bA{ZRO=m^G0_95(W
zAwwe=7QuVM-xp*Zl9w3b@CZgkFjDkUg30Sn(q?P~<3#icj*nnc1bGomh+tym-(OMN
z9{IOjN(A2j?;+{RA3-33VC3JcGYkFwLRKV#Xaut(m=i%P0#!0ji$IG&kHCx|5rH8^
z#Q)<n>2PucQzDr9A3a&yWTU1>Fe8GQk~-`E+k6<o^Zi^jo-6tS!Fhrd=i4=0Xe*0^
z(CyL)mI?nfg5`GVDj_Q(SSjSA2tF3_iH)@`S@UYOMArze6{N^Hv(D!0BiLZ`&xCB`
zxWn2HH%GvKTknlvA4m3D#+C@SM(~C3FC+L#2=%Wb*k<#ug=`o6M)2DRzOz$z2>G6K
zRmd(|{~?0i!haMzInG13dxXDQBtQ9n?j+aJUx*?*iUScGjNniNhq(bpkru^~2#!W@
zDT2!p9E;$11ZN{S7r}`LevaTw1b<y|pN!y_2!4&=R0KSVvC4io1J6?YErQeB!M=2}
zl=>4~B)><n^m<kmzl-QP?Pgvk{Sm>RQXd|^$#W{t3%?LS>DJDRf+Tc%C4#FF+=}2f
zOA(vv5!{IIO`e`b^&6BPZ?&ty>Fk>k>rCN#<2`p+H>O7LfE&&{>ww+65!{Pd2j>1Q
z$UnuC|Ixz9<24_0CmHYghb_Hk{c%1eYDH58pC0KVPmdyh6cwVV7=<H>0#Q5~#bZ$v
zjG|B!MWWdJt%H^1%Ww)utpOz`@_@xhqSo1q8LgZ}qgLlU9!0UJb%H8W`9jnuqSnce
zC8H=FwR*CI;OFCAWhb~w38z>(iZV7w6i?dxDIsN}cv?s~!SZ%$z9Bi!L{TY<x>BFY
zQB;YdW|YSpp=#7R%(2PMj2cl?i(021vtrew$Pn&~;`O`kX9Y>t7EYt(b5hSos-w2u
zI#(3W3m+go&(5q9wa)6j+RW*WqFxl4lG-4O^!_>Zg|o?7QEVOKBB4lpQS>%~IZ-r>
zqEQqtMbR{hSEJzZvM)!`IEp587`Aftm0l%zMY5E?YjxvmQM8a~GeQ2lyt$Am*R9l+
zQM9s+TSswYgEi&aiqbBM_Ch*D(K(7PQF!jW&{41x2lP$`qsjy8nBdo=$fci=Rvo%V
z!E$d7bk#Rq-J*CiiY=S4brZTr(IbkxGjVSwdPdPJYQ2PETLQhK=)-ntJT3u!qv#h!
zP7DoW=pV&foJcVgjN$Dl21Iecsq?2O21fBt6f2|nD2jKZ7{pcC)VU&x!BGr}V!4<N
zjbd07lcSgt#d}ff^$Q<Ft+(Hw9$)%>_V6?p@0|{hVnh@pqZq|;i6Y9Da^gkdW5-4@
zHVVFqd7|Jr!3za)#z!$B3KE`9NW7WqoD@Z#q$+}5!TQ}xGjAY@KhjbT_OSTb8tK6(
zLXsL5oZG!L-#-%*o)Dy&%E{lTmd3dxiec;VC`{oarqrg{o(d(1Q=^y`#r!B1L@}Kk
z(G~06I3GqaLpY-|qnIU}FFs;)b`*0YIyZ`WLh{CYm?innu7y!J^QA0_f-lxs6h-wb
zsf)#?!kM&z=}wAEqgW=&!toxyG%UMMgFfBT+4E~Er?WFZj$%U;pGENr2jXbPD#6u)
zjIN1dt<67;Vx7&`N3pM?r*J>lMp3?tVh4vQicJ#TEclJ!7LJ;bKbktfh~i7(UkPp#
z{92G@ZReD@mP((r{5Fa<w^AuGe9sQ#$lglb$#H4w+$H#f;BLYG*HWpM?dN)>pKDJP
zds(+A_DAuMlW<ne1A@OraXN~FQM?~=9g5;GJ0yyuT!Xz!{~E=yD4JDtoQztpC^;U*
z@i$!zCxrYgSgwcb7fI#IgmZ_w==M|;=UTc-wMzdziZfAM<sKNtS<d09nSV;H&Plr%
z{e$~YaSzFP&cG-xO6q01=9i*i{n^YbqOc*1UgvU-;%|D3;-=`gqqq~rt^e5kB^mG9
zewdNr9*4463dy$do<<k59!MQF6-zld-orZo!vz(y`Xp5_pJ19`x?p}m8aRYZ*_~A=
zhQcwFjG<J_njS@Bcr1pZ!XJs@Q6bcwtsRdGFD7{Vfz_fXgcrAMO2p7t#<X+{WkjqQ
z17dhm_;WEl6+_t=s>M(}W)1YyF;t9M%_%3*@`4ovW33%Dct$dkR1&dr3{`|w6->?w
zR)ZcgM4_cq$g?rj5K`Zb4xMsn)ALqpE%8=6hUa5&38(Ikp-v3DvaI^ljp5vQ4@tck
zGLzY3$hJLa327i1Uyy1uJHv~juriHecqxW*D$1*PIfllxiD6?5O=5V3HZcr|p=k`S
z#?U8by<YFN7@Eb<IfgDVG>@T03~gg*7emV!TE)Ou^tTZ+zGlC5%zE2D1K%9Z7w<Fg
zqVkURF<iNp-YI6iL90Uy9fgdNqZvlGbnx_n*JH?y;f)x&#jv@fvug|<v3aCK3J-l?
zE*5b%e}0lTW9S|O^Y(~=r#$o)vz~&zV#t#t18AlePw5*&KhgVh=Z|54@V8=kXNH5d
z8b~5_9wa(XG+?fG>HJbgq`6~YE9<a>p)m}LVO9(u#_(PY@5c~`AsE94F$|Zy6Ji(<
z!^jxM$G}4$=ypQMlu<E^j)8{=uzIZg81X+gW}RL!PI#OCu1}u;Iy)!EFo|^*Q4yT~
zySq_Gr&qX7viODP@91n?A|(_<I0l1y43QY3F~nlnnra<Ykbj|rJ;^#-ZI>*Xv_)q#
zi(5@IV@Qa@=`qahYz+{_$!tXoQ#qz*(|Aq<m1!~5EuO-IJlK{QoFpBbGdbw}T#Pcz
zj$u&@i({BWCo#;6VZN00*FY?YSqCm8NBoU!=fW6Lx;ROe#IQ7mRWYoNVOb2zIf3(~
zeG<b8$;c8vidlz5tQ2HH?6i+%WL+&Cj1JCru8Co74C}=HQ|b0^Q~y0UgNJCWxBYD3
z<-TM}q`mX=7&gUlI)>jlmtxow!|@nSu%lx5B8DGh_(`hD=6o5$S21jh;cId7Lk!zF
znPb=y!}l?K8v{?i_^?V2EBRdvwcc_yoaZ3!6k}%JC6!4wnMkwUEQsfNw0G`_VK1jm
zzO=(J>=Sz$9E@SV@B@OhXSWj%$+&RV9f{#+%sOA=80*~D*{XO7`NVAJ&oP{g;g=YG
zW&O{jZEfawq`G6o*|bwqfkh>(RYpI*#jL|VF1B@^iQ#Mv4`O)8U4mNyi;Lk}41dOO
zp5sy~<%3cw?AQyE{bI~InWb{)oJ-Qi%OYM8OrDx?omGnAz9>Aw<Yo+aV)#pD*R2?C
z3*o9^!|zJ-dlpaO^1LUU;@?8Hws-PC79UUIU<Fh>uA-QVR2BJD6jD)Gwc4Ae!l9yo
zigXn#I_2>Ek^CxdR<?-J(OFOhj|kz^<-%dKh>Ay46jkN$7Zq3QWU&(-Q^E0~4Ws?n
zWq;k;8jdGa6jxDNMHv+(RPY2Du82nS93`3SVn!(y9osn>cybMBCa1AHt>Q@)PpK%Y
zqERPnK#2_O-mgno16@HyMb<~fuPUBVQHk|eQSNhBWffIatYRx>)vT(bnu=a3daJ0e
zB16UNs&x#6Q^m6?URCj$iW(}OQ<0^jfr^?cYN@EJ!mZ+=!&zH}OGVH8PV(nj$@G-0
z{LVTmN)~XId&)_y$F@uKxs-ei^!$2yN`02@bmSCpzMvvo#Y^1YRlF$Wu1HU5BqWF3
zo1W58#g7iB$6@7S-o}#DMCHj=)+rVAPrZM^l%^`21)MCJHEE`zxr%mTd2YU=g^E@x
zTB~R&3Z3vgi(q<68;Q0RWI@fH4xV<=UPT8L7v@`MSaej;NkwNnR~JUpdD5rzN7KbB
z<%-@_g-6I6D&ADlT}3yE{wTGjlO8HY*}SKUNpc)U9~FI77%Ji_`l;xzVzi1eD&A7@
zwu(V228)vcD&7$?P>_vXIn}DzyV9Qv(o=@07)t+=I!wiTDu$~Vq2hfR5q@s}K<dms
zA?E-wFB?8m<zGTPlO4__4l7#I=@_eGoQklDh>GzlCaCbM2&kCI3X5~Eiaa6o(D?au
zMR>)QE=C!ADn_QK{6puQ9!^I{QacxLvWTy4r_vxQO1-C?x{8<zRfR@Nhx5DCGzQj<
z$BVFa96nP;Ld60V3sp>(Tr*V6R53-xREbVwze#^im+1Lj*4L9+!ar0oo3k{(bFmoA
z5pka2TtUBd{(N?CtMoFJ(if>%%*Ljte5_&#r<016V#dK`WtItFF1SLF1+k4E31_2r
zrKfx%#ch(duU4@}#ab1ga>lCoNyR!9>s5TsF*;>^s(CVB+Ha}O4V)(xou8@LsN!=;
zs#z<2laS4-^?ig(a*K+svNp-T5b~vpuWV(Tifw(<n8dH2+f{tS$s@NZzE$y^&3CBy
z-sU@n>=OJz#cm;W``2KuJu3FHw^wE#Wd)AA_o+CbV#ktf^8H-kD=l(R#UV-En=k)i
zAxBg^I>F-z=Mvv5-{2T0Uik(OmSmrhy@lJ$&niv|FO%tE^puL<RO`RJIT}u@_?<hd
z26n|66=yjXd|XrToZwYj3i(sTd9Fm^mj!8gQN<+{pIyr$PvR9$^>c1UuZhj%i&@uI
z+z>uaJ~`h~aa*EyIPF#36`uUSe^14I6%SPW%|e?xlj1|+X1DZzSde@#U{Z?q?>CNo
z8qzeRYu392AJb4&Lw*eo4Fxn5)KEmjBa*bBMphvqG%GBGFGze;vtE<PkW|W7&3arz
zF%9K4RM4!4EuYX(T0<EP#Wj@BP*OuF4OfP^V#q0&&w8Wm7iZo1=jTAP=1Ez>CpA2!
z;b=MQODhkl;Wyl;HI&n=ci~cDxKJ>qqGomea~f)DDEz7W84Z;*RMt>MLsbpx<<#8^
zYIbbvs;0rIfuy=1Nrn&_JS%23>?o6JX{fECt_HV;=QUhEo>50bwI)uN@ahvhRMs{q
zO{}LOQ^afy^)+M(KYceJlWJu;8c6g7!51YL^%pgab)=j-k<n0U&WC<k|Ccp1*6@yr
zcTF_W@QQ{*1`Zo&s^L`)ALtma<24P<G~CzlKtpp4Ei|lUS7>Odp_PUS8YXIJt)Y#E
zejHE@Z8fyh&`U#a4ed3&Kg7{PLr)DI*isFhG<4R`MYG=X%-aIIOYnEW6q47a=h?Tp
zLb_`3*vcD1x(U9ip}VbDx{_MHK-#$K>C?(O2X}Y$5xuWq??NejD>A+DHrQJl-qtWw
z!!Su2pka`P!5Rj#;Tmq-OK0it+CF<d%r``{URYgykz@Hk`FL0i`Fm`IhA|rIO?P~t
zVK@i6K-y>xBRHeZyGLpmrQz8EWyYR&zu-t?82O_+{DFh_OqiE-7%R@lX&A3rFC*m(
zPKlE=<Y}0t;X@4y4K&0!A2j$h_%(!SEU#q_Xb4Ju=!Y*&ZIh86VppHB-q;-B7?pKK
z1xfhYXWD2QX0r1uL)Tz%Zgh0TrSw9XUCB)i2@%OB3z?!}s;x{DGF`(ATiGJ7cP^2h
zGF!tO4U04^=9<zlPs0KY3#DT7*_nk>__|kC>6?sn-X^-AuM7i=SfXL6hEFuC(y&a!
zat$jra70+!vwPetH0zF2lap@Z@bb=&G<>Y#$u2Iog2*wYht*P(HG<9M$RV!ib(;0H
z^cM~5HEhuEnTCxTzR~b4w*n2DH0#A;+ca#}utmdH8hEF7tA;P=e@!i3HNF&1GSKln
zLz3hy&;DA&cG)pr8RD|8o(HqO)38IsPa5`cb+2}R&kCnHf7Gm(D(@8B#j=D@+08X8
zZ!I46Ll!S&do?t5IQc4)6B=$!b?wuzUkLdDAqTnEI0qhgQaMb|A|4eyW?LR-m8QCA
z@Uw>3j=4{A6U*;p*f%}<R}H7Q;dArXaG4vLhTk=uVLi(^FKRfe;hZe7^IYs2UfARQ
zle@vabRL`au(NC5i7Xz!bwLaQeXW;Z^PRnyxLPN8NUm~>G~Chf7q{Yyj_a(9X5EjX
zlN%cN^7ETAqZqx-_1?!-t&g>q?`km1JNxkDFAc<d8r~b~`f_Ft`O5Onhg>p+QyS}N
zqT?S8DLRi6LOvbO>8PnAO}7TLkdDGS9$8o`T`<3(Lq`E21qDx?NTERyavjBWl+e-P
zVAi8Lp3r%|hUdU|*JC=5@^KZ_@wgE3Vmby%()<aYHsf6-b(GRkf1<03j$bFbO6w@6
zqr8qXI-ui8oyYH@td6I3Y@OgaJi&8yf+sNEm4AQkww?_NP4tjd(0P24tII@Bz1JF4
z6#k4jtTfS6Nk?Vj^q)P^Q&k6lrm3c*x{eItPQf7)J&}o?XNA|$aolvwo#3KnEgiLW
zG|=&aj^}l_bhvdCdoDfSx@_*%d_8y_9mKkVMf0cC(~+rLv$4L8EFt8*2B-BHY`s-G
zcVy{o9SwCfVwG0AU(}JKTj#7XEFEMS@T>PrZ1Ve=FY7q6!Oig0tyC8DijE;VhU#dl
z<5lkeI-2Qd&#u<-I?rO$(Nae%9WB_{-EM|48R@Ncw9(OyW$kuvx{}dWw=Sl?c5snr
z<V)ep-pM=a=%k~Uj@~*t>*%7Rn~pc>Q%A0jt~xv%i#_fy4&)Tt?jSPojs0)vNb<RT
zUERg)*-za)bkw=xW)VC<p{H&gqri`UeRTBIF+j&acIlh0emdUb1S{*@*AD$TxN<9%
zS>6^-l2hLKj*fRZJ#@?}lEb(Cb0d2Bm~~RvV0Orr489+}=c%+|I^NT*`~TlnsDC0O
z>wV!>o_3Ir&@ocS4~F$K#3&u3byPA?*}xbbV|8rfi0BxnW4w-~I+p2}pktzr={<55
z=$ND<PscPybtr6?j+hQrhmSK^M_5NhM?goAGv`JIe`jgF)g97#WPpd!@PjNyqdFe!
z$yygG-C}s@TjwlA)1h-I>6og+&=J>>(BYh2`j7qYR%2Z>Fm?3UYgrBrXHVu3hqLL8
zsq{?pLEJGz2UBN@*-UneL?^#n`a?0GEAEzaIOlcD;~W_4V!89hnAsUvy@l+DYZ;5!
zE&H<=7E5#qd!vAp(d9Z;=vc2~gO2ZyxL4{}rDL^@k90oE>SFj<$0x$CJ&~VbjgCuK
zvet@|-Pf|F%q;z>j&<BaMwPyPHG^1Wp8GQ$8@XCJPjvi#J)_Qi_vf4*^WB>SHw!Yl
zg&jVrG|89j{2LkkO>ov<sb2|S(c3Zoh<m$^Z*&~haZJazI=+*UI-+BTl)j5CVx75h
z-O4xQsCy^Z>5UAM-8z2Mafsu!$bIy$jGuJu(Xp4S<5~uz`*iH*Mx>+G1~-u+!$FBA
zxw*l8Sn@Lay<7RVZOt{VXC2pZLdT;99y9Q>j*~j>>G)g6FWj<pT+wk=$0;4Z>G(s(
zpE^#n;hbhi+-C)c3~)8SmvM$;cQ1qDIT1-XF6X7%7wLRPE|m)sCAq{!WQ&Y4^_q_B
zI&SH>t>XrJc%tW~I6M$?(LXcN8~xuA@h=^_7q}T^xGO$)PW0U8{M6wvP{6=L4jDIm
z18Ig;D|TIqfyk|VsfN{!bj1?s*6Pv$u5=Oe8&(mlOhE&M3?y4Y17<I5pooEF<sT7;
zw7eb6E^6R$0~Pr3^>S7*15X%u(y%6WaRVg`YsQu_P|`ptX4&d4O#^z{>Lzkgq<)n{
z4oTvI;yi!K07+Q`Pa7!5Dn+sx$_t@=|G0xu7F5x|Gg2ad0oQsvsu-whV4{IZ2C5mT
zZlHsKj;w|Or-2s@<QRC?Kn(+K1NB(MwT!`KvY#_h(?Bf)a|gIw2I?57Eu7Kkg|rz`
zy8Pj+x(0}cMp*dqtqjigOxDN13kLST?W!-BB|aHtDyQ6=QCGIX_p#@^+Rf3>;JMgn
zP6Gok8F<-1zp<{S1{zDNn-~bH)`q}EP5l)Ee_zj_LVVT0YX+JbU=sU;9mTz(rGY<P
z>8%YOg=Y0?D+Am~s4$hAQd<M<qyxEWB;GCE-mo?+8gw$y*}%I71{vsL;B^B%4D>XR
zYgj+icQxP<ayVbg8wSs|@N_qD{*81dbu;iLr@`Af<V246$U7O~w_Uvq^kqW~^p=c$
z3{a%a!e_hoH}IB32N=jKnvWur-ZsD_W*=za9Z4;7GnG1Vuz?{4Mi>}rU??YT*hPI9
zzYyh1Vcz!)yf5}27#J>2l0F-q%VMg2Cu5XhJ^3(>)wq)}npXkwKqq5`&}O_COfY!f
zQ_kIq9vbHvPz<az@R0$p0iS`%2BsMB8wePPON*E>$i-qHYVdq{tCzwC?%%X_Fyi3X
zoH2@`s|GX!X52M*PuB1EQ+u~?(#BxVv~V(NN`H>Nn~|`yPc<;j!1TkpOE?>^XG}Nn
zAuF@kJ%g1$l`+%6ELLWtd-X;)k-yQ;HZX^?(XgIvSil~T)OiNx8z{5HG9WGzaWNO~
zP3!54WXA8extDSc9&#@;u-w23gU<=O7-+yK$;Sphp<4r=^I~eiaW7-r+T1nL+pFpP
zW-7y41D_gLXJEa74I;92d-r5*uAR;y_)LsB`V==A*lge{1KSL2F|gIZm+blL8DDT^
z&37|+w^&$PmL5Ozd~IO6f$wFZ(d-)o-x^3A;CkgjDx)OdNpy!GAH(3P+{u-AEn}B~
zrGs2ux43s3_|d>mhIJQZkAbs;tXm&MM)w-nC;EOtDhCW46iyrd>UYGzQFdA!Q{y;h
z;JAUe;}{Uf32y$}&ElvS$4LXf7`VqJY2a6bXV~Ggfhz`n<Ct=RaB0Y~S-*3EaFfaB
zJj3a9G~=uwzlZW;*dM|v{wbuyB+mr{7Y$qz`|3k7`Hg^I)tjGp^Kgx;+<)?=+%#~_
zz;zZ~-dS^!=LV-%dFP_DZd%?laNEEg+vi`L#)Yg>=>M*WuTApY=aM&2JdP4^JT&l+
zfx>YVi6bSB)Hu@P$R9_(xK&RceanMx)8f|2O{_f85l2D(c|UHog`@zZqD-8bQ!L%d
zY7CcerjNwI2MLPBtxs!@#_?DjMdMa&d9cyrBJQ4(L;p_*r#|<e)RJ+OisPv`%EnPT
zjxv(;WE_Zt#`H$}B2}$(n&=Z<T~Bi?u4I&#nv@gHGmogOF6(6KGjUXkqg5QO<ER`*
zl{j9ABRh_&aa4=L6-S*os>hKLM-5grZXJ@_sJm-c7nd^*;<JMH-*B+3n$i`ur9QO;
zNBrWx|BmbVIFk3E>c-)YBP)&uaqB^gdU0gNF`=xJoY{FyQho72vNMoFg@FxuF^(LX
z4R*XL9oR6ASK??IN254iVzu9Oy&OklNg^+D&N}d=N!&UwnCA}D)ymV^ypi(u`;OP*
zXeMTK%PwjjM~gUG#!<Mulg8ybTSo@-gyJ@F<i^o8j<#{Mi=%xU9pdQ1E~;SlXU919
z{p9W}t?LxGPUhvH@F-pm=(66f*W=bPaJ2MDLwdx~GmbadvH6_cICIXq-xTZ~2fqR^
z$`g%u_4f3Nqi-Dj;^-}%*+(V--L}t2=Qo}HaSR;fU|Zgb<NNd0@lV8o?9!7N!{Znc
z$2)Pn8wY>w8Wgv_gnl46Sa3)jL*p10NAg#;_e6YOke12c{uZ=zj*MHs_)LgnVjQD{
zTep#gjEQ5cka4y?K8~~@mi;7Af`WO1ilA4J20kJFI08aGuaizO6h}CYh$xzE85I(X
z^CU;hGsE<osk+ULIN~-p<4D+iGDrEio5s`Pm`>3|K@&6Lm>I`cacpB}+Lp`W_%M#y
zam=xmg+k^E&J&z3xParH=}6XLQ5=g!Tq3wskV)HjXDyFoMI0-oCqIhg<G6L>nm2ZK
zjIdVLCvmKbV|Cnm>Gak(9&}1yBYdskr-Dpc7sq<x8{+s($i_Ifa5A)Z@eQ<}$FV7H
zy^D3TAj!yE?w*sZmrnC(`7h%5lG8848F?(H!m^yN<Jca@DOQ6mJ(}?iw}Lo+jN{ul
zzKdgr%octD+{q29Q-klh`gY~;y{uGr#qmS@-}}$`i+O&EV-NRjR%S%$y`1WCIYG>o
zzCVrwaU86HW8Czrdk)5Nm`gzTA@1$R-4uDJ=x7|#HZInX3M+h^?W&m7HITzK_%qGo
z){)}Bh)@22Oa3eO(pfnqr{nlNjyrMu6~`H_jyTT8aX}W*xj6n5@<*H}!sqbxJ)Vxl
zBfLp2#&Ic*8*$u><8mBV;<(0I6}C3aQ$4K1`>t{;n`Z5V*TuuxT<b(U-uk{JOOlI=
zCx+kVB29C$p3HTZ`#hIY9QWe*JC6Gt#G#H+lRVG#ay{Te>*}i4)kQpXG$X}CJ`-uC
zwfU!-SaUC(B;7>ylUelUFs-lc`6c==*D8f)h!-+Z*hCc*<NnSlV&W0gx)t_}iANcJ
z$|`N5jETog6gBa<X*~khq)IyVVkVxTrP!1-QOdMVYAaz{_wks@K%PXHc+#|fqOEA+
zDG{kxFi}?c(<aJEYIzeBnM6xsl8{rcWTLW(-=<rSg7CL;K4nqWL^Za;M23lGCYqaY
znt0a4izaeR)L=7BxJ}eEQPZ?eqpM}2HtYX`oBVkb2a4o;*3(tjgiAQ1b%gL{1@&R?
zxH8!^XF7R(6LsbE`79F+OuS%XR6kEP+g{eGPxA2Gt2zTwrbtdh6OBwXH8Fn_UNZ5r
z7%aJ(+L$;0O}rveIv?ND8ffO~@I%h>x?Nv2akYeXpx$eyg-mThV&Y8`-PxZeTAS!-
zqLYa>Cfb^4&uwIegC5$6!z5pqp1%W)>9eJa*x5uE6J1SsOuQ~;xh9yz>mxIsOLLOn
zexwZR%=)}xTK8wV2{LaF6Fp75W#VlUAEoE-WulLXzT%{}iQRvvCq49|=OSgMm2t50
z{Y~`$!A*UDG~sFm$3U@XAMP$xhWa2AgE^@Zcr<|_CWe~$+{7jm!%VzqVv32WCf+yk
zfr+4rkcr_YMwl35VyuagY|Fz`o<=&F-EM+}(G@Wl$sZ3>$C(&!!Y}#+6U*1-Qddk&
zG%-oUJd@AExRy`y=)2q`UJ*%rCN@v<(3l}$^3J*CFl-`XLNlS8h>B&Qf+<Oxm<iQH
z%9G9wJse4e#4r&zVT$Dk4^t-#NeGUSIuoavm~LW;iKQGk6EjWB=4^bJ`YQLiOb2n6
zi4U3jvemSm1ybgim@6LUnOG=fzKI1w7VL7<=G4Q~MG_@n%u$HB>TGf?W7|!vGO^kO
zeXbDvNN^=*co)n0#}Xy^L<q}TV`8m|btcw}!_f~@KV?^Jay3w`-q>K`GZTBHml_<+
z+DMzDS?mFZ8Jk?2O>8moyNNR<wwn0D#7{If@ui8cOnhfzhly<_zBci#U0aUVb`#%7
z^z0<hiHE5(;rs^9WaocxVyB5+CZ=`4>}u((z`aSHAH+B<=GrZt|D&KsbL};;kNb>?
zqtcfBCJvjZs=C<r111iNNPft~_NXP&8&i*ow^Q6kOx_m82@^k?I4R;Uf{$}*sV-LO
zT076L^s~uD!n~(Vu=1?!dKrSVCeE3-YvLYt6MvexW#YCJdfvn}As0+sG;v8d2l|SM
z%O;M&$&eiPtCDoCS~{zD-NX%vlHU}<t|q@@;xAk0cu|=bb^UGPK6m&8(h_)J;-Lu+
z4QCq1rLBz4KkOx@##~fV6V{}qw{$+p4QIgw3MG(VIK4R%C?K3k#|xwsPT-VG6?!X@
z0KGBL?6CxjCQvnjY6(1^u&xm$6DTF5SOQN7p;%l<3BgXgbEuR~piIKL2}3@kzXJ(8
znZQ#Cluh7Ly0cOOPbaMD%1|zW!!4|lVkn<L1zWEu<Qc*F>vOaJPOqG>u4`2i)@O-h
z3tZI`$VlM*1U^W>nZUCNypce+1ZpJkTmlUfXp}(B1ZpLanLzynYA5h~0`7$ManzNt
z9>XK4lfbX?m||Vg`Pd|{FZB}EQ%t8?IrwlCNmjyo4DZDR8YJ+7B$X(UlAXY{_Rb1t
z)A$JDbM2iu36$<&J&yHK0xu_cwgTEG&^Uo6tbYQpCGd*)uW~(=g*HuCAB^dFV#$<d
z;;>}`trBQ1oR3SjNT7Jhl;m?$trKX&2DWo1pBy7;D^aF)NT6c^ofGK7(l2E&3!fS5
zWOEkudIBCPH&;X|T@%<TpRtn<*S(oQ_XPSS&|j*=cJ)Z0r)25H9lLYR*R8?lMSDxd
z`Xta-lIZ8JhIlK%Ln6S3LI))<Ac29B^sXQurTd`2>mA8;vP4Sz&Q@0sro#k=CeU)B
zgU^QXQqCS2CN}R0wkw%3Jb@7jOs10rMkX*S0fmE}z~}_VBrqX?pU<R?m8y=Hg2qX^
z`1l!{|3U41R+lC)Ns{t70p>Xvl3yr%3HTGx63`O}h(S1kNCH8Q>7|U2Ap4fjkwztz
z1;vEWgPOqlc24#!vE|t`Lv%BN)BRj=;T)Po0{rwyS9CHpfoTaWOJI2d(-WAHz?=l;
zisekf52d}cSQB~jjn$ql3LUar<|VK&fkg@QdNgHz!g}g;0oQUP>tWZ$Vn+L=2`sTW
zn@?qQ@st$_tW01{0&5faD1na?SZ&+z8QM=|8m|(C-NjtVN%(03>k`<Qz~^jc0vn`;
ze0-5Z7HjVK%=W<9wMmjTC$NR~)f`7USaXs^Z%yC}mUS(aoXh7+j&fV)R|)V@Qj)I|
z*q*>Q34F_qWh&ZD#ditp;A)+MZd33*CnRV1WVD@(UF@Zb&U}-RHrXOSB(OVy9~1Z~
zfjtQvNZ?=sd&Ooy_me)ZeF^LPCjW3Ta!Jic^E|BZA#NrK++qjzave$FC>Lo0*AqCF
z!0`kwCvYW!6P!f}oMYYuPA2dR$1#E56FjWY^Q+)*f~N%A4R%rI;fxIP8g)IBz*%<V
z{jAFM8`M3N<;wH?nZWS>W9mDgq$s|xVRu<TP_oMvL6EpZ9vGKhh7nK%BukuaPy|F2
zB})#HbEYRx&rF8}5kv`s2!e@ZASXcu5%>v$<cxl|-~Q*E@0>dK+`9Fuy1MFBO?OXs
z)dFY#diYz&CBe%p;51y+J55ura7GGynf)3Yp}n)5>FHT7jkh6_Iy!Hzz%9CsylpjT
zn!R3Mpn{{~YA@%vJ2K1NU4eTX<DH%N1s@1L6nrGeq{l1pZ<7B<KT$EilBb{`Q_0g*
z6jJS@Jg*{MMPU`(t-iR5BC6ebPe@Z2Rl(c0GV<;UTfUfx{Ac+|6;G)sp`xUU3M!se
zQA$N=6;G?kP*Fy;CuG*PoNC{Zl@;Wl^)L0$8N&OHK54w`EU(%(1yJ#f3U80Jvi}uq
zHzI=y?^v7OPpPQd-|~=GQt=$?7O7WRkfe&rE&S|{8mg+OCiSnbqK1l^s{K~g&&NEq
zRAj1fs%WIbA?H$8#rM6OwN-Gxb)H%s5%1MaqZ8IsQC~#^)qc|c`@QUjDu@gxCO8|b
zaH-%{gBvG!UQofBcTnxEaI$#5k$O!8vsL7%XeuZ8qKf7!+@d!V<hgrP@DF0zw-B3F
zDqa!NQpHOuUKUORTJlfi)+*Xa#&$fA3M#KA%b`ua8H;K!NzBrbC3JE!>@1o}C-1`Z
zdd0C@#cL|Ms_3SoyNYEhmaFKYqNj>+D#okm#RgX~OvP~axC%ZKenZ8jcbxaq3MeXi
ztLP(QM%$d%*_&;17}RM>U$J?Urz51lih(NLRxv=Lb7wo>VpVk)%NZofdxDI<qvBoR
zgOkde4>GC0&n6XRXj10`-VrK3ou-VI3XEj?-^gSbCFBDYrzYA@u*awv%Q<11Le6mF
zLCORb6ID!BF-0<-o2E=sVNJ4)i65$%s&e}_Wxk4OY=_C-nJQ+{i-a>eL&&~2a%QV|
zI8B+Wf}?Vd@UqkGF<yVVGEc;71>Fl&EL3seLFOXC#e$XBd6x)TD#(xNXs|+ss^Vi6
zYgG7D_*FzzXet6y$p{_$er8ZO>lqRfX3tKy&x=Xid_2bfx}Le3=MwOe#8o6z=qd~q
zd{oZn%2Q#ooa>nkmWmH<r;zaCYNd)*l9yjWekA0UJC}tVE?0i7icfef6<bxTV{5DU
zT*YP;pQ%`{V#0J~qY7?WyMa~hl*4mp3)G&$9oCdh(gMNh%7*F678O5A%g}()FI8+)
z@tum6_p-OE_)5h$V!T7;ZcWaeD!vvnKi$nkuvi8b`>ojIAA*0lf3ISfijIRl$HzO1
z-Y>XE#a<Qr*wHGum~c-YepK<3in>13^WkR|`&Im>qJR$vR2)=sUd06!hg2L^aZ<%E
zDvqe=zuJ3DwKpq2Dzi<E=Jh$l9G5}I;d4U84tax!e?DHmn9T=er&OHgxcDIJS0;_h
z`c3lwE_jBh;t%0}3ZBc?CuimF&+atRFLD5?xW}Q_+4&c}TE%tYmpN)iXKACeuBrIj
zK19|P!K;Fd{v+i4bcKf=Gdk;r3gS%_w>U3xh8&f3NASUPd$aPp!bwWaQ0~*6DmWg{
zS5;Jhw%#KZk5&AuV#Txd#yne3TWvp_995~_?L&16`jFy74IgUykm^I44~2Y4_t~$2
z4vTsDJdl<nzjZRo$`|&bhz~`5c*2KbK9u(XJ{0$1)oO2P!6yZu5-cHDQm~ZZwFw!t
zEF-+EU^&631v3QmZJrTcS+IiOvw{@`D+xX)m~UT2`168Q1*-{G7tFV*<wK?qwSB1L
z!?NSq4j&esY{G|E$6iV4@M0R@%;fuK9S(ZieeJF9Ljxb&J~Z>8p$|?UUhpByhekd$
z_F>+Gg5@6-<gZxUTiGsYs5jMAV^zH-K4kll<3m#)`aSJoi|zT#@yl5ke<;td_HsvT
z+IxI>(T7exboODzyo}~PwDF;>4=sH7;ZIjfA6{aG4|zG;WN%7)*@sp>yy8Q(ba!hX
z*0stZVc^i9yV4WbFR%L0&WH9sdur++*ikTYJ7wUp?4logyZG>$58Zv};e%_Ix2q58
zYH#bsS>1ey+{|X+FIVkb+4S>I|I6gNvK&*reDM10!Nrg(L=mhqLwVhYH+-nz$FqL)
z74a<}2Kw-3(!QUN{(=L1C^5ssLf-aakPi=h_VvR%KD_J04dH`*c+ZCkK1}rC?H=~6
z_xnB!@nNXXzUdq9v#$h(`Rq%D>jCF*A4d2v(uYw#Fv{=&+c0DkhS4I95ghBoxO|%;
z4kmF#&~+#IFqwVl!+am6`0$|*7oKs<@?okE(|lNR+BL(6Nkdafrb{%R6K5v%*=)cW
z${Zgq-7h%TXTSGOLR{d(LLYYe@HIWkhs8d8?86#*LRaS!wzdyGAC}VP*w-_Z<v#q`
z*po8ayTWHb_wF-8;qIk=9|B^p(>FfyFk?`nAs@m*#>`M6Y|>lVQHjz(6B6?wo>UU_
zoIP$P8A-*ILs;|&IrK`_bB3}?Qa?)CtoC7669;px_2CmAw)*fTJ<W$teb_8EpCv6f
z3R&;N26kUPJInc%o=wTr&xH&>>!Q9z_!mB`oS`tfO`@$EJHGPaSRKc9AGXa<p7_i~
zWrq*M!P$;)*vmfr;lnu}zVqRG9}fC($cJ4%?Dk;~FZ+FXvP(|q+Ky*Gae0S(_tASB
zI)3t@)GE)38Ojen>_40RBZt-3?m0C)Ka0L!@PHuAI&bkD_Th*RzxnXH4@c>EV?D>D
ziF#~tHs0(!F8qYxNlt^Coxcb_CCJV?E#y~D2rt?D%rcx21&wWf)`!cHjJ4}re~S3G
z;CZ?kr;!&N7o`#YCr!70ruQ$2GS?*`mj!utSA4kY!#@&j;dET5V>EVL<Fwq~)BaI5
z?MJWj+?26%%ZJ-Mgb#OpxF=(TGtv)<^eX;zj+guN@Ie{;XXN4t=R=?UP3t2c9{cdG
z@B)4m^n>5L|3{^uqxLCR!4vjde7v+y@gvobG(QUYk?u!HKT7#g*pDK96!Y5;QoN@#
zi~8*cH8g(0Z@&iF=4$4ct<K_pJn6^Ox@k}OQNoWu8>Vq*<QYS~+)tJt>6iA~*X<0?
z_)*4>GlQLF{q{8sLpdQ&`;j4}d{T#y?(e5^W@AQ99Tokk?6)gi$#2gjykB_E53W8`
zr8}yK{=6Sm{ix<gbym!em;I>W$4{w_27Wa3qoyCV{K)jf;YVH3nN;zgg0+*pj^F-^
znPNRZ>ifYYwh5zr@7n1{BR_KdXzE8}KU{uf`!R52`U{db%a5IxvtR3%PWvXp8D+-&
zylzom^rN{S&4had`9Cbp7+Uzz(ht69P0oYza4e^lAFufB+oeu^tokpdwI8pt+5Kqa
z$8SZ-w`KS7uWG&<@K0uYG3)4umQtSf9sJxpP9fo+#YFyV!}qse^P?-<Du5#abn~OT
zAMFF^5I_$<diwFc-@bkBB}nqF5U(G(Nk#Fax9~oKuM55**jMmP!G3=97c#()w}reV
zI8cx!f3UziNccNRrPxe``e2E^Cs@0bXNVs|{TSxQaGr0#uG<JdM*4Bok7Is}^5X+P
zcCZco812UxKj!!`SMrXf2PR7%NB{9-f<z|@R-UO$N~TWsV~QUiN_1VOeTZxI)21a;
zr?W|ue5N0>gwGZ{)H{vF^Zc0aN63$`hztB!E@YwLBEiLiO9Yn+E)(Q!J4;w0Toq*0
z=Z8PZ144p=LmOu^HR4B}A1gTkMb!L=kqBq1=|@7iE@%igl7?lfCDGI?*{l5c$dC1Y
zY!GF&;3s~3EQFS8gskNZaK%0-!#Ytu75q$a$jpq5LYVrcADfc=b3Zowu|=X^2yPW@
zR?4HF^w4-)(sH|yukusdr8DVk;XnBCjgW5zzY}EY_kQdWzFTllQs3*xz9gTv+WVvM
zp9FtS>ihjTApD@<A;H7R)FVRL%v6s1al((308+)-PWtgj(&iT-rvy*?@vD&ElBvH7
zIpfD!Av{@D_#9_HKhFDcLB#8RTuj>kE#!ZG{FPKL`EfbP*<x3c{Hh=SB>6SYOBL;g
zx*^I<j(tDBWw4$0o*(!9xFh^-(w_eOK=>m+9t(LW_+xIyzd{PgY5pht=iCe~9mb*x
zib(fP3!qQ{Spj?Oqz6zqfSLi+3ZO^;Ma8B<08a!^O!(6Q6c@r0N(p&V@TmYwB=wR3
z@X$0UElL@|vV!FV>2gfX5MEx8Q3!cPaB1(fX9K7hKqZM*P1-ycK;<N_BIJ3&!qe@;
zRSTecGPOnkT;q!(LuLT=MRz1qYYV9(SXZ!~;F@9120|JNGOtreBf-W2xRUw{LO8UW
z1duH}N3f+}Q$e?2vj98+yePbR04;>%&kW6EIPfShiTH8=t%ST1upOYa@O)2bEBsYK
z+P9O=BIy`FrvQ`ydh>jfsXc{s5qwRsD}M!qbQkO)$n3$bwwv_|z?)QZh5VR_K0*#8
z_16P<BY?gEycs~h0OkZRH-P?<Ixv8@0~nCBd`rmdGnGL}<--8p;TZ)mIDq#87%%$!
z$<z@63=uw5aG2omWGYu(8!3EL03QS}I;oEhV2tqm_8FJd*`yPae4>y^0ZbM$C8;OE
zSyP2i6P%vZX9O@)_$<NMNu7t77r^`gwu!PJfQ11>1JES8NYE#^Sa6BpQo&^bEEmFd
zUJ-yQyvVu#n{WLA1d^%207AmUNhK1nSLb8Km?$3yu!banghX}0yZ{U#rXY<iA^bI2
znN(H<@KKVlX7&L&G+QgmX2DMaSSRFD!3_a?CS<)JjaT=ve*`xMut}891^-vy78$k#
z@I}&cYXDy+IqSgG?E$XZgdG9wOzQgr_&R`ZB>HUtyOa8NLcR}RS5o0`^zPh@Jrdn3
zm_M=nkk18w3gBlU`vvJR`L#MI(L*f1wq4Jo0UQfpeFz&uI3BRCCyVt;n;pW508R$*
zO8}<=m>9yO5Kag1YXEzL*cZfa0sJ07P7qClI1|9x0L}++A%H*V04Fp56g($5Y^GAb
zGA4S{sb6II0X!8%i6H(8;8Fl7K|Ei~aXEm$1GpE!{Q#~6Y=z-Q09S?o6Tr0qBE@a-
zUK!rW+6MJqo|^&O5`LQ`=DaKXP5>*Lc=Aiw(9|Xm0{B;w9tu)<B;;`bPyXp*^uMHD
zKq^yEuyS2HZ)y-}K@<uiJ&3|V6b<5uAe#T2T_lL>r5(3NIrEK+1yMYRywZ--n)6A?
zz9Z;t=(bB(I8!MZM5!R23!-umrGqFFM1>$0mvu0d6;fWXTo5yhIi3z8L!xyyIB5Xk
zvx_*M5z;ZoL-ASR6@%FOyr)tSCyUrcRpD`is24>2AgTsYEr?n{WCl?^h>zDhYY39m
z^*d`O`M4?`M-V@Roku*5IziMH-p1{rQa6ano1F|3R=M~|V1po>K{R6ht9lv+?Y<cN
zq^EHZyL&4PSwXZa>u?3}f+#!-icNwj|AbAlMLgs2xPxdG#1}zq4Z;(|i$Tl|Vh-Cg
zh!#Qg3!;AzErWO|h)zLt4x-x{*ULe)38F2_58@S39`1D~W-6_Nc<{NK1`MwT(JqMg
zK^$(IF>iyjgP3&;qGPs$si*hZW@R?Jy9Du?Bq>3371A?^UL-+uXBV$=(yRv?VYB;U
zEjy!EY)Ep2eEO58b4^?C9YmiXKKa=7y6Am_;6dMDuZ^-xV0csXo&5eQh_~2`K}-o^
zU=VKyF+7M7K@1AwognveRfY(@8^n7-obThMGFTLzBl-L6-+>AV!_Xjx(M)q)SnXtV
zq?nBnWONkE-0c29qN9U&+{m+GsCR4-<AN9;#01fgylR&}QTQaOA)^daG94cVG5R^r
zv>>Jjaj=$SY7jY3d7|ySd)GK;1Tl-%SmR`vDTMYFswj-k<%tKeGKf_{%nxEg5NZ&<
zAQrMIK5;TE3t|x+RiaCR`0R7{QsLwKd6`;#qiwT1h!sJwtqwlvVbmW)Ac%yR1%n6$
zp(RTT3yISAr1A&rdVbmC4u0fe&&H&Xc+!%U*Ml&EpaIJ?r9mu7%}d(sYw!JtW8_Qs
zx*$FcVzuy(1=mRVYuUvTeX653XP29np9Qf#h>byP3SwIw&*_=U20BtF4+9(gTu0C6
zL2M3!#9Pfl+#;NAL;hvZo)!7j;w$DAzFm+{HmL7l3k30X5Z`d51aYK`=gv&!+aSIR
z+E2!sW_s4wx1Xzg&%UFhZg!G4cQ}g8QuYL)tn$pL?D-*xAA@KeLYokN3gTxeyj2MM
zgE+v6D}*8;91P-65Z5?yais7lENzwRQV>UjI2Pnvf;bn%@gPoca{ko$8)p?Er-C@m
zmgJPu!cldW!X$=YgV?jqCJa|sIe!mgQgg={v8QrYNYB@tf6}Wt&$DiB#|56+80SU7
zqb(h)x4HkvX5Z#!60zCm&bzO8E(h^92g|q4D?$9jinVlH4WhB`q;f0j9JtcSI<#2r
zyb;8G&KRqm3^#+gCHywqO2}QhO~OuMxF^b)Rjvm?JPhIyJwcTJ1pk#o<Xd)pkX;~z
zf+3`Y@bx?1v=G+y@}`FDqwqwCg@lu&htT?SH%ZYDo(Q2v2sJ|}7DDk5o(-X5h##_X
zQOBHeAv_(zQz4WHp=1c9LTI<yO}%soWyIj8n3vJAA-q@9<DR9EkDuz!2%&rk&xipP
zCJ`Y~bC<h<kW(KxDOM6*IfN=9JeRcJz25nJl2;3%s&MuQ?W^+_yj=#{nY>mAnIYta
z&@==`2(?3ShR`U4I?25CLa3YMc*Rpcga#obK5{WHL&N{C*v27bh0r7fR|qeNe)=Q(
z5GQuIdE9JK8rM*wt8J0NElP_JnhEiQ@FMG<?O;-KQT9!>Td8FT4?BBaV(UreUuN4T
z>=HOwUJ2Pl>4V}0+J^8dyKJ4S58GD6jv;gkp}lb0bO<5iyt}{dT)fBKIfU0j=o&&7
zp0dNSeYEFPb9?9=EuY>kWIy=rF4#k`ry#{%A$W!7CKW|UZ^7lmyswAw2D>bp-ZzAI
z<+v>Q%@F#9K+<23WPp&jLKv7--VR}q@OK2))U~TLI0TmYUI_1pFhuwVf<py|2@V$=
zAvjWySw@9$zP5v8v?yZ)#|n;1+Kd-6LGZ;b&dKb8v;xyYm>$BEko~$l|7iFygsH-J
z6|onw+08{Vd8VSw6nl#KNmtLL&Iw^|2=hYrrK~16UvNPP3xzBS@m~o$b+O<Q!KH!}
zmkC)e$ZKyksry3khY*lxP%t7G3Lz|{hFrczg|nRe2M#et>7pX)f**%q2r&gMLE7hq
zuu}Lc!H<&qY9aZz#%qMH75s!#LDJ?^A)kf74bWK>7rogS!nQEBhp{Py&qLT8!j=%q
zh4FOQ_R=px_>u<V7+X26D|&j&QmAj|%pAgj5WWgwM+iGZ=vcVWHz9n>$w!Reo}~=U
zP5&;0??d?OMaMo7cM0wl+%33={Urr%tYSMeEq@UE9|eCB{8^A!YX?I(6vCAdu7+?p
zgd-vRNw<;Iqk?~ga7@T?Ui^n}G6Z#&ayo=xL-<AXz$VYB5ORxqc%a`zITPYW!^-c%
zDQ=jhoK5mSXDR2Tk`HGo)7yA2gm5v0zeCvfhL=_SAN}9$xhw{Mg>Xp-^`b=zv7Az~
zm724aX1VGAgm8_sXxMIq>mhs*cRu7S5yB1OHwAAA-WH_69U*rG?+M-)d>}ZirRQ<7
zhDF2pmt7e`fiU<7Vrm#^VepMra)uNk_D}6>C0{8NM!JZFlQu<!?A_#fLb}^KTPYSs
z@i0gjo($uu?p_jBzC;)$!zd*uQd+R<pRO`O$_mn^$revW*j{yiOc-OsC?5vGcqWVr
zVe}K5XTzu%#*1Mz52I2T&xKK6j$1j5Dne?6@w`}8mFS4swzE|ePE!5<6Ke{uC78*V
zbi=4EypCX9!J5@=r>YmmRk=!O5Jp2O+!;pWFkHeL3C^0Wyby*yTgeHdsgSHNnh2qo
zErgYEOR*lQBuj24QC66o*dmOUVRQ|nTNp2e@p2d)C8?F*t6{v_#PLcPttGm3w$erj
z^R^XoKu)%u@b+PJ5Ry^LLxWCXbPnU<Y~{Mk(M9yv1oNJ=58YijN$)UvBzaFEy#&2s
z<O)%esi||6KEhuYd?Ts%<tos^dFjFe`-d?gjJLuV7{+^HydTEfVGI(Vc}Lo<;vCyI
zIC$w`?}jlr=~s>BC_}>NGr`N$5kiIv4ig+MIHiGSWEi8QoHlcm52SrY3-+I*u&u_0
zF+PknVf(-131LhOBf`3cF)576VayF<UKsoOxu-D8LD$SMJ`7_jk$DfgriF3igqvY{
z7&C<X<|vFZX;v7sB@6kSFlJ4%?dOZKER5x0EC^#^7>np39i2->Uo4z204x#GxR#w|
zz;Et$H?miR5eTE_O&7Tu2GJLWUkG{2Z@j@ULSZyI;f^)Q_+*X}4ug23le4WWL!)1X
zVT2J2!z}MPd)*ZeBN4XW6;wMqk9KgHVOU{&6vpZ>%H470iP<VKSSh&dwu{EkcXoap
z##h%|%)*KhDXtCM|I>XE#=0;*4dXMZIa_jl7#qU)f>S}0jE$W3*#a+mnd@^gV8*f6
zT$_dS^tT9M>eev6<R}|ppE9E)T=)B{Fuo4so3OnG_>M4k3d#68o6&E>_H&q1EWeZE
zJ61J}U197F<3Jb(!`KtX-Y|Y*4a4@grTo&CUlHyL^F|&&vb+Due4(ea&b3T_*tnnF
zcQUiY`BWmq;1_Zag>jg<oN2W_NIk;#x!^j^EG+E}=TX69VJth~V)P_Wv!dgF$6deB
zX=~Y^E?Nar$6hOVI*eb#_>F~xaXW0k?@d=f!wS<C!#EqpA2I~ag>jw}R}IIXjK-a`
zsrjtuf+W>C>$=DRp5ZzAzV}iXmsyDDD+?F;o3l+A|AcWxlm(-_%s66&o&D(z-jUtY
zuZuonyZc5MH-+C~o2+m$eEEgFFzg+U^aGx|Qn7n<Khs`c_aWOhj4^SHjpH$=eO5J!
zOHuq6<_Bv~qUaq(!3a_!=odl%2vQ?Ri=cA^T_PwHL3#v@B4`}pYnCVy;meJv7(vkp
zo`|4K1Z5*A#$58nM5zdh3x87ZsR&9$aPDzRerm}G0`k>N>7@OxIrg^_<s!(4puC7r
z^FZ<i4U#s$7B0ZAZ=Q+ZQ#dL_aJp~-l1dRg7vYyMs2xG&2&zO-HG*mpJTJMf%u(!5
z7~nW5<yViOX0o&z5ialP<fk{agk%a9oU2f*leB3lq;3TDB3vZOSznN(LB#&_fP^JG
zdE#@G;ftNF2wsSwSp=R4vLa{_LAGS)#~1tnq`iC`kt0e|L3afCpM(%!6osX=7Sdd>
zMFeb?mJz%Z!OIb}ihv)O)SPQK)GIs@A;dNjw2k1^WC<N;ywKS$g7y*Qe~Oa-9ZJUt
zI*Cn=WGokRy%s_D2zo@&H3CK%x<%lso0iXe(jSs~FCkvRT)}*^-VyXk+PogY8^Zev
zzM0e`w^9Z~@D>{+itH!`M(}n7zeVtS1cM@YCxVd?jEdmh2nI*&4=aX7?6>Yo7~YHE
zeG!L5aIK5u@HiWXMKD}MzB)caNdEizA4D*kO&Y=G2*yM(Hi88aER0}W1mh!^6|v`k
zeh)Yyf{77Kir6p9E$^#Lww<}&^ay4|FeQQyBdA*<rGBHdsS!+zVEtc?4t?wK5|=i0
z8l(^zW=4?DXGbuHL!gjjZUh{dd{tmx1oK7Vf~fh+Z!U^paRi|V!Vy#-?pzYV@(5N$
zz@@jAMzBoC;=WEsRr2A^0R6dwhr}mIe)jBKg{i@az1k9Abs$D~xCpEW@*>b8h(%Ci
zgj0{8_gp0&K_Y^=T%BpILd+*d#Qs2)!4%THaV}p`UP<>*3v7yDRRkYJu$tb*BSx^l
zK?4R(lGs_dZ7KW2*GBM(=<5VOP1<}WWWC^q2sS2l-W>5&x2#@{EfIVX!I21#MzA%4
zFC+LVf}bPU7P0TM_C&BZg6+b;;<*$_-64FZ;MaoR2!1R0o#6L^y99R&`r6wsCGHdc
zqu>vM6vxa}cyq@ay8WUY6g-g6mGocI9ET#{&D~-4+FXTXR*vIX1ji#V{&8(8l6oS7
zlVbd91iuJ59YMiDj#I+*H2YSO(Z}DV^C&#rnTWkz8s9&8A&RrK;fxo-pAj^O+Kzob
zf(x88qo^3g#fZIb)y)WQMesj5e^tj{f|mp@3;r#5MewTNKZ4f;uM6G~WDBr_+v3R&
zB6t|Voe1tma4*8GLY1%QD))taI#;>+r;ExDQ?ed$0*|6-6pthLHv%gE38qGEUO=#*
zV2WUw4^pY82`?m=E?8Lbz+B}CAtj?IC8U^Oalt1ApAsw~nEPQCODiorL$HisS;2CG
zPYdqZ=b>eJ;ShXAu!7+Exk{y|{do)BwOSO<MeSet%2Dj7tW=4j%l}-@3sx0mbnPlv
z^(bmY!55rrMsf8>i`v3#MUg4Q5w&0Z%YW04sddDrZWQ%|P^mAZNOnfUsC`}JjG|E#
z{0xD^q;b@qNnE1mEA)h{DEKlGNe<1TXdA_=QLN;`8d0>0;*}_xMd69!#VDFb@p2SZ
z$ELOrgO>zbM)8#8*>J_hEF?q*+O+1ccHva=Hexn=WjaMh+eOhnik>2Nh@zvA9#M3P
zqH`3B7dT%N<%dufjk`pVQ6!Zjc~?1fw<uy)T;0X8@2rgcGJ8egjUrb>8sC!R-Y=ZW
zlj;-2J5jtFwcY;pDBg&oZxnAzlpVnrXsP#$qQ5BQ1EP3~KLHYbTX0a6o0BR`V#un4
z!BM;y#dlGBAGI(1-j8Bv6vJp)#W93>tUkrzQH+Qp5=AtMkutJAh+?#mQG)zk7!$?V
zC_ap0Y82z57$3zXNn))gL@`kc=k6zrav765<1={iHaTiv!c7sZe!(>@is?}V^K(Tp
zlVpjLN1qkN?5O<$Y9NX^QOu2ES(NLOc;`hipUx8npHCK_rz{Y%ILhr%m4#6(O6oI5
zd1}p5XtPull8EJG_T^EmkaEaX9!pZ^)$#a+P;CBVHZQ6<jfA2IORe~^7(eyW*kw_y
zj^bmsQq=z5guxP$5Y(eElDa8`pNHhprAKAaa-}G%1V2iq@>ga}6bH)`SRcjOsQrH3
zCsF&u|8;_Fv`?e>O!zlLQmJo<Vq+AWqV^&o{2lz7z4mdv&jmL}u|)`#FQV8g{7b=Y
zg4>g+UkTa4fv~#%PC;h*M#kfh+g;z%3IEEja6fxj6uYDNJ&NPy9ebkShGIX{TLwAz
zM(y7e`-gxtLli%<F+~Z>6Fln8(+aTr_D6AmrxwK_8K->N`*akCqc{@9QBDF^GCz9V
zc}xhK_jnYSD>@iXL~&C1FM_9{7}Cwjz$E_Y{~E<_^hQoW9nuP4ah>7h&qGTMS;>o0
zoQvX54wFEZ9>_YM)Gr9xe?RSiLMGHnqw(b^{*Gdlh7UAc;ZzevB@NGM_G$hT#oZ|G
z(Ld#^uM1MYA>^juEy3GS+)1YXSKfY4@_rQl9%<0<Ks^7U45&w({Mos@_>V#>P~b@o
z1vC`YkglPyh7`>{_uFw#nr5GDsvsMOypV=hze~?=fg)m7OtV)OEh_wpWJVek*Kp@`
zCv&lJp3>}38%k&>$pbCSVkjk~v|t&*vV!F_JS`+cu)JXNc?z>UquJ9!1<hX9@max&
zRAgTpex+4eLlq5OG`yzac@0%HG}YkNP)$R14Rtlt(`>h?p`n(BOyM;(ygnwCB7;Me
zI)b$|bf}ZIF_6X3_dV3t&_F|D4K58-2EB(4V^SMxaB66z;l(kj6gfu`Uy$rMf{bQq
zXd+p%HU5*E)hLifq<-0@G}GYG&`QHAEJ5s>YiJ?l+xuxPH9V}HcKE*S6)%ZM^0J5|
z>qT!ZdK<yE>=X^{G~3NO2=Yz)_L}{^Jr#zI8ahdo**gp26E^a$>^lu_Y3Qb*yM`Vb
zdTQ_{k688P^j=Bcd7hH1LDA4#<68<@{X{3}!!{I!{0$*}1>Y3B;dA#F%N~I&8VuC%
zwuWJ%Jhvfz5UVQu9YNNI1A(6n4%X~B|2+-w)A2M6WyJzn%UY!qsS}4M?MDb1siEtL
ztZ1FI(Hh2xlhol&u7+_uwHOA*FkZt1(I0D=s9}<Z9U69On5<!nW`EkYQNxECDo$`R
zEYmPm!!!-kMVYT*frc3xX0n6_nX@#^)6jpOGF!tOI@s+@W|^y@%)_SBhB}EK-AbX^
zLXBHT<!tEaSgc`@X207!e7kGnJY|Unic19@w=-e5mTOp{LFK5wlNrzuWLG{}$fv=t
zVP)%Fio}qHu!dC{KGG1;5Y?b-Ff?cyVr(mRy?onMy1%^>9~Tu&X!g>ATqG^EZLX=o
z((Gk0^E4dRUFWvBo@|!O@4r?`E-r@2_10Ev_*lay8rEr8!vf!RvcR<(+NTtFsUEsL
zF34g()$o~yUv6ivr?<!oY<+L1&}@U0)8MZCK^a?elZMZwNy#@0*+LYuRl}DW`gX|K
z#+n?;{z}7kiSisNQXyeOea$(9&ZFTQ4c}_`PQ&*aew8-drD3;*0~!u$*rQ>uhMzQh
zalcchz02V~4L@l3kzKq$yZNiRTLxwPd^?5u&l>h~w4QTOXY|dC@`qRfdX9z@n!OD5
z5e>(LZ28H3RD)xOiz0)6o^p~sHBb44r~D{|WXPkGQyNa)%4Rq%SxA1<@VkaH8qR7s
zZ@B)a;SUYx$TeJG^`wS>kFo1{dAD6phKn5a5AC`!I3K3`rQwp8%^GW)75~|Ng*|vS
z^QN>d$yE*ih;mJk%5@Dll6?0(g&lfJjBj(+)o@qCJq`Cc=X27aCtKc`DFy1J7GOWp
zlH`#FuCT}GuH)JNYWR=SYzzfs=omw%7*b+LjiF@>FU61+L!lU+jv*t4^qBo2Sm~I3
z|57-HA~6&d<%t-I#ZaSSI#Y|s(6%hN@;~{Ll1lQFkP<PJOe&>>aJAktG26JTV7VBm
zd|pynSTnnP%)ZciA%?6N5W_PuREXhO5$nfLF@|HKvK%p#u9RL$#OGqD977f1%vdvq
z=aamukZOX}1#86c;^Zuv)k@lA3aPa)t9H!(60nX$>k8HrZ18pl?HdRuX&8f3cq75a
zN!=ynz(rRRAvsAsTgaJVsZE8r1)IgtbBtXLk3?S-Y%bVBaFRcZzn(A0>{}Z?vS<~<
zD{PR2m+M5ej-id{ZDV*<NJ>S=nSWDg*)E3mqS))U#q5=!NIJ*RC5C=6`x)J9F?5Zg
zdkj5d;3H7}s&<pZ@tTkydiRW>SIoYk>JtM`hYCLg^TzN+VNY%hN({Y)Kl4@&l`)NS
zUXS4oc2G)c-<W+{^k$4-h<N!*10T86IO*a-+5KY}AobyDa=f8?J7)im`(p6NFi5hz
z6T`bP3>KRYVi+C6dojEp!w??p4d<{JhSPISWe<&EV&`-!Lp!JQsqBatM#kWK!`Y#8
zI-kmp5@Qm!z!*85<uQznVH_RxDF@GDd<+v<LJX5)m@++MNeq+eNFAMXW0*%Jh7V(y
zD$0x)X2vj$ZS|I$2Gd0xbSmx4JY`l4vtv+2=QsFsB&q65Z_w`@*TFeIhJ`UKieYI7
z=K_w1o34BFl#=t6>hl$rvp9xdC)#9b49nzXo3?jyyc1W%?1i&bp6S`lnU}J8^&5yG
z7{lQhj>Hg(fr~MI9K)Iz!ZAc*h{mABuuAk;4DlGO81iCB#GuDuh~8|z!WH~}4S1NB
zXtFmSq>-m(+oi1(8|uC0D<8$Mn&YLLr}uz#CK1=h@JS5cuo+`m7sID9Y>MG?v0<5d
z@AS`NSkD3nq_^Df+Q5#OuWXb8NjAr@C59am{et6Ka&3>{%NR;c_iPir)FBV=9e6}$
z=Mle(q26@6o;zdsItE5*nO~Fd#C~54Kg95T47+03&2#K+*K<)H=N?IAmG%l@AwRPH
z`#AT<a6puw1b=1?yV(Wuh#Q)u)8L?(9TIHtgy$$7>F>-_oPUHI6Fe?>B8HPfei6KX
zK9xII{VKd>+|Koz@ZV!N!>NM<Cx+s2JQ>Hi82*ge_mzd?I3L4>7#_#)uP7H|xGv;>
zG5i(7r5G;9@Q*08|69n_7_KB0Zm&kYtL$iYO~l{J6u1$?%^2VL#O)X!BrWg6a6ifK
z#&A#grsO&yf0r-MavqBKh~rBN{Ezc_9EIX`RSOD|qzK_2f8?ogq)GIQY-+|+PL~s}
z&n>`2FB-=aLQa%MF-f8g@5G;qqeL84C5h#fj3XnC@^O@kqjVf)l6tu~$_nRlF*IX%
zI{trkL(-;V9M2?qg*cuS&J7J|Tq%y{lJ=EFuM!9A_Pp>mJ?!1$7^+FMdK@)`P~qY;
ztY<B$aAq8iIJoRgZ9$SsgPe8a_DoferNz-8j)rlZc|W6n9L~7?IE6_a<7gx{jpJ~|
zp(oN`h@*WR9pcD}+Yg$W#E~6GP8?0+_H*Nx<8a6ACq<>3Ie4|hNwQfSp1A#P*o%VA
z1zW_?Qb^!q*GocZ(5pcTe+yd0@k-pj-)t>N(k70!N&ada?S!9D)0xDF27E`0OZ0Qy
z4A!<&9G&Cn631(CbY;JM=IRr-ue7^N&gvFN_c(gQ?cHs93HB8HwqFhvuW*vwI27T%
zlgi){p4a7wZ^Y3zj!&j%{P9idn{o7u+kZjwIWWT?+v^U9<E=Ob#_@I>!{Zo1?Ccm6
z$GdS1j^iCVhAcotd{263NE}1scwab0ZaX+kIG2&h@6G&0dqzq*qv%WJ3UF_}50dty
zrNA+p+~eXHA4gsSD-)Oy$3)gYf!+yBieoa}CV|QcOo`(|c4!<+;`XiO)Hr6xF-Q0`
z!Rc}PFOnH?%#<i?W(lD<H>oU$W1jH&aeQ?lwJ{v|-)b$C7GA`p@{Wb`m8Eekiz79G
zv;>wX^B(vkdxdb7t{8_ujzAm-<2V#YFpf|h8{*g)M>vj193RE8nhhR@Mt_ULh@)7;
zv>1;PM}nSt)uqi>cFaoW2EMGP-pRq&?9Di=<gwPxSMr3f<d_}kWLU-S7-o}?<5<I_
zI6jMGEhmH~*g0QW$3CTlHO^+>t3JP9NaYvYSN_Xj;SB59%Y*Damp8@nc^rG=*vF1L
znYlU6*Ho}IjxBNU-kg?I;rNmxg*(s2@ogO2;@B?Huj1G#S$0U2dASi4@oS!}?0frN
z+`et!Eu)No1b-jLt~g#klYMuH{lD-Ywv61T^XB>oj+8ilisNS<_tjiJqHLU<&OX{N
z=X)Rywllx-&ae6Pm9E2a9Eszhq#ljqSRA+FxXr`Gae{}7<1dc-kJC?bCYQXw#Bqw_
zJ&<)ej<a#R6v+BDj^Ctuzl(lGIG^(@kemHKq;9R`3B#Xsyknm8aa@SwVjP#s+m8!)
zV@~7)gpO`plD4`U$7NPSp0fTO$CbGKxR~MSe1#tM58XSC>(X2|q`9~uGTZ7Vt2*D_
zdG<~mcjLGp#{)JyopzOrUB-53xYbGC_^0e*6&%Bhq;CE*^^u(Q<2e2m@?RVU5-6Ck
z|Ao)(<w;54)4~P#eCg4Ag~(GbBuPaR_H>b+;7;y*SJP3LW~VcY2v%F5Jdr@L1d1o{
zWCBkokRke0f~6BEA*7@rbCpV9+l5q)lro}}P3q+mU<LB~sC)tyk~)MuBgl-;3aKbq
zNsz;hrBzAb`2;#7&@lmbb~?+cnm{!%sGdOG1nMPFL!x_nr`1eg?(nQy63t9-jXe8w
z7-}a_CxH(Q&vPTPi1ia_kig3cv`V010?q_H3A~s<qXZf!@JmTg{R-)>WZq^8ypZ4}
zI+`Sqoj_C3-}pP5&s*39ISEX^>N@UH+)15>Yq!cpWNPySUR|KHNWir~VYH=0UlOFg
zu&2Fv!YeF%m8)IC?%dW1v=KtyHi4bPvtDKDR1XOYY%fXtX04MPt7ifnyq$%2N#L~v
zx+c(#&2`K!mf?p<_CdQR&?A993lxTdW$cdVm4G*aPW6;r&X)hU7=G)M)+d426PT62
z?EDi+;GG2CO`vZAZzj+$f&QWoO4uWj5BUd3^sR*bd&)8gCh)c>!xkuv(uO!Vf%g&^
zmcVdHdOv}oLYOp!884)gtgV$hb%DZxJR*S)5*VGZ2ldDVMhPKbzCalxxh5qrIf1dF
zk4vVG7cxO`Vglc8NN1KQVozc%P(BnsRdAZ%bU_|^hLD+p=l;l^L+44rlIXky<|nWs
z0X1Py?+Zj+l)yqE%u8`Xo@a3aoRF9BmnhG(l$H`*E=ax5MlUUW9Ac8opFkjipp3N=
zSF%Gg069*>97<QRBZ5&uO)w_NBo533%cR@OAmx7UMgk^>!+;!yEen+Vaj`0aj}ln4
z7K_(nbpjtJaA6fLuELrG)+SKPLZ*dJ5?Gf&3j-|;e44;#bPOG@>sX(_h6J9{Q9{SY
z1U4mbHGzK;_&kBl2^>k_DEmEuFX)pAe4W771kSwc*-k~)V)~L}UlfW|zT#;f_wJzE
z-^k>q2HfM|8+J_sdlT4~z;}|1%Qx*#;Cr#zB}n5!lbw5#Ws?7pz>f*+XXhqB{ig(e
zX61iycYG;#?*ipSTL+JIFoE59u0shNmL%rl;fPH7_)FKZ1db>0X9DLFIFZ0f4jI;y
zV?2RV3H+8k*69R(<p`Q*=OUh4ps*0~0t=P1V)KU}H&&?orM>^cIf)uuT^EF$Ztb|7
zz(u-r0wbE`{*}Nb(P>%qWOjvx3d!H}sFVT|zHnXPOtRH3<XQsP6DXjgppF{}+)Us>
z0uLqQtpsi-a7TEFZLXh&c<v@}FM<0BRIHmug+;N1USsi(<?`(EJmL(t%d_oB_TvQp
zP2fL?4w#d{z!PCoijGtrMRmKs(sUHkQAEeqlI7EN6c)k)w{=Zt>T^f3i7zZvcp#D|
zbQIH3Trzf%6M0hj(1l7#9i?>S=xC~=w2m@5YU-$^qb$px=Y)=Dbj(_)l#}SwIx-~6
zi{$dU{b)3{P^qAE=`d8$@x0Ex(Upoio|7b|R?@k-v!V_6RMxqlvO?w2LZzyXYC5VX
zZHg8sfBb$XleVA8t|8(^!<DJSp(D?co2{d^jygKGqTtsSsH>x%j)pqQEmG<yOUTdF
zK*zvV_Ji5q?`1o6xF$Le&2zhSyuhKc$UbzI4%Vd3BBj+LyGl(YO1;`h&x}LaZXL~Z
zw9(O4heyYYQg|yJ=Jm|xI+iR_T8h#_=jOJ`t-;QhbbPc(d0EFdi<C2q6yhs7T8qsi
zIUH?X)zMBzu88e*bkNaRM;9F(b@ZI#O>LJ`<&e9RjzIS`R-@cv<ux5$nWUqaWa%bJ
zJ#_p%*V$e0zi(WXyXDkdY@d!-x1UJA*DamAr6`Jy-a0peROZ~V+w%<_eRZ7CaaPBh
zI{N9b*rYo8>lmP8o{srC-eRNa7^h>rj<<CT(lLsM*71&xcXbTYF<i%B9q;LQU&jzu
zeyEcR99>U$lSB)<OD=H_)$zY8+3oLVj#{ixB;le)BXo?^F{7}XmPG0c7b^^-b?)1!
zj1e5Gqt9SlpP*x+jyY`hU7krgChM4{W4ewhI*#=9e5hk8tG(DBeSE&U>R2}Ut-d)-
znxSJh+kde#Q^zX<JhKEzXu!aw8t00W_xZ)1yB6@EI{a)>9gB3Z1lDS)j>RmT`_TwC
znV3O+nU3W;PAyhe=<v~*kGjZJo%{MJB;0t8N>E2gM@&atM_5Nh$JJ5=G#yXWPm2o1
zE@hJwS$Od!N`hl*iDK$lI@qZTr*7z&*~T%@aJ5*X^jq&*sbdvSN5{8xEgh?Me6C}&
zj*mI&+vR+sW1WsQ(&;64xYn{a54fqbKA&>t*ReszXLQc*Jyhley~H|8u#w|>X$Hkj
ztm+ge$riSWj%_-&(_5A(TXlTN)07QsCe%nHG2hH#Q-7snr;e|A`qwjeu-GL^_EabT
z1t2b6qL6&2<9i)PbsW>NOUG_$z=JyW=-8{{CmlcQ*vD3?uKXxT#hT~-kR&|!HA|H5
zm)NWG&Cbf%uj7Cuk#9PheMsjYBKW>k`9@Li;8z_-=$UPENsj9{q2sq?>z(9Cne06!
zUi6FLnjUFC5A&QB{;MF%|6T0a_~d`+IH%(&10@XnspGtk`#K)zxS-=A$N1UI8+2wJ
ze{rnoxT5p9y7v-~xI{U;ES;&BIZUqGTkTxc@sEz{k|mGZD#<oF*OCe?Dc+=y(Pwnr
z(Q#MDJu&7^LrnF)>m2(avvF#H3$jzvLmiKFq!}n=;IY{Mr=x%Y^FijnI?CTmySLa~
z&_Id-Pisekj*bZ<GML12QVqM#dt{HNbOTQqC}yCrfg%RBKFHkHGp%j6^rB*OY;;C(
zA(h|AVU{NijK6Phhs0<}1EmbqGLUJYw1F}PDj0ayKv@Ij43uX>-OPO2K;^eRBpC*7
zEwOiEviY49Na{0!#h2Q8MFW)#%&3X#2A&iBc>`6M-N36E<*OKYwBOB;UqUqllXlw0
zZg|hmTSKBX1*ubX7^rRF1p`?I>KLeNprOGfSW(ZwalgC1Aj$WGox}zb4IS_{GSJw7
zOQQC+UpF(E%D;7Pl`25q#6Y%G%wr(O;O=8eCDY|L(A0n<;O;!$`EZN3#Zsl20dn6q
zm$FoO(Li$v%uewo123}>6FDYY8F<Bj!Ok+!+CUov!wd{J(3a<GKrztUKsy8N4Rkfo
z%|HhO9S!`tKf9BGqTjhL-Oc2WJLkR5BG$Z@-9^Z2Z2wIznsqnO!?1s6a}D%l4X<bK
zx|Z3?z~BbCBwhnVil271e+BrX*2lo>2Hr9-klotB@rHqZ2KpP^flKLY;7t)Zx|zg`
z1FmHk=$1Y}3VHWH_S*&q8F<gY`=Y$VqZp{zFzsEQ@2yPQf3rV(dcoBE=nw;+G)fz4
z;G1&gsk7#^8DU@~-ORvJ1EW}N15*u5<IxR_G4R(?Wr~5Z2F4lO{z;icCp0j@;0{^J
zL<2*QWG`B(aF0=v%}ecRcCwgVn(XAS^M_(UF+9sXoepMTj)A#`y<zA~!C8U@x~9(-
z!g822&%naNuK5NQ7~DZgIds^y(7+-Ci&?^rOoocf6ylWrp1R8vS}rrN+<;~vW?+Q@
z)!?Q-O2~lEfS*~mxPk@(^uuM!<xjlDwz!y=Xp=3juz`qysFX}RE2+edgFSHr32{04
z52L#9S~2@SN6SE-fy)N|Hn7sbDg*lr{9xcC1FJcT4SZ?fV*_gptmCD=fwcyz9nR+Z
zqMvYl-Ov21XBtuYx9Mkw{U`WF1Dg!2H?V=HdADipTbcU3rqn+-u-U*DV&lJ@%|FMt
z81`S}Ok$Ka6>2Ek3~oiFe9aCuu-(8{9D27hcNo}dfCj^tDbtrJ#G3b-erw=61AAGS
zWy<$-6$5+NEX$PL^t5@(&bv)nGV_uzTj!<D|KGnp<oeOzriVCT;3T`1vrR|GQJInU
z8#rL#pn+@Coreq@7D5-L0hJn)yhk`lCwWJga&zK3#>t^f`Qwst*D~c74wDk@vj+Y!
zaLT}GjvWKP88{>QYm>Z8{arXop^|QvIk~j^9NXW(1p^li+}!H@VXL>+IOll-866$J
zE>mtVQ~pO^H4wh*BA@l9=aRuM=DZ{{yJFxfXGIe*@eixYS=U4{6P4Y$*A3h;aM!>M
z7Hgo_J=ZP4+nim;IT>Xjxo6<Mfm9P|CLVCQUanB2<wN0*1Svi?@Nbg;C!~Ohf~IZH
zkizU;b4UuANH<Z$#HG7-`Ohy`-1l6CO%QMP@f0<=bBe;iq~a!?H0^)Y%b0k|L<tim
zO_Vb6@$Kx~<;s{DZj#a_*3NW(H6)|bUDxKjE-GauOF6+0mMc%2$S}FDhr+<3o-t9u
zgu_H_8knePqR|0&H4~LgEM2ZtHc`dIbCP%Ma%Jyw<$2*%1@m^=|K>k2#e42&cXbmr
zOzz#F)HIRF(pD(7Ox#_rP${uO;XK)Dg;K{vT@y|o!bCmOo;(|x7~Ii8Qr|=a6W3=r
z8M^KBZta#%y)kVzrMXPJV1i1YdbaWFENxR-mSk)qIC6#3l+9&grHNH0nz6-9j4(0M
z#ET}Ho9Jc2YodjTmL^)8Xk+3fcErO>hE_seHo4%u!svi$&R0wrE0hT@<+e5XaR)k?
z=xm~$iT-8EZ(E_XH$fZzx!=J=N7KHEW0c`?M@JVEubJp(;&?|#SHUAIlzc+7?k0Me
zxKq~6)Sf1;tx!maxh51715LbbqPK}YCf+pB&&2B{-e7m!$UHyOePgd{)sD0tW!-(H
zSZju}$lc6Kce0D9N`HC|e}IUp@|GZ@gXqkvGT6j>(#Y=!zH6f4;}kaa`zD5%7-nKP
z8~k?WQ1Thx60IG~!rSNBgEJ^Hy#HGIDEf(s<tA2`7;R#ViK!;0v7Bz{V@-@VF~P(*
z6TuD+{zjL6+;pOeNhT)q>}utX9_Ot7ooj0GLbcy<PBHPJiJ#u`tSwNUQKza*H!;J+
zTodz5%rr5JEubpZXM1Ox=)x1Zo!P5R?i}))ndHRzCKi}jXkw9RFArYLjl=>sx7}Q9
zVhJ6URr<;`MO9ip&gMNM`7+a9PMkY?lB*^jZ+8VvgiQDtZe;oe1A_Z**n16!O+-v2
zOz0+}yejDEh?$6+&`c~=l{{6Ug7F!|j_%yAq@fHGrU{Fkekc3kyPk4o${(eriTow9
z_iuH5WMVZ3wTa6dp(fUt*kfWZho^~8OzbrAwTX2mKBX7Yy-j>(V!ertCN`P4qAD8%
ztNWCqK6{(*&rNJLvBk7E`{t(JT^|(eIMqqcFlef?g-`j?#5NP#>FPd((VQ)=yA#}B
znK*PalYB>##Ai9bG4UOTMjHqDw<g~ADJ0*U*u`pePunfXRECMUo_!{MV4IsbW8z14
zqKVS?U8ha_Y+}EOqb81-IAG!+n{K-Eh>7Vw<&cTPbdS9*TPfovnby$}^(mWu%5moM
zDJM<*V&a5kp$$_{vEA76H0bD{!Ysd<_>Eq1IlE&Y5AR?0jCFEaJ8R-k6X#9*A+y{$
z6My-X5f8J|{0jWa1rz@>QRoxz&CRZhoQ}Tr@(0@fg*9>UaZ~cY*`%B>EtIx!m6N}T
zdnWGlT)uW)GjYSjO;)V1<2v2`PG-?ZDUJQgEsj~vV{|9ZC;v8O_`fnOZ=X5N_I~Ao
ziH9bNTX@pKBYGOAcMC-<yzW<coxqy>YvMnayxCR2vXP;nkQBjG!88knlBwwyRx1k4
ziduNWLNUv}NMMx5Ww>%ZbCh5C?&aL4ER?W7<qN+u)31~iGe&8t`IRyj%38><P~HNU
zMlWZf<b#wyZ)E=9SDv;&?8F!3EIebOiiPJbRIs>)p7N}PiWXPrQ^*-ASzL8Zd5&U0
z*>uKDUfII6aZZw|7OGjOZlQ){&w;M-&dvdam>BPTJD@PswD9*X7o!dfwJqGp!_7R@
zu~65-(|O3qLp=-iE%+@2EHtpt(83!Q`dV;WXk?+Ig-#Y4vjP@cS$M_53l_30G_~Ni
z(8R*KyIiXy-W&_l0!p?-*=2d(c{#r|v*5AN!a_?6tHwDyw$FKYyz@ocjCVE{3<Z>z
zEdIBpyetMJ2Ls9<0fm;WEwr)lUqESZVdz+Ae1*5Ig;y<{9_uVM$<1gxmaxUeXa@@i
z@3{JOaNNC>-I<l#pZ%JJt`@qmRf9^)?&-w7U%0wi=xL#sh3-7Hpu*5YNT;CvFvM#i
z*Mef<^NIEY&)(9Q<{;1O7S??2?Ze}?c90NX>YDzhg?<($T9{;^zl8x7Mpzih9&DET
z7Hef;u!VsZ-WFw$g?EH-c6xD=^PQj)c+2yih4(ECV+pr28HQM>y2X{xhgz5#RC*6_
zGCEug0zqYzg%2!@u`t%cxOR@w%v)dKR8M4d&Pmtm3C?jA##^|U>mi?Dq4!*;Zg`24
zEljbn(83}MAF^-@GcC+we_8lAsBCHHm~NrcV)xls9mE;JzYQw0EzF_k1eJLfmQHXU
z4k~jkE+(VgxSCDe_Dart3kxieFwkJJg(Vi|e(5dtFng(mWfoKmJ`2k&tl%^D+nL3u
zJC~)pi-eRaA*ESJ=_2I4kTNHv1TBO(4_JJ1i?D@=g|97qV<Bomv+${f&n(0&#OWj!
zKC+OoFl401uwV+&1>+raEDL!S*Md-1S{T05HGib%_(0G4DNZJltmgT$CKlGQPc1IR
zpcE_OSZm>UNXh5iDfqdaE+X}6Q@rafY_PC}o<JAniQLNGME4Lfafgf1%^ZUvrL8lK
zyv9)HRtsNR_{zc#HVbE-urh3xbGwD+_nKA}e(G*hhQkuw$sU~LWYV`5zO!)B!Y>xS
zx3J5?PZoZ*kk-ku+rnN8`z-8X!_KzdlHw1-f8^95Hq>*%%HuiC{T2>bIBMY-8$9MZ
zD0o=#5C?B32gM`w$+o#9w_o>AIWDOuB$ZEus1r}o)h(R0@P~z8IgY{#!|xV;OY-y?
z&NFoWna*a@o$rU0a~A%z@IMQGSvb$RiymlUcdDDA?@VXCf;N(mp60w{;W9mn9vD{E
z{^Vs61NAEwhzu#`UDqsJw@@Gt1@myj!o4*29Se8a^^=`9=?`J$mhjtxo5RXIv3bY|
z-?Fbu@3RiAavlis0`;++V9Ncb|5^A~IM0zM{_c&;%lDh6<RLW=rSh<`T~1ma3gzL+
zJUo>L^vg-lL(x1uk%z*0*gDxsrAU$#%d@X5is$j8Y~^NQN527{|AiG^V+`BlD%B&c
zL>@}!q2<r+)*W&RM3jt(!t1xva)>f{C@X}AE0<?qD{gP^D9^*?;hj9Zn}=ueP$3VE
z^We(Evw5hPhgx~aWX0w=E9K$&JXFoIw;+G+|1tF)P*N1%*AiT_hyl1N22^ktMI0Sv
zmvt0OfCLGGyDdRb6cG?aBqvD<CR9uWNz*y^%q%&BVjziN7Bfab1SRNq`;GJee&^JA
z=hmxN)zy{j)vIoym!xs2fU1v^WL}=e(1D3Ivz3NvT#?2#vz1Gm*5qK-D9vlL3SHmX
zN=Z7NOt0pEp9YUb8mF<J3VflHW-HgE<LRSm8rKTAY*s}g9V<DnOJmM#g^n74s@cjv
zEh}$G<Hj`FrO}@0tWGvdqXl0%jnXvA(rBJWc^bE*vG7pwO(Kwz=kn1M-ZERcS-b=k
z7}vRoYnWTpxFd}_)3_}iFKKQU`r~Yc_~bcCt2FMCD6Ls&bCfnh33wvVaa^Kp8dmF)
zOXnyZMCRT!D$=++jgDz_N~3ccUDCKG9WSw(&rxW+{p6$ZKis>rz#mI>OUD|&)?MO1
zyi>ndnTC=^uQcxG+s#q#OQS~`&Bn)1>7I@kd;R7pJ*7;jwq@D&PNR>M)k7@v9mxmM
z=$nr9dmkMtelQJEzB1Q`+?O>yR{h~LJ{ys^nO!W6N7K;LFwz*1#=tb5P2;&V2Bq;>
z8e`HJo5tWYhNLkfjge_Q&YI<vol8E+7i19~DsFwWcvu?!Wl3}Y(Re{JJRJ|PbYzYa
z;n8WN)ru4EDPkzWuWic4r7=E@DQQe)Y0OJbNaHC1#1mO%J4+|bQU0A$J}HgKX<oll
z$S0ka#?xs`Ph&<J+%M$jD9@zPVQYEf_fl>m$oXiFGW1~Sp*hO)EX*|KrZF##7t@%@
ztTwNFBaN3>UvrgNX}rn?JXd)+jaS%6<|_Th#RdCX8b1!J`+6Gw11T2N?8jpIb^jFO
zz9}ipX7dwp!G}pQ-%9fXp~}KE7Ns#?@PahzEUDn?f{Tg?hifiorO#C~zJ3}z#w1j}
zZ$+wY+Y-)+>~Rb-*<jMxmd5rpY?fOZE7Dk*hMR_$MmCMA35ou56+exTy)}(SyGsKm
zGB@7!&zq}cgtKg}LO#7Y%Cik{aA55`l~^Y2;q=W(V$$W}WrFmsN@H~zZ>RB28f(&6
zo5n`QdMdFljrD14U>+tVE~r~hPUHUZP`_iYLa-@~-{vZ0GIVnq?{e5l;{%RP^OW~E
zL`+WXJFmR!=H#S0<#b!p*qTOao<dH8c?tmwZ3mlf8b77+a~eC@EYtWZjXi1XN@F+M
zBpZ42%8Gf)$7y`Rv0_C0=uGD_f=|=vIV43ufzQ+ULL`a56fuIY)A)wfm&RVU(s|0a
zX?&N)_pJI!iAG~9p6RHhPb~j|EoYt*rYn93lIeNMs(H%pc`^T&G=AmCGf(+Fjd8n@
zcONMJjW6|QDc!!2iG32ZUno=SIVo{4jXyaWYdBfMp)?Ms@uZ63D*j62?=)^uaifYO
zX&mKns^WYV$I>{?!CXZx75}91FGo=oMJk#PN}Zshx{4Yqs;T@dapI9dsnf<J2u^)V
z$qh=?6d8h(RGh4${*!f2SJ7--;uIA(y``Kg`0}@u(^Q%fDo6UH800RhI76i&Uwn*s
zmWtXc&Q)=qinCSx*{6)|92E^VB&WSan>1zBTgvBeDRorTQ*rv9^15m~Ed2SFa`t@1
z-IOHf0u>jkxJt#<e7cH@R9vB=p^A%DT%zJK6_=~=2H{dQUjH``eA0{xy8KSz^7-+8
zAvIrVq@vq=<w_OBD!LD^!D^-Mw?xI%v5Cei^2buA4M`1|uRJ?nX`-U3ifdI27@N38
zs5)OssJKpzXWpdH(_SvRUcjpP3Yl~Vrj|ETQL3W1iasjJSad4dtLUJjoW-T$P8F?G
zq*UCjqJ@f<e35~vTU4IxE2AGt?Vhhh&z9e+;x-kxtI+Q%p_f5@M<>o)pwN4VFdHmT
zTJtqONw!sE{d^n2^xnmyZdXFkPWX8x{M{-#s<>B0g^ErpaJ0CKihEQn{I#^R(C?o~
zbY<RZoY0Ml|4}@0L2~}_(iz*5<R=#>l`Jb2Jya+v?o-irf$~7x67orVs_3QSeicDQ
z>OtWIBg@Gjzd(tBiU-*SR6M4lugVilrJssNR6L~O%F*Qyv)HwYozoJe{aLM}5-&ep
z{-_H6-HAA}KpCKdoPmX)!7BPqFCU`faTV8(N_2lX#l_4}6;G(~L_o}a=rF;X7sUJ1
z5h_Nia8-CJMyVLBVwQ?mRg6(FR>jjQo>4JQ#dsA@shGsVnUa{GVj_FQ@C5PmZA*%K
zridr2m?ELmgnqd|nX2OG0);Z2c9h=Tsc6&W#B>!iRJ^ESriy1(e9|NJJRAH%<vGFh
zc4$%g0-Njp;;-*Z-F-Oul8RIHiYulhUS_Las1VS-!d5*c!6&|^;&nDE74ucRq2i2|
zm2a{s@~+mT^4k_FvsKIy?_8GrLS^Xsig_wX=_s>+6{^Bgan^{$A{C2OXslC}6CYH@
zno`cIXLN52Pptl{bofHWkRX%KTB!6`oP1%S!cbyHw<QrrrB*-o`mALYU#ZxmB2*En
zcwfZ_Dl#gvD%Pr4ry{4KO2u*&D^%*+l_e^cs#vB{*R9l8q*N`dcw|K4*pviU>?>8Q
z;)paQu|`7Y-=M5!++`I6q&t^YFlfDs4JzJMsoqpJs@TM?w@BHnqUPkp+d|(F%3geB
z?edEjDGX)Md%`5>vq;&ZVk-v|6`wOdDz>ZGt>U9ei5)6FBw%CXD|i+B2idPjOLwxJ
zEK(Rs$N#vIN$@diP^FGB{>K@apQ==v#WG(oZ;O;KRqAIHZsNXNq!4iX_O*&{IO?*6
zsQ6aJcO356x+WyPSMh_2pH-Yvr~F5u1bbC9nV7g`VuJW5VNTziB>qLkuLYUk1pF>^
zpV0jrD+-~1s5n@_=PXtZsW{B>pH01e$;N9d|5mZ{sl-)_mAscz*fAByIry{J94ekO
zAwl;qhkXq-HJqSfWUcaQ8meo!ZLz|j>bF%AoGAPv4c%*(_gt)yGH8iWaf*ghHH_0R
zUc+e`PS<d!hE^KR&~T=PVhtr4YH2u2!-X2^Yy3e^yvR9Q!#Ntb$QgZK&2u%HG6EXT
z*Wx8*9SwCg)YIb8b>_5kQZgG)D<{1`1PESPtn?U=8nsxtNW;Y%8fdtTDfBMOELONB
zxkSUITD&)*+p<{U*nYW&h8h}a=)AM^3XR(_<<|A7E46sx+O|)MlwJlk)^L@E>oi=i
z;c5*{v{<u|;3Mu&U8CVzjXN);sd#hiQjIpGxEJ2Hy`p|P)<`Ec+@RqW4J|a<XQG*g
zat$|WC?!9wlxb+L#oLgsX@&IrwaLfQ%I7PSDGfJ^Bl9H*GK8{T)})n|8gAu7$0a^X
zE4OL5UBew3=X&LmwaK$pg?#PJiq;z1Xm~)wgBtGAux)UvQsd`v(N;q{4ed2_;9G0x
zqTy~02iK=MYUspQQ<Ziqr#5BA>LlrnYm)<1<sJ?9YN*iARYNyPicIc<m?j-18U4IR
zQ+G^F+{b31p$GFbHF5p$L{9;|HT2QYOT+ydp6O7+pjnd>q&Ms;EpAsrOwd=uLmD1u
zQD}HrLq83Vu@;Ute?&un4UcLVz?>&4xi(wXzJ!!+hN=wIFh~QjrYeUxWU0zvi8Vy%
zZdKvqp3pE%!{V2UMzcM<oqUqbRl_I^!^KO^2mvpQNYK%nI9{D}jD~67m5$Z$yQ-Y5
zDd)bBn4n>z21A3X;VBK1G(4~21r3umOwsT(Urob1t1GUUT0sM|sf^Bgc}~e+)TN4k
zT+_<w8fIvCR>N~F!$V1eyb6w5xG^1zW^65gQNwE*Ue_>F!%G_03}pLMUS_}0Fe`2|
z3OTRFwV=HAZ*$@Sn(~H*H#IEc3u>6HVGetThWQ%ivKZIII+=OweJ7Vp)?&R46*YOz
z0*zN_D;5eRhd3QaS2T8qK?y2<R1Kum|LDSDyCUDxU^7>YrNPnQYFNVFq`}kRYlt*t
zG*H32L{kC{p@wwFBF?!yEZ)+&EUO{M;u>ACxpyi%u<q4=C%I9r($Keiin{S-EDB8-
z+@WNJhUM&rTD(|l_D;o04XZSeUqe@@{#`BYXXMoKbsE-d*rH*ph7B4&)QtUa-ndzd
z4+}PFc$-6tu56lG{{F~vf_KEr&Fs4x-qY|t2ZW==A7~i!eEB!E6s~91&rDpWE87@d
z!xtL9)Ubo?hkabb=Nfj(0J2NNZoV(ie}!^L`B+11J=TJ9F!@CAr$S5Dr5M^rS9rid
z$}!|C4SO_vtKmB>-Vf&YfM09)M#I91iG5qk$z<_zJ63jIYU}#sk8ufLh>6Ed{G{P$
z=0V3tI(}jCYM7_vEgiqHWpY%}(L%>QzCL?_&bP(^4S#Tm)=@*pL5>L;j%hfq;oNPd
zhcx`9;cpFxS!?&y<lzX*#GO-@>%(!nazw++x^h%Xa@up{|FDX6g+H<Vmt%O-%KBSN
zPteiw+42p#QccIphvWa-*3@yLj<a;s)<Gp$kshBipQeLLqmy);tm71&%NTsFE2kO?
znREwr<#Ziq=r~i453Fl3&qlmSBqnWUC}->7$?v&3&eL&@j=K!yAwwajj*hxa>YwK4
z>!1w)5BKZovAqEg`k}{$1T;2aDEmcyrl8|$9ZhshFqDgRG|+JwAE)C|9kUIkWBW1=
z%aNg6uHy<F#X3ru&(1~lmnIwPc-K%G2_?8v2k(7zbKRIvZ(Vj?=c220tO#RcJj%1`
zuhG#|N2!i79X}Y#wR${rC3PfpTt`mlvYMuHy&fB{(q@uF_YFF3)Nz5SG-FMzsh}|N
zb*9psub|^*W^a2b=bf8$r1V%N%c*B(ry>G&M(P$A>NJdvX<O>JRmW{QZr3qD$3Pu-
z=(tlyR~_ASw9?r!(O%~-0?|fCu6J2mp?B%=+}FWW$f0W|Odgxw&1~!Fq@%MQj}=?S
zCEob9lyBWdy!Qy@(9zda#+&gla<7gG9es2>prcZUqNBTx9y;#RQGaA?Ji|9#xim@K
zQ^#wj(o4tv0@xR5P~BTcU@GsK3Nf{U59;Wvqo0mPbUdVE%jg8%!+N{|Az)2WjG(`c
zM<w*EY2{3ZoIR#8NXKJ3X6kr}twP5T*0_#|Iv&?CRL58y<5;jw@C2J&zr-<98O9bx
zbrxeysu(VGgwT;fM+qG*bc|3wh>~?IWxV94k);r~S(kiD$0Sy(j;X9Q>%T!@vJ@|C
zYMPG8w^vqJ%F_a<-C_rSM#pqL?*21`J}Z>o=L9^j;{^dP3gvSd^s<gu*d$oRV-vG<
zysG03JzkkixT`GI0_k|2uQ@Qmg4&a;OUf#HlZ9X@G-;TlV=g=3&=mKZjQ)%j+jz{^
zk=CI~KV2Ynp%lm>p^JsmMp4tD>sYIU$r?IL9a%ONJs$lmJyzCvf^D5cM9idf1yEV!
zvvPHW9H1IkM(h`V6!T1h_|%=H8G1J)*^C!jN|laf>`E*;>AXwX+AW1E0lqcUU(O&7
zYa<gpBU`CsmCn!5Rjd}eMku`uU8iHcjtx3C>UdknJ34sU&dh9Li{+77s}c@Vo7tCj
zY?ti4r{jG#Ar4>LlOO0n>k>Lzb8+4$Aakn(ZDX--sGyfg?U0Bc^7Yrn_YrpK*v-N*
zU>NvV$0zK72JSHMsgBQdoNM4bgTo!Z(6OH#T*sF>zS8lNj-OeWI=<#WWGj2wR#zmy
z(c|NZA6T9`zSA+RM=I=CRDXHJ_d0f33c+ud@*|7UQckwxy(A<4qQ}dpdu-)*9lz>0
zK1}&d2HTV!kFNXlSnb9Elk^V`{+t2~)HLv?jzc>B(eba2!#e)rkhQ<~n2x`79AT&1
zUGeaPb-A-6I4VI5&F>kHvvsYni20KfCm5)1V34iwtg4z3pIEUp79Vd;4)=p68aUO!
zX$Fc6oMgo22PYdK{}cnYH>Q5=l_H1UGkc^?H&DyKSq9E9a3)=k6t|gl45iM$wt=&a
z*r?-aTcK6PIR?$elXTxsPt-9`*T7W<t~OB501PxRaG8Pg4P0PgQ|F>f4NfJfZ{T7B
z^KGTysKownOD{6wIg3*j=_SO+OKD|6yNjHytbVuRaw9&8yTXW%6?iJgW4ne18X36K
zK(T?wOxaON3~aMwl}k-W`NfXaEOh@?q?#DG#z4}*4F;MTxYoe+2A(-ynlLb;b$ljR
zZBjYGb>d}Hq{?Da=b{@8G&7JgaI=9@BR<D$ZlIhcX5jH1$(Blrl;^WNy5({0O-6iH
zOK^+9|17|rT7DZ}!HDe!X)Z{Uzgq=g=fnntv9VuO@=gP-42(4}&OmDeZ45kQ;9-N)
zDB2pRFi=V0DD4c~ZJ?up_I%k?Wd~tWDaW8r209z)X2hE;P8J&u*6d>79;V|cT@Bp1
zy_8Jq?Md%7@cmt7)JSu{R}9=|;C=(W4RCboZlISDk6JwpOmvi<!X*ESp{dt*Cg(Xy
z9|I2<v7vZh11p_)ntPB>S(p0AQAoKj;~7dnzP^EB6f@A@z@sc8Bep^xU|^tu!3KVF
zltD&306u2$6hNUj#%YB+sUZ@|p*Uu;UizlK{5|;u8{VoUG5Ny{j509Vh*!BI42%@O
z#TdO~jCdtX!2FY*<|^Zve*-TXn90{M@RWgPS<b!6CK;G)#Hz@r+4jaIrWk1GDpL*6
z(v03|;>{oQKVyJ{%yibftIQBg?>9ZmsE2>f!1HVX8<H;wy~kCEUo!AAvteM4!M`wL
zmVwt?rKGs>RRRNV8nKq1TG`i)SQ-0<5o>7qpZY<rLP|C46jzyRU>>{Ai&(^}WREbg
zz(BR-6&zjjG;o!LMm(6m=PG*{(LmaOYTzGN(Tx9YFcDwq#j~4fz+&l{sBOYF;28MP
zz+SdV1D=5m1~wY-S%$1l1FKkT6BD6<oPjC>k%5eGc%YdTFk)qr0!s`mWr55~E;n$a
zJY^Z5>%~U?q{fnp6@1O@rF{BoBeqXiFLVtnODuEN8d%5jnH6WRzo$@Ob9u!k18*~y
zfe#J5V}M7c9~jtTV6(w>U2LfNo`LrbygH_0MUzU}a}rGQl&!4UNr`O+whMTEVq%UL
z>uPxNUgaq}4SZzaO9NjS*kxchYn+2T$A1H#aO7uEcuM)^WQ~alx_3Q=lvyG@(O14O
zaLdw)i+qLY?=kQ-3*5kWYyfhC_6?u-M=>4E;K}*kfc|&!4-z``!zAtJna)oJel~E_
zz%kaffnN<AVjK9k`ELe(H*mnfAM7B#%l2{DWHI{j@rQD_IROvK4>F(A>T-L<eO5<b
z`IEhVT^Vgk4;%Q)z~3y%spUu5(&i<(!{W@sHT(cy+0;FCoTI&o8fL6-{Kvq*22L<R
z`^;)4E|?apB8j<=t7+my6K76IoNl7X#1D_9PBszI_|uHn@SKK7Pcd<-8J`55W@3`B
z3?7^!pE74i#50A~5_;Q*NhWo+iE~WcXrh^kb4{FQ;%XC3Ow=(^*F*yomzk(%0wyjr
zQQySe4rNr((M<Pz=FN<axaRo^TgXKeJLkkpOmvx1ezA!~jVphcS;T7;yiai{BX%re
z@m|gsG;yVgViQXbSEI3FLlgIYm~3Rm3yJqDQ#W)hDlw7s<0+%D2_A=S^Oc``<tj5a
z0=cn$*)=A(uxB+Tn9hhqQ!`!;U2B3WT!QONTyG*NOnPrH<27x~K*_J+OHGtf(nLoS
z%}tb>Xl3H|K;g#ZCKETCxWz=uM7K@JO9O?p1ydWIxWfbuw^|CO_f`S73BBEn8wQzo
zn($jx($RXhwTU(+vKx|jnP?~Jw>7~-6Xt}py@?Jcc$&jugpQ*}Clj4b+;5^ci_XM7
zCMr!RCb}{wCMrzy2$Xxxcp?Y}#`>{5Ad?B+XJY-v`0h_nW>PS{Jxq)Ulv#noNw62+
zt5wO;wW&TP9x&10#G@=~6MdQTOr@V0A7npdV)MM@!)B~2VACbNxJBijzmkubAZ6R@
zd8qmT69Y|tOfoKWE}~97RQ#A3YaWOPn+O7hwsxdLS>VjMg>Dvxu>qSn%R+4n!<i)$
z8%=C7G19~+)+{U3#Ap*^OuTO54HIKcjAI^5yl7&)i3ujAnRwd7L=#V$m~3JS8~=pF
zBojXlO!4h%3`*5lo8;DD=-L!Rr?UIpRmP?7GbW~+c;1ZH?bJ`sF!8L3_k!3kfI7_Q
z1Yg!SMb5gbW0{#Ic$4l`R;7uTOuTI36+Zp0vRNi}e4OM2`um}HSRkOK-}ix%*U!9Z
zVm5okxWobzhXaMTuI8|7uslO$o{6_i+z~2Qg|Sj)KD}cTy#z00zmPV$*o+TS(<Z*@
zSTwX}N;RSJadQ<ibqOLEdS1E3!JmzpoyFw;-Qb$B7Bt7Q3Kh>p$dcr^cUPIuDi9|5
zJPD;)UBq56GLaFQHRHuO&F!jK?6WI~Ntc;eZepDo&qpgvu<NZdv6_!&`G*R-Avwb~
zCD)kzcusO*sH`<XFNH~28tYALkX|;uvM#-En|O!A5vzu6$;7)RcA41CqGrlwY(UFK
z_<@NnCU$a=$t1U$*k;BDTRTE!d8lmXyNj0`YKlHI!P71}UcCDF>GF@v_?YR(Q2E%z
zC(JO1zEO!!O>lk4k^F0xiHXlmd|~2C6D5(d$HZ4=e0X<4q?{coRILzGn5#;ft$xGm
zn38A_DNN)$zU-*P_d+WpWiORKCXSdmYT{=TznC~^;!n17Hrgc>T!8K4@U<iP8~cT+
z{4SVRPWJOzCa9#Mz#kkZdzTRmiIhWTe3g}*^l!Eh6Mr$=tK&i7)??L4X%@m8pt;)h
zj+v-#p@xOyCjOCz_b;m{QmR?#xF&gmh36xMt&yC4;}SJ3{uU6YSUA-}k%f&>tWiJN
z!bub!m+)VyppgkVZ1$&FINieJafvf6T>U_bPy9Mk&amP$VuJeP6SXXC|13#?vn`xs
zf&Kbc3+Gxm&q5=5E!444*TRJs>RYI1;o?b&^R0NW<yrz39?R6^RZ1GsU0{K9_A9uE
zG8Qhi(7?ha7P$Xyf2=y`_O&TeF1;?Z;?ld^!l6H^Q8{ph6%Wo0E&LNHbagXIv4s)~
zH!_nJ8e6!^!Zj9}GXL^iuIHOrp!GE;Zf3*jTy(94goPU{u!{E{u6dmm&+^v`J^PPX
zEGd{RD#jV*u8dM@q0B;aNsvp;atk+E;9cNbEL87O_G{l1X-e?TLYYGvd$h37Qp6~k
zS1a9S;dTpmSh&+dD+}h9(#{rITWDk9+wG-yTe!<YTX{-*p|rkhXQ6jS;dYyfnhsJv
zT!i-<l;Eh+k?-3t(a8dX2)bApl~L}IWVw%H;`dspu<)~mUo2EwP%OM=;dKl5S?F$I
zyoCuCdRXXb;c*K?E%dT*zlHu59_2$V^s(aoZ(j?uG77hl+}l22!OAEPvXK9Yy$@M<
zm<^_T%|%la{aB&hYjSt|hy@z`5)7~~(4v+jwkxjRJH;`dn&Clg1AN&7#Z^C*4z@r_
zOq-vNc`J>BzZGAlVZ(UR!fij6j<P^ww&4~=SQyE|Y*)f#h=)2Ak>2@J>1YdMER1D)
z&M4!o*qFI}>q=sMdy;sfg{LgMXkn&>No>*<o{mcoQ!IRuiRT^CscZwx-u_}P0}f`C
zWcSo`E8gl>1Qj#*7Q0G`pSAEDdz0{AU`vxzSL&uN-W6|$*`i)z`ZV>o@G^@ctGvRT
zA1t0_;rtop1f;2fu~F6=d^HPeEv&OJ+rk_Rwgtz+TnqCoDpjz^!dn)&Dc}upCOh8(
zXL-5>0^&*E!qkxooo~u|&njsPss+u8$M%+4g_yu(S880Dd9jGp63nre*tOuXwArXE
z_^kA-!mnIrECd!pCOEr-oQi1`k%crh2^*6P%`!7q{4q>kV<cT_VVQ+Be1#E-<yO3}
zS!rRFMb!}aWdJ&U-eI-m@R@9Unl?PEFt-%uE@{1m4HmXo*viVXu*u?&II)=}uow%n
z%G*}F16`6;c%Z<M`CSX|S$Lln*Qtox%pF<f0}H=rWBoiGz1uhhS$ME@*&b%Y!iN?<
zvG6Hh<WXg(g<UdyeI#CTYHcg$+23wqe#|DCQ#f{gX5n)SUs`CGQ|LHOl71mxD&oE>
z@VP4Z+QK(%t}F)&KU&yp;d_py6B0i#lO2l)Zpta$dZs$%l)g+kr~G7rfJ+O;{nesU
z2xT^!+xXqWJ`R{R&b6`M!T}34ZJcQ14+{r5hO=Eg7vEX?lTG^1;v*dEEF8A5AgBDr
zVeR?yzlj%Ca9K-7a8$%7c}xIx5&u~D*TNgmm7idvnjPy&-f2^EV0PW=Hfo6X{I(^0
zMAyetMK(^dak`B&Y-}H0KEF%R$u>^0ajG3#Zt%{_X*Nb?lEl5Xl}6Lc+3;596u#-1
zHfq^8%SLS*XEXB?5?q1s-3d4xvE0tHQOCv=HX7QfYonfxOKe<f<JaA#uyKKn3k9D~
zewVUObMgI6&N%gLTx4U$?otkDbQjyW_U1~0KRd<ORH-OvU{e=|%Wd$y_@XXFj8c~e
z!8We6;~sj09oumg+ql|B6B{Kq8r!kO0u2ui=aj2#5S(76Tw|lDjf9QsY&5D;uC-&`
zS7})#FWu0~0qS}iNgG>_6z31ZNK;kHjW(LuD7E9$4KCMz=~Tvz5^=eWn{0GvmTaVK
z+{~QVxZB1pHd@$dWuvu?&izs?ZQO3hlgq8*y-g@59V)5ru;bO;oi@5wDMPB1=~YS_
zn<nK-JEqpE<k>NayKJ<z<9YMIvLwAUqG)e}!z>5njy5{k=w{<yCTL^K<no183ZK%&
z#>d+#?y*6Y8bMdKv~NqfKdP|t@{91>l_)kU?Re=zyZRMX%6)ds9J!)`w5N?;Hb$`O
zZQO68w~hWb9<{*@Zy!6}WIbr(0UNx%PD`Htv;wm65X-hodDzAye3vPSe&Xd@llgO%
zLR$Ps@c<i-*%)l2<`QL~jpaL%gKYd0BngJtc-+P?8&BF8$_|oME?yG%%_juY%Tqai
zA!Il!<)xy<<LmOQmJMl?jnOuy+L*={w=tHj{iD*!HpbZ)Z)1XuiLB*LMLeh-o=ZN`
zsfd%*Q+&`r%_rHhsn1PIl&(vZ0ZWuA5|LkiVDzW?UN)Y!F=dHD4JvoO)1`ULV4WT)
z<^<GsO^QLx+Y2l`8!u(>at1RAY<%Egi-VV0cQ%GQ7~x=+jaS(V95i(BnvK_Od~4%7
z8*kWn)5ZoH8*R+CF^6C5v0>VnYh#{GMJN`qBo7qRu!kR)e#?$OG2P#+;Cb0X8)+LV
zYu^TE9NNJywqt`>PGQuz@;02tZneKyxBt_@E?S~kHf$SN8##7|{t1T_Z6gpd*M=v6
zQI;)<FIj{(B1y2$)C9d58@%;Hw_}M?#TLj~v$2BRZA60CT7OxhEET+r6*sAziinjq
zR!PfT%kD5DvD(HO0mMA@BV`WP@lF3MT`!b?kKSbCZ5yB1_|(QbHa6S%knP9DyEfjl
zv4xdx<9#WF`oj|+aL8J!ut4azw%^8q%f=3Q%JhK=K7wgpxl|#@4o@(jAF<!fz;4Os
zE}@LoVyW`6lrX3J&un~dV~?c&g^j(fD!*i(eXpFQ-DRml@RfMk-M(hy+*|q$yF;52
zR!z5#W#8NQ!A5llH5~lNxHb;k_)DJhlZ^u$(rx@~;};gPjo)nSV>gu04tJIP&Vk~t
zvi?gIQs$GIb3Trk-JG~y-FgRY{3*FQB$TEXeC5CGc!_eH9mmEIHe(r5j!6?`miRSq
zCiSn#aExkM77L%?#I%|d+ldj>ba-10wH%z~pvb{VPF$O(IXKzDDT28?<GZ(4lczdy
z(_-kjT}ggI{B#FrIPtf{>CP0u1Zz7u+rfnn>O1j>bdG~M4*!&ma~-_1JGrH8*?IC@
z4zTqcfF0rWiu0ZLvM}G2m=C%@n5;6s^+n98gNaL(%N<<e;8F)io=jZkfR{e9N1F3-
z4V?INgMb+$XUkv7d=48qxYI!^=HEfFgAxag9h5pKb8wY|s~ueLAnBlqgKHcl9MDFW
zce-aURhl}u)`@TU@;WUW2Ela_+Wo}1tZr~{BlGXzg_`k<%uq&bMrN(*^fq@;?$CC+
z;#LPYIrw=(g2!;T2uL}&Spcob$ZsLIrBHg8ELBKvbK(!k+|EH`sd9(V4K>SKJ7~j9
z9<BDIgS#B6{ZZ*aanQ~|dk6P8=qibHkUZb*fcfO2uA_ra!td;$iv!wYGkert67U*t
zHwS+=ta-143Mc*!4{tltF_i9?+V$>ZB23M}qYipF=;@%Z!-IqPb$U7IUC8tOthJiu
zEP*}+&I1k}6ioYP3iDkacF<2=iX}-eg&%Q1eJsm%fP;Y!hB$a!1O_=6EP!H<<;!79
zDKo>24RvDk@?j3D&#!pG!B0ySIwnPLwPgxxjZsEA7)3FDaMi(R2V)#8Wb<<{*1<Rj
zZ#tOmV7!9~4rVxbmMzM``OB244yHMH%E2VIfo1W=f3kxqPJCX&6Q%ac6kaHMn&mty
z(RZ0L-NB~TCC>=uspa;&O8S;mKIh<h2QP7uXOobi7x{t?cJC{t@Pm`%M#AZjTL7+_
zUUBd$hkYkrLCs=EyEmTwUw7guj|-|dI6KJ7iiR9xmnn0k>%H*ijSC#iW#W5^=dp{i
z0kkdI_6dJ6dE<OC-@K7eVSgl8%t8|my{ZGvLC!&y6Cc0otSR<f2L>CV+^97jSOv@!
zTnC<mjDxHLpV?TZgpw3NAYM-E{xT(!?oTjgU#xq1xV&<3<H{utmO5DDV6B5?4mK=P
zR>%tyEEjKba`{RJt0ci^T2-zVFk^o)^SsW%dIxWFWT2!ITR1bfn*?kW$`6u|Lq6Y{
zg|^wjyAu7YWeTJJy)0H&zAyED=dtQr9c<&M<>C|<+a2uSu;#{1;zI{J9UKs`j~wh0
z!05XjeC*&82cJ5z!nyYH_}cHdAX)EN_0Jr9=iqw>pR?2LFaAR4mqNc1x<}~OLcbCE
ztxyWH1ODK|2U5g8bJ$s~{3vv<(4T}d^cSfb%KYl^2rPaI-S1=;@P59F{Bz+CdF6u+
z{&aB2!C{Vp4vsppiu*4K`dgB^@b7ATDXPVead?zktLB20^$(l(f#QE14Ck@_GUWs}
zZcB7*qSf8Fu4@RTOidR*jVvdp$c?7}x|7^^)j@Eoi_=`3?&1s=7k7$3VMOMON2;^y
zo$2B%7qwl~l32_G``y_t&T(;Gh&mz8C2(<#kETBAxTx#mLJ##l)N=tBvt7(_alVTS
zTy$`8H$z?2cX6$Ygo}&#I2TvB|CP@rF0OESJcmnNG!SN4k0O@aWr8mkdh_!5u2Uny
z#X_%iv0TK+FA+{-p`Dj2R|_D&iGXW_HWf;p=XEZwcX6wW+gv1tS>~d-iyK_rDBf8;
zikb;170T(DNzs*y_ZAm72}rp-F$C8t4C3_}(iXxeXvsI467z3&afdM5y0}w7>w-)x
z0eP`Dd8SY<Y}yH6Hrl($=b@vEPA*2f7~`U|i!Lr6bkWzvJubSs=;@-Di*7FNb<sVa
z)c)cM7fJzF3Q(sdPTgO8pBvA%oP~P`ll!SJy2qt`zl%P?>0OBRV)YXq5X>J>P~agK
z54#xR;&B)K*o0gRlF<Gx9u+Xq1%FpDb607zL5Tsv8FI8aBX*SZ9}~`CrXWo6hq`#u
z#c+0K7sDi!Pvp{(K_mE%$E%GJCcPsC@Dz;r&hABHU5s<_vM|THnBd}B7tgtv=;A3C
z(_B0)L6h9rnqrFJ$!@I1q0RhMVRB2wq@Ix=f*As)yBxSG=%wZ-riIX#*tuN1$i{hI
zJ@RJ?pZYH1yzndRYc5`Oc@P{&eAC72g}84B$X8-MSsszhburJyuP%Ob@s^AEF5Ypm
z*~J1E3tePfWL+$BvDk&>!j=@$E(`&x3r&FTf-awjz02Zko8s*!zjtv22QFL}9!HFV
zWFP5Aw9*fS6A8^n&$*~_vC7427fW0$b+N+5N)cGbzE((K&#`Kuv~51|yuYgD=^7Vn
zU2Jf%QN-5q?e-T_a=m!Du%y@~!41peJijfN$DqXTx_HmUS1$Irc;CebF20b^EiSgY
z*zMwD@osam!^MZ31;oo$4dd<<{E>@Y99T{)C&#Q2Q##(u=8EeR7oUj?IiI@mDuv*4
z;c&4*{H5Uf6XVprcJYmiy~6oc==Vau6H0+q6B9oa@Q(s`xcQTSpI!VSApgx43jgk6
zpUWeA{44zZE)Kf*Q}6+yf4HdptR^K7iT8-m!$NsN{TJIaHv-}vxm-Ew;+Tu$;uwX1
z^BMvFr(4ZKZ4YOAsP3VLhm$>=;-RL86Fn4p|FsZjA^)Bbck`2kGrcf!p6cOr4`+Bd
zP59h9Q|3$$wZwat$DcC9vFP&PhDTE8csN%=`A=W+&+|}M0Mo4F;n|sSQ>-VPb{pe|
zo-g<Uq09zDFY<7)hnGFP;^7hxmwIUDp}mI&9xn6H+(WsC%ROA-;VKVTOT>mAiuvbY
z!HtAoDU_=?CfHbTy`DuYM<r4t5=}f@<I!&6zjtpc;Ci9g3Qc&pt`N#~NYcX%UVL|n
zNez`8Hj~g&p=AY0u9t2S+|t9X9#VpD7J5rTriB-4JebaH!fEB9wTIgap?7$=Q!rPL
zl%Z?mp>00Y1HV6(pZLfheWZE^4|jWb+`~{09X(oK-~kU0dg$z-i-#T_dV09WLsyA@
zpNDP&?)6Y1fXj?Z0i_#@6qaYdRQ`$71rc=ju=lzDdP*-5>n-$tq4}ix2>zveQC|U%
zc<Arpp@P7}0{VFf*2nMrsD}Z<dCbE=0fRg+E+5AXP#{kSdl(|2%+HkN$`c-jd6?i~
zqA;KIFj4^JhkF<yI3ID8htc94<6&GuW-JTm!}#grg>%O5rNmEpnB?IZ57UJ?*~8R=
z{1gF9aGHRpy;vK@D0_v@@bJ8c7ubf`><d9OqN4ygFM60MvHBm32fdf%?Fguzo#o+G
zmZyiGJiO-Nbq||7yzSu)4{v%fJeVG4dzj;4zJ~=K<`(kvmWO!-{Kw3=lpd0fxzIz}
zgDOFbgf8~ta~}$51$kWnHSKd`NVh!L9+rAo=E3pcddPUlij2p1VKoWnC$N}E=phoX
zHX`;ekrW7W9+n8dN+|hx0p@MFhZP=Hc~~t$$7dF;6u?W$jJU?bS`X_zZ1BLu$)Q^(
zfF@YP8$HY_j3l&ec*nzL54$~l?BQJx?}_Ag5AS=t(iKPFCUlF3tpdnl$^35-k+Z|Y
zhaPr{z(+!NvHIk33}wzg5$0DO_IUWz!)G2o7tWVLDf5K@HsE~Tz83Gd9=`MNjo|#d
zd@uM1p^Qc0AEf|!35DLD*%CP3`Z&?YuO5CAv41`M?qQ#YLmm!$*ze(h@DF<Uqma(9
zgVlIw!W8~2aOnNZ!`~i`3#X$rh9e%1dN@{)8Tm<)`gz8p`-lC7_eMDj`2Ur8H6PUr
zxP}1QkQezl$;SmgF7$D-k5hb{?c*FDr}{X}$5|qFx{ot_oLPv=Og?fbe!E%)4vo6$
ztu0=Lo?GD86>y%=I(~deM6r6}g^%+EoU}eRVxh{bzIYq@XyoG}9~b+$#K)z=yj*Al
zpZ_<B-zEPz0-D5MAsnt+nZlJmihW!yoD!jpg)$<A>8=vMPty=L@#6zEf@^&wd^8JC
z8sIt~*ZbJctolg$xWUI1A5(oAXrY;pUOw*kQR<`2M|&R~d^Gn_E@`&%ag&dfkCr}e
z_2aKO-Rz@<1l=N(96sx~wDa49bBB*ReT;k{b-Q?ZcZ@1!nu5?#vbB#k<Vz5}?fm!@
zzO9d)(jV*gC_2!+=x(3pVezYV_tD8mXTg;|y7;(9a5te{h4P{bFMLt>ULO^HyiLCB
zj!K?|kwd45%zb>y?UmH0k<-IRPhplfi67D1M;{+g`WWux0Ur<g7~o@|kG?)0^6`jB
z79ETK9{4bGzAo8MIDBiS#uWOC_fa2@jgQ}sZjg^5J{~7Wg2)*xfC58(?0P89*b_eX
zEmv4d!`MEhSk71x54j_JjPWs6<VX4#C1A8rUUQ%TpE%CPQ^FbVV}gLAGB{5Z%w#Dx
zN$_NO3cb^OJndt-j}<<i@iCn(#7El43?I+>c+JP_KA!XOypNeaUXnt7K~i{8C_jHe
z$8_jk_VJ33S;D_Yx@u!tt-b1lmK79u!^fLG7K*@ZA9H-n^YNB==lW>yQas@EWS?}t
zj|D!+B&O9CDIHB9NEi9wsTqOlL-XPJ@O|ha=?FD^m_97Q6tnpVDMsRE?^L)2K21#m
zAE8f^IaCQV@?%4ktdER%c{s%=bj;Ec1_^VS(7ZrCDQ0`6FxUB5?_-sZ)jrk;XRRMw
zNil`RGUHQzgO80q-t+Okk4-+_7O{7Q@_i}!j?m5QaT5~!WCuAcgb##Cyv2|0Kq$G@
z$2K<pouw>Wev*#u?L&4Gj$i>!3-A%!l8;|F{QB4}aX<6%xqy$^PX&C+=Cm(<yLO`!
zU-<aa$G1MdW7$gR*FyIQrOf@^i@qsf-c|p;fcN_NLGX`4^NUZ)|K#K6f(#GNe)I9W
zk7GWLv(@?7FF}We9`JFnAo&LiM6?G?;ZGljgwO3iy?^=mTf9ev9_5Jrcib502>uaf
zwE)$FxD5aGae@Hia~jpGA^5}qMFDCS_$^(W6yRj>ayx&D047d(#^QIzP7iQKfJ*{g
z8sN+TwF1-?nX`nR6X4tcwFSp{5Wt=0c|rU?N^<g>;yS|T4@T<+fZ+23)DLix;0uIa
zDD*6urn#ZMSiIaCb3@%Az-0lN2DmoB<pHh;P$HpBzoCFD12igdc&1P+n7S+qG!Af;
zc&`q?Z&Ec8Ou(RPghN1=5Pp)gfPm|TlAqtn-XPu^h0<`bEI{)BnE=@U<pFLAFgn1P
z0I2{s2e>Cd*8sN!Xc3^JL}?k|R)PR+1KbwSUKDo*XeB`$-|i5=A)1eCEx3(PdKt>0
zo{qSkFxv|yzk`6gh3+5x-$>pmKxg4lzKa0H?H1tP0Q~|y5}+bLWq>{b9tfZWxG%u{
zBGx^ijcD9vdKF?3_YCmi?Ue*{B`cKP5|p129u&-MJj4=cg1+L-kFgI6e$+?*0FMS3
z9?+B&0|E>T@OXfs0R{!}cs@A55RrT=0Oux7aC{0^-Hb@^gai>h8DN-TTC&kg#}S)!
zq%cPb%`ei99IQ4rz_<W!2ACaSe1Hi7rZe#%USUoQFe$*~08dGj{9HUm@YDd)g81Ss
z4Gf+ZPQJjO5v=$8uWX+U@N$4x0z4Psc?o(Uz>5K93T9C-S8aLkJBX)Oz98qaSpi-R
z@VW@RCbX-FQ8@onZv<erIb+TVFgJi1zzQ%=Bo_u)B;c(8^93vr+M`#TpT&aJ09t^w
zU^1DwF1X%HMFv}1uh`r)-@5Dojsyh(TmfDoR=y~F$q5so3neHDz^lac<^og&_$9!v
z0hR<<8sPl^9|TwyV7W+c3a~=JnnIc@1*{6NTEKInfms`1op{#=*dQRUZ`mlgrA+Q`
z3w|fSW&!UCZ7Q?pdu*a2vn9aR0AB?7GQc(w*ujPxV7p*uIInNn$@~Y{%~?SBJh@{~
zK0gE>2lzzzpB7?$7T|Ni{Ne-!z7qUxfbRtC3GlUmZ-i3eLz(Xd{}^DefFD>F@}@tD
z_h+H`ccd^Q{ubc(fCoVMH^9CC`vd$L;E;$N2=IphO6HY62ZLCvLoeN72|5<wuK<4w
zJ`&()L7sO2^HC^yJV5?RAn^$yP7ZNOh-x9Kho}*vW*8?}6yihy{}<~6ui_-(FqF4E
zP7QHdh}yzAU1+UB=otde3}L@tL1DVHgfo1Fa(0Mw1m`nwu3)}G-4OLc)QwOt0z#ZG
z{I5e?5aPlRgF-wOqJD^rLZm|69O7aTxIDxaAubX8R`;SyLo^V~CtfCi=41^+GzyUn
zaYKkJLllQ-65^T=B_eQjLB6qotAs||W90@DY+49Sgt%64e&2dsi0eaeTb+M9f*U2Y
zxzJ`IN<-u~;}j?pW_~kRF8HSKzkTj4AzFm!9->ExmJ-xHM28T!hPW-n?IEqZ(K<w%
z5O+!_Q)|WdJswY*wPcitGZ11~m!h^J5E}w<77)zM)ZGF)hv*Wbqu@?LxmC<>B<~4v
zZ-|NzT|;z}bQqnV<s_{XNkwQrSu*bv@A5H;o*{Y(?jPd*5WU0L^yuLbeS}HL2L(JJ
zw2iE9`wD)j!09L85uudlUEoIxctD7O{}Vbm#E=kgg_s}W@eo5p%n0#ph$lh}3u&W{
zaUq@zF+9YmLJA`Uj1-!$2-49Z#uPaJS3BcFJQZS+@F#?rD1bY3W@&PWDIunXc)Ada
z%&CHD^iKSY;OQYR3dQny=5ryQ4>4PUUI=OBj#mX!U}lI{1ivKo<uLxPIGZSgW))=m
zQ418}b@9F-G_U`EQ!p=g&nZaG6);aIl^Y8}EDZ5Zh|M7uv2li28Ddq4bO<$s8^Q~r
zh0xh6C5jQk3}F>g%WM9*R_79$`Ei8L1v7Upeu#ke8)7NjZHOpDCPY>QxO2(tRTw1~
zqKY!S=^!I8IkeIwT^3@w2<P`KD+KeqTMVLG9rBNCSTD>qLe~n-Z(BA9ep~3q5St1?
zOgX;=csIm*!rT?&{SY67*eTvEA+`$GE|kLC!g!a&C+6vn5FbhqIr+`YM+M2<AwCZA
zNr+EFd>P^^;eQt5^AKNzarxwnh%~>o*&_nnurR5-evjar5Z{LQF2wgCe&Em=p+<xs
zL+lN4B*f7WKZW=?#6GqGiT;bwUs+#LdcTGEosFC-DLI*?*6~1yKSCT1@mGk0BK)UN
zKI`q)Wu%A1yIP|EMHA3MC_jnG&|~5~A;NJ1{}e+1Wvz)owJ3fZCHbtH5l)O^d{%^_
z2qy_XL+HsuPZxShgi|A&7R4rl6y}F{NxKzB#WO{wRs{Z5hWy$Q&W>=7FwYZ8=D7m+
z#5w|)Z88zz{0Q$wct64g5iVrLB0LwNeuRr6bdAt0!o?9TiO?cK%Ltc7Xb|DL2-ior
zOwwr>p^<>gBU~YX_iC9k-IWopig0y=;)s_xz)zO_+Oo27gpXDzePln?MC6-BxK_Y5
zLMfIIz!WG?FF{f`%_5XW*t@Uh4dT5qifxh^S|;99gqtHYk5De&n<C_0lc{lu-BJ+F
zC(Z-+TSe@y2yG+W7U6dB-XZi(p?pxQ2(2Tu5%09o|LNiR9X2M|PMCK`XfL3HPzp1s
zqtH$fIt%C`^qwfTA7<!YX*TypsE9C1f+`~@5grvxf%_udAECE+yGQ5|p=X3%;-%FA
zYmhQD%pmO(;h_i*vuq<gC<1+j^3O!P3qt|Ae!_V~Xg+TL2rPfL_5l$FMi>;~u?SB@
z7#3l0gdq`zityt?nF3D-s65Z7M!Se7BMg_I5fT2sOo)-fq^$@gNAqPPjEyiZ!qf=U
zB8-nPA;Kh)nJDxrq4_q$jXYybjxdGqUeG`Dpyz3knIZHUq0@zO^G<o%?T|hn;e`mR
zh5urNnGqI8NJn@n!pjlfj4(UGD-!yu&{;wmk>^mPuZj2d2yY1B$rPD$3NrHr%oRE>
z!dn7pJxiGdf)@&<caZ>IlUE~X5&Q^&aCD(|#2Y|y+n_TeSOv_aoC0<Qcu{=2ieh1e
zNI1(QWC}7>5wZoG;|o3=x5*_DmPTO2eEQ2GbetaZR|v=NUbIrcDxoa2H4)YdUMKWz
zq3a`Th<N`fPGl1Y0jUKZBhvehFbOsbc$cMmPCW{I5MfJ%D>Eq0U~7bJ9HTNgErab5
zc0~9q!ru`-jIfiVF}p20euP~SzKXCX!fr|GlL(&*_*f`y2|g3RXMGW&(#7Xd{1q&E
z>As9W(+GmEBYY!b-wXX#=yyUXPs0OBQtXE)wn8WPDZ<YY{)li;_`gK>J;J^Szef0t
zW0Y7;bn6p0hW#Qya6tI{rdEEI`Ln=3%n`Wy35N=?m|+SZiExyYP6jnI@pF$ws3zdJ
z#QG<~zXDFkfQ|xm{6=5(0?so}6z@qH6bWcl*iD=)-cy89`*C^(XJl}Zc+bqBmVi1L
zoF(8Kp|yqbDQ8naPA-Vg73O(D`QOaC8PpRDp%)50KZ6SdP`;roP3vdka}a)-{^ATS
zk)TU6xI#b!p_gTFxq$rPNF5&y#oI_I)47Z5{|p*uP?>=u%&Rge&7drUt21bl!8O9X
zHiLwKrkPkJ9!K0?d|d{~3~tEadI_Q)U^Mmr88pj)TKBxng)bFRM=>*1**t@Cie=C?
zgPTOYMFuT1NM&$y2Db<&zx!rHE~ReG;5K2l%HZ}4?ht&ZP=2b5GE@c75wy;rjqtfQ
zr!wK#3Z<QRJ7>@(gZ3G85HA%kcMIs4i8U%bMCg=>PYRgAJsEVBpnEgOYgEYWCLEg9
zQ~ywrL4M<ZUk2SX7?Z)+40>eHGlM}HUd=<V4DQdMZw3!Ztlk+sD4<UU4={0lo<d5D
z3Tgr_{~peuUj_p*7${<oWYC|F&iuEIqD)@-oY#kQot9sa3>IOAKAFLg3?3KnP@zv`
zkS)~9Fjj%+x`$^lB14PH|DHZ71DbU)`sf0O3ifdsjL%?(a3*9hF@vcYOv~UY;Y=<_
zP7**ZI-^e!%<6u+5c*8!KRx_(;pA7glzcXW=Q4OcgBLP*QG#ZQWPVMX*KhM3U&+wC
z6Wy1h$5OnS!D}qoCFr#TuV?TETX+=?R^iPIW@j+H3NxxOCxf{eoSnltIn2x8tqgw2
z;MWZ1XRsiHTn1J0tc4jE8JL0>30<5)T7W846RHbkZfR&iYKhkuYG>dGaD{q8r^|{l
z5F83+tcZ0dI4hLeBr=y|urz}YGT4&AGU2byV4Z;F8LSYnQYeL2Ww5${*JQwt50FW>
zUYKuZutC5^p_>YlRMEUsz?(C8w}9Wv;C;cgY-b`{GuW2FH^SMT!Hx_*7yMx+zUuOE
zA=b_eJ}Tf{8SF0LQ@=`nBKT9GpB4Cd1B@>+_)<7uWw0lMuM45wWdY2l`)vl_W$?Z5
ze-!#dL8gJUsJ$8dRN(xa0f!Oh`L_&yX9LLM%`EmYpB#>|xF(AOY!Vrqn#E~Z9L(TP
ziFi^LhcY;vLG^4L_pc28&fs4OIwJH~A^oEQjP6Cp3!H!0w2s6o?h_<#HKE&O1gjyK
zK{W-Om_?BQ-k2csWWlEhr9m1wbf;%=UKVw-I79enW>G7Pv$Ck2#W}*+8O4VMXJ^65
zi`G{4Rx0NTpY~Ve*A;w078hnwPcVcs=zIY*SgN1JMOie=qEQwX3-i(}8VI;VXuc(1
zCisdhE*HSBDLx?<8f+L>3WsT4l|^wDCE{%?l*UE;NezRpF39|NxLVUJuFc}%Ec#`U
z$l|&z+Gf!%i|eyUW^q$N@`fzR3iw6=&9W#JzzcCqldgFd<pmiArLwp=i(7=#GK*WY
zXpzM!vi9r3m46nuXVEH))*^667IzAmCaszuKV*V!gu`Dc-IYb-mGSsS$8AOXEIMTI
zfP~(iMaL|<XL)}UowDdG%nG4hvgn#cw=C`vFXP@JiSWNC_ZB$Z&{bxkh?k3e%G{R)
zzmi1IGmBnX^pT+Zh4%g*F$ypuDT5vqK-^crLqe(9euOO{i)rG0ROsVb49#Ld76ZjQ
zD2u@Y9uvwG${tJ&5u8_EJ(0z*EXHOrE{i9HKO&2f0)}Vf`-Y4{H!6!U>^?G0kIu%Q
zTp*JIq~qz$Vv=CabQ809N-%>cf48i5CTB54n4BU9^Q=D`-)-lW_NTLWCX4A=%*bM<
z2ylXXHj5VoKbOVx0yx@phT@sUi{fR<yg~m`7B6S<N*1$(`I^vIg>tU!%x`)~&R-W!
z&y~vTEaqgfIg59NGdGKL7OLQRLf^__zJLW;EX-n&;Kf2|v&z(X#73uOp=S|f5oTdX
zD1+QAOu<$bb`}oXc88Mukrq`?c_U9R3twa&4gbqqltnI!sw^^vbg}|oyb?>YSenI}
zEY@bROqk2FSdqotb7BkFl?C}#Y?;&IZ^^P_t`=s#1Fp+rLlzs^(KZ&X&;B=_ZxVrb
z3US{SkRRlU-=kO--)Hed79V7>C5t^GuvO^CLbqkHUBHekb_rl+KFnfg79VBfpR&=*
z+pMI!3!&tHlEtT4e3r%M!u*mwv7q1hLO3^Z?;wD?equ)dTD;$6@vQ)Iz7s%`xgWFG
zo5ep_{F}v3!u&1En~eBb@Gn{X$_^_dFc+?D<omMNpT&_vItMuNGpkwrA)NetaVU$!
z(yIT?Gqd<B8&4(tt|K4KX3WJQ!BGi4#&Lj)I>BtlC*)8qhck0=wyWn*BZpH3*A#kE
z4kzbuVh%+)a0tySyST(UMMC)j3dW)U>1jew&*2OKZ18y%SuOFNC6r>d1<=&<+#Jr!
zA<QAlp-v8UbGR~xVhOF6!^JsVA{au?&*1_A7YeN}^dh18rPQT@XFZa7Y-#+;4RW|l
zIF}2(LTE#wjfC<JAjL{@Xq>|XIXsxdRXJRp!>u{omP3;qt`V`Dg*MIMMgi9fP2_N$
zfa`@Oh4O^`1_AtFJ5z2ZxHN~d9Gd4)o<mAFv~OqVO@awJ>?-B)ciwwT4lRV=QfPjk
zdwULd<j^^XE;-zpk5!1<N<ixz+7vj{8??=#T@LMq(@AKD9PSp-ku@ugGoCN@7w7ed
z1o!07T?D%3&`rR-IaCT@XoUcd)rx@ogys!wdgRbkyuEVhEr9a(3mBF`p8|)?pl=Qj
z<?vh%&*$)P4*hbNn8Q;d@JJ3Lau}II{~R6_&VU?-2^g5epd22{VX%1fmJCDKPDUh#
z3g>a53wsoi^Mvp(e7^3J!emZ{=Wu@acqKVXIOBzm&S6XrV_BG@Mi`d^H{+C{<1K>;
zg}Agpm{h=11x(Iiih%s6I4y^#b9hELGlWhT%5*rCJ^MfSg&bbwT0MuiggG;Z*95$j
z!^=6mB6yb2{~J|aWtpt5U{bH=@P-7vDRfQ_vjs4S`YzJB;-$KEz5qk$f*cm+uqcPc
zIcUO33sr?O7KfMora1mIM2>&Ijr)R`gCzpCP(KGJ2RDcO#?2FE`OZ>G27>c@u1pTu
z9KL5U=8(&wDu*pOY|UXw4ogMsgB+ISusny2;$`#|0@miRQot&qtA(x+n%7;d6TDvN
z2BFi%=6RFgw}rlw!)5{R3Vly#zGmMSoL{W+R}R~9*q)0O>9-uOwnKtG%i(hYALg(#
zhmQpB%Hd-HyM;2hdDZAAIeaRdf%D^fq5DF-U+3_p04gxQ60j%t-;VVg@lx_z0pBqL
zGOGWW!(I+JRp?uVpK|z_BTp5suEH-l{K{=z70#`~Z#n$VQMU?3RoIuq{u~bH@K+88
za{SvxY)5fO(mW`XoAf^g&?=9Q;|8Asf9G%{hvPZ?lZ!v`aWscxB0~Y{Oi0-P@@I(u
z3jc&ERI9=tqZ8Guz$F$1YE;Dytfo-%iBGD+$>Keu3a3=z)GC}NULKP2*o%8ZDsSmd
z7bgE1cV-o8RpBi0^4kcttNzp7oh=;R7H690RiRE5F0R5QRj4a`RN?$8)DwK2%(E8=
zuGzEbLIH11OVk&@=obl~!ThCFXi&wkG~i0%TvmlE1YBMf8xwLiq|HggD%?U7L9v?S
zI<2@0B_hKud0ywxSiC%zYEp%3{vS`@0WC%GeEkAE0To2zl?)2(D&TKmc|Le9s34-`
z{1^mD0xB5;83aL4q6i`eL^0>MGrK!GJ8{WblAs__L4tsyfZv_s|Gsnj)VW<#ovN#9
zdS|D5VrUz~gTlExhGsEDV)$PSN(@bfdHuB|_JM1v<}u{Q5RIW#4EM;@7BRFGP!J1_
znqMYAoC{;PSD5^Rj|G|dN_K1E+#kaOG2ADZd@eirM5v8quRj{%<C=CcJQPFU7}OZr
z$MA3ry<_M@nHW06&?SbhF?5W9TTwa}*V8E$Z2xD4*S8K4bc>;T3_V!9_&w*IBHSwm
zeinoRJba0isVElwOuLS`O{QNAkH#=ag!>D9Oy~fi^sMX8@CU{)@6KRm2gfjktrtHn
z<Yt*+F$|AkmdKBYaXT%h3Vt$%r($>}hG%0K8N;X;#>X%rhS74BRgL8&7Gu7mGfwc?
z;{G#SJS`kPVx{nN#gdZ*OpFE3ub3v&#bg;gMflGd>NEk<W0)aeW(>~@;OG3Vk9u`}
zi`l|?LFgQzb2*_Lqu}|m;8ob`D-aeTSU@9>A;p2muqcMbF|3W@{TP<Sur!91RB{Zj
z#IP)e6*0UP!>chYkKur!E|A2RjXyHfv=JN}(QbPI&(7lOi>qRIBZjwPcsqvr{iAQj
zg5NdQ|2*ZvN2_CaCkDP#`fdzss6aWjuY5`+xMZmOMDKg_h2<&*K8WGN7`~0+J6h><
z<)aurkKqf!AII=X44=k=SCaUFCtm$b`2C`Nzl`Cl7`}-GXODbMFkk&&O64oTj59N@
z<XnFt`TH1th#?unyVHUL{bDg_G3fN``}*?u$~e7}=l?LvJ6gx^>JbW0iR5P;I;B)2
zhHgFb_(ozn1}lc`G3<!Jj=_n+k0BF-ORMV`emtdmvEYjdJP=@dN@bSY9@oXNIfgAU
ztdC&>V`-bd8)Mi+A6%8sXtOe<@?Zzz+1m@ZvOkAH{O-dx0mNUY)SWRNMS|aA_&tUn
zW7r+Tkr<A~uqTGSG5j3EFEQ+kVLxXl7CdL>AxnGyDENsZmE%}R`H`%HG^(iz!66Br
zjFZ2{a5xrhwP0eF^GHg49*f}w?O~$AwbSuf@C%fu-<*v7-`6J-om#x{NQ+Z3oMFI^
z;WTIbkrsal<z8CibAk!Z)6M4>67W-rq!(kjL{rqzLBn4${LQ)6P+!C482(|1)^MYS
zK~F^gWq8++qu~nOA%<%){1?Ogl|_6<kp{LorDkbCmWjvq=4w281<SR_4FsLTRAxyH
zM^kE^Py!y}QAz|TQ(6nYrS<ubk()H!tf9Jw8XC%KD5s%<hKd?)(NJCsjE7&p<*}>h
zo)6Btzf}v)hNZDp(ok7LRSnQkMGL0s!m#KyHsJ>6$kDlO(}H6It7+gFjLcG#>~Kvj
z`0CTJ-I2NiYH6sg1*c>%)zQ#tP?UgI>uI=M1N%=*+CW1?4b3&=Yv8A!LmC=sXsjVD
zS#s{waF<~2o8#8+CK?Lfi|~E0rW)?n@IMWT7Mv|Vs(uN+3`5Xos=}+yG(@!EqzEP+
z^3Z)(!95zH93YEp!8cM{XlSXSkUi1Vue#;kE1;^W(z$-{qpc}3Gul?egBtGBa6h|e
zst;(v@vU7<wT)bz^+^#ooDMhDb{g7ic-xLXq=8xPyW~+t%s#APt{r_>k95?67}!fg
zZ|Xq{o_KWD&_xSkAobZ*LpKfGHT0mm<P>_o3Exx0^JZ{*7!@0w|F5A)LthQ5RK<d<
z@OlXCr=h<VgosDw62IbiJx=n?+krGQ4GT3a(lA)V5Dil`Ow%w_!{ZtzayS}>vCkSN
zum%kyG(4eUq=r%K`6T5@EjZMa-u;wh^D+@KM^kD1p09?n0=N}-oQClnTIH(5Ocn~6
z2pas|@)-@!ae^)f4>O<D@TM6&4eR}POL8VlZ>MPZ)>L_naN8}x=>g@Y7ERYML&Hn7
ziiyfbQ=O?{mWJ8XhR6re<L$@`g6C?%Yvgn2K64ZvQNk}yzNldyT}CW+*-OfxtlZ<K
z%9#AJ=!X?95DRA?7He3d;iQJ&G%V$8vWNy<!!ix8YIsM(n!uH?Lc{ACR%t<q;9R^$
zSDGH2(Y;cGHLwL=ZhwP%c(CtVoPCZ?!+)k)Ev@pDQ3~g$gXvo>ooSa=-_`J*hR-y7
zu3;@Z`KkJ$hL1G7&;Bn^KcM-U5e{c?TK!nVCmKH0f~_cwSJTqLA=@j`Dm{+B@xP$P
z((2b5zR~a{CrGkvh_Q=&f^W6pl<)7g;6In|gz|RqgNB$Eys1kEp(O8OaSaI#yEOc$
zA*sR8uu;P%4Ji$#22X>pA<bcm>Rc^Yui6@TbfhDg%QJ>bW@&gE(!r5#84c@Xuxx^X
zWxa+CbWA<MZZL5yn>B3Fuw6rzrPjMzf(3c(*j5eOq={o`wf3Fr4q6&dhog_Q>dQoT
z*sWoYh65T7YS>GiuytvLCnZuX`{_HM0+z}wKW<9}{;c5_hC~g=G#rwef2DbkQVt7N
ztf0e3gv040e`P9iTrQoEc*yJsE5a|R{;uJahB`Xx>Nu_84-I)b4==(Q4QDm{%UPp0
zh5DXjtkZCT9hNLPjHnkiT+;A21HR~LG(SC`RrN21{Ze60&_5D9c_cV*Qly<N^(w>l
z@MxBfY#rAG|0i^IGD3cijuDnhkgEshcM+7(gC9*L^`I0J-!LhqqqL5SIx6WXqX$Rg
z+^nOljvIB{qzB(qBZmjn9Lz+@>9|D?POG?84~{n^;9vaZ_2AqIf(mkpU-lutvW_Y`
zZqrds2fw(=Q*f*5fF2x$y8o3t&NxAJ9k>3QQ$t5h9aAm!hL?-@k<%OB4}QJY(otIv
z0Mpzf1@&~?uH$|k59qjqd>u`6+^wU5j)r=0oXDLzUbTXAq(eGlHxx1;gmv)5m|GSX
zF1oqoT{;@+Xsie4e|CQ*_&_1S|8yui?$J@8qp2Rm*yb!UAlghvgv0M2<riwMe*__4
z_`Jle&@FVd)N!wlsE$G%{Lk?VOJ%s`)G)ra5>9I!_vyj57fu;1f0GrQv&sct8y#(R
zbkxyF$AdbSR;=1y$HRJXgh)Fb4+%J81<SlgI13MlxlCec>YxYbkL}ON;##XSu^!w~
zd+EXEh^{)i>*%2eU#94$gCC?IlbCnLo~(a&0Shuq`Q9?XK0=Fx_SK;Z=y&~+ywyBF
z$7Ae#9QVgDP{$xWxHUA5W3Y}PI(F&!kyfPRaUE~#Sgm82j^R4y>Ufc6rsD}6&+2%N
zo!9Y{j?p?@7+JPDQpYG!NHse+)A*0q^Ka{sH<m>jlo+RDydHdtckrCT=C(S4lD7H`
z+ttz4R+)ITAQv<A&51M~9W!+v5*2)re6o&d?1QaNq4DV8$IAH~9Mbu=I$g&MUgB2?
zY?aZ2pPY-^>MR{wZS@7(Ds3j(m;3KHG;-z$pJ92Pj`?&A9ZPh)q~m2hh+2zuEYR^<
z``~OYt{8boUdYyMm9ILKaf0(Lm+E*$$4VWq>sUr36z5u@2Pft&7t1W)G0bDk-~TK0
znvTkYqug*r%2#*z0f<#P-q7*$-vw{#VD>GV*`L8)B)$RlOJU!4bga>NrYll9-qrD*
zjxTh4sbj5<_jP=v<707Eo@Dibjt@C0KL&@wwblb~{e<1P9Qs@j)-a#y_)JH?fh~4@
z6RGQ{{LU;-RjOE`@GIIIZApht%hB<zjvr`Uj`|%Z_bc^#sl2(Pa@E9t2UsUB#q{8W
z0fM-WgpT&-O7OuW-yj<1s2pQb#!g`BNbA_d(4oVk+b$^db!2qdIvjGoDRPDBi9EAB
zsIcO;0tTgZ^iUlebo?<ncxP;*9=vq7U`K?z;0b0rJiP&1b!;P_;q-EdCmQh>%$1HB
zez?UB8kml+oZtw=OKXCYorrf+S3Cem$6g)loFIDd)3Kjr<0uu!PdW~8Hg%lSagY<C
z<AjcrI)34F=s2PW_v<5$dYITzf2Bc6mY55|qdJapM*PS%M?Efp{?2Swmxos26vMub
z-*qs{L<j$)7@rYv*(@TTMs;4tpE~~0@vk1-wl3(nq~k9g7j-m$s6{hZ<wgwNQ2y3&
zSx3oT5uVZdM28k#++ZwMbX?Vu7Y7A+v%4n2hk)rn`dvI&5He*8$Pt<wM~Py7$vEsr
zfef9CUk)lAN0~UP$5A7W8{@bsj>>UViR0!t%EobPJotfGE{<E`80M<w<H7DcE-EUu
z>Px4q@<89`UA00SZ@Oy5c+hi#N|KGaDnGhiHO^zWg0FQWj?wbLsoUE1tro{06{>O|
zRBX*SYQ@ngj>hreW#ig$gyXm~F30H$tt+&i(A(p<LjaH2uOCN)V%$(bNGPY{t~j`!
z-|DKYpMdAt_R!EIj=SUdUp!bLbK>$Z6>txZ5)U>3QH|_Ovp6F0AnrAf2RDWMIQ}Z=
z%T+54=^l<c9;_`}#L+U2LJ^C`(JGF6<KT{F{<`O8F7}_rnOchg)%!pkZQ}e259Y_w
zHjW45=ov?^INHVWkW|<sj`kwlP3XhY^doT`an%ljJ6`9U3w09EIgTy@x)$>v;-Mn0
z+C3i7DxS)-o7myr)Ic0h#_?1fMRD{M;m6}p<LDR1(Y7rHu|EsdN8@-b9=r-j+&_*1
zG6lpO0zd9EFdlp%j?V!GOOYXQ3}v02!gqVY;cPt7Zdg2601W34JavTNCxnto&d4}M
z#qnGmhh9)d$1x@z+%%t!<DE&$*f=J{gDsrI<AgJw%Ace#`*a+GJaw9<J`)e_q{}_^
z3s3F>aZIAZ-;PX<V@@20J#|VP8$6Y1Y8=x9PZv5v=uDx{3!No&w$K-Zvebdy1#^pa
z_+lKFyx>>HOL4p$$2W0&8xMYPEr{czI6jVJAypB_;y9MX@t%}g8V^odUKYozGI6iO
z!L!-R`RejGR>bjk99+?{!q-IjEl%j4p_OsGUfkj;0dLS#1T=U!c+SSeWA;}|Sr&gs
zz?wMTE#_?cF|wB46vqc~e7Z04A?@n%X!?U9M=RnNb6ETn^5giLU0s!5`N`;KaeN*R
zLLxCYCVWBuq0pB?*Y_^*RUEG@4dN{e{#?-aJ2uomkLi2q62T8~e#tj5dyR$>M_l;x
zp93HA@Te=M1cSzN3g;pfhsjRvL76>B$6?XS)?wB<*l{>ixQUG>4~~OJ1*Wk4RLGAb
zLk%bKXA<k;SRco_1lA|8A&!l4G)<sc0-NI4%=nW)g#@<5v6c1{$M11$i(`8n2jloT
zjvX`-#`8E1#Cg&$evD&p9Q)$fO+zgap1n7;hvBP-(rj|{<zI4{eWSP1Cnw<Vr=ji*
zbqeKe|Eb`vehOvIpUM7(wi?H=IF8f6xDd(>GyN*ys|(r0M+6@gx~EL^1oi(`l=Ykx
z4*DvcOJ^PGrJRc6bR1XWxXM5m$C)_(q<PRKYlhFpaV`$FJ7G-Ty*c6Y<mYCMsTqE@
zk8+Vl7{_Jl*k6pdXG4v0vij%b{vF5dIpH?@3)s*<a`oRhp8Yv8t8^AQ*XZ~RK?#&f
z1VheBphN<n^x<y=Y|0JiB#<loJAJj`nd}2OVO}ap;i=KQ1Rm|9xP6q;36x2od;;fs
zD>qW}lcQx>q`PvHU}kR?z#hKRM=6&;mua{~1UmU@yR#v`RMm<JR7#*>0-*#dCr~AU
z+6mN2plSk0pn3u|68K}Fa$5q`613Y;**f7<BlDg(6C!@4R=8#Y{p*AW3a*s^IW231
zH=NC`n?U^pZW*AkY`p}A`|9mN??~Xg8>7rNsvd4Yn|T7ehA80#58}gJ2{cOJ*6QIt
zk14Z!mHJ_7oB-QWgf>aww|>gqLjT7iC3BfweI~@JA_+84U{V5;6Ua~Co&+9CU|<3T
z3AEs-6X=>i%LED&=#W6i1nx~BQaju}frk@_CeUx3(kg-THN&kFNcUIn6H0J@0uL19
zHUioTeNbpSp${dn08t9FLaKu4kpyl$9=VP`KASyykkToEWxm=u0e4@By6TodY@pIB
zf!^%ozEJlBKKIog3G@^`F|V>Seb_M>IB`(|H6K&@Ch*jyY&C(2bE0HEO64bT|2Snp
z0(E;tsi;AhvY8!}z~BT%Com>~AqfnXIU1S3;{w>R5eW>VZ`RElp1`jys|3BhC+~>_
z-pJ46)hF4CNaoZC&nXi$G%A5bk16~6D`OKFm%ww0zyZf6FoCu-49{@ls)wIWVD8y$
z3R9W&r{P)ADznqyh_e2PqLYUreWxTaHG!`Z_&R}U2~1C5aRN&cn32HD1m-0$KY`~t
zM|ruk*h&H~z8U>wQr-&*ytOehm)Qj72!6FlA!o+MNcj?B(w$1dj8##BmlAk6foq`>
z^q>U^{9G%D7z^2d=`-;YtD{S4s0pk|;9bs30<R{piepb;c>*gESed}xIa#l<o@!Cw
zS6L6;dHmMM>r%rG@!U6yYkQlW5qu>#>#u6z)q>xl@(1L-*IoIppYmR@<XU>!nQV4|
z>HP#gNZ_`kxgUyy)Av70;A6p`2>rB}|CxZ#g?^F1m&N?}nV_C;68M%5MaL|tGPsxW
zeF8twCKIq|NC{{OT+9vPjGn-{-y-n@5(2hH`d$u|NKy>ZR02i<$9pIz#p4(!%>*j`
z79p?`LF{r9U|=M0IFNyP1fGnDLB?lix+@u>^?E8B64;o)s3b-wu_=Mg351ilGl?w;
zY)zna5@nLumcVufEBaajI}+H*2}<CX1W!uAj|uEcV1EL;*~z@zz0%4ap%Xi{I8iEV
zuxS3L1WuL5LD3$Eb|8WA4FhYu9#Ib^aG3ESf!}G^j9q84E0)MQmcS9I=cv%xHNxBX
z793CDgk(<&t(j3vW`dY=O0s8!o)-Ft&{IDZ<n~a`3LcOb+>icD-~vN*5+#zjn82k3
zvXf|hW7WSzX4pR^DD$^qg3Af~BT@Zdp;v@n6?#o5&Fnt`S=3%`nB8WnoFuM~tKdvF
z?>Hrsh?dUEOX7wkN+q$hm%_W!j9(%vevc5}n8Zy<R7#?9GPrNvoWw0jlux2;5-j_C
zoq}@0AD<H*b7R$8lc<mk?vkq>=SN`*-k2S&n8aOYLj+ZlsG3BrBx)ytByLNhMiMoX
zIM7F_mPB;{g&Fl)kwVVbw?*$i8KG6&g(zL4P7-yKXpqF#-4TwWUJ`e(KO>dfWl;Zr
zT=k_AW@(lUlL&Dk@mr+bza>cTN}^E`k0jB7%1ok35-pP`Oyce&{+C2PhmeGl3~mIB
zIn9!2nhb6bP0wbNMv};ROldF_&6D`3zrtHdK@u&J_^g@A8`HyOqKEf|%GJp$cTe8E
z)MOG<OXRlW0EZ~8l6WAAHc9-rH`H1<_a$*ZXSQ0DQJu6`MrDg_rL6~reu(I<jS)8S
zP%^mdwNK*VWN-%=mkFYG$0Rx>(JzTdDO@7Aa}wQ?=)s{?4|hqTtAK7o$=Ti&J?R~r
zB7Kv=U5T7tN%T&l4@>n|TCL41lHv578=YP~%vh?5SncQXa-PlW&q+*T5Iw6#c!1Ey
zlGu4;l-Y0Ij0{d<nDlB$5<{iik5i@h<guUmuLt*w;Yo~0Vo3Gy6G=QJ{dqEpdEwwD
z$fn63$v*T5z?dXID1&#CcrS@@NsLcoZW1phF(HYklX$*F?h8pglf<)0OiN;V63<C<
z6O))E`dP3xk6M~66BqfX1o0H%PZi2IIYYp#BxVbkDfIayc!|P`n)PLGyEX|5&Y_VH
zRG3yz#JnWt(-A0~#7jxM%;Gm!T|&Ayv>=Jaw1*lJ|An)N-5#r~9;%Spa9@aby1wJ{
zmnHFP5^pB)RuapTSdqjVNnAJ)p(VVQ#L6UIr!kMsD;%mYtx5)Kp<M%&HE)C26MLh?
zZ%gH?lX!>LK0L5S&fpqq=`rQgv4NGc#kEOpCdC$3mBa^0e3(Qci6o~riI0=`LTdO#
zrjPQUax7=FIfI|cMAIZbXP0V+?ONe4lMK00rmvFtx)^^W;9KfS!1qFbD83p?LMz64
z5^=%ry%|(uB#}yDLlQ+L?(1+SWYT#DDW!74$8*DJn!zB&5^4)|sHlA*SE!eSFMym3
zowpdT7tnu3u!`H54CtmLHVgRlvA`d<C9yq;lS%A36WT#TP2%Syeqp;MvUZV~#9sPf
z61$VZt*6hTyn+Aa%&t)K_WjX)j2KCr7@12K-k-!zNf7Y9OnQ)k?reyQZPs~+{3MP^
zJVD*O!-Emd$@(>kBhsQ9DsfbVCoNTuOA{v~Te~RA8h%US_asgwaXL_ua!w}Y520N1
z)1uA@|Ey33SaP&y@-8s=(*;s^CWT8${FOw^fM($DBrel24GcE$PZIwo5jOa8IIbjd
zl_AkU6$96j_>V!`z|9604_2}aY-(C%{IN*3WOIb(3N0bDq)<xc8MvVsmoiYg7?&|{
zV=<<Amo)-wEN9>r16&%_DG_D>DQ}>Hfd&JVTa93KL=&anDjKL{U_nNf<pUHNe^mo8
zP}e{`1GgEdW}pt!zJl2&A}u#ZsvD@mA_JA0MlhANjKD8wJhau?1~_G8vhoiy>g@*Z
zkZv?EaO~R%4W_<yW*c38W27Pbb~bcuYb0dg0+%!uO5SClk%0~dIvQwfpoxJ(1NR!Z
z+ra+}<Qurh2!f<SYM^F~a8t=P6H5My-y++$M4B70<Zj+}R<L|6Fi>`!!qmb*OTjOU
zQ@EUt$`D!`xQ~6_8){_)w-r`GL%n^dQh%IszY&D=2Mn|^z$|YrZ4EqV1b3NsLJ1xc
z(B8nq#hgb3a53D;KxYGe4X6gX80c!Cmx0~}x*1?h;J|wt=x%VIU11Lc<DOC)Rf>|<
zzNsoNb?>0`G0?QI%G{w!k@0`OXGfffeBLkk@zu}3qnzvGk*l@B%=R}hz`$b^Gf-43
z%v;GFV-=%nltF%ofuRQG8JKV2aRb8)Ofc}Yf#C*57#PcTIXecPG%(7*Xai3f;EH;r
zOc`q?CS~y9&F=YYIb#f*9;%R2X;pChSk@ytY*lo;fv;t?^NfLK4a_v~yn*Kou*ehx
zQ>Chj1|}K75@IrYUZgOTweJ;p&@=<njo>F_<8nF7&M@%aAcfg^-J-KNDN=Th0XoIB
zfyxU;5P}$&NI5}s4ZLXJtrHPqeTedsftL-u%Nl6O1{NAvZeWFhMf3;*OAIV!2ZrSp
zmd?5~9J9`ZxG3Ukjr0`*%Q#J4@?NE-<%GNRR!Cnnu+qTWoGAmZ8#po=Z^%`~rBw#f
zbE3;PMczLdd6OMr_j1B4Li!FZ_DuE~s<AIOCKNOnf;z{V7M2LFHSoTHFARKX-~$66
z8u-+}X9jjJFZ{^BC$#Dw3h~DV4rWw>zcT8oe#++tT1<;xo)cZ#Q+c9xm_do%{>s2N
z2EH}WZ?N*U_+72dk?#zAZ(z)OdAAoS)q5ywdMG~_Apc19FsW`JP76#0MxHQ`WJEIX
zuK~kA%D_GY`wf^J6yuM9&Ga1uwgJz8Z-5UOxSrv{%pvBC)Cf}pq+B{?46HM--UwoK
zjbYfp+5b7R(Eyi%1XKuDr@XYqz*SY*VPL0$tuj&$cAJ6i#rT$WY7kDRMt2$bQ9N-s
zql$q(Q-bF+xAjx@_Eq*8AU#&3{KQG5R~q<}x?%*Q1`M1r@QZ;%27cvC(U|2YA;ZgI
z2{q08Dh=1EzpjZMWf;i~9}{|9=n0`Gh5ja#0>2A5MN=1W{7g2P)cjck=L~Ql{M|%_
zaDWZR<n!Uu1p|LE;2XFo)_aLDe`s*;qa{=3^}O86GE!m=^9r@W2rP4P&A@+*-YJwx
zAuEOK6iTE}GKCzunk$q)VYp6aEN#0^<&VC+R1gYErEo(ET!Ay)KLY&W*>t3GV+tL|
z=HHaU&8fiAXfxDa*%ZIW9n3pZxl|CP&EE^kr*LZu@uB#=RMz!pYZX(dltSecs-*Bp
zD)54;DIf(Ug{CRomO`}@ZcpKk6sq%1S1ZiKg$ikn6lw~mmeAV8SL+C<n?gMS$&tAf
zuFv9SviNh7al1hZYo5t#D18eF4GX<9g}VeaO5tt+jfJxRO#~D?!#CglZ$$p%XqG}G
zh5QumVGnb{%~Qesh`*BfaDV}-AcYnpe18fr_YV}p(AttZIU6bzdaux^&{jfQr*NNu
zK&Euo1F7Jr1XG(7+6sP9Xgi?~6<=*H;NcXmydI@+2hm~26gs7XpU>21=TvZmV=8|z
z(lv!{DRfVvM+!qy7@9)Q6ndrbXbSyP!A-e$3cShoO$FhukI<r2@GFB^l~dnS=_izc
zcPswX8j!*usw*e>&G;BCq*y<Eib8D+7M%=Q#~1c6EQPTtj1yfAPhms~Po%JOjIwJ~
z{*x*E(o;FRGx}5te9%ffGKEnoj81{fF)17ylRsmfN=(43Oyg6Skb?eGL47BWS%OBl
zMNb?IJxg<XJ2Eqc=Tc}j_x_0~kU1%Z$pWSbotDB>0Z(-=!K*Dx<xWpwhHxr<7^&D(
zeLjV!$L3#oFg%M|eK0&*=nF#U2%RhRMWOSA&KLTU(3gcS5V}z4BB6_go_h*QsnQgd
zQN1a&H}SBE<teO4;ZM#~3a_QGGKF*sRtm4DuquTQQur{1H>izMp*2F^OyR8*ekcsT
zox(c;RttaCaD_7WoX@r^X1$xjdz_JqS>!OS6@mAu|6b9&a2`1yrSL@xU#9S}Tq5U_
z6h2MiGs%7~bVTc*(VIu&s}#Pb!s)yzd?S~>OX2$zz7@=#^z0EHRUv5W2jLLJ1ZdJd
z_J=Zw6pR#7w6W8nq)_rHX>yqBR0<H^ULng)!Aapritil4O~FfHHw`HTKZQ&R+fxX4
z4KuAvVUslRQ`hkN6i7FuurY-#-NIk4Q<>dNEW%rbE|pT-sNwG6&%1?p(EL)^#W-_|
zO3s;cC4Llq$FT@GdsEn#!l4unr?8)uOG7^kJwQwD5<V#ORF|O7Pgckx=NIAJBqREj
z!^{qbR^wQ1mD8bPDI8DX_Y_Xi2DU~|q;N8Y-`LxZdFOjXDR4u>Jg-48DW@4KQ#dF8
zcbuWu^a`I9T)%gim|~=Rx`)rF@a%Vm15Sr7a`DgLW}=3Pzf$-+g_}&=Y~peX|1hMR
z{17nyWuqzl$53zLY6{~kW%cY9CcQ@Y?-ummS*K>3!9?en$QAHZg{&bzM@pCooeu3^
zr}mOT-5{4r3#D)=6FZOQJ}(+5V`56z@Qo%OsgTvZLRMK5<xEsIQALDrF>$Mj3bgZ6
zq4FjgoX;j;4Np9-R4lHol7NL3vN))!CSbzL&Z0#z>z~WM%>+R;p&WQklkc#hk%`78
zYMZFTewqlIsB5C087Qs3iN3v}x0`q)C-)A)?-z!dXkGb*;RYrens~25baY{ul>9qQ
z++~7bMzI)i6BBovxYtC~#Q#hvCg04&JtmqG6o%WDEZK~G?i!vqOo^EIvq!kOP=aYW
zxwMA@6NOSIaSIbI&A@D!*uAD5^H~226|!2Hc)&y(6Rl0$XX1VnM{bX@OWRuqO%N|F
z3};s7on5E4HSr*4XT92vjjmH463V8DA2HFv#H&=ViH;^ZnV4YWX%n4IbfLyfJZ7S+
ziEbu(n&@SsyG%q669c;kI=QJ~-jxbj#7%}Py-lbl`kCm%E)7?him1I}Oo69|DUY(M
zUg7?1Vwggot<<bwaZ7cei9sfwF!7{`!6sgLIB&R#Kh9?lF)`FclOEy6g$@(iuvr0T
z^ZO$aYnU>^#OhvQf~QQ3G%=pquADW>#Auo8aVEylin@o#Qh}#KEJe&jTxPh!=^OT4
z;n%&w&zN}D#1a!rO+06E^AzTqc#$U2H9X10bQ3d7Os0vNm}=s!Wtb+H9zK>!BV@SP
zRVj;-Gfn=>k6C6ANtiuRDQiym@N5&LFOUlOzH9jJj(OzFGcn)9m){j;pANlb@^wcn
zG_i=bT``M&WAOzh7*bgOViSxuObjx2Rm>uI#l#(zvzD3g?+rX+QH88oJ;DSlOuS~|
zdlNsHSZU&Q6CarP(8Ma5F|}mk9h2|127XH6w>iw7;kRhUe`XUf(Nxx$c$XX*0(JFI
z$Gr6tRaj&#O;O6)oq`%ZGV!sAPfUC&#&GU@_QGD_85OfWV{c7-W#Vg2L1Fj{j!^*d
ziYKw?SS~5?H^ThR<SVsUFhM1Uv{HpEf|v=-gkd6OLN^gNkuZ@o@k^yFDwgT@Ug0ZU
z!hNomU=JDeZmOJR(%GpE6KNBc30qv)5f9}^kFLyPwXU?-P#h{_Vx5WgCa%Ya;XT9e
z^bFz{-D;DG%_cTE*z917iLLaDG?u5a&BS&S?b3KC9V`iUnD~c*(G2iT6T3|OXkxdC
zJ)(`n)brlZUNczijeH^RWUKH#;p`XslZgWYD05K2&m5hAL&f~g4;KAOUp8@+oq4zM
z1rrxd95Zp8Et)uK;yh!8iP+%6-%OmQrwIO?`kbhq5?X1!dWIHtHqvOldX|G4Tu6M5
zL2tdv#O&gqB2!1_lD1v1USjY!@i!yPp-|N;*-S_HX*q73ITX5F%)G+j&rq30-88P5
ze190_)3`N_(6d#t(kPKe$uzRlXvYUvLUV;OTc%W2UK%%~abp@crBNykKHMrJSO4y*
zmQG_I!UPnfFw@O)Y5fgZWd)QIdW+EOG8NLOm`3$9YNSy~_?6SBl1Ay`8mguN;j<yu
zb6YX4mIkwAvXz=?)D}K*Edi|jx_rGfZkJBpm&P3enhLEilrjy{XjqIx0>WwBS<Jah
zKqH}zg*Fj-x6uCyRnmy$Hf2>z&4d$4qq%^5q4x;o)q*ry6yug@6c*!q1w_+mRm^Ff
zMz!AR^*Zkt<^w|8q_GO&wrM;l;J^)8%(hSC;WVB~V`LhSq|qUbzG<jwbWEdD8a>na
zzE`v}r>t7IOB!7TjBZxYEsgGidk9r#M_>81;P+DnU)NJ9*(;6SY4njxMN$Kqxu*+A
zSzEs}9!+Cdn(scLe;NbQ7{u<Sd0a!@V`&VOQml%?eb)!IF%3y$Xc~{FQSNlXlk3%~
z!e6vrWt}5L{z;)v2&MdHDbCtPr7=2<8EMRvOJmY_I*n)27@Nj8;fxnLA&u2i=T0-q
z;?Jh>TpCl-m?~E%rZFjv$!UCis^A+D<6tS)<a7ZwGcAqjBH*uA_etWV=hK*##-cP9
zr!hN?7t)xQ#{4wqq%l|Od@+sF#iP5rUR~X+V8b7gm(qASjRk2eOoL6d{k5R%2K9Pd
zrKH97y`xK{IGcDyz|u78Y*0BP<SY{ovn$egEsb6ldRthT#_JNPYFSv7#v5t8o5p)0
z`6fqQT-#d$-e&itA=dUz8f%KLju@N2HjVewxRS=zG(O;<_}6WkZ}r2T+~mVFKB98c
z_#}-_)A%xtuhRG|jZ2~My-v{=X?)H>eWWn`_+_M7qwotihWXoedvE3Ibnu_JQ!U7T
zM>|O)nTA1+*r5K9hTB2W(}+n{6H0#jj!Il`mknwn4bov7)KnT~8i&$2oJKkgi{72a
z2KG%V@r1HAhk&8!$HEyK_~qq7a{M$_ZcsBKur7`7HmGE7Ok)#cQ5yTx*j!xp$27L2
zu~o9$(%30rd-2sB0yb?>cNKGvN>#hl*i+2eOVxE!SU=NG!W`YIi1<Jn2a9EX7Vrxt
zrTDLD97*F`8t2nE$`H3vJ<h2VaEyH$TsUP@(aAJ&`>LmlYxqsT?`fP85Z)M!=nuhX
zgq{^jW}A)bpJ`l3<1*bu#4gIEOG5V@icsdSH2#)s9})P6=CM(IW25>nXL+N_>A050
zf9#JH*h7|uYzt*9+-M=k!k<TSb1jsxaP3Gg|5q((A<x1M7D`!g`QTLk)#4>S6(lY#
zV$6Q~U-nHFZf1ow!nax|D>ai}PB;YQ-y*oYP(G$3r-F!86iS)O7OGgNYH^cA(6MS(
z@LYw@YEI@<z0C?9+Av$)3Z9_e)?2Azp{9sYvcU_{+7{|qsB58~g|-$RWLXP$SZHja
ziHOy=5Vmlq;06{NTHtF)+(FbnH_T@aq^tkSzW$ciT^1Ti)2z9C%PMzU_@9M{h2|EN
zVtz9VO|9Tz1(Pu{cU<M5tCY`|ElKxUxW__)1^ZeKTVZNpp{2A)%>G9$w6gGkg*L)(
zZGj`Y&q7+{@3(?K#CMI(BPEB=d$04`S$N0_9=3G0P<?z}d+ER<79N&CakAJ4rVbW3
zI~^@_5<tB7LUtFC;d7g=7P?vJZlQ;?!ii(I*-%gE1B>^uP-Nj13(G9@wSooGAPa*n
zs1|M=pWjdDqeA;z7+?iUjuRE4k6FQziJ@bl6$FqS6QV<?+m6a~3o|SXweYxwVHSp4
z7{ekKx0wW2M+tqx!jl%B;;fyIj1*3&Y)RtA=Ogyjg3-e1{bz*o<1CD~Fww#!3loG-
z<}(7GrnavZF#D{9=Y;d_kisn+)w*4j$&#HS^u)#>7EKjAO(?TBoQuq~@H|yy;RPC)
z6)elocL;uu=Tyidt~apC94mMZyo8<qDKgi>ix%ctm~Y`F3kxkQvVymNU$$`kfxZg_
zbEg<N*_+hGl5H+KsrmKH?Ae7&t>F0*BQW0>f0b>C4jl(8EWE~KV<nS?*XfcrZnCk;
z!W$M2Tlkeqw(u71#DZnvZ40X{d}HBT3-8cDEPQI=GYc2bN8Yut*24Q#>BY!<7Uo`v
z)c-T`0sX6^LdAZ_xxQL3Q1C|<KDMw+@Fy|_mv4=JZlPo+<%5pOmljCBuu%D8pnu}8
zEPO3Y;!WjBerMr(3kl({!XGSX7IfO=rAW*|g9{P1IJuw-h2zqC$4&}4NehN3KP8f;
z1#@U2`E2yV&Wdfpv9Oc9V$8ANS=eY{6YqnU3VaLO_7$$Tkg>4N!hV`Zt0E>|;_Pp*
zP-&CebWh=C5#CB+k>5g(7XEhO@2%5f2cyI$mBpC`O;LXo{!bPTSlDf059iv#KB<2{
zXJ==jv!{@)JiDim4LvFa4_f#|O0hpbTi{iSv9?3f*3gFP5juE0dfCE17LHmtM%$n_
zSvX_itc8<u_2X#KX$!wu_}#+!Ly_^D)KeBWO&1Z9{=un<7LhrBlX^}B{<Lu6x&UW+
zipr}@7e(wZp_fGLI{$AA%?hdz|4Ta=SV(WmwsFP6RR(QQK6RdD2X6SEWZ&5oxJGP~
znqwo^MhP1wZBUtIY~<O2s!I#KL1-zVExIVw40W<&lgb(SZIgPljj}dW8~tpQvvG?J
zg_YPSZ{t=Qb#2s>7Ax4OY@>>eiZ-TpQjT{}DhYV2RZ&$Nuu<Dax7~%e*{EitrX85^
z<ok-)z3MF0F)*PT0&+I1wd5)Vnp}$1k;(~ZuD9E`!^WL9?h<Bw8zGLUlhQ!4BbF65
z6i{YwVOYS>PD<Bhg^ldM;G0Ni*j!^9wAg3PNA9-qKWT{apTDS*HnS12(ay$0Hk#YW
zw{f41*3qJSY!ukI*GAMv3mYwMoSubC9~AMDI$0fjHc}{J)ms&{63|*`jm;_r?%k~B
z?JB(A#sfCm*l25mVh`HrE&M&vqPbg&C@^lb+TP~(v$*LA-9+XQ_R~fu8y%!JN(S}s
zEbJ_;ci{}~DkPJM%<eXNuudC&Yz#hM(9=dQ8<crbT46WV2w>SF8-1lL#S)v<3Z0cl
zZS=P>h5E5Ez{X=Xp0Y90#y}f`NN1{#vran*K}<tzyunC*F)~!NTBeJ_C^XE*a2q3R
zJYnNW8w<}z&UaRL$?U8&z8GoKSvmh>;V2uUZ9Hw`85?8R;>E~#8}C((j<qq)#;cu_
zCLNWf7bAx*Mka9X&PI6Y(~FU3Z9He=&#MKKZA=ugNyWln>QPqmShR=*>+dR@W+U}y
zWG;tnW4etQHfGxRXMbcCjcQL}qqC9cX(|oX8iNX%oo(X<;m;9D4!wzKo{hy)ig><_
zmu$RjV}Tv`8q-2r_)if6R=Y@;FLzd!*jQ@g6&uTJtdO#YZ;igbtdN&pwXt(x;c^>g
zt`#u5W3$SFuQT}DXy_p1;0+sZ+W5=H-!|T|xd$As4UaY3c*n+9Homs8#>TrgKD6->
z)kO>07GZkd##+J4UsO+RRzDE@+}YsL$2LBp8Fx~?u<@yl&*W0|Eh;$|Xy<Y%XN#J5
zPnAc`7ktSn-cvZIRna##zO_M4%Eos#zPAy#k+5;URrG@my||K?4NWi`TD8Bh`4*K$
zk~Zc{4eB?fHm+A$C$pxFv<>5I#IixA!-4NFw1u+T4qH@S@@-^n{AA;RjdeEG+t@*+
z+1OxXqm3<MV|4sYHa3e#^R7py=ADQ)yRA01(I0mg4%(uQ+FiKa4sLk_yKMX@1^3z5
z%}Pq=G92x-vBw7QgMSZDNhfwx=<kdM`)y<$48TDfKhv{p{9)r48;5NCCc%N14%;|t
z<Ct{dR~tvf7s&tjLgctK#Qsd$qMo3Mc2rIZhXIGq^1F>ww2dulxeF0C#}IeM=H@~C
zY2$*8bJXOe$a$%jL6Rf-p=?Q3dyx|{w2&@#Nvit3RT1yPyn30|W#d0~*uj&73jbx~
zw{eyA{2X~X9{psCdd<ecE$Z1Vs<TCHy{j<WL5_o49aM0T>!5^#QVw^cprjKRB-0HJ
zXqI^n4(^YX+NzdsUDW(elyPvQgK`eqg;aV?^Ff8YdXs~j9h4QxvjYPT{pc14wDa-~
z<`$_Gqieh|xUiyw>JDl+sN|rsgDTPl9kZH)st(|waY((bn8||d024b?(?Koi*c}dP
zivSy{<A61v>DppP*A{gh)RXM(4wz-CvsJBMJeCFm*sHLEI~_dj;28&ZIcVf?OC!3n
zT?b7Z+~?qa2X{O8pA+~<fdj=sQwRByC8rqyTcPU2wrQw8?I|Q(dp2^9gY#n81zXh?
z4q7@Wba1bO&Rf;iQk?fqx<gcOD+hEdX6baSmj3d9gZ2&{cF@K_TY_zo2dQKM6reji
zB$!R`(j!v5qk~RTTL%YEY*krdXD4u_*;@m@V<~p5n}hBShBz4NpofE=4*EHGlvQ1d
z^m5S0L6H-z412Tnj>_00!Rn|lhrFjyb%F%|*FSG=Rk?iX?_hv%9&>`#5f=c>8V2jG
zfer>a80-W~aVE->p59&P4NxC<@RWm*4u&}x?qCEv=>#jfC#9aRx2nw!1j{EDAsyvl
zw6r_k!59%3>tLL4vZtu)w+1UWuDDqF1PAQT^@g5x@SKD99ISOP(ZM7dn}Zh}Om;BE
z!7LfnRG~A3a*WdiOsAeZE4yX|qn_#D`QocBmj%u~Te2?*og=#XxNOOJ4(2;pNvn47
z5-rfdD-M=9Sm0nGjrn3^k%RBY1Qil<$-P*Z#7i73Eyj#L3<9sRw;h!gLYH%llT>D3
zlPm)f@hS#?X??YWH=SU;L?%1@mS8sVHXZhsAR4^mV2y)!h0l3Byj8t?E<*X|E=JyW
z@TJ2YulT^hhYmh+@UeqW9en2C6DPQ(PO`z9BLjkeG4i>CFW3ROnKHYlv%*^^>DLav
zaiBTSo!~zEtrYyh!FQ4+=X(dqF$zKTL^S4rrFiF!J4iT4IWQgkT{@SoB<WvVWpz{x
z+K;rGc7nS+@8dRmbunT&U~>dqld$vrjp;h@D10d7JIDxF=U{^XGS_oZrSpDyQrRe+
zT355l+~Q!XgKHW5m%%m%+a0v_ai5PJ4t8?JU9@$v%fXNI-%e=iVmBLQ40KV!#a{Z3
zgA)!;G8#<C-|yg82B^z9KQVNC8#%z>=HO?+%pPK>oS6TMP-YJczw(rPVx}XKJu37V
z?Pp^CaltI|n}gpS{NvzXn(nmxQx48C{!Gi?Fg^dYgFhUcVSHPXf0hDU)$HYY`R^39
znwEc_+IDck!A0tm+L)GqXnIiO6776Oe)TsR|3%GA&nGUoO}*?OHY2}HM7`qRD&x6}
zJQv-k<X>};?IOp;6JvA#b5M7in&k%cl_~kTE)I=WvM1%25D?j>QihxxBwNPCjV?;L
zcwj<4Q)vObdXtNrUECrvW!>NbBbnt~d^;g1YfTM)@RpaW%s#kHt>~hXizY7ac2U_y
z6&E#K)N+HKS9Jjwx4Gb0*38I1I3>TD3)1Q?UR+T`P{T#F=Yk5=ZE9^7bzC%Zab$dM
z?`QMty1@k1bAwr9mNK_XXYLSMUuXlN4TXkWgazCwl=64EP-X`GZ!DYv6N7pDpLB-(
zsr7umB28?5G2l0IaX331anamGzKa?q!-X#Hb#aeiW(x$gaM4o0h3qhytUT(XwTt^)
zw31dvZBxl)x}W+i?g^R9lKG&Eb}lx1*y7<K7wxGr4^=!o?BWp@pS$?NMF$rhT}*KC
zw2MwII=gtx#XuKbTy%BO%SCS&?=Mlhx%g(B+TF#>ZR*J@p&l-Jx_FcL5#^Z!1wWh!
z^>I<;LUqy4McHE^Z(g*oi%Iox!>^$UM?(jWg&uWr;@?nz7nheP%+6b)3}ACh6oNr6
z2GgQkJn3SHi=i%ee}gq>+tkNh%sUoRmMEVc4JetzU5s#Xe6iBMi}L%S&{Hl(x)|$X
z97nez%D#<qac*Ap$j=3%U5ueUoCuN0Zk#S3Wm`<++0~b$ORt5Vad{98UU9L^#d9tu
zx|mB-VYgjOcJaK6SuUoynCfDhi|N$lp^$zhG<AM-+Z4=@>`WJn4~Lk_E{sx39N;}q
z<;`~Sf{QuS;gL}8mC*X*A!?~pJypLNn&)D^i-j&0i8fwx;T#Sv5d5->2Fs&VCOgc*
z-uiNMv5O@xmePbyhB}T@IoRyQ(Q79{sbis6T`YI8#>KlXR=9YLbK&AG7yDj}uH>a7
zp;dxkrv~b(WOA@?u&QgJ{qv%4yI3uA>KzHa!%lLg`f~w${_4R3;`dyvb@2ghql@xB
z$38zOTl&>#bhLU~R`^2~AG!G0#V0O4bMerMXzL|Wj{Q@b<&tQ0L6BX2CG^+P(3dX0
za`7wu%f;6;9vAEBr1WbS-?=bdq+NXP;s+OT7YP?JhL@}`+tOT|sucZWLA1%sQJuE5
zFv@nfZc}+F>B4Z4;{3iCWfR*+t6$8Ia%L@BI}OH#Pkp*@r3MPH$mMIH&yIw)od~hE
zqubOB=lXbPozQ!ahKM)1*u;45;zxSliO^;jTU~5(vBgE^T41^?xZTAL+Tjvqr;C;U
zg{+ZzO<s#~7RXsMR^9DlkBb8gHH`mMy9>_Lep=(wA{xNq<DqX36#V4k)8iq|3r*;O
zYoVX%Tx*LC(PyuPeqm6$5-^z#yZC36`o+%$M_n8vcJVJwo#w$IyEyOSq>JA;Iv1y1
za4N5CQy)1Q`kfs<5hCCW{=wQ7N6#=wPEeUW>w@&oW1$b$MgMeh!NuRAoQp0VT@k(H
z;x7Sgy6kqf{&w}A?JB`#n&{F%!&AO1y5iz01DA&zJzR6S@gF5U<ax;QknJJYL%pk^
z91n&67JOem&<PEOxP*r*$3wGUj8dhv|2m`88$6WqKu;{~fxgLEqqkDMH+i_(Lj^CG
z=*qK;%6i~H%6a(gaEMuI>=qC0x2xqn-0B79O?@)UNvY_ek_Va`y^o$%)dM^{?co^@
zw|S_>dOURSP~Aff5C8L^c&O>2mWKu&8hU6tFIw9}9S?Oq{PwiUz*5fxhkWa6(K`g(
z?%~`Rm7Mw>I-dv)*{+g?JcQZ*0|iYy-09&i592uGBcVnf8hbb}KU(T==#`@(&h_N~
z0x)&EdN)V?h_ZG;QBx1iJhbxA+C#)ca}O;%wDbbQ$oEj-1#Wwf2YZP^ANLLvjJ*=d
zKN2eRaIXjAs8DK*ahQ6haQ7>r`#jw5p&i4!hX*+7E1@<X+Im>Ud0ZI%YP(9#gTkj1
z5mW6aPVm5lz&IcFg5a~`N{G0lhfW?I^DvNu_0Yvb9}h)d5Cpn<=<cD1hi)E@{TJ9g
zne0zb54}BbA|4r|_VV!KcD31yfzQ&g`+874^yiel9Azk5R7dT{**_e5R44&MH!ls4
z5e-@%9pquKho?M@^f1K3P!CVg0FH(p_b|-E2rmd+9PGgPQKsSS<oxKL+f}Nf^bYk&
z4;&_iIlw6+)lnYCuv!nJJuu6}2u#Uw9>#l^;Gy;o^~?VPn;di`L>nvIp+4*3IS=o8
zc+bN`50gAB^03&$WY*weu7?*rO!Y9$!`B^J%=R$d!we74dzeK_sE3&zeq9(XksU7D
zq1L|^1ZVb^=G6LX=migRJkVmF*`adOlMWWl^Dy7TfC=gX4=>RSj)!>Hc-g}{S3``z
zEXXYBLNB;)(gv1r>>gh8u+qaTqP<r=B$q_DFNiMlK-y<Xbh(EWR9*S#k{#-d<x$SU
zic#w89^Ulu7A?UGLdqLn5C=GGH1D@PtY(WI)`(@&_jwnlInfxXL)vP?CDFAW-uDpm
zpn3Sf!-rHdhwtGd4<FNFIXfO6T^QYeB=m_F+}4?>=g++$gnsFPM)d_1emHdV{OG1d
zQR<o6{>B59^PPw9#W240!1z$_XyE1_?@$>Sf1nK?4kD!PAx>crCSB~-Xo5o)H(?XZ
z8lnff$+~5EX%ChM&x23Lp*_=Cj)q)X?3Lgi%HaRa!Gar?M%ONg#*Vhkcv$c891pDX
z!1=0mB*c+!WPi#>H+d+xR5`Rn;r*RU3mW-W58D_?d{pzXog<<eJ^bror-xl0c6-?4
z;dHG${?GNJ7i_;8y*EU<modu2aq7gweh)u!ir4bY3e@SY9PsdqfDb-V4tn@m@S7hi
zzs@Y=)kCz3*A@O<{wpW$Q{{+<qny*#3X31}@aKKu+y}xxlndYdnsU;^A0EyyYS9R9
z3IFcl6nnz7R@tyaZBiyYq)wE0O}X${k0*`bFUBzs=UIt|3#_(u_@al~%Y{$xP`_HP
zlqnrP`hFl>d!_QXhx+d+oeIL2=_V@`rba82D;};gMEfY~<C=&6Je2W+-&0IkK1vni
zYymk!bA^@=T2g49&>MU-aHA|(TCxN;l+L}e7~kZh=wv~`<?M1kZt+pcM`a)7i?3Gj
zaceRD?Q-xlt)h>cM<|h+dBjzGRP}=+%i3JdW`anvDqgDYqlS+=eca`vrjJ@aZufDA
zkJ>)!u$5KOx;}2$sq!C8{*%l9H0${w<!*@a!%$x^Uxp70XyBuv01AWza7|9kzg8Rh
zXzT|s$QAl%;$u&CxWGpXA9wrspAW@Hy`5@PAI$`Cw_3zUb07IW?(uQcdyOamR?vE<
zs_s+?p4_QU6VTE}q)~|nA|>jq2*&u*9|c(-HNMx!mp_G~J_fFjw(>FL)jWdxeLTR*
zGl*o+#z$KpzK@KL2Ys~jG2X`n9}oFx@8eM){eAQspgioOtB-Cz9`Vt^4|a`p^wG&j
zXBzyXV83k_VK!_O>_p>MGSXLfs@;8_m4rTWsfUlAK6?4!84kS4V;o3}q;gdR*h*g?
z?`Gw;S*rB&gRR7@_Gupe;Nvl$p&&9=ga`UOZ381%kB`A3HpItJ0X&W)R;Qr#0OfHX
z!)O%)6sFE+B2V~uQUpf%cuD{(AIbTZGarZ-m(CjPV~iBx?qG7be{h`iiha;(grD~D
zjE^^byy@dvAJ6%i@8cyO6ManbF~i49sdloDsm1kA5zz5$_B0>UeZ+bN)pCC>TY28c
zEFUixOV0N3f{!_j8(jk#rn!Q79tFF>13>19<WnVbdFf>z3w*rd^S})(6#il#OQ@o*
zSmdL1Q#5LVr9O7u6;u@zX%Y<cRUgZJyiWD@%UdC(xNG}0$)dlqvY2zd^;JIDG<*J*
zkGI)#dWw(LKHl;1iH}cxtnq_A)bIIND+S;6acEf3-1|O05Y9)!xjvi^g~LhtSO9Bg
zi=X*C5(MA)_}1rnWkK05WyqW_Uj2##8K8VElz>bMd?#Yx7i;MU$x=B~5wGe#OyR_R
zBzz<Vlb;e`2xZM2b+G%}hvmce;rMXrZam>(Sg>`Pmq?FX%=YL7+(~^Vw9dzRA9)$v
zkiiBY8-1Mg@tcoLJ~m68zxvqXW2=uJeeCw}(=e3=vyGkP^B*5OIT2FT-kQPG_o|au
zG*%&Ci+g<R_3^WhUwrJN!hIYN`jZr-3>8I6`GX9D0|LP8KRMw;J`PKr6ySE(n??ka
z#jYOlan#2#AIIe?o8Z*5)CnKghx5CSQ$DUTEc-a^<Nc@eF8H|U;}0Ka7>j(IlM($X
z#o6L{X_t)-7!^zqXY-N>{N>|s`c92--lgoz48mg-YVThTr)Kycp)AWi^;dkb=hwUa
zpSV(P23eWF%d#_pdUG<txR%JcN@TG9Vs^<)5LlSFAHP%vd`Gcb2Guhtok5ulZp`4O
z460;;H$a$f&Y+UuUpqz1^2uAna5<s32rZw%tpX|tttj;FfkhOnETsroN&DqWRmmcQ
z+XOuEMU?y+8Pv=Kzdn=<YGqJ66TGSs%AigLb=mDq5cBJ0aC-(T>K0VprGBwfy(5GA
z864QDdOOuNJsV%x$^Tf%ENsXcDuoHc8Qht{U6~---?>X|#KCqBp6a~*gVH#IEo+q~
zLhly(KcRhY4Nv>MplJrAJr9SPXON%4+Zn9R;GPT$G8mG<&<t8+&@zM08Fa~@FoSzD
zcsPScGKgl-iV;48wv_Lov=(}w&^Ei&`!jeTgV!fV+i|P1s=P8L|G^B}WrFQa?M3FH
zOmG+!Z*430MLAyX%PW%Iiybn-D@h$i3CoV=+BxA)nPC6*6TOwL8Fb5_D1*KkbkE?u
zQMo)zs&@uGGU&-})G6qd!H61RO17LD<$+h+zuAW!&I#{qTA*goFM|OYJjR~OSt#T`
znhB2D=${F;<yI?FxnyED22%6#4$>eRiD15c#P^*Z&tMpPlEKUjhO?mzp3dNz44%l~
z$qdFyho8z|q!i)NF{1>G&fw;z1w5zdfyXgM@Xh;zx2ML@N;8-sr8xW@rLrcz9c8I!
zGk7k8$r((^U}6S5HD!{>un*h=NJ$=PGF3Q#{gFLgz_bi1uFc~mrq`~Ncs_$!87$4<
z6<*EYg$(9r@KOeIGMLNB{V$uF+D3~8UZk}!{%3*>eGQrx5Hr0j%!NW1Wbjmz64wt0
zSd_tHVNzy^0IoEaW$>!tRkYzua9qG^8T>!4z608cstY%83%!@iNAGe20tO;nxCW4>
z^sbixQbj?e7e!Gl*g+5xupm{63er);4mX*}WKw1(6S~r*7Xh*HzS;Tn)?06_S>O83
zKKrzN_Bk`joO5PHAp(Q(K_PBUayHPdEOhqn@jQW4{@kVh5yt|Zd3pAL+)N5TDMatO
z&M8={3$cct$xbQ6TJ~=twijYYA=VdSLm|GP_3jq^tPmS%^DDWV3vo5WMZ#;7NI0~4
z-o=(ed@faL6819lFFCHm-mQh$CblB~N+fN&7H~)Z&O+=e<ZgHTREXV$*i(r8h4{7*
zdkdY_p&#erYw^8(bpC{wl5Yx~4TjuH$ea%p;yVuHs=f`&^1tWPPF**z9}1ndZH!H|
z{bwokP$3G1{KE0_U(thX*I$_p+?fH+ON9s(Iy>SIj`1iYwcM&;`HYM=+c=|xQCcCM
z9^`DFj}#(Wh|7hzQixa~;)OWJX`~QFA<RM?F2s>SSZq6|6xqzkt<!6c<k^Kt7CLh*
z_p8$J*!4#XxltOw72*_|BNdzH$vY|Jgdoog`jyjyC$G^eAMrvh_vu2Mktpu0r?;?y
zXKC}gZY~9+*Kv>Vd0KCh=R%>g3zFAGA(sSS8Rx%Rh->tRLfq!OREQgexJm!4<D3=1
zse{)a97F>>3yWt^cyAv5EX18c=hUo!rDy*t#NUPZrx2SaICkc?eQt8cP-iPW?-V>L
z#1%l10Q6t;8U;`^fDGaF0>}&?D}bs2<OGl{!ZL!z0w^w|L;$6PFl|X8S9WBV7E*po
zHif*(22d^~37~?IiUCv>QYnCkOdoZqOj1RHCw6343jhJs6`ksWbp)wdBY>J|UQ0;r
z08(XbSm$KrO_y6gfCg#Jh5<0vZ~7VsaE}O^1kfUYmI35S&@I?hu$kc1b-sH8XrAWG
zxnW7yeF3x$ATIz<z*!a9O0czHk%ZSvGbX(E3$_vbw4S?N0PO>KHh{SS<OlFT0NvTl
z0KTv1_66|!7v7EmbO?YetH*!nVX%`3NgfQKv+(ivxVr?<H2@M`-2y04-yshN&?A6>
z0SpSDX8^qd=pVp<fb&DLcK~IdDHxHR)klJq^bMe2n(zADdv=y5b*KKhjB9WJLjrgz
zfKEfR)qM9O0SpgdL;&QE3Kj$~RLGb$9>0)b0bIOYlnRdpFp{mCpZ|COqXKC6m1mqN
zj21p7fQ{=sV}&!SPM*8UXAX{+Buw>008cXWRi39ecqWK&qTuj#o=GXWAQdJHnG(R%
z0Hz6_9>C0W><l5S53gCmXA8~|d?tX_YdlUScJ6Zl%nLX_?%4e21J2{h<;`9OUkKnu
zk<S-=wvwyQrQBE8FZ9DW>cz1jfY$=3r=h-v*8_MXfcJt}8pN9cu$OlSuqS}G0(d)s
zcLG=#;BHoY6u_bY-VI<0l>^RG%Hja-R&-XArq+}$4M6FLWdVG^cJ*_=FFL=-*2uY)
zT+0Jk5x`0jGD&I!=737Bj|2E5fXxAHk*HMxtPWs}RQpqroY<95{k1fH0Gk3>CsAzU
zdX9oL|4hitmPJ!FS)G-&a=hnr5pE0MD<NM9ei?A~t8NtxUd-jTP-e9~fE@wsq}vQ~
zc3tfXfaZEQt6Kjm&Th@U0qo<*3UccXz7F6Udek~ky&(1n@NEE>1Go~vfdIY>;79;R
zITix=A%IW-S^z)t@Xr8#3E&{f+!j9zZkUpBW?69t4{<KKQ&bgUVE_S+&>3xl5>$j=
zdbZ6-!+DQ3MKCN;dH|6C?wgW9Wnwe{JAh;Wu>j%$7y-Vf&#)x9Df*}6rC}lfzFXwQ
z_l!))Ivfr-FBVw=;;{gZb9e@DK7bPeoTP18N%CdIe+}TY<i=|JCghZ4d$6Cs<<txc
zS%<SCITyebDT~4jB4H*M1GtptEVsmrjH>}$<9rfC(IBn|a3g?!1Nbk1KLWTJ!0iD3
z4B!^)Fxm5(;U~_Unz4FroA0J%+zH^X0RK<RUSs(88vef}+kXTLpJ}6riCCGtoKj{u
z6>|k0dmcQPoe@N45S4?d5=2%I*+G;IqFfNgf+!wD=^(1JVnN3mOjR=I^wj)W{!&87
zPfT%gD-*;?DWZH36(p)s5ZxC!FJvnQ9YfI?TdLt3QLY+9P7pOjt(qVhoa40Ob1_l%
zAZFj|^lZ%_YKcN^!MZ`z5pp+Gmg(rce>1Os5DkK87zBB-kD50MqH)mKw|Gy`*+#nU
zbOy1B@B>9$O@n9_#4|xW8|3ynG!LR*5dDK_5k$)%ItI}xi2H)@uxP%|4dRHF*Gl;P
zf~|wNo8|TjZp?J`%5t{}g4i~QK@x1of<!Yv2%iw<^MH^a)?{}OGA7eS;e$bR4x%TM
z2hk;nu0gz>>3Uccx&@J!<$g$bcXrL?BFl@pDS0&0)kB0Vi#hZb-ZzN<vYi*reS-M0
zk?&biJCp4m5X8VB#s~2P>lVb|AchAqB8VZ9YG@D#d-)y-Vifg*C=lV`OcyUo{1S8*
za}NumTeh3zF_EwiV_BbK?vYFw#As>zhAgM_G3-RuN5X4d5RZ#~zf2dCJQ>7<Af^Q|
zJ&1`xJQc*GAf66ln>#zD-@x=wW?y8xr%0+t-Pz<*g;QZcaaY$Vo*5FHB{);;L*eWo
z{Mqg~5`3n(W0Sc-=a=1cK|C)#a;QkgydYi(;;kUokIa5Ci21a$WJ0x<guD{O{WaV#
z2SH`#u>Dq%SA$p(#A`t`8kfV;Q}Q=N`AtEpP0w__E&QDz77AGu#A2z*yAovnOt>Vi
zuVuR44`LZRI)rW^d=PY=D?SS1;~<s`XK+OjD}{e3*r9j^g`WhmDu~)4)CqA1999Q$
zT)_ziYl2wI!K)xk!MdQc6>DP<o7l{tv#NQ6;Aetdm`cg!AhrZ?Du~lTd>+IXK`0!F
ziTp2v&XTaNgZL(ht-`kj@s*J6LF^Jjg&jfcO!IuxzdMLML1)R+UJ)+t?b#=UE2ycw
zKZtLG&cfhAslb6Ceh~7V;P>pEJ{~RxX03Sr$Uz;%&p~IE<}Y+h<~-L=IfGo^cqoXf
zy)zjMNd7@7lnW*qs|FDYLJJ}sgvEXjLgzr1wMOwEBEqABF~;_F)*x}I644043_5F!
z2bunxB{FQ$;j*Y-gGdH(n4?}K$Aiwor=uJ-TyV~Xph0kX63GeH;i~r}CmdOvoWkEY
zE^c{Cm&`a5#MvPJlG>gN;`bn~aWW6$d=M8Ths!}+<OF-o%k|-xI3i3x`5a#XgUsrR
zRQ0Ol#?mRjK}!a4ixrC&{1F7zUNHT2|H`|~w4?L?q<%+d6(Sc0-eI8;XYU5P;BTqG
zKSBH}gp&U_Yw_ykaVaRGIDJ=Cacs^gUKt9!c0NhAf?^7uRxnvXaRnt5JgA_vf|3eK
zDQKvmk%H0+$|$I$pt6Fp3b@^%qGVW3czFd}@yIT&pg0Rw89TXL7JIOYf~pE?DX6U=
zM?p0OP*7cQR^8KkooYwC-aeihinH&7$!kiUlv7woL0tv)MZ%?kOj1vA_7L&nI)Cak
zP@IK`YYt~NR&bAkmJ04u&_uz>Yu=`c<BBA?5_Ai)KFt)|%L+@Kxj~N`SXu~Yg;$z>
zj{<H)@+!DrK`Y^{1t<UL_-7jhZ58Azct8Ocg0cd63fd{o+Co;oy@KTrwIku;-u*}O
zeTp+YJ1HRVprE4=ZdPKD>*2Y+v5SJP3WhL$HcCNv1$`B6oOFiCL$slSUTnD3jY)ba
z&RWU~W1T{KEBL5wPRas(#5hdSU+OtXnmIs(pC|GMvO_x*gnM}gi)6d$EEjxKL4kr1
z3LaB1RB`5wVNwc-UqPE%*(AJ%i%>EBBNdDivp=C=w2*OvV+6+vvQ{+6<HBo~%^I)Z
zsOe`nJ*i-Vf{7w$@G1J3l~2+mFK3bzO+H1zR0W$9Y*sK$!E^-+6)aLPL%~c1FDZCg
z!7K%{MgMvBOCo;`^S|z$OQX&4KO;?hmZ`2gqu@COf11t$ODfD$@PedzQE<M3dU-kA
z>%rE&+a~7~1+OZ2L&2L07AX8n&_k=fu3*(4-q&cK>&{k%a+aSv7v56vwgMXe9qEPJ
zH=J#2-08qQCS05Pu7br(rQlNqOBB4PaPKNsDp;!EeFY!TD->`?37vtpUB*$++tbkU
z_rK=-zOOR`d{V@R>{A6FE6!MEL7yn#%61L``Xn1go-x9|TESXQ`@9QCllT1LYz18}
zoI0Ng*`T0VUuR5FvQYtd0g!A_@Hs~cN2r1?SQ&*oYO!0vRt4J>>`3P@B`@bI1>0GN
zTTaegkk4{=@?IlDl^(lC!CnR5Dmb8EpMtN&s^2JZkIm<(Nx9;F1{H9&r;)#7&)%0w
zL;XlUxBTBbz3=})<{t(r=jM@L6dY8bDF`b#q&TZ#0}6sNcnie?SrbJ8l~pN@dzxtc
zkZ=~kwe&it4l!4fvsoWcR6$HZoSo9!v)IfxSed@g-jjp^Q@EvI!*$2_v<$f|a|p9y
zV-Is&)3qcmgB-2LBxh=}8YdO>QPEe$uL^!sa7w{x&W9>0t2m?Jtb%M6#Z;VA@VmmD
z!p^$o^K=^p|F9!`1s4@uQgDZj9h1-NvVuR@Oa)gITvc$5p7UA(<<~`Ff#tuE*5n})
zw`ln>`Kv7dpCY`i;EZHK{Zy*ISmKSmzeSBg-ZiSt_5Y{ft^$|ptgJ4oB11(H)fqm#
zxUq}#Nv7(o?q<(ssm}6mR+z%#DoUs*tD>Ch><B2SqO_1wDz@bMxu1m#_{*ryE|^_O
zXJbow)!D_yn`1>46;x+;8!v8fqlEXeDk`d~@TusaB1c6v6)jcVrvfUftH@R1RvlNV
zp`td^s;DW!TB<X9bFN?%uevH4i@ctS`YIZz&h3N4u%QS!bvL5CpNE^psC<v=4B;lK
zbF<^ViBt|vMe|-2&4jp~bapKAYObP%>Udp^={YRUqk`kztKxndN_EB{$3klroHR1V
z<+o9teQK1n7t&TRPYP<6E{?JJD)<cZfC|=-ZqrdkCu*wBVC1H)2UT=Yoqc57vDI0{
zx0bUbtgA@!Wp5YNx~q7I8PYgo^Lt1_S0bOhr;1)8>@8?mehT}k=&#}{728z|P%%)&
z8!FyZF-XN=6;s&7Du$?dM8y~tV^!y_^r(tqDu$~lke+2H4pp6P6n@p&B*oweQR8FJ
zC?Suj7%7Bl`M^W@XcZSNKMCD{!f`4d7lrXEo>1|mxCggWO%Nd+a*~jVf=_XnB%Jw>
z@~2fyR{u95_?$LP#dH<Vsd!#AXRvG7LA^aQRdAU)uURT)3!jsg)JgbRhi6sHl_Wby
zJN20-sa{s`ii#Ihz9PYViRGg&ALm{YPBlIazA6oWT_k-+=PyvXmEL*e<3;bK4)HBo
zNySGhK34ILiiIkcsrW#}A{Fndcu&Pr6^m7H!y5IMh)L=EEQ>+5kw~MxFGZAXo3rVp
zce(03h;l@euTZg41<8kkB;JJo6Z)`<jg-)mDpsq`W9K>*Yv>gTXD1F<&XcT_Afs5s
zdevE1zd=g*Oprxy=9r~i#TV?9wmDR*aMh{gmnybOGs$_SI&qt%;(GoaDt4+kui}D=
zT`G2~h^stv6?;_dRdJA(SFumU*D8KeooDQCB;f%S->KLyoOymrvrF5*m%jKx@U5o*
zdshFEHNWaO5|jTdnfxM1vlOZbNG4GgK^2PdunJX(md-y!pY#>5ptUl}bQSp>3L=8s
zmP^k3W1RF#W{{XFEEUI89A_z<rmlKz6-mj8v3%4&tm3HDko<`HzlZ+;VzCn{PD*WA
z)~_mlV>54f&#E|;t_fX*QKuz%Mvy--&WRc|e;2}O^P-ANoL56A7s6!~S2)&G{H@}u
z>ipuMDQ>B_rsBHfaDy}9e&0>ue~`<O6uBJ>Qom(xtN2rDdq<EH2$TP#;$IcnAruSY
zKNWY`_7E~d&Ukl)P*g|}!F$>`p1^%u+%B3G0yk<g$i0^IQf^Vq_vRE2p_FKr5M*r0
z5XQ)u<rpj-at31=L8dAnLWL0M_H0GP5GsXGEd+#|U}Z^ORd|&Uo=NyAWNtYj$BZP^
zLyjBpswJd`U`;^|1j-jSMcokUh2RdMX$bX0Xb?i95E_TjFyy?${paUw;^_A7#&?R|
zBN7I4g)|9a%ZUsI8AXL=A?Mw(CxliZ?iNS$5L&R>gFW|!z?UX1L(a=kDlBQ?1eYfK
ze3jEWgtn6EXi>K}1mgW6v=PFuaxj<|Lc0*!hmaparw|@wCL!ldx-WzdAsk5Nl|P)<
zF@*E=vbn})SZ2mok9p=NeVs$jUuwzDK4O;;4nODNRlm5qdk7DOupxxcXn_!Vgs_-3
z454QTy+W8THR&BfpAcpU?;AqD5d0ww3!#4q144LI<bS%e`5Jd%2!kXzIE1fm78$}y
z%6XxWgq$~<eA~qa7Kj2{Jv8LJyt`bc+VBuYgfKRQaUnbw!pIOtg)lmV)-$vD26Ipe
z7e7B#{H}9m#Tdzl1<`JghcG^bCqj5KgmpEXGi)~}{EV8wZW62Vyik@hk^SCk=u;s~
z67sYlC6hy#lIBx|OcR_Qa^9m+VP*)kLa14y+H87J2+#7rl=I#>Y!_EYguQd66)y@t
z7sB%)%nR|?sQ-nK^WuAct2`cDOeE*g&^%(4HF+t7m#I(JI@9XakaI@*yCE!^gasmb
zjZSjK`+5j(2zgWREy1@1-w|9WNX<nd{MagogeNC&8sm8{gr)2zIokbw79=l}mr3==
zKM=A!gcTvI3_0JUStk<K>O&4jI?@d1h4sfFe3F*067s3w>JZkX<!goTV3748=V)S{
zcFvw<+KnNc2;pQ1n?zwV2SNy+hww!Rg&_n&_%ej8A$%ReHz8~jot+`<qCG>{F5S8#
zge-n=XNvP;`t&N_?hy9K0NEP?i{r7te3Q$9_K7mTRK>U0?5X{1PF?o_>9ubKd1m!@
zX&?Ar3i^Sz62jy^v73bdB6u(@KO}@j1Vd0l&_jrXpmN+T&))q<k#Gon2^$Kbdrh~-
zI-hsG62jAF9A{wlLO8}@JIE6c!3a6;*?G!wsm9KCwOFDVf+d+J1nqQ*Ne;s_KO*F)
zAbtM0<W^&)k9qz|w-k9z4W~jl9m4Gp{uIfX5H5yrDTK4Eo=AQdyujfvgr)N&Y9hZu
zb2)@7R37IX<9s!QYa#q0Iy~2!N3~oRQ{M<Vr^Ng>#6!Fp;vWwFTO8oE-OkF5+U`3c
z{1rlmhD^;_0m8BTcL@J*D&yoIf=hGOE%3U_xvr=y#rcJTA{vTHRO8ascu}6EAzMQk
z4P`YH(@<PP-P0K*HD?_N>&B~u=1h$HvNFEEkXK4WX$>U2c%n`@W+kyTG*l3IkMrJ&
zB(>fA-dQCL3^HwH(W#=Lst`(YG*nA-XsDj%Jka>(!Ol6-wKQk0t}XI9nzIa&S6v}f
zpGE@>4K@4{!@(FDX=tortcGzK?$OXh!vGBfHRNh=Yv69Id<{)C=T6Z|Lu(DqG~BD9
zxkxB%A!NpAN1>&L`y}WQJY3pEp;yEG8rn)$9WxzC8{um*-FNcbc^cY@a(ni|XcWnE
zr*s~m0X1~c&{0D-4c$ejlZMV3x@g!~+V!A@>wf3X#jC3ZmZg_=rP4m6;b9H^HSnIr
z*d7{sYv{wQGF?42^pdP7zm@R!72Z$7rA+4zczt%psdnyCw*T^p3`*GcK^lf?@M{>X
zVTi_4CY)y8DeWrI@ThPWN=Yr-Pi2x}8b+~P4Z}5z(D0asLz2%(4J~ayn@pXQS!T_4
zZmeUZR!sZ2hVdF+)v!Rr6B?e>FjK=U4HGm>)G$@UGz~ut!&4e2X?R*gs<F&)vQ%S=
zNSI;D0@F2YDD9ddQ4~_Sv+XCDtznLa7iel}@-rF^%+7dDy5m`q%oVKC&;2}0Y=(In
zf*wCFT4TQ0^Cb;0)76(`_i69WZ|{DEb}r*`oTR<`TzmIxeEF-PWEiEwctgXR8p5oY
zhPO1lt>G&T+cmtSVWEakG_2CFNW;4t-q)~<J$pEJv4;03EbAg)B9bAtpM0tCjt%jF
zhUFSQ((o}mWpVxrk+0M+sEhmh;oJ`;xUO>nlg#eye*Qvkl?tvO4(EQVVKoh+;WG_u
zMCaLV?sXd0YB+l&_etANWRmq7C}$G#jT%1J@P&p=8a7LkAK%O0B80Ke+5Rsj?N*Vz
zo6cby^OOqj(6Cd(ehuGh*u@#+MDA`4dwALY<GI-^ZZCWJ_uOwJlYJa_UEE(YNjYE5
z%elo*=H5J-dqBf?>~Rf0vUL?)-)s0S$IXQIUT~`VlO!zE5D@aS;4c~u3OOW5<zI8N
zgTfUJs*qVOSBO1(DK~2S4_wY=o|**jRB=Z%L^-B3+|Ury5Z7>qNi-N5Oby309M@oJ
zNN6}Jtv+k}ZH_yQFZ;0haBh-Q-^pAOR?qKpY<S1^zj(|EmQMOl&=uJP4JSDPCjGox
z3ZBw1QV1odC8~SUe@?^iG+O(d%Nov0StW|PE(*E8nMB;<k_4GKqndYhU(s+?B-hgN
z8A<;i8g6R%Ps3dex9Dcw+;=qmMNjxW_qK*V)0(b<j_>`g;UAHlll=b`PEBU+3ZqCE
z#lub)6b(Ddyt2Z`5S}S`taHInUEP#tOR!iNlPfu{%OoYjsD8yErNbx_=KBa7iK1*6
z<-&M0f`SOjhfyJnZV_~kpkf%6!f2?Yk&en?R0-pSFkTF!Y8W|^^RzIkg@G{g!+3x>
zhfyO8cNk5>s2N5r(P<P$Z6T~cy)f#edEGEqNak*p2G$Rwfyf)CWAn=S8i#RD7)?Zy
zo0cDFlHEy?G!uy@j8<XXE4+DHr-hJ~VcaJqP|kHvSy$^YykWFU>)ank8{y+5H`cAK
z1oOgpsG4KC_7ZF(-Qf$PLl}d@7!pRuFgi(8pD-RI38SY3y9hF2_b|HBfD)uXtQGfr
zD2#_iGV(-j4<UQHxC@Tt_DZMfEhKp&w{IBzg!dO57{-9K&T~@LL1DZv<PmmR7^A}&
z6GlN8L&JDXH2s1j1c%Xp<y@SOhI1P1=6<}h(=-m@krF#fkW&+dW5XC1#w3w2__&bq
zVW<NfAEV8m5XqBaObBCQ7*B;kTcwZ+G}_amFgcyWlrW|WpIXlKp;UN!7&AmNGmKeb
z%noBt7|*5kp9y1bnm-#x`*O~(<@H^Ktmo76c|vZs&Y2&^OTv$Y@p2figz;e*ABFL1
zTJvoo3&MCUjMq8;OYp69?3+T^J8Ptrcfwd0#-cFZ75N8YEDmFd@MVJU2`&|kOIzL-
zKI=s8%Mx5J!4-n6^U5&J9?zwFe;mdqVf+xrk729|<I^y<hp{7!)nTj&V@q0pZ5SKE
z_$-WdVXPNnyM~V0UoP+37{;bBHj8kg+zzUhcPw+-<znpTVSEwBmtkxT<EwOT4a>T=
z(bXF|vl%scRV(Y-8OE+Kz7?I_g8MiC!`PEfwO0t;@|!UB3x8RRW0rNX2UGbR2;;l7
z{`X;w@8({6JohJ&gu>9m_&JPUBzQ24!nEcgAt>hxgc0PNQ`V)3^Q7`r!_Ga0eGv{r
z7fnMjA{Y~lhQUs!eq4gzmvc2K>oUWzB$x=p4kMY4qS|5MmoDdW8e#Bgn1|=!co-+b
zsHi)JJsHNY%rlHzoJhks6~_56E`)Jf5}p-2BS>YIbuNtGC3r}>J2mZJ4C87T*TT3I
z#$}1+Fu5XxT~AA17k(p*KR9WWb@8H{Igl{h+hP34d0R)Ojyqxe6~@0|{1?XGl8Ord
zgh6GN)l2MuHw>4KB07rdC=dx9z*p{nv8j0`OGmbjQaVcOD5j&hjuJXb>bPI@Ie9YM
zlxv+V=i(46qob^j@;WMrSyBa+)A7*dTt3F6e49yV&q}-n=%}Kjs*YMZYU{|+QB6k;
zNeCU)g|KU$s^D5N04XnJ+L}6!r2VIk=+xIyR|sS4Nm=Zs209u_!<j>49rx(y5<%wW
z+$K75b?nixSBG0iQyt@UJTA$b5viu*ULDPKw9wH~N4|~+blj)I!&d8Pqob9M);heB
zB=s=Ba@nW6+S9x`@+7LA4&EtJp3{s`BBbWy7ju2WI|+8s(NV`B=|RT6BjiDy`>mWl
z?W&`jjsZFb>gdj<Ns_)g9@f!AM{f!C6znC)BphGF=gPbKq$MAVq@RxdX$kE)Ncd14
zejS5#4AJq3NFJp#&?cOpWm;gPIQ*I6Fdf51VYH4BLLL)j6la5x!bb^~TAqC{v*;Kd
zV|DD5w0zp3+ISsL=vb^{iH;|A9#Vwob<EQ-QO8p{rt6rYW0K@BS;rJ1PwPk-kjbZt
zWSZ`HK7({E)@`PaSvsDPC>npZkU8lf)mVXNb<7pXb8M{3m8#OCUEMF}cu~h|I$oF9
z`8r<K@rv-51XBgQs$+o!Q|`nuk{YdV=y*%V+Y<GrjxsWrzN2HINZ!@4h<zuH%C6)%
z?b6kq%J4lMOLeT%v0lgfI+p49P{&7->I1<Qg3ASsaxP9gD~0zC<6|A42w$UPm5|kf
z9EqRmc=tjs?;yEiAGUohJw%4U1|6U2_(I2*IyQ>_X2DH@qsqFrbarpi@wo(fZ|yHR
zY}K(%#}0O)$iGS}Gw1CbP+i=;I=gr2VDjA(MLF-SQzY#^9bfA_wT8<_@r}g(pyNj!
z`*nP)gN>r{f&ZII$M?cHZ&Uu0j-Pe>s^d2uzvwtfeI2HbLplm|Xgb0iSvrC`6dkH0
z<mAJIDf5QJdl}@#IY-wK(Gk@V6HQM0?ZmO^Ephg^aQ4niUEG$AgpQ*+j_I&<Bt`#-
zcp#_E!#e14IdT_f&U}pFbzH{@9VbPT?vWa^sUdty$7vl`bzIYNM#otl=XG4raZZ$f
z*TD)fNy@$H$;|VjL|qoVq=S##ERHq2!sN$u`E++(#|<5~b^NL04^g|R<CgCHYM@uA
z%B2zL<aZ>NdHyA_B+Q4+{8z_+oN^<`iQum2l#QTV1g;2*L{Kz>j0j3aoI6^kAW88E
zvLeWqU@=aijhs7RYK)VV5P8YS|L(b^C0IuAY!|n`o4dSlYE}|bL9n7=s=}2cs3Jj5
zl2oe}0U~G-LCXlLM^Gbz#u3~TLCpwiMNluoLyAya^y>=N5oAHBTXSkcZV*8ukvEK>
z?m+ZBk(*49J{Hj=0(S&WBghpUN@$#B5!@R=bCK|tL1D_B-WJZ_eG#;Yplt-62wFwZ
zI-T}@A>Ig-&j0H#D(6MeE`kmbbd=ck5j+rqFM|AZs_*5;BP~ETaLN+-gMyvpHv)y7
zCHPj-`3c`O;{2TFpnE8Sha>18!GH)?gP>;wy(8!oaem!TtLpA0NyzzIyKe+*B<;6J
zKS@6cE^JpYFalbGxeXG+AN7MH7(xqQ&LyY(kqDxaaA<_9pb?288pW^(hDT5sMIee1
z5j@5uQJk#e9vQ)?2+Rnq2u4RRCV~wSd=|mj2*yS5as;nL@OT8{BbXGy(^9=B1SbkU
zDL5hG+^p*iavm?Aia0+pNG3-xC4#vTJQu;#2&P3aD}vb(Opp9;pv{b6h9u|DVd|%*
z<v9^NLu-hfLe2*4+|-;;@_YpIB6vw+Ux?tv2+u)syglWLB&niPw>+kLHG%~ZydS}`
z2wsce^#~S5uqc8z()qs~!J84hB|$#_q-M@{(y?2cWWOu?J;B8hED^%0(k)pWuceXy
zO#&Z8uv}u-M6e=)l@WXr!Kw&86ye8$)c=U}@8af+ooX*7pGL4c9h<sIaSmS_!8#GH
z7i8O0Q5z%J6v59T+#JD{2o4DUJc2JG*b%`_34ST~RRmjwY!hTz?4#{zPNVILV7COn
zj$lt(zE=qAuun+J)xU{gzXVg0<hK#<S7gzy?(b4M5&RIrkHUWvWQ9|m!pF;BA~-0*
zLlLMEgy@G61Vj=PR0LDEo-Sowngn&aZUkZBta<8zKPo{!Omd=#MG%*u5y8=R&Lc{`
z>Ptjm^IwZ7DnyZF*F<nTf<GfTLY)YHkKlX+$0XIs2!0iEJc1KKQWf|uf>RPaD|lM)
zj9}{4oNCv(2yV&U=RyP*IkA*={Sm>X2ri4}b-^nUT#euwJ4GJa^K;ys0a(wha;_Vq
zK+b!|P2sl$*%k_U-Qf(+i9PBB|BB%62>y|%e<S!WtwUQemQzrXD2hf=DvHukWJHk}
zMKMX3B}kp@D85P0gse>Qw7f(VC57_|ggsRzEiWgetYB(lCsvH2QWWkennqDMiYigm
zj-rm}R24)NIYL-swJ1`z#p+Si5MfQhT2Z8`O&xY(-6-lsaZfr`{U{m<ZxBU8AyxmM
z-<yr2;Do@0yqZLjD+>JO%V4u8?v0{j6rG}I9z}~N+C|Ymik4B_7lk*9`=jtg(MpoE
zX5G@(;8Q{Be$hsv+6pqm)Wn__g-iYq$rrgV9s7Wg)L7`ivgGIagA_*5JBmJRV-#JZ
zJTVD9M6;XVLxSA}`Shihb)|kk_Kc#J2#1SDrS2eoqv#jKK#{XP{e=vmxzaUf4F^Rr
zn1+(4#8fvu62+rY6htvJig%+}9EG2ge-zI}@q84+Ir&F1F^Z=ox5uIw9mN>oBLzoA
zk(vX?MlmjmCq?*p6yu|KLO7qk{=bWLn;=nqSe+Eb(@{*1Vuna23r>w<ijdUf^fcj2
z#hxY3jAC{ab3{0cHJ8>s6UDPp%oXAPTO9QnoG0>EqIflm7ovDkg7XDm7JMm+jgooF
z1DR@p$lr?MwJ2T}{)XV2w29c9ezjr%-j3p(C>Bc8B0+X>s&n~o+ma~Wi{kSrzKCLJ
z6z@lQz7swYwPjH(7s9eWpbtootVl~%(gJ0j|7Sjq;*%)WMX_F@Rz<N!$fts<1^Lj+
zN0GI{>72}PgYb<}Y>GNF$!F33-ElUHe2ZY}k5ekMlrN*$8pVMqzKdd8l;<*GcNBY~
z*e;sX*(qcP2Z&f{mjpA!4vgK)xgv`FBHS0n*FwHHk^A*==b4Hg`>jZ*$w}jT;Xg(3
za}+-a|B(}~{M(%RfAW_o4yE-E3Q0NY;c~8E6nQ6e)hIf!$-)_&a6UH_g(eRtVL?6h
zpz>ZmA6NJfKrD(li;%30C=a}HGFf&s*NP$$#p<(Oa!RhBaD=v0h9vX6Gie-+;uyOx
zhA(3{9>s|$HpkHNSnkOver4ChoVn$<C{9H&DTb$GI32|qDX41<XQMb5#a&JaG5jvV
zKccuP<a`ttqPQshQWRH(To$|{cwG!~O*o6V9>opeseig|3I8h{dpn9h)BFxS=e>L;
z`CBCaMDeeXlu!OA{DpF^A~6(=p>YiN#E=m~W(-wgs2W374B0W1ilMYLt(ahm7>Wx?
z{l&-3OG=O~R3?V9F;s}5VhrU($k_5RbdNf}6ZwF|U?q`PPRDXQro25ThH5d?ilKH4
zkk}e&o$5jcm38sPS5tVrtgDWYdNI_G@iegi&FcIG$|4%X(2y^GX@8m9DM{UP`8?Jn
zhTIr@F?5K*9YfO??u)?_L$es}Wml&2X)dHi?0^3@a1^I1&woW)#n3v2ycpWW;Emz_
z7}~_pHuk@}Rcb=!4>u-BIdJ<J@+G$i1XGVv?d3L<`t{c_h6mH-c8WQ_j#EE`JBzRj
zJx88zyU~m>JQTyjF^r61R17_0=o!P17#@kCR}8&l7?{qdPYnHp_f1Rqz}Y{B0TN8z
zcW8N9W{^k*3*Jro9~Ck*27e3%!l^@V8J6ZFgba@%Wzxqa_?OHBqlJ%);qe&8r1i%N
zaSe1jXnYJ$rsYr2bm9*aVwfnxr(&SRcr#*0Q+aX>Q$+rf;M5pqr_)Z0VS3DYfSi$*
z%#2}{@KoA4!k>xZ*%;=gbzWfp!k>>}o{-cZ(cR0sUQFxE=RlBut6q-b6%oD~!=f18
zjbT9yuZiS!!FOVKL&%$gtngbx-j4n6w=ka&7K$V_NiL3Ir39D6@Lmi{)2Wul@IHH!
z@4V7aWgke?a={hp+?fA|BKb)0W5Fe5U3|H@N=)%-468-BMsRHm>x8Tq+#txg{WBpO
zW7rf!>bZqEbCRJkx5S`Vb$?FZKAFoG&0AyG7Q^ls_Qdd244hZD$58pOpRYmtwksgn
z5yQ?HUR|8eYgY_=FXd7=?n3U~7`~xH9`^5x;cMEntJ@>;wMAT<f%nJoZ4BcM`wzsN
z-;du3ejmdRG5i?APZD%jb#uObyL=WW-k(L%wV3Nr425iI3^!s3#1M?(G6((@ufm?P
zbNNY~Xbfr$p_sG9TN4a(U|ui6ATK?JhzMI(adt7sVu;7Et5^oV&uGM8#$d&eh~a1q
z$C%05=5`FfypTh}D;dM#7>>m7-z-P6Us4?xwUaUY8p8?Uj5<&(qv@*Vzr}Ed!#0Lf
zoMBcqKOMv3;dp(x!_SF?<N`<fe|f*ha9$+ji#ruu<j`K4&DcvKd_OOT4ZI@Fyc)wb
zA-DTxQ}{>B*)5n8$F<jRGlp9++-6qQ-2bwYG5jg9cLb^Smyo|>_$TJ<SfBc6Ch=|z
zt~koaQ6Y{ZaTJZCbR1>k$cW?l!~V=Tvf^02s(?q9WyhV9;#Tx<mlRS=uy`CLgfMFT
zzwLYO@|TK(*z#I#TuyAGyezACGq+qE{21k1H;Weivq;4_s>D$>j!NmYm4&>v%C+Gi
z=bX0**PSEjSm$bSaO*DOs2<1k!I|VWL{d|*Rvfj3P+mvK=?0ng<2;`Y<xNyD(J+oi
zaeNrZM{zWcJGOc{j>&P{6GsyX=EgBJ4u2f(IGV=MERK8QxGxS*9L?is5l6#SIZV|u
z?ri%d`KM`Shat`v!&}ACI_{XUr=VA`qu~8<v=P!)Fi)_ZAobe|$rpS;&=*GsA*mke
zB%GQL#?e`Lm$am-kZy5wPfH$(<KZ;#5l1Vp)2F>y?Tl)@McyZlzH#(R>-4AP2e+dR
zuK^+)C^$%Pa2!K~JR<n0V1eM0!+s_i7RT^7M#nKGjuCO^!{{`{V?r29J~EC`aXj5O
zdv667gV&yNbjHRpE{?}V?FlhEh2!ZJPdPpEq(~;jF)@y(L}!vnj@HTMmC~6)_lRR@
z9PdjnPmAM)I9{YnNN`3RGlk3&d^V2RLg*E9ggg_+!HQW7@|r7>=jh%-<_V@;YknLr
z#qmZQZ^rR*9IwRjV>kEfam2g1Uln{!aDm`U7xO45|FVLMYG<mu--_d%I2Oi1{<h#h
zAGBE%$GdSXk>L48zQwdp!bb&ilJ`WuucC_*nt}(6ER(jAf534kd<6$)!n-n#WS#7k
z?|mG{Cp5Bw$p%)jcj6dkV7P(Rajc2suQ>jWV{IJk;z-0{$FV++4RNS(gyQ%tj*W2~
zqNG9grnqwm$ro%w+&NlgGe=EB_ZB+LoxIQE=#t}GH`B8<j%{&#9mh9ud=<y`ICjOc
zJB}SRLVw@Rxbva6HBH>)p3d$?h50;BV^17=<JcE>&emA7&0BebpM+P((!Tw1d>h9P
zG;ACP;`mN<z87Q;FMZ-I+?_vbqi<F-_fK*B9LF#0IM!|U|IR9@u+hidQbA(0zPm7v
zfVAR9Lw7I^C5~t2<+o|>V^E7D9LFOAJbD~CTRgM2c*bw??YYk#iDS|LPc)7gn;_ie
z^imy$a7G0mD<E2NtRCR`?65x>$Kg0m#c?{0BXOP~hF|0OEskRxEVDdsmGx!q@f>&j
zw%v(1{><@z)WLl+j<+WkkpHmB!}Cw}ZuBf!<2e(@**Nad8P<3@e(E_F$Hh1<#qqnO
zJs$_QdU+zs1)Auv-+0iyWSi$QCz&0-+?_u1D@?e}b5-zK9M^^15TyK%IBur-tvGHA
z|5K11M1^syJv<uapE&-FqoslS4Ez_zT^8EfUB!UQKoJ9#3{*BSq^<j#ot~lwG7MxI
z$TCpUKq-S?k8(P+xPcM|iV0_0^RUyoyNhQL`!~)mZJ>-qRWMN2z`dni<qVV;$)`I#
zSp$3*4*Lf-_I>z6enkVzGKwDE>Se+ezj`;1C|KLy!wjn$$T3jO01Wi@x<@=%P~AWc
z1C0&bW1yyiS_bMFsBfU{K3{DEbqv%sob%-t`rLm9@{LIa%#aSrtAT-r1{z7}lO`2Z
zIO#p#qu`aE1=~WtCI)g1G-C}7yw%9<Ho$Z0nu=zhdj5}l7Sw9xYi@w4S{R_46*=Pn
z`wI`{)sOf+23oOn19=8o8}J&q-#{DIq>Y>PZ*;$dxgFiDkN8Pg|8@r28+gRPqXzN~
zJYb*~n`Xdgpo4*jSdFjqI~wR@pqqh##oZ4Y=xm^ifvyG$c6fGGa?jlDJN}86QIFs2
z8+giF_d`#21NOfBPx5`mN;wC~K5U?efu06NHuPndcmHy~Z%27|9|L_2F!>+@{n(Y|
z-2){5{sy*e_wb?)^BgEbs*w+7?;D_e5x;Z#iD%kU&*o0<0x?V9Exw_22Di^|V9JZW
zUjO8cFz}cGt%&<61N;W=NCTq{Y`B&;N`kx{P&mfGSOen>JZ@lu#8RQ9?Hh042?I}x
zr2i3rN=Te25=N0T=Sh-3k4T+jV5)&{4D2^B&A@a69~f9}V1|L21{N52&A==Jvkkmp
z;6(#-3_L>zyO=xAz_ZLP-}#vPTp<lBxt^ns@gwq=a-XNqS8<W>Q82fXYrcV(47_Tf
z;~@9T2KX)YR}AMd@@}<iM1FC85HqRdns6rLbpvlu!N7Y4-lPi|SR}<!?QO&P;`~Ab
z?}+5XPqSGKelmXaznSl{&I8?xB~NNjui{!N%F7J=QOPy-i2r?7TRvjWBXoEy&k6%8
z4SZ%`qk#_%e8i40@JXsl6<uAkvU;4!SjF*J#kJPJI+|TdTrJI9L$y|Uyh=XdSuaW0
zoDHHdC@YI?@h!zB1Do0126j?jCwq&5&kcMbIxPK51AA{4*(O0YVXI^^r?PW+(N_kx
zr?X;kmx0{|z7~Z&hI7DC>P#UTcCV=IV=GQ)P_yG|#~R-nIAGwSflCIyGw{6u%Rs`w
z4+ef@j~fUZ_{qS}l9eJI@r!}NbSn-TI3&U+%edI6fPtX&BhAiod5n^3AY@?FKsPJE
z{-vo0R&wc5lQ`!Jj%WktrnOnp-yIVnQ&Go|{7vzVSx5ZL%{GuU@GB<=1BWH{sDWb!
zj))GOil-+rA@R6@6Kqrw7mt)VX<(1|8<DZ64E!!>Pa8NR<ShH~L<XaHoilJ;N<S}A
z7X)b{n(MNGD+c~C@Gpf1t{J#(;7_UWb+ODJ25xW+UdrV)e<E&5+FR0a3~{sh%>Rx!
z!{3tXFTpyWX15sRKD{FQKW0MbF;UWl%jCC}v9|-VOvmAin#eGbX`*sv7yakae={kp
zFvRy$Wf#+Cn<!?2q_`;4wu~)hqO^%}CTL6=wv0sinq==E<Sr}x(6u5hdu6j$6-`v4
zriJnrDx0WcqNR!ZOjI?Ur$JtgP2>o#CJ4dmf;9wdny6)>w($CbJe;kLiMl2#PR^+(
zlAl{RPwBiGNU))aMnb4S;XS6a%Dst+ToJlWG&Rvo`0GdfEwAR?%Lbb8T=u?y+1uPi
z_22SFo%J%|%a^?#)0tQvHqpaGD-*3vcum}I;sFyr6KzcFJCU*c9%tQtTN8OE4i<M-
z+JAJ!-_AsP6D0Y9B$RhB(a}UV6WvX8GV!2PtgDF$_4BqJ@pqOW7ov9&@>7{CW_!V(
zy}f<TL#DH&pKIV3#PYc`y{Cy@CUn*(l-Jut9~1Aho+kR5=x5?dW@w_ni2){tn;2nY
zpou{y3QP<&G1$Zq6OWj9l*ym+a3|FG4}JY2z9z|Bo+|lVGPmRyPrWrfJrD6xzF{VM
zkMdk8<*Ps1v*Tm$V<twL7-!;f)7cX@%EV|BV_4{?K5m#g^n!1!i5;W-v&VRN@*#0N
z`>3Y-2@@9<p{L*33H91I56MImPnno+;w2N4OgwGkSrc<jOg1sa#7q;jOiX2`kM!`G
zE@T>=O@cEdIA(|w#f^2dP0TUzjOiS9U3*dXuxXw>(>&b&a`YwNbEfkz!903hrmImM
z_wy2*o16K9i5E?j$<5@(le2?7Q?C?xnNcR*F|p9ZtF%l}_v<F!V7n6D1^iuE)cu-?
z=VVvWn<m~eo$Yd+reqh~Ez12e<ZqkK=9=YU?;;cLnpjHvU&#&eKwT3{OuT10=Secy
z^l%=}ug*^9y|KV|byhZYJ}|MIE@a|s6Dv%tG_lddCKDghXH2XyvDU=LCO%;g_VTPY
zp<FG(vmAE}@U1fODdp$9yqFJTd4T6S7B|?l-oyqWuGXkB9)}iYe<n@naXN$T+ANjd
z&TcZX#l+_(z7Vr)Gx3#)FHLNvZx?k=aE%_x<DQ)*Lp<F0Lo-&($k=IO7n@VZy~o6E
z(>bS<tzMR&lcjsdJeIvzqJnd>sql@7{U!n?f+oH-alph6CVph{VV;G<J>Qx5UQBdu
zdUmV)93JNRlZl@>HI4BcH1Uhnhb8VEmd)cUpR4XW#Nm+4<z~G?(P5NAlUDIvt(&b0
zQ3XSSJm0d{mE5po(r0FN#6;9YjLs~Q%O(sHriqix(}YE9m^_&T$0XJ^afBnZwzDrR
z$tmJ$?qR{<e`j*1Bpdtl5r3aa9>yLwaUxyMXmQtXCQg|+%PGagX%lCprR?;AWL~vW
zz7}nV?j7a%oz<)9KF_frga<V<c#-4UbWV-tHARpPe1%h}iEAdVbFQ{f#B$vD1`TfF
zrWDFuQMZKLG4Yp)+a^yqaeA%RWM`jXY9rp?Chn$d_>Yi(P5hUZa0g#Xt*C_z3)vQm
zS;&-vm;+BerB`QJ&iTN%fA<!*P{Kl4i7m;Q{AzA#3uP>n68_WrY)ZIS^de7B{i6u0
z!Tn{-q=Mzl@SLEEBv8>pCC>jAs#wmyC>t$QwUA@+^bbt7P|X4?JYd0Rp}K_{7IH1P
zE!4D7%R+q%4J>C2mYsmw7U~G+mczP2>IpKIb#7=m1GBM(dn`1Py79nOZVY7gSS3a^
zv9ND?Hb05p)Iu{0_gU~*xK~m&x6r~u-_y<+ye%zo(_)*M*}vpw(#bWkMk@<m3-?=&
z+qV|Wym-Rf#zI@>nU&Gr0=Kww+R3x{$x&3vaO}p@m}!lC3#koy98euBbhI$o;^8Og
zWZ^*;WTB6R&S}f{u+YUqR|)cS@ZHk#?iL;r{%~5-<VumA7J6AY`d?96yF{@JZb0s9
zp`XRiC}W_7{%Ol}Se`xhYA!$fPAd(P#?l(x`o~m{Sa{UJcneQhD6lZp!bl6FM8|Jo
zxP=iGhDq?m5kKuVXma)y9tB?1^_bX!ts8A&jD@il##!JY(iuyfY&lqnk6TE6(VinW
z`MZ}Ab$a%b7A8m&CR&&z<S9XJ$-HyKPpoyN$P^1xExd1GnT2T<rdxQ!!kZRmSeR+y
zISbFzZA!RiS(t5M4x3Qa{d>`B&qzJz((B|P<!9-ijh)S^4QjjDHS;XIz=ABiDrR}n
z!h8!aS;#6~jXm|U<!m2jyZ+41sH1twxs!B(h1V>+F70B^(t4C{$;#lY$cDdV;T;PL
zExb+FE$U_|ypJrh@UDfW(jp2M)6K5tF0q`gxZDEyo_NBAQyGlnHKv4%o%n%;6&6-X
zlI3*xE6$fJcztML6$cATXQz~KeQe>|Ng1D5m>2eP!lA-y3u`Q_v#?&G)>`;!py$6+
z8GFSaHdr`)-uszk%dSu5*}SN0lZDL|wpjSwLej!v3tw3H(!viGeiY@c7Is+JDSVrS
zuY_zDWF|aXd6$LV91GmlYhjOty)50rnVnuv`}>&B2oHC-mpbeHn)W~I{l>z6A>?c_
zZ(h7*e@7pXlc>L!eE8t;lZBrxs1`yNevz^&w9g4xIB4MzJt51nSRwo9g16etY+}%Y
zBF5yA=67;4SuxE**g~8xXYrJB=cyw?PtI_To_^<aM$|&gLQ~aoLXOQtBR!_LfkmIO
z@YoWMyL2@U3ZC6<Th0by<LNfMn;+revT()1RSU-~9A}BNs#NcUboy@=+H2mE7Jd~n
zvR)n!k!DqS$2?=<tcBk#oaYQv(|yju&GtEs$7bh`^LYQtykPOL6wn%%I9H7Fd_C5~
zZ)!wpx%psl*#bW@!fMmsu35Nk;ZF<KE!^NlG0D^5$Lv4EdN&1cu}Wi{gPr*>aL2-5
z7XGtv*TUc8a{thQvoh#osowurYR=u|ynV2eu7opN^5S^mEL}8#jD+(%$tyE~tOT+X
zJeB2tl80(!Q(ioQQ+IPnN+nP_fimY&_B_fYP&R?VM=<0F$|X=ffkubX_%JGP+E3s{
z0)He>DS^rf3`yXT1ga!ZH344&9TM19&7G4#tpv_>b5~0MBB`E0jRa~6A37SZ)XGkw
zyOOVV0(BCon?St;c)D*M6CTU0pKuOOXq-TU1RApRgmb7VzbSdoTLtU?&8(E=z9)eu
z3FIc=PT;--JP9;Spc$L6u6YZ=dznNCB~_35iMdDpEz^<*kMcveXf44ug5Ct~Psa{8
z>K`Xbn5u08vxKv5?WBh76Daw(CtvV^1aAFXgi#$6=#=2GEzS|#ydD(NRj{*Q7r~!)
zI7e!COQ5?1$sZE3wq<4yAw31_yqeQ1f!@OV2=*21C&*O&6Bv-@0}~h|d~jOQW1a8O
z1PT()-+ezN@Z{7sLlfALz-I~g6Bw4j@B~IAFq7WGqcY389}_Y$fsqO4=xJV~68uWI
z!^a4Y6&xq{xZrp}Dm=mb(|m%E+a<D??NgHHqy(N8GFg!FDMF?uFiptxw0uUwIi-^d
zvl5t{z?=jR62Yeu`>Zr%uJEf9{Q4K(=Ms2cg7XBICh$T6FD5Xb6-eOq1l~yCWr<>j
zuL^lZ&~#-iNXuUnvN*#j^vwj`PT(Dpyp`5mn7|_8?<PPsrln>|e{lj!B<j7iGNaxX
zzAS+c5?C($!vsDOvO;jB<U>tfAB$vF0-p$>B$YpLwMf<ou1&|T6S6*?1INh51P&zd
zT>_gD*qp$Y1U^q-djdPeTwf%xmBTH8FB9N-sxM``iTr){6_ZTKczCsQpzHKY-kk~T
zO5p1RzDZy=$68T0XP&(Y>`7p1GLMfpL{2sP61XzSIoxA^0&gDmf13b*U2-ZWC*ecF
z_fqH&9OEA~x3)R|_J8$W!H)^FotQ((&k6jJz`=y`o4qiBfRICi+|M3NKuO?q!udI@
zCY-6&P9T{;h)p}`)da)LdB2ZAJ%I>Ydea*fj0wgC4M9ek30P^KNH`}|Qh1nC#9{C8
zg!3?SB!LN=Jx3Gxy@UIhAPEokDqhxoB7u_$kns97f!~CmN=tS=pMQo8`M2nMEi=zb
zR_B<URh9S4=Q)YJ;Jc8(MIo02FAH7~Wb9QT*95O8u>Po@!ke5%XsaahlDM6~pE3v5
zo}Iyo<xT=W+lYVf`zwLJ6Zj{Ae>pU4JZn3DV*JN$>gS$i<8A^j8%1msweg^h&Neb^
zWZJmThQ~&hjcgnBY}B_=%tmn=u$|F8{U=We+c82_8zpU&vO!5{8x@3<5iBc6c{w5F
z1^I=tib5(0Ru-gA6&q*Pcu1IMj*V)PIr*ZY1=VfmO;ZiQnu4_iYYWy9q(WUbw!e?0
zfsKYXcGh#}+Gu2>v5h$u+)Y@|Z}PJ@dsUtSZR4WP&0zKI9->>6n+i4)yjQTfU<*O!
z)=~&x)38>pY~<T`z{Z`RueA-Yjr(on%<#0ak!OSNo5<VR;43YXb`sTIkinT<+bvq>
zDch&OXQPA7Jy5=mHcsx&FTK+_roNL6y_B26E;hQ_c+z%`;_qgoyN!W12H9ZRhivq*
z(bvYq66|54CrL3Mqj>caVQ<!IwG;Gh^7gYq93UOn-^R6yZU%WBecv<K#t<7LZH%(<
zhz)C<hu5RhE|LNpLv8re^6lMy!_s`XkP$W>6T(VTpH>=e<FiHC&itRY+gKap()@8D
z;{~6P`Y_1^8xy6OPuZAiW15Xg5`5Zr-l;L?$r79*Xl(R6JTL!DWB1on3#Qv3&Jdg_
z*sY`U&*yCB)6YFeaAGCbTpQ2X_|A5|TlBn*c{X-Q(J$C|(Z&ZhmfM(5iH)~yyu*Bs
z`d_xOz{YDf-fYGrS@0@7e1CrQsQ=ti|Le?lx91H;+2Gqf*T4dP+K;hs(ctTy&-{&@
zpTCeL_Vc|fxX8wTNBxzLISpBCV+nh_px`|lr3Vx&v$0gj`+^I;@G|Ph{sqJpHdfl$
zXk(L&52f^vZG2**(vt-r39cAWz(QBqJd*+IY<wy@tjuZ~YlJg4c{6W)x>ldr*kGgF
zHqY4sPKB8dakGsrHomg4-NxrO7Vpph!p4_Ep6QjtCTyhx?9boEd0>r)LGqhhJv(e%
zy_q+^TLIsD?zGXix_{>ePqSnG-82;6Nzp7e_Hh(^>G_t!VW;P78{g2GkNN2p`$f*E
zO_kk@I$)z<t%u}$8>6ece-I@3QOHk%KE?Zsje|B0aX{H<kwnWR0ycs+?n$Ca5(*uI
z(}j)mHbOQujwTzw+6Z$f*)VKALZfUC-?&)?5gSn(r@!>ZL~_mRj!Te|ulsu}8zYYS
zPe`wAeJMX-!?uyMao7ffypGsh;#-j7M@4wd#_@FQms`B+4(8KJzexuzXzM;};}r9^
zG545%=`sHq8;Ngye7#FN#~Su?s&v`ozQE~-PIWT3Q4*JIT((griLyy(pL?&^_`}9c
z8k|Eu&wb6tbs^SX&kZ3hzVuLj%f@Za;YmE1>*h4_r;WdD{KHX9zuM{H^_P&IqYFmv
z&i|L=eRuv{x+SOFzCQB5Tl!o{1bY>{+{XzPO(G+SOv&wepRbsZEWzv~K0oGXDaDg0
zkwnQPN~H=-I&V=a-zk`JpQBSQiSkKQPNGWEdDmQjr}L7xLJ}1vxOAnbl8|BpJXMpZ
z+reEui5f}g=8}^{H6i2>!i53dTf1u}Q9B8eT1gaZ<0fH-#5y9Zn?yY!l+;h6L7F!d
z^2W)$#z|)x5*Hc~bCYl<o%>+(B$_7CEQv*DGWcrj-lX%H0OICBZoc&(-*ThK&qLhz
zCE-cp{v;-OGdYd4O5)d%es2<d5Nb_3?DX<G1^n5|C_Z1cNjkqo__WY2iS|i+oWv(d
z<R|e!5@VAXmxM2g4oUP)qF)jnljxL0mn6C-@gReDi*`<8YO!kPhdCcM;xkozPIk8>
z?3LL)lIWR4WSFNr-J_oSp``P}`Qapn%=3{@zZYA*EPv*3Cspqx`iMewyrb4Xi2+Fz
zBr!CJfl22FyQ^*XBS}zsP!fYhGDNUkTj!5f{x|z*()ourW4LF;aF0KU;Yo~0Vi<9_
zXF*%%|LVsi|Iwm0=(qflNsLN@gco(jNGyMll0Tlr_#|FV;*}(xpu;5b4Eur#Nlav8
zlbDvoQ~!so^8k{fc;EjWcN`!Hf~1EiNw}4GaKPbmWF+Uj2#O@h0xC#GL6M{a5+&!H
zqauO?F%T4xo1M*Rc6N@8AOin)o@KuEtNK?>J@x6g-|p$@w6ndl)AS$1GAP9}M`mGE
z76e99-@cSCEZ5%Xq*?fJS@?+l<Ec`Z4+*lZ)yI})LKdnQ$RSa3Ov=J^+9zjWN*1QF
z8YQ>1+lkZ2M~bINP;#EZ0?f=pfpRJ1me^-y;qOYB$!{kwoR{`2(KcH~WsaoJv+zY0
z=49c^EQoP&7M2j^Qs-r1K4Ae>92REbD~rF*!Z+kaRGBcv;ae+qRTh?#mr<8n_7z!J
zNv@eQN&J<a4Mo>vVQm(E%)+TGtjm)B`e7eC-i9n}lyOSll!eWNZ8D<YHh&k}!r)eF
z_6*aqoh+~;3$jb8z%I+OI}3Zrdo7E6yzVC-pdPgBhX{wWaKy44&B8JAam#Wd3*TG(
z1K}ifbwa{VSvW0cS5hBk;fxH2?$u>%Dp~kB3um)%PA0}=+XcDaa<=m_%tN*1Yl3W(
z^oz_|GXH12xQqUi@LN16Ek(FQy&N}gsD6cTH49~<8S#7Xzi7FZh3l5j4QX`pO=^~9
zm&ZPxSx~d!%7R<`WgR{X9_iILQ}rywvf!0zfx+2z`}k$DDs7V^kcFVdp)7fp`-MG{
z1<m59<T)xyoa+osGnm7zEC^?t8Kw%{mI-7~+8yd$ssyC~_p|UI3-Qgr9?IA(XZ~98
zPZs1?A>qea_%{nrvhbe_(vG$g3Z63a9E$mU>RA?^XPIBzoJwYbVqS$Di3(~))9+?w
zBq>N%kW)d5g5rw#@sx|YZbH&4gxu6T)R(AvsrjfcE67hMK$YZ8en>A!E<}CRvKJ;4
zQBagnj9RO9vLu0my$gy7Tw0e_Qb8#Nr4{qB6X_de6|~usRz@)&#Cota?KK7E6qHv`
zK|w_YS0@w`pTND;%v#k&_jWcPDXFZWiULhRR6(i&n}UuCIw|ty4pkM@Q&3+)H3iib
zq$@BMpoU@|H5JrSaP&@we5Fbw2uo~j#awifqYmNVvU+u`RN|1Kpn-yx3f@xirUJWS
zcHNm(lN%~1vNc_f#tJgYjVw!~MsgDcO%)jhrcVoLtP&{#%^6&`vYxPidx|{g+)6PQ
z;@T+YYEo+jM`je06|=UAJaKK>+bhW60-bONT6T0y>8zlOf|UwZDd?)8n}RW{=k5wx
z3{LB#z@eC*Sv?f=RM3m1J>g65t(Y5J-fNqtcTVf8;B5s16?t+S{S@?9@SXyB%JCfq
z;SMPS$nR41SccgD>yas1pr@&W6%0`@LcvG{L#0-YjA06fD|lbQWIFWeWx7f7cJ<9X
z>r+QDx6#xFoooR;;{yd_6^v6bUct8tma_04Dww8Vx`K}se5_!Cf=4LWZDO%c6!WXo
zL<Jp6RsXnD^+^hMfl=hyW|X~?I#t1n32CPvr3z2pl0HMhOa*fke5v45#e5iEj?Wdy
zWAL9bI7`87!v3fkHQbr{g|y%|_PFO<1q&5?rC^?dGcLz`s=xxm(W17m6?~&$k%Gm{
zM4o1UBbFXdyM&el4T@dMPCZi0woEQf9$!ziNkhwwy`05fp<vlRiEZzgPc?j}V2w18
zg4H~vm8BD|Q?On-r-EY&Hb}7*>`<^%!6pTp6>ODC<Nsphe<ku5{}x3a<4+AH=a~06
z$2POS$(zma&ah(gH2y9HyJ?X(%gGb?Qo=nl24yP9PTj|H7LKLwXYc^^AXQ=yDL8EL
z5h=6FA;#khPAIsf;Ie}66?wQ3=M<cm;EnW?3Vu>>TEUMpU~||`$=Gydj2N0CuN6I`
z;9<VvXBBhZUXGs?{Qe|aKz`TW{3N+*-?R$~epSr(x69hsFH*ykYFtz>V04nK7s-_P
zn_|w)zf=E^MtRSiC$Gqypunxbqu@^ke<@HDIAvzbn|V!2tKg>iE4b})$cb)9Z5KCp
zknFn1eBeQRvSidOGJkfzT^Oniig)Gp$k<+|&y2j8;wDC~%&0ODtTOu*1ZCL1n<lXV
z8n@g|4ACNwPl!E2j$3qb7+3G1f`1gmWDZe~P0Ky1MBS2tS$v0ZS3&OTW~%#^{egnK
zZiiSNDR`_PhZ9Lod0V?VsAcAPs^E!?BbkdH=a2`XrGv?{I?p7wr8$>ASCHT|`+TZw
z0qn%AXokGs_)Kw|JbRq%L{2ACoXF)wWhbgQQRaABZfYfJ9_mZfyiVjJyzE4NS^sz9
z6$VQ>QP7D(P84TQa(LB=A{G~RVsX`EG0IWYiDH($g+D_qaH0e)_m8DWuoStps1s$$
z<*2Vw#o?KeUY=ZmTG6u0DPFgDe$UKQCu~mCb)udVZ#d0~w5k);oRA*~)(%ROs;KTX
zANx;pq6TZGCROaU2=YJidHvFAJJGdYS{*0S35!-`O0d2Y8BR2n{I6s-aN<oTGM#AT
z#Bq7^zY`6ekOvZE|M&4PB}w0qEluUOu*Oa_ahgAnT^pFzyR2<ma*}Y{mvc08Lhf^#
zJJG_4mQK9oL@OscI?b<0BbTSOc4Fwuwhm6TaiXmgVi~zLO|+d8?c>4aX?HfHiSw={
zX`Ps=GgT~I2wkb&sKF`ro=)^~;$j59M$p@dK9Y}$4k{c@^mXE-6F)lfwiErF_)I#9
z6aAfd$BA)HjCbN)Ck8mpiEFGA?>RBhX+BFf+KE9<43=^_@jfj>oEXJt#^iA_aTw;r
zaHsjO<(wgDBbZ!_^7kCcXC#B8oOrS?U4oZiO&H^ZJiz&Z6Y|iVJb-8R+d>H+((NNB
zK6aXqpNVmT6BC^{(*ZN2Y()}2abmI)Q=Cvb*(OO(TWmg}`Clj7R4KoaI?ahvZik$7
zI)j@Fn>!fJWKrjKv3<&ONvvc$+ljB7_?oBt+=(xonB&Bk^ql9!{CE<l`Q>rC-PXN}
zO)hf*jSH#cyV`zQoAQkli=5c*#11Km6HA;}?Zg_%(}|@{c|6Q~a8Zi4%!%brtdN!s
zB}q_<Bu}MEF;+_bv-ZAon$H=ECH@rRS|`>!v4Le<=Y%|}I%ct1{~Mjy>cloDHc3A;
zQa4L29kOqs3heG;=CI_|gs~y>iNu{w>~i9e6NjDH%`zX5A%8b<4_RtpFZ18$#D3{8
zgVW@Y=KybawjFe$=ioGfBTgK3;(I4#BgkViB3_jj&R|Gqo3yX6zzGKBihf{4$w_5(
z?vxWh$tj$;<HTucI45p6@we0bV)e5Vf6C0Ws=Dx5C(hA$Ub^4S)C<&Kq`Nxts}r(6
z?`2wkqyA3)gDTFKoaTnt0#}^4O5>B<3GoM+<cr2%PF!<BhNK+VWfE{Z1a9)Y9w)p`
zWRay9iW5$<N_AOwH$nbp;&a09gyuxli2#j5y4YkXGH7{*obnbI^NJ$WhHi(j&WepW
zVG#b1=Rch<77*kv{T4mr|5CZ@#62gPt7hzdCmuLaTQ%?GA3E`mOgJjPKsoW)iDVTy
zRs1W%$BE~1bt*Q?Ga=G;(bT6-^A)LjQJdVBJfo#PKj?kY)I=3IRQ#2aApgHhQcdTA
zB~nCFROC|es*1uYa;wOr;$;>2RmeTeODg33pLtdD-BWS{laE2M>{?{+>~<7T@e1AK
zHI;HJRghdrMbQ>Eah6xA77<oaUPT2J#Z(kmQBFm{qP8@*9V$wxC@mSPD5*j$l0-5Q
zc;D?Pqssk5sz6y4qP1GuUQ^9~Aj(UVnq1A4sESNdNyY1``DUIr^5mx~vrTFh)qHuW
zIIPoCQ^^vPcPqW2LjG)6RYf%w)#cRLsWny9Qc*)SU%YcoUe^;#m)kbEM@m!Cu3%27
zma*aVIx5mt)RnYfrPWiBPhP{dJM;FTwEC(!b!Vt(pyEvxb`_0PG*Qt|MW%{Is`+!t
zOt)i&+ach4#a6g$?~WZZo6;^z;$pnFEv=b~y;6sJ)1<juu+dwpcuPeqa%(9DL1Nnw
z+EOP~HNV1_izIbaadv2$qQa@7lZwua?V@6$iceH@RnbkFbyfB5Dh8-{Pel&~#nMwn
zFLG~cAF6}emnuGQtLR7WZ&}_^@vg<c3`#24xW+&RKTt79+O%;EIR+Dks2ECkpE}Hn
z9ZndbVkBV{bu@JhbxEtLlF3-9B?iZ<_?RHZ4^{cK{l!^i^G&f#U{H*cR7_T}Ma5PX
zQ&db<vBYd^Oj9vk#S9fQRa{+?A`3e*RPz;1_*BJbDvo(mzfv(v#cUPxRmi^@KUeXE
z3i-+~S2h3DI7gKqG)?;tGcqN(aZXy^L%ruo4<DW;-zip%F#ia-fDQ}gik{?<;D--W
zzgF=LGnf1q5f-bMn<GJjOI0jWu~x-870Xp*<V#thVx@|w{ff!D;)cE{UAv{Nl76L{
zj|i?-u|}M4r3zo|Y{GnGu9yBSKip5Mv025ul9?M+Y?N!cnYxK87GZf7LVnHMreeE_
zpQVSW*r8&lD*Mpk2Nk<i>{fAD#Ss;Ir2DBjsN%m7X=}^a_DS!}VLKqx0-<itw6>mf
zdGERy4@rIYH(x|A!J{hFUTMcve4cERgu=(kCs>BBy>>C4RC&)YLzu=N>F`on+i4YN
z<P!2E#Iq`wl_41>bxS*^;=IgDDz2%xpyC%5msDI<aZ$ymMe&=8dUfzC^OT3{<RMkb
z>UR}?s1T4{4@9rXM07j#Po7Sma=EI)GuV9MMV{<BR@1Da>ni?MaZ|+&`p7eKONL_d
z@99}G6?99JCwZhK@*J$H!llA1v#tuav_;QM4^?iJg=O4{`c(vES_q?V7(o>w8M7X=
z@*pe&P+Hc76)tEhqAJR|@R|#{ikQr<Ic>LPOs%#XDtbOk&X)VGHTJK*v)`ieSGPl=
z?x?t{;+~58s{E*g=PDjZZEUt**kYIDay(S=53>?}q~bC8U+NRf{vY8fHS%hvcqX`T
zb-BH$%Pd2p3prd!av|A;oV2_`O>rSFAs00_H4jx%z2t(&?YO$kp3kzp>_UEv3lMHy
z>MfoH$%RA-g<U8@xRjhzVjDLz%TUaP;xvL<f?ASVidvc~o@K=Il$mWg7s|WvQoFRT
zU8vwfMHk+2;a$2_av{To1}?mArK;?bFPlhZ(B?uN!W%ABb)g!$rsY|kP=mVoX>u(>
zniX4{5OX`yElXWOJs0W|%9Tx#vdQtL3(Z_;PNSXLkeca2BSK?p6KYecq&k|ztdkZD
zc5$Jl3vap5ioy1lPiq(2klR|8cG8-x%nr14wCtT+=uG~hrRmU>+|7mVF7&W`9E6_K
zUew;yKGa$r9a5gY<hNb&W0~1la`Y!WaytgN@SY1Fx$rS91F0jagIpL)5dR@A3?;u$
z9cI~w6Gphuw!L{GIY!YknmUI10d*{O9Cf@49}>hr+2fet!bBJ5Se8!+GhFf;+>6pq
zCQNZ*Dq$LRx)s}iJ#eNApIVmBT$n|kZCO4id_gVYF^l@83v;d5c`nSic!3KGE&j@d
zqh-wg@Qn+LTv+VF5*PgY?Mq$g9ZLUJj0fzI?e@&=b_t4onF}8%=@k-lu5@9Q3lrR!
z=*D+0taf3b8-v_f<HB0W!G(Yehqv3;x$pzewVt}cg^ez3B5!kHy9=AiTc}&9?=*Z-
z&pTY$@4^8Zce=2Pu$#Kag}nqxvZqYSJ{Qtwn<MTZjmM~msE4T%b%bzK`r$HjUOH~s
zPq^?sIezw&<R4u)Mfk~u^DbN<pQfI1;b+2Gs$_MJAl3K_;gSoN2^U@XmGB!?Jb!oL
z4{{AQ&=o0+3t28GH2z7wLH&z*&4ud(N&BY9@i+OVWm&?8bIL4dSyY0H>ZW$^IJ{P@
zPa2m=f-Zz)=5!;U8)3%YcHs^oLe*S|TB&qG%mu@;WD{;t2k}DglK*w#p5=4jg$Lw^
z)PJattk}mcbZTn0@)H;SbKxoN32r31&EfEj!RORY8_dSaL3=JYk_ci+b|WV_g*t`B
z$Zf^uA-qJDd|tNf?cB)kMgccoaigFc8E!Oiqmab9QNoRqZWOjWi@H&SEE9;FPL5&>
z7N^3Ec=1ZPQQ9rv&QRTrGH#T0<8?Z`My)`VwB_6=Z}A)!wIYL+WV|p~*^Mf0q|*3?
z<!N)HTw(L0u&QNwxY1sNT-%L0gqm*DBBW6dGdD?+&R{(^>Jr5AJDa|~8~@AgO-41N
z+TCbK$aJF-p|KlH2tPkJpHP*fDTAF0XEt}Eg&QpyY)zHex7=t&j@O%5+PKk{mjC6@
z-i;1!bfmG98-3hxkUP84#f`4yZf^7<ba$f%L54sd7kbK-a;le_?@hZvUxJ+L9XH-4
z_p>bhtu~U_cik9Z+26D5gWVY7#&|bAbYrL+r#+7Ir!&U7<%^ri!>GflBd8;(qo|{)
zW2hg*RY{NMFwPChr{S}VkKFiJx<osNOqg@m+UKsei*fuG`zLNpa$}hr%iWml#uPWE
zxiQ_1sWOpnwx4hBxao1MSY{WV!7}e%VgJl+&bl+*5dM^UYMotp7I`-Hb2q+lV~!hN
zGPr;$K6454sPm~e5^^qd<16yl)Wy_qsEgc)c^r~ZjwNn<>&8;rkL<S}8DC9|E8JKq
z*XYItH&(HPo7~t;_>Q`oy2g#QgmqMDh4pT1AaA6`?+3P6vBwEp-Pq>Fb~kn~c!;{w
zja`J@)P2-F)V*%}%Z|OD!2{HT)c01IQ^#Slz!5i&l8;g2sZNl;r~cr^Ny3lRGt^UV
z{6siSm3+!=wEs*#OFd`VzkHtjiyIeZCh?%82fw=U8>8-1f2V40{NctW@?|%!xpAF*
z#f_^3$^TC`{vtQEEH~V6yX96Ef4gy$#w<6S1ce%(i&V0UD)}UKa(FEcy5Y0f??%94
znKnZfhuw%+ynL%YYOyZ;fo!;u?Zz$3e%FoL<U5w7%^~|evTLC^jX!YXA%p+8@x+b)
z$dBB3O!${7ZYS2-pOTY2NcM34XYjcj2@IOoLdfAkir1Wtb26C6gO|i&`Q-8-H(BNi
z@yY8!J`W0s#e<h=FJO7*Csfao^A$ot%RZ=$qp$}>7%c8VQOjP;gLrBGH;=)Cn@Q$v
za48Q;d(go0EJH~1psWY4k;{4Tx(Ag#D9>O8%d;Y(k_U3%EBRDmuqrjx^05)#pvqvW
zMyPJZ*6^UF2esrHStpW78Ly+Z6<f!Hbc^eHP>)=nnqk@FH?(hhV5g-aHPeGegvQk7
z9yB3H{!Kk-X7R8c=HP0<U`r3;dA9bTjR$r7NcYRzt<lbd&%OA<i}oIL@SuVh6}{-_
zK_?Fmd2rZ+&K`8}$bZkV+Jmkhbn{?>2NON$?m-XcJeb;(>hPc!p*K~|-p2zQuf4Aa
zZ+p;>_5oIGe-GZV_+7&FS;ZvPd*p#046<S+pCKL$_27LEhIuf~vJWSWrjDSF^k9?~
zJA&P841*tdFqY7PbCH~7JcA#4@Dbr-YHxmZlGsl?nCZc%G*0qhGGPjJDs>uFJf{<8
zcrYu|?D?ND__+sP5N1(lQ{~ofjt5_omw7OkAW6O=%%jftV1Z>{NND7BeC@$E<V7AV
zAuP6h7VvVu^<b%G>Ed-Pw|IpID=l6nX{~EtL*o|eTIxCv)?1z%JlJUQCJ#1S9RKdW
z)q`!cY^Uz<U?*W0b)N^j336R~2z#mBH`(_S4p^}V3DpW`9`WF)2Z5F-=rsr0F%NEe
zaNC399-N@h_a6N2!5=abJvd3rj~-kgoTC2Zk^2FhA)oc&9N}kbKX$(#pCzCFKS4Rm
zFCJW^Mfg|3Zyx-$&KxpwToU%+8ts=oxI(x}{gWD>&#!xMgTb%|f6Ij9frmlKA&a1T
zpb(tYVJwWx@^KSd7RmH_;3NB~L8%SGG;7`ndGKJ3S+<A=8l$2f7zCXfql$y?NN>^X
z|6{yEenh?N!9C0KzT`=MXj%Rt$mIN3rc)1|c<`SGIoT*r8I?$u{GT!S+=B#K;<b^(
zicKOUdy&GAi4-q#d1W6o<e@#k7cUX=S^jyw$g+Co%U=BNQ?-B>uUJ0fP{`s}y(sKO
z5ig2bmXd^G)Z$c7OHifuq|BwrrM)QQMOiOiV^Hkn2y*XTo=}AM^Od}K-HSn94ECZj
z?G3%i^rDIvsSMhvb-j3lP}PfSUQ{QiQ6=XZUevU>mKX8Kt+r*ULrAB_Z?x)>>r*ql
zXh4vB-t@w5v1HQ7;=W!q_M!=cO}%L4MQd_1YIAA}FIp1bqDpSk&qdpK(Z!3dG`97k
zoqPn4J9yE_^6cn+@lB+&Woi99xtqnkyy#BuVOe?-?kD8zZCUyd9Mt&i@wONJ80=4d
zhx#sc09DHN9$_GLuGcYyFoinQi}wk`s2@;=Q%86)k}!%onku=C@ghD+j-_Rs7vsJ7
z(2AYt#Yg0isS~L2`x8m~i5HV-nM{=%5;4j#mBDG$>0Znrh<&CPpOQbbEVI0rZE^dJ
z_BmdB>4nXQH+-1u#XK)AdvV2!`BF$P)_Ad&&I`R*YNh&$@U<7;Se8YE#ndI#Z>c%h
zvdhTJy;wnzQmrJcqJBqRO_gd{=f!&R57Z4_6xeUyLEcE+MBPl?;>A|NHmc;j-HQSH
z%z0_27rSWO?Zp8v4wCnHvDfn4=f!^VM_ed7WZ92-ahQCBdXyTUHzeER44$BV?|t!&
zUhF5m_|c0~Ui`!;v79HIrk?TQXUl$;aL#M4REwJ&7rgkzi;J}XO8wo7-w5%$?mx)l
zdC43j=4bj<Fa8vx4~2dBi?L6=c;>}58Pp8k@Iv*%MgE(5lbS_Uyl@gEs~w3s-ClUS
zxaGxd8oktr7d|iiUIZ8nS^h!qi#xY4E%93#$w%`d>V-~YjA~Hj#y*=MKC;Ap$BVmO
zJhm+N2oI_EsSl`9D)Ilvi$@Ip?=1f^_{59<{*Rk@K9_#mtwD+p2|jZ&kt30i!-ph7
zGBu|ad%Fd4`H-8zJk<Qum#BHE`FwbpAi2fAo)qxm70Xi4he8&|Z*_|JP};H-^`V%>
z#eIOqB?u*{rKqw}QO1X|KD=i6RP>>o#pQjdK$gY%_;pqC;dNRnTRv3?sg`F|AFBEA
zjt}qBUfqYrJ~Z*6h7UDqsYT83A&nr}*7l(eIo-0<^`V}{^$APa@fwid^ubPONX?{5
zK8<{cFZDO|p_va2pJnu9RC8)OY6~A)65gUps#ZR<Cb#jSEuoAH9THy5Z0&vMKx0QA
zIuSZkyHUGPyHYo>gx!7U!C-uiTJrDZLvLF8P#sjU_a(gTLq9@)%f57reSi<|`QY`z
z=fglB2Kg|Dv4edWLKsUON*&?D`vl2zm=D9ryS^}Qd*m4D!ze3uG+_+&1Iu%q594Y1
z(1+=SkEkE}Fu{k3K78WCR9YmrNj^*_x3lVJiVyAm>G5+-^T|4l+5czwFq3YdQfE^?
zqt2q%l<!%DFQ_)&7kw!o0Y1$0VZIMLec0v00v{Iou*QeAbo<JO#Xc+{f9=CJ1UcOz
zLj3;uTk=XDmin;Fhvf{eusl1qK>QocDq6m??5hd#3*b7!ChB_X2I@v?{HiyTxA?Ht
zhizmj!*=O=);-$}ABJ&u-R;93AAa@WHy`%;u+N8|d^qjHex^F)!(kr|kPlk<NL3t>
ztQh>khhu~j)Z;#E<SArH;rsvjdmSfz_|b<`w0K&Z^}lxSi@E)b59ck<pM5xM@i{3N
zyXys7ezEKq2^obmfA`@JA8z`PMav~0{*<Yne3^R1hpPlx?~VWZdCi9#v`7K2`(E7L
z{Y^{!gIFQEEFY&2D!D`}v&?R?hZ?^#^!pI-A=!_de$yeysCzzy2w@*0K4@f#%_c;B
z&@D^M2g71ny1zxfO}#_COO+ofB>8>v10Npx@Q)9V7<}%-W5R#bf2rd9#JW1+r!+p3
zG0uCT1Qs=snu97nNq#)r|Dr`wXe{kVE<bYnk;jjh{3u3aUg|5<eAJhz`Kgjm0Y6T#
z)e6#5NYszQR%{VM=N4vN74_pg-iH*oVnHZDElDlq$9d*f#*ebJyyi!$A2vVA`BC1F
z3N*e>l{_mFDoM$?j#SyQS0TvAdc(5RAXKGRqgMB$J}auG<x`80My*ZFk?E-GM?F8<
zh0s2P`hH~iF*%4SK{W8=O+PXNXcU0mkA{Azez=$_(~r;mnB_+!KN|bd#E+(a4EJM%
zAI<z|?nh5Qdil}9kCuLP@S~$2Z!uvTYAdQ-U28&o__UQWFxcLT?Xk^lzD|DmTb5b9
za&#tip?3Ad9iRLe>_Lt9;ojtTsD1o!5c>MjkMK4%em5?8_GeIP@?Ad$kl*uTupdLn
z1F3`LD%fL(GB}JXY2PQvioLK*L?am-=f`-$DC%hH7(YHBjHT|`*ISav@uAeVA5;AJ
z$d8X1HG%pGb)p{yi<s9wi9rGRjy9D%!?H~CW4gsMS&7d~KR%^JiY>v}etb?i>Bkp-
z%<*HbAM0rO(vO9Hd_|s1okyKdUEqK5Tm094eB;L|8W&NQQy2TOgz&8&%Lq%UXLg!b
z7r&2PLCZ?27-b#iJMwDk8q2PiNm=j520wQDv4_TuerzRdqHeZ4xA>9W#=I^$w)wH0
z_8orgls;yCKJKD1KH2W|<B%VR{n%&au%B?ikAsBxkKjkF*yDa2B_E^4dz75(gdg8q
zK0gp%{<`;%ew^~-CqGX6@uweu`EkaNpZ&OGd7ky-f*-#yc#e9WdY_*u7ybCn^8D3r
zuJI<7P5GUcKd7O)4dPdN*^euh=hgq?aLtdKmi;>62K8^N?XnnDs7`8pCE4wV$B$A0
zvnIWM`26_KkEee4=@a%N;zxii4naRc<og_PnjcXH|Do!B+_5}kei+g~4BqnNwq=*a
z|M){PcWJrj$9;li`+)G!@|06NB0sh){}P^9Wsveb^CL$9NdY`(R6+oWffp+_vd9*%
zv1DG_O9A90q);U)R{*&!&J&PtxaKEO-T?9i@Nxk811KCokpK!<J_QM{$ho+XTS$Wc
z-?@qg0J;^kQWYo2l6wiuQZj(+Tox-GKp7g#22eGCY5}|!Ksj2<2T<AauRy36Kqbra
zIw7~uEO3<oQW>;av2O%Wicu0<J%Bm^q%*2U05u7<EYGw6YLn$hbGeJCOKxDr)+5vp
zAcGM9{X+75lR<j`4J}VuOKBWH6REBsiU!d%fMx-lWo+{RS_H5-fF%L64B)K*J`P|)
z0IdRO9YFs8-U*-$Jv#@`C4ja8v}3S+038V(s8xB7DrfH$fIPe*(3SR{0rVnt3!pop
z2UQ&6%bUFec$=0!0XPVKrT)3FFFp<VP(eT1Wlith00xjp1@K+~0|OY&pm+`nU`PN%
z0~kz;)JA;e>iqzQ(IU+%Znar9fe{Rjq)N`C0~iy)2LX(w<wNQ?>Ue6rQ^kKU`iK^}
z<cWmO0+<!RCjm?fU@|Q;s8a%%N|;8S9zgus|MvvQ%m6-RRQz6Rb^xC<xG;b(2vW|u
z0n8zPX<6cn!}9`|Ps;*o0c$P#s{p>H<r~X?k&Gj&zkM6PmH@WOXbNB%9hL{MB7l|T
z3j9=B6~Nj6)&=mLmBZ=))>s^WAYpv~n`qe(z(#`fv3MWYY<WsuZ3|#KgWpqk1h6N7
zz2u$LT><PS$dyX9>?0ox;1FRy^?-~5w%XwUjs$SR@;^#A9>6in;@;g`@{ynRmUC|T
zA%K&N`Z0jhmd`1|PgJ?yGnW1506K80KNrCH04@aZO8^f8_$Ppi0sI<(KY&00zXkAn
z09gSj0sO(VR|2?7xD>!;LVP{&PxAEuZUpdG0N1Rmh_6@w%~&bzO+wH3(zpBy%%Gd9
zT0X7-K5Az6UJor^s?Ul|pWQncKqvqsfNUDW)F?F)fJTsoR>?sp$EfDnlXBi7-=*HR
z?04iEt?z61XuMB-5J3C^o<|Hm4d5B!G4<a7o)G?{O8!#p=K&-HkuQjsgGdaTSCKP_
z6he+5l7dJk$G_ypD<>B%F9ngCAW8BB5uXZ#^9Em(Ex#38D2M_UzY;`2i__!XK8V7!
z^yd{73!-=sZ7d%U>IP9Fh?3+|K~xIj^&m<IQHGYXL6j%FMlDB;4;Cp;1qLfp<G&(R
z4x)MxHG-%TL@MpJAgU6?{|!RC(^iw&m`z`k#@f_cmS<Y<#b<FHTGFZUiKt!>^@GTu
zrHSR=Ac!}Eurt_@+9-%jLOhk6y)lFG;oCHbW<fM(Q0#9JT2Nb3<9)IfxiwWrXxkv#
zk=qB+BZ!{l4ncW~soAn}bPA$#5M3DTO6^9CKZ?+u+|K9d6-4hKMg%c3h(19$f*26Q
zdyMT%?H|P31j(~s5dZt7{+%G+wd`_H1Ia@y%OJww;EQ#+p+USKG-r=tK@4Y9{9ac^
zs5IXwE7jN_Mq4~4hz~55S{fI`cm_WV;^QDDkUt6{KAI*n_zCrYzXD7O%JUTtS?`(}
z#5CyuA+u(t2QedvBS9PuVrCGZ2C<o`B<eH5V(P3QW(V<k5MNla^MaUT@t1_TR2hl$
zgIGXb7{u3>&sS2PoGrfzVo?zByR5h_3F2G2Ee&E-5Z?u{jKSqr+7&^pv^YLkRx`Lh
zh&6<@R_r=Ld{Wv#-WbFtD>gosw=lRhh;2b^4`K&{dxF>-#7^=q%YQdP`rAIsaxjSf
z79R+{cyjL$Er+S`?=Q!KI39#96&}QiAiihRRq78xoDJe!5GSP)XgNjwiQ2h^*(j%j
zIK!au&vI*I-N&A%@%JDuSh2qZana&m3BO4{<n;1~WxqtYOua&tv-}yvU*u~+xCz&(
zH-h+^a5D%eLCTO7gc3w#Pj5LSsM0R%B8>DoJVAJa@Wt&^KQ$0UFo+OY5{3z~7_yMR
zPKrgNB`V{z#fx!j$ebC%D<NbDaVv=1LEMqqn0@swou35pUl8}Cs|WFb7Rl!k;b9Q}
zSe7f>dp{=s8+@_;7GGR_8bktflT^>>@SGY?m>5D1#>(>^vcQ#0&KW{V2)RPY9m31B
z<e|P4Lf(-1RIp^#n4g3BXqRBT3Gy>2OH2g`g+nM3LZP@1bvSQqijqr)P>N72gyM0Z
zoHh_jgb@GPv2+M!La0PzS!#L9^EE;_S%k5AON9_B(imTLeBJV_96}Xx{Oq<6-Uy*;
z2-Rq8My(z~dI)vNHK;X1s6|Ml)~42>%Jmjx9oA#8A+<g=gW7=lCe<D?SLx%6Cz-S~
z3ZXHf3AHKpe=GUTLuf%uOX^$HR@By1IeVKB+FJY>JAa1|-VUK3jUB0-sGURT5<=Gy
zx>^1`3Ee~JVOio+aj%d(m;Rzp_6fm3?rT}Zr+*0Vgm5T?!y&vI!hjIQhwxzt@6l(t
z<vEZrD1^b5Wk?7^$?sd1VTAbif)V7AA&jzOM~5(m`~h`r2;&HHBa~3|MF~F&VR;BE
zLijj@2_Z}j;gb;NSvgD!VY<bW2~((3LzqU0f3uzu!b}D~rOpoFGr}yY)U(X1pNH@T
zgL6XoGK9Gy$b>IZa>FJch1aa_&htZ95R#Wl;j0k74&hrXhi^hyOkPBdue~oJ$E$rQ
zc^Nf+M$wfF?hav92;YUUn!#<<H6g4etfOwCuBUDYVI!eVJM#<gX7U!Q1h*1o8ErdZ
z2X!ZP7gc=B^>*@J%d#(o{T3e}91OwD&$S~V91S55LNJ75Asi3k&k+8i&k5><5WWxL
zhY(IOc!v5TRnB#a@KXq<Ez2N3ezy2*2<OP>EzA2H=D#p_k@{;0zlHES`48%4>ZK6Y
z@!h|2mMbA#rBS$BbF*5mF{o0nhj4@Nx8-w_kQIVrS)7EkS>}&NF1dCFJyxuj;G_CO
zi2nm96hb%zgkSX4NC*!@_$LG{glGu5mG(9v7J@;@w(Pe;i2txFXS_q>-4O0svG)lN
zsJFJ+ABFH(=I}6*!uZ$nc^bkK@_&|P180e63_cGbfn`gyN+>@ZCx?-f!NOsr5b}lb
zau~VDxx>gqc!`=f4Ega<iYLX07d3wv1sPR<Dp9Wx;y+0jiW|d_AM|BnFT!9^%d=P*
z#mVu~mI$L{7^T7}9Yzhyr%V_X$YrUoQOi-wQ{{|Oq>5owV(|4aQp2#3D^sgb<=Fu7
zd?So%3|6IzMao&794~N9%U+9+7DjE$Qisr>8R~^mKa5Zq;V?47Xb{G(Fm{LWW*GJ`
zhKBKe7!AXar@LE)(K?JwawBSEY7=TxYBOqcY71&h>RZ%8$vGvTHes|4<Lxl|h0!jI
z_F?o0qh}Z$q)5+`53jV#5@<&$Qr!lfsGX@@s9mYusNJb^5^{=XuP}Ot;Rxfx^JEFO
zUvK|*g}qPM{AIAu3j5LZ_P$}PU1?vp-rhfqcfxotjDcayT4{ebi~(WPYi`EQTw#~z
zG$i4mFhq~~97Dnw9ERi&&*at3_8Kef!@?LI#{4iAgfSwFkzsrq#%E!S3S)E_lfsxB
z#+WeNh0Jj}F^mt$W2xh)<EbA~Kcaq2oj{c*`6ca?jrLE%5WVPg$UDHNgfTUYX<_&d
zm_Is9r{|0?W`+^nXOEw&_ilU8=WuSa&kAF97<0n-Qab-$d!@EGw9Ni_*winm@|Q#N
zPY3J+%Q(r*3!~$5yPR%e7+;04J<Pu)hVe}p>%-U(#-cD5hp{@0HDN4a>~~@LxzO=#
z7<)I`mr|Eems3|zS5j9|o2<2qrzH7twW({vxRU8uCv~;PE|wC0hZr}8v5C%G!`Mv7
zZtK{>)5X(PW!i1h-2Qa2><D9L7*+j_GHdNk{f?hD*!M`PFfQ`a_A%i>nF==A_mdCE
z|67ZgmzJ{1ekhE?(k;U{8phc$?l*HB3*&egC&TzLj1ytJvBUm7^V!qXY|5p(>_3Fz
zYV8m>Mf;gBeh%ZOFuM31r==(OO}E*8#|pp0z0rQe?-1v6VVtM)1sTh4;g>KZxwu`S
z^RHq27RK*k{2@6@n}%^IjLTstVK}9J#J<vglfCh(wDk)6pVYso*QnR2H>iJ8D?LvZ
zPwBB)VdU@Nkl`SQ<fAfHI&j@Wj{MJ)Jz@Bz%$v*(@0EVVSo!;jqz!~2&}54}$RQS8
zZ;ynb$v}v}5kWKzUFNz75J4;qLniGAk|W3t;}$D9A%fds+zI0;gLlIiSGIxXcRUH>
z9{E1?0resEAL=9OW9q+D>7|nPKUUzEJMHo_tF+xSX8T-vNa0KgCPvH#m2RIS0`ZZ$
z%^5*T1g}O=ID%Y^eI<f|5#%Q4p}s`TOU*}pnVO$kfLgPqnX^1=lp|mct3nZoez)CT
zB!Z$5b8aaX!8b+BGROcte>y|XE<LS81SKQLh@e3Pr6MRDLG=h~L{KJzvJrXJCf<nP
zH3<eBsS%9WYcCf;-GHNf1RVm73e<|!O4Qe>m8n&zW4GDGvuq8A^jJwQXRpe9s!<08
zOr!h)UNeH)5!8vGRs?Ag^m>*dWt$Rkh%OE|(&eNP)QiYky+d-4qrTLbe1b4T`PcKC
z5!fSW8$r7W8b**A!JKvWHW4(6U}wP5Dgyb3QR9gD&~g)MQ))A6b7~7}OX^$HliTd#
zFGp(zCBriT$Gx@o_RPGe6jCmbEcT8OSxt3xil8$=xC^0c1l<VTEqjj$)PO@AdPng7
zR=Z><j}gAQ#V#f68^PNV%!*)k1pOlDAHlc?#z*i@1n)*LDuU4w42VG5bcD3a4*Po%
zS)_Fgqz<AErVgPFrM^!cMjcL-zx+t5k<w>^jw(Tie1wgOAhDVGpR5n0#)6LSLC4sL
zEEzeZ&xn2)!AB9yjNsD<K9=)#aLf!krbjR#V*WL3V#NF#*C*6T)XCH-)Tz{I)b(vm
z&lyZ5Q=hOLpE3A&xA})$c_{1i2)>A5O9We`Vr76tup)w$5zLKXp7h=b7DX^Wf(6o`
zl^tJ4%>VXkMX)e}ucY0dWki;n|4Mth#h#UrQ($ofOCnen!E)&m+wJXE*}sioX#`WZ
znr^jLnfhx&&Ye5#?hcL*+F_N{E%VtBk*&V4CW7@5__o;dCgxll!8#_az1800fZg?-
znYK-PjCqu?kx3-DiLjX})6upFwny+o1SccdA^k9d<5KL_j$IM#j^J<vM<UoGZMxh3
z=sUaA>R$3bcI^Gs1Jr}mL)7>^_E8SxJ&hd4Sg{$q?VgL75<C&X_jHp7O{HmMnEWVb
zjNs=8&a$3Y1|2^|aGEEQ5=yn7iC{<vhrl^0%)Z_iBKRd@_Js2h$Un}?EVs*?ECcOS
zYl#1E5&Ry(bqzN(^Yw{;$P6Q$Ib!l9>SgMc2(Cu(r;Hi~>&?i#8NoHOcwUd-2KjI5
zv7keYa%4rISU$f69j*x65nRyliv~{wUa3qC@)8N3G<pOxG|bcxh#)AFJnf+f!Vy%_
zkg6dPffhj?4KHbkMxaOVUj$EO{*S<j;Bf^1%KR@AU4b08rLl6@Zbi&DS4ieVCuQD=
z;4Y2w@}hf$`&4mzAj8Mve+ZALvb~G!Ml>myBsn~ZK=`UN<5>jHBW8hfOL=l9%pRYT
zz;Y&PXi+XB2RVtFOwCCZ{}e(l4WDvTr*71|8uDo<q~TS@zO12uhF8e>nV}?<0?QU-
z1>;7(q_nVRUY#6eXe^?cuPH7{Ek-S_0R*v^&`{FiQW{EITosvRnfx`)e4~i$J629Z
zc?|*;s1>P|sIOBcs<LLjLRP@0;SCLKHMG-ERYNrmbv4w}P+da}4QU!`i|5qLnwt5}
z;aZyc;#PS}u)KNol%63QD%Ihs(>3$eta6P~PO;0DI`uU)(a=;w21_MT4K%zd`IoZU
zsR9i(WLn&a(3mQ3vXULFq*0n_vi#_1u0giJYN0{)IBUt%y+xHgTM=4Q+en2cnN8eY
zLkA7rHT2NXQ9~yUUFc9aIYHiD(pj3Rlx<!Pb1S;8w0EOQLfP)BC+nv-Exo7-Nl8*v
zxvoAMe(sjmxPMw-+TYgDPeXqV?`ZgtmUlG_&@e*7j~T_}UCQri_+(6qWIIrUY|c1H
zgQOiy9YP&SeV-~(!!!&he^%Ni!I2u`8`6!^Fq(BZhG+SJD%p-DjH8YhANE7Bf284K
z4HIaes6pNuEyhn6oJ5u2WDQd+o~mJ*#nUzXw<1#<KBZ-`h9v?TW@(tMz1SUTj)u=I
z{z5bNK9hII$R;LVN}n8pxf<qa=Ei69sR9cK3pIRYS-#frjm3-PjD1tY?OP2?HEhtZ
zQNuC~%QbwbVYLS7ODi<Ae4b;KhLwc=pQK3lkn0`YKV^+{ygUhOHLPRzkdn)>UW4oi
zCVfU&Vx<~4Y1pb^o7AxE8LD9muTEGBFFul$_{fGVJ2dRnuuH>k4M#K_)v!myUJVC1
zPWM^0bU?#?iyzriWFC;L4$<eZHKM29N<60FxQ0_2e$wzH=s2O_2Ms6L{l3>Qu!Q;A
zOgX#EPCqiYRx=z|FQuQ>P%Pv)tKr<AneqzdGa4$7tM{{p{Jqiy#CT4_dBzIMwp@R;
zv|ZHjtIRw(ZMzF5NboleTH7=^e%J7ahD#bQYq&yVuBE-NN=0dS?c;iKYI#dip7BYd
ze`&a;nJ*E|QN&>eTiX8C;F7VR;id)&%8{i(Av>um6`fKf%A>)n;em#S8hjf38bTVv
z8phvAly@-&q;uX(4N{knNfVAp-4;wRG-S)%+tQ}VrvO1%C&V-ixsxbCIc{mV&9uUC
z;~o0k)o_n+UoMdQMu~%D{*Ux14No;ZVk)sbCj2X{U|DL19M3d7*N`h}mQ9X?sQCiS
zWCjz-Iig4+Jb0QYQ8^ivV)?%na^xmURGv6Qk=KgN7sV)Edx0okiK2jkR}2)4qEHkc
z=oqWx)hG%_@op3Yq9_tY(I}cTZLuhd6B<zw#cNTNi=spnC21)YMHzyWximp)vMj;Y
zA!T8Y%<@rGU@#+!icwUGqIwiHqIf;-LzT3Zqo_howJeg)8|12%r5a(+t`zaF8AV+N
zYgw^rQPj4$P88`DCv<nn+g9sEQQxvit2MCr%_!^^H;f{a+&AQqQ^?Vn!6wwEQ8Xh&
zS%4N%w2b1dC|c3jJBrp(w27h%gHm{D{kG(GQL|IY(LRa}QFM%=6D^%Bd;N6NL6UT(
zzi>B3b&sNl<<pbUiz?-pvh|6=LI1uqzHNE-i=sdI9m^vA??o{%iUUy`WRgKq42|M_
z@?h$axZX(|7RB%==0-6uiV;zajAC{apGR>rSJJ2`K8|97ct$ZsdQKFl%Go{==wurk
z#W)7LO|#2hFyo{6P%31qeeB+J(NQwA%bITom7N+UM$MawPom~FwUeUqmj2YqRDmf`
zOeIgFPPgncqL@kkl=>NU7FAv&ED67enlBptk~${}0eO$*$DyQQ@(#>c>ij4cM6of7
zO;Ie2;;SeYOWG*Dj+!sDl;ay2R_~cx2`sWK@=E`2$t$8*8I`Rk%^S02v@ExL?nlyB
zMe$t}>n+RbDAroMh9K{+lZ5M-Tv)Q*VDV<DH*cyO(v(}Ix*nRmHHvMPeR~u;$UCXK
zsJp3qsN%nuurDgFg*0<3^C(gDP!xxwNYhbU$B`(GMv<%|r;cM$9FM{sg(r#=QG6f8
zr6?{(@q;vO6u(B1v!LTgX~ZbbMR7igpQ5-vsfHXs6HZ5QCJJY2#-)SlqGxGbUNJ))
zMu!|1qPWP|U!urYE90|}V{&;jN<4p~{r9N+66EMxGvg1rF2-Jo;%XF16d7+M{~5(!
zQT#1aR>cf?EAKTa>cjLK)a$Z|p+8B2a#Sjvax*GFMmXfiilS@9j326){!V(TJdrDk
ztdK*D-Y9%gXi-F?@JG$Ji3Xzx$)&wkKOlwiB}wrvmd^;wFk$lLjueTyS~X*aH%X5o
z7R93|9y7{_;!YHIqnKYgBRh&)G~Q-VE>I6SMDIoMAc}{Qn>Xox6uWAf1^b7dQhsre
z>J`hsv?S=}1wM)5zbKx{#2z+tc*gRV2s@q=BwNWOQ8(*cjvP9Y$WlTHrs&9}qneKD
zI&$mCqoa^a<2qi_kypn@l`{(J$fu)L*zvNC{5qDF&uABR3=2C7=(57;ctwZs%&?>E
z>t-{FN|M4lis-1IqoR(YI*REiqob^j;yR$qDxyQ`N1RLOkajPnqoi*3key+NXldQ7
zSUKcGujwc!sk}+T5+!XUP@ZKFw@Nx**I{GY%FHU&mz1ib3N3{zm`UVlSSjNT9UCiW
zRHa=k)jr9TN~<9kMN3T`l5@XQvk&~v)~ur=T}O8vJ#^HiPjlUD_j)?&>&Vd2Ku04T
zjdi@Ko1N!j*paEjuFJ}#Lym@o<2B6cE#OaTA~hLtG-FFOl{$$y<Y*i*8?k*LsfCV~
zI^NRJN=Fx-rL~SWI;7io)X|m~E8L#NXs64smJX=|v2>6UM$FOCiBX-Y@rvq7?nWIR
zF>AG_j$S(6(ebX1-fVp_E{iz&=y2%hD_2@Mqo0oH5y#tXbZNwQtC&sSUmEW93~Bug
zf6@RQgLDjLA>X48qz0;Dh>oG;QOx{(9m84jVGMp5F#GMEzZ@fUjMO0zZ_3dup+t>g
z^9hX8F<v^PfeNsFC?(O65<{*SK9=qT+cO={bxhDPQO74bCh7Q1$M3qirO0F*TXk&H
zF-4bs4KPivMGBx}nT{EB5T88}$4nicN*(H$rDML11v+N4s-@n(Bz&&p3xZVa9Ck$k
zNjsOB%%f^Hb4V^EFVW@gxcHil`;Cspghe`}*IliZEN*hdbNH6oN><Btc@ekc_0lQA
zD|D>Xu}a5xOt_A^n!1Lndz01@B%e^kv0ldp1~=;1WZA_>VmC9mMaSV+%&xUv#|{~5
zI?l-eY*Krtj-xVllXp>fQ}^iDOV~#h&;2?MSbR{&A&U>or+~$o7c-CRIHBW|j-PaV
zFa7FbrldV7Ly0Uw@k!JiKQj2L<`Bzi9i1*_c3F~gM#s-O#6gU53|x|OUdII;zkFWo
zzP$EdH}75Lee4%?%zKzT=s~KynD<wyrNjg={-NWNj(>FXJ;`z>a9PJy9e?V$BAvl*
zYqC8pHDLcs$2A=>>1?x7uIsp=!>=PC^VM|w-&A>(`c0Yc^4qd>DAJ{e_AWXuZEFRa
zQ+iPao2tV_a8o^0FI8fFgwXc1ptRb}R5?OA7Rr*>>J-_sDl7$)Zm`7M4@;Bju8u9L
zLnjEQr`rr2`_^V=%k*_G<Cc!wI_^ljcvJ7`xUb_bS%TTNJ`Z#hNbU1bhShwBz`*P2
zo2H}*KjO7N*6}al39IX=j{gX<uY}Z0ToYnQjF|%`XAC(A$uWG8J1L2LYF3IwNw5xV
zM*>O0xnsy94l#_4;iZ^)S5qQ}k}>2Z=cB$%%}*^reT7<(DoF~(@G7}5wFtE+wHUQH
z6;$!RvB6#{hSD*-6+^2S%EVAMhI%pcUHbAx^0gQ$#!xASaxrs#qdZlh0^v|{&evn8
z97CNL9LrLwSh1;uS8e9j61JGU%i2s^)rzeaLv?Zu%Tkk2i<(BQO|7Uo(g~8hZVbng
za|+atAtQzcF|59wD8ZI7yh$Is<=HTXOmZX3(wNXBhNhOKSq#lBZV^L6&D@+q4%thh
zbqsA{=pVy7F|?I>h@n>uy<-?t#@0TDPBC<rD$14AA%>1IbI1AS%Tn4z)4RkVufy#g
zLk~jN7;;`t??&!*IbB_r(lcf*oppPjW7F^EipQBDDScw-8^hZ%bNg%uwMKFDlgs%d
zUA9V>HMhUUq%|&MdpCvwF$@>aUTN>eFffJ@o}{5M42of}G+CjXlH0ygwu-ruhQwa1
zrO5ij`!VxgSB_yZbCI)TYVwE}M#eBMhi#OcD=SrU6CO>=7^*mri(x!F#+4X8jNzjg
zmd3D5=KmNb#4tUE88J*`y?qkHBtl_ZvTTPWYiN^Wm=eRLQAzi2r9K~-G&Kf+X;OQd
zLtthMpR!2bh{iCBHS=}M+&uk4O43JVZL?$eT+Ue5_62ngRf1o}Fqb@!I-k0Lx{&%6
zRXo)k<}Tz?y^CU4%yTVaozGh+yC;~HEOjorJcbo99FE~g3@c+;6~pcr_Qdd=^eCoU
zAH$j$*2)EHj&(6}kx({Cmsc)Nj;0rmrVB{xY=~haou$$?#jx4pEir5*Z=-Iv>^oxE
zN#12yChF;X*<Sl&I1t0W80vRRlNT(@3eQ35kX*l&H5`FM(w_;7ZY3U#;bIKG%2<fu
zcnl|E_&$bHayj=Ce_%r|ji#TJnoPD0E0OYJ3}<rK<fybJ^C!7pF4>)C0nWtmGvO@t
zoK>pxgbUPPsQ0rIf0Igx;g1+D#qcO4NxGAC&I-2@rEHg3)aGMTWLZ_J;%W?k#_(4R
z*J4m&aK>;w1{qT~<VrcE2;Yq1;KUS}d9v7lWE3ye9JAJ?s4=)=_%DX1(rPhyVlZOJ
zj=>v)FNT;^LfK|rmc{%sB9d(Z=|2SF5Ft#BP&I0ls!R9ddfFrIm@HRuD~3BU+>Ob1
zOtYiPAzfESs0>@_Mfb$W&LfrwF+3#yLw#h~AII>o#ZO{5o0=@n&tiBULxO=s!|XZI
zrqdm1qB#t6JSH2+X&}kKKP7E)#FrCCt<FqgY?lEkr^?vO4*~;ucn|gxH7_+E^=0Z!
ze@1@7@zN;;4HPmkG8?0^@v4Es1_orC+l3S{P}G3efX_fN1H}z2H1L%H7${+&y@3t}
zN*X9-Al*P+1Emd=F;L0C>xTKgyR3n72Fe?FjlplYJBHXR82BGoWK?|Hk;(?%Fi@42
zDh5&woZv<zHp488e6O#@s5EMILw2e%?KKV5qD3|wk)Y&1y>Nm!*ETTX)r2~Xnshg@
zo`L!X-ZIe2K!$+^2D%qXXkp0K8?YN_LN`g<&_JfevaLxYo<g#1Y~T!cFllO_nStg8
z?sTzr9Fis~hx^rpmWH`^iEQLC@J&ZXk%ZO;+8SubtlAhjRyjp7mqQ9EDjTeHG|<Vw
z2Zn6-fX)WG7#L_^kb$lSx*6zgpbyh_H_+2SF9Y)G`yR9ie9mf-#TMD2LvnK%vRjHY
zP-?@@w!Q}5HXtBJKf~NoMBp6*?@F6WwcB6p_aUj?lXEfoU;{(QBMb~>wG1;bT&lO5
z?R_SZ-8RKvs_Sgwggu&Lq=8WeeoRalZD0%?#4ZkU2#hl@-oU5Q8x4GD;3ESQ4SXUc
zF;LHLOX!g~!7%q>ksV0_6*F(PP0@SUCK;G&V48u+Qj#vVDO3U3tL0ud+jIjn4alA{
z!ZXA(N0NZF$fQ>jW*L}mV6K54QYX|ethN)2lxL2CFKLmUAi;SC=JUEn7D-rOdCImm
zU&~d<6&W~XV3C2vaykQB=&;1VcLr8VH!!f&z%m2N<?>%mSY==Z9sbt}D;boiLp-(Y
z3$w<+Is@zF+Cxce#lKBTynk*mu+chu?<wX;*~FlyNWxYF+YB5rWU~xxH?YINUIY6K
z>@={;z;3!pACsCnmuOzm9<%9F<)otf+2IcwIAq`e?I-CYQ8~NW4znkV=lMH{#|#`d
z@B=Lpd&0o?l5=NU%e#q<yVzuJ9bvJblumdzQMQu#$-rp?*A3i|QDER_1HTx!$VNF!
zy+A!@;P0-s^Bf2Qa<QvNC;e*RH@PCa?N6D_=yu7#Wx^lQ^NW~QafQLF(g8Z#q@g91
zfNU-F7wy-mVwa|$^=iW325uV2GEn7|Is6rA(4lEkA#MXsX+h20Fi17vvTFGHkhG!Q
zZ60<ixhTJZfXqwTD4&g>fslcOY$RqQY#<_o+Q3}{nt`Z+Yy-Cp=muhj{7B)DbCoEX
zAjSA_NSeVb5|AxL%r<3B%6WHm&%9^gzJbRE{*{@eXu<;nj|@Dyn<#z$A$$Hm=A4r{
zp@(hhaLC@ZPuNlt`^=C(4kZ0&;3-R9jT-<xH>bhWYu}lgBO6KCC?r#Kw(R(ZoY^Rl
zjaRafk}W@NIC5trPd0L8<Mfa;IixU6y4qe6%L22O@@6AnHeSv~{%ox6VH?uJCfn(b
zIR#M(ibKI{h`(&iqzy@PcD5DHMv-ik$;QB^$wjkKEZZEjrLr;LX>##wl*~5gI%MN;
zXIlxXz^_FTE_E@RPj)yeEe?efWDldV*;v&+rDBiF*RsvU;Y1^~LN+R9BQqO~vQa4;
zuV<rrHfm&}ayF`D<KOlv?(SxJQhACusJ3i#uO*ofsxl}is>bqM=x(c-jau2L&rhp~
z-EC>vsFRKKYzWuRM!g|v0(BXCzO$_!A+@V5Pti;XW@MuQEpJlo**L&c%h?-dBmQa9
zSgJ+N{{LvY4k#&#uDgjLBhlp&1SD>gv|)gSaRemi49k$CB*{?(!B3(AkR*r%$r;It
z2!aHOib@g$L_osybob=6|Lw;==hV69)~i>qs$RXS>6z*3cB8c$jony!0!`g$#^8B1
z=^ZzkxbaaJg^91PVlWv0xthCC=&X%l*20aJZrnTQXlx{pD2$Gsl{Rj4a-%bQ<xtwX
z(aw$bZgg;4%m1??Ngai>Et16TnlGs8;zn0DTyFGogTf^pm2Pfyr?8XK!wu@QR+eOY
zN=0^nMHKdSqc8p0MPcgW1~)ni`-u)E{oU49Ny0G>lu-|IW3Z4Rf|L&x<#*i}CS<ta
z2*Htp`~afO(Qb@!!!+PEFxHK6ZXD2YP{(*TCa}*QwDVx18<X6~>#=^3p6tdHH|A-W
zuVJbi)7;3?&{M<vZcKM0MMJ8F58RmH#xHJMaAT$$AG)#Cjcsnsa$`0F$&EF1xEud-
zV}TnB-KcfL@iA?>G2e|jlBHy>kYHce&u!GzRV-}VPW{A<Pu=*^jaBp>m&{Wa(-Jp6
zcViJ}s;#=15#_a0c-&**7o2N1mbr0cpksMLKVaHdxM8$csjyOnthk!N&_ONz)K$Z0
zCwY3w^|csW@5TlpYX#Q{QiuKd#*NKxY;j|w8$QFnNs#2g0Eg9Qf94&-Qrqsv4mW;q
z<G33;-Pq;Ew+vA?ShQPkpBsCG>=oqLS@g?QYsd%OIOxVvPHsDu>5v<T6a4N497*uw
zxl>vCog3ea<XA#}`iA32H%_>5M*6m;t$LChiyNoh$aB+bg#$k=Bl=nJd^`2js&op^
zivBsl^MWZu(>b(@Zd~Gi>&7EDF1vBXjX&ME?#5L&es$w_Zc6<fzj5(CbzO6#&HzX8
z_g$@@y27{Z<bSwvv5Jd?c*70)=aw6{-MGol#50-LF4JFb+~-ax{kg-Xy*TTx@V^D`
zvFY0ms<HEfo?0&YN1XOhu;XX8$8J1vL+AXu@t+${xy%i_CZ*5Bf}2~G*Zy4a1-ntj
z#q7|!)~IRC!_IWDi0OuxOVzX|Yw)?@cZ1H1yAco)aU<$RP&fw?5)u}SnVBaBJE+VQ
z6G{F5AzKI~NtzYyBy6Ix*Pf;!hlbi3>>6wua%w24p_GPP8ggqWrr}i$c{JqJ@QQ|l
z8uDpYkaMonFCf400<_RheJoSS1yV?};%e(^kQdf0EFx+}h5yl3W#7`dLffejd2u!&
z!CZnBN2KqY=AuGr4X;UQ4Gm>9l+{pKLlq6>#CQcU#csSVI^{KFG|XbQqR81|B_VW6
zhKAOI9aSaEUMW)j*&s(XkyICK#oylBsWmmcA*F9h-)a$`x>OA>vaBgSI>?&wIvVO~
z=%nG3_G&#1nHt{F&_qLh=?0B7)X+e<Ly%S865`bGwvajRyC`g=p|OUQ5<F$YnY7<j
zLo*HSG_=>yT)NRxy3s;76(+coTX8HJe+si)*H(~zBWL1tbP)U1+N&KoiLc~fs(#7p
zd1nn>G<4O_O+yb2V{)f<=Y)1p8K_*0C1RO38fNW%>iYGT!=<5@hL1JtcbncC`e+!d
zS^uc^)zDAFU=2gK-?mlzYZ#;<y{$Sx!$1vpZ`+&s?36F6n|^vKPTjW;)$p!{(Hg!U
zl9hjQ)-Vmkk%GfDj1bautx6%&C=Kt4gq*+Gj?pmkfPMM~mB?F?#%UO@VS<K<8YXF&
z#!X(c{_35qVG8?GGff%dVs@%#-E(#QiB*MZIzIw(7M~%)4>WvU&h}D1Q^SWMoFzD0
zkVPM9_+Nrw&0m~9Da_F@m(lLYVCs{Sx<JE14G%T^%c<A!sfKeJ&TIIL#x?BI@U4bL
z8Ww9<uVI6RCG?wyHS~an&bgEsM;%KwEYq-@zUAwo3o1Q}J6BLaelcFD;mZVHrD1h~
ze<fr^4_n<Y)wLS<Gxa(R^D-6IdTo<hY>WC0KlRqCn>1|Ju#rC8rn1PnQQblp<x6_^
zuwyT~x?A0<VVe;0?Lu}4?$od=A>S=zk7oV(PBmvOtCjs44rn;8;YSSzH5}4#M8i?8
zhy%{UbXQN?>HJAlJNMM}ordo<9MkXvLt=x<m)+le>SB?;((2NSP3q;%>In@e8O$2a
zX!uFPDGjH&$y{(yp>K01jl93rzOuG*(V-L`U^^>gpY&c@?~RtVUo>3M@TZ3B8ZJuF
zRSmytxWp*6<+!ZjiiQPWS+78)t7-5z(YdDKcMTnL=AeY>4-vYjqD-bz@tos^hMSCD
z4S#F6B}IP;-WD7(GK*F2usL3A%UJGdxUb<KDP>W|C-w&k{;3RevZ_21Nkl_b!($Ck
zH2kOGsRmQyuR3_9;kgD)gNHuk9Ocg8=Egg~R`8kStCy}I(Zz@%ShJe4zo2ql?E5qX
zGz2yHxeeyZ@!etPSDREu#puemkcKd~GP^Zv>y}zRXNrl1oF2qAWNS$BAlZW)9@soc
z@gUWMG>;X5^xLCKO5dVN!*%M6e3pgNHp^pwxRaFuHj-Q(<Q7fxJRbhXYV|gs2l+iH
z;K3^%H1c5X+N6RW6!O3>S7^LQD=eh42Sq$6>OrxDytI&41=Bq!E(9Kw5HdZSTvA9W
z!Tw?E-UFuBBwNOVvO>xUzAji^u!08_J*ebCV3x|nDhtBNBvqs|Ls0Rcs*q|PyeWig
z)rHjXpr(*F5^`2oh1W_*Y71d2tX0Q@x(RtbA(<Z3Pe>Yg;PBur51a|f+a5Ft{r^}R
zCU|2H-VxW)U=z`7D%dPhtGNd)61=4ctrEPo2W>nUIK>)fayYrY2Oa2S9mRBX^q`Xm
zKX`E5gU%jwp?weLdC=8^ZXSH#!3+<&d(gv!cRd*9L6!$SJ?QO09}mi<DJ~CsaT3ca
z1B>L~cKU5Njl8c&`t(-$S<p{-e?b-vc&RKnNN}(RLlUJ!J@}_VI@N}Itk02&9!&CJ
zgzyrB)R7)+$m1O4!FxhR3sN#h$XLN~g5w1z2(sd252ko9&4c&F6st^4kW;<YSQ%xy
z2eSrQWX&M8Yf0x!4?gsO+1Vc6^=)TQD4fMP8mv|uUH2mo{^!BRjPOC~9I?Y&e^ct&
zKK;khxVJjrg9RQe^<bF?3qAP6gT*pB`sz~;KJ!=~M&;)^nVq=N_PGZ%xQN~^>11<D
zXw3s}S*7t6d&*=R{jl7F6&`%+!F~^F55`IlHhHkwgD*W;<-uw$lhw|zSmm;vRklrc
zuJM4civC)VWUY{Og6rvxg!~&1HVU6vO0o2x*td9iBY|t52jjaqw@QDu32qnM;lWNJ
zy9C+W-9q*V?iF8ANDJ)70S^v(@SV7>!eI4~2Zud4!fm9UjoDQvZS=smU0p{xuC6Zn
z_Is&*%mbFvfxJiSM-NVT;Pb%m!ATE(^5BjKcRe`e!D$bEXU{$O*@H74{N}+mnU}L3
zoEK*vFYY|Y;C$vH`9&o3@C6|k1uuDUIU&E|!PNx+RR|}g$`w1i!8u|-|Kun<xZ%M~
zE}20#%9-e{E`!xu9#HcyZeqopw*`4&z~NB%w+Ht;c;vxj5AI8Z{KJ6B!~@~fVfQ%Q
z55;@`%J2()<b1+4Sls!a2TvI@^=wT)a^5cPd?r<%OVN(|4!ZY+2W}5Ym^2SO!gWDI
z&=m9vQYS4F0S|)Q$#vLtgggkdMQ-vQL_CO!{pp!j9C8MU>|VCGG+9TAZY{$k9e>oa
zX6m=0R`fEZ>PXY^S#Onzoy@5tmyW_Zis;C#Bae;(I$qH&<vR`1^XkZ_TPwHxat9^(
zb#O_tA|(ZN6cRg>u#^LQ+RKvnu4kJdi}zI>={iR07^S1Q4(O<(qb@DzD5;~0jtm{8
zbd=Wdx{mTXUei%V$CL3kMs-;o<*2;M*|BCCqq<Nyty|4BcA$ceiaIJw_c$ppH=Ig3
zcq<*39u>;>RuvspMZvD4nvUu^-qfM$sG*~#j;4cbZ|GnoaMp;tnVhd>j}KI9=^*mI
zq1x=pt4<mu?^4DJ_>SFBPe-PX4%~8e)Ys8KM<W{1;n4Ax4i5Zn9b4h7;YoH%mgHhQ
zrJ-=jY2+OpOO`p>NynP7GoIw8!kY;;m+I7Pp`)enR)Vb)@-{-+(owxts&Uh3&rx5t
z({d*ropogC=&7TNj;=bo>F6$Ixv_Jz;&8YkcFuP8V09rxm-MZ#j($3N>FBNF>?J!j
z`{>}7NHVdv+Fx`yx&abPBm+e<NQ|@T!9s@Uytn!Pqw8HE!-xsV2qDv-x!%(;TE}Ag
zLB|*!V|C2b@u7}!{P9P}G#&5LpM%v2($*xYHIXqEPGj^=)-grLR4HP+yX)B)gp@Np
zrt6rIkbj_KO=qj;oLLThmX6sv7U)>0<0CQnv5q;S{69hN2At)&I_Bx%TDV!x#tyK>
z`BF;BCsONE#<>nQ%BF9vvVE>&k#2o%axTU%v%;Qp{e_ODTq!!f(XmX&aviI5td{k%
zLI*d-mBLHt$zMvA5<2`Vc38)HX@$*wtz(^z@3{Hv){c6xmrBmWk-p4s)Uip&9vyq7
z%4QwgbZpnLMMsXoD$`a5d@(0i&<@@D_}j&Gl&0*I;m`;JhQi%aL^+4Ek1k3}{Z_h^
zDxatOWfr&-9@24`>ruylI*#bb&Y60YebW)GYTak@y^hPt$}t^3aQeEYkssIbBl}-Y
zxu@fVj*~iW(W^RsqVe}@&VM8Aw2le$)l-7YpSgZ!4BXE+!@$#VPRDs2R~dUc9-0|V
zm%4sooLqKX&~cIb!#VpU!7GB71*dMs^D}l9{ifp@XYk)lW`Ec5!3ifV5Sjjv?4N?y
z1#jrMDTJl0^%pn22ll_Y_LCKoJCeOCxbvBd61u2#DDA$E2Ri;?-*o)TC4a|Wa!TDt
zy7j;6WBNhv%O$4~-k|$b$1@#s4a_s}T*nLU6$Tm`aO==?6g5!HfJcX}BgsIr0fT!W
zAN9lSU5Cj<Em@ynfGavJ$*;p@Q(Bf(_A0h>X-QNLOKD8UWW^TYj7atyDJqsziF2|<
zvQ;G1PcdLKkkhalN;Qxsgf??fUNMa%mx0^{UNKP6Kpq2m4JbL40-`o0Eh(RY{07*8
zlev;++myoP)5exmtoLzqEIE}T26mQI3X3xBw=JKx%%(K6DX$txH&ER`4Fkmuz(7R<
zl?;?HP}0C_2Fgg4QZFkS=#gd_r-jXFNo5U`6M1<96uxdC_JvA99Xh0f6y2|oMo#_8
zl2xS7RSaZEmV@HZswbsXm25QwS8^z;awXL?@P+}qfjS1>G@u%&WuUf!p5@bMYF=8>
zNySz}v1JOUq^^N_1{xS}7|0Y;6xJ6)wRS(-m}PoPByStmOgV)ol}~GEpg&*4Tt2OM
z`LuToG%+y5z)%BC4gN@ot_HdpXl|f|f%XPE(8C5=N!>PrTXQ9~ewpP{P12G&q$RaA
z(9Xcrw4}IAX>&1?&hKcTljv}yHN<<J4RjI7l@(Usy3?@+`mrYl=-4dw&_FLy=qc03
zY3<FS@v(0P#x1vT?&xGz>}%kNP2q4@Yk+~lQe~ilK|)^Y3~if6Cva-sH89M;`v#^P
z7;a#Mf$;_=7#L|_lz}l)g|2wdK;@(qwnh7+WllN9v20fqCQG}tJkh`;kxVl%S;!Pl
zL0#AJXD(J`XiXL2vRp}{Z3+kefq@w!`Pjfr10NdrpJZnVek90>vn4{PPkzLoOytmr
zb0qdi<{MaG;8z2`8CYoG69YRK+Xg;0@R@<N2G$w)+`u9O%M2_xu-L#7154Q)zljf4
z$Ch*+9;JR^VD4bmxRpud%_00vX@!9=4Xong@?@;!ib&zt=Zw_`zA~`JKz47HKf(D&
zr9K&zO7gWxcsWY>dIK9cYX-J(`Sel0F|di%ODP)}HuBpS?XZdQ%N<)qzU?LUQCAho
zv0XS19v&%|xy!(A1K%0=-oPFMdkq{kaLB+u(b>;I^;3uQQ@{ZAX`gSOKak*u>5$Ua
zweb-lyo>25mvdexCB$O}elT#_z|RJb8~D+{PX<mIIAK`7D;7>m;{JJ3IJ57|4LtmX
zt-6-X+s4i?RJ07ruNpWj{G8x<!CwR~2woJV@+AY86a0!0ejHEcmfK6cX5e=N{~CB?
z;12_T8n|WPw&+|J<N=Kv2F^dV4=9}Drh%IeQ-^m~SB^^k%fR0T?isj4KaW)Tv3{5P
zLs^CT_ZgyPlz%wCPwXTQxKYSA&4(hHQrAZLV*^hNyx{h3VB0|TKLbw<>z+g2na1oh
zegug8(E<DU(JCdp+SIuJ8_=bdKcBe_(f@9+s^zr~(DBYjp8-GT+KbIz1PlZXekS5y
z6Cnd(t|k*>P5w2EC^s<^bxp(!#0``(QQAbdfg}@oP2@9?Y$C-(nu#1Hn)gyuO+2;t
zyw_DF=Y2so6FE(s8mWHVS<S_wXRbV^70I~;Nt(jhPtIV@$WuJOiNYp|m?&W46%$Lk
zss&BVP&2>2XfI@9MXIv0ltL_OqL>MoC}HAvHM7GF`>Q6>O%yjVthBPFzm3S0b0|uh
z)}3b6JQ)YywGK=2_OsValrfQELNQU+L^;zs{9D1q>!x)R8a4NRi1Jd4H>a_C6-`t!
zQ903D-UnF4<QX*kgIm^3VpS9JnkK55sBU7-B<t)dQw=F9y2<v2i8oECCTg*X!Z}`+
z)|OJcY28EBczj)sD<dVTo{3BoJx#bw)Hl(<L|YT>OgPvd6YrR4LJKC|HZh{Jb*ho8
zvZ0B_%%&-gOzZy4L7oiW1^4m*Y*Q1>q?MK??)0$cqB$pSRB8)$@&hLm*C4-AwK73$
zZK913Ua&FS-b4qfJEy1G(L^T`T{-H()(_)c#V7lyolSHR1#*t4o5??w(8ILW8n248
zq)Vw?)XOETQ?b27v%iS}rgfWQZxek?^fl2><op$gGf1_y!)%<afhLBS7;0jW%)(&7
z`f@WKm({y$f-`v8{+*gR%(RX+a~624b%cqLCPtZfPi#`cIik(clBM!E6XQ+%VB)xm
z2_`0*SZ`v3iAg3VoA}hkXC|hYm`Z&UADftF;(Ze{r8-yTbQ2#i6is}2%gHHgJGQRv
zxr?{zv55~&%o4TYsj0I~e8kX_<FTc+<c*!xIVR>x=|WCrhV7Gksq;+CH?cs3tZs!w
zX@#0i;whhSisLEQawUCkVi5!0#7Yy3Me_?2ONA_<P6sQ-xTh^MtqpKXcFJ-g<lOeZ
zG_lIWS`+I`tTyqLiLa&N8q@k{;KrD<tIB)x$QdU@N1AeDqOHRWR4u1`V`8I;{U#2W
z*kod}i5(_(%CvqpO5GxMwwl;Rv!hh*OYFvW5x)N1wadhA6BWm*`%LWNLN2B3HLYXs
zvnyILu%}8I`L`y1@g;Ms-&saEXyTBG?@aJ;++h<(OzT_NQ4?8XRelX&;<sb&oUe7m
z_gn&ltv&M?m;4~>5dDuPPMEl0;-ZO@CVn#ENliMQr}!xor%mu<?yQNQr4MIJ^x`4$
zFRcC)>#vfZGjYG0%5>g@uNHn`q}{WQzg;qM*~B00kBKWXs9#O|X5y;Je=U<=&h<4q
zC!Rv(-`Nv+FakN}^g8`-;;xCmrQ%K5RsIrw%fxLHbIS5Bp$sDR?}&Wg1Y54Lb?=#Y
zAj<beNXgtPY5#C3r6@}_SblqC;<1T_UNrLJiHZNX>w1yTi>D@@aik^!CZ3ykVZtzB
z(xskcw~2T272i3@HL*dKM$gDB(D}NFqooxRnq4$dr9-?XI=4}Mf*<EC&b1ljo^K+`
zPXSJGMp~G`JjAtsjh!1*%tYLT&5N8~o|<uGbKCbK)r%y_CJXXjP!@Ho+cV8;1zQd;
z-bhuJmvAyHOT244e$tl9i*G-)t}b$Wk;e;ne`_KN-p*u~@_SK$`d+;0#Vf4tML92C
z_o9#&g}q4kqPW-kt*M9?#k_b`cu_%)h!e!9<}Knar`g~|2`@@}@tW7#AEG1Gl3tYZ
z;^%HEKg79RZ11L)@milj*4{f#9mG=rUJ!p*Gs}BX!HX(hWQamV!Af3hgXL!{t5l|)
zj5HeI4xo5Z-HRGtRP~~o*ZM+Dmm04ri*hH`l#1_lQ6KlUuDiG)s3OVqqP`ckyr}Jk
zos-y0E!9P>;{`u!PRhqkT`%gfw_Q|vkJvzJIlW+DIJ|P#v`E+!R(V_GyvSi`V=vzE
zVuBYFy=dY^Q!jdZ(Z`EsUNrZjix*wJXyHXmwngX2wQ(yi+6d>Ra%(S!=CUqR+j`MX
zguI0QC@qOa9lYr1#Z1NK%&BzpqO+8~{Dyc`u57z`(cOz4UW{CBdsVJ`dG(v+MNcnW
zUi9+fY6a_C&(#agPcLTf$*I`-+4_3Xk6vXJFZz2iz>DExb|5E$J@MjQ$qp7A;>F8v
zomRIirj2f!w!xpw?<vEi^yPPifoVyjym-%xu_C1AXdz<+yQU=_l&*3(<GdK}wZ2R8
zdoI-`c`@0G&%IdW#S|~5dhxLrbG(@5#rs}-=*28Ari+meyqMtyzwh);OPVQ?mlyf`
za?zlTI$I<(_z|a|wl!X+|9QcFlFapDo)@1abmn`pKsdkZvUH*FGi{ugZOW&@KNIBl
zM1E0P?8Oo<)_CzXquq<8Uaa)uOL|HA&+5y#^!nMBdqL$DY)EQRzRHWQ#LjBLT<+wL
zJ_G$wgx@l}Sm(t?ul0>=y_9Yc&ao^`OZrA6w7~CxM2>fh7hAp9@5KQxwsFcH+nM%x
zvE7Rubfy;%SJd4lxG+a?^4$rYJwo;hHhJ#)R!C;9R8~Le<z4*<dJ*#Cuop+X@N<j1
zn{kv&$%{u`Joe&yiS|=ooc3C0osN0&1Lc#f(@)2}_)&!9C%iZ*{3pQzt(+A8?8O;I
z{)qIeUYzyfoEI0oxJXal%sB7GFC6b`>u=3l`z_@E&X>G6wbgk=6fO%=-nO~*r|r*K
zwqL#Yjr$38ayps*_2PFg{_r9tkol(<cN6mKLT-3*Q^>7^{I-z41n)?#mv;X4;+_ca
zCo~@j`A6`f;OO_#S%vyfy!ek1em}#<1+pxi<f#|Wym-#l=gDM0O)p*ucMEEQEb@4v
z3pWyy?gP@P@8#~A%lc>bSx)DhL(~96$ZcoJ+aoRPMZ^md&PddYm`qJPA)&C`lT;!V
zl6^?=Vfz;)c6?DH)rT}6KCM;avsxu`_+ay4Z@v=y@|DQxLoOel#qd0a+&<*-VR;lQ
zqE;Z~^<iNcpM;Umhx|Si@Zl97CXTH;JA{Hh6!PJPA8tPi`%uJ(Dt=`6QPhWGKHTx)
zu8;TmAl-+>J}mK}xDW7QfDZ$GDB(j%9~$`J@S&6srG2RCLp2|=r#fHr!JnbLF1(Cj
zSs%&?VQKPidwCx!_)yV@KdUKKL|#caYgP8)cr}IcO`Dw=J}5r?udGualf|MDRh8;K
z)Dq+5HGCk}^x+L5Z~D;uh(i_r_7RmuwSBPrP={`LL#ZeBldd@Ha$M=oIhCDkBGZTZ
zKGd#mHJ4|S`j!t)A6oj*%7?docu?NSMw|N3P&l)Vd}u8E9UpQWR-3RhlU2%xyrD2P
zV+TaeS}lA?eM9+ho3phKZG7nFLw6tAO3&L1wv+yFXjJPUl8!!fqALbwb(U-wA5K+Q
zXo{&TJ-plglK1eTmk+&t$PzUQd-~w=Va@ui2ji_ie}2x<$A`W?^z-4930dV;<#t1b
zw|`KxzYlNKR099n2l+5`vO3X+Nj?nrVF<H6yvrG>sf_bsm=D8!=u*}>md=zBy(h>a
zj}$UW@b`|+(L&hgF+#dMcd-K(=h}D+#CRVjNDp^bSAMLaO!i?4r_zUyML5-m4}?rh
zjN*MCrYCqFRhi+#OdmcJZ`bdv&hlZ*bC;qh<g<OC!H+n1omIMMj?DN%(VQz5<_Vwg
z1G}+6N;&opy|dW2Pq=oZ^fSTFeK2Y$i|DJp);umK?fk-rrHnu};lna6A|JMK>517D
zKCBb6Qt(S3R{5}6_}7A82{N44_&`$`ozvHf<hzcR^VbXC;KMgQY!tp(aFgJ|0+tTb
z7MX>uKCB;W#rzH*cKUF@hl4)slC|)yM9yv>_HgaX=-BgpGT7YPEF)j_wkqxyvw=!h
zNF4Ivd&wU5;fN1ZIO@Z9BANT#^}m|R;Ww=%z;sN6KQL$&D>7;4gb&w5c+!WT7?VDn
z_VFtQE{O1FAI?dC&Pev`%j$}<u#~j}ocE#ierJ(~4#wm~ABa~3F9}}e?vY`IE7MgU
zeidPMW#@0Qb||EU-^Jh`Y{G}@KHQKj<+psenczn*X5AM4mk*7KTOOFV-}$!>_k1Yq
zM-e~nbFR6C`jP6#KR!J4!RG_-JIb1<{>$CZhn#sW{)lU8qWW0yi4Xq?>03y7$_>Pa
ze{)+p&p8XLRT5Tl`=Ci(a*q$X@MotTh7T?5PSXdkkLLkh3-Tyb;0;lJ9|ArExdiem
zAs=Ew!h)1UXko7!<wCA(DKo{TDBFi5zt!7hzg6+ba~Cm9cy2#-9(CmKTiv$#@$3~P
zryqH8E4lo5e~*1*9%cSfmEF$cw>qC!FrQ$4!2*7~;>XD~mQF!G3W<f^p1YVW>PIm@
zzFlT}&5s8K`93Ly#$WX#UD{;_iVJ~Y2|r5uQOb|<-P6|=QA&%@Kf_UBm%WVGWZkkt
z%K7oSkn(~R1S|US^tr2&A4`|3l|@4R10V1fE>!j7u^&(TsOCp?KR)&2Ge2thQPYoi
z{TSxQ8-Bd$M;kxd`l0%9dWHJ7AG|H9mhjqs*!`#@oJIA8)MZ1f)Ox}*{g~G_i$zQg
z{3!Uf>Ja%`emFU(d<xyjqK0C#kspoyct<#!XfC9QA1N<fP3h0gYBQ0PU9GaTg&!^b
z_;6fSD?eKMadVX=v=y^%*=i^A)zc4`AMO3<;73Q1a1y%;>EuUeA@p+>KRz#N1ztCi
zbQk1V^&Wn3a<lvxD$&R==;g<;gKB?2dP}tE-#PlQKTL&`er)Tg>M5YiX`e-%0e%b=
zW%5COEZ$=uOdsY`hR~YSrDYZkm!XZ7Si1g`V}u{Xk%FTH-}7U%kTHJD&84uEjveR6
zct0li`5YU}6>F3Hm@MRff>Y=gAyWkz*wfgA@aYN32Y$>DJ~JWNP}51xS<H&$BR~9K
ztM%TpgdZn#=J>I4hn*6pc_N(e#{wa>>pK_v`78o-J>@ue)<K2O{aED31wSs*1AZ*=
zW49lBMEMIpzVu_2A78a}E|vISCLz6CN>{MA%hZ*AY;UAw^>VHDW86}8qaevwLe}{4
zwI6H!$aT=U&W{a#6wjm3&+8fL`4p;slh7ZLTiGOhvmaah*eZO7AT_tK6&?g&z%N%>
zi{0KS0kG?(+PCUn3Asal92T;VYgP!uY`-4|g!f;r9u&fGVpJUAlJ|pz>8OzJ1ixoU
z`0;}u$0hrt44FD?_k{4bi&)iv^5c{!oEAJM__H6k*QjUwIP2#Nr<D9F)tC0q`|*n(
zqjFgl**eoDKW@kp<2H5Kk1MiYUG?KvA-@U!A$X0;tzpgI{aAn8L1m^t8Ekvi>s-H8
zoTrmgZi<~-g17zn%a1$4xnLjqao3N({kX^OtyJ&R;A(4)zi6yHkVz!}N0hlUlm9CN
zd?b=Z-&!}X{>P2Tk6yWRkUy1D_hIMMRqAtY3ol&Us5L)4e*7<Jec93dFt}j`@oEsJ
zA6`G^1TZ%MAEVTd9sy(p5bz_&eJp_L0fhVr`+)#T1Q78f$~XxicK|Uz@^`GylpL@~
zT(a4ItUI741@K>nlfsk$QUgd61)E@w0KR&V$)b#gN=}j3U$~fM$`imV0TdKrUcr3C
z0N!ckEFf9xRBe}4D8Y*gDI7qN0N)mE+2rtv#R7OWfM$)H>7r0vaCN5DpNF-Sk^z(n
zplkr80${eZAjxZN+NqF~6G^22DhqjCuzUa&0{Et*N`;CdY4sqpiV#W^AsK>gciXE9
zSywfUW2_NC%>dpGpkV-S1n_3S`rcYU05yPG0o0Xj?Es#2RO<wAXOG=3oH~@Sxq-Xw
z<n;o`6wM>8oc2G^Kse=&0NxVrB-T?}zi?65D1gQRbO@j$T^B%;0NRL7(*Uj>P@4tN
zT(VD8TMHqq(o)FK7p_)9S_^ior?9APLZ_XO_5pl+(E7UFNwQr6=o&!qUS{V2${%<3
zx}V9SZUJ-;pwf2dwLl89gKH~SPC9x9;0j=T028EQuK<PxFg$?X0rUx=Zvg!Q7#zUe
zdzt+MxKvx|%$;8}XTER^41n1|0rc2m=P=2Kh~`j1R(V&*bJcnx%7_5o6AL4y`g=R=
zqXIm;p^QAJjuttMj}bC9fN_k3jw(wjoEX5Q0Qkt1SyFLw0PhDdUHBBise;qQjckbN
zg8*g*@E3bkTbUuHX)V$}<Vf3P*$$~?I;pe8AZ>mm<bU*DLh@D}WnKXDxl#gn8o+`8
z76x#bksQD$0el+3jsSKB@L2$#2e2xD)d4Kx+|^dT5F}X~z>)-ac2t)JuuQVc1Nc(N
zp_7gk0jy-l><abQ)>2aIS>&q#)&#I6fTRbRUk9+3&DBvh2Cz<sus(ndRFGKut+n%;
z0Eo@oWgU9qBBAD{05%73O;yOhXyn`~cD4y_4}gBIx5G)xyTsZ7j_9~mYj*&90@y2a
zL64QGtLzKlTQ0`B%6>r-2GT*%XO%-QD|Spj8o+n-c>uo#@O=Qs0{B^c_=Dhygg=i9
z`B9K@PM@C?{!;*_0$`U;Co~z5X974Y*>i%I1kX!{e+l41Li3`K=Wjb{?Q#HDBwL<q
z(60PO4+L-{fSXe5cfmgc_=8KbjxtJqlDaNo#@OJvZUt~VfO`Sl7jOT?#U4QN9($~n
zv(|1q$=v|{=E`mDB>(b({XqaN+BpB=PD1B&vO;uSCFj2ZJmNG}ax#ss<XnBy@i+jU
zq<A92rAM-!1@Jt896`(HF9L8&ud)Nsgm}5h2jG#|&;u|6;PzrN+b)aq^>V9WSN*c0
z!-4_9AU_4TFL8qQ*r^Z+Aj<t;isFKoUbradA|fUQtu2lzSx8C{sX=i2O$(yKNeAV}
z8ar)4<P2KNJXa6}g4VuAo;!#<A|%fnM7|&&NoU#2AH?Q5)(U+kh=M^B60>wj;UGM9
z6wYjsptZn<Jjg5>1pP^#9z^jVh6FK`%0ZL}qD2rbgD4q9sUY4CS_d>r2k{#9XFF78
zgD4xc4q{XfqMVRQg0BlwUOtElK~&nPl2;7k)G<e;inhu@RAJKzovJ}7L43MR<%tri
zRSSY=QrOU#loV!b1W_}g`9=_L2GL-vdOpiKkyI;)+CkW*GYtgUt2#l{6&`I?zaC3B
zshL644`S7Nm8DBIsE&l@TS4$(g)<268mp*b&^oij)JRBU!FPgaBBa!MwP_H|f|zv7
z(VX5`ug>0LDYIg$AUaDATL*D<oyycEh_(sdE{OKRJBZHhiE76nI*DZAeS6^_oLz$G
z8br4s`ts|;Dz#S--G%o^NV0+$wNC9Bgf=|OCBh+F)ZU5GJ|sc(3!=Z+9}vXAAkOWv
zObrTR=`05cPbAS@gQW_|yFm;K;{70|i`$0>L0^pvVno6NBZZ6-d@qR6LdFEqW1FgP
zQO7bi_SiZ0Wj(US2SJ<=#6%&J1Sy#u#1t9h*~#kEAf^SaGf<Yik#&sd(F@lHLAbZ7
zOf#h0GlTe0;^dF5>Z~AUbISIq9|duKgZg|#R^D~$$3e^qVr~%gg2)acDTMh!EC}L{
zApQ(uVGy4LaWIHO98nOT1@UzdYlHZle4n}`h%bUDI?cH#Xq}>3OnC*R&u(=o1K_YT
zeYd)b-40@T5Uu%3NI7K%m)@H$rj;~uNd1zRe>?5Wt`36AUkR=W;;;9zn4OuStP8?*
z-@Y-3O+l<r7}-Fl?X`cy4o`Nnxy?b8-)X00w~#GCYz<;t5Zfhty`Hi|NP#`-&LDO%
z%yy{MU%Ass+!Ms!AoelZ$E*Jxc6=+{=E)#h+aJV%ASh&-HX!RTS8iqH`yh@5F?gr*
zNDxPZNGq@Wea!J4c{r11e+c3@BZR&cZ~Q3u6Hy3<e=>+JRV+W8N=Qxz@pBMof;da(
zzi@3XZ)5592`cdy(YYdcA)$Yf^YUieB`)M3!iOCH>~vC->1q(aiq3#a%5O3Y*ChLU
z5S$JwTo2*~1B0O+#LXaXaVrbr<L&BgMr?+1k86L2o#Zdc-VwYT#NR;-FRxHe3-^O~
zAU6LAVx{VQ7{rAS9rP9Xzd_Wv;(R2fkEOKK0sDVJytPw(8pN|8o^yNIrMB3mz6fH8
zjE)9b#S=vC;?Aujv%JzzofEf9HAHB#OS|kne{lFXp(C^Wf&oEhgF%GofgmDWVj_%7
z>oMW4yIu8;I@z~+ZWoo4Lr4k16+*8NQbR}!p;idBL&y<=ErgOGlnNnd2)RO53>OU{
zw-E9IA>>K$ydld``6QcP@Nmu?uLvn9IB}O+C<L}!IApDeB3ws@EYC9)3*pre(nBa7
zvZmv>(-Mvvm4y&Wh=jt=oJ#2sUJIdG$cnTwA(Uk&&pRrGP)_W>E^<cZ$~$%{ln)`J
zf>I%biX!*#Rw<-@WvNw#r6DLG)Gy$qF#ivZsvLNEg+Go_t$GMGq!xM25Z(yk&%O3H
zLnw0Cp^BWVl|^>xTZ<4{hEOMjx*S~ynISY1d3`}=qW=v-*s#~`2*IqNycNQPZ7K)#
zwv;v$<ajA*Ec_k8CLuHpp;-ure|F^9Y3Vl?IlnZSjg(d)v<{&|Wu;pPZG?0bq@=Bo
zcG61w5Jv4(J8%>;94zW2MV$rd<Srp}P1NdB#@StX55X)!ZXi8F_;{zCb$he*5XM<q
zmD^6=5C(^=v#aF&Lg>#Bx^HJ15W+y=v_DA5?4KP&=(iBwm6;kXI82Z_!$TMm!bpyy
zv=v~ZLU>P#eyw61JEeqkIwoZ8X=6pcp^7qI`Y<7ci6Kl9K3$L<n;gOv;ZsAHCglAP
z$~RVO(o`Ae-tk$~`9S0|ILmv~nQU%?^Fxu$3V~f^_<cm7p8P)wLzol7+z^h3@M8$`
z7_=em3}IIY3qn{J!m<#Shrk!Rd=kRq5SE1SDdQxE@>vL<hhX37;ETBzg}|4Bb#`0t
zD`EOV6qbfCX1k-^R!5gsmOkIoa$|qiiV#+YtoOxy8N%8S)(Kw~!s-yd623<8Yp%OC
z>e>B{VQJReWY#mZ*w4bQZ6SQa2z+GUEJ(6Z$R<I)AZAO*dfg1=TPfLXk?kSyy;M8I
z?2R_A_xC$?hp;DvBhtyeA?#y6gPDBs%D19ZY`^1R2>XQ}5TrrA(CttNEIKSmZ;&4i
z;X5vk>@+^V@%s?IU*|X`Nb*An!`&{D6Cs>r<b*LGjGsa{6~g@x9)xf@gr7tBJ%m3(
zI3r<vC4?Dw>}Nwb7sB}vehJ|cJzPQI4|m7EcW^ab5Veb(DW}3Li!Mu*`ez(hLwv-C
zi|g)Jk^C0IHFj)|N(nzA{|w=J2zR8271_$U^Nt%K+!V<zI_iYuS~cfw?lZ3|e{qT@
zsJADmccqkV{T;%+5Z>9VI^I_DG*<oz;UV{yFqAO<4dGD;uZPi8b3G2>33r$<a)j|8
zeI7zMgh&X+9tU3s{49j$AslPvdJ%#r1U&?|WGT_OH1;}33~n8CpxYJVcD=^o4S|Gm
zCSM3``R=3;0z!g<lx%dncD1k+q72axlEZvHhV|ODc!*ENun1Fj$a<4nQW$*K6$uqm
z!blZO@~GQI`T5NbTNpXR$Q8DfUkxKYjND=52_vsaUJ0Wh|Njl6x{CZFp;`eU-BoPh
zD}aR;6D%A?5g|ndsmUfvXjXrUhXE0m4WmRDCBt|vq0?Tqnl44*Hb-d@sw&Ea!M;&m
zQ*)IQAqPSUi^_*lA&iP5?Dv+dQlhkS7*&L`*6}v3s$o<Mqj4DTu=8Qm2%}yYnPJon
zTW)_t(B9VdvD5XYa5aot>;r#L38T)-QbEoL_1|vdsw-J4)DNRU7;lB)l;#{^&<Go4
za%rx&!`4gI*nvhu8iw)f_N<q$T_ZMO%!JW5jDBG>3xlh&hhTHT7Gbmuqg5EK!`7<r
z97dZkR;_fj4WpeXa8GDY3;P}Cwm3S4(IFx17{>K&4qD^dCw38eSI%P_wObfpH?<n-
zE<#Gkv%=^pS+?Q|qgNQ*a47E`Mjw&C)c?1I6;4F%V*|t1eOZIU7!pSR&dMOk@?6i*
zFy0MgTJ5xHG!n+}FeZnw=zhis!4-uYjuJ9bkiU6S@*e$GxZ&t9#)xpN;5fnYf)fNM
z3QiKFK5b4BJ~fOV$E7pNUcJwOtW~Fn@j)0f!k8IGcmC8P_@Us9*6EbY5?-mei~J+@
zJd9DD)Q?3-$(%6e3eVHjIWLU)3HbufRC6a4J`LluFs_C1dl;Xy4`J*MTld2(4r56e
zTbTF+{+k(J2>B|ErC}@!V|f_rl++brtQ0vpb-oPqQF8WG2?_b?FrScSCs`B5*^)Nu
zd@ZGG+14lOI^pZX*dXK^LF#M_W0UaBg5||Hacdac!q_gt9bxR^(6(4McZT_F4cFQi
z_6w`(68D6$H;jE@e9Qegj8kFkmnw(DI3nag7zc$M5~PI!o1EU9sZ2-1_%4j^!#E~A
z{E=&+kds~gL9)jMH|v>{FrAR<C&OUhSod@oKZkLZiz19O9IuqpGv|a{6g)2$ei5XF
z3qsf&`6a>2VO&X+KCYSeTfzuCNjJ{bTz}A|+-D*v8L_76dKkqcKm<3!xEaQ+Fm8tt
z3?mfAUt!z{Lkq(bMwbriU2czIJPzaUFz$t|18zLpwl_QDei#qvvFwb01kXIoc*suy
z4&h-2(+bV?gqwdDX{)TKx;+i!8E5}_#)~kX({keZjo%MZ%Noh<goKY4q>j!FHZ|27
zh7pDtw$2@V%F`U0Yanl6;ZnNh^b3*%gz#SRa2Sy=@<&i0f@m1AFj68&jbK;K)OZ-l
z5wv!x+5DVJNlJ=XcYSy6W1U0c{gzz6Jp0TW)YBr!5rHjY-58lWf;<uHT}wG5);*lL
z1bM8I=UMoi-n<d;AVa>0^#ow1j2`MMA}JEFc7y6AoCPB&6hYw#9|q$3xre%=hjq_+
z(Flq~@T%xAn;yZ7!Rnuyt9mJg2TV94zdy1bI?Y>&N<~nb-H71(2wsbzOaz}r@OcDf
zBPbWazz7CK@OlL0Bd8idwTN|xRe^!F3K3L{pjPwxl_J<Y%Q<+9y>bLqBFGS-8BJa{
zTxF?3gL=k4$L!T3s6n?x&?bVK5v=~fUMGUO5xfz>o03&Uvo>|~j9P+MhO4Y=k6_KU
zOp<yLWJb^^g2oZlkDx&WZ$;pYV4^RDRUCBM7CY74-2bIIg$;%LFw0rem(1)t5e)Mt
zH;tfK1Wkw|)Z%dL2xc@F-ZFw#5x!_6vxW48gw|Smlc`41HiC8$bc>*S1nnc}5J8s+
zx<=4Zn&?c|wO2X`zvaugHOpCQgT3ZqI~!%wtWNA9!*oT^D}t;DFU&IP`cisEFt`_<
z4pVzauxW$6Zv_2>^bxE+(8jv`BN#yEk5J#xGpIvCvx6fT62ZI(=0`9zf_EdB8Nr7f
zAmc59_ZUtQ#D=RQA{Z&dp~IP_wNZ)e7*1sbQzDou-5wXg1UfT<@eHIhS@bHE+0dj2
zCX0mG{Qc__r_XY-^V1@j9>E6@yf4)$VbP2TlHnjJb3Kz$@zU+H=(;WT*`h`-eZ-iI
zfZ_3R1al&o%WYwfg9E&_!A_r(uu;}!m@zGgpy&v7q2MP{^r_4^g^MCs9KjOKyTs(x
zG1e`ADZ%8W5iE<~+X(hYusnhl5$xo`jG#wx$I1v+aTbJsDSqHEzhZ#V+YI9fzK&pR
z1REmwhCPg6eImME4&>!*zKl2WjpCLmtFt)XEfH*uU|R$)U9?>)?vM_1P>eC^?^vkr
z7Requ?Rw_OND56cTJ}mX>=P_J&~_k#gEFEcA~_^gDwlAqFYY)j68iROamUdJi~%;1
zW9$akQ50`RaXf+_BY4im9>IwSPDXH-9$uUDQv|0XxGiQ+NAPn5S0nf}f-@1Ejo@Mg
zmm)Y9!TAX87cG7v!js?`)sj<xVLu1jF0Hrc`!S1&yuo_=Wzo694X0K8>%KH<vgkKX
zUj)~=y+`nS1b;;Erzo&Ar!R#TNSMlgq283zTM^8-Vb8nXK4!T3(#~HIbY5@2Be>9)
zLjJdO;~txf;6VicaLKQ?Ka1dD1ph|xpLF9<1dlmo3)ClqP3Nm@<<&arl;o(C_Ef5r
zUvFo{&hMua-Qs~)qezcJi@+0sPB%u7Gm2bMm=SonY9fe7;ETW?K`??4{c|m|U!^qm
zD!`q`%s4z;9i5W2e06#_f{1kT_xbAFMd?wFT{@5*K~fZ{QKUtY9JQ*jE{&u_EypIe
zR45_I5rs`8EM=B93%6EsN0BFr!ci27B5xG=q9_o>D^XnS3o7hurQ{cbc|5MgMrJ{&
zUWg49D^3eEJHEed?ZPaQqBPQ4VJap%BwQWEqfnyO29797L{Tz|Qc+ZlqEZy4qj)Wf
z*P|#OMVTm`ueX<zie+hhgZ&ddgUBYTNmnl~u>4#hiUuc~loKmQQ6&n!aE>)H*BMcK
zGG9Ho-ag-#QdQKdMNvJ<8y)R6#B9wdzFcgh5!PL_*rrBND~flc7#2ls>0!qxIz?fR
zqD~Zbqo@}}t0;QSS2H>MDBg~uA<ag?o;anq?65;Dza`mOX2!Lf_8kMQCK^T2B#Nd|
z+F0-%!RhlI&4jdwqS0_`M9n4py2nM{GKvMwmHHl6>nPep(N>E7JK<~}MLXftDSyIA
z?7$wrlEN10*v?T5lKyvzqAMNST<I1??<o32(LIVDQDlkm#{6_w6g`Fi*FvG%YYWs~
zoPq`F=!)nY#fIieKi&WwMQou;<pCmjBFk-{a4K+?2TRX~2o9BAF#y=5;nIgWQOu2E
zL=+>V7!}2PQOu0;AH$5%QH-H-6z@lI{)T;Q6ceME6venG#z(R5hBeU*Z`vn_L6VUz
z>Q5FvHHs;;)}lTYh?l;xFP-h29_0zIj1QuiAv!~+r9*;*LY98W(kNy}dGB$`|DyOf
z$^(tIkD@4>HwT+0XMfrZw0bo!iunwiC_WWC3j`O6@n-H!20t5R`YejiqgWKh^?^1{
z$H9TN#ZfF3W$G-6;)^I>Mw2;nwly`&qWCMCOj0H}btOYCikmUqieXh0tD{h3s1?Ik
zT>JlIeiOyUsCA{fM(}IFwSwye*9&eCtdJ*ZQxu!Inqt<?*jwoTYtH>q9AML;uq}%1
zQS1=DJBmF~>oRg@6uY80yVb$O-)DGLwl|7zqsTwowJ*x2@$l8_3ON(W!6*(z5sV@f
z#o;K9MDZtw9L3QnzT>P#@k<onb2g(m9mUU4>pam9QT!OiiKz8J`{Pmcn{1=-B-dRj
z>lo}$QS05TB&X;rTk1M3gXfpeaAkE-&ql2)$*u3DlC#P=$?_eS7oxZr#qUx4!RhO%
zUg9n!<gy?oSA_7rx4*t5g4YE3FnlV|EMK+B<5ZIxq~D<Pqj(g><0x)LaXX3!QT$^~
z5bi{AFN&#S>hi+)E|>Oe%HLf69v4ZITA3^F+3!m!6?iU;Z{o-*W1Z4^7_|<*{mae#
zk&EYjo<#8<x1cDDD4s^G(?Bnxa0_|HJwZs;fA$`)DLkOWi)}4x9d7jq7W&FLysTn!
z#ic6VD14l+LAI;c?XAYy{86+_RsQ=Nt?$_b;u(@~6cKK)F%*d*%0<c$;;s8J#G}aO
z7$a#ZG0UY%g2^!)m1A*~@R|RqF{H(iBW6vREe0NmdU-ODB&TFK3wdJ58$*E@UJ(oV
zVi^C({?M14KL#GtYuQcp5429L7K~w#$5kkX$Enuwa854IgBPVv3}s^|7sIPDq{mP)
zhEigucnpYHGtPn6)RK8LtV9f)oo<;~rDIl{ycR>57<gE0TOW0HxlA^}LtA%-+Fp;L
zd<>Ois1iek7%GajN-=bIq;pVIqpz6gG@djpnX`CC3?E*!Gx7XdRaqlkCe?&gkD*3F
zQd7tqF}x|{cBZwOYR6!Yp-&8bW2h6e-bU0ZhR!k670ztE7&3*|kD-AOM-0t{yd~%q
zd|QzE4P$7O;EiK=M|hKjq^Xc*f_%qfi-f#o46PEpbqsBUw@pae3286bA%>0#IW2S%
z?h@=O*iEpzU=Km|Dl3MbG3)i9<o$igy%O@?LO$>%_lsHE(b*Wz#n3;-$9H2Or#psC
zG4Rmn;24IG#K0p+Lt}V1hAA=dx1C`z46A|>F^r61cno|0%4n7^iMLgcis8K&CdtH&
zj$sTP9<#0ltQ5mI2AE{IrJr7+=5JwrxJ-!QCE*1m)h0{bxvQ+xwNvSk@#?e~-WM{R
z(=Fr!K^DyrGE?v)k875YwY{=f^bzgE@No=tVptx-3eNHkJKxzfH->pJ%#UF~42xq}
z5<|na>OzLWD)o~X?v`=#v7CJR;-@iu#?Cjb|9Q;%M`KaU`r9rv%tibnh8^Ep|A{Y)
zS$8ii<-B~U-m2?du+3g!tGY6VFFEj=_6^+jSE;MG^V4H7td8N=r7G`Hr10w)*3w{6
zWql0m=>Pkfyn%s@ZeO8R$gP~&YHuIPq=j!{*eIs>$-?aB7`AXL$f0bF;Xn)rX(5K~
z><kCk-nECb5W`O4n+v;k#ju;MzHPnup16<myT!q}`(yZ4IJ5k{k&?Tg<4_ETWB8e?
zZ=ap--#o%0GZIFp9*yBUw&ierAH$C^KA6sREQTMr%s1HiHHY%!Qd)4T$}gd>?#(($
zBW={5Sj*!&72_)iGmErWPsi}5$3;TpXQYW~!4!rZqw9POzr=7Mh8ZVqSLq-6Glpt6
zoR?z%|5n_~F}VJ8UZIOTF1{z1VfGvQ-`#aRhHFe^mEXA;j;qV`2V0Riq|RSz+6@M3
z{v1CY&f;h8gJk7)48(t9_$!7x!tWA=Q2w`&dokP>vT(kO!heK6Oz51+l}h0w$v$R(
zg#4E%eaijWW7T>QgPZ$Iz7lG_5?TzN7;fe*aVu{Lom(#FE*nL&VaDL)<{U?kID8C@
z8fl>z!ZG-z{{g|E;JNlT4ktq6bY|RIr%W*pS=Q{=Nl9GP*}{{gH2Edou&2b4e8c{B
zH|yXS)ogL(jN@h;x8leZNA5Vr#IfuypNx&XaqBrw9plIsM*}`&yPVQ4j{I>Hh~t$w
z3dT_~j#6<Hid(-g(OT8p_QG)#iCYt0G!8y$xN5!hVnWDYjUzn{KEu3t9EhWY$dBD|
zu!w2Y1(c5CwK!_WVUMFs9A)FE8pn-fg{fQ|l@k1QA?4$!kdRaqa(8TcWg%4(@{BlN
z8E9E(-Z|~1oobS;E?6UunhDJ}guEGtDx{X++2mB#;!}?6aQJaJ;;1Wqt`|pU9H(NL
ze28@Y#OT_)li!NN8Mh8uyc4$`m;JV2Y9Cj_I2s9WOb^_!o+({Wx1I?7jcIQZN7Fc(
z#nD_8+6cA~Z21z~s;%N^o!}+Mr{}2RYAe}tb<=zGRolnWf$f%23f|5nc8a5O99`n*
z8pq%`hQ!e=j_z^vjKdX2k2td8;7R{WeN}$)@=Al8bJr`5-f{GgV?Z1{gkJ7eCa(ng
z#L+iyT^sZhTr*B39~iez>ko?KOqDdg4xaq@txO(T9~#HIag2)Ny*P$39_TT7p1=ss
zX+M=uy%-q>8>KR@@%CT0v-Qz&JRWN+(cS9F`VO|Sag2*&d>j+v_$_XIE=-JLQXB{3
zI2gy|IHtt$VH~sKm>S2lI6e?3Q0;wD&U?f@ok6m|;d`8EpRUf3(wPar@qy~I<M@by
z9mn#xwKM-Oj`?vc;C#g~ucvK}7?~TlKELJ(lH6EkTNuYD42ESkW(zf}N&HkwKNI{s
zp}8oI#ln{)Bwxg_lp`9G&P7`4s~RifSQ*DRQrgg-_GKI!gs&1@E%=q-8o{q$az1l|
zYf$)lLB1Z5ec&&~#El}^6vt);q43>;TLrfXZWr7kxKnVK;5)Z7zTRGAkMO;M`vkug
zr1AZ6T$WMui@>2ceu(3E9EamL66cj9{x{G0eH_Q)_%3d}lYP^p3?j2c`(um$7{>|j
z1B{cn_2a{VYndnG_=#(_OIq%kPX6R_iu=rP^>iF5i>+_IXX7}>d0~*m`AkUH`8Y1b
zt^bd1doq5B^Kljy`7UhzdNVDQaXF4FjDb)F6Lqd8_^)w3-#C-PYjOM@w=O3C5d2ec
zd668HTo-;raOxcA?Ku95BOFI0jyrMOjpJb)|HiE!`TvgNfskkSGwyK({hM)LF#iIl
z^%nqFN+}!t@Q7g?$MZN|i1Ow88Bgd3Znlw(r*W(;<cvSbm=e!;CX$DDGMU_QcvxNZ
zHPN9#CWCu^9DZ)a-Cd@jm#cf8lUZ75sJkBC%?z-IcQb>6A+f-0G>#Z|?`-7GMm&ye
z+JByrnr;32kd%$&Y@{&B9}W3O@vU>#yOv(Qh9fN-_d6*$vMqgEHgXEdC2#1+la0LD
zctwol%eKBsFgbmh`GptAw%#Ddt%Jx9nu6KZ`&kNQqp%Qiz6GXOHeSufI$MeLwi4;t
zD4vbh$tBt(mq0d3WFsl5L~>GzlG!Mgjak{4osH7j*6Qmk_*yo~WTR|0%4MTXHri(6
z^=y>SM!jrgW}`wjPJN?hWJ3{BQLs`rDhsKSZQbWdg+98gsz_=IRuil)_|_q{2F-4;
z)R^AL#+xEn1#1aXUR#J=uueAWCgj{ea%L*^v+-6ooY_eG+uk4>+3QqCHbTR)PHa@)
z&PGEzaGlyR8;yj#lZ_@q8Vi;_q&5}OT(B8ky-~fgMP-#^+w3hwI8k@C64F|bRan|C
z8||~vCmRPgs~xh@F&o{o(LEcZw%a>pqjNU8WaH>M^$XqAsZ&<ZVOd?Xt?lmP2~L{r
z@qbKx2lUj$_kEI0vdMOuuvd^S5PD#N4=$ld5v7TMEK8N%1f-(~Sg?1h^j@U*js;P%
zH|!m;AtJrH|C`5mf9HSBoO|xPc{7=L^JY?KlJh^X%;b{Ya>@1oW|xg~v$^D>i`^c%
z<dXHN?!p;m)A~(I(?ru+W*%MX_Rb~y<dXN~k_*?ShUb#s|C{ZbOOD`=FmlQMxn#9v
z?tol!a4tC{mmDZjN(SYUUo3Y?Sk%y5^6O>pFjl)|=96*mpG&y+WA<K_kV}rFx8#!J
za>?<z<bAnh&4<#g>R2J8bICD6C~Wgds?%!s+`rigx#YxL^1)nkN-jBx?mErapDg5l
z!3PA3p3ZVd`YNZhXV$n=#TjOl%JLIaw&-E;t^<OPu)VqD^jz|>Tyjq?S!lKQcrN)w
zF8OjUIWL!dGM8NDI9%R4BbR(CmwY;xd?uHCHkW)Mmt6gJx@irEE2E#w`5WUiJTK(s
zst%K06or=rxi*$1%*^@AglFZFvxUsbCFkan-&FULYH#s~^I4x<@|9e29gWNZyTx0|
zqvw)~gfqIB9hB!>5WQUZDjp)2Tp>JA-C3FQ*UVCxgt$g<Z7z9RHDAc1tj{Gk<oq?-
zyK>2mx#X97(+t~koa=nPS+Z{tzBQlvXH93j@EvS>HHT_DCAy-9b6*W-H+y!qSL|%T
zUZ&P?_6hD6WR#UTm`lEzOTLy%zMf0|!?}gSCzm`#-(VqPiZ^q~Be~?e!Vl+?ZwX;l
z-_9l9p|Y6h=`or2a>@5|$<OksALNoB<&qyu^h3e@uJcJg^-#y+pK{XJ>9U;bJ@~mK
z9i^MOezm`1wMFuq;5UNDa>;LnFxPi<@?7!<iT=n5YD0>`pTr-2&g=Y=OTJXxx9YEX
z$??3y{GLnxA;LfD6+-?J<h}$a*u~PQlOo|l<0>7C|4W`rUd#DQt<U6=XGQ07E_p7O
z{7Y6<UtrfrZ_cjeaBcg=oWJkEB|(ydTRfI?C6~OKOR~QT?Q-c1|K<E`5U8JHs~^eU
zdOFJuegX>SDVVQ7S70b8tDu|$Q$djYfbR^J0$V{T1y_!x|FxWu0)9uGR1j7WQ4m!S
zQ}`1zFo_{9q_BcSUQ&pJ3j-y!hzN@+D5hZMh7^TUr>2XGutZ*;%I}WPKmq^Se4~Pr
z3ffIeA7AQn^0`Usz-p8hQbxg+4#k&MbjmBJprE^g9ttWdxLJXxps|8V3Mwn8rJ%Ng
zDlC7F>nNzIVEwT)m(5mFP+dU{1ubT{4D-(vw4UXYnhNSy%raD%m~j=<QBZA9x`AL_
z1@#m(zdu7sN<r&!KH*QI>oaw$`&_q7fr5sjc?-=lG1EvvTB1~Y;HE5B1@b2jP1rOA
zcPMD1pqYYO6|_>o&qSZx>Mm+uygBQmU_fn;pMtlf<x6-Y4yXA%;Wi#l!L&Nw?X19W
zDSqT!wL@m?IIpb&e&yIf!JRaea7NoJSU%S6b~@Wp!CeZvv2)8iXUaRB6x^+#tAfr7
z80{ih_(*!nX!nlt4s|jL##L}W>X9K*A*<k}o|*ejXL~B>rC^eR`xW$7&_@BM`e6$0
zQP5YxVA{W`*H1xz)?C3r1w7TZY~p`=Uw5fX%_sM#`6rh_3K~7-pF4&q`1yU0^Z!r<
zJR|fUlpU_%UY4m~q=GRD#!C646x^p^v;v-_c$WEgjmwoC<#-O-mma5Jyn+b|CMw`+
zg3}ZHnS9g^cT302!WNlxcV@WK;Q<Ac6+Ext1qBZ(n4;hj1&=D2%CN?p#$K-KY+mJY
z>^!94VFepUW;kkI+~RTDgy{-CcbumcJfq+-1&>Sg3Be}?ImS;H_nuO~37?wJ(#PsL
zEgSnws7RiZC>PPZNCPTZcRD*q!E>jxGZf5X9qKzXB}xfbP0nTmn|b8apR3?yc1k1f
z(CI9jW8dX2P_R(J-yC!b7AaUviz)b0!4mq6f>#y1reGPnn`1%2Rs|~*Y+B{6QLt9Q
zN(Hq4Dg~=W$TJ<IjSgjAVU-kYV3S3@UXW`an6b<_Z<FNOOba)47?_2DWSfHR3ih(L
z3U)~9E(N=V>}1dG@K5X43)#aVCS@|?egy{<98|!PnaV6YGzkMM_PT;M6nrYmhZMZY
zBn3xA;jn_Yq*!V`(zrPBZ7GBYdRM`F3O-Wsv4ZzS`2z(XiZYKv1vX^I3cuPPF8N=h
zK9RhXe8%pR!yOf59au86e5K%P1;4T6wDS#1TjBmpuU_qbtKd5Y-wUVkM+HA{hFs~s
zw#H?Y;U`I&^j7*8A;$!NRdAg4ACev1Df{adcl<-?-=*X~6#S{6=dSc$3brkACrwMA
z5HhoChE@GX!6^lWR1{Y6uY%K@oK@(mUzsxsE=#S*&nh^l;JkthBDtvGk^)|}@>oP3
zix@5AUE$DBa81E~oTbZns*0QtMfIZ$JR*_Gnu?cK`E6ldHrY@SQT+l<6+so2>bIAv
zVHLKDkP51CG0}5DkA!*Iz^LfQ1mh|aqQjzC$m->85fw#M)K=lDD5l~D73Eb_P*Ge(
z2^BY~@b`vN0TrcGJlnYVD@)yH8W+D&MM+j{iOVQEh{(Xy(kjZRATO)po;F@N6~0SL
z>b|y_iYjhaQB6g46_r#}R^h0qs)7YBSnQWjMFm%2u|>>C!mzTQSwncuyoANRGpKki
zT5PdPUPnb;6}L)iN<}>$QH7_XzKRAa8cHQuPJt+}s<U^cc_7yO78R^gT58K^V--!L
zvCRaTrKt)A66zCK$>u6rsA#F8m5SSFr7|An%*YyM+Z1oD;&#!eC)X~WWtnYNv{O+l
zfZ74HSJ8o0)sWI~r;3g$-cs?lin~;FQn6UY5*3|QbWt%;#UvGXtLUm?fQo@qW=2JC
z6@656lW0~&cNINU^pt2X!GV_xYAsA{sAsZP2W{gX6`Yp)G0P&CPo(?OGEZf`J)Ql$
znbTjz&@RP`EOVdXmA{JND(+P=Sj7+(lbbk0RSZ-8vBm;9U31+Qiyfh2q#R|eicu<<
z_dXS)*^2Qlk3t2ucMR<_B*XGq0fuq(G|4hSkdn6sXYW_>fQlznJgH*Zcy}^U#Y4g$
z6r3VBRgmYDhovTusCZPxp0z0+Zn`8rCaqh!Kh5K^0*|YB@unonQ!1WTF-OH*`V~D^
z#Y-w?sEDmeJx3j>3HkFXUQof-k@L1|LDZv_cpjXoVm8aS4Dwm5DkWVrw8M?JIxnj@
zx;8am#R3)c=mvv*%M`iOTd3mFqZum9s%I_|&L~S>s$!Xn{Zh~6QfFFVvx*feR*C^v
z(f3rWQ?Xj2H0c@@YgvBOBj=!AuVRB#c$12aLRc(~#&WtI@K|$JV2g^abdt*j+f?jO
zu~Wr%IU?7}u}ZsC>{h|mg8NkPK91(v!-2fiW!Ni(g|P32Rq_s~IH=-P6|bpyQ^jEw
zuS-qdkkVMxsdEK~gnxNBO*@}Coh4y4SnNA0j&MAxP&B;D{!;P1iXZsgfQwR9e5&Fz
z;U93e6hiq&Dn1q-Ka>504;daxQ}{VOVU_zO=ZC?WvUj;hReV7^H*u~mby?4^RD7-C
z8@j<b_gfX;iDR(lyt=shaf+vvFZX*ts`yF8X%%Nw{45sxRmE`?zX(63!dU7)^{&T*
z{>H($)QxX)PpSA_1+QTLU@zS1k^HIRFOi%Oq~vcECx!o$m(1Cb{#OMbI1DM7W#!M(
zmsDI4`<$0nT%vh*_$xy%Nc5siM2rT<d6y;W{Y9CpqEBO96Y`%R?|D=WnueH$xQ2k{
zTOg$QlPZa>!O&o82#VYmv;>*@a|e&*lY}*Jb?VXrC&EHDxls+ynJnv*&`?N2MGZG=
zD6FA~257iZLs88?)t1mevlr8F1CPEY72cO--r`cin7fK6HOz19{J1*B?kK6D6qPlU
z)3ADtdy|H0JJMw|l$IzZoITiBE^#fd`O^*$T|q<THK{h4OtUlo6jX^(4K+19btYSd
z)zeU24oc0c%(BB>emGrCL)SA|h8rGE*U-R6BBRe_-yWN(rJ=S4J`8a+u&6px2r`)u
z*ShPLx%D*E*Kk0?K@ANw6li!{!xI`BYPdy1Zw-Akq<IJpchkJJ98W`I4R>g0qoIk0
zrW#%vnQ5h=nTA_6G}q8V18>vHSMeTooT~f1>}v1kac)bh756A7-X>XE3*OGk#5_J&
zU?FWatl8qV*U&*j-C9mNIUM!x)X-7XI%(jpckh+)FLdwHP;#p`zelFCB(ab#8YXOV
zNxEvtXc#!&?WW=AIIp{gtcG6SdGi`L#2zB-Dag`#3Aw9^caMg?8YXGDUqe3){WT2J
zFkA!cHb8JN%M?P%AR)X5Cm$kwsD{5gWEj0y!=g&wXbodDjL<Mr>iq61Zxqc^+qqA}
zbIm=rj(jYexzn%kM7p1FM#l@8Ao%GR-(qaY13dH^kKqvwlQldj(J6ut2~O28O~c};
zz7C&D5FZx#$e1sARQPnk#{}J5ohNBG4NK`58lKkhjD|TH=Ca2(xzCEZUSd@>Jg<Qp
z;;mWj7yE(+;)@#i*oS0>hM5{>NdsrIH>*2K&SZx>4mUL8#$_*S;N3k9zCgqD2F^SV
z2fEExugxltxR6$2g~fDBSYR1%TN%Hx+@OrMTFx>x?9i}N!%7XSG_2RKfi|h-tfrG_
zSW9oL<ni9;m3%*PFE#e{I*Ibeht=4qVXOEC`6hOy<80QjMF=^YxlO}%4SUXH*##dI
zc<jDi8g@(D_wk4uQ+qV*mAb`_r#ke=u-bfv#yad59h&7;4X<e^7QhVwysqI54W~7n
z(Qrt^n;L%6a7@Et4R2}qj6+X@Ju36I;QO3FG#uglFVXh|KRJ`70?Q|UAd(LSKjK*1
z=~DQyhEGI7{;3ewoNYO(;ad&gY4}3Jmom`4((pB1qL%Z#>rDJL^^I^wxz*wK8h+65
zGe=ofhyC)ShM%N^$c;Vjud6%~wv>;Oe${YX!#~n%ziFV){K-Dm@VkaTWbp3a>@67Y
z(i5Ip>7Ae>InGHs(n{}dLCzKI$|~EuQyc{`?_Y5wrg9jb)o@OO8h{qSc~QQo;Sv?3
z^7Mhss0=qVysY7xhW|L-InEWqt5O+8bK;8JE>#Km!;NLKb-$m<1_ICnhzF1ez+mB3
zoR}z(m=X;JU<t7WLxN$!h#)niLaMKFIX}=RyX<lc1yCdawxw_YJQn94&O${4;JBdu
z_d8DU07?W<Er6EadC33}K*a!V4&cUsKUi)GpmYG-b+cr^pTSB6{JDZoRVLu~LivC{
z$&@AUk$I>`rd$9-7F$8&tPfLp#7YvaEOn#vQ&=ScM}$=cIkG5Z1*!*7BY<oTr)I#P
z5}P>wXmtaq6TlH2@9L-<Kq`Q@0(d)sdI8iA;PC*SpfKe$2%uE}w*^oTKtqw-5<rsx
znhH+`&`5~K<_O_dA^s*pDS!WsW&!Y_LCXMc4S><+f-M9YExIYCoy|T`Rc{@@?Ewr7
zU{C;e1kfgcP62cdpsh5mJ?#)cy8!qgk(Kw2wjp(A0Ng>eV*usOW;@0F4Mpz?pzFIn
z=@P)*0rU=_4<!L)0_Yy_=hbe4Bw5zybe4p>ViFm8NK#M1UV>EM<KKG%=o>&k>BJ9f
z`+I5j=W%I=yIh7BDw;$(@ZbQ31TZOp`vVvnz%Z%yc){TTj1@wI-z#K<;K%?*<>mJU
zFk1K+!Gg0{Dl?3u*^?&8guLcNA>*n!4+JndfT;mYqyOwpKN!H20JgO9+MmtVZ0SW?
zdE^fT@NfW+(Hb4yM*{wX7cTz#r?yG*XaLhiLeA79y)pyOW}gh;DLQZfYXf+i9T&h7
zdhBxd*#MpkU`_yY>CemD=L2{tfEmJH5PVT^=dSe30LJe~&thfHX8DwiKky})9RT0d
zki1aAdpUsl0W9E<34l@F9c<W;S{T3|i(Tq03V^S8xRJ<W$wCRAx-1P~Spdt~%z%G0
zzAE59UK?4#Tp0j&AmIf$uj?pZEvbAQ_e#LO^V%1{emYD5>jT&jz($rF!1e%mMYk#7
z-_UKQxfZ5)VZTM9Tj~5;{7p!9jPZ8Ry%)PX1K7ppJe1}uq1|-O74E3^86v|TiS8BT
zRpJ3T;v1Y0mbnK5cr}23m$|QT{tsZ{uJp-K8QwgyWZr8W5}h{%4+}0hn`N$dI1K6b
zI@)qDvNX<AI!qn!2k-&g8^AC0<igH}0elv~=K*{az{jk1x6CI2v@Ya)O7~mqa<jFu
zd;MMGjt1~W0AC02O#olgNv5Xvp3Qz0K=s+~$v4uUpUvL4+x?bPO2YX*fFC&XoXvj6
zar8=R)O`2H09e9LoGlAE^@}<G7IsJqV$Ly|H-OXhnE;N9@*e^GDde{Reiy<L>~q<_
zgr5>TA^3LyC+R|M+<zo`a&3y6A5!^WiIRL2_M>M5xER1C5uOt~A3#Ujxgh+D`7U)X
z3%?q`6(PfK@hH3&z<&YcMAGPBni2*@hpPLHV$g&Hbm)0W@IX4K!_rYrM|B;xj*yO0
zI&RVt))CQBOvep6qB>$a?kMLabeu2b?2LHan>0@Ou@p%m9fc*eh>oH{sOcsgB5lh*
zVi(s@LPwGZ-QeB4$ls6<I&RcKay?p7IHT;`#FTVt9c8Jk<E@!)866$oOmDr#W0#fJ
z{Z6T%gCE7wAmkNAa<h&~LMjVVUPXr^ys9AAj8j-cM@=2gblj?=mX6vw8t5nx1(!3w
zj-7F*j*bfFvMl`Sf>cUJJrO=xCd;JyI?7b{NE+(6MMq;D?7p-hNh2wTgu!F3h<BYg
z(a|)oL(k-kkLJ4nuH-fyErhhx(Mrg7Gu=T^f5XGpI&K%q9fGyGW+-e`+H0qyy^d#e
zJWHGCxKqby9b<HK)Nz-NZaT8M@64Ta+%1H>vyLu#{tR#Sg=Ylk%=5Q}>@IwOj)6LQ
z=;*1VS6;t2%{9|qTGrn}wvUc`^76hq`U&qZ*yvpL6UQ5*W3Y~Ub&Sw4MC8K+hYFVL
zpJ5>k!*z5$mn9h~@==1^_3?V@eG(nnHZxYoI33d%)iGYj1RW2Gc_-><In$k_<9^y<
zfxD?x_5t>n?QoOK$@GC;{&$ibs>CUxKb4j_mSWfQSJw~gctppOI-b(8?~U}MqQL25
zx<n~?OvmFQB!7a2J(qprT=t_@nb1o2X&qG;x_dikinjHh)A78HO*%H~ctOXDIu`3#
zqT?kUGjuGZ@eihF>X@Ztu8x;=%$72*S7VNF)~8=1Z=R0RH+om=dn?XmR~2&ROLT#b
zVaHOG(;$m<aGTI83sXzQEUR>^*0D^-aviUp%d-2XwDwkTEGPIEGmvv);Rd{GbZpQ;
z!mw7yD>@EZK3}I}eO|tGqqkAVcZ*!Fq{pN!I<~S*9k1!wrenK~-8%M&=kL(*^||aW
za)}l$@B9CnP42q--d-KeUr+C&Rih3kr809}lKnbZu>&GJNdFn*3t!jqhK{#Izr3y;
z;<&y(gePX+)Nz;&JTb$-oi;fH=u5QEJM^(eUemGedz}1rtTV9Qzy~@$)KSMkT>~HK
z_?Q!y0o%YQIzH8LQpZ0!KGX5JjvsaWq~oZLFW5{S-?MdPoiBBK#pbZ%#=CstWS4Wk
z(Q$dMJFcx)=%>`Toc+rA8xZ{<)~-;;zwj8o+U2XOpLP7A;}0Ew>NrLl>fqi@Jezz{
z&N<F@jm{Jd%aH%3<98h-+<=1k7i+u3{hJeJ73YNb4_zp2`>$H2uTP!g(AIHP$2Io5
zjx#zg=-`%0JlCAnagMn*xQ`b&gVNr4;jBL;7e(iiAeAo*xk8^=m}2xlcK6F}z<_Rm
z`(5Pd!)si{fGSZ<kP_~<V;C6uv}qdP$Hv@xcl&5JD7?jdmy(cyumKpj(LluTuOe<R
zP~1RNc+9{J^Ie9xfrRivc}Za*MFfiq7Bj$843+t8>Xx<sB~}Ro9cwyC!#4}x#FaEq
z%0N{E)eOYer`XJ!43sud#z0vE6%14~P|onXue>11vt#|OW4O@}@n!>#$SWD(o=%ih
zHc&+*++>D(cTmC|er{Qps&1f$ftm)m4@{qWUM&Mt%6qQiUlr6A&S--I=g9-<WJ51y
zpq_#81|}G&Z=ivJE(Y#4P+<6%Of3zxGSJY#Ee6sC8X0J2fY(b~%X^-IrUpnF3z9T3
z@b9@S2}7ll9?x928fb3#r!a;VLU>xa%|L4dZ49(!t5>_X8@PkLa6Y^B)wH$CE8o=r
z=!n}n@=bj^1MLlT5Ce8H(AfZAQ{E}jjt1@$QsKOR<;+j2_{j0oW*$jb0~rHD4Gd!w
z3}g)q7AtjUCsuU&8R##hhk>3#dKusbVhp_v^vUykg!C2M=Xe7|bD$s#@y=%l<vF+I
zq5X$&c$RZ2HSm6#lo?K!Gcd})y#_`Ypkq^*EaxM`eRNI(*ZF7zn`gP#`B=lB2gVs_
zS;5zwXke0oXAL}O;C=%S7<kygBL*hZ$jkg|%P9sPWEZS;_qEJCbvQlMz%<(Ae0J@=
zw7<Qc0X|41dDOsk15X>^-er#&n9;;}+`tn;ZX20-lAS9zHBSlQZ7D4r-0CfB;XPx3
z_*h5xc>^yPm}}r=1D)2TUNkV%z$^nVu@D39#?({Ioa#r?zg2c-8`xdh;S9qC1#{Tl
z>)bitrT8VlJOlF$|7!LX0}Bi+G_aI~Q{jAek%7eqme9`gT}Bxu&+=CRkSsT_f<sl*
zRti$Mit}OExvshTdI|kAjII^VRSBF?xe4k90~<M-Oq4gViAFZ?n}OdAY@x3jIAY*k
z1KSL2H?YsZe!8^bKS1D_Xr}>gF-nix#kOz+C7eBidkwHr*U#PD+4z8ggEBzgqH7s=
zjmMgnKEzgRa-Uq}zRsgeO*6b<;Bh+k)HGAyG;r7epJ0>kZsxpg;2k>ZGM5iyIqgKp
zXWnC~fv*gF&H3NJhXy`3{IeS?^ATr$R!kiJV~&WbzOeXhUSO>EnSo;wZ|V6gk;+FU
z%NK%Qitka#@C`eChx?O(Zw-7Wsoxv;K?qY@cFM4IKN=`f&oAU>1HW(@9OJ&dBmK>K
z_ZZa-95=A%e3sFX6&>Oq2L3b<Frl0H%fJZ(XAPV)@V9}JJZ&v?Pjfyg=lo+}!z(GC
z9mr2{j115G%LcxkW|ZF(o}pteb@?SB`FR7E4Sak)d%?g(Hos?v&k8Pa{I<(5a4XI$
z2Ci}ns^?rYa8p$$XW%~rwVHY}c4a73Okc>L3eilI{58d>VZ!8>nI=k@2%6yT)?pJ7
z6P5|vM9B1SQVKV6cus$(oX0O}q9z)}ow$jFkeG>8Df9MvULg}aeH1fs_|fd~N?u_T
zMJTE46%~2Msvc9Bbc2a$HN4~Jvq=*$QO5LdpKmm==GjasR!m4qL2r0w;qc6r^)9zq
zENz0QzT%cOG063_3t3_X6BSMLH!;A(%_b_DXkwzNiOMFbm?$vO(1c_9Z@#LTsBWUF
z>ECqoPPx>DEYCqTOw=<`-}GN-))cH|qP7r9ToZMK*Ud{(COD9p)bK)<&$UL6$}}+X
zRSk#a78Bc=c;&)QV-so9f2z~SgvXZFa`?QL$d3c*_8hs*Ox((^-A!~g(cDA}6CF(4
zX`-cxRwi1TxSi1p*(FuI+e|E+;4$zXg!i*|m}p0ZLQWeKZH4f*f>G{0PHZod#WVcT
z-O<ED<($qY?lRGd4L_3RM?{?5i2MSl3;VR0LxqfqZYH=ZT3-`c6Tciw_oNwzXS$o{
z!Jb{`vXB1ho+;So_7Zt-6ManF!vk$}-&yBUlc7Xuk7Ki+=|2<bo5>7h@0gfw;xQA0
zO$;$H+Qb+WLrn}b{a1wdu?u)m)4z}yX<`JMzc$5Z2%M!!_!g2&0r-U{-?>nM9hYgJ
z8Eax3Ey+S`XS|8uYnu~IOfoTnMa^}2>Un~fi+j`eo0wu^s)+~Kz`g0of+P<L;T_Wp
z{Ftq<^WaXG!iS_Z7WlA<M@&3w;+wfHqYTpvyvI#EVd8lcFPM0eoo?b8x*x5YaGo~7
zjRbjN#tSfBdpt)QE^@gPi@m@H8hnNNqKTJGyli3~-JadL!9NqtHZjx0EYqL;?hQM<
z{wEo?+MC0st@h@c7<eH|!f!G;ROi!UnQ?1oq3OS#WA;T7-OEkFw`P`_SjNt>am>bY
z6Dv%75X6T;tmH7HUj@-Mh}9fECUPc}Al9-F6K7c_xBW4(o*rxBYZDtxY&3Di#JimT
zO>8!?*Tg;(TR2Q+xZ4G{3NpG)2tStFk(cZ=!9NS^GO=4EyingGgbz~on>b+NZPPzl
zA2h*x|3iYW3etwJnRuN?oaHj<4Lb9nEXkXadRXu+K?=9j^>(DacQ`wJ?ccb)XX1Sm
zADj4utv10wYkVk!rQukAfBuiyx_Ry+7qXYSXFru$>!{#of}F%Yrx`2wcSa0fi1156
zR^S_saTC9qIL@x$?S3cI;Lj$$m*@|IKMFGSC#fFEFU&P1eT;V7?tU6~c(3;x{nNxL
z&W#J*KLk$*GWw^Gzf3H;;C~kQcV2!{$Ui35e&kV&;a?M{^QmV{?7xtu@SKVBCN7x%
zZ8)9niiwNDF9}k3*~I*ab3OH{iDLI>u9^7H#L)}c*>ydl8iW=^`=I~WBoKriMC~A=
z>rzG#CoW{;K_r4Og9rv;i6ks&3x))#Hu)njB0MS>3xdzbDCf71g@Py?MEM{p1W_c2
zqCwmkM9CnE1<`!BTSAcJh9HVFe4Qd^O^C@LAhjZ2xhGvJh?_*YTo9#$etQ|p2%&yi
z9(QW`&ek4<JSk7`9Qt9!AgTo61bv^pIfzO^DhpD=+eu>8AZp|#)q<#==e!H6DZEw?
z+}4<y+QqCJM4ce&29XM)X%NkVs24>2AUxJ{m)k&)<dz@`f@m0o(b{8_A(?Q}lG-Q;
z-oR4AN)j6f(IlTMvp0Qf(7#A)6~t{qnhUlFqNNZfaS>?iApR-p@HV7v5Vs50CS~pr
z(nhe*2VT1%I6(OCnDQ619fGKMFnwnbymzLgV-SH`ox6hQ6h!Bs|3xbwjC2X&fks}#
zi&@$&6GXQlo(TFgLpF%+K|CnDM-V-Om`FE>IlY4D9mKF8h6m9{B>jTuAH+RD)Y{_q
z4dT^3>Bpv||2yC@Iv|KaK@1LJprl?}mtyLWAReliW$Mr%s7Z;k)$MZ8m)uL|3F1Cc
z9udUIAee>nzc#z0gBT+j#|JT16vhSd?&LJr-m(x@jD=8hLJ+eSy3936>UO{213?Ut
z@+SwuqR6MPD|=<81~H9g2JtX!B89V%M}lCP)7dpaFnV&T#~L!6f7&E}Tnc3L$snEz
z;^`os31Vvy+k$vDi06V>7R2%(o)6*$y1nhp3*yBfUJ7D%5WLc!5yZJMZsiZWnKa;B
z_uGZ;V?~@<K|FFXJ2d9Z31V*0e>PY<?Y+zrN_%|rvuM0GpS>WZEev9b5SF}1$YMd>
zl~b~mbN-$*$qJGnHU+UK=B(o6AH+|y+zo<j1lI|!WtD{R87vjn3n#hI#v^WIL%L;1
zy2PE$L2O|c&vqGhb!@0L^0o)@8r#0W-N6b6u`7t(K^zcY-4jHIjo$Wksr^Fs3hoQy
z=%MtsVot029(|Jje2}hk-O1Z}jJ_Vk8$lcj;>{qAuxEof%vKb3-VWlOAow%Kw*(hl
z%(l5J!x6gcVs<!x|5V+3kIL;cG#dH)Jn>!3l6(}z$DG`31Z;c~#HZ{X3(r~jEQrrJ
zGgxpe91Y@&Aad+w3ttBDRS?I5_%(>HgZL(hA8GTL^KB5vFJ_f;-VYqSbc`VGU!7vK
zN?~V4eUGHrgXyJl=cgck4r1wUSGkn^h4a!Zw{(GbJc!?d_&12tLHr)X#UjpMoT-BN
zgL4Z9;0FblXS(mqa@p^Hvkv9Fe*{koGCDZnoXT_d<C!4N25~ir8J>48i1Qp8G<(N}
z40NOmbYRP&gIx@Q1(IK;;}vqQa3Z~w{o?ry)tK>`WdBc)59?G5nuU@UN?8b4&@B|Q
zP}qWD!L$&v5VjDsKo_+w%q#DaSX2<gkJuNcy(6~6=)7W1#6r|U%tG7(lPF18;3X?B
zpDIrD6^d9WYN3RMuc~@{QBur8{WsIaEs)<J_)q_gGB(4?CoRCj$2(kFn9o0Nw7_5g
z&?j$VP545@LU{|NEtIiP*22@gGAZJ`Qp^0bu*3FNuu#!LWee;S+V<0)$(tn?GgcD9
zzaB8@N6)Kjp_+w376x0WZlQ*S+b!H-p{9je7MfUSYN56T*Fr-Jw^*oSp{~@bfrS+H
z%X<v<E$|s>J&7JXkfww~roi$q3t9j5WxX^jZ=tb;Df3*<0$;>5eIrd|xS_0Hf*Wy~
zS-90gE6YDsHRqwbXZf?U7MB0KntXCOucZZEqf&UA=(HB3^7_@OHWu1i=wYF!g?1MB
z)2<E{?zGTeIHNt<dOs{ob+pjQLT4K17Vj<#d~*2L4!4Vi(fs>>V9k(ow~(%a8Me2S
z$5dk00<WmMi~RCBua|}17W!HK*{b^tw+~xa#OZ6{9t(^zQ0L>2!x7qFba-()zyj}s
z23ojnk3aB-SQu*IehUv+7)F~|{^iF63-?<7HPRRhV=auZFw(*(k=!TPy^%k~jTTNd
zz6=^?;l1+Sc*)M^MZu~b-^)C>JI!Y%6Qx#@qyp!ENlm5!Ej%eToMK@rP1Kt2U-<bY
z9<uNVJ*s=wZt9#}<Z?JaY@x%t49TM+XPMK*0@Qh2GCm>568Ng?seG%Sw(yK_+MGss
z-ogtOPO){vGcQ_r$-=v=t%VsDW?I<7F=Ansh1r(>=yHXHITq%!kJhD@S$LUa&B8D3
zyv206+cWbmEU>WYeedCR9`Ae~T9{fW(M1+^%}r9iM3k3W{<GzEeKX9+?aG&1{xbyL
z)~&R#%ED?3Ybdd>QL407aGl^Q7Mi{5wRtDas;;-dz0*nDOW8p?)0?D9n>jz+p5bE+
zKE&8&VLPp1VZYR22kT&Aw}qV&Wo1~UJr+)Q&R%xt2OcZKjI0TZJz()&1KyU}zG~q$
z3vY5jMZMQ8yg`GE$ndEbOE_eqb#0G?q3xwC6%MoexCOM>iqVI5rr)t}#KO;YywRK8
z0hhAxTlj#*S~zCmLv}hR84F*taN5Me7Yw`HPdWKp_?$hyGd)VS6W>?OuiH_PP{>W5
zzqI`IO%y(RB>fF1hn;EG|9cDHTKJCMaw*FsKAk(#&TrQb7Jjtw6I(Po!(}^^{47o5
zTBKhs9Jlbd1$G3B{fz^blT|tAcR`Xr#IPiPiR6SJn??!!;iQFsq^Mk(EH~=^*TQKF
zXDpnxkh3sgSms(C?;NXYfe%B@Te!d>v);W(7rK<aByP~Nw0D^kS7m2$dyfxTu3ESz
z1@gHo?^XXJU*|paPFk^X_u;f^V>5;AJ^ms=w_(^=ZDWlM(?*aAHoDrdY}htx+i-1!
zY=mvxWTUi=h>fU?;x<ayh}nqSXkI2;%m!bmC2SP7QABtl7Q4WuaMPvi_zK?QE}5dX
ze{aI4>o?f`RdMmwnM-$Pk~UzYq>WNG-nrzzf9FpIZ?tjW!So}O{a5yUVA5c1>XhS^
zu~F7W6&sF?ayH7_xY_n^r8!$xu>JX@q7Cwb-RWmuPY;@usU)eD1*yifMpYZtY}8=(
zF!%1xQdnJTGUT=l>r+$YOsZvrTd$DRu~FB?Z8lolNZF`oqmd2IMtzneKcQ<Vq=8_8
zWT!lLQ}z}cS1x7KwtrFm{afkAHkwG8Ep0Tl(ac5*8%Ot~Z?*sT%)hyiLYK2Vt#h`V
zKGx&SS}SQ3+vUx1Z?|!WjSe>Mw9&=}e+=5zMy+v~9o0Qv2ez~Qb01CA-u7SjkT6$A
z+rJU+WaBQ|KQ|3n=<?}DXB%B?{87qRVBm>3W1}1U%f=KNSsUGLjH2;v^sv#>#$X#m
zZ1l3x+r~XM`r3G|oY_bEaeI6J1@7QC)BSAlMq{8LNq-vy@|-U?C>dmf?@UP;9ctrV
z8zXH0g~%|$;XKxSm(hcB-Ab3UBc--1x!Ty|Xd7c}OcKdh8{@<v6Kovb<na{4GtPL{
zr;W?!ITOWzy!-YpXHPcp?ziy(oxui;|4ku>{mW-!Q*BJMG1JB@7HH#P8&BDI+V-!L
zAF(mr#$&dBGJVwc-&fN9kJ~u=vG=5ncQ<%X*q~K;hfAc3@~ZC{8_(K!!N!ZMe<J&w
z4c?<YFGpmQXAnM|e@QCLA8yXDaiFTlcWUJAZ_CW)A#5zNvDn638!ywI9FMcyc^reA
z{BEMTZaS2Hev7+6<V;#9MUgCFU)xw|W0j3%w*P$s!wMnG1$hZU52TPyApSZzJ$IwG
zmX5)?i9@cVW7zo2#^*LR*w|>}RU5C_*u-Ozmv#2p*g|KxoZV%kVI^m)jcqo{taD3r
zXt<qycdcLt4<v+-yk<^KQ?lE}9vge9w%em{^yMrG&rSQKzypE@1zCRhRqu6LZ?pTJ
zjrVQ5VdIdEH$_6>J2u)6%N(}xR$lV95YEy^guI)VkL#QHz{ZC*KDEJjf2a887u$b&
z|1tY_VTx~H$v?62<mD{M=M|l0m$OId1AP9;KAq}64*kN$mo~oQ0DsVr^0>rrY<w&2
z{f@KQm<*f4pAPV(!xDb5@gv8@2A7lYPxPOP&d>CyVHy4!;8z>RZTuPXhx~6gez$Q%
z_#YJ7NQclUguiT@;4C5XziphfQHZ>f^AEj?vt<Zo2>;qRZR47a|7@J0ueQmYvvFR?
zSwZSwuyIlN6~Rk3E(_s54z5+}#w@He@u~>RkI3XWU5|0K5CS2eD1xfsd`;ssVZNBt
zL*Sb!KG|jm@$VbK5JDk@Lm;;VZNWq3%}5CR4G@hG3n3Z;+rIO1mboa2hmZ*Q_Tf)V
zh=oHa5<<}siiP}zsAWQ+4R7FaLnsmQJ*|EF;>i#YLg^50eLH=l<SiLODIt}nq;Cr0
z<I7nVRcWmMOB6aGJAzN1c{(l|0$&Y0UfwAmLWK}2hH!HT^+RY7LZuKYhfq5NSIk=_
zgsLG_3*q&HX(xpD`)2sYt-4g8MhJCo_M6OKOVkuzOOQf78?O^W-4N=9KwqL`q}YSi
zy-TArd}BU%YMO)@3)tie&Mi`Gxk^sMkbf2T%@}uk9q*-Do)<#n5VnM{HH0Q1G!0>7
z2%|!1#`e;lA!I{n9zu%{+Jx}jX0K()|B`cFP3N`{T7|%mFuClVE4W*SK;i9zcZBe~
z>+4XnZ3yi`XfJs?h0s|@hY;=zf&VLKfgMG17wtbZ%V-yglH4tXpGJ4s<#i1qL*J<G
zaGgGrx`)ssgrOn-bv(BV=o!L2A@D78uMikz=p6#TGVLSLK|L~kL+BSm{}2X*Fqj5k
zl3}&EdcAdZXJ80}Lg1QxR+SPKI3$EWFK79^^so?yhj1^C@@RHM2ud|ax#EA(eXfb$
z<oiMx&1Q!1LI`6*7#qS<A^#2RxDdvNFeQYkA@D=u34-^BFi{94ljv+$vLp|PgrD_J
z7V@Cr(5lX~yyhc99uj<5kiS-cG=%9PJQl*^()=ewNG1K!7@iOvTAnL^`PuN(dHXyQ
z!m}ZN=|pIp`&<ZGLyzB|zZk+xA*={tWe77um>I$n_P*=P5}X&p{19dfpA*7dAuoqO
zi&2MxokCm?!a_+R-#^alS;|`^(Zz!N>YMVVAuP-5EDvGRv^0gQM6x!7SA?t<TqDRg
zeN<Q{d}9dfg|O>4us*f^cl1pmY!3OK5Kxni-6k!4O&n%>2s<RpPFh3AE<tMU4q=b*
zy&>!q!qq60^DArO0XlPD^VJaeX+4Fnhww%SheCKWgtzJNTRhg}upFrNl`Q#N;+D&+
zIq!&&3e&21?}qRmhg%3Agzz<s3gN>LJ__M8PA^PK^TGgErlmg-&Xw|?N_1?W42687
zL?=8NLfhKT7xd~7zGC04P4Qb(%87ih_iYH@g>annVF=%c@Iwech46C-{4nfCR-=Od
z8k+p{RyQ^z^9w!mr_`|!wv}~SUCDO8lKoXU*YE$%q5W3+kC6Ypdikc#gwYu;>Ehqh
z{tDql2!DrgGKB77^a$gh5Ke_qBaE8d|BaUCyc$L<j58serALJk2;&_20{6cVHg?UN
z58;ADFNSbc2$L>xu)LMN%*N&=t#+iZ31_3IkmD!|qe$oCTvf+^AgW=1$rabQaaoog
z_7`VaVHiTlO(DUszoMT}J1-A~5e_3FQ7+)(7r#u6hmi>Lq8jDH{#(>SVcZx-$uJ7@
zaA6b`VF|%vf;R|Kv$zm`{Y#z{4ne*a=aR8fVU!7jUrOH;{@=>+(n9!cK-n-h*E6~1
z%h}{s2%};cRl~U0E^}_9dvh3-!>AHQmvL^Tu)m;B>6UTA{$j3n<6UN<0r_QhwXpvd
zxOy1luVk5#D-dgiQ9F#TVT@Vsx?$7_qiq=N!l)ZYDvTy!G!3I(81=&_2%}*b4Z{BC
z<yv>0Ulf#Y;qkX1XPbMsgwZGrFN|~;lyq$2e^^erGTuGf(QO<C@!8&)W?|eK#%-)a
zN0*^_7%jqR8OAeLvecxcRTy`7bnSte6D9rc)hTH$%C`&N5k?y!4W<0{VRQ(iQy8;*
zW$p~)aC5IzGTTuUypHZ&Vf<OaWL2r$nPy?hOd6QE(9)~XJF}#tyLw<IBdzWxm=*l9
zoJl+MWGlj07RK^0dWX>`jK{-xB8+>&=o`k^Fvf+^FO2?Sj0j^S+rGmc5XRszhJ-Ot
zqLd6G+2`*dG&GF0SF*!+^sv8jkS}&=b}l=;m&z;L?#I%^QQ`ls&c08`?0V*CA!G9L
zBUiHH!<Z1pv@jkDgMaXx7{-GfFKbeh!ni+-2g3f_Sguj!5lJRXMiPc8VQ?wmRB;9#
z`r*7EP8afs;G=@9+hgpGW$yaYS!R4v3Yihc%rKq`<LR*fHU2YUJja?}F5uvLmY%lO
zU%kla^CEm9?9W9nhVha_udB^sA4&O(!k81rTuE9G#>-Ovd>Z!Q^t^maQ@{J`XZcf3
zmcNi5GQ?kX%l0k~V@ViG!(bEW)eIa#E5cYA#)n~CzLH%P#%k6ljJ<NKHDPQBW25l3
zVZ0K?y0E{tnib~K`1N8#l1=Q*ed#S>Y~|n*Wv)NvR!cnkHmTCiFt&%WLpW<f`PG&U
ziMztsEkbqyqx-_x&+@}~JB$NT_^V;O7REs-lbymtzs{Lqnal8|kT=3O6b8S*WD<pk
zMaZK3@BhO%A|3j^9O7N!?{PjXo#n*Kd4r>yo%I1nYw7IISF#_8Nk0zb6Ct05@r97j
z1lbFpa}4G=w<-8C?60uqp}A6<zb^VF4C3E{-wJ*w_<a~Z2x01vLVgnbIgDTO@?%1N
z4db|w-}3U`!}uf5{}l397$=1MG_*JiWH`yQfJjaW{wsKzrvSE^jSa(!_!T=Z^8W-c
z2vT^FO%Q%LFS#P*s^B%jLRYgnAxZ?Q6r~B85d?(jg6qcDH-!8+G7uEP@(bT&+7W~z
z2uBc!po++&f<+@JCL|U?Jg=V+QYeDLLPFb8MTD%GRR4wuibqgBg7eesmxv%4!A+8c
z2;bxT4ZQM5{eRo=E7kfXBOsO%{Aq+s&eYNol!>6MXi|-ma-uMFO#KQGR1|)51eGJO
zUaDUyf?uD=R=Jv`TEnYZN}LF)Mo>+%x13tPhLGyqf^}MwIyEDpkfBxtS|49hCxW^W
zjE{iZHl`w|7eS8*dPYz`f(9b&9zj6_4I^kB!R-;;5<xnGCJ{7^U_{-51IGi6BJf1B
zaMEc^1J>3%^C9QARhmU`D-RdJwmJ2iQ=x=YH|ey9;QhkN_Vx}Hb}deRQNn2z!EF(c
zbgz>oQhrASog?THL7NEL@+e<bX~(V^;NBTQ`v`t->F>YSAp&muOwv)3?h@=Ic;86(
zz(wtDsS>xg?iv9lcU;Y8B4D(eAW1d?dqjXFUEuF4+e`FGhDXplf<6+xCxX6txj8bx
z)P524&r1fd4iOBZ4<wzz5e$uBSOh<eu0JG##+`i&F!a2d-Ll3kGBR+ln2Q!05y42|
zqu7@3tK3KLT9jfK9l@A99~;5AJb%5VGa-VB5zy3=B6ui*ha<Q@f(N7;lOvca<iQAf
zjdW?8DPp3j=X~Q#V?)lVY(8u9NCb~Z@I(ZUivIKnY7cN96J=VG8J~>cDM^|mMLiwC
zEQvl7K?~V2``HMdi{SYPUXV_CN$^Ec=AoOOQ)h@|rXY_#;%b)1olWnO^5;hIas=}t
zd_an|Qs#mP7Dlivg5_+*)$H7n?xG0#ec>$@Bv}%{QsJz?OINcjb43KJ*m3<ElCPAW
zWdm2s5!uW&LKd$xUx{EHYg@!yAHl{5N)B*0NG>*$d7tazQL-h1tr7fE8pldwTLjx9
z$QDBPLf8@Et7>H8=oZJW2zE!%Du&x)*b~8C78}L-DE39LU%GE*6bB+W7=aRn8pW$L
z+KDRfM(|z)uL*yh12BR^5iBn2@1K7pf;Xj-hw0v<-M0iu-j3j%2)^Ivk^kN=L(N+{
zHhe#V4>&X;_%ebIBlw8jH_$ywA1mztd9%@f1s_N7Nd&8}X1RIwr$Rmx{G6tqlYaGT
zw%FYcvwRi7*AbkG;NJ+oiQwA^jz{oY1mE$95&TReM8G5dz#-qs{V9SUB}&Ppxn8wX
zRX!hKa^u`%5gg^N=>g|gNv*iZqr&er)Yk=nMQ|d5KO%h7haq>nN5`1$hP#w=kNv+R
zILXbQ*@S<p@XuVUavHb6FWJfMsyU}4IKw{b?Ou)GYy{^bxGZYtBe)R3CE*u2+vrZG
zoW|_4ob2aUv+oQKkYABh9*extAIWPG{3o^I=DIl{&A(4+Q3Rs6BZ@Xr=usF^RF0xb
z6lN5`C~l0RWE55ub`*u9C=x{|if|OMDB@8JZk~xm5siYsb>NS{7`<Nq&3~r$^mh|c
zwCe7@^?s^Q6hs=WXcWbwC=o?6iW{O}>llhN^;whT%+>7dKT}$7|JMxsMFOJSt3lzP
z2pBCDMVTndMsZUVrK5Pv2vEqt-;kAyVpkuxLKGFFh+NB-kD~vNsl_+>zfrhZ4pAwJ
zA3OV&JQq;PcXpj9szz~36zM3c@eonejUpB0Dnh45)bHQgQPhm0RunDgm_`3g_5Cx|
zC+T;hE2(uvlfM<HM}z1}gD48v{F7>ZNv-^kTA{yRe};xpyx7GZ^^Z#4D2iL7XdZ<Z
zMdK)%P`Q-TRI-q;{>_9>uh)(LVrwD1RTQ_e4%c<~?%*Dm25cS0?NQJs<n5}Mw02J|
z&^C&8QH+jaOcd>-=nzGpDDH{k&L}!Yk&U8z6n90@Ns7t{c8+3mN$2h;y3hh8{Snu>
zZa0?JHHzMUrAR307Da{kQ^8*YJ)-DIdDM4Kx@9lQHD_rbv&Fq8e;fDC2zUN)w{H~v
zq8Jjz&?xA={i7Hd#USAWXy;Q^SZDU>xF7wF8%)PIRfRn=EQ;Y#9N(6@k97_>_eL=?
z$~`)i5fY{3hT;BC<wnupx^lDVEK6n`#zrwNis^KND8@%IA&Lj0m>k9Lmj4gCiBiHO
zY3BWc56i#p9*klNeYJ}INEB0}m=?uDv`jCT`%ZIz?AC)#5=I{uVbyO69u+&Y+7I?|
zACKaRD4vPp*(jcj;wf=LR*#kWe60V|fv2PR@0j1T=j4blu<N6EUU>S7PI>G;_oXPb
zQvMG<7-q2kWt_)!XBI~pcYzk16UE#pUKYMMiX~CZ6Fy&Xf#5>HMS?dD&NA;(;Uues
zEE8NF#R?%S1uI|kH5pb%u|_21YomB2&zoM$Zir$d$3+b37&g&8qWC+ClTrV=VoMbJ
zIe|y9HHvMto}4tdOA=FeM6ol^cL~`Y#h$!mFV6zPKRD`9`JnK(qj-mB0pYLZHD4F<
zhTtK=H={T#<SjvF=kEPSI0X%GKZxSPDBcy$=zBum7d(H>Kc{~b#drB!A4l<t@J|Il
zi{f)3N2B;!$QOdl^<@-a3FmL18D;n;if^M}ng1vGK8hbWr9|<QX#SSZ`?HW=qBs`C
zufmTDUe9<Pe;3IgQT!?7FF_vVgdBq8ACZJ&2*-TOpNit&C{9OlM&!B(&*pQTV=mzr
z1TRK$Nyue-qmV0tEa$3_Yl6d5dQONUrKy6NAT<L*YW`hd<RxYd!92HOu!Ub&iwG|k
z!woS+^E$B@;(4Bkp-`R|7E&aJqC$q<Ve)Vc#U)xlh7v-Of{5Y97)lDKPVE><#c)#$
zrA1Onu#8|?!E%D-W2hjcqTtOj^j>FvRmwlmcdwY0MOa19iJ_{HYBAIlQeCh{48zu$
zADk%AR`~8(D~4(7{p_x!))A~Lm=dffIKAEf+R`A#FPi+0Ybf~mElFPTHHyKLXv-KH
z$IwK0bHS!D+$w}wn#EA}{er8r>+^!M`8l;k%)jy+D`SnRsZPn(G29-*;24I)a7PS%
zeoHZAg|vyGZ4B*VXfM$_^Qj$T*xS#fTE`gf5@Dwpx(VskuVLpHy2NmI4CGy7$izS-
zr~Y*b3A1;Pp+^ioCD*_hW}Zy-qG7KeB8L7kEc&J3p6k)yQhkN=6CtxR3=qj@EuBG<
zm)XNzb;^g*wlO?JgU2vjbncB|biSMsF>Zc>Q87IFrAOuaL{3g2qhn$io7WsCWPA)0
zgiI8iBzV6d^&f~~vhW85rwC3JTr2i@SooIm*)uUb!h^;zJ%-0(I4bhT1((FIG=?XH
zKPmWB3{S`KObpM)Fkd9k#qfL#bA-Pj$fM7Q;YHyu3D!88q;O_Fbyf_s^Blhv%+2$c
zW0;rcR9KMb3u)UtU!2doEQaMVyqTA;h+((zm4d5cSRKQf7}mzHT_mr>uujOP7}g76
zl{Ut(LHPgG=XzB)$FL=at@&e7b6X5A{Zc@(BcFF?47>82+4l(F8^gXB_6vV4pL!sM
zgE6qB%>JqfssFl=Hv|vmQz<_zlDA@bJBD|Je;~-bM})i^!+Uwj`$CwDsUODhQC|LW
z44=gCX$+s`C7;vtuVtym@YKnIFJkyIhGVnqe<cck#_+X}Z({gX$agXPn$P=v3_ry1
zqeOp-;TIu4=Tm91W5Taj<GAqO1b-L&L-4v`{}RqRoQUD?JU=PqAHh>G{43;iKK0AL
z3eLuGE{5|lT!^7_oSWY|3>RZi<Ip5}Ddr0=$8bf+)$7>Oxfa8J!gGR(DBoI5r*c4e
zERJ{_dcI5}4pVqg&=Rx-LxN#JW{<=XjicgnkNi3&B&nTXA;H3N6cJK1j$(1#5J&Mi
z3gT!OM~OI+%pS+haUhNxMXj7*Nx{-_loG=7ZxXVkU&As&%3hDotIs5c@)E5OM^`7w
zXr(wR$5AtmT5(j7q-ugpa^k3(=SRBuHLo5=4Ur5U<(F1F4mXbaBB>*o%InvS`~E|n
zdT|8)E+Dy%4dS?N&s#*ZX&lXjq~ly72Tyoo!6yG7UO(KeakLa6OKUEqMI6@~+bWLR
z;%FVm?ILdz#~pc1D$o?n!q7I3zfSm-VQ4Q39R%-;qoa_!^0_(*x!%|=aojD@uKCov
zon$tS?s0q^$0u?0puDQiM?jO~=ov?^IC{s?CysG(jF0;#yL$wO#L+j7e!}|;>OJ%U
zLI%eDQyVo0Npx`Be=2qT3DwXzhKZ1=!-d>?Jt{a-aFpPEag4s6^i`EHLdM2%;b*_t
z2~r@-oXBSpg%p;|Fe&ao1iN4G0nw+zgK<oWV`?1J;@HC^{!%KAhvQgGGsf{q9FNBF
zQXDhlm>$Ptal8=6i*Y<o6Y(RoGXB2MPsH(L9Q;`HsW@Jp?>-yH({Vf#hcdzA=dxTO
z&d-&fi{tq?hTffN6LD&AIr-~pe#OKupSiaTKTn+*$E-LO#<7Ssxm>_6d1l8khsPb6
znH$H;am<Tj^J6CW6PwQ}mGKtD!FRs%t9ay}-RW_UI4(CkH``xYJK$P&X&lSqSQ*Ev
zIEsFr<VwTkajf8gs_VE7{N1I@1K#R5*2J-Ga(Y`FYvXt&j!o>`8E%=z&bqk&naT!Q
z<4$)yt7I9BGHj$bMii3GqOe79tKhV2S<1J^ky_#Ii2L6L?4;S_m|WXA@L6(q9NfN)
zUj<NSZyXf@CD=jx*n~I^#Bq>Di{qU*j>Pd=9IwamMjZTEkFuu5cPIS+i1C>xe;aow
zjtP&uZ%WePINp-z+k%vTbdP!VlKO5O@5k|h=)A|S{4~|BO+yy-VH}Nb^>&V_{t?SR
zkfCI5Z|~DMK8vG#Ayg=Y&*M1C*&qQYfiL3tG7c-@yUJH_@PA=v<2V<`*KvFk$G35O
z7snrQ{3%J_$8ju<Q_H;{;`lL+pG3$kKMT3C)g=E#c!@8)U-PNQ<M@r$i-SKYqr$vv
z{$I%${t|_M1WyS59mh$Qywz+Xnx{DGk9z+~(&;$P2-zUncbq6VFVV|!T;V8)<6<0_
z;&^kA>;D$*=Ys3xDkqRVu9|?BK=hu5*ChI1968CWB>eU=@Khd1U`WC%(%Y|_p75VS
z8wr>Rtc2O^o+P8e1em%g;n@j<5(p>!CwTD$5(z|DcmgZ_^nVsJZ9wr@0{^KFZ@LR5
zP&k2N3A~tg_}qTj?BYcd+%DDW+r=%KfdBigq;o?8#S<uz@He9<mGHkrO$z6p^GNt#
zBj1=nNg@20nbDgPzPpxApiBb%oRyNY35;#gu$;)5R6c<U!Yk$_Hw&qhKxH92$~in%
z)dZ>~__ZE-CQv<r8VPif7S-h8=GSPEKuaOD1ZxYr3DilTuJDv#lLYDssh>cD1bUAM
z6eN&Npiu%16SyS-{tl1t4k#yH=UxJh6aL!`Mz2eFxTaD_vjlDx(p>P}DfOAuihc2I
zmCkJAsQR}h&|31|o<N%f+9p7&-jRSkCP30If##iSbV|UeTtL!3fw#&u=#apjBJU`8
zm*CO+Yf|Azje>*Mvah{tat^#Zfv(d0Q_IXu0^JgrJ0igTWyp%WyWqh#W-m6A?o<eY
zLg>Q=CU8oU`X<niqlw*`K>q{=Brqz0`w|#=v0z{VgMIJ9pad4rOH=aQwXC^3Jv4!h
zn=``&htVuc(v03KQIZkNo97>OYB-u+k-(Y+*3uMoMZ;N6mrLOPG4&l_QWVeIcigdL
zxXCl`?9A?}gj*DFafO3*0Rskdlw%i=tRe`aq9`U*L_tA85fnsF!JHF{h#1IOGLmyn
z2H^PKsr%jk`R<vgp0}&3yQ{0KYWikoXCCCBvr;33^H2dE7BI2^PYa;fBL#R=@TdYj
zR)EI~@Prhfq78G(Q{c%maQb3~oY8dqH-b+bK2v~a3oxbt&lO;*G#Oif=L;~A{#<|;
z3NWq!;|uU&0X}RUd|;8s!u;|t74U^K<rTx3P=E$+rYe?X?tVQrYIf?C0!*Tz3h)|x
zyO>`pKUumR*fukzAh>Y-dI9(*I~G~{&#eKSR)9C?v;~+>(-mN5S=$+mh>udoT4lDs
znKGuO-Y&qb0u=8{J~uaYc}dXl&G%Ek%}%{rfO|hq%_+cp0*Xp9EN+;a>QIvTfNIl2
z3UKkg)JFyQxB#O|GM~x<jh&ggvn2CL0e)_oA^1#WJ}=<!dhn&-?+Y+bz*hzMnpRRX
z?BtsQd|QBnV~f9&s(ph3<`2vjtrJs9GK&iEBjci^Xnp~HD!>Af`MCgX=cFjsR?RG=
zV+)gNlhfdfRPw{rucaL32NC<D0E-K-M3^guep`}RDqxw=<w92oT`)7~XO-a9Le~gg
zTYz-}Si8Oee+phv5@@@r0GkVNxBy2Au%!T73vi(%vyH*nGSl_l)UtO{2TC&A3-A~1
zIWx6`lP!RLDYH|GyM&UzTReFWdnn1@TY!CK{QXQ>t(^l>%>5{Jr~tJuWw>PRUQZq6
zh|^NXWFUeYFJ+E19xr8h+;b^&vH+(fah)!}KLz+#@R<UfEx@?~?rh63>D^s5=kJ2x
zjL&oNe+7JJPH^w<yyVzfbLw4S9)7(MYcGmSNdYbi*wZkcqu}V5iCiUUJNdZ~Z@%O!
zsGy*tf||F5$}6bfIUW*vVQ-KSE~z<{6jWAFML|^sHXACarl7h4Re`3UhJvQE>lY|c
z6dZ3}e6X=q(#NSfyFQt*zK+gTv+LKIUEdU7hzvQF!Z#?^KeRQ66w-sQp!{nowsIAO
z6&&80;|ZS};)v8n6~q)=rXat_s!?RIA2zxBLViv5rofn!?5Lo&f;tKsD8WvzP{FA4
zh4qET71UL5rQoM8WnMa8$f~Op)DsTz_@l{YszY$Kf`kHImT9QqS_O?b$J^7_C`bx(
zU)vC?8Y?JLaGip*f+h<18O^2&Qatj5h2YV1Orp=~B=dPQ1<e)Qrl6IA77DIcaFc?T
z3Rb^ge1p&%72JPwhD9EXjybI}jGCJj+#<ESU3IGfex8*A8^0)St)Q)fcEW6<1mRrT
zw!MN5!esHDmQ9X-kYW(gCY=;?7UOggN={b+w=3vY#wk|NUGV5*Nec8((37idqq>b=
z3hq$wp^lGq^cJf=t6+?RJ_`CO=%=7R^;htKf&mH!D!5C*-3q=pa!Su8cPii};YBTH
zkOF>quJz2&y-Ki=xJSWYsbcLA1&_ZKA|QXL)DBZ{p8#@(3!oo9s9=PGN4Z`K9#ZhI
zf|1fgyW4`cE!%{;bc|E%5gI|haL3_zJjTuyJfYx81<y!VPnGpNx~yl8^0WfBB`Ezm
z-g64ZD#5MEo;sda@B)`!#YGk46pU98RS{G1qJozc{H$Q1f(Z&HD)>wRKY04Gf>#v0
z(Kj_m!6XHfi50xbu@t<f;B^I470h0jntUlUs84E&f{p3oFHRSYo0tCTQs(06qG<|<
zmtM+DS1^N;3f`e6bia+6w-wA%u=7%8rh<Q&h%RO7w@EydE`I22^7pezf{pDG?<#mt
z!Rd=dHT$M`P++ct_Z57=MO5&yf=?9u)F#2N?tUa7yfU-pV$mxbQ~M7UsX5tCIgvJr
zO|d4QEBHdemrMn165lHLPQh0S7Pn1&t>7DlzZ%GUyi(pXFBCuB*!o_<Ja)xc=xzO=
z;75g@SjuuDY}ofy(R_N#%3=blM9u;Q|MW?b^NWH-3QA~p8co4(+@&k{Q^D^F{!p+&
z!AcItrQDoas$iLdB?|bV)oJI7hOJ92r`OfVy!vRS;l|VhTT?gXWLHs=9d1mmQ?P~>
zJCR&VHI`=xD08$p06eZ;<ZPh9nO+neQLstDX4+H1E(Kc@Y*nyb!C$obyfi;VyN#aK
zHqpOr;&8v<)3p5J>VkHO9UQuCV&uxqZUuW3>}NzM*sFkFacy}jxsQ9KHVNXMIoT08
z*@FrWG4T7Rrfo@eIGJpDHu>PGBs)K<;276P!5QX5u2-AH3F#rZC1tfqoD_VDE50T5
z>7mSJ?GtAezGf5uDLAj-ZyHd+%Q@MiKF*9YNq*1tUj>hRpXNdPT;Of`X2s8o!WRXz
z$Psf?<f<r8p{OXQB2Psn6_r)|w<VdcBBbK2-l+q1o$?eoksQ}9QGu@BE>Tg%RVR|~
z=VZyOqN1vbNQ>ecDsE_ATunu-4aHq27XO@+t*-L>MA;kWrH3!i6sC(+75t#BslrmB
zsrc!1@_2_Px(Y+Z>6|R9Dwh=5DjXFaWj3au!c`F#NeaLBw6lFnvT|-98S0brIjD-Y
z9h$I;$J9xw%T!#h;yo2}R9vB=ri%MjJV1R^)K<|^MJE+?R1~UcrlPruxQe<ek}9rM
zaV2M@;%XH=&n9Qv>3S;at7xEtfphDLBoD?>VRL>^CYw;vP{sMP$(?5d{xvE{Db`3p
zk%}fN8jAqs>DW!B&y<SmRJ<&muq!r6s~})M4AK@Vu2<1YMQhqn#f>Ujs<>IjO)8#S
zk-7gDhyB!ApJFTHT=EtUq~bQ|jjA#yw8+g)Zkr%(qoS>f4m9bxWVhUGI~DC^3PW<U
zAD&IJEA~@uxicm=+gU{y6@69oQ_)q$?JBY=dWfpsR1~Y|u7Vv7`^CwqpoZ-5zF!=I
z8M)b>Dtf8tt)h>LJEWG1acVRj)gb0rG{}P7Y=0F4R18)zg!XKc7^vcI6@ygVsp2jb
z6)Wdap2F;$t!OUNd$>T&i`mt^Du${Urs6)C4m&KJESH9sAFhJ4pgie=Dn_W7s$v?I
zQSmTcRK<7|BUL=2;%ODnsCZPxC>4*Xcw7`_533qkT+JtB)u;nGq))1NO8Oryl<JZH
zEXPtYR>kw8$#c>JmEn}B`3quUN>XR)!{vBU#Y-wCshF%{g4k*z7fY6#GOwuMKy!B{
zX$l&XO<q;;nu^y&6Y|;r6h;bz{X}v@ZkD4^{tXpxs+g(bZ57j1FmQMtnIXZ*NO?;F
zmQ04jEU9Hgyu%fgh)Xpq_WGpWRdFUaOU%fftKxkX%TzvEh7YKZia%uZk5qiD;u{s;
zs`y03rz*Zw@s*0tRD3Q1UvN@w6IIFuYL~htDb@R0EK^#=h5k;(_Y7MV3mEB@^X94e
zQN?@}KZvb5|Cym3C`Jb$pe27+u~2$gBwk0G|03q1zp>9>Rs1GKqhrwEze{itEEbiP
z2wf_)mMF%#uTZgB#TFGSRjiU^vRcJD73)>35u>dYrnxoAWb!A|6cv-4_Q}%@o70lC
z>L!t4iX+~tVw;M?DvqewuJVB*>{YQ(#SZ$3irp&qi2l38H>ewJLQmk-N@ItZGW%5=
zP;pSEmM)h)ROUGp?o=+z@I0#G7?UAaii;>Qaze#Prn1~DyW(+5>{DOT0*hx=oKx|)
zihsmi*#o<}SH-{5^M4W}M>b@J+v)RysRrYvMCF!-zt%@{4LKTeH56)yYutt*PeUaQ
zm9^kpman0r7C0eKL*+Guv>=2l2;~B$#Nf>BRWwx901d8&Y8r-=%c>eQ4b=tL5LzHq
z5lZt?M%Q3y;OEh84W<^H>7xJfo3bf#EDb!dPW&_FaCCm${9LkkrM$2PPs3#zF4y2|
zxFcO0(GdP2y{A&%zP_ob;F!?R`V{$BXy8tRTZ>v6YHGn*jO)ndrqOC^s3Y?#U8cHP
zus2I;xK_iJ)aqRFDh>5GO~F@dNQiI)jX$r;D_w<#8m`fTEJWjQHEB|MDOGJG0~OH}
z{ZoxKoIRCnIw{peLsKm{X{I!cDb8Fc_(bniS_@9H3`U;yT4=al!(SS9Xt+VcjT&Co
z@QQ|;G_=%kuZE!-Zq{&%hGGrfsSi!3p@W8w8d_;+t)U%Pt)z$tdv2qlt#nSzgG02}
zg0n3#9lMi;&Khpl&`m=Z4P8YaMgePi4kf*|Pm0NwcHn#&o*4~U8eBtf4L!sZbc0?R
zdh(Fe!~``X8X~ighQ1o^)-XszKMl{8%MQ>mkiMj0%bMb8<+5Lv%ic+u6UoKpvIom$
z?-D*!95<-<Xc$cQ(1P5^gK3b$&DW<`#kRvV+^69w4Wl&-rw(lr4{I2y;eNpnXn0V=
z2*Ip+NI*_rw&BPOi;rk{RKw#Mp3r#Hv;5AJ$x)n3o5W*mbt;Lx?1KKOXNxRKu5Xig
zl1qOo$=atiJfq=7>56;QXEi*hVJugWQIigKt>I<?eO|*0^txunnMX3s)}_V?W^ud*
z771R`FhM$*sNwA``G22I-uGTHE*4GFFj>P78h+I9s)pAz%%yr9v|p1c8s5|}UBl}d
zrfQhR1!`XWhE%aOk(cGpYDKf+8FV%cvoy@sFq56j&<934M@Ksx_vXAT^`zUs!{8FP
zd{^j8zc{I80e=qrUz(xAd_bFv4}7oTBMl#GnDle;*BU<2@TrC`G<>PyGY!k?WX@@s
z&oz*~{#r2)f>I{szv6TXGX&pg_*R5_<z>GUKqkfJiD7$H%Db~~YCgSD!+H&WYFMD*
zXAR3WtkAGf!!H_s*YJl}Y?07k8TIWGW6mUhlcHNWk1MrU!xAYjqpdclxNu7u2>nw$
zxSDJGr6{vfLSUU1Y~faE{MQd_gtJyCLvP2(4DCR`;O)&*06XMHPQxY*-1ZRDr8jHX
zs$m-)l@pY`3Yk2%Yr$!efMLR2+)fR<G*~)p9lJH`(QsbF1r2){3w=^YG#u5iPs4r<
z2Q(a%mEtlTlG>}c<R8}X!0O@=d08HmKc?ZhhBHhc8ct|9so@me;9SwTyzG_j68wLG
ziRCo)j5V3PEk*u0spUUz|7!S~X^Ih7C&Pbv_%9Lx`Tud~Lq!A^HIy)`>!_sT60`l`
zqFf#2bmZs(jvNkT@^pOLH&tFoNXM`(`T06tI+2`}mnELDAyYxeD`Se8aw$_;M-?3_
z`leJJRrMg5*U(X*2kTW$M|B-kmB+litfB}1vk>z?j>8XUj-5zqI&>X|G&hBQ`EZ6^
zt<1~ve_lribljlhMjft>u#T&BBy@N>d>yrP)YcKv5f$C85E|pSIxg3-KQBw&O7gN)
zl6?}h+nPF9q~>*W6zaH2M?D>J9d&hFspFv&$rk<is>+lxFU@}j2})^w9Sx+mv`8^C
zKig2pH9D@-k>;dyT&tt8j-oO#$~0pC`B{P{dJrs4b)*C^l!6G7IBJ=nZKk8Sj_dUx
z<Xh-L(EU}{*-_Ui4Xeadi~O5(wA9g2M<*RO>$pWn8y#(R+)8WfXf16i)~XCMGcZ5&
z%+He9PS%tQ+Fk&cxI@`0PZO``tfN>DvT+w3U3J{92U)tCj-yM0e-KI&FOzn69T^>2
z9X&*N<d%F^F*C1uI79hfI_}Ve>o&dh;C9SF9et$OS7<+>{e@CyfB;@jxl_koI_}nk
z>tlm-+@l8<<(hTPAFN{tudC>ILC3v1hU$1&$4H&;_RkK}alg(t&u5A6(=lA<OZBt7
zS~533`+$xIDZ?euc{?D>#Je*;`%iwBIhofJ9?|irjxk*8^4a&crbg*_Ru7W%V>(#m
z@wk8|gg&X`DFLI)YM&PHj8Fy<V`O8x_&FV8>6XokTb0j}4l17=r(?X1X*%A}@gieq
zed-miDLqri1RcEIGEwAT7W_>4ES0BjlW7ngQ*^8<9~58HK>>m{%V)nTpC$8kshTSE
zK>6&OI;K+-9dmTd(D9azcXYldHan9c9LmnpF<VA?TPXV(I*PB-&DINL+4fzL>>0{F
z6bi;-hMcS8eH|ar57Wg=M?5$+o_Rmk@d;zif^Xqd9iQnqZs3H0&vkr3hcs}rfiHD@
z#qc*!)xg&}zM=Ez*vizQ<2xN|bgb3!y^eW07V7v#$NGMWA9T#u@skc^boxi(oLP}v
zz%|v;XlnXUHZdg|qS)QX3vVlO7STP97yho}4;{bi_>KMB=?`|MCWf*Eiy3;+c>YP}
zl}Ma-7?*H}NPMY|Wdewo3s@m^C9Nl5by;n{#?Csy9Bv~M!kYAY9e)aEgO2;|NK8MF
zq;8vpvsqLf-Z@R-Z92B=IHBXDj=yy5&~b$EqGP9yUCb~{KFt3*O0LQ5p^FYnT;C(1
z{FlF1v^A!ssq+CH?fZoe>NupMVaocgZ(?^-i?cY)yc&t`>X9I=(KvLB4tCNxE=K53
zKc7ra>XeStOxFhT44lz%mWyr#RywESZyot=py5CCy0_Bkm*@})vFcwP|4Apr=XG2V
zd{Jmg8UK<1ewH#<dMjOmd;{eTR5SuRv+b$Ip+%k3Ap@ipgh^1zz_bcBL1p1nvYLVF
z2Cgzt&p-_W1qNWiHShrKV8Ae78c=1FGtszafYaC6Bo?Q^XRS_KMxeZH;Q5&$7OU(}
zIwCwOKQC;+GjN50ng)CW5hGafn1QH);z<01P?kf`+N-mP9}XlhGeCN|P>R(uP}@LV
z16LZTV_;lKxdn}#xYQO(KNRMOG%}|!u5qZ19hk1Zfd&Se8b}$q+Caj<wFVj)XlURX
zT7dmD4x0QG4}_Ob4c%~8h+{RT*njy&VxlRH`J&rkL7Nyj+tgy`*BMB&ldAR&2I%n3
zM69{Ykyd3tEeu>QfVlGV<c%WC-x1to;QM|Ff?EvSYG8(ew+!57pp}993=B8W+CUov
zeGT+8(AGdZBZ!wf474}U!NBEX(mf4yG|<UF4;hsGcQ(*P#u~pn#bQ?u-6M#;+lARp
zXt9CrW%^_cWCc$+pHH!dCvv%boK!CvE3Zd_M{hc3k3=7#^X>HSeVzUW1{t`=zyJdS
z4csZC-zELfI7=Icf<dX($|S*H149f9Gw`Bl@@pu|mAco!P$P&A9-qCHekwn2XDE9=
zoyx#d21Xlr(7*@-j~IB=z(dmW!{QYT9J&x&jg;o>ZIpq>3_MxZ+v5hFFz{72SR)S6
zAwL*`i%9ykfoJHA1|}PLR^-W_Al@>@z;gn~8B1R+!!OV!%J6srFB*8MjKe`E8hDvq
zm2sH3XuY>9r(ZSjnt?YBlp7J6V&HX#m4TZ^r>Vweozr{zCZ<Y}e*T7l^7Mz%>FEa8
zwsaw85*t`zV5xyw24)-h(ZGBI?-+R3z$XSi<?JG%_YBN2FxNn(&T0D6`{Gm|8u-Y-
z2Xf4D0zN&H^kV~^cc%zQY01y%MX#nlXE^jv(5jry7d#6Hlb-gK_`uf&z7g=P(C>tP
zFLa(zO8y{#YX4+lfq}&m8b2FYXy8{Sgi=$B%pwCj{>!H)eB3xhr=m6Ja`cnm4g4YD
zL&c~n?ZZ^L%)oNW8`x=poD~LE8CWfNrMMiKYozn72G$G=P8@3utP@9N=j#ppDR_g>
zjY2mG-7IvAP)f4xHUrxY{3V`7`*2b`F_CgLcS#WK7ArkBGw|&_!r5zJp8#_98#qvg
z4{{=9_^^N@LXR3aR>o%@IBDP%{oKR|6Q`N{4P0j;ZQ`tfb4-jTd=q~g_=g$WL?sjd
z8u-sZu8DFc&KtO3;G%&N16;U28;ADG8HX0QWFV(;D96OE9zoh<Ak-V3=KAKD=s7bK
zGVw*@P`-)sCg_Je+OH1Wqk<WPOvS65$|kCqsBWT$iBD!YRZR?@?^H8`^E-uWpUCAZ
zbCd!Tsu?7=IxCZk8RW6kO)X70OxL;q!-Q#qMN6nH)Da4yta1f}g;IftiKvOXCayFQ
zqlPBvrL|04ZsH0PG(Lx}X$E<N`HlL}d1(CFChC~rxwz0oTxyvcS-cp^a`~<@QO`uu
z#I+{si(*%sNSI*SX&^;Ts-cN%ObqYua7IprtYW0=HxAJc8<}WqqKS#7>>(PQ#3@iD
zLzHGSN~T14@^9VjG&9lM#2qGjn`mL;dJ~;ZbTM&*i5pF{HPOz*O(t5JxXnZ>>GNh2
zw@QaRUEX4XG+rUg3I5SI@aOdnGp$XuF;QA1r)7m~dz!^WM-!b)FyAr?cyPP*(%nH5
z9t|p|yPCM&M8-tc#ILhM-OM0@ibYj6>CRQ&pPbpnA?;yeaXW`o>qQSSQFUdKGo@`w
zX@Nc_`kEMI;vN(IO!PN#r)WDsOgB*Q(votNoYXl;Zd}B>SS9>BWFlk^HgT_sp(cjN
zlsPC@ZI}rr#`|b?QHF{7erZKZKERa{``_|ka8`QA#KR`$oA}AZNE46HN+xEQc+|uw
z6EB*0$;4wO9yc-C#M368F!7{`r=(kM`P!XyHpN0zEQpK7p=V4yYhs*<sXvFt(5Xy3
zZ{h_LV@-VcRQij-d6XgGxIE~Yq+RRhv-x-~=%sQjPB1Z%%A0tdj@mfXvq$1(YA%wK
zOuTC1H8aSllNmL1kN&~=^hDzjDe+Vj)1>x?E1fq?yeV;4Fu-B|rAm^%Wnw0kG4YX!
zw@u74@t%n}CT5HEsK7fWFBAkbdROL1dv<*+Jy)E8)_$LQ_DIy1jr0d*uxq-qeBQ?l
zXR-hHCO)O}oA}zqH)8P5O?)Xme<3~4J(v)9e8sR@nPib8ek+pSnZfRk+a8*3{j%gd
zb}oDte>6c3<B@cMiJzI%Oq?;X(8Mn$)|yynVi8@@#4;1h#a6$u`Dy156HJD`%S5<0
zUTk8CWU4j&oTbt^XY^2o><SZ1$SX~(GJ{<f9b>hu7i-rDpq?}@&9dIapC-1O_{+ow
z6C0UH^5a`+F%z4mEq9@eg)Q`)9>Hmmm^xEtn~9H4Is`jR>@;!A#BpX(6T3yXBht3=
zAZL#_=Uyr96Ut8Zn>bL050(O<hs!+qXsI_w<6Nv066Pnx+Vl#Z@=gh6*5WMAnmA`7
z-$Ho{e=|93cK$W-pNW6O8nhU92<J^)Fp+Boned{C5)+rC2ku^2%TBllJ1{(yV+Hwv
z+wXD~=%smOMKVJcDp)WrSQaW;sAS<_KgX~FZ?9~@OIcL}2mgR9OIEdl#jR$cx_}x&
z3xtxdSWwHbCP249hh!DiBY6INKK~Q3EjUsO3zzpuxK^-^7~q7ZNX(5&#6r}<XbVqU
zh*`l?k@c+L62xVcv2cZjnij6KaFrEYov3A@&<Y+n`MFcPwgu8U7B|K@-=z5A;Xt6S
z&~Iyph*?X?8}uB~`W6~kxY|O3dRn;MLPHDJSZHRUxrL;KYb_L6XkuYq?-cL#OstS?
zWTCNzFZ%?S=EiSLHMN3k?<ot{S$J%E@tg|TEq^7`7T<ZE?Xxk(tK3c6Ct6sz-a<PI
z?JeA3;YJI$Sh&@~O%_^mf~zt&Ti9A5%llAI^i2_vGqq2u=bx$DEVQ!F+QMcnbEZPJ
z)v2O3R&aB$tp#4@<#pGuE@i4z46adhu+Y&$Co8yW!Mip*I$P+%QQ9PUTZBadJ{Qr=
zLa~J*7Vfps-9pB~Knr(T$Xe)Op|^!Tv|dj3vWnTB7J6B@!wT-0@R~WN&+C4?n%bAv
zsF>|<VSt5x^qGyp#aLd|<P!qCUP@4}Fmo3j#=<=o28#j*)~9$AVUQKvAMaE#yLNeo
zm#}Cnb~x0+Fbj`b7-iu;3&SluY+)qZR?ObdMYr&v496QrBdp+h?5T~Zhb%l-F-ttN
zVwS}pDrW1fOC{ST9^o2Q%wBApc+BD(bhA%dc*?@#7M`FZttsYpu*#LPPxGSI#iCfH
z;L1|6QuY}O&(aSq{ApnfyS4D4g^w(ZweUOx%EBbB&Zfc_ER47CqJ?o12n<{Pu=gbk
z6KKXtISiAD!hczWS!5JfYgnY*?M$ZES$NyREDNt$m||gu75p6gbqiCi;78VPTBsa}
z^T+SI8+M;&;SCD}JXkf|!Z$0EtRj9(TFn%?Yj9rg!u%yeL$fWsYvDbHKsf%66`aKR
zxb++>NXs8^DK{7LH_mgpvb_@T3mxmn$voCO@v((ZC`RK{%=?smav%%eN(_E(;S2h<
z73=^Rvzw=e_*3q$Ed1Iv@ijfXT>P=)xuoB5rlZn7SoqPx_kwAqc@{s~mB-roj0g*h
z#3l>qP8Jqg_{9Q$O3$Bo59$<b^?C4D)jZ~o4E-uqto`YD?(Y`<U_Ta?SXg0UB|V{g
zVkzUjT#zkEmkD0ZusswMS4nXlW8`=tdtPl}jfJ(M679z0!aczY0p2^2yMYF0im-6f
z!X^fkg<Z6^g)J7ky_)*V!VbnDHL<XrK~y<sS~mD~|HVvV=fDtu!OfrH@01)%K;`#X
z*lXbcQ>6v|ke@?Sc%Oy+;sc9A!7s!Q$<lCjj#)Tt;fNJ%sOTO?g-<~J+1qjEgeo?{
zDGR49T(nR^2exq5!hZz3WU(V}er21pILEVq%$I%sBc1#!^z2*d^A;{x!RrFNSg75-
z!4K6hS;(=GZ=<{&STEN`IU9UeLw&xupj<r94qk1+iI9eDRImd-uWaMimqHE7<y5o-
zFRdh$;ED=)RcutXgR|s@S5r?+OOw{HQDCE;hxQ&68>)?;Tr6;*+0bp&a8cmGuwmNx
z!p4_2EE~3sl#T0bI5uD-ZlkUZ*GAY5-p=vs%^A;zPi<}VuawO(|M#qQ#75NS3y`xh
zJ9rwL$7KR8w{dQ_L$R7RR&{RDprupGM(r}0Isyu9oZS=j^Xum1l{OMK8rrzZ#;oZn
z9`&e9Nl|?p4TN*Gja~1i$RWMPMpAlcBJ^4rtC8SM(~BEZ^1T#~BAc&J&Jr}WL7Ck4
z!6Vse8_jG?w(+Ws<~CZ`xXDIKX?wkm8wK1TbnCuAx5KwNlPhI!ws8wBY~v-af{oj3
z47M>u#9GnLHrmq&Hs9BsZ6nOKWj%1*4mLX4xLY{vu#=5$Hi~U@F5`5u(N*y6LVw&H
zjN9EtMv8aY$lB;(qpyvAHhK#44xtq5C7@K*-ZuJ3vD(C9R`nM=Q0M@mrM0ZO(*~D@
zt^SWQ$i_V)!&)kEuZ^K%|L1KCvvHq|hi!}$f#EhDl;)JY-^K&NELC7cSq~4{DCJP*
z5gX45|4|#GY&^zAk>WEpo)GX<S*s_@x@D`;!hG5W7nDUF&kARZjb%Fm`;3+1|M}qy
zHpU5OywFW~!EXv^{Pwd_6KqVh@v@E6Z>3(5NfG33N%GP3Nj6C7RIk~XV&fef@7j2s
z4sT<ojkl$%X_Tp*xwJhP^bNY`oYb2(rVE%M^ev&}U;RdEmNcQ-6y`D8#`==rR|fCd
zm?O+j=_EGZxABpU1Fxq(5ayaGsSgEAHk?E4nzVQ;#j1~Od?GT$)bKMK3=?+sxk%Ey
zU)lKD#+?rCa`26fZ*5d|P{qM_%p^AUv#kwoE#}!+$ru#;gN+|;%x5;>q-^|V<98dp
zA^0=B^kj08;DvT@x9%5_=MAi1>GLO&JdQ7L{tzbnTr7YO7A~=|lq({|6+)Mn$#4Tk
z$wo!iY8z|l4>q>hSZiaQjg4GZT81>%WW>hQ1{=Iv`llT{O3FJRW?_cK&BEM5+ipzp
zAfI~!-q+i1|L<YWJvRQbv4ip0Cb5$tZ)3L|Jjycl&kP?S;O?c|%1oQK2|jtUmou`1
zr%+DqO!C34gEkJ?xM-uq#$g*rn1z@?Y#inEZJc6$YnwQ3<IFN={!r(n^nZf3s+4_x
zL&|HL;PaxVSu0|#wx{^0C+|1?%^Y$n`Hzi%MZJNItjgSv**GsM@gY_AdBNrn#>+p<
zM^euwFVWQ<RB(d1<T@zlfRC8|RVjFEAkRU*gYr&rn~b+aL(c#1<ObWwlSv9xbWq8`
z*-BZC$fH{2Y*h!<9Ng&OCI{6WaJv<AaG8S|4hkG74qy2N*Fo5U=0N9I4r~X81Cz|9
z4yRDFa`wh{iSlg|yot{n`i=vLZp4>b2T#{rzp&VIK;<J2h<yiqmV@TKu5vc&fH&s2
z3uW!)4z6&}z`@lHYC5Rp;7SKqIjHS`Hw5cAD3p2enIHB^yK%kZ4(d9=Q$Re9Zb;R0
zg8O&%rGHMDkJ@&soaNRr;h>>|>l~yVT*Em!D00xm!L?4X=#3mSc7jJre%O|(cQ(l#
zY2W@Ss@K#($^mEbNRdT;he;_e1Roe~=AgNQ3)RbC@1Wi<&c7#<Eu3Hl`IL2XQ|bm<
zuYK_B)1b=PmJV)q(9=OLhrbHKtq!_4=t{daE56M^I|uC@v~tkeK^q5cDS0-@#}1eD
zN!^hy<`Yo-Po#qrJRQ`@!3Twzj!xi*+>O&MI}0ax2&6D`yMu1*yiKBqgJK8W9b}#0
zo<23Fw`927VqQLpVV(`<NXeh7m%l@-)K5I5x8OcP8Mb|$;GqKEQtU7G86dq46v|H6
z^W6>xaZtW}6S&90U<d1HC|QUh4jy;#goAq>40SNf!F^nMwq2d%F`RaGFhYv=3w=Pm
zmsNi(bQq*ToH`)ot^AQ?tsZgkXc->m;4uf!HY?t|GwAS12TwWp%E8wTMmu=g!E6Wb
zu+OE=GY%#?c$vZu#?ZV=9X|X0oP)6ro)>eCb1>e)3r_G%IFBbQXJ0JCFFC>EaHaeS
z4z`_266f{Iyy9SrgV!BQaxmG!t29*443GV-gWA`)SesG=Qyol`s+mIHaPVfCBp>gY
zE_g;6=Pd#J2k>nNv&0(gff<05&iSr`xenfUaJ)wO_vmJ4lXK|0%NzpAeBj^{2cJ6l
zkVCgm@c2l;$3nff0p~LZUrO<F2VV$aN+iGY=^|1(!#57T6@x5i{&(=bgI^phaxl-q
z4-OVc)sI4d5;~uqYzn++d5!Yz<@qb(pB*feT0UUF;;(`iJ6Pi2H^INtB~B;*5KI9^
zH0e?)E~8@~b6Dh2`astT2P++{lG@cm*9e`y)LF~GSrxS9f8T#P*x=xzgAxZD9c*&2
z*TFsqo9RMyW(T_*Y?U?L=3qP5bVKTHK1J3x@t1=g4*uztVcKB^`{qnCXM2jZyB+M|
z5>E~uDr51*Q%OGYwco)32PYkza&XYWAqPht9CL8k!4XDo+r(#;@|ZnVwod$gI>=+k
zg?WM*@@!CK6%#^@Gs)8q&N%qj!G8=%2j?98O&uIGeWv)e%2^IXz=xn1wsYDgm?7El
zJoAhLYRJynNv+d?K9?Ni09OMEAQvbXylw&f-C-V(AAEEX{Q4HZ?#^o$JdN^uynHy2
z|H~8eUwF=oUuYq%7QClF0DOloa{`Cp>o!?re&ee<2zcHhRR9%;0ha|2ih@t~gaHrW
zOnHl#mzucW=S3;b^rOmIMgf~J{nNrOf<FQtoCqmL@ulY|f~*@6OnG_*<DCioa^MP}
zE^s9RtJVbS0EH~JOVkohZQ%FHSyu6w+&>i;W}<p|Cg-aJlOGg;`ciBF@U%-Nha+tW
zTmv)%ngdDTTHv##&UHW|1ZNOxk^&k7ML-h-Hh;V%IJ@y^ir|4y0?JfB?oc?5;E6;Q
zTZm*!;AY@@;0EAE;oKyYO}I<p&;++|zCdT73vip%wgK9TDOyRfwa`P`Qtg2DKqmxg
zkPSNszoSr2gdFAyUb-RZD$LtU>FK~>m=ekF4rGA2R1(MnJ%F(^1<(`d1w0Ns0o;LL
zuW~Oi6zC1~0s8VfqAcY-tP-0H1nv|tK<L<G&Rqfq38fwG2DWZY5%A!1n}ek}onZ)q
zhx!PH0rvq90T0V^59eE8fd_!aTk>f=o>)nFJP3>s0eW~TXQUKI0gnKW3g*7(${K;q
znRXtdPc{nLZm*nuQfxRHcnW;MdzRY?(x-(<b3G&AS^8?5#28xsT=F^LaG)2Y_%iSc
zFb)_GyeOQP_zCOv!5$#Gtat(ql@2a{O{Cihm?X`o0@DOc23{5L8Zbpb&Ry2)Vux9y
z9V)<N`vx!*cpJfX^i5#8fEhyH63UYuV{;ZTTNeEtTI@s+6x`DiyerIycrF$&M<~1c
z0QeBt3G4zs0zL+o087PJKLNf0zGWb^NqkB_2R;YBV7Kz4749p(MDSE3ABz4;m|qL!
zL+0Pf6czwK1K$JlfLdMhe?V~FnJ>oq5x8qoieW|0Pl5>+0>9At=cWGu7ST5Z|0eXB
zB8&WGX8Lz2QtjYh0Ko+OZP79W|3s_=RsqWanu2?e6=D`XSiTxqLm!iDwpOO|C$K@l
zI`DP++4aDWLxTr9d29qWOBMG{n*{I&3tI$mvTK(FKM>d^U2O;c0+i;(JETZ{l`7fY
zz#gVk7kMuB0{eh}_~}JpKX8Cb0>`DRgTP_n2yjUJgs#Hv+%7fEUvL~na50%js#);~
z;G`JyjL@NtEIPv};4~9&`yeAR!Jb9%Ukvd%W>gU)Zg(vAKj1ubyBlO?9v8TjeN&et
zQC|c~1aQN7d6nRS$s9LGRs@vfK0MzIR<^PWKIB~94KjI1Xa%7aT~H=fC0j{a9ov#$
z#YI&&$Zyr$U|Ut;WU{&x$>DEL6c?(C_AWZ``i~nt?01!mdM<Qc0&-!xu-xF{e4&da
zO&!}sO&7IXI4=4;*a$9M7hxAYM>q1^;DreUq(1o%HHx^1x`?^h`FNwtghM7VkIP+L
zAsk{dYr9yH8-M0dQPYl12<k|&>A&UTE_!#0^QbG}N}&x}2d{Cf@8WtFH@Ilv;%Yaz
z0>%?k+C?)L4P9L0;*=lUr%Or|Yp-?Ds0=q2P~@VCfTm^qlz{7Kz>;!o(%cPhyZEbu
z>wdhp*1`?0`trS(H@djV#dC>#t5dwC8@w0gHW#g2-0TMTIQT}0TeuKz@NR0gQIqaZ
zG-~Yzzx6)dD$!_W@v>CBjf=J-xq#o(;bpg2{O7rejxIX6c*Mn{E;_sD!fsvM=b|eY
z(ZxU)ce?22qL`+3(aS}57a7r(?-w=l;#oJiuib+N-<!v4tyF$nNx3^{E*Je>3~<rZ
zi}w-venR^Sy{WRzOTH5>m1~tr?6}72TqVnfypML5i+fxQ7MZ(U3=+Vq3Im-Xg6|dT
z@sjW3X+1w@s1!NkZ~+ery`NL_;|~bFY*d;9jo@{~6NL{6C3x7yNEdtwEivgR7mvAk
z&BYWKkGn`!%6ZPkSQk&Yc+$mFE=Id}h7L@9^5d2E<~=Q7?(h(cV`ORA4_gIupAveW
z?m9Fy-o=Y9UT`ta#l%>MmtJ`csGt9miwUCGE96UCuI$SK{@#<v4jbgfC%IV5x8t5D
zob2LN(RtshK-Je>Om*?Gi%(okbMc0YIWFe9!6n%@UCeOtmJ7bucRI~JB}8wT>Edk{
z@5pexfIo|BcS_85(W6Un*_rptSbW#Tdm_M#)nwi)3-P{-58dFcxgSUs`FvZ;M=p-?
zu5P*DZM2`#dM>_p@r{em-Qbqr2F3Zx#TSBE{L;muF2QZz&o>3H#{E|M`QF7m0pHPM
zF9m-7gA2Y9mtek_^hcr7+6S+VCG%$&3teQx=n=**?9fG(Fsg=wi2IcmbFs<AZ_?rK
zF8<)$X?Yi`T&#An)WtH!vWt~m(ERu><>Gw*@N&9kUi>B}?Q~Bps+1GC!lCKbxcIeO
zVx5ci0@e!s_TEN+y4c|2qqoz1IWR{&_OjEdbz(x_#AX*;7~?KZGkt~QTV3pSvB$+W
z7u#L@CCjmcnTPpdYx<R;jYbbn@I}p!C5m>r*nBWaW%jz*=i;!7BW%?zv7Zh$IB|%}
z*FSN9RbM6#3g(M{$*1?)RnkXY9A`3gaZCo~ZHv0gl8nB;($2NFCr-M-{UBa)KjY%8
zi~Mll66aj}?c$P)oG|`z@vn=E;%5I5JRCaDG<zs{{lTREPVf@r3(T%F(gY=CK6!lu
z=c~MUZaC1bTo}ZwHYD?;$d^KsSw4(V7!|^(7zU$wQ};xrFz)i=#FYhfyeIL%qiGha
zg;70>hGAS2MvX8E!niDq%ViyvFzhg#Ff9o!3_Xl5-c0f^!=T3+VXSH3T-GP?*RyFW
zjJ@?U2gIHDe}WrESbCUrA>RvQ$ncOKMkE~MN#2QwhLP7f5fg#2;?m8x7SVOD2%}~g
z@i6L!@x-!ZEiqIbp|!(!Ba>K_Nfc7~1Igm~4(XL)-X;rHxj{JaoEgzLSEpVW^~1q3
zeKR;gT5(vTtHVfygWDzVRLSygS~84l!?-DomSHqv=V4qI=7)d-fub;)3LtJmudb3U
z&y$647_ekE3kNp`TZHjctf;x@-=bUKe%Fi44P|X_45Qns;7-=fVcZf%SCPCmjN8I!
z9Y!0OQMD7fRIe2^Ul<~28%8^^YG<J|Y5OobgwZh!;!Z*dXm(PkX1WWPsZXLfzXg}$
zb`Hl`AJ5%ZC0iUu_b@VI>ao3odq#IhgBKn545L>Vo5R==#vL3qjQ7L%AdEg?^bKQT
z7%zv>FO2?SJQK#VVGIakU>FaEF(QmRY4b21p#Fz~GsxXxobBKYqTk9LF{ZwI!WhhA
zl`M}TG?Cz;Wt?FG?h9jh8Rvchdez{xQq;hCD2#`>3cW**(EUynZYvibDV8*chGz5$
z{q4pd6$6eE`dAo`3wT24lS0|gQ*{1PEVT5k(PP4RPKx6g3tbX(hvbb7<9T{=e$ESG
zB6=oY<4oc4VZ0c|OCmfW9K4KrN;r7EIZsureI<-ZVayEU?Jy>X@oE@T!<Z(*&6fu@
zc}-k;if~@%T2#%Jn*EJ1riU>jj7?{9-{h?0A$k;(#;MIkm;3Rz*wyl6-R;R)VaygE
zo)gA9%&6z{-;=J`^Sfd2d`e$RSITL%BY8{tyt!d85Y`P%d>F<@Vf+-vf-pW7`7fCY
z!uTYNPs6;~7X<0&oXe*4`re7_`XpHVLPD6H^EFlKp7=J5?-*{|li!5-ImMz{i$dRr
zF)xhyVKA5eAYsTP`J;6HUhfd`x7kp#LFPzBo4WlR#vfrU4r3vMC5%PP8-DyZ5&pGI
z|96Ju{VtfB3O3<MZ3)-9T>Q^4mWHt`jODV{Ji-0^Y?{RtVXQ1`yGp=n<{1HN%lPXA
ztQX37+`y&ebiz=!CrRn;1k_|}7~8_A;-RXC?Tnx>ay;aE*b&CgFwW48!`KzZZki~J
zgJJ9mgD%HN-^+k17cVvYJ{e`d&>_>)hr&1<#_=#t$UsNJI7&N9EoVxfIVZ2~XQZ4A
z;}qSmbK*2p--_gHxtq+p{6|&>nc-X*e}{1)jEmy)y_YBd3FBY!(*LBl^I?7sGdRyO
zBB)G>Sm}Jl9Oh4Ic!_>8B#-ayFXti8Lj^C$?fD)qPEPTK=OGW}1+&Q9!VF1fMUkoG
z1!teiLT@@9oMEeZsP1teh?IvK9tu3fJY2^6zaCT%ju%|?iS28sdC)x=9_IE<{CvSN
zgC=pygDv3Bsy5HycQy*0t!h8IxzP0xX7g}-ydCm9@YL*kh<IpKHB092cO=^MPE75c
zh<YI9>GE<9S9mD&z&rajJ?y+AvAv;H$3rcTAJa**No|i`A<6ESrwe%dKJKBe7wngw
z&4%VzPG9MP^eUnCJk%FJP6Gi~dq{ZvBzhoojfX~MwMhZj3ax9_YwV$j-J129c;G={
zV$$n8q`hEQ!(2hy%)|8_ZV*m$4=n_c&y;eb;I=~fJ%XD&v@EN=S->qGZWVA_8NZc)
z)<WBOL8O;<)oNL?gNKeDN_<@M(aA$+4_Et0_~_!HtB0>VeC^?O58XUG<l$it#U8qQ
zxYxr_4;c?x5B)s!_weE7LM1=m!$VIGy*%9E1slRX9)EKer)$mblj!Y%l$%>Va?sZU
z>A;6VoA%@l@Nj3~Gr`;kdT84q!|l*}3qyB%xW~g_;SUlzypBV+oH96Xh!iP*AuosD
z(HQ38J`cm`0E<GC_U7I1;Q<e|dnKZka~`DT@-F=mUhsGZoA4_VjEj*T9`W#|hv^<3
z^)SlA^B!LC@R%(36CR%Q@VFPmIQLzAXyGXjqdh$9VGM`%@QjGnjm5{gX}U)#;977W
z`<#b!Jrg{}(k8o81mir6rw4jLI(pH=)-CDRJuH@U+)GlNK({OxpXlLb0j~(1By_S+
z*1qcDwK6<Kz!Q(88CH7+IMY15;o-Nn>0j<i6fDk=Im5$S9zOB#sfU>!-eyE(5+8V&
z<)PZa<hvf;6EIuoJ03PQ>Q4S^hm&&{cQjPD#LljXcMm2B-k0LQWyudceB|M!Sm<Lf
z*fnt!{x376bE5t2iO;-XBlM+*&pq%rFJE}U^Mp){r2IF5Tc&S3eCuJ4hrJ%Y^YFcg
zRUTG*nCIaKYVP584>zCB|B>O~;V0_TJ@Llvi3J{hmWBRB=#PW*)=UX4q~~-G_L++~
zugd9Pg+9|MP5g(4leZ_9d00;KdRXFNX_=oKj|MTt*x`0`g)px!pGU=3N}hSLYIco>
zwH~%`IXtZMu%1ir;g*FV{zQvA|3Az6*+9!LPd@(uUl$*&CXdY?CYR5n5w<b;i`Y(y
zufLeY^5Q!@{L61iY$|NmDWP8DY<1(iJdF4&xmzfi`xqb|EFZRy10FxLjWe8}heI9?
zdpIHa^9bXvSLm3Bzxz8}k)yIA{8$E^^SBrMe?f54!;GrgQ$h(&3kdQ*TQP6@sOaM#
zD&yfl59dAblNoJ>HCj+LyLV*z0&}<w#2rY#Oz;5_9woxLBs9lIt{>#{azgWjvY79q
zyx@>fZdS?U!tL5zSjk6aKloZo6+hT(RTEm(2a_s`JgN()2B{D3F?c8fR3DlEU8o_{
z6iOLp561_5T;Zdp57$T7N5n_ehvx^;?faNHEX04B_@Rw(C7XGk%$SeMeC`?e>Aher
zobHJwV}k$w=t#AE)b>%wN1>0~&K5CD=*gT#+(%s>SNgch$6x$CNY!lVPLIJ}&qo6v
zT*~@>aBASe&yKLjo*VkO#>XTdlYJz8T<fE+kA6NH(LO#p_~_`P$VU?&Eqq+>qp1(x
zv3Rj!UNb)ky6b$<dTF0O*$Dn$riMqh7B!c7(O3C@*$qB!^wHW!8(;p1_0iJD%|1Ux
zlr7wqyhZf6txT(1{owgGZY)~~XY{>|sA^m3t(}kdKGy6BLV&S+F%suLq*S1jkIp`N
z`dD-!zl)EqKDztJ__$qKQKfEv;5h`voLbjlDY=8qN-d4ns!!<o>FFMRkc$X<`MARe
z$K|QKH)XDH`uO1PiwEb@-^TzSBYix=b@6ehkHJ2M__)i*-Bg&$(^kiG8R=AP@znJ2
ze!+QxA<0?X>tm>o`+Yp%W0;Ii$GA^Gn^4~HGXJFiKgbTf_y`{l`Di#ev3^LShkbsf
zD9e9iW1EY3TBppTK1TU?&c|3EkNLs%ji;!#kH>vH!69acXde#xB%Q5ug33QF1L^%U
z&-z$4JoJnooF=}!lsm=;nLKVq`gtEOaAkeGB+Brgf^h=I`+R|OBkrr$SPq}AoWRLO
z<1hQcla>>GY$_LgT;>%&NFBUZ@b|&wt3F=yG2h2eKBoA1-N(B=-t#fl$21=^e7waT
zju-NI^*02(>0`PKK_-6`#)}CveZ1}C9Wo<vZsaZv&f__B7RTzIm|fPEYZp8??PIQw
zZ+v{~<9#0=`1shzCq8QQ&CqTi`uNBXo<-z?h}9o+#&%49>f<vXU-=l*Kk+%e<*{`4
z;f=naR`T<fNgFd?`oTZ)WK!U3nLfdHKEC(ygO4A%h`&2LiOdr<2zUvRl*-Kg!{Pr0
z3+OFA*8BL=$3h>!_*hDVi}4rv_}#}JKKB0L{7QfG!C+}SI6=ywUhLyoi{d3zZ&-*C
zeZEVg=CH(aA1i#UrrY~i=?B?+m5&i4Lf*Z>bE@q(CcF7T2(Oj?*D-jzCsum_XHu`w
z1}-rjgWb|@J~sO}Bw|~b2Yl@Fv7hlv=UEy2kH+ht1ly(fm(U$Tcly{RV7JgcLiY;2
zWl@Mt4lqB+etYkX^g%!P78nnD<6#+#yYVB;bt{r&a+KpfP7D8pP;yQRI3={k^7I)2
zXUl5O3HY050RjIC{ZHt5p%;W+6k3|=aw5o$U}gkwM^G+;ya+l)&^dzq2+BvGM{uxJ
zf=5U|^#~5{EUXYg#RzKcDy$UY#VAyXpsEy)80oc2x>^KnUr7J9tth#_kVUqw5y9nq
z3kxDp1gJtaq2$-BmNg<UBd{W{Be*7lWCTtGh@f@^bs}&h2uBc$;Ias&-j}JktI&(U
zk6`S+!bk*B3S1~Wzpt>}fkIX_K2Uf$)!SA0%fv*@2!`(}ydr`Ly9zJtFZ^0b*NR}t
z{=(G<3g4ZWD3sa;5yT^?8^M(kToplmPUPi8-F=1iBB-#tkbuW%CB1(_BAgq)nzbc`
zyyeW<HH@J8i)r@%@5IEl5j2Y6h6rwqpz*Lw;|Q8WKx+^eMX+UD0GdXSir~5k_UFW#
zMbMmTPe`XDpq{;-Pq&C**oDIDBlzY(A;HeYX@Zgig*QdeGQw||;=}!gH%G8@V&b+4
zK53sg{!03m2)geryj7~G#@~AjTSf5TwxZS%)Ob0;WojEiy9nM}oNgZh<vWO3W)BJ-
zIA7Q?0@B_kg<T@(Dl0oJg4-kL7Qy5Qp83@&X6F&yM-xSmi69%nK$&$9>7;iAeIn=?
zK`&98gWe&0DtzA~4%fYJ1pOlDAHlUb@f%7CIhR-V29p{fVy$0E-x<MO5!@ZYAmI#+
z;GPHuM=&G;E)Cs=X6GVy9Ta+Qcj3J<3cDR9i_TfMo0zyif(KZP;CaqEf)NpnjNlPE
z)y2YxB6wK3rPzamL$n5+@X-iHMesCd7r|p<v?n5XGJ?nH>g;WAVU2q;T#Ki~hNES1
zX`kz>WjVWN#av?|crF6YvDLvsdK70w58;Zu5W%<z6K~*<<0E)6f|vP)#BD_{iQ`fE
ziK5H|7RRNL6aVC%&_}Xf^vOvPe1D<v(@TL*(lK6*;5Bhkdg&AauhZuR&;!YQBZ4<0
zm`+F9TgXX~4$O_uh~TXV(!(<^mjp(e6~XKXevDv#1n<zEbeIS}r6)u%hZB$BBWl<o
zJ~tBFar;2%`w`r>FOS8pr*q#;#rYGM#YWD@k>GbR1G~m4Jbr}pSp;82@O32k)y(G+
zd_h++f*;6y$;j;#AG*MqpPTbd1m97aBZc2e+h;q)-_divmm%f}{efAfbNqKL=bp~-
zpG0Os1V0Oyp_O0AaEM@41gj%hMDMDWUBRVqAOAHHJj?o91iuStFv|La{4K$gsEdWO
zMCekX%Y-gxPLp?QckU2hDMNqR);VqDtchS<B)C&Hs9JU{-LG19N~iex2>y)lvB}T|
zTIsXImIyXRu!*MT#n>4k(#?XmXEIy4l-1+ggl>;;(}*2{PgRRoTu~HXn%)_~F5wVU
za&H9tBDkd{Zmo&^^dhdvWq9{89E{))S2l)eF&t*Dpb?^27{$>Dj?uzVbd2IS)n*Qi
zqD~YiBREAzjiP)Mr)4_-M(|$*XCnOMaj=f(g#IIz{97pBvQqlSTGpPA;6el!Bf*<&
zk93Nc5QuzUG-#V6lvTL`$_bsS1&jM=wJd2UiV9KKQ8-aljG|H$HKHgGvC2ZLMNvfn
zg{wx<OdO+n6#G}D*)6?Dky;}PQ-B(U7KJWYGjbX@_Pi_7Z2RVpJWH6r%5SeAI1=Ui
z4RTz;;V3)-K20HS_hqYQdQLQonDB`&i{kPqu8^YFCEoZ{Zp|nj?ilA$OPB<OQN*KY
z97RzSb%j|kiuwYsjN&Q*?3o5^AUF|4!ziv6JWg!F+H0b`ABt<aSYoS2Qd=t1U-WMh
zMbjv*kK%?XQc+wNMRSo!3vDKpL$IswY6ovBZXujc+Q;ehH%4(&6t_fit1w$eakGHX
zTMq5X7aDKXa&C*Fl`z{ygI6fCht|;`W(nFv(N?OgqlL6^`zTs;iZ4D>j<i!0ouha%
zil?IJ5=GZ2`bN<&irb^;CQW)rQ5;40D0)QEGm4BbS7|vXJH`i{%FRlVfIppMD&SbX
zqPRntv&t;fM~ZW|r~5}SAc}jU7%ZHDLhll7?-blg%egy>L4rR!nakcdks(ps%O#6q
zr0|DEaUXp^@Gzl2<>uTU#RE}{h~l9r=68(G5`#Y|wS&YIbiz_EdL)WRqj(}3e0ze%
z85PAl<;y=F#bZ&>I2@5KN=i*A@LQ|U=qSImg6UDrh~k+jKhB6(qj)WfF;P4x{l6H+
zSOL#R@qz%Rz9Cx9xUyBazf*jCG)P=k^_-WYm=MK85qm}G%R)IKtv4x(B}WQ*Opanl
z=QzQXvf60^UXNm`fK{gh<M6W!Z%FaYC`!%sRunU%_>{#c-i~5c6mz3^KZ@B=)NA3~
zJ|HoN^A%;@B^Z!+Pbk5NuTr$eM91dzKZx>WJ~<yo`4+Dns?C8uisEA#=>5*|PolvC
z5;V@|QG5}_4^jLW#g}X%0^djRwb=F>@jZ&slHW#yRP&v1D(X2j2>YBT@}+9ekK(8Q
zued;PX&n6$#iA(EF*J+e*C>9A;(QbrqWp#h{)l2%6uYBXOuI#~If^Y&ERAAW6l<ec
z7sc`@Rz$I;Y-LwQu}XU8==2IM_iAPyBLF-Bm9GBy+d}K3_%n(PQEU_oT-PDKNm@~6
zjQACsY>i?Y*GL3tC33clRVnjV6i3<zlH~7{h6H<}*vniU<?pkwkC`xv!xSs?iUUy`
zjN*{!x$URmYbjKQt*GQtW_uAk##2D4@=;JpE*1|)$0@NY&C4cdMc`Z%e=~@*oJyy2
z{}I3d`7erpOPe1l<l>UUQ7%SN!ZaQWp2fTrMNSMgVkn3qH->UCgkq==3ld0PEI2RZ
z3ocD8<zqqkFrX^NP$`D0F;t78vWQV~XYEiG!PiLWkwYJ-E}R{EgMEb(gDOQM2Cb}>
zE}-@7P}2^91$dY-Si-akjs`ZNo!uD1F<c!(A_gx8KZbY=bz_Lc5RIW$47Fp3#lVz!
zc??&?aG9ve7t52wqh>5PeX#RV4so3rh`FmNEYoD3o^xdkOKiJd4E1BUN_t~k3RALy
zh_#U>qzz-ZMmVV$k}+HxL!%fP$541QSfG2f9DXRFD8@Ic<us+L9pWrD5&6MJ4tH7P
zP?_sueAi_TIn85e5yQ|JhQ)Aw3^&BknWKyRjWOI7L#r5WilJo;Hw*Jtq3q!n0er<h
zJ%Qu4F5|Zq(1x=(mCLGjF|=nVT22SycM(%`jG>bh=M6}lwC%1j+#W;!7zV`9Er#M4
zdc@FE1iA~&!~*Z)pxGGS?-Xaxq`jny%-%8FA-MLbAV=}&6GPv!+J0OVX*)26J7X9u
zPWAto`VMHRiSPf1z@tg$@pvDx>?YYHv&kkKc_6Svu%IBl>GBp-RH_Z>AOeaF3l@6s
zy(3i+6cn)cf?%UqQ30`l<^Rd$`+nztPR>1_xpQac&dj|xGnwqBUkv?YxU*Dd0I|r_
z+WkLE7+WXrZpppp|Eu{vPGt-a$M8rDgJT#H!<ZOuK4G^xUY2xd48tTjJciK%MhK-o
zBV!m<+SdI79_$^k$O9s<ucI0p!?+j^;-lL3oh<WE3{6ki^_mxr7vbie6#0+F@K_9!
zVwfDm<1xHeChsX4QVbJfctXUU6w2akk#~fNF_1nJ1M4B+s`y!{miRdV&kJQelxO#+
z#4we^UaM%Ds4-odVAe3{-K-d9)5hXZam<NfZVaEs_|_l4M1c7*zTbtHV^|Qw!WdS?
zusViCF)WT@Wei-;&(q71u4`Vjgfd5qm&UM6z^~i|a6+jzZL*`H%%_~z6ZV=I*2b_k
zhHWvdi(!2XFT}7Zh8<nh2B~l(OLd9ldA;2_pI6xijW@@zMRIvNp3x^@*7g`)6wZND
zWp>1{lR9@+yErVox`q_UNe#qpx|VP`@k$JPVt6NpcVpN~x5}sk^h(|ZV&FF9HL;w1
zG3<}w*z_nK9vD!>3JD&Td-oeLyveEQ6O?_u<gFOq7X0gh5^{#r&3i9~k7ECO)9-!J
z>Vp_Q6hKXeh{7LB@)Hs3(@7nS;qw^I#&9l%LopnV;TMio3}3|XC1aqK|9uQ!#qdg>
z;3!p!VJtsx6~i|%<aG;=2xZO0$7A?b>fF~h|2t{o{4JHavyJcvZUJKWN%%jP>T^QC
zd#&>ylYu%J!>Jg4i{VTRL%W8}`v$yDGg$QvnEbqh`aOm}sBH(utDr&SKj|HPg1>}P
zhWPIo{$cEmqfQ+EGWau$$5A<syg2U3s0-pK8;@ds8KEmrmnkQFW>t)%d^~ao;(TFN
z5L&r!K+dvbWxwvEs>E?&994zCx0|XKNA);r#iLKg)QCshLl&<oVB+zzVck3?nZ@;F
zK^%4C(BjaU8%Mo3E{@}pIEvz6J#2zM7@)A*DXQV3IEHsq^@THVchRMBToy-M8jVTi
z)Q3^MX19=KS%jahG2)olO(o*dO^vzzb{Cm(9O|g7IG*mNC`Ou$!(k<H+#81*M=Fkv
zade{carkjuA4jV=(s2ZFgmGLM$K`P}pc{5nP2=eGPq|o~yy7?-#?dH_%^g*xy5X8m
z>WVlTOOgwxCIXoCQ9<52om3`{W^oX3w8?26M~gVFiQ`(Sle<yYe3js<g}zacM-FMr
zIJlW5zD@vJX&sN2{T<?1TE6@ZakPn}Z5-sci=%xUM|uaurYvB#m&q%0B3eAKcxM)m
z<5nskN7p#I#nCg4o8!1Kj+^2*UcNlXDl2AS)a4&Npt~@sZAqN}NgD;L9`WcdKucSD
zx(tPHk>M@s7CF&|(`9ap<MufE$D<YC9g@{Mjy`ep?W%aUqI};t7;^hb6C11M&hrPv
zac3M~c2%4mUU$WDx6BlA^R8-O9QSd`;+Po6pg0D{F^t9##}KLi&Kdbb<9N4uv@_z2
z&;~}tF*1$^<9H~JQE~o(WZwO8jE+Yuf9hYQPw+q-W8xUg2`$KDyyAM8Wygt16ktRm
z9UsSpIG%{(;W!?VtViR~D(G>+k4d!@JHN|#QnFf=uSWqgpOTtyYf<z}9M8rvGmcpl
z;NJgKnQ3uMkK_4x^eLQ4GGCL0a<Zlfm@0IGe5z&!mCPt+ak<W#XEXT6u`rHBV)k?C
z&UNw@h(7b;m@k0yP6aw0k3Q1G>E?jw-NM<O)Y3SX#gWm`OviH0AjeR{a1ATtSQSSl
z4V5*lX47%JP5X>vZ5-?3*hW3$SRcm*seGeQ8WJa$t-KJ&CgE(3BVR>(*e#OWD)juw
zycoxhI1a?|dK^3Bcqxuo;@A_%E|J+Sl%Zfx?Yx%-f60Zq>=*WmQ@<7mb6;f<vAung
z<Zg6-9NdI5_`D&d-V*wzP^v*?dYvkh;QBv~_u}}4{5al^;{*Cd97p5$FpiJnI2^|p
zaeQ1_>hm~0iR05aJ}c#Lk#<mU)w`mV$)QsI`Q`MNaeQ6M`APt{*x!gva<aGvK1Sb(
z<A*qYlw6M6w*ojd--+1wrTm`+oDj-}_(0(2QcN9A#&If+b8-9~2XB<8<M^{Q_qRCC
z#PNF^f0S~j$yRZXIR0PMu#-B=Zc6eW27iWn4dt{b+W*G@qD2)F=V{>6k}^X1%!C_i
zDp_8{m|IbcLTJ9w3L1YAS&vD|vqx1lT&SVBh87yCYN)2c(2&qjT|*5G7ip-kp{9mf
z8VWSjl?rPMt)roQSJj{(&yktEbYFg<@QZ}j(?AZJW<$`>SQf4qYq&&1TmzpiTq<I$
zAtvB54W7u5b9>Vg7SuH8lEo&NG&NWn8fmyfgRMbPUW2b8slm~}3FZFF6?p~(Iu7@A
zDJ|OB@!3>b1AkY>Ic>ns%1B<WMN1%7d;Vcpv4)0HmNMtfzOf{mX=uV;cZ#;pO*Ld>
z09lGMp$J4Zh(I5PeGOM@=%(RD4cBP6Rzn939W}JnaGi!5G_;W-*9&c}p;c)O=T+i^
zDNY9~<keO~JIQS?^#Ar{og~>=C^zO^1W>-K#xEK~WpC1u)zDwV01e$WlxXO!p^t`~
z21cY?M4s`shlZXSxcR+VXr+SaiSDf$dTF>#iynR4u0<;ljw&~CcL-*ZeLSyfU#X{`
z(DM(G?$mIXhC!wJ+|5b^-y`(iQa;D+zEa$xcHUstEXk>L@^}puOl3xB7^&e04L@oa
zrQv=JFL8=BjMnggh8Y@WY8azotcIsFJgs4zh6gn~s^KvW4`~?B?$^$HM8m@}U(}hs
z<K~*<Q~!8b?g}5*FhRqU(j2q6_a}Wqi=Hj8@1*SYM9F<l!}A)Rq04B|ZRk{o$fQ}}
zBn^|rmZr0b^Iec}vt<^h31*#_6-193=mN7e%%;gPTx*!4VXlTn8WwAqr(u4nO|s?%
zTC{Pd@(ZN~0_w9w!%_|Tr^<9HUw)aiwOqqDEsD+?DoZh9tYYxj@S=tt8rEo7tKkI=
zn=~+p@mi;0J)N4*?M1x};tLyvvXaeG=Qc@h5xi9>Yi90t!F;fGJ|vR4QzW@Gq6h8P
z@Un&vG<>Mx6%BhdyrJPu4SP9UG>L+|*EPJRVV{Qm8n}KShZ}8H!u|CDx^S0he@#rv
z4f|VKv?6+2!#e^f#_L@z+Sa|N;r#yet4*2rHIS0YyVyq>4r};A!^avv5mi4G`niVB
z1RUg$c2<m^q=$s_p*++0l9gyUqT#62&nWS=<g&$Y=oB(g$0X}}p~p46+dKGH=yyW7
zrX`0uaAbbca6*fIxq6X~pEdl#*r+34$FCYrYRJ>Ut>`HYr#1W|wf&~yjE1us&T05v
zIDculSGJ0OX!uh&?BGSai%6-=6P?uGqSblKMa91&Lv8;PKz<n=7wGc*M~|LPuwXeI
zEJ*WfcfziqqoR)LI%?=q?<(oIkm~(pSJqKQ05`TwvLF{5RrP4&SxqRn|26e!zg(cB
zu8vwdYU|Oees)1#9VvMJp#;ko>O9<3^>ls%BC3jWT0|@x>iRk^){)ZT>9|D4r8-O<
zmX6DG#B^vnbRBW2ja$_2-NGhaOQ^r0M^k@peKD2cm5}7=F8o+9YR%6l$Cdsn(K9L7
z;ULJ;i@DU?*OAr{=(t=*zs^Nua?{G4Yy%y|I<Al++*6a!No=U2kyJ&zr)sXT4mQoJ
zi5~5Io9bX$f>6hmI$q_N=xDB^g^q_fzdEkcakY-yb=;xj8Xec_=%(XF9W8ZSr=zuw
z8>I5<b+po>eXeSo|6{kPU)=Dv(a}~%2OS;tXtUf-=YMbJaf8fg&|Z)3ZUhVkopf~7
zqY%+qk8W+ex`;dhS6SrWq~q;lWpCDTi;k?0?m9U2CDP3tdzVq=X5^Fh(9u(p+*L7o
zs|YZ{53ifoi}SL(=r&Q6dru1VW)nJw=om_^IE*?5>bOq?`s=uhhGgXr&~d6uc&8pM
zcX_ek-6C+09_`uh6-qH;8pa@LjxxLka}4_im-G#W=@`!9I>zZ3p<|>J8KYyA)PuTt
z9H{#Rj~4oXP%@dtYR}ULb-dIn+N4CI+Mw~nIv&xnRL3$MkLq|##|#}aIrusz=y+1c
zQ*;phfBWvw=H<`m8m{abau@Toj!8Nu>zJrVJ5XNF=y+D}bDZ(cir4c3&gV|iF<p<I
zBrrKu$25`r=KB&RxdS4drQ@c5%FWR+SI2DXFuRDmV{+!{n6G1z9_`{6=+Q$+f(CW-
zNEZr|7P45!)*eMmWYB)SyfJ&XT*nF>Tgcb3QpYMC8+2^c!Cmue9qR<F5oe+Mtd)8Q
z*3)v%ugtrt7fP9ZB#>^>u~|3;wWFrD(UEoR<Y4O9PTDnmQIB@qymruR>gEyb(y?2|
z%j`9~vnj)A<)VvB(mgu%a$33Ln^eT)cd`ZEr(?g4|8(RTIH2Qo9pCBrUdJ0c-qdkO
z$6+0B(Ry{ftK&T#??_cF&b>DGMBG8Yuj2z92dQdD^`VZBWI#UE@iA-esy-2U0v6#$
zn}7rLnaG?E2%k%M`LTQ97dpNa{&5{&(KorF(4&3#*Lt)=|3=3VJvw10=EX`*bydei
zfPmfnRtGoZ+?4&G<3}B5bo@?d<cM*Bq2r{~e1b01N&PJJ7aiP*GszwIDILFw0F$RV
z2*=72Jk&*X>ZbnC@u!Zzb^N2_FNRHNdVW`RR`5B_Z`IuS?KV~Vmp;-}QHHzkja>E{
zxWGV>0T?K2pqzoK2C5m+qmuFlDjKL{$ogM66^tnC^A^B*DjQKusA7Oew>0|;4RjO>
z={+xUqUr`}8K`ZbhKSWPqG){8sWPN>3=|kBG;rVXviEiisRQNf8vMdk9<{1xMCvh$
zl3rw>zJV47t}<}3flCae40r}EHE@{$%YbblW*{zF8Ah~9*93FzL983mx{DxTz%-&o
z`_Faq5~s@$C`l#_d|$5~lVq}Aj+Au`@EILT`3BMkni&WU@V_MZETSR%V&HNE4Ga{E
zFc*X@$YUc;`V|Hm8)z#0r{yljel?NNqg7;#=$wM`q~u>IVzjR2B5;0BeKqHzcHVWu
zxyHb?23pFn(`XBt7oBaJzv`Z{oR^Dgl(aT*gMm2#<_2hEpsj)161Y8qc1HAXsP`Kf
zZJ@n@4xAJNoeT^n-#}*rT?`B`a3_^9(9OW@1|~ik+-Tq?j-FqRAGggK=x*Rv1HBBC
z7|0peJ+RR&oE@pTr_h-L8(sNO{>=t_r`-1g8{PL)V>UX=E2nkHC%8>y2w34A20lJf
z+}nsgo7=}gUjzM!8#L}Ooc8VWiFpw$IA`BQ!<buqkAb_5=y&2>-wH|Zr83_Z^BO4N
zKB0qXu16X-typ%bNK$NsfnlY1xPYf_jEavG`B9v~pNsnqZ1jMEF$UTt&_02&wDun5
ziW6v<z&HaB8hFUScmppO*ks^g1CJP3XJEa7M-4n?V1a>!1|Bys!N61l(+oUe;7OYC
zq@ev@jSDU*dCI^i&t#urFD@y0TIfWIHBd}G%i%Tfyn#suCW{zLQJC+XkWLW}!IP7M
z=>}#Pn9K1oFw?+Y(}Ot%KC7CWC3v<_GJjrCe1C`VT!-+Ns<{f)a<OW;`3A^oS}nK8
zz+wX{4Sd+S+!6z)Qfk8T;uQjx8dxS^xzI<hP|U47G@!sL1FH=jeyMnk(6t<aE=`!^
zMX<q$c6PivR?Bgzu#x_IBH9pbHn7FOr_|8ERs-7%yk+2R1KSO}Xked#{RVaz*l9$+
z4SCH#lf1mE4%#pG3SOd9AGCMTx&%Z_0j~(%V_>g<SA~vjluv>4We;#d4@SQ?dBec#
zM)b3kUe$8rzbk%I_!N7*SMZL3cMW_bjlO!&e$T)M91W@J{qxlxv?<B5=d1dd<IkDx
z6tY@YMR54}!h?Ko$3TTysm~4Ydku#;achbX3;n{tmj=FKIBF1*dCb7q2ELK3Bh;!*
zmdvA)>|m;^*9A--m*n6*neP~L4E$i=M^>Id#YFV3(N6~cHt>&u69#@ZaIQ_^JM)8I
z42&8c{%YW)fKx*MFmPG`vwjnBM(FPb`V0%m<n^b4zl3?VRPr1rVqb<?|I*HDs5f~w
zk%+*52A<gv5R^%P%nO8;6<SUxndJrK3*BGl0&*%PU?yNCP&t7r30#;!)dVg{;L-%D
zNq5+zdI?ldpoS!CCUEfTuucNCN^@%qm{vCWY<)ojbtPF?n)_5kRU{ZfFDm8NPvGKG
zJhEEuvQiuqP$gH6wZ#+AO8L3~Luev__t%FMuqD~VRF^hZs#G$WfRlimKuS3Lw;)P-
zrMbR<bOICG1ms^{%5NZGZ`Hg;RII$>bxi_SB+xj4CZ(L_2{aX)NuZg4Q0SEjbSRg{
zBIjv~Qu(VAxLWXxicv1FYZGY6It5>s!1W2VO5mnuMXeK<RzbBDdV|n53H(=Hk@?T_
z0cnQ>IwsIPfszE4er9({pmPFU68Nn`StfaP6@Iq_-k8zo*=o5PS#1J8l;&n7_tB;K
zxdeJ7aB~8;B=Gvu{6$OidrB5-SiLl#^j41f@TktYCyILs<~`+(1bQb>?4Y58J_+<q
zV4#KjEc8pDe**JOEHE)3fjbj`iHl6!mB8K9gl3k&Jqg^)u}xqOOC@k0Z8d?15?Hr1
z7?i-s1V$w=IDsJv3{Bv`f?yaY_e%A4UL-I)fe|A4{gzCF1;OK+gZmR0&1lacpTM_6
zg9n6;5t=E37G)yl(^nRfu3Qj|vDNql9_Cyp@Js@aB=9KvJ|lQCfyV?)NMOn{!6%D?
z#}jyWUeJ9<hRG)cQ|ze(*e=1-B20m26L>Cx8JyG2!Se}B5-=@+$pQ+N22)v~U<&kJ
z8mu1{5FFeXOi$qNmQ9FfCNL|3{}ZF|+yv$&upxns^u8B@`3WpeU`Yaj3Kt}>kovC*
z8XU+hN`RChXlVk=5?D)9TwT08ffWg?PM~OYurh&Fv_n&|V4aa+zp;_<`66qC&wAEL
zB`mU@?QRYz^Fjif5_ma*SEQ2732aSZThwUr7Eac>;yx<ep1_L<>`dS#Db;FKxI-#r
z4NF%ByAs&ViCYz1Qy7v%KxXqT;hqHcCa_<!UX_C6?@Qn{X^7QQJ^r5w=>d^xx~lkf
z+Wg9pS#Krqb^>1~@J#~ma5@tBlsXTK#`8Uyiw_d$^?ULA!fY@o_%MNw68KoMvI~Px
z68L#pG;8CR1#E)D{u!fI0-wv&97^De1inn*aOtd3;48u8Ja$hJlWgcn0!I@lZzA8s
zu>>w#6`ZEKC2*W$J~;R`f$wM@bg=|}S{eM9K$(>R0Wao8Ab}H-^|MfNeo5e0!6!>O
zrvxmjmfL-4cqW0f37kvd_XPe(;7`f=O8}c5cX{~L%8-5eJAr>hnF~z(%i&5O&qNs$
zH?Iw-04aqjxn@lS*l1Z3<;+O=yH*8xTQlTWFj3J&EfdpLg@e`yl}uDMqaG1gHc`dI
zg(iqu8)?bel4>TZ3#W#Onr75l*3a5lCk1MosAHnQL|qg0B$qPx?aWZ7(8O$06%G!H
zq<$7;o%KyzY~nE!kDIu}#HA)WndnRnO~gzzG||XJoN8<f5++O&9b1K(3Ehlta9k-F
z0_sc+EEBc~&xCJ6nP@ySc({skOe7h6rU%bn8j|ChNSPp?xKTkwnUywixrqiQ0x3o2
zzR5u`3r-3sJpPXoaz0rXT)|uutxeouqKS#7CayAZwTX<0W+tvQ(cDBRl@C5uj=C+V
zu70>su|@vD65DFQjufbVtwL6Njfrbbv^4Q%kk2NrGjY8%*UAKoJT^UGAK4<W@~tAZ
z+n8u?;ykCV3`ILpmAZ8hen%5yT7~Ycs7MzRT}=!%QQ=C}&BTo+`kLrx;wBSW6Md+5
zE!EvbiHSQ*jJ+?LGx5~y;CA5?^pIpvp*IV?#l)=wnA=OhZ9>_{vy+3*X9vAm`Luw!
z<!1+MG^`)?XYe;Mkn?WhPO15B6BGAj?&4Ig52(PPxxqaq?iD3}t){ka4wySgB!>t+
zSy2r(v8P&&xs+#en2F&gMwl2$wM~pOG0MdK?6|Z(T1q`&;)>bPg2$a26xE0dQW=(g
z(8NO~9ub-G9Gp7pVWG`)C6r+o4onFi<@D7LPp=MHe1eH5Ow5$o9JRLiNfXbQs8Lfr
z#ksypJuS3ljgpBb*wB=C_^gTNOgwL5l8G56o;{kGY+{OuAFHeBCQtOjsdO$AC%0#)
z%o{U<>f19j4iz((BgSe^@660HQF&%CTj(624_v6`njoFWrsqV)ywJoV6DLgkY+|vA
zB_@tC5SdtNVws7LMBC-`EEBJqc+JF06RS*YF|pOeY7=W{b(Pg76KhSZGqJ(MqZQS9
z8q&5*>ZU?AWbDtJXccZW@q&qeDyb1O0$%S{QRAzs%^Z2&{-y=nOl&u?%jDly<3$sD
zgZ!67$sHzkik?fS2QN(vNLe8%_dzey3?>D8guY^exlHbr<fO@w*gg~cO}u5|ZR$BW
zIAG#+6Td%@>H185?I}TSbNB{5#RN6sMgBX)Cf;XHr$!DkGsquuMfe_z%n8W(K=>b;
zAd|^iryGAvA2IQ%iO)=YC8KoE1ovWxDcM31e9rm(z4(x1UDPW4Lik^r*r<iPDDySf
zGu72MB5*`7lcOdF$4z|8nD&`HQCAZxtGg<y@5IJvRNo8ufi_Ue`AH%bZSNNozcN@^
zP!>*_IAx;9ivG*;w29vsY%Nr^aE9GsJU8*5i9a}TbAq!b&e4_x|HbZ13tq1jHOj2N
zIbV!&6&1&pDiM4=CCIZ-#zI9aN?u^0tc83ls;8U<mMSl}*{+b7RqdJ{Fsp)OF<Hq%
zWhqEz6=ANP8BnsCh3djDuu#K7O$)Ux)Ui-YWT?-vC6S>n*%+`<R>C4(*MxPYNTCI4
zRZlQ;DRz;C`WC-duljEa=S>POwh*%rw{VGt0hQE+>w`-zkX~j*6Ttx|Q?sIpNLbJ<
zd=%u9V@M5GG*+f$S(02{Cknqw3yy`Z7P?t*Eu<`5XGPBFS@111vT%h6r!6#Kcjg3v
zwA<~U#+O^5KCGeGLPHB-kiVr>Soy`w2it<i7MfVN+KODesf7${u+W@yw=+ZUZbo6w
z>Glkhyco<|h~!lkn00d<#du5RkewlmU&AS|(9!~<Xw@OX$#ns<uD8(2LTd{*Sm<n_
zi-k58+FIynMNy@lh4vOY2u_X4GS>YuCc}8b7Fj20CuyC19JQ>NBg`V?-)P|`3w^mb
zw~)2a-NNnC-x3Qs3%6Rhqd@hr@Zz@MW-Gb@^%Q*l_6#|^ZehVzAq}9HNUqwJxlM+e
zfWiC@3%%L3$pI_rV?{UR9ko<{sexth=8#&LG$r75r-ebYgS#xuY85hhkI39xDoJez
zSr}~LPKCP^hFBQNEE_v)46`uY!bLXf+ZbVCq=nZk>=PYES$NvQL<{#@7;WJJ3u7!i
zWMRC8?^hR(rOmg_UN|D0sfFXH8*^s{yk-`thb=r}p<E61q=iQ<JZ9l>3qcK46c1x>
zH|EqY*`8r?f`uo9Py8Pr0nz5K2nqVH2%h0ASXgFZxrOH}Ja1vPg*oi3g~=ACTbN<t
zjrQ4_dKOKw@Oib|RH2s^sA&TBG*>g}I9fQdj+!Ol;I2%YSlD52#;dI6vUe61S|FZh
zVLm&R35nU4-}nf~!eR^WZ4QVdccUS-4VTnXOD&MvHPs3WD>-@=c34<tVYL+n!>tz9
z2-qZat%Y?K)?3&h$-nD{l-X$E1xXU;7bsGW#%AGcDdq3j6p+8o!gh;GU-j9x43j%8
zyky}O3wtc=qLsSgZVNBdR#DO*9zItyy2bw@UO9eExR(>OCVZ9sN`_O0WXIo;{jf>6
z-@*a<k%iwZyw0JsaE$d^{5(D0vhb;e&&0akX2&hOFZdk`?{e^Ks>;=KG`tTid}!el
zhKm}iaW(ak#lLe2i9hCO%m`Mk3&|{YLryVOI%wew3tw_B=>GBWkkG?InQZiG#@Lk^
zTTOk%sAb_BO3o?fbyUC+3w>q=TRSyjRb=w6`Yj!Yp3aG=tiGe|Q9~8-Vh4Y+aDrZG
z;gp4+X>1i0Rr<xkUp3V4HP!D&ihs4hks+vGJxAm8H;2jf;Ta3RTR3OoZ<==<^#|nz
z9GVmSDMo0o4u6}OJuA$OYr}sm{7a{{QPakM7V>PAw~=q7jExIyl(WHUTGc4z3a6|c
z4Lh#^)uLq;N3Vj7iZ-g*sBTB<RkBgVj(nlABv-Tv$Q)8XywFBf;V?;uB4zirqs0WZ
zY}B?<&qk4rIyM?r&rzVRjRG69+;G9RV3HO2V4)qw2Lk?UGgp8#+78uoyja7<HZHMo
zr;WR8Tx#Po8&}!5+D6Pq+=gev=et5SbQ?(<4Vr{@EoIn|nb|go6E;i%mQdb_$W(ST
z9dwXRm6T({wb8qJZeJLtY_RWalpd63Pi-`j{$6fJZbE)TJK7^Ouu;q&#lvH_Ww%#T
zjci;YL)X|wc1SR~dX8hr8k*Y3aM)$B(ac6@<Dn*D<KEeV2QpW31RlsV7urJVWbztn
zW#dL0H`!=ugLljuY_ySqz0St<Hd@)>a<sLLJK~Wt#8a#1+S+JmqnnMvXG+>jRwo;s
zZGKNyb+FM<I8-JoQd@PgBlBYyh`X}p+R-wYD<v9I)<$<bx`+0*QDP%!;}#pY+TabY
zhmD@1292L1cC+9EZ$~<8Y8&>lak~wI+l21jmLa}FFaaH{kBz=I8nz1iah%<dBi7%>
zKWjo>12`!)6~Wy$?y>o)0<5xeuZ@8=CfS&5<38Ghjj=Yyv4fli8^amuZ49NVma5mG
z$uN%0>zN~~!hbFgI|kuM8~ZnB9<VWnR@b4)D53Y;7%hODCe^}qZ-qC%o++CyVUY(p
zDN@z5LdV;9+{OgK4-0)n=%Y3s6R@dzj_p1nnBW=C;Fj=78&7dy<Lcte!>4Ubl-y6Y
z1{65nJ|un4#`8A1YWdui^Lnd#Zi<bmHfGzHV`G|)>2?&fD^yWgL(QOTa2#&S63?XN
z-xC2oTW*vJ=h~QOW08%;v^TawkFK6$j~3ea)>3Tf2*cf+V&Ww>mfBcOH;F3>u;XMd
zqcN+HV1*5iz!QcdU2S8HjSV(7(%3FkYi+C-K)lYz1KTnLU0P)eYvf+woZ8sNp_m>_
zY8Gy$q1IAcsKX^C17`(WZJarhVH9mKC`*Cu?8WKEEW6XjON=23)fINx*lpvZt5g|<
zmu<Xa<5wFeZS1kJ*T$!eMK)fw@tTcyIUqLnaW-wdVdG8Oz<)(m<^>0Ayl&(3A;Akv
zf^>}>p8-x>6uiZetQx+<kzW+N%~-TNV%|P3Q*C+i`!+tX@d+c?ir_;wZR2CXL!7Yq
zyW-Q!1JXL3v#S;c-*gD`R}>#)<u<;tafBYEg@<f>VdG01hwW(Dz?(Ath2i}x8(-Vt
zU1N5&C{DJk5#4Q%(r0b_XyYdiW({?mlVamL8@zpAyE^=yF{-wro6`k;5X?I=IVafD
zYU*bjzp&RmvM<jL`qYR52&*Okl#SEuen$Om<2R15xZYWMTrB+E=6?`@JE=cx{AuHc
zc(_A_Cu=G0m&xpWwD_C|pFC4S-B`mvHvZ*g(SEK{pY9Cz4GZ#ARP!UNi#a$KD3nzw
z$7xy-lvk*zP)YIqUR3zKaRn6(?^nx;tL(^BR;Z$|t_-RwG~1E6P~n&US<cI$<pGng
zbj<!XG|OF24TWwBH!9RrsHIR_p^k#5;42jHwF?DJL02eLn6NRpSm6?ddJ08~|Kc5S
zE}}B&k|(ZG#JuXW)RvIoQU&_LWeQDK7SqiKv=0el3ULKG8gZ9Z#S7LI8&XM9A)#O@
zkYfq8g&umHAArQas{-=*(8*D7rCPR_Qds_Uw)6UcG_B|?xK81Eh07HhD6~*`uWDGV
z&`_bVLKB5X3g=b_HFR}_iX4zCF}5(-lnq&`nNYrLa_5}l&sRs$AXK<gn9UW>$0LUw
z*fAX0D|?l~)xu}H*C<@8&~JB!KHE~^p&B_}thSXxYlTkI&<zT06xu1YSGeKs>|3{G
z*_XDgVO?>hxMDnHEb1VV9fc;hWT+lrc<Ca^t_m--3)dgWuq^p}K68`8wyV^w90wIW
z^XaZoqL34Ov(O$wnblKaL@Xq@g#xQXnpuYe)l1<vh1(VGQ25<e{S<mD^pQGe)yUC!
z`qEnXKz>0`_n}PFVPSs}qvQaE=Z+P(O{=>V?ok+(#QjO!t1wWZOcEC)ai78<g;ffx
z6$W$huP{;J8HJ%z;R6a|6ov_A{lf)}5IT~zspvud{R*Qg(?3gr^)+&&V-?0JJgLxp
zUhp7CnAXDHEeyshyip_9c0us4!kM+f(Hgl&6dqL|=P`xH75=M{<AZu8cPuX^<x$-e
zbdbiXpl0qVg_8?|a8d9yZMbFB*0b!I!hBAORQ|jIOHC1vn?zrDFf*ABvb^|#ekD^C
zrYTGp0m{q~Fhl4}p|ga}rcVuxn&vf^u2eHOPx$}M3l>VX^yOs&7AY()<t!2Xmx@*t
zSYFCsp|G+PcWYC)Mq#bOVTCW~-3sd!Ugu~iY*5(9Rup#9W)wED$i*dF6*h~@3|$$t
zt(l`sZjs~-nquxYh3z6n{37RK75}=e<Ru1wg;(h{uVr>K_^ar~v{xZn7~PxB`Qa-H
zb~Cj{Vb(oaCXe;VR;m}irm#<8KLf>@fLHIDIno1?r1ie3@Rq_y3Lh)Ht?-V*2MWCX
zz02WU6TBxuz+V~AE8iD<Y*iFYJ`|a;HFIBY&U_+HcTgyu@l%D*1Q#VD-~7Cke@Fm5
z{Y!<f6n<vVQ}|lp8wSiTi+@x&qHxjD@L4@Prf^i@&%%=FHFLK;m^rTa0$BL1(C-w!
z=LU9J@Pj1x*UW9GnPYDL;@~HRgU!?lG1oWyW`7mK_)FoefRhTR6iy5NP3Re+&#eu9
z=hVEGp%wkXMrlQd>@)9#OrB%tUL5dX>tBVx75?G)ED64-nWMlTHFN(l2n-GKk`d+A
zvR}4r66KO;o<xfz$|sSZgi0crM1>?OCQ+C~y(B6nLFa9;BB+%_<s_;kabXf4E(xn8
zqnk+8B&-#|`-e-a*UB+jJ&7SFOKK$X$hFy;NmM^wLMF@BPNEK5SrHTntt*sCt5)vW
z9hsse;z<zjQ!W<?sGr0oNn9%U;v||5%Xa>~<T6Rdgi^Rwhmf>It(=yGo`g}#H<L&R
zUbZNpfF;;k9@qldYbOaeiDt<t^re#Ul4v4*@smg=(J+ZdqF#_hgCvTRcxriYd6NGj
zU&2Y`@Up6JJ7wAW70Jl88z(_uW>v)7<^{w}llXpKkfBy`e`G9TZkWWC(qdKy>Z&BJ
zPU4PabicSJiEESSkVMBMS|)K_5^a-cm&El+3|<%BAheZGCR-=*Mr}pVCW#SK11`&l
z)XI_5p7NQn-h_NEPPl;Sltkwwa!K?^MjqEi=uJYqCecm6jkE+yF}LLFV$y69-IFMh
ztbTTMQzNry5;rGtTN1Cg3whm=#H~__-aR^umXy6Dd3;51donu8p$vP}JBdC?^i854
z)n=Vv7q1(X?VrRw4Dv|~Na9Xf*Wlo;B<R|ACoynKNY^7~*?|oH6qr*?U*-yyH$mQf
z2PLChFq1=)7@EX`TQURxDjJr=aNan2W=F^{{;?x7bVD#QiH-MU8CynEpU>>wNxaMn
z;`AjkHi>abY^6Ra^<WYYC9yb(slFPYM41iYGc=DR9;WFg@n{l{ao&Z`tj7gRNTRH-
zn0!K#PnPE9r6cCkNlYx|@CNss;HgPWOX7LKlaiR6#OJP>l0?Dn*_mEc>dni-=}F8;
zVqTJaaLg3Rxk6`Ae*teS4d*1$N#u8R$g)%eUoDU<;zjJyo7si5oWmiLyskb~vLuP6
zNi0iZc@i7gYhSHMVr4SAN3Tj^p;CSRD0ysSm>3$YPGXJl*Cw$}vKFuB3RCe~FZ}Tf
zvn;+*DtRG^O-XDP+-7M={uWV;U|SN~lh~C~FD9{53bK_Q?C-tV?@pJzl*H4H+9krQ
z`M(k2D@p80qNamd4)!MTY7&1W@n;gRC9#jCk~oya{v-}0@h+#H=9k2hYT<ySdW-g-
z#3Dz%DXr`r8cwK{BmZs2u@}O3BI{CYnytLgFqOndNqiuZBcIAY->;98_#}x>>Gf6e
z&T~FX;-JVd`B^F|JHJ-$a1vi6@naG{CGlkv-)P~{B#sIAO6b?re_8lV5=SK2qFzXu
z<AMpkr(Y!TgQvceUQ;D9dHo<7p2sJWI4$x&C-F-XzY0Dnl&@(~=9G*ZL8XD&--Lfg
z=<i9)>X9Y?sqrO$C2^J!+d)MK=aTrFA>D}{bN#~^-w<5jMD$<5|0R*<pp0<%kb%!b
zn8l4lSqJY`R>8XPGB@nGGc4~Q-@)W<nF9ri&yl#Rs^mmFuWAk|JE-DBn}Q1+RCV}w
z?%AeGf*S{i^H&$|sFkbkpoRl(thfs5J~!H_)pk(Ff$JdUpuj<02c`p7Tj-#kgSf+=
zZK@(C`g~V?2NyfIeq}J~?kry(xX1x1-&pvdR&Ih9UgF?V2bVcGQ7gBGD}MoHYDf6y
z)q%zrPE1u)JEuD^9Qd_!yb=P+TFP?x05-H8C<jR@Gd18t568jZjlxDo$rta0-0FH1
zb`VhJjc{#3)h-M_GE~}$zNK<~?cC)YSU+swpjYkOu-ZA&Mh>oU@T`aDJT!LD#6j~E
zTBOj_LB_$gE?T;1<{)(NF2~lvl@xIBsDsBGv~X~hgS#Bu?ciz$*EqP@!7VK1prwO0
z4%(8rEx67>QIoKh6P@>6@1Xafpl>E5r?v2J5IW?=44(zHbI{d6HwW!Gwo{^m%MK2n
zsh#WSpp%2n4!Q`R&)LrB<_!;Tba0b{O{<D?4zir<HO1YjZT;xowxz4X5(lppM;qSN
zhl?rG!$D6GUh!_o<mc0aTOIW0+|^LM9NgyMcACfZfL9*}cL?t7fF~n-CPrpo;q)t&
z;ko>azm*K25f+AbI(T?%u&j3O9tZb2817&M2ew%_(7_M~Lmk}bV332s4vsbmd0v0y
zuae!hbHqFo9LBlcmD%!Yrc2|n&*9>c4n{c`N39&(?_e~?&A}K4wHt;-^RnCs|I|G@
z*1;#QWS+V(?6NDQ8E{Mfkc08m!9n4{;?Ha6S_}z3?G_0?LS_|3=ACQ8#~n;?FvG!2
z2TwS7lJoB1IS%ZNk>pbjBO4}i@UPGE8QL=(nYCfLTeHIl2h{U<+Ma{MlY?m-WCv3m
za7d@p9Y$pdNI9pw&y*1JvE+2REl*Tm$;_gQIaozu2Xh?E<!HQ^St@j%gM|XfneSjh
zDLz>{N6sQiE_Sd)!2A(eGMAOgEElkXBQJmx#N0Iw);f5_!5#<e9ISV+)xkCg8)*Eq
zf)_aN4mJw5x@O7Ywb{WI;SjH%67aN?V7qX3mhxYuee$^k?Z1jTU+N{v+I3#Q!ONwR
zSM1H~b#QW8u+PDM0k6{h1dz!}4mfz-!J7{Hy_$K0b2>BNsqVB*A;F`=!?%S0wonSZ
zBf#07d7l>O;6Dd>E<SYd5rdV3-yM8R8*uQmgI^qc>fkd6M`&FR4$?jyeC6P4CwjDU
zh`HUkVhM>4JNQDF#9s=iRwviGVVJ0sqrZH^P*z!W*^@oy;JAYy9Q^3uTe1J|g?=ZL
zqs;?8((f-0f1-oe$rX&so}kT#>XtguL!?o4a=$v!lcJL}l{&d&qcfemWluRc?SMwY
zCp<jy{EaWy4T%6>>iB~Z%)y#Exj$>GKOOw#;4FRTY-276&(V)&M3YNuUsm#u1JZwm
zPM8~%adCkQ$A#;ntc!9k3S886QQk$qi<&OzO%+^JbWz=n4m~Tm_$(P#6-rRqMU_%~
zp$pnMnbk@;&BkPExY5J#<?900Q_BS(3)dD}N9b*xv*Z-IsOQ3TVYw)B0T-9Kh`G4P
z#pX=-;NHxoF6s-u*u^Do<TcwzWG@(*W$x0NiZ(;5i@VrgC#SiQcksPj-G$*|dXtbt
zM1DeY85}yll(AhTUGVv&a>1lNB1_5{WGG0v@EEIIgf6Ciob_D<E-ojtvP!!+QYXhq
z*uVw97TMTE6Bm5_prMN^T>Q8<(@2u!aQdjy1<k^yZgh%~agjG9OYmLSECC1qN*B#t
zwCS9^+KryWw{UTlfV_enlN>J6YlPGKrtEKXgX>&e@8U}rU%6=IqP2@1CE2+yZeS%Y
z9(D1Ui?%M>xwyr}tu9YJ(80yElY$Z#9bItn8A)z*(TV+a(Z$8FjOyy5n+taN#$B0D
zW(94p%QBV{Q1T{rc}9>G+FfXLYmf?AXAc)W1>aoCdH1?(FBiAD7)Aqdal4B<T-@d2
zZkNybfr8u@`!aV5=p(eRi+%$73#GsS7paCJ0gYt(ec5|l+{<}%vFoJ_U3;L5`&`Vr
zP|>=W<l)yKNe<>5Z3@Y!*ieqio(#bV7bD&1korLvqo~I8V2q2gF76jR+Qo>%@BzWJ
zBIb^BqoBl?TwIVNxaIOD54jl6fi1{AOsyJ(JokJ=lH}0AA9pdq#UvM#UEEoad&0#t
zE}j+qq|m2aJS~8^69vRx$~;Hk>6V>4EPURLZj@86&u)A>Iun`VVk*@eo0-jVzBrub
zVg_fhVRSSzovI!wZaFz%awhvLeBKV2oINHphl`3XS?WB`#e5eFTr70)A_u|6A{UEY
ztaP!;#S%AqQ(_ryfCfJ#Sn6Wqd&Sh}r|ZKNbnv|yzHC;oKD@tSxZ1@U7h6TWwJz4V
zc)^YCdh1<mkRb5fx^Sa#dfr(0L_x0C)X2_xZK7iepLh$6YDlC!`?$@;cBzecQloIE
zi<exy<>GBltBc((e!e1n!^O)kUZLjOg4bN^VRClx>yYRUPO#U-tHL4X;R0p$iR6Bv
z2VA@^fP98Wy49O*6dU=H+dG`Ws_FxVdI9eWeUA>sI8!-#TZ!wCk6e80;-Jed7&ro-
zxL8_{quCRG%J3yjo?9`=$b5*&QQ0qq9;T7Ml3|ip-C4ocF1~S5IfW`I9C2}!qnd(W
zl0D|)xQqYj`zd_u;yV{-T>S3hdm5*UUtOGZQK^Oc(Zw$Uh<}n{Ji(C>4#$B^UYxJT
z8mm*Zx*5T5E>6?m8%OWDkaDPLlYhAQ)5Tvd&brZZTCc9S*x)(fIZ2Z9kAT13X!XeC
zzm!}R65M}D30IP3QYe>-%<_U1%BG^1aM&XGeC3HRz3^+eFBjxGR#6pFNZYES&`K%%
z&^lYi4jG6pOra{fOnwU0QmCFnJOwR<8Y$FF;o=l}R93Z8;9Zz2wE8L3PN9w@3xr;j
zLfsS!1+#+`tCvENBq5Y%&}0s68<O%YY5Llb6<(6UrBXBTWhul;G4H2(3I+?NBJ1Vb
zL5UPPP7hQndQ-?0YNcQc_^cpDX2Yr~nZmCHIr<ulxGAKhtS7X7rD!!9q;NUc^VG9d
zwm~X-U9DjXjZzqUwsCO^73${R*&JSx;`bdQ<8P8eV=2o+UbAlQ>DEoS6wIX1EQK(I
zzh@U;nZhfBgH9u&6(a#3o?n&1)zl${lPO%2!nG+ZNMT_LEmOEIg@J4_h3iw%6O0>D
zXp=&#6k1D?OJBw@*3&kHb}8JNLa!9sr_dpVYzp1k_Y^v%&^3i_DV%K(c21$vb=l2s
zNZcibf7@pXdN&AfOhso^H>IM}E`s(|qn8j$QsDYO$FWUCcZxGp1HQ)7GliRZO^%*5
zk@C7lk~EduQn)>ZyHdD2g*#H<t4DoP=$At86#AsV;v7B3I`)@0n*J%AZkfF^g#jrr
z$%}7#%xaabx~iDF&U@IqF`0W)_+UhqnjG92g{(m-3{K(M6rM|AND4z~v?)B4!Z21+
zN%77*I)&kanH(WtWD287Irj@_J~uctCi6fFV>o>&jN_P33mBki^Xx3~c+Ooa+B!Xv
z!XqhMHZx%Sc|3(j1vB}W04hJaK{$aehKgbNNh$J_(5Hn?OrihvS=RH6B&TxypTZ>e
zD}_0!Xkjxsg{dh_OJRy62izE~XQrnxgUlLg7Uv>`7wDu7!?12{!0E=syt>!TRU46=
zo5DQWQlrqUA5!`GDZJev<V6>wkt|B#pqR(v6qaxjQ&^Vb(-`bdVR;HGQg|^HS@p^k
zR;93kQ=h_W;j9zNtTh7GrlJ)llj}?Qv@|APpu)o0RLbW&f#h$I<kl3n3D{nm%UdUN
zccidWI4=q1Qi{x%=?f|B=MXVsjLGZ~Z+$g|y{YJR%~qSTd{y!_VbY8D2`Jkw`+5p*
z&^A)|ko~Ht-b~>=0dEQAyu6*lJA&U8dg#6^#oiZ8z;;PLqT!WtK2Bj!-5i;p3g@#_
zv?}l~4I|+c4yAB7g)dV0MdIX_DSSm|XAESt6wa{}j;HXAU<T47%w1i4l%*y|FB^0E
zzD?mfaRKgAnB?t@Bl%+rKc(=qn8yh!z$eBRhhA~0S5i;c&27CdatE#%Si>ngO9~|(
zavpwTJu<mhdib4QmO_0G7kl_Kg}+iL?;+odPNUB9zB4rVFNJdqP>t2!LjMu^FGC7n
zGia>xI%o4d@CkMq4;OeS>qQT@d7@O#!^*lj;wJ}WFIgN^@W3CuT<D>yhl+wL2_>_#
zhbkW4sGB3^uL!GosP3VThll3{H9XYxP|HJY58u?y^=cFHk@z+HG6Tzi$HYAbWclp9
zz(ZXRg(A-)^#q*ln`Lg1V19_5{EIwjEfm2e9xnAz?4hBD%RIz9*dCOJI0ZbkToafc
z-dP;zUUV2?c=)SsZgsoptGEf_6#w0LUE4y7Diub@kx37Z2j4^5gX>|@YnhbLB|9_3
zygU#5Z3sc&Vcf8wfrs(CGnaed4~v+*r%g~{T!!a6&n*ZVd1&fI=ZshI5s(-C@T7^9
zWz)l2C?=Ve5rJkNLILFPu~>5tEj(Q1;c6NDZXT}jaIJ^-9y+i`9<K9ngG^}cg~9b6
z5{rUXRJbtLx-duFS~zT_jfb`#`YaCGdC|$^E&a2^Jf7&t!C4Y?@vwDSz=O_C9y)v2
zvoKiQA)GcWTXk5rD-~D~om1TCML#&Y$%_uNvL3p7xV<pPB0LfuU6||PMRy-wBRur<
zaI=S7JlyKxUJpGMMQ5PBJoNR@&%<pj=;8Q+;125J;oP`PmnA`O4-1>AaxJqQu4YeU
z`^$9PCF3x_!<`-`73O$2#a9c~7Uu5uaF2)mg*kSF?<cf*zj&aB`#cQtFxbN|FFGb;
zqeDCl_3-IynHlqgp9W+JcrePo4ELggn3wxyM|v3L;eNWz>|mUS2R)1y{D4q0$9Nbk
zm~SsI`H&QR)Wc&QKV}+^r|o%o#KT*2vphVi{b1&3VeWAcBgbVX(#)0y6FfZO;Yn)S
zCOEOYxZSwS$)&+l9-bBsnLIw`)I3AA&y-xu-+!^29+GJ|X-xJo#Y1Z!H~5(9VH$ne
z!yg`|dzj&2uZLGX%=Ds{D;9fL;$arOZ&-G=hdCbRdYDH;^}t5SobO=)hu6cIlhOIw
zso^E;{+^u~o=@@7Yx|bjr5=`f*zVy)56eBQ@UYRt#0ud`#)`$kY7c8Xtdbew_|rC6
z$yyd!6m0OYPWb$t+Ij)00om>HdtnxTK`PlKbhFScG&2F)gz}J%VtfN<hlgD<w)B*p
z;?Xb3Fup%D*nNJogi`HSXl7NzJzn%a36rmR*yrJ>$IrrIzlQ@JzVxCq*4G(xJbdKg
zV`{|-q9J*BPc(d+QzNzgTbMi8GW-0{?D@mE_dR^z;X_87dO6nY*2}SVPAKj36I$%J
z%;yX&i-S)+e8!Pn8*uavdjC5crAmi99QN=9&3i%c>zT$hIkhf&-Q_FM=WC(gcsRm<
z_E3f)luGhU@HlJmuy$?0srk;s_a1)raMI&JK=htK{rSPq9)9%j6P<lUaqeh_vEl^X
zzh3U06~Qm``f(Ws%snSdPD$5(lPFZXYvE~H^-b9x^>SxCv>O(wQGH$TC&L}XqmRpc
zoTc9}_WIy}|Lx%)#%&*!eEiFK>7Fg?gFof?&qJP%GJbTc;xq6I{AfABC;xSB%5ou8
z&PRD4`65YSZX8G}Nb+>Eu(A(^qiQ}z9L-emaiNdde8r+(uBwlb`!amy|H#;o@u#|v
z8a`_J=+~u$uY2(bfM*1?ebn($AiBYiUIVM^qtK6TN%j0FZWsC3J}^sR;+Aa+FY-~}
z$HhLz+)#Ll55A`~qh9X1%^3ogjroZCXe#<>K6D>RAC8aPn}voCQ$RwfHzjD=IJ5-Y
zLMfvJocOK8l^QPhp*>QP^5OZ>Yazamz>i*qB2EiuUA^3eowCzAWgGY?_R-KsBOgtq
z7h~oJSNNb}?anrCOl{`}yhb-yoC4~Z@zKmj=;KPt_|XB%>*F%beO%*5x2+aFu40AX
z6<_T~!I@s)=D}zfuVt<%#&M$>|1Qd2FKx9FCf~*4aZDQ@ZGEitvC8My717?u18m(#
z2Ok|d@;>_e=;Wibk2^>!sxCgd`sm@Kr;lzvZuC*&gYU@Q<Rj~&yWj~<c*B+q)!08I
z8|##1Zs)rTa~%A!;T?TT{=TH>W*@zL+~(sJAGb;o4ht22t6q-hW&9~6i`>rsE(!*=
z&-V7gr|x}x{=IhiXK~oq=YP+J$Lr+=_|XyMARmMM=x++{^l_JuyM5f_WBrzZSpx;!
z>qlpl<dk*QeLkO3stpfkhxiyu^P|1_(HY+`A3O#fE|N{{utQS4lUAc7dB2Zx14@Q&
zh|V`h3udy<@^GxrlTgg?G1JF`J|6Nh$;V_L<9$5r;|U*6iZwpM8QGC}Os4EnF+Z*W
z$a&ny1j!<1$D4M_KIP+S9}~p}2AwWp(0InjvpzV{97fu}bK)<I$<NcM)<waYeVoFY
zo2zLu6jSMR$>_k5$Gg*gq&I{Y`DzxOizBl&Sn6YrkGbrW&!@`j7FW&lc?7BE`)CoU
zxf?^`1vCR!5wMa)!e8uTiI0Ek<#>_LdY1WEE)}j2O3uXnnbkhl_&Dw3Hy>+#tn=}j
zk9{0}8H7zfHjBw^5O>(<;|2O`QI7pWHoL{gRv){4yzFC}h%q?qq!;^m(Z>!MI^J1m
z33M(x^-Df>F=%v(e4OEwF@!H(z9I$p`q2-%_xSilUTEQh<W*K)HDsy%%<}Ptk1si-
zKHl*0A$@@^zbtsuj~1@)`QXXpTb#SsGH?5Mhe|F9-lbOkvR#K~A6yz7UK_mc;{zYF
z76)`;zbN;yk57CYq=r5|6*FdSpZWNCV3u8DG;ULrJ0vP`J#biD@8KoE9rL3&_LYyX
z89aUb;Nu$(a{rQJK8_1GBJ`*awn#qf{MN^JQk+qXPPA`BFdrp9`uNGmuRc!tIKf%2
z8ve|Vi&0Tw{u-S(L3X@BA_|^tk=H3dI%ZusG&n<p@liF6YH9r8<4>R8gbgdD@fU+X
z<Ghdm#17BNsQ%61vpJv(|HE)slw<IT7XN9KNuxp<Kg<s<NJsI!d>Z*_zH%Aia_J~W
z5ip?Tb&uX;V>DQ^rnq7{(vw-7%F5};e+^Gn5pW^Px~fBuZ1ps1q;XLi_0y=CMy)go
z)6sc-?KD1pF+=%+H0lVx-cjVd<fyvo$j9G5T~aTNqBQQVlE*Btt<P*8$FmiB*~MwZ
z)6mkmB#lecxJ>k{{cadbgST3~#Cv~H?%0MvPs2#VPD7=UNW)CSN@LQbLM|`a1sdD-
z6~(;2(BxQTbT-TGaJ1btQXG%~7X<Lq@Y9%@#<VojX#}Fi=rk@*qd^+|)6qe2aT*QN
z=$6KfX*5dX3hIzX>ogjt(Iky9jVse=nvPDQDcmfLj9?}w7v<jc!>I|?JdGA<T$hes
zjpKDy8rP=LGL3TwGFPW@jqqOz)%o0>^~0<l;p>HeKKF(++N9ArjdI(<wn94yZ6~yS
z8mISXm{oOmL_4O@DUIbtxrbK-Om-2Ou0r{;4LQ?-@TN3!Y4l*ngD@+!yU-G$KfIdh
zna0g&+@8iAX|SGK(zrE^SN3NP>8f7OY_BwKOM@>0-D{}x%-)n-6|&cT(s=5&?2C70
ziTkF}Pey}-z~q25?o8t@PI?+c(-@Y<J!xFMKXac@f_nuF6w1LQXOQ5*X$%q2vuBn}
zUc)6hGK~=esK$Bzs5I^u&Wc@;*aK;dNn>mp<ET{{Pp9!<8V|8YX*`mSezL@OjmA^+
zwb3!t7dyg7(|Al2ev-zSP>-h(y^}0>Pf?C913Zz&iLK$_<<ZN%oZQoznwZ9fb;Xm?
zcqWZ!(|9h8Z;EoyOC{wr#pkF`4+;2d`pHyaP4IN6rqFYXa(rKRdKxp*ct4E~(wLdX
ztTgtev7Z*0#+)=Zr?DlCxoOO!9cpT08uQawz%Hy0meGR*5HA+6h^D)?n8_uQT&}C7
z3>WRP<Sb8PMH(xGzglR6*4b48)^E<N5wJFmb>}&0Y!L96rdXC&HRN89zHFjL9LNmS
z)ebM*n#Q&?_6UFWs^aZw?4qZn@gkL9RlGy!&NN<1V{NZ2ISUQN-<P~hkG?80gIC0@
zu0`&&u4u8#R|k93{0}|#Y8tHkHTu+xnVXS2kjCq2yqgB!@#Z+ck;dD!b4@kj$V=02
zMbjGo8iemi@$J8t&}QDFGp>&0`BL<UX?&E%p)?Ms@i7g4OZYk6+*Y43BBk+JI(o@`
z1ab${IJiGU%q&t?LhwZzU#9UrV`ds(F|4f#juP;X3kC;Yi;sN68AtAj&|V33OmdG4
z{Z{CAY4G2o-W?JBIm3@>{+)|DoyKoz{6rH<<7eTJc~ZbHY5ZEsS%%yx!JJbHoMFgK
z<8SHvA8Gta`=R@+3^wy`Pc*e1xnE<7$+N;d$H4A~O#VNn&I3$p;(z0J$8mI|!@l&Q
zcq=vAlWevh(mRNE(oyM6MCqUuu>(qx-lTV>N)ZGLO$4PV9i&Q;j==xB?=t-U&y(kU
zKJ(6ZCX>lzHk(bdj~Flg@VF+P)WomS+ZF9eTD$`fm$zrrkgB1UhL<&D*N~>csl{jD
z92#<Jcu7N~v6V|hZVkmW6xZZ`DC~JOJg1?6hP+JXql%xO5ctlNJzG#i5iLHY6w>1J
zp)7@^TEgvsy{Lw<4>I%3&`M~qX{gK?X%94%)=)-6Nj6WMQUtllu&jo18eY)iJt=;9
z4V5%JFaH>zp`y&*%QP`%Syr#rnR=}R#`TEnqD|ISd7hQ^r>mCOWlNW6(xfUHs%oev
z#WgrI$l+N-vPx!YTKul0nq2k$zO61-waS;w@>Gb=>PE>dmnJV}vAZ>RSfN)#ScAMY
z!>2)K5krHi!LP+{t&}GM<ZUN1MOYdd*J&k7fDojHG_)w0C1ylJRQhDK7SrP6U!M2L
z&~SX2)^evQT3bUM4MQ{x)lgSn{-&XwhW47gL;`P>%xa-wQOT?Z(lZ(wNwpf9X=vF*
zYoa06wpCMdc3Wmre{J}q%#TWD2{hMmHm}vaiPloXD;ip9cvV9i4NGdKU2CFcYRHl;
zl7~e4Yg<ZYy{6$-)RLt&O9`~qAYpeitlvv!b<iO7^w7{#Lq`prG`ud|BBq8*mD1!d
z9Xf01B0DahCAIxiGAnzjcmpKaRYNz~`=zpkwNhEx`dM{KW%bg~Tf^HL`fKQ;Ve1C-
zE!omiS<9wteKj2TJpS^u-`dKr<rqEG%q?eAE46ntysKe=7XL55<7KUZ8kR+^K^g{Y
zm@?E7N5Ujns(PnX)-VmjHH_CVL3Xi*_cVN{;Ui7{McsN|HosKX7!4yejN+>09{@*d
zD7?k`v{crEyw(RA<S8v##uDTzv3#xmScZ-4GA(}TSbibOvDy4g!{-{tiJmnjDK}t<
z#uxe7PQ#ZP<in!hQf*@V=)hDhejoK@E&d`Jxw1D!!^zI^vlQX4q|@fcpPQJ*7&#}D
zQ_7hdX30^e;fRLW(rgWzHEhu^SHnCFOJ&<N%-8To3A-$dq)%j!^v@=|K*K`io37Nw
z^q0`_O}DL?<XNs^1(O>zNOC24orYB!R%>Y8Kie8D{zAXC8optc#C)savMW<6zcR@q
zNrCmu@;Kt=Mh%;o{Em95guQ;1)U6t}Y4}mYPa3|bFOfeGwrld@h^H-YblBRdVHcB)
z`)AvJKUKnh*6@pl-=sIB4^`wo4SO`~Rh#+a%=otKSGm6u4p2|@jki$Ra7e@N;&3zD
zcC(2oMFRb^9o2A54j%`aIPj;2zhstkp!cct;~GxLv8>^O>>U}Or_xVpI4y%@Mw0M=
z8|i0gp4D*ue)`ed>E|?@*RcLn`qiYQarct1-ATVF$AX3j47;r1iiSJl+)uu$VbGQ2
z>l$uo`0P~rKXO>H;Ft|Asrjai>Kp0ew||uUuN;FKwwKDfaXWp(gY?^Sfb=OYa96`U
z7Fp0kyDvx6!}v<;-bjC_;Xe(JG(6Uj&4E-0B>0K6uyL9+tj3M>BnOgdil5?mT3dE*
z@18lXOG7kiK$-(N=;Wm4av-+@dB_cKr%OOyaz1K)ssxB%z=47e6mp=j1AYfA2Z}gQ
z)PWif)O6tbnpVXec)@|n4itBwgabAS-smdnKq&`6mgLxXY^5C-a4Wu|GWU`N$~aJ#
zj&L~#%9ATlD^e?|+~)}es;0i^K)M62o9WfqFuNnZUtV%x^u*#)Z51YaZERIlL3M(}
zY`UASIpA=>!-7uwZU?4*ndYK%EG0?ytW+|sOL4CQJ_mIAh9kZ!%O3RQm~Au3k{mxV
zE#N@VftML0r9uuw9EdU*cHqKkm%KDcB4g6>8|k$iFt%D5(tFvGBw6-Gy5!b&ppFA|
z9jNC(eFqvyZ`??4_9$5b%HK(C=s?euq|!Iz1EvxAP)%Fj+bK;QXy%B&&GiEZnmf?K
zfo=|Tcc7&MuQ<@bfsPKea^O`5+BxtW5421NUUQ(e16hvv@z`aO=iy7KZKT1IJi={h
z7Wms&d9o+<icbRC(<#|MTPMPs4s<5G?tsh;Z#a<VOOr6C&ECZU(XO)9IpdR(uxJly
ztpo4MhC9$pvKaFYWBNGIkI9NQdtV3MazH?ei^}pgp}(qAoV91O4Rm0T1EXXYJ22RR
zAr6dWW5yk_hB`3Zfe|vmZ1!Q)<X+i?KU$dfo&$mA*87YUr*}_}Xj0v@F<iwz4Q$d>
zsr<+p-&hv>kX`zb16Nby|8XEM-v3ngwF5_n;^<I(?!Y+d<Yws64C5V`Ap7@tdgUhg
zLQ2W8V4|pri4IJ1Ais|1bWC<&iUad}nD4_^GR7p!hsi!nb6~myYaIB-ff<hY^gGu9
z`CIUr4oqul&0-s7J21xqvv~XkvyINC54r4{=fHdizII@NbV4U>i?8@X2dZ38Unzqp
zQxjO^z+yT}sNyUoEOTJFa#qL~c$g|#t5|9^RsMnf$gA474y<*cs}tRvSSQDYj8!L0
zCpI{+(SdwU<afsZu6L6ITO8Qxz;_O8c3{^6^LVMO&|*{m#&??o-#hR?=7;QdS++Z{
z+krhy?x6nQz)r$074swECkK8e{G$AmwQW6@nR^}hUG^Q#eGcp={HkIO5PqW`q#mL^
zD3f+rc9{bg9k@j2r~`jFaGZQhJ_QJ^QnE`UPml%95>8T2QBON?hVc7wTVjjOIdGoN
z-_#4#L_L?u|2S}saD{r6y5(`I6u(Zs?Z6F!I5!>mSMe>vjI*{o%DL;nJ;nD4QqMyN
z{&V0Fli8i|ett}Tq9T)=NTx4YDTHiJq$=m1Q?@j64r)$nE^2P7l*&WMOFjE2^*KUi
zCth@-0J$Kw5LMy}J5j`mqD~Z3P8mXRY6&N7PJmp}iPD5pR4IEukoo(_;sRxzDCb0Z
z`jw~^R7^#}`E&7I@I3hiClWQJJ7IT1bHd@oOHNdAqPi0`7}K|`e!o;!RdO{a{+t&d
zpXc4WY>_}sr~D<lKEIaD>4eJ(-HAC%Ot%wfGi)9wyiU9m$(;FByok?<=SycT&&V7x
z#eA-GR^jCAWvge3?`O>~J7E#T2@rzRkP~4-gc_yBs1lh$s70OdD7Cf|b)2Z{L_H_k
zI?>LF`c5=(BFl-_oM`C8xJRk4IMK?9Mo!#5Z)@zte{Q`AwJEh3wK=r~wIx-KR*8Jo
ziA%H1OeboU&Jrl{B(-hntUZOTfu*xrJJE&*wX`Znw(NuF#y7dW6CIp5Fxh<5iH=Tm
za$?6a^9?6LUz<B?+oXoqooGGXoVF+)eEd^eXK7nX_Q}i5E>4K1%{99_(L*}c1Gfh~
zo#^Gnhc0~NLT@MfIFZ|hJTCNg;w>k(Iq^OFp`Q~UJMjtmZEAnn3r@W2!~iD-Ix&W(
ztZ|SN!<-n-<X|U;D1WH*`H82;=?EuAD*rtv-dB9IOq$d%ipkMVB$6Mf+_BP5#UBy6
z@xcGoiK$LZqw^W{bLu!J#yc^=i7%LxnkPB&C3&K97O;lNPE4Wm6?LWzB+ii2nOx$;
z45z$F8?%`FnmU^*VRHy`sq>tePe`%igK&Y0S?I(f@?z?hlkt97N?zu~awk?ev69K}
zsH>d#)`_*`)lRG-NRe*{Ggp}FoLEoZDDyvI=c%WCD|=j)P0HL%*h1Y(m3j&mwQX1Y
zuZ$ljesE%^a{h8+mlHoa@skrjJMjnoU!2%Y_|1tug#9XhuM_(euj3y4RmLZs#<8cZ
zI>_W9>hDf`ml5|5GkJu1lzNORS$`6Sp2|G##0m0ACoU3BIdPhB#)<O;i9hSaImOG_
zhQFD-Act*I{Bz`z6PM{+apD@`s*3-Iu<p3+x^iwfaZ_>ilbN^VxMuPW^)dCX6Zcfi
zeW%>-_w-ZsA>lvjBWnMmmNejr6G<*4yW(Lf)HG@~YN`v_36gu`ge`~SoG#>2eC(Vp
zuM7EH7)~d@3(vXG&V}|a6mX%S3opA+n^}dZHAGz~;zCguin&nUg$neGQ%k#0f?#t2
zgp$-!F35+wG-EhNX&IW5EK4XyO=MMcp|T4v(y8Ra^Mn_ui5k+$Qnrc<cEvBbQ2$K4
z{;G7UDZje-oZo7?pt<01!RbPTxh@ynE(BDhhoHOQCHSZ}Psi&t$fgT^7t+*hW4Um8
zZ7a!@CFnwkF~VUNR;n|Hs0%UWXSh&H@qyI%;Hkr8V;AZY>QU=c8&D;tA)yg<?-^SY
zLQ@x-5t>t9rM959q`u-pD}vNuEj2S;$a3K|<+LHRrj}t-+qz)Xi*IQM74xnO9bM?;
z!t2WEOnAeEHwkOl4_#d7>Owacy1UR%MfPx^kK&$$Uew;yC7cHPy6_g0i_{GBwhR5~
zyhBaYFHIWY!azF0g9wAEL#RVt7)Dsf^E!zc;lg`#gx_~zq~cL7j8;5`@Bwu!b#9ro
zk6rl0g&l7E;KrveeCC4B4c(2;T^Q%WLl^#YVY~|yTv+JBB9{7sI-B~X3lj;GT$t>_
z6tc8onhRf%r&3R_!>7A2!-bhDX4e19DseWxBj(VVOPxoZ@50xF1yqSSd&0KZg(XZL
zqb_w}vkP0u%UoFQ!U`FUF07)n-i6f!DZAE%H7<PP!nevvK#y4FI^{Hs**3Vak;zRi
ze5ZT|4>XxKwz{y*g`Zvcg<0Rb<T1neM6_K+?jZc&!Ui5klC{f)A8G!iVtzht+wH<0
zCjX%Bb>UYR4!E#S#q5{aiSx#9$~ol1LB)wrhu_r<BWpSA!V#5w)P>zVjr`Mvzg#%(
z!U-4dF!!Vjr(C$`!X-JD>6}xg&JfPJFoyf<Jd=M@FQ}LitwWc||G03?g)8K%DpwkO
zUGcw!8!p@=jI=UKWn|tW-=_Y$=;=&y*M)m@?o%I7pMBmvl9MPm^1AsIz=bC+B$1Qd
zNF$_Bvr(lVQr*a|xZpWk4suTA<Z>go;>4God`#AKBflHZxlzE4f^NJ>vk<j}8#V!Q
z5jTnwicyQZpML(zdJ`YSaHG5%72GK4MkzN+yHUoCvTl@P{NCfX#55@J=Q*OXl})S2
zEODMERHEKFV|#&6nflqZ_$g?*8+ImNqE>UG3ZW{s0Y9B3thyUD=m^WV08O!j;H0{!
zZZ|w`c-`2~$ywrMzBSx1-T1<dFWvCFVY$)RjV5jc+z7H%9XCP*iI2JwCP$PrwrKoV
zj=7ORr<U?xcB8gpiK(l&o*VVa4X6#Nji|SH`XRM7b>mexGHEuWHmA0rwshkaLM!Td
z9yM8RyynIrHwM#e?M4STI+EMC(U#DTD)qN_124y$-N}vD-FVB5er~+s#+wZ2N$u=L
zS2wzmyHNk;A=aJTgDL}CCJ?Eomm9s^=tEPIech0WOF))l-0yF@@h)@wtC)8Pi8HPN
zZVY5{%^4d`W)2~ba$_`Ms2juF81BXhCf}z@&F{%!QZ|0tKT<g|YmIT^113MGj-`G=
z{m_k%2vX!@H`eh(>Qg$OCBoSM<H+Nw6R3kZvrQzgq)H8w+?edf6ehoNV<urLbsBX#
zbp}=9_norMa$~j|bKIEg#uDYvb7K*Cz8hZ?7PxV9y19^gdcG-3lT(?Cne~YpAxqs@
z=Eib2<e*-`EXQ%%e)a8Rl^d(wSmVYw%-Tr(mMSe-E8DJkJz)d&%PHn2Il$f6ta7&z
zwotda@$6Xs-i_@l#$5tC-Pq;Ec{l#1`6KmLH-1tvKNEg&W4Chl5cayUkFcLQL2cau
zCVz9|pc{u|8<{*t{evo7aoCL`ijNZHOW&Vv{6#)aJxx8~#z}&dIwk#oD*g>imNPO+
z>7S!6TOFTsF1T?~COr>w*V80<$&I_J>}A3gH?F$z5BVDPUpKC+m>aU!$cgFkmhx{C
z?oj2*z&$talOMQ|&4W}=e71i`=RY?dx$)SICrl<YOLCJukc&J5vZT=TowQ{q<n|yB
zA&r{DgPeq1REd{@c@-D%ARjqD^*L(dJ77U_A!>X@9uy&8TWAhkZ5H!j%A|M~75AWo
z2R0AjK}ioPdGI{LN>R&sP?}JNT9zuMTAr|#Cs$BTMbFbS?HB0SJ$Q*wnfjs!=_<11
zSz8rybq{KIP?cPbx|_3~)L)ZH2UYXnNVfRtw=7Q2)2jg<54;|<@S&v-J`Z#cf?kBY
zFg!3lnBc(|9{4@5Jm}y-M-KuL;6W1)nzGIiwJtSGjZmW=#5~9#*Ycn?LDu^+A*on=
zm(}q+ohOCsc~GBO4OC=94;qmhQ)Oc%OqOO$W_r+^(1I#{OTsH2v?9DpefBLr%Y)Zc
zWNShjYFiK5DZjl3{Z_R~tfi9&gFP6+tk*qw!-F@;ojvG5=tAvE?MCfRmEv+V_4J^Z
z2faP$<G}#>eW`DI(4X)YwIB6l>8y7MQubYfeC`Vu(&9SMgF!T(%`-zi_?XTx4~Ba%
zf;@)$9`${ylpRSJMIBAuHYYw-Kk#6ziusW6kq7dHU1B~_{-+*%rucIY#wi|8kgI23
zdN9$0Z618@!6cPClQ3Bh3c^>^snlsyS^IPkW{`7npU(1Nwg+?Q%=h4H!d&V+5AO2g
zbpewrJXlFs=)oewVh@&hu#~)vD)mc|<>Wh@`B!<c+Jo;@?ivr)%EmJJjR)TnDxS6_
zE+Vb>V55rM;6b8=Qs*X`awS1{vj<yL%vROH?H=rq>CuZkUi{#}P7h9daK?jO9{lLR
z3C90K-RHr64}MlP{NllG@*d^vmAR-)maIsYUp+YF!SBpEK>f{wgM?9P-upw2We<*d
zaG3rPs+6tHQ|LcEIIf((2y&7mC*g_uPkL}l<tF0KdT>=HRhs9h=RNq_g9{#9Wb!ig
z5;gG!M5?+XBZr?;*F3n+tW+;<cyQB$haR~(KR%QH>%l$3Ee~!J?nv(uBv*#_qrc+a
zd!Nn&s(jV@?u_jbImsKZM3%=MJW-|OgFcyliptIAg~qFe5}DnLH2OJIZcaijFJ5F1
z=T*Mli+o<>_u@G(3V2aT`31cw>P0ax3Mr>Bp@<iWD<s9eDB(pJFUophQ!ypIfa1jW
zi&9LMrjD+mms7bFyeLne$U|P*T+xfX=WUhUc%J?X)XLNsy-4?BtNKPMr|U0yQN@d@
zUR3i!XH0dfn_9z*n$jC&Cspcqc>nip#r6N#!vL=rK0@M?+EArTFZ^VSD(B<@ul&_W
z{6bvVi-;G8y*T1U)QgxGL%kU0MTQr(7~F^YGPR)>wFy$N4xz3W^$7Kq-+&;iXyip>
zFPeDK)Qk2sn^9l!q7|VzwFR}M7xFbqs(qEo*Qk=r^dd{KT)J%SMH?pDQrl6bClga{
z2QNC(>EuNhFS>g1x)*QIdDDx|1gTTzfqne0)QwILFM1NXdy%*r(~HU8DqhZV<tvpG
zl%=m1Z_)2ZecOxvgm=6cM0l4fkpsLKsMz9g9qh#r<w*Yw_hN(>bG?{H^F8X9UcB$c
zNH0ctF`CY2)G^eLy!e11^^YZd=*6r2rvEXMpQzkV337fSk)L}pPWj^r6TJ9>Aisx7
zz(g-5F*(_b87guL;VbG?>NM(f>aD`@!84OQ%Zu3rapuTC;#takI^TJ**^95eSis~$
zFIIT5(u+kZez6xzyjaTQGB1`B<Oq_g5<f%=tfINzi`8DNA%Ek=TEe$fiMf5&wvH?y
zNm({{v60RuYU0<EEph-dd5F4=x|9077uyLts8YiZUL<PU<;9O){N%;Y%-Zk8FDhn_
z7rV)m`Ln5%+UvzWmHXT*^H(npc=4NZ4ie;I?2ae#pZ0!N{vWE;Q7?|kjO0UEAO2+S
zBQG9%@s}6Jy*S~;Nt#!vr>K8>ahh<3dX_4cpCg=?1CYb-g7PmCE>SOgv5RM$SH1FD
z3|#Z#I{mxU8(!QZ+@wmK|9X)aRJZBep(bX2$-U>reJ>t(@sR$1s+4?jes=Eqgl3vA
z{&A2*O{S*!kc}XIst?%}OGoAKA*T<y=sf2`0UvU!+&n(yCFi5&SH2AFf<6>t(v~o(
z#i&JmC`yovOR~D+<Py|p;|D&J^q~~ZDm;!#`;gdc<$NgbLjz_>@d^afhl)N_^5J<V
ztNT#HhZlUP%;byImwZSk*r`&s0Y7%D_)wKjHRX3d<C5H(OuDF=4-S><^x^GDyyb2m
zJT$#jo$8||HpGzr;nC#x!SW%%tQb{_2MHl+m>TgRN~kp>J~POYkx2URvJbU=sKccA
z^?azS_{6Eq`s9ZzTO~?0^q~=*#?&S%vZ)Wv$jzyVtIDsCKlI@vA6ohFst=hyWclzG
z{nw~cZ8t(|AKLiP)`xaXzCmqI?Ld{tjy`lEzpk9$*S30-+*vtY2wkb=`O(wehaM`o
zC!v=Qy_M64(3hH+Jp0LB@S#7Qcc=q>c$Xk;7~n(V`^z972Kz9C{(C;WPZ&xaMjcKa
zK}~9;OWBd+G1O7i(W*Ad{lJH@G==52OVN*g_|%8bWcYpF>J#aoGFeL&o1ZgA?j;!S
z!#MJZ2J!R83FI$S4PO!_`XFE7C3lM4{Nuw+A7=S5Rfe?9KAk$v7r$vrk~f;!X3%-3
zOqL{PlLh7y=1@Om*1_}HzV=~(57U#94*RgsCpYq?uJ>Vs4~u+AT3Btd4@-PlN?uJ}
zMqTd13LjSbu!@UB3dkyC5te0*58wFkErTU%En%GsmavUJZ1Q2Z4|{w#oNWKjhb=yA
z^<jJW;+yHzYMQ#uhwr6Veb^<wFMe~>4?c`P;}h5+olq@R;N9w}^54xr`tXwvKl|{D
z4-;F&eOc~RP5tks|8eVsw*NBhdwtlOY~Sa@e%aWm)qeHiHy;lAaDcuzeVeC>9`Zpz
zB7gVc55>m)6v;Z`!%;Tom=9NcxGJ9lO#UUBVLwhi;loKEPH{s{`{e(q<xP*NvYE1+
z_2Jy3WQjb-Z8^{Qzo{3f7pa%1m#J^|EH3f?_;AgK2R=OX;kpd_Q|UK+xaq@(^IXer
zr~m82Eg$ar;<p9fyXLy>!|QWgcYWx0C;g82*IaV5qBwHT=g#Zt_ZbFv@&9~yBvZGJ
zTspeeu|Jj>UXRxxrJnfW_dq7;NY>+!LT$ZCliMIub!6A$b*53J&Kv{@6En9SZ(BYc
zqh}=L(UDh2hr0Is_fi+uwF|s+H+}tv%mO+J>TnzI7$~Hpu#PD@zS2=dM^POeb#&5E
zOh<7Yh7MCl2^}^aHFVU}0UafERMAmYM=2epb)@UC>(GZ-U7KosduwH6TbgQRspY8U
zbyOgTUy)FW`n--8lwX<fqK<VvJrX9j&vneyPWMQANk_Gmq{G+Jz0I_0I;u-Mv$U!y
zNn0=b`li^$)O0v>cyxGWX{I@KNU&RnOUJY_S>jABjn$7+q{4RD>^{Z}Jm%9GHadGY
ze~R6&!_v`6M`IlU9YGx-h84J;-shq#lBa}J5~lN7b1kAHsw2i^hK^b~#2nwtBl<GA
zHnk2_%(^=2DXvdwpraw7N|q)8O>{KXk*Om~M>8GGb-cpLr)Fxh-ba~Q3mr4c*<0!m
z?lm_}x}}xuqfG5ph6%i;qqUB<I@;-|GsGsPWMkXt@mmm6t|hnEapQ`u$R$??88-V}
zgL<XO=1cN*9dGCusAG_hH+6K@(Mv{-jxM_VTTNOw9o=P*a1|GFCP`I2bW}>Q3yf`(
z){~VVboeCMM@L^B?=tc&9sP8?t>f$|^ML$I^0nm0XR}F6f7ba9ONl9tG;)B9w@#S?
zgLMqi@rjO4bqv)pOve}<AL#hvX!>v+BXo>x8vpz6s-^7jNexVn)G<njJjviHXP4a3
z<UH~-UPo=Ljt_MdDrGl2X}8MRKa!D9&i=6u;X*f(AB?ahtjo3Z&vZ<XRp|I!$2jSV
z-LCPn?bp)(&Sn=DkTrg(<NO-eWF5y^YZG-$B1khjM_WlHQsGn?V><5Zc%Wmt>?R#Q
z>G)a4OdYdiB+D_&hRxQoP{$%2b9BtrF;9-2Qug^ez9tkdk+wibtKM42Que^Sv=-&l
zB)8!;*J2&t>R8KGEzz;Lgtb)1G8qPC?aQevs4J<fsH>?Gutvu><jk^Zl3Z3Utwr_J
z3C%3ooDDiQvVXqUu}Q~wI#P3#*upK9jgo%btV6)=P1`C%_geZk9Vw;leZMfLHMO?u
z*r6k5iv0&2yJQfSvhUP!q>Nn}-1QAxv+Kz}>T)x!7Hp&aqGPv?OFAy=*rQ{wjzc<r
z=U&*SW514Hb@cC`jW26IphNUG9S5a1d^Ta(_Cr-{SGw4w=0D^()$yl}zqmO^bR3nv
zAjPxdJ9kuW%P4K%&{11oCQCL`w(dB?PUtvEIHlvW>o&=f<+P47G|y7cQO{E)_ir5+
z6klX-h<QcFRUNl=+|lum9HFDE8|)nEmTT;s>oNy+&y-HP$xZv0J9Or?^jqwlKgwhc
zPR+LJLF&VtNq0H;@5zvR({^Q_>!FVSWKuN%1CMk(mK%%>6fp2aN0NbT22zc9x5&UN
z_#ideh<9>|fu^lBf$Yr6X&@K<G-?j2#OL1Q%55O80qGXuJO)Iis(f_B%x_@k4Vyqg
z12WnR87OR^b$NT=^R6OB{4lv$#$J@pKV`Ct8IYtb#R(-0d~CBMS<*l$0~HKR>Yfc9
zwbBO487MP5Evt=I#z0vXKVgq2%NzKhy;kr~OH>a0iUukfc;1K~0xuXyH()1MroL!E
z_Wru^KIy}k3<x+4RAH8IRXWuSR40g2!$3{N8o@!8@#9jy^oiGi&%hP~TMg(23<Dz#
zj51&v@Eds5K&Ao9K)^r)X@G&Cfslb(23|JepB-TXvwEk+4AiTh8Zi(x;!~@9It<$5
z${@R2YI4uEm=`;z)izMaKwa6)6uWeenDxk#tZ!i19+yBP1C0&5VqkOL5=~fxn9T@H
z4cyKapKqHRXknmdt|ZBlWJ?1wY^*}rg<COl#hYna240gG1HGif4YV=vx`8(gxF@Hz
zHITEnr-OlEyIt)Jw3pST*r)Gy$>*Ka&`~x##ome9=&<We1Dy?YG0@e(wo#T8mq=N4
zH?F7$wY$_%#y<a|Yg`L$*h!aE(%V2E>BCg}AOn33yk%ejBkNpp^)v9cf&S7Jms}G3
z4$JOnuE|HRIPXfUPPzoX9%&6^=LifoFhmZAmfBDQBWMm|ayV7|ie>EY(SM(Ms)Z&!
zGupry1M>{bmtkgLtbxxBj5F||fsYJaOeygxH~eGjCkB4Y74KUqIG}|l9r79d?*H1x
z8<=2Vx`7!6zAzx|oMPZB178}L$mAsIWU3S&*dtA1q^hah<Y@*5rl(fg<La7ffALzf
zEHe$vHZVs<j_i>Ksp}u7NQc`~k_2wahl?C&*U~5LbA4@Kfq~@)Rv1`lV3C3DUfU8m
zvYJ_od6+lZWC^eKrY)7hV<6TsO=g=zyIn`hr>!)w%D{IriexWz(pDSz*1%fw8Ux?R
zPU#&#ACnnl9jjVz;8a^pK5pdD+rVRLqk&C4;$&i3+b8}B+p4Tx9!4lr+J61*G}*ds
z2KF2H)xh@#w#%WK67Rho27WNG)4(nRyAA9y@S_3Q<ev=u%-*PYE%_IM1WS?XtV(#V
zfnwdYeX<oc>!9Yle$e_W#eP6`ih(-@?ix5~;E;ho4g6)`cLRUOoKw(t#K2)Wpfa^D
zVM!m#aX0E!?I=goF=>^I=hF6xmt4mUoG@_Cz<C2FWlOoIPIIWp>ZIVuZQ@&W#=u#&
zO-^GZ`8WBdf%@g_7vvBqXP4!oflD&KHPeJI)4W2xYTzFgbIrhY#W!T`y_GD%|H^LV
z8gCnD_9R74L{qON%V@c0;J!@PCUTp2VBn#F>?Z2B)Bcmm-@x!ZmYi=qHqg9q<`V-+
zCWaS{PyXxLX~`y1Ok^`5{L)lQmKC$CRF=(EHcM*w{YZM6i5w>46K`pIPWfY&V?KdA
zW_*s49a_jlUK9CD<Tvr08LzgWiG{7T0wz8!pC%y7+-a8hIXl^!%Fo{>DwWMD@r_x`
zL~#>$Ox!h5!i3GlOcS$Az(h$CZ<z8zSClg2k1QD`OcSL|lrd4(L^%^RO=u>{o2Ve|
zF;T@tMXA=rizcpLNtfk$6O|ReAT2DCBxaE!N#jg=x(Pe8+TTnT^FSqQOL9E7s)=g!
zt5dt)Os=77$X+MSVZv#`$M(2P^eLR=X0ESjysRu96J9!@ruHAWI-SX?H<SG)EE5e)
zG%^t|5i}7qkzpdlfUt>(iPvYQRWF*<v~W_?#Gj4rPYNZy@+h@=6T8%0%S3HPzD%_@
zwnxfl)iF_*jrp={TKA$!^<<YZSK=F(D9lzhHqpeyD<)c*XlkOFiTS3zB}+;D64~5D
z3stIb(WD-Q<L0X-GEKBG(bhyqBeVF`^ehvvnK;qh-r9sb;&iN$edU{)M7A>_T{<>o
z>u93Ai4G>D5^1w6yBga&$wtZk4cKlKj(2;ZnQ5I(bdgcP26Q#i&BPEBLrruy(Zj^M
zCI*=3X`+{jw`EusPU_9J^;0eEBlRnOi?E&j+^<GTf91a;TSRl9a`rW`4>D1`S-d9)
z(>z%;X_y=WCPteW!^VuDKa%>MiK<QP?^C6#J@W5(Ce~g_&)41dfr+su<`qf$*u;kn
zmcjXvbZptIcxN`T%jSPVzg<&%lNR>ROnh!)oE#J;CYzWdWwU3Wz!pw4@rA6~L~7VJ
zsi}Qfkt7*5QpqG1zg5ZliXe^*&Z#D*nV4>3a})cFco*3PWRM8tsesug=9t)EVxx(<
z+?>TGmdLu|yBlAdSisJd{#+=#^=f>qb}O8;$i$+icG<b2;w<IrR+(6)*1O!q3dJi4
zHOpZ&VU3Az2r{<6C9IVR#Kd}Xp{=&mo5`}%rP@s<zB6%L29Gq}#1<33nK)=-tBGwU
zcAD75BHy!xJ4|e6QVO1`pZ0@d8O%SDe=+41Vfe|!pvLhw|186XYuRIBF9Uw1?vn$G
zW8hR1`+gJq3nvLk`~efELpFg!43iEyYT|dYn18VA4pWa%CE%DGjIz@?QT)Y7;XH3>
zCrz9(an-~>Qm2VCCN7w`$bhplJC%#iLfe|!&zU%H;^dX|zp1G+ZNiduiIJC8JH@$T
zBE6|yiU?mbA&2KpiD8(nnf-=|dPR~1{^cQjONLXW)Q2lww`E#3?Q&4xGjU%AKpkwV
zg9j!anrQ4t6My`Y+J7c$_|fx7`XdvMrJcvqWxJl3Nb)1uj}$*j`BB=BY<{Hr<1c(D
z?nib%()`Hp$8&z<@FS;Rp2@Q3VQwxz>YVoF_TzG6EqfE|XvBKGY*t=B^3kuq%(ZT_
zC6&lhz>mUy6!D{=ABC9vmCwrIv8M;^<>bu|vPQ4Hm>(M&YZuewMTW|Uf~-i|(<Gh*
zS9f-=Rnjl_PueB8j2~tFu>0|nKmNtAoFCRA^94W3`yo%KSMZ~vG&R4yk{{3eaes+x
zhu@N<Jkc*N1gPxCi+=fcxp<LQ%gmi~O}P<Ec>BQWRs5*xM>Q#%68{=fU6Q5Z-#1_2
z=}Jmlt)?HE9}Yj9{`iHjMt->b@z1`;$##z)Zh!ns{ha~D<;tPg51${pACeXDBj|_W
zhsosLlx%*2MXixNo5Y0t2s2sBkBA>pKQfq<EQuG5aYYiGNQ(0^18PfuGE16K*N=MS
z`qT#0hAKBLEoE^wQ<~k>k7j<XiQ=0mn)}hhk3M1a4Wp$WulRA%!X*o>{CL%m`F?!u
zN2VWHe)N(}_Tx1_#w;}7@Z(KCT9eyQ+fv(6+fzGGJ5oDQU#I$$vr7%~C|qahE<d`;
z*vM|rcE)xqlG$yA+0Bpce)RAosfg9nkE;darf`M2neud4A3s{1clBivDJ3^&zU4<h
zKi*c(SU>vv@eY&kQioCp_%Tq$4Dw^J;voe21#p-j!^tD4qx^VJ#k}vwNOIywoYCYl
z)DKk5__MYT{rJd_kCpQo;S)bTB_zsz?#DPk#``hBj~Vp8@Z(FuSJa8r$<#^I#E)E4
z$Q5{-%2YWVn3Nuv?nnJP@!t_<`Z3Fo+4SeC+&KiPVICpTh6R2s^kcgpJN#JW$6`O$
z`mxTBt+UJ}ethdkV3s+tY}Qg1S?0%b*(0+|SyuS5Qt>K3Rx4gZ_=Yt|*s*NcMc2#W
zEC*>F+crPsx8sd|eCNkz*{uuBO|sImSpr*B4N_K$Y^825oAo`5$VSy$W&YsDPC1S&
z7*>3o?2;MDLYjpi{rHJ3{F!>ek6--Q?Z+M_fA`}LKlb{ukIDUh{6_eddVngm$(_Ro
z6(1tVP4b8RIO4|{CXZ78^5Zz+81+x8JaKS>AoZLgoTSPfL8p~3j~bmNpQD~v{@*eJ
z&&K!KML#ad{OQLPKkoQ(R|Y&|ZczWBUQ?y6%M`8dMZD?9zskQwxb4Tu6Ho6%y64A#
zems(?k690>4^_PUK>S#7iiIcSBzCVfDcQo&vRQ*qW@e+4s(iUOJBNjw7Ot1gs$wCR
zh1|?~-a;M=dC3(l<RcUkCFG|*XQ2Q=>Mux0+|*r!T!LDZTFgRmLgJ1rn*~@XX`z&b
zvKGo&D9zk5iD2Fb^6b8;@-*ckN7*&9B3a}Q<SYHZ$QQ`sS0=njO}Ahtyrgo2{4uwx
zg=!Y6Tc|<brE+T$G^&H@wDA4kPuD2_ULy5-EO-e%YT|Y{(}Lf^I1A$~SQY{nhFBPC
zA!s4QupSn|79tiJTWCTjO3knkBS_6MK5JQc*+OkP^{I8Jb*c5J5}B)RW&?6V<uoGX
z?-2h@v#EtwWRkbgOyxEww6M^Ukm%J{Eo55gXrU9$EDLQ2uTfj8NC|FBZfBuAK_1QS
zK#+B{^~Z<h>lV7wdBeh+7CNikE(F=G#Pc=Xl;7QgY>RA#l<jGu7yaHA`VjhBc-umM
z@>|q?R9Wvk7TzTfvM_)kH6)$_7|3KN9(sexiARctkw2skw=jb6o`v@bBdKF7j3SJt
zN}ckl@d0@(Rqn({+$#K$g^yLtCl)?c{F#N%$%!d_f`u<E{AS^xg)c2kw6MX#Mg~lx
zF0(M%!W0W%S(s{Ju7!E@r&*Xqm`<HRok^|demVopW^xWS(W?36#TLG{u)xAXCS@xY
zS&$q11!R$iEm8hb!i5vI<rY?0SjptK)Kw~GwS_h0Z<Ldmg4Qy*&cb@-CmyffWMP*~
z-4?#Hu$fs~ENmxiRgv2W-^&`=svXMzfv}UBczp6F3wu@W&xBv7yDjV?BwDqPyr23j
zRkrkibiTSD<`B(4E&NXSL&Y2>9Fh5uaEzL`)8j7-$1R+obCxP~p0sdE@oB;t3l%vR
zon!Jm^=}n(L2Bj=CzmZ;v9KeEAA-1Q;UAeCf(Qn2O(t6lvjdnDzzqvGEi@0HMF9V@
zhC%@p4&auB+f3fE@SlZ8<h#^+7VZ<IZ4WFwR4i|bcr4StOy&XPl1k*xA8IN!Ie-*G
zHfmz5N=)_u(&z~12q1A2j&N?8`KfsV$V<paO`LB$N0!I}0Td)l10-1_fT96J0*KNq
z7QjnVZ2-jsC_%>-K<NO=1OO&WQcF=~NIyAlD@(2rK*a#ck)_)5g#2>%MF7u})2S~6
z@S=*T96$yid_KX?Q@ipLJGW{8z5w(9ss&J;Sv3N11mFyyri#=EiFj849wyx?H*vF^
zm&wG)Hv$MSX;S@Eiz>H-NwZ}MG8v+V6UsZCV&sO@i~wo{@G`k}0QCq`whp0g0BzK<
zT%S$@YNDNu$c?E@0%%H*vdscd?^+aY89?U%x-jb%YAeYNATxk072lTdS^%vHZK#Pk
zq+I~*nd}fiCxX=3kst%+^#I-oJiUug{5R>(IGNcsfNlW{31BFl?$mbz=n+6qa<2g1
zBJ`$8**=86f&V=P)-Qm!Rc?QRH0fRC3<zML;z5ML|8J{@1@K+~@6#Vn9YNhwCT(N@
zqXPIefX@OLP4h$Q7^<}71H#w<5;L$kAJO@k`UzFW+vfp{3t(~pQvw)I^GoUk>KD|+
zTrrU>^-K!HpS=?Jip~t`RO&S9bgBe&DPql3Jc}SLpBuou0B*{35y1Qaz7AlwidhiA
zHvxPbz`_6)1+ZB8D+o)dOR38OSWeiX&OBEJu!@eXcXa@3$j|N$T^qpG0JhOwM_nJl
zh5$B_H&HhS@Et*FkSSt|Vz~+Yd-5*ocIEFN{6O9L|MvKg0sKVsXX-ChsZ(xl+!MfF
zCieyKR{+NY*w5sz0URLwCVd;g9|0U>@(?vKUr7yz12{_O2vt4=#XJ_kpVFV|+)^gS
z69JqI;1Xj_Q6=nr0H?`klyf$KbL4ubpME<39l!-T7pZdUE(I@>uLN+F@DKHR0M`hK
zryXyQ6Yabuhf)BxAP|ffzr(D2LEH`CUI6z4ct9s-5Dx?RFMw2rJ)$Y`$xJ>D;7I^U
z!T*ik#9WaQL^cLUq&V5hY1AClM405}Vlp>1PY`(t;wN5hkw1v%f+#?<Ahjs9P$Ddd
zB80>^FP1Rn7EnS7YT^dhlH?jelnSDB5M`LG7(^vPS!y|I`5-C~o_#_+&ty9F1!`sL
zi@~Q)huMR8iB1)2wIHe{k|%6(J9l+*VwSEMgvO*J2p_>omF;yA+(CE<Ugg`YOr2~{
zO{$+N-{vgYqWbYs5egz4#1i_EAfiFM6+}NKV?n$UL@RPe5VeAMIf&Xp)S=Tfh`NM^
z)Ou8@uznB?$j`nXH437!%54(F0^W%#k<Dl}r?v>9C1C;Ig7T`0Z%4?aW>H_Gwhp2V
zp)FNvlU><9hz>z?45Aawo<Y1$=t6x%MZQVs9K_<}_>**9ne0aGu3~x+>Ys7-BJ`&A
zq4uRpL3xAF+d=dXVrmf6Xud-oN`03)Ac%p4LDa$2AylbB-i$OXh~Ytu2;#jUJ`3XW
zAl?sRWDp-QW|WHjAc)b5#{|)uH++tz^P%z+Z~pn1$xnj#RQd8W<v7I?3FCv95X2Wj
zB#KB&zEnI(MNST43i&G;1NGw*k)OBqPNzAKIzx_M6+bJ8+2lFOnM;sw{qvRcwd{TJ
zLgg$XESAy5Em|7HGCIqto2V<OD}z`?SWR6M#5X~FOI}Bn7Oo8<G3wR_v4Q5sAaa*`
z`W#jQz6)YAv$m*GTM65!-&40!<yP38LF@`*ZYVy{{TRegGP*+O6vEFz{1U_qAyf`w
zcMyAmxE#b4mfA}_8^pdK_6PB65C?+t4+~GvwSEiY55)%whl2QBIf>V@9S-7%a*oQ;
z#B=pOgZL|m<H|o3#0kYG3Gx<#(}XkB#7o1@shIOY{H^#x5Esev2+SpEr+Q<+Rhp?G
z{3Blhg18>UjUfJ0rEU`LQvapiqTUYT4nex80=xPillQ3)s1K>~VCEyj;~<^{k;Gn2
zp-S20(9@@|v(ZU>3(FotS_nBp$QeQ*@tKv2nva^BnunS<gv2G3{7g!n&xKGRgo2@`
z&$T7qt576_q9IgJF~veC8A7QLiic1l1e@}~Qqqmjp4lwTtg_THs<q{qEU!xavdXMT
zuB4pj3GztMiy@?k&_wxmLLh{fLZ}i#)ex$M;8D5N362nI5Nax43;plOFJ}lY`fio`
zeu?-n^M>G~qlaJ+OsYTh^u13KV};_6fy)E<!4N{s4Ttb@2(?3qFd3!Bs2Nl#RVxH}
z@J*l&od(pp)OsqWzUrBVbQ&qYF(L7;jHV$p3!!-kEoio(whZBw5L&7DEW)cHWD=ge
zAK*16TZi!MEg5Y?Xs1fG51|7&G2~tk;f)Z!qVr}5ou&ODjA611wRZ?z3EimOsj`7R
z2t7mSMR>NZJ|XlC;jIw*h46L=?=iPObwCIM3GamPE<x&%r^ZAFg)k(9p&<-bzHH7g
z@^IxOhS`V^5;y<9Pk$tJ6jidMDp@`V;j<7vXL4)^A1eQ&5I!b<qMT3vUoVZL`2}@+
z2oqFH;(X~#CMSk4i7=Tu<^RP@RXi<(>Es#InbcX-*;Hxa9GMmQOwGIy=F|K-gli#O
z4`D$F3+XHh;U}3$Ls%Tbk`R`LuuR5w2%AG#9>R(c)~ni9hOj1tZ$el_XEn7Gufcvx
zUaKM#FJ@d9LIO6>-$>o0V&q|yEsD1jwuZ2c@V)XAmG21QhY)ts+(rG7Dm5emWJ`Yu
z;a3^(^mkMDQ1?>zQTK<``+q_>7{aNL`~-|c(n#k1Mg1d$qlClMBh<ua*)g)L>rcWL
zWzvo-=R^o670ZeGnGnu0d6{~SdLe}KgukhYp1DZAM3tH+p0r(2d{yRua<y9Vp?f2Q
zn@n~N<KGZ&g-|w(a^d(;ydA<58Ls3zA>0k&9wYCE@E_p;RU#is!}wk15uL|Wc{h<f
zl$0DsN*K?DQGoSi3nNDuIm2>KLVOk3scBS6*5H@HTukPr<_;qdL7se<fP5-4ztl;m
zAf2LN6eAQ8B^04bk$Q6FUvbGWN+`Aw5Po_oSRzZ&DIG=`6%$x!mJg#s7`4Nw6P7=c
zK&3FMhfyPp=Na<?HSwaD%3-`1MtT@_npMMiiBN@_*w@cyxoTlJIKpMUHN)_SVTGZI
z8HSVb?l3$AS2+IEzl6!+4MPvZpzo6ab>?Hzk#{<^t`$G$4}=j6BSuq_p)ewf!-T}c
z=23FuVrB-p7WHLn-EvuV!>AWVW*Avv)DNQp{gz=gBs8T;{f)wC97Yo+6HS%zCVn$I
z&8aQI@y{c9k<=@yRI4yvB_}@9CH}QA+J(`cW@~C2YFnywU<bnMREh5xMkjKj|HXNO
z$v4AK-$*G=moU1j_-=&m)E;5<RDQ28dMoZQ)qE?Aeo}K3uSfBA82x2DL{T=1cfxo#
zj1R&X8^(Ze{MYLD!x$OHK=L5!VCoR+Q0g%1aOw!^d(_0Q)$&@BQDMmIYet9h^)j=>
z)>eC`nq$IPJjZNVF6+ZEJ__Rt2?*okFg^+6voJmn<I^zY$7|WTA8KXFE78s_HOGZ9
zK8y)r`S;RH`Mvwj`>iBbe%el%#wUNnm=wl|FiwUsIgBY`{Gqn@t1uRZu_%nGbf$$d
zJ&YOTc`9aR7_-8d9mX6wbCoYI$J=<}>ByWf?N|N+f}D0P4r56e+rs#s&eAZJhp{4z
zWhzoG@2m`C6_XpNtHbz~utvpv6Gq}XhHTMVn(M+?uX4Yv7a#B&!`KwYcQiMLv6Zkz
z#dPCgBG>k}hp{7!Jz?w(;|G=d6Jci<yOi@IA#r`+XYwy$>?S<BO0zGF-{|b8{z^SS
zO&n0ts)J$q^TGHm_d8V}aXITSlSimWsmG{)QvV9$I6>m&H^)<9oDSpt2u4P5CXBN(
zt3*&Gf^%V<4<mmB&qeTe7#G5L7{-5LTx8knVcZDgQW%$+yh8majH`siFBI3v&)%MK
zQ~EiKJ2d|d;}${M;5}`-OTMq1d(tFcX@8)c#Qg)0!pI&$S|q;7kHdHpMiMzWf@}ow
zQzCeeyCYROlFXqvPXsv?=ZYXV`OaKZZbite{Ctt8zit$WpkM@LA}GtOLJ<^;pm-vT
zS|oy^s?^HIsU^rIsWvK9ZsLc7QW2D<)0A(Ul-8Du;CVXbRb&N1#Rw`XM}8W6fm}I)
z7YXT9djyI1o2_SGRgIup1ep<JMNmD08WBVzh(%D7!6sFUz!8Cy?2f=ga7CV;Yk4E^
zMW9DuM4n#1l@?C-$M;3z%amL?^G9H@RDc?e$Tud0$cdpVAJY*g6W7@?BB;e=vj|>}
zpmqceB4`*v9hy>qy$I?m{)8J+KN7$1Lb7CO#H=RN#<GEY$h4`7mo+wzpaqjHsjaB5
zP^AH{5~QBQW8<$y&^dxG5wwn=O$2QtXvcupsqLv9sU0H!yV~E0PGWQ3Aiqf+nv%V1
z1l=O&ACXsQ$H!#%2zo`(JAxie_M|3$#FX4V5xhl5xNqd?lh^&?5HBk~s3peyyAceC
zV7Q7L7{L(5gCZDA9?uazlsru3iaA2@dlAUbOj7Nr2u91^jNp$5#zgQz1Pdcr6v5aC
zK8#>S1T!P}D1wh8m>9vN2tJA6(+DQ8p3hWm;|QP2p~rJDsdhY_Klv&A1^G+mOeRdF
zPN7QtR|NSrVH#mNbtkV#&mzyG&ZbKIoCxNUpIzCW&*azC1ra2k$X*=5k_f(!U_1S#
z5qulL+6b0Kusnhl5v-K`C^w8nu!;dv^J+qiv$mx?JNkx68MLyZbrGy*a!Ujo2;WgR
zMzD$S=Xu*2Zt`X(<)x`op)6aO+$P5nb9Y4WLj?P1?u=j;VRr;S5`L!sL{03YU&vBV
zZNAK550iUkU!TmB4&NWauXGMXa8O15_W$<9A)2z8ha)%=!L<mk(>WT!3BobzpVYso
zvaaK5gq)1vR0OAG@{iyObI;1;AHjtPF3JoelfQ~g{N^iVrP-HMJ(mgMJbO3SRXYDf
z;x9;-;2RO#lvy{5Tv7ZR!L10AqDYR$$NcRG9x(V$1a~92N4`&$Tp3+bt#s+b2>y%U
z5&g%~m<Z%YA_+(wFVEgKoDxNLRx4TA2&r<HAiqVXDL+T_>2Z-eiab#irJpy7e1t;O
z{L})}=cv-R1qq2!C-oO*vItc^$BRW#Jc<%g*yxm^B8rj(iI@2&@o_I)nx;%~<)SDb
zMVlzvMo}S(icvIJU}iD5QWTCToKZZlYIq@v%2B)+MLL~oR6F%06;maOs*100C{~Z6
zhH`2~p(&PM7+q1gqliV3LDNIEs9vg%s#6WB8HJx9TOspdfE-j#D2gySqMT^-e=|lc
znvJ7)nNVBB)QO^Q6!n;_Pi-juKuBDSl65s=Qr@W6gwT}QOm=P*Ey%5?EvXX!inQc}
zO@`~M%E^qPDQBD4qL?+?Y#oii>R*<1{>*k!w2z`=H2yCGyT12zkZpYI+q=RPj!rS<
z|2X8e^KV4)CaanqMdv8GL@_vuAyIUVqFWS4ld|`U!ne%q9z{>d;tRKXL~)Pj#ve{M
z#pxYIpJ@Ew1THKx`$q9rRGwDO>L+`dZ_as}Npbqiw*bZOMlpaqP&tF5_<EKpVMC)B
z7R8rQOpIc96eFVeB#KX?crS|gqxe|1E;ai|Hn@$v>3yy_DvEEvGDlO#P(PrKrG7~L
zh+2NGDUtHtr*g5(&!YG|iV57najb2;tZRx{FqkP{wIo2^*YO2Q$sb9qUt&&*VsaE;
zMe*a;=9KuM7Y~!`pVEz8CYw{$zL*xpbn*=9Oy$p#+j{xAHYbX?QOt{CeiVzNSRz}^
zow6W`t(7z7k0FjPGZ#iNezhrkY7w&<g)^5DmPN6g4VJ84_k1g&SQUkUEGr4(uO>(l
zF~5yst*od{d^%be#d_JH8R(vY4Q$mGSz{C%qu3P1chUHz%aQZV&D;z5=b7?7sNrOD
zTNK|%u``NYQEZQ52RmPC`++r_oKa0Wp)vm{=Eo?0ieh&Rdt&%GieKbtjiFjBzUtjk
z{29exEV3txy;1CoV!!H{Kce_m@qs9Qi{c=Yhobmh`SR^Gab@N(og>tv)MM1dci7`m
zoRE1hhGH?CjN+7x(kSjT;B*uhqPR#t6UAAAwC!9J=cD*rx`IcLyqHeROHo{o%3tZl
z`3m)#ioZ(uhbpbQ9>opvP3pf?xvTBj717&t?ojVit2yz2kQ75Q`{yB(|3&eL@K~mC
zg1lun@doLX7_!BXJBB=rPo?IdW~Zi66YuWJ8AC26rSbCb4|!wA7egUB`Kbj|?sKuH
zzX(WVL7IupFH9~Hd-`jU<Q9*ibPQ$am!R6Hh@m8*6!qD+p|UYlq9bL?#ZX>x1wuut
zeEL5h!wWG~X3|c5k(y4GvWW^`ilGXf#2uv7W2g~B-x%JaSu=)aF*J`si@_0tGX_@-
zF=n}A@DPGjZww~EN7Z962xa8*8h`7QHTq+)Xa=Y|dCZC*iXlu#I6{cVkho<rBZgWr
zyc|RA7#gdXIx*CXp?(Z?=_I~BG$1!pF%4t*Y5vnU2+4O<sksTWn#Pd$fNR0z>oL3$
zL(3RmVX{>Wtz&3Iel><nLRJi~5#+Qjapu;R$qrPhxgDW>?0>%tbfnWM_P=jKZ^qDF
z#dnUO3%M(`8@02#=GG&Io^*P}&|5a2Z{+SnM-B>k5nR6*-ez)D4E<wxCx$UGd=SIC
zGzZ2oD24&#XYc+U%;ftq42fYVc~}f12-5!HvS0YJ$M@*i)w%k}7)H?<ts><L@YonW
zjA2#`vt#%uhL2;I5W^QSe4=7LCwv;iXUZvh!ZuFvctYa!fM3S&RSZ*Om>9z(`jcar
zq9Wxgja*ie=1o)1j2NaXKEW?3Gntf~GAD+)F)U+po{Cu<!~7V&W^w^_5p|&q&Xbuk
z!9KfddI|ld(h{EhEN4<yy&{H{<U~)dj$us<-^B1O&7IV>F>H)s6M0<>>j_eJgUpls
z=Z^2_d{5mR!<HDflDDbIrDf7&bL7JQb~-zh|3eIkpEaenT`~Mf|0k9Ea}2+b%kbUH
zdt=xaL)i?J%fS8^eq~mkjCcngAYY5&w-^qR55;gShCgL|GWiEpA`i!KB!;80_-TM7
zhf@EF;Wz^>$8dshI)*cZlQEnkBz`GA8^bv!FT`-3AeH=0DCI=r{)&srza$Ob9lscO
zh0ayw|0837Z-TlW!;Khj(tjAke=+<U!!0In$8b-@-yz&(o2ScNKukVRxiZoo#qc<W
z9PA2N-4kY|FqxErWJ2P*K(-8|GMSy4MoqlOTP_9XWHJ{uH}%=?vw1U+F9Z2A@LUE8
zWB|;SbrmEOr4~w<)FK&3ywR~(!jw;e43to8BgmPL)KD@5rI;*DEu&&&)#Wo#Ap;FE
z&@clPGf;_HPU`a+crgR%<QFnfnGofD4pOI`$?6$+i6Bmu4E!Hc*8wF((RG1cmLQ^n
zguQ~~utRPgaB*BfWn$;)o?)3*BpE<J1VsfgAc`O&Q3NDOPD(VOs0gAWNst`GEQ(}|
z;D7tA<M*G_=bl@yURPJWdi5&wgce!eQb<YDT8Gg_l8WFBf+ghy!)PnXc42f3qf;0+
zg;5wrdl9nCTZG&kMkp&ODYHnD9m41!p8~x#jN8J9i|}^As9<Noa2OFGJ7fR;>p@JC
zET8Mcgm6_*6a247Oi6YZw8F5%ND6lZ?+C*UBNawklEq<k4Wo<jl3%OK2<KBgAthm<
z1n(3{w=nJ!QWDCj*&~deBIy-I?=bEbexD$7?-6pZV9A8lCyc(5>?^CI{$UIV<8%~f
zqIe*Tfoymb(I_4aV-UMCf<Od=!+0o+Q&bD%;V_1TF*}SoVLTGXqf*qAFdh>!Jd7v8
z7%F^N7>^4n`Olh*-{e0jN!IG6FrEtI=`cow@k|(_!x$r3Bg1$utMjZ7{$A*)FrH^@
zk(f~Oxr-Mh>&2|*SbCcLzWTVVgfErG3!jjcOblaE7?UOWUwvMd<kYOrD`89vV|o}f
zvXYr$yegd4V6|rnFZsRJxnaB(#_llogfTCS`C)7b<9$(B5XOpZ2@AuFKUgfuC4$Ss
zSSqAsf5&2%OOod~uZQtQ7%RhA6~=lIGIw<t>%w?5j5S%w+AxCh`Np@hlDD%Zyd$Ky
zd{6CN;qM8Sob!AT#)p#J9>zu?EdP@*J`%nujLkwm4r5C;_rEhzYJM8VXJKrWtj`6v
zh5z?&Zag2@k-clDkX>PXA>_YLwtpGMPa@eH#y%nY!#EPgQQ-%|I4I;$7>9-MnCrh2
zyklW}9mY3dd?i_|&v7A*zs>(PEBRi?cY@sS{~+W?!IIY^Cxr9fpTqbi%TI>!tMHN|
z(=%b5WjKxCnh4H?abB`YNBkM>LKuH#@46`Dw=jOsO8yY?ryviy|IW%U3Ar4`KSD}L
zQ7nxXD-%JEBy%IEkd>E>ATP_yMNmG=xm~K5<yS;dDS|5{Svi8Mgp~Xh5lb%V?kXaz
zPmJK&2&zf4wjgz?M^Gbzni1q@CD#doAiJzqR!*~AFT74xQddYlK^}285YjN4+bDv@
zS>8lQQ$a59nnln&g4ZIL7eR{%T1GG;f@dVRRRrxLxH*E>*?ZeWphR#(1UF_S?Sup)
zXe*@Tto0`0g;^b*qJ$#2C4#;Y+#f+v1RWwsMUal5V+5Tdh)0kR<y!?i3*IJpd&K`1
z39oPjkqDw9<QZCw)sTf>392GDBd{XSBG4sSa-3*Hz_(qjm@Puu*@+-2yyQ1mDRCu9
zoh}g+M{rjJ-6QCl)xRTxOqP2>x*g?PY~TI5W#z1458=HdxLZii2zm+Ohg(X9%srC4
zPw-wrR=$rA7Ug}L-!Fpxl6*XZ0TDb9!4OFf6dWx0px_`u-c>R{9*W@Mtc1^cMEIi-
zJQl%F;ll(=wywO3hoZ#c5j>H->&Xb7ir{HUHk4!162p!Z$@mDK74lpJqat`dd)HVY
zqazrTmAoK?XO%As87KHsR>+4=h+tv_lSJ}L1k)mzEPRUK%Yst{saz7Krb}{`;0(c6
z1!oHKS+j*ue~ys3g8T^d{0J6Aa4Le+B3T&08ahJ+iy~MY!IJD<uSc*n%a;jRF1RA{
zzqd$lh-9VUD#6tp@A4_)brHN7!OjSFiTtey-iu&^@V5ou5nLa^yFyCV((gy`fh0eV
z;KK+uM)0X5KN8#`xG93o5qvD1t>e2b=k|X;MgNHi`^!feKZ{^%R;T2<rQ0OAJ%Sxs
zIsdou3*q}B*e_(a;2yy*BiJjX<oxGA1P3GdA%Y(xI26I*2#!bawJ02k;Fu8B=ctg9
zkBfZ8667CgzY*bgS)Feq;EUIiO~LmfEK&O@f?u*aCnES+I4j9wPiE!6GV;hS>`Vk_
zBd8q3RZ(BzTm*ka@TaJq7rYR`MIpas@BLi}m)3tp@VD>^QCy1Pas*|ikbkn8Wuho0
zlG1`KpP#wS$?{wwC1E^Ic)2LbXLCz73l*cdA}gsB#g$pkmR=pjHBmH-qLB!z2-YD+
zacvaUqNpB4EfLlb<kJyF%_#Dt|NC|iH>cN0E+=0q@Tx7z>jk;ctt+ISAam;rX&}hI
zbZi_&lPKCmp+wO%tJ6YAfnXqtW>GX3&Nt~LACGLA)odlCwIE-|+z`c$!aE8Eqqr%G
z!YJBGvYjALCrawsK8jEjw?uKX$SI^viiCH_YVx?FWaZo`id#i^TNItM`nN~_{oHI=
zBqbJzMG=qU?I_-fA`yie#Y<6)k3x$=7qzFNFrqMp501i$!WQ03Fd0QRAx;#okW>`K
zQFIla7VHxJ_gpR`$vXr+LAIjgDCSPqO<p%sa+hRv7wi#5Pa!4k>K(=1QQQ;7y&`-d
ziu;806Xd;pqUamN{q#@y-wH|?sQYJg2MD2LppXXz2W4~ld8&t^cvzA{q8OHyKN7{G
zS^iiQL$jRaJT82AR`Ns?PYVC<GuTf@F(Qg*q8KUiF<H%Lg*+!XDvIZYjLzorWe02i
zLKI`Ok{5-Hi=t#)PmtuIC>BRCF^Wl&oE*iBC|(slMeyY)rV3$cuS78|is_Q1Q~l>x
zGez=R6tjfP7Mvr<yXHpmk({@X&x>Nd$QNXD7e@a*(_ror5v~$k8pX1#&T=6u1YeKh
z4IwK9`^Y)`YT+zlO%!W|uggl_q~{1P35?WPAH{|!-WTD!?B#`__xP-(A(9V7_(>F>
z3i(iQBkM1O_ihrhIf{?7k}X1N%a-{w;RmDGD&+GhwnedB_!m*^7P3Qdr{FF@zHDO2
zdxY;3{4$EYLjJ4sen}o+TjUMwA$DREN1`|y#gCH35{?P^CW^0w9M8(X7E)5fZ=?85
zlHW)1L-gM@+kbE6ev0Bm6hBAti|G6+c=G?<eo8oxTzJ%fHi~mm#Nvp@aXyL*QJjq7
z*BCBF@f*z>!v`_^9>pI~+#W;cm_Jke$ygmjg&6*d;%_PHQWRw*i@BGh_(z1LL{d5{
zFEK)nBy$DJ#*i07IpGn0T3hz%6=S#}hPpA-i=k2sSH@61h8i(c7PTsZR|)c2R|~m@
zwauRHR*m6W5mpl{St8aHUP~}v5P~e>Iw2)PptkVq1?$BA{dM>Hl57$~(-;~EZz$ME
zu(2S^;hz8&#1M#~FoyOqG>f5m3^&AZqbRh9p;Zj6V`!Px=iJ>U%az!_pCV>CC0|<$
z#?Vf3+h%o24)<=7B!6Mx<`_c4I|<$rLx-$pkq}Pt9kZn5!1>k~Zp-TM;4~aVgwKuP
z=@_Ch#A3KRhI?X&$B>AjOAN&^sG@JiU<uJ;(1jR+B}TJ_v*xalq@W{M@>(htLprOI
zxt!ZI%X`F-iNTZP9fEhoaAyqNV*j4&{`boy-D9A6`3PP;W9XGFp|_BdFnDhagJKvQ
z!+kOIiJ@;+r+*ChXL-N>r#~Qu2Vxi~k_Z1E-l%3C%IZHJ!^1HQk>n$Sj|n~+`*#)_
z8pE&{cxYczw~~ozxad3)!;?ao#l9F3!!t1~h+$z2BV%|rhKVsuis3oY856?`F^m%a
zeD<!<G2EU#WgQ#COIi7gLdJ1m%6MV<<3%!o4kqim$uUfcVYUcgj$x{hR|Q`YoGv&`
zaBN%55K^*!W@$4eIg4Xc)<tt9IX8yaVwfkKI`gxA^xrql7saqLhE*{vj$ug*OS76Q
zVpx{t%VTIOUt?hjugCC4R$kJO)iJzD!-{Z?;My40WpzrL_I3>KisT)^_1Ro5VBX8}
z4Rqb?e=dI*!;TnsO4i00=PzuEVY4JZ%j$nDWJ?U6WF?=*{x_Fx72)SGY|G|u7gEyK
zyM%vF{TOz~uqTEuV>q7G+$-c@4Eu!a&&m(P{(TQ}D2Br^91;1kZ0=DZjFw+zB_(^t
zuO<0S4Bra*E}P4Li1;DPe-!eQ;0eK>1%DBw=BXG?$520x263E;;Vc7e9F^rI`#I71
zQ}BEY7lg2<F2?X%mj52ZA6d>nzxYe|-!WW@;j-|uapcAEPYk8vC@sb22(p|qaqxp8
zB)oFt|NGsca-vXCu)JUeL0aGnA(aG6{s@EjUM0yIf>+0JjgTsWe&KOkE4*49)rGXb
zEuR;&YG!rv<ACt%;;1F0b{uuHx!1?}8&iHgkF6;73*_%VNRo49!#ElVZ!g$b@P;^=
z#L+a40!g+M<Xr(F%><jr(IPA7du`^nl4NVaHiAn0f8XJ{F^*tXzik}tgx{2v6vqF3
zpU84<jw2MuEs|9vczYZjgmld6cM@`I9Jgg9hvn69XGw+yBXLB9)VdM;G+ly~iDSA*
zG{O7h=og0`hY|Nb&u@w_Eoceaf=NLq4p&G@uw*scC63}ay2g=-;~tTFf^0=kA$P=a
zXB^#x-xWvqIC{kWZ^xG`;Q2ni<dC+PDD)P*Td?FCN%sn8Y4-`~6X$<Y_@*w2WBr9c
zp4Ax;#{+Q;l;nePJd%|Uieqq=KNQEqaSV}U$+sIyzOeA9NFIx0XjXHW5ate#;|bwU
z#xXjMF~Xk`d^(O1aXce@q~LRc&kAw}H!6<jX#shQRI&_U<zI+nd>j)*XRP3hg5%<N
zNl3|OjHx+Mk}nHRies`6%BRHt-2qL_N?s8%E&jh>>6sD7tJ&O{LS_lhj$@9Hxq`0=
zvdnpL%+GRuZDC;?i{e-u$C5bSjN`31md3Fxj@5CjiDP*j=VpgqkK+xwWrg6JOSvoK
z{wJV*tn00c`+w5<>dMf%S)qZ4f@|Yg7e|eH9v^hEWrn}bms8LCdUdGv>d+P~^S0dn
zjv&81q0I}u7srM;cIo&+$NO=75XT`EhgEzS$Hq7|C9pYxk4WfF3I3S~HplUC9JvXU
zO<+qLpTzM?94F)WG>*^W*vX<;h@otaV_O{C<5;LEpR;w(6@S(vv?Gr14}~bn`!Ynb
zr+etEp?nd?SEANRQ+CI(Cyp=UXn8icSA+-S*cZoURoNd$SzS3G{LmN0l(3vbaU2#k
z@*{B^6@Dx$S@>E0@i@Mw6YdXvBf@Xvc=2p-cK6VCS)K2N{2=(F;7@`l1b=4K)%^$k
z8po+P4s6Z;Cyvt${_GSk_&L7f*r6({%&i-XNt&DwUWntOR5E-v_``|9>RRq^ar_=f
zOjG_~7gsJz@~0&K68u~6k|47#)0YnAl9ZyURb}n;{L%@ON#M<)nH-UvFYi&Fmq57$
z3PkeF=lSImxH5st34SLFhb|RXOrS+QU+oG}sFc9qUrRH2l_YBjUY)=-3B-2=t0Yi8
zfp?FDE}RWkP2k!DNU90et6Y}c+?ttwv9M+W`3WF_>k_D)!1W2#O5kx_X>KUndxpAe
zO2x~Cb*ONuut5S16R0cv_?ck61nSdOE(B|JC}z7@jYbJHkvfn!W*zEzz3O@Ui;A0y
z@UEibKmyH#H%}mufXe11&@zEmB5a#Ly98P%&?bQznxZ7o{i#eafg2K-tSdK4k`ngC
z^rjh-n-VBYpko4^SjgF6d%;iwH?v}<Ldnp=8pK-?D3YuWg8L1HHn}x{+Y*R~<nekQ
z)p*^WK<5O)BAg<^9@UGYl8gybCobfg(?Kl(J;DDCtii?_B1|UWBw!|BNz!J8E98`v
zOiyz~*d>AD1X9A8l@{{KW0|f(?i9=<;0c*}!f)&y!v8oE>?Y(c*6?hwyYNRf<*BN^
zJM~K7kpv!1pmzdyi!tvJyf1-!g-~bI_Dmn)eG|B!z1*R=Ujjp<oc;+6NZ^442GXNM
zr%oq-BtDq%-Fr~BggY+;DSSwh4<}HPWGk*H?>&~l&;&jd{bBT<1lA-#&*AOE6L>a(
z=OpWi1fCS~l;G2XBLtsGV5E>6kA!&FV>>dV5_mp=*$K=^V6^xxopw?JV-k2Ffw7`Y
z3rtAhMadnPz?YgrotGpzUU2#$-~T7Frz)4F^5g`j$e?&RfoTa$7oDjIyds2}&bh)F
z!fE7JIYRHLvAmu)ledeI!=cB1zreXPLOpMp;A;uY6EZ)6#X=ScE)-lO*tm>G{UyRl
zmI~Q&D7ak6jGmzt3A~=b8wsow$?B};Dj{nRhNevl@y4}c)pd*;3A`ozJ;ApVIC?0^
z>zxGF3!nK+{<}gZTnKIu9d^h234D+MAIB>s!*(NQfvhFpKNtL%BbpATBBJ7x1U^lm
zl#0?SK1*P00$(TaO#+|O(=;V~A$Tx>Z3%2oU`GNw6WE==9&%N=ZcvR~5+!J;FA_Lj
z&tvrXGJ(Ab?8`oj1Du26f$xi{vp<0YqTgFrsCg)X!wLL(D0n1+V+nkfz+d&eqY32o
z2(f`XO6SlT$N9Kl^Ly^kRH^TMo4|JoXu5JSfrrlqzfa)D1b#~32T86xl*`HJL;^o2
za4Lb*^!fdvUlKT(z^@4edWBkS%kb*kBSiTlr-Nr0#OizJ+1(rz9g5F#WStJ46YNmm
zqlB825PwVHcX{p~tYHFwv(9Ynnc$0OgKX5L1k&e%|0Mj0^0IISRZ19q8lMZ6QIVtK
zdKGn4zvj6ru2E4%MOhVjD$1!Sui^?7l~hzv!G2+XRaE_sE59>SV}EG3)jn0<WAaKB
zl~sSB6;;Lfa^6*{k5>y)jg_gYqPmJ2Dy~)iDYBaC*N_)$SW`v5idrgatAL8f4&`2_
zV%ddY&(lF7uXC3QiOeb?byd_;(N;w}74=m#P|-p~OBD@OG*VHZBA}wNiY6+Ws^DCF
zYEOuD;B|j}kA3%Cai*E-cWd>-!R9KM%T|o2@6E374ceAzrGj_^%PA^utzt=0aU0=^
z$eFxtebJ4=gChUDdeKcPUON}OMMaT{LgDRI+^ixbobxGj&lhBf9aMBwv8G4pb`_me
zY~3Ad)H8Ie3QkFH)%Ql0^=?z~dk<f@yS~?1#ZUFUf9iWt6)_dhs~D{!t|Fo0J{5gb
zsO&NoJypy<9n@7AD(+BmrwUVrr6R4OiwavsQiY?!Ww$o)nl<olZ{Trh#4DxZ=SMTv
znP8tYL3(Dfimtr9f#<21dM21*A!mYA`}K5ibT1zVHSoHzsw&1-MGsb{fj_0rYT$LJ
zV>IxNHSie8BRO6#6}?q|k#M()hc@Ql!#*9BVUm@+SE~BarNX`{?q^4<7^<S5ivHB3
z+NHt)DjuNk>B=BMj^BYQ9#k>le2_vq@T~K}!7N`_KIk3d*ne2X5EYN8ejIpIN+6*}
zQIn-HdJj|aw2Bcb9#=73^@qR{G^VCJsd9DgFAkrQ<g<k}D11gdoZU1^#Yo{C=Fh5r
zKzmLF;~vQ=t36khV^qAL;w=?#(;D<=maJltig7AlQZbzagr2Wrf{Mv1rl^>x;^c_@
zNh)Zu-x_!{8W*TnH}qbnsZ~5z6|bmh-Ovj+^cLrO9rlDWLo?IF!d)ABud0}-VvdTr
zDrV6d4ZYba&K?ie9GZE)p?7Dl*K%m)HF3y!G%tHF*SoD_@$81)0`~Zx5H-m;jV`7$
zt9V_-8{+&+RV-&K45bA}83*S65FM4t6)N6r=#!NyR;gIaf!U#WHJw&^nXO<A+4V;&
zdaPu}qT+Sbr->?h?0Pop9Tn>trF(=vSMjcj_f&kOVv~vuyj{hKh8|ZeA8_%nVj}~>
zVSfy^+8f&5(EGYd5zWiwX0iMhhJA@AA9EaaC}#B-TRx?e_Xuqjh0kc)f((TvS=&@>
zR~hrMQ^l7m_Nv&W;tLsBdsLh`7Thg7r;*3ecXLnw%5UWDV~<E}4+yqu<Z&c&0J8oE
zMe@;s&=IzdBT>T%4aZb`rDC9l2Q?g5@im9DhE5v3QSmL~q=rfwzEknNir+YpRs5jh
zM-{)Y_gTo+eEKb~pHy(pIw1k@XLiSl48!2B3`C4?D$c9u+{io4I<uEma7o5t>oxK?
z`ffNJ8q~<Uz+P+QaXemRtqz7h*c(b#^yWA6{$RJND5asahQDO^To(LW#U&XaTu5^<
z!*TQvqveGllbi+0Xvon}PD6POxf;r9{w$NHVc?$7#Qh;I%Xb|N@j7)hL<zGhXsD=R
zQzMU46_c^Op({01*3dvhLk(AHxLU(+=Yq90T%)0i#`QC5YN)E=S`F1SRM&8*kvFY}
zUwGt^3^}90xkes&z6NNxPUFv``E?kw-+ylX@*X*#Rc(C{ktJWRp^k>SRNLVv>uLT(
zUtjYFHObK4p+*`SYq(KEP(u?9O*OR8&{9Kz<`3j%8k%be2<LQ0$;GM}4goqpXEBcM
zRvOx9P&BmG{P~W#L@IF9-=O(%z9g8p)zD7E%^E@)IKFPuP{@jPD(2k50eHH5sJ$e6
zb<HsM7U3OOhoa&l4c|A-kWiVLw`#aeLk|r-HQcVDvj$y*p&_jKvvyoVLi6Y4h=!=N
zF{b&mCoc+FTUEmqjlIT=J&kuQ@aLwhdWK95mWGVxFG6hAuqs>)Da{}3Nezw=at@`m
zhAy<v>0nn4wPjVq(NxS{+wYr#a?a+ShC8IFJ2iA?eR_wwN%Ag1CixU@b4Ys86x~C8
zHQcYEw}!hVd5^{)F~fZt?v*6Vq)s2rUqXZ$dz^Xuv9T9|{WUOpJaIXn0h|G6fW}|R
zE`ET$+@Y8;bC8C?8dhmot>Ga)SHpCcpkWAIMZ>cip40r;{-}mw8Xnj17=1uiI78`F
zG7${d{GjxdhNm?=q2Wo*pM^Qt)7vv7BQ!iC3R=ED7gKYj2D`Dxi*xZP4bN+sq+zm#
z(Hh3E3p9+QDfWk6pp$6Ir@As$l5|K4U(zsM!^EslQi1XbGA?$U57JSY<TXXZ%NnMN
zoG$%}kZDp*!+n{18+#}Bg=TgrX1iY1u$TeoOmL=#Su~@DIU43`SfF7peUfA9QsF$>
zXQw~U_HLSac4(%@uuOZCGbR>sEHw4^*TWinQyP2i%X?H<qG2fwr7O!cEZ4At)i{x1
z#a`F&hR8WHGI#vZ(27x+l_DWoqhYOvZ5p;q)7CK#XxOabO$~2pcw56e8s5{eLBo0t
zZF_{?6-S!7r<iLk4m3*M*YJUcjT%0Zp+q-h)`u+iV5n@<41@oQ#va$wd-sGs7XN3J
zJ{33HqTv(iV)iEI_s=wJ)j+c|2vFy927&XzK07lzH0+eReWziUhA(It4Tm-C*04vz
zehmjSZq0nB+Do6=QQY%vA!plt4D7Oi;na3e!;d5K>581)=y)VYIGWA`k7@Wy$WaaR
z))!H7oI!GE=4%FjR_t(y{OtY^Piel@u!W``l_7pFmHB}d9+mk~^Va~?F9d&3m7g{I
zqG5oJ2Xvg&@GIR_M-v^VG@NFD)p3Q6Gg8m^#o%QPXEmJDa9+a&4S#6(Q%1){It*J;
z)gLLW>hGe@rm@a!!e1KLH0J)z*mAazI+sL&<R1;Cbd=UnMn|5GayoK!<my~^fsbPp
z^<C~@h#Q2Vor;O&b#NTf&J}e3=!RXu(|{vqgLJk^I<D4njgBjI-w7)VUL|;}vG>)!
z;wn0->Zqfmu8wPURMT;tj#@gZ>!_gvI!2rcK7A;3v9VWEN4}2AO*~F#O`3Qmgm$j2
z<9gjc)}z@wHSst(zHugaXDP293(;~LN|oyCXrTLxz?NtI@s)1kHPU_e=H~AE^TDP%
z3UtKSIvoKW&2+TWag)wyrZm^lN=IuQEp%`~<h0mQ$L&Je=umV7b^oxD?Y%+AjXJpg
z<VK#Fp}m>5J2GuWnMukEb+l(vBsc2_=_u0CK?n7DJ4?Pr$MBiOEWD$RPC9PYahp7p
z(;VweHP(k^?l}^oPG=oq$>l8(9Z?;HJN-i#j^gLe2NOC}9T^>-&e;LFj<k+0It;nR
z){)d<>agVL{r6?q1eWjUaHV=F9V5pSvt-ta&mv(HcopmDN<Tawq&}-LpovG}9XjsR
zx#Y&(I!5mcb)(&M^w4pa4n_&q{K19AJ$3)2tCtRvlIdV%6OXx^I`7eOua5iJ-TOmz
zH|6)y{he1|9rp|2-kDPXBSSw?piY1G#pxi)KphY2cuB{29fNcX_B#~Ar3)U?{kiNh
zK1;_C9gm2Rbyjy|9u+>ViN_upN`v$WQFEB??@T$PJ=>x93Erz?td1vjJf-7ldZ3Qy
z*)$!`=vY5Jf259QS?1|r;%p&z<<IFDMbFt4Ja|0FEer{fYGbI@p_qgl@KsGbPRDdV
z;){NdDC5{_PRhD6LB~WLD|EcBW0KDEL(JE)K*tmvFSDvTX6u-$;}!Olju|=_@Tcki
z3X11!Tbp<^@2hlOaqOA8AMp<F4>9PG@F;SQj@Rhh9gFAsB`Z8p<SFRaO}u$J8h;sL
z(m&jwBb^N{p?NiBk>Fxl!}PN#U#er7C@dG`@Tu3X#vAmUGr{-i`8rnWSfyjNjx{>o
z(($&8#I-us>3CDe-%Y%}dowkgdP@$3xM$>8eup;H@t%$iI^Na)-C))|6I7ad7b<ux
zw*C0x&&~u_?ah3sW24_9e5T_gYW50k*732BO@f@Nwn*DQk)+zxtF0?NdxzF_DBh~$
za~(T$G#Zn+>quyuj_vfxrvB{4B#T=6ci~PQwBdM7S<*YSTgM*S#PW|Qztpi;=WqR?
zw26H>_S4M_3^H&)$3Yzp4Ky-vNXKF77$|Mvh>oLvY*fzcIHuz(9lwehkL&na#}7Jw
z)bWjuZ*_b}<LJ0*UxrQ+WOsBd{_=FN^xhEXg?qMUe$sJ*4bkxn2hRS`hSUGL6TOHY
z)wWadNj71Bh<BaRaax{uM#njcZ+!Y$c_;~^gnw+J<0Ab;$M5U~9hcZxj=tWZKiMxs
zGnaIQ79jac2aUGnaOk9_kX+XB4+l|G@A4tvM3j^<kYnIF!&l2SP?o%R=o$lg2Fe+@
z!ayYhlY58C8>nEQqJb$*J(`!-B12gw{7M6r4P0$-B2y^5%J5g_>?4-LBxexD6Y?qs
zs!HM43Q|(dK=mxIA*7~(d?65|S*TWvbu)0ifjS228K`gg!=dk0W$PM#ds!1UXLD13
zq_D3Wi10{Lud#t9)HDz`(9}SIfm;j|83-6?X5a<`HyRB1Xknn0f!2n<G3V~PrQuJS
z7n=H;Sx%a53~(8s82$`ft-vEzH59I7f(C9fP{{fp4z^{jc4pcMZ&u*(aH+k4n+-$?
zJU_QbC}e=E8eaK(LmgNYjm-7DfldZ)HPD%M8<BsT;V(;WH~clp_*{Q;&8PEFB`o#f
zoPI}v7d7zRHRx6$=W$(07*JU^1D*lRfNsDs;QECqhS<k4U>X>3&R?1Py8znF^ka3B
zu3q3hU*M(Kt-8|1K(Uat;YW;Q8Lul%VJLq|7-2A>@D2la8o1lQJqEfNxXbW|RZqj8
z7Q4%{daw!mLURhd)de1%s+WP@2DTP>?0qJms_5No;64NWSsw#^4D>bp=-tl%k4$Nw
z`^9v$A<e}-$ngSi>__?J4;UCISv;Woqrf-dU;_{N&&7uZ9yTz<z$8}Qz#|48rRfZe
zGVqvzq2kQ+jbR2JH}JH95e9}Ec*4Mw2A(qf^C%vl4%r{78t}KV0l{De@3Wm5W<6tI
zBrSP5$Tjn`2DtGYb0l=2UVD1l^9Dv67-RUsYWxAtEEsFxB?IFPe=2-Yj66>G*}Wn5
z1;h9R18XbfOf=A?Loqv|W5DYY@UA-=nquH(1Ir97H!#(}D+cBoc+J2x1Je!6G%$;<
zyDK<@<p;c1X^Mbn?96aPY(Es5&Ea{%=W}>(v^|4Kr(XWbbDn|u1{N7uEcY%9cr0Oo
zfrXMJ=M=WY;F3mJD#!_rQHU3_Rv37lRW-2Az#F2!(!eSMj9ScHZD0)tORirauMYwq
zpU!gLH1L*z4Te7zzHQ(g1M3aE%W9ksQo_*3XvT-WN2iio$SGlS-ZyYM;4!(;z()p7
z(4+=78Q9D?Y~Y}Qj}2@wu+zXU1D_c9)WA0O#kS06bS)|z4}LBWrA;a{^B6YyL?RWo
z8`vS5<gDr!26nSI4eVvV><_UCY}6i(*=8PNGMliEk*%4xU+T=d(Hc}cWZ<xYuM8Y#
z{1;oXsAC3bv7?e~zP>2f%s0Z<2EO6IH1Iw9=%f5^8EQHf6FG=D5&vM|N8vviV6tRn
z@jVE2IJkb{z>zU~(ZH{4c)j+gXco>smkR$Lk$*<WIRoc?kMf1Q=%Pe!=x*TKADT|K
zd%qd@oug8U`pdxI2L9v#;p>dvp{FK=E*ZEip2>9@gTOz+A3YGdQ?~78OyrnYWn#67
zToYwYq)enu<e4aE;zkoe6Xi`*Fwww7Lz629Tw&r`6V*&y$M*szDx0{<#FeIhIRC=>
zBI4C1t}#)?L{$^dmG&s%r8e_=HS_r!?-W&fJX7674HLCY)HcDhtePgcNVraTz6q`n
zAe`&`a%Y0C^$J~Yq7HRT)HD6P08hPml+7i_qs@E;E<);?{%T~$=b1((8k=ZtqJ@bj
zCfLjZ69E%V*_H$TN_$*0kL%cGCKfdF%&ehWnrLOBjS0nsCr96{P4E%CxbNT-xnf}*
zZZN^Ow5(NI6YWgIOvFvxWTMbSM-!b)v^R0HiI9m~m~}D81rMLdby1Ntu!9M<g{5t1
z=4HMNv6;7;*i?||Y$9ypHWRm-;O>SxTqdzy5ozqHW?s|;o4l`?zxT;&?j=m9CX%M_
z6`Bd%glWPOiy2wuqiI+sOD<bVpu~~8TtT`VBViX4#cY>};U>D$&Yg<yH_^{ThNdua
z2W@ELZWH&I=w{+B6TM9IHo-Hl?leeqk8eO~H}`s&=*iw}?(uYs7;o<NYVIF94{Pq-
zYvMi=eNBAW+?&|k<H7Zk=3XBYL>9sW?a|vZ{Y?xo@vw;@CLS;`kmWb`9y0Nui9vKE
zLm4c{*_l%_lm59-bI+aV?|dII@u-Q%Oblh6hi1yR@OUqG!F5`A!502oiD4oqdBVh#
zCMKDfY~m>sPt!k5j50C81V2hKl4IfL!e@k&Xf3>Fh0og)y1Rw<you2!UNkYz#26DV
zm>6q<ZDA95=*O0l@UWfMc*(?g6BA5Kr0H@!Hj{FG2;u1#9?t`(w(w0f#l*`d=9!pp
zVycN(OuTAhrip1LrqeP-#WSQMc!1BNLYB<ymHRTYOw2Yh$HZKDbhll_JnCoGiWc5$
zqEEskE3?4FLK7=Yyl!HViN)kCyyfh{9B&Cdtz+>r6H86-4FZ*kJUKl2P7&`-?+I;c
z;aB(#Y2!+IVAIS&sreccYfYRm@w16_Cf+phrHQ>J-ZJqvE7m>qg^71etT(a6#3v@+
zHSr!h-NZ%{8%(@!`mZfMU}V@6Vl`Oo=@$O`3)=7_jsg>#O?)hE@4Ta!hGG`=doS>-
z$D_he85T_JFj2%qlJ23cCO(%Ymuu-Y-dDU$INP$FZQSJ_uI}WBYw7J`uWidrT~$nE
z4R@Q^BUR;bE;pz9Ozb!DjYtldI4I;R4h<8BO&sO0lK60hBb_gs&id~wxvxCNhRg1W
z;q<uapJZ}9^EK^Rkm26;TNB?&Ip0gxk8~kPGB?zr_$S7_{ULHz<`)wu8BQ%QnDe#B
zuO=><_|3#AI=_iCjG}zuOP84Bzxz1L*n7E<i%%xco46qIQ&xK>e>d@miGNI#vi!>Y
z$w<h)GnCy{`@h)U?*1$LOC~Ne_?+|4u~`91N?RynA<sfN3pp0vdqByxP}cIpc&MdU
z>)oO?W&Cjc+P+YE3l%I>w9v1m$9J+6^0Hfc&fW}@l`LFop|XXmEYz@2)56sjuCZ{f
zg=!Y6SpGV*svrs1lU!SJm0L0)Ru?&^LT2S#fQ9-N8d$i_LM;o|Tc~59w&lMEAKlX9
zy8sf}s;=d~F0W^Si?{asLR`7+U0*b_rN;$ZLko>8|8+TESgdR5aq-6Oc@qmwEfnxB
z3u`T`v(U^!a|;74Jjg;=ZT6;xh=rCGT3Kjqp^b$?3+*i^>>Ue13vG$I!qRTE{&zUQ
zRY5xoH(CBWdUED+*~6oQn=OQB)t?JHS-8bQk%bNxI*KItbK&-uUa9?|)#nPSf3``6
zYPVXr&GJJK1KRBtI+M5bzWJ<}5@OUs%tFS3XCZDOVZpWh$gf(^EZ7#377lLA*DaV9
zEGlysAjl;yFFu8qp-mji|HuJN$0RFRdRQi9A#I_Hg<=a`X`*NHH*xVJD~)+aLgduE
z!@`{wdRw^LLO0rKe~3QT-NId#?_*rRU(>O;hsf!lJuURI{1YC^sdkTrd&Q#$Sh&wZ
zAG(l*{ucU*kUqxc0bS^R_RBxMFI{fwac#hN{ZH)8T+NBV0#^%^53(@W!aNJ}Ej(o5
zVGH9dyu{|PFDyK5VT6T8Ej(snxP>Py3>B9iX5n!uneJM(l}8V!$2M){`|Xn!p0Yq;
zr&hj`)72AYy=N?pv@qJj7z@vet)8<mio;|_hMz2=-Dthe+cM9K1Mn5t3l_$TE51k@
zw(_RPwqj5#Z``h8nr^&>33P7@Q)nx`4zT>UCs&>ePNI{W3RfUpkG*VRs)bn=W?Oj0
z!ZeOw3$KbXr&HM7|HJ|}MBELHYvu97Co?VoBPhHmnZu?X3@vEoy=Gyq@QM6z=D`rN
zc!bVQTwq~|g{2l2TK+<Dk>Fwr>{DJ;U<WO;@H&lbVL6{ZDYSya{Bj`)BhN|;tLSD;
zGOOv{!~ALPwio=lW{ri7t^A2>e=F}z3vV&k!bJ;jTl_n3d}(2?h4mKRweYDt@jd$X
z`l1gkd}v_<E2Ak4?C;a5ay=G4es5@_g-tw}p|UtF&o_9Iw(f!ak2z%i$lb!>d@jf}
z*e8rmeD7~4jJ=;(*lOW(3)?L0w6IGav|R?p4jKN85_|)~b@CS$c3apZt)>x5UWM=t
z2nj8~k+RRi*A~99u;0P~jw2Rg;fRH!mVXMzv)RLz|AvvDH{h`b&&Q5g_{zd@scMx{
z9(8_g<?%S~{DIK77QVCalZ6uuUmc3S=O||9Ht_2FT*xHf`~S!?8~E?{f41<8g)<h;
z($hK=pS19+g;Nq?I8INCgE5|Pkn-Zz@0^A65{qsUe`6MRA{^JhS@@lS*T&U0{*X9U
z+C~{0f6`CH8h=~3Y~ddZmn{EnQRh+~mweqe<<mZ;Y(IwZB@r>lMy`#DHm<Ny)<&L<
z3br4<7^ceEsNLFQAj)g)mAApzMRIgR{u50zm2B{|u(It393DzsY2&K%!5drqM=^ZO
zagFT<%<493*r;NoswBB5<u>hF;nf7W;i_pP-$p|lpEu2n?A0DN{{<ekZCq!ANnVpa
zEWX}G9os*aG&rsExi<f&skng+zAUJ3W3())$+?Mm<>lg4O*4(y5KcGQGFfs{8wEB3
zHk#Q`9Ngfbxs4V!PTM$Rqos{jHtw|1%|>e*ZEU=Kyx=x!+Spe!z$;|q2H`id+Ctje
zxXH$vsqL8CP9(ek$R#hd(LQ_E%{HDF;Vm|bMA$)Y=_I_PjiJr`TX@}S<F95uzuiV>
z8()_Wgjw4Vru<S6u@R+_ZNzO9+vsW|VdK>U1)2@rhARBent7BMHcT6i4VSjEVbeY~
zmfccR_5C8|zI$bWSVB@Z(l)x-STR$fr2O_m;>SyaxvTu7V=70wDBpY=%GmH|`7;Hl
z>jmzht?KzD+-0M?jj=Xfw9&&xPa99zc+y5MsrExQ9=6fj_G^B(jeFRMR|M|0(dSgb
zAmR53_7UuB<9;Fi1gY6y$N(D;2pO1_KPaSAuXclN45(1*nF9sg3v!3pcw}KqUPDQ2
zJZfWSshqi`bL>OG$86m9k+Q6G&akY`<2Hs1?{p~m_4vG}q=wH4KFy~6Qow73jc2la
zq>X2VSFKixS*_i`C`mpqI9hNF{ZNQq)z=wk<0TtgY<yy4yp0Jq*4ud3#zY&FIJny6
zPPg&n(Spe~Ua>Kaj`xN##m39@jpZ3$Q+e-5g=B5HoR5aK;uWkLn8E(FG1JB@8>?)r
zwlUkr92>9Oc*92HdCFXNv5kYTDW8V|ui04ADKO8*d>aes8?C*CHWt}fOs`m^Fw4J0
zXQ|-G`AXxdzMQu&r!z=7<i2v9qLsG)k%@k<_%6|UW2k3-V2zD;Y@F+_thKSuM*jl^
zZ`$~~Z_%r}3(4OS$=f!LKdUhL@#%tfI}6{lvBAbh8z0$t-^Qgnfe$!>>IP1D3i-!9
zl@HnKZ9(_CqD|r?^pi=mi#FR}*2jXC>jjz*XvZG^)W&Wbdu)7WV=H^=K*8sNyKHP@
zXtJ?Gl9cbX@pF0KNh+Kw-K3jB@`Yrry*KYm8++LcHh$t5w6WjDF&keo{*(zEU`Vua
zm`0Ff_k#r#?ygXZc!Z{)hqv}3rwgJF=Mj(7+ojC!ZG2<nTShHMVHThD9sBF=T#|w=
z%7mT4K$%iMFv46_h7w*UY@D?5D{E-u7aJogl<HGAu(5y6EoB0yq`)e*0@v3LoX+v<
zf0owfC`+Pe66bAPV8xPXl*C0FztN+TsFcL-4E~JRNk1n1DbXNT_+RWAc2lV6l8w?L
zX*^50Y~vprrIPq{NicV5u+?N`&ZbZq$;}b`!^^OovcmHO%L$ej{ByGJ3>Aexyi~c+
z!4C*mCQ&_!8X~Nm#8pDBPU4y*swDA2y}-31i46}`O(M5JVDMt4nn-?oH}vodrDhWO
zNi+}%*qqmcwS~`Kqg*G+T1k-eLDwfyCyBaAEO|FnUv%mv(RG%xZ=TX`ky22;EOquQ
z@MB%$B$^~~OA<v%G)<x)i5rs$CXsqo2_&H;aYGW#l4vf4v=D49*ix{S;3L=gt!pEE
z^Ids6Hxw<HsvMZ6Jn~McZ4&L0xH*YX61P?f%$}t1x+#gyGnK+5_D@yXC-GJNB9beY
z1;2YdG^AmXS}D*WiH=FANoZ1LrzFBjM3Q*s%D}CHw+Y_Pa*`NbG0=8@@UsemXcB*(
z%4c$Tr9do+N$rZLA5Y>$r9dJH>X7J37)f|Z+`&ez3)M?1W)hZgI|-K!PlCdvpu^<D
z$`wtD#vBi(lPDHpmn4RC3fx?`C~v;fHHl0TBn&UqA-OY&`U{k~g@HTfDfi4*x+QU!
zG=XJy=R@ZyAHAmZN}_iXpCs{V5_czYPZBezlf=DA+?T|2NsN+P`Xn(ZiNQ(qP2&C}
z`bk6Bga?vXK3(ab#Lg=M1Cn6FADyNQOoFZ6(5&deB<v?c%z7w^@8>GRl6X9chgs(&
z9!a9s9ObbjK3uJgToZgWiIKDYU^rAXx2#gAKRk(U)0C%^7?H#iNjxdZgR7ONlIU?U
z7@V)%y-;~3iQ4OwX9Y<{3VC;Nu!KC%9!X+C5)+d+GgTQoRT;wvEepPo#8{swFD9WE
z23|^Hz@@@*NqpHTK;d{gLp_oplarE|oWv^}yekxDO-bUR<-S+*u9uUT%GxebsCL^Y
zp=n7>Poid>qE;)E8cP-8%p_(du|A1+#fGz!n4iRgB<4u+VnJYT5+~Oby_Up0k-XnB
zpkJ3+D122CtCLui#9|JdB$g(zB8k`OX*2Sc(dJU&=u*EX{gx@;Hx6)wzLCUAxp(-H
z;EOAjPd*K;TBdy6plA&%Ul3TwmR^@xo5Y%eKvgC8%_QF9D63TTw%|J)_-`q1wh4^8
z-5-hXC9xriO(nGw{AZBzA;W@jtFgas*(m%Y!N*&Blx!CMvEUZLK#x2ItIv|y$_U_~
zo`cVm*p|cvRw;??N$j8jllX!DlSKKgp`v-pu_SgS@dXF|d}TL#B-^ul`1D#u_ctlp
zo0aSnvS08(5(l&LLrEMKek3b7n#90$3f*H|xuUO<IG)7UNqm#Uw@G{_&po_Y;iHXk
zao&<3ooB}!rKwRocCqqf5<k(^llVD_)2z&`fnPYpmIO};o@78yf==6~R;JoQ<(75I
zi8)HJdyO+moMq&HRXLZ$-X+2FjA`qX33HW+t-bvphkj#tOyWuhl^y)SD3L@t2h$cR
ze<ks^6r1CqPGR6u5|@+sCy7079!*ioL1_mc%u~uZsA?58T^wxKtcb<F{8osT&vj7N
zL7s!}Rw=Qre(&f*6jq?Tg9?s6#Z)BDR<3YxW}$xzn^4I?xrhC}zRJPX4(CBc)`hNd
zP{l#}l}bLJ;^0~b)g9DuP|X4Db3-dko8z})=91vei<Fv<-(@{Ugi^DW#jQO!xXuBa
zJZ5Xryta8G7bvtzZ3hebWUgn69E@*R^wVsG7O3x_frHjkv4(;Lf{g?l3(lCYG;wg}
zTcM^7cFgzvJRtIB+yXfGcu}wgjW$PV$=o^0&QfS4x!PP`vyE`pko-mmK?nCZIA1!@
z)<HW5rUT2tO^&~)TWbU&4hqS`0Vdmv@MZ@g2e+`v4mvov)xm8JCVo@s>x2Ux9ds(u
z4+ki`-9cvuVNs@>k~ViMys?Bwr9hS(a}XDvD3OE%ssqiz{?dLSy4+}#JmqMC?I7u(
zmuNZ;T-w1wHwP&PX$M^$WE^zNEye9d7YD_Tzwg+U$?G5za?imX4i;4^wV;x(!)s@y
zQg=B}uPk+TNKQ`&-NhOwa|1mb5E}(Dl+!-F9o#LF4MTD^%5|@3GV4AEeH`?4a6gT6
zbKuGed6zPIyo-E*g9jX}?2A=>G0?$-4xa0dQQa}f!C(jVQ)rOFLk=FMYYl2wJB1+*
z9&vD^i=c}~9X#gXh=ZdJhB_EVCvh;r!Q&2wJO1+ic?VAjdCI}l4wNnVPda$})nYEQ
z7lZ;M96aM-q*#F4kY~l7zjjv!94L5BtjERJC=ph3+mDuV#yEJv!C2uh3i2s8TlxM*
zz=2~0UUG2iOfCsm&J!Ihaj?|EBnOinymK))#lchuuQ+(w!Qq0!Mz!<CHYuz%qa_Bn
zo919T$I*<IGw6N}W;$Rcdkn~#<zTjh`5Xui<~aOrk@A{@L(dmg{=Q(YgPgw$NIq)q
z&7*#6Z`0QW3mtsb+T*oY$RfeElZ*a(v53ND4wgIE=3u*n6%JnKT@E&h!@uERwGg`f
zN+GNGxDJ7#kNCrUjY!rCu5<9FgSTi&Np28)N0iqKe^>B5LEbx{Yu@|9Kgdcxbg)sl
zUd~^?ZRU`4u*JbA^woNSmwNK69Qj9YsPU<T&lvL^P%^4t{#I_`PX(Ly%shBcreaT}
z-rOSc9S(NVwUWv~2fG}!d8_!ABSDt=1&zG6c(;Q+V%0Al>=UwA&>G$@^i=+S;Rgh3
zjHp55vmXz!Youp4U+eGhj?sXOR4yvGI8Ik#40LeT!8Z=Rb?^&ah>L$pt`Gb`pJCAJ
zo%vqyvG(}ML5o^}G6#!(cJOyjsS^$s->Lj_heApIoytiEzp^XuRPNXjJjEw+jGQXq
zmSJ_j9Nu+~W5>Z|2md&@;NT)lkZ1MH4gBWdcLsk41G@QJ4_<#t)?b3PPnG`eL~!VL
zIh0@GsHqjGmm4VMqO^;$u3uYTWn6#nlPk#_!6_&@`A{B(c`iQQT~tnlf3)_fT+zi9
zE*iUN;-Zp^D_zufalMPmuHU*)ZlH>gt6Y#@?ZQke*SP3%eSo>Vy{Z&-tzb15)rHg$
zWNu9%`7R*jx~#mGi>q_|Ce(3J*Twkbp`PRNw&eusvF4&fUSCK9mf6OemsA>M?=7lO
zs;P?t7p+{hcEL?nz(sRb(nY6%dCgq>Ts!bqcZJs8dbx~mbJw^04B>5DC@yYbU#FDQ
z+wzNl3ZB`Je|%nEzX5q|U9@wt(#0wlH@PTuF~r3qF50`e*+sF7uCxFj=c2QVFm)WI
z$VCSi9bG&yFE8(UbaJu(RKaa7y5|H|73AJ3$veyB+|HW!&M=D@aS?T4(2Oo(F5)gU
z7d!U_c}s#VI#@)TsJyXa(Ic)x)TPzzbjmFkwhPCFD}9k<giPfRR|@F>Q@;wPToBuo
z&FSJIExcNeFMmfVeDd>P#)aqNUKjVdxWmPrE_#aTy1BTEUH?<CJ0&UQrv5o!xyq*}
zf<5H9l+Yo2x#;cUZr=D;?maH{+)&8M+-~NzO)KPmT=aGEpo>8+?sw78MSm9qXrh10
zP{*iHiXHTTn1Xi=6wf(UC!p001S-`W?BXF853_`%a`owgA9okg#|HJv5QlV89(D1U
zi^(pgxEShUn2YCKjAr2#N<Hr4Nf%GKSUf0ixOn>$g7NQio)+?~i|1U7;N!{!^oR1E
zaWT@xvvmVZ5=Tkv*fs1F4hj}H#>ERFoZw=tkQZHyqZ$9qrOw$;@|*O^e~FGNMmtg_
z@WqbckYmA#E+)CyT;QJ!^sP{;W=_t_yv4;l7xP`b;$oVMS6$3>F`W*7x?qM2o*wuu
zEnjMAp8xb&BA+AnnJt{TtQZY4*TrihVc}POm$SgdLKn+joV_N0k?1dRu~f)nsqkYH
z6c*T`OsQoqj!ezFsb1d7T7eZDBV|gx?&1yBvtQ2lJA)Sv74Z?PU955Ot&8tmtaY)@
z#pf=zxp>pXTP{9wvB|~TF5YqRo{J4G{=Q#X@8VrH>R?gpltQHc6W@37fjIm|84(`}
zR_~|m-X6S^QRwh=?9GfhE<SbfnP_fq?K|xj7oWHwY2C&<dsA2YaN!j{1otR~TRB?O
z%6+v1+g<En>s%b*0CBNP+PKffjI{CvolrVrH(Qqzpc6JfU7+_<zI3ry<WGJTjJNRy
zKakhp`oO`GE^~3z#UbHz$iqVJ?(YZKV=lgCzsxQAN*=+Zo8v;3xk}GA-ZvZ<Z9EQ&
z?_K=hA}5916n=E^lZy*3F1k3ufaBt{i!&~M5#KvW$2(QPzA*O(Nq%*4N+f3w7BYF3
z!RIdJa=Du4T>pG&&jZSNc^qp}p>_UmE`F!AU0h;!<OKeZtUq1s?&lwQ{ly{wbI>Pp
z6n5D~snowQ{~ta=4pB>|@I)JrR~gA7DVsuG3RkCaO$y~wD4+6OsIuf%5Ui9!#S}Qw
zS@IPr{2~5)Wy+s`yu6(FiQrW!Kirj+UnPaADdeYs6s}EyzFIAX>M8V@m>;PXV5^%9
zYR9AI8Y$FF`SFm>Mn5FEE`?em!M(oO`8W!>>bpLLIw^noS68r}Ad}T*1skT&D1|HT
zLZ!RVIE5xDm?>B(G)<u(g-8m~6ap#Ct`}&Nf|5eB6gtfgHBb4A-WDmOAFMI4jn^`T
zRw?iRytN?7*<XS;q;O*j9a89+!sXI|pkQGNZH2TGr2Hl!t;^<+w@=~b6hbN7BEljr
zR(mRxGk5tFHOV_=@9Lbwt-@~;yge)5UM43@qn!xyLN6tjLOcakYRd{Igf#x6%-@^x
znA9Yx3mSr4)z8fh*eN7a7?{C>88|7pDV#3GnPQ~a-V~;#F+GhgDHOA#)2NU}*Ay~z
zi4>kp;l1B7UJ8R!7@Wc#?7I}YrEpgY_p$p@SXNY2xJK!oLfyBE!jqLADb5HW;ngdJ
z-dTRPkb4C0O<`(VUztaOeN%|7Exz!w^7Pe#`%@tH6YNh%67ql`<pWcAFw1%GLn%C*
z!ec26rAbqGB*l5nKS=-S&CtR&Uc;(^F}DVIKEsnqo-+(f;qerPr!ac8vTtK($@`(s
zlazvnfq^rWr&wkRKc#RYg%Nb@6xOHkZVDG?DkD>vlfv8-o=xGo6h@`+d<s(}i@BqP
zyp+P2tmFkDV^erh$T-0n=L)IJYrG^Uq%ctkC6iK^oaI}mD=!P5D)<UJMaXo)nSwJ?
zcvZ-QZ~F!EnkC8Ef=4DRuca`L!!};LI)(XEej>zcSqck;FU(37rLZ{5m!z;X%SUhU
z^_QoxA}e`a$QyzyQ&^Ri^I2<Bc)yLeR&br*n}Tl%zAZ?FcT(8f#v^$zg$*g}<5*@^
z3Lmh)hKF{faB_F%!xTOdLcUSRM=5N|N;aqPah7ip@@S1BYJQr+XIc5y6h6=LZ9=vS
zo@(Rmln3!yyHfZf%XbUeBlxA@UcomvhYqB0Pm=(z<0%}>@<S;c7JeivIhw+;EdPp8
z%WPkA*Vie0Bl2&vx!<MmeU|^gSs=^5(Tjd&Y<VK&pP#4ji|~_z6#gpY6vwHMGg<jr
zA?F0o3r-lUTukA&6n>`}w}cwKA1akb`O1MmIF>61{!HO7A>@Axxg>a5@E^fE#Vef#
zZ{$@bjU3^*SxMP6@`RTYtgU!dtC+?WY21}Y_cSV{ab+5{(x{zA<utBJ<GM87ZW_2c
zjcd}Vk_OLjJ2edOMDe~4LQnmXshURT8A`nkp=;BqmIev0>S@%-@|r^O(}0k6ibn<I
z>cFc_0@tTeCym?ExIK-!X>58~DM%wgHQ`LwPoshGhJuZ<^2TX25#BT_;o*5R;Wwml
zV;aqcx5(zU6w*qtbsBAiD1rr50(=m!pd>?Sv=!1$@Fu}R!S;eT3$|=qRC3oXX%va1
zgCK<+)957pR>5UXF@-#Q=$wY0hLJ`%?Y}+Y6-gtS<uM`gG!jBoK`ooRxM9HLy?+$4
zoGxitY2-H!@UqiL3U{&+S4b+2bXKxwbLh+)!D7w=X-3pwMv%l4a);oZg5B8fZ8FU2
zkw*0yO8+zlq|uW%z7gz|M(;H4rf<wrZfafRj}DPD>s}%E3HC{&Z&rT4kbZ&-mnsjW
zF))p>X}p-mgJ}#(V?-Lyuz@oao<$E%`(x*!G#*Z4h;Sw!7xD;QE-QH~jiFgSEbSk;
zQ*C%w@<bX>3V$jqd0NQ0hJitggHxv~BhzR$Q+YOx$xnuOJ(tEP;m>C!qlJtSd_mB-
zzqnp;jd5vAP2&{~gg*;kN@IN5e;G7EaH8NO!O4Qmnv%xLS-x+EQe&_}hvzvwN6L&e
zUQOd@7aZ$?nQ6>QqqqyYcERj4=5VBUL4_`uo5pKtY)Iq%H0Gu8_|Br`f+X{WED&5M
zxG0UqLY4?pXQ_~7g1@}2tVrYaG~STpn^~QeLRO`*TF9ELe65gmg3Bi>EbT4fZwtPY
z#(E*|3NrUSA!SZxK1k!kG`>pXcp4ki_$UodEBggErLi@Q&(qi}$&UrM2vX-0A)g9<
zCaB$;p?q8V|CqWCC@G3)3rmz71a_|p$vZ?F23QzIq68(VDAO}NsdIyXN)CbqK}iZo
z29=z}L{1V6C?Xlfh*?yWob}&+`{$p3PMv#hy?XWP)vH(4y*)j%I4adcf|PvT3x_lO
zh>!{MiXIbkJR?6L<YX_L%1BDw5%^O0>5Sy7Uidnn3x1oCf7c5=6paJ@&<j8I!i8SA
z*b6`Pf?g}|hv3hGzX($JYcKpJ{P&FHtPmv-X6v85@K;8DPRQSa{|KI!txYwSOCl*4
z!DXg&FI<)CEkU+k>xJvWZwTHLv=xm_w=+8b_QHP|ULb<!q%|wzdtOM8q;Ld9GQ6me
zVi6ozr?9C+1SKP=9YLK4c>O9BL8S;P3oji(86jl_%L!7ad;}FTykZ1*3O{&Hj7?P{
zNbs|;l7ago$QI6OP6WvCyCS$d!|xGtuOPQc)rkLM$^C-W1gi^DSR;a(8D1-bU#`U{
z%#9!rLCXk25x84Jbt7mjguGq^^@TUcNE!-h6u|>Rl#HBrN=<|ZGm@qeG|TYjLh=M#
z2y)z35&y3EkFtR-Lc$R|D5P}+ZG^NX3ZYs%A?*b_(A7Hv6n2zqC&A8w6wXz&ha-3-
z;@^IEjo@)1<lQ3Zp5Z+rcr?Qw6S6u-qfSrZPY6C4K`$W@LAK6JsIdsN2xdnxN1`2%
zz~OYrrOGu*MvxMo7SuCxBLXwStq5%4W2*(&g;y~zf?*L1kDzx1Wj_w}iQp+AeIpnk
zq@Q4aK`J~Q!85|272L5eL?O#SsSXkxEI1^Bp+eYt<ym!vtp2zN#tRuK_*?{|GFdTN
z$n%0@1jh<a7!>A`y&(MMd`Scog}fNSOA$;GPMs+cOwRDnBULDwD%EL%*L$h22$?Q8
zLy$T%BY0K#EJ6FWpP6$bm>0n(5quiK{0M(UNLd=eG9e2hSSVzX;A?`f3%((^Sdd+o
z2npXECSM-Gdl77mU_}HgBUqKuc{7658NNoyTETS@tk1~XbXPYBe=8$-TgW>Ryenjb
zqHze8O%d!9$>s>Q2-zCJE+K5)7QuGmJ2H};5qu<lcZ=lxjC@Z7do!H(X6(B^f)7OU
zq2Nb?A7^w9M4%4x9XJ?4>&;>2)rkl`i-1>cmO~MIF8r|Ik&OJPkYj?!1;1_;J{kGn
z`>RtzzKGz<jO26#UkU$O@SBXhT+P7u5uAy@P+_Y0A%Y(xxJ$*|Dt?OK=Lr6d;6I)@
zvc7%p2waZf*NFep3(Id2{2swsss17OkKmtze+iz8;BO&gHI-e?3n#e{!Nm-}B&1+&
z;7SA>;;P^^K~}Fva3jNSMsO>`Zwq0*6;M%7MFkail?r63*ga1vp(1C!LQ+Vog;f+0
zQdE%gVk(LYzeA8lC@d+xN(r)iX%%HMysV0H!pmnQ+xx1c*M%#pAl@lhNkwHLlvGiX
zEj%Y9fr_Gy!)&@o#l0#zss76q_o)~$OR1wGS4dSA_Y0x0nu_WfUPDDq;k7c7+Ct86
z3k6ivRq@@9P-_+SgfteUq`ry<!W#-U5_~{V5v0z?n?g-g1f|+ku%(J-nbzh)@&sF`
z_-dfSE+MJ55)2DID9ENass)H`q}o=nonU*x4k{iJLY<C6cq7_bMHdwht9V59-#dz_
z=qjYAU^hX^y9?<d_^9Axf{zOx>90N^gqlyP=p{TNsAl9*A=7>gYC_@}c|t`p!&55K
z!gawiyF)Z+sjyY-P_a{mqrz1&OT}yzo{HWo#;F*uqK}HFxFRa7N&%L>LIw)<6YMYe
zwBR!;o)tpP0YaX<79$^|VsJ)2M8#0y!vu$C<h-M%=13LKWhA4RU>W|riZK~JR>%*E
z#@v2E1ur5~RZLL*dkmI|Dqa-+QbsaK#pDd1qT;4>oJNC<!z?cgc}2zajAVw8nJQit
z@>*Y&YI9V~RZ;#>c(saoD(0*HpU*Yc2N!Syu2Wc+2w5n&NX2Uz`RhX75L_(S|HBaV
zm#SEn(OIryMTV~wvPwnE#$l=@XDMq`tX2JUX`PDoLf%yIj*54MZ&2};khcZDELMb?
z?+M=`$m&KFn}lx`tkhVeaI5fb8J+Dy>YNGg;<=&XQxykQbY2&JU&S63dsYAV?YAqu
zPsP%E!V@~Goc?|lgSLlQK2Y&thJPgFW5EL|J`utv8&vyD#UT}^RD7Z0b1}%9jp-YL
zw0u~_5s@4fq~w^8<0?*MBqw>!)b{_x=KFPDs`yO>pGltP=2iU{@V*xOLGT;FZ@CkN
zd@p!Lkea97Qhv<vpM?CZ;+Kr%S0Q}X_hB&nJLeS)pB4N=#h*g{5~Tc`ioY|Q4+Ji#
zxX7In#mFcw(Ki*{qv#RE6%|)iJQzjmsQ(_|H5Fx}C>O<b6*riTDsFMbqbM5X`y}dZ
zmA}2yqFCK9`M)au<H6EXEg($=1+xST2^JRYS294IVo|i;s?a`<pyE+Hd6&j=M-(M8
zyrhs)f~5t^L~*~Um5-uA6xE}s5k<u)Xz<P`Dn)VgK#0$C8V*zrtP59N6RaEsAJ|rj
zB3npK6o}$3;r9vNEl8bvgxo6_?yFW6a(||^nh>={pxHd7W)!ues2zp<l)B<wh3D{w
zYT-Ij<VJC7ixP<9fhZK=bp`7Q){mlr5b87((kO~I8--adJxFOB1u-v*CPK)ALYhX=
zOi1&Lyl!KStu3V5QZOXgN-!M7kJn>VXcI--C^|;bDT=@AhTBEaA&TSSK)ghteH4S5
z`!_ZZMR9bx%JYZ#e3?M!C?1aDktn)E!786-6ZxE>YZNm(wCEPa>N^7uHP#lbQ}`U?
z(I_5^A{~Vu#p6-*j6#hf8pTUnl_$7TQS=f%a9@Zort<HaNEEz2F0LDXbe<B6LW?39
z1^-NoN3pbKAR$Onv{872t~SpLq@w=W$aSeWTcJ%O3O5Qb3Ns2T>fcWA(W@PW!<D@+
zyxCHJY7(ZTcNBf17#zirD4vRfe)f%G>}x@-vBtL?`w8za__W|Ng3k(4ZGe!0jE|6^
z15^t6J%yoB42xoTls_gDuHH7l$GN;e8QfT7K%R?YR1}+|*b>EP#x05kQ7nvN3@tEj
zQM?+(xG2U)@k$iS8*48_F|DySA&QAnyggeXf00Z4L8vNXe3D7>l2j)NPL5)V5Xz?t
znI`zMARoI;k77pDzY}0)o}aH=AE3^PVs;dBqL|A~olx8F4Lx2waQ1`HKZC;aqToWz
zkK*gmesy$iU`~_pq9|Tt9!9Ytir1rfg9{PGvM3fu{gbN39f2jBT4RkLluWD>*f>DB
z$SqJQusjOBP1<H(Xaz@~r>u-(m5|kfYXm7@8^yW|U(dbyR+z%KIPoYpvf3#8P89D(
z@g5hkL}2nyL4MA{(tWtfA-?Jza~3F@d}mZnaBCFX=n{{nD7MS=k1%_q*b&9fDEP|v
zt|&f=;$uqog?2~rz6kdS?iHlYJ|X*~_&~^qf=8?QZ;WsGGj<?~pI7*QNRodN#iyM3
zpD~t$QG6!+kl^Qnhcm5P_lJ&gXGQT_6u(DtB8rnyd>2LKcU4|$nZu`|IQ?<xizu27
z3V$hhTJS4D3crrx8{yvy*5m8ngTmiOapxR`H-u-R_<{4<6#7w+<R>9N3;q(tuNnEw
zM&Ywj{K1nv3LbqdykFvTl|QBWm*6>`215SH=$sdFA&QGax^`6Ak>`2+Im*>2u0_!(
zh6iG}9>onF_%RfV`5X3T6oq3b62q-1sCk<S@RZ8(uaN%)3&c<`_P_EhA%$X?(a%@o
zmjb$O2sRoO;tnky!yPgIHRjqel;9_cuPPN{I5XS-h^=G{#8QH#V<;n}tRUs(gp?P2
zX_HbhhC5@ZBz^CS;cg+7W2hp82D4+x$#BH5q-=mfmU~24P4M0r?#t*@jp6<b=Ovh$
z)nlk3lA0NLt(bq}v55;^C*~hnxiJKU)D@(pUJUg!yn&F0G5^^Mo0J$D#}J7@jiE^l
z!5AKjp<@h98Ssxne6KqkLo?y5Hjg1sc#DjrCGBK*E3r(q<*zFb#z1TxLmMIFZDVMc
z;q8TVh~a2sjZJi;Qw%+%d*_UwU4%R=_(%+0g>)0_F31mG*zr-}j|sB+xR9QLPY6CK
z*eeEp*?|htnEwnv7K0`Mq$Dm1UJSftO$etj8AB?Dv{dyNEFngw)f7^pm;Y467VZeT
zG5pB`wq&5USnDH5vrh@>8$&-K{RN-Sv_5$|Z$JzKW7rtSrZ@)0FgS*!hLnaObUTLq
zF?<liuo#BNFe--8G5;;)iNymWxEu?V!~7IDhUb{r1C^{M8o%rGd<<h^cr%6#F^r92
zTnul-usDYCbdrO{@OlgrVwgy8*DAAPcrk|F)dPGu{4#S%IIELlm@IsX;M9zKnh@S*
zzrxLOM_{_(3_(_B3VBs<7JZ(tP&g;%ABik;h0GJ2FStN(q2Qtzctc1vZb>&3p1MeR
zv~hR|H+u}rm@qLk_&m%l^X8ih?=yKcp^3I4hP&znR??+T>MFt2f~>BIVQq%56S6)A
zUWwTBRt#^)uq%e$F}xGQyBs}+oiYC@eTfDBh3vf;&KD1C6x<ZUW+9Yp5wbOgZ5he-
z7*<pWuxV2@Kf8LoAL?8_@O}(?V%QtQKFNye>w+(AQTVB7Grot@G`wt(!t?6G7(U{$
zqoIU`k7GE%wTR)b7(R*N(-^*s;d{C_PdOOFi5O1CaIsC`vl#xqGjK@o^B4{bq2vhn
zk?>=J$1`$1Dw(@6%<muV<rj$P&+Ez;f?o=r7W^uPuZ4Ug_^lwn3P<HLG5ioip*n#-
zIE!^kvC7(yF_eBk^i#}#w#o8y48LUfuR?wk{9W*@;PugA-tY16rgQWvhMPRDWB7;B
z<Dn75jToku3V&HVuqzz6z&T2|E(u;1WJs?Fxhi-qhME@(Q#iX?n0LtQwuZi{sNIg?
zUtSb66xZ-y3@z6Ndv6T$-n)Q?hO?D|f+Sf&3JDe#EFxG`L#0t6D%5>d`F??4c>OJ@
zp_GO^4J|a3)=)-69Syk}A{7E<HDqi4mtV-sX(%tk3W5~{DZf)lCBe#qRRnoIV-HYr
zG(f{$8p!X~P)!K=JwomkyiY^bjGX_~fzQLKP(355p`m7m*V0fs!<h`@c87T{5ztUq
zLp{yEGV%`gXdp~dUqb_tG}OSaAUq(P@}LGqcw@mP`Min7rl!K139{N;!^EM!sg@c-
z8XnW|xQ135!Ww#LcvM4?CCY;uI%>GkAkbQ>Z3HQAtD#+nw-?fZ^Af`EK2U*QQ0k<i
zGv~6>=Us$6tl<$MT?M;o=&s?3CR)DE!BF7P3gz1&%Du~#Zp)RPY|`+g=6}tErEe3h
zd6n1$O#(YU4E55mt6m@?s0v0k#Dq|;X^0C?WF$>CD`^e7hO%*#i^I@hYFMjbod%1Z
zXc(tqyaq>utD&!kei}Rty*2dF@RWuf8x?*@ijlu}e~78_X-og9`@u%x{u-XvFigX6
z4gADpez)*58hGG5t6{}LWq=^bKn;V04;CCEI8=}aBNh0qB|Zt~a*xpbZ)1%Vd``nC
zA)^H;e_qHK!Lb^66j1nrh6x&`YnZ{+)KK#M@QWH|&QUtv7v^WvFKPbuk!6yG$-<`y
zPR+=t33*xY6+zw*a&|KroUNgS8YaE2ysG*4A+t2h7BWYWlDR_WX_%jpEa0Rn_$Mci
z$3+@mqi;>L*EPH$WU=51!6kxA1(yjf7yOoP3t1(|?yH5Y5nR|rTd(0w4VN@r*04dt
zTN;jOIIiJs4ew}pSHpW6Ha5|ASB<^#q{=1Z9~v7q?9}`(mTuC(6Kt~}$rcS;Gklwn
z?Obai>sJM-uuFRF*6_ZDJ;D!Y_(aHF4f{0g7yg0ZM;bm9!hv`*_Hl++U7&m_{ByyB
zf}dqt4+-JpyTcjD5e-L$^V0#EI-%jDh95Qj#5vAZPHFxbd%CB}W9<t%c7NbY4X1^C
zrQvH0-w6L+kgeYe`A)D$1OJcoGa7!#v>vOV{VajyQO4KIe$nu&hTk+ioEtbNNb<Xe
zvl;$}kUus2C1m`=Di!|DwEiRHyx;}Fi-O!KS2SGJa6`jQ4c9dPIo__(q3b+*n}koi
zt?+w=2b*ZTSl{9S5=YTEdejcw<|$M=@Gq|dLdXlmQBaz)1Su&bq_800Aqme_ipBl=
z3Qm)}cpSt#;wT}cq#z}w;wUY=jNngAGz!bdQ6Y{#aXb}A#W?Paqgfoy<ERuz<v6Ov
zQ9X_-ab(B+4Ss(dKi?79-zuCF$G+A9#QAZvf04Q?j=P25labsj<i0qn3fZ+iL^a--
z@KmRr8gT^UXc|Y&IBLcH*P?3Ee<9>`gyhB%5K>pLUZ%Bv9A7O`sMb&<jRYSMR0JCf
zQlW`>OTz0iKZ;`VR5=~Yi=#yxPsY(Jj+SwMv$v0<L)^b72~n~>*owgsLjGVJtuwrh
zkhXEO6LO=8Mumss;EO1HX{wu$j)I*8I}3J+<6$9GdnAso!udp$)$VbyV-G=+M}<5V
z$KyhJX5>!@;T;QK;EBYMjzf?8`LD(ijU&~#1xrkb7DqfINyL%N@RX1ymdZO)BMv@!
z;7Mi1{ToF~ki?F|$#6FgFT;Ds(Q26g@<!h{`o-}|9Mj|IAIH;ijEv*CIG%~)*|>jB
z4v>W=VW||<2FCH<+Azx?A%o)>l93FJV_1d{k7GoJ*9&T+WJM;@^5HO-W^^3Si-dek
z9Ah(loRIMxHzS!KWa{3~nc?b-5}%jim?VU;njFUz;Zrk`X+mBWtT0fW5y#9pR>iS8
zj#uND6~}9FydKBwIF>XF^JbnqcMkI;sIknAW1jH&8OZ`63*%Unk?dZp)F>OsD-+25
zDfC7hi{se7Rbg2Y$5P?T1ea&zD}<~R<j;UGhHK(j%Spw-=PInOkNdB@j_9ZE9jLr1
zoYf6+ye0f?!FL4T6?{+dsHIYEa~xaZcqD<Y32cpH8#i47wG-GL$BsCz#&Io<opJ1n
z<BK@HjAJ*$62~5XL-tYs3zd7~_=HoF-z3=^NAH#4eS-Vr_&^9H9}4+M@MFOPf+du|
zr*RyV?w@fl<iw5(KNQF38JmZN9N|nel4C-K{Tw{Ob7oceWE`iYZ_lb>-jdPCX&wS`
zTxMX~hQDU6#&LeBaw+bAKlIx;{^Zd&Souz>-^X!A$PaP+Dug;e3i(O!XTe_tc?-wZ
z--Q1zcs7ndgd830H~kgIs3w7Pf`1FL`VU9X@C)2u!awbyu&H{RK%%Y6ySOV1=`y8_
z61X169n}K&B~Uei8*$u><5nEEdEO>aIe~xU=-4DMa*0wpf&bztkl=43g$pK7Oh}es
zAwkLuCr~8AizcwHet<%j;v&2wff7PWW^_s=&|{0QP$mHm!BRGXav5G;NCm-)3EY{H
zPpTK@#Q$g%sFJ|G`T?~|I6J|ALCbH$`G^GW5^}d7CHDxqH-UTkL(E;m_a{&-ftm^M
zlfN7WB!MY?)EWtY;TRV3Ev3WtYJ^#>lR$0)Z4+phKp=s-2|SR1l0dx#>L(Cv9d5{s
zeNSnSz{i8sb4sAoBVkT~-`#GMK)2T61RqW(&?JFy0uLte_7EkQz=Y<3ZEJ!}rAkRN
zA<YxW6VgJkrC>;~l_0xNxpe|<=u+zdzePT$ho5-d0z-mY`vf{9&?SL~6L=_rjtS6*
zzK{7oWzZ>s&Wzh&m691jZ9y>bNRBq1ztylS%(**5lx_)hPoPy2;Usz_@Mr?J61bhf
zV+lOY$Rsc|fu0FGk-*>th9vN00=*J&6Yvs<Bry9GB_*f|vKkc<OF$D67fc8y1^Lqu
zR7(pd(S;ZZm_n?K+!o>pwwkQ=X26##!?uL(YZmAuoYkj<^i7~&0{s(sTB-vCpAmdk
zkeXdqDg%WN66D^YaA*R<5*VAnIOapc!0A?j-_GO>PhdoX-_!BGEI(4nbAqE17%k*^
z!7+l=nY1(1aBPUd9M9z6th|uG+MqT;aH1fqFA8}{aFXC;L1S!aS^_U8u$P&fz$*z%
zPv8W9LWjl^n3=$m1R9SEy(&nuK*%h?*@ANtn44*xm%x1Ci`NIKyioWe!Pf*|7kopI
z3X6sGe?%c)DtwvXa={gXD+N~xu1@%WLQ;7xw{`;S6L>QL{w26Qfei^%&keI|6!Mnf
z+X=jrk-wY3dl}Aa$0p&MGm<SrwhC@b_`eiEQ?$Gzft@nME<s9mC-8oT?~y#GaDM_H
zB=A!LKPT{^B+PM!QOHN!n+Y5c{z(F#3t`rMn!rKfpJgP6gnSUx*m_v_kpzxrT8{}?
z-y?jI$+j-Yo%M~7Q-WUzewn~&AyoKE$k#kn9}MK{f6Ea=f$s#r7d(@|4?=zvY`(=m
ze||~$KWM-|uFnbiRq(e2eiw39@DIU11^*IcmxD)wfAfIi;h(^HAr}O%3SJbvl)z;n
zR|J`~)MvRS)$2U}g-~)+NTKF|e|hZlz)Yfg5(Sbdm_(^0N+*$(M4=?kZ4NJO6)2p<
zm?6sGdV!oFN|B_0;VUXgQcOtkB<{#aN(d<_$n8@miLyzQOQL)d3m@<wFL3o+H4Riq
z`UfVj_z+Sti93Z<5@b{5B&rC{7R<@Wdp)KsZxFaE3F6&J+#`hiULp4-QB}zOg0=39
zv8hH9HIsNC2_=ain*?el(J+ZdNz_h)A*z$)e=Q8>3X%kb)D^5JSU-sdnO6Q{%&S{e
z9&!9-AzqtoS8bd`6GpF1z;5Kv&T0|}CjGmDrh?4`n+xV8(LzW|!H^&|`>jwOOrmuX
zi<4NAM4KeqCXwcdNwiC%eG)yBcp`}oNj$_eTmsuMiB3s$OQL%cos;O2#3M-@xe|Lg
z>2EF)-i_R`I!w}4<TKt<$nOt_8}w1Rru^ZKN0a^!hCG(^A3d==p7ehOh~&v6dL^MH
z5l`ai!{JC0(IjF?d^AK+1;;-a=+H+!utYhO7yh|!Ady5ei64R*f8K<Tl6V<PCHd9e
zDm*j!b0|g<W)f4An3jZ<gq_65B(|*be<`R&<A9Tdn}o-yy%ijk#O2n3-opDN@l+Ch
zg+C+MPq4q>(}L{6pPhMD_yECyf~!6bv5BSzCox29k`EO!EQ#SlMr7oS)pJRVN@8>p
zC+qo_-3duNFMNz3g=2+`6C9t!3qp<!46|t>(@%c#<;5gk5<W?Avfz|VD<kuA60a~0
ztCe}OK*kbfYumu|B#1KvX9~V5I7@K0;G87p3ZbU`kUBpJp63gaDE64bvM`B7!e0}7
zUGNRTil=j^ur!HfNgPk&1h+#HD`+Z-ZAq+5V%(Y_)A+3<_!w|i600SL*9bD1*9uve
z#Cjob3U0`>E*-4AEggq{6nckI{V4RV;Co4I6hg@+A)5ua2=Z51wkNS8i4T(aFo~j@
z6vlri$#UiHH-o#9Anq1?UvQ7$-X!)3Ve5V&d_MURcfm^K;|)sJV8AC*J&?pFNqj2&
zU=oLgd?rYpLrHutyz;mZt1L&PdQ|Wj52)@cg(s6ZmBb~cJs<lg@nsShlDL?}rh(zp
z%yS+fNqm*Wq}9Q%1xdbPD1?8Pk$j)T8R5KAQ{ks1c;oR0*X2sy&%#;#C5c}%{I?{2
z7k*ao#5Z9o{3-f>39{okA%6@0L!X6k1=+;C$!rX~rRbX#{-(`k=9q-{Y7*CyxXz4S
z6a0_Id&(y_q<T~Emf&r{e+91vwSuBnR4_}By$T5_ELbFkRm&6#S&E6IxZoWrln~NG
zno6foCWY5hcs+%(DgRd=yQa`Bg>osBPoY8z6;r5^@_!-c&J-%8@N1y}b@)x#lV9f6
zd`799!hpYm%XB3>g`5<S!d)qZQlP@!DcqAnBjNW7R!^aZko!`oD&&4aDpwQY4J}lY
zU;a&@fmCY?1~NKzgyagAZ>q6Z-4yC&TI&m;g@!^_%&kI&2ZSpboyI9NNg<d*Q<1dH
z$eRgio<g3G78!ZXIYr;jElNABQV5Ii!4x_PY0aq>Dbz-ITfugMRBoR_hYWuxg^n5i
zXwSl(g?ABrSnv_SnWuBuv3m+VQs|dL{}dig;jt8=Da2BEJcX<dfkp?zY6?A5cp`--
zQ|Oh#hlR7+eU<xiJVq?=eJGLwadVZxiF3JSYs9n^D4+OUuA4$!ctViEWC|(aX+b?B
zH&XbtUBFDi5{WJ72p%j`fE~RQdNU2m`@B!4*HbC<O=0|>K?--z2tA#`Gfbq6d(WmY
zJ%t&}6VV@-!k`oer!XXiF)55qVa->$LsNM9tK8>=4@+UVkP(7x9mzq@=8}vOHENC)
z^1NXG4gofeOJPC^6X`~#*9$@}eC2n1F@<SVPT{2#CW(Bq;8ejWbVKa33&|@YWUt!o
z1BFG-dCg2=miYgwVBPXXD9n%loD}AYkkxrY*fc+d1;Q5!E)sn7u^cwNk-{$sutd{7
zS)9U>6qcs2EQRGM)K8;98Y@y*nZmvl_KWf=!OeoJ1=k3!O<|po^(nk5WJ3z?3Zdn<
zQg~bVJA!qrqAc$T-<Z+almdnM{%lEMtH`&duwBTG6!r?4H!i$W$S%R%DZDR)9rt7`
z<lFgx>&~Mf4W#i=3LmF%HibV#`9KP%QuspnC(N`I4yN!~#?J8+4hjEU@Nf!8gd9!b
zn2>tnKRwAG=mZZjk>^*x6#g?&$mtZmO5y7izLDw~!EXh>6Z~F~{?qIa!haO}DI?D}
z`zwz=k>rp2yYT!b_We_;RnquN$hj2$PT`*v&P%nFtnY;s3Z{{j#>EsarEocgD=FMe
z;Z_P)Q@EDG^%QRWKePG9{||5Td`RIxZf&vle{zogf4oo{h10l06p9EI6D%tDf11Um
z%3dXel>C3KrPC-Q)v{?+NTZ_ga)Ra4eul8znbEH#5}K_n5(bbZTX?=pY`QCrs%hMx
z#@%V$BTe@T-k0e@9rmi0Ms-?CBUj`#(x@$@rXY1{Wk#nmt1JO&s+;klo{;?35i7zC
z(`cPWn=~4w@jx19Ylf9Hnxqj-qp@_P<XE6+Q{kb^D9zGnE}TtyLRzFj-ZCR>B_u3J
zA08A!Q{-*a=$uBEG}?)<y<i8yhXgwcQnQl~nk9cYjh<3{B#o|VbQ4#5r15AP-P54`
ze6{?69?MvGT$<SZ36VT0*h?@Xs7lBDUa>SZ5ysPaR!BmS-IHmg(nzPFr(vYgSLCLk
zD`*K$92d6JaD@MA7G;%vJ*oCiqmPiM{$FdqH2SCUv`DD=Os0vP-3Mgk1Jf9k#$c%q
zN#nURMhPD(I4q6fX^co?q*U|ACDO=fk&ui@<9XpfiF~Z^af0IoUl5!iNPVikl*Xhq
zn!0G_VsaW&(g;|nYhh{{)6)3ZzySj<r}0V}&**qo$MiI2q;V>ZFVdKq#;a-UNMmOj
zv(lKI#=11tr!gmuxoIp-V_6#W(wLvdYiXRnoO{>hg8a?x1!*iy<KgqUrLwc@Udml0
zoWxogd_B$o4uHjJ{8O^X;_T3pG#=`suy~gWQhzzm|1?&nvG-bT&)Wr8rJ*bhez7^Y
zS}YX#EpJU4YlRnBp>jAjy_v=aF6fQit!ccK#@lIZOk-0TcDm?0X&iqg=e;!EO{2r@
zf-`eM9D=1@p#pSrvpBp(a8*Br);QueF}_{!mFu}H&gAY&V|N-y)A;E^?)z!%N#j5o
zpQQbt7T+tv{S<Bv?n{Gnr-cvF_>kv6fBkQg^0BCqJa#Pa{O@`7rzoGMaZq|47W_=`
zP#V*-e3w4w74UXJ4)jlj>>~`t8Q+2Bt8<Pq&Mzs)(>NjIBzMs5f|PW=<l~oVoaULM
z<9;1qrSWwd#dX}F<C`?TP2+kRH`4enjqlU=BaJ`PIFrT?95;=hx%*ZIe@vs^^5E&q
zxs1RCz34A#{3_G`J&oj*EDl7+e&Z0Ab0;qko|Ps_0!_8Q(m2PnJ&j9Z;crGVjSFdn
zT1Ee1jy>&%l!ejeD4aX_<uqvID)kE$xFR<1JC#@8D0(f8p__wTnwx3d;w3{zAsx5V
z_&1IJ(kP(&sYOo)UC#0@XBE`(hNsXbT_Rzx!a9oR{#<CbsE#GegKzX!is|rb=g?L5
z9l0`CLPtp*6?9b8QA$T?9p!bj$_|y$L9<jVtNUKPnN^^i4kl{8kP7XZYIo|Wq~k6f
zckBMTSJsiOBS%M-jAQwE1sxAPS@@^P3j0!WkB)nFe_r>o@8yC_5(+ts66bTjyp~%{
zM|B-t>9&p<I%?_&>v&K{EgiLWG}O^ZM;#rxIs!WC(&y}KcIR9gFA1I;l0#SP>8P(`
z4eg)LZJ=Z3${-6B9?+raXr`mN?(f0I5|E}kn&=4X{!XdeN7-^VkG;53#5^4>bc7fU
znGSbi8>47T;anZAW92=C8R|K|<h9n(Mn@+doprR;(N0GPPFZHhfmqt>h&I*e19}!_
z5IRb1i`Fj8rY_=)uckx4ne)gVU-*a!U&t!ZT}Kc0)e+P2sE)^U9ITM7isi?3JfY)B
z9jVJ%JsFLi!9Gp3Ua}B3E@$xsXtOgIp<_FPlez~O9Gca1#B~@tOdSawNzPiw;P(qZ
zyQgqU>?AG~q%!@~#eu{`g&AV$uys78qc6|EtOAaX-a7i|aG6NDzx|nP9HoDD=$GCK
z&o0I!c)MUf9pfpK^n18mHdp^?9m|&lnS``IK*vBG9Sw9cFo-_Tj*g#o3}IsESf^vX
zj$t~6>v&biEFB|sjMOnv$BR0i(=kfN7#(AEjMlMYOqf~yyiB~iWd7P~x#J{hU(mr5
zgDEkd@wuE!A1281(OdfPl8#9_Ue@u7j>$Tv=$OX6a3gCfS8#c7_=X(L>rLs!P0Bbh
zfYW6<Gnj-|b2-XPNgJBt=AEr$4l_!}QXO-3%+s+*$7?#~>;9p%P)8&?#H3mv4h%S;
zvbwQK_UqiU;wp_SmZlM>^2n)4Czml|I#x58brh7=6*^YROjqf6_qCidiSYQQ8kOlA
zW6q9iIjQaeR^QaILB}ULKGpG-j<<E}*73fMci2(K79Cr4yr-kTY{^YJHi~^tlY!z+
z+|1=`s?iQl>1{f;>)0VlO9_YDsbiP8!LeB75^(4}I`-=LK*xtV_DTLQ;QJ*+WsIU!
zV;rdYk&cgb9FXC9?J3NRdU;(A%`zGXb$q7dl#VZS9MbW*j$=BG%Rq;99F<7Y&Jl@!
z{<wuYM<cRjPUtwvljp;tOg}nv)>FRJaazZ>I=<8K!}u!PdSB`ITE@M-Gx&`TPLrBk
z-0yXq5kG&Vrc9Hb|FKYIG#1LXZQQZNFFJmuCkCn-_)W*}JX#GDHE>qPA3Cn;xTfPz
z9e?S#pyQ&Bb289BM4s5amA~b1W?s?lw48V~_p6sAN|$w9k!UmJcxo{e9F%xn#|`$?
z@vn}XJkzH5NBS+sWQm`>`T6jljsga<3=}f_Gp(S3ud)h|FgbZf6*l~Q=Gn_Fz%Ksb
zZ=kq=at6v9xWhmR1Er;7Ndt@t?<?4a9+oovEMgFNDwZ+8IFzOG`CP`ff`N(#aty%0
zodzlysAAyr-pcu*IXuiOi!}~MAF_pW2eJEI2JV*Xy<+Dc10Ch0<?>OJ+lQy({RXNT
zXl$T~f$9coh<-x@H4W4<kZT|yk}0)wY8(D_zm6coLSENEJ@LGO;U7CWPZX{%198fn
zLb-;8IsHZk9uOhjQw;yyppZ!(G|<#Q*uaAZni;5bBP-893j;ign~NHEA}3ynhrfZ4
z_>e!rRt9*3MEi_bYXfZ!v@_5~+~DPscLEGZd&9rRJ!JTo<_^-tTq@XG$?Y2GY@myQ
z=M0RZO%7+kHQ;f?Gr3(2JZYepfo=x68|Y!+Q3Ee@3Or%pF#{9#h95V;+ps?TQJ_u%
z>i6VAw~kKlqp%tnP$gnOHIOopHV`!sGmsRsnt^wlYSfP#XxK_6Nf;<qEJRcG$vjp&
zZ7i%CFbvoR90T)f#!Lg2fx%OhInVj}EbO@PMBe_U8Vjqv4fHWE%)oF1PZ{WI;8_C$
z#M^!bo|bW`*5AN4O*MM>jEqP(XnY_Ke}g}x=TCVsN9<pP<a$$WZb)ssNF6Gg6`J{@
zj1V0<IlFewNa0`9&N*^DZ?u8u4J<LR)W8@6V-37&V3vV#Oatbyfyo9g9u2-=U;^XD
zoqHoUbUF7$Auk!2cC{rXWBV&y!HPFqPBAdmz;pvM*u=HIocl84Y=F1u`5kGB!aYZW
zEHnAnfizJ_h1mw?aBJLbxmb+PW%LXzFffmsWpxhaw7{~^z#;>$i6$*mLLXjddKma&
zzM8K?gVg6h%M2_xu*tw?PT9ap18*64n^|XIwShGT)^f`I6>6@&l*PX546HY>!2o@G
zQ+%VJY@#)KNc(FpWsSVv@*Spuf%lkQeX6i8%SKVACsbpXEe5t4*lS>)c(~2LP6N9*
z=%uXf26l*$YWYL&mO#BP)1;|A(wZOA{RTb|%Z&erJesby<Yxa!B=p3X6r<0d82FTV
zV&WMS2Mv5?;2{$oO&sE>!o$kM9VQMNIAY)*1LqAKHE_(pF9v=!aNNKN=9PhOx!gzd
zP8#^az?TM2N%f6U3WcXRE=O#peJyypSb%)cm0T8*?+pBXCHD-2Z{T|#HOGQfAhx@e
zMTH*?{A8egGp$yCCEiT?*#L2HGwnA6zZ*Emm>dqB<=%WceC<}jKMnlBe7=%Pg_pXu
z`12*@F9SsO{oBC)nMG-n`WKjx25uO*Y2cE9%hF|LGmTAG#DQy^_-N&-$ZHG;UpGLP
zPF>IadYE#Hr?i2>CW@H;K>r#jV4|Rj|3sORE~SfPnfU&BrI3mDnrZA#PQs?5CQdZd
z7?5Jp_gpiLKUhn72@@qv)HYGaL@5)crL~%gGA7EJ$T0yE<xG?}ai@t&CMwYK(jYrl
zr2erWCtIxf|HiYji7iuO*`^<mDuPtYme#vW+->4M6ID&zBOMn$QJAgY{T;m5#Io}~
zVfAr4e7`urDYyF~kCN&pYM7{LqV3DE1@&UJOpKVUaLHOV*K$q%*GM!r(ZmFUT-QW>
z6Aet%6AO393N|$T^`)IgB0RJwXqL}@z=UGr^{FuyHU&*IHPPBc8xze;G&j-8MA$^0
ziCfcRElq?>v@r3|k{nj^(}N-9i0odqXN%U`a~_n~GHqzTE#v=!O0(@vw39(^$tWF!
zH(!#&rcNe0n|Q*+lP0>D;95UoqN|CAMTZLAn`>@!t(%F*OgwI4!qixI6Fr2GKPrT3
zJtcH>fJ3u7@_D6~SV)*inuwTCO+-baF^0#2T)3EtcSb8z-tm4gZi3iqMNafkC}l#Y
z@}W@LM9*7UBzKQi3=<|7ZnR>VSle9dZ{nL>LED65VhlYrF{8QW36k^{(#OP88A)Fu
z{lo$lXn{d{*2Dl48%(@qVjz7p`7hxx!Ngz_Lrjb`F*&QiP!khJDZ@?wU$zZ1@maqx
zNj{D+adwo#D$8>wMwu9G;(7XcGB{TB#|W=KEQgYDCdQk%I7OxM-^+s+iv=c{c#%tQ
z;tdlonfy0%m|<e3bewErnu(W9>~F43F)`Id?@~p^%~VFnSg(jq)d~gv=^U7D;;WI$
zpjkOI`>Kfr(lpD&Y!h>Y&owcRZWqX=!rNPe#P6DG^QDPop@~JpUlW`^vnUnzpHvr{
zSYl$OiB%^5skA@$WhRyjp(hMWu^&S#=+)4iFK%Sft7)%RS#4rHx4=q&h&5azaqLoa
zZJh}sb=dT#3F=efZ7#iu3k-;fce#ss-qJ}E8%=EDtWA8tEuW`t<}T)-Ccf?%xMy2%
zn~CivcAI!#JlSDlr-@w|n-#VPhhNHlcc#B0d$_f?1^0;>$zE>NGr0^Po2IV_aveW3
zaX?xr`N+h_JXo$|eZDOi$kQnK#6<8y?x&*Anp?@l=O%tI@gvWF5q@dnw231oj+!`T
z;<yM;aqCHjoRs0XIvn)HZ9%R+ZGOQS4XbkJ$>3L<j)`wgd?yLUfRw9W_#3fse}w|n
z{NBVFZu2WywF+b>b|}Y}2WjUg6F-~y)5KrQ&pyg8CVpr7nfO&Yve$1iXu3y>N{{=C
z$nuBS&*$fO_?Y;Ir;}vDc@x!dW^o<!TWi!We96RR2Ejsk3s-m!m?&=H4hz>zTsLvs
z#J@5SyW9|RGc)cjA#~|K69p_3vQXIa6Q-brEX!X7=I7uQegv5F>sADdSSV(p`Amhp
zs0AXMDpky;8c7N1TSl;?g;EwuTNtr1#wM=F?G?eY(nMvhV+9KpE!=0Js>T0?fJzqb
z=7<(5Tc~1z`M|Bm0A@=U2<BLRF0ngJ-DTmo1+moDVB4Yo_F=i#LI+8J`z=(nkZbv&
zu5O`*#ZMXVbg3frwx)&J;&v?y`5THj|ED~z5iM{j=a$Q6uX+~hTj*$`lZ^%z8d{iR
zVXlQn79OzRS?Fy+vC!B;cMCl%G_er0(9S}83r#IFv(U;yn6bK^+uTA63oR|=NtKd9
zg$l&;wDA{mLly?+X;Y5{$ypw>aP(qsYYQW9WRbLyYFj~8JKV_XVBsMPoh@{sZx;T2
zC)mjXJ3e<gmz;!1&4(>qY^ipWj*nRA$_LTMf-F0_v|uZZKWgDI3o#3tg^wpFk6UOn
zI~K9f)4~%Lp0v>aM%I@rgS{*e^X-$UGFDWO!U=g=+(N>F&9L9dN?J&9t#4$RqCk?C
z`RW!5-ppk&gwO}e!o*c7{UOpH$AW9&-t&byD64%eJY`{;g_kY#wb0MPI2xo&TtN%N
z&*zS|@Qj6LEu^pJj$*(s<qoiLpi5w&g~^w*T3pN>WMN^RM)_b1L!@b_;4s1Ag47?u
zI17I+BWdtZi`KUbzH%n_c?;kDk~hWz|4rdo3ndo^Stx(O!UPL1T6jr3q4GqF|7@iN
zz2b0_=m0});rL4mt8ATOVQ;a(=a&mpq4QN=@(Oo^r_8W0)53HMt-C~Dtex}V&8(j;
z=DuoSmIadh>TC<|=4q@F=UJF<;e>^g78Y=J7S=L{EiAGysB7Rg3$I()aW%J1Z{-d8
zV_~_46^vL`f!mXnCE_YumkL>C;m-$h=ntp1(!weWk1r0sajhUFEUPW75ebD<Sa0D?
z2FJoD7B*OTi=$ZB$&F*-9SaP|7CLF+Jqw#GY!(TpxslnvILHXlNVBq8oOR`<RVdkN
zVVi~R+`=^rQ_kVCDi)!UT^4p**u!XBcwd~{YhfQ#{ahY}RN%b!i=6xek>o55vip%d
z?IR{Iw_Dk)Bb@@AFIWFl3kR9`63Ndj9I|jk67qAd;}$=e4_lb=X3iTEl<WT#X7&2T
zTxQ)d%YW#>Xdjo39jj!Yvhalk*tpBamljT2IB(%X{_$nudkbfTe{JC#3*Rzfq`Ib$
zl7ET(YjMsG7Jjtwi-lil)56kiK{owtVN!wYA65kCSI*|S`kRH{xgr++Vzy6G&dQPd
zhnPC{oT8iIpYt@Hf#)pzZQ&owzpC;w$8)UN75_qfqE7Upg-bl@ZIrNanTJ1*1q=UK
zxXQ!d!c7aexTgGL`F6qU7H)`T+F?fuZ%dVSA|3s+oi+>DC}^XIjiNT5e6dQFjlwpj
zpAHtX{fhz*M&jxj3a`}cUd;B-|Kh|wDle35ns7XiSkgv08|7`3vQgRwFUn<TWJQqO
z%ZeRJ+@)#-8x?I-v5{@#P8*e^sj}eq+$invnodkjR&qqhOF3u3>nZPE?zVA{jm9>b
zNYlMGs@tex<31ZzZQO7B!K@}tyf)DYFXEhCO&hgr)U#3FMr|8)L?J*Sb8>MGFW<Sg
zf2WauEvqZ7T!IERB13Z;+Gu2hi!!=aVHzATxXJ^ze;rh8?EE5+WXxxwppB+B!qTys
zU~?OJLg)r#)k1j4MoS?ah;eIW<0D=fI|gX>K^v`Yw6W3FMtd6_Y!ttl#j9{T(Wh?(
zT4=QMki?TWNW5TiEjruiVq=Jdp$;Cl@raH0ZS1kp)kZfP6K%X`qq~hBHf$S?n0nNP
zY9ngnF&mGIq$gM0Mlaz{2r?`YiR9~*v$+;rcX}9;rj(7e5Y0y1MnW<nY5SQ*hk30(
zBl)1)FvWr)%6$C7xmdP;dsgA5zqqaq&&E(2!))}n(Z@zV8~trOCHj52%G-jxC-nCe
zpZ4F#dfLV_HU`-kY~xwcxqc&Spp5~-8JPtKL%b!RWiIy+X2q2(#+LGJ<+6u!aczvU
zG1|t{1+qulcusodZ&)JB^ESrV7;l49rjfBWIO}|caW;5Q$n|=`#su5Hd6;!6m%~x*
zB^#4$EVHrP#$+2)Y|OOrsu-Wjl@c<|#>+CDSER}<z=bQhU7aCSZVlcs&ayGv#v&W9
z*_dNvt~AXT<eeL5G0z4QfE^duSZITU2|x$76v%$v#v3-4GBUh1YN0K*vBU;%Y}ku`
zUo3x4p{q<7=HUt(E5+tE8>={%<9TartQE3acKv(xV(V<IxACrx_jnZWDqv%Sjkl!N
zu%U(CmgVMI^o~gO-K~++jg2-o+1Ns%$T!>IR?WY&%8#KU*_+%RWF)uS*ulMHLz|V;
zwT0h(m-O0g`+pNLAbV}>W5gWX>tMf)4{Thwal^)k+%Go1vGJ{qk8K>V@wtt|Ha@ZO
zsf|NC2AAf%TQl}f?VN*jU}mhuJoPhf_F>A}%X#ZxP$)lQ<EV|3HcoLz+o;(#=eUgp
zSA%Tj<2#ZQoc;?6$rn8Q8JQA=zP52%j8Og+bMIze<XZ4v=~Cx6pMPiLdmDe)_|wK2
z8$a0i#m29ki&*~A#!ohW7PIt+K74a3&uyX6+HW>~w{g}6t!=EGQ>9ygPoY`Z^p}lu
zHZIt>Xyb3DpN;c8=jW*;{B)ir-x=b7>%mJluGqNB>2o_=53*2B&+}Wa@uck*pr1Ew
z+_F)@K}83*ZTxGaq=Qlp{-aF?#U0$?prC^+2Spqdb#Q5E4lNYoDqIZ~b`YK!V<d^i
zL_#5FF|LJn|22O&&Z~q22A=_>T4@Jm9F%iV-ob8u{&gXjFA0=&{LckuXBA*IAD_RO
zb*F<$jz6_*$A8LQ*+CV@UxNJ4d1;Mnm*W5;JX|LGE(doz;B+{t*)qrb98`7C$w6la
z_dBTOpoxQ^gX#`yILLJna8Q$zx)yxBg;v`EeXivo-Zel!6H}BrVvVNiI;iKMfrEw)
zI33QkzT?kj%cmiZ#mF~uu(^e%ICwxNQfr>S5RDx_N$3yrt*L`%43vWh9W-~4=b)vG
zOXG|Tv4t3<@sNX74(QLtczE;GAiKAA(8fV~2OS)=b<j@c8@lE<F=%w-_bWjT^pJy&
z;vVC`zI2SOU3mC&Mh+4V9&yms!J`fylcBpg=$;839q8d;lVlnVKJK8W1Jyy)!4nRi
zbkK{z?-m$y)sHQG`|p8hL>%UF&`FNSlpguI8grmY(70-BN;*h6c*;Rv2cOrBr5#uf
zYzMjnL)5rUO!0vZb2^UXiR-`<4{3q&-dv*zN*~c@mF^MyIq2`;SqB3gJni5a2aGv&
zm=g4m8Az`Nie>5#b}+~RBSwRtx6tS(g~J>Scks7^e;kZ(Fw((BM!>;y4n{e6!@*()
zqa8f&V2XpOv~VSNjDr`rrVdsFqGP!!3S^IS@Zy!+@l2-yVJb`%wU-=B67r(p)7#Y=
z@?35*O&tzVO^M`8bMUf*R~^g}omU)8cQ8Zv*{QL1yMvedC^MzXCzI?l+rb<M3mhzT
zFjpL)aGofP-{U`>oA2QF7XFjcMGk&0m;D-3$N`@l+q?blSuM39ll<p$OB^h9u#S;&
zu*|`*zTwpj!j;_RwCP}_7*v<!tm2Mq>02Y`Gf9#)jID#lE&YdV4@=XV4mLP=iy8HF
zm`{e^mcD!<{SFiOl`2EzVdlFI%$C}F9P4~8$z}&z92{|Q)WKE<+jxdM_`tz-2Rj_>
zb^M3qJ00xe$>8992d}O2A9dzGNxo;4!Z4n^lDmfySn5A)<g?0sj{o?Y{(tD;BXQs}
z2Om2)bvSgu!6y!C-<h5Nu>Di<<REkDSa2y<YLp+1LrhC<s9RZ_)L|}tOO1uD9&>P<
z&Nw*Z_)q>%IQYWBmkv%!^_1Y|x-tLxKQmvd-#YkOjGuid`VIR&uN)uc7d}qph~GJw
z%{a8wesJ)kgFhVn>EI`>l;b~d{LR5H`F%$z2U}{K(XS#W`JIW~-+#z|mWkR@qcV-q
z^S@-W=LAcPR{3GXc?TC96mn76#YG;`JiWR1&*xrtaD}Hjcl5F#|CYJRaWCfH5WME#
zI%72_RMiO+Z;J4iU|@%@T<TEhUwZOd4hgFTToiPX<>K4XVOCjk8x$_$qNs~|UEJrQ
zn2X{r%D5=&;tm%jT$BuHC0+0j{QN(!s&5IF$`^*T(k@t~LOIv}i}h~7@-8a4{-X&>
zD$?Nf+&f+WX+|Y6QdzKyV76e6AO!Cc45?ubcaQXC_e1{_uIl1`7mdVDH4f^cri)rG
z__rPvYGgEfpD$e7MI9IQT-0YPXD3)!FyKPFoJAo^?=8UwE<bt;lQ$H?zZ~f#$9=$s
zA_g0~7;r4uL^ySVE{5+^`ACFn&0XZVNcVx>2Q6H*bWyE0s`p07MJoou!(b0#7Z1Al
z(8WhCTDxfDVuXv4F50?i=fZa3xM=U9gA3I~)Wt(CI=Xnm#gi^Nx#;Yon~Ux)y101Q
zMOW8<k>(K>eCLN(PhJ=JiF0j)_&GA=JzPBM!tB_hr;Ep^e?Iqd*MF;oZ+7w1XWn&C
z!q2k#HU+Q3y<Gp}RK6V-asAi)c#t+apBrOvT<9(g7jYK}F_LnTbTMwZ%HfD*uKI7D
zq+S0d3X=P-=bGY`CCdDqowor?6Gb_e>%w#KECcAGw~Ib5`nl*Y<38o0uk_-e{2Y_-
zIMILFeA>k`OwQg4?eNoczMQ~m4rJK*_L_^qF8I+fEe~=1cL|0G4i!7B(mmpE5vsrE
zJ?CPSi&ZXGyBO`_c^9)?%yBWs#aI^;UA)LiF_&CS5YPFh*$XaqSIOq2_$mBnPL-LP
z<^3NQlU%&);uXIC>0%1A+Ql>pEZ>EoGknX1$d@tbGhcq-(oA<T!^KPvF-hUuVz0X3
z8*6-LW0nvq)7710!gHB&E?#r-x{LYZ!vYrzg#=3$;fn-}!y;zO%HTiKsxVM*xLEA^
zFW0SbvBbqv7t37a$SP2oLo;ISjiSpX0-OcQN^WN!gG+*IT&#7m$;D<D>s+jtQQqbB
zcLv{d@s^9XU2Nb9P}_e6;%<3+;T_Ro{PXYA==OUqHj0pUR;;pYak10IE*D!}Y-7$}
z&e|>tJGk|xD0~~U&CVd-pxEu=eHVLO?31Nr$33D<axEvcpIfz10WR?elGt>BJ~O*M
zc5%SP-5&1o@QI60U0mRi=;EM@&s>~w@q>#)oUDtJE>1CNFJ~Qgag6!w;)si*TyfbK
zOsxm{DJMiex?>9tN(t{viC?(*hQ}b+#l>k!q_13j%|k|X)~pOthp(P~=i+-8%@3-q
z@`WF^=6C;*U0nR`;;i)j*~PCeesl4Qi+r`AFDm(C(G$Ma^M{K+U7U0AxBI`Zs{SP%
z>C&_%!GDBPjRSFr^Dgooxa8t8&tVTGJX~>c)x~WW|BCW8o@p*_FuiYPu?t7JDe_x_
zi~!&Bxp=GKe=Z7mDCD8Ahk_omJUo(BfXex^pohGHFXEx7=TE%2=UW@GK`ka#t_5Ec
zVp!Nj&5|C<cqr?kl;@vCd=s*?hg~a!%&~GF%6q8dA=^U*4;4LB@=#gS?(}eKk3T7H
z2lis&4&_?pb2^jb0iv1j(p|z2?hM}R;XV%!dFbe&s)zeMH1p8hLp2Z8J=F71Uo>lY
z$o2S&Icj>SB@zxz<Fy6rc>ephtmYeMp4648F#-)dH1yEeLla6w`2i1#2PRClke1&i
zzgN)n)2XST*Twfd|1~X=JP#octvs|43oRvplye=!9v<}k^P!!G)*jk;{#(IqMeUiL
z!F<aci^}aibP%sfw~BHgN;-My?7{M2d+0(V9-j2ji)-hhtB0QANjDGOJv>H9RspU;
z4-b!uac-i!uIJGRhai94^IukE^$BSuiC@Wzcu+kg=#q!1$hAysjLWw($n}b6=91q%
z<w5sgcu0$@oLBy)Fhz|MVV7f`;&^a9JmsOU2hT%qG26%UHyU65<mjb&<C@u<{X9JF
z;TaG8J#ZJ$0{70d(q({$fig{YVcDA#V)RIcco^#8s)uVHhItt7;Uf<pdl=ziq=!Ww
zUi0vrhfyA;c$n(>pGS}OFxJC3`YF{hf|Qpm9vJW81rHNFyy#&9jZF6M^!U;OZ_mhI
z^3d;A)?^RV<Y(NIJmm3SNcg~h$}|rzd;Z@Pb3DA_VY-JI9%gzt{#l5e`Xv0I{8bOL
zI1!N?_`)Cb<QI8FIxyG6Jh3p}!$J=i9*ovnlCyvdJ=(u#X5p>u>mFYW!&VR5JS_IG
z#KSrd>pd*>u*}11>Hc^~Th2&sS66yiArk)e!S0l-;zG<-N!EB+>w$kkJQeb9K8r7k
z(SbKTyzSu~4;wtZ#bnzTJiIT+58~-O%ex-l^RST%(NAFzDA~k4cq?m*hs_LWNMoT9
z%Gq(dhaDdFiQ31vvUYmd?csf%5288mNQg%GENK1A*d7miC8UfG3oY#T@PUU9J>-wV
z?h8Vi+bec}hrfs4J)HIMsfU9ePIx$(zoz?wpLsas;d2jlMyf|W(DTF0gj-ohWJG#J
z_l|KnM1fWM@Lote<>7y*Iu9r*im!_Uy9_~)9QKkWuOt_iB`&DsAUWrx?9BAc^yEwq
z5(UYk<g5f0i3UJW2_ga#B`Zph3`+c7-=_HUozv%@U)_53y1Kf$rl)6S_jm^W$iSZ&
zI3bHe2F_;SoJ_)=MNUa(xwsx@nLVM`X-U|ix4;?MdxPFt8$KTs2|J&G3v#kH_P9vB
zM3wxqiMeleFM-P$_$vb?8}^oX2fyAR$9^>f|774s2Cm5oJzx1c_3onQpK{)mGrK(X
zb_Q<Imw<W=d*8{xT^8@j1pYAPeunX!P^!!i&Hu~5!we)@jckuH@K}~y@{<fa%|H$-
za$1d?&t%!RB7vOADz{jMDVsb1l!l2`WV52`w$!XvSgd$W{)jF=GaYv~v(#p{qDw>L
zdjhXmk;{s_R^+oHw-v8ik%#+|m@M)^OpAJjZRxp~FuxTAtSH1<y<zXMnTi&)8jt?u
z8M~;&OXeb0d=*V8${6zzBCIH8MRBX~fmbQ3@sVHc_ZyV3qNEi9o2)6QT|_<`Ds4p>
ztMPH+q+6Bu53-cAqP!J7Z0Ko21uH6A(bZ-gR3$4aTXD;Z+g2o7@wyc&tXOG96**Fg
zv7(z5)vTy)#oJaiu^Ov%4J&F9gx?^fP-{}<wmDULLQb=y5upyXt`+sHs84Q4Z9tVg
z(kh*7-bXbize#;d#Yk0CE1Fr+(u!8n=X;f#Ta5=b(p<QO)%aeh+%dMcqK(yfGInQE
zYFjJbVe`&bv{QLH5ZY6xj!)@G=%i}pE~^XK>`8YSG%I{o_^s$^MK3G*u-5#FcyAdr
z{s=|hFZ8vdpB4SB7+{6Qn1NOdvcjq|54K_`d59J7T4CP*%X^CVtj6QD;!}%=W?0dl
z?_}kmYz(%mNC%5fD_mCSR=7D75+<!YY~^Jh84&rRzW4zvf^4#o8nR-T6~kppuo$6A
zSd<X6BCZ^HH#EYEkygyKVwM%7tQc*@2do`q#aNkg<Z&wgeJjQ*HV18jOwoJBkF6$I
zF_~3Us8gv@W!6f-G&<9*_|S?Os#bi-Gn>VER(wR5W5ry8xeJMzZ^g$}eDadHfNUlg
zUBse9E+#CoVku#n70X|Wl!U9SSZ&1*R{Uti8dhzgerm;MR;(p|L6vOltXNOppq$TT
zhVaY(U((q~{ffGYx|u3%rB_?6*v8^^8Q#7Yd8PiE#c!zJTJarWhZWxwc3QEEbKu2^
z-c5fGRd1IpXZ$BC_F8ewisLl*S@8>DKlK3hXX-(!^hD;H=phz=wc@byk63Y({F`#j
z@jPM0B`f~0;-sumtU7JQdBX21@{AQ{6`zwegx_74y<DJqkt(z6Pr_B|WvaydMfjU~
zg(~~KrfRQS@elb1^(NIE^E+1DmBq@2YBt=n;=UCHZ75{J11tVzSOFXUBRr!%q&}iP
zraqxcAD$8<Z6+Hs+l;j?iw)Uq$WBhMA(4=kYN1NZ7w;tJAm^p#wBZ#Sa;e%^3At^k
zyUzG&hHQCk&u5EpJ{$5gz&sXl&J45^wxNg(Wo;;DLs1)&Y$$F+2^(_0kq8DClU+Q_
zBDd=jFAYoDP>TL*HpsX1OWTb1m1S(k@0BD#-kZpekK~sf@;*z7<!z{FLnV0?kYkkJ
z8r-Wak3Qtb8kKEGw&8UfW`36_PeQ6lPOhu+zD8QfkDjXAP{W2sHZ->34I5JAd5#VB
zZK!EOEgNdvkY+<FTgi!&-*ZVT`PGBm%GP1u>e`I?AWO9TSYuTsV<;Nfkj^UG-OLT;
z==j!2Vx&uN+VGYQZEf<kYP@Yj6B}CE(8`9UHsc2%&1`5cwfuF4jD!5ttA!2ni!Irt
z&yu;d&A5ebqedxLzM}HZtDOz)ZRlV_M;mg~Hl7toTe<o=+0faBE;i#ARr1bDx*-p6
zq*jXZ`<-rlmF!NHmrMB+vX{;Hl9D_R>~BMFIhAdb`%wGZ(9Z_BaZT)BB<Wrj`KpH8
zJ<8MRK^&7pD^owUVK9%k^png(Y<QRa9(AY<88%quC~O#K!+4r@s>cS6Ajjn(IH@kG
zPIXh|$7^2ciA}!rWlY`C)PM~^LWml-A#6j$hA4{?79$MpV=*uDVKxl6VT7t3Wy46t
z=^<nOZ0KV=wi-ioELCRU`!-ClVL6KvsZ(wEz$Sln(CCS5lL=F(l3|(+(`{J7;)m3k
zHq5eNh6<1-vu&8e;zAqd5<aF%)jYyS)cI6dRmA_qh6OB+zRhWHtMVci7pp67DT~Xf
zX5<R;O6n@=YN}*gqgs7t!&+HVR;I3_uBSeMMVyPPEnnF1r48R}*sWos4PV*tz8w?n
z*kr?IxpM6&VaFC5w#uBe;j#_eY}jtYFE$*q;cFX?6;1xhhP^g?W5c&Ld}qTB8-Ap}
z(}tmQ(<Gp6AVFXk&F^j4ZNnZLeqgQmCgh)+c6?6S6$!4AxQ~%POULG<?YH3oi|uAM
zkW>fdf|_IG{QSSfUu`&S!#UO-vEeA8L2BY}1lg&C9g_u0GTU&%hLham?>3wvoT8q#
zL3S$L5S7TYY%2{9|Ce~)h6}8{Nb?ePZMIB*5LWj|l(4^S_}hkjcI3C?iVas~QL-b8
z9oKBQZo_?9#%=h=h8s3q%COwC;ikZ#l-oA+IhfkFPs%M8yH-#9;Xvvg8}7;yR61E$
zbY)U{y^9V0mBn8claoo0W%<gPF8)IqItDzF`L@t-p2*rYFa6ar$xm$%eP%-@y8(L!
zr93E>oM1<y9k1At%Z{veSZ`F$Zbz9!`9t3+7Q4}nY<5(yV-f#JspK4X<g`Pe;;qc0
zx$U@HI=Rlx%y}gtTYXq6IgcHpm*%BQTVJ1)0(Ll0R6g3jND)FoI|>mBQ?=AYsV!>9
z&1;prbWBdN1LR^<F*g>>RML)8b~q&7j?%IhI|kT|zcuul9cArkWk+i}%Gq(Ul%<+<
z)sFIZRIsC(H?5)_+8E30c2u&XvK=KWBz9_*oNPD#>a6@@5z$?d>Q(HhYB&BeuxyLB
zq|~tE4Le4ksNB$w6gz6#k!nZ9i9KrB@q70aiNBCJ`Du@o<C&8iZBD6eN17c1vemJp
zt{oF!O&6|bM}7JYRPDHiy(MS56q#JOG2u<>TXwvy{3e8^)Mj=xSAGjST9OwrRU13n
z+Oa%WCh5;RcC@n_e=WJE9qsM7(>kSt-T0eJ4HA=^Cna~Zqmv!d;m&f+HtgNSE<X`1
zBE_yWyHUGSdr+k+OSnicJ9^96x8vBxlz6UW&#sid<bG5!`xE3pl@GLIkR5~V7(YKr
zv!g?&<RQ|}0-4^mW3eMao15~U9Yf_r%uUIV*+po(IK^g%{4sgi>~t2FN&2B-lC*Wn
z^jMi1up?-PZikyi57kHY+Oa2Zdg`QJ66UvK-2E)VAv?l$jF6mm%x`Cj*fHFWjqQ@7
zRDqZsamB;zINY$em~|f~ijK0Q)`7YL<D}c<G1Rf#UBkzTQahe3F&XFTPPAi^9Yr-H
zX_#!s6qy)yoUvo79Us{7sU4r$G0l$Yb}W+<B-er+Go)8McQfrMn3ze<{%o1RbcEaG
zFq}Dd%$50EGFf<@9UrOMyZ>bV*p5$FTtHo9$3nucPAQi=r);>Ay4ViUCDf%d>;o)P
z>{vN*1uy3{cKJ6?SS8cmZz-20c{STM%#tko&0jourz2sl9qa7)#g0REtd}HqY`5cU
zJ3hDL3p>7&X=6vWE-7Eyk@sfhzF87BvbbAI5OXultuk|NRF<A^Ve)1?qHW~<IWm1?
z$G3L;WXE1RzO!S89lPZuvdK<1|DL={u0;9M0XL02e>Utb$$t>%MrMH@nM(W`4A^JK
zK{nh^{{UGU{!I9(OVTqfL4tpk6K%%{SsCm&V#iTCev?USha7?g%l4O+aGV*c7EhM`
zm$;ExTAi}vzLrqwMrIi+Sv*h63Q#(Ec43^g<D4D0<@&PYyd4+pxFKtl9T)9*?_uH}
zcKm6_CDqTF#c^4#K^Fh9<8M2fw6|PQwL7c!x~ljZ;kvB7>BbT<r+BhN-m;@xz*us3
z47HfOy=%ukJ2Gp?qT#+B5A1j<XGcr;*N*>q)G{&;WrfU<>AS0S;|Eh8*%3IKDu?h`
zmTR>yIpfb{smx-`u}qq=%1L~JhC~eoS<I@zq9Kolyc)7;$WAkth8zSLqE|HJ)Qodo
zenGk|(HOK*Ig5(sX27c&=A28Fw0Q>g5>p_bCVzrBB|o(Q^)_dCAq|DuL}H3)u$E5V
zTC*-R6w@$B!(a`?HI&d$TSJ<Lk{U{BsG;Ev4W%`d(NIZ4Weu;X3>64vspT}3*C2iC
zXEEl0Y!&G@f0UT4;dOFV4OIve{x*7BiX$&jO+$718D7h!;>IYY$Y^T`Wp8AbE2XA}
zS{ejW86&k#o@S||p{|DJ8d_+mr=h-vw=}%1p@D{m3~Q_*T|*-cGu;+xd$Y7<^MI5U
zH;sgHe&6I^$^>h|U^yL4HB9f4GIDTIGwu1ATK6n-OAW0U&|k9U$kbXx8x3vgl(~`l
z9S!X?bkopXLwhFdENAd$<qjG;%9u+}c*YOs$h0+_F5E@KU)eKt)sUNqZ)y(>y)^V@
z&Yp5C>AedjB+J%ELthO7GyX^r?MD`n^DEl`?rtDkEpsFc(eSQ@fQBHQ_cS;(I5ix}
zT6Cy}44PJ|jcTWA)Z8bHljYKI&6(iV;E`6Y6kQH8N2cysjIr|aKztfHR8N$mU&E*y
zmE~}@>`x6bLs&yZ!{O}4avIeT(=bcJYz=V@!!%6MFjd2F4I?zXuVI3Qk(zO%BHLI=
zrFb-947KdI^l=)-YuNHMOYyEoX1QOQ$T=XVZxVMZb6_&hRHSmE?Dqo=vY5PbIdwW~
zr^&T*BeOUkYM4Q1CUyC&29i_a=V+L#VXcOB8s=&ENW&5hOL-LYHGHhee_jKoCQ0N1
z4GT3Kb)+rUP^WW>ezNW&Ih_5evYq64JT|MrG7ZZ$tkked!+$k;uh4MAm2$dR@{yFf
zl3}%m`Q1|1X!ul)&Xp$47sJv&>YehLjMA0VTisF`mrP!-VS|RRHGHGtb4^wlY?i~<
z@THu-63H7ie5GOUz0C5*8>J5yPFCKeLG*T=o}ydjQq7TRn@oPWdrUAcAKA9E&*GH0
zpZQRU<Zm^6r(uV5V1D{8Im_eHOBGAs$wB)dM<!VuM&8f7N5c<tvf}t4jvqDrq+v`P
zW8>JXVV{Q8QLKq#zlH;HupX@N;Aag7<+^j>Z5Mvga7c#5i4jixD#Iu%n-hhcI3nGU
zBXZyi2Y%CVOhY~g@;h)``lF{6T9A5K!wC&1HJqX&<~hP?>hBuPDE};B&Df;#gbUP*
z8ZHt3(C{ZA&**eXB3piE!e1Kx)^J6`RSo~jsgX&}n421IX}C_7$baN~DJ~qbh;y68
zd(=DByHvCGKKTK4&v45_4Ugmn!hr;baZrynJY$vc6Ae#Qm=rTHKp-<gvL!l@)qz~f
zw>Xf4oXvsk1j%piG^YcvIAF4=xgB`bfjp{hUKKC-rBwk33OX>rfq@PbV%6&oRFMo0
z6k)Nb1En1(<3N%FaG;n2#T_WAvXvmTo|v?5Vv;00ezk5X2c#(cngeB7TZvlEfeNZs
zdBTJVNfnhNO)4u+c3|yri_}(ipqc}19BAu6bq8uV(7=I)4*BF4DGW|?pe7+zwXH?i
zy4_M+IlG2i>Nrr>fqKfR?|_)nLkSa=E!}~)9cbb}BL^Bg@FpYQQmG`sjBiS(g##@e
zXy!n3mB$QdrSi9S;6-N7grs*IXveCa4zwq9cA$#`9USP$VkfHX!fe%*#qLze+>KyX
z^-!66(d_L&A3|ShKULeGMQOY9THQeo40a&oK-hsH4!p}MuLJK9Y!287L#Y{5E7d%q
zngcEt9aPEbB<vVr44qDPJK!O7O7AVEY(5A4Dn8&qkX&J#(InzP)PXq;%yl5<K-_@|
z4oq}lm;=Kd8129q29I!Hq{^_C`x?b!frw=+VZ5px=YW{ze&3gw!{AA*o#v2#nTp8{
zOmSc;oexwivx%u6(ws@1p)$;JV76jOE@|gE@R2wU*p{Tvci>|OmN~GTtv+#Jkwe~3
zVSxh+>Ac9lghk1)RAn=(RygEOju`8}rw*)gV6_8lRHOu$M`7w`FC~=tbq=hjvq8m6
z*q07$bQo_c|DpMn13OjiCI>b<utnwuoo|)D&4KOYua)x+q4~1(?+81nvOLO8cRBFA
z1G^pA<G?8gPP6I<2lhFzpZp{BCkOTtq>0Sf0}lM`z%e=p9r(q8!wwu_@euV_2e$D_
zG<HEaD(gS1UcN$)J8**LD#o02;L_E)67W0Ci&Avpj00y`Jm<g#g5*5^(iJNG`NM%f
zS#{Nc%Y?sG<X^mY%&Y7QP2p>V>ncW^8xGub;1-<+4*cuDZSoxzbC+<>f&0plE9E~2
z9<rF#X`Jy#4m?w}j~#fT_$fga?MzN&W@Hv>0@Ym16P=JnTas9u$mT?LCvrIPsuOvf
z$jPu=)K{oxWNz|`5f&-tCFiH+dnu*>S<=d03OiB6iCRviI#JY#Bqw}&S|uu|Wt=ER
zC{C5y5>AvPm!g(d{)20ErS>%^$||Rv6Xg|GaH68(CnGEpS=otX<-G1h6(_2)Sj~wy
zlwaM68f3Fcit=j`{v2VcO=#gnOG26xb)2Z{L_HSMsr9K1s12zT*a7K7BPSX=@um}R
zIq|j=%~&gb6GBrbWEWC2_b$*}Il`@+2r;a+6Kx1>ofz!I5GUSoqMZ}%o#^01S0}nT
z(UAe2snWI+A#J3QybHP7NK1DodN|S7iGEJ>bfT9Ny`AX8+9!^L|3+GFGhVbgp}!LY
zoEYfDASX;mvPrEO`Ghg=I_2;4z~O|`iJ?qor)D@|b;3qI%VS*XNfXfMNFLL4IpGz@
z3Ec@dt2|DaRT6WG4gK^3FZn?_5*8*zs8MQ+8mCHzVNNU<pCmBSiBV4cA;Zh6(N26K
zRZfg?Vl16;PE2!Rx)bABeBX%)PD~_ErB0$ss>x1FQ7k9!1M-VA_#umPsWY6INti{Q
zO_dCD2y%4ul=Bf`z7ro4%n?{fUhBj<!XhUYJF$ek)QMGuWz^-=6;#Q;k}zq6Wi??9
z^;7C+REaSs-g+l~cH*ED8=Ux@RbNndJMpCx8=d&diA{9Ab7Hd-Tb%gXiErp^bz&RA
zoHpCZ(PioK3{CQX>%_O5A*SwdVy6?k81uaoW)qoIGM6NHj}t$z>PPB6Cw}6Eu$M)%
zs}i=~i34<AjP@@q9;F_l{_4bG!V&898i~?Sw%?pM=EQL)PSF3|i8D@|Bunin!fEQ@
zruEJ`agKbEdfthKGaFoxF&SsfrBdv(z$MnU8)3QZ#9vNSaG|0Le>-tS7E%{-x-haz
z;#DUeIq}#jZ*_6qiGSGSwi9=pxIw;2y+t*8QrFnUT_+yUxktUPYRv=xm&N~_cu07@
zhNze<E@O>->clhUWTKPV^?bFF+5|d@E@UN$V{suHIlFRB98G^kaS0c4xscn1SCx~W
zkjI6*gnZOnYTYZ~LO~Y_(JbsjQ5TY2D8i!bOO66A6m!Xc->6rdDvt0Am6(z)lwy2o
zY8e+^Bb0Ta9Kl>1%9CHL7?oV8O{X$d@+1>pccF?4Rb8mYVl8TQ7izd5i{u;Bno>K`
zlHx)OPGEEKOjUWLnC3zq7wXb!sQh{^)K}bqAcK%jXr%ncF1$(JR^6D5O<ZW|l2_`4
zsvb0Rp}7km>X@OUg$pfRxZ}cI7h1W{+J%`e%yOZP3vFHaOiv5D@Qw@ZTo~fQyDqe+
z*~x{@gbvh>GM>XM65NHwJ}&fip{onsT<GpX4;OmVmw=uw^inKM%vRz*iW|-QxiC=G
z_9qOGQDSDP9Ykj^RT{qM!cel$g$x(0WZeZDLE;?*J5_TbKl3<MtxNUUO~<2ruL}*;
z9{nx^lpk~<q&U+sON1PCA?8AyJko_xgkjX-)DbSZy-AQm7%jVVVX6xsxG>g*aV|`B
zVUi2u8TP&l6I}S0gOE$@UG`!+lNqzHO!5?$ao;G1HjU1Q)ag`-l=vCkodmocvCMX1
zj;su<o$JCp7q+^v&4rI#m@lRaYhC!*g-;l;oVvh;#RSQ)kg&*wJsXTuvqbqzU06oG
zdd=v`3Kv$ou!_za6|<UP4)~|!^}{Ud2w$q0^)756f3BP_WNsWymz*12_=@Hx>K5u|
zb!al460_ZfuU$Ci!f_YAap7ARestj{Mt(=#?ZOThc9M5dzo(kbMfbSygPH@9(42~U
zT{z&v&o1m^u=xAcc@aM7!XX!aWz{b($bgG^*d-4VjVtBoOObLqexo_@A7hkGxNy>i
zKj@rt;j|0q$-h%2;4I;cntSJ1H0R+3@<r+;YW3?zPTBr+;W8cJzX;OgigK>HaLtA5
zF8rgMTP}HCXLMDzn}jyQEVq?oUTF7RsHvltj{7b=kRx*8KL%9M@z8}wvcT#ntmCmP
zCN5ZXWYh7K0hx7V(eX@W%cL7K-`rP%ZtOIXI%u6GD?uD{%(LrwMMo~0IjA|Q#fDjO
z>v&a1J{|e#<k68=RhgMf46_uVQ;;e}*`!Leh>oH<%F<8L0YWJq#Rx`>j^c{Vxmr?x
ze(jg0Uq;7kgdyp@C0@>HIUVKcRM1gLM`d!wmyR@<&g;~M!z{9y{j92^8qMm|8am$4
zkwTV$7gu_!j@mTa=}1$xEeUmW)YVZ>M|~X)biA#j3H^pT8tG`PBb~(;E9#p%-clK4
z%w;cf4T?6U*__%;_Cm7-i*mlq=B;$JR&Co5+EU-4%A9Ghql1o)Iy&j-uVa9Y&aCRL
zqlb<z<gV0iR5NW)vh<;kj$Vp;>yU(E%GQ@=KWgJ)mVr73=@_G9td7AthUoC?2<UiM
z$9p>LIyBw528Zgf>aej@230N)*<_h=)~YMZmqUkBhewB(wJsgH4!6wP>#3iY?e*2Q
zx)PRqV7=>K^ziA(;E5JfuH4nv>IQX$bi{QGle1hSQ92pc5s`$ojB7BeBgUK(EDa@o
zIEy26jAY*=kA#iVF`B-t-XC5x`X<fC(V3uQqK@%oiF}`}1SaX2tYaGeDLSSSKG2`P
zMo579(qQUz)oP}WS(4C=Np8&6F-K;&8ztPBt7D#ytva^p_((Ty)nr?#W4?}$S^PxD
z62b!NLKU+}N53JK#X44xN;g|AWz{n3avduO!SvozyGp`ztkLnQj<4u{MqRIC17WR>
zbp#2PJ6O@rS^Sdvg`DeQhPjc&W)XuokvCJNxP>5L+jV>`Ym|-$I=<2It&USVPV4e?
z0y}gZ)^S9~PF|S1b?jlQT{^y3c_hORI)2n~K*!HCf6}p6$3C)L2&H+yy<c@{SmyMD
zI)2e{NXM@{7m`83q)P&FIt0w(QD!)<<2SXhV+1+g6NHn>mxjOVIHTh)9e?XMtK*!G
zKUD2`9Tyc}kn5eJA$z%`V?X&%ReM>7oFJ*XqT{NL+sePD;~yP2SiCOFMZ_XWZmQZ_
zI?N{qX68G}zpLY(;(1Hc|JCuIj+}11;>JTAk91^p8~b|9m}fHaSbQQ^6P;_Ljkgk+
zX$mB`kwvkb&_r_msBva3%FpITcEvf|Fdw<(qLbH+e1zO?ysBdIxQ#g}8S=YPz>T8H
zFX%>LvK(n4_w!Mbup-J7PI3co6nn{$!!PMZDL3A6qn#V2-6-QmiW@cEc#UDn)Uwoa
zZj>ifaHA5TB2_Y*XTLIw!mksmxKY)OYUCO!vO2+>-fy^Jj+kVq<wm+2joe6eqqZAq
z46CnN)p4UPxt?;`A5U*UZm1kd)mU*8!kccqMR?m(&YY%hG;^c58!g;uqvBh-(TZ$#
zOr~pVHzxABZu^qo-i;1!Xl^*%=;%f#Rt<Kevm0I9=<P-yI$fzf+~`K=PL&BShuM?d
z>m{czc>uK^Rl@qe6flrH$Zfp0m8v0byi4ajH>`xARH@2v<DR-wY;M@;7jP!X=5)iw
z;&3-~Gu{oq8*bIs<A#@P_A}r{(2W?Kkcx>A!ZPuA?aLmcbfg$pF~bN`Mp{NlhsmSd
z7*81O#uzuolE+acgSk8N5`LfN1gbcb-I(IWd^bLJ<4t$kRO&1@J|KuQ&5h}bKP1d>
z%QpdxVA)Czx6CHbq0UwQJU2d4EHR(BvA~UA+&JXMLi(S%vDS@6<i&0*abu|)%iLH+
zXE}8xbp`e2FpIgz^MuuItf7BnnB`N#fcDAj2-~Ua-Pqv9=Wcw#;ubf)bYmlVGxaO#
zCO0IZnOs1+Dtp<=DuHcsz0>*Hjc?re){XDn*zLw12JE2ja$~28H~aRz8)m{E-1w1I
zKU05lW3L<g%vQrJ`w0iAa${f~oxFS>q$9^A&aZA9migw!eK(G{aa4Ni#svoa=EiA)
zgdKC^xEm)}JV`wz^J<-uVV4@W-`zN);?KHqPH~>=buW^y%0l7BB{%+X<4;xlw;Pw;
z_=}@t_Rt)nD{k~yZ{)wOB5%3zj~h2wl+NE&V79vL#vM2A(liH0^nn}yx>3-BLLU4l
zi@zILJ+OH2$c@L0%;GVo*%LROu_*l14YLE8SS4pCvj^Ar_A>X9Kr@jlho6m*(}Pz$
z$WE5993GfslFNhK9^~;LFRNaqnrBb~@_CS-P66ecRgyuVFwJ5f6!)MAxhOS>3hJtV
zQsqvpga;*AtmHu{4@#5Edr*c@)+2wa#W=>-sL{OX!ZI>4fb!<If(I2nFlU0Pl|4vi
z<m(<(AxN+pFAb}CP~C$X9=zc}e-8$Dkm5m2kMUyK-Gf>lq<YYaMR95q-t-vH0Mn>-
zJgDnIJrC-um~;;sNR{XL(`NGtVIvP3Ghq6O^u4@?dCP;h=```6wQAc`o&tH$oW&L%
zwDh2r2l8}FHuJfb`J}6j2W=VijtA{LXzzLc5LJ5E!Gn&hG9Rnv<Gwnp{9OoLJ?KU-
z@1~?x4;FiR&`U-3_MndkeOc^Bl?PTYo}do&AmTyPgFzk)_F#wy?=nWGzUP6}0~>j$
z2N?wUh)s56_dxUD3*Ko+(ZMPwwV*S>MG#*C++>djUIFC?J@6|I5X}445IL-zm<MqW
zrh4#!2g5uV?!o)48bKXJ9Z8ja$qVaf@)!@s62^Hj{-xTq6-Lh|(3wb`q-rO7FvSDM
zC?lW|b(#k=Jt*7WaHcctLl0)C_(y9kvpks1;vAVF9xU`=t_Slx_=x7m)cMpBmyP>a
z**;-$Rm8H0Adci;?7<QbmeN`Fk}qKru+oE79?S_~ZUC!2SmVJ?A9nfhsRy6Quy`@e
zi?trC^WZNJ{`O$K2OB)t=fQqCmF~39sk`J%dGMtN8$I}n&bJ<HB5b2d<Yo`HDBenV
zu+}2}cJkLAe4}dR*uNw1pzfqzU2g=-_PqzY>FlBYKo$Q-!cQLTCG72*F6IGMdtSZ;
z<iSA}fAQcn;gAQv5)OOtn+L}{IKtvl>a5|$9*>g+P7+Q~&$2V8$N`4^PCjGSdT@>~
znN=6alHnrZ67>%c{v=#hwX(Y_9$b~>#fua#uF1mdK~XP~y!c0!DGzdak=u)#9^CRE
zvls8n$7(WN^|bpQJn-NSS&DZF_dMu6#v(=8{*^V~gU9kJz^aET^5G~W;E4y%=scw^
z8U4IfChkItS-eOfCsMOhvr;WyWFyEsaY>bfoRj(rRm@M)d%sF9K+QwVOU*}>nEY~#
z?2K?hFAC8wOf5ovQ423B(kVtQ?nMbgNiWKH@fx`lwX_$1kFv-nIm>!co~Cd)`U0|5
zp!t9?mAt6zMY0#KtH^3zR3TSYPRG%f>f{<!vsX2}sO5#n3$GWcUexxY4{OuBsN+R5
zFPgJh*NX;TH1wh#i}k4m)M%%(__h~~ylCvjn=DEX-y*~qCfY>#O$k})xA3B^7w^z%
z=|w9Q)7pzRWcg4=QnmA<y%#-IZ3izpd(p*<j>_re#eq>qWLG-fmEX+^`Bs(qJ?I=R
zoh&R{FE4u2G5x;eeqQwVVt^L|y|8*=qdCZncfEMei@{zD@!~gi)JI2KhB82$3@@Z8
zX@$)IyB7{GoD9%Zn9B>@3pa}rEKSVq(z0~3xzCGHUX1p_&zOK0K`%loez+H5FCr{P
zy@)G6Mp&EPTXGKbqUlBBcx4;m#Yhz+b7_p?352oKabAp9{`+1uQAan?i%Ik+Q>Rd;
zQWw@T@=y2TLoX`$P|=4OUd;63x?Bie%<^Kk7u&t~+KV|}%=KaeTS=37UVP%k0v12=
zVm{$xsyQ1Mda=lhWnL`zVln*zLoDuVb(fHrQYDXhnXizwoz6-xR(Y}7i#05M=EbKf
zvg79#xov*YL|~m4>s77f`P_>ySp1T@*^7;;_A4(okw4h}d{x=P;#M!V5zHm%8!x_<
zIp)O)FTPW4e<1AeVkcpj7vFoaTh;C%ytpoY^x`Kvd%gI@i$h-Q^J2fuXD@!He^AXj
zb84AW<yV#Ms27L5IKrY-_3*+RpWnPVree%fc9O-5UYsJF_TqQK8R~g2&U$g~r4^>!
zXv+mwnG4Y+FaBWhPl@s33i+}Ze-U1+23J|UMwQcQ`Zrii@FCHMn_k@V;x-)_!^d9S
zA>Z}l9^t+h|9bHs`2p1&tA}1ZdZ}odPrP_a^BFa>&v;qML^UT>7P53Bs}B|*3j0um
zPBtI%5wcTr_>j|wSID`2c$JWgDw8k|Aum<(%OJm)RQY`<p!|Y_LcagKA{6zZjH*o{
zz=vW!6!)P7i>0U~sq!hCq%BPrIJC@I&|YJ)tPkY~<yEb${FQvD?1Scm!-r%aUiYD^
z58ZsI;zLy*-t^%uAF8SNG#{$_P{W5elv9(CLX{Iyi;zl{;i^q&*)6?}4|RR0=R<uu
z={__d1bJOFB%4Dmy=~+}V>-ezZR95HZJ+Tjqpc53d}!)JGZtG>n^Rl((9#F#fP|SU
z(3(|kl>d$o?R;oYQ))Z;(1F~MT95ax;&*1T3soM(iPPPOzCQHxp$AQIdiu~yac@E&
zAI#73`?EMy)ei7spbvvs987)Jhasxg?CN`}hmtviRaPHtD#k7+dW)s?3X9VRm#mXM
z%=AI`!R^Cj#&~@2`Y_suF=i7VVg$br0Uv_o2sK0v`ykh{>`Uf`Xq2XBj3w^FF!FHf
zNFPQJc5@I$k>&GuX(HQLA12Td9_Pb&^85ckW+ID|s3{YZrVyr5KcG(YVY)i@59vrY
zxl(5NFx!XaKCGZQhx##fE_I#{9}(tLrB%}rmQQ?GAcv-$B|a=tyjbmJDV=3h*^x9{
z>BA}?KKJ1ZA6BdQwLYvNe@gv~Du*EP>&WY=QrzG}TfTGrlFl~jMjyT+Z1Q0XVKY@a
zDU)O?*_<ug$zS{M4dGkrcRu5L4w8Haivsd;{JjsmeHiJ-C_nc2@PiNU_|eXfAAR`A
zhdVyp^<l3M`()kl$y3d={XQJ<;ddX-`0%q22Yoo@LzdLKQuT`uM|?QSutU^eeK<^z
z+A^aozxi;?hm*=VPB<Z}&?t)pm@zN(G;5{mtPkgW_*=C)@53L8FZghge2Lm#@-Wq(
zK3t~rmx?rZam9zLbgogao3(6mgM5>Ei+Y>tVC_90?#nvn$LoGP@Znz{lKg-l|H%aK
zA-f+r{Knusk`eadDH}ef)*oeg=0hewvN9mEA6W>Aen^!xNnkOZY^sHhRAnPbSWZ7)
zAs6-|mmj&w1^sxHkk^lVggjJ<H}m9YQMiB~3D=DiR7g3(pN+B<VX>$(i}_L9kBTgo
zpuR?x;F5$=ev~GZQNBDZDoZX$EwB6v1bL2BNja7M@UJ(Hw~8NC{b)qLnjh8usH0+P
z_)$yo8-ApaYbs|Lo2Rl^+mAHDp=0TiQ?|N()RQ6gqk)QVNLakp*lD^Sa=ZeKX};;l
zTYkLlM-x9<(P>I;E}a}@X+{<>Gq+%|r62N@`=75F!`Rx7Hh#4A<A{op<8ALp2Wjp%
zese7`9sTI*M?Y!H=AEfs{OC&PM(yQCcR~+pPpaG#n)~g|VjpS~?x?>X@3A<5Dq#ct
z805!b7Kc#ZrJC`gLs`u5!|I344?Bw<KQw|)bx5DpvAF0YEKQelC;8nh%4f2|Ub0W-
z($aKs0)7PPgyb+?DRDo-EJ|dA5cMNQkjFA&O3W}nhWjBm62c?=7+*h0V6-1&{3sSc
z@c_p9F;2$Wk6lvh$NPTF^<$oZJp7@4=*L8YIFtOC?8g*8rYdI|;RCAqW??#6-p$P*
z%%n=&S%les%psWft{?d^-;YgnKKA1i!b<7_Kb8`t?Lt2mDPBxiLX}Unml2k$+7)ts
z`K(}-AFFAup|1DiQ<;$DwSKH4$lC!)E}Oh|Z}8)DKfdteOFuTU*1V~c+HAbL`-*04
zZ?DaMZ1F>0akl#L4NZyJ=Eru$U;B-B>t^O}{rFD#I|$P7dp~yj@uwe`W&KyR$Nl(0
zUIP61$&bB${Nl$UR_*iSXBD&Gj{{`$7!N96`v0rqBZR~L|J`#Q_2W01$EXi381H~i
zkWcz?%8%22{O-pEI%lZos1kOTV4ke=e&eo8_@b)4<i{WW=Wi?I`v!l>f%}myfb0QW
z@#Cr=PZ@cQde@J8eq5K1v3SFe+k~5b+>%v}cZrhC9Jf2N7OD51_hrpj{sTY$C6{3B
zLq8s|_?Y^HYQEo*fM+ab3LtX;Spr7pM5;hS0OkXStje(ju#<0@a|DnxfWpduC4fBS
zT-4mke>H%H`HUO#yaD73Aiwep22en;+y)mS%Sktnt4IJv=_IKb1n`8%QX+to0SpP?
z-2h4jP&$AX0kjODOaQM1P&I&RY*IFWN~&$S0LqgqD5qk;n3?9jD$`7+z8*jo6(is8
ztxm2TKpLS&0B;145<pEBYf)e1No7&qUeyVpZUBt~c#}@O0MZHd185+lL6%)VAK1~B
zMyjFNpSM_S8o=8svI)VwSelWWQ{^_bRRFEY{Q_u1=nz0hLfZh|A+)2mr<y0dQvjV=
z>>WUt0J;XygGK2;w*a~;Hs79@+B1M&FZq2G_YM5-3hGaDKmY>?gQ$a5r1`e`y#QhX
z!~+;gKO+EZ0JZ?^0r&#&)6}T$02~2018}jZQ(wF{mkYr|NBZm~$VDd{Acq485<*mS
zjf#*ZCK`DDW`CG+rUx)QfDr+Vq%$^vafDF;j3$gxk@Eg=yl?<h=}b`mWWq%1qyUcd
z8kxePd7@>%AFw!0T~p$GNM{ChCUsT-vk6iwQ)^xT9|aHzBO1p106q?2dI%qe@JRp*
z0`Lam3u0jai{x4eqI3|8<<J87D}cWPSQ@~x0DcJIM<!ezz!w308NiAFRtB(29{vZg
zPVH+A;j;ifC736D?Mp2ESs%a#I-gVJdApdhZ46**0NVoiivA|*W~$U~A;>Mt_5i*P
z;CtnNL)a0(w}kJMUn?njX8^lop744%pM>mY?H&~)RX+u=H-OW0_E8T8@Jj&u$p=*A
z&vK^Z>H28Pp#Xjj;DquI2XHii-&j0CEy3L#BOg~YMEY-DGAHSuQtQU=0h|foEX@l6
zTnykG`8-ux$<=y^{3rE~m;B3Q^AYrw0Imj*Er{$vTnpfO0FPy%lWQt~8v)#B<W1G~
zP5`$Q-zJzR;x74~x)L7*@NWSB(R`@l&0%~bt1b`osq(W1@hpH$L1Yd-e@#gUA`3Y;
zBNLTxKG3tUDA!t!AaVu)7GDV>7ol(vxr2B$h=MHU2_kP0`N=XS`GU{)E^KzAfN~0{
z81aiJE*eCVVtFYqMlP<L5`>b$=XVihSgadFJ;G~2lntU>5aolY5X2inqy$lsRj&t8
zg-|Jo%0VQP&B-QOl||`c^&qM#7QY7Byq0T{YpdE?L8K~{3nz_S=Ow3p5DkLp6GY!2
z8U~RbM6)28GoVorZxI@+_%{iX=WRk0<u?t&Jl!pVXi2kc5UmLB1ksMrI*2wwv<<?X
zU2+rx?StqLL}vzcq>A5(Am{PLJy;hyvgULP%KttyCPR-Pda3xH1oIl{9fS$}g6L1*
zNgWWxkRaX-VxVd@D2T!27k4S|1!1Q%G>D9#{5#s`v(844ahCm>ss-VoX)f&IyMoYF
zyqn;m%AD~B5eUK(LbecsL4<<%HHgDOgoB6#u{MZxK}3Uy1u-#*NkPPe7{<2af*7uH
zjwXztj--x~q3&j^a${H=OEstNc(PQzAH)R3QZ+e<DM8E+;^QEu2Jt}<vx1l%#55H%
zBZ%pWKP1Q>5t^wS^VsLGI4_8~1k;p#eI$p#A^L>=(jb-vu|Qq|SX?CQe-KN8&p%a>
zc=L`_ba@aff>_Nk@mB`1O0leO<~_`sAU+M^Gx{Y)TV(s2uVU+i*bv0_AikCv$l9+|
z+b@FnQt`&%^LwgIbT$XEC5Wx$Z7N1OZ}wmM@J$fk2eF$~-v;qr5Ie{_gV<%pZ!soA
zN%dTGPY^!^v6odp1o0!GK4bO;v7g0*K^!pK>S;f#wMCW=xte|n;!yDUy^4GlL^2;?
z<jEjT$%v^|zXfqj@o~b5Aml?pi9a30??L<<#D77Y3F2%JH-fks#JM2O2XQ%wzk;}+
z+FlCcB6lY{mA10|LHLs@Unl-Mh%4ml)T`8M>in8l<v&5l=Qz?f>z6%5Zv}CWVYjJw
zsN&xxEIwgO)cbPnD_@TKVGxgGJr6za!(&!GqduWNrJBn{CWd9EnipL{2#Km~R)Taa
zdk8r~=n+EC5ORj_N(fa$s1`!55ORl*6aqqcH6;H!+1P2J5b~-F`9sJ@Hs?SAazW~g
zd!)iF773v!K{8~Pl|O{yEGAP+gz#DjWkV<#LMb|>LnuQq?+@h_UmBJRp*+n>)CwU~
zB=lWs4AhGisdC7;Ll8%{*F&hn7-6}VtA|h{gf~NYi{=|4)D9sngcKE1lTa&!R6^jG
zk-1I?bwg+vLV5`GRAl|o|E|ggH04vLMg)1<DWlz(oIlC<EaUAEnuO3ggf=vrQd@-3
zjL@8FzPFX&mLasFBP^Fg+YsIfp>qgbLTDF4`w%*++71Mn73N!YiSHEp-z#!gGi?an
zRJ`;`f+egM9X$kh2)#q-6GGn*`i1ar2=B3~e+YvJ1613A1UapP2}6`Gr+#P%86h~7
zV-3MhwkgM)ds^uEUAmLLi)!ACc|!1pFd~GJA^1Y@vnm!sfDobvsnU5_+`=J5Sp0sp
z@yS}0EMF0ftC(Sg;ZzA2MHnv{!f3MO8ABKw!Z_u~$(j(tM43OznH0hl#gk>)@EMD_
zx_+SiX#}~Oni0ZG8SSv~cy?9@v*of1BWD=7-Dz_|SQf(a5a!A?<xZOy!bc&@CoiOm
z`7z;>5Ec*;$0UilNYyTu(IYQajyyM85yDCq{|;eQ2&+T*mBlq7d>X=z5O#*}SqN)G
z*cifBA*>5weF$Hw3>!lDJcKVo@~=xRvM)c?WKk(@3Sn~y+e7#|ge`2fHH2*{UScxz
zG&AxW)_xnpcLZrGzHE|K-qr4+`C|w_h46g{yII^Lc~tO=z3&ZSUkC^3?+@WX2tSi0
zK(fgLJ%QSDjFFM;7gimj%2(D8hj2u$$`F2|^G68BLO346*$~drIT6Ci5KfV07*B`r
zyG&g@?TpNUi*?PM@@-E6dFptcVHc^g>kBfN*Nm!5bXKnJVaER%!eu&tQH_ABb+3eQ
zHH2#+To2(%2v0-!hqd=YxF5oe5N@(~D}>u2+zBDR+%imUlHo3Evo2465W>G9JYw-b
zs?<JYyt#L2CGeP4lH?g7OBe~9b(zA*Opq!wJ~51Jbh1({RCzEWwb{u6a_(LUBNvOU
zM8kMBj5=Y|4I@t&dBdo{s(fMO52HjFCBrD7+7=0;pyEPd6jm(1%_&Mw3Il{<)Z$^3
z?Vc_>l|eImSSpOySXG)@=B41WWC<%5MtSn6u14F6VN?pEau~^Byb(r97_Y0y>S0s~
zqiWcg;nl*%IL}^ZkuO4<`>H|5<eF?!n_7#S8iqWCH*3?vkjqWDp32;WP(O?YVKfXQ
zJ&Z<l-U_2J;Y}4ePhAMo{B4@Ems^?=no*lmTZGXv3<);(DD$l~{WjFLVZ1|VN9`0w
zdx8XaAao2P%PpgaomuRnYP%BTS0vrT=t1ro#(*#el6!^GTSfK>qp#wAg#H{i$vKEc
zM;K1R;4p@S@opIJsd#G`L&+J+kz=%x?Nm+qa;GE-U19j?=v23=^@QOi`;;Ru?h+qh
zF&IWj`Qb3;tTV<cCMPkBT@idA!LTrf%iM^dLIfki7#YU8FxH3V_f~16!uTMJX<>{G
zV+@_KVN4{9qmHM(PnGxygp`P7l5!>!ri3w7IT_n5(-kk384|{fFlL4^i{^alY&oYY
zW)5MlSsSr@q<r}r=f`1u!r}tzqA(T`qyy5K#VT@%X^u`8b6FV6SzHmu$}m=iv6{ut
zsB5U9h-G-h@+nz9n3Gm(mA@g3&%-zy#<?)QpeeQA6TS>%V;EnBu_=trVQdfMYx-Nl
z*hbh&J-pTE+g$eWn=rl&V<-LZs8Y3qU<R1FD-08Mhp|UyR~SEraX5@4Vf@74{b3vk
zW3S4vj}YK4eh%Xo<sS^gG-WS`!uVDBvWy&6d@79J!Z;SjapjyKoZVzONtm|87{=4&
z->GM)Pt$vge?E*0vh+oeCt}Q>i(%Xg<9-;I!uTVMKf|~j#y?@)V3WVXxJvjtj4K4Q
zd*<o8M(27MGWjKyY&XNW6~=A)X3U*1?y@MgW?Rt*Vf-6LVgy+u_%DoyVLVeYj|h*c
z=8!%iKMiAYUgNkjMUa_2&q7V0&gV#)@fJF-M360l>=EQ(G3QHRW^gV#k}$Wb%1bDu
z{CpAQCl{a=q-J#{NRz@56p5f{1W7bsivWZY5tJkpqZX&iH}|ATsR&9(P$mL%Sj3U<
zKg(tS!vxAjj4xdaRE(ff1hEL>5mb&KIf5P$^o-#32&zPo7D1f|s;X8g5mX~rS56JW
z8&o+vlCUPZ7B!Vxo9gGd)s3Jji}fO?A3+0h;|Si2pkV~*5j3JBd1UC!(Gz})W|N5g
ze$d#(3tymF1kEF85kboc+DFiV0j(lv9YLE2Lfok|X-of|2;^FpqHOKx$agA)J4Vns
zf-ZDAQO$;3$=%tio1CLYy_aypo5#{Cg253CVN7pop9uO!(2v|df`J6dKY$>u1`&p+
zKD^7KJA(Hj7)s8Fz#f4Xft5uYRWittI>;{NI0@qG3M9-Efj0sloiNoOk;~i|v>-J^
zefi3Y(1{vh#>fma4i=w9u$KM^>bM9-5=K!+Q^!!pQl+6ZA0NT{5lo0+VgxfIm=(dK
z2qs4`oiS5X<OhVQ5xh8$)99GR56Lqk&sVwG5zL8TX#~p*2lFEMB!UHIDkB3vRy~(K
z$b>hKVqpY}7_%gT#ROThBtSm)mD^M^W_biFB3Q#(X}FTG>ZNR}>By&(((u!llB|nh
zV+3DCu%6}ys>FOA!58E&m2+0^{}pd1Y^H9ZZjE4@s;#!(@-_Jz>bDVm7r_qlPO5n=
zo4PxKJrT5uqIDEMMDSw-4<mTQu%9Bh5W&R=_OiGyB0nI-fe3z%;AjNDMR1V*uhd_t
z((^-VtvIZlBWfIu(K#K#?-3l2-~@{&BREAc`y&|y&ZxHM2xpB;!x;1P%AXpsTq0kg
z{-OLoBe<;iFT&qy@6!Bg1lJ<C9>G5m+=$?AM1C5Hn=1Zx1h>d9=F**)=GFZO{#B6=
z)QtM?rTE7YJdw37iYig#8hOg9Qc*mMAX5~XqsS6P;V6nkkq|{<6uF|v9YxkCEK%fS
zlWf%NQRIjkSCEW@IVPe~e1)~9^C~%C6#1jb6GdLeo0C%_3$V6e6om-lnCr9IwkS>M
zVR1rI6o{f&^nWY7ti2^vOi4nC6~^F~j-m{UuSHQdigHnuXR%Tg6;ymh_C$iG^BNJT
z%&KInyx>-iqFNMnqo`*()LPUU)HkFjgqqZGDo<(@wdtf$>rf?sG-9c*xM>s(qG-rs
zI`z#c8W9?+7<sjQi~P27nh@k=x*4Il@>@jFQn3tOn<&~wp-17S`A!sFqv#ezI~CKO
z&>@PBgih4XQFI~5q%vRVrO(}?7)VpNM-)Ay=oLk8I{m19RBc~1o)X!g<^ZbPG7TaO
zj$%j@??&-n6izxrqsWND9)%W#m5z-n8Du8NCLo)G<_kv-&_ze?qCJFZQB04*8-*_l
zKb?_LjFSFD5o9qGMKp?76k!%4RLLwy8Yd5@4pY8)_#>h?J|;=RM$?~69TUaaD8@xG
zp2dmO_o)-8=F}CP#G*8po=+i9Rn7-$tUiolMifhxKQoGj<XKV7j$#gZo@f+vRgCm)
zKKT>nd@Qvbs|CuD;v({5<t!n{`-NqM<<u3_l~n2HDuVR(Q#miX@f&3M+X$aUu{Mgo
z<;$N@{20Yg<n`1I)X$^xOFbjt%P2MyzKUW8VN(>Fqu4^;9>v#$t<-H%Op97(a1;23
z=C@INXAFo%viV|$?xepfith=#sXtKnP|XYyxi^Y^G6Cc>qd4|QaUhCSF|3Z^=O_-!
z#EzkB48KHiD2lsL+>7GZC=N&QM-+cXafA&|L~$~TqvYSH$Ee4tl39Llc#3>BigSe1
zQT(oI&k*GIi4u99e8CtQ<9oKUU5w(Aij<hkQT)Z?Kh(de*Qi&bxJr;#B?Af9$!1z{
zZbWf2id!^qN9FHVKmShh9mV&fco0Q$46n!VZxsK@N*+Uz7#>FPD2nVc<cQ&M6i=8T
zF@~pvOfh7R;aT+gpQ<pw`<*3bjAsJXbj&|Dku?TO4B29khcohJUDM3TuvcTq6T>Sp
z<cdMQ@hdkT@^>n7#~>i@u=2)`FNOj!6pSH1<0ZeDS%QTN#h(9N3t>rHG=`*@@wYFe
zh!~2+@LCLIV<;X&i5N=8P>M+;(%eeNP$u^LyXfLbLo;nThE<HAQViu|sKCCNyOx;B
zFZD!<(y&SlRV5~dW~{0fL+u#SVyGTNjTqjDAti=dtg5NnHXfTKk1Hi-DjoA1^>t#X
z8$+WQ8plvChWe~(7&CrpC6NtO+o$7_(iLyqW_gp`L^*E}-i{fcKk7@3h7vE@Jcd>=
zv}SD!YD*a+4r7}b+Q!g6h7R=Kp|+F3=eM=Z<{fEvqMDB6>>PVOW4p!BJ%&*+jAlTO
z7zPn~#?UK<-sFDNK2&MjHzvO?E+WuhIRgj-sd-0O2FEZYhIeClF9tu&p;RpfM+_Nc
zYYes+?Bo}7`^FOEsGTwBF}P!Ju~r;2z#~QFcw;bwrB*l)LokL=4B;5!F$`l^B!=iq
z@v^TNi)kF&;W3O<wIi5Kp6f~~NjN5ku`$ewVRj7T=uC=Xatz~D{QEL{6;C9{?~bP^
zXF6dj^#kfOs<}jbNS;BRNtL6UL-;s`PY83V^J4gjAYGbIkPHiASV&$<m9~pi%wob4
zs=2RaF)UZLD`HqlF2uuM6T_!+g~m}Zj?ZFP8^Z(Eu8U!P40p&IV)#6UgR-2;Y>@@z
zdg`_qw#V>g3>)Q2k6}{`r{vFxGgz*R%`t2tiz$7s=Qf%Me;va&F?=7x?ijvhz>XMp
z#_%0kA|*yP$*@bMl7@R?_#uY9G3=AeYHZSvG5o~c2}=|CJXc}__RCc!i$5ElRe9v$
zyo4Q!;nx`ch~du|4##jLhLe&ZhNBEV7Q=DEZ)&GzA5L(0!jk-S48O;4E{5|e<_zI1
zbx*fm5_5sQx){SHHWWv8ZT3x)T#n(d82*t77Q^2$Tw%j&vM_QzzsjO>xiRf!yUtY7
z_NFXu%qFRBbL7R871%uXyKE)#_Xzi8h<M@r8^eDwJdEK{3|Zr_#PL`~W{%^D<dKzM
zIho?dRF_}7o7b{%mN*h<3MUezDq9@c$$8_*LCB?IauQyNKVJ=U$MI?$d1#tBAM>E{
z(aBFWYYW9uIF1H!G>oH297W?OA4dfSBvDJm0fO|T7@>Ilf3L75<0utJ={U-;s;r89
zO(wH?l`QuXSB#@d990=siCUSOOnqHNR*R!LojTMSaikL7h$DqiGmcsWxwy<7iPokg
z{Y-nQhjnSzi=)1(mB{os8pSavj=^y>j^oWZdc@H)j<@1?JC0Uyv}SOVIGPihQk$u?
z<{n$b(UQJdY!gS@I6B7BDUNsOOHbMp+NrP($~T*Ij-wl$E^%}vm}`a9c7LfTd3v$f
zkJ>wqJ_Pam5+uIAat06vs;&-+<6UuRz8A+(f;*0kIIM9vS(H4sI5fp}g4sid$|EtZ
zICK>wwI0P@b=LfJ0&xThA!;O!FhO48C5dcN79~TRFpMhx@Hj@0M^Z;oM^nvVG5=uH
zxVUlOJ3fy0<HlcBpAg4Hg0T6w;wP~<IgTlW_xbM$ro}Nmj#Y82j^o2PX2dZ+ZoCbb
zRMp*SGvk;Q$Lu)f$mG17AWdYOD*>_>`3W%1@~L%&<s%HykK_0xjs?uHJdPD{EF??9
zMTEt1EFmnVE{mgXs__drQHfb8dspwX1lGjysZ7OT7%~i>#j!Syr2|vC55u}R*2j@|
z81fCnhB!Wt<7gaPYbJgX$Cq&&h+}-|ItP|i+bD+_m%r|k_LZE_6O}i`jejk-nYx9#
zmAZ|(o%%KP8|t@IY0{~%Wk*~-nyJ2%DzGb#@5#HVd#FE9f22yxPx4=2;@BtiC!@%a
z={;oIABU(^{T#<Z8S_CYzfgar9-`K~k(zT*%HcSU#33MC`9{5ei{qGdCXN$vT#4gq
z94F<nZIg07jtg=8oH_ZFOyI(n({cRH;u)&=XX7|WUf8dQ6y<;1T#Tc`+>}fI$JKv8
zNl|s*|M0*JLlBiH%qC~Lh!(UkFg6(^NKV5v89_1vl2kgUs;=%va!_(oBuf%dK!Tux
zppugTken3}`0qON)OY>fcdfhj`rLER4RuphS9e$Og*BO}7rLeXITaO}D15!(m8rNo
z)qL9^!!=GMi|3rPeV>$kb1I*Xh#W55nu^;~&9`yg5q&rncLnZ=(tdv`9tig-V7@bm
z;n7q)o{GQ4_>bs|sdzFK{|Xn*r92h*Zz{;oL<!Hi5?5sq=*dEIx=c-WA;kr@hn&l0
zzLk%VS0Gh1w`d+wzHN}H`6S~@F60+@S(Nry1YQ;8o8oCH<iZ;+KEx7*T`1y0Q5Rlw
zp^6JtT`1;4aTiLsP|}4o7vM5qQ>ElgT9hl9z_(nzZ9XOxrClgvl|Oh+DqnNPVj0T1
z%vW5Mlce%4R1l~rT1m9B=(LOG8@_BVC@!cj)N!Gj3)Nky<w9*2YPe9-WxmdgFIj8S
z$oVYGe5+CKM$Xsi<5a)wmc}Sk$#tc)6}A++%X}?Y#vJoidOs|5)OR6WlG^dmMyED#
zp@|DkU1;b+29L;v>=z+9T-bI#?Y|Lb`Hfs?Ooy%xzJHV2%!TGIyyZe`7h1T?_iy%3
zR$98yrEluNek$L>*~*2wA2@uY>jmHF)y4%XU*|+^E6noWcA>os9i$nZnbC!gE_8BX
zcD+=-1CEtmETeRFp_>amTzvMU$`0x7g8BBqWTivGe797#G1G-!E^{}?67A=L(}kI5
zY?026-eTz^+E<ju{sQzLATZE{Un`l}2WR)Z3m>~M#D#ZV7|P>vVT=p!xiH+thX&Lb
z;lfCl`OeB?WsC4to~IY3j&kAsAu4&a1!G+p=fa0BeB?s;&bi0CFrcCGfy-P_@4GO;
zg^4aqVrM!s_oO%{b9N2NDA_2JVTuc(qb5{4YhQiYKBtQ^)diOeZWqX-GZYUeGizrD
zy5M7Lxdb{WeC6@{U`F#NIXaDT@Kwku0kxz{z0qC?xe#V`jhtt4D-jno7YMp2Au3>q
z#zf;TB&^h&T^meyVFnMG6M&uR!YuB(F0AFm$df$Vg}E-wW2@xQcy#wCCeL?afeXuB
z=6gIpap6-JmI^NvT`amtlnxxbB`z>ZV04+-X(6w0VWkVJTv#p9HKL!n@VN`w4)I3L
z#f_Zw%r0#mN2jB*nGJJcy$eq_*f%gsS7oCpVH1xcLm|*@3s=GPv=td9S1g>g-Gv=4
zeCxt~7rt^~rwe;r*z3YB7j9flXZYHM-NNG|YMt~f>NhTIY~(zUp0&>f?kXkzv#oz&
z;|YZu(E%3@y6}SwKe}+ph3{NA;=<+^<_j6ubW;zz%$HHVT~?ufFN?S04|Xonqb?ki
zq?25{cWpnp@QVQXxC<wQS;Eh<eraU*)rAIkau7~QIow-V&RG}EvAPJpjNrTr7hL9B
zZ^ndi(S=JKKE8G~#HZfjH?}Q^?}GT<g+E+)HHZR1{OQ6Kb|Bvq8o*U%<PPb^%WnMT
z!gUuOa<9mx+;HJ0hpe2^I3?+p9Q$pK^7nR@T+ZdV<KpA*a8E4v+4BPL4o!U$bR6%Y
zGVD;(AGz?@g}+_+hx68rTy8vZ;a~1%C6y#Mp1Sa#@N>~JV^g0AFtv5LRO$<MY$NCC
zEA||2GYdmbH<*+xQND$ZmQ>+9qPa!skXL}I`P_I(c+Kw_jK1Q=t8U)$z>hu@aHF6b
zUwN?8gF<c;c0+d~>P8Vain`Imjh=3dU#-68Ms=3pMlm;vyOHJw#9qOT5^j`Uu3l^8
zOslI9O1e=>EacK|l(D$18|5r6?>0}kbV%Q<R&=AzJhhS=l?AGZ(o$8xCaSnmO(3J1
zgGn{rsO3f%H@dn}+l|-VXye9Xo1)UkjqCZ9rf$>~XedgH-HkVd>xtI4?CEYa5YE3r
zr5i(r8*f^v4uM9ZjooM>u(7Tq+q0P)%`MLs0xd;bx$%}jYb&)x-%Mkv+Exy~o#@-5
z?L|Ad(NUn2D7&Szz=nyL-Q392*jcq(W_LGE9mrU)T;219`hA9y=|(R%#<=mG8(D5R
z-5BJ?J8txLgQ>4HR{FZphrQ&@D7jeuafRB?jsB7}zzwFBYwR2-(H-w)(tofU4OgiQ
zL){o6{H|zVk!c(zJlu^DZj5welpCqb)zNO8TxO;+H2KU_e<NkA8{^!V;>HJV{Pu%m
zJm*PWWwIOZGs|wr1UKx9)roE#+^7;JxiQO|@yQ~!-1dy!)s+w3_{a^v8vz;0scv`$
zT%v9_JZ^lk&dyO@@5!Jt_$2Aq>Po%F&Y&A%HwYn7TVvD65Rs@REh*jDVYm@<qrC?m
zJczrIaN~D3{%~WO8y~yzr5jt^*tyz1-Hioqd?GwUbS7IXz|`4p%&~Z`z&tnRTb6yh
zGI-RVy7|Xgbp;pHQgxx|A~zNb(6U5esT<1#mRt6bi`12FtdhK|-B>5Uay}FI+>JE?
zUs(3FG8S}LZ&@}7Y;<Fjz-G&?t+sD<W1Ab_xpCNy?d*_sc7{D}>=6FSvg~wYm+)@U
zuSLJHQePBs?iJo=S-ut6@8(;m%rXyJ_Cwr2R;sid;Y{P&QI)gYbGW6fwln<f#*Y>s
z6*%U`PXfm+`w5PCM+cpMu`IuG)(M{yJuP}h^pnq2dY+StSl4-h3!)d@xFm4dO8re{
z4&DBA;|jMj4{y@qsvFn1GrRFG_kT{OO^$oq3f@qz3p08{;HDe5EX!?yJ8s++xKUf7
z+iw*d_uY8FB~ZcShi*I)ek}U8W&g*G4vn33c<RP~ZWyc8LLNMG<2m<gj~Qin!IOn>
zl4Z#ukkf-?%aY>3yp^VNs%6RTK^}|q3gq)3X`<=FkY6k>d+>_o^Qs30EG{TecZpiq
zvJ??0D*BpeF%ODcsc9Z8Zt7sMB|RwRK}`>8dCV=Sv<H<1%81fZR-l|{dC>|UR1~Nr
zN}tAy%+0Ne2URVL%>zZanq{f(K@E%dY*K4`@VW<$#G+dEbPwuSTvx#E!5aegMC)6r
z*Uo1(5N>E$GCX)w*dbbRMlrKt9yF0?Q_;6Xn~65}@LLu0kQrJEv=SZC*x6d3jc8lZ
zcA{^K(m$|V?dU-#55{=#o(G-9KFEW2Jm}&<SBZA>z$wt(%GE=lrw5sqrI$dK=-M|@
zdkgfjQu}()Pq@G60MUV>dA2#&jFgM^!5-{rq>N^7uUCh7@U90pI;lfNhlw&eTwsLg
zNYPOqq}5lL#AT8)JZr26<G8PSknmu<2Wx650S|&6yzjvTiB1%q>cJ#|$)Zz4KM-Y>
z4+TCFJ+ji_5^!6o9uK_2KFi|wn5TYb99PObmR<|hkOyH82n-Pqzr8Y9w=7WsLp0_A
zryNtKdGN6ZOFUTW0Z&QOJ-GX&`f#B-!-JU~L}#e8L>Gw87M&wHS9G4}d=CoGQt8a_
ziC8`rUFg9g0ooS}cp5vGNwYV3@J%^oxd$seSn0v(dFmIUt3(-H?ZIclpIeqSbS|VY
ziD9i6*LkpBV1wne(SuoyopjjjLGJAt3||Ut5#1`fO>{fQU4TCG_hjtyV7CXCz4*<G
zuh}+^qZjXcvB!hGoEu(L^J1R|-+J(f?e}262M0X3$;G}*J?Oz94=#9ce1iI&SdMw{
zlLv=|>2QQo&f*^ge)Qm|W!dqW{kZTc%W^{CXAgd{EWZkz^kC#Fl?9%b=ou^ZtiU<Z
z^BlOIne-{L-hR=8OFSqKe)E7)hN~X@Zt))ie|q>{t^cL=%I~;l@m~VhIok!+Hg+;Q
zi@hba+!nnfdRO$G=zY-#9y}DFf3KYxoSc8lqI<=Qe>`~N!M_sC;YCibxq&?O;6JgD
zpLy`y;uiu*;`1b6Ua%z#=k+2*fR<bWsiL_>^LWk6KPKgq=u4uE<`;O`i=J)Go$XaG
z3V8V~Bno*^+KVz?6t+Cm1d4c3RNytyVxq-G4>fkO1O|9fLM-Hx0;Rlot%X@WLs>5>
zS*hg&%8OR;qM~KjDyCKzt|D61vfBhEw<}iNiyB@G^<tQpZ}{S&;Vmy(d-2)MjM`q*
z_afbk*Cnco(q2cPuBhFMHw5ZgsRJI{>C?cACSqx5*)zO&Q`liy8hO!J_{tKMS(*wr
zvr?OT(L%VTXe-f&%^mb?<3(F9dU=uMMLWyCi@@8W?Y-zA(9ufmB+yy3>T0vPuEO0!
zyL-_?pr<HPGih0E9*9#c11)=Rfj(aJwJiO-=x^}=FK!OcWUfJCdB?I3_F{;|?|N}<
zZW?`td(G>*M~#$kE2R-eNOYv=DACbgj1ge!djexc$H~~yIKhjFUaa?GgBO#$_@j=Z
zdlB_wvKLdlxL;HGzzd%j-RmnKN|ct51g46*yl`7~kAPQ{H>3QLix~r61cgJEB`gpT
z)kG)zG7K+bUbGyVxzdZc7YQ#GdNI14$}mk}ju#&bOc$MDrOp(XB|2M_m!`}$*Nb_U
z&wPOeqMwL<>NP)2WS754EQ`HZB0%F(FO~@}7hPf5tFE@M^5WKJ2g7O(hw$f?WsSfW
zUaYk&>jawAR5p6C$&3A79Pol4i#AMDH+%7=7hAmG72PgT!d5S~S-jng9TtDZ)>^!{
zaw<J{^DJOlzTsKG;=Ka<M8Eao)%7Z!4|-9yk#bDt&mn6*d?#?&izAlhdx0Ok_)*}f
zW#=c9pS(Ek#R+Q$p7G*mi+|w}S$xuqQx=~V;0KMfmgStldC?1^7ez05p<gyv%I}<k
zT;o1CeE8FAe)7%d!%IF~@!~4yycd6Yk=JKV%j;e|^JYBp;$JUraLKTry|~!e$?!nn
zwikCS%UywcoSBw|Cn<V9l;|Tb9$WUmx&I4uZ=}PX)#_880(^L<s6zhFtQ3UjqAx@l
zP4bz>9HRS{s>$NdEGYuHd`K0@ZQ1h(Y<*Q3xYqpCoZp9+eJJbWL-P<nl<|tsyud3a
z{3`DP3D90pppa-`ABtG^qCUJPysw5rH|8xaC8UYMhY|uMMVVU4htd|8@u6D#Od8Ak
zz)Q_)K2#T|AX?FfN&-x(EKo(Xs;JEeMPPeV^D>p8hD7b6HGQZhKznT;Ubk5Fp^k7}
z(WjmaI=o?}))S~Nn(jjbfreIU2FvuC{*8QS?8C=CO!uLQ4^4gMxyI$gyv1rWANu*w
z--qTtwD6&&53PKdR8Z;a!&`FH?X6>PEzm}^t!O*Zw?%oIg5A<VxT9z%(at_}5olG{
zbm%69clV)(Ku;f>0<1C9hhD;2qID-ZXzXpJ_VJ;w#WUuqg?2dx_%O_e;XaTDiVosD
z5ujzTz!1@QMTd&^<cHH;juAeLlPGzlz$hO^Tb40CyeB-?vXok)j`!hxiB1sxz=w$f
zlSC(rP7!69ht`?3eCWeRmSw8t;P%1egV$$X>N99Qys2mUME#-xAA$n3hkOWI9ATEm
zP8xN|8x=LIa$=m)7AFLz`H*zf!766>Fw=*PK5X(~mJhRiSmeWEpSiD&T%*qMnKyPA
z<_gU7VZLQq;KL`vpIVlM0^E%&u2Pq97WqJ6SSqm0hvk-Kg}_SDRidkXIJeq#{@n6e
z<Kr_4|5w6VfptEt7uaCg_uHLi>M5Ij_|k_hKAcdMr4!VxKCD`%GJNgBHjB6Wu*2f7
zeAp?xOLVto=RU?<-*D&gVXqJSEc+oJzO{J2zyZ;NqP!o-T;B;F7Cqv__X4zgCaOn$
zIOfB@emwQ#Cm)XcFxHQ8ew^^}0g0&Uht1E&gE)Ti;ieC_*z-P|^x>2br+xU%hu@iH
zg36IP!_?LGvpzmdNj)ceUX;-bK3uf;lE7sjN^Mb@^oP&95&HU`jFM~Ze{%EO?YJU(
zRrH!DjeiMT=VBDNttvF$_Ti2X`Tcm=kGnqH<H^E@2dt~Td2!D2c?0mF508B2=_ADt
ze$0RDGxeG1-=hDBK4A|CF!iYq{|WQjfYIlc{RQWw6p}+UrzjngvthG6mmk6U3PY+u
zZa?w}<hAVi{CG+D&uXUID}KD{M`b^%_|03g1w>1W7WAW#pN}0t5s5N2O`xdgYof*c
zC~l>`=F5P^CHyF9aVY`zMj6XeR-l|8<t<AEfr@@q5}-4y<25#y*vT(denFu4QO%FO
ze)RLBx*s+CXyZp)KWh3>%a8hgr2Ea$tnD}NGt>WdiK?Qs*Ab}8!Y#`i0`>gnw-0of
zUtek9M^iuUtyCNO@lUZVh75r>MIEAzL>v3jM1Vd8nmC!InPhD4M+<?LqOC;V5^XIy
zE1}Z4o!^|UZ~M`nNAX*F$7)IkKc?->;Pqh-KROCC+DV|ZA6*2xTJ~-N-TnBZfRk>m
zYbZVa$n=BIOEgQAQKuihE$-uor?x_4e?JEJF~X0Lem?0`{jj5h=eU7>3}R1uGZ^0S
zW3a_T1l|=LDmu)M;Z`cI(?<C*+K(}QyywT)HI-&dRrblM)#hT%z7&kqQO5i6z8|yv
znC-^|zxnaj>xWNZq92p|nCwTE<elRG->&|FA0Jx$ksniqU6#eoW3f1)Dt=CWKO%l;
zoY;PZq~x$41zvV=b-!4oX5UNXwKR`T_ao|u!70?l$*5M{5#vy{&s<nXiTm+InJk8c
zz%)NT7MLzNLv*Gnw?Vqi@nfzZhy3`?k9mH~_hYjkU;44Yk5Bwq;m1n$RW;>PKicJ2
zHf&WFa@=bxi$n>F{a9l0Qh{ZDEVnG|z;C$ImQ&VwGgkRQT`l^V=;wZ{VN3j2E71+2
z^jRmc-fw;*!{|oKzDa;9lovBwI8t2l%hauY^BQcM=yuT^qBMRbuv2uG=x%oJYV)G&
z%`eq&{Mh3Mfnl$}K0m&-Ec*ox_;Jv(+&G)X3xLCZ{Osq$Rd9q$Z;8tAy}%EmKZ+jp
z<CvBDlfZGF1qAr*6|?-xL-XUBAAk9=$n7}g$0a{@`m;ExPWy32hMs)Zk8>8E_v3=_
zMbX7y*y)hxNXBLEjYl$m6aAg5N#IY>E22!j>Ibhj3D;T6u+00?Z#U@tql4k5z%4&+
z3*52nce&UtUfa&Wu72RhL&-~iB=A`DZ_$55pNO_<;{4CgM`+@;0Ez|h+>aN2<O|@X
z0FnaWw?a7sNDkoGA~i<<o|c*B?bZNt1&}9zPabBa2L5+u&n+-`rFp(Cldj|qAa4yv
zzhRmDawLBMfz9>;0Tc}2<p5p@;8n5kJH7>tl)0TVxknYEy`-av*!iViVOCm0;n$8u
zvpqN4xswzRAT5AC0rU+30h9=!VE`EclnkI$0JQ^nJ%BUK977(Yln$UwfKPsQlno%C
zs#Fy&7eIM|3fV~$92EsB1yI?tR0){-Gc(!(ShG}BL<!Xds*BbTttnbdlqXF!fcDGP
zIxK3LI&Z6bdzD&Om{EHGZ&+L}fcnDemZgC}n_74?07n3C1<*QR-WF&SK$8F;6k}fV
zHx6K66K5Ttc}uNXz}(PUiZ%~m(}R>2{QbZL^UI4?VkBHCpV}sXwgL1A@NvFq7r@&A
zbP1UIZF|v9q8$S0$o3S=qCInOCbhHJ2}e6O=qlVTfbIfKA7q_)&-7vWnE|}HMeQxs
z^$H*>0A~Q_?q{))Om!_*=chY(KJ6F4M~#(%0SpSDe*phnN^g2OeLw&O9Lk)!$~ysk
zT03iq%(21jc2!~EihDPJJwr2@RCkkuzm6Cd!0>?iGl>zRBLf&EFj{n30Am7pFMzQD
zj0@o70H%w5yr?&T_XQ@1P86LKz+{0bY@PrM|3KhF(YBjYrv~5(z%5aaXs^wwbYozu
zPb_}XfM_s)kU%&9Lm(1>CZLN(MVXg@g~S4g2apisG*KF}tDwUSu`CdsDLPAZw&)yD
z`p@Ou5S}mke=Yok9V?cFqKiZqi!KpeDw<v6@&Hx@u#$^6fQOcSbpRUz*eKD@L_g;|
z7x+SSt>`+@^`hCeZwg>@07to9&?xq=L|NCC0JaKm6WwmvcW|OgpX>}^R{*;M_&R_i
zlKKs2g1`aMy`tZW?h7Eh#{Cjy`7GpM0EeWs?*ce1_W$cr!uOWv4*~orJpPn}_MZYc
z9>8x_>WKjV<!8<}hMxs~3E)?Ola`%zo#s{(z*)<3f%9MZd;lz#4%t;-4B%1#mnDhD
z>>7U$;Ew?Q6ytT#E239LuLbaz!2cC;BY>M?xfQ^j0PYIkwtVgda6f<tR+RNJBO9OH
zfJb6~Ec!RsU;s}7_*bI&f_N&B8Z?jhzW|<b{}13r04ZWg3L-}kIfF=+Xm+vxf0|2@
zvg=|Yxh0xMG;i>KBTM^BV#y!G%L1>6W*1d3h(bY>4We8Sg@Y&}Nohe86=2?C0<Q&e
zr-L$lb7pag{yi#<NeH5ZL}zqJEg3{9;nG3#$Hq)8BT+)Oy?hWog6Jv63ZfN*s1!uy
zAgTmWHHdbWzfIuHAQXXWK~xW-hVUDrHAQQQ))sv|2vwj?5OoFquTSj%Pe0TPqQ0cE
zRp|l^L>mT?@&B94A<;&nje}?+&@_l<0?mVXOMvCH5NIjdD)_&3(b`IF!`dxolin6?
zZ&^A7(NVaQW$7G57vZj=-7I@|0S;NFfYY+~3L;DR>mH6J9a4K+_C7)M4WeHV{eu_~
z#OFb*31VOngMtVK5enj+AO;8VUJzr07$UhwioP4fP=R5hBSeS)KYhqHj1uE$(J`Vt
zG%l`jL5!E^he5m_#DpLwOLU^;!|s|SOkkEN7Jp!s|4|TAgK$}Pe-Q2<JXUsZ5I$kH
zf!VVsaKOqN4k8l7+#u!!p#`Cf=gc6YK^Q@NEJG8siedxeK_u8<*)ABJW{ur+DR72W
zENhu1xn_&fbB^Uno*%@bAQnr~0?|)`_*7t_<<An9SiCxjr9mu{=<*;|TJ{zHPnoNP
zvybjG%l<_WYlGNh`L7FNTM*lWSRcfOAU0;(MK_5u`(^=l)E0rQR+P<V*dfuKL45W9
z*mnu<7X4b3p5F+tz`X+dM86f?AH)HHgI0IZpEVv1;z$sAL&z7x_d)y+#FZef2JvGM
zM}xQ!#Kj<v1@RN-WSVkL^mq`z3Y-Yy=OBI&X6nM{InL)!BAg83R1l1k8BUAC8PT&r
zd;`<Sa6X9nX^N63>5?S<#-Du#aas6-CQds15ya^#DSwJ(;OX?!;jE5F>`73r1@Tu9
zPlEV2i0eVz2;yE4_k*|@M5{D~;c)JxTNdBuerWMsfuC|GJrH;-`p`;!6vPKd?Aay!
zEyjPi>Y=<eBaMxD8pMkrl0x_|h-cEI=WKB9B$me1oX>OQ2q9+(xkF}0F(ik8BX&Yc
z2p>0b<`N~OhENy^ftn|TGieIlUJ4<92&E<O%OSiHLh%sNB>Jl8YatW}p`dUf(ZZtH
zom@n?sOT!`x?)l?`vD<j4@!v;vYT2mgi;|yPp9u_;^e`e%AHh3GL{XYoB(sN**vrg
zAyf>ZQV5kpXcI=;Fsg)5HDsOy?}cCsL7{&LgF>hlGJo~@R>=GbZgp}9HAAQsLW2+*
zN>Xi6dkC)!s3GvTvdmIPqIE+U(?@0W4T;tZp?(PI!ZgyeTisrS49n6igf~NQNVJh?
zQ_;pDG_ib`#VDMMxtfcmMF=fJST)rAv2H7|WEa~yWd1FM|G{Y!Lfa7L_HEEEgttRz
z9|DcNMLUGhQJ_-@-32;}b`hmpSAlLJ+^dwzC_|4BdWMi0LNCiFOF%E}aE37MmYqJ`
z-)cbZ6GC4}>L=P?bbu(`hB;H-31M&u@sRn8?ja$(8-fu+p_HVdVi^-cr@zyOh0GtT
z4-a7kNA^<kNQsVSH+EG=iFV%USo~fpeclUUtYjG%!bc%Y4Pkr;?}soU1hsFmDU!qj
zCkjjoVY0xqKqie0A4v2=ac0yNf?F(F2%ZqUAp}DRiNzN}K)^5hLlb9q2_FSA7Y8!K
zoR(sVgup11sH{a7=V%CbBsCT?FH!VY97C!oi4dl75rr^4gxw*09m0$dy5vz-gs?J%
zXLXgCA<PP4b_jDgjv;&+!tKxO^Fp{@OX0Tw3qqJL%o{kg6z|yJ6ZYi5Oak2&a_Wlz
z;t-aEuvB>S3UxVKQbbuM(N<eBK3t;Cn5n*K;^gmjSB0=TgwI0wJcMl_Y!6{g2w#M-
zDTK|OU@O(NqU$(Js*~S?ub1csQKoJb;D^Czv8*rIdo45hoyC?AwsHiEWud8)%Da&}
z*s!&ZuR_?#<C?FQ8JoF_8+C@F?attDqUgq32j7IShYN~JK7_p?>|@U>%Bc{(4Pieg
z5@&b_2RL;nsE0#162d_aUsLBH?gLv?hVR(ynI?SC?JHfW|7`|uqY?Nk*`pyG3*kfv
zKZn2?KmE+kpAr5P!g0>w4Q6Agzeuj%JsJ7-W&A44yeFCQC56D2to_`6HiUB_{1L*R
z9CvB|g%B==`0q>eWAdCej!Plfm#e>p%-^G4=E1JE@0g(Scz@^SvrsKq-*F{`t0CM7
z;U?GkXX-T>m+Mm0Um;xiOubTBVcX1a<T(!uD7U$RY*s()nR#ixdPm$?(Ot<q?m^1^
z5FUi^P`0w1VI+smJ?&8lkHzx0=s%*gKN0v>^eOj$foG!6LwFHFl4Q>z>a3Q+EZIs(
z3FFl;3WSkMQd31~&n=KgG_Pnr(U-!=FYvPHE20MqB{54u;gVsL3ZsxPjfKM~B3xAT
zHPK>LYVk1Agdti&^v>OMW-KjSRg}>(VU!gvXIaXJQNiMh0+qtJKP#g$&jJ!9GovjG
zC5&oeR2O5jFlq?Y7Og2-OZ0m=ir2$X!>AKRT`@Ka!!A%ijC6rF!l);}!kMLk#Tj8V
zw3zlcg&m?7<T8o=jl*anmZp|xwnKA?wh(O@Mk|50ET7f_ER+B4Y!^nCFuI2EcG&!j
zO8YQ6gwZjK|Ei^Q7E32;ONB|FCMEH2q}-iarYh&lq|(wYjP7Cd2%~2hnPKz~V?Y?a
z!pI7vUl{LQwmHM-9Y!DFPrk|8{z?XoKR?Mq?HdOF9@XH1?cO8X`;Tn{!x$9C&@hID
z@s1?D%PCYjC2`p{SfWG1m~zh+dX%zIQ&(KJ4VNg(2`x<O)YLg5jFDlC3WGeFBipqB
zf#p-*3u9~;<H8sp#^4BsMDTtX6T;@{<8c@h!<ZC?Hw<4GlUZgMABOQ!*!*w%ZFy7J
z2VveXP2=;H*$Gp_@JOGy!f=Oid}iw1n>POAreEG9o~rmiCcktn|5<h?j6fK{FhXI3
z!#EPg_mVLZ#?CNyg`tI^hY=0K2;<W*7KRZEBOb=AFlL9%|E49_=6&jP(P?3P9LCiA
z%JYet)DG<(Gg!`Q`^+%v*LD!-KPQX@%qaeIMdyVvUtpj&gGHSxrwnWAoU=F6dogQK
z7>mPL6UG-|ED2+27|X+0!I_Xp;VsQ&Y<W{B_azp~uriF*(j@XKfd~8zm}U7~fLqzx
zFxG{!F^o-NtPf)|-;7pJSure&up!KQaVEI`P2U{GmN2%mqpT7}c2-f!u`P_R!XRuH
z-66_~Xkp-8$K7Fk9mf7J4p7^v--NL@jLHw}dpIaFGIA^^M&mxQ(D<!D^A764Fji%y
zeJ5ECh0*$Lb<HFD&hr`cIV?Uk@7sR}<Hs=gH^x81I2y*WFb=<&R<OI{Ck}BK=fXH2
z#)&X~4&!7Pr#N0soxh0w$~GLzVD#yC87(ekoetwn7-yNQyfW@hh5Gc53@RO{7x?F|
zFn$l?4{^8@#^o@66Q&zWpc@0fXQ6U$KeWX(USZpEC|5ao!uTtU>tWm!%Z)G?I3m9!
zB{%*)oj$k1xGhOM^Kzxovi_XyZW#BtiG}fi(^&i;adTem$hE|AzqCT2mdd649mYRl
zJPG4p?oJWB5y4aL0Nmvw;0%8j#&hn{5xgA13wFh*Vkr^iiXbUs{*jIAC`SYsUoWR<
zas>4jXEK@^LGB1%ikSZ$&J#i22=YaEH@H~KaJ`Xp)pfa*f{klACaceLDCcI@vkfoy
zN(8S)P&9(qBG}f{Ss;Rf5u_DK<B%O{>MX=^q%kiFB^421!}y=UVi9xKLIfoum~kqr
zII~3XMN;v3bF%gx%_tc$mwA~8%0|rXs8j?On>tHJP^hi)@>@#Rj%v9Gln4^%?Bye1
zw1Q|wQAR5XRF0sEKvm0b6Nuf;!HiQzCs&W4Mg%n@s1?ER!bx=_sBN_{f03luS#?K6
z6(!V(nE!bsFo~gF1ob0$D}vS$q({&o0!IXmB4`*vM#Q`TelvnM`4_(w<v^Zf0xh-Y
z)oUC<lL%Tw&@zIi5gbfW%>5_7nc7TpHIE=W`gc=jc515#_*X$Xw27c?1U)0jjG$cv
zZ%5GSwWMy+;Pw&lZ>^mp=pfOK)=_k#PthcHc$bLz=gqE`y-1NHPJr$l@eHMhX#Urd
zdPR^G!N3T*7fEtPkh5@7p9uO!&|78;{SOpQ>Syr)f&QFVg_8CcNjgv^bx3z*kd*(9
zG=}Z@{6UU)BN!S%D1vYV!`R6YOpIVs1S4eh-xD1v%E>TFU~~jyEX$2TNn<S@Coo?0
z{Rk#lc6*JK$-*AdDVF_%2tJJ9qX>%3H&1yCQzgk2fm`5Jza!i3m8g$X&dM7Q2#PLv
zn3Hai2&P5wu~;-wT{IejAwZv41aXTK5qz-1EPuLXSs*YYf|&xdL}y#6b0U~4JWq7K
zXos%m8u=uGPa{}pd9D^%6v1MFC8A43mx(gVa)A{QtQ1&f*=Ki8Vd`fQd~R9RaM4-3
zHiC7+>qR$M_Kgv25`K9=17_dCxfFq2#~V7fMX)`B;~GwA*b%{3tWm=%4Lc*Kkf!X5
z;9G%RqPrvbT7XI4M6f4<SC%^(-b&xgO{STXus?zWoFN(}X*d`$pO|r?tTJ4~p$NW<
z;BW*-xYjf@(C~c(KX6Zo;8FzK27ip;SOh;sa5RE4*VDO+_LyIfzv4K~U8SyaCV~?Y
z{2akA+-kOEF0Ye%DuQ1lI2qx)gB|?UT*p1;pX^SHGwP(0&qi=Ag2_!B=OeffF@Iv=
z=%g~r@40q`Q}1<7;oXDFT(InitG3_SehoJ++y02)PqADPeJpyFT_;d7hw@hh*CV*W
zh5VQ8W(0S*ULv?9sVwKVK!<7Sy$JIBW_!SXzGkESzSw`dW_uXHqX<ejb6!oTEP+W3
ze@F071W)MG%=s_3cMWT<+MY&m<%R9P2%bgooQpJq92!_c=Vnf3DHL@iamWff$T>A6
zYvxg;XvqKke`WUi)0V2C+7(;nkJa27nmxDW(afsp#>32~;Uzk2cv-_MbdzI$RYL&{
zrG*P>D5T*v4aGEk@WNJDLlF&ElN25rvlkT~g8jp^k<FaN&2k(ir44Bs&Q?f+h7#ga
z|C(7HLn#fHzjF}EXeg`U$IG^In%RdHHI&zQMdYZ!8lw)jlRlL+u-TP0RFOieYB)YR
z%ck++v1!?*DUz35T^wp?sHvfrhT3w-b`6nf>gyWnXbAsq8}Nrsl^W?^*J?RO=M4?@
zG}ISMw^NzfB?ps~h8i+7yse?VhClAx-qg@YLt_moSJE9C+Wc!9GNo9Xe{4-Ow9wF!
zmVazbMVpB>7oB>_PR~|kHdVu08h(9j<E(BiutMpTdNQ3?;O)2;9@t(~O3@$X?4Y5e
zhJhLeY3QV(vxY1UP7Pf&bk&flp_hhk8hBaWT|*BIX-{pF{<ZbgaQBI==g)TkecN+Q
zB@-qNXfXRq`r4dHy*1<<<LIlQpN2jf^4+sB9C>K#&tbi68=#pV1gbr>MVdJoo$}Cj
z;I8c*4gEVd7^Y#ch9Mf(@6Y7v`&|t~HRO0|qdz@Q{+vGSzO8T0q!AiMY8a(qw1)AV
zkYyEyF&YYYOZ&a7@}5}6TJ~`omNj$I;eE?8fdf}1i<Ze6rf}3WXl$5<4>e5H;9}zo
zC!PN@nP;w#H1xe?<EhH6nI|l-2A>8GJ7iI+(I(Zr7ShZsB8H$qK*PPlNz5LSXxK`9
z^SoWx5Y;e8!(0u92A=z-YnUMpF%5AIH#;f`QNlEVk2O3joW$r%akCXpnw?#sG=`Oq
z@1lI%Ntvf%zJ^7d&l;L^QQrJ0ZGnbQI6yaTpK4Hka?o?3hWp(VhEm;>B^s7$7*W_f
zzc16UT*L0p%Be2O3a-0bHimAUmBK}n2>ahvS8MoM!#5f})9|@weo9)SVWWmk8oto5
zR>L~&f8UU<=XxA%eiOGrEPU||x#&XsW)8Oo!k40iEdpCLY_lvp7t_8&!&jDNr@$_@
zO@OBlo=^8k0}gUy*RWTZ?b*k}=UWCOx?jTq%kHh7!qo3H92Lu94M({D3;!U>R|wJJ
zN8xN|MvqDKC(**AlYiFm3%4K**SLZ-T!C^{!#O#?lNwG5oEAMJdU#L+9`$+6Jd5#R
zN0$XIXt*eFNpwf4RHptWv+;LpPX3|cPm8Z;*eWyjFAdi<l+;m5#|=&i4v>!iSM9en
z+~yXl<5eAZIBEN<FX{NXrE-_kj{~jYfre)qo^$?aIJ~mvKN_A0Jks!3fX2TyeAmoL
z_?H{b16$>>YS&<~r@~x%|7j?9-2CwVLPL^{JUa5~$k$HIp(9l{?}5*|o1RlgvW^rT
zxpZ9mwO(>_Cyf`HIqx-da=dcuD0eNHo_uN(ACZwyH=o)R-{9a!nEcY(mqpp^wFQ$3
z==kWVt%ztr9fbszJhc@TFmBnIT2%No(QZFDXe=(hktWJ+fsPWw8wRD0_c=;S`PFsQ
z&{0N5S+++kRdiGpD6gY}Kt)luq>?~o(W1?rHXUr+#)>ISQgl=kJ1q>fFx1phTa2|t
z(*~zz+h5nAilvTdUC|P^((m=ms;8sAj=~8PNg!QE0~Twbx`Bo|GIT7_u~g@;%Hhz>
zOSrB&8tG`Po1Y6>>1ZNAZlR;8#mxkoGjEFdY><``&Hmu<mX6js+URJjqrHv}I@;-Y
zn{z2EHQ2!X_`pvJ*`FGix1)|OlDCs+XVG~L%nusbZryZr*U>{qPaU7=_*6%xj$S%G
z(D9*;EFDfA!*mSS(OX9!9fNiAvshmp{dDu$M}s8VUvwbHA~kt{jv^^Z%St%-RF-Qa
zlj-x0cs?F!K2&Omc)qJ+D0`r^QlVZi>IfYpb&S(7p1qV)8O6cPnKW8>RVj?o@tzJA
zIF^k`O|H`1$?{p$`#L5_X_IwK)Uoxboeyrx$ZI~fWfD7t*NQ3T^QoqAigr;sS3lA*
zRYz2Zp~I!ats|mC)8WzK)e+LMpoi+yapZ1}fR5>96u*u=eawgIROzcOdPfa%fxM#{
z1G2*6N$0kg?9H1yb=`cz%&(`-Cp9q|(-GG(Q^zbF2_4g<sOdUB*5SKje#$PHFKKVx
zUb{;;$TM_I8E1aGF<ZwR9rJX|ms-jXP<PZxpUa*fX+l?dRLcSmckL{OZROGz(oM&i
zGO0OE*%z~}o3{R4l(QWbYUIm|WjdB~xfv*IV1<sAI#xunGKy6?R_pjn$8{Z_>3C2M
z>p1AAZJ$dwuF>%Ymxhk>H_dN(vcKy&u`_eMjtx3C>e!^?xQ-J#HtYCO#~~fx>Da=a
z*Kt5M|7*NW$4iBkGDVf00^3D*h<>GmUxo1g_AVW}b&M&je9iTnuIyz-LQ$pqCUuY4
zr*1WWUbs)kx8gwFucLV}2jR$C$3Y#F8}Yt}dRS`wK{xM~9}#8)zUOjlq7Z)6aa4@Q
zbo``a@ym+6Z6@t6K6j9R*71vu%UlaOer0<c%1QQ2Ec3YHpwB7kld{_#r@6gscbw62
zR^Xf{E$4My5WZ+xE(!2f4?FXB-F%W2e<%5ejz6UhU#_uVkwd#GdQHc@LJE7J@&xsU
zj+<P|QM8TXmX6yxibYX8iaR>)>PU(rM-=yT+}H6~$KM<>I`6h~1AnCBp^m5bZ4B9#
zQpeK&(eXsba~&^q{L4<0Yq0;g9>26dm8k1(`ZIw{BZH}nhN>*8)IT}MIipC9qCgY{
zqezJ&R}`;Ck=9z7^2C-JH7^ujjv{vyjOGy~<Q2#l#ZSl5Ut+UcHpnlQfo+vnqUMbn
z<z6~V=9Ox@foZ(hD-=cHD2haJu4@W?ibl~~8t|GpyK47hmf4@CrA2`#)F|piQ6h?x
zQB;VcVicvst#lM+1d^WQC>uq;=FV~w<;m{5Q}*&v^Q_0?t@&kUr6?*#VT(c$hbmFC
zyLeGrmBt5Vzp(>ZX|*W2JxqT+YI5}`YD7^}c-DPeEkbiAJGQpi>9A_D+VNO=-6-r)
zG>jr6iZ`OD7exae%R}1&Td(@kSLy7Bd$wvrRT|kCHfe5i=bMt$Jc<@kIHG)aq1s3+
z?AyjsG!bqZMKggv{>$;<!<0u$(ppB*N-VQ)q`wu#+%`&=HVVhZ^T5_R3TnB>Dea<o
zJBmqBOpc;`6dj@%6vaDHbc~`?6g{Ho88t7?JJa6K*)@tTQLt^a@Nn)o>eWr6-MK$Z
zR%xdtGm73~>?Qq~6~(OWb_S;aFWUP=(U*s?!cKp7R6pA9+xkZ_fR!FgCl6#T)6Jy8
zQ4EP<42K|!ccU08#j;z5MRD!FoFn8AIB>(G+)|1WKG<m=8O5k52n?eI>OajnmJ8vL
zZCn)Nqj)e%-PGK<^KaYxQA~`2z%W6ezi^=;#ilT06h;)WC_aqhqbPz=grb<rF=eGu
zc%yL3bmgq$bKW=#kC&ufypryda{N)SF^+zzf$UXq&&K`_N5Stn^eBF8?u<mCMG@X%
zXK%0*T)(78<<NM$azh&>&LN9pK@^`vF)fOZIdD<Ti()#D`h<NZyGvk3)LhP-inArk
zsWL}qsrD?LOM{-g1<JzbOUaz2G=3Vz!YG!p_N3yAWSX&^OQJaWC}lB?&(hhRrBU!e
znhaB!v|M~R)~sb!6sx1S%DSTXEQ-&gI2y&VDAq*rMHD-t_$rFEQ5;H1+8D*ADAsY&
z<x=L9P}U1<;34Em;!`m<bFjp+J&G++^EqbQB+86i1y-aa{hpClG`D$EI-HWUGm2eN
z?1^G;6uUVaQ<A=p;v076;WRohjF^?WUP)b=lC&?1Z`t!v9FAgt6bG`4jbdi1*^Gly
zS0a|i8kwtON)pw%KlMly{4(o%PT)LAKS&mDs`4XGd8rEFrznm`ae;jj#R*A08O14q
zpScoqE5Ag+rv4fQ8<5@R(@~rehdH^GRVhhlxn)W8yfi+$&D$R5xFp8kxkjS6Ec_+!
z%?fmrw*4ucN&hQy2s{e*#$Qofk0QxH4g)u$xEaO6C?0YDkK%R|cRA0cgqlj~9RX&a
zl$7(naPbN$j6R5BTdKk^xI)U~DE^M(Urw7S0#fNeR<0*j?acCD6wfXDGcMAUq}C;r
z7jpQwxW(mCavDfB@Umf!c#45s2J#B08pth>$H24cDtlwe;~eziAW|9f8F<M+egnP5
z^7NLO`ig-osmiMc3K%jy9_J`1g)r$*N>UL6MGf;xxTIlT1HWdVn1SNL$MPqo2|#pV
zp5)yPloAFq8Y($jIH}B4O7fN#En}dp0PW=rl()EoKt%(UEK6krRfMaG+AO<bAf>l?
zBeaHrng;I1a4&{h25K8v72{Qbd4cr0VQMD>s)0Jfbwyhkup4;8Ks^KX4Ky{-jK^!B
zfq}*b{`<uK^{}jl2HrH_FhI^Q%)cWM`p#4v85mkXd0bE-(^9Xf(!>D2ej-#llriRJ
z*30j!%?-?}rtF=X(b7OG18*7NuL5i>oNpUwZJ<yKXTi(%HU_9|McavXuI&h?EA0(X
zI~eFF@Wv@Sqn!<OG0@dOHv>=ELId3m^x##Zft3b&8pt#-%fM^{y$oa-c;CPT15OUE
zfzdpWHEJINeGR<J#vADHB)y-3fd&Q{=+DD%;T#}F+Nalc+^_D~0cUbm<sAcq4GiG~
ztE%Wtl_KpM5QZ68+b(msfd>_ow8G9}<JA$uBMpo);QiE2dyf`Q>KLi_J<+kEV_G=J
z85l3jCN<jam}p><fe??>z+@hvE5l{LEigs&0|Ub<C?6X5NTO3k>1M1|J;DLY;x*tC
z_FI-(YgKv%CCcl=hyl&O#|EYw&<#X6E7sYk88En_ZOYZEO3W}XhKJU4#0@aYkPyhM
zsI;{y?3o;&t1}GD%s%!nRK10hRkRzY2G-c;7+Aom#nJgLW3GWYs$-sk`38Qeq_keA
z9-Hj=)WAXm%M5s)WGynV*uYXLhd&2el5K3^BzOEK<Nk=u`js8a4eV;+TvFBS%vA<f
z8#ra)w1LkId~V=?frAFt82G}#R|a-+Pz>{Wc)fuQ2G$w4zCYuqs>;$z%0_9@m!fRj
zCIhhz>Si9rh)hPe7}zRF+YIdBs;_8Xgl}hEEu5jM3LREeQ25RDE(3cE>}3^9;+1we
z<!knp#Vl~2fn(#;Zw=HPr?OAdDl3Hj66K^iWZ*jkKXZLmRrqP*uz}zC&8&eV2EI4&
z1Ls&3<)|p(M*+6~7<Z2*rvFc3;c%P~%l#J4tyL5j^@|kvtAUdOwCpxg&loss;I@IZ
z{+Z_toM&AI{xEPsdi%10TeTb)g)fQncsW;p;}+V|S*Ak+);o5+{ZH=j2FBjcy21&-
z4TtvxS~|Vu73yEY*F_mERmXADKmyKN+(0&)&#vU~-Qjj*AYM_q$C*}1xi5{0y|0oV
z7<eegN20VmHt@H_{}^~;@xKCR4rM$u@SJ-{46S2$VIV1n+A+KyLyj17#!w`NqA_zt
zC&!Q)L+%(-V&)jJ-*UywgXOa23d$41D>1wpGgnhy(R?wy6hnUD<83ov7GNqfa&Z-i
zVe-_BLNOGKfzf|6Oe432!ZG~bE;H>5^|cs^#ZWGW@-Y;TAuT39(24;uaIat}DNsUm
z>%UpFl!~Er3{6`)&s8)X%ErtdtJx>B*?P4?%$x&NVyGHJMd3=Kl|`A9x4dGDL5X2s
znzKd>SuLHFM`lh~t5%DldJF`H-`hKCiUWOW#mxREs4>)up=AsUotbrGu*cAZZHVEG
z80y845yP7?bJf?6p@BfU=(v{VF98@D#?WPh`R_|d42@!V&_rn*L+tB}|Bhwy5Ns9A
zU4q7D(#{=q(^|yv!KlpUG5l7?@sYz3k#btaz=g~Wgl%XOL)#dp$1o#?b}_si!+SA|
zjiEgUF@}CI^pBxq44q<dawsb(o!NjGdd83`(XKIc7hqDi7(A~#2tCA-YmG|oWu<0u
zhS(HZ7`QV~d&kg6Qn^z4#?0*^J9PjXAH%znG*EO<42xPi--%(cRodRKGlp`8#4uVc
z!!7%$7)A(l)sK`Z#4>pnppFrH=@FUaaWRaKAsj;_hWBN<ei*|?95~^LF-+ooi(!gH
zzpw4!zZyBEdmPC4K*}UDOpU=U4ldCKRg`SICkAiK-0^&3-`>*ck0B5PAt*`+37lx@
z)Hoqy;B=Z6LzFY{n~b=qAsQ2<k*kK9kZ3=L@^K8$wm9B8oY8B&eI{4m8ple}SuxCx
zVNMKlIm9t6jbWbHKZ)T}f%&2fV&FE;T;?1Q%VN<*qC8B_aHcXW6U&MimJ4v=(a6a|
z<vED@Sqz`Ya5RQvF|3K<ix_rsC}UU~!@3x@#IQAH-d0*4!^auQW^N8ek~YN5Zyz>_
zZW8SxUpIWojiPm`J44wfS-xV=v`O6_!;TnA6v$FKDYsfWnUOy;*vX~WNx9rv`I@UE
zhQl!&;q}$)X?tSWAH#td_Hy0D@U0YH>5BbgH-#C$&XII5hC?y)TN{3hk?&pgJI>^1
zDNG_ayk#SNAHxq)d#+Ya{(|dAsfhMZDmi|N;W*b3H=Gzw#PH`_^DCaSG5jq4<X;4S
zjo~B@B!<&m+FcZW-NPipnHbn$!nqjE$B@+B!Sb1OL2_Lby+j`Y{_LSx7v&Gu5<}y~
zsW;_7uEcQXUdr_tuExN;4A)}#%i<n`)f?hA{C*BL`2E^BZ%Onva|zIRu5i+QZW`Qt
z;#d^N!x$dL&^eASaXgOUZ*F&S*y8vnh9}%<<0urzzcD=JP98_@IR4|T<0c<RavaaO
z`EzeMo6g&nNpbTQZmA(@-(9y8a>V&kR0n}cDREG9#c}s%M|PC<JaOcWBYzw(OU8V0
zyd-XP=qb6LpGkWqj#uM&qla2Rl(~3&vu8Y&mcu2L!f_Odqf8uS<0u-(YjKo{W7_46
zVsR9YqeLA0yQ|N;t7&m${$(}^ag^+;ZYZfxSwcyv_fc|E={PEsR%p3@CcRu7<>Tf}
z>B^E?fy(fX`lPm#B~%jT@5yPQR*9R(PEg{g#umm=FOKSQ)QF>29JS-9X&up;a;bFN
z;&;3rhZ;xSIP7uMiDT$BJCC<uijob(yQs&{rL!@F`f;Sk(I}3_aWsgdVH_E8yvg$K
z+SosiklD9IuG@!HOrtuawS*>dG>xNu93A2q`5>)X9L?kAYY29nOTRLvUJI5}IIE>-
zE77+^X>2XfCXTiO?L^-eEjTER4jrY6PVDpRcJ^WUj~v6wD#cnkyT;KijtOy0jH7!T
zJ>nP;$G|vxvfJb6$Dv79da+3(RW{feM^+p^k1?4y)d{`h=o3d@Dg3uXX?*FxK8}7I
zvy`mb$qMrhisPL)M#V8Yj=^yZiDOtC!{gus+xZB0j?}v>P)#2y8s3>Uf)nq1`$(2h
zD~+}A`R9DFIll-P6UTdTjEiGDJ14Js&!62mHg4YA=X_vk@5gbuyZZ4G2iw5tq&OzW
zF(ZzdaZKSr#}SMp6vu~bz#W^LljNHHqd2C<@!(O8%rc5Aj<bE#%=c8PCl0T;`QiwO
z=Y;{P--0z~Y|LAuq!Nxpk0TmKgsZQQs>RLk2xw=42M(qgaeOS6SR8TA?a8SLPOXy4
zG^xl)bFiXOUDfI0!@K&-J1dUaaeN|GbI|9+F<*GD%mG^F#WC;S6avdx5XY)|spYQJ
z;o*ELZdLB)SRBWaIL@$&IF`n-ERIcaY>s1j94lm9Y~VVroVt>E<5(RBU#sy$vhrCR
zpL0aw_<~b3r_wDonN?)GqZYhiUmM5zI6C%F*Tuo;lw8SF_CFUUJvVaNOiU$w8ON45
zcE|B`99ub~2B_PmI<{?F9DJWesf=Rd-cxr-4}2BJP5~apF6p`sckJJ=AL2L|$Dug*
z1<Kwy_Qmn7Fx~8BmHiy7{^|iP%)x1leqJ$!(LUvr@8UQaN9j_^;W&=O@jWMGImOvm
z{ehFeloHJ6_%V(j811VbjpLZbKM5R<<AlJ^mi-sjD4cpGomoyv$)`o_t(?2hq@Ro9
zJm(BI-Z(DAaWRg+;<z5iB~Cxthz537e~aUH>B%c`{2@z&GkJ6I)ITk5IVY9d>{aQa
zYoaIeJ8uZw;Wit`%{Xpxdnu*Rt!<Wio9jAD9Y4nWdgvaP&l|n&i*x&U>OVczjc`2T
z=Fh!7j%RWF&CQ>CzD$WPmN+KfN#iIy;Sz4;WXH18o=Q@+T*=Slc)^oG0(lZhN|^n|
zkdi=-gt<m?iYANh7^Kp&y_AwGVb0;ygxTTjpS%g=OQ2A~{EqA;eq!mX(*AM+`Gpxh
zP&MV11YS+>&ytP;EUJ~WU;@`p+UZ6<c_uw-Ph;Mq3A~oTqG?z>4aE{Dp1{Oum^2M(
z3Gjo^@&r~SP$Gen2@GW+36x?35^yBYD1kBwlud9r%=eX)OQ3uL)!E2|xwlkEpmG9L
z5;)&etteV4fw?agXO#PJ)dZ>~%n5Hx;E$5ZqSA^YfF9=DzSK>vnJ`}^Q!9bmQW{^f
zz-YzX$*(7%CQv7V%Olh`6DW2itFEwJ^bJua)k~nh#pwbKL>nfMA;8zK(5?9eJ4<Ms
zK$8S|CXksx(*&9&&@q8d2{ccjMFOo8Xd`WCnLw)q-XfP$=KPm(^Qe9D4g1@v$y~*4
z6XtS$JAwA%*)D;pNA0a%<m@0(z9xem!g)AaHqXupbW5On0$rqA*dbjL7|}~5wC-+h
z?^Q3P_eg;Hi;~hSfvg1jCD1=%UL-h0`-t}DNL@6~&fJarvi&&~o{<M6Fff6^Jp8Wa
zccz0lWMvidJ7U?L{pGLlyP{0m=1d*V1|$$nAe6w!1eT0S9+SX(35?=s=1m%%z>q;I
z!<sV6*aXHU;FYO3K7scW@FcKcZ0dvro|REJo%kZBi3v<f;3ua#S(JA2lmtGI=!c@T
zd?YY60hfSVG&>_VnPx*%xv~4$fe8c>pk?o{v^p8Z2w_g?1m-0$Unaknz_bKDPC!o}
znn3cTR3m|S0vi@NVv;d?4@__^luP9f#^`jhb2ZJB5@v|LT0eDG0<#ksR8r|PDs2v@
zs~qNyQp%WvX>?w|fh(M~NXC@WPbAl;2`m(NsiC<N7bmdtZjL4Nxn}3tYH0%0Wt>+^
z3Sni!yqI5|z-I}p5@wW_xS!K4f!hh(N#KhF*0L)SIG(_|1lA|;O#*v(I0<Y_U`qm9
z>0B;#QvzQ~OL)H6EQ^KnhqIc0-`kb|fup}Gf$a(Gkm!C}3dj1Z1a@-4-m!gk$41?4
z&4I54ctN!{fqe;lm%!l!zD;0%0*4ajRgkBZ^8lx}E%l&Gb#9N$PJeELtoMkt<f!QP
z3H%`NV*<yr%t^?L$;LmJuY5YjNg|dL3H+SE*#yod@Jj-}%0_o4fs?F@BiLKzD09=}
zK%8dR^;X;6u~8FGQ~LB)&nIw!`xxy5)r-;<e@b<ixULiUk$)aZ;CHd`T8r&uy?;n_
zmbBqY0#_wkQ{GzjR|40is2ehfH-$Nltmu}sinZKL;2yi>gIWcq;eG-S65zXXp0OJR
zo+R+Ez@r2nC-ArM|3}q(KuJ-2-{ZS%00c!4gt_D>J1SvhfrW9%IY>^sWD$^@6eI{L
zib$HC?wOvMo=g^ysDh}dh++W6M9w)#&gp;qjs5w3|L63%=hmxNuX1&FbyfA9MaXj5
zX1i?E47SR<FGBJMi?E?p9?34jM~m=Syi(jK;6_0=Qr)I;UipNixsmQhh8yL?6y=#B
z&+o<=vCztrKjB6pD{NsQPYOQeMiEQ?n705oin;NO8^zryOS5j2aN}7w;6`aT${00D
zx>1UQzwiP4tKgWlL4x!mXCd$^<2Fl!^73v}aKq(BBhjzuMlCmLyHQD;mEEW!q^e++
z8`Xq7Cs<vOMrheC{CPKCaN|YcH3e%3QlW*?d-6aVi9;j}Ecr`r)DfO7SXZ!~V0}Rb
z$#EkY3wc8kI^B3#NK)R|jV5mNb)%mMo4V1#jgD?KbECOPTDZ|hNJ~N5Y2`+1;hRIf
znYOmV+gZNt-JqOmyk2pmn;YH5tCL`7!7gre6|#6ny`*LjarPGMDcDPJ)R?qBLUIME
zoae^#H*%7p`n&O}8$;X}Aie`Fok2nd3o@IpxiQp@F>Z_%$uPl@g2M%0cVmQ*Lzn-v
zJj#vHB1yJ^al#qtL?Pn^C%D1HBvUd;$Qy!8Gne5_abubr)7^N>jj3*YcG46kafTaj
zyWyeN)vTFr%yMI%8}r?G$BlR0nC-^<;`N@J{|9t9Z)SyjnIGRV*D!qG=1O2Q)Eu|D
z9D-{e>J`a1myN%G{i9@%YgwO!N>X6~72I&UvCxf6SF;*FOuaJ2p}5UY<n(Pe&vt%>
zgG6;hqtFeX8-B5%3yvsKs`)KbbKw1a0XKqf&;p$dZnzN=J7G7tG?$WyIQLx7io20u
z3Kh&%u-J_y%!p#H9$f0iGM0cFpS!W#jTLUJc4Lhj+=s$zr5hi!P0G%cRc`ZRTyl%b
zCvL2DV}p26jq-KkyS;GAdN+ua@Y*QCO@g1g!H;(oa%<scH@<db8(Z>$tSxSQ;l@@s
z{>V$`E}<{k86T#8<;L%2%};^d(o?>1<6AeLQ&3&OcQo$C4L5GO@jVmi#xWXq;|Di>
zbmK2K{&r)h8$Y?R%Z=S`^9$F{Zv5)Tse<O&t-rXjihumk9W7MHKWiPoxzRc3_}z^?
zZg8{GUfof6ox{G_@rT>oiTtPF+GXa+TK~AQ*Np>i9CU-rb@sWjvWa~^qkF@}ZM@{G
zgN{RP9CqWV8~k9$g-l1>sGnnhqM$vhI!YI|_ca{1!j2PeoOI)g8&{bmHZ9e0k!`?@
z(;PP4=)J*l){VJ_;~W(V*i-pWC^s&+5q-t=)fdjWYqLojM;ucEj%9wwzpN?EaoLUW
zs)JjS=dW;FbK^R%)vo;sNB@9hpx5zp&~eL++ipCipooGyZrpVvMM0{9dv4r!<Dnam
z+;}{}(R-3(yU+1}O+DoB_#E*f_6tSqcX!wxQ=&VXZ+7HUkfxx3f`SUt6}WUqhJs85
z$Dg*}^f~e?IN)=%FdP$fGn)+lgn~i}3M+V0LCdFenVqG&<4OHL;~#Ez1ghDdR!~%d
zO#u`XQ}B#}5(=JGP@I;RICd{_j9%*KyV$XCv7@Ad-KqIDM;)aU@MyK6OC0=D2IZv{
zlu=MoK_vxc$zzW43Mwe(k>lkAt5k6DNHPAq>PE;>eWjzaf+`BCDqQmqI(ar7cdYMN
zp3Upjdh@7T9@mzo@E8kpQP5Sv^9o*2&`3dJ1urV7L7NJ)>0IHcsi3w3hk`Y0vTG@r
zxY#j{$9^j2@qHU(<{^-DDse|$1@#m(P|#4p;Wdu>iusu%N5Q1k4$kKjAFXm6+3IvE
zcv(UILZ+nF#|{@Gn&4Q!$`N0i-9$lC1??2HSI|sBbC#!qRtlO_u~%M|-Eehw3k3&f
zI9C)mr>R>jXrrJlqg$2zQ%4ssepTev{7iNS1sxS=Go76kyrN*nq3lkI`ALE?4ytBP
ztDVdFbIz`>SncShpu2)G3dSnvp`fS2zoz0f1-%sXR?uI;00n&%<SOW^pr3*~1sNfS
z(a^<aUpX&#!iwxl>m1x<%0H6)V>kvX7^GmZf>#w>W%HQfWOL<T%zn_!BI*%!@UY6E
z3Wg~dp<twf;cO4<9j_}`w$4#&z2k6smpAPAw6Og}pJSAQ_r~-dt(Yt5y3{ncUXB{o
zdz^yt3Z^qh3MP=Nj<*y{WsR_q6}+L~O{R8jwykyEWX1e!Iz@1A5A(YuFB)NIIkl)H
zd%-j|yyxs!D%#&xFjFy4NO+IAE@q#l;P+1*?+CY5a+Tbl{jP$cK?hs@Yz0qz;k?_k
zH<R>%jHnz`=P1}))kX4=Vor%03PK9zvFa5pP_R&eUom%E&weIlkpd6X`D}`t?L_8{
z6$O)fm=nm`uBEE1FV@<nEHBf%E}O)sKo<#lyooI!c7lTQpLWq^Si$IhS-Tbd#=e<q
zk0^*Lh$)CGNGMpVU>(PQ1xpmHP_R<LQpLPmEmzF-c*_JycDA)2J?^BO*T)K0vym%U
zrI>d&UcBA#qSq%9mW0mr3O2AgDfmXgMg^M`e9pe0;IGef8RSz1pRw0SsD?Mv-;bnh
zQSgO=FBN>HV5`Kd+%Y$d^D1-4jQ48=Tkd7K@0bzsPWmkee+54)_(cIXgVVxx1>Y-3
zhT5Tknm<_S|53<J1wUC52KiM2(*7<HnrXOaM)$jdJqm6pxT)X|)}VsxYzFqszZCqf
z;Dmyc3jSe*vX?11q+p+d{jBuCjzz;Wi5256{zv#gQX>BgJ}mr*Amv9D9HZH&>o{BQ
zzO0S?N|G}mtC-(MPANFe>N}iuX1wDJiDI7Rc#fkSo1cR73N9$PsG$D69A1+rI*6CV
zS@eV4CWma?ZGD9WUeV6$s*r1}f(;HjhZHyWdfei`m|?H&fy0B_yagz@%fX*r%!8U8
z9K7yxNcZ3g4~)Ui2Z||tsNj);$HG%QNcSMagH#W+j;4M-57Ml#&O&*aBB$5no7wcu
z??D0aEwk0t=1O+UYuSZ7c<x4aaSsZ6@T3PfuVp{wK~aynN1MEe2Tyy@Zm)CAoLoAK
zc~G*0;~5VaFmfZC!V(^QeLb7kvqDOG@JHtcr94Pn=OmHo^>XVx##`EhG9Hxmpq#{B
z;#PJI56XK`!Gnq(%zMRAjmhvJpgJpgP}zfSt@EmgoL*Hu7}YwDq`HK)Te-^;vaEyS
zc}wzw2QOMY=V~@%sp$c+mIsFqn9i3x<}6t&4_bRrhsvC#6s+q(JrC-8kmCX8JYV*p
zfyk-Q(1WKcnm^X$<rLw_^fZ?Te9>#<L1Pb^u!#DbQ*A_EO~u*FgXTggX~E(W&Y3zo
z+jz`HL~U8B9&mpLUx;p`+Bsp)m)7<kbnuuxy`u-Oc+km%&K`J0(#69CnV93jhb$Zq
zx>M-Ec=77t!C((w^`NH*y*%jcK_3tLdoVzJb3N!Qgl6-EOdRd#XAueq3Lj+Y(2Hu+
z8REff9*po{q)3K(FkEzoSz(h#UKb~Wj1n?NaI_$eCw0b(1v)3tvIp;p?<B#g9!&G#
z4G-QFoyi_d@!%~MulN#q(KvCsNZ$5frbuR3Iy5`WgLgc5*9!8#co~X(wg>ME`9Lt~
zJJ*AcJn)EQo+Wn+neV{@Aqy?}A`cG9vTcS{L`bJ<`D#L_<MTlGz|Usv!D0`Vh&;%i
z>p{qa8*<=A*a{W%AR;_!Ny^+y<rQb&`Tt88=~9s_vy3eFV8#E@S>?fMwt*Aoon?&&
zpLo!08=7y!S`XHF@Nfklt-yK@HhA#JkH>y&^k9<*|9WxRi%&iH%!6Ypj;r|GgUuXj
zR1{LNg$<9NZavuM!56~m+$!Wt555w@&36<sdEa=jQ_}OT2j6+HosFS{x#4by$J~DY
zy(q6Z?E1lD-fbD`M~}JHj{GMNe)ixOk9j-(%Y(l?=3k+I^<b9=yFK{LgDQ^nJs#vY
zYH+{O?;faIQgXjfnKdBu54NIxS$}do`M3r*K>b4twAtQ~p<<s0`#reC40>?DgM%KN
z@!%|L&|{u~a9Z%N;1Lgw3OVM%2@g&RKQ6f7r0tXt22mfTCvnpH-i+%U6THNE-h&Gs
z{F87VIhOl=>pUu4wDcpb^A4nCT=w8P>x)?y`Bj!l%*pGT2U}X_kub<j)`$m>IUsQG
zXI`StJIu(2-XwQDxaYxr4<3m8p<q*2?nhxKBb^;|QYS@4KzF98c=qL7l2mc#6HIMp
zOILAsjgxX>rfUAXIlqbms(HY|=KN^|Rr8!N@=f{E3afaMMpW}Q$7hnK*cejn&j=O~
zd|E|OA;ko%-OWb@Ud6>(LN$**;Mz_~N~$QO!lnW$N~?HN#bgy_RFqZGQbj8j<y4ec
zQBy@N6%|xeR8d_;mWoO$Dy#VEOxANMs;H<+oq4XGD(3##I`8^PbKh<?6~wD^Tq&b-
zSD)ffI52iX?(-^MP_bmb%QrfgVP8~HLq(FmThw)_b)NTRR&5my6%AB0R59Ur)=Mht
zsi?1_j*4s*byf6oyQX$>?D)_{<BTFl#etJqCqHs^eZU6qB6q5ISw&M7%~ZH(YO1Y~
zipDBdpUmRs;wCB{oi!7-<78Gwn>=E3)!ZmOZB%XxX1q<_xpofn*^_cxt7yYqs2HrG
zt%`OkdNOtu?NxM8(Md&T6&+O!FXqaBGV2v70rL87@)*2}imocUtLUMEJFj;f%9*3O
zx(PpfKZ{Y6n3&t?WY(hNS(Q&^^;VImqOXekURNI#>8bWy72nTwk@Qp1U&R2GFXj&B
z?%abcUh1gafg<4^Z5HFJDu$>StzwLdDMxZ%W0F+7u9{oOhqA`cWDOJKzUhu_@<yl_
zsbZ9h+o!TNjL&6CqGNLJjn2LMC~K^WaVjRMoGNsTS8-~gYa$C|j%xzt53;r&&*IK^
zI!UPTh6?Wj*WfmJQ&hag@khlMEJhX6*q&7cRZLegL&Zlb-^%f}ikT|jRq>t*Zf~E(
zsyvhRtk3lhTit`KV!DesTgCe-=BW5k#Rsf$*?m8wP2TjmE^;Pdu4?W*C*d{ZNX~o}
z3sk5oG!+X~EK=cCp{VB0dPuPxI&DVbq0Xq>iKom$%YPz^W#Uz#tME(t_yj+h>-uh<
ziw&4&-<#tyRD@KlQSph2u!@L^#cZ?;)g~{hf~k$Mz>nng8<80oCnX8h+z3yyRK+qC
zD^+}~VmSx5<5?@1ulX+JQP!tzc!-KgG9G57yB%z(t3+Y73QDNCR>e9Mn^b(tj(<FB
zy^0MgHnIVHZ(}XbJe&3P>8!3PcDD1+RQ%N@?{gKKB>`+gk)p11k8CVPlC3JfRPhT(
z3>9Cg_*%twHYfJ+6g!*!HWlBfC_EzbTNM{exV}^I#-SXZTELdD{_o!0#lM3c=TX*A
z93@oz$j<09xAs$Kr)X|Cob$6NT(4|nBD*QBT`Y4If2!E6;x`q)GrHquQunAh?RDK}
zBTThlYm@hvioe-aS>ub$qYwU3%>x$pv7MaE+RL_dGK++g{VE<Ru4$WkA5?Kj#bFgk
zR2)@Nux;KS56ppuSaEc2jtX{%6Dm%sXsw}*W)6m@WJoMj+J0Ka8FCfpI67(OedIhx
zRF0V%N@}>M;*yFq4e1*GRdHFx9ge*!uBf=G;)aTwDz2&K)8=)-aih(zLODE$&-#t~
zEp{LAYQi)9D(3JE$$RX)99UF5R`GyY5Z}LE_<sTG@ccIosT%TWrk(oM$(DKpRIFs4
zHkqLzQ^S)Qp3;zC1N94PctS$~4epAW$utzwKz%9~79+_d(YJ_(r!^E~PDS2mNoG+i
z7AjZVpY!yAoZ=cvSVI0go?%OAuxY3uLTD(hp{$0t4ObbF>@DqLSe|}aXr?JFCtl?R
z-`r}eD5R2x%0fJbi#j|Osj7x*8lKZoT|;xtT*jZJ!7ikshUYcBpdnjBT}GjyhK85K
ztEPrp8ft5BXn6fjE<^Du?lb58xOb17a{{|#jyjt8dwM$SX{fIuM?(YZ7tElfbG1xj
z%fcx{UfVM>oEl!%;L^}YLsN;Rv4%;7Q<?~;4krd_pHr0N%`|*n!Hl<s__h>mmE>Zx
zt%i0Qe$}u`LwgM!G)&VlT{E9*I%?>vp`Y+qG<4F?Swj~MT{ZO3&{G2!O?A`IGJjro
z4K**D--x+*={xy^+Dk)k4Sh7cU%}o;&-_ES)8=aCmpEQ|VsnD#?5|;fhKWqShJhLe
zG1nSKXc(;FRSh2uaSYSYx>yE-3}NHx?s!d*&Y?oMSGU!btl^ruB8X(9hEpfgnk$Ym
z8b)d6=jPFZXMQx712NQC4dXP7*YHX8^a+}|<bW$@sK4Q#>^C&LDXE&OVX}r}0~{~H
z#Se~CH1n(ITN)<Fd98~IrVRYm{AN9a%|k;%!(t6HHO$hmi0xU!I~v~AFh|3OVxON2
z`|i$uk0rS~d$!>F%$J6pqtbqUl#efKEVQ|dx|d^~#Qu@szXKhV%-66$ycP=bGbM{x
zVR|&QJ)a%cpt1_;_wj28XwWoxHB_A8+EBQZkG+YVqKAVkpi=7C@T%j(t+t>BgYllv
zw)JuFyJtu^om{pT(Gb-T(@<()=C*S75(6Dv5)fw>C}(FxOEfIi@D&@9hGiO-YgngY
zy#!yO;bRuQq<N(VF3c-8+_qZ0n6I^LsQK(`SlSx)?9L85a<~M7%es{Ajtv?%YS=0P
zH)&|NEBjz+`{x=y75<qZ)sphf8n$ToLIZWUK#MrTk@Ka7+vl=d-b!WP+@|3h4L@q=
zRnGpchVL}&5X(%%b`5NM-;1+gEgKgw@ZtvQAE=zq{^b6wolLfdpEa<Qe$jBXr@4TE
zD@<-wuybqnZVkU_ILh{*;dkajGmm54OPd=0)bKaUt)l&%*BpPbsb5RwvQl!Ae^?h6
zvkG;{q=e6+`!wv=a6m)KiW&z6k7y`gE$0yPbu0TY2g8Ln68hTP<{j5?Lc_OSeCNeU
zwrBPQFJATHw1zVr7QATa#aRvKI52uq)Qj_M(#Nu{36fk8a#6!2OY*OV%fb)dPQ9XG
zLr42ncKNGW`D7aHx`rDXZfdwCI`=g^V8IH%V_CSX;hymFSF^sko%&FCh8LM$Jks!(
zIr8FaxAc5oGbO2l!NIl}(;R7Dq$izo9CII-vv&E#Sy-@u7X`g|!VAu@(W{UMIsfLn
zoyv%w^x`Rz=(kgu+9KZnm*!$#yeMAJcv0Mo62fVrq8HB!FX=@oAvQ0{cu`h31WS9(
zSwSk76K8qBWC9pb1uv4tQc2`gtL#M;FRFS`&5P%}uv_x#USxSOw{vd)nI&87&Y>px
z^WsbLf_PELtA-aftx&bRsO^Qri<c}(T`%f*kuA<-p*^~jTF;C6UgZ3rEYl8?=k(%b
z(d_PpOGtamP9rZGTfB)EO}%L5MRPA&c+p1WEiK>HLR!(n6vq#tlC;cfYAeEag2|eq
zyn{G9dhv=7N;(PY>_rzLUA^eWV!5Acp1^s}tlu7%W=}7AS-iIweZ0sOXPy@Wycj6F
zuNVD<^cUpeTC~6|wA^IMYmnF6Yn*d8b%+<Qd9la~w--ab7$(Z^dNEwcRKeH17$Ib&
z;6%Yuf}_0{<HcCv;{+!Nj%W9||KCjVg?p)!k_yMN-tgj0;gh|X;>BCSnMbCL7s)hB
zbGjEZgug8~(~{5f;vFfLr2c!Be72DH1wZg&ju#)YorrV3;75Y<1e3M1K=?wzpmZX|
z3y(Orc%gcs3191l*9)H)OU21}buYpe_X`Pl5foxjP4W`55=s4tctyR4c@Y<$5L_a-
zSdd+VjgZRA#JOB>g%>Nm_*gi-)_Ac>_-ZkpEVoZY!l8o->nzRnUThG)QE-#sr(S&K
z#pl8|3qHJ^%A#OEwo>93UThWerQlbB+)Vwo7u$q?BbYo?w(8#O?d-gJvwsx)-isYx
z{2=^;6FI!-wbP5AMDnv2zk9Jq_%DLLda+B$ZVobgv#I=>I9H{l{o%!*UL5w~h)DkO
zV!x2T1*!Ru7kh>86Xdc13J(ZBXz3i1^e{<By*MVq^IjYma@x{4!MlLPPYL<x-<&f-
z&I+EheD_{3vvWb57X>eQac*rUg;zK}bCONR6`dy-<2rkj4{jfBcyW_`(}!FiZh3Lr
zi%LFJ_Ti2fcfCmQA=QU_UcS8Jq1SvMd>}ZtzqypOx;*cZJQCq!!K{2K`Fu$8p@0ts
zeMtA2v)q|JY|1m|r8C6ImB#rkLSeBo_9uLJ#)slQ6!Mv|@HwrpkSBe3N(hBTe0W-T
zQNd!CyhYo*5<WcZLm3~+ijWJ8OIp6Ae6U#@J}l2?FD*_I+AQZod2tTCmriE|;S~i(
zB9jaJs`yaVhZ;WA^r4y$&xx1ahw4I@P986lCH!`2J0EqP_nEISH1&cAU-aSP!JH+B
zY_)u-?L#vkn)~?HiI;qEib5U1x<1tNAzS#_0x5h(qJ{cCG!O}Sjt|2onPtwap$L;z
z@UjmsaW?XStK%A5`b~s172G@_vxN^Wedz2%7av;r(AtL%K6Dh{Ha@hsLbdgwop3JA
zJtXBbH7orUA3FK4Gt)eBhZmF4uWcSlS1VL+AG-O_U7S69=qaRu%hci3%ZGh^%oTLJ
zu8+>l^P#T~Z}~9Qhkicv_hF<DqkI_P!$2Q~O4vbyLwtD6hrvGZ>>XaO3VF9+3Qnb^
zb#w5sf5W4E!$gyohYNXKaD>l%Bu>US+J^}~Oq9kp#)q*!jPqf7dKz2ZjkDR~Mc!+G
zBU1mrvYjLr-Vl7#hshG@6mhardhgGf#^64D=)+teX87>753_xE-)Fwm%=F<MAKn!{
zOOPi8@qD2NX(?^e?C(ijBro1iCw}0=93QrKH%sP10dqeBua6|61wPCZGGA~)b#rC%
zLg6I0|4mhV@UX$?sINoyLG$4zJFgF3AACOi<-^}T=sx&;`21?ldI=ctVW|(xga>^v
zgoFgcf)PR5j|z$T5EqiL<cozY5!{upRMl~g<vx7uGp8nAEa6(gx_i~J(q}H9H5b|X
zu-b<;K78Ustcz={4;e!oliTLiZ_%61bt0q%az0CMV81w!wUI-F4?n+MZ{a-0r#^hf
z#QU(>hb=z*;KPqTd_ku?6?`LPs}Bcbwl9T$<-^yO?=~S7wA^ond?&cw^8Mb29TxxK
zMrxP2j-5XAYGo&(@t>FgAAVssnd|t~hu?%yzDvk%!9vp=zx%L9_#Zy3blZ|)|734{
zIj`r-eg0w9ODUZZ+{bkKa7b!@zmH2_%<<6OHjjANha;lH!RM$C$9y;?&f`9uVA;0K
zt5GB$UqAV>c2eZ5o%gDn!_;YU)>Ld~eK_aCc^@utq}|>721gqq<d=Q8WbuF5f7|9!
zc*TdSBE04Ug_Q8R&H;a2c9I`%n|GUa+S2}*HqYeTk@~&MTYwMug+CHxr9Tkz(1%6^
z(&#MI%RKiWMMtWRd^*x}JgMU;-87QUn@-z2k_;W0I`Zo%pqmRsKh5b~r$%}~9o`GM
zg>*cj<E5Njs-3KzTUa=CcIEUgqT^{DRdiI<QB>y?B}(bA>3BxRpAB+L=y+B~af#?m
z{oE(p<(1TtB6jGzBPW+eprf>oayrWEprni_mldqjz>JYXVg(%)byP~qYos&kDP3*E
z$~rdH&n2m*<2fBQb=1;PT}PH^*3e<s@w^UZ=S4{pO)=^hB#$J_BPC2E)oP2dj-W&E
zB|#>VQDj@Zu8^#Dc{w^7=y+ep2Ra(+aO&u*qo0nKb*`#H3mq+WG}6&n$K-RiX1e*F
z%jVHU2X}k%YRcj&V<+MCMROgi>*Ri&mDx&1YaLy6bkosBM_V1Q=;)-Q9m{7|b_WTo
z{FdEbH^;Pp%g8JcW6Wpg<OAmlI_u~nUi#5&?t19`I3Hu|uA_&JKDybqIZnC?ru5X&
zi_Qvm&)9lY=&hS}PL476lH}^h6U}-7a~7_@jsZHx=@_qLppHR0Uehs@t!RK_Ff&`x
zzOS5p#rVuuMKVP2@>mCN0mF2R6tlzG-nuzn7v$!z5jswt&!%LQj?p^CNaDH4Wvr0;
zqtloR&P7aMA?ui~V}_1NY+(89yx!9BhK@IBxsPMA7@xvnmc}cX_jEp2Ol7|E*{A8a
zU&g%1-`2sU-S6mlSI0~#J!;O<@qI7H^M|ub6>@RwipD)(I%c!J+T~46vlBTvFh|E+
z9UtlVkX=B|2<_6t&I#UmIy@ZMb#ound>spPEYz_`oNhtNbL(Xi6}HBdlybjiYqX%_
zBr~qVr$c8u*YSf6zs|36*v_(59b8iv)Ui^>$2tt%{Aq7UH%|}SINcf65z!IV5z`UZ
zv0Mj*{o3UvblfiQTCAJPt0-B*p8J%kzmyWu;m?cdTp^r<zN^^G#Q7aFt2x%_`0;%1
z7mQAvYjsYcJJ#t~uj4_>1{-vI#_E2UOU;e!Wuo(`ASGNSMf_Zxn+3Pf&L@r+wm4~X
ztBw@|dVi_oD~W=VuZ3(A{6@#OLIQ8Q=*6_Hdh10N!uL9o<VPJlb@Rv8zv}o&2M_1}
zSvUWg@{7~X^<%$qcq!?6y+=AFyL9Z<@f%aF;{c0piQ|QYV~;5B*FpXVd%Y0yzl8iP
z_>bUT!F@Wo>XHgH$Uh()6g!6m4|8N#Yc4xHBF>|N#{`cHo?zqL>ZHPHX{Bd$oYhgS
za4F7(p3`w&H@6Y}tAmrD7j#_Iaf$t_zoW)z8yg-8FHUvR_rXZVRX+SPvwlqU<GPL;
z96J1H;y0V$O&taOc*2ictaKfBbll~*eK9M)ANSbWg{S-RfDKGOm#6sgP=r5S%zDIn
zblM-YBrj%N>}u|_PW78%^9iQ;@n$=7*EX*Vkz@+~c`EI6Mn(bue<#fr@}saHc0Zo?
z<4HfB@}smLW&9}O$J2h4^26pwQ9p|LQNoWpB~qRdBS&Q0I1jBY?gz2HY<zy!kCJ{f
zN!;w5j2C`z>o<?$=ee~!W528)<@~7XM>Rjn`}yZ$8xOOsECwt1QBepF<gY|Km$GVh
zvsV!bO=Vt7ea>%g9<MGE5+0MAMc&!Y&EugGDKGf(q8~3Yg?{{8BBh2OS(maLe$@2i
zr&6VA`OV|>nXuZDJZ@m;4-04{TddXfqaL%r&Bkrrzjm|N_an!T27df21<u$TikegK
zsq3jP`{DBAt5h?Ojr_>$YEN?3W>Y`9O0_ogqq!d~{AlS%TR+-KX}9vDwI6N#<~hc^
z7<^Oll(whSNZR|+fnlFX=_0Z0EoSTJ$18r+YM<FjB=qX+hq}$ilH_)NuApdtI<1=@
z-Tmm{M^8V7`Z3IpUVilUqaVx4k3N2L(>ha?=SME9xU-#w5DeM4!@Vy9b}@JHGwK0;
z4D@4=-#qAe^fM`g{dm=nDc$X_u^i-I14I1g0RmjDL8ShtolP9h97#^eU-x5#A75~p
zhv<y*V>AogkFkD?m&7Oc#Zz;fIMYXz{HTk4=Z$=m{CLBUO@4gJw(7@Z8uY`**!_6R
z4>#lWW2zt1{P@t1xqeLdV}>8^`thFFd0TLnA2TI)%-~At1@DM_ft2uU;qUv+ZTpS8
z**{=A>0;+KN65uerFNvIuq}Ngd0|_c=f`{r!lO7B__5Fr5?+gh(1?e%AT^l0cW4rj
z&55PjaGOo{!|%sRKR)&&;78Dph#ygDx`rQNvCM`S5(!T>AZMAgWMY0K{8%gsaX}`G
z@+HET2`-gZmpm<DxgRV1Am>HRRer4YV*?lV__4;1PyATx$2tkczc#p@O}T$9m9@W~
z^2TO6C*K>*oGQKG)_fb2@tGf=`*FmNqke4mV~ZcV{rHX5>c>{LvEnH|`tc<b;K#Rq
zd?)E=%4zCrKeqYtjo&;$f(cG$hX%K^_jR-H@Z)<{kkihKD}t!-gCDFKHa|LdvU{?_
zN^AT@Qait0-ml`M!Y&~bN~HYm#~wfSvkLt9!;e43!d~gxf3f3;wZA1e?f)Z$p;$rt
zgtN08WE17#;eH$z!a;_<l<*=y=EreA&iQfPj}v~J^y4&FNfk>uC6&u_D%iAWnIqU4
zk({;K8&9{mz>ed`4L@%BafyS5#CVlOl##(GE+<nZ*64imblNqMT$jS>S<J>Fx+Ri3
ze%$rrw%=S!%<IS06n6Q0EWP3>4@BX<AcYTwFg-k-BPD>;0M;1z#6Z3P(gJucfa(FH
z2apj!>45o_gf9r00oVdqdoU}100jbg;Hy_KfD!@oZ09EeC=@W4R}~JRNB~a<@MOTe
ziEvTkQvq|{ug&eOq5<<(^-KUo54ws4(73;2%#~DP@c`oO^7yPsd{(TL6yzz;r2=SF
z%treNnD45=8tII^jHIV*06c`eTma<*s1QKK03w&ND+REOJAWsq-N>J2k^riRq(FhR
zszNBN7C_UGjU+1odjKC8m}B7i0A2`SZxH)}crkz)0UQqCNB}hhs1-oN0Gt8T4!{vW
z{Qz<TcqxE7lEJzG^De{TG+PJ{@u0JwB_uC%I*o0EmEIum->vH9fVp|i2p|-Iiy355
z1kfaaURQD!3N{U3bO2)lXcj>809pjlGJu}+3ZPX0tpn&PYHb8N1kh1PTfugM?FGMT
zmq(kg1khQWodQV8lh`GIqylxi1<+k|$a`28dI!)afY&T}ZUFr)o+qTQ80=@69T334
z00spxIDl6J7-Gq3lQA+nUdgD31~5!43=d$0kk<vNKxJMdSysZ6`eTJp4`2q{QUK!v
zm>`ljE&Yi?CI#?@CFwS(<m3RR1n`zfrU_0J>^Z1pG8RVnwxvHifSJN)1@MlLcLQkG
z*Ot_Lk0meseM|p?0OkbnVE}Uj_$Yt{BA;jZ&JW<&7)LT}G7F4rk@&g;Py+B+n!W&3
zi)-v4!kKu6)rI>l-#`FCi*u%h3gG}g4`4G}K6`|C#n_cBouBv$5Wr$_E@AHu;FAEB
zvKNSCc>o_<nk$5?6l6MA30ZCVCeyz*fQ^=9T>$HaZ?Gf`#q?|n;8P)=S@LAqEdgu~
z;QIi+5cyWi_e-`wi+>%!wgA4dS_rLu%WfjRN#i>L_(7a|1NhMjwJU&~!haI{*^>Vf
zz^@kPzpHi!@LK@Ci{vlCJ(lku0sJYPyAB!Y-@^Z~eCf5%;`;+QApD>p?H>|CoudJ8
zky1_&+}Cz2fa3w22;d}#!61qTaVmh*0o)7VegJ1Ujs<WvfNKmA!1(|!a~KKWLI4*7
zxD>#@0jxfr#r1VuO~jRiT!!~n#au4U(hldGtZe(FlliL@dU4U+^#E=Ka65n-Y;11F
zO+hZlBIk7{fV(2udCFXgM@h+PHm<CD5J0{l(t>yxz#|4fmGzi|e-Q0Gu9P7DZkI<w
z<ifVGm2%UA$Oxiv5Kjh?8ASddf5hY3Vo$%`F0Vk)T*X%?2(Gg#7{n7nP@l^w>Ewb*
zuC1akll@c>z2~`#(Dz{$*Gw`O#e#Syi06W+9^^lmP$GzOL6i^T*&s>=F~RLB9Ym=h
zxCGG_1cE5iK98LLdD-$|Z|D6Sd;7dH5_Q?2xr~!*_PFS-LJ$>$s2oI<pt*jJE7mH}
z;HXUg@P&&KFO15q8bq}q_(K-vm-;MWu64``!X8A8AZpTJ&|Ite0tbH~Mx|V4gzG}N
zGLu*<h}uEa4T6iuSpJTnS>SbocqxcCCgySlTF!&4Z1O`nFQ3Zd8qRtww})9Q!}`p^
z*(|O`YY;@kAe=$G%<N~_*9GAUqEQeXg6J4T;~>Tz$Zi@$Ga*fq&h~lDgJ=;%+aTI8
z;G>+Df^7s_1<_gv<=Ly8#FH&;#P&gae%K^Si{&z+S6Grkd=kXkAh$rGOAsFiv5NK8
z-qAIPk!zjHS%WN@AbJGRGl&^Myd6X@)>;rlf_N>6K9b;pg1JHD1<_YHjrSMQFNkm>
zGgAXB`Qwy~K^7k@<W<2ACu~E57#75MR<uZl2Qfy->p_fQdW4S_q`^@^ywk4<N$w+a
z;q+KbK2FF_$88i&4C2ioCW~Yet3b%bqo&ss;Zp_ad@G1c5@cEs(?wV_8}A=8HD?Af
zD+qTG3S$i7-5}<R!h3=rSQcgn@xJh*ZOl+}g7`3qxgz-}h<QTVr)1D;X&vy&=Q68c
zfyfsME)pzUK9h1!5WXOPi3?SPnxI#3bvaYPA4DLCNDxsG1_eWchTuylY+)g-B+^(A
zad9pUA|Ygn;9|jsM|0b5GS`YH%WYW@^`$h}237>IQW^s}3w*V-t2I{Z`XMD_%o^t&
zzq#g|>%)1m@vIMGLl7H-*c8N%LF^3T(;z+z;@cp;V+&-rEt@y6b?!GoY-U@^m$8Kn
zseRrTf?EZ@6#Po?Yr$=T6&E|HIcS~pR*l^4L440Xve>zULqyG73P%K-#D&FOKLkMq
zGdn^29K^05b_X%4ecmrY{K`sfpGW>dtp+n!J3BSa{Vj;!gZMLuzk=8!rSZEf_YaOU
zA?NhgxlAgJ{~ZL){v$}jJo;9f5$)%Iz_K!sW8h#Ahk{7uL$ZOxK^zI<Mi4iHJd78&
zhS^R8agrlL@V{@M$5|$iQ+dG4sUS`VaXE-9L7WNVY!DaO6oWX&_VcHUbF=5!2HNL!
z9ObycGS6pzh~)8E{|3$FQk)TOIWdz{wZ8M&SH<#mW_F+X&xmUr;=(35+TB43=Q(c$
zaW{y2Ol>#EZNWPdWXb5X`%GII`=cNp2l2p)<stj~<y1z;)84oiE5$H%-W}!OQCevR
z(hZa}P|84tflLF14LoV^3Exa%K?6@1Sk*qSfPs%Q(zwj5kO7{Y!*g{QmW0#DPZ=m;
zpqPPY46{I<Hq3K)iW=srYwHS^;zzV&i_On=#SIi+l37A@NGN&MFwd@8JUY!rn+9qc
zsAZtE!9D({VW52ew6X@u8K`8SGMxr07~p|acQVtOcQS)l6jMAHC;8WpDuy`|{-S}Z
zhI#4;uWE*Qu+MV_stX~{GGG_}yd`<T0RJIEFCJquZEPk#6O+^y%P$$IBZc6QEN7In
zXB((1UaU11&i3|s#CityWTcTaFwoFIe**&yI2q7DR|DM)xC}Hh(B41?!>q5y2AW6_
z{X96Axj554uc?7%B55wj(raO$rNvtrXf3>rC21?9oxv02%o9<n^mcSKKx?lU=CZoy
zCe-UBiKJI&16{08&3ik#8|XnD1HBETcF3c`h`N1x8nAW9E8RPnXHT&J`xwYI{yTdu
z&p=<6k5nbSsvK}}IiGoupn*XKrnCAC3^wqpfj11iX<&$f*9;6d@H)L5IYSNekhfuy
zm@Wr%cz~Wc?Qg(%DTidFkWO6JaXx#LfzdS8!@+Bekg<Z}42-wr6AVlgKFN~IuAV;G
zz!WCWz%+xishMv{eLe4Y)huT^tCqL#I*`MYWLVB`Gcg8cOJZgj_-uG4*Ehby((oa(
zw~OBq-ZfBmOy+wAc1mr&FO|iBt@0cn8uG&|!#rJKu7QsX%rh|Gz;cl<FtE@-z(CNz
zA_Hy%UIRV@iUE%S&A|J$Z3Rx`5LE+?6FI#8=Oob$_}Rs#n>r*fb;u(z41^5C4I~VN
z#lol|nGsQ=PSilm0M*hi<&3G5^X^sC;9>(yMA%F$EH$u<buq3Uy?9Z$!uanGYb)88
zg^ydA$-k#DQ>%^tevq`*z&Zoxmf`#|tT(X1z>yG+hOp7VCZ;WfIw5?@(lc<{z!?Ld
z8`x~%F9UxY*ka%d13$6=+3Y)*>k76S_|m{v2EI11gZgQ9cC>8<zB4P!@r{9Rr8-)7
z%6$Gn4kg>E)8FyE`0`{nuKnQG{~y?$&t^01Pi*9(|EGap4E)M0Q1gA)F2h^{{5!j$
zf!zjvV_&<Rwem_Tg%i9^es<w^C>}j`Y^Zsl9Q9`va!u&w`iH{>0~$DPV4s2g1`cr8
z=Qviz{`ut04+lBE8J0PIfa4HTKG<=T15sJ~VU~uZjY%C=J)Mhhdlf46^h4VTN!2Nq
z#z4nOK^`Z?YuQN0Sr(>&q9GIu;k<zh9Bf0}S&xebE*ZFH;5u8#{;Yr5WiDr3VS_1e
zzbwcf4>7e@IV#rAq}L4tH+eG(nX6WKNYpI@cZ~n|ZJI4>UpguCu1M|)QtiHw2Z9d;
z9~pQoBt`5{CpBcAi%60dGHayDuh~S#n;Al(5DJHo-_k4~q@dsvg5ULZG<|HYi+(bM
zniVsj3ZX~{lb2*Z9YS)&5s@SFGa(cYp;8EyLnsl#vmx^yfsmQsk|EeA9Ox(&GJmu*
z4K8NC#;jaQN{3J;gt8%&3!$P!$2xu1o?bqLdi@*~LYUYgj~A=B;N?_)d8`sb)eveh
zB_UJ`nKy#xS>|Qz&oMC}6yV`+A@g`Z{!+>=31Dq<CHV^>bG;L<7ekoOf5gk$C&tbc
z))KYaAvi++-Kpnw$jc6)ZU{3%c$>)xp?(OxLg*brP6!P`Xcj{A5E@e6&EX26Q3zwp
z*_{k7rf8GjTN{VWGdADKOlu;9_Yr>XX&N%`Q;QzwYY{@r5W0rYEreDfv<{(d2<;?0
zZ9?W@n|%l5GAwh~K7<ZpwhQfq@a~v;okH-X*<T5PE6?jpb@4Y+okc<+S7P%^F>iC-
zX)V{$BLpt>Az9iXkECY^C*rP+Q(b*R$PM95Rw5fi2z^5s7sB`u`i0Oxgux;6L+5~y
z*}2$41_>D$!s0>Zky(^*`TDCN4B>E5r{rrPj0u?sscrA(8Y<}=COBO1b-@uKj1)3T
zaI_#xNgtIqR>E>!_qGms-AlVBh}Rpe^bqKrB)Im9jhu(1F~}6D>$gIfD(&iWA=fnW
z13A+rAe+I#4tcdR(s<LE8N#d(5=^#uy%T~Gf`<i2X9%-Hc%LmHgasjd5Hb&O<!$}L
z5atM{lSkCf4dEl!dpY|&X&8-Ow~;3wgcdT_1ykI~+7#p>F%~=POASE_!5>0^^(Yle
zp-;%jn&~>*?ItJF8NQNA42BSs92p^mLik~TBg_sG!shghh{&nq^qTrL3%TMU7=>Kq
z#3dmt4Pko---oa)gykWu4`D+HD<ssa5LSn<GK7yqNJhlt<7j+M2%m(oPI}o|(d2&i
z$9)~N`JhAI@*iyXc&sIR3KJl{pN0@WnDe=ClF!(+?dc?J2JA#zLbxU8qka*>R<X(9
z<;xH_2!9pA*Fwm*3Hc_3Z!O7pLMmsL+QBTdw}!AwqWDqpmk@S_@DnrWb^a_8CVsBn
zMrXxzd+1fi?ht+p;a~`dLik;pL7_9*2ZZbi;SV7kbN&qBFX4X+{v){8^4%w7e+cf9
z<^WZ<tBXd8T}@?E99JsyaLC;0&+SOZLO9OOvJ834a3X}0Eaw<D#BeHv(@cCAKZbE8
zgtH;^2%~2h=Q#LttP2BST;SjzLV6e(VO$E~-w+;!@R)fI;Y!GSTYnhBRW_|hIrl=i
zAHuZ|9xiiU7rY^OQ}CAHZNWQ&cLh1UK>Y_Crj|QN%53aSa;HP?k419n<cm^D7^z{?
z{-U$C<4c|S!bl7AozBUq+Z*O<V`don!zdBvO9u*sQ7~+#syI<dF~LG%a~_~@7*nFo
zCk3ApEF$={U{S%>TG*&_a<%iBFsEBh``lmLv1RVJ=@})%;G1KqFkgF}H=5=0Esw+-
zaF!0^r7-G*Q6`MCVU!D_d>GG%@j@6C#7Olpvcjk+ypmvL!774P1*-`@my|qCXVm$l
zPNH2Totov6zsPI`oi)R#6-Eu=zsAi3)DGix-3BC%Fz0EVR3`FmG+T1rIE*Gj>V{EI
zNPR(OEk{U$FdAACCyUzRt}q%|e9uZ}(=eKa@k$t-!e|~wi!eGC%k2<G%P@{_aCTho
zJh;T!N_cC*HiB&h+X=Q89MR5Z>NEIqXU^&D78{+N!zkG?uWK0HMA#*a%PX9}b!)&B
z{;<K>VuQ1L7{52qJ-gD`D~#S@_`=Y`=p$)c6oxyD+%WRQ**A>W!WbGxKP%<^g$!Wb
z2^nO`2Mc*sa0shjral<sFp*3X93IB&VT=f4WEi8ucteDv1*th+$QZ$~g5%iyPMR|?
zye5P((bAkG<XBz2X-OtCMvK2CWU652kIg1GJ&YM)ye*QMVayKW{V--(`tOACuJHE+
zM;`t!#t+0fPjHUlhhfYWLYp56S+l{kKVSHQFcu0)T2NTsE1aG%RB3XoBQ1;`E6hgd
z4TF_S&Ynf5Ka4pmoQuO)5=KCHP|y$z35EqDf>FVkU|cXE_;P9n?JNyr8GCdXpM|kJ
zj1^(54P#vxKYW|BGK^JWtY!mV=KMHpZuUPPcT&Dad_M_;P9x%68*uhMoxNU!8^YKq
zgh8lDuTA1)SUNusV{;hW!}vaoEn$2S#@CP1d6dCcHtd$RMlmPxOQt90{7Ud^!EJ)y
z2!1R0o#0n1oYXw}DE*CQHj*78tlcqhXBa=RNyktshM&Xug@qhN@hE-`V;2i8f~67c
z4&yftuo0Aw;P){0u;oOMoTK|AjDOh$q-y>Q<F7FO7XD8dhr&24d~X>0gzOhQAjq0M
z7)H|*=IqmvFpjc(M1D;0WEiK|0fnEi^!KEjvx29^c~<ZY6C*;(&xz#TDcc1h7X>N5
zB;=%=8gWJVgD|cNxfaItFm70ycZA#&yd`*B@XMCAyF%^>-WR0hwMT6a!+0dl$6=&L
z%yBzKkR&yNe8ST#Nxq}D42x$9$sa)hA?vJu@q{=FMNnAClMy@>K@s842tJ+U8TO(=
ziU}q=a`6a%A&qAvC~4`G5;E(k&1Ojswa6_KLD>j;M9?#WauJk|ppoTUK}h`wDn?K#
zg3982K7tn_s3N>-1l1yVPI#6eb6Q;pOP<^={5PqT7bB=6&KeQa6jCb!hmhKWU1jc+
zp<WW_=lL?Sh13<SCzxzz)X9mUfk+w(QsNZyas)0*a{7dshQ<*ziJ)l&%_3+XK?lpX
zMFeexx3na!gtQh+4lHejw-anH*s6rBV+5~6&`F%M-&IKG2)YQ#k$G~;yNR>AAVc+v
zpmzlCM(|z)eIm#e`M3!3BIql8gkZl2UK7$^a6kkDBN!x{HeZcku<*jC{~I}nh_hfT
z+fX6HEY0B&yl(MiUPeYR%94zZV2s7bvc{#+j*nnM1QSI*LvT_AZwPrag10RF$q`Hu
zUe0QzQzMurlIemYE95b$Z(I5^h0GFsN06mKh1tTx5pH$l_Cw5x;6su41?NVvAcBPv
zd?e0!g7XC#HaXwEC<0FestDbJN(BGAr)UxQMCcVv%5~vPdD0n(ASe>rG=zjA_&C)Z
zSa?Muh+4ieA#uS(1dA;>=i!${usnjp5gdtNMFcA&_#%R>v?DqjEX`FBthV?XA)g4Y
z6<jB{UhrnNIdp6kzDe*?!OsLg7u+1d79n>J+c+Cf{VyZ<StR6NMeub5+amZzBs&DZ
zwS2#eV7tY?7qU?r?GF+BXvud9`6+^5q$AVjFA@A2!7h&f;`L_)e+l`GcL5=L1pg4E
zex+l!zlHA?{Kt~-jbNW}-g>BZK=?t+_mGgshiykAI2OVA2rh_Zc+1@5md*(wCnGpz
zNlr&_#^Ps%oMVkFH0@uE;8FyIqGplu`d54(30{uiN(5JhUlY6~cwO*@;7!2=<uY$a
za7XxE!3To(1n)=CqPXk(R=E$w$pJPQ*W(CMqDYmf^9g1~ktQTvFhh{a2kV&0%P-CX
zQ4|#NL=-&Th-Q=43P<szrT>(WB2hdoq^Mvq%a@};i71|pVwOlsMo~&gV?kRK^@Jdb
z(n87zz8FPWA?2bdA4P>IDn?OVBuqf1D5_e#auijBkFZAUYEe9A`94?I%u7}j_9&hg
z;R}LAOV~K16X{zcikg;wEg`j|a76J^6m=|lT_M?m->vG+P|15reUaou(ZJGdD8w1X
z%a+6yMI(#zk)TNwO~u(Piat@~3U3}oizr$~(JG48BIzDQn<&}}?;J%tAsq!7dwU@r
zqW?YWydus{|MN}B=pwwUU^l_PXP0Ea9>RMH_7dzZn7l1gAy1rxqv$Jyl72$^3l0z*
zC^$&4W4X*%qZks!Yf%i1;tdfp)UYT<M!6u$EdSwAye?#fU@|3?j~3^+D8>jGD@ZxN
zpN@}Wf;cBeG0BpDUM}-lxs6ii%_t^E`5ub5qL>=R4AGe;I9-sBG*si2dBpa%WnpF%
z8Dkyh(|8o`M)6)0v!mD>#l9%skK%(Uwng!cD9?$)h$0llhf&NG$wyHvioz{?p5T1J
z1yL*%vQ1i`BHSnF5mW`WD7-?LeP)CS)5Yl*3`7x(Vz)e;l(OD^!coMch>Jobil~s2
zN6dUBgs+NXbrg%ESR&4)QLGTMOmMj%mH8ofrSOjh8?`ViWla>Hh;ysp+9)<gu_?-*
z8koN81xYpt*-;_y(<nX@z9ov!E#J*T_?^0l)XNv*OpZBU3ja#*Yr$m7zZFi)zYF;;
zitSN+AH@!F{wnxG6hB6>Q~1w<KM5uuCVvr53ygP{@ZFZ=x9ERgz3ICria$jDr{(*X
zkiVn&$C3;=VcQ?Yfhg`r@j!$Jqc{=8$tVtq^RT6PM95LWV}i#8lb_~KMR7KYb0Rq{
zc!u3vYKkd2FOnNkT!`Xg6qm$#MUcM#MseBV$*yr#oYw@e3-*(N_huBg#Cbc4J3{UX
z-m~KR+j<ImDDw0e9tn9Ym=ZH<HdQd6Af0Kk|K3wFV#tgkzsR4A;VB^nVkju&3Bf{w
z3{^PB_om)^bZ3#IMDS_BqLxlEAsi=*3n?M^tmV5)8jMYxLt=mszFL-!@$hGqjiFo&
z<zr|XLo@NJAXq(yiZN7*p|Uuu304tgs;b5?^09e`dhY*7vSP5u@O%s}h%iU+#TaVG
z;1FIThMJastr&L8iV+%lNrZI;>j-AYkSyVP;;b)7&D=-n4TLw0!5PEL!W#>^1RDub
zlgVrHe<aOgXd%u%F|-uYCWf{#v=ZK0kfHc+(k_Pf;_Mzn2O*sWI|{xc*h!H31y9+!
zSiEZt-Goy}uO7mCTE4wv=xuSvl56q282ZN0Pn`V)2gNYJ@*OCIZ#07~$*VDxmQm}q
z7>0^)SPV)Go*0J5@Olg*ST!+o{$Z~8juLz~hS4#MiD9fbC&loFka2?JW0)X>$(|Vd
z?+J?hO%YCwVX}}Zf^S)xOvbbrri*ii;LI4_7Baq#+5Tr)n(qiX`-yose^2;q!S@9}
z5S$akheBAzRO9uLIOhq@k70oj$`=Y*6ocE6Bp=;XaVBEWV(`Y`vwRI9x}aY$AQ%*k
zmNj2nLNSEJNghec1!ID7!C)OM7DAmRF)WR7)&<K&vf7fb5VA6ck1fe6_PC~IY4BPj
z!cPR(#;{IEf4P@!jA0Wy;}RZzg->JnEQV2wF?umRk708R{Sz3Fz?K-kh+%6SU&gUD
zhA(5d8N;m@z7ji!1;37An~-k=_r&mR4By4DU7SA&elNH~kg571h98CRv?Ti)=l&eS
zFERXTNq&oAm+;+!|9jj0U7UQe`a{T{G5jUuZ^8XB{3C?1?BzHne23NR4~X+%42LY8
zb**v4;zwgRCj7YIi5N}_ITgdX7|shn9mAOz&I)hy*ladQyb!~s82%OcMZws^^vf|^
ziQ!rd*F|#G!o&)5f|1t^kq|jcM(6Dq?y$?mF*c67G2DxxOB`L}xF5p<(X1UetMwrV
z@HmRZ@hFDJF{H$iD)Njtl8^V)$rneO2+7lhXyr09<H#RJfjA1rQP}c*B91~9=Zq5{
zVtGAjNgf`uJsn5UI4Z|cC5~d0$ALIXi$d`@N?MvFgghI^rj}+RONrAam|PJ@VVO88
zSo&q-C?~wUAP-RGp{5lr-%3J~k5X0Ruv_wKaXcrydK_7CBztc1CH?t0UWnsGOS5Ji
zHU5v0TEdg%<A~#>IR8F?>^Pdo(ISqz;@cpOhC=EI){i4c$Z)xxIfXM9P2zYt4wpC^
z#nD&@A4C^4#S?NbrcTp1nu(lmB6PNlqg5OoEeoxMw2PySC21=pd3$Ovyn`U$2VW7=
zNsy*G3t21=ncajB66_vFk2re9(aX~8C!}{AeOOR&<cYJdAgk4W#Forge@lNr90P@O
z5}pwaj^kBv4iS7kj@K;Bp>YfoKHQQdr$a}GbEM#?I7SO8<}mL~<Kh?}M>vj19Nm{V
zC&aNJj)iedjAK$9Z;0mGam<Y4%{V5<F-0WP1R4CTIHp>ht(21Kam)}&GU{1zyd%!J
zalC73zAxlG!Py+dB;W^e%n=FSZax%}v_P95iF2Odd`qA5MI!MCy5mrUP|g=CH4aUj
zUco>dJ|ViL;}=rouq`OW5DZzqv=EIWCeF2S#4Y)fI1(0L9LGj^+FTmPvN)EDe3jq|
zOJ}8!kJ-j#HR)<gzDCF=mIbDHT^#G<*dX$aaeQuRZi?em;h$L&7T0FsTP(>JaU`cY
zzl!5)jxY(NC$KG!Z{qkhj$Lu{AmVRD`8(k)I+}O7?IQU;jvYdNu&n(U$Idu@66eox
z1gDn#MR<#lIT-SVVs{+B#c?r?OCtY0jze)A7QQErKZN`l$6s;$Eu5kD#qp2uy@LN6
z`S-_hz|uJ=gx}7NSdtS$j>d6J$Z<>FN78>Xj#DBz9mknC&I&(o>70xIHxqb4B>xNh
zZydMdxFf>Laa^(Vuf}mLj_cyQ5ywp-$<GA0gx@-0<Hfw(73V|2d%Oz>c_2vN4sFec
z;YZ?p97jsR?6awY`2_!`nUO&81WF{3DRQdiPoO{o1;zP90!1u&At8kYpG@E>OWyN{
z?P=jfElIH?N#LHe%xA^vf0W)XfszT75~nSJDhX5-js!|4P)2xJ!HR<A5-6WQg#>EJ
z8@;osnG0T(5~wT+TmComlfd%{Zu&MAo=c#*kSsyFVDe?{#RO_3@NxpK1ZvW(cr{3%
zb^?wBvJ<GAz)K>eojM6Dw&u5!gF`*>s-FM{-egL066Sc7<PF8wnLzTzjlxC=G)<tH
z$QuhbNq{e&eAjC(&Q^jg5@?w)=k9n%OXjF`0&T>rtsrk?XJ7tr{;hoi9TMo6z$*!K
zN}#tWbQbI`$auR5=_=SQ@!y*Z<vm2wQ?OS8*R0a(Ba++%@`UtFpq~)-vWPs}4@_W?
zNJ=cm-~?Vx;CKQjn3n`z6Zy6Th9)qKC6mBHkql2@Yy#sFcwL-~eMAByEj~)f=mf?H
zId08+j89;C0y9K7A%TerOcMS^0#k(0&YMCe3np(;Zwa58z%(ImmT*yx*V_ram%!`<
zW{RAWSwj9lroID8isJivfn~`E29~|#%r<#ogvFr=0;1&1umfU3f*?o|MM;7Q5JbrW
zvJ-lyXQtCEAQD6c34(%IP>G^MK~WIY@AljO{LXhypL=e-dR6u6)vN06>Y46&g7XD`
zkqeTA1$Zs3^Rkdv3h=5Bo();>b>WKy7YqLHYHDc#;sr<)U|9j)EWq*tyj6gWqVu-k
zYC%@ALdZ(NRV*SCc})S<7GRwS*9*QQNd2Po_y$S#%)`3{*i?W5hNVcf0)*0<5g}ng
zMiFC-#d$;v5EG#;I9Zk~%9BN!f<^(%0$2sGCCS`EAx;5OLW+92Ii0(O^E$m7|DFi9
z3BF%|?FHCTfSr=uCHOxtF_L!|;6o99B=~s&J}$r>;d=!S3VtHEuK@dn(4GTA&Pk)6
z3O^)xxB#CCDf-*Rkpdhoz!wGhvH(AboMpc%z<0vG7W^hH|5ixRA0@soz_GOacmdGk
z|Gf932!ATTiFEGC0u)_#o)Jm8Aj$`Ewg5j%@|@s*1^A@^zZT$p0WK8adIA0v`NabK
zCghUfWx*?g(`7xmDx5Z76Y{&@9|c&H9<{$ja!c@r;7yK&5MHjZAdlOU{73NL0t`>@
zg=Pd%EQsPkcZDn=SV}N6h>}7m&l18-$kJ&^86jl_c^ax9WUS`fD$7wtN!}4eB_XV#
zau9c>`CUQWExc&wwn`A$K~xPQCx}5o3=RT8R12bA5P70jU9edYHG-%qyjBp6h13qB
zj*z-RG!VkJ>IG3>c+u`+L*b3mxwB<MHCK{K5KYqZrb7C5bBDNj5G^FxGKf||c+xsv
zA*}`51W{B!_3sU$ZCZza#iFFWBp(Rkz94+UI|R`st)mL*DA-A`vmndfFQls=>**Fm
zcj2AxcdP9Y#DkK2D2Tp7dZsmd3F$4^Cy1iEbr$I-lKz4Nf*2@-a{d#FI3$RXR2JdT
zAchI?3l0~|7YqoF5G=ZHV%bqa_p=oI{n#TxJStg_362TkaUo9#juxc;lR}CDa;)%i
zL5xr5J|%?ye>#XsL7WQWbP)Vu(&QkPq;;MVG9}0_vSC^f(}S2Hl9vUa4dTVL=1d{a
z2|h14D~K1;xkXcTb`W#YlDR?53u1l{F9oq6h=n5O!a{p~5l7Mfzs}~olGcA!$ZLYH
z2eBwEUo0ecGUtsTmIkpbh&O}yNQBD;HwN*pkhg+(TL^1j5yVR2tAbb^#F`-1N^-s6
zx**;W!fL5pv`xA}Bur8m?i1J~Njr#wAcDd}K_t>T;UFTywIHHF#DdU+h^KRToA8IM
z5=BpZk|H<Kxn>ZS@FE>2h*S`TBH1ChS#S%tfP}m!_<j)EgzyfRM)KG$$$D~Wu``HW
zlKen$w;**sWcM}qs_EmjWKR%#gZLzfeL?IG;)@`@4B~*~9!~2V4C2!?Kg3?A&vBoL
z@be&!2sxV8X&?5piLWGiEQqg#d=tdCLcR;)dm*2m$l*cF?@E+B9>fnK{4t0VLMZ<!
zh>vA6hy0`nxgeb3vLD26L0k>u=OE6B{7TUMv*#~CTnu8|YTvIkm|uZm@Sn}UAV|U=
zfL#jWa*!{q@Ex{%+z4W|Jc@o&axI7oAyf>xbM|+s^AEx6LHrrSU&3#2B^QO8LHr%W
zEfM}Jcw6uv!J<pn|Ac3Vevzbj2qh$$8A7QLN((O;;^!LOMvLxt%Lr$(oRG4i|GNS&
zpO$mu;*Jn1g-|7g><}u4aAyejgxnvF-bI}dIz5<kcL;o3PDz<w`I9#I_>VmDsv+cr
z+<)g$86i{)p}LgfzxIk0!sl{WD)V%Htq^L5&^L^JVblqsZU`@j@Ja~vLZ}}?UI^{Q
zm<A!V5YjMhTO%QjL&!}_ln|N-Zz|X<EpN{H<wVdjEomjh6GCetZ3MmP+<S$z4WV6H
z!n4eMA^1XQwa(W!gbpI_p3YT6=qS9CVCS^FO9=O;c~>Fb1P7kZc|b^ybnb&f9un*+
z*h{c?2z`WXdB6?bej)Ui<bV*K2w}AFfgubE@%98mLKqstC=pV5SO@{(e!<~sdA^XM
zho>V#7@3wo9Qwa!%`E$f2p<jMF(Hqqb&5_FPfBuT2xB<(A&d)Qd<auT_>|zJwElz;
zCZ_q*LijVn$wHnHoFZ8CP;8oTwmx0Rj1d2I;>IeA5T6U-`4DD_WL{eHg%Dm8K3i~(
z;M{aBPiOPf{3Rg^LRgrV@RsM*5MJXn2_rL%*F#t&Sw})x9Kw<i_DS*$K`n%+kfk9k
z3*k-S%R^Wd!s-y-k|d3MTgVE*l_5-)bIqC%)`k!i;kvZuh7jIK^YtMV-F<8f;aw5(
z0qZ6q{GW0`2n*DF{*N^zl5o0IBwat-jfrqe2zm%{;fWCJv}Q5{BhAeatTgAXx+6R#
zSeTY?7Ba0ZwubOt2-_t2k>L9wY!|X4gb#$U^_@a?2_CAMwL2~UkO3*@i;vTiJt6EB
z{)ym_^!?y|NgfE{U|RFj5DumJ;SfF({<&b$y~fcHzL4aXA>0!3RR~`T`6h&OA^Z};
zw;_BdlJ7(KQ3$O)7UFMo-MIQeu;?EDrw~qra598bB0L+yX(49>sch8DDv>@D{p_wM
zZVkUm?&T1!gm7N?g|z-fA(sRv$RCz}6aGgCSA|>?{9Uk>oS3eM@TVmI61*vRLy&((
z|69oac0z75W<>I@;D3S{Vb>}i#lk2qyl5w|WEfeJ>?~L+j2(Rf)r6N8EE7iAFv^8d
zK8y+?sUlcW@Xj#q5W<=(g;81f;i4ze!tYM!-ou8{R|wf6tSXoj2GTnG2}JcUYDluC
zVDm6)g;860oiG}vHR}qg7e@WGq{07Jf1@xOhmjkGBDqb|I!%O3?t*4%34aCDB8-+{
zv=T|%FxrLT5#Bnj(<TgW823uDXt#m8F?s3S4no=s-Y4h_gKFHXSJOHj!{Co{JB5)a
zH)ZrymoV-RyZ=NW?<#8D!sssKfiQZ6@u2Wt=^7pq(vvkvJoHY>`-J~*cd>sM1Hw2L
z#xG$E3}a9jqr!MZ)CLO<DZ(>3Lxl_zWb1w*!^6lI5)d4b&K)V_VL@(|J{rbjVHAWB
z4CC=Io(SWmFcyR{I*cd7n4T^*M#$5GW5XDimX8<mR2UP|l8LldE)*w;WO7>mOc+yy
zPfbgvg~4+{(RSR7FrE!#rer-A#_Y7t^Fn3`z7WQXX*nnIoHU;s#ysKk(~_bwT^Poa
zFy0X1%Yv_j@oHM<H6gDHE)rZ!kENdrFBQqUFqR2<GmPaz-V$6D#@j+x2-4>(g%n+k
ztror}jJ4_9KRdZo^_?)*rzIQ0*eLwnv}BWz<`3kA!U%`)og^b+Xklzm>qLbVh7l8@
zhY=T&5VXQb3SnD@5R-E}z1wMr;fOFL*k7)ZHVfY(xK;2y!EJ)?3r-Z{cZ9K1lDoqA
zFpQ6ce;~L!jG|xbeJsiSVH^;$Cyc#9J`vm}m{G;OwmBHar;_|Cj6*^w{5*`qY5tiI
z-cuh5<7gOPNb<`fVR~1DSJz*Q<QqZO@NL=>^6y1>Oz?OZKM46z@F&3&VVo3lDvUE>
zoE3hWtDiiqFIr1k&(9*K@YgWT3(t(;LKqjrxE;nnVO$F1au|PwaU+Z?VfQ~-lWw?g
zclk~DRl#e5zYG2$cwO*M!9_jXH^5xceK*7SJB(ZOThP5X?;LV*e#pmP=KLGRij0!{
zb5QXJ{tF``;x<$)0;?;S%R3YzB_$$mlK&Aa89`PAr6MRD!GMSxeq|yk8$rtmT1m28
z1XUu)j-b3GD+pGM;Eo6?31^YJgj5#1Q;@%&rTp#)?vZ5C8NaIVY7tbAAV)X^sd>Ev
zYD7>|l1(D06+vy`jRfmNP(Q6%H-dU;{`1+K2ErQ(7M(F!TjL0F(>jWfuHDd7NVBxO
zc?2!eoUOBzN0MD4Xf32o1l|bl72ZCA`-HTOpq&uv=SBW+ciktFj)EQ1xoQObYYf#o
ziKKH{UNH~%N6=N0-6D7>E$<$|18Lqv$b*7KKPT%ML9YmUi=>ZWzX<vYDS9T`UpSll
zUc!E$BnL$>Sjdoc?oc7aBJc|to|f|+J|iL+8NoXdtdHQ~2u4LPJ%Sk#JQBg95%-Iq
z)&I_XEP}@)7#qR32%d;wbOaL?WQ`%8lg)PtJ{duoQ{Klu@vo|;G&$z2RZSfq!BY`D
z9RWYj%9m(Oh+tv_pJkLdTueE0sThU5pUR#jxswI|tgJi}!ITI{rV5fw6T<IJKO4c!
z2$n|NKb1ch!Sl41Z)1*NRs=6Z@ES?oyxmV`zZk)*5v=$jcXkAGBKYBtoTn#d&lNH+
zf{#k6^95fLWO9L!g@P|f@Jd?Ff{VTw#&`O?9>F3G+2H2g8|SrMo=vhu9K!eHzY%f2
zm&!j5^F7teI3s?`eKUgPLdf3|^0pYfB7&6+W6@kCWVPU$2-XT&m(I;=nX@5+jf}1c
zzKP)72sTBqJAw}*D2N~!fywC{K`4T71bPH<&hg?(B!XDPeM^8AK~!4gixiaN?z_i}
z{-MveE+ir_B#S&50nvKclNg&r9UgWBg%NCyz!9C4AYZS|tSu4nqkcO$Lu)8oBX}<Y
zUzv<;5xgJ4b`IQ?TqdbWGy3Od@|`L>BiI$e2mH_M!=C4VE5<+LzgNTkV8lm^oGZEe
zBG@mLe;mOcA#7rA1fK{$+{b;J#DNG7a*dK6eJZ66MQ}KR-%4b#1|FY9a75&v3sTbU
z@vIUfJbXX@7ir0t5qu>!bd@(wd>g@c5uD`MMeseRCu_Ty`x8UuV(xL_Kd}4#m8^|9
zKZ=m@t=EfD=R^drAI~XzPwD9h&PMQa1ZSiObNPnYqBn)|wY}#e_=S^hfcpkfCND&A
zkxQk9N}Bsx%S#blXD~-_If5%J9{Im_bo?RYY6RDW{GOJ7+c&FZ)68>aGX9F-2AAm5
zdH+h*%?SS{>?XhLoAtLyZbi^`n0lKl=Ynh!X64n(`7eSD4aGE9lSf4%#RW@f$V|&i
z3dzz?sz@SOMzE}4xgz=Lyz&|<2<Q7oSmC8U?%PW$vuhf5Me#utcWJm=!wwBQHQb}2
ziiU+6Ue=JUp{mBetfH@m91YOWTtf>D)ihMs&_F{&4K*}0`yscchFTg<XDbg~$X(M_
zsjZ=|hI$(E_#H6~*N)|$yWp+QR*vPiJD)r6d@dzDvXw>}8f$2(;h9Uhxf&FbDoPU#
zJi2Z6UOSQ7=1MLlB+WFu{cCQ$wpqlM8d_=Sph4B((a>5$J2s@DjfTWF4;PSoHF%{?
z@{yHFwiN@|1Y2ycVa%_&KCyXfv5fm9t7NH+Xm{oLjEs&NI%&9HLst!*HJr^XUh-z9
zQbp+^YEO4lE?v&;rlGrro*H^-U`IBT%6LFS4-F4$IMh|4!4HXY>GwUfoc+zboZFjS
ztD@Yhl9SzCp+ov<=&#{PTB2cqhJhMJXc(zskcPn;{2GQ!4MQ{xW7p2RH4J6%uH^Qp
z>K4!F8_3u2#D(0O_b4atQ3Ar5q?aDnFiOKW71hTzJR<T(#ige+GU#yH^O)F7@`Q%b
z8s5vvI&~wHmDrU^j@2+u!we12Y8bEKDY0Ryh6$RxCQoKP8YXIZT9T7!=kZ+1SvFHf
z(>35&?i3A|E0yFiO~(4b`P}IYy!SmMGc`P?VJ-vseD3oaW@-HMJ7#NmK|_%N<Id-D
zAc%7`)H#{^YF5Ug%;HMl0G&Kf!+Z@dX_)h4?gBx2lFc#sTzBOa4X<k4oyHmsuW5K)
zEMKKzk%q+@-eTlvSfb$#4a*tN#WR-5=>Kvd_e~AUgfoEes;Y3fDI_o6O<}aGkPsSw
zJa?rKN@&~rnZ+4DYc;IX5YeD%;3&MKVS|Q^!q*E<zgc|uvD|mXlAwl78kj5)Bw-CS
zKE!IzdBdVZ64emnh;Rh^26PQ^4Ji$rO$iN24K`!ur+m7i$wjY0@BNT#YOsWC`Z1T^
zeCggdP_lT2L$_b_vWY@Y?Kgd+`DSk+TQqDHLgBgNx$mCyZqx9-hV8VWiZb|wZ&2k7
zc5s)54>Z({qD~aMHGHVy2D_u-BMl#GIIrP?hCLegYWQBmF%6$+*r(w$4WCOd_G|c5
z$N@pluY+7qHhVj7^BfY%VL>{X-9Mt?D3_W_>USEx(C{VWR>RW1fv-3LkGVZM|EBM2
z(WmmvzJYJ)?Y;pT|6$(%OVQfn8h+p;)$p^1A8AkDzzN2Zke>vv^$ncjlGRN)&F)uG
zw%*9($g<`$8j7EAZ8#^<$f|zT@QchB&M!uCqpk{lc#)CTA%|+eX}BbDaycC>SA=jq
zVK85%ks5xNs{YXMmyqj%e+p8E14rb1`CG#+4V9y~Gm6_9{^9J1qD&P3YWPn>$tbd-
z{H`S!-kbs@q9_(c@hJY2NlL?t<e5=-MWuo*i$kfXJA-&|fhsG!Vib2oarshiIZ2j}
zx^u8X6earws7B5rm7?fXxg<mSbXLY)QQRFxttbwh&%Gy#DpAy6yWN!RD5^$LEnR<3
z6cFC6R7O#YyEBVdkGd-}54x^qT9ffyw_kuhtQ$qWDD)`eQPhv3K@?9%F)50MQ8bF8
zdlU~u(Kw3SDB4ERE(#@zCQ-DGqD_=foV`t>XdXq2D4Ip#JeAMmo0Yz@VQ<SQT1DZB
z;*rnt+Vl(TTc2|*=%sx6CtjBFMsaTxl#tgi$jSb*IC)+a?W5><$k#cF`-G^1KEV!x
z%*_aTi5(@`DT-0s-6W4LQQV)_=^90av7T;{?6uc>=J(tl<n(704{`*L`W_PeWNkKi
z?<o4P9-11(_hUSLqZk^+uqgUP(Lag-Q4AFM5JBn>ilX+DDm4d-gq4$*KkV~MGCzud
zkl|4<i#j7DIZ}|_r}D#5{5bpnYIs!SW1<)v#bZ%C9>o(Pc~Wq+RKg-f1uwqo9~Z@V
z$(k6&Q$i*PQfJm@dBhES-6q)X<S3qrVztyTC5ow0ER5piD5ga*or8PWH$RFQQG|lt
znNd8)fIQ-RR=P&X^HI!-Vr~@kqIf}cD4ZkYMZwvu<P$H2?Bmuk*(8hK$nNyeaFUnA
z`3nR&3VX(TUWxMO9NuMuuSW4&6t4?k9K{kLiv&Hlic{?k;Y*`<agUeDOXW+h*zSEZ
zisjOgx1v}ngzdgfog=;#47|JmlRQ>&9FO?e=$a_jMzJo6ccR!B#k*0gkD}wP;v2*&
zMk#d|NPh;so1!R)A{<2|ieS3tzWv+^Ls9(sdodDCinD7mDIS%oN-g)Zl9y)t6Hz3i
zuxUmVZyxp;Qi&PGIEMXUpCw7pY47w!*{LWBCAmF{%~5QTf!ijbxHSszbDsBvvqf?u
z$MJp9c|5x+18fJ!^knW%seygj9mR)H_cia=qxdL_kE6H{#l<N0M6s6v{7<o;qv-Tc
zu}`A-f$>IHtjyZSfxeo%pUX%T2c!5jibEp#O7O7Y)yXP#K8xaWhRUD0M+A=wej)g!
zpjIY}xnE0>Zv?*;`FDcf3my|ZE?A`hQxqqnSb8$|OcWhPyT+W1@^f9vDR$~w?rGsn
zF6b9n*Dr8Z3f^4oJI8KHmb%xq?bj&ION%S6<+4+kxR4fE9!1Nmxm36!$)msL{>C-@
zkKEUm<xqHyqkJ;=cP^xb-an#v=~^zypW;CJ@UJLt2)~(@{2j$D;kVP0&HV!Zaq*Ag
z-EG*k4aH(89)l-=)(Mn|Av1>0V)#6Uk}+h(;ESO{4EzpesTdl@&?tt|F_aNW*%;~z
zDJNK7u!3Mk!8-&i3098b&KT~B;qDk}h~%CastBnTL+gcE*}`)KtH#iGVHO+Z0g*6S
zT?i#qt{FqE7;1~8u3(*X?*A41|7vI;S^Pv@<Frou7;<A!B-uo;wP4d2nh9wx*g~+S
zAlq#v#1liWu*zhcwA?G?Uct68v=fq-&Yih1>ptOI&Xiy&HRj$<c8;Nokd85Q62hB7
z%I}Y%YYcm0?i<Cs#n3&57h{+m!vit&h+$d`(_?rrhKFJp7K1;Ao-y!ln)la3h4d2a
zE!c-15YkVOYW;-_h+&|RL23Em7={Sn+b=-16Qgrj;qVypV|Xft2{8m>`2JV#!!eAC
zVMGigW8gQw`DR+aJeK%TapjSiyX7)221*`{;V~iPkH_#tnvag*N#SDz#|n1IDnT{Y
zHeTvvRTE=)I)-N?m-0#UPfcZVI?3kvZSe&IJyT+sDnfpzo~5|4Fe8TN8LP#WX9Z^p
zJ|{?F(dNS}NxmT1EUUzv80N;XDTaa==EX2ShBsnZ%DynV4trmX;k6hR#ITUZ#H^QN
zcqN7t{Q~6NrP(|-hdQsvuqcKlF(lTgH~R&~A!{)s{Ji(&uXBi0Yt%Y#S<HRE?(!Jk
zVjqPwIdxLj+rl@*u#o|fmai1DN^o@yYtr(yLe|Cbj*#_fIqP9<{B+v8G4}&%{Nm^I
zS_(fCAB-UugC0XDhHwm#7_90_RFFiAVRLRK36JTkvf{KqhC&LZ<H;C|7)<uMwleFy
zmxslfUR-emZP8&?N|N!xo-ZePnA{S>?ifClQd?tqPslbw=Dr`p_B7uS!%pG51V2d2
zS3R2bk<|Hd46O4t`F1MH($9Ni_#}pXGA}qa4#couLXKAP^LYnjh<~5^X$*&Ac;x%s
z!(3|m2S|7@ERV!+G=?8^{HWs#)*M4C9UdKDNo{xQxJSp=F?<ulw=sOjpo-xJ13rdh
zF`SF>=Vv%BZT-a2XFVLmA)X&OC95kup3f?AGKNzz{2W8e^Ii`6X%0;cbQ&#ZY@Zd*
z?oe{OcvTwwtMu-o^z^*cd_n5uD~=hcRJatwWy!rF_?zHWLFQhI;dkMGq$Ss5_%qGv
z!<#Yu9YX~j6?NQ-;Wk%n9c6SJDxv(t;LOY@rQ=`vs)X{NAW4Sg7SmB&2qh(SWC|}S
zm?hY5We&4eRae-xvLY$3<Dv83a=JVHC+B7|i(k~G<PIH`bTAIbXO*a|gF}fc#qQMI
zWrUja#$7r;jF`oGs_4kpq3GadX;mFLI%?^ttpmEd`BqJLU!zLG??Y7=UPF+=nmVT4
z=O<x>b#&C#QBQYw8lMSfO?$=_))%W9=x8XUk?t-IxjGt4l1(o=>7(T7cifk0H__2l
zM>8GGb*z|BqNV7x5YF5Wmt@tD?<Tj_(MHE6-Tg9-SI50N{5po~Xse^0j)6J`>B!U3
zUdO0F&Hx?vv70&`(A|yb4uYL@bQYotb`;!QPoY8=9bI*FWAR4H{W?zfQ7Kdos<B<Z
zb$fi>bsVkhs`b$EAl<H`r;a{4`s&zbdVA^UEme*2sM}k(1&8kSRojr&PlWw-%x&!o
zc{J-ENaZSj<|>1A4AC)62l?;~o?kb5hU)yUy65&L57j6f-$cpR5zsM*#dVC(F;d4=
zx?RV^?4ZsMDtR84`XABp*gW63@)?hk==iuo2ES3b@h#8L0iGvxjMh<Vr|(G}V|9$v
zF-FJz{R7S0s1z=Iz(1mYfFBJUuY>rMjtN4@Co&|2PZFG*mOmq8ir};T1JiZP(D6JA
zuJ$~uqyK{{`*NS|<v06g>Ud7a@!39h=ZCjFvvj<`MWB}JhZl9s){*s)pWS4VcFxl=
zpMk35bq>Ame)w;pjt|y(76>1;*>~pkY}Wa*j#oGk6_khH_PnZNWgEA)Mby!;M#owm
zOLXk2oxe=Sn>yZLmvfb+^wnlxnYzlp&A#P2-qNv3B!lAKw;5opL<h4t#2?gA%BMV3
z9?()f*H~FCa!S^@p7(5!WT!3aJ37|uC>i%u_`nzcF`vzC)bXwkYR+5lUD`iTpd+Xw
zq$8|j3+IcDhz?DMsl(C{)e+P2sZS|h!!=&lkz_1w@y$Hri_=A&l!OlQ*mj>GgB$(C
zx6PkL185%gZ5<BvAN8kn6zbS4I*-qFoy=p2s=UX5)UjX30Uht_Xjv0G=@Z?3LbP4S
z4w~^_?wGmR$w}EC=-AEW_Yu!0IzHqS?&tZ4!K0%^Z%^5No;Hp1`AjGJwQrA(J-s}8
zbv%3Bd;OYs=IH!=v~YAjUrBn99pS33<4Z0_y8Djb!#X}=NSCil{<)4L94t<aN8I<9
z4q25oaCy$aULGdbtjYR{%RW~m9WOrO`9_ESxwpxu-fwl>rDXEurL^ihDaf~~#`_13
z>F$eFkBc(NPdZL8TH<&;j@o>iG)u*CcO0iUZFQW{aaPBxPkI*Il~H|N^PlOBhm@>1
z&gp!cee+)ge-%70$VW&QbX*jEN$|3cD_j6|T;-Y^cS~K<@w<+{xuom(L&tUYQO94R
zJmu*UR3P4v<V`_qxt~HF+0VDVt>YgNX2kKYkpFZ%Q#Gf`thPlu3ud$}7I!5~-aoZ%
z328Ai&KPr>{$KsPYbzCZ@7+oZmJuu~SWd9KU<JX7f_Dg3609tEr{LcHfqUYp6363l
zJP}8B9984!97mTpa^gT7&EsehM>QG{N4+@e#}U4jStE{`any?A^KZNy(2*lN#(%|X
z$5AJaX7U`WZXCU9D?E4|+aQjHapcCK#L>4+PNO&)$H9*#<lV|7@|avron2jN5=Yax
z`zB<r^B*<MX(pVHq9|z@N2@sU;%Fa-Cyv%}+#7elCeSACMw&P7esGr88037s#m9MV
z<KTB6+Qr?+eEfC*Pe%8};ftd~9BSM>Me?KJe4RL>i(ftK7)K`tOn>)b7O!EZ$f^H+
z))2>lI0nYiEspNAJdS>GJP=0@8Wu;dI3A3<FC2b|HD|ily=88>UzcVLz2ok)vp#Wr
zu)<gL6s*PfDnA6!Uz(<o{2(uJVrGd!aSV>*;W$RcF(i(mtS}CL9Q;r_tJ*ffHFbC#
z`EiVhW2AIB5O*&is}2EQ`_JCZoYZ#x({1^wboTKPY4=ffQ@%dW4~svR=AEWxjgI3<
zcC(l=KaMeRjE!SP9M7^y9OD^saZI5b<L*b0Cvp(0y8|~N?tU|ZlBeUCM72!ik=)G5
zam-n(@{_*A`#$$hjbpl~O^ah=$r8`}>b=!JQ1mR4Ce4iF1?e^Ub8$Q`oFg)e!5~jO
zUyNfmD-=8D#=(<2jpv)9+2}k`9z|Egu^^6xal9ON*Pow$&f`<*DT6a#q0NIcUyXxF
ze);aco5im_m9r?0gK>Ns$KtrVWtstHNgQv)u{4fly*-iMo@H^o8OQQC-il*W90hSu
z_;wsC<5<OkzV2NSM^;BaSG=kN0;}U#&w=jkS;KiTAh0%$=t=K7cKMq39g$GT+zsq|
z9Hp*$n_u@fzvg|Hv*wz2e;-dUj!+ys;@HVq!-nE0l;$+SWE=)76iyprap=NtUiHR>
zBm@sP512x%IBX%+rer%pSSrPFdDKVJazJ3@HScDTZxNff3ce?}O^~L(AIJ7IXFV*q
zONx9V_(2@Ig?uPo_(=H2qQ6J@UO|?s(mRv5FOL0b$$>cfU-eRch$9lm#W*g-@fnwh
zIDU!a*Eo)l+@<c*o1cl}u^i<ngN?1U$ow*nuQ<fzl&|AB&RB}$8%a{~t&s2H_+H2{
z!J{1&X8jn)Pn<ZLeTxe`FR1DXM$vQrQ*oSR$f>He*+)Dr!n0uyvwrXCIUC2%agdx7
zEW5KbdGo1l9~uxiPYZi`E-(W5^XZjY#LID9iK9#cWfS-<j;nFpj^iH&70br)R~$Du
zAGr?jt?yTI{}ggP?p`D_N$mNl_qW<vH{+o2Z;`)pJnxpMwOO9?^`kjd`!|l_-0Df-
zzc?}yc;+d$ET??2g!^`JR>C7QfszSiCES`RWWiFxS$XM%``Ya$>r~3iB~U(r8VS@)
zph5x_6R46vb^>=KP$_}C5=dm0<eEcd!O98TnQ$$qgjU@x6*75`kP!m{RTIcbxToV-
zo8d*Jn2Q9eB~V>-c;=;i+JHc<1ZpSHD1pWa)JdSOl+x>G)=Qwi@P-L|Sx)5_0U9LS
z??LcbG9bX3NpcfV5@?!0Gs&WmN0S6toJDvvPoQN2i>qd}NGtGr6Rl``b%nW9Zj*pF
zfzOjTlEl3Uv`yd&2P=Vg3FIa4bOMtSXrI7+3G5l;;m5(JO>XO>{;9k!3HQ?>9THH5
zkatX=Q<`^X6Hk|*@csn4CeST`?o#UE1RfC5KY;;4dI&z4z(YcM3icB0E!an}uV6pH
zTTa$(CyO==OyKezt}#3YN!H*5h6tf#Xad88`x6+RKz_pgXvheW1cb95N=AyLsKQa{
zvX3P2XqrDJ<naWaNJ~a1@MHpGBsn&Lr_%Cq35-wR+Y7Ee#0eswC|D$%oN&KA`b+{-
zglrz7GC4JY7dX%&nI<?rff)%rD}1J4Y(RiJqR%Dpd;-68S9r`~6jjb3nJo$*3C>Ai
zZUXZXn9p!cAeq2R2`orpbpmS=*f}7uP;jZ>%Yv^Y@T!!3P4IQWMS_b3mk7Qg$Qo!c
zaha5TGlAtIe@pOf!4-ll1y>3Fuk2bW6%<@2_)Y@rMQ4NHM!|OlHwhL9{;!6RlnN&h
z5xFK96^se$f^otBl`^E%dxEB*C1@w$h-ON#P;j&07QwB8|Ep)4lzLxqdjdNocc<Vk
z!4Cv?3w|hARQ6-xdlJ~obt!>;2^>q{xYV;>@TlMc!Gj5WD*A^64-0-K__^Q_!T(wH
zg_Qa-fv-gVwcs~`-wJ*w_`Tr&O8t<)&m!Sy{wOv4l)wp*oD@7Icv|p`;90@{)o@Nq
z{gS}1B0n#9LGYsBCBe&rMWwDLaE%^Fx;rGlC-4X3Jc(zMxSqhD3G_{(UlM;MaD&TQ
z5>1l0nZVy%29s!z#H|Ewb7fAVViJ0``VW`=Br=oumy18=W<50{iDF3<PvT2eIkMTk
z@o!Vty(|21gQsK?Bg!hJk|>=-RuVfqWN#hNe&{Y=nIy_4Q7(z{Nvy4>c0A*2wAI7n
z70!6?Ug?=wPI+yE=Z+*QC6SW^lBk@-ok`r2L=}>H>Rm~6{VM0~B(_y_ZzrAm+~%^A
zsG7v!k{RSp9nZ<<{Hs3na}S|f64jHaokX1^Y9txJYRx2SCGl<(b<$nRgDX7any6LF
zD!0~qS+H)>-Datm#L)o(5*`~%E4-8Ct?ug;)rLtlN`j=ZV6LF&e&t%W+BAt~Npwl#
z{v>|y?r)xiDpj>eqGb}TXxK+SPbKBPA|lvYu#KQs@ZKca3TY>pC)i$)#s3%(@Fme9
z$v4k?-cGvK4%(%5lvW1J^mj_4a}p!7O8!02&#bOVbW5T~5_fqryVLnGZ|RCk=1*>^
z2c$@afq@5;_-MQDp(J`H(JP7GN%Ucl9`O&Vpk~bQ@c5&v>)5Xcc={(XAc=8Fj89@<
z5`)+f1Ex&LEq5qa?p6jTF@)Xh)_$neJUoe-oz!7T_$4{AqgzRS5&;GSqf1k{VbZ;P
zM#(Lnvk~>-Bt|9iND_}G!ONj1lXxr%ZZ18M<g-!N+Q->1kJ6*5GCGNamy7jn>yG#s
z4&^4#Sk_-bz24tXd@70a)p8~zF)@h^cPTXNX|^>mu<lgelq4pxwjI8lHp=8Ao=Lj9
zRpet5-l^=hSIO<9Ok<?AQKk!iT3el&#B+?yB-SPId=j&gSdqlaBwnENlUPJk8H)3L
zvy+&g#7mqPn>=$EGt)hDlelk&e_j%wx6EI4Jh$9N&jNA6t4S<O;^ib>N#e5s?PvAQ
zW-o?C-O2KrD7-Gn<eG?QNfK`)!L5?mRL{~Rrt6;NoT?oaN|q&Y`i$>QNp5Payd}AB
zvqwo!uPL6+^_5jgtWIK065MEtCOq#oR({&<BjIId*|nZ`l31U_)+FAemy*~>%ae$6
zE+j#ZMUv>h+OsK%f+T`s&!h$Ug;PACB*K#P=H#Dm<@&$R6Mij;XcBY&&g<JpjU_R&
zjykZk60tl97O$Z?oM@IOnS_yqnFLL>l4$pyYI82+Dohf&IhjhLFp14<oqpE5oJvhL
z`<M32?zujj`)S*fc%ObqVmIfz<LN#yuw4cy^@48)7n3A*(c8Ihba8sl<{s2~4;%eZ
z;^!lVsP6eVi9Jc2DX%he_DUBxxJxv3UlRLeF+9Ma62fyj*G3+nO7ajFsL`Io94sN^
z8|x@XllX!|Q;4O7_%eyF7)v&$*!Vh$Zx|{j-ZAlQ65l1U%D`#^-zRa5OO1ir29783
z1J}|dZYS|$5<ewzHi@5;I6?nk%Rfmclvmh6a*|U?B)h7oli<$n8BXC{Dktx`Bz{Ta
z8kZL?rxlf7len0~r6exTQO_rFfrsUxoF2HG#FZqj77f9A4=enQvu|L4$G98$tn+5v
zn>APcgN}N^_m|*xH-zwGe*Ux71JtkLcy914ki_4NrP(U${CB5H`9ECtxdI!w%fNqJ
zRHv(@4U{pEVW60S;s#0>$THlG!A$mgx>`~=*U!nDJ#995rVb305(yRh{GC_U;Ll6E
zl?=@4r<OBN-arL|UrzB>G;oK3M~3+)#JpX8&tLPdhcl&3!~DtyU*PGX@{!U0yA8fy
z*Hg{Fe!qX&cHcb)su;*NP}P7p<bi>L>7E?nOtz|(e~0OrQ!BrEy7d|cYO)p6^IB7t
z3Uv(BHPF*QF9Y=q)Hl%9Ksy5s3^X**%s_JkjSQX&JuK4HKx4z5mAM8K17o)MmJAFG
zH@!^^L<R=9eaczSMX80f)yBZ<2UYgBr6gMkdIVbw)(m;P29indy<)93!_#52XW>jW
z&p-zQs)6>>7cSuU8Soi=#O67)!GCO;r=x*R2D%xT(OFsT_jfjMKWli`^X4W`7Xvha
zjdnF~V6N}lv-$NpE8Pt|V4#PA2Ms)A;ECz}Z87iOfdTHivj*=k-c;Dr+dv-!6AVl=
z(AU82?(K&f7-pcKf&K;t7`R&CdSH-&fx?*_my<)=2GiQjo*`lkhm0$gpCf4CQ3Jyb
z<QwR6(i<?`=Mkd}jF99=M$s1E!@^Gu3{W9jU%99%kI@^tceH^gg*;AEg-}RWyJ%os
zS~6A$n;S3WDH=b)-)6t7_OyXX3@rmM7?^C}83XHM-kAobP{IXYoIh2Bl-qv)bQ*8q
zSpyt`-DCZXG?HHPeb0#wd-psYzR|<++PfhCMTVb&g$BrH8<=BYu7P=yd`WP=Aanm|
zt=5jaMP4@Wih(5t-Z1d0f!7QyHn6d;%02woOz-O)sb2m?2AHIm$m`TqZVwDBHL%RU
zn+BHi80oJ%D8TJ;^N{)$BY$*0kCg`A7QP}ad1}3Pl}BaP8Ut$${9@o&1M3XDW8h;0
zd)OTV8w`HG+iNo(dZ-%>L=D7*ziVI<<IO<H>VcqvFsJqm&$FZaAsSXey)wYPDu@`+
z=%`Wt3*Fr7ggUCK8!!!!@Q52oa4ZbuR1X*icnQ&5G?`@?U=1avso(a@b_}E#%my|a
z*lA!FTioW^Vqlwr_YG{7<a>hU7UnZ+yBIwAq?ZdmE#D!@)lu~W1G^1;#M)}B9~$oI
zAYW5=C`yTD3dy<={s(KQdkuWT?thm%scgx8^pb(^xH!|{1`Znd!oZgd1_Or-d~V=~
zfy1<_r@y7{`HW*)SDCy;B_C2PP^PN-X`8@N>hJO0+V3NNC8PEY+ts}-2L-;C<mVeb
zW1Fkr8aNyG@F~nOPNiP{9}WD(c{eC<+`tcvvCY0uTdEcN_)i!(NlgPk8#qO$HB?R;
z;Dei0`+db4DrbZ<`PiU<ud{NF<G9DSvZ3-yJ*8IP_U8>;VACdiCN3Jd#0AhqRTG!#
zX9JlgN}BkM^VGoKT)QN+uE{j{)4=Z>8Ux>K^}ObIt{d*dqjn8dA}7vYqI1K*O(FH)
zcZIj5_<w>7(SHp5o95~Se};)-CW@PG^ztZS;^EafMSRwvK$eM8ChjzGmx<CQ%9to;
zqCAxwD=P*C%9?1A^t{|y;p45BdipDvX!)YAl8K5Y*Jt$5Jsw3Ra*k78S#n?R;$9lv
zZQ>r&eJE)(RDP?YkW`W6(VqSs6ELBeDCn<NGf~|{T@&?8)G$%gL~RpwO!Tj-)H1<Q
z;Iqz4Ez}w<RAW$}>Q>*+&DDO*)pr^x^-VP9IlYm>qk)iyf{g@^%=c5CE1VBZo0w>7
zqM3>2Ch|<QXQybY7|_nd%NO$*w5{0X+NwvewIGviOnB4$UK4H8yriPCloe5XI_kKH
z%E0DTYX=jmi5E<~XriNuP9`2T@tBFuCc3boiNPlBH__EZPZPaNbTiT2#6u>YoZ)%E
z#PVhe>si}QA?ab_K@-oK9`ZR+^&q2ny4su0iK=}~^fS>%IFoGm)Sy6r4qQ|nV1oR~
zs9IT52hyb;g@iXmLrnNh3^y^<#4r=bI=N4Wmo!y)t+nLktb7vz6C+H_JnLQ4L>W|3
z9ckhb8eCC*nD)0)MhU+iQ7PfkYm4V`6Hl0!W@5UD(X`*>7w0j-#26E-q2CDqcp+m=
zT-DTZ!e3~m@B*??Rkd+>b)t#MCY~|zGzYP~E14vOtHcx`Qw2}ebF*kIafa&+%rY@!
zpKqq=-Xk!0o;UHFi8oEpzk>pl?8#PlOjp^9QKo0Mi8&^gn0Ui<Zwcp`c*Vr4Cgz!#
zZ{j5r)One6aEoVwa1P}{A&dk%jrf}Bu2+kst=CO(v7!$3iHjxc%l_(86U!J*13jx;
zGx*m4b-9VRICeEujv77uwuu##H&wKKzPkqpNLEUcZdpyYm{`kTaNPJ|krsmk<m*jr
zV0c*QZDFH{cR6`26t}R6;cDWLiNhv>CPF55oA}T~*hIuc%0!_F%|z5h!bH+Uj5BMC
zCoawDoCq^K|20x;Hc<w&P<WZmK{QNQCTv!#D5i;P&6Nf%+`wp2F2fNa<7Z_{WwVJb
zCf+x(-Nc2a%2pGXQtEpq_~U`|EtGANq@>5-K=JAR9VWk-=-*{xCl{RQ{x(}Y^c&my
zfR(gz$C2lVk4&`Ns_r%MF~i`bcaPwjEgteuOzbnU-vli=$mwt50Hb|`|7c64cPoW<
zKDxzoteFzHmH(NE&rO^$an{5U6Gu&a&%ieE1qX3(fPMK!$d@L*5<=nELRj`&88RCG
z9er!7L$-S6wp5Or_{qcx6F*4bf0S{LH&aH*LFKkhl#^Tmnkc6PPt$cG{Mp1g6MvYv
zZsHdczlxWxm^g2O-n&H7Lb)LPq9C0>Ib-ay3{Ce=%5R(|^uLMUMVUjugRW+OA8e-l
z$z`^wa?`}$CjJtB!$h@aO1r2!V{qUW+wG*>Ht~;%R<?Rp#`j+n9OeH6x%)w$VYw2z
zu7rh53$-lNwouYSmW9d|@|(LWPbteC(=rxHTNt%X<%Ff>Wi6DmP~JiX3zaN<)J&;p
z;f=w85-pYJ-~biwu-wr4@T_;w;6Rn8%AFSOvha$d-fbb<LRAa*NV19`<(w=z7GR<K
z4{8l*x|)UAWAdvD=fIWqxRYhNt=6<KK~bJ*u5i-TvCzSSYN4)$dKT(iXkfu(p|ypE
z78+S-ZlQ&R#ujodOxmtCv7lIPbbT)y8oX#BZ))*hlWH>yTqro*SZzxStt@cCY|lW7
zsK*8exSK(pHWs`V@+`EsaIb~7tW8ncS=iOjzr&+&!DldE8ysK}j?{e?p2~Gk1U}1M
zm$(QJJ6h;u;UUYNR-G+$VSg<=VBvlXT`iO?qwqGon}sh%`R6srCnw=eTn`Hma$Gif
zY7PmM84_S@+_^(#a*E~YX<=0xWne?KkA=P#&R95Wp`V5R7M5^CIKCDJvdb2pu`tNO
zU<)HHJZxczg`sTJ@#J%4D=Nd-mxJnX;eJ{*Fwk~LfOo09>-=DwFJNJWg@rrSmuLHS
zwF-=~@Q8&m7RFk5)WTyHp0F_5a&Lz}UgH^ZBmZ#=eLAQaj)(Ri@1Q<ux!Vh@iZ`m`
z7)~5P3lr%d=_y+uJ0w8O0Yd^W3<*4Kxxdw!WZ`t&%e!OpedqJ1SeR;IzJ-@8OtUcE
z!Ym6fSeRkqSqslgN6I39riJIE3oC{Mn4|%`cTNrou-z9e@CKP}&1GC!m_y@-1n67d
zCV$*Poo9jFJby9&;0wM5Qp2kjUSpRnyi6Z9$Y(*`Xuo2Cb&|g>I_%V9dZ2n>k=VRf
z_i`(M6)v@~%z|OTwD6{d<y@ud0Sj+gc$@RW!g>oUEUdJ!+QJ&Cij}MqGU<RHwui1>
zYhfML)_Zs_&lc&NKhL{nY~cFOcv$0_L8p<tEAA!Pv)&W55Vp9D11g6s99`yT_caSq
z3vmkxPBGgP6SwOYTG}4=nqx{2bHtNkz~>w(Y0<J^Tlkps!h&NVWnqVfofZl?&=$5?
zpxPD-TP?h2x!XA0@t{k2%q!z=Xt3J%Eo`^&U1^1z7>tTHw)u9^&lW!9iXm+=BzCi&
zxVO#2ej<m1<}n6n!(I!YSU7CqGYk7ze^>ROg-?a-w{SoRg%uNCcKi^H91@@bEV#Xb
z^0|d0oRya67(HOQdn{kbAih^taXr}}|4R#BiR5d+Zv?*;WbSuDzUPW@z|Z7yc0nrt
zfuqcIY?sR8Cm|;+oD_0O@N_!&w;_R_Eu7;rV#8zO7Yn~ysA%I38|Phn@Q;OmEnKv4
z$-?gz{;+V_!WAjbwit)MS-8qo!U8!vMYnKfaXvESu5)lL+@Rkq{LNi5ZU<Q?H8jAv
z%n_jv|F&?;!fgu-{#ru=>@q`$Q(%4%|9=c%8(B6=**wRA!V)$zZFj$@xa|fT<AEbp
z(sn01r{2h(?pQE{O4}%Fqnz!|@iI0zWoSux+g&KAS;2PQ!f2$&n5<-@vW+@6>e{%I
zSvIn5RJC!p?JhNJrHYMvY<HToUo@CgwSK~zV>38W!$wWpos89NRJT#>VL#hq$EnF+
zrk%BHv>qC$EtW6<`V0+lp{Qr0zKvWP3VSzKZD6C3jm9<_N|G~|Le@#+SrwzbiH)W<
zn%QVBO|WKK#i`9!TG;NaX({!yW*SKYTH9!2V~CBRHoP|OwQ;|Vt~T1*XlFyU(b0C}
zEzd@K8~54nD#0n>v%%hVu-)k8=x{jP`PfzMWV<VT7uuZgb{0;;6@Zan`wM?Jdeug6
z8+~j%V55hPhivo|*F8uZZn*JKvw|DRMZw%lvKarIM15`avoXNNKpR{r`b%FpQmmPM
zrw0bv7%aohvRv@lE?qjzhTp~$Hb&bRZX@5uNE;8^?!*b$czkGJgzc^sbR#*tIZ9f5
z)W%~%9<l##Y2{M?IEOVqpNl^^n|sp67#mO7m|$aEDU2oB7%xWB)tp>(2z|vO6Ky<g
zW0DQ_j<!uN<;DOjVY`!MEa<(dHm1?xDdeRv-Np<XOC2n8@T`rQHi|na;ovzN&)bOF
zh}oEB;{_Wp+jzysi)^=oI@iWL8?%Ma5q#%?Y|2X?&YRDyGRi_5TqRzzv4FF6aTeDu
z+B5UCx7y;YS8cq;Ibvg_jn{1~vaw8*7fZolS>+8OOQc#BWG|MAgq6Q(W4VpDXxJ$K
z+ahG6EW);^xyr_B8wECwG|XRPW33I%qpY{F&c;i%)vpxg9oyacnKjhCotZbnzrn^v
z8}Eu5H8<IKW1o+Nxx}E25a(|@B}_Yc@h?0g$U7-smGKr;w-LAT0|(1Sg7InNLmMC2
zFl?CY6uaM6u{eEVDv!-VY(d9HN=Tugzl&0&vqh3y1#g_l+h*f^8@wIf&Vd-|-(_Qm
zBzdi}GfgP}z(%*n{JR--<y9s>wy}ph^ESS*v6t9RIcVck8=nYga-WU;!Vjb++^;xf
z<FL)&+IhaR@fqXCcDH$t(wQ86RV80yd5Ap@_`Z-V@-Mj@^=r?4gXxd?$9~}Z*2eCq
z{Kq)g4*0$k{=FcDtpB)F&J8*i`N_r!8^77OYU8AhQ*_rM^;a9GZJe=j&c@GuRc_9l
zwXvm<^0OcnxV_A$C)}v{MHINZa$X8v5WL9QJ<)&3#$`#;JQle^zfE<?H5<R%_>%!(
z<6u9}A2zOYk?HT}ldqxot8WhtT%G2*VdExOiBoz1+4$SWEgS#H2;R2c4Ya<xn(XC1
zaH-u<`B&r|++v0|!*Pog6Eubf$TJ<3bkN?xeGal5lyXqjL5_pc4$3&V$8mo&Rn|c{
z2X{EA<e<FcJ~ild)LW6tc}fLpZdLaW4ZJuupYqBM)S!ptZU=WdxXZzcrJhCO{oJA5
zS2<t|^Pd?SsNx{ePtA64dajR^_X&AMEzW|2h7KAzsOF%$gBp$-33VLQbx>0{leL7@
z7K|?O*JJ%#eDxi7FKd?J*{Lcd4J6rdhp(}NTnB9&cpWGXnmB05ezj59<)#j1dzBV!
zsF&JIu({x^p#jS8Hoa79CCVPb)`BZ^^<D>U9kg?h=ivI)d<J&lWZttfE*zA*hq?ar
zIp{ze91M2cwMBJszr#yzbd+Q#2c7BR#aUe(_xwu*F40^Nx;g0XppS#T4jypaUA`U;
z9^^1B&YE8-@Q~x~mb1&fh4ggLO9;2xDCgER1C_zn&%pr4-RNe}_IKQW5YQn59dLu1
z{^7p;5C=mYOmy(HgJBN*4n{jTQb8T=Am72`j{7K+MFQf(Q4U53p_4~Ccvv`dX&dno
z2al#Dj|p*}_CFyta95nu;YkN$9QOf%RT^U*jB_xaBi={l@sxvYrEz?1)&wbdLU)Ce
z987k2w}@9AJmX-BgBLkW4yHPoCe_XqoX*i47MMXtJ&?^(&pLd-?QS{pi39OD2hTg0
z<>2@MA2%T>d4Uce79g49U@n7Md^^v<fj;U>g7ew#7L_)9yEco_Nclp?-4K3RG}+nj
zbMjwfg)jORIan+Pzb+l&LlAm?iGw#dzS$~!M7JzC;G^(O2g^CiDa5l%zUAO;2Rj|?
z;#_dB(m}+5=3teBbz#qHhJk~hvfa6}mJ$aA4uTHeaj;&ZZj*xzj=Nxvjj8WC7(Ohp
zkuz>){`fqFk}1OilrUUF4#E!pjH=Z9HCLtZt^R&ulwF>x#yR60#2C8osk-3Ln>^%6
z2L{JNI%PVrq+eSd*rG%CZgJoUPf1px@XdlOPOmcX*z1Xh)%P5bbDR2o2iqO@Ir0t%
zpS5z2efxdm`>G!}*zMpCP8<gxI{1jQ*ul3BK6bFj!G4YfLze;5OI>}+`-v=2H6Hcv
zbI`1#+Us`S#JKk$SE>Q(VOGl}NcgfY{zF0*->ZDiNOth0gRf|wuEuqB(XhZ#2gENN
z_s0Vy^bg6`jH^reTf7SKI|tvhYYxshIL1+?8NK|c9Q@$8PkeZs5b`5e58d;V@b*!6
z#+`KBvjEAD{j#6g;XCW#X9t%YT$Y$WCwN})7r|czXE#zfBQA)4E;{bx115Q<xZ>cN
zgWnze=HMz9iuK;TpSx#}HGR}F6WsF=<8b6i|DO*2;;NfM=@f1_xar_O2N@~+EhBha
z)`VM*`v{LGxb02Ve;oYFwuS|0DyL+Z>N&+yD4s&el>1zxM9PiW%oO+-j`j2T7m+>6
zN+Gv{d*+&ZIloK_WmBk>Lgf_7rTDKCR7@e&Nj+LKhl4^tS4g?u?w$1Bkpcsfp~wq>
zJ5#tT#sA-_RcPmlyt`Ab|0yTGM<iS)shOPuD{*<sJ!c_>YAIAtp+*W#Q)re#%@k^-
z+!0YysGUNc6dH<cT=eRuP(S6aiahEG;VRca2!BpMVWSipr|@vXlbgct^_8zpFFEC`
zt%=mhzBf;yMGBr2TBp#G`X}?aq_;}ppBnl9v~hnv@&2&DXCwV>C~2d3S$SK9i#$7W
zZwhVcMnz>Vv3&~nr4UI$OTm{yhZH8J@N^1l3LR6pKZUL-bmFKT^mU=TwyK?lGdWE6
zGRaLR`mkFHeNyO~LiZFNNTEjxznskLNr%VO2UB>6$Em#YJzdRhC-ZvIr73XwH$Rof
z(-zI^mqPy(#-uRkRNjCT2Bt7Ph5Qu092OXq!Vp?JKy97$4o=~jdzGskjsfaW5e`ei
zFNBp)7)W763Xi7nSPCQQz!YZwpq`rN{w8Ns$~}QTA~^PTUUp}9xF6@x^!M->ox&5s
zIm$(nCq<KdYzpI27@xvZDU5EN#Zo*baJYB-_>&&;-+E+EN?~#eZ=|p^g`G{6XHs}B
zh38Z5HrkXFrlv5B*Z-2FWM&F8()?K=+>JbbJ%?G`r=69;f)o~}@IneNrf_*!V0H>~
zQ<#^+&_?PU8WT}T<};)fh1bk4rI0y3pARBgmdTe>?l$<VDZEAx*HB+cxzAH}*(&$I
zUr%9C3X3^RQT2_k>JpBlKR`J{g&UPink&oL!~oCRDXd80P2tN0du&tRO2K~E&)k(M
ztYQ;1%%iN9=|GRYBV<hqYtxc-;!Jvmx$9Hdkd|+hiS}*^n?zFYA+?S_5KJMI;&)5)
z!n{%P2lV^hAYs5nQ;2aA6{2<_be@k=_&kLpDI`)zrm!c4y(t(enDluHySOaS$Q0gB
zxmN-_oD?>vutkz7!9qb^S}=F3@NI(c3I4s=H??C<QQ7Sx*&*nbN`Vi=KjJj0tdQ)M
z<cGAOvC8DfB7b&}|Fw0VPg2;I!od_im1UvDRL_2n#ZKP=L6XkXJp3`+p%f0Mz+XM}
z^9Me-D?sv@B)>5|N4fZL&Zh7$<3EM3Qn;AnqY8YT!Z#_LP2uMhzD?n~6n;wKL<;}i
z5#Vb1eG11?IL=x8l>Y}obBdq*N8$ZFDmlA$GKDi7z6P!bPH~Ez^qx++f01L7YbH;c
z=h(_t&v|<Fkorps?fL91;rW%GtgEoI)VYvy|5K1X)iZC4?{W&)8NexAN#VB?uF@V|
z{e!W(-b-?gYZq7GF78zsljHpXUYWF-<NGUxn_TwUBh!0>QEGX3!mZ;`Z?V@+ho9W+
z<Hhi8E|?yb*Eav9kWq;8g{V-7VudJPh*E{_l^Cz6OBAAHp=+mmA}B=Pn|U-Zs}OwN
zO#>!1P)Zk~Od-k^;>kuzIVm-=mik70<*)5-Pb(IJzXPdKi0ne#QHV-~s4O~n74n4@
zxKlXQcxK^k*F99zJ+zJ7-(TfrTh&5TD|D~lc;plU!oR$cQzWTgh#KkKnuTB`l-DUl
z-9q#)#DGH7D@6T5+*b%+A+(^UK_PMrp%mi(G4&l#QWW3Uz%ENhL15WS1_?Xlh5;AW
zAt*s|5?FS~AUQ}50-^#6iiiY}oO5P+re~&Sdg1~S%>)AqDu_hMpx^B`_V4?j)90RB
zuU@@+6+2Z|&(CsJbD_EmT+390jvY`2y_>l{%URQfS}xdKXyig|7wWjsz=fO<*>zp!
zf|HN8DD_>?vYho?+(<_uQ6%jYf95wWZ4FtX?pdq4W&N;UX)KmAT(~mb@si8D8{$eQ
z=F-GveoFa$mh+RG%$HqoxX{jp_AWGYndjM8TxOe+G<TteNLmU~(yy%JRTo;h&{}Ft
zb!WD9nFFwm%e)bw0wu4xKqT)VIriA0batVm@J@o+9a8BDmq>MS;YOB|tG2q+z6;~&
ztqZTa(36emLbW1}UM!#s16>&8GFRMXxsdIG(}f4E9evnI`Z&3cv_>E2m~Kj6*1ro|
zeVL9v&i<^l7EUG~z(z0YAQ|k!5EtHXfto{I<^qyKZ5*+-sa!g;w2cEuTiHKrxC<j(
z80o?&s<|-MWloQIoXMj_|JBmjOv{92?qqN|>o^xSc2j!waZYeyqRSj3i(HuG!emyR
z3-7ux#btK*87|BeGS!7?LMWW>Ld{eM$y+YWl4_je!fYX|!_AMg*$=rYjQF+-b4AXp
zF9zS^+_*=1pYHW>&J#Xgkdx8^A#-E_<OeP+lvGT@VfCR4=Z|K7<l^OuoqjH68LQZy
zp2_;eg{3Yedyv<IPhD8XrcrTH#c~%`xbWD8CoZgX;WHP$cj251t6ccph3{O-9v4=-
zu!gnm!ZsJyy3Ccp?3NqZIfXO0UdRTfjb|oeH@UD`dhZq&xGIbt^=7NA?Hn2{Y`dga
zknC__r%1S9kG*ua$f?ZUve$)uF6`$F;KFeizHs573x`|?xDceIljATuPgjSF#-;4M
z#QJ?;mg<6=4cgh^alywn<;A}X%A;(rAW5eT8-;!sbcy8}Ck71{LN3Il&xgf$RA!He
zaNdM6J5HPL^l`>HD%tZz^OztfG4^~;eZ&(k?li8PW(V$VE}T2*!YLP6YJbNp=jF^Z
zE}V7YOBcS9YWaql9#%MP`TXH)mb7;kYv5an`c9BbA6d!gUAW-FZ!Y}q!bKOp`N8ok
zjkI_CAWie5;7>06?7}6E`hE6#9USFd3dt`LMRHm6uW(9{E8&)xGX8Lx55cax@Rti$
zg)?}~g+GP!p~1_IY+SZ?gER9H<t~fhGFS245+u1T<c{Et9m?M>+;ibR2dN7WU3kRl
zt9GB;*;!|6*sit9qJ{O&EUw83IJ2H|s${jR7^mVN7yfmjf{KbNa;Z2{$yP)~gRxm8
zxmDy*k)$G7<P#3qDddq?f+>Re1oI0P5G*KINJU{G$?Z*3MO8ef;(4)LN=2%QVk(NO
z<^U;E!}fxT5-PY9s-$Y(@3d^~<RWJVORM0zsWK|csz_4-3G%c>;i$^Caw^Kx?RpNb
z7joRs<|5=Z<FeNDaaK}MSw#~SO;vL#brlsh6*X17sG_QhY9g$z%1m3sR@0ryDYu4-
zbddyio1e_rQc;_(s%WU9j*7Y}6c*=*Qcp#FdNMGpao?=(va|SQecf6ql=EOc+f_7D
z@e*~?&Cm8rv`Zy6X6+SqG;E!kp<*<vqK|WJ`>afr3oOw^MOPIL70pz%QPEaKa}_OA
zv{u0;Ybn@D@_j``zB-Oq1yA*H7Jtz}%WO&tY3(%??Zo)N)~W4PbWqWWHRjCfsN#<y
zSz5cSMC+3?Rc96Dva{Aqc63wGUBxgJ!&UT9@w$q>D*CDDDLFb-e3G5jOGR%9W~pGl
z*~0q>Ug_hcwYIhUWDU#SmYvm~X<MfbP%)5gl<h2&?HnX74N);v1uJT>ifct28QIQC
zQY~+Y5nAYx?HnO|w2F5-J4UJ)rJ`PT7VDGUwR-E+F)Ai!XVGSdiOP7D=W85NaahF!
z6%(bZx2Tvz9TlIeSgm4;im56-W~M5pshCc)D&A8uL&Z$CPOX%=DpH(TZ>gB2Vz%)1
ztyAZy*fu2VrZekp6-0VMq<g>J&wfYTqx17r%vbTDijPz*kk+9~3t8b4mG=cdpiAQC
zA_-m?nawDcWw8qO7S_o}*-ox<{6xi4vAIHwd`dS)XDt&?*zU_ESn5kVg)618J`-fC
ztr92A=2Nj&#U{yR9f$B9WpOZbJx6PqYz~JF?6mt89vhjkT^7k^t50src5bB+32s-h
zQ^hV7J0uv+cJf+ow~9TiuJ&06Rh-Lq?p5(sT?c0j@_j1yi;(<)_)pTgy;(~~RJc?e
zQ!!_vqN;GKh)dt|sL)h|RD@M{RrpkJ3FYqDnSK?zihznB3vw>KS-|mqE9anUwh_E)
z^=BF~EpTSwMivp(yvT{E=7UO-s0!|JL2{&ydAZ0goul&l$7}*NP@#0kaq)p}d_k8c
zD*Q^~l#0_T2DvfVZRT}`Bi#*~8)s>grBm^>ir+Zxs92Nk_=YW|;(Ha}N{|wsug}pR
z6+fx?S;d%&jtiV~b~=7g&2?fISyH#cbu2%s<_#lP#k45xxTNA2TA1RvqT*N1dv$D=
z6A7D}OWpXs=61HZ9)|jVsJO~jb0f)(YaEQ#ZFg1tt>RA=*CqIu;4Kw5gxpkdw~CEw
zXQn%dw^iH`Ir-fBj(eQhRIm;oOQmu3DX-NZsCcNF7wwM(N!nMjJyG#gG@o(KcbiH6
zQSmQFXy;V&#&sOT+-|f_H(O-VP9@pRm2W8FMoBkP+{ouP9|t`znBR@ULMSQVMnO0C
zV^j)R682%ri?~tL4W99z6FFB}QdmrQaZB?BA^DxoQf_XsrId4{yc?-*ly)P{ZT0~c
zhs!(RMj1EecTT0GtjI~&PgnyL+^Fg{>#(95m4sAwgKI%AOj4>ykWnwXv3RmV!lRl9
ztGiLdish@Bnr_r`qoo_KNN=evQFVl;Rd&>Mqn;b}-C!SX;zm<96gL{U@o7CrLpSVh
zG!o99xqY|N*o_P~H(F76yd;GC_K<U^PTs3zy5VqxgvZN5-k<7dW=Wd6(ZX#mXJu?v
zr}I^}d0J#id%Drejn;0oaigsp-Q9R6mid|+?cC_>Mi(|2n`wrlqZ`egPTmrBkRVsX
zUW;XRVjqiT_HjCM24#(VmeJLXDNbiMK@xs##F5p*&5xm!*QJ(t>g?r4Z#S~s=))SQ
zZtL$xwi`}2`nqwz>12!WT*)!D-0AG+#<+N9%`RE2?E#`ZQ1Iod=7QTHZVYwfup39*
zc!O2y#=CC3=jPWIm_9p`<7f;!p&Oh5M!NB9#q3dTjCLc(=}dpoTnzm8*sQU%@5XpH
zpTlE@8#CRQ;KoEZrn=3CKU^s~$?T%aWH;7VcW`)4Rcuq-h>p){RNpp@xwyflq+CwP
z<+A1rQ#WS0G1m<)tDEh{91cLPn{{JhIddf^2Q2YNr<3>&TRGiaX~~6N^VspEN9}fF
zfgA6;vB8avZhXLmZme))r5lUf<}Jn&L6Q$ypTc=jx>(4^Zu4mdqdswCsYpH*T<*p)
zAv~WlmIog!eCEa~R-+s1+^AS9g|+>;8>`*srz?D|$;Ys3=tF16+CBF5RuAC=cHXM+
zc4qXrtW9ogbz_?wo89Ka_6vKJEpGFb8DqB#+3Duav{^eOU-Jb}59coSsCDMk<^!*#
zn!5?Pu~$07J~#HW^Uuz_?{q%Sv>kBcpc{Pbe2C6);E&1L!Mj5@Z$HgB_Ng0gH#}@g
zw_Jg^;dSF1H@<bl$GO*Li?eav@VlYA5fBN5VK;)p4Ne7z9h8J5Sg5a)Ji^wLU`&v+
zD`#E4-9GBZaW}qj<CxoAsLUo~)1P2Rtz$do#%VWB3a6ZsGs4dbGFZN^^Go4h34U$K
z=Wcg==f?ML{Ny&*{hs3#QP^A;eL?!zdAE5Mpuvl7{J_>sb^Iuuq+wt4Ej+#YnbV+R
zyTq1~&h`tZh5F|5%gb(DapO0(lp7D+c*x3e<Ek5X-T0eh(~UpfxWxg|*LmHI{C&+6
z>kZDXN0h%fdG<9gw|LwX$(>pbs@)dlJA%B(yyphbfYiCqF5TC>UgA{~gO4Q16G5Ia
zA9F+x%jWf)UC!Ol-1x_h&-yz5<tS+F;JtP(j~UGEK^`G@Uv?yU;Ogt-tvbIDN%0_`
z2dNrLYkaGV0v-fCFgz&eK_L&`_F%3Dg*_<Zf!%{f9u)Q9IS<l3=GR8gdr*u?b|{rS
zDDJ@v9+dT<oChU5C`p?hl=h$$<(m~AA2(0s2d%@lnk3Bwcu>Y;ep<D+Qx<phB006q
z+@ows^VISlRP=zKO10jnRFLGyHYt@v!jI0VQ^kW9J*djOHYwEw-)Nmx&4V%A+^ltz
z_l(RM9z-@P%+4mlnjX~hptc8fJgD!1A~vskGV6*1^*kWw!9Bqmc+4Hrs%=pkijZFM
z;4Nok51-*<pa+9I$nc<v2c13W;z3gnGFgEcwhkV=?14l0D;_lSpt%PvJZLF-@e@?m
zz*lc(QS-T7%GwPI$*ZE=N|3?U9<&kOR`4}T-cCq+55C!9ruwR{v!e%{*g6{&n!R#J
z>FPl@4|;o$C7Rtmc-@1Z9`x{-pT05)HLvw`zOo>tmxuo$GCiTNj|bTv^!1>h2TrzW
zZnG4d#61#v-roZz8Q?J=cCFc}{I$)&go8a8;=!99Oz>c+2XA;V%7f98?=TNW2pMh_
znQcANgIgU^X>jU0nPWWsRk}iF#(6MS>^JRZRtSaTJzzmdCVDW*gBc#o^kA|FQ#_dJ
z!89Rsl5S9+$8^bvPLi{XZwZ+#_Gfv(V$x?u&9Mke{f-Ckda%QTogTdB!8{KZd+@Ob
z^F8oRQFtu$fDSKUF3oK33w|KjcZ<?<in55N&e}f|<&UJ#Q*DU{pLnoQ)Ryw$j|Zzf
z_}qhK9?Xd-D?C`~!TFbM%LUJGRyb0AdNGCTC_WPj&8`-+YsJDELFU4=>x8ct+#twQ
z%yE+kn<co#gKgsQRteH`W<=aB21$0Y^*uP`!C^L2>#RM3`#h-BUD@m5|6Uaill>lO
z8<YcrwKgjU*<*JplyDp!@xUWvhaZ8uB&{mwmZGsB8mqzspQNR}?tx#-(lTQMl9uGK
zks0zJ%;~~|I~<iBL_N6X!Ji()JcxVn6Qi~(IUXGK;A?hr4~}_ooP%0bzVzS=7RQ5A
z9-L-};rdTD+!6Z^)y!CuGop4@kZ;x~<iT$PzoIic?IpJ>KUc%I9`l>Qi*$aw@|_3Y
zi}E?vzXumMO>I~B1t_CPh)hoWfum`s@*_vkHdFGmczDT!Up)BLgUcTL?!h1Iu^!Nq
z-#lP0%p$p;lW99_RIYkJ&acQ>E+${QOS$ebPotbzIA{JPQ_~H>#m!T1a)7YNo0Qby
zSw#DSl)E1M?ZG{1i~6a~`yM>t?5derJoMlZjcdrO;jsr#Xm*#9Tf?CH_NN@$9{fYE
zraL<ETMvoKrI`x+OmbWY1^t{2-p!<uJR1Kwr6g%wZKd4ZsibJgr=h53ezBWhLjeti
zG!)h_rBhZx4Yw+$QO;D<WRU!=DOp8?P{`nO8lIORc`<R4<OLxm1gT$AGrcOMq3@_H
z`j(~v8qR9?QbQRHWi^b}Fh)Z;4dpd7)sU$n`)Fnb4KHe_s-dEW>zY!D%7tx}HS}!i
zsG`B|Qf94Cg8Zs|tx`=xO%1g))LyAn*YH{~TMZ5A8f;9vN@+YH>q-F|No@^vG%knW
zw$k>x8nS$u4K>&`)DvD`P@$^@Z2UaGfuyBQBQe`pLv*E*^oosXnQ!aovokahn`l_q
z(n)6uw6MLb!J(lKo!8JzLvs!HRw`XIw9wE+%Y0QsD-A6*eDs;}3aj^!a_)0w+h<B^
z4Q({E*U&*jTRP9y(cs+cV3I0M-myDqgoM~pLnjTLH8l8K;lbp@T@@Te#&*@vO+$AL
zJy=B=dTDr_&F3<ss5#F=Pcq4SvzTlzk3!2#NJ4b7X*3Mg@P>wdVt=3@_4{iWAO#_(
z@*oX^H6*g8WQYd(#uCxUFb$(L{8P~}T*C-SK2l<*6|<RH>~%1T{*2WyPQy+OyEKf~
z@TP|MHGH69f`*A2W@wnHVL^V|Bvw~J+f)s+3)?0OPSJ3ntz*jb*_2PyFkQp36$)dI
z7qGphVU~t>G`y?fuh$&2HS8(td|SgDs(r5TSXj_DS3`!DNxrPH<2?;$3fbmsI8q(+
zgfClR?)E_80?CU;7HU|;#?`Q1!-s4&4a+sG(6Cs;#~PMu_*BCZN&ATgCTCivN-km}
zHxG8*qnYm&v9<M@nXc6EnTF3btk$qfvY_V&tAoyvtPu-qS@4Aag>6hi`PqWD4H~v-
z7+%D-QNtz;n>Db!TQqDHO=iR_m@o5UlI<F3igtErxam<?jk{SD8eUkT<Y?HdVV?$F
zLqNm**_rz_Xd1l24+tLAa7aqT*ux?@BIwef3ZdMs!DDe2*(cmD!d+(^jAC9?BL>A(
zM1vtDq#-QI-+D8dkjm7FYKUowvpy@C!GThZN7=Gs=eUNG9G?B0U(n~8j=js36YMr;
z98AvRl!nu^tl`ygCVN66)2}pqt)Yn*O}+R=!?zkzyvXOpcN)Iea7P2zx17^(p2J+j
zZ_H?q<AR2tHC)ngQNs@!e&p2gqK(H-Lipa3I(!CFqEnM!B$i*){;J`!hAop7s__Py
z_`8Nb*di>*B;~4xYm)Z5Anp7q8PNhY$tO>7++YK7)Ti5SX}HaKV@wt^n%t@hiL&2*
zSHs^NbgV87xwwJ9*L(=`K*JLaPc=N$@JKTy3m<3m;rU}$j>E>)kIy*zH2f=Nq#Lj8
zSGe?u28rZ(yrx=SFUA~JlDtS3o8+^9uy-*s+xK%;X=%&vMFB6Wdd-Ek1-&TbMOjfR
z>_rhTN_tVsi=tjU=fw+NusF|qQOt`$AEXrbnnj?5Ua=H>Qo*}Omb8S|e3AX@9!ILz
zta)YuFG_on<~1vs`h0}K+W3tx1-#hhH+MoV=S6uhDtJ-Riz;5c=tZPl8qHSnqOv%{
zQn0RQjh?gAjJp0Xt(q6ry{JL6UMOBP@WSRrO)u(rQP+#%c~Q%Y+Fm?g)y6FNw1kAu
zG3t3y-wSsvlMe7%3jJYQlQi_g?!`-9P~OOEK5gTja$^>GhJ%F2<QWpnRYojSrWY@J
z@rD<}SPxz_^Wt?cdV0~^3%c6Mi`HJW@S>&o|BB$NUa-B)>YCy>@hGj07j2o57hNRw
zH80wG(LtK59fgKjOdcI2wv%MdHl>6<ca^&BF3R0RftfOv71cw6e2w1Ai{4)J7ftq!
zEU(#7of6weoXqxe>j{MknX0cB{Upd5-c;8yKvE54LwhmUiy>YN^_qQ{nrwwcM)ZVa
zxECY5SmecrUX1i&loxZnc-xE7>~&1Se&xkjFUEN>ky(2&-itTA=2M6Xf_z!Ss^+dZ
zl#sBQNRIbNZ8%Yx>cuoBe3miG%dLi$>0Z3$1?4j&$QGO_<O5Y<(=hF9iRE6(yCx}f
zy?DoJ{dc{1&x-|Kye|s#ym)dsbH3!xgnS~$v>!-6AzA3<)}0P+(ZjB?sH*KFFBW^T
zRz}CiUM%rqxfd(E=H@@2FzTT4sYESh?d?;3+ode?f?G<aU(O8eRY+EPvC50j*><~>
z&zSo$Q{H1v=4$p>n`4dFe9cWE#|xhYaR9FKV!arr{S6!rd(0)To4we=-le0bj;&s7
zV?FpV%ZKe=?C@fO&-~2_kDXpz^x_AODKB<=v4?(MPe1I%5ij<7u}^~gy*S`C_h9e;
zSNhW~wu4@z{*`X)YCGh`)nN*Wi$iZ_-7{XC^+M$^@xtSUCc?O&*UN7=OdTFRA$~7(
zApuJs^kU$M)PzpRi?Ah+co7vI6SS{SqfU+$dsN6V!Q)<hA>@SMNx{MWoTu0u`#Dbw
zGVPb_byL&6=Csdp{hR(3N22_X^7!^T-?Es;vd{A@;01%<3zD1@GOnNVf+$djwNY}t
z{YNi4`q0UTpS<|li%VYo!tv-s2Ooa*;xdP`58N2`3Y*f4ygsD(@Vgg(c=5=K$E-as
zu6gmmi-%tP>BV&~ZhLXZi@&_)HnR`z+HVN??Qc8zO=eByyY|6%GKhC2>Ym`=g4`IE
zsd(I%VAsVduXa{;uTGnEBX{Z-X-_y9J1PHo@vj$8Ic7VWn$I}&24#}u@_{<ZK3uwO
z&+S7VACi2g&c`pM64zcxCjNcS)XeAOkG)XAhl)NF@S&g&#eI0eheAFS_Tf37>3I=B
zCMilIx9mv;lYTmpM)~t1FUGt&Di!|BAeQi<qz`F6K(Z^vC?QO{t7zWHvy9R{6zyhi
zkjo;M@u93(m_IX{!E(ZBw!9EL%c$f-WgqJLP|t@dKD_8dZ6E41POa)Q_sgvzY9!Sp
zSY7b+-*)De?t@M8t!d?6OUSF`QtJ57>#m*E!i?(sp!o2z4-Ow1_|VXYmwaZe+674(
z`_M>uyZd$qzv-wDGepwF(rM~LrtlxXNMmd>@v6BGEqrKw$NtvItd{I2-<VbXst>OS
zXOK>|vdTNIy0eY+D|W56^wZ+)eCBq<6gDZ5i~W-ayElh(XCDUmFwloCK6Le=n-AT6
zys0r;ss}T@XYVbX&b%&;^<<HSjQuW?!o_#YviI@fPG{wlZ!@!faQZ;PqpuJBEZ*OT
zEj|Z@gM1k5!y7&f^I?e3oHw}V^H3k&>|&eh$|Rq6En~P3BYYSmLdr+_Q2kDB9#kIX
z!>;bO(Go>M$yhNmPH?>7n?5Yfv@w=5*hC*DS+m(>wyDLZ3Yo@&|8Ae|!wexa1u1Eo
zKWVlPb9{K}H)q1PeVFTm-H%3oyyL^WK3w(Tnh)>!FwY0o2e%LNeOTbbCLcEY@V*Zp
z&<7tr^<l|iWuXrr`tXs@+#`1ph2tBOEN0)!R!+gOM99ZJ)Vh^UN&Z=mPnbnNC&@A&
zmiw^AhqYp7g%7KI_}qtY&!w-Ve2ns$pr@j3!%$_l58P&)oAegD=-{^D>m<94Y=TO*
z^&Ey}Z5w>%cG>*(2JvkE(v)*A-z`4u^I^Y_E48qV^S=)}eAvzEE#oLSSUJ)!m1L&`
zcL`SdtpO!_m~Ss-ui(rJ83%+M@?m5z<v4#9<HNCQc9O#)IU?xd@a&<iJ7Hhf&)mt}
z<3q@YFzfJKy5@t|2cHk=d2;!E(0vH7)4s0oCnnrEJjgMX$7cA<t-rZV_nq?@zno8x
z_z?BstPfv`g_z(O!MG1OLXHX^6Fe^Xh2RN6=6h1eDIZQ-k~aV5p}cK0<;#m1U$LHj
z_|AvfO2*edeB(2J8bbMu@hRVP_Q+$q;KM~9&avq$nm;-@FGAM94?g_JIo}8VgeYZL
zTB}MK3$NNM%Ff|Ga|-pL<yHGHtnfn4Uj;7<UJ?9F@OMEf{2^s0`O}B%oC*DaAAk99
zgLA1L&--zc9i9`iA4z_*CU5)juMfHWxZ}fJX_UXk!au_A`EXwd+wOr64=w&k$YUR#
z2ze^_OpryO^3&1E+b8VY+*s}BWPi@>2RXM~PWB_OAJ4LtLVl$9QT~iQzaIts_~CL=
zK0gYNZ#<$Le;#2Q-Z<s&q+A94$p2>JeJAaO{aiz9FXBhXHyiUPDuhPT`Y6TxC@BRg
z?nk9$+Y5pv{ALIEr>8<mDL+1)=ScN~eZFZqTWLRt?C>mm89!?JQOl3Aew3p#ev}%c
zRQ98a9~FdG6y$#XmHg)R{(*w#9?>uQQC*5q)sJfQyth(mw&RrSZ(qZYbed|KT{6jL
z^W(!jwxwsxUp3Vh51C^<Kk5iyJ0+#AkP=Ul>-(VyZy?yvk719^jrUtlY)owI$4h>^
z@5cvzWcbm<kKuldU@82_^rN*OZCF^g?5*@yCAq_oW_~pHqlF)@_+jss)}@!yQYwUm
zGX^E-rEDl~YemaFl$7!qlC8A$<266}`O)8xc7C+?qn97O{pjEaf8pKHkL#!H+{&K)
znd7UIAD#VX-|iwv(p5+|Ke`L)VaZ<?(o>Mz<7fHN$B%43oa_eWZI^l~3zE%WjIo$~
zS(ACp|8(<LQ<MzwgBcC-W3Uu$pdf~)4Dn+q>qkoZh6rhv|14nfFY4yc#K-kd8R^F;
zKj!%HwjZNKbF3fZgpBdy%6i8?-=>Y1;7q|c1(|k&9}_J;$&bmb#_~2EQ~a1}@o9cc
z7d}Jql>)h_@RlF5{FrT}<<A1lP5#fByOGcJV}Z!ojo<O(U2^8KB6FS}^M&wlAe`GN
zxjC*eyA8YaLO&Myxdkht>_UEg<i}<|w)nBwkB`OFMn9GaS>wlAA)olMR0uQuRLC+v
zmJ3;7$yW;bOmLMSpIh?PLX4~Sb#zbMUM~{1`v%rzvN`9IZ}Owl7<0rCxB9V-1IiE0
zkL`Z!5Pg>)JB6@i4-47l$8I5er2BD5?iI4nkNuY9fFB2iAF?E!uOuDebo5Ui{*i&X
ztA4oI?fH}UD@lpJFwmb;<5RqT`26s*WeemA_z{%Opi6c$(~}M9a{PBjh<)`+5|f1e
z=D*T<=dpd+&l&S0?#Ep}{`MoskE2xf<D4JI{5bB%7k-@ZW9!%?{*Pm7N)k^iC&e1a
z@^?Z`37!@_<HuPc?6hC{@s;qe1;4T6-}=$EcwSTCw4FxI`*FdKKRKrSxX5nr$4{JI
z{P>ZL-dzE`EoV#r#ZIK#msp~5wrhgFh{CUemj$nIVifYb;2(lCa+TBml_Zj+9txBH
z<;M+HDd&6%-t^<PRMc;0?6=s*$~ert%Gsz-Jo0budw$&a<B8}z@SFe6cqI5xkijpz
zrV$@Yu*I7xzsqU*nIHf7@vk4bbU;TL9l3Sn(ecZ+%z`?SbR_F2pkr81+wfAk^6JQE
z@f00J@8;$`Admba%vU3&LB|wo7Sd5z$M?ByMRfB<vXt<mg3syZuMM8pQA`MVaUm}V
zme5gB$nyNT7?rA<e?#C=T1c9X>l0IXWy`C_vh*;wt(*>5{v?v}Ix6U>sH2jO3>{5$
zRMt^NM;#q?b-bvfs*ZFWHXYS;RM(N;mRv(O&!n7)Vq=on%AD{cBhqT>sHLN}j^-CL
z*z?;DO5wj__)EJsx6=7nLF(7j(NGfB*P-ZWpqn$^je&|bF(qNmuA`BTu@h5hxv`Fy
zMET#o=HFzNJxy+^BU49v9UXMMtiz$>RUNHFr<q_&!R9(z2w^IYZeGj1qJ#J(f3DU#
z+UR&qM>`$7O5p_<9c!zb7a=SH&lEh5v&ZtsY8`cS($Pcgbk@;@H8v)xyN<3py6LE&
zH;L0P&$gV0zn)`W=dcnwrX+FFV5Yrv^wts95z&#QqmPa)e1M=MTZfZ*(HR|mb@bEm
ziH@Z@`s)~=W4w+xbqv%oNXICqEo~btNHSc=5FJB>ydik6pL3WFA{93Dc8t(5Qsm^6
zjMg!ReXqY6OP#Sg#_1?4LE;1*6Lrkh@s5s3IwtFwspBmjQ*=z#F+<1Gm5rzAn6BgB
zPUas982t3t4C3<Z8UK^a(lJNJ+d5|J=6?+sMdZ=^r8H{()+yy()}D?<IzH4fPse;6
z3v|3M#;1f*sMF!4G+O&W=a$sibv>g=7hB_A4$8@y-A6hW>-d<B{!-c`(O*JuLn%~S
zbi>T+Q<`ecHQu&mEKcV%lI0><A=sz4gOXM3awju33VyC*wUD-DQYc&_e65akY?_l9
zJk|@@kibed>TD97&4ND;X+p_19S3zB(y?8~4jnsn6rb3b$8I6Jbf~{(6#6N9kB+@m
zTada><oh{l>ZI{5>42rrs6}~8AJ%b%!%)YPyrp?d#Y1Hu_}#AQSboFq*5Q$0o&M&}
z7rZ)rI{X|vH%!ft4qeCPm5q4>bOePPf=o*xbuQkpM|H&5$ATCTL|jLXj?n>(3E-%X
zV{Cf<K_g&phJT!84B(Br$)k>BeWBxoj*~i0={U{o0_K(E869VJJQu+80sNWI@uiO2
zx=Fs$@wJd|bo`*>M;+fv@H;^&e6Qo2@bi}Bf{u&AS1rt<0*{|`{3ep01uqHyBKWHy
zbuJ6J!s(^IlfmC5_=gpHRmU}Q30~K6Q^;RBZU`AVzQsJr>y`wWJQ2Jj!Mi&C=1|gc
zUxK*<$P>T=;SU8L>3FQ;3HudCgh*)NnUH^U^b&viS!Kx;z$D>G0VD@dNUDqac>~BV
zJVh{{B~REXAi;tG&>)q06c$O50E$|gv`l$1!5RS+58#CWN=UG*V95Zomnb|+1(0g-
z(gCCihhP~&)*;o(Nh;bbA3z0*R}7$10F?s>ugR(sK-B=M1@NL3``!{I;bC==Fv#TT
zR;(?6n!;-d*0$tz0;nszo?v}T&JNHZfUm|V_Xef0k1ZIg*aILo3ZQWSF9nbx!KQ+g
zHwj=we<w+%NCpkgKI>E*0W=Gk4@vmj-{t}HSwxEfS_be+0IvoxD1gBMv<jegz+4#6
zBY-vmv<;wB0G$JPEr50ba}9ZifVr>l`l*h*Y1!=qc&ERU{}kZXB^{}JJd^vfb_sw>
zr+OE+bqk;?P4##3^S9K}PUBv7_W+1Y`+5L91Lze%?*NYUcMcHD670w1ta;&1!L9eQ
z`wF4vnSdkDd3*l=-s_dc;6O{>XtHAnU2X0dA<hq_&#klG2w+&iTsNCi-8NjDr~iCj
z{Y8K0$N-3=0$5(F&pexLY{2}B*{%R~bBqTtK7cm^m=M6n0W1k%B0FjTa{_offXM+&
z31E5vGXi)&*}Q(38Za+5rm@~qY}1o-W#qNZ6bXg119&TdSrVKn7aKj2b4^Unm7QXn
z%c=|TV^S;%;9V9+blwlZmd`dX!2PdqRE*com4|i~1TZf-*E=aT@(%*gB#QjQ02WKa
zj|8_R=VJ2LlXDHsYx^XCr6OF%8VF!n0ILG{oaGJRqZ1h`B&thtuF_SKR|@}3@YnuM
znq4h?jUa<GyH+?oXK;N08v@uEz@`AU1+YDU&6eiY0Jg9z<~4nwCXe39x#s52)%)c%
z@*SeKQ;_-Y31DvkzXb4W0Q&;wf6a~sa6Ewh0UQY6U;u{#$dT4O96&|>iQrs%l+7K0
zD*!bBH>)ToGZMhMR#~0^0s#bBGXZ#6rI+l!0Q?fgSiZpJ3O!wd{D_hgLwG2F&`zbu
zPKA<ifZrOM<X(TLqq-v&K%C{8Vs1g-w08=#J}RD&aC_%30yq)C_W_&>;3PfgzzpE)
z08R&RCV(&5m&Pcgx+`Y`c-kkeW+mIZ<-i~b<vhL#;M;&HX*knC<RgOb0ytc_H2L`e
zE(GvX06%knsARhszz+fZD4c4ZagF~Ps!)@hc8Juu#92rPe-U*#fNPvF0=N>uZ*-}U
zqyAp}&XFF#RrddZ3WLOiJQ2Jez+VB}2;e5?fgpFJOurStZTA05>2-s+6Tn^0kU^9V
z;_m?NaiSKT`=UUdXF?tbJ`CWIkjGZ+6CqCnSot6~m3jOll79triK*N{<Pnl2NS(~b
zx$_2*5=6cr@{6!o5CyE*qCyG^77{EhSR}z8=YCEI?L04J&5D%bmgI#XN?2+og_H{7
zndMtr5EU&=1X0G~WrdUzEH79=@VNobN<u0JQANm$K~xK(dJqdA=dKz=)mv#5-cxD>
zksd^CQJ`0hdN5b9Nw8)R<h2B;OkT(0^@6A`I!X{tt+Wk-Xc&Y&h(;oLDTs_98cRm2
z2dB|EkDU*5H<4J!nAC(MQ-UuC;jrv93!=I37M7%C5KKt@SA%FJ!q!1_4x)?jHbJx%
z@|s|~AleJ*5Ja&jW~%RoIXVW>DTvB*xn*uTv8yQb3Zi!q-Gp}+>>)^<*MsP3@m0k$
zDan$cGl)KxJUfVg#H+rRq+bx9h-6^UJb%p%;+-G{1;H0&3=R%rNDxDVcq52mK}-)~
zMi9e;__Ts;Vi1#p7!gGD`^=F+j0$3O5S0cv$B2Z&+9$J#V<k8)i19++41zC)CJ1lR
zMd{rYlWB8Y(vpkzsX-8@2qq-cf|xZfiO0+!I&ktAd`obaASZvy=LmmWkU`G#?*{Q+
z5HA|2YG7W_Jo&yK#0Npl7hd$5Z9x!3$`=N)D2TH`d>O=tL3|X%fglbBu{em2gQziG
z*+YL=ML}#2Vn+~5S@s|{1hFxQWkD<tVpR~I2eBdu^mVkqoxU=Nsqbaheq{fQZF)O>
zcoS#!?=w~hu_lQ1>|Fz#YlA5Nz|LcxkbV7|kgx6QI8;6D7pG%W5G{sba}ZnD3Fj+x
zU~3S0AKI&}$|Bz;oI&!P!gpJeT|u0FXlK;?f=R@^BB$Cu`c^P$e-L};Df0(94h3<T
zO~CpO;z$s#AhaO7Qc^Vtw-9>5gdXAD2RLcX7lc2EKoG$obde7m;Oz3ip4!P4T#|aY
zYPKQ5a1fy&%1u+47qQgptb#kUV!Zed;&>2W1d$WO(IDO);5;U!8~;}Z4;C|JnsR<@
z>WLsu262i731Z?%6kL@x;fWc`I-$Wc6h5+(6Tb@L>mcrO3Jv0$AifRa*B~wj@m&z#
z2k~<dmx4GK#Q7k8l#DI}aZx;EE<Xri0co5_`z**$K_p83i{!OxfRi~gwsp(2D?$7g
z#H}E12k|?{NDzMpab3(_4dR**7L)okwdAd=zgVjSoHv5F$zC)g^~?Y#4;GmUEGBcm
z69i+~Oq4i>;a(8;*;ocr3_J+pA!ly`N2e)F(zQp*qaYp!@g#_+LHrv;E(6av82dV|
z-Z%Te+z0l5=)(Xf39XH7*(bMQcG_B-vl&b>kSsw~TB6kX4CFWXEgp&*U{%oJ0tN~i
zX7w_=LP81)vT|tTIZ6J!fno-J8k<VB;s#zYP{u%610@WUG*H?=nmAlaFja8(y^J^h
z%wQ@0U7&zj?9B45%O<D1oB@(N1D%x&ls8a8f)x#L$WYFMghyoqRm2qe2TM~Y)Jd*J
zXAGnpsBU1?3%U5_v2cl8HUl*cyksEPs+3wZVxYbO#W0@{)iKPck$fCPUf00vf~D&j
z<{yVE40JXy@K0_Vk46SgCfOPqunQq~)=l%>OmA#pN(CE9hJhvqni|M7(85afvH`wx
zX=cD78JTtlrZhLqe-{7zMj9W;v=q%YPK8me474_I`zze}3T+IuWvVaH>`T06pdB+k
ziBl)h-arTHgmEW~js`jzcq5EqVRSaQC<s>#Tr<$sKsN)Q8dzqayMZ3`(7;p!uN&xT
zV6cH926`FjZJ4ho`WcwM-jQXX59@@#3?8gB7-c?1%oc~82KtJel8@3H{SDsOD(*4L
z0K<GUI8cIv4D-o3AF2<fGX};<LcV_)W?+PYk%sv$W;nakn~h0ENstetMhj_q+I*-r
z#=uy^d_qM9;&=mZ8sG!Z2?iz^|NUinB0YJM%r=@V623H9+EbZE=Q(d1m@k>mFffbF
zXJDp*w^&g((+mA>r{{O?<(^~UZ5Fw_?OoAab|q=95VrU`%$*Nl&!xY|VRh9`oy5PP
z7Z_M%;6oPSX8QXEJ}|J*FkiwhY@9NvxcQUQj|?m}@QK*@*f8I`EMW)hp^$V6rx5vi
zm&a03V7)Cju)@G81E&qFH1L@Lp8>ytRR%scu*1Mk1FH?JF|fhFMgwaN%-G;qFK(|B
z&Y-c{!74iNcG@Nbn+<F;%;)EP%D07S^O}9Q-8K7GcAmM}UpL6uF0ob0+g=&y++|?5
z0o8!pz#fiV0|yKoG_X(VlMm;A$Ya|td~5A&+F?Ns892;_Fz`5!ZO$48YqH-!r?bD}
zVzrD`=nQMdV?Z<T$CxDYS$djRs*60_u#avaAZ0&lAZWngU`)0}41`1&7T?;GHD3+0
z2qPw?L=D7P%z@6h)N_vT2?G??IbZV~GjQC%7Y0snI9#)*H%ntZoD|I>SIu5TwKE3J
za{e*!vw<%Sd?j7?qUd~W;5)XFfp0|kt>BCKl2|Af_8b#BmGe@3zV~6PT`;h8frI3J
zKjjAlKXP0TRfbJV;S2gp2KbJQ7dBT6{32!fRq(PPI}-2xe=~5dkMcWf#=yHd+2oZ+
zq%>^Q=T8IIWyl{7;V%O>4CD<VC4`#>ZW(yQs^;i6aL2%X_C^DDIrWut@VMqw{x%RF
ztnj$UnXqXp$wL<BguP?w6jt~<$z~Hgk^0XSLhcZr@)W?lL}IUKn<WbW(y>aWex4AL
zLT2A)Fqyos()YBTHklE#%NIia5W0u(<^_9!5DE%u7eb*B3WrcKgi;|C38ARSUl4pQ
zgknON<ar@ydNe66q+kby!V<z0QK=!64#6HmqY%<UfJCJWmI<Mfkg|g11ev^i2o*x8
z7(&7(C1*RNRSuy_2rpVX)rC|Ip_&lB<DeRk8WN<?7DCMsYDuuZAY*F_sS`q7OHwa{
zuQ!@$6_GTs<PHB%?u|omi2NnN48bOrW>X=Vf-egi8#9}Q&|G+n5LyXoDfo)utAh1f
zrzL!D9YPzCv=yZAwGg^&{;x#sMc6^GV+fsubhb3RgwR!ZH$gT8llKVW^$>c7&?|%m
zmS*n|Mujjsge;Nt2_ZWKr|>rf`-ad@NdFK92^k<rg9C*uT9-LEgdr@^TGO|oR;>DS
z_AueYEy)NWBk99VQ*(?Ze>;S+!pDU$o+N|`A-pA$i6K5t$8_P71(|Sa2vaQX*p)d=
zIIEXYJZ6M2(~4yy&JsR5ggHXkveZf7T;cD8@UD>e1Q|Oog!vY~c{=O;5IzWDVF-&t
z*c!sN5IzjyBT-l<xHyDQLs%BV#}Zs3_=zB`EoHTDHGNwylFuyp3Lz^)Ncc~MRU-L3
z1eRrW2x}y`R`7p1>qFQel8qs360$jjEkbA^(bK5BJ%k-0#6-SR@JI-*5O#&IJA^$U
z><!_d$oE-k_gkJEup}c(I1ULvEV%MgHnUJeaMMGPctX%Z@Q0vF&@1Q*A<;4Z*OTc_
zK%$sD7&6~HvRy(Ughdz$Au6P}AiD?E;(|GXM+J`wGKyxu2;oEsCqp<DGT%S)nd<2f
z&Tt+GqiPsuL-;a;$00lk;VTa05N>dS4dI&*z763D(`MSf3z^>$@c21|?=5~Vg!95L
zSdxoEeh~ao@F(`h&y_^lODu~Be`Nt*a<uB`xEun1_R84bB$wX>{|Mo#kZYXth5Q-9
zbq>RB=Kf3EeT#T&Ns5Uf+z#Pk$owBDk2@jUxA@%<{uX{uurfbjeBSne6Pl)cwpy96
zOnGE!-aGAh8p5*>o)4o~82?C)`NJp>#?@xFe?!P6B)4E5LCTZDNVa%hAt_<xvn2e=
zsbJV#Xk9prB4P8dzJ<c(hf5?y!+0(XKCHW6%(kMkgFABY&#>1D+lq(rLKq06Oc*7?
zC>cg-*!*v4?%fJM$l_z_QeksB{i*7X(jsS6T9}`-C?sXWC>I9Hbzr-~kG#r<Q6-FA
zwQLo_s2DcC2BNSME%W;?K@$GYg*!%4r&<`*!{`}CuP|zakse0tFxrG+3!`QjjlyUg
z#^`;HT4A#r)DD}U0Ww%8jJjde6JZ0v`eE>2mWpt#r7h7|4JBv~^COzf(_597!pI2o
zdlO9A;b;;@)3DiauY}ESQZmEnSHZy``O6}4gwae$bHNsZjBOc4?sQX)%KR?1l~|)e
z{(Prx7_WuVA&g}Mom>jujurKq*<0F&&9BdR1Xn2?!{EPMd2|xeIgBnsx?1vXBo^-x
z#_Pg2EK``IcNke=IK${0#>Tz&K4D~s%^&z~dd_U1F{{j9jr0qHe_-U6j03~yAI2vY
z90S7Uu6iAZXYtEEKGGi)#^5kMO?3=mH<+mK7%F7Q+|1$Zez|S$g)uLT5n+rBV-zbt
zjPbM(#(Nu6#)Q%QR_=KlQ+PEsmPRVr#tC|dC=<e%7{-h+W`;2-jLBh4lPKy;5i(V<
zYu)7WCC!A>C79rE(Py@W<UU*EZwpdwP8dgDN+X#ol46gO$=?-DQ{?m6!NS-V#{Mwg
z595O{K4e!9V__Jl@+9$Ki57*;yOQzcZCtXoIE;_OSRKZiFqW`>Xo~F>M$7Z*)ojVU
zO<2m#KTu(CIR}C*nZeIQvLcL?97<(vJnFhKSFyi|oVP98Z{;SwU`wX{+A!9Iv0gMO
z+#ALQHkJf8u^$TAY}wf&WNR4PEXnpTc36BTyPU;$3n}d~Z`}6ql6#<&9v%qeU>HAy
z@naZ=!Z^%s7Dg<LBVoA0@P^?F<LmLtu`x+1yCMrx*5(OAV^f|>C+8g**Y@zH(k~J{
zjDV0vt5Skt7#xOWZDC0@aEiH_A{54hGBz$B;@xzFL;hxNl6V+7VVn-*3|lIUfhX->
zaL|QuENtF@9~Xnnf*G9*gE=xek=9PJdXvrdU1!7ise-Lcda@(2yeEvW!sgxC*Mi>&
zek=H$;P-;(68vWR`7kb6{GyQEXY4;oUt0Hv{Z<%1hjEE*_otmJk$wr|S8?fb*t~(g
zA^ZwwHqJ}w$-jrqTWlVGa3U3cP4G`kem#u8gj1Pnv~W}G%paS=yx7z3hVeK1(h0nB
z0{6nW&#E|zlSlC&jE8KO7+f(t3ga<TMNu`1Ct*AdV{8QDB6vohISoe8JA!{Xe@4v5
zjITwIJAynB)QX^X1iRi=k|HP?!E+LuESNWflnC+(&mTb{Aq50!p<o1U`lgWZC@jJv
zf)$_Tem;U?5mbtxas<UAcp-u^5tNOfgea7@ER+;dDuPr?GF%L%Nf3f}`lgh#V#`Os
zAhW9wK}8WJ^oR8`g;gS`F2WZr{i;H$MX*6q)sSGi6>E#2rtm~;0_#LjH-dT*)R(AM
zf=UF<B4{2#g9sXm#2!IL1Wh7nB*DfJycEH(_<yxQQ%yzwvS6klJ*3<roDP$>u;i~q
z(9+@wH(s@TZf(iiM9|hsOH(}BF&IGy5q6BA!tM0#5p=TjJ4et(cvr!0f{FI(Vd=ac
zK~IZ6>zk4lL7xa_ux0P354e|yS!74x6otMlosfPJ^cON9f+1Ggfe{R{_+ZwIRS!cW
zc*Bw>gu^2k5#cvh_K}u+R0N}ikFg}a9x3A^cr${N5uA!(LIe{dI2^%|2qr}^If9QP
zSQ5dM2&P7`FaqsT`ZP&9UvRqEpAo@K3BDD<JC@~HLS_rjiQsKZJ~x8A-)1Fh_1y^G
zi(sBa(Gv<2xIiTD3x2@v_bfM~T6~eYD1r|~_>mxmi-l0(lL(dy-x9&6LOzdRbp*?V
zFBhc#iU?M6knT_WOeCu;`L6?=j9nwajS;N1<m-g27u+CN;aToYLN*IB6&rf1@NI(I
zBiJEir{F%0cOlf=EoIpw!M%bk@BRo52tOFXAt7b%ndRldSeHn`f|RHcxFhheAw*Jo
zyIqgKYsLB^@C)xMV=xc_6@r2!hLDipo^AFBTWyg-o6!hjk}4iSP6S6II3~dp5gbog
z>zDFH1Q*^?`Ylk1eA~rTUHhe+j^IoL_aeA2YG(z{NARVPuLQpqr2aP%d~5OVgnTb}
zE`mhmUx?sh1V2RZqsVUw{uIHr2>y)V=LjxE@QVm(?RTb%;Iag-MDUvsb^{)XF7$^;
zu3GvD;q?e^SdzaYNC<CQX&JmN{EpyV!M_EW<E7+W4<dLNLCL5&r9X<`u?&YIoc~29
ze-z^j=Y4AFKa1cWo&qAsCHl!x<c%V?@H~Pvk|cyarwGYs$-k62HsM|Y5f&6IBv?3#
zghJ7%IUb)ABzZoHViqqR#S6kq2pXTJQlV57sbZmY6y=4`hcqFGqKqXeE2LZ$9rEO&
zLInv{v|=j>sT@TWOTyDcwJ54b5r`rfMU5!Z8O7vL*hHtLV9h9MMNvD7Iud+2in>ws
z+iHJFg7w7D`htpJ1Hp!ZblxtckznH}mqgkr%#gHnvWbwUf|-K-Ze&pI5Z)|`=0YfG
zA%s4^Vo6>V(khD9LfTmJwnAQuqMaqltdrI;icV2Xi(+~doulXy#T!u!6NRpVy#%{O
z(OpOn!Plec$%4x~HcuM2cNAGs^pV(pQS^@@I|^qMeMQ19L05U2APx`-$zUM^1qTTx
zCW;}#henY&K@X2&1nWnHOf@o!CjC+dPg6!kK^$$#$3!vK;^Tyj7o69s57j0JpC~v<
zaI)YO!Ks4mpEIJE8O5?FmPhec)I2S|8^wE3%o2s!f^!7l7NkFOg}fukV$Kt?P;kEB
z0zqoNFXRJ3=Cvq_52N_Vid_=LVvBzqMe;o5@?CSz{6vIH1wW1cckWmb#Y&MJh~l#-
zRtet}#pgnpYORpff@`drTxZ3uk79%Hje@(RT{cItC5o+4Y!l&r!R=A(60$>(mUjx_
z8F_aUdxY<eVxN#idtDc6|2vN#jN*{Q9**LO5LXl)cKaw)3AzPonKKg6D?xu0J|P32
znAZ}za4J+klx9Q`lHkl3!cjz`cqxXA7@|?cqWC+Cdr`!r$cf^|D1H*nqfvY-gr<%~
zaXgAIqBtRv(@~reax#ijmd<3kfH^C{uQ@wK@s;pI2kz-f`^M7bxce@O?<IIn@In;l
zh0qA~FIt*Ea7sCpMhAHOEW#U6ToUq26u%0&9K}^3SEBeWir<A({}0xNTuzXaT#Mq*
zD6UKFUzScnA%QoexE00iDDGIXcctefhT*==Dfgpz5Cvi=6T`zO9&s{{Ath#>2p&t4
zJi?zu@idBOBKb!!m&pGW&b)F<Fp(+KCP^?^Fp*cj7z)NvD2DtZq)q`Vwy==Wf<<B|
zD&)BsO2kkyhUa4_7W=Qa7ndleeL*CN>`KLuD)K}||GR!p6CriV#!yapwHV4<7AnP1
zA(6^bqgfu6W2j>3yck2(gpSNw)nlj;L%K+6#!yR$E%yIgq;?DqL|7+=x-ry?p?(aC
zNd8wd2~zT5?uIegV`wC?jRh0_C$LEjO=IX2Lv{?AF}y4a-D7aX&@6`5F|>)Hxd>ko
zq~|SSXle0;kyj<y%JQ(S1Um@6W@)w~5uR|YV+@^Q=xoJy5yIKHtB`J%JTX!9h~agS
z^t9x?g!C575`6t&nlpyJF^rdBKfz&w^tpcw1B4HZVUUo)F$}e0hs6H7Q={e^F(d}v
z@EAtKFw)W)8^b7zkB(uC#Yf1<9Y<v$Z^ke|q9(>L&C;19WU}Ct7^VtIOg_^sof$$n
z`MedwtQclXaJAr^7~YOyZj8IC;$xA#D@boYjN!c)=EX2yBp(Pa5PV;-p`0rh3ST71
zR0-inF)aQ+I!j{sB!;Dy&Z-zbjbT{~%SEzMaD^4icK^)cy#D-Lc*5+O7}mzHE{63n
z>=*fl7&Z#o9m6IeI|Vn#utmsL!R><E1QY#gM<RA-+AbmVTs@e!$Krcq*k^HGR~)eT
zK_Q0(4_hs(#<)QWevRXD9G)07_Psc|#NlP9jiGcLX>s^t&|~-~hJRxS#1M?(mKZT&
z2*q$VhA%n)i{xkw$6|;Gr&m!SF~N8YIYJWcdtCTwL27;x!wHL@jNz2U6DOTBF(gub
z6~ostT#4bg7`_pmA7l6_hHqo|PJ-XZa6!m9%ffl9q!&f<gJ9yc!hC<0;ID$01b-3a
z3G}iM>Ljj(ewX0&82+&2S7Y3v*PN(%{3(Q~{t|M-lHasEzfCt{xGVC9R_xy~+!KCZ
z@PT0I{^qsWBTMIT3{NcnRLC<y)=aLrnS1^?3dE6Hc<)E{JVKJ<NESkcym6!m&nH;<
zpn2{q7)K$t?840AaXcO9oZjA6SYnF^78QI>@Oi;vf{DAo7lhMDi8x9MFJ(zm<NrN3
zfJmyu@uHA2ag-HOPO!WnEmVl3qVP(Bl?4+|hj<ZQ)wG5taa4<=dK@+4NEZdWpe>HN
zanuuDGmct9XtQ=4b%ZA-$@;>%BD8@JCH~*lY(q;wahcRef{o*NNeI&>x?IyZTE_88
z9GRB>%W*g?-Ykyh!dnRbH|-1WXz8>P(mIYdakP!&wS-)-onRs(dfq{TY}rl;9k~+g
z8b`M{-i~8#9Nk5}<Wl;CIC=<wJ&vAn^b$Tsu(x1V9DU-*j>8$p&^X?Rqi-Dj;usjm
zAW`TqI3SJ&2h9F3Y4d+iy#~iIM4}S?FcCY9l_tVbaf}ecBqN0|VM3FV(IQzTH>zXf
z++rHzMKVw>MBfxngA)@81t-TbC61}WY2mFnrdfQtkQs5zv?Lr~vxLtUoMXxF9!z^j
z_~JM|j^kb7?+MNmoG-XQ@clSG5VBD4L%~IY^!y_si5|Elj!)v)7sviMmL?S9_&knJ
zg)b9aE=bQ;2w54&XO<+<8CFYhM;vS7SR2Q>IM$0~o8Sh)&2elLvMC{y>e?cFt03(s
zW})qIBp#FQ6!|VIcDIl{f_vltov9DRaWIZZ98r-U5?ru9?Qk4N;&4gO6NeUu8i!kg
z%;oYvvp;wxXbAc^QN*Fg5s+X|kW*;l>0+X}Ln36tun_j)SRC;<zP98!Le9i-G>&7!
zkH>LR$QPE*2_cD_ms4?^mSCb9Y5A-KzZCo`jzon}{!JX;#_^rVzmMZW92bS3i{rcy
z>d@OC;`lL+OP1s(AwP5ek!#EUS^Gug3#X-BiQ_lUt4ERND1MLQk2tpHU`GzF#&Io<
zt~uzIgFoZA&QoL#kb}SCxWSn=2l;YvGmcwv<jFDT=i6fNk(KYAIPS*rw*>DAK8WMK
zkpGqRp#%^1O?e#06VA^P{8#Xq;6H*i&brDax#SjvnwBU?k_3|l^XB|lSNU^LAP2=o
z*zJBs!5kD7UPzGE3JWP>=~MDt4xZ0JF_9-un#31!P$CD3U`Z=&sT`zQytELWEXw4d
zYz`Xbpm7e$Ns`JrsFH*7qENxoub6{M7H6s#g;y7>Dp<{mW$9|<AYFns!TLF<nS)xw
zYv-Vj5ME33s4KjlV4_--95l#5Ly_43kDMjlx-*Rr8D0|MD}ot0Xp)1bImnbCb(-hk
zW#Nt-G!w!mOLW&3mQKr@|9TYlU(G?Q9JJ0s8;Na4%t2e>uL&m3r_}5q!A?2oD1;JL
zZ)f3M1pDUAq_BGqdgNddYcdD7@1?(<gW)+Ck%OK&=#_)s2~EK)K_=;wgKUdCh48wx
zUk>``V1NXN3J%P{pd1VqK17gdKax`eJ$b{D3=@(V_&i09%)zH=nV0XRkIKR59E{1q
zSWELwA>#zcGcUOdpv?&)nJCEGo05a6Iao?NIhdA%={Z;^Q8NUoKQ9L}bMTe~XXW4>
zA+vM-A5~ugE=Bdfe*-S9AbDRp6n5#w%K~1nsFX;T!~)XYDWD*Y5=tlt0#bs6k^(9r
z$ldOpSQ?b>QbPQ{^I7Nn_xC*WywCf2&*yy3nNu@6GdqK+*_dYfd@Ll<n2DPsGensw
zNM&|5<_MoFIM37*&Yxyuel`|}$Pz!x#zNtX1QTID{|{f9jb+*R+VuY-8!JryrI6)<
ziGlG|Hdczc%JgBOtFy5t8*4?`Aoz`$x-J{*h5v7CY|O?cGnL{N;kw{=+1Q$mZQ0l^
z=Fx2I$j0~CIBfd=kd2>(@65)oZ0yd)9x)FH?iKuzLv%3qnKOF7h-`<%lsTA<pG5iJ
zb);X!JjAKJs5srY9WnW@**KPs<Khr9<NTJ56WPel=D*C~649Ftx0&h@@`d~yV?bXv
z{Gx1mp#&obga^&|VKF1whzf~i8xOs!*-*r!KhFd-lb4)pi)Z6xHcn;ZbT%G~ekL1d
zxmIW67JIpS+PQ386a9QPE(p0OcuDYg!9T>4!7qz>g@*uBVFc>eMJKtDjZbAqZkx)(
zY~0~g74u#;9+>)lGeW}uk?4P#seiFsf9%45Ped8j+WIsb&$97%HlB;}kLj5>#Z7V=
z2O5s6R3~ycG0=%YPULhVP4sF`<PwtZ1cc;vB99Y!h36A2B$!{YfZz*GyeNc`3koUL
z+rbs`C8u#Qwy<CkCyEN8Qp}0sCNJTH?P3PSl9KUd!BT>y1<MGQb)uXT<%P49ib5&~
zF8<y)38^HUtHdipDhpN-WU9pptI4Z6kvI>j?nDhIYC2KNiS|x(aH6*Oyd`LJqK*@<
zI+5YT>rP}jQCIW^f_6bhuIEJkgx<<Z^EKg_f{AM&6yFfDq3KEGP3OO>+}lnxa-y*~
zG$%UIM0iudW`ges@>fZNR@N5Ie{aFJ<dXm&+gNlfNoCB|PP7r;)>PU#G5NeP={kzS
z(>d}^PQ2$tXHj}N(c6hGPIPthJ=<_N(Npy9f;|#=z{r)zOY**mT<7~Z(O38Y!G41M
zooM~=UuXJo$T8z!Cx$q&%89SVXQ&fng)rJMCx#0jVJahqjB;YMkTIstP~)5!@5BTr
zCOWZP^beev<iuxAd@kl>C*}y5;>3qed?b9j6EmEc>cliBs_seu*a>bdnp;L|qswMG
zF<X>bg8VJXTY)RP8+$$1iFqP^;>4$BE(Vz|e1WMf6tYNgNOS9AAxq8FB|=!}GE@1&
zi7$n3kseuL>R&mr(&R&m8Ee{VC%zYDjT38~#&P@`CpL<*PH?^820{8KZtiSy;#(&+
zi?~H_o8Wg&Y&AW(Vs96|!&I2}2jM%N*yY4-C-yjT%!%Vp>~&(FBpq?$M<@0>@r#-3
zfD=EN{Gbq?GyE(hah39rnR-|VXXsHUel^GcqHRVy|7QBQoH$|fY#~l3Dik%E!Y!u9
zOyyG(ekTGPKW>b0Bj`lPiDoXm<3iYph`7D(Lez<v6S-Z;<ANgMGeOk}%?aJf&lKW{
z6IY!$Df)RQHl4Se63#+T3pwM&Ss~{HdE=f*7ldCFr1`s$Kb*M4p8&#>_8M-)YffAj
z<%ttFoKR-kZaZ;Dl$%c65<*Xgy(|2o6OV-46TC0@!1@1w#r)~SUm|urm4g|%Jr<Ma
zrB8)W;q3cc_;bO3xQ4SbE@R{;3#Pb`DkO(snhQCF{O?>Mmucp8A)kwHsWtNE7ldE|
z!53V3(S?G-iwe@MkdT*LC@iFiU}8KJGkuD?P{QQtu7CHgqzk27DD6TS7ivgqS-~nU
zScH^wp}Y$fT&QT~eZ_@JCVyGTq8Y}s0hL|<|Lof8LN!UMYI?G@s|!!`W=-L>1Z$f<
zHW%ucoJY(I;dKS=re4p5`obFsz9yJyrm{X+CV#_)hQi-8mA71YTX-YE#-`rHg{Hz2
zhqmVAE*y5@hzl)TXz9Wh7rt|$l?$z180W%x7utw_Kf$&x@HD%f3+-L#Aj<oK9bM?;
z!h0@scA>i{T?D%cb`@m1CA!HWX5tXm!-bw=CX#xYp1ob@WAeVHLw^?r2p{Oea3O<C
zpTR<g2o4n-CdeT-LdZzLQG%ld$G9+72#a1b1P%A3PjF$P3rj>~Z9fn)-Gxb}GFiwJ
z7d{m7kqc8@m?r#V!T()D<61OBl$nCFT$n9njtif-@Tu^*g7f|}mgc+gnTQKqSSTd%
z(_oPcSLYZ5?{g7J7IWD-o<XwIg=H>$Vd|@deCfh+Q&}P8D;HJ@;UR{(=Ka*=YZq3#
zu*QY8qOUjozY(%dkT=mbnEFN+HVOaMR5rU%xwr9H5x1=(?h@SQ!gkYVhYR1E{0A3y
znmlpFxZ8z2qU;siC-|ca`&~F-dj9OfLE%4{N@C>vBIcn)QirsoF8u1k3vRsVHWrg(
zE_hw=xo}(@eiJ+)m@ViObP3Ym?SjYT{Ke#VA>hJ!7cRIE6g@5&av^<oX4r+z!)*~!
zqAtXQC@yG1RKdhrrweENgn811Q=*&}JY%Mw6>?6HBj+M#nG1ir@Z5zzT)5=IV@bN~
z!WAKRI38TMCj6!g*M-~={9jp#7QQ9oZ9yt`UAX7Mebe)ikOwY2G!>T42!D$CmtbN9
zJ`w&@@R?v@kNy#!%Z(&AlBMNS1XBeQd2<NQ=|-9m9zIw^Za4C{kyjL&`Gw?j8>gU&
zTm?j7DFxjq<i?wByyeDABH9HDyHUiAqHYv(qoNy?L@e$`NjFNlQ9{ggK?n|c@b6P+
zrQIkmN*OoG3MuFQ_g;MBB76lA6L;rd7G72G6+zavvXClnSlqC>k;s+sujWQ|H)^<1
z(~Vb6|5`$9ZqzoF#FLqI#AL-XOueoU_Ch@&_1(sUpbdn-CYUMsx*J(;ydk`yAZulp
z#|gLuz3oOLx3N%nccZZzP2A{Y`ZRT;Ik}k41m6*4i7kY*7i=lmO0cyXZG^OSqn!|z
z#ZFAD*yJ5V?CAdYnE0NUolVa!Zge$yHz5u|UO?{QMo%~1H&goy=_T0PjXtK{S4clM
z9zFfH2M4$@P{cukg9V2OvOYuI7$!V%$~w}GQEt@tpn(UY-5BFWRS&9pFxHK6ZX9;w
zh#TX@f1VqkxG}+viEe!0#w0gpiO!b?P8RYp+q}19itrBwKXPNLkZFSdyS_BtjTxe_
zJ~KHU{!V7nY`5_|8<jb3%r#Tj_elHHjrnfu7iEDP3*GqEjm>T(rtl)sKXc=AHx|3G
z#Eq}rSnbAAH<n4#SAt)-v0Mn_f5};3K4ZB;M9!&|X6h=LWprEP###|Kn#wm~t}{K?
zyRpIKiCx<yCWCWyZ4v%G>&cdUWZ7zZZgXS1@ExX-xRLRL8#_&9myq3pdj$6i?sMZu
zA*^1P1;)k317aR@<0m0Mb4K(?`^AkzVsf<e8Drv6H-2^Ft{eA6Kjwzp4Uh2SZu};M
z(M|}-7IX@_-2dLE@Veo1<E$I!MEAQ9btC3Rz-^qj2Sp4CGEUfyh{+QZK@sz$8>*>m
zZs@|}f;_BDA7UJvPPuW~^f@CW(OKt(-w?du#zjtH;eQBT7rf-gWg%AtuL?5eH8&dM
zHhyv@R@a+u+>)f*Zrm|_62BUFVt?O_2V6EiMr9syT5%orAfK3jiu2!sf4T8k$P>Y*
zg3kn*kt@b?;s0>)m%Pay<nSP;2PtBv3MLLH^iT63w<x*(qvsLM)GxZH<riMSgBOI1
zpKp6nND&XN%LR~vVipp7NwBbB;?$_9=if13+=CLLr+ZLF2;)OYNx@PclopaWgq8K6
zoCoDasU%oIu%ck%WaDKIUJ<jh2Noe!1QRR2RX9sYT%4@#K~0Y_sA`xxM{F(OwFPa0
zyk=O(gI7(T3=irGw+q%Y^^*J3U-KZ-gZ3VD@EBLUUQZ->kR{{|!G?lwdhnJ9ZwqfK
z*hr9dYb>OR2mkwJ*UW==L~L&QBzCri2Q5WuCD>Z9jbK~Bc7llop`!<#JP3FY^x!=Y
zHm=Lq?7<cfI(yKCWqHuegXJEq@WA0gcggsv2R%IK>A?sOMkYde&{qiS*-J=o5Bdm6
zjA!coJm~Mi01pP5o<lqsBz*Ay^&INKFj0n^o~xd`HcI#;4<_>{;K3NK|7Pk$55}2%
zyayA6C!P&vxgUtRQZA@Y@!(?*ri=2S;71-z6++KxjAPzknBl=3(Ps+IGJR%yzy+Vq
zb4_KQ2cMXnrx5c!Sm41zQ5Fj>GE+bE;B%96=q?ey)Kr#v@P*006p}cP`pSc~Vy+Zi
zW%_(AWVPTL!NlR_8xPirxn6LCAS=94$R@#W1^M*acV_B-54L)+P0Z~c>^1cr9(-@|
zA3WG;@?9S6Hu)aUzt7d|GnF5OBv!=(!Vh}zlLtS0@QVkBJaCG5SnyX5jtMy;cvLWP
zGIrd96Jq`*$h}Cc)!827*h(Ll=x#IB<AGPW&jY{sFbg*>Vj&O09^CZcmIo2j|GEcJ
z4`LoD9;hB%6kQWMBd80;1y2f|5@gKNLUOI@LVi~GIl=QDToCfV^Q+%I_(POSf|mua
z2woLrglj?)^Y?~14sUyK$AcnXW1Z)ASA24ac~AI#4<2~%Q1~Mco(iGopC0^W^2b7+
znCr$fu52DW7ctq4{EwJP-hVG3r<i)G_um<jQ<O9>a(R(k_zQx01oL{4&x`!RS$YAl
z@dp+X-bW_BD0)G`LV_;|78Xo+7WJZ-7sb6OAz}kB(uI`sqP!OnUQ)1>7o~-i@uIAd
z#FL_lnOi{=ix*ZeDtb{#%$Ef#d+~~p|NTO#B4%Pat?ETBFKUZYO|ZIP4KHd6Nt^=N
zgx3|UBgh?m)r$<1C+4hO%z9qb7s88gbmR7#7n!2GE|?|whG0X%HwEdr@kCl9FB*G|
zKT!_zp$WUji%VWy_M({=?|AW*7c0GJPJb`Pcrn(C7GAXU;(afAdC|&?SNW=cFWPxg
z<fNsw7j3-AamzC6^UT55EbYDM;6*1d-t(fPIE*f4rT@j^Ryud~BBimls~6pbbP?>>
z+u`t{yB9qqa{cp`;!XG>%9QEXEImbGa7O6uMISGQcrnzAzFu6pZt3sE05AG^QR<wf
z^V?mhu&jYz5C^gTn+-Bp%y*A=As^<&aQ?CJq-9hh>@~{>FGfnJL1{_b58CwPq|w~X
z!NuvbznFEL7vsHrg(enyF~N(8UQF}iW6Ar07gN0W(2Gf4aIYtO@x^INc|P@Y({k^m
z<s*)_bD2}UP)=GdpR!bLWTiRXiy2<b@nWtx&-7xpkbze%v%Gj*)Jnqbd{OH>FFx^N
zz85q<Wd)LxNa#!-#(z*LokcA2g1E$srCxmI#na-}&qbl<Vj+WjJC+Gq;YHq4mM^^c
z(hF}|(sD1@usL%j<$ftAYd)j5gC(x=;%hImy>NQ5+KV+_Z1-Y^7i$^eoMnR-8@+H}
zvwY*lIxmh_?6#i6@4V%m%|;zIdGW0m-+8f>U0*2aol4!lJ89YM#TJ&>+rjO~8KW_`
zNjtN|53gH@-+S?c7kj<fCmpoYi#<Yid9j;?wsx?;xJ`K5z=NkOKT7J)Ui{+4elIwj
z4tQ~p19eFz9e(nn`e{qoVpd{<_tPgeu^#f`uov95BVPFTW{?~e^H(p9aTnMKX-U6{
zGC3`2Z80m&6C4bijVvzitQT=FPI}>yKJt4JkX`nA;S<8$&zX`G^diKH-L$A)guRG(
z(YdiT=0%h<;+lmU-PlAViWigjWi&ryA#$W?l1mrd)7x>%i_>15V|~0(uUgJ{ah7{@
z-NKEXb@{Bt-P>`&iwnIS7X?$!S(5uWX#OtdAA)nvTCR9;)eDOcRv)f;aovl8J{0od
zh8H)va(eOHi(6jY_To=2eSI9g&Su{6;(-)OewQuJIes>i+kGLpZF%U$BR2I}V{lS`
z_nhS~4n?jN#jQ`gIB_=f8Hb-2g&J9@?7wMIZW^=oA1{)8$m2s^ACi4Y@gbKFb^AC{
zeMXiXKIHVFSYzvjYnFLSGP!i5`M8*LBVlUN4NGnxh`aV?ux<1C@PZF5-nQoV8BNWt
zfDetE7;}N*i#}rzlDy<YVINBRP>P{^DC)xpeH_ITseK&Ba-<aVfxFYEkE4VS={{o}
z;AnvlEM?IdV_25<p^Oiee0bT1vObjaq4?s=iawP0;rkpZ6(kFDaR=G{+}WA!yU}4`
zAIB>`#2Z_y_&{D+kZnb!eJH)E57m5V=|d|Ys{2sGhXy{p=0i;%YWa}igQsB5+CJEP
zd?mY4rDZQ9)e%zZg`}IeEZ_BU#6szuP<4H<`*8H6<zOF2Js;|`Rrh6Ndb1XtG{#t_
z53l>s)Q4t1Wcl!h56sfYhlW19$!I=fzEELylDGb^+1Q7wH!_;|(Eo-dcFRKkjt|Y*
z;6B9qI9SBHQZBQTPrGWN$i=p`4{dyS-^c&Uqpc6^eCXmsS0CE@(7}iIq;os^aI&?7
zz0*kuTbumi<CM;lO3ne$%?AgEXd~;abD7<J=;6cJiruy(CvnauUAGW>`aqKoy?yB8
z!vG%!O7>fQ9DRN0=L5T=MhR<wvv)WY2l?<-BP)Xs^<l6NL&Pk#G?OBGje5Smj^RFx
z@L{A6qkP!RA~>{s7~?aJiQo7z)`xLEeB#5WK8*Kaf)6v8<ikV`Dj%l!@SzWre8zwL
zCv&1XZ2SmO!RqP!L;bQYwvT+6DoN8N+BCtB1^FoizLAW`SCFwFzFuG!M@3rdTpwop
z@W+O<l@8k+@qGTf@v)M5!qa=$=KHX~hcA6t&e7$=A|IAW5`9iTPx;J;&wW@d3Tx8t
zRDFKdfk{h!SmrZ6ne>GuRlJ?d*P78>;WOS9w#tXE*)rU<5%!fFpTlfSrM_C6*9hK8
zP2zXE)(YSKbp~Uu6TaSu4MK+XOxq}Ali;^LJh*M)#*aOH=fhSXvVGWpxBfOCw)?Qh
zhrK@RU^9MOBbb!BizDY^{qKGFLC8))Doh=8%(mMH`jG7N;YW@@AAV&h9}f61XF&QP
z9}d#&W&6ozywT#}HiQ2xoaQf_zkMAfhkZE0+1Jaa6-p<zUy|Owh3%LR$9?!soR^nK
zquU9#LoZuZeqv1CgW+V+_mexev%1)-ZLMxjQXyW!pNb?=4A6&d8^q-xLOz5!CH-jN
zN5qFHmlr?aN6crux0c(g2Pq1R8)H`mH9=jFVw|(Xhf`vn=34E;O&`v1B8YO11A_(m
za9+#{f){=GU5IK;+ub@X@wJ7^qFiI4LaquXQm>oN^t|Q6Z7$1x<n!Z>4|jcd=EL7y
zCw;i@!=FC<#ZL4gk@1maeE6SG)F1o6a-aN1d}?xj=;65!|8RNtBh8N_Ka%~%j;H#O
zBIJLyCCTA8;^d!@ny7y+amf82w><uTtC8Q20)7;iBxZTRk3!^PzUW6mQ%}Sx>_-tl
zic0W=!YswiP~;R#NEX(iq#vc|ye6Z9AEkwq6{J$ekBsU$NXnT?c|Qis%o;c#t)d^5
zM10wgDt=gmzv4$_A&Fd8KdLf<DAfe3`%%M;$stkGkJ^6lOMWb(mf*B%IqC?Z@~R(e
z%Uekj<EO6Z%w_kZp71M8tTU?Rc+HPYKi2!P!H?Jd*xTCrp&uXd>wtc|A!b8ATKLgY
z_?v=n3BE1Z$dATCn6Zf;O@%izm3RDTF8p0nd3R4*E0d4#qqQGx{AlY(I}!T{wik5x
z(ZTfW=tn1$zvoA1;ayCns~_D=&iLI;-ouZcCV$_LUc!3|_A&LoLYRy7@6X;b^?`m2
z5<b{eh6oudILwdXLJ}EAnm(h1jP_%Usf-me&X4gzCJ0Ux{J@V%LMHn$MF{J_fL*0B
zQ$<-MI8E?l!RdlC1ZN5|*DOC~n|zKRbA`_n{6z3mKj!<fz>l$7)<RKO5IMI*ai96|
zxgU%DSR$z_1sk2Kzf{OF!7u#yQpj>amb=1_uS}k3idABMEx6i`HA2>!KHmsg=SRYs
z5jOhKF<^|kO@4gq$7XRj=Erd%TLi!JW2+zAgl`wz=f@5q%=o<@KbU-{kX@XrLiU*Y
zUOy7M`J<`q_v3)c4+{CokDvYc#g9XN92VuM;1OvwW=}-;Rm24U&5sjY1_Q_+K(^?t
z&r?5~ez?SR3!e4EW2Soj@Co<(5%41@Jj$iskC5pT=21X+q7;P-ksqhbR82@+P&fDM
z<bV86o1SM(@tmog_v3;e7ybC%k3al)VCt9rxa!9>F)#aZ#nclOxbDX-KW>Y7L-3|q
z?j6(fp7iNmQ)fHe7oO<ohkiT~&p-Y6OUPqCo(M@4L4T5GX0*SBJQw^&Fe!j!87C<L
zqy~^fcy7U*f@uNd3j8~+5{2dwJ+I*ZN+}RP1yNoI;6)(?1=9r!1@Mv()~9d)MT8d>
zEN1G(g_JPMf~l7bpp?l=3n>#oSs~?2y}X&LVgQvyd|B}I0A4YDDhE&{080SY0IHh)
z)g;vxKpi2~1E>)|%>ZhNS=-E;*zp9uDxy7r3^TQ^5T@1(pnd=i0(ec7OjG~gYCxYX
zGuImdGz{R)0Nx7V?EqStdZPfE32$sFO@uTRWP`sWq&as%NQ(ek3i)p(+0Ly4Xd`;t
z0NM#@A3z5oOieg5S|?H73!rlVT>|LJ$^_9Uh;9Km0!R-6L39tGM*t@SI2Az80NxMa
z`v86jpjQCB1K2DP`UKE7fTaN}3!q;B{R8+gfR6$g5Wqlj7#F~x00svzO3WdG!v$HN
zp+bfUvQ{HZeWa<-XLJB##2jm;CWhbm044-5QN#}dm~5s_5|Z$lV)Cg0ObcL<>GN>_
za{`zfz;sb&1TZszS;A+VK8Xm#d7{iW^-lu$)Z_`D1pzGlkMfzxKM!EB$(IPB{}%y#
z8Nj*#)(5a$#IFNb9l(kJz6xNaD633o?mn|5N?9Y~+W#bdV~%IKZ4mw205%HQBuM>#
zJx;zQfbUFwYXI8<*e>P{!9*$a-x<KJ0DcYNnCQC$I4oojF@Svm{3zzng8Kyz25>+~
zqQXB3PZUk%mjDj^U*(9HM+I5#aUuQy0s;IMzzH$41>J(q09-;6F+Blz#q^mikkEr7
zYJ#Bv!a^c~ieOYQ7C^p|R#uFgYDOT}1Bi=5BHHNy&Tx4QB1aHs12`AJl>n}a!}$Py
z7s5GyA%Khj$@PbDM!OWiWzMWUX^Cjp0=O<oj|2Q{D{cyZ7{ILnZU=DB%ymb|UBN`g
z1l|we!GA=?e<bFgf`6HN@g#t!0X!4&c>w<e@V9XKGfq;_I5$WZBw^iBg2p*aqU&>t
zo;!#<L8O^Jxr8Jf@&@rj5HE_7FNpj?3jD``F$)G!D2SJW{~kLEODc;fVk$+Y#A1Tf
ziwh|cG#ZK~Ba{pxQ*xCGqO_1QK~xdK)Ura#1yMeT3c@Q2z8pj)A&IKK5=3Q*nb=K6
zwgh1nhpIum8bn4A)q<!VM2#S7if#*{mXO+l%*Yl?M5`l8f>W<6X8j=SLhAj;pQ#Ok
zc+K=@gx7^<3BDoNP>`N)2Jx23>Df4lCP8>aX&OYcAeIKPOw4zJ7!}0mAeyroMQIU4
z+aTHn(bA02N=WM<+L#Jswhy915WRxv9Yn_<I&oDuQ{M}s3!5m2&e8>}PhtnViG#!J
zuY}$sh@NJ9Qh8r|7{5;teS;Vj#9&eS1u?*k-(Lu0(rw^>q74aRXb{892*ZVp2x6q^
z^S^dx#xasQEr^d<N#Wyy7%yZ(5R-zK9K^&RJ`jZ&6M3hI`H|p<f~+&6O*J{)rUx-Y
z%tb-W3}RLg^Md#!h}j~}5o8u-oNMNy`Kiel2$^rXEi`rdd=|v#VlEb3BABQc@rxk7
z4B|i#2ZLB1#EKwxiNjYxtPJAYAT|fFDu}Ox*dY39!EXfD2(A@O^b2vFnCs2fqq0$y
zP10Yi&z2xxNQ>{yTw8@~7u+V8*v%a#|3L`j?EFuU?+#*5LJwk}S=NuH=YCW9NtENJ
z{<Dx@f;be!;UJC#aa5FJg1?$IOf(KlOw{DJAWoPOvV(96cLm}8Pkrd=4Z;_M-}H<N
z2?P=3C7>X}Vk&|W!Kh%&48lTHQ8Yna@PBnU8N{g|PK$U(@PgpkAkLYd=gqyoD9Z1q
z{)bt_l_0Kic7!lEglj=u59042o(FM*Lyq5@;Kv1mxGDUW;B5x)XuHEDG>7$W5ch((
zFZ^N9_;~$;Aa4d`a4WDPtBsaHg%SP?;xEa|&mTMv;z`i>M8#9VXM&^tNulyj5J@2*
zWR#mMm?oGKLTbpk*q9@P0(Xor!{!VjT|Os$Y^W`l_~Z^DPY8L1^K#`2A>-rD`NYi6
zTtepMbMTG0FNVPHBNP-QDHOs>!V3!)G4-NCiU}4Ep@fih!Op=9W-J*(sSrwsP$q<?
zAv6o2YzXB-s2hSkgz_Qd?Yosic$s_jo~=R%N3Pee7y`d@LGnrnl|!(FP$z^cAy`5<
zI@|bUMuE8TdR1%4cugy}sv%SpUfon`gizDuwS?4W9m=QC`PC5kiE1`Zh7f)%m~Wk>
zSx@%8K?tvfP(NgR-l9aRaiN$OqBBEi5(3{+Oa8jJWeL6!LPH^RdsE0;A-ruWjf6B7
zY<ApuM=q~UzY{|95W0on2;tojT7=L(gbpFJ6t~tPv|$g1@Ke9^D{`Hgx!Q)%E(Cs4
zgC7@WtrBrMhR{i}bP;?nWW2w(v+$m2spR~M4L!Sx($12jdk8&3=o3QU5PCA8CCB?A
z^a>f5*^lN)>dn3wm)4-KgCBzFkz#ynxL*kUCGSAN#8=A)2=Ch0!EadC9G^BMgrOnK
z3*nOxhJ}omw~q~BTnNKM_;GCY5h3G!(IW*%g)lmVG2Gb}Hg0@{a^kJX<2jXH&YH|>
zBwN*YZ4*M67&5+G!|j6*CJCP^=9CaV4B?{?rqZXc@pZ*%A$-jGuv>Flr-#rxchcrZ
z$wimiW{8sbX5y?6W`{7xROSldw-os~NPgk*(-7u|@NEd2rSb~|leLV6AuI~vvk*QH
zp)fzxD7ZL;uUOl4nM=f6D#+AjLcS3ElD%N+D}?keVPsh;8CQkywGb++IqaX;Kd~Wm
zZ3y468hst>Lf90-!MaF3nXx{E4IzVY+sL-vo=I|bUYFmRcH0udcOjf%DBbegK-<<3
zj)ibMgl!>g4`D|L--oa(gxw+h5W>!o@%_Qi`WMe}&DwaRjp)s^?g?Qp3*s0HVIO-c
zg#8@be`UOoX?*{SpZyvzz%UPp$ZtRKOH4m=-qEvx<ChQ)g>X0oek$t-d*^WmKXaDw
zS=ZM=hhN2w%5Nc@2q6+el;ixaB|8Ln2%Zp}Vp4GlS^j6TSBO7^fDoTx%3sMrA)ye$
zrovp*iOdxXK?&gjUr4T7)DWr;vc*Fv-roA5rK=W#E(%}V*Y<Y(*1^n^A)FG0Zl}3`
zPqLAm4dGk}=R>%_wIvKo7#BnMT}F6;F#ZVPQV0)2cof3rknt+`tL!^2Q+2IZLMXI3
zYs;>z>(UGBs#tHc=&iOJA>0%~eoIJ^&Ry<=aF=|Ct-*=Rdm+&IzTg8vng{wi{tV%-
z5T1nalta3f^)c&EE{pwJrm9ux>v+bwxx$tjMvgH4=4=Y#pAeG52raeU>gyn0-)U^g
zVGvUUXXUd}KQpm-&ag2~(!xglbA>UWvNd-YdBVsmN`65m<qKnCA>$(j+`Rk>Ko~EE
zQ80{wnOP7lB>0jb#lm3}5nj|(iU}z$SR#ycQ)f*|n!J>d(qWVlQZ|foLdu8nvguPH
zjEW|&6h_W|4i?Al6%i|&k*#4=4I?9rx?xlcqdIr<n~Yjv<JtQfVblyGFvT|QX$sA1
zsYyFhl4^&I2RLnlbp&a?DkR^N6nhx8hudo1wKNb?FO2%8lF(lZBQp#-aC<$BdfqPl
z+h)Ts-VCEr1dStjD~z|pm>tHPFoGBAHwvR=7_Gu+EM^nIrh?4`-w|vcMw*uOu5jjR
zA%se6w#@B}DPepVMw>9&hS4sJ_F+s28{Z$_bhmzoFdSiY52Irkox*r8jLu<n4TDL8
zV(DGN=od>T-&L_&Ej^2*n<z}`5k}82hKDgCjQ7Ln6~>@228YpG^7aX%uMkV&Zp_t>
z14c~p{z6Ljb8s6N29e^BFoudg%*3{*x($?~Nk)b-DvZ%#jFHk4HDPMPhd4Hjabb*?
zyx**}b7M^I;6&NY4+JNLF<A)p0x#mDFs5?QhA~5$C{oV)t!|kX2JvH#oQbK6=G$h9
zIZKebZDJ~QlDT2b3*(zG)`js&7+gFT3w|m{bH0!Tf(r!~h4Go0`niy5{TxfeSSoy(
z;F>VL2;)oP%LP{nt`PhxjFmzdfAXW0uT8#M$g?`dsjn5D)z7g$j16HVN01W1Mm9?r
z`@;B<ouym875pxY%|fVb;qZ8vOtMv!ZGzhccL;tjNQWQ7*eQIM;BLV^f_nv@Z%w1y
ze&JdedKd@7I2guHTqye6j*I@Y;4gxQ1exWqkRyUe1%D0Wn2@&HjF{Yh6Z1qE*<m=t
zaEVFXFT^eA5%dcB!bsU+<PC5-h!P4TCWK-*jEKpjLfZ9nP*=iG#eCl^H!kLdFjkDT
zoeblYn5PBL2%Z&W-g9A`H~F#cX_E_QUF1r_Lx6~v!uU(b<uI;<aaH(3!E1uo!?+>j
zW*GN`+zR7%7<Ys-{@pO_Qmg;f?S2>!Bo(dxZKX$H{3*)58})aI^J6ie2tMT$5b}2z
z&%^jfcv8d|7~EKAB7>(!kRyTy5xf>b&IrcdP0nTdq(#t6MoVr{@<fnVNIt=I!Tf>+
z1Yd~Y#Rv)tFC<trf|rC87G#M<gv@T0R?Jk2M^Hlen^G1cC>cSi2uep#NAxlgloe7#
zuv`QdA>|{eAf#dhuLxoMN)fy)JQ0mbWihKnkZ4J(=~-1swFs)43Ts9Gnqt<9pth;o
zgfQT%LNZLfZUlDW^#tn+Cd$ne{<`3RyT**;mL=vJY{ve!h6!gL1%$jUNWEV_M-zVh
zF@oa}{1!p82;Pa{hX{7E5k}jaNAP(BizDC(=erTKh@fQzts-b0LEi}aMbIXKwh_D+
zLFWj*`!S<k1nnc}AbjRM%g=vWI!4ebV!Y}<T05QQnYo#{r)PB$rF#TDBKTyGt!o4m
zpIEv@;A(Dl@KE(I#US%+JvkmC=*^a7ZBvrwJ<P#4H)^N*)@SsQ2y}a+nYDie10on7
z!Gs6~iasKOkr51vU~mLOB0LYw;x;^jp(Y;|!JSDqiX_BQ5#)MonfXh`xCll^Fh<O=
z4A{>xqgU~vk5cmO&-k-)IvplP@IeIABKVjEMKC#nND1TRLQ^8BwlU))L6Q$6xbZNB
zWNO4Xv0S$?gRdB!9>I(V=0-3t0=|NNX2kfz*KEOAoDq*wXwDInB&{DliQv-+7Dez`
z1oK5-Ajq?2W~a|WcGH239zWZ(Cn<cz{rd+pn6xB<r4g))V0{G3BKRVLuOe6(!IzPL
zuK@7(-Exz!h~SSkS^T}WDuS;gxG+5J8#cB4(wvl*x;lb25#z@fe`>AeM7v|*$NRiv
zj30>`xcEn~l{*r_Cbsi!OQYv0n<ebG5%Al8{J0^XrP(6NcY?oJa%|_9Mh6<t+w6#-
zoIC-=pKRZA@B}kh%B~1@M{qELpE!y}+Y5}g?}=b<1p6W&KQhXGK**1R`vr5%N-s1b
zl}SHGaCMZO+tCPqG5H}OhXs#tT=lon;a9fCC_A@fLS9^-bs~c72u?+CIszvLA?N!~
zY2!xO-4S>qh((}8;Elk?jvHkU3;H7nMi7diXh!{jDAg~gGBxkzRL&ZT5fMqEoPCnS
z64eNFDO5A-uwrsr+~g;@{#;I_8;d>@!FhH^1ZN}IF3PzGs8<@1O7mg_*CMzc!SC$8
z2rfnN=4kt6K@vVRaz*%6!9?l}X;QZ8tq5)kr`w`_j@zbwN65N^Y4;;|5Wy@RvvoX-
z;86q}W9SsapAq~OL8BNN$M86UClUM@#r`OsM(~V-Jc<@k{2jq_u7^>)62(6eBt=m;
ziXu@YN0Aam!6@$Bu%t$jBZ^#6<Q8*y;iQ~V5H0PkX;I_n`GiZUd7_xz-b&{JQRIyx
zpP2chxZlA_{jZj3#1|wxeO?qYrf5<jAupNw`hJe0Q51`!bQEPoEFMLPDAI)wEt~|?
zvq6z0#wi&^DO2esO4%qXm`b@Q%A0(eq*jcgQWSUFSrcFTtsF&_DBg&oVHB1qtWngB
z!XCxp<fN)m)QqB56xE`r9>t9|)*7;>{EFQ9mT4^dmBK~^YDZy<q7ECaXws`v79*42
z-<z2cMe&;!l6s<NM)7(S{KRnmsPVbs22s2w4s@m)^(--2G{e$-Q*t#Gd`pU^{<fHn
z#B40sB#NB_ZR~<(QFO?e^Br-ZXLBJt?<Tj5qE!_0qgW6{>nPepF(HbHQM8SsT@-zz
z=odwM=8d996g{Kp7)7TjI!DnZiua@lR`17t4i@p7v|-mMZVBloML42Z+QHggaB-%U
zynW%M_oL`#)`TYO(>sbjQP6=w_>f-zC<a6^GKx`A42)usI1gj>2HNP%EQ8rfQaZB?
zje@yIHs;JZJc<!g77L>1Xo*SxG2Dy7N$j1mQIy?abkMjc#+!9u_79?%6vgx?W<)Vr
zB2SHC8hg2ebxIT;Mlq~t68T4>SZ-Pv;p0TDiW>E2m(7ggt$WF{IIt!A#v(~`*oikS
zbEB9SMfbu<<ex~EPX$j%S2FLR<fMgBEQ(@F6yHVhSrnf~@pTldS@|fIM6oH;x>9f{
zBS-ON6wAb<{%R#Gk3ws2?RnF(wLDe`r}>qT9~!2UuQK_XDAq=?A&QMrd}BsfFJxU5
z9{#q<w5E5m5;sMW)G4cMrj<A%)A}u2HPgD8c?%on)+n|`u{(-AQEZQ5M-+}s>&_^?
zXRo!h{=k9S)_SU+V_K$_Ci$B!({@F1{$4Vt$zIN&OzXZV?wv>@xz{0!$e0JBILH--
z<;L(+6hB9CDvHxl{1U~XC<0LgIq#x)RygT6yE}>_Q5=op*C>uj{Z~}Vk*GY1C6Szv
zE^tQSiXxkR+QG`LS9|NY0XBCO{wPR1QFx>938z_gZF-&i$s{-XIf$Vs!cpi^#G{Br
zalDgNm0pVq#-u?M!PHmlv;G=;@KP!VMys2aU7f7o{*ihzijOa)GU@5P<TFv6<-)?f
zj^Z4fB8p2<T#n)bSCzKbi-P;wS}PYx`d#=RQCyLU&sC8QSGdA(-D_vP$|?DGj%%Ec
zZLQY@n^rLRO-?$lU7fOSvwG~2c2<hz`MvVCR`UB%Jc#0P6i+yXZ(2^au|ABVYO$n8
z(qDf@v9)6sx4)ub(w((wyWdTFDh;^wNIK{BGad!RB!4bs@4IQqF{H#$For@gq{fgV
zhTJh@sm~chS`4S!TK{>;m>0Ro3nx+Mw!5P>PYiiuC|V>bU(7ggyck1%Aq50q5Trhx
z)sQc8z7#{@7+#GbBZeZ(7(<m9EHM;|p?D0XVkjL$3CVT7owcNp^cY~q334@VXXScc
zCWf*xyb{CU=4s_(C?7*5)2BiV6@@39S?-x4NiWCndRuE!e+Q8l_bSIgk;EE9)fjBz
zUrn$^3^j#RkKvfCdp~AcYsFAo#I=Xh8IW5dsg8)`bz`u{kQGCt`^oiUs2@XS%or^V
z#DRVE8cAF0^!~Q3Ez@W|<Co>xbOUX<D&UP68pd#_o%PKa-V%StKXNzuZE1gUu5wLc
zXc|K+QP}d$Vt7~hJEqcH2>XbsEn;YC>RgLj3vXj8ZDVK`L&CFt3>~Dza`%#1(0eg-
zj-joFb{e|G&^3kzDqd63Ee1yn9Tjv^&^?A8F`SR#LJU1)ct3{EV)#6UUNQ8JVPp)W
z*no5FePS38!$9GEW4w-p$Q(Pj{u}`P9ly-6mmib5bdG%xdoYF}Z0gB1hYOMnjbWI{
ztMqr&9+^5KhMh~g<lU1oI)-f%?BipY5W^Vp87nxBgJi7zt^N+;#27w^VP*`oVwe=e
z<QP7RVQLID#@eUEFm8M*$%kSxCi%1&;vd*aX0Xd*m@Y{j`#TaM^;6?hXU8xnhWS#~
z+!*G?@QGQ&;*V2U=YmSNPeoxRYmG`>5W_+?&WKb;k8X>&gA?r~C)$aNV^|Wyuk?&z
zX$;G_J27l$*TnE;4By1CE{5e2=c^c2#<0RHWnh2Dl>Ux|{T-`f_&SEwF|1)PjIga0
zTu`iAetw^QlHE}HJJw4pZHnRB7&eH*MnR_T>F?MqF}K9<osbPv>}+A~0&BQc_MOpo
z#PEF#dt%rtK0m~;s7CrO_5ug(o{WRxEH)jp?B?1odH2QeV+;prN(8ppe(^lO@i5Nr
z>+c}`9K$a$9F>5F1P==`PSagojtFO))8w{kWa{x4ev3hkL5typq<UiT3dt69#^4gd
zK5`3jEVKJ!@W&8}Asj<M#2_d5`ZUI5RoMddMx{nXkH!#-;qb^*ZcIIKB2AIXGunmz
z4(_HdZf7|>VmQflPs}rdr)BRRiW|E-QRj0UaubaDUyR}R7+z9PSiv7LT;kHIAXUNT
z7_P+dw?w!a!?hS5@uWS5>oMHmG>qYH3^%34*j%?`xFx)I&u*ud*{RI^vP-@Jj(agY
z;8HW*eqU0jkF%FrRfDMy#iafhhyBRZ#~fE@GpH{qk^Urxr!fp2lS-4@vluE2aMT^(
zc+Pboh9t%COco?Ly1?FkfaAtkdk%#k!b5%q1r($y$fe+?JsEiv<W}%}slD4=JI%I>
zyKu(km85(MKK#<ojrxVT_7@a1S!yq+;6(-f1~^jE(^=0YOYMae_~+V5iYO?mpq_&I
z3Yb((L0JXm6k}8uS5QJhx&kODDM}dy<Jxp%QYi(cMVZ&88#gN7jWW8myn+e}YAC3w
zprV3G3ib?eR8#P>f>#t+6j)ik0S<arR!~JEyf@L__EY;J5vwX#CxqSi_E`Hnqf)CY
zm^CVuLCQ_A*HTbN!K(^tOGX<5%3LF6h{CWROEu~$Xg|en7ySA|djkcpDQL{5;I2)u
zXDWD8!Kd@>uPew>@P>khqF?&NKJF7c9kQjk7iZYtV!O?-zpdchNA^Yv+J0mw@l3Th
zRnT0)y9$~~#&;A@JU75G<YRja;jI<4QP7g9pW9n0I6ck&#z*#MpBs7GibHz^?SwR$
zW`8umLA`^5JOdr=r`q3B&{=_3flomf1zi=aRq&01ZVDW14F$8g{wwIAV6uWK3VJGd
zU%@B^qZRa0&|ASk1%njyVOLJK_g64LL0|U1n19c(e>v8^dZC>Iru0BZ@N&lR(W!$K
z43X3k3Wh2ereL^&ucq5;ivxo+6+(r%MzVA<$0!)9V4{K#6fn*>1rrn~W9^Nn+sDgT
zqDb@bEc?STsnJ>XL!(nCG4kkC24ox_cRp0`k%FlTrg4mowNIBg`$wmKEQHxd4Rp*<
zFlKZrQ)em&&ona5k>DJwUn-cZV4mdtM8QG@i`cCS=CiMt*q_d{_n2W{pkU5G$BKcD
z&lG&FV6lQF3Pz4G0**{nL$cHSLcucOrREr=Y#nGE#g;2r!KP5qVxfJtg6KfUN(HOL
zjmp=uzuRWnj|_CIVP&S<>0p^}U#DQb0+-ZtgMy6;j>^2=q~Kcxdll?cuvx(t1v?ac
z&%PUH|4u=%L5^(-t`2l;73J@Nj_o3zpK50keSQ#qkAj^Fb}6_}v>U~TMZ4`5z3Lzb
z7pQ9E?LUfnkgI`${lX6j_G;7Z^+ArG6?`$K_+e3gQIJ^E4k>6YMKItI5eE!%{Hov>
zx5+h+3!YH$n-CrpC}t~gvd0HG$PbF*mi_gx9R@kLQTHndD0rseZ+57H5SOo3>6h7$
z3L=~o3eIq0nP`tHh|Bzqu|1^-Re>%<6a3(_e~(8z;-6HEW8W!39wT0sW&f<ixhT%(
z7)r<m!9A*Rh@|K5JPL4W8f%<mTvD)MnL)0w!4+Ina9zP8ncz3X=az!o3T`Uk0Wnvv
zbb8*ABJL@;ui&n5)_nCK#{;SPLr&fg?7IgUE8Fowj@Tf_p9=n>I5zdMf~OMs31{d6
z`>pwQE+exR82DVlKU^?XR8*0q8dD%uMGh6os?qG+QiSltAg78n6~$B(SCLCaZWS-8
zD5xTjYK*%4DhjB`t77zQdp;E$fma6^<8c0BV?eH$ZGS=B)-1Lc67rIY!YY``yoYDn
zi>TmaDXOCBEc>Wg_PPu0zt6OnP?4^pw2Cq+{vPCjY8-b84|bGPQA(7=QHDuhZR=82
zMT5bP@+!)yXfoH%t@2<8k1r`p?Uhu#tfH2R+A3aAQCY=+!49j6Dk|Cyc08MF=Q?ar
zF>|J!=E_<2sw%3fsLnV`?KK5iZVlBqs8Pu=K9y)wQHS*(?8s2TWn|J|$Ezydn`7VW
z&LY;8B)cGe>ZzzNe8XS|%}f=qt2m<KsERDrxaab{YW(-`4HXSlys6?X6@yg_QSr8l
zMk?B<Xscqu7F%Q0xN+Z{RZ@++@J&@T6a5`Aj~7U~H?a$Kes%p_6)jY>WIt}T4bGFZ
zm5SCXrfxHy0pRvWt*mw`+N*G==+5A;q*3gkqN9pV+zW};O+{xFT~u^c;mx0Q=@o0%
za@$)?9Ob^tDBs?evt8ELU5#8lRP<EQSF-%`LDu^!dUNmUT6>AoteTZRZ>>q|qvF6|
z2YEjg{n`F12C5juMktjP8SE&x()MJT5xjZ{!)K_9VJar6n5<$r+ebo;6CA0c-s@Ro
zgpcB2<345>MGV}Y@yp3>V^#cOHO%oUCUD&LFJ57jZSwaS6S)^ZWPG6F)?i10<+ds8
zN)?~7M^t>oW>GOq#cYW=O~rJY`K%wSxL(VeI>ZsoXPv>Zp<+j^tnJHe1z)m0-j*?k
zZIWq?C8f^eU{(?M#x{F<2Fv|K#kVbOe}oLaKz!Cp*o7(<srXFA=PFjKSi=d@(7ISf
zpXr%}_S>>2*p{duE)`s+;tLgD3STa`QgDUfSAs{k7`aw4xR~Uxt~0iNuUb=US+}mU
zeWPNXiuEcssMx4t6X#|g>+1!w)E{hZDqAOJSx+yseaqBwwt4$(n^kO4LGqp8RzaHE
zRBRW%LvZ@)42nOf*vYo7md-m1yHxB}u}8&T6+f!juVNqDO1I=FnZ?@*wR5KOqwNP&
z9Av+!xL3x?hxdNsXenjAV@)IeEPQB=)FoxDhg1*`t5}(<MCl=pUs(hf91XcN99Qw1
zinA)tsW`#?RiUU*RXA0+RD`(&GU|1(xmEbt7b-j|_{iDda#pVjAE#0|>!G|^t7c|7
zdZrakwFXs$IPc`X$+MxhNsDa}Rz8psRT1Mn9pXsbL*Y|=d}d5j5m#|ih0fw8q|NDP
z<I|F-xHy!uo|Zjrv?N_GV?86BJN`va+j$iixH_qLuHvGK-&Opj8aG+~P;rU#>!YlP
zoO&H>m)RhqUlH@FAoXh;cqYH0;->IhrgB@w9pQHqN)H>e+?O~k;(@f`!>%^+M=JhQ
zjelE@o03H=kU#4&C-|#fpKzrW@=TD*#GW?R{2vuLHKXs6G@R^V>r_51Swo73R1NKW
z*m4L~?rB?l+tPJT7W&%uI&8T$<k4W&P*p>{QE7QK6x2{i!}C72eAMfu<=3$7VrBsi
zFKEVHr=vY=FN#8PwygCf4aGDR*HA4ztFRPZL_<*_8;2XuNtO`)vWDMFS<^LuBOzxA
z>Lo=lC0JTB{=;5Ikff}JawadYp@PXP3aO-l|BI*FD;g?mxN@?7ofT<SG*~p_vCjdW
z(pL{Mp69Hlp}K}QHN2&vhK8CN>T0lS#?7@_8tQ0xRYPqJHb%&8Jis}$tF21j62*qu
z$TQdocPxL(3jt`>(@<YS1Ib%GCFwN{nHsV*yul)FC)0t&y)LOI`q=0|rJ;tlLma(Q
zt;DxAG}6#a!#f%pYiOdOsfH~*jK>|>5nak!3-+{eC?2+?HD|z5)_0{%dR*^D-a<o5
z&6sPgG_=vc_Y%CZF|D;I`^(q=qHs<s?KO1JP(a5EIy!3Tq~RA0hcvvWp|ggi8kX_;
zkA|)qhH4n5p_>MWh5?#!iLbk0Zw-Bf^w7{#!~4Q}k>9j@*WSw85M$e0TNY00D|$c8
zxOv39-1=+AwSAI-nsIe;kT?w1Fhq1-^RFjYqK0c2p<$Yak2Q=GpD`N$lY&vgM+@>g
zB;$<JFkZt48YXF&AbQ)PNfR~jS|3w+iEr2t$7IoYJ@z9FQ#9}r;)kNp;cVfgslwlu
zT1^-JiH1)#%wVf(n5AL1hIyiw?r5E(VXlUp9sjK-uMLuCRWWWr%om@}G<+^(fo5EC
zT&Q7@kiA8cXfBo{-nrnOGRqPT#|kI$dgd1zzLW;pr(wB<73^*e--+{A8otr6PQywK
zt3>%)aE;(<&A1iCTQ+OOWK7;sTCbr<k)(|pHfh+vxpvdSjrzCZ!#h@+H7u0Y<82O_
zTRA;7{Gef{hV9~$CcUtO4c^AMclNyyI`c-=F3u*l%vxiYS;`&_do|-e7u{G2EAyj<
z{TdEvI7rW;Nq<+uhWp9cZLL4i>}dU2aNYnL`C$!5G~Cc|Q^QdWziNnSP}nA%@)|rE
zyc`u8PH1pxSbM{gEd%M-lvF2&sNAOEO&kt6<NXgB8n(0Yj-gM3pU$py>H!Tw4ZLyF
z`Cf8JnwMfkLs$kXFRO9{@)~=T>p-Wh+;66<oRS*OYB;As7oRv+MYhb|OkQ|D#l@|y
z^|ZwC6g4iz^P2n_F?kLDyoL*088lqga8WZ}Nx^I8m$`^ZE}DOccu7Oz-4u@&q|@P=
zwD!G@#!Z3insJ%^Ny{|iEe*Fd{KH|a<Bo>A8Xjr*Q^P$C_cc7^WNc?`*2%cY|A2Fx
zw<q3BBXZ-V{%66gzcf7MoXxa8*1(%SPo$FES>B_0rr~c+_IAcyA>wo4Pj_Y{>qya&
zrX!bbv{<SR-UrF4BZqF>#iMhj!b!ZFzyZ(OE_T7(I({8s%cCQ&kb76V<<mjTFUWf?
zFX||$<6RvsbQIF@l8)*+YUn7eqlk_&I?C!Os-u{WbRE#an_n!bxQ-IKaSM#~|G9(J
z-#o3Pj#9d@T<~Vo2ZfFMLEK8~Se25>4&@!0aynkt@rsV}Ix0wouMV*B#!W>X#7cri
z3nx|9vA=sd{jEBx=t$h$u}CV#syeFa7*HUIoa+WJ(bv>bOGiT;Z|bP6!=|I2j`}*9
zUrJ?V>afB(GIZ2sAKkD_9pbR-#;xAO`o`(7vA=P1vw@D+bY!x5%{B0K@qa_d^83kI
zI@qMu?<Loi@%)zTW)s1;#f=df32CgO_q}AUAx*_>rsEwU&2>zc*?OR|F(q4aceoci
z2I^?7qm7QPI=bm-tD~Kc_jHV_mBM~+FL^uZ#(lsJx^Y*uqu}O0QtL}i7^<_5E;_iL
zSH71_bV#k<*U?Mr++8B{(9u%}_k#C%d+X?<qn{{@&{zL=o*MjYMt|MtJ~lh2+aMi-
zSs5MU*=Rb3vL-r4>KLXQV_;k{V{WpZ!*ye<vX@8c7_A$(#>VL24LIJ9qezq6Slzf)
z#~qoVV<L;tF-Zp>0N@QEZY+ATjww>5={i1?K4S2XNbV)`STI%gYntH4f=vCOowfA<
z+YGkh0G=ip$XPH)$6OtMpT_gkn5W|t4&zfOdJ3QFn6KkT95>@wpktwqtT^6?W08)}
zbllQ$TgT@dmO74drs!CrV<~4D_mu6!5_PQ6u~x^I91=QKa$vKwhT2x>_)6#NYcj}r
z{$ou^iWE1_M!wdK^Ooi3GXA)hv0BH4VW~Xsf205V?9c`w>vXIa!av1a?qK6Pf_NtO
zt&Yt)_ObhPY+=vp*sWuaj;%Vj>DaDghmOm)lX<$%w;u6S<a-@I=-9=EGXE{YYV6d(
zQ(wLuX?$5L^<BeK-|BAL%Vz0jJC<VQIp=;I2Xq|KjWe{oi*QiK&pLkLjJ|F8Nib(H
zgSBc|A}#kQ`ysA5<I)c6;E8uoH6AhIZXVNdT*o;b=XLz1<Ae^sj)3INmYs6zaB?vz
zWj)`?=F*Kn{>;gl>e1nqRG*H--%K{88RwHh9U&cY9Vc~!bwn6Phoh%$-t4TX4n>E`
z3YWIV*z!XhB!}x4zoKTmRwYN7(pFsx<yk8qwK^ra&geL+<8&fI87t#ty_EAtAcLo5
zY(v)nf{v>?uIad_<98i@um^SHk3yFvwZn+C;W><2T@jJ`@G)sc1{lApu5$=+1<PS=
zS<ZS>2OG269m|w!8FzHt<(e5skvQ(@xUVB;9BFYp;KM&U{?U;X$0Hrg#UM|lls|R+
zC4}{PtYc>>YmsXiPjx(#_Bk{>?Qdr6ZsYb`2v7Bs<HouAzL{C6aig{=g50|tabsNN
zxt&a(T*C9lkuPriw8<Suo;dhVAC}VeX%4#OkK@I-@iMCw@vH)IydeIQd9O3YS}<;O
zQz1c;mxSzIlT|d1VsX3@N98z*$5A4VQgM`yBRy^ma>P+Gj)EuaCkAldvR2lOzs1VL
zQ8te9aa52ZUhkKFU}IXjIN$x4!9T%OjALr<RQ~pPSyC&p>2f6P`6rnp?YB<0Dsfoi
zs2ztb4r?4$<ES1tI_|&_2M2bwI8Jvq&aR0yq>?qwI@gM$dly@wGZ}T_cr}jtaWr5%
z#L*>Qe_h@zyHvQYnAr={@?FlTC#5&eTY?ql?BMoV+?Xbr3>Zh5Vp-&D#)fgc8ON+R
zX2<bX9B;?bKaK%$G>W5f9PQ$0A4iion#R$ZeN@icERJ{L#vl4x#L-*|Jyj<?RNDCe
z+PiTS8k|nTzGxXoE2+TBoT;O)X7CkZZQ^LlM!Qs}-#NqV5JyMGiKAy6o#J>ej&RP@
zF6{R>_^X7?*x;iql64)^yT;Kijv?)B4z>X6)55lsFG*`}`~z$H%USPB9eTylJC4^r
z%wo~ek+wc@^!<NKT?dpD#q;I@OB4ho>_^Vrihu(P9IOkdD2n7D$1NFDB<G|U5D~<L
zBngs{V8n!gilCxMlI+gxgiW)vhaA}i`v0c*-FyG{`qlfoI#*TK^n~sSW9CZNmQIZc
zjSA!K0j?7xeJYI6VN4EV3WpQM4=uc7!x+cmufdow_VojeXFL^DJZnN26T{%mJLkd!
zQ#_NXEZzT8@oGEzE01LPriL*sjAz4`8^-i7W>7?vJ+o;o_jv1b=SzFcl#a~`<GX(|
zDHD2_Ibl2_G6}xnO7c0u?9~gbp|<aN8eXBh+wsLP<}pbuftC|k9?1QNhdB8cgz-uk
z--PjP7z@K#6vp;2c7*Y27>mPL9mX2^|1e$;V_6u>>HoucQ<_*3#-X9g%A475g|Vc+
zLbu80-lpNnmb9e;*u$H%JS)N+zH5zr|I1t{fSz`hfH|Hl^4Es(ZWx=w*c`^XFxH2$
zL7L#Fn=HZ%yq)B&=tj!nQck0?)dJbREt28AFt$=k0~7}C;@l=o4z_SiXlEGjhp{V+
zPs8{ij1R;3)93j_CNdw+FnmPy)%JZHM$_W%LmPIx^bF5uVSFCOS7Gc4<BPC+wi_P~
zd`YEDX~Wa@b~82PayAcFXlyLCm&%oT=#IV)yH1G?hjc#`6owjx7RG@v4u)|mjMHI!
zPumFNmoSddAj7z0Z0P4O4zq6qltW?sB!GC(aesWYhgC7Kp`&3O3*%Q;1v#9;$HO=w
zdL;IZ4RKZyoGjv;4hPSKahBo@<KieUi%=lvWODJM#wqrj%okQ077!YtM8eR+C=ity
zVVGegD5x;3u=~^{#@R7gi3)yXtb4lMyuzF~&8aYlx8ydpHe8vK^ryo}3Fh>7WV(?*
zV}!DBxWYZ8i_NTyVHDDqRJ^X@QW%%RXs)7#iYsAU4ddT1{-gg7<2pTXVa6@`|1kat
z<EH4eYrgVl7_&=N`#X%kgj1uha;j9Z*;73KgfXfxgBD0TsX4(zM?ELYS4`y&LDW!D
zQ$?nVES3Hi6;x!aD6ZlT73EZJY72T)lu~i}dPWHqd>~d*=)kcd;&Z2irB#$sQC0=<
zj8nnMLzQ`l^4}P$v|N-|Ud7I98IKj_a9vSRMI{xLRa8-VlqksjChTrlE}W>mKS`;o
zx@N`z71dPt%EI7PF}kLYj-|S!Hk%h@hFU6WvsbEnZK|W9u8M{#8mX=d>IrS2qP~he
zHF#uV8&d9LWm4m!`fHRf#!8w<bkf+6PsQCTn%=HoD4(?4!+s7^XjIJk>e$e|Dijq@
zs(4C8OBJnD3~=j*Uqx#bT{#vNZB(>X(OyMBMXu_e-^g}j8-oPxRD3qa1^1~4s(3`j
zqbh!ElKr6W=h2QGRCHAF{OTY>Cjs{heL(1gDmn{zNa({tnX`+EH7#=q=v$s1r-W`~
z)EcUEQ_)>T9~FI7^ia`LbuVYVRCmGiQIqW7+6?SIC)it<<a1wnKNV}IdZ>uUS#X@v
zpJtZjixg&XF-Au*P({9qVJe2R1{GWu4yEqKDT7qlS-!z4(yN0*R8ZXwCn==Ep7(N|
zj!?O*${9&HWcvu%$|%842%VFYP5x*VPpg=t;u#fVRE$+IRmC(F<5Y}Sv9Gdg2@_OI
zWVXVbDJmw(5I7~bj1BR+IazhDr0m06Rox8V_YF=LW0<L8hU)sy1|?i?N&A^43Y{(H
z#5$i<F;~SrW>)c>B)!OX2Pw}BenBX+O|1MsCp=%p%QBpWVh;;cydn+JHZp7aNLTO0
zBAE-X3gvWIOmU6KCwN1}n<|o&m5R4iEK%{5ial&X#Zr~0zhb9~Wh$1d*rZ~!iWMqW
zQXMMZRq>9BRn#wKJ60JM&RI<@gk2ZcB%JfW6W+?JgZ(PybAao_+BeFO*Q?kdfc)9(
z-D&bdW!Ek9P|YnWwyJoK(`1sejplm9&#G!y5Ayl>c41PO@2mKLR;uE26(6ejNJOzq
zg*8<9SjCIkS+|RPB6FN-{gj?zvhsJPkCXRcZQmCvzErV&gu(~@uK!mtm@agXa<GrG
zmkL#JOvP~(U#s{=#rG<HP|^5u1{L(Jiv23eOV7VkaX`gEdY%*hr0V4(*0IgAxw8F{
zS|}aNoZ&gF;*gjGJM$BDs)A3I8MyrZMfgWpf3@II!R!VvKqplE%E~z(RqU?gJE`If
z6{_MCr*PlkY1KWQfPtoUPJ~HE(Wq3lw<o!qAjk}JvZ&BmZRwyY-Oz;cqQF}uLq$|Y
zOf1BtH>l&Yq?J>nl-~P-^@b~P=}CgZ85?5Y5vC~>j*7ok{KM&^qCm{)FBKP5{I22#
z>DbUk6@~QnY?{lbv7t+nhub<XtGL)HkLxa0zO_28s<_6^)bTM~7r>?UAC%s>5Eb#K
zsH5h%&|f+3;`}D3jEa&PN@@64#eekhn!5tw*l8-oG<U{j2+h<$H=8Axfb+Vz29Jhn
zWr8I%v>f9lU?89wl-5vI!yTGyCuKDBc*4DxIWpW^PLl<{hI1)@dCfJ9J2kxdWIh2i
zRMcG8T}f!O@|jgMRMjv&f*BE1)8N(6PD6VQ&`@0icXYPZP(wpa4Yf7Y(cIUje89r@
z)U{YcCHIL<T@Cd#+^e~diTLD-sr5B9(6Hx*zoCZ48k%Tmq+x35tPYKHi*0X~qrs=4
zg$81VyEU9_ntP9irow4EE<|Qlfw!54kM7BBE|gV~Ic8awLLq2~)(@`wQfZ~(Mvl)f
zv|)2!YYlBA>EJ!SE6sel8j|pRRk0XpfCACbFoH%A1T}Qvql0z+w={Ir&`HAxukTq6
z_iK1SbI%GGrQtyVoi#ipKudZbX3d`ldTZz-oGuz35%8!`mg*|tF`?ZwbQjP=Xip8j
zG#qb>@*4uL$GyzV&{so04gED->g;m9{WtqI|8WfiG?ac!$<z3|8RTm)*EM4psv#tJ
zkkG+GhX{QxyZG%q!z4Of=m?=Bg+5%Y_!AnQ)bNz_ho=@itzooA$L?pNOK)Y5(J)rS
zI1S@9%%Fs~1tw5p|K?8CFh#>e!IOl>b_K|v_-F1^4bzzPXYOzB=8-Z?muUQh0E^Gm
zFiXR1scMeUXN2}07h)=Fm@8tZ<ewApyoMJ9yjaAaN9)osU&G77SuAuxQR*uK7HU`|
z;8meh#)ViR!)qE|FUt7_Ex!me+Y-(!4NEmF(=cIYGoC2ETywv>;I8=w5v<U#Qo}pK
zA@h=kRf1P*SfgRBhIci5ui*y`>oly_@VSOBI7c*W)bPHB4>WAjuvx=<8n$WJ!ilq{
z*;b(o#)VEF4l>$sciwglJ2dPRJ~{k)fpoy7Tz>dR@F5Le!!8Y<YWP_4d?K{Oiae&C
zS>)znm^!a2EBQ=AHzzkznER!M-5S2u@QsGAifZ0Vn|TX+B>L6bynRLd8PnZLzSXc_
z!*{}bubcNkQR+dCbX<rZ67#E9X8TdYAq}bqO~X$be%5eG!)XnNHT<IC7!6wr9?@{L
zsD`_*<+9+tyWI|-(C{lKIEx$(va9?Kr1O$I4wjgyXXv9eoEL$dl{{oJ{HD2IdW5Md
z`E>c4t|5Nr5z(M)NN`?jFlg8sVjAM~e$sAK==O1LpBebg9w|k{wletv5*?R@0u2{5
zFv=uHLt2Wk@^7Tn?;6<iiy8`rKVXGh!)>h{9v8YSmT*PGRSnlPT-Q({f|3#3(C~+b
ztca`YKc(Q`8vfDnmtZm}nVTAJ(YZyC5y9cEp?@{}C#f_BX1Fa10_rp~f-B2B96O^7
z*%1_vz!L$JScFMrmWrTs1b0PHIf63M?wt`-h@fl)cSy8c1mz?AF2c*9G5=W^T}4S^
zv{D3Z$GFBr%xbGdP?bp$)TI9}%7X~Jg89jJbX=%<5ucww)rz3DMC(UTCxW_y>j^zE
zqs@rHZj0BYMK;0uIkTGT`HdrJ5<$NR`bUrxfiHrGB6v80yCbgqZ545kTxc5MUn<;a
zvk00;&_ZzU7TM(78-Wr*%Lr~q$;lWWVj%EG&^qFN9MUF&b{zFurL9DBg?d}L=cTld
zAP~WQbp8?CAHf3=bfCn>hdM^kDS~LvV3~b^^Ir!?P0u4JHZYIiLCSVtpmPMbqsO)?
zWNOuYT_Siaf^HE!5<!8T%kZdxu0mTi%jT&y-6QB3K`)B5xUWY9TZ{X6SPgM+;q(#u
zLdjx%1(3geZjk#8AD8Ix2nIxu7s0>?7LQf*mQ{yDkRL%Pf<e^#2xV{tWb#r@%wy!4
zXK2K|#1D%=UE+fG#wsHs7#YE+2%d;wd{HaAZe%<u_$i^Ii}+7RFh=m$BF;GWA-fnm
zHX(wE!n_@wBzUsWDYQue)BazEnGwv2;Ijxmk6?BLb0T;nf;S_0CgOf`^<o6`B6wCX
zqjLp3C-ixtFR-_=JNu;w=5zSMe3`l%+3x0wHVY$IAe>i(R=tordQuzm7e(+YjjB>U
zF{^z|QVCv<K$C6tZ$+>qf{hVuis0=CmPW8a@+^yhhlIZ?bUB^BfRz!fieR;5cqfA0
z6^b#>8WtRsO|Vw@2QK7t7dfNrq{w=qjNaZ_&VB1YRxGxeN{L_xMZxpmXals&2woYB
zL$Ta#!X*FHeW9HZydOcUo7t7O`9Fx@!w5c+)Q=+gID+sZx47QJcl#v9!z0`6lGIP7
z$TMaxQ@@Dd%LvXyaFz~Xn}2r%-$d|j1Yb#%oIMfjEyDXE*fQMnbp($t&Tq5LzhC&R
zj^-YV;JXM8L~t;I?>TXV|3d^nM$mDC_vZ)>71i)l1dYdsSZ$+ie$vAc{6d)=&Gj$N
zKifY@4#Uw1Zo$Kx$2qUr)uXw;3OyzCq|p0rW}g<YvxkQn&P8xOf@B1C1ix|M?94;H
zm{2u>(+~Mfp;`pj+IS<J0`#Tl{p1_;X5&KymSl(uJ>M|MF7X`uc*H$jKOwZut!yp@
zQxRNcB@s9gq&a6JxDdf5HVq%c?-5*#ppY4Mc)E@c(ZGBca(TR!|7`HG<hfFmlP$95
z>k<4B!JoVeNE19T|9pYl?q3r9yNF57KZ0*Yz-}=5A03PCE|@>Hkf9?}$2~fl>B!QN
zt-EI;)zDE~0C7nj9vvkZEn94IQ}2NpS>MdaDy5^ejxsvR>Zqcls*XE!l+*Ehwy&a&
zZDosf%q~`5M>NBCr;c0geGC-@6c)=GG(J>G$6Y#xxA#>RN<d~c9bTznYsoAYgcLs!
z@>UlxVSI?pnmTIfsI8-pj>bBg=%}lso{mQBz!Fb=Dc(@W7vFmt2rj#-4ZAewn3r@_
zJ0FLWqr<0jGf@`t-5ghYULe3EW?(4}kbp_eb+pvcN=FOby(rwPL(%bTiDHLK6l0Xs
zucI{!8dz<hjgGcDF6p?eBUeW|9o=+v*YU$+N_!m-2ngu7Pe4#d2OYy+$nV=F#0(vE
zbkeae5-8nMxnDAn`Ct#_LBXAiI1lM~SV!}23PTqGkLY+*K-VJvW4HO;lpZ>I>R6=X
zRUN%_^wu$2$J09c=;%w$Hpw5T<B@JkKOK+jxPHaY*87v+U1>QxziKySfR0&@Ay3DG
zYyMf?lzbf_9fNcXrYLlb)G>q_KOY!I-RT&r<N5I+^{Stoc0I6sd}u*l{^#Mq->QF<
zjwf|IrQ->m_tF0K!vY^R3Vk#_)OvWpJQY~nLm8uEtd7|_=I9uwW4w;ZI;QBb4ttk%
zcSkxw$3z*_q@ppN@1ac9F^$oNp;<bn>u5M4Fhj>o9rKHaPSp$jIXo~ln8(n&QRt4{
zdB2PgJ)`4Ujzx#RyJF7HpR41u;ei))Jg4KZWPV;pY<!4CUeqy9$4feHjt?>EWdZZ4
z+2i?ag`B%4gkF()7786RJis~^>v&Da_tcb**LA$1W0#Ikb-bzLEgc(lY}Bzt$J;vI
zp~2`_s$)&L;>$PzId{5cQxPjf9V><Yk?$pk;b{5d`%7i5*72^WW{r-uI@Xmdemk}E
z(R}J_osRX?%h|xDtA0i|>Da8}LmI{nf3qw8Ejr%gWYn>hv-^t68CEK5yXaykrvN8T
zPi2P=DuPKL6y;eoGVuNR06AB0<$k2&V;!Hc+rtChx+`<`1g*>d&vblFi`DTpCz_5g
zb?jk7-IU!z*$v{aifWst1@;P`%pVSWNx#u?kOtOG`Buk%9p7;-AIUo)cHVSC=%MTW
zE)(2&!G;EBhkn#?NQy^w{G{V&9lz-aQ*k<e;e6C_l2fUhLaR8U<0$RnivJk>)l1%9
zO9RBmb(|1p@|vH~Q#wvdL+3<9XLOtuKylIRE7lLaeLhg<@7(h`CdG3JRBGgspItI&
zlb8LPj)>UI>KnN_=k?woO~TZ{3=9^{th++M&c}4bbtH5ob=W%6Iv@M+Um;+x&U8~+
zHOViSmG4MTQf;ah=(s><C0f2HIoDnDGym`jp+X(cOb8KQ(Q%a%*+3ry*EnbC{R}iQ
za6@dSyn#Cn{GsDd9e=R~x-|nO4g5m`)=|trhJjmj^4Xz(b^OO6|H{9hgu<4;>E2+*
z*}#@d{!9Z|20RAtKaiJgU}cwfU9aR8H}G<Yy!U(|(sMoB>C<Uspp=2q2G)iHcNqAh
zLtYsJWepzZ6{y)=+15k3)m>pyIRoU67!@F=g5kOvuK^gSXrPjTyA0P_su-whxIU+{
z;Ti)$HN$m-$FI4<q(=U#7_4rfhJo4!>KLdg^$cuNwP_EfmVw8w`X9RDr#$N#sAr&o
z;YygHLdQJ%nfk1`Nj{?u4Ky-9re}Ddisq*m$}!;MFbyzzx768nRG^iCrUvdYT>EKe
zpoM{Z1vfXqR8EuNRsYv}g9_Vi9AaoGsRVult?B;_v^5YgaGybIM6Q8F=K}56v7XA6
z9tvrD19x2YQw~g}0R#<nkQzD~I4|{gl7`qi3qD}rK?9u)JY=Aof$jz#Hqgbuqs(I<
zTq(c8C3l#Q$hhcHInwp@Li^WMeT<w-{`<OwXqi0>^fFu%?J1Oly)-PasV8;>^ZFX-
zXJCebnIiE12A(opC-As|0m8{MkZ&M#Ti^yd{gq8Q4>B;AIyErT;L*GJ#sTjT14B7p
z)^o`}oYFg*&oH4w-i-5s<r6}q3_M}rNdp9A-cJ2!LWrJ(`9~Xg+Q7G0{bLM_X9ffG
zU}Fu8V?CGr<QMj8H_^Z(1IHgzrWu$_^S<h5m?EHE$q?~W1BWKK;N1>+(+z0n1K)O2
zW*L}m;6(%T49t<*cqysa3(p9C*1%i?&(Vhe&1FN+8{pN7SFRT%Ri6+d^CbfvgL#WP
z<}EfbpHqN&47_4sA=PT2=Rxmd2fe9zUgoLMA@4>v{65e7suUUDrs``3UN`WDfj12-
zH?YFMTLzXGc-z2I&cO+xyC#NM^RW(j%_fGHvHp?m-dT}%q)9%3k`*FdY2Y0L<S<+R
zx7=>5;dC>w%*1jN?;2Rg>0qL+iS-6H7_baP4Q!+U4eU1Xm4VF$wumKsZeT0tn#lHJ
znX}sryl-&VC$<~dA=7rJ%wkT}WupR|#UDzxk0goAzb^Y39-0{X#K0~CtCj{nHSn2K
zNK6^784)1ZKPvErfiDgBDpTWlKBIfsnGu1XX(|Tx(x?o4ZQvUN2Mv5ry&KqX;5*vb
z#L(|~`7?ug_Z-frzrFg4_ke+8BLZYH`h&sW5xVuvm>7C{LEa$))0X7@BpKeE7`k;e
z_ZJGvz*z(53>+ojzzGAtN|Du>q2pA<B|ocT&XWdCQI+$&tnD<-azWl1s^e<zC$rsD
z2G{Ky_{~7XfKF#vkQ=6_EfLZTs0Kd0np?9)$X}4#@9jJ?4as1qb4>x-Jn#02q1fTP
zn1MJwj|q>7gn=aWz98=p1Ga&bfkFe9WbQZy3JhE@kT!5&VrbIo04K=rGLH`4%Jq#5
zT;w#L7-Hajxy*TY-G9Sy*M3(7UlmHLz9!&0eMk?5c_tlnS51E!_>0bv&fh>W6B(x4
zhnoieHSiyYEYhP8D02#j1HTP2C0my1N{so*WXLx0*(_H(oFFAklrvG@L`f5+Oq4d=
z6<}E!;jlm%)AhaIcEjmm?yBz&NupugX`+G&uL+o_XrhvdDkjLk%XGaBCt79Go$PdF
z^jcgKGO4O$s3sX0t#0z~v8ZXHmg#DQ623Aqw0%KdZ4(qeIaeCz6C7(6s%N6Ui3dzP
zXrh6n`b^wyf{vo0iAE+Gn_%%KCUT@Imc6%mcCowMYMZhfCJIId?laNML~|2uOtdx8
z!o<BMTAFBOLZK*z2cGMOdEH#VwIwOB-*h=#I<_|5g(#W1Y}9mD3tSttH_`WOet>f5
znAh=4fD0;47P?|iw4jL&COUGY9rHSwxZiYF8cV;+qX#HiI*YioiHA(gFfr4_!zQ|z
z7-V8Fvzd6*L?6~{qO0j%Kp!*F&2-o5xRu+TsW;rKXKxcd1UI|x?`fh}5uXd8mFawD
z=x3t8i2)|^Ogt{#Xw)0@NL;<#sFXj@M84@p*&ou|4k~22QDz%rVyKBHOgw2~7<+ih
zKf=UF0mIqJv#y6<57+IFq5#haxUBM*3O!|Fw228OCYpF!#5K;ucoSm;Q+i_sP?*GJ
zCxseK3iTQhm}FwIiD@RLo9=RbiixQLh=Y^dReF`2d}gEMx!OPYTVR%n*<yi<P0TUz
zjERLN7MXa~#9R|En0V2|b0(fA?S>{@UESR-+e6KsCmon?;$;CZ32l@aS|Ba*-hoZ9
z#aATScT(t8>iS%OH%*PNxy$d@$`yaj#Ou^iH{}fzZ<$yk3VM?RUmEziyYjY)QQeid
z&IXp6=sw%k0t4^$R+v~x!?V!B!aF8bnMj#%OswW~F!7a%Jto%D`J32k;yn{TyyRU+
zX$SK*Q%BvE^(HnH$z-F6O+}a;-Xhu5Te;0&@@|vKwbR7=CbpY6)vMhOs$-IS$=jLZ
zUVuI@@sWv-O?)VdCTISn&?hE#nb>W*Ho(i)r;_xU31VKbJ~#1&30}gO`AY$7CWRPv
zIg>(rP3$vq#>80@Uz_;G#4oJJ#J48)n>c9VdlTP@?Xma)3W4j8j&4<-PYV5D;ztud
znfRGSCb?I}L!82sLetI$NZI;fPWdt+cgjo(v2RD&B@-tppKk6A$eDTG<0ej+_*G=i
z6(;2$(E^k|Q%^~@(?U5N&Y3t*k8L7p;x`jv6S@h*bQepi35`9Jg%ej$5ffJ|KLarr
zS0-n=aHbs1Co{?(nuya8b<AVx?VLHmJg#S2bi+TBLN;B&C4aPHFl~a~Aj3kYg#r^7
zO#E)*qKRuJuG12_DTO93nYe6XT^$eY^NRR1de^H`aKt6)z~a0cCjKyS)5I+k)Wx4B
z{-QS)9o;oK)MRq#9}~gJu6!sr%IaSVyjbWz6U8i7gOn;|OVEFEh*Hh6kZqxgg{l^c
zTku$@WZ^CgB`lP*P}ag77D`ztZJ~^X7uCRTX9JTbhk9N1munnaI61UwWT2dd@)jys
zsAyr`<d9ztB-Oy37I;(n)#T9Ty}^~2{e4P@I6*F6^0Q!N3j}P1xS9p8g_;&>S%8J=
z7HU}db#jQ8m2q7{oaXeLTo&#d7N~8Zj)evm8gjl=KwZlfW_=6w1k~6UeC}*M{VjcO
zBa8pYMq>+2EG)<fF)7Ew;=MuQW)^&c?-trr=siMN8}od;C%EZc;9d)gg*g_UvCz^&
zD+~QB^ta%*(AsjH?PC_&SZHfuc$3g0mg^yNEj(c1LCdx0b{5)O2nhc^p}S<U7Zlt<
zXh)%)gx)WdL+)(hAq#Z2tdNs}8hlui2)YRPeRAkgN=cS&T`kw=Tsa@;W}&-<9u|69
z=wqQT1uIFtsm&>_*mKGi=aqsts_gl?(N)R$xm@wbEex>ml!eh2@+=IrFvP-83zcv9
z^DPXrFqqmeofQ%eL7<|0wPGNqtcF<_X<?KFN^H1=5mem1V67=3MxPLkJSmhpU(O7v
zC-d4&2|aCLjD^V-rdSwjVVs2t7A9Km9rSqVaJk+tu5#UP^KRPfj&72L-sb`YTyjjc
zFx|oo3)3uj?ZI0fdb63d+w*~07G~1|JLZwYMFpK(&EWw~z-KMYweW_8H!VCTO}uKk
z_bks_c!9=jVV;GB97T7f(N+ITl(2=DE%!M9yRkqNO-I4??JJh+VJJO1{6$g^{W(Rt
zn0cPbe@*Iq-Eyyqtej6j-m<X7!WIi#Exc`EDd*jYzy=G;EG)OM%ED^lte~~fnAt;F
zvT_Z^H7Wz0{J44EHJnWr){~ygUu)rA%Uzfecb^g(F(t(197_>on%HQ$%i2vAHVYu0
zq-MWoVVmXNNquBtyXCr<_bq&2VTWKA-zj~VJtd?XeqMY(q@qU#-oNgD?CuateJo`^
zv9L=(*Yg1~KeO;Thj1b13k%;`*l*!WiS8Ck{#O?E6yd!B_6hx3=r{B#Ynn0JcNPwC
z(naxF6bCJQPleJ66!-mL;YZ8;#Ou1{?i}QifQKynWZ`EEhb@?v`)`O}EF7_L+QJ!$
z9<^{nz%il6g)-aN6;*!~e6omh%EBi(9wwc&a88(ph4TWmqCCF|2n$u&P{7Ch3=!ez
zoLPOdZ*vGN3sDO(3vmmMg|y@uJu{0L5`vRLZ3`&@<hNeoDJa61EL?DnwmJE~(<K)1
z3k7UlS@p7jD?+aprCt-j){kZQZdmw3qJL7A8NR=S62y9E|6}1Mje)5ax<%1FivKJW
zi=tu_m7?y!0vS<cM^QYAOo?U*z3&T!Nglzaq9`q(L=+{Xs6HgGWH}#pxf#j`|Bfi`
zot9TNidXOVwJYZyJ5Vl)<e&NFqqtK5aRmW2X9VwxqB8SGp+r$diZef=s2WAEPt|Hs
zG~J|lqwensKCK@lt{z2=C~8KLyIQFeMcpW#?dYo|(b`co+N|)9gaws+^`dzF6D22#
z`cW|2Kqx^&<|)FB1vH7G@Gc*dd{NxZ=A>Zh&OsJuxF?Ec!Xa)RMGL_zclsG^8AYoo
z+Op{={85bVo8Kmi@b&!GGK!iT74~^yc^^6Lgma%z{$!zj6oDuR7@Cv~1}VmJz7A1z
zjG|K%_sb|Ai{gPO9*kl~C*P-c`Z`BJ+9irbpDGVUv2~@w=)*F00)|JTcvSLq6<X&V
zHv<D-dH0+d>=8xJC{|p|C0;ks(<_SJQS^zTFC`GgD^c`|qJI=~qIf2X$D<e!#qcOb
zM8SIUqR5Y;{KpDyejp{kQQ?d1kZ=YG9UR3!@xTzl%r;cOuqdW(R~Q``#i%GIM^Wr}
z@QEnK^;X6TeNyOCLPrZ_($fOQ2xZU5Mcs);{`e>+6y=#HV3JU(X$l*PVw%)HTPPcv
z9>t6zJTr<}f_bn5lP+#kNS}>juBfAV`OM*8x<9;ljy5(g@A)WRh=Kzoeo;6C^P+gE
z2+xn=<swXDqpdDlr!1siSX*QF^oduc+Mo0Ck{gxRX%DqM$D%kM#T!w)8O2*sEQ#Xl
zD87l}?I@N~l~KGG#j+@tN3lAJHB?g+Jj7#F6rrWcO2O}NO4j!UYXlpV^6lTOTrTNb
z8^ya+-wtI<6zif`Plvfl*%ZZwC@!`3ZH!{@?tp)bqHR~+-=w5BC`{c<TbioyD38k(
zeczV!ZHr=i6dy(LG3Q9!zk}0igYtgVJ!52N6j!PTXDGf8qVAtQ7(S$<7?pRcl<$)$
zb~!$t08sya-!58O6rV-$xeWQuDWNaKbazM5a+N~id?`_WuE6M5QS6DLLnYr{N!=&(
zrRmDqgMn|O$f@A_K8hbWSi#>3rS%@*RUisaWnV^F*O>2qSNSoDU!;=*r{o=q;wQoU
z@5#?m_h%@Fg^u1II1<HgH!_ck0dqt&;}g^x=V=VBV>lVbDH?4QH={Tm#hECqD56oE
zjpAGsS`-n^j=29kE1?FX?vWrR%J`~2k~g5DOI6_zWZ&u2qcB;?2SJ0hF_tb<{tD$+
zo|D(>kNj8^@hJX|^483kkRlhN_?>=Fuq`wdg%d?OiUN*wN{FJ~HYG&B(B_B0D$Re9
z9lO(aoj!`1rJ|QAm!r5EMf;|~D-yl7I*-h2!XcAIZbb2il=?G@zXY&`i#z-k@ADCy
z^aa_UTT%Q=H@-JeD~A85mw2F9%ys^krUi*JV#tgkD~9YC%EeGVhT<^{SgDkfJRZS}
zmWZKb5#CzSS2~8yrF~_D5|kBiM+`ZgLyX=T!+Y;29AK3gmabAN#86Sd!mpG{G2A7X
z{K_$WK1Cs5&Z;p~i@6r)6<V#d4+5&kP(uKdY6`f#Cs14ZRwstKG1QBpehf+sEn{d9
zL+?_)yCt=u&_+Tz*v2t5DZ)7dd_wmR_cj%9kI-g9n+t6r^j@K?p@~1c!8YY*p1u;p
zBRzu*6K3YMiJ`4z7#Krt44km{OSD}K?IjwBAt+$rI_16?=qTtXJH*g2hC!Q^PBBd1
z7ogv3zD!xQL3uz1_#lPJ5#8x~D2DDa^oZf%7`m`gj<IHt{KsM_DDQhThOWXPbIjG;
zZp=`@clK!R{P&ffG4!JGpZC+4drN=%zpv!Q(5GlDePifXg!{+vxZnXroK5fKG5<Yl
zlxby)<;M_;;qoSBP>jEr3=WQ=<`>G47>35+Px*(%koQHN?_*_n41XOCHYo2qv0fP&
z!>AaZh~dc?HeAHUi+C!A(Hv<CGg5duhA}Z7l!_OV7#qVlYAu0=35<_nLJWiB7!t?C
z7$(Kw#E_0*atu>qcsYgzF-(nNS`4#dm>qK$fzxA{5yMQu7Yj4U`E5#wv_~I>bWRM<
z#PF=7zF0SxoVkMM#qeAV&&Tk_6W$jn@EEGE3f`O@d_G?xxH={Dk|fQiX8S4(C#!m2
ziD4maHHI%@SQNvnF}xMS5~*!5Gso~I2h~S;Er!<x{60!)H7B?~vl>6k=XNKaQS&x!
zKIZN(_&A1TF)WW^TMXM{SP{d@7&gbSCFXuR{Z0(4VpuIrb1&+#%q$-Lu_pGveZFf2
zyc@$h0qcwS8)Dd4gf~$^vZJj<@vH*}JzF^wX^MT_Ki_e0>HXoH9Wm^T;Ui9~jUM*r
z{TM!o;lmjEH+R1nXZZV$YORO4D`bX`$7OvI!!GJ2GwahBK4WdN<E&bLcPu;<<;xg$
ziyThH@Kp?ZVmKzzy)o>I@uMUB6vNjsd=taL7`~6;Th4`;yOHF8WcyAiHw^y$Vvx;s
z8s`duefS}UAB#q`vv?La#F6=P4BY;FMEHke_$7uvs{42j4|lzt&dfSml)qM~V%&am
zoTILke<Fro1rVPUaOrgLbPQ)=I4fF?#t@64X-GLI^n47z2_PpdKozRR5Gms80*n|;
z0ag)zWWExQVNJf0<N(=K32#qqLr$v5mL8q!rA3{Y9W0390^L^}_2T$FhKn(jjpMiP
zJcTh_;#7*^Z%(?{|8@)Bh~Y{MS7W#)oV-cO^%y3~i9p2MefEd&Yftw48N>L#3V(aY
zyQhEX)#J#H<7N!EV($Iazx4kx6pJI(*2`$Iw(cIfj5ugx1etMIo)AItxSN@wL>&EQ
zc{~y=`*(K9I7-D)TB3Kh^^}RDd!^#c#tj#0wcs6bl#8Q$+})5>fmFbqLixkKN^#s(
zgewcE8poP4!776Hm8`a-)xc`PA=4WNig0xSHH6lTqgD~Wb{usCZ(QrvQ$LOdade5}
zkvJO0(I}2U9QVc1IF2T9w2H$YM@}5RIPQs~Ssa=ge9H>d@2A`ycX#SF70OMl%~?;T
z@7_2R0WCP9sUdO>*YLHBgS+Z@gb{J^T0R<T>p0rP(KhZLTePCU&-qnmT`-sJa@Vu&
zZx=`VI0*P}N>ZA4FpdY~?w>t7#L<xj`zoE{ctF7YanSRSL%L^nu-l|Io#S{Yj)&t|
zmZ!|@r_3u;jeAdy6=pmdN7p!d#?dQ|$KvQlEyU3yjsaJ_oDSS)y7XrDzh~VY84SLu
zA=2JVrIzDd=b&%gbtc>_-%kK>|2Q5O%(62KKRE*>8j2%d0Dsp=Cc~gOPR6rFUdkC7
z$FMjy#j!b#;c<+J<M}vVh+||NqvDtu$E-M>h~vpP#>X)sj;G?TyPyP~7BHGxkS(h`
z=wM9TJ?>y^9OL5d*<96gvPmaOw#ji!5ilw4`XAQ7Fg1>8aZG2UIoV{+kPPIP%N<Bs
zrjciM9CM`G&k21dj=6Cxt{!|=qV$d2(e~uu|MPVm+KW_u982POTQUsgaba=H7tDXM
zyd1}ZI9`ckp>SS{V-fS0a!*2dRXAUdbGP;{j$=<tcUR-<al8@7c2CxualA!=T*{#_
zaD(S<xh<tO<5(BR`Z$)0ovessCACw_x3n;WIp2w6HLW_1N7MdQLPMUcwPIjhO@D4-
z1}*JfiB7ELV=0PsgVZyzOtp=1v@6Wm@A$XGv6XW<j%Xb3#j!1pBXJz1vPxFl9>>>l
zd=tlxICe_^-;d*yICjPHK^z~(@exgKYRD^BkdGz9+~a=!vXe&^)Gf^5p$DG|^E08J
z$MJ=LFNN+F`jyZ<LMf2F0`_rAKIa-9$M|g=2jloYj(__r`{VeIy><Ky2V@`wKg98)
z;GczZC;K4*KM8I9xWY;f$MH)XH;#HKkYEchMR6>S<8+~MgyT37ceg^HjN_D;$FD+Z
za;F8H;jF3S8#>aRBQ&A2ah#)*9IKp<qp(kqfrj+^G>=LzAx?moC;t955{FJFmiE(W
z&><L{$l?&_6S%KDMy15@M;w2~k)TPlsyHrjj2S-usMn^;jl+o}9e39W7vk;?cdk<S
z>)ryEa{Ldr%q9Q#I4(*C;^9+6m*coXJMXVtkAvIdu5#k%D=o(<#Mk0@waq|+`AxEK
z$i(5Uy1(N1oBk?+I}^M~$IUp3C*VoAV!stfu>>*__&1LKL?i#mFJf<R6U&r5*+R2~
zatl05(O^m>P%?os36vFnDWRnkpfNDR9~WJEM*^HF<=o0$=fD|3PePlikU+%*Y9~-9
zfl3M7l|c0bY9vrOfhtl@HKA1#xNUE@Pw?PjAl?L!aJT0(JTo;^Q?k`cfV=70+@c{K
zHb=lvSCZ-pT{JgXKY>W5Z>{*NMhP@d;B*3K*u4aD5*U=g-~@aL+?~K92|SuW(**8G
zpbLAR;cJ#a^8|7eXqNz;ZHol%O+ZOt7lIA)6zZ#G0<9A8OIr_=D#lYgS|`wkogb($
zFxoZ&?U^7kDK*$Wf%_A9Ab~&v_a$7t2NUR!0Qc=a81gVm&{3kDgpx!5|6l?SQAAlj
z;?4<h{V+VFJS-eCEBAL-wp<o=l|J`Kpl1S)38pl<C0rNUT_{hz=#@b41o9FXm_VPR
zJbgL3qJIJR6LIxV;BgrgO=19rT*JrHE!YYd!)!4>fe<SR=koBGD{Ti3NnmIKOW3gl
zh9xjOfhQ7pQYs&jz^DY~Z}7MqfoUPhmfYUXdg@AT+<*O40;4%nih_M$iwTTPU|a&v
zCNP)l{{$u^@b1m**$GTcU{b=p5a0g2a_c_9$<o6qLOIf@2}~=((*?{BI#cK@q1;nH
zhyA1pN%UOtEc%V-5_mp=a&>+4W_lQXL0UOqI{2dGxov^-6L>j+g$XQ5;KpEO0dYIL
zl5h_<s8Bh0t&We|U0+RLaRP57-0RwFluvCR0ap~Si>B5*uB=G=-;`9BFWum8sh5hN
zKA}-1uq=V)39O*N6WEx*rUc$eU{wNZ5?D(^t?T})tJVqs>I8Ze`Z)?NwBDup)$y&T
z47m$fD7S%cNPwsP@W4jW%?WIgwsuPD)&vS_`nDzTo-n6OQn*i+Rc%jT2Q9ybZ~kO=
zAL#oDe2~D03HPLej}koWBA0u^i9Z(1D06-)J^zeCV4pX*YxOT^W(j=FJPGVhU~et#
zAx+>bj%aF#{pap}7Hnzw@4DvQM^{k8eU$WV0{as<mca1@xL5bP1dd2g4kX-zL>i1z
z4kqwDO>VOC164ChVfazNA)!AB{W*cdMXA4Veo3~Y3G`~7%@%o#!-)ibP2iLWfwxgy
z7&Gal^x?xp`6qjMH~06RP2gMtEt0r5iSr5kmO!Z_N+%IcKuzFk0@pa5Wz-R&95Oe#
z=m{9ob2EWx0x?m&MbiztE9!Ux;Z+_xfm8yC1d^=3bnuN<18E+OFJ*ANP6Ah?2s@dk
zb~u%m1z7Mx0>4XdFA626P{1XjmxXe%P4%&o>om&*{!HMngu6eN9itNekWSKODCfTu
z;O^6mB>qX@Cg;?pj9Ur(C&OpzzX_~c3!ZSY<5C8rnMq_NQ6lLo=;^n;+<VUL3dF^e
z?pY1o;p>s;*5!ec0=SrGYMCU;CgDwj8yHys9Z8f=x?Yq$DVN0kla)r3l{=HDki?lI
z{)$OdPNHut(6hg{QWAG1vFba|{r_chm{o+&q^e0&6Z~2%z+qNTqDB(;B+)F1nn~13
zqKVW`qpD4Q4PV_Pc<)muiR;%h2<jzKKZyoOG)$rqnd^hJcAkED;d%z|h8hcp^N7<V
zCyC#Zer~$Bn}CP^B;7gANy<8TY$o^4H<yO?xAm4i?!TvUP)VYtaGp$}RTBOr1}2f8
zMC&BlP((>|OQLNOxk&_>TF2K;==?sx_DRG?xTpOv1d_Oq+dSHOina1G+98RKNwj#v
z+etFtPce>E=vW>Q@Ssp~Iw$c^5q?-e7om>`eKd)#MX9W|dlEg87?5<GL(e2$AEfk3
zqIVKq{>~=uBm90z^rw)M_<U-JfjJq*we`}d9w#%T@CJ~Una94Bb}cQG#GoYRSMYK=
zQ|W_~xK-OXB8eeM3{7H~*u!w4pUv{nFz!C$pRzo_bF@Y#aq6IFR1!~6cQt(@|Mk+1
zJe9;~b|Z-~Nj#IpvwZ%O#5j@djHK)F#wRf`iAhPcuj!kR#ELc^GLH^X`i}NYPGX8w
zHC5>JB&H?t$q<Fr@=!0H7DWxtOkx%-ZJ5Gy5=duD$L7!;eA(<gH9MDMDO2saB$6%j
z=`^U{=acAM83gl^cqxgsHr}-{KZ%!<sAHq9jRi@(lEhz0{GG(YBo-x+VDThgm2SV0
z#G6ShPJ&lt8vkpogtq|F2b$koNi0cXe-hs%@wViDU$n3^iDgMF=K$Fvr%w_qlXxeI
z)k&<Okz^KYGu^X__Pjjsa19^n?bQzLlNYRYNvuy|2aD8jpOY*e<t}13(1R7`Y)oR4
z0OHL8wg}xS^gW^5lGrYQd1w_or5;w*v6k<HBtA^yqa;2~VqX$pQ@k>qy+U^tjq%eY
zK9jM0F7ykb9Q&67b|>+bfIUJZ@>GX+5PTT*4Mn%v!^Imr{B2PmIJyIp^R&=|NqnEg
z4@vx(#Lt{EnZ85PI*$Tlsh?!Zvn?KDayW@!k~mV-t4OBrC@rL~`_s&0NgSt*WxMyn
zCzAM8@W~?1DFLfX6+0s}pH1Q%J0sXiBI-H^SBVVaB-A3TB@q#<7jcXvOu@IGw#7Kv
zCHmX2s=OUwCuv|jt=g7xT@{*2!bu{Xgwop8+T|n)lDLq>?@3&gvX_!5q|r`wk1XTF
z<obv1l#31C%P{|yq<iwu-k-eJq_*oqZxr?Ck0kyS%p#QAKS|t_3^i@sA`o1|#(zl^
zvr*Yb6&o2gGHsNzQQk(DjcgkwY?QPSC{?VujV(vL9^1W*8ZpFUKH=qK%u+T+<z$z(
zQO3s50{?(J+~fXUs#Kik%#^iphwU0+iGB)`*8i7rr;Um>DhacK4Qs5zq@TxS@l?IL
zY<HQ;ntf%fRkhu#hSvscRI^><C!eiwyu{U|IIHEo+pyX0Gs#+#zqU{=%gL!{qrQ!v
zHhS4;V56ap7B=p+(Ma+%v5{lD)3Y&?YP))2RX!Up&Gy{QoSDUV-`CW}J<?D!+dW{s
zxnPcqk2i<T@F+Ha0E&(_I@xGt!%z9xxX(sw8*Oa#<~cvM`vj@2jq6#(a&7R=k&0vJ
zu+qbWdfMCg>*XL1soP)HeY_L2!N)j!2-(4gGbh;D8@%7f12!JA@v!Zl#uF*bc+dtH
zkRRq&?QFYuf3Ht)E9_#UtBuEOJi=jS`W_WZz(z^C+2~>8<?){GHu!8RxFERy-%Ka7
z8avk8Mjsn9Y|OOL*G4}ZPuUo4qrZ*EZ49uHCxT)R*)bjgG*F@;8-r|qn&{8B@p+by
zH>!he3=zpZLG5!CHh7~q(#CKK^S7K4Lc34<-;<)cbAvR(Q8uP<VrIE(<0mO(IraK!
z8)L|~G1bOc8{=$D7~+{E!zrB5rqcjrJTvrBCQ#r5l!<~*ObziErO7tNpAHgClg#Wb
z{Q$>4T_jI1%f@UQZ`oL4V~&kyY`kJ)p^ay4%%zUlL)$&|@sZJ<=WIN0y9?c5ZC{t3
zo)>JqXuDUFg|&RVntZS2&$mHQyiBVe8{%Cy@d6t>)Gl?(9oHfoui98_yASuO4fF7>
zoF}v}&ucbbmx6ByCFe~WEJE<Mjiol4y@@q8mWhOy+gL$mo$zxmP(CYdykldPNSKyS
z4$q0A=vLeA^D#~|nl4XVTxVlF>!k76*kEI$jpJ;~#wHt^ZTu`XZ?Un}#(o>$*?7;!
zHXEPX_{_$38#`?GbfAxI?6mRP7S9Lv|DN=|Poc>|ly2uk7V!o@63Rn<mLAIggq=T>
zze_0JAbf7)3u?25Z?DiVX<&nu-9ot-`^t9D|7YqR;qVOeeKZwXQG0x2yN8p1%Z?3J
zR<^@JpO@JV*f?n82OB?91?z*~Qx3Aito4oe%rK>1Uw3`WaLC3_^ilG=0p1TDw(*ON
zBhvq4G^c5vqZIxig@fXqI4{1-Di&v{Uu~QgnGm0(1_kp(I7ZLdIBVk^1#Tl|BW}C5
zioe;2*wAf+ZK$-&ith7muEaDtsFCi@cMi?4VbY<=FyCGiBxmVnPgJ7S-|#TX))O{t
zX^R6)+W4@hdptfDGlzK>U~~UIyeS~%y1olG{;_eBe#6E^8-+G5*|=)sniS{qn|UtN
zm)7uIq28yu=gX0EonD0+AFgn5b;EW~`ufAhpOnVKAzJl=OB9~N_BXBcQU*_nWd2+9
z<SA5Oi@XGIXoHnvDP*OPopR5O&qyINg^7n;bxgULT|5O(3gsoKL<%KSD4W6^DR<di
zDuvQ1SM^(`dDt{TnUq@_SK!3FYa=a}a^FFaGv;gWg{Qq0Q>etZeuX)A$#}Uiqnvrj
zB+qNA%-W9nt4L~9q1960EzEDLJk?XEk-{h`QZt2GDfCF8X9~4bsFOnL6xyUvH-&oA
z$-7gipF)Ea8mG`C<sL+q-^SBWK%=54nKN!=P&*7cDelL1t(1pZ4ZV@klp~TsHA~^%
z6qFR2OO#`2k-}@<AZ@rMyO-@Ay4xz{S}$L|(31TrtZ?!PDB-p#1XJjcLT(D}Qtm-m
zTtBx@A&_$KfbL^GTimxT9WQ$s?U+KR6gsEykc|5N6h>4k&NnQ|rHltscu<(koG~r*
za0*>gcr1l(!h9r!M+GchA7qBEf+<7d?t-6_GrPEkU)v|xD}~-E3}R<eDAhOECxypT
z7?48WlxymIl+iDR{(^aTOirHQAHq2UQ|^sS%|O-s6c`N&<-}juJII5@hKN#zr!X{y
zlP$a*t-vsjkyCZJd$Thl1>VSvlo}>K<$WTBCsTMTh0!TYlY;E((<zLjkuYb<KSt<S
z(K{tDK}IoE=)@EzF=tyZ&wFI4$tg@pxldYZ_6c&xyrCwOZxVT!)yx!TQJ5F-@CD3H
zVNME%)A%KgXHs}Jg;oyy4(6ut96ON0e<?hl!V4+vNMUCRFQzarg(Vz&3NNKFKZRFQ
zSS($AIR!o%dL`w)sae3mR&`(ARhbrAm~t=Ti-aoE+&9jz(e|dad6QN;E%bT{eE<6f
zO|czzPiXU2$~}&cYn7uDvX-W>EQOURypzK66nIV=AGEUg3O3F2f#s3xsuWhIur-DE
zgt;b#^(kyfVQmWUrogrIGe`aFQuy@WOdjgUr90ncY?Pdvg>FhA)^Z?gW7tAb$WrR|
z<J@hMVSCD58*`Dyi_7~de2~KR6mF#OVG18{j;9b#;o}rONnuY4dsEoOf%CC{3ZJF$
z%>)luai6E~MGCtqoWh(hQ{Yj_^$Rn&Y$M=#q+bbt!n6>dvF}UaYZ^}qKeB8J-*U*3
z`dT7ue+ma^pE=pzrQAg(L!G=JFLSK_d$wM~M`@6GD21PBU7W=!{4D)HmBMN2Hw7LO
z_Y3X0mhXtrqe9&m0RoPvaH5FwtALY2*+k)pd{WlW{-0xiq)S|!P-3@VGZ9lMY6|fb
z5-DiZAj|S*<aLkE@uu99tIZUm^f{S6OQN-p`I#Y>!u$P{S?hwt$rS7qE~Zc@*-|N_
zQz%Hmp>5Z3&ot)I#4LV6qPO2E{7ygCPhsVkQn*aBEX=t|k9W+^W8YZh3Y~B`hp!v1
zNoQUf<`(}$4E4_x{^EG^m34CK@wc>ii*|m*|4#}x304QI%n4S=cGso<hP}lcWH_kl
zpq7J72U!j(Ik?L~wu9mh?r>1ffyY4!2c;a8c2Ls6`dYr1o(=L<=6-IQx|G9*nPnW5
zb=-TjdE*pDx77qG<yPKtuWNTYSnkWGNV%r1;J9a8S0o2P0;X1W;B^281K#jdaZuGk
zHOCd^g0o&8Tk4L>@jvmrm&@SljypAKIH>n*kVje8c2LJbLkEq7&-=={(p){E%voRf
z4II!W8RdrojU6;|(A+^22RY=|^7$Ox?Vzb(zDMH_<`!m@oa?=ZgI(huILsb$jHE3b
zR}1$#P^5b;CCct`Y2DgE8wb}MTzAmcL9T;I4kkNj=b*iV{th0Oo&+3pb?_Jk<sisD
z6lQdAaKD2GB(<Z1PQtw1TfTmM(80qFx;W_U;2{UEO$)InH|749!+AtX-F_hOC~-|6
zU&(R(+08)@2R$A1TZ8V7duBC#4z=HlavrGkanPGW<CE}^higl6`ZA~E-fnbU>mL3&
zz(JmaF%F(>UzP8b209q*V2Fc!$8}{~jfYsLV7|HdVSxMIYN&%@4u;dOD!EUt!K85R
z2nSC%c+$a02csPKu3>&3_c1u%b3G;5)|ILDw1YF_+l-b}-dr#PpFE6pFwVhv$36XZ
zBD>K?;a$%J2fPC!V6^94?-U199UOIV%)vAV(`k?nHaM6edY|cFmJH`g$TQo)90#vB
zSm@vxj>y4_)EYbB;5i2`IA}cAeFVq1iqAXl(wd%-l*^KxC;Trtm`|O);a%W>XB@rE
zxsa31s|+R2^-Mv@V!Qs%UgY3araE}b!D1@N!5fb2!RSn07bD?2XcnQ?xC+`_J-Ecd
z+YXjGSSG1-JNzRRGc4!qtLa<efX^bBnU0IAi<J)EaoqLQDxn0c1*{Re*1@|1))l2*
z{l&jgOyV<&)WIePn;r0_-WCTRIrvzn=T-;r3D_o-*1lc94hK60yf5?vp&trm51H)~
zshMNnMMeLcNx<+awZJ>COy3s{zI1TN!A}l$JNU}M_mY2)(7i%$zfWPQeG>iJ!8ZcP
z`BuPw2j2-eAoQTn+ogUG{G(8|*x;!DXUF{w6R%~5Y1QwzcbdOAI3gJ?Xzu${UL21*
zIN=~6R>ArEtAle6&U3o`<UQ%&l!Ma__;JM<2WM#*b#sY%P50DtF*W#`gRldYMfis0
zzYNVm#DVF+5{@oy8IF6&<9%71R_<e*sDqe;xMT>tiDOTBcw{}FDlku{sqQ0-qyw8h
zcfe0X9GdY&Pveo^w8)v90tXi)iTHO17mIMAfJ+W83%F9mzv_Tzp)>OhhcAvXJ&hS@
z{7I$LccoD#?fTxoW%yZX{Nvyz`&Pqu%fWvRc!E0dzYac_7GgJwrCm;j(9E=(t;xhT
z)H`d)PP^Z_6i>sGMu{{^rco;G`sdr1wr|E|RT=H!m9A_WccjsUHKb84jq+*Sokr6%
z?o6XX8r9P9rZH$}e#JE3o1=0Xyn(HhcCT@q=@ea+w7UeVng;*rKyQ%upKD`Cqk0;R
z(`b?g8zQGh8Z}wxrJPzq8>LZOKpmmv*A-BYH4A7Uw4u=3s|YT5I2?LQsx>E#dpudb
zw0lASd0L2X&F)E~SsM4H5lo|b8ZFXL(rB5+y=nK-!@2p@5%&(A-{G`MyHBoW_4ktc
z1-BN;Xd3}-h32Nwu87}WKp>5kE!<Ms^#5r*kj8^)bWEd@D;fX&LfJ{S!f0n{_u;g=
zPNS?I5{aGEa!=OHCFjvJx~37LVAFUkjc#f5OQU}p-P7oiM(;HGq|r0&z6WRL>Fs+7
zW|S8`nq^<9Jo0ZQZIxPhT%vht45UB=b7{mC2%l`Qt^Blmc0EJucRYjB7?Q@wG)AQ{
zG>u_tT+1ppBJD22*lm8ZG&~Jnr}*g7>gSru6KOn|#?u@{8c(J1pL`5CI_=IKerFY%
z7Rs0&;$^qDmOGXTJ?0-L8W}H?s+k~QVj7bKOcpvt=v1N8gz`55%sexVS!sNj#z$$)
zPGe3Q>(W@y^?w@ArtxMPZ>2Fejpx!>l*X%RJfFr3X}p}qf;6JxoEJH80rP}%IAqS}
z01I=t^yP~56_LzB8cC+FTG2BuKI~ddBcJZ!^Q+gW@fjYj9$!!6jWm9k?%`^d_Xzu!
z2dIT5X)H@)c^Yr0u{7<TZBC;lzxwph3K~WlYtneXuItd=Nn^FNwMr<p#>{)=A^#`G
z{A<&ASNJRWO%5OXr?D}OZE0*zV^bQN)9$r(YZ_Z*s<Nv*{{7l$w_09{-;?P;z@bsv
zJER^a?PSwwe2~V+3*7%W@be*#`r|Y{Nn=kMd(+sJ#;0j~p2ioH>VFxZab6V9qR-?C
zjn4B+YN3{ILaAb3rNI~OyJaqO*+w7e$qVjF<LflOO=CYLKg6?nqURgdIm*jV;OMTu
zlRkV;ai#frN!9^+gS7nNae9bi|4};pQ`)`UP+W&Z`1E^>{wz$^aD;#YEWkSjIF`oo
zH0l+gegRIT@oO5l=nPq58mH2@EROLsMU=+*G=59FZ=dPt7|zm4c_Sc{cc9@kRLT5%
z8XD(L+PxP}3)Ry|2{7nsZ9ngGO&ST$e->s`XpD|jKtgCzs4bNBRI2B3((a=qz6xZt
zAdL%YkVy_7wXrI`$-0<!Pl+!~;}WO&5QX7Plk6*LT$Ns3OXF_=*VDK`#cd4!k;Y#X
zZ}WWOKLzkP6$3F>HU9{`DRgHw&wptYD?o(;R4hP70Wu3vx&UPgco>3v;qVl=MZD{S
z*##(GfJxPZ{9gd0eWr&>6o9m30ZIuVo;%Ea*Ic#$eAdK|J?<z#xdL1qrj#$hodRA@
z`Wf{$4Dt~HE3Z_5>IJA#fV<dAfh&Y6qy?^cs}`VI0r*E1VsC*fQa<7%<_mXHmaSR9
ze-Z`jvXiayYYDAgfI0#y%nR~06Xz^@+n@jq3oxXBuP4x`0F4XqU;#Q8ph*G#kEbgE
zx2byH+<P5!lJUOgCS3F3;-X8YL}V7Oc`oxj73o(Z843+Z6d^;Tl#~n&q6{e+k_?5j
zhqL$DXWZu;|95@2^M9WGywAJ8z4qE`{MPiXwQKv(gx~TZ%ZEBXH1wg7PgxGs^{L-R
z)c2vDPtA((;A=*Qa~%yt&KZwdr?b6`@>5<e9X9qUn}p^a`oDKOyQvS&B+=UX)N$g?
zed-qpt$oPxp@m3V(tjTw^WoPC>ag*SUGjJoIWbqBlF)q{A0C$%n=~CTW?e4-S=r8~
z{#?m)>nNUg^WkY9I05p651o8?(udAIRa|*J<x_KIU3_Y6MRVM)BF~@yVTyJ4sTI|p
z%;?HlJ$!17o`jNK%=9W*y?yB8Q_HM<1xfk|dB%tSLIwy96wDK(n?XVb(@nK3-VXC&
zI17mnQ+*iW!$=<{`_y9bC?9C~GuDT3K8*HZj1LV86yW^Zk@>m9XXbIz@>!o+N1otQ
z6PVBWFkX^+--v<y7Y5}M<>@3J>P~9L+k+$3ng7##m@WyjRN^(mr)Kj1=fg~X%ZJ%M
z%n|w0W}ebla_9OmkA?h7E@MiZ?^7qq^LpNg7gBtIkcEOT3NG^DrPNbzMbFFR^m&Lk
zG1jx#hgVsa-taE*VMF=MI+t^}Dox9Crt@o(?8|(3U6N(F51f2s?yT@(C9BmS?<zr(
zH(0<@d^Mw-;%j~E87h~|P2#&gtn=YdAFleaUZVWD4+r>NW}*)pS$KTd>BBA`HnGb1
zu+@i;eE7hpx~y!n-{|B0(5H0f7C{n@@~GIi`EXne7wK%f4?Dy?`Ns_Q9o4;I)3Dp8
z)bCy&_V`rKhaHAbd>EFQOTtEQAAP8l^{Eg0g?uJR2^*R(m>oX+<iklH4*Kww4@Z1B
z%6fOH_93a@RB^1HU;EULqQ3Frun_WZQ%Z&@dCZ6JeE6Pum!5Up2WBOUE34!WKJeED
zRBrrV@Q*&6ka|iv|JQJearEIgAAYC)_u(`XpVO5?yk}T7SnqtG0o6H{O!?=|U#}?J
zC-U<mC+Ab^RQ3fXh4{%ASw}ANX_c%?f|mt(dqu)Y@|O?SsOU7ME&ul6x({&{S08Tp
zaMK6P2i=ETj2$B~!h73?f0@)x2K*E($iFb~55n~Sj!&&L-SxreQ&Z4f7vROIb;Ae#
zRe>evv*Nj?4}R*XV!0MIPkBXn***kB=m-V{LxOx777`JR3dVeJQ&0KxUj{hoLxzSz
z68L*Q6wpvmQ%WyQFkJ(al()R*&Q!CS9t}k`WQ|ronJuiTVQCQ!G@T-$<}9Wu{aIYF
zgoctDdXG};HN;XH?$=OS!vpfInu29Cl-E!}Q$?$+U^)6<SoQELYRJ@3O+$5&LqlaD
zd{jxpGiS1g$Zy@MXsD{GJ{aZ8X6Dt<@SuiAQ!XFU@UVtQ<d%I5T3pi^FAf+vp8X=3
zR!c)|Mn^*(4b3&=XsF9bX=tRut0|>gUqb^84Vgsz!Ht-`(F~iB<xFN{4NWv;YiKIz
zFmAesHH+opd@_yUX~uw6QMc@1x6sg1Lt72)m@*8lhSnO|Xvme2(-<;8RQv=9&8j*4
ze_T@rpM1SNzb^BT9hfpQf5ltYzD^pR)Szk5HFVa{MZ@PB4oIp#rC}TcFTAT@Hw{l~
z=+2q&cT|tAhlZXSdNFr24AC%DQ@!*)OjQm2HT2c+6@LUHiFQp!&;x`I)R4#IlEBcD
zK_VQisUeB7|CfJipL^RgOv6YGqvYvu!4aBLJ{(nz)-XmS`NsBR`DuBJBfbxNd7qP@
zF4XX%hVdFE$n8W8Gd0Z8Fo{J`!xT*|<xJD?@xvJ;Q<=zTvfms!kSmzeHOy$)e}-Vy
zk8yC6QpK}1%weoG%+oMm!}A*KA_bUzT)vrb%=3bV1uVTAaw+*oY{s~1$u%9mxJbUf
zMDQiS|7mzx!z&uzo79Zm_{Ex<@PAbUH)3p`nb*oJxKzVy8kT8zUEFWfuw26m4fTsx
zT%%#7hE*C?YihEQcKdHg*1xG?VeJgwwthB~W#+;(57&;@YIsY-+Zx`{uwKIk4ev5H
z-_Pyd&$~|Enlrf>FW&MM+W&Kd$$J`z`L*DEN#RWzHVa`+eZV*h-y*nG!$%snY1ppe
z6Ors-sQP$!3w|uPQ*f6cAF=xH5&qb54{!I%Tl+M8s$swI&jj-)A@7w`|LJBLexc!n
zhMzQiso|ic$yXY_)9}6ULmIx;@QsEJHF6GXsC8oCQ4QZ}IHJMo=jC`oTcJ!HC_kp*
zxHur^|IL5Ulo95S;t9J?FXv>k*Tm1A)No3}UmC8lylMDF!*47t8cu6Cqv0I$qK1c^
zB35cTKFe&9)wf?YaB=p$RADYvm#OHvJ1PAFKfx?$?)gK*MGcpzwdB`P9<d+0%mkFa
z)1R8^P+b)yVI%dohU*&s)o@$G4GlLn+|uw5Q=p1kWbF1t9{bXvovNkC9;qgR?r6BH
z!6$LyvMlWq*==SQi0vR-H$#J|;i!&dI{z&TOT!=?gLT*%0#utiD(Y}F1gU9t+^2(6
z-}IALh{<IZ3`@O>XozZv33mlEbX6bY8WM7w6uc)$c>x^-#X*`NCFw%)x5*R|?$J?L
zND;xJg2e=j3ziV%yL_vZj{9{L<?=d8>v%v%Ik_#PgQI>H6;?)$=E~BUzczO&v9NJ1
zkM21%%hUlKt#!1~QAtN-9W``3sH^s(3O%7dXP56{?W!WFCRkn2?c;q&$HO|Zbu<;p
zBTOG1jdVOJw>1U%ZY?3T1+xU}2-X#>Cs<#wfv)CJ`HELZW0B-fOE%$$E-Ss7zbmSl
zJZhn%rH<ypxo06qSAU-*p|e)H(#DU;BeqJpLh}Do`nZm^Iy&p<qNAOT_BuN1ctS@9
z9Ya>AT_Nm}@!B!bb7ZEn9qPnS^!7d}sBVvXsFa@4@r;iCI=bpgJ5kb2SIX*X!R|VG
z2<a(Ec`qHkh4)EG`s(N>{MJ{QbTB~2xqe;_>IdrBnNxvtM0q-D-pOVqB@WRsRL342
zpYRnO!*wjx@tTeiI!5Z4renH}Q94HJcvi=Ayn1=Z=olwttPcK(j8~^T4{dw+XuOUI
zI;QAqp^9lWQ3wAIySP@yB#}(k@y6y{Ugh6Y22@k!DUGRS=$NTvu8w(9ie@q5I_BtV
zYL4Ahc4hMojX3u;U&r%07U_6N#|t_Z&|4iZGUWHt*wJl$DTg!vFBPlEDXDuC(mC((
zKOHaYSfZ<S0hZ5KbiB$+XVzXUAEJcQ8uY(@S^+v>Tfa=l>pC{+*sNnY<38E5UdIL<
zD|D>XL3O=~`Fl6}*|%D;@BN03H+9tsUoFUeOlx$kWr^+Q<@J`1w^RHb9q$TXmy+Z!
z5PVd;;(NO4|7_IpKFgKN(r5QntqEsfIOq0(jt_Ng(Xmy>HXYlg(sA$7M@#{;HrLuX
zv$ul<I4$dAW-h-tT+I$~ZINzviJW}5I40SvW1o)0I=<EMsgC_RzSMD0$2-L<ex|E+
zr2{%X*VXEFm6ijET!;FCg@JY~kN5A}Y`|AKzSi-LuJ$e+612^NS7zq@Z`42<M7?*+
zb3`-)>;40`)kFtJ`p0#A$2x1Erh)Hu{Gj8qjw?ET)Nw+`869VJ{G{Wgj#Jb*;wOVa
zANVh`U!-O+cTP)|ZJC&!znFVY$FDm6&~Z^dcV5SDloTz%3FlA7diaB_-*sHjIaR0@
za5>@3DsV|k8nch<WfjsZ{;A_C-_>zX$6q?GQ9tXj#J9h7T-R|!SJOea%BueGO&xc1
z+|_Z5rAWuWI&QO?a{;}%haF>DsNQ-ulg?h)l<U)>>o8a{H|1)K(d1?vBCVgGngd=Y
zU*Dfyh+_m@nQTRM#B>B0HMR&<vw}K8I>Ibb>vL(u5)t9JP(fPY^cE`@j+$N8$A7XD
zI^w#raISSPjZ+zHaTZU=EMTCZfl3A{8%Q&dZlEI5+$zYQdSn<VWWZynZa*iHI2lsd
zKv4t54D}<qB7zhaH`HjQgn^Pm-mj8%pFCo_RzXN91NRFlE%<<78A19})<8Mo<x>*A
znEy+`OaoxRuD9ZUBzf(;RJ)3y8kFh=Y8YxBrmA2y!3M>1IXUp4p=J^uHq^fIhYUn!
zDk~|D1RoJOXBBE0sBPeX23}^o4Ae2u+dv-!bq&-r(Aq#71N99wFwopUj-l568X9P9
zpoxJ-a{I%ATyKi-hi>eVW*cZ~pqT;AgMIXH2Jw7xHBrX?Nee^uNFOuQj8IF#R)TxR
zWai4F`N%CjEAMfMS9=2;4AtdmYoMKhMQc2xhIxxtQ^xrn4RkT^lz}G<bTaUyffhGf
zaW1GcL*i!S&oh*cWpp)gGMV<Yf$j#n8UM`=(LAPyfr~X%7pSM9wxy78&a;=HN+~CB
z`WonGV4{IZ5{zdAhZ^W_V1S|i>^9Iqo}oHFb=K!D&B`2PV6cH93`zEY7mMe<zP44U
zST2J-%)oF1BMdc<$7`ga>H-J9r^{iKp$zs$8yF)`#|n;1xqMd0a|Xr>nIPD>RRwx7
z*}xP7^9;;4WKzz+bOSRCOf&Gz+Ezx@Ja!v6OE%NM90PL=%rexZ8L!!fvP9xYpZxOe
z{sX2p+d5qRe(re#oQrsonPsS7)hrMsStz8&=3G8qWZ)%n_Di=s{&?{fW|@I^4XiWp
zs-aAXml}A@z!HPM6jy_|I<wRmd6|LLEL!~ki-F~a>T9hq@P<gpR~lF)!rIr>#PypZ
z?=(wo%3fn&t-)iO@U{q_xR>^hkpEvZWv6bvfei-UGq6!|htuZ#;>7{p_YI|Wx$@3i
zu9CBj{(wc@Kp6*R9c(eMmB(&a_`t$P2DY(anCM|*yLiG^E*sck;A6SnX<)yB&kXD`
zu-m{M1E<o`<3m0B418iJBUozGy@oQ#x%GACr}AB@+|7sZxq$-)eqz}(@P&ad4IDLa
zjK!Pfq=x!S=2wOqzV#iQN!@<Pz}E)8F>siLYKZrU;J3zqqvn<KbLU;o;e6WhR0vNP
z_>N70fge~yW%h>M^&f@P`i=&N^ttSVs#AT+z<Fjm6PbC$`rF%k+Q3;>?L4)c@(fj(
ztnHGYlc&E5PX5qC$?sHp)0$mmH5uT&AovGM@5{=@nDR>oXtl-0?h0dV;HrVY3{*2w
z-Bjx6nt?k8?n;3FHgMg*4Ffj~+%j<6P;+stZvRjt8LIy<e3sHkTwrBf?l#P1N5W@7
zlXoka&<z;Wu_lU{Fb(((gbakGFjxixh8lF+a!aEHmK;YU6b6NG#VukWO5Y6JGY~W2
z8c2xyI4k&jxim=Fdsp>m$UmK=T733i*ug7cs&dP#pouh7EzI#sH<2N{kf0|eFKnWS
z@UEV8IxB9X1VcL^y|jsvChiljN|~x_!LA7VR4knLn=0;=`>OCiV4{qPvP`;BndMBB
zH`VehJ9Qi&S1g>)fH4>qO>P7ROjI&erdOe#b3Hu0q_U}W8Yf}?sH6t(RZV4YO!qZR
zJZPemWXD7Nw24M0ye1wo@u-P9ChD4~X>xF+27OtkT3@JbDoso6$A1>nM3be6KG!pq
zl4&Sksc))AgjWL-1+0Q>2%bHrG-qQIO-!^h@tBEh6VGq*G&kA7Qvqu#*vwSBy?EQg
zRLw_A6WoQwHi#!<Y@Oqw|G6ewn`mdEy@@s^9yifeqRB@L9>2(U8J;~;J)8&bV4|am
zCrq_BO-1=kc9Zd5I_py@_eqIwXA@l{&7U&4KUD2!?<%+51ZNdeb6*YK$YeR}$>d@L
z{aEcsZ-&Z5aX(7<(bq&j6T3|8W?qP&Lrn}b(O>ug69Y};nHXeZh>7!!a|TP&y)inI
zHit|@&hRk6`WVk}6C+G4H1VQ|ktTmOjj2p<6QfOxF)`l61QTOTjAQ0{Dn7?p5At$%
zo-|(4>T$c-6fY;|nMxB)OfoT<FRoJ=J%w3zC5M`XlZw3f(di~=_{vQ~GZ^Jz${3qr
zm}z2`WWj7fO6HiDo8t3K%un&>O}voe3#bwsDBGSzCi}+NVB$R{or#xCEH|;j#49Ei
zn|R$+ro6A3;6(9K6R*kZOH9yumhW<x-!hhm>RCKIhe(5;7iZ;tvoUj}iBBh_zaja{
zh^!K#HrtwN*>SarH73@ISM0oT?w4M@W#a8r*xnKHu8DOi$$IgS&NiBO-^3OZTN%7j
z-c2U>OWzMn)!*36GJh(2@Z@G6roPKgAQw<RqUPtLIUfEncN>)q7YBdN-eKZn6FW_{
zQ<6cY&m`RMxkqyUoZu%W_L|toPn$So;%gK8O?+l@!VsKL{oKR>Q%zSMH1W{l+%HUg
z$=Z>Y#p2<)ltaQ}99RfD7A<f<{Qt(pVG}=__{GGxCXSdmWrF{KJt|6r!?BZ6bdL!h
z7yQn|_d<RUq;Ef(IFaH%ng7j^@?C!JJuxsiZQ=~SlAe{<AoDD%MlUsQ#?X?`6y#Ty
zWD~!c_}xU<M8w1ele!vrP54Y)G;v8{^cTyCH|Mg6KP7Be_|{}Kt|V@lm3LL5Ny6}4
zGx4{Chbr#6iJs%VH>d}M+!Fjpkn(>`+!lT(C80v551PEL^J$R+^n@Wds8>bkXSI@X
zv1P(e#X6vrs!G^kN)i&1xS1X`5u^6@qmUo2iMWY-RAPQ47|6a#VJ0Qy$F_LJuTVY|
z^s6%#I2oJf$B&+L@^n9*g@=Pps%4K~xhdjDQ9la%l@6zMVp~}%DkhJ57cIctXR?&^
z<32xH`SF+^rTm=O!GnH0<mY+Uc)*W}eq{R99)U7`lvPiaO(q-Aa&(`TRbH@yAorhA
z0>5frs|r>U_pED`{ixzs8&r9*O{pdUV34Z&)jCTJex-OW$-{m;;zvt)_fbD;`q9LX
zY(HxGQQMCOel+wW%a1yK@KCAEGZ|C0(~423=SPvO4D$MZ)pnP>qZ+1QTE#~4p~ilA
zg_ORdEWWtj%IW&1engXL%|*^WNi%w$R)9(%M^crE*+L>k!u}p(lq;c{CfM4KHhw(r
zM_WI-`SG+L?fhu(M`u5}_|d_Sj(&9V^Q2{38mnPGKiaS=|0j}7Jx|UqB1fql!#?H5
zD|w!-5(XwL4KsL#!wbbKcK4$Pv&@h2e)ROC7qz_~{iy%_%F3&cA79PNV^U8WIdJR@
zbqE;!e8!Ld;?K8L)zK4_4De&1A9;QZ@~dW@(={Xg7%Y5<;84L~g2M&rY=j@L_Ey`n
zMlk@K=kMhmEo6+~SU<+4<j)FW31>tm$fqa!F;U1QL3+aJuPJ^^mD{xqRL6-WdAc7n
zn8<$2@?)u=n_PJ0GUhNT{8-FbT*{eC_d>|$`PFp9d_SHSLjHn~1%e9&U-V;<ke3AM
zrqc_VeD`JXgp(VuN&uK9EoXX`FinQ2g1Wa>#xjwwVni~sUiV|UA74)M&`fki%Kb`a
z@gS9$Z-^UqoH$*x#*ej944PPY%a6C2bQT`5xbF$?`q}GH<$oPZrXT10_|=aMelFkR
zYk6g(_`Joh?7QCgW0N17Me>29|2f$~@S&agp%mkOp@Lie9Km6mAKU#nBw^UW!p~}M
z*4{7WbEkO4GO$a8y9M_Mej>P6aG&6(g3MpO{+S<dy`viC&;2;Sn$8{8f+S!1aZvbI
zg44#Rbx*EmG0fliaoCS<{W#(W6Y7i~NBubF$1i@IW<50vG9{1u@g3{6#P??jB(>rX
za{HqnCxrYY$b>p6<P?j97+X5Os2(z}e8WF(-Z?Aj(|L;O_n!CTH$Se+E5D2Uvfu?K
zmme4Xs9e#*%)R8t?iH%0v+*Kc5jTJOaa9PXcK`C@nje45ElUE2<QyN-LjDHpmmjzM
z_{Wbp6|W!v`f=Njm>=B2e8;aECVFW5@y40#yYjkEP!rTy{Dhc-enGmo{J0>^4SB#1
zCnXOG2?>V%hzN<Mp0aJ_p)0OLmc6y4ANQz=(^b!q!T5JvCg)o?Us}*YnuT-=85YW0
zs9>Rx1&@W27Vfi9*g_Et#Vi!J)UF3wCsLsmwN(4ajR04UqJ*V3?b1&oOHnBcMN8&A
zV4;kK`z_Ui@G5QLrG8$1w5+9i4ooqsU&_l_YJkAzrlN&R3so#swSd%Hl`J(8%{g<<
zpjNijhWDC{bE;XWZh?li4_T;Tsr2O3--8xRNuO7$t41o#EXYRfQK?6D1#4RBT$)-I
zYFl`+uQw|dW`?AWrRu`0Uvuk;%lZ}?SZHXWkp!c$1ur8ar+6(H;^EF{a+;4a@Yxoc
zT4*M3b!6gLXl{W`TaJYmmfD`v(n4zsZ7j61@E9XbZ_^5};h=V9LRFdMdE7!<`3gBb
z<VMkU7TSxXgJAx)cP@OeoOiO&&BD_RzkIQ?rN-u61fLS@D#%4-%Dao3-WK{;{JnxY
zD5IxfFTrhTS(Nm((2rkX%2;@Yatm`T%(XDU!a$4v!^I>Ec@_pqNNB7zSjcEgwU``#
z4YAZHY^dNc!QmE02pK6jO0f9sJUSaAZ;cfkC-|)3bAt46ypRc&8hr6~vV4o%IcHm#
zVyPCH=`+>BG?9}}w=g5cXIhw*;sXn%)5?er=2@6;VWEW=Ej(}iw=-n{%Pk%MmCe~L
z`boQ1PK7P95KB`=EKKd|mukPnSBmG7ykcRog(Vi2is!Fd>a-BnDZcpiCA?-~8MQZy
zrKJv~eBDxOE^CD^7hGXsrI1yEbn}LVH&cAIg*C!C&CW;cHqb8R9ZPA6I-!DGB4^w8
zu9VDmg6jo02)<`wqmcInHwm&(u^4}7VT*;F09pjFm6Jaf*4lW>#x@JvE%dh0$Hoo|
zA6sZ*t5#;Gl#@dizP7N-!fp$DEPP_&pvd=H*k|E$iT<G0d7oPNOt@-0<f8|@IajJG
z`_BUwzOZQZI`B)T`Kj#1hcd~T3tw5P=fLF{)|ziD9JX-D!etBJS~$YWYvC91@Ti6F
zE&O2N7%R&t?{QZAD>-a3zO%rJOv#Vp?1Uia4LGFw$-+rX9Z+-1Qs&(J3O`5d(9;&S
zO;kq({>JKH;Vi3OTGlxWzfxWN(>P!GoEJ`SDf!*P1r{*znQvW`3c^<|j8~=ZiiJNV
zDL6ZQ)xuxYhc=4XxMuM;Pl#BETDWfEh6UY%!H{s0NAQ*ue(uy`TK&UPEy;CTkdiw>
z?h5(@H4CF<G|E<zp71hR7?|LBUdvJjmb`2s0qV?@Bq$_gAuNPOgLD>SRhsH?EyN`x
zRM!bcfq`GHlnlp8+bd);I`=FTut8E#kR(k=x{VAWg#<mRr}Vt2jbb(`*{E!zxQ!Av
zD%hxKBV0DOq^*=>d0UNz?-NNW!TW8L7D6`<*eH|YWrdWpRU-2d2gQ7yDU)d{Z46s=
zCs-p`miVZOjjA>p+3?z^W}~{Tnw47OvhG`%HRSd|LCPNz^043|HXapHGxd~x>Dt1x
zY*o#9)e%zHM!l4zzK{ks8VcdU8J)3!v6XLZt8p}^9k?`;ZKJ7;W;UAJ=pnT!$3_bq
z?QFES(b7gM8;{w@wN)vt$t?_`<XhWlW2+q~kMpUVZ^rn3In&ctgp_lQyMv96Hf9e}
zJ&-5pzf|oOxp|$0KPgCIXB%Bo{3#(_1-sdJT1fZQ({F2ddP)d;2~v--?)SCP&&DVl
zqisAR@}YwLS-dBu53n)NMxKp9l3YUs2TQ&%DR^;~k1aBX)x+d126ecN5zHO4Ah+R+
zl-wa1V`Hq1=WV=TW1P60VT0!qKWpPT8{=(EurW<MpJ;<UfyuT~AS^|bq%83uizzmy
z+MxA2<*nQd;)<i5>9#s!O7%u;%wk&Em?NId7o2Njo)8*EGhpnQ(8FIRsddr?5{9LM
z3z@$*7TI{o#w#`!+xV6JX9+n+RWI90cd1Fj?95liHy#$j-YGp?VuN;EeEOP=Wj0>7
zvE0ULTkVx#k86dERpd5S+Tijc-SZH(H^m1Y(8}zlgmsX(#>Rs6xje7qZ5!{{xMJf^
z8}Hg!XX7UuCvB{ka2^ocVB<X-8*RLA<1>+LVgVTL*==Kwjm<Vbu<@Y{ZjNT1Vw<u>
zIB&NK`G~E6knMsy1V0v}o1Hdxr8sNiCroe&@O~R38|JP3IeVXtPbFp80<r;REI1>_
zD10u?@`tEj*!a@MK^tF5@V;jr4e}nc@vV&`Homs;jYzn3b(rPqbT&_%poz}Sah{_#
zj*I8V1UY58r@7}l;cf1vaXRz|8$a4OVPnAJ+_zWarkHPS8|OJCAG##?vyESDoVIbs
zM)c=QmhiJS&QZfi2!FM4o<%Mr>o>_(wp_|;+F$#35mJ6Z$l?sOwe2D^A}xz%a+k$t
z&NR}ut2X|k0t}#d0M~5%Z6jvGwQ*hC*n&4~+?3DVvT@gj&&EGC{<U#i;;ZuAlg^0W
zu~o;FM6;pW@UsB_l5J4o%+BLw3ZY|iCbcC2=0KQsdI1}b=*%GXr;Uh>5X=8x*=#Nu
zg{ZhJy<Tmjp0=hHi$PpMRWP7duM*@o?y-;;El?n!RA_##F%g&)X#u1MkP%QDjSB}*
zB!EHz<&uTm6HuCpbBR2@sc1m;!`aHPy`T>z0;(7Buwcmm?hBw)0QUz_LnL%iI)KUn
zR0-e#;#;lCh*y-C4WL{=DgW{k5=trrP*HehN&+F31gUMR3SmXA7WmIdvbsp-PF7Xy
zLGk$^LGIaPfFB9q(Ew@&P%D5Y5}w)tWCc(^fCd5737~f%bHFiAy#VTpKb*{=KODzV
zT{H|pP5uPH*;EQo7OUtL-dK=As?cnCt7!nu0vP0GP<J(F-2Jt0G#<dij#>uLDu7o5
zSi&I5*O^e$h2#ph4xmi{j|b2;fOY{431Dad?E~nb0){>TbPV8$0D94JUvH-Xo(!O~
ze34`1^WGfJB(O7+>q+ktz*CIQ)$Fc<-2{32bO7Cj_YmxvlJ}qGp@$rX^riomv-$;i
zaJ0&ZR%0{!i~j=y$O~XV0PMYRNJ|_PP`e{}4Gw^dO|)PnXF?4NV0ZxISY`qk5x_`E
z{LukypZ4DgNTUKug>w0c6Q^Uu^ReQFhC0s$Fg}1OBAg(|oiCFDm?)gnjO<lTW_n)E
zVND^@tbJ+##A!?i_N8SdbVdL(1DF-S>;UEj@QNht+yLeUut5A_cY1jdHCUT3Z#^Ht
z3rxw`dAyi|3j=sj%JZTCUKaN+G4XG-`kx>PlZEfn%yqH&%xXf((g0oy;EG6=1@L+R
zI|JAiz;cniC%7Vjl>w|`fCE@Bk~afb&2I(pP5^6CVWV$rg|kk*#f+$`l+U{&Str<7
zY+5)!PX`-Ba^bd`-`E(y`vGhUU~@p}G#0H70{Ae19pZ+Ce~XZh1h)pj6U(_KyG?GX
zx3>pC<S64~k+8S9`Vw{ruqS{s0h|rslK}Px@Oc0Sq-^A$jj&G~e=4{?fX{?*M9lDf
z5x|!L91Y-D00#s3N*;Y1z#$3V*8$ZrW=D=e{YLm<K`M4GX&qt470az!ydsOraTYL!
zHh_}>e9v-a*8V}f%93@EABFRCCxmc0<CFyN7rFgeIFpp)&C^m7IU!8T879uT050$;
z6&efY2=95~{M_FJe;4GfZ=`B6E;9Th)hpbObBTJR>43`twa!BFX8>0N_>0OvfKY({
zq{iO?T&JRt{Jjyt%>ax5%m8jl$ZrR5CxCwfQ0G5OG2{ML2JdbFB$|ZT7eLxjFDo)5
z#jb)L!1<XTPV@5CA5b=gfdH%k>;RUgb{%pK!I4yD|A%wbEEo)JB!FlDr5&Y>V*$9-
z-VQtt;sO2=4)+2m;HX)eq<oZwlRx}KzgeDw4mf9$?x=oynxmSMem50n2<J$=u!ABF
z?sL>iO;HEM9IzagaMZc7oHL;(#hw3}5|+%84tT&ObGekGD*pWrHce5gfZF>33EP;5
zGr8PZ&OvzxPe#x=f(i~QGMqsqg2;3L2ge<J=b(~<$_^fM@Q{Nl@@{oOMzE@oY7Tf@
z7;kIH?VL@@7~o+Ck2vT=&mBA}^45Yi9n^AAn~C6{g-Gf+sOzAygC>sBC-odOaL`bA
zeMi+q8jmq{jU3hXc^%cQCE-PjeHuk)J80&p)f2jDDk;EJZ7vcDbLhFhHc3l))JpI%
z!CXNWZ02$s3CZIQ+B#^*_!d($W9=P`hllm0gScda($P`P$`gX+ZFF|f#la{Cqa8fu
zpsR!YzjbtT@H9j2pudCe4thA~<)|7&-8)|vZF`D`Ty12Sdpqdkpsxe=6K>S-5c|<_
z^(>MB;*4&FIT+|5&%q!EgPAFPy+a&j&%>byFBX!aA{_R!+A&J^!ySxp)FdIVkq%mA
zsGYfE9E^3a&cS*I<M;`dD~a`UjHZJblDvF(f`iEprZ|}BV3MOI2`S9q0Wnp=Go8gi
z22j)F_Mr^5_C(1{@!{!P>TKuP4(2$R>tLRP7ac5eFkc)$@8AW=ng=rqRF#9x7dTkx
zsMdsEVc}#EeTgm|yz3}+%G7?@!Ab|KSUVj4URmvTdsT3W;9uO^S}kj-@Ye*F3BK-N
zxsVlt+?GgZZ%7!pX@W+8Tzq-c!D>gX!th!nWUb&^f^Q4HBglnsW>(v2%{EAi?Gk*?
z!A1w~vt~Ki#;;t;+3es02OmidWpqAtz=JHduq5y}i;K0l%GYT;!xF{Ysw+I(9qgbR
zX4Y)A2DH;r#t)1#pSB<3+3jGDgHIgnb?}*k&mHV@@TqvRUvvn|IbE`0Wj}<I2?rc}
z;ozuLoG-;0pB{8nk7Ck>+^<Bk@LKjE2VXPIuVsHDcv$dT!6SlvRKd+SCjPKKa$fp-
z2R}F%7R2x%espkx(RXmq!B3J7K?flRCmoz}@Uw$o9B2-72d5pJad6$i4F_i(oOAG-
zgWp-$24(*0;Jk!~%iqlL0kxEM_cJ{*FF5$y!Ga>`f3W1-O26o!>QFDQOF}L?xFY0F
z!K;FQ3DV6qM;Tp{@Zc2scGJNv2e+k6{v$eY&?L{l494l~1+(*bJ`dCR4&N<WphM@p
zyVRl%NO&<kOj1LFX9=1P{6aXLMW1a40S8Q?CZjT`C>#j@<zYz;S1{rr>flgab-YPT
z-u-)w>Kn&}Q#~fc88;3T2%=yRC4;yxh_s+;H9Uf>Q0YNr1eHoJB*-3MgXRMY3ojBx
z(IAQil{E;j;zF9P@Q{}Xs=+TwsUYqTqFoT}gD4%u13@$kqInQyf+!nAgCH6PQ7(w`
zL75l~qCyZAgFq0K<P(`eRW&$FW&n6#5sN`(x(woxAjqo(QB??ewIHgec#R+)6#kH4
z{wY<om0};2DgS5?H5n>@?OKAh1$mnlM4c3`8&s#B=GTJyL8aK4BaMQfa%d7%;~;Mk
zjm2}$471Xu_x5H7(KHBJSTU%)XbP1RM2jGDB_b{9p~P|Zt#n>&%DHs=SWp@2(C5}c
zv<c#IaoJXoodovD^D9?}AUX!oJ%}DbJP|~vAfA?RJ{d&kAi4zcR8Z~trLFRxRC<-s
zRX)T)N4KC-UtFgk=U1u}ReN)K2GJ{sXM*S-#PLEEdk4`ss2Vk1eS&KJh0SQKt2zCG
zAo4V!0YMB5VsKE|gXKxsn36oDVGwihZZ<ETBQ!+hJOE^9P<3xeMg%cZiqOFzMg=iC
zhy_6`3}TE3rw1`3h_OM83*uP@GKeWbHIN)1REC8UgGyaY2!iIvY_N!vL^4^B9d$mP
z8kD_Yg0zy_y+-XQpBcn#@qboODKWNCudTrx3EN!3c|mo?#eCt<3%(#Y_L{0wF9xwF
zh<Ac`H;9+SpQVET3*zM<UJ;i|1Q!b)8S8mf2+Ko$3-ubq9K`D)%+I^!L9CElF04OY
zw7|+BRt5jFV0?ptO!3u1)(EZ@e2WPpggpo9>U9#5ZTaE3SbKdC8zeQ}6J#!L4B~wz
zrdfMaP+52I+AQP)!4Czu1hG}fM}l-i_uGTm5yZz5$S(zV2C+-X?jSxF!o=AV#3#b{
zrX>4>d>X|5l;krZjQD|+<O>PXBO7z~T~IyDuYx!f#MeQ56NE1aEr`QGd>h1X%*P;(
z1aVZN{A&=$SU7_?9mJU+z6+`qc3uajdcPO`gW!*XCj@^Iq??mLoJ#SZgZL%I`@WES
zHi&aU?5w7y)46Mvvlb+@d^jIeCiMI%0AIhr^bF#15Le_y?(V0XixR3!f;<!c&mg#K
z=_+dkD-jpYYIv>%)kZ>IcZK{N#C0Jz1aGFE-U{NM6#rMq?I7-?BrL|<0>%kOJqUv}
zG03CrVM^F&w{Hva2Vn`}z5s?f5X9=<xz&pm;AoELe1?LE1`!J)Eag8U$cn&?>W6E4
zXogK^E|t=aR-8^x262ySB#hEw6bPYU2zx^KB&3voS_rR%usDSD5Hdn2BtptNgy0FG
za0o?0C>lb&5bB3eEQI1AJQBjAA(RNAWC#^Q$PD4WkSdL(1gS|lOTfL8_lHnAq&89V
zdO%1S!Lowo1j~m|K?r-5bat$6CPFBeQQ)DFs=Sp#s4RrMijb-yR7**!hfpKM9~8pL
z_J<i%SwmqMYKBlNgsc$igp{JD$w6%)?2j?D?4Y(!rqvB8?ZKx!ETusR4MWHcp>+t2
z7?&9yZwQUWLv|bJrb!5Cm+)8!+4OnDz@~!D1bN$BNKObXQj(S-v=UCkMLOvIM>hRw
z6T*u}J#9m1CxLl9r0hI7nq!a{!uBC$9>Bme79B%)B7{yMJQ>315XOY~-+6Qip<4(~
zGnIyUp9(3R-!-IE`os*S*0^-lJ%k=13=APJq#C}SA<zbok9x^1CB2385$qd6KOxTu
z_7@x=Xco_<V~+I(NjL|KkZZwI-9thc8d5r(*DxW&1xE;u6dV=8kfzFBbZiLYLYNrB
zBqnJ{4X-AIRGoS*gz<8#@}jCTF=GAV$r6(#z*9n)8dA#v+*mX%gy|tXAHoY#z<6vj
zr%z{u)HL$U5M~LPEl9~6A#(-ig)m<Tdjfp4fW`YvHai&1@rA-)6r^yGke3+Kl;mY0
zv{-&sYQze`C4x&sYEAjI5bR4i%LHE+TrNl<CrDR@u!>p9(iOr-A#4j_bqH%h*uc^r
z!rBnt3SnJHEpfih@^&fbT~@AYS?`3vp)@Z}MDRSHjrR)jHx}zdH2YL%KW>za_<(Ow
z62hhsHj9Mzbu>Swr5xKzR{Sj?Yz?U)8)r3%tQ17w&Gh_cYkLSgLikw9%+3&Yh13z{
zoD5{Yakp^xE;#MBH-vqx{$ZseJ`G{NMBEd`XCZtZ!pRU$F`Gj8B7`60(U&0{4B^`l
zj)d@4NOkbO5j-T=@NV|ktP9*BRXOXhNa)~+sh*<}{_jL`OgOXYxR8&=d%qVsi|)xa
zs{Z~c@)J@9exf=mrRHpZ4&j#&ET()2r$aas!u1etgm5;5b0Pc{!Zms8*AV`s?)o?T
zyxjgKf%!e8OcO5%{vpWQi$X5t--d8S$h))i_=pAds(3=x!G8GPOcpMmoyl&q6Gf+Z
zZ-#iZWA?2O{s}3Yb9U+f4dJ%D&PvLl-U;Du2*(C_S#y~bzK~i7&;&{J5DejFO5zVG
zD+@jfNSNtED5TCIaY6`+Qu^Sc(skhwBFwlDVj;xE<pSyRbA;=L)Yd<egajkWk~7?U
zPq08(@q&VBg6V=8f_zj+2)n!avnxfyC>lmFDGw|XTvI3>R+&;Ftn#{~;C+In1i7J`
zb3_k>Q6`LsBB~UX4WnEb+r!uqM)@!*gwZvOZedgmBQuP8Vbl);VN?p^LB0}3<uIy*
zmGN!$Fsg=?C1ka*nqlBasT0(JjWi<a>#Y&yb_ubXpl=hrkA(4PSam7uA-852wZh1f
zaPk$_+1g>Xe89m4$EQPPc<O}JTuohZu&Q%j13nESH;mR{Gz!BTMqr|{E@&)1^K*}h
z%O--^VKfy&d9yH@3(pa3k&?F*(n_%XShWPnMTa(FJRU|z#wColjHw*;&|ciM3oDJC
zKOE=~R==g=xPbn5lITAbR%d)Y8AfLz<XwbNp?x}A86-a)M)xpghA}IQ9%1whV?-Du
z!{`-8@33kkhRRp^2=B{J%Nz*h{la)gg#86oIKvnyJTD~~6vklTLsAmz6K2XV@pE`s
zjiDHZQDKZ0J}rzfVP!8gC5)*;#)dIY2!+pv@mz|J4`YJxi7CmXFeVHC+$l)M3=emg
z6FKiRT|PHMkh#2YUheEL=7g~#jFn-`4P#yy3&L0!#{85UuBvl5^L$v1QeWVAGqRTP
z=U-Av8Q}kgl?~6LFkTYEa>d)1<=t1pSS;jKrd3sS3gr?h2}=c8*j^K|Oz?HV<zb}F
z@bJ+pelCo+!+3{2a0xh!wc^$4FwXYPToYDxpPgq$fnj({9yPDwc{hx8VQdKFy)Yc3
z;Cj}<US1xhOQhi?N4}h<+n5UZ`(bPftJCu~hm}1TuMdQL7{->AWUG*m!q}FQF!~>d
zu``T+!uU6gU197F<A*SQ3}a6ipM>#M7>B~x8^*pc_EX`9@u_?<KY#P5h(8bGfQ0#=
z)U_{IRVR7A48xq*OvUK=Ty8SDeL07#mS2bQO&CYQI2y)bam@JAZio0SKmBtym#eN+
z$~qRtcVT=VR!0pV598PIsyy$jq3n|@u230wB8;EHxIiD|yC=i=C5+QyoRZQ=HT82?
z?c}2SGfZLX4OWdX&M^zFWq;An`zsyK&SN){9g@|uXt;k~?(fVL<Z{M|8FVp>OJQ6O
z<3<>l!?+U0wJ`n;<4^e<19LSDPLYxD`YWvVs`L0k^6}F=oYJ}I6uik`r>x>xi*JSD
zj`NV*4&x5pM^H3^yJ7fPufs@$p)s6!-f$R^F!Zn*;TnSF*5#U1mFsf-f|j5y7+|Ro
z5)`DHkdRwt5e=&zc#Izv!e)ZIKZcL=&{&0gVA;4Q+4GN}U<CK5b_RKOHBkrqq(zV(
zfhU5(5oAQv@&|hh{NY_8;k;#MfXA27u$E`YubSd57D4d{G9y4leXa!O@FS=gQ9l$b
z8BsH(_eD@j2>JaHluq#ngp?61D_Aaq@~Njhxa_+RJ^VENWPrE-m{}=;Y7tbApmGGm
zA1K5jOqGbT3#uAXe+?kvj+Gh_JQz`jiII<)?IB^a`)~x0MDS<?H6v&z?M|%-YDbVO
zJS&1a5qKkL96{X(>P65fqLx4EOLX}42100#)i9zqQ1haYz4tq_^P13Q1kEGJ5jWiI
z!x2`~2%1U2Xlz`yd~S;fTFTQ_Oo!$k?vh?UMeQKt@bfVSV1)P4k!m|w>j>IJ)UN~{
zkDx6BGfK_cv1@&@xu?B^vx8vAh^i*Mo)FS0@}ISBmk6GUppuKqF1kk0ErO9zjEdsv
z2)ak`WK^}bJtFAI^oio3D0)TEI|5$>nt0nMf(=6YM$j*UXP65SJQu<E2nIyd%+J6G
z@)*K5)z=3_FgSvt5e$o{;yomy{!&Can?)865*pwQkElMt2npoKRG3FaFk1MSlw_=s
zaZI0-gp=eGBA6J#%MrX1!K4TlwX85Fg1He)j;Mo}*wLCIWGb^m$aKLOf^;xb$SlFx
zf;=c@WaX@R{6qxwe||)%_vZy)5ajIwAqyjTF(p|P!AmL5{GuDiXmJFuMzAD;rA)md
z>fB~_N*QHVb~<=1f@KlBE^%2SxSR$4O7055m4duo6~P-R{-%)C%$MG|e6%)|4sS*9
zw(xfZ-%ZKa30W`5)7{^TU}FUDN3bb^oe}JcV6!~h62Vs1!BO51BC3`DP>`+jM-gm`
zV0#2R_}vUO6H;_eUjErrAIppR(^h=6JAyqCoQdFU1fR&GuOs*-g1uA@n>`#{?2D)!
zj-LwdkKi*Qp9>y{;EM>p6#kVUT^<y|wubzWaGq{=ID&5@nBTGj6H_hzM(`uEb&6UD
zJ}Tsx;Bmq4BKSV_^oIz_q^Hx_36cDilAny=REqx`!7nL(S_s>Mb1bwGTxF?_;CuwX
zMNnjZ?w?d&BfV^+e~+l<mDzeBf<L6%l3x^ZDT2!>$rT}sGSYcmJpHUbC+}JWe@Aeg
zb*E|;Z+UHzm9-m;sifX5K^B#NBKTMMZNWP!`CSG~4gq6T)fpbCvj!_y1pWxD2ns||
zFbZ1=o)bZkK3C2PNVVl0{)oHTA@Pbi$R;KnK_umKG=f-)yF%hrk|{}2$UQ;!kkg__
zkE-f?e-s%}6pEr$RMi(sJW*wc%OlR1CWWIY5>*Pns31u(A;kqt2$mGQPq6izJZ3$2
zVV91o6sB(vL{UaQL|!(Ea>C0CRuHTxm?=m%f0WLwBxyokIf^PGubO&VEsE;GYY4JS
zPiGHD@rb<AAc{wYWC_-cqE=MZ3;tlJcFG5i&KSZvQPhp%$Z*wds24^3D0<Av%RfM-
zVHAy`@J7)%iZ)R^9z~NVvZH7oMUHsVl&aM%*i87YcXJs{{&>Ab6fOC!)K^*w;Ss@H
z0$>Pp<+imT%_G?ZY@2e~A&Pb>-d+d~OzSA*iKsG2<JBpuI*pvX>KsLvD4vR<YZQGY
zj@<<N2tFM}cX_c#6g{J;{ft_%WxRR`?=46n*K4TH8LEC!Wg+%V6#b(Z5XHbKhD0$m
zioB@O>VpKi6hb~&IFDN=9~K3Vj2j-s8>0t4y)u)WUX6(IHznB|`i+iaOcb4CswLtz
zHj0x`oQh%`i$@gCMKL~#*P>V!#RLiST)~M^Op0Q16jP#@9>t6(rbe;%nCI;Y>G#j{
zOp{2l>~WjJ%qV8Dy_4|I7WuBi>9nJpBb*`OW~g~l%#Y&vC|-!-CCZ~%AWvV6s-KrF
zq|j7<B<CW?qSRYe>Sewh#Vb)P;ivCpFBbW$%=hY9JR6y-74(_Y4s4Z{iUX#@>k{(M
z1(!#$B8rt!tcqd>`B3j0QM?(&#wgy8Vs#X2m_AW8IHf=BYGkdAsvW^^F+no2-WGgE
zkhkv&Stqz&a6?r6;);*>3VkNo#DZ-Wq&*dV+blu-K=4DsEm3S0@{!;+LAu-?Mb#IT
z@y5qd?2KYp6uadSXP@>6;VKpXYV?UzWTy7sDE0~eG$q*|#b?5)66xST6kkN~WfTXa
z_&$msqWCI`Ls5JuzI`p2e^TN%l9Ei!!%=*j;zy!5D*RYVa$LxosUF60!koOxTIP>Y
z{1io>CIe20Zw&mBIe8a76)E{yQr?atz+xQ5=_t-baW)EH6dE;H6u(CCcNEv7I3LAt
zQCy7T606U(?BAofAZmfV1=_j&5mj?Ryf}?^If^S$T$MOd=l{tvSygR&|A2wvFThyx
z<q^+S;JjSs0Pl?`ZbtEM6t}57CGdYY8Ax@_aQ;K}GDnSNnCW+z-BGpZ#&c|F-oRo^
zXRKLN;B=rzVMy#uL4On$E55u-WT(-IB1oMR!^1Izq6kM(I)(>gh(r;MqF4;YV~9oJ
zMo~D1A~98f<575G$`~WTdK4^3?U586a!;^8OzD$?f@v|N3!x-KNTHarec~;fn2p0d
zJmI`(Otlo(C!~{e@}WcwC1Yy-<o+1$lSh17Dh3)1Ge-Gm1M-lia~E^U#85VdN-<Q9
z@ptg)<zlE1L&can;lF$gJSv=t!z(ie#L%vxT0Ao6<WWLfDVp3=iQ&PRQs7l%s1`%5
zk(t$Fs1Z~44|K`n&^awYPQ}Q>Y#)i?(HOF0Xc|LJI%WuCs3*azEm$W8npI>m-Q-8@
zMd#)*g7sr)5JRIFyhPca)=(U?Ddc)q<5cXL2&q)EBDcSlnB1&c49#Qc7*lhtoT<o(
zp+yWWWB6^7hks^d*jmNZ9Lr-dwZEIUxpGU=I)*ml)#HL~1=|VoY5N#D2+yCeeS*1M
zIjd6)PsWhbFq1lmE7TkjcZuPt7`n#LEruUr_%Vj3W9S~k`!Q^ap+^ioW0)iU^b&kd
zuy+i7V(1$~zZiy#gkOAyi5bHHxqW1=Dy~b4=Vi_C42&U9go6YJr`!*TVQ7jEiy{A9
z5$3{(n3|v)DUU|QFgoRCjF7Q{<6?L=CEwl$<71c*!$grx7Mv7Qb%f_-F&I-)E~myY
zEybq`nISk+a8?YnQ%|X%=f*HEhWRl(AH$Lumd5ZxOdS`nAclo8rEK%f5oxOWVodEA
zS`@>*LEe`HN&Y9~<rrQOvRLp{!De48m#@XJEQSp%_BB+8@bwth#FSQFF1SLFw<}{<
zmEvy*c{7I9DM@HT`r4S9jik%BMEG_L?+AHUa9zsfdLcA(dQZN%QIG~jJT!iD3?Ia>
zSK8SRB?Wc}Zi!)QOpRGSieY;yWwyoC&*C}Xa&>ejhcF+<urr2TG3<_EPfWE$G?!H;
zY{-P<Ck*N>_0Kylj_hL=$FM(!&tf<hQ|nXQD*Jg1U&e4yJU<Y_7eZJym}|T^J^qzQ
z4pCVR_I@q=8^ObZ-wM*@5g|uo|IOzgXKj+q`d;MY+V|%+D4v^lB8H#nRSe-6PR4L5
zhMO_mqNa-Bml)2o(y^LX&N>~#xfnR1bS9=u`_2lo%8>sma&o3QUH%@!HJ16sxfkR^
zf26{5F@{SiewnWb|1%}ID&#NLH8DtI^Y?cQ*To-tbwi$#{3C>F&}Nzozb$x2@UEaw
zkSU-E(FF}bQ_wGHu@=9g+UtPavM=Ps5R9pbVt$=d#E}@HRK+gta}kTdjiH!};x6J+
zY?3Uu@?wJOx3}sx@G9V<sH-XhuYxYpTxCVTa+vNS!&N1jS0NW3;e}I@A}*?=tL=4s
zYquwzcBCa-)grJP#%-#L@1>P;alec5E=`qC+QkF%w5*FVuCk@!i`?SG0}8l(cv$U>
zaw6pGyehiLWEjSKnKg_Tg!8u4t@J7`s=7E8$Io$8b5Y&JyDrwbs$*Hh#nUdjyLiyW
zLoOb6@rcNqyLi+^O&5(^cwN+TQQJjb7xi3Zx$0M^JDLm#P4SY{k=w>*c70b(D>Zc0
zpE?@|H+ueeJ{4Cn8oOxXqM55!inCoc4r=PE`8swLI?v7Heo{(kPB7|Pc8-e{E?T;1
z<)Xcd4lW*Zk?W$ZtByQs?JCoqHZD(3Qa`4jdse01<1WbAA!+A=jUC%WCT~Ycx+h(9
zcKP2N)%JB_dRERFS~zd?+`KL>o^sKRnP?X5em1u&lc<V%#OX~UCvbSSEz_rmi&rE;
zdJ6V((c48I7kyn!;I~}#W2jt=burFGe-{H>jB+vB#Xw2_JXf7g$%R^G+#unD1&0Xo
z(NH171cwWba4}K{$Jcbg7y0@a@$Fmr#TAEL&q~zB3qB`EBOj(inIaV@xtPq<aIui7
zmrR@DV!n&#T}*W`&Bb(vvx@p93Y8dfhTP6{F-yqo)YCaG<_e#ek}!9Q@GoyHA!%8h
zMqoxz*S#p8eu>Dk8p~M3Y^|<NoL~rFW*Fw?ap{>aa=Qdma<Pk7T`Y02)WvHo1};{+
zSmxq&7pqu=Tr4M#Wvp;{G@shW%jj^$xo7~xcK&Bw5RPZkw;5BtYh0{#@s<lF$c|if
zsKueG%Hrj1SIxY=!{T~1hx3_SZdmVPgNr(G)Q#gk7aLuC>SDi(_g!pq@rmT=W)~m0
z_?YF^1rH`=$@$R578hGxbUBs1-9_0g9u}LATx@f}W7Zf);tnap3=e1NSuuCH*zJN=
zZ9KY%A>ZSwj#>WLa4&06Q?+ij&s9wo8~4v#eD1<zG+i8!Fq{?q!o`;^4!Zct#R<_E
zha`o+adFti*TVTlu4nP=T&mx1MRG(kh52&S#WCT>Q<Cq5d@uNeiywusvq#52xj0Fk
z;NoY-x>VX37u1RzR?z=nC``{fEyzA0Kg34xoQq#woOkgXi=vC`^6B3NuerFu&{8?j
z^2b%}BmKD~x0eMezar#M7gvS+C7A#JVkQ?G(;F^svJP%ms{^c(x5VdvrON*!$gve4
z-4^*B!MiSeLNq}>)rA;>hjS`elB(t6O3~Ra0xldEL00)Vip3FP`SIms#8D`Yu<(dr
zR4^v!vI!895G+8igz&|CLY``nQ82Fj;gu#NJ+6Mg!rQe&Jo#N#PaK8gN=>m9E)rKw
z14;2XO2qL%T#cYh#&KU<rC#YcmQ~6v6<2?G9=9^{ez~QDukdvio-*RTY+RWr^F<cR
z@^Ms%qoVl#NF0yy-8c{j4_&Dg$HOA8EVq<YiKD9UYAH$eIBKN$gF+q>WHDeSve4Fy
zqgEWXCD>d^r;s6G1`)I3${2uQs~1Q8IC{j<GmZvvG>oI0q&Yol6i4$oa^mpD(KwFv
zbMu-=kebGkEw}WCLb_}gSN}2RZHqWs#?dK`C*x=p$769k5eNSumMbsP0Zp@rt>b8u
zk~|(q+Z1mXM|<HNQj(5BScWSXtw@d0IS&4XkV@mJIJz(xa_S~)eb>0^5AdR!r{hWm
zG5fkR4P^&buQ+<gu_lhSarBYc%@XVzN543piKBlU<0X}p31}PxQ(vb)ZD@=a#~_gm
zj$=q1{DbPyI7Y`+|6!Qi4i_9DI8u;qMhRhL$B0Wh9xG&A9M9%UQgSX_P7wbmG8v^T
zO=d1MP!`%OS5xAcDnjyUaZFF~8F9=^apvjlIOfDLH;#F6tcv4}IOfOkd>kv{SQ*C)
zaV(HeERJKL5SDZL|Dte`MJ${t{=Yb0PVrab|LsR$F25Sb5=kW%o27BQmg38VydKAL
zAuQ_oWu6BZa$=4AO_r-d>8r(0-m<^cdy<C-*}WyXurH2J<9Iuccj9<Aj&*Ttk7EZ5
zSR5Pp3Qs|#{*PlLi&I)w{?<$Ws-9iq_v6?US7%CZ7W_bvw;#r_Mflc~Wbs?r#?<c6
zpE2c1`p0qXjN=mt&o1%yq?@rjj{Lu7>`BGFsGG4@IDh=d7x%~USsXt}m_Lu>KpbDk
z@eOkap8vguFIdibJIQk}jzjX+SAtw8<-5Gt&>R-Y3BhmUI3fk$s3aPDUo0WV7~oW?
z_%4p`Q~U=ZKgN~e9G%g(0~I|dB_!OnO%3@=9H&{{Sn}gI6UW&&{)*!oV-&})aa<Ia
z?;KT~qVvLklQ8@qS3NGyj$U9*=fNz3-D-O-iJQxDT#4h)IQGxY<2ie@8DQRBmC*9P
zZ-2*eJ&rr#@`m6o!JC5A23%<VNBF;S+?LPnA6$Wf=S=Bck^AD%;?VgC*?h`ghat}L
z|CGU?T5)tppko4d906+PID&ChPM}HxA*%g23MP=2KtzI+ly{@TV{y1~#6^-231?*)
zcy0ip9qB!h7f66B*Gx%{)Y215!&giwm6##CPy(I=3MWuRZm%Bk6ctihu$UlUDV{)y
z6fc>;eZor#-k*}w7WaV^FOxu7;pGI&r{onF5mC#T5(XqxADe-xlu$~Bz3!?BR7;>q
z0@(>vm$zyP))0I!frk=!I02sO#-)5}gGWUEXhQvMhZoggEs@ktAWKM{1R5vQG7w`?
zHvt}DT~Flo1sf#LP)H*|y73C39_A~ohE3(RZ9+AO&4f2kASa>PLA`?d$!v=RT8g}t
z;A4XHCs#;o!8Qpzo|5zIns(w_`-B>caY`yOA^nL2IwkO80*exOGJ(zs^h@BG1iB<t
zub`*kQ{qF{1iCS5X$786pu0%&*5J(CydJ{&KSwryy@dBpppOuCocc0-?q>587wY-`
z;@cR(0peg_0(lA56&#enXvv6=j(G+rFeITyF+;`8FhRy^cmg9*e58<3g8izhLnhg?
z9V@rvn6vbXWiNr5B6+*Cn(mvBP@9q_ie!=?g_9GQB7Cagw3K{$0yBhjZIRAqB`{lV
zIjzSf^*IUk_k_6#%o8$S@Oi-(1o?D90t<zYt~Y?UFY)yR-cI111YVXDSSI+2c)K`(
zR})wwd}#u&B~(+()Z?eA>Z#U9UYDoK6IhYJ$^=#=@Rms4NT?3#n+dE=s183%GWSSQ
zTdt9(d~vOi8H1GNd5f%!cjdbu39gez>l4@@g#Nsjz_RSjjdJ_G)R9estSp;_d?5It
z;1<EH5&$~bCU0#|U`GPmKElTdd?FFqnZT|DcFR+Sfz@Y^6k}TE@OEzk`x5Fb`cK8d
z!36fp?Pr3Ne=g)e0$&LEG9|CbrCwjoSB$kUha;(P5;&Yd?wkiF((EUJBMJO`qVg{%
zDj!YYSOTq%S9<JtrQ->F$70a4($1chzE9wX1g<x#bfZzF9}_r{z)$5Woh(=Brvy$W
zFyOvQ1MjPJik|Q)Qt20737lru6sWYUK&3MYoK4`%dpLLx=Mwmpwd@|+-oyC>eoJ6a
z5}zdTdjb~{_%MkrN&Jz(MV6Ll8ZS=bQUaF~XpuzAB(5azX9A^@cp!<Z3H+5nfg}nh
zag8;U8kpsWAxvQTYjtlXa4Ufue6d3P-S?-P73%+!z`qHYEb7DR-%j980$Kuk0(TRr
zT({%!mzw$#=vucUIWO0J%n&*GH*;EObMyGf&y+mV!V<I-2qfUhMPZQIa$X(@uMSn~
zSDKd>Nx)4Y&YZoI6-^+<!d#(#(|LKk?J+Mek-$B9luYnY!II<V<wYyhU-wx7K21v^
zJ&6)YluRNciJaPXizHE$aleyQC<#vzg_Br6;)y0h>leAz^1$?Z3+Lq(OQLuZA75#)
zwq%1<^YUhuY%riu-OSw1_a)WW?@yvs5;a>j-MpxNp`m4`-&gqDovboRluhEnBpynl
zVduK#l0Xubk|>|VbKa&ElBk%(%^qF4x2m6+gs)x$UN?qzKKn(p%1Km9qIwd0=jByl
zNXpf(D!8>*^BPHPJzTNbxfXlcmEP2?>6k+$A5P+tB<dtlH;G3X1_?%15@+{joZFjG
zBD+*Ak<?D|M@vl^LSLtJV!b5lC($^GCP_3%@~2%*8;P@q`Fv9b-FQWEqf<JcW+%}!
ziRMhJB$|nw4xTAdj@W2Z#!d0F;FHQ_t0W#vVs;X9l9;u&VQvzAljxU3>m=GF@puw#
zljxd6w<OvnIo*LLljxj8ha@^C@kA1xk{I4H>zDsy>N}vED!%_;OJ4GlEKS<`AP6YP
zlD64pcUf3^@0|rg6A@8*mEJoDN=HBt0V!gmiGWfS6{Lt1K?DUvP^2SZ^8e)W-T(QW
zGv{+YbLY;TJ9qBPOL=)wlkG0S<?Dn0+$i_7O5TuRX=^kRvs9pQ3fbB;W;cu3En;>{
zX=?s|kYT4<tC&4^X3^FnZyzgvT1{rJoS5A%X7`NQuf^>4F}p*|emQ1$kJ(XCW3QKD
zc1Pit)Z|Vvo7g#KcZu15ohwS-RV0aXctN<EsL`2MVs;PVuL@phpt1E-F1{YKd&TSl
zF?*o2_Kw;8Vs`(S-6v-E6$!m!F_#9}Yh-P0LGc3Tr0*bU9U?eb@chk+LxtFbGB_^v
zhsW$OA{il=un@CH<?_+o?-H@GF?(Fh9xw8Vxvdj~JoR%@%$}SpAAYOc)R;XjW>1gV
zGh+7qn0;_WbY{$+6|>(G{wDLGd3cWS*)e-(!<2cShKyr@o2SFS<qz%*Mc$?`6qy^d
z=Ly-CFEXQActOm5bAMoA%w80;7su>{TeFwP>~~}Kl9>IDRF|^pNobiEr#158dBU{0
zB4)qGZP+M<d?k~rdbrW7@G6l|_|=ZU#(Jq|4n)?-mRw7W+3RBV`k4Lx&w&rQ#P?Hb
z-i&OJ>c*HIJ04;wTO&gGrWikDa8vD*nEh$YKK!{Fj`Mkj{J=S|E>i1O%-$Tcx5VtN
zF?$;)8?(QT+1q3G=bTi`-bKmDh;CIp(lBjD%qD(8{XZi!u19vq>@Q>XJ`omuKIPVl
zz*oW}1;cw{_U&&|_DXg0w(Q5g;Qp9hrF)SB?7J;{^?#9XV)mh!eSrsW%>FjUf4i`c
z#q8sv|9#9pbt-U}2TP%f9QsJi{vl=;-C2XeqoR;?Glg!Ph}l2J?4L!#>PaD|1b<>a
z?5IxR>6m>WfA9=10U|$CAZ1rZqVKsFU!N!D@(UB-r^t}rDfFM!i%feN{jZq)n~*Cp
z`>K%N1uw_!1s{g!3GMvB;AEuyDR@or{@<bNLT(7^-(?@!mQAyN$LyOj9Qi-IJpGkP
zayw?<iP?9#3Y=-&em-vBkJ%5n2QNno#_fkOK8x5k;<h7hKZ@Cpd69}InpmE2abtE|
zH2)LqG(V)|wtl)ZK%ML7!&<IHkK5(GP6%0?BJ{*<Gj6+tyW{qe&jOZk5|*c$UXl3X
zc9M`hf^5nwBwyUlAGZs{?PuclvNPpap7tUs6t@e<?INP~oM6$oZO3ioS||~>i^XmF
z`K(Ba=gK>*4AMx>tuV1<+%6^Zp=pWg3&MkfW#V?(xc#E=@`B|An=K3{$8F+MPyBH^
zAo7wQ{BK4fsb)S5r^M|@JaKxb#_iwshbjtB6RZ%o(}iRR@|enu+r%-oHEL#wekDqt
zq*RXE*+R&x#O<oW&&&x_i`x_SM4rDNs2R6w#qCycyLH^I9k=Vm?M89CF(-a4`HQ5A
zb>lX#y!GOC@3#W=<My6%?gqjqy%cUJgcC2mGQ`#<ar@GUXw!J&-2qFpxZOOS`24vA
zU;lKBv=rn&CX??=Q`^M(PgwT5-v^YD(YA3rM|!o3+wJ3ahqxV$+nq$hkIFm7?Yn<e
z;LWS-%PL<?c4mCyiT7wM{BxO?;&!*V{c_yy9=F%W`59X3D{;F=+#VCR$1*2hEBb2O
z?i08B#_gW$6}MlHC%!%5{kpy4i8r2y-mAiY{OKLH2aimUesQ~h+#bTH#_a)dd!Q%}
zrtx1Z@c)3=aZp_T3Fv4A@~3|;{6^d^J~BEgZV!vw!{av9Xm*5jq|Qhoe4GMxMvEq6
zGA?e9XK>>7Jgx%Wh}%=+_O!S?DQ-`W+fyj{qe9|7nLjGb>Cu5z+Mxr}rD;~&epCFJ
zAvlvZk5*voY*FK5XWkYvNAN8!W!J=?O;Dcpa%6toUJ$oe#O;-FdtuyO6t~}r+e_m%
z|Lur6)Lbn3O9a{Xwcd%h2Fv31@_6D#j&}w5E}lGNWc0nby((_6j@xVEHt%xh$E5Ga
z6Tb!ct9#<{5o_c22XT8{Jn@TH284gM$XDZhbPNsh*LE9ZrMOrd<MxMfd+nr}ESuu?
zN4flCA)hc0g?uKsS#XQsR>5t8+vE1l=PJ@d=5IB=h}%2kb{++J73_-JyW_T@z@gyF
zxcyb!-XFIQ#1j|LJ<QLM(S2hp?2X$u-Vf{(<d!5)JDtLmX6wPY{dL^_CT<^!+uz3R
zt8x2}xcyz+{yuJ>iQ8w%?_?k5>-@NVf~Qm5{(;ly)?S;*a__kRnDDnhO;lNal<H4$
z`()hKPx==v4>_t-J;h9z(&#jO3%A@oG)rBa^>f@l7q`#H?O)>dUjysX&a6R|Zj8#h
zz_lygjMd-b_OHS(3SP>Uv-QIpnZL*F%M9s_OqMG={hSR*uEp&?<Mw}Xo6cP4Oyl+g
z9^JGbxBuq(aIjf+!&)pi#Y1}aPuy<!N#?D%J!fRr@iG~=<MtilcLnc>SvKA0KyPG`
z{7Y{aG`{*`vl%0!Io+B*;>H;neH^!+#Q7J5nJk(2vtt~0R2EA-ZYv5@1=~9}rEi)7
z3UxtuBuMU5U@CAcuoUnVaw%BZDf~=0m3-2l6+H_0s-CY0xJE2q1wI8&d6I(F2SSc6
zY55f7S1?4uPz41PY}%4tPC>E)zE*igK|uwD6ckoaM8S&+xX?uvY$y;cF5Fgd_;!c|
z3W_QCGbKEqmjDsYd_Pn|!E*{qDk!Dk`p!UE1*Pd;|M2y{!Y_!<^9qLV3BO<lAN8=x
zD7alCygp9~HScv!;XvDKgn8(dS8(89bta)-K|n!JL5M>uXrUmiAVon<1+^4J6r?K1
zQcy`jnu4XCD(MO`gj5jZPXIC%T<X$+e*wln*Qh9*Ro;wUSwS}ETf$jQK^5BUn)q|o
zstWk21qqAKTcyYM6{;(!p@3vt?+CHB0yZ^J&``m9BcpW`)D_9RuRGLJP+tK_-|i7&
zBL$5WG*OVJr1Sai5tpU#cZKZRR6#QZyqAL`vWZ7@O9ibIyr$rF1+5jdQP5FAC;Fx!
zM?nX%Pkr`nr=Yz8-dMt4DJp4+UnNAPm3G+LSwR;C-4(o|fK6Q$yriI;f=A=4JpCr(
z%PSRLR={UO@Oa??#WUylJ5_opcvV49E(E{ROs&XMi-dm#+e<-j1p_$!v*r3I=&PWg
zg8p3DE2*3vp9Rf$)@hiy^NpN@)&?pVq~OODRagcKq3{g_!xW5GFh-JRxPq@f3UoRX
z9zpwW1x5;zjAD{}93Wv1{IQ_=m|dZ<3dSiIuV8|Li3+AEn66+FCwL)yvgGr@f?;Oz
z6a{+qw5bYacTQv3bvwXR|95AEIPATevlwaxA35={6SEb}Q83bhQ4YMN;B9u)U}%^t
z`{k^HpSgSr<|~*nJg|WIqhOhWg;HH4xL9zB;5&lb)&!{Bq+0rN1-p5KDyX(T^sa&x
zoDMTY!84tLDXYqVq+oy9@~afQ&kd+xje@lbj6ah<V3%^`!=Cc{qW&X0(<xae^7Von
z6l@gop&(l~G2ezfL-MhLPsHs{6?`t_GeK_r%?h^U@~uL)32s+#XK8sV?2zggxjH+A
z>=Hb2y~tMz_9*y)AJiz=%VbmVH79c1U!z1-ev+`C%b{l;P{0opKIi$bU~uJH<a4$K
zzhQW{1rG^+EBKw@_kxEN91%jDA;an%<8TU2D>%aiEfhS#_!KNaJ3lHosi00p<tGKF
z*z{rfS1Kt)mPfP8|1>iCU}W@_K6RE)Z*)$<c?AtrG*t16f(r_46;Sc3f{O|sD)^UY
zMFamO1=n~+3IC0|Tft@FR}|b@Ug;0Pt0KueDq4P2bY9Z}*Ll*4<hFvpcn;V1v;3pr
zZ|;;xo0|&mHSn)(;HUBWb(LERdcE9={EmXVOy-)wdkXFg>3!1ouy*i)@S3BdY<i^N
zu>y|@ubS}fi2_Z9uHruhF$Hl2ii+hM3YxWo970tS1F=fvK!ys33b%^P+CiFfsxVay
zKHc!CeV3XTy2<?(FU)U4CoL6u>jYP=)O|8gJ{9?eB&o<FgrnzGv2|1%k^(B8QBhb$
z5fxnzrWaIE>6`RI!VlN;lb70<LwUDR(V{9wkBX8Ii>Y{4MYf76DvGNpp(0sDc@@v8
zD5>JJ#{L&olu}VzMZOVj%BXl=#o|%X7gT)E#J_n|lo;+-fY@bHtFofsy{W&Pitk57
zUuopOIx6Z{5m2$EncsJ*YO7}cpo)l!R23omuY!^k6=NIuNlG+HEKr(?3M$yQvWj#S
z87eBO$Wk$;vHwvMKQ%K|XpIu2l8Ot>{hZqRc_CuPZ&~aWtfy2}QB6f{6?LdNI?Bkf
zRF`noP;vL|S~XR?w=AQUNZucn&T;E<;!XbNLp|a31qVJX(nv*P6>qDUtD=dDrVJgO
zQPE6Aa}_;QysDywik2!~Qc<^szm<yCD%z{)Ak{W1+A+eTqikv`k{srF3qPxwqxG&W
z{81Ghxkl2|NnHA`WvB}$K04Z2MXi>8lD=cxQj@bFc2n`PiteKSiXer}#eR<=Mo$&5
zsTinYkc!t;^iuKjrK~<GVlDl>Rn+U6^ZMv0`QB~5zAA>NW%N_gU&VwbIRjKo9UY~F
z`m7!)o-tU(FzTonqGG6uH&pcOm^rY4KdVFrk-XH<N+UQ{1OG^7`{*diD5>`LgviIL
z7^h;kNXByrA=6bjXDAa@Oj0qKfh`owKV7-)3C(SnIYkA@RK~eo<}~4~?id}d9L=1e
zVy22&DrldBHtCr8rdT7HBjhbLvAe&xTj|*7=sXqkRUA-pP{jfj3sr1V@sWx}%v%+!
zRJ^ZZiHdhrysKh`ilxltUIs^5CZ^WaQ@AwCRqSc$AJWplQpJWAey+lMD$dnYR&~jF
zT3xMTjf!<D)~i@69jWsHjn`ACKx70qh@91pLav$q4|644vX51KqGFed-6}ri#!>OP
ziXAfCX6|Se+eCSbij}SWv_@y<7RlT$!aqkxY4!^hJ4K(v?LF)}ceEkZ$iEcfJ{9{_
ze8q{#>T~p93;$l>^9qMH9c;-ejc8+{U#s{=#d)TsibE>CRdGzkaTVWj7ppj|;)n`%
zq4A|MyC1{{R=FHUb2$}GsQ6LES*DzdlPZ2vaZ1H$MyaL0f9-rl$0Rc3j8r*p;HHyZ
zIH_}#Y|ZNWX)Ow=u>INK1s?t?{#J2Q#YGjDRQ#dhnu_04{4U+Es<^Cz{$Jtp)l*2g
zH4^?54$%lDf2z2y;)X2Z@mBs68Jdy#OC;3c(Eq5o#S@zWVX~>XqvDB*zuFaix^^^j
zm*;lw?CuMBpyFY!<X;t!gg?%eu;bId^d!!N)SzjJ7%EyKdK{GHYU3O(M58fLhX$vH
z8ais~Fg3U|tkm$H2Db)FLs&zK29E}>hG#Vt*WlBTq@jR@XEbyl^S?7KkA}P&@@cr&
zC}+x%^!)6|HENiMMnMgQq*_!%VIdSYFO^wD__RT_27HleYnV7D+WlA-G%OtxEv8|9
zuN<nC5S=m_%4&E{cu5VVG?dn$Z!9=>V67K4JkOU~18cQ?J*Qejf1k!}$l38l4UgJo
z`Zbi3Ude*x1y@{c!mD9G!~J=opdd*|$i$AB5e=ytdT4l6Lz;#P8tQ4NuOVGShK6by
zsxz28`88D3kR`m~$x4+pRMt>M!<hALvNcSp?^n)ckvDGSCsx(aOY?VW;3wA5P*X!4
z(W#{+&I(@FC@0p|@O52<gr%;AH`8*aUoF@`LqiQY8ro@Sq@l5f78+V=XhIL`Dor&s
z6XU$<HP^6tOq8ZLI+47Umbj?3(a=`I@iEcX3|;d?E0IGGGrJXNuc3p6t{Ps_5Y^C8
zLuU<Lw8S;&yG98+owUT|m7HA~*HhSi@3-l^z;)BWD_wUDFN*>%f>e7&gp`BFvWC~V
ztQsb1cs=1H25T6ip||Mw)zD8%TwD8Sph1%U8rq-q4b(75!(U^f0|aTdtPDyA7^|Tg
z-q0|ban>+Q!*C7Pn<jG1H8wgz!$>XhB7vNmqlD9cx;j?FI0-nb<295S8?{@9CWr#3
zL(b7BQ$fQ*4U05P)i6!NTN>WhFkQn84YM^IZRVfJ$TaZJ;?iii(J&F5iOmx6<e(%B
z&KwzqF`vtgreOhxIF>~<D$JMRs*jD5KUG_-VF|Nc!!iwgsle#H!zCCSWueY;CNN*g
zH1O}PtGugWg#>oU*eHb@dX<LvH9XMpP{V2sYc!nD@S}#cj4k7-VV{O|8rEz0l;dhh
z97h^H)UZjzMyXPAxpNNBy0^wgKhp3q*JyO~6Ag#PCN9dG#zxt+S;H0$J2mXmuvNo0
z4cj$*uAx|mg7o3a*eJ;k=J2@a7u@^fqR#}|P|i|zT$H$5L+pdLUupP~OSw}2y<=vL
zanU`TY*T+lv9Mpm0WERW{z1b*3F$X<fV)6AEzs<@8jf_#{GO*x^AIK9Y51g(KWAJt
zxKcmNCXv%JTaSvVV}iUKALkzFnAvBya#F)j8vf95O~WY-w^!uwXg#Olw1zVp&NBHW
z2tU)?mj0q27GyvuIj`Xt4Hq>0s^K>czcb|y6ud}>FJ)a~;-zKW+gOmu>f%dTmql__
z@Cr|fDLHIP-<rc$FMl#cIkf4&tD!%`qT!~7e|WSu3;m^G=D6tJjQmQS2gNN$cy7*Z
z4ct3SA>tj`zfY@c$3^eS==Zh6Yb1{QFEfP7I*RFdtl^1<JUa5~_>U9eF|Na{Bd$Tw
zq3h_}GSv5{_O-rLR2|zp1z9v5x9$Z$%pWpzICMCrdVXA#LQ}`?aZwg>ONU2ClJxS5
zPLc6ZpO7cxqLD8Z>QF+GPe*<oMWku-@K6Dco-b5TN5=T*Gdf-<qEoYw2n!3c+BlR!
zEULrS(Pn(~K%I0}pVd)ZM+F_}I!fqxPDeQ%$$H{YEvaMm_-Gj&rF4`Q$@79Q2o4?}
z-B#Z}Ykah9ZuLbSRG_@P4!@oVY(z&u$EaQH!#b)B$_eTSiJVKoR$_{dUE`yt$4CDe
zA5GP9Z)bbT({!XYO0;I^$kb6?$3i<;QAd^zCQKC_m2_0r@#2KU4w^Qk4ikyHDVw32
zkl0OQPqnGa;q*kNv9MZuLX;M2>8Q<6=uiyQ(NR~&Tpc5Z`0EMg=xC>-KK;_sP)8$%
zNarr|H`dWaM++Uj*S788sMb`+jp6?0I>?&|4(Zim-?IfNY^kG_j-w;|OFCAaG0xvw
z$LO2R5<?oc75fF}`#Dy7cG1ySM?W1=9UU3iA^tu(Ix%N-ye1=dq31eY*3n%D?YyL;
zn~=XJ`O6$tDB06oVXs$o^w9CDSSWooA^EIo{+^;qKB{_<&cCjs7d_W8zO}+Ck=?0A
zh5kAQ=$NQul8%8o2I&~dmD2IgDF0v`Lv_3%e29*jgZ;nHNt9tahU<9qjRY^*Hs1&?
zH*tu6`JjfQb&S!mf0%!~;8?+NiGbwUHq=kKa<Sk99c{-ZIB_y_M#n5#(=nC%XrzBS
zJr{*(g6k*w>B&qTTW9%S9hTt#pUl=VM|`8Hw{*NM;q5fj&(icx#ylPKbu3`c==g!l
zp<|Jb#X5HA_(I1L9q;Japkt$sr8=%H%3>zIr(>Cp<vQNgQS!fR3Rf@{kNY<+Zusnk
z^wLXOuhQ|pj&<YHKj4m#Ui?&it&la$M(JXEt5JEKs8Mr07jZ(A<U<{MpJack<1-zb
zbbKVeK4zMY&iaIFSEdeoaYTLu&7n7QzB;x^>lPiC9%pkPwr<z)xpbt#e6j5QC7TVI
z5Zx(~gMzzwhUoZG$5&F_uVar6TK;Bf!@c4O?d;>kfArHPEgTRv`au4*j&F1v(($d1
z#Hal-F7KK7PRI8;`ZTJ_LFq%USoRU=MF}k*({Y@8LC0U>?Fk(}>o}+5M;#}1{G{WQ
zj?)sH6LAMa!P)hWJI?4h%k%SbcB>Q3rca0#8=ZAt$1ggr>R|PPIB;1;`Ble7sb13Y
zyO7_cBR!-wx=nILhUPMHQh!LVYdZeaaa}YyBIO(+asQ9lzss2}ZOFOYWd88v)Nz}$
zD3ftV?5m}kv57IsLY{j%?(2A<;~`IY9WjZ?zdD|X1)6=tAw>9enP`M=uml%1<cL&I
z4QK}5GqB2lZon|m+&~Kh4g*dDeggpmrU93MVg{Zy;5J|xC}7|j10Dlj19=SOHBfeS
zvd=)0f!Bs4XXGT$oYl0-3-u_>XQ24l<dp-0`3>xBlb+K*NTD`7v!H=O28tTs)8yA&
zO&%~kv#^0825!6&Oz#@(G9WYW#N_2;f^DZ|!oVK`f-D!`N-l1ogn{P`ykOut10@ZV
zHt<PK`u;7++xvz}$yi&51hr`T>{-b_y&fz>#|$JJI8&frgGtFR8Yss}T}>`CGHCWq
z{^j%J`Tf(&8|cw4y+PjEi<Tq@4TN~=8mMa^Y#_xzhJj225d*0P;yKCb2GR_07G1|D
zS1_=@ce2_m^UY0lPYe#u+}U`3-{gu0vJBKTP|H9i16#)h*L6#$yqi+HvcV6@YiA2q
z5v(d$%|LY_Y^@=rO_98{4g5Z?lH>K@(6O0Kd!$$UAervfGf>|^0|RrMRX<zRvfl7u
zLj#QsG~s%^5o|<%d>Jbi)cxa1a#I7%4748>B)40oFMA`sTKnXd23i>yXkd_m)&|-b
z=x*Q@18q4Y1Dy?YF|giOyPbg!2BPe4;Ge<4rtc&-Ynk5Bz^`{}xjLqIGSF#UCi#}W
z=`;ETKYcB|tAT3Mle@{%zhq!Q%k-}^YriZ)%F!pe2cxmN((49#8F<w|PXoU#saohp
z-9YQ~*O*|f(^Hov_cqYSK!0{Ouq1D0Ujv+PKjvQF<XQcLOrgZ|Tcof5Jvq;SWX5x_
zfguJa8<=8XsDU>Oj509Vz~^&9!wiftu=thqX3f)wGcu#<?et}??U_DO7LK{W8I3V8
z&cJv^Z(#aZ1BC|!k6o=jfdTB7KGDD=u6{=ChwajD^+;wu*J_hKv}5vA1Jew=X<)X2
z=?0$k3(n+57@FC$efkXMNlx-4t?De1Q0O0$KF7dY29_CEZs2VLbl@EWONGo8oM&LZ
z5H>9kvQTglofoo1kjX}clP%L31me!Y$?tMMc1&MkV5N|0%aX734>CUg_RE|)A@h9$
zt2t{2oDQs^1p_}CIBDPm1M3XzHt;1^*}w)Sr-5w-HX8Vlo5;YY1~wV^$iT-2e(smf
zE#n=SS-3++xi^A0+NAr^Yk$Uo_X=({u*JYjr<0!y2);BXc%oDK@x7I{_6crh@C|&y
zZO(I`TE-4hF5D#l>-~b<l51a0uQ9;4%fPL^30I2`3Vvl^kAXu5zBRDdz&-;93>+lh
z%k!j9uvl?@KezeJ<g<N)w6=O+@M{C#7-+XB`B_)pM$_tVZJz#}f$t6cVBn~M!v>BR
zcxRc>aY&F6D>f^0_UcL`#|#`daKgZ;fx#6Ml8v&h<_r#U7A$2(2Y;fR$BTh$22S&o
zFmTbpB?D&}0Rz7nxWIkUEAyOz^V~J-lWWgP{<M1fI|DM`>Y4tlfxr4^GCd{^$}G_@
zk)pqG&vH%sCSPF?RvVLgq+jOJYxxh14VvfMQ+|~(?-T6YG5t>i*O@{F{^N;9I|goY
zuNnB8yXLg7?6l0vALtC!7XvbH8MsZG<C7m7;C7q;d-5HgMdLGB?i#q4%kK+$Aox)5
zU%^M>50z`RP3L08c!(KL9nc)8tYq@gtLlG7ae(opd%6RL0|omA(>4`p)-5#r?Zifl
zj0>6$xE!eMKph9%4p<HZ90)q#alq?9DF;eB;B#Pg-^{!Y<Z~d&fjkaeXk44|XSke0
zg0z$0k%)}#KmiB10iSUIuLoHQ3MnL5Sg?o#MRQvN{3c8~7886{kamhYP(t`~f+ch1
z2iEJ)JMe-7<s3+Mpo{}$9eB}!4No#S{U_s-d0FwcsLe2P%a?b6)BJm2(C<hbbd#Fa
zuHQOwID{MsJCNZ(rUNMsL>x$UAkC3Dk+$3`LhLc!SHXdF8T9CY;Q1DbzTAe~H5DDm
za-iz!<eCmJF)BIGXK$qnLo=sN%&hFdyambGf>i{o3RV-W?m!J8)QPVtLJPITE9O;Q
z2kJS{-GNsesP8}n2iiH%-hqZ(IPsy41E1>o8#~a1VILHvC%kr$G?i*I!R8LM5YkeR
zt*snroy(Iq=xrUyq4R?>Kb?}9H8S|eq)bQW^!|&IJ8+d-2cr&jbl|U-(mOeDb#0|X
zLxVgPIy2611iJ`!b>Jl--2^FrS;z~o`Fc3;ssp_l3h}n513V30W1bAjtXC@U>kjmC
zfLosVRy`+?a(x;9@xf``+YWQ!kCyfNIndvM9bYB03=lF<aFF0&!6AY}1>bPsaNC6P
za0f;(0j6cHnh@PHDEMT0@@NOfIIzNjmHcw{ggVxNaSn`k;PVMlei1x@OU5N|;2YlF
z;J}X)qEp#aHHBod15-poe(qdon#iX+FvEeF4$PA3+YY?xz-$NR@M~X@%zP(+y@9<K
z12i&tdm!4RJ;_{YdMe}>tn(dMz{Q=eEWDIwA#==u#mt}f<(D|{4wv;>a_f1%7DdZ1
z6~0W6!sQOU%h3Zm`Ha2k?>Vr_fkI9ccH({RL<hEVmmLkgawoLLfe#(n#N@dXS}XX0
z;5xzef*S-k3OaTsZoK)(0pcePd@SUn&jPHneCj~8%Yn}XHw$hNypvOC8>5|*x}CG*
zDmd^3v&DhG9oXr>E{4v5lMd{5;7hKK14kVA%7Hx&?04XR1AC<}yYJ%?@RqHdRF-_z
zLI-o_`?V;r=^F<QIj}jL@vQ^jIq<!M?~X%*iU(g@*zoTO(Mp*?c4SO`aNxKDCmcBH
zz%d7&%bPwmHQ1<SkYrSv@zg#C{mFq-4qSBLk^`q5IOD*12YzwjtdyS}ILC~AH8fyT
zfL)4y6`)JR&o>79?JRu3fnUX2N+S7#@TC6c!0*gh2d+7A*?}wEDdIL;c@Hzo({W$2
zlS%$`;5uU~3Qon(TZ`YW>kq68ez7WelN+B$v=h1$w;Z_bz#|79OO)<7aL<AJ4&3EQ
zTP;L8ydj)-Uq5i*p#%SNB5HEaeGwLp!eTXwJdq({4#a8pM!Ek4*->#qb>b;Le<1L5
zniZ9x;e^A9Bq#DX6Kmmg!sUe93Db!t#ey7^cZ^$3c%1M$;d5e=C;9DngF}l2XD<uR
zD;9jASg`Sz5xSAriF{7<$nWG>`JE`>#4}D5bmIRiyCz1rmaI<Yhbw|boG9u<v#EiB
zPS{SsiT+OTEGp*2vrhDOf_Fa_ccO$7ot)_G#B)xRbfTgYSx%IaR=;3rC!TkrZzq-d
zFNma!U|GQzohT<HS+Km|&fOZ7(_U8tQk{HP2|5vSBJ4!|CE;&U!zoTgq$yP}(}^@8
z6$H}-GX!a;`z59DLxrT0Na_n#7R(l`;zU&^stK<nSY5D&U`@eVg0%%{YS2e&-CSPJ
ziJFTn3LA)|p%aaqXw21dqJ6GTQzu&G@@7sn&*d$Iv=l5cF-jw?g|~5{t&kkSc7kjj
zHeT%@Jen)%DCDO)Y8N4|3U(EINw6E8@zr|SiSAN;g*hOk@|8qP;@1+PX6fm~YfilG
zL@#OW@V!By|Fe|F`%?Odgw?)I^b@{!otxDGPGmouhbh4e#~>#LJ2AwGp-wDzVu=%P
zI5CVF%Y<}dxDz9s7{eV@zPf99V5AeHg^zOL%AUZ03z4hwz`mZTY#QstxMhKHg5w1z
z2+rRVpnS3uQ=ELag}0oT>cliBW{REZf;$ffW;k)|No8ub$Vp*!mJ@F>b9$w+d(&4_
zXNxJ4)3a0Gc4Dp*^PD(vA;Jeu&6lQyg6zJ)33gBWDlzCH5w`1TzT?DFp65=ic4C<m
z%Vkh1yqnwWJttP=@|8}E?30+$s$4bBag7seo!IC^g}$jDh<v^1Gc4<*O6ND^TKN6d
z)DN8))hl(AAO|A<gnN+FH}STK&z#uoL{}3pnb_jQR&IY2NhbI+fo;sOzmuDs3~YDe
zb0>B<@r4uDocNRTa$=VgC!P4oiQP_o>BRR=9CqR>Zr+K}y-w_7)1$y19uW;v0+&Mj
zrAo=yjFs?%g3J4b7uHJoCb#vF6W<E|PVmw<h1ul@Plgx6$C(2cQhsov-tg3;OoQ*j
z#{|2N36P(VRu26mgHtHw_YL7wPMqeATb~3ji{y+G7o4CcXQfJ=pM{(gJTLf*;N-$#
z+WFOqQ)R*z1uqHyCiuG`yHn?i6IW%v<bOEPFi()=x)V2?xbMURC#svlzeIuhe>-uL
z`db43Fo1Q#cZJ^)yzRstA#A0EKK#EaCPwj;9zDV*ehoYnubv40EBHw8vBY-I^6-C7
z#6%KjQvDwCno!I{5L6SI3EhNY!fC=Z6Qfh^FcVAjxj#bgG85}%nedo!OD_t~jR`zE
zHlewHLzwvc!$d%g2^I2~Xm2K7LgY1(&qRI`1x#d_sAS?969r9_GEv$@Arpm7JZoa*
z*+3B!4;Iv{{av6Klj>fisEJx1gl$2X_+vwW)s^@7to2B76D3S^YM*l8d}`hYk>^a5
zlxohzX#7Itc@r;~h?qz<QN~1B6UY0d1x>tYqMV6<nBqXmCe(`&zYJR5#L2sn)#p<u
z+>6k{=6-35JQ3OtnFyOmF;T2m3I}@pP3WI))zVBncQKM79fJ=d6=djiF?%qYO3RrH
zl(bIjpT=rs6WJyjnP^N0?nSDYsAHn8iK-^5nOt|&FmZQDpq7c6CVD-HP=~#WJr4Ek
zpH^F%=m{0*VLcNKO+2|5A+Ik!H!#tsS2b2Cq*@abO--~l!6-E|(Oi6MWuk@nLxugn
zCXBa~>a1TQtxYWGm)1rQ_aooj4CP3dc7jjM4x1S5V1gJG?8qjr<LXd&RiLwpE)3DC
z087DN9dER)+0DeuCb~0)mIljI3;pp+xmQdyI~iIyG1|k#t0sDyc+EuDHv?~)c%Ab#
zG1<fv6TLYRMy5x#aVGkj=x1Vt3GdZV^Hym^D~0<rKc7is8DL_d@IiuuO$;$H)WjQ7
zox3;fl&{7x6W=cnJk=j=;>g-C`NM*dktRloO`08TVvO*yf(4>ADCFqlO-v9s$S0bZ
zl*^wln?2P;Mp|S#6L@XPG~t{DC9KX6;Y`6<CMu5(P{`KVJSU6RoFh2ny_C5o=5hH<
z{AXf5V{T%piDf3{tPI!uHstEkexZp)Cit_F#U_>rdB;TT)yk9v&jr?03+KNST5e*i
ziP=qRzH4FyH;#$-Ol&gok%?72icPF%nw<z#{5P`N#2TjJzY$hLrz2}kd|+aoNGM#~
z!zA80oO=Cm_68GaNx_XKJ`|!n4zc<%clwFIr`)`kLJ!V|KH*vMI7H>oOwih9L6R+8
zf}0@@vCYJG6Q7&dVd9jD(<Z(!vD3r>69-Ln`z^4`#9k8<?}v7q_|n8zCiXB-{tR?j
zl3m_Y<K2gWX!SJWJ`qyBUr3eKX<wW8hU;kJ2kAcSf_2Emw<f+baqevBd%=QRQnpWw
zvU*sm3wxv-mF~w)oDgzM<h1sqICD~}9Od}L=ug7gx9<MzGbYY*FPr>w7C%!iO~0Es
zZ{imdm$)b<E{MU4g1?GOOMlI#DVBSSy~KiTQWxKGamtrPhnBCHcr-D3)x^Uc7Uh4M
zxNhQ>iQ7CRMd$BafBs@{wpVADn<Du~kk%-<!_z>j4^2?QNZymt?+dc}fXQ5>8p*$+
z_DGN&ADgfzC4v((5jT;?g}g5OSS(d>A$@$H<)o<Ug64wm!q;yH3>O?Ov^x_x`f<o9
z5(+&+Ocz{2+=5naYsRD~b-XV4M3R&%rviVgo6iOQ^sk!>`CTaB!ZR)ubRpzI*o8ta
z6n3GQ3(vZ6xI~2_E|h4N@^2(u)CJoGxR9?vm{;uyQ^Ftp65s`{I2BxY!G$s|Jm<oq
zqhVgqpLe083#GRPO1bcNT9~CYr=vtj9>p>{jSUQ$7AWh&i!PLN;r7QVAC${ZcH!I8
z3F3F5-_5l0F0^_OA_=%aVNj5S7E)Y@xX{3bhAyPKkS0wvU8um&xsd5XMHez$iL2y*
zec|T2BQ!!@D?9bWp<!Cca-ouRsVtZ+SVgd^U^PK%Ru@vk1%5KXYAqLPyRdjqxQ+|2
z_6*l`Vg4t9Usi?cxlrGQKrqY~OKqnGHeU?QJ|Ax6LNgbd%d8s<HgTb;3)veJJ~$7i
zv~Z!N3ms*MRxY%5A%{yWnr+1Swl1hUL!(MZ7*hJ*UNm{#kGjx7cvAm_sfl9($AaNb
zE_8Omxizq8c}f=-y1MX^RH+a;ALywk0{gNH-CcOag&r<^>cVH7g$q4hSnk5RF1+T#
z>n^<Q!dw@6xxl9Z^mC!V3%$u*u>P%g{91CO8|C}D@XcH0Nd_?B;i|)Eb5GD5nm*8l
zL5%$9;9wVqF#b8oLtS`-!<ACV@0L_Zh{IhN;ey{RU#f8VkuHpKVYDl8GyD|6F)oaC
zVVv*@f@~Tu<hMS?L?M#|C+D_K@t9LxnC8OtT*;fvZQ(NoXXVOowkkktvt5`YlDBf@
zD=l*#m(qo0^ylOJ3tU*p49Un?!en-#juOfr$XG07Ydo0#L#4L!)81jz(AvF<=PYHc
zisuBbrQ1z)-pbytb^aADyypU+Gtl|v&`KA!oo+$GI}=v9@V*PHU0CD7S{FWXA@)*;
z<pUQE{gUyNuXAC&$TtXX6#USIO+r3$;bS3GZs75=OqrdR{AgBavkO~X*yqB27q)U6
zzNvif!VZq^!u3w++nKcaYO~BaS@#RhdS@mV_e(DBr07l;cDeA+wdCC{-Vx_tw87t_
zcIK2x(XY60A6DAq!iq`Jy)HcV`p11-X=`2o0j@qB<|uXj2L-<tjMepj%NW-4e<zry
zo}c`CX{xeNA^*XJqb^MFVxkwvTsY2rv+%lw6Fl^oer~LA<0R9bhm0F=<CF_Z&yd3n
zryHkTIOD=u7k;MDjn{Wa&be^jg)b&WZ@Tb{3m06t?7|gpt|F0NUHDy^F1m1u8!%jR
z!Q}uoe-j}UGLC1ndewzLcr=N^HR(v<UoQM9{JP)`!FOAxve!S$s#AgG%%mu7{^P<e
z9$YTm;ex(jlM44;xGVe~Pt@rZhJKb!wFhE>tq)!JSNNk`$zvYKJF=g+@SjLxg7Mr|
zdaKGzIa$pOUAU1ex$RCf-QbTyEjPwZ4!eZA1<O~jK)J^auNyu$lH4fhMj?0NQ>Hv_
zEVxlFpBs6Fyk0<IHNS9@0&YB$%e4YZVK?IW6%sZT5qZ)7(^|}pXWe+!jh=24ccbyD
z!16D%ySP!pjpy7b=|(9xYP(U#jnZyB??$#8Ror;NjWTYexY2)qpsZlf&97NgUUcKP
z^&tw&xsfb#^73x@b9q3>x@S{DZiI!uvoNJ;sj%<OK*WvFdsC>N>PDIy86(0K1k(js
z%@C3)SWz&`jY>i)3y!^CjcQfh_@-yLrWmj0=1)H&EY;npA^g9yAy#YU`t#?Fa9ua*
zxzW~*95?E_QTIvU@y)<LZw4BOPD8;)jEs;bZp6x_wiMn}u$f?UH(Cgx|258pTM2J1
z*d|xL`OQE(H+JPqi@MQoQlPyXednfhaAR0Fjpgi5p^k1Gx)ACl`kixo6**O-s~a!5
zQEZOVGhUvh8y72H{$)413wcGbhalxtdyU!UM*GRpK9i#r9D!cK7rN2gjXoTdqq{M|
zjfotBi{9#)(QbU-)p$H9I>3#AZVYmRe6Sls+^}cYC+D{YEJNLRLnOllhYOAn9O=d=
zA<s>YrcaKt*BB1!@Q-CyyHVg_5&lwRygTuG4c=W(oaDx2H>SA3pIp^{E|aI$m@*+g
z4rQtv+f#$n+?ejh40qz}eM^vJrjS{JZ@Mu%S3XBblgUx)yzR!^T=_g9^92`hAW>N4
z#$q?#i>EU<OWau0u^GubZY-4$EfZWWNcpE@(^pcN*>0hXg;j36@5aAwJaS{TJMnqx
zhi+_gV~rb;A0lhr_&~@yH)ck&DLFa3+Ilzgm(SiHxY3QS-$hvc$c>NP_}z`mZhYd#
zr#vm)_{ojW+}P~KS8nWaV~ZPGnJRAl;BLpVjYD?}f5G77N<MdEM=rmdl)Y0F8XXLr
z9Ggb{-8^aEPx(?5PJEoQ*NuG%p0KvxjRTCHqsn*md|colHw&{)_}7AEz72KQ9%j?G
zx%R&-k@~%KIV^aDGrbz2g^Tk8N8LE)#&I`JNZ%jbc;#W>@{BMC`uf#S+MW>YoT4*s
zoN?o<8}yJ(EWTL@^0V~1;Kn&OsDEDY7r{jLmTAAbanX&IrL(P-;Y;NCg1<=@cHej{
z<%%0u-MH??4LAO9<C+_Px)a}$G+2?6+9vfxPHNqDsq6LN<x8Qz-1vE6$}Kl;yYYAK
z*?UvSKU|1QAs)_m+<0qp^lC=U2X5RI&gwlk?z{2P<Y@PEi7zSm*5jcY)!HY>Cw!W(
z8+j~z{$uqgZv4lSfhVmSZVQ%`_@GR&pj#+VHmq8RZVa<%7T&**Lc&(Vf<xp^3#Jf%
z-4vIFT|L4qHLIi^o*d=J0v-!|-RQNzRu-R-Bnt;iTCC=^kk3NndztwKpXYEwp0QBS
zLLm!<E%3=3r7aY(P}D+63#BaB7GR--XzITNidlHpLUAfQpTd{)Lm!9c)~i-`LfVdR
zQ=YT<o7q4=M@0@{$09^>Dg;+&FFKoj???(IWi7mDp^Am77Wfh6#7(K?ti%Tz$rj4f
zTMGdT6)j|02wDhPs5!C%Tf-JEZpe;UNEMPIc(_!}I{&4mS*Tzk-9oL5n%-J9j{F(P
zu#jotr>ZrtO^&ik!oHO(RJM?9!P6!@;;-=732BXX1n6Xqvw<^rLL8!+g*q1MTBvTJ
zhPYJILTw?cCs@nE`AgyNN@Y=VzZI-!p}vI<TnGydEHt#x%0g=kjTj{hO{LfE!_}Ku
z*jg-1GC5yXaC1uQ{VB~jugxjV1zT8XDTI<iyRzFzug>SfZ7mExm*|y4oBLBfs2FKy
zp}hqXmI{1UgoRF`{3<g?NOvw}fwV3b)`zmX3ce)BYBwP-3l?gh_KJmV@oE|(J%k**
z66h%wD0%El?Pa02g#%0&3w<o~wJ_Sk7z_O@^tUjQ*=1pX=+9Xj(5FNPS{P(uu$B0=
zILinN4_^rnu`txal-Vh7SXi1JVHqZ5xL}38DVMD<mA@QZ{kbX8VaF5C_ZVwooP~WB
z_S36Dfhtp?<1I{J27VBjXkjv~37;hRPnp!I7N#*E7S>sqZefOnMHUuYm}y~_g|{ut
zweTjBL`$8+Ma--|Tlfqm*t>1@x0nMXQWuY{UO72+o`qY(6MVjqRcl;}r)Mvqsp;7Z
ziDRpiEV1y8h4*-*(|-%gEOg1NUU^3<jV!mYQmnnp_<xb=D3h{+t6w`pLIqmxS~0wD
zN9y|)R$Evj2A>YSR`}DQ*IU?NVTXk;ENry!p@q#BwphGNJav<Wk1c#+;iIR{(4Rje
z<2D!OEFPQ-d@4hKW?@8Tb(-4BwQE~_n}zKnf9m1qJU7G{j{9$=>N~l(TIyG#K*=s4
zy9K`#q@PsSV_~n5Ve?$9c9;^~AFnuaQVJho^tFX=n3i6&@#2t$Z!OgGqP`d3S@_;U
zSubAn;;@Ay7JjjC!NLy~j`G$1RsT5)$1EJTaK^$L6+%B)ffI~mh0sqHe&o^jV&J48
z$%K6wl%JB;(}Gk!E3Fxg8vJa5*hF;BGXdr{m{TG2E7zBUdhmk>mn{6oec?eD4}Q0B
znWv2hRXw<3;i`p479Lyp!@@Q8eLHYn@K3>aDr9dsAE5Atg}*HP&0}O}qI$=|O)K$T
z)jxu_1X;Z;hb;+z*nZc-Jq!1_G0%isH%Q|N^MHGSOY>LwUqO<dI|550;V0bk9)vvj
z&qB;X+=AkP%ad?sPTR2RK_qX`@Idq6g-=72=pGQaq=g+GY&#lu3X+(f#4pxo9t*fV
zusra1;Ps%S2c<mld648mVGoLUkVh;R5X>vcf$|B-&#-I>vHFZu3+A>K@}ST=6(}z%
zl4o<}wh#yw^WbP&m^v)QMN&fWIS<l}guJv=Ny>TfyzmzU%Xm;$$crAZP~p4v2_wnE
z%M1DiDGYc}W<;X3(xpJygNh<g@qpEcAW5nRX~HWArsv8tJjfLOeuEUM(MT5a;oIy=
z9*j$>SXnUJ11<`y)jX)~L1Pb^cwlr4*YKde2MuJnnjX|!7O3R`?=-0GK^+h3deAx+
zuIE9CV}W{}6n+-8;aZ@f2fW5Lk}f2%3yHu6_9Vt_D#F$tH1nXj2Pex_rcgT+Xu(xJ
z6lf{fN>E>)+D4SyGK}K`Il|iswioOm7!~X&NK>6WnAbBgTvrcX@?ek$gFWb$+xn`I
zmp$n2!7Jpu5-#<~ZT)a$xTgoNN%eKXfgbeo;Ik_!y_uHNQu+w?6=b!akp3PF5K{Sm
zghCqJTPZxmgP|TQ@L-__Z+I}wgOMJL@?guVFds`boS|DB7$HO4E0pE95E$*j7!PJM
zy*(Jq<&dTUcLU=+sO+vd)x%$(Wlx}m(vgWCZ2CPgNpP~@6hR87tabeNC~cYt=MP4v
zb4PekWodAx;4DE_-}HcwN+Ws8gZ86Rekz%8_-zm7N_C##=DA@u&G(@AyMY;wii<p0
z?7_DleCNRu58m<MQ^v%@hmBwvg_i>#c(7a?e&2&~1Jm9WPO~dKSSkEH!Bx3(>@umg
zT9ns#uvW-#t3w-y2iA$sdJi^uuu=GjxxM&IE!x~9)sH;*I9L9O1d~mhJ>cWWc8Yw9
z;MQE7Z9=vSe(u4JT=^G5wk{3q60+NaFFp7wxAlOKJs#}MmFyF;pXciRM2@i>6v@{f
zd?VzLAn!zC)Azy;3$l9leB^esYPVJej(TuRgfDn;+=CMy{OQ4U4}Ro!;I8!GvIjqT
zaLR*=9(;Wxbef0Q2jMdwoRwbh8sUJm!q37RcL|>3a(@=;Jw1Hh1L7|pToCfB;L@)G
z{G9oc2fulcbFm%W;1{Evb|&1rA{PGe;3`kZWdW}ijLlA|-y-Fj2k#C^oLV<L_{)Q5
zy(sR*-yYobK=;D%;vWxgdGLs7zbRpdH^vlfm~vaJ-4VPic+Z3TLLLY{6r}#YJfGYA
z@3egE!4uB?LZI*bz<(aZ<Y0+2-zKE-gi*YSb4C@^yu54$S#@~f^x_#WZ*L24IT0|u
zaCsAl|8*_G3zpjp%L|W4C`|Igo6CJ(oH`unzb-_19uejh%qN&%uz(k<#w4C+5}6w)
z=uI5Rg#-%=77;8eXbVEHm={ZyCPGodi|4#3?ZxvVFX=@oFX$wj4#g9AwnW9JRfg`P
z6X7zVHgIWT50>*H*^3M>GQBA8MUVMe0WX3={DQyqZ@M~fddLeRTUo+hq<9hWB2^S9
zNfT1KbG`~fsG07?*X0}S@86WIB|7J;=tY(nmAt6z1r62|wQMhjPKj3Yq6&j7lJkeF
zRxD}`R5RGCx=3nx@mt4AzLr5sYKf$_U>z^&deQA@Rm#^4sN2{ZoINGlz>9|7#M{Y6
zUNrHdsTYl<O39jVb~7)uc12ov(b9|N-o*PIzDVHn3|s#cX(d&qQ270NDSVh=TQ73F
z=<7v42KGd|c3xB*UM({{tG$;$1}xXXi>MbJz3AjcFOkf-Sgx}duX<78#|mA%=<3Bw
z^v#QMO_E>n;$<&J=dVoOooPHN^3R0GtbB<oOAjwLPKlEAl)kSC(#Y$gNz&VkGkGib
z@nS*yDv5Ht+{lkZ{k<5>>3<s-;Kk7n*#o`UygM>Tkc5&U46GM#a8h23;^<xsXB@m3
z$y7X)o%dvb7stEpQ}~{-_S+TsV97CFjP)XXJu=>lS^0y!?u_$-O?mbN_#~fAD{Hc8
zk{6RXoDau*nBv7$uD%axK1}msI?od?PB4?XJNU}eiz8lS=S|r^p~fsPzMK+$(~H?&
z%<<waFLrqGg%@voG1rUtnN(iP^I}8Q@G>tJmW|98Tp-BmLLrL;7Yi;Cd`EDp7y2Jz
zsx9~8T`yL6v8Z?D_XJl8*4po;WR(}Kebrz5I80pQ#ab^uW30URfV;qpO)@$iSntJ$
zqPamN8wH0I53}h=@5<NqC&))4{Md_6a(jI$gqF7m*(w$|=<`>MZNj$;QsHwUEBaR6
z>BTNDhzA+%PBmzDH>2dmS28J9_j|EN_+BrD90^gfFPCt*12Ryb>y<h2uf6z2s)xMz
zmaqS12sV8$!nsSUk8!84dS*)W*PD^_o1q`Lg5Jcf2*(6TJPXo(^x`Cs4j*3dB^K)^
zZ{ox49d|;fyg1GD^Wv-*PrUfgi=VwX=fyQI{`BHJH!}C87r%RP!HZwLxah?tFYZi<
zPSCRQO^puQ8DV)rNXpb`w_?G|UR+^LioEvJ=s`2<suzEF`8&R>A~{*a>t5XO;;t9>
zy!eZUzZbV@(2KUY)^74Dz)fdl-4Y}juV(d?)-uN$OrILP@5KWz9(nnt2_7;fr0M$9
z=pj$mzh3N~8a*>L`e15QpB61REgGB_jd>C0sqRBT9~2){9}FKHK4`v#pFP?ex(~Id
zMPHs49X>7k*0iY82h)fAJ{0i5<-;e_qSvQIJ3F!tOpCgGAX+|ngm?vgf|Mr-$s?H8
zhkQa#O^dS0F+Jg4;pvHp74o6555;{b;X@H0iuzE@hi858PmkI@^qn4^F+B<&Do>9(
zt7f&H9{pf?bh4SnjxH<fIUh>;P|AnWKI{~0$EHVb3NdFSj2D{`E#t#?Uxe12%i&x8
zzB81vKD_8dIUgQfOK#P~pX@_<ANZl}FY^?l--m!N@x4;ehma3p;nCL&N_cB-ic}*!
z0S;wSQo)CGA3pG5oevqrNUbqGjP)VYm-sNDq7PX<RHElTboQZ(57|Cc@u7teEq$o!
zOWbqV$jAF6QB8PtA8PneQ+S1SDRsJpYYDF{SVyp~U_HV5f(-;43eq5N>T4preEpPW
zJ~YjhU+<OLoHMPTqV5e4TlsiCBpitP(8h<hK6LPbgR*;$4`=G79O<aFqpLY7?FC7A
zCm|JHyph9R9ewB|-3v}F!fIC^Uh?5JA71yNn=kQ>mBQ|#@UnDgmE{#5dWi5<K}vcG
zS+OUjmk+&V++jZS5l;sAFi=QeANmR5=>2{8sBbDs>E(ezJ`Cl$FAoeB973JGsn04w
zO5P9&@3CxuIXv8l5k8FMPVb%iU7ys^O#9bTNBOY$wbX%qQ~&Or`c;oq-WAV#Z^rq+
z6JWd#6MUHH!z3RT_^{B2$vpghnCZhTAEx?nafd$L2i|SYGEIngr!vEb-H{**IpuHq
z@Rkp6`!G9KbB=Um(_9~(%*sn6^L(H($$TMfB3~r>D}8v69{RAvhj)BfD#8_FVVMuh
zeRx-fdpZ_-v2f_87Kp2SSR)GL@B6S?x<B=8ZLUA;vfhUc+%-Pz;yExfy3vQ&uxg+4
z5SSSKP;e8Y?Zd}D@B_L}xcv*HZS&#Cs%oG5@R<*reaN{I*y6)hA@l7>`OFk*-b#sV
z=Qgn;EJJ<>EE|xr!w2FQKGb^>A>kXh-Q2TQ#p4Z9iC+r;N^p-4dxh*1+%I@Q@Sq^|
zzZUY14~K+&n=Aj$hwptj%){!6b%eWkYxWO5%=t0QF7@|E62tj$g2zh|>?Hi?!$}`5
zGgp21$%j)u{L1k9aGDc89vHf&+LPBZ_>k>0JR6S%&I<l4cuw%V;4eO05Mpc9srHW+
zyu=e@Mzr*f@NYgo+adD1;Ha+?FPN|T@COgNBos+PcD3@g7gW2(D4h%cNgW?<`0y83
zAqi>{{`TRfoHI{+_{WD^KHT@=fe*KRxFdMahek7^6YBX{?lN8L`I}zN=IOL<uJKT+
zlsxj`-&~$rC-hi2d(B^<u=PKw#(a3DLom*hzeA8jOM;%1u;xpGkpxE)+)3EHKyfBv
zVV8o-7bvE*cAOEV9aqx->{}xA<TiPQ^qCP&N<y9_<V`}pBos)(GfBvw1dc^J9AfDL
zg@dvbOiGMiC<&{#C*;Pa94asy`SR5sAILMYCX!Gr2@R9bC<)Idp?DH1C82T>zPXuP
zA_<vExb`^txg?ZKLa8K_PD<Rol$M0&h4_;YNWu%k%LuZyY!Y5f!ldgVmU2l*7G6GA
z@@qYfIzdqm3x)(=u9K1?BqEq9`1F>i3c}ed{i#sUjE5@b%Cm&<w?BN<-TvoLb`p|q
zg{mZ>YEt6ChSic#M@V(S8iJJ9OhPT;wFUW;9183HKc>C|x{2fa+QjsL%BrlSs}&Fe
z0To-4ZHz&->AiQbD4`@ksG+yed+)syTIhrtS_qv$0-=TwY6vAjNTG!G-F^J@oxjhV
zd+xk>^XARWn~}WQofTe1u&Q7+!J$j^H#pQZpq2rR4QOJ(&S!y=!$Y+V$mt1wAMw`V
zJ2E2Px`Oot>kBpzY-m6uA&s7AQEk-WL_Xrw)PVIxLVSGb#IJ#<0nH64r=Yxo76!C5
z;Ef4yO=xAn#|#o9wi(gdfHnq9GGek3Z4GE=z<vV`81RV!pBk{&fPDtEH(>DiXm57y
z@1za}bTr^%@3hYh=+4ORmextIvmmowgme|`CRi{>b;>_Cphrxnr;uI-p2C-%MSTqD
zYd}8(`Wvv)fK>(zFkqkoGYpt%z#s#@V0;=d!hj{?qk|0?W&qDrA3`@S@^T!u90@T|
z!rzaGBMlg3z<2{Dh{9-t{@?Ui1I94Yb_aR*=dPoHaUwjpE}caa*?loMRdBKaQw(_6
zBg8x3cq0AW$w|u^1*aJ>T}nN9^d?3uOP|H{Wx!$)QZmN?s?C?|Tm$9_;lFGwT3|rI
zuM!s;u*d-Z^2LALsL3CamKd;<wZutwWVr$Khx#kHtPEh(@f?22dF_S5)tpwbN#Po)
zvetmFgsc;s_A>F+(u55LY&2k#0h<ljZom!$uHR1FA{D<jV5?-=h5p6E+eApqziiU&
z?=)bS0lUQ%oBoE&zeGA)pIjiBWRGO2##`44Zw?+9AH6<4`Yj#iZev7VBfc}>5bJ&)
zSoNRxumMN7DH)MDBY2cc-hf*M+&1920VfPNYrs#8u_=L*2K->aj|^bRp5iJv5~TdJ
z0c+Bd$j=z?x1&s;VaWD(=**i$@^cK2F@cK)Tr%Li0b^H%2384PFd+FzkmRxfKQnBq
z1aBB{MKpgg;HnTB*<dU6s{z*xcsV{wecHb+_9<ufrc^xhP`AUPr1rtz47g*!?*`m8
z;JIktGvK}fPYn3WfCu99LvH(0^oN+8`a1ZSzI6}M)jtiWYYWp`W@(U;zYSnp{~GX*
zRN4Me7e19<Jd5?^<1WD$2K+~B2D}orY(`YM-1Id!VS`SX-UzAjLx?<1O7*dN7<|vD
zj{}?FuxB?Shm3ztK}vENkvqoMUkbf%MAbi2zuz4E=f_|^Bk~(zFv4g=DI-c7VKTyO
zgxd(s2*n7C5iTQM=Jb7B&G)dS-)e+SvUVft7VtTRt4274P|Y?W+At6}bV`8{tWqOc
zujmn8(1=1t6o_d~s^<H^h{8sEWJEC|J~X0;6!9@YRw*h~8n^Z5Rdox+jqn<gXhhHm
zpAmi|5=1!=v*!NH|ISI`nuh+65n&@r7?Em3lISEGkzz!<{JwW;V@<vuv-K)WC5^ai
z_N5uow7j0pm8N6Fh;$=b7}3(m_hKT`h-yZ(clpW~QPzkGMpQJSoH)r^<&Ee)E{?U%
zKg~&Gs>E6N+grtm$~2zccWREGy<n<JmtJ^}W%;TbQNxIu;#*xK>KReXh}x39`5=EC
zu}nKxy7=lF(ZGl%bkB%}Ml>>_v8c^-=negt&-ZS`3U&20Ga^fhni~-n;x6UO+K@oC
zh||}soBt<+uN5sDF~Ep{-2X-AQ}#<p8-5BHG4-jpoe`fHvAmn^FjLc-z79roG@=)~
zX~btnbTXp55uY2;St@ohqAMr2jqVRqHzTe;@=odIZ|v8z50e5k(!&V$i`kw=P(sp2
z>h?3DzY%?fZ}jNR@eWLu&WQS0G{}fAjF>2;gN+zs#AqYN7%|j{VMdG+`LR#+TEmSP
zVZ=z0u-EU}A~L{eZLA>4cq7IMXO$9m--MW)0l?BqDZVKj0V6gTvC)WWMoc$il@Y5s
zT$+D#o75E@(`Fbk(}-C{%r=6zv@H~zBRE%Zo*;|n3t3=9^_EG@E|TnG!JY#{ON>}*
z#4;numkX|7u>BNZ_DjjeH&0q=1d)<8MjZPwvCWF$O&gCx$5%%ES?P5~tQSIlL9I-z
zno)0)5u1(JV#HQ1fth9aG%>$s{Msm!&vfv}Yj%OrvfYRsoIVqJn6T4`T}I?GA-4&;
zjrhih*G9Zy(2fc1Vc73Ux^Bc?Bla1wpOG^uaLkC~MjR0St>8g^1Q>Bhc<;F25g~^K
zcdbsM<fsvQN`**Hi0}s^el+5w@b3j__LLE)g;)AE%<P$%{8u4ojrhrkb4KvFY?hv9
z1nx_^Ab3&mlHg^*p9QIKMaVBkT#ZR=m-On_#3pYTxWSk-;+7G&jkssTeItJ3?A-Hq
zEgVN=x+B@&1@8)Oxo>+Qgr$E9`9tub;3Fd*3kfKx?<_o#>|cU^3;rYcuMtnhjc0<-
z1z!mMC-_qEl^{*gZC;>wYsBUEgXD20WHX_RTYp;iJ(GUzf+^mF>@l9hgq$%xW=UKg
z6Y`qyp$SDyxG`I|@V*Jn-snS}&xHIY7)<))8cnbYF$tOl6+w%ju75q*W`bR^stL}R
z++jlL1pV<Dmoxzr2CWOYg|kJ?1W$|?5K_>DLP9=>$qNhNubD+n_{fAVCj1-@7Biu^
z2`x=1)hEqsg3pAqCX_S5Z$iL?R1-={H~S7rN-!Z&c+iAC*8<5Vgd`glOcLZMnFeM{
zF~N8+$yvuyf|@r2-%bpsNol5FDRx9i#Dt7kt#l6Hqmri7WN!z3%$drFx9MZ@mN%h-
z3H42AU_!;1ejO7k#du{Cs>FCz6RO2{brWg`uPInduy(9;Nge%>+q#miC)lY&wuWqI
zeG=u(MAAsGu?bCtG&SM;lO+FNNkr;oi7+bI+=Lb;<mne+O0H9;6=%(a)+V$u;S&=+
zHKDBu9eSrRwG%Qrxm4nW=sQV!`adDs@tuO;+`Va^nQ(thS|<}a(}-x^AD>olS6WvS
zx|wi#PoQa`{KW3U`CL^`6MC6&%!K16^yaXe@U;osO!{?<z9#(&21!2?`kOGogn=f^
zGGR7D$b>IU7-Pa%69$_w#Dt}blSZ2`bzjm@6YefZ8fn5X6NWQdoGFPrk|-I$bx}Me
z_s_v4y~>W_wzfa%^?@WTNLu|%h^6C97;nM^6Sg1L<r7VyTFC`TGfbEye6k5sXy1fs
zCQKIz71ldah!u+_6Q3_lnrXtwy-DA`A0f^$VXg`5O_;neX`Tu5S%prTuz<bj7hsEv
zO;~8cBF5^%ARFqQEh(v5aOJ@;i<X(N+=NvotTutptS}+XnbLEi?%0<iS!qJ%>O^MO
zaNL$8t(8{T?mG)#acl$ObtYV&uiK>Y4JK?fVUvu^W)rrW&`wR+VnTGOJ~HhNBt7jD
zU>7*l+fCSIg0enDzC&hVrwM&?Brv;Mvfl{q5!}l_Ef{3lXTpBr2L!(rJSg~`AaxFz
za5%<~2stX4r&^g4CY)H6?WqaROgL%6_a>ZT7fiTk!sE#)KbXLeSEk!0{3!g42`^2}
z&YJL(3Fk!eiwRd5<ian+^e>ulDaJ2z(}?jaLK5H4MVr5x@WY#Ul4~ZQTiSKDxH^I9
zhLD>kG<Rpe#r^Y5JcU&IP3qne{9W*_;K2Co_f2>p4*y}o6K;TGQ%qIT9-8pT1d_*s
zf5zn7=cW8*!rvyOpD+85)av68{VQ1(eX`&F+=Lel`w7u0a{~XFcxtrwm5ljI;mn@>
zA?3A5I5nm-W#i1qX2u;eemCPiGvdvdZpI8VvYU~^j5IS!nUT|sTxPs)Mm{r6TbfRr
z5Y27Yzpm#o>o*zZ6(kvSyzDnm0*1T+Pr-!zW*E#cnqe}-Y({Z2yk?X<8&J$}nBg?T
zVusa>Z4;vBCqzA0!!|SQqCg$hjIWy}k+{qN`LZ$}Ns(KyfEk()PfVZ61<fcV*$>R{
z+$dMrj6WwtY2ic377;8e_`{^o$&u;B%-C5iiRtrOWnEp<eP$$>k!XgWI#<J!yQBx`
z|HP=VOen}+lnEu%=WgjCGaijjX9}Bn7E^kXVD&(9@rltCGfJ3|D#|6zDBUW#qEw%L
zq+Dq;B4(tUkzq!$kDJw+AMCR%$Sd$I8l-2M^>Z`InNh}!&Wn<m$_gnor(Ah6Dwt8x
zj7ny7qR@=WW>hhwff)^H?RCkjX4K&<m{HA)>LRIOMlCab>YIn9HL2zdlhkId0!jIE
zspMbX$~|Xq(6cVFo*DH;&MZqCnbFvcwq~?5qlp<!&1hjpOEa2@k*FA_T9#Cq-62n%
zzk|)Ch=lT1B5y7Du^DXogV!Y~ZzGbpZh1Zt(!q?5LOwO4y%6fqE8=Hjjhgh0*)C>u
zHDjn5!_4SrMt3v%nbF^j&&}vzMjxr$GiIT;xYtXNO~31SUny-fF<Q57+5j^KnlYF`
zo*ts{d&SEU2buAO=+J@b9r6s3>H{|gIUvK$7-7alDIICXC?Vs_7%e(uVgt*;94mb7
zt=t^y@iA)?MEIUDG|7y~W=s+JRKZ~rqimWjPUC==ODCCW#w;_Inz77`*=Ec!V}Th9
zx#9){a+eG5&r^1;8S~8GYq{nNaz`b9+cBw6rDVP~agiB|&H4*&mI$8j6Chu1#tJi5
zo3X}>FFEFYL(7*Y(BMjrUfU9@1WCSJ=UvOS*|W@gHo8!M@7q^q`4vEL>BQ&;Gd7yB
z$&Afrd~e1nGq#wq)r^B?d}l^qv-fMt3uo-*D&`Jg#tz8_W`}nR*(tb7u;`rdHyqMA
z;XP(tTo6v07yfNfWS<%PX=iujfEf=CMTVKY-<mP4PzG%h51FyHtoNu?KP=7d*%m%R
z2Zls?ZwXW9m>I{-IKdz>c~6@07czDjz5mV*Gke;MAIw-eCw#$-9~tVoy=To}qo2Ia
zI%7uOx#2R4!#|1TbK(`PotLb2UihLJm&~|q#?RcN8Z^CS#uYPu5eIIVan+1H-$kyO
z!G?b22yY74t(rl+E)ojq^G#8vO)l-*VuW^n6Z<50&A4aAYct-Mai1M$MKhk7@rM}?
z&3M9&m~s1b#;cuye`_W`V&spAKIU#Fgcp#R%?Kpzo*4a`Q+!W<+T|baLS4N);q93j
z&&_yg#w#;km~s7NA}{}*n;8AijIV|yEM93L7K#fUS{uCFDEL9{&|6Nlf*cBRD#)hb
zJq6hh=gO|&#~+ecH3`KlFmDQ^jt|t^S7v2_@Yq{Tb1BHJptORBf=&q)^6-+3f+rKB
zc@<RBf=urV$)_N{5JODPUwllora)0(Q4mz{*_-&`+tcQCOtUJmDX=S06=(`P3eqPf
zI27zn%ycPmDyY9Nt;wVWW})a0c)CS_*<#H~6i`r5K`{lz6%<nNfr6q6PE1NDtl&ch
ztB$4>QIKzPLYGMip=&v_^3*)L%i!Ig_K|`;N2>jGq#Dh7Mc=O=pui`Mp4yj2<L44H
z6BHyWU|m+E<n_KZS`H})D@an1te~WVq019e6qHcV^>sXXsz^xKyJ}t1C?rV}VJQXg
zB=_G24W&z@vunxT3<a4A$|&g3Fgx!_D68-V7T)12n=(sMK|w_YUs|xzf=UW1EBH^r
zO9fRFR8{bYf`_!Jpt^#F3K}V>q3|sU+3G83pdeJSTulYF6x3EwhaUE<T~|Rp1$ie$
z$(tHV5Fgb|c(|!LvD@Z!z6OhT`!`n5MBzzIXs_sB8wyT}Hsy>gO>CwhOF>lOBim(L
z36eDDuK>bZ3U(--PT|MGTMM=kY^$K1kWV;$(*p05JN_5$)-8=2P6q`Y84L_31^n9Z
zi-OJ^a|J8dagM5jZVDzSyg3Km6@0E>u!12RE(JXm^ij}PK`;IuF)cq|RNb2)G|d0a
z0DqT>{t2V}{S@?9cmopbef$Fy%p2?<q~PQb{ZQ+H3cREI;g$YY1N@X^KF+yhVuhg!
zhA9}UV4Q;CY_UtdkqSmBpyd(lekj#D&_7zy&)*(C(O+tezuOT17>@iHy)7P9O||Aj
z{o@tvAL_UE^-oeTnT;x#uV9LTsS0K(n9YSV+&@jhOlBwfr%dxtXX!Nm3_)6`I==ee
z@&1oi`9o^1ISS^|NYh$8k9vP!|C4F{1qv1_SgK$dXTQI{(1p}R3KrAabpPeBc?rj1
zl>gvJ-90)$ua+y=)I78JM7@tIxg6-5f&&UxD_Emon}Y2M)++dlYSPVh3f6N3`uI0+
zHyGi6IlzBzxSwPr*LW{|+&=umzgfW+1$oBk{T<iezg0n--u|x@G#jTY>`<^%!8crA
zY+{6emxA5wLZ^C7JJoC3AdUxOFKQ9@Q`o#$!M;KMee`Fvf6s9Lxn~Kz2l>BMaF9EX
zf-?%fQ*cPZQ3c27*p9fv3XUkqm=wJ^Rc|*k(%-6K+;Og41>Y+;C2d_A<Uc8HpYG$Y
zKGuJlQ#Qlj_>koX1+Dw~$?0D6FZ^c}{G{Nbf=e{M-EmIAc?B1w`{U;6QAEw~X#d5Q
zaT5mkFDv+2!4)pLDgL%}^=SeXoFn{k4dSj!xc;i(nvm-XZVR~~$Vk4a;8u)Rd6fE_
z@H>LP3*HsHCwO1*fneQD23CK>J$XQY>0bqpWBgA}M2!EX;BVpo2)-DtD?g2uK2z{K
z#$RwPPt!|ZDR|8d!Gby#yixe1Eg}}ATM%bKHVaZL`UlO*S54ltz&cd_l!><>y9GHc
z$Z3Jm0+R*&u_l)Vd4=c)l~|C+0um-(kRiS=*?bn{7h;H&b~qe1TcB9rwm`G+E&^CB
za7wAo0=p2^g5BThrpl=)?`%4_^&Je8cX5|@S%8?etVvOi1qCedS>U&zpaq4b=pze0
zpl=p@XhD(xqyH*3N6*)~drU<|^W3*d#VjZ;+$-2?QnbbMBq{_fNDxWbf<z&;*CYjn
zOz0P)LMSFo5|S)PdEsY)5;BIVf+Yph-tn`6QWpJxpVESPqoE87GA$@$L0M7IZw7c0
zZgD-p8xM+qmCOg(%F(O^6)Xtuu~y{%Z{d<jU}Cni1ywAlYSBN_YgsU{Ye|x77F4&O
zh6Ob_$aAV1cGslx(}5+)&rixvUe|(p7EH2WvIX@mXuygV{qwY;1&u5iZNV4|8e7nW
z{#ekTL%OYOQwy3|kY&N`>&eXWG9580Ma?bfemm4ckffyrtz!IR3tC&y#)7t@$<odi
zv=jb`1)o|lbbo+$+FQ^;gdHvTOzQ5Kl|ngFCkq~})OEU8(A9!&Qrgpk-%^sg$6EQ^
zf*vtW&0ZGt7HfShSTHN)VDVCYCHvF2!NoIE23RoAf?*a6XZW>E7-Yd077Vr^UyItz
zrp>KB#DW>m(i3}^Vs<F!y?!Ri-kWuZOd~9qU#QMV3r1P+^Rx8oeQQ!U)`D>sjJJS?
zL>;^5&0aRHWd3-P2_iZ5ZzAPtu?&vz6bq(Wu-t+bGT_rV&hyL65I)_4Dbw|%DrQ<R
z%YxY!%&}mx1xqZLYeBKa$@ADW12uc%7fR_7)k^<SB=F#MsRb5XXdGE6xX6OK#RJSz
zXQ^loe82QEPVvLq)Ti)zzcMv$>Tk~F4zS9C)fNn}VxSdkELdwnk`>8TzGxNeEco4m
zyB4hH;;o->nLV{&1D9&G&_)Y3S+LoHEfyTK;5$an(!f>=c37~Jos}#l+bq~FJlEj>
zv%7@v6WndVH;kpXX_W7Y>F<4~ydYt}kOP9>#!7ka2bB+5a6BeCY{8KjKPu#yAn(sV
zVZliYzL)I9n9eB+uT<a%?qGYuH1(s%&j_9s{7LYfAQjFFxgfQey(HNu%k{cfI5PJG
zS1tIJ{q2<Wi(sqQ`S=Cqnnlie<}NxgdR_2_;7to|3Aru!n;>=aHVE;%di+MmJqzwz
z@W6sUxZ=(RrcR17h0cfhtI9(T_=JS!y~;hZ;IRdNTJVJ1uN7u1{<7e23;wg<r3L?3
z;OLq5FFRg0jbzu`_@@>;lk9T~UI^JRDLM$vsBqtu{gnl;EihQ|c2e{WH;^W2aaO(V
zTj9qhMc;oO&ulg;kJv)I71^aUw_pyzoPxOof1ebkavtG%1>YCUCzxN53g6_<ZnWxG
z;i|pWuazlQylI%0U`2ry2^K4?R@khtTT#f053EqFa9FW+Kw?2FoI*T;E-PS#Tev3J
zF{)DS;|6I&rUF)MZIm{$VOqY|s%3Jtu;_TL@LBPp@FIfLEGpz9!D3bvkIDV4)iBL(
zMZk)|jdZhF&*L}GNW0ZIjjkqI5fq<8f|P`<s4zK7l43;(E4o|pxfQ8al(eF&72T{z
zv+BR0G@KmegqE_Rv=tF6(ygdxMSUwWtjM&YvK3XVC}TxgtA5W_MZtGBN0k#^o~`^J
zA$2NQQS(fG5~iwFRJWpr71c!N-ECbpt*9m0+8p+V%B5Lxyw8ftbwo%~SI8fCYz?ev
zXvN1?w6>y=6^%vS(uyWlG_|6IWSd!$#dyd{Xl_MRBx8Qot?_0vA`^`>(dSlDYV2&|
zO=xYbXlq3WD>{nsox|;{_{54&MM8brY%i9{KeM8f6`if1SO4E8Nf%KjIdI2zWnDUV
zF#f}PB)6}J6+Nx!#lgu;Z`(RJyLf=hb5Gr}%=Q*xA1nF_p`@P`{e}0O9A$Qp6<=`5
zY)G}~)dyR#oik;{5G#gSG0dv}zq5?fv^jl7-@tGyMp!Y@icwaKwqlwU)2$f8>caw)
ztay1iFxIL+O*77l=lhe!TQR|k$&EuDmnBZL@-0pY51WRFT-1}Tm}13LEBed|=-HY{
z#2Hr1v|^qW^R1Z0RvskIret$q?xnzt<lr1OJvcDeio}nCJ(mZ_7g({-iX|dBm=u2g
zB9QqaxX22VFSOXIKaBt2YH+C){T>E*+|&8zVLmFpoH1a<msUR7oUoFM`fhNQ@UhK9
ztN9TilB#(_Yxxmi#nX*}byjS!Vt)zWvL3<pB4HJ#jiR}Ud%}J1X2C6jTdnw7$Tq=N
zTe4GOrxm-nv~952u$vJ+D7*2Ym**&cW5pgT7CW-<wc>~sN3Gb$km#AVU+{nx-&%3d
zil26*9TFt@PRNAGQS!sAD`Zo>v}0DBu;Qd_GRNPo=%#7kTXD*YTsHK05r5i>AFQ}-
z#cx(@s+;zs6~B_yOFLu5S=tnSS&+hWR-BLV3szjT;u80h$x#+Dotzx~SxT?Obbhho
zs_<JeookZ4Zp95DH{X>C(!zg}qs5P>-QjL?Jnf0#?}B#)?^$tQ$OA#@{2}C_6_2cV
zEc{QJs+-0lCX&Cb_}hwW9n$`>BF?50rhhqKA|!vtfVAR;WdF0`l@+fUu2!@&WoK!Q
zSMhIzzx_Xwck*m8Ywy_*ALH3=$RRvuOhOBbTcqW-A&(6tc?C({w;^AQ=NDoSG}>UY
z!EA$KLqyGP5u|>_g4y4p-G<MGCiC;rmljlQaM<9q!DT~H8$PlDtUD#j^q~!I8#Eg{
zA}M4;^jU!N0+KCggW+-b@#P?eAJ|Y>N@q#7NX!CDsm}+ci`h_I6udShNvY2UzYPHq
zhHU!7)Cs~91%raa{z;_qu<$DflBvUNvSd?i;B!^Xmb4+whDJ6twxN^_rETbUGgmEk
znL~QsKl7ZQn^n3E88&3vP{xLeHdL}9VM>&*a4Ks<Ih+12rv-Cro|sj$ybZ((HazWH
zilnj>)fB8ESXHo^V0FP7g6(Hlr;#<q>JShA7OHJS9UE^ULp>Xsbt=VFpHo>h@QycN
zqf?>{ZJ04Elcb3aO>H<}!?&Ef?7>}{x0y}<EX!gyZD?-OZ?9!q&LOg)r46lY_}GS9
zBLWU3p|uTdY?v!LZEa|0!{nI$CpPr4p|1^}+R)yH4l#K*8#>1LXEt<-@y<4MiSe#B
z{h%;5+Fc}{3-*YW_Ozi_jQ3{Pv`V06Kaq?U>~F&WAp>m~8q*wP!xu3=*oGm(*%0dv
z6C55Z9bv;r;iF;_-tj`UF_Il?!?>7yypRbtOcXLHCZ|hNgijTmCOAD-I>UyUF+R(N
z*}~_<B<%P+;qwI-2rd*{BuGyd+pr|YmkL=X$nLBV@}=NP!BsY_w&~}etP$KQxK{8h
z8`cR~FG!sYLN?m4$%f6sw+QAvlaG)8Q-SGg8@9#tw=-0P@3di;klliNZTQB9J;IBg
z$;Vm=BjWbiuwNuDkyy^;8=#auXv1Nfe%JALHsrb+I3!5o85=l4|7~ddI{Pu3eyUiF
zJMqVboV3Mx>w3Sp;gk&{KE%imaoUC-Y`Ejb?{55P!x<ZXci^rAXKnb&hT|$us5ocC
zd2Ty)bh6`uM7Ylmza1BCxMag+krcP<k^i#|S8VvjhO0K@v?G@tzjFE5@X&@wHe9#i
z2JPE$*QS3y-sJG!^WNr)uwmGT2^-GF5r3mIHa?S{x^A(l#gr&X?_mk|Y#=_c;l7Xw
z7Yxk)!4J*aB|3N0d7Hv<k8SwVh9`8Oi|@B=iGSJfw+(M?h_mA#u5=q-+VG0|gALDY
zc)`(lP<iOX%Fk{1?XVZuy<30w&gtSk{AaWOxM!a6vh=kLZ*2IZn>V>renU6!v`gM8
zpL+}a?9FD!dv??*)3{|1Z@e9OPk6K25%}Jl+1)$&f_G(SZw@=C?>^+sZATtEJa!bI
znjP=kq1a)uBcC14l2wg%m`3<+5BKG_qv>p)LGaG+RVXysVV2VI!+kw&C0Ol9oas~T
za0s#4VHZN-y3<vhcFefubK7B^<a5~pJ6>E$poD4dBwy|OKFyByS9S8ADOW)|irTT(
zn$YH0LLoaou%j@onG-*>qll2Hu9D1lHzyK5vg4RFp_pBttd51_h+dgxPV~^`xrhNf
zD%w#=gb8%Xj-VYOJHmF9wd;>{GbP!PX$S9TPPXgk6{Ofv!j4osO4?D{j))zd?cp>#
zO4;#AJIDM@iA#3}Cfp6zo*!6hNb7t)o>kKA$grdL+rWuq0U~Xd5#v1Wk2klJqrsb@
z@|4^QR<Prb^@$|g;`N(wD%(->o8&5XRJEg;9o6k<X-6wNYOvS4gZ1pFPX)VvPylbn
zu4PAUJ4osX*0tm5qr|W+$e#`yu$$S^8nX#Ix^n-wqmdmvRf)H$Q_kv5?Z~ntYRC8~
z(Pm<BpFh}KNDFD}T@y9#M|gkx$0DHv?d)i6$GP)OnA+IU){ZiZ(s`RYl|QlTx2!XL
z%DId24t8|3gM&ad7In6xiyc?F#OReB-R#(8$7Vaa+wr*_ho?l>+tI_0o_5T(V-DkR
zX<{$I5rVz#=wrwHqk+DH{RElqZ^wWbA85y*82>`ZU^|AyBtz{OX2)>JR(KRxH6_aG
zBgJ^rn}JbwjAlsR42%&Z8EeNl;o}7-2u`$P62l{=GhN6OJEjVm7L(I5EzFSYOu<?7
z^I?#}xpvH>4|Xh|x5lIjTZ1PC1W6X!vB-|ab}SM3hff2PFfFxXnH_6HNX_MT9_OxC
zT*0v&px6D<j+HS^YfP&}feoz{LglZ7tP@PJl-j^$H6XB2kmNmQcng=qpW&bENc*JB
zRy)47W1Ah@?KsWgKbyBp{*)bd?6YIP9XmNJ`BQc=qE?4?+wqN%J%WV~=caJ49mm@z
zksPq&TP{gvIraHd4%+dZ9fySHJCu8Go8-g7kJv#@g`;AGMdZis1y9)VSFuvx+flb*
zj+3H!v2w~O5mHW_A4K>gN2y8*i_UO|ubgt$4(hZyn)jR?=ehsOV!ssI2QJ$2q<ygL
zdn%XPWfA@?ct!9R!4o&)uGw+jj-x7$srqJegHd{;IKML8wBwc?x9#|ii%UgQ6?g3T
zom-y@vx>WR++!E)c*%7=%y-|8M|M26;{mgFJmg?D$UJr-;WstjdfG?+C!OK4wc{B(
zWyjy#`Rz#f(RcZ@ukBMC@zgrsv{Sx+?YQ%U&ZEP9_N{TxW#@dsE&56ort-smuk3hj
zM@|*FRJ^g{EjN4>@haj}JbCHMrsDpTD9PoCKJKDpuKKd8c>5q{4iz(h@X^ol&Z^rc
z`z~Fml3PU{75P-;SCLmmnQOjtw|(ymdB0EG^ZN<hpA9O~w!~52s3N0OpkPu>^0;$G
zMTJF0NJUtMRfSE(2Pz7yu&Yp2xKu#Jf5Uwa6;DeVoV2;qckFSAQ;)5?zV?OI<aev^
zs3^cLOpR)Eeyp$39A7~dohSGTsc1aGw|=Yd@(drzZyS9dswkquuOgtLsEUtN6j$L@
zk#mc$n2M`q4aHyhc8~R8rZ3-UU%gOupNi-h->ixOet0FQC^$8G<ZePx1tp0p{!Lak
zmJO`mUSUjXAW22CimEEAsYp>#f_+qxsUlTHNfpCN#YNbC6{S>+n(8a9f(Fy3Mwz-l
z@$s|I(IPQj#nRz=yQgpY%c$rz&sR}JB^6~={nN9Yit^H~al5aA5c<F#RaU|3OjT6O
z-sXEc!PjNGFa4~qx{4Yq>Z+)xqV*bIO%=6O)KO7O#gwW6j%U^^pZQc=$EhXhN%1qj
z`YIZzc=*WISjF_DxP}bNDZWN3x)v{4cdjqhSoPNxzTsQr=t(mbSu~<zDhEeJa}_=5
zt%?>ZTB_)vqN9o(KloayXshzhKzvLGRB*1_(1)qfOOt&3_+Fl?>L)5rKlQbzo#`dF
zmJ58Uf>`;6uiw<@(v3dG%x7#}MK=|lIGbXjiweqTovA`=mrm(+x~uqHMGsZ~+&_6P
z!4ioh4rq}`?5(1YilH2Q6@67C4)gU_F@PigOF}=fw(gp5pvo7W;|mpoRdAW`i$wfz
z-?4guJ-2-`rbdUT;5Fx+>46H9e8W|YP%)09tzsl6QN?H#V^my!u2<o5Fpcz$Wzg0S
z6h2;sOM~P{-AWUvbJaId#UvFQPwI<;MO2=wg3FWX%=D7eIN&P2Qn60O46ZB{i&ZS)
z6mvo)@)t0oruycnn5SaCin&~9qkUC9RT<}urJD@`85x19o8lL$SfrxgDqrwo0z-)N
zwN%A26)RP&Qn6gccgb-pRD3BBST7}xT`P7Yp-ue&BYd@rH7b65lCV|<gNGr(COFsi
zw))23OIWXBgNnT>_OTZ#HmTUDVwZ}|Dz<PWRcz<n@yqj0-`6URHm`bgi;n@eX=?P}
zta>}RerNjZfBQ;Z&U{v?>a`zzds`;%R`CrN-Hej|xN}u+mAO1;U=Kaa8OU`mVZVw4
zESl;2PQ|w>D$LSN9aM3AYV?<_zO1_mEIOp(FuOL^SAM?l2&edku0!NW)ZA&A_~7<Q
z72k6}9K5)MQ;akf4hNhL{J?Ii_=Ss|&foK%QE`FI4G5f7@e{kih#gR#={zHRX^`Y?
z^)keZDlRdS<GmmE&w2SBiTD1j;)?Lq_tIGOtBPwJ|FeOP;R@GP+~AJnKyC+as<@>h
zn*&4725+nQjr$mVJ{x4ZBjj(v-}xyJliw3^U&R9<e+csTqlYRU34bj3r{EJ6f2sIq
zXX2o}y3IUsI{qU?|8nrhB{BPq3r8d`RJ>C0nsFsr7QGb0k1Fyv!sEo%x5D{Q0OjQG
ziI6;ANOlKu#3VU|@F$f#4&-&f=zz(AC5D8hGn0w$JNVuK#7#|R%I|<7##`ktV|G9h
z&C|Ox+jOpIaUfS(s?7m%s{=QtMoB2KJD^ID@-~fGmjiHMoCD(>a69m7s(xnU2M%Zs
z{nu)b0|gu?=s+O{M!G|kJT)Xd8yURXGtl&Lu&@IkI{0RJ6m_7915F+H$bn)GWH^xN
zKye4W4kS5{?10Y!zXL%BLJr)y=M6ZJ;6S2q)6(q4GyU@y#1Yrd%|5k492LS+L^8QT
zT#5rF94O^LX$MjrC`rqi{xk=uNy7B+f;g&?M5HKP>avu=cRFPpDC<Bq2dX<z&Vlj{
zRC1uQC|3|W6&-kIfkqlEh^rzNs*3QPoktaQYc(9G=|Fu48aPnPf!Yq#b)cRoKWuBL
z!|qqqo$p)TPs|ja)h2sGQD`Jcd6D+E#vJN4*`3p(%r<i%%YpU|bZ{WbxhUal;Xq4T
z?(S>uz&9C*e+=;TYV14dXwr(qXz+dU$osJatvTAEKpVlfg6#w;{6xs7f*YI0cXZ%0
z2L?MZ#DPu@batSZ1HB#S;=rz{@m)C@RT7x$Ux@1_yu0A%F?kOmJq5!zD)n)oukb;F
z{Tvv;sR`>A`g3G1#E}n_qIdiY;cSQsLme0<*)a|bcVGk~%7Ibrbz@sxqsr8$j;T!M
zJLS=$S!;Kxv10$f^$F8Qn<qFhkt4%vnA4)ldr6ZVnCZYQhW&d<lO32MgnX(4(}Yit
zNoFt<Cxlou+X4HVl5-rGE2OL`$m~4f3k2soz*h@VIJ|DsLi$-Z>3M^cB@QfgV5I}A
z99ZVSatBs8@TEh)a8YSm^l8x$58mHeO+TT1dI2v_Jzed<8V7#kj61N_fv<Q~q(oWX
z2DZ+D^$uKfVBeh31_w4eu<&y6?-`BtqnjMq&FOYvvjbZk*vi;*N4K$ei^5;CMJ<Dg
zd^;Nzp=(Qcrw|HvIgouzc=GPZ9tZY1aLj=XjiSu%bKsx@-#M_KBcI26fYH^m>0kN1
z-*QQ|Y&x(+#vw-3j*KJpc8=??Slh5DJbG~C*!`@d44eEJGyhFH?!XBLPIB)xc&YrX
zK*pPW8RVx#|1>`Wg#75h6$gG1en#-D;7<;m6GA`F3%TIHMIo02FAM%GNF6ru^`OXA
z2hU;f{wj^O%jeym&--9=n1gm*hVF*oO$TlXq5QUxwSRay$baMsv^gAzo1S#ff%{xp
zE_86=fdhYV2XLag6AvAD#1AhgTuwZ8;7{&{PB@(S{aNA@ZWK+t>(2WBa`0JZ{NupC
z4#Yc=-HBT3Lr=LqI`G<oXAV5)rj$MS!h!#|pmqkj_75~%k@!+LvwhbEc{ITrZq80*
zbLy{cdg}mnNZxaTn$voPN|z13>L0pXE|kNGoKBdXx}983<aWa7<ZD=i#yp`sPULsO
z;6z>u^Mu|P%qK{HDB+8W+D?n=6%PkYQj1yEB`RXjB4~BOCWM-HA?sEJzT6Y$OD8M%
z!l&{D;e^`>%?Xba?MjArSpq|*MYmlpS-`13-dM#6z8Sor6NQ}kz=^_6ly)NG#D`Aw
zy%)T&H?fEl-&Zcfe>RIcQRc&xj|7Ve78mpi`ke3!2{@4?gvtp{BnmIRF)=74Bp4Q~
zcRiRagqkT%lyD+dvL&5-?gm9)1t=#5N(4(e5&bfeS$=+{Q?o-72|vd(ocgDECTj^H
zFY81(;pGJ@2v!t){dJ&{6P1NO*dL@aPb;eG#EL2LBsH9<>BI{s{&QkS<!rT_XyZg%
zCu%$KAdpzciMmeIbD}=S(4NrTi3UQN3N{pMB-mK6i6Au}=1OhGu*{X3C3q`7H7cZ5
zu2hz`aN=luYD*_tIq|U*Ed4ZBDkZIjA4@OITaVf~`SvUQhSE=*_|%E^PIPdhCnws8
zMbn}ko%l=$&-7-tlM|gK+eNUuU{}FzP7Dl`rOxM0^l+l!V_l!Acjr)VC;B)s+KDlo
z{g;V-ofzcA7gDRA6aAeS@XlI^^npTHi<g@QJ2AwG5l;MdBGm3$`cNl^JCS34I{7ds
z3fv2j@T3}+j%4iFgQEn`p9p=oFnz2O<D8i7#2hEaJ264bPG=}O^<&H@IWd`Yx+r~b
zYUtSfz!WElQ=Ry&Ofs7$pT;$HQZJej^Jk_LvxM`~950tqZLSl`oLKI}JSXNm^)t^G
zII)mA?E6=VcS7Y?luKLe#1bc#O2rp@!nGcRzmYMSRyl2j6JI*<l@sfnSm^{uX_XVJ
zX|qvq+TQdv;u7tw6|zc6;J9U9l)m1H4Nh!!Vv7?S#ca{x$(x*DN6wr~C#PfdWGgp{
z3*oPwybvAaQ=dHeg7WPQJSTQKvCD}+7$i>YcH$c+PI3V{v4=*SIKqHo{Pzj%bK*O$
z)-FNv{Z1Tk;#(&UO3^3hLhGsqGm7g)R5;|sVbP4-(X+>#$b1@THZXWx$d*@$<R>^v
zPlGcm2M6a1opR!g6K9<`?ZgjUce~0BI~=&^2>s{;3H5(+f@(JzqE4K1;=E)pIB`P=
zi!KVe<iuqmKRa<n$S+P@i|Jey@~dFMD#7bQzT6RDb*47CL${?bzYDS>zd3P7IKI)H
zzw5+3C+<5jw4vUq2V9R|gr<L$*yQ6RW*>3$7lTio*q1-_Cqq=SwERTKtQw)eh5RG<
zuVCCgI~ATeK_g7hg?zp$@REU-lH-*VuNe>by{;~qLpmhBaUz!sxm|e6Np$`1l}Wr6
zEt?DPx%6*M@h-F-TqC<+4nbyfy6}0k(j@%VDUS;#7tAi?b^Y%*!S`LrCp^EPAtpDv
zFsfG)t0*p5Tu65z!v(7gHWvaeB)DLAL3P37LID?Y><DMnR~;@mU3gmD>vHj`T8i5R
zxbUcL^fJHF6!&VvZzX#vDd<8W7rZW1x|-4QYDTeq86QY#VZjdtiwG7KWR;JE6ca2i
zNSg~nUY`qo7qSw(bl_&;j6@fL912nJ_`D$(Qd}tELRcirz1}1jj~vfPmTZwkZ>kFy
z{JKkNLQ2N6(*s`GFWNg?+6DK9l!zeJGF>R+LJb#cx=_}IaxQ#b+*{R!@-9?hcU-9K
z!upLV6<t_;ERwf(I9%S#EGt%Vq4kb1zn+mN2X*7s#E0rGObL5A4z*mU?Lt!*nz>NN
zg}UNrLl^4Fkk%LF`ysvJydB{NE)Z#oeQ6|`ja_KMjz7!tdcB3idXKVPXzoG_7ot-4
z>$D6CTe@&L!OL173uz@to0PP6p^ca#Z!4so;3qD88k28H^mcUNGfui21>NZ6LT4Ao
zyD-6pE-rL+VUP=7xX{g|UqfbOF7KY)-KD>G=5xUwf<0a6<w9>4`nb?vBz*<@3Gy8`
z)KAKhbn9GTfC~d%`me*3e4itU$lEp74JtR-r9Y@X#D$?Q43jk6g%K{iS*MTi$QT(V
zq=h@<@3P*}?8QgkF)oZ1GEOkh2i^mPyc1oR<bvjg$Bhbu5+}R#*El-enBu}z7pA!|
z-Gx^!ymn!RizlSvqzm7>Fw2G6F6?q)w+m?-B6D2W;KD{1=5lIWnD4>@7cMT3taM?a
zC@dFTB)HgxB`*9mExMFnCM#tv<9e(S-eYqfTNR-xrWG!HDVpTlY|d45due2~7^KZL
zF0765uY{~))Wswn-eymKleWo)EiP>3O1zS?nJ&$V)L9<++J$W{>=0|?Rz+T~irm~9
z+3v!kicXT9E)bcb&9lC7VUG*nxp2sZy)N{uoYi@0<bVtNxDTw2(A)ju^WC+PZ(TSj
z_RZy;^p?#X7SC5LjT{qlgj<S`aqIN1-Cq_t?n18V(GxCgniqLgF6)#Fr(L-1!f!78
z;KGmM^RIMfW#o(t=eZ=g|GY^%>%vc*nk|vEJ1OT}xU{t?+q!GXxJb@0b|G_VgxRB8
zBOIciC3{7X@?TuID%`jw!t6B{u1hO7IBTz+x7e0s3o2Q($>gq-b;pI@UHF%)&xN}#
z+;ib?7iz7JFx}_e38z;NT=>I<hg|#BosV32EaP)=O@u{%y6}YEX;6y%GbM}2{<8W%
zF*}1+M4q`YU~8mPrBcsDlfC2czTon4;U!noipU4kqZ!q++OCMa;kM5`2Pg-`0onAc
zEN}wv0r3D&#o#l|2bM;%>#tq}-;G8ea_Dbj*GVqH$7>?wcjrd<hL-%$hm`4kARpjf
z*_6q+RCn7TMH$nhe2`bsukPz1)O>4%x99UmT`G|C?#>3&qrA<h!|DhL=k(-zIg(aK
zIO*K=`IiU;X%^6c!oY`s2cTL(ppcLPf@|K(@d5OR>bfD)bb~%P46PzSosE&=fEOqV
zd;}B&I!=#r5NP4-+z9!wc@ZBFkS_ZHW|=tD2|%Bk`cM-Yu^}LZmq4H|pRg1q2__42
zQLwpGAi{nDC4n@6Yp|5~=9wEQ4Y0G6&~gUAn9l?l^DC_xY=WeWWPkZGQXZ%PtO3>n
z6@f||8Tt%V2CC2q&;qCmR0Eob&FVl6pdru*s3{UQR2QfP7;5Q3SX+d3fIsF(SX584
z^?@D*N;Qb-A3dngMS|jNEE4vGS*E5yvzShnkf<R0+fqnd!B&DF3$_N@2%#qX_0CQ^
zk$eJt3Vj2ius!qzNb(ub2^bGd06GI*fWg2JperA&2L=J0&F;YGzyRT_-h*Qf^c7P*
zMc51IEo8{_DD}HNPb2R5GSW|k{RP=6c5|Tc+H>_F`9gTduOdS^@4SF2+2OzlA)_T+
zsWvi3Mgfc&N|?q->tkhp-$^#sa88tpb6F&05-=H<0!#&_iIG{rbbzhTU{r67Y@4H-
znkhvo>vSGJH!@q+!W^LNs)%D@WInJ!tbGYA6tV<Z3M_)Y=`CiY-AQ4^QA!q<<T8L;
z@p4h)_RFza0n`)A)L99v0#<{Mwq-4rf#Qzw6|jzL-;H=T)&m=W%fQdTMp>bIfqiTU
z*euyCg1dpOz}MV2R!6o0+kqY6ttn1M@=j6M1?-$2W%k?UkzY6HTfsLX-y=Awyso*Q
zD~_9qbn{!D!~^^Q{0Mvp90I-vP63A{NR9!=0opkN9IcskRE#j2S|^L>%*;9=r6&bB
z%jc&@DQ7y(Z7oyRVRL7I^S}jw!n44V`H`Q1b5ey0+;D1D%3@J1Mc2P1I|;|1(|rZ_
z1$YU(lDWPLTm!DNqGU(T*LRW|z)j#W@FyJxZnFq@02GPO@nS>dH{gya|IQU5gjE=#
z_aqXmZ?iMIaBbud;1T=2A@Y!6FB{bM`H_xuBfF|Qp8$UW&&BQhaXDty&iWgm<$uK5
zzx1|x7SmJUS&aWVJ*u}3{3kjLm6|K`54G38Te`X?@`i(XFpYZxG0v?^vI#O~$g{hV
z!wsuj-)VEYk;@H}8)mn@X@4J=gP7ZmJd({TNXh#`^0|>eCNa2S6uxPNJ_T%jS@o>P
zUquu*EN<}Qm5Fkjw8Dn$Zm4cJ+&HpA?=>Zy0+$<nK$VG~0dC<1dIyY=Q1%)6i=T>`
zLxx^u3c2xt8^_!@?nYrZK6InB8xc3A|59SwZ%IYm7@L_`)QykaDCS0Semz^7=yzk*
zo<uLZ*(%w`;4hneglA#>T5dzj<bWFqZdARNuH7n|=+^&j4+@fm+z7{bk{ih}o+6}#
z8>ul#NjK7jmx@XFwy$(IGT5#gv)%gjRZBQ~rklqup{yI_-1x$c!ETi2S4TIxxzXK?
zif;Y<sJd>{bEA^*%7Rq{Sya`HYB642NDVh?#w4}es2$^V-1sb8BC9afccWoU-oTA>
zXL3^5$c@HsG!c1uud$08P2FhbMwUogyU|8S)XlR^bg!6NxY1I0tC-|tH!ppZU{PC<
zbP#MO_=(`Bg6##V_KBLaqwvpSl1`lB7-wl$;e2W)8cd8Yk@{VcO04y{2z$7Z)H%MV
z@Lqzw-RMJ~;p;2dPq4q>0KtKRR2U@0Gb1|0jiFL^yc@%Wj1^=n!`*0ox6%m7j&x&`
zkkM}aW{)v~B+HuksX5M#5pRtoOcO+Hq8pQhOy-w=H>SEV%?);8h6ty-F;lYCr-br%
zb;;+rF;{eUxiQa;`EG3Bq}*t_fC0mh-ktOnOWnM4EOEITD}*d|V~G$7mkL?NfLX=+
z$`ZeHW2GBC4}@2_vFBQFV1>}g*1>7jlP?5<tKA^35nSsAFS_>pBe>3uE}IjX)(hEv
zugOL?Ho39cjV*5MaP!Wb@K(2eZ_n6H$zQwm^V8CDq-_%qw+nhcN}{(rMf2X=_o&aV
z?Uo*WBe+L!ui!p6_6woT0XM#l@q<FX6Fek%n0rF3^r%~Zn=`ANaO0#Kx4FLD_};Dm
zAj|ZV8>iej?Zywh`I8&V+tjmyZM!6#;qcD$E}2|`$i$*^Zk*=`xN*^q8*bcm<B}VP
zYlNA8btC8b$YnPYYleRoyyC_$Zd_$UHN)=Ard9t;A-Tp)DYGflb*|8VQz+~|*!8aT
z7MJktH0toTm>Q-Me2ZClM)a;5_c+A`Fs}gayYYZFHC)y3hZ_&M!D>)6JmNmg)-_n$
zCjRNh6F2^H<8L>gkPX+|AAX{EI~EKkU(&CH|KrBLZaj7483R(&e-(Z1#tS#%G-T88
zpBud_39sE)P&oXO+ro^f<!a!SWJ##}#*Me^4qrjIJxF{{1D{aiiy)~VuYo#DEXpC4
zsW4+#*<2cO)8T2p!94?c#6vonSIGN<`84DgVh}V6QpY5Ovqo;w@S%nxlxVPNxb5-T
zHT@N1s|STt4Gs-X4K59ZG<=}x-}~JfdJV~+*H~K9z+M;BU@j2w2xqo{kZ-><9ZxEG
zF|9&j4dhv+^Vg}D@Qb1JnzRZ<HGHI@nuh8cifJgWA)q0FwbmtgHTX3B>h!Rh?=kDw
zaO;k11u`f})X-r@G(|%R4ME`{O@9SvSOeeklO&id$SltRPSsFSLwOAqG<|PR(~zzq
zLqjPI*=L4J3q}Md%n1MZzBg0U$_bVcEURJAtT0pFJYHJR4o7+qXi8F1!&sxYl7_8?
zGb#&K5v(eh;m)AEhK5=8pe^3JRYOe;wKUY$P=^&YjMGq8Lp=>WH1yO^Uqb^8pJ@10
zLqiRXG_=&vN<(7}O*BNG2BI38YG|e*OR_woJhgC;Xxf)_;$V3yG-t14MU=EY9r#$o
zL3f$98ro@St)Y#kA8a1FrPrdI4@Z-*bjj3Edyb@rZlXY8M-81cbk^`0U7Zo7gviuI
zLs!u`{*PXlZ&EA!EYMvfD_aLY=fE!2<-If*7A1Wl^4=QyXz0sWmFyr5{WT2Gc+#fs
z3=?njxN<K1ju8196LGMHA)+u;!*C5FGz^RB_jnW@sbQ3c(Hh2x(9%B0<Qf)WV%?>E
zLoI70jn^<i!#WM?HB8hnNyB3HRKsKqQ#8!hFh|4Ge*#lA%%Bks(=<%iaPP;!iYvMi
zl39}Nzc&5KsNj(5NkeZ1NakvouVI0Pc~VLV6{x&WJXs_{R%hbK=+0<Zq2Wsn%S2(h
z;PLNtg_RmsX;>=~W>;%i6XStOq1^356n+(xu$6up>69>S5aC7*n>1_|zD45?zW*Cf
zXNBaiHEh$cor_n)Q4Pm5?Buf2aDZ!&@$d2N*04vzUJdWP@_r*2`pfGH#|MhWQL<0N
zei4#WnRrmc5k}GHRqtgaey8COyP1)ASnyN}Uoa`2I>(zU$2FYLa8bi04JS2xui@-F
z9k!dEN}V5soaRbDW!&x!{HWoKhAl084@2=EcF`O9Ny9k}=QaG&HSPk3ZdF{PB5`bs
zMR`885HE{kS2X-Aq~yjDEPdC7Uo~9g4(34-53Xyt!JW#34?MWZ-GjRscL_$(wK9?C
zC3w3LzoTv(5#SfjJKQ<PhJM#@m#%8KuOW{Ic|CZ*&0j;D2iZJ$$jx8FQw`5F{mH(^
z8vfFdZ%yz|$v$B$nS+$u*Mt^%LVs)cN5j8dJ6XXZFM>SWvUb(ra}AYF277D^ywdPO
z_<w>Fz7$f(7ksUO)!)!&-{4z8lHcP(?|Jk_b9k_=U|PHf=Sv28|3G#RR(_=uW^;-{
zE|318Vs3W-MezRS!26=_5X|R6eh&;D7(K9yvdIIp2UZVk9w;6pRS8+7;y1ZNd{A-v
zwg8PxeG}x-RnI;R?&%g(J^Cq~kCKC**}_h-;PQaVOuX*nj&aQckMII9NkJi-(~}Cz
zT=1kF-W$d{#7K&I@R0}Kd2q-B3X6GA+yk$N-wlE}?8!b4@{CJn#RDGrJqUP^;6b8C
zf1qHc2SE=)9<=wMg9l;y??FuuYI%_CL5c^JJgDqJ2@g^|Nb{hS2M1CTx7q{zMpx2<
zmpe)x{ve^W2N4e{dhp}H)B*QPZ}lcJrF)RUG3lR~DM(VrgR;WQ36_t^D=<O=iBw?q
zFH$R1@t~>))jX)~LFZzLD@Io0O$8fU2NH_}vc^}cLC3n*W_sN>v$h9yJZRxTOAqRL
zP|t(r9yHEZy1oaymQ`%vL6ww5WoEU*?m$Bi*8k~eY9yqw2Tg=DjmevNkQL)m5B3#L
zr1EHc;H5vYl?NYt(AI-?9JfQMtvzVt!O_-%wVNsq&;t8EO6>MQLNQz56AwORgohKY
zyGs7~aiCtogcqeVJ9_Y$2a`OQ>_I1X$Ad3C80<k854w8L-Gk3PC{`d4$zfgpm%p0_
z*N&!+4kz~T@ZBr8dN{S0M}O9){WfKIfk1)Qf!-coOAquBVP8R(_Vb{>@BxAYWAZ^X
zZYxcNAs!6%V7vztJcwS)9OglfB8gY~Weyk35gf7Ni6aF`MhO}1!5AT9WAbqx+}mD~
z3KJO#kNx?2Dy1q`=sdUd{EZc-crew2`5r9rV44ThJ(%UeY!7B|5qVIcVg>qOa0h}Z
ziH^tqti=_hsTJmUFxP{5jM964X4km`DXsq>Q{Mq4Me%*Tz_KI>g2W3uGd;0;x_ftL
zc3D_ha?T=|LX@Cn5Xm`66v;W~oO4tJM3kg}5=6y-1W}S;AbqzVzxmGpoI3a1diAR6
z)vH&vz1`E*R@Da?Lke4q7-j=2E=$DnL@r@0;VMf`TFQ3XS^Ru0`NrGkibUt%mXMyb
zO2)F1>rS()?k+PboV4F-tx3e!>+H3OSjPxYbpDswkcf?3v%l6~HB)U$#NNTBcMFni
z7P2J~TZL>(#P&q&5WX{}b8x2G730H}y|(8iXN)Cce@y;yA`Zm(K_Q12)vwv?;**$s
z`6!zQR(zU>BOG{q(#g8c`4yif;y4$Y3#DD?Ix*#Qu16PATsV=4FA|*>dA>}<RR%*M
zPIC4WaXJxaxN$LrF6(ExPUEfk#`bwGJsIiO+=yNn?>#ZjaUi!G(zHtX3v|d#MUv9k
z{+8=ya>a{@xFoZGS?~&jb7A~<jM7HgI9YpV#r?og<f1;6;d9|yB7S1yE@XG%=S2J>
z9lc28H7%|u;y=dKU~|n-^S4Cj@Tf<LxFO^w14hX0MBEkfyWkx`YW^YQ&qTa9T8LSu
zdx^L&!Uuv6W14?)1%2o!Fg+IG---A~$iFe2zN5@1iFlfbXB^-tvwzVX&xO#o4@a7N
zvet-mAq%~F%g8F2&4oT?qs-Q+QjwV8LJk*7x=_l6oGyG+I$XkqvxhSnJh@!R?Q)_h
zkKijV<Q0<7g@P^=5}seMfZ(exbe!nCb@iHLNs78qSa^|`WYO-pVliGkrhj9mg3Gyp
z<fFiF5j)WZmkVwe$oYa*y$jWzc<Omv&}ipx)x9oUI9)T(<#I`-npZTM`dtXP5Oi@f
zac0eS!5VGrtm}d)+z|YBct-wH87%s+l5L6P&fi9o3*WsRPhqdF`64doSK?6@Hn)qO
zY!=6Vf>MPyX&0p=-GwqPOn2d}S*olH8SKl2Oc(Cx(Q+>5<51fUWc#LfBa#X(RCJ-K
z3(Z`p<U(Z^>bOwXg(@T+E7fqJCY}6KW>pue2_diU!m6{CNb=889Zp(L2J$FN)OO*~
z!Yb2~lY2gi)^nl03vama?!8F<N6{@k(;B$Y(1j;S$&FlSEQI`Z7nXk%C0YGTB=_3P
zCZcc5QnT}?HFu$f3j<sj=t4^uTDkBJOI_&vxN>V3+PLtha3y%UakMQ*%GnVMKb%+j
zZ5P@LufI35oeMXgMQJJx?%=|bY?YsG$)rx`pJ*pmcY#HHT<8)TT{j_JUD*AVGe)NF
zBIzO6(}i9_-V<cq-Y(F9_XVlkR~n?ep9}qkXL}xHcY|CQ?80~#Cb%%fg`qACcVPrQ
zf3gxyqW-X$@<<m(xiF3q_1rOgv<qXT=mSCOQ&{v&rLis$OK-Mn%u;M&q6;6oFxka7
z0WryiGj-Bv42SOwK}<b)Er};PO?6?KOdolr%bA?V6Tzx8sK3@=nki(K3$umHq2@+o
zZmcwYV66o%Eadcg@YI7vE-ZH8g&T1mEa7tCjJwgqjb)rx7rbux+*sklN*DO^$aO!Z
zt#V<t3maV6=)xKo*1DXxQPwdYc7#{XbrQ2o>sfcALpCv<xyIed<;E7qKz4Jt3wvDH
z>cTb`w##zkimO?y^bQwxx-hzHtD&>hsHqiqxv*fC8a(-py)Nu?;ae9jx{zGQbl0%<
zyKumTgDxC$;cHpfAG`303#Vdh{ICnhT=-0~p9&rkJnBO4hCCnHU^?!?7b5&z@Py$1
zFa6SmlOpMP*4bN_PSb%RAwTQFS24~i=Y*e+NiMkXjqsPPU2@^xE#ntD%7x1=T;cL}
z;i?NixbP!q`JvfmTf^^NnD{V*oOsQJpIkV)wc*d)@v7QiW!5R&tImKwDt<Cc)f!as
zx(mPYK938(yKsXI&QkaK*SYD!-B~L8Y;}tcyxfqf)NFOfg+I80HrZL-_>&64pVJr@
z?z`}xWFH9rElACWLjK|=5R*LS?!7G=i~bSGzcG2qcjBMK_){Uz1Y3U4oXRg;h;ut#
zGi7mu$}f2~H{wN}T`)l~M@+NKY}K=fo!gB<ZoKB^+nRPBH(qfguN(Q?s5@H~aN|`s
z@=Fo3R46EN5@zRCDXnI!!fq51g+w=sx>1b1OO`st-GJ~Cg4Cyw>CB$=QZXGi?uv1@
z5RV(08`ODO_f%psZwdO{2)Ge+J3or9;zm^=Avbg(h8tlwOgAhy_)wWTwjfEm8%b^?
zOE$%g)R;WtMl{BQe>!gsr@2vDB(KG1W0t9mWXlR>xKZx^lx7O2P6anA3a=ECR2DLI
zYSC(LRCi;{Y}LSx8gA#r^_p(fa--X9Md6zz(`vg>-;Lhulj^v^EK^+}_1yUFM9NDE
zOB=e;$j#e>X{`0S8$7k1q_G>#7Dai&d{YuPwz{#+jplCWh?sZX=;THVHyXYcX(>q3
z%8k~-m0%meH)Ex3-FQp*+k))`+Y5FO>?p`~-VwsDa(8y43+Ky?UT$<{m|aX}>dw&#
z*Jn6crXG@QdMEknm8AFFnC-?K4%v<O-RR>+UpI!iG2D$09w+s4W1t&@+{kg;>MxQ3
zg3JzfgVmW1-;5jLM&Vs46b=>5F8@^>;l@ZeK6GP}8>8G9?Z!Aa#<MP+FD;CfDq}k(
zvzM2+^<(R=+o^11f*TV#vllX1#FNk2#Yb*Tc4L|w)7@wstUN_pn9A+6VU(p*YyXQi
z!;P74%#xy4zs+Q8!%jObFlFm!&2?iQr^$_VV&Qx@7Pzs{jjZuDdtBtkV(##6taM|E
zC@hoFEp_AAx}vIn>h}kt%Z0OL_IU5>$SOBh^Y6kntH;+7+RsMTxUuGOQk8Bg>)qHO
z)i=Abk>kx%g{7Nlz{8yX?9WYmp5(w5uHtVqnV8+~#<y=LUvuN;?8-ab*y-kt0`Ow#
zV>do=V>d%rvU}Y)AcRHxgzR_YoyPT<Jt)~jvC<RU8Xb1yQ#a1Jao&w1ZX9*vq#LJ1
z;g}o8-T2&%&*;qK#aJE33!jjpFJmoy!DYKJjzx=SD<acrDf)_=fRM9-`)8~6M{9o_
zt5sjF@h(XAiW}c>Ty9*H?4_8_S!wXHGgznP@8~Eg`d;t{!D$7uvFJzPk>%BXa^q(=
zesSYht~f^Kdh<FLBlmMR?n?HC8@Gk9=%$ccf+G)_zq@gV0UUajMVs2i{o%&ac5&qQ
z+_>+?U$I&*^&d#~p&ON>`Kj|rvU%5=kKM30r^gM+_KzDk=H&g?jsM(u!mEWL*{Js1
z4OV~3fInzH6QnZbk*oQ#c#zeD4?URVK{gNKJ?P^>Uk|cV{?y>7Z7O+?;6V-#a(a-<
zgW?{P@L*}w&h0@y5Au7E$Ai65dwkS>#RFnq56n&RBn3Qp)q}z!Ea<_thUu?~W+4x5
z)K9PUdOB+{QC>uJSf!|tVjlb#aT?^Wd`fx{@F3_xDXB$ezXypPxTHb12VNl_K~0c4
zvuYJ$b)U3WuVFfQ>g2eP2f7C-9z;AaJP1o^k_Ww`w&_8ahUpePFh?<Ki=C+r9Sf6V
zwk0=6k9v^mL7E4pJ!sd!DJ>Ya2j6d$?!lF)?YiHHLn|Y^tYC&<Il=ORnSxZV;6X*<
zpVTVEY-JD1txBrmK~*8uJZSBK5?<Yd8bWG%P)kT{!Nwlc5mHyMo*)~kFQkEBLk}9o
z<gW{<`d7U-Vv;68ntISICTZ?Lix_Vyq!nlRw!vnZ+IY}egm1=l+6s9~@NN1;Nc&i6
z2O%8=-w}LQuoEY=vCRg%NVcnBH$e)!3+drO&zPi_koN?83%)PN5mh;o#4nHZV;D3`
z?ayE<Q)Yk%*H<PD^k9&X!5)kgLg5e(h6*1RlMEL!LU5$uD8bQ!9|(@|V5|_fko{nU
zINpN^BAF=22U`?=<iTVQ?s;(EgDD<N_26d@e(_+MhbP<PQxA@KFvEkH9&GVos|T|@
zn9X(M!7>jHeqVl$2lG6b??LVQk+~lJLaQiAiDzXO@XFtV#awjH$}Z%pY!E3@KYob^
zYwAa)eOq2@6fuVst@Ai-xd$seSm!~}`jM3$JbIAECz5MDSmnWLj=Djl;h$O7NJs3e
zeuK!cGDX?KdJi^uu#w(7ReaOSS`X5?3~aqwc(sO+F+sJ>gY6z1@}O?V@;f}($z@nC
z!n(UW*zLi759|kNXw`ZTmy8%mp7q_LH6EnxW86MS`{{lf6%KGjty&)xWg1X)j{4Yx
zPh=E_J^0~d@dhW0m!6}JdYmV)UwH7PkYhv-j(hMqv2E+4&&sAXh>)D{;JasKNltoj
z%7aTDT=w9!2gfdzk6tSOm5?(YoE1W0gE{JJ56*eO((@jC!?8RldqJ}FYOk_Izoq3v
zT3-|ibyj{~{)+G)W0LPYxGL6i;NJ`RL6A0F^Ptll#q^U9N`Cd=!er|Y5B_9$c<>uN
z#_3*f<=>q|`AsRkCCKb;A-{WYM~E*u7ln5{;1eRIhfi{SQZhpFz=MY#yi>9AyR$O>
z;_P^wCz$_w@OmKOu?K&9@Q(-n($1s9xSz{L${6weEAX88|3vLfhh!>0^WeD$N4+@a
z#S0JOG<5Nzs~1@`WYzGSh8vo5q+vD<6*N@T5U+v1s!Y(3Lql;5B{byJkW0fW8uDu3
zq3F3a)N33!0A+ahDUXINee06s(~w_7VGTtz6wt7Il5=o(K@G2J__VKCVUYP!Qb=>o
zSAR`&4(lc<syVmF^f%+knTko4r)^UR4M`f3HI&p)ifs-t6E%1=Xc}A^E{-$Zf+Q2N
z)?i&PM={p)Yw&5H<fSm6;oeX)C>Rpd1t~N%goT@emY^LgWrNx47D&;Msv%87L=2-<
zQ4K@qC=#9-URpyL4LmZP%IPvL4rG3tie)uqXwEU|<pg=)d3g<)8c3K5zZq9aLuCyk
zG>p_xMMG5$O*AysP)!5JUQ<IY4b`Q`8ZrM+UR%RY!~W;1Ix&0d3aKYW^@TUk&@fio
zNW<&G8w<V>lb84^u9=4B8hUGZUqcHGEj4t|&{0DxPK~I&C8#vCk)d&nv?1EE!J8V0
zZ3TH>k*;`KLpxDsY_yjlle{CfSlUa-yBa#hdhaZxi-xW-NjDAMW4woko-xjY`q{#J
zl6}8Ufj%1gl4}^Ep`QqO)c-&Y{e=%;Y<v}WY@l=c{UDK~K5(iJ)i6v0kH?=>B**aB
zG%=i5^kP(jQ5r^T*s5Whh7UB1(Xc?nLJeazjMFef!%Pk18BuIO!$)*ZN_vl?IVNiO
zkj9KMInw!aR3SabWDQd^{P23*bPZFbcRD9!k~xh-8)9yrqlmm`%d`D?I{hpSb2ZG<
zFq;cxwE6aj<{ZY@YV)hX=Ccu|x1Y%q{^x68EHTU$X;`dbwT3ksmS|Y2VTFd38oq9j
zcbSHB{mkVWu8%O!G{{?FdR`7{ZDl(!#azW9WUut|43oH4!#WKcHEhzbUc&|&KhmV5
z2Cr?-9vM`%2Ai9?kZE>iK{{%}B=hb7)9i1an4`99*rDO1hEp1LYS^XW6Agzo?AEYH
z!vRLMhP@i@Ps_Vc!+yHDPLqPiDsoW#U;&XICOE`RW2||VJ3l=$-6VI7cbxyJh9eq|
zYxtb59$_BUa7@Ez%uaE>Wk3m+^PXXjD^5sIeWBq?&G`<(fDfHP@ly`(4|d3D4QDib
zr{SuGvl_nQlGN}G{X^$ypl{F1baby&klzuA4mQ6V=vehFcMlDhG+dUo6E5lOW>tSm
zxT2v)_r~mk0Z&PM%Ld<bTB)PqXAM7UxF)TwsZy}QaP!PZCTF>CpPIDl7Y)C1BIxIV
z&H#s2w*MUC%s9W%a8tuA+VfR<!Z+!+xlL(k<i+b=+|lp{_cSjwFaFeUmm91X`MkJC
ze`<K9;kkwf8Xju+Tf;vZ{?fonsrrHWSi>XkwEaz{<|EABS<28$|7!SntofgYC$cAh
z-n_w6&G|qE!|D2g41I(%(J#2ecoFYKcJBXPWTg#L<Fa|dFyMIUmO8x}Hy&v2xZ5bf
ziyU6$_9BlLIlay<%^7*o&v|x`%j?7sgZ~vT7-{@lz*wRmIO_af6!4;`7sb4I)r*2&
z6!xNs*ZCMnA@()Md`&pNF+t~0c)DpEBQ3RPeijw?qJ$TTUbwu@kN!(~@%4d>586~@
zzx+T3Bc~KSBYSU_NoGRRf^M&~s98#fc)jp>k?BPRFZ{I13)_n%FM?i#ya;<?dZCLx
z-DP+|=Wqz|W6dkg8(^?$dGX%vVvDL4<YeXTTQ}K@6feqnQPzuy7f~+;y%AShET_X$
zy+~s(!yQ-9rTi+#mQr=ny*N7FnQKNxhS!Pb^6Y($Sx$V#h1@E8e%7t%MI|q)dr`xS
z%HmZg>b&SQ#jN55XNn`LCU$b{c?Ov^y{P3yJum8eF>AG1+lxA0)b(P@W1AIwmn_3Q
znYC67cB(fJ3mZy1oQq*ooB(d@bsq63!8g2U;zd(0e$HoBA76k6sx<SWxfd<GXvtZg
zt6F(6V45R$yUn}>%+{QR5@z50CiUBR@unATy?D!uj$XXu#oJ!A^CIt{Y8~jVsRh3(
zX||_%c}%^-tJ+-kd+&Ji@ii;H%TBYuz9pwq)X9r<n4P`+3b0Ai&5Q0{jHSE0=;1|A
zFI3+2_&jDWP6sXVVxSkjy?CGcUi9;#4+nlO{UwrguhVEpfmdf9v-^vj67oUxsuv@?
z80p1lHOo}Zn?A(rJc#L&Xb)us>d|4Gf>ULN3n%G(t1gR1iOy(tk!XMLvS>;DG1OdA
zzxRP`jS8CMy_i@d>24Qm0tx4obL8bu?6Am-kGz=d#dI%b$ng7Aikl)sp6bOkaWw~f
zGG~4ce<ml9bL7PWFJ{xcs_Ap33dtPF(%YP@d5pch*{FYQMqVPFPx)dmmUywji;Yrc
zsTZrfSnb6!FP4jBh2Tm-R_EslLMnZYWY-C<6{MVPuKz!LlNX!4*zLt05pMBfn-|-K
zZxu^u(hf#QesiZ6ySRH)j-!NKOe$=?`~t#WiLQNK?3Y>;9uV@W7e~A}DEyG%$6kCQ
zWX6WNhlOlxmQH*Af14zqd2!qe!-udBpR;9NwR#cfL(S^xLtin!@Zw7^PI~znGW<mM
zdU4u|GhSR3!_IOm6Jv&+h|8&)Uwd)hiwj<yV|eolbFNA)>Uj7YFD`m<Ni@F|d^wQI
zUR+^F7jSg84RVJ0ofo-sy-xDIsQn=Lqu@2cmzMwH#jjrc>&1UwT=(KPFMekfd2xd~
zPZ9GLdoOHubD1|8IU@>?v^-SfHeGtC#?Py3w9jY$;l-R+%s;(&-XwpZfJuH=B=-dG
z3qJ7Tq4fBd;3L7uf`1GCBj~>3n9W#iGFLs3pnWR%Oprr+&OOa#Qh{n&d?@L2enXqp
zhipE?`;gs-JU+bQLxRuwswuztNzCCxt7Flef+V?o$nA4JkITewhSok5&Fe#c9}0*<
zKEV$TJ6{WZ)rZ196!9U;vS>jc3i<d)IXC%h(m2VKh0&ru=NqiWeAs=?`P3;>aUV*E
zkesi6QHP|I4~agwd~o{^@<I1uq89e}5b&W=*KnuoVa*4k*9V^va=+-11brCl4>Ltm
zEq=oCW|xXgtY!LO`H<m5IUjz1o^<)Mi0yL@a7*$b*@qM#B0iMm(X#ndYu8PV3i;uW
zq-w7ur}~iQ14(Hg(uEXrr<92i%Afa-vKD`L^yUC7SAl4GA2NNY;6p`PONaZgoF_l~
zP{oJVJ}4imvaSz}eR#v?JXPT{xavOCV9fha%ZGYC)c2t_C+M~@@aufUIzC(+9Ih*P
z<adL-fe+p1s*zRx_w1~p4~<0sb-{BN6IkoUzs0t-wVU|R)Q405ly2rjOCKm{F4-1>
zlz+fK1U`OBPm!>+jSp}7(2ebL2EWT_>qBQw5byu{oS)*nE!a-5y&#1hgmm=b9U<?=
z<elj75;>^Q#fM_0TXYrtEv*H44-VYtJZkUf!@4u!UOpTcXTR^miMi@M!QMVhODWUy
ze7O?$)BE^vuxmzN>ddb5czDu=+vWQEFn}qo&g-Shz3#UL`7qdrP34k?_%NEy-p|jL
zhx#zghv7c_JXekI;lH_Rln)~%OUcqXcENdk$db-=Va!uweHiD%Zz0?WVZ09$eE8On
zi+)V>;X}rZALaa*<ike{NIyJ&OlF|^@R}cm{g~==J`Tc^*N<sFlo}bH?!ycpX8JJ8
zhtmusA7=Y7$A=w0?DS!-5A%Fj>BA}?=KHX~hlM^Y^5Lfz8I|X$fd?Zk=BcjpRE2CA
z<cob+!sX+`G7fE?nm11^=Y+P%Am1@htq@MK+J`khtoLDq578_cYkjyePyI7bt@Gha
zVucK1gOc_}+7q8avdPDHJ?t?Z(l`6Cg(oU^NN3tAWSbA$g}hYQ#ii=QQ6G-^u*ZkJ
zoC_Zg`LK_HeK0a*k-c9?p84tk*U@~nJ6lHe`RZdIKJnp*4`0kzZ_ZbTefX3fn6G-y
zS7YX@4f7TG;g<1V<jMHVhvQVEo!tMWss1JHybII`AAX##9?e%o{{p32Wt`-KTA*4j
zP^Wz8vp{{gK%MpBE6y4R%dLj<&IRJbB_GcFaKVRfIEg;=9#?7U0@X3Wapv9y>Z=8g
zhksh2F8gqWK4(1m@JNK;aWh<~u5#i^+TRP3{6I5=UlYu&Wl-o^sDAO`x>)-w_l<>$
zsZ_3v+6&d23)M{@ZZRbM$l}LsZZ$sK@!=1K=t9-unmK);+PqNx>BB!u?YqQ<>eNDY
zeWAK1t<kpoK0NT@p$~u2FvhJ9PkeaHEq9S(`d7%`tSE$2`BF~uR3y*2zb#VFe4r#G
zRjBYniW)9bS^dc7M{Ymz_%SL=M*Br7-j896RCYgRFH%eie&i6IQ!tkxXM{z&7pW7A
z)GL1cN;4Lze2Y~+Kl1xg!0*I=K|zvN{X9vaB}t)}#Ix909YrKt!jGacc`+fy1#e|>
zzAFtsO8QaCk3<o=Vw#iFGv8|yrGn;%*AL4N+Yg_VhWyZl_yq%g1cmH+qYCwz_z>0*
z33*tE=|^CWQ<@Z$m-Zvsj}$-nI`PX|sY0TH-&BoIm?pg6Su5S|JV7oK(=02bYkYEf
zKQjI3?dQ)6QNfRje$?`#wv<*9tR`4lu!<j5g<S9DjH|kEk{Uv4`tkREM_$K|y7Z?X
zZ~9SB`lYa;AN578fnc#2&Zk`)34dL%vEUniKGIEQYT`%J7;olBbKxxnTMD*{mA3Zd
z!j8&HvaYfzZKa)df^P}3qql{WIGfsDNQaobqaW}15q+4-^sXPBgm;cfy7<vG#=H5^
zU3ia}q^BRfgumy<=Y=9{;rx^;ef;R_$2LE<`_a#j{(h|XV~rmJq{qpAOc63raFF0&
z!6ANL066nFOmMj12*HsIdp|}Cr@{n3K8W!#evFOraej;!URgqyniD1aA^!>p`AG1k
z4ojy>b`JM{A=3pZpW(;M7@s9%w&2QpmFEhXCpcelf#5>HMS_b3mk2HuTqektm;13I
z##j2WN_eI9Ni7zuwSKIV>}EgK$8<Id*&x_=X4)npbxKrXQ(Iy>TZQ~O-&u(}I1zrF
z@MEVRyZqQ4)A>xu9zXU9*(bPP@POb!!9#*<=VKwC_;Fasr-DZWj|v_Wq~^4(jxopm
zJk=_h<O@H(^y9pgo{Z^y?Z+wMrv=Z%<Y)c(D#mXda8~O%#y~}91ziyNH-a_FIYYbT
z$7Mfu1h6xJD}H?EN1Xub25?o@*EK(W^5c8qKM4LP82r@v5y;QND+N$FfM10F>c@3I
ze)Ho7ceVhE1#r`kTYkJ?j{)5F<99#)^5c;ocl`Lnk9&UH_v24LdM<YU5`Di|O<Sz)
z`mt%TIwq0_esp`w=9c@=kAD`cB1;tUF*gK1{`2Drw?0a^AuLhvEm8k+Id@2})h46n
z67|&Y{6*fk#A)`UCF+?U&;1}_TD3%F2_S0#`2#2rK(+wl1IQD=D*>lU_5fO(s5E$~
zN(dlF067E56+n%ps?$<+YKgkBMCGRPQdMfHN?qzSo;QGNOVz`rDqjFIma2nG74g*o
z3I<RlfQ;7hg{0Zi%hYS^Vwv(RQ-uSlzfAqxCWFYoq5SP`@c>E$U<Z&Ca1L%L8GtVU
ze*mQdNDROgfIHv}jeg*{qi-!!L)lIM-T;m+Q(6GCm#GcQ6!G#h^>mpE1P}}$9Dpgc
ziY-?mu|cPBxneQ`;5V`>FL&&3zFb)W3|g+HELTgHtK<Mu0!R;_OaPGpq5-4@P&$Cr
z0C;`!`*Jn7Yue%E>f&-$tV|{Tt&CgYT$`2UNCPMrKzR;)g$hu(Lh+I*JgySE$PA!D
z0I#o56$2QuLUADE9acDhjH(1sE#UkGsVaE=9Vf1;)8PU9TRzLPKeN^pIfb<Xs7(*A
zP)uCfl++8L5u2qmMW=yaLqYe5EL3P5z#9RK2w<cLo6rdX49{cpboZtK5S!6I0W1hb
zS_IHCfK~yt4xmQ>Jp)hyv<cwt0NMp$4YJ-0@P{ACZG~$n|Kon^Eza*=EB^|seE=N-
znEN!TO8_0IHZ}R30N&+<_D_lb+UgX*juonN06b=pXU>zeU-GU2bPJ%nRAk)?D->HJ
z=@r1{=PB<q#x5uOKC|8npf`<woSbh*GLPHp6F}bp`bjAj1_<ddT`-&XR0?rW0E6jg
z8Q@UCmz@q1K0JW7Us+5;o+gb7U~~X~u24Bvst*Df6Tn(=)Yt&V1u&6g;nG-~IX-|1
zTrV4w_`>*<wy7_EviJ)5Bu3`4q!|Is4B(>xCI>JjfT;m&yY9UE!!(V{CzASFO6qj_
z|AS<v36aXP0@(OGQu%gtC4)AAIUK%7mItuxP;{Q~`GN}ssk|_NMZy=yBuj)WWfdXw
zJEv0Z%Dbs60ywlhx@370+g}yHYR=~4lr@5$c4_460$3lw2G$B-lZ-UQn>J)^@{Gc1
z`4ZAL2T;?W#<V4Xt-`m(B-@2_dXc&-fZYK!3885Sdji<Yu?I0Zh<yR<51@DuC4x9W
z=a(|yx*nM_q2fWB6u`#;d_q45a5sR%0el+3r2sAmaB{tMB!DkTxR3)l#tB-fJ`3RU
z08RwZIJbQ~fS(IQvm8kIf|eh(Ry?)LLXpZVRpJusQ~;*~I8V*a$!7vM%T0Kt`kEWs
zRO`jUl$IN;uNcxBtna?DC_fj#cjK%9i>(U*d_&Lgv%U@BA|rou68X}SDI01elV71)
z05`a4bN>(E@yX<$Xg~np2k?U^|Hy@WIQd!t&5k*}(8A$grtr%+duHePMGXEmfa@}f
z%JC`RjEw%qAfJ;=Ld{#;|Ha4yS~9c02XKcIQ9qdqf6yTVlK1Yj;)kZ(3*deLS%SzK
z#Df4HN|k2;{Kc3&p8SYb1;8HZlfR{-f4EVI6Wl{n{tMs<gY7~#w*Qn~)svYfeUp-T
zJB6-$9>5Fk7*CSpf{w2$)ktQ8YsXsIf`|{|hlkc{L1YgiA&5Ld$N4#e$Qg8IBzMs1
zk*4MfI#cE(J^9*Li$$*lkyn)S3BDRcejx<}*+{FQDFuZW5@g+#Rk9QgI@44{kfdl3
z#bTU(;Hf>4XHlLu`9TmRgD4e5Vi2w%ssvFr2zL;kAfiE}2B8Jv4I&(b8H6tge-H-4
zuV_Lb=)4aS3Ziw(jA<De!63>TQ4&4q{DD&|oo&C*N;P7ovVyRKNMVmbELo|Ng1ER+
z{jpLd2eEynI=NC2*;KAo%DqaJUZv84C>=yOHW);D5M_cW8$?DB4OXcxtJH*5YUwJq
zbCvpHmAbY{{kuwK22nvetsF$fAPTKktyU}kb6ts@u6E3*CfIGYsuo1`Ai4$7J%}1X
z)C{6S5FLZ46-4bIR1j@~IG!Wpe%XvVLDUUm%xX1fwW>!~#Ano}0YNkr-cqnp5U<nW
zLA)W^W<fL&Lgl7G{)D44$)?qc$kbelS_E-aB&{UdI;KzME34I;LA2vUtWj-)c#Dy_
zTD{GoWy^RJpOJHo^B1ta43i^DU!&d;-X(~xL7toj+T4l8tWmtE=q!%yxJLC`qb96T
zJvUcgu}1X>qGu2TSSyHLLA)2l`$6;xVrZL;ooiHYj;^GAW{uJo*=)bBG+u12>c^JX
zsQ!W^Io7H{K@1LJSP;X5&g}v!^Jd5pPVrhbRIut=$Nx>&su7HkwQ6J#qt~iYLCjmL
zMhCHNt@AG}kw+Jf31V!}Ip=Vk;CMl1Cj>E(tDtI>=|irIAWp=k?3iA4Th-{4Af^Vf
zmTuw4UN1UVn=KAUrUfxQh#5i5WT4hgnHR+TAZ7`l9Yor#$Q;4Bg3P|?6kQO+LdI2`
zO?^rh1+iT87c)eISQ^t@CZzeZSExf=5yZ+MR*5Dnt_fnb@ZYy(GRws5x**mEu_1_!
zLA(}1;Se?ju{nsJg7`UzEkSH$jB%uN1*eHiDTsqX><D5fV<w0_LF{7Wm$b94b9{Sp
zt-7^V?G1t}YoE-~z^oZ-mL(Ngr}opfb*kYybts6B8CO9Z3*wU?c!P+Sa7Tj9O@qTh
zd@7{lI>qdub!zfD^;v9PG-;l(Y@Ir`PMrwiiy$rqaXE-D>G>ee2XP^YQ$d^#;w#4F
zdUb}S>(tqxa~F%`@j8`by>s>THFu2lis@VsZH4q*uf7T5>UziiZ@Jhx7wZ*oeQaK@
zj;vQ#g7{9N>#E?*^(yNIN3+-l^*wh;1{D{@2KD*|b&cz5gX+6MeYipW!cheAZxH_l
zaXpCNg7`CtyFuIt;wHUaKmK+Qw@5aq2?-hZH>i&{s0$lZyC!9R58_S`e{k2`sI-lW
zSbn3r$9N9n?;!r+n%$@#aGy!YcqsO~yHWiW#3SjNRxv#ef)Wz$Q6n}w_w<%*R8N9<
z$~Hqt2;o@}&x6PkLe>yI-RNv(FGT<HMim#rqm7EBz$TR~<TMf=g0@MeZE`O1$L7e$
z5kk%o@`jKvgj^xy4&gw&bFE%$lX_>9$`iuKP3jdvlEs@GN97OURW`dxZQrB{gm7Y$
z`gN1azF8Fv@gz)DC<JnnA|VtFp>BwGB=Qyup?C-%56WFBgc2d=ytcFuN>e|CQX%Le
z7$GEv&}~fB|CS`XLe8(1UIe1#?huF`+APE?=o9n{1_XnG)C`62?TJbx;Sjb|j6R>9
zrcX{Yg)?h~U<*$YOcqQLj0i>rshJwW_veyH(nBaC!c5vZIjw96<w7VlF)bs69d|5B
zzV=mNkL9J`@y9bO#9FAxK}||w3zb8t5<=Aws)bM^gqk5NnVxp+^OTd*(yE6*((q)J
zTJ-0Hv^r9yws2-ybk|qq+Vr$~RQo8ceh6P=E!!Z(+n!Y#hOpqDXrmBbXG*TxID`q4
zqi+ar@;KUmN9GT~)Mg<x=O{w>A%qqov<%_B5PFBeBe+|UPYb`zsR==akeoeRn-JQD
z@Ky+y?&@y}K57*qf0`|h`bO5cb|L&Tw?=zGk`5sr!(w&};T<9G3R2QZNaql`2<a-=
zO|ZLQ4?$}76w)h%$Y#YX+kBs{;{|6Qi)X6$388NY{X*y;!hjG~hMb2c14H~NHAd}<
zn@{xFgF_e-Lbe-Che(!^p&<+tK3s5w;K*3%s1QaA|3L8NSNz6?Fpl^CLzwcyoE1Xt
z&592%CWJ6CgbzcQ6mp(`FijWok>F&(DS}f&m?osm#>P~eA$+DFvt6Gg5NC%lM<jD&
z@_9lYyK<bkWh@9`VF-&tuxdLGuog2sLe6`vOGCK-e)!fCW0_<rSuSLSV8(w5t3p^E
za^93&6T*g&^H$f|5X$zpnbw7{Uikbc)xWJ2-N-)yA#4ue?ak^=k7|jBGK@*(SaE9z
z+t?Z-IfTR9IzreP!cQAA_k^%Fgk2%Nag(`Qki>T&DS1-rKCWVhO_8$uIU~)YOb0?Z
z7~_Y8Q1i^~$R{C?Q1b}qD0f*ldp3ll+&Wfe9up+_Ovv#NK95OG2>C+rOTm*NoD#C2
zpLLqX2xna$Ui}r<LI~$VI3L305Uwy<HmeI<i6QXp>u(s?lTvBG+UM3qkx+OkghLN3
zl8c{P--U4VQ0kG5nO8$#mNpZA4B=V`zlLy~uHb?i;v7eI?OfHLh5sTrxJNRDeD-(!
zPEyKD>$lm-H$%7;!f_Lyo4C#Gi@g~5*ub3-{s^I=jz&8E4B>7F89K`8xW~y2;kD#w
zSshcqupWdE*Ez|f<6#JYaruYvID}Vp<kj&vS6m43I<o8dm%AJ{`L`ljbvy~-X$a3l
zc)|TYgn}iF?pMna>)q8i94SGvV^Lb14kA+)9lV)9l1;~|-_lgu$d*uif{v`EjGQ`h
z>BylY&22C>ON!5}<2|0`+#ymdPX$Wy=*V9tfg~S^j$%5B>nPJCaxk$(0UfXED5zuU
zUH$Q!k-|C(31{{-s=XPR_Fklj4i+&L6|%IHQ9=iFbh)c1>L{t>-31lMOX=9(Awr(d
zW1M@pI3+I8aqIZzRN9MjMKv8>9mmcm`2-_6{6YdcO8smF1w(?mpdrYjun<#+6_eOH
zl62>je91amd|^>1g?|3DDoIq@OqJ3!!P0{1f@K8HzmdYaoI4&t%tJ_DPGSQcnK~-y
zps=Ej$~vkDuOxV{V`^0$)pXR=QBOy89W`{+l%mnaQ*UQaWvys@YAqd2e~bQm!K$re
z>&DbNI@Vo}QgS#Y+I2%}ebLX=A(P5?R$7CnroFDCv5reRF6($hM-$z-l-;A_+@a*5
zH<G!LHr3Hg=UE46p`)daNjg5#(Mm^a9q;StqeJOvqoXrjt>aA{ZFRKQ(Lu+M(`hSv
zWP3};+d3}vinP<gGl+)uPbk?WQtnJzM;-6z=%nL|+i6G5;_vF%*fjEGNyBv}jej!u
z_o7$R5?yt4)6t8u#DG7O)?G&rogX8^!sd~&Ze!X{<*j}RjjxvVWi@*1Nbj4F(}*8h
zuIOx|_2Nj`zB>Bp7^!2Fj{e!R_17_op4U;}o<4wnD`^ZAy!Jfn5FJBx=P%j_!C``>
z?q;E6I3p@jmgLm?34g;F%_1qCsAG(du{y@<n9w%iZqM}BIEqyX<LJq|dbgzbA6>=-
zov(!&pEZkosPm9CW5#BcnbnxAV~UQ&I+k$F>X@cufiyT>#|#~FxIz=M&D1eV$6t5#
z^SR=Dr_*NB{{9J{=88L<XfQih$2`tapM?23ZVgPJTD54|k<qdZbHy#xaTUfQ9cR9C
zY+kBk8NI4wlaA#&R&d$sSgnJ0R>&2%lEIeM`26$Mzm_!C=vd1*(Xn1f$EPK}|25mL
zY&=5EU?b&o#oalZwm}D-eEoLXW*u9&A?Q4i99wm)Oe(&eD?)s=O~>f&&bK)R>+#t-
zCG66%TgQvZ36u=#m0;d;E&#~)>bNpBx{r?4aX`mG9bYl_YNZ^~d3XrUNcerC<FJqu
zIzH8LMEG&Rqg-4Z*MJm8X{XxRiJyu5rQ~zrlzgG%OW`L4PsQZaKOL)1epUywBwsV&
zb)46oi$-R@VZ{EQDwKRH*^7d#az)2?IuZ=zFtF>@(pOnsjxYOO#}Ax$u8|!{O!55I
zu8yB{{H)^_9na|y9lz?>a3hI#r|;^xE}YrlgxnCk$(a>$Tkv<mJA!`*QvXl3`8bJ$
zz1)-T?(2BK&7YAY+5ZF|al;hyH+Oy^)c;4wk%t!3OFN&4<f)ElLU=dkr993+Hp3Z9
z76Vxg=Xj8p@*E3ork6asD5N*bk<&o&iz)o0w%b511Gx?4G4P6k6ax_hqyJ0FE0`#l
z&p>`5lot^4s)2$+3JJa@SlB=j14V_G5G*EGT#$8>zst!JoJmRwmWs(=sg>yx?iTb2
zYOzwU5T60Rfq?L!plKi^L>Dv!*?3q;^VEnX#1>47l_m=rQ9CngAXWHk18K3+83sxl
zNSACG1MLlTFi_S&hDgc@RyTOx$r(i^HIp+*Dj29Jl1hS=4O9_Q)j%~N)cHJHStgPi
z25K6pWuUecwJ=aeNJ9gS4Ad1~Pq4lqt28i>_gpdw)9VJBh`h1j8!;Vr)Kqx0n54Oo
zle4Xs23i?t9h0{;poF)HN!~QDZL?zIZ;9mXn7o~VX}O&Nb`;4}!FLS2YoL>X&XS!d
z*u}v62Kor^YM`5e?gnb?Na<nVJrVX4WK+EiTwY$8q<2ihUiup7XJDjA`U?&=Fhs}z
z0|R54gI<zBnL~vP7aaC~N=L-_h_=~BksJ6xB;y3f#7f5sLD|Uom}G*1uAf$-RUe9E
zQcV7lfyu(B#3Wf-XPqW|y5N$2&b-WwmCiCSJI3c2m}_93WakSm6<lCop^!y_iv`)p
z5`!OQi;yra6X9~f6@n`btcq#2Iq2xDF|bx7>jc*eZZNRXz$W241*y4N$QA=zW0GwK
zw#WDmA&<7F?21WRTPb@C>@~2@08j5>+Hc_2uIeNQL~>AY_>FRud}83Rf$zikA&gHA
z95FB>jG18^HE_&8QW(i$UJy3>%)sDZqd%XH95?W}ffEM4Fz~`aTo_*(IBDP)1HT$L
zW#F`dZw!2E;EaK@2EO7}MupAl*UhR_cH`-0=Z-|7E$W<s^9GW)s0)nkE$ZE@8D_SO
zT3ggb1D6bZXW*)V9$VDtEo$}_b=klb0~@wDb&qdR-y7g#zH0{Jx2hjlv_&!fXyC4p
zpA0<uEW-3NcYu;M$#nz28F*~qZv!_B+%)hfmFW}1d3?z>J8f0B4fwXI-?>+8Rd)pc
z5Nx<rQS!-R`yN-*V)cNLb~NL@feBj`$wLE+wkoE-*s1XSlKscPzXtv@@PzSyFmfv#
zJ-1cmZSDNP>8VI~)9IOk=d@v~dbU;FY?+aNo5~VK)-Vc(Q6!9PVZ?`#FO2+QWDg@D
zjND=52}9eaQn#rbVdM;hw_$5;b9|C3j5ga;f6CXYSHj>eT#hSm7*n>Xb8XUz1;ThW
zj6z|&7REO%GuBA0f?<5JO?|!1QNFcJ#cfxK+f~spiiP10!xKjFFiM0`DvZQ1#<$E!
z+pZ8s-R+7lEg5#4O!vCN&H(3ackW`f-L6J#S6Ud}Falu&!&sJ9Hf6l>g|Q_^#@_A9
zAI4YP6$x*<-P-P09twkZn{`1WjIa<&Od(bnwvcDrotx4rVMM~H7O_{4w4!08hVf1q
z?}nXMA<FKFOAGVUh)55kOc)KrXcR`-FfziZLkZvf3WFaQs2oO>Fb+;IGwFxMaTSFB
zH_e=kG8MyUH^HnVn0uI6HH^sv%o<_T41+JWR12fJbj0^x_!dmVhw1LhcC9e@Y7gID
zsm;l1*?_#R^u_M#h4EmZSwD;hoVa1m+jh(j9ALg4hT^nlt<gA)H^OKVM$<4_(PRD0
zW??j^GY6O-O)%L)3mSkjEyE}{*^y9wag7-nWws7Ghet8nh9r!(9Hwrz52J&Sx5UV|
zISL_s8NqRmZgvdwAJrU%cBpo3UuCva7@fly9>xe!>k`I$Vf2<3x`xp$jPCp<^9-{G
z17L!=FqEUG6m=SC_6p<A77bX$L#y5oqi-1f!srt#{bZckKMcNeF*xkJbi?cb#@IM>
zU>Jiq7voK)w8CYENGTPD3K_;}9c9+5Y>y0MR2WmmB-adcbQlxE_%MtQ!eDkx7`uj>
zV}&z2PRMvhyAZupVG1X46Z^oNBKCa503K&f=Dd$FC-RNIF(%(J%sbtj76#urdNS3V
z9tM%YFe{AN-0{LV#)x{DG$)LOVJr$`ZW!~z*f1b&KC_hy^VZN`TImIJU25s4xvj-v
zED7UG-PE07EM=&Nv4-&w#_}-k{GD}07%Lg}TOw&U(@vE)R)w*e!LTYqKC-`q6;?*p
zg|R-&55=}-mT3d^!x&o0sI)Y)F^o-NkT7iy!(8EzR-IdJ4P#pvFZH*Fu_MO+K3IX4
z><VMIn6xL1RnH<!d&Af#e81p<nEYTEhhqF=&XLq&3y0}IkslFUw$)-I)(-Vq7$<(K
z@NF2!!}y$gLgQ*D*mW4E!}x-K0{AE6&GIMt$09AMLH%mw8<iPTrs5d}Vbf~&+g3c!
zf!D8gmTO-m6n-7XIpM)_)tJ2?4c6)0=o_xq&W)^1)h~u|DU8chyJZxN6e3>X#`s2!
z?-+8U!%v#VT@7Pv+j5;h3jY|!wJ<uF=xpMrFn;EaVIs-IFJb%|#<MV<hjE?4q>R6~
zWrgvZ@Ed|R1#b!77W`fCj^H1He+u3eyeD{H@PXh%!43^9w$B$;9*6NaCzLB9(at}o
z5%KKw2E>0w@}J<7FrEt8p1&eret8i_oQdov5=<QY(#j$jFPPOtHWSr%sJ1&4iw5pc
zGj^yPCdz)Gm@E@HP2@6>+e97{#Y_}8@rsExMN(chQP4zQ6ZuReZ%fK=!umO>%miz|
zHmiV%vB#3AQ^>??Ccgd8Dq^Cri8h;(D(A3y5a`1{tYIUpIn`2%N>e``cH|{YlroWM
z0wOGF;`{N|^3xViKxI=d5xPyR7;f=|QjcUQ*MxXY_)PeP2TT}3f}%{FkO^HRO`j(-
z8y0Q~(ppM5(whxac!+DViPk2Ri4+qN6HybXCTg0fWrCl4N;6T}L=_XIO{AL`vp!PB
zM5c)fbeD+?kx;Fikn)0sidLYcqKQf-p8Q&#yx-;sk>8e@QrV~~%`#iVL^Tr=c1NgF
z-Q*WS6W-cg-o4Su)@Ig3GZW2C)HPAhL_-seOw^aURA?aN$AjhBAhSnKlz-hs6X~w8
z;2VMyx2Ca_eKqB9HaRVK9#Ou9iI!5G{M)T*tlLVIGlE7N6K|SmZ=!>Vwx)A(_**94
z7IN{TRqapbQ1Nz>?Rmn=cRZ5vW3(gv_G9#26YmJQ`a`tKAJN(uQYh?VqN|CKCPta)
z#-Pe)Bn-BCGWKpJcQ?^PNX-Hn%=R+z9*23{>TTkE6MZ-l2`QIWrt}pd<pWLdHSsww
zlKYEffMD&(nJgM)@~uAPxKX~^<dpN9l7~pqP=>*plwl@@3mG9uN$!KmO?+0b>s78^
ztTNif2b?d)t%-3A3=?ZjjOUD)m}_F5iQ3(w6HQDpG1bI}CMGdTdq(GViMH<+{m8^$
z{jA9%q1rSPAN?4a#enbTlukD>!^EZ?YNiRZQs(s@(K215v+3Aw(K&)VRDXT1=zJ3k
zq@Cr03r#GR(nZoNmDwqAiHW5`$d?Iebv>DFt}wCE1j#B9u4X`HFUu^|)|psu;*g1t
zO>8i+(ZntjyJ?b%%_g>)*e(@^Udd$IVq&Wa5*kT7+WCKD++kv;wA{aY^kk3d9uqI5
z@x4Nt^@{E@v7aOD?(}#-G!F{WGy6YH`GhfM;xp;!Q*I+IQl@o^9y4)7_))>$y`rrC
zd$%ZCrscH%go!UqJh1W5#+N2e(sB#CEu1oO+C&M<`I6J}ELqN&ILmwNJJh1%R^6G=
zuS{GUSm|pM=S-Y8alyn>6VFV1!;Q$q9TR_;xM<=McW)EFnz(G@iisag{K#zHjPFc*
znI+?@i5oi<FJhnUP~V$)b*G|`SCZFE=W3G|r9W}Q*{PU*HjyUex{2RR+~Tc%#>pa^
z*PmyzX527wlRj^i(Q>CEF3O(KWvBX`y_e4zw9~mX{nNx<&bWz3ChnQIZ{i`>)WOKq
zo$3MSRCKPlak}PDNA~Yjk4^k-;vW<LirPt0xVTgO$Niy0diGt4ze{`~?bG19JJoYe
z5VvRx`7Oj*$YLRvh1{0YMOF*hEhJbdx=UrV5O1Mrj<Ru;qeOF;vL~n<qL$M_#a*i9
zF4bd~V{je|u2%7RExaP7BX_CkyVUw!>eF4SfQ45r6t+;r!e_1G3tA{-;Wbgawo6?f
zSBa0a`Qr_~(o)ny_w@K;7K%&hvt8;~LdF{p%J863_FmFLDGOUIY_q`61YG+ulAKXK
zk^Ne5Tku%WEVQ<uEO;&WEEpET7W@|8e3Uk+VMMnut3f1SAt)pySa7!*P{H|*0~JgQ
zmW9d|s#svwwvc2Y*~0nLt)Dzf<2N8uEL>_BDPtkRqWTf0sE||(_uej_W}&oX(_^J?
z*N>DHo+0@8qqK4s%3G*<phBhvW-AC*6s#o3lTz4hRSVTD)U{C00&S~KztxM>kw$7*
z;GvE+E!48WgI`!$+v0r^bt=@FXOft^RecK$EHt+8hJ}U}26rsq$Z}4JVS4zi?CTbq
zKTIR9IiPhDdMu}EO7Hzw_DuWoeXo{ZS*$`cDp+`2s5MgyAuR=438scxw-ICZwlCkA
zjuqb4!dn*Jw$RQ(Co%F;g_b;|rM-m?7CKrOa4)UeZuKan-Vy$;U|KFkIS0GyURoCm
zT`hFu>{}RWVVH#;(lSTg%R)~J3m%sx@7k{Xdlq_IptbK?=+Aa6^s&&_LaW`1gX$+m
zO}=eSg@IJarUDmR4z@7JLY=SEnC-pWkqoi$S5C#laE4nLVPTGixfVuR7-eCig%73c
z(Ttq-<;P0J4=juk!Xt6m4lNmHVZ5kK5HvcJFLE_)l7){fOt&z@!esGz_mjn6dVY$9
zsUn$X@#E|jD17#?>`co!7^h={$SfgjWHvu=RMGj82xnxTh56jaEUd7gS7^Dw!cysL
zp=1|XSZra5@Yi}PDipm`-fS4D@OIH<7IqG7J!4$Ul@?Zst7-6R_D-uFq;2Nfk#;zP
zZ=EW>PB<0T3)vvJQE(I2V14H^C|fN2$L}!Ki*Wf&+^zT+db{PkL(LCl?68~<XY3UG
z{H@3y3wtf3+bCmWpN0JvKXr?P79YDiA8(qmIyvxN=|il`J!gpOzOzcjNtHga@Q9&h
z;jo2IEq+V}M=ji9Xthc?Ml-nLEL^s5oU4PAYvHVg6Wn<wRXSziw1qD$d@0%Xddf*|
zS>w{iy34muNTb5mEXl-Wk0M`L_}aoZ7C(05R6J+l0ym1wspl<FbMxZ}`TfTc7BR8k
ziy|jaU6y&p!gm&~S@_AqRSVx+_`$-D7B*Z?J+L&#?e$gJ!i~F0RPL>!<UdOnzgoC1
z#{9y$=#@(OZx;6a6}e&IrjU=WMe4qn%6{1$>)y6_z&q|(_`||oZYCD~6bo5Ov#D_S
zQRKeGcfOo)JrweQTWFRjC6}sa{v|pje_Qy+LNOb~ZT!nw<4$fP!N&AvktY_OT6ktT
z4};n_i#)gR!a`Qtc^q~#XIz|(w{kg8ZL)}@YrOHC4|jye3;x!*I7@Tb$Y~?5jeIt8
z*~o3<6&pQs#d+kxP#zx6cfP{nQ)!JZ(I;7ow~FMqQNYG)HVWIQ)i0suJ^fYNd6-+!
z#*o`-e9}~itzFRvoJn)Rd9YhVN=b^^nA|2(zGI|>4cG|VFm05yQObtbhR;T#4VR5^
z*|TX<g^$em;K|K{;%qF<o^8u+HNC0xh^j&Nh~Gv)hM?0ets+4iA<43I=F@oM=v;Az
zNKy}$V3x_Uk!&NyhRsNB5=jyy**~ZPF=B%!(xuv<oRTyfr8!J_>_z;!dp4q#HLk1;
zem`=mjcGQ@*=XK4GS0?$8|7_e+NfZoqK*DG{@ks2s9|LrZ`){Rql%5HHtN`@YonTt
zW{<3|cdJ@9s@texqh>5o$i&jxHb|z5T0I-}Z73UUY%~yg3mYwMG!))Qkjk&yXdL5j
z2x%hNl-&twE_k?f3YA;gU?OR4<Iel3Buq;SMBWtPTY~fZq_(v|WDyCmy^RhwdN4L@
zbhPmf=g3A^8}HH^N0U3*=qzgFRHpEyyqgHSiw-3(i>T8}`1>~c*mzHPZ^5dElBh%8
zmrgsB)K8FECT0iN7-(aVjlniXF)9i~UO5sOVq?iC)(9Iz8M;Rz!)y!}!giP_Vd+TG
zVRkg5A~yUnHpWV)FP*?Ff6qU`#)me(nrTgxZ1Z!O6iyP!M}m_Dll{>tHm>xIQge79
zX*$~+n(}w0%o#Rj+L&cywvCfEPT81aW3G+uHg?#UN0-`IW@EXH1vVDaDvpA|6Q7Z=
z$GIoGi1D*cEfy@eM?I1YQU36<XyuF*Hdfl$WMi|9RrJHbNMMh1k;a?St8J{YvDU^q
z`+s+;H`-Vq;~Q*Hhu5($@3OK=<{q`h##U}4%`;l=Q9bvlZ8pa2QFHdFoi=va_}IoL
zHg?<C!{uP(fbHCF<%Qy22Eb)~?H;v{-R)5a_Naq4&hJsT#F9f|6@OdEE)LuH)W#RQ
zn747n#?w9O1OvFFebmOQd)1t*8OP|EtQnsP9=Dw<@Xv*Z_p17PRolI)|6b=dGJhaC
zVXr!E;|xb(;};ue>3<s+ZCv8q**It88ynx!40?61+Phbs-K#Fp_-q+W#ad+W&7((q
zRgQfM`_yGlnT=~UezNhMjjJ|(;41Er{ylewed?`!s^30UbDtvr(Z-~Giivld`EK=^
zed^#ob#9;f)y8!jzjNW(_>E@UxMkzEjl27tQQzbix?g$sI}WL`U#b0$@V))&5AF%n
zv2oAFXc1CAcfZ=WU!C5se%`O{bF%iUR}QGZNI1+S{F;Qv_Wz^nOTcxi-nX4|ILVk~
zyv<4+&e_8|?BU&$IiZA%Z)QTq6opWdAtHq`B+_6WDw*dwLs5w+Qf48gqVnDQIluRJ
z{lD+K{@1mx`?}Y&p7pG?p7pG?_q*Rc;19-<g6RtW<mS))RzV{Lw{mbh2c;F1QE=iy
z*55h!HwSk(oC{h12=4yl;XDe`6ckl(kAids843z0D5$_|speIXso*XJ123xiMB-)X
z{97=;f+Mbaw}RD0!z?+GsgMF<qiT9#Aw>i;{Qr~|lWa)^_bRBdQQ;@diYvHJge4Td
z4OnGjqoq={>VKxLt*n++!VdtKQ$XHoTXuN`6%+&tYAdLypppV#!SRwczw1|XZI4=&
z6;x4BRl)rVqO8)R)&mNvDcIVlrl#OQAvG1$Qcztu<uw#!r8xDog)0hFg%|F^icC)p
zYSeo`v5JMmCdet#r6?k}_)=C(L0o|$*@OZ|fvLcftWB@xt9kf(7VEO2D?)OQgR(>8
z<x7T0$&KH#sLalg*Ac8s55HBbo`U)c3O!w`fgnjk1tl8Qd^J+@VFl&aCntTQKJa^1
zV+BnVG*$43f<6lRDtJ^uGX*^r^iuGcg60a63Z78VLP1Lf*QVuZr{HlVJeTABKXVQl
zB&`&*7D*eywt_VZl*rX-ui)g5d8ph$3Gco1cB-8ebX3AOQM`XJ53f;oW{~Vuy9jm_
z>?TNIcLhCC{7E6a9WFQ$>n*0(pQnV-EO|c#{S^#X@PZP4Xp$eJBo1I4N|yX-1%nv&
zC{F&22%l9jSjZ3s&nb9b!B7RmL{hYB9;%fQ93(hG<gW>i6y$49Mk#oa73CX(FDV!;
z{AIy03a0f`UQsYsvg0_vf2ywvA1^pT@Z=C}qJl}nUz-tri*W5;b+Upf(!}cu-Vnmh
zOy#ngoip@$jW<Pd?Q#tYXDE0}!P^REGKAJAqrWJpeyzoO#%9Uloe<I2D44Ba4y!1r
zGdFXAg7+27Rj{m{_pXAkSL#gj7($<W^A)@&ghew)dLJnGkQI;B_=K_Xg7cAr6+#v&
zSR`bzf~B-0e2EyO8q;#&ye`K?Q!5p$5}l6)m%XFsDu2r9E9|Wnq}pdvYx7Edt%7w5
z)+^YcU}Ycedj%UAQJj~X*~b+8IzM}}g1rj%DcHhwp<tVW?V`C`!43sGh3^t<v_nt3
zsL}}2)625=C{V8H<nI39a|Qbqe5v5DXzm?W`+$Oj3Jyt@I$sE({u-%rM8Q`Ijw<+;
z)0%F5Ev4TGj@;`~|Fyd<Vx#8TL$@L%$ED~y!4rZf1zGgcZ^{oTeoDb<;Xew}J{5je
zaF(;F!c~!X!(HdNHK}+&#d!r66kJqrNkM)UcdNLp;EIBLYIsTc7doVJ7Sk;SSC#OR
zGSf8$*M<L@lH5@6oABQSZwme)_@^Li{l$$)t~uWpn}4S)|D)hv;dcb{NV{w?O-Q<m
z3?X?_@*bL(Df}+M&3-8=7f?}9MG2K3AwnS)g;m_6qL_*zOdqQiimDqLYYn#QMOExu
zsr-_m&sFp(2Mcalmwm5_;v&3Hkfqc9)^-g`mQqn#MHv;$QaJpkT2@6x6)fU6;IDqG
zmJ=i?FQkGXpAw})B~hy^SVb&URq?^OY!+4HGh`~C>wNg{uI;!As;l8z$P%m}xXH_^
zsiKw&l57<b5so++%Tb}IAW;Q1mG2tL`tBKBS3#V7e^ykg#8kwE7%D6wreMw?j|Q1+
z$tDD+KBIdod=(8;G*l6&sI7)K4{yD<W*s&BL0wP9gu{AW;mq!MTxYhvilcuiBu}SD
z9#V0jb=FH78mV|#MPn6BRCpSE4NX-%qT)Rj3sgL+qM3?GDqf>~70p$=q++y+7Ajh*
z;RgP=iq9{n=O$)bsc5aDjf%D^2C8^kMLQMkRXnMpr^;{C;t3U9RdiF)K}AOuUDR+B
z>v=Kb&0b0;6`iRjoY^}&_0H$R?;ud2&-sk;=QFyi=%J!+p0wd2@1>%*iUBI9`IHJO
z^ik1Q1?y5_<hhJ~D*8)l`NsOBBIz^c<*#`qEi|iQkcwwi3|H}jif2^}R>3BoS20AY
zQ-NxHYLFG#ANFCWiedCak#tI!*oP6KIZDNgDn<$)b|HgB>@zz+Ys8mjIAc`2qQaCu
zj8!pCjHh!%QY%+;f{IsFOq8NF=R-Rj0{bvo#S}HXiE*Ba*HuhaF_+zz;lH6`hKjdn
zgn=q<oG#T16-{SFcIIu)X^Wg$GEE%9Olj^xHGQ^<s%kpZ9MOM=Za<&#RN-`v`dv}x
z=-A?XnORnRpG!dG#k6q7KUA?s#aa~~saU9Dkrb^ETr9XmaH-%j70bE6i>5z)J|h=b
zs#vAsV=4VaFjxMm@YTfsTYsI3^(y{U@t2AXDmJP(&V|EOpklL%{S0GnCMvda&8pa~
zVw;NXDt4&Yse(=}bUEX{*!@DtiF;J+<)*;_iq3!Kxuv;yP{kn?U#a+7#TP2RRB>3v
zk^f!)8!j#t->NwFzqHGqoKSI6#YGjDRD7@E2Ngf5_*um%6{l7FsN&53SNFgDKda&#
z_k0x>{&$_rDz2#bRmBbNRNU57TvKuVf7ky_#qTO^s`%r7*SRJ0!g){Ea9jA_D*oZd
z!r)PnM?;$S|N8mAea_I3S3^DxnHmaeD5T*o4g3b<-5Lr=Ed5W<vlb(Psj!A38j5PT
zM*|i9Ywf@DNXfk#ifgz}LkSHJYN)QEq=q{W>(Ee6Ln$p>xlE-sl#zz&UP&vf;nj25
zG*Vt;z=R9AiWF7QP*FoA;mxmRR8Elv=Q65lxL>jlXs9NHez5HDbqbAt$*3WcYz;Xa
zUD5O`4K+2?68_(4r=}umaSf^vO@po>q9LjwCK7guY8)w%6^Vw(O%0X?TSG#Fqrv^Z
zE$6P9TnseS*1~<SpN2Xb>S}mYLo*Ha#7-l@`hpEKG}Q3e<*=29L_%_UT%LzDG}h3B
zo4<xfM9!^}MVrorn)8ol^uH_fF%8W%bd=H-8d_>d3V&QfD<N$)v=+iDZBng})06Eq
zzUUb1=Y?nfxi+5=%?>Gj+V7;HvxY7jx@vez<lPtmLV9WFq2WmlJyZHLQfp$^!(4;C
zMNa!?&t>!x-d8Ypr2RDv&@fQL(;|F9!ypaMXn0<-tn#deA;M{Gum(y<o=cUI^B(M>
z8it94e7FW;|I2A3gp3sVD8Uy6dtVJLjMnh7hA|pmp-{sb4P!No)9|5&k2H+eFhRp?
z4RaWo8YXIZTf<B(yy!7W!wh<OeeyMStX%kf>tqd6Qv7udQ-!~glDsKon&5Ql605w$
zCNgcNf$PJo3bQ!g4f=}p$#LtGv(_iy(J)uT`x-u=J}13g&L6XL=4;r!J~>arkL#0v
zu21qR&3o+sXUPSEB{n3L4aqti!ap4OFXTcEi!?0PutLLP4NEjE)v!#%cbRtU4dLaK
zejCE4Q`zXq4dJDUl^RxQ_*lay9Oj1PiVev#Njq@tPc<Cc5I!ZHwlR5TLvpo-!foxX
z?d-K0)@k@c!<UR44I4D<)UZp#Mh!o;&AU~@Hfd{<2Hs=2nTuLT`HkT%m;B=|wlQpU
zyM`TF_}3~E?_k`mVULFW8V-mz_A)9qCMRx8?qmPk*^h2ae$KVCG08tw-`$w}Y-4gv
zhq?#ZJq=%POfvnlF?m?S5e>&Q9M|v_<r==xa8v_tl1$r_EVC)R8k4greB8C(rsTI=
zBb$;>Z%Tfr;RM%m`@E+$yuK-UQd&QyfseX>ui*zReC++bO-W|=Z3<s-#}~q|^FL|$
zS;Oc6F9$fQ;hct14qkL{p3Q0K6GPt^E^4@>;kgK&kKnR~D;iGeIIZIs4Ocm9I$qIn
zO~Z8tzm7pVe${Y8LoYr21BK}~EhK*n{w{b^!yiKa6lCdNLT(A(7M$AK`A5jV+;vHG
zew7tTv6-$TLkD-_#(MaMvAjCU=qRfrpN>qOZ!Za(yC>CpejRtGcmW*+g%?Um3JWPB
zSX9S_P02i)!#)?&ac@eexQ_dTmq<xU3MnO6I+t%wLPt3r5gkz-<waOckk%^bsF>oF
zbW|2zB_*jU<bJ^i1an{5^`MUGDV-WRvV_;vQA<d+4mDMpBSg`WvpHFRb5fJ6F34AD
zu>&#TwRKd@=P?`CVTgp>)OnwH=rLPILWrZoOO?7ps(xhnLV{deq)?xx>gcE|Hp%Ph
zs4u)hO43lsLxPQT47siFm3mEdety(xs^bwIZD)k<e0x-fy)wJfQN3f$pjoQj$8<DL
z@fJE-3V&QjD<Q2}H&xn3NMgCtPDpzly>8ce(uyTFC!b(g-VQnlb`<O+NMUCkT~fTO
zj&3R5T}Kb$PYU)F>{vBm6?V0^j;B)X_R-N-c)ygSzm5UI2MT_;JbahJGdiBt@nTA6
zu#V@24@pU$6LP10l*&Ve4-*_N_=4aF9V3NMXB1~yl*wPxF<Rs=3l1+7wm4SDI34fl
zSRlgjg0po@(DAD9i8@{rGD*-n>arHoWF1pP^12`;Q+2$N;%^F>renI08G>)6O5YYT
zQ^zbJj6+tRqvIXP&J~;|_^#lh7U6j3>o~e4jDh!ce4yiy6n&`UBOM!bY}Bz(B#Q;9
zwn)fRo0Cg~EEQZPxLk0B;7Y+&f~@tikWX}cDrB{e&xEYeu{NdS>U_5DKl{~sM(juY
zI#qI0O0q@BX2B_=)vZFdrAoK!*pcEph3pdCtz(any@LA$KNs9D$R-ZxIGEymp!JIs
z|5C_d!6SlS34Sg34gJO)_;fbYw?d8y9vA#h@Pyz=!S8kaAY|O;B&+<W<BX0P5oAU1
zla8Nt{G;Pv9cOi%6Z?PZIM2;c#|<67iR7Z-b-_zIE(^IL$Wi>F<Erp$DM|S!qQ46N
zbzt}&Jf`0z`-k97!G%K{%Kzkw=o<#ZEfJF3*70|Wcdw=2A&-PpQ!;`yA$bMU1u4%E
z@><dGwRrg=$dv3|g82pS7AzoGP_U3-VZkDTMFnZ$9wEgdxHp30!taZqM5^?I&B=`t
z+od8X9YL9t{6QgQ1rdRHE+`j4c_HK#BB&_5l3-=QDuPu7?-zVPkowgk_}bS<s*Ayi
zm2GycW(2h&NJj8P1lbYfL{K+^dJ!lQs1d|cJ<)_j1a-mD1;Td;Mk6?SCY+172n|6~
z&=O>k9YG?+od{gvo}e!nq)KZGsUx_pvQuA3%T#HD2pS51NbrS)YNH5<4@b~g2ziqT
znx^<8LLQBvSxWMlkmiCdBIx}~URHTrthEwsE!ak|tzbLB_JSNsp5a=D2s%daR0Mq@
z=p^#4snX67bV>1jM?<%ClWcdv9uYj5D(x9TuN3c19}b97xvxkDq~!gC^cUQ<LmQZq
zKOMoK6n{p@vk?pyGDOgr8t#5WBN)bcj6#iKIENg;+6dM~P{7YKB7(UQe!vbRBN!FI
zixIpO!Gs82jbL;He@@QR>rTzF5xgA1m<SHssrgC-&yLGWA=4Ep9T&lP4&hGCSI6cp
zkXCD=@V6tFDP&RvuL+qfI7RSvK~|X>!5hNg6r3hFU2ujVb>50#sh>l_G%JGNdKS**
zvm=-j!B?A;nR#lxBV??XGfz6XB7&6>%#Yx`2o^-}zL;7}(kraH$;<NrS8<+NA4c$z
z6fKP4?B?Vmse3K0*45KK)t0bbDb>d1T^7M|Ixwx)qe0G^J2h8D@UaxFPW9&#$=3Js
ze43K*Pw>wo;s4`n1ZVBeULV1R2!4;?W&|4}*c8DR5qv47n<Lm3!FJ(W1h)#Fcs!tm
z9m4ks?iAc5xLa_K;NA$Dd|bQA#PB71pNnLF1jUNx91uJxcqoFZQ)^R5ox>4a;>osX
z9ufRX@aqUN`24TnQNeE`I2Pd-{X+S75u6cnLhz*E_kuqNo)SDQNc|rp`1S{v<R_8*
zEO=J%oZxxE3xZU;7{S=TbQ1RPiuC7(;4gw#xi9@5xh8mB@YhKA?ivcI|C{JMu`Bq4
zam(0_qF@w%MQ|&EJ6sFVa4v3(&Od^G3$`h#QvR>-ViokXDAGkUe-vd-<Y5t0hDh>8
zv21a6KEX`EyP~-Cj!PkR?iQUw3zR}aibipdkivpR1mC`>Q?r=xQiAsi7LTIAqPq79
zmJlo%#kw953aMXObjn2W<tDAHAOy=rQJzJ@D@O64kV=A;1*-^F6}(^Y0YTcS7De&u
zbx5j<q=sOYU`@eVg4u#p%ZZ}d4V6TTLXYA~6u(3fi6R=s_$Ves5sM-o#S>9<h{A}%
zjN;)a8cWYD!GxeKSmeDh0v+LQ6kA@5dV;=SAXqz!Izs9S))TBR*g&wM;6sA6&?w4V
zo^%pgZX%Z33pN#eB#N3Pv_}P-2|gy+Jc<@VS_(cc*h;XqU>m`<g0#>simIhG61I{Q
z%cGuFJ4VqdiosC~5lLskCk49*c8&6O_-Hr5?t(o82V8GUJ3U3GR}>X5WcL<)O0bV$
z-zfSC=`T1yaG>DRf`bH~5u}A@qxd<9lF;&VVtJ_G^Mcd5g*_i8e0UTeoz-6u93eO|
zicvx+e=&-egpU?{S#XTtD}rMMsW~o+%dIq$SEHC1#l|Q$MKLLg*P>V;4Y9?^Lf#Ra
zBKUd~e-w^Q6?{YRO~GkVOcydk@GZf&1!oG*5}Yka3v;6IPwOOXWv*C$H_ES9sPhEp
z3%*C47i*ua9Io{DMdt&-52IMqT>D6Hq2Qt@7Dur}_|hmo6|zilx!?-Hm4d4TKNh5&
zPonr{gGRDiB%kHV1=k9$6I`DwZ?0`%gufD@{$|E-6bGU>D81S$xLa_W;Pxnr9aDA)
z?iAb=#oF(q6mmp+L}xE?t+G$>bHV*lKA9L$NS#BX^S$5~f?r0lqEYm);1R*E1i$7e
zgd7$8R`8hMal!8dPYBY&$tXTJqm!_eAH?#hC?3hwP7D4hct-FiMy8Ong69O!3tkYs
zD0oSb7A{Be&-ywfSEINVMeP{s#Bg1j$QMIq48KNkL$bdK-W2>@aJCuF^&i6jjPhDj
z^e@3%g0}_#rhOs*3f>XS6AP8o1k(jG1S!lLLz$;FlDlHaA4Am`?vI7Xl)D8h3l<P8
z7{jv5Y9YbGf<<B|8pA!pi_wmddj*RN-X~Z>u%uuqLE0%D!#|aDlCmO!U^&6^f)xZS
z3R1073_riBlCW=8q(3DlhpXcO;WY%S2|mb+Z+(pFg5A1>XBt@|uNlMe2lZNl*@8JS
zC^0@-7|OL6EFrpJL@+8C6O0QQg48!Taqnl7*dj>?I)bjCC+G`OEr{XvX1<+LuNy<X
z7#@qEc?|VqXb?l=7@9~A8wxfOd`R%bs&Hp}SUB%nAa5%CQNc$9C!7e^LNnnNzmK$t
zp=Ath`Mp+=JTBN;u$AD*!r^hMjqv3!hdXL};k^Zuf=|#b4@5c$b`<O+*g1wSLb?ie
z6YMV7L-0w#o`ST{i}CzsHVIpKN-USzlI#~l{}>7yC}dzj3<K%;IP5r{j$u#?^J91~
zhG$}UR`ln@FgS)GF-(o&jTk@sg6Crx8N(<k9ZL5Kq5WY(emW3F$P2<p2=)p>AHFDj
zir`Cvqht7`Z{%gcF@moMj*VfQknw^O1YZ@LC^$**H9=aK919<AB4I19i{(`#+&5#G
z7Q;-*Qa)YCTY@tL3*8C#mbZm(&*zcP5<Xk-o=>!Qgit<L$h(5`1Sg)?7sT*>3|H8P
z7(R&M!x+wSMaRN_f%%XfZ`t}NhJ~^4o{B{=ERJDG3`=9+|Mfp|LB+5<h8;2NjA2C#
zD`VJ9CvS|dis9oJ*2ZwGYQaxp_>^s(u9I;_S<OjTHIg;7FPzz*Gjb@|I$2v6L&nDn
z(|REr*xVvzV+@;8^3{bj8s8GbR%vCM;Px0|Taw2rL|C*dhTSn7kKwx*_QbGPEPNfq
zz8F3i{-xml7!C?KAo%9ObT-6vD26Y%xQ1sxusu6hayW(~qQmT0G35C)RQo1|qcMCd
z@?(N5qCD5mi5SKls`En(>3MTTPSj4u@O_N$1FT!DbUh*^r(!rQrB@2oq0X5YeiDEF
z97E!-bUK#lY>F>gsk}8a>p~2(Rwx%^xD>->PQl??OmB6~<5p}&ay5o)G5i+8?=g&j
zPUVyhJYC~D*9%>z=iCq^nO4WY8N(kjO!+XoY8-#Y@K+3#;^Chfw>at;3dK=4j=#B`
zvU_o4#BpqQ#Q9R$SIPc2hC8wFMPzy6Au^>2>6sl_>c#TLkw1>R;~>u$N2U<+yW%Kv
zq|T_jtRYh)`R+vW<&PAIqhLIIzZuii>`0L~nstwsh@)g2MdP?fY!;(}=-iuXt2jIM
zQmjoPthHc|UMh~`(MY*Cj+~B^j-w2XY)O`lV^Frs-a@j}r?9-}RET5n=?Il8#?kTp
zD2G#7MqNd4;FcskaDSX1L`JnZ9*jeYLycq1R;79zHRGri$No&OMjTmj?D}5U52*di
zSlJ>Ry(P(_;mh3|svU62wK()ROlHRyjKmS8sj;DcERMY;;!JTN)HG5ODlpZ`shx<!
ziDPCQv*K{$@ZuN}$8&M`aRhPnh~vpPYR567r8~Q*`$Qad;;0)(y*TQ}(K?PcaWtTX
zb&-eTXdFjFqjtkM9*Se!oB1hhBt@MqwTX}xakLcDG>%8&c$7|)>|=s`Ti0fl=E7U9
zi;#c0HpIu{n6xg^O7N;tdqSdi!C{eMW{7R$Xcx!M^ho=7_?OThC$f`qTpt?AS550c
zx5s(ytK_8vZl^dp$I&GY^6r9N<GA-ng{fN{d5-ENKPMx`H{qLUd&cop9DU;G6~~<c
zai-q%ZK?VsedFjC$Fm~uAIIDeiVupT!_a%0pJ+IM-fLQaAddn<7LUqdw)`;j8Oc^3
zV-A*Dllq&q^L!jb<Cq-BlsJaPF`RB38gQ|^5XXo(M#u4T93$fx6~~KlycEa5kFr>+
zS&R6OOGCo!GmAnpCXQF)cvUQqP4#xqG=E$i8w#6D<KvhheD2A5%(BWvPUw`Dlj3+y
zh+WX!meq3JmLzWneLarNTar`bcq5KC<Cqr5+i{#OmQ!U$_H-c)Ph`&!@>U!r{>t8z
zR~@}Cn}j;E<Cqi2VMcx&@6a=Gyc@?nF3&F6FZ~sX)em^9*!k=J{CIc^+1fbXi(^3?
z@5k{$9LwTZ&Pn7K+vE5sj)igXc`-iK#dM^2*+n$f*;y<|vP8(zIKKZb#_S5NpyFj$
z#<5CjWnT+xeH_PUajc2s6Rxc9@>23?9INBulVVpNvx#hrq`<${%r~8Najd6{;@B9+
z=UiWLY@#37AFjJNw#2dHJ!Lz4m~N45mFzabiM#~FZfr@C5VN;w3to%tj$@A~?~P+$
z9KUbZXa5xme$FPD-ZFB4{aK^D*j)XRb6QqE7zb}0JtX*r;Jj+lx%;z+|D63*9AC$A
zjlnG2#W!)RXl}V_32w7T<M=j?u1oVA<Bk-^cX7OaGwTH7IaZToQqh_xg?}&jgWxI7
znvfp_&&P2_$WMYl3!W7`CzxyMg7Aximjo{hUWwxuAy>Iq)XJbT6JP84YaBN?ztZ8~
zxZGN4f5&ltarW<V+?4De+*;RUQ~sx9{}Q|<cw3OS8MBmC{)yw$(iX`bZb3JcJO<K?
zkfa;9OGt)bUcr2VnS!)HHKzQMy<4z=f!A)R6c#p6gc1W!8YpVu9s`B}(?Br;_Zp~T
zpsIo52JSOZ+CUite{M;ZFrdGYeZ7WK(g=T6loFg(Dm+=@!-i!I?6}@`Zs7#aTll?L
zVmZO`MtFN|1;L62Dha79Ncoi=`uzqTFi^ulmVs(grG^^e@um3I<bwvPvm0BJt7m5u
z%RdyUX<*R@io(y(8pt-#bhAFnj}dbWw5?;4s0K9l(?G;P+yJXEMTNvf|M2t()pF&t
z^@wG_HqgM}c8!Dq$3Q&;^$onVJ2LM`r0q9R*MMih7Yl)49Rsz6bej<xuPgkv9&vlr
z*%gUw+*YSuG&1vW<RJr%3?vOaA${(y$Cw^AKx}NFiIAp(j~IB=Kr;i68E7Mt<_1~_
zX>FjTfyWK-*xgDbv(H3mVb!X-$B#q?4~vFo^GDiBQ9A?e4c;jcDijbboX_fDg!>HN
zOxV%D_A`-Af+U>{bP?V)CFw>Z!u#kED)cna%fLYchYa*K@D$JR4Gc8U$Kcc7=x3n6
z5#EHaZB6ntbz1){t4yry$@sZd=J~M=o;EPZz<L8444nVI#=0BIGYr?^k!KAIHZa7%
za|Y%Zc!w4Y3^g#>z!U?^RBxDpR}73bFx<ck21XbdX<)R0hZgIlmg%DmJiAnXiN;sz
zFB%xLBsO`m&X-->TJ5|nI%5Q>+`DR4-l|#S47i28R}H+;q3w7Be{66jF#f%)XBO%c
z4V<l(HA(O_L1u5<pY^(dsRn}2yjg6;&3ePYn+B#C$k5s|JDs7G<-ILPGQ&Wf)3LX>
z5cWEQD|$0i@=|ik@oe`0WQ=XiHSn&1PYir&V4i{bj0XdY4ZO#=+UP7W@IL2ad?qz{
z%kf($V;>m!(7@&u`bP#98aT7WJHE&1zRn?8w82}#xLV>ZrMnD%6FiH;&qswX23bz!
zrTPj%l9fVM8TdFQxw%YVEnQ_pD_1-0^JfOuurr&TwFaVlopq_wnU8p1jZSVfuy<i(
z=dRk5$_Ja+9|KzqY&F0v(_RDH7%h_BA-G#`r-5AtZkAP<1};=yKcejs`SqSEYwZ*M
zx!`_=(?aEdAd9{*@Fh2*1d1ha*a#oK`_sT*1{hsO418taYsR*LqXteHIBnot1IM_&
z()E)D_BB#T8YZ>l2ELOlB`1V<FBhu%x%<6=AGpSo8q<TfO)CG$E$(xdM$U*4N`4aZ
zv*1|+=Y*U$aKXSu1D6c^p3=N*;1}Un1gDn_Tfb`Hnt|&nonM7~F(fRyA^bN%-UCm`
zO-5r%)4!R0%fM|8)<)N@$-fQ!V<5kYyG@M0o%OE~VqOz>gyb>Ncx!Uis+=?v=_W`r
zOx*5Yle>M@ay9cw73yc2xGTl^bEbfaf+p^_@qmp&CJLKaYN6+9t%%7NLF1r_LniJq
zQOrbp6G;>Inka4}$An_yJ`*KOR5Ve^4DYWlX@<9bmK9#g4EOocf@K7GM>I^76P@L}
z|I<VT_WWUe$mO)EMZ?=cE1RfdB1@`QWtU7;7tW#wOgxz4)x-j8@g6@mT0`W#9g&==
zriogjK%Sjzs%W}uLNno;2u$cEA|_%c;;B;FkDB=7LPozUY2=0p+eCt;qF@QKIS$8>
z4!a_ueOB>=a}*V|^x7usn0Um*qbBN_sAr;)iHA+pms-?mXrh5|R%DjxA<43CuB5Sv
zCL(EShWEO&2^R5YayH$}L~|1@q`AigIpmfm9yig(L|duV%0z2U2dhYba(hT@XY!Hl
z49as2K4GGRiPud`HPO*TClk+`7;2)ki7qDkn;2lCtBG#nlRhT8i}5E-^ptjc2(rVy
zOgy$re~Q6&KBKpAwo3^U-N?53n&>BU5#IFMSRZKOX-3qAjKL-bNl0*9&zg8fI2EXt
zdv7Z343S2kGqLe<TD3qKW@5OBu_nfuVD<$QqfESLVuaYIWTc5FW%_96C8;~c#Ap*Q
zGrW02{=+)&?<F$5k~<tx9&e&mV|}8D2|`{K{Onu?g_BIYW@56~r_CuQ7F-U)<EY%a
z{Dz4)O)N99+{82!(@o4XG2g@t6K{$AcTBu(Vy5(Vwu#w$GT2F`S-BF)&Jq5-8g_54
ziFc)9Zg1aXb0!vwXWlpQ0Ry8&&VVavAByB7$>!d%%zJLj6iHuXVzG%OCdld4r6zJc
z$wkNP3KJ_$Y%{T)+k%OYO>CfJO?<)@8C@pUnE2GhYBA0SE*N{1Gp#kTPCA(@S#M&@
zi9D3&j%AaH%_g>p0$*s)w3V}2A?Mh|jKrl35{_$!iQOjlnAj<!qhuE&O6Fp(iGAYm
z{Zhoc%0HJZozJ_w4=^CFq>+EIsMHrGzU0ca5V3IB#1RwuE!=J4D-&OvxNPEziEm6C
zHF46!_Z-E!jBibRC&OV^kC`|w9b=a&NykpeGNEUFFmcMn&t~{S{?p=B`uQglKbklr
z)#+YJ=vCgbzWQRuSrg|>oR_G$D79$wf*5CPFkO-&TKmPsRTH<k1Dm*J;yPE8ESz6W
z+>l}ZCVt@TbK4oLrT=c?rpR-Bn;S5Hif{iC>~baTZ$_8O7ZV`O!apYdl^)*VjyExl
zJ2r<y!lu(L<h78`3I~-TSoTsFewh~TlD(Zgcd^h>1uPV_P{u-83zgLLLKccyxYt5q
zD$mX-Vxg!N?&|kg;G|GOzWG8%aSQiZC`IK!VMwrPrV<uPTG)F&V{i9xH>PrF3r}56
zqYf;Tvryea4O+8M!NUC(9<Wf6jauLh@Kr2azmUOEuwrE^Jep8g)xrzsLt%pp8P!Bc
zIiJ2Mr=>qASq6EQg_;&}B+IqQq1Cd&MV&23!dv<k3#t{~F|JwR?m-{s-eDfK5VO#m
zowN|QU|48wp#@D@uq-sR@Q?-DLc&6A3w10wDVx3p*Meu^#fxE_)6Z-u5J!=4qo^x>
z=A72IP)|7J93Z{aK*r0?G_vrpg{BrBv9SJf8YPXzKF8Zc2F@yvTH(TPCf$DWLdL)=
zX^#o7Lx%)POAC)%=xCu6D_UqR4J9qKN%^XsD7O`4{Lp*tEk3f5&L*CawmPI*q@O!m
z=pxbbqzJo8t?m}O3E^1SB2y2^a_#pNmvZdAEc|;RgZ=Mgp|6G4EKIi0&q99-!z>K9
zFu=k<3xg~?BXt>OPfHV><hbxG<rQ+ClXx2}e25_9hjOOpB|9`Fe8Iv93$IuhYhk2?
zQ5IenYcGoNmn@8yu;dtD-JK`5&s<G(<`{`#l5rNsTbL-monYZrsmQ6!brBzzU@fXm
zvcS!U{-0vubqnuUm@6KhYGH<jw=BG2;Z2cDvoKxyKsT}?Lyq{i6w%ZynU0w$&(9Vo
z&k<xN>A-g_%(Jl2!XgXvrC0A;_`t$@78Xcd&U@}g#Lj$Zg=bA4(Vw!5@_5SZVo{?h
zZoErUv(JP6G7HNstgx_B#(0m7RTe(B@Uw-p7Cy1?sf7a;4q8}k;WG=HEo`x{#==@=
zpUK{6VI70h!UoCm2^Sutxw<(ud|)ki)o<dG7s*x&+brz1u*br7@dll+Q>Jx?AhWxK
zJYFD^7WP`$CuaAH@N+Ihu}NepcN^*-;uKgoZs9u%Uvl$jw5#byEga$IZ{ceT-&mlx
z*)ev82fOM;(;0{M#SHEq-*RbZW*(D)Q^;UAVd127>_-cHaQl0ipi>rp5YqE<xQjBK
zmMo|8jChjW_=($>oIahiaGrZF1Kz>~3l}Ziu<)COOH$<*3s<GeWeZnC!WGBmc8wu=
ztj4d>^!5KS`<yS&!tWB;e^~fa6mAMK?Ehi_oXfZ^25-rvQ^>hy`dhN$nI5g#-~lMV
zjWiqSHZpA-k(1#JJ3NigXNP-fUOPO$WyMeA@OPIT?kYS9C*EzNfQ^E7xMvo!QP>W5
z``lBYA~uTJ;kL=5+>oYwi`lr>4o@43+khPg$$gS7VWXswQZ`Bpp$<<Q%GfB&p2$fB
zl}XC62^$q`*z%-gWg8WxKb7q8K}gmjRuRip1#|6Gv+<yfu{OrpsBWW%jW#yg+Q<@}
zxDCTbP2oJ;)UuInBgYO8Pl_GBuqbLnwV~P2B}+-fhH_UX$*qeS#F*60&6>gk8?|j%
z!fnBX4abIShqLL~@a^yjoBPJ0W*0LUvGh_MJ3MYaCi-=4)U#3FMgtoU+h}Z~p~xQ+
z|Kxg=wHn!&BLi<@qp6Ll=Q5hvctmF8QPHG?%1l&a6Le#9u|v|rMoSxyOSYAb)+u@J
zc{ml?iR1;r_BN6>p0Lru#vqY&6zplEmyJ&Jzl|>Zr71(`Aw^u;-E4HX!?l^a>M40r
ziYU1)59ju_(a%PI>e%QbMY(Sn?rVpy8g8Sek13cnz{b;({c&5yK+!q1Ekh}qPK9S|
zJZodHjUgf*ZsR#2Lv0MR@w^RIVMElUefD9+of_m6a&#j^bEM!X!53}3WaGfOjL|m6
z*m#ALWrxojGSulnE`f$xdbXO*eQdl$-7FikZA_55uiBU>WRi^;LfFJ>HYVGcV)K)T
z;aYgZ#+y<!RgnA4G&?+gF-;eR-j~Bug25Lv-V%kk1!oH8%I64w$HrXg08d5UwK31e
z=k$+_`8M9OvC+mR8w+f_&mG&w$2LB&@u7`nHkRA?NE%vXW3i2e!g(UZWzOy`k(gX+
zqub>S1}78c&t3^Xk+Z_aN*fQ!vxmL;o5IQZgr2`yW37#KHa@knnoEPHly>;DZjB&4
z7FNGmW4#?7{kdmukSaXo3;s!)a=OOw%W0c!?6k3qPPVaCO1IhAF8ZuE`kypv?w|ut
z*Pw;nHulKy_lg3~1e(c{dixmX59^#Go@pPjanQyOHcr_%WaA4P-`F^6<4ai)?9vfY
zJ}k&z4U~Mv=sKVAwOHl>@mneS&c+EF$3)0^JT8PkJx+>?=oy~0u+i^Dnc35fG#lr+
zor+7(*!Wpm{E5aJ>)|vN$vMkChikC0eolmJ^rDSRHm=&ZX5+GrE1W4O>-@!VopLz8
zNW^jnW87Z1!O;E9#_u+M6@EjILU!*aw`d!GN+&7FePWLCp)y~$Y}~f-w~c?eT_;d5
zfq&U;8$-93n$Vzjo&?eo;h(?x6G#_Ao|!;Kisu!QFM;4h28-^JY}xeMEAvL~PK5vY
zQb;^pGD<9zK;Z=VXD&HYkpzm04tb5m(R&jpp1`vS45l!F5(zw*K=lMlCc-OJ4<x{=
zf~AC)7AzxJRuF>a1j`Fn5UeOzNwBhD6~U^4_Y2;9A)tL4uO>~bsiW3NAS)66MLsBj
znhDfO;Nb)sCy<>$4lfnHt2InONkC1&Ou$OuR2xl8fd3c7gzI!d0?`Ei`LJ&54Rx6K
zpw_6(Zae{^AvmbKW+(7+Z_QzLbTlEH+4@ssZUSBcFYM0t6BxcVIdf~0JP=83!8!@l
z6+(GEA@v0tBrvT@X$l7}b012e%jjsM1js90)tV&GG=ZlR;j1JbN#M~0`X$gmfo7B>
z&@+Kv2{ccjMFMNKCOag+_p7trmI*wbK&u2M?8&}3Kj^!z4oPdtwn?C^kamLY1(SkL
z2vYOqFO_yzwT=mN;+)>e?kq^sMM&2Kx}_xDh4c`7G66PCwcZIlmB2%Dvil}5wV_2J
z-Pk9A_pg{F%uc<nG#nk}d!z>>V8mTY1}4Ji-NK@hX!~O}XYd)B$FH|0^L}R5NzWOQ
zz;g*apTN)r#wIW>fnjtqryzkB*-8oP61|<k2uAp}B;PJOGJ&$&lFGJZgKf!|65)%`
zr*8}2c|JOU4%?E0w<TXrV2p5PUtv^iOOlMI2NF1)z>f*Mn!v;a*0XK`lM;9>ft3lY
zN?>vVQ`lkxZzQmMTXN^NWW`MT^#m5rOP<@7e3Mhjes0j0vM1Y<(-U|rfwvQ=vOPIN
zFuFZCGl7wr_B#p86*5b3b^>#RG~1qJ>AS)g&}l;EB`{wIi{9hBi_Qlr$%jH%@uQSv
zVFHVUFHT98Fw&&fGInWua=G9NL4GlWl8+PkB!N%49Hjr9<|W^q6+W)}nPk@rF5aG8
zlfb6!$uG7im*uh7(NWuzd|r4Xg$aC-z?bw`sm#p@Y)@cE0$UQ;n!vUM{@R|5?npkm
zBUxleveJ&^&IEQPurGnn8B05oyXoE?$-Ru;n6-zov?EDE$wxbq`x98ZBYE!a<iP|E
z2xs=o9mzupP&m82{r20*!wDQo;A8^dODDfd;Ovg%H;M2~YhSZgKAYrd0(o{Oi|<T+
zE998q@dUo(-nBDXeP{B7Nb2lNw%i$xn%|QCfqMdX(arh;<#PJ%OrA;Lrv&;q=<DET
zHj%*91g^0g37k*hVgi@AHjmY~!1&ymT(C3QsB)Aq^t;UX*_qs6+Q02gUP<5=?wl)=
z-|Y+&$@K(&P2ffXzcE~QCHYa3TDy{UcO`#M;3lJPcXH_X<R1zA$#LyYKIP!A1lsRP
zHg&=WmTx6+JAuEsStU@<!H`|ae-pUFjn_d92YDQ%IVkC%l!J5!84e0NDB>WmgM1F|
zc2K}Urh~f#^GkKwoVY7VJ0wJw7L?LLPIyXB$x10L>fjy+#idFy(YaTU3c1y9wT|8A
zpoA!VzAJe}YL#|S#z7SaRUMRd00$KuR22K=9F%v!K2VuPm^emSsN|rs$eGQR^NINT
z9X#Nmnu7<W7F%H-sL9^aLhgvNq-n!}>7b^AS`M-u<T!{ph&oUls17s-y10=xIbJrA
z+ttk7;V3AHIf#oLX8HJhrQKm4EC;rOIwDUva2)s!0%_NE;7JuK=k}HZXMbv^<g`qA
zU8zesjn^06K(L{Mha5C=@UVl%BH_4lM@MYpfc9CPMjmnSsDozG`Bn~EJ9tcZbHNsZ
z?0-ukkIURK+r~j#k@OI3=b)p5P7c~jHtFCAAstfa?hc*MS+d;(y9iR)m35`G`~Q$U
znc_Vi^h)vG4sxBzN9h^B{T%dn@SKC^9Sm?V(7`hfo^>#HcarZmf7-$D_mYDgtlOPr
z;+qzJo0D^RcXBZGH|Uq>J^Fc1l3$r0>R_0I5e`N=D7Pn^ID1cWxPup%<p(>m!o(`g
z_k;_%`<~=W4n{lp(#2sHFFP3H;1L&(x_HIGSO<5wSX_*AFy6sV2fG|haPX?bb2fa)
z{yUiDV77xfPWaFGYYyIW@V0}=4yJIJ4yJNLFw4wfKwe9G!@-+uD5=kB;Zb=SNB4w2
z-3fnePAU_=3->W4?;B<&i)M<oS!}UJUS^rb%nRl3ICxKr<~rdQU76l>Fi-e=kyEF|
zes6(;_ZijYvIaey*|Ksb$wv+r(sd5jJ6Pmku_&)}u*AVq2g@8R7fF>tVJpNH4i2Vg
zkQ2iT5j`_kIrvy~K5_7=gVhce<S)%4zDbyBB%e80!zdk+T<e4%lw{&tf;TwWD7CgZ
z*d%0&;ATO-zn68HwmSHwv!2VhJJ=zm%(m#D?{=`q;Y;#y%)wp<`{+Oihq)W1bPfpF
z@8D%|(Lo1?9DE_dT%;X-I`&9P{~IA+Irusy+1^4wD!f~VQdB<f;5!GuIr!bd2?r+~
zoON){!S@b+aPXspGopOT!D%6%3=3!TSi7+Q@7^d&Wco>perB(Z)!^ql&pWu_;F<_o
zdeOlp@i5;T%q;OTmvDO46~SKwuX1O&I}e4|9sDX4`907ZDbl7w*vd@@e{$P*@JGrr
zXZ)6f+YbH_$^A~L7ZzkP{VmzzRWieA<-9*0_BPE$x{E9qHC<%5$m^nni;`{_$@yFq
zaZ%Jori;5=<acqm$P2nCAmmj4jF*Ro(ZU`Ua#7gj-F@wtJ=x|z^LUSodquODAd6b}
zEK}UYeJ;LA&tL%L+9~Ctw2P`KoiZ-UyQtuztP6;6OtCWMQl%X#hoi3OqLPcsE+YLT
zT;2b~YW1sWEDgV`>f!+x)l#*pyLeFegM$nz)NsK>(xQo8%SE<}+Aiw2$Z?^F+!a(^
z=xoA;CRyq??W{*##9YKv60b|x0cCrp;ldOlKZDC;(UTcjwn!2#exB<&BB8P;LSHZt
z93hckS2z_KxTu%n^@T868VY&HMI#pvyJ+m9iHoKpthqnNTGNi#AX(5QbUv|}i^p8N
z=3=so<}O;ec-rMHC}`>8ajEr`U@I4$U378L+C>`|ZC$i;@q~*GQrg}{(#5Y8vY2SL
zLZ{GpM;A<;M1k1{2I@>CT}9H(MRzvzZ0MFABI)U(myjnpt>r^Iy<IR(?pvn6EVs&M
zBNX;=(bq*k(d_SHfDp>Lpa%YzSIBzC#j`F(bE9@K*u@Yj8tLLWAwyjZ6Y{*o7^@F=
z@q&vHBK*5k*efP}&OUcL9p&OhDSF98?o_gfi8^CMK0)vm7h`z{aKWPSBFWVWUzwhk
z^{R`BE+$E0wuH>)6j5V#wu{$YOm*>wNM@wuZwi^_VtPt4rK|pyi?>}I+nPC3gtLUx
z2opOz$HhA$pDVaW@Ld=4T+Dazo{I%8HjD6m7azD-=3=>v4_$oZVzG;bUG*>tS;SS`
zRUh8B3?=uRC`(-8f*n}uV(ENu<euaT7b{(S=3<SD@A_v@d6kQgU3|i&)KzEtRLJRT
zX{&`y?4y6!N1wSTxz@!x7wcV+FM6{525tgny-k7}1u3NDlRe3Udy-qEw_9ColcMb|
zcDcw^*x_QQ2&qg7>+WXjdy+%ChQYSi#XhM^{<(|&!Vd@@Ovw+q_(FK@WF28hxOmmW
zL=RuP_=ZvH;TaD{U3}}}ArFl_925N;DGSFrcHt*noOJQM@E={Aaq)xjQ-Y@jFa4{q
zGe2>$yEy0KJU4`v`dK%8OZ@$>csB+m|7jog{DO-sE`D)wQEGM0$hzd>vT&|1ZW?b4
zFs{0|=HfbIW`M!%bkEuU98-Q3H3sT$E`Aq&Q?R~=KV1Cj;x8AsxbJy*(8FyPf4j)%
zA=AS@Tya-x6gUvOLw(`zcGsu$%FN>-%|p6}3=h}tE0fp5*zWpIU3GGvTAbRGWQXta
zkl#aD5AblehXNk%^-$bHK@WvI6!CCRM?G69lYd)gVGlKwGH+DOI?z!sO1TG;UDfjz
z6T*{_Tj^Q%dAPMFS<*u(4<$rSo$;@Dr9C97=Pe@=o(r*E>TlbgS<XXw4-a^tA71~a
zOa%{BJXG~i(L*H<JUyuFh37fF^Jeg?_uPoMQ_&zR-tXaJQt#7FZ#UK}*;lX5zIm`c
zRL+}~<)Nk*I>hi$i`6}-9yAX*9?pIeJANUi2)S~l?B4$22L*HwbXUYf)C0eB&5wXL
zXq@~ssnbGC?8H4x>eBw3OYJE!Jy;@S6=oA291r|Bg6qNe5P0Ar%oDs?&}&n$bZrlH
z==@5V{9n3wR^GZE>e0h{lWRKbOwadd-@pqGRZI;%O#LF<>X{z)(9*->9vY`gn+Rzt
z_=tx`g*5Z<n2_f5l^1??yi(ina|TT0w9`sT2MD$nY~!J=hjt#?dq{fd?4gT?Cn&6#
z#o=`D@IzK6c}J0ubfVewv4ZDfT|IR3(8ohx58XZV@X*TxOP@?>HgQT(zo%rW-`m4e
zQkTM9JCv}AexlHy0d_9-Lf#DGK<OBJ`?QcPXUab7VX*L5JPb*dz9i&1!RI{;6*5e4
zxZn$3c#6d|LdZzLQ664Q$;<c894(q`>tzpPg!4Ry*|914I1l56PY}%M93E39dAt!6
z1p^cc!pWM<QTyoWV~U5@Icpx?@KC`=MIUc^nC9U<4-35Tq-DB?w>-S<Vb0*p86Nl%
zc2;MLGd;{@)Onc2_{p0!Tjp+#hf)19KRXnA#{-eUFi-jr$kBPe7oKWn?@jV+_3wN5
zz{7bD7d(9E;Uf<_JnZza(8D4RYdx&<u-L;A534+U?4jY_<WdhSxJKIO%RKCBt1tI(
z>T$i>-Xw9|32P-MtA*aXuTK1gOSM<#YLR^EVRV1vi=#27&pfR0uw}YaKGB}p^&U2O
z*ydrohm9Uzv5PIz!_9&RGO`-pNoR*AZx25rztuy&3R!K^!`~6V77IT+^2p@OT^@FG
zPxf%!!yXTNJsk4z1-mDs-p{?l3x8;Q?x9>u{q@sM(}Bi-1(^pKMKhe8t#sm-9u9N2
z_wWt-)>%Ko^`6vOh4#OqLt5$l0dmyCb9<BD%5X-ViZyE;j&XGPvfp_);o-E0AG!H>
z_};^>{W4Cm8<`nYpoJf#%JjY&Tup5EjEA4NZ^-Ca`ZL}8ekRWlwpR>K3C@YU&LHCt
zWL@-d$-`Yf^82{#;fjYFoL{cBjI4PBGk@`L)x-7H`Zb~#9z<6EmNvV!{wtfl80%F&
ztNfE?e)n*b8!0z=?xGo4e=v$p#Y#L`=1<A~<za+wB@V_|^fxzuZt_0T{V+WK^-#1&
z`#i$$NS8RA2_3^J$ncTZ4}Fr)N5Q#X)e2e94=}h`GX3yVGRzY1_QUWlBUpfHKECds
zS;)sdK8pD$?4yWS<^h)mi~4x~Y>cOT_xdRAqofbIf?NHj<JNsXO88jWQ7_v~pSCyo
zTcxa0Qc8u=G<z;KriEA5M+L4-YIfF{%K0eoBj?5T<ituoD*JfIM<X9qd{p%j_hCrK
z?)Op6$Adl|kSyn&KP`DUtL|gz-efHwHGIr2=w<ogFX)<rO|I7XV7ik{`#uyOs*k9T
z&m*NYAKx6S!PMT!B<emQDaq;<9wjlKH_2!6pvkpt`mlW1KB^yz4f!F)!$iVI9Upal
zI6hn-9{t1bKl%uKFl>0BtSzJCo=oM<dy^bmJv#GR_&u8XJ`Nv>l^l@yX+f`nkA^;|
zLq6^K%!hq6_R-BpcOOlBH1*M0M#|0e5g#plwDiM`^idzpeDFB+m|$~3W{*|QeB4JX
zA5Zw<uHM=Y50vdVmHT6Dgtrx>@VnApdyyvvsnBYK*TKip^RbSCo&0d~XQHHw^r5Q{
zj%$k<o(2?C$}n1b&_z52P0t!%A*+|@tn{&pJrw?wk3K^B`WWkDobY}=`uiB*W1x?x
zeGKz4+{Yjv&-fVP<2gS(;y=r^^LrWz(_oR5m|W(08Te2c*Wt&?@JdVM8gKfo@q&*L
zK3<f$?%li0NI(2h)8%H`D4&1$mW@@)Vi3OMV>F|e5>b1_$MdgvJSC&%vAsz~$UE24
z#`~DyW2TQ;K3{H}e3d)AkJo)n^f8Iu8<6>$;ABRAzi<i6%*^0|no6I@x|kvOCR<Nt
zPA}_GVHzXB2ftXvje_4%ddmkl#<xZ7cK$r&ucpoRF~`SyJ{I_R$H!bLn&;zP236jy
z&ZEjyFA!dYsggI(d`3lk{YalA@qHg3_*mp)G4;!5eduGMk2CYVk0eX|VKwsp-cGOb
zg13Z`nVz-G$8sOMg0a-cw(@03@;#SHx2*6nxs!hE_cS7>@?$Oy`Em4#Ow*@6R{QwO
z#~L4}e4O^N*2g*@hkShDW4(_J+)sS$k|ndz$7UZ}e4IemCLiOw=p<Wx)U2GvGoKx7
zmpg!u+HG_mgD7OQ^X!P<7u)S)4;Q14{XX`}@b_`0ch2O=QnjqSytlEzopi?P<wLQb
z7i1pranMJH^bGD-$;^x|xrn%MI5Zzee0=32(bD^dk=9-3_V_ik2V>mKiAU+KXuAWq
z^75z9aUb9L_(9g@2_Glv%%({$c5WB^(AD=oGM)%~NGx{3>r*!KNBY*sZ6AO8_{qo5
zKCbz=?&GYFb6iS3F8Mgm&R>jO;8HzagG+;))}GuS<6QiCJMU#5SLoY}tY2jLUzLzx
zJa8-E{?Ak2Uw!=U<ED=rT#3iao<HXOCZT?FZ!$YG;}1rok6S+e6#sBU^j^_@Np_M)
zXOe$7U)<gU<O^`eN1g!b0oZvOPYV!E^Z<iCWR_>A89{iCI>E@y3~*NvZh-muF4MMQ
zDbs`dl6MCvz!#hztHIyqbl0G14r8Nmfae1Y4NxRN(E#_ziBN69VuJSuC@$o_03`#I
z5?&&}R|E9Zt@P3X$^=jXr~%3bK!E!LJP@E<fbs#V1n9ai$xB`p0#pjZIA_pS3{Zbx
zl1KB(R8G(06)hgkvwF0z8eoFbp1%`$Nu*kU8UeBbJQ$!ldv&b_4@o@kOwVf1lMU+E
z4EQBhWC!6Y$PpY|F^dgNKM;PZObeg~DA7vy14IHu10(_rIva}xNOshX0A_%AfMbJ_
zJa$u(>o?A<6~GR{;|q5Wq9e7&H}~8CL{E@E5P|^bkA^YOzhh>d0CfY@6Sq7kSU*66
z01X2?#2E?DF+igL4+nTWKr1>SK$8HE1b8$+&)w~LtY@4wrT*=_Jp1B#LbCvm1!x}N
zrwSgkEdnrlTLu`lKlaDZWx3Eu>W%SQ2jRhjsa+8M$Z8|mwu1ao)1D(0zdaG)=}!98
zX%2ljF+HnOfX)H>1n3)}3uh-l_W(VD@PIP6b9;`cTYxv(=mo1~es*`BCj<1N!64k+
zdQ#`O#Xy?hFT989%Ufli3NRuwgWm2JpnrhDL3sW-KpK6TeiJf~v(Q;T-AQj)F6)^9
z&vH8Qm;Uv*#aUyh^NJr^9Kx}e%i@)a@Cs*I)-dtmNI_<Y2mH`^c=j?vF!$0Wv!epM
zn9_MERWv5RD*@hYifK(THo&+5yXs?ieT-*l1^A;b{;Z2v156CCqz;zW!K47M1*lpF
z_t(MX08;|oT?Yl~;Pn7g1FWo#RkiU3<EKfzhkh|u({g}m0j39-!G%yVXGws!0=ymY
zo9}ohz{~(^rsWx4&{#6}o>>8|UC5eE&#bFi`KOxvF8SO5?*>@Fh45OQc>(4J7+bt1
zKkf8h5Pp&8ixmnV-kCTneAUDI0X_)uVStYUEM(XWNH8r}YZECXE()+%2!)60w^}Nl
zSr%Y<fEB_&7F-!%RlqMz<m{f5XY-^y>@d?OQuL`b%Is(CbAYu0)^QQlhF2Tw18fNJ
zdw`n(HU`)f;QIhS1lSy4OMpWGz6h{2z_tLp1MK1QoSCydz)r6EIYsL3P3+)u*qivc
ziL#5U`@<p|hc&o9E@v-eBfx$J5@WupvgWe!d4TH^a>h=`iElR#258aKW*V_C=~m7m
z`7*%a0N-+ja>e~0roIH+rYd|N_Zl)pnZ23EdpYAi_qro@?|t@}_uhv@I8h;UDncO&
znJH6-B8ft!GD|`tnWu!1sWQ(h4gT->{O<4nd!F^Y&%3_$t#5tnTi;seoPEyOyHCzR
zo;C$I%n=`t?C6v8->ZQinZP;zBRomAWTiB6ke7Th=i$<hV+Ht`TX?LqVmxx38L~C2
zN_NZAYnq=Zz^%J>_<HkS3UHdIVgY_Dz?lM^<#K#zG+5J|`sX<D-Z|%q=UcMsywQB|
z*Y@uPxKMzr1-Mp#i`>5xoR<o4ndj2kmM3aEXIyRGWNX$HhGmTNz~$zSdXDP__+@>$
zn;ec4WP1FNcsS}hX-94s;8?$$E1gmo^vLN`D{EeT#~%gwvjDYJ)K>9V0q!yPRFqcn
zcLDz4>ZmBL;$J3q0g9?9rs949im3R0eL0TBfj0HZnafMyFXq&%>vU(g>^?M*qGIK>
z<|HLl%nr6Isp5@E&cWYgwd(FDr6Tcu?$S<q#4;+%s;H!*vWjvl9#-*)ibqv^Q^#3e
zMFkb>HfNES-I2>jM15S>LAU2_&!wG;Dn700c<*}iDk`d~sG$NX(stxlQ}OD_-0CWN
z!%?ecmJ5ype50qLriv#=1Q`5BzR7xcYu4p?2IF5xMO_t66)qL^RMc0|SVa>R4OBGG
zkCf||lk-UBhAJAV_-RPs*NM)@t;pDNjx-hNDi+sqI_U7$tfnfOarDEvwEWgM=NEji
z-{IU*J#viMPPYn=iYyh`D!eK##9R7QWT^OcOO~SYKMO6V_J}r^;LKEE*2rzH^3#3R
z_~&zWf0-5I&q!4ai@9=D4C$RyX>(TBu8zUAop~zWA0AjZGtyE;fr{ZOMyOC#Xeypj
z@vI76g<nN$6_2YhR0LGSXk0~5MMy=2GlhdeXqDr?li~`ieA=~xBr0-Wj(<qW+{#@Y
zmWsHFRw_R3;;>a5zuA27wp=17#aS;X=V+ti2^Af=jw;%!Xs4n*r?b8stv#uNo8s3#
zIYq8FKYBao%RV_BR9vm*s5T_<l!{KXot;(8ZQ{7|a?4H(NZ$yziTOkB(;Tj6PG--X
zE-JdJ7^q^9if$^NQ_)97UlrXMxAD%ezRT^UqKAr}Dh9k9VHcXJ{BO>fvCiHq-s_np
z&#UOC;w2URnQ|}WyrAMm6{j|3-P@E^?@IH_mz$rN5{a9x0V-Z*IgvY}Z_dQk?TA{h
zoWUwyQSt5Yz-!DRx-rf<M8!}QNB(Pew^xpHn5*qXC(ndo^k<Bd`TWOhXJ}aJ>l}zD
zvx?~|MyeR4Vv>r<Dn_e#lS8a8H;y5i+j{K}3GT`<D#ohd67TyV!Dx(EF+s&4`oObp
zjI;05b}Zo=&6$2vRJ^U?_a72m`nQ;Ye>J0UDpz?@a_C*%A~RIX<O-@-sNx+JvsBDe
zF`wH_#T;g4X~(+^wF+()mOCeMA8efW*yWcBCG||}k7n<yc<M^?1u8z-k(*L4x7^MI
z=iYc{;zJdSR4k*MdCq9}$oW{s5)~gY!PeQ_bd-$h?%3WScPZDatAmL_{;7)3RD3Qg
z)xWM|IWur)qI18Tp0ypVh6SEp9hr6`&PVtDe$lb#ymtl92NkPStX8px5#|KBf=AQV
zs@S07YZZ6X(%13WS>s*L$f)SNGqL|}$AkT=ZxrDcE|chdqhgbg&4P2Y(r-G`x2pI~
z#V*E~5pbn%V@|60LB)0+Sxk(YEe3hh<4x1qv@*K|hgh_@#ZFFnaf=j3`W_W~RTSCV
z;;_mm#i#G%DvYdgK=^(h5#FTzgIqEhuKOVGyPovY1HJV2N9je$Q5DBjTvKtKdq>63
zD$c5y@_il$I>A&Fwe<A#lRQS!(<%H#B&SuJk*VD&NdNZZ7Ifg8it{`xRQ#smqKZr0
z>E86;nO%!pT#zoTlGDOvZrHUgu2RRHenoik^<GLAInzIEmVSfI^TcKs4YyR>R`Dkf
zc@>Q39nL}qEpj4*)jxz!c(_GFSNc63M@`fJ;jzzG0ZybKec;YS@22Vh$;26iS$kWo
zZ`Fb$7S)o=#8OH_F%2mi&VSV6sZkwMDc4X!LrD!QSF|`&t2!t3>GBNEm&w^tf9mJn
zG8)QisHY`wK=kDX$Jwo}&YK<OG(4=KyoL%I9??)sLv2<!JN#MhM>RZo!`=3PqoRgN
z8hD4;%7Rq{S*@y}S|P8lp++HxhR1~06r6Ik43+C>=sVX@SL1_;)iZZp#7U1jqq`ih
zj7rd-h8h}acuqri4UIK4(a=>xH*qyhOXjLuL%N26vs0UDd<&h~Owgg>{WZ;<f-b=~
zUP`6Jqrs~|(csfyYlv&e(7+e90u668c4TVFqqw<-EDhNjax~;?Xu+{|CUP}QZ{*4o
zg?p78oiZZST)Hz+c4&kT25zZg&(<swl_6T0rD@PL_%#?BA{wF^0wNCyzL(lIDAuSM
z7RlLkSH%WSR%3LYYcVupYM_MW`<jli*%5YWrJ=QkXEoGW?0j598x8Ha3L2cPo6YX)
z+PO3F1fvvd)|NgaFe}!KZyMWc=%k^uh7KA!YM8dYX+rQRjZYbivf8mpnE14Y@GHhM
zTJoWy&jeD456Hy!mAYt{*ueSOfg<O3ChTIa2G11~Y;g3@&{M-04P!O*($JglliPXN
zg})r@qv1^ryy-_@E%`&T=LP#|c!A39<bSAN6v;~(`U@GLVW^NM`JR`#xcQ!ew6NSU
zNcdn4uLz<1RUtz--veG&hiTY-$Mu?q;TlGW1sZ={gKO~rJeB4R4I@Q9N^rE`hO5bc
zEv2eO=;1%59pf~ttLRAGl^CyKf`*oZ+!OgeU&B=4lQf*X<DJZvI_;Yx{4J4FIE_N)
zo`!iEW@wnHVYY@j8s6a^8R0HH$u~>G!nB;pf8-r+l$U?nw{V+&tX#%i4eMXZFFMHm
zF1x4aOr7bN&&<^D5i?N30uA?2YLSM;%rSP?@S%p&1KlhKL-|il%O|;$$jGRZH~X?<
zUpRko&EiX#U^^YlG%V%bX_)a$@r;if7wlN(;B(JE)3BVw>G(>==Ni7y@Q{wuI=<Af
zf^*SuO2ek*j_E5MJzvOKsbQ6d)eMn_wHkIYwu}tBYuL`k{i|Bj>&~w<eAg$HWCQob
zGUwNV8wI}+q;Qjl&BC_`ep@Kt%D#nsn~=wLCBD}{Yb-m2{2;hfgL_wk!aW-HYB;3f
zu;}m8a6rRB4f~}^PdMB+;t!G4A2l2i3lF^gNyE{NImd~Gqa4%lK>z1LPfiG-T2rOz
zFWft~T)#8m8qR3A{ZR6GsVrx;<c-?S37!}HRq!{#JylCy&~Q=1B@LG~{H@_14OcW=
zr3DRlG<@B~cTK|$4LkZN*LesO<X3yv*R5jvoBTxCS9!aKa!W|j-_+mkJAV2&|E`8V
zH2g`;7Zu)b@Gl`nw>a);cz$L6`purc4fFoh@E;GW%!1-N?lbF<S5!wa9Yu6Bd|qMU
zUER%4M)$?}p<YUgj#M2to8)v4WjI3_UHT{`bd=Pg_Ek!W{yWbr&pcJEjE=H;G6HLK
z%ujWf)3Hd$VjU0bD6gY}jz@I#*3n1DqdF?;FmwcTRMJsdM^hcmbX3t%RYzSN^>kFz
zQC&wZ9kq4T&;cEf>8MGARtEn;(63d-_YHj7u0*x$JeKDg`s(PQ<bLancb54mA+N9V
z?`(OEbTrn{KscKk>abV&4k~#~bfoD>*U@sB?;|6F5+b{^Jh?03(BagPqa#;`ONU!W
zhK@`f9vxmCiVmNSZuNaMh(_%>ihpU6Q$i!Xm-(9O$kLImgF+71e^;X3D&NaXlkVl|
z$k$Q8=rJ10d@aO*mcmD@P8y*<8Y8gEr|a<Rn7Av^K{^g@=r6U(_nVaw)DhCrUPlKV
zVI2`2aUHF6M0Nb5<XJjqX6EfUkQ&qR!LEeK>k?W{vsM|D*gBqcwf`hD@A^_-YaMNL
zJfY)p9jvn4UgT>_Q{}3*qneIc4U)n!b_NNXh#hq#bads!bv&h`la6O}JgeiUrM}LB
zPYZ4}GuVs5E<7|E_+DRFjNKmypVQG@M^7D;^pN%9!j;R)+sHXK@b%KMvA&Ol!oE75
z*D+N`#|6%QI$qE*T*n9<FUsr&=@_izB^~{B(DDEsFY6en<HtoljyU9;LZky6<rN*T
z>KMl5voeP0IJPS>R4lCVw5I|?!Qha;CZ02Huj_b2$9M)!$4DKcbd1q4R+5LoAFbm}
zhHF=Xi_R)@W*oDK+2~I$Iwi!3Iwt9OOS&*IChM5OmEw(+8@0dGI;lqC+d7yhWp^i-
zHq&%W*D-@$>3IJ^mNNJ{-qrD*j@hC)N5|a%)1|@g1QRKHcVeC-*nEj3&C=$`2FZ9X
z;L_{74NKla9UlsL5Lil*YC1mV87^BjZJ&Dyr?AhxOmHbPs<lUH?4#rp9iNKuGr{Ft
zO>R<mvFx%Xz7Pp-L`Jn0VrQk`D#6u)*E6%n|EpZQ?_R58o&NvtX}Lki*E$aAILzhN
z@eQ5Vu|r3%!JbV#G5iI*>C^g2iOo8QTLi!5Dhv6JnNTc$n~t`{^0(_~SGV}LJr#3z
z@|JohYI=Uqlh23U$phzN`YyrUf_nt_>e#1azmED<;s-@?K)B<tmXxqdjepDksN;x^
zOI)%siJ$c3?Wan=6`gS|{iu%18(hb99M|!)juSf0i^Tlbds4?~9t&$czSEvlI)2e{
zb-OF&9Z%((4hqlcI4iB^1g|f5H9X+{RmZuCzTX6Y7rY>NQOBCa4i>gv*70k7*A-gR
zag8ab;|{a&mkKv{4s-i(1$j%f8_juH>F#jXEhhF@CrRpocH5>#*mPG1t8D#C$332M
z2AUf9o99C^!dUFbzdHWoPV}RfANP6e`{DG%<xft$s6To8wTJvD=EpCOWuyoW{K=i_
zM{(g4mhhvb@KS<&mq=l0Kg#$~){k<2)bXRP9}oL+@}}c0K7iAYRv}M$Kjz)dtswY_
zACC&5q@o{{gje>XiXT;lpRQDzO)S;?*s?9Zx*s(}9=n)FVXHR2$Nb2i@2Dw5)bgXY
zRI7LL^xB=M=f{pyt|pw_?nHe*8u-!B54zDvB<w|geX^sm9}CJm>0z4ar~A>=k2lLZ
zn~5n}81%W~@Pju0;FEs+C{fhIyG7l2!tL?H>xbfp&kx&=xE~pQWcuOv!|<cyL`QQ!
zvS`GQ%QNy{TIc4o19JRm;YUk9a{Z`w+mq)<K4V@sd&D3|x9#p7DIV$+_@U9-Ew?I2
za?I-`>Qa63f;-^H4{NK&{P;fP4f+xCBV4E%@#Eq~AC;pbp=I)A!`-GIM2ivV;C`)?
zx0N5Q{dmTYXZ?8Gk2Zd^^W#ZB%Kzzj!jC^{dZ^r1s_REO_D^)Q_oIU!Px;YF%y#tS
zoj=?Oc6mgj{d*nqsngjHPT^@ku8eZ8Qj!zll*zmJ(bbQiZ@L%XtkO-o)9oI9Jm*LK
zAKWb6#jEdE7SMAx_4cEWAAS9J-k;ohV-LDgmMSwZr}bkbt0(W^J=%{K{CLrim;C7O
z$6%`YF}Hf|0FKfq^JPC+2Ku2t=BUudPaGt?*yiT1`Y}ZK2tU{~)Q{KvSpHPr`gdCo
z6A1~c!<hgVn~|{Z>wdf;T}F!L7mFgJM04r8_M3i;@nftX<NTP(fY9f+9pn9&>__K)
zj-R%8CipQ?gp^MbvZAeL3Nz4;xBZwZl41Y3rui}YS@#pI+|xxuKEsc{*Es6`;UUiQ
zW46c__%Vlp`qEYMzH6RH<_f;+$9qCJ%2Cb3*7@9(_g(M%@z1NCF5fvmkk*BTIv)zT
zQP=a4A0PX1f*Z$=C4MYrhWPP`?0Oy@8wO?YVE@#g{N(jezUR1~kCn%AKR);43+_Ze
zzV+ivKUVm$!H=)~Sn0<qKPLR)J$&2Sse@;=AM3ds9hEhHtmQdy+PlsVetyaQC8@yb
zSJFyN>TG1n&D1LuRW=LxMsSn#qMYR?BY&$O-}$k}kG+0u^MgiqFdI8~{_d!3XSg~l
z-wRg!EAIzs-6=@5T|#yf=QwWM_3rayzaK~Z_{on0ejN1UN3p|E-nvr!{wePvo`k2o
zhsB2^x$WInt=z0K-lKjT6CwEnuh!i5uH5MTnWt7MAIT}6fqtYKC~lz0uU@l<`!qAZ
zk>g%%=NUiF`f<*W^M3s5$2C8$`|+C}zx#2Oq-BxOcbylwbGa#E&3dg59(>t(iH8Q4
z<3O_-B`RO><IaI*D5GSjHM7e!zfdyydHjYSH~qN9B`}+HtKz&(9Y5|d2!4#(ow&={
zT}c0v4okJ!<fat<MSa^rdB#(%|KZ{9M-c->4gAORYGyN*`$9(k()8%A(7V4hy%u&A
zGw@BVtP}&sYzM3C+qZOhcq7-uxkd>CB@L7^@Q{H@1}YmUZJ>;Sat0peH)6jvtMFHg
zvO+HDk^1Sb@&+nMwW8o71|Bu=%)dE%>bqw8T+}D$Cuou?2C5opKvRt!)eKZOP|HAV
z18r(M*1Q;~VE_gmGq9$Hqo#pfpBW@mw>F=<+&EjqaWK<W#{dbH`wwYZ*8s7eV0{Ds
z)_46~&)LvGBhh)SzO%86(nOHeGy^poIY^ora2ObAV3Yx;0hfX240Jc(HsCSP!az#{
zm#;a!267BO4Be#|@EJG}Z<%4>pWTW6x0+=dSXU~yxq&6S6Ilj6D3!ZocOu)sgi^U@
zb|<c%X_;#v&j1OxTfUKeDgWtq1zt%gF!0;G799+z1~db@G=&U=4fusq(=hPmrse?y
zK_R32MmnF%jTnd;Xl>we12F@g+c{`0Zoo8P8L$o1Ywvisy`xD-N4a{L<gE-oKQ!~}
z3dw34X{F^S4Lo6>t%3T9yt;c5)f+q7aS0kbdeq5m&sjW{yE`-UUOUH_>W+?_xPhk(
zkasfhtbr~Z)WFjsdFKBhFI?a4m($fiHxW|*e_MMP=xN{;1FstB#mp(~=xgA41HBC}
z&H4ytztWPtpMe(`^M;N=243VG6ONa-tU?yXvIYp5T-QPQ-={NQHZV}axOkt<V6xX>
zgEup2R=t*Eh=IN1TE5OVLYsU;4Gc5znt@J}Te1un^2L@c@)6=p<%SN%<P8J&(<+mU
zHt?o_O$Ih|A_m49_{zWr1G{6MaZJlP>RSfJbBPU1G|+rcf@P9{VmllU_+$f93g!I6
z_1gxf8mQ<^on~OVff)vW*WI2MA!izR$G{>3i;d(p^H~OF8<@kGG)-UFss%67&NZ-r
zE_G@Du7USNXP$xi2HxkYdDGeDi9HG81M-0=EHv<;5cb;GEWNiVd}QD=1Iw9I(zL|D
zQUl9`kKU8`)W9bOcu{?P%@&uMrBkx5SAzJtfz=G=fEHgc_YABM{gnpT#LLSo>$D(Q
zB~?y`e2sy%Qe9_Yy^z;GO6vSLum!(3c;Z)u*Ji&qa3|p0$kWC^hY^*?@2^VPV&Gc?
zTMc~2$<A>7*G~Q9n(N&?iR+Je*Y8OTIFjG_pyPW3I~cAAW<~IWft>~-VMN2&#YLg>
z0kjHW4_BP0O#l@G*k@qBfu9T<HE_Vdp*;z{!RE8!4jP!0+4PVg$zcOO@>naXupBWk
zv#68gm;pL`lPAvr$8je7SohD|@<L7;xFUqYQwDx9a9XNo3|ta&R`6V*&UqofGDQm|
zzYDn_c#-RJ&OuX`rOMNu{HpM4f~;OQa6|aOk6W<Ho8R6taGMdn<+>wy*Ff4J2g@G@
z{uKU~fqMo%+V1(=z}qi7iU#nHR4MtFuL8pF3l6U4EfT<@{tBCl1(M1vDFLJkFCIXN
z07?c>Du8kUJS@V80w@zm8mDII0G@v}Ny-LLV?fdf@7Gbj&`t#*6h0C_t^Nwt&J@qD
z6hP$w>;US|D#GQc5=dV7tsVe*)c~pqA@_Wx)(8LrJQhIB02~20X(WK!0W=JtQ2=!U
zs2jk=ChjYH68ncZGVVFZ>xra(01X1T^o^UP<_O2>H$064Xc9nLfENan`suVe!f|ev
zqnVJVf|RfP(lc_5+ZBL2faU>Y1wi4wIc`q?-T;&UX5VvUh-F^@O<!`Cb-B9+JeeXn
z=5@1sws3mFp>qPr4Iob>Y5-aQ`NCTWwiGN7q_Q1OcG0C83BWJJ5Ddtqf&qjA2n(ks
z?*vPvdr{Ge37X=tC7i9%^3Ef>9ADn_whrKNu5tj2185V#69M!Jpm!koJqWMBw+%q8
z=WG|ilL533B(LYom3(v%-cc|Sz*7Nq3ZQcUPm82_{UQ%ENdgm-{Mi7y1kkn6LiYf=
z34g9oGOtf+58*upZ}zOpUVQ?5j+lG<R7ZooiM~vy0Qv>+LI9Hkm=ZwihtgjRpnm`Z
z0(gn*GO+!saQjJH@?H*LU;uA27563v1u!^(*M+|#Na1S%yefQ%;Lreui8VH{46D~-
zxX4Ecx{hTOsn>$?H>5gJaFpQa0LIVvvS~~JV?{D9fQdqSE%lBUG9iFZ>n6L?+ercZ
z``Q2Sx0o<8=-UCDnD3n$z%-e{^Z;fCaC^RYhE#u^=jFWK31C(LC%5ONR!C=4+N0@n
z0+<`XyV94E54c_d%nM+?4EnxUX#Gli_1nA!GD@b^f)iON@(%^s%Tc$*M*)1y?G{9X
zAeIEMG=Lu|>Ec)xz$XEG6~G4iAHb-Wihmx!7Xf@0z;e3UTHR8|Q$JVZ-5&i{9bX2p
zI)F7y!uK320$3@8e3cOQCGXk*hFo#;i@Ehe*3tRxjt3I9ejUKZ0QLuPAb@WI*c8Ba
zZu|f?2e2i;yVK--o}2e=09%D`3*fawsT(?GQ2reqJCyo&Zr+BfRaxB;zz;m<1E@Z^
zU?)8nom~NB?@fHT$hTX%lf)ZTrNUlO+b2lj!2k{gKyo;M^>wQbJCsU;H2!VXs<eM3
zfS&?58o;pt9tq;nAdWLj1NfVVCl8_=?}-4;1#q5gB-K*^{1U)v;cPt<!1OO&BxegH
z!6A-c1Nbd~8v)!D;qTm-0bCB?f>bXSYC3;*u;Y~gt_E<8n`nrmb$NIBJU)Bgd!5Nv
z+|9CSz2jD){-0dj0AEINH-ORAJ&Oz6)Fk<Xi4pUV{3V+A3ibI}@?YT(2hpUZ=f42%
z^Oy~yXfQdi(m@mpA|;5DQcV>sAy`~+0KcBk;WNd(yI*y5yzeR%M7Ox|P!KP#b&ybA
zCWx{@loRDLN8P<XO?p1?zN>tYH-~Xm2;y*?Vy{$6I@wNjR}7+35N*~vDhE+5i0aa-
zieOd2t0~?ZL3k#)YX?y$h`VpPA=Sr%s2NPY0jnj*fRLa3+g)X?gF1DC*bw#93no7}
zlQay1_mFo5;SQov5REzUAig{5a|)8A1(6=atp*wVf~;vU`IT9-ARI!-t-T5AOgZZF
z1mO)LGl=FvC_(V^nlFe9A$(Q{t0e|HpX%pKD{Ev0k<F$MGDFA-A~%TcLG%bBFNpkL
z@}zAOM2jF=2BAuol7b*c&UKSa_^&!q6S-d4>K9@J5eOp4SroWJL0Cc9L4<=?_lYwi
z7!`~KVG1d++QGusco40EXdT4kV(0z0Jrr^j65{5ORf$go(Kd*7g(E&4#FIg^52Axe
zItz9bOb9+D*h!GxX`F@RnL^34L39z`Rj`}jbAr6cK+T>(^a|pwAl?q5cQE;TMV28!
z^r6n`B7K8+J_u^|3xc;F?=SoXwz|u|7{p5=T)Vpjn+7obL{82!P?`n_4i<bx@Kr%}
z9~#84AYPLZ-wa|*5W|I!5PV(m4Z)FuqXb6_maSd#fuFo39n07t#sx86nkED>S;#~|
zs!bBYxlAdPkWUR_S`gm{u_K7-%*-G@4dSyPW(M(25Q~Cf0?Y~~Z#+0R2o6!Rc=~K+
zd-3!+BJ8<0@h;;N#5{@Q2SF?hVtx?sOEp@q*n&dB2(x@B)x$+n$PdgYu{em2g7`Ry
zpNgh0kW5=5d}$ENgq&@g`iYQXKc`Y>c@Up-HwE!^5MOW!#D}$FbA|BL!dC{dO30}<
zlex5p`CmMpQy{JjVto)_i83X{H+YGZP;FxnTZDWQ#HJuNa|^VoG2WfZLf_65P5(BC
zt=y!dL;VM{*e2EOg4Zvn{Sd^?Anx#R2x1pcgCKqm;zSU8WW*z!OAvd5*cZh9ARb=s
zJ;WnO$N|BF+(D+7@*kzjfRl4*>KqN?7*Bq&!?3VChzY|&elmztLEMxz`h{mj5Ep{D
z7{r;v=$#MZY!K%PqxzuluR;7KlG7<gXy^CBR>tH~5SN3vBE!*#t3g~7eq9`+!UG-R
z4UtoU{8kX`cw3OwKZ5u(h^iq}3*oOI?gddQgoi@-JBWWIVkJWOH;Dg)r-X1nh$0~r
z4WU>F3@?8;&98VE1V(#DiQ*4po*GL2yuWw|3=0c|EG0wy?^{x#bO>cas2EBvXxR|T
zg-{`cM?yF`xaz}Vvpie9skF&BGXtsiXegQ3G(`&}m85TF!775(VN>-GYJ|`rgoYtN
z<aG*L9}DsEE2t$^x?NicyKtbo!s``k)(?T3f(9Ff&^QE7p}a{5O+#oFLYhd@3*`?c
z<&df?1gDS(LK<;P^}#H>At+My336yEG!G#w1XmdDFtU00GfE-+5JGMUd7O0!Z-$T`
zLW>Z(h45SmEkh^>p@T$N4M7Vb7J?aq9!l=ekf2|XRU?Fe@L-{2_}&EN;SeGsi5AM4
zY*q+wR7ihZki-rlF1(ds>kwEdkKRaY6T%b1+X_AzLOUTHZl+S9y>ODssl_^mkO(Dj
zq4|^~!!z{!W@@JpI*0JItZAhwRk@&lJXHMI5W0lW_5av;AnzVRj}Tr6;YDfcDcCQB
zULo`r=lg`f&Gmc;eVIj)^PCIIgAK^Zz7#@#>GgUD144K?gx91><$)m#4&jv$28o0|
zQ~0XzVS+;hhYGTZ3J>^jk&F<0;Ac`E!pK6+Q6W&mE@MI%8^X*G-U)$TjSJze5Z(@9
zd<YXnxowFO6GNC3!o(}d`<AmzmX1>dDdZF!<%@CXsS>eiAxsY;{k^J`%n%FQII}{S
z9m1**R);Vrgt;Ls31Mjn?~0KHA$%aQdM|`|A<PfqeUWpl2WJ!sy<Hf>q7W8`@S&J}
zFxihp^J9@vhk+upiDg*`pM>zKtSPHp+0R1YQhq54%LP9V;fq2AZfB~k5c$dwUh17(
z`ZXb}4PjFVn?=4(=J<68>qGcTBoC5mgK(PK7)sval^wqk!h5|kK3hWACccq>8^TtZ
z?01E^%{gwDS$r?}!2g}>&ci2+hr`$%!k!SWhj1f=y&>!i;amvkL)b4Cj)(Ab2nRwq
z7{Vdhxkm)Kc@GQuQLs3bg&YmxSm7B$9Udkpc(_T^*$__21nK{o5Pk{aw48X<;ekmZ
zuf;t$I(SBr|0=z%gz#GkzlU%kgo`0u5+T*7pY%aqsV|EiR<BCyH9;z{^=1gSLP!Z?
z|9e$$%joxbyoYc{bnfy{YMc6p@IM9r5~L~KO!c1-Zp#5)G>m^k_%DQkgHkBDFY+Sc
z<O%;**&@VZyq+er;8~X%M)5F8gt7D;Z)w4jf~5p0d?=iJ4JBbIBf_$RbhvyN6~d?)
zMy)U&3FFZ)5Kg{QR17Cy0;+|RxmPKS%2KToMpYpXf<UBBb<wFI_#k=M{jqTJHHCzw
zb{N{N)W%`d38QWp^~8Py!TN%nIMo^oZzQ<xbW+07M5<|Fq=(TojAk-A2X%(wDC7^^
zc(9J1Fj`6%Zx~7#zA!Sv$P-CsIC)~TjB}(m7oH`UT`129Cr^xAL6ZD1T7;7q6+be)
zEc~vsK<v;fRfrab9!8UE*?y@Sf&syxU`Q}5s7y`1?}~+ChEYC(3K3Xg*kL>uM)xq{
zVYCXPLl_;yXdT9ky@^*d)plV#9!8rmo(LoJnG(dd;pAVUHeJf*AF)ZE4D<PkYI{MF
zmg60XaPrdJGhsX%##3Q*3ZruvPYd!Z+9i*>z4emM)g^Wj&93zAB~L#k*{hrI@!vWq
z=@CXxCR-S1!+2)0qx9b`dWF$Dj6PxX4dYZ8X{oN~!{`^rrZ6^#@j^KH*q8UiSP;gG
zVZ0PZ|1buGF(r(*!gx81fnmJP3<)RiRX#{?SQvxD{4ZO|EA&5{e3}VwOU~9I(mGU{
z*!r3*!EjMv>j-J3^2o3}*<^rYTo|K7XLJ~EhQTL9jFIYCQF!oJ6XJLgP7s_ZI7x7F
zIQbwR-n5*z@O_&bA?lqG#>_CL3ZEuO;dCK1&U|=B_*}tRg0sVzBi5+N`%b?rLh|>*
zm{-W>3t{UA;pDy9KMmuvFcwO$55rg#PTqQYvEZ^WJ__UGFqTM_@}=SA6EsLz9*|F@
z<AYlkFBi)z!+d5sz6j$>X?pO?jupZ=C~t$jDvZ^v7D_e<SsTVWA?w5VN*0lBQ<+^j
z)2~IcQS5&sYJ7~vmN35M8P29KwubQ?GvxP_ondU_0aD=lUewrkI}=9k_P>J*5%Ko<
zJ>>`HwmeB>7srw(n{XZXhOsY<AGvVSeSa7S!Z;XCKGUb)<)RPpP#A}q&m~LH>^QlP
zI+yIHFph<BT!uR;_~0Q^KZkK5jFXZH{20y$2R!3W2AubuX43w`NJ{oj8P}54ci(f2
z3S^%PCm&RIK8#<(_>DY_yJ7qh#swPjcrSnG@DFyBy6L?b#-%WRx#nfL9LAMGel?71
z!mkV75M-~LLT-g|TL^pI5yI#3{TaqzVNmCx2=0aPcNirjNz1$f{0}!~1bl`j`M-2v
zm*YRd``m74lL|#6C>BZfO^M*yHcIgbBG<jCf>fZSL<IjloI%1;O3Y@2l0KIfUPiEN
z1m%Q0EXe0_QsI#Z9*v-01ob1R7(t~7>O@dCg6TJN82QQ(REeN!B>C!4D}n(IPc`Ay
zBdEa<1H1!%@_Vs@_r2tgiKM3B)a70(*Oo2~HhB2TJH>L-V6Q*Z8${4Bf>$DVHG)pl
zv)W#EHHx5d1Wh7Hi{R-9o{1nmf~FCKIl%~;Mc{})iQwj-GH)b2&Ipd~@wg(`qIf5z
zWV?B&YS|t^5^n@6JnnDSx_uF3M8My2WJaJykok(zVW_)#1jMWevW4Ub<_hKs<_oqE
zq-M(q3WT={x>?o4PW|WIdIWyqh9Hdxgaidcg6Z8lL?eiC3N^h?MPNp-v7G16iSG7v
zRk$rkVLXCXg}k+p#|7I6J|WmPf_6fv|6~N~8+u7PMDXpyZeCIB7(qfftLYPb!^?U)
zMbKIFwJk1cJ{v)o2zo`(TZDfcb}^D&Be-AE*-h{{!R~@RBA`M~;hb!r2&nv$VBZM(
zEpR<A*iY~U!PMv7FA5n}(n*{Bx$e@P{N)G+MleXKR4YBD%wR5VO)rNS62VZfn?Kha
zMM9lpnZpEM6C5r$LXb_b(*fZl1%vMx6!Ln`=t%M+)teEFiD0boaS^;7!BpYn1t&x>
zQOG30$q|fv&c!k%g13b854o(;&NNY&!TcBUmsN>EmYIds*%8c%;8Ya9L@_slce!h#
zs1(I}5zLF=d<4HnFh7F#Blw!3j$lCqBZ_&}Mv^xc{vd*d+~yH1iePC3%OY6J?AloT
zqX<5ZVD3Q2wl1C}?AzS)&jKf_7fO^SeiFf_(pqPk>$3<}?oF&9MzCCjRQNoCFNA*?
zLHV?NN(T1z5LZP&gKMN|HRFHUL1Fa`+SjY{*D-}6_$re8VIj)~A>mW`#h>=A*x>pm
zf~%_&Z{PR6vtQd3!Dj9?W>*A<A~+nu)(F0fU{3^lBRE|-eH+*1V%p9Kwny-N1pD_U
zc8L6k2ts?S-#ng1on9Byc15tZN;=DKAxlzI_DRPB5sY8&?X=#zpT<w7k!(Jmc94S}
zPxD<(`;pt{QrhtdevaUXnEfdN_sO)Q5oBFVJ0|$++j%`Mq@AsrenP6JBRCnsOIOlP
z3H~CuuR(Q6&P3q5mUdR~94((rn{gqnY9Rf$2!4;?b_930e0viY`2F=!H^2G17{Mhb
z)j`)~!CMhrVPu3~i{OTk>pWhHdiIvjpxRB5+~1oZXSp}lahF?(**+ni_kRB~g1;gt
z5=GG{_#eG{Ok<z>?+E@p>t^*IE@C@(k-uI4Qs-~if6UB}9QPxLk9GWU!c{Dalqf1h
z@kkV@QT#i;;Nd9BM^QYA5>c%G!BaAdhoZ^vclb}MQc>7*9nD7hN{fWTGEtNjUanBW
zd)@O7S-f98Z|8nzkB2vGXO~B#puGROd}8G&szfm(ikVSVjiOo<4WnojMfE8DI_7w2
zle=aVHKNH+E)XPnEXqgur1z?qT`P*(QPkn4IGWZ;u1D1s&JUIKqNpEDe!6TRIP)zp
zdE+RWL@_XmK~c<_lb#kudK68g2t55TtIeWtMDaotFGk^v!WG36Q9joOZieDwx)y~V
zg(nKHRFx=lh4=)ikP$_u@aBb*EFsx~Idp7w5vt`$HD9oWU`xRQK`N+GbQ_=4WbsGQ
zI-0x;PHu=oAc~-nP!wSyktnRfzEL4DK~pfjYYO|?!sAi25<<z49VH$Y%WVWXL?XQ@
z<?W()T6CTiY%kbBu%jS#5<;GeqEn%yGnacu2{t_w#j{a#DU|mV(v>q3@|<9I!5)I_
zLJxZt^4?MO5#Cqu`9gU=u2k0)mX}2Ga-qDxI6okYjp<D<RZRMyRki8hC|-$T`70U2
zqgXh$+^f;#mo>u#heWaF`K+OW6!sdJ{#q36t{Lv%{nQ^3#p_YL5yi+TMny3>iYZZy
zjsjzR<D-}m#hX!#iDE1lI^u1**wLmMU-Z4>=*(A1GLiCZ@0MNeNm2Am)9Q_L@0{so
z^{pswHS|u4BJp1y$=gz$O5duwS)DF&HqA+Qzr(cTE{o!;C}u}7Ckj3+zKXZ$+$i3S
z;`1oJU=~F&FNy_Gd_c){cfHLy^P^BM6uch=`QXl;ZB;xZ3#Cf_A)Tp`vq+F+v5=3V
z_*lpi!KH%B1gY~$6rUFI&lt%l?w;~c&QZRMVnr0IqFBu{;rF~+`w}cGqv+n<o%frA
zd`%R@9;S!5Hi~spCFh6kwl|VLC)g0h*Ich?^4A52qxezCH-ej@*erxiTcY?jimg$6
zCz9QQ+X`E^3;AAfhu{x_JGt3~(87bCCG3&vUcr5W`+0g4>Ku&XknsOfY<4*k#ZS@X
zPmWJUaa0KThgvrASQN)a@^hj5gpks0JZ!za)^$3HGmLo*^<y|2#W_xVf$QNI&PQ>7
zdXZnFXm%hab6<i#H2RI(aA@N9C@w^CF^WsfpBReAa5;)AQQTp)qu9$I|3q<<i8{bR
zeoZ9T1#i&dlM00_w?uL~ir)Q`A0GdR;?F3G#85QG+r4`JisB!h;atId&%G%A7D8U?
zSB3Z=9TUm_%1Mez$COxd+}MC(EY$4tMA3y~GfKp;<)l(N#yyo$Qm|AE4~b^g7t2t;
zjPSC8)GR0ZJCBzxA47#09*HF{FNAKnrUsim8UtUiE5=YMhRQKiiD7)nBDG?u8bj*U
zG{i9UL|U~NTJ1|z7tI=i$BcCLdMw7@(x(qN*0E*`#D%BQYSYf~v^t_wHwN#iJeE?Y
z(;CFkFotn79z&xT8pn7m2D}zSlNi!s=o3TV7}8^C8bh38#n6oRYltBnLnH=g4A1RL
zC^6or1;3v2xngh&A@^_y;hDesSj~tbGX_H>&81h4An*P_3)zAsfi6m}@I1l%LU{{L
zM|eS@M2$f!<hl^QAb&d%DD)vHBqZorqR@UcmdrO>G-ENCLM%bH?n4G$t?u`=j^Xhb
zI>gX1hBh&D+3L-6yX&9#J`sbmSZOQRPLS0nV`wk@i}Q{l=aZU=7&^!BbPS)L_dXRv
zrx>cc-D^K^oVlyK-rD^Phokf7z2wivK<pyeHHLrBdb-8%<3I<6-9@K|U{AqbG4zh%
z=Un&t`#yGeZ1p}LL%$e4?Baekh8JRZF@|;(JZrV0{At-sF?`wG^KuORML0l^t$X_@
z17nzc%RNYtWN-|x6mquG+7PCem?bYa$uXScdNW7HFe-)-F|=6fcwO)fL2hbF@O=7c
z?#+gdH)9xCs|c%OVi+ruv%luH?Hk=#J9k116Jt0T!>L&EB%H)`i4^efkdtGW62n_D
zyv=RJpv5pXhG{W;!0i*m^cZHu@NNw6#V|95cVd`BPxd7i&UVd;;Zh~%>=-tWNnw@6
zH7)h4!R_Y8Fkckrk;JfRUt&QF@5k`%+s@T*IZIb|l5|_2``Yd1x5uP@7{emkuk8FJ
zhQ&h0Pf7V$$VW{0%FfMyHeV9M(ijf&tR9j{&1E95u&eT?qV^eA|7|BdDfvyx7Yut0
z2V*!C!-^PI#;`qx?_*dM!|E8mj$xztye5YAF?<!nTF!B{>ncxvhHG#;@^X(k@v3V>
z44+=jrP-GAihRQ<aE?4EXyh$tnFd)Y+cO{9pZGS0BXeET=eV{C3C(fU-Jkd_hHVVm
z9M^ybSwwoZBgP+rU{4G`#E`u|@z@jPcE+%axjp4cV`N)mY-i=YG3<+BKZ8Fd<<n;#
zsr_ydc03Tn;6}Nel(j!`m}wcqF`4hI(as|={1n4c=Iw$?ton;(u56IicYk8w8_wgR
z^Rpmhb%KK)Nd}F-y7@&8y|Xc#jwN5R&j^w<pXxZrmjLEN48JjrO}u2{_ZTiPuqJ#a
zE;48_ls8eq#N`;S#8AXUQ4?2VxE8~oG5i(7^%!o%a65)OJjBLl-i+av5c1Lc6W011
z=JDM^$sf$F{RuX`x<2PCA@{iZc=pEdcMSh<JB)t(u*fg(Pu!28>-rojKXf43#j`%A
zn28h<WlWSclVhctC~2aUiQ*<oh@`=R#G}Jw$u1^Ji-g$xK%(`51V^NtrJRX}rKz`=
zec;9;CLT3W-$Vlw6-`t!0TYjzsBEH&iOy5XSC=kTO;i(7{Ct33aW2FfA{i&vYMQ8J
zqK=8WCVm>9c{b{-+cdYfiCs-|zmGcWnV5GVF>qX*a!<=Plr%Ka$V9q{rY4TIat^kg
zjZHK$k!GUU7#FK$rj#F>?b1WeW+oga+$KCGoF>@h5*@0sBNe_M9`l;~a@I*nU_xex
z{5F(in8-8{H_?i5Fp*_KqmGGe(abfGXCg;9J64-nA>Tv`6DnPL+11j-ssjnSTEOs*
za?xAz<xyvP)oA1VihdJ@iKvN~iGYb9mnJ<oV&ab}nIV(kxg<%QA+a2<bLo`K0|yfA
zUAg^3PSb>C!Z!IP#5tvvv%r<ha(r~EqggH`txY^`;%O7lm}q0-2|DI|yrYS>Cfb>3
zZ=wTRpAA~+Ht|UlR}Lgd=*-H=nJm3rcEZF{ycwFu?!;B&ln*9~A57Fbm@tJrYod#Z
z?j~=^g=TNKd~s)26W!?T`M`4~M#P;zmW~p)FKF4*L@yJ4O+0U+x5S~3iGrrNafi(n
ztQK=J8Vp506EBz`r-aMRS&-kj<Lqx@w23!O3^4JsiGd~tnaTgZjO6GC6N60*GtsbJ
z>sO@us)->cwib2qwrN96jLLKjJD4DU&BSmnP_yPEOuTO5c&39q_ipG7;q!{RTFiBh
zGI9MvI!j`H#W5zvn#q4{OfoUf#0LkOO^_-j<E2`>LdnPL7nvwRlF25fn0U*?+a{)p
zu=p3Lm!7S-`{|S`lZ&wXGzPpw^UN8JnI_&bp|pap6=s>3ZDL{^lj4|TVy=myaSV&&
zT@&vyKP`AH%wzQGxGP(zVqw1U_XQWw4HFAZd}!hq6Q@lqGI`5NY&NmQ#7FeO#8)OZ
zm{?+BDZ_4JwTWdWJ~8oyi7&Y^UCO5>dVb>j%*4o4WmV;>%T3<ZLHS&;)iUkuh-%-i
z@U1YhlG`~)X}(A!`tN5G*Kj&reVv`kS`+sj%CKh2IwpxzSuaQh@)i!|>!4EZjf}6E
zqK6zC1-~(|Nl4pTRVn<Ii)G@li640|rYhf=*vSoUVw;KW|7LAxKA5O6GGm8{jU^OH
ze&D)XQdo*#S9Y7&V`86){Y=G@%8ZYFlaDBS#npO;d<S?4T*=DSltU)gzmaiJ25s}A
zy5_VpT2qejNHOuVi4!Jnq$;hiDK|<fM@<}KwN#QH7x{n`WzbaRBz?=wIK}OmrhK--
zXRq+RzQT8g2Dvd!{AuExiSs-bwtGjw_p6EDc*1i-G4kh?-%VT+a)B=aLRJ-5CT{ZG
zIIoQEpFxGICa#&dW#Tr|k0<RC-whKtP1IbZS%-Y{Q<OH>vluA)Oy}>IxNBmPGdYC=
ziwY<YI+edn+%sW*<1K07ZxjERNVU+-oAIv%jZ-UT;Xf`DQ*@wK#KQ28ef?ZYQ7gG{
zEKg5WdR$XdEKrm49amf_ZlQ#QYEFd?5KCEj$V%ETZK1q{3Kq&pm6EbT$_YMf!8cuL
zrznqbxLL}h7E--R@lwhYUWKHhg-RlsUNTu-FxXSoLLDo4F{+vcR;vq=)DQv-j|r(+
zD6b`?w&1$wn$@*X&q93*We@qdK^ztu2yZCZ$U<WaO@ucUOcP8O<VP6xY9{>gT2;xN
zR&tlQ1l!MWlY1>F7JjqwyNxnWmhxHHdAV4gom9)PkZGa0g)9r%7QV3XrG*>|xfWiq
z@S=r03;7nFu+Y}Rgc(W;3w{fRg_afyEX-1rw>*k!L9_6&M|q``LezyHikA*p2wI3S
zq#_Afh**eP2wUj8w^)U<%90~K&k^6TBff#Nm7CiY%Yw}?T4-hQ)<()DXU6EEJ`P&r
zh>vUWewpmn79JNj+E~duEwE|+!9+U?Pg>~8Jh9N;LI(?-EOe%Vg@lEtEPOK~X^O61
zn5pzpl<ZQ<iKZD(TX@F8vto_LnE>?Xr5VcLwXQA}itkrGe@A)FLU#*&=&gkw7J6Dp
zQ<UB^YijngaH>uY$#+dN(q|}_ODfM>AmKp$EKp9)@{cRyB@6v6ylr8sg#i{`wlKoN
z>zt#7K^BHs7;0g#g;y-RDsIzTI^*11jD+RFG-a5D*DPEsQzhM}4Cg4m<U|;vcq!!*
zN5&f#Mp_taVVs3g7DiimlWr@@*6qrp@zT^GAE_u~L<mR5c+T3wWDBL|CYvVGtC`9q
z3m3f^tdb`}$`lKskg}|s?=1_&K3-*-h3OVPw6Ms+3=1<Y%&{=n0)zPu=gWt`GcrQP
z{^%PzSNW-=ve}XGu7&q_+FN*^UO6)cZ&T)RjkYNyPc_R}VBrG`3oUR7GUqDQk87Je
z%74?8a@~?EzSzP?9NoevoS>q7Y~gBOb*Y6V5`n|VG{%8(<}5xHZ<ky6+`?zVX@_!7
zp@UDUo1w6}!oo@m*Dc(zu*$+}3x_Nmwy?&+S_?ZY{9s|7h4mITTi9aZD+}zk!NS)v
zDe}qFm5p*BY+_PbIOa=6m3ZQ?@7d|fw-zSNRJK`o!<Dhs!gm(Bc$6PKN}Gd9eyh^k
zEqu>|=pBVRU(ZoqI9RZgp*!r`V_~m_T^4pr{Mq-P*~yb<pR5l3KOmFcZ{g8?Dh(dA
zz*Oech(B65V&RO1vlf1`aFhluoTOtiG<AL!<>L>k4RZd;FU`?U$!7e;!fBCTDxq*W
zn#@*KHOt`W=PaDJaLK}D3%~Nvkb~|b<I`FFor_o|`-1pWa;#e81$FfyhjX=l{T=0s
zBs{mkRSQi!t6Z0Bv`{j+I>eh6Zds^d12%43xMQJ|jfZU9weSazZVN?h{7J9oDt}qH
zCt=_1RsNQB{Eq>jmR!ewEc`2yA-)X8jgrw`<?T{RQ5&f?irXk=BgIDeLydMAVPXk8
z8LN^uj&4^{of+IIBs@1t^BA=8h>b^Wl(kXL#=|zs+sQp^ZC6^JRW9uD@mQOdQ>}sx
zl3VWNDOb@(B^y<3RI`&STiHex8$7j2i$9bwhShCwxj&wnw7{n0O_axM)U@HS;j~f9
zMr|7nZ8Wk`$3|T{nPBy8)U%U0!xx%|j#TBYp#{ntNGo?lV;fCuG_}#pMw$$r&b}UH
z`Vb%0m|&H*C$|ijyS<XZzAhVXPTWSO4UY}4oeZGwfn%QJL=+pP8|2X8$4Vs!YA&N^
z+sLtzW#jExN%^vp3JEtX{mEryoXME?``(dnqlJx@HVSO0HYVAaY(ul5+vs4UqYb~E
zd?<6+M#P3;BVc1;WnYl`2a^w64%w*B?QlpTMs4g$QQ|gQ*@)S=xWZ@Jux!}uSXycP
zkU|N`<7xiZHXf({HlDD-H!bE@KEB!DTb;I4Ug3MvM&}ocRWOuxHZEPyBH>Gadpr5&
zhxQXTp0d%;#tSw&QPV~b8$IcKs`9jrXKXxc^Im_-lNY^RY;?83_YBY3$@h4*y5@Hi
zLVo*^?C#RUw<txXDZOm;w$X>C9Lj%Ag>Ni_Dar+>(w6}dh3B~hBQuJXR9<B0Yz(n6
z)JA`?Hn7m<02?n0PYzvD;V6ToI#}=(8?P2>j`rjXv+<gZGsTrrHsalU!)=VP@n)_<
z?yX*x<aI8hNc1zxNKSK+kHXQ?<xN5M9b;px@Nt6U3*{4ROccJTURA11Vb0t5*v1kj
zgN>;+7TDO9s!X#n-Nrl{b5oTWHfD19iYs$%yu(e@GGjJ3U`b_`Am7f_FP=R|<n2o+
zy)~tE%ba&@ob2j*Pml`pIfWJ(@AE)-Bs-&sHt>4Z2V7-G^4;J<8z0(OWMeTiVUh3U
z63Rz5a+mmCIHMdoqA*rVZ7j3#t&OcVKC$ts1ZpF5!^UzOYiz8w!9DxAjTJUl+W5l8
zm$GG^{mHj@j?&MOv5H$sQC8c@w}K0&DPha^@3!O{jCD5VI5WN$`MJZz*4y~X2H!RW
z=O`O&5UIx9#J7Sak0{@8huYX|C*RL+;bbdSWdz9i?)^JP%*K8j2W)KT26QSv*w|^~
zd*M3-ITy-z+1PDkFZa<ArM^QcU9ajMrsW$MnT?czZ)8xokICk1U*>n^pp8R}o{dvB
z4%_&V$C}OC9iY(?-w{q(Q-0zGe6oO_6zs0~tZt8#xiC26xQ(A}oZuF4B|r7d%~eQ<
zzt}j<xY;--{-5C}n(|}As)^Iegwx7-8}l`V@2-Cp5;~paoZ6ksMJ_PH100>6EOn9F
z&BkRLSD4B1<on*M(o`~zQgK|fah-dRC!~%0+_{7DZVCP=c$*74DDMtm0)#9-m|*n}
zF5kffHUF}4&&J<2{t@N>Z2T+afzHcul{%EL%2FhbqHz?9BPE_3g_7bzQseYW{riMk
zBA(P_(~g6QhvFz5M<9-1JUNRpany{XRvcyHC>KY|yN-wBC?7`!;cHg7ABp49I35$_
zly$C(any(daa0mXWkK4hBBZKdHNom}H2XMtSH?wa9B&PE^QRpr5*~6IsU1h1I9zeK
z<ER@)y*Se1NROj_91Y@V7)K+{s7&_LjSBvnSBiwCaU4Il&TkUOkVXX)@_gjPrW_&;
zM;uORO`Ttg@`LkA9iNvZXAUN|&nxAL!^^qEQ4og`hcAw-II`o&h$B-*Y0l~NP}gVs
zj%H-jCdVS?Fk*4AsfFmUDNhJn^W%72)S@}Qdj}J099kTHae#yBaj@^Ld8OEwRfB0T
zuN1q}ekhJ`9M8tlC5}iO(KtGbPAm>Hj&^Z88HW{z9Y<>pA;ZN5TM3r=$5HiAf~MMV
zapPz!ed#JCEOd#(&Fz`rK8_A?B;t5V6zJ{u^GbD;xY2n=uTva!hLN1yU1gW2MUCW{
zI6Q|ERPGw*-viN)>oVW-TpZow=pDxax97?@M~^sqa_C(pZ#MHinx^z(YjN-Lll<XR
zejm~4EBL(Ni-+Cp^@7-WF^-|HIbIUpKaP&CIamh75r4%)GEnx;Ai=?cuLyEOy-Lr8
z^ZyI1z9y+PCXTUj43G1|R5FK)<dx*Ed|mh(aU7rM9vR0dA>^aucvJXeXS}RZe_R~n
z<Cwr4_@yNK@{=Hi4{&lEQ|M$X)Nh5i;&?lb>2b`6W2zXRCip<}f4j_N4!6Rj`bFP~
zCqGWk5}eITKyl3F#h*A%#&Ignr>HyLi(^R~OXHXq$NV_n=e*+h@pzHNaeN?_KNNJH
zE3z<-hX(lO?sRaJMRCl^@YOlu{fNDGIX)JwG|XW|Jhzs(m&LI>j?d%xB#uv|`)6_N
z>0b226B)e^drL2He-X!*acqd=>o``#u`-Tv8@;_dDXT<zH8GAJMY0>GxYx#c+f2_o
zrU$o1s(Z^C$LLh|yZ^bqisQv4uKM>~#EsI6ULA?!n>aSbu{n+{acpOr#qs)kj^BDI
z-^Q^uj?-1V-*MlSac<+m(!|YbV77y}BaR>9*cZqCICjRdD~`3-z0;oY?2d!TV(oVC
ziDPdZRqiF_EPHBr{~uG|0UcEpbxrTR!={Rql*yDNKp+W$&}*i@H}l?`8JZv<O{9u|
zbOe<mRp}i;x**aK1wmTqy(m>W()stCeDnR^T6gWW@4n}r+s?f+$-Htr11C7HyQWha
zSofuc<YWdK<+Nmq$ZX|dVR3X5+Zm2RI(d!<U0Vwu=y5&+MGD$32$EbBvP@05!cMYp
zb`-JWS_ZCX;CTlA%fO8c9L|^LpA0@H%F^ke>1GE0=8;&|vU;#-<Wuu4?w8xqw=-}j
z19vlUF9TcO*dAu^?h?!SEv6~EZ1*$pFLym-W|wVH=^TZ3+j1Q<75m2Yh==MorpG)S
zggh0b@{G&3GHmc71DQ)qSF*?Fw`0{s)5{FJ%E0T4Fn=TXPVlWDFXMTifoyhU7vuHw
zO}XsIAv~vG-!&#y%xy;=JMLaK<+Wo#vxGw{P5GpB^ITJ_lUe~g3ffV~4mQefU&Qje
z!uY(nrKlaSqtDf-Vs;d_ql6tL?O^pXc9gQ?)9x0g(soq%Gkj4T6SHOQC}+pe!;RXw
z63es5juQnM*<6X;R_CWu(T;9=ZI$e(Y)9>%;;Y!hJGZJGQ5$oxxuhx<<BEx!h~kHK
z)R59x!J2l|Vin;@PqIbX5p73|WVzjVCip(Lw$2%M_O*#wlO1t(nC;=u;;bTzSX%9{
z+3{vbHu`6}emh&D9d+#R+o9P}*N%F2w6&w19Z7c7w<Fz-CU($s13Mbo(b$e;J5ogH
za#CYTwWFbA(*!dIm}pEJI&b`UHXcVLP3>r9M{7Hp+0k6O#Q%@A5Sx~Q|JxrPM6A+A
z#0URa+uM<0hsO@DD0VxqQw@7|2$DGMa0$=yz(b58lfur3u5utxvTf*M<$uFSSftxw
z*uw`@M+X9S1np29VH*~Oq>9sl4njKG(aDa^c64C?tT5Xh_{ff~cKl<<EiNLR*s;Nm
zjdpamqlX=f?cwXJdfM@c9aHR>YDX_l*B^O?+3|%G^`;*?`U>wSIFKPEgcbYS@mYiq
zuw(d1Ei0l1i8xqrh~Q8=K95-PqAdHr(ZlWd(vI7&!x1<_ibmT1=X$MCcI2-ZGun<Z
zqK~!XE1uHA$JsGn$OOTOg7olUUx{rGi)OVx*^aM8|3>iJh|Pit*{0bsovUd_`FBM(
zzmNXTj(K*>7lRr66+p-=J7(K4NBH-Vx^p?Ja)sCr5rw13Qa&jjbE#|WLVNg{F{VXA
z{(cp`#EzwQEVE;|9jop5(T){TcO`c*r?+AF(y81TF}a^aXOxU-SUu)o^EPX^G%upp
zag48{*V^%u*sr=1y|YftdOL>j60$qdBXh-UvSTxMv>ktn!4|=NcKj@4s~y{<x9s6B
zqOhUuLVmSlhaEeG@3LcWq;$6(dm=pQVxFvV?HA=YcBWHoW_rv4I|j{<{oRf~?0lMN
z%t3CwC($H>XDf&8IAX_5JAPYU{4YC>O2r#?9CMdE#x>0wUYFxMQtWW#i|P6<yy7S6
z#Ew&9dD@Qic3cpC#?D_1!!gNpPDr!+;p!LdxGLF8f|nyUSA>);6>}}3To=NzH>g{j
z6(1^v|F)xlDD3369e3=g;y_gg?%HwBj%Ri}x8r`K?qfUtwc`P|K$Y<7JY<K<hsh%`
z$eNZX!k;oA>%^R|5%ZrNFYL(YKz;|BRf>7ZliY!v4!nx^e9f~<_}hr`PRM&ZvN^&d
z%`QlCX=}E69VCV$N^T)}1oJwu>}mLVKc)f>6nCJ614j$R6qM3Jf`tW(I8anbF+tkb
zDOsE$G|m)b>sPv@ga5pZDJ4av9Vp{KS>fdzs1&g;??46Nh$s~u$ZmwEf~m5IGi9?^
zbHL(&)qxKjsP4dr4%Beq<<mTCE63DypvA-JDdl5ov2OF2HjQFxJHmTpdEb~Q2Z+%Q
z#0Vjeb-*M%E~1#}r+y5J*rLsW6bDkJ-FOF%KZ;HeOcbo+KwTl!>j_D6pngPY;6QSO
zFFvU?bRf-v#tx*@Tb-Cj4*dN(94Dv~bGA;nttQe+O9z??q0&r9a}Fn>T)bSol>^`2
zi*7AS8^N}M?F8EkvTlY0?RtmTl&7)75k8aucp5(KU5@aFf?Lqzz@1Jxy~4Mj)Knop
zLE89*Xo9)}i>hWf_$d%64GIYfb`Z=QlC6^?{9(b=*?}$*{*eP+9q7ia1Kk}M>%cfE
z>fylW4h$3C(}7Qf^b+hX*hjFhAbs|8;8WrK9r(<F0m27IN(TxVB)B*u+=n3!43+HY
z&%)U+gnuc>>~Kb-@R5SNR-Yo%C<jK1GDeVJX0r704oq@jvI7%Dr#R7pul|qa*TQEz
zFvo#!gnuhIMR2O%G{NbD-wDnTq_>$uW(l%Ob0hjv2fi2ngWx>D`GN}s7YZ&Cq@Tq?
zmI%_%G9k+aR|u{Yq$Nv#bYP7GwZ^0Nc&v5cCx%vMOzDhu+%FCcQ884-1_#dWxBcb8
zQ4cmcu*reVTy6)3yD-9qpB>oBo#=$siEUz8$Qic(#ewY({OZ6C2Of#O(}7(MTok_B
zfjthm7n@Hzu-AdFzp^nMa$uhW`yKd=8!)rM?_zMk!8-)&GE4kJl!Jn{5^=2lrvrx_
zIO4!x+-MG*;JGBFEE>`=_pu1K<cOzo(t%6|PB8-0bL3lN9+{pa%Z$j@&#+@+e=bt%
zypRimd;;es>G@^BEBtyhD&eZ&HNoqG6mK|iQ~2Kw{3GO+;5`R!b7*4|XmdxDyMnxO
zn96+z{*~+l!H0s>FaK$IEG<3}eCoh62cC1uid(Wfu{F-}pYRugF9lij%7NDr{zk}K
z!FLY47n02x_P}K#<`6$Q1#=1J7Nqk$PUMa7d_wX&Q6Qoebb_6ySz%f6B7#MoDCR_Q
z;k5-zIQb&Nn37KP+iNQ&SlWp)PLy?`9J?V3i^@AuO?ZWf0wEQhs3fFvM6cpRRpETV
z2rGUN(W^W0q3{}lH6!}}8b?WgIO=F8Vw{MTtjP&;M2~ZV=Ku{zh)gyoQk+PYY`hZ*
zLK2;*<3wF28Z0p<i&D=S{;MZRczwYJf;>g(gl5EsPNX?e#f7RaG;*S`6WLwJ;X=9-
zO`PE0iGMlK)QM(JtaM_P6V07y;luzZ20GEwiB?W@bK+wsT040YA_7hXooMSsJ10C&
zc%5i3PUy$!L`H<$ov6v@N;$D0Uk(yiM0X2$aK@rU6itXK=%d@gCchvZ>Jb~mi5zos
zQwgyT-<mpc!uOk)IylkMiHU>5f5{T5batXkr1T>vx(bi~Ib1}8?qb|qu!j>pg?u8&
z(q2yVK9rZFPekb}q@UoYPV|rHp9$f(201a<iRn&!=fn^vhEjLpD=GcliBUp^Iq`*%
z;ZBScGD46}=z-0BDOrw=e6$l|oEYoGI1#B#aDx9@8Slij1PilSW|N#S4K{r%I9ZU{
zubucN!a0pprbu=w>k46YifnX-6W=rBoR}$npfbye*}~@t&W-47Zl3T(PAnEOpKBT^
zT_}XcOQg3eB7I)!#Iguq?gWRxrnv-s9@lCoesuDEh+$=o6KkE=?Zh4@iY_w!<isW?
zHVa=TxZa5kLN*H0hW%l0w>a^uH2t&SR>5t8zX)!RL=KI2h(fYc$gapLvjcmb_)U7U
zPeP71`(?HnpIL!Q<##9kh<H2b#3A8-3LX|b5-H`J9~FMgiQ`V3aN?vB51e@DM5Ys`
zoVe-4-%gx%;*1klxOW;^&I(@Qp8dvjPB_K$lD*)>MNzo!6fcWNGq!S7_%$c4OSdWB
z$ny40c!vMs^e#5vcH)kh-IAi;mxYV&I&q%^tZlm&5&7`6e<Pd*toX=@mrlHL;;|D?
z#MM(Lo(o~=Gbi{zB9i|^c@fb^AG5p`{$6H)25+2rE6Tfw4QF-6=9Fx%@MFw5u{mAH
z<w8YQ_z24FLLQz@C(Yz}UC8G`X&1_flHbK=s`KX(3rh>QP|$@!E)<rcUE@qeTyPxA
z$s+QiF03jUN5X7z7fOf?c}XFq1P5F(myPIImgQV1FG>YLL`q-nGFOtmRd(^Y4c4S=
zaWyxXs=4ri3tkr#7plAPp$jgtso_FR7t&bQg<3Aub|KCMvkM1TnxkBZc45bUvuBTq
z*%(^>Wr}s7#$FSX$%R&HO;ju{SY1eUA=@UijRRR}j&~tJNK_FED<-=5F6ppCraD6E
zx=>F@l9;hdeaVs}M=VoZ=)15HtCZViZpeW&OktyqdH8eQTyVP3#D%6Vw0432q;2K`
z&04sSb3@p^xny%iTbOOheu_>rX4|;%*^s>Kc3T(P$%xtuW(ZQZyKwHLM#4mUA}hLO
zt~#I0>2YECx26WiOsXiK3;JB}yP&zCyU>T-cEMn%xbSF^sjCY?7eX$4<ihl>=DagZ
z9b6!GcA=w?PMqX>CMNGp%d#I$U0gu4wajxfjVX3>;bW=T-G!dwka~}Zt4~B>E4_sD
z7KhCC<M+&6rhzUD_|EjH3;j7{QOXp`Pn~IiG)gi^^uaC+5wfIa{-HuxG<k+;n2hcV
zuF*f{BO6S-AAh8aPa#8jH!8R>%7xJ`ymsM@3uCy%OUzFM$GR}ih4C&-;8MD9$c2e6
zeC5Ix7cy^UpX9=1x@9Z5ZC|_a4aZg8vc!dNU6|s+Y!~LZFx7=okF4LhFvEpuoVvAX
zw3#lJbH-R_3Sl-&pC#EsF*e%F6}~|5dl!BXLVcc)`P_hFw$Oz|E-V(24P|*CVV9Ol
z$Ce2$cVUGP>MJ=3!WW6zkHXi8!?iB_BxIf7M#1%h8@QYNb=l}9$&zelgk)Mses*E2
z3)>hco74I0%pMnh;VRrs*zUrw+;pPv5~R3O2y5*Y()mFe`Cfh(nqt`}xL=Uj--H|x
z{9W)5!C%T-|8(K73-@J>j=1ob3+G+9;KJKX%TX7u)v}&+;h1Ep9CzVFgtM(oF*qei
z%hN8LiSV;R&I$6TEB+L9k=%vrjL9+9OM;hOxZ*-myydDOb#mej7w)*QtiFx>rVD?I
zG5J42Zn<zfq6|7|o}b%xSF-n9pdXr<e>DB;!UG;Ay)6&92Zxy+$zUG~ayF<xmGM4v
z;kl6iTzDyj;rc?z(KZRMB81{w7vAwmafjpiJ<l{D#ofs6Mh-U$xl!1SoNnY2y`USp
zg^Yb|YMvu0j~k57yzcO?c=-hLbDKP}a`Fqf!yVqdBY|%Dj+G*A6qSm_qzXl*7K2R0
z$tG(FDIzZ^q;UDP(n87zmUW{XQ@rJvIqdDpNeymPbVG4Nb)%9SmEDMOBi4;7Zd7&S
zLpN%;QBCT8AoyTKURJCweD17pqcw#`3Dy#<EtuZTTwAk73m<jELQ9hyaguG}hFM5m
zL5rYOu=-|`&5d|B{#asWN^m1lc%6tccA&MMSSAV9cOyI&H<H~*aU<1@#%`pG*wBrV
znOY;^X>R<m$J)wlVWK^G6E~W<(cBFxO$8~^o;)ktQvA0PY%SQvjka#IbK}wzliiKw
zV@&OZX9)7=p_DsThv+PF3ULX#-S9+oubUTyTWH{O!|%ogH!ixNxuLtUu%&gb8-}zs
zS}@>7(2bBA9o!fxN=G+3xzX2+er~MHAJ^H9`nOHJ-00%QN1}9fqlb`gg0%VAjqYyn
zZ9C*y*wc+qBxPlLi<5j&mOgF}`4S)MpStn6)aviXXKoB|gQWxA7$hXic(B+H6&&J5
z7GZUk4wJg{^MxD3g^v(q08{)j(zj8ZI(eDV7&oSGDLdAUac=ZqWg73sH$uoKaJ;uo
z6W#bq$RxqZg4Dlu;{*O|ecSY{8&lkv>c%vwI7@K4;7q~q+?XMRKCPMBjobxDW=E7c
zoZdJqmG2oUZp?FIz8mY^*x<$jE{z*Y-Qgdb7P)aK%JSfqC9Rodu^T^cH63VcSt5k`
zGOn^4D>yng*1EChiHT{IkRJtCyD@WeSX>h+?I|`taSwiPUB}oEoegbtW2YOt+}PyC
zW;eF52{(S_=B->{D?8T0LYwVwY;)rm$x>glD*Ou<39<HM(~gL~n?BiXH~w^EF9(uo
z_3SepaATkF{el#KbK_P88_Dn7Yi=B5(C#x`FIJHF{E&sn-xd$Mk?F=MH;%aRmm5dj
zct6)_&(w}{mkDQf;18w~Zk%L`D@}z{EvdUKB&Q{NR&34)ueh<`oEg@0qMR38nmZq>
zUvlHJ8!bI(<q038SKPSi#@}vSb>o^F*WI|mc00uL;5|Ccba0~SX>@##Ozj_bo=2Gn
zl{~oZ#vM0ax$)YKyKda$oS!s5<!}~R?z{0&2>HKmMElboNcPR7LR20Jf9%E+A^jIw
zc4u0h*R0RnAU+rTPw<5sFNIL&hw>XY-nvo5gQ6ZdGA-|T1pQ;p<H37(IGfFb>>lKh
zqFjPG1zA+uX~`{|pGVB*^&p=oTsOZ5{G=`@MFj+_EwU66v9KU*Xi&@({%9!WL1_>8
zF<0D!5<*G}9v@?Ezs^j(j0fdCV3xeB2jwEA%vOl#@PK`wvUseuvIjN~pLd5U9#r+9
zng<_vVDg}#(^}nw4?Tz$&dW<`c*2*L)MmR;@ihf&dC>Zim04nxn32#X#)DWf*u6V#
za;6q1MP@;|wFt3#z*1&86$u`sdeG2=L=WnC_*a#st_Srwjr?f#gg>vTBzZ7xo|UA5
z2gx3!c)*WKX8EOvIypZ~(>OqjwW(ku!N!8=9yAe>^~HlW%_Q60gBB4zeX*&v2W>nU
z?7<KZ+IrB=1I+`SHiJy<J@9()$0$>V2X+r8Rk0N>WN~=FPxB6gOimA69+0>NNjyT9
zFR>~f(2_|N;uG`>w#`-c;yjb#LBNBc2Q+5I5G#7{nKatbgH9gw@}M`vz=I#^CU*1S
zV-LD8ThIED2VF(1G|_}?`BslMb(d^U!5$v0oM2)V>cmeXSyt>L)j#!sMSVT!$7SVK
znrLDXQ-4uN2FU0*z=1*riCboedhj{xdhnwM!#w!HgKs^U;=ynaMtD$Tg6S&{Mly=#
zS((Op@TCW%JQy8O#tIoD*ylepZPL<h#PJ?X@bI;swuw@dB~Fq6V^B@@;A?UIjR*W{
z%~tY8*`_iiJXq+#C8uRNqauG2(;N@J6FwuN%=BQE@YxZ?6cs<$gYP*aQRYYVc|x+k
z&AUKImi;0R7R!EFBDh>|sRtR&t;>YhX<%C+gnMeGkX4+G99Cw(+?jWc2S0nT)q}Mj
z{N%wp58e$+*ysr#P$cU;U`%fC;Bm3C%u?Ls!DcDlB1nZ_?6)!6xi2y;2R+#C!LPy(
zc);(vI|TO$?iAc5xLa_K;9kMOd93?A;cwT!$w@-O>h$?L16v&S{4+1JhqwnD*!~nG
zIV|LeRAlxT_X~qiL3afwJUGb{#*6aa@IQ4kJ-Fb(MNgQY^5C=wXM``$)S6Av&U(Uc
zW;y4<c_F<|nVG%h!DXHXUKH};iU(Ic$nQk~FRpp`09(A}TzPPVhe?x+2Od21;HD@1
z>+0Vg{KI%~rQPD}dC)zN^|l9hIL2zxcRjerZrqM0CyuF_cWl+X|3(!4*6@f^?ZGn-
zo`-i_jwc>G^@JZEwEd`U%ZB(P>*L3~wqD*C|DOjhJb1~tU7K)pLwx%U@vl7Co2k9=
z;59e<!T3+sCJ;-UOJnJKPx$|wOu4+s=0$cda(I!`8-8~{mOkyMiO;wTKmXZ_JYMAW
zV)^~-`Mlv;{kNL4YzF3z;}5BP#^Z%djsM&(>_rhT%6L)M3%-=Is23%@;TO9U^M;?&
zQ(Ulw;N5k$=b2h5;iUyj9!(wknaYW3H^;*FpzS<ptKbFLs23}|sOUu{FS>fs&5O!j
zRPiFi3%eIpy+}W3PVpkui)vnc;Kd(R5~>SYy!g<|`#@3TlvdM=tE*CK3$G<O>X<po
zi)b%mq==<)Uc?GF3Hr+<Q8Y*Rg(n59Uf8^d_afhTYoZr*yy2&5CD6%y>)9vf?|wAb
z<pdr|N%o?i7sZ#PBzaL^NCPhhyt7Sdo^-Nu(yw)`wAp&v)X<BGXB%;H8herEMI$fx
zf;n4pTlF7IS$et`O*qUFu}uX@nt9PY!dnPw=|w9ctp(c%wiS#&;BMzdd*PRs7G-tL
zYWE#!4o+h$tJ4dY7eB4HxV`Xr;q@YJqm^033-`V-=_IA9pij{6g(gJz;@h81h9F76
zi=gn3U<bjDUOWp}3y-#NZ_-<5so2GfkAzSuFsbp!UUcWud+~!8J-q1Y1us_NdmKLT
zqL&w=ycq38Z!h|IG0e+%g_P^-ML#bFnJj}j!$spi_2M%jeGet{_kvh>mT7<(&}Lv3
z5p2`gHiQdT#>O<%i_gWFoK?OMgW*y-!i#n{EUY`yi!VhlQnwN7j`3peU)jF$Vv-k6
zm&T119OuP&Arl0tPh>otZ$|ROWuENC6fdTF`F4AJ!wF%SozhyI(n6=SV!xGcw79`E
zFQ$7z%UNE0Cxm>a7c)4h#SMm?(#|ew;ICWn#J<wKdKZ~Zn^W2xFIJz@<_fx7)#1C|
z=6SKui_$Mm{FQ3H7YjI(x1*VMe{Npn#bPg(c#(fX!cs4maWac1kTa!UGNly@la*eq
z;(k}c7XYmG;ztgItHzysN?XI>kJ7ezv6k!Q<wL`;-iu9MC|A`Yf23^iVxt!~rkMJb
zwXN0To1QTBo?_ZwFljSm*b6@Q;AbzQW}CJOk~nW!e(_?v7r)YZfq15Wz1ZQ!PA;n#
zyS=z0`X0`+7e|Hf^I|`V7x(%l(7yD?$wWSs<Hj@70dM$qnZI+7d+~6HndzVxhlKwb
zQ4R|^;>BMPrO+PRF)xmDJG5(j!i&p{`E@4xJn2QI7pJ^9E$yBYq<%)oS;3}{Z0Chs
z5WFZzn@gP4Svg3UuJE9U=-0fsF8qezO$N3X|42`0d0WI=9QY5Gth!P2^4%5jp5T2!
zUhbY%`hXQhVfK-b#|#)R9Lr3h?Up=4OwYaekDo+?(*FL%{KAWuUK}iE%dX%?G0Q8?
z6<4a5WyD15gGFhz+gRU7_N^E1gs|v6&wnwl^~A<3>*i39QwclCC74?<k08aoLh=db
zS1`I#d;tXy-zTuBkb=Srs+6)8QIMvDpZQZ%K`{lz6_ij=OF?Y~zdej9NgD-K6_ip?
zT0t2FWfed{MFr&)Tsft^IHgrkP+kEEQ;E}BtrrbQD$&Df?a{NS%JlZ40eRYKjSe?m
zNv@`#h5{CSprGUN#Oi`1A1e6xaTE!QYAQ&67DW=JAevk{lh{5wMuAm<O+l;z6N{cj
z#VNe=E83#Ktl-mqYUXM`#rDslj3tTj3KA65m$niW)KO4R!R&#yy6o`va4WZ;Cu*lP
z@+7gLvS5*)*np#c6xF0yIbw=}RLM3}K(`n7s(nstjTAIikglMK0!4wUps9jN3vF!`
zv{TSbL30Hy6tq;(S_wbhj;Y3|3au2B9GT2?WqD$oh|X+#1sMuzF1F2W7;RVJU6JUN
zEER_WeX;GY1vZxgw*rsoUcpx83N$#f)JF6vAYm&3g?Ge2V=V>G*4hlQ<Wu#GC%IBK
zhb@_cB8C)n5YkbwlORhw3+W>GkziNBZVK`pN~S>%1w9qaQ!rn_CklEg7_4B398J9y
z^i|MLcpnL>U*ER-R0+Q<cpy<he+ExN-Om(!b6Oi9NRrAoHW=xAEE1p4OB|};a|Oc`
ze4*f?J?{b~e6cIZa0Mfj@Y9nfD;OzcoZy#&qXb6_(q@d1v4W|$Oyh-2h?Gtg@|A)~
zLUtSRtio2lW|tIvt6+)(eodMsI90(k1wT(qr!rlX?*y5hp<t%)d4=PcWtuJ7ISS?q
z`Cjk`L6+|BV_l$NA!kOxdj*RWELQN7f^`a(C|IgsnS$jC23APnmyNyM6V{y8R?w_Z
zLajdaS1A~?-?mbaSIG0r=V}E%(zCq%ZH<Dp+$JyTjG3Nr__VfO!3G7_c~&UcsD!U@
z*v#2;TQ><$dYPTd76p9v(a#FDD%hsr7X|0J6Qiu#75u8;4;~r{b|~1XV4s5hT;+U?
zubtL*DcH?DHK6ex9w0Rm_c8`*rET$~ygjW=))RhX)M<%j&u9k}Y|5RO#ee6aaYn0g
zB>fO$p5N*foK$d_5v$-Y1xLBLt|s`;Cg@XB8aGX;GTd@ZLHrr*xPqv6={YaOlV59{
zlBwX7f^$4)3MQRaF#hNGGYZafm~$Ilt(Lg>N<x$MX*ue|w>hKrxnZ?BQ!X%g6kJlU
zpk{JsZwlXQe3|E!f>7?ns|t>JQm!eOa4DYIu4lAdgA;dEi@vGgUj=VBn*QcV_@C_`
z!CMM$^SpX#xx>?AK=?hycO`pI@V;Qpxp6djz?p2+;Gy6n!N&@!<*oZf@TnlP&lEft
z{-5BBi2hQ@D+RBGyou;<#T6@NQ;}VTUxlWIH&hN4ZB?{Wq5PGSQ$;QnxmDy*kyk|>
z6?IkQQ^SuysUnzPMFABBg_jm&Q6V9PRTL3YRIr#}aY5RYP*F0%OQ~3B<f2$6qLdX<
zPO!X+3PKPmtth0Dipmk?+lkq#s;DN}4^+fP^y(@;jPM#NYDRc16}5#&MU-eEF@o%j
zNl2WaS&-ec2(hZL35gd>h?FKqMo~|cCW1+V^&>V7gd_{52&M`)6igFrB-mImU2x9C
zY)yqU6J$@C3u&REWkhKuq_v7RLSAn#OtT$1tnF3Y7-sRP$WXzr6Lvv|pi|H#=vKqG
z?Byt5m^NN6y$V%@^>RFuPsM*FELofn9@JGBD*CAC%cWnQvTLo0DWHNFR1s3qL3l?M
zT~vIeqLYf<qb;2UpRYBMTTYp~s_3cW_p|11DwzFPu)AOn!9R|fE`DmF!6zzuiDhp=
zDhG#I`biUP@zcL;VN}sSqI{-efbfBWgChE1A^g+wa}~o>#0QZO#1|@tGxB}Vd>El(
zq>8;N_Nn+%#V8dExS%RVs~DqVs)}hU#;O>n;%hbhMgyktLcS85AUKgj<~_JWwMh}1
z$wIylTE2-W->R4r;U_x9PZwUh24<__FX7**m=P(RDP)$4!BOeH2i7@i_^BpyMf_gy
z2f=xQY;?Yge!p8u7O7aQVugy8Dwe2Ns$v<VLPf%Ylo4mNAqUd;tV)@F!E)kh{NX|t
zeraU8tGGZa_NZ8`;zt#0RIF9;vx=?KEC1nKKdJcaYW8)KT~CAS<_&@yRcunRS;g!f
z*4_)PTU7k1TM{mW`Kv48yX3a1_(f`wFS-=JUHGp&WO`Y42<{Y|UDLXYJN-{H_5L?4
z{M?*$Cj9?|{VIM_aZAN*6$cmtDz2%xuHp}s50x!-Sj7<)2UYB_#U0|csW!`>f@P{(
z$yZwwjFIttzVTlwjz;=$OvrH+CnCy8A(?`wRGg0JXH=Y3aZa-51=o+uc0t8O;g<xj
zsJJYIU9Ep3d>71B6<Oqlikm9_R`HJtzQd945$3q~Riw@H=+$R5zO?ti8SRdWyDA>4
zc%<T<iu)@5Rq;TDGp@<Hht^B^V)$^;THP$zWBO!_R;rWvv5F@u8u*ax<I@ov@DlFd
zZ%02>@l3^Y?o$;nR8;h#k`FIcyi$?Vhg?3qR`Eu~I~DI$yjAgfcG+>R3Pavy5A;o~
z_C;!o31vH$k8V1mY&IXV`_OJ#B0t1)_|R;!daGG<ZXfdaP|k<)KIHXb@9mr=d?@Kd
zJ|FV?P{4<RJ{0qXzX=rbVY?+)5g)#}8dcbb$*-bFh($$tH^KJnw(|8K`iuMU_+b=D
zDIew!v+?B!Wqc^@L&dpq^=?HGPn^-p`cS-WG)bxV*(>+}`X3(d<dk<&d;};-Wgn{e
z5amO(4^@4r=0go1YO<D=i#_?khw46LTM<W|_kQAsK6Gjmz4U5SEg#~{xoZ1Rp=gfl
z^Ah<?S{n4bpBUpqtPeIH;(aj5SS(UK&W8y*lK<M6X!e0P<AbE8y=_(>`1O9(v!nzc
z5`C!a1K(Rz$A>2FIOS*}Ujb94W)hpOCw`KA{GlPLKD*jBx?8LI%f{KR6^Tvp@y?F8
z);^G@3N{o>^P!OstqR66HTEGr!khTeG{Tz+X)f5phn88o;Guj)S+NZl>(ivkXX~})
zQgRi})@v`AA;_#<h(pjR=n`}bdVKH-Q3O>%*7EtnPjVp9eJ~h%8kT4X_z>g(HMG$X
z@}Ywd3w&7ULq|@y4+DJ|<U{Y?Nu7P@?+ZWkwu=uR`LJWAwW|*w`_P@P3dVI~X_~cf
zrkSaSl=kuA>kjcf1wZkjmyq5*yg6JZSLw9!_icTBSlKYCpCHMnKCmvyXFe?YEoFcp
z$%rWHU>}C~aQ}=p$p^k<XQ&UK`|v@5r1vGVF_8?D>=!;ftQkL?p8`V2NBZz(gpU$3
zT5yaHV}*>1l#XYR2%qS~S3>>_#nS`d`7)V3XYl**EoY`?!Ym)A2q7;$Cz&|ahiMUI
zx{&V#XZSEPqR&5R{br_VwhwbenJf6c4?l3bwYJWa?0oK#gt~Od>z|2>xIhd!4bi-G
z;<1_ko?YU@QXiK2u$+g3hRPaNaP~NFe)RKWl@F_Z_|T6Ue*Eae8Xu1PaDrmRxV1j)
zWRNS-Kl!lEhxI;eknFF58wI!fu*rwb+{II~(UM<0wy>ew(LW1r72M{-FG6k&4SzGC
zS<|W6c1ZO~QfrqFyM5Th6UK*wJ{*#weS*IU?iU<bJ>0|rAAXlC`5!{Eoczgs>cde{
z4htR;955~0rD@rY-;O@U1(Md4U$UK)qMJVa?L(#yr+hdq%0(Y8`EbUEvp$>?g{_<y
zLMP-G{tv&*^_`mSswh`Dw_<QjveyM~2xfKfA0KY{kkgM`e%$uq4o^ZKp7?N=ZB5N~
zUo7u&@+0%Zw*D3If#5?Q9tq*pv54s@&v_qSiTKQi=RW+$gH%dih)A2P>}wz1MU*!_
zycM3+E84u5Y&L&*p|cC-5KPUUn%j>&eiZkkgeZCa$nQr1;raZyJ1tu-M_fTairk4V
z>_;s}96c2BgA;Ye9Ogy*C@RLq1gS7cN(!&!M`b@s`BB=BGLh2qLdpu36QrvOky7|k
zF~WQP)t;@>VHH2BidfB$>Owy7^DeM(>-S|U=%FV2=7&p4YYWEtVfG_Rc(fqxWBiDX
za1-sfhy7dV&5v|Hn)qS!Bi@fRKN_*yQ?n)b(I8@<=tmvDM3-PaK?YlrAN3>Lm>zbR
z>_>{!O7)|mAB%tapViD-j>djK%owyZZt6!fF>WJHnhS5`M++e>1+(@Yjay5W7267-
z(oRTwKQe^aBf3L~(~oJ}!mYUd@c7~NL-C`lAKm;={qTuR2SLA}?uW+cy%UbTtWFw!
z1f+;cP)JCSZaYTwPJVQb@Ge3=5@Z;E9MO9V>F!4lAw2~@5$q*M|J-QAK9VK>)Q|pt
z?D1o-AD{U#K=dVk4D@4=ALIR);KyJ;hWIf$;$f&C!~FQdkIzNPI!uN$404&j6lH|q
zNWs1nbF#Tn!n5`@vtuMX){k*QvJQla!l(H$-H)&QnB>P~QN9&qt*`y~Cc@e16yZ}N
zN>%`T=f_+>zV~BBM4u^Smf&o`IrJ0R`#<=xC}KI!kNLtE2rd-N3a7;pn^RM>E%jrW
zAItq%A>z+|tQ4|VaFyU{LH7AaA!`Kb>L)+eNvvj_-s}C?AVnJ^_M3!k_G3##;mNbr
zk8P6uMR1p&FKWlH!nt{O2w}%|`tiSK(QesU>;Tg~Kd$+4-H-i#{N~32KYsV)v>#{u
z_(SUc>BnI|4hpCJA)XJB`8ndpF+Yy`@mHkus1O>Qh$xvtP73l9fgVmpT0bk|IX}(|
z$#Q$akIRy!<wc%y!tZ6YVfKpftAgLl&b{HsO+Q}v@lwRU{rFeNKYrX25-rEeZQ*x#
zmilqe56%Xw-xo1!P9AXM`|(JW|73uV{dgkTr-HlXxOgV~xtzW14-?OUSAM+qBd3O3
z8s7Nv){ksj_>gCMC-(0n<E4@n%-J>Mp#7cyIXtQ7)=*eO5viC*LtYK}gy+{#PzXN)
z3TXd-<_n3)&KK2COgJ=tGe-&G<poP>C?lklU}-_N#WSI-@N$A4`M9TEL9*OC6@_H&
z#}e1fRp|Dbxw>Fg!D@mZ2>!P%{zD-(G?>rWm}+XMCA@Y-VRim6UFfV9qajv<Nkg25
zG!2btpuwV{o`xh1RxSK<Sb~N`4K@u8?pxzE9NJ`}xFkCH<`7FA4Tr~QcQ0D%YS?(y
zT(C+~p=euuvD8*u8j@(Jdc=|}NRpzVTTW}LhWGj6SnHh4a;Leav4(UFEi|;$&_qL1
z4b7!pdT7R?)c9q8naTU^wUnD<X>{N8_$TYuSX(QxVe2evtD&6+gI~@ywAYZK!LGr<
zuY3#4e2e{2e@f;Oi&H}|Ax+VsYH;x@q6SY^YHjm!dOt|^w6-yk+}xVr)1a}mwT;}b
zfw<U}sEe{UcPjNDzx-?Ht)Y*G4jMXY=*ppKm|3b(C(h?TmM$7POLpqhMif61k$O}@
z+Q%BYYxqP%&9hn$@k#8d;pg}?dfprxMi%uFgI2M&z8an#kL5G#7HH_F;ZqI$HGHOF
ztcGzK251<lVT8u_h+&Y1!5a3>w(&B9MU_&AXxLgHdYFcx8kqfDkYsz|=r1%3=bWF_
zp5O5sXSI)C`12Ks{!+tey8R;gQkB$E8ou6^e7%%5hK-)p=#w~J!vqcAYT>IIHXKQ%
zt1&xLCu;ag1IZ-8$%0=Cej~`DffcnW8m4NPreV5<IU43__)f#-LeVod%;M%M5<Nq3
z^<)2R4Qo7F_rj?o^GCB?7JaXQBbujSzK|a{frV44uzK_LHUv~!F4V&RN?IiN?N8x<
z?=01@Ohf$u8U(PMU;Z^9fQkXE)Ub+0I+p9<f1#}AygB1m|C{_H+tsjE!%rGM)KNpn
zIt}YJ9Mf=I!v;pUhP|9#4K+?AZql$r!%hx?EpqKRGiSAJ8h#P7Rl}WOwv)qb3(soX
zHT<gK%5dAZvl=VXjQZ5UWp`=V!-1?Qzgrw$lF~P4wF=FB`!)Qg;SUW5H5}lm#nrHE
zIm?{Wei!2+&3uP6(9dBFM>L#!n(I#u4d*4+X;Gg|{3Wd)6^uWpwI60<XHL*w!xIfp
zHDqcyrQrqxTf=D$XEa>YaEY7foOYJpG@NHVp9}Yv>4LO4D>E@Pu56ZaS;I9A*EuNZ
z!&MF>RG*3c`SP5WzAu%e*U6;6IpL=h?`pWG;U5jRBzv0yHq2IUxb2Q)X~6EyJ*VB*
z@KD1e4gYF*AT2gOp2Vr3tG)~T+lJX__L%$n3mYf!nTF>Y3h5}U<39~AG`!=HA~XL|
z!)qS<8eVBg&P-zU8hg~YJk3UgCt=e$&6%0RwaBI;yN+Bsa_h*!wLX!UQwL|5rR@1}
z8G9Zbd36-fQBX%dv7uRhA)E?!iCHeqO)-9XPAj6LsE!Icpre?M;yOy}D5Il<9$rDN
zQ7IuM1=oL)%1OwbnMgnXz06)#M4FY;Q9i=i=ZZQi>EYn{Ku2XAWtW#{qg8bD9A=yU
zg{`V|rdp(L+GMr54i15%9<V>PrjA-V2I?53qqdGH9jXqWj%Xb*I?{DC(Gjb|q$5d3
zeI0Q+%sLWuB<ir}VE35fby#)SBulqcTAfNH7CWzTf$B(C>+0c9d~z$Po{r(G{7mda
z^m(m;juaiKI+CS_#f~R&=^N@u6K@Pxu4W@0g`VZA8sl%QhZpzVMnAEsj%GUA>&Vd2
zTt^EX9kS(YqobvcR>HY`I1jDG4}I<(9$t&KtTN1&(#+S6?KbmK;Vjv8xOBL6bo;{Q
z;N%D)=Tv*7^Nr7IiVm;v@T{_j^AeBO@%wdXI=bliNQbV&V7odlepDeKW8v6?GHPyc
z226;?=fnG@qmE8GxcxipSh`Ft_bgYNj;V9TBzI-II(qBq!&S(Z^JA`{j!$%ac3$hQ
zV@r&`hajVZp4kWb?4^UqiS4U{LDEmhr(CHKHcl6(cfxtCKdb9_uqqr9Oar82T=&5`
zhUoZC#|#}qb$qU4vW~AA-a5X}F+s;fv0Qv!8?Ix7jDkaE8mZ$;Sp_b^C>^6Ce2kE>
zg5w0o3+_CxeI>5AvnJ_$KeeCTV25wS`oGcft&XXB_)wxqhf`#+I5bW;#c4XGOBkP%
zd215mpQ+<}9Y5%prDL{^ITFdNJ6D#5TYyfOoyV*!;$kjMX5s=J3w12g@px=9qlm%4
zxtcOAnU+iR@KM7<V5!(2+U;MVV<ji^iFu5HRXSGd*skMO9Ub?Ze$=r>2zjHQ&1;4K
z#9cGMw2n(TIg#Re9UF9zFm2SaN%&^LEfM`^AzKBv3I3v^ao2QK*`Z@6cd>yg26pM#
zt>d<iJ3990*sJ4|j?+5!>DaI1FC9m9{HEi8jzc<sT)^)-{?IW#J$Y=pxpM2|KN^`!
z`I;Qm(dKMjlEXTVaB)}0rmw4CV?$w*#%V>Fj&UPw$vD9!=IU%Od7Ot**=FyGHtW%&
zSWPwVr-|lFsWo<2>=_+rbzIYNUB}|NInU|1q~o%V^Exi*D7U))!Y#4Hi^5a9O|Gnt
zy`tkP&yx%FuI`PkQnX&-m9ZzS#ct?$dS1J!<8K}#`|IcLR*(3Pj*-JMZi#X_y<WkM
zvBusacXiy;k<&mf1NU|OtK&HjbH=ldhdQ3nkB&!du6=S)iF>T$U3@!o{cx<QRq~!T
z?VfRQcg0$oCQm5UEVWR>7dl?jM#p;@(JLKqxzRSnzShzG`*uuk7=EpjNs7N~N$ge1
zna$u6b?|mb&X2qehWr*=ZAtwc26|00$CqlC+dv)zB@C1_!n2y!Kv4t54CFJA-#`Ha
z7uUrWG*C!Nmp5uxeRbW!25&`aIAdV@A_kbPawL|x%hc}l?6}Qo^@<z#_iHm7DrKOw
zfeHp-pp1dC2DC%P${D!VtX`F`9D{DQ<cM-^i7iiq3tHFJ_0_`7o;NL8(Lf~w8;-_i
z)G0>KlQzUwHBilf+knTw2W-(meFF^)d}yGC0h56^12qlQG7x1Tn#0@@d$m<^+6ApP
zOQ#o2c-8XC`ua!r#l{$jHK1P5ny#uFnpL<^bQ`k)i-80Ki3Y3&&abL#GY~JNM%i`@
zu;-Urp1c}s+8tZRKwSe#28LaUZFHpW_x6TS<(kzq@W};@WcAV#)mGL|HjrYVrGZuk
zQVldT(8NGf18D{t8Avy9tZ1`#<(e@n8neay^+#RMxU5|9n0>L$3^X^;!a(I!v4=k`
z(z-;mX}`q&yf3y})pna2C$~1x#z2MvyR3rkLXoxx+Hv4-TDLba{es4YTNz*caf@~i
z?zkhdoIRHir-3a^>ox6X)><V`QR2J?6a#$?^y54j@EPcApo;-Nm&QQQK*+$#wXvx!
zl63=f_QV<n0tWuL*s|P)`f+ROK3rX&&N~?BMB`nt9l0nMVpmNv6ZfpB%b|T_peyHu
zp=F>OXJc9E?gn}o_}IXUb@ds~z5b~4lZ?8jfm12T?b{~*enFeJvSn`reQ47<nR|z0
z@w80->|*Sv2KpNqYT$DNpBWfnV32{q%&v`H-67jRBfMWWo{8nItk^I)v0<?x1`hNq
za%#MpBOS(xGBCoxNCTHIXwxpXe0o6}Zt%a#amr-#mj*_0jn2l7=EUxd?UAR=_RL&w
zk~3(QawT@GfpG@L8<=3=wShMVCK~w4z+MCU3`{aG*}xA5<}nU`P59ctR0Gotbg)>z
zF)+4v`nO!lap_YSq9alcq$Nx@@ST*-VfWG!W=QEQ12ct`x~S2N_Om(CvS~D!%Oy+1
z*F_tBZ@|$b{btU%`34pk*k<4t?mGjE*sGzYjRqDA`O&}{AxjJ_6|zi_Hp_*q5M0Sm
z0U@ged80ZF)(R(CC*-I9W3Zm~E6p23;a%jLjPTv@n+3NB{wzpws{uZekz~6VH;A_G
zH1Ml|(`(H;A__})aYCZ4y9G)1M2gN<j^A(K5|_!qZ=52o5kt;ECL_eaLGJPKR;CjM
z4hjD=q8t`-#K2!djz;ujLXHdesh)n)z?sfz^kAu+bei12Ic{(RXT^Y})LBaV3q0$1
z8kh>Q787-H;uQl|d2aJqGjPqobpy8y+%|B-!0Ik_4|J*fw}G1x-ddD@BzvPv-8%-T
z+~c@JzbjetEQ1FI9vXOV;6DS8#K~g=PsE0nbpF)9Gs)5kvvkP1FW7XKx~~LZ3bH86
zfZ4YO-Z6weHI)kBJ=Z9Jf&t{n6_=eD;5|F>`2}+ZkVgoWTmj@3o_k>9I%89)<P9L7
zD7K3ll>*{{dgC!Eg#suXz!zUxiwG8zqN0It<WnpzB1s7$B?Z~~i(Hn{fpA2X5iA?P
z=IRB@2`?{LArO8z0}Uz#@L8gzasX8VNbH%G<4ttcK=^O){l7J;9YD1JJ_w-LgTmDV
zs1*qR7mMjb{+(MRrUpF(u<&%rH+9Wxy2jr7FS>s1n5Y1v1ANay*u(FhJj7VxrT{in
zPi2Y|Vh+F(QLF*jgtxw^#Rou4kZhu09l^Q*)C(X<c&D$``O|E4l^j3{+X^B!h|~ZY
z29Op&qX0G~CGFUkW*rdEpGq4CkRCvr0NMu7B!H&$AHe(~ag|!zng!63bAB&7dGi2T
zu!+{T9Jg|EDfvv}Rsj@GGyhT#9qwnR-Y$Ul0qhH4e*hT)*aHX#5DM^^vN{6r1mF!|
zK%CVXfJ=y5kV>g#R@x{5_{Er94Zz2`7quZ5wV%(Jv;byY)bs#q6ifFNNH+oqh_d0L
z#%zZGItDP8a~MFU06GUSJb)1abP3?20Qz(70_e)ImyYiqKo4o6TL2#iK+jCP2&88K
zp9Ih+fWDmPcL}{Xu6GH&19;Rd@vn>8`C^F_hntf7iSjA^o05O6m~^FZBkFf9Y6Aio
z9KaAp?<H+u0D}VfwQysm2T#+=coT;PaOq6rVO)sZO+F8x`P;O9A2#|zL>dI1rj6uq
zo~BI*U}6AY1~4js(E*GJU_4WkB&M+ejAPI;{Ax5}w%R3)4oQx7DfCqUlLD9)z;tmk
zIRN^c62R91d?N}izl{*KGF1#{lf#wp9p^BBSpm$JQO^v3gXNG<Y&8+*a1<4j$X{*G
zK|SML!Vdw=3*g59)-XH*SP;PK0Ct|qu`qx|GWL}LEDnGZvRr0hiHMw&r9zekU@hK+
z*%i_~j)haiF0Be+Z<j(OTz9s+Hh`Z3SQo(h0Fp0-SD$lOZBp8X05%4&gDrB$O-kFu
z<qKdd_pD^8Y!TwVq>*o92PFGTq;z`#jA0fLdtcJRSN^cwNDS-_V2^O>Sy938_$`0~
z0hA1)R4^RFzXxzKfXo2jrGkS29O8DU&}8Bz?F9Euy|h0AI2^zc&LL+zDv`=jE<sT>
ziysr4<ANy<69T5>C6}~Q0h|utMF1}YI1|8GPF(<Z12`AJ`2em3a6Nzv?Bpfw{3WfH
zNoBgo6UL-o61*&UC4j3!J}+)z5shyI@J|4@0=P-fmo%oo#R*A;%Ua@P?REepOf<e1
z!2JN8Fr+imdJRbam*Ek>L++R6jeFI%QG67@;{a+8OlD%1iR3AFdPdqa!3%FJ&ja|6
zU43KOHZXZckK|VYybhp15CwyH6Tp;n$~zwW0lXESe|_4AhtsnK!yAn$uaNA5IfBR;
zL@wdE1sQm>$rB7mW|n<E(en#(1LnVFEfhr2Ac_U?PY+AsAc{zl`*JvvIU;tccn~Fm
zV8^(!S*u(+h%!NZ7{u*Hjmrj6E{MuOR0*Pd5EX)GaUo$!wX{B$wTb*kTM!jR`LmE(
zDTwwb6qXXJ22m}D>Jej#_uDuAAc)*$6Uk{jvwV7uAZi9tD+qc!*r+jemevj;D#%w$
zG-isH>LjKh;@IsVcu8K(dUed?aq*Lv#an{^^Sg;Ph#tAaylfxq%~O`dAnF8xPN>)k
zb%UrE<m1ONErg^X>Id<45Z?sRAc*83CIm4th!h_FL39nGTM!L{NDGEPi<<<|hy!0>
zP7j7(Oy4*NrlprPDsOufrqVRXm(-&<I~jx;gfEDeL9`0O9)u$ZK02v2CnSh__e^ah
z+g7lhV85#-8e~W*4H^}<2J^-_xsMi`y+M$>f^ZA*2vXsrnG`X|SHVUzR`&-H3ZjD;
zXhG;f7!0ZjmR*-MKG`WiU5YM_GqF0Anl?*EX}yzR=ODTS;kj!1NU{fJn#kFikAvtQ
z#Ag&at3mV(;*((bKm7beYw$7$6G<;odJFamqHhrWg7`Fu{-WIYUhDZ)%%_#(mUlFD
zEE3DQ1A`dEuHMhiYwZRHF@#}!%=BdtLxcD{h!K(<CODiyuE&2NoHoImHf94SOd})8
zypqwQf*38?F+q&u7;lCj!#*}b#s~3uNjejCUOW9&5R-zK%mo^wy)BrWelx)lo4||n
zN3Dtfma!LvD+G54Q-hesZ4yH95T*z5U66Nl#xLi-;Oa9Tj#}mf!`IW!3Szbp@(yoJ
zpR}@&%njmuv6*SL{1C*vAm#_LAc&3Yt&4+L7(`58%f-vu`sNmrMUtiEk|3^*v@R7~
zCYXH0LS;n|D}z`?pJ$`43a$>~#~{`Ou{Maq+?!t}{}jYJ&cNlwJwdDwVnYy}7ua^P
z#UM5XF>;yhSN4CgZL{E3!7a2@)t`fSeOY7CHWBy!n*589?SkJw^}nBQ+Y!XDZvMd|
zl6P@g7lrRM+0C81(006ne{T@`g4iE~rMPy02g2IK--1~5neEJP$wexr{w@l|KY}<I
zMCmKqp@{OQkdljRM|fBTag=*Jh_gYQ3*vYXC#3b$L7WUCV`XBam9|V4HB+lMiY7nB
zot2SFawZ7&>P@ryoxA$a2XP^YOF?uRk=$&J?IK6_L*kb!6SuA8+u@@x2XQ5cK6xsz
z^M5b2AwBw95Z8ma5yVY~Xb{hX_?u0nMDr$>2i)l^ZT|#uizi+XcY?TF)_<3KGl=ag
z5?_x<o_QgvjjG-c;`Cx0@2vSZh=<RT$RF|qle=slG2|lrNf5hN*q%x@`ik~n5HEr#
z90EJ`GKg24$q@2{@S5>9A~{<K*+Y0EoY}WQyc7ODqHMGHxkfoc=sDk(D}<aOFv~?D
z_G%Me5za>55DJE{wQ+R55b}pmAOzl9#DRZ5-!^lAN?s@w9!Rsa=mXvSMM8K{*3Z(S
zA=F-Ji+<vt@!m3YS;CC|$t6N48A7QLN{3J;1XBocA#|Q)DjPzT5UPeyE`;(SR1mRZ
z2!qd<Sc(w%ODkWoT`7dh5%F|y%jueyY9V|e#!(?u4<Y@ER#URv2p@(}BZOaa#69b3
zoq69>i*xeQQagn1cg^%UwzQ2HEygh+#0shKD%_ko1WO2QM6rfo3n3+h)DYs?v2~_8
zA>19)m}UtfB!;l(3)7gg7V33FsK@g^g!&;g2q8IyU9Ze9u3NgT2>YZB@w05<QFy<z
zG-OvpXc7W>nmB9}LSxBZcp0{5Y8pa|5L$-NOnNdb&eA-DK;y8VR-y2IZyiFhk~Z6G
z6M62{7XBXHHiULE%=RJJ+4I+?49U(MV&d2xAvi@mHYDu--zHWMTMXgr5We9U|F!V0
zJtc$(Uni;|_(Jf9poK6ngh3(bAs8Wa4WU~I{Z=FfLg*O6=z`I~5Q0}Urcj8VM_LCF
zYwS$!#6E{`YFje-wA!g%LimW|9ioy?tDE{US3xWXgwP{|o+0!Jp>GJEgz##*jox|*
zS@)f-xA-qtAi8mh=za{C88)WRLikj8|A^9}dg_!b8vC=qPAaPp4q-?LBSZKygrOnO
zPl5c=Ur39ehcJvoZez>aFq-zOw<Zq{A=h-<2u@DE=sJbNX;cVfLl{T<5XNu@T<Y9H
zVPkqO`JHWi2w#OTDTE0O=I?A11xb3&vP}-5uBieoIS*s=MPF~P@`~SYLs&V)TxFCt
zB@{kyUA4l0Z%z;4yAUp%ZoIPtW`r=4@!tVeJ787_vqLx;LMA=Dvd!VPvN!sRVZXpU
zSMYnm9|Y$K&KF!DxKMCW2#bX*5nLL=vJjSsup)$=3`_PWgjFG|4`G8CtQK4w!jB=W
z2_dgJh0QTVDVCo&d(sm=9ANZaGw&AJ7{VqVHQZStYz|>d2tV^=5D#%J5_iU=)$1PL
z#A<CjAf7j+4oS0Z58+oS-67ceymiYGQ);7xZTGEjN11ku_*)1ExRrSFgs@MP{etYn
zz5?N!_<oNM-x~0H2nRzrBt?G+@`n09LpU75k%;}BGYT!QpRf^&ev^1KgkvEbXTVgB
zJ0X~Os2+K-Kf`z`gl}ur@0y%i<dOMw2xme#8^SrpLkHyUfb(3S5N?NXCxnY3T;eGd
z!r!6rQ!y`d_L^Icy)%<v3E`@U*SLs#!%xM$9>NWtf!8g(z=K&@{u9D2sq)7jOSt0e
zdc?}(O?TP7?scDqa4&@WA^aP{wT-5SY_Web$phK=B#%OP%=00y?MVnvL%5vw|9H9%
zC@G4r3(K;*<RmO`5ky2_Vbkm`VStq-2Z;i*P)(RTJ>3%)35uwQAVDx7NJb<`76egp
zP>?7Jq7syxbI$PJeth$vQ|F#ruU=KXdiAQhr@N;+jhs3pi;k<i{cw)~*}v)iet6K2
z?_)_X*(R&(;Pi*WA93^VhZftC?<d$;^n?R>l=ieAo-qcNH_qp<^z#eG2r^s1fe(6R
zki<D~W?*`82TC{)??8eBg&ZjCz}tH>iaD(9g`+Urr5AC4Sk!^cE3qU;#x-tXG%D#p
zDF@0rP|m?f%gB)-mnLtOR>pxBgq%-p%xt0q<sGQxz>5y7yp&VH0XXpGS4}HA;7myW
zt4tdIout3sn3Bp;Yg&R;i)qTFoT?7I>_7&)b|C-cv}z8dIQaJR2Cq0!-GQ_#MP7Aa
z*6`#yf;Akd=>WgG%~VTBk^{Ac@EbQ2QZrdJ<9nv1vbqDm99QWasSxr#Ytz06W|3r3
zav*i|YpL}d)}pQ}`1Z`W`VKU3!0xbKY2Ms{77jEN-bk>qV74F?UK7&9ft;wMsRPY~
z7adcc3N0OI#kp``m;<dHXybt20o{SN4zzQirvtqlc-?{a4s>NL2Rb;=(Sa@w>#Lni
zogC=Q7QV{(d!m))XD&}~w?0Yv2L1nQ2ESkV@u`gNqMYl%n?hc!lhuP0Q77v~emHef
z#`OU?$^p%RevA#N)!V@@#amzL<p*l}I52p-^<mKM2Q#Vsmo3ZbfX4x^11<-cbqkW5
zKCWK=JF)lF44=dL+-<urGZH3c1RO9N80f$t#*YI*2l5=~??A|bumg8eEt?}8>6aNJ
z=O$2}WPvS<Ld(25S#NRRn`{FZmXk8N{gyMBVd(&^de4D(92g?Q87kFh|C#Zw!}=~K
zO?_ikGq%9*!@e&HBzk(*hYk#PV6Fr69QeqA5e`h^w(P)22R?RSoCD)Ud6WZV92hHu
z8tnj^VuNg!4PKAQ`GiyOTMmu+)Pc_!zz$4grw)AKzywAGzwB(wV(E07HFom1|IXy6
zge&oDp_4N>N0YhvJ22aUZycEFz%&PDG88$p|HVvabUDCp3a_1<!S4vyO0&AVaWM01
z&aW+t-(%&sgPG-blWEBu2go0dZaRBR)A<g3%O%5Q<-h_57CP{q1C=wg7CErkfn{81
z$yrOpwxxoPY}R+2EmNmuv`on&S?;htQN6-}(RH%wuWH7RKdy4%2M5+UuwJUHriBMG
z)^I8_GJbU6CkOb&RVIFnc&!vM_Nc(GrfzUxqu5q?TE^ugO*tw2)b(Zuwm7Wg;8q8U
zI#JAtpB<>SHtiP&wmGoffnOcC;J`(O`s|b)^t=OqJFwG%T@LJaV2^|ETf-j?>`!Xk
zXP<4a1HVzYKk;hGn0-=Z@NOF`?swpT0|#q2KFGbIUEvA)Y-e}d{&awtv&T00Z~}Gy
zao~^x#~e8Bz+ng2+7TMY2!EDwC|~9mPc!~`mhrF15AIL=Pa5y-$T>k*BsD(iz$q?I
z)%b_Kw$q%ry|y;{Z0ERnvJ26?5tI4nZrj$~w)2u@caJXEE;(@7fhP_;b>NBvR~hpT
z+;!lZ1J}79Hp&<@sysDsIB<&_*B)E>e3>^H?I#q;Z3k-YwMF*Y(w}AAbKt%M4;*+%
zYj@jd>bgC)f%!8J?y`+=Wj>;>#$>Xc$6T95a!8&zkk5&NPQ*Ep--#F}Vx9PPa-mwa
z8)xpeon73dfD?b^7A(ETMvw7rJn>E>I8oS%B2GT(*O;y@<OD~`rmp1{<Y2oy8`C+q
zeYWCGlyD-=iF7AQI;~3_<(x<qQcAG26J>;0cOrz8b@KIS)_1$gJ5j-j%1%^qq9X0d
zUjR<LSTO1Jf=N4K^Hp-9LBXVPdm6mxL{fZGT_nBaL{(9!>BP%IstdA8HBo+r1FRm)
zTCa-S8Jn+$6E*V1P=Toy+Yxzf!8(G;f-FsOA~ni?x|_es31xHgW&0`hY2FEyA(-hz
zmXODtGU_@}&j}KydrMNN*}w_A6Ah(SBPU*SqKWXvg4u$dx);cCqNx)HocPm;W==GB
zVz?6@Inlz2mQLtS1Vpoy6PgpfooMYu8;+t&N?Rx1aH6Xd?WiD<_D*yX(m}AJAT>*`
zC`Rn;M3<=K`Vvdh&52x*bQgS6ut!wK(Y*k5dOFcdBq}PW&6M|%?3jlI`#RB2xI@t6
zgj0x1&@D*)8GU2D!hM4NsQmDz(kwM3+usQ@Dh~<?IT4OZB2MH94|KH*c*}_ak{#&8
z5Fvx2nuDEqTlhOs$<~Jj-xWU8iT9j%U-&S=528BVmK6Ii%Gt#TCq_Ck--&OX_}Gb2
zQZ&Vh(L%-vj*04z74nJT!GZ0@JMpO#pGkJ2;OBy02u=|EQji0=k!PPI{Hv&BvXIA1
zicNK5n(*mP%#N1MaAKzLS%P0j<)arD`$qU2!MTF-qNNL#6kFiLLMJweWKmSU+=<1)
zmk2HuTqgLPAT4bDp5^crPJHjgN)fK&%5~x=ZUT~B9o1xPtcmh<Le?^XWxm+L`Y7M%
z#3m;;JF!J{esf|gw|(KeocJZ$!mmzj6TUqvnf$om4&gfmpSQeQ_@1cF-e@oTqLSZ*
z{Ncp@sHDio@&~!aagTCYi~4UT{&C{66IVpxkQ2v+92PtxcvSFTL5}4=Cyoh!Zo>)T
zC!ILu#ObKcc_C+<I4k5_R8B8li1Le0T#9nauL^(c#1kj3IdR>I8`08xPTUlJD=N9|
z#GNR=D<t>xp0w@06AvW&Fk1RZ2u*$J#53;XE^7nHCs<H0zaWJ%LJA1R3eu{$Xlc9)
z3Bn6SC3`oPFCx5XR8q`^;!$40^}pFKC6dxElo9fR3uU7^U%X$cobbe`q`V6igjbA8
z7~3zpP}zlZE}VCviVH8fFwliTE>v~lWfxv^p@|FCTzJI=y9*6nxIH!ba`oiuF1*S{
zT$mV2s^vnG3pIro>{Is>)xNe1bzG=_LZ!Qq>_UnQsV;0!sQtKiZK5NTkI0nf;wx6_
zv~FJ8=0b)GnJ#3xaG{-z6?e|4Q`dzCE}WQLhrFItuP?~#o(D-CPAJ~qb)8T{PpC#N
zOg^C+3ue2(Z$2`c<3dvxa$V@@LNgbdyHKccdUqFExbXc6wLX;D)rFSAnQi4lYufx#
zW*fn_g6#xf7i=%sL2%y*)lo<%7di`J#V$hLaA9uK2F$YkZY~g)wQItU!@lW44;M(b
z%uglua^dLhq<8A(cwA5}XfE`2p^pm=7o0Bq`$g@(9O<0e{a7@ic8w9WpSDh>kcq@4
z3T_uVZmL~jY;B^~1)mFk7jzfia$x{t!-X!_GMW_12)kgoQ1E&NlPM(VLP!V|D2%wU
z=voGO9=&bP=<h<2#!a5rWhu#917ile@U{!@xG;nPaLKwqK7LldJ)Il8>%veMrn@l1
zh3hBOi!STEh3~oWz6&3?(6)ZkFh)_^#BstubRo7~?r_161V;#t6#Q6ll#8DuwA9A9
zFqRugf7>ULUB4llLT1Oi@Tm)*Nf9Mq3HjWGFN9EGf{-r-Ct4w$J4yJ(Vpa>2rL`$8
zOcg@OG#B_j8IqZt9o}!cmBgj`wF|{gs&8DF<HBs=%&s_-HkS%Lk`~fqF3fZBZdwYT
zg_!Tcw=OJs(wKY!o8`w4uO}_0#D%jAkAk(Ay0A>-2alHe&V}VJ9C6|2zI9eG_FVYQ
zg?%opbYYbXYg}0C!VfO+QHmew?Tbkyt0l|FEq<c@g``nw1&Hfhn7=w-!kcw|m6q4L
zu)&3m!Z)#TA+%((3tOUms|$~M7NGDKk!*{~w@2kH+9AT7F6@ey?iRAgg}p+$)UjIl
z-Gx6~_{)W*C#;X(?dOW)LTg|9fD5(hH(T<bT<^D&NUBw;9rwU`V&rcZ_@&E#1P{4z
zSje2_wJAL6!lBDa|GMy>3&+GWX9SN6o^T=ZD2eVm>B1?IoEF?Tq&9_2<8LR8u3wve
zzTo1A_K@pFPd6^nX)bvt$Bip4Ty>$S8^zq1@_8ns_iVM)Ym8VIZn$vMg<CG%bKySc
zdTlb_#m98pg*#lZCvxu!Ce=(M@0u^=feZQEmi!@|=EAlY(jL3;L<qma%<NO)&jgum
zdN?`1=*I|ta^6<JjaWBG3JS&vG8-=>L9mb;g`@H!(Te<6RB<;PC#^SllyIY@8!b+%
zQf?IOkw(H)S|nuzSz6YOa&C04WPAL%N_3;|&b0DwRB)rB8*rns8`*ADa^poeYPwO&
zjm=9lD!cKrkSc;NxlvWfpLH{P6-=pDsc|(oUUB2d(hMqBcjIp~?teM;RX1w55klk4
z%c+!9s?;>ejoNP1abx-mnbb^nW9iP+G&j<Pq`2W+mXRt*xy_9XHyXHMcO%n{EH~=8
zQJ=#v(&*ijsxI5vl+3H0%yvbV)mpFgoJv^@#jtyovX0iu9CA0gksHJdtt`V{lcLsc
zG!c>`*wl??ZZxNJB-_%B)%%m1H*P@vwriUZTe;DvVq=mvqR`fjc5b}xMte89xbcP?
z9o*>XMkgt)`FZ2Gf6{9Fkw$%{&Ti0*k~vvj-RS1Vo9v~oHSm=5%<iI3&XM*IIg2=i
zUT!Ei-g0Ar8=4!v-SD~LcU!N)>BCv3bA<O5>?b(;QL;-2bv$mkh5s@pnOP>UWZgZR
z=t4|Ry~qQSHQe~;<us}VIa6+g-H5oY)zROLJRyVXq%(W&-{c`z(vEhw{@*mv&9|=?
z8|21dHw<qw-?hRk&)j+5cH<p-+YP=WaST0^*Wg{@Lj~XC+zm>8Uy$SjA;Sbe6ddlx
zN72#|Zj2QEG27f^qy8v2Mn_BcUrQb<?SCRTPLSP=cjHsxp9xMrsVJP_#+QtuL44gA
zCb}_+12mCm;wv{M)9pUA^kIq{Q{DK}gM%JSV{me&Jm}%U3^!(Sx;=Q^gIR8T?M4|7
zUhrVHjEKWrbUEo8H|Dr8*Nu6cYd8LNW4;^Ty0O8HjczP(W1$->-B{(uA~zPhvCNI{
z+_=%e-fET_R4HW%BcF3xDP@GK9`Wt<w&iZLino*e(#XET4dVCob1(a{lj;WsryFbB
zSnI~llj`J2^<|}$A8D<t-cOv(Q;MYQDYedx^=^DHSEZd&txu^wr__*BY7^tljX&Jj
z@5UB4wz}~%8>e$lsYR#MhEs|??mMNnx$&zTIo<8s-8gkhF=ZF9?{MS&IQvdF?wnG)
z1a}MW5!@^Io8Ue{s{Jmc_-S>3j%AFwaflW+wjXqZqqa>~e{q-Krg2)mP|V(;QVOv}
zPkX)7icUDpoy3j03HJ0+iuj)!$Jm-1cilMd#tAnrxN*^qleCbb=*Btv`A5~^w3_p+
zI_-w*v^wL)u+xg<e6D@UY4rn%8^51c)y2b?+_=su;IZJey3C`18&}<Ua$3Du$bOCc
zULiXrL^_0jRJ-X$@)>o@jizVRZNVOA6!|?j?z@rTK_L$wxbe`90v^PA@W_qFZY)2e
zp1Bb`qd2tDXVeonKFn`_N;?zm)6S@T9_07n*E1@{gWG2m$>B4~+0b6lgM_ozM8tVe
z?X0q&wW`N^(C+5~B!xXF;z3CdN_kM!gJK?xKda`RRUOZ&;vST*-=u^GeI-ji<g8kK
zR_!{gN_+6mH|o+^mH(XeXnI)>#<Wb$@t~XsiLB*81rJg^Nb{hg2cYtyv?LEIdGMkK
zFVhT>RQBK{AyovYUnxwrs=`l9ODAV~#e-M5WR53S7x}zWDHN`(o>{|#njX~hAZKev
zopl-aH)Ranl2Kc9>If!#(0E%0Q;G*G7N?S=dtmdRk(6c#vZ+iVTi4sNJgDnIJ?YCX
z!q#&$>U+?@g91Ni{QP0^)h!t$4W%f)QdVOj*@CYLHt}G-J&k4%n|jd91J759yrIyX
zZ62!C!h`f$NiBsl+scF1!rKV8jmlp*r`mha!GkUyyx~Foz2u*pq_y^BcJ!c=HRPt9
z1$j}I{OFxj?y);ABz5(mn+KoGPU|lCyEmOY*MpuOEc9TJ2faK{9(?J+M0%rQF85m|
z&4b<^^x^z^(9eVSJ@~)_hX+m%f*yoCaCzY7lod=eI2I4Q9{43oiBHI=*nH%?rgt_j
zN%!El3ATX97bIA6Gs?prM1;TXL7oTwJs9Z0Ai7JcQ}ZqMo)kBLEyU)V9G^5;l;=ok
zO3w;Zc*lbw9=t2^p@O^^xbLgD_dF;YpR^!0A90umAA0bK2je^#?!iZlNzokP0nPi^
zgHaxg^dKcEj#m!bAc-xE76n?%>ySr(Yru}ivToF>@pPsKpL?)8DehCz>>)*82%q4=
z;;81ZgnW}c_{xKP{?vgr8+|!Ad9sK9n^xa?FokX(oXj+pLq3^2O>jD=TgXhoSsv?5
z`)lE|1-}uTBRE%Zp5S~zw!;P&NEdmL6n3=O!-vVS%Y)q#NJ|;F=d5SXmU-|U?dPO>
zu)%|k?8t+a9<27@M-L`1&KmKPZIuUiOC|ll)~4HTBqR~}(9}<KX2~S8VfGpxq{<{Q
zt@U7?@byv2;Kf;+JlO2Pc9CrH;Lq$NHuVcbE+=WLhfktfU0mefq8Dc|ZIkS@vPlQl
z*nah32Yp*5+tc5+(}Ta4+m=*Pr*Agh<FQ^i%(tTLrL{5XzX|RW{9Ta3KRnnU<p(^t
z{$Vo;|6(Jw#EW0O_{W1o9t`v1LoW_{aD+kPML92ya#<BlDd@G{Zu+kW|9NoCgX13D
z^x&2UC%D`Wr58A#_U1Wt(t}eTWWJep+JkG1y}{XMBzsoyoZxxE3xXE~F9}{2WZf$s
zT#fR!*=g6M9X54Cd`rTPZhJs{z(qaCeuonw*?WTb1^HWs3J-Y*knCd*o-xe4xYjV^
z34J9(zH*H^`Mp+COa;7%iE?f=l*D?$_ezn(c`@jmiWf}qqL3Gby(r>EX^|B5qL`3U
zUKIDDak`z#B}B69&n6{>P}06{3h~BwnPsAq7rdyuFNeZJuNBFgZX~U_q{@3y!HbGs
zz>7{^boQc>7ca6|FS5O;>_rtXlDw$x#Y<iU57nyb#mipI&T5dkLXAJCs(G>H^(N=e
zsaL$H?!}yQ>QyiPJf}Y2sK{%0QB#EEwS;Uur|Nk54z1X_Uexm<S(;j1z@Fj-F;y_l
zi*zA2!3@DnLF!})d3H{fKd<V0(a?)S3$3%M1{`Lk6gzu2vq(ntZq~?)I_Is!=xbgy
z@uGznExpL`qNx|nylBn=o>$$^TgTj&XQYJBtIy7>316!^-P2lm(b|jGy=d=6*L7<C
zc@>zV+IZ2{i*{bDJFgB%I?Kkr;DeDJE?CFn!WUFWFJ8Hz8eC9aym-TlfR`u9=;}o`
zFElTDd(oXU?nSN_J-u*WP{S{%9$qZEpjr(|emll~p>_r>-?!P`%ZsfSlw#u-6iFX1
z`cj`O!i#=hIJ|IiL>JYH(dzyM<@BP|MaA^$Mb+z~%Dbq(xTqFhR9-K9oSlp6pNq=x
z#f6KCN%vyrQj3_JO)uW|;vFwSUWC2K^P;~OPcN#T^HrrwD#GE<R>vCHd1Cn%HP_n)
zdNF|gUQ!El?ZiP|3>KgB^p&a0B{js0cfHmr?guihL%o=EN!9+iN#v4x&x;Y4)canL
zXEd}QU1Xi?4fo<BFD7{Lr3B;%FFxUf&PyHXwcgG3vEV3%(C;Z<9;-dti!szZR(q@$
zZJM<qsktX*oEPK0_|%Kfy!hOUFStfdrgnV6##HTII-fCk&MO^Eo9MNE+FbfEt;Da%
zlf3xKi^*P0q4T|1?8Q`OkJg$eIE_0}$)xFmBr}A}^kP<2@-;^n<=+UI<HcMdh1WG=
zmHA#wpJ)44aDm`L!NYTGe=W@N)<|07#Tx00SDBW2v5ckZN#6-B7i4w?eIk6+%IuXw
zR(bJ*kkx`e3R3eYArq35)-q@xH(2Mz=o1ar3vLkHD7Z;*v)~pletI=~tMGhV8~rTg
z7r||u_hngZVTTtxz1Zu;Z(i*3Vz(E27%g>kGQO-o<5?yTTd~8lhIL7!glQjFmXCir
zwiJH%;t$T97YDc)8Js?p_Tiuxe|d4qi_2d8&CQ>&?Zp``UT*$g{O83nFOGPjuTn?7
zxc_wu*WH0j>R&IeUQ#iaRfWsy(-|qpy*S~;NiR|^TW9Rw&sC?m94@P&mlb)N%j&Eb
z=e#)2XlF27R@|??xvVx{R=;1imO0Z!FD53~FI`qw*fRH9AL4wtCgGjmhZrBOdvSwN
zx>?=yBA<^h$+zF~;<guey!as2{#fv?7x!qSa0(xK@gT~dTvm^wywDZ(MEFy|XHhwq
zdD$z9Ehk;E)*7uU;KOTIRICqOuPFZTiT5GFhoU|d^P!LrJEy84SJXd^?1g>S&%Gi(
z_^&7?F2fx&)STHV#eFzDUzPBoqz|88QDwHNh1vGyBtE?0!>c~j@S&^^<$Qn-m3&C#
zxO}MKLq#8UT(KNWNA>J({p$H*mc@@>Q7`&X*@r4VyyUai{-Z03YrNc5Rn=!51!`Ya
zO|L3$SugugjS4Y#rdNbi7v#^7nm*L>p|KCyJ|y{2+lLGvGJWX5iZT~<L^D}1MKINe
zG$Cv)-3Oa+?rh9vk*~K+xvJ{>P?r(a({5f>^?dl~sv>FN!_uqD?!(VlRYRY($utr?
za#fMvysBRFp@|QZ>&6zjX7yg}nyPnA@nQ(~1U|~%%x7J~Z7vu@zE(c8rhjx))X~O=
zwzS!gTtC|R@VXCsefZ6X_C9p*VVn=+edy@3_Lkm0^zosS51oDJ;=>yv)HtU?dI)wC
z>@LVEZ?bxK>-G4#BIzmE%Lf&eKQE<1vvsL`+2*IU9X>dH=qH@n+>XgEAKX6l_u(xc
zJU)1R2>Gz}^W=$IhR+Ax$Cn;tF!_aaJCjNt5N-&Xf<eKlmy*Lms1p&A$MBQt1AG|h
z!*Dv>he19J_Mymu<o7u#KExMjFvN#<x%P!Kdu+MY%TOPVm&zewde4Um`z(`~KJa0f
zRR2)0ZtskbCM1uL?#4uWA1UNxA4WwbqkUL)$!cM&NIr?mC#_HW)Q8V})**xEQJ?$p
zg%4xqr><p>K78rJ3?F9tFe^4~A_Kl}%48oVN%kv2>mjt*G|H#=Fx7`?qSK~E!|6i)
zy`EBJQsyilDEU$JzxH9aWWNzy;=>#va|P!KQhB})-$wZYAq#z26qPLYK^qoJwWT6i
zCitD;a={gX-wUo3TqVdVKlrdZ%6S&|6UY8$8q*pfG<cm4>%{{beAp;t+R<b>WRvjC
zK5P-P)rUPoc!lj}pLK!m7az6>*)I62;0{5S?i8}ihuuQD7EHTcGh^|Dbhf<Dhu^uh
z{mAm;4<G7u&gxw>t)L(KeK_F5pWOU?IOoH8AO7-LUuOT;hyQ%|+lPN7dr0tz;9(zL
z*_OQbon)#VrR1DNn2z~yN)(O@QgXtFlfsuhO)oJg`Lysef@cL=_O(9de!+)}K0Nf{
zkq?)Axa`Ai`lns`6(6qpa8op|310W%h7jl0RNByEv-OepcOP55-|}Jpx#X5xY<GOP
z>%%=C?)&h7yTQ1$A4}P~TyMHzTa#mJlbI!d{JfDN$uWLB@!_dtpZSpAZ;hQPpAee&
z+)gJy1n&niR*;{biSr}gj|4vo`BBA>m;5N~M-e|>@S`k?rl%D3qoj~xf|L~ZqlEDO
z-C~(#D&<G%XlWTgI@OD#u$)LL3MLAc7px#i1^yKX!Yc{BC|Fr=%I*AAs4BdMA2o%%
z>_;^rEPBO{>cU@*N;+RtwW2&lNRnV}!8(G;e*C|Fsvl{7r2Ao$BDR^~$Mb%lkBj#^
z>iWSCigBga^P|2W4g9eC(bA7rel+x>ksr<cXzoY2dQxLQa{Tz<nj+5@$!mTz5#kb|
z?Ln`meoVTicJ$9BZ{f$5mA0H7mj0D?xvl+Z<3|TSI{LBfnriDudp}>fmRr7)y`3Mg
zGt_G)C1|<3uBoqHP5Ny>b|*i-y%@{OM_r_-vmXN&+tL=>-tgmk)g-2_esmMwT@>DA
z7$`;ah&}!2<%io3j~~j9y$NwnKU{uj#GS8A&P?j<2eFSIeT9(sqYaN6IQ)3CSvIq4
zMl~BZJNfuE_2`=N(oR1{`!U83KdthEFQOmnw+>PP!2y04LMSo)2>P-6OmavtEEw@4
z&(FWKl<&{L>z?+OAH}!ZUccCgYO`%N)*2|)2XT#e$QUg6w%|K{3=y*No5t_@@oD=E
zlJ_{pO;X?ITyXdW@_lqAKeNO9_|R|tL3KFiv7PNB!4ZNZ1zGg5D2(!B&}Hl2*7KHT
ztXz;h){lPUlRxoeoFC)ag&!OJ*yP7&etho7TtDXd@r54~{Fv&;G(W!dV<Mf#K;rVb
zt|s}x3*+6ctFQbR8E;R$u9{xAP6=wxu&#u^b6rjMV}>7J`!U;(nNn0|jGF1kEI)p@
zu8v$+u{Tup8|oWB_7t^O+^+05)EqySthLB|Kfd+jJ3p5DvA~aoek^7Yqo`6!-y7Di
z$VGm<dqYjRp?<ibmU4mLRJ=mF<Az%1$B7&2&JDG~kMI3h#lHO32~W+NmTfB;<Tn+6
zaj*8H%T4u@6m5^U|L6zNb5pIMM9#t1`mrv`*9+OeICM5->1KwvAE*5|!+7xHXFm@3
z@uwfZ__2+l=*JE}-+yi&c~fooWBN_C@}}B#Q|<Kgqs;1e>2X)I<=q^+@V!yVZ$kF@
zaqP=X_I3BB`hz>zEwx{e*@J%k<;NjE4*OC0mU?BCb#neU7yB*sk6^P~>ImoPh9&>k
zkE4F@?gJAw|MMdwzx|ltaX-4>QYQpY3Z4=)ZYj#o`f-l2s-uLC^L||L<AEO!{kZ7I
zC0e-N);`XD*^euJTw^HuG4z(Y%E`K=NX85PeM?=qrHD8DxakMUEy3G@cLeVW-V?kp
zNHs2sM}9o^BcG1^I-cE9PyBf1N3GlHDakEW^0p#2yRCZMR(Z>kV{{bL`350-0UfbA
z3hMux!9qIXqC8$lLX>AuPbn<Ch+xsE{Apo38z~!OFR7!Hj&eE@b(Gf8d5(HP$Bf%5
za9fq3@_O6Y+iJyaRaOV_*W2pwZMC{;PO%(&d7b~DSN&(EKu0AVg8~>Fz>7L6>!=q%
z{Q#=ycu7Z<0A329s*abL{aB6Dk$pC)nvPd=R2QBdDE6w38ajIF=%u5kj#`xKcuhx=
zj@mjhbY$wNqa#^Ix(*u+zN3=ws1zNkI$GROz3-?ro$p?=Grc=UUHH+u0~NlbhVw&2
zI_m0Zq@yvd(!uK+4Rjp2qo&?b^>s}CS^aWH*>zmMqZ;anxvNNCxNEH)Muj`hUhA%E
zq9aE~OC7CrG}X~eM{{<{ll<)}=dQ}VYX#oH`u2xC?Y!U<xvN_9<X=ZS9k1&cD^0Pr
zwsfiR_BuM~xOG=`)zMMMPj^*k9bI(nzN<P(mgEiH`n|@n9J{OB3l&GyO-FYMS+`OO
zQx74$f|MJTB-~R<hsOER@s5t(I{N4c=?LrStD~O|hYqLAX3cx5?LBJ-T{_%4_QlwJ
zIy^dp-zl#Sbx-Y?uE<H=x~Kd)?oCf&(uD*B4MCGtqNTU)w~6R@u~+O{ItI|yvr_VO
z^rt1G71N}9Y9Pad%J)>+`>N|UHJDRyPw_I*l6&fxduoV|cXbTc@sW<9I^NSUOvi^h
z-q(?GU-2GXRciLMf1vX<`1U#l><4r09q+3_h3xM8YJ`rFIzHAhiWTo$*W9MwS6l9@
z(K?RaSNHF$vAT5+af~2c$19MZ=+<?}*avF7j!$)brsH$kLwy}z=$N462OX<*e5qq1
zHFbQWW0H=qbWGJTjYU;+_>(sAftoDSG)1sm4?9OUowF=PHhQ4Aj%MnZ#mRl3rc6;^
z>v;U5+BHQH=jfQL<2xP8b<EQ-pZz{iymk?KpuT084N6|9V*#h{ffa|uMbS08n2ifx
zD!5E=*c5B$oc}<r&{2MYTFEGSpuX3!=Yjh7fm$UIa%Zh#wEV~-MjDHBtkJPn#||Ak
zb*$5|UdOLGU#D;1z<pqh+NfibkVg;HW*tmhWSC!1v+fsf75=l1Uxbu>XbHFJ*e+Q{
zEVDHqTGw)Ee{y4c_CvLc8_PrGeyH~9_)W*}I{u*X>up9~>;CmV9Zh2F?>$ue>57Ny
zPaV8Eaez*EsF-#Ywjb2-myW-6{G;O#?d1MY;D47rsmTi?oY_+|Qg{{gUmgE(AqP+(
zfMYt2GwO8Q*KtC}Nge07y)zW4%t^P~&(Pbm)M>$Y7OJyCDB;q(K({<pmvmg#aZwU4
zad2F;_KJ?HGRylPS_8Z$oRN85$PFDgh1?Rn9WA{h<gSj>53OK+pyQ#AM~n*Ycr&bH
z^cxNA4<4!~447p(r5>qgI-csdv(4tLlyWi&`2yhOi2Q;{kE}}*u>lkepmYFb0*DJB
zK7b+t6b&FD0AAqb@x4$0tskjjOI6_jT#wYyM~YZ1fWj}^O9n9dTU9)O5&>8r5q_lj
zX%fE2rc?k-T<`m}dM^Y}Hh^*gBnB{WjkU}1FvN@Y<pZd|eLjH70qfd(#Q+enV)ffc
zirGp5?0lq{J^n~7kF$@Ms_suww;oydk*fyqN&wXZcsXF*2C60)|5%Z~8bFNz>I885
ztJInS)C!<>;D7IPND5%kg%*4+bnyo%pIvLg>n+SCi)M--tE2{yCOlox7L{iNkSRP%
zux?b&V{U^0>;ZHM;EezpQeGmxso29iGK~V(b9apevjccdNE5-42g>IJ(E07eLRI3M
z1u&pQo#uihEduxfby^CxqUVLQ5v07WkahvQE~LF+2f>bl)ak^Qg(pl&WwvX;I`N)!
zH$#6Zty=)y19+1Lzn>Nn>=8h206hcf6+piL93oVLeFD&gP`S5|15eWX3i-J~7KKj6
zLje8&^Z?u<_eS+SLT>(%<`XiuaLV|J$$<b2$%X{Y0D?lM?M`NEh4)!Fp-)y=gpK+7
zYa#swS@afNBz&MCpU9=~?Eu~hV4{IZ28IOiZUEm0u#(~TC~e7#R6ZayG=TR4ct3y-
z0vHy+X90X3K-<)`4+9tzK-VE@!vpw;5m+g0L;!!JW_}#NNXb%?H#NO?TIMJQIUR0G
zU(mot92>wV0bIz79~Z!QY2oJHoOyE+XKqdZR4U%8oc=`s69SkMz+A2inis%~0NB)|
z0KN*KLt(4mz)u;I1DF!P)Bwi*lD=?7v&GZWrv<=vrUyV?uudcL;`h^M1~4mNeYN@P
z0A`DkG~@89G+O(O^hh#K$Rbt@;G3&W=Lhg@01E>6<(;&JVmzytIjC51NdQYJnO|->
zH-Wu5gL<Yd3xFeK`cB49vO>D!=b_0f<fX3)Altx(d6_@37lu;+KLt?SKnVkD0$3Zs
z!2tdWU|j&~1Nb$79RX|zU}FG3(|`bYZ;OZWO<as0H`&Zp`B*V+31F-6`++QGn?F|D
z7=(|lop3vsY9(tEzG-Id3}9CPzXh<5&CXD}16cLgy5_ux!SGn^rRyFmp5A{={#gAU
z!0pHC0A0kXS*Z30tZkWzeEE9yX8^>`+iiab@J|3&0=OE$p#TmCa6Et$0UQaS?x-e>
zpQwMip*>MY1#3J}{{_(PiDEj&02V?cPtplb)a3w91u)`?Vmckb8R2K6l5+u^7k)wT
zVpM*K6Dn2M&aNlwS^(Drh%r#Wzzt4Hz&fHm3E)=1dbH;06LmX)b5GQBekXvt++m(5
zrh5V07ydx-q2Qxv>0@rZPc5~l0Xz#JpJ6>o#gtzNAKyxPs+ev4RJoq2cb}?Q0|gDl
zEL3rV@q!70g#-%=77?UcQ3J(<k9(?^Eoq>X0h?i6pD%5ojDhk7Dj0adKv@Ij3?v$u
z|5WiBIJ^G2pnbzr>mJ-cPu1P0s-giHsAS+p13U^h+iu;4DDq5IHc*A~u`12LO9pB_
zQ?(4VeWrK=rK*9K4N$F`;46aF1z#1cAy`w8Y7L*MB&l0lu#RA|V2T0fGsR|84Ga?!
zKUSq1AkKQGG7MxI$TCpZKs^KX4gB!TiqfCHxBS+?z%I!)G+;NZb2A>?iN~L*Mg|%i
zAfe>;GxeH*CI)g0G&K+~U>Im-pt*q_267FwFwoLK2Ll}qv@+1z!0QIu8z_`dtC~-1
zLxs_*t$}uibttb?8%!i?W~m1GG#b+_pVrAhX9HagbTh2@;r)d!2Hr4mMzcrqX(RG!
zG-K_rmgU_IOk>ute!Q>FrxAM^=w-ldz+*re&<yl8(8s_Z`LxT@eoTI?uYrCB_#?u}
zHk;TT29on@yrfVrzs5T_E)Fff#*~|1^BV9O@Egz#g!5}3<<~gfyx_o71@=BOzs6H0
zlW}6;13KJ5h-wA~8W?0CBF3Lc#{eOD2KpO#%fQe1wL|%}a<f#OAFM{$<6tV#9s@%S
zyd%mLV=PzP$gd6II?Asl#Axqv_G7fQt5i5fd!N%0qcL@i(LOXV+`w1^pBVVazz74Q
z42)*)ch!f|$VeVgVziG9d>5l_kI~M=XrIqi1q;~6aEfEJ$_2D>2F4rs+`tzGK4o|m
zu(}>uK>LgnS3rvt(1@RE_6cHGzB%ek!#c@fnpr^m%D`j}*|gp=RCJqdih+D4=50%z
z%6Ty`-M|b3yAA9yFw?*+11k)CZ{TYKvkfdVu-L#i2Id&}*1!S-bE!~3yHY@#XJAJG
zZF6qyd;?r!{MG4M5T6jMRgTpba&&R_MzI=yku5Q>)W9+h%|Q29%WN*#V63*B%ekR_
zb*y&j8})IlHZ@jTX<(IsO$IhI=4roywFcH1_)!MMliN$9)xKEmCmsb1IJ(wnx)Q6c
z=aGUTR8Zpuhx`S#jhxm>Da{IMFBjC9-C|&?fo+UEE;{Z5oY{gJ$$)~|FLY)>ZAn4x
zpMn~HGyclq(4=1Wom^rDt`*eC`GYGyP9xuI;5WvhfwKno8Tj46F|IX6tbzRo{x$HQ
zfdkw<;<SSX{t|=#6l@r${cT{Jvj1b?5QA{NBJUih9p*gFNIAkq6sPHN+EK|;GAzz=
z(N}TWvN(-iJz?Oafl~%f8`j~BuA}k1`^m+)El%T3bumsmXW+bnD+aF8fO@eP3|usD
zNhXCqd@eK8Wg+lt9$TgxuNk;*;E92!2KKI1#c$@`FmThrEd#OfT2{RF*uZV!cLeVW
z-V?kp_(1TX;3L6`@fz!1nX6d6Q@r+!!IRa%jMsShdwHqKZz9G-0TZz%nww~0qM(U5
z6E#iLG7)bg!NiLuDw`-|qOghbCMuZtC|)aKVt>3=)<jVg-^6RhOst95iVH6xSW=Kh
zrA(9-UPkZ*K_0kSL{FA8K};0nW2ooiEhkqr0n?fVUf7IH&?=dzl%S<2XjM$SWa1SQ
z)lKkNU)99e1dYFRUN%vU_VXfmf=1L6v{y~kFmX1)YK@UUCqY}CpzTl4l1$V#k#53f
zqK=7V6R9TBOlzNfoS>zcQ1TnITp_DstwLHWAsHqzP2`wpYVsYVs7s#|vR^2q)iY7w
z#P~v56B7+g^e&_^H8x?7@`fhfxLLoEWJy?>ZQ`|P>EJ@z4~4W}rHjXfG%n0$CLYXF
zyo}b;L@N{BOmsKV+C&=@9ZYmI(bhye6R(?SZz8d<Wh4_X3O#?Qm}|CnVXc!4=M58G
z>65}*XA@mayjfUdiWJsTHmZ?@wJl53bV^M0FyS@fGm&eerwO+SkBMH=g2RN94l%K5
zW{M`*Td<E{U%`HY{O~$;>c!c=FRZ<4x4TU25JKCI7S<jWwhjk=6S@h*gvn+rr4%co
z1sG;UG_DJ(Wf#$c9BdIST*Nwvgk<*H7SVW5oO@$`6K^p%^UyL6156Awu`!HIVGJ^@
zUo>mNSR2M*+HB$-6GKeQ3ghcA-Ze3l;|jrDF6BKF@0;ipLbndhJ}@zi^BzK42p^gl
zZsLm|CIs=3i4i6m1<^Q&ktRMi@x;Va6QfLwHnGLTRuf|wa@?X#%s26giE$>TnV8NP
zpur|4nwVtbGZUY)O%oGXcSGXqwK7!G7@|?K0B`4gX=45QL_SzpDJSMDPGzl($tI?l
zDAqLQWKPUfwqLLO4~G(87@B-ABb|6SHf@H9uQ}s=Q)Y5#oThb&ZPz7U$+6m;&DCUL
zj)}P@7PW{;dN+0A@j_2xGJdL+@zUS6Z%r&P@x6(aCKgh`#Bv71!L-FDmYDd?#N;E1
zOT~s=hZ2{uh>trSOCEkbnJt{$ket{wW`&7-MKXF1PUel0RVIF5=uS-CU}7~r&n0hS
zEjNT_F-)xWlL;CSlaxWj)^V7$tzP+HPRu7&?W~0&85<cb(%ohg4Rd1HGBwNRW&Uj9
z7ZYc=U`=c@vE9T$6Mvcb)kJ7-+HMnj7*Qs6n%E`PpQM#@w6um#pX@d98}}lS?=$hc
z36AIwZfi*y?2&$;8>u-fCjEfPNAghXS8FUB-J-%7gJ&lHZQ`hje@*;j;t-eiy2J{b
zlMkCX!qqo7by_XU!cA?`|1)vS#7PsUOdMyBBxRhC9@z^y$IfQyz29?Uy1pKB+64Qx
zl}<Tl;=GBQCT^Lyz<nkr<C2NXCN7$&k`wd&p~SSNF;`4nmFx}LkP~yw#D=CZ*QEto
z$myU<Pp!4Ax-BvAfXif3>K$%?Chl=g3uoMC0Cb4`r(+D2tpM|<J~Z*j1RHtG_1iS2
zTze}pIO=Dd%^+++WCW2vh?pRX1W`1I0zt$EtpNMEK}MCT_JTnxEE9r=3nD&<SDMAp
z58tj&q|*vX5lagTVGI`wqIeK51yNNbC4wju#0$bp22m=A(!$quvgYeji<q)OlnbI_
z5D<A{5EX=!7c6179L{E+W2GQo45D%n&m~+ARf3l5m>4|Q5>s9dqFN9sL8Q{oAgTvZ
zD~Kd%>eV1>1W_}HW5)}zH73?#JH*;S)CnS4)abY8r7YqwS;}mh6mf~A3mGNrm-0->
z)(avlh_@@J)s^gkBi0(PFPx-75cVJ%vTJ`T<DvAC#N#<J*+IM(ggXdN5KV%}38GC9
zZKX=nAX*D)CfJ<b8=BlAh?YUnU7XN0OHx_|G4@<C=l9#C$?SruT@YP@c;k7eoI9Dm
z4ncGb;&Ho}PC;}Q1Gw%+7EhtCIIgZibPJ+)5Pd|sdk{T?c%Kjd1kpo0JgsRAS9&fz
zxy{;qdIh1ReNAxk+QjGW^yTROu*`4;(Ju%`5b5GHCr4MeJgudj&)w(^!bi)4_#_B_
z5IVaH;)5Up(qLW?{ev)qFoOsN5egz4L|)UFKC-l*bhLJrNDyPzCvrQYNpA)DN1OD)
z^n4Hlf*2SCI~o*3v3FBx4E;0eK<Ya|43Wl%2Jx(|jn02pvQ*&wmTemIo{Wymc9_iI
z$5Q%X5W~6u2QfmjBZFAhs?gOIF>LctP7LR<&W6NML7ZwG`&B*L=pcw=_;^;4jPsph
z#sx9&^_cNArgIFp)~zR!DgQKx$rDpQ3*vKW@YwpqT`gk13}Rvs2ZH!Bh)HZDh_yki
zqh=6Og7{uErv@=i$P#IPy5PJZW&|-)<g<d99mF?5d@Wgyi>_vx6U1DRJdbeNKr)|e
zd}s2vK`fA>g+VL|VlllfRTyTRZn}bwTFN2I%6eY?yC9ZF+g~9zu#1&JtP<hwMOGaC
zAo006h##fmPeH7S8t~lP>x0-JZrL5gMk)Fwh;2b^63zxU2eC!?R_TH^{~W|0wK7Py
z2k~nVyQH+>g5(`Ru+s?}5_d9yC#G_bCDQqvkv&1|6}7sPQhy6#Ul5f4F38e9WU}^0
z+h@_iApYWZ7ec`h{tn`wAWjEyMp`%&#E~G52ElFca1alg#(XA+?|*|h9>j?t{^Mps
zA9hWng-j$TMZ&G1TD|hjo{~}q%vovh9L*5&UWK#^L0k;tb`W>yH_pq+^s7N!3*xdU
zT#+zlym1S<E|MET++;8`wSw@LNap6mbZZ&o%8B`<x$SNc_qfu7coM{Yni>QTC69u5
zepc|1n|$dMx`;;&o*?yGpZJu^fqQ-kF(K=SzzND1g1v5e#sH5X%x=wzDG;)@EFQ&(
zaUsNqP&I^?Lr4grPzYs0cp-#?zo!)rSx1LbAruLrXb8nZC>}yd5taxcwrLD^0G{FW
zX&=M&_+E79EFHq(_0~RFHiU8^R22P0K?=)<Fr(f7_TdU4)RS8L*KVZ{UKE`wA@HQA
za#a6f-SRJmti6JD*-^C+UJ=`B3sO=&gja>v5Uj<aNnJXG9!?5@KIG{EN6Hb^2_ZRz
z6b^7`@`E9XSZ8fG=^@xcXca>15Hdn|aya$C8|n2!$P6JXgt{T?%#+7`e%SHc&g6O_
zbXt^__E%~HdNl-UHVmPKkVb-y1)JCIl^w!sA&@XN5t0)^Qz6Zw^5!AyV_sBfDYe+z
zsN782*(QW`97PEGKT2yG!s8Dt<J;5cU7IZaH@PF{>v~EDF|5$W^z-NP(ZbGh#><o5
zE+M=TLf7Zn5V}X@)%P}iQ+SUMmgi4nqH@m=dNEEy&_cKp!qpIZhtP*J7{ZYd`i9Ui
zgl|Ha6M`cIX9(|xFf;@g&$L6(LkNW63BenJKZMjeaUZU($k#0JAthf3ql#!Z>txrj
z6L+y~t`UM6LY?fy0U-oK2!+r;g!Zc|^2sGCghSSIO?+oUgcB{C*`lj#pA5`?i^{HC
zl7S%%3h|@Bxr0M^I|NFY;*?eNj%0^~Fy3Xonc=+<-Vfnp8W6$<jN4VVk3tv`!Z7{>
zknHe~^@qD7dM_5S_mLs%<qU7NOzhV(ahA%ZaC8V`LYN%Fln}<U@en=_fkor!@Q&Hz
zL->?GD0=12XqWq$G+4R4Rcm<1Y~mLo&?**95b~wqM8QddUopm7CQ@fA=eNIYMhG*x
zJN3$)CQVJJXL>2NLk|pJlRb+wUObyWcE1i`cGNT7QnTlVFfW9yA^aS|{1CnkVND2Y
zLs$^P!Vp%3@O=o2r2VBKER%|hLs-I&e#-9JOR;fI%6AL{>6DxXb42WSrAStDq*7}Y
z7o+%xvp_Fp)QO|(eiEIJ+U2fkYdL&f2%AIL65=~XutAD83U1<x?v+dXOQ8Z=F4QuS
z5t7?7k^Gksw$T`I$o3F^4PjphzlX4cjkt1mhOmodLpEKyTg=!a4W7N*i<Z-Xy&?Q2
zlIN572bT%ge$+qT6wwYu`JY1ezMAxxjG|G;Y>wg|>6cS*NXVKZ+EEFK3v|(cz5Wg1
zzYvava6E)_A^h1k_e2OMLpaSv*VY;W4Lc>xa)LNn^uU=A&RW}AF2kerE7_Ev7xR8A
zqOrk?((I)WE(@WzDZCcK^$<FQ(J_o0A>8DS6h_%FZiR3=gr^}q3*k-(cSCr{IUS$d
zb9vUi5bm>)#kT${Y>VEqJ)qmGCXqN^O?t#Fg4rtB#}{Wm5giJtnJ<j|VH6Krs~{$f
z0%0VCQ7CK$d~6uBGfxImFl;TrxG>^{)K$6677n9`RIJ2B5w@00G0Bn~G_6pnqUDwd
zqhuJRL|!@!^irH|)-5Cax1NfUa$zKfQ9q0ZVU!P}LKwBfs1rs->V)xf7}dh46vm5T
zYo%9}rYeW=l2}qjvRrQLj?J<)+T5yF?kizb52I!nwZgbrGrNPPDy8>&m4of2Y6xB|
zqH$iH713BLNybaFlfy^}!xlzH*jjO^(nWe0(+6ayi8n|nPb{is%6PK`S&?C1H;j6c
zWwSJf9ofTZ7)Hx5T8WX3!pI4uX&8;e$QH?Kf=vW_OV~5E@BL7*Sr~i?Op7p@hjAd)
ziWWL;oVc!a7~YnN?Zc>BRBIz9wGCT)PCLQZ1(`k5Q_(8wbPA($81IGgei&WCcq5EJ
z7)BUf!{`=<3PY2=x`&Y)Mo-~yhS5U^Tc8=e!Wg%@qDQm#1P+bE>>Wm*FkE4{!{{4E
zzc3tOIBAl~eWR#GYdL%_inM;Y4E_rJay_&;48J&YelNw)qJmGnO2Sp9OE9oIGmKyu
zL&EsHS8gbba2RieF+lti2_r9z{?f>YD))Dl%QefLinU&7n>a9xx20%MbVdf#9*(q~
z)z>@XMv`~K7#ap2j%6*z66ffHFouOODU7ee_>le#V|*B&hVfAtBf=OH##k|Cq}VWu
zQ`sx`V=l>dxwMeZ87+>w(aYN9J`n@PNtAL4GwNvPXRIE^gfPAgTO0KkVbF4G_(e71
zL<zk2i&~*blW6DUFs6htQ<|C@#xzmrAhE%~o6hdI6^E@O2op!gRlup49mY4DdM4h}
z4_kjam>0(UFy;zpcIuC{zYSxCH;rkjkOhJZ!&nrRFAigga6ar!wPj&^7sm2v>8dbR
z2>)Jir6BLNQ}YMms|6c8uq1n*)&40AqJ3M*bz&6_+aP4UAphjjq-rw?H;1t$j5ZOp
zjbLjSKhwhzYZOesh-S+OwuP}hj9<gp5yrzX9)+=!QT?tuA-GF$x8NRj8pdzjF$!k?
z9mdld8T*9)F8GJwenBc62;<KvKN!YeQNDU=)<07Bkl<m#BZ6%3sE~gJ{|n<-RDPV>
z*S^M7I4PE#5<DHo>PAh@gmE^EbKH)SvTlUYZcp-g;THri3bN>ukjr6QiAt`9aV?DN
z+>WX=pHWoH-z}4BH>HJJg0}_P;GHn;3cnYX+!ykIlTuWp!s9TWa2Ji>#R#5?ZFFGK
z2%gcglaupBEX*$$BUnH%R<NKT72+a@kMe{F3JEV9K@lPR>c^O-HmVh4v)gP;#Um&Y
z<s~C1CA@T0QYL~IgqIa87eS(s@)1;w>QoSt*&`i7a#kj@*~$@AiC6*9AcB`7=-9$m
zN3vCgzbsfy@D;)8g0Bivxkdyvqr6rGNl{)q0)8@{3dz!1ieRc>nqa!1O_053M35Qf
zSrOC~UN3_BLi$b5X|gDlYAx#L*du5d0ZAjl#)8>`uL(90q(V*vO{2V71kIoG2!C`W
zu=L(hYh7^Rw3anO!uH!m@OlJ&Bj_i>9R3R|0<N+SlBGgNv8NMJNEg931iK1Sr&|Qw
zg}*7-Loipcr(iEZ6@ezCcLaTeY$~e#RaCoDRAVEK2%Hf#&O>&dwS-*}{1M^P^{MU%
zJP~*!@I~-d1d}81N1#XWQ3N9*2t;5+@NNV{BQPTfMldjfK@o%^h%KglSxkE?f^Y<p
z2=XGRP)zF|0soAgRZMGNOmh{}h7{9ymu*1Ay7A2?*#<}OHq&|=pDlSOf~Cc@%f&Rl
z%VkIen~G@%ifNR*7s2~9EP`PXj4Ws`R9q{uLRBlSeJB+N7T0*^Za62jxYoY7<}9v_
zjNs!4K8@hB2u4LPI)bqgd=lY@zwNwl#p+`s7++lDgKaa5YvVYCL$%hgQRAr@XJ_KW
zho49AMFbNgm=wVTDlfDieM#Ztl*P3#BN#r#B72K#@oQ9SG3yVHQzDqkNsM4a1k)mz
z9>EfhC4w0d%#2`G1Ybw2$M7x{*J4X(9p<Uo5qu-v@!ywoA}CivTNFXN653qh%+3=s
zU+`PO1%eA1S|v0pEEavEgf?r5S{A`~5&RIr>IjyzqX<?;aI}Q>eZ+cc%)%1d<`Npo
z7bUb+5nL^yF~yhEDwNcI<b?jH)<*DC1Z!lNeCA=LJe8VSQd<{6lagBZlG;Yj1$T@H
zc0{l_f-MpJ!cCsxQBoUTQrpT#T=n?K>(3Do`G~^JU+mi>)?eE1Pgj#lYTuXCc1Ex(
zg5449VT_fu?tEP=skQuCaW<cn)Of3CZv-VvX}@uGm(un{@Vk%}r8H*uM{pp5KO;EE
zoshdq1b;>FcLY~BmI(fd;7|l7Ik^!Wj^IcH$0Inw;YaXq1Vu+R`Rq+Q?@|62!7&c7
zl-9G97AmEYFc^-+*?BLRF9@1fN;@6FnF!8Da3O-2#VQhSKO4b0PG~9Xp^F{a_Wh-_
zixFJnC<@s_%W^K3(jJ%6%9YkGM^LM@)}XX@ErRP2+>hWv1UDkM$q0|&E)SHYH9jPB
zD*{((?REsca_s|3Ys61VYxg47bEjKNYYR$i{O`cS2p&c7ID#h;>xoucMMu@0r~WFf
zT`8><n`Yf;&X<S$c_^QU3VDdhLxDV$%tNU>#O9%39*XCo1m$J4%4M{;JjCZ&e+Nj&
zL$N$QR+m*svXm6gLy;&iDui#u>K5OCI_x5)jP_a?jep`Oorf}cD3^!CJiL&HvUzCI
z$lhg#^$b;uqV|u9*!k3buQD3nam0sD!ez9Ic|aaA^N^K?N_luO50&#!B@d&^XnZoE
z&q~Ywm-4LFDE+uW+44{|4=?BOl_Od;!J2t^MM!l)%3l>yBM*zqXw25iLy|~p=OHz!
zQzs9}c}S7$kD|7_jFu+Z^r+6?WweYu>qS+U%V@;9d8n6%`gv%OhuzC8tN36lA274$
z;ZA-#pXk2C2aV{o7c{0udDi3iB(LRJ_ad7KHp#R0$s9qFrb0gNo6=l}tz0PzTjim3
z9##*)j|0#q4{h^sus{Clk9K)@Jr7^yVR9bY=b=L$!g+|~VeCB{|CrV>5C6y1cR)u`
zeg6ZY_ufAAo+X=XHVGjiSwd)1qzeQXs!~J{GCMolW*Z7vD54Yvq)L|#QWdEp2uKm>
zO;MVFfJ*;;=JMVD`JeO7=X~CM_qF@(dow#b^In%+bj?M#T)dNuQMud(&D>MyP1c)>
z9=UjfgR;oplf$vp-k)ug)ZV$s$weP}MT(_wF8bx-=vQ`fp5w#3!98|`?y=BLG9VWN
zb1^6vgGJ~3a{G{6++So@7Td{*YnR%GN}0n1Dfw`D%J5uVUY5czA{TE*`A8uj?#w9Z
zYC1X>@6!ETO&J=!-}L2}CM1p9CFasIZ(97h`0q))nhPiY0?x(Z0!c0oO@5m$oS)6Q
z>4do`{+;<1t(U%<3x3;j?W7q<j9dhA@#PImFc*_@F_}h|Xjt(44ND{!<8tvHy<%3L
z6KPG}&qdpzF_e$b#e`gtOceY;@I%3m1V0vhrOfiDNP(XUPR+$9LZ%7Us+)%j44+AK
zy5J1KQg!ouo{KMXaWxm$a&fzeb#^Wq1+67-TISG()M00Hv4U=#i}|_eySU`yTr9g`
zVOWrhg;BnUHk_AC;a4JABDge~x=hG&!B0NQvr5R1f?o@+&czxbYjd$x2#Z>mi}g{y
zLCD5jY!b3r@EgG`g4AEwKmWE|Y?tT`!9BUyDdgLz&UZp~<>GrGy9L=KX5TA(pWuGM
z1A;#Y9u$04%OMVZE`EwiPUqr?@S{=5F(E$-9?!*zsQe`7k?>!ll2=v#D$z5!I4k6w
z;Q6S|1tAv&F9}{2ypoHhlj7N=-*VAlPJA~N-BtXai|e`gBNu;i1yfN|<$J=onTsd6
zc$$k_9AZwHT>PDjJGuBP7k6`UFBgr=EA7iGGuHIueZ`>iinqMN_r$oixclUPz=b6j
z|KwsudF3J9puEEU@&3)lp7P2+<(0>r9l7|mym{wC<a_lcDk#r#@tkYBiZUu*<l<#6
zil`{6B9Dr^D)Om_QBkXcd4b@^4&2-?zls7X3aRG1vISLSRZx0WP)1ZxUXj8gXA;-3
zVyd~Il~m0OH1{zmu7X%X&|g6*rD942g*)D?uAr1vQBFlg6_r$!S8=p&`pXImKYXa5
z;!p+UdIg18Sv7Cok}4`tQH7cn6^5#+`DqdfZzrm$sIHoCRPrW@!dfb7t7y&^s;Hx)
zu8LF@O;yxWQC~%piex6`OYc}wX`rH^ibg78RajIsR>2Qv231rTcmsB@SbCfatBQCP
z-%d26zKTkMibNHBt#nF7#m2lZ`%%cKU4+XjDk&<qS5yjDQq~koKUq;}qMD!7{Z&y(
zQ<1KsnTiZrwUQE7N#Q#={7!-Q27G0=Z6zgB#o$VcLp8rt3RF^BsK{3NuothZXsM!=
ziq}-MQ^978Ue>R*iXA^%c^}n=W>-PNK$}mmq_k&iE19F#LB&!b3%B&^q@uHmuB!Qp
z9h1&fQtnn#y2vo;sridmRw(bG;tds}RE$>9Q#G$d{Z$MQ(o02eAr$7Q=p($ZV85tb
zp(AA_P+_2o;_K|gME+)`V-WkLf`nlRiSW0glA$Wz<E1ClF+5t%2o-Nf`A8M-L^;cU
zSH<_|6PzkE6=PKNm|-0&m@B9XI<6*D?qW|lnkv3f;imtn_*msZNbsugsTfaBJCM-i
zyxp%Ns3N3-+)&N))&nX^o@)_vEg>w?_c&E!;v*`?si<+mPKA1v72^AnB{wyVoX4F{
zP%%-(2P!^P@#BgFeUy#Dk5r^x%){u-^$C;d^D1~s_zV@Uoyk*Ge5!(niSsn`PgG1(
zO|q><67e%O>Ep!df-Nd5Y{^XetsF-_i>_-e#$2;i%%Le%>{c;X#g{79s#vFDo{EAC
zZ3|T_QZZln0>PZ&F_bS>@s-Lwol=*nSR&-*(A1^0aLE)B29o9U8G7u{)D<dL3Rxxi
zwIJoIg{)C=>SSR?*VFe@Y*De5`YRGPa`oV`?<zKN_1KVL^5Ti#s34NBIFPW7vqO@;
zqXUaFh0E#|+bR58!6|>5r^8deO9hd9kBYr24y*V{#Xe4=VX1>{iTmm2`4ZWN11f&t
zyrAW|XmA<1&~MYn{rr`(=A5%TuCySwo!D|psTN0699MCI15v8QQ5DC8{47Wb3#>9d
z(fQJTr+D^BR#dkb$!Qh8s#xsAS5BN!aaP4FCq8%LoC<z0a#2Nv?T+&tyQ$U-f(?9D
z@=Gc%tGJ@#stTJEiB4SOO2`FD#dEroia_P8e^vaa;<}1ISQHn3757x!m!z92{$e|i
zwYa6?wvcN(GH(~mzQbt2Y;4N(6w1D<!YJ3GSi$T;juwBbc&OqL=j?Io1JU2LH~Hj}
zmOMk8<R2A<3uTY~Amy=&yWiV8HZIJc;ZIcTYLfVr4R~QY=_@+*k@W?Kl`EtZ^_|G$
z<Ok`=F;3)nBCpf@*`7~u=G+wW0!|ckqKXq$ohal)VJFHs@pY}j%gSXlm7$0z7Zoh#
zL~$V{1WO8*5~OBnC;k~?mRVLL<)ZTPLMjMWbfS`w%7OzYn<v8byOO;3viWsCoTw&p
z^6ElrI8ieyspUj%;dP>tx=!rBWA35N(7=gCB5&wK^`?c7C7PCDh!vqlu(4pApj9wl
zFu{o?1I%*lP9!<e-iZ!QBs-DfL>nhobSl!siBu;tmK16#`YgXF3a9K#xaUhq6G^%g
z&4gq)k?Dj(c$Q#uK^Fd^a}i<-C$giGmQJ*a^43m#bUc9yZKIOcgtT*VW5&!W*Rwi0
z@wyXZoyc{flM|ht80f?xC%QP%)rsCt<T%mI$phb$|Bg%U;RLa}6U!=RKRuK1h7&!V
zJi{w7e}VX3A}rT6bLiQGK2G#?qQ4UZ%t3F}&k04;`hJv2&APGnUE$;_{gatQY}K{M
zU?+w+G17^5oOsiTx11Q}#Be95IZbqiIzi38m6hkGY$Kd_+X=0*LP>?rS=3>%qnsG+
z1l7ifCUdchci9Y4i=0iMn(Bnpi3v_jWOgT9PWYWLoY19HZYMl+<^u8TAeFsNurF-3
zPnr?mE|bE5lW#g9CMo+p=}yRrh>)-#J5E!K6Hdaa-*;lX6yAJN_JzvXY{mypeCWh9
zCq8we<fW{SoS5XqWG6m$;xlO~o6QDHabl_ypGaSpd}7OYK0&RVJvU%oTbX}+Cx0fx
zG1H0ZPRw8%&L;F~mi_2KixSmxUJb+-w8oj(^0uV8PM%h2pY7ynAbsZudTyn(ZJqk1
z6U2Ff^92_OE)-luD>d&;g(XfbrF&@Tq~Tk8{4)AOrJP4jET{K6vC?V&9^C81J|U|(
z)=sQ;VvQ4Po!CilkF_wYb7HgUa#-)g1`%#_ViO%~R|dmCho$+>jB`#qHMcmi&57+!
zY<1$5kjSvZ3A>F(vs3NECw;$l;yWjHIq|&{d!n^43(MRsQL2$J%I57Cyx_zECw_3^
zpc6kjaomX$P8@RLuoFjVq6;ZMag?(yM+6yN@m&TbB**9~F2~PKTyJ2Zf@4(9N#SRl
zIP1hICw>uy(~|L5L25EP@tl-!UWBg{SRlzoCoVa0nS<-ZEhla}ag~d|6F2B8@s{75
zXlJ!t=d!uM@jI8kSWEIZ_Q~;<KSc7UAd|RJUTR~@O;P4vd3T)ni`f|}IqpiX`}C_g
z%X<lydrpLH7Jv1=d7k!t-(sP{11BDeCXWVY^dBewb>crK9y`%MLqiQuoOsHLG!)kG
z%!%h*;Wgyb%-g~jPQ2veui?ka3Lj8htE}X&qCA@24^@;H4f!<`&`?lAN)@Gj6@_0k
z+%FD(Co-&x`B8?aic&;FQ4N(eRMt>TLvalwQuF_ilfQ(9k{TXWQA$)*=2lTkX{e}y
zKS{_-YgkuBDI-``u$*9d4HbkimG|?<t0=!!QL1RDssS3RX^5?=G_Pvj;&!j9RM*U3
z2ekxiXc%5qsj1<;s>-aY3bD3k?$lRDkfg4LdQo0qLzVPY3LCLN4H+6THCQw>){v;d
zt|3l?RYSan1P$B}U|m&ZZ&iigGM|&GZJPOEKKC;(k&~XJAz4GJhNc?k_eoEY##o^=
z(eQUwg`bm`g^~>=O*6NQXr>_tO1dCFoE-;cE)<7`<{H{)XsdzWePn59siBpI78<^X
za+cXOJcm-gnvzycF=EnNYv@u<d8?Yjr)1kJ6?{!Ydkr1<6i5TVOB!2EnOIHfD9zYe
zO*vCdSy4^lw%(mJ{J>`dL#*RVH0h$DtA=hGy3<@5-q+AW!y6igXn0dYPYt~^4Ad}4
z!&i5j_GW7}^r3J3U}dzg2p?5b6b=0}^sZ>zJjcqv&nW4yVE~7_n)2=sR$`e$iG%3?
zbFHnXr5FdS)O<_BP&Q11SHm!lmxf#oD!ql{qG6PV(Hcf-*mT0$xIp4hN3Ew%Ti?;J
z@At$5w-esgForgqYhCuj8h_D#p;qEp4LqfSf$uRoHE0^HR<OA=)F~g&vjTViZOU~K
zx;5N9V`Zy|J`MK|S%Vrv8vGjepRzL;8Un)EPDa~~OAc!or{VlsYlLGx$I38bn|1cu
zgvBqKj@K|j!)iLr=In_YKF}~*<0}F9P{T(WW@wnH;bRSxG<>FEx`xRbrfB$7^dB6s
zvSCv-5I+%|CitqsN8Ys2Tr~2huVt}DZe+wNW@-3BLy5nvpVQ5Lu{S6Y|Le9ETMt-i
zpSc>o)UcQ%qG2B0PXkjI(SZvkax0_-Y{s9ap%zN_$$3i19W`-@hH}-FWg3=iSSnc-
ztTp8;I4Fm$t7Lpvve*|*f7+kOX0Sb9Q*B%_$r=r7#USf6jBS#+NyB;#8#HVb;o}Ep
zgTp1$URf;8nYcy6R@%pfIWBC|uw8@VLVp*ImMgP^2G?+a-REUU!*{gO_buq6`-JSG
z^9$K6xJQr*do_d?#FOkAQku#<N%;r5t_wX~I7k=Oa7e>p4Mkii>cUSNj&S*Mp@0jQ
zXQmw0a7V*m8jflBS;KJ+Cp7$~;djkEGxVf}a~yFEr!@Sc;k1TdMSjVVaz@BmL2Bkr
zO35#0VqRe3)|5*cE(^IR_^?dcPub>)nPoa9U!nVHxW<ZRB{3Rmo<d~ObqzN-C{o}b
z8vcxy{6T@Fc?FVgN%Xb`7DfHxC(SH(HQeLkso`HbFvq$`%0oetzlA)Yj}1>`l;IIw
zbbexi7a9L)c&y=thL>FbH9X}?!cf3QofB(Jd?vZb-&kwr&Eqml&L^1H^}hmd^YC96
z4&SylEMqIRC83}TBm3G4yUdRQ3JI>>V<Z3bVl1(k3&mY%;zFtmC0u-F3%F3tg;Fk*
zcA<g`6<sLfLRlBeyD-aYyBBLO=K}H2j6~wWQ-xET*zXO^h-;g8D%)1cg~~2e5rvOB
zCpNp2IR0S%suKO?iM6^5HC#w^!R|s$7izg+aiOsbwVA8EeO{uy_g}U;!s`lBSkHy}
z!W#%SjLI9i5G(wN$40e<MHBDlv&Fe!bz%4uTf7VHVY}DTMxG!Nn+wNUB{DjsL}HQ)
z#1t1A_DD>2!SOty4l;~VNsQiXWNYd|a~HB)*mxx&O)%YsW<oLqDbHlCDF1tHVha}r
zG_t+sLOU0-U1-T>G|XU8*H_tExj<~~LK`7l<Lqr+h%09%wU-jQM9b+Qq@&>LE_7l!
z**4bI*@ewV5=pvBQn#pncg~mb{d%~-1~8TP#=TtV=faNuO~`w@K+F;BBiPr4{Hqe@
zO-Z4`>t)IfaA6=F!-aQTNUGg@5b;UEzK-_6G>!{zy6~0@LtPl=!sl&Mo3Cod$?Gi<
zM;z{gQ8KQ2rMM9;tU2HDZ9$T_GI7V+Wp+5*a+C|B=|6|9@4Dc1!6$r-3uA>)p6h}t
z+{v!Zv1)=OE*Es+Zb1)SrMf~nv-n*YvE2He3-7ab7XlIux)2h=B%UtK5OyIVl5v7v
zCR&*^UicIjrn)e}g^4bFAd(LS*Su%yeB|OAr<mlzWEZ+ju0#p1K8^)ep7%uliD*uD
zVTKFSgnugdnc&tdvD9Ih$q6D7a<=Vr;cUqltlDp5MRQ&F(uIXCEOKEU=d24n-fn>l
z>3eP5e7;-nL_S`lq}*lOVi&%0VUG)YUFNpxyzL)br|}XOmb$QvQ}{p2au-&)@U;so
zIIK4<l&s{6y1vQPxpAvGBFyE&1{YR$XnbgP98=dyu62TqlNxVyVUr8n=`AAJEVxDR
z8^Mts8*dfDyxUxOnx`=d!%h+Ia^c%(>UTm|HB-NLVRuyiPQ4iZ{AuyXvd@M6E*x;-
z2N%w}aDnrEnf0IxKMEm_y_axE_+dI^dHYX-Bu9ANiSlDE{2b-ST{z*wNr|3v;a4HQ
zL{m?@P{dt`+0R5JXI(fa{EG&OlwWk=5*IxkC3IYN;R<`_!ZR1Hx^T^fJ1+d?!f!5~
znU3o&{NXYmk9V%Fyj9)2iRGRHf4Xps!iD`@)s-7Aa3iCeg4_UbVs+&<+niq^xywb5
zbJK+f9G7C|lmEHZmHRY%b>-}ueh*!E#M!aDU%eX2KQu*k<*^G-T=<ujR#*OW;YD?&
zObvyc{|NILJCQH6Kd0P<7#;a_ymTRtj=VbZ>1a_y$*Ez!_P`G|x%0;OLh1afoi!HF
zQBX%w9mRAM(#=mbDRkFR3hOAMo1c?Y(sQ?!_-PGgbq(cU4dr|drKFBhI_m1Er=zrv
zGCHd1sIH@|j&eFG>8PyZZVl5K<#qFZzJiX5IttfRUhQDdUjf`Ex{7Yza%a_4s_Nk0
zO$^Xst*Oi|m|jCiO&zs#)Ryer0OZY@3O{7#wgYvTtEO4<do`6=HI@208ZeiRcpVLO
z9+ZH_I^uN1>foj#hxYfg=r~+cxmHtoR8uKlOQ}=K{A4w$migC7f)1MwyN)Csi8@}Z
zrTp=^`QPrqT4wplI$X7s#kG`F9Vt4R=!n!(rt~&X2;$!OO<B>`EjHFth|P3l=-B1M
z_daCmaOimE!E+Cq>&Vj4&W-kNw9t{Q!{SC`H(KgwrK5%$HQi{fqm7QqI;QB{xeKr9
z_((VZ>1(H>y^gKrtRLv;prfOX;W|d>cwI*)9ldn)*0INz&{;<}9o=<wktiiyb-orD
zLsE2ON)L|3<9y@{Z-_!q9s6o2jOOU*qho-Mfix5yU}H)@9g67uQcLMC<nvQiU*)}B
zOBp1R!SoOvFQfz}y{Y3Z9YZC_vZ&x@sn<3(W*BFU@V9l0)S>He>v%`UC>>)&xtE?g
zn#La+!+PH}yOYYW@KoQiI&yWWq7&~-)pR(8v#!K3F)og>GxZhs(B<aD`*iqqc!dub
zT!|8czQmEzF-}MM+Dg6JN>Jys%~XaEopxMmSVx7A&1h<E<vkq}r2O}FFgjkab;L|!
zEfXcFV{PR_8HfpG%5ykA)-f~II!SQ-s@CKjtf`y=Zj^Q76CKlZe9DQV<EV~fJpW6_
z3})A{jahWe(($#9)jB@c@r90gI_B$`tz(Xkw>|c;S7LL<+q-ltnBK`Um&b>7vV2MN
z)>cRs=vb&@DSbo7A|1c|9sBg}*spXj%VHfyZN=5!v4kf5IW6`<Y>MB$Tt{Y1o|QUQ
z=~$uT`iJ&s4`aOxQ>Z_^wld~LT573$<ZE<n(6LcBA49Fxu}(*or?Kk=d%b2^Ra@Dl
zn-6E!R<^u*CU&!qZ#cEvq`RNQZqc#)aqQG9vBd2<cIeoz<A9ExI=-ck(e1}n`i{*z
zpOXJ*&Mx}lvMRg?ey?LUt*T=$XJv*ZkEJSKAs9M5XVmBRmFw*l=9y>Q|DfZbjzc<k
zX|9y`G?tC*(Z&8Fqj@dH`TU2asXx&OnHGj4bgC68BtPpoPP6FvUB?L>C#kRF4BdN3
zrBgb7(Q%sgFPn8YHNEAzSUMXWVA0dGvpUY{xTxcj4sC2|yVvc#kENW~ae<4;M>*M9
z3B=1%^;I1|EsDRQn+L)&_+G~H%c*OeeMRHjzti}-jz4tV)NxD4pX{TO|IFk{RTJ_j
z4z=IVv88f`?SAZS9d~p*(eacnaXa=e$`57y!*!BFyeQ?K;C&r`3wfa9k&uUipFhe+
z9fl=WV!iic|K*flkn*37$6O>owKM$kw8}H~v9g8cD&)p<PExM_I`X)YpX<#1*t~)<
zZt#Vbd~V#VoI&ARVaNW{X(S8<M4_N4bhsZ|*v(5Min>wE4Mt13QCvs~!J>)zYo1Ok
zDV(YC&+`&XO9|xV+$irxKU+dIH!8SM(Tx%ft#D)b_o<cK=uy-9&)7Ce^_x|8gIL9l
zszS(pN=Dq4rc|yj*>B&CXCbxRsO?4_H|n}kqgMQ%Z7h5}<5^K_ut7pSH*OcVmMm(m
z??wYR25(7k=td(qV%_L;wF#pP-TPS|^tEPPY7*y$)r}@@q`DFBMuHpL{w~GI%eyI?
z8$JJvOL8NT=9<`?!7e1UF`aElW-WK)Qv~m=YtJlAxrV#Z%8fLtebY4E%|C{kHWSPc
z%oKFE(OgIt*MA|aww7GJwIr3Z*^)~INjUFXyYXi^^RJ3FZnSlqi~nnG^m<f|gdz4u
zTn9Hgx^cjbAKd2OH?Ir!671wgXCYk#ySmZMjXkv$sxfq@wb|4W3AN|9c!PbU84D*G
znf9*J5_`Lm<2I*u+5K5#_gee7(U&%NL!ogl#(gi%=<mk88<qiX40K}<&FjYJZhYa!
z5I5d*;~h6fx$&0hTwWFTwi`p;7{*Z+$p}GapHaLcvB5WS?**HW6k+*3twy`?t{We_
zG0BZFZj5!qa3kPGt{bYG$3n$<>3(P0lQ`Yb+;E9dcf;+*AIsys1M@J+<3^#waU=}u
zD#ZKT*mua}emB;A{XcoojSpzvhGjx-gx!d^G0u%w+24~gx4zMQf*bD(A1}xfl8(hq
zjPepI;y#S>kA$>59XDCXbipZtQ@QxNG0lxn-8|CE?85&m;Y!_j+v#?c%n<oZK}Kh}
z@%uruowUzvH|D#sz>PT^lvgHw(2S=0(v5j;kT8S}$1QYYksE8=SnI}O%2&iOEEn>X
z8%x|+Dts9yoj-<2w8JZ%6>h9_W0j<S?Z%gDQdbMVd8+B!J^#~LM;CHqiyP}DX@eUZ
zh5WuLjz-wz#%5`GzBWx+=2lK0H@<b_J2whGYq#Bv9YTt3FUQoKl96Q9sisrbrFQVg
zFzn*|r4d%d?H2FaBc4WQ+bd+B8~cU)UR$B?pc_AOj(Cvj!67#eyYY(~r``BT{G4<4
zm>WkpC4aOZ6(otzll(KisEX~l;0eK#f)t*5C4Anp>A1w1!_&AA<gad=apSBT=iE5&
zMm`T>Jh<S-MK_+h@yv}&Zd_*JZrpL>iW^tmxXvYFnC+V2AM`6Xesd!|Quud~yh=@J
z--0?fqLN!&Y(?jJZH4kzI)8EcoNe*18-KM;yUXEr!+$XGz8inL@qqV)6KxYdDgKb|
z-68Ff8~>1K*#izHej857*0Sqs*#qCQG2?%3JZ6(-Sf4Qa!<b)ROG`W7g7W8Xyg1Y1
z1%2RA)6J)QzjWjHd|Mt53M3@w_2A*f77WYIw#ZM32NgZ2<Uwq{mIXa1>OnCN3VAT9
zTrxvp4~huy_hsUL&wEeZWh?GM2@gtoaJP`1(NZ3i_TblF6DoMXXc-U6da!wIVwp1u
zjFuB#Ua*L>Fy+)tUKn55gDM`>^`M>y(`TmKdTFof0obs5S=BtK?ZJ~?Db+ow;XzFg
zE(i0aj<nVC;N0$nH9i~p+}#OOsN=!L63I<&CG>2VRNn)u2k{;>@Svdwjo2LzEFMfM
zmpr9^W`!nc$rlrdjYVR-%#QPb-C=41t7x5O^B~cK{8d^kn4DERJ<aYxvIkY`DC9{V
zG^=QPMN-(d^fX4BdXVOU%LCnmHG8e8b(9}&SkkHKL52sJ9ymN`??DIN|9jAXhn=C&
zocOFLZ{b0<@RowD1X~NX5u|=w4_*`AE-LZ3WBAfzM-N7Dfab*WJdW2r=;T3Xk9kB$
z7r}uZ?ks9XyLr&vgC4>e?IYw3!JdM>Jm?)w%@OkIXpg=g^pmI(P3`Z&fGB^ZGsuI%
zQOOV?Z+h@nR5H|qVNpKZ^S{$Z-uB>lv4SH#cqiKUQMB;D_|Z|#cZH1cU~E*9>wzlV
zDX2x|Y=hf_MahY0Rwq30z~h0}1D^+e4_11x$^*lLfCnFX@R0|*9~TaK5b_}G!NmD_
z){ab#c<^AF?L80P_n24Gae|MH<nbO%@ZbXvwj^aSOr*X9^3S7^kLf=id`74Bz*awL
zvIkS>_8zqQJ!5}Lk%o)1KJnmFx<RqbX&$UDo>{eg=HkDS8T~CId4>lwr45TcnB~Fe
z9(>`!Y^l9R9p%M5^DT%u9?bP%A$#Y+&pk80^kBXR3p|)7(ci0PP&m4d!j~l`#HN3{
zyd|HcSw?3)R8uC`QNHqEiHC>dBrf$}g$KVBw=eVH&1y;NOzU!5wTYdC!qXole$BRd
zaKwY7^j;6vda%`lZ5~WJ+k2e{*WS(E;=y_kHgJA<aBE#wpPyQ8_F$86Mt|FzNc={k
z%)(~B^Izh24|aI4(}Qn4NZDw<H?q{4lojLn&VyYZjDMPV(1Y(e9IRz?-hCq3BiLYF
z@?Igw<62N{zwiTep$$n4KM1+LKIunZ0z5eE!SXr^)i#{5{lu1UOp4u<L_9|OaDCvo
zbLHo_d#z{0uqQk?>A@*l!-LaYh2pXp$cgJWCHyMn5Z`Eu%Q`FiY<9sm#m-AP7d*J=
z!MjRg<%9VyaTW65iU(KOYY%SIN*?^?!Ji)7V3T%Qf2ZTUZX>xa(LV$kt$ooNGc@rg
zFDpY6Pke3eb4&8Uvcx+c{N=%%xmNPRXKjy1B;EDko=7OXFXV4QCO!1vkq7^H%y*KX
z3jWLGi~ahi{bMeb9`NnuAIG(3G~b0Ld#1HA)s8oL;lWF;V?Lz#kjIO>USxUE!i#)f
z#CT!zBGHTdUKH@6lozGFDCkASE!INRES45)OPZSBe8IJ_*Sr@k;zd!f`9EVZFNzB(
z;YCRy6mpLsE=MF~yeP}^|H`iA1y5%y=S2-K-gYOJm+1F(lnP$N9<x;xtRz@ju!>++
zFCe6vV0A(2Gb0PBDMj%;z{Y8|+FsQ0f~2nCneVLiyr}O5Ndv)#f{g@Y1ucS&1>*#*
zk~dyBGbTifvU`!_HCKk_UL<?XlR%r%P!pS1zidzOqKOwIse&DA*_wJmOcP8OA+5p3
zuo+%tdg1VzZ(@8npeON&x6`r;Hoi-l?L|v3wtKO|i&kE=_F|nE>%C~>MO!Zxu&!?L
zuX)kV3zrwV7wx_1;Kd*>2D26~UiTu$i#}d-VmaF#UA^cgq_Y=Yyxb@$hr&yB6k>NT
zdWocm7jKA8PcQaWt;!^-#X53&dvUH|Uj}kY`g(DDca;HN^z%aTVud58KZn4P^JbsE
zpT_lj<nKGsi@&d=FqAo5Wr!DVO5txy$!~d4>DP?mG#6WbFNI;4kY{z25t4MGYdRHJ
z^+?fwM{txEqlHlZt`}pXe5@C_!c{@1peC4_R*A}PFFamM_2LsRyk7XcnCQg^UiiH*
z=xkm@ya;#^q;ZPIhXg;KZOzS>#Jzg>RENTttM+kTjQ3)K7w>uTKApd=!lwaiU&a>g
zXr~%=xT{IW?(rXbxt?G$b&6Tu7##Dl7fW8x_x9b`NnUW9&5Gr+_{3m}7k}N1;qJAb
z?(x&S_|%ITUd;63GY$dY;PslX(Q<2amdQ=XiL<0hUwARwYd&uM+>0x{)A_;%lje9a
z*NZPX<M<~_Rm(iO{oPpZOF!QW=Le?b^TnpxLN6B4{;BzSo+%$xE|!YEqFHv>mk2Hu
zTqd|&aE0JX!Bv7^3$7MiBe+(O#TNc1bAuO~xGear9oJen()ZR{mzIs+%;uemW%$O6
zEyA~Q9oU?)O_1cGQe`LIo;~v7su$mR%?FtLsNtd)yS(_`i``!A@#2&hzj(PrHTHRN
z$cw`qg$K!ZI@)T#k-XoF1748-AV_l1iywuz4kt0n@RJumdvV;0BVH`uXJa_(#jz-#
zP&f00mnYHN)?_B8-Ljn&Ze5%>d7tgHl+*nW`x!5O72dF3=8#F&)@AKyIUT&9{&_)?
z3!HbA%@QtoaoLM0t@2#IVd*@yLg@whuX({Uh->(8zjoqpUi|LGbua$#;<*<uy!ewN
z$fpV{--{}B^W5O1zG=DX#VwJOzgsuYUtZkx;-MFhytpUwzXk6LGJBu<1&I$>=A=CQ
zsq&8(|9bJ*izi;Z`mW@^|F1MIzfZk*CX!bfnfGy}LNC3@<3lkYiu=qa<@F)I4+VV4
zCs9gbd^l365J^Fi6p6|U`OvLwp~60}%S>e`DoO8GDOAFTl0KC8p@K+C`A|kkX&+h@
zDyPafFJ(niPH@D_#>`&Phe|$F6G>$sstBnn$Zug@_2@{MLh#|q4a<{pW|rzcxa;Pj
zt!nyE%ZIU3Y_$a&`%uS+ZzC=1`cTh@`XXd%LmwIlPp+#l+DLe8G}Yom6C;UohBy&g
z1>=245MmQd6r_$_NRnWk+bx^;km|!HK1}nWsSjyB=sv7E9+&PzGaugYp{LLM$J1Q=
z`4@l>4j;Z-+tj@6_o2CP{YfSzEqvxmk}cSh7W1LCa0<Kl&?d^;`tX|Yc2P-tA36x{
zDEN9*-pPl~!g+QW3+XDnTQs%14?UusYILMtK6I_Ce3YHu+lL$<`uNb-hcWD?5B+>l
zd^`^hZ~8D<vG@03Fokax93atwJ`56a`AL4JM)Jqh>ETePXT0UZP>x6s$GbiZ^Wj3o
zG2Dj{KD<~^Fyk#d<!}2i%7<AMs*d#G9Ur><><InrD0AGwREE*?pK)fCn(^ZtxjuYa
z)4~HCTt28iywY*{pb2N;l<c2Zg$;1~;PJsLqcB;}=YyZ4;KM>+%YY9-AEpn>AZG~C
z2qGsB`w*e22inNT@$QJny7|EU5Evcr!vr5D`tX4dANw%LhYuwepO0~WypM$Q<1%WF
z`Nc%8>clBh`&7ZiKsvqRQy)I_VT})K*#?oX5S$@6lh*KI$&ftM{9Gg?U-&Sa(`sqc
zIf5i}IXi^U6Pz!&z-$8+`M`}*mxyGs;8%jo)pk~grNWm*CCf#bNvvfhtMlP&A684f
zui7xIVHYN?^I^RY-}taal5XX*Z{RGm$Ma;0jkJHMxJ^E67DCSBV0w>@-|7Q)TfGmH
zw)wE#haJo=PaQ9NvUW1B54#%Vz5A8*JCWbdHh<&n_VG_ETnpp3F!uVekA5CRyCC-a
zaKOhe;1C<c4?Z09p+o>B1NhO0LtGOKJT;JKOJhEwKkUO#T(x{S>NDT}d1T<24?p`*
z$UtEO$9*_KfA(XnA18e{<wH$BYWeYt52t;2PPg>oS0B!>4L<zFAzp4jD|pF=b3)Gh
zu(7t~f^eo@q>qI&NG@|Id*@v7;rAkztAfwkq?Zn6{LV$vhkt$ej}vNp#veZX%~|t}
z<4+%M_;AyQTf9t2(rv-N1n&qgDe2g=Bjc`c=Do+f@fH$JWa0xK9&+q_n37fL$P)Xs
z+79AB?E4aX<|_MRn#G4_K0G~`(Y>(c@@)Ipv+YkgxU=mGOIhA|H;3|<bZ<W@`BB*q
zBg>N4j{<%a^dp}iF@7jTEeq2uQwQhd_rt`x79KiZ$d4j^6!oL9-#pizI>cgr6!)W?
zAAAk<RDH|yBu5E9NJ<Kp5-cr9VHqK11$j$QUUF3sWcG@FR7tjwOj>QP;zu<<s{3($
zp}ndf@S}6b90uod`#H`2e6yp5-@M-_QrY2l+H3n!$B!O<yx~WmdG@+~B>G|Zqn;o2
zMbf~J#(r~kZ79+Azp^*-BUZRYkhyBjw*Rx*9w%y6!Fa(0KWwjrOYJOyA<2(seq{KO
zEb<gTn)s0_Jk5^}i<&x3CHmejbG*`pv+ztm9IS3fMn~G*;b`thmLDyIPpN0grr8(U
z+pwu$+FJ^5CD>YUOkIVkZ6)<J!FGaFZZD*RALE-^7-jjdOD&xQI}3L4bH@y`>TZH0
z-TgRlGKZw6AHDo|%a5Uc^!6jikN$oP@MHObj6Qzk##{Oc@9W2ZGwc-3ZD>(w{Dzj}
zbu8Tai5(f}#~?oj`!U3i({t?nl=w|Q4lcAa(6IS0rH~BsV>qo;$MR!a#|S^(_TybY
z7In2xs;i{$&!E~!N;=x#@naNQIL|&>kVYe4xzOIGM^3IEsvq0@*zSkZ56zERethnS
z%MYD>_hSMLRn+44<60+2#1D@jUcdP<a+T5+pC5kO*^hu9A#p1D)uB)ZG3Yn{Z6pbc
zJh(dL{rPs5FwT$nq$vBEl=uBuSy!QOq8}gl@tI`#(2pD6WPI$$PeXD@K9cD7@8nGK
zW3nG-H`u56vEb{JPlQkP<NLY_XWulo)^7P!gnA2$=L`FE>G%xJqmA~NegqYBd$+?j
z#}|Ig_G7Id>-?BQgZuH7A4@n-7uvsM$$tD>S0SJ0$9(aSGZI}$yY0+iSmeiI;Rk2f
z8J#=dzSNIp97-0oDrM;NzANa)%j^s*g*@t-v&xUJg>wW~3t1!BBGWQyk$t@%8~oV9
zS-H^8u+fjr!Z$@Fb07BoCdwbqHFdU1)K|X14nKDK@v9$a{P@<7@BH}Dk3&-UE<bkr
zv4{5Yqh^|g?K#mpXGu)ey?*TTW4|Ak%l-27$?55`AMoS$R(pwh$`5|N|7kxcNHTa_
z#$i83FR{lhvLEMg_;G|o(A;s<kDsN?epk|t`9Vy}>9=}i3Txr4JmJR|-`G$3apz^e
zQ@jeuB)wYNa#~3B&Gxf?oMWmVfBA9Vj|=p)uJ(&u1DDzViM90U;GkR5fiL-S*^euJ
zT$S$p=Ev`J8{r(^qD3s%{fMil{Ncx+blUCa_2LFQyWC#O<zQz?Zu)UcB;>dKps7jj
z`f<;Xe>lo)z%u)NSsSaZPWju92Yx&h;UhuX`B8HVb=uTZ{_~?zaYsG_F$Ny{@x+g(
zT%7Is^BBmx()@V;nJk;n1z!lh6x>@PPhMUkUH0PLa;TQyFjv=t26~iqkQ6Y$g`I@a
z*-b4)3=}o+zJc)uiWw+wps#^`21*zxX&}>p!$2tmr43XwP~AWo17!_<2jqZ(at627
z#F!n9ss@|~t5h&h*)T6#oP!k&6xe33WZ>YJDU4Pz!0S%CRSqKc4=r`9Pq17ckW<4z
zO#_V$#2Kh%ptgaA1{xWt!zv6E8J6>J8%I3@e0kvaCH4je0>v%$4Sc;UWm`!L!^o1B
zUft|<TRURe1zFE6242oL*LHr3VKw+$0I7z#Cd3;^Fkmx~$lldc#>^>5p<OtmNd}Um
zJjH;z$4+5WgP*Y3r>t`{Gms{n(R3m71j;iE5a~b74P+VUYM`5e76!5nv^LPjFh3Qc
z1GF@-$YLHH-patObA3tL8hFh>M+2`LXlH<*gme%jX>Z^rqZ=ILuvt18=**(%|5wuf
zypnb!*3rcP3BzYumhJ`$ZnpR2KtwX?tW4=);0*)*jt+*`SEuwc(A&WFjdo{CM~;xw
zo9ul!QuP!H6@xE<*oPSyZlJ$`0R{#d7-Zlr@s_~`=6q!zV&F{!i}z>HR_^izcq25m
zo-%Z)U9IjIN-I@&42finFz~hkw*ilVkp|u|@UDS<J^MY6WQ^iS)l)``{kPfra*v3^
z#T{b|j5Ux;{ogWFHips7cJgDzEZ4#rnqls9$lwy93r@9L<_0so1`IlY0U!HF1D@%3
zYn^@hz#QIV1Pz1?L^y~x%P*A+#@H-j1EUI?1ro=JoJsE);O*Az1j_^i6AgT8;5!2!
z82He@QUl8jd}QEbj;VpE1~}g**0oGBFquXOXRt}U`f%cWVqhALLn|4$)-mT(12ctu
zCP>M212cp(3!}4ye{SFl1GA$#d+I48>zJuIV{^VVu)x4V1M}Ftu{rY%tg>3TWRWj=
z()Wu_j`H1e7I72|d?nUklwk>{UiTb+zO>xH3J#@#^#)eb<yPBQ8(1UrZWZlsm=|#d
zUK4pIHe;n@t%0rCmI380$qVfpnAd48fIAIrG_c9QW|3?aJomNz8v|Q}Q?0}3oP`OF
zZ4%usxI-{)R|ZRH7*lnZf$t5RGVqIm-3Im;_?fGafxYwx13z(P;M`el-_N!g_|d=t
ziBj@|OkR>hBB9+5a}r%iq2%7rRf(A;9LHKaC_l<y0fzY`s$boLjOG+Az?o>BV?ROj
zF0h|8aL?i(Ic?xq12;I844g4=*1#15SLq?8E$0ke6heO9zy%s@y}e^`3!|4re%S!;
zv75y?mZ|-=4$8S^;CBPpX&lx58>h)ShjpfX;ClNXoG<I`e;OE<?pR*l;;H0dl(z)8
z4E!YyPk!6L9gb`%3op<_el>QNEi`c7z~2TQu*?<qAq(vf4G>@J=pgbojQ9`RFf-*}
zLI2E@|G56s=Vzuc@Imx5cA;=%E+g4HZO;w7pu-d_!01bvxg>c4;MFs)U_QZ^0P+hd
zAXre4I)wr#9OXrX6b+zQR8l;EM{CRraj5`G2e2oAy#b^R%_<W>`2Z>eP%)5PHh^+M
z#<sUJS}}l10W1k%X#kZ2s1krRfcOBa27mx+2T&(~Y5`Oam=D%!22dlwX=~+fFpL^$
zw%@Pit0hUh!v**&vTlI4h}KxqsTaWU-PZa69BN@}5CD}K8VYG7*mP1+O8_j285^?;
z0emzobM2przfMU?2w?SZ)^`FJ6@V>(!~pC8Bn2=)<jDb~1kfdbtR2=S0i*`FOS7rZ
z(3HXe4$ifuMJ4G%nh9nEkSW9wO>G{)AEPpuu|)vcB5WBzyJ%`FA*};wBcyFq{#pQ=
zr`edReN@sxNXGzPk4icPFtefkRjc}yNb4HF+<Vq;0bJOS&|P$T1n`ECo&hMd*g|Ws
z0D6lgCxAXeYK=EL)mJ!4zW_!oG$joEMaa?y3K<l@-~fgMP^P$TWK{o6A#VjRRLC&F
z;esOsS<c%u*L!AxtKK(pbO7%L;0r*%Y8}Io4ZuYnKyCnP08WOl;{SOqrdYcelH%=R
z#tw?n0ytYwVbm?DBpxA5CHDr9al6Uf+fDpZrV&6OfM5Wj06q&~dH`YeJ%En`m=wS`
z)_5g$ylB2B{C&YsmYA<cP6%LP03QVKAzejuD!3E-9I?Tlcw?z`{SGVJJehVr6FZgD
z=cZ+f@D^{TQu2vNrUmdR=Y_8mU&~+m#M1wsWd?^SfH~9*U{(M}@>;$Km}i)NE?j*h
zKP9t8awK02<zEJ{_I&JosePXCjI@H3EC^ts2p0vgIDoH&r&UR5m@j@_H(R6cGTF9e
zoIVQ@7<LD+T=<FrRtB(2_&0)IM|D;US;H!#l63*B7rsGoqu{1!>SiJL>nU5JlC46v
z1+YCT*%81_;ok~=7nSb{;CtbP>nm*D)%JE`sbN_aM<nbEV1EDy0{9_-x<S+n;vgUX
z1n_SF|8Z&uaF{bFfIkEHi53gsVgQ!{I2r)o7iBmn<X8Ydb2Sitf@=AbnRHU3r=ps_
z1aMmTuYzZy^0NUXAF@;bd{lBlNX`1n<p8b-zaGF<A=d)<Edc-7!qop=B(E@OW)>w3
z|4u7(L*#!8-VESY0Jj6UBhh<;e+6(?2=!YRN`5go^HtvaT%!t^Eq@TeLs8iHt^H9{
z^Pd227BEvE2k<0-LO~P`;%NZSL?K@g&xPa(nwEJH&Gk~q^_5w9MV|lDLQIVjPLe-}
z0#RO2NLqcRNDxJXs43B6K@<<7Vi1*rC=o=-AS#Hwl;EAx`B(@;X^EB*EGt+}uzV0o
zjM-*})-$py2T?`j)q|)S#O-N?5Ja^g-mmmOogXVDM=G1VhNxu<r-f@tw6<U!!7lZc
z`auk@uQU)mlE3l!)$t95Z=MxbvqWP{5RHRq7DPr6aY0yvNDd+;h;Qy#|9i7ld=SHi
zq-_2+IUxvJ5G08~OkYvh9>o3ei3~|W%o&^*E?_SP3+FQ5+HDfVv1bXXf=va}f+#&d
zGhMjdQY15o5Bpbg1kpTb?u272)|mguX9aO&nWbeAErNKI-JBs?NR`1oTLr;4TKSz_
zYm$qxZGzy7)@_5xujFU6eGnaj7!bz5FggbDdJwHcXcI!GAUX#zl<g0iPxZS5(T_$B
zqHB;R{GxjhJ%Z>RL{1QI1kKf;XAr%ZG{u&7G?}l1c52pwAtO&>ADS_U1`D&PbF{UM
z3Vb`1N&SP!Dq4^W+JGRqI<X@IgXW4iNN}*=kRaX+;w|CZ2bszYe=I0CoMql>76>93
z#E2l?4q{{wi;gvWCx}rTZX=z1bP&I^?Ly*We}fpq`Tlq2*dUxiEc-DvSEA=n#HpfB
zq6N|ApUm)sOs1AU8K(!~4uXWiBg7koPl#X82x7*{RxF<iM*YU2AR<AGBQ`D+4uX<x
ze_P(8%LQ?dV;#i!ASMK{BZ!?rObp_KAeIENltUTBM?riM#OxqG4q{Re(}MUkh{@EM
zU}u;b#FQX*{g*a&XUfR-mYat%K4CeX((`w=d`4fQvvs!266F~|%nahQc`4J|^;tZ@
zP946n&k{c8SPwSI99lAn1wkwf;>#fVf0Z&Xi1}=DeWiJs%FOlZJ?)AU?6aQcTNK3V
z`pQ>Q@?u)Jy=6vy<%jyprTWUUAeINQiT)hKiXc`}Gl(@otfG1M=6ucSI$K!X>PN9`
z^MyS*9d_ib4Pspo>p45x_4&8H!scxVVxts0zfC%;F4I8a3*O%ZQU6)qtwC%HVhf+u
zH&DKCn?_)P+c~MPrTo08ujNr}=SQ*M2Ju}GCxSRh;{@?NpXzf=gV-I!9_iYFAohxJ
z_#wl-AgT{`G}`ZA2lq>lSRlLqe4?GHKL&9)h@XNu6a))rb*%JA5J!XfStNY5{>0Y4
ztn?UHzlrwD2Fh`fQ+ev5zNhGEL0k#qY7nP`_%(<NL0k;tjMRQEi1X6Tvz$;36jsWf
zvI<&ea0BI1w4BRyl?KYNc72>T(l}Vxg7__nTXfDKeh=b$5I1Ge|KM`bKw(S%6f&_%
z-y2d3OQRc5-tKV5ogf&c{4d&JXJ5)UH&E_!uo{?V|2v2WTxLV49Ku5`5kV9Tp->3_
z1o3YWFC{OV_aE2%Af5&BSjLnt@q}LLHk<uiyzzw$$B_ogR|`#lyW2p?6GGmQIrRC6
zAruH9CIohets>H+NES5dON$i_p-2ejLZ+`44WU>Fr9vnjGX0z;Z8;>pcnBpzC>b)R
zKtpGx{0&Wul?j;*xHHOLHiTF1&ARAI<wK|t0^7j66+@`jP&xEl8hc$OgsLIfLP!h&
zl!wqDgoYth51~c~wL+*JLd}p_BO6B7V%OMBmRTo+x*^n)+9{zMv;9o1AHtIzrdp#A
zVwo|7#-cOwQ9d?oQu{t}Ay`9TX$c~amsZiMPX!#DK5TQ#XU*&(B!!R`LV5@*mZl_&
z5mH0uEKZSrH3?zv39~vHr>Uf}No-!T5F8;i4<RFj%n;ZxcKJrfbe2rxWQC9|%FNh8
z48`fs5?Y4PO625p^|m3r7Q*XcbPA(g2<<~yazE{z-B}$%=*S+0(Kw9Px%jgsA$-NY
zgwQ2~2_Z}jp(`79CU#f|!$as6LiZ4Qgz!cPeM9IMLeCI-g^&}%u-WEAuzzY-;cx%m
zA^fr}LtUPd+)(Mm{vI=*{wX2!4`E0MZ-!vZun!1fU<iXk`1mt>LW-m3e|^vH%;?Zi
z8B9Y}caXdl;-(h%5e=20A$%Lm*bvJ2c9#9gD#wTr-VPx*1T}<_^npOeXhD*9gp3ko
zA@7DThE870GOnRAHuS&eb;C0p&JeT^LLu;Xv?~NX1ix^%pjXf%NQI0d7NReNe3|C&
zZbRe&!Jt$$PdDY^5F#Ori{=_H<ULj@gwL9&!?45c_<)+FEeVYrvqShWgpX)}5GI8%
zD}>%<Et5GNIB;~K5T?=_i&&bbS*C^X3GJWZVDQYee;NXX45_91&5&FyaApVz)9n+=
zS-KUm@Nc`%Mg9e=m}jSDYR5U|a2)B$)9qh|Fh7I^A<UEVX((pd(k*>q2#dt{ERDHr
zH646(za)gEA>0h%RtU@3mk@S^@IA*ggq0K)vuq1tRR~{)@J$Hg+vTjLOFU28AdOiQ
z!dluk(?Q?(d9!^T$35AxUa-r)jE$nhHg5`HGo7KHgFI)0eM<<l8!B5v*w|399#7%$
zZ4Y5b2s@=Z)>w3V2Jzbvz7xsYjUBYo?hy8ba4m%2Lf9L^z7S4?a59AbAsh(d2pinO
z@<Rv*#ovBn$IDrM6g(vDVU*!8r-Q8@iKCi>p2jRkCF8LWeilN>aUnF?DOzB?{d5Sw
z(%Wg4IrjLvrX|mWa5jVsAzYLpI45|XC2Y2HeA!3hB@tc@;YtX6&P>Twk&xs&o5JxT
z`JHpEu;owjmg^y~a8~*U&8s<Dmp30D-Qcpe#Xjz}oZBJX;mR3C$uRy3;Vzfiu<7mh
zLbxBo%MkK}@plLhLU_zM`?aIZbo)cD{2~0yTfXV`N6b>*Lh_$X7T4=$MKrssyyZy<
zPbJGU!RLaz0~s%b?65dkTHY}7g;BA#qfi(zVO;t$rGOxPHGkN2R7whpgeD~~95&aA
z(ZwupZ!!n2Xc)!9=-SRvJZyT-!3vf`<t(MbC>;jEs1`<<Fv^BeDU4e-OSv%8yW7i$
zQ6Y>Wi5C7_;fk|V3}dLxa;TwlF3ZAQk}8WPm8*oYv9YCU*nBF^X!S5^gi$w)dSO0c
z%cvPPr(x|d_#~}X7{S^0$Gvh|e`&81#->#%?Pl2PhtWWq+9-^MVI+NFDsU;||KM-0
zu(J!Xl6t+N5*LOwjLa|`VZ?`#5JpNEP52%{(Rf=J$wCg-uqB2;w6iE7Kb1**vNrPq
z&#EXIpGrf8ai~su-eU1-QT=8d#A=D@65TW}F+*}K=x<xL!qz;DtS~z8);)~T?QJc>
zXdOnIFt%>Z&K7JLMk^r`V>2mambOw(yD-RK3&Xk7N^;?<t$i5HKeV!5HiHdFf1Jny
z3;k>D97f+TuI9CL38Q@V<gS7w-Gp=xqemET2=6JF6GpEvdJC^tBY6dqsm#zPjA>O(
z(l5-H_7UjNt9F-G#QtHtB7?#h9LBsb=5tKLeDsY`>{QtN&GHt9;9QgR<oLZitwY)V
zoz`K3!^0R6#=U&;ZwrnTd?$<@%WQE=Y?N=_*5chT43=5jGA4|%VdRFPhWW+?iex4_
z1xfTUxJ!e^A^X+t3ZuU*nS^pTy&|epG;f?Q%Kbu^6rjU|5eg$5#%Eznr!R#uE{u=D
z_&ALBsNl15pOXn3LE(&!7s7o@CWd*7W&QDm?Sn8r41<KxQiW28lfrO~Or09Wf7fi2
z!`NBcK1Fcd2i8v{*E9}vG5e=<mDP#VC(a0CrX+nC#;h>7&&gbgGWByIUkJ_)V@_1g
z(wM4VupM1z-SWL{K^P0eI2OjwVJr%pZ)Vc+CGRIJ4&$pZmV~i1jBR0T51WsqmW8n<
zjJ4D+-gtQ!D}<~JV^tVm3tug``<BJ>MI5oUrSZBj-YU^}Gusx%df^)cDcs1p7Ufjl
z5(crWtuc|QTf;cLu>{Eu8iCF)C4U>ncar5m7`ue*jh67eklkVI5z?|$W9Ho#P2Dfq
zS>O*+%R!0$NJ~oe#NIpw9$328Z2XhxPbk;;NEk=MAUS%tERi=b$HO=gHeYvqHZzsK
ztWSoKXL<aoFn(b>=@>N%UI^o27{7*bCXBOToa4~cNjo2gzfM~0)fnQ-hDxQYF%(v4
zq+AN)au`=QPv3|iIX!0EKPfDMcr}dr)lKqy7}vwtG7(!R;tx)TFdj$nB!U}Z+zjK7
z2>y)VRv5QgQ3U5BxWmPt^CE(`Be=^M!JE1W;v%@u#XpSV5tNAFK^PCic*&MW@Q4dz
z7|&=f`HKHvA&=>MLikbqEBO<;O&D>F6h^;urg8^>=V83yLg!57SN2;@_01bWz6c6N
z%yO6-6ETzWOLTPqz6B&o2@5O~LE#9BMEDYWYEi-W$HtHsi{Q$;_TR?F5KBf-DuU_}
z)QF&T1ZAY0DiLn?ms(bM#R&g=G@}gVBd8GNEgC76M4__a8`9va5kR8cK%klsZVSL>
z*NmW61oa}QAHn27Rcc4f5BcjxaO{tiIuUqtV@Bu3P}2I-)bA&y?h{iqh@fEvjUtGZ
za$a?oXo+B?)MaH)Bj_GMj|dVXutngApm_v|Y~h%g)CihJV2>b4vL{E-M0!n&rHF*~
zd9}L&ZIu>5Mzof6A<ZJ_RJjVP%ao{Tz>O(c5wwV)O$2RO%b1w#2wFwZI)cU1Q(H#M
zWR}Y_3cni7*CJ>a!RstaQrkz+Q8IRjm>WC1(s{Mh0&{hapeqN<X}Up|h`Esh8%EwO
zVs7cc=o=CAj6jK?zm(Q1V(ti$BfPg1Naa2e^pz_5NeRqIp>FLvAcBDryd}ykc2ER^
zg}<^u<qCa=L_mC#!{<&VVXmPO3?JHW7*WXd6*-KKjNqLJ=0~s~f>HlR(^)`Ab+lm^
zcXxPkXOqoZLPAKEphb%o2$13}?pl0(@7moBQi^+Vr$BM1ltQ7<La{=DLa|bc%m3bw
zf6tloo@c)KX72df+`Tpovq7~XY{PIHM%XZsLutcE8%EhMj#G45E|$a5A8o@J8^+4a
z{AigZBRF1~FhOcUJ1aBEhRHVAZE%Qjis*D3rrIz~*k3#2W1VN%V3Pvb3G5tprqc%3
zM;{y9(ji_O6dOEZ{J0`m8D5BO^hsVu1DufJ@UhsC@PgVI5t*W2+c4LLOdDp}FiVn{
z<zpeUZI}}+nR&mF4qqsic{a?Krtw+}#PXfAcadC_H92-H*HRmn*>Kc`W1K%WtgzvG
z8}_i;HmtH?lMS0~_|}HiHmtK@y%e%W8nssVV{O@LmbSr$ja<2JyMK(bdK~vHHf*)w
zI~#V|uuZaTw_!(gp0Hwc{<zS{yKLCag(jWD>>vN}W3M<LwBe9cdmooobXpz|%Zb_<
zT(gI57%hwUi1Zj&^s%wokK1s<hM#OWW5Y=sevk^B5{D6^vsZ~E^4~mo-5+f@ElK3x
zYiFDlZaFdW7lEH`I48iJ=e*2J!UY>H+VHClTxD$gWpVgT^paGMdm2l-aIfrDPSh&8
zKe=yTtHa}_*Ej=5CSGSofj>lVirx}sYQ(60ReRfpJCciB<*)4bxJ})x_k<g}z<trb
zZFnH?P?Qdj_$m<P@Qr%3JeBARz6#iour}8-z699tT#T*Hm7_zh->iqX<|4cl2STyY
ziEnJkZATtE-rDfa23p?RkkzgM!v`C(M47G27Uk>$IYe{XkxSrEGu@WzIr7?(&yMvT
zZ15nz9c<Asr=|t$C}>9^JO4@r`5egaKoL8SaATw$qnO=};&zm=qpV#!lVe+@ow6%o
zM@c(M*-_e#<o4<H>sUuT=$=z&eR-o^IXhrSf*p13C~rpvUdWEBc7&FjE80=Xj>>lJ
z;L660+G&JsOU&Eq=vtpksAflXJ8IbZ2ZsDZm300R{darwp4ADp?Aqa?b~~-j(sZ@$
zsAC6>Iy;O4<QO|*qpY_hPS_y&sCEV&Ov2`<k3}F}bfK+Wq8&+g^s}SC9rf52J9vz+
zqaF2miKfYo?Py}x4hg5&kt#s8+R-4&X#x#J8?m?RWYD3hT|0)v(Ath>QT{}rxg9N{
zmX>z360W^kJ4VIO#*R<L(l+YT&W`p`?(orhjk%K@pV<*()ph1Sld{vsr+1MkEnNlD
zMZ4M2J!<d4L8+5LhtI{IS$f*hE6TkE`q<G|;J0Hbboj!KFYOp%2M>bsklp|p2#)?h
zI|h7e9VAK^Y{!r&54B@hl!ptX)XC6Ja>naM+cAcHZpU6b#@aE?j(K*>w`05=6YTKY
z5wK&T9ba)Ot~Pt@n8Zn9#|%4cVwu9ZC%{y8)HLDgQA_F$GwpVcomd=E`{V)X&ip!;
zMBSXpd#!Y1@Y<n7eSCKCKp>4lPEkANuoG-4svTiFX4|y`X1UfRMC_Q!!CjM(DN5j>
zoms*;V|0x2L$1M=^0i$%{WaIlHz6qu->`=Vr4ts|vCxi9c5Jp|ksXWeSZT*9JC?9R
z2BkABvtwzLd17aIlvfDoHks-3E$bPzuNGJ%+P7hkbpq=}H}ERsHUEvAu{$)_V#ijy
zc1CxX9j18QHaotv^JOCCzck%;I}Y=&K<yx7m6bj_?P!;guEbh*+qDCeeDD3eUHcNU
zL!FF$cI>C89nbAJV8=l_uG?|LjzcWOj$iHg&5k2>9JS*-*K%InF*}aiang<-?AigX
z6QcR%naL}Q>9%gPp0eXK>$cJQBj?zsR>JqY%zF-}{KSSFPB|lbR`h2(&I#}=J(GU1
zqisRm1v@SZn2YEtm+MXoj|g6}<99o**m0Q?zJ>Li&U$8tl@sQw9oIOr8?*z8L#L$>
zs^-`IVaH87?%8o)Ru+$y-m>FQJ8s)?$Bw@^MXOoMz3R>{=%{z?piU{=V?=S?fI1nx
z=-+lUooW8pjt880`L%EV9@_E94#H#6C!+s|J{4sWPlGepGdp;eiSWXXm)zm)cqesu
zWyfnf-q^8wO~TBb=@njd|2tMU@IVR=3%%!Tv?GfHSsmI@UJfM>>3#XSUN#4=m+oGr
zqxoX2E_;$Ly93l54&)TbB}z+f2l5E#6=e_5SipgT4lHwExdVk9DC|HB2U>Ffcc7>P
zbsW$+P|Shi4xC+VuH`@p2TD3n(*fRPP|5-QDsx2#cr3rP1Gi&zWkd;O9VjP^sHHsX
z9A%yet>nOmzUd5=9jGE)RkWID^=N7h2L_JoPB(5K2bOCKzqSKC{!HQO>%YVt!wNVM
z=Rm!y<ziW}Rpx3ftp*2-4x~9S;5)6;Ob#Ron;l@(B1(uCND!?nn&`mxZRMD>xUIFG
z1Jq>E`l2Zgqzce(b)Z3%Z3`24p@wpaMh-L<prwgGQwN$wEuRQ97tJ(UTRG6$f$0v+
zaG;F?pE@wgfzb~9zQEkpfnE;ucA%XD?Zwi;fpme6qMbzP`I$gx2f9QpT?N+tkiyh%
z4s@4j577+K&qbNqQ{eGVGrwx?<G>(?_8mC6uLIP6qWwj`aNtXU0isMD=m1}{2wY!-
z*?T(c5C?_|3=^egxWEX}k)q|7n8!FU)`6)GOmlz(`qNnJI8MCs*72efL??>U_?5sU
z2PO+l5uM!5%A_T$6D%7Ncs!M_O*RMY4$N|3HfQoUv%>+u13bsh;B>$x>=yMz?Oq3z
zDEkEF)Xf!$T7nLQgjLaS)E;plGs-hL@p`565_25*+JPlp5f1IJCHIiI4$M24((@bh
zHv|U=4D%gW5aopei$oWTKKjnOr&&5Xgzr7}$LUr$u+o88C-hFNa^PDB&O7jn1FIca
z<G?Wojytf{p>65w99Zwr?l9tO)&>XeFEQ_M;5!Fc$VSmk4r~_KB1-#K2ew6dy93-b
zXuR{V`%VX_`$cz&?iT&tfjt6yMd`CopnivR@&Vz44jhW69(LeJl#e>J7gM^OaPX)Y
z&N<NMc>=4=JuTM?^A8T3av)Gw_oL`(QAU4q;7pXyI`FeF_bVouO82m~H(y}2xkWgT
z#fe`X_>Gry;I2danwsxFFL9ov=@>2x{O-UN2d+ABEo#3ha9#9<1AhpdSz`W}>y||S
z6ur%UPUu1VUk==JXos<fE;bLJkbd8Rf7tE3B1d6DI>Q489!B|*z+=%ToW1R=boe)#
z`ifIX_&?F-QTq!AUPgKHQuAx!H==K&_ICpBMR|)#RwuGKQPqiRPVLP}b|>;XQNW2D
z63r<}doF?8PUI2D8@1;X;Kp9ii9$|31tT3!q^&j=cA}&Jxrh@*g^NWk#hoZ2d@?<q
z4h*FvTH1*+QJ=C-loM_?Q1fBQ<)!=zPE-`2rIJ8pegF|L-%g-0ZL#^v+Jx#(JgsT1
zAxfwzP|Jzh0(C@n(bO1$>2)&VoG>`i&57<#7@aUV(bS1%PMDprIJHx<DNcO8GbP@M
z^d0H3)vcUP2~KVL)fG*2B1xd0XtF3%>pS^B-ey9o6k-)^AetuHP?Y625@_s1lc<IF
zgM8vdbEkIhJ>7{GPVN09CvbZwS_(7T%8Ay(ZK9S>1=@<X6WxaH9oWn`9YaSaIthO!
z+F7(qG_|V$f0Q}9&0KMXxrY-OP7HKnkW>3y^SKi}o#;j5a`POcj&q(bti7G!{V9E%
z|NqR=SD>F0{RO^=+P`#SK$NRkt%KPu%gjTZ80tjXjS1Bn>Ud8jKhW_pk-x084tHV%
zTkXUsCoZ{g*@e+gjBz5j3wc}^>%=$~<-}<x#yc^=i6u@fbz-6uUpe99d~jlt6O)~A
zu-Z;caq|B;Gp0E)ozeWdsiF_^=?3T3UVvse!FwkeY);stoL*h$a-v9eo!hD1W$@YI
zl(w(x5j<Q4?Mr*bsEG1Fc!1kT<I<T<%yc5?M92x%i3%;#Bcfr^Rdda>Y_F3+o#n)A
zCl<1(Lb@ZnQsy`j-k31YiLafQ>ja+{?rWrlZ=Cp{4)4p>%@+syERdQLm~oM0Uo6Us
zEpuYI6Pumb;=~FkR&toEx((d_o%nsOxm_*Y8i8+}SS>)~m8mJTuXUpGI`cXw$m`jn
z-I|ekH#)IN3L#(0quc7lHYZMSX-`er?!*o!4mxqjiSL})>BQpB>3c<YQTZ0Ab2`Ir
zv3xJO#|hpdLE}D&?iXeBfK&S|k8s$j-CuB2lyJm}M#Xf5V@~{4C*ye3{%lzKnmyK&
zjP9}i;KV5bvb(nKCnwHuwzIbl*0WCh?8H4M?mKbLiStg}meKshi3?6#b>f;67dbr&
z>Mn`?D*Br!jhrNxg?|^l61Df=ox;Al?$nMq+;rlGbR8{!2)s?S(tb-){}jz$TX)Ba
zyKLi;l)s$Xy_1t>naP`HoBwv=ffLW1_|J*r?b07|IS7y+Iq^8kPdI{e%``rZTK?ra
zO0m-N+=&-XyyI3-*SdVH`K8$3a2kv?zjETW0QtM4DQ_i-xe6Xgc`yEFUUp}$EH16D
zvWjMNA^v0vKR{)7A%_b&T_ERjVOb3wfx$a5J+BM-T=?9Do-X8fp@0i%F8o~3TF`|;
zF6do|bD^*cMO>)tLKPQ^x=_r8(k_&7p|}erTqxzzR#Qn{Yl4*_n=XU8tCp2FlhQt6
zcS>f{<gza9<6AiwdL>vH;6i!f3Q<c%fl8vKbQx7$sOCb93$ZR#ccF$0wO!hrXQ=5y
zEn(hf%V;l@rPgub{?U}+X0y(Ph5N0vEP7p!$}nz&+2DfFg}N>zx?pm_%&NM;dyTpL
zbMH&BxbUQk?(&HgDvb#)^zE2VI5j0D$%XnZq_|Me1x6W?U0^Okstc~RrFku@G~czm
zTm!i@E$3RLH*}$q3yoc9;zAo2K6T+(g0(3-EuXHH3(Z`3-7$TG(fWxC)aEX<aG|B}
zmUt^ihsM_8JfTxMv$S=g)4GH%E_8LFoeS+<=-@&}7mnvC_n9PJF58_Bom}{>ijJ_f
zwyra)-9Y1X7rMES;exW&+}#CRD1Ce39z9&3Dm$#a*-(S6W_~>B<w9>4*0UNe^kFBs
z;C8{|LO&P!bANVWoC{yDC%2e+Y@pCa^Or6RaA8-o9s^w%E-*-xmccFziSkf^VJ_`9
zPbQ6!=t$8~QJ>KQV`L!cGhVus12>Js<kIe-nJ7y5N??);lcSa?0#i8;=W93MFxPY!
zX0Wy!w4t}TV2`pxz{!D&THY>5@UmyPB3xMR!q9bQp9`5T%yePoe6wFP;6hL!BucyL
zLRdHwwN%-cQsYF*EEnc;uAWGlElQZ<!q>ucMZXc97flTuN?8!)g#wF27mF@oyP~N)
z#Py}l%2PlqTri9=GprO?<-)fDtE2WcF02(^7qwWwHg9xclM6>&IO@V?7q)O8VCpP$
zi=w*01+Cl|x4N`fsBNO#MR$mP=fX|_rtWfKca-(IjFaokdtBfP*<R6oF6<XLAWHi|
z7Y+#@j#@Y^k8#qvFltl6Sr`7<q}}U!f-^afc0}r=3qM5pl)#Uor$v8q;Y>7j^(OPr
zE<A18gLgxpbAfu^g<k~77hJd)<zKlXqRe*%zq@dSUE#)NH?F#HjeCL{iEdnX;Rd%g
zH;TLQhYL4dc<;go7jC)mr%QWx@t;dO^LE>XhZ4QRp)pwRivA^fPxQVhlm2$$L6mP*
z?*2$}v7E;OPelJ=6QcHi1)hm2`%<2BLztSv@WO?c!mmVMi@p(kD@vbt0^GZ@xRI63
zDXGim)&{q|McW4XK)38}?d3R!8#&#`<p#evVkqE7Zs9zld877x0{KO`!P2v!8-*lV
zIO<bGpr{*%PH07yaHFIfRotlR=6OhzcH`7Mb7eOIUz=O%GRnB|Vo!>5r@5>f<=h}Z
zw7e*z72K#8<w`7Ss^<L9Zms#%+^Fux--UGvZq#t2rW?I=8RIHh`6#zqZtVeZaiX<F
z>xk;yh!KbtrH@`<pH*jwT8wU(gw0Wl#f^AjzMo+h?!c$&Ta(<V=f+SshPjdKMtwKh
zy3x*!6gN`cXy(TK0y^FU&UYzRw{}nB!(?j%H>hc%4MiKd(O7`?CT=v1vU!vB6E}=&
z&Abz{xf|3LqAlHMB|uASfi|L_y0vdqXl(CB2RFLA(Zj91>~?f(e+<HJRy(l|`QK%t
zokhEdb`@n(x*Of1eAC=xfZ3YiMt?VkzpKY@Uq5F{^XPiI(MzDWXdltOqD<|_PKdP<
z_{HoOZtd&YFWnd*Fi@11K>~wChq&=-T>_26-5BA9gI9NBq#L8$m?SkB?FQe;up8Ou
zW8B)Yx3QvxaRTE-Cx}jT<0}Ea0MTKx^xhP=c3_NQs=zcirbjI^IPHb)QHy(8ipveR
z8>$;&H#~0b35KQDn)#>nUSUQR0iUR!b2w@bx)F*pS9HXUOgFw|IU5tIZZpqxV~HCx
z`Tq}Y%ywfA*TOdQd{M&J0(0H?Mqr+3^#dtPVpt&2g`$f@7mM=WQCQ$oDR!BgXRWpJ
zSBS0@WptImkUtZyRM)L`gStj^tsCnE){AZsW$H$OX?1j4+}P?yf(Lay*yhG|H*UId
z%Z(iz5jTEx<Fp$)-Ppx7?#5v^cDwN(?|ZfC_^&wMyV0mwk3FJ$MfZvB7iH1`frD;L
z(Pc2o)0;=QBW*DA&RO>MQEm}y&BsKKi=GfY>BbKNr$p&fu}%6<Zk%!BtQ$Xbmnf*+
z7|#8TZ!BYXr<`-+vKyb))18;4@rx+e$OVCmZu}ax{N~0b;aR#2?NvZ>G2<11t8QG2
zTCNM+5dA}x3+GQaZo5&`gJK@sapNv`P7m^U@Ru9+*#C*v58Mj4P4S9{QeL{XBfbyZ
zcq;Hvl$J*Vk42xj@sGfujoNEE!@q7k6U%?1&qZl}!LDeLPGHHe+;}aQcq95&^qnYE
z-wUkVYG!@1c#zejRV<q*A-g~h4{}B=xjfo-!KBYOnDctDPM5*SpO5pQppGHG2L*%+
zMlFQ|3X2x;Xm94}R@{RU9#}kx_sB;85BTC$-Gfpdl=h&E2M=bN87g{EHp=BZK$Oc1
zR1hsbTl1{sLFH&_6@jXv)mZ*~&7p<|HN{d(R4-avw2r7wG)6SmgLD1UKh`161A`bD
zHF{tYHb*U`wwf)&(z%&G*l$g)rAzc6$%6qN4D_I$2gx2Z^WYN?>U)sl(N4=Z^&nL`
zkQ1`ubgNakfoPg&L(xW}jYZkpO+4t4s(lXSfnI)WZ0<n|4?g#xr$_q~IpC}GmLBkw
zek%`J^XK>t<~E{TJ^0jvw!-Z^=p@iyls+8<I(pE&cn?NDi`qL2bYb3lI@;5t_HF{*
zS(B(GL!eJhT`w6#o=E3RV7q#I&_^ufz5@M3`-^_z!IuJ#R_SyY<iTJMzV=|Q2SYp<
z>cLbGrg<=o_Pn}r9_`7qgy9k$Av#iYl;~&=#t4iRWf#$TyyTi7%Ip(8_$tbi1SX44
z5$&}jWxDjU#{;hiGuXHC4$3BA7j=j_J#a-+-2(hZPVwN_26Nb>-JU@3dEggIKr|>C
z5>-X%Q?q>ci1=rU&J>*`%0gxf%<<reE`!l;JebExRZq9hqrH>l8;toJbdUDdccBL>
zJm3Rr7fF<s#R5w_SSqkgbh&7u5<TcZ=an9;l3d@4t`=P*x>l4=>7`rkG1`ya8@X9E
z(=~shdzMvqbbxu2L^pe|#e=Qf{~5hjhv7R9wtMh4CdUp@TIN5?#wcO82j8<rUgYs&
zj|Y1__}8QT3*0`Bc8X>{XM#sNKl6P~(?Jhn7weyRw7U@xd2pCL;K5N3Zg}tqyUv5-
z9-Q~!7ms!>@q`B_J@~<+oncEFnf(-fhMUiN@UsU$a*>Y6e%gZ*zQmtI31<YD@f=H@
zWZ=mn9w;L4l-C81c4&}Ezj<(3mvPa9U%8s(=n<orXp}6!dvL{rtDgTqJL#GjuZuD-
zugKDP#_6U9w>-G-!QUSIDYfF!ySw6cTWWrXEs`Tfe~Iy)T%8p-=hX^%AeDb8o~+v=
z@p<gg9)!feOE`W_|HlLBQ_&g*-81RW|3sgA@WO+a9=!4(n-|%=T4x?n^sha5!=dq@
z{Y66-FL+<)J8n>C;@@*uT-vBh7Sjh0o@_U@Xk}axF=h3FH+T|qc#%`MqRW(vMY&AO
z*k_xO4+ml1yx#x+n_mep@<lnnKmpN$UKA22>_riQqN2q_dyXnqTws4p8s`H;Nr{&7
zqO=!fyeR8MIWMYsQI+LyOMn;Uz1q-!Jj%$fsK6?D|9|SWk{6YQ%`>#qmDT7xKaQb>
z7^{1=DM5QpiGDnXR>upS7i*Vb-4euj5$i=W6`!ck^D15(^WnG;1}}_W%<<xDmf(fi
zi&0WZizw?n#EW?01kt*piC!dmQO}EHFFJbB$&32zb1#~E(ZY*VFRWfP_M(Z@iiZXp
zc#-BsLuqCs(MP%rHktKgYE$;Zn8chh+M&2+UhM%@44;T`vptd1xTQ3zwHK{e!x?3H
z3XZe44F}GPwqCUJqP<sJ9qhWlPL}1Qioaa8gJfwwQ#(lcnHQbC=;1|%7hSyQ>cs$=
z{JdPcT%{XFM6S+jb!SJ#WDq`=r2bxf;YCm3US9O}qK|N2FL)l0C8Wh<^b<=*Dd9`G
z?m#aF@hZ`=;Lr@_C0=FY;lq!o>^Rlgw?m~fhlvgs9U(f>i`9VyI*gX+7}2q!<3z`M
zF~N(8UVP=nOfP16G0BU`Ud-^q=0$p$hEu$l?gfU$PnGC2QQDvVnKrtlG0R1>-3x~o
zVJ|*AVsd)%=0H4yD&X?M9kqD8@CqxUzNp<V5D*P|5sKOis|l@d8dwyIjY#2{qEBC%
z4QYw9rSg3I?(8k5w>eF7z4*q9f4q1q_IY0HAb2s~iv?m?=*4m`RtPWhVzC$1%IcPg
z5|(<gO!$kK3`YODuV3j!%q#19FIIW+Er(#7ZnYQv=Ve*v#TtnoZr)%m2c>xfCUu{d
zMBTt^U8=KDbdzYlrq<0~Y~fVtU}o6r#kMGK7ue9uy3>nYTtQwO_hPpf-+TG2J^fMc
z|6c7OV*8~WOHRvPFR1(2gg6V~r*h^4UQiE;9%4<rIO4_DZbn;cV}VVY1OFeJ_cfgG
z;-nXUd-1@Fzt-ws<}v@^1?{K2_|c2g%+3k##Z9mFsOU3Zob%$m7iU@3`(}op1r~NN
z{lfC!nJ;*8k>i+QqVuop9JL3-wsZ^iH!m)U<#N>iyTBDMt_oZey&g@yAz&}1Jwp1H
z7k_$j+Y3H_nI)IM)#wgu%boCFeTNLwUG5uQjGpy+M(=Sp+T-tgk-xKXVob(EFD|@G
z<URY3y?EpWUwOxk&raope?rT+oYP8X{g-x5Y#(O(@ShjYxz+ek--j1oy!7IQf|m+j
zahUGuE_CYl){ECt&KuF=IkZ>vcV4{r;)54i6iig`m4d7avMI1Cyp0Ii735G*SwR&A
zIThqmP)tE_1-TXEQBXiZK?UnJ8}cg1ry#$Aio;U!WHXPM-ndO0qw~5cM~1PGg2D=l
zC@8An<THJ6mVW6n!`k9;Igc9uS*FkPpJCE-eF+666_ir|1*H^}R!~MkSp|))maBD5
zZx5SFdGzHxreBTxP1(3RY$~sy0<Wc@68(?q+kVz?bV1|u{BdcM_22C^x=I^c?oO+!
zpqc`s0+WL33Ti0ODTq-}Q$Z~SwH4G+(DbZ{m9PH6v^$q^c6MW8HRJT<snshQV-@HX
z#3?W+_~yBB+^B|c9_!~U)Bkl>`%{-g$Bide>CFl(3X&AmQxLBpK|x&wiR_IQ#x6c%
zppyCQd3|t>KK7k{?>^(4qN&LW>MKZ5kjhJUx8%8FNmy%a(%X2llkxZfL+zjRgAW?g
z6f{)OT|o~8jo5qz?G&_E(1cZ0&{9Dw1<e$EqM*5g7QAkedUm&Q(m{RPos^#n$KN_{
zUg^;<IHqr{ppAl06}08G4w(;+F)fM7*xs?xq3)JNIgCBe>ZcEC+(AJ{1zkDl=k%Qv
ze5RnYf-VXU7L6NKJ3e?sf5v01*3~k%t8v=Cc+YqGbOqfM+<9+oS;3OI$z;82$WZXP
zg24)gDCnu6mxBHZzEIFxK_3Nu74%aue2JmeG6P5ac}-K%D)ARq=zkb&DWB2sO9cZI
z3{)_Pp>SOH?8aWX<Erm5O^q{FI&3*H)HwOMaj1e}3Pvj!!*UdiP%u)#D9+D&`aBEu
z*B&SB$d$0VNjx9TTw+7&L~H6;1>+QqS1>`r^v))Z!snNa)0SImTP-DD>Ax&(EO^j7
zNx@_VyA<qJFh#*s1@jclS1^rP6a*9m70ggzQ{YzMQD9f#P~cSHQgErcY4lfVg{qn?
zJN2B{6?Pfx>@_63Px2~I6!;YQ72IE}-+C*4_iaP5(w4uk8aJPcPyNiu+J+RU3T7#o
ztstx*q99YjOa=R5G8z>ycf8YZaoL7DnwZXcjW1T3!q4<`6nw2<E~g(?&0*t%N%}<_
zjNcX2#<x#rQ+JO^tzcT9V4;GwoN@{lDOjvvg@Tm|mMB=NV3~sDY)IX-;3H%EuS`A5
zrOsGn`9^1a)js~OpNy*%e5+u!f;9>Xl{IxPmr&<LeD^*H$xjW9m!)OcjhpuA*DKhd
zV5@>{3N|X(q+qjxEgbQE=1*fRpXrS^ziZ?yZhkm9ZRULopGUl1!43uADcH&DzSK{#
zm?oEMv}~Gwau&;vTMQKonU~Z^`Ch>u_N0Q#3ih)33Qj5bQNex%2NWDtaEvoh!65~Q
z6&&HX%+!xI#1H=6`1L7M)+MGA%@XoX)YrRZIIiFXdq%+z3jWH`Xuqn@*U9u%3DdaR
zDUU11S6GnR>bm8$f}a$eSMZC1GYZZs_*ua@ZfLVjE&eoYZfuDyX0E3<Zhq4+?>&R@
zqTzyqiwb^K@Ea$mEB<m!#)n~+Knruj8b&IoP{XbI-xXX@aE}A6;HrXa3T`R*Q^9ow
zHx&G#;3h|Qlj&yOxQs1&{$os*Tc%bc6BbmBj|{im=JHW+mlft>S)N*Mgr)rtsY7#{
z`s6nc{lnDZPm|%Q{%-{j6#S#$se*?J9w~UN;E95NeWvFz8L?U8_`fTzMy8xcj1AnD
zZ~xN&tKgY}{}epufVMZfOPUu~xAZWjPN`<jJ=wCzU@lPB*nV=4SDYa~>aoQ1TEQCy
zZxy`bmg_?)AKr7$j5p=-A-7M14-(BHoK-ZNXm%g}YbYj%Xim`*1+(p5VaVgd9;-R8
z_+;KO=94Hb`F$uLTu`)-XkpPJqD4iEi53?vA%!q6t5MpAGCtJtK_|wtK2#B4QaJ&L
zmKUucT2Zu;Xk}6UseV;~YNFLeYlyO(ngX>%Yl|+P6Bi@E19%pJSW&%boTx$6C~6Wl
zi}J}G@jmT*V1j5}QAQI5l0@r?W*=EL#fMZM+&*}G*!jJ2;DVUAs%EPX4SY!Rp`j0r
zd>HA&v@!a|J~Z*+3m?App{Wned`S19n-8D((A<a5eCX^$3-RnI+ETQYXlv0nqMwSk
z6>TTV!rKdU5dC6-o|aBNOt@!ESZ$iIK;OlOu0C|gZ{)tW>7bTM?(W0<{Fa2_mOei8
z@FBy8&wc3W!_n*JUXu4=o&tmKr`)ZOmzLf>Oxk1k^|ZEK_w}Kl4~q|)SXzG{lB#Pk
zzy~G`mI@FC`Y?#?t!?DBvg}T!4)I~A55s)eyDxP(Axj)n$s>GtS<ONi<-=$xWQ-5v
zd>HS;SRd|w&~F%EVJjy1FwuvpEZ>K(e5koq&vs3c+L9;x@L`aJVTuo|Ghw<9Gkmc7
z;P8PDRI>TNzy7PXP|pGxJvqSQ^uguBsO#pEgDkri=m{*x>x1G$CI>gG&gauU3ll;<
z_=N+aeC~YEr#+tD+P@5M!B%|;v%=%ElOsOurtBjHvM|?7DTHs&=J@cn58q34t`Fb%
zu-=CaKFnkP`>@Q1<&tZG4~y8VJ}i_d%X##pb!CApge9Do1+pyVr`H_1hShUC%%NLB
zi@2@zVO7+hK6Lojht=ZAjB6z6V<GE&Seiq(>U_#ZsmT@}w)(Kihs{2i_%SU{c7~Mt
z+S|x&Y#m$b!*+IEfh-I(GVGM-Zppq&O5QLxk#_1H4yzCQeAq9kheZ#F9u(a-KKmho
z%koZ@xsFKms1Li&r!acLhm$^>4&bK%e(>QGhue>@{P>YZAK*uMKYsGzj1QN6_}z!I
zKKv{t{OZFwfnP*f)OjBtH>|z8X1E~6i$1)QrqS}750|2z2YZyg;=@%R-uUp=hig&$
z4T0;@US|1&jrD2Yy4>>NPakdz$Br>|dvCtu!{1!R@6C6)g!>u)5+&U8;lA*te+`U2
z@Zq5kme+<yER#FK!c_8Ou{;s|NA#)azoO4X{}X*K`a<-jT#nhRm8$nzxZHblmdQO%
zPqMu8Y2V$w=UVU~iyvA2DC9?BKeG9e-H#l8<n(J3o(qRd@Aoe)x%_yzK+nlfOK!jR
zbc{TH<Q2&0M~8uy0)FK8gQ@vPS*Qj5;10mRH-1I@DC$RPKg#$~OngfEacY>QxNr$S
zk_Ky8sHObc+buG6`|Lc~V;YtfpK@a7qNBZn9~J!=>c=oYD)~{_k1l?6^`i=XRQ;*n
z;%oX*)sJd^RQF?THcJgr!inN>j%M`;wfv~<NAcK<I)0e^F#DnNBgT(dKkf`qICWcZ
z&TY~Q$N6FK!zes^kD={6J#*2=;zzt6jV-2@eoQ&8Pw>O)M*~0V`jN=y_)*V~`hKMN
zasQG&*^lLo>K(gaCeJ&rr~mTirc^(gFVK(3S&z{);U<18*`#mi$BhN4CySdJNevtO
zapb&V#lxhg>}o$gp{F0^1~zWN2JSYpGQaI^NM$*F?D4Jqs97+Mp|wC8KRy*`8@0Fd
zqrGs4sHLMoCqF(D=q!5jgPw(?`_av>J=QJP%uh|R8QuNp?MEN>SZqcQ(F{L67w9S4
zOSDC71|9mcbAGS$rD#7t`U`yF$K^9+X}?f7%hlx41N<21N2j7$p8j5k#zB4%28#~i
z)XJ8H#^D_6C5AD6jP+|9><B+bie;4OXg?;;PN2iFl18e%zv-(xrg46Z=T^Y~ofhS7
z0^~{b^y51FmgD8eR6n-*vCWTZeoW`+__2c1%#ZyQ;$Qu%U*d<&54#@@Kb(Hd^y5sA
zY%V|Ce)#<G`_W^o{!RC6RFAM%R1y98ZA!q8hC?k(4g0lM)u10CNuovdWAxjUtcUdc
z>=qGYCWm#Tg+`{%63c8q=0yF!7MSbDHv;pb_W1$}L>Kz8C~9Bqhmw$&MJ@GX8JBS9
zyyKh2GrXLeXQdyj{Mf)nYD#W>yU_Mf%(s5<)7ffK!Wx0KeyodH*86cZ*21KXer%GN
zu$igbi>n#gx3C)v#4=Q@6}#P!9ey0};~>Y#4}Q_aze71S+qlz@UF<;qvydMz^5)#*
z$M+KDkrMtALHk~b?i1ZFdX&#r^W(qQ`tyGL;>Tf5e%8T{W8BX<3Vs~-V|7Gd?55!)
z>%&#Q#dzaY!j@mn-4^P9;FiJ}yHL;YqaUZEod3K&wX~U8&ie5)_n(`Fk0qQFKJqHz
zf*%+Cd<;sDtK719iHM%zH$R^3G<@VsoVRTFV*|tQeq4!i`N>A+y5`5tiYbIY2!7NE
zpk@HK{P@$4+uS$&c=?N&Z}s_Z{O(D;y2SXm-f)+_<i|a34u0ebAa4MF`|-e!SAM+a
zHtR>~yQHUFl4Z^9{xv@0KD^8L*pJ9P(-S}bVP{q_9V%z)u*>)_E6IJ^YHnW1@*hWy
z8^|K#3to}CL?sJ(>21UH#2n;LQ&QjX5=ZlA31~@g{dngG3x6+4_#jYiR%+IOcJ*ul
zWEaR0K&}9C2ar>uSDqSqxuF+KWs6(rR=Rs?zJRtu8Oj8-y)J(M1>+hP5G^QLNVKqM
zkpPMc6ceRq@c>E)mlQ1}S~{BQ_9iGN^koC!wplI!2$UDCAX-tBsg(pO2T(<zs%W)n
zYIT7IBTCf@pmqR}05Supvo^j?0LB1J0q6pV2_QCrYrV=C0{{PALm$A=+orgWs#<P7
zHyHmmn**=};0nMUKzslR0el`n&j9KMkQhMA09pl*6hOTI8U@fefaCz`2Vf1LK>#N%
zXG;lSa{*&&0OecPtI#7p*KDKOEuJAQ!2k1%Zy3PHZkmxyV~1|>O#&b^51?rPj50I}
z;1l5?*{qDV2w*~moCIcR9YC7^ItB1q0G|fXHh_*&Y`Xy3%hfwbG*|zG=}Y6TZEwgd
zU9MSJD_)VIa{yffNDrV(0Jh8eeESX5ZUNAlp?d)RGP7|L?h!yn0OPMTuHHM1fzT^}
z-T{mbU`zmg0_YpS&;W+fpOa^{@rwYy44}U-{n`8h0SpXa$j7=hw9qmpXQ@E}43^G0
z)h+&Xk9ZnyKC%oCU_<~DXBkFHHCWn*+1XetT1H8MePT1l1~4vwsR2x5t=Jm@d=<bX
zNu3zLwnteuN|$;|WSx~IE89CcfGKR_HA}n9Y`hA~9L^45li9A!)WeS~Gh}qwIrab?
zG8vrW&w-c`o3S7^!xMlvfItAj0F(fH3?1YB0j%j5Z*EcV#IksTJHL?-3gFJN_!`af
zsjSa(%@_`V52XHOvt{VJcy{K@0OqjT<>O{?!t6CN%x2dONh5q6z}x`7p+3+b7M&Ns
z`~VgNurPpi0jv*TQ2>hr{51sY6D&&tSQ@~$T)DALGIYty0$3iviU4-TW?YQTcov&c
zRG+ajfK}o^Bcp*H4GHvLBjv9ZWl_B1h5$AOuvaXbI4%L~U{?gNMJ(F_*v=)R&)CYD
zsn7T>KX16PFv^TS?=x(9)pch8y93}9TJb}^T><=gBc4g$N6X(6K-nG^UT9wc`^9)b
z^iTi?19-I0u&!8R`j7b|3-t&Wprjt-yL|x~k8?f?pA?-kHi5=d(bOLU_;B4!%b5Vq
z2JmYTzXkDg0Oz>;gQye4`2c<ipkxrGg18XC#Q^dLk=Qx+xUu@2rQ(0(dYRngw*W2$
za9Q@Z{{na}@OuDP0{G*4Lx!u|E`+a(-uP%2y~&pVwmN{@0Xz}Q9nlA(cSZjS;GV#J
z?*9TTv&cpLj25Pk<v(OsMD33S%vFv52s{=2SM-@EvlM7=dLflul2`lR?3dA<`4v}I
zF4OA(-Uz%EeJA=}^n+-YAhHHE&ul^D3?f$$*(I7oG;NK6NesCqnm33%0<^3cZOJFR
z=59kqdFcW{47t#wplBh{!a=;)uP+ir(IAQiQCy;{H|3|XgfO9F!#t&fC=*1jpmsK3
z^&i?>yRt!)3j#syRi*+pi1NZyTBOlZDTvSY8BZ;Vm4l#?s{~P1xLOc31*(fOwT8e7
zU3){X9E|b@BOW}^1rZa({2&$t5gUX)h!H`I3?eRw##;<YLDUPv5QH%ZQxIv#8#7pf
zFbnh5yzwt)TH+;|AX-;6F^JPu8{cbeN|v@*gJ=*${h;=lD@8O_v_WU>j6_-x4TI<z
zM6Vzk@w!2@528a5O@e3|M6)3NL&{iv#;P%vb1f~yZyP=lOY<OF1TlG6TFW5X263i*
zN-MF`xwSwW(NBX|UL}RbcH%>(XU8BO+$zu|h^|32@0Zpoh|dJbojDxerV`w@4e4Uc
z2!h-#i0%U99s>V0PxxFM&RsH>8)NA$+%Jg!K@@3`&_{gw1`#e|WR@?aGDCvMrn7u0
zo&$my7{nl9UhdM1Jk-HKj2&eewk>sN5W~dzLHU&7G=5^-aKOBzTFNL+fcbG#f|we_
z=pe=fG3$zPY!DL#$m4<-FFZkXao9v7!&gB}Vs{0xDOHPxvze*Wf|wpeflEF7LCgrk
z7KBfty@wg?K{$e#k~{AEA5C3*Tbx0-*o0H2T5povL3n~t^%>qEl%V!g5t*I@Hk_p$
zvX}!w1cL|#G0vQa7Jdb!vMYj!1d+*#1u<JLlzB#9|8M=wAU0kxUf*P3bWRX+S!NJl
z2a!8_y>}}NrF&ZDi8IT2b=gSciN&c4gIL79D~OAnU_mSiVpkBmgIFq_8(3fv%Q*Bw
ztl->RV)*u>oi71FY~WlH-SkP?>L7j@6Te23uvTDQ5bL8BI&YG^+k)60#M##In<cs>
zh^+#w)rLNnflpGjW{TxIR{oQ;ouVc3G$el?#2!vRW)EU-5c`5S8qM2mecH;pru{)2
z;2ttK{-7w~kig*}jtH2Z8)!TxxsC@BUnT8C5GT1h)~Edt#E(JDE1yC>6-15oX@t{3
z{G`wLNtDjypMyBZMo9?;3&yjy=Y`K!O0H8de(>iOT8`FenB!OD(1jL$(|#$4%Ry8K
zp<)QX2XQ5ce}i}y#ML0K1#vxy8$qnPREN7n%qMC5|MNlp8uC@+k03ssXS^B2tswrS
zL(_!6MQ@AV5xpz=mna?XaZXl`zaPY$wef@pVt*LKBW?mK<7s>x#1n28`iy_LgGF<_
zwWMf;cS!gzi047P4&n{B*3<f*#-_dC+PPF`>afI@TqeU3Ux_~LXqmjpzzTEUdmF^N
zAl?V@A&4v?<P9NT2w6kO7UIzYQ=Sm^TP@i`$QeSe5PltD%ps~~G5(xjT(w?1tCKr~
zQqK)fOJ_Y=!pJWu@`q3$gkm8S520X4`*ycb2%F|<hcy0apS5rZMMB7UXINFrR5XM_
zBaM&Zjr@hEL<l8AC>ugKmKMTTMPDWa{-RV`c;2kWv-28z)->)YX<<1C;qD7V`4DW!
zwZkE4xAngpjFm#DOy>~Bg-|7gsv!&vVNeLwLZ}`>YzX=gYJ{|1w^j(XL#Qd7lvI|M
zIw7pRYhZ{8K^JBBWfLup9+~1oFocjELbni%A(%qwd9-n>5X>Q1geTwD$A^#*!Y2}~
zD_SpvWPwD{q!23P)G=fI5K=;D5Q2A~k<nC1wX)=8dPX}R(N8WH&!jYQXc$5xfySau
zM4O5>6XjnQek`ZCl+!}AWk~x=LzdP$gf?RNG=$Ft+J?|hpnV7(1?bj+<GaU9=oGc=
z`lC)~;Vw~2*ATvyGP{S+BZPkJ*a_J)LU@)tJ10^fw(e2F=X4J7D-LrniS`y{lu3&o
zCiG=n>g5VNOz0oN7a@EZ(v}QUTTakQ7$8x44h~@m3oomCuw1V{s2>`_@DR2fHV@+n
z9@Ku^r!qQ1j3YxB#ro7Rjus`15unfb5GI6hG=yUzuqYNdF@&$A<VhiPxoemn!eogu
zX^Oy9(P^S37bVQ#1Pj3)f+K{LtX>Gt5L_XA9m3oY+#z^E$P8g72O<O|gdp1<f-eMq
z&2p_uyg!5~2Q5{;)dxagl;PxJiz=56hmg9!GH9vc&S7IDgzSecX_xf(&gy4L>g*7%
zTrs?Ul|cKP5Q-kKFx*%g|4j%N4jSfjVTQ0M%`%U(Xpe=k{;Xjkm(^qaGTK8}%(?W7
zeu?N(>O6g)d?~av_|`z5<sqyPXL6T3Dc^>$I)vRJd>_IZx%vjKJ1zmXVy$6a2!9ke
z-#eJPK7^P1Erd-WY-Z1gu$A+naXeGkR7zlHZVO?12s=ZlpEqSk2<IP}-!8R$$Ex1Y
zcUWWiB+10+E@>B=Hh8aPPY8QMILP(BK|2t#FN8j6mILg=S^E8=EB2TtywH!$W<JC%
z_dvX|H2!c1N2G7rSM1E=A)E-|k_^^KF7U<rpF%hj!Ve*w3gJgu`dMf^e%^RmQpwHw
zS<Z&=a|q{HL)Pt5of&b~vlFd+BHJ$<1ylE8)wO>$f4|OrAq470?sWpciPFM@(3e>s
zHY9|r+^<xWQ*kYX>mj@f;dKZ%*khb;Av_G>ChL<o{cl=k>2C@DDSBJ<j_6%cy8RWx
zy(r)3&Kc0t*zRyX=6w{x;}D*P@NWn_D6;RU{z(YGEjN{ZWceoqDlIE#=%0n~UkJ}R
zzB?^+d%;ONL;sQ+-A+^MWBM8W8qV?S`4je=5Z-bEs9N1<e-{F^kgB=858*=yStKc|
zicn4~OQ2ge71_m@Lq$%3T%!3zbF0WBkXO~N_(#z=o<-q>@~bEy_JX4PX`ZzzEIwzx
zGqTvCDvGHnuA+pBQYuPI65CZ$)mrypy<zkT6Z@fzisp?ISS&f;5+hWUS7A_LR8c`i
zMJc?dXeAZZR4nhS6<%3I6*00(Ri)%!Z%s_9uA+wcd~~a&qPDoz5g)y<PBcbEtN=@6
zA#uW2Zy1{e^d=Q%6;>4uq^cGbbyXyaL%fOvDW6$hbT%fbs3#?-sF-1mPgYT1qKJ)W
zls-HKL`_w(Y?X<SrlO&WCMwDtGqTBFywo>R@j;)_Sky8#-t<b(nm3h8oZn<>uA+qs
z&n$Rnp{0se?8yj9N6=bD8x=dk_%4i3RkT$xB8-t?v{TWZGgifQ6&+M`RIy*h0TrE8
zZF_%^SKs1E;%6#4tLUPltBTnw=BP+l(M`n^6;oAoSJ6X79~FJs!=>UfRQ%U0uD6QM
zRrFM`wQp%YovN3ry#S5qSZ`B@dWg$d+rE8275!BVXEjuOp`v8tqC-^-Q}LyW0V=-A
zAH(x$165ppl&c$J2B{d#D<Xzrhzd(w2Ep|~*PvR=)y+j)#bu0CF-pZ)72{NlRx#<m
zE_X&uwzry&Q9<p~C}zBh2`rhZDkiG9GCVeYMeK%my4187YU01T$($|aW5y-KROuVT
z=rk37It$NGVdGewtv_AmW4V&~L>RjY^=y5Y3bzUe8@np$i;YQ6wqj#a?}9BoD!g1N
z^iiR35iM-xSJ7-!QsITId@ATb3!?!s21WCl<H9PQFK#tcln~*yR9r3Co&3H)_gN~a
zHg{`Azg96<#U2%#zi;x5ig_GU72m0t&&tnjvy9U~#R3(#j<j2-Vv&l)DweR5m$z9e
z`rVOs<TB%u8OZG96)IM%Si?!E@_Zw{<r++g`KfA5u`gp%V`JLPt-DsmIu#pKY*cZi
zOiWvge!Ysqh++7&pf*gKRBYiub22>AZ6@E-HT+MvO@O>zfJy(9)STDe*X>lXo2#R%
zZWpUpD9*CC<g)EqzGvseWn_;jytYH^UKRWsYKDC(a%Igut5Vaoo%IJ*98+;z#UakX
zI{L$+M?{Zu(stE1$zg4M>9Z3mPI3*Z{Jjr9$Q<T0KCj}G@Q<A21@#Q4Rs0m?GXiH-
z{48)zl+%@NzeuhN(Q+;d{HkK-tSl_{bZf(94wDMP@0?Krh4Sec?)c;WdXh-{4HbW|
zX<_sU<EDyT#r567TI+6ccB#0n;*N^=FcQMJtKu&eMZzc==3lcW-&65K#Xl;xl}Ng;
z;%^lXR6OKnWlMfUH%Iapw&ZLjl1`LJdaQyFTOw&<T*gy!SWEp^#WOC45=sB5$Qni`
zNAhzOFI2n~Bkdo!5!sSosbC4O#rQ__t%`R7@1ve{80bjO64pv9ZBJ%V0ge<~5k}51
za>?Zih~^F>pFkc_RwJ(fv*eFjSV+Mz3WZTvEQ?Ac(T(L(i-l1<j4EMN4WmRD_lhT#
z4WnEbCBrBc#`3s~mEAv~v2++^Bz1}-Ibu&n80Fc$C6X$JaqEwQgbHC?DUmdwdlz!0
zFxWHf!^+~rj;$6(bsEFahfyPpnqkxlW5|qTy44CpDUnn=4E8NAM5Vt@Qe#BvwrNH(
zON$G`9M*=0!4QT~*c7$Qosnz_gH2;9%c&biB8MQ1&%#Iwqh1)@a>jltnjA(00b1&Z
zkrGC#L|1kyNQ*U$<kE3x78}x{J`DvLh0!>SCSf!Uqgfa&#mK$-Y3CB3gwdQs(;@E3
zJsp==i!iocNc_zZ*D8$GVYCV3m&0Z1m(JzxP~uIWxTU@0c$K!2y<HgXqgUw=M#m_x
zJzc1C7+u0VSgXx>`uCV#_jRSXt}>0&MHlSI(mjlY)$~2W$Oz+ej&DAF%@ZAHVdyDI
zy+o6amE@0Htupj|!{`^*mP7wAz7!yT!O}bp_Qhok5X-=*eUQLl(IH_B6&NNuT(o$g
z8MBWHV{{k`c%d-HgfW&qv$4=z&f74?hhYoD9>#<)CWbL1ti8H1%U5Ack`l-rO4pw(
zJSB`d_2Z_BP7|FjN@MPhMVWEIhC+@ooGhfTJ`jd040jj>s>J!i@CcB-VVrr}c4q!|
z3OjQ^GQ-s2$+Y{Wa|ppOLSd||9LGY`Fv3z=B#hr)#m){RQ`}~X(qWdQe%xE;gz<GW
z%A{|k&hx@}n@`U$Ka6x|LBc<?3oQy`aTrU&nA)yYYS#KoxoVmjVhZcO4dcMo`pZO@
zi>_cz!dNBz@hWs!9mX1|z*^BQVXPBaA4ctO;%XmB+7QM@Hb1NW%dK5Eg|V4KxwR{^
zf7Gp94&qPCcJ6O)lL<Rn+b~{*@j8s%VSFFPAKVzj*b~OyFiwT>V;K8n8dPr4<oRbQ
z`&p$h4u(-JTYZLOVH^@Z(67N^CiQD@B#fg1<ZlYJqt9`1I1$E4?oMaw|G;*=Y5PsZ
zW^`Z$PP6Oo>3$1i;E3d(ScjE`&V+F`jGx7FE{uy|To69b#Uk~m=SK^(lYfmGIcF|~
zaXF0N!+20bUt)XHD`8v>qhL?{wJ<urjHPjR^}5%?xDm#qWi82Pdl$PE#-EIa@i>gz
zVce17`*16%P7cFe4p12Pxg+H;{3UueE`zoGJB<0O3Oxv8K$|B0Yz-cU@$~NoSN@JI
zZfkI(L&_7DU%mb_Dd!*2r(ygXM*fsI*6^ac!8mW+e_=ci<3$)Rxg5N43>6zB^=)m)
z?umQDnG;5q2(m^ne1491VZ0CHLl`rkCVwq&|N2*~TfSkFr|Vm0iy(Uh`69?4;mf~1
zM?_oZc_PRe(HfgeG<O7}a_dLuFi`VG&}2#u)<4gQ5(OeCDE=iPm>QE<D1ssp6pf&;
zL}?lEMJqP8SOmo*ATUhMU!OYdZhf|*WCV3XSqNn!C>y~)5j>5cTm*<95<zAJ<s+yN
z!N3RxMNlz<N)gnIpjHHxBd8Jq-^6yRu4neD5mc9YR*Ptx55u$gBv!tL7~eaa)sCP}
z1oa|FjzGs|MqrG<6v2ZBiLs*k2o|15{HBe8mbeHE(kL>!f@)?x#f@x<AU=W*{<s8D
zW+Bs_C|Q!C8S4x5kKl_4QX)u=z#2h=2tJLVZ3Jl%tazH(B!Z?9G>mWp7#c;;{81u9
zV}S>88N75evUrj|k@hlIiwIh>KijozC7SzTBDr-0Z6r!hMyc&0=oLZl2--_MJFtP(
z^c^GU6v1awRM!aRjcd@EgH_AWMU=pdG^R^Zw+OlmxRtmb0vV#8N6=G%p8t5_`f%Vp
zas8ydeIq#VF!An|q-~EApB+vr6KL>d1lunq4G<-4O>068{F6L5f*}!jBTyn3%D%0k
z=Zu;W!7xtO2u4J-O?V_{9eZGZ5_z;(SiSKPjEP`u1bidc{&3525nL;%uhCb3${#l&
zf{7eEPp7Xq{RAdO(CV=^h?Cjp{<tYpNdkSQiNkbJI@ltxN8pHHOAkGROTfu#nW5*Y
z8g~Rg+^yfBr{2Rs?5Tf0qzPAwFM?Zl>xZQBe$jwvkma<je|K$NH3D`5Ls)=UnHj;X
z2)3~|BA6Y)oCuagurz|NBiga6Zz2em(Pr;lna1bmW}g?qd=AZ&Vzq8GSiqToqXEOh
z2o?!1j#`el?y`)9l#bhYq0y!YmUGTTurh*G5v+?~J-aS~aP#_K7OT%KXmtdSTeW0Z
zBeh){!No2q+~roc&{7#TM36D0$wrPoe?lJ8WJC4(n<JoZiD0XAAen915y5v6{20OM
z2zExam-xdG9O1S25-hq~^!o_*M3C@0nPG1P`=Y#G;DG4C2o6Q<O%Ej<jo_itz;cd9
za7=h!hd5eJL~xP=A;nfr*H7=JKNZ2Lbp16`UFuH}{`?Vtd}Qn&5uD*}6T#0BoQvQF
z>vmsvUer=1=Hq9OUn005mW!e^{u;rKWwF0Sa7o~@C@sH7a7Fm4=(VW*x`6gkNS}q-
zZ$`jN-xB>(^tR|7(YvB__=~IWso`D(_r>zJ=mXJ*qK`x$i#`#Z^KENp{FhURGhrr*
z%*1~YJda>}CMIO!MFcM+coo5G?v3-~SQGvbQ29mjn+V==Ih@nCxmWL91n(ormWk|{
z;QO><`HN6LL^RHl30*BiR?#~5Vsm67XC}&J0-1PvA~9Dc3S^>SrZ%RzGm$3~c{9N~
z^73VBAN2Bz-Y=77`xiN~8ZruHqHrckWoo}f6v;%<Oq9q($xKXtn6+WPT*Wf+9L3xG
zo~?K$T!rHJ3Gv45?5&DtVQIQT*-K}lOeV@^;!^31GrlbSb0tsg7{|UXpNR^Y=$wfz
znW&hFN||VoiL^{q&P0_=)XPM2CaPwlS|;K%k&ub%nV37&V9JC!6E%bxttn6|6SW2E
zu(1L$nK*Y(7bhH>3H|@5Iu9tPs;&(W488aE(xeGfGf8F`V3-+(4nyxH6zRQ#^xmYC
z<lf|FCdo}glP-vWC@Q^o5CxQ?2nY&FSNPxTeEHV*uXWb5-m}j>`}7l-lq*^K)5sKW
zg+Yp_X*5~EhxTq>7{`bHP!!0Ul*Hj%@x}VC$ySt&x7fQS8(PKOPEBLtNo-(+ZCHFN
zXR@Fv#fpaPZJn4=TjQQzj49j5v~NpXiOightjMsUtrhL8Xlz9jD_U65lHHpT-_(j`
zRx}r_tWRJvmWX3oc0ab26|Jqvw4#j_cfN|Xoe!q+-^6lO`BoiM%%uA5t>|FIm}L>2
zt>|dQ_z}hVFZ@ncJbfPb>OuqR9sA<Chy(Sx8_C_R=wZcBD~4Io(~4eJ^ta+8D|%b`
z2^sX|(!9yTXmsvFhukqw_SPl)Nd#p^SLy*)?CI2fpcR9}fzE@icssEB5FwkR=KPSu
ztr%g&IQGhlkyec2JhzG&&DIN+&s8{*iP<q$jOB{NTNs&XeDCC)!@EzgVv;ydWX#Ro
zIM4K)EX_3&&#6{Sv*Ha)t=Qs<oo+=!is4TyW>_)Pidk07w!&{kfP2!4x!lQCC|1m~
zV!jnCtypEn0xK4B2$AtcD<?0qVzCuVt@y->B|H?P(|QkW+SS=K>v|Hk%h7b171S%N
zSZ)QgUFS9>`>k$T>Zjz@R;=L$;4Uo_x7Lck+C^G9rSX>Zs*!OWW6u5<(Pv)LQg8g3
zA0t#N99DR&@U<!Ilmn$PniWS!bmzcxZHUXVf^-YBc?z1RF&nh^D&^&P<1M<-C%m~c
zhL&|!tY-u(j#;sRhu4a2to|@+lNFy@aazqhz9xFJl@Hd5Gha`-b}DHLr^Ok+RY;-5
zTee%V!-}0&e8#<9Chh=d{$2DgD=IdO;LhL86?_-X^f?z@^cTXt!hOR1!Y_rhKaHXD
zR}$)L;X&ayLdO4A#CKL45^-2~L^$z99375Zal(oxyifKgowVYV6&H9~*}Vr*r+E;D
z6}`7V?hMb%q@ri7(Bq<+&RKC@blIZ8?4Zx$E?IHeiYr!}DIK{YDfmKg)rxyEGuN!R
z-9Gwz(bui`LBx;3pM*DrH?6oOf^|1`El&O{+1tW9!n?v<@s?k#_|=O0+>p7W4d!U_
zH_;RitavE;QP}dkh{wF2O+n8;WTYG{{~Y&}S24Gc6@T-#x8ju*2R=%8&g+y{O3_Bt
znQanmWqP!qYkn<7wD5B>_hy-=UXK5V0jrze@xol(`(L@=N_LIlh4$Wx2pe+Pkkf|O
z;|i(o4UsnFvLU|>1#D;@NT@SAVNSr1+lD+g<h3E;zH#LdLp~eES2Z;%W+2D4G8VL<
zhz%5lY<RZLP*}L)p@Evl$C-xWHk7d8OB)W@P|}7{HaKn2Y~aUYOWRP-hWa*?v7xLD
z<!op%GgpEw_(D@&Sb@O{#KMM(HdGQ_Q%GZF5mjucD&hlSHDPrddfg2E<D`aU{~8kf
zt6eS8AKFk`L>*xivszrV4ewvIqfd+tu{Oj>QM?UrTgMwjQ}Dl3bTHarvcYUap-P5i
z>0zQUNmy6NKZ&#dysKZ_F*L9t#Ri)V4lSyo4XHNtv7xUGX*Q(W(A9=+HZ-y!!-keN
zwBoeXH8<wWv(ZWEO>BHHM9|XAhGTC{6!-MFVNvE5Qc6vq);46?(7}d|43%t7jt=^?
zv7xOE?QHn4R(<2y^!7H8EIKr(aVOEtcCn#zShLES&88RCGP>JfFJ$V)*=}O$7t^?h
z4P;LttM_I%+BC8VBcjdJ{cPxO!x$UJ+VGJL`vax{HVhOITesjK?uvE6ZVwePSU5yV
zX&+|8a2rP0Fp^6!&oo*_I*OJ>jW|Y<6+f$)$f9xFZ#FEjVWABZY?x@nOdDp|Fv*6=
zHcYi)nv8vl4Ij(Qa9TRfizRa>o2PSo)JkL;`?SXl8}6J*r#;X9#<a|~VXl<YGRGGD
zChzNYrg>tSFXWKvw#bIXHmtH?wGB&bSZc#EX@z}bMRxTQ8|M2=)XT+geP&!?!%7=|
z(G5(DuqNEAwe0OP<A4q6R<T@YpTJt&7<L;J*&(Ws7Kex;lagFE)EZ>oY{M2CvTVq<
z!EJ-b2EPpf8@#sQr{i=ReB3H)6DvRJZY*u!N0-kIH1L}&>uk7OyJ3?jvFoKY@>cLm
zC>yv%-^FgUVUvhYg>koxtiIKT-%lDVn-h22uub%KA&on1*csNJ*|1A=^GGv`K4%}y
ziA;M$d?DOx!#)xFg$L~>I(%ir*F5aMMO@}UuGhJ;)^N~<Z@AkVHTc$s^EO<t;XBFF
za>$0mVSPlzQEogD$HVp$B2L<HDr`9|;*9XD@SL#Xq9$)1#b306ykx`AY9a;G%}4Q9
zY`AK}H5<O?MzUk@U-8#%_<?7~j@owoXu}QuOWTGQHr%vf`s?_6Tv;1#+3*wNh~=&g
z)teb^i@qb={VHR}k7gPpPMJ5JH2-SDBhDCaJR1@xB>ZN>0~=~IFb{ripnk|n__!hU
zV;i2>kaQycFB|?4G4VwFQycyiP5bZX5}w)6<wX3U!cACIV|UKKZTKw0sO`!3(uP+y
z6tts|oxjs=c+Fegj+}P9;U#7ZTK=)&UmM=>7X2<4v+sH5Z!koNbIzLv>fu#VXpgib
zmmT@U&d<N)w&TOj33=_vV+XTLdp75<hLnGvCKOs+Cchm8?C9U$K+C9$1q$0y#EuGf
zz>cC~FKI_9JBry+oSoTVxSLV0got);&GRZGl(r-F-}th2l(VCZ=!h?4=~Lbg3Kmh2
z)D`VGIo(j%jw*IkvSVW9#@90v$f|aHU`I_mYS~eZZB;W?x1)xLnMF-ZJ8B!4ShwH1
z_!S3oGO=PEJEH8c*wM$1Xggx;XlmzUlo4x3oE`P;Xkh2Bp~7HCvK`tELxLSfJCa13
z>@eGrD2YX>l^Zhkn~_*=U;?vs#fKtj3G3c>%qey>v}1X7Lk9bnVo0?k&5m?Cmefd`
z^oyZU$wc}zvSa$+2Bs!|8ya&shjTWODre&@^l5HK3p={l(N&Bs?Pz01Th34AhOO*q
zZAYdZGkYfd8gJ=SwIM}2JKEdP$&Suq?_ftq5h1sN1`B;wZ!EN=LK$+?p`6|9=ylyp
zV^6Mr$;9q<^bp~#XkwQ3UUu}B2x$_(uN}vanupmj+>U-+Ydb!&W4pmHh$qO70ip*A
zw@z<FJ3pUB4iU>xsrznP;-|;Vb)r&6*fH9UF?Ni!W0W|&`NNnmcjCBX=CO8MdvBh=
z6}MxY9pC?JUOqKpJeN3kV$WyBNp?)OV~QOgb56t_WbraryP7kXHfnr0=Twejdg7Q<
z>C@$0&k)WO&JxZR^2pDzW3K3V!ui4l!iB;`!o@=R=c$WN>{!N0cA<j{%k5ZU#||fU
zI{BFvtg=IQz~{hfJJ#6om5Q%bthK{x$38pub1a8rZFa1;V}l)bI}|%qZn<~^(>gmG
zqMbrb=n`fL>62}TTeQaxFAp8+(Wr+@eIopJK1K9DG3ln=PoYnrm1!I8_`;4Y3uCD_
z@d&I;`_zt?&bZCOEp}`bLCZF-MOg2!W2flP!j@ekb_+kZV~+?%W5vA^zeynjTltbJ
zJ1_QUJ3keJ1DpywzP96_9p~-1z(cXe_>CP$?Koz~w{}dum-3yE;*f~Lb{q*?Y8foF
zAD8S|J5F%db?<S~j#KR06ys?-&QN#nQGHRbe0x(_#3!53|C}9<HzlSREEny#WDmaX
zT(jeT_a2=MmdoMDSM0bN*2kt8zqjMM9j0bI994S#z?T3!Zt&FC>c!sP;@)o5`=(?I
z9!UAg4swLSGS6VSW5-=qRPcj>dv^T7Q>h?R!LMwN7odU?3VyTWfgSI8zbSZV$0Ixb
zw&S@Szq6Be{AtHiJD%9FGAYivz3?9*diHMi_Ch&Yp4ssi_ghljhEYYB4e2XMaicBG
zUfA)PS3Q@&j-S-zS3FRbW`mOA^1e)?cx%T$cKmAxEfjR1V0tH-4mlL$R8T-cK?RWt
zrX|JYR`~rL{%!_RlH!=Y-(EPcf_w@nSUM$la*>Bo6#2!0*+L2mD=4bqT)yPSmS#m1
zbnDk_==Q=pFQt*i6pZiJjOpZ{W+fGrQeaeIQczk!83nZze5jzTf^rI~D)>M_c?A^|
zR8&w&!PmKxq2NhkW}m#txs_y!$_gl|C}1DrKkrFi&l|K?6XzNV2AbolE6A#w$wYfi
zvCzm`wH4G+5T_tsf<!5ZQ4p&jS^?vm>&DTo!KE~MGO;?d1_cQcVOp)c^kK9MTZ)<$
zBq~T%kftC>O6x0VprEdTWa$R$GD1Bm8e6+Nhm#_@p^y<cE(T0j&`3dZ1uYb0C}^yp
zsRFJq+ijv?T)t$s80u0p=`drmd)|xXT1uQ&(rsGk_HXXwHVWD*a4OIgv{TSt!2|^p
z6?9P0QNbVugB5gA&{;um1r`NeIQ+4tyD8|dpevW)McR<@9aAFO^ia@K!PChddvV2I
zrd6sN$HZ){v6=MgqoA*XehT_?(UbmDMB_&a2C#L5WuVlWF*K8j{;W&4Aqs{n7^Pse
z!Y@{|9;RS~g5e5kjx9~nvZ#NvkqU3l<edh~)i-HlWPQhS62y%T;}slzlX>7(8o8%`
zvsRP4PEs&g!7>HQ6--g^v4S}Y<|>%VJ*@CIS20Tg!?Nylh2Iy3ny1aDdD{Hezu9qv
zh4$GBn5C%W2=3>33g#<VtYC?P1>F2YGZ(VDf)_(GshQ|gHz{+(r8K6c?Ej^-PZaz#
zG-x^VI%r&>V5I_^0y|IB=&q|2tWmI5JXb3?Kd~!)E=IK3KDH}ES*3~F28+UuNn$CJ
zgNJci(351NF79Ln`xNX~kgdS2V5fr56nGSPxm6TwRG=&H@x=X;woZXx){)a55Haj#
zYuee|dY-apnOqBU69=wftAcIfvsu9w9!VJ>opU;qS)JMKoYjRzcPI!2p@j>&OBQ{%
zg3o1@8F`O_mj=rh3ifjUk15?IDKjfan|4h~a3fKFso;QulL}5L_=-nEsvlKwP{B6}
z4k<XyV_rAzTLsmdWPT^Rj#(yV$(M<7+=@rolV_O>$c=PN!EuE@;2+$X+>`WSZ%->Y
zqu`Q)%L>l&7E)0EP3A>z_#v6+d0<6Yhh#E4c35VS1PiBk&#=rZ3a%=+#!!PZd7E)#
za4T{|D+XtNub@VP<-x?RKPtGvaj8gFaZ|x91%*@;R`HX<AM?Z;UMA1eZY#K>;130V
zD!9wbU(V+53ZUQ@-uVh1@Kr#;eYuo)oOvnn%s!M8{Yac?{Ni=++M%eR;4wFFt-Md<
z-lK)-se->0{H@@b9QoMSX*Cr*7yW|sFM`*?D+RBm7DLg8<UPa7;jMyy6#T2;9e16I
z+$!EHh)|KOB}b|#sg%y4BBzQ1t6S6ZL)rGFr?l=nFq8J`O6fc*^0G*rS(;Bpeid~S
zGZziYqz?s+?Um96RnWrOE25&PiWn8KDvGHnuA;h%8Y)V#Ar%!>R8mn&MQIh~Ra8(>
zMnzc_<y0JPT;jWzX}!k=V=_*efthP0K8@Q3W<mu8Tdb_2ii!_ZG<=a+m0<@oYjr1e
z!AH&R<xVE6seHe?HI4t=Y+Y03_wl<%sbEnp6(6doEt=UnD$=HOWU02YHAzb}`!KH*
zMVyLnXT~SUY;?F<H(upWr`9#7{B7`}T<d~~nMM^R6=oGp6D;g%qKYIHzgn72vL*LU
zur%g{qoTfwIV$F=XrLlR#Q+rp*<lr_Dmtp@#MV`$t7xpE3B{{oOpTa*Rjh?AIYR|G
zJHgUaMKfv@EyG2$H&=sObXsEOzwL{L{9B2CYhk8}HX`WRRz*9}?S&n}_GbCobXL(t
zMNbvIRCHC*O+^nCFJ2U5<nAh7z9`l;qD`KX?fVyR|5%K@RajK?RnbpH9~HR<XVQU1
zt&6u`n_%hBAQ5etJ`yp|o=nZUgH#MwF<!+46+=`ERWU}zSQW!m3|BEy#V8dcxK-A)
z?z}Rh_T5xgVO^5(N2{Q5QBts>aVn}N#yyc<(MU0od+BAdDJnizF-gT_$!<x^tn#uL
zIaS3p6*E=LQZZe{#J6e36D%`CY)P>EVUAl~wEb-E!<WShzbw}3O|deOZRj&k#e5Y3
z73)+iP_a;jU4_D3tzxl?l`2-LSfXO7iceH5Q-iM^d}U$c%gu5Xd`+ofZM{MbzLsSU
zY)1WY-sIIPc&n`8KmIvseVg%hjdzPx1!)uBO|ZO8urRBtaPWw!aI0{t&{ViMGe%1(
zqvgLBSC&L;Vzlsu%%j4qLRaDA$+fl)y)shpemk!;;6>->R1XW@c<WVcQ1O|HT`D%J
z*rZ~+3f_L7s@N>O-OANBTDC}k#uzQ5SGInhCwUv!NM4uO=N&3`a!bF-95gg@snJ5Q
zTgB%p_Nv&&P%3C=f4&ewXLe@F*wXvMRSu~5Qi|AU;T+xR+-!N<gDSpJaiUoM)ed~i
z*?SPx+ri)8GkmAwkcz`9j__zZP||^;Dvqf*tKuBp*viCMe&Fqt3Vy=v1kd2QTqk)U
z{8Bo-M3Tp7InBeeCFYEZDc$2J&a1e<{jB1Zii_NDTjL%JFR8e!;)-Y*Z>qQ&*4IRQ
zFT5`NLB)?EZV2iBW>T(Od<jtbccfs<`(gWS5qE@ldDVpNzwmwt>*9}+e+%meDjte{
zB>Y|YU(Y8h{t(Nb!lyzu_e{iJ!oP*jd3Z&zV{~|};tg*J2Z}oImUngc;AaJMJA&dL
z$^NV2orw3s2q|J|4hM3Eb)<+~4*cPYV^N;4J+A}#MCTV45Ec{`64JS_h+_5#zWvAd
z=88E`+<_Z+id^_DX;r6WzHM5{fzl2%a3IBjG7gk=ptb{b94O~Nc?YUFP~CwF4#0uR
z4pedA>rQbMxlfFiN)EnL)9vlg$=8h*8fX2ST-AXO#DV&Cr??UR!nD_Lpr!-Ne&|3g
z2X<z6qdwLo^5oCS^H;Xr)<2S#C<me)NMctVh;bm+fp`ZD4#Y_`SO3U0o#G1gjVrEo
z+qNhv!2zQKCI@I_mT}Au)QD`B=)m7bODJqTe;d|f>&Xt(bAYWdTi*euLZ)DE8#<8c
zKwAgeIgsW+x&zG}XyHI32QnOJ>Hz&4JFqxsa*0!&nuy?Fso8m^W)3`;rdvAD%7IKa
zu_(#qFWlOJuVyyz+%C=De%iZk8wZMYj%(aGj$Li<KnDl9IndpKjt+EkfRoVG!N;j2
zb(Z<*;=r(sW(>|D1c%l?vf9<8-6c!+aG<9Hy<{qATz()pw_|fAzsOnA;y@n<`a00h
zfvFBmbD+NiA2~3^fhIk>4{%_h10x(5DRl=qFjN|1@WBpn8i&XnRySFO(f@WZ>~IGd
znGT~I8129~cF%#cO(MrQaK1$8V7n559b>mAIB?n?F_F{Ns^rT%g?n_4V|J1Qlf{SA
z#VO*e*vAe&-7=b6ak>LD99ZcHzVA7c9kxbjElVwNU=}yzgQ(dKY<LsJG{=FtqUVJz
z^Bq_a)(b@}5-w)s^hj1&>cA%sEOTJFgU>ArzB$|a*F2GB;@XEv3!7LaO&55WG-F}H
z8qsToRtIb%=wo+45zS7j4miTv>43)INzpDLMV5$c2izh&4os*TPrKKFO52hs{0;;-
z6%M>{V4VZ&9r(h5y$+0;5wn3uY)WkH-gP%Rf?synB&7J%fz4sPMZ{L&HsN*$c8J(1
zr2l6kb~&&+Z28=QJ)-%Gk#zXHc+x%xE;w+}f&C7A>A(R8A}ZxL!pod{m0jXf0E83=
z9rz}!zZLPF1BXN$79QW8k8Z~tIL;ejn<=88=>+Ys;%l9ZJ>$Sh(Wiu`g)F+7s~$_w
z^6a0CJtsUb{H|fcOAcJ7+r-#E9JnIlwgYz@xaz<)$$l@qCA=>DLHHv#j0o1fDPn(G
zW9pwA_&ID}zcc4uUQm*KB>YAAn*+a!xG(%_Sn$_Wm>x*>p>X7o9KVa8{jrEA4z%tY
z96QsWVtMMoGY9gfHfH)u#NWIV9C+ctfV;6T9eBk}yTVMp;axff-QGIz508}-W1RTc
zfp@%YohawTd#;ExI1k00$l*jzC-O=*;dG-=i;+$Y-w~Tjm|K{~iEFp=(zvU0!+heL
z--!Yu3JMDe3kw;fh=`)XVoubG&r4$o$(9tB5|$R05q^3nBGh_$C!(B)cA|pV;Y39z
zDvAF0t*Mq1l||FJiioPh51gnLwpSNXLs-*^1||!g&(=17=mc3?Sch}+)}&Wx9OFc+
z6D^!*=|r3p@lvaq69y3toJesZL9|h55}JjHLIzKAqORy<VZE@uz7zhOIq1;PiBvH*
zc4F<$|LlP@C(@l*wj&?ke{3YB8A3g|AgeTSqN!w~9tVFkrnwU@KQJ@xPY-@Gx|I_h
zo#^C5YbP?rE%I@JHcpKC&dAhOL^~(ihb<kP!FM@X)Y*wH;y=`hu1<7w;v>m+ccO=g
zKEm1cgG<)aiC&WJEu_W5<){$+iZ@eVG4>PoccPH&?E(BVcn;G*F%A+A77h`<JQ^JP
zFwqplofr|;BSnl7{yH@0SSQ9gVRNGIrP%RKOmJeh6LX|=qHwZs5_?##Uf^Bw6v=)p
zWaOz%OcOm_I3sMI>BOwCu2w2;uIR<WdBV$;>&<t9T;Rk)5sRG2-Oo(R*_{oSh|f~t
zCtN!xmOHV+39DGx?n)8<Yr)xD<;3c+eT|5<P86+|n?+-~nktP9`q-UNoKT%`I5F|P
z(JgLHC;B~4(S#H(C$hpi+llg98q)ZYA;IH>*9n~qXR`R5*yzM2?l&g_PORgy8WNb+
zJF&iW<D#cx?bqTrh>_w`cH>m+7ALkkv2?k4vlBDB_N@Pvd7Bg4xg|!GVMSV2bT!e9
z;xi|9Ig#i>k_)??_}qz8PMmgP4}0sx2`5fEv6mY=s?iZA29}H7$HP_9xL^3C69+_m
z<;2$_B9EB(b+dy`d?VR!oj4?dRlXB3*<?8!w(y7Jjym!Cfq154B91$;;gXTrd>O_c
z$E7bfS@^4HXLzW2X}A#M!Z{w^Cw2eSkTat0c_%J7anXrO?3ji@8ZJ9=#R+JrsNqia
z)T>VX>coBCZ%%yA3GCP7x)Zm4u6NssADn!KEcon$8=RAl#-Bvr<bmpFyv5}x*Na6z
z^Yj(0aJqF_8t*u9*NNlX68GP(mpdx;9=A<Y>Mu?l*_2B0n-dS5D5#;3hKEi(a^kfU
zZ#W_+zVjHLI`Pbj$4)$P;ty^-KGLX2RNW&feCFn#PQ2igH;Y95<;364;Pb*>Iq{rE
zUI?60hp|NURF<wS9{hQ|>{q>LsW~<Ei$bYyo%n}+(2z$1A6oY>Z+<5tG`!;woW{+c
z88bWem{lk$hlb6XF_#8D#4x88Y&ufI9+QQF_PS1EUJd!Q;6ot`2=i;``79T+Osr1Y
zR^=(Ip@@c(8cJy>ss*2mR3Lv;aSg>ZEY26zy+l;KB2gtYJlbR2ur>8*iKx;V%4mrF
zFi$ygUR5fptTfF=qsEut^?7P}4P*sji|VPBG*qU)hB*4as8>ZpgN?>o8memeKnwox
zV>Jzl>x?xtRA=`*M!sM3N7Ek7GRxM~uxM-I%=D-aHGbMB=vhY?tszR|BcxL%A4qwq
z8)G!AsgcUkE+6-Z*I>}lNkeB12^x$VnrmpG!KA^=b~U81Ee%O*Xh&kM0u}0N*tD_-
zQ+*BBlB1F})YF2GSv(xmlSV%7ifpJMRYMak_~5fN4e1&hi*CfF85Q&?yUmy(mV`RN
z=hiXR+ih$rmcA!bnu#c1C#t1}RvOw%(`>!9hBjfHDL&7u=V>dJNn4HWL|m*E)j>o@
zp>IcG#_hx|8oFxe#R=S(%15qu)6hf1p^d5CHH?Uk>M^dz%DAZNby9n3IAgN>m>$(z
zgGECh4ShKY6O8?(t$rNTs2+)#J)SSg!w&P|o*!u#AP)55QyK?r7@}dThHV;#Y8a+r
zsfJH93}-7ECTf_ZVf%LDNDX7P;6q49NtTw;8pecmC7*GehVksY$2fs4ewbR-WuzW3
z1CwP#&eAYj!xRm@ZN`r^Ox2K)9zRXPOfH1WI9<aGcD`6I8kx9VADAqB$lx3eb2<4P
zjSDsK5%%*~aem4I4f7>yzR`<DrongWE#e;LzG|AfL_>|})M?F9-%l{+Fk6;sSgygP
zAxpyw4J$Rw+Ly9c!zvA<3q}og8&_+1nlFl)`+tpw=$)yTQ=_aJpUeom7CiNe29@1z
z7)AS8b1M7B{qNBD#l|S722D;x=w~ytHMljb*RVl`?9srOehpp?I;XU1FFw=L$EHg~
zF);{B1LCuey($#UZsbDTOW7>dH*x1{_;XS!598L2iF{^s!-FYXG`!i8nszUROSxUc
zSq<kj?9i}N!)H8(8ot(WP{VH7+j}+a)9^Vj3dw%K*;`wId%oiCL~_4|TbA;Sb3g+h
zG5@7-o;&d?**1LYG>g8`@U4a)w;E4!Dnw8p=O)x}Sh7dBVZKQ@Ci-ZI=TrHJYPvC<
z;62tZmEu&m?r9NcgtI@4I<Mh^hU*%B&~TC3X1v06S#P|=%~mA!vaIrzo2iDT^*tq{
zuJYt+p!i<+X`?9WAK7gUziD`&;iiUMKPBGM@DmpzN6x;Q@n;RUwct-l+~?~Ehj2WF
z>8=)hS~|r&4ZmpkRqT8=Js%KH<J)^Fd?x0}wy6&_RH+-qjr}{jvDNrUL!%l|e1hj=
z4Nv5D`a{^*ZydGJsH`?V)$mNiU+lxfr~)n&bm4DagXN;1Yj~ld?Yg9w8X{cC;le8o
zuepv~6b<h+9C#BotU&ZX412!h&2G{Ea!LzCGrbeR|H-C*85h$oI;V?&mx#&l!thbi
z6p=2RO^D9rLT=Z8{*RnTL|$P&Va{h!!}~=uLLnET%fyv&p{xsqT`1y0Q5TB2P*Uv0
zg(Y10@<_`HW(z(4Y}baml-NrPFD`CPdpQ@%yHLr6$}W`Z6Ia27imu?Ft*GI`zP*tY
zz30}WrHTtxU8w0oEf+p;p_&WTU8vzg=1qP%H_oQTx6tAbt%)PwIC3$4=;DcsXK9oR
zwO#yOg6_=Labf+5CKN*!N0JjO$8EkD8|y;<fk|;L{5HzK6z_r|tP?~ST`+|$W)~9E
zjC8B(Lb3}DT}XAIo(uI|Xy8JM3ro}Dx6Mj;mm`WF8e!s-l}LW_EzN~=7aF;c;o>(?
z3^Zn3H}LE8d|XRo4quON!ysl$6Jb*qnz?Wx-rQWWEnH~nLMzeqY3%|ZMnIA2LU*&}
z$tp9y-rm-Qi!YPg3H?vv`Qs`bUFhUOE-!L>(b<JAF8H$%$VOKey18)7h2yO5LJt=_
zE_hw&=|V3~nhSOpdb?n8VVDbXw_^IZ(AR~2E`ACtF3-tia{uo3WPh=I<iY?K28yO}
zu#3-`3VMz<TS%rME)4x2<8T*7xG>U%QT!B*#2@X#7!gakOfHObVZI9sTo~`d1a6_X
zv6EexXST2>6J3}jp3U-PFzaq?oZ`aAE==X7&2QdjwiLe}Kh1^dlAR%(%?UqloGE%1
z_gFqNJ?BVvu8`SzT(~cLt7gkW3BE{p(U8C<7Q3*7Q))=qHQN-qFP@guX3HloEaPDr
zWy-V~XjvitD_vOS!fMfLg=>V!AM~+`=Hrm46&K%|>zvIEQ^uf*b_kt9O-Kiqh%6!3
z*De0{AH=ej?t;&SZ+H+k#`;|dxUk2C1Y2x_<hXS%Y<BTW5Lh4FEpZ!MI5j+eqYImO
z(CWoKGFv`%f&6QHgIfOfTg7LWaGML;IS(kc!-btZYqvW+91%}`CYqtBe|?;^+XeD-
zsY3CEw7XZhPq?2;=EAmnv2(VjA8_F->bvn@b01m^2g!#~%yKx)e(S<_E*x@U|JmM0
zg@=VlxcMs?x|}nUS<YCNo^atL*Rf5G3ohJ$lX{95S1Dt}u=vw1oZ&zIk#<&i&V_eo
z3$y1X`~Gkf>WeO1a^c4F_{*-~Uq9~i^to`=g=;Q+FZR2_vj<|YyYPePA6@ua#0?j2
zin!&%Pa=$W6B(-Qm00q&Snh;8pU3kc(|FH?U&5AOMHH@W_|1g}E<EJSGiBj-CKn#_
z6l7sk7M{5HCwC-ep>7ubbm1v?X%<Rn;h776xsWppky*i>|1JH0D|{||A$%!(C44P>
zBOH4r_~U8+i2hgjPWWCJAu)3ZL!P-r7s?7gXDzodk1($=pD@3$fUsZ|+O;#&dD%;2
z;Vh6vghhqLgvEs=ge9}EL64_fnJkpe;&;~Yp|n^|SVdS~SV0J3MPVgjWnp~7;Qyej
zivB=YO;}x6Ls(N-^m*`)OSMJE3+o7@gwetnVXQDt_|1}FEraL;p;2fOnuUo%&RcR8
z>SdvqWb0?4K^9tPAycv`!p6de!c<|JFkRS4m?7l2<~OL<BnxCyVKZTKVGChPVXG`G
z=WpOQsK<V`k-D9QZH4WG?S&nL9fh5Qq1o#qx~s68u)DB_u%~cZT!G$Mu!!y>93<>3
z>?iCm{75)JI8eB*dhpMfgGCP!4iyd)4i}CPvOlA<_(gSmp2df!U~Cq~Wx<*STNcJ=
zVFJgSg$3d{Q8+_5NjO<JMfkCBs&JZcdKM}q2LA@gG*c|IgtLWngmZ=SgrS*PD0;bY
zk#MnaiEyd#6X7ypsMZS6D}}3stA%TXYlWN>dlr-|tjofBv8Y0~&>?gRHK9wGCCnD4
zbPfJd(IeU`)P+8wUl<UEdbL6HHsMC$CgG>T&B86ht-^Wz^E3W-(L01Yg`Wv`33m&F
z@w2cu3qMG9Ul#Uf;baz0N%l+Ocfte0uY_L<4+_5#ek*J}GPqj~i9RemB0MTQCOj@Y
zk%iiPN}8<cX|Y@qo)MlEo)exIUJzaszD^0w-eu8Ogja>vgx?FV3pu(Uvv5Q7P2oM^
zE#XhXpM|%DcZ7F^z81mT=@-$z3hxVl6Fv|=6tb1ay!^A!Je$u4!5_T*vrr>Dc-24U
z<)4L;qW{Xm-+T$kMlQ)dm%9H5UkG0cUkP6e-w59dKa<<+U(xS`?}ZT(Er&3tFtlfK
zi!LP0Bg`wzC(JJ_AS@^h#V;(nh_I-zn6S98gplz|Wuvs{GQvv2vchu0^1=#22rCM|
zXdYa<%A%_Xs|r65RufhivXz?IsFjTmvr#)6b+eHy_Buj?FiIFLj1k5P<Am|TvNM9O
z0tupxLX*%eOcW*w4{i>wcs<eS!urAn!W3acVX81qcyVbkek0Kt!p6cT!luGzLXN0q
zHd<w4b~ff@qjfeivoR_gqqET_8*Q^;$wnXXY$xn0Y%lB}>?rIc>@4geTzDhchi;;~
z3wsEA3VR8A3qyOOujs+Te!~93kAwq+1BHWxp;|*k4;2m*4i}CPjui5493z7LnIdAW
zaGY?waDs56aFTGcFx1M&qNfU{38xEZ2xkgs3F$vq#9HCJY|Iz2K)6h}P`F6AShz&E
zRQQQ7^cK%@(JO>2g{y?Cg=>Ut(V7igHtdqk5^|)92vz71I)$3hCG6TOcsFK?b_+d1
zuTU5IgluJ9Hr8k3l?Sgq*pQ8l**N6JVK=@u##x6ZZ2dlAQ#L-$#^!8n$;MV*J8rae
zV_P=1XCtqhzvYV^+5GGT?q%bbY<!lDUD^018{cMQH)m;qx!9hDUuNU;Z0uo+V)-{A
zKka)(?-TA9(ikc_kd3dh!HTqeosEOxT7M_x|Bl_u#)WKL6o<pvIF^m$qK{;Q)sKoZ
zJz4ieHcn>aRM>Jl8)wAxTsF>%pns^9kT@Uqyp)a0*$4%>l8vjPZ%CDE!t2@iUYuE-
zZsZTr`j6ttXg9NQD;qy$^Jz`EBUM6fx5X{g9BbVT7yX)z``LJ&jTfA{-i?0C#uF)e
zAf)HRY&??S)W3`Iv4r9<|H#Il*?1Z*{Yy%p3EAl1BIri_k_(-U2zPL9UyGgMT{hlG
zsJCMINBD1u;rV(0KiM2oJ*P0zja+Wzb|a5u8I40@Vq5v$DBwnn8?kN_bfb_PCEY0H
zM&Yn$5qEICScT3-X%u^LcW}>?5FIKl?M4|lD!EbFjk0c(lUfjm^8e#j!5v($P?d^e
zXO_XMxKZ1UI&M^T;{!LUNl^_qYDz=Z!?i;5L;qT0|1jJ)TB80ZTC^KS7YDa=oE!0O
z)N`Z0lp5Sf7QvzfH;kf9ZkXLjbR)@)y5Z7Luh`E}SLshn11Y6w<VH%^v!NTQ(i!$G
zO+>no6*I)Av1FTwZt6y}aFFIA=*Ehz+-U8_R5zx%k?BSoH~PBKPaN91(Z!9fqT9LA
zUZ$dh8y(%~B*xCd|8|(7oA~q*JA-$3qlcT%R0?jVUT#>VKfT3=rT-mcXr%q!_{fc6
zZVY#0fExqd81(<+Gss}EPz;gz9~yQTA!3XhW8D}jdQ{kRv^2*mOyk^`B=+&b31Od!
zBG`?|Vdp7sd@Q{Ujc&RdGu+VK@VPP5jahCiabu|)v!&t!Hx{}vNAz6byl}wzVX;UA
z`>@y@Jinp-P<-OXGB;E=9OAItjn!_fabrc;f2D|3GG0#F+OXa3hE;lK3tQNKMKlGw
zO=qWMsWlNUH?rKw4*PrDa7%>HT6n`-n*M(A+0Lumjer~L+*t3%261NajZ#Xn#f?pF
zeCoz#v4rL-)cV%2Wt)U$(M~r$6aAGNyF~02A5O(?iTt@6d&KgEki7~8+~>xAH@*~~
z15(5$Langw*J3&7#y8=yeCx({;jS{s5gtj&@?aiw<G33QJV^22gc~Q_DB?j;4^Fvp
z+KoGI+;!uO8)x0P;>J~}bxyX#WjD@;<6m&&qBMHxe_COG*w!^SzIWqiv0oRTTQbrg
z#KPYGD8?IZ-29)qtoTzndpj&>yywO*ZbW*J%Y$FtxX(~-ymR9>Hy*h0LOdV3@yLxQ
zZu}t)u^Yd;@i?qQ6ZNMXPu+Ot#$RDOdlD*QD}TH3{QuiuO5|5=ycRos-iYO`@E>7l
zyzfQl@F1rL5uV`99I|ua{u@8HCwTk|3iF5$OY?e=&x8DuEg(hztysu|!eL8j0~GV1
zxCga7_|StA9+dQ;k_VMNC?#%XJSgiyY0)A7a-!iuMGwl0t{@CG5$agTvx)~*r4QA@
z4lMn^6MWqXIal|fh7{EdkB;`*qB+<Y59)Xj6|Nf{7A#_l^&rlJcyTs(VDiB1L4stB
z;b?T@<Rp5KES4l;-Tz-&&x86BIkajGJxKLnr3b4#Nb?}wgOMJL@}Q9i86LFoprr?m
z!~RV@Xd;>oamdX)XzmHV4l-1TtvqP$;rpTJC2pA>bnu{~=r$g-712)m(_W?})Q8ag
zbn>9H6m^lJ9v*a+Y&Ri2yNjJohbFVP2Nn+ocrZ{L`gqXKgZ|P)U$KO`^pRLtCDhg+
z4+cx08E1$GLp>NS4#UE&ggV1grV-&dqdgeo!5k0fdN9_5aUM+Z;A4q1-h)XVO!i<x
zIKsqmKSM2sIMst`9?bG!wz#pC>0$pF(t(-beuf4}2ljs+eLVbR1(tcRK>U|@uvElC
z;UW(fi=aO%vMtsM4S{5Kxd$u4;|)b#?ZFxk9((Y_gS8%5rMEwNVDrH4!2u7x@<8!G
z<-gB8*yw>nI+o=@wg*me*2Kc#E@?V6&uq>uS&s)^51;)9pJW67(>=dbXT^0Mtd}6H
z8%moz_*5+WJ=pBQ7OAyeEL%ly3&#nKYljCrJ^0LnT^@Yy!JhD(?-sXEm&h+X*z3VQ
ziNlJtgeD>6@MX9^G=A;D5f6@fa8Rb}8xOwq@U8IRZF49blWvElG*tbV2gfD*J@0=H
zPI_=j{7-psTEs;U&UkRvgYy!B)k7UP7Y=ygf9!0CJ-qC}6^Y3#{jYj(?f?5+m&iW|
z8I4tLcyQB$TOR!6!OtH2=D`CGZij>16VE%syW#QvBH3Rh^8Il9!}4mvfNb}nI6RV~
z-$jS)e|YdT?Ej~T(1@Oi{)>%@c<#Xq4_<~nLv_hF9=!G7A9jP+a&p7CTE;#v&AB5I
z`2WXuyj{m9c)Lcu=jHFkFQ<Cv@FJ%dkzVwkU}lynB(}az&f`U1FRJSJKu10=@_Uix
zMYb0OyeR0!Dlb-hG2*l#Inh$ci^5(M@uH{~^Sl^8F0Pmt#l5KI#fM&$@M3R{7<f_9
zi;`ZH@}jgCWxU7}5mUj7vR=eT#88(POF1tFMa1lVA3ZZi)2HvFX)ll#G3<SGC2#N#
zVpYAUEN-+^@dn>TT4gKxffv=ny1ExN#G%cqV6B?o;4ef`)b^qd$LNK{izqLmy=dS?
zikFX*K&%%=FHBy<c|p$vX(-+cgJk)jie`mOO?Jn#_4HnO&0ZvWQP+!PDNXVsH8o<%
zs)*jH!RG3*iPVTLsSy+2M>AVre9}@Q8q&>+4xy|U>C(eiUNjO*Q!kqFo!N+(3@;js
zpl;%YmKsOF_zcxtJX;7`3Tb3pttC`uXvjj&SX&Y8gzXupZ)BG_ksZD0B)#qIMGuM4
z#fz?999k8@D&54nyYNVtWLkQPPcN|?-xKs<>f^;^FQ!OQUoZN3F*_orzZV~gWq=pM
zMGO?Ohl9Kr?8OiXGL%N?04Ib+Q)Gcgc)?X3>BT57Mtd<vvXg{kxsgPS6VmO-o(OV+
zWG4z=N5s&A{pCLPVyYK2y_m)6?Ui?$7t_6%;YH7j5x2&b4b352<Pc_iF-Q7C<G8kw
zp>fUiqJlT5=gaP0AYAChrkYI`2^V{@L<HZ^Tq=S^pLns1@2Vd#E*Da)@M5KCU+$dD
zuHm4r*SS?Oottp27gpJgHlZT43wLy=M+a53L+IqHiJ;vj0V&+FGksq8z3_PPxRKH8
z#lKhMbzyeFIO>2G>$r<%r{~nM-ir-hZ1G~N7aQ4UFFy5RGk3c@IyvKq*c&@y^DPbj
zRv6RTxAEJ&*zU!TUfl3vhZj4&IP1kZcEgKZUL5q|8!vWy@wpfKyx7l?-px}dEoKjU
z<wf;IF?+q(Go&;v4>MwxWkt|ZEhFYjFAjL|6;EGU%-1}p88N>;h;lTFQB%{XzxCof
zFOGR}ocoY>Mbikn9rfa{7vHvsJmN+Dj2I>woms)66B6N+7pEoQNiP`fcSCW8I-eGE
zhC4jbLO1ffI9&4LGVh#kBQ8kxBCnnFV6U!tan+0KUi=`Xhn%@+ye7fF=LI#V2(u?z
zL^4#U>6>2M^5U5ne|hnf7e9OPz{?L*<F*%fc#E<doR9_e?|Q+0vcvbJxlmp5z8Akq
z@aYrlGcpt1$VXg6FP@0=@4{tGBK{D;(m$mNJO61$%u~9_<oxZ$b1z<b@!HErO9W^2
zr3`^?)S(vNi2Wb#3NPM@4$a;>(GhyE)_c(ux0?hj=FoAiY0Sj5m`EMD^x#dKTSp!p
zd3CgFYGgK_j{G`G>L{hd`OuiVRzd+C1$7kCQCLTD9VK*(*>5_M(^N#q(`hEwDypNH
zRHxp!-^5x?lN+7?E#c69Q)wM#bd=X&Um9DM0Y7QzoYN?4L%wo4mPN!d&ddF#3Ob<U
z<&D^iIzJTyMy@2>wJ+ETQ<ZSGnvUu^TI<NvQA0;f9Y5tMnxO|DOI?fO`Z=MVjt_Oz
z=D>9%{8+!PFiQA7Hac48gIA(sbi|6Fj?)nz)&{zXHVRE)yIIHm0d*5~B!w;QD@4b(
zj84{Zs9y|&)YpSQInqFwqNAaXRMF`|7NzM}(mfAFBeC?!lbgD+j)*Kn6CG7PsNYoB
zOxRr5LfBGBhgLeCb?8aaMn_v6Lv#$~gzFeoCN9Ar%~fl!ql1o)Iy&k2NXGyjoptaN
z4tp~UWEUM>b#&8lb4hF;9Wl)lx{GGEhmM{)dg<sbmSd{HBBDp7MhnIn=+IY3KOOyb
zr0+3I9#OaChlZC!3|038!w%H(sA%HvzsL5=8#jn<dE*8PuiMjy>3BCF^Tw6lV|5JI
zF+#_w*Ks3-qjYqi(T>^Cl8u_(bc~K&)0<L^(=lGh1RWDOQ99f@Ch3^0W2uf$bWG9l
zv5o~g7V4O)W15cHI_Bt@u47e`h#5L&2KQkuUP{bztIuMD#=(<v?s>Plau((b=h5w2
zN7I5ho`TJC*66c{Yb2$tyO{gDSxn1E4eDGC##yHG&G+C@vguf%^ZoINRXSGdSSdy}
zvG!V?H9FSnu<H1IWRYqMOVD|Z^r1&q1Rd-;6dkG#hg8wz3|1VFE2&Y8Q^!ByKDcyb
zag5Su(xb!6sml?+v3TV3@)5cYzmCZL5k9VUxuz{TChZ*?#|;qB@rF-<;j4g%4Z@AW
zO+uD_%75BD&O@<P$2QLDK1|++?K*bo_;)kjZN^R=pXpe<9!u6^myX>!zVqXdAD`>k
zqvMJXSAF<G$6l_B4{jg!>DbSy@S%?nU-BlIpIFLZnp41hK*v`)zSeP&k+}zSe52!A
z9l!DradTSC-|4u@;q&b1ILvdc<EW0~I!^EgxNJJciJF*`BI>@0+<3usQpZIdJ+7Kh
z={T)p{(V!s9zD-+Z|gXx<NAHmc^wyYG`nDGc-f?1GSR|BaY<@j7G4q3hjG4VEgiRX
z+?i%@K2Q09m(uf;8#;azK|S&FhU87j{`*7xPda|qahv`+0<RN((Q%je-nqt?&o#cM
zgQRg+<-{TzVkaMN%$UFF$QYUMw~jT-OqsJ2ALw|<`)YRLBjNAD$3hyPi1<UtpJB^W
zp7gN(i)Zs)G~J%-c)^qPF#RPLRL5H#uOu7!LB?xti4QV757Yk<!QU#R8!cs48{YGV
z@u8Uy&3)(+h|l2zpAI=7woy(WB7Ml^Lv9~F^r1HGKIHYGqz|QhxO+J^pN|(pTp=Iw
zi=ZyxL&30axi2p*g?%UzwiNZD7(*2;P+Tk}!uBPX^Op9Zj1S%ki68h-R_qmo<%H$K
zo=YDEW5S1uVyP6iSN5SwSXcF7S)_?>)xwtQB5L?hQ$#IchY5-FY3k2e$A`qQXOs`o
zKEy~iR%q}cPDH$L+nitrm=Yvw^uZ*;ETnzu#e7LV)b$}*EGc1oJrVVV4TNLb6l~~2
zs^~OfBOlU5G@Y6+)JldAjm5%jlTeWlOLGTDH~-Jr7M!$_={<aC=|d|YTKka674+fx
zNOKz>+WOGRhtDUNha_4?<!{u^hxR^DEKIa?@L_$QjE+7~Q+N_Bbn7h6^TwOI`e5##
z(aneMKAg<e@Vh4IOcO_&(+bA*WFLI!%^AKQ%O5VAmzKaEn(phvpJ$Cn6D=(UoBR3D
z--nNU7~sQrA13(tg_MLg{o<15#SZjgkPm}pj}7r*xDO+I7%Exrx?v((Tulw>k?g7u
zG}1C!iq7XZjS(@{hjHOrZ@-A`INLDMhmU>yS(Vsk&e%!Z##3S^b3Z#{r}(g<q?td0
zJ=KR#*T+xuVY&}9e3<FOt55PR_hFXUix0`U(1+Qg={CoQxuWL@=ZEbJL{#Wgmp+R`
zFBUElF7@FP5zB=1;gf||h+gT#Dj!yhR>P%hM6C6}8n)O(*oBJlK%&JFE_M2#g|$mW
zmXMwv9vmOe`*4BNHQ1~R13vh;lhf+^h5Zkjsn>Dcec0f`MxM&@3DXb6Z(<N1cKNW|
zhs{20@nM?}+j(6VGTcnG9Qn<>mBFtiTzHf3V!xgfx~K2(VJFY{PZ>+En)pkApK&sK
zCbaCB@wpFsd^qgG5#Ikk?DgTG58wFE<4x>7ANKR|=Vj79;mF>E*{2N4+9e$D;VU21
zCJA5rF#37Im-!N?jkjaJ_2E0-ClLl(+SIOpNNQD@6T7Iap+#iEQ6G-^aN376J{<Sq
zMDV01%$gos*cqGn)_l^3Q@-GnY8~ed<S)|=lO3^VeaN_LKF7756U%HjJ)YT%oRhhU
zZN4;jFWci1L)9=dT^2F8rumu=-}7YoQPz*^KK$UrZ6EIN8Z2XW7*kl~M;~r*t`ZWN
zZi=|&!%rf97WT-f&!W3N-1Fgq4-b9#MHc104^!5fe)XZ~pZR%za<P6B%i3Q|v_JCU
zcdm;cMg4f}!xP@Ue&qJ!51ua{Ui<LIho@YruZ_#Ao1Xjd%!j{t@L~R&3wqQz<b;uW
z-3j9hAAerb^iufBhm^|Z)T}sK-g3?>nBR+?*?)ZamnXfV`JGs1ebkV~2tRW8gH@=R
za{3YJ4@Qfr6tv{=Bd;H9qJW<t#5J>SK0o?YGUxYWZAEk9$zUG}O7$g`&4v6Z%(};o
z4=b9<ViKp6AEo^$F1myt_T1)@e(cF*rZ|5hIIh{b&CCwVZ7%0Wc|XSbG0u+)e!!3R
zesu7oq92v~Nb;kuAC>*6;zxoXMn9_h@qr&v61kcm^^X~s<~P^!qq-k8#8{J)ncw^}
z(L%DJ55-tp$ZQ=y3LOh}AX+Rje#H6_=f@Azb3V*%j`xEsm&Z&RIIa^$3OX~CN&MLd
zvmXtA$Vd!lll`dYM^jD|JL5+KKhpe2m(mn^`teI1^MpL+h`i>;`OK+)ki(7{8;L!`
zk7ap+@kitfvaugcq#~;@+uV;9ezf(2{b?!oRzgNtmN)3o+K)`JP`45BXLobEu!W6w
z^rMp>z5TF=v9ljN{pcmSiyvJ@bQ5+LGENT>p($DvX&!VmI9GlA=<CODDeC7(e?JCu
zwv+gBWB!QCm)|^qbCqQ2AQL`N+y)8Da;u0KDx||OKZeEUPRwr}Ar%>Xq#vWCbhL1c
zkQG@p-j4}>e8O4sW1`q+`Z3FoNq$WB<9)Z>^qC^|kNueH$EPq)^J6+U0L<gBXAC}R
zq?qBC&-}wYTRd51fgf|Y;bR-l^<$nN^F{ZG4@RRgG0Czp?72w9Vn3FMSQ@s|ZMh#S
z{Mf`s{aES8DnB$oTz;(fBXo%Deyj=muN7hS!^WvQY2+y;75<AlIZ^e4$JP<{bc*09
z%km@J55FG)KYl%7bo(*;n9<`0$Ms%Lkk^lbmCd>zM~)hOQj208{f`?dHf_zISntOM
zu~2Umv9^MFvmaah_{xv3WovEq<1;^YNrY{FY!|UZxKqe!;TI^j9W(Bh>^}Z4fM=Py
zlKBgs%^5lAuvfC&sO<UvaIG)>I3RjQ^8)l?9}cpuwK?hb4ZD5J$n>oUS`JhAu{(gz
z132o(F<wCd<O|@qA1C~{?Z+KIPWo|50$%syw1^9ST=e4%_d|;UnH9}vxnc5{&-rm)
z1T~wx<Oi?EE8>4y$WF39OjrGAon*P@$M<4CBX{Eue*Eai4YAx3((@+wn@sypV);32
z=M{06cVm);KZ|{CW8-@~*IX|@?)&ktAMgD5&5s9u{N=~ryj%Qu<j0>Ba(;i86?r0|
z9`kI9@eeWbTPmC`&h1kveHQk4?#ByW-FeLa`0-Mf@0A~~rId4Mg87Xf<XiEf<<D+G
z<1ZhSVU_oOL<A5S2v)yw%$Os9>)p&;R<@Nh5IiFsX0AZ+RUo(c<Pp-DG4lsdAb^Si
zR0^PA0EOspFdh3h`N-b*!U24I)Ko5jA^|X4G=O3O6c^2G=>STEb;$t6ZZ($@mWwl$
z37~DoxJgNtvf@C^IOQc;1t9|XAkjo)<v{QsJmvrr1Ht>bN&r<^6bSxfubMDAfa)S>
zsUf1Ku$J({0BVb<BcxAMAo!QA)jvnXge|cF#EFg<8iWbqQeyz7ux72K0O|(d4!{#Y
zasc%L7!bg~0O|+OAb>v7+mrwr2GBl$4gsVFkQTt}%d!3ECGMY>m>xhz0F47^6bSzJ
zYGNRxTP_m^*hDHWd1PuTf|h0?nuoFhv=q@QfYu^1If0>~!R9srtlnm3m3CoEQmtUj
zjsgB(4_yQ3w8`8lfX-4%&7y7rbPu3c0KLW7BY>VF>g<bMl4R+*!^|~`DO>jC`+AlD
zCbVuuLG}%Rk^2SEKY)+IZE-A3*9Bt^3Se*m^8;8Az>olj1~5~6h6OM@fH7Qp$&LtM
z6zA$*V^$d%z)oWd#pnR`Z!^<)Db_SDfbjuL3m4Tfn3yI6FfoAaBn#6d5t9RmxR^18
zJM&8V#{o=byN5Eg0S)OeJ%AYj>`Ds$Z{=i?g-y%~V0Hj=B<9=z=80hIp$?GrTo}M2
z5vv1O9KaGD2gxoC@R{0;n3e_biCC(~nhNhS)52OS#IjPjDgaBQiRst;rZoYq4Zs?J
zEr2XeS7URRE9v$ClmOIl))9b{Yjh<&@tTPaLnfq?8n^m2lZ!hfK4{Dq=TH%w^9Hak
zfb{|B(xOl37qT=UqGXk_8$|rtxc-&^Hik<#aT|-?9JZ{qnYIS7O|shq;41GB{di`+
zodJ9n0L3oOq!<StG_r|3JU%?;>rs4taMJb$P+=XgE~xi$5d-)#fVo@D2ZY}S@Rf+K
zg$IQ!{YFIPt>*6nI26EPUIGF99l&$m{{b8e;C29ac>f1*B7n;QTnXT00H*@D7(mXQ
zjVpd*J{`ch0M7p(Q{Mq4MbU)|%aWELim<?kfRZFE>~8nK?lKFT$Ox#2EYJpmA_i1Y
zKvYD`A_fG^k?EP9>7I^*0TmR*UnNKo5CsJR1yn##F~R%#^7fr~PMz<3b?a8Tb*s9j
zySiruHpr5)aRm-+D(4Ebc}`?Xuj+ljS8t{n*QgAypHqC)Q@7Gj)~LJtXxmp{#|rFP
zfo~+^POgN~80J0JNBix;@&<jiZ)+sG=@OPo;T~R(`fA@v^n2lqGRqHA$RRFGE3lt!
zSb>8g`Edn)62iP+uE=7SKN38$0za?7u@yK@+p<Z0wNHPq{#Dwh^wo~C@4r`*5PuV4
z({<{J6&T!CW8+yJ`~C-qiHmRyO=393g=Gb@WB6}s#osGJ{BH$L3;BmmdsZ^FqQ0e`
zso_~M)Dr#LF<jkOW0t(bg~U1{G*+l}W2h&*ehiI-FttGp4LQVh74n=I)}&ODW*u^g
zO=CDGhSo83?X5J6;oMj_`YmIa*;hL+h8D5V?9C-g`T4Q%D!`<(2FZ;<sjIY-ER;~r
z#!#VcEWE^YjA2$C<+?WN1u+oY#n4_z2SG|MjNzghKJ1d5PBC<jp$l6Q!|52##Bgy8
z-C~HwP#Qz`7<$C`y$JM);q7CEJ!8m=p;rw5+z>gD6WQA*>%wEbddIMDcxiqN1u+x~
zR|P3lggn+)i}lqQWeI&__@#~7FNUHRTAr^^QXE4`4Cagih67suCzq8`p??emV)!r?
zUUbT0D34)I40B_sh@mou8)LXBhN>8sP)vwnVhn>gn_g0iTSqR7VX)*HBFOARV;C00
z@EAsjWR&0~HK`+Gn7StXOwi~W$))W6`=R7=k&F?%B8IU-s{WGm|1pe{Xtf}f#|s(M
zKJrU-ffmD*7*5O$-=exo<X6XVjgV^vCkaj#q|QUTa;6HuPVo8~`Lq~rsNvINSn+N)
zmCL$?-xRtzhFfBoLC1(e|EO?w3~kbRIr6=u+a$~FbRHqI1n&^MQ;^v|u^RMTrF`+R
za#sxVVt6)&r7_$c!#y<hSG5<>hFuHqjp5P*1rNqBzb4mxLKX<#FSsy<2WnFPyFUD2
z(L*sjTqAiThDU`zRwH>_$gl^po~V&57V=~aPYHRtM*fVDC4!v>)$QA{_Ocj~F{ENx
z9>a4Yf1WlG@<I$R#_*Ex*96&;mt%NE_^UONl)Ss~dJJ!f<jop+Y+nxbW3*(ABpyRT
zxKSf%`Ab7H28;f@qu_lJreko0*fly1C(EjEjJz297y^;MEtsj%SxHjEt-l+-Bm7;#
zRW<VWV%Yj?_#~0xgBVted`(SiLH!0F#jrMpk7M{GhOc7S9>cmAK8@k?7`}+1<AJ=X
z+w%Sw!)Ki7ZOaN?%|G?8Lc-G4$FP5$dTO<@A%=}o;HDV1)s*~Y44Z5C7Pg^=kNmZv
zwKROqZAT0{WB4(KpSVg)D)?FyzK>y7jpjE(z7^aZ!yX~u)ucAKAbcZfuSEC7@Pm;3
zHK_-L92C61N9{u~92Wj3{qQBF{>#dd7=GsJA;RATS=z5cj>d3I$nhF^pMmvH)bNur
z{9eQV5c0>nVM|U4|4Z<1!GB`-SIB>Y)R{V__6J|}uB9VeM_nDYb?mu3pCL;~9l>ii
zG_0qizK+}1=5s-7prfJAGje&89?8$q(MS&$vE}6@jde89QF*lb937wZ)tbKCD-1e_
z6z=M)5zo`nT*pEk1(!5BUq=fa{Q22gM@v1tliX29yEZCGu8vkBIoeNYt)q<&5(Wrq
ztK$M8?F8G`q;}A8q40|Ym-HxQmQGS8_aQ8~i;k{3F4oaa$E7+h)6rc=4;=$^l<DE$
z9`$6ybQJ2y)6q*Lk3^N7XO!ML_&-Paf=5p)ijK~U%lhgl(xK{z=<u#CFKkiON90VJ
z^>lf$juIWE%raN)r^DW;Ms@VNrTn`M>Yhl1g!2BPfBW!4@^T#&QsYqCP)8N_Q4(dV
z1`7GAN9iDzrsKQ~g%n<y75?wiJsU$lOvi8?BXnG%W0WYf?<Xf=WK9XN^@WormX6kO
zdQxdwkJ8I^jL~tOj_Y+?p<}F$SL-NO>$p;fz9n~}4o$~69o0I<*OV|p$MaGbt5d%y
zyh`L3uMcZy7+hPuMkLqjn51K}jwuqID!6__VcV!eHLtcxK266BI_}glTgQXai|IOU
z)NzxJn|0i(<2Ie2X93Hcq2t;w3fULteMNeGyN;PUX6d*?$D)a)$G9sy9hOWxu!><{
zgpHY_W3G<-r0TnL%;RXzRp;xtTgN>*?xkVBRB9J#8+TVSoZKSWzf=y+Q@@|1F3@qL
zN9p}EMV6XXTV;U{&=k4V4>Iq@!iNNJo?J@)D5n6uD1ploc$|&V@k<=P#_@!X#X4S&
z<CQp`)bW&#*LA$1hg%nZnPGL7`ZRr>6K$osMDSU`rGm=@mkUziIoiC2zaZpA!IxOR
zkXHm>6?{#QxwgmDH`)I6g%8AW{srm^9Wf58jyUId9ChPJ=rD9_*0DwB?`5QPtkLly
zhajbze7372&|&FF(`j`$BKLH-bcRmqlKslT(UE4OBgTGZXHsoHCXy3ZGh6|5yscxU
zjxTp)wJFjld`IUWuj2!Ha#CHz8JAKcMOyKOi6rl__JNW2MYuervfkD7YF%aHFV@wM
zbo@`pXFAq~Q&s(#iwS+>oR;M4bbP9#V_Y3pq+MI2QS!NtFLbbwje_fSY!E`pwEYTk
zc9F)so1~~OIb@P+tB!3PXnKf_uXJpeEc<lq(6Lj;w>oy~*k2g^T1S3K^y97ByL7y%
zL?2e8--w*#)^l3!(eb^Gy;Aabf^5>@fsq-PMxN^w*82mMbsW%fP{)rte&V7uA@WL*
z_EwR`p3;nm#14mbm@8EpWMh%Gdwk><9lz@MQ^zSCG~-bnzv(!^#Zbp_79zH#{GTH2
zq$vEZ;}0&X#oEQiq1k5)j4+AhFCBmD_>WVbgQDXf9sjbC#agsjW8+Dvc1Fh!hDzl+
zany>3oT0Xmtazw=HudhfS}%_Jaa<C|$T%9r(J+o)arBO}g=iE<>p0rP!y#@Q$GLHw
z7e|vgn#RMSKS$)v1V<HX)cLP-_1~i-&EsepM{XSC=L@!o<N9KaQHE9`xw}}~ccz$8
z#L<@RiG#MiAdYr%`T#ny4V)vL)b??7h~vUI78Pp~{;0S}2<7B-s?KqAiGv>7RkG_{
zs$<3BFmZsKPHML}y2rt>V6;aZJ>y`;yf}t*QqPVfF+YxiIHGZs#!(oD!j|Z2NgQe%
zkvQHj){5fj6UXU+k-lun$jIg6Bjj^4>XH3QaUApZD?5s{Uy8MUl97{$+55*aAdZSS
zD&sh{HJd)h#+1cDERW;kOCsH?B2{q=WJ}^08pohG;sYa*k&(giaGt(e6}cm+ZdIbg
z;^34V9><7yI19+Dsv<^GB}bR)QE`lp<Ayk<$8l*Km&H*X$M`ttz?Vx;$Hp-xjw|Ab
zsnu#E^zff2jlVLEaUA6mjkVB*^vMZvOpN2|IIf9fawW7lu8N1x&Mqp^Xs#>b;X|}*
z<Cql3lsKlw!HjI}<T(14Xk$w>x_5(2=;7CKh^f#q<kRBVd3j`1m+Bi!v>W5NDUP{u
z+$H0Fa~!wDaeExMaLD4gH4b{h#Lm@cond~7HZzV{be@vv>^L5;D7hn!J2}K#v)?MH
zUe+f{$%`f0`^C{Yam-YrEiR4BV+nCApra0qFx(Tzy>ZNsV`YiP=((M%o?{nEwEIMX
z<o-Ao#={k0krGaM7WiNs57BOM{C+{n6LBn#;}PMH3R3tOTT;Up3E8@_{7E6t2|g9a
z(?Xt!W2q44S`x>zHM~Q!KFfqJ7u?dc4;7xTNqr%X7i&^qqMJ1fQ(ukaHF`@NpKz(q
zS6&x<H;y;rcr%U_9M(AAj${1?g}R_0M<685tAG$gFe#W4GzBfew4g1>LYz2U;hx~U
zwkm}T8Cp^#+v+Kdz9qcX@oMsSghzhJ<+ICw-_BbV2k||@_XR%?Tph=nI6f5qQ5@I3
zkhfMiNshr+0D7;BhnvhzaeNuaryPjii~cA0nc$l2;?ISAA-G;}Lmb7vx-riCnH4uy
zD4WGNTjSUk#}?skwnC$Q#m2u|{=Fc{b|E_icgFFxkX<#Y-^B5)@ZExY1i!0Eeeat>
zmatc%`?!h<*)MpYM(1E0KMMaz@Q~nP!6Sk{3r@SFfJGgR;~0H1fi?+nmw23uY69mZ
z@LL=w;yB4UGQ9BLIR2w!2>(OyPr*}ye{n*^@sIF32jo!yTCa@Aa9V^75;()fKY`j(
z1?AZZWYzFG2^`BRKdWCifqEjZFBo}Fp}e8+9Kl9{6gEzviSTMAvP%usnkB-C!|TYo
zB0o>Cx#0PNEd;6AGJ)I#T1oWu5+(I~m>mhUO<+(09lmMIA-f=fFDI0CPvG)ArCkE;
zg>*>p%U9S~u3VHrXOVRMvb>{6Iwisz)X!HcT@vUjNf#$@s4|P$yGgWZp3*;0>5)Ls
z1o9H-l|V^?pA|*#1o9J56Nn_RzDHI;0;A8(Domh3kE}ME3l%1vo8>3+$Rka1`mmAj
z)(;A^`X<2h6+ER=lt6I;Bn*2?v}gjQ2@FV}Of*?we<^UOn|E1GuL<X7l_yY<0HZ9H
zSSg&ODuIDD{MFTYgA*8%z|cfE<@vX;!xI=LoY8Nlsv{ENf5kFfB4niCD8bQ!CnuC&
zp1_y{Kk|u>6SyLQv9xvqGZQErU-!xcCM7Ug3LM9Z8mZNS;{_)OPE0^c;Hm_8obT!c
zt`XtDoW{!XvTKF^U7|7LltlPAW<^ZpV2xLmsR>+{!1W1COMp>^n-jP}_;kS=Yvebb
z6&6Hp5i+Ajeyfn%1o;eTRwCS)uSwuTwzh$KM*?>yFgt-ciEyo0l)w`S%uV2~1Wpbu
zo|nMG35?vHcXtB!Bv2=*+$*>+f%!rxxlhP~MEKe2`-PW%ok#ft!XHfFAt6kq@R0<T
zcPnIgG=ay2KQ6fb%RCAfC-7tf&n57D0;}%He=31z=`9rz@~1`ejNlT%MguCDv^0Tb
zqC>tsf&X=EOcMTeassgg^aNf^;H3m!P9SL3>x~576!MDTtAej3u&%4}dIBqYs?;H0
zk-(_24MWmX{c~M|cmjz8R?<ERw7ja!NFben&0$I)B@$E6qUqF9wNG`+ej3%B1YDM%
zKqdh%fq%5JZNDi#O`)o1d3#G)dO{gCreU{7TWvU1^mYR8&CYt4T@&(70ywEq@*cfC
zuDqYX2Q`w_B3U&%>y`2db&C3F9MHC#3bi`wNA%1Uz2{A?`w2V6+Ed7+@F~rbz)=Io
z41AWr=LtM$;2{HFaC#=t!$4018#v_?_?zuaU=tUL1b*UVPhfKbTN2ox2oEkYY)xQi
z0$(SvErG8R*q*?}KQ(w~{P-QB@Z_Bpyu|Q6^R5KGN#MH#zGqz(%C`yZPGC<Wd`LI`
zO!14^%7|{tMfZp23HM6IeN1AR^^~o9!=rlqS-rY}(p^;!Nb13w+J6*sY^q9~!wLM7
zz^@4$5#i5*zb?&U62s91j&s33tIs*xvO(9voD+2E1pXA^w8EU<6Zj*6+cq{}3zzl`
zmom2eR04mA!n~Ku7<w00|C_*noGAuc7&y&kpO+E?%?#8sP}@L#0}Tvh8K`4m<TkY~
zjXYJ&HgL=Mx|83`+O|U(*H5cwfPt;z6G<Y44GrWNXk?(VfhGo;8o2vVxnikx0(Evy
zsFT%C+4hXmEL%C(z<CDktTs0=qqj1Yr=c2#3gZqJo)}Ql(m<|(4hAli@>>~bV*mzP
z8{iYt`Ij`hb)Ryhq4KU#TLTvuXlJ0kfq_*e95ohlwy2g%l#2}9xmW3AptFIF2JWk0
z%wEvie8$?vKsN(Vtx&rfxY!7vIGjAUct&A0vk#ctpu4o39nUk+i>U@~Gtk>WzJW>u
zRR#(S6dLGfAZkD{pc*JLP%N#TqDCSH`WXEGGNrFb8f7<Ou}>^hoaJF3OGG&QMddM(
zmrAt1fv2BSrYu(m7$`GPZeV#qq=LQ9ZQ#}}=XvQzwyPg+Rt6dvM12Dj4GcCg#NcyV
zj4?3Oz%Y)Kfl&rJ6;=#4Fv7qkQu6vap<lK9v6_Kow1G=Sei_GilRBfH#y~kkqwVSy
z2F6P2cmr1&m^vV5oPlaK=3v-zh8cMghD%l#lI!E^Y6h+{aGinc4P0&D8UvFIOqLRu
zYBq0tEvMnc@&*00oZJReSfC^^?=$_hxvRs5O*3$Vftw86Y+$;98x3%PIH3~#w4y`h
zbSmoH!il^sZ-(UkD-z-3HVR+pReigGnH(tt_ZXOE;0^=xMCVQevklBKFqhF@k?MNN
zkiE)JdzH~s)w?*{^^_|PDs&zeva?o0BE!7~78tmn20ypaeA>UCa-ZO;e%ixznk+Q%
zfRtR=OSy2*xXZg${av9vY~T?CKZ*QN1CJT_z`$w)j~iHIz%Y<B@PvWI2A(yr)WDPU
zH;%G_XAB%apsblt!O&-BS($h~+pt86x^GK^Wi+^f*9^RF;5iY#VBkdq&vQ<#$fB=y
zG1Qj~ylmhV1Fwq0$ok5@iIuh2Rs@ck^-#rE4V0!oD{mNh(*Pfr#|^A75ED(^0ChI^
z)7DK<ubNod=i;if7D#X@s45{(888jJZQvaPmVvYZ*MMihHo#t2)+whB%XFk<a-Rhn
z*ioWP%L@l9V_>C$x9B!9n<%k+g^tI(ujVW7%J{x-V3mQjlS?0S)c1r?;nS@0@s_&A
zz=sAl8Tit`M@%xX&cLSzJ~sHl{BX7TwsynTy-Kf|SI%<?d=~jXBYY(NnSsw)?<)01
zKlF_+=r9Zw3Qv-+rzK}bxX8TNPuWN__EUDPsMu^^i-B(q?51RG#a6CG?1I4)1?n~f
zUm4inPh+vC`)RwbkL)zCi^>zqzvikH4JQk6`~1i^%r!r9vZu1gz;_1r8N6qL?`b+2
z&|C7Ay#~5QH3q5~2bBE=4j4E{pOMSKkJ25MR%xo|bqz=1kVp;-9ufRm@E5^fxya0I
zu>YnCY92T68`qx{qA8p(aFSk~;w=~aZr~5PL=vwh@uz`PToscTl*C^gJ1Im>;vWP5
z8n`Hl_^h)3xcGC?PNGo~XXvg=l<XwxCPPvyiP}QA3}z+6DOo3pflrq+sh-Fi3Nl(h
z$%9NvgCyR|Qy5(~Dx26ii6%*$pG1o!nkK=8y*br-Dd!~7Orqxso|i<s`U+DS+V4>A
zJzCBauq~6wO@hbu+Dg5xl4!%QF!JL)4O%C0=dmI-=7CCO%?g#*+zXOup9D!eL6Y@#
z6k>-YrXEl(Ok&-bGDbTl(J6_}Npwj<k<z**aj}$NAlNO5&G$#TOA<YYyhjo}MVKc@
zNiQM2lgO`;@Vd{&6tYv<3JDw8a-R}OqE9mP)xJp-CsC3_Q4(u^DWZgj_WLCfO`<Z1
z*}asGzFL|@c@iZ31xW@7DNEw&x}gF?g|v{QkDFD+GJTb`3{GN564xYgZ4yJ17?#Au
zB(x-kC-GbV$R$aPOon&zM<lUeKnc%cjY?v45-0MN=;q#+CUIF3SF$CWdtc7%&xDuY
zu|mcOULiG7cvzCgB~hKkc+qE;36e^}JqGbAiLS4!T%E+$=M+9$VNc&2tV~K`auN?F
z@sKD?Nn%D4w{l#PxGst7lbDvoO-bCG#0{cA15Qt(ajg=P8<XM2X@RejGu)Cyy><=G
z@>f16ye)~_lbD;tT}jN8yt4&o3Em-ir{Lk566Q#>XO1#2iMx}yk7h~Y9uczGdxgAO
zHyp(IVgZsZb(#?GPomrBbrvS^fauUaFHKcY{%{hHBvCa*eKCnglXxtNB}qJ+#N#4-
zB8kOGED}x~9`1Tl_*3+R?FuEl20bkWK2xJJ=C<;s!j~uUToTJ_<Q?l4KQH_R!Dv)t
z_5}ySLKt2W;mb+9B7_a2@bx6#NTOj1IVrrE#EK+7PvVOtVoB&pWRh6P>7N9L%t#{1
zc^y*|NpP<?xQ>!a!c4-a6P74e66qwIB-|way}#V%+<CtN2?H%@mPJ_IC|~uGAWp8Y
z1axMZ2%Lj&CGmC=AF;nlypzPcNvx6nt`dANiT8z^SX<`<AuMXO5MI2<cX!DButr`q
zyb&cIC-JFBJ`pS}C|M^YQeXLBjpk=UrfpN#C$S-kLrEM?Vq+4UlK3u(@00kFGdGFt
zN$imIXNwqNtMI3G<Q`~NyiH2@Dv84DRF2fnB)(2!x7e13-6iB(!Eb5|ewOT!=-I*D
zo5a2(u4r2Pqm=)H-~qw?N$}uYMe|%5{~+y*ko-iu^;Wog9POBUB#EE7dM9xziC?5K
zCk1~^;%E}bgwq<o2|1obR{hXi;VB@IaJgpmcj12sve>_p_&bSOsc;$pM}+?hvN}rs
z6MkCoj39;l)lfTytQ6`<E=ua9kS)A!jf4wS{TkjN6|PrQYm`Fc6k4ayCdKEZN|O|t
zrEsqBrYW3Lqo17@nOYb*FNK!$(gKC=N;FU5{1jTGp!UU<Wy-e&6}7f0+-l}B`$)A_
z3O_!l@IES1V8(VSv`?XJ3a|B6E)a#smn!|Ys~u8d-cBiWPT@k~7YTM0Jn~otQ)!Sc
zDKvj4uPYn5FjBTvssD5N!&{Z^sc_NGPoW@%9>RMH<_Y!^>@7G+c1?xC!*xCdrG~31
zM1=PdoPI1^_8E#KS}a&1*l|EkX$t*Qh)Hxn3S}wWox(jSl&4UU!lV=?r%;(fRSK7<
zFeZh8DGW+sL<*Or(0!>gIEA4p43q3bQv6$=@D|zbrCE>mR%oK(BLAmQ87X9R3YT(|
zpeUnK*s(O+s?p|`rTBN@A^&))I&P_Qg=mgTp*n@J!mmt08<0bV{e{YSN>aFr11(7t
znUo5DOg&jo*)h44I_;Vj^CEst3YYcIxmHG;O9WSjzw0VfQm8jXxjBVfID9Ewm%{Za
zOiS_k1#XhkZb)Ie5H6K%g76B$^@P9mit9Gv4t#O{oEa(pYql~gg*#HXHHF(!xLqVO
z#W6-lHKr1Ifx9ymUQg$wFgF#xXfrz%zAMMy;Jg~%mBNS38_%OLj}<j&sI2u>-X&vQ
z_fjW?$5NP|!hI<$NQFOmmmBIsDcqmJ!W145zvWNM2c?l*0J%wEMmqe%9G5q<9w9zm
zPIr1dg+(bWO<@^dm0hCH-=0Weu{imYDLj?J)8e#jD#J4=EJ@*6jzWR5v%YeqUf6|H
z{ScR@@LUS7QaOd^Q+OeTmpSgM3z_s{3NNM5?nULlb;{fZq4J=0$}1`UqjbnQ#KhNA
zAikNx8$#$3jINNzld$D_3USsesgyV=7{Ze&q=c9$SVB1asE|&<mMHy%(Jg~RbW`v|
z=nL`(_y=2+l_|U>75$RJ+d?)8zC&+GVU<j}4^#Lkh4)f;U!os~!fIB1PUviFL`ZU`
zf6iJ-`ZR_AiSXkTJ`o8`y-p-&vwS9eeF~pT>K77acB(OKkdil^O?oryOCg)NCZw=c
z_)fuXf~@x|A=^{<DZ9xI;g$Q8uT$8S!Z#^=o5DW&LkhbkX-^8@389C7pTgc0_&bsJ
zURVyNAp^<&6b{f`Q#hQ$L3%7pPKEn4dLUis1~WwdN_~H@!pp&t6n^GJ%TeC0P<Tn=
z?wUdt@@oo5>6ud3@f7|PLiuk(PNZ;B$nQ1sKZIm>|EEUsmyo{&|KW;JBcJ|b^_diE
zndq27rwnSF$TCrwhLT1d6WJyfS$M)iT@&?86j|ZD*7_zIn3!#1j>*F_YC|);1%0cD
z921R9G&a%1M7fCy6HQH=V`BI@y*ip`X5#9K{LX*npKsz^W`91P;XEPDP5hY2JF+{!
zg^89Xa!s@{(auDBlmBgpHYQ-AEz2KMaB6YmPD8RtE-<10TFLkRz8)M#NjjMLc~AC*
zCN45jxjVaVqlOHWm$-RhE)$(ibTM(o>HO{{dI;$%c(GtNLG_|0Jx!eYD=%WAkB~eQ
zy-f5Lo-bHv;;Y$t1tuPtpGQq{MYw7r-|bBaLthh7Q7#fJ7NopHNIxlo(b5`ue<@*r
ziLx5WoAdK3O;nk<#KcGw15LbrUg1y^Z*0h$y)1u_iR-V=A1pXTaKxbOVJ4n#-fOst
zkLKs`4ayNFmN#iKZf*W36QikPVw#CdIb<fro0wptdUyWiCdQh$(!>~cUnG_LviXu`
zFgR-*qqL+%i3}7nX`%_u#I+_SnV{q<4y%c4Oupg~=3<%uFAF7;O-wN{RZ3<m15>Y)
z=vmF<SLEMd;${<hz4F<$>C(X)P25x?S+qBg@>@hcgYtJ<GRiCXZ6<Cv@vNFpKGO`Z
z>9b7SA(A_5<V@YtQvLM>Wv;mBT_)z4xZA`%CcZVX+r+&l=9^eyB4*+~lZTVB*bE>2
z^9aZNCLS{Ju!)6c_>B7j`cF~xNJsTSI!0%eWQjapf5gP2X85H3F*7{*u*k&Y66MhX
zKE!{5Ly!uedJ~^C@e~Kh#4{#dGV!vBC2XgO=S{p|hL81^Qkk{087Xy{2|nc~Vc^LD
zKFa4w8{&&}iDW1tGKs~$V&XLuubX(4-IpdY=?#u%N+o&I#K~Bgmxlz{Je?Jp_?(Vf
z5>1#eOuTR60~1LTDHCte$4r<eEE7Hl*F>5P9vQJsIP{;W)~j=MQK#y~QSF<Rs%yeC
zLBjAtr|OJot~BvsRJ(7bnv7~KI#<{Jqv9Ru2-~^J#Jg;KRpg?Kn!8ecPb|~wfI>5}
zF{|mcCf3q)TeH`g*w&@`L%Myx=rA6<p=*hK{%2wxmx3<UpK=`cE40tHs79Ntxhy<p
z@R`_+J^jMOdJ`K=Y&5aO#8&C-CKF$p*v!ebHJfEJMBBDxVAb0=8BOdkvD3t%sCMV}
zaobItiE1rNwdCkXVX5}DiBZMTT_%Q<YK&f6s(nKjD%GC2EV9SMcP8ps$hPpkiM<@q
zQtdAj`%L^`;#U(#P3$*ufa{xypG;(mq6bZsZp|h+Tom0<6g_0(Fc&Tpzi{a*)h6_f
z9+8SF3#(b(KZeRCm5q<g>Ki>~hDSbrGjYPiap64XK_js5Cr$ie;!hL5ixYC_X;tDW
zdT(XuFpTp2#@{j)|CspK#D6AEvzsPrSxA;@N2(*Ng*Dc;kY(ZVzEO6B!qsAguS&JL
z7V25(#-u;^$^aTz{GT$kvCz;$j)n6r9#K{sS?Cv6n_4(WNMj34giz@8ixLl)YRxR1
zYw=)}dY&XL*VX0{rR2Q{krozOTF7OY{h|!5gxtF=oBZW%*|5;o!i5$tvUo2`y}$}*
zO*`Qnwe}V|SmCS*XNp*+qh!C>!WYqKCkvfxO6ww|c7Ls_g@aNN6&7yG?rx!ng`O7j
zEcCXJZ=shJ+B~x*n}=IyM)Cp+g%%VGs)a?7>a$&A-y>2cC4Hn{><f8c;UvWtO04j4
zWIqdsTB>6#L@ktB=x^cvPnB{(k^w@>EWB||OGYa!R9dLAaKnJe5DP=Ca1%Jt!XQz5
zw!Si0BpZ80hFKVHVU&f@Z239`{k0KHvcN4O%Nc3m(VmfupAYw$mvZcuDVJFw=MSh2
zg`x0ri~oJ8Jf|pESQu;JN?zqH+-YI9g=!1qEljm=9XsA%n_xk+aFvCL7S7J2vlHrS
zM*C~mTDXQ?>l5X)>Kmz^Bs!DNYWCNr(4?Gt{k7{YOrv2f+{CVl{&Wj`vz~K*R!n8F
z<eSv!%@$@@d_aR+EHFwrk!O=`lLBX1F#AMrXM6f<Getsjhmfx0Bdll+yKmtE3lCbj
z%L<PG-EH9>QJ808iYx;6T9{8`TH#W2-`VCdV}EUd@D;^jN0_uw^hwx-hpcc7dCbDY
zQq&_>xL7efDunuvi=3@x_Qe*Sv~a@0N!d6(WnmxJiiP2}@M#OrSg5nFaEXOyEiARL
zjQ(sPVPUz2r}}FQFVid*p11IVg}2A$KmB8^7cF${oKH?)dPzKrYOh#$)xv8QUbpZj
zXQIg8u&}q4x}iZm*0p$lL5x*Q>;1@UwfOZp-NKm#d0))WU$7?6;Pkifo`v@<q-atL
zzJ<VoW#N;xd9DSI_W!zD+6sRl+ZG%l{1ykJYy-<bix~^2wSu?UP74&Sw9sx!Y4^K(
zcPh+&$HKc7R$1WjhDOWOr8BzEI~3*L+wpY72XwPL@;<V#R@%JU!Ws)7N)<cJUcvqb
zTfBmg*%Avo=&=^oS@_h#=bX_NI#%cZPw+ElUz|Vdjsjxy8Tsqk01ID95+zi7yLJ9X
zx)9seI^<sp*(|ul!d4;M1P_fYpaQdOry0+Sba+?&+QKdidn|k>1%6}UTdr3YZf;*l
z&G}#E-@UwmxmxcjpV`0Qdkf8wzt_T$29<AY3ClTsLjA!CkCgM=%YF;nn-?DtJZND=
zhx{J}e-b=o;joY+f=vBc$S;Dw3LX_aCU{)%H(J##rSk6<{;<$KjSgx2$(j3%QYVc|
zR;i~f{AJ;9E|L~%r;(Ko57_@}g;*<%C)XGLM;BdRcv|ob*WQWcjMkHf@6@RqRfzu_
zDqK3GXLcHO)2Nq5{WKOf&p$7X=4muYqxZl04b#X;qfr`-(`c5)-5c{0CkmRRaZVb~
z)vs!r#@e?PhBZ$s%t*<(X;6V`%zJ(sv-jn-P2-_{N{cjFrjeTlzp>d$F#1y7!c=K%
z;cWz&1R+l*dtV^A+MUI^N|$~O_tjN++T_A?=&sEwl#9~nm`0~GI;YVkjY&I{f^>LZ
zs4JT-<l;2C3F)3jPa#b0!Cq7-e36qpFO6Oz=c})bF5aQ!r?Ke5Tyh4gscA&gNcu?m
z=#xg@G=}(L?L}!6r*YE3?+!}R=tra3c)&(9jnXvsr*R;S{%H(I<M}jRNTV!`@-%Kr
z<K{Ff(x^=1GS-_$RT=}+7?#HHGzPJe3nKlG6%9#qhf_W{jn8vcMj3{(v|~jpr&Np(
zGCGY*=>Wn<rZFmwdC!*RE{HI!I$cf8IW5&%l6OoRSEO-G8rP;VmQ^o^j7y_BjVtLM
zEmgC>M&&7cE61n7EE)})#>6yM_t&=f*9JE!K3mjPl6tjZv~}2|Noh<=<AyXQr!ggs
zpZjZ5)3`2;>(h9AZ{^-xb<zInS_8Cbs%%ATb-Hwfaz9tSF^&6MsqELW7V0f&%;4ar
z@o*Zqrg2*u_ogvFjoaypE!8{HxHFBJ(nr=fE6s1(gvHKgGt#(=T~1?X3w7@Qhg=fP
z1rb(scN+IF``*f1a@FtmRx;OpQVydF(^$YZq_JjyHJjIOe*=aG=n@082h&*9Qf0`^
z4e=40D9zWa@n{;4(SR-0$J2O1s#_#2q(o_{vJH#VV96v;bD(q8VJ+2X(|9J02XoaW
zX>cGIIuFp6rm-xI!TWO0HhVdzPdZ%28NQoe|HU+3Vyn{lFpZbfcqI)x4JVCP)8VFK
zMH;a*UQ6TkG~STvD10-G-*0Wqs@t|yiw0<V8gc1Dir%;&LYGL0V;FScG)4^2C}E(7
zuy<w}R!x7?LRbhJ@1~JSW2JP&OT%Xib5;6AAcUj;7AM*O?OkR`<89%LzQcK)tCHL?
zKzmP2^Z{3@R_gm{q<fW;tQJB~W8XjGijl@wX>3p9<1{`=<4ft|x->qODX=lk|5e9l
zX{_h;SrGZ8v+_ADKS29}%AFNDC-Job+6GCbf<GXXY@)u9&1r1mG;F1A72KA_m{#gb
zxhf?z+73348C$9Q()c=!U1@xi#<$Yus(qCVSLUk3-SoFI?YlJgq(RH<8KC_>K>MCX
zNb`OCidILfSt(ocgJfj+tIYC)Y5d43W~0)^PwY_|O>8u^aX5`5Y5bkWKQeGXbD(q8
zUxoitGlECCbf<AVjo-McP?*LEnW3Ddci)%AX2-<S{z&7L)W{L}Q|2R`=P!}au=Ip~
zW#F=H)V1+n8mH5^uuMC{OM@M*E#$Rq)V4z*mjWV%btFo{fv#tR-rLX)SA+V34eZc*
zOv;g@MuLq6Ii0C|j*Vt4+(w>_b8Vbwqn(ZRHk#Ww-v*5d8!hZ`*0;2gYl9P?)4!D+
zdNqY@Y_t|mAtg+ukh$7Q-U|dN>A*(X=xn2lC|_iw6K&f%%+gULPu`bxHp-==tBr0p
zy4$#zc4!&u5PR6+6lS<|K^Bp>4tm+>Z6ji%kErF_D70~oI7tD8W!hP;*r6|}Qp>4a
zmBPMuID%0dMK&lYwoxKF{RF8%eHyLQMt>UvY?Rr!skK^OLvCzZ%qRm%m5qTmuCj5p
zjX^dB+ql%mWm4A=u|LOUD6MT{xQ!7uM%m%Cx<u?rvy9{wr*&vga++?m4X#D>gpp+$
zhvsrx&&D_#W9)F{=W=v~9WF{^1-psCDX+G{mW;PC!Nx@4nlzO{wwZxVy@uAaal4I~
z(#J_uquj=18&hmdwQ-$|8`$4tMRb+xZA@cd<nj?-$eI)rxy(+dewoJMpyXy7x7y*_
zc#D)jL-4GjZnHtJIO{XBY}{dEu8q6I=CtjdVwTx<xGpiwvEhh+j^m1F;~pFL+PItg
zWg1sJc7fH+7kl1khpT1&f^ar15Xt?5G{}QC9<s5(!Tk;%w($r(*}-`Z9<}k9jn8d-
zVdHTdi)_4M<4qe+(9SlVwXu{*(dd&*ttffQ4u7{kRi=?YZQ~gmOKk8b&%a8P?<`Qb
z%*JvXuS%BZY&_2%*?5_QTM~VNj<hwKfj==`6bXNiykdtxsTlaviI^<Y@&`s<v%??b
zuiM~{Q2wZ2VIxKh*l=y=cKFLWWy7=)w~?@6h=eUn(k$DuNf_)_xo0b~Y^0@%v*p`0
z+_T}^c-O`%8-b0CjkhG}Y_65UhwL85UxIH-Q`!D^Y^-MUN}})Cc;5!Q{68BXNKZeu
z@d;CHtdZ!4(xkP*KeEGH3T)Cp{i5v7IuSDZsm<5Wa?iGQbf;We@-r!u#$0b>gN+}#
zz}nboW0Q>?Hg?+h(#B>R+iesVRBy4d)y7vgKT@r2F4MNz_@zv%Bb;TDP+q)gBKg-g
zcG=ix;|Ckx(6P(4-8S~v_?G2}!e!;!cQ(GKvq{@1q=fb-p{b{rYy0i+1`GRpkX~1=
z9S|R=-8Xt`$6UUpa)^t+jVuRs92~LnvyI<uoM3xw{7Uy29XV#>C}+X=$g}0z%&pn4
zkBYF6<6NTqM$K~Vvp*_M(rIm+k@j%(|FE&{{OUi&2R<&>$WPh$ON4(5{v-IW;D3Ur
z1*!Rs^tzUVbN;NT?SviN{d+~WgSrmb)W%MDGqaw91`ZkuukWDewrmP%(i{hk9DFq)
zLQect4~0z}G-YWH-s&87wwaXkVV~%@-l4ZQclejm7~){4gBA{2I>>X-%R#P#Rt_$7
zaFK)74%#?q?_ho3D4cK-UEqX{O?$Rwu?5wqc8_DUor6qnE=dO`d@bwua;<)a*3k)_
zrz<5wIyvYpBx0e96V8zW-s<6fQ3pNP5eMDb0C`d9{g`@qRA_MCj%!z;^>&cYj1Hm>
z3LF&DGSU%6+7ofm$AK!mpdy^wbn?Db?h`F?!ut%2(*H+PXeAEV_jw(1sdIgW_F-;r
zse}Fw1~}nerg8@r4$2%H92j9Vdtij_SLuLLV330<CtOAb3X<5-Xpoyb*a49p8RlTP
zgUPJU!3YPJI2hyL3I}s5w2=-^=tVDgFv`Jb2bVhdprgugnZtjAh%T<scw3uM>Tqcq
z>)=WUS2?)a!8ixi4kkLGr;T^Q8=H4u7J0pIbOL|Tlxup0Mtr+M(;ObR)991eIN{>P
zFiFU@4tV>N(E}Bs+EfSEIhg5SmV@gZOmo7w8gFxOgM;bpzJr_C@qW?Tm0G{i5#r4b
zZgDWf3Gcn{?i4ndx7^uOMsMXf3gJD&+vy>dT7IQ=hl4w1Oz(BV$vE4=T@L0snB(A=
z+*}UmT>4c>l;q1u^lpw|+m?K*YjGrcj|1W`7E%(O&w(z9-X~+n)penR2OPY~Vx8~@
z-GdGmIe5YWZ)QHktAK+?xc;*v{i2UKI9?KE%lU>Ho$zt72_=giJn7(Nhwq)KPdRwn
z!BTpT6Fy>?uzMWc;2CkGB{Z-250@``$Z{Fw7ilgf`drP3Kkwj$8qONok(V40&sU<a
zIQX(S%J8a#*J}9d4&D&Xd!$T?InW*KbMS+MxPyd)uN~}iU~rh|V-D6jNI5VayyM_q
zsoHX|l2eTK+?t){R8^uj`!2*4q{I{A3kIBnLMByeOro{>U6A{>NN(;_&Au?KVw>rK
zGSS}S#E*s@;md}r9ju|LmGD)&ZIi~6eCUL4-jRRo;1k-@!A1w`9DM5FGY6kLe6w5S
zB0~@VpG@l6mD(3f)z!x<we><q7gWDdsnI<)(GFai9Bh|dn;mR*u+701iLx9z9v3UF
z6<oO1mPB_*fgJIjLRbaMp~5##c)j>egx?C^&Dqgk+asKV@@}QZ?B6@s>wrGLu~OSt
zsqJ@gz`;@Rkb@3>l<dDa_(>$3ygv&$BzRcxh~VhUBPVs0p7Up=_A3XdB>L`!xyOVY
zckr8o6QV{pV^4{6ygwZLNw;@#w;OuwDF=UZGCKH69GDWms`Iad|LFfNN?e?FaK-^#
zv~^L-MQs<2T{Lk~KZjov;y)=AHgHkLMYfB&E^f?GbHA>r?_%4ahV@+Bd#1c`mG=Ii
z910tXGWBzWG;&dXa9pp0<C?lS$Hi|A)fR5}4pB1~r~WH%?&4fgV1efeX<wzC?_%nq
zLY6SHjoQ*hu8YDdt(BD4#^nirt+fmDOgS4ieMJt{E^yJ#MQ0aXT(ozgHdZfmagmD-
z!Wm^n-5RN^dccOljxLCu1lLY4@9N@WmhVDw(alA77rk8ccCn|C+CwnUMNc7=uvNsd
zIcmO(>MD)JQbJN7QNHV>x`?=_$l(#qunPm1l@V{Q(iT){eO;Vvq!tPGo?Ow-MU=T*
zjCWD$qQA>~cetFba#7}Dgo{gP4Ho5MFwNzn(nXbvK`z+l<l3^oYn9VD16{oFZ^f2F
zg-fcmr8#Q7gX4y}7%r_PALb(OzY3DG-5=>9HK}5hi-wI=+JvJ|`DhoH%0Q6w6|FHY
zu5fXs%dbx5jHRiUm0@|<1&+@D8maj?>NqK!WP*!{F0ONNy$j6+)uyn^F0OKMwTo+9
zTr0&+cJcC{h6mS{Eo!7rlF_gCUj-{-nKLI>Fc<5kwWqnb!NtukZV{d7bi7pAO@cSl
z>z0>&kg3ls9K;zeZgp{oi#uK1=E7bUmN3i3?ZRie_-I)fg<nky3)jUgvt=yix}b^X
z2-1b_azVRsC?8u^b`KrcMUjVM5A$8z=i(a|-?~`f;(mIX3(Lhq7Z12t;^J8s54w2B
z#p5m(xp>&cBQ73w!%flaYIvWYi#B%-kBQ_Cc^UZ$7mHmy<6>-|C?5nr>4y7_r(Hbd
zhA(&Xg>)h%%&u~7?jFZy8B1NfMANYl7t38d$LcCdo_FyAYgD7WG*D-Cl}3D#t*z2n
z=_@W?rNstnhKtu|(vG<?&izUpuhL$Z#=If;rr-)eX4l<t2Nf4g(0k<p86`<++u&{4
zDIt8VJ539__{_!Ul+d-5=t>uFxo};0E_^q<La__HXa+7aE@pHJp9}DE({7;lwu^UM
zeC*;A7w<~dG}kI2yx6@b<bA;p1Xl}EXN`*wg@05dS?gl<j}w{nXs7CR9NB@||6F{^
z;Txz?GJ2r4R0;Q!U$|KBV!MkSE;dNpm}QfTjT}&UADsB5l(|`OOHKJ(g=`c2N{|~%
z?%Z}tA-gzj`$WHX!@a@z(%G?nqPsaMxPH1g<KjCP-@Ew9#UU4aU2u$kaIxPFH*EXp
zMe?ia0N15R^q?E=7D(<LsQoAkjPi%fVHZbS{K@I#;%67Xa7MT|;ez|gU!~q-!jH1p
z!qC%>yWypu#;5O{l;*MfzYF1e?th5qP{OC8e@S*Nt@6qB-!A@f@vn<Hk?4OS|2YyR
zXTMtQ9#_jlZ4aG2bn%eop^k?(9^fI{LtPK&cxdLKo`?D#8hXg_pmb8Xfo$O6<$+pe
zp!Uf?ZRbF(k%uN8ntEvLg%_ZsA}@+YE7nis{;kd+?OYG%dEkM8mMnab*4)GS9$H8t
zR2b4p?KMba>Yzbdu7_4$c);MJPSqcDsc!9o$fCF#Z0q47FMJ$%froY;+Iyg|gCIAw
z+$%DAp%;Frgwc*(__Kx2g*$oRb7AtX9xnEf@1ej$H!qyU-97a1FmX`0d+#X{l3qgc
z1nWk^V-LNhoihh%+|Sbo3TXrnst1n3`-8$SNk%;M@$kr?aQ{=Vdt6^84bn(TJoNLh
z%ENmeq8>^;JmBF$5B)t1@G!;0R1aky$~}zmaEXTs50zf{bbF{5ZXK&U4D>L_3qPyE
zC>zZC27^5e@i06;^nAK2J&Ii$=7o>@hkN1YAb1*Nq=!)+s%Z)jqdi>eVT^|>JY44C
zaxa{%gOqRsHojx-&OzGoLE2a^+{ZGE^Khkb`sZ0m-)-3wXd(|+d$@+9JXq7jo>vj&
z$v9ifQyKi_a;=BS^re#MBrp73!!sU42Daxq57&FR)x&Kbrg^wQY)hA(PEDF9uHNK<
zA7JMQ@_{?Oi;|l?+#*TjGlXy>bi0R{9_G<F9%j)=_^BTccX_zO!<}CED0%p{?Ab!d
z=XmHiSSuN<HBG5w25Ve<hmVZh<KbQp_j_2#_20vN9)9F`8)-0)>+q<|iOVDWJPUhq
z_SVPQI~xyqc-X`9bYPCMhetg;Lq{qJ@0mR2;Rz3mJv{DVkq7?tZZI+YA#>AUjpM~t
z<w*}udEvBuS{$bEg4_x6W0TpJczD*sQZ{C=#-)21v(Ra29FoD>b3**V+KV1u@{sai
z(hohn;^9pe<>B+e+N-R$qU3eK*VwB3YPtlMyEi;cpHa>RFf~Sx@{sVLiy9^LVS{!U
zs6AFto%9fkRJX}0-!(X#1(t`j2j4>=`nCs8aycGcFTAK-5UH;0U42B9>kZK|9#(px
zPrf7Nyv12LL@OGivCOwc!ZP2L5=IWudR`iNpVQex10M~2toE>mlh?x@4<CB?$ioH?
z8$GP0899jjIKPKa#8r5a`qaZZ4m3Yu6bU__iwuR-`HXh(@P!9{kBHaS^^%cf^n+QO
zIB{ei@y@_z&cO+hUGy0bTRi;GI=pGH)eC=nZu9V!q;417A-GfUYe8z-it??rgjMsN
z#)g8>&fj_X-or@`zkAs0VV{RzIRTUE@m|$G(62oF<Y7N&Q?Kd+tVqc9Lo`OWeLL>1
zA=)7ihdmsjyh`JmcISa{Oybq&XAi${aVUv09BEN~)Wb3A$g=R8hsTC!oN-*xIIT|5
zAacm(4-bEG>iNj>amvGA9!`7UFWJ96{Nv$2E_W%FGxuMazsyU{c2dYmdd5R7Km6h@
z7q>TtXsd>3b^NeNb^UOq<rOg7$MzxGFGI9?et1KYN%eiOwQOFFk48T7eDw0s*hdo|
z?R|9c(bUH|K3e!_>7$vCbN$duoBOz<LoVH;_E7CSAH*w^>hq~KRHIYXo>-adqm_>f
z{BVd{`)K2XFH5xb!K*wK=$~{~B6mbopgXnm(S4{!pX83{LaCyQkFGv0@_8B@bnH$(
zI{V=*M+P>4YV<%}5ia&agLEhQ;Ud8KUOrUoAwtS~`r(Cxq_>ZJAEiF}`zW9_d=&Y7
z6$^?VZt7GY5kGV){*auvHM<Yr>)`z#CKZQ2ff;zct{$rKP)do9etvibj|y@dz&77L
zG`#aLzz<LT4fIjwqudWy<_aH`KB{~?GE`%9TkmR?@Y+y~WRPF;6(Aw+4b_Iq6KBqa
zVLpcY7~$g*A0vIt@iEuu8#);6V~UTdJ}&ifnU9I0f4Pq_LaKdSA>_)Ma>fdoTM%yN
z#`&;Ygl{R1uSuOCgzs)>KCbd{wM4J+ajlQr<duO*B3Uz6o$O<w5*D&$sK)4ZKCbt1
zE7e3{nva`&-0b59AJawhYF5J=+4$ArTgFF*YPX1RawL3>bOs-<r?Bys@_&bFw~Krh
z9m&T`;iu-PIo~v<+MN;|^`pYixXq^f4b#~8yL`;^@q~}Xl6tp~2Yfu};~pRPa_H%+
z*M(<t7D(!Sg590U``LI7_b_dJ%PQj2|5QIDNskIr|6z`fk5{iQpRQDEEvg=)?@7`k
z!Api|x0OZ)lt!NP@f6j3yyoL+Nm@qN^6`w1B|e@N$x=a<d7zFmL#+LrkLN}BvX2*p
zyy)X4AN*P!)us*$Px3R&8K%8bllOSG^16>Ve7s5b6Jd|5%iFvZz8W9%q0?J@Bt%Z*
zP*`<tF7ZfK6GMdWUlqRLYx=MxdSM1>4!v+>;BavezAu31!}pOLpl*P`N5;ni9|wJ`
z^zjx~2_HLryzS#1AOG|5nU8mUtn$O1%!g+^R%X@*et0(ZeIMN5aVcBvV~vm7+lAlq
z;)j?x@2LNgkF`EN_VEc9ijwF$S}dtPJ}mrz*r$HDyWm%(xb%JQ;|qy?>0`amuN$co
zwq|dTiA=uH$IHXQ&%|w#Bo@Be#}*%3xy}?vzhcQNRqi^r`QeU{XH$9Cx8axwPqy#$
zF>6%hJ0D;B;bmo)k8gZ@>xXwx_eieY?EA3r17eggFI)A!G-IzIo43!$4>f$hknu_N
zM;||NefIH}k3&8V`#9=j&oGU9wj(}%5j8gHXQ^UgC-qmh^MLaCFpYSOYqF2ue4Oy{
z2a)%PxJo3|-^HXPqcY*ha^d<@QYjg_QvKV<KP)W(zts1ykN>!+c2du9I#g(<WfW)!
z_JYw`L72oLAZ7*O#h0Oukn^sN)C*8Qz?1+}12hQGFhI`$c|o|V$zjF-2+$}%;{Z*9
z@GD#A1ZXCtX@HNPFAKl26+nBSqIrPx1Kd~?Jx`+C`E$eELdyB`qTH5D<^96|tpeP&
zHM_M${~8u<s=27LkhTFf7HJm-xIhZ0q+JjmRBj)jgAj5K=tTiK2Iv%^bAWCE9vv9z
z5`e3vxl-*aCGZ1f7YE_}c7BMA*gZgx08NK${7l@1!!=s6SAgCDMg|xaAU{Asfc^mn
z1Skxk1n3up_w&^N5vG<ziv#otKx_96P$Y!=;ruSueTQqj)Uqz>l!zubb<yDeo^dS|
z!qcr~0m=gm3^0h6NvUuAQBe_~GT>)#!`lT_0qk$GNH`pW0}KhmYtsnn{!qc;g2Mzq
z7#$fsT)Sa-I881Iz()z3HKPMu8en{Y2>~t(aCv~S0bUxeJvuzxpz>($m>|5IT@i$L
z8V~iZzA^x}H@sglE<m+3gDv4l^Vo}t0j`pYv;cz#M$YbyuMTicfNMq05t$rd5;IN+
zzqFR*4lS;dTo>T_0Pz5c0Mi285a5Xbivvt&mjm1xV0M6;0^BSaZ{?`*@a=HzmH;yX
zoa`Irl;lSX!v_ZeZWo=I0XFT(Vl51_0^Gq78LpAj$L0j#otF6l?xTg{>RiFQ1m_9f
z9pD}z_X=_^LA3<|?ho*=IQ+sO{2b*20r-1?)1Umo01rv@1%3>_lgj1m5&9Jyzas0g
z0FO&9Za6tc$CB!z06cU}{$zlsm=xf7I%j~1Rgq@{EDi9Cw2+-z!U@$eTs>IkGLCEz
z-me(lB$s))QQ`fZ7XrK(;I#m+2jMQ4@|Oa<9N?88eCF~hd%a)b`eSvfrdQCJ-;hyQ
zA^4^sKWxZ@_c7tRActcYJu^Tuzy|?V2S~Br04|qz8f~R&1>wUNTX;GMkM2{*@*TEZ
z-e~Z-_|tU#qHhJ@6y{9{8Y&ZDWx$tJRlXBJi@hD-odE9!SjDNw3C^V98r_@g8)pZX
zeSRj9Q5L?2y$JASfXx9uq7$<A0H1N)2=GY|?wWWx;4D}d;L`x(D)I2B2y0=D)A~g}
z5AcO_YD0kabTHW%hsWUeE8JFXl%!39XFu+@CBW7I--u*efUg4V2(Xh*9)x#k_<NSK
zwRUm1SNxjJFe<Vu0Kde@z#2J5B;Rsy1MCU#U4ZWc@Z*6EM}%JyY%jQ1BwX<*|ACDU
zaDeMffWHF#9pJ|RKLz+Dz^?%g(f&}|=an7~z<=**+cxA!xKQVn{><hz45LQ_@PBsr
zuUjXC91}bq;5Q*mT01Z6WDx#$Bz1ld@JA5-MHj=LLHMUar#M-P!lZu!{2QQo2Ipt+
zANzYoF*X&}&){@`GeP(r-C7yc>RFnVL8Fa@wKKSIV<AbM46-xm)}yp;2K6$ydQ&0!
zb&bmTX<QPP&>#b1L%|&86+%g4Ax$!9D&!o&W;Lnj3OO%>f)N^(TV%raw9Ftk6Ml4e
z&KHHPGI(%`+B$;+MddACY*@Idkfe=7hl~g}KW#JNEv5?u+X=SMphG5nA)Ox`A~N-&
z4EWC!d_Apm23;~Z{1%S9g{~P~oWa*Cv1=u|Wzao?r7N*)C3<AgGlKyc{L(CIMyCRP
z;(%`z<z>(-gWehBXE1ey#!!#}U#&gM3q`01su@ITbovPCD_E34v5*qMeuB|Vc&fit
zcz?l3&xU1|Wl)|$MFy1_oXFs022~jh%pjgYB7;F049?*83}$99B!i*sbp{hN7?#0v
z&D4?XyO7}-j1WTMB|;{hTS7iMgUcj(X-(?r$6H;V!I%uL5XqH-V>5X3Z~^s+<3v&|
zI6i|r@6D&2sAX_f1~+DK6I~*MYcjYlgX=T6HiJpDc?RPS<}pmpfMM(91>_%9t5Zcz
za#k`;l5WUAA74s^>5_W)mQeZT3~tHbR>{uj3`yE>X+HV!L_SNnErXWhRYqrJa7PA@
zWbi1Pm%;1|?#p0726HmN>HK>H=VowM*v{VbBzni#y5x6fFjolG?v>Q}k~(W_-TNi_
zpdd9DX7E4_XDTHRW$>^_&X(|429Ia(Vg@f|@L}EjMH!s>w)e9cJdwfT44z~M7w0dL
zq^E>4`m~T|M9ApTv2}?{Ggy|va>>pTo~PM`Gj+!YWiQmosrhmSuSnh%g0E)qx)9d>
z8p+uIL(_FYIZ?e|SbCF=z@;}K*=)%+SlB{YP<pQ!dhb<`E{GJRHv#EVrNbtfBr}sq
zvM8uX{Q=Siks^Xr0fGO`$A8ax=broS`(FRvx7nFwCJ)ILQMSI<JLh2|6t}ToQJ_b&
zi(Q%6orz<aIG%~`GqEQVMkf53*vk+9nQ-z{mW$h;i8~W)hXqLv2sxOEL)l8rskZ&r
zm?M(SlqytQnQ#kN1-*ivOuRSnNtTUknb5O28}D{L+RQ{&CP<h9nFwa{5EtiQ!T0)6
zsq%vq{V4dr8uL>oe$K@8Ox(!CFPS(&8~V?Y0#7R1f6c_Z$e7caIGKr4EL~8RStgP*
znK+w?bD8+MRanW<B@gj`Vt-!nN&dzcGx1v{E@fhTfqIuSafOHXNCEPznYc#xdz7EN
z`K-poCTANGf6v6tOx$I_$;2&&tW5lRI`+>@+!jK<tZwe5b#s$2-4T%r`Tb1%or#B;
z_$ym{kcr>l#EiHRwtSR{$Js6XBjkM}totkz&w2cvXzRoa`bj42PQ*F!G83;DlbtB+
z#OqA_$6)S69w!=DV%}sT!im9;ZRBq`)6B4#LyB?=wtbYJO0H}hW@(&PviSw`IkBvE
zEX4wnB`GMR`=k6tocO?r8cx)7qNo$aocPd*vQ89tqJ$Hro#E}^@^WiRI>T5>FnwtX
z^)gaQu|@Zka>6NAaH4!RhZ8p!l%dE}(TPggdSxf72(KzwO|W`)>Hhg;YB}+d6E-Iw
z8I9Tu{!aAi*vKk4Z+U`6$cxA66qzD9)Y9?YRx~D$mZBIzR-_W^#QUOnCm!By(7=fl
zClZ`UbRx-#>M3>x$@)U-3f6NX*%^+XEE@YbmSo9SWmBC<bMjvX%<C4P?nFZ&O`T{Y
zgkpvhjfFQ6oVg^OBGZqf3N;huV?mzl|K7wjccO(8Ek$YV42MTrwsK<8Z5w&N%mT!A
zPPBJotP|s$=-@<0Cln`oI?>4)4qRQF=qjYMGaSMEo%3{aqPr+PxYwEC^ggyY#Nd5M
z>E%RkCk8q(h%3X*Jsth1v3-COeTDZEq}X4`>mvnT9Vx)<U?+w+G17@qP7HNon3N88
z@&i%<R;K|8jYl|9AQbI-+I6%O@AWbCWU*nEHshU`;KWiV{)x4J>cm7RzHnlW6O)|y
z%!z4EOqczdEI3tgiW50X$8>uV-dXPE4B6<JPJAw2L6JT%ODty#GE4WMGkod9TqnMA
z;%m|83C<T}JFK#Ri@!X9Ei4pqu^_XHgs?}NEpcLgM5A0!)0gp7c28L@xI&Oq7~8YZ
zYA3#NVv7@7o#7t~tZ`y$OXXW9);hzF&s`^YB`ukJy%R<9)Y~AqQE-#sW<fs4f~9%+
z<}W9Ha^hzvwmGrgi5*gU$ce*F>~vz6WOqBUk5hOW{k>%O2(tQKA)OvalkXRPz=?xG
zHnxnT$aKUBw-c%pnW8%dU4kq<bl2kHBJT`8=)f<c*9l*Cspf<(+z_M<tC&3CXKew&
zpdhm$Az6Y)1%D9yQSg{E{F1@r!ueR9U!38G68!4KNheMS=K~?B@DueZCr&$Y#>sbK
z$FFV~epl&P#-(WyBuwWRKc`0g&x!L+TyP?Pwobz8msm>AcjB@WSESjiPCTEJ{%&}~
zYffBu;)WByJMotj4>%I8XLJG|19HcSTTaAAC0whL{0BdF#>d?j{8RAB%DB7qir6@&
zdrsUJ&KJ`&+a)gUZzrBQ@xzMn1CSr`2+*Zt6aHark4$(>pGk;&LUBSvB{G5d%!!X9
z6P^o_JdBNd$phuY9T)Dp@Y;$0oZwTk|8U`r6K^?w7fQRZVoLlwCrSz-&*4H&7x<K(
z2tkruBrfEUY+e@%3CSmzU$B5+K|$K{X&8lt7ZLnGu&7`$7ly~h(Wba$OSr)2<S<KL
zW!Gg~_|SztF6?!otPAB_=;lIq7s|T;7gAkFbD@F@6<vsQ!RA6G7b?3@+l4wVRB@rI
z3pHG*=|WtKM%7&CaV*YksqAa1RCj^M?8E2Xn$2lg%Y}0-m36lof8+v@y2S;n*pHdh
zkah31RA`o`l@jGbv<vYrB)AacLaYmRHqODc3b*Dx7Dt<Y)&zU2uss`3bRo%wdM+fp
z(4>`8*9D4wnm1y1B=ue31>sSxlm^m5w^mAu3(U@Hr4Z9yXy`&~7uvYc$c4r(G<Tr|
z+mS{xTxcp}CHoS>rhaXueC&d!mGX%oM?&6GN;#fZG9ylhT~BJ>sI3d_T<GXRr|jzO
zUFaa3^JQH=Kj&d9rLzlNT<9tz%#%Nk)8vnciLaYC>fwUJg)d#0>w@A!PZ!3yFy4h;
zF7$R`pbLXs=;K0P7y7x-Uly5zWbdrbL^43;o1=BOyTL9DabYAC`havdjK0CT)&wrs
z2yT5Vh1<beY=nHY3#X68jd6ja<+FCFk9CEA#mtt=v{oj#@Tm)vU6{fdaZ_BF=)xoy
z_-IO6ekT3WlIuLxg=sE);ldmjrn@l1g_*Jl>^I!koQCY3`}?^Iv$8jOwir<4M(4WR
zi0zQib74OH$AxcQSm44}E-dE>a^Y(i7P_#+g{54sa}jk?5*E3zn0*O<j|<O5j5!y<
zTLa7Jx~-KZ4H8zmu*!usE_msUsR^rvd?SAQTZ06OJC4Pzb>WAUge@uI?0OeAxUj{A
ztzx;+g-tvltrfP(9-lTy*i08X7jZQu;X4<$xv;~9oi1#b7T7!Qp@bJxnqqdB3%fby
z24VmCUPxyd)jk*YbJ<-u<H7;y$Z)~$!a)}fxp3HpBQB`)Jt@j`!RdmFo7h_67~DLq
zDG7lFVM63A*pb%-p9>miosz)rbg9@wR%S+Ph4Wh7S}|St*@a(N%Y~o|R6;KN=)y4<
zvLt(yvtZY)6&5j_6+G_3Pg43mOPvZ`y0<U=gbTmYMSbZf#V1b*=NC<RMtU5JJ4;c9
z!7BfA;k*kMCCkBF;PRG^XI$d4Gy9thmt45)LMT4&iVIhHltic7ToVtu<-&C#f45d{
z2>IQGn?mTQ+*VrB18=*+*J}P0B#E1m!1q$|uO5H2OY)Zs59pk3eCfvDtm{HEH$HY_
z3||e&_~S;LJN&2Z9~T~Tf-XFD;h76X-1xwa=PtZ(A%`0|nVj+eGI-XAf6aLAjDP9E
zye0{+cp~Id;eY%SAf;~w-*JU&gl}Q+%Ma7qCPcWA%Z>bQ6mW;HGv{`L5822oJdYc>
z+l0Srl8-&MP?$EgPbla{*)~dHces&4(lsv>&#T#u_m^ALj4$d&F*mBaQNxYmZj_+0
z8|B<6$%(MFjD#|7M70UO4To3WO1s0iGr|uEaf9C);^RJuypC7ijY@7*cH>l&1h`Q_
zNJV$}VJy6!f4_Y~6*sEN2zjx6%iD&$3d&m5+)&zuNliCuxnXr9(v6SYsO=8lNV0Gw
zf5h>^GOy{?k$!pAop%;kWaE(Bh{>MIq?%25n<?5IzTC|l$Gl=0O9N;43NT+%8SlpR
zoN<laNZ@$f;H9c0!9ME>@YPXu-5}O;BUwm&K`IS|q_~lqt)vM_ccUTKM_xPCh%=QJ
zS~YQl@6O0@qp2HO`FL`srWNBqVHG!qyD`FzspaEaxY17BgTHiZ$qgzO-^z{FLfQyY
zY3qhNCJ#w_H#)e{(Tz@SIJi)5batbQ8(rP#=EhQM`0WE%<0AOl0+Q}-^x$AT`S_Xx
zW|^k=qI<g0%Z&kU40NNn8}DuUyTiZq@8d>acla#^O#R$gYma$frGPzRkm!Tm7~%$7
zn>ecMS#JThcJ9cBL)|!cGG>?<Jctc{;^OOuN4mo|L`JzW+8zF3`xrOIxiMb&Snl}Y
zcs@vWf*YT@G1HCDsk<>rN@uvi2SR@4#uPeFzPNpd<0repC%KU@JJpS8qE8oO%M>S`
z4?p;nILnRMqR+1px1@3W7t-Ln^KnCO$IW$P9(TbF-HrKfEO29;8{fL|l^b8vuiRMS
zM!n>?h3@bV{}&5i<PJY+lOmNRqAzvB`?GzS8+?%*w|FI;CpM1P0N1#&O89CwzHx^i
zoj2x}@T1Y+m#*ciu87NRkBiM{wB8L5kNlkU4Q_07V-pXQYRh!PDP*(Y7QwA<d?$nk
z+uYdh#tt`jin32|S9a-cH@+9XCtKMo<l(RR_X{~7crd&4kQ;}EA7P9d7|-_k6i}ke
z4K>@wE#$_Vy2~2oW)a8lm09=%huh=$F}41-XoEq<4U++3cET|?j=K?{XMPvW6ciE?
z%yQ$XkRJqp6r{hMH)DTthaa(0N=0cEKfCdZ8z<cO)s07P{Nu(+MhrJ@xbeFir`<T?
z#{b+n@5Whf!G)NbhoaYCu#=qQeie;r`c?b|H!kwXRExb#OIu8@leXWuvxlNDxsll+
zmg(XW+n&j`D{fqMgM{fCz3X7~b;<VVfSYdIa^pU?+l@b1<i;I0?s8z0ZMCM@{$zMh
zO*ywL=2?j*?ERh_{rkogUut_;q6kN_F<;aJ`b?JXp^V{g!C>>)Hs7S=_$>A@15uB-
zmu|dr<B9O6Zakwixbeb`e?^IN+u9e6+4nX!|BKiiTN~5<wVSWqK>-y7RlITItsC#$
z$f07q-(Dlj#yNIr7&F-ylT$^6id-r>wTs~#bF1O$H#O~fRpe2_3*u`LOU$Q&Vt&C7
z4u=g2sVGbX6-8APA#SzxE}dsxZM)^G_$hxhD5j#giV`XswNY}PvK<~6OKd&a#%xIy
zL)s`LWmJ5qB36Z6MOhW)RBS6AW#dSi$Cp=8MMYH=P?1q9z5@HLoKR6kB^8y0^Nq3l
zuSYYHR8z5Yax7DA71gtO4HY%Bc`X$mW%FmP;%Qk&g+&x=wjQbCebI=3JxWEi^c$n{
zRX9<1YsP<cDyG{>dz^}foRNwHN8;jDB&bMKk))!oiUulDRMb=P<?GmF>WAY<zDy~2
z%^6o;MS+v{ttaiNDsrB(r>p#?M;u9-WZ5i>d?)RVRWwo2OGR&X%{i)QqoS>fW-2~b
zL7SG+?<dp`$F)$=T(TSqi%uL0BU3A}Y^{RL7SD`pr=q=z&MLa7XtlLr2NfM($97V2
z`d52L6`8MN$DXuT6U(lwqN0Zihl=hh{yh@+gS5;x$rTknrB?KB=~P&Y1HO78u8)eo
zDu$~Vp`xFP{wfA@b5#tGK@OB*u&+7C<2ar{vJR{}lv})?Hx}c#N+iQ%%p@G!NEPE`
zkmRFOj8-v5vf)luyt<gqL_S_bj)7(qRZL<K&`?IhXDTMsi#*uw!4wr!=~Nz+_h6ce
z%jX-tQ<1}i>B46S&J_Gy#Vi%GReYhsR1r`yhx@2vyNVqu=Bk*d;#(E#Rm@khK*eem
z->CSCS+`>)*S3Gs*R*e=EEHTMxL9zB;8MY5g3AS02!6Q0!CK{yI##J5F52Z-qvF<j
zhuJcHQyXP19n#}iC)m0|6!``f8&zypu|<Wujj~C_ix-Y|N9`xtD7V@u4+<n_%yVp2
zLFGFxf{LMql39_7WT%Q<Dx4}@Dt4>*Ud165hgIy)m;7HFrAS+4kBYr2s<l<d&Q0G(
zT?Gl#0Tl;@H{F?!*?Mi2Rr?)BRII2Fby{^~GJ1UPAaScuRcI=76&>0t9u+>iLEdDq
z;FMtrH@YT2T_5GF+Hgo)<ujlCKbON$;pcv}RhSa;DM1w>6~C#tq#{ejQ5C<aIHBSP
z6+f!@i9ue)F%>J@D$VjG?`f;#NJ&1f@*Qvvk}vZl>ur@Wnxjoc<yRFaRh*)`s#v@}
z>hu9e<-Ey<zH^*WajvbBQ+IGd&XP0Gsd&;>xv1g~B{@$!<vb%^JLQ6k3hfjUCYD}S
zaYe=NDsHN{s^Xf8>nd(A+#PiMv%_I;r*IP+w^LSacJywi%x|aMVrwcMvt<>xRcvaf
z+~4B(la6#S-0vL~cU62Ak$g|Z10nYX{}QBrrd}fPZ^=Gn@X6Ny5#nm6^s5jRY^OZs
zAir`vQ}LWWpkik3<o^W!6?`f9N{~gb*{L;-gz1fnx1v*IHm4_iE|`jX5FtEQwvyX}
zJlQ<22fJ3=@_CS7NC81A1wAN~%?k@D;^CX1Z664K`dw@>X`y&_J0*ma6fEUI>1@4>
z2OkPAE4bmV<^8DOL0=F0dH6vT6+NirL1hopJ!mLqRXn&>C$@$MRXyNU$7+Jr1<kFw
zlb%?<>K9wngIXSZ<Uwr@%9Kow_aMQ8Iv!X&uzC>bL97R>i>ENzJc!BWQ9_~x*K|o|
z>4_6D_UzI)A-O#<iP=g6AxVODJ*X!n*@OBXe156%`}VbKaVZ`Y-O(sDyH=V9gFA$~
ze%3a=kq7NPXxSmEF{imXx`|+hU{k?nf*%Xg;1ds;3vVIVQm~a^Yr!^xv~24^JK^cO
zqnYg>yrW<z!OntR1iK2-teXejh4&D22r7a-1$zn7vbP6)gkNZ<Fx%gQ0Umte!5j|;
zdN9a?d4HCe%9(n?pPH_APMhe#5D$iWFwDcpdt!nIpL#IDgOMKa)$K<LG#KSUT=N)`
z(H;<YZ;BfugnX<A<2)Ge!QEM51HPz>I4OSvB2!>X{3H)Pqd}#p$&CLV9RH~<`M(9z
zdw<%Je3}Q%CfcTZFvEkH+!_yNOB%Mu!HC2(i=$fOc-Sr+ph)=f@=I=(2j6%wmlN?|
zz6T3DSmD7+558hwr)`S_zZP65=y+i(yg8CZi#=FE;~~*Y1(yjf7yP|+%#uU4RUUl#
zGPcHr{6wZtC&s+6HD1Fx)=y~Lzx!HG_>T5E55Dzay>MnXdBXP=H+Zm7lxlz4C^BvK
zU`w{mRu8@tKCpebXom+oJ;>!lZXb4eu$#;4MZ6c^b4NTl=fVFx*y};Hxe*6EILPkS
z+xB^o`<`XL;MLJZxvhs}iwzGBb1yu|^zi+OVMo<@-aT-8;MvxgSye=@2TLRD%zF68
zcUU81Mr=ZXD4z$K=qx($OXJr?qG;gv!1N&CLC}LAJowRruG8W|9%OlNlx==w&)HrX
zT+vSP-mmd3pQIlX@q`DHp2br?F4><v_*uv=g3dMkDnk6P9-Q>x6r)GASf;ZcoECmY
z@P0M>d!1dJ_h56^d>qUz4=%{~FM9ABJ+`9#k_T5jxXQ6jjk_#kW36i*EF4*I{>XyY
zr91X@LkOGtUC2#Z-VTrU4-am8@TUiNJb3NFfAm`q?s@Q+2M@R@#p0fJXvBW+Gt#z*
zJD)%HVaG;;u0;PWV|XYA)2Amq^57qSXqleC^w@(Z!k-F0%hsQJ@Iv^%*~&{HuXq5j
zM6==>58irE){Ampj6W9r&V$5b(I0xln8S;lUPO42ONxqkvF_hSxrNg*kC42A`2_O|
z77#4xMIj-yEbK*v_6iBBe;|z%^`e*%D#g7hA-tquscgNpkTPBrAKHj!98afX(dE5>
z7gjGK*`^mS$Hr3sNJd*xu##Y9!75%<6;e&Gx?l}K)~e}6t!zHKWWkMBqHB9m#|sjR
zAZ^Imh0P0g9V6XE2}X;;qF5ocv<q2XKR$tNdhtIm&U=yMMO`ntd;i~y>UqQGqKg;F
zUep)fK(Mo5iWjLu(gbOl?nOf{8hQCE?3l(Pwh-RLiwq&un+j>>#m7QE$<~_-NoudO
zl!~pg+idMc8{uueXy-+H;T^L}I|ymrUg?yr3}_z?-E}A0h+ReOCfKA_43!>UIJ{82
z=;=i-FLrpb(~I6-^zmYz7xTU7>qS2=zVzbc8C!oZ26!>qiz!|>E5r<><-YXMUJUXg
z&^P9c5j)t6A;O0W4ijY2a3LeS7@4h%;*x4{EE*$?u${49j1xXya6-2JsTUK4Ps&z4
z^J4C68>>v^+WuibS~})du^5tRUQ8EdhTu%W&jndJ%Zu5<zsOeRaB3kti#WBpUQAt;
zK(fHgFA2we$KC(I_LUc3doe6`%t9{~d$C0LBEfWL%!)g4OTAdbrF#;$%nN3h3$74c
z`JUg2Tjj-S;ooE{f1bCm_2Tx{_;rHc3a%HVxPh+g#U`$gC|k1i-5ugtx|O{P*(M|0
zPDfgnz@d85<G7o<yf`JByPN*GKl*zw_IR<^i+x`F=!Io<LWu!!`@L{^;pUkg5O=_f
zgF+4o9u}m2#EVSf&TQrMrWn-=57%L8tgmmZ*BgFTWWbBY>l*rmYl0MYFAU-SY{g{!
z>7Br$pxB25Susn<Q7?YTRwi7?f6R-AixW81<6itEWByt27eVSLy!ci4$!sNW*8-=x
zO1I+Ac(J{F1E#ZHoD=@Pw3PO_V=j1c(TfLO{O!epYH=0wSbpOojJI9#;<6WSb6T!=
zam|bC!mo1tb@EbVy5YrLj%QTT?_S*W;){!QZm}aF<bQbaSMhQre~NNPuy=tRREFiY
z-1Fjo*i|fl36jh%kmI2jkGxPTT6k&nA1~Hltn<{1XI?xO{zR}{t-REqd+~yi%8OU5
za<KWoj6(fv$-NugZQopb)B3Ni8ACT@v@c?N?Ztmyyy3{bc*kh(Lxc}Gd|(mnzg`zM
z)4$D_-nK>2VDoo1Y{Wc1<n<xb2d5ADe8}%Zf)9y46!4*-4;6hlQZc5G4~2braV~m5
znW!Q@WVN(^;KQENk;{HAM_yETF~Q=3B?L<f(yWvZrG?k}E47RdANoL2R<N94c|izP
z5TrruxyVXBRQ92Y4_BYqIE-i?stRYenh%vW+N%3dLkM|IA+-cQ@}ahnI)WBKs~{~S
zh1dk61mCwG<HH{fVq$%;%d9t8?QuTD3%8b!;q;SysO!UFDn8WnVdJ)#IX-;pL$VL`
zeQ4lAiVq!p=;%YL4{1KM@}bM0(Jjx~(tXJAp{Wl8K1^unLn9&NjfFI!S)~MK|J@PW
z%!lSaOuiWNu@B6CBKYLD*u|Q?g%6Vo+f%aQTKdo|*4{BWX8H+RYaiNhS$5jm`p}MB
zc_HThHCuaHzOdbI8b9{$m`*-)_Tf_>CbAbFy81B6htWQCV@KXN#fP3kx(oL3!6AeJ
zWWZTl;XrgRANu;x&&RuL=;K4oI$QOH5vOX!9orQb?TYKq@%u2)hesvq@d91zr?%v>
z33Y145AuOHSa66BLxoToCS<ta2p>iYDb+MwWsDEyXW5F5jT!I5SbE?}+sEI<jq_pE
z#h9U6q9^#kqF=7r<_}Do<ilq^%%=T5+vGa-$v(c08B=|jzafrIP4i*84;=sJ+{a6{
zvYX;&aEW%s%@ky7<Sd;fHr$;rq-FLsv1$BVALjY6)Q4qU%%k@Cf(w0E;KNt!qP_C9
z4@=rBEMj7Ikq?Wh_^_qDay!2gY_E{8Xt@t7d|2<p1|L@Xz^ehPefUPmD#7#Z6^d(o
zSnI=(2jR;Fys|-D=fk&RFzreBYR^U=Hu<pMhXX!r_Tis;$y<EbDhA}=`LK=0%7?w8
zZ1>@NAD^HeZf%DTJ4GblC1ke`gCfFRyf+}>#hiUU+-a|{DdIsN4oMd*%F!V#az;e{
zf7GyKLXV5_b!W%Ad~o}4&xiXys9ZoFj{5L}4_;q5e%`rf^ZVfQLG$rercL+35JG;m
zZhRfSO~Y-gTq@S|A;5E8DmExc5)zUn_(}WNAANY9-}>WS%XJ@)`EZ;Oql5C359fUN
zpASF#@QWxX1W)<!tB{j|v}{^2=5#hc<HK3uW7o#Ai0Ql!m$FMQ2)XFPZ`sPjXLV_F
zS+Z9IuL@ohT-iUCq4<Umzx!~L`^)(6!=FO_5WM}K7qGC1>5dO~McMw1o!P&9c)&oa
zp@@dReR#;N921{os^bxtoq<<F0S%9Rc*1|*H006n)Q4w2y!PS0u=_Q9?!(`O;_ltI
zk-re-Umsoyc_l?Gy-~*ghNoj=N_tw{J0ISjNqOr7IY|x;OUl}FYKYK~O9R{asdfzY
zmdkBF)Je&!frKrv@qAji%7SIKq-C~(8fsliWGW;?AKThJH-lLY`vVOnH7t4(!@rD0
zwea7~Vj7BT;XjMyB{an3$wi*j)ly0WabUF^A8IH|8xti=l+#e2gE5fH05nw4z&00Y
zsHmZmhH8?ntf7jAsvO(9@}G9A7oQZBV@ULXDUB04gg?Yq*HA<Ht;s5zqglO{hL1GV
z)=)=7TMg|rSTtBQ)Ys5JL!<_q2D`==-XTguG)Jf*mX;lq0Uea-9h7Yy!dC;_ha4#z
zqZ}SbyoLk~^)w`F@ODu6u=GSNe3p|mT<)OM)$qK7!bHwmzioFk+vq6SQAyE|s^Mb|
zpJ+(qN@{4LA%oYed5)-bR2pfh*->#1z=S->jkPeg@2Cv!sFaUTnrfJzH@TS>zJ$p1
zWk;pCh87yyNcEP|JKJfcVSPu1S6n;gtJhisabG2++WM%?3H91*=)g8Le5#=%i!}7p
z&|gDm4P7*J)6ku+wa?L2!(Sbh9Gw(*N9ANkrH6*0d6i3flY47$Xm~dWiXbl=_SDcz
z3tvBEqTWYCU+#M+rJs^)6&#>ppoZ}rdH38L{2&b@wD5!F2Wyxek<2ti$WRT#gbdHt
zyAKbSj+E>u!O<GVWS5Q=GET5#<EH7I!izjn!z2yUHO%0GXqc>FiiW8getYWZ+DREM
zHZ+^2;czGAcqe6UCuMCXWu}JDH7wBZ6&Im@(kxlb`P|do$+PLMLdfR``BHGMhIvA?
zRgo;Z)=7EQN%@+-G&eo6b9f{R>BgNEwnn7mEf#lOqG73qWx|(hSgT>3@D+k91y>2K
z7W_tVjmDo+#<G!bxvg|s9qn~&(6EsXrs0K#O&b3>!cQ80*04pxRt<+ZK@Hz&*rs7G
z9r$eV?ev*fmYo`Qkuba@Sos`&WliL64M%RKe6L{-SD>2p^XgV!?Xmh2f3IzAT+O;q
z!+s41r0zit&$?LKd=nX;$GWbo^@HBlBN{R_=o$<SP7N+Dhz6eqw}ytD6;*>rL)Pe~
zg-2SCw6zX>X=#vRMG5PGLs6QB2Z1OKpx97r<#?N4gQ?-Dh95KpGz2w-SW&~Bo{<;$
zM%J3v#5b09m95@Ste(%Tl{Q8GsNrf=>oE<-S+Rz7R&J}27@iI-N948sqTz&w8ybGs
z@T-QC8ZKzKsNs}`(;CidIH%!^R2)$=pM6%lM?)jK#oGR-;k<?`n<B@pN__Ih(&Rsj
z`#($f|17_0xI~>ja!ChSKbcnavWA?4n*BJ!8vUQ8#z^Zm4c9r}XO^F>wuajx-+f|j
zytm0s4Y#<+8Xju+L&I%`Qw{eu{K-jaxLeG6m*=jKl{?bxu_YppHEOzbU5?aI8zTSW
z%4pcx#yY8qb=t1P+{LU7Mpz$d_=k~S!xL`$s>DjKEQc#wdv1(mJ5TBDPb|;q_D?PC
z^IJ>gx8BNQ{a3?FMmZgIbiC5=ntxDqe4yh$4R09Rb>!CZmgkq=r6YZqwRaQi!bIz_
zw$?fpYfc>zI&O}!eqPzSbF6hs|8{wF<ke9?M?oFs^H}rg$gg8|tnJ(jON|GXw&kr?
z2S;Y+u@=%%SjY03)(`Spn{G^OIx4dMKbE38is>k$<3k<Ab(GLiTE|~6EKDVZl+rP_
zpLJax>yK5frHm-*M-D`l)lp7IMIDuN)EsOruLC+N=rEsIJ}+;bR@2(Gmi6(zs9tuf
zS;ksfM-?5BZLDkChO<>Uw(eG@YC5V5uOV1duvT{IM>+<7)Q)Br9abGFI#St)4x5fd
z9Z5Q(bVTd0>xk14qvJ%Zl_w%r2OaE1pauPT^dM`z=<GT{N4G&%Z!znfp4O$KBJ1j?
zr(@zPOMTA0xHVZvsan=dB?oznWb27i)&@F8O|&k4Wl7`u>u9FqV;v23G}6&TM+V3C
zx25&A#QPsw8|zpWZ!K5a`oXlKH@jJz>UdGdwthe)59ucyc8?q_b+ppaTt^EX>p!&S
zC~dub&qDjwI()AzZFIDyJ|Hrb8ATr(^V-s-cO<ccj*dEZ>e!{Dla9_hrs$Zeql=EN
zI)>^P#u@48uA`rh{yKQLdgxGe^wi<dp-!|8d7B#j)Y3~wZ@SYxOJA<i*2KEKBfsn&
z*+&PlMGNb4tF2jc>i`|jYSu&Lt%Gz7)WdgYswP=;HL(uXF+|6~0g?3lqg||>dPWZC
z^3or4jMFiaOQd6rbUj+fXH~2vl}MhldV?eXH`;o;y7hUp662-xQ!cfR2|8BBSnpT1
zwy0^HM7Nn~{Y=MX9l5Gl&(;Vp`+%C(6XPNq*0N61F`cVQU)3=~$4nhx>sYAca~-pE
z%;DhaB;5U{mM?U?8E9QO&8kFO_cgTkdS$6FEOM@nc{=9ncvsCjtG%^Dzi?bCH`=;@
z{y!@6D?w%#>2SBRE}_pSSQm3VGprBCTZt7XSeNSfb!B48H0uhEnY+Vau49#s)jHPd
zSjPjH$NG(qH5~t%L<YCc-zGBd?M$!+##-mswMOQ%eygKUdF$v_){Qzg>G)2^HXTb6
ztebUg(Xo|{<hK6Q+segf7#Y2{$&`lHar}Y%ht};ncCb5NBG;dTNpaQR%{A0<TE`h3
zdvxs85zrCTu}{Z-ZnO@Mjsx5#9huxm9o~(Jhjbj)`JFUW84;PrACQl*_KC1I>|<>|
z-pc6Y(y@JClv~H64%U?)wd+1Qa#{zgm)@wuuZQDyT6L?YL)T%@>;AHEcDXxQpSQ9e
zE@fpr$zL;vspCeEa5M<%$kK6K$4@$r>i9v&F?vXg54KORZaS8?eXR9I9ra_arzTp1
zGpxVeDE>2N_sVjD%d6wx&emTzwfmO4rNW{0^VZgrI!^I?eP*3mDI9p~54N7waZbmd
zI_~KBpN{i7uIae0<ARQhIxg$DqT@Fmm&C)54r!)zR&u|xEZ7=3p|g_rrRA#V9Co*)
z@WCJ6xx@`dP93*&{I28nD+|LE@eevxy<E4ce`f9Q!g9NzwPr3W`CT3Nc$_&@9rqaw
zbv)MbM8^XzZz=2FIvxr+QO(M~3y*kIOISa7Q~V#Eiw%)X<+Bo>>UgGy|C&74QLS%e
zF^i46P<?ac=3Lh3($<#@{*3c<R2{Dw{AKaq&|&sADZf6k_?V{SM@7a**?46BZewj<
z&zi$PP6J))TK}0D{yQ?!5t-XS9s~6ZBpb+UAfJI41F;738z^9)vVkfF3L1EI*D~-)
z^v=7MLIw&OC}Q9P10@WUG*FaPhSp<B-BWL2XQh~d8x^`27wosaUMT~m4OB4jYsK!v
zmeea_VC15DFhKsHU|GR(g5?EA_pC>o-JO++Qi~NU8ThfYLQ>U0H3L>79ILAv=zgkx
zO#`(I)DXTTe>#<q419mZR$Gwd=I-b^!cRZ6Squ<YZI6vKU^5V9U}42{rf8DN_V;|?
z=z?|waR%ZIBpB%3DTe=XocP1ePqX(U>|=ICCmP}ZbNR1ak`eyzudab_E{Ffot8buz
zfvtXg=SPZxR0CW5@H~l5GmviJ@?A?eKN=cnWT2`a)%<8|poxJ)1`Zp@FwoS%bOSRC
zG&AtAfxZU%8TiCNbMBXct_E5dXlbC_n)vnxAEATR2HF~EXP}M2YcFZlMrM@UoYu!k
z>sB)Dz}k3rx2;Gzc?Sa>4P31hb?sKsP6j$l3&r0>v7M*Bw%xdH26`DdGA=E1LPie*
ziUG&UjN@k#9Wv&{Gu!kOQs0)uHhXg=*Qdp-YT3uY-4SUuZAtwN3@|X-z!(n0z#s!d
z3=EYjZ5Lz==A>4{*Sg;M8b2qmj2~uTxPcJ{=8Vnw_G02l13xWqnXhlgC?So9WIP#`
zQU15Yu?EH&m}p><f$`kj=Xoa>_*B|FIwE7{i0HaiyC!^*!SOWdSN}5ulMPHUQ2m?u
zJJT|z8rU_r3H50P=09pqPO}{+5@#CtoI7P;je%JPW*b;+V2Ob*I2c+QSYTl6w2Ute
zyqlXb*ML^D1uK5CIAb3FGkwvV*?WC6zB2GNUB$r08R6a+$&g6?Yu#pezogt%x-K=a
z%z%D4Z3UZsk+|GI`74Qkyhyw>CWGJfSZQFDfnqIN(cr`B8LJKKnUq1Y*1$RgJ2`R#
z-_ofJY^L)V*uX6wowkX-+P7}c6)iW?Tk0hxtc`zDG>y2`z;_0A7^t%(*N_@5wi(!N
zpj(N$<aK|p-?dX44y<l;T9L0ac5~O*mw~+oxSQPHB0nW^yJ>KJT-rVZ`wbjm5Lgjk
z{p*Z_JZra8Pi;y2er?#`h=EK4_YB-O;H2jpIK@L`z->S^5HJul;4$DeU>NXoNd4;j
zxO!X!S)AB@85dR*XFK)oBtBZ4JK#+-IjObrho@xBnw7DrdApE-ECa{s00xfo+$ARc
zzyV0z%|kLc(@T>wj#1BBEKhRc{IuxeNl8C5EEqUx;1|XL7Cmmh>0Q*DF=-VNld67P
zd{1Ih{^7;g;~4{I8HEh|F0Gw2aKXSu1OGE{UX)|~!V_HIFXJ}@mv}}DTr-gLHtMp0
zD|G1-$(2WC@F=C%O^o-ZeK0HI(7252Jdz1XRQjDwD?c*rrh(fA{xopQz#j&F9-P5*
z#MAM*vvS8k{RtUmx+ufjwQ5$o#a$lWi1d-~(*82=fRWaZe180G;Gu#447@S$$iP1a
zo*Q^!VBd=P#|EAnc*a=QMR{VNcKxLK^O_7vPMq1Qe!meJEn3z8mmWK#%`3+0sI->`
z*49gE)J19Bveh0}@@r1KZqkJpsc-4b1|s~(<;U<p6aUD_mBWu#dGodZw{=cGxSq2=
z&$z6nJz3Evw;zjF$LH~5&GL*jYvZer&B*UZ0YA$4@u43D{V3!|Q9p|L@%#UBELzjD
zupdSI_`r|1SL<fZFTrITKelzL{?Wz#DB;JP6Un9g*z`eErDnw!E{`wiN9Gq9nYN^p
zu}w?+v3X^Dqm5~0{TMR7HT<aHM>#*r`(c!8F=-edj-TOt7gf=ZN`6%KqlzDIHl%Ui
zpPfpqvpk-B*WJYACGk|M`%%M>w*GKvt?5TCKN9^&@?$~W#E<;2_+b@Z+mAYa<d~R2
zU3(Vw#mlHjKhno$*!{5iaq3QDlpoQ4#0Y0LmeKokBFTb9@$tVV$BA*g9|?X8NJ?Tw
zrtV#ox_;F2qY=ZnACCSR$$q5zv0`>ceLtp-Y2853Jv1Xl$c^C{X?{e0nvw3uPfIgm
zr)M;jY=wRqA3slQ;zu(-a!$?2@T0|sw5Ec6HztvP?8hg5G^fIi^P@GlV_L?n*rwO}
zMYZ%}d>4gtpZ_ju%G!)Je*7=9B*~&8>Fs1q+WXP@bYcfTI{MMck3gfS&Z3a4nUm2)
z_`$ImU4=Bw5#3#C_26{;Q2glW$3j0A`O(Xd-hO=Q$3#E+_|cae=f_Y#`uWjcstghw
z;Kx8A9MTVeBu+_6jQ%Fa;B4j0<RZi9gno?nV~mI+{20lm>Lt?t+Ss&_({haxpDEg^
z-B>>`ztng?&Lo9P$8l{}#&c69`0;X6!~&W1BtJg$W40e(_%Yd!DSpiGW2PT;jH!N1
zlP<Py$;Il^xxB06H~krIis^G{gk+ZNI0+BS_0GBG_%YXyc~bF9Kh}-Tn727%z8_D5
zQ49R|O7xFkM$!Ij;f*hSKt6MP>&1R7;lc4^t>{brSSf_1%Y-Z!Tp@T<ue&O{bhVIg
zxQt74)0k<U9~(scR&af`<%FiiHwxdBt!x%@HAnRL+)4b5!L-efBRpt+Z08<*X4~P%
zKWA(^{n#aBx8Qz1z8AuxJwo>Su}{dHVs?s52PAt?@Q@#eg;39(Xm$GGVj6FI;fLEF
z{_vyn6ONFVW%GLd@cD7YkE?!Ye&~K2^W!+rwI6;zj{5O~A9o|lnmo1<mY`t3k3F62
zb8}m$g#5@7vDl+J6hDuv_oE+Gb6d#!<gzgPlOI3(an6qhxh)qS*7?PcU;Q}g2l)w}
z_lO*<c*>8{ew<}I8Jss?C;J)3uF96I5#dYFO$+3prKND$|M_v=j~(wKF8J}AAD0-`
z9@V)h$kO*V#LJ8co$c)FnjhCWazE~Ic3tgzs^-1HFzClkhL;VgRBkg0T}Zek_=g|)
z$0RZPryqC3zTl8@-b&>^>Se$0$6s7bhMfwQ2Xx(0Ne}&)R3guJ>r?+0F{`Wnk)OBn
z?M$;PmVZp&6aA?l&-{4Kt?X$ZH^%-`!Ln?jz{8xxf9cGAyz=9<AGuBBG4Y=tPnX#4
zT&<JS#2dzE$-ZL%G{ZX6r9CMx?J*<~CUTjeC3$d4^nrI_lGj8569vUMpJ0ALniVop
zSa=aL9NW31OeKm&u+|5n7d26@PGm6?%bG=Ye`_siqLhi=0rUx=w23k%R-5?7#D^xz
z($YjSum77UZz9S>v<Xlgn9ghXRZLVcvAba0%}-(~njls(QQ5?aoR-mV>fCK%Ka&zu
z)daDcV09BUOw=?{%j7lxXr|gGKFa1at0UYZqSeHlPh*%Oh1djHC5Gb(#uPeZOEfWf
zNm{H4yNNgxe4lB&i3ARBq~)8nmh_#Lja?M2i;`sGhh;XVx<V3r#??2`fc7R<aedCm
z^8bYt6W<~x)kK<!bQ29t3^XywL?aW8O>{8P(L@sy877*WXkqdP7iebUV-ug4;X4JV
zyM!+?-|V71>YO~0UkJ~c{BIYfrHNK1TAOIYNsUOL!5Nq1%Y4agO%&>?jC$#)&{b*2
zh1DIrd)VFtanTb;Clj5y7bg0c=whO)iJm5UndoMsJ7?EbahTxE3tr0J)h)S)iD!Eq
zBu;;_!tr!fYHfA&=^7r))UL{^u1a4M{Y>;XF~G!>n~o!0mE&C%TS~I+nd6q2ExYF!
zY+{Is&rQrSG1SB`6BA5)YGSyF5hg~P7-M3jiBTr1b_;*WxmI#=L^q{g31y7Ok=RWc
zYhr0~^2lz=u&0i3tp3z7-bCAO%9}#T6HQDqF_lv@@ke^{SKXA)OdKneoKtg5=6Fny
zFm0pmvm4!%=_YP;Q=WEHW|)}CyH4H1oJF%ud|~2i6AS4BCcZQ=&%}HlqFl*y1#4D_
zDqA<**bw!!M{+`UWdYZ`yE08l{>sG3zZ@gFD~n7lHnH5q3KL7XclnZ+npodmnb%!u
zm{Z}m^q0|T+bD;+hr0`PS8~_J@7<Ld<85E$jILAI{<9@^jfu4;tN}y@u#VnhhVNk^
zfc5nM0#Uq(mtM8;1``|UQ6@HXk4#)LvBktz6G0Op6W^KGW@5jI117ec*ujb>zBjRx
zGs+XbZ@Wu;iMM;26;K{`SN52gy~dHRhjO{7!l~^wvCjkv6DNDn#32($Ok_$e&kv3R
zd6N&DsMteEb0jDAP@E=I`b-bSWx{RZcS|@`u!fVz#JCMnUO^I{2~D`3tr#Z!+1xY{
z5I&}dLgOqGN4Zuee&uO0@uP{KO#EzOM&9IkJ(Sd3$;Y@jJ(S~u{HE?N9A}U4y{d;4
zdni|WC?`#vVl*&uR!081hjQ9PX@?T!P?|ZEb0VHMalyp@O!ROlvmMF?hjNht)8#nj
zP=;=E=njSavWY7u@&=GEfU731F^ZaaYvMY+$izP;9-DZVlKi_g_?JVuY2p_B(8O&M
z59naIlm8SXxhLd~;9V2%zkz>WvVRG_SN<0MP>{7AvHd~ecAl8Xtth;o$nO9=W!LqR
znVy+=p3PsF_*eMLY~>Yu$>#rY`fnYq^3Ft#0CEM8I}na4{ILmtC6P0LhyW@o%Jw@B
zBK0Ii$s-1h6{V}9<PV@g0HqkZ11K0kp#X{oP>f2E<idflYaLOPA^~*Dp?na)_nRG`
zD#~(2IjbmtD@uW$O7Q?n1W=M)6iDVTG8kb<$^`IX0A&Lx7YN@%t<qD8@2RxwsqmI%
z|DH;VLyqzROzs)p?g|0iS=F#&AbcDu304-Y5<q(;wyIz?L1wE5P(yf4!CHbJ3Dy>@
zBWMw%{caSr1rQZLYykEEq664pIFcV`cAj&@@aSEvV=J74_`!M`Z(-j~iH!>&K7fP(
z5(79l(bi5dNwBV9y#SJh)aSecXcIt#08&Ir4WOwIR!kF;F4$18kznHhnh41dq$S_@
z+$?}!o<)Bw$|u5`3$_q!DM*7>Lelp}*DqX-72AqEFTazw51>N;9l1vVI7IK9-F`PA
zT?D%d^0mv|vrBsjx#NmuBT4{0v-Ms=l>AYB1L#Lr31V^({R0>f!1MrS1TZjwK>-X7
zU<l7n=d{el)|Dq>7W7nx29Q3f5pQlz4q(a;jfVv=T*wH)k%FTHM+=S-q~+KE#t9!U
zI6?5!?9zz=Ov>h;30ZN{##&PXm>R$|QJ()DO{LrKwwVEZ9>B%`HU%&%fY|{o4`7Xw
z@<jl10;rP~xs)^d!trGQ^8;8Az}x`l1#qxS%vdueZ<M`$!<erE_&R_kf$-<35ld|g
z17OkD^K85%xF`VP;sB1njV1XyPYi$Y$~Kot%eC&;UlG7c9>9B+Rf6C0a7Ecx2k?z#
z*95S7N8+agBiHh;fN*B5an|)xx*>oc_cY0IB$4R95zDW{Y-UG>eM<ma#a+J(;C=vq
z1+XoE?E&lvU}pg516Z-rzAJ#;0UQnB2OiP@_5`2>pa-xwfPDcR3gB=6r=0fvT$5s!
z0|8vyknsFw!a>PW$)A~eB!EoOy@F0|@jAOZ0GDKGKcKWl748wVRZXSn6W;kvJ#r%e
ze*nP%>ejO`wJ%^Xr8FQ&gM5X;dPoeixcJ}Nnf)<<V*#9@>!w(a2hg>Ir9*zp2_ZiT
z{!Gsgz;-%etZHZJuK}Fos0MV~RmyUTds@iCbXrK;(w4Jy-2nc_!@knKv7{xYaw=yX
zS;}%DfQteA7Qm$d?$UJ|q+Sl-N&q(lxW$R@Nw^xobs^UTsdS!@O1u%k?+k7e!~9;Y
z9)HMc|H-H&<hJ1bLYC6g8*DCO$x$uUw%WdTXTm)hIeU2!z~782K_mq6Fn~u4ut5|K
z;-3H>2k>72ZvuEiPYd8B7i6P7v!vx&051ZlR>;E1J`aFXVB^yZTmB7z?Qfiz`YM3e
z(*CEdQk4U#?B#6$@7T*Yd;TDD1d%g{-l>+nL2U1-L<Es5hy|~DY^`Z2?Ml^qD!GFo
z<_Y3#PlY635M_IIn^n!SxQ3-bFx&`JK_ULCmLfrX5Ja^gss~Xth+;GjqFfNggW;7g
z8APcdqN=Bs2x9if-Kd;RwUiFx!yq_j@-pltH9V0k8|~BLQ_BZ|AgTm0W1YQ1kPmRM
zR}!o!*y~`b&yq^9au9z98<40I>{Wxv9A{^1HG-%aL~JnZz_n-}M061Jf!aaTC}6P!
zVGW|dzSKHFd_1HF{VFnudG*2$FtU(^#3tFOAlha%VD{f?sWCy!FKRjaNh%w(2N5SN
zlk;3829d-y42He2ZV>f?Xc0uqApdbdeYPJ&V57Z35T^=S(t=12A|;4a4zGUdgPzK}
zN<Fxb4TESD#Pi~oj3C~0Ezgx{97K~K^7c}=l{6q}8bq@oU+b1ivocjvkCe8266C|2
z6Pio=obu>q-C70FI*2YDNf2!~_#iq2(J_d2L3lqe*PdOZJLYV%SA5Z9^WKE$Sq(bT
z)3({mO|*9o!f~s?^_>aC{U18I1<{>K5K0g~H?Z^&j2PYxy%c6g>`v$zM6V!jZ?X5A
z)u8zfd+l8bg*Msy1kpE$ehmIWj17iQ4HslU5JQ6)7R10H1_k*wh6aO!ILR|;NhKc=
z#P=P#kqqbhIPIf@;He)G#7O#le#<C9`ZoDLB`ho&BL<8=<AN9;#01%eNrImWPR!ny
z#icCAs-_n7HkcB`)F74wu{4NjK}@GR1u>J`gjh!7d+%a4Pm2AVwK(OyF<;U%Ikk<k
zbAsV}TO?luaXKcJq}h!kROSZxvo+g1!TEyBE(qeQAifS_p(u+57YW85Nuj}aZ|f45
z1+hGctwDSj#EM|}GtA~-__E2$AXWvjI*4zA*cim7AS~@HYl8STi1otP2C+^^N-u>)
zOeag{*dWSBrE<JiTHemZ^i$~^TcpiKBl5B3ZNczY?{?DjdAftx5yYB8`PMsgR5??Y
zxSNX~#GxP#b2aSwR;<gzDtm(1D=oC0XWJLVo*lORf(L>)$Wz=mhD!WA+YuhLAZ`Y6
zD+nj;gZPO~5`;SlH3*YF8H9&k7lbbejjq@${9!V7o?~1uW#L<gPCuy-#SfeYhtx~)
z3ug9GPW4iPL4<<%A&4J?$O?l0-rnn_6zZ)U<<`h|#)cko91G$&7p-^rn^!e@D|LG-
zU3x2Hdn>;LaUzKGL0kypSGrjcXBbj=*#CAM>aCm#hX0w(>aCm(;$m-w<QzjsZ>8tA
zjv=L$|1lW$QOfjDBKs&8X&J=TAg%>*iL+ko;Ak%gk=94)*hjg-o$aI4IO52^!x5S3
z;D4r{_ff6~aU+P|gIL=~Nx$#d*GD1wgJ*=nErc>5{29cZAo7HeH-x)E++*MkAtHqP
zoM|5=v9IzXh`)k(5RPVeNYY1n&ffbdj|86y{u9JwA=IA)@l-f1nPtk|H;m}3{L7*q
z$xJWl#=>7`EB`UVWb?N|-U;Rig{!pes|@I?OzW%U3SrsCsC9jn+#ww7s~qpE<O_xW
zO(+>csSxsq_;^M<8XHy$hH$g5Qb@3{U=hI&1d9q56D%%RLhwOug|)b<kJ)m+uy1@A
zLfH^%hfpVkav_utp;8EyL#W<QK?oH>SgJetFF-~=rJ{_a)HEAwb(6YZeeb9eLe&sP
z_EV|}l2jK`BZQjSN-ZHD339D0(oReWu_0JPhz!9NLR1LRA*|`g_ueXB^i%ka?#c5V
zNBSvLj`vfp_fuZ?Q|uwcg;1ow5-*q_m?)SeSXZ!~V6tF+LC%`BQbR~%r@boJdsRpe
zp<xIgy+iGHXcR)@5F9t5+(eTQGD3Vr2_9WQ(-4|*WqwATpYd@BpU{_%;?7Yt51~Z}
zZ$o$&Ldy_Zg>WT=t0A-wp-l*(5VAsO8$!Dfc80Jkg!Y{H#X8+W=pI4`E^IkV#}GP&
z&{=pFLD#KZ@#QQm>MGfq{goaZ68B<r^!5;x5PH%vLRcOOf6C>j&0Zn&4xvv7eM6WW
z!juqyCx!kYd>X>U5C()WFoa<t3=d&Y2!lfy65=~j>$i!B9+Q@MctRVJp&_Wtllz@a
zBMw@bJR*ccxsoPusI0Owtc(g_wD2*4V+F@$myQo%OsirvW37auiIYP3Ay-oCh@`@f
z`kBQOKMUbOz9cGBLzouA!VnhG&(rHq58?9=W^tj)<(ol_h@L6Pc4mk0MF?|4m?z2{
zPVGtkg2fV9^reiA#^v)S%@1Kg2w#PeSS*nWQ$&s=+I%gw*yG|5me6TK_-%PIORE%1
zWFsV(S0!_7D?(T)Yq&LpRUz0*L~WAn>JYvOVcfo`H6g4E;oA__O19@D8^!e@YzSea
zDEyE>g+D7M@)9U<a|l~P@UM-k+dq5*Xz}<A?$LMjjSf-U=nNk>ptwV}a@Xnb1=VMb
z(sqZ?rM;co{e1{~LfFel<+d?-h3pgDFL;1)AiMOCki#Jy$yPFjI74t{D{gLUHuuo6
zFV%V9vM&TpbY0L0Vc#tqlRpGgct9{H*#6h(w*8f(+|v+#4&fKJKi>8uo$5(+yQz+2
z^takE#|24#;u*OXWBV<Z(`oWFX2m4ii4cAb;baJ>Lb&t2jp=_vP79t9JR8C}A^E<I
zqCqih?0Lyv2;n04E`&=oSQhhmp{@45n9IWXTmmZBLbx8n6S`9fH)LRsL*WaLztiFS
zD>vzuH|jKbne!Ic;YOW5Lb%Oi%a$4Z8S|y|9?$PTb(kXl&H2rXoFspV{y^|=!H0ru
z>QM;)gb;X<v-W59F<Qcm-I4s!#Iq2dhwvhVf9cza*1S_}D-x3n9B#=~dP%)|48NN4
zDumbc)$P&$h44lQ`MljR-=4LT<j6wKEc88!en%0Jg<M&PJBs+D$eo2eStyc)53(@n
zq2*$hee2PbyjkeqC^ny9e!&8Q1qBNU7JkpI1&U^&SQduwkL%I9Veu@K$inq3+{i-7
zER@Q^k}NFELg_4&$wH?rbk4$uSty%@CRu#^5z1wud=`?kP(KUELWL|uWg$8X6*;O0
zF_p5=bfJx&f1q8x%2}wAg{oPoCZaV9)w56|3zn?#FYarK_>o|(>{_f_`~SFl4=5+9
z_kEn+tDq}9^d=iNyUAo1SXe^uy$Q<_u+XbWN2EwqR1g8_z4szjiU{eMB$Js?6jYi8
z5fDT~1^&;xeDXWr^FQaF=REhh@9posGnr&=geQv)N0JJ|+!E$$N^!#~I(dhFO>A!1
zC7Pbdt|U?&qHMjE%n~x(s4LNWZq#=pQ#i|HcC)&@wk$UqxzWUprfxXhXe@>NZq38)
zu%g<ZT921V<!QHb2e_KK(cBFx*H2m34{-5mb1OGmyV1#w&Th1Eqb-{>pif7)`G;BU
z+~^=hwHJ{^{dy^hsmzN__J3b;baA7r8};V&?e0c5H~4)4Ly-;&4Z1C~^$>-r6nnYR
z+l`TKjB+E}jXqNBP&abi=<CKHHwL@m60yG<mH$ZYCwy{h9zIrj!;P;7xJcflFG+Q8
zvpq|!0|ZG13ZVhl0;5-U_8sB|r;iOD=EiU-YD5CJZOEcN+KqSInB&G=H^#W}t{c<c
znBm4)H^#X!-i`O%=E`Cr<P)TP=3<ygkCo_T!6}KVS?^Rg-glcnL!IV^v8pAN7pXJd
z_`nSgU35g|ELOBLh2=1nIGeR!OTPUi_dGY|yYZ<T3*Gq8jX$@hE^uRcQYy22Bvo)!
z89sL7lmAoio83*PqE1}w#^-K)<HkAm)QzQXY;j|&8_V4I!i_a<tYv|2tZ;+&E8V#H
zFnMzKR0ejF1HMZ1)zWKD**Z7YyRp%YO>Rv2Bf0K-&1ts54SrDC(q7>hZgzvnqSz58
zZF6J08;9KZ(v2O`UncF9GIz2WS(aUH>~>?1G@hU3>DV;bCzHYw_RFLn;OL0~+eY!Q
z8%H?xZk%-Es5I=D;I)jT7rj32#t9~kGaK*%Stj`@Dde;pXWaN&_*rQQ%j9fwF3!8*
zb|db_1vflyc-;uQ5pl!khTn~#8zE_!*Pa?k5Z1`3Dp6KJ&eEc8Xl}&Z&_y5rm)WUB
z*OED6hV+P*qc5A{MK><F@tqr2+^F+s?yh(8ZhD&gvK!yJ!6~L0@v3x|{0FZ0_nLn%
zuFfd4v%u?a+;F3?2Sq&icyn6u+P0f++~SCxwEpDAZ8v^%oBGe(;>Os1;g&VW{wvqo
zRol8R?RVVx-Hm_T_*YWzy79n`hr;i<abL(Eg3SBzZ?-?(c;v<tDn*sQ+<5H9&(G7C
zv~7p=Zw}otJIRY^@)#S*e{MW=Baa7pJ$UBEb1CZXhqheO)ZBvpEop2X!&izep9lFp
zDCj|-AJbm>+|H)%SYR#SLE9#FmPWCV2f@8|lA<0I^WbF<UhyC@z*XFXmpo<%O9++}
zEG2lig}t-~<^QqX&7DbuG9s4s;MLE}GLuL=NcLdtHETJVdEgyytKtDXsNg|GX(2mK
z%b97#*~m&Ba{%j&w^n93MHP~&R6MBeK@AUTdGMMCH6<6b%pPO=eSnKY#0J-9%l|dU
zih*4tT0E%ZL5c@f4^lm#Wu>C2)YCk$d0>}zp8YLta2Yd;;sNU-X?oC_;Xz#wI(pEF
zmYb~gJZSDg3lHjhkm*4K4;p%q<v}A3<A?@xb6ZOkv647FAYou?@SFOLCEA4d^Y684
zD%ebr1|P4ow)B`kWNOWhtg^Ne{AzO}Ds4n>>wz|?WjhZhFKpS~gAPK@3~tFN?^1Tp
zv3B;Li-+&4qMHYOJ#cw&Zg_fk!Pf<QaF#FIdwTHKJ}Z+LdWqg!Fk7&X2RTC4El;6A
zKM#6e%YMUyH$CXjuDx%sG{Q!O;oC)yCiAQ$13Vb$L6pt&V2}rcJ@9)F@L-4sLp|8x
zv!C~1m<Pi>_}YWB9*po{qz8*V_}qh09*p*2x(72nc*lb=9*p;3f(P%?W?|A;55{>=
zAT8ge+~%v4weMxNE@vr|-!jpIWp|RNc<>&3`bXv@4u!}3)}~pLw7c`Nr?Q-D$qVjg
zPV-<_{l4#eP;{W{;B<x80^U5&^xy*zKJ?%t4`z8V+k-hC%%vxnvt;JCJf5j+AEnIm
zphp*FeN{`>?w0vg>d*Ip$eZT{oD>f-RwaGr!6zOJ7@~YCmb^dT-!acZ4;Fc_bVwR&
z;ReO?PIK)@Wy_aPWJ^5Q&1QS>g$FA=SmnWTHhx0V3OfJ7r2C;v8uNz@V}H+B&AxEl
zJlH9Puk~QN2ls!=Tt~+{sH_*<Ah=O*li+5-ErMGGw+U7s=whx7Z<qgIwDM}J2J95W
zl>C-G9_;mCzXu0AU?cZ=aARQ-CM9urjaHU}9vt%ED-TY3@Fn|oCFAbS44NJG;D`rD
zJvhdtSHD5_+YM$H%xd#SgX8r7fi8v<LX=Gz98Av0DK3pJmSqo;PkV5N-G7i=F`7yI
zhI6zd?VRAlq$cFc+SrJ^aJX6iIIBm{E9mo}=KveUpa&rj_#;D>taAC6Gph*G=4Rd(
zJR)v@{@F1Pbjf>@gFMh>&@&&JXJPTHleh;LJeblX*F_H)y(D;<V^uEYTjAdcUJ<-X
zR~+d2UhoIO9|b916LOv7mQX$(=-QLo<d$UoNpQ`m62E$Io2~L;tq;F>aEC+c#VId-
z_uwvl$&0#P+~fSR0bba>_``z-9$38iXMdxIygBcdTFZ;qy!g|DM_jocJf^RDQO1kE
zJ$T|lAukHk*n@vP$n8ZQFaGo3=k%0k9y}NF)PrpUT~vy0sDE~#tMj3}xxDyppsQa-
zN)cO1UN7=_k>3mQ4Xw)jJ<wIai-KM#gIwe<4|261#1|@i6!BuNHKmvr#l3iYkgKTR
z-nuF84|0|8VuUrNlo#YBz4)<DuM#OK^XjCO_G0-U*NH){vR=IGMFlS^dhv=EMH{Ci
zdGV?j@j<TpgIwjjDDTBb&Xk)IUS=afgTbykgI%ZUq%c~^i^^WK9Qbl|FRFO)C?%zu
z7tJ@+ADEI-)r%H`T_lX2EZeSz7d5@;e7{$}!LG@JU2I!zFZh~pvLMOjtcHsRyGZJI
zvEy0>Ly8cq7pX$h1p7TQlQ{TS51HPmc;R3PMI8+3UYz|#A*ts@eJ|R1(cTL_RnGL{
z*kkMI^GzCf(a?)5FB-9JY_=CpFLn=hHQ}_*wKr+5G-l&BTmM1}icKY{nP79lZgE>H
zA#DX)dogvIwT&Q2gW>g<YfRkM!HeogtPRfF_=KmU7oFH^FS>ZK%!@C)=;}o`FNS$B
z+zY;}(Os~=U=J^PdQs_@P7JSm(JR4w3(5APkC2>%-dBiAu%8#7R7zz=midMkZ%TpW
zZ_yJHe1MRFUJMd4Sa68oP(j*%wjkGt1fS`}NH0ctF<O*Kg6{~9N!YyW#n=QNCuF=A
z6NF4m=o|axn=E{a;Cq5o6RGceF)hKT3z;FvTpxHbOZaTTPXy=C)rGLN^MuS7{E%Ln
z&=+{|v2YebGloySSeQs%B;+$M77O`2p)V1#)Qbz@T+FiEixpn%Po%E&VoQRr60%xw
zjo?}@)+JKc3)$es#)PuTi_OA0yexUE@NJ3I?Lu}4?iAc5xZ8_8LiP$W<31tm)Bzy}
z1rH@szx3j;@FRjp6Z$bPjtf7LP`>iwMN3Y5amI@|KFsyuYc3zI2p<~z@QoMeyh!rl
zRUgiK;pQ&nLw+ATUU<E@=EZd{d|vpyxa`HZUIe@ddZBp{^CHA;<eWX?h2GmyY`RsI
zXqXG3OJ;Dei(-^(bG@BJmn4c8gcvMjuq!U;c-?W)i%Z;cFEsjpB8&Y_EPoWd;>A@l
z{@#lpsI*dOxouT*BEyyMlp9{$^x`qMVlQra@ss3w;Kk2g{Nlx3$xF*$h5W|7BB8A4
z?YJZScga%wwv}f0ytpsoAA-%wHfMW&8tgheDE%S#e-WuX67rW9@AY;tI_%^0CtkdJ
zMakpCKVJMRssDNLObCm8$|a_mEq~5^%!g|s2YGIvITQ>=Psg<Hl)OH(1mAJ{^Y%>&
z_)yA+(moXQfzd@9Y=wL%>;nly5g&>scrhP}3oqfr^efhq3B70svz(WFcqOiol=0!j
zXZEs!Brj7J&LgQAE$2gd&U;+R@&P_n@FCrY3?C}`P>EN}XU<d~D*Mb2@)jTJ2&v*j
zRUy>`nN;0}8p3P(P|Jt=*1Qy76Q!-QUTq=CK0M4Z^%NgwR;Xk3A#eYBMUv{Uis_B(
zP(M|oPMQxkA4u$iB#ID+4}Z2XE$d2?NPd`7r=AbDa@VOZm?_9;10fB4<|~klvR{p)
zcfniMCO$OvVT#ZE5eQF1YUV==A6oj*+-IJl#PIrCotL#Q*~*9ZK6LP*wGVB4;89C$
z1=|VsSY2=E>UzYEK6DagxDTCu=;A|;4}E>;>O(glUiYDw58Zv};X_Z3TVB44TklD@
z@th?MNVNW)?siS>?L#(u=WE=D^VmIA?b|Tl5ZA$13${~A?tEI;<wHLo-tysXj)|*F
ze;;0Qc6h^wT>Tn8&S}V2y(zV)R!ti~rz%}{pbvvMQ$t)UOV?#lgMAq4!!RGd*xq4?
zU^q{`cj|Rv)dw2atvAFq!iSMQjPhZ$50iY@*`VY*K8*2UJe{p{-R?tN)9QC&E${lU
zr(pZBg5w1F;C+G*6Mg1a2DA*6u1kEcRNcwkWahMBOHTe^d(Q{rRKfRsm`48;KEsDu
zKJdF>rp^@Q1Hqv~TvTQYXX-p3=KJuW4<E6=Q~RFWZd+WuX;RJRlX^A3-P*RmhmU>u
z#E1A6>p~y+D$u9G8Rd_M7y0m+h>Lw#Ddcm(B|a?mVVRHT6<C*x@`WHjyRn27!t<Y0
z$XEHW+J_s@ETer^9!f@Koe%5jMLu|a*x<uPE{zRoXMEV?!)710`}iRXvxc||m9T7)
zq^;s(bhB+jf|Kg(^kJ7d*Jj4uf+SxF+2g}rAwTBW_W7{i2a*GVBnN#sl;B?qIV^ZY
z@TlN1!Q))iLYV7thV7)3nRkSFoZxBU<*wu+zuL9n*FK!3YrSs&#%F$NJ4dIjRp7kv
z9uA9}PV2DzR?ouoRDC`KxKsJeV^{t3^Jv<%1ua89s6JE=p+*R|TQms!&>%gP_x}+e
zqCRLo#CS~!!X1R}gF(g5{}n>qhYK8kKLYdZ7k#)y=l7$JAD4aj)`xn2)c4~%AFlY2
z<j1RiTxHes?f>}jFW0gUKd@_}{OZGPI=t}foF*YRefU`jv)mH$lMlt*3ZuUy^cD>Y
z|K`IT?$YaQk9_!D^gjge3f@at-uL0$hBW47c)(pNq5tVa$-zxt=zod$*oVIpsZV_P
z<(66Ff80f{D^GoR#x~zm$SFSOvht&dAGu@%a{H0TkG#SQ2<8){Wqv=F&T^0xOelr?
zcuBQVDVk7T_M?~|#U)z8k1|3^`cX<qX~CELX!5|U`tMK7(iqB$p4p)AD?&Q8vwxRn
zqh8L>Q%P~ru9Wu!epHauYJODrqoVLig0!scN0kJx>gUgd%u%Y5P?Ckz6s*P6gkIYZ
z$5yiq7C-9vk>ZEd51Su$KT;DmX+pw>%x)gPS5T2?dLq@~$3OSXzA$9?`DEVY7baM1
zm9}U4(ZG*ResuQZ(K)4|AJnt_c>1rS$t`OmKb%rXV?SC7X_6?jsgP!VG*2ik{21s<
ze^E;-KU%XQKiW!ad%<=I%Q_7TcS!J#>}j4<=IY`{S3ll)>gXj&-DF662=DGkt$^7z
z4suV?U-$D4&B17I$-*RN%<-eIA2a-*2fF;|=f@j<yy-W;Ub(Z`+MjOlsiVv!>#o7|
z-twESHPDYiLf-acfRKYX73wT)upeWk>LGp%6*A0^(L$Iy+>a5$M<$d}eoT?Ue@B!t
zg75yH)Ny`{m*@n+_XH>UF-gc|L6$s4NXbWzsY2ctoR&zP?#HN3rpwLr;{!it`Eh<z
z+JZ#tY$0<5=L*jAW4@3N1)1?9KYsYu9LbOU_{5J-MPHOiUFgTM{N`LRd?w;zKR!>S
zE)lZSkHPoNA^O6PESqh)A1nM=>BlNRj{0%TkJWx0d}?1K#y>93AYbdpIzQI?u|dQG
zery!7&5!MVY!bd%aEl-d-%8KvW;SDoA3H^S(Xd^@_xiCrVY$bTF<#T__9c}4Y~eru
z^TUH89uoZ0kHZO@BYyKgJDBUZ9|uO*&->w)q!WJr!5L2aaY~}+{Mfa?TzaSdIOE6H
zBA)f*n?yORi>cfji50)<OZ0F~^QWq!d;RbU@xQPa48Gv=?IAxh{xS;>OBUve_z@Le
zsHVcG?uWs37euQd;#`;<+W^)CaM6!Te&h}yPXL$c?Riqa=d}9qtslKMSl?-2`;J>>
z#Ck>Ws^2_&oY5cscz3V$Pe1-X<GAL>bw6%MOMdm^HhXs?>83<)3I62A&xv;a;>UxI
zW;=fq<$glH<Hzs9?+V^a=sd;o58)34A13r6-<qTJ$dAALcr4=Ie*7ooiQqqi{|eIb
zh5b{BKJ(*wLeCYzFLrb8@&=GEfNlYF4<LWQoQT>1BnMC+fPw)O3ZQTRNddenNks%p
z22fN8jf)8>E?6Rf$Q`rHQUR0}<)r}13MnJVq(5#Xy`12$2&wylwOjz@1E?MVe>jIk
zYUKbb2(Oq>Dh1#?Z;oLVQK}~NY609oZLY@}38iL$d!5-AhSvgUwB1a#1W+e{=Ax$r
zU=5&t0GR=#CM+F7(gbY**b}<K64sdYGNg-`5kTEUYCR$A&zhH^2Ev_!4Fkv$(nyf0
zd4?2fEWAlVX)2^y06d?Q1}y?;DM~BBjsdh5(k6hm0kjj|UXaGK?-e9=2w>pX|7%;P
z06I%*mxN8%0Jd&4OYR}ckN}1T&@+J71Lze%ZxP=T%ogkyKp!DFf_(*<-4#H;%jTZh
zUz9fl-~2zROnO_Q1K6H~K1j&m0AkX+VF3&mWnlm#0vH*<!~iA*Fe+jHZUCbb{G9;C
zBsl$KY=VyqV0?m45VCT$b#eex0{BRx?+H#1U`7B_g}*Pz7ETM`aj!lkGXwZQ#CZYC
z5;7-YGdqBPo@CI5VQv6<cba26Kau)j06gcP%7TRQaR8qr_@@E$U{a<o3g9yl7YFc#
zkk18|BrKN-Sr))M7tGR@C-fBotW5A#Tn_EbW~>chT>!5IQ9FqB0c;51Y5?B{urYv5
z0h|ipG%W+z5<sa{)|IyOtpRKc;6MNe1K2L5?GfA|xKnVKAPe6eKr~|3vR9OSg8TnZ
z>LKCB63UkW92R~gp&Sk1)54i7;dnwh5x`f%PYPyMGd-|pxr{RboDaYqz}Eqsr5~2d
zXdX!WCV(zq*v?6`#U$&<wGK}JUiwS`x@7kSpe9Q8lL!wcln_1q19J?+qC^sUREWlj
zsL+h5Mnb<VBrbSC@S@<Q0G<`eqUE;|{Z8<TAVrSS4*~or(JDb)3*dSHPv|NE+z8-i
z0CxkpC#kmte+}R#AwLWLBFJ*+A-9G9mQd~p`8{AB+e?G{68%%~55Wh5OnNBf*5E>q
zg#0D=SnzK_+PwFd_1^&g<Nh2(u^^tZQ<79Li04A`2LHD!<`R-yFi#LaRxo`&pG5N~
zYzhSNMNM<=3MG`nK@>@FwwX!ACHiU*C4wj!M5#n-86l+wUkak2?4M<Wcv+NJf=EhO
z*8axvqwG=Tf+#N{1S<wnAz}0Kq(YSvymAo7tD38<swmYGdi5Y`BzVmrY9;uExdoGh
zumsT{h=xJb3F5tP93v}dWCoEEgjLK^1sy@8C34w>*n?0K3P(O&ct%308$`VXuOEc}
zPjd#F&q?Rm#n%g`W(CngQX2)qD1$SI#zD+!o!&&0rU|{7kmf;Lv?(;>Z3b6F>mb^&
zsX<H)qHU0WE{U!|bPJ+=5PVCE7tN7B6(;ErL`PBhA8MU~=q#LimxS0oh$~mpdIZr^
z8gu+d>+3=W1u-~?Uc!3|W(UzHh#cYU$Xh}54Z<bSenGsE(EA6GUEAC-7~T}|#isXm
z5Cal61A}N?-!!0K@nq&9K@1IIn54dwuo*67gy6^^MkVyoLFAoaj^vmi-VI``=o1CU
zC2YnAF(JW+Z8WdElY*F>P^NGkDw#Xd`$0?#VnGle2QfW}b2pMWG9LsnBM6?1%`j64
z|A2=2EE%!cf^&kHD`cJ^Q|AZqq419cpX^Vg_z8IsdxF>-#7}6#le!lMu_%bof><2H
zmLRqU@wv2WO%Q8?SQ5n2AeM=;LhuX0<$`Q5?+{iBUzJc+2f=@)W70ZNHYfD;L2MAd
zQE*d2PkBu#EBAHVMA@FunQ@2kor1drcPCP7Pb#!8i2d}34c1dZ90=lI5MKrVw<#S8
z;;>kLDac=1vOPzH9~C?%Nbz_OCxkEDX->*XE|78xcea(|tfvz;XM}t$cvkQmPE8_}
zRd|B%a-#^D+lx>1k|8`@YW0%`5ey;}MD7ssgrEiy4&qJ_zXuWFfRxC*LB|+rj|QPh
z##j*F(f|1rC{ez_PXR$(kmyCh%Yv8aB&*DRF?`FS_M7}_BG>mp+{`p@ycvEF@kd?-
z5~<gNXeOTrnR-*iTl9w@einXzwOQ0JLHsJw+lgGi1@Y}wb7mRt2Jt}jJ15ibu}3G<
z?hF1Q$X8Gw2JxpDJPP8UApQ;FFNr=*l=iofCqWeLWZtp-C(%59v+Ae9p9ww}q?jv&
zId{!D${Rwdm{KT&!Xa#XDK%dR`Gt@d2%%tt|DH=JA~TYHH|_5S)}q3T39^vlLP~_N
zVwQQmC?)e%TJR-7PG6Z2$_lsKu`>FKWJwZyHH2~@Ox%@LK7`646l-lh;6ex$Lg4*C
z#Y8QYgiP6zRz*lv!D@-ro+Is(c(&@^wD|=xYlcuOgh#QI*96PDyO3K#s1ri7i)elk
zDIr)xcqfK2F{Fl&#)@L*PY!G$*h82Q#>6n5T`8!9P(?*m6^;<nL&ylBZU}2aSQ|pU
z5bB4}oYBk4nSvxuLue2}k(N$|h9P8y(1EYZwRAQL@jtCBPS(;*X&gcmvH7BZcCjy&
zW+5~>qG&Um#1<j644KVn6+-(Eer;_2wxKoO0tlgP$b7Z!lTFHZ_VVpGT<Ml~N;o@&
z&@qHgA#@I5TnOVs=n_KL5Z(;otq{6}&^?6SA!M_PW|kfy^a`1;clDI$@Q0bNhj8O&
z7L$TAviLq`pAg2LQ{D*SqeDtg2z^6viPB%NpWsWU_$rpd@Zp$jn&qo*c{_vw>{ke@
zw<rTc7!<-#DW4S$4uL-`91_B}hZK@>)ttm(lFCYlhcF_9luZixcPo@pA&lmXgm7|4
z28$Xa1>V^0Jl@RmE~}O(^@&X_6X+@-EDquG5GI8%nGFtMK?qYqcrS#R9H<aBmb6R_
zVOj{&LwG-g>bo;mUdd>(L-}l<i8D9_I~0c0;n``+lv#9uWy*&k%oajEN61{kd4ls<
zNHYtQ*cal*tT)Ly=7_Q|gpZdfpGfr65LRwesL$D|EDGVX5NN=_nXQ~@SrWn*AuQ*-
z%*a|A!r3*-vJm*Vp3xN?z!gf%CCbVWc5hN{9aL7)6PB3D>Ja8vw~(w0VSNbR5PTtQ
zU<X6k8^XR2Hi_>w-Kp#d;l%!o&4OD(*eYb3;C4Z#7HMYL83K)W2^P$>?4~pC%-F-Z
z9-fWnmi-|d2=PCQaZ={)U<d`;WgiLQ5F5Nl`7(sVqVR=K>MZSO2*<>d(I4wNkF%l>
zj{lQ6J=sF!bf01>^M-Ib1imxNa3%z8bapRKR@o`eZ$da1!g>14*I7)u(aGr!!4pEP
znq}h<*Mepi+EDjPA1{V*iHkjiAl;aoe+UMb#)+(O2oWxjWy)V`m1qdV+GOh?d^0Ue
zV>uyAt?T3qm1EZ_Ts{>BW|x|t6_;EW1ev|j8RuoXXb8_k$fe@D5UzyqdkA+!xEjLu
zAzbG&VFTKmtM!Kvehl&ZQ~Z9+snxdh$mvTlU;FHvA>87E<(Cm5{1oD!iaLLmwa-*r
zPBu4zUnDv<r|)ke+>z{~2V@`Z?6fCa#^+?`v`V@c!hLR!++m8j{s`eg2!Dt0B!q_{
z{4yZ>cDrn&T{g*|5`852m*8Vg)({ty{t4k<ZePik>8`#nns+iM`#+}UWM3NMdL|7h
z<jRir&CabNkILuyD5D~;ihL@Hswk!+zls7X^oRM1s3@qSkcz@8Ms8Ou`;`YnT*W75
zlhbG7%`BTHD10rnxQY@gN~tKVV%IBuA9c;<sxPUcht0*eO`C60syDS<&*)3z2dS2_
zDqdAlPQ}YA7=1;>PtVJdB&oPn$3ntTUXm)RfDkGbRJ19Yi=>h$l~pW%UhWO6X<SW3
zbrt(m>{n4kMNJh;R4i3dOT}v{`l@iLsI4MdMJE-VRajKiVQDJbsz^~`RZ(9>rixS*
zY24veq^qz=2ya#FDx&KZ5{22fD6@8EyohF~pjcOMVUr~CdaAjpTDK_;R5Vo4R7Eot
zSt|DK&1j^;DVEn&XJZvjR1_KNVp7tO?AkjOii5W(%~iBuW40-+RkRf2Rw|e@;bay?
zZXK+eq);%c9p_@b(m_Q>6_bx;wP!CjDI~MM&N^_c{K;eG3v5xksOFy2OK@YRrK^f=
zD!Ow<IK}Ig9p0>-Dz<M{$X{pMHY;0)<&ZN=Zxz`p`lwj5-b~Gr5=e^gQ2MFpuVR6U
zk5#;(;!PFrtC*(ZEfsI87^PygiUBGHsu-eTsEQfyW)D*FTS-f!+U1FZIXgpLf1Jn~
zCgKRyd^fyH?efD_^X*_7j1<zptY!Qu=R2%d#dsAHRJ^P5FYvO)NiLd=6|)bIE8S|B
zr#?}|Br$kTMeI(_WEE2+%0lw|o<n4osiLr!ol)m>HcZ7l_F{=LQ^oxfmdsVkY!x4<
zxLwS$XO%LGp1f9>-qtxs#nF<M*^hJPa==$8Onp99nXlqQ$;;QnKT<)(wOY9|BkRXi
z$|ov_p9(G%T%_VN6^m62TC04{Htbi5tWs{hpG8u?k(1Z-WgO?r$$M3NA!NCV6)IM$
zSfyfvij68(bIh+g*QwZX(8;hy#ab0xwmLuA>fB_pP+70y^<xV8CKa2x`cy1ZEL&8J
z9h1F{Q><dE@Hh4=)OSegPC9>z<-!Cfl^!LWe<fRXi$ZZvB8jc??^X_|IH+Po7$d_t
zq~c3%6k(JN<FJY&?7Ou2sET7MzU79g;<$<vD$c8LtN2PaFZ!odoKbO71vl_hDyG-6
zTp5*3z3p!2*DB6&E2!+`MdYlCZ&VyOlGSgoGOxDfoTdCHdle5SrJ5zIBBH{p!l%No
zBA|kojF2P+=^OhqSRl<jb8@JwQV7XWcUF`;m<ofF=+4pvV}fOpoN;N}1r-<R3AHU<
z9nMQC{`F^F7M#4e{HF&LUYn>~QE^p;eSG$xD!y0o1D#OC9Zs%_YpQuE{KZ_PxS`@_
z?hl!ksr|Amra5`8!cFdG+}XIOhvhKJE)#jQ0-O4)WMtmk(hQP5`!jy$qT8QwU+}Kr
zJ@#>J2E{)lO7cKOqoJ;ctge%j(MKx&Qt?>D-zuJ}V4Hcle4^qX_Cf~y^`S0~^G~%b
z|EZWQ-5GK;>luA%kJ5frcBK*7xx&aDMxHS8hEXDn&QCJ)h0QT96h`5&Sz!J!3WQNG
zjPWfST$z@&+MT8B%P11Ygc_EjVH694LubB_*vL{mjQJCtOeKF<!%{MgDl3#yVU!Nz
zsl&;V?^m_F6vmp@EIdcz<uG0eV-Ta4las=DHH^k#Gzp_z80EuA3Bwu&!l)2N^)PCL
zQ8A24VN_<BbiXOi#iO#<9Z`l?vs4YES{R$hD{Sh<G-ujgg(Jg3s2N7BFlvX99L8(X
zBQ}gvz^>h>l4D_k?Xv5H&AW^G$DI`&&Yfqnn3@_!S{QZ1s27GU40@mvh9eAn*c@;M
z&TM*^KkqlkA%n%P&0u#p<0D6A*AJU+)-a5$FfwVwD$>lkp7NG?cl5#0tVUrt!{&;h
zyDpuP^<-=|d(kwEW?^&>qemFc!)Osk`!G6$(K3uyVQ>Mq4Wo6~^vu<xv)c$^rF8F+
zLtX7;C}uv%VJ|of9XWk$|6Zk&)WV8p4Rv+l1c}%!jCs`yFx5FSo7gjq*TwA3FnWd2
zJB*w#`i7A$z3U^!92OSBB}sIJF}gyzeqr>NTpR&*>Wwf~4|VO`m2vtjGx}B-Z-+5}
z!{W{wD1$>MVas1Mc(Ba%kg&PNhYAjpqK1c&f4B0f)2wI|YoVu!<vW7Yu4a_&-FHkF
z!Bxt;f@8zj(9AiG<)6=DI5E_9tXl(m(WEdYhw+z&i^XzJk-P;XC=|haVN4C<{V=A5
z5eXw2#`G{|u;sJ~V<yW9V`Ugg-)77TV>W$0jD=yISc|z~d>F<@%(7mYN6)P0>~k{f
z*NV>h9E6ohuJPFmXun<gSPXc!M#D_!C*(t2A8b=Dm9;Di<Fhcn2xEB|i^KRljHUFD
zVosL!^`o36VdQ#}!;rm6Sr*3k5hn=?Um+D8KI1%8%KVg6<7Cz<y2s6oD{GY%?`E$J
zV_g_uh4E#wWj)6sjNM`E31edzn^=X_vV&_uQnyRAb}{D`u7YCDtzm4V<-Uy7b_<a_
z{|RN~QDtWsyTp<_-D=qz#y&POjALQ!=Nz#pZuMat6q`d*0?k;_;6u(AMI8~5RZwKf
zOeG$teUkG8rz6?2W4n{7C&M@u#_2H5gy9Xt$EgqFtTgqUl+SX$k)|@s)Lwnr!Sj;p
z4#Oja3Jdp#5eP#SB`8(1ZEOjv2uUMTYM3nvhe2bC8rOIjzlU)*3_T1ZjB8<B4<k-z
z*rHqx<J&N*c2_QNj`k@R!?+}bZQvc$cii_fEv@z{--pf1<(05`Nxdq(!rqJ@g#5^L
zbj-Z4^749vOMavB`UK_YF!~+Kx*5ilnOV13(FWxwL7M#%#;@Gpj%3}IdViDZUYS?m
zj)=UGZdk>6FO2(P{2j)Vu=xS)k1+n^ynK*F{y>z6+}t)Rya%YZRe2;G`AhI|7#%m7
zcLM)#qu`bvF&q3Jw_iG2#Jqoa#yxGTlT$O(X5mf6bGnViGSXtnEvZ!UM8GIh+0=Xy
z<d2vgFCgV`Oe)o}6prw#aP*DB6-ChqibZfFf};@>kDx>ZT_WfjLCFY8Ma&kqh@f-?
zFGY|MLEQ+-L{OG`1g}N#as;nLaIdVTY6M9Uyc$7;2r5QUE@IvjmKS_<Ba3|bDg_d~
zxL;wklJLqAtm|x^BUB}VPnMhd*fmPE2&zYLdbz@TtwUNyjR<N+K*AD;wIfK5AT0u0
z1eOTuL||oSS17TX<%kR^5%B1$7d(~iEZg@5w@2U*OGcFl?i@Fbw=P%GBj#x~T(k8e
zXth+yil9*h^@V2&HV|wW!TZY;8cbekqEp1Cf{i0+@`9AHFo~gA1kFVuzg5`Ml01Ue
zoP`MT{gBa7ux-Trl+iwdc0%|;tV9K82jLn2W%gO8FtrnhWrxx^f-5_e#T%7w5p<8>
zV~P><h@fW#lOmWL!Rrz9ieP92!y@LrM{mw-1g;3O8I54^IK{q4Sy0oG69JJ|fqoJ6
zk6=&)gClr@B}~hDGlI9+@#4<!#winaDQ`zmcx3j#2nIyJdjMXPx9w7xO2X6)ZIg&Y
zA|Upw=o}uwhzQ<^U<`*hVqO_}As8iuXH1Qz`|Va3=ImD9r3Z>WK7x(4Ey*=3<05Fd
z%e<fy`|VODL@+UeD!Y{))3bQjL0_E`!ORFg;Qk*mccH0*??*5#g6YC%a6raoGpS1*
z3lUZmXGzk$2xbeRGADw$3C>M&egq#z@L+#=CVdpamQ>5JQ1${bV6k_%E1yQNJc1Pw
zER0}L1fOvvd8Abn%jX<Vj{hcwyTRN&8B~_gF`8JGMzD;Yzft)@qEuQR$yyn~Di$8W
z)(BQduqJ{{>`N)jTEX=ZY!I@J%eJhA`o;)a7O~t_GymXGU~3ifVh5DXY>%2bv9)ts
z1luFn7s39BdCJxf!4k>kcSf))f?Hb^io2z#JrV4c)c@)^DZX07av*|(5qv4)>m@C>
z`;|K+oT(GaT6pC>EYUlUbB;xDJc5Ez6pG?R1YgnjBDfmC$p}tGphghp>Q1+uj^GTZ
zQh0~|GS5cvO$43@yb+v>;CuufGc0bwml`|g)U$l(usFLaGtOrDBJk5CEY2XepaU7b
zcV&<VA~<o4@0K|kLXx_qYc{7f5`h*$j4M>8=FYqVop(5OHZ_6^5nPO*GA}WOEz8y_
z@d$n$>SC17V=qPUEemhyyc|KGe>Pw7BYr0eMQhW(-$(F61ivs#1iK&P{3w%qGlFXo
z{Mo{JovWj@^9FZCr!%>=lgO#R6~RxkHo1O(76;&hy&b`C5j>0FIrkHe{HNIuSwaNA
zbIK%ok3J@ZN%w{PA(++FLPaa?BtDAZNd*6}gOc=^{=Y(@{<lPVpZ~9rr-Ib~6SA&v
zHu?BHO0KB6;_^n3Pe|@4@(7`r+{iMlx@GD<<r0@<6a}InvF$RWg`+4EMT00Ba{rH_
zSQM3`s1il-C`v?;6veAil#HTO6fZ~3&)0O$(oxJSWGNfPOHtE@d0bnWC<azD4{)Ow
zU74Qs3a=)ma{ex3$<xSLE{gI|R1nLJ#}x?aT(w-Zn1y#l%w92yN+K31Y}r_~T-7M5
zMPZ4eP88Ln`1fYkcYBnYQRH09s1e1{*DM^d4*slKQ9K{&dM%3DQSkmhISO_#C8IB~
zYBftr6!s{TD3V(zS)+W2<V=ksO^8j9%Fb~LZ%`fV<1kmfDAJ?meJn#p6m=7vk7w&g
z&FfdDAW2unnH5E&DB48PHVS7Hjiab|L}?vGlPH=-(K3p6%9#E7tg^FN6wRX;Uc%BM
zY95C6y*DeXu*JM~MDfvz0z90MW?UWD-pXzlMf)haMA0>h4pDP|yO3h(6h+4<dQ@>X
zu~-)RvN}i2O8~D0>$fZP!){TeoXF}GMR%Fy9)dliyo@Gse||lRHM`9x^S#B4mf7sW
zF{O`0bE4+ShZOro(Lai+8meh{BZ@bp2u2Z#;;ks&j$$oKi(&vLH;O4yycflwC<b$=
z*(vs@K(3l+%(MQ6MA7$%b7<5&uYgz55mAhcVr&%Sq8KHu8qG1`j0|(VHa%-h)Lb15
z@3L#tvtID8D?54i;P@ye&{e+7c<##PCyt3xOp1b^%cw9+mZbJ{<0#&zD{?fVphr!M
zVn!4*Iiy7_)7g?n=7!1d2tJ5nHoF|fESi<HFkD)$%uVnQ>BIEu(w6z6v>E1lVe?TG
z3lcU1hPghCVj-0h&Q(z?isG{<mPPSJ6pNz>6t?iO509+m1ESBPSR%?&K_<0at#sv~
zmpe0-?#);p1#v|bD}|7A<X20vEO|{7HPb94>!a8Z#jz-kvjI_Tiegt3yJcx?j$)e-
zKCs$C_gJfJjlxmUS@J~Ic8;ec&CN8=Gu#=)<HGsJE>}+1ckYSe{&?q?QS6OkUldgK
z3m&3-bB(VuZ4QdUC+g(8k7pg`bT@Jy;Rx4uG8`51?WwF2QG6wC>5k%L6sMv%OFzl7
zoQ|4@4&5x~{F;;AO*tdcq&ChPb(}x-&;BNgbDYzYS^PR?*&^jUM{kkRzn^)j^+e%~
z!bflaFY}Eimdf=kehyvKyvdw8%*Ci0ML3FwQT!Q2B#LMh_oDbaDMyPU7R9ez_}4P@
zD3<Sb4t~vYEowf^FzEA_ljBibh~gr*IEh{nq<&e*w}RgZj>_{Y^{c|a7yLo+M?pT`
zXUW&;@UK~JL~)bux;tas4&|08KMDRE#V<l=!@JqrQT!Igi1yicqPQ|5`!1cQhUIs`
zq;U#wawu}p?sKJ3+^js{L`+oprC5m_8IL%;ywqwatl=?x%Ka^hT$*`5@Fa@=qIk-Q
zE^GORTcVJA#}r1NMZt3{xsfg|ZCUlQh1*MR4S6&a&_K`Rew9~4ehvQ~HXrHa)39E|
z<-=Tbm9D>J6x4uXmRysZMKl!EP)<X64aGDR*YJ{tG8#%~a22sIl+sW#!RftJN^9mZ
zk0fO^ysViQO5O|{yPo-qh9nKIYS^?Wd*3h@#qy2<#7<3|(9E5!l7`9}DhRJA$d4q{
z56ml2MKj&$%C3wr7ZjjUT|*5GD>barP*X!KHb6r^4X<gat)ZEQ<{FYUSTtm4sH>rl
zh7`?wIG?7$%I-{5=uW9ZIu6P1ULl9urcDfJV;7=ma3qv;A(uQ^^)%Gi&`5(*L#Bpt
zo0SF{F6_+Uy?4e2h2N<))R3iN_n@4ErTg-mwZ^RO)xJ&Gs-22&m@EHArKx5<&u@P;
zi}!vlG_=&vQ9~!<Mx_-ywYPj54XwHB&diDr%kFhVX{(`~RMcL>=4R%^vC<AKWV=Gr
zSwj~My*2Y{+joi5RYOk=Bn;g+(ZYLZn0C}u9&gWhox`YMcwy6+VZ-^XY>oe<h8)fO
zfWs46dD<#TUx{)%>d(zz!*~r7q>48+4An49_*)v@)-XWBKn;U5@NWm$28O|sdSY_+
z5DmPyWFZuXYv!&vQsWDW7{SRZm9tu|@}o7pqhTyNs9_8{QpWPG;I<VCIm4gp6h4+;
z(ZKm$*}k^k*%LKP(lB4chZ-hpn4)2ZhM5}P(|Ghs7Q-|lQ#HIV<k~P7SL<})e2_&0
ze!BU9-d@czM>9X^%%V5ew9MAfcAvuMmUA`CV`FwG{Mz@eS{9OzXr`H;M3!p!STpaV
z7HU|e;S=GEeyX9x&*sOI&qP_A(D|70^8{a_nP2D8W|@XBG%VN5ua(;bviP})WQArv
zH6>ZCVU31M8ZK*Ct6?3pb70w84I4BZ)c6S(8`)qDd+3nl{N`7~c5Ve4wrJSOY1*Yw
z+$KpRo&V0WzO!?u27Zm0UDKkcICp90alX4XJZfxV68Sz2`!zH<>g26puHmi&oQR`N
zM!(;yyfqYGYB;XpgoeW!j<B8SmgVV|qZ;yca55YdQhB)RD-9<#+(@^aq03#%EIq?{
zigUd?<FsI#iaF%W_-nHB8x7|)MCf1|&dVAP2)Z?RG<bz`f%`Q4ZImNn@N-W%YJSiQ
zN@_^Ze$c6E2-BUCozXoROx^t;N7JCQv&{Q(ff!fla98<*inE&%m)+w6^&d0sZJZY+
z%KfC{aM!mQzSD41!!7P(JC!S%`2p<*4OfNm>CN{VeB-nE81P38*EC$`IE-`NV1IXH
zaNlUM-u#H?ov8ez;b+Z!ihiG)!)E0dx}1jJH2kW8&*W(^_@7KV*c}b`xQLQ1<iBg?
zL-@NI_&}9}&x*^vnf-@`2O9F)a~^8obL@p3ls_d(<q=zQB#Y!RJEGx<hJQ5hh`fF=
z{L8h*{W*r>G4lr`Jtt*9)$oif>zwkO+v9R2U(DpWV#qBdk07==^Ty0ih5tpf^T*7q
zHba3J3MP1=7zzt7B3Lw`7q8+h5i>8Tuf&iPL&+F_O@s-1mC`Ykjlnh{`=uEAFICD2
zlJI<EiZ4r&CFuOJs^!%f5Ccg$L6Y(@^Cu`pCMXqRsL0ZGDV1Vq5JSTlD#uVIhN>}C
zi=jpgH6@kb2691FkC{u7&)93l@EU*B6GK`IwPSGCc3NU+v|C9Q<Q7C;M|euiypyyF
zf6%ipb(`>XK}PM;5+w#lLK!~Xl@UYTn7K35i}B!^toj`1HrX`JOxVx^v&duUE<JL_
z&^U(HF|>)HNeoS6XcaRb4>pTo#&B12b}G}tD4#vH5WS@!6{D+@7YGuDwjy?mp<N8^
zg?EUdOAK9wcZ{Kvkj{d%Pv5A#;0Lp_Uz9L#NKTI!ddB#7VCWTtOWM|3Fh?*uhCVU#
z;{&IFVQfWbU(xwh`w3eP6+U>RkM)n?4c0rg@0&4f-{0gd!M6n&9T3An;e!MR3l0$+
zDmYAVxFGFE#4zQojbxPk{%Uj#d^wcAfVxxD`Yt__<E&%6j&U)Jk6}*?dpYAVOpIY`
z4BKLuB)R_m+&Uq{Hkn1m@Lml1Pq{wi#KkaGQd!#jF-%MF=^S?9GX*~ooRvtO9mAXi
zpBuwG;qwzp?gLF1B>3_eK92EZE#(uzPX!kWE)rzYXE7`m{&_-K62sC2Ulzj`!jIig
zqw$Iux*ce=Qjla-4674-O$=*=uM=FK&^N@eF~K**usMb;FU)3G*Uhl9knJ(l>uuS|
zNttZh`gX1zF`RmqpTC9M6~nUOuHAwgYBxx`YTXyZ{uus<;Xw=sWPbUg?u8f*#&C#k
z5JSf|QqRWl4IMj4IUK_gjsutB*UGUNPQ(zKZ6iNU|M{aJ3CH}a7*4Xf7*5A<hHEp1
zYr|bXsOe++WgH&vQir?7XJk~J-}GDz=b1f*4#^I;peE=M^a}c7@CymVpbDwnG*6IQ
zkZ@+K&@@k&Yq@D2@`#Ahn0a6e&1!zy<Xomh7ts)m3x2XJjm8&axD*3_V0k%)?_>BO
zhHoWG<+~WJB=}WsUnxxw>((FHix|9j(r9o!h8r>bE;cv0dB*T_48O$C+ixxZO!+B>
z4T>`HneyLo7ma_7p~YS6ofvL&A6R1@*|gDbF%X%wZBFwUv(oQMIrn0?|AJJ>JiXsq
z!lOLoc2}=X=9DHk;>w>f{-zOs#qc<W{5lHg_?xT1YyUTfMfp;n2xs&kcB+<r(KhRU
zF+7!|XWZ>|)8@HENpeXv9<}Askyl4P9aM-+qDU;LqmYg)9gTDp)=@-94IMRg6xC5o
z$16ILbQIT7LPr@Lf5g+DTz8bz@sf@?n+uiFQCi1)=@}H4yq8YGu*mKxt7Ed=@v@HJ
zQ!@71GEOXaysD#|j;cDU=_s!QIx6U>C<W3ob|JmeDhKnvcEeFgN2wbQhRQms2(MJT
z#S4W7Ev*^Vbr1_JbJWuDnhu)|yN=rI#WF`79Vt4Jbyy^-FLxA9F)gh+Qgys_DLqZc
znWg^|x34m5p{VF^=%}w_%5q1#jtt4$d#R%?`#!2^Jss^=IY^Ap9V8<hj@61IQ^%0B
zj0QRy3i)h>DLQpD*5T68Pe&6SO?7nE(M3ly9nE#LV>uk*l#CWSTI*=TUg&7W;Bgd5
z&!9fAkmG7Ry{#0;p0fP<UpDW+VPER7r)G52F?Vwz_N9{!4(X|tj?b1my6WhrBb%dL
z$kAO#j~6Z1F?E%rr;gWk^wPlwGkT_wqx}*GtQjnd9cTHU6>{{^k)wlzp|22@++W8V
zI)>^PrsGWxnvQ`w2I>5Go@a#O_-}>dZ5`hjO$O+=tz?i4PBd(Y=#SDIY$TgHTpBY<
z$7r@e_((yfvbDr_biAu$td23Fb1v9I>f_%6+etD($3#xSMZ9_ulh{W(@I~aih*Gz^
zPth@tzHz(zdx9iWb-b@*nvUtB%o3cDNS!I<1Ks@1EsbX<^f_$2aGu6MeZGzlb$rB0
z`8e0p3p^q<*8(n<+m?@Ye4^u19SbF@U%(;`myTy~Jdb0sj?Xz727WWJM8{GciUEg#
zWjemlk;gz@1Iu-+&~aXeTgOTrt8^TfqE_ozqhptj-8$ClSf^u)j;%V@>)4=Ula9?g
zHgY<4Sa}RonZN3nENrhmsL!VhtPl3vn?FlywZghh$95e%bnMjO38bAkt60}IS#Gu2
z4x|<7Xq)`ImB&Bs(Xm&@Ast`Rd35a8aX`mG4*p^5U$yLm2iutIwI23ipQlZqZRdaA
z9M*A!W2NJmj!XURm(N(+Z%PaPn`R8L^JGOf;1sjy_)5n~9j7?&(wEa*Tspqiah5Y1
zOfUA0a%!{f_F>!UX7&}s9KF9*I@NKU)A7UA+(SIpiRm_v4zG@zI&RUsbog~#&~Z^m
zKu1tVREMS`q(jva))CPWzn>OOw>A4F?fqwI-;cAg1n=fF?<pmwL)T%@fOB--%ERAk
z9!z5|>U?Hh@;vQD11{;ftmAvuuH#!B-|4ub<Ejp}>P2HX6!mM^JA7i>y36*e!}g<&
zYdWs$xS^v{v&@-mtmjTRE}pf&Q84x4S^JZrjvh7aKk4{c$DcYL>G(y*uR8APxJOUW
z@tcl2-2K?3E!M9~H@Fb6UO1JO^_Oy`xP5tP+tLrM_qp}yc%b8<j#2Gw`D@w7)@XKS
zk+t|)rJd7O@yE19Q*D3gc&y_;9Z$Lc>v*E$A07X4z&G2b7dD5K<9YYFqhe6O2v^gP
z@=V8bZtn(i8z@^beN<Aq5>Xr@T-SX{hv^xrPoXF0GmzgvieY+n0RsgMR25#xKw$$(
z23|E##6VF4r477fpqPQ;21*(zWuSzC@}ab^_gM$6w9dM3eg9|Mhc7v%FR?bQX$#i2
zm0_g@UN-Ow3v}7)EwFa}!}|3GYr7GyBd60ZrrRH%wv}TE1}Yk;WB>*#B<z!xSnuVr
zy<E+<W}%IGWdl{DRqQ4e>TGQ_1Jw=GFi_KgMN(@Sc+Eg<1IY$XHfeNYOInEo_RJ?r
zdWqEfbu$+yDW^WS))C9cXRPJBI;_G|1=9p=2J8kJ@3xlB?Wi=}Rx-(!ZXkoJ)xZh^
zbq&-r(9b}B1N9AL8t5gt8W?D3psj&+2C@t^GSJ*W3j<CTWuU2nW(JxVDA!WCIK}Z%
zvD9R*b=FDcTmzd{%dsCBrC+kOG|<XGYXfZzJd35(TVu1wm7o8#W?fZAUr+{bbZqWo
zYj2=~fvyI+8R%%BlY!0#x)?aS*HN#!&2}|y`xQG+bFwtB^L>^LN~7)udKl<w;C13i
z`{wQTL01~NiYe1}+pFKQj(%o!Zm{;2_GcUDV<5*sUjr^t#^iSV8nyD>>LWac#gop_
ze#5|<2HrO?&A?j*-Zn7Wz&i#87#L_^n1SI21{oM^V2FXC2G-n9<C)}DZ(8|6P3AhQ
zJ<GPQqrKL*)^X)>k1#OOz$i}N3EOeMt@D*Mo{#jTq_X9qb&P>`4NNpJ$-r0x;|z>9
zFu}m1Q)#@3D&H()($lo_PtCXcPt~(uub)2Iz!U@T8JNm(E@hiL)Nc1#!vk!Oey~mR
z+uBdIJ$Y!IZeWIiPYir&V5Wf&49qhy-@q&bvklBKFxSAA-|Me8?Bj;p_TEU#Ja6s3
z&b*6$JU`<@10NY!VBlkV{yFQ@GKy_hMy-MA@3vQ-k7(NQjH0AE78+Q@ecr%Q1D_dK
zY~XXwOQ)jM8#po>IEIdJeVgvkQXS>LOkZZ;3j^y0=6zbAV4vri(?+<y*p)uujIz?e
zDudThoHMYRLuX*0f&B*7(%8UmnUVDdHW=7yV4H!B1~wVk%x2SDv_?F5B=1xE!3WBa
zcJ_An6?KH2hd*pLu*1Mk1G^0K%$X;*?FVjI%WiSJ)x&Z2hH`6zEjeo2BPH(@<e?dy
z<pTx|8aN}$Ap>6;IBwvCfx`xl7&vO+7@Kh<ZPY#M_Ft?cui2*;O+8Y~zH4XNpl-IW
zxabU=GH{w}@CRGVsJ+^uv;$|-{=H{ayV@@9OWQHi_O+CJR`7T!)3448j~dVnxD9v=
zcn$arsG|D~1PlZXgy<F5ttU37Wjw3@d2!pi4i3I4`N5xQ#on}s4Mf<@tJd^O_KB_1
zJFl|F4Cn@aG;qy;VIXecTLa%2xM1L-flCH18?cp5?Ka)^O84|_d#t+`*uJ=yHf+4D
zdcbzYz*Pg^8~A}4x7fP0w$B)2-}%t?$9CKCs`i`HY`qrPt{b>v;Ad&!P4fDMZW;KA
zwK$a{6>Nt$*$zI-a-B?b{+#xUfnN>W-)0-$#@_fB`=lZEI|hEI*Tpe6j=Ki#8L-BY
z8pnMDe{k=OoBQws0}ttMaTJf^PddMWTyf-%<1Yh`4g6=|slg{>rsY2d{x$GKI6tIN
z>3L4c^PeSbuT$Zn<(Yx!9KbQ9*PYA7e+}4m+j8(%%X4d;JaOcWqhK6`SX~_X<0ufv
zvXiAN-m%<yY-!Y_4nKGBzemr$RHtwpU0x|!B#xqS`0iQ0FJvB-cD83q*D-ar{bMN+
zN69$Pc|%ehrQ#?ZN0~Uv#_>`d{9o#Da;|6YTxn(N<bP;k!(NUf%bu6yo8K&d6{_=U
z9OdGu6gSUcFCPcus1QfRI6fcY>c79<HZ^7E2-nA%oz9MMO=((x>!Fm&aa5uGnUqT-
zT(77p%vCLp>T%SFqh=g+WZY`8k-u7!g})X@?Kloj>G*JjtMEt{b&Kf3R;Ra~(mEv$
z^B;;E<szoVVT<FfINpxK9)}V~t2kQ6;fN!hZH}W+92s%cjiW&v4dbXs{f*SjxVg92
z7ryk0jS9DP?(j`zw{I!?xsx_=G>M}r3zWURqwL$w;%FX6i#S@w!9DH&ZrcBEqiz#N
z+c<i}(KC*AakS?|#L+d54smphqf;E6<M{t==G?To9Jp`y<uxLX?$TfG-rTh&6*I5(
zugB3Vj=szoNAEbYIS6s&#PRNeR<G1?e3Dl8P?fs1U$)jMX&qLrVTH5x`o+;djyK|X
zGmaq*Q~Tsgt2NSfrcJ}P)l)wj)u8>+`Ydxm90TJR7svQG2E{Qrj(4QqA#n_iV|W}R
z=)+ZWJt~)L7zcJ_nS=A{J4d=k#xW`m%lBnR|9?!q2bdGp_ddRKQF>9~6+{t`Wj9$M
zWS3naOUVLTSU^BTgLDDuy?3PdUZja&K~b<!q$oB(QPi}_v?LRxi3O#J@PFs<-QWN7
zJoCKId(S<$oqKMXJIRb6%SJmwvmMV3_m%7JIMCXiR>?bBav0;sSPqjO?!qm}Jjxib
zCu@Qq6aAPYv6K9m?8h`eru#9)kE#Cun-6Pja*f^K?LXYh`EUlk%a2)p%w{DYbsU)G
z9zNX1kH!4&G&omsn<sd%R0gNP1%51~Bl&UKk41hg_Txi|UE;@5KX&@Di*@#6xgT3Z
zzQT`{eyrmN@?(`B=ZcqD<HuUw1^Df6a`Ed$M1Coob0!Jr%ng2Q^kb7BoBg1i^Cwq8
zPN7`mIEy}*Hn;lmx*yy8*v>BN_0SI1;eRGlu0*u_8*H*4`=kzU`mx84cZBct<1Ihl
z7M}lI^ZjL#b4n*?<u|FE?R1n*eplp7&d;E{=g0eg>=(%gMe<m&<RPbQZ#m${K|en7
z<6}QQm)KAI_|%Wj{5a;vAwLfLam0_Ke#{+iKQZKQ2DT3O@xdkktjFg^m7aL<xF5#)
z8YlcX$tmL9Cj2)Re`3VP)AmD<ZB4%L<CGs?`tg;YZ-B%%?5v$l4h;959q!|)^5Jkp
z)`3r`iD&#c>&H#0!*_ms@5d$K=luA=57iINk01Rw??=#&kRLz!@v|R(KLURILWhyM
z@kZ~@H&Q=&vk7;14<>(ZPQrdDOv2TH6IZdO50(RN{J34=a-g&Repr4a{4o89`VsRZ
z&S~dN+W%V`xJBgFh1(Kt=D8cW;K#3iTx4Hdw>Kes%Qt<nYH&Al*^euJT=nBOKmPLL
zI_G~se&@{Z=P3%ftUOpgPQROae|GBsTSWf$;~%#77u@iJ3(A9~g!>b2oM@R_Vu#y)
z-0|aIKkoYRpGfNe&rZ0JtPV*56boQU080ZX9zclz<^}8(q+|f40>}uUc>tvYC=)>K
z0G<rsp#aJT@R;a49Ka(1R1Tm@0ObNGA3((bDg{tMVk>Q})FV)Ja#AJcHY=;d$urd+
ztUFZ$s1`u=03Hq4YtZ5=Ri7wd{HgNApDtg#N%`W-2A1TC^LPL?0;m}P0;naqmE}SZ
zz|^#)XUiAo64T+2<SMe7)Cu6J09>N;bO3b&NDaUdz%v2V3m{qK^#f=Sz_S4~WTD@u
zaQV>8ln1Lx-~B1p2Ps@i8U>IN02h=aySiJ$eXO%HfV2RbN)8uVCp8YBiEu6)Ts63M
z@a3Gzoc4E>XeM%Z0O_=htR1i3Ys4Hf1IP-XZvg!QXc0im0J;RwHGozDcml|iRM`Qv
z4!|2gP5^C0(l&s00d(kQuZcfhN-nmiQRTN9k+i2UfQ|v=2EgE*GmcB%)E8DYDmTKH
z?{BoBZR(}AsrdmE1fayqcM6~|fX?jGC5`Hi@cp3LIpnXkYxP_J-2&(>WpxjrM*uGb
z&?|uF1L#RElRsyEPUf8aIlaHgwIG0(0`LXwcSm!!=Oq7N!e{Vh$)}It%)(yGzkdJ&
z0vH{@m;eR_Ferdw0Sph|710?YI9M=igl*@c0ldoY-sIxs%qe>6gp?5yJ4*2HCrgZE
z7q_!N=4F(wNd2(^j0<3v#EuVOLI6|f7y)}VnHa#N044{(^<sXZmrF+NS;<@}xVTIU
zV0r*E0+<;<qb12)T)5nD1?e`zw_|+9gN0^x0CVWT)ho?qK6R5=)|N3D+Z#2VFJ-+Z
zxIl2B;3C1rg7^O|Mg3&~EDzvN0EYuu!NZ>b-jvu?g4+dG2e2l9wE?UP;B}F#57;Zh
z#sD@2ut6lB-?v-3Ie;wzY?auNBYa#GsJ3i`kDO$iXnrA@JB05P+$H#i;BLV`uG(|v
z9^rf0i2=MFz&inaNJ9niZUFlN*dM?L0lX(VoWtJ_;Hx%enToUb+ar9O&lkT?`oX+?
zFo2H&_&9)10(dZoKbWgOWs<F>AEe?e&AIxB<aS!{XaJuDa7_4@g2$OWfRmg+vYn?y
z^10v_g88NF%^{<RUj^`W0N;rGTfqqv?a}e=yAI+Rk(?F$E`aX?I2XVV0h|}fkAhjZ
zi+}7WS@y{?)c;8&{2m!OuU`W22M`D#7(gh1+Y-C{dRjODjT6*~CJOuXdRjz~M@cIE
z?L-qw^Z<+i%m4;&a^DQ#RshieVgbYhumZRez|{Z}68mca7X!E;oXQ6-B@-_NaG938
zR)Q~|ufNs)%1`r#DZd49Er9EE<^X;V;Ew?Q4B#(jRWCKOiQ~@PMtoAkFADMf|7p1?
z>pG<Txv=6t0o;(B`SRW!6&zU^4(?r9?IHIY@sl(pcQ|`*b^I&1Kux+Euz#9(QEzyU
zW8s~Y`<%DmNl6N#SP)MqN>frih*F=VzY<JYzP2lmI_p2ulS^c&AW8>OCWwcE_R%P>
zM}sIU{B(8q!$CX}1W7r;@`4ovD+*Q;tSneXu&Q7+K_;vo#K;=WNtpAV<;{*xMU5aD
z29X?uIXSy#5D40D=zT(vq*f5Mg+Ey&sT0Ig!k-qbEBK6HJ;C~dOxqxcXN&m3uH_mD
zXDLmDqy&*F#3ASuOcQJ@c=xQ6nXsNsgK&ujnibi^9YlH&&j_Nq@Jzuh!4`ro1zQO+
zA5Re3L9`BH*&|IE^iNG9whO`=M2iqw^81fLv=8F5AdUsmA&8Da^b4YY5K}7_&kf?a
zAi4#S7sQSy8V||O&JTiEAlON;P_T0lU4(QMqz+#)e1Dzu;^oxtH1*gQdj#=(5Iuu<
zA&8fQ;Mr*}!L@vC&OQ4m^~E4w3L^6_r%&XR^cFI|M&oU3Qu_qKbG*JmoC!5184$$4
zAod0EUJ&$5eu-&N5U&I=n575#UCXq$gBTjbt3fObVo?yof*2me<RGR5u{)AFB8X8z
zjHXuvv3-|w(zew7`6b8D{oZ%Jw<zsMmy%<Jj}sg(IuisZ@)3X#YVu;*sX<H&VrCGt
zSX+tWIopgN=Ily6lwWdheo5+d-|d_o#M~e*b}2bWbSR;G;m^)_tl`hj`9ZuU@&$sF
zP;+q*OM+Mt#7Y+NR?DUA!64iZx8YTDNZaLfkM~>h7~xpwrmKQj9mJ*}HV3gLh_%d3
zZK>VM;9J~JpGsR71j%~A4T2j5DeO|G@fMcyddqD=d^5sFvQ>hw3*vt2c9An`hmf5?
z>=N>Z;BLV;1*x+~$lf5{62b~l_>OePyMkk{HDTAhAH@D34zaJlO#6VnGt_e+X#WD_
zL*b=wdnq{>M6`JE;O-_LalGtp^06p<LYEeDHz$*Sa625tksyu+!O4nOdOR~Uz(aC8
zh!a8l5yYQCoDAagAT9-QIfyTUI2A<YnrYD>z6|24AR<Bg<464L^4CH8bId_jJBV+C
zsD90PI*4;Y{1C+V50yR>#948h?-*px=j_MLytduQ`Z0*}LHL6R1TnsJ(_sIWYYQ6x
zBt!4#AZq;9^cQA$wJFJqI~_dS<3;xiNpWF8MKI|jk6z2e%BVqTLA+l!k6aJJkQ$nT
zl+>u3#1p4j&^~vH2Vn_G(EaYFT@d_L@M6$@cRhu~D?xkp=R3VW-<HO+xT`_@76i#P
z!QTbdEIaD2Ag%|oYWYh~hhUBH{T;MF=gQze99GU|H-fk+<d$H$5N@;P!v7U49kSK#
z3ja^=UJ&<%P@W{Q#X=}9gpv{=loVd7NWwRrQeH-a4~0;+Nd9mLj|g9~t|=ADhfqO+
z6+?KeNT*T=l|!f^K^}}$6;e&Gy5OUN4~lqPIJ2rDq-F>RVaKY*PYBi$tS$JYU>(7y
z1erNCX_mSnJQG5_5bB4}AcW>2{I)3d*$^6rkRm)egeH;HMj>>+mp1rLTKB)4Bxd>6
zb^dUrhTsT+#3@LU7D8j;O$3_?x&)gEQpX)adJ)eEAtT4m>hy&cnNnO<2&-$lScg_2
zctY40!h0cPhtN8N@gaLvZ4*M<5b{GP2%()was|DDIU#<4zF2$Ve~xo?2!Yr!gf(lM
zk>rV-nKY@;w3F}`1q(yy972~6x=Qec5c*YV(qMn;b0KtN!$WBANb3>8TjO1Ce&r;8
zUU*Nz{lywn&OCdCaDRl4<R!_(7een4UJjv82;)T3H)OxMYG4R2&PeSiyuaW8!Tov~
zV~ej&8$|C~o%Ra*RLBrPN`{8;s_<b&lHnnY2w|iIM};sZgs-ZlQFF9N)^2aiZ?caS
zUdf-z{8{b<smVmaNg+%QVM+*7L)aa{n;}dS`EtSOf-?kX3bJXlLYOUlP6%^Dm?wOZ
z;C#W?1Q!TWe_;q8_bf)jYq1EIgs`+IcA1c}YKav>R)(-j$m$Tb6zQx9VXg3Wg6oUq
z8-#2W+$6YJ@QvcdwhCd1uZOTr`1T^nju3VV-zE4)k({aa2;VFC<?Uun{#FR{OQyXo
zNb-)5cLjTHO?y9t{UQ7kf?tw+5W*2=-qZdS)`uY+2!W4U4hnuG_%YqJdG;rQV~#cX
zG=xJT9A>W_Yr>r;aZAlc_Ll`h_$-8DAsi3kL<m2J?C%bo4B>NjZU|p<wkhTKWl)<h
zLKs@P>8TJ}yp;B(@ITWUQ}Rs+?;5S6y<JrMHiSn<`c4a;5oGYJknckHUdTDYABtjs
z4B@=+pNb^RpIO;IY6>A3LNtUJ9eZs?r#@{$((rHy&XGPvFe1pH8iE#rE<r=k6y$b@
zvCSTK#6#dOZ7zrGFOgZ&#zY7gLiknq_M@#?;>8d;j`Up;TwfxM-0bhT5(4om=L#X$
z1S$D_W#vCZ_$!1_Dn_fg9>U)txFbl9;GYm~gm5v8OJUp$;Z_Jo!}u(W+acVc|A#R(
zjDJJ8%d}yP4&%QN?u9TsY_F>KLpJ99;wcqIl1PdP78hhxi7-kEcWz8#@Q+K$rNjJI
zARY>%Y#0xR(JBm27>|TeE{vuucc3TtbV~U!9u4EMFvu$iRurrhMr9#Y1Q}a3jA})^
zdKmFgX$pBg9>!B)JRL?2iLEJ!BF!hls3p9%;FE%NiemeX^f8CJVKgd|JR_u@V12;`
zg3pH0Pzd#t!zehA{-E>}5vB?{!f+Ppq=nH~c#|T@2Y+{TNvqlLW<uOyqzlOqY%Z87
zNS&-OS`_h?LU^~89Y*UgPM=EY8Ah8hW`CBF&&q_+R(Lx>3cW&d!e}p~Ly^3rklZlx
zg!Jl_PUTL*pBF3?q_A@sU5a?uFrE|MO|W~ByhqqxhNxUKxfAh)FnUSdUJPS^5Z3dh
zFnmS4w~&_w`v~?G>?hb?@N{eEKp}%31W%>B62{;nJ|v8x!e1?t3=_hJeEzy;M3`?y
z^Nb8*TXw<nY2GnmEb=((N8IDX=r_wdR&bo)tu^^{(Fx+N6T_HP<inGNoX9OPEsW`5
zycWiSFlL0oOn7~Jq1DVV&Y#QVHA~3sFy<6V=7xC=Z^zCT<XHjv&&}N<x;YlICSfcN
zV@VkAgz;_|OT$>kdWNw*jOAgh;MlpGye^ED?C3Wgyw--XisLlL+2WRabr^kXy4QrU
zcUJ+)1L1o5)gvhz!q^zbrZ6^#`6FsuvPJO2k-n`Q&Le&6NBSP_o=!Qhvkz6=5w;Hl
z_lEIS7(2t*6~-Inmy+3!Z-%j(!}GBc48C%~zNy^94*kg{l<-K6_;whFS3BFTX-8}9
z6SKT0cz3mnlJ|x0595O(i+vcz0pSM)KN9>{@Do9%`c%jv!NXx3DU$Pa;#e5R!}u<Y
z@549|#>p_g3FBK)pt-2<c^H2rWq%=fO7P1tniS9eO7Ls?|1$5lKiPekR>`yPiu*K2
zXp-}c;90?->OLoh2HE@`C4LBFjq0Y`{K!tEt-|QJ-1T!9e(|MW1R4ANNZ<UGu7CvN
zqdlQ8!eOvJ3hS2Pz7R%)jueI#h8~6`QH(XhxVFL-<;-^9VLrhA_90A+vzh25M*0{`
zgz^4b7s;M!Ugq|z<ms)ScR7qJoC6h9S8z3q-@+)NprnFpQvbigxXu~lmiu?wA&d%H
z?mq=d8m{*K9mYRW1cNl)4bJUh+!L?68OALkw*?t{hpRvlzZ=Ge`}Q+}`;uFdV&~j4
zIgeOO!LoJU;tH}-(`VP|NlrVLQczB@$IJ8oc}gn?pKM-6@FBsnf)5KmBKYaC%<_u8
zvQ$t|VwA6<f=WUvE2zT!pD#Q#+7rldFYBLGRl&J=-lSEoM-{$z1-BL4QSi8e8VVXJ
z_Al#dDgcXC{%_Pjp`f<Zq?X{Lg@vrulM3o6cuK+33hFB8x-NfEy1Qe4ucuyK#ZkU(
zTMC|0K&&TtaFwfp)a_Y8R`TomdC3YIDM(R}s=%e7nF5aS<x8qN6gU;6DM-#pZz{sZ
z3KBQnO%xQ@+`N+W3mWvu;E}akLArw1S%iWN1<e)oQ_x>QCM~I;lY&A8Eflm=;AOiM
zv{K+v@Sh{6oq}uytyzKoS#1^mZP`8bhI_*{Pa6gNhHq1MdiE9<E5mv|b;Q$N!G>G8
zxeD?WbWpHwZsEN_-i`_?C+CsmEBNe~=j+V$0tLh}8SXchyACbzc2>|uK~DuQ&^QX7
zQ_w@f^9nv)>FTE7*guZ$Z1~3f#mim4Wf#0R+*@yy@9dg<?mF(2&+et*MFlS@@UbDI
z>@CWi^{)3a(|ao@ztr1DL0<(gD=1q&dwKb6;$zdj=lf^9GtBG$A!~qwfeNN7n5JNm
zf>#ubRxn1vU<E@I3|BBh!B7RC+;_aHV3>l9*K_}<klmze#_9Rq23s>}gyQSGEODfQ
zQB1qs_4_}$##-0WQJ%31#wnPfV4^t2c$)V$?~Y$>D^+NmGfBZ@1y?3`rzlwK@YEdP
z**U~JeUaBU$V=gL1v8jR!D0n770gmFU%_h%W-FMZ;ERZRF0IkqGpu&cuA_V;^Avka
zHYPudSo5&wn@snC72X937Am;hFN2p=C1Z(#r3yAF*i83Uu$<k*=CIXI<gHNf>*qZ<
zj@S_^6%bbmu2!%{$XY?l*C|+E#GQ9qvAswCaTAC2Pyarz%jH+RTNG?n&~cXcg(?|i
z278-rc5PR%L%|sZXBF&JuuH)a1xFRUp<uUy{R%!%@TP)23f@-m4qJNDy;s3owE1?A
zIni74X71yoJp)I2-=#mSbG@hFeL9txlu>0?+K#t1HT}C4-l3y>A1XMY;A5txt;Tr{
zawOi!{YZFxwd-tN!Ti3SPg#GOG~sSrH)DLijPtV!G2C-l3`p`BolU_h1z##SPWM)D
zQo-l!%EOtnH`xAG?w(`TDBpx;>8YbVU(k8d)9Ip>)6>7AKP&h~!ND8uQUkJj%=Yec
zr+=&9G;8Zle`dJ%{j{8Y5%+frzE@yzgmP9<@B`-}1&V?n6`WV_ivqubpV+yhy(Rm2
zM~(LUEWC!pLrFkEY?YTT7g7*Z@cSn3+ao=_*XH-W<mNgU;as60N*x870-Y_QZMS(0
z8sYa`UMFhg{XH;?Wb;&S%689{=I%J>@YVUHGTp0hxGPQYUZ5K&_(Q>;3N9+R#8{R>
z7owvo_>H4urgOt6-@BuHSLr;Xd^4K6i4@X>Si_Vto~ODNJl{Y4F9p{X+*EK&!QTr0
zQE)@S;Sru{<<e<4u3~Rra?_HO)OfAas?pvu&C~Vs?tc~BRZua4N)b#}-IHGR{wMS2
zJq7m_Bt=jxg3=L`iJ;d(4`)>7P&|TJ7u_WyC@F-zR0NN#cd>|vA}AX{`H1Z^^v{PW
zkKoi{&kOlk91HW$WtNNZty!6reDt%sLIlBx`{g8O<%qq4JQ~4c5mbqw!sX<ug4G18
zNBGpH0)_1tCq2$WFDJVqnCkG<h@hqf5y6u}o)D}hSX*$YJg2J@!BY`D9kF*lDS~wc
zpAoDlSYNP#;Io1a1(O9E3FiD;nmMEjcL+KK(*zmSSV)rynhL2{*Z#6<GpQ{{3hSH^
zLGuW{jNq#XG9$=}U~mLOB4`mo%LqC|&@qBm5rp%~w~3%_1fGcftw4^=><C)ZbT{31
z>gN$@u67X|mmc9r^hS^qL3?&nhMU1#Ywh8g8$lj>ErJ&#_JYd=C131Z5J9I13M1$o
z!E+IGi+~&5E>aK&%jhZ@T_dPwWRQHY+0{LQo)UGSAgc$vRrulzH*58RaFR6_+%HAo
zi=bZw{n;raJiR06BW01lERv;j?B%$x2>(jW86bp`K@kiTeqxl5L0+%0^a1uZerN=*
zMzA=7B@qmZVAaYJqazq2UOGI25t3?T1fwEoG}cp7aqm22`zISdR!W>2!8pl^xs8ut
zLIk_}XHAUY@E^I9Op0J%l5=tdQ|NUoT$B*c-gZojfH+-nMg%kI;k4=~&+G{1L@-zQ
zg=L-Qu`kF+`xZvvALV;3f(3N2COya*`}-(gMw1?k#Ow@GxHN)g5xf(@yR4h$ULL`=
z2)0MCB7&7{S_G>j*bu?S2-ZaK?-O~oHoMkRvdvR-v~OJm&0h7c7bMA6Y%6VwAV1w*
zYp!=QZNAyNC4#LHye^!pEr;9AK3>XqM6go~^;QJCgm5FbJAyaZt;<~`Z$|8WEHmtx
z?c5W=UdpqbyxI)PqVR1d$*_yt7r}e<(pxrvUy^(f!G{s-7tS1*<Uj-mBlt}0OjCap
z!KV=%lHkW|i#z?32$l}_(9}J<7aoq_2;I9&ml_T88ZUGX-<*Fmf_r*K{&3GRI(7sn
zI8rXUzhIAV_nZ{|xnRoAZZ7?&nBg;d9o*^6?du4>iNL8MO~tnnoQ|M|ikd3UuoEND
zBG9Gb-$f7+@_hv7BKRSKA342bx&0BGkKiW?*L%~}=d*!7i`wk6?q6hRu)o+quEGI(
zzWTp=!w?6l@V}Nhlp?~ks&L*@7!jBeB&jH-A{s#~g5M+fL(CPA;MWK)Mqovdpw226
zZ-Q9F1==ct0rwo2B6uZ&D-m3c;IjDeq}z5M{U(`T6J*Vqgh=_H5&RXw-3b2Ucv<ec
z&XXU}`I{qsa{<+u?TrX-M(jP$tq5)l*}Nv7!8^kL732g($-M};NoKa4R=Ms|d6>6T
z)eK^B6(v+uQ&C+-Nfo73lv7b&MQIgfRNE|%sCbB7aG@0~#(c_Bd4Tg_iJCspcBcvb
zvv#g?RZv0FW@CP36%|E?&95YC-&XNdQBhU3Cq3$O$NTbp`!3^AiG5t~F%=s#?O{&&
zC&_t4sA#C#rXznsMJ*MzRXi!m^@u9!sCY`n(<<t!ww<3*?YquXtJ|Hw=pK`iPG4n0
zUaWQl6<1v8&#LxjjFL%7PU<I1szxeORHUltv(oEO(IqX1Q5=J9p0_8i#wrR`bXL(s
zMN<_n70p!SsA#Xkts-4=Xs04WMRPGxYZaL)vQ)HG(Mm<5J{c{<6wH(Sr(vEq))abF
zET2>mO;68O!63&zv5kths_i5!)H&Mc9c|x2dL@6}4s=k_Q5xP!1$LCrRgtG6pTj|O
zKj?yASK4>(1tKBYzOV|hizFc#p`xpb=Tvl4(OpG<k@ryXypVn>da8JV7LZ^sF{4j<
zlWAX6@sc#5x8i2M_ZFR(ReOj%=o({&x37v>1@><Fo13{zGC;*Z6@#SmLq(s$S5yoZ
zK12m~N4!}1S5*vCF<gaS+ri|0Uhx`ZJlw!gf21gL(jFt^858wPj8!pC#dy|D#p9;!
z7!y@YqTdRitYV6axw<W%s$v=&sG+BZH@qdLt5`;}tC*qk`_%TjIZMT2A+uG?VJa2#
zR6d`@0u@!N*pK|?b6iaEavMgUU#LP^Sf$Z&?;;he2V_mG;vqk?+Ew^W-VzlP%V#fT
zdq4A#tWdF1#bx@Nid9rraYDsOmB$fStKw}H@2FU(V!ev(w2z7nbbA$BRd9R1NyTOr
z=Jw~ds2Dl6)5Vl-H29P&?lZ-*xp2SE+{Speskr9MsXoBFc9?gkid`!9sMt$K;z&`^
z!I_gY(!;FYRPFo98EaibDtnmfEfu***_S7K%k=Y7IOCq<T^0LOe5B%I74NBdpF`uK
z`+$o5Dn3y0Av=AvZ{S!DZ*_TFy}z#G@*&TPk)G8nTnAPA#(bSK=Mxp5syIw<p;L|b
zUS95cX1(hW?J&ag-!{+P+xFCYRK;hk-Z}R%6+EIjP78<K+_g?w=^a1X_qmEMRD@K7
zRh&}srHUU^{HWq96<@3Pp7!sb!BpR<IL&FFox9Tet%~!NJ#7A2>AUaf45NKC1=WtN
zDI`BfSG?$+ci*#cXYunYep2CQ+SM)!e^&8}ipC>7Jo6ddqTs`G8NX%~1ni38-Fu!<
z|9K7<&;H~;kD?-?BF2vB@0gdHr>Zc>Rm>mTNu#5(kJjYVE9fD_C^ZLU(e24^jP4Xy
zVW~)n$Ns9~q6$V`pfgPHa!-DKkUjZa5+Ql5Dc-9pepB&`hI$&Vsra3<u7)xi{!sBJ
zdr-w)6@T&YpOa_B?At2-R`HLDTh!cS-zMKsag&u_;UeeOg1BU~eZ#H|^xmN#zUtu}
znY~3+`4JNo(|Ce`N4I<KtEiWno}^*FBZpJXcZ0puDWQQk;Ll~cOKB)6oWVhh?7Q-L
zw;c~@D665WhH4rf*6@giiW(|uD5v4SPbyW=kY{u)uh|{Vi{sZOqkWY%`>3Ic2Hr|P
zo0ZOUnBtwg>|N%_&d;i@p^k>9SRbZZ=6FoQ;~FThp&@yTi=?ImNuc2g;kAk+wKY5`
z{KRM<6((5~pVlzZQ&3mK*4jP&qkS!T#=Fs5pRLf)N`ptkvl<#|XsW@*{53Sv_%A}Y
zQ$vb|R1Mq@JD6dHyYmT*KIEZ^cyH_8oRubO)NHJwNfGaSA*-1Nw}$2#GBvzBy)a!v
zhQ`U${qN^J-W}~7yrlYL>+`cTw4lLx(DX(nMzz#1Ww>{Khb~{PalJ9BQ?`cI8ainx
z)X+vlTMZpG<Z5WA;e~aDwVS(hG<Y>!oNjkbyZ%|Bo2}YwAa)Ss%$cVlU&DcoUNbGH
zKnP=B=el{&!`RLmx@hRGq3;P#R}EuRx|KNWc}@eBXU%kW(=c?nv-a`MBUd^GFLd^h
zAPagyLoZreM=c#MYIsS*Ne!QC@M-9+VTFd3Y%g2N3^j~n<{J8GcvZtN4gEC?&@hBv
z@kAc)BL-@CMFR=1K|<CX^9&XeYTt#zq0DxeXZNd~yPXQ17u>@&jMOlS{Z&4Dgod9s
zx|VP4q_rv-t)bN1!Z8}YdM0nbBk%XoJ_g5Yn4n>{hB@qa4U=eF4O2C2Uf6E@YA+Z1
z$(p^~H-0v68tXZx({v3pG%!fcYo;dizlOJ7@!n~e7u#IGbFH}==FtbXxRz*`ui-Tf
z3pFg_^3lDpRb~N=vp|D$s`rQCp34pL7ITCyXjgtv*5Numo6qqw)lx~jOmMm2shrBI
zG_2OJTf>_g)@WGE8fw@=ms{;xr(pvfV5)aLZ8Ecv67B~!H&5Tlsy26T(&RL9QbE!{
z?^X@lHSEyvx`u6<eH6KAk?j>cFyTIVCs#Li%{cEa4Gf;_QqcaFjyxN5)X&?)k)`3F
zhL6}%4R33BPs97H$zjhs8h@#ReHuDXvS+00hdn%S;4>HQ$@g<OX!wvGrQze$^v7lu
za<;!#SeW=BlLs$+BE$XF#~MD-a8$!*8a~x<NW)<bM>L$B>gBOKkCE?G@x)Tnc@)5d
zrbQcF$21(*aDpRfwJU{Ve5&`x8W)#|k2mLYjrc;tDcV!RpBlboM{5Xc{9OUQ*6<DO
zpy3w{-)g9y<osU4ISr?o4<-E_G{RX8-$^St>GeD6A^t!Qoay~h!+H8@=Pq@}c$HI*
zpXebGHyg;F;zGv7!mlC7p`_uaJ3YV>Pd4Xi)k9-^b;tNzN!cA&cq4QY4HgZqLDQgf
z>}ZJ6$?rLM>S$=FlE~sg+38iT80)si6_;6#^XK|acJE|NDt|%4uNtmu_)W9d;)@zC
zX}GK*ZI&0KJEd+d;84B7wx{NB6uY-}`l7eznugysppW;~X4fB8JtVx{`%A-h4W)II
z(eby2f0&zwyBuqkJvUf?4YyeIVDGt=uG<>A)yw;NviA;~Kgip9jE}Q7=idJ`+~XWL
zzEepZ_vv7LGK%Rau4B*?XOfPj;T|sW%SU;>IO^#!##cf|_amNJn_Z=J)ST>ndwo9f
zAsuCPRMb&P$HO|pXS2%d_-3u^5gp}3ZQ2z32^SB+D(HBBU{=ZLh5mlt$~vm(cvQz@
zy1i$ps$;?^PjwyDbnM#T{iRv@=d-*6R=XY_R*6pdxQ-gkO1H=6@cxDVl)NF$(>wI_
zg8BoTJb9zMwvOgHGIczuqmGWJbUdxYsUuBCT^-NpXrSX+9rbh!+u>O-*jrx*kK?w^
z_VRfReWRhyKN%raheJmrDX7?JPl}GgKV<S5O{atQFkk+UJFK{09pfW!tfPqzw~llj
zALbP_)#1`{qOcM=RIc`CZky4bX3VW$27kn!q1zi9E_P21^YS2$LpV!E3tCvmD>_>0
zXr-g4ju&)zbY$!3s3TWLYaMNL9Q2mR(ZMZETd9&)M?2kK-+6J-<o<y*X)jSE9d!Ft
zobHsTBVR{1c9xC;9i3Q{)vhjrg*rM5p@jEk&VgAZT}AR-k-Wub`^jk!9nb3sjqvX3
zml0d+o&B2ay1h90>*%ASua1{=_@wB!R+eB?Zykl3y(6cUCx2PwE1t{fr=vd&yRLBc
z?b5sp7@%X}5zj!0y+5kt!9~@mJXpsN_P&mZI)>_am95Y*hTWuNxQ<apts9|Z%784o
z3X_b~`C1J7PL1_vaIB8oJBp9fF<!^#IhFZHV*iC!e2#EL@}Hz*vX1FGW-tft|F<O_
zAJb`?WII)mC)?Z*9!Yo4r2V(JX6bmjTAA5nd|Y8?)3=X!){OAXVGaYcNapF7&kohG
zK!?{rj)8@AU>(2exTs^XjwL#d={T-qsg7lIW*u+nSgvD*j*U7t>EMQWrH<7)*63KJ
z+gthtRm<=h$65~IntAJVtk>=54x7e$a_>3Lj`b`a?b#p_-l6l_tmAbZ+jMNvu~oMx
z_6PDe)7|$Mc(?1=$!1=0@6f?J>!iWnt9sXQYh0A<*6}8NRmTAxdvxs8u}{Z)I^NRp
zwvKn$O*h<B3$C;~n#kb0Y-znb9yPzu8K!yqejOi(8YQh)I(T|kyJ=P8K^-6IIIQD{
zj>u^5$2vZx`)%}cIru~@OyWQ2IVAk026;zWoWql|+Ex9I<1^tr-u$DI=Y)=vI)2dc
zBm0p})^SF+pKzVh@g<w1gYz&Kqpx&)%^8MM$E?EnYrKWmyGF%1_iS)oOvyP-!yfj;
zesZ7H@tuzEb$b>)$Jwb=Ay5CvH;nNOspdJa<0l=u4nxP!I)35Ar9;udM{Ir_0Ubdd
zT&md8561Xnt6a$`c_FqvCGYj^o(LPFL*rg(uGb|G<A~ngo)H^eyb(5aL^<dxWXGw)
zyUVo&F$psEmyC4EEeR$BFVHQUyD7Y+<Fbyb29IHJMaNYgcXj;7x;1zIrsEGCe{w>|
zNWaG6uiMY{XtAHxx&G2|UB?X_H%0ijj(^w%Yh3KX%$2rz&y4Zi;^<&obo|R%^m;Du
zHTVmk8#BDbF9v!q%4~LzlfRCK43ssHWT2SAx5}fGf#L?PE%cT!@c2M4$;t&)4(3!Y
zzR6YE0P|^^Ur@&2OU&Fu#&u%%vBw`a@Q8s*2HLN&|GZPqK>yyJ3I=v<bd@)-XSMxz
zOI{TX`!K)1!&BKn6$ASX52H9Oe|Onk-N2&;8W~72@EFTAP|HAV105DRYZ$0$00y2b
z<~+T`JM+9<?h~x!SRc<xc<1}1fjS228K`gIDFaWl+{xZS6|#@4bJaEQjDanqykE3&
zymQpU)AAab=?x72{T%<@bSE3gpW$sNjpEZZ@=A-n-_uq}&Qt>q1I-O&8gLp&Gtkt4
z%dnqDH8#-qR&Emm?opltOT9J6`m8Ml%?$8&DQ*MlhCN^XHPq`G?s;N*VFuG)abK<M
zsj<q{p^_)dKq~_t11;FJN}iU28(-^0o^7DDVXuj84YV<EVwh*ZLNAMB)bR=4b_NbK
zPv<qOzqdV88Q5pwJp&yL<g!E>*5C~n@(m1NB@Gl9=wzUWf#(g-VG0d&r2!3eHqdW-
zI&<qH8Ma#I>SmxjEzqU#+<1EiD7DBw#F%qEx2J&@4D>eevVmR(82h4umss=-Hy`ZI
zSmJ#wHK*BFpU*(ySYO%+4<AtWF|d86x1V9J*L@8%iT2>$qrV6#=k9cnfmaNSG%(5l
z^#>c6o#}qnzz_q+DtUMaJk-E1|2TL|H_X6r10xLk5O3l%@3ot)c#(`YFvh?{ddMaB
zSOen>Ofc-D=5?QDjyLexmVEMz@3OwQl{;*#kK`ezXOe-*26#BnTFrIjOfxXuz<L84
z49qYv)4*Z_OAO3nWem(W@S1@+2Id-=XW+~f@7ft&Zdo6G)qC|<d+*AF>jfOD>s$*3
z8T(Db&EO&fe9lg?)W9+Ws|>z5$GzOZ3Ii(*G#HdM^ffP!zIk!$GGx7rWVL}c24eHQ
zRdc(nHL%V=WT=;?TYC$;)UMTYqk&BZb{lxpz-9wmXhvGYz*YmV8~A2x`Zmg^dbPgZ
z*ZX@JWIjAasghN&)4-ACu3hZtS>AbLeQ&T6S9`xWo5g3=dkpNQV^qj~#{ea78F<@3
zYHH5YBfOE+oUxO=oGKsd>v@-!?`Ho-<$ZgQB4i+J-~$66vRnh-(sK+Pq_x>=hW(?6
zj|_Zj;E;ij4Sd2L%t-G&tFTG|o6+;IfnU34@C5G&hfj0+2_R>NqcZmS8>-{<a|2%*
z_{zXZ1JNp;Q|z6!1&J-4K4%RLknm!X`nTMD%4ct;zq!+=9QJ%opFixG`I+Z5`^dl#
z27Z*WbC#X5(e*v&f$inLqhzDY?wyUUb5g6olIrITl-TV0#ekpV!obfg;-;Gi`}52m
z_01ju_Iql2kh4>2dV|H@JDc+dzUrk!Vb>V=-M}C8Z37w`W#A%5jRC`e#Y{L7XL(J*
zm|#@!w}`uX%Yrx?b-XhP@!(kBnX$eLBH<~@B@Wx0ZfmUXih;`p-hU>KkG8qEUp4TX
zfwlGX_~7pv-C$Z_lM$YMle~W#_{+c@1OFPhPEUKjuy;Y>4FiL#X8g^jIXwRe^1ke*
zfm?K*g2LO9PsMS*f5-Zm!(C2&ob62%Gx<($ceS70_YB-;o}Pk~Y2NqVO6M@)_P)4@
z5+-U@$foCSn(uYL?&17a%0y`sW#nX)`*R+TJY=G*iHA-5Q6MGNO*~?voQd+L{amAh
ziHf33pRZ){Rj%$TCaRjKEIhrkhkKZ6CaQB=&NF#FzaHS^tqSkF9+gy&5#_mO4GGpX
z?Wd&>PW>lXJrlJ}JW2V<=5<UwB~j#WSIFj*%BRi$d%Ree)sshQOjX}Rx`_<YY+&M9
z6AgtYn`mSr#RUHh#W6_DR1;|?8k_bM<S^kBLVkX^z0Ni<ak#R_W!iIHQxoeq+jk0-
zG&A9rsAknXeUEvXo5(aVAclc4WSMATqPK~cO|&%8%0xF4-A#B*WSi)0+RwXNn`mRA
zqlsJ-ZACI@g#8atUhPbHMUo@fUa*5;{G}W!<eB#01M>w*IzMZ_Dzm^ury@zAiMtQm
z!Y(Gdnt0B%U#+lgc?n|1u;++9Oz_PcFQqxxjZA*tL{Aehm~c!j=`-aIzb4}QyiYxm
z^`eQFOdR_>{n>_2;uo!}^VxSF6MapLFfr0ZKdIFa6GKh(XY)-o80Q-(I7qO4>nuuM
zF>#=Or@^dY@${z(-TZght0sn-_B%SrwSr2+g=dYk|7ShQ#Ap-AQ8bET43GVJ_#Z{%
zu8wgg#+wM52$`5*VxoziCU%*aWMZ<36(&}im||k8iA5$Bo0w)|x`{a^=9-vcVy1~%
zCT5%Pt#m&>&i8(2$L}dw`<fPpR=7{Da3A=}Gtb0)6AMf%r1hE>9$)CzzV^IkV%}FC
zl3R|fg$v!67rIwy&o42tlqNOtW83^;<9uy9I8KjumQ*U-t(Lc(migL4vdYA26R*?F
zOsp}n*2ETebO*=a7qixx*l6Oya`$=@8(6(@z9Y`8rAyp9#`!jx*lgnC>KRY>YfokB
zY&8)LS77NBZkHS=-$6@uazyeS<X3xDf5XIXrZVw~i8oE`F|pso2PXEiH%(COeG_k+
zc*n#(2~u(-T;W|Bt&5$*$K!l!avkrP$jf!4Ps?ZQp_Hr-*<~i)INEW`T<1Y4cT%C_
zBNI!q?IgVRc5!@a;*g1N*moQVCXSdmVd5l*Pl4m8iSNhxj+yvOg48cL@401fW*lb&
zSN6EkxBcfPzTo6w;wuvu>y#KhCI1w2OUbIZ*!|^7w-dP;8!CNG@9pf^(cGC?;5cpK
zjEVCmell^^#CKAqb2MO&9^Z3VIkOrb?MTjoeqg_tNLu11kC-`wJ3D?h@rwz+i2&!c
zriDHCWH5?Fe6-xn62HxJOlg!AHldg(6-DVNA{^`{{^1xgp_$N4{K`t2Fie>24ihmG
zb!OzVnRi-si;eSLZJQrAVVOwK@||qsTrhESobTa6$L8u8mB#zns7od;oA}+tA11DF
zoJ#$#nfT2_hvclRLI*pv(Rg2a!$KOC?fp}%@t27{{o3z&%{k~~$Ll8kX1^yFddB;D
zjrUQ0)8s3xQ7mfv)ol}Z#MJjq{3~hin)pxZ)2(q<+eb5cEw&AEk2NoF+-;P_$|prp
zd!BRRcwg}-N<`5#R^{_9j*?N#OwQV!R(QgwRwjyvB=g!)l#SxyD5^zKJ&JGEReB_f
za#56zV(TLJ?p|3HqNo@}u(P8|)b9OCQLG&At1LWgsk_RY{6zJPs?7OPS6*+8_dOcL
zV^KUInLi$d-pNrTikeZ>^He1V%PMs6I{st%+_Wqbc2=z@s$9rp6P}Esjwn18MP13E
z!iAitMbd3urDvj`F<*-1ygfC)zRVj91fPw9f1_?FNOFFvn^Rv(6sb`-q98w$ThSRs
zS`_a@@h+1@xvho1HfcF66NM{^?osrJ+CQ%5D`=WU;f^9bii{`<CI9A8WJckQB8L@-
zqD2(hQM8VtC5>=6$s<{{5=|y&1;T5RIH&Py6U75gdD|%3G25QWESK0miVjf}MA1o-
zQ;qVDqL3??CzvnDSSBGpxH?DCC5o<5JQqbbQD9mY_dti7YR^Z}lXGkoV@2VGDEiPo
z!g~q680Guh?fUTY3F#fh%R*L4as7l37VICz03idTctr?P4HCjvE0BBFBn^pTXcVuC
zaHQZc!QoMi5R&{^(i4(1^+!c9T7=}a)+CLKVmw_aidj)i5c!m%*oje0D&mvrS4BBY
zjbd7ne7cYs{}Ve~B#Wb%6UE#p=0)vwnPt5u^7;Rxxgd&#MfofeQeBEzB7CXfvM5+d
zCSO747s;w9ws3$%u{w%1QLGi=I>849p$*qZu_20$QB0H`XYx%^Y!;mdxxF66wkUQ+
zu`7!0BB#y{A#5gpGR@!{QS6T5&7#-_vuqbl`z&dXNcIZ8MV+HbZx<z`!oDcpi{fS!
zx1xAIiv3Z18O2vod=SNlY(kL@4@7ZLQa$jQkD~ZEicdsxB#NUP6m^q6mEa-4!yL$c
zY&ZK%GC3*2V}i#88FeCxk;O`%DxLLtk>ragP8D%x_%$b)D56osMEGqKKSpsriql0p
zXM~)M;=3rm7k(~^ABtih^bQU9QxrdoP!arvej>jf^hXg8Nl-8(_`q$#!kIP_g(_SV
zG{qnEC=3a*6%RUy8OB9&HHzP&u%bvraiK`(Vidm$f6(KXisYAtToGis*P{46iW?IA
zqe$nkDE=(s96K!Wx&;4@;-4b<gE}yW+fm$!!Wlza%pS1+Mo}S#iZR@c;=d^FMR8x;
zo7G5)p;!zL#ZWe8TZ78QB}s`GN(w0@SX%H)E=fI;%Lu1c9~M$h@DV}A&aRtO{(pF-
z7%In5D~8%JR1taA7^=l=KcRAUk<^I&pMyOb1Dp1k2p^CA|0B0%3@FO;3Faove=>$T
zF(ixpsiN3%>yn<1p>E8ctC{~ZMe=$v)Gy)<ggh(QFot^PI#RPyQEZBkR6&Oz?b$en
zCQ`|MF|Leo#n6sbmDpx6WO9=qgIj{>f*B8Z&*bJst!Pms$rjQwhE_!qj}Vr^TZz`f
z+X%KTN}Cfy`xv^#&|Tym1Pf#6C{@apU|tOQLJDH&B!okc?RsEmlFlOR5<^!ZlsqSd
z!?Q;W&&S}4p?Az)eR_)ZxH`NLvv=CPMD4{GUJ^ou2ey4c$X|}3k7zQ_zM}I=v{irl
z4`1%LCW+Ue7+#@w#V|RB6$eTVj^Wi9hQ;i4c1X;=#TY7Bc}mi7R$#nuR1BkI7!kAo
z@;_4W<_De0`DghtF<fofbV3YcWA;Dj#|e%X)M81LFm@t6q+@52DKSiqVQ~ygVwe`g
z^ceUOA^vTO^_&sItQf{5+k9pW<Hy@`RF{^H*~~w?>6{qm#xO62jgL9z$FNW|c@Ov+
zow;qv1u<OqIuql4i=>S|W;-6<T0&Wqxip4E3>RWp7Q=FB(TW&8h~YzaQw*zOSRKQf
z7~Y6scMNOU{1~>yusw$LG4$N-+Q8yCU_Z_!A7gn=-mb7IhC^NRHcM8t(iS0G1z#6@
zZ%|U(mvVQ+u#3LYC$-Acj-4@_t(HpRqQw>BHB;Y=VNVQm8l>)v;dIlCy)nGa29`}-
zTRrtHN}{bEZ|2M{llo2!@3PLL3Ry~r=_U6TbH5kE`!Vc~A!AGqgS>bPc_4;^%s+<j
zV)%&0jNw=e$7A>;2BUuJkr<A${@2n!WiM|nJS6;Z4CS76QaI{q$4?)7KjT35XFYj4
zr9ru@6EU2O;hPw~jp6eczTh}|*7;Qor&zHa-UBbCekr6=t6cJeuhLuU?yqC`^pDKD
z<9#(h&1iZi>vRlfV$cfn0%^`_hco`NJm1G~E{5|l{1gL)B|pvh@OZ`#?1JMNKMH=-
zs@=~q{K5*yV8&3Uv9o+uyU80Jez9kOGvx1{pkRouD1;J4NJLO&iA8dqUVS2i3egy1
zF<3E->Yds?>V9EhYCHxa?q(`SG6M@dl>ZvT#TfpM;hz{TNpaT%Y4gi5T#2Fj1m9J`
z$&GS;qyJll?cVhM9>X6o<lW6Y@nUM~)2V;PK>RC)>q5v6@ABS=;U?#bIBLalD~8)K
z)QID;M;&)!_&0{~aa4%oZVdl%o{yt!9M`)!?{V6XqxQw;?=!1z&eRFMq&SG=#YLfn
zU`fGJf~5t^#IbL87S-}6_#TeqkvPi5Vb;kQIKkIF*S%|gPa=a<s2E4zt|?XHh|Wl<
z6h~zVR*8cb<x?m4h}Gh#9>=4sZ5&UYO0S$%p12uVbuXkm9>>B39+Fm#9W~=X93;G~
z(@C|d97mHln#NHlj;G>C@Psjrr{ky_M{*pE;&>*G|5mx`$I&2;dcygTg1=#|{&nWF
zaWtgltIWNp-K!_~KAqqr-!$Br!Uj(8rN;5|1fSyX>R{6*`sz;fMW4t?i`#QW<2XJ@
zPTBWX3egouvp8DB(K3z+Gc(<BG>;=Qj`TP(;t0k(EhhRpO!TGBbugBgMf1*e@VYq1
zerZ*!I6QHjJlgrg?#?WyBRh`PakPn}Z5&<V=o&}6IJ|Lmj^k3LMmaRvLybDb(J>Cb
z!L@zdo?2gS(kM5Myf_wRl;{*kejM|A+pl*kkk}rJ?bnxmpIoL;f{o6UX7HihB<A*9
z9M0;Eo)_#EM|UA__ei0zM;wbgHX`XM!kk)-UJ%kt@I^Y0S(>rE<9Ioa0smm&Kj_2W
zjHBQRI$c4(IQp|UFW|8Y7!b!mw$Vbig+Xz=631;u9ZDS>#}GOUy&{gGal9HwfaZ#0
zSRBLS{Fp^byC#kiag2=PE7ondb5tCo<9I!eZR~<L#>O!-j#+W6>X0=qj!AJ$j$=H{
z-ZObZ9Mc|2pD0LjYHvr5tSNMWu8!$(dzG0gI8BiETr;FkU;iYDCC-jxP8`LrRDUgw
zxpDh&uj1Ywtr~Z|+SxsihK+-S3ng&@-I6w^q2gE`$BH=mO!P7HC2=gJDc&wz7Dul#
zsS_6EkWZQDTPej+VI%8Y#8=0$M)=wy$vPqH<JeFnsq$FWO>q>C$lY8d*&<|X952=^
z!wk2_u_KO8<2V$@PC85z$B&uL_u|+U#~X3%j^j=0$MJR?dnEQ|xpeC6Ez<mSKzjz?
z5w&+km{LA{pOA@DIz7nk{WzHCe!9I7@(+a^U|S~o4hsKB@MFPGIAms5q8bOw;W&;<
zg^x&{M+HBNBNA!!eO||79P$@CDAV&!6t(W8kk8}zqDXQ|$d`g^YM1$1{NWqHZv{^a
zo)J77$9F=$-0u8d$T`6u1b-ByJDrc?C*eN}{t|~@i2taIv8N3u-v=9_j~#QqJJA=8
z<I49f6~TxggK8X_a9z+SlE3uZ3$Zxjahz{h%;G>k<8;(-a%Q6a&eB927vlIej*D^J
z<gB~Xc`1&|ar_p?wK%@6o_2*L`XBx3N7up6oLA!rEp1$?kL&k1{)pp-=>JJS-_@3y
zf5-6`=eG{cuM57%w>EcZzAMn=pE#J7<l8N&C0e^!#4Snq-g(!ZIR2%F^el6ilU^M6
z;^?;`wfEfQ`*9>$_K>V)p_ql@7OGjOZlQ#QwnLny1WO8f_oUVO(^XnHqsmx#NO)Pn
zhXo%giY;fMyoCx9tZ1RCkV-|dm4#Fh{Gv|dOJ~Y5!$&PVW}&79SoR_C<E%rK6p|XO
zkJ_opNBPssrCgfmtA!MjCoDMseVnAWg(of4ktVPe$rhd};!g{yYvFw>^%=o>7U~P3
zq=ArU1sf92r&8ERlB8Hjwcub87P2f%oz#j~ngy5e#ul1b;1@t1$eUWA<N<Fc#4VUE
zm?7BQLZ%R^Jy338p{0dZmi@%xL0Znttbc0@?JRhu8f^sI3hwu}$+6I$Jb}j&=wP9v
zg)SDlTFABR*EMio%J)a*Ss1;lQND!&A)PFA7V=NTQ)pr3@t!14A8)id=6KFRHw*VI
z+Yh^2=wb0UX*Pe}LQiIB;gE$FEcCK4%ff66FIsrX!mAdBS@2otZK0oq{uW-g(Cn4e
zJ{J1yN{?>O`fr)1uke10OHy*Ady4@U26FPZz}VD=S)3JLu`tBK(QU55%)d-(y;kjr
zLoFDeX5Q_aM?T!*wg(d}OtLW2!YB)4EsSGBSoEKn+`O^GF&1VvOx;~BmBAIATa35x
z!&6x+o==@1gq%Co$rh$qm}X(R2w5WQFjZ=@>DlLISjg|2+hnfivvR5a>xDCEgj*>m
z@1@MKFxSE+3!5#>voPPn3JX6kYWEtmiWM%lu*AXw3kxN<@hxxCiLQ$*R7~ppU8O8$
zwba5g3(GB>`=`>*k%iIMU4tt2V8TZ`w^(Umm4($7)>v3?VS|NtAIVy4VMgb?b;7&9
z*Y)hZ%;J-LX?wi?zUkd)!TpYRasO2EEf%&~c-z7|qW`*uofdXUs%;jwTi8KAtdz>E
zDz0=e6E^J)3vXK3BkkJF@z}iGz4<wm@3l~CY0g^~*x0cpooqFQ?^@Vr;X?}tSkUmo
z_v~?j{TAN1;Mvu_-R|01^X_GSz$oT?FO$_~dk<Rp*up2$_Kz5~IA_|4-2Q)5VjWlk
zHu<oHBNj9ZI=kD#XBN&_IBVgUh2s{!v2d?jJ8GV=@P&m_tdID^=h6_ig{}V5!dDjV
z94e%dzoz96b|tSp$wxADo0qQgt%cKKCH5>UK*@LPEDOI__?}(BerLJmQqR*|BMTd*
zm;aHI(v1|V{bXTjxzve<C$n!0dXe8k$U>O4s-GIL5R}+v)!lzx?yiUd+0iO<p6iK7
z4m8^Ifw>eK7EBAjTlj;1Wg%waqJ>Kq;uhG62@4l2G`f*uS*TYgm4rf)UoFsEn4A`)
zOJBBd#llr_@2tb#L#^BW#sS#6-8J^Ye<>v06P{11XHEUs`=^D!E&OBQFZ#AGHS2fJ
zb<R`+Qh9T9gMIf>D*NTOg_{;sU+OK6<(E@eK9v2_#jHE5=kJ-^ja;jgde_2#G(N|2
zVOp7o(>Ur$X0A?4N}yN*#S<uzK;?w3Q!;^430yv!N*!uar*r}&WfI5=wdM7Ykg^Fp
zEaZ_QdAS727x4;0Dke~=NRs+`xhe@%O(0{Ek45vUmO%9cm_PaWU(y~=phg1C5^yI_
zGXW&*cieGX$SH1d@5i1<pjHC46L>NKM*_|S>Ll<~0-yG1*}GR`;?oH{E5W)6JR_uD
z0`-M32^AV7K+Olr4HHOCVDMY5DQ_gPDG79&<VzK#kUTAc#tAe{@aeYe$ysT82R7r?
zgsl!`lTheNVAIvq@;zFnQ*&)9Yg_dKG7@N>KqgzAz|I7ACD0;)mI;hcU_t_|67VF@
zC4sI9v}x$fPM|#}_5@lpm_XYERxW?OT>{<&Zj8?9^?2&fN2@IOBqN7bs_%UC%XH$T
z5?LJ+$V(tUf%ElJa}%KCZk^PE1Ue;9m_X+QdYF|)ZFUUn+oHo1&qsZ7$$5|bQ`yw#
z*t!JzComv^?o><QySX_pCGdO#Jrij1XUhLa(^Wu8adh3q-JMHtof=tVmt}ET90CMq
zaF^f&_k;)%+(HO0fdm31B)AiTBuKCrGBe#hJ>5M5gkb;e`u;tq&po$ZSC_nc_1a!_
z_wwQXn7TcD=*dQwuT#=U&DAtzVHsDuvgs^p%oMMeI`pBh5B+@T@52C&R~6Tbrp;C_
zX!xR}i=|bO7%Sl#?86X_pbukw7)n+9Fw%!nJ`DF^gb%5vv*X#;tdZngoo0@5uF)J{
zz4PTlt|m1+Ppf;lgnFzG<9wJvBbnCl;~}lb`;fCj`qw2~pJz+&|GI9+YOaYs9I577
zTp|4fD!~Un^jPP^R3E1K@Uah{_%NOJJf-1mA3sfClNmnD^kEijZ`=B6c~{%&E|R%E
z%=2M^4<E8euj|hD;b@k0R?+fx-Md=)%mmLzJ}l%oHg8s-hHFeo7x$8X>ceL~tngu_
z4~u-@(}pEJER|%j4+j@!{Cqa`b03zmCDR)&_u=aStphz9F8!kmbCzw|Y{X{`SNX8o
zhu_P%)=)(yT|*t7@VQi0x|W9wY0Zs7_GrBi8+`b}hmAgb>BIQ^>6?7GyT5r#<JLcv
zbuH-A<|`le3Xk=y?&@UERv)(c@P`k7`mo)H9X_1%;k*w!eb~iT`EbaG-9GH`;Ts>m
zWvh5BEv-uWJ|Di@+kAcn*KL>Q#n?7;`nh6x(s%WD?f2m_(!XQ21kV8)XMfkp8lIH1
zsYY6}!#;dZUHNc~(}x2=qvC@g78|PjqYtrZ4LMRbYPg<WOr2NL#eqBS!wDbGaQg3U
ze$t1F16-$kIL#^Fq}f4-hqZk2S!=J$CTC@yb>B4qC*r(7&y(c&m8Q-^e7NMp&p!Ox
zq1!JsU3RC3>oSYo*8JO%t*`oU&4*wW*L5FgkS{B{{~ezZJ6MMe*qPDnh7WW9=x~Rs
z^Wmlsw|uxQCBOUdQ5ILhysmeHotMO%7f!UkM>kT+#l}C7v*SL8DcM7Npd}2tkouPo
zfBW#phqpfb<HJKAEFZ!?Jfivep!*Q=;fW7E9~2){AN-tF2kQi=kUZ%mxy**2AE{HU
zs+(NnY;|~ov}%us%D=YOUB~J9;#8{P!;i&Wy*m{#Wd~_0G@*zOQ6I`3tn(j>^5Llu
z&uNy49!j3k!+1PYa^uSGs~=_j%kFb%^13GHOy9ktH3#mc53lGp6Fr=p-72KNmgS@+
zdgA=Z;<xXn^Z79=<jm?v4nK1Gk<E|nek{0<N_+UJiYvKrdM-ciT}aLCM;^az16Aua
zJb9>2UcYS>tq#`tc7SXC!i@ZW6!4><EU=Itg(ayov`rC7Mpbha^`m>NZt0BH;&Ahe
z@3kJ|O(^b12|q}<b>7stv>#>s_*BJbD$4o+KVJLs#*cD-yyM4xKOXo|-j51??C@i!
z9~J$0uXTJCKdSms$&V`?)3R!%D*MqqZ+3N7S~Wka`|a-!Z}X#uA2t1$?Z+HHYWd;t
zW4Iq9{1ARP{c!u?VV5<Bi@kO@Pb9jJ1UlK@t@R_pkM@3a@FUTWBtM$^(aeuzKWh7t
z?nga8Qv7JqOQh26`*D73Mwt>K&5zSfMD+=+__*fsJEE>1*DBkjz8?+zm|IRX^y5Nq
zvDE4MuB`axg!}3Cltz9K8~f2jk~W<Llg<6e@T0XKZCHgL=1^x#KU(>DZQvM~PyD^k
zS?GZK*EmtNycktewDqH%AB(1VuN4>kDNptRf`3VP*N={Vc>U<(M<+izQ~!SSpwj&4
z;zw6My0P%O!kj32G!<#J#J!=;DW)UqFlXCmj-Gz>@}svOLq`?*I?2^#lCz}KHM5!+
zA9i#NJNo+3&yRt8)Z@pNSC0OE4DcfwbIjeJGQlD8kGIPi?8guu?#D0|HCFHsL<xgM
z%Fsgj^NN>aM5TeEU%D9Sx9?)!rw#ZqN^&MgOLFGVxUqhW^JC?3&rCnY`!PZC8FKGL
zjzwG+Zp=SPN+wJEz>g`CP(D?XX?{$XWb?^96tXlPMVuu|>-0z5TtDXdvEGjje$1x<
z__35m&T-G~`p}Q?826`se8ho}-zQw?$H$rc6G`55bALw7`?1)MC6wf|pJH*#n=6IL
z54<n)W4Rye{8&@gy@Dmj6<aO&N}9p-Hmf9Z7x~U9-Zg%#rEQaxbra|O-ZgPqGd?FY
zOS!-BW24`Gmh~ld&Q4u-Zt`RFg2F#f@qXpUW<Or6&Uie<`(}!lyS8#FP4%Wv_0s;g
z%UQ6hP&WRinP2?wJJq|(kKKNJFx9)qkFWhGJ}H_1^WE#mK3bO_-_nxVD$eDqjrRL7
z)06d#RNw(WzVqXtABSY}s6?vtuq59TGbKkP`O%M`B;lt}neABS-s66pko=^?Q<?J9
zw9-H9FVvm&;~Z7=&{OP37dL*>p3S@H=dYaY{|;aB<7YoEOMYD<g}+F0#gD6!T+5X2
zco6ri<iBM~Zm?g@tUQF<Eh)V1$M2bY??`f2;ysBh;SWFlq$T(f;q<)WWDEcD<8MFy
z@ng~v7avwwemwN!ksmX%B<6bSc`W7J^+Xb%L_aNRUqZkSMG{paC7K_>Os@M8lHACY
znDnuxhuK(5ERr+IA>fDmE+zcuM~oh?U6ZGNJo6*(`$^>7o^vXVO!}AZ8ueaCd@?49
zKc;+1&$H3>O5*H^uD5=~1u!Xq$pK^uAZq{<0+<*;wg9pRkSBnF<?JWbIRaSTr)#bN
za#F52E{=1)9N?rRcK}zsT}ko=kS~Dz0Tc+JRRFC6C>TJY0BQ%25<uYqiUjaZ0ObQH
z8n7S8lndDNom;U0`0>%=GFd`mNr|NbD4m(7j3i|PK&B+Ee3sL3S<2<EQ$b1`0jx0N
zD+bV5&sB-Nc;(?%S&}Let4gdEK=sVMH3F!a$!i7VhlO8xScs5CIRkJ>;+E)<$i49a
zBuJi^DM^wfIe>?I;+Y{efI0#Gi^uL=n#A+~W>~f{*A3v`;o^V2t|xcZ4`9Q7&*gvP
zDQp-(BPnbwk&-3>G?l!W#O4w+B({*)QsV!<KinpOwgC(ZV6YUn3*fx~x&+WZfDQq?
z8$j|YTic!F-i`qbEf&9Os<*RD@|P3b)m8HSt&;mm(oJG_i9ICtl-NsRZ;4)seFEq!
z2@82%EX#}=3H<{Yz+T@-7$~vXArJWwRvN&t0ESD2^z+%DXMb=n&xim<vZt3l;{y0@
zs&`ZX({$TQjF!pwC61BEy<-FTpq!gzysYu%?YzwS?E+U9ck+7!k}k{<9|SNZfDv=!
zK2b3>fc{Hd*8`|mI&E42(^+o-GXvNdz?T8c3Sf2sD+B1>BC&Yx#&ZH#!e%_EH8+5H
z0n88J@>K7*hqV?3uz<?Uz=r`O7IpJM?nePEWFhxzeJqjWlK?)I{4<Hwr@JUzEL%wO
z>-A(7yEK5$Sx%9-WdV#2)mkp=qI`uUC5yzZ3Se~rYXVryDK@m!xCgb@1+YGVF9JyW
zre2;FW$wr2_;hc*4XkT#y#WX6)qj(=aZkNX0els}$pB6TusMJ&0metw+9{jS?GxA5
z0Ja5CDmgo~w4Itio5*cP0BReX><VCa0DA)XI)I}A91CD?0Q&;?F@WE*y34)vd=tRo
z07$--xL+cZ2PF9}fP<18%9MBfJ)V2NXUC=Fh{Wc<xG4NdmYF+iBDH;7@)HsVR!(4D
z+}_<2e>#9O0bC6rdOH4W0OCPyYl-V(0Ota{r$|2^zy)sW6LS3Rx>h!kzvH|Vz|S0}
z06tunbR~c?)4cyo_5Kpzze2okr+P0xZ@hP8!nJ_?Rw(zxEUjL}{~Ew=0o(}SCVQ%2
zpMqNf+@}5&G*j?<0C(uA6ckZ#H-LL=MgXw@?g#K70AB$90R9Nz&j9{r6`WHg3so{4
z{1f6|oOh)~)$Zb90FMHA9Ke$R?hbP9A8r2+ac&jywz}Z;(!A_qYcmlDKnWlefWc7+
zKnoxkfF6LSuk&gPG0fw7EnH>0I^Px)ynf3lA<O`*0Kx%80`}!4ubobY?GT9DYg2Cb
zb&i?nEH%^fG=OJxWeTz>cupr1!0Q0s1n?q&{{na!z$-cdkE>$^aek;X)<)c#AYSm_
znx(}s!|~SkfsQx@SrqV(TCZA&(^bXf{9@`?P9?j@t{{hkybAIu$f+Qgg4_!7DBzXb
z&Wd92X?Lk4`^S;tp3c9giK<&t@+&ByprC?6RO3`puZ)=2Nz~ltyb!40tGO86QdH~X
zEUKWG0-?aEptyn(3SU5@f`XC?Uk0I!g0c$U40gJPiqZ<2&k`NhI(M`dn@^=cK{*BQ
zD3~)%d>wSWA16-tbZ#ExTryTvR8UDlbp<sPR8~+$K~)9S$ft{r@q({AH-#K8en^Q_
z5(|ro?$t$21+^43-r{t~UT1i1#nzZ9CXN-!ZkJ1eTR~j~=?Xjw;uX|ZkfI<#L85{r
z1<CTLv;Ca>+2yB$M4bX+b{3H%UL;QQrYfkTVDbQwrXXX2v*EFngYSrHPaS{694)7L
z>nW(Opb@K9&_F>$1%(GWQ>GW^l{`nkyxYZOlc1xC!qwRwpB_oiJ47(qoJFxr1s^DA
zp`fJ#uYx`bS}AC)pp$~m3fd@WtDwDt4hr_<6{kxIWsGR2AT{a;KXo+DC8leRcNKJ0
za8`FD>yG)=#eX@(dkVTJ=&qm#bzVSpB_AoeDTqK6&m{^$q(67`RB)o5=%t{y!mpJI
z9?nxgODo;2t>qDY74%auLcvG{{S^#QFj&D5j#Sh!gSRIN22p!SuDe~tZ~xi<3>~Uq
zSJz_06bx6u+YJuKula4||I$yq%qd1G7_DHuf(Z)VS1?AwSOw!0q{Z8}IeUe8I8=<E
z<b40F<IiV~U54ZRJEduU6BSHSkiDol<q>@>$4~vm6a`ZiELX5X!88Ta6)aHjp@JC-
zW-6GgV4i|m3TD%m*wpOeU~!?owC6H4!zwr&oMPX*M2*&Q^J!O;MdRw?BLxc;EK;yo
z!N&?dQShmP&lLFL#PDg}s*S{ym?Jo{#mG(~JX<t=>R6&+se;cHEaRXgxrV*5|D8Hz
zLdSyHMD-2M5;4c8mBmU0s}yWf@Rfqq3f3stpx_IZc`k0Pf^`bk)0oSN2@w1*DsLFS
z-|D2gHY)g1LDNEF<b*=hj8R+MXfD>~6q^-nQLux?sbDMT;B2u?!FI*I9edSBeDcz<
zp<UZ<?~8MqW0!*6v=aqi)54331-WcbwQGcP_4bq%)x_zijuBPFHwwO`a#XydV!wg|
z3ZAfG3cgctP{B0?*A*O6a9F`<1!oj|uiys-#}ph_`0XJ4sNg3BN2%&*-eOHf?HOWz
zPw|fsQ+K6o8fM><^2YFlf|CkP(P=z)l#4hjk9RV{VPQ7$;C*pc!8rv#E4ZxSyj1c9
z1s5fuwOpd1CfRWgFLtK*R;O&3=B0jqQE-J0Ft2!c+C6(~%2m$awu0OD2UC7k@SB4B
z3LYr9q2Q*1+jRJxJ|msCWSRF%ilu8)s`eCj*tG<4SHV36Yfrg(>_>58QbEzMipcxS
z@rQyx75t;%p*)JA5u77`v78#>Z~DEJDgA4RD<Y{}UGYf4V=7^gIMGGWTPiJtUqOH_
zT19phiUL)^Qw7fyXbOS~ECpc&x`L1bgHuC}uP5fX7}p^8zmBuXV)H;T_l0B4&XkdT
zoDq(xf|vrwdglehLBGAMm#7gZTAPmN3jXCh<#bl?LcxCuUMhG+J%=5ga*IO+L_!-e
zt+hDXwk@adtt9bQL7a*a-9=Uv`_?<Ns7U(H!MpOjBb^_)T)iiW8x2Gb6**NDQc+k%
zE)}^|<WrGfMIIF+mv^Mn@~WV_;0zkPBBgU%@$jhouSueSih?SrBD#V@|2ocf7DZGP
zRZ&t!DHX+dh>DwAvQgV5RLoBkoJWjZ`LbPs_-3NCiZXoiqXH@xY<6xeC3x~0R?7aZ
z@PAoFk)!S$LX=lgK}A;;-BeUmQAtI*ih3$4tEi&Fqat2KRTb4#I8+D~)m79`QBy@N
z6&JdRH;n~<SZp;EoE=%acbt$aIzM+fRk&2N``6)C(LbwD`Z&={AVr)z=GLo<1Qm%Y
zYO6?5L1iYX=$Jz!tJqys9C_v7Or#r0RZ&MpU1lgHrsWgutBNk=M4E~?NtV7Zyb(uz
z6%AChR?$X9LluowG*i)BMPu5A=4hg#sfurEilVhe{7Lu8rnXP}AX#LnXrZE|idO7w
zs_hAnpK)IrE%L=0em~7yf2QqA+p_U&6>C?~UPT8Lmt3xQRd7!2bcmS~#nPwgQ_i^0
z&KBj|ah+AXr=kl7bW6%FA;&V^k-947ZY}$1Om`JMRE$wERz*)0y;KZVF+@dg6<!tn
zs2mjonutCs`l{en#Jdf}o#~=+fAL**F+jzdan6A%2623+c@O-U!jt~Jk2`Kjbd`PW
z7|Q%K8x^Beehw(xaM~VoPVM9=D(KJ6BPnzXqgA}GV$<rBJ3pn+y>Blhek~$ytxFlF
zV!Vp!DrTsdpkktm4^&K1@oOnDNyUH7+D=x%%q;5l5V0y=^lK*OZb+G`Vwwt;vpC|g
zMmQgo5HnTGQZbKKr*ioT=BSuUgDEaJj;lvH_w;o3GacnBiW>4HxPaPI@v*e<4^@05
z39X&xO0!J<%Dy<^qqE>NZ?}MFk&4ACR27<vB`TJx_*une6`!kE#x|(ft75qvWnPf;
zPmU{8tW>dz9mz=Es$!dp)zqF$u2r#-15`JjyVj{#FNGT<exc${d}7Bfo|fB^zEp9z
zK)p>WzEZK7HSYCnFXG<9aoOeJPn4{pX%CAfZkI=~oRY^Am#lK_P_dJG%b&Q5rYp%F
ziFejEp^zoqP#ybt_te>aaZuZDRD4VSui}7;pHv)G`Pjj>((kGEBI2WA;-HE{RLd}N
zSYoJ<E&PGD-9{Xd_@hK7s|^#!<gx41Y}b9<F3OR|DNfLnIK@d7rz9aiEy)>)XC<Cf
zabA)O5-&<*&P$TCJ(2Q@iYqGas<@}x>*%klc4Wm3S=}{>*V$l6ev`-s6uZ&-rixoC
zZmam6^CeG-YvF?Hjx^^QNp5#k1V%L@xv$!fjvuM8vbw9LwRu3VlE&YD;ZI5al1Rzl
zD*nmj4`uBXK34HWg^x43rCX6m;^)Ln>ll#8#dKT&M`2KfuHuA-lNv&-QAMA=rH*Sb
zRU9l3@6_PZV5tbJh{(d<(xqs2AEPoEllWBPGl|bt{42=|iT_D_DUnCLlH|3DH<Bcc
z&PHJtSzvArc{F5|Je$Pq8ggiG6wJ1GarT@Va%uK&;M$jS^UsoebdXm=J`LqGyrUt%
zh5{N&%cBZvD5RmNhGH5DYnbZJ+U0DvBAUITmeE;1?saqYi)$#Mp`?aVEPsY)=Vs3l
z%Twl*>%)AG24A=z-*WBmm{vwZSq;$ezpB{=P8>c7EU%%0hN>E>$?7U<s3J)v4V5)J
zW}AWKZ9Cil!TjHW)iu=6AY`7J8iwS}S&Nm*B<o_U_$Zjwu>q%)Y>yWecWdxyNYs#|
zp+T+qcnt}XjNj>+oj;*(lXwb~HPqHHQ^PC`DH>8WbkWdNLmdri8ro@mlbcvqL%N0x
z4J|bMKG{`ILu1M%ug?M{p}e6ajU)~~pV(BhpCC2Y?0>*5+U#kjp;f1ZM|s@6*V>P9
zS~96&Zm0Nij}rH+b+y(&Y$NgXV_VWz!`__vNZM=Yz|nb>_^yU&2VET{e|5>`oiuco
zLh|=Gc86Rf-86L9FiFE?4LvmU)X+ymUwKq7j^@6E{l3IyZEE+H+$(Er<a71Y&|hPK
zLE;1r12hcOFhavf4TCh?x#HqBOv7NwhiF*#S<=u<d9^GF!!vn}BOc})C6n)K7%d6Q
zq;QOeu^Prn$#`NyBDL|qlF74Z@e?&n$>H8~#q|M+hUx5ejRZ>AHuilgyQ$%bl{oK3
z(sySQNoL3%G0$ubb2O~du$ubRFi*qh8dzZU%dYtvKGLvI1Nj0CUZ3kj4Z~U|kc^q<
z`dI3Ju?F%_G<+(_XA&1l<O445S|YP8l}KaYkWsiy!*ZF2e1#+{HT?90he;0Z8Vy@D
zY@-cpSf^pVh7B4vQ^Us-iXF}M1!oXv&FZYi(1eY&Ue3)ou1y-4<Ti9*?RNRyC0A$N
zBJ;1*lAaw(*sfuRhQk{EyYAVkVV8z|8otr6Tf;AdYJW{r;W%oDADTS8d>XOd(OksK
z{cGnvnk#=c_qQ}c4c}?lPb10Z=GFp<tn{FULmF5kIr9_08d#fuwEUi?OKo#rXC(fp
z;h3!VCz(7dk$JdlWRt}H_v`cd7~is;(r}s$2qGbfGaAlns2D`0AkJwx&*>k;wp|Gq
zG+d-_WKT6*((to}-!$CNaGAZ(@T+FORmnHqdqu-_>L)F|!B2IrYPiP6{E$jlL#z^Z
z7cK8@-zcSL4kt6;)NoJ3eGQeSdv9sD&8bKKP||%z!-_HKcQpi?xtS#2*T2XE4S!Ig
zLD%r7hQDY(Gg2OE_*+A>m7ag7AJwtvaeBtAluO0kDQDAp;3H0-9L~oYo@i(~-RqO+
zml%*pp`t;RT$AXX?xm3DrbFl2uzVI}((P+_qv5RvwmhsMrs1jN5s6V+><at)^UpLq
z*YHZiYc^GN{Hx&wHBS$=Hjd3;Q7<`X%e%)-_mZE><JtI*hon^gl#WMJ<ATT%M8O~m
z1sVU0Y(eA-B6rYkfA*lQlbk_JYMGKFh!g8Pi>7-ixtQCz_d-gZAb$QmC0`KNcDVBf
zk(QCs*4;IK5Cu47)4emFrB_<sZP4)a!a@7*pT&bH5k!%oy%?})5XGc$??_u$k$j$#
zL6nj;?kVmrEh{Y}lT>Ey*D1$krI40TPU7Ud@$UptJ_r(S6@qAVkH7zmZ?MNzIfx-q
zPpu%xs{~P1l4=qusUAd)OkPuxyq~vm$U}rgr$m<ElEf|1Bk^n1l}P;rT**Py4&w5B
zcTy1VeGx~J62zlA$pfyr8U>LmIg@oHNeiNG5a~hG%ak{eq`t&0hvFM%%6A`kv4qBq
zqQB;960|Qlno4XYv3U>~l2G0vh?bJKlGr+klzFZ;nS0wxLP>`p-VLIHfr<t?2GJ>q
z8#-?4=*(twy6H&N(Itqk926bU(JhGXLHroRPeEKc5Z@zczpVM50}({8AbJPk4dTNf
zJ_@2w5PgG~NW%!CUl9F+7#+m>Y<Up3rh5ldU6Kq8Vi2<pOS<OGdU<40M!)!>K@1OK
z1pCsc{;(ik3{T>FsAe_eM^dF@l15S9FFtFW`<*y9ca7BQjR|6W5T&~(j1BUfQg56@
zl7l0XCP+DVG5_QsK48wj6XyjnB?xo6cSaC1gP0n`s?#oR(}I{Td8d5w|C7|-oiHni
z*+I;aReyClfmP3yoGqz-(B(hvnjgf1AV|2ExG;#1gIE*9+8{m&;?p3O2Jv|ipHWf6
zl9mLq|FkQ#(X}Xu#X*p8yZ)qPl`mcEMkFl@VtEh~#w2wZmb4;>C&QAcsMSHNWIIPC
zt&(`HM?CqX{q=M6kRaC6)PvX_#D*Zg2;!?CHV3gW2=@I;PQ77CBzLa5Hc8GTU-@kb
z;?&S2HiIhKDmj%y$&Mg)2Jv+edxO{&gl}Zh)e%WUHoA689vqdlN0P2%llHMMvdf3)
z7S6c7l^r?22INcHAB4M20)^kP4RU;0>Ge@b>Av{G@(>nVW_Z#MLFktgxgC+DTh`=q
z+dW4)7RM5=25~Hi<Mbp!<eA|;$rjQ+XL!j^O9{!%!JQ~MBjsm#7LbIJ^O9VUcv0dd
zi9buc9K<h@T#<OJLqi^NEofgyT@T{dAbz9qbFfn5-vn`!jSnIk#JD~Qw}bdSh(HiZ
z5O;#O8^oVM{1wE#Anph8M-WX~<Sw2q&x0V}&n7=9)p$p=(Fg7Xl6U^e|924o1o4=o
z8N@@n!Qzb{1^H#RWbd|Q;;BMz<~&fgv5(4Os{+YPW~*15$3AM2sM1OgBn7D=PP*l}
zwIG)5PnxvX6AHrM{0$<^!i&e7vXR`yrp{jIYJ4_162$ihlKy#-eDOsxld&M42Jwu}
z@V(?0LHsB4KM&$xO6t^Jm@j_k*5t%iX)l9#E!*%a2xr%L7DZg!p*~A~8$_IrEIP94
zD59gNj%+%z>&UAkpN<?lnkL5Q(ve$7P92B$=FRfVmH$klc{(wVj#DWK36qlhibfam
zCgs;rK*y7(uEIKEb>a)^D5Rspg#>Q9FMGD7H=Xd*)n;66VlkQF&e+-|brjb@^8UEm
zC3N(gn9R&`>m-)aQCdeC9m~$fUwrCfEi9p&&d5Mi(otDQe3SI@IyRr`o&8RH1-AB1
zJhzHEKev@c!V_W@9kpk8OB6|~s$+krv}zKoORPccn8vN9B()?ubcjs3QxcaBcc#Rn
z<G{eQcpbk_wGT|vk*s5(j*nT3juaiUbj;T6IMq}g&%SkuRta@<r0J-uBVEU6?$S|D
zM|~ad>gcGWfsTecGIX@i(Mac;Yc$i*ocb>s-$Y_logdYyf6rZtk`BLmI$o~->;Cw;
zk6jB-H*Kk-m5w$t8~2vD>sqwI)ta8Xc``{`9qn|q*U^Exx|tZQ-H3TA4XC~7jf<oc
zoxhHARho{Hhrg$zr;b`rJlxeqO1etyrlY$KmfS;P_4&!<y>#@};nmSc$1ol0ym%hi
zS4XiQl7@2ZWI6pM4v^SnTm6ALZuDt7NXK9)86t5@SNlL7Rnbh~@6m_r7(so0Q-37Y
zcq?(onMCqx?UUHZRyPvI=$NQul8&*N{T(OCc!?7@K!@Ym_^f+8tZ1^14|H7G?V6(V
zJu;^2n5v`VK2PTpF5(Ow)ZyEQE=P&9WWzI)l^Pz-xH;@&k+cfM6Q*=)I#<W4=1J+>
zJ@a(T=h$ucERaa@p^lFvZ#Fs`lb`7LRL5sJ7U}pY>WQ1td+LJTjF(uf+bb!S=~%AY
z!N5y&EY<P3j?*8;Z`<Vh=bnec6*^Yxm^0jSm6|N%S*2sWjtx3i(<J7(*GM7dYjwsI
zqe|=Ie2H1!O#ed1M)sGcsN+i=n{@2dv5SVc$N3fKf{raZ|Mcpdc-8sf>(s66$S=;p
zP3vsav7LK&)OG*moN&OoL*^&htz(aly*l>kSbNv`H7)R}bNc~j{1Io{q(bL+w-V=^
z->}RdoZqtE{m!Im1&QD3IH=>8j^jEG(HrRak=>`$SmgO$#}OTuk2`<R`4uB)xt{Ka
z|F!z=Yv=19ob&HEkLnosqx1R?&e)&M2U!cB&~cJF(Q$^BoYC-<j=L9}byjtnS))kJ
zC7x@0Q_t%7nWfQIb)2Vb+FAF4j*A>z$=PM^Ri{xTgBwY`Kb*hlxWaj{*LnUIXP{R5
zG9@xL9&%ojO1>`fR~<uF)%{I!k}R%5w{+a5lL?`02*1+{(bt8LGlaW3?&;8U1a<!X
zv)0lZsrNZ+W_bD9;(-q09}@p$+e(YSbo?#JKN276@Jvjh{E<vPmiR=XPoiH(K$5Hx
zhr&suV^D@*{>uZLx{i>Ju5A+e#@x_h>WI=$>acW#X{)K(xkYHw#}bR3@7--sYQ6Cw
zKBdFa@m5D%2(-ZGI{u>>==fL1sOfosXxiijcg;xnY;kRKY3=rBn!cjVTynjZ_=dB?
z?7ntHUP`ja!<iv#2;Q<iCd}|=3xS7cm-wJU0y)>$=L*62K3m}s4&QX;4&i*;#5@x7
zO3W8Rt9FU`Lnsi!&UT5Oc8LW;AQs9@774K<?%*3w(GZBmBo+^$gd`<HC>27A>EW)@
zQbNLO41`cFgw`Rn3E`a(%7;)VgtU+yKUpCJSIEBqsu;4LOjeRuSt65FB&ixgwM<EM
zNos^pQ<7Q|9hrNDB+d}HCX|P}N$%D1gb*)D0vj($qD1aW3gKLVI1+BPr7$Ig)DWKZ
z%Sp+X>q_y~_4}V1*9~E1{if+5`%F|%Vtt8AW_TNf&@hCv!_yi`BxxK%6Um!qN}5U1
zJcJBMT1aduv6aLZgVK0l+Ys7?P}o2b1MNfTz_x`@EL!i~5ITl1G=yOxbPCyiyQjp?
z65o^9MPk<wx`ohP@*WcR-%7UgUyCPl>lH%p5cbUQdL{Oe*jHjdiTx!GkT_5xGY<-3
za3&ujN!~_D!$TMm!k?CVYX~Dl7!|@7Av>&bbO`T<urP#=Ll_gn*bt_LFg=8EAx6$%
zVhEE$m=Hq$LG5`B(8tx8n7{kGg|hdW9Kr`7ObOxVl1?Tw$~!O2@J^LUN*>Md&In;<
z2p?sR^(?kZE|H!sC37Usl{io0e2FxJ1(JM7^V^-B$v<x8oI57_CmiVRj^!b&2;tKZ
zK4YGp?nNPFE9qV)`C^GnBrXl%b4lhED#2{b^J<3oNsc-zLs%Wcnvi|ZzAA*G12ah0
zhLAUlGiRK0LkR2Wk>Z@g--`7i6rAZLsXWt5$woH5r2ESd>do|S3gIgb@l5aL5N6Nx
zZV939m4?G-dVBueph}k1Z6RzAVFxE*2nRzr6hf{Wal1HWSZ`VPZVpEXUrW9(gl|IF
zEBT|XZtne-RvN+qDY?7X{o8K$+)nOCSsaOT(sn<r%?w3u#1RkEMTBsKt)1!pK4dRL
zrtn936v<B^-eHv>IU2$-DdZ=4k7w>Z5yDByPi0C@|1S>>J5#d!aNK!L_7E<Ha4Cck
zT@Z&ggv%k^p}P*@7j{Z>T?^rQ2v<T_@XT{nVu`~E`!>h(A=s}W+zjCs2g_6cw-9bH
z=Q~Z9jkxSc!flSuI|;wjApdK6bf%YwG>cET7sCAz9&;{-@PGpp!apHAq{Y$>|4793
z`hU^bh9v(Rm-IKi(;m+`HF@@;gh%vCNciKvhnHTPwzymU;PHjv4?*E<Vj=fEyeJ|D
zLiV*8i6(^uAG>lqb}<>0Nj-$yGriAddd(255MG4vpOk0cQz{%nMDl0|u@IhyxZK_~
zKQ-YQXZMYy=Q7z<vs*&>zcN|y&-yPzcty)Jklny*d3YAXZp<6Hnr-#pN+gLh@M+bA
z|Ftly0XB(RwcBPOr-57se~(iC`A>OyU~a=!^8ebLM;4V=Vm<@;4HS^Ppv1N9lbFAd
zfs(VlB#eT{Qne|aVNo`QZ($@BH|#K^5^S5pRnkBy1HboimX=sXB9mn$fq`<8yd$x^
zM80z`l0{T9P}#tH5p;>5ih-&uIf5J!R5MWBK!Y$EhEc;nO#`hBv@uZ2!1oExcmoLr
z_TF$h3<v{G_R+xV*EtqfPjwqOy)FCMo6d3Hb@Lc@#Bb_@)I{0f#s-=gNRphrNH$R0
zutWN}rAU%$ppGPInew^@(j~7av3{n!fq{mZypbe)C(d(6Qv(_K?K4X=!#)Qs|E@uE
zN(_*+kl0cpldTM_iFc5+HPDXZV&Fsie*?WIrcKCEf2M&B2Hs__cP4f;Fy6of1Dy<X
zrmhThF)+@+mMPh~8t7)=z=|HD4Rklq!@y93?{?ACK!tEEZUZFg#bPD#O6-%lx37VI
zlK0P)q|WjVlzb2iIbM5krhJG2Jk8QZmO0$O$V~YN1CNi@W<{f<#PPBWlRF;Pdf&hp
z17oTGVTqk)dGj^uxxQMjR<X3ZSsW7$OfoRlz%&Ds4SZl=ih<HEvbHGWxKrA3r&|N&
z;nq8xHr>G4=^o{;S~Dc!Gl9D89ZXU`v#5|9^=C_*L;V}zI|54PNy&Tz$0sK-`H_Kz
z1_CA&6CWG+gkxc%g^5oMd}bhMKsT_+z+wYO4E$(diGigCHdD6-J~yz8V`N}0hm4x9
zDOMO*Y2Z>Xv2l#p*gB38cdKZ1>_`joVwN2c#c-W<2G(=v4SdO|S2^1T178^UczU6J
zuN|+W4sU+J@Qh6yzL$=gt>eBj5O*krQDh82;;~x|Y%}mR4cowW13L`tGEhD-8#82S
zA$GEleZ>6pt(To~^9pLWfjtKNeZ=2+1(W*>d}H9CfkOtql@s#-^HXmn#D0l!8=WoI
zr2KWhwLO2Eio={o27Zupferg;j9~oRyDuEvhUF1I88~X-Hs`5<V^pSr%LaZiaKgYz
z1Lq8!H*ks*&A=HJZs6CBf+dt`Atn!TssqK4;m+z4om-weE*Q8-jT!jafLdHIEQcAo
z3>U4(IjfWrjH+TZ%M}AxS%QJzSmW9hhBRC=aGmz!a*dqj<?0v)iQO=8)4<H01#cN>
zUR+QiPkwSUMrGb`Q7GiNW8kiVM>ItP_YB-O@V9|~3_PGKGw`Q@zc_-)!rMVu{hcY*
z#EN=iQ4#T{+jX;;9bLm1n1=@HwzmW47$pD1fR8p~Kr!%gs{IDs&oWDj5icBrN{fz$
zL#6W>D>MUr1_(wzIJ(&#2^la9lrd4(glWK{A2yNGMA$&Yz$-dQ15pDp1OFO$!Fgfe
znStkYjM;^=gV;CD{)!8OdDuvXFfmk;aW((30frr^!an|)$8PEy18)svF_F~-BZB76
z^2V891PhzNNSkb?9S3#QEwY;!=WspFYA+_rS61XQk=sOJ6GcqqF_G6qeiH>u<YTs%
zjtynSsrur}mkx$p7BubluqA~|aIH|c)hXnR9xQ62m<a|bmNao|vM6q%glS*BA0BD1
z6*@Oq6mW=ACQ6&AC0sP-6)o(T8L%`H9ux5<-ZA;lWmGd!-9!bG_b;eoqAHt|E-IOJ
z6l-Pbs;GGQuDyw4DfI{0(I5?bir>eI8YXI*5GI@~-$eAa!(sB`!NFt6E532K-*>u9
zuq91KINc`yWanfFZT@roQ&%LINHkH;M12!UCX!9wr*QeI-SOI{9RXFpyx4fK>o+q+
z9TRCL>Y7M5K?BZPQ!plz^Xqeuh;J=EsUuSNyBnBjXrhUUrY0Jh_B~)@6N9UXCm}mD
zjx%fQP|?i9<2Q~^3XA3}O^5=g+}4W*Otv)9ik`>BXC_*kXk%iGiLoZynrLUDkBPn}
z+MDRW_M7Nx;$5lXP9{3D!9_$zj)>PuMJ*iOVn@1okBxupDCrTM$B1qwx|`@}q8GJV
zPV_MG$2V@C)TUMxO!hXx*vlqw9bOau#&$R#V=|fSXQIDppZ<oK7(k1PI0mvuCe8|x
z``eVkCUUGw8De56mDa_{=sw3J=axZ&5k$+LIfk1U!DcTmJkkVrjbhiDhz&ov$w#v~
zDI{;l_#ZZ#wrXO!?9K$!4m+7*VxoyjCcbit$tFH9@qCQ4*BB?mSr2xz<EW>aI9^aZ
zDIjhZ6f;cBG%?@A0(tB#6LZ*X$!AO4T3Ga+C6pqfXF)NKqw~`7X+iNJcbQm7w{O}(
zFS)!TcQMhqym)Rn3OsduVj|X3te@pwRaz`Ev6$7FIALOmiKQmCnb>aPa}&!<tTVCR
z#B!5sRj|gyS`#Zx+#fDhnOJS&!|7te8Yh#})}=fiCkB-ew}!T0)aa4?;z4Jz!NeCP
zHnE!~HnKe~*Ow+3to3!OsQ!iX;ai6o=)BlfY&NmQ#8wkmbBSh6MVro|drJ{Z7K1d$
z4o(f~jdR?@E)%;=>@)F=i9II1Ho3M4+5dC=_JN2ykkZQ~zI)^7;c)dx72lfJ&t~Tm
z2Tc6lP~;onWU%O`ZgF^sIMYxZGI7|%5feX}_?~mHk@$fch&X;ekiuA820b$D@FyxE
z-gVT(F&arP5gVJqXu#Wr8eJal9GxIenmA?RCS3u2f{8P1IXw?8$HX}kmrVR@;yfo>
zs<>d{A~lv*Ea@iJW)W;#%NBOj*=5dO6IV>|l)*r2#+PoLE*L&{`?+IoS#h01X5t2i
zubB9a6&-S4+S`ng#=pIE)U7E-jS)R7i`(p)iN8$-FyIcgN|U46o47}ZQ$pOA#>OZ?
zMlV+xEk5ew{L{p!^-jj${$--%mrjQH(S0>{h=(Q~nRsHtM_;tXNw-P)V-qt92nK?Z
z``L`)EwuB6=;A(l>rhQ-Ccd<=$wJVC&WUWHt%Z;YgD%cO1q-GL%S1K{*)4=kL`=Le
z@gE%*t&XN{;$IU_O+4dti`s#p`f~?E8F_-HC%JqyWqI{N>w1bjqs2>;AGO0<6LA(^
zn|Q-{I?~Cr!>FEi7#j~{7;VRKB8!ErtgDOdgn4DMrmvuX$YCL;g?twBTgYXBULv;z
z28hzG$n%g}`0)d==#^tziikVdwSa|!7Rp+H1qN6avQWxGX~_#)C?ZKwiQHSvLUGAU
zNGzEtZ$Gmm&){XKjf(aX1IBvM)s(aFj)jvc;?ZEI^QGfbCBZm7#!*+aP{~3a3uzWA
zTc~28hJ~6Is<P@r;!bZ-O_KDmqq>Dr&mC)CIEb|@I4rm<xGe|^P98g5Y(C`XRl&^S
zwuSU-!R7S$Gf{+lic|{^cc#Q!NRT8^Vv<D4lP%QF<SCNy3bS9#aela{Ya!i2Lko>8
z)U#0ELW7WlC*sY0oDD2=DkI8&<)lkrlTS3Z(8NM>3mF!Et00<MXl9|>SSQbnoQymV
z@>Jf!;^RlOve4SX-(BtNje@45<{&47CkxK8!>SMD5$!Crw=l`VWD6ZEylY{og<%#t
zvN{WWEcE3dT6oVw4+}jlbg|IYLN^QDEqs+>Uq=n@>f|Npz&0YTgngmau5W5D3%$9`
z5?%|dYIJ<r!=Bn#`qgPW)cLTN=x3q7g+UeuTNq$rAbU|<JZUc&L(6GMzcIX{*m5C`
zVVQH=iy<^H&B1G@;TA?%7-wO;g^}#eI_GE$?{k1G(BqAmBX|lP!)C{eu^h^fV@-Q;
zIG<=$+Frr&^1Xr+IAkv!6D@Emk(|>UjRrYCurS5K0t+8nm}+5~h1nM7SeR~c6&_|<
zm}Q}8bJ2Lcb8>C_RQsk!K?XusOLQ?rwq8Ouo;&7R@bnh*EX=p;%MyCIYrUL|4gSc&
zLJP|*EVuBng-<MeW?>QgvN7dT%Z?~kt`y;_4Xz?tY+;For4~N7(5t(Xom~`m@XBgc
zCDFg4_`JU0Wzq@@D=n<Eu%7y~z$ok07S_;IhS`pS*MUkivDUJq*=M#9{;esOx{D1K
zHd-kEt{pu2h1B8P_0CULr&OCGzOt~{Lc~JU!WIi#EnK(otA%YAwp;vKCS#wl!@^Dr
z`z;)>u*<@33;Qg5LrdVriG{B%?3MiInyI_q6VGe8cm~PRNAP~+TN+Oe@mD3m>;Lud
z3eLpuEF7|MnD#SN9OQiL@2uC)4nNLaQhd)chdFt3v8#yq(ZWv_PFpy`KE8GwwQ$_R
z2@A(8+gEc{1=m5$%W1EbIBDUOg_m(6BawIUb|~^$3+F6cv-lj|(est#JT=Ve)3;Ey
zykheZ=SB8wbc^y+#3d?ZiuhULWedMZaz)}*iQmogG6NTMbZH=dqn<51vhdi#O$)bZ
zW)}XiaNEM~(qivXMgKYOSh!1TDPRu-1GYK)7}I`VX2?2N(6Ils@Rx;uIL$dg&m3HN
z@i&{7TfEtp()*-4JVCJgo89)@d}6_8LA9V+@Jn-2=%xyYfQ8Gmyj(C+Vu+JQK4X|O
zXhEm9w=g=F2w6DWMmW4qL;3-7y68LYgvC>U#fMS$s(&sAc$r1SEIg$$!zdfZGd9LT
zo-p!;@vns!^yFb=3*$d3*1}s0abdio^SAKEvctl!R1wefh(dJ)FB=%}KXGLW*HCaO
zWeH=zd*bD)l=yrid)SWd&KX9oFt|5I7#nhk!3D&zmi9!xRaN8;gXemZd|~7dqi7h#
z!YB|%!7%EL7Dd7+6h`4NZdMd5ldDvkc|^V0;#f1my(K4iT-eQ7Jd6@ylw|p1oEf#n
z;~t_^7-otn9R~TH!)|_pfJuZ=E(~WFt}xySqkI@u!>AVKqY3=fKvWE)QW(t1i2cf8
zeg(x<B@Et){4>j2ii>)(i}VEhrnq_-wZd@lDNq<S!{8$$E=((s$6i~+OE}&F=+lK@
z<Fnbs9fl{2lrU1mhz}znY(Jq&3WKM)M9YyF20ivKJ;atqA~}rOVSH9g<ZUE!e3Qc4
zy8cB)oiNhF;H^+v7*$*@UOChagMO8yUKsVm_H7```MitsPz%v0jK*O*W+__)O~Oc<
z*2ouzKa8efGz+777#U%l592}@Ey8FS#;Pz@htVpG)?thZV{900*!?i$9vuV1XcxBc
z<GO{>J&g8Y%<kN_1Fd4D^IbNnt>`GRlf=#v-;>xyVpoZr1<c6->JdiIFg~8>d|E>c
zDJFW!l393fNxTyKgwa=$eiHjjWS&o*aRb8`#9m9u&@ir*x9={8gzeiau8$ZdB@_;q
zWJDMvGbN+K7@f)Am!wgJyyL>Wk;KPgd=kclFeZjEi@ghDQW&q-Ik|{{$ZfJrejss*
z#HkXeQ9qI}&kRXshHVee<ead5)w;8wAkLMXWL_BaC0`)%Lx~?rTqu!wmh~v`DTkgz
z?9A4_X6m9aDy9jpN2t}gEy?0AmPpA`iIjXE#<EPlJd72RugsLNF>AtD8^*CPj)$=>
zjP+ssNDJq@Bj2C0FN|-(_#%vrG%XfhQS9JE=qX4xh4Gb?Y?esLmN2$TzAaO-T@rgS
zh&*bS#N872NMuo8OR`s@c)w7GO5)ovh)2TMFUbLklzhiw&E$u|I4t@1nUWvmC^H)!
z2(ie%W=GlhDsePXJ_=azmGeZHi;{3AjI&|;x+|aI_-mN+R2ZjefeH3a7N0*bGtWU>
zly@%7a0`1y-o-F3h4CPaKj?YFxE#hEX&zjN^b2>Hj^D$$LPJ{Kk=s>Cu1UNu@mGnz
zNxUKPro>wkZ%bSRd$A0!Iq!yXkMmR-$&qs@o6g#w7SH9c|7RF~h4F~WjM=BEzr%P)
zn|$f`hl8s-qNUmqd5y<Q@yB6234`lUHobK`pXFtl0k-y->lMu}3`KG^3@wac7<w4d
zFk)eZq}-qz45L$C_xP+yL@SJN7!fI9{N%hXF8`bOyC>>1kp3y1e;6<5>cg1VFyXU+
z>+=(?=d#)VhV9SiPCJ>%ko%Wm5E<(}?wqSd?woI!|3&S{$9ahxFDJYWqxW-HT*SsK
z5#GYv<l9n-#46*HMz&1I89}ZHQX)u=Aa?|LA}A6;(FkrYkIx&iKhj<>g3<e2`69?4
zL4gP=L_AD#YgDy%p$Hh|TUg@M-%`noMeIlJ2@!PoGO2h3B_dEWJS8Poh@g}tr6VX4
zLD>kn9@W7msS%Wm;2pbURFoMUWl}bL*seUQo9*S{-13b|r=(H@l_MbMRz;Gkd<!5+
zb%`}3)|6OF;<mCW%v@|?5oZLh2;8zRN~+EFdLoEt1InZ{nC<N*E9$X2dm^)?#B)oM
zBsqfGl8l&S3+qIX#;!&1ZUl8BNROal1dSr77qLG+zxiom{RqbV{{Or|1jW<qQ`nf!
zKZ5q`&K_se2%1IEBEqG_$=r$$Ol~fDMg(JLdq2-;L}5!QX%#_o_k`9Fv|*(=(%N!F
z1|&1IlDr*D9+*t>!;EY!vm*ztp#7E6P1)l+v3&V;n$FBWq%e8c2)adZE`swBbdR7%
z1fNB)D1x35^on451T*B2^^Tx#1pU~l?H+FgeIy~j{ei201Op<N8o{&(hBrzW7{Mr-
zL<EB(7#zV6DI6|wsKj9raAVFJ-zAKQV5H=Sp5*@D_P$JxjbI#gB{_3)*Z2q~L@-54
zCdv{%$lN<glF1UgpYyQr{}sgp`*qL8%jW+fUz?6x)WqzZHZy`*5zLNYP6V4u_FO;(
z9!Z-k`8<j9C34r2+1?K$_(&#q%=RwKlz%MAClP!~UFGOGutZOmusDJx9OwvI-H6}Q
zEp2H8D<fDH!RHYyi(q*KPri=lwjzQLawYzc7x~?@I%0p5e?tUcNU|n^wGkw4ZN4so
z^-j<F2wwhBhugZc=^G>XGJ<^(v>lhQN#a)$7jJe^vRU#i61PgEa9af1CEp=&r^H<n
zcS~fRJrR7J$@faqCY<n%B;Q7G^{HpS!~+tU{4Ronk{^<oeA+|d_p;aQ_z#jCiQq>`
ze#(>|jo_H%$0eSSc#<j_?l~p#w8S$K&qi>ecr)(Wc`C<+2rfqOFos7lT#Ddl9vDOG
z82?=Fx*UNOML3FIBDliFL~w&Yq>iFr6xSlS9>K2>{6>EjMbRj3L~t{La0HPEZqfK7
z@JA4c;P(jbMDRxhf3l*(;x2vQGI3uPb&tk*)9roYrsM(lzA8?#=w!pc*dC7i$%fqi
zmgFCan=)LFB6u7@u^g?QNQv)%*^b*s{kdEybYE;U8*oBsoRy!7Py}0+)*%UU^rhqn
zUrQ!W&-NM-5KW2meJxi_Yct%}G8#cFf}Byb&DZK_1kWOPK_?u+%pRT&If^`&&Hgun
z(8prm89{s*!K(=3qR2uGsE(ih5DS`RypHg>Yn?X{kiV69y;%3GQDloEM-*pQiacqp
zM3Yt|*`s*exz&Nf-KPpWnJbFiQRImtZxjV&8}7~a=8GaW+nYa%)yu_#&E4|N@$NGP
zn^!Q3LQ(vqy9>*l<K68jEEYxaDC$K~KZ+7jl#Id|g)53uQIw9Nd=wR;Xppm2nJ7lw
za<j&=Q6S2%3gDe6s?G6QebR~Dd#4iTuI*fZj<;eIRk<sQN>Nm1v2(mtqNur9kfgqD
zNj%%GRrM$wQHUsNuy^fREuYz@rX;l_Rx94hd0KRu<K+O6Or7I(N0AUkVicYz25l8J
zs<euy0@apJ=8L2#lB1{-MOqa1#<i*~F*S;mC|1nzMq`3PZqF8pJ#)Nuqezc}<kG#C
zL~gTJc5e_x!zkXPw&!{qMbS8l)={*f_WF66MA1BoPd13AGD%4@Np7DKMQdhcMA0IO
zmQh@u;|<R7wvy!Fj%G}@jpCcZt=5%o*C~p2QM8ZZw6ji!DBhK$+3%@fl3Pb9ANY%#
zIXg#DccUQb5=GZ2x>3n5TlR>eXB6F|$l22KV+#+lR}{VFu0Bz`{H-PPcx94=nk1rm
zO8+PZL~$^RLs1N*#-dml#m7+$j^c;Ab*54Sy*xvr7#hW}D27KdA&Tku#fT_IMlmLe
zu`=7(g<@2c3)5PT=Hz|sd|z@V%gpt%ka1MIPwex%$4mK)FT}9ko{3RRlE>z|+I?~q
zCl`wkBu<gYWbL`$X{;-X8Ei~^y*aWaGbNuTk;2(j{#-A~+$iQnv1Uw*`B8i%3HgF3
zK9u}O!B$Li8#&kei7aPx6xs^$X%wGDu_%hgQG5}_#weCVv6RLT#mXo?mpPY9TqcpK
z*m=i2u(OMV+o~wmN%`u`y=$Uao5_P&TQSdincNV?*DD2+UvhL-iF8k$*sE@vB>zgH
zJzlHCmMFGHu`P=2QS6s3+!4jjDE3CNFN$4KvYQ1)v7?@c?dL{k^>q}-$F(9a^1_yU
z6UDbO=Qj;p|I4#Jl5#*wnEXzX|K^LsQG6f8?I?cdD9C}hB#S*F`HxWs$Kt5uCpaRK
z9Aib2sD}iH^_1jiqc}%9H^u2F&PWM&u`lPNxYH?v`~r<|t)2g3=HAQk?S7{H)AP$3
zZ%Aa1u1Io~CM3!AD1MdXSwwK}Z<2RUtaDQmN^V6lf3BD04rj`7@r32i_1=wwy}K91
z{U{zp@kbQZtJirL#h)_IUs3$cv7YOlJ*3sJ>h1oaqxi*5vTBDQK9ZT4|8W$Zx@7dM
z-^v$-UltpPA}9%~P@+&Jr`c;!`@BP;9z`e$L(0v}oXsw`ytUun8==>|?s~ztMG=)e
zCXvFYQ9R4!&n5Yn8pz_{u9s1~qI-;?dJM0lctf8YL*W?SveGIES!2i+LtG45VtDy9
z>4lb{Z*yIInUp<-95LjLAzzH)E(u({m@|f4G5ppbA$JT1PS+>lmWO42mPC?2hNK$F
z1!7pxIq7Mqq=okr3QEr8cb$@o#85N_#858AZ=xpFi;piBL-80&@FX7al!~Er41eEu
zm5lN8t%<JFu1C+3*o>k}lFGzTmd7qhVpECl#O%eY6=SFr!_Vz=l#ii83|uqYxv0GY
zbjzc}$}yDrBB4qQ-^Rz!@VTnSz|wv^m$<ola*Y^j#!xSY`Z3gs!4X4z3<)u;&fyj@
z{>miDB{Mr?_~JzpTjiEQkHntw@yw7I!_1{gNiif-13r7rENiSCLuw3lV*CeFVv58u
zj}y~ksM0l=t9R2`=J)mMO1yb4G4LcY|BIvsF*J<f#eG-H7#hXUIEH^0CpD*@V@R75
z&lSPbs+VdSvtv=XHH%@{%><GRnT;)JA-mkOO>LIIb-w*p^`3b;X-A{@HZin~p<N8^
zW9Y!9#xN^}cVp-n!!RBaL#G%z$MAnleFv0N#ryWn&C+`po<V7XY?9q%lU<f&S(di+
zE}bAv5EK<eKzi>*ItWNdx^xhb4k}8Kjub@%q=<saO>%FN`#l+d`Og2GInR0Kop;(h
z@65e>H#5`2hn_x+Yi_q$Yw&&GZ6DhEVt;~lkVw+e$1_@ElFo5S7fHJM&`lDr#O^-4
z<HO1Q9jKYB(c8qcKV|fyxqO(sE$Q5`l-|DB-79^3v0GwE`bv2}iC4yZsWZTb_kFRS
zeU9*<!hGAECy5{UFwln&efY?SAwGQS!^b`hqHm1%hQ@o->M4VL*izK~3Eu;sB#Pqp
z89B*}4rQ0$Zakdr>5w+ehum3>ws&t&{LF_&-ZToosMTnsFZS{?N+N3<QaI088o`JC
zJ{<62ypOlkrO)(X7Rdzf1Yhh=)QJ)&vB8o|kvLW2G>OwC&XBmYx56y5ef%<jbv~^3
zVXhCK`>@o9Wpvtb>v=vb^kI?Y^Cd2jm|P@w)y3{N?TdX_La$hy^X7!u#mDJ|tY7%B
z+=nlHSVf=oVaKjcD}DHOfWvyB{p!;>r8c+Rxh;LQ59Dinc(5*K_>SgXH{`746nNU4
z%A*V0H~6s8hwaSk!&fvlt;ZSX!;z}?`5!wr)38PCbtiZ$9mxqdtI>6W_xQGE+t`MI
zj$DP>eC@+dI-w7Hd>B5#JFAp^7pK*o=EW=9kIYZoOShEm+~-4Qf7a-oIcxXjY?<Ia
z=)*TY{NlrH9}f9&m?Ooh${N{nA5Qsj+J~b)9P{D04=3n96TG)4c>NQ+R|hyQU2IZp
zqW7c^&#SZ=_HFx54%OIG#eRkztY|;WDZeb)KGFMeCHr@5#uqs}MeLjpKXO2QxZ=Z4
zKAiXA5^c4;)&&~BV~vZ_NzQL?zGYjp)hlwwB;+)j=>3^G)$A22*suC<&4(L4+>~m)
zCVH>a@mw`NKh@mzp5wyeWSZ!f5C86Lz))jrtvhm*f0fF2CBG+e^h7Vm{WmH1$XiPu
z`0xk2;KN_E-ng{EgOYN;?tJLOBOe}f_2atQNO>Z0ek1#agUX`D_NP8Pqi-~}?_V5?
zzL2HS2g>>Jw-5jL@Y07@TrD>{3ix@Z6MQ~Ixq$oN_d(-$`JmIh-OB`|4nG;?S&<av
za=jvnSqvY-T-&)&%hZLJ9Q<&^4?+A`#4k&V9~M9I`D2Bv{@6!Rs~-t|P+?E&gj{~)
zmPvX2vF}TH{NO<iJe+~4^QL;Pb*ufm*Tqj#`K1o!1^p=GM`1sT_)(HVf9#7EOD^h1
zF@NlfR&oFTzGYR-PA(y9VSD%$tF#}l`D0(P`2DJkYzDty@tajysl#tp@I&}f-jCN=
zjvwv(c*Bnhet7&y^`oL6mHhHfc0VfnQN@oWe{AzI|L}j)ANxJO!;h+dRP$pP&m#N4
z_7?jnZ&$A_NuorXANII>+?!TS{<|&N4=3BUB6c|=gG<(u5|<Pn+)$aGkmg4XKkEC@
zz>jo4YWk7oM;$+&WhZ6$QOl1^KRz0ez$im)DQEP<;%Wa$vi+zhg^bpfq?1faIbQ1@
z{<^>)+gaAij~qW5vGD258vD`AkLG?f@uMmA%h>p9E1nRA*K95PAZh83{Zlf;|B(%h
zh2J{aTKmz)k6ypW4kP7TL5+nd**)oPKfHc)_oKZZ9sKC%M<+jyY)E3Io&6}$rDML2
z)4Tc6#gDEs$|bsK=_XbEwvSFWT$`)TJG4wwyZ%N}Pu>DXwOn>a6AD>-aa=YgG4z&X
z!9;IgKl=GGJcQ3ec+ZdiexwCZBY**Zyzj?m4O=vP;Kx8lNi=*&bNSIzLoW><(*f8{
z4c#>i_Tv*jjxKe**y$YN$ESWY)R3cLD2LV0&lJ3P1;hRL%#Teh){hZ>jPzr+A9L8$
zVo9U?80*J4e{5UmXg|jIx%195GCSpLM(TLFw;w+hanAH(q96H>I2k7S@$G2Ofenty
zQZgkjpDM{TiPQa<5tsLP*Ex&!f5TGv4^LV}_gp_dr|<dkr62SBnD56DKbHEjz>kIO
z$oH<rbheE8C&xP$v7I$izPgi4%slKY?N49k#}|H#p6yufN3?j-$XSljZdcWVF3)P`
z3P1j-okG%Xjcb)3Yy4R2$7(<B7fX8Kc3ocW%=0*NogY_rx;FT+o|DCyv2ncP$lYX0
zHcI(d5*r4bTcjzr`?151t&(q(_(thmG||_7?4-5*IOfMLPDwuw(>?sW@7uA*kAr@E
zBl%uG_DMqderAvJEsGqFia5{OJcl?U+nqEHUU}G;U$Rodxm@4UMbE^9$Nf0r#}9s-
z^W&r+r<mQ3JnuS(M4YGnAfA<Y#*ggn$z#WPb`*&v{ngz0y&s{`9(A1ajz2lEr|U-!
z9~Yn54)&{1z-b)tT=e4-B^s}N!OwnN_TxF1Blg{ot2CD%zx#2`kL!N?;>T^yrlqbM
ze%$oqmLIev2V(AYcV^Yv&sMtj&2ioF<E|g~{P>j%&MYT~;6h2)_UZ1E`yE+-IS(y!
z{pJU8!$j``Kexf+u^)fZM9(}AxmKKYKH|7<bF%M`7CRVy!ezvt{FIZIV|T;ldYm$-
zX-c!(u4C!-e|X`1!DZi%AUnvh=7Q;m&kw(!m$7<YasBrLvz(<WIEmLsd2YAyG%TL7
zxr&QUqOri0t^ob~fRj<(&sTa_H6&;V`w{WOWS2KMqnxlmICEw@Hf(ee9p_w%7Lzkr
zBvB>)y5BM9j5C*p+*)iPy4`cok@9G$+r^bvL#H!NhI|_GOI|=?L5XjSaWkoihN2qm
z8XOvmX(+B?$t*`z4J9;`)bN^yvKo&+%`By%v<9t1DtXOk&N3R_Kat%3m-?eiW|Y&o
z=fYiCLlq6}n%9Lyp`pAauS=x-4Gk6IyrLwPG|((eVvW_uy57{l=~F7?*nH4MNj2G$
zw=`7O@Wn`XVUH`3PU3OdH1uBYBuUbctf7{MObvJ1dYl^4G}O@G(vYITtzpa$&Y7oN
z4d%E`{pI#(+^gbF)p+J`CJ9SO*HBYK21~f(Og~M}NglV}*>AneTgqKqLlzCFp`M0|
z2b{-WIW22kbu?saIJ(Mtzp?x6#j%-w@;hgJ4GlEZKj@-as8;k>cOwmrHSmPtE*hF>
zXsV%uj5gEw?{Bn|oT)7|9GmEEt)Zoqw35g-0VYx2MnhYvKnbI7$8)v+Kgu0Bh%(yw
z{|K4AtA=iI{q$jujTz2s6TR=Sk&TmjXxzS9T`i#ydu!;U;XMugIa0Y2s}_o#ocu1G
z@MlL~iTxyYI-as@o`)|v12i-|6FWhDYB@Vk&Kam-yoL#U3TXI<y}0K1SR#`K@e!cm
z6MCbD5gJBn_*5nhlQ>i&^{?xW;gWwQk#9Q`GF<*UhNGl#w8SwI$7&cS314QYz=|en
zn5to#h8ZJVlQc}$@aRe66p5c@+n;|>n9JjI4U07N{l4}L4Kp>&(lA@Yd<_d?x$Lv1
z*m*$K95!;OeXfSjC7CCYlD5V3ER?);{o;(?Y+97Km~N?IsfJ}5mTOqS&L-M<vFR5y
z$R_*06TNd1?JG5WsbQ^#bs7q6wy)B#TEiO2shqUQUT2d%-z4w0P4?4?_VpSzXxONM
ze8qtz-fHochE1HXJrrJG+HO-U9NlE!s$rXkUpQqnY}c?u!+8xCG<>aLrxx4Je78-W
zT^e?4$XDCN=pGGwHGHq(2Mzl)?AP$@YN0b4elm;j;J5=C4stHEOZrB`xAbbs4{128
z@o4UxBN9n!ex5;{V;YWYIHBR6eRVqJB%hSZr!;t`WpthqQ(!nPg|qXgoz?K2<fSHg
zsj$Cy!Z{5|le|Ak{81*&s@Lx2^jJp9FKW1?;R*|XUY*VE*fw_R_|MW&FKhTJS1$VM
zRW0`3a!tc^4Zm;9xuM~vB;<KZ*>A=9lVbKe8t!U5trUd=xToP)4N(oI7JHZYjZ@%u
z^@p4_$5ZYzizGcK)P11g4-G9^IT^0J>wKi)v4%f2Jkg+QFf=@+=`;j2gy=beWOJO8
z_?*R#bN(gqg~Y$v1xYA>Dak8||4Q^p^h?w<{wgV!y_(ZQ{O4LHBE#nK&aj4v1`?Wr
z5?1uf-Q*wU*00jgK5VU%hutXwSOQQ3um+G2K%PMCW`SG*<PKoByjft$hi?8qkwRWH
zkT-yQ0pt(FP9rH8K#}b10+Qz+7(13^`fxWTMFJ=qfIR?50L20^LqTHk07}ThO9oIX
zfYO235i6r)6~BDyE)zgaCF!*Q%6;r+MP&mpKXjK1;Poo`7!?7OClBC_0ICG=Ci$A=
zAsIC*NK!F?vLATf8tADMK;-~PK36+4b?%3rs#2kP0M!E6)V(&tTap~>lq-?_&Ggu0
z-ZCpnvxKAo9{=FjmcJ&C;z<s~_F6h6x+JDZbW8L|OqEDAUJaSf_6Kl3h~I<A2%uH~
zZGvbUL}mcB1GpH#r2w)5s1rcH0Nx8AI}qE`-6epo0n`nkUH}=By!8WU89*z^8wAiW
zfE*gFj;B!ojRR;R`L-vX!*y#mmApj&%>rPwxkQqz_8uxQOKUbjmP4Mmo~NzU?-0PM
zprc&?l)N24`vA|P^e|ATV*tH|Iv6?y&{^`4rJeWRsM{?N+llsWAojmwujJh&zC-tD
zl+{CGPwEHII{;7j8fV=ZeWdU|PMy9o?}^dLEP;oj_YYvr{^Ya#D<FXP1N>=jto(%%
z2eQjOI)50zM*(~sz@PwT1TZsz!2x^{z}NuB1u!IlPXibkz^DL*2KdkGuEPQt9zfMX
zS)E&TuHGn18J6-{00pzMmb}w>1f8&MHxdd*2QVgp5jk0Zw@qOx1Glw}4`4z7z6M#-
z0+<-UqyVM{FtBY(p)TFd=44H#t2fM=B9VlJF#IXHPM2Ajt72BxtN>;QIE(Rnvodp}
zd~N`ra}a%9S<$=za*1xtb*OF1p#3S--*7l{K>!^ldC3<AusDDv0W1yRWB}hZ%vu(}
z7qlMdQ~=8ZSP{VH0JhLL0el(2x&YR51Os4c=Ne_L4uDk*o#d_DFl$W!YdJUDrI53~
zU)}Dyu3^@O05%5jPNS@^0@#t0wMkaNEORD#*G=+n4PaXUUk9)=fVK^@w$qF~I`0U8
zt=)od95}X+d>4JMam;8m3)S`puuqoxZ2<c@uh|&-UI3>ic@MJu0N60*P3jS|dBl~Q
zNDDCUkpRX=x>`TYIvT(+IbO#D;Nncfo(SOXByaGyn#5DGk*6h|k@)W<FD>(30N=~G
zysB2h53Ggr=x*|lTu%ZxPb-y988ar8=xbN+0?jqo`K9Wd*R8<M0bJ(f3Zi}xR|2>i
zzzZ6U{?o~QEr35HxgNj`Np4EK#W`h7qQWl$+-8>2&N~788o+OCq*P$iy#Q`KOeSHt
z&!Ly{rmJ0yK8Wi)?dX0e`J=exaR7hD`I7*iO8!jZ^SJykNj^=k&7(#B2_O(akRvjx
z+e?YBB>qb`lZ0}A09u?cwj?$B-4f!`8bp~O^Z<+i!hzVQ8zl%!5E03v5>1Ir%HEQ!
z24M}NNDxJXNC;x#v6S2ra|OY`=$=guVxA!K$|!k0N%99#K$3zI3rQ?2kvhyfHg`s`
zAW8&LQu5*w-_4y-N|LIRy;NYxKiTU$R`9hT$_7y`i03mMFDtqbgb1ScWbcsY&hkOL
z9)u$Z?uCCNhzdbC*E#G#R1AV`t1OYEQV{Rwc9B$xOWu^Es>Es%-;!88h(t-KY?Fiq
z{&24bvnR<~l37I%t{_r^P)piaZ`U<R?jUHcT0wY%NDYFLG>J7N4)`ZMU6Ps-GbB={
z;X0MMGG*S{L1alnNga|nuPX_^!ZqL!JWb@6pBpD!bDCx}3?e6pMnRA_me@Rqa85>(
zAeu@--YkexE6R{ir$rDgrCKYAttC>PuTo;WAl?pQHYGu{5Ay0;d>F(>K~y@P(lHqO
z2>DKsKOc2=lGr(jF8@VeI=cqZO>%Es(mjaIlf6{#5k$`*dIixth<-u57et>R-VNgX
z&Kiri*!u>--yr2Z7dxIM{Yv`x*A+%{mK9=B{~#`%un*vPN%Db2rVeC(mlY!UIEX<(
z3=Lvf5QBqge$37j@IH}bBT5Vj#tzD3_%sNcT9brN;o(7yp<e~@Sr8-GjM7PC>!pok
zbh6i<P-9dO=Zd9`4kFs17RflNK%K8%D>goe2|-K@Vp0$@q`b|=I+KH#9t6phAf^Vn
zt*><}HJLaqh^@ok{&!IZljctLHZPhsGl*G1Y?$n2I5F8fH;B&}4Ps*u^MaTk#I8Qh
zRY4pHCN1EEn&SOJ@`bc{5Q`;W62!~N-imo@P-kfn%cPL}#$+$`m&;r$B(9YBWe~hw
zf=R1`SQEtBAb3iH?NyQXYt?m<ua}r_jfe8Dg6O_5{cbS!x6CH?@mBTCL2RM_)X&};
z#NHtG1yL+Jd0P<MgV+(o*TL938v_+~as&r@c1heVk<mRg(dgGm_ER&6AA|TQh=W0t
zpW-$4yN?C&O%R8II2`K*`dvsl8pM;7jBh!c+!@W?8RRE_Od;>L*K<6G6G8sW$#F7>
zQ$d`Te3-|1CWy0iwm%*G<z&m{&hLWwfzvS2{XN}#xs%~qFy+--8Rvo^ruBE958?tt
zV%@`eT^HGfo3$CPNOFm$kmRz&KElnUtCC-ncwOQRi8m$QlK6|n+Y;|c6f>R7+i6hJ
zy&!&N^9CjTCh>XeH1Y>Q{J~eg5ZZ<Ckk$@zTRO^y@HmJ+gHS@Sgkq;QJqf}Wgg=O<
zG{_Y1Gl|b7{uRUvN&aTPB>6|;ONsOUc2WOdu7qi>s@XM(8eM2yQZR^65CO^e4o{~<
zry050)77~|1Y;+bgnJaOP@&-+wbAS25=~Cej)|K~E0j0-zUix<nyMi*Z<k%Yj=f+A
z)({dx$Q45F5H=+gr%s+wtc3g$^M>$dk%kQULTEIo5Xq&%Nd-bEmC&gD6mOvr3Wrc6
zgrXso3B_K~Ck=2F3!%8=OMj_-{-UEq2t#i<N=hUt6~cu+&e9>w-CKKh@uX%y#qJ$0
z7Xm_fBZLYvqX^-fZ7!bH_0APX`4EV&OFVqsRWXE0A=C=-!ZTD3p-L$BMp2WE454a>
zyB(dL5UPdnRtQNlN=fw)>>)TpNR$$rL>?K<q-V}VA_G_8WGQ!s;0hrnp4S~$-rvYh
zwN#GvpUyOX-+tZ6P$Pu&5VY!vr4m%)483fIY!6?DYKLN{00r9AX&yqB<c!vlBwJ$L
z5bDL{^(AQ#!lJe{8%oTP*hpgI5SoP0y?;%nHVvVf6!LgFMq7lyDq2cx6^b2R(OTm9
zsm<Gj@Vimlv9!h8A+!&ne+UCY=)mTM(2pPIL-=?~?A*Lg9Qt2ldl);1V*e8ABC)H)
zZW6t$T9S7pQm01<J(=rB3PUeRdWX;_E_qjyzBE+n+*II)-;d5a=P!29!taOh0o@>k
zVId3*Vaa9J`W9^mg)qUa|6vFpu}K`<*D@G=a<evZa0s7-FeHR~i|q`bvKK3DB*g4C
zImV-uQB%A>j&&~mB5_0rBSXj^L4gQHg)lmVPGNKoV+<!?2wik^)iEx_|Cpe*jw~G$
zLYNrB^blr*u*I6xV1j#+biBzDr-U#yglQq<E9zeGWz0WG%8hp(ub5bEq<ek+?3p2i
z{&ma>VRi^}=*b~`9>TQ{uFEMiFNAd=tPf$nj4lXap(Kk!SSiV3iAzFQ8p1NkIo+0r
z@P*`JL2RBftYEQm{-sP>6~bys)<|3{k(xsmDH}rA7{Z<q_J;5kCvpfoWa?&#TjQEr
zLP$FjD}P&DvR#sA3uD5sCEppsE=hLBbs8>E_Jy!Ngwr9M3E@Bp2W8Sp&eISMh45_%
zN2R3VxY$o{4|7>~ns_86|1sA#=@{GdBoT{ZRgfH)nkPaiAMf2MDfzmz^=t^=g>W&1
zOCb~}WBopaA4B*_rv4DZIY~Mlj+Mh&I#gE9O9`VFIO0<Na|oA1xFY2=3zI&J*K$<~
z%P&-Jgm5ziMTbSltq^_*;no5rEK_fX@OKFRgm5Q>yL7w|ewFg)oW=L?o78+HCHE!%
z9>N1jSkWJR3dDKQMT)C!(qkF@Q{oeePbEH+r7_FBh00%CaM~ulkn%-Sye~s|6+(~>
z7Q(+F_&8@PE2S1F|9OR<i(A_yO)3W@@_puJa*{4N3;fT>MhF}-Mk7)lm1uIEf11dm
zC|7k@b(GanPUn_z<kC@8M=>3_b>z`eP)8v>_6W$UBflj1BvQic1>&4l{C{69tfPpO
z|K~`>b(GLiT1OcvEFcG>q>fTD%3iZ5hSy~DKPTr9K!?zIH%+YS@;YAE;n0z!;|(dP
zsH2i374-jkPGuQ=Q%6-DRU{u?Iacz2<@0~I)pWe2$NpK&P+do&<Ti=+xcpZwEm`Je
zUtE$nC9Yhkq)5U7=S@uT=tz~(G#xc{Wc-(;BVCdcvV+vDrDLik{qmDo?=oc)oxF~Y
zY#mK?G}B|3?!Eh6a$Oz#d#9d`MGNaP)Ys7<&KpXSBe9W=#yXnlXg59e!C&=@jmi$J
zaPt4={OMG4of`)dTj*%1qm_=Gvy$3NBxx;48y#&WX&0Bjt%EmTQ=vm#(oshz9h6hp
zSt1p>>G0B|VN?sFyN-8s_>Gw7^w80In&XVc{h5xQI(q5ot)q{QzB>BR&SM>kGd-Vo
zbiS*@^Ig5rRL6Td`s?^e$H(-spB)2qe4v90@9Su>&atP1i#Sk9K9pFXxr?bAA3Fx=
z7)p04mNZz$Cpw16)K6ux(+)VQoN)|zBlGqw=P)T5E|IyYKSIYy9iw!N){$($X<&?w
zu{y5kxT?qY4UN;WQpcA%#`6)NW1@~pI_9!`9g}rT(J@2EOdY)OZK{sxIvyq2rs=r*
zu8pD5r#9}1Ui&I>mX1H(FF9Ms9G1|eIk&i8?8SZS4qnV;OR>$<F<-|L9ZPjA(6Nx?
zsADlFS1sG2Ua^aoxWj8<HCwl_whIp1TYo1m)A5Cl<vLdAxX3#M$J$=JXUp3=mXx=v
zjV<A}^i?`m>o}m}ppG><*6P@y<7*x3bgb90S;rO~8+2^cxw93U*jcyj{pvQ}YP4Rp
z@eVcKbi-ZM+%>sX$2J|?=>}FC?-}H+QZxUkO|zU(ZKsbW?bNYL$6g)#I6&Qs?50`|
z+a6Y-+9HE&g@(nBH`%Xa_!!&QDYliDif7igSu5JU(Q!z}869VJ9M*9}$1xqpb#UkD
zw|Z>1=21PiyZ@6Ww(rZ?cuU<09Vd01(s5eH<p#FxQ@rWD?7R^#!OU{@OgB?(yp`-b
z4wjDdIxgt=LB}~AKe9j_+%COglx-|`C@)GImSW=t)1`XHc3xl9aY@I|ERgfDj*Zo^
zsn?d+S=~^7t+9P$wO`}Z(_!jR4BXIhlY^_{G1q?`V_qcwCh->?x4A5E#5s4$+U{}w
zh7wmfY`ZGkynB;=l|st7Rs6n=-|1;(Z4c-SIv&dG+#Spd&iG@J`DJbIm9zb+<B5)c
zb@+5V)$vTn3mt#!cus@psMp)xwy(`M!Zz|X+hLw>u*Cik*95k(lI<1O;fJ-Y6}aCv
zwl|p<8dh}L{5mupx(-7}Ku3_Pkkb~T8IL4!e=E0Fa|89@q}XOUo(mDy5z!H)olC`z
z(cswy+-uKErg+SV#eiy{n1SL3tVZmWFOPw|oZtp>8OUv*Us+qdWGlPLGncq)HJ^d}
z1_~M|WI)Sn^KU6uz`&m6_U)x&r<e5Us1!C(#DK58jn|fS&TT7dz_BZB)$}&R5(Y{d
zsAQnBfl>xa8-T%Io}-KryMC*zfpP|3lf1>?CX_4~9NYHJ!p}_cc7Ixkyu5+e4cwjL
z{qKsmHw;uT!28-NN+jVmWK|5jX&}*n%|KNH)eO94pt=z|zJsT83>zA|`Hnlv)$%rO
zvi^69*UlCiNHXw!KU={ycJ9>XDIeS)+AT450iVl2ih%_N78-CH@EGW6pqGJE18D{t
z8E9;v2HRZPmT922fph~kDLI;yVc^8uwpuh-nb<+ERCra|mSv!hfd&Q|8pt+K*WhV0
zsBd7=?j&yi_Ybnu!MLaXXkzS!#OjH*f7+Ge!529OW*4z>b2^VsYGR<Nfwv8`H_*&L
za|5jnv@!6kgsp{vmIhiGVD=AM$ButtA=h5T4oSG$%GTDvpv$G&(b^?rCzJ3nsHto1
z9Sn3d(A~g0209t&Y``mh;K${59s|-v@~#F7PxaC<y2&UnyyG5fo*_okgTwbKkw3EH
zwsGE#)!RTH10xKKH1Mv0z6L%t@DW|ez<abz8Qc5peivJR0|V$nJmug`ThkA02bZL=
z;~y9p$Xp%lJeaH1h$gJ=V>Z~p5CfmeS_T{VL^go;6+Q?j@(ixwt!zUL3^Op?z-O{R
zZm+&m)^@m|jpm}?((*hdY?Oh~2BsO@t%)%P#u}JpV6uU62F4qhU|^zw^1C{)85|=X
z{lo)p%9oCve8rhNh3;C$b}vbpYQ(nUau!rtl=fCF+YAFU4a_z0xe;3#X3^Q6CC+9!
zMPmyo4*{FQ36d}7z4PciFB0d|&gr(d1~%fMTRhijR0rE41B(q@F>uwu5(7)=zy=N&
zSjLJBY%;Lfz;XjC46HG**1$>wUm93tV6}m%J#9s3?Ui;OVKK&OOFCGK$AHvPZ0ij0
zB!~3|Hn7r0wvr=kzYVf)<a{|;ix=vBMGISP<yNJgt!vw2V5@<h26h?PW?;L49R|K;
zXGg|HBxoj%IhDklTR93Ps>Kc%+08j_V6TCF2KXH5_=$~YQ_w`GtHq8<;ZuxHkb?%k
zF>u<z83Tt595!&AQ^3Fx1K-jo4IE?Y(Ih^|_+0D1Gs!;H%ZCx4CVXO^G!V+LoiZ@*
zSQ4K>Jg<xoEI#$l8u-q@c>@<XJ=r@0=M4PFA*;$`mlAom9j(o$)lZxhe<$)8%7tS8
zmuVLbTr%*pfy-RkYT5YQJi96FIS*cL6x(skW6kKm*9=@Y@WjAVTGdRvVc-r8W#FcP
zTXN3+VnBaT`?i6XrEI-Q#};tzUcYDHR|5|W{9)iX1NYg%_V(Y|-=4M^E7H#Xn|QiI
z^P&f8^~|(AH1Np4V*`KEKmSgA*v9t4Y5Ot5*1o6x{_xo2o?b-rJ~QyQ^y=pZ{xb0V
zMhV_HN%;!{bV&O1KWqRi`l#e91OIYe<q(7tIY)TB4~@WU6VF*}ntUG%7zomglIIVj
zKp46K!$6qpQZ`Q)M2DBL+ejla8Z}@VP{Oe!eYxEd2G@#FN0WH=2-U1oIU$T(VdM@Y
zPZ+${HE$UC!l;$c=31RLJI$77xb5Cxd+!Zt1;Z#5M#XUK?6|^V6bS>87nN8hjNT<<
z+q#Q|Q9O(iVU!G`R2Zehv4iQD#1eRJ0FSWafpt`)<h3x$#&eaEg>2uDCM2Ok`7mA&
z;|&?DFsx*SxF!#4sub6$EJ>9x-jsw%%=lIq)x$^$!yS&jzJ9W=Ztjte#4v1O*u&_!
zJli4B6-JUI$zin2sqK_Vaw#jjO<GN=rEj&DvL<@Mv2UcQVWfpoBaHMgnugIVjGAF&
zgi$Aq>@dnHiQ6AmuN6k7<h3QX{-b(U7!yD2dL>+)%G9YVu~8WH!l)lcgD@I~kt2mO
z=4Cw_*mdzA)maWT$s339A8#UwdwN#$Fj|DsI*c}KDl?kZ&sFS7q*|*m=FHF9{(CHM
z+c4e^qkS0d;wAqvGmG*LVXzi9rlTy7xzhiw*(HpwVf-A%<uJO1;SJ+R7~k^!Ka6+6
zn85aj(Ibq5rtSNAw)5L;53NZ(!|27a2%}FJ?}jlnjA3C=-ZzW^VZ0wkKN+Ruy)gQR
zaps|m{6G94jE}<jSSk#Z_+c22@1#&+kc<uv;}c2JUA2cu@~K2B4A7G6PxX=v592fX
z-urIy5i)f&Kln&8QsSsE{+d@`2_#ctY#8Ih7%%0$oUQ|@v8MhfkA1WZV?TRQI%#qk
zQ^J@U#<VcL2xEB|)0r!$-i$D2GFr3tr;nVoB$*?TlG$NcRyj!Kh7sys`*Vr&B+i#e
z;es$0#`&T!7E8WF;?lT$8RuPcZ7Qz_V<jg`7>5({v)C^=9Im>QldqDMu9mn);#!I8
z!dNc}bvA^tG0wk|WRt{gbMkJHePK~s!`LS4-5#%fha_Kzu`@2&6~=DK_ek6um+#}U
zP}I#r4$vRM_$G`)Y%1+D8;{m`-f!pOT_iLq!<KfQqhTBi<EJpr%jt7Gj6a_`z7OL>
z7$?Ix6~<}K?lsA0>55wH7e@<<y3TO27fLD1qYt(?z6-<C&e>~<>xVGT(G`XABPaOE
z1paaTU`y;z?BbOi7g+x5^}ll^UD%X(k*S*!FNLvTTO!GoFs`!3FrI{QEsX17+z8`l
z7*R`NcwV<k`D2$s@YiU!!nn;a)$vRCf8Pq~zF+iC7<a?C#~I;tG5j9Juaf^J@xH{?
zpT&|MNdAXJMjwXpNb<*V3BQ6q4dYoDY6R+gD%YatVJzE~<D-9uvEYYfh8L3jE%Bc)
zUUFs)aKDm9`<Lc=%bmU3!}VwMW2Zk1EsQ`I!7vz&NDN8TB^naL5*rIAbr_;DYD!ch
zutZ{cPw%Zu<ev=I2ofUr{9`*qt_X5Vo=0Nd2=YZ>Pqi_L1}7Gbpil(8qUaq(;RuRE
zkRC<ND2hf<EP`MJp$LjcP$Gg~BDftvNsD{cUx_6n=sDF}DuU7xl!@TA2$n_gMFeFd
zC>O!72!=<12n0)xpmzl2BX~W6IuT??@J0j`BB&lgVgwZ<s1(7Q5v;Phmu&V_j-W~e
zkMg;9oU6O>pY+%BxX;+#RU@bt!T3F%udjLDia=T59+#Es9h_=oM<Q@VkP<=N1h*ps
zDkMel<<XSrIyZT81WqX|nH-C1le66sWJFLa0&<VU)Ckffp`?Z+=@M&3@OY`a$9y;C
znGw{E>s-z4&WiKYJnp&?)Qg~b1T7+{FWc5Ag2oXvki208Ig*@BaI@LxuR5AUc;b4V
zrV-dassG+pPm}p>l4dkuQjD~Wpj8CzB6vH3))BOkW?56djMlCG5Uab>)0DRCZ=sqb
z?IY+ALAMCJ5%~IeI!4ebg3b}lPI5EK&_&9-N*wSgR{MYQ?rhKHdOad|M<#XI8B_ju
zeZ8JCO0_-_yc@xL5%iDX%)#Wo?83y<q5q`!ljNsdZbk=0@O}gzM=&UY4<b0V$J6js
znGYlQH7j*s1Ut8R8s~B!nvnVthdz&cNuAWeaukMe5Ff<`;*$t|tWbu87Wg!Rp%JX;
zQ~U4To{y5<pG7btf~gTqi(n)_{zou9mwQ44+@exwLh9%U#;|P;_gEIi7G|a1vAf4b
zuraqgbk&jJ&QD3*WcS1fCPgrrUXkqXoa~-+!##zP`tFyP>P?Se2CWpqoCpd#+%qGX
z#f}%NS+t(}{d(@XL+g>xji6wi)P)fqfQHZ6ym6`XBB<)EF<)vfkVv&NZL=3ga45;W
zB!Z<>-sCAzzRZ&(ceP}91G6SuyPW-s;AjNLB3MbcWIH4HiZjURUKPRG2-ZcgE5W@w
zf?I#3uc2eqbC>wW@o$}s^%2y}aBqm<VbPjb9PWl2Jd^9WH$|{Hg5449iC{|vTO+8P
z;r^PV@Vk2(qo}!E=2}(Hy{x`_2R(mcDis)ZvKFaK&gSinU|$3WSe>-$5r><DvY(x@
zyIWrM<k{}|CW0do1k9R;I9r|W!x8+s!?QfWP2|M<Rwi*cjz@4Jf}bO}9KlKYKm_MF
ztPz~1+eGkP1mANg&w9>sN%=}OZ@6b2_mtb~`N`^Lnfr3Ne~|NH)nU(15zNi)z7WAh
zR&>mBUgCF`>NT(Kz7)ZZJ)Thy-3=DFNv?2q?D1TS;5xftbzh}H9=eaO_uPnpZhSL>
zqG_p|Cgiswxbx7xtA)ps-#u!o_f7;a+2tXQyAj-@mqzeg1kWOP9>M(xe&<YQrL;x_
zJi@3|FZ&}_)XV-y1pHR>Q1XltHgA#G0Y^`ykn+(LZBOIe?Qt-b=gR&S!3(MXw?s-R
z1QY+^TrLqS_Em&u7o*UOyuJwhTtm37cI;B<WqKfjYcJiuw)F6c`Rb*6(NwP<ff0c_
z3QrVa4m$5#jv{{)5jxVX>QRX%4H$(b8k6Lbs7ka-Opy3I&~-x5L@MNtB9D~hl}O37
zWhn)sC>X_CQJ9O83q`@JB1%S4icbN_87;!6faKkivx`MREFMJ(NhZ~+%P4h9M^Q!U
zl!;>8AlGXW%SKU75=5bv$);S$XnBdRM{zwR`whvNR6&x8QB;zoa$LUPP1l>U<eGh4
zRVAq=@ySgO8(dvBJ247d6!s__GD^8KiljJC{;z9qIbD*ZNPJp4jcWYARa?6!HOlR%
z&a^1H6-lWfvF?Rr@{A~IMbSBmE>UDgQ9Fu`QFMwTD~dW%yxBLcbrjiA?3tK{maHoY
zFOwp#7e#$(;W9f?8bm>C7)6dGjU+afNO==Uno4XYv3V3N;;Aj8XeD_{s4JD*$THi;
z$F7|uZ%5Hyk`8hCvl3<byCc3k@h#}BE@@q($am4wBZ{8U*jrh*D7=z%kK&yun)Z*q
zp)t&C=h;1?1<Bs2-fJ5ieWG|bil3r5A4T6N`bDugiX~CJ7e)Ul21N0G6q8gZFA`er
zj+O916uFXX436THDB7${9~i}ll6(}!##ik=mYniIEO1Q*$&e^MWeHJCj$$Z<r|S%p
zcyX$ie0UU}$><2Wfh5<*<&2DCR1~9Sbd1DlQ=5&A^3z!kvru8Y6h3;|Y(f+hqab;s
zQ9I(4D5gd+CyKdIOp9VV3vZV+Q{oIZ`*QBSp{&&Ji&NO8W!fzEab^1KC@5j{bGjCP
z7@S;VQ55r{5Ifp4%#UJ06n{?jk}s6ykTCm+tmaFjSQf?lC^kg#^~pN?z1bI0ERSLZ
zM~9{}ZR?`=QWElgS;{KO4_fT2qgWG{ua%@*mU3yXLfja|S8~V>N3ki2%~2eX3R@%w
z=PG-mv5RK5MzJl5?NRKAqMl;^I*NZRc9NN<ZKvdn?uue}oF`0+T}iVyihVLWOV}^T
z-?eH{elUt}Wci1pvA+-*s$?e}k<H+6e=Et+XzUuqV^JKJg#3ggC!;tOmz<8`jO1tI
zlJ7X(qWB?-b8*R!l2rJsAWL|<rSt`MaEQYfg+GdmQCy1R=O`}A8u^-iC5o$2+>YW-
z6xX<hL~%nRTXo~L4C2mdu|HLAMsbVX(KCOEqHP6trQAv6l;4fwA$=o?dr|x<%S>F7
z`dbwDCI3CjW83jZ6d4ceQF&k_wi@p`9Q(DvW2x|7`4n=7KcjdO#eU&rcq+-WD4t95
zm&6wm|CacV#FrAO|0;@qC2xP)#i$lVfJ?54(k6n@*tOJK$0aEyLb66(B5O1x33L6A
zqIrsI?TdQRD28=$nw-dYoK2IR789xotBC|NHW>>@%w;0qe<Zm^ZWDP-o>!2=kk>?m
zW@#k(WopItwT2%lRM12r6NOC_F?p~&C@gB?gDN@2C1;t%Wb~)W9ZN_F6{@6_FsEcN
zi8r=C4JUKp%9wb~L|GH%Ou)qJCf+b1OgInaVJL56(Jn`qgE5?EQ!B6>DS1<3B@=y9
z^OyTMr82YsoWf8=k|&93RjDxYNHQ~4H<4&!OL?)iys(+Dn|M@EJT534CX!4{$|WY}
z63ML5#8HblW)Uv)f4_yxR78piw+WAlR1+DBV1v_4)G(2*h?<H>H_>KPx7Nk&15MPV
zf{9utGEFo$(Za-u=GnDPWYdO{XGyFhvGg==JxLmvXedd26T4>TVU`>djZ8E#(bPm^
znbdZgmvV-5Nt#LFf7o}Lx21_zCc2vFW}>xBdfP;MHq1m@8Et1`q|C@lSx5&d>|~;|
zBpoIG*gt!wOzmRg%V}Olk4*D=O?0P)P4tsG@0jRqqK}ClCVEN<H5q!zEdRCeUCD#8
zs9&ae-;-+ZOQb@7Nd}nsp-WvxKZwhVO!t0h;v*9un;2x`tcmYT3^wtJi4`VRniyi@
zQxnrnOgAyq#4wY;7s5mn!%cj~!QEPXjENEKrioD|MpKxRIr6N1b)!t%bZ^p*8uh1p
zuVrT*e4cx(iE(tW=9yEE+sD)S$JJ^1TF%e@Cj5ooB$j;FKE=dj6Wh8KZ=F{3e$&i1
zF4(7<sDHERqb8X%Ow2Sf&%}HavrNo3xu?(mxrsRx9&0_<1aBuK>37+F|CD{o%^Gux
z<-FD^bAgG4CYG95Mu#-9Z%E+_Kie0Z*jc?KTlj0?oFyiTHqNZpIJ4vI<S$GtryK0f
zn0~EE{aqPsb7)NKFHL@|#x4`PO{_Mt#>7`9Hknv!VjbJID`TUHJ(uk3O>8hxXMM(3
z51R09#Fm%SE1yo{?TX#6Cv2wko7iq*hl#E1or$}<><1dAvnA0cnYa5Vj6Bv_>sV{k
zUHjLZ-G}Wrt!X<=beZm@LH3x~YvPEBZ`pVg`)S^<?T6^+J2DQKxbVIGAXkYE8FQ8t
z`i2Ia?j5)zW8vK<A04nCHgR>o{p%g}&U@@fInX9fnmA_SI2-RQTKj-~=0SU{+xAl?
zI2NZ(oH4<z==W+AZSqNB4o9t@?0vS>_@1s}LQ#Z85$8<&XyPvuFHG(}!+8@oOx$D}
zI1na&HgVa+CHltU5`XM1nzXNI(`!w$8plTPiivg`Gp?E_FemxSNbB{V)30&<Zna-G
zLB91z`z;f{nE2JiZzgVYA{WTHLlc?k=q^TnkMeP8Y#S~1N6Sp|`zC%j@yx_?>i17@
zl*k$JpvePz;DaWANPH;qk%`BWQ2wVRPfR?GOQtu?j26s6cDiRqGQH(*cHe|yB5dL%
zO}*3puL+-tS7z+zqs>~jd|oHrZ$dLc<q(&_%XYd4M<Kwc0N1e{HPjvU>Gd;puA<rL
z472yxIld7SQO>5!mMo-KPepsw)a1lDY45x>Lsf)T5#<%}x*`%3kxLQ96j59exfPK|
z5rq^{SP^*@kxvl?6j4wS`4w?>Na1G>nt0VTmR!3~PI|M<*PCUIlUPI%MHSJpQD&2(
zIq!^XozK^d&U1ZwatTG0R75#NKoO-BQCbnNDdOE9?aS`l*(5q%8AVjzl(DL5W?4nB
z*zeJj(}79n`zPdXkSP@L&a&3*=^Kiupom08*c8Fkii&ts5mgmYNfDJ5VH~mF_#&x_
zA~-;u<|Gq0{nn(KBHm)*if~;^V3sG}#|*NiMJD~zt_X)BQWeqd^W-E&BvXe=Jv(@>
z>9dBJtk+39G|1%WyA?5Sy0^!1yGIdg+t;DNcTe}WYLS_yh#HD$IV1VxQTy;437q>G
z1v7cxCb!29&y`e5J}J0ez1UuE>JV9qsH2E%MKn}Ij!deni290XAbCAS%pBo3y)OCu
zbT1$AFWMw+Y3gjGh{lQ-XA$EqqKP7!O3kts(M%D|6;Z?@idsYqHb4=F6meJ)trXE(
z5mOW~RS|6z(N+-y6!E?y+9~2~Mf8-mZLf$9is;H-bEFjUc)GW<BJQ2Hf0(a%Cq)qH
zbzP){!pL;5R}tM6(L)iRoUzyWqV+q9ppSJdnZq#cj6GO5r&yVsUW(|gh&~)sMZBj7
z`w#ZMinvrPhx6r&yzLInZ_$q}oZlieGkIwHI{j(Y%Xa4dKoJ8KF+vd|S+62KQp8Y2
z3{%9%iWtP|6fr~*EMYJmW`=kEz1ZEdY}=cA3WaytKa~#fpkNNibhsk?*_j-d&m^Ir
z3~$r2YyHeoiWsek@rszBh%wZsskhe{N1N9yO7Cj%Nny^uYB%gJ4%sKlq)CdHtcXSj
z?JS>*C-1Z+7CLF4rikf^Sg(i;ikQJ+Qp8e4EK|fRMa)*j{Mc{b#QSMQ=P2SQqvJe9
z%vA&zob8P>Kj(<A&mdthyl3o}PTLnMVv!;iOJChpIKBMt8cXPSGrT3gEKdH>?iybx
zV!0w#DPpxERw!bnBEFP8{ro$7vl-re+cQ`c*HW%RT=Um(UNoq)RuSKCvtQ~~{KfR-
zbyAsRqawai#7;%*Qp6@H+@grBirCC)e$?LlRt;v%ylda4h#iXHBW%Sj`*x{j8qK~|
z1T8SBM9j9k6|qMV`xLQXrtX!apR+TANkeCNd){esK*|p)qW=#?8RY<d!w&vr-+R-3
zL=oT8!4&bQB91EJm?Ewz;<_S^E8+y(tcV{Jagv4aw4YYQ8AY6uoY9k;Yn)ZYce3Qh
zCkmfjVP$n~`zMSZ-s+qpeq@8`U9`5;=aP6q5$7fEot@6?ym9zaABB(IpA~V1(^(M@
zx7sf&qC}xOTpM33ZT;Umx#^Joh9Yh%;#WodrifdL_(c(S>G>SKBI&mkv2MS8_6+YG
zE>?duWvF{DW960f3OVWbzO&Q#_Z9KGA|7zHQN+d>Ub@Qh8D5go_v{Z9aa(Enh<<y|
zZarh4y1T}rdrhAx;wcTQh=?MdDdM>zd~{bu{KZ0Mc>8s%^->Wp6!ABGUJ(^HWPH@4
z2IUO*D<?7al_H4$a*o`!lW2+vC_<+rDIzFm>!iP$gxI9rHK;&t)Owpvc=ukDGpQ{(
z&{0L0T*)mWpG7DZVX=q=i^ydWszq2Wf-eb$cW1B*?ov62&&1q5w?*&)k;fv=G|udM
zIellT9115_Xqn$43RpxTOU%P})Xk)jc?(*^>TNYvZD~^2BI<9=;9Ez(>$QqeZL+hZ
z#NrZ5a2;Ed#B1o^<d6TQgbJlCqKxFP#U<`s?s66Zi}>JVwqQjTQ9<(Z5?_}%_jaC&
z7E#F}>R3cJ+iww7EF#q+(k$Xli>PW5$rj<Xh-wz`mPObs!fp}VjaA(edv#B=i23C_
z-QLQigxgFU7LjBT>(`ZG(k~u&*5hR7>ov(;7Lg+L+y3ElTZG3Vrmc>hrNgl1em$Nr
zu;GBGhDD@XM21DwlA1-&TbNo?@|l;Di>Btvw1_Mj<$on=OY&Z>`pmm<xTCH`)U$~9
z*&Q0qA{tmk8;fXb5e+RO$0Ax;#QD6rpJZiU+?~CofvXY!B(c?Q%%^}wH0Am)yVG1^
z!_V@vBP}E+X(`DE8Sd5=@n>@FY1<vntB!US@wP>DVUk6(m(BP$sX<4J=wK1&MmiaO
zonH5gR_;y~u{e_4nLRz=h>?03-7F$H!&~+*x7Q-NTf{pS(ZeG4*=zT+h`VP~da{xB
z+PN>LP|{1vds{>wN#2!6d0&etnb$+Y@Sa8Vm+}Er6P|7>vWJ%U477+3E#fl{-zP3w
z?<0#C##)ZMKDLNK7BSc&KCy@)G|L+`tJFy?-nSmVZ}S`br&3aCrgx}C823_s+gp3p
zILB~{IJGC4WQ0YGw1`pC6k{x6tVLWHSZ}n%eSNzm&Gb&InAz}yOyUGifqbd6EMhht
z-XbQkM;#L<Tf_{Dm}wDHEaK<miBqL;n#AcGf|*{1&rT#ViOTDLkKr5+V*li=7O~AD
z=1R`!=N2)K&L*P^B(9LSP~sw5TM}w6v52K{zD$xYEMj?F^4XgOR$9cDGP;Vs8ket@
zWR1kN7O_r}fyE23K!yz#u~ACClDJ7C<(n;HOPo`AyG88apjgCyi}>0iik~R8o7`nT
zF|+wji`d0xq}pGuNKTpFlEOU}u~()(S{sYjve^$<#5Xj%-M%Bue$XP?^(jSih~*^N
z4_m|$Nxrp+Ln-!^F1sbwPWf?*I6-$x5bq?2lgw)oMG{2O1aX?HjYTw8MH5w=wTSO5
zqL?a*tKxeWayI)Pj?S&>KhR?>;zx`4$s+!i^79;4i+E}g&n)7iMO?Co+ZJ($17{JJ
zE#d~<$>Y3Y5hGq!ziJWJxH9~0UEeN&AI7h9)he9C)D~xI6K`6?EzZG$D)}!mSI?PV
z^1Bvs&mw-PnEk{eezl0-EaDL-!jSCy7V*19Jg|sAXn{YI^S#I<=DbWEQ!4L6i|Ad}
znKLAN@yq1V$DEHj6D^`+sf;Us#-hy2Pg400=6P-rA8+@x9N`!pO&)(W`!9=lAte+p
zte1yfz8>oQ(js12#J_A<pk~M-bh`b=DL#wvTLiB<J!UGJMGT+m4Om1_67u)=czE8I
zVG+4ikw+DmGdy8B^Gt7qbJ-$HuK%jAsKTm>1XVmMovNy0<4o`AnO>}Oojl+v<9Fp!
z#aMUUUuSw5n7wPS)V!)FqzaOJ67x$epo)T$BnDHMG}4k(SVoJe;=>UxhN7zAR#p-Y
zTnSb10@j4KNhMit+oV#eD6NVzs(4Km*{Z0kin6LGr-~F+xK%;Ff-1Hr+pDTVsG__o
zUYA13D@yW)Dk{V!`b=*nRaBPIDyn!>lG3xhWzy{p_gI;Q<y2F}TdJt8ibPe|WXZ`A
zKfaQisdmX7sz{QAk`2ySE~hGvj%nahMKu}qsIhrbN0y(eiZmH*KCW;LRisN^Q(|q2
z8SGK*=CxFjDWlBTWI!=u7HgU1C229s%eK{%)@UTLzA73>(ohv`-z_!FZO@T;&#$RP
zi}ju5B{o$>GgVxtVO6nhS8{VzbWlY{RkYwtIh)PUQj%7xXswDilDAdG+ws(Pl5nSU
zdr2Dga5GCMRdiOxT2-u5MHh~sDn_efj4HaR!mEn+Rq=r;x~t+HRlKW;zk9k)uJ!a#
zMNd^|_mhKb++`|xdP&|}B87eE0DpQ~ZFcunML$)1^PA&wH03>2RQb)(U*Z5&^jYuz
zr+CeutGch9NFJz)!K!fHP5w|76YHije58txC2xK=c~G2uqKYA^_*4}`Rgqjib%ZL0
zNkaaaDuzpbvV7|L+l~=ReiDX}QaDN#Gmp8cHdYnmRIywYD^xLF6%$mkSQSfHzA7fE
zVg}V1J>{OPim8%Jk+}YQb@55}G|6|La!;pW1&?WU7d`5prHZ+#_*@mURdKSHGtX)F
z9969O);;gAW1cGJt74%l7OCRtDfa?ZFzM*G?i=5_C$4p8e5jK5Zd9<}T6dmCo)ZN!
zi}p-is)}W*Ao)V#?49|@FP?I*%66|*1+jK(*Ow%!AYoX|x)_GL@|>(qT(61^bQo0}
z;EYzqSE~406+1a|-*s)GV{?|BbZ?f?>VG@7u#ioTtrEA<u+2P-7Ch$ILCG06$LsiU
z_b#@4wd2AB=Webfr`_XcdH1MdFWYw1?fcffPZh*9YuyJq#9XC0fAi$ycyYK7sp7CI
z8uoG>QN;<iaFv_<TXtUx$&abxxa9w|buoHU6{l2jnzOh}D#KY-oKZzUq^7TMYr`Dh
zNq&5jD{|cZgDTFc;zv5_Y4;^AVyE0BKgsBMRa}sSl8cf=%clM;b*Oe(k}ImXD#<lf
zjJV~b{P%oGH&t;<6=ADrI;Z6?s<^F+AZ<9raYrIacGo<2RdG)hzpCOlRXpZWri%Nj
zxcjxM+BMGuRs2p1yl^l~DwFyLr{{X-L(YX^jz<zn8l}6Q(3rFsUF%xPtOA+ORPhfT
z_>0=lRl(?A5=mZgipdhlhpcq(*q!`R6|Yo5!tk#u*0*+&_+>eoDwb|?&=UfxSY6%q
z(=KO76}l=6c8Ausiepw0QAL#V(JDT&in-g8O;uF1ib__YScSzZnh(gOT18Q-C}tH_
zYpmA^5_4HaZb|Y;EMOIRCCMi-zeFnU`z!XwThJ;BNlD?jyogma>zT@=HI=g2!s6DL
zvz4%ll2%d5DoRT=A+d}^SjB7cyk)JTT%142lb40unfhA!xa4)Kcti3EammrVmdaL9
z#VTr9MW$7}Ddjb-BEu@GT1Cgl$<?IfEvu+*6^T}1vx-zHu}gGHbVy8+$QqN`p7r%f
zTvm}{6>cf_#8amgiM49)6iZrMQo}0J<Gl5IYC&rfm$jyc-OlBX+E$Te6<(|8E*0un
zMPsXIVinm|QP(Q!#d9^Xiu#f_h)Wtuk|QxPJ`bIll{TeerKBUrF0R>Dk``9cGA?Ol
z6|LjEjaB&aWil^AJF9qG%G*oq5Z8ITjHOeYcb24!#I9D+EiQlXSss?~4%@%p?QZJq
zVHG{CqL)nVXBF>B(%UNfNb;`4z7m;h)EO(Wzf}y75_XnRhW91;z$ymDC2jKO{n#o7
zS;ai7m~Rz>t>P1_m}V8z>A+X&4zY?+QZx9K>r<;3D*3Q@-r<sbW)&kO87c9_+1SaJ
zl~21zTg4cw7%PS2tYV@hOd2oA1c?u?J1LoD6_aIjN?d2EBn9p(GdN9#I%ZnMEUQ>j
zJ!N}G7nkLcXWX-;!koDNT&wt8@=Et&e={zyiiK9O(<*jJ;UcS8X%#$vWU*CvN~SE4
z!le?INo1BUBw211E8>#Dxh!8=#VQ$HZ53N2StD_+Rjjj$^>NLwtYU-Y8{?8e4=kG`
z-yD~m`z<zex60@?tJp5d4vAmKbq*%w-OYAd#kW$j*D8t(cJ7y)WS@-2EG8uf<GH@E
zibIkgmUtvCum4=-jF`L9ecUQeSVd6EPg=z(t9WD;kFDagRh+Skw1#=cZc09D6(96h
zuUN%ZsrH@3@2%noNzPftk5=)MRh*a6OIDHaA|JcMaKS1rN+EfboS4V{Y!#Q|lJOm5
zGxwT|-jR4+;ti{~8P~Zb$uAObvzE58Lhj1wJ*)UtlHaW24@vGz{9Pi|9!T<8<5-r5
zl1K99{nIL*u)l{BUb3^7>pr!LzpbKQ1(nPAGpX}j;$IS9SVhgt)@$hn{;`V9m0jN)
zakHpA0mmzu`Y-3QBz}oZ(j*C3MVaX_PiwO_Ib;=jJk^k-)&MnP6;Z2L{-eX>TAd&Y
zCy4*Y)OkQjQM6rnVJG$E&^@F}l(@Syn+Z$KIS5D)T5?ti5=DX}k(_hRk`Y7@B!dza
zkSHo3ARrkehyU%nU!U`zQ|CFiZoO4qU0q$>J3G@IV=?X+vsjSTf>;YI7P#qHEwEXP
z)6->v-2w--V!{4y#`jJS)~O_n8<Fm`z>`=-gul75vyw9JKa2EBm)pyIk0SwT&4Ldt
zXkkIf0@Z?=7Syspvmk7NJfNVO1@cwfY!(!-;63W>WDW}&ZYrCT%teCCZ9#gzGI<!2
zm&|8Deu|U3lYST)DQH0<3lc3zvY@a9MJ$ltQ%5YAGfo##)PiDk;w)IS-S|<qq<9N9
zkJA$@XwxVvLY$}tcRY=aQVUWnC}}|{3sPC}=s3N&1!>X^wjfm&Z;z2w!UCaGk!CX(
zS(z-&X3JPmmZBWZ@-nJt8daQ7TH-5MP?4tSN@gQfOs6V^v@8!BuWmsN3q(BapCOc^
zyk=~w%!=9;)RE&Qj{voxo(1)(<!u7u^t2{5u;6_QL`Z5#(THqp!3Pvg$fo4=Wr@u!
zXilA3y`>zQJh^lWB+28ZWdg`MD{sF`YAw4XN7IU0R<yOCodq{7xW!<JZ*M^d3$Dye
z>S)1s3x2SmlLehE=wd-v3&vY8!GdlUd~Ctz77VoD6AR?Oz&$PKWx=NwbhqH|asT^I
zcMl7!;|=|p1-&ikYe7E?YV-faePlr7zta2{vjj-CKie5Vg0;S|V2}l)=wyu72U{@I
zf-fx?VnO5adMCyVvtYOdBQopKk=DA(KXb?HBWa5G%7W1re9i0_av3AXQtuqEkF!81
z6(?FS$$~X<q%!MTFw273)Ke^&YQZ$>=@!hOkSZ5haVE3R$Ln(_=2|dM&YB5EoAc=`
zBNvbh$wj0DET&jOF16tJ{HU1AnO#AyBv+B&kgLg5w!hAT^>P+iu*HH6^riYH3pQHN
zV1h3Hqn8o**7U{s&eY#qu$8(4+mTw^WH70B$beYzs|6=5_)+FYeCi%K^c6F9QA>6=
z#XJd?kAP%tvEbVYx&-`0aezEX9<t!@1YJsh7Gc2=3yxZFf~`sXG1*^J|2{##$412e
z#e!7}q9RUNaN2@P7W~1k{${~hiZi54o6IjEoU`D(1s5#1Xu*KKm1F|Q?uhuEVIuyd
zxJpXVUlv@ZzCy-MG>+8Y7BqU7>zW1EEx1AdA2UAlQ0AYg-?rdi3!?H>6D#tsiv0OF
za>s(Z7TmMozAS@QRN0dFz=DUePFnHrUy(-=|5wC8{n!F|XxkI=KMS5xJd>5&YWUBY
zeL=n?Uy-lLH>8BUrFh3?C7XqHvy!o-g|w13Qo`&MnY9!voa~Q_bd%Caj}=~OAL%#!
z07cM>5QS>`@@t4Nwfsmnn-#+BR^+fkKAOu(ijYSrf;zY9<e|t*<|Ff4QGnvtjfqmF
zAjhx}S(q$hMNun?SrNx<f)x{5CJne7iDy;@TzV3rme1uRn`A|@70=uy<S$csf?=u^
zm93CxHSAoTlxBr6o$PZksW?T4OOX;*l(b?@_2g1y23eXcLzX2apqv%usVk5b*+L~!
zN~LkxP!%hxa*Lv?QB=30hUv)X+qJEzV?`TTeyyl$MLjE8TaBy3vQ^3DC+hXB_;8}$
zz>4>+XlO+vE1HXAMgI*+14gt=&XLjBiVv*F^=VoY33xBLDcOva>{Un7b!SowD<t^n
z)#O!<q?T6bR)~=F5k)I2Bu26$KTE37F-<nz&T8B<47H-Y^wWxtR&=sr2z%9;>}f?W
zE4o<G)rxL(cJwaYf1>d!jgOiAg#6Ts?i4*pDLvl4%4b&emj2V}W5vXYdXZcW4reqH
z(bsC+OZ2lM_Dq7-yR_&5bUwFYAcZ(zPz;ijZez*8(t$hW#LRqq%a>MM=$JIjit(Eh
zB@L%&vomRw6<=9#+J@h37;VMZRvfqDgd8#}##*u7iVaqblVB?*Suxp);@7go=gl%f
z`o?i6us0*Pu#$Y4c8V2Kt(a-WEGwp2u|iM&B6mW)TFLTlvFTRKutLOAIat92>C$W~
z7Fr=cu9;)STr1{D#dk@P7FaQ#y3s!=na<mXX^X^pmLzGh6-%g>lFP{D<O*^nxr+RT
zTurVarG>Q=>&V}?W!q@QCM$MZu}4lTD>hs4gB3fh*kZ+ZR{Z^Gntax@)ryU|(zi*+
zE)@Ho`u%yS;%uiQX4y({eS8T=vZw5{qFi$HN9p9&$S$%VDvI7~#Xc+grYG&ULf$PR
zud`gSEm5+P4p^bCFMH66Lli$*@v{|&tvF)EF*--d?l&D0rgbhW+@+-mf3f0MnX5K@
zWWz}-PFa!DhFmtBw&FJ{6dRm2oRI^!ulbI{m4CP5tQEPlC7dJAle;GB7p%Bwg$PH<
zX7VDKOIG}0#h+IEWyLEip1+7(w&IF3J|gKqE3V3bSaF}(YjRRpaa-0jD{jz{m|Ir-
zLw(b9T2{y|ekSkGyi1C6Po9@rA^XDJ5eax;#X~C|S@GD4Ck)6e&8#b0grujkQknX>
z6)&h?lB*A7lYl3aBCoC37EF0##ak=nYu@jyxN{^W#)dyOCuXrBs|~R>SZuJ_(7adb
zu0E;1po|Es4fWzvMc8eyu8KHp7=9r|vhtDsw~ta>Hq4QGejD62T$mK`*x<FnNA0(v
z)vpmrg91s<UnK>k;@*_!<B~!)s5WRegl))XLv|aUO;5Lvi%1$WA~}Z*nYzfl^!t<2
zFHF>7Lv9-?*ig}iJT@ftize9+Un(iD4f$-yZ$kka<b9xtHnhl>B!6^>e$R%2Gz*c1
z$s%M?vKSdh#*-U&MG|a?P)iF@3b{1@F*+jIwR0oMHV9M5R5Hzmbc*6+39_UO3G*YR
z$PBVHS%xf2mLtoP68vPMF1u67CLifU`?gK3%)Jw*3Pn{Ls!>!YYuHfJhFUh<`7W^;
z9TByetz$!73UTV$P@lSi4e#5~(1u1fG%-sX+wcLk_9!C3!v;lUb4}^A+h917ZO+C&
zBwLUzZ7B9nWqEl}D;rwNakpWv4Q*^_Yr{kvCdm|f9oNog{O?s>C(+)94mNbOp_2_=
zZ0KskyV}NQfSql|XO)MaM1<XJ_}GS#HjJ|26Z$=D=xM{J)ZNJix8fvHQZHr)+VB}g
zZ?X^Bmz0=(6#dBoHhgaS(#RLogG^^I#Sj~YQhZ4cBZrgH+6bBOJ5xk>2Q>eR=2)5D
z1DcPv;cJR9q&N~bjsfG%x)Wqat`w8H{z<yrPE3{&yPh(|hN(78vl*+Uq}eu1H}wpP
znNr<!KC)ShIjj;kPaGST+VJh##6xFNWM3B8u+WA@HarX^$&Zwm*sz#-!K<`PXJ<#t
zGR7~rVTBDVsipdU8&*+&W5a5h;WA@w*iL61`8~Owl=uxcY^2^~I^R-kCby8^*|3#D
zIwn=NQHzl557awMXQvH6QtvXI-4uJsy*BKl$ZSnoIKb>d8xGm<lMO#Jdy16O!xTrz
zqvSF2IC+Bnh5S{n0u*wXq++H%W5ZdwtlM$Mj&nAgw;|1rbUQBCaM6bQHaxK5cN;F*
zaNUL*tS)y5lK!yaPaC%6kNb<fOiK2O4OdP5w++{*qmy(g`bYZTGa;r+V#Q@GZ`yFn
zhTAsCV`J};|B`peyEc3nTOy-eY2lV~r6uN}4Uc4++2OO})5g)qHvF<D!)3=48~&4}
zV3PjShPQHZ$tr5Ya~obT;3KuvYl@fTD^h|by<shBB*u;`cG&Gu?2!1Zc66AeJM4(H
z!$QZ(QYn&Tvm4vZ)Y6CuX~#)ZvVGN3g%EYy;ju%+Y*&WRZ%2UHh#f&YLUt6kqlg`<
z9hx2a>`1y08@3~x9l7j)9og-eqLs>F$Dm2NR2Q9-&fxhiXH3$!(fnnSp4*N*vfWAg
z%}IJ*JF-sJb4->8=c0fe?{RZdx1b#<ll5AY^+K{!ll73JoKV^?%76qric!Sb@x^34
zo|Mgro+?!kjhgKwQY6`tOp!vSnx)eJ;&zm<ql_J8?I>wSDLXRkD9wP?ll8rm^>yxy
z^ON<5lXb@wJ#k;la(0xrqk<h3rNdM7j468KDSG!QdZR}rKd_goWJhH?Mo-bJ*ip@n
z>eN-qZ>H!q?5Jr+A3OTmQOl0nc6?~Z{waDLJL=kT(yvPk_3RKfCF|SKfZ~1f13Ma0
zG_s?y9XpRi#F5}8|I?*Ji`k53bF)ay7Iw6>LzgLGM|b*Swz8wE9gnBz=cnkc?Pz01
zTNbsmqrHr|9pX!vq>grUvZFIgWeTm{myzjrp(8uqjpAcciawEfPAyGIwg=f$=FC*R
zml^XJMQ=NDL~=<?KRf!{anO!Kb_}rNb35kSv4AlH?HFsvI61^Juk09X#}N7><S<Ru
zTTC@NIn<6X&6bDRG2GNLwMLqHlpSBmfw1FiI%CM*tS&8x7;nb}n&-=8OtfPX^(=C-
z9n&c!a*7>O?U=@F=1|DVBK{0JM9egcW;0-pS!=Ex^GrQ-s=m;UMRshl<2ySR(_dxB
zHxx_ArFJZ{V>$H-QfBo^il>7r$mS%iwqv~=>ln6%MQfRrA_*35pt;eGO?G@sy_u9E
zsU=CoR&uxLe{aV&JGL|XgUl;Cezao;vzhU`{-4ftq>()|_u3(+%s!dY%!+@2Ld>5i
zPV%%8|7T_o+i`^AD0z%LPD;!PieJcIc?OAjitEYjsrqS(?Njx$viRF^)`4>loR`Jl
zjt6!;wBw>3zuWPz9e3=w#K|0(reCw;4>{4M>VJ}dk(bFU<W=%-Qo<fi)vwzTou=O)
z|FPqyoYd3wTg<keri;E!M`GmYPuiDpSI%W6;~w|)J~?2Tu_8T^bIp$595~}J&fF(<
zT%M+Pa^OEZp4#!uj^}oyIgswa3p-xg5$7<D&MP}!%cAEn*5o&Kyp@&K0XXo^ju;2L
zjLG6aRtl#Bu@nx{;((RHM%o?!n@-ZK%qxXvrgoXyP2n*keGd2?2+))cWOE?sK*%BA
z12p<3DNLa`jN>j@5yI?b4hM2Nkm-miGa<JF?PSe#;5`Q9aUd^+j7B~O@*6rc87&ud
z{BLC_#F)Zl5i)bdD8@07YlL(xo_>M@vKB?CqolNx=s*&6vgxEyq>>fvDDFTB2U@VT
zk`9!jm@!SyaG<orFsuw&(Sb@1lyw*<PB{)ydHS-I3KZg3cA$y_bsebZKvf5-IZ%s5
z)ybM<4N__~;kqrXZ8~)vkgOERPSvN`kZj<<`({k$n$U>Z#_Wv58?Di4>OeCGn*Trl
zL;BLUmSRpb4wLS{M`mlS9B575#&p_Jv~!@n>2#pz=)g~`-r0dJ4s>;(n**~PnC-yF
z4t(OkNC!qa@F{}_lieNY;XqFZdO6Ua&SzvlQhL&xq7T{Ept0|g<kB;M=I7)<Qv5F*
z7-VWW*M?9JCBNipHH>;VIf7(^_{xFN4$PF<J6->p{uFYI17jT+=fHReI+|ObVCspC
znPj#z*@4#_fvKi5jbge3GbrS4K{i)(x-MIp<G@^+zdA6FVw(fo9hmRH0tXg4P;<Jz
z+JQ9=EOKD614|eq)t5W4)YQw&<G8|sl@9sf?tkO+jp-ZlcC3}G16#~ean?Jq!GVo*
zz9l!Ar7{zw)@Jh@|IQR!9r)gikrsY%V26y19Yd!ZJGIk+0}dQyz>f~>qS$T5@1fXB
z?j!fh7_y>l?hu{hGJhQSnfkB;M=6ewnO%~t9Aj3lttTkN`Na%4NpXsl#pJXDavhWl
z;;iZVchhxQL*$0`yaN{;_}7U$PF!^0cRAt;W+}Mjz#lxXn=1IzfxqNzQqWMrWe2Xv
zI-?+`f~yYv?Z7KJ#133@;JU-OTYe^IidyQ112-MG<-k7<oS1IhIm=DvZ3hfa*KIQl
z=U+zNao{e+J@P&&r4J|`I`GJW$J9?`<(FM>;8(SjtXguDDVH0WHWK{YVcbRMo}s^R
z;H3j1(q`zwHx9gYz^%Ze;GF{vXXsfK#43;u#3)8TvnVKD%D8WrWKm#O;80+d0Ofy;
zNINo6ih}Mlbf;omQ$&dAqL%Ea8M;@2Pk}O14=Y$SL-#8PDhMgqIYSR9kYF)Y1s7-N
zngW^d57~nFqU8#hO+j`A`DW@RX6p53>bVp^L8??#@Yzf~w}ST+6jYE$L0$zDXX^PB
z<X4P!Y1K?!2D|{ZWTnAE3JNQTSCGIB6;V)3!O@w<hKkaW7^xD+eHR^3@b^qTQ9%+#
zl)V*4di8Rqo~#(RXDNztSaZ+P#ZQ;vQcz7nbp<69lvGegL0JW*6lAc??z8mL-0@Pg
z^aitZ83EZ!IR)hvR8mk`fo!6Jf{F@8u|X-7BzpcVy^4bGXX#ZHh!#^0v5dSN<r<3I
z9-y9rnhI(us4ZhVUH`PXUWdJvO-PtzC7qt7*O#pyiAYfc1>%Tqq@b~a4-_<E(cM|P
zbGC5>%uh-{$=P}{1<e(FsGx;{UNY<o<d4Ue3R){@qd=EkQ_xC5OvO}*uRq&pR<z8Y
zwhB5a=&Ya}cVC?L3OXq0I9u;1eVC<-5Oz_}Rlz6HB?a9SjGe82tl+?GeeG<c+aip4
zCHv(l*J^XiOS6r?-FhhKNk=BR3`K7ReH08;@TG#j^apT@64_5de>$S=bM(&@49qN=
zuIHJff1#lC9DR_2!4#s0P{?+NDHzUaJWas}1tS%VQ;aio6o>9>1!EL^rC_u)KHd16
zPO3;h$8uI=4zD=Uz3~bru!=-ZR4_@wWDd1V9toJjA`w#+G@4`V?{t>V;HG6HWi6Vm
zV2*+nPONldu7Y_ohE8;J8mHTQ1veD@qhNu8g>rr=Sghb@1&0+ZQLt3OR+%;mmMK`S
zV7-D3(vE_a3VLu`vbk04z&i39a<zgrX0O(A2PI6lCEQ4Vvw|%OHkmQsas;IGJ32DE
zq}!PTvQ5Eu1v|uH(GN0WbBv}k$LB}0g@X!qDaINljqFyihyGr2AGx1AK*}&mn507#
zKk)>V>=8Ma75pxXvw~v^jw?8$;4J%pLcvJ|rzFy>`zwX)wN#h78|Ub!75t_^grv;&
z&&d&aRPrKQIM1*Pvd~TWU#T4QKV<QjHDAF)R{2Yo8ipO`K3<VafUFyIWK1##@EWt%
z%~8Fn;Ff~06WN@&t>9k;uNAyea7V#i1&<Z^dY;ie+2wl*?kjj8+fwj|rf06v6ZynI
zDCb3HpZ`<vOu=&nPk9t%yW+o4@KR1I&b=aYb@?;l6@A$?DSa!8KbJwD)5yj+5$lA7
zI*SuoInBhEqil7;Mn7{m?M^7nI!K9;&Nxl&a>7mRF&!^OW?jD%0Vje^ROeoVSfr8~
znc4H~PULVR>O>;VoKEC*A|G`wC*VYGC-N{WE5CF=l1#$<bYwcc$IcgEw%Wdyax@E4
z7jmMo6GfaT%B<9iqbMd<d5%fE=_gP`oW|8q!jhawrc=j>6em)hs3yBWC(VfxPL!lh
zCyQrB%KA@Ho|Hy1oG49QhAc~#BQxiA1t%&xQHhSkS8<~9|0}IZo!L(*t-)+fQg%?B
zT29nvR&=AedR-^#IZ@w<1{{rcEPCIG51eS?M8nLAW_)9(v7kvsNll$-VfxLSXm08c
zDdae|bV8SrG5xj_t;p6+v@!k6u1b7+I+@u{PIPu+niJEV=;B0ICwe>4$BAwnYPqC-
zI@h>$`Phk1G6$dRPWB*slD){!NQp1^QHj1z^mAge)3`48cVd7O<D3}p#OK_#;ZBTT
zHwHTKg%g9E7;N@)m=i;s7|QIIvcU2(D))pk6!J-(FmvG=>BK0fvBYJb(O*fkPJHde
z7*-rhW=?Xck~x^N+)bcAk(~7ZVn)u@r#K;;O3I|2!N%u0F^|V<COONA*%Wg~>4R*2
z{#<>_T;pmx--!iIEOcTKTV6uS))!OAhmF#KrL3}y&T{hHTz!=j-_XD8#A+wjIC0pC
zBTlS!Vx1FPo%r5~^-esPt8a9|Gfx+>fmyjp-sHr$PHc8U`XEK$iC|OGF}X?>o~Kuw
zr*Ctj^*nut?2#OZdHQxIesE&aJY5z{iCH;M|IvxP(wT!TcgfXlp5g4K*u$nIyU&ST
z^Yr~r9H2Nz9%8BZKQa3=DOtIs9(CfF6Bpz}cH+1bC!9DVXVX06p5Yhi`8@rU6Tdo*
zdx?{zi1YLG(@xmu>xJj*zfshgZ(O*~I*ku@&XMPx=rLcPG++PSiA!uyivExho3A?-
z=tURk`{(O_I&pr!{+DcJzAoa56IY%1n_a!`#0`pTq<l*J55+C=CRvi7?cAo8)l7y_
z(p@LIyU@dh$_w;+PTZHqop|WPBPWWxP{M`BPCRiUzYFs4vHzTS>O`1Yvd^4wQa^X%
zh0_RlDeF0%SImm@n&J)l)`@o%F=h){C?=1MiKVcRR?<e=Ne3ydDHKaSvbZSRq=)p9
z6615hPaPnGE`%sl7c>`s{>T!XA0uHx(IT?BkevZJ$ed&@5~RfBb|H_c^HSs^rRP#w
zz=ijiE$Biaio#@+EaE~@3W+R65$8fYMS|%^T#%iTfJD<tav_;Ig-kX5G#ApTGdEq*
zg;LD6b0Ncp($vjdC}YM~qbTb_Ig0XR1+pS38?8i9*@Y?;RZU+uQJuPm3pHJ+W%}<^
z)OMi`MP0I<Sz6zP2ByyJWJ6{fxzL#61G0%3)084JvbhT%ntlt4mZa{&N2cG3qO}Wc
zDB6;lqu1Vy=|Itu?BqgciY{hpSBh>fd~7<OxbUf|r6)aI=;boLQ#8|!&s^y3LP<AD
zxzWdkzAoH$;a?Z}xzOK*IWEj~VSo#tyKrYv;zSqZAFl&l_|k=8E_@+F)F>)1OB&=t
z>jnB?a)=8<Da4V|;Vz7DVOp<*@h*&{Xi+u3)4G^Z685?AF#oSy7|muyf9;b0Zu`c#
zFqY0Z)35nyV1f%<Bk}U&e4+GYk_(evm?FFrH`RsOjpC=fFzJJYX)dJQi4!3)GhCSI
z!gn3xXSvX4fh=x@mQ><#+&mZNyKu;bpIlhr!a^4|y0FQGMJ_CMVU29JLzN}u3Kv$o
zu+)WRGGlAh?=`FLau=p9&?Vjdq4b&s`YIQ`abdN~_?DE^I@Pv*_8Rrmb2gCRwJxl4
zVc!D%+yZ^Q3maUxzd(1UHxiz#UjJJcHoLHkTiGIgb78v+Kge#%q2VUBxnN(YOH&do
zU)GXZvbh~D>~!Hr7evVB#F3PLp+2L~`;y)5g6KUi?3L|ubNl63&#Eh3mFgl6xNwlp
z^6JLE{OrPE7cRQ+y9-BLIO@W0E}U`Um<z{UkXk2QIN`$dw)KB;;a54__evKVT}SqG
z@}`nfdOD@iDHl$=@ThJ5OsCXB{j9{_D}A29=UiydD(bAd4HxPc*rv2_$%Q{$xW*Xq
z|8(K93s+qD%LR!XU%kF;=qj~kV8-7J6JJc(^mP|*xbTk)H(ijXZgF$6JJKHs?z&JH
z^NtM8?YKN{<aOh&%lO{oJ@P*JfP5(3mi6C-CoZ_%@VN1x3r}5m?ZO)uo-sx$zI5U3
z!I<aFz96r8jJFKDq8{Tl^jm7H8}D3*apO!2PZqba(X4LyeQT@;c?(9Y8&$pW7WyCN
zGHTh}u)E=)qmVAr>Be;!0U0lC>bp2E&FrMljWxI9{B8u?2)Yq+<3xe@FpE?-G>X5b
z<SG$}KT#}3T9DvuG;a>5nZs>-5wuJB_?&cdxdDnJx#M%YG2uxZUc}{dBflG|Zd7a&
zU%-v`+$icsF*gdjF}r_!AvX%M1N}<J7IEWL=~#Iu&V%NGsqvB0UE^>0<KyI+Z*KXg
zwb99VGJ$MZHa5|XBsWr+ebX_1jy*o{NnElUH{OfC@Fp&$t|nE|+(>t$IJf?`Lqe;U
zaU~ev^Hp5k#_<_$<NJHH+^FqFX*bHav2|90ymYLr+gQrVk>$w>ZhUwurlJhKeEFYF
zWm3Yb$Wd^knj6*K#shF9)o^2?FKec*NppQyOC2}rx-r;|A#T*;C^dDXnH%-pXyBG#
zvSaUmaZTKix7##yW93WZ?GlaLXw1kDNJrBIF(n{>iTLKyA6Z@9=<7xcH(I*Ull!H+
z@sS%{-013tyq=?#8?D_K**xLlka)?qp>FF&JGU&q@#43q(}9$1M>jf|y0aVmXD5i+
z&5e)U=;4OE`{NVo=LZR`OB$~Wyxc7QQ)aunq0debf920H64T3#j$5Ojk-f=7gX6`K
z7h3gmV}KhudM1eOFGI0V7xB3p1Ks$yQ}x;n<G+xrMr{0PZ~P!RcZwK7HZ;_YuiO~z
z#+N)m!`v9vIexesBRDK0CF{n_h5DM7@iI%hc1YN9uJ+e%jB#VSd5liniW%$1I3DiZ
zw_?V#;skP{+c>W!O>$#0^%T>Y>c%wc4r5{@U<O;0L(ua=%q*F`Zp?9Gt{Xeu_)*58
zPK9}HEOKM98}r>*;5L5pAm&0Aty^e(=X{A9OWjy4N6L+5ZY+0WmD~7Ed$V`BR>(o8
z{&AuH+d|`;{PKnWZ|J;a-L-D4b7LbNDP2#ofz%f1g%=s^Z<0NtGc+SZvYV;5kl)GB
zQApkIDYm(>o#F@6-ytW<B4g9L+}Q2L7503OPy*aIB7;2Bu}@BUHxA0&a6=wHSYy%u
zewuN}jh|%pvWoP)1N$R==(|Wi>c%l{;<6k>wtrj}88?10w|kD_S2s?Y&MAu1Zv19C
zXDH6PA)S;SN;*$*fxPI(?-ZBJ(m&kzllm{yS<5cT4@s`N@i+T<&5iQ!a$R>DKLn7&
z^y4D^<Rbm18@FUWtMc&zZp*Zkvpa}tLEMpL-;LY><O$%O8~5E<;m1lp9=P$)jV)e$
z=fxv89=qZ9AmG6hSyf`AZ)E|One4_>w|qw(&)s+>=|oIMw&?IGvBDQ}=5~m_lvQGp
zUb<xTwHt5T_+fnYN##mpS*%yd7LD;3Yf-)xQ3pj953*8-8S8<?1FHu%4^qF1v77#m
ztkGAujo+6k9*l@faC+d9$lGyl59ICP9uH34inFYYdOi5HLe$5sI2%6-1wHcEC9L&e
zod>E1ng_)^i1Q%qK{j!!rROKJlR2fda9R!zD!Egd<V?@y0X%rUBsDin^HJyV;Mu)M
zUb5Ay#8NrZC7=KU<fq*4c~H=ULd+KSpr{A(lfxn&Y|o!0Pb%1OIk8{0w88SeJr5E*
z=<Gok4<a5!J*ehEbq^9fNb;Z@_d3~w6c0*Kr;;VeG%}r(0V(dmjem?Ew@NBW^UY-A
zhjJMnls03^P?Ysx)<R<p%X?74gNm}79@OcbQPqPS-mH~HH;PtaWVXe|P3hC3B_w#q
z;+Ps9)bya02d!myJgDtK6AzktFw7EPhw<-wP?tik$n`v^??D3(oV-9wjF=5s+K7}k
z8+-79ssFfYbg7vKAJJ*<!G{zr$d=@gOEJ2Pm_1%1g_%{_c+l2^4h#^#9YuQ&lIItf
ztfX$YYIUU9$&8V!XIBrpc`)9C2_Agx!6z&l>cOWJeaP-+d=C$LQui{Q&phZ&Ew9+i
z+)7^$`qAl64j?}#2a;cqgUG?;5Yl$W7~U^s7(EzHXN(79WqMPOBu9~7k)uhe^0iEx
z>eVv0KF)&|jiQ-)VZ~}c-ETb6gGC-J_CWL`4<=Jg@nEV4)8u6FU^bl@a>yFT&m={}
zE!JmIe>=3eWaoG=*MoVCTu9C*7m(6&M*ZSK30@+{<)65fGAwzbOFdY|>~arQP)O0{
z0x{2&sv=gg|KE_S$u;I4<@+~wy$2gS=<7v4FE)Cx$%7(Z6!qd;4>rp_dhpVNEgpR5
z!3ht3@nEae_27sHM?Kgk=a&cjJviWj+)@1C!A^=Dq&SnG#{EdWi`;GcdnopLu#e(V
zY6%IRz;omv`*w)@$?WIP9vr65oCC)^$o-`;4USBU9;g59-VC`-svvKE@!+JaLLTf%
zPn7Iw4}SCDwg>+*?2HE&J@}paEP0MR@4*EMY4g>Rm`l{x$v?<H$-hX6x$MCe>Z|16
z9$cfCn4`F)%vo`R&OaX9q_{=O;gixk9^CcdF&)WPUaa4vzE3_d{f8brqHeKRm#`<)
z|B+A4m}eBv$t$CcGy0V*<6hXj#!~;<gEwa6TMyn*$FL|1nU$2tST8Kp@nhp8JH30H
z-3!f&uon(56feYal725-6mHT(dP#}#d5y<-iU`mNk|DEHr8wHrF9F%S$m2!Ng!t@c
zX$~)PQs*K;<|gGgGEzl?^Rh}lGQSrEDBdHbv>-(xFAAGZ(-(naUc`CPEpzX@NbsVa
z7wx@hF}`-hiyB_k^djm-sbUF|61_<BBH4=+FH*gz;)T4%I?ao8FUosS!HeQvl<*?M
zi_)x8GP5GtGAU77$aKnhQTG1_6iX=QMP@)n`jyE_q|}nqOv>h}dQpwrtxk#~6>E7>
z+lwaLi@Y`J)bT=C*K7QlAfld}yq8+mCmWEGecy|Q)QwE1F~tX7;~A<F(A0}&Y_Pc(
zA5qAm|B#{u+0qN0qTspOQY5Jrv#rTCUbLmi)y-H5JII9TZivpZFTJB3z34=z_hMa+
zT^B}nmFbbk_~WtaqOu>$P#;hD#EVb8=<Y=iFM87%zgQQ)rx(4v_>7KZ-%Ut#&21#2
z51n~+%82go#Q-)t&x_B!7)U+c3wgHZ7hVkY;!7_EF*}$XLQ3gp-;@|8OWduv30_R}
zVz?J0yco&q<E0xsO-3>M6*-#xnjGWBSc-9^?5|uU<*(FCG0BU`^u-isiWxJNVj3xz
z(HUOctyy}e7qh&WEj{lYox>s#2Zu%<c8|_wwrrp1d@mMwvCu1zEW<{ci%DsGnHNh;
zy_8~0Qi<g<w=XBGkTZ8piIrZQI#W{8DvEEsSnb6c>b0_Ic{b*mlEQUftY=pA1{tE&
z2_iPJ!EedU=2nh<m$6l}%pV_y`ml}uJ}>rr@#1l0JNW~-gWO5}=*2ECc6+gh*}bIv
zRzj-CouqKtV*P*@e|d4)i-TSq^5Q2ie)i(D7r%LN?(@{cUL2R1<HZqX#W_lGjI4Yl
z@fR<q+(|s;h3M~wrvA$8N!jjV{YYAxIO3o2;;a{c$Z7a2a(=OX&WrP2T#%NBq<)n@
zO-)X_=*91H<GolHEzkN8af#WP4^tB#r2grJgnhCv<%$<q<;3wB3+&%sT=T;3Lx9=q
zUOeWQ-0<Qbikn{Crnp5)mBsapOTfQg+@W)qyhq+AACMCBkm3<}pqu@P7ynT|^&+be
zu|7PL^Q&{!=U(Fm@&$`tdhv?lwHI%_c<03%W{>Pnkp^Sf$t<K~E9WyF;2=d7I!+%R
z^^Lbu+eo_^>F_}@b)KPdpHzr<`QT=}RPp%WHMNgI&a9vhAs-TbNb*7TLG$6uJ<%dQ
zgxO9WpFC<6*~~Vx`;db=r|IPK0o1w4KOPthOFruSW=w%f2?b33o(~00UC4*Rrk-2B
zZc%PpwqDGKI8(>_kU$+VohU{8frMlqQhccA!`ON?*2c%DvZ+!&h)(k%ouW8df-FhS
zYaS~B89tQup^Oh-`{OJ6P|1g~)a6Jq%llA)T82on#!>L07B^AFhpIkQ^BMojso_IS
zAF5MJ%$JLd|8zXbZx?pD5mVdTyE+tg$>TT6*Y}|TyZt`d&<E!dUG}08vyI6Q$R=b{
zQUbhRR%`CVhd#9Mp`{O<d>HjEP8Mz5hxR^Wos{$uMJuwk4{c1ptq<)?J?7s~2kMSw
z&2`47Or3q`!Untg(4RsY@8-kDK78WCr>4`3qC45chn}YY(NO<q)V)ooj}LvR`<af!
zNSgzE_?*r_)BnPUL8cx|As5pxeHi9L0Y4s|hz$2(gb&AkIN`%c3GiW!98Dj-@?o?O
zD>$%U`!L3b1=M4G80W)0AJ%tH81KUbAEx^-!zZ87VUiEi=x^_sFxiJGK1}5x46Rta
z^usubR|^{#J`t<m1ZMg$%ZE9P7iYFCrxlCWc<z%J$<Fm*{In`%6AV4yjM??J_(Jw!
z5xJOLLdpzT>ccYX<z!@uamToldX*XTjSs7R=zh3(=d~F^30Nm<xDVT92fgv@ec0f`
zM(RyIY^C^?+)QpEzauk0SpMFJ=AGg<=Z%-_j+<3~;D(O)u)~L)KKv*r`<?2$eAq4G
z`^KX8_#h8>mp2sb^+70lAH{n&Ywq{q0QEug5cv~nL{c1<!*nu1vPZe0W9EKE+Lrvq
zhhKeo>%%)APWo`lhrfNeCX0+b|KEoTjQq`qGd`S^Nj|JW^(Fc_imAI2B<4ILUmh=U
zk&(aqaEan)Yt}y~{v`h*W!x@PT=C&5h0|^f=5-%#`0&7ohd%s6|6d>OP~7z47R7B+
z@n)5HNq2p?M@Qb6`J$Kc6x{pFrsPd{MDa@2&wkOz)K7f)&xfbf5_#uU-DlL#P3MIV
zFR4G_(U+LlKD;qYM=sH0{K(=rE?arXtfa?}SU)U&Sp8VKME`+xZGMQD(W9o_4~HKj
z6w*n$NHN_Mr<UkmHsvGzegyoGw+sjU2-68MtCAYo<U6kfWb+#jVwIGgA_tk1%;g8n
z(%cl+tR<!AdHu-eM}9UdAEC(SCt|+mM?pUd`BB)94t{j>qlh0x{V3;0c|VHz5$8ub
ztHk?pdx@S(Eh52>2%RXINQ$52N3y9?DCCCu{k-vMeq??IQk*Twrc3xylDd@XWcX3q
z)MaF6spSI@39jHrML*imsYEvNqp=^A{iwohRX=J|R3odCHOQKzG*U~B*HYu`mQ=@&
zx~5;xkNVUN$oI*HW~qG6{DB|*dTe|PKbrWlczRk>I?c%DX6c6%eIv0F+|m!7*^kIp
zWNT7NC8n((e-(~MYUf9LQ_FeOiQAp%$0R>G`_aXZu6}g$V~8I^{g`Ws|CsFW$0rn@
z`q7=D2ie<?o)i+<%a6}Yonxuqhq|xn^z-B8@OTN6G{BF~=?^qZzn~aI4kpJ;Nc&Qz
z`s27^e%$=3q<qdFj>ZnB9^uDGKSoiHCBGs^`{inmG1OV|1f^Cc$I%&2iaCM8-Xl8M
zk12jE;RsCiBdJz`q&XDR{FqKL!}MqRG0W7m{b-m^mEgH_=8^Ns1>{0<5xJOje-M@U
zrQFssayjX>8MhXz{P@O?^L||L<4p_4YCm@R@uMGW<b2tgyjBj!rI>Yote5kpRN@A|
zaiQPA>Kn;T<hSHzKekYOM{Xs*&t&h&Hb1sg|6n@Ovb0umjb)b~2Y!qk_Tz{jyZzX3
zAhO4gy%baSr0g@rehKsApdW|)XkIhrCmD*B5nq|)cgqrgrk1Qcoct);KkmoIZ<CHu
z?+qGzdV<a`e*Ef}-$fdwlFs;XiuyG9o9U0Llq{uZnLQ^b!opO^Ui9O4KW_N(j~|!(
z_;66Nq`&2S_oGy<<UeI@%USa_a@mhg$0Ao`JvkpymPf9#wC}r!#9Z^^x(w-(Soxg%
zO{*B;O+Rk2lka2=@#EaN$P;G&_2Z5ocj;8R7!m)TANS?+e>#uIPjjR{q>zV*KBm}w
zBYDgBW&dLfPswNGbMgiGl6*zJCS`Em`0<uH^YiMM0I~#-HGtRv+yQvxe-L|9EdeM2
z`6|0&4ZtS<m?)a9*ZPP(fC<whk{lHBiTXzulAHm!0(h`168t+!=ncRZK#l-%2H+2%
z_^`-wR~apU>ir^t0D^QvvbpO?1D{6J06P2@k(h7*{oN_q$n2zjeyVkNk`yH^)pG^V
zZ%v|f00I1&Kkd0J`vK$&plbl#0>~dgfdD!N&?$iT0w@?j*#OD~P$*zr+KL8HEP#in
zBZbK#0c<!@R<dy{jRqhO{f?)WYj;8b_VQ&S0m$oPf>Wc3EKLd+OG+{+A|-%SQ>O)x
zPF<WVL6$U2OHpKyrO7e@)LE)aBjp1)($845TLe%cfQkWB3ZOE((I9{-0aOj3HnY{p
znq+lS&Z8OuSmeL7x#DX{_0`6E)0A{q9hTN5>yh=zT9wL6fTZ^WXc$1F02&AIK>!~H
z@a%X(lK|wNM?|v#n$o#;E}{EUy}7BSNRq^~3_uUyBRSStqmtSO(8|=U185@$VpT*^
zTZ(pMm!4@7*@0mVW+r+5jp-af7a88C;hHTfWZPDG*R158SyDd^;1lUa0Mi2aG=T2x
z_Gba~khvF=Any~D&R4k?=_yCq;p`>jb1yP#sopz)J^}QVxgoPLfYu$7`Uf!bcB#Pu
z3<+QW_2=Y3@(XEsO>_{og#CG_`OpBq3}9RUV*?l#!0-S@1@M*3t8%$U1n}f$`pAGh
zI4-t%-ng#!i}_31#2FpH*8zwlTEaw(VRgy=&%9r3ytHt?*bqzXMD}VDDcze)F(rU2
zfv9As2QWkCTM&*QW^$J;L8$E$X9X}jfH?uo4d6fk2LqTFz<db^pxN})1p%yHk+_~*
z7{H<c7E`YxrDzGoQgRu&Jb)Eu>B`K~rTRCSj_I$VSWB)W4;@L9);0vN(Tv#?z_-+!
zO=n90-%)QRr*%n`D%+^HlRuDR?x5I7{usb6iroS131F`r_b!S11Guy&bsx24MGGZ+
zD1e^=xE8?m0DfkzlccnHSWY52LwBbfC6AHE$rI!+<get%si_iq%B*{u;y3b40B2=R
zQlFO<#*Dc@agqF;yhQ#%E}ESD7sX}r3VD^3fWPI?Oiq?g-U#5I0AA3)Ns4(lfLo@%
z9l*b)zC$59elLLga@LssV~U65BbjeYa!DhSo&@k8&8KGMGm7VO3an0$fS1g^GD}}m
zyb0i~>AVXdCTPs4EM!(PmV7?OA-*+;O7)U$WME@N^dNh5*wKg*gfj?N5bhw#24TGa
zHwbSKMS>_Agf9qx5V?c6RV^_PL@;PPZU{kyWQGTkEr{$vXhB>&5)%$$-ual<dF@B@
zCO*y?6|rrpo+F4{L3vVHLe3zPb44Znwp5>-D|%(4<-t;2KJ>^FMBX6s1<|Wo<AU5u
ze(D0GnD0s7e#^Mpr9tls(LzBKW{ha*Pq854f`|kWJ3M;oR$P1#Kjn5L1hM=3Sow(K
zv*j6LMuQkzAu1^`h$QM{GKEYHB8?(Fh*A{ANr^8(QBroQgFmx{3_7KQC`0ikM@al~
z9I^6b1+pSpiL6XkAsx%~;d7I!2T>!4Xb6cR)C{6l5Z8ma5k&1E>I5-YHWx(QAnFCt
zDu~uW{F^nUeh|%q#uZRrK-M6L_k;4-v}i-JQBdw`nl}#O1Bxa=G^G$z9vLc3d1E|m
zwmGYR7(@$-mZVNf=|@4xSC2$=xtO%>aH8A^v<aeZ5bc6!A4CT^;z4w0aK|7fH;R57
zM5iD+(^;`OA&^+JOAuX|?G`ltZ6Qq+TBd(Or|dFaoE|~+3}Rdm<K?gh@mUakSo+@m
z_})Q$F)zMdt%jnT+=|Kvo_&MpCwmvffFM2(Vz?aQrqO{xY<*|6yuWpVh%bT|L}xHL
zgcN^h5MP>lm~8H9Eit77BZBgobNonhR1jZLj3&kZI*2i*9!sHkt4&}Jrw1`3h>1Z=
zl6|KW`a9c{AVztkabF}(4Psgli^in)%9{FMU}D$)#$Wm~gP0Y>>>x(guPWI&L9{uP
zE%s7uQc~7o<&$TQi_8z=f-7l35DSB_{uSvsC(>w{z9@*bL97d6v9#GgB54W5(jb;m
z$n|%55G#UMDTACf+AuELDvEE&)ui}qD7;6K*9RdN+{^6qh9EWuv5ESpAbt+wTk6e0
zY@zrrh+P!Y;jJR5x0%j%iXX@wLF}aX(JYl`=}WEMLF}Qk*Yx*M>?aQdanSS+QDoLS
z9K>&?e}v*Fc`S(IrhkIs7xLF2PMZEHiqm9wUUtt=pC!+c=VhoVE|R~K(%VZEe+2O-
z#b2f`cPUp)eU;+xAg)p59%(#Y`=20g%BmPL&c|Cp+z#SV5Rc_NWlZNok!7`#@5mvT
z7r9H`Bkz-9KA?CQ#D6D}n_rFe&skR5dBVE?1@V;PSrBh!#R%eg5HEswN%NIVGjH_g
zUKtWEpE<my`G)Mj%((xI2^r^R))2CU(Dr;>TI>IPhaonEzQdxH5Ue5N8wEDfPC7`1
zbdoO8O?pT#Dc`J+y8aLXk{wXHbKx|3aY-<QPzY)WS_t6~5;!K=$YLRU__9&<5ORc&
zGlX0r<fSkD1VwIg5__H}gn|4NB_GZFWC8L$vLIQAEKC+5i<0a2|L?mxaUsMrjp%KB
zpcKh0<;s>6LUIVdhj1x`ln_!w_%VcCA*6+n9zv%OI)~8iV5E2mV|!ODA3})`N`~-3
zj+9a%lnWV8V-}qeLg^67gitmFdE<G<v&MW7UvwatBrz32s2D<}knv(NNqPvCL#Pr$
zRXX)UXb?iR5UMj<L)L#Y^6}tYwWw>8bxgl5MLlW6=adHDH~mH-G^AeS&nkXn>1qf~
z%+eMiG^K84I?d&9n7WA1*^>J0bfd1MkC<&mwho~UMO(5R*`Ach4ip{9Z>DGM5<=Gy
zR)&m!<aG<-;}FKl4ldU};m8jsKP9_|&?AJNA@mAiNXWQGd?phqgaILZ9zvfGCY~+b
zm#kZ%q-aU~B&=+F{}ALAoFWFYoi9Qd#OkY->BpAogF|?|OxKp{*OuwQjTw>U`p^)*
z3}F~!<Uc-gfFx2lB7~74j0)ka5Jrb^ep)jzC4C(-zUOxHY5W*D^dXG+)A$RedU8te
zMs$1#6QoPrBiX6BAxxs4Oim%Enx)f1m~QGB6f?<L<m?dUP#nCTEKSX$o=-}4K?n;&
znD%RA5xJOLLM|njk;};y<cO}x62B^hZ$eld!kQ4aaeSonYeP6wEpbB#>*P=_*Vofe
z8uq`{U}FfILijd>uh&>M%QTkVFJE$t%<8kH&mSl)l(dxx;(HmT1Er;OJ6rgH+#zjd
zHNJ7ZGlWL($M;#T?+#&42q&c-2J8)?ReIXbA?yno|BaQjpW*;{kUSK^PZa;vO_PAb
ztayYxN**I8E!U5Sa3X|XWaO9YznZ4#%wzXDZy6D%L)bqw{WsZb3ejgN&Po3%E|3>V
z`QNkz{1L*RvUaIZRs0pg<&Zpl5065)!cA<<lXNeHt0DXyGVXP+g>Z{P^mU3GA^am}
z+>O+m%$~`}Dn+-=n14gKW9qvhtaxmb()(=r0cjkgyKcF!dn{*!HOZmki7YJ36aOQh
zhVU$e=OMh1m0U$u6))+(3E?fpEAlnD{Ik?|6fvsNf+TswW%aD3M8wjuk`}Vg<Va?W
zO@*D#k<rQGC@P$)aXE9T@KA_$tN8p$>aCTjUKPb2ruvxms|ctFs`xrJO-kFXPZf$@
z(AaT!UM@{VST(*a&~HVBY$~#=$e|*qik56MmkOw8s2YC@<W`YKnpF{}BCm>ks<9vx
zRUywm%&+1-6$MokP_cSLf~1Zc%l}fjNg)-RcGWDbV(8f>?zLJG6;rQN%Segdm{(G2
z{nWlryov-BbyN&17?nROA}Xq@xLhzARgtJ7Nky`XimLGiSGkO)sKzIv87fj$;~puE
z6p^l?ICTlrDM?XEg*=H`0!p)mGGtk@99f>MK-Oq%eDA%I?0f5IWja;Js$?}%0_Jax
zQCbITs7R|{q9$2OMQsXk(p$yWRZ&kxeH9H<{7^3bec6jz2^LSR4B(s(L(;<31A#^=
z8mss~m6uK?HdWC~MHA{kFjgEH)#fVX+ARa}A*;6_zgey?+iu)QoH`uaN=0iGRdS+g
zPP9?cR>h<+CWp~ZMSB%HHT<ZdgNlwadKxNe=%k{viceI0s$%+*q%Lxllaks@h;&uu
z1t_uIRQa}2v5#ef&5J&`Q%rb$dP3pyrMs)>p&DPf>Zzi?iUBHmF)PkzDteo`4@F-U
z{Y<BFYVzkQ2Fi5Rj3;e=p<<AVS}Rim8V0KvqT;BEV=^mLe5qoAiiI)(R18-!MP`VK
z5h_NiXtg0_oQhH(Hy@>9tW2;<aiYIcF`B06uT_kpo><T*I=nVz?{a-SD^5@`kwS_l
zshF(d+;UwS9JU}`I86pYMW1yk^JFF2S!M<~Tg6O@S)}+g)5{6xsF+LVVvZJ)O)VTZ
zU&Y`*((5lsU!-EO9Ay<dR4h@kRK*q*->F!pqHn=CNoy&Vt5~68CH3g{;-pKfRD5H`
ztX8pxdj8t<%v$T1U9Vz;8M9H&BU68?Vl(x*7R@u`w=%m;PFUHgzU8_fDwFANr+@ok
znVl+rRB=$nAvuvZrtc#6kh@8V*{fn7^?nrxWcnR0Q|U^&1WQ88<_ou`{3HubrMSa#
zu(qcBtRjDbI1#Vbr5sVQ{bi{=`QwhOIHBT^ipMH`kyB5_pE7PLPO7NzeYtZg&Z{`3
z;<Sq2=!kiSV&mF!XHDltmlhYOe>a_rDx`4<mUKzQAEqyd^0JC6DsHN{rQ$06f5^Yh
zm}@GotJu9J<p!M{+l@vxJ<lP$t>Ryr_sKitUGnV4bP2deU2|}m2bo2Q<sMRudD-HL
zivLt((U4WcQx(r-(c4|-jf!l&Q=Y3RQ6TQ6tf(p$6^PrrE@funIB{Ole@zb2TfUX`
zZGB4i1{v>E#Apy9>15HkSPd2pZVes{(}$L^YOrarQ#W3l?w}CgNug-Cn^;b=l3W^o
zUzZ}ntD#G=IKPJaFG`8<X=q$DPQ;D+<sL5AgBn5_R1KPjcnt{})-Om2Ysje~mxgT8
z6Ad{erNz}vkIS{UjB|w^bF~yS<knDBLop3`xS>L1UNWDCENfC^>-m{2py54=f~5HF
zEk<c!W{Z$XgUhUl%{jeU^EeILE5)74+2YCkl!%6?hT<AV4Jel=omrofq#;?u#+4~Y
z>Xl2;kg6eFGbY2U!(|HYD3fuhOqvFvOiM947RXUTLrD##G&EnDlA)pCs+2Ja<&Kq!
zo7te;rEgNoa4j0xzg$@j<ur&WPZnCCSD>g>GOn_QDjMF`&`?8F4KV|fYiX#hp_)`F
zmQ<arp&{i}<jL=mni_=d21e>=_~~>~0}Y8|<3-eEww@dU4J{_8OA5A6eH#r*X(J6+
zh9!TcVYD0<4IgM|qR9(M(L+N|4b7zIvTkeWs3Gk?&xac1XCtkp5e+RhR4!j)wLPS3
z_(;RIT@zcGj%X=rqoJ*ab~1n&(QTch?KNEM9F^agoE%;K&r;D&8aiv}&IVH#)#;+)
zV-25Z=qjVSsE(v=8XonpF5*)SC!TnE%!+wcv~*_mr*mVa8@)7qreTmQ;2L^s=%ZnP
zhR-$hl|zs%`mkiQA4QpYY5iq(b%_4(x@peN(Q+$vDII*J(LfDfNZl)qZrm+?cvI;i
z8ir~Z!TwC^5Pi0?!Iv6_X&A1-)hT*^MFZL5p~YE6A8S`~q)Z77<+~<!=n@rvtznFY
z9U7h$OB<_UoQ7{Stky7I!vqa0!^z7uOw=$*!(0vXG@N}InJnjvh8fgT$f+7G4T((C
z<Wv2mgiz9<BZ)IL%$6<<iHM%1$$e>Rjo9ReA0*9Tn|~ijoUdVlhD9=C*G3o8+*CGI
zHs_fg5lULDVTl~yzY-_4Pg*J`+LcH}dsO`88dhkCTuqd;QiH#L(kcz7N+qAZ99g4b
z>5#}KIiMQWYVu6l=sI#eDcKDa8)XI_O_J<pZg-o8$rY2V&l9(35PnB)m3?7phar)(
zKPGOc{(+P}yj`Cx!*wdH!Y&QFW!`G|PfjHbd*ytTp^)xvZYj^lmLEv&)39H|eJy%G
z!$A#)WHM_AcS$^};b#qpHT<ICR}DvK9wU#E5>uc|iQ}d|p`qRiUCfhoPHXs$;*`wi
zrm^Bnnl#K1XXtlWp`X)mUPJ4qv9k3G8ZOe8?Auk%+BS`qr#Js0qc=BFZgJ#K4S#94
zETgUArcA;Wy1cYnDCw$(zh$BLEcu!oudNOd*O|Sc;U5ZdrmfI#X}GQ7Upn_StU8i*
zhx)D=bB`iiKIH*RCEy{&Bl0oX?LxDsG7shS3_}m&xr|R-iI_05gz-YdOAW6y6u6cA
zR>M0DuQj}3w#0vt#XqP0^Ca@FV~MNFlNaqsmYA$z#D>u*jK*Q(uHF(xFpN+b)-Y^g
z<eLy<55pUVFAPT*N~MSrhBJ)zi{5vI;R$2M3f;}@t(fX!{<cDwU%&dp#(jIY#j$Np
zmI#FL@>bmOV&#Qu7+M%b!zdO;IE-vz;|9A>7}>*kkfY>*0p)XqG5C)5#-Eroj9g*V
z+8-;m5Jv7W@`R25*vh|1<UTns+mxbwVdOV;0gCs+C`i%ru1x|8hfySqpVjES6}oMu
z9$cx%g%KY{i+@X33L_zmNEoHVC_FDJPBe^?EE1hakrYNUMGBc}mZpV~ZtCI`CBpcr
zQFW<UirEaabhM*n8Ma@Rlns>&qdav5vZCpKG_7RiFsg)6HH>Ou)C;427#sd8Up<VP
zG8AFd2;<_b^3SH#7W3u8(zUsXy0WtiOV<e_by`Ug(gBGnvNyZLGzjB;#&pXYkZeP0
z5g%~auWz!n2+J3P<C}!hG>k!o;+xT575+b_z5>dr<NJSM(c%=6_mWTaC4o&gD_NEm
zb{BV-0t*D!;_mKFaVzdlaf(Ze6=`uPP$*K|ik0^Fd3V1#|Nl92KIb!c?%bKV_s(SZ
z<>ftJx&iz_cOwIu^r=iz>7_SpTm7a6xP1u~O2iH`pqT;94QOFNO9Ofs(9?h=bD~-q
zP<(Z;4I{NW*jkW6mbP5W>R>y;_6Bqi@~vP;!A^pm1-lr~RY*4jx(i|7_*qfJwyT4^
z4CrmZKpAex>R^WbJ_hs^Nk75<f@~UKK$<y$<g>HhAOnbl1&0U@HDLDYAceyXNd1yH
z!hn$mj51&}2Te(>WQ!YPz*qw&OLd&+P&mne@xs|<f&mjly!E$b*!stz81|iFz*Ong
zI%_Pe(+!xxnV9hNo02mPn8iF%a6-Xs1Lhd8!ibed%r#&h!)-(@Bjy{hfHCDH4OnQv
z_sjtUwivL;fS+C$TVcRT0~QNkB1qv<1K*7jwM?qZ1y`<$Wm!e#Rk52^2Ui=g#(=d3
ztTSLE!&EV_UYgjtf!o2VD+de5>B`bdLY=J!{9wQh18y3y&4BHkIk%DlI}F%qz##(;
z^TaS<w*dzXIB3A!{V{tC*eh%2!awdPMf_2!`wZAG<mPMLMIWx|o}qr7J$m(sG#xYG
zD3jb4N6B9YiV=@<Ee7mM3#1$3s7%R815O)o#(-1O<#39D!e0zHYrq8qe&rgU=xXPr
zm0iw@!QFlI>#n~UaM6HE5;BJ7vglkDWS1)<Ct<n9jb_j<=hi!-Tf1ez?*=?K;DspP
zHsHPie;RPdfV&3#A;NotoP6KvvCNHX`H~(O@X)}wtK+Ewj|@0}q3mM={xX2!pv}&g
zbPur56>JUvlK3oSVQD*E{?dTg2D}mBE5UK8#oik5PUiW+fWJlfUaAXD#&FOwZBmJx
z!$<y0z9;s*CH5Z!zVOgC;wvNm<!0xBa5*N25n)E0Ssl!3M4Mk@NHQ6bStR7)Lb3?v
z>5%%z+SqJH5VIS3w{w7`WO$%_``BDY<TfJKh=37!jL2)`i<{vxBA*fYjW8Oa7*W88
zf<}C8)ML6bN)IT*O|P<A$cPnrV+$K$kXB0Asv2Q3!fJ%gsP93u5hEryv2b_nkAV??
ztq#5!q#L<%A%^;PBb-Kk=Q=_b+7~dlI$xFwZjrMo$_S4UMWkBPh)6LTVZ`2%ey?z!
zpzC^oz5JqPDH+2-qlL%F1ooUvjr%P+&WK`0{=tb7(iCq*g7hse)jV7DJYh*RB1t41
zz3i!&6mlcV8Bt!8)1;}45hbNsO0cvb-@(N0(;vr{6`kMS`zshx(TJ)>RO13ghc+u4
z!Gs~H5*mdGUtK&<BP7YTCWr!Ms8idBIz~(~VzLo+ji_ft6C;8~d}BoAuXH2nT+Zm&
z`bIPm^3~MXhD?>Iu}r7Bl>&{7Xl%sT$uZXbse7}<G&Q1`5j~9PX+(1)S{U)I5gmDC
zy@_dQL~G^}`<6AdGUCD{|FcmsZKa8=?Tu(hg{-mU!)L^FFk(lXK6>m={!SsCu0lEs
zb}`~Xs;=D4h=z}2E<I20&b<1-d%(){GNQK;!x<OR>|?|LBL*7L*NA?c+n$*IV!U9x
zxG!&X3xl|XN&aDd{X>lyY{U>F@9~SFeEY1_>w&;9BTAPuvr1(KYorllxL&b5%81cI
zX6DxQ#~E>Ram;ulCUA9c5>HOkjZYMXwD;MWjjT>FVyY1{jhJP`H2SAm%nXUhO>dd+
zjF?Uf-ZCtdGyP~}wh?oTSR^_NKbM^=Q=Kn1=LuT+C=0mhWL?I_so!&3HBM!5uL&+@
z8Ysz2Xn`;P5?m&@T(Cp#B+6GAvD%2=jJRmT8Y9*kvCW9>MyxYpy%AfDIM6ngrSpc=
z4MuD<Vv`Z%TLeiq3uzFY?5<pv)gPofWm@drDXBY**eTOKX2dQd{yr6RK&rcq*dx`w
zf<JQRYm98&CsmUDj9s%*BnL%uNbs=W5hIRrj|a-JwaM&MA~WQ;nElC!pN%*nJjsZY
zLfCpr$Z7H086$oX!f>B8;#`QIXS{^}8j@7M6nn{t%SL2ZkVC;0Bd!|p%!ubkTr=Xj
z5f7Q?<;-Q)1aBB|$B4TOoDsK-@XasNq*BZgOYHAP+%|$qH9JcnZ(5-0;U<3=anFeR
z5;Y!iRC{|T_D_k$gV5>3cs(-WvFQ9|#8WOrvgiqixKsN323c8UV!SZoCC_ICnH0P-
z;xz+p#7F7%#)$Xa(R=iSd@GW7f`7|ol((@_xs$l{K8cVzUyS%{#6OZMoFOILLBxNB
z|0if~lbTrp7n@bl6~Yx{QS{@HZp@e-o3bhTuHpQ1D)>slNCl%5<Wi7ZL1P6?6y#Bm
zS3$Ib7zOzh<X2!<;80LNK|uwI0#(7+3V$S?W>D~R-#{S+g;xi7d8Dv{_?3ZfnKKt#
z7BDKPu`+O@cfh2;tf0~2fK|ctWdSI#DEOyBa)Y(;ua*bytchpGTuTBr1*tm&rIrMo
z3N!_NmN@~J0=EJz4fqsz6ckYq!MP#r{E`5>6jji4cgmL$DMSjr>{!}M5~<+a(!ik=
zf%<&{)|G)M1;o)y0_7J5Vii<UP+37hL7akOoUnq@3icHB7FUoUq@;pGdhbw538}Iv
zNkKA|dj`mBBzaRfRXS%#N}8fyM52&|gx6zBNf%zlDkG$<f^rJ_*wV@?sGy*t2)lks
zqJG;>>AbMUD^67uR8`P`{ydXjO+j@9H90!HN4M`u>wM0fT*RB-?Y*}ljTh5uEBJ=~
zFXpWySXZ!~f+q>yE*s)2luWBH5-Ow?_tIcP1?gg$ype*}QMxclzbWX=i79BNpt*t`
z3YPZ?v{2AeK?enl2umv=Z56Z@(nfIin!upy#&#i{_Cn^Rr+=%Uqwr1&x`tXiE9es9
zt%s-3W;X@hLy}FK;(IEXyf#pAXG$*x%!D^<19W3wS;8O%{lvYL^j9z-#0PScYl0O1
zxjJny<5<=^M8Qx6!xRixFhaquSa0=MZ^ZVrzazXX^`AB#tze9T9qR%+6pU3cPQiKw
z8x)LJFoA!!E108TqJl{ZW-7@1tnp+8Q)nu`_dCI<g3}b_oNuO(<?ib&(?vK#aBu(g
z4EZbto#zE+luw?kV4i}@k=`{5<||mBV6lQF3YfPGxp$Ta7771e@L``o=QV+9O9M+4
zEK{(Od-itxa={gXtPU8SLS#y>3Q1PWo}zHAf<bG7>zG1y0&mNu4XBW|QD(K7iM=ks
ziEWbV`=KdY#PeGf{Gec)?7{5{xGy+5L(^qdV8Yt?opc}*M!|!1frIopGnNO4f*-~I
z`xX6bj(x&=tqoNFkof=;X=9+|{*)2NQ~uD>4l8`v7rb8Y5e2N$|3?)ZjPe%P9q4{H
z{<wmyy8=Jay^-Gb!Ss^~PH|JHNQlaQTEV{BrFmydeidgF{G#A2cQG?o!5ex>!372P
z75u5-R|UT*xTWBC1s4@u;@*7hzs{KUDtlSMRUzb86nxq5C%Gn)nQMaN)V!hKrgSll
zi20Z=aGQ3XN3-d!sNGSpb#)A@EPp7t7qT{JWAp<B581bH;JJcFT!KG#sU`V|g2y49
zzj)3h#%J_>s^D2jem*Qf;R~t06nrIEXm#vc1@CxVZ;cC6@wbBa3<@{G$6{AZ<vu9*
zs9;^rs4@AXs6g^bs-Fdij`e?0(0-bqEBaT#f1$B@W{y8wsB|V3nN@v;;VQDI$f|-X
z&7<lr$|gL!U=G2Yf?o;JU@jH8g}+!~V6VK=iyiX`8DB1`fQo`DzE)94g-=DKioz-k
zDy%AOD&EZr7*#+;zXD!G#o8?a7FCEzg;_<n(T#WI^Af3G5w$Z~nq9@Rd|sDS<K_n(
zv^gZjsX`M%P95sIRd__Fh>D^@BBY~N#gQQ?ljjC9)ch)<RFqIb3428giBl0HU1FJF
zS{l0qWVYnRRK(Nr+(2;^Nh%)~=_OB4@n6qCqEtzeg{+zzU~7tsR269|UKH|{6>B9`
zlu}XhYj0^0mJ#k>7#P+gJ<o>ta-vgSM&C9prGiwCEDlssaq@O_WffIaR8>(;#R*DO
zR98_$#aI>NRMb>aOGQ`uO+{@LbyT!a(NaZS74=j!RFSUoA6q<_6y=&2wd4D+`YIaG
zX^DwzTKUK2@o#ABZ=|BJilB<7oc6PXCMt3)s}kR>YW-^^O21BMrh*-tt9be}Vcd`9
z2WBtP(d<v17}ZKeYZV<-e5<03inc1|zes4WqW80ew?`9a?x@+0)+R<x=#pIYSmL>{
zQ5{uuQt^{o=-tkQM=ukO9<JG0MHdx`dHkDxD&cdL$bGUzcNINU3{^2qMNbvI=nxhC
zX;VcX6@BTJAM<1{Tl`_Q=-SrADczGJOPix7M=j0cAE08Oia{#4sAdNflPo1xmnc41
z#Sj&@98tBZM^n=IT+QKh%hj4khgKM^B2U-k5h_Ni7{%P^l00o^m6Ufn9-3HX41N1F
z;qH(M<5f&hv5twYVxo#kDi*5vp4q~^qhf}NnJS)-kD99DVf*CoRCG=*H%-OuomFCs
z_@|4Iaw^PHF<Zqvx=6(w6*<RMnX6*!njqJH%^t<IH|v@l?ksWrXrg^Z`2~zlwdgws
z6FI|0DweBQp<=O$B`Tb~t1MM<cTChW!QH2tkPoO5y;8+0u3g0fv;WYo67?rWZ9N{f
zT67vLsIykZ?xzV1L9de~HmKOBVvmZwDmJOutYVvr?GmZ;r<!cxtW^9nwaO1F7M)1=
z<yzvpLy7aNM|Uf2-l1Zrid`y>9ZGcktvv2rrJpTow~D-9`ALXBs@O+QsyM15?0DjS
z6$extq$kHkUGJKFi1|M$>adERpVb<2s!8ujQBx;Hr8=V8SC2lXX9a#%ah$WtQ)1N1
zgn1PkgcYpMb#<~PHp}ZjrQ)=T>?Y(e;f#u3R6JoesyM6SoQfMNZmKx1;)056JeQ^v
z{#C_qDlV(wxP#KGUQ}^O#g;13<TTjyNMiXTiC0uy<+d7FfpV(x{)g)-9$(8c<!$88
z2NQ3p_+7=H+%=4*iaRR)P;rlwbd|_dJ(~G;SLNfL{FM$SZkZHCyw6Xl)GC9kMPL0G
z`B23pnv&5MyjQY6OL+5MdDAq@Un1dHh28#VOdAznRQ$`+K;@Nid{psC#VZxBRlHa6
zLB$&tZ+ZUk*q0n;KKH&=Vp!*77N#`w`P`b|zt0ke@2!%pOESsP?#Ve$6#C5YaRO_C
z%quSH$FWiWF&rjjHX+=E_J<P}|ClF}2|Wi_c+nv_Q?o3bv-wHQEGA?%A)ARi)PMR&
zBDdHDQ;9K|{5ehd$^@$kHWPB0klTcUCVXuIH((wU@|uv3me&TEb@@$b+bl}~lkW3}
zE`QO}B}hu|%~QyP!X~IDm`pI3U^GE7q3+J|PDhk^ZE*XG1Y76iCHHEQm`#95cOz4p
zeHkN~wU}_Rb25qD1cwPxCPbUyG(j`LYl6=NmkDkew5SOlF0guZ5fgU*Tw=7_Pag9;
z;Y;JFMxBx)IK58EjDDmET=Ki{Xg>|M^|x;Azt}DL)WoP56Jj~K35g~IOt^ZyL@^WM
zO?<X+g*X%9PL-Ivr2IEe^@FRpNzbvDRZB8Yl1xZ8A;pCMCPmG9o=|vQO`dfnO!_t)
zaX68?AeFpNNs^LsHMo>uX+hqsQpTj;vQk!%e~DEvp(2f&@yU!zCRFA$%(!OOFC$km
zp}q+XOsHx?HIx1w%DXZp?`DsxZbA)u<9%#R6KV<JFDq-CP{)LQw`0OSN7of$Jwd8{
zW72QDA!%qrI(=)#dQ<jBCNwr-hzWP<q%<)hXhI(o`kK&`s|!RmGod*R)`}`LB06{L
zs1_!)qn}M^X+kTeMC+*5CbSWfG&jt_8?+2jZB6*$lFmDr@U015Oz3JtN73md$fgYC
z&L(7#ZqlW@2|YrRo+k7%p*O>1h~g+zBW9Q-w%nHZK#T5YLVpvV)EYfNaG(h#b|m)r
z%0K>L<RAvx1d@#EP!ookFx-R@CKNHFs2L+o7{!P;^!{eTXcNYmaM*++CX6*<oC!-z
zSjz4uOc0%gCQLM8k_j_Sm}SCb5l%H>nvf|>@)=<?^_@w7f`@sQ&ZkS$48eYyE@7E1
z)ww3j5n_>E^MubATp+mQqOSkF@I_*Lv2a~DBW#%o%T3rykD0I{B;RPlN)uK|b+zDn
zPDaSukj^?2uE~hBvq6Lz6WAntv)~pJGKAYq*e;R-f;$BFa>O6QcABtDs=EdE2xeIR
zQTRT={em3pvJ86AghL?--E~y>$&loj3CD&1B=~bkeuBqBXwIihI31FoG2s{CX9drN
z<mXMe5aPcIsggO{MH4QWaM^?_CWM)h$&9OXg$d71c)`=dgc~M2GU2i4-!$Q#kT(;;
zZ<+9W$l7gg5aD+P{}7xebGskX`IC7V;tz#bX6m8*%Y-L9OqejD|4f>CNuIE^|BSGg
zCcHA??@-^@CcF*tHyL(jguN3|eBb|a>AeXbcwC6^li(K<J`4Frkd_%N;=eqgM8X)A
zmkDGxqktI&%?LLmiy2wX`bNlQMs72*nUUR$93r7Gr}_W+|0^>Zd{>o1mON(U6`iED
z`uD&2%*Zd*T5E$D`SZ0@6*E*b3Wcl{Hp3v?7?K>G6=pKSY=+GYJI4~aRnQXBVYXys
zm%|LF2;G938LkY?P=;iripTuF9FCCImP4Z!nc+3VXGWwMeluE{(aMY{GosBXX+|kC
zVnj31%wK%-XK1=N0%pXSQOt~Zvwrt!@sLe6J!8BcdlN*SqeWP<=u=+8jQXLSo?=F-
z$kPNf0#VwGGG?Tk`FmcJHKUvv)y$}FMtL(Th*}lFie_YN8QQF5Mr9Gs+^dJOs&Gz#
zyar?UmmZ5cBCIJ`%Z%DWD9<={>Y7n6B>9Fj6yCs$hC)(*4CC(y8_o!8EY+rFG&7@#
z@Sq^=#7N3Dmuf}=w-C<Iw>G1V8AHq%YDQZ#+L_Vaj2>pR5B2S0Mh7##m1;*px}uYi
z&LJJfmuF^Isdf|Ota=LRC)i7{w;<=!M@V16-)DyP56K6ZF)+jjnK4*+rR^ozWtbVm
z&6sS)6f;JIbSCgqz>HB+<*ew;(PoShuZ|TQCpcb^t-K?b%b#e*Bnf>+jHa3~&5Y@0
z%rGM(F5iXhXM7OMG-I9_^F=sIaJCt9gv=E*_~JOj1;R<b7qU<=BW;L_%~)c_QZtsB
zvDb_rrFFR(>-Y(7#tNyf6kKJ-Y9SfZTO)iebF5?{jc<_ZHo=X8o6Oj3#unij!KK<(
zss2FYl4;w`*kQ&_5$+M(#VxZhY&ShqCyM$RV{yIv%-C<nQPDXdcvz4+2ZbEsY~@g*
z<cN5TgB~;ExEVk3PaQMPh4fFDamI{a%s6S*KUGhO{4|dp$@u}}!<jZ`MaWIZjXybi
zX2$5eNG=HeD)^iEf1l1Ya>)$SljO^SR|MVJ{nyR7Va6jf9-H~Rk?c3kcxXn)K=IwR
z3*9o~cQbCAafd72m3UW>Wb?D+KSKPTko#u*Dda&&KIKlyfqf!(Tuc1Rj3;KiGUK%w
zPwDDOQR^l|J?Gj(n(faN%2UMu!VKa|=4bzsByVKZfAiRR>V3<zE1&<J;CDT$lE0T3
zeh_>xsRn2J*^Gb8C;}7(zA(We{Cxc{->LYo8ULB}zmX^jgD!vS_Gbc!nFYfIvj}Dt
z%qGb9wDZ=uMUTCFA6G6)x)ju)2ZE31=M&oKYCfv@@y^7&f@gLllJm(u1%QG;gWM&~
zX7UyWz820~`zd+&GA08J0J%|+7w^e=L5QF8B>V&*LeL^;6|@Pm$qqO|+zG5K5cPI<
zG_O>+fT5mfH{cOMZrA(~fEPFkoC176ByeSG-owBXf3zPsNIRd>qJU_CL&gH#fbKv5
zhy&^Z^?+hPJWvKG3ls+ufD|AVNCc9^2_=Ayb*j-D6OR>72HLC*lJiX>nO}R;fRaEd
zptNXKuT^b+HQ&pUz7ETZS6oy4j4zI)98eyp3{(LsaE9^vlj<u06{SltlV1HQ;E&y2
zyed!)s1DQs{1)Gho7q|`zW)Ngnm{eSFySj-+NW$(PU>E}Hn2C+$5KbgiC(q80qO&-
zIXwmfXb3a|n#&OBz>?lsngD~>1{(p5h49@atOl7p<7+mh6P|i2uP9Dz0o48!-4bXe
z!uGM@joVk8w>DU#eq`^t#oGeyfDXX7bWvn@r|!P?z{ocFXzjs(+8u#ym1}kaIs*fX
z_$F1Uwqb3s3-F)QN75A_vYc2O>;d!y76RV`y@1}pL|_uo2j~lo0mcITfd0V!`0xS1
z{93-O^?W-Q6~B3=z(8P-tZOiXyEZsV_z=ONz%U`h1?j61oL-36cZX4bH0QH6NHUIB
zDAxtYvrFmXBNr7XCz&ACgulI$fhoXDU=}b{EKCEw19;!mYlm+-|6&s1$XY%whXeKK
z9T`{`JX$u-Y;HhcE<@1KH?@n8Hs>*#@67W>pD8h}N9_e%ok5TLB49Dy!USWC_#GFp
zf(Z|tyIx>St9*;@<XZ;3&*@tZ*pqbqRlsUsy$II`R$doe^W3{u_&P!AGgwEuMv`m-
zHUm3>T{8L>1_;;=Yz2M*T+h70bwT2wX4Rg)_A=RaFs!BYflLMSot{v2H}E5{57+}R
ztGUL#Oqe`Aj!2#TK&P$syRXxie}L(?u=t$rkvu&P$r&<fR37ppK#@Boj{?VpkRKQF
z6Y#T;6N0aLN3!WOjc8%-fe*kL;1}R5T>-qM!B+m`yQ9wo7l2;@@>e<HegiH7Rj<T7
z1ug;Euf$#E_6Lq`D^{*`G3s0e-)4dbz%}5y^tu7u2JQeid5p9vc1!SgK~|HJ<L+|T
zC&%3r{6mmcnj+q3fbPbTJOmzbe`Sq(!h?|q;2!^9f+Q&yqAy;FqZ+%gsaJU1GvGP!
zf)13aUVE1KO2{u|;>cffZqE|m@CeGTSKrA>{}vp)xV(P-cAfr9w~xRl;4|<K_qYXZ
zEcn7eFoG7iE%*-zvjDHXb_+6D^mCg$iv^j5hYSAx?CYJMvu3p*n+4fLlEb3^0BXo{
zZ^<xUP7A)WAeRNXEij2Zk6-}{3R<uut1qtwe2+{%3%=_bnO~Y3H3{c!gkM__{jmV;
z6tbYO1qO@$Y{`ZGaK!?nsIiG@qe}Ow2K^a{W|6}Jiv?EU1>=3+9}BaE^v6f)8R(En
zIt4YslRNT87xsB9sA)khj$7DQ#Dbz0L`bXGf+P|0?nj>mkrp1Ih_c{Wv&c9Lim}Op
z7^%iu5D;?U8y{O)UbhU74~?E^L2=<+U4liwXY%F{-}wT*;qWC}KvF`6OR*r;f;0<C
zT2R@dKOmi@lm+E1C~rY&i~e)wG8UAz=&x&GldHKeLx=CdDf8J|!Gem?t5T>h^{WW4
zYC$y%HaE@pAeXPYNNR+1YG?J;wxEs$4J>GAL0y^2Hx|^N5LQn({YEdbT3@Ptd*@5H
zppga5ENCvyX>37InwkhU`^IN3qkFrl1+50@(P<&_R)Q@pV9xNBRhhH;{7K<OUD?}O
z(9VMSoV+oyy#*aC(2kcJZ^5?~bhMz01zkB@*2qre*CMhkY)IbO0&~4c=cjDlEXWz@
z8zq*zThPOTo)+}7V1xy{QM|VWeJmJe(Qj8~;X8EtTF_6b{Vf<ke_C+)hW^y$K_Vol
z4y%KuI>dsZp}u9q^dDsp7kyeDDfTmzM|1BOqQ(f06=ZdsMgM2;-i@#c7EH8Yk_D43
zym}KgN2WT(g4a{@e;in*S};w7-w93^oFO<<aF*a~!HiyWEttmuEiB&BQ2kqf7(WUZ
zSg_E7HB}1nSBl?Tut+?%m^=F4DjZ^o1xqbhX2Eg`R#VM_6&9?tV3h@<2l{xVxA?xe
zqm^%r-_PofT)KpB$yqC{+bjAg++e{*?hzMixv+_e#8kK8xeZ$^*veQ~0V{s6V4DR`
z*<`_XZg30!&E)-w;ieCTAF*J!kUbXcWt3Gf6<B^0;eHGD38Cap*YE=t9F*!IX1kDk
zagEq?w^N|H-Fs9d$3ptYh19QXrozt_oUq`eNKOf!5j<@HZxy7%FBY7&;2igz1&^fZ
zf(5^_HH-J51;1Hv(Sqw1+_2yh!)?K+YY|s1xMuY({9wAmw0sfKF^hNQy5Q#jGF_9_
z)&FI_X~8WE{;=Sl1y>8GmKT|Rx8Sw~cSL`N&3l(eS&P8J27xDqOt~J$)8>5({$$h|
z1jr8@&PMWpOI{Zwx!)>aPH+5J=Jproa4q7Ap!bD|{J8}$q$!70_wY;MUo3dVq!Rwd
zf=@!&`c}w0&eP)kTkyT$2Maz5p?v#)nLdZ~{}ECV5*mIAgydl|RwgSl3kkR4NU=sN
zS**w^Jey#4t3F#6Hs!S9D^bp6MSd#^2+wUr9xL)%v9?tppGa>0X(H!TSqh3ovEpkX
zg#-%=veh8OD99X8LvoW9zn+Vyg2f7}6{V~wZG|n=8fAsu3WpU=k@!M#%?g(lZmD_%
ziwJgY6DTSq!iopm<5|2yS|7>AAtI&8FF3!yE{V1x#)?>x1O(%)h_j*?<yph2z;ZTo
zcyVb;up-flB;mZGo+c#OiV{|&SkX%LE?O5wd8!o~|5eFLijWdEm9e6%6)SC6WkWeD
z%F|0W6td|#P{E2SR{aqZ<Q2tcB`Ydh!Eq_6)gVySifSUSZbe-y>IttQSW~c;U~R!V
zp_zYUMSUxlS+U%T239n*qK6edtw^_`kyXE0=v%?YRy4JunHAU91)I>%WzvIG$el*g
z+=>>W)5eOHLRvFMrP5ki@n&7{r_J%5w+9NW4;Eb?Y->e3E826c+JO!XSxGNR_5|;%
z-U0HCR&<i?ovr99q>B}Ww#1iNA2c3G>1IWDD-J;IQ#-&}m2Z{a%ZlDsjIv_16%~tl
z`&cp1ib2Br3ih+2zYw+#uwr3uZ`~b%!B%AHn>NhK-=TXOt`82eVkn1OADmp=OB^oa
zKG_-=Va4Xnfss~lbXLdEIduY4t(a!TSS!Y{yJ$`loWQuqK!vKNWv>(9FBT_@ob#Mw
z#l2!)lJBgTZq@JbS!l%!D`pB`V8tw}ezVXVD_^MLoh_U<22jEq*ydXG+t}t=p?u|?
zPuDF7uv%$v%DDBx@2yy5#R4sDWTo`QR`A9EmL*m!4e=tM8n0j?S@G10XN=V1z$&iD
ziY>xdTd{`Q(~5OgOkN(?z*Mwi-`e=~4DtK`NzruycG<)<Sgzkz$9t=`^6<A}uN6PC
z%i6#;E0XI5b~4S@1h!l8d`)176`mD=g8S1b-zBZP1@{Q{|1*A{75f=MD-K%q@3yYj
z&$gHgxfXHAio;g?Wz}zoJHqL0iNC?b9+Gm@iepwBx9UGBJ!QpdD}EBr>d!(>2%hB5
z&1$0Xj1|A|fI66RnVUk$uY#1Ev*Nt)3xeI;UJ6-$lj=pmOB}0cT88|JNUjQAW6leS
zjnI4DwBnW(zsnNtTJeV!w}sykq-Cz?9{uL_vivFJz7>?S`XD5KXvHJpk3$kFJmEst
z1+o><f3C~BT%I#gZOCfF3oBk)@yd$VR=l&~Z!5O13S?cT-=O%0o3~HkEf1n)0q5|P
z_f~x1?zZATo{dS~k5+uL;xiL(Ss>fG_<tma-_=gfp5$dRf0630^}*}Q17S80!)?eU
zB(n`QJ|$5?BfQO$B%2M{ZOCKO4}=^x<g_7|4S$SCc^=Sno8>DTZf%ag8t=_*19xcZ
zj==tL+49<u&!+Fq{5BM@p&<X3D6QX!*uP|&Ex}uFyS|YN+hDL^g$-k)vKwvqXSbiP
z4b^N=IF=128_YIXZLrzUqeL0lV6oxA!kBxHVu+N~xEpIb9&5LuU5i{KtU5SPQ=HR=
z{1sv&as^yAxNY#*P{f9MHhg14Q5zy`C}~3}8@x97Y)G_W{v2bZ4SpM<ZHVD0S-rj+
z@liIEy%8~PLSRqclvo=cOb8ScNx+6U8~8ksCz-<vRQD#oiHNtMxDDF)lxcS(mexy7
zu;Kjr;DA>VNj4<gaJ-tn(h@dY&E!q7A=QR78#cd;poJD6BG$f%NS~5Y+J-Xpm5slT
zK(L8gzMXOQ(}=SC6tJPZ4L@E;qP6Qy(<<1|^SAi%Q_?HjP{oGYHq^19stwg_sAa>^
zfzj0&I~!`+Fm8o<<E3uA$J@+A_t^9{?;@};YW31+j$2pepL)A-^9xCo*SDd84a031
zVM9Y3pKOU1Hng;%5r^&;-q?mF^y=tzQ?G=ejKWW=W;Sq2O$C2>mDHTU{V(Ft=Llje
z8(Q1YpG^$wx%4(R99j|I&W5%O<%B?2w@PepLkIE9w_L@PY!%+cU$~yq(S}Yobhd%K
zi(oGsZhT4VD!iLucV+^eAUy7B3N@=-i0>^`@;*ZP+R#tP?pC_OKpO_hJcrmY*oH^z
zgJTzmJz8uG-w<s2JZY#6!x-@mLEA??BC#JMM%pmShM6|ZvSG9hV{DkfB|OVydlfO(
zrvKA1j*^PrZr9?+(~URdS-RaxIdU##q79R5m~6uo8#4cs^qmdUZOENHWvUI+gtT2A
z&*}`O+=k%NQjK~gCX=kX8!_94IW{b^VX?&JN)7K^8|E=B>6{J0q)92?+pvIn`zC^A
zp$(s3N3_ixR%2kG^M>Hymk}HKCNT6%Y*=c;GH#H8fkGFOmWwH_h*dsE_tEbWt8G|g
z!*&~XaJSaZzSf3yHiRvVu`Z3~AL{FE*kHp(?(0n6ErOc_S=}sT)P^AWR^dO`u+4_p
zkC|8H2&ZtT4Z9dk8-B83H#dUnW#RL6_lW(y%px21*|2FxDu+8N!u_154F~C18&Yy6
zefl?X-iF{|;YS21wB}4YCd%LTj$_C6=9r(E+b7EWLAMNQa>9m_Hk`8Iv<+u$xNO4}
z+Wg1=3wIx*FZ`_FIl=n3v;Jzs<EyEc1WA4qa#66>@EA&FHjBM#!!;Ya43D|Z!;tAm
zUvYB{kGW}su|$A6Y+|A0cTvmect`kM!O@AjPV7woJ-TS7|Gwa#JV1mz6nrH3Sdcn@
z+4RdVPXwO|cGbdO*zl4kk`pmbyt3gnx1<BD9C%~HTNXRsvDol818T=kJKo#yfpM{8
zyB%TYBR|@((vDsmgP)i%JX&q|!iCsT+m3&2_>V`Q9g)<uBa<Cp*^$eRL&J@k?FhFc
zi(Sw2=-Gj+c1&Z2-;Ky-N4;8sh!)1|cI2>w2iLgMDLL)>IY$0!hB3DtdF;q*M?O0q
z_6RU5c#2ki6_N5TBEKC4?fBY`0(P7{lpcE^e)j8#LU#SUDr(2p>fXY37^G^n!)k}k
z4#f`D4wD^bk;9H#FOoLLWNFdC$X*ssK*;V5LAxCeJKUniCZ`>m@C*e?TwL<>bP`WU
zr-&VAHUyos5+dyAwl|)|Ye&o0X?yNQ`0a?YBh8MIc0}93FBRhLC~ilr9gnL9T9(ik
z6|f`Dj<?N|i`h|UNN|5b^6Vlick$V5`lo+_oliaWCffB6h_Of0lI%#fgQSEEks>_R
zj&pnCStu`MM`=5%+ELA}Z@n^hyt<!M*^aVyl(VC}9ly&FQNfPCg;cbo*yW^3bk60Z
zd>ex=5|XRf(e`o@CqS$&<JPc))#`%+o{hm(!_#Vtu=azbI(F2xW4Ik77)?9Av7@~m
z9qg!YN1>L+CUykvXkbS}JJK2VyAh4-IG<hrP)pqyY%DferRD4&BbwUvkF(ZxG_#{Q
zCorpVhk=0>cJR}LpEWJ*XvLt&hmMX^5QB9$2HOd-H%m6XO#0T2j+~nvJtQ=p7!D@n
zl=RMabYV{3iLbmPzN;PAE~MX%X+-S4TAevQ<?!XCo)V6sOm91S(}DZr``FRnjse2^
z+R=}0d>65_rD;irz(5fWvSY9a$FwxDX^0&=jLQAj5$rokQHF(bBX)QCNIOQ^vB-|a
zc8s=T45J^H<$F7LgpRf2J3FS^G0u+hcAV%Jm|(|bJEqt%(T;5W0+a06)GV1~{ktT#
zPPJoR^Ctd}@#NFE((Y*_9VVvCuw$kjv*@LbLFUP9rs#&?%DL(Dgv_yHt`G{Z3<%7(
zgG~zr7Yee<9rUPzms|4v4C4}sZ_8drnp$edGFc|qxLn8zZu9Uk^T(uBj9}l`)po40
zW33%4ZumFbvBi#ccKvs?>+RTJN9DguZ4|Yo*}mE&)s&Jk6!H_FeR-j8s~tax0v~Br
zpj33l@(KL-n9(Wr+Sn$$?AXnnWyddc#X$ca`iGlQ_3q`SUK;(Q;6B0qcGN5%I3RdX
zkkvzW92R~gBsprwu@FBl<R?3R4oMd7HJlXt9O9H6r$c=E+=R2tv5moV%w9XPmWmwM
zD|y4l-~~H=<H`1ym;6^d5G<WNQ0$@|m+ZJ~#}%G<(t6bnZ?8hvsF3U%_|)4c-gi3P
zcb(4J8Fj;so(aC8IefRcD|ui(_eSohf7=dT>bzseUG87uPXzA?vgy7Ze}?!2ArF~L
zA<1JQf7$WV#vqlSO7)rG^N`L9Auk1A3BDG5Be=d@<lj8}dCoXc!hsKVe6+*vfWv|Q
zqndo;X>Z4Wc6_$$k1PDgjxR!@?)r9ZEJ#V11DPDi=0J7__yWz}XGdmsfEX^AMTA)e
z+4{MJKZgT39mwNAUI)H%=-0|vzE-m3av(PceGtdXDQCJR@Pb%A2l6{$a=`3B0S5{?
zV01un;A;m8IrM98g&k<>@Mc_rv0A(a5zcO=UoOjHPE#G=Wi&pgd2F(NJ+0b{2!6lI
zCW`}pc%S45Be#mg=D@qm3ad_so@t2={U1z?qrdUH1l@uj8mu3~Qbb5m!3YPuLVSXe
zH10r@aB9Xm5G_1LFjkOe10hmONW5Ti!Gur~yC*roKjT>*y~>p0K&k`(Ov>ECfi#DH
zy*jWtuAT!W9Vq2MX_+}EU)O;$4wQAEoCD?QuGcYj9H`*Htg|r{9avp1>0pi2MrBhg
z39l?jVHF3e3a=KDRCl0;@R}h>Eg`i9|CkX=gC&!bI3kDm#)0|{G@zFz#WogfD46a*
zmA$1J36fa8G;AXB#hc=Sdh9^bOt86N!+JR>x$<|(KJhWF9cbgg1P3NM(AI%=4h(l-
zgahpz=-@z42YNYh;(YYC4s>>)ivt}U=tPA~$(O2U>Ax>P>`Kq1B$Ib{pqmtON_sG{
z_XXZ8X+rGnKpzLDt@fXLSE{cA{Tvv|WNVzIKQlIGGRqJL1~@QKs)HODETsFBCK;_6
zgm#9B&AZw4;YKp492n=ocnQ;J2i}IK`6|bb;Xq4c#tQZ=7DG-sGi~IdCj25`k^_?+
z@HkP#i75_Db>LSAextGj-*Khi`F`CWGu?q14*cT4SqEk^rVea%;0Gp&19Kc$>cBDw
z<~s0jWAJ;yc@E4MvcQ4S$*GjHEaX0V5lym4nn)Hquq4DA-z~k|ffWv{cVL49D?{=%
z4y+QsIwUDz4Y2Q82iAooHwMRS6uwEY)xrObxLK-O1bf{rz0HB`!jCzy!-1U+?3XI7
z?Gm!rf!!g=9tUnm#<1x}k?a#}S+E!-2OKyk)kA_u95^h5O;M};#G?*e7_Vy{ci<-n
zeh#&s5^}<UlR`S)`rkZHJ8&kXb8~z=bNieF=V?SXmuF<L6_sKse0?gm@8{@?65PwO
zLobQK^{=zB^@;;m9k@n2zStWM+;rf&a8}#oioL~C(Sa~0GC8s7Q|xUAUO4d5fjbV|
zb>I&N?oru+M-JR~;PSRu>O64ZPX}UCvp%}-XO%`a_l%ufA?~pQPaSyXz@=gSzZ`hN
z{HYMPp+X!{Jr_-6c`iefymH_*&vpks^6!5pqyz6A`UKeY&Vj!f>k4tLSNThwj3s%o
zGv-@!^7h54Z2iPD$AK>nd=~p$1&#mfz<&-T42+=#7V7_5A+AxO*vw9ZJ5k7q!cJsy
zBC8X5oyg}zHYc(>k;93clpl^6pQjwl;{vf?IdN=nY%V8qJ25m*6xW-_i4LWc4mK#(
zC|gYX8@loQP86WR%$Nz4$`ll*QTVkJr%IP0;XFAdgA+z4pXR5pLUBTM!t4Z`$h=<n
zSb#U$JMpPmDqAgLfkWGbSe<&9sAG5Hacg}!9M>s!G$&k6RJ;?rKdH1^B-u6vX`!eS
z%a=y6_?-HOMTAtnPCRcOZ2YzUrFo<iekVHBPLC4I>P;h$bt2$|O@m!SoD;>InB~N5
zC*qwb?nHSfDmeMfJtR7j>O`7YP7?gmG>)SrJ5j=k6p{SUC9ZF0UC6?ZhLTSFJujw|
z6Q!Lf<HW|RvE>BII<aeXv94QUxBnN@enc$g6`iQ$!~iD-I`Q<kVq+`E=YJol>_inO
zsyb24iRw<YcA||FHJqsFL=z{1PSkRuHhr}y(2x^e6sY5bZ&zA<C+bR-yq*)^uw#QJ
zyqHXEAPU>grm-oVKHM1J$ce@x+@v->@mJ$b^_w(xqM3AW$*johrOvP4r8jq?g{ZkU
z1&^hsajaHOd>pFVY3oEgC%QP%RrK3CQEF4L6H~<r8vND?4&70d*{jmECOOU~brwxq
zgC^aa=<Y-xvE0Lnu|rdOI>Br5)FkgEoYmf<K+;#pp}i^nWQP5j!yDsUqDkp@UW6s^
zTHGL~{^!A9Cx!?a>clW7hC4CBiSI<RVNc3PCq_Fl#)(nR|NWwQdxUqa6XSTcJ2BOX
z@!SZv<0lDD5M*_tkY!2U$sq}^<WFPJR|e|j^j=*b_&hx2RD0ue8D$3JwJb1Gkfh$G
z;2bCBGV?V+!#pSEJF(x115Pa9ib}`xjY~|Jh3w0CjqxvX^3jeuVOi|N<dLz{;$xPI
zWSQV{!4-ll1*y5piEf*MtDRWm#9HC&oY*FW^7Y&%%sr`Yaw2M6+*T(xJF&%yjuT?f
z@bMrcVzS@&cYGcG15+_axe1$s+nqRFpwtd0b~0U^*zLrRPVD36T^YTH)u}OiomgBx
zFsgq{oBlBzVp#K-w`1dS6ivTUEVjb*CN(ohA9Ui76NjBR!cEjXM%8eXrwTWP6Yrfk
z?!-?{Tyx^O6F)n_mxo?<;)+wh@A`xjCwYuGal2LcY4Tjzf8!248+k_X7s0cF=LF9S
zUJ(3MkX<f{sY`;i8Dk9R5W6-c@X6s<>Gorhtln_qrV}rmxI8}kmJ=VgCbQg@$^0(J
z>K!NUO4A=sJm8_^#679rXToew{?mzw+!Z*tsfP+t`4N*=IzDzHJuyGW{mY4!oAkF`
zaEPZe&@-M$LMUl{E#W0E0XZ@AROD+X-f|yZ340?JDB%p>ai{;HlRf21e&9ah(XAny
zhEGmD>WcT#Axy(RvgCi6nFk`j2&ZLEiDlKA!gKCKX3`L@A&Z90nm!OEM3xMleUl1i
z*N{U)0S&y}lVj!7kV`{u4PQx>66)m9kXJ)K4f#dLu~-aw3bTm{ERP}ze68uTRWv<_
zg)|h_^ay5*V$k#m8o31;MX@!*Im`-^2G2G>iAB@@a^}~dRt+tlrSNH%L;0#l)$7pU
z)X-8xD-D_kmxg8<nro=LF^5}2f`&v|&`?A}Q4J9q;x*JN80ppE(-5s8M#Jy(V<I*9
zIe|QZ2kZRB>c)^n(dHQaZ-!Wr2YC2v{F=tU>p*GhQ=yoK8Tn&pM#NB9Tx{|+owS^!
zA(<f<=x?Z@goaCR1NAg~qaj5&tEn2&G)#OSU@57gl!nq8%7~=4U|GR(8p>;^AiSDj
zMZrpfl?7>`ijb;eoYm@5tr2RiDWsN$mAB$DMyx~6gj&m=_VYZfuj!{^0}bEyO>1gN
z<8jAox`y@%v5f>t8f$2xp?X>pOHe~o4TZifHm6-|c+2>u*K;#2Ei~NP7JcHe_vzs1
z)*9Mq$m2p@7usrQr{S80>!Q$JLr)FE>cl>MRkZ_0)X-4_c_$5BG<4O_S;M&Fkx`ox
zE|p5@rlH%q<fL2`y3>=JlCNYgPR$+~NUY^jdTHpbp^t{X8rEo7tD&EU{u;(>n4n>R
zhJhM}YZ#&FS8ql}Wf`Plu!bQThH4nIIIMT~gzF8mbf1vY@~6hbIBw8PGE&1R(I2gW
zPb#>1Hi@4a?9MVq!&ptfvNTSRWMk&Ai5ezpSf*jQhRGVHX#8dt3pGq-SifYNBc`Tl
z_)fY^7o5qo5i;yS5{=9XS(`0n^E~5R4ZL<bPmpB3ka}M-O`R0@o>4v@!^yDYBGF&0
zVTq8X8qVyG=OwSP9gQm(ZVhecsIJAv)z>24@~)WWQL8kp=8mhFymeFX_@>}G4eK@h
zq~T``8#HXxa8Sb`4VyG<*06_8o@3mi>Hotr8Fp(h+>GC<;Rg--TBLkvnX*j-al3{c
z8ZK`N?v&~-K~~ws>rsvV^_8se-K*h8_F|Mb1@~(>pdst#AUVH(Nh{STusoj2IjrHh
z_=@}px7(|Tqk_i-&F?bNTG>A$PG~r(;Ub-&;gp8c8h+LA8xN(P31>9@qU%{E&*_w3
z1o;)!ISuC-@vHIH&A|&AJ{Jhv^=+VFm1JJX4S$w2Aglgjpg+H4su#?1nd@cdbWgaV
zcsYlwVlCI_B>oD92hI)dmtLiBGJ$zk@W|5eR>M0DcQoA9@I*t!&sqM^aF6GMhKCyN
zGmEb2_YwWc<0Z3xvEpR5@S-m=kv!7ym$Z^U7V_`?aIfe*)$mNia}mB|Of|d^&c0NB
z9qRQ)Lxz5bUfC%BTf=*v-Y#Tu@g95c2QHHbzJ`x<i~gP~?<XPGPB!_X;a?4zT*xe%
z|7i&09bZ@DC(lmF(LI6W>HYB3%-$hW)njIF;c#!;VQN+va=4Jwg={Xc>3ID>cJAmd
z*+{DV75`~O+E*^*a-nR8Z1Hw4OKumhnS0-rFy?b1zYEn}sNvFGSHOjt^Ha-mTo=A}
zp^yuOT`2C-y<~8~=t6`GUKbP>R2LjBI9)KgV0OXg!t`i9YXJFQMo`(p$^04q<$kzT
z`eyjnE}X4LS7y^(xcVZ(<3bS^TrPyy3%F@Ha~QjGjWu(I72h1BW>FW&e+l>cT!@tJ
z#a!^a(Emw%j0>?YM7a>nSxH>D@EzgafD3Uhtn8x4VrW<0^R&4lS|y2hVc41Yl$>D+
zE+mSzBp1?LDCt773;YqnT8SVvQ|LxfI9fMQIowN0DHlq+!0M&0*&<&?l#%tW{l+vl
zi?<xl&%eCo1uF<v6s#mz*@Y^cd`#x5E>sf<UtY#<cn6GcV!B?uS-F@KFQWHMkN#&)
zLTwl7xKO?pD%3(<7wWn2yfj{v#y2k1=Zd1RDhdr;Xy`%@4|;l#?m{CM?z-@Y3yoc9
z;=(nTe*G}$LQ^3ZU1;V)bK$?Z(87h5jIs-pTv(T-a4Tkr3+-HJ?LyWGVQpOcV^^=7
zF1{*D;r1?caAAlGLtXgRg^tXeN>PJd=;T6Y7y8m&fhbD4h`hTCU4>B6&4oSRg|oGX
z3q3`x?&UC6dkOC?*oXNxr8tHCLcRLCFhH6p9O%NJ|F0vv)8H@{hPyDvg|X6Q1Vh8X
zy)038b8w_6AL$o8S|pqU<>Oo!@4}~zQ8Y-&1g6%sd?c)17*cJr3sYR!>%xyNOm$(J
z3mbVmr3>FNrY_8KVK&q9QB>!jqgn-O&ESr3fn?%H-?T|SZGvx(3-g%?Gkq22`sTVo
zoW}swtW2`Ng@rDh9qHS*)%U#%i(FVNRZ3O~St7X9g=Hc6au-&F_)5-sq>sw0Ly|Q@
z)-ql~)`#R9xYK9pnwwqN;=(o;w!5&^g&!EK&A|~p!#)SXcqzDl{>ql;Y4_IncDS(1
zh21X9+Z@~}qpY9lyFR$;i^_hkYY+F-K40DyzI`t2cj1r=hh4Zo(wDtw*Z~H8yzd}=
zGTlc~VN2K%uHD6FDc}Ti<6;y?Ip)IO_bPEd$6fe|C)IQxS3x}K!YLQdaJL@UC8z1+
zi#q8NNMx_ZtqW0p)`dLvzGl*%lPo>&!UZNkdS#Yhh5Y8yuXwY1$%V@<ToE<uUv**b
zN&U5el@k5L>n_}I;by4y7G3dgVak6GNp8FNx)6PLu+%*0yT=7`{%&-1<4+eJNK?EU
z4_$b~BifCuZajA3FBhJ=@Jw3W^~2cr2@ggg&s})o!h07!xbQM$`K^#wF1!}<CM3V}
zG^$Qq*gHB(B!6z#O?_k_T=*xXvu=v7>;m6sX7~c%=FLGWe4zv1Rr*&H{&OMB{lEEV
z5|Y`Ca3P&`hf_J5@H}qhbtAj*9B$-v<16901*w+HjRy}ak+5`bn<byf3%g-(BflF3
z-1zsjub>-++*tREk2+twG3ktNbB@Za`fipqioVSayAZ_<)eVyyW~o{Qhct<X5Q|_?
zrZ*;6WrtL0(<j6!sJY<^$=z;vLcEBOqJj~EUcue*VUa@of>DCB$sdmqV+3Ob18&5H
zT8jx`;EKDE;6|bwNp6&Pqk<cCr}~oJNEL+=A^j8~mRgn5+$cCk_d`jMlyakVNT-Y&
zWkbB28yQj9@KVpZif&YLqjIRVzK|+zRCS}8@MD{U)rHg$tSQKjwcMyJypCX9!Fr+A
zZzL8}Yv4vhH*a9mm)s%L+Q^N@!kY*N-DoPLnH#NzG#6|k$c`=DXeE609DRW-ZKT@P
zjdmfO_MC7ag-wl9^4;PI;6`UR&bx8JjV^9<bz`a<)7-pw4&B|D;KoEZdbrV3x{q+9
zmm9s^80yCC^HKFa`1-gpC}g>>kbZ9T4@m|H8R*8bEBP|!GuVwGB0S!%a;fF@hlw4U
z8ZN~0RNww1-54c0qeFJa2pKCl&W-UQ`OD40N!-^z`zDJ-KZ3S}O<^WX@U?DRhxnZv
z)9J&Md_TD{!;P74tZ`$l8?)T{5wyUKg&bG-oRH1AZp;%tU+}}5Y@E{fZY*+Rl}NhE
zS+Q9762YZzEOTSIa4N5Gqk-s<uN2|7qIt<zyD_$W9g=k--0sE>H`cqc!HtcfzMI|H
z6yhV_=t0~f)vba*2yPQJugk*Lox=AC?s8+d5X$$su~+zyA<6Hz^6q!*Z>cyCk{lFr
zNbs=W5jTzsIp)TKiN524KhF;*|JjWb(v&H-@<}151Uc4eH_izEMeuA$eojcCDZXEY
z{NctuH-2;Dq8pb)a!2s88&}-8%B{D+cf*aFZd`NYI>|$Q`5&)FF+E6biSlj1-vxPm
zZM#^a=u%znu1M0aM&0M(??$o*B|Lb*!=DGB2L(NN#KYf>&u;wV#$RqcapSccZ`}OV
zEfUN4pSkhejV9}T`S&D$trULY#w!}>71rZw)Jx{`ao^n&zOFxny*loD>&81bKDhDG
zjmSP>>yP>V=7?LvembA;Ju~EErDf}VOE398xzT>AuS6gHBRlK1urEA>d4_wC!-N0a
z2=gGb2jL#<GltW6CXb$tEF2<>2d*3WvU<?_8-Io*o3wIbMgH;S^q^KkSS}B8d+?RW
z-4}hf6n`EMMxOMs<nthJh;KJ0<`>@lvEKBx2Zd<d1Gfi-JurA+^}yzV(E~+H@t3-)
z2b)vEEWi0ol>DYoiD>rVV>Z8D_25I!%31j};tU@pb`P8$XdXB`Sd#3ggmQX}$d0t*
z@t}wYu^t3GDC$9k2az85J@9%!wLAIpHT30;KI!vO?H^yhCs9!{jb=ajVmyfU@S0EF
ztXqOKrTtr&80SGT4-z~`^dR1YDT!h9b8!#)^$F`|$xa25YEOJg9?bqVAB|AL?kOIm
zdQjJcdLE>CP|}0S9#rw5ln13fDDOc9+Pv&5<3U*u%6YImQ4d+&5(SA}qw=n48eP$Y
z-}{E`D3Q042b?hF6O;WTKUAvfK{XHR$egQtP{V`T!l_W-mA57%<-w#seasn3Zm!MK
zW|q&gUQY&Azww~H2aP;v>_Gz$-rXqK(1Tys`38K_li7K|m+ryOan<|2N^9al(1Z3K
zbnu|52hBWa=K()?n|sj0gVr9j@$lEJi7gqplfG8;+bmy=GJe~gs86GPa~yfwdXV#Z
z;ah>cv`Ha5a)@s|=;%RL54th>8+@HSIBTlh*#pmSCE1r9yD-qTE3m1%D3H)N<)hd5
zdNDIO;RyU4fj%De^<YI&tSpLtod08Q<szt31pPf2;K4u-26=GNgG(L^_F#wyYdl!%
z;jh9m%!9ce%=2Kl2P5bu4<<8FJs9P|I1k2q&}X)9G?(eY^NM-*@Ak1;Hk*H}2ak98
z%FWix1P>-s;XB`wVpaXqbcMO4{Zl-c>cLD8W_d78TEFvPx(E4o`u^PPoA@}2`XA5x
zW{91CHv49KF#lztIUcZeKxsc)=Nk)ii1{8YU`l(iRE#VnFIIIC12NzCy$AnC(^Y_b
zQGD&IC?*#{QeH(+@5XEwmu|Q}It7KFfZd7`1_mW9EvYCa&83l20qO1#kWfNtQ2z?@
zy)%3~&pz{<nLTsn)SR82*j;~I(ix`;#TSx+@$|+^Vqz91DPTet_T??WlGjdTGJWug
z%*m?!TRPit(PVJ;G(~nn78Yh<dKPA=?943WW?_zkXVIDpIMS#V#Wxm;x%9L!V}2Iq
zWnp8JCTx^KQR>-M?L~CjEUY7AS@<psOS14|7FMe2OS7;%3o8`7EDHt3hykZ^zNhKm
zZoxtO4@wXBm9ZDj7G!Ky7FK8B!CbLc;s2C{H433bZu-A#IaCW<B!vl!#Rl?_g{@iG
zmW53;#A#<UT}aiUbWP$6>gWB}TJ#+%wr64JM6pBZxlGxN=Y|R1+Nn4p%{^Jz%TT8A
zGYi<4h5cE$l!eP#IFN;dSvZ=7V_En)3$yx)Bh+@TIHa05tTf+szo2e^$-?nn(i~T#
zg2%IPA`5?H;jBXYl`)_E^C^&plUbmph(_yEiZiNKl{)tC$|3|<NIjp+!uc#*$ihXk
zF(n`Id9h-Yn`Y~u^p$n5(D}1)EeqF`+x*F%!tj`dzp^lXg}5mo-RU1jm^${q3TMK<
zh3K)for3={_-Ek`4R>nD&~Te3g}PnCr9QHuKDjc@qw$jtIRu#I)o_=Fdo|pr;cg9|
zl*_nBlRjTBH%-|e>eymegA}u5ufl7ocXHF28uDwfH8>g`&`?0bqZ&$SD5&8<4aGG)
zq@j?8!kW}ZQAMhVCi@gERkL;KCIiJZ49ZQDYzd8rz43^Kk{TY?q=&Q1)Eq4pLgP|K
z_ZgSQ?HkoCt>G~ZSsFAAk82<`(xgz-#uJ+CTtw3~7#d7At$}@+j>INt#F0mxH_jCz
zj-`S4lB@<#Ls<>wR9#;~q#@Q2Xb3eK5J-*Ok`4Oa7d7ofLm3T=o=IhEp!>0t65-RP
zc6kjIG*n}A8Y*h2q@jw2s!DcRxw3{;Q3eGe8|2}p?4(BC=p;2X)YMRm`dlb#YsgWY
zu)DEcHbm*#f8C<4hI*7*ho+;xh6Wn0X)*>j)X+%7R~p7?XiSzgyvLBJp{a&u8eZ1$
ziiYMIp48ArLt70kG_=%^*5pJ12jov_$o{i@YYk5m^Gnf6l@n+^QrtOAzH2|jT9X9d
z<@wUxPQ$YrUeNHOh7E1XKc`{hNb$UeZ6k$s+#+)0QKE2j`_Uod(@Ekbwk1+5d{x71
z8agS;udDP84R2~7&i;=JKQ%(UrJ=oschs%7Rk|)uio-K+rg&FF2Mt}m67^?1$+V+_
zxy^=TJ8Rf9MLe|E`9R|bB`|<K!@C+j($HN)4-FsFhc$H7FsFP5@lU;4>r)Ni*GLGz
zcwd=rsv*L^?aJSi&PhF_-98$6QK+!)>AwrnQoR+-Y|k}Ly+1@>4gECyJKXB8Qr0Cr
zkPfWj3k@SQ4AwA2!%z*wC|!pP|CuIl^cT79TmoI^iQ!~yUdFg*Qmr@Sl$#_*Y8cI0
z^Q32vqOq>!%orrbXc(*E?Ox(bHl3Sp(O(dLZ+4!qHGHFCJ=LyZyoL!H7HC*V91W8+
z%+fGh!(=7Vx9rh$fUiZ~Y2x1>#Z(Q`HOyeij+|*KCEGLSNd?Z-urxQ#tLH-T_XUxw
zVXlUGipU(*TYt2&Ikz)km4rdTE@Ne_MH&`s_(8*u8otx8M8gVdm83MT*9%_DH7sLa
z*qYOCg<yL2ta!-CX2sk42?mhs$DEby3mVpFSgWDk?wr*c?(ZdjqV}!`W*@yECVeSB
z86ehajK=i|?9WY?7%Mi?+!}t<a8ko&4O=wq(XdzXb}cu(l}@N(J9~tN62rw#4F^Pa
zpZTIzQ~RFM^;xn@!)|qp^qJkKVZVmM8jcWC!$G#i4!c+!o+u`qlVbL4mpY_MScoj?
z#=mGds^J*>W=0Wa*&~iKVD55$rB^V^?zzpWH%v5fvsrkGfsT<@!)0~%jD`=k<orQN
zM~dGy)SjA;BA;b=A;Gs(yv6Ihh6@VqqDtv?EWD!Os)pk;#ovr(o1L&o>Q4=SX?W%{
z!EC+lGW{QwK!;@fOuPFR3L^8OA+D?V@SlbojQ=`r(@{W2K^?d2$fM(49rx+DL&u#u
z?$U9$j=VZr4HAdx_Ps=#<>H&}qUfCTJvyq45cGekfg#!V>&U0$0bPpB>Ap-I`E^|R
zOng++rmMSiWF+TAU)TSM2Xz$E@vx3ZbQIQ6L`N|lv<RR6?FWmZx(vT7jBKWFEfK|a
zJfwp_36&DyXN;I`87E5WcvMFz9i?^Dnv<r1HX)Nr{@`L#YLs|PNBfK7aUD<S_-2eC
z%<Jq_q3bYo4A5nSG<66at#zbzSUPMSDIIlmI67P%6?Ih7;py;ol+#gON1!9rk?1I+
zWA;YDH%g|Ff@77g8`-+`YLQKvtHrP*qO6WD4+~z!o$LxaA}h6dhPd6#?C!`}%F0xr
zj_NvU=%`9vJ(p@;&Q8xsSJTn^kl<BeeNIgszit#yXQgWC=+?USx+ZpQbvH+)g%9RG
z|Cgw%qn?iDI-X?w*U>;nQ=LEDL_=Lh@+LZZP7{q3+?Yfz<d6rZwKfU@yv7$R%(PjV
zj21dtlF4D>X&q1Lcz;g1`(NVtVPQO<>QY?3__QMZ3O40>Mn@YRojKUn(N;%09dFVo
zI-aHNbiAzN6?#q`_jw(stJ|EMc|ix?K3=3+Hi?&1`ps-X_*ETzZ+%_I8`ML0@tTe^
z+gcLH*(Mrocbe{Yn7&O{=_=amct^*`Icc)`u8yu<MMoW-baYVg`&$J|-nu5mVLIbV
z&igt(ps+f+>-dn`_*;Ce;}acSbd0KCf23p9_MEm&YB4><AGp`EnSM%yO*vgvx^|=J
zLA}wLb@bOkem<iY?G$}<^itU?TSRX<Oiqfo`l?&ct#f)Ea2TM*tPyJ(*JAp)^09$B
z2I&~AV~CE?I>zW2s)KxvWH0z!y3jBM3|HwFI!4?or_`fv!F+`uOJCA4UdIF-U(u^~
z$rrkD3J8Cf8vB}TDBcK@y#)gWUniL^*_1O`$G1A>8(3gqijJx5INVHaU>fyLztxee
zBc3c~(AkDtmH#JZvda(4o~2T{5Ch#D9dmUY(eaCpc_gLddmTUMSfFE}jwL#l>R3el
zY2wQP;yWFSbui$R+g5H#AMw;+!SsiPVwsK=x(vb`6)e~B!c4(f#|K%D4jDh{SgB(Z
zHKPz#={${#H9A(4=5SFf%wW2f&NfMG(6Ld+It4SkUI!nJ1W5K!)l4p<5Oa%;tvdFR
z2OZmVY}c_%$8N$S<=q`RcIv3zLk4rUUU7#EXnRz<d)W<JRwfQHd5dHZ==fR3Asq+l
z;ZtOF^31jls}4m@h{=+pI*u`r8o1rSaUCagT%gZWpE`b{SL^s)$4MQhRISsDw^Ky#
zL1I*x!D!iIu^{C?bez?3j#eHZthzRNBiRMla?UFayfQ#Cb4gYIOUK_jE|XOqU;FX_
zbXCWnG=W=zL#B~C?wH6~5n}4NuH!#d<#|5T7K(p$T+=c0q9`#~FeUyC+Hru$peKAG
za@&;8os%Yz$G{y1@*8--z?}y28o1BE{RZwbaJPYb4BX4Y;gX*yZ!M~VDW54%Oq0sV
zXMlPmOASZm$z-iw|F5nB1_~N@$Uq4L4;m<Bps0ajhUDt0Dbi;O8z^E(+233!vwUQX
zNiql*H$b82KQQpHfkzAwu9ho@ZFQy!t}!uN(!e`TeFCKoJZ9h{10NfB+`tnC>KkZa
zAj^Pepp1cR1G)jjfMdWl<nohgKp3zLq`M~cUZ!l_R=4h2BsuX6_y!^av4OxqNIsi2
zVe4z>im$KdtecabveQWn(7l_a-D7joA2w;iTV)NDGmv8-WuUx)3I?hfsBWO5!GHLo
zih-(z^gw-)s7&>)5Sz-U%Fh>m!xUixk2<Lu25J&V-DQ@y{(YlGEdxydo0Db<F)=sI
zp?Dnwbro7Y1Lr0S66YA;@qO714Ky-9&w0;4V*^bLykOu(15FJyGtkOFYXi*<JZXRq
z^E3@-pe40!;K(T1DXLVqhjdLIXjA)SU7HB$G15cQByQkY1J4<t-?lN()<8S9n=Ad9
z7afvrK>ZNk`6K^5BgFIcnGxcCqy9?<UN-QSfw#$(fmf+y18*2$tvt)KUo*hbCY^`r
z+Uq$TUP`gKHx2Msu>qnzO>CfpfsV>a-es+{`^L!}`p<)PZK|Dq+sQy@Lq77z!=S1u
zy3qRuKA_<yiw_NaH(yZUguAE`s^}8~pBfm$Q_%*x8u)3Vc%X;qW1yRX?kd~Ez-I<}
zkud}Rn<7dyv(uGj$GrEjc&@44o6g+KKKhH(*FZl5{S6E-Fx0>>1D_ihXkf5`A#{UD
zVvqsGB{u!(B&nHR7e%pdQdjK4!wr0)dci1zA7BJ|9(O^EG_Z7GOG>fse8OHfn%*)s
zAF~`be`(+=12YZGGBD1-*Hp-8F~h(&2F4rsmf_vN1bW)s^dyxMm`Gy{%BG?wtCB;{
zrfxH`r?Sf{Z<$X293?)PDgOIMP$${HI}B*;CQ3eM8^|@lUN)Bkjuw?F+0@S*dUeH2
zb{v+^Q+GMQTWDaBfy;&*Q!S>d4V*FXJG&|cF|eKG29_CEZeXjzS)tM&Rmv*gv->ER
z6UhJDB~}_(rLwD4x`DP(z#5gVRp~mFvhI2X{IFSURKTWN<(n0-MWtmIWNf=tKCDB=
zP6NAW&~`4X?>4Z95&PENQHAf?Yha(s?l*8)0S9i~J!s(PTks(T-1mCnBezO^QNU3H
z$8MDrQHw7p4E%bl<TnE+Z^5SwoW2F$_)RYE{GqZJ4V<NE44hZl3%77u&z0-8M@!ac
zdPx-)yqt4I0XJ89{xa}4LxF{Q7XHVMU?5W<zreo+uCeQxc*VqZ1OFNP$qs~x8wN5=
z6gTmZiQ7!vZsI-@_nXLL$`RL{Ci0rN!{iUw^6d2FEHtmXOx&aH-fg1Q)O?SrWd)Ys
zYs#5<4tn#M$Tabwi9#mwE6jo_CC&p1C}5)6F-eLSDKtIf6y{HTO%yfp=&>BmOBXXS
zqlm+c2yY&8&OMSUVaktnmNxMiDJUW(Rr-iZiN+cJM@=~oUueB3#irNGMS;gnJYhmp
zIG-HK$=aH~xR#k^;+>BRpQ@gzn|MhvZzu$EVwtc_R4SM8lnKX#YoaPyHQ|}?O_ViJ
z&O~4$G*L!XiA=0-V8;r6>uHy4Bnn=*ThNEIO*yiCZi5(gTuNGA-KuP&f{BU>W{Z_f
zRPHHwaSoqD&?>6j@0(HGL=6)SO*Ar5(?l&3IVMsjYSTJf9nR!)iH9_ccgm=vTB&EE
zzN%Z-MCZBb^1nJ<qagw@8<-$(KkaZDD}-hynww~1%7r8@#5AP{yCjqI|0(pOi54bW
zn)s5Fle;8KW3n?AmChvQ)3mjT)+W*>+L?IPL@Y9&F~Q#2)<hdcnM)*Wk!oL2G|zLY
z<arY>D1df(Q2{Thlr|;iC;OyYUN!NWi4`WkH}SfOH%yE+F~-E3WZT4NCVH88+eCX4
zT}*sL+nIRRL??=AqJv_!BXzP%+*}5#RxX1KaCzuG6CapZ-MaAmx7@PIPC@7V&;;G-
z=uYvm;-ssIZYDl4@u`U&I|SV?w}MS?@2>8WW)B5?wM#A}^;GbXx#`{}`j{B1vJ|1O
ziT)-AsBAy>CQa($bH&>r6N6RxK#DM3unG2~5?lzlS$DdOvBOLZH_^7a{e_8<CJL6f
zN2t3L<lNDmQ3~d&85tN$nkMF%m~Y}M6XQ&LYhsFtuT6YoVxoyj3VHw3eB(__P%vd#
zxKq9bZ~>8Aag}PaiNBsr(ezVIOfxad#BB1s!<o)bXJRJ3u6!n&=DHPG8o6Gs6H(9f
zIu_=dm}7zj=bB)*B|)YOSYm>DTV`UBiN)+eXPhM_s+TYLor$S)(^NQ#unCqgRd@3>
zZo<0DO%R}W{b1rp6Th4I!^BDxt4!=Nv76>I@so*-CN`N^V{(^T=6Vww7>-P=qxcPM
z)+HVGf<@B>I%SM(REtX9Y+{RvZ6>xW4RDo^I9pAOxF}y>dF?P!Ov_|9-)YMAR$i>W
z$HZO}znC~`VxNiqCJvhXN2d&f2UxgMEZkiF>Ut42un(CyOp!O2XIn=I>=rC%cv(3&
zP579J<0ej-I88eB>`vJkCrtcm;x`j7R+Fo!Crxn8j;_d*e#??Uk8pqA{|C<n<?OR`
zQHElHJObxUTrlxB@0z$Mzs-p&Cay9RWEbReE$d!pWZ0FT>`@zk(z0}<+zej4MWLwn
ze@y(#Q!fH`r;KZ=*K>LFKLuP@DSJBW-cXW$r8vAz;Ok8}M7u-aP9ZgLuRvaby9DkL
za&4DO%v?>rTfsC66&Pn1WO|>#{Q@L1eRuwRg5TuL;9XXKK%js?hK1WK6cl(+;0u8f
z0)+$$3p5pICQwA6s6ZqbSWrx$xZv-_ktOhuKna180*{iQz}{?r-WdDlrU`HY;Sqt_
zM+NuT>>nUX3Dm4^mlk+TfN$daJ{OM*yzFFe`BToraJbcagr#xnNWc+r`7$A33RnU!
z1pMwN#yHumLj2;@Z6ezOXXmCb{4a;ZS+e_#@C1ATzE%f9PU(aKEWAni<8C4mC_@GW
zY6)ah##%`Qfr<iU1rL!+#>xxyI4oHuHP)&mP+6dwKy?8!PbsPhR267=M(o=xcr=@s
zY`uoSjh#6+*<f?E1#$%H3Dl<)N9D9qN}!HFUFzg>aZ@b>p1v*`kd#1U#VRYZq>*Bn
zRoHqH1(R)Nn+rTC@Sec?f^+g*R>ms=uL?XR@U+0QRHi^Hfz|@g2(%GM3-oVj<1az|
zFWcx)sI~$h4-xH@Etvh_xWz16d7iozc!^dJASP?^dXcPdmP#NdiTv`nAn=;N>jLcs
z-Vu01Dfvx-w**Lp2viP%i~kgQTY%XOJ;b{LY`ud(M@5-;I|+0aSX|L&(@aT|^EplZ
z><<J!6zD1NnLrnTj|933bQ9Q8HiNZ37WhP|=u_1e`H_V~M6F_l*%0CGs-YhA$!=m!
z57A4Yw<;MT&_|%Jz(9dP0{y5HfdK-a3rx5x#fp@aVv-G3<V9{-I9TxYzaVcB?lw>i
zWupSa>DYfs{Od&uQ#2}Sq`)YFV*<woM$<DXm%w)dW67$(w*pgWzL9ypA}0dl1;(+%
zvU|=;a|VnPeecw_2bQ-d2uu=~tjZ?}JU%bovteZ-T#quDRzHw`s=zdXIedc@m@Y7b
zf@Bn#O?{ronMsN2+q2l0yUJO$YV*?BLj+55smW=Ah4TdF3oN9o4-t!I$VM-&77GL_
zsJn}3&1vGj@;1{Y0!sxp2y7%}f#m|L1Xc^I5cpo;2Z0~i1rFrj+EoylDQm5yjk=1D
z+PS36Mt>4mBd}Iroj`+586^&jvulJIWU%Qu{lt3u>d_nmMBXH@nY~GHdLLT^wo*$1
zdjz&ALADF*P{<@s{6_1<%iD8y3hbg1`bqwo^44DZCu7cGQFxvB_@30!wNl=L0zV7T
zVUH*c+{8SjU{)a~n=j}5B5;%pT+X2&EFpyx0>3hbD=qydcuW=N=-Vw*rvy$5{J{t#
za7HO@hF_3XepfJcnA1<{fof#%T)01f`x;HYdbh;|fr|o{1TG8w!y&yQdqv<+*^O|O
zk)fYtl{)-e;D1VF(rml2B{`vTDBv}Pb6wy+HoZo+Le(+7Auwx)LnF2=Z{Kbqk0oE?
zEDLui;C>7FEZk`!uZ6oT+--q#)c0BZB(K~uB%clza#}TMGcTPkC!ae(B4d80h5Qyu
zT6omL0~QKcC}yF!_5ZI71uZ;ip^zoF))cl-glO00)0xAeV&&u*zNjT-|NDgVkcAQ!
z9$}WIQiTs&=%6;n@Y%|ZyDaB`hsdQYl(vwia2`|X;})K<<ZxwW=}hk1;dq<-e2A%8
z&=rDVL0EGCk7>y_4z_#qrK4xjY}<lE_AGc7e+i7r7JLhVh4L0EsJfwrG8VEePU$1I
zkf=gF9Jz0bk3zOmR_UjlC7+ml_;Rc=ca5OxIPl=zisWr?_8t8NVO~`%)U;5`LRAaZ
z6shVKYAAqrpR}@Xj^Aplk~)09<9x4$lmfVIi8!6F<ovZ$z6aH}(7?h78zXHrw9v@H
zZx&8kXl$X0g)ex^LQ@OPEOb@&ZEoR73$I&v!$J!SEiJUQ(9XhB7M`~7jD<F|nuXRD
z(!9G<P>}tr<#_T+RXG3)oouF~-pP19JLASW@vMdCEWBjlWed++c)<dZ7anvtef^>Z
z`9d*WR;Ny0QL@k?uc~s2@S26PH8OdZ<Dxe$yk()Yh4(DHZK1t|jutx6SQg&3uxY30
zpsLgKe92;!d#c$*`FhwXgToJ+Z|r61PVZaz&_Wjr8#`xwK&j6--Q(0p7Cu&WKT#>Y
zg0Ck;{*;DRV_M>Lqtz_*u+Y=OKnsH`d}g7Sg?<+LTj*_}kJ3qB>Z-Zz*U0=!ZK)y~
zR0Y+-ja36IIS~4s46n_g(l}8+*uoGC!z{T&kIfCWcv@EW6uMl6>9XQ*R@von)7MA~
zqbz)H;Rg$&sT>QlE#z7lYvD@^lP!EpObg=_|KpiX7hhZWMrFwiiE!f|DNnG#@#I7c
zlc>FUX};z4pC|XQO|dZ5!gTt)s>0V{>TnuOHc%AYAZA*a#je^ZgWZ|#$|V@?7NeHt
zSeR?^=Mh+HVV<hEkRn)^&sLOU+#HZo6{X_L#TG)fKaI_O$GM1If=w(_wU#TFU^gLG
zE0k&21l{0A3o9+`w6M#<DhsPEY~WoBKUwl!b)ALvbge@<YZSG$?AN;m{cUckObUB*
z)7>Tun;EtGi|u4JJ7bITt8EsxD$(dv6p%0eq(-iGSaPo*f!!8=wTxdZ9JR1lwRO<K
z&ldKPPu0o+)w}r$HgTRD;cHsvAq$5se$+y~KJd+&`loa>>yj#&$CQjDd&0u;TOM`O
z!G5J1PZ#XDr!1Vd_-h9|Y~zfD-#IY0al4H_ESy!<|Fdw;!g&jSTKLPt1xt?JN%M+@
zixw_fxNKoc&E)g>vXB5*f;fk8RauQCe^W&kuG3q%7sA577OpYS?Uho?9hGX<g+XuA
zI{8vbd)-itW{@8hi>M+3d2HNoBcF{sY}{$f*OR;o;T{`z*>a}kZW}c+^5#F3GhffX
zSKYc#rShd_r^vLC-^N3#<N+H6Y!tRp#703|PX5s6AGEP^Z#KJ3R(-pWEw^zpP#3jP
z%tmor2JL^n3M}N}<GSLhy2s^Ra#g~{krR@=M{Ja|@sy3HZ9HnDl#QySY@@V|$87Kq
zE}o6YZ9HK^*syG5+0bn0HVj+tF#MvgX#B5OYGoGX=w*sn<YbyQUO6FHZrfnWO@@vF
zqM$yrT$T211UAarC})FJh#cC8Y{WJa8)a-{+ZcV!VL9(|@8Z|f#PL(|Vo7-$6>L<r
zQOO2Ly;{z`dLoBt%jTuoP-PocY`JHW4RPNiZ&jymZPc+**9P}G*0fQ}Mr|A9xz`TC
zeU&*jQi@^n&n(+wTF*v(8%=C9wb6jVpZr(_8&fB@7a?QZn%;=!*wB&yS)#nnY&5sg
z!bVGSrM7N9Nv;0k{Ip&Y<i+O5B)M&6qqU9qY`kwHZQ~gmui1FrMjIP#ZM<mXB^&K*
zJj-^g*)J#=pR@72Qg!N)6gPZQ3R2@;iup1*w~@O+ylR7Ov3%0he7r@`c=rt(Z_*!Z
zbg=Q3Qp?*UsPsS_YL7Uy;5({>a&@%P$wp@zG$Oe@+PD^F{Jo#x7FO!>0~;UO=xd{&
zjV?AmveDf}4;!@R$2LB-(bdK$ieXY_#cqlvHbJve0|a{7_{>Ic8+}OXxh8D7mumVE
zB}<70k|j3Bw))!`U}Lb2A?zSF22w>qnL&y;0kT@{yK>y}N}4p*P#eRQfW5Y~9Ht18
z0(Z}Tp<n`|Xg+$EgT%oY8)IoZ2ah=T(#BUdj@vk4V;q^Z@q>*YZG2;6yp37Zn2iZG
zCfb-{W2%iwHYSrMkA3l*SyM%oh2q#~!3DLGkID^uEVtgtm}X--z3W2Z847bI9rC;=
zG*!I*yF-Lr8*^+dw(*^fxi;q6Sil}?<KS|^C6)QAk8|;hy^_dWHsV6VA{&2?mf0mX
zmfBch<9kJUnT_RSeu`K=Lf+-Ytz2AXD>O&2(T?54N*k*f8Eovbv6{B9vC+mR8(eo-
zV`H6-^)}YBzwgf`1s1xa#RePG&KKgY5-$HSyO~~RW1Efbs>Q7~NPKSjjOuRv;%@d1
zRk#WTxW>&j-_!HOZX0`S{A}Y8Bikae*Ty~@`)Tn(avkabjo3#n+#FOD+33&n1nVAV
zAhL1P#xWbr{=$CLUn+L@yfl|ZZX}shLiIs{68&o9H%3thcRDy}<CKjnHm=$@&ERk2
zyp0Ps|2c&}Y@D@mj**tip_WES-IC|~CW$Uz<RQ(Abfk;ol47HAXSw>x>$1|!TSoSu
zd?UAU-Nt{mJiPF?Li?B02q+EQT!`l_*1Bec>%W9=*vN2jyMsKATvW9U+(ri*Aez;%
z=^^wMF5I`~M!~H5c^%y4ppb*Y4(@hvkAwUU9&m84gZmuhbC9Vj_DC1zYSjIXT$3W5
zU5iES?2J3LOu7fN1soJ~@SwsZ8y7leaP^iZAUvmYMiB?a929p@)B$VtE@PjYmww0r
zmw;)A5{_Jl+EK=aBb}Mc<t*fTN=XN$9F%tOs3T8J{xeXX4SdYO<Br@-8aQ~uL6!r<
zf$5-Gx-flSbD%qNGcY%8J~6jG(S!rbf#bk+<fc~c7quO^MVS}xdXC)N$?c%NBlpL0
zV>WTPHz`!ekxFmwG%n*H+d+GWi_s|SpqztO9lYkCyn_mC-9d8)6&>)uVmS^{4k|mS
z;-IF3S`IjbuIiw=gBlL1k&b$a;It|qe4Hxh@Z;vo0?%Bqqt&KR^=*#y>Nu$DprM0C
z4(hR?P8szbG;ri*8)9;>&59g|65vRwG11CoG;zSfF?PX~L7AqKlWfv|l81jCJma8^
zgO(1Sa?r{_YhKd@N3c)R=xRtgEjxqncO2hxz>{|5fPn+Kwhr1kc)`Jo4!%=wH_tkF
zj{N*Co_GHLWsR5|e7@vxMo!jx#o-2B`5foP@dn?FZjL%Q`hDHO8#KBD7V_@f4&G8#
z*dphUSwcm<OS1GL2Vc?C9CUK{@o@BZ(AmLz4nB3z)xrA?K2Q}urn_<|o}KZbgD$L6
zHiHwhA31U}4==v-ed2(x3~~s^ZBY)o)1ay%+v>qv3X^bg9u~MYy5r<+9|wIM40ABt
zK|h5*z`^GZ`YV`27dAT3kxL|l9Sl*0gXsVJr3jy%aX9NcR26b$#n+iH6g-k{;9!J;
zIjZE`^=Ji;b>uS5#bIKMBj2ao^`e#<5OPpA&cOs_rmvNlZ1fvdWxRvD^V7tf$jFnM
z=BSJ;ed}Nf`%yOPW@D;@X%2o2u`<MT2Qw&zkN!SpI+#UMdU(mhYzMhiwTq4}=FlPz
zJQu!;c@E|~xa#0f2MZi5bg++%IeY|Tv4eHwmY%?n;$S6vrGupomN{7A;ClyWyt>N?
z<hAqk5xiP)w+XifIT(A``H|WiDYE9L&EG_s6=Jo6pB(V~AU8%n!TmyhnKcg9Dok$Y
zBTj)qVuOQ?4z@Yi?qHLH%?`FW*y`Y+(GuaE-XiHEZdM`vp0Bsq;b5nOT@H3D9Nr~y
z-rA$cvh}^}_=9B0%cWCn`hbIj4o)$cIQZGYAqT%WIO^cABabj2Q7O@KJ`>B^xaJ&j
z%)xQ?sn5i33^;Sd2?xK@IqTRX7Dyao-Zok84n3)Gm_6g*cLx{PVIBP8;H-mlim{h!
z+GLEoD~Ej{&Z`pEV)hdI`^AK$E<4D$P?#`@TyfB6ge3cygTEQ2T@-flKgLP=fQ!3a
z{OjPFgWFu(?&7+G{}`QmiyMmhWrs2;?{i~ChASo7UB~9(^gIe?_D&afD3~}m@6LQT
z<8BxCxX5&o-<6Wy>*9VF`CRPmCGK;v=9Kf_<EgW~Mbyk*yFmP0BVok{ToiCo&;@Nx
zG~y89K^JW9ofU#;MO+kh@u-VZs<~n=O1Sdpi^W|$<VqiSA*jIX<)Ve(9U~rA?LOjy
z$|1p$E*2ch<lVF9L}?d~xzJr0E*@8;o>0j22eO)_U;>%~x-Jl=3*o|c;kYpK<>xKS
z1<MIssAE6fx=G2o!c}w{^cCFD&L>XbqPmM3E<zWPi`YftqKu1dh4$oyygZ&y$1Cfi
zoQsMsD!G{GRH!;X-IN=9TvTvD;AXb6iz+Uvx~Rr<e!8?%fBlIT4F`x}eB+*<u5~)+
zyWXOvi&`#Px_HV(ZL;m6k&DJIQZDMasOO@-i@GkBl+Pf;#TQF6o!>6`Z=m>T=rSl(
zpqAL7*w>n{^_zUED$Pjh-$Ko)<k6x>=L|aM{{59VTrJ!}>4*A!+C?iDFS~ff1rJ`Q
zT|DdJITz0;B5hr?bJ0e@^r&I4wV=<Nx#Hl}!rkYJ=PCF|(W*k`ixiU<bg{R$)apwv
zXms*JR$q1Tnv1txw0H5ki#HUhH(ijEjz#mZ8xn`tTZ%)v%{wmMbusO<EFZi54yKQN
z(}Jey<f5~Szv=ca-gEIjrE|F*4j;Jq(8U-RV_kG{@sW!GREUd@U3}uAw~Ib5KBdK7
z^l;JBMK>2&J*4)!(*wuK2*Zn6c9YLs^rGxzB|l`Ip@V+X*F`@U=L)3ytBO45%j-)2
zJfFrHtToWZAQxY_7~x{D%Ws%qn2VCV#ZV<CV;YIP!zj^R40my=j7`{CRAb~VFC9gG
z&KIH%Npmz?aVwDKmoC0?G2O)s7vo%f?earwn5?RN<6;7J?qWPmwm^`7%EBgS5%vzM
z{aY7Ps6B-|)#b`p1-8gIQ*W%8bXEpT;?Hz3iycaFINL?8i{_g$Xx2F{=DL`#%5OWB
zLu3Zzc`8eQ2qd-8#UfW8d0y<|JJs1K8s%jZ>_^L7ET<2+*ymz}i|<`*ak16K4=#Rm
zvDU>p7b{(?QZ(1NSnc8`_R8M`V-9IjUHm>qDX+rs=L?bkdKVj9{1Rqtc0qlz^^MAH
zHmQ{ULy3rghl_14wlg}p*yUmeyK2S!RP~4ph0l7~WN$Z{$Q55yvG=%OLoA`|GTrau
zfQ!>E&bT<};%65}T^w_9$i-o$z+V(^T^5PSbHou^;jE0$bWwW9aTNxCb8(WgxcHSm
zP{pPph(K{psV+$%87n?_DpXk{es}SQiz}+XoRx;gMHiP`oOjWpj!kARsGvj{3Da2A
z2D`>(<&AV0ddO85e=5EGrOZk@nzfq{`5y*<dZq`>!!-tf7yr4qp-jWpsinIHx6bfz
zn}<Rk3VXQSLmm(Jd&uYE4i9&FxW~i29vH3}L-KmK%L7CD-5wa^N&jYezfa*Xuruy4
zXs|rfLw*khJQO4;YOhApaen#%Pd+2)42<CqDw>S{yhX}IJQVfth=-D%3=YLSJmjH-
zC%ap55A5LmM+!ce_%B}KKdf-b0Gne-dDKHG5080x+~XH53X|2+MCdJDj?Izy6CU`8
zAy@1X%<3Kt4>dg0^k8}r9uf~_Jbpz7wg=CH@5x7@<H7a7$2uQm9B;58G8T9U)!o<w
z%WpbN<jK)XnME!8D70)c(^pjVP{~7C59K_R_t5idVLCts50$6O!}2s4zuHmRLlqCz
zh+j5?S<<iSfyyB!Q+ChlN>VaY%R_DI!9zn2e7@v(sN<oohm>k-#&L)2)$>qa-F>iZ
z#^NzDYOy-gMjje_Xzd~Gp^1m49$I*4>4A?b4u_g49HKQ>z>_Lv^`|`WY5TN?R-W`;
z4q(W}ymbzFqx(JMp^b-UX&?_ork2`z@<Brlv{L|)DZ=v}UQp^H1vXK3fz;v49$xW~
z=_9|7S3SJuaZD(eoL=|vhKHFRW_fti!&@E(dl=&3Z4d1|eCnYqwL$%O=<MM=4;?)D
zuG)zfamsx5O688EIZ+;%Vz&Qs@xF%-JaqB!ktbgmd1CHE1@NtQ&$+q`CM@I$(~muT
z;>n|?yw>y;-8^*n(91(_4?So#51)A$I6pn=8<A&}xGSho@`~70D#gg($3tHa11Kyh
z%#`i+Bl2L;U!@eE@IZE`ZsPEomV*?qVX}nXeqyMHVIIEr@QsJzR4)bb@Rf%V9!7c?
z?O}|EQS1VvMX3|gX$j2wNARQ=b;t>Uv8o9I%ubn~=B(E^4+nP0!>8jtOz<$p!&FZm
zRh#I6l1`?tUPvaXT0iC3Jf!@shl*|7b%Vq-57P-(Z!&|OXq1@vNa~M)*+<f~DPUI~
zwf2zfVLiK*hdCbRdRXFNsfT$U=6l%pXQ9O&7I;|bVG(uphgdT|&8fxPd74sr3uUiX
z%l^&-Cq@V?V{h`X+QUyCR(SZ{!;c<Tdg%C>91i_4KmCI;P-iVwez#M5i+sedQj~fA
zbb4&BVK4TuPFcC_UZ-4*CVVu15X%|GjUG06ILP4OVY7!V9(H@!<6*0ZZH!}9Y9|BB
zqL$m~t99(rgR`m99iH65ep9!*l&X2~je6coxjgJwKELI-#S?aHnj!Z9qvA-B+tfbf
z;jo9}^lA@BJp4lGsDatys8TPDdm^gO$rHvOs)E&dQ1Mp}r)bti;x`W`JrtQ$nU>nW
zMcRu_c$)pOzxXg{^t<W>e=sn5IOpNKhwBWp9xiye$e{F0lmB_R<l(Z1KN*(a$+)6=
z)>RJ~i{-g0x&hlF1MEtFdH9>5Y^E$>Jp9MQzl?RiiSk<Njs@v!9`62D%=%8;U|k>g
z__&wXA?G$9d3@aA<8~iBj>nR)S(7_`<n`rOeeU*gmk%D1vv%ch!|;-6g79`8rAxc_
z`MBRlK3|^fpxZP*nN#M3oSiE-Nzex#@KM0WYrgE`1${i|qq>h8J_`9L?8ES3`Y7Vd
zX#xIc{b3(PeH8OiT;X%E<{@<}k0uvxO89aqguo*{O8R)*#}j0U$WAsl%au}9xErdp
zkH>uU%9h_j;;J80o(anGq505#c`}P7&Ni9yTIHmK56efkkFums4xf~BERhe#m&;79
z505-=626bXN0S0A33Iyzfly_M9Q#NVpJjY`R)}YRSjZK$az4td@=88N?r<vjsOZa$
zVQiNhKH1RJU!BT6s`#ktquPp=-2TS{I|QmJ$^>fqsO6)jkEeXpCUGB)dCNyik*)8e
zfsZ=AobajZgKJ@=T#q)boVwY>h9@%``uHxd%r+uWE~D*fZjAZ=wVo$^xwoyEkLJEy
z%IwmtGSR5s7Cz3Lk))pX(aOiOKAxlAe58G}QFZ@0o|ghX<73ouiFR{#sI8B7zTDo%
zeS<7~-p30HnPR@EfR~hkc<$_n1354Ic!lxb$J7cbA`qXGFr@jq!g<5Tn?Bz1@wSgo
zeRTEF-p4yWI{SFf2UX-xkWIYnqXR`)CqIhP(MKl*KfOMO+4q%1T$JqM;{yd#zz==A
zR5K-aHqJ?Z<l|!+Wls7Nl@eg<l)ame-ah*H=<cJ3Vy34`Ii2;HFZcBF>g9ur8U*_K
zIP#kOC=(aoIYq<$-UEDm?&Crry?vmMK~zG37Xu9TF~mo#%7^+G=Hrx)(>{j#_`=6h
zAIp4<ASXU1`It<_`WWrY1H}`3jPWs+XhV3e0S9W>U-}qFi%b?g0r3@i`(Bj)q%M!p
zP8%z}@nxVG@8d@v$Q>vbTqd$gklksyRM)pYrudjo1yb!kruoSAF^59=n4x5x<;$nW
zOdnSgn=_w0tjg?cA8S_$URaQx>tmk6ocB-8ji*x!zZVy4+hZolL!b+NET)68m-Q5j
zd~8}O=GL^AP~-*asC0_c+O00-jJ(RX2CVS0m%YHp_db5`v60AR*vCpAKlxbWW0jB9
zKI(UDL7sWinIo%bPl|>M(rbOJ^Z6;``WvXL+V*;-AL8(=I<pKuWmk#KKDPMS$q2@d
z{AP=-KDPU47-eiznjtcI-r*yQJ7yN7nQ}^*)pz^Y<KuxsDIO>e+qsO}`>8h{ztE$6
z98@Cz?BkFEsA1AMOw*IqVdC&yalAlFa>eJ-F@^9e<Hnr@j?;U4i4!X2v2?<}sk?@#
ze^OOs;Ta#lv$qDgH^3i0&ieSDkAHleW89dO?=lVH<2>Do9bDDD<m34T>5^+59>pb}
zQ};--UiI;(kH38UcS*)NUZ*CAzkLvgtTwBk`q#%bM)d%B0$eAWkJ|!tUyx>$<`L{0
zRB3?rgG8l9DF$r<w>#Mlf3^7hy(7S#0rCd&*->Ja$l?byPMdcHxI2(mxY<^VbCvE3
zaDRZu13VERUx3U2#REJPAb)@d0z4R?P=Eq~bd0=ZWKSQpAYG6MdmRG9R*J#_iUfFV
zmEb7LJ>n238lYGp&khs5v^Tp%00bx*;L!jN2jJ1*M*=yhqjZb>M)Wj}14{)c9pJG5
z;}43L%xs>vessJbh05b3&sl6efEB<FWIxg=QGo1nav8-4K$o~YRtVKMJNb=B)(PMS
z@B;(^_|PN;j$yn2i_hk;XVKfk08xN-8*>P=>#+(?A18`J8Bz{VHsE(G(I`M;QV38X
zK&=3^15^x9DM0lAH3C!)u)KY$N`R^X{?{QRcR_l2(NwiS9-zKGtV@SU4;5WDNt@Or
zGtV@k6`1A(NCo_I8tMl)*+J^FPJp@r{#xf;9U{+Yb6i2ajX6-c0S$4n&`(1|!vIWk
z_vbVT&@{l)0a^uU7NB{6r>Kf^a{Tb5RC4{60a~zdgy4r7m~LK>?pQm;Q3S<o9UvW`
zO@Ou(@O$x$5|%^a9W`xgyIp{113Bb)UYX`OirmtrdU>^9((<)g@{IpW0bUNUOI3U&
zz^eg92N*-s2V5#e?*M%Qyb<8d03QbE65y=>ZwKfQpd;<hBfx=Lj|k-cKxW?!u=<GL
zMYvOd&H+A9XpG_S1$dv=Pcoi!z`#c>0d5yLy&(NjfR6+84DeZi`(8<X5};dv4V%QL
zf!vwEt1EeUqXmKP0ea96yNSOyiJQB&`Zl+p9FpBjwZc6u543ap(pUk81Q;5iKRM?&
z-vSH__?zI&0f9Vgz`6ZFij%?gz-#gh0y(*3VVY0LVF89KQX>L+kc68;DaaRr+}-rJ
zn%*C&?v7IFBMZ}G1AIvj4DelmuL6t<Fg3t5`r*HYzYg#XJwM>zUNT8!LV$?@s_Ye0
z0&q*uB$ZB9DVLL2@-4gSE(!24T4SMn@J$aeKfr<jGXl&EFiSN$C%}akwPpv%RoQno
z30~EIZ82As^VU37PJr?*q;U_4MRYAiu<0~$xuLxzz|sI~0;~<NjNTq#Wq?)e!m8r;
z0e%R;t%+oS*N>`@#x0&LH|=v@{ptYRf%%gvZ@W*buHTHxytOXCMk<O?Yr0rZ^C<+D
zbCqYag16Jh0&KZezBRzMTX2t_vaOved!a<rZx7_qOuLm&?g_9rz`g+c0~`-<BH*JF
z2Lt><HWdEPf!vdPIKZI*H@1o{ZUuP?faXxEb*nqIAmw8UGyiib9^0pte+}?kfYSla
zu*a#zyORom+h$HFpyh1wJL6K06!{#V0_+z@bIz(;ESVCN$=sDX&!D<XB3uk`DZpjM
zM#iyFjxnwV_>%!4M4b?S1^AnBIK&en{>N?@;GPiohWIzYwE(w=$P?mvfdAN8PUqYf
z%8<e%*f%KYHzFg%pik;{T$pAdKcT>Ya7QRZW!?~Xh4N8yXNcCn<?wmOM=gWH-67cP
zJN=i_ac1TFLfjvsc!-BW<O`7*qELv!A@YZKAjE^Ad`fcSg-?(IAs9(`6;uEz@PiT@
zsQjYWFA{>E87vxtuh=`62*Slw37akv0wEp^Q7S~ygW};3Lr;oF6a|JX!X-lnjcfv?
z70-`__|UA+@6(e1r7x%W6`-sTT8Jn_96}Fagm6N*A<PgToD?>f!1m-P8-m#h!V1BM
z4!`C%aABG+;2sqfg7Y3>D0k!VWsPbNLM-`Naz3t>P3e*lWkOUAQ6)rnh_WGm+n!S~
zM7a<vJ`?3b`E>iIirwmLrG|UUR|rwNL5cuzDk)6LST#ho5H&*7WGjknb)~l{3)4y4
z^6To_wL<Xun8UiE{F&5|uLM&rc2k*kX^Rl;L%b8BeuxGko(a(=M8gn`LNpE0EJS0<
zd&HsPnyBhL(O<lusBp<?9^%OmPlb3oM2iqDl>!&On$1BGKlRhHb(yEmi&iu}uihf9
z^iT22+?C?jMQG4rV@2B#?Lxdt8ACi9;<*qnhIonI`0$hbY|Ha3G3&n&%Eu_LWnT;W
z7|UDFto$-*&aC_jU39ZUuX{bj8?<AHx0GkTUAM_=I~_h%X+%B;-wwHlt^Dz&a;)`k
zhz|6P5IsV44AF_^4$&n<=Me9Oc%Md8I^;;;hlS}9HIu=sq}5O&MO$<5@KK0QLv&So
z_&CI&h3QY|T|)$cQd+7T-AqgIgF;IWR_0Vj&k&!5_&mhG5WPb5rq^9g`i1;`yxc@V
zOWmlR^i?pk2giyLQL2B40g8c)8RE8a@@Va#5JTv+AqIzXMu@W(oN8eCuu#q&U0Rr~
zU)3H?+f}ve9d<^jem#=r4lz2!m=Fs>EDSL=#FrtahL{%Os}SQtOb9t#$JZgg2{Asz
z@UO(FZO;9R(gSvt?=Vv8jiZ`LAtr}%MDeZa#q<`cn*KJ0${#5|<wQeI4>2P|ZiqRd
zoE4cFVpfRRROwgp@$D>1FMBgZNeQr5&J8g?#I}ph+`(cV#q2H)uM*5MEG!DKIK*=L
ze2DMZK|(zIr+BPvir<4;8iGUXW%S8kEsn}q^5^-a@uKwiA=1ml4{Z8?oGu_We(Y#f
zh}9wbCg_*orx0sGRF6?3=649Oj$%gmBEtF*8$#5LP%py95S!>l5$=nyImDI_XF~iQ
zVk`L!aWKTsA+}SiA@+vY7h)&-LO=1(mX^Ci?4s<?rZ^S$;Q_ISJWmq^&d6Ddd;Tu8
zKg0p{$2U?-h6;Yw*_>L2n1`sw5XVED2yrCDxoP5Ph+`pFA|y>-tWIPSCtNRh@K<*5
z5U14LlXUC};>~(C2@-f^QTjBcC}&^0J2h*9_#?zw#%-#UWJ8>16bf-!ISh$k2vKRM
zxX8}6PQ1B8R=*PBYKXr>Jhsyra$3B&!}*h)F2snZ+%-KVC*)y5`xIsQH^ep4iI69f
z?sq-JjSv|T{$l`KElM=1Ok{q*hnv&L*liJN&5%;u5#i1VcSX3Hm`*{ehy?RSQiPIS
z(rjh?7Kat@A=!pD3-6DRFM>ye2$>P`M|d<ssR$25C=l_-@pvdg!3YmVC=#J)1b)i(
z@ZS7|BCt_jg%#xw`RRZyEqSY$BFjc8F9k0V;o%66M1aDlQCLWZy{Fug5&AAl({Qw4
z=?ITS&?4v&u8$XwN63n#jh=|WcO_o3_x&S{YeX<3SP|?9hw|m8QK(g+^fPHu+KJ#s
zxT!{pHrGf|UJ4sT2qRR9P&GmnAtqWsQBI{l@6De?C=(%D5n-*es=U-H*(g8VQ$9k4
z2o)n#ict9$@nwtBq(Eef`P@l|pM$PO{YR)Bp?ZWGWOB8jIe68KK!+hGM9ztjQf6W~
zvrOwmV6>qr>qlr1p;Ls;5np@JC_<|Uts^v!&?G|h2v0_6s#>QWnnk#{J-=ByMM<gl
ztwBM4bf`symJyzc@U&7jxutG9tPw?@P0?4=5uS<gT7=glw29C*!V3{zj6i2-7vb3m
z&qW|*W|{Kj!s8oqo~Ktl<+eX2UW)KCrBG@ax>j}sB2=`pUyVTe>|a#H8xh`&&_2RD
z5#EZxY0?`l-M1tD93jQK`f)MctUT_+y6;9<bVzihOY9LHA~_rL^C^c?a5nh82=7Pe
z7NI*iiSS{BPb094b&2p%giloKB=xZ})39?n^>z!YZf%lz@lw)N-DTFzTcAgTo)P**
z=pTX3`A4nPXAycu=&dUDq1Q#A1Jk&?#>~!OA0a>o9uQ$rguxL$CmXG64^+O#7U_ON
z$j@-8oS_l^8j{V1hAFovKs%0zFfziG2v;MFiZD9Dwg}tVQzDFwFgL=y2wz6{D#EuB
zrbHMQ@pGV<7-5pq`8TvegbAuqs^TU;l#YWIW+~ldB^~X;!l@CaMVJ|3R)pzPICo{M
ziZsfi9b$RSgfGIgZ|Q0d(f$#+kqlNOMG6#WeuM?ION7-C7SbFMmPc3-VX^AkOCl^)
ziuz6oNX@VciBtS#N(m(Ly<(f?KSp5T56UfnxL9eW;)Iyg-cKxKgpaT(0@+v_VI712
zEv1p{21SIxih4HF%@MXl81_!aR;K52_AE-%_ZVJCt?<tLJ0k34f2ZLh?252E!hr|}
zm4WD5d)OT=C3_?6BQqB(k+J>iR;4xnA3E64epWgu7Ns`jEpQ~lFA;vHZ$vm6;aG&<
zBAiqR$CZpHlpv(}E4{j&O$T6liV<K(eiA<u;dF#%n{x<fE|o^1Zp%hE8{q;uVc=4j
zbd2*6>iq1mv(Q^8<E03fRevvjwLD`lwe%<5iJ>({p%{Nh_+NzkW8{nRPlSIN#$)7-
zag8A{!fi2bkMSQvdXRa8L}EFm&v62W1bjp1^-*n`DYG2R<cV=d4355dF?&~xyJOrF
z<KCE0s0`w;B0t5(Z(cFIF9vZgEK2|AW)nX%M*bKN#4<uo7%vLMD8E*4VXmM;+fpP&
z_!l?3aEu}`j2LE&qA`laC>5i0jN&mKit%uaM`DzS<=oNBUVSKl6AqjVB$NAxiIOqu
z-Isba28S_U?y8fTAeN06kHsMJ6EU)4JWhH0N%qK+7GpuGGTGK+kit!vfQVtm$c|Aq
zh8@F+5t9cu(~aT92x5f9|6at+^Z7A8{Z5b>rkBRa2Yur&MHJ)t3390}iBTrTs0ngR
z#YR^ob~#ENqf(5@F)An`yj4+2L3}nrQdMG9jZsaBKqff_#KOH_N(w}-8KV}pk>H^O
zwPWPOm>XkWj8u#|F*?NP7^5zg5Ti|uwlV6*Xb_`mjAn{p!x)WYG>OqjWoaoA=g6Ow
zX)I=&$9OVEs~D|gw4h@InJr^H#a3$C<m72pYeCHvk^72likT+!e-?g5iE#0_*m7AI
zE2SH>i}7rXH)6aQ<2foM#w#&ijqyT^7h}9ci%9ltw%&B5tU@g@`{6lZMfG2c!M0wH
z!EbvKfo)N}UFlTHRocgRM>*l!F<3~1cd3wmV(tlxQuHyhDMhCkonwrMF*3$`G2V~S
zCq~~GAH?`DMz<K<V|0n}ky6E{F+Nsa!G=B|Z?z;>Eze4AbfvnK=J|5hBSy~{y<+r^
z@tM*Co1@hzETv`@PTAEtDQoqM(LctZ7=u-n0Wm(0F;Fpo(-|l!+hW}zF^0w%7Grpf
z%U7focv097PRqMr#2_^)hYQ)GVvJ@s#^e}dVvLRPb&PLfd>P{_#mu5hg^A2*y>YZ!
zj?GtQ@=P0zk1-*}#27c3B>mevW>9Z?#*1%bOo=fo#_SkVV@!)NGnNyN(-lF=H6xa9
zwd_Q6Y-S0Q85%uTQKK`=iSfr0S;Cq2`Rq+GE>Vye3u7#bu_MOL7>i?k$FVxCNop~c
z#`r$Q4>87-%UDK3$5_ECV+H3bi}5+AI>l#y7Wy#;IbRiHb&Qp&L!GtdOK7ziKgC$1
z{Egw4YNymJUms&bj7>2%$JiKyu1JENbMsK)WS(eSVr-4EO;u!dDw*Y!XghuBAHgN&
zT`_jY_%+6FG4{mR8{=o{A;vysn*I6nABeGEu}X80;6WNRv1MeNC=SOs662Q`N7>4*
z{L~WdOPpgdj<W+gWlkuSvN<{`d86_PoQ!db3XE|!#%V@|-Oia9zcc7<acG4h{BVb=
zMFGz#S3e))g5sZ@kvJFW+gIgVKdFuSQCx{}HO5^D?oRM$jKAmxF>Wya)258}F|Mm_
z@=uI^i8(|vK$jz*^lG}zO*Q6jzat~TZ3*%uxFeAPoMyT`kp?16N$*UgfVxQKO=OH+
zQZ|$Qj-BqF1otL*AVGly_a&g`ykDkZK2`DlM2109$W(P%D}RC^KS=#I`qe3zpiqLs
z2_8(q>`J{pO;aR6(FDbAw!5Vz>(cJ5NS^7sB@!UP`-z<IdN{!&3F;?kkf3COM-wD$
zE<vdTr4v{Q>;#V`;C^yFfsx?x1a*FKo=DL4w-#B6{O=3_O=a^fPIES|(w@pD>4f!#
zN(pcV(n;VZa?UwQ;3a4}P523dM85lQ!caTlaB?+FK$sWT0l8WlCz!C?A;IhfWfN3O
zP+d_dm!Lv|iV4cAENPzlt578h+fDGSchv-y70hfE1++SsLzs)joIb6=n4cggK}~9=
zq0Ot70=Nl0MY$66YHZg_P?ru+Ghs^NJUH;*MsdDrEq;EpAvK)f#RM-UXq=!)f|d!M
zqBsefC1{@DZGNYS@nMI<6;%RHs*)Bet-IFY-KP_@O1PSn`D}vLY~_e(L)9fnE1215
z6u`sd?GkL7E-Gyi)D;2Fi#92qdX9}2Pd%^F7ufDVS@?2-R}#FF;9ZK)rpc=bUQh5w
zBEMkpT7oV^vW>;*=d&~3BpZqR;Ko}@E`D;2(($hr?GyQLi<*nm9TId*(3y9q3(h=u
zO2E&sP!OUKcu!@y!=EPmKzYuGB%a`-1Rp2pncy=bB&aku<I@CPX{_!d%FgVT$h82m
zPn;i`O`v-Mt{wDHDZk6qD?#rBCx3UiboKUZacq<5qbSoY7nUv9KfwT%{izH-PcSgS
zvINT$47!E$l>!E{FWf2_s(@iC9iHF|1&mPXNR^WEC<Tm8Fy>atSOt7Zi~J$~wKPs;
zzrJ<%n*`%;!4ncpOfX4hC$p2@D*raYlw0src8Xi@^aM4w=Kr^O#>@n>RN-uu&QFkg
z3ujJ(xwqhX3MhX`EJ(0W!HZP7B*EeY-zk_&w`B6i{(@*r*&p|1GrJ<e_X(<&LA5gY
zA;FIct|hphU}b_;363Q=o?ta6e-i9YuqVNq1Zxv)ORzn`x&-SJY)-Hxk)HwCkYFQy
zkE-69!%wO3!?x*E6Mnvf&bF0(mLF94Tz*A_S$+YAA9(pcrmh1>isI{^pkU%qlA=G9
zEHLbzsNCcn_Ld-UM1>X1SwsYL0#p>q3Ze)Cl2kxMk&Gf{a*h%uXCw*g_v^mDRbSOq
z*PHIwFL&?kO!w<mg;-sPHH9K&%F|_1jA7RQ+D93AtY|$eIR_SEOCdJWyj3fY>M8Ps
zFrUmOh7BLa!qnD6{9cId@^(gXYU|<-+X_W87BXT|njP#lydim!(e6V0QHUdjI9iB3
z44Xn6ApNyP`=r<;yT1_3G(r`av4nYj4;JE3Ar2RcPYmNy`OJ}0k~ZX6A&wW~Od-w|
z;sl332Sp)HNk&Zh!t5wzHfrR^G!Ul?|CeNj1X<5dW9JI-S0R{eWZ!9Fhx3IZ!wl1s
z{8Na3Io+wKq4G>@T%;mjMR^saRFqb6sfx=~T&%)qnYu(p8CB$LDUp*zn4+YtDi|@_
zEfdIGuHp(6S4te>Gph_g0FiY$Rix{AYkB%A6<4dMqT(7=_-pY)#T8UkR8dJ469QdU
zS%pX%(@TEKJE&Z%qN<APRX_#1U#E(MGbB~*pvYHKO%?WG#~W4LASsB-gMtp-R8vJQ
z6}PCkRYh$TbyPG|ky24t#Z4;et7xF2JJT6$)Yz+@Dl+-xX65QF5sFYAMQZWbby?C+
ztGHQ3BjPC80u@*75-i5FNKrd#L5{bnXskk~l~fc;sZ<r31gJjk(|uNsb|Ym|g{8t(
z#cak%vsE}MXa~Y1OQ3|Hr-EcDTc{#Z@w$pPRKzM06%VL*P(?;Xk&1RI+N;Q_XrkhF
z6)jYJzD;SWq8Wv+kw3YS2!_X*BS^&~n_T+6rHWQGl*-RfD3-{yHsg)G82lUpj9v=d
zRvMGTr-O<+RNSrN9u;@0BJ6W2?o!cFMJE+cE)#ZU-@JoLuMI_=RdBd<q0MDBq)ppJ
zRNSlLJ{9*<N10BiQ^$gm)H-Ch=0v53R6MNW85Pe`LKTmy=%(T+6_2UtnaO`bMOPJ%
zQ?CQU%arX&NoVR7msX-W4Cd~Veh=cScv>2~BqYe190}71&oQV}yr!a;iWgM8NJUh<
zqKctPB2?-n2G|)v|5cTXVMN|1nt~;z?alC(*5F)0YE+gouzXWRUlrq3OkiZHcw5DA
z74NI)#}HL9Sj7+({W<xo7$ogBka2iW$U}|{gCm+?!5A1SiNCAjJyoQr8gg0FVNwQK
z@2*Z+#tgfRQ1O9^Q7T5O_)x`{J@ZB~6y=CuxH4uq5=oO`_Ax_xR&K0{aU5SN+O`s7
z@V-XPS<-+kKT)yJ5o9N-n55!s6*I|B#iuH!ld_7>sGW+bDyFHJA|>Y}#z9Bo452S%
z+!ChboFq91Ua_kD3>9Cg+-#*$RK^mW#qt{!vsBDiu|UOasUwl+s+hy@kXgBiJdYtA
zrZ{oYn+rMlt5~Gsdx~APGF!h>#d8sTO+)c^F+=*x9J6T=W)`d;Rs5vlXBEG2#A)Jb
z@K+VTasJV8rG_Ocma6ze#U2W#V!4XVDz>Otp<<<qwJO$e_^c4V;G@whRpg{vtzwM?
z_{_lD^<<}FlM4UA;*A`PuPODHE2m`U1m^4Jcj|t#a$8mWu41Q(T~yXieb6|&O~rOv
zb)cBWX|x?uaZ1aN!avJ|<hvQtt4(u5daue|9yp`otcv|A4yZVy;;4#)sz_}?cHUNZ
z%&goY6^H4{S-H8haxA&z;FyY&^a6Fipd44lTEr8a+3IHrF#S6#Pcbk)Q+S=0k`Oqj
z;x82!RQ#=q1M<$xVRCArOPH$NY~}r<qO68XHT+AhXXTckQSvmfyhxU%WLa9n#S*wg
zmTWDf;h03eOcQzO`5?*+5|>MuD+yUsPD8#1XsD*4yoReZT%+My4SiOXzghzqtyI=f
zK|@99zDjA8POKzhCeES-s%SX0RXoB~)o>lfo1ME}6RR1Y+n%P^_`rNLTkzy+<pvEm
zYN)TFfrjcDYG|mZq3))lni^_pA`jK79__zbuGD6wCbFy(uA_makuAPS*06HY6BmDV
zd#dE4yrLnkp+G}J4Ji$@D!)>3rDFBjxtn?WQwLtRXkz6_BaKTMnse16vnk%H;WiBf
zcr}*56Q_z)sg9;W*I;NcHAEU>N~OWp;A!wFfCfi{D>3WIL*;0PZPl_L-j@wDgc{E6
zRtR$`2my+kXxtNxB8{p4MA#p{P`R*M8v-;qpSOAO9bhvJ%{A<?vDe1!8d_+0%*5j+
zT54#eVYiMybQEi7O?h<0I@)MxOKKWcYiOsTy~g}J7^$IyhC4Jor{Q@GcWUTJIvO6=
z&`Cp1!#x`A)o>S0F+=I1;cg9`HSrOU8}PYah?$~u^0XJGZoW^}Kd9j$4fkt!fP?f+
zg&B-_5DbBbHPo4*Jfh)IO=NQ3wIj`|#YT60+l0H$pU}`%<KAKP(D0-t(o;XBp}PdS
zX?Smn!WuGNHdU<PVs7M~)NzFJjD}}5k!ktrG(O=H<+qgfJJMVm_JW2NHT2h*w*)U~
zcv-{i8s5<GiY7jHzNVp<6!lelw!k7mUcDKjPv!N|zzo=Z2PqS>DdtOmlcH*PTSGq$
zJJ+ZC%u+@*&AvscMhJijsNa!vs0h_3k%5|65&bR&rc@dRlbS?eR_CEK@^FO-7Pxql
zk`JTt$15Wk9<!9;8r~<PK??Ix(=xQ@2U1QF{K89pq+yhX*&60(7_H%B4WDZGjIpO-
ztcHmUfW1Y`<UEd2X&5g%9+{v_V4#*sxH^mSaK!~PFc58$M4l{5W`6!$!xRl)YnZ8F
zs)lJAzR)mT!<sKdUUx1sC)qC<V}9x@4(D0Q3{9*&Cqb6=j~DW^nj2adGkNtllHe?<
zJ1hC+eXfRi8h+C7vxfN^7HIfh!(t5!IV73CLc@2`EOk@)i=<h&Saiz_5l+l_@B>3s
zP5melSi@us%+f$p{G#Dk4a+z$(H%Vhm-D~GVNmfy{89-Mjd>VWXjmz4ndzeJ+VZSq
zZVKkvUZY_xCnz0P>sY7pVHM|yreTAIjT-i8*so!ehRqtbYuG_M4^y^i*s9@oDsr^2
zT9Xu&ee$XH%yYhtQ$$uI2H&Y+7uDzNbfCg+O&krt@cV-U=R;-JFaa|#8034Ue|dJy
z0SyN={Hfs-=RFOFNrw|G-P$O7gueTdAJ!EH#<Q)8k83!gi489&DdaO5<~(O$a1RI-
zA@S345HV)Xke3{QXF2(d7dghs@w|o$8ZOaMM#tY8{?SlMM`<1ZYUurV`#c>N>0<cM
zl`NS}f?XJC97h-HVic69)_spsR>!3}%IV10ahZ<GbzGt2N?jaO#4Pa~6y*5&QZeG*
znXWWznhFPrT>#~EFqa4~3RZyxb*Q>Xno&tdWgT^O+@zz5j%##O*HJ^qwK}TmsHWov
zU7VqFosR2uK*!j(lu7R>ABDxM#w$GWfxI@YPBWNq)Wrr0u`Fl2Qd8$%DiP{+bbJ`4
zh(@@!&b0p;VJgVmdOGUsxLHRd9Sw9SItp~*Df+jej+BnH)QHIB=*zPnNSwFEiNafS
z+)CYtD{aiY+jI;(;xyJ#NNQ8W5a1x9DaeA7XgYKqh7Oa;>hN?}I&7VXJXUaYk<Ww?
z{vcX2(FZT4H1TC6y&38VbTOmy+$EO8B-unqhU|0<(ov)%tD}RCJ9ISB(Udc}j<!0Q
z>1eLwT$ij8WN+8ef<D!8@l@rdB(<|%g*-deQWq<%xaNwL#X4HcR^D=%$MlsKa{&zd
zwv!av>)7yPnhQAZ)X`B#4;?*qbkdR2@vx3Zbljz*vyS_8+^?exS#$lTj(c=WAEUJ2
zqHL>}?Kno^7M^=`kUQV%lkWqR_G9Hi`uDu@-tP26x>#Pq*3T|UJ*wj|9bI)ispD~7
zEDZjzK?N>+Wv?f6p2U}B4XJh0@w6oPl#cF_DOVF6{8$;=NY$f4XLjxx9nb1`O-C;s
z&*^wx$1A!xy!8e0(m_Tq$?k5==ClUuUuOLhaWE6tXi?x-rF|$;ZykMf^wsf}j@PA}
z6!i@q(?*FU(0l>=Cgb)KVYhyJi{92jYW;Qe)A5cj7A;d$N=~V`rey$avPq!@2J0B2
zV~&owQih>AM(g-k$GbY-(=m)8r{e<#t&aEqlWGKGzL8quAWAh-`iqo5k|NR6Ln~%S
zNo2xfh^*ravePk6$0s^I*D*!McpVdTd`k5>_7^E@^=y+-%0wNL=#EheugN-=W>N%1
z0L&BRBQ>%o_bOAVFNfq1rDo>>uJYnWAEJG!V}_2II=<2Il@9J9+FY3TwT_1Sinv;g
zi=7?}va@us%WQ_qM`8&XDX=UxMwzE$zK&mY{H9}pj)gjYU})u+|CVDg$X+^D`Ci9&
zbnzIa&zSa$=z=lr*^w+3>tf{_fgg4Jq~m8DztB6Wd@iFR!cAKgO1pYndI=R_-0Ik<
zGrudA>sYO04TrXll{!|@)FZ`mwFWOVC9kEjZ>`Q*Qdp~Fy_9wx(YQNcp~B<LSd!x=
z9h-G*)$zM*Vt4l4!f9}<&}f^E?K*bJ+q(}cJEY<yNO-3Xmj9eAq)kX|kB+^xn}Kf(
z?9;KIp>Cj?fde`Yaw0Nti-AKr4s#MPaJ7LWI*xLFW@s5WrsKGdQ#wx5dh+eT2^}XH
zX*wP(u=v=__Y(X^&;NI4bez?3UdIKFVjcXa^B04mY?l8M*~&kI7oAaf@)ZBa{jK94
z+G=ePThG=LuRAU>P|Coi1}-x&=Gw}o4P0WNjDd>{@Gm5@DDyo@Swp-C8a!0v-%0)h
zC7sI+Tw&mj7O8Ruf7Vl^f2AQ_mGJ)>Dd!s~ZwLWMpOuuSf`N(#Y8$9yppt>g2C5mj
z!9W!Q*BGd3;5xG7hap*(yh-E#@#_sRgE7c`Z4v)3lMZqCf1G4*G*I0@4MV&K;B8IW
zkrLLTollF`8WfVZbq(BPprL`3fqDk&8{#j218UkL#aDd%Z%e%tL;N#kFTO@d8z?Zu
zA9>WsAH1sQW<wCCQY`tu`&I+D8E9dkrGdr<3JnAXLW!dqFb!A+Hy1#c!Wahll5m~m
z!dH~G!6OFX8t@DzZx{c{sS9cPvO8;NKq}74i1HX{VxXyk#6ZSCk%6p4<0}`+PgBsd
zM80rm0r8s|Xikl$DYr`;%Flo0Pmd_gCJNBXK(T?GfxFmhppAic2HG3g+cS?ZA=^^a
zUc#i5hp)dn(BK9-(z6EmznB+W>0E{xlPY&I#CtQwUS|Vc3_N1sQ3H1yxW~Z#1|BeQ
zuYr<xgZCNYl@~kmr52-<<%0$uGVrh=-m8!rD;Y?PjpOH)#|-gK><I&#W_Ea7!hG96
zgtZ5hu7=2xP2ed5-3<&hFo+&E(8ItJvvcnl=xN{?1FsqAW#Cx@&rz7V6<#s$ynz=C
zykv+k7dJ4kc$j)ovS!4#pPhS|M9QT2wt@fLUzN_H_0B({^)}GQKwkrI8RCcdbpvlu
zBL?a*ho0h_E?R?TXJo!@h#|?;&HW_6cNcu`N`v>8f(>A7v=PD2a<G9R1}4(!28L1w
zgWp4WRyE!;FwDRQ20oNJ4ma?=ff1BkrqSlhE>h!*BZegdbtElM%WM-e(88mnE~L+z
zF$TsO7*FeMSH{uEa+rJ~Lz)WG3#7m}pFlBY=dPNSo^0S#178@JZs0TN(9aD_p#cYq
zOxIKYv&J+c^!Z<i(uTZf!!HfYFz^)vwWHYL!MDC&OZ90+T4R>MZH6dq;$jnX49qpK
z%fN01l7aaKRvK8vxx&Cg13w%1#lW`)zBBMW^)j%C<8+I1*>171louyqPN6>-_=&xA
z{Ahr;yg0{l^5<;)tAXDPEH$u<iYwZdy7@~az$VV#L|aZ1jZ{_`;5<x%gt@X}wShGp
zl?Hw{u-3pjTAsb=?y<^xi9dCAj?^~%M{2XdU%DKrZQ*RgrSD^vcKg$;*=At7fp?ar
zcT$(Z3fG_SpbI(`6J9zy*KeNkz-;lf@P~mt9B3?O=eQedpMm`x7Y0so{x@*Yz+q1K
zoc}rD+}f1*?3kJ-I<}mx9F>%h^H)H&@~NX^N;_fTBxjz@f@9;U0`s(iGY0;qeGHs6
zaL&Ma0~Z**vO5vltVy#ZG9Q^J1L<gmd3WF1^j`ycCRlU(!E}#bJ6vR<l!@InvXp`N
z^VXS{m?&c+W1`4JSreC<XkbDyahZwBO<ZpRCay4XrHP6rDw!x}BHzSSCayM7-o&DL
zVgogK)jBHpR^aQ1*-Dw+X_l-f7phR%#5E?aHBrSBPm=evDW>{WO<~eM{p@unC^i=f
zQ)b>)GjW57+9v9lxKZNNFj14jq_pZLxEi0mNTHT&qEhTj))eEH$>r*rxXDC4Nsz9o
zFY&2$NtcEuQYIV|u8FjX0uzNMR1-IwXk_A66StX|HAjTdp#4R+m?9Dw60aAf8k=H2
z#ppQ-7rHadG!wcB%Y<#>@7X!SMAL0)lcpOho`o2Me6S&r8|UO0>U@~-O!y`u6S0ZF
z1SzZa@<S7RY#>cO8u1z9grf0*Dxs#G3s~>9O0p)Jn7GqKN784PIl1O0Zl?hyd}*%u
z@=;0)TH8ch6YWg2qC2+mG<me47JLyz`PYc;0HjZv;nFmRReMRlgNZv#@$^C=OCGUU
z^0t#Hp6GHW?vlDwjLs&yn7G%(eZ-fo_n6{|h{Kkcv=W~o?>F&)iAPL4YKoEgpoxcw
zDYfG*FVbO2?v!VTm(Px5_k@YACf>Br*TRz~x|!HvVyB6xOmsJ~*u)Peo;K0L#3U1w
zP4uJ-ObjqF(8RMQo-^^fi8o9<Z{h_LubJpYjwW6*@rsF8O>|zaaR1KBrr5>9>!Z)b
zRT!nJ9dWvE&A&{mz}wy?`j{AbDE<6W(Zn~vyxuhNmWj7b^fkHSE`P?FG*=Y#GsSt1
z@0jQ>yIiwE*}pE$j?X-uM>>N{3^wtBi4RQ-F)`G{a1-xK$_iign|P0-rd4W~Btq_G
zB(G$B`4Pm_@=1B&GKHU;N1FJ^#8?yKOpIda(z$bTA4`sW158E~hR9<$emAA5U~!G?
zCmgCvl?f)sn_%mymO{aY=Hw<a!dHkcpPKm0#6lC_n)uwr6caN|d}Cs&6y^()=Obep
zc@<@OQ8rThl2N@~`HBQ3an_K|*ODpuQtMeJX0!Y7^gNF16+-ek5+L8XoJ{zy{6KoX
zlxKknwvrktQ1b66$ui}+Wn~C2k^+1$5qSHfiJwgHsIOpn!=DM5*kEF##QD|4N(uaC
zVu=)Ksfpz#R+w1E*{nf6{afRjLcY5uz|%!ZZIy}DvdbD1Yb7vbsggP=&P82kV!f;(
zGH*AT*vybNG4ZT&$4+Gn4YgGH-NaVL+f6DjWsA#l8(s4`Pn}j*)ye0zi`L+vwh&nO
z!^9rWY!<Guu-C*s6Ws7s*1~=h2N*&o&YC!A;*g2sCQg{B>f|3bag@$onf_v3`UnT3
zo~rY=a!l5+k}t9O730R^l}?)Y)5LFU(i<D*pE7aU6l)mXjf&Ze2<J@vWg^eQMHYH*
zSI(RGhtY200!3|=`dgMf2$e8<ooJI~uk-DaQWi>ExY)ua7Wm!aYktgKsyw<~p$z;K
zQpOVR(pk?gms+^Y!sQmOuu$H@RTi$aP|iZW#JOrk`k|F+uF9Y!l$ngKCeDg<MYdY_
zu!~zkN=1OJW{v#H7AU~HhqL5zt%a%<8d^wMxX!}$7HV0jZ2=alS*T%Q4)X~QRJPX0
zzrkXDMX_6|x&^K#<vy&5rL!z+TG;+%djkFE<my<cYoWe{1{Q9T_4O=pUk?%3g`|ka
zOR>-@lTT8F38XC)SWqo!7QdCCk%h(<(qZZr3%6SMxoYLxEF2l2ILnnPZhqIH8kd4h
zo0BWF@MS0xI7E6%w_sSXEjYZEE2hP5eTrpa$fhD=pu&sC?5>@YW9eG(ENodR7W}aO
zP%kC45LtM_60iDW3yFn0EZk`!W1)z0S}3-Vwa~=EpQWlax6o9w$XiqX{ksb$v`jT)
zcRfYmb_*>m@nwqjEhX^I60s|@wT0G~7q+v|-a;D*x0U7iI?c&_&2Aw>2Mg5estXD$
zJ6h;u;Q<Q|TF6<r%fdYt?v-6STj*lpZV9s&`BH^?6|$s%pN0D^kTr>rY14xI2~!n*
zv3khD!?cElM=g*z5qRx1@*cDBxCP3*v9(K!kvj=ei>~|$u+YuIQx;yb@Un&O7M`Y0
z`456&vp3zt!n2fcfH>>6r-f%M@qvt2?=#AC7U&ehRO$r_EU#IT_o76mDPFPgD&x??
zM_TGvHILn2WBm6Pbb3j1QS3ezUYEXpgXTI_)J;!O9nyKr!rQcljk|30WB6GpYvWQI
z{Vfczu)@Mh3j-|-qJ$QvTNq5&TNrKOV+%tqylY{Eg%2#eXJHuWoUZ)7h2a)B5;+_=
zzBpKR_7P*P>{;bQ3nMLzvcv{k4#1DtJu2p$z~Ra9MVJG8jD@illWE{n3*#(&LfcxH
zz)-iughNc0ye85by_HD}q!nV(6o(r>BYtM#b6GQ0B9p}w4#4_ZUZu7b5q}y@)GEb!
z;7bcLEc|HUCktQEL>A^-SYTnMg>N`8EzFhlXIY4cHJmMJvipr^6_)elltPXagOdZf
zEVS^gg+&&=m+V;io$OAnb1hSg<xFyBdHM%gNqlzX?avl|v9QF#QVYM*zcunXb^IoI
zkuS}~vzw_M=bU90mRsUq8*eE9%T*RuTR3FlFoVIuS_|7aCs<f#VZDV-7B(~dmWlVS
z8>F-wWyyJoB5e^aOKr9AyR<(Kwm$qwmNgWNUfW?|Cue&Ldt{eg7IsUc5r?cP((vDu
zy%zRy=C^QwfwwZvNtLa`Ru<7agz3bC(#52C#KKVv7cBg3;h2Tv7S32W%kYqf{nNrJ
zX_J!{c=9z5o6c*UB0+xJJx!<dQYbL5bDSG3oM&{kOnv)@m|Y17<8M{|vG6Zr!$xTv
z{0v%ms6rd&*|>-?JUhqhzJ^)Ke6fu(Huw`@d-<2xf-*6`9;%VuWi~FiVcM{4Tw&u%
z8&z#wXQP~rd>dYk{3<re+k*AgHY(V-%Et36#23}ky_8W=@@o6yiZ&|QsBB~DA5O<g
zLN?N8*wDq-*kF0B4Mq!r>utbBLmMd@)ok2gqqdDYHm+}<+-Qqmz#6vjdv#mHHnm%L
zUa4v0uV0l~vZRCR+PI0-Y&5XZ=!$GTo5M4Y-Py#{K#Gm^M*i+|m1s=T+5Sg5ZKJ?O
zV;hAwZe|x7x7fH<(kF3J=(0xy@I5~YC*DRy2K=v5wV~TEY-qOlh)lDyiLRkwRE;rX
z+i+~$Y2!%se3yo@(Zohm8@`ReMq(pFE;b??u`PZR7uOfFK|#%Y4s)U1$}~M#B<(|Y
z6VBQwscdGWxs5h9+VcCajTSaq*`O17d9|Cjl*XiX{J|}@(b^VI1+*2Tf@Is-XfL(9
z!$t?P9@emA;FErr6=IekPGv3C(Z=fHY$sWgW@j5+Y<z0tGaGl?xW~rRHhS2&mrij~
z_u07L#(NW#lb<NOeZWRH8#SWB2Pv?PhiyD!<8d2L*m%^&V>SlGg*8Sf2L>r09THub
zkE<*3hl{>X{s))^8gZVo(cQ-P^OZkmD2M0dCgd_bZ9K!d*Tw)F&)Rs-#;Z17voXGA
z^XF~6WaDKUFW7jIb9J_u6iEM#>e*It>aPYG>AYftHRRQcX0h?6jlMSe*m&K>8#e0B
z%{?|txpHof9Vrz%-rXkkmW{Vbjo#d!W+mykb8{q4ec!Rclb{I<q*69Mu<@ad!8V52
z7;fWz8$)euIH3@En2mR7B3f*M@_2#9n${<j2fP%wTC*Hs!>wC^W?6PJ&2prTk8FHG
zrEH9{G1|sh8{=$zEW1;SF*X+GWeL1BLMgE%$+GW>Rp|*fCQ1uW;z(Jg%vMtrkL*Zx
zGF>(^_n?~k+{P3eD>yW4Otmr1#xJy6r-CnROt&%5#(W!J+L&Qu`R<0ZZG0t-Hq*v8
z>^MXD+QuDobL3dJu26*ZXGy`Dc5&y}JTg_AD}!O|R|=UfkP)(oPPDPm#<!9bG1>h)
ziAG?tjUOcCpKbgoz3`I^1G<Cq(_gDv6;oMmDE^hyY%C#{ve{*}NLE0xmvZd$?OCUS
z<qW*JxhV~^ELSmfZEUu&#l{-OOkS1s^o5PJve!D!0~^Y-`%8BeY?L*dWXXN*_ij?2
zzV|9NZDoy(9X58_*d|-I%aVPGLj)p|=`I_8$okzj_>9LrR?M=(rse7UeKz)Urgc%u
z#Q_@!Z5(pMlind4hZ&^~UUYDTvj=A$2aOyYvvJ(UB@W6sI6*_%_{RoUCH={gbJU*p
zf63d^oD*!EmGJuZN%y~%b2ggYo+2i%nd`->=JPf#*!Y`+eNl(Lb8`(FwS2OD@~`ZY
z=inj-r5q@2Q>7jJw7NWd^<J-V5%|RphW;ghvJNhF00-3^T;||%2bCODc5nr6J0$rI
z$~(AHQrPjUQqBRpv*T3`u6D5RHKl?h7Af7l$5BsK;_c+Qxr!3Gefy+}gKHfA_rY}z
zu61yOmtXT#C2}M_;p>UEL17n?s<cg3I=In6JqPt2RCiFrL0t!=Q&Tdn<)F5M?3Gz|
zsUrb0B?Z>pHdMRG!9+7fI;<r91`bkEFvY>kdz`jEDGeR4WD~Eng93?9jVRA84sLaD
zzx3B_4jMaX?%;L@g$`5)p@YbQ=0JDgIB*>plCtT*azF|t_M{}Xl$HY1$Q06Z5IFd5
zZqAqW6pym8qyVvl#6c0YaFCJIh)+p)v3vV9N)rc7C2`iTpPOqYVaiW-EgZCTkaKXC
zgH{fTN!&pP2dy2np^gsP(dlOtF0$pD`I04?e1FTA+k6jyhl4vEbaZ&+M?PQ97grPO
z3Hfz^pI|z%Z>to6&JMabxW~c0j(A_~aMdWCxKrW97wLR2eV-%N$no|5?k#D)z<<EO
zgAN{Y@UVmK4xV=Kh=WHRJnrBL+OUl{Ig#aK4){&#REy%S4xV(-VsrW_j)=LrZVp&^
z*}NR#Z(nXo_~v=J9u9gsc-Fyl49F8j&p0UkbbEdjARVG*L-Bd*d0H>b@?z6V^s<9>
z(u1!!c-6sV2cJ54%|R~*!yF7}2s!BEpr3<x9K7z}4F_*i@~b;EpO<^nk=f_2$nx(-
zUq}4ucuSVA|Ew^v4A=PecQAnC#lgD{xDjI@qhiVbHf0QQFj!WyeuxA{pDAKS9i|r9
zx~1qn2i~}L?bj>sI~d_$l!MU@K5#IlX8wl`Msg|`Cl-3~-v{4IeB|Kgb?FQH#qNfW
z9gJ}>fl=yUEQ51ij_Ll!Njdqqln9?tk+sTrM<fX(z)J3P;1at@4hVBe+h-0wcQD_<
z0<v>3m3<w|bTG}q7YqOgGZ<8>mFW&{+LY#gndg2G4+9KNZp8S?5%0cu@xRhHbhm@q
z4(4#OI%8IPpg8`#!hu1Z<}yNlPV+zAJWBG1!hc@Wg0~ADeCyy>hffRm&cPy1JJgHQ
z%WKN_4i-E3!C`(pi+{&>kq#f=e`NG>GtM~W<c&=aT#@}nnuQyDdbCX~p(J#xgVhd}
zIatnlX=V8p5`jsCC;%l~$>BLfEH7lahMroitaZ@2u3Gn2k$X^oTQS=w>t$?gaIn$A
zCI_1x>~gT%!4?Nw9c-s59Q@A6nJ13LJhvge&B4NTBC}JiA%e(G#x}Dkw9oQrFfQKs
z!@(X0`yCu`(2WVZ7#j_;wBbIfCXK)@2c@$Xk2C&i?eg$$)*NQQJ2)yO;ZMVP{tD22
zj!2|)!og|T_av>_I>qZx37nE;t&@dkID906xxpl<bByGf(O<H>FhcCbxZvP#PMbpn
z{EuYuuPpOiT=A8tEbZcA7teWk-oqs>%DDL4#S|B1U0mwob{8#NuE`X?S#@00b#Xa6
zy13FsITzQsxYk9!i}Efix~SxeRODB=JaGpVSfl4LEijW>Z@X2b+CH>DUD*{mimSM&
z#vJKOMAmessehnxUR4*@xv1fyri<%ck&wC8+sX|tKulL0g21HfEJdDYSL9pfRh=@(
zB;mDO9F-?5)OJPYx|cnXLz|~0+~lI3i`YftqCT5ks4g@Yii?IW3S8XmBISaa=b5ye
zN$k_ENLl~M`%2A!ltwOYadE4Q+gy>VoktQdg$omCH<t1jx-y%3U!~MPB2V)Dw^+Ih
z!-eO9>6%R!mJ8d3!<y+zp_gK^{Tsg&$?&N!4dO~h?C84)T#*7gbP-9K)RDJj_vW3&
z15PLz7az{cHE}_>$OTgtXI+tYxc|PQrY@SfXzt>b?>e-frF=Cn$9h%IYw4nui`R+f
zqS!@i7f-tA=Aw;@wl2E3xZ6cL7wui#>7payV`XSe>e#`>9n$i%_9!K}{X0oh-{pcT
z<XnC@6FI<nb$0RbW9<pt<KkWy54(88#eJ0D#RD$$*@{H#G$SK{z=I44NtVYeFfTDH
zA9eAVi>|IX#^P~TB#?hXT9x*p_2^S3k77oBmQT?*E?#u;l8dM5DMqP_=OwkOGxK`7
zct*lBFa7?ki+?{9fkA2MESmZS7pLD5G7x^*#j7q}qq$s>RJ`Qq1hVVpqPL4avYv+;
zFlRgQnb&>v4b9(l(bvTg7egtki?>}2bTP<9KNs(~pq2W|2&AU$!tB`<7byc6^NU2*
z_rb0>4T1HHDDq-n`gdKt=VFYDu`Y(W817=Ei;w8Uk;?mw&spgYT#Rt>%P@u4-aiXJ
zl$ESsJ}<{|l#9_cyNkP?Za?s_!kYV5ijq0c$B~zdNiHVKF5_KHa4}KBj87u3IwUYl
zdVT8Rv;Ue{Ij*mAa$at#i)kEv9%_2{!o_qBb{DH%eCc8aqmE-|vig;auU&lW;yV{J
zU3|k(cQK!Ka50;aqvg$UMcx?ZG+@#LCJ$lag1HQ^>jl6R6AN50;|f!YFss8t4vilb
z=4n~Pr{aFf_bwK@;Qmv>e4;jwRQ`eCF-P2TgY!==ex_Mm{OV$<i)9?S{Y0{h-&`<p
z#1dEJdm&j?E|*O!C8HHCwsopp;p6sfy83`f2eHP*S{G+soMR+&05Wo1{NZAQi;WBk
z7h7Fy;(*<vFy-TB8gs6)W`R;}ey;AiqTfl)#da4vSie_!V7EvMdB;(O$Q!$5ce>cc
zsb-8=L(Xz()9fA>dnp*_CC(l$_PaRf;*cw{q#lr%x!vh2)6I!*{#A6C;b*5vaNsbJ
zE9sbv<1YSmamvLB>dveSvP<pxIkxhu-l5<$9ke1%N!G2?-u+lPBX7y~FBj)I8+$14
z;ew05U0mX!jE8?XG+bQdp_GR_56r1WI!t&)9l1P@L`uubi#?R6MubP!q|17^)Wa1X
zt|Wy$>B~G^?g=${QCcFfFX^zpoF`Nu%<?J^S9`eDLsbtIWPN21RXkMmP{{+OB~y0i
zF~^%XE4*c|YdlZ}F73O{!}T7jdHhEJ+J`!_6_V*Aqq8?kfZeNmc;RH40<afvYk8>c
z;Z6@7J=F0~*F)qX_HYyNJv8<>eWAXG1|HHL3Op#14rNGrXeeRQDX|0D@nZeW9vaD}
zTRhzA;WiI67rXGHj$}&VRS%j6*MsLl_h5LiJlLK{#>-aI1JkLITHfD^<B5fW444uM
zgnbVsm4OE$FFmS+lzd$go0!Ne@sROA1v_{s@{sk=%0sb-CLWr4Xzt;5NwAs3DU;17
zCWC=}TX<+GD_O%^#wW|x9@<D<+IeXEUn^DM#n$$c)RdzNDX``aiTPP!UMCMZ4^MmO
z;o&Y1ojpA1p__*;9`5$=kcWpo+~eV15BD={JS4v;Cr66wK2Q85=f?R5B`~<I#(~T&
z?W}o3);#9naSxAr;@nSSG9kkgG(usD+v>Y|BDV%JX_Rcef1<F$*!jv+9=gkp+{4Zt
z;zZyU^`0J{@$jq%Zo22rarR}&YxA-WFL-#7!uz<($4eew_Hfw45f86;c-6xU4_|qB
z%|kB_BRqWIp*N${!$1#%JiPAV4G(X7=;z^05ASu$dnL~A%laSFT$K2hhXDgLUe|Ro
z2h3GwRj&MwhyI>OoX8ZZ(R^iqhfxw3>|qGIv&lod(aKP|pi%z24AFuLpN>{YmQw+H
z4fpWA>`vmmy{It7G`1gl80lfMhfh6xM1meZ@i5*4*^Txv#=}?-A4{@K<j9WWBvW=T
z5t0H-;7GUfCVH48o4RfmvXNs6@@F1C_b}bVmma2gnCfAgC#EJ|T%N%s$x{{y!M>2n
zQm;3s{!cK{|C(O&@YaU%n>>6&kv#n3;a3l{=?D+sGWa=CJj{~<ERb4Lu=zB#6xEua
zTPS(a2&`G;;d>81c=%D`6LZ?P9TrpZk;=8Vs6TlkCjh1TnKh#YAS^sU`;8PltoE?R
z!%`2+JglOBuPonYs_3;`ioN1LPpy;yDev2)&=G4n)p*z-E2#zZG_LnVl1a9n_%Z$Q
z@$^R8_IR4SHhb7Y0T_55_IlXoVVj5T9(Ho7^ss|tVUY5OlOiTBN<|h7hTR_ikP5ci
zEh_hLxH%~T`#l_x@FD5$gC6K;cDei}jodrW=UxvS^>EC?Ek17baoocR57+s)-p5If
zP!AXRDCOgnhtnR;b9$HYaK^(~59b&XQiZ=HYr5>wMau2-a}?|+PyO2iMwa`Rb2w+1
zQzBO|9Xcf_&htf@N-AF3$HhJ>_^9aP5+7xJl=pF!kHsHqWqmw6KX*P!UFst_TEy!z
zAD2t`ivMb^lt4LI=KCU7Fwt5t1&}X-iXNewjHpV!2;eF{uJKXX2l-MM#(=<)m{nyZ
zk*NzMgpX=I8u(Cr+~DIzA9Z}x^~G4L?xUuUT0Uy{BCc4|b8u9fl%)|Er4)dbTa^5p
zeAM$%U!uLaQ0cl^AQQpf;5PJ;lGJYYMUKa`j}K3zIcg|RfzK2fDN0DVkq<`Qno`-@
zd^Gma%;%066#7u9ua6A%^`Wz}NBh8s;luRd_;7uEHCQW=&GKQBh0KFW)hGZ1%=6*1
z@Ab`(WeQjlv)BAwNM1f-A48X<j~`EyCM%14WPLR8(bNakVK`AX;`3r`e}BFbYi{?^
z!bck)ZG9}CUb-b=uKAZ5wUQ;7Qnl7Tw`P=MQ#&8+eca*WP9Gh7JSAh8Q`4R;$_FxR
zI!eos_!skYoqVt)h0Z>@_!#Ho6CZc`xW`8~_VvXJfqNMzl+DL|KJNF$;*$q_JS3YQ
zq+eEuHwOMRrOJ#v0+0H5jGC@5|F{n>pWu=bR{p!R%o9Gk`gqdE5Q$F&))%fS>h9xd
zAMg5j&qog*J$>}{(Z|O#KA!dQf{zy^qvw2Z9S#XTFK^jbJ)^wj<7FSO`gqM3i+>ib
zD|&@aJm#>KWiJk>mMN}v;erq@Q(@)nKHl*0wvT=cyrs&UKKlB2OTt_x^zezw#Gyvb
ztrS;=yyIh_k3l~A`xqdZ?pdx-*@<TrE<_>O!PJE;Hj1StL+SBp!U*Iz%*Sy0#m7k5
z>wPKP2aHl5=MOvV%jG&;XheZOk_aFB7~^A<4+=k8s!2^dFBcy!f1RHr@v%}7>O0=Y
z1RslheD7nT>^qI_^D#-nlYM;Z<1^_Xsz1fY=TbZ}C6THBS%y}c?&C`z^L)%FGJ{#t
zpY7voA2T_S<?T0;=JPeglAE3La}=0F=;Ap(=2G#c3JpkQX)e|;@bRsWbZfD&Y9Yyn
z`GmidO+DKdbLG!sA3ylm>f?7GKl=EIvEgI2kDq<~LNp)CeEcfO{>JG-8k37~YM-i1
zM{rqAlO)T<Maz9qfEAp?&Y0v*U##Rba>OC9#>ZM88+~lzq*^G}S*`Q2-p7Xj5K7Q!
zmd!r4P*i?Cu9HvV<U)_o;M;s`_wk31JwA3wNp||!#c8=gK38PXv%9I|QiZJ9WpRV%
zdpV)`IOyY$90GNUQ~M=wfM!3CrbsLg)9H_8DGZ~XtXX-ClRpP?3$$y26P)~gbZ?5M
zo8nK}oK8tFBf)7OXM9wRab1kFKF;~@Lii#6V*GGi2e>o91s{KNnhJQfEdF7DQR@H*
zkQd;hK&*4VIzXuar2||V@W@nL9N>}wWdf89aP9QcJTAGWnyNUp0x_!`sBnIMj{D9o
zmmOJCE&yAv2r%NDa%BMSV;YoA<^R`OKEPEH?ma_n*sKtsVt`74IMMhT5)V*WwsKoy
zmH&V{CMi_|G(N6e7l41gxy6qivqvgb3vfe#1_Aes;Kl&eC6U?zk}vXVPzEyUqpbL=
zGAY*z&}F>XbH`nBbpq54aFcB1=Fs}2JVB`!;EhP^+GCl#uQUvh3UEt+TLYv69@la)
znKlYg5a8wjJGQ5}50RDJdCDW9*~FcOw~@|&0<)<w5F7nSkh}Ku07igpfF=QWTn@Ke
zngOf;+=gZc@B;(^oB%HU(y_n`(DT_0o49d|X;Q)fQGiT<q5!dMN&;NrXSwx~JK(qz
zjXN>9sguau{>Hs&<k&Po^MJ>%<H#3Evj99onw2dAv<%QTK)V2~0u%>mO|n{ES6`gS
z%oD(g!`+l^q*=snS!qUYlk7kXPZnwtfoD2*4A3dS>Huq~V1T;<3<)qaKxbMwK(7G3
z1Kb_po&a3~JQ?8L0I%<E_+WsC0^Aqi{s2rz{6GLEbKcuHm9$Ph$^E|p9trRmLxo-5
zRCuh(<Xpj{0lv=_@ayN$HsS-{69LZbO@FiAZMsqE7T~D>&j)xRKz9<PSpqy0fH?q(
z*+XLfFhg0kw}{l9WnkwDo(u5ZK#i@0ndtb%051jj>|NzmDbLFRUI}n{oT6+b(s4}@
zWqwTx*>}B5zWfB)hY=Fs%>X>Q>vdTYxo?2C0t^f=hyin~(%S*v3D7@4KUzs<R3?im
zCzT(v#k-~`17szE!2u{6RV(<b5{VG`-2m?em>%HE0K)<d5Ab1tkqo>5>x+{Q=)~e=
zgp96=3v$~=DBOP@tuOj0V77To3NV@DBEZK1J_#^Bz?cAIr6tFaV_${mN|4J-?<$08
zaF!Ef>qOc5(>aC8Qrb^x5XNMHDYBkY(b^3b<faCgCh@-r&~$<z!i&_{N?=BSuL68a
z^9J}jz{~)11I%OJ0J8$jksVicDxS?SUXY{H$%wa<hpw3)fQLaW3_ux3YJo&%4J}55
zMGOGiIlymp*1O8$06!8lzz<T45>mwcIlwOgYVS`IE)k4PO9CtnuspyDsmrnewZ2k{
zk5ncCRahBdm8>VPnHv>0k$$f|>9qmY1t=flsu1e~YzS~Dz+uK!fK43r0d@x19AHa;
zt&9yREoYbkw^U&FZSt05q@F9HXge`CyVP-4fZYN11=t_pj{ti(M)sr`;cOzXHvlnd
z6T%erK!Ah)8G)iQhDrHIfTNtH1N<A{Sb*aJ&IULa;6#9v0Zs)tEh9XAxad!5hj~Z%
zhQU1}qxb4_O3}eGB*n_AdzHTe{4MF9=TsAbt*qolE|iC{kr(2k5M@JL8lqH)(jnMd
zCd9=dE(ygrA|^)!zh83{?E9sN!OTd$EX3s@t_)Ew6yx`bP>hk2QL5gKG)+OlIPUU8
zbQ>WK2%~qd4pAXQ{SXa8R18rmM2!$NLsSk?CB$_ht`Bid2&#WA1qj7CM--LR*p~#w
zC=O9A#0?>C48>}V(*raPQV!b^qg4+<<d5zw;3tn-A!>)H6QVAOpH$kMNK*wO-$YIM
zdh-*7F~EUePqO2!5~5*<#vuwrq(a=+J@4iajY2N?M1jO1<tBB~w7@N)7+kl8xJ_!!
zzPzP)q((pup@pzQ*dg=~1}PjaGDA=*nuy3ONyOckCg6l{LoqROAUqWpo<LbzF9;Ea
zxI4l<5u%X$(XcAS>JUkYOo+ZA-U?9^@@pm@2=QQuCLx-JxHCk@5Y0j~579bAn-I5$
zVo$WO!e|wuMTnME<OA_b!HwjOlPV5H-h<VX#a3nRly4iN9r4MckFx7zrQH{bI`GM%
zw{k}a?!<qrYnENEtFLtmkqgm<;)Uq*bRK`K?+Vd5#OO)NL?yr92TG>}xqCv~8)ADs
z?S3f$x5;-Lq}&&Z90J@TO`6Ak=<ra8heJFU;`tDdgm^T>Qz5#Ccr3)@A-dAAA)cT+
z1}ldri(dTo^kypdDy3T}5)M!p{+ROi=@30aoS&#X8;afcJ*l{pdPYjlZR7l9<eqNw
z^=2tAgm^JTuMoW@{!1ZV4)IFJ1G)0w<IF!uc{RjqtZbSs+2~D<OlLs~eL}oJ1q<^C
zzfSwVsXVyReUm1AzA0@>b>0rqFT~Uk(?YxxqJM~wLyQSAAjH5BBSL%-Vo->|A>Iw~
zUMNmN91>zE%{X4kYnI~e!V^M(hrR5u5W_>fPlCM_o)y@AL5^zj2tqRYFvLiT!C_Kg
z`zRET5Th7ls}$OtaFfXj(YW!PnvM-IF2tk|lcg6v2{Asz1c}TgNx9bwY0rriZ$Ym2
zi8LMkX^78AFvJu(rN4NzxVFDSGt!<kEQMr_f-gc$53w-Bw^V$i`(=o)L(HTxPo!s%
ze%s_LDf3xoeh4uu#M}_`Ld*^^C&ad+g`Jj{zi54$wtA^m(rSc=f%(!$3uurDLU`6t
z{_jF8;v5p<w-DclSRCTV5I=DctuXFflKw#kXUBbM-cDSQ`&s(&7pWILLVqz@mV{Uu
zVp)jgEO#|zG?Mt;^-=mjdIhJo1L>8rWNgrGyj>GwE$5R6H%3^;$)8e@Y={jZHikG5
z;vi?C5Sv5npyNVp39*${<tVfA`1HjrAHP$<P~`F87Jk+=TPYsQ2Km`tA$Er%mB;>2
z<O=vB#GVj)CCsD>v?`JJG2l;#_+(k}lI%tGwL>8eb7l+iXNV&V=@7>$$xP+n!hE6~
zlLX0#W46wx$_WPW6fvStg*YAJtQ=y@+HoetckhUd0UVX&b&hoIs!T~p;X;VNIcZ0@
zA`;m}{-HG@TpZzF4yy=DCMg$1A`L>R2=v#zgES7h*Jdb}M4(b-BU~zhGO{d5>p`(e
z_OeK1#vrdNBb19!CBiik@*|XwP%%QK2v<e8Izoj=BxY&mrPzf*NSGHRkkVF;#QeaR
zXG#b1W&O1gu8VMegsQR^vp293kw^hiEfV9A{-ur-Z2p2=^@ytq5l2WO)QnIo!mSZ*
zi%>g4od`;Vh7syUxG6$?$%uW)Ztr-d9uYnjDKZ+6*Lx!02o05rkdAP3ghmm_q976z
z=}U2ntl4XIJyCf}gkD_>=<b8lmBtYYBiIp~2x<f^5~)#40`)aLf+5YtJQ$Rp=`Tou
z;c7)<_>+zs!Q(tHrSc`CAVNsHU6Q3Wh(ISYRM@vfj7)^02*nXvN61EK5}|p7+ocxI
z@`pfLdrF&Bvq=06;fNr+77<!XcT-IokYy`bvZ+mkwh=l<BF5U0dxVY=I!R$VM7Sfu
zoh*losAkkr2Euu>l$>-oWA82rFhLD9<$TyB0`u_DjEtFkBit8ZX@q4F?vL<5g!dzi
zi11*9ha$Wh;k5`4M|dPcj|e>@JR0G#2wfvQ8R2nO9;@_llK(^`wrRY2q4JW#JZ|gg
z7U8J~Pe)==-_h#%-D$&9ViU)2r^T5>VW}$1Mk~)mcs9Zd5nhb&97DP=j|bU2AAu!X
zd6n!6c`3rnk_$-@=aon-t02tHAiW~=j_`Jbe)MC6*CV`1b4gNfP{KLNzYQx8vxE-!
ziEtCjTarF0yc3~6!!^R-2m>OVFU%V#rR{dC61xzAyoN*=8ev$3;StyH<2}i`-y6#M
z1vwJu%WbMmG$NOgj6R5%#spuJMTC(NK8i3g!lVeJI0_<s5@CFVk0Xqcvi&x>96OG>
zs9<b_ak7RhKe+{l+&^zzf%33*LWEaN6tZSA-4|h6gfAj|7J+@IM3@?ZpISbTu=_i4
zv=C*ed$jWM!n_jsr$?9(;j0K=azGue%t{h})hgg&va~Su`X<6GY7}8{gxL}1L|7Q%
zTd8Bu#`$w2%!@ETLU6p&0%;j`r`A-Tf_+C}HkV(->8N3aLDFKh16zNH@MDBuDPe@4
zWUpTs(nFM=8C|1AK6(0r=NML(JAmkp1NHKkPz&j@<($wWoQ-fU!paD%BJ7Q@FT!dD
zd4%61Y>Tj#lYfNG5!V1<eS{4h4iO(dLER}88I{<LCE*{hEWb4Z!;ekWf)*gh?Gbj+
zViEp`urtCgdjD7@*7Kq_88$@TBV}gy5=%04_eVHD)?<}ZQmKO^8{t@lLlF*Bw!z8~
z%6VJUKlulWt2lNm$0MAGz%z_aa-P{O1Up?O%UfQ5M%Z7YxxTvSbc8b;HT{^BBgI5Z
z1pZ<iMz}2I|6E*%@Hgl77^PzTBhiTPFWn(?p|fvZjOvL<{$D!A#YF3;l#OwT1PE83
z+ks`77;~4U3Gli!7V;CgBF2?5u8vV5MpnsZO}QBP60>}at0V=A#4mSjYI;XO#Tb=h
zRE|+4MhTHB*JU66HGNGCUe`*p#3wSZD;M$zCm_cDSgbgz7UPB(n__H^aU%te@r|sn
z5u;|z(_QgUj9M{j$B1JjG3vyq8{@VZjbq#tqh5@LF;cS2vti5nF&e~BVsxD(-V~93
zyt{~SS|T)xaZ8MX7&ph_tTeXvzpVo2KrSudABqOkm0OASslx0ug)!6^ZVWGm7DJC=
z#4uy@s{g-JGI=(r6~m6jTAi1xU48h7ILYzdVTu!rrA-95M#7H~#0X>X+^c>Il;(G3
zuh~}=NlEx!hRdQdF^Xcej?sp8j?pB>?J-)!Xd0tgEFKHf6UsHG7@uAITf4kV-c=5~
zuiQIQX<hT`mNA}~sT9X(6^lQfT=>C%D_j!86W`j#Xcr?F<E|L(C9gYUbd1p<#vStZ
zp#}MT)xU3?cuwmSV@@K1pGPO~wsVXwG46|Te~i0h+(R?A6X#L#db~-B=eXTVAN{Gc
zI#KvQ3~rR>VlDph`RQx1Y5L(9kHlQ_kHOS8#$z#Fit#e(e5^bkqi2j~C^HGhc#^Wc
zp>&g0r6dggr=(!y(p>^i$LJw}W`;Pa^Vt~BQO&-}v(xjQm-R2ic##53Qn<9{NF$53
zed{ZQXLi35<5kwvDKWb5O1~DPcZ@#tS}gwlF!LKr66DENEcx^IW{kcu-j2~P##@ZB
zg*p0;3c3q(gx{fGnr8>Z;?vK7wADWrpZEzhTag|}2dzkR?ah!FLt{*gF)7BoG2V;u
zQH)VBhQ$~j<AWF<#&}=K%tN$CNMOhp;tLd4eeiE%mx@__ksld@uY(Bid1-Wvk7JCH
zn6oyzV`H3rr}X$36Ji|e+J2lYKZ(WnQ{Hxz0{8epe8!s0${15(OpWoG>`om&m+{G;
zAuie(us%Ia)=!Ul7zDmx^tLMQIZTAXj2PU)&+F?LUrCrN!AfdoN;?ytCHu~1z;GUj
zF)zliF@B3NKgNO>OJ`R6p5A|@>B1P_#`un-ep#AH!}v~>s{$6$AVb7=vA$|*af}}r
zneQk+N`gO2_$N*^^%7Q6=3itze+8D1Y>bt>jj=4oaybxIkpBMkQwwt(6qKC)BBRwY
z*2GvJV?!+dQLdE~)-mdai6<QGw8_UOx_e_R)^ssin3#^YTViaDv6r(}yS(4&0@-VK
zjO{UYNW1Nd!C|uUusF|UCuJBdyhf%i)YKoG*)}VC<X~qiC&FAkyN@IHCvm##ffxs4
z9Ex$611iDY368`#%9$!bD#5WB$2q|!D3{;_{ma=q#=kMRjP}o%iQjQ17Hg7E$(m(t
z+|o=P7ULXanA6>tVprpNahrc37CTsZ8!lD;mN0Km^jF?nuH+>so#5gG7bPf_2+GTn
zd~R|i@+Aq%B)BZW<q4BKS16m{(gXt*=GvT9$VjYkZkf6w!LEa4p4_07&?k_epnQTG
z65N>JssvXjxF*512`VJ0n4oeZ1g?~Tn508SB*+c0tgMotS;H)8R!wkS0!U2m^d#E#
ziP$7dKrEUi&6_LKHbk!b>IrHjs3$RNO5tlKsFR>pf^HqM6q4%HO~l?$uEf5Hn)X(>
z5tUq6Pmc9v#|8-$2~Z?frV|t-C`yn`aC3r239JNmf?E>Ynm|pUCHSFd-famQa{V@S
zd|hdrh+VhrJLJWd)AT%@mJCxy0y9AqH0Ofn)kBpEd(x!u7%3-#n;>MD1l;B7N#uYW
zwUnRWr7i`evxFOIzs!phBneXnr80@wrb>NDfuzWhjG829nxIXBwzOM<=2DVY32v7F
znYNH}k{ab~nSdQ>1X3<e&|2zCB5ZA!puOypOVB~u_Ra(y6Wo!22(%dEgd97`TascW
zZ|_RbSrXx)38YMe+>_wm1j7;xPjFv?`x88u;Q0g(Bs^vXPbKJ{;GqN$C+JG=CwL^m
zqX`~Q@I)fkqCX~WSbv&Qahllw%YDH#4uKhgFl@I3y|{U^m)LWCZD9ohPbYYWo()nx
zq#0S$Qv!@1_I)-H+p&L3@?S{sVuF5*4ca!r%L(2{@MeNn61+;933?~uc!k#zv8djV
zTeF!dw-1FJsxjDl{#HcbbxONK2-8=J@fMx3Tx{ZI$G2tF5oQgq{s{&p7|dakU?8o^
zV}Az-%v%nX8IoYAM1EItq|wNZTf*N<FltHOkcu7H{rv<Z5{y4l^l5?*5`36oY=UtK
zMlt{re4JnmkrT1;d9(~aTIQbO6fedbw>%f^5#xyECnS<!LV}5O?x8YNZT!L<dre9(
zS&jmtQFxX->0rib<+B8zCzv7~I*s)CVKGQemF2>lHL5UgVUE{yj^8ChqpygWV0RXO
zWHB?rHwlW1(7Fh-63kA}KZ5}oJ}qD_C$S9D8O%#CpI<5yoJp`C!NLTaIieGMo8Y?y
zOA{<huqeUz^g@DP5-euuCSw1{kBP|T#oS8VoWlG|toezi_+0?JeogROA`+)FjW+j~
zux1IJyD80FTgwxyNU%1+x&$i|tV+<XYUS05NG3*tEE}GwOoD3|bpr(DuhZK41e<7|
zM%so18xygag$by+cYydrAd9UDeowGJ!GQ$Z5^PVfC&AtXI}&lAz)sGDjFV07D@%%Y
z%bGt*s0|Ps5Lijd+$r<e`=$3KnA$UsLQ<)N4B7-oIn^gPoS<x+A8jswgmx$vd7ns@
zN*(9qFA4t1$dLwNJ+tDoB+e;mD8k&!b2h;_&ea)|%iymB=Q*)wa7hLi68xRu-voIX
zk$vkQPRKH;7h!JaxhR8D8BoE}8DVXvu_E_H4YGvA{-6xXW^h>smuE!!sY$!@xx44m
z43lkUX~ruuB0U;2gV8C>QbjmFgYp?%n?cnKuFBx*3@T+%nIRz)dQ<TV8C1*&vy&sW
zBbO=}Fpt(X8Ie$n@-XWZ1-mYT>ocgGL7fbcLA4BOWKc7M8#2N;H)e#*X;R8iJtIPe
zKnXSWB|<GpjWu;MxG94M87LWXrU3KT)ytrM227<+3e2X(lK4!d#{EzYN%qSeMJmYP
zW~!D!n+zIda7zYm23`iYW^h{uP6pfy+&F{649pCAbjtSKs;C*T)HBc|(4$3)x4ev!
zTZv<3VE?~cipQjUeg;7X*$kRwK;$rkID;g^w~pCJ){qEUWHPu>PZd#sQ$<Bx3Rub8
zrWrKLpm_$jOMKR_o`*TM$e?A0c`Z;Z*}aft*DlPli5&^^BHT8Eb`(Ct-1}&sL5B<;
z$l$>Y?#STI%>Oa<9Z*sf-`7jdOHOi85f#~<nT^1bS<-a(On1-pBv1wrBuWrOKoAr#
zBa%Ua0!oscL_j2Gi3$=V2PG*%5G2TV`|WT3=R2p*J-1%JdiCnntD4@~=_<VHMF%fl
z@uH0vaWC3>!KT?M8f10)*0*^wjkNRPk19rcX@#Vtkk=A@<c?vT5)RO}u3mKWqNf+V
zyr75O<<{%8+&-1X9$tRWlT6FB-`k5fSoGpeFMs%v+($IoH19GL{Sx+bm5Bqq80f`t
zFGhIrwikoE7~;iHy2^2^Q|2AfrvtQ>8-#bgcu(TP;h=n2!aj}DnfJZ;fZ5{3ry~E*
zi;slRL;B_fUj{vQi0S!AFFq4%G@cul(O!)4qM(XGD#mhhd9jmu>&19ZKrfbgvD}M^
zUQF_0ju&&inC!(DUQF|1I<x(H!6{x$^@69*^TUX525}ANTK%Qh`2?Kd#Z2D1>iNox
zuZAhS%UiR&n9YH>uYT=yp0B<UBw<Agt8#Y~FXnr($cx2ZeCx#m&dR;c^Wj1-`1wvF
z{EXl;Ov!!966SWm&Eis~;$CML4)VH<lUI1L(u*Ix*x<z~+V^5D7kSRIy~=7YzNdZp
zbjy7ZTH|$&RpQ6`4_@apdOc^{Ql}L@cahAfRDPouo4nY{CB=))UTk3kbC;M86h80q
zgQ>@T=kbisDp#IO-tNT?=^87R*_*`A%H3?#iwj;{^x`Kk_Ih!Y)0WwCx7<E2erCdW
zvEPdW9G8=g4|;LPi%thUy!Z)DbRIhyLoJoPJ0gMN?()BKrr%dc<{k4K_u_;Xr@c7i
z#cxbGE`Tj@$_w|hBz~0hnVIjSF)Z}(tQY6J&a>Hh&QpG|wqK!pw8LYSXzG#|zjLI#
z_?P~3Y4zeSFK&2o#fz(48y_iudU4I`?0ItC>pV<yxakrfR>?VJwPnz6dhxdxcf7cj
z7}MKauH|9geW%=AFaF_LTGw4=wDb6JPjZHKPTp1@c=3>$s*?|oxWIbxpBGQK61LDd
z5X=h7lT?uBQJr)mVegvP)}{>g<&#?Z1q%pjVJFQBt0<zPj*4s*MO742@r;URRTNiI
zLPbT@=~S|ck}AroD5pC6<djk|nTOj7FRfzz0S|?g&{}!b`E#QJTi@$E3wa)uqma2*
zNkwH9Pf5FcIH@Y6iV6tfpQu!OT6G?n`Q$^ltEqTSMNJhcDyoal^D17T8~dD;dy!s!
zpu8kKt)V(^WV1T|k6%QyNfZ?>6{#xHRJcXQBNjM<_czA*SWBIB6&WI|r8*NZQ!q=A
zO;AFcylShsV%X)vjq9qYr=q!v7E-IeiiRp0sc1kvptL{f;Se`gv4A^&s%T30-dCDP
z(<J;Bg)Q=GrlRj&N4cd6uL?^=fL&Ihsqm@rt6&o5YU;un$p=j}X0O3eTrbEhHB}I)
z)8ve@<dDke=b-BR6~HZe!YU#vbPYZYQ57*2r&OF)(Mm;Y71LFGsp4f7uc#QT;vE%j
zRK!*ERMAUCTNUk8bXL(tMSB&ms_3ZVH4gXZ%EC(JI|$)MA74JD?YXOVQgPsb!e2si
zPn%|ZF-isB9__(a>bkqB=&s^*kx)npG2_0<&23n>w~9AZ3{Wvp6#A%mQ!Mv8;OVP^
z$gNt~Vm}pcso>5e{RK(b5bwUNVvy==kU~#bTyanNY`-!@#ZVO^nRP1ORq>w6FQ)LJ
zieV~-Gqwkn5gZGy5|5lJG){lsXH1qV+@<6r6(6hkRCPZ0=_>a#`9$0ZysA<2p*NX0
zO2y|YCNS(OMynX3Vx07pyOHd=?qLwdN)?(NFLGL@sY#q5DyFEIDn2}}lf+$3zEGXL
zO}G~ab*kSl$K6q;si1}L4=7)$+>;GIs@R}nrixiAmZ(^&;%gP(sF<r_p2}^6lV(e}
zcBLfGQNh;3X&NIiU&XgfJQWKis_Z5^PR|+eMXIxx$YKutQyTXwVcaNRree8@@A+Ua
zp07}`iYYCgtYo$~bK<}*aGMdDS}iu|@LCn?RQ$ln&QR}HxK{~Ht=p?c`X;eR&Xm}w
zVv~yfOb->CRcukQTg4s~TUBhM!|da5g_*Ej#SR%q_I>*y&rbF<)!;26V?qahQn6P&
z-$%!WE6j?j5^DB^aXzTxkcwYb9Hr%l<$qRjSj7>}0tqj(f~M#&t5BJ{^c+)hT*YtV
zIi1YSu@j8vra0Z^aGd0%p5$UY&!{-dMMmR4$#G7_c@=pz<kN6L#YGi=tGJ`$5(C9m
zLdBmd{!pF$SgvrYs?P2!msM~h9ol5FvH1F;#@9Hnd&Ri#(_boXsAySOyQSi$vnXjF
zHPg8F9k&Kz)3-S*`57H-$-duJ@sG*_K=DMyJ+7iE9!kIdRh`Xn9;o2{LTp0M%;sh?
z++*hvXK}#&SVo*}vE3vM-0dfi=IC4e{m2M~UQv=?LjeutG?drCe>D`+P+UU^4TUun
z(NI+5Pc@S126rFgbZ9<Y8IhS?Ohe0v&E}Fdl+;j4Lun0<9+acoJlBuSm7zhNW)iW>
zYECFPSgg*hsGy;uhN>E#)=)`9WepqR<-xX&HhwDizZ|ia<O~9<bKf5Jh1H+Y@T`Vv
z8lKafU46LO&WT%2XKA*&bmw`Ivq!m`3)Rr@k~q*%Lro1S8tQ1s)}Ux`X-L(OropW_
z8$fw9a2?~mJ+#K%khmbEYsk=$sUeFUf243?a$}<DXPpJDmb69X+KiHHbw#YJp`M2N
z(oM#PgxT0Y1D#~?Oub}xTdk3X#u}Pv$YI<xcr`SoDGi+9Eg1G}XRO(m=9-h$%r_<~
zh3va3z2L@8%ukJ$Wm_=621CPJ8v1K6HCP(jX=tw@pdqO7H)d=Qw&pDUQ4KK-Aq`<#
z9<4+K`7sxgud4W6Q!5QGYj{ONYq`ZoxZJOIsN6>5fnVTLS?>2pd@Rf_k0`Hd=%C>Z
z4Sh6pWJYP|rlC8Phbx`vA^Wvg>8zm(9XR3{V!Qdq{qXiSdDf<Qn@#c8HT2NXlP=v?
zDC{L_<a`ulv9}c8Y3A;~Dc)CHdXpo_bG5iDi{^Z@$BSQ!4bU)9!!ixaHN351kcQD3
z#%LI<;T;X{YxqFJ5Dh~$9zCh$c$44N@ScX@8b)Z&UJWI$d4_4Y(^2DRE+1%FyxTsN
zBrQw(P{T(W_YT5m8a~$WiH1*^Dn+!(&D=!lup(=b^F*Fe8a`((WjXS$_Z(rgZ)~iF
zaT;c8n4@95h6x&`X_&5IqJ~KtzR)m5EDTJ~W}}nY98WgftI+0D4Y_WxNa2?nzS1yD
z!`B*SNR^6r)tR)jDNcu}&mx;+m2ae*^pL{28vZ`2E?`z`n5SXBhHo`=?iJ(n57kI$
zd69<2VsMFcjU913Y3Am4aZC9nj}%vESgGMBCV+-j90=yKhRyu`he@kpy@nq(tkJNR
z)Bl?12eC$H)=7~PcH#UDm8QrmKPtC@>qDI~<Qqj{$)@-g&G}Pen}+RN5bmm5rSBZ9
z9h^rRwpA{_Tf;8VVW-+<yV+~%?-2<Ji~BU}*KmxpSi=Dg2Q~c6<k4_Q1FbQEbK}fW
zX7$4we${YP!x6DSAqVSJiovGY_o>I#6B>Tga8~Yeh)-%brQx(hgKg1=Gn{4e2+B_V
z^|^9R!+Gh{1@S*uhyMSr;SVOi4_$q@tl^4=jXE~zxXOu1xsI+nu50*{i;@mS$6p$M
z(uQOmC3W1?aEq&`hQ}Iia~w6?*YGbBRf9fExvSwH&YBMt%aeRh$jHMgkI<ro8%n(U
zQuYJJ?VEZJMVVWakh9i*8lG^m(otAPl8!t&^6AL0BUd4>j`c@8Jk2)Oi06n>Ku19x
zcgkwqa>P02b(*J$?wBpAqnOkRWhNKbQ94yCp@W3`gf!cx%(|oyOHr=lDIHaGl#yEH
zbyUz%RtFo}!%tPg-@;l&9nbw;u9A+*I+h$(+`F7!uv7Gk`>XJ4^r|{u(D9;<r*%A|
z<NJ#Fp4aiLj%uu^qq+{NmD=Vg=T@h;^qJLp(S8jb!!MVl@Fm@eSo@I*&(EzX{*S8b
zcIj~IXs)A$4v&sh9ho|^bfoD>=jfbrlxh5QT7wMTIqQ~948B~lmX6vw8t7=KqmGVj
z9rbk77lqHhsaIEwQ<-&htIvH<p7C#_qp^-09ZjXDO>~rUm!Xr48yjlIyH}is=qiP*
z-cpBGM@&a69jXqE|54Ck>fk`=(rdpCpE$`{96MH_DN9E{hpi)|BdCM7=mT%D37QQv
zyH2PP9Z~U?2kbH+&Y1F4!S$_L>v&m5TOI9myrQFxj=0$8puD|2PR;*nXv{8JYp>%~
z9k1!=q@#oAa9BI)pz~~qW5Gls?<|ts)=$6f>!zc-j!$)r)bYBG9@2|<boA8GO9uyQ
zkdEFu-q6us#{eCDboABHPsdw2wqEp{+Z3m%H+6h;*z@>nCqy&OE9ALjI#9>k9JTZY
zzSfSD4@7yeIKZYk^h0zE)$y*5_c%aoTE{R>x}Y{f$A$h$!xPTaZH_X#@F5%0@d*=e
zb3EUQeC!vEd@Na%{jNcq)cj1xC>>*TjMecud$d5=Ri@RQRvHgS9<4jy(#(4!HcrQQ
z9rJX|*D*oIL>;qqe9a&j?nydk=$NTvGW}Vge4%6aPUYtV>J%MQb&&9yCS<zcm$WH_
z%DmO>rR*i+vboXC_luNoI2{g`oTFo|j@devk5qVZvzpQM-8{sQ3bP{aZ*?r-4AQYi
z$3mU^X1f>ZSghl5Rx;bA{t}%#X}ec5c@`*31((s3kQIWIuhg+h_;-TzghF~!ewVUV
z$2uK9GO)v(lM~tc4?5ca)M~vT2_+kJo@1L#QfqU3vyLrXh<wQF!&a^mI?m`gt7E&4
z9rV+i%s;Vr>e!{@7afNg94;C<_UkyHgI~G)q+_4%Ebn^-^Nn!6qG8cgaZtx021<9%
z$mSEp)YB^eK;~CK{ECTqM8~f>j_WwV1Xz~us1E*nl;6D^<KW&`sK5sU%70^G4_8hx
zA&+IB)Sdqpk(?I7FBWL<oR0JC4qIUg>9|OJ9e?V$q~muTf9SZJaIBX6hvkYCuX0V3
z?+wmgD@byUy?9<D`Af$Q9k-=X{wwFEj$69(z(XJSPZ<(^-0%yZzbRa*+@b%W#{81x
zo{sxWT@Ip-e|0?I6y6+v$kpsoITCJA%z%*azo>i|<5vOyF_`0(C!&z#b4>Nw9PjX(
zn$L&)K4ke&%ZCC!6!f8r5AdOo4~2aw<wI#7iuh2}hh(1<mSR3|^I?9yP~7J{XMVIf
zUcv|dkM*^1V@B`N%c&(r&PL1loH454Lq#9T`cTe?@;-3uT|Rs==IlGIRT7=bK5V?N
z@S^Z3pYwQ@`=w1)AD;H%C3@?_Gd?`)!wWv=dozCNRLzIye5g(jA36Vv<X4ewi~c<C
z1AU|A7k#K9#&bi#2&DL+h;QjM;)C0VG*O_d9v@QW7Q@9SPf8eh657m=7WoXE>2orH
zUyIfDp^guh4*?&teW>e$>VxJ(Js;}((8PxvpYsJ*10Ndt(8$N1qr2%?V;>l8K0<eD
z<|bjXHI>$z`_RJY?1I%S7xyYHMee1Ccgj(X9i$tK42|eM_<ZpDod1n74wM@*D5lTZ
zos1KK%5zV6f<D+jyzIj(K7@SEmvRvwqC&zP-#g_fVcnPyt)+KtrIn9w)M^xxv!OOV
z#F-Tnl-GP{>q9$Hd)0^bKIhqf#^yNlmMO$M>>#)3Oh+NKaOqmXPCj&&Ua<J}0Z%s{
zy8E0TboKP%bs;^N644|ct3)BM`@xpIeCX}N8*-Q1mQvWqhhdeCzJlD?=c%~&Eg$;(
z@UDsXObqa0AiHTgX5W@tgA9ic@?kJz?!yqGA4B~7sXyNJ;f4=4eRz-7eAwl~ZpP4u
z5k72Y{(qA4z7HSxFwTeZK71&WPki{)hmV9);bS55ucVAjNJjbanGcjxNQKWuK00xC
zj1OZI{N$CC2|i5pVIGx5ILU`;K1>%r*@rI@np1q3n&9<q56yn*!%QD$iSR2QW+d+B
zs(sC=Ck}ig^4WrO1XqYxw2<HSeCxvk5w7uJp^zm$EETfIhs8pUr8>>=S|-I6J}ehP
z$;~S%D}}G(m<n0VRJT3f3;(Wzk2-g@X0MgvIv;-UVZHDTf<FpUC*AgJ6uv1T8C6@^
zB7AE?vdxF>KJ1VIUH@;Dog6iGL_$Fedwe+J!>>O4B>H<3we|_w@52Eh2L%r$?*1&~
z7s11V4=>iHwWGqX_;AdJ<3615;Wr=7_;A*TlX8nXr+qk;;JG=#VLd03%L(~;aq@x>
z7lmB%;ddeDI_5jpG2b7YK@*eM3nnKG^18~UM(SQqSol-OUxEz#Egx=kZu;@EAAj@Z
zUmr63$n@i`5C3pE^`nv>_qfP#W%i?}-$~$qeR#~3Q!G3Xd?@%xMv4kgxNeJPVL$Q+
zDImyOdHu+j;Q9UB!Yh?RUIqOql#tV_+&n4fM{yCB^`nH4Qi92XB?Z}Nu7%Qml<|Z4
z&+567a(<K-9TqDHQ7U*U`|*??&-?L$A5}zHO%Q%m74o#;vwl1ygmrV%l@^{8N%e$0
z`Ksgji+<GfBSnNY{CG*o|J7CeNEL}o&@Jc@WZfFJCrx;ILb4&lljTP(KbrWFBf{E#
z)c2!-A9WHs*+S|H){`#N6t9MUG)m~?2BEPZxig}vAI<y-_z@I^=6?8uwD6;)AKpYQ
zl|(v4Ynljk!L0@B`-K>SyleVlk=vgCn{l=uk;L7Qkg#BGD58GEq}WQ(nP}qkD}J>1
z<5fS}h@8T>A8m!VOGwz44#GS8(Z!FB3HfV6I{A?sy{>+A^W#lF`iZ=|U@t#j_oIjK
zo`M|5|BHWbk-Q<;N3gHoS!U_RTYmKSW3UJZ2$GMLTLb-gTO?E)BqX;=Zs>+`zW8z9
zk9Yle&yQh#4EJM&A1nPB;m7-ajP_%U)cU}WQ9?cx{3zFyAD;;M)Q^!u*vgQluFr&%
zu*mCkDY7GD{TS!Raw(4YV}c)F`7y(fiGED-V`{>}WFb=ozer>Srvpt*^JBUnUnVqj
zClrTirXREXxcH7UL%;Up8$agxF<;d9K|tYb;d62&e%uT;r|?@TE)rZISbS{xg?@au
zInKL_{a7NxrG6|ELgAhVjcRpqlkj>w<XJ^!KX&`E$B)&1eDBA$gytF{8~s@8$2vcL
zNXR$%u|C0n^n;U#rgA^FHi>+*;Fg5W*2Kte7s(F6or2Z<*yTs=)c(njy(0YGk9~gZ
z_v5S-Y5ahY!+so0NDle&bAtcE;4idq&dfUE$FF`I75NE2e)Hp4Lg%<2i>o@lKADi5
z7II4Pc6W=n&d}!dIwa>3I_Lekkl+`ET=L_;sV%7UhZHaSamA0Teq8h8j!3R^nH6%&
zkH3Ua`G((lq9C~`5|{gb>+o$U{_RJpn@*<PP3ZrV(Erzu2Y$p2v^DV1k4Ib;4OBPq
zm~L>rHBiC86RDNgKt981BFR7=A>{m!&2ON9fnp*lD408a3MF(33n?O4)Zk_>PG0dU
zZlHvLWCJDTR+)r;DFda2cahKTvck(5$el8eM>Vb}l4k@f3DR0+Ax{ZbF#rQqg+Fcl
zZ#{f>!T;vkvj(aqYNbopo;Og-Ky3pr7<kb@4FfM3NK5F{G@vASiUAtT_1`7LE$A_j
zDx}|w|9cinH;|Fg%ruZCoYRnX>lny35Hw&Ls4Md323i=XXP~|m8yILRgzIWU!+DHp
zB-mK6iC~W4y`)CXjQ=fwG~SY(HDF0yRglg3g=hx!gv2N0+>H8$5K}NWf2bcYxNGJA
z@+V~Q$LfgCH}O20u<){hnDADDtp#&GJ6;jqCikw?qRn<vd{eN!fmaQ55Z=*1R|DOI
zzh<D5kj{c#1W&)8pVhk?c-_DoB4M$If!@M<CM3O>9+Ln6_hi*aZuJ#pWcnF+%Rv8x
z{y+l*65K0JzHK0PbOsxE$G{K+LzxEhH^RFH-ZOC0z$pX63=B80+`tM0BMiK6V2XjM
z20k$Gp@Fdm#u@m?z{dtYHTZRn^VY^EhVz;L&pRgP#`_Jje4iQ457$Q<7-e8~8}H|W
zmzFBzV+>5#;`|z%IG$YUPBJjjK$qHX{(k<!XyrfdH#Jt7%t4u>d|^002^ccL`IW*n
z1Jh~Bz#Ic#8u-e<OarqF%rG$M8|TPr{v3jqE4J1C>ZN^cU{M7R-|72?(`}NA8~fA3
zTm$nAEaWW%^9_7!U;(@QuTsB;##aJ|+;HA^rUhm;-;!8tV5!_)BFI}jl!3U6x&56(
zRvK7kV7q}G2EH?}+Q1J6)*JZVz#0SV3~*NgzG`v%X!csed9{;o1+rgslADwKXkdeZ
zEe5t4*l1u`$i0cZ=<RhjR4J{IY&M)NE=h{*YsJ^fwlO{%ofj7PJN%uzW#AXuG_c#i
z9s~Og9AFA9QGQ}1=PG+8{w(g>9N%Yv$W9%k!d9hMM)uDJ4oQoApONi)zHd(95d*&(
zIA-9ufujbv@!GxboKWz1_tW!~={r0pxB~EvD(2yj&il4}frT$`o;GlX>!*Pv6K4&a
zGjPqobpz)OTrl_x5L{(^`Xya7@VkLOn0R|Vmke-ELPp!!Nlb>AuLAKUAfBtvH@v<d
zp>(_GwEL%lzYN?laM!>ME(M139`WA>ZW-{O_T1(oP{%zx)5rhvGNg3ui@T0j{}{N(
zb>6@u!+G=NzTv#DG&t=3*FbA#)LP|%friyJ5^fsv*l_meX?nr+A2WZPvpEJakBPh{
zDwwEfBA<!;CW@OVVWNPEf+h-^;0`&=G#-)3H(?8zxU@N5?V>_q5xG@Vu$bxW1wmo5
ziIOHtnJ8^Kp0HnhyXwj2cp1}qO{pdie>YLqMCW348u!wO<xTLI`=X~j#7ZVAo2X{u
zITKHrsAA%2`Y=%`uv4*9vkR_JV4|vtVP7h|o=?ku#&o8k@0Rkc$$g=n_i>n_)lEEa
z;svVx>%3X~qUpR+SHpz=y23fa$kX5+zgAP$ffN&p36}}CiDo96oA8)OHBr|@JrilB
z^BQcri419o`+{Z)scoW;i7XSp9Ba(0mXIIYrDjVIte!ExV8v*ZmK}lWn`mUBF?+Nn
z-axRS>5LSMO-$sNXiA&E)<3>1&VxVrdeq%_0({Nt$dSe^7+AV(!Z6`Ap_<T4Fqo_7
zJI4Q9s}%ppd3{o6-%aq~4_;hJxFxA+!ZHz{+gsus-=O$R!dP)<8*b<k;vi0Rg-t|E
zL`}p@bmEAZXeBX;n`q09n|Rp-&#ZjK1W(XtV><7zabsS-ki`v`+L>r?qN9mV{q9#y
z=b&f)!<s)S<ZpL7n9jMeJaG0k+HC6P8x7pjs*8!PCi<A@YoeQp?k0Mf=xyS4)7k8|
zL>rsiT=x*((*)lGa%CB-H#&!wzQNHvmd%%rxeoAcyEjerGclM$w%0iw<}D`45@jGe
z$n(GWEszk#gs+lu!`Qb?3}TNCdZssYbEDdKq!ud<F)=j3`LDxaCWf;kCPtbVArbh1
zoi*{kaK1gnKh-}H{)r%q9}8K1MByu1Eb{uybXK7;A|GYqb0Lh_Xi4D1SxI9}j59Ib
z!~_%n(ogD}m}KIZiQ^_FoA|=SS`+I`OffOl!~zowIW<g7H!<7991gvSuT0D|G0OxG
zpkH0K)eNS@mN*Zc=e~bmQ@?=w8@V-mS)7N(^K5#m&1LfJ_XKMse`{i%iTRBDNhgwi
z9)5SU{_r~<eWtRAL(EY#vBJa>6H84j6T<3LV|AKhl~-mdD^092@x6&Prn5MIXY#EI
z_iBdj50z@XSfuh+CA(S+hx}k-y@}l>_L%t5#0C>vOl&o=krUylr}1;fW)quC&@wAt
z?4r>hdcMuXb`!fqX9uUi1Z5}f%ydq@XCFx@VfBd@JwKV)%PeKIMQue+@;(#$g&#0+
zkW2Ihl?K^IR{7wXWBeBrM@;-G#t)0;vxn-_^P`Nw2_?i+=Epk5PcR!z{BGh86DLia
zGI7qtc`har=QFe{gr}Fb-x5E#+r#5ui|+GG$gf=x`9&sqHH}*+Uy@?~Epd8&*~AqS
z*G>Fs;wndfoN~={K6m(17}J~AM;n#DOx$3e{Gr@6anr;t6MsvQhXwP@+}oyeByRH2
zY&uDuJDlcg9rBOpklZtIKf$T<(8MFI0~RtZJT~zkdu^eLg(oJGER?iR%0eCsc`X#S
zP{cw$3;8V+uu#x)j-%yC$GqPDS>-vcy#pE#4k%>dNL{VSb4L3Yl8ag>W}&!+munbQ
z;3>ByEbs_d9-vIkWXm~dfbX%Ewot}GSqtSX?DINjH@B(}>Xf&fQ)Me!s3e*dh=-lC
zm3cNU?^aGIbK!!8supTmNU`v=g=Z{Ox9~jmEmX76pkQe>^qg4ZaPU-FB3sElF!u!u
zFIvu5!8I(rWI1z$x9CR4Gak0ii@$twS#Vp<F|}<LH}+UawUA~Z-Exkc?*E@k<2-fu
z^DWLX(7B<=vQW!H3kxkR)V5HEK3Hfd4rE)XYoVTnkKN9Jwp>5!iyb<1#GTEi8(C;<
zA;&^f3r(a7)fj5JM8dYZYRSzkG`INXvUA$?>@9I7lGlPtKQF5{w!}3Hx`lv+paq`=
zzXdvJ5jEQoG)431a|R^^#$<2U5~l*|+Wd`|<-Cnc{_B>wdCe0RP3|=vv(U=IH4E1*
zwB~?X_|3ve3$IvcV_}Gep%&sC!Oxwq=sQ?wYoVQm_KX9MmL99TYGK!+#<`rIGSum4
z;WZ1LEOfTe#ljmF`p77Bwa`mQH^J@<yM^tF(L;)S+UzMsO8BYKTZFVWsz{-}7T%O%
zKjy%d|NW;RJGIPP37!5H1_&Q0__pAn#NEL{-Vx;g8u%ZUcP*^4@STPCEDW<S+`<S8
z(=1H4@IIqt;d2Y4EqrL<BMYBe7|AiU@QH<km&zZ{lW*i8cgj1dg{FJ17jc(wk@qtT
zOT0x!G1;1=PUx0;{zvzUD=A|vjI}V)!Xyjhm{*zk$6J^{Q-j=X2fFt*NYRVAy5FeD
zhmOe>zOXRG!c+^Js-;ljpPDHJlUy`Dym9)(-YFLjyT7#Xm4yY&VGA=X%(O7u!W;{;
zEPQR@8w>M`6l6vIQEY6?DE35|{F(cuC24al%;PN!-%7ihkwKkh!Md^6>MXhFrmJ*#
zk%h$;R*1q93rj65v#?x>YZrO8&2YLib8LE}>7D`bbcAQ6+*&X=_5I^D2mhP8+QRo1
z)>t5)w!C<=J*jIsh!%EOSZCn}3zV$4utms^76xWyZLqMBJ!Se;tHryUg*?ALz3#TG
zFKT6NWw@@VZWEljIhC9`J1rdI@QIOK7Is_M!>Lpv<0lLIEgZ10mn#OF8<IvL?QED8
zfAQmH2SuL}atc?zoB4}{qf+rOW4Jk$k|P#~zgoEZY%P*wa`(942|-prU%BZi3#aLP
z@jMr~JPvkW$nczDY!|!7j88gi;hcr@Ts*I)Y#5kEyuiV_;_xGL(k@x}or~($IIlm1
zTo$|{cvbL^m$Uw~@Rx-<7LPi@4GT9pmuscH`a+(1Thnea`TxpzzhCyI9$B{;w;ox4
z3s&D6|Hr~T3#9`n6TtDe;`cexiZ$rD*!{1C2NoV$c*Ipb0B`%u*5}>Cyu00xxgv3z
zpLZ|*q2Ut?Nde>upxZj9m^XmiWim<^%^>ENT1&obSRepm!2k*gDJ)1ykpPMcFD6(#
zAuka?a)Or(pp@|G$J1G*YyjW)a}VuR=cNG31yDYK3ITk$)ctG#)r3?GppuZaU%D#?
zFurHzQ&OxV2*IiWJT2rI!8>bGY2i8HBsBu4p5V_5c_Dxo1K@1sHDRDLZK+l>fI6*G
zQUsL%TmiTP@C48-08Y2m0MY_zC_FuYrSD|VeLcHw0QX<6ox#@Iwa5%0O9*)_A+-hT
z2xbTH?HYr(>IJ}x^#vOUI(GVc8U@gpp}60?NdON^wqT1n0r<a6;nh?~jZd;EY#u;|
zaVm*705yQ^VeAM)3qTLxiy)>1;iGZ@IYBfH!U(_&;7kB#1F!-J1n^1#Z2~BqoiV?H
z5)2?(r>-5qm&a>{1WCdHL?{m+mXNd-(kg(K#gnM;vJ@My$smsh&^CaI?J{2vpj`m%
z1Lz(ASGiZIQ_REb^#R2?2=5rc{LAjw1Um_K4xmc_yY6LlWu}P^`R#q_HI}+PWitJq
ze6-UefSv*L3ZQoYUj;BDfHwl@6To``3=5!d0QIvyZw1glfHyfbTjTvi^5FH<&K>F~
zCqn}QcsqbWtTiobAY;<WL;aktp1}<DFz=86N_Y3X6TqwIL*I4t43)Z5vpw$yurS-R
zXSjEG03!kz$CL};{Qy1);L`v`GJgX2D1eUx_#}YE#mbJHnSb;bNwj>svtyrE>fI8b
z1u!ar&jT1OW|KPCJJF?H$F}*$1TZ#$DQnBOtXrCz-9~$Pg)f9AFt0>&N&u4rn9MHU
zDnW(bM`~ZYRboOX&ldqKZ;(CXaiggLObcMTC{y9f0A_aaOcn?B%nQs6U{(ODnMeVA
z9l$s2O8|=km>s~HPM&#;d;oKVvp82s^$)$@22d}{vmk(cAA48!sZUNqT+DgO0S#a!
z6)Jj`2CyuE(AN0WzV%sL9>A?^&zi@LF2ClPJ2U^P0F3f=z6)U0?Gl~3dCGV4l<MqR
z6TsR4c5<KtSQo$#0c;Ln3yXC<>jT&jK=X>89|b94cLsgr-59{80N%~4!;5#f29R{4
z_IANeTjSd}jvT?QaSC^ckYl|&fIR{H62RdAYS;7p6u`a!_6y$|K)9QS!l`#l90=f`
z2s_mCyg1T(D1e^>IP|fXcX_=s)O#d=UjsPCWs}vrde}OzqtYUcoCx4I&Y+>*(}E`j
zPjP;o3{l97juCs-^_&afd;kwPkps98z{LPA2Qd6=_a(;vN=p7xX}>dLi<isge*{2D
zo>}RGUrM_Y0P(8eHRk72Y1ak+6#Pr@MgTX3+!DMk__rYS?*zDMIsTF2J;D2e=@Z<%
z`>*hvd}%Y@b3fu@8$^X59tZGW08bdqAW8?ZWNSQ65P5?rB>cVd>G^^v7zFMX&mRPf
zyb1(yvSicr-C1L|#)sTYEgVFVAinrFwWug03ojN#aUmrHr<~5BLdk@MQexbi*Q|_4
zXrycq<$_3#Wzjw#8{R3NSuu!4K@4w`UMYymK|B>il^|XUq9&aQ;`M^*)Ojw5s=`@(
zI*4b4KPy;GaJDNeSF?H$&j-OO2mM(u1o2`JtA9_c5#&FEvUuG|$xI0%dw{#P=#VH<
zbP2izJwc=jNfS&L%n+o0W)N8kUP}m{rr2B^a<N%gu%38TKZuO4-5ZvsHVASn700Xp
zh8AtUqe<f+nn;%~A5H5$E0uk37DV$P-Uy;k5G{ge8ANwl2s$5{-XQkpN$D7b8iW?a
zx0z{r5UqoFS-39<KR*J3FoUpyu!9Iue`|cpF!#2io<I=6AWH1dymZ>VX;^wV$YUJQ
z>5)4YM3e?^XP#S^PUJPWZDz%ktX4s8fRIk|iWp~G9fD{hJTBNah;~7=PuzV~$dsyS
z3s1SJ%*PD-Y#JYaUSlgkknrjpL>J**1-m8WJG-a%2;zs`&3>Phmbu2=Gl*V6?3>%9
z_y32D>(%WW#G65k4C1pO`USCVUg{uP_#*wSAo>SU>tWV_AO;E{zji9^ZQ)nFX>(E<
z3}(!O7!t(LAU+IY(&N;31xExC8<|#Uvim*e|77<tj)f5act`kt5Ix7HeIPioYihxx
zZdUv#h#FSr$AX^(@vv^rr^3~YhG~^ucYk*EI$m>B5T6I}<dv+^L5vAv(9=c6N^x8e
zUwxDF%<0VWQl!F!ASMc*l#omoecqZH#5CFu;!zOOgFJ*Ce+KzGReTl1j371!v5DQE
z+-xTEuw&YqAZ7*ebr84z&iF>~TPk-+pB=;;Db5v~Cpce_njJ5=7X+~|h($qMy_&fs
zh^0an3pSk4j5^DL_)hef3$6%aWe}@4Ll-sV-7()aoYXmMi=IWknprA3i)W>U7d2cP
z#2;JZ>jZxgTrc>e;08e|R4H6*a}ZnDVh|ktty~jsrIyK?c}U1M!R<lp5W-tKh3pDq
zcMyAo|HM2IvNs5KG!Jza=^37Ap8Y`_;Cz=`g)Tc!eL0=dX!++LehGqv*Wn<J1o5jB
zj|Oo?$T7j=f+qy4JaPZVH86-%Qal~Rc_FlLM#$M9&It)7XUt!nenI%fAT9;*J9`?$
zWs%%nkzOM$i?v$6*X+Rz$C-Y+oz7khBI%tr*9C7iPb0q(<Ui~2Zx9bS%PwWy3gVw2
z@{DeFJBYu7xD&*P$~nC5()s?ia{08Hnbqnj_ktka7ktA|n2qDSt|tZS@{f_nLHx&M
zFpTfRc*3@9d~aio?flJ>$95hIKbz*xYa<^eHVW8iYoncwf;I}-sAD7BMqwL8Y*e@L
zyp5tZirIL|#`$DdaT|HJ#Y@>JZKH&ZWE;D#q*U1!FKMH9H~045Zekf5Wo=ZjQPD;@
z8$*h_v~BV7HnO(GpQ>hE84w>@$@S^cdX?l>WgG8Qb+s$u+ELO)c@-P5QPsxNHmccp
zGAVUJR^w-EJZod*clpX}^Y7^3VT<jz#S52rJ;#2f))}+aPsd)cQPW0>jTgnw8iFqg
zCeLX}1;vJoK9_Q3*>KxvQp8HNktW1r!z$47gDNiGO}CL@Bh$v<ZE^n1zQ<dKLgJR@
z4yh#;Y70)-7O!igo(;{0Zu56>XkcSODc7}%t|7^;hO}%W$3`O?jj2$~wQyVfx%Dkc
zn$m&iT`g?1w9(8)a~nIh#m{exdkb4<ulgA-uMO44x|}+F7S+#K<*!=NMeeiVx6xX{
zW!Nxn#B6w5)Uj*?#GkN@;5=W@M$^`fZAQDIYhTkk<RKgE8VTbTu@RLad$=wBY0K1B
zHhvz^d`bS&wDYo!5zn|d7O&Vi@U5?njX1|~d%WoqABF90ylP{Djfplo*yzZyvoX}h
zYc@LB=wYL$jm|c@*m&K>OMjH@YNMNt2lrd1U-Lic7f37aYCWT6cltl0<tO|7r!pI}
z#a_%A8~tqzu<?eCJ~rO8(a*+;@0$1JV3l^V;?TnSBxB<FJlo@MvFQzdUX%>9@is#t
zDYW((Ymg1!_V{2M)Su$5Lr(m?gexoA^{$QgY<$Z6u`$fXa2p@l_?VsL=ofc=D7}84
zA!7baY1w&uoWfhxt>Me-PpRnQV0}U-x8(EOH90Pa8m4|`W0Z|?HvTE^`rO878)GEL
zzMGMs`op%zlXsOUbR~PNjo*&f|8%ZNweh0d>LnK~PqOiijoCIP+xWu96dO}*%&;-j
z#x(KgOTp=a6~{Jz$jy58)cH#Cr_4g%KLxCeXIwM3$7k92n(?pX@N>Q0b8O7DvCPJD
z8}p>@Lh*_%&bRR`(~`wS*(|Qx9zU`@zR1R6jzvk=62YZ5PYsSA<W^))ySf%=xx&Wn
zLG@R0D9gB3vcJ!|O7Do@I@0okh4sI)QDaAZwT;L8u}&G+rX`-WTq45Qm{ez-jUQ~R
zw|Sxg{t4k;h+DMP-C*Oh5R!^zZnUw<#%3E^xXy%7D1@yxw%JI(kapR|cCJo&>h7?y
zlXIb7EzffqyXfKW)U!6OK1tgxe2<NvZ0r?&#Kx~S_Sx7k#RGyr3mz0a#98^Sn-+eN
zBFSN{MLW|-cpc^F*f?q9nA|;{&^f^-COJC0OF4KdAwMnT3}@L~$L6_&{JfA0HZBUe
zB=~#c?jIb8?;JZ<Y}|M?{i?{X*|=`wPaA)6cG!5xTM7NYZQK-oOYn9=K5$e88o49I
zyNs=kd&2Jv{>z*Xq*Ed5n1j3?*~k-eqQ~p8jsHaLi6A9OA-3{A&Ag(PPcXk=fe?&N
zb*NT2gd!od3!!}oMMG#=KRqLa%n*u&P&|YZAtZ<JLI^KPt&$;>521qaQX!NULL+5D
zD4XErLby<~35C2Witt&%N+DDZ;i(X+Bs8B60U=ZkA(-e<^-CG7^-Ksex;nm96V2xY
zt0!tbAHp!XONAODbcgVgkeY%i2~8ygSFXa{Oe*v8gpewdG{N+Q=3ApGWF>ecgjylg
z4xvs6*&#Fwp?L^(6L%X4sV7)puz_Gh!N&ZeQV82>A|yw!X$Zd^cDmL=iiTiIL2n3Z
z2%2yz_=M;o<bUGm^YVvqU+R*ZAy^><7%@=`C2H9r9+=)RS3exWzSo>_kA@Hvg;pW7
z7P7(b#Np*ctye;5BRrmvv<)HB)2aKaNJfP4XtBG4@Qxw87DA^GI*0IP2>nFZC4?R!
z^bDbE!a}zYx(ollR@Uo6Ccc~5D{;4X2$a+Q8zSkGkoRSO7yWOH-U?xm$onVm4iGX>
z@a+)3d(Y7v9Kt&x3`yv`7sAj4f0xTnhSSQhgk(6!agP&BUhj+W1HlhN_(;gdf}aR}
zDoD+dAq;Niv^6S(&qEj;!k7?Fhj1o@u_25LVKuuG!uSyUJKQTmSQ)|usXH-*Ng+%Q
z;foOFi)2a&Q-ypJ!nB0_86iwh@GnF7O8AlY9M5^pl;W%qz82y=>8wb+W=nC7;9S9Z
zAynG&zZLJ>5Eg{6FoZ>NYpLMkT-=?yB!rF8S~RjOAz99T6=+1sa(Bim##ZE0`?*=X
zJtytIKQq^au$I{yLhiD&E`)6%Jh+zngJ`Z7{84a&;6}ksA#4`1MQ|%W1%A$9D+{|g
z^Ll#-J3`ngxAujwU&t=O-68A|@{=Hy_p<fH|I3X7Asi0jh}=3Tc!-}qLVii;pIYK5
z{~E$CcN}t5<i|pMsmfU@PYBY&dEJ>`?9@r=+9|<l_0!LWa4v+qA)LCFdY--LlYYNa
zy-QrvLI^F++`J_7BA3K@nLagZ&f?79L--?v%VP6N2seaW6{PWNLavAKXF~E<2z{UZ
zUteyD@Ky-7h5Vh+xx+>HpZ|>}Tj59QeYy3oAd3&=bM_(UW(bc%_%DQfVdM{E`W*L@
z5b}ndZYG6M^njaJ9wD2nWqC(9c~v0nd_olrqfi)URy!G`)OY54;V>rOODjU<Fp7my
zT#Qr+qlAz$g2{p<1zDw37^M@u!jX)!VU&|%`7kO8sgSr^F^p=<oK`9)Bu|AA{m*F~
zBB>h2(_uW5xcgif&n9@aFkgQB-%40rgp|Ax#*1Op2;-$NI)%|WjGAGjgwZUF=3yvd
zxWcF#M!hiHVR*vG3ZqsS{3lv!7#U$?hLILV_Cz~9j2R0w%B!Drc|S_6v){F1bSg=0
zT4<JChdN=r*}P;<r^X*2%D%JG)qJ08?f0(wVN{=3vQZd~!)OpjL$<ihm2}Wm?rNi@
z-)c?5+%&#qP8dzuR=(8g!)m`iI(6l7*PpZNHCtY<MHnr^u)+w0;iY2_G%XCBec$g=
zX=kTv-agk)O|yMr_`@*5*#CLz!kVSC7rMqDah=}hGC3j(Tsb@9!7%JFUJ0X37@;u2
zjAt0JFd~fPLf6uF@}2vl#PxHo{3nxlu6MNxqjeZBhp}v{>(@_Gd3D+mkEWUz8k+Gi
z+J@0Sj90@v#;C!d`@VMUa_8jTIjNKOx+b>wb_k<m7_WsfVUO#~Dc9OVuKvHdem>$_
z+dR8V7+u2{8^*XWx`oj_jDcai9meZn^a$gPF#3eiGmKtgO#I0em{OwM3fK0&$<O@e
z>dpTC=GwH%)t7B?tkcZ?B+Fg>!gwo;_x8Ht`&=LIh>y6^sKRO2e<fQE2qXQXK7XBS
zP#A;5_%Mu*!gwc)Ayf`y7z4Q5H8hMRJL2z#G5VCN$ltyZTU?VCxQ2%@B8+W2;%k>T
ze)F{J{V*P$)jwccr(Ji>xX62~a(x`eCt-|Y_Abyq4WsZL*T^uYwyQ&u{Yy5<XPh#}
zU8|1O`JBeX=yKG>;N08i8WRSwP~!&U8JsX?hcSme4Pz2#Vi;d?LNPbKcYP7YlrZ<t
z&o-N7*Wc@^dfauYPra#Oe7DRsO|VxU{VOUr^?Xg^#Tw5DV<rQ5R-Y9{srmI<eV%%~
zW%l-EjlT)w-_x$Pzq%NQxna!XTws^On9u(o6>q#CjD^erwZXR>j^lM2o^{dZMGV&g
zSKjTOji+1}m${ZQ0m4`j#!8OSGS|w(`tmRiuXPQJ)IWUAwJMCyK1=;hl4MTQ!%4yX
zA+DkGVXO<|hp_XS5C0|9VUBxEJ8M0gzLN52Y@6Bh(|-(O1OGG#V^bJ+_or_SW3!Ml
ze>UC1*p~5pGONjtWz)Lsb#LQPmaglW)3E0>_s%eOg>gTMf1}tP#vbN#6m6pTDU7{z
zCW28B?Bf&&<L@x;@GFjf?gL>Q5934_2g5kT>3=5eXTf8FzX%={JQBvQLXHaZs}d@w
zU28`CjjP0})V~;<R+%TmI3>l?VVo0kM)0iQ-zU<kc|OcvwdK7al8b_uIN}H0ynYYk
z58;=?xFY0g7}ted<0`Q(ZQR4u^}h5!MWTM`elk0ijot|3rnG*G)vvgD-4^oO<n+5?
z{1b*6ffm6%28U~11TRMLZx|24s2Jhqb%h>=@rVm}1cf7b9L9fPBvnYu8^OxanNK*g
zuDD;#Q#UDsJQ37d*N{TqJ$Sq*F<%7vBaU)`2nt5<?2Yty+&QD$Wfgxvi?J;dLCJ^{
z<f0K2i=cP}B_c=`N!J>Aw>{3_by+Wvi&QHmw@OD)Mo3vf%F78UFIXXh?vwLSSSf<a
z5j-Wrs)AJnA($t<&{8A)Y2j3UhQ0}}mXJIrq`Khq>{@yus`083K^+mkBv><oln4~z
zyqhk>6@gobCm~ObAWitCS_N|LWJHjexSJ)UmSF7&y8d36I@waJ8$rDY>POHZf*g@F
zjG&Q_CJ{6ia%o?_T$|I+HYC~gVV<TUCvPUCc?2yIl9ocef<Kqet4H9A;Qa_bh`=9#
z5y7hwbdbAd1a<@=;Z_6zA+#A3a^QnJ;RqrTypoVdBWNW&CRo|+j6!SSFGsMtkkhG8
zCbVf2K|F%C5wwe-eWGrQrG;0XEj0DxB<h4)Iw9&9L9YmUNAOw%okXoOBNIV4;avoi
zn-uCE!Rrz9kmAFuNqM{GW!<Z<IRWVz!NwmlN#2N{PXupAFi6z;M$j*Uw}ihL!SL%v
zb6xE(k^zEat`=p*fx?S)&pTKMB}0U~BiLwiaY}{?e^>Cm2!;uve0T&SgtI#P{-N-X
z1n;?<QGwUT5ezx%{zULo!I6UQ<YJ#kFgn7G;!!b*F%gW7;HL=oMlddd@ewSGV0i=+
zBA6J#R}st*vy&p2t)@?jU~&W}PGz*ZmG%Wk<W^dXakZw3!Zg9@g4gn9e94@=mO(Nz
zf>{wP;kf7beI3C!qOgG0gv=9Me=})L1al)eUp|f3%HPxJ|NIEPmAkpqnUaN4Tol1#
zA(TAzUj}h$1Q*XZgR+8)Mg&_T*cw5VbSGU`MerTdgZdF{h~U!s)HPCfo#5JpotIMz
z|B&G8Blt1FKO9zwRW?e+O%ZGsQaP4M;kJmg-p)GV4AXYz$%YJGJ0jQ_!LA6VJ=<)z
z2=_QK%sgBnjdy=r&~RS_`^9+vC=Nt$kgH+@_aitI!OtT9JAz*#I2^(C2>y)VhzQR_
za5jQpBRCqtF_DZv?IiPY;U@%H{4Ii$34SVq(+U1f-aO|R+Xya4a3z8Z3|9odNAS-8
z_stFNoF+~hUt$wgYjr5vpzf^9KO!I&7?C#MjQeT?*CMz&(``*n>tp6jo$k)tI{mK*
zdTz<MCH8MbaFc7)fqWyEIdhQYw#ZrK#c-ZG2_NnX`A1BRTkg!Ge<OG#!hC-geGtLJ
zM6KMrkEQru1W$w{MV*zLR~{jG1@lF*?~EfXkhohgiZ{;Y6cQ{fSVXXB6vd(_9!1WY
z)GIsUSF^H8L_tgzEGbw@uyhn<qI}cexmzxZ@<PbJS=f*lNu?+%M^SiZ+!w`DQB;wp
z^(YWU)hN=V$PmfXf+<lv6UDPpREy%dD4vhv1(EyO6|T;yH!F?KFK$!xMG@8zq@;4$
zA}<NA8O3iOrnQMUf#sz{;S#x9(38+ljUp|<OFmPJnwe2#jY_W*1-~K5608+PZTjF&
zzmU?5U&UlcQR|<~x>3}NqJ9(&qEMsQ^Km+b4Wnorg|;o@?)i*HQS`o;(K3=*@t@2l
zBFu@RsgP!ZRBJAzMHDTCcm;b8ck`AOMfGSF&HfO|EMLp{j645Nsy_;%A!rI(f`KT4
zLU`AXA|yO47!iyz!sp$wgib3Vt)qB33Tv8UnQKuzindYw6$SsP)GmtlQFMu-YZOP*
zGhU72wW#x3pbi{`opD|rh2-pvcZy=WKjZ7w?#@vVKW&l2|2K7G94@+B{N(N)#p_Y@
zh@xi{OQKjRq3#vMyHUKy_%Oku{M~8YK2f|CMgJ)JMiID{`eqbA9!n+Z7sc@pYK>{s
zbU+jXqxk0UoFR;1kMy?%2MZ1o?ERmc@^_;6tVI?HHHR_|hce<j<HMpD9>we^=0q_f
ziua=!7sdD}K8WJOC`Qw_vRQ+g)cq)mPonrVijSlCdt@z2Ud*4tYh)CkNBOhQx}QZc
ziX?wV`k3Oxr}P{ONybDmb#Ug`C<g3|^J<)wF(HbHQG6A}j3_2WF_{WcOp7AVXK63Y
ztnft?Q>d^r&f=ZZIsYBcnI6T{Cvv<`r+*p6vYl~vxq4@g=kz#{Q?yClnVczl&Noqz
z&timyR5qLT__6{$q@U3mnRBD~mVv$9jC@`c^P?cCnYY<LC$knrv5?XJFmry}hKr&I
z@5$n|SV)~&#g|2~Jc^49#ec0<M6oi8y<8Tem~h&?DvBSXSRciAQLLu%DAq_2Uf!Fz
zHi}(E>%M2!UB^LbnRYpnRpVwl2k}SNEuFq8ip`ugQB-=ad0;`>#wa}Br{<5RZHZzl
zrwK<^tGkUkLn91Mfz~?&Np=dUozrA!xFL(X6Y{jCIX^{laA*A5&Um3+@%>SBj5hrx
zio^UA5PmR<L(J!8Ii9h_e~zL=-e!Xi<xuBH6u(AsCW^E4d|dIP%%vz!L~)Fr8dJQ+
zxZ(xe>AyvBG77qPItmu)>M1Fv7f+|KWBz6*KhGgKC&KfB&+m#~h~lMXX(YWar(KHT
zcQ*7+)*n$^j^YZl?o>{waoww20B<zg+^FuKQE;TLMR8q{hkWJBX+`oi3pJ~IL+08|
z!CPElcg1fr_qdAs%H4_Lp2+V;@u*JfKT(X_65IE*J3YUfMb6L%Q9NX7#qmWPkD_?Y
zL2QE$+u*+_o<uRPHRiWQQVe-w&{{!ng}gE3i{Z-{zKS7#3<Y9%C5ARJ6pW!z3@I@v
zF%*uWNDSp;s1QTZ7>dPEGKNwy6p!J-G*^ij9(Pu*lu{<ON&2>ok{kp15iM!;la$gi
zl%dVPQ#R_#{6l5S#*kWGDJMu$eU__Y43%PdHil|3RF2`P7^=pQbv>m@48cB1@{JVG
z8LK>b^j3=hddkx=)cHH*nHV<SN@+h(8Ff45Igz{&!;3LgkKyM=%B~wJ&kM<T*<T}u
zg;!Hv5+vC=FR7;RdVi%%OjBGjxMRqPp=k^rdKE+680y7vqJokZ!^(0>?HJNy$cQ16
zUd2!=h9g~-z15Yim6czfRU&V>_T+J}4r6$_Y&K23sPJmmLQ!v~jH|5FkD);ft?MWa
z*_||{aSV;vO|R1QS_*|tVz~IU(sV%ZVL_!?49&$ce+>Jdb2{51hL$mSV^Cv!qb<e9
zIB1F%gDxbv+QTC8`9D*tr72^LBqIhh1}lb-UsnQbE{29pl-)m<y?!snj)548q1Efk
z_!kuNa14<cZr)6Z3dRIm3APq|S&$0+e2K@<Hikhl4342)4DDm+6+`bBUX7tjQ>8-;
z9b;H<Rp+O`Yjpl;rArK58O(A@rx-?+R62|BmsOr_F?45$?xysJ;dS=wW=g^NNyP5|
zru?zVLwQfi*JXQ#Dn%<QZ^Y0ihQ4ffN^KT*_Hn%#!&@=zT;bW%&DD<?TT$8jM!Ehm
z3}B8GRtCoKwh;1m4^r&H3duV$42fZM3}a##8pFHnRO`|sW9V5(c`t?!V)&4;jbV5U
zBVs(8qskJW@_r2cJG-8|sF0I<6vM!owbMH(pD?fteh;OpqV!5qDETyoTX$1Ps#Z`w
zV^5hj-IUK`JOoEs($zI=QSGrYjEiAX43lG+_aJ3FClQpsw^Am=upvd6NZ|`f&y-Lq
zmQ<P*RKAEIUQ(IHAlFc)#4weUVr%Ue`zzC0DbwlvUnxuGCS_MtX2dWvhJQKlVwe@f
z*D>shVRsDQ#4wu~8^fv?I(2c)iQ!ug3g_vcDRbEngZVIp*L=pUx6;3ZvM`24F)Wv%
z$y-iY%<jjqlqpm~nX=V0eyFmHvuRG!=DR7A`?z}COIac56c||Ulc4fl469@KA%^u#
zvjWQZG3NnbT?`jmD{Ep{E97h|g~i}AO8?nOKeE5l&<;-97&gVQHHK|5Y?g%I62rqh
z3g_nI=1P@H%By9R@qeXsEuw6Xp?*KtsOCyp#Xav?WhZ;_tTO72q&+eG#3nd*V%QtQ
zz8H?haGdsII1s}xF&vHo`IUoQ0VKzM+@5@h+4v}BwOeTuNoKwsVLta&j>a%!Pgzd1
zUt{ofQi}bR(!Rb@=9Q!qG5i+8nHbK-@TR7mjNvpV&LH~~9WJA+Z?13!_%c$S3mVsl
zb1|Hc;f1aaFLJh^$0*NaV4N>;#>Mbw48O<l2hpQkj^SzyBWo&Gq_{OpA?J0C(a2It
zW-EWiaD!P?Te-_DWmZ2(xgEpb%rS|lIj8mpOIdY4rAu@F9WKJJyEwbs_E7$b;U35C
zamsy;W_2a)+ob((x|;t#rmg}?ilgfeEbg!@5V#>|fa#gpS%n1_x8N3NnI0Ehf`;HO
z2?-E1Bsd|8hCm4J?h+D+V8H^xE%4ude0$D+PMv#hy?SM@UcIjF+3kK|f8H4{7!p-f
zQSo1AyzGqPDiTz@>I|ET0xAls$fjaVX(gA6+`I~?h*Ob6g_5E~M<wJGGU)H-&eiE3
zs*XG=IIr1H?fF#XRe9vFe16mX^nIn3{3<AK`N&>KMPU^W-c{)8MN}&e7gMd+yZv29
zQ59A1*b5F+oV{)Fs<n=bU)W2iD5;{Hit;KxxM44)qO6Jruk3HAD6QgHNu`VmuwNB{
z>`K`#j-Q{|DeSb*eEi71;7GBzR2+R`&mK{Dm8qbj5|!`UdEKd~g4ZDbSGLL`S>9Z6
z_Ow-1QB6fH6}45^IW-kYDw0(=IGAVl3Lhvg6;2gnljE|#u)Fsb>h{E*sKTvcLT5+i
z3JSw!ii%W~|2Saja~0B5q>D{L3mv0d7or1TnT<s?RAi{AsUp_J@wl3klG>V*siKaG
zz7C~{in=PglvWz3XsF`ieS19>^@WstZXe#&ak-$<h->k}-dM#QzoXl&qU6~oCNMHI
zRnbg(e<MLTb}+t$ik2#JYRILbm5SCXma|kv8x?I;jOWNzv{TVuMGqA{Rdi6%QH4*1
zU&XsBI#DfN(N%O-as9cSNmHS6WveQKAJ~U>ain)Dl(r+?P~lNwvZ=m`SH(?_t^K5q
z)mOP*RZu7is0gZva<VEyD%QJ{h>S2S{IcR)-`_#Mtx+@XZU?1{imocUsfhF{PO~uR
zbyqR7pmJ+`!tZk()$B?y6}?pqR53_J9~sGKIh6NkHyW*?a`AjTFA)7`u7~#iDh6=0
zZ!41?)nYbbm20qy_f?EkF-pY{x)WU}RT;)%v{x$UQ-;z4oo(a|RL5`?BUJP%s-(W_
zm{V3Eq0fxw(sSYBlrbufBq`B34hmbeSH{s#`Y2sjxhATZ#L=plrDC#*DJnkY>fes%
zRp~<&(^O1X@sWzDDn8~exNZML#ZN)y!XrER{#7n=t$hNA%Io+Hny8$@-5M@sU5IC^
zm?PU{0hcUZIe6PXSH(Pz@Rj{Dne68(=2H@{P_m}A!bZN}T7Pd{E*Gj;q*}pev5F-s
zma5Qu7w5*@ansJr%FdRBmT}_y%u)Ny72FiuQ!0+D_?q3R*reiT72m4(PQ{NZHmLYs
z#Yz?HRQ#Y~m5Ot!ZH<bjOC7xEtX6U3U;Bbr_PHx;YdM~73d3@jR<?_Il=Ui3-?KB#
zEM)~o9&&i3*~saOpZD2Qm`AD2Dz>QDrDC^=tu$1+!fV`i?#Hw5ZsRUK89yb(x>)Z}
zt?T$s6<_Q#PxVvwh~|D32UP1MwpVZ;N4w8t_MnPGDt`OkbwtJE-VR>24y$PLrjj?{
zI961l{3!jcwX!klIHBUCiofaSDo$~<Dt=`}8QvLdn*0Y$<*W)`mnZ8s;?xKBUsRl@
zZ3h?kzp8U3w{n3yRK;Z#S5)LNl;2hSsp2oT)7<t4+e}fanJsy-yF?pyEJWX49daDh
zl&g$C_w1bPH5K>DE0c;SlWHi3G}{gCBNb0*TNSrd+*WZ{#lI^45jS8EyQ5;yNab+r
zg!|oX%-&ORU&TY!I`A;O(|I1SqyOxT^TbD-KD~|`YPgb8N@0+ErsBB@n}+YRDK8lO
zC7!(EjJhf>IoW+?sl7!%?bD8Da>kaH$#K~<WY<vN?u^r{aGgWL+clIHH5Hza|Ej9w
z){sX-V+~C-<kgT*Lj?^LHRRV&Ktpj22^tD&D5UY8D?VNWU81R>6xL8gLs1R-3wtrm
zI`fl^>s|bOurPVBfx=x@LPJRnG)ox`yb71ntRo8d%bq;S8yZS$eBYgNA+NHbfC3F~
zYACD0f5*<4P+r4Z8p>(do?ZF0iqfN(g_K{|np{akWeuqs(l`qZRWvv>ym2PM`BOTt
z-BmSI(_q)E81C60zx|;-SK9=IA@r%eovJuBxHRjWoT$OAAxU_!bD?AnSMw{3kSQAa
zzyA(NkE&KST|;#Zb;M{jG%&=~;!J&x49#+5rkc#kS+urHkVlS84TW{<q)}HxJ=$Ee
zE_@9&G}8E2ntZ*ya=4q4UR_}v*xuQ8{9^pZu+mgRGYtbY4Ak(BhUOZ4w1b8g8d_>l
zHE4|g8d_`U$Z_s7d8KHhp}l6^k+s#(P6PLEht7_iZIy34%GsaNJ7^#_N>sSD-{rtG
zbk@KV*P^ha$TA0o|D-9p1`peRWH;DUrouG%WIV5lrr5+weYuGUXb5WPp`oXSkY-)+
zV;Z_>2y2LFh|26<YK3?c$5c&mw(qZW<;1%y-83xjW$W&Bbms`)QudWszPV}drQx>+
zcG~Sd4ZSt=(a<d%|Kay8?#I3wn)Yb=Maa=loP;OX{#@vXcAjGgX&9_wnuh5b-q$ch
z!$=LIG<0}u|3JfV4gKs2{d}l~PjA?V(NUYU<Q)VrRU_ygWt2yGl+hZ-XqZS><ftCo
z$7&d_fwz!9haKZM+A<2SV$4p^u&au7YdKlN6b&D1e0Q<!Lk%Bk*70?!#<!3un>w`m
zeslUS|Jf;-=v1iiiH2WCD!<&a&)@(wZ2G70at$*z%+m0Mh6NgCGd;D>)9{&wIU44Q
z*%?Udg&i{%I_7KmoIZ2g&b1?Q9l5@|pe)p|NW)TEudlLL!xEbPrTwZNxA>mj%e$(&
z%ISv6G7X>j98A1e^IFD{f2HAT?q35H4Sb{FTh`LiRmXRX72GB|O6ypuVU>o<8m?$q
ztznIZ-5U02SgT>3hHcz*vN3<q@Drz_VZDYQ89-jxH)z->q-HjyaGG;x3+1;K%FhfM
z)fH}vEgCj!)*q<H^-%8gSG=7HZDo%>hpm#bL*qNE72ZMo?RD&=kr`NikLOMF_g~po
zj!W3fwV-QhIH_U3h65UoXjUkz=Ti;}IjrH3EYn*nU8`5R7}iepupQNKjDc&vd0fNa
z;}X{W8h`1feMep8l!nt>5qg@2Gcww<8qP78bhoXyTXz}1uuaB?atcH1>RgI@tBd3U
z!<vRaH2kUIcaCR50+;MY^FqA$|F5rQ*uOO1`_O<kUJDqMh)S|@Rl_w6FSrvq1`XFW
zJl60;!wn5LHT<jL9(R+5+ZygLdT^s<DE|oZ9%NO9@=LnH`;m%0ZI_S6&s%Q0FT3fX
zhDSmk&>C%(O>@)pF0=ie7WZm=!p)M(Qw^hYD3vo6J|SW7d`8dY+T~GREJ^>hgYr_t
zE812^K^->T3e-7t<kXQ(M|PdxYgXcPD^{HN*WR;x(>046xpcfNsN~U+S4VCg1@b9B
z<X3VOQ%LejHop#LsY7|$x#@*;1~<g(D6XT3ZUxe!x^<em^iBdpM={+xmiv;GH}{(f
zI<zkwC3Wz$!#m#+IzDf&EUKWC63M;qU6Y>M%jkfP#yXnlcvDAN9jQ9fbiAdboDRDV
zMMuNJ)(NV-j#q`03OYV3tuR#-Qc19~j<>VqRfJR(tS0!CUWnBlIubd~3W`(4Oo>Z~
zXF<AKN0N@IZd<aBhkYF>I!+B#cx264&<fG%I;!iaqoXeErejborIv2R^FVDSL$}Te
zHL0JXEX}UemZ4_q{6Se+$Aijh7f=3-b@g=A*R7z}K(L|U+Wqm3ge<S66x1C}bu`nV
z(qcN^(a~H-J00zHw9wH~x1LkoGL^x1?5#MX97-Ebq`1;r2Se+jh-0VU(N@Q{PL6H8
ztmjc3biAu$+AVuWuDD$KiOhD=k#fV{S&A096rF<)DPA2us^wG+F3QGQ9v!BR&`@PX
z8)d+|il3`fQ{j{&Is!U^EYhuWVD+c=ux_2Md9>yUoFpoJ#kdeFY>Wv-K67;A@N}%w
zv06tD9X)Ab9Urrnj@~*3>v&&BA03X|N?#rC>DI-RcTDt?e!BJWXP}P$T(SrD0XqKq
zz2>DKty_RWx^>dv>Dsr<HiWC7W4vx1us>wv7hfHvW0;QNG+lpXgpReXY$LgR`^{sU
zU6s8KbDe9njxjpMQX!8rPCBhJNI5>px{e>ttxV7{QO6|Ry2qKK<3k~nb({-3%0?VK
zZ=d<n_K`RhJ#a{V<r5lH$6_5zbWGPVL&tnNxsFdc*$4JHI_Bz_sbhO3WtNWFI_7Om
zFI!nzaNAybcRFu&=E+9*Oh=_t@yv2NwA*j)iz#2|SV#xxtI*9B=zN!sjf9V?7U|$6
zrqvVsQXR{5tl(bLv0Mhp+X3o-se?~ccyZ4)K7kwmYaQP*?CbbO2ag<VWY@KV&zITw
z*oQjbvtob8O73Oe!MT(*G?&i*f5%fD>va5}<C2cc)Y0*yj$Jx->)4=UBgaE$)A18M
z_OAVB9h(_dgfqKyVhcx_vV}9cZ9Vzy?Q{~i>z4EHpgr$c+u_?EY;O)#cIx=KjKXNP
zhs(_!M8DFpPse`B!;TYNwTtmz)mF$4h~%J-LqaGyEaZsbQNd$^#|5`uu5*$jcPa@!
zWzl@c88+*5o}=k>oaO2-we<=+8gz4<*YRRP!mm2Wr!Pw9HRU(mItE<O`QOS;ri(&;
z*YSstKL!8FD&=}z(Q#GBzdG*GN=qEqbllK!Q^(&rt~00}kLTm51-lDPGn898ZtJ+K
zThDX;;naBer=v!c0y7#BnZ}M(=KT^M`7NIJ7d)KPO80d<U^vq8h|71w{+M3GC-$pd
zJayC$SWnNM>3FUqzkvb<Ug-Fb5#F%wnz^C)xalP&QRS8FN^XCfVTFP=tJ1R@h%=DG
zKu!a>4TdjN8T1Z)HJ1Ul+`q9x&LebQ!+Iu`&p;)^ajmO^lIoA_1q~E3kYJ#Mfx-rO
zrs9q$YFN`LVxZ>P1d?I~;tljQY%~9}7dNo0m#tkF2aim=PL(tO18*8AW#A11r48$v
zMR^&XQc|2GN9|4?=NOsG8d&?8qnv@a4Dj^c=B52&c}ugrVcjgSmr4dI8#rv>h=I2`
z1p|W(yl<eYfocZY8|YxbZa^_m+d!rPhXJR7Gy~}dY7|sl29gXU8%U&bhT<0dDpTR*
zn1_~e$Kq2A>!*!W!@8C|d&xkmR5z^0tu;A?r}i2ge5%4Qm_e%+S9nL9;Z|xHAg<nB
zsE&cU23i<sX`mig#6S}RO${_KteDW)umW8}1C0#ieQE#pJqMBNyRN&9fvA~bU9aCU
ztaE97-Ma7QX|TD0VIwTU<4`LDZ47kz$4&=mZD4k097$V_mZ8G{0|=k$jM0^j2Hxd>
z4MYueGSJz8-$1~CYJiW?JO)~??W7sd4L(9CVi*{ot1$0jdH1@xkYXC}8YrGy@fp~$
z-Zi^JLdDh!vqcv>cpVS2mm*5Yu<oP7f*IA6bJdg>M`fU=fnM~kbcG}D%2~veZU(v=
z=pmMTveZVaCbdv#&)&38%+a3%xMA;OISgv>R{(k)Ef%o0z`Df_l1XnW0}KqL+3(wz
z7`8z|$hBpTA*^d)v4JH9hSEd^X3-!9h8q}RU~Ij(j|_}7Fv`G0j@iIy1K|W^tbuU`
z#t5IcD&3sx7;jjSc7kD@qDczdlv^JtO;@B(ma%<EGj_N2tFBBj_+y!p+=CZN8`D$+
zAG3;qX$C%}9~M`p8{iK{GdSzg3Qvsx>W;y~`Ia<=MKcZL>!k2vJ;%VRPReHn=F3Fp
z3eFSc)636=*atWk3i(2Cfngn+9}KYEev$08xh)GVHL%RURs-8uYT!!)KX7H~comfu
z+)W0)rNQYc<(01m2PIp_#qSJ!Z(y~7HT2auWhM8{KxGwO#p@uMa@)>(+qH&uT3aW`
z`(JV<lJE`tj|P4+u*tv%0~@)yZrW|9<HO$-CHdK~4r!Zd>H#ek)uyH>BwM&NA1GTs
zP`1;N4D2^>z`#xp?}nW>2zwYD#Lssd)*a<hT_NrjoA09=R99x!w{DXUG6EE{9yN0q
zhq$cCar@>KVJJIl;23?zgA5Ojvjqk;4{~{M(!ePL{~EYw;Ix4=27Wj2hk>&aNzNPi
z)xbFkhQA2@+}*lu{EaqzW^a*Qxj>t@O(1VvNV!PO!b;~}%AW@Q;ubS-!@wm2mknGs
z@b`D=JcsPA6~_a~6~?p|_P_c$u2F7)hve}km2MHo<gl`HgmTlsZ3F*^NpEq=AL(rW
zj$s|@?sC_ZR@VBJ-Q!$*q&8-i>%Mr=Qv=T!>kK?(m}S(xV}DEou5#_ZR&e~KOg?FU
zV&G{_#WTYCb@I7^mj?eE9WNMmYAXM62icu77C87*oy~)69%T0*&VvWz65d*B3*}dc
zIquqXc))w5H%`X?ci&#kspR$`j|WvfsOCXl5Au1C;6Vuw_{>~urR4XZfCmLVDC9vA
z4~lxg+ah{9Q(+J2S|r6h))gV%gW?|W9*vyWP~N`r+Dcy1V_CSO2bDZ1<-r>sl=l4Z
zBws;D89{jPrjW9NZwZzYEH7Ajq;>e`V^8}$M`aJzytMPdLKP0UyW?&C{Oxq|p?$6H
zHVW+?C?2GHP~8KE2Tl)?Xo?rslO>l2?kt|j`9jIxTUofmc6gaB*@F}hQa#oa(KL_s
z=%C|fS6#Jb)yCE{gxD~pOHS*I&EIxwdQi)Qum=$jYI~6BK?e^ydQiuMx*oLjpp^&p
zJg85zv{jnP;2U_**n=h>H1wd6$NF*bW}Fh+Z<5fld2DVfqx$9z%O~IQpt%PO?=3vm
zF?dx^>!QyG4!jJt_Moi??L0WxT4^J=X>jqgOKl8a?LF4rcfU84e#>m{deF%O(*v&u
zojo|(Uf~b!x(BMq+Jl-0{AHY}TQ?<t&|!E$(|J4~&r_wH&tpAE33#l%>GxQB@aVN-
z#GnUso{*^VHxVjFJ&1Ymfd@l9=;A?F5BhsBzyqEQx_QvUgPtA?tE_bAD#*!@ajcgI
zy*=o|rMYjv{dd8>9=zuPcS=8x^=AeoXIoj3hquNJnkfT0{RHdR*ugUFK{RPViCbag
zQ}_2h7~-*>!1LnBOXM&QhI=s5V?F8RuhP7M<wa@)M<q|Nxiv<4`1%oy@u0nFqm{;b
zz{`C_r!zHOnc%@h54L%*_=IDU2a`RR>%lw^rg-pv4ky!04?gtZBM+u#NoIKPvG7j>
zr)9~f3+Z{n##*0x_ztDSJ|}FmvPx$QnIlL!bw2Z8D_1kqHQ$5JJ@~?d1s<&Ba(J-N
zgGC;E>%n&%SXK*Pd9cL8cTnS#A6@KanaGz5ewn4S!h;d}O*Z~DjV40&HTi_CZ%!x2
z^Sww`d%)~U!Bv7RVw-EYWHPWHJXr6+W>NmpgAE>R624K8jsHYLNt^GTu(9sXB4?Z3
zPuR9(>AW5WXSba$!BzHPmj~~f=wxEI2YWn7Gm&m$Fa7F<y{w71OziVuKRw~P{eTCj
zJvbx$px_}cE<=akb%e$#<YGGN!LclUobH;%PkL}l__X~d)y{fw&VzUp#ZCUiiC;YU
ziviGs^Nb<a?Z0xj?#}#8@PZ(-7d`l0_#c9QX33w8Q7(IMg&U-6Vm1?3J-Ft<WA3Kj
z_Le#Ae|vD7+drrMy5J4Ln}W9lSv2s%8~@PvBzxC``&sgTJ-8>F3RGiyAlZkEAz3;_
z>m@#szMj$`LZ0()euTUb{7;aBnek;D@s(t4rZv2WrQ@=jh%@>3PT*%Om<pN5X(E?o
za|`A-kw-}0ES-ENzS(b5xqwItX2}b!Em&B1kt|73A;nCvi24a8-)G`VoMYosZb)&J
zFj3OPw{S6)67q&%X%l6#<lyRL@jwSxITPhgC?*^xDwzCSqocBkw@p+uQAx5n3dZ%G
zVxyd?iixTws+pif&*`v>0_D`1pWxcD-*lRAi7>@P;_FfqNutjxBe%vSo5-A2jCJpK
zOnlvDDs5FTjuQU2OLY_VOw>0~gH=knGECGoQOiVa$<`GtH`&IbOcQk^Oa59ids|!s
z6OqZbCMKGiXlPomhG=A>v5B#EN7;t9Uf%fF;<#qq2uZH?CboMTy(7H2i55aynrLmp
z^G}mjl0CQIq$aa%OtckwJ3&e)XY~%!NJqiD`_0ZKR1;AXF`D#JF3p5#!fQe|VVFqn
zlcV0qnp5hzJf`*Kf;<OIp9wz)Y=Xi7>z=6fUb);M6G0OnjB!!NImX2lHnC@MqjQ;c
ze_GUtnq5qEH8I%4`zE@{)cTm{Yofb}9wv@?i?U)*6TM6fUD~;~iTr;wVI#h0E@o-r
zw+@)^ndrv|aNXYD#6ThB159g^rWH;nA0$F;y<-SRVq%(!a#L+X>3Ak4nwVr_xQP)a
z#+V39DK^r?R;9xz6QhO9ZdQBi8b^AuCg&=(rhKf4cN!;-W8F;-rtv~1u;2SFn4QeI
zoA}5?vt6z!jS|lsukoRYQX|{)U(&SSn@=_Iv56g}T60F9&}|NwB=_dIawb-vZeoUs
zPr2h{*!*eZ<b_;(@HorFghAF1yS&8AHL=vhG86Mmd}d<4X<c^~3x00m3lp|8HcC3=
zbS^MKTxepEl%Cjc$(fc&cH4%6%T0V~qQ4gdyjWr4D-(7v6feH!wl$I0i;5Ske{149
z6Gu!OHSxWPl_u_#bR9CW%EW4Jf%dLV9IA=KD{cJh%0{v9TETUKKbTlAg!cbY$Oggl
zJ6%7SD4aX(ZnXAi8JRzu*v!3u!#>N`WD5;$VjF$(fVp3~*e<w3aHrrdLH53zUX;c6
z3fV^&I$*NsfMgG5l~Q<^PMgya>>PI|!F9~UaT701e0{9$2@@wxTsCpV#3>V}P5ffw
zyorLp*EwV2oajtDV4gLx;(+<v^qNe=rq}${#BU~kH}Qvw3tWyGZA(vYebL00KkB@t
zw|+RF4YPl8p%0jUnHYDp?yOTSlBTyNxg^;$2h6J`uF;;{I41r!ah*YrZBDOw<#eqZ
z-04GF-8ONPyI^l!rduYT2DBz&>D=_TWp31>=D#NHnRsmCiHW*7s&iELO+4UMZBpx@
z^uk8S9|<RUYT}uR7o6IeT7T%RpPP8Nye<bk#NU>7_>T^7xbC*)b&0R&NM2;~B2S05
zGndxQ?xl%ZlgD}gH=Z0`u)CaIlw98`mlwH(<Pp4ez@(5D<$PY`_o9Fo1-&TbMHMf;
zJ>e+qMG-H`dr`rQqFxm9;!Q7jYaj1LaW6`Ev9_Nh!Haus3Jn{c_+y<o77cr8FX=@o
zDSAVYcf_T=)}Q_G)}V|RbNV?T^65ibm-XT;uk~veA9|Pbg2?LBtmwu0`5h{GQQ3>Q
zgJ#)-W=5`DZ*wp+ZG$V?crajGt?EVeX&v{>9M!xa&Kc)&c;WP-hZjA)aCwpFMJF#h
zvy@}@qM;X!yh!#U#fzF=)bb+Li!?8?XSgz$t>H@dqK1&_f|T6d7~krN^+reP6dl#H
zwilUR)bpag7j?Y&>7%A4Yq;u)a*;;`CxmM-dwi;mseu=VrrKVo#$Gh>qO})oyr}+h
z)23cD_o9W=YUaf|985_U)9kgio*%Kb^rBT(@3E+>{D)0h)Ygl3UUc+g|HFdqrL=<=
z)5kUSHHvfRu1CTVzROiuU5lwmw?x$o%?m$m?uG8f<RMMHQp@mS+_0uh9wDX|&$_sn
zt+BYRk8@w#cFw{aK`%lytQRq<5@x^&v|;;95e_xgHLg)y7caVcVf9{L?MCIL2^?g1
zFB}gnTah=P%qtxj^WPKfE!fA4eXHB@^3m68U2aAcEZR@xTRtyH&4FGF^5U8of71=T
zc;AatUYzz~h!-Dt@wpdYcrlc2?8OW(KK0_eImL#1@iBwpbvx4tFGhMX%8SwL<+^>m
z7ZZex5gaQxPVjY1o5(RpmdcZaOcq>oqwt49J`$WNNS*#=U6B&5Po%qPG`^7X)to%}
z%=BWG7oT}C-;448xn_HDxkzG@(JtZ~FXl>?d>-9Egnv|W^=t0nb);2CWq}t9z1ZZ%
z&t5F@VzC$NIr7quC0;CLZ1>_Dul1U&WnSFAS7*8K>Icm)*}E5Q51PNMsP&Z>({i>s
z@vwEn_ga2Svv{%Ei#6N=2hH!j*iziV)>cY(l_2E@3Od%(jLTcKS=HnRFV-<2{MnXi
z(n0g-tR{(N+WaVE*x<!RFOJMgJYLQ5lStSUvzys0%|dTv*G1yCda=WcogDu`bDQ9H
z+Mz>rW_Nk9+lxKihFbNf9b8pAx<2}|#)gAtBv0GDUJzF<Yka_qgI*l>;sm#h7l*x|
z0+o+=L1nF@>zEhJ9u@32yE7$w8^z5k7dNegt6=ejlOkWPcRb_8Suc=jyX?g|FMgrt
zzf^t~JWn5fsaz2LtKe^5oH=Mx;i6>ul5Nzn{o%!*Ui>A>bu(?O!gNWp@tL;nFO@4^
zT=jy4y%4W^F|(N?o6o`<UflHJ7MID3M_xSk;vYImQwP&MA$PpEE976nM@?)jx}T-<
zK*&RGVUe@wiAY{>c0!(IX+HmdI{$g`Qsl3)N^L%?Q#O*_hd3W{_>j|w(ms^&A(s!i
zeJJch5g+pSFs7L!zYhg`$SXXb;QU!O%9#rKP)H=?%V*g<#mkTs^`V##2|kqYA>N1L
zqVUBm+qzk{>HdV*n#7VKFXaO(GW&*PiyN*ZvuyC;P08AQeD^Zm@}ZIsm3=7ZLwO%6
z_)yV@WgDzoY?JtVt2iRlxhA%^eW>CCM_APdcKTX=cXM1dX)wFt+StsY_~4MN)5kyE
z0fkg^iG)?$K2V<$@)RFZeV8{BpUp&?59u_;NE952>OR!)@om-kv?nrrsOiJeAdUr5
z%ZJ)NEcIiVADKSX@u8L<wf(5;Lp>i_`Ow;j`aU%9p{Wned}!!HBOe<3(8P!BE$bEk
zGAVl%?czOW8LvAq)%izpHzn`*(A<X>KD6}V=0P**zBBJ3v%(>>;UP18$fVlnLuMNv
z+WO%4A>czhAKLrS*$35!4n8b6WTxzMv)PV5yvvUEmSmMq)ST*MYPc#T`w@5F-;y-i
zp^B!9+z|8#nu1<IpJ4iuR8|c75b~jvA8+`rrb^vT4EqrAA?icShlirs#fPpwob%xq
zAG-O_-G@CQ@8LsFAAay*y$`*7=uIE+;Y%OZJgnEphlxH+61BcQyyrtdANou71Hl1;
z0|f^O4i<c0kRusF_t<HTaHtQ%d>Ec3ALGLa;Ufh{Wywc#z@-~ef2>Hx369Syoj_N~
z$YAMYAEt0+>3BYTvd#UW53_yH&ZmAPno|Wo7W~AAY207JX9~^`{8W%l4XEE>mT=mT
zS*AHY%%z+8@R>*!WXb3I@Oc*hLP*YEt*I^aVNsTRu@6hK`1#{0#@qF&kTfathcRg@
zME*`i?Q0)O-m3kT4{y|R7pqn88y~*);XC@(qy~4cCH?A2W0mhkd8H4lgsjeLbBzyc
zg|Ew!yjiH>k3MYhVXF_@eAwv2Pd;q+;g6@OA2&(bBx*kkelXQpX=@T2-y)?{*jYTe
zc_;UFA9nh%i;J5*ZHH*4dXshwnK&u)+uljczL=D`*N1&R?Dye-4`+Nh>%&1G4*77x
zhm$@W_Th*R$64AT_3_2jB~6o#((^Z@9-~2;CVgG8e!Z)S?3(}0cZz$bMm_SOTarjl
z`_R{GkuR5|Ua6H<lW#?kRXEQ<`tYX@=F-$(efW(=F6_GC!$lvs=>oTF|Lz0L+jp1q
z>kg@Z`EbdH+djO!m3Y|)yj}k~C0{3A@!_fu*XZ8W(yo~9zkN7nORhcKx$sm{ReRbE
zZedYl7q@&^IKf%V!H*y~|MB6D57oQ7@A~ks5BG$#m-{|E;5PX#ku9`nk~Y4uiyJm$
zf%B0Mk9~OJ!&8P?*?`Y{c+QCJM_xa!o=<(@gUyd@!vEtSeR#!zoloVEvKLQHE}oLz
zk2qGmT|1W_12?AT@MFbccTT^xBJ}F?T5kT&VCLKPbNjKyllE17YCb>m`%%P?qJ9+c
zgI-j~kHUTw^n>#{QoKGLi9WWCv8YlSH()V8;{7P@2N!}y{&jdm8k{SY;J4N&zdeoq
zS<(;sGgIQ1Nu^~LUr)?T@}rC&@Z(L9aA~UeQC9d{elS>-^P{{UpP23nepD7oML$yB
zO63?T`T5gZ{r<Jn-WEBPIg6@Nx0)Z^7Is0!4+qoJRHq+JV)ZC@`SIH!Gm+ydk@Db>
z>GmV}R&DZRwk*|C{ivBWo-{ww{m50&Rb8-#AhQ`lt}aQXg*og@KkE3=(vMb*|9;f-
zqcOYlqrM*v{AlP$BR>vaO>L@K8{|W8Qjx>v)Vj%)AJ+SCGe6vbW`4Ag9^dhU`^b6N
zT-d5%bCJ9b`|ljKf`4m2+W0Z{usKkQ+WHalBkV^z+S!i|esuJsvmY7Jdeb%}z3T_D
zlOLa6PbHx{5mhOrg68KNt5S783_m=6n0}00n&}szSGZ5G+;@qOlam7?4+?&A%Kga}
zXG8|@o?z6Em>*sI==*22{7<tHy9)2-M|VFaFHP&=M{gnIJ%#l0<L2HptLU)VM<jje
zazm0oc|W<IwAo*9fFLhbocka@221vRKPLLE|7ssXTlq26kGY3UrqM!%`7zv&w_2q!
zjo=i7j}m-;X5!XB18R;D&9Q>x{1`7}f?%jx5)~%-vEi^e*^engJ`|ko$45d~G*!sQ
z^h`hA%bqe#aJt|OK?*+=GE;CCo$cpj3g=|CFjvStKRy$3U~BSxKR)+c9~SxIHD0$b
z5VBBkk>Fy%B~pc&%l-J$k1+v^4Pb>IU-?lefWiTM?Z-EM?Dyk<AK&`%9ewo!=RUSS
z%zgH-`MqRU`mxH7)qbq;W1SyA__5Z{*ZQ?nO4MlB%tbsjDsesS?8i1gw$q23xi-*M
zCZ_)^e4`&f`SI#P=S_knd&ebimZB|wY~>nFOwZTGb;jL>6*I>t?(kz5g&B#=?({=F
zR*+rn_G1q>@Aw>#51Y*H^@CVsa$Am;f7Ni%k3+Ou0J#D<%*}4aF3(jz|GC3`)Q>A%
z{eg~Sl07bX!jF@Fobuz=O!ryA(}K*N5xbEvofF|Ng69Q)Wk3*eL6ABZ{rKIFKm7PJ
zOLEDNzp{9NBj#lW#v|t4O;&@pjy9%ie*Epnbw6(Sao>*z^y+=in|{1~#QcX9Ipq@W
z+k$3+WbzOHPQK&ET|Y>e{`KRYaDJ$T*@u2S^1~LezMt}#(fgwFgWK-sLZ0~XlykrB
zuAZLxOeFhXIo~~#{6d8P`N20Vz2u@ucK4N}bvKf;1*~DPO7;LM6nDi1kRxCXFMlWZ
zwF}PN0UTLj=U-NwLQ0;1^|I)^g82mV3l<P8DA+x(eYBRVNB~6xs2M=50Ez_=AAlnO
zX8^?mNC;Tl^UVNC1ki4%r&ItpJEWHs&g_Xt?l(kITChxjPnOb|AmsMJMr8wdD}ZtV
zln=ljfFhkPd9w}&R)N_c>r@P&l90-rmyjv}R29<bi23NlT-AhAbKZzL*SnfI)+B%Y
zQ|(z_B)|W2vMYe30Fnbp4B+=t8E(OEo1~C4r36qzB;=_9qy>=9mRJ3+w7L|PnB6c#
z$e+b(Qmu9XnE`kLFaxL)u->1*M`X<cs2f1N07f)OuOC3e02&3*K(c%|FrsCV#=^S}
zGw;u=*+e)sn+jQ2vG6-G<>oYLzPJ{`TL!@KGqnn!weU6pv<-mYnQ9k+MoX?vZXdv|
z%sL$c7+u8PQTV%p6m|-rvv4&_^60cjms*A(TV@O10DJ-LJn7)h@&^zIAQV72fM5VL
z9aC!c99I)el1Kp20D5x10mK6662R5G&GiWlSodlE=3Qz3JDK^Hw&)h%yKXYO2l$G@
z>OG|8)i-PO4xmo}BPH86fcMyV07C+plDB!k00ssyD1iQw9Uw^g*;aK~anZk-g9Cg^
zYG?M+u}4eFKL}u00Qqm#7)lG@$)paE+2JA_5x~|vnN%JneT@!aVYimd>PO6R+*twq
z7r@H^CIm1sfQwwy048x?1h6=OaRqZu3E;y3<_0h?fCV#ZeiXnb0nD}~lTQ`N#{rZM
zwvBIGYgz!)1DFxOr(Bu<BCqN(%@lIGO#>^NKZzA*OZ7PcG~ZO8+0O!)AHWxEikjWu
zpnF?Mmb=u3+6x279&ck>#5QkL8yj!SQ8ibkPIYen?pzYU(g2nPusnb-12`VQ3C8~b
zzT$iX*v9xDz&8P`=Qa%BTMj#?eN_Ofg?tyl_W`UF{vey3Mf}VeaZLd00{9_-wNk{7
ze^E%y*E-bS5WvO&HcRPGf<Fsx5`3-3XRxfbMI<CF+8)4;01gCjkV_!)Jpt?$vP*Dx
z0IvtIFRK>&+MmVQ;Gryjgja#ADr}tTXaL8uN;%+@0h|ipyhu(9p3N#f6X3hDGhWv^
zC&FI@Il^DFbbbrqg7DXE{t>{R0o)7VegOaWDft&$XqT~iMaHE7E(dTW03##rY5><5
zOK;eF1RQ?{a6N$A0qf7JZV2)(!^v+7C%MJ_Qpb|~Ba%CU{M)CyY+v}4+jf@LeLv$)
zhYXJPK>!cAlpiEM3g9u<rBg=Z=Ov$rWO0X#r(E|ZanI<h9WtH^z6juMo*c}+3cwb`
z=%5vZvjveoh%P~N4dPI{jJTjR+Wf>Iat4u$!d4BKatBdtP`!M;Qu2r-p<7DcAc*+{
z8&!1|2%=yRg@Py?L?CEgd0R|!6bT|jcu`gt5+6j>AgTpXoE3w}KhRMkh>}5+3gW{L
z90P|r-Uwp)`&M`<9fW^V&3?lzUM2_x@usv;Hi!yBD1S>xIl=PmqIr>bDwd(VqDU$Q
zQ8|dWgE+UoRFxna{+Vl4>w+xZIniMcLJ1-<2scMq&EW{b8H6i{qe(?;40KR3c#5O;
z7{}QGj=_^0NkI%eVs;$iNY3gvMM$b(S`g_%steW-WG}qp*W@E0X}@+5?*!32h|D1B
z1o8f-j=CbRCrC}|*O!V7f|xwU(J+WcLK+KF(j<tcS-e>g>pyZ(*dmCQL39k_-5^>8
z(OO#T5JVdx?FHKkaz^cFjS<$=Do!X$JW(Pyu~QJ8rC&|dI%&mb95K}(cFb_RJz3X-
zFu0mi9G)P&LQFwQ(h_PAeUkMDakW=_W`ojHNH844sWDb}kszW$#JK2Q+udP~Y-1e@
zd^Uc};=3bew;;L)(IbeSLG%lve-OR6(DPlrx%9o`$_%bf-bW<leS>%}2ok3Cec}di
zQGys6#4y_GALrg9CexrG4nIsBObfH<MdHAWhC?_QYGyRNa>OJK4}xl=g5dkjMv!k#
zW_Dx{BgUkqZ_bRo=Vo?H5MzTF7sPnFy68^`Vqy@Rgiqos1o3?kD}$Iqrw!tZAQrHT
zUz{HW@o5k<gP0n`$3g28d!GnS3t~}na&m&3lIcOr5Fz>ZUnk89Vs;R7gP0e@9B!Y_
zoz$$Dv(B)+&OSLa;vZPJe!lawAm&T&p9k^uzBO6mLN*)3iXgrUVsQ{lf><8Jmq9F*
zc9sRv;*gWQta#}x=&IlHMr}5J?x*@}ZSKb@xBDf%Zs%)h_8Y-(gZNGeUk1f4Rt2#-
zh&{j8Ctnl9T84`tHUzOQh(A8hTrZkC$|e24{aD;Zdp0=lOwOG|Lj4<y>un73kFP+&
zw7GiH&!WFskP2IZ*eZOR;C8xP5FP$X-YMBvyORewl6D0_+%33AaIfILAod4wK=?ty
zhYbr*bMb$vho$-v!E28b+0pSJP6XlW3V&Ceq)!I%R|J<LI32{9AU=y=egtP3BDk6n
zd>FAp;x9o|3Zrru=Y#k)h~FemjtyBw7ldCF{GE0P;!ie6e+yy4q_j&xTn?gc2=zj^
z!hwC0$n=kpt3g~7^0(mitkN4n+!TIG@U|e|2gr(dg18&Rzd_ui+lPP<?g#N8h`b@>
z3*n(?+Co+@kAy!C;tAa&h-Z?08N_os|D5_Sg7{A)+b<>aE!J<$Ps(}Jtf8c`;w#3$
zyU8Tkq@C;`#0kj}LT({BL&zlrW_`Y5y4jN&c_iEKR$_xHHS-HECRjkQpkSd83Wrc6
zgwYQYi-u5{?^G_6R=+@_)P*U(ZA*z4o#KKCA(RNAWC*1~cq4?;A^dVBvD?VZ%Lg(?
zJV<W8J#*2r%*cb}smGJw452JPJ{m$|2yaQ<s)FSN%ZE@Qgo?u77Ocd6g=|^neD$Z(
zdDN^TSx&ai=+tV$?ShJ+BLrs%wxLM_in|hqXHv~A^6G*~g2{p@A%1kpGJBd}dI%pL
zceXrg?%9=8`>MN!2r~q0hEPjL?GQ3Us1rhHYv!mTt|#kKSpDH<%RTCcus<Q)48a>h
zgAf{q(1>bF-JL?%u_v=}2u(t0Dw4K>%>>^Gp}CM2A+#3KGK5w_Mig}I-sxluZ6wPt
ztdX}9-d?bSV8;;N72+=HqQZh@Zg$r>1XcRg1S!!&FtWHOgu7Fn6mDDRu6W7m3&9^k
zAcSs5&EA4R!H{5BFcLyEgjfh&Lg*=yuEY?!htNZ^W0xlV`=PT-t0Xp3`V-6ePj@8u
zk|I9lN;>22BfPKRdxHH!=r3ddZ7YOz2MQTlC3$d`r0M5rLu6NeAUITTnBZ{15rQKH
zM+uG=93#l>eDGWMIN9~%1t)|sbFq732$Q%?raKv<CWkPEs~^HgqEIl5sUdtE!rl<}
zg)nAp>L($57Q*}xrb%|X;0(b}1!smZD}>o0%n4y`2=hYtzKHv;LP=YqnXb2!XRLIy
zk?pIKh@Xe>MF>BHus(zZA?xdPUkNT0Tol6M5SE0nG=wijLWN}^EEoQBFp1gnOWed2
zA{p8|jr?oj--PgO2;Z^m5Y~!hWeBT6SRKL|$==xHOm1V<wbB@?sl;F1>!fJFOm~}U
zNk0nTBDg_tqu@^=YzpCL;hP0n*S*!<{$s1Pts>bbxSc*0!p;zOg|It>Jt0(|?kqjq
z{Z()G@Zo9AC#SXPomzRCHRk;x90=i22pe}~9t`172$vabLpU5laxvFA!6Sl4LpT<~
zap9*zI32=?5Kc<A({$&tU`pd&)z3(l70+_}Uvrb_IqMLA5&8KLeiiat2p2>6UHF9%
zUOlgOV7v2=5dI9|uMjRVF11Kvt&KY~o!wGg&C*VN?!4E%Iwe=7${oRLf`1EM58*}#
zH$%7;!tD_LVZf|ywa{%>z2mptM|U}Sdf9u;Ny%N&|5xxHF99JuVDP6A&RP1MYd4s9
z)Vwg!d2_4#aR^UBcq*338Mf^6EQIGFybwutk^C3JOOBs`E{tp<p<3JeDfN=;jXv*e
zcOm8SrFwB9&mmatqf{#75}sQyPZ)W_$R|917zM)k=RqQMvK>q;TO?_vnL=JDjKX0Q
z30qgp(t<?=iwVXH78gtiqlA!>VU!BvjW7<MP3978`7-IVs>y45rQ9u=Tt*Zi_@-dl
zFy0bUE{yVFR1jX|Lbi%R*y%Ub^AkV!C%qj;l`u9vuuqJjs+9gISWVC_s0cd3aE9?t
z3%4tbT4B@<qi8l)qM%zaNiaE#6d|dCX@cotR1c#@7#WhSDR{Y1O}4Q7s7X{4Q!~S;
z!;Zq(5JufF>V?rKjJ{#(?}Y1z(K3uy!W)FqP)H-e#)3`4Xc|T{4lj)6VYCoo&&lp}
zGu`V>r|f-@bYW1^Kv%LqA+2>7ZNl(|;R~Z}7~>1M-W6;o*j})MAd5P3ruj3wk4ow!
zlFou^7+M&57)BVLFw8K{rY2GOLV0)7dCotJrI0tSYf1c~-$gJW7z`sMBrF&WBO-*#
zGaDzxgjb1kGuu^oH^J^<^a!J87`^CAGtzp8F>+_7e|8f0{;W8+F)fYy?}gDXj1^&g
zKRc~|7z4tX7RK~228O{8K#vj}Bse&X_rn+>d{`L6!}uVKp_1*Ho^)V}llmhhOEQv+
ze$7o{EKeei4r5FhW5XE7NS>uLK8%TBOp@#b5;KW=e{vX8!uT+ZkHUz4?$nQER_>V+
zzdVzTbiR=|@qWELWov&dRX!0MeA4P=hVakAn9mgyK2va37_({fxjE;AF*l5PVLbjR
zC3TN`RZsVpf=N&KBG3(qpNl5R(lEXdz95W+VJr$`aTrUoO8L3)4Gr8ks=AXNS~Fr=
z7RK_d(l5E1ebOlWDvYng_(trxM(|rfn)f@BFjj`KDvZ@(?5UrR!k_bJoI96D@~Cm<
zTG3o5_=DhjL6)|=lUlz^?Tuk<4`W9dKZW@L-`bl5e-_*<xJ7WQ;5I=^?O*3kZlXcX
zV}iQ`cMI+j+#ANeF!qOWAdDj-q4L2n4l!tituIp-{Uwohrf^^|g?s;~=oBkvT{Vt}
zaUzV9BKb}5l;G(w&Imah#xFvseD1X*m+O2OzY71Sv0OTrC0&s0MZw<%{}8-;B9#^Y
zl1Oq%@NyVDy<7?7DtEym*R?PjMbJ26@xQ~k9>$F@ZiaD-K`(;R5!|NphmkviJQ3Up
z<I6>f&js%a{u{=<Fz$05CHpjthhaRTpM>#5BtzCYo9#{xPfh#g$E5v?InPoqR;tNH
zo>8-X3dsvm`!9@_LSBWDJ%YFhY!PIOSlzu>HTB-8l%hjYazv0bf?Oh8`*q5!2Uhhf
zN6qVBrtIR&|3zLzFrQ$4!2%H!jG#~i?G`5%j_^-nN-b!bI%kFRWxm?mRwNY_onnIV
z5fqOgA%YSSl#HNM1le=Ac;-L0%FQ$X{f!N>A2UN;QxE5;QzimLkQ7031aFGzstT4B
zd@F)-5tNUhLIiJ%q+$e>BB(5!b}o0!%vB=eyW^?k^>3t9$&y>=f8q8Bln5Nc69t_S
zxY*-;XY<3E`@Bi(jwiWA&cAYDBPqf&1ycpnB1q?CBd8HUEs<mh))Z_z%KiLV^1Zu>
z-)(c(76}_^U9Dan;dKS;MfkCDG!WkKwWNsE7t>d7CN+^8(pUstB4`@H*TqtrMet4p
z%_DqWp_MfwXes1f!B&E;1=~c>mdg=A`v^Kj&{2dX>!s#yk&%0jvuphf-YGD#kxo+7
zSx}8Yi$IUSh`=KfTmAaf@!WRLFPurTc6mLo$bEu-!9WDT2tpBrIfV$KBHZxUS+PcP
zoxAQ)C)~FdyT2@$!YdT7%UvVr6G7hyy2<Ri3-%D~DcDP}x8U6R1-{uI_nz=!g8c;h
z3l0z*7{Q<j21oFI1RscGNCfUcw&Vf-`)b1%%~FSoy!{gE0~W(07!kopk&G1_B{*7;
z3S)$%{cRg3WW3-6!O?}RPYi^1J10fZsDOJiXT94w|7GGw5lp53zmYUAg1;|T`#6H>
zEQ0Hk$p5}NJuQL*bu;++={m>E84(aa6`UEttO%NIb<P%yh0^9kFgL=RrZnmh+2*xp
zbv}>aiwG7+uq1*75iI1^@aI~@#X4qwwcGmgGJhK2fB152OSz}K`M!)`;9vQcMXcYO
zmUDy5cZEw8Ca#F!E3Qri-$bx6f}bMzHiGXWc(Ty7DuVBYd~(cWc4Y(ugb-JYoWeB`
ztc_q@1V4!6N5S=iUy3qyHb{2IF>_M{KlABI1m_~y%r)wnvNwW#5p0PdqiVga5p0X#
zk7MTc2zGH7^h((g!A>fFoWjz<*WE9VnH27hV2_j*-jT%Yews0YGTl?oM6kb0%E1WY
z@7F#N!J!BaM{p#9qY)f`QTv#bo;~cm_R9IHOUiK(KB<_ZUvX3aWCZ{8O*zG<KvJEO
zo#o9(pV#X#IOUfJ&PVVkx4;#5pX`~xa<t9Tey3j*P5v!{*}YOOM8I?DMULUP$>-sJ
zMDVh9{kTyLh&#Kca7dRUxWbs$1#w+)HG*pq)QzHE6n}GHoXJ)#3VRgSX~2`t8xh=$
z;1+{FTZ`h(GUq=G{t@JjB3~4DBltIh=MlV!;2xv&#|<Av@L0%w!3Tm51+zb|eWX*;
z6NaOV<Y%-)r=+Kx#gn9dvz>j@lRN#C^dHB`s2;_vS?*U6BtCIwk0LG#TNFnVld?te
z>BJ-sfLLLYdsLa^w0y1{Q8c@sm@^7iA2lT@x75uO#XB$DOw)?E^G8u2ijq;>-|j9L
zMWHB)N71ENO5rH~#MjN%ibgT0h`WdgnJp%BWKnz+=ML20JlUNfMI{7T@m@Q3DbX4B
zhxUe$(t>x5Bt-FM6lJ4$D~bwHR1|r+D9T5%wSQWhkbB-yw|i86^0h17A8*WLca@^3
z9L3wBP$i10LVQQv)G5*08XlK`zX~Z)IHK0yTRNjijKVG4CHQ_0Bt?-dyk-<BQKSm5
z9z~jv^eCbe&D7&2tB=cJHBv+5BpFe(I&PMjXcg5GVQs-o!8(FdCYtr5Xb?r47~00r
zFp5S|oQmRf6pf>362-?+d=f=dE<_Yvqv%HCN6|bAH3}_?7E!c}qJ0z{*jE&FJvCd?
z;BW<wo8yn0ZKC+%xY;&}c2R6TZjK9AXVFi4Jsm~o-6(eEH1Bq*dG@&3DT>ZfT<V_I
zynEWy<7S}~rXGb6MJS4J6rL!Q6Q(x`pHwjgDe-ftJ=2(iLIPBqP><OSYdq{d!hTPf
zG3h-joLP3kk#rGF4yJn)J)#&B#n>o%M$s#Z!BM;)1qazXivCdyh@wvveQD$q=6g|o
zZVVhSd7mC>OhZms;~yAB-pXYL(L~$Ju+3o4H1;wiiVva~5yi+Trk^l}MloC_I4p|q
zWf;U=Crs*dsO*kuR1~A5xNyQ`V$rxL#z*l{6jNn96QY<D#bn_Vxdh$Q^iDOWM8U~^
zDE6eOE3`H5OPj1h&cyboaR5=Qi{ghUW^k89F+YmWIlS&^Gr4_EnzMz^5}QysCyKcu
zpU0qa()>(#m6ImtXq+^^h+;t$Uq$hC6bqwR6vc8`_r<c-%Y-k9VyU#oA#spII>xY*
z7JeDU3ekC;{U(ZUqnLTpTouK4B3~)^y&(13;A{QWQLGWo*S1<41tqMwK8hcs*c-(@
znj(sgQCvJ}?xdBX*c8PM$^K0Di(;Fs-4-z*8`*QxWc96*{qCf>T}ru{6f)iGnYJs6
z-BIj`;@L@)ZB{#F8ME*ybHAADxZr^(4n}cE?0+<hYCY2qM{y(ysx>@ia^kGQHjhc;
zv@O$#C{9XU-zk&XGf|w4;*A(e$8au+U!r&%#giz`NAW8iCW^~Z{1!!Kj+%c+FBgPg
z6r}KXAp=jDf6_NjnSTjVPJV?eb;`UgPJ1<qYqZZP^KVA}C~ino%-)RRmdL5Oyk{Em
z#3_^Ve;C|YbjrNT&>F>qDE_6(UCMrs+o4Aq<-~`=OP@9$F^r$K=0Z;LlopF3PYiiu
zcpk-zD00M*EoM3De^I<*z>ndj_$?*Lr%e`d+h!L9O333xLc(lLk>`pbcMO57{Z4tl
z81lzZAclf5YqwHD>~PvF6hq+{;$tWt1GBV$kr;}`te{jZhVCLEpWZz!A%+qnFBQX@
z?rHW**(om>!>}wJ&aq4kh#@_O>M_hXZN3>pxfsfGNT<xQF}xMS+dZr`C02-`Vhqk0
zTrpINp>hn>Vz5&|bZFZuLKvOCK5bTwfynNZn6(Y*<PPfhw3_<ivWN1-7~C<mzv)R4
z`QFoJQVc|<WFgc^6@@gx4=!1?YKU?JhVd9OVyG$ET7q>2YsZi&q)rUKpEj9ZcUmuo
z`Xc85C}C<O*>_@S9OIv)T9%}+sR)}1GRx}CW1t(ii1BSXmbW|<H)zFmIb*htS%Gd#
z&$M<NVGR3Yc(^;cLkt~h$rwJ3;oTTI#qeGX{bJ}GgBs&2j1Y}Mi&>{uPYk9IUC@Z3
z>KQZRjOk^MA_>Oe7ZMO`e#WE%E56214B;5OS;Cm;^oXISkS;NF6+-=P^okgIpD~%3
zWqRFUFAB4C`oz#Ti%&RX_K#se4C7)LAHzVpPz)nu7$pjWV;Cyr{TPPCFh6SmAIM<X
z_%JCQPG^o`^%--7AmyX8+8-n1c|DS`F;Iasnjoc<W0)djqTnP!4xY*%#_)-dj|3^1
z8pFq2h>7*ccbqY&WhqY=Ld(pIVO9*^ahYP69mAX$7RInhO6PLqF?=4wysXwf6T<1R
zHTL*L3=2d;{)-3~OLl1t%VJm}{OH9RR9-IpYr$J*%rEIDXUr8bd?h5?+5g%68-|Fp
z=C`6ovNDEMF>H=u3+*GqAGztcPh(gc!#a_$@gIb|UbywbOPw`0G9U=2+NLbcpSgvz
z`r=%+#;`4hT`}yAVY{g9%+lNu!|P$Zp6MRxj;p_q`z}j|gMV%I12G(o;ZO{RW4Ic_
zwHS`Xa5RRC++U)6EQYf}j>m8!hLgfiXSH)m7MG67zRtwZN=A5&CY4Uli(CE{!>?KT
zp|j?NEIv?_|A^tQ7%s)|r^q?w$!E>WSvpr@c)f71=kj+9*QMxL3^!u98N<C8?q})T
zis5z)|HN=dbp92*E68R!-`92~r%yhJ;c*O4xT#}!B!12=zK|jPkY(qmSu6ECh8HpX
z$FLuRt&8Q)udVk=8t3%6rzp(U#o81kIl3Tc7c}i^-Jvk$>VlVDES|dy@^nF7;pMxa
zLKox{p1%tUbV0!`*0;=xbwPX=6cTyiE_l13t4J68A5-4}<wW)U&lW;c1d+14A37o%
zSavtCz%H<KY#_aEhF+4)Op=+&B%z7G7f?}A6cnT?C{+;^6~P7wD!oYWy~rYnUHE_I
z^2<5@bLM=`=iPT-yYIgHre#u5lE3cHI<(EHa8#RikN8m2=iKXia$;6xABa^1tNKt)
zNSYw!={{r#hhTNV8j0My6LM?$@WpE9nbgM>3hMe$&xaR$c+tl%qNBbKiVuT)c#Na=
zp`{P4e8}{{?ZaE+vZlV1-Oz_dJ~U@fe8}>lu@5;u<ofVh`_`$x4vTu`Wc$#sY3t`Q
zn~d3)<?-?BE;)HVH1UDSrh+6Jr{y%0tX5y<P$A!k9UF2Ae0+wL+y93wqIS%|);<*a
z@Qe@Ld}!lCTOXeGp^J|<NS!|vTla0j6F#)(HRH-A9RxcHb`qqpvyjJqXf`{G$%vZs
zqz|1k20SJBU(MX96+D48xs6YHy86)JWL8BZue%RDeCW#|_z*70DHxvH(}!L@{J1@<
zw-0@M*t0vAZ-y|rZglS2Pjem|ncLro0n!BD5-Iy~Q?@lwl0|}EA4V)~Lg8Q^hH&^k
zjHS=`Fw6&^4}KqpbE2E(u&q(l^kL+Truon1jP${1)_U%grskEb(KPtiS$q*C;DgFp
zIF=pqLGxi--CUg(Ytgh$pB!=?K@t9SH8<?T?<bqQakYuzgX!aUha7JC5J_-bNK`N;
z825oUlc_e&hw(m4@!@|yOz>gV%ItH?vM2iREWP)U#tYA75$FHa<T;=7uhWx!m@I_6
zMAs%$eVFD0f7-xbJxupOe=X~IANV2xNoxI^eWg6)Gkkc7_VnQ=A6}*p`0#-bANnxU
zhgW@g&xiNvOFqo<VW|(R+qHk_-K^JrSm?tdAIRSjobAILA(XsHn+TsvR~ef%&xf}q
zIbU#r4>QJQQLXd09^zsjmaw69S?~BzP%SUzfM?f7t)H9Hl#+KvzG7#}G9NgVH=b^~
zyhGFFKCGY-*b^UC`tZbt?1%0&`MrBS3Ex9l!>kioq1jn;+vhB)lT){4`?WrN<ipoK
zeB;A9A3kPPK78gw=U4I`k7ZTanez#!+lMo+XLWcskN*(&Iai_&o9GD}vNq7jKjch3
zmHYPo)?YH7Y|7%X(T6oVs*rpoI#lDkN#FYLoex_%`##+Gw#jBjj|Ev<=(;nqI1!!a
zX7TOxg-e_8FLAf|aO=n1?LG{gpY;R#zaXpW^I60lKJ4`2ln<wU*yY1+AOD^SKXbjD
z%-X|AxskJ<p{YU6ULW?c|1)y=2XMp#lC|dHTq+#$;jj<Kd^qmI5w6f0`3LrTjtXg?
z+_>V;*?s2ao}fb>Qfe>HI!Qxa${seQ=?njPc3ta##)q@)m=CvoIOoH8_Wx%4n~W0K
zo(t?!Jog6g0?|+2&bq|#aw41LvLvqvUKPA1cwO)p#@<*K)r!SS>7tC8jTU76O8@*V
zyL^4mZ$8}NqM&p7aP5%d{7j%$zMbs((}%w}YG2!beb~P!_irEm@nLasR=Yp4m`wjW
z>)nZ2|M?JnCTIGJEYCl@E#^e^5`HB4ku1@^nP7@wsvjl&aQRWnk4OEe@5d~6yV8E7
z`H?QXj2~r%l=I^OArJadNl1CYhXgAKRup6n5Bu@g+H8_XL{d2+ui{751g|Ef^D-sF
zkH7D>;Ja}3{DAa|ZdToo8h()QsOd+o1g|ZmjvsXsk}Zp}3(DkhjE_m#Ou+_%W2)s-
z?)Ibn_a2glel!w!mLMgKg=G7YBP7=kkB}yQH1#7-I30|d^g!a$yDgfFu!Ug09|b~M
z3bqz(<wuJiO{iQbNs=~xv`z4KezZ^U4njH#cJiZhLeBU1oEH6fQY23aKAp(z;zw8E
z&j|ifDz}@E?t(o8d-~DKkKV%j_%Toj>+I`CzXb2^#{l7*ZaG6M67EgpDt-(S-t25H
zbBFpd%#Sw$m>s}yKSuZw4`56HBSmMHAFul{%8${K^!YK?k8ytZB^eM@1vS4De{?^B
zeuVr8`w^u(eb&Sfd9%q`rr-Hn)l)b7TYfMZ5#(ND3*m0g;xV@F#~43aFVEU|z-xW!
z{0HlJsh?ea$&U$sJnP3qKc4gB1(8qkW3nI9g-=On{!hq}UAa@~OG%BV3C>-XP5!)O
z9a^8w3SSgHL$FfQW|X`v{1rhaXZrDKg1;stzeM9V{Fu!t2%t{@bNqPIk0t?3bQQei
z$6P-y`*FpOd49a@$5ubS_hY^v3;bB?$47oF^kb19@A&a9N8u`1Eco!B8RSd+80jh~
zdstcO$1*=w`?1E4_xyO@j}?Bb^uyfNe!1w^JFK*Ew__3NuM$b8!wNYSDEvSqANp~>
zT1u8SZnw^lkNx=4kBxqOA_|}T@dZcZ$9le6d03&^XCl8}YK%xI+#o{MyvdKR{P<2f
zd0*#iKfaOVw|=lWcIkcxHv6&V|Er41+x*z>#}Plj`Hvs`_|cEOe(dw(Cn>(ekDc^D
z8Nx0<cKbnWE~8@yc<d1g$$mc$NY)`g4oVZ$r2J>8=RQ9ye3jI8%#Y)KobltV2v7KN
z(vMS81A9e_v6a)3_1$6RqZH+wALsojp=DfPL8)QX@=|Z0F^`MvAsS!eS`f)qKd#Ze
z19&8W>wf&g2pm9405|+7X3+EFA3tvT@!MhLHqnn?rIlM!$$jhHk%s<aIOV$V;}03g
z14k6L@@Hba>>+FT*N^|G9B?$*Hwy1cJ=DA>rKm%m6mXhj<*8h}u7c75lnJ0@0ImQ^
ziDZfNoaTx(Pc0ijxd1APoRS9ucrbwSlB{>cafUnRyblHb&xI<8oF-zm4+lU)bv~k0
z4xmZ^kBR434WL@Uu}{4K(u5#@>H(xn!3;r`9eG5l5kSoV>WWS+k<XPOvute<)(K#;
zNY)EJ8bE#N28YI8QP?1W%mCa0Gz{?W1G1%(Mq(URk|mXpaGG`<QE~!~#aJ*m;5d~>
zddnnvQ{j05Gz*}404)M|MkM(G6a>&IfX)H544_p2Z3Ac*Kx;8?q11oBGpwgg!bEJP
zy%g^lKnKyeKU3_<#Usk&0Xz}F(*bl59ro?X0G^TxX%^P=?-7OioS?2U99n?FZUJ-;
zpoi4fGf|NGy@XSNbKO^X?5JW2=@&qMAp-&!7(kJ5O&anFR{|I$WUw^k3t)&Ohe~po
zaMnCr$Oyraf};dS)8UUgee;WcK#*NhIU`3M_s|0f2JrY%B@{qd+NG@qA61M5r$MX$
z*x`tvEy!f_J`sHBs4_O-oZGw{z`~=-IN{?3CkQ^v&IIsW0F!9dl*aQn<xURZ$``rQ
zBw6*n>?r~KPb5<V*t0)t>!xzdogTpR0lXk`CT9qFF#zUL=jX!KFG=N7n&-YE?amZ@
zRq!>zS%R+%@|Ae@ZB77h25>^fNfmDeFgJkT1NcJ}<^`~TB!IUA&U<w8>48aZt4}I%
zQGmZwbM9Jf31CS8?})<Y0H&PIeK&wjLY4-wOvrlytmUE$;QauWi)2Lrs{&XZK-rnO
zD@8)GCV&sP<ac&pC2K#(ZLy&BhXFpvZ^DCoov5v6Ljm-9!t-$epK!1uZ1Gl3>pnS;
z`&)l5$qfN~DddX)X8xJO+BOC-qj&&G`1{t?+c=W10vOOU`D;=8M)2DJDs*s~{w{!v
z6CE86`N&UYwz851jlU0ITL9Yw_#uGv0bB^+#{hn!-2ynt;>iU&0@!#|*(H2u0D(`u
z6z=BS1+X`OeE}TcB4zv+WPl>4kjUd;06!=Ap#TmGKa!9f4d9sY<AMi|I%Q7<a5{jq
z3|7aK){7eda@4^yT;q!xmpP`KWA`2`XnKraOe(k-z@-3wVPFs7vP{{P0It%_j{V=A
zw`&3Ce%*D+8hlJCwbEN|zPC7ln{;>)a+ZG$;FfUS)1v|<w<S4__kV;~Qrn*lVhlSf
z9#`>q0RIF~TSXn!`C;b20aR5{O~ro!+~w)nM$fagaZgAI6-g?RRivnRP(^tasVYjU
zD5LVT$#AK7`L4H=iqcZg^T(W@c5Z1^z$02-DaQ)WdmoT2%E@z|_fD>*Jfxz6ihd)S
zS5{F`#ltEpsdz-x793MPlS-&xy-dOOV+yf~%5R<*oci5MA&)c_P*Gh)x)jNfs#x2x
zV+!l9p<;IFf|@F(l`LSgmI@+|-;ODDRn(IrZ3T~w%y?8teHD+XXrLlfMH3ZGRk&3&
zWI+{gBo#DLam-barSjG)_LWvV^S%Fm;LTQ1>bR1lg8bwyZ<R&f^yA9oi@Y8cbLV<%
zFY)H7Xr`i-iq<NgPzsu>$X8LIVtj41U@ONJcDQu8f{ItYEor4sz2hr8H5XFhU2hu|
zi{JKkJ+AccqtqLskaN`SRJ51gb`b2S;`VfJC*l8o<|sU&;z<>T3RC6tM?9^fyNVtv
zx`+-Ho)OYj#l6-AOm<VTBrl(2a*~tmDY=7G^b*orMISM2UljvX3?xt3xxbKCR`5$7
z-XaxVdekB>r^zoCP*ltiGFZhB6+=}FQ{h(;P%&J^2$jE7#VAf+nF3nrf>J;Ok{?;&
z9j)T|>dH)|z^C%_m<5AN7SKeh3SC8zbA4RV#0@Cq5u)RH3&PTqUOb^v3YwKJuvA1;
z9FhLpDxxZusd!ICOhufPt9XG~D#ogKPQ@gZ4|gzL#j`3VN<Fj#{bYiQ6~~ny$`#Om
zXdkxq<#A=QiYekq(^dRW<yRsL?2-jjRqQ<OOb|7vsbKN@E>~^2_eC0k5u47S;w5%f
z#q0DX@q~}(dSBrHRlLdx-RgafvHg~pgbmrvlvy0?MlWlaEheIm%@K0-xU&%6<lG%s
zs+>^fsd$@C!WmTIm_@|`6$=yApg*v-MJl)qb51A&-}5G~a3t@jcvl>3sd#e76OI$o
z-`-cTT*Y@PHgoJMR;u_!#iuG(saUPzBb5)}u!j9V=gicHLO!5-oKWsd)~eXpqJSOy
znDxK!=p0(=B_Xa?@tKM*slZ7;;SAw(6<?^>z*#t<7}vaW1X-3n*`(rY72mKkCzP*L
z^uOUHVG(8#zhxzo+@fNuiajd!s`y@7{87bEDz>TEF829>tKgcKR@yE4w{CcMaHdr3
z5(nc_y>LSLo4I1x@+X}p_Nmyf;%60yR2&c!9Ta0ylfGT|q|-efhgHzwsZXcfx7K@<
zkwJz1ua|yuT)d8iZg5J)X%&q$WNA2~;;f3h?3l_oC~#iIZz}H4g;ZQraZSZ_@vBQJ
zu2S=XjLVX|B1o6MAG^3be^GHm#Z48zs#u>=u+~*jeUrDCbF{=+`)ykl+!Fb1mH&OC
zbUCS1PIeac@6xM3RQxIAVAs^Y82lM<B>9gZ)&Au=J*liOp|JDMpmFr1LM)*nNkat<
z6*VMlNYU_sh6gpIYN**f)uo}729_<UIV+Kb_L+K8DXpQ5=EQdX%)hLLS5|n-Ns=Ls
zYV2Nl4Gg>wN!d9k6?TbZd{{#z4Yf7Y(eQ|d%4|Y&3{ph{V_;Pc)ifuJuR5uu34w;{
z8qzgnXxN?ne^&bDq*6n2sX47w!TyuZcEF>ShI7K}YN)5-QK>okloMT<%dGku9+QF%
z1l<}k6ZKH1q43a)PF0OHWNUa@M;F~0dya;k8g@}ZgGWOX4NWyz8X_9<G&IxDM?+r?
z%{8>p&`CpQ4fz@hG_=*wP6LhHQbQ{Zt%dj8?yY>vv3#M1HmvHDQm2-3qHIC8Q%ZYL
zn7c8fqlON`hn-S>{K`A6xAMQ?%HtZIpio0M4Nqz~zrg!ze!<fk-+XTVl!hMPd*=M%
zWvMP2x=Pu#8@+6$JF{r;HQwGL>?znw!|laR?$kjYh|FEJF{2-6LBntjBQy-qFi^uF
z4TCilNfECGTe{7%3P)YGplTI`I7GuxQ5eSVt?`y<T|i`=>^3_;Qo|?>x`v>J(Ha8f
z3Id|+)8N<eyi~}ZQ(x7fN!I%xd86+;H7q=(ghXO!pfJpVpHe<KrIapPVA7tWGpJ*0
zh-z4@VTp#AhB&>H-bk<0Fjm794gb?HPQ!Q&&uN&XVS)zQ|5*(eOFL7rxu-Hwnkf3v
zyX}-RS;OU13hl-<!rbQv6in4HO%z@foX$RLctLo)hVp$WXB`na7c)f2<V!+W!%PjY
zYIs}2d=0N@n5E%O4R2|9T@>EXFk8d@hFEG2YaUSWpBSXkWiMNyaIWAyK_<(ec6zly
zlGI$NVUcilAnUZ#nRhh2t6_tNFEuRHuuQ{;8rEufj|SARQo||@%QaAw#aBq#PNx+b
zgig3xL+L-fbj3B|lQamY@&j7zwnIMBuuj9L?6Bm1tbz0U38(&~<Db1xD~r1+qfaZJ
zX_#?Z`CMv_pH^xW6?~zASfZD*QNtz;TQqDH<A0^$8x7xT2q!6DbDD-bL;H>v>#2Nx
zTG^~&;b~=basfHz-)q>W;m!u{k6dy69m#eLbp9WtA-V)5Jbu!^aqW<$L9$!J9u0*$
z+UVG;VIK#mql}LI8V+dqMZ*mZ2Q~c6NTuPphC@;tdwW#FVQG%5<A??#muK=S?@y<d
z6B<sk{~9i7IHln<V~+HMouO}YA)L{0R>S?}OgyjQf>cY_W%B-VyR6{~qZ8FmD@kXR
zYZ|VLl~_rwGfLhWrRt~Ny2ajN4L3F1(@;XkuNrP?_*27QT)Cpm@%|<?cV$;K{4S%W
z@DB#AGYYMG-zI-cXa3Xhk0}2u$Sh9lUDn)3;lX5*j%3|&xl%e(bfoGisl%m%u6Tc;
zaV;}<L5AaI>KTP{j;O4Tayn}0s3~P1(DAU2O2Qx1QC`PGy5m$8L^9=!Qc(yE#Srm`
z@G3g03aKo}8GrMPQcXv?jtr5c=~#cpanYq;WI#uC5l*R~(B+QZ^!83JsHLN}j$9oc
z$*QB{F&zzb)YVZ>$F4I<FYX08>PznRGmg7*AelPc9G#9V-SOmxy5l(<QHiq(9jvjA
zY|+or!6vBBgJCD*tYd^GI-2Te!H<0E$YWQnjOMyC<ISW<g9T3gC32F91v*-aF!-sr
zm5#C9mDV~2omE<$b(RKwp1iG&b~>ICwf2G?b#&6vflZ%whDj&yEOO4&6G9#rWOI!C
zPYN>ru(|MAr7N>^^p|a`o1n90>*%hdhmM|7@QLQBy@m7=yuVHK(b1O*+r2F%LUO-m
z!2vo3>ipAHhZpJa>QLB!9piOO&@ouY5FMHhUB^%z!*q<)F-phqL@Oh7CmOJmG|uF+
z%4i)v9ba`<0-`Yctl}5K7{bo;Q0WYxdZ`f95z_ghIO00OIt(4Qj;JV`IxHO#9qZ0I
zHPew87C2?x&c2t~VLe=BV{{xntBjK(Bx5DXZSJ83UT!7N>X@kGc^xn4cuvP89skoY
zRmWr<Q=|wN<_)QhdlTK2bxsrcbRFC>m`pzB;ENofj@KlM4*ZgiS9HwOLC<_y$DK7^
zI;s-{7I-<=uj)>4Bbg=o>?DUUTgMz7pN6nLgg14(#o|G{8pK>3^K^6!qEirW>zJ?O
zppKt)EYPt~$8H^abS%=bSjU$-HtP8I&E|XeG+(0Q9j=9QIq&NDM8~0OZt|rfS*Byd
zvh4SCye~=0mkU`TxKhU|A*&O)Yjk`d{6oRDIzFP!c}7$#XUnFnk44z?qt?S-?#QY>
zmA2U2dLf?)elGY0+ZB>=PNBl~B{`ee$#ETi(xE10f2HGV9pC8qR+2voekaJ>%{sOu
z_*Nm`>)0k_dqVyLyELXUm1h<7m^q*uYu+LC?-bmn!=IAddUeiT9s3yhb-t_YwBEF8
zyR5U>?xQ)+9L!pB$1{6GE<g8lNXKCv_jHs9;s_l^#~(WW)WNS?@FU^N&SxLfahxk%
z$4MQhbX?MLS;uJ|XXrMgvd`Yf^1XA;DXC?fozrn%Bo`P?%Qm9|kBcJtux=&tD>|<0
z_(jK65ndBq^<MM)nl~8pMKY&C?_wP{=_eI>^LXMMUyF5`Tk}BCZ5_nl=xIX8e@|rn
zr8{>EdHkc}Z-zm+XUN-z|8jKWz5fZ`6)ZJ4my)C)l7na;M28?!f=CUbUeKwbWYE!n
zB#6pFTtSo)Qd*E%Wr8Rxyj()^KoAcKFQ1S+B&331MZt%IsFcVZa!z4ARf4FSkW>w#
zT7stuNf*ozL=e@5)DUFZnnG#`))uT2gvXP?EFMj6H+?jS`awJ<S$TpD1TzKQf(-?!
z-zbPI;f)2e6Y?A(xq=?SCP6e!<o-FY1<N**Wb+_e2+2?676j2!cq_ry33;KAHiB&h
z+XZpIDjJ^^5@Y9-&OtmL#MB_B1@S}>PX;kOh!H_N6~xm)43wF=b~n3A5CekFs_!b2
zX9T+iG3$DE_aJ%%(KCo%LG%k^{M6j0YEthYUj8_{kKn2{IraLq?i+;OEqC7dy#7J_
zlabq_Sw6pI(X~-3>nsYw8-ybD4+>(ikWR4_W(^5qSP%sZ(}s$$W%D!&dHA%nkwJ_K
zVssF`AoxYHQMa@C62kNQvnSnd?GM5T!VDrno!i+w)F8A3*MkTqct}V%2!2JMYE}@D
zAf65KEB!fk(E0zMv4T-SCSyY4f@1{NmTpD)I1XHr6aK%fiBivVf|CR%3r-RIpCCV>
z$+o7`)Dv=fyd1>yLA(&ei*){1pWePFo5I=Wlo>$~UlRQIoI>F%K^(v1<i5sP;MxhH
zbO^5}>RA}X8^UJ`Qgcp_zb$f#yd^kSkjZ)61%%HRTp&1UNn>U$3Sw~(OM-YOh<Afn
z8g%}`U|px&z2}tC`FYFeEjODpe5Ho)UJ&mGu{?+sK^zF;U=S;VSQW&#L3|g)>LAtx
z@o~`k%Hjt>=le_iYn6|J_)xrvez;c1;q1oif;c~~6Lb5%UV`#Zg7`Fu^~??8^B`XO
zCFzSG&K=0Qe$M&78~zv7h9JtESNJ`#FBw>_x;F}L68uW=Yr$`5&ut|(|D3Toi0{98
z>L;!7t|0#$7F(GNVp|YDF=;-{v1||Ghai3o;>4O3#lN@VzgDe#uG#v74ac@?u_K6`
zLENj}tjorys2u;jQT_AE?jZIAu{Vf)Ts~VGvxfabZhTz8zXCaNv+>XLTL!=on)i1%
z?biHo5NA0A?gE_XCXJ5<af}8ReoF9!AhS*isa8AVbV70_$S)OFywtV%`5-O?@oNyb
zg8VKPE(LKth+l%Z9K@9%u5vkWF0Q!K<~D7V(T0Crbn|*<%k#><XPR~C)%b>F6$f#X
z3--LCo>#0o-OHA0Mty$b?{*Ns1@SjmXb^XT_?;0$^#9<JS>Nzrqpn+jXt=+3=Q*<)
zPCc*u6$JkzE5EAipCz5{)X)Ami2s7POB2!N{VJ9Sq57nT&-t_0=Qf(SvJt<zniRs`
z6^;34SPwpyl@h|u+0GP~3}MNGSv*`JT)$pGQYM75A!s4!A(RW@fe>1T&?<xnLnt3Y
zb_h8kJQPBO5E_M?h*U9zheN0ra=fup2#<sSHXTCK@trxS${|z<p=t=#LYSDDl^(+Q
zaxK$BxLeq<a-WXNZZ$vtTcZrt(6J*AkCIg*gqk7L2{{IQE%lMT+gc90U8z<GwM9Z<
z_+Qt6^KI&euvN*b_gV8tL#Q9ZW70Z1&~`<q1__=Sf?Igf*)|PBAW|VqBwY24L%3DG
z2T5)So)Bs*$!-xs6Ly=fBI9CPc_Fm_`au#N%|dwhk(NCk&HA8J367fj`60YgKcgUo
z&)>-!`*Bw55DG)+6+-V2N;PWt+Ii)_k~wWcXd6O1))PX9kn>^Hj)EUN;w4uq6m^nh
z=MY|c!}GY{6M|0)J{7{#Lb?b(BiJ>BakD+t=g}>M?jr0FLQf$bzwj)Utat7;>l1=E
z1SN#NA@mEOe+bW=db&uEWIzZ589L0zc`!M8b^(!JE*%uY$zypVL(U)l3=Z)_ZT$I3
zqoJJB`A_p07Q*lZ9}z-yN;3+nKT1lC4#6kHFBlMHuFAf3^N<8X2!${ygvlX<Lon!O
zYqG|NV1}@^bq*cUNmg%U(NC&3iiBVbiG~mp5*HjJ$iJGR&RF5&1S`FmTQ|);Aq3*H
z^fw{o&xNq^yh1W11pXfIwGd{JgfKOPKyl`@5MC8RK0Soz>6}UK7eaV3gc<C%Bxllk
z$?lgq<5B}F$&9)#mo7m<<(!f!jUP(p@p=evNL3$;+UyXPN^%Y_0Yvgv2ycflKZG*H
zNpnM(7s6GqXId@ydl~7hYC#B<%T^;<7{Vf!T~N4~#$TBB4i{+%*Q&dJALOC%-4O09
zE+i)|;|zxIK37KwAB6B>2rKB!)!jT+(;EkQRtl~Pq2nwMg=-SIOs<uzZ{9AX8jp`c
zSSJ$i%_JsijZdWWJ+f0jqmy%K$5A<sFGASBuwdaq3txt?F@#SHd}?4*2w#QpV;Db$
z@pTB_a8-uUAdGKA_%4KBx!gk7EJoPE#Vdpc{62(jA?yobe+b)I+j(VY2)jb~fmLzg
zxKn=$VMmC+pY<%<kvHD!Ds41>DWh<A2rYVh_HvF+6y>D2_k?idyu#!&y64D1&jG3Y
zU<f~l(BOw6+VfBdheJpk=(#{m$^FdlIu^oF2EE;Rb&HdzbDTQGnI{BK3Nm?0$Z5ed
zA)FO*PVl@Sby(HK5HkCFM%*mA6aw+G;1y1;kZXdJUl;OA2seZjC*(JUObIo=9l~!R
zR1D+cFz$r#dk7`NaD^SG{Ud}wL-;F%yjt$hhkE{I1U{DkZwUW|@DG>yV9&>g^1i6<
zzROY%RJ#{Ki7-FH?74kjNeUx5jFd1^!<bsGTCXmiYUK)>sA=RRXOCu5QYwtnVU!J{
zTo`4-&Z3~JFqc^aYP!1)_1NPJ9|+^YFkY<Y`mL7x(?jXy!+0nRavl}JNFU)@J-M)w
zbTus{rDhn9umfRK38QKl5IJ?Kh2d`DN)IDVif}9){H}~Jo*n9$+N<zDxx(tASwryt
zT6lH1r&buX!>AJmdEGD`4P$S0H*Hc+)MgIx)E7w^!*k?LQYM=SV^SEC!)O>rqcFOM
z(IbqkFmIzcmV6?N>@ae|C=8=bm@C?q8^-*89*<z_WOtySr%4!1!ywNKqgj~W#xGKP
zd76ho<k2FG`~)u$(o(P$iwMb^nNGE~VYCaQQy7u7!uDZo?d$0vbw<LjDg8XGyki*s
zYq*>B^K=$@%RPCIa~3WrBu|F%6gz)2^XV|UhVe`oT|{SAU(b^%?rt<-EjM%XdZw|S
za?hsq45L>VS{Qm5y~F4ehJ88R7e?PO`h_ttj8-E(-r=5Z#d-b17!bzvn@P87xVsc*
z*6CeX6o!{$4CBP)LaL3X#r75s5*#czB#fa#C?6(dxZsE|MkeH=#I{tZeX&WO359+(
zG13zdR0a3ea*aHl7Yrj5#@H~%g%K7PHNr4Cy5h`BDQ=6l3L_duj7tFS_irW<ZO$Fs
z*Y707h1|K5#AL9yXG|C);AT{Oy{3D77!x^Vnr8xiDU8jEr|fX&cuDg-Cvs*nIfb1J
z<GnE6m)=fg$HI7C_%sHq3(D4L(F=6)Fy0NLdDFD_?<LO&<IOPM3gactV1Licf+Vj9
znMt1%@>)VZD~#8Lzacm~A)h0p_Opd$Yr5x#v2S<Yz<bH_INdefZwr#l7qTFXg$c=`
zFcu46l90S3WbwVErD2@z<KeL^j19;0NtTDPg7G$t@4{Fa#;Pzr3FFf+R)_KU&CCzN
z_%Mt$VN5B`<S{+fT`$?amL8bwUKa-WNA$Fo=_HhVEb==kC0LN2yguRWp9%S#j@{q$
zh42l6Uxu+!$R<G+`HH)M@NW{5kBXBvhp{D$ZDG7I*tL~Dnd)xocQKL=cBOnTv#?+F
zZV%%JT02=5c(QwcnG!p~*cnDg1Dy=)3S+luwl%PatDZs0KzRfE!r0Gn#IPC0fiMn+
zaW;%|Vf-BC2a#}`z8%J48gry)!wApOFph*VKE061Cod=~#upw7!<yad;0Vu2nqs8q
z=^c4zgq)(0g|O5EyYndbH+P*6<3bo$!?+g4MK-|`x!rk}gcLP*kzeL&+MRcWI$jS6
z!|C-fZiG=Rq4k$AW@uhI_RTODV}A|fmPBUqn<tCLj4B#_LAlN4+{Hukdl-K(bQ>sX
z;LkAr3gf>p?n=SG1^)^2jh8f*<?(MAvmY+W)p3s#WVqOFvVjr?k_^0OyYw+$b#xjR
z4&^BZ%I?go`**6#aH9PK1|I&wTgpIb17(<HpqzodUeBS+d1qYS2D|eHDIPk;pZ}zG
z8sSv?kbw#Y8W_kloQPV{KotX34QB&=*gz!%j~GrwU7cU`hpTy&4NSP8?8zHg%|M!g
z3<EH5zDD71#hKJkH}I}6tzM~=>QYq=LDuO`c22Hp8mJ|b+6j3b19gShOGq9yP+$0C
zf?rrJr?`QJ2AUaYZlIBYECU_`O*q(E?#2dk4CETfHZZ)ehdun)>-xN(=dmk!jQlLy
z)WBPC|B>O&E>0rJGw@I85+p4Q<QpiIR$5LdEHKbYY9McEfXEs+>edEW=k=M+8C@Gu
z-k>|Yo$&U89SnrZl%PpF8+hD6F9W>|JRw=s>|x+Z;ZGTO+CUeXqi)jquEMR}h0n0{
zRCnxDUU!kZM-_2J_mooI59hIxJ_h<4SYqHE1N{v2r`?K^UNkVkz(5100n0#<0k46f
z28MA4b&o>JB$pUuIMIOJTbfZg*uW427eC3PyAp>R7(rLz5A5h9!#yJnj55HDd+fFJ
z<m&FxPUX%%&TXAKes(M|BGrJF;JSgJ@K8b$7GenQFI^&Hz%~#!FvdXCK+FImyg57l
z+d&@g0u7F4(uXM-YhXNGOG=G1_;<#hzO`M?8ki_OoMd2gP4{yKZbluCB|kREQ@4hD
zvVkcyMGg1=1WBeEm?nIBLh`(j7X<T*lV%ur$-v77UNP{RfmzbxOare9d24r`n(AKR
zN*QrF<#mJqW#&3}J8iasHzaqCp2E49W8h5#Z(mTz-!h!@in)R$^Mt%DIA3sqfrUaA
z2`(0-e^U8f1B-X2FE_Bla88Mr8d$~|$s5QHyk~&;zBJmadE4<j^Hv&IWni^Pp5$pm
zU(Xr?9~xLo@9OLMfH<Ov<X3+h@goE4L{8zyLQeGeY`CDTH}IK(*(T<g_}su325Oq9
zWnzPYFQw*m6B~K*Z{QCGC<9*^_}ai(1Lq8UW8hl@KN;9z;5$x-f$fG9Ew>ohDrB31
z?+w)0lSkovuZzf2#Dn~3=aEbvKN$S%x#veZ>WCuh>}2p~L$zH$8`#a@Z{SQV*8zqp
z>Bc?-`wi!0erskbr;O{OTbUAVcjg^5@M}L0*ER8wft@Mt!-jM1z~hL4qr#6RB*zV$
z5PmWtIc4Cq@H2vYikyPy4P1~$f9KLLaLGV1-Hc`XdoCNe#%>t6!j)U(#FncD9tbxl
z(FS^cp(O`+ZU`P9Ur1g##r>;+TL$jX32V7;%c5pM_Vzd7Z(hygGVhdDxaUyb{gC*V
zfxj7_O(*dFBfTms{9gnA8MrGQyC-<?f^v3<bNN%kM3U$v3sRCIBvr7api8inU}?cJ
zCfZzcBFWNWo({p32TVL@qP&TRBsa}O1rrrbJYu4<iHA-68TD2&@lPKQmp`KcOC22Q
zsbV_8knyCdiIj)azTaO+Ud_bh+WC#V9=%x_ubMMVz(f(!tD6X>rqnQ<^E&SPY&v=`
zxweTqCNfR9P1Kd9DX(WbSI{Jnillx*{+N&kCch+-%vImeL?aW5i9sf^C^XSb6ee#<
zdm`e>Hj!f@S0qgZc`EKP(ZqB%vN=2RxCQWhIL~xWo+)W=qJ@ck69p#Po9G}#TAFBW
zqEL7%6H}zyZ7583w-w>wL(VDsSC167Gx@)(h1{Jxn&@QWNy%+d+tt~0PUIdp9sddF
z&Ia^^WKC$0`jm;MO>~hY<$Z*76@11-HzC~xdk9jer-@!BdP|Z^pmb&`g&n6B_BGMZ
z#Cf>;3l0!uav&`)+$*@HPa1`TrT7pNLuq!|h=-XNZepB?@thqKBTX14OcSF_j5eW}
z&`tPE)IOTeBOt_YIvWR*JfTue=d|j#U3ozhA=5eK2%An+4}F);vx`ns3MqMcnG>ij
z6Sj${=tN9@|JlP!1MVg<6Jtz_H4!)Q%LRoJ;!}o;^TOK*-1H}yc-F*ACSEo%(Zq8m
zrki-)#3VW!=Y=DZY0XM5!6KvHa&f1lWqRLBo@(M>%`?r!XS?%AD%{L`!NiLuX3)cL
zItq{ZT_h}Zzw9d}UN!NW)HYMfe%jsX#w;<~8ypvB?Q|Y5(}<)0cI^MAiMLFAWMZ9(
zxhCeBSZHFAiMLJ6mr@G^Ys_>#lj)qjWM5Bzaj<K#i6thMn^+;a@0fVc#QP@RHL+AA
z%Qzz!oc)EzC-;)>DUS0rkae-r#3~aXn)vH(^8M3~)h5=M_`sBF_RD$nNuJX1;(e`D
z^}p)wNlo%UHt`9InE2borzX~$xK3-+G7SDEcAMB^;tK|U6WgTJmkj<UHVbE9++^Zw
z6W`F!={YHG9=sd#E$79Pf54OforD5zTlX!WT%5E;3T`#wod26n0OS_7ooXh2H1U&(
zUHAKTBy)#}oe3TqEGKx$B{ui+FwS$xdrkao;*copGr?OH`%N4W!hQcBdsx$*Rk`r6
zi6bV?m^f?VsEK2uf6ByhE<F>x9Oh-?k=ibjlMHA)@vG(LHSB3oW5>7<&T);HxMbq8
z3HF~&U!aqV0&`a{b2@g##8vU$YxJLE`A2HFi988mwFj=H-!M_kDKK%z#7&73zjA5F
z#SY!Lz2dng!rOwwXF3)BF7^LmI(N7JEAsIC=T8$vn)e^NpNV@WN?6Wz@SkYXylI0x
zcZK))BR$D-PBmQ?N?FdjOSX_=IngOqk|ixC)=h~!ORuy@%1TvKC}SbJ9`EG4ruOob
zvv`{48C2U{-oir`EE^FU6)aS=&^Lm95j<?6l7+1nzPIp*g~}ENTNq-YiiN5c+E{37
zp_+v>3ymyfS$wqy85XKrs3FaD>*awEW2JMdTvPa?7V2B5Wudl(I?`um)fK{ffMYFJ
zJqwq5d$^}RW}$%vx0K@fLwP;D=kfeZ3q*Q#LyQ01n$NQSh^sLNWudu+78clOj)kUd
z;-Zpk;kO$}+>Sl$e2TjX&2>>B$&+L=sriwAoVA=Uyp>>qAcZYC>QpD5aKCPCp-|)}
z%2lJ=w6oBjJ+aWsLI(>SEp)Na)j}r=oh>|R;VBEzn(oIfJYhN49jxTv6sM}k?<I2<
z=DAXymfFa-T}>xG!=8(TH-C5wsJj&JArdyXFu7W93w<mo76x&4EN~ZNsez)<&q9A%
z!@@Y(7uZV8Kho()MV7N*y%yqqJS4A&oA-Y+otH(qygINj%)(p?^DGRvFv7xf7A9F3
zX<?Lw7>igKO)n~2=%@c!@Cj!nZTh6CGFf!6s0Gc!4<%D{k#LI%vL`j%Aq!z4<c0+^
z!7U*XL0gcql=UzgkFhY;!o-A4##tC|$$4FI<~Uc%1PjkvXeGPwLEBkA+*N-XUNqUl
z6bmm{cu@-ekN(Wt*QKjHW;JK-G!af0eBJ_MY1@m=x%vz-%S#qsmaO}MYiMTbD@;~*
z&$RHWD3eq9H4C#u?RCr9INlJPEjUMz!Z(GyB|T*FZ42`)thBJo!U8G#u7#yS7FteN
zSY%<bg(Vi=5g}XICl4J8j}<Nxg`nkHelO`g3-61<a{8foDK%GE_=cA`d=Ow^4f|=~
zQwtx68n1fRS@<wf=UNLNCHNp2_{Wl58cbPl;WG=HB>DM$o$Br{g?wRQ!+pt-%!wD3
zjS0@n%&#nbZ8_H?-&pw8!grQ)1<fvP7M(4ET(%7O6h3$~bDM?j7Rp8NKm<Qn_|ZbK
zg_{<BvarL#F$>2z#TIs1IAGzRh20kRSlDM_KSz{bbuV4(Y93Fs8{bJM@mF^<RQ3+K
zcslp9#W#6U4qG^4;gE%8JJZI_@>DC8lJ0ZSTj)_oB>)aePB~%WB$X{(v2e=5X$$8q
zT(EFP6xh$RT(-5`KTdQ4)HyDz8%f-NP9(dzS})3oE+s6$9qOuuYZh(?Qy4?8OCVxg
zx*?AGi(r|YG}nMaR`sieTMRxH?l8*vUAHadmUQ-X-bvsB{9Wq&n+6o}hv1)5!(YO`
zxSKrImGZBJvwBMD2>!G1INU?7<=wULOaH=qf+ZpjPl_N}2ziQ-RKb!FxDxVGLfCql
zh_j)T6}-Qi9*m%T1bGoOi{POMDnw8#g4z*OWblsw5mb+$QUs;?cpizMa>UtIXjM9S
zl?bXukS0}CjUZjlSkfiQCNd(pAMO@Joz=>tMg)&s&8r#VeLT<VJ|5nLoKii#P6Tx$
zXb?eW1oa|#Gy*>NsgqiQcN)2h>qqcd1oJN{d<w&ZLU#lUH@g}~kR3t8h;yriM<XFw
z5xh{&%OrP)oCrJ|{(wUA+=#PZ{Bb3(2}hbgki2Okt9b-1BIp{yGZExRP!K`q2p*51
zWdyVK<h6;QEo){En-6Tw?j^f9>4h{xiu-tmyB)_q(9=n<eFPnZe0ot~|2wkv0Y%K^
z@y<r)*6R}yJjJ0UJGX|OjPR%TY5yDQ+Puv5bcAoOrF0Ri_AOJQ8+&p)tp__CLHCFg
z%z53x<<_8VwO$eQiGWv6SMvt;j)2GuPg<4d0R1Bv5W$@Yeve>a1Vs^Sj$lg!-UyTk
zW=Ak5f<X}sj$lRvFGVmUf}s(_BN!9GFqyAWg2N-u8QlmOAoshGBJ9{Cf3$SZC+HUp
zM4(2X2{%Pe7akN035EsfEryW$mm5|D5z)5=+5f1Jn4r}lZ7fI4k!Ge&r&q|C7;6|G
z!33$~*$5^^@LUAE$H*rpr)s)MCPgq=BvS+_`CkN6g-=UJXyoVV9#TpD2dZ%?y%@na
zcau3CFGui71g}T%Mg%h>m^RQ;Tb$}uneo@eX?f>-R)WyM=Ifrtw(E(9OTHPwTM@h;
z!SV>^MldgeqgV2lMDRA9HqrkD^q(5;``3>PBUr@#7bh*I9l|bd-}{c|x2@rRCxUk)
z&Le}R5xf_{U$TiW6W^eTXaPPXT@k^`2-ZgMQ3R{RTx%luAcEDxXY6od&Z9NmA9D6(
zT*aa0HFxE$i{N7!^*0fG62Yg!d0Dz%2%i^xE#$KZJ{R(ZAY0rJ!I#1}3T_hoDv>+j
zUNVjUyPonbJy!R8$GCAbv;V9#;?@Yhk6?EMdm`8-efv>xJGTH?BN+pV_>_S+Luy?}
z`6+^M4fl=+UOSbyGlE_8t5j$2*mY6a8^OK^PDgNtRUOLPAHmNN9HMP!ryq#mptQ@T
z=cE@Nrdl7*u?UVwaD-DJF@*PFxcYv*sGN}2d8g&1sPU1?DVf>S;v~-g*$B=>a7A?Z
zOyqn77bQ18C+$MSd4|#`t?-hN%OYoyZLhdqI-PPgf@_Q(y*<|je-XSPNMUgVH--P2
zklc#kw(#E)lFz-aKcwASHfr1Wlk*<I-x2&1L1`OhZ2TL+J8d$OY$V(GFM_-D2S($T
zMI~(KZVUq&U6Gc#yuXmfOc5d9H%PTn(spiAxokAs;v(Tu%0}ZNPZQl!)<!uS)oo`N
zc)-SkHqwQ2T;**%B%D`3bc_l%D%yBhB=^sOE8XXUl?AH^vZ|^!stHdMynFutu3j^2
z=gtXiXDvIY4K>^~Y}B-!6BurAELg`zT^qe@^tMsY#-lcx+h}2<zKzFhcx-%{;%;Cg
z(?%ADVDqV=)ANRc_utcKB%HzrFFB`n**0={33D^^!qvPS8^nEYxwxk@tBH-KHu7xe
zir}#AqUk7XW+Pj6sC*j*HlDEYq>Yv~TG{Ae<H$fyYa4|&+S|^F^y|e*ZEU#(WIJcM
z2b$!!qYba*@ewd_ddU>(Z232}qm52Bcpr>MXB&?v_{r@>PjPB&^l_zhv(d#ySLy26
zpo?pN=b}QcyJt8?xs}mf8tNg~Q;?@U>~J3&eQgY3e`MhOY$zPj`Skua2H3cDH<>5K
z18pag7YTX=nY`6v;2<e7SgcCJ`mdx96UitWqlF9?9AV?F(|IFpaIYlsaYlN3G#k1N
zKZkQOGay*KbTw5-;q=0wjgXD76t6CEn_cBg2!`!!=;S6R{YoCstZW-m8~dWzA4SYY
zoRb@cJBl$j#@g6w<9i$9Y>c<D%;w`QOkn?Q%(U^Ujfpm%v+;tBb!AFSvT=iN7uc9)
zV=~>0O^c)hFUE&@23pOD(`|gbz<Eyhyba#8%(|rTX~MRhc`w?SVdEv+xp02P2A}S|
zESwMZ82rol(s-NtH5;>R%(t<?#_KlTu(5NnXD$u3BX2g>1>AFN@X>a!1BGwWTsA+}
zm&Png{)~EGsNtSx<83LD(lpKWYC6j<r0>;ozr#7I;a+6(jw?42ED=Ip-}Jm|<J)1L
zrJUKLnN_c)Q~7-x%WZsR<7*o$Y^=1g-o|G(R@qo>W37#kY^<^IfsGI8PQ{sgUF5?C
zshuw=Y~s~2B`8@(3vjyWauW*o4NLokE;rQEaDE~CUwUNPbUn?wnD@Eu+`Zo*!y);C
zt@J7+`O<b?RpPPH#wIR6UWgmc=EyOAV`H<;KMwYMYda5Ed1vN3F<|$;X<OLgYK6S%
zN8Dy(yNy2>+-&?{<3}4uZ5*@llZ_oV_R<Y#B58fM;4Z0?)egF(>=DU#O$V|k`#Jl=
zJwMwxB;<hLK^xm97E;c!9JX=)r2_IJHaI|z{kV-2Hm=yXYU8AhQ;Y^SF4{QFl~U7v
z&c=BgXKb9cQRPPZqlRbOouuNhXIcyAp2>vN6e5RwiM=gdja|Ad7C5slZ6ZHHQ=ECt
z#xL|Y8`o{;jfmcrO450XZQQhRo9ofWuZ$tr(r?+$v+2=q7j}Ny`*|%lIgggt(l?Cs
z+_CYy<dRePmyN$|JP^f$QT)T;&nb=;m5$;+8+UE+7EQ@0?%602MRL@6D3%oElRnP~
zxYzY5A_=6Xq==kZsZo@#?S5l%p)1Ni74<|fDW#$ywm+I#Ch9zwDJxh`aG@u^?t!B6
zQ9KkyS`_I~6r5{SA&SaTREeUZBp;5VQWTFwo%O<dS<h4|Nn}H8y=oL)ZzffXI`{VZ
z6tBJMd1I+7BZ?KnJ+-5#69uBE9tDLpqNo{l)-2a1S0za;Dh%^nK2lgWih5DhkAioS
zS&;Yi9*u%GkXOA`$ftW0KE`Aee2&j&`pj(@MI#PBibxb$QT{F(t)nQ6GLj=Fie^zX
zk2)@$OM}#Qd!qPX=@fTydJ_>g6=ZInklB}%7E$C==SXHN4mQd^Kk`&);iBV_w2Wfm
z<vbF)8OPoxindWa9Yq(>Zx=<UC^|>cK8kgh6jSqbh@xZE2@X4krEMGHc|3|Is9c;`
z-<=xUU-%?zlUHA!qA4;8>1-5sjpCUo21Zd7MYkxrN6|BiUQslymd1Mcu2&Dv#ZXUi
zxx(I2^pS!CMAA2keo^eWq%f;brK0}AsY%J9+AjLDHwuOG62(Z`A&S9K42@z~6#a*I
zvaY2MiQ@7lWpzzA-?<ttGs_nP^cHC|18E%TD3KUZm{E)t?i2J22JT~VrW%DNTo()`
z<RKwp!8hj?_S{&=8D|9Emy>4G6{A={Q!xHV5szX<6fZIUM=>^vDKxB%Zk*tRD8>s}
zQq9GoJsZWuD4r7wSJ;s^NwOxDD<q#B1#u*IgsAh@8NKWID5l9muzoC@9tB@@<G3h)
zL7ec#DA*Y$UykCHC|;+FihNv(d#1PzJ?B-fwd(HIXtcd~v!Y-Y$?PcRMDbP>b4Be<
zc3$&Lxsm?ZaL@YI8T06<M>FX#Z%3VAPCj2eiV`}~q9_(eu}hq1Nfhry@nsYnqj;C=
zG>Xq<T+5<(FN%+&_#}$=qgYPm%XupVakdo?CRaxJPfwmzf+VY>SR?#{gyh30)(Zb9
zAz4SiE%H$LQ!eVth3jQCHMp0|j(wKsA?06i)w@&Y-b~sM#Y*wjO)`mJNAXP*UnS=E
z=sXvnN_<O~i{kIej$yxx^0PB(o1@qgb)qYetx<fR;M;_3kKzX*KMMYo$X%XRxKnDr
zUlrYccNBYMdG1ZD*4;Og4zSN$^)W<Z_&JJ0G*=9jVmKVdktj;UkQBqwD2_#OHHvFd
z9FO8e6c?ko6vfFXPBA!?ExZuL>8SHO>x{I>9dl*X^s`Z%i=ytFR_D1GE0yGM7z3H)
z7Wwj=Ry;jmxVS8{!@gY+l6u)W+q^E_`zwlHgxnC{<I57o?9#=&n^Ex9$6p0+MR8lm
zZ-SKH5%Rm>AA)~Mac2E3uK17OzjTHLdH)IC6}%@{<FZ0IKfa$5Lzx)L#*iArwOeVw
z{E}WWhMj+>GLX7r{F^+bRLrTNbPR_orrkd~;tpOe2JTH2V|XBj2V+jSE+4}~G3SvP
z`TZ@aLJTc0E8MpFT~_|9>3$@J$}v10Lzft;#85Sc`Y}8fL$w(H)Htn13^ij&iy@tz
z8Sdd<dQ^|`H|)-<di)mwB41^poXe_K4AaUM^2DP~47FoUh^BdeyqQ!thI%pl@J`{f
zi+PX6@X=t;!3L?EpawBy#?Ur~b}>FLM8lX9V4KF!h@*=kCx+Y@<_z{Uj^S!;7f-aZ
zW6pcCJoxIYN0b?gT^G|?s!0swXNEYzJTK;KXUzop4=XK%P?9gCK(M7?s~B1*atnpD
ziSa#5h05(?=n%t`><OR$#?UFoZ@?m1>hBywpD`}JkonlnBx*hpLyaMxzj>WydY%&f
z`|otoi@L@zB8HJMJQG8=m~&RyJ%+xbGwZU_BZi(a^opT(46Ev;GPw1LVct*=vv@Gs
zFNXdx3=sW+F%-pcuu&TO!~Ztm?zyi=8j=5+K*=CB1UHYtLWaaJRLHP|e7KNG)m)=u
z7#%|>=4^{TDXYcs)7@l0hfg;vU1H%arwNt)tnDJvV+e}c!5z-|HaC$lv+@UU-!x**
z$(tF&2bUERJBBFNYz#+Yh{X_(VOb3C#V{s@u`#?7!%S&(Tnv+9n9O<UG+=xT6JmIl
z?lID1Tg@9!Dw@c@ZJ1Q_Tnyh|R!F!tOo?H73>l@WahCrV!&I5~X)$n9=KkAiPOIl*
zctM0ON<UwUVFrz6IB&=kUl#t7a1Qy^7~YCuZVa!*FiU3q^%!QyoJZSluvd4J8Q-{f
z&yg&i2)#)+Ry?mLo_R669mBgKACTH^ehiCZSRBIw)}Pvr%WxrQXQ-#`%IqaEoVl#L
zBb}j~{I9C%wB%B1)^zhd2cBuaAH(t(K9AuGu25N4AI7jYhLth!tZ7vYt7G8V)Ee40
z2G=m>%!=~U+r8vmYg>L#|0w2MbgW|ph~bl%^Nje@7}hgv)^U})l=oQ-b*C4yx%3ep
z5=u72@FlIvWfH^27&gW5jnwc}3}44kqG=jy<5SlrBhy&q^~&kr#_$~@Pe$R~g7nQX
zY>8oO46J8M@4}R(MXZx8ZkO=#Qw%$}x}`Q&@}rR5mDBgj+3!wC?uzk$&79z~JBB^N
z_X_Sy$oI!^K={Fg<Y$I8;nSK8WWl5Kd2R%8B*$?)h7&Pd<bsOfWDKWbI3L3W2CJ4;
zPseaJhI2BZXJV-McPeML#~A0#e|V*md_9s$t}HG$E;0JUWtNKZGq$)QGfTCrTm>;)
zmt=_+u3r-J8!;3MzbW`@LVhcT+rocKNU~eF=&OIk@K+3f$MB~(CnY>}q#IPsPWy+^
zIEMdXxXXs_B$bFeZ-Mse?YSqux?+&$Gt)ziD{1UuN*rb5&T8e68b`@EOa{F;O2wUp
zU;0LR={R^!$ex#pgRj;zw_F?#i10zdigA>W<LS+=hvLpDBHg=!$QeBzj-yf>i>td?
z1Fw~M##kkes&RZZ0bfr*wK&q^s67sK#vwh9j5rpJ!QwGM9M$7E9LJG3YQ#~K-HT&t
z9JQz%hZ4u2IO@bvH;(Rc^oXM#n~S4a9L?jX9|w1V25~2nKPH&#cTtiVhdYjjBFSR4
z@`SEY9IuWqB)@zpuW=mNapwU&kDNGig?j{>2sTaR<_S5~-PIzFd=5PB?2-j>wB)#s
z=06cft2kPVNgwC0W2(DD-Cc!o{C8Plm)gY9R$6Z-*j|tw=nzN81n(3_=LBc*<?=EB
zXXi<&^C`jih81;@cDu&$OdPj=%3~jRbc;L7nWSeNy+qR+M{n{jp1yJPi=&TlCUHgS
zAIAXxglDKHZ9)1#nX;ldU-$K#zLUgR=45qyHjU@NbgjX042eUJBN)ffIEKYBIu2hP
z!{g3Y$n!Vih&V>Z;gLOSRNRRkyq0Gy@{1#>anR)g!s%D@FFGMhi#yv2ca2coxhG)7
z5s4!#I=Am68Fa;jK0Vf^VMls+MC0gGoX+1m#o~y^F^0Ap;>nolni9vpw+qKoGOci&
z;P^Nu2zgeJ@`-Ugm*A7)m@J&P)0s6WHHCLSro}OxE)>UmaXcT#3tT&K%!%X0IA+B0
znwT^+((@9Xu(o?<952W5N*oopxORk_KQ-3N7o42)f64V!bIpq5b%vDc?l<DlHm33H
zrQ&ht<=8jlcq@*Dboe+P<K3Y+=E+FOx$V9!e104Y=#$ybqTbcU%O$)x?(C%R(pI(H
zw&GdBQs27Xi92tV|Fy)$tFWb91y_{b=UTlV$MQJ7jpI9-J&u)etfRNYu_}($apwy6
zqd3;YonOt6e;CIHoOf{muJ^T~!0^kLEjg{+vp$LAQ+je78{*Dgpvkjc>xFzK$jhkD
zIrT$5%;I|{U&gVC3n7k;T-}2_YXfOS-s<@}j)`(_r0$$n-*9NX3c2HNj$=z4d)SjW
zw#M;22N=hWIJR-6^Ua?)eh`o1-68hmM{zc9rIHOxI`>$1#<44o-6Fhy@8!Dg#9^9<
z$YWm|2jk!k2lD-K9Ec-D@$|Z)u;!mden?uOqqe`7d^C<@ada4ij$?2<juUZI8-uhl
zI2p$&F5Woq#`$f3oQdPNIPS!qdvRyuxDdxhh7{9tE{^kY@Fb1L#NU%Hi2`@h+i_fu
z<Nq=B9Z*sf-`5K}EIEUuOHvTng$0*gpb1M5lpvDR!hi(HIZua~?wRTCnNh(&5X68W
zNkC9UPyrPrshB02K_%xX!gu@aZ@%+Cr_VjNUcGviUR783RP~%@ABp4&D?UBzY|;bI
z2{|u#VJ<ETxs;5(EM)M<RhT5SESJ_^nN;P*T-;<vbMfz7+~U+dGK;J6+jHT&P?h}D
zs49FTbXP`G<zn93r|&0a5%14MN&rOzC>HPrT7dux29O%SjrCP|JjWM6p#VRMQY9?_
z1`jl?H1V{b8|?}QyjiqJz}s}ki&4b`C=o!}0LleWGJuz#uUa~QJU6#gz&nk|iH`bZ
zL_(*fynFx^0;m-5?jV%ZyHTKG01pH}H*-(>dF9_w_*S860M!C$6hLMGIZXy5fCjWV
zC#`zGd-GF6ux7w}^sXhmwjiS(6!K62b&`_0LLL^ZCs;oKzDb~RdVt?o@m4q)0dFs2
zLqYC|Z5%)oHqOYbwgEg6@a8m*sqBE~u~`8$O-guw&k;2~vo{mcT(Cs|iV#|8DWp{Z
zt%bBn%5#MTr=p#-XZrv;1i)t*9>OYDHJ8oXDS*e=3jsI*JRU&j07eDybO2of=o-LN
z0SphITY#THLC*ks1<;*cSu4Fqz+3q|$xf-5%lBPee$WB(Umo@jpfB&IvP|kD<n3z(
z`UTKm_yECyf_zw`+8}nE1P2RJG9&<hk`E1Fm~cL_<=bSABgCEPQ6uRX6$X>=J~cXk
z2?0zDV2o6dZZlS@JWg=D;L6i}j=M?XU~>bQ9PrkDyru*&l@3rVeVQQ2bRjbYX9h4U
zDW6R{!kdit)|OoD2Lez7&;rl{-u<1fc=(uN2oDNU7z)5law~wa@JLb;4Iu7#>j5`_
zSOALxSWHO(i2&vY@O%Kzh~_*g_Ok&z7Xa_hd~@D+oagx@#245~)zf(wcuB~M0hGE?
zfRY6P@0PKUL$7-J<=(l(mjhT5z$*c7^~I<!E)`hH@~3)pa;xg;%L4f5w4e8jSB1Pr
ze<+?y$?^c+3}CQ|Au3h`urh#K0o)GYtpHX9urq*N0jy@h0@xD3`(k`;0B;AdJ^-GW
zSSQ%GcG?CGH>7V0V6%{o0lXuGcjS0_72?wJh2EtL)lPd)k}xgD_*UjJD{Wf<+XLWM
z#t$UP)O}TW6aSFq4B%sy6Y1@SW$h5cn?BcpynVlMvB4*_6Tq<mjtB6W6l`w*`vTt1
zklg|73E*=Pa{CG!<oWvr_XltwfS&?5Eb@Z^{2=6ufcHDymx5mj^5>yL0T90y{3d{J
zg?uOYy&(6QP~k@oE~Mw5@IAsRh(Z1$pZ`01KAs5RXU-b|T;%*8z^?)P9>5=>`C9<l
z%c|!8GR2)&e+JNON!rPPw^ca**Q-->e)%Q(uK@m*B>xDW7G%B72ss<TxuoR05GKDA
zz~un0N$`qb;Zv#HmT*-#S1GwgQ?85s8zP~#n*oeGlXDX3cLMk~fOHiZD((jGUjU_5
zlu>anfcu=@Rivp%QN5oC3#cfldM?MGR`WNovB0S+e5%(Gytu2Gv4vF>QBhRI->5qI
zwcKKoq$F)#@}3lmtKJs75~{b6l7x~{s<#iJ&^I|{Rg_avTg8Ktq`ZoXDjrZ#K?P5B
zar0rmKI^-Ec3LGBl_lRQ$=s_7sU`>&)sylXDryR^m6UKBHmmTEiicIyqjA;S^i@{{
zkH+xgKDXTstFS}stKQMG1}e1U%FB1X9h(hRG*a=HipN!Cs%WgDm5SCXny7e0MYf6@
z72KztrJ|`+f!pSpiaXX0$l;x4Dq5&eR5Vxd!)fm+kGWJ%^)`=@w^Z@l$SUM*ROG7Y
zpyE+6(w0g7^|AHZNwB>N?nI@2K6X^mN%gjDQL^B!kDG|9%}DF4qKk^&D*CACDyh1u
zctZW(nSyowv%0J3DXsCO>ixLfL-qFa^VeSf#C)%RRxj1te8n>NRnbocYcWVge-+#S
z!%e&cCCLC4+)0x0OU{qG(`pUM<=%`u6@jxkET><^P!(UYqg4!3@sx@em{!Gb6(dxH
zSqv2;Rg6+GQ^hPP-qV6(RcuU49j#*V*_<&VDgL^*$z+`5HC}Lniitv)`y?Tg1*fQ(
zDrB1AbV2IOP`xemB(qh_5u1kKTy|x<YAVYtLFQ8XVgXHsu6k#s*&1h0rm}WyoS=%3
z3RBcZ@>gKh+g-ypBt})(D*tH<&q}PL!cAJ^PxCPqaTVY8ud=d_cXvxj)Yw^R&#CzN
zUcvb)o)^hH!J^5%-{arNW$rJjSfFCPiVZ3js#v7rO-|Zu85J+9cvZz~DwasXWzro>
zg)^5|R4_ZvR|nEk*<X~rE<N~$C~Uh|kUy+1SNU(zRY(}SQpGA2t5v*3=j3nhzoin_
zs93AwZ57?8H7{B?mD?WHN%H(%8SG`sH>!9?#RnWUDmF>%dn&dF*(}q=yBvcT3*?X4
z_f>2a`|rsf4356<59MrE@u7+xDt4;)ND{I<+`vHmSS+v>yHtFl0&>iX@=rzW3l*OU
z*)6z-ZGv=Op9|S5xKG7?AqNBx3R0)TjOO|K0}rYATE%S@cT{}CZc_0(#}VB|#rG<X
zsyHUbf8a2mo%RzQgGa!m3bpjy!$Me|BPzCEE5H^zu7U?HewHLB1UWZ8RW#)n6~A&^
zi)7_BZ^I|+PW+Q2PDOzkX;)R8Qt_9HGb+w<&Q$RaovnYBE0a?v$m~Jo)2g>el;oU>
z^C~WjH3l!JxRh_XPu4{h4gT<UJ5WyLD<Wr**<Dj{UB!*0gr&VH{Fdt7aekKL8~<|h
z=M=4>tcL$M`Ku_TAx*=5PX3xV=NA;@;lu*e@uj=>3ldXB=+nT1qUi6{uCRt88j5Ks
zuA%laPf}FFfPPiEKW9%hZ?-R?p_Jy`0?12h-i$#~S|k*1|1zhXhVmM!@WqaX3Sz&K
zhRPZ$YIs27&W$wQw&;+YXTCUHl{XQ3JNKVd(*RMfp`p4Enk~?M2$3yNQzW$n-{t|p
z)bxim)Y0&ij^R4$YIs<~hZ;W8P)|dB4dXRTU|t&1HS}QZG-POKs6o-tQbQvRnHnC^
zkfnhKd)c0iHM};Zc@sfyRwr+&A)B?E+B|=5&(Y9KLvsx~WTNK2;ue~Bb7{rz8&pqU
zJv^<IhSnOoXy~e;jfPwek89|xp{<5?8XncqQA2yp+a0t;%e|hL)j<RC;%PsTl1>`9
z#g}(6o=<#CL*X-io=4^mtGch}7D@N<3}816PiS~j^Nxmb16y~ta9-AuW4XME@PjAZ
z=E~DF4`x>DrD33kK^l5%=%b;p=1nGV3`^^;p<l99*_8u?=ilA(Gz``-jEyP6A%cF*
z+w#PgVfzo|Yq~Rj^5GgrXc(hmtmur?@U-U5Iqbwy8aU77d+%rwRwyxKoQ8j94(3KX
z_BD>>l26nyNyGCRUeGXE!xRk>n$j>;!!)+G235m!4Kt*6vo&nVtHKR?tm#aV%wi+U
zCcRgNWX+LW<_b<-nWkypHyQZh6jOt)!O#%YybrLjWkN|p-u_foOY`>rQ8~<fcU9?;
zUB%YmXn0n`a~fQUWvvq$VjAM&*gPJxyI^|n6Us9Z+hTERTKM^7>O2keHC*~3mz#Sj
zVV6}OQ{_bsFKKu~!*UG^G%Tc3X?R`3A`Oe_Ga6pi_@AWUiFocXT%y6Q?_)y#(z;Z`
zE1LI{D=+TW>m00dq5YtO$Gok2yck74A$e273Jq&DtP^)yso^aRt2A$eAAO0%Sk0#B
zpS4Dc+Nf%7v1L_xLwuV#YS<=8Hb~S)!De~hDG#Q4N5dw~TjTNCtl?eZ?+I=Zd|z;@
zAay<v!WH9oj_XNTy!dUCk2yd%d*~>xW2c5)8qR7sr{NO~pKAC<!?zkf)395^ehmjS
z>|s$g?3Ge+b25$m`DQN1$h%c@_puCBbDwN7m=1qX!xtL9)X?gTpRqi-|CNS^`el91
zNuXf*A;Bxh6uJSu@jDIQYdEFhFAYCv_))_V+Sl+C{jF%qVRrf%f4?*S(T(y*sPFA#
zY+L2T@!Vq?j&mAOb9tTMKokCp;ID$e2{QI~A%6(|so`W&PPh4+KCj_S{t!5mbDERD
zXI`necb!{9xxJQ!Kd<2e`%A-J4HxM@9BZ5nG;h1$Wx*?gea$LY#m=&5F7K*0G~Cp1
zM<m<`%1wi}H1uzt$LqF`qs{Y7Eth%yr{SK4f;v)l+?Q^muz>Cj)fAoIBx!#CTovv|
z<;>>O!J))Wp^Pe|BTYwP-P<}_L`P8}P5Ngs$i*S|$&-}OQBp^aj%GSa=_swEqK*f2
zl+nRsedTpj&{0-0DyMrl9bG=tlz+!$aDDBxN;)d*$k5SHM-?6EcYW1$)X-5?M>QQU
zZyH23UeNhhXx=G+nqsGxj@m-FTQ#>_A<7@r5kKR9NcT<~@v6hSK$1VKqn_~kf(-=I
zld-2hs?tbDrjDjMo|IE{jdeUC#+&G<^HolMX|qJajJSV3TR0a33^r%&bad6xO^2eR
zrH=MGI_PMXwAN1N9ECPIa@iVk0H>`a=M6W1|0*-3OFt^D^q7vvS+I)@Itq5uy$%1&
z<@Ngocw(Znjt{exE;<H&lf(5q@d+K>8PqX|+3Dz^qqmMeV!x-3Uy4=krGtlAXn|kH
z;{Cm^nC+*dzvytgHS=m!e((U@n*$H=hrfPVc{&EOzy;HX=@_De=c@cVhDt&{L2!Um
zhZkpWK07e^2puEY`vyuI7^UNB9Utr1p<}d;F*@e!{9y%Sb&S&y(qZZtuVaFanL1|C
zNph=A)G<}ZG#!(4OxC@}7Ct;qp$o|YTY4G~dT^WfbRGQU&I~%nfGl2CtE#hg%wg?x
z=u+CbIs!UWcEQC0EIcnZ9gXlwlc(Vfx|ZyTr97x()#)70ftHT2j)ab9bVPLTPU`4z
z*@h>Ss1DBIHr-Om<2Kir4$i%C(czTKNqFTMKgqKqc}~YX_SA|02|qgHzctWX!@Qv5
zMHXAf8jdm@3v?{g@v4r6Iu_|z%CV+nF+JIrzC`Sl&dGaO@+D!Whh`4ujb_%UD%@$z
z9onzycwNVvI#%f5-RBJ*%jsIabmedr26<40<8h^qw^%!!f6kl6ZR(uNc~5yJn#-G7
z&jH-|hIKkNN!Pzk7cD<{gN}_lsIy*>cdkF1dY_DVM;tHsb<QV?T5lG8K8n68<UJi*
zguE|E*V-!N10CChY#0168T*m$eO-iVJ9X^R@rRB-b$p`ZQ_d$kzSZ#=tE1z9j)OY(
z==fa6e%(89uvZ5kUH4JaKdW%zR6d|RS16TR{khwarv|>zv5$LV#Vx;N@=2-ro1YJf
zgl_pY?>JM^I846N@jb_aj$i3-I)0>rl<g<odz@jx4zp8cryV}yX9IGt@=+bfbR1_#
zuv0{n4U+#li2J~)fBlS~PvxAce&cF0HJu~kcgd6vc2dVF9k+Dc*728)zjd6a=jixH
z6wd01y_$QPC8_DHme1&@Rl@tGAHDRP4jw8YxyaGsOTVt;hK@@*F6+3W<Ej+n8oT}<
zZw0<>W!gs<8*ujE?8M+r7Wi}y9VUM*dPm2<oVpDZHgH$Re>w^pNHuVelfT$0V1S3>
z`Am^wcyluEcbwA}r4Qx?Z=XmgEM$PMm`HevhYnW6Kv4r_&-zOk-uD@<&KOe6Kyky{
zpw4%6oB4z4S5-<H-o)ka=bfo3LuCV#4NNgm&OmtsT?}+JP{BY&0}mUhXW#(?l?>D{
zP}A@pwJIB^VxX!R;VHS7?A&SwsvAfzQJD{?kb;qP{Kb1CQOiJW!@E`0HN3mng9d8d
zsal7Y&-xz{WO5Gw>&Lyf4QuCDsc)bGH4P||SGs|TjeX4xWUvYb8cC)%Pp0zITbTxU
zlA2dzAx#WCA|xv*Z)zZ0curE%%<vWoOhRWU<4b92@Pj|dHL#O+qKggk&9-J1#d6yi
z*gGbTgjHy3pdE`U4$xj|*Fo@61098Q5@h)wGw`_Z&PmDr5>>kyc*4Ly1A`27XQd>n
zuT+Gd(8EAa1HDAp+dv=Ve{YI-FJmurR%vx8r=NlT1_l`3RL^sKEGo(F*=czO1{)Y{
zV2ptw2K)ww8F<R@o_&UjS5T9D>A9-I4e!kfgHIb6A$+9ZC_zTCYw}xQtbuU`rd=#B
z(ZGsHshPzqk2f$uvgZATw>GLxlEO0;k5W#hvVp}0UN$h@zzhR1191a04a_p28PE;y
z)X!{|%77{f=NOpFhC({skHeF%N|+1Vndi0)13?3h0oOptfXQZ&ma*u}bkU+IT!wKJ
zL=5m=v+=7OUN8LKnk{dO8sG4|JR*$>ZH9ZpKVje*0}Bi+H1Mo}=L|egBbTa<tDQE_
zz<fzUo4ND7Q+xbS5|?=|7<f_SFA35JM;uQw^6l{=!#my3@T8}_#K2Mm8x6ce-!{CZ
z>}v*IH?T}}US+HH%i^&bCVYcKV@le30~@3rmK!*9TzOM)h2Tm9ZwXl?$k^2e)(BrK
zxGpJwTL@3nu=n}3K$_)y=1ugdNm(Bl*k)j}fp-n>hVmYV@R^+V4R1o;A~<?-+SX)^
zINY{#2<K%n;YSAApY?wz$o2WhVr_@S@-QQHJ~8mAB>Xaj&kXG5m<k~$ggrFNc_WA^
zLF_fK&j5m`9>jhF2Mk;@aNWQ`178?8%uYA(rGc*u{E#feAtB!y_}aiX^b>w#;iRAC
zA$})O-zPOY_DuVcnJ%mPlSt@(EdNmh#|->z;1?0{>4QCW+`tJ=7kOEHUrnUuuLk}w
z@Fyo&E`$v5SoH6LR6c3ol!3nu{3AZO`Ap7VoP;N4(Zd;gT7*}{_^P+k&KNjrc%S>@
zbxz26!3zd13b~Ywy=>r0l5elzeYb}L_J)C*1_}j{7Q`(Bw>cegk~eUN#haXVSMXns
z<+I*H4Ih*FjKDeSzJZh=QiI+z8hwdh$tV!?j??lg81#-VlK6t&$Iuw{qFJSI5JiG0
z9z=;CiUv_E2;T2FtiC^)O2=k{@FALQQZk6rL6ixiRM5Mp@K#7H8w4v}F6b>+c($6O
zvV73{PG*ImcU-z+@PEHDJRqb}5S5dXDnV3D@@hi(MZ_9G)C{715FLW36-4bI8nQ4!
zuK^znqHYim2k{WgAiqk~kyNRDv+4!C<FWMZj3DX<@k*i820^4tA*Wv~kUx*HMyvv7
z@5~@tN>t+@%rA4Au<p~EKN7@?Z{}tRk~9^PEtn(NOt86Niy#ysmDMyVw+f<l5N*U}
zJ1JXk5IZNOwiOARs6oM$K6|`x$UGWE#~^wI(L0Dv65Az+u0cE|{BgFMFTJzy7B706
zwYmkpr<Esz=n=#dY|o(gV(0h%-X|~Sp7nl-=qbwlf&ml$Trj;)5PgHl3u15({Uq%G
zQJ`jjc2FNL;Xsk_mytn1@0c)G$U}ng2k}%8!zF5H5W|At!jd+5vY6l0;)B45AVvl;
zNfbr}y)7uTd2v!I$<q=XEjT8Ku|g;xCuBS;m6S{rvS?UZ{u}A3K}-wclOR3~VtNoW
zf>_GF3u0yvv*@KkxIxSgVongjAVNXR4I&VP5yVS}ycLlegf8Xb0!a)0?;RcAO7WS6
z_Ss6*F@uPRjwKitTp&#s4Z>#bXO;Y8ef$9^7DSxgO8Y@1f_Nr~dCXcq$oy>3ds%9}
z;;l5Equ<KG+xbB}A4EyMb@X{3u6aSaj~%^$z1%ZxaS$&{b_;`8B#loU-kO()@P0{e
zO~@q>h0B6?l|388TN3qJ5X*(U9>m*)Qr`%Ii@^Mk-n>aqD4McDV)NT@RS>J$SwVah
z#2S&WV=5tQgWjh<xTakn#D*ZYu_=nCYz*QZiOpZ-ZW7K?Z5F~Jy&J@PNxmhB_mh09
zkPqlu@^ymk%<-b<*i7<qQfEi-e_uh_nUw635z71HXKVox{ujiaAU+S`_aOe@{2#==
zAifUb8_xeh90=lzAifmMgHqu9Mq>%TO4>XmgbP;=sCIma<M)3!xdrhfX9<b=UU1=9
zZv_1${5L@c53@YNj|RP`eqP6dIG*Gug7`Vfe+lAO;T!@~%l}5fpFy0Y4+n8Jh*LrQ
z6~sSD%WT`fgWk`hbR^<w7N&^zg(ALpJr~6JAnu6f1;JZ_7lYm#^-D<$mxH*H<X3~Z
zmgLuixFP&zQo=`o+ex1PJ&=DTcvq0mJNGyr29Xj%fe;=H;h_);hL9S<10iqT_JvSL
zNbwNTLMR+U(GZG-@WJ4$A|dZh5nq#%^M=x?w!-xZUzG7qQG!u5(@Ta>DumLKoThj_
zf><VmvLY#$l$Q^og7At-34czl6hg@oxs?TZI*y!I)ex#BIfPUftPw)Zq`a1p+JZc%
zRwv}$Q@ClTNyuA1)eYfcA@u|)sUJcE;ps_9hLDDWjRZ3V8;87Ekx3p2AuHr<1RCAg
zM{FvU<^G>$Av6zRyVRmZ2ucX=g|H=rmLaqXVRH!YhR`~MHX*1XXd&c=&^Ck-A&d;6
zT?p+%=o3QU5IThLXb3$*=qaW;hR{9PGMz$rO!(tTNoOHlLg*@_TT=c+2>kQ`8=TjZ
zA#9L&te3?0PU_GP`Qacc^h-*f3ZZ`p{4U}Ekqk`A2MNgwVQ^A1Bm}?kp@PE%1KnHF
z8b|tY33e)0c~l5bv#mmy5W?sX#)L2~<jpM{BMJHB&e+iZzUe__rkyAW=Y%jfgh?Sx
z4&kGxy;@8W`BcGag3|?O2vT8Y2(yxWb_n_9;RF~6aleQ6RRq2|;IF-U2u28Rgs?n>
zU<jcQUI^jE5X=y)5bO|~5W*}WyNP>iL-M2fk~B^r405f@JB2IG@O;QSvrK1*NiZHl
zLI@?#gz#*VKPP0K;Cw;;oJ5@q1uM6GIc<Na>PsOk2w`Cei$W-#S?%=@7L$LKbKtC>
z?@M16&ft;|mI{AGa9L9Rs*u+NGuu^T5<cs_8N!MX)`YM&gq0z@6~Z5jtF8{=IW=un
z2pp#zttFS_^2aHzgt^FB7sA{0kPtS8aHT~WcT6ptp0+;ZZ2{s3w7J{%osjoUo=x<q
zX;}>NCqg#(NKUG$sl45A<@tUHTcz<o;EKJF*N?o|XxoxKvUzvfhwRD_J`Q0Ab?9Ru
z><nR72%n11CxSe{$W=Fs#JTP>P79gUc89!^%e?rmk~TZ{Oxqjc5nXR;+8^@1+;~7n
zVvkd)2SfOR$7tm)!`P99D}NQjp%A_f;TzGvL{A9eyAb}A;P)Z?5W->34<Y<0lAqXC
zKUev1QYt@!$D0U^91Y=E2)~5ztF#7>V^DaUW3y<=i4cC4RQYd3DF2P^EN=5Vn|*|*
zd1S<3zR)H)8N#U$|H~eKhj1o@vmyKw!s!tB0b9nho%w-E8t3|%ALczLW-o+rp7U+L
zEMDF`Rxtgd_|LV}l*^)UC4{R&t_j`_;kpnSyb;39B)=u3@x|0TNy)!L?uPJR2=_v`
zpOpJdq?lgA@+u&tpovr={E%$EypROb1PhxeBBZEbF~Q=3hYET=P|8GU6YevJJ%chP
z%9;ozU?xz`M0pb*M)6S;6--n#(JGAAVLV`>l8N_BY%x*UL=_WDOe{4~)kHND9Zc_^
z$Y7%I%|?0i{p8h6)G$%gL@in{`PWEFZ4=|BDLE#ZnRw8|Lni8&sB7|6nv!MWVH5RC
zY#ymJ609$nF4(}tPra3sXZ;xxq)tN<f2H|IGEFo#(L@xe^N1*XI!Yn`^k!;P6KPYF
zY(bKSTb1S}|By?Wa4(f;t;lR)LNP(oQZVJ5pS-n+Hf(|WsktUL^;THswkA$bP*#pt
z+L<7>7o>!hebhup6P-*vX5w)Z6HH7r(b+^76T?hA#q3OUGcm|So{1++bT`q{L@&13
z{;b_Cat1HYe9}Y@69;QPa3_)dS)uIO>1}$O=wqU<33X7RhxTRlGtu9~022dE%pcq)
zr)YNhbAI9{p&TNwbH@e^HZjD6-^5UQMWZ&c8rihG)tBA;Kvta^**mIc&pVhk+ysSV
zOpG-#Lik7%qf9)_o-JExw23|66mD~@19j@3^Ap!q%WfLV8E0a=iFb-*cmA}Iu{VqI
zNhT(n2-0CpOffOlM1Vy#G0ntu6EjTAG;yI?HcLKkU)GiC*=Gu6cdeE^%fxIGb4<)N
zQDR?KccWmRV;$ZulwEH`8=__+8`-)E!^FqP9``}vXVS8teW+<hk!&@TW3qQlJY(Wn
z6JZk(`mKo=o!NxVOk3o1D(uzQF|l)J5fWa^{js#{INQHkcK=K5DM{p4|3KDrCgz!V
z(Zow^PZMJfWW7LlI*>K4Q1<gCP87{1Ir2m?N*0({D5-Ak&srp8v5A*Ww3YTrL-v^#
zIYb(N#l$ih0wq3Ac~waJ?{k-%c+JE=zchH=^!`+f*Be5(1)WLWG_it?Bxc_-vChQX
z!dIDCErdF2Oso~&Uvi{my#(J8+#tBoMDGGc8MR4*B%6i2E7+h!`}a+3<@gHAzYR*+
zzO_8QP55@Yx`~h2>?TYLmW3T`Mvf^9k674c;u90MOx!l{sfo`_{A}VE6T9gxCcZQA
zy@}6F>^1SFiLXrTGx>XH<AWyRZ5!{G;bRw1KfqbysZ0)~FOm}SL!1W|Hu~BG|5qzt
zPW;Bix1!vsSQ?Z3VB$v;M@$^$0B6fDY<!rL$+wOEzdr38Gx5AH^Mv4WvCn_$qCB7f
zYT`E&XH1+m@w<sX*wH5bHu0yF@RW(|>oZSEsxMooGgUtShvR5r<I~jN(I{V%kLOIB
zH*wX(HF~&-i=4aY{0kfB$Fe$?Ok9?Fkw2{cFYR@)b5rn!<hAL(SHgUL$Hc!T%2_CH
z;jW4QI9XXJY~h}X`z8unNVSk+d37vcdF9DZm5)9PZ<NX`WZ{Xjng3T_#6nREB`uV)
zP)t%4x3GO-<9wYGmUPGc2JDy8me&hqEw2`3L_X_Y2FsSuD_E##;Xw-zS$M!gC5!(=
zh8h+si%ketNv5i5p_=7QnEb!C|8JqDl)Sd(c||SJ%oF?hypDys78+PcxA3s&)RVf*
zxSh)0ub*GeUJ7}J<@HFWg_h+r8j76fK^s|M6_{7!q=Y=nLQ@MPEsU~|Z6SvSEp%r!
zEi|{#!NQ{!T3Aplw6@TO2BigBNekrXOQfA#%k#H(7XEvvbz7-d;boo=w-?U8%p>n;
zp_7Hq7P?q?Oltc0|IyFa>?)FOQm=eF`SK?%^sq3{!XOJhE%dU`*FrxFy``poq`&^J
zet#+F04eAHmFHO)%p?|uSr{T^_FLW<`M)|(vCO@c;TDdLQS#*@lC@w1K5b#Ng~=AC
zSQukrtc3{{CR!M0VZ4Q_M^dgGNog@#L8bO|6^@tdM^YwPxP2t$&XE+lU#k|GQ|SpQ
z4X0a}VPTq-lffyc8vlDF<=&B$nHFYQm@Oq|lg_m;M|AQ>N<d1>0;@ta3%U?PFen%j
zq|WL)>0t{I3rj7$Vj*h5wy?m$`vVI&7F-MSEX=nMvk<rNjLdQ@JPVwV0&}Wi6`r;5
zoET)!(k&kiDYX2&xX=q0sLavyqJ@`aa51V|YUAg3Hd<(5k%cOsG+N9$?rFrdFI!l`
zZd&iP0P)!SZI)Sh)xyV|LM^;z;dKk^EWAxS7M5Fh%fc!PSB|8-X<>zhmEstjCuxew
ziFB&f7S>o;Yhn75G)nw-I-Q@M&%sNb^%gd;QWmz+cxJ(k7T&e+o`rX$7%cWC3!BB$
z$T|No70bUxMiwWK_r*oG3VN|p*$*vz#KIhJ#2KKt)1UgR2%BXmCw~hEEqr0&6APbO
z*k@tCh0i3_UJGnkHs)>%d!%QX{Bt4s`3^17lr?2z9<XrwNF`2OwEU%ouPl6RA+vGI
z9w)qiEzGP{<dAd|y@kSWWJ)3VPK4iE_`$-D7JjmD$HKoB4qG^4;f#f|bY=_3Ec|KV
zq=n-aPFVPz$t_GOn*FndUpaF&YV!-Lwm*y4#(i18(KlrIH1V9DH+rW<&R6@hPVCD%
zWuZV?_CG8qr;cjbe_8mOV@g&LmD94P?9b}z%bt;zJ=>Rk&cb;Mm)VIN9s9B_Sh&cx
zrKc6n?o~9K%PlV6xM+FSmwlD(W8sE{n{2T{+1FXH{aIX5&}`ANm0qlxy=HILEerP#
zWO4O!+rrP)vq|pKB{=1Bu^q-e#&Q}DqgWUzVH60XZ>(}!7zM*f4Z|1qO8Apr@WBIF
z9gTwR&bBTT28+sTLXqsz2eS%?QG`b37Rg<f`69B5hfyMoGGUYr<DC{cCBrBk#@U8#
zN`(;|(dNsYS;V{=-g?hBD7#!3<-_1&Z)>D-O7~(F!WcWE4KL<cDU8Zt)C!|^7*)ck
z8b-}9O3K>l^L<&>!ax{J46jtx!>AEPj{{jps(GtWmO(q1#l_fzVLTK@9VtHzuHDdq
zi#HaSysikp*;%As{#s>bqxxYq5S}iWA=pr`kzl4E9jUR9CSg1xBulVq7};Uu2yY=s
z&1PXV7yf5SoGb|?DQ_7@zNAeUxncYo#&2P?mDo;UJQhZ~FxrRFfvs8~y`#t<Wk;Mz
z@0&;=9x9kh`Qu@94r5Ljb48&`82!TNA4XRRb_?T)FuDuxCHQ0*v%{G^1bYfH7(3_h
zEwOzB`wFt;c8^ZP0bz^^<LNL4ioD(6!h^!d3*&Vz5e0{Y;SXbI7{kK2Ii=x<FrEtI
z=)?>v3>Sq}tuopTZOGtfXVXW9L9BZ{eY9Ac5XQtX#)MJtN~f_R87DYC4F2~hbN8K2
znIsbODPc?wW7W3Cytbb6PZjwz!RdlC1ZN7)5}YlVQ=$cv2f|RpSRTfkBGkgL!*IgT
zC1}tynJHViSq7EELd-C%F!-0XyE6LZ%Ohb#MV~q^?QG~K`LZx#VZ_5oh~&jEUJBzG
z;m-;_7v@*gGUo}OFZjIR3xZwOWYQq71z{`|$wI+Jf{O)T7NpJ+w%A|ZZ1zf0^3(B@
zSCjlTwt14j5ys+jcsG`^B8-(`><Z(PFy3Mtio%D2t2si$*c8SZ39b!eT^Mf*UmwN>
zA-~5`^wlky<Hj()I_JM~&QD};a~NB~ct4DHMeRMopa1a6#%pUB+eP99!`LRg@_8@e
zj3!=vKN88uNu3=+c7~yyZtW$R+33?SzGRN{8Hw5*#y6ER_Jq-~QO4(C?3LiYFuoAN
zsQp3?2p(jIPRjUXa>k~C8H_p<#@Axx2xEmD7W_7h@51;#j32`2xx;h0A33F*_x~iZ
zou#xC<{s`wEPJQVQIQ`LJT7=5%>Tc`FTyYM^6K^RXdnNU`u8yY2xDsmA4KqH7$?IR
z7s2=lPKEJT81*A)5W(MJ{1Zl{2r5%;W~0+#T%^B+aYn426+9<+o*uQ+E8Yc~I_#0l
zVO$BLuq3=1#x+h9VcZYnx_Io(Fm8o$gA;g}ZofZUj(9uFFDc<J=g-d?A}_P~uU-EY
z&ABW6H4k|P{|h7XnMYD0C=fxx2vQ?>>b$?%cP-|g_tSz;@+!orGTk0s?$2D?GA#n)
z8+W=eRgnmaibAmnDheqcL5T>a9rgU7q)13g2`L>x86jl_%L$ejtRP6u?WGDb?E?{n
z<laq56^W`UNMSW0h@g4|H6o}PK|PVwilBA`4@FQ%f}1a-^8cV8jDT2jUBkK&JS^9}
zdQIyh^K?ejv0EQecV+dJ!IB<9Mg-j>crt>9k~}+toCq2T&lGGd*hKIV!7Rb15%e73
z&6&hzB55huT#)h>5h%ik&TaI9o82mc))BOcAUA@?k~(c8D0jL|rwH0b@YUy;yxI%t
z5W%BKNk<`9nl^u8rZ*}dXFE4&PSQDogS)c22zHI&M*Zg9gg+s8y?160mN0^TlGkq|
zJzwo5ymthzR?6rj*jMn<z!XaQM=&6Qfe{RfU{bq`rz6OVU~mM(B3N54W9$9&7HWkd
z5mYPQ)E@zZLj@@$-%~l`sR)KgK*DQ81S5ry5}f#X3Wc;eS}c!=cn{`dg_BH(U}6OG
zrEHTTm>fYQf@lO&BA6OMFxgg>ZnR|;rb%#m1T%!pOvcWN@Lz`IEyT=5bA-%|ARt6d
z%C!jeBsYWvD>e@aF$FEbu;9X{N-;ZIxD$aJ!MJ5!v&Tg8tYBO)A^40SZ(-Eo^;`t=
zL}JWP7<@j07b18uf|o?NL2y9?%Y`fyTqH>4#X?>dTq3ws@RbOb33*lUH9_jXF64~}
z|9#Bs<u{Y^6%njV^0$PnieR;nHG*pe*9kJ=+Yzi!a$4J%<nIXC6v1Y8Tm<h$utg;A
zbNKA>=8#jhy?LG&gWDq5PDhGjU=$xl@Daym6m_EbID#D!{1Cy95$ud$R|NYa*dM_s
zV(N3jPX#{{+$~6(dm{Lzoma2D5&l7NX4%Hx{BuBJzY{zd!50yHNq4=|=WDj`&W6M4
zJ^57xhv>TXp3Dz^6T!C;+#H$0`#bxH!tayzo5eGJir}yWk4JDs2q$^wa#Z;0<tfJ^
zSh6f-`Fa0|2!4*>mk551ASH?dQT!Ic?;L%i`G+7Ao)hw?;7Q&Eg#0D=w;*-?5pp_$
zGeXWL<=f8t&kMgGcrhuz#Of#cl?bj1zb1HHkO^s)*G&oD61*M39U+weE99==e-Ydh
zaz7bMBL$;KjiO8xWux##Q7DR%QEVLBFfEF~w@Md{qF5A9mdq$DSVVBkrp$Bxj2huG
z#iJ+@#n6cvKVC^^k~#x3N<~pRiaQ;jsPJ&cxdy2emW!f%6t4`-s1-$v5e+LuQ89`K
zg!jwMs1(KYdKD`(Yk8l!(a0EoE4@k-Riij?-p{LA6cAoru!dmGWNe-D>9wOU>SnNn
z4^pUjq;3=sN6{*Z)=|`pdeaWuAt#FZQ8bA1+g`|sdL2FW-IfibSp8?0N217zqEQsT
zpZ8}*(Kw1GQS7hy*r9J54(ZzZ?mdP4rnGZYNti9j*m&30&4f2+b)xvGG?XYl?Uz~Z
zrOcL59Br0Cmm_ChZKCKD#bctJ8^zC;GTTPcE{gV1bPyqR9*yF;MU6>1ilq3WZ1Ts2
z_Y&;Pgny)TiK43nyG8Lt6y1eCR|-!i+pvd_v~U?VY0oHbZuXJ%7PUTteFghP(O<}r
zCXIP9uR&4dMe)7}2S+g^3O9;a6n=KG2xmnxa(9<u#3)8Z@stRM3yu)HG`2A9JRL=?
zd%5FS-=!@_3m+pmR*<VT#*UZR34&Cc7{w&vlarDuQA`y+Eh(8E#SGyy1-V{j!r4*G
ziDItg9*9B}QvRI`EebsfJBq;Zu7+SRiV&Uig1^Pv4b3R5D0V&BIvmB{Ya4zrD0A<H
zF0+2?vgWrgktm{3ko@~`L!u)FBd2p&uXq#*Mn$n!gwI5=l#U(6vl4tRig{7YkK%a=
za`lqGs(C>?kWTnw6fX&1Ah=L)Q8IRM6fX;3l9bfH;0^6%QLKuBE3{X|>}yfH9>p8N
z8M{Kr@+kiLJM~SDyNLH_!*^&aqj-yIr82L7*N~mNTGY6xW9&NN8>4t9inoQY7i821
zHj%8vHi_iDC<?c0y_qdJ<*|1~LPE7IBG0|xXYAJev`GuwqS!7x|DO196g#3Q6+`J5
zcCx`a#9aL0;u8)N8gWs?#b;6Mj$)6E&u#39;`1odY!tS=5xST9QOx`=bsxv0m^~21
zK_Tn=dry44zKG(>D87o~P!wNBaXg9>QG64{w^5w^I_p>z-$ik2OVguKd~vkh_nh30
zHvK{HM?nUEisEpR9}%+lLH{FPG^PISgH36KIzLD8YZTg%roV_ni!Dtrz2EdVk<@*>
zJ>`Ey@n;k#qd3LUXJhGj<uAHc6z8HiAH_dWoQ`7h(FSLuc(adkhMqi4S*JDr?q2G}
zHJLNUD}AOb7oxZr#r-H!Y+Q=sX;tA1;XQMePu6B$j^c_)$gf60ycWfEAvZX{h1`nb
zu8`Yw10jKeK5G6O#fS@jlK(__PjIeC3fL%Ud!=eQM@ePl&sDzcrF?rUbxYbna^_yh
z_Fjfp-k}t+QPjpT8&BCNW}~=`#x|PRC}E?djT$y;+9+kCv<*y9D%mJwgY_zFqnr>5
z%iHk7M_~n#biMCYyrPZmA1V)s<e3Zp$~LOlsA{8HekvP1Cn(eJrsi9#E<&bSaly}0
z)w1!RjfZU1wy}JZ!k=Gf%vS2ysB0s`MnkC=Yw@s+dbalyZG9W*Hb&3%G#l8+|HXF8
z1wSQ?Z0w(|6u(y~)5eNQzTw-HsZ*7;_fsFSk!7QqjpjE0IZ@fp-+yg9;#ab5Oj?=A
zE62tc7yN9!7B&<cooqa2qos{jHrm_hV57A(U|ZYk^foqryWr1dE7i`sb;198KcyXG
zdnr4L_>>jO)S(K0|E)YzdDKQnn;%+KN?!C6AGf{VxI5eEV)I+63f-owjc#li8@+5i
zVWYc^CvEhwv2s-=tqq)(*(cz+R-3h%oO9Cil-@Q^hBodmB_Zh}!M-;73F&<+mBIlM
zJ5Z2qJIF?!@WDyR5O$yNp-IW&jmmHvBk1ZjUa>LK#wZ(xjUZcoUgpzmA`&*ZjWIUH
zvKDM}8xw7exAEUj{=H6%X1}J56Y|<lC4HACd9SK(ijAo@=Gd5PW15ZWHfGtFElFn3
z<z}{+X~W%KDqp$Hyv!?mySCq@FvqpqO9e!M_EjOZF8Vba-)%3YOORPG-;fQ{#ylJI
zZCEzKHf$S?jfm*1++Hfm9=zzMeO|Qb+KAbB#>TTY;x_++s(gHVsllR<u<`tczB?MX
z4N5JZvq9cR`13Yiu(8m_A{#G?<(CAX+g@tZPGy1cQ#+L#|8-q#W8l0@=Jm1&*K9Af
zL<l91ZYsUZ#;fcm8*kfq&Bp6CR!Q@|LHpZFy-9avskWC|&gR{zuql{orHxZneI&fz
zvhlMRUoEND*jURU-=r;@i&u&Hnd@zAu<@>q_oRh4+IWZkYoo}_@@!l7%PZSUvE4Q^
z;r3F@VvCLUZG2?oV;fsJ36!h$fsJh(9XpkS^D=pDmyABNK~4+Ii)06fxs6>mKC!V=
z6ewiwpNiUUP9yU@<<B@mcX@V5h<k19V^=!R9PDSy+xWxApN!(5W4GG)-o}?Uu1;3I
z=KM25`AYa9LGH~MSlRcD$iEe&LXYY`4)Y&43~l^w<42nx6jFY&ahP^`DN}3b9kFqg
z!*;WBjO}Lg)7i>#8z<<57yaaki~gOPlwU;tt009X3~v|5Z=WeEF8a4#^q*wo+sJj$
z*1=yk{^s=Ppp=7uY@D`nmyK-WjE%E4F59?b<D8B2boimlMNYqdg>%aVDU32$Sv*#`
z#QCkC!mH^h<*JQqHg4LuW#c->+P|rk-(dHxRT}s9bZY)niR3mX=RV56?3&)n9l>{o
zDYQ)CJsbCJq&o09UTlhBK?i#;`U^OiF-h4wOu2Wv66cUY4$>SHaZuF3FBkpUrz;h9
zye9fZN?6SCa$jH$Dj^n%OVr;(y?Y0Rr5%)UP}jl34$3+x=b(mznhwf4sNkTggK7>c
zI(WcAWd~Ip-1aLsF8W!XN@9&Q?V&1F{mK`oD;*!GoGIyp<4uy)9i$FcejTSUYX)o4
z@+E(52M^Lt1>d>bsn`1|m5cZua`0VQUmc01!u2sqJqPt2JmMfrEHrS?&_N>y=?*d+
zZ+FnSJjLj%?4PG(N=A(xG;#PAdJqdn`FoPx!<&_+4zeAzaG*G#FuSjk<Di*?)`fk|
z9nX<i@^A8#1Iv|`4qAz+*7VzX3hl6LysNU<Z5(7?@;`RT-_AjM2YC(#JLurxQ3u@}
zJn5jLgH8@QJLux@P=<2-P9^s2V-6m7JWnW4Kaa>;NmmEm96Z5xp5%2sCBgDOWr5PB
zn6HO}o(}pr=<A@DgU|XZ*UI>)(Az=b;R=H{Zl?Bg(4SqrNg3o|0DJRk<<9}iK-S_`
z>U;eayPpyqs4({XQobP${0=5KnCM`rgJBLvI~e2ODF?%u(81FVW)D){U8sz3Fw()y
zB?|92h59Oe`zY+bT}6G{i~61_?OR{eSK)f4u@1&LcvhlDT=I_>&UTx`24`9avm8uu
zFqPg&$q;3lgNuC>UPp`irVFQ#W+U^IqkWXwtmZ<6*5*2x<A8E%79XNeCqTa%<!R~;
z430hrryT?xgdD7Ou+D+$z;dwI!OIT94k8YoVPPCZ9sGMY)pZbaU_0I|)p79rc%{?b
zR3f9|4iX|EXKcRkIS2C`yyRekgZYe=gfFry@20+xOioUHUL*@eVUgs;AWaczYKeoT
z4&HLG%E2q-<CSF&UKO%vpzk#YuRD0t!3qa&&>!Y1yp}uAFZt(R@;Car8-oW^e8jEm
zGFP%Bm;5ACQhcj92CMjZ6_~25aX>sgTY1~TdI$UHq7F7V*y!LB2cJ54hpx*3yE1bJ
zM~8!VrP)t!P~LN}#X+rE%Ai@wf>ht-7nS!pv%REjWm^qZJ`m&x-6mwagAav#BuIsi
zg)sR}2fNt6vLj;q{Zw9`amFa%Ya38LcklvyyV;mWTkH|sWhi?&mj;xssh+|C2M6h;
z4h}o`f`f6k@~wk9w^F}!@Rfr@4!(9!TvfhdLtXN3zU2S(lK-bm{(mm{|Gnh@j!oCc
z8!6v&WU+B7`F@nq!4W}kKjPph)AmtLIXFfS9O_M~f6}QOoN#dNJ>_S?KR6#c_?5Nm
zt^6jEEB7k>E`+0oYP`6bIw@1xjZ!`u`Af{w^4~&AUG|@GaMnSJivljru_>l0cjyTY
z&O5lk)^>2o!FASgiE^29&YH}tf+SbiFPHr!ysohpOBIqE4sME(TO1BcmD}{~rQRx$
zeBx5&u0-7vYc%*D2eQPrx$M6$Q4~_S-BP8X>y;!`&?i_(FikM;vY)X<T@>T9n~P6f
z6n9a=#da55ZI*OV%0&kkkGd%BqKu1%E*iNg>!O_NZFH>TqP&X=E~>eJi)f0kqKir{
zD!X{V#rn0G53W~o`*^EgDpzs65jSp*Qq=`<%4I+Au+?4EbW#0ur5djHNWw{v8!~IT
zsO{oGQG1Aa%~2wk{Y<jpvY))Ji-%or+N|fIzKaH~cME%Wh?4H&_KHld=ZP6CzYt=k
zi^eY6xX5+U#Kj{nvR&l3cxPoM$4(aeYpTMlsSrw<xoGa9r372JXjZ_dxco;6Pludj
zYN=}Etwf=<;9HmdZCUG?%H`eO<5fH1?FA|1Sm@}YlZ&{Egp0>qJnmw)i#aYjyXfNL
zDHp?Cbam0q#Sj;M)_uM5gp1y+g^TVko^;WJjr@+%ldhGgTpOeuoT)I_ON1#imA)?e
zNp}6&Xm`CwFkU}RP|mH(9N=Q0L=6(mb1_&5x2^J`0tdxVY3c?WGKaZXTFu8szB^kP
z;bNqV(JscgxIa|k)WI=0%Ei;7%<kBB**})t#WWYwU5t0V0X~&IvLSPV@QE%axtPqx
zWOuvZ!xt5r4@~Fd4++)2xa_YSP-eK8>0%a36;O^}_Fum2PrKr;dd1)Pihr()fD6M#
zkjV@9R2P~H-9_tuo+FJL@0DuHTxHyBCFH_%VYvvq;3F7Uk1Q>-h|n!vxKd`W5^Y+W
zp*SwuUGew5;^%G_21~9}Vzl2!c`Z+Q#>KNP-f*$p#dEBMi$yLLOQq(E&%Z!7cCo^j
z$7RXlfeP>bFS2;$eJ{CqZG^HwaG@X<doR0K;$j(nyO*-m^`1sK5cme*72#8^_^m7c
zC3BQlsZZl06<)8i-@}8r@OYECxY*+2eHSZTaKc~fVx5b(T&$A8vRcftYv^)oWE4EG
zR(YG_j!7QO+bFRcTyIh5<$lFae1}5%-XLYOi+5f0P08DI#n0e-!Wmq|oBj}GtJwd5
z?l;j}2GjmF7hJq?-usY)Zo1Nbrt*=Cudnz&b}=!h<qm0?or1dr_i_GrvD?K77eBk$
z<KlA{U&#!x*Tp`T*7fel`$h8q@1X}=9AsrzWqu(@^7|Ek{%!OSvvcu{i*H?g@8SnZ
z&iUj!(L5DWsQjagpIjUfn~b8_!@}q2UhL7N{FspAg4Fp%$Zvwb3NkG-<wf$Ri<6uZ
zW8P~kcc71WiUWB-fxlc&!s~Ar{|G<r;*5*49HB05aV~OkUgVctTy}9m_(j2%e?F3*
z_KJ(^E^fHE>f)M<lyQyw_RJbEs(HQE%^sRkYHX#nnIkIQbn)hQ4W~Sid52YYktQX%
z>*7D^$50@KVa3u$_AP&pgVaUGtjyEhvicQP$`?v67(;3dz8DI{@JR2>t&cP;`9Nk~
zp@s`PH(WBQ@sR@Q`%kAAj-f~lMPn!yLvgXppTAjvYX#C<R?6I8A+!EP<?jQjB_*n2
zzm{cUC>ukM7<$G~E{5_kw2q-o3>9KHIYmj2AtQ#0F+3o_N`eo?P+3To7^=olO*oZn
z3V~qt7-|T)dd1HuUbSMVoz#3#i0`TwRVRkJN%_Mu)DvD`uz?^%tzl9pTSz0pOu@#2
zP1q(vvILt7Hj=c=B`1bvA|Y=sq=ldoLrWp81Ura+ZVYW>cr1p;W8nPXPOzh3`xrXJ
z@MsMEulgA^POy_iG1$9?uX7CMRe!gnq)QA7ull>juu(Lh5PA0)o{ZtO8a^iBRp)c1
zR}8&l7#PQ(IQqo6-3wX_dJO%TQ4CMTFg%6<G4K7-(3p1&VPFi`-^v^$m?t<`aEPE^
zaMxA;4_CcA@~{~G5;7v@tyCw(FfoRaG4Jj?O7Q6zMhh7e!+0T#8Y^U649Yfdy10GS
zAKs`;65$+{WR5af_>>r?#t`bSOrxJ%^UsW7x&&tk_FSPbYE}%t3{z$czA#E@a?L+C
z=B*q!Z3e`MDp+uwV#E-P;lmg{V)7WeUh_X2!*guX7%Zt&I0jb;s~-^(jloVz93lO$
z`C~~*Tu4Ij85aARp9$FrY?gU3%x5uTcp-)@94vf`%b7ohmt$DM^7K+(ieUk}FNQ_z
zzKve&Vj(pLD|~|MKFGH;hF4-(6~pQnmPwM=V|YWzt1;{^<$H~zY^d@m=ks35a&}w{
zZ^iIt%v;{@VQK|idzeQGj!@R$O#O7d_qenshPBKkhIe9E7sK0PZ39#FQM&j&JL_Zk
zd%1F~QXaV{q1iDWd5_I|J9V=de>a8^1HH$5t^}y|zSM53;0J=+V%RRkxaN<_GT`GF
zcEs>t91q2@GlpF;q{LAmj!$CvlsU%mPYj>Musen$F&vFyPYj>O@Kp?lV%`hny)o=#
zmDy$Ty7+(yzYt{XLALWX|C^sGU&g@AT(>it4h||`$M8)I-^cJn43WF3-^TEr=<`i`
z@d*l3ExnscImwSP{1o%vR5R^i(V2KRb<N$>V=)|;;O~MbV)#|a&w{@QzH!a}>ICIC
z;rTZIh~ZBOo)kPKmigZMF9~kF=BL`}7|z6SkCWR}<!lV+Vz?2*%^1$da3O}PF<hgv
z=wA_Jl1oA^$FNr{u&5N~m;buhp{bv)`ESK=TY~=y-VwZe&Cl3>W4J59(-QREOQrC>
zNJv(t_zK3cXqr+gj?!_Y#^H;jP#kF@EG}3$j-o=SRzygd>wfZL!XFl1LU>8RW2-Z#
z{FhoLjtAnX6i3-O%EeJWjtVs1JF{XOzZ^>;$>%&CMN&ELjoj*S)QF=>+<Ro;RW*)k
zNe&?c<|sAe-VDPjiyl}jj@of3*S$4Auddhqb>gTS$CGjNh~wcn>c!DL4$M*N$I&3}
zJ+(ED^PA?#h~tqsvf^kM_eN-@U?V{W>AH>MXd=Pk*F8@rHkDwGV76f4fVXsPCVbL$
zKY0rlMsjHxN1d0Hu5q-Aqjel@;>e9--2mmWINA!~%JWX$JWAS0u)Sah!AIlhD5R4h
zbwbzukH^tjt}bGqLS9R*`@2a-PYAv|+*^0?jTV=?J>%#V$EdQtK5=Zm?*Dh9(p%ci
zdkxiF=^IDCIQol(LH@46#vC9)j{3Yf2FI}{j?d#55{EyI7vgv^j-hc3iz6NfSJ9m7
zo{D2`9Dz87$1x&~k<2cR32{thuT52+j$>@x8^YwHg^Us8aHDXX@bQB5?MXsrNJ7R=
zj$=w3Q{$Kx$8;JDD!aFOBX>{PydBs5#F?T$D~{Q5e0|+Nhk40}=5S+BjicRUB@~Al
zhbCMXq|gu&jN`ZKeg>^L!f{06h{kcZm-isdtJ~X|HtRTEaRravO?8qaCgj_@sf<m;
zapSuG8Twesyk|K;Zup;L>}>B5V_qEd>CY0Zf5T4+HD8KjK^*U}k>gm%VZzRh<Lx*W
z$MJF;%j0-6jwNw#O}jLXSK{8gBaVn=al9JGYjM0TQTa<v;u|tv@^$isOt>PBRdKAQ
zro_G_NO`^*k(z7bSS#|jH~h4}K8_6%+!*(k+0@BbW)y>)<9IiY&qU$9IJSt+t~lP0
zV=MhIj*lej1Cdjod2Nehy9j9^-_*wvBxmdn;X9=+_bcR4=Mzc$sUU;9MWK(BZExKB
z4fKaNevD&Z9Q)%q5XZqd&KB_HUth#=NObt)=9h7NCHzJKA5(oD$2SuEHjeM&_+C;`
z&V)qjll&CN;W&yVP&|PnaU6}~A5JoH9HSfG@c$CWuW=ktdd`VBeinYdqK}^QoA5sc
ze`mr;${(EKCMzVwlX0Ai<FEgt|92dr8-8Al<vW2hEKeNgSb*6IpV!XEaUqVv2^2}-
zq71{!oTfG?uiWro;z;~2l`mAU#J%@ySL3)A$94K%90e2JGT<hs>%QI_SH7&iMF$(E
z+>YZ8+mkNMTW!LN{Vxu#2U3JHcu$ht7vy`qEjRr67QVXSPffs=K$G#xsT+P8FC<x{
zC6G5sVerGdsUP1>Et>G=XA)wG1WG0_Hi2;oluDp<0s|5lm_V6?_g<)60_77ZEBYM@
z_^4lj^65&&1Rh8rL*BhqN}zHA)f1?ZK$QflCQvN_B#>1ulW)>^@kh)B;~MkCig##b
zeP+!BY9-JqfyWZ4o$wY^9TVQ~n-3=NPy%%lsGC4`0yzmh%*I@k*;ue%0`(JUAe_R6
zLed2@1n=JPHxiO5NS$-OZcUQ>5g}O#G)+oM-SpF+n<daHfz}B$Pk1AjR|_FZ0xgAn
zC(oO0lCkX)$Q9l;DWO{XB=3;Gqe))trk}rIv0jf$?Ve1aM*^LNQ`kjF*95vHB~K*K
zU3iuMyx((sCcL**e5XX-bX8_AmV8xaZ^1r-eG}*>q`x3zpPk~p2H`80rZ@eA*y9Nd
zPGCp^ere<p2@FkOnDD0(-tR}eQ|x*{;R}}G3Fx;|xs>HPb7TUe5_md+(Fvrj_Ez|>
z&i6c%Ys)c`w#-;%e8M{)JuQLh2}}?^F@Z@!CMPf@fvLp*yz|umAO9ay*8$~3^}T^z
zdan!Yhjfu;vniWh*kxII?;vG?M4BLq^xhN%fn-u9$t0Q3r1xG$no1Fn4vHWkh#*}+
z>E-|B^4oL%=e+Zs@7{OceeJ%NNiy?>WTXS59MS*rCkc*rV5|e<92g@a9r6$T@eWL&
z&o?m>#RE%`Gm+4MWhXl@MeNB(bN_c>ngf3`J{|bVf$0vMcHoQyGaUGut#w4NNoG2*
zXLZsyg0mc$?SR7prvnkuC=R$B@Hyaj!0o{BMLC$f4tONj^&*C4yS#`|9r)+tG;-$7
zT$&V+T#aR4!~}&iE95|!%PlTd7i{~~Mn1=Zxem<ZWW9)4;DGWp&wR0`$Rg^C7<yai
zz#<10GjbeQC%H=<SjJ#*V6}*>bh!g7gs+rJS!(OYX>`H{ta0GKxY%LhYOMpkpW1Q`
zNLw$)tbzs`9oXc+W(T%7u+M?-9oXu?HV1Y(@SP+2Bm8#39USwAaTLFGAhk;DS6`+%
zE5}mYMOR|5+kxE$W5-m9Dw+1uEHQb}l(Zit_mBfWIq;(c`yFWTFz)XsaR*pSq1dnZ
zEx>`Ug<@%W*nuMsoD%z^oQ2A<bVye}i{_XEkLITx7bH31z)9gFpV}x|W22U5IdPvx
zC*n5;&I$iT@K?d}g56)m(B^^z7ajOr#^Eo)OAcIi;EDr(i1?>WH(gy7k>r{KzZ^{C
zz+M;4uzWqJypf%IQ%0V1aod4A4m@+<xdV4)QE*$k@4&rxTrS3_dEkgX3HXoTL%~Oa
zj~)0|2y_1v^2C9s*&5eV8&~}cu23iU!?c$UymH{R18*Eia7H8ftphonDC0z&6FHs8
z<wOxDiaHVFjQ*3J+lf3vVx5@#)J6?cUMKR4G9Pn?rfq&5LuCQsBn6!)B)NqJsbL$4
z#Y8OOL~$YS3YHXJD%-NOkV-?-$~sX__y>aJop{fQicZ95TSBU<-~|8Hrz`re#13ZX
zR(7I_@byx4wQPNLC*BucLvWwu))ZItLnpOlOcDhR&ggnf5^jDIU0)_A%uZOGNOoe7
z6P><|Ufo%pXzWB2CsLfei8n3PiP}!oapIrCJ?c4;>BO0*wlpWw#hyj#3dwMSmxAv+
z)OVu%vnap))Yia>hIB61jg5rldS+|tL^CJsPX0=n*4&8}^x#BiCt5m@_RQACiMCF(
z$}ZK~i8e~w>se{-M3Z+~8t47PXSViEbP!EP!FLy;A3D*6W9USd6J4G7>{;~cw3`?l
zyB|00nQh)PTMs9CI?>Asn-ja9+0KZ~t!K8Kv(q+M(^Hi+l8>C|?L;3Z`Z_VdiGfb^
z6DQwHj}8%2e<!~AD(&O!2D}m{V`ij%!oYhTt@KmY?!;gxK6hfg6BC>m;>1uVMmaIs
ziD6DY_M0|>(>FCO`MGU4`y!=Aio<Ae5yv<&j>QY~80*BBqR|DnJhx4BVv-ZnojiCX
zZL$+noS5ds=5N!!kah8;6H~?2@#nS$)^s|&AqDfiuzkhYdl7Bn3@1`w*uECCHlmsB
zgu{t?9%OppbV70Bk_(qza5>@T9J$ch1&<S6CyXwbTu`0x@hlV<io4)<BH+XdCssP4
zIT60vYrYc;oCtDe2d9Mu!-5obCn8SFVFO;r%ynX(==;5}F^lOLum2f=_YJ1>jKxkY
z6uwB%Ts+P3Q&hji3F1=0WrE8EpPh+a#SShsG8J@TwG(TcSnI?()}^4fg7r>pU@$xJ
z(20#sY;xi^CoXX4oY>;TK_?D5vDJxfPV9AJpA*}i7&F4~Eyvl39po=;r)nl{AKBqM
zClbpf?qW~Z)G1m#amV_)TZ<&_=Hg;(zn3_$aL2;M62Irls*q@@nD`@OsZ8PzPFSzh
zCfV=A0VnvgbC-M_8@}i;cXP9!oH*>nX)Z2Ce!;{e+_GYO9(UrX6F+mnU)a>5iPRrs
zd;Tm*a>9w_FKm;GB%XBQloKQ$^r}sqYpi|Ni3)LvzdEt|h3y=d7`LyHZH`q)Jom!J
zg6C;mC~9`miF~CKuR3wfiQk1^a^kWRSDd*2!uE$~Xs~-ila@8w=PTU)PbaQR+wME@
z7nehk#J`=m<-`pJ%=)@F8NekH^S!hYtG=||=9>Ms**z!jI5A^&UDkWoiS>mN?^jN2
zIoz=Qo7yLl_<%dc+SaiRb3EeS<wRixMHKw&#D7k_bs~p?C!DEri7%aa<-}7bo;mTH
zi*7>Q7o6w`b^qGhr2b1=j$hJ0oly6)@`<mx<X_s}IFa{Uvrmo|W{tOsC+1X;OF<q5
zc@?nBF$!XZ<fzep<V#y_;nW}9*(RTY{0a&vSp3qaytEB5*XHba-NgzjD5QW5rnhoP
z<SZ0bP)tE31(g*PS5QJhyaFgFsi2gCG791pR3Bt0tzdM~#N97#3=fK|rK}R2@p1}=
zA8kXiyn?=CTbDi2vhLLmzrD0oP@;iUQNep0gqJpbW3x9cqiwK_X;MW&RRxI(3<|0#
zSoKSr4;0j7EehUOP(wk{SGEsc*)~;AWIA6mF@bGf+q#y5hOcZSQ>S&hnAjoNR69w5
zQGrE4vH}wezU^REu%USStXH-_3MD3tY4TOYL@S&9%66l0Vv2%=k1~h9pBPstk-<|(
zL7IXE3cgX0uAr`hSqf$=$WTyE!3-rj`<V*rEBHdemkJuNb_E|R7@(k$g2oCyRM161
z69r9`XoPoAzy;DwK}(9FX|BNY%GN?$J&JGNT9oZXq<tF&ZAFvs$2Kg;>e@44y2LQ6
zqk>M7)%j-0&TLQV=t`N{uNbkb0=t5b6m(P2U24n{%bp5)aLR6#rp@m^749WUn}XG^
zqHCmVk;LtBiM_?XuVnR6_+M)6ch&V%&|j3abTl&#RPc#{DWVx9MM8xV$0+zz!Dk8v
zEBKr<u3&_M@2eDL%ZG@~P(g~r6l~etjKtF*2XUl=Q5?7b+Km>2vTbTpd9g|Du?ohC
zX1w4e1^ZvwCMcNrPF&NBEtxEQ*4=h2!nUy)Pm3i^Rqz!9^|kHNE88>$&iM9EU)c@^
zn@yMa98}NvwSo^`+Zw;N%~UX9Ym<kki#TYeAjE)FpeS%D@GA%?aC0zU+q?=?&Xn|*
zE4tB|*4$?<YV8<%J_Y$k#y0Ppq_JT|+6TED*0v#GW4P(XUN5P~CGIbqs4Ivln8Vel
z;Lh=uu>}*yy|&Gh)iIwdt5S5s<orf{Nnfa7k%He9T;jr1utdQ&E=C1Q6)aPtyWB<v
z%cbCYMzVqx3Ys^q%_jm@Dj=@ngbE>FBV?_DbwYeU#!z|rSu-4o+BeGEaFc?~3dSsL
zwuQZWZCm!*wpBc@DwfC%a|frgV&X0ZyA^z^V5fqZ5{bQzHRDS8j!UvwV(XA`4=3fd
z?Ry13Ft>91y$bdzxcJ)k?`vDmRrP;lu7Yz4e&I%OyfBCEfP#Yx4k?&-qvSCK$61|%
zw_CfG{=MB{1xFMdRq!)EunHxn&1*(XzFmjNbV9*N1*a6Sc8aID#Z`%t3ftS95qt8p
zT&-*Ck}&<sX2^V<=i0wr=QoDp)YJ>YDK1!Fx8I9)oTJMMu5i~?@KnJc40r{%IYA1p
zDfm;O1#fJ*-`K9RUKvC3zZ4KJ-m1gmH>HZd72FcSfQ%e%c~`+bZfLYua9_a#8PZ3b
zm$>%HZ*1U;dK5h5{#ibeX-SF1$DE+?F@{;ixb?m4lT_fhW`mEm<ODra@SLOSLaYlf
z6ue|)mQKv!!l<!LUU35~p2&}?*9y*mRG;aMkhcojy|Gcu>53ZX5+v!*Ubv9Qg?ujL
zccDVX_7_^zo>@LIuM3Axx9PjJ$;z><3%D@iR-IZ?+y1el_39CA_$PHC7Ye(O`)uy6
zvkDY(MgQ_HD%fC^v4jgHU8v|nB^OG$P}+rmj$3$jUB-ntSM*Y(f(tcF*0L^?bD_Ko
zzG($1uAFL$cLDDV43@WFnqIz$;(MZDsq4$Fm0kF>Xwv&G+&yBc;zCsys=2T&C7sTz
zyYTq4w1p|@{27Gb=4!a`+g`&5F4S~k-H)aP&8-P8=r0VlTu78GgJ6;i1qzsH`SX4g
z(VSgZGhV`NF<PWY$u3w$pW;HQklHS!xzO&8rH%``{RXDg!^W7)hIAK*bzR61LS9cu
zrVI6jG|1LBbfJ;(#@U)CE;P;N&9~KS?m`QxtEJ$GN9I;STD#E3g|@;uJ{*=A8w~AS
zXzv2a-c9v7xIpa4$&GDD@}Ub|T$tv<S1xpQp_>bnT$t=acNel;7~;ZEUeI1l`SoXm
z+B&6&3q4)v<${e4OIescal!7wM=tahO+Udtf_())YnYd2{ayIjg#n_WI8ey&t2N25
zKaS!cPF!~GXD$pD{`vni+rQX2%!RQW)mG*&-q?n_Kpf%1NFn5-gp77!jF6buQL}L_
zjAs|7878<eQ3(0NqlU7Jj3iTN>B5&TOm)HVz2T1smPG>_RJmnt*~z@(RziUjhS$#I
z=^Qr~*0`|Ng|A(h>B0&ZR=P0njct|-&QT5fxDB&iaFBCIT?o1mV%(ZcUmULIa>32(
ze;2&G+7~6OP+eH~zLmKp#~FNF2;&S-29#;>B01oK#`YYpcmB1N#lwt77rv2FJxr#E
z3tN@s`7X?H;lFE^xq|ZqDbiqpi#O#qq|M9!k{7zL$OS4FyRgiKf&W-G4mK|l%~HnR
z`g+eV7?z8kS$7MkadL;RG`88BxQf^R?Cj~paK9YHbuO%T;g}1@UD)8lMi=(EaG;H4
z69?f|!knXq%`RS36(Qfk=5e8MIk>Rua#qpB2IlT?VHX>GG|InqVP`h~PDt)umfb@3
z2<{b}FK)kg;RhFfbm7J%(_z8=boIt|K=?tyLxME;$pzy86G;`b>4*!&qk=!XF#VF1
z;yk`}`mwRYEW-&GPP%Z)h0`vaap9~B=NRN6L*W^w$#0CrPDPT4zi{K4Vft0@JU0O$
z7hL#V$VI`1F(%p^sN9Qq#f3jOj~<lr;HnGPWa-s+<4+f^bHj9_fE$0YwOqVz#JX|Q
zg(V$Ki{7Rl9-92O3%6Xj%{X~%dMQY9hufF%d)b=%LLP9R6!I`z|A>2<3;!|<TzKNb
z@Z2UAXWH1!^wfoCE<6{@7uoh>t<l`P2Mn)7^V)^OrBj*SxbQZc=WrvZJF3qmNP@g+
zi^GkN=S;}$1_v{b8)H&Tc?C)G3F%kUT+od|Zq#*0H}Jx4yttK6T6hsRs_rxub)%RY
z#oeg9!cfAEl5X5RZ{QMZd^g#7(@;umOlJ+WWbramFix<n8&|J1EGJlAFkTRX6=)-*
zqF^QZccY5%_uZ&Lx5DY6nj6)HKe=LVq&57&jhb#)-AHjG!HrsO7~L?5L82Q5H<H}=
z<D8iVxBqMDcGtZ8qS;c#WOj43<1KC^yOFPvWsBc5rf7<1OFf$L+cz=QjWlsm+l@MI
zH1(w<ZHYRWb10gd?#AtJq9jAQ#-7%5BUAY0cr(QYZZveGksFQO_}tCMrlNz{#Esux
z8k*Ca8_nF&pUSU3jvM(p=HeS$3pZN2(aMe1ZVYt8)6Lw*jka#|6yAA{p`Dvg;utn;
zH4)nj@8Cv9A=GqwN8I=@Thm2IS2wz4Yr4CU<wg$?FQnD0*TKw!y~Mvw&@T9qU~j=b
zf_(-13HBFc^FDTCKsM)M|3vtpY|W=`d?tLbAh!q>8S2I`H;%b++>POGjBrD7!{x?E
zH%4(Z+?eLZ{^iCMlg*<Uif)V*aRLXyU>+xYydZ6QA2v;NW0HuI-S~pFOh}=AifF#;
zWBO8vX{-6+Uq;ubrmx(XnO%0e8#9D|ovnHO$U2MOx|n7QR{YN7V8cE&Io;T>&P=z_
zn}6I;-SD}iH&b~8y@K=J#`xU`xUtQR?QUpp1l?H6g1q_1jj$Wb+*t00?ncCoMWW~b
z_;cLR=TjC4&gEisW4`-;r_@r<J3oovxUo<SczP|LTU^ZQr1(;I^n_d5lqB-DPf@bE
zl??m4@gz*E+*mF8HQBjw{nFOCv7Vx6j`T^}BxIu-<a|1bxLNoXH?|7txG1XJ;l{VL
z?38xUjh$|M=f;mB@`;RHZtQhqAE)wV%x>|v$BkQgW7&Z3MZEbYddKMx!q-&n!CRX5
zOIdn5;Kpm_c8cD&f5^?JX`=u1F&$>rZp1u`>)a*ns3?EtxOGmWc*2d7Zan7#`PtCC
zhUFC3HCLz`r`<T?##uMcxpAeY`Rpj`FG7BE<ARW11<$*|Lt|)gQN+uFzq|Pu9hM(5
zS33|rbdHDMT@gLc9z4G$>D)=vH8<|N@qnKKZd~X7&st8J{uaC;cvJAhT*=hm;<n(%
z9d3zk+!Ouj>82@X4ePEOn9Ibo@}ekN|GDwd&DUlb9tl1cr1-B87JR~?-fU!g>c+Ed
z{-Ay=yZ^$Cmog6IuQ-zInj3H3_@R<Hzb86AIXqFGQ;;N=kQl*O!Q39?5t3KzX_L<b
z{=i7W;srb?DEh(2tc5%v78WcbSX8i>2gQYy5M(KumG+>F2fzQ?$l^hq2W35g2NgUh
z=Rt>a#_}G-)8MU*oM~O(<cF2b=C`)@JgDe_!Gk0Z(#oX_)Y2<?P}zej9#r+9mIn)B
zP1QX3bhPOM!RmtV3)T=km15HKm}?485N!X}M*Bo5%i{6nEXT`Rj2?XQ*2d<U*szjG
zX2FS@jQ0;2sZ5rZTRlh-k}6nRu#RAwAT859s4F}}koy~z^*w07QS~FQ9}PWd<iUR`
zo~UT-K@$%qsF<jtsRzwG_|=2+Qn0xPA9>K*gBG6XNf#|WXyrj`4-OVc?&v`$584QC
zE7(quS?z^%5bX9|<IX|?Z;j0QP<R)?t{!yrpu2FpV3uGHK^ph;pjS4xdGJdi3zbad
zyhXo{2c4T)&w9|;gMJ?L_uyj>)_Abig8_^U58NJjIG!F1@?fe5(>UxNeCEM$4@NK~
zJowy$VIJ&n+iccb+Yk@Fd21WW2`yfmA`_2<+#zJ72ctaE`;))$V6>1a9we@4a<gf(
zF(QujV4RTgf)fNM3QiK7EO_dzjZW^owW&*Lf9b*L616GD<gkAwxwAZ&?ZI>pW_ZBb
zzh?8at}{6iIZ`X+u<u*amBtPaGIH3R9(2iJzge=~*vhpPDLXQU-Q@w1HeL@@50-nd
z!ULZNeh(rZ%<&-Lf#$)54t2vG1f>*>*GZ8Ojc=s;bJ&OfT}S8m{9WhFFymYg=6SHt
zgGCI&Q!VE+P&q^%9L-^$xwv+p&Pjjfu;<Jft#L6e&$Q)OEfKdgAYbaiG7m`Nb4JA?
z*V{UM#{0ppD?L~xW~;N?z^<+HV7&*MJ=o&GhHU*t4|0E$O8=Yqmxs?tl9JQDmCLQD
zf&6C=wh7<PT0HpHgPrX4LgNt+z7r2W2=bu6U7qN1f4c?u2=4V@pOEhbnR~f^jvpB$
zos#wo9uPbzcu4Rk!NY<yYoF83x{flOavIgnNyj`m&gt75bHam@9-Q*<UEVQtd)fn@
z0Cq-N!UHk-A&I}nu<_?S`0cp)7eSKhV;cU(sqx^A2X8&N$fd_cmyq$&gG(M<_TUAB
zVN&815B~5V*Px<2Q{}2BdTPym!M{-Jng@S+KyqD><S!vN1aErqw~$+cw*~JA((<kc
z_ZZl=T1De)QRGc84?OtC6Fs};q2MFI$AVP;E95^9o@8sD3V9~@T=2m5A{R~+VVhrZ
zUKSZ&3x4>>+B(yc!yCQSTz$z9?~ShFoL=PeBF2kY5veKWMQ$n|CFBt#$?HYFY@T08
z0l|WTg#-%=7V)B}5MJ`JAiWhAw<QEi3YHQq?L`?cD&$Ux6C^3?MY(KVo^9A=p%T=v
z!CqAKVz(E2yr|?wWiQ5gG2V+RUR3p>ix*wJsOCj=FB*E$$cqIf6W;g2=!MCP8eV+h
zMNKafyh!rmbKNqnSVAo?3|^2Vdhzc9%c_%^<V>dmmWLZGJZ9YN1u?~oR4**TDJBcC
z3f8HYS^FLFB27rcA2S~B&RDs@q694IUJ&aFW_VFgNTwk5^}T42&1a=0H1?v27p=W$
zBTZ`RMGGO#1e*&MD;{kgQ%ezBdEsdj?MPcM9+XPx=tU<X?Yw9&gvt(HeD|$|ge~vv
z#fQ>J@)v6|m(8_=izRgPqPrJ^IVN6YdC|j*zFze6qNf+Vyx<w;y*X%Vp6^#$Y+l$o
zBa18_d2yy`)~#<W<TU8xMbK-h+A!h7LQ8)yKK5de7oU1Dzzf>MUP&3~MZ2+<Zrd!M
zFu<;)Fijn6u`aS?*2w(K3)f;xg+-RnS6GI4F_hv;%V;l#N!4^dQpj*GMtFHJZ$^;@
z2~>^}<>c0J<n%U1oQ(Bi-xAB|F_sBlO!VR#FBW<+$&1Ne_`L9YF~y57yqN8UgJZke
z@}(DFc`@CK6@#;;dXf2g)-*2<=g+9RCS^>;%o$$H^n&DT!T;(fkk1kxB~=rgoI5YP
zUZ||y3pZ=8oZw+QcV~=lnm(;c!bw|J%k`G^eY5U9D|fnn!ln*!NhdM`tip?HRWs*C
z2Mr-F=6LaTd}i2-Cp8mv$?|Qmbf}d;n}~=B2?@+vyFO)}7xNj_UaTLMHTBE#D}Kr-
zzQc0Af3HPeET+<n4PGqanA@{fd9m7yrCu!aV!0R3QuDY{6IO7Rw_2LF%OYRNY2q)S
zsR?Vm*t^m4sBpqsFUoJS<SUZEw2pyPz32XjWg{0z!(N-c*y6<|;e|3Y^IpzeSt?<x
z7u&tq;l<p?vD>&9J7v||X8G2O;wv(DF_t=6j<n0%$=LHEO2%gq0}T?^tj^raf#Pyj
z@t%tBz4(Dk&x`-O_|c2~UYzyfoELS{5)QDS7e~D~DB>YO>VNX$u<+`8Gbl0ue)i(H
z7bhenj<I;7go~psC%yP2r~M2U$WIxkgr63SG54gNBTW4-Ui`|S^5VJ|=e_vNi%VWy
z_TqvU7o`iod$Df5Wm^7(A!|~?)`S_g6WZ5K=u|#F_jb$Kj+s}y_`{2<+<Ytv^mdI)
zW4op2icI2PUfl5FA&0blxtm-^SJNJN@sAgOv*oKZ>!l{#^5Ql(gw%vPf_DWe-V<_P
zFtt<Wmi!59z_vmOD|=^k>tuPv{jFB!V=oFc%_Mo^#ZxcxsK~408GDhO@Y0J{UOe~W
z_th!otO+j|nW+h!=+|Dn;fAatM#WpM&Apj9Rla&V;bftN94aP%klDIQ=CG0pzkiVt
ztD?jD%$X$<a;qp?AYo9k=)SSNP-Z?A`BfBEQA|Yv6+ISM3aj|`{c<D)MJ%LZ)ZwUD
zL`B84gn5NCCw0#%uA+pBGAiO!lvHtXt>y55o~2ck5>B!G^Rz`DBn&WTZa9`%Rz-Og
z@hZ$U6UwP*bTx(Kzz3OpCj4==gkS3<OxvD8v7(AfDw?Zkp`x;iDzsN&QBhSzHI+LR
zYN@EMMtArcDn1bMzKYDS<=vh?EvKE)TT{it@mVD7U7{M@<dalbKh83!_$+@yo>}qK
z7*&`gi=12Nm0cOhD$-P>(^5r>3bs5|MQs&zSo@lkhSd_%Yb1225yb+H66&hRP|-j|
zLlyPd02TFB*w<MW88f+2kW4#}!6LM5#EX9wV^&+5s%S!+)s|JGEWS||lC&+BIXUgk
zB=_^pmX<17sTio@6BVshv{BJbMRyf#Rh+M!&{@TYD%z=NFJcE39fi;jb2|yoDV(dO
zi;AvlbhG8wU2j*$p-q;A4VElUrHZ~P`l;xtqL+$~RP<J1Q&HEFX;;B1ATh1Bko4Y`
z(TDaMQog8}P*Ozl{wnUTuzajy0DHa7(tKOS`tDhD&P|?`4pQ+c`=UlaRzBmS{#Q~y
zS20Ay!76sGOyMWOP!+>ej8HLB0%^D)+c~t2g>f}XM3T`GbtFvu>=>(J9H)DgWxRBX
zA4ZPd8T@#f#PC+}mx>!Irl|Nr#WEGkReY&ps*10sTj#J-YV>zbUQ@ZKQ88V_8G^G_
zd@Y0qGgZtIUhNwTMJ9&|r)ZRHoBI#S(T`h&M~z;&c?DHLpCFZfApt>6MNmj6J2$LC
z7akEDFf<2?%%y)7^HnTRu|&mE72hy`RV<FKtYoG|TsxmNddFjWr;t#j0m<lN`Io85
zE4be-H11UKor;wzR;gI6VhxwD=+~-Pr((N`p_>}6SFu4wg|qdxs@N!GvtXBI4K}H0
zIn);Twjs^7s8~@fnc_AT%wl4Z9V%WtGS7KprJfqrxJ$)u6^B&(q+*YXy(&^CCsV(V
zn?IEsa(#K#v}ao5A5<KaEQ&v>*v|>NYGOK|LgA~Nu9{}-Guob5534w$;x`o+q}lU-
zFdt>`s5qt~=l#ZA_M7b{>v48)V`HWhDozSNm906g;*9XK*_v}Ie#z#)3OO%WbhqiE
zir-aSRdJ0S+;6_bksoimUcLdVxUAv|*Qv?M^oNiYX%_N7#j=gXe4POtG1Ez_?a4P)
z{LKZ0T>q-LCCz>)$U(R*<c^BFLhh+}urc|*ip@Fg4+Kg65%M@S<&oGt7W~+0egA@C
z;jri%L!NT;=RV^@Lm!@V{JB7U(Z63`s(7U$j}Li$(c|S`Rf;}J{945uegvq<AvV;+
z`j9i5=Moa*Lyx7=QyiIci)PiasF=@((%F{zg%t3ipbv$F7xtlec5V?NMSUnHWZ<fN
zEM6izx1^9#KCEn!oBA?7#Q9J*J2&2ka@oAR5AWXT0MS&)*1zY&yC$)CB_Aq_zKRc3
zeW>O`bssW(sOQ7`KGg8R<bzoZJ`gkr))Y(-tR<KzcyLlq`sC{kj3VBc5*3;FvH@b6
zU@~7kAcUF}A5yb<Z6E4n^NsbA)3bS9AByJspPx)0{MB;3^I4xgZE88>Gc@v{u@Aj{
z=;K2ZAOA#v-G`5)xc$R=&4e7!X>aaB3m-_BTKdrDc19~7S_>g><3n5F?F8Ekb`b0+
z*vW^^K78my7aw|xhNZgt(9MVLBJSB>peD<QV+YMWL{l|)X5eI0$<#|UHo@4*=F-K}
zmaH(x+%)h-c71*5=fh(k{`FzuIP(int^U5~j{30=1AG|h!za}Hu*io&K78uKXdlM-
z@R<*K1=BE2-}k1$!ao-rA~;lV_Gr`aDdyomyjW=-;loHDN|Z=BQr$d?oh_eCC2_0|
z<9u-Y;PGL+4-<Tt;=>oLsA$qeA13=S<gxjynWjlT5EGll-`Q)L{oK%~K-!l+IDGs~
z15<sVIE@BAOczdZCgZ1(X@-bj`w&0LOy#WX+}V;#4Q=S{MZ~1|;PPS38&j<jrnmW$
zygsNt%=O{>gbW`i-G`75VITe(kP#3J`k+bfx``=NGEw}erbYK5A_ikVtDV@~%ru7u
z&8BmWO!Iu0@8k8YsdlPm`wPPY2F44+H$L1cnsTCO%3>du_;B8b-+Wl=!!jRs`>@A{
z<vy(NVY3fgxZ=2Qd|2<p1|L>)XQ&gq#)q{&%+8<m(;(B`-KNJA%B=I@^llRhrBK|+
zfHYY@e{9&~L#GXeR&P(faMhI1z_QhcZ9aVK!%j}+SkrbNa>tr?FuJzo`@4&E=a+{6
zP8Rsi2O96(mTwo$V6Hx~5MA~CyU|`B_A$m7$?U!lg)>bDd^qUC4?g@Tmiv8p($LJd
zu_Agn<ik%s9QC2(AoF1#j&M(SY))Ndu6Ed5ce0tDFU~Zug+Kf7E6gM(d^qXDSq_vB
zr`WrFCU)nv4|F?fvYGr01F3!*d$)FVA$Gh_!?a&mRtAA08-Kxvi$2`);kFMn`&|a)
zPaiJ%aM_0|V)=&;SA~r8<$vk4_S=(d;3?BJF5V4=NYef=UiaZIA8tfLJ^xK^LE}w-
zzr*qtj@a`mraL}VENo$V$Xd8%HEeXxhx<M}5VP;pTr^{;f7q9o77|)Mk}2a%{paH&
z<kkzZrfxTTJ@MhG56`&y6Fu=E#gO&ZL}Yrw;dL2a3cm8;wGe9F2zl#64u8}jr(iBY
ziZOoP+h&OMBe!S{ePX0CpC9@CC>KEa01Eg~&<~d%Za)gq#*Y$yl=Sm3C=~Uhm><Rc
z(VwY#tmw7e$#<?8cs2rmBIacb?|CleM`=Gk^JB0-dJA+JKZd_d;6Hb9ew3wuKZZOo
z*aS(+`w=f3epK+|JwGb?Q9nDkl8_9+%6?SwqpI*~ei(&R_v3vb`EuE7`0;@sHT_8N
zBT<xVPa10pd3nHabd`bCF&X?wV#lu-{w-&sX!67ChsBR%KT`Zi6??0oGAC+(ICoN6
zx3#t(`fEeF=<5ik`N97huAVm56_J*1%}_6!XZpd{KT*llfd2yc(a4X+el+o;yC3`;
zsHq>#{OIIIXFr<z(ZY{*ezf<ar5|(O7~A?Wwwbk+A8mUlwf5udbtZPOjX3{tlzGXU
zI)({`)i;eD{OHJvhMH;2*GqXfMXUQTyA56a=py{V469?Av77KOMj1YQ*eFZd(8G_O
ze)PC#WT{?k%n9S4)1!Y;*|R--<VWvp-bYAZKl%yjFZi+G06{t#=*K77e2^cX3U{@#
zGHb$()Xy0+oWw?ngF9voVR&@R8tTU|A;bL`A!MW<6B#zvgi(Hs_G64F#|nPDI+I1l
z2_G*wL6Az?Px7N%<4k@HCr<I>3qQW}W2zssIPw<^Ow;_hysy`EKZ3cFzVc)ILrYC}
z$_&Zf{mAgOkePzF^P6T1arkk+nAORsyJ1m;e?QzxjfZ3I$5lVB`JwvZ^CRNN96$VA
z8n-)-xs*75mxVW|1pFXsf<eKMU|3KW%u_plt{?Ll`3sGg{h05^0^t|^_{NWg{^&Ky
zVLul6v6$SC9eynFW2qlgLU}iEL7mKd`(W-Gr%cQISnkIPKUPYSHGZu1W0mmLevHeV
zr1duw>1`b+`cF&wb<t~{^<r@G*BJ7Rerytve6t^0viVj&wh6B?pa8R&zV+j~?A)C~
zEc26h`FUSlw6%K#_xrIo+h(7T@BR2e$d7^ruSVaeaDZ#}hh(OMejF11Q?@4kt%U|h
z{5a~z&+PR@!!bY3`jM}CRDWEYobcnMkW+%xpZ4QSHh0x6M9n!7fAQm2A?LGmfAiyl
z@UI6%uU$F*zsty9@?&$c^u%M)rzft6<_|xXS?k#!C;#ckbwA$t@mBPI`EkpS+rn=M
z-W2?syWH%QT(6=Y?)Y(!k>kf*$)ZO4BKd(I|M>Bg6R|Yc#_tT3bJ-vI@yL(IjM(WW
ziiYW?e>v<;(>h<X{KqZgn&pWgji34P+>aN2RN7>kJR_O*FNMDnd@V>Nb8`fu)4^0E
zfSdv35-~<FzhG<txwCEZ1W@FlC2s)vge=@($hsCSTOfcsV+{ob3k6VENYQQPnFUQn
z11J_i@c>E$keZ%EQZJXiNnBFN0El&i%}a^Cv|yP4;)IkHtgSR>k@x@*z*hlG51>K-
z?*%YCfDr*y44_f~mH?6i_@!i8<p9QxxA6|xDgjgtpjrUc1E>{1VgT<4(C2vW4pU7v
z0%)1bPGY~+_ygfJ14s};J(Y$4k^<;4-(Y4->RPBV20%0kl5E~(q-EW~ruMmv)&OkO
z2av+n25>cRQtbd51kjM(7cnh>^Z@D#XKwufGKAL);D=;Orr?o{#=c$6<7b&^z|<&!
z)&aB$pfSfMfTjU7WAomXI*{BvfM<%S1;_9}@{8vwYhshSEi|+WVA&#T`#FZ*OX{@^
zpdH&U_U!}c5I~mzww6un7(gdcei*>(OVPSIi`em8uXpu+eAduaEV~J^NOvJw0W|u{
zLb0dV)3}$A&l}eJD1hDp^bg=;4sQTMGZOl8j!NcWYIm<@KhXs5)?EHq%mDW2Zo*)}
zfr6h1QaLDqPlbObxcYVim7izl4xy85K1|5#0kuX3Fe-opFJrz8U~~Xu0+`GJ$x0i`
z{w_}AX`hn<7$<zZ-~>TtO%%fOX=&5)Ui_2*z6kv9{7HU&=Ghlh8UJ~EObbNsEh%3l
zmN+ATuLJltfSm!%lvSVx;0s`u@Yw-40@1^EoB?=+kShVW0@3?<+=3p#^vcn@T$p<y
zZ)}c9z5HzO3d7&C%z*&30D=L80?3~fvn7CV0D1t60$9vwFH<WLz>ZMr9N|5NmYN&D
zJoc_kt@#0bBUuY1YhW%rjcK`1ls!JG)unhXXM<Wx0$3^r%K}&(z?uN!7so6QU_}5c
z1GxTPtyP@FoAp@M6HX<rW&F1-y&-^&0jvvPJy&|kTGTTYh^w_ps@^OPCrgdgPq`m`
z`|#EPh7_;0jl;se3{Tu4NDcqT{4Ri90bB~;asaz!5)TB>YgAgEiH1D^><xf~X`hhq
z1%D9yQE<N?|3JKBFdhuxPyjy#a5w;p=LC-k9u@pq@R%SCjt6i;_({Q2+4|E$&IE8)
z$UEo1FnarB{3=LtUdV3&To7_m@b~Q8ZZ(Y^C-u4#z_md16vsaT_)AN?D#$l4kpIcy
zr5L~s?gkptG~5i}?*K|^D6QdE0Jj-z8e%lu3E*x3PdTA84fg^l^ThZdfPVtGAHb^}
zhQxV>{(Vgk1K9MDsm<O7j{|sA*8GUWo6ElMZi9b0o_iZG{TIL!;V;uI6rYK==UhI2
z8JS)L@KX3I!PnXPH$vVD=Fp<XIR#C_&9NGOZExhr6w{DfLmmxzHMBctnEf!%KMPCc
z6P{m?$^t?PYABSgDXgJLHZLlq&RsLT71vNgLrE?Ax?zeV)<v<1A-Rl(@*3hb{CU<8
zr=hHdavBD$vDPpqH+h?O=4vuDRM3#1p_YdCG*r}3O+$4Jl{8e=P(?#kj%uys&AIIS
zN!hm`>EH7<o)c?HN-j~;`o4x58a~iaQ^U5(4VB926Dp_kRn7-<*-xe$S5!{tnU;wf
z3>qvNk~Ji0FlsPqFl%@<D)~k(`?Fkj-c)w*b8G%<DdaI7%vKF48eedX+8XLD;A?8T
zS{EhpIpW4Q&A$0bm1`Ob^l6x`p{|Bj8d__}&@d^KlBuCS?KQOBYcZa;{C&;ZKtn?f
zjWsmU_>^dJBMn>67)r(1OBYMJ(<G^>hGq<yVo5DEG#AoB!;w>Q)ST;8Z`@PEHJh3D
zFi_KmK3Ro^$sBDB?KSk$VAIe+Lq`o=HFVR^N#i-m_)tR^4TsE0d=a5iEoszyN#i>w
zm70)RXh~A(1u5M%WNGN3p(p!Zy>|NQBz;NJxK&BVmnH3bTC=M+amU+Qb`2kC7^7jV
zhTa<bXy~h<A7{2l?Zq$Cc!I>GyD9CKC-r%g6<nFrU&F^5259(hane8y!-agp$<^?w
zaOyu7@|lLgLew2)sT?AFsNgU`V~m~p5yDAEY8aKxM|1R~)Hsdro5lnU6Pdd-Y30?F
zvMZB@tw}nyGKufNecm~VN4`wa@P!6NgG<Ag8m4OaTEk2Y(=>dgVY-GH9Aq9{wK{3~
zZ#8-7YpK;q=O5HOzbdKHvZPrWW@~V0aB4Vqr`xrh3EMd`OOu+$*m*8NDSOiRGD&U?
z9t{Bvng%Z$ropGd&j?&zhyVC=SeMnee8N}%80xL+`hK<a?<X6B8bTUh2@Rc*uqG+4
zVe&Vg=xY=C-YZYJRGuZmLrCUon8#V$h@UoMzJ>)1zlBI$h;KA3)L@;5lzCXBVKM#a
z&~+@)uvEj2AifP^nTF+@(;#{Vu|mU24KF#l8dhmo&5&qjeW78EhP4`AtS}$Zuuj8z
z4F@zF<iw3i+n`~yhAkR4YS9}zd1CV>(X^-#%Li(x*~(?5VLPkSut&pQjV}a`TJ93$
z2j5O1-!VdXHrJ47k=<O#a{4a$J`LY%_<;k<v)wwU@sKVmdEe}hQffa}(2%Hji0zr!
z>#!inPYmOZrgjqy<To}Nk81dtGos-*_ZDs=8ct|9so{4Gmo%K>u*^4~(QsD7Y4$o-
zGE>Q`hI1P3TTQ=kuhUSVt;zDzP_mWzJU6IT<_m(q38r0&9abgdA|v?=!}v1Ez1EoM
z?XrgSjRx;n(-jSWXwe@DpAIx#Wn5h~kX+aJiGY7JJk)T5n?Lt?27J+^d5M<4xdxva
zZ)v!9Id<O*<87{>BvbXA<|g%$vtAhPatT+p+~Znkly+ak10m!~6EYrYc&y<GC+m%=
zP=e)OZY)KU+O0JF$Bj3^Lgni%23JhlQw`6!V{bD&*HFBqiJHOZ47}>#uLQ3(yy4Cq
zMA0DlS^?g>{#HYdAaVx5eIQp5F+rTZo`*a(h+Ac>Oa+3-Ej&*Ud4<%Bv*ydr%^yUL
zxTqOZK~WY8qOg$otddj~3!-=sA2x2rUkpkFQ8I|uL9_{?R1l?us1iigAj$+07sSDp
z#)^VvgNP3TG}vk`Cz|p>q@1!)9I6@4e`2jbgNw$+j~l)hM4_0Z&_HvgAcBJ$R~95W
zJ-}Kmi0VN!kGCWR@xC~z#ctj*u$CG@d?1>df(e2z?-`kuDBK{puc?(9V-Thw%t2U!
z$PA)>5XnJUgGdV^UCdH~s1wA7J%-dEY6o#<fw@alD>3I8%h$ixqldadWCT%9j47Ty
zWg+Ij9<6T5v3d<e-#CaSK{O1aQ4qcV%U~8eNNgHJvmjaq(TaTuV!@&$tTMI;V)+>h
zISp?A88vHv(pauZw6%Olr)>}&gXk1QyI}O0o%Vtq1S$Tk#}PYoMzS^7mDweTu0a^v
zTH@MTnA<Ig?m=XUL9IG*J(FXp>=lG9h$TTR4Z<G8M?p*sVp1^r&Y<2w3=Lvf5PgE^
z8$`b#`Uf#6h);v~IEW*GB&LBu3=rNU#%^rd?2{ly#@PA9r4nQREQrBDd>+J}7<+8x
z+H*3x(|&1;eMk_$#@K({(}XxYh=)14jbxMtF+zB;uBp@{zp{=FVr&rOg5Z;4V}kf6
z#y;q!bxMNehpUG1K}-muV66S*8Y7<x>QFdkau6lfnnP^l0mBpy(K*8xf?ozv;Y-8G
z4aTWKObg<xAjqc+dIV<#@wE`@X9h7#_-sK(w%#d33G&@-a0{pZ@~x~a!sHD?&9?Lf
z;TIkd)Ux$KA-vTs9E2W3BpAIRfoV|?bA-<ooEOA=27~a0**4z@i7l4k`7rKXsl}pc
z)WEom0mGd?h?POCuhxiPU8}ho@tL3+vG!F#?97w2A&Auszq7_QL97+BvVXz*vrX%S
zuNQpO$h7ybw2eU!HwCd-$QHq^g4AydVtY29I4*N%5Z?vyDumY|><VHx=O}~&A?%?I
z+aJO=q3AdFeL-9b!q+|N`yhVc!Y|X{N5Qj#`-5mP&v1atL<spIAwLCiSjZ8<qk=yR
z9uqts#0eoM1y2i};##g?qmwftl29x%&v1_3-Wq;k$O$<w_?sa07lODb{CC0qPmEMv
z4&q7>e*|%r%Ql3@AzTaM&mi6lp<)QvgZPWvX$Y|)+z8@k5dQ`7B#6JcH*y@>ru-Ac
z?I7+1aW9DbK}=n3t++P+ZV(lB#FzamIkeikylKh<?$T@G$yctjPQ0G{Fo;JSVRP1F
zZgi;`{|1q#g^i-Qk&WWhAf9oH3xNfn2l0X<AH-{})=lx$JlqujlABDE6!JF=zg5;8
zV#&JR22pdhwaF^$%InF*Tp@h6+De0@weh(_$P+@b5Q>M8H-vm4I2)xG4k3RCk+*3D
zLMRwQhr)4V8ppE%qn26=g`y3kO>0vYu}BC-L(vAmO3t9ZL<l8AC>KKc5K4tmI)u0o
zmTZicEhA>ztH-^xWMszLX<s%3BFn~y;9noLK?vu>n7l#=-=}8KxKap}L&ykWO=`yd
z-@8`{Au$9)2vtL<7DDw9-VY%mgojC4U1IGuLTHtqQ8R=OLinzQ?dYZM#38YEDr?b6
zY6eeAIs1NAQV7NnQbVX6f+>W5ms%|$B!{B2W)5LPHS4F#tX78ZQY*7kL_^M8BAwI;
zAuWV-+MkJ~!@4qP94j`v(B<wNmU<y%in4wPozBLNOwO1QYj421(lZ(g(xyoWO+)xR
zgdrg`3!!-kokRFAgcf4Zk{t<QqeU8Qj1G0{5ZZ*$HiUK|bYzj_jP@a{h_!d%2&ZN2
zZD1qc6>A?_ExA(&r@1AjWl-!ALe~)NA$%mg=q8=*5kmJ6!qu!<(q(okX`7Y3?ioU_
z5Nsh-Nw@v8D%y9(K<^OxgfJk4fg$t_p~z}$f9dJtSbM(^mZsUxud=e^A4`9anX^8T
ziWr2Sg}|^G6vC%cOQ&Vg0URtb$y^5N&=7`&FgpZC2*X1d5yI3EriCyvgi#?(4DtIE
zM$<_M<3bqEmKTaUYs?zUxo&1-mkZ>!mrBl<5CXgGPRrncRLE_w(Idr>oH3d6o7+Am
zgfBv1k(RmbUxx5|a#ru$_6fP|9L%qz3o}BPE`(7xdU-s(eI3Hg5N3t&t2K*mOLt5m
zIzv!G2yw)u@vacOA*dm^L-2&4<+g9FlhNc%?Be7MA0s)0Xe3DVvZ7&C;{p=-n&8Ar
zaU82ps>bPDUouc@QZwd+FgJwx(vo>HjC-rc4XGNnOzfD#1;SEOYnm5^urh>I9G~3v
z76~pETq3wsaGBt828Iw?^4s@nR@5<VV+fnLh(cH!!n#oOjSPH!%$3}&*N5<EblL{)
zX(OYLkCAT<A?8HReQYq_|0uYXEqr5S+D0*(?+D>r;X4Jt%hvA-VRts)BV@1O<GRuN
zQoiT9i#7cq_@m&YSH^=O9OCX8!k;1h6vED1-Oq9Lg>X28BV6e_O-BV!hVZixYK{px
zE_fn@!1?HnE2l&}EqF$dmS-iG<kt|+hj5WQ_U(k<xZNoRrVE_J0?F_AZyww4l1qb2
zLM{tl3E_`y{nZfaHZ;-TdI*0p{_oX!5Q?61aD$8PwBcR|H%0tgkosFfZijFuTXQ#r
z5<gp*Mf>|ws!(q8KOrpJVSFg~Nbs>BmH!I)Pw<K0(-58sc`o=u@TH))wuwdFgz%Po
zR2b=DtXL77BaED3<O)acQRj~dG2v(k6%M0F7_njG4x|6wI(Y>1hmkjod|~X}P-p6x
z^!-&jl&Ic;xdp<g_M%=v!9roYJRVgR4Wn2XwZnK^$Xq;(5@8s^ND8B57^nG+a2RF6
zC?&l8-dfbe2`8x{q-+@Fgp|+L$A<yo6$IZCtSDGXu(Dvut~uz0sj7(8!l*8Un)kz~
zA^Zcunt};}wFDCdccer;7=>E}O@d}Yiy#e>!^l#jEl&|mYPMe46T>do;aDw5CaD`n
zMi_l`^wm)>%o|Ygkq-VYQ9q0ZVe}27Ul<L;XcR`5FuI1(IE*G?v<{<97)`^d_qtAV
z!DfPqBl7zP<!=#2%P?An(V}89#au<rpA?TLXKEWphcLV%whN<OM!oi7yvywvMkjI7
znRS)3tjTTvP()VoLwR$zFuIG_hy4nphm`#&j8l8eJ;Sg|RxhcMwb+D|i9_3SW)|-)
z;^;r~F^itt7LV^A#>Zh?596;e281y%jCEnGXG_8u6vpf@9ASJK#%E!S4P#swgTwed
zjA3C6XZU4g4B@QR$ru`jyOFJMos87#);(3NBbXJ&s4zx{QTj<E>hDyw{*>Fk=uJcN
zF<}sYs%E{K+de*w31LhN<Et<xhA}COFT!}UJ$`Z+LpH=$u5O*e4py_au5SIRnw8GK
z3}b2-dw%Z4O6h@qriVfO*I~>IV}>+_tty+AQK@k}E1ktoRkt$HgOdv<jD=w=3d6+)
zhoOfN3B$u#2tx}a$ZoE-s$m4e(F-kdUpRV^<`1L3hzpve_^&6=epV>NmAK6sW(VbB
zjMrd8o21MMV{RDVgt4n<%B5x2AJa4Dg+Z*l+&Vvu1!0g-Ph7Ipy0dcJ;xLxbKbLkG
zOT$=3g9>p=_<>kA<5_My3$9AfSQ*ADPIu$@HDRo#{Zebyx)~elW(?gFPXm7RuMJ19
zc1Sjau`!H;VH^r$Qy81W_%@84VQdLwt5m&1if;?^meKeVXJT1=dl-l7W{|woe8-lD
z@qHLSgt42u%G&sc=^1;%Akt=U7`N-$*tLBe#*{3QXdA>Ed$eD2X?7sn>?b-8<Cidg
z4dX}{N5eQP4ft6ab4o_(m~a+99>$4melm=IWt2{fhCa_oL6UPcI}^)6V3G4-{1(Qg
zFfNC2AsoFVyBJ0xxo#|)$NqabdM(Q9(%dOoSHk!sjB8>18OBw1XHERd>&cHd#q(Od
zW*$4|j+fT9P4T?&z7fVvPQ8u<9e;;$iw<=Z)^R(GJ7K&E<8>H!!??$-l8p@GzQoBt
ztZP;DI{X1QgeECfwpt&C@knBc73ECNVAg+OJPG4P7%A;io`&%(jOSsn-gg)Cw(3pz
zwW3nH6dF_WQsRo=CYauEZ`YAq$J;P+=*X!fmmaMyMv&DNZf;{iBD<4E2fv%-)sat+
zRusKFTV>6!qkta$+Cp!Q^4LiVipZ=YI*RJ3qNA#gVmgZJD66BK9*w9HIv7-CbX@9@
zQc^Uf1WOB28K+}r`xIVVl9$&Juj4%(qZ-Fk2^|&m=;b#rK6z2vylG17b}1EgRMIhY
zNv?PL$~u@!UX4{$v%Xwut)Zj3j`wwxuV&?DGW$#{*Esbb==e1~!`eQjmX1Un&2_ZU
zVbGDJBV9*b9Y!4{9jQ8M>oDu+ydmDABUy*HfsMtZWjPw+q{7{X6x*jo-HtpHTSrHl
z4iYBQ@42X_Sq3+M9SwCf(vhj-mou^Tbu<vO_7&n-@WVWII;q<sg%vf{(L`z_U)VmS
zsSX-6<4`oR(dP3!_Le$Y>F7io9j$e=(edQHxDGn#s;!Q8Bur@;EX%4{mbvuI{i-9o
zS<T9=>_Z)0bY$u1p(AuQwyTbAI$!LYi(4Pfx-&lOWPFv!&dso=4(8f8L8oJT>Ct_U
z14t)!9n9qh*k!pj#~@>GJ^D7HCWZ6z@~oeZmTfH`>(NW8{yLg{RG4Xij)6Kp(J@Ge
zqQj-*Qyrh_n5bjLP0L`8cJZVUI<9I4rq6W@;k5Fn?8Oa+iE_B`v^)HX)zEW?>HQ<d
zk)j_ZI9hOw;8?+Ng5w1z2rgJ^nxtd0jwvEeWmq1Jdiz4hm!cux+ckyCX*#}=-06bU
z%+T?*@R@?M1ZN9Y2^kzZoWcXO(n~)#xW$`a$KHy`9tMmKRR{I-Ph%3Fh)qja0vuSk
z`OF5hCPjjRA;DcsO%WY)xP0cI#2n1kF^`LM4zScXU&jI+-$t-Af^T#z)Uhmr<&o%-
zJBxHQK4My`V=;rdXwnkFb$=Skm+4r}q2{%RjvG2|>R6>?H78NWVI6C9tkv<Ij$Jy|
z=~%C0Cqu~DYJ-lAI{1#KDV<_AvC=h3+Qm9s_2{YWn|1J?qb)l4KZUbF(l$E3m9SlK
zhv2t@RPNAnRG8f)w7J%928OHt0UZZ*?BV$6*r(%rG25@>2OT?x*JAon$lN^k6=iB&
zN-}IFxs`Az+naw+;@r|n`!3|*qq|3Roa1WJaa708dh|){V{DI(Q#y|8IKd7g`uup)
zC3PCit$SL>8L>I5<5(U$^<(SSAu<*58PkUwf7Nk8$3-3Ix#T+~{guc5n~>Ms`MICy
zxTfPz9hY^K$!otVSyu#U{D%;0UVFQ|(WkJl>-dYc|I_y9$Hr@~+dB5t?JxSjIW?u~
z&WPaa2yRJ_Cgru?)^SJ2T^;vy+}F`70$T(RxRr75is1bS9_o0cqfi8eBY3RiUvAwI
zu;71O_&Q$ec%w(fr#hYqArI!YKNtRjJAjT?*?M(EE9QRtAnE+`M3T2$wh`nMZxmxA
z$Q40M1pjP|nlS|rw<q2^(LPTEc_YXdL4GmblU2JwcBz69Y!c%WgPYK}NCZVAs1U(>
z5fl@f;t`aHaJ%co+>#NLilBT1@e!1cpiBgz{0*pQiWB3q^w!_-PE$@aM<f@*bL6vM
z7qMall|)k|g39!kFY2LPzi6{twrNeQD!J7nU{7o3v)72=g9z$IkP$)62ofSli6AwC
zS`j2hV2;2d_J#<I5sVOTNuueL&u$V@epX$&-C6j5ZA*^8Dtan&?rK##g3J9{rHiJH
zU|IxD@v~NtLs~C_%m~^>&@O`d9FPc_N6;dIh7mN1poutaob5CHN_~1hoX_4gThlCp
zR^LenMbmL`>sCVCMWan>Exe83(IuVQN6;aHZV_~kpkoA`MBgO>t-7%@vkpb);zLpX
zDb4FDJTxRabWB+y_J|-UdoFs4hQVf!;3E!E1S2Ep9YLQ621W2`1briTRn*Wwf{!EU
z$G&%L((6<YY6ggYpdiK2z4pXUL_G6p>(3&%XEF{Ead5WH=MlWgXQvs{P*DzxV0d<J
zTz>ng2uA-OUGD)MRn>(JLlSzg3HS)oO&}zhWPpJXI!Lb~Auu4lC{3j!T~I(26lLbl
z+_`tky)%Oa>55bV6%hfIs(_6yy|@3lJMX;fUH|ueYn}D1=j^l3-uvvc&zVV?xh~9h
z@gb*pdawIr7t)J4r*Wm1noJR#D#(RQcVR|8mr9r={6eoz)O?c#@NqAaxgwnB!h9jk
zsx_mqb1~-v7oWD!u=b|L>@IR)u?tHN7hdVY?y{ZVcJU(^DJxufhbyJrg=H?h>%wvu
zCTGO)H}G}PkT~OF%6l&BV{Vy+GPhl<^gh$o+xmk$=kl3-A8<QdSj8jYLcnFcTz>4r
zY8PC*%w4!VE3NU(6yrh4<+~}03+wNt%xG1AS)=+S9_e}oRY9K%nh;&kFSz+y3Y8<5
zQ-Us(EMEUyw2|qu{wfr8VT}u67p5&3z!q^?pY<RaQOx;?3&bx3KXu_VA(VVBWUXL}
zS?TM9tdEUuaA9MNZ*pOCj2BTFe&xbe-dZl)a^Y(iwz>GcTKwX|b{BRqlP-MY!cN{T
z=TmnHMr*erzj;5MxQC~scjjIf_6ceEcj~kowr^e7)x7xu7rx^yy2tjt3;VhD+nGPO
zu%MVTJ3XDeRG-WrT{!5%Pb|wmnJ=5o4+%-TW;^V%{!{meAPN7?wf*4qUtKui!bum%
zj|v_WJT7P-pLxoK-(2{^g+E<5_sPKDT{tb|yD{kvzD+yBllw+SiK(s5^3r=Vy>tm1
zb^fA)3+G+9`(mrVUHC`H`E#iQ&t+Y3q25hP=b8%_UAQFO%P#yY<cc5_mey%Wyei$b
zMOt4MkDPTwNcOqZ+b-O3Vd~?whdh8&Gw!-@pSAQf{hoAtEo(&~yAMP-Cy@S#uOJJp
zudsV8<O$DCOj5v&g6{u}w!51iFYh!G+$iKmVK<g(spl`I7IUMB8<*m2MFsi)pX9~e
zICUYVgkVX*Qf{OUX;NCSj9^(e0z;c^OzBK{1ve_Pc~FVXZT*+K&kfCu%5EgOp%-)V
zdpVNasNzOdH=c3hMK}5~7&o4Eqlp_1H>$Z&-Hl{7QfQ}O=5ub;b>r*F=}Yd~YPeC;
z4U$@dB(>eB6XPBH4ePnV@2q2c-i^|?Z4dJ@zl)~UcO%V>bS}S+y#WJuqy3sT4F$Ir
zbC$hpqh^L1&i)y8H*9WX%G@kB?9XMNkEU{T@*P_vQJ_v^H`pa<>P9m+UT~wM8`*9g
zZ`86i^SOIqhh<sK-N<pHg&Qs1xcg?SR&G$pHuks7(uM6LZQN+<MmsmwPsnO7NMa1P
zcMyKJlzn>DR=>DXX|0nRo!!XNns;%dryIT8=;}r{k#u*Xhmg?|v)&t!NuA{BMHyRf
zH`;uW)`u&dnDwA(8}b%Y(qD3;pBrzwG24w?H~PCV#*MLV<he1xjp1(e8IU<?K;}R<
z2D|Yxw}xwU<7Q&ZL9(a<PjiR3@$a^@3BP9!6Ec)#bH=t_Z#}z^ok<?y#z;3t$x27N
zacx4@_!hR+c`Zqrow2>*#;b0;?#3H#jB|tgGQo`+!|mhU`1v(E%@QZNG06=k{54V7
z=t_O~t>tdY*{sQKOmkzpZ0;1nscw{uv>J6LYla&KT+O-aS#HeaLY8Hv7PjY07~UK=
z=DP8o8}GX@&yD$REOz5<7FbvN0!DJiw#bc5C2R}bcuNTRv0~13N-J*q(8Bh2q_mc@
zfa_*2;q;!(SwhQ1_^#mcSnW}Hg&Ql~aJk`j;{!K7bmL<;R!zuqz0`bIdP~;oDpCGO
z@Om-lYBx?F&tl{(3B?VM8(wD5-|+q}TjAk$wjQlA3$IF7-KaOG)f~MckCN`jFa^UE
z_<7>o_+n0@pc|$eVc{V+43=(jXT1?Uh!HoUZrtHnKApP8jZf&#jWg2y)Qz>ABK$MK
z&jop(uVV$e@tbrv2y*&%H#WxjCO0;-B(~bvwz%=7@UH~73Vt0M-R8Fbz)iIsGIyuo
zF2UVyeB;I*H}<;mt4Q_<{v`OV8{fI{y&L=8_)#Q`;RhiHxQ}I1tZuf2YzMi<WQ!ki
z<FFe?SW#~L@_)?A*E}lnV?3>HoN(hLFSP%M=I<h}SKP^oXWjTix;F*?bmMO~o+em{
z{fp-@!}9)5%+5L1u<#3l7m03McH@d0*G2NL8&`!~bEA22=k?pk+Ru)n^Kxi}-5WAQ
zA-lJP-xlN$C3oGp=f-_E9`Jfm&{DxeHy(*XZN-Y`u^UgMoAkSb-KTC8P*6}ooC1hK
zyn+M;l@xHV3kjAMENr1AEUKWmf)WaUz>F&<68;xlNd?0mR4Jw4tKsqd*Gm3}+s1M^
zeTzHGC@8C-oPzQSDk!KZ`uP+8cM8o`mZ3xiNkXb9sH)(Zn3w-mepceFCRknYIYBO`
zhJu<gUQ6sy$W})|U6I#Q@VtU#1t|)eh(dkA48aC;C#0c*GzIAj{+*k^HU6)6n}SRQ
zSqkh58YyTj`u{(*A*&L(B8Ln$RnSaGwu0sga{g~N8DT30FUKNpt)Pv<pVn<{1=|U>
zSI|Mh3ko_a$Q4N^!QO(M6?9S1RY5leJw?Ll-G%f}tP{a5PXv*zmtvg=l0FJvRM1z!
zOA7k^AG7i``-?nJ!2ksV6*v_Pj%f~x+2<eE{%d)Nf}yeyUyYRWzgty0LcvG{a~Xz$
zQ3^&YcvTd}C`cTXIaa|dLfRg+v0HUt^Cy*Ck&F|a@q!Z+OcXLn!7K%DDtJx0H2%7R
zH-t|XoFX_iHabngbm21uXU63GyXS1-mroU=5w<xBC?uJ$V1a^P6#S}Sp@O#*>{IZq
zf<+1zE7+`Hi-NZmyrbY_1*;V-QSg49^pX5kkAkJbmkGWr$f4aGZSRpQSfOC0f>jEC
zoVQcINV%pTDELr8=L=~&sy5x~O#i2t<0BcR!sSkxE(LA{>lCb4peXPt2r3AXTuAeB
z%UY&u3RLO(xR1?jNxx=rNay7*MgmN1ap&YY>HFrSQ+ZZ6-B3{bR+BFjm<qxQA_}4k
zK4(h9>1z~x!V|i+@)vc|KUHw(K-$zJ>Exd&Aii^_RgLQDYekdabxFRcxRa(vE=b>?
z;GebWcQ<DIP$zw(f=voY&K}A5_pQt?c^fF$t>7C4TN&Y;^sg0cQ&8C7dc%nR+ZF6k
zP;Z&NTeFt@EYeO^$b$4;3XcDfM#2v_@smxreoEiNOT*Q2uL4KQ^prvA1D|9Zo}d05
zkLSts0}6gr@V)T;^sC@Po%F-5mU?mLnHsqV75t>&h>UhU-sX^k_D9mMt!_nrm?!0U
z8=Ic`GXr>%apq(z;!y?16x>sApD`#nq2N3XDmba&jGlEyL782drxg6Apw+I--xW+b
zo!atvD*0)VycfwhtKbg>fAYq=n#w7E^PZ`j^_K$v&tAn3Ey+J(>KqTz@$_0+>P4Q`
zUsJE}Lg3NZpL$8bmn}0d^Pp*&YRk;43a%-*EmN*Do_|ws<VT`s9r@RGQ^76P_VM%=
zJ7pE|WO@UccVzS~H+@@Xsot&W?g1}<1*JSF?ZG1jk9lc(@Q$AKM8Q*D@*ZnlRp+I0
zT_goODCj|)2k{<oT}>2A$WM$C3wco3gCe3|)PrIkT-%n)^>V1V2fx?I%G6q3YM(W*
zq>Yl2qV`=lGd_}8#)B<qQp<Z#R)pm|sCGMbOU>e!T4Yx6puzT3w$|+(l|4xGpq>Yw
zqSpTaBzaKBgSsA6@!;Q{4f#!dRXupd1CrNHH-QJw3a=(uUGO=<8iF+$f0t&p1W9U(
zkc1x%n|ZQjr7d0Q<$3XyESMrlVSR=a<EcU#3Z@CB3uXw~1TzKs$oobfH1^<aFW&K@
zi3bi3+I!K#i>4kl^WY5+CW~ga2W>oP>p^o5azv6ktV711=`9$l$9k*QO0cycyZ*Ut
z+tHMVA7D@K<gq>_`gL(9Kat(R!~cl0x*Y{c)?7{N?7{xq8C^W+>OnUTx_dCpgW(?Z
z@Svv$c^(Y#pqB@|Y3-J+p9gyfWL9j}ypIPjdcgO?eLdDs5F{^gr%u~uH)zc_nYkWh
z-?8-<Y>?cPoI?XW805iV4<9vB!s+2-6tWIa$a>j>*K=EPbbQt9A;S5_d#DG*eEA3u
z#(MAy|3`ge>PW#+9*h>!znx=@2RCooNM7||95?-R)+7(cdvLODHlv#0;ZOHAzRzE?
zBz>aC`Z0urKVH2?M;_~kvTx2<KW$C%V5$cfJ-Fn-G!LeGaNdIp9?bAyrUxarr}D#S
zs~)G#@?fb4%RC@|Q*gEiHR@)}@$gIj)8~3HPYC&Z4;IAuLLqPEcRg4flfNzG9S@eo
zBsBZ32g^O!>A@}!-t*vn57v0_i3ck@Sm}Yw1Gfhs$cb3R@akl}TQKuOmQby99v>d(
zk39I8VeC&;UQS<aRZC_@I8$N4co6g;<iS37rk6Qk_B>FfONq~etJUlzd<pB_xRBpt
zT~Gm@++*pXd8x0xlwpX+hzEDhrkNgud5-*<o>`XDm(Hc}@J2mgBvbxK{nUfcJlN>L
zCYka%3(|viER{}KYdzrQQ~7J#dR`QhQ#W`}{?Bw08X-BoJ#({6VRswPz6W1=@Rdlm
zdhj(bqOUV6{g!s~M8;+<bNQOIc5SR{YP$zJVzYQp?)Kmtc0D-j!5$W>2S0jnkjoUE
z{V~mNJ^0Rp?>(4w%ks|1mshuU`8o9m4-QDEqe5x)^^*sOJUH&b2_6JJ?J(<~6T_M0
zM?~_o;EJmDUp+YL!7)h!b55H(Ygo4*@8pxLb`NfM%{nD_<1b6BtM7M_P<Yydd#|UG
zQ1}Pa63P6V<##;&PY?bQLe9@u{u7J*oChD($$ER2jsF$T-^KBlC;a#uPw{0B>U+_^
ziz_?=+)Zx5g7nH>BzkepgX_}0;lWcO`~vEm9uRK{-sZLnq2w;(5q>`=c_8E=Uj<^4
z#~wV1@!tQmD&R#yFXFsd_fJMC!Fa(0!9s$C1*uTPi=r`J%!}f}OT;84g&ZrGQd&rv
zn7phP<%E}yNh%1bC|HSWY;L3RB(L?!5w_>Os3N?o;4@ypi)X#4=0$BU>UdGzi|4$k
z;YCd^!qXfh1}1*h+c9o{WA_S2EiY#GwTwJ@(ZL6-^Mjmqy{OdBQO}EG#hqW=jbGZ^
zL1ii=dyzs@d5*R(IWG5iq<YcN3kR=muk~o-G%svkWO|YAMTQr@XEmje?S#E)mMAn9
zv<o)!S`V7xX#N9{n|Q&8)U&%Z(y*Bq&ArI+BHrFK+l&5o%T5a~T6#fc4GFEp0y!<T
z7CUW3LbbL++IexkxRc!%yy)n~t6q%rqLbHpj%N=qdJ5_6MHer+3hyS^-D^G3l{)#@
z%ZuJ#4EEw>FZy`#q8GUg#*4lTRrLFLtq0fg*_WI`l8<>_4DiC~#UL*Rdch~g)|F>s
z78~iH!hbdS4A~)G4E17^7o)ux=EZO?MvB=Hg4E2nyi^{5OFl;AW4(CAYdvt2mjCON
ze7qMEyqGUK6TO(^#Z2L^dGWfC8G>&}%rrh(x>LNEDnU+@?sTv9B-TYE9RIthSzf#;
zqqDu3<HcMrvSi6LGEX8QVe9rFeu1bh^x`er6#id3i^U7OOT1W0-Y>zXVVM{2dJ$4#
zs95gBd)#ytEmXYk#R@NWd-07IE4}!@i;ukgM3R;554~6=mh;#CiA1v63zrDL_QLIj
z;^p^G;xjKiUU<C-(uH_ez0kbSz2Ku}eO}~0c9vl?dwwqhUKB3j<PaMlL2Gznda=d}
zDuiWv#EYoR&7bn;gLrCA8sXsdPeg%x`niyGUaa?Gt#ImmA+vtXOW5GWMiFlDVv`Wg
z<t*annB_0M_)478%T^I4N>tmt*zUy+nYBxBr=abLH9b>|?D1l+7f-z?pkkjF-+FPL
z$H9y5y!hUW6JDJ3V!szZcyYvwpS?IB_Bs8K7e9J&(2M8A*H2=(X$dEX4off$k_-7o
z^pEmdV4Vo3Fn{Q{s4;>0-BVut=EYxL{LOnntexQrk|0mZ#QYqd<t}(pYlP!ZK@xiW
zM@*4W=bX&VSH9@QB`@xJanFm(y!O3(Y_WB|{`KOjOt~iAek1-9(sgl^65o<R-t^)Y
zPq!#=${iV^X1<qvBlo>{Ao7P^JQ7V#r0d7ASx;ht6;u(Y;u#fC5w9XaMHv-kRTNUu
z^htbC6~$Bxd=Ot)<^MF|&<F>GpY3%NSD_7elvGhlwZbl;qWgn*J~NsM;~vBlORMNy
z!r8xsvz&_ZDk`a{s-l95iYh9rNE8W8(Fl!GpCmv2B=P&%2uBrhM?y6!JgcIbic}R1
zRa95;oQk?C>Zz!qqNa*E5(d?3si-Zn<y&S96#gytpBKx=9#~G3RiubozVZ6P8^}sI
znx-OMMI#lBRb;5Jsc104ktH$HTBay7T5`MaJ;SZ|*_x<mCTfm+<ARiPdbaT9f}G2Q
zv{cbb#S|4&RqHZut)iET-YVLtXse=~iuNjgeh}YHrcl3wiWgLLWJpiqJFDoTqLU0U
zf%)FMO8hjQFQLuuDtf4Ry@a!;3TBdxG51mNqKa2kysDzFikDOjQ!!jcKNYzuoGJ#X
z{Bl?1(VB{TBOGs)a1sZoD7VkS#%}z>cuEGVc$q03X>A<aGb0^CWEX}CQbNrUDn_ap
zD+}b@Q8F}IX0bblyD-wh#<?^|r{h$NS20P&Ycgem1aRp=JQXIgO2t>Fk&f3@Ocn)t
zc|&xrK8WXZ8kweIx(dIH&QLLvx3P-%RLoNGriz6s-jWz*tC$~)bB>C+!siL*A8lG*
zphC|}AYtPR-y#)@RlFUWwN%AB!k5G(AC++O1#X#&cViNodSCcT6(0y$AxO0kg}79>
zRjd+DUmpqiSjB1~`8Sdx+^a%W;Sv7*=Kti}#|TBD2{O*8Ty!)QP!UwER~f#*<-c;7
zD#F}c9|rpnQ4wW@`_R~jH7Y(~>QvlU@hR&>#W5AfReY{ut%_YLcB}Y8#X1#VGpj1r
ztJt7oi;6E*Y!ttYb2Ej*9h;<^pFrL=edUt;O0`~hIJ%XECz9==%xHJ0U@ADYQ-<<K
zzfrMA#SbbDsMyQPU&VJ~;ai!NZz^At6TcUa`(rMCRB=$nVU-`o#7{DGNM=!Uo80Gg
z`m@M?RdH0sFXA`fCWrFP5>Kc&sp6W7>ncvE_)W#%D*jRNyNc6d@J}W)FX4>vKUAC*
z!ijX0ziN`d<ierZb1Ke@)5|I@h~`BJm_r9;zb?rrr(cPYe^vZh!g*D?4DW`Do5Js^
z{F-{}%4NHw;&Jta+tMY;51w+82Pz(_DCt8fA0APSx3>>PeR#s#>`8n99}4=cJMF35
zY<!z^uY@zshXfxA`4I23>{E>jloQ!4>_dr?)@vvmN!g@?Vq&2<<v#0;7BzVbmG+^G
z4|RN~>qA)|%K1>$hi812)ABx4@S&m)y{cPhs*(?teW)V7*i96Y<O51t?^|flQPN3G
z63&GW)qQwQJU;6~H6aX)k<<`Q?=@p#*Ya7Vcx||&wn#|o`S83C={{tLB$-ouNEMzU
z)9cF;Xpn8ll|(vi=tG()Ft$NO`_qU`x^^EjeaMn*<Y$I)Qir^W4-Ox?_|Vmdram<D
zp}h|se8~1;Q(~hQf+Wp-$cgcJc?m6jXeHg&f^7xc2&O%WZzqJa(jUYVUyv@}(vx@e
zp%WMNAilE%maovwhweVS=tEy0-sfw_gZLgk^psh>eCX{%AK~3gTAM{9jGV90eCPR+
z4|zTe@S$JKW3G_?G+5F}%?WaH2gXL7J`5N6%RUV8VXY5e_%PImVf5>>Ue1R5Fv5og
zJ}mTMqz|Kfc*BRuK8*HZj1S{|n7|?&;o#ebu|B*ayu}2^jl_gk#l<+0use|fJcys<
z!)rdQkoOoAGVIqyfflBebWZVMst+@Lm?gq#f-?lCOL91cMmXzD5zh5to)5EQ`#VR3
z+(BBK?*o-d7!~m?>iDqSXZ<j>*oU`$Sn9(v35laj%R4?S5j*TIDe26g`>xE*=fwA7
zHdpwt(uWUx_|ONR51J3FeE7%*mk(|qK4uZ-CGfSIajuqv>@mR+Dd{A#tN7sIy<O7j
z6?dv|4zcAtiPwGb`(XHB`VjDe!XV4+Nj&vwjV;82ly}!*8U5tH_T{id`6?jf$T;gZ
z{!~VJ3O*C^xew9J){$K2!+Iai`tS#pec0&35g&f$e)+K3huuDW<HHsozGMOTu-%8R
zSQ6_Te0Q|f2O>EoU&n-$?C@b{tV{VWQDd~^dwkgI!w)_j@L^wU`gcBjE1U{c`#v^z
zf6Q022k}4paL9+lOz&{VK~erma9c?yz0+yi>xH?-U$`_M&Pc5u_2HNgr^MQEu}rlS
z%-Dl?63#j)6G?va;ddWSOP4Y5-6O5#uZuPRrw@Pe($i30!{0vq<HKWKxjvlp;k*ym
zSq5VKf)AH`xa{MT0j(Fr{GWGd>WU9nMd4q;ck&Xs#%sbEaFT4_O_rh$cYL@daw<^m
zuJHRlJP>kEkY}Hx`S_5p0x|uAC7n-wD4?OJhGH5DYKYUUWERqp@6r0Lgh*cEwID_~
zT3AC75z-)oDXyV}bjxTcDWp_vl**<5hqGH&v)%yEcm)j=HPqEmPeUaQl{Hk=@Qf%k
z4~asO1UaipEFNfhR>N}|YH0ixL@U(%MUhmOE-lxL&8j6NKkV8XrVMw~5oD5|*N`lu
z=^9dE`l&+dYiJOYFwYHRJWWFf-Y~-*88OL=PvSE*>r<0#SsM7&VI++;G|_M-inCET
zG&I%tcON_(K{E~68g6R1rJ=co91SBhjMUIVLrV?qG_=>yO0&M2`?Il$tu-7?N+Dk~
z+}1`zTMhgQn)E{P#10x>pP0y@7ex7wlFp8r_4Ny#G;|gT)w*ct$~<f6uA#q%JPrAC
zduZq>rg~|3QA1zhy#@PlJEmJ+UXpG<4Y?Ygzgm!zMNi{)_qIJ#Dv5l6hJhMh)-Xha
zQ#5~!i)S!{Gz``dE^I}Z5?3HSuE0<Y!$g6u55%WDiZ8&S;Ubw|tiUJ@qcv>Ouvx<x
z4P!No*D!(nYVs@O$CJODp7W}7$H}7TqQL6HT;@a#?`l}CVUmW|m<kPVXjrJ>Ee(^|
zdi9^JVGeg$!&D8^G)&iUvU<iW4d%D0|CV&l&@fZu(}?UvN;xS%(ZA)J8cy|XIkZ7b
zb{|*Ic)o3GYR=U#Pvak+(&q~<5M=k%V*AR;#pz{{_+oc4r!Tg@&H5CwL~yC#GQrWy
z>{NJ9!}}Wgj2rm5h7}rCYG@Wr(=~jc;X~o8kEO2C@R0_O1}~G}(e|+hg-aWfzFNAJ
zxHPz9{N$$8*Dv!Czo})it)~#G)I5~V=F^}Fe>6RV4}|q=2xth3i?04uLr6&Q=!A4C
znA|lD5e>iYPmO9=qu~=4k3W@N;-?xuW4f|4$h&=#LGo}@Dp#>q!xyrgb%K<v*RVnO
zM!^rqr%<>>!<U-%F;C}*Y1MYM_)5dS8dj~Szg5H68n$WJ&N|m{Ov4ThJ2f28@S}!Z
zn)P4zY<q<47W_tVQoXW!h3pgL|ImIb<U0-D3*oH&8h(iJq~x*(S+2bs9%2|8e&WJE
zYRm3orP-;!njR6gUo`y8o%*Y3r-ydpuNn>|bfcY)$wiK9IHBP(bI59;j)rqQ=FyJ7
zY51MXEam)5!)YFN4S$N4E>-*7Z;^JE=Xy`?nx&k7Xc+ZVR}y+`TFUu1&*{##|7e(4
z%4uucox<}PE=UX)HN0KQIlXlJ#rL~i(y(q4p9RqEiVU5uS(d?E)o@Kim$HqnYq%kV
z{6dRn#JmG7Zfm&10D>42#9a;dG=u`+^R@5O*V*J(b&S*TK*K`~k3`Z%x8#p`vNSx^
zP(Vj@9na|~s3T5CSsmqc#Op}VQ9?)CTgioV6xLBxM=>4W?a1AA&{0H3#SL~24L;-;
z`AuHIf=R`7?7fye>ss>lzZ@lXl+saJ2Q|y+cy@+u_B99PByYV}g~IYWD(R@K<F7jj
z6~t6U9U0r~97+^BRdqb0BS}XU9h`V{x{b!W&a^?to=Qp2iq5JVmal3$y3MfNK4%%P
zp`)gbMmiensHLN}js`kXb=1*OSI6@@l65S-lR#6ox98RqBXJw-XYM4_Pe@A9QD4Ug
zZ)Xp`om_cn4s{ypNYjz2Ba0U9TC>t6)C@tJ;Gq+C=7B?Y9i6t>*`2<@!X`Q#I@;^#
zprfgdW;$BwXsx5XKQ~)Pa~<{WIjEm;KRHJ@yDfCI6uxSMo!z+j0?X<ov|;|may!X`
zV`+Bh$%&lEM7=<{EP>uTN|G6QXB~GcB~kLuV@Frn<!(B<>*%5L&t4dyW1x;+I(qBq
zuj9S5$$bQ0($P=Hi#qyp(?89lyy)HJt)-m9%NOYPvz?f$qic5Vvp16Sn83RU6U!I4
zw>;aaV~~!aI);gn!8(R8`L_~YmhRC~PTFDf+)Ws+V}y<|I>zc4sbiFm(V}y$l#`Cq
z`{xud?Yz9&^81R888;jxHA_25CXLG(uVaENWP{%-+KD=D=(wq4l8)DOysqO79iQu1
zt7Ec`DLPi@SgB*Gj%hj;=vb&@I&ISFKaRONX6l%wV>Y*Dk*#@YXQQKzH+BBDGk090
zy#A$~6waaLhs{VPc2Ak7V?NV<J9*VYtNWIYMLL!+1B~ZUv&A~z*7<)FmZ`@Jv#FEZ
zHRbLt2fNF3yvqgZps@Q<NBPIimWvu=n7+u;d|!rE9Cdu4<3k;~4nHM2KGLD+@aXth
z$7+eh&6FN>4D6cX((&r<9L}x(xEX`F`>2_h-n*xe`?#A*uBxN+hCGrb<7}FaLwD?q
zB%mXxBcda!^Xp;32u+D3Gb7IseNLxZm`8O%Hpv<;t$WI+IzH3!iSX*zlPO^mh)u@Z
z82=YK*6BE+<7XY~b!^b_Ew2R~8+B~bu}#Nz9h-G*(Xmy>*IY$u=a*vYD;=&@{Rcd3
z#_VxLv_@n|40VT&ojShZ>6TUR;>~cw^2oi|Et2`Aoy;V?@0C^W6XeD*1K;b|uj5A@
z2SxaU-~n1#Vq-!WIlXXyf6{T7^-p(_0UBqbXp;f_qT^Q`f9v>1$59=}bez)hn~vi;
zPVib7YhxHnX(xT1l!Y)1PXArUX&q;E{J}hwcJ6Q4|BSe1#(pU6?03)pCu5-gqh{Rq
z)m>9aC_Ja*ycoHv<ARQhIxgwBOfQd{t$)<)uhQ24dD8e5*6pI~e`WXCWeL&yHJQln
zbs;RyTRLv*=;%i$Kkn$btD}Y=HT}4!<34X}KZ^PBK*vMger22qemvswKjL_z<Ef6v
zyrtJCJTC35em}W@A2&DIN#cbR^dn9Pg}HCpYJHMdwv4loNDBK=#E;*eG^6s)akk*&
zX2ty|;YUS3D)~{;k5Yb=@uRFCIc1#mRq;u)(tb1@)U<CIXE{HP^(kE556&G|#<{SJ
z<+_4&l`_uCekA(&&9s2u3Np!$Dl$YbpNM8vKhoDHaLTiORP*CZ8Rt(Ak^_5lmv>3A
zg7@P&iEwWjC%d)$sO^W%k4!)6_)*u724bzA9}js{{Ydd+<Wc+ceyFmR`Z9WJT>=B<
zl5dr9ruxy)54uRBUl~mvltb@q8C-H%EBGuw?0#hX(cF(lqSM3=haay#ZPr-kb{mq@
zl*xJ0teK3G)Gq6!ea_ACqlF)B{AlY(OHrn<wXD6B1lg>t^W0-A&m|r@+R60xeq8R=
zlp#^rK_oBu`87Cs>~{8}iyzbcnC|EMH+1u3upck`(OoQC`{?HvBU_p8Nf&<f_M?v<
z{rt$9Y6ZjXcu^A4*N>Nk^eXFQewciwi=@9Fd43EK3ygn|9|MIu1!-a5LfdPP3X%-*
zW2hgK{CLfeVKO?>k5NK~OE4qyd0A_lM*Hy!)8)sQSiOyvQ4X<<^J9X@yYwnNUI-(Z
zD1=F%!s`+$<C)^e8^R|G*4|Qunru^921guR;|xD$`r-CN@ne=BZ~F0$A4~k0?Z+HH
z7Kzijf(!guNQJV_dD5LP*u8Vp{2hGDk56wWvl4newYFxlA8(5SD~H{sem=j_O7bc{
z-t}X-A1kH%p2WO@*<NgWUvkdiYjsMY=JK-64@8IjLm~Nx>mxrtj>%UGaS5({+RWpJ
z*N>ndAy%&lxkgP~_?Y%5%~&?NEZi>`5DfJ!Of^ID6Y(P|dtu7-upit$2C&ADPyG1I
zkI$t7xuKs5VGS??#I=5WA(B8@C%bIxq`O`g#qLHwHu<sHk1f0k0w^88mwtTZ#|1ww
z`mxoIul@MZkAr?}^JBXo-}>>LA3OZm>BnxK>$~>EZYjGM-fhRq;_=T<v!&j*f8)m<
zKlU=Vg;sZ;AAbzUIe5?h$G{wRzxQM5LkB1R;KzO%oN9Y!v2Enw0SD;xj-6Ag4$S$<
zk3+n*{P^9E!+sRHXaB{IU;Q}Z$IlGrp8fkFId$H$(e>v2*{h1jALUKu$8kT(-?yJ+
zg$y2W!p~3M**Qu)C6ez|JLRW&5&7|#AAkFCRwAUwKZX1uNDG`*s&)T={NQrV`N5bI
zUd~~Vv~ZpYDeL5NF7aslahF%OA6NYNm-o3J?ORv5%KaKV;08C>k86HhXS<#J+xDv6
zTlJ^4TfCZDSGmnl%Q_i9EwjD#at@bpU_{mXy!^S?015~2ke9z71p|l+;ISW1{CLXy
zwp+@WXqB5~olHpXH@O7@R)%SiaylZ951`&L2UD6509Qd5MFJoe3!u0t7Zo|*n3V`v
zZ#hZ^K<|77ob=Ga@EZ8@$^=k0fPMkw22d`5@&Pmopm6{d0;m{3UD^+zSUG2<0ICM?
zjPS|<Bnn9qtRhGq#)AN!4WLE<H3KLR%B>ba^#Gm=SczpC%e3lG9X95(R>0c*+JYo)
zMpms8<2B1UpAR5eW;K*mqy$i(PP?UWY21_s!c%2v$D|y}(*j86lEb+f0b~VW7j6^G
zl!S1InP(W;G(OGNBmhSModW0_K+^!41<*QxHUVS@&^&+^0kovBbrovnh%Y9M8EX~5
zk^R{ea_@*=dGmUebG8lOg@AP&+6BNaTYDiLM96MOCgh&|*{L>eP?vyJ|J?)V5kS`f
zy2%nKSyMc|`0CuAvSeEBBcxXVy<-w?I^{1)x3Az!0juCC>>og00CNMF7r=l31_tnI
z0OJC11~4dq5dn-8FM|VkIe;OuoGpi{4h>+KBz!o7xoa=7GVkm?``B_$o>L~7do(J5
z(E*GJSO<_^xJP3Hctzr;J|#~V*%p*@jt^i$0Mi1P&L3%I^z{JV2w+kGuZb^ahDV8~
zY;pio0{E(UJd2r2o+|nIqFxp94)^Ud0@!rdJ}ZDX1DGib+&C_gVa%5B<^-%$NvGU>
zBB#s`U_k&M1n^-13t80xyc@vs02ayIw*z=bR=rrdJR?g2;Hg|1z%tgu#2jXuE8<Fh
z<(!P|y#U@1fTN6Ug@ny2qQ{lOSzy+g4d9~yv;gz~J`P}Y06fLs09*mM15jix-#{{E
zTXr7xY04uRCQ&5}M($%;##Ci3`6WDB4h9eq&WX2I<k14xXar!&uL!~c6b#A_R%eqV
z%vb<xs2sqj0sO=h9l&P+d>+8g0CokiHh?bz7~3u7Yr%Cq`vGiWodmEUfQ_t&1-4BA
z9Q-ox%W_VtRZPexvVF;Y3E<op_P^UTy*|&jHGn+{*+pG>`J>wcpnQ9P&uhlIQ10P!
zPFmO<z&8PWAHaU`wMTGY0DFaS;+vo6ejDT81yFLnZTmdi4<h+daK!@K0hVi_?2TVm
zIVchaz&G=UdCCGf8^9kT{5gPQ0UQtD7wP^gcvO&H>TgImA^bN9l9H1FoRav->4K5}
zE<>jSI3whhb=ETf4B)Q-t_E;TrvDwlrI^isn2G?-bMIo3ive7gjM3(HHScmveuY=!
zBgeneWiqb^aDz9wbZ-jY3E*x3w*p{RZ?j0g%wuAS_X41u`+^LTob7>h>EaPz0s^4?
zNdQj+xKb$lsdz6Cv^X1e;-o6#gGdOXP!NTKs2@awAc_Q0G>B?JR1czd`RrmrlntU>
z5XFNi5k$!#N(E6Sh~#c5h010Rn`avo%qtxP$(!Y~w|<Z}uv~WeASwh=C5Wm)wB4Ri
zF^I}Rtm>BH9&f7@1aVuN{_G}-Fi9}6yz?1G!uvmnXT=(gb1s$X=u)?o=Ypsa#Pi~}
zreN(L>I9Ki-dQV%_T`;?g{mv^dc^GsTIuY;<(-`CnQKc9g0YdO1hKGmHY+4Gh=xJ5
zVR*C<M0ya-Wo||gHfE!2cGDm-gUAxzI0(CpZYiDJNF>)~rR+A5u0xQ)mn)auOn9~+
z?QoenL9_^hQMD8!t%GPKWX+-hV@hYwDDR|BJ1!xJ-a+&UqC*fb1ko*s?m;Xq@9Zeb
zU4(ZM>@4}=P}d;1IwptDZ|oszTw_m09>`lT*T#5yi7>8h{}+Yi2Kk^*YvcL~z9iUB
z@Zz?FJh8@obOzDxpkqJ~17(PkYx8Y%G)NXTSdd1BG7QEO<}-ycJctoN%r~*X#K<5<
z1#v!v3n7dSVhmRl!V4jc4dRs`E(CEgh*yIc7eq9OH9?FIVnPs$gLs<-8N{R@rUfxQ
zh}VMn>t^y4!PkR$L&)SHuVs6!l7%+zvELrrlnPTt-aRpChLE{}GlQ5V<jo-F2$?Oo
zYO9@7x^-z<aBJ>71{}l!mP8Pj_SxSGqS!Zfe|aZ)%E#HIM%xxKjO)o;%RAo*Vo4AR
z^TYK9u`Gy{L3|(v-woouAl?sRc@Rg+J9|vG&EIReSi$W}Od`4bz(M?wMNZ9Ww$(E0
zBk}dI@T)S5IxgwDc@ir)**bJ>>J35-A{azShI~QzgZSwi%f2QOU9e^aCnW(M&*`>b
z_u3aIc_~}%Mi3_J_F>%Mt#-C>5Ro8A)Y-YjPlEU~h#!JD5X5Ied>+J?L3|a&+919N
zVq*}Sf>;;C`XDxl3)-*$L0+v@xg-_$+L;`4nr(9sTY|`V9QU{1&e0`l{Taa4AifS_
zcM#tMu}$Xg;EKMrZx8bQvlV%ZAp>>>(etWfSC9{a&!Z%}f^$z0jQPb1&hLZRD}0~e
zw_<@q-|^ZRZ6l%nelfLrkNw9W4hC^Dh*L~U5Qjwh=O7N#WBvYgcZ65afow)a?)fVB
zmmt5(*D9)`K^$iVR&XAZE+yQx6T-PVc7GFoCWx~^{2s(<*}K<oIiCGEk45rF5Pt^o
zPY~yVI5Eoh7mNQuHs$1hizHXJ{=6)c)>{9Vy`X~gQV^H9?;#Wq;Ytwy25~=#2SHpF
zUpJYJAg%>*ou#tXo|4@EhLq*5X*OE89mE|`yC=TJOt*x0gWxEQpFNme?Owr$K|Bf~
zE`<0H9tZIxh{^lx1w(i$6AOf_or);A*QVJhXS8fILQDvuPzZ%XR%TeVMM5YV0w=Oj
zvZ{i!?P%MEGub6VC>cV75K==Z6+-C{o(rKy2xUSj8$x0TNg<SzDHTGf7()3F&OeHy
zuk})&l{m|1rKoZUjQQbatCp&SP*tW>4_VPZBlv6xpS)ifB0o^USxtmISyW&laaPR`
zYK2fYgnFXG+knE_!s`g~W_Uh?Wa0HgNC{a-kBvo3ToM;g{fiZx4MRu^p=AiILP%$R
zLU4r8Gz6PWY!pJ{5Hdr^3c)TCR^UZR8j)MyB!uprnlhza5tqaCQlVK0*%EN`5LyVy
z5oGZ36`i}HRY>T)bqH-kXct18khO_+SzUYaLWA`9_xPL|6`dVJ=oG@L5Izc_a|m5R
zm=MCm5Vo96?i#|2A@mKQ8^Z{phX^U}DWrUbq+UXL3-*bP&i=*mQV9J*csYb2A>@Y8
zKZF4?`jssqPe=*93hi7^C@?StX9$BtI5=h@yP}h$DO>DALm0+eJ%m?67#_li5XOkk
z$Ph+_@WzLh5w<zwbBLqqOD0zT+0k@a;;S)h<Cvvcww}xK#*1W3!T2>N?2|%xErf+3
zycNRhG!?@15N3$NWWlK+ESqJU!qJM(60>a6L`XtMGeeja!aR|@DM;aLrYM@XOahoA
z!nuNzZxx&$!h#UOGIZ=g9F-S^u$ToC!uz80b_nl;up|Uui9#G@TPpH*8AAxCI;5~I
zx>azw2sxT>WJL%oL-;_1l`14r&IDebW&1D$=9%4(Ls%Wcm+Xe%3c(%1=OL^OK?%VV
zLNJ6-2;LA>v7ih31U13wC+z3ld9=gk4<R5za(XvHFs1v6U|3M?lMspNM1`yo+#w79
zG=$Hj8<ZS=5#qaatHw49t`A|OkPU*rRCK0(W#{N7>6Yn`LcWDXeybqK))2l9;inJ|
zg|IDz?IG+7;akz%A-E@moveA`y9K}DeJEitQ730wo47ZGVwJ2i`!0m<L-<kD*xfIL
z_47jr2Us2jti<;I(hBCF41KFvRd+aqBix!0ehcAeksk};cnH4;|5cD`M}@3DnoFKv
zt|vk`DZ&|NlWSCR{x1Aap2`qThj1o@vm*IJkh7M=6<{Ozo40O-q<=(CLdm)R(YYAH
zr4Viy)=y!VxmXsnftd#W4dE(p7z0@bu7z+tgh~b~8@Lg|O&T<iVDP(4ahrE|2n7t>
z3E?iUnh+lG;MYrdu20i9?j+yi0lAZWU+_T)Gq>B>eJtHuV{K1DsJ<odT<@k!ci21V
zRSFsiTu+Xp*|9dNwR#js{PIy;Ap?aClr&JvKoP?-SlmDf14RuKGthQ$4kegvYckuK
zMg4p%ZCGKHHBin#8L>$(v|L`iRHTKXDX)*SRgmt}T~=U@O3p+BNe1c}d`uFm7^rIC
zSp(G!Y~5l1ZJV9=jDZtHQXp9DQCxKc&l#v?ptgY;2J&O3yrzM=<85q*Pg$1hNZ54^
zFwW89t6wE&vVjx>X$H~_oZOUGUvwH6@a(iRwp0TRxyAuG9HNEsm7K&3=D$UMn;56B
zBw4K8KqCYF4CESUY@msO_69l_a2RN6Ajd!pgI~{U<t^Jla{~)x7Q2fpIj<aZ_$xVE
zGI9g$M5ncZLUV0xm{{pfAC^<8MSm(Y?D3D{QdcHky_5WcfsO`x8R%`GlY!0#x*6y$
z`dtik6~gV{Drleh+%9_$S^H*LMNjVL5j%y6&sXUqYoX0wTl9aCTSill;$AXvu#%H)
z;tqR%19=8U8yI6?fPsMqh8h@Vz-eHR%zasKusA(9+sgU*O3op&WeoefUH0JyMi>}r
zU=#}`w)TayZ5era@%NIcLo(LDD+XRO@H*Q#+p7j9@I)9GXJEX6r<I&>QqRxMv3(q_
z!YPvsw0RWAdf<k>VPLX>sRpJQn8GFa@)9dM^Q+O;ugY|(G)^f$CXqNHlsC)3n+6O6
zrh(Z8<{0?Uz$ycC4a_sJ%)q+_=5w12yklUAfrSR%GVr!6knR>4SRCWbTY6>Zk2~$&
zi8(CGr3T_VTj#FuqqzF-Wpj<oMe}_FD-68H@E*nWsO)6eD`|Oj)emHpr;^c*+G!Q)
zM+QDN;5DEcSS^Wl8E_j|S|EvMhfQI98W>X9$w-o#3|Q~C_R(iR<2f=AG@u*si&^XR
zZMX8nd@jC|JfpHRWPk<0x@CUoD{LTQ;79JYfvABs2EI11&A=xHJ~i-#fprFW=)Rb3
z`^>=S23Sk%u9bXN7-pUN^#(Q=_|m{v1~&2}?y}GA+;p>e-z0c?Z7vIVivc3*kVlCn
zw^fEXz0+>{b^|*Md}Cmbfqhr)I}PlXLfyqO*p<V?rVXpg3zJFS%RG$F`Q8Bcai4*2
zC5)r@lOuC%-*F*xtZLuSMD4KB_=AB1F)z<F8}O5XLk9jZ@TY;p29EH&8#ra)X9K?&
zI4YM3x03Py%7xFivE>b`dQ9ZUiBh-RU%DXvX5e=*e#XFQx!D+A{@VXopU3>1mAvto
z|7GBB-sA?Z8u-V+IRlprT$Z`qh4Th382Dg`jjk^m_*HIEBIB?BC~m`c`xS;gF^AQ{
zQ*+J0bqRw*RA6bb7;e(Lf!n<NdBd2<HgVU$Jzkq8o-uLXzysc3CW@JOXy6fx(?o)a
z#|EAl;6}umcxr&BkEXaZnk`_WplRJyY|g<sTog$m)4Ep+n<!#p^mwbBiad%Nur-&(
z!160@qJ)V`CMugKX`+;gawf`~C~aDoEvJ_;!SepNvXd^#n&7!0;nr6$QPJct7;{;i
zbVOwed2o1vB$`Mvtpm>KRV1F2?be+P6VIARHPO&SH51iM)HCtCiRVnzFj31yZ4))c
z@33-7oXf_otV1uAon`jr)iv>RJL@iO6tb>#8cb$9Cg?XsX0gDk@31!zkG!1sS9YeE
zNH@`#OE8f^<wtRL(>fqF6PYrROJi+kF@{}MHZ0>Z{rbclhl!@KRnRPR$dxwUWp8dG
z$3(7){w7+OXlbImi5^U{iPk1M(ky35&fA)3C)Nf@D$d#y+neZM;=7er{O2k=UyxCf
z&L$j>;<`$=i)me<RLFn1?`C5Aqd1<6o+f&k=wsqVSqK$+ix-mkL}y<UFPZ3Pg0J9I
zp72%fpF?wa)_4ZF>O2zzOiVKInu&oXoF;~w7-3p3@q<hZHt{kOB|#36Ob#_M%(Pyq
z^K()q(a8+(-Ni@~qfESF;#JeSTSl8!9gY<~Mle0mN$=b>R>C+F6U18l_?+=3h`e1V
zn*774z4h`u;_F<miRmV0n3!y0iV3cWuU}lzRM{rJ7ECkIHPKn<9UEWr7|%>u@*ESh
zOzTYrqk7ZCY}V2a`;`5;#JMcvBlgwX?ek0!X=<T~d-qf8cg#3p;w=-4kEAUknt0p9
zJ0^CUSTa3ziHW5=9f{8ECYG6a*Tko+IupxHyk|l+;WP2Ri51+w_{@(?tYoS$+CJoV
zOl(E+fpibF&g2(_u3|iqXGlI~0HW^_^q6p)P=pVOYehSwbL?K})@qs=xtgh&&`lU7
zALoH54Kw|MArk=;LE&3dGb!ieP>K8aM2Yy!u*lblk%(YaaCza(dvoodaN%?9$BJZr
zZep#8O(ssKXMSPg_hDIlLhE|oHVKY(ruDSe2dy)S8%%7JZm$+i+1+fS?XavZtSA#-
z31@e!3GHkq$=5N-HX*fJ*ms!NX<}ZYvqX_LyG*3qN+<CpI=?Zo$HZO}`%D}%aoEJS
zJOU;TnD|kW|GkO*CVt>XZ?{$1k;;F=o*ikx?;hv3Z>huM51Q~cjQfc@@>l8yqtjAm
zrhTKP9pP1A;<!xz#l){Bj+!`TT2G|q6GDCOXYiMM-1;1);ajB}a(~x$M|gJ9NfW17
zrOW^iOBnsaIBnt#D?dFhIgGO=Xg@BD_%Qxp9!&gY;%^hzOk6kdkBM_8y7X>%$;5df
z7X>M~z>>aFkc2IHd*WpiS4{jH8-4joK?<+NbZ(fq$va#|Z<)Bwd!AQfdK|wP=MHy7
z<l`?FWTUlv(xq`$?*qOH@c!&<BYzaL_Jl71CJKb{QzS7zhJs;GfgXtoVH64@DQvBa
z-NIoM38QEj>(b*w5>>G<N{3NKrW6mOL~L$JA*I6nWxHjkY#8Ojs4U&`VN?jCQrJpG
zMZtV`)XZN#k&;BQz>unhQ8kP<R|-B8#;A=M5KhAOY#7zTs2;|1Vblntb{KUe)H8((
z(@4!QYDt&Ta@BRis29fbVwRFx(x_>ik6(DDU<&17GzcR#jJ9F43!`BeX<;;{%`$O}
zCp`>%7>y)`j4*6M7(-?lSuwslJ+85EM;Not$2a*OIW?Px(JYK?5stZBkP>1}7%jqR
zDZ)0AjaCvNM_Y$MgZar}{@aJqL56yU@j@6KsT@YvFt~(Hu~k#8bBuQrLP>WaTqAjp
z7^m4@Vy$-=eZqKA0_YpYH{y|_OU|X{hONRL#$Vvm<CTK_Wo}*=14MaX7|t*Tg)umc
z{N?1Yi2UU+hKSD4*bs#yB-B?WpVS;F3ZudpEn$oi94i@kMR>loabb)PV?r1cnbI)c
z3}aFluZhA`QGQ);vPj+#%rE09vD%v^Le|4{(VQXOnPKb1ahbEjm?QGH!<ZY!JmHJO
zm>*MkOY|3nu~3Hct8|g@{H@7%_l~Gpc@w{M_ih-=d3+)$9Km}sdROrMFjj=IlF1BX
zeHa_U_)z4oFx+9RqN6JXKax~`EOPGe>ez{+eI;xi;Yb*sFuY-?Vfa|*vTIrxx+L5T
z!yiUKrW=Amk%y$BnArT>5?Nrxu<QkSRMxd7j8A0Nr(vuW@|oc0g83(!k$l0ZL_$9F
zO2Lg`Y-0U{u_ug0>2aHB^K!vT8F5>}_%e*I!q_U2?}}C6*I{fEzCDbcLRg<WgmB4B
z0&zF1B|VOEelTQj82iGw6~=7|^4l=J4`aUs@Ez+-cJl}6UKczN#*bkf<joew-y%5_
z#^Eqdh4EV$N5c3yj1waNC5&IgI2y(=9`KB~F_+`Hr^D0Zj)(E&LOi>>&&6|%d>-ye
z(WiW9k;1?8@|W(PENmfXdF>17eWl>_3)YnG64hTKWS6JlpD@maaXyR-Vf-udi(y;}
z<8l~R!gwP+F8|1{zEW`azwx|7IP1OixT|4Y6J=V+m)wx<O+hA#LSD#s<ec*6XWHww
zOuHAx{V*PgPX4TiVLX!V<1h+Ftb3mAiAbIb7Kor><BX@BY;iIgFPIRq4*0FjX)L@V
z5$oeQl_TIsayYkW1jS-@ibqf)f|3!GilB6a-@A+QGE^plvO=mCvEpPSsUVVfB|jB~
zR}%CbPo_d*1W6HmaWt)p;4^|%Be--gjY2-?mRK!<>Je;-;L8Y}i=ajXgCZClLCpwi
zMbKR$tR4B!r=_|`w@w6gBd8a_^ARLRkR3tu2vX=b0$T)`k^g*7szJp1BvdL>5kXo6
zLoeDhBA9l`o*qG!Iyr0{C9<0pfjt681WhAYeIkcd+9-kngKUi%M#E>CL~vk`jqRh0
zc5Pzem*Z2KiRHT&?Bh;U&558z1Z^T{8$rtm&JMP<9%$posai$Qn(KX#u)j%_mDN+q
zG$~AB{s*|)MbJKi4r1hm2s$zTxRid?QaVOZTS#Xant9PqIX9?l1l?re`JdA2A)NA_
z5%dz?JAyt!UKH#fLEo6pOG5fZkSpZtL?<V*<w<vd;J^r+LVl9bmm?Sw!8le3lNQ0S
z2u4LPnp=~Q!jEoQpZ|(r1ebOpg>9seK_@Ga_bQe$hBb3NZEOUuFsqFdUS-0!+DJO6
z16~@|ctQjdBk)C_MR4_agC8%ZpLt-L6v1l|^thS+dW4V4!sH01MDVdlD4Z(fUD}CY
zy6_nhEQyWIj9^xbzZv2CZOoDG+z8%^$>#}~FSsCrg+e}E-;&1J7DcdFByS78BS`rl
zt(q?tzAPp=b;HtM&R2n$<b5G41Xo7zfsiuyQa_AfRRkYJKz^lpdi`n{oVYqR%N2oJ
zxFYC@$-P3<2zvH(P=5*<>Jc3Jsqq&Pd^jw_FBlLE3Wfv?K~pdsK}1MYaE&16eiFf_
z5xlU+_E`j<i*PNg?wXB5qxV=iF`TxJTN6%OAHfD8<QpT{Bz$vB^2*OezKURL1OuaR
zM)7q7+j!QZ$cSQl1Un+A7De@_RTw)XC>TXt6uTnW9l<vd?1|t;#QJXeb6p$njo=5K
zDc&&kQujshZ3OFH8~Ask^ScO$-$$^YS52MHY?S{P!9h-p;I|0h+~QCKCn9*7=sX<3
zg9|A?N37@69EsrCg%q~6t(*KJl3xXn3LcB#xR9N*()zVbqkhFC=SlA4^wQT)Huyb)
z)4Y))xE#Tm2zH)II~&0-FSPA{xB#R5LpZyCa!*4Ue=$NK<o^gcCwN})LIf9Mqx{k1
z3h$ZKSyx#Yqti(KmF{P!TU?9adIW}+=A4?!=SuJ=otqKdir{txcOrPqquQkGU2fC(
zlm`*q8`hQ&lDHSa{Rk?(RF03C;8S}ZMy!YUJd%7eNdAoWggJ?zKos9zNTH<ly2ghu
zq%7|dA0I_R6wgL2YlWgH97VY(%12Qoin&@tw&GC~jq)o%Gy2xcEEdJf@21|nky;{(
zl2Me3@(HjQ*4|z;IlW92kzx(MJDv7+YN@jPNUWMVrC|n@D@0K-if6=Hr6{P77)6pO
zRF3kioKmS-C5nNcXI2&Cjk9dzvlpdu?)>*s`9vQgb^5M}XN1p1Q6q}fsP(E;Gm2VK
z>jJMIMeQj5^fY8kj-rn6x>2MjIqL~NFUW5DBqw!JL}9a8q=8I#)<~&b0}aJyn&6xt
z?6l9T*cL_KC|-&pFUgr1MOGB{C>rr0Ls4{&BBxk^CR|7q?V@NOMbjvnMRDwEa%(Z0
z9YrhYHm7Ek&;G+J{cY%D8#}tn<x`H9QS6RO8JXl{{PD#Kw25MDZ(G|aluXC1tI0i%
z*^};7?I3p6)F?bR)A2$S9i!IAX30A-nVAl9&g~LK*C@J)X7?z1M$t=nk0`Q>Ss%sS
zFu>M3iWj+%#{ExMPw5jy!}-?h8oS5)+vX%W`$f@TR?Q{na_;oP*5x0?0Pg!Pi|^WP
z;h-o6^RzN-ZWGrvK7LXZuSGFL<_={UL@_*y5mCGv#rdKIMoJiTG+L4{Dhj^F@gu`y
zL_SvV6+s$js;|Wt7#GEOS!2fqxf8hF1-TQW`1N=)N!e@3uZyFZf^P^;j$(?Cse;o4
zrwh{Nj3|~SS+8ZYqIffk*-^}iA{2$e>_st;1s}!#N7q?EIdye!e_(KTeXtgtOfr!f
zMqq%!ox!CL3Wd@lZE^SF#idZ7xRkj`Zaldepm=d9Qe27@r+A^j_hj?WyFPo@I_p`#
zz0W@99-m2abF+-Ai*3ljD@(SS8Au;ga{dqIEDK6b%fNK@qH)ZOjQ_c3lG}M!24-hq
zj<gx84D(rk2Gpi0b43aBGO)Ikm9QWK3wfbd=C<>4P!|a=&cG6ZUaib@{+NN~8Cb(2
z8Ca14f5&V;WniT={_DYst1_^f8)tx-PgeXhGokeK+CMXfi?CTt3UB-2YI&1oeFipU
zV8Nw?i`n!H+bB)llo5U}ZgWhx?_VeIbH=S1_=V?f2Hf19?9r7PN(O8h$Pj+~O(H!^
zc6K2H&I~xjzdf_-u|;KAJpN|#sZ!SUr(!)B@MiE4AJ~}zA6t^aug5~m!0^F|95KFy
z65y!5%EoUCvQ#JonOuq!67%poW!G!$eqCcb3-U{gf7kexJH36jClgBU;^KK<i=HN>
z!;cN$n}K~9IM2psV1EWqrkl?4D#P@_axn*ZWbxeK70bo&eV+U8;|^uuu*?Ei*O3ey
z6+R|<T=azKNzqfHzl)w0JtNApagU?<FYY<6PcFRkHQKz$LcPfI@LtUOQ*oCwaEV<u
z8?I~7)GOTSr4yL03glm*zrkaK%T>hy6*n_*iv{h-ZpZBm+{wT-1=kh+dIj!g;Dmyc
z3hrg#J|{wfM*;u)<*SSb8F-k1M;Ulb|Cgra3Z7)(Z~nPdU{>%n1J8IeD=4qvc?Mo&
zAg_Xa3SM%#X5bx{N(NqM;GYcqn-P9U?6y3XH(b)^jc+;l>*M%v)Z=?Bk9JuyF6*1^
zH7^;Z|B!)b1=$otDafK=h+Y5tUh|aaaak2qI};zQWbA$>KD&Y(3UVr7{GJB!xs-5K
zxfLkY(&!l(ZzkkXU^}ZP<X2EYL2(5o6ckiYh-FJ87gJDJK@kN-*^8W}TszYW)<|u7
z(%AKee$v$V!fQ<)f9kT#xZG_lB^8ubP)0#11=9)}#y&L8n3Ygg!PoDTprBbhlVyiK
zcD4S{OjF~ImI?|gDyX3#MnNS7pD3uJpsIpT75+1z@3dE6SwXAc;x;`C^MPND)fB98
z==rGI>Ixn;GA?^!JliS!<XfEr=Q88yQ~Edsu?pTT)sI}J*R!5OMuTXd>?Y<K75tpX
zOt2`3S1?q;Fa-$;YAR@>AYH+VQ3;6(>L{qIAW6ZiipFFGDGHjxSWCf_SmT*PCCIfE
zq>3}?o$+QV>&zOd^%OK=U#9ER*nOD!Q#<uJT=`55L>r1WQuvcJVP~CvMrz@FhNe=a
znS$m5EZ#z(rD!YB)}nP!#J5$@PQh0SZtv2!SI|L09|e6CbX3quK{o}TDVXt(dEgv<
zXL>dmyNGrby|K`E@n*etiN@UvjomplNy(o3`W^yS1w92m7iCs2f!?BDC`kT?pHwFM
zf2%iOvgu2X#$IDTUTcDWz<~IE56%6DTfSD%pW~T5b%25am-Pch2Z??oO6Ru%-zgXz
z@eJYmAE9T~a0Me2e9zUQV5EXk3dSiIuVA!-F`SDUM*f)iyuJD>n^VWK@6I^#%1$Qd
z+cag2eu9FD3MMI-tYE5w*3C_e{x(lhaL#0YUpk?A$TD=Rp3Y5~=II<91#=Yq!0~Kq
zoT*?I7yL*g`O1*m#pWc;R*;s{u-P3qptyOif*%#|0q^q^tUsh@ny+Ai@Iui=qKieB
zh%#oWz%m89uZN3ddtl^dT%q761uGS-QlKi~17S56p@Lr&Y~x~9aNv%<U}3{1fwc<O
zu@ZJX)3`ywMlOCnBciZ@CVRcfuV?o+E7+o7D|_9^bYNo~J*+cB0iPqms!Gh%E5bHW
zyQo8y0arD>Q`jZCtb}p%9lck9Pr(s(aGlYwAfRA}f}IL~CK5e=*K49bH!zc#LJBgu
zq8915i@&EMmHexMT?!5<xV15Ew}L$i_Om+*jLl=aE2g~)_9-ARcUpZ*+{1dmDLBaK
z&KpxaDT#^xZtr!An#3NK8qQy+$z#0be*IAe#}ph_KrVFELM<^N{*;2>6`WRZM!_Em
z9eI4UT%zL%aF%D<xbFNxffrYe=a|JKkv{>iV8WpsgaO%f7ZhAnaETi*L3dff6$RIH
zy0~IGnpcI>wJ3USDEN~nh7FZ%xXJb?_(#DTE<6QycuI4jp0B|_9DgZ@E^U3vu`(O(
zir(X4Qr>W1!2^MZqK`!Be=P7s;ZF>Q!%7w@Ol1wvxC^8z*NeCp3i8&m5MC*KIIxB3
zwZQv4wfQIPEze;a9{*wdm*@5X(>n$46?FML;R74&x6l)1LlztM?=@w$q1#AfHsNR+
zavaZdxMu=A*~LT1X+tg>a@&w`S<h5lAde0F(~#GO@};f$MDvRlu%VzpA<@F3j45J6
zQQ=|{538!QRbRq}k~V&xt1l%=C@oM%w5%vZ%ZZj3tzbh%0mfId;ggTf({VJb*ih95
zy$uE%KK1E2%hhbCZbJ<l2JA40-*K`bM!05T>PJtkjc*AiFpJ|BXTx(FUf5u?!DNHk
z28#_28&n(OZAh@;Ya9C8Fw<hFX+u*Rn%R(OLy`^2Ht<DjN@;6@k6=SBf!d<XN)@Oh
zT35854QT@PMPIi`WLQHR8rjg;hIXZ`-;}n#PERB>iI~l8XkkOZV(4bW)rFl}+R$0d
zRyMS@p^XhgEQWL&+S*VkJu${&U`#t3I!G|Ny|kRrQ9PYQXOy<mbMktvE*!>nDP3(K
zv!2gv=x##~8>}3zVujc?rk*zRlGc(xw_#p-*vZ`9HhdBB_pzaGguk?*UxdH1A<w#$
zaJ&rzZJ2Ju3>ya7@QnnFwBcHt#BXgFYQr$8`8yj1+pxN{m8FK*uv@w_T)M#Vui7(u
zgbi=Z25)IATRX~z(NfPC8z$N?$%e6FjuTyLF^m_OAbP=Km@F_&luepq!&Kq#MHx>g
z(~71=XWB5!hM#O$X~S$A=Gd@MV&dB*{$K;EnlDY7%Qo9ks&!)e%JyvD0?Fc>GGLJn
zi)~oKMb$cSnGHYMuvD1l=+=q7TPH3TbA^q+-PWEa{hZ=eHXJW)-D<-x90XySKMSm}
zVXY18Y*=r@1{=0W12#$)=Z;~UY}m{gi-9~MJ(0@3P`61W>sMqvGi-QjF|d*J*le&%
zGwzhO(sbJ3vf(!y4%*<h!NYiNc^kYo_-xQ@2-)Dbp-bDu+Urt+T!hTxwM1E*3nMeK
zJa!6fw_%43>>aZ@_2Z4NwSKi>mn?}#Yg78SNn|B#<X&mRzR39Ox8Z;=3%)CDJ!HdS
z8*bR}rwvDJIBLUb8_w8pOgei~>OU^bDL5gWW#ue;%7)(~y`y>7hI29k*KPR2hVwRD
zvf;ACU$Eh#WO2Q52XSd}qS>P>HgKRy^o+h5Y1=iq9J3gyZ<~12hFd&xZFpkCZ3d?&
zZcYyuyko;(Hr$o<@Id_cgzt-T0ZeI=$l!;P^+>d68SCFRaN?fIm^6{~@Ql|jV{K8!
zN_}a=D;wUk;}Z>?lMC{xL9cmUwKM#~9bv;;Zrh5D%|qh;73fpO`p$+4Wvp2WC*B(z
z_rZoJd$?ehk2)|Zs~xR|)?|vd^U37d2s!M?X~(yAd}l{4J969cl^tK(k;jfHqq4QJ
zBi)X?cI2}oza0haNVTJm9R=+uWJfhSsuP}@3)@lJjxu%>5tE*x0>$hoZbu0_CMYI4
zOWILN{E16V&2GlgQ`QdHQN@lQ`<cqwQQnTqks2xpRI;OD#M3S@l|??W<I{*|RT*pl
z3)$)9313y5gc^3l*pXyMq8&OrV(l<T;`MeIBWw_e<A6Ljvj!%Ucs{n!Vn@7~38FPc
z8N)iQik^@h@ub*M%g+Bx^|i%AU~XMI>e<oIjz)G|FI=<cmbz&I_3ikna80HLb`0%M
zgwWWICU&%x+@^M9ma#7H)%sB3n$3i1Hn*dN@Wb~tX|`g&awfJGeUUAZ+}4gS_USv=
z!#{CV;9g8SJKA%m?uEJL(xljT^*Y+o$&Su;bg`o=M-MtWpJX+3v*R;6y4&$<KMPHD
zo4yCf#~IgjwVrIX^UYy>Ptngsd)d)j;0w_{qJ2fb6zwO<QWwwY``a<Vjt_6M546Ku
zxaQKEG5jE4T)Egmb}ZecZ*wW`8#|~khh!gY=ZjN}v||*<#ExNh47XzhyWBR7@8}NS
zYiw|_M)SO}4VoH~PU)+-;zrvshO3urhD*0a@>n~%t!>S}{^K|cTxoVp<R$Fk|Hsah
zu}-pMvK@crO<kwyJMJ}2VQ{h3sm!%wnjO>aSi;rvuX%<YGwqmX$9yix{He3-m~F=#
zJN_<Xt+dO?^n)GLxuTsPn2zR4-Eh{#sutL>*v=2*ObeyvDm&5^+3_Mdo>_GAy0!AA
z{?o$fxgK}_vXQ^X^v^T>p`GUCcC6q^uw$hitL(Voz(ogEa|Z1g<iIx$yjIfI@Vx~)
zt~?9>e%V?(*4e{9@W-^?jtzEfv}2PUo9#Gm#|b;O*s;}){Sxzw9oy`1+u^Yz!w!X$
zBL0j!aW*^FObu6JXV#rKCI{cd_+TM8?Qn6}KZJ9c*i^3_KCTTrcG=;#BVfl)PE+G}
z<_7Huae|~;jr$jdkEOPYX9u$mg)8BGJ5+Na1M4S5yW@7-v4<UBWu(cMt9vDWAJ3Bw
z;rIh${w8|Rjzc_!j_VKGaa24EIARaql|*1V#)F7&5b>8E?Kow}Rf+js^bgU~ky2;u
zI2++}(qEQ3FP;l_Tokxu$7PPTFnh#+|McaWnAb&bumJ)$?YJetNVbZ~_HeT9i2h~A
zU4eVdvg3gr5A85HV0Pe<9glfhI#9-eCtP55WN{#?15YLXl^w6`cxK0QF^`oozYt)}
zFQw&#?N9Yw9{+IF+40tne<k39=sVH(+;^)?jBJ}XnaUL9K-J@6h<1dVn%jXq4rFs6
zyO=o~$mu{X;s2}ec^$~-Kw$@pIG~)0%kMxz0dfHc_=zonsgMJu=EW0=I#5gkN{SX2
zE#U~yICFWne2g#UfF+<Omvw{(?Nd>RmUE!IKm`XX2{53dBRuZ}rcWH<c_&nMpbGot
zKs5&pk;v)}#5kZ6vxWmp5RRO`+7K%qy#tHZ7-%xlALoEk{4|+GkHvv_2R?J4y8{Uh
z)O4Vp18EK<N-hIZ1d<#`j(9jPwH&DJKq?z1&bp%inG2TU_}3R_3kO;{(7=I)Vm5N1
zi33fA8?!soTE;gMPjg3jAJODK3abOH9cb@B2gz;YKwAN3rOR9pnA*u)5IQ>0Ndmfx
zb{6d-bHQBB#mD$=G8g0?67YqnRkWuAp9}PIptk_SI2TmTLLUeEI`E|f{Tvt&$^FWK
zuN~+wCddDOA9;@UKnFgKGe7P6)`6fS{7UmXNBG09!J<P%X%2N@m;=Kd7~#N32i7~V
z!GTc@jCNp#12Y{M6N#K4FxG)_5zlxo><<<$xrq);a$vFpQzUDe=v2|~9pOE~3vrK7
znWoDgA<W{uPth-OV6g+U9hf8L4-U*@cZBE4OfiOOfp`|mOwr^_QI|Ndl;iBcO37X3
zz;Xd*{U|d<U|JzF^^sRO@Uw&OVTLcgn#<A|_tC#rJnOjLq73wK*HAY~7ZlM=qMNA#
zTOHUYz>fSPyXIr>GGy0~Z4THSa5$hk;EO~$9dJ9~5z{5RhLIoVj^LGfB={W&NDQ;+
zq(_q(42fonazeK|u)~3!4*crCE(cDEf4ArX(LIsKy$<Y)@P3&!7XM8=2OT&haM*#P
z4jdCcA|uZjrsLu{AtO(dBTqdg&fi5(J8(wetOI`tFyNew34!Unj0u59;w3r#YO1&_
zK+hF{tD@ILuRCyq#T~fmz%3qAYWOU@?Z6$LpDJ>x_{)L24!m>Vy#x1H#DV7yyl~)w
z0}pxHJMg#E^GNhD7q<M}ysHcUtQ*r)@jr8bw?@$XLULa^@XCQV4!o7z*P{P$?kc4*
zrgh{mFFiE>mANB)a3D%WHfdoN6<JkeSCK=^Xi;YIBxEF~lKK%o#^+X%M@2~$rBviq
zkxxZo6-89!S5ZJkK^29hhX3?}W&hLiqAH51D6XP}#QdkVjQLLsORFdoX<JzpkhYck
zKil@PB^6XuR8dLACo1Ap7*%|#qOyt_Dq>VrQBhSzH5JwWdwX;$VpZr>82)>EOe)Ng
z_E=QJOM4Rjf9+u}5>+HgR<bBPDFU@r)K-zIqK=BXDn1iuJ<(R8X)5ZgXrQ8@ie@UB
zt7xR6v5F=tno7X`cRX82R!dP{>p$b!T16Wb=_=Z)=%k{vigqg6tLUJj<A1NMi;Au)
zy8S=3eVm={;_sots-mZg&sFqQ@uiAhDtfE<LPekdUUNScU#a-|ztlWX#UM_l6P29!
zM#Z;WA<ppUec!1VtYVjn-71Et7^)(qB2&dM6=P}|+zw;2Jf`6)MyMF6Vw8#{Dwe7k
z&0H1JRm@N^R>e3q{ICA^{9vxVc|7-T7xN?)6I4u8@#p&RXWy;o=b&@4iYc7C4(3H2
z%~QGfJDM-tO`tMhnnW^Yrc^ao#XNyoDrT#gBmDg996tznK7^m1&EWYe7K&$qifQf5
zh00p#WY!`Ti^Wg&tn0c=#g8g7R46Kzt5~7pXBBHyyoiqaNySReSB~fpSxa@v8q<78
zj#VnQbuzE!!Wfc+uvW!7E~>0Cn^de<u|Wkt)8ELWCMFv{BIn2Jy#0WlRym?KtJpUv
zdW(v!Dt_S(y_n3zTMM?SxP2mliKdOC*VXJ+;Zb2%;ZUKf;Tss(PN%?!LD4R0`R}=-
zc;lH@*e6;pS1IH!<yR3<5#-v-9i>Ubg7Wlows1!F=+EwV;jeI3%WBxJVuy;U-^VlU
z6!=xNdZuxYioGhHv-@l?=k8n@m%$+w`&ArZDYM}>9ypm%2Zh%KQew(l={&6Bh>D}!
zr1xTusW{G)wux?XO!NsAC&hV3#VKy6p0SO~>COxME_zz@jEb`Y=S2SyW$^ntaThq$
z<#ZQCFNt0jrSl3$Tlkua>nd&t{~5_0UO>l~n<{RJ=eDSMVAwhRL(E@XpC4lGiry2w
zui}A<b6U-ZVm=amEc!(BZ_%fs&qP_n_$s=WDqgABm~M=6;&u2iG`&&rR>eQU3H9RX
zsaMweuL|l174HN%r|-Fz>Xgnnkw8BeNfsyn9P6_>5$!}a;TtV=^kjG9aTa3^(VU{W
zM01Pg5oJJLC-OOw--!YdPZ1{y3Kxoa3OixgZelP~QE?U%{p7a3gcBv5DCI<HCv+9E
zaMH^-k#?ZRm~-ZG^fWV-bpitMd+X6G?+kxvUP1H$e^B>)jZd8T)QK5R%ygo%6IGmO
z=0tNRsyb1P1)YeMBc-|%b++kwi$V=2T9&mk#W>NVS_8tVIy$`*FA5pD{$(;a5$EK8
zSui;f??i$VW+!T2HZxhA*lbKK-pTTOw<)?&-kMG%vQ8)JI?<+Hd=kT)xSkoGEG9iE
zPSg_a-O;iw+K?)_InSgrhV|5QqP`Oi*jcGIt&3%aqQCRR*wBf_9M7&6aw8`${%9Ik
zo4=-JY2rlnd-|qMT<c^R*Ui#`y>Mc@6BC?Zvs*b~b)u&et$9T!(w%7Q#J+&3hZF6b
zXzxTfF%yUDJ1}0jqZ6H+=<LMwlEzVQ^j$9-yRb1XeRjo2Prsr@7XM6gyNjlMRhxb~
zPvtZ(*rNa3iLada+R1OZ>U%lS+leoP`-o;tG}7PKi7&<MCz?GoTu^lx`#V7$>BInm
zflf^9XBi~=jVR4;o%l|8aKtmjiJ=i5=EQK}5l$>tj8j_}S%h_tk_tyVF-BmlDE;FE
z7?b!cX7aPtiO%p(4<A^hpX9`3C#E<-p6bLj0rK}wboon9V45z@NAbp4PRw@VXD8M;
zF~^A?oS5sxJSPS%)Q1i>DE=re=XZwr9Fz0rAD!WQ4*8X?1x`>GI<ZJ#vFH-frJ~{Q
ze+dluC4M<q)NcI>Cw>xWpDXW5CssMpVz_0s6Yqvt2n?XEbz+?pZYMlWtmo1_6}#C9
zzJs)Z`}ewOqZ6A17B4k2_5C?*ixXR&c(76bixY|yHYc`m>Apy2%5WlQM>E0h4Bt)1
zlqa>UBf_eHQ`E&y$!*4UkL&sJ+3O77E#u?naw6d5ofyWT6Pf^j37zIrr#>X+_)pE5
zPHg9L{nWfel(3U66y7DeTXat(cQ2QyaF2I!`#C;MO)PTIi9=4<GvUa@VJD7oVf)d+
zkE2c;<7#x{Yd4NNae^b}LQ5A;I&sR04^Bk6@VgVIoxB+Ucbqum<d2EO{o%xUIT_A6
zaZWrl-s<URx*+DC+<i`5a^kWRS9o4IE!R2ebIWdPAAgnG&<UT@GN66@pm*^z@)}v{
zhQ!QiA5XsN#4V}h=9aK|xouABUryY0;+_-top|fSznl??Vb(uRJapnwxCT6N;<@-2
zy^Z^u$8w(J{b$TiIfI`zV0y;2ci&8S;Y7v9CZ?B8yb|76Kl!y2c{>@^%=)bJjT8MY
zhr9DmYU9!RUO@Y|EZMX(YZe!>x=_po(-M8O3v6UAVHU~eLUtE&xRBEo9;=TU{Vs`|
z+l4&h%qzk9UC1XUvj$h}%Bl*8zo2L#(ZZrdM2m`^Et<^8;x3dBv!n~9Tqx~A8JaGb
zT_`L5$}UuK0WNG@qc0~~UX*497b-@$k_(?i_)~$QN6b~F2EAxC(dwc#M0xcX0i6r6
z5f956gyTewqSN{$GT0)V=EBe065?G*aG|Dn>bP)VQinugh9wCkyO1JKOSHCVswiXl
zZhT!SRZo<~`Bgsp>$}iEVj7Azio`c|p^0!)(PpB}Be^_OTe;BMg#vCAbfb+6>6}Uz
zuDH<Fg?27jUFhjTdx`HP+96W5qYJrS#PQNhoyFNjw5w=07d{i{F4{wsmt*kfF7$F?
zvkO~X=<UK6F8tuaTo?Md(AR}wE(~|!OBedN@U08qx$u<>cdDoNcVU1F8&1^v+Jz!H
znvb7YHhoLdKsI<w(jd`SZR>s`5a`*4&cQAWapCK-R-SKdE2Q_Voqwn+eAXR}DqQSz
z><AY|x-ij&NiK|XVYCZ%%BGKZVSHKZ7#GG#<XACT<kG*X?hn}s6I|f=f8~A>bzxcS
zWEbY}ia&Ln;(~u_E2gOe-@7nPV7llG(U~r6Dr=qP!U$*5Z1FIjJhyftFFntN`7ZqE
z!g3cDxUkTLWiFKKV_4+EVi)#4NFwj~J$8u;-SRbG>O%9<&8r_zB>&1fpQNTZl2*9z
z6UT=O*oBoYtm0yGVT}u`T^P8u1&gyti&3qrKB!}<n7&qOSSQ`2$*R^16INDAPu-us
zNd_b>N0&oY)3>_tiwk?$3>UV!kl{km1<eJ;h3GS}PEnf+%_gSUg&k6rD$GHvS+20l
z1-A<x7w%n5^ttf;s1&a-%`;`K3oa)5T?nw_5i{h%j1~=dxUkcOOdccI3(dKdxSgYY
zDI7oca^kNp?B*%`s21zr#cnQZ6}71w&2tk{_PMa%g<~!p=LV6Mv^3W}>cVd>9CYE3
z3vV*g={d{>7cIK<bnFo>Hb)XYH~KUjG$Q3_z4qCbr<`!%j0<P^SHOi+JpWzb>PlVT
z;xt$3gQUXCTD^LcI<9Klb1wYB2^y1fUM{r9Sa(U!q`mHj7sPqdg-ZgTj!U_<&p^HE
z!ZjBjyYPhba=ylO7m_k!|8(JoEBqQH-=77kH-&GxaGT3sn9lny{KbCd(%t2_abxal
z-o>Ijv?uCHE**0pxbRRS`M>=mSNJu;&Fnh9Xc}KH=5MzDZp>2`p1JUxjdbCi3-4Wc
z$sW0|D@W{W?&5DceBaAJepuG}4;!<)TV7b-xbW5m0@J@P)DZaKLX;bM+{o)j7I*k7
z7+Kwjc88zs#{25CxxvrWvb&MP4PKp`QqqvqjofY!a=Ce{hM`;b*c?%@qqZ4_8Vy@>
z=g8;A$+%AW-QZ2Ud{7dZEh*$iVK<C!nA|AhMo~9vxDn$<F*l04@u@rf3sxoEe6FCr
zlpCepC@DO&Rsua`+$ift1ve_X!(Y~b8?iN86UvEMUX*5Z?<ndhCAN|qskW3)+<1AV
z8I!GP?aJ=(w-~CpQB|Ot8`TAPcQpOGl~k(E9lo`dGpJ|%Zaj`LRr{j^m4}<bjX1V^
ziN5{r@L6Ye!{X+T+2Q7wxp*sMyc<bwB)gH|Mol*osZ;dD3Wt@6_uuk1=@d75y79Ri
zwcM!9=DAVFjdpIdccZQw^>|9Vk?uyCJ3O=enn_DHp5~3K&%qbqU2qNExLZE4ksFN#
z$W7d6D%?!8dBopBiZFoZLo0Xqz-cYIy+Zn6z3$CaU0XNWrW%%&DZpNLaHFFebLtsB
zbEA_Ro!#i>#_%_Wu~Q9Q+@KC_pV(Cb7}J!Gd|uj6Kh@CPjUH|kdegWUtX7W0_wAS%
zuuj#NYml#(8@)Mz6_aT)jfD02Px?M?^mQYUWc*UJpXi3C;TIbH-5B7;6fdTFF_0_D
z4TlG+2j95yts9d(nC!uKZVYx~o*VPs7{Zx?wcM>F{@onv#xOS6jS+6lbfcl!Fw%`t
zZcKAyx*Mb27~{q`H^y_BdF%47rR@FF$GSmH?b~F68xwh5H%_F)oq~0e8<ROTeVaVu
zlZ_s>%T>-wX4X_UzLyyC<-_e+&kQkN<x8y4Kb<<ujY{RLwaZy&bD-S#!Ho{(to`n`
zo=fwu*49z2$Bk~iz>S4m!yZ)hV38Y(*+(~2H}akDzC?7X8+Srxn#<hy(T(M9tZ+l&
z8V;F%V*3y1nYG@HmBOn;SBw5E%78U)T)1prE9N@U#ZBvNaD(3!+9<k7bh8^<+}P^o
zk0+*Ph=&2cxUo&RR2w7BTiq>GUfSk{UD`nIwkFld^MR%tuiS9E;c<tbw{YDJuNyu$
zPP=i2+m<uy#tt`jN^aqPS%Yq9!XeS^Ze$7!EN5l$kNm56XdZE6m+)>k_PDXvjgMgm
z1opYHUw}^D8T*?=9uz$!dRUZMtm>%nG123qbe`bp6yZ|>zl;9OpFE5BuLztI{X_J;
z=mpV>Zd?+$EXq0)hMKMlUyFE_UNYWr<4-Yfx^X|^zvael;X4t}U);74z9;ap+6Tf9
z-FOtqeJt?AjlTt+iav|vJ{NewQ)sA(O?vIdKjJCq!5cT;3g_^I=j&fL-bYHkbK^g4
z{@_NG1Y{9qWL6KNg|kIG**!=a86I1voF3$g_;Y)ZC&GC>$S0g%v_QnqNh#z(VKIw%
zP(0!<>Orvx^Sf^)B3x3SlxS(uG9HwT<U*jFXn7B=TJo?-l|1;wgU>wZ?!l)XRQ8~e
z2aP?b;z3mp%pO=gsOCX+5A+_q&2Qk#s2U!`c%WlXujr?ivoghcKxGzn;#B>-X?lYP
zaURg4zhE+YusWZ~Br$||4-z~`_8`TBk#FN_dca#^k~}#0L7(VB!CiVnr{}rotmQ#%
z59&!hlfG(@>Omb3)|Io~c@;;qt_R!p=$X`&#xxJ=OIQOB8hX%WpD~v`?%<}l+kH*^
zu0#`F!h=p8boQW`2hBZb=Rtc9T6oaXgLEm_%7fM(q(vKt22<JWkypcAYa?ww`H8u$
z2W?jBKh=!PV(Q>QM-EO-6Pe@i_hJ39p{6b#lzDIN=E3;|`mP>ydv7-0H&fYwYhA*T
zJv<of!4MCua>bq=eC|Q-sqwu$=;J|O8He5;_*Ut^@L=4o?i_(HJ?Q7bARg=<eC5H{
z9-KR%AK<~azv+Eb<NM2?eVV-vkFtRt+;|zsbacO|z-s-sp739j?>K;~^z|=<)6wJl
zp&ksAOHcG*xCbLVn0407A|u(C;>K|vjQ3!a2cyLtBRbZDYd7PVTXkwYbpjXa_wl#h
z>!~!^uRDA7eU|8_aG*Tl8`13^d@q++<H57{3DZ27?!gQXW_qwf{NH6yp5?)O4;FYZ
z+k-hCzUOKBf$O<vgDU#Gb3HilAg=IX(>xCb?u#d|I}1HHbl<#`e+4{P>;XOH=VV{v
zf$f8t3zB+C)i3klM-K?gML8Y(f(*y}Cl6L~ZO90$;yUD#dvB)sv-E3A5yM(()jAK>
z3v3YG?7>EXO`@KA;Yr`Z>8qK#)q`Kexy=KGZ4k~7ZF#TuU#l#PWLo-F97m(~CcV=G
z7gviHoxE^+;PK!ePxy<U>-QVI9FwW>dpYAC_&o@C5GrTo^LBQ45ERx#=?n>Edaym>
z;k&*&J>iG*?3!l$)q`Cg49H>HExJcE{i2?peQX$q)PvtVxa+|^E*K7`2NyiJ$er#=
zJ<Rd+;Ft$z%UO?zYKKh6J@~bL{3))tEA<H{JUA&H^042{zk6`ngEQheCwf-&X*nwc
z{t!Oz!HKRGn!DzkE{W&12X{QU?7<bDJmR^@gYlI9n(%ee8=@@rC(o8Y;|RCdwfQE#
zTT7++s!sf05;M0`xbpiRJn-P92mjjientP#gD2dK9z2qm$D;ci=4GU>ZG)#=kRCke
zXt!-pxV-gIi+Fu`>kFO+YfWENY{2?odC;I`{A&+(Z!!^BiqrIlhaT(ak@C0k9nVrP
z;Kh3nK6nu2<s-1-i->0NBC8kC!gS^p$R?UyG=~>C1#*cpCbt)Pgn91`&3qAmelH3{
zxS&8G(ZZ4VqGA?{#1!|Ugm6jGQlh0Jxn%@+q08>La$eN&qOKR^y{O<tMRC#}??ojq
zKJnsHFDi@EBwEFb>R!|kt}0sXBiD;#sTePeVv=<Nv0mr}3=w~vz{gS_)hr%M#Gep}
ztSOM_MUp_WXo_ep(b}S^qP!yS$*dRQ2418^xV{&qnrCG|!-%Jm7mdAW;ziSlCtaYK
zXmimPqAf*RdC^*+jVQn0&DxmSirLPK_5$>D5b#B(boQc)7k$0>(i`5|UA^JY+CKB5
zn>YOOwx~H9wYwKRxN>?~tX}l?;tS!PqMwWQ^1>Hej{!TDn-<K?+Q*A}myP5vLUH_>
zdCe2u`*|_8y74P7zV@QO7X!TE7t53R|G&T>FTU}jQ2`xNbl-aMofl&m@5Nv*hIlbj
zvY0#6ixJ-NE7oCN3>T-nT(}6c(#z;tWYujipd01IXfFs89>wshI^!g4ycZKb)<2*a
z!zOxhqOcB6W3pz~O=8xgn3SU7*Wh>Z>Av@3nitc3nBl{8FJ^e*@Iv)srWdok$nZk(
zVm7Cvyp?0cXO7MB;s-D0dNGf~<;Bll%=cnpQNuznrgS%9oN<8{Irf{DG%+snVzC!L
zy)-WIVyPE%78uD<qfLZmUi>H?@^UX$MEECxm0qk8C>zo<V2zizo?6y<vEGa47ximJ
z%NNbnVS;Ic7t30jyz#~<`}7;xfPMN+UThZFB1+FzFMf&eHbQq3og?FoImYU3UcA0s
z|K?Pkon1H*H6bC&$<g+rrw^a|kTu5Q_QK1F_QK;0KRqB@S`^jqMZk;BKD<e35cERh
z4)vje562rc2yrcWv6F+gQlH655qP@ENb^@Oc6ssAi&tLk_F|70m$)Fk*z3hUFHU=L
z#*6)4H0)mQIJ>aO(s*jZ0Wp8`;-CPt4ta4{_=xDyi2s;C&+HZ!JR!wTik|Y~cY*9B
z;+b{Uiz=p+b6))64c|lftZvGAo-OAr7rn5b&PBMudiul@a-OsNyu*A&!uWl(KfSmr
zd`<Ma=nc{Sw=Jgp$v3^Y<;87j##4^TIm;a{{u1-97mo$l{(A!VMIU(aFyep2U2N#e
z0H!CL?ub9%>G-*eEzdaPTyl#oFGLBv;%hJd;pyQEkJuY8-g=SGhx|VLD?Q@l`{-v!
z-f_2j@xhBI&e1tb4$&;4Sw*8onU&3l?7|)ETf!qCoJ%x!Bqom!d4;ED3&#}j;Z~vK
zB0e06w(xQVeJCXDDJ+_8Y66`_ec(tk74xCEa0$_p5kLD_+K2LG;+e|$P*xZbPdNcT
z%&?*lm3*k`Lp2{h@u7b{15;%mzwO0Wk#S5PJyj%&W_2HG_`u3L`4HoS&KG{WriBl&
zKIna@=R=wg1|Q}v)ic%hA<hS*m?j?*1k66nSK=(b@Ykgo6E8IoXx3!$-Ihcjk|Z)&
zG)0sFwRq{r;UY|_KGYHarox800@3>{^w;;Hv6u}ar5gIs$cG=R#8<xdKV_Tv&{T4p
z`7rjSzPS%u8^p8h$Q$AJomxtJTKUl0hc?3LKD70rop2fwI{sw(F2&g1hYmh;6esV#
zo_8=S%d%e_8E)7vK6I6hte!J+J9qQpGcmjS&_iIvOS4sA(`5?-dU1_yi(Rrx*WZWU
zK78TB(~C9w_|Q*)Zyxsbh2Kv6(uZE<t%R?{{91Auc`+(#fDZ$G7+>Bx$cJxy_|^xd
zm67Im;v@|7A^BR|U=F(gd8iLFPh=wu_hBte{6fJ9AE+aJ7$q=Tl%6phC?CeLDjz2J
zFh%^`ZX203k&|^wKgoy5;w&&J{?--!ll$hWVty|=P4ue;;qNTW^kJ3{k9~OJ!)zbs
z_^`=`%|86#3*V>8rva?@VJ>Hfi^PWoY?u%0d|274u5v1NAv<*{Hf?0eA|Dp}!k=F-
zE%9Ng@G{P_z;YkfL~>UM{KOg}o>e}qj_}W%<tGMKa&$&ZDl5NRHId49tsA)FHgJ$#
zaT`T@e;v2Qhu5dgwuff^f$O=i!B!uB@nIXA?E}q&J{%HIe6R`FMIEB5sM80R4{jek
zV(#(5>x0jS-D3KE2>6ic!*(B@<uwL<uog>Z&8u%W(0m9<49!3n;|}3pMKdqQ?d0iH
z(KM~JX_pUw?u|Q|&&V+TLVZFW!(NHm7b&~nhXcaDiSo`yMjqxl!-A2RqXK{Ua4h0E
zE^vb9Sf=@;=qVq57og{~z!}lAKAaQa^FNuz%Fj#L3tRw^+AaxP_Tfszb5-D)=ye}%
z2(ShgzbSl6^tR|7A5!=gVBx!>_eAfDJ`jB<`bd<O@ZHY8xl?$kc8yN;;~D=axnPR+
zBby)3efaHL(+km;qOW{7Q_%cc^dHeTqHjh26@4fAUi5?L_Qm=rf4E>4(X65!@9VSs
zVSin(kROHp$l*s$F?0EmUm&+=9#Mwn^&?+|5AHV7Q$Wmue&i}+rdh;~qJG5qq4T4d
zAI1GB=SO)zO88OIkFtIoUYIble_AO&j8*Gj{L@_84_6;k8Bs@F%lkzMG{N}A2`^?P
zRPdvsA65Ohb=Nr6o>s|^PyG1Q4>H3TU)hg>$LqaWW31u_O{TpEOx64takD;Cbw6rE
z_|C$FSU>cBY%rCq>4(9OI6o|YxF6_E59=HK=rb?D<Og|ZzeF>;-@(GfO5*)!d()gC
z^$eWW;Bn>p*A^ut`aw++P4*+jk6OZ~*6VAt@{N|6`%|fP{HW_kdXd<Ae$@A)fpD7W
zhWR}j`orJ#W@_a}BjKx+3pVzni63iDBr-MiqnU7X(H5dDMUS2?!T^?S?ME9ao9>5K
zpUBkKk9HB}m%lpt(aDc)8a~s|*^e%qsUUI((UnfNJb+pOeC9`YKgRem){h>3SpDeh
z$CsQzqopV7KN0t!hUIfV_!&?yKYDW*jfO8cV&bvv%TJS8Etcf($ATpcsi?QSy!9(T
zzV@TP9|IWXN2PA12l_GkNOHOCF@yaWB>asZ{Fvrj(eFgNcFIN%!-n{=G)D|e4fA6-
z2cLtMEo!8cqMreyxU{mzFpc)(1NBJqI6ubwF~N_C>}HL$s`(AMXY=VF-6#3+<e2%L
z)lxEm$$m`X`r%|%Hq7&5z8~NFG0l(Z;(1fqGQ-a=R-5>M2=YunsIx?8i_Y=m2Lbx$
z3Y<*H%?H#h@MArfmLCiKSmeiIKbH8h){i}7<Cgld%#YQ6{4C~=ek}K61^2?J#1nTC
z1`kjCi3@B(VwquyD>=3!5}8){as68}fyEiQhBXW=$zXccadiz#G!Bkt)<!=z`SA~%
z;m2k_ws3R#am0_Ue*UOUjOItkkH^Jge&G(<Xx`>Wh98O_Hf~rhdp|tfGJgKNo!RN<
z@3@&&31j4!jk~(Ii>K6PqUrVXfr@5^`PieaW_tX71pEk6x0>rzt3wY{tM%sP8414f
z)=WRP`?151oqp{1BYwU4S3h>K?|$s{<9x1|nXS4`DHOBYkNf8n$mP10r0(<MQ0{OR
zO%^%e$8UZd^yB#T<Ri6X4srH-bfy2^I`dIKj`{Hy7u6o~aX(IQ;y7IF(WKfZxrBHL
z$vWl7?|z)-Dd)#oKhBAhMY5*UnY^VAf$8~bbN40Y3tR>rN?zs`SYp2D$0Y&sS*`YZ
zHQ|bwSGh>?#<bj!gDt<|=Mxoh(~o{5&1~DMx-qx77wXly?FV^Wm#%l%s`6H{wk^Ti
zs?J?M?y<9eJn-Wo&nwmZ!jDIs8lLT9-Yst}-l*ggKmHc;sUHQJ*J0Q*F$vMe7;3^_
z2`~M4#WT$l&V9{|e7N?WlAn>^a`s!9`AqB_0sQO7J2Bt;5gkCb06vJxfT#en1j3O_
zSp#_WEP?QA8*}ym{%8|+`s#M28Gg2Q0J#Fl9YCG{@&=GUfC2&h{WRO-g=K~;G3N`Q
zZ@!qWm17D9urRZBAyEzmxv+2%QJO^siUm+yphU!9qh3s@07?f?CV;X5R1cs=00^L5
z0G|d>Ie_v3RNz&Vn$J5GU98hp3?Q+vu2KLyYw9lVG|w%l`y_yZWp%|q#8e5Os_^U>
z-QH5V6`k|vj@4BQVER`&zIzZ8fG&Wz0E_{|22k;JOmxpge&GJ2v4dVrgDBra7_cwO
z6bQfJP%{8?0G&UpYY8A;+Ayn-E<rq%zR<Brj7gNpB++Eip)tDJ0i<&L19%reodD_v
z@O1$F1E?23S^!;`wXl2r02&1FZ4XoP02&6u&lzhZN|>=GirQGrCIK`RXeOHcPx$wh
zSgM7TZ5co-fz|=!>tbvpnl9Q_w4Erk+6#0L?HE8OfzG1wosA6W8bCLm{{i@|^}Z7A
zF4{xXD%w-@bJ1R+y+ywe?IYS(^h?oxqO5T3>;&q$eQ^T<;k#%a1@Jh4fdLE(;2X9-
zfOP?^4}?D!|1N;x0!^pu2D9(ebwfml1~5#3o>#?+j|gC70HXpJ9l)#rW(RP2k#0-?
z;{q5TfN6tnETL;$u47#$1TZmxsR4W+z@z}Gbc&i1z?=EHtQD-2<wEw;x*l(IKWx`c
z<5CG=W&rgY>u2X|wr7cMMgU3m^-OIhw5T>M95W|?9|HI>faL*vaX~ki%Q%2V0n7_v
zegF%kLR)OJH>I16SBtPai=|;p0{mHX9nF)MbxXywEPx?bn{GH`psonurvTP+95mg^
z0A4K8tq$O4fmQ6L8ch$&=IR#rU~|JY?DgR;Y!aJY)~?$Sz(!Us*WDDr<^Z+_kTb6K
zmH@T}5DFkOfL{XG#tk)D=M>ElwFjUG&~M}Jt6(KK#G^+1zxQoNrz?P=i*@b*JmU9?
z`b7Pr0nwnSCc3~H$AYt4>ff592$mhuJGf!F`{w9=mFDdh-X+>t(d`Lf$1NSx-T?1j
z4l^UE2LkvlfP(=X3gAWne+F<kfFm5h0ImdZG=O6PoC)A;0DI3BJRZP_08Vl(IdsRa
zHTBNdof0N6{T{&S00?9LjHQ+wSo~Z7=L5LF1~1Y55kMeS|7f0$x-(t>bgu4V0GD|6
zvj%dr4s{<)(LE|&{AvK#*Z|giH-=%?xvpO6c)6PaFrd)Cy1xPlw$a}T;C29a0%$*9
zw{4zoqPf}YBf7f*+za5o)cKIB=!out@X;wcUgeLY;X0oLFl9!|Zmlg(1^yP@?@OWQ
zSpd(uLt9&31n`n4w(uL#*P{Q3GN8^n{afML`3yAQ^Vkm{M-VxK;dfv8z4)jgvILPe
zh-Cw6XA7c7k>qIMCpFCUWEaoH8G8EHcB{!-M$Hwh1#6q~1d%t0IYImoM7|*M2T>-7
zvOyFGqF@lkgW<a}Hmoxg3ZiHbRURd!SFjciqDT+~rjluvZ0!ui*oJn7D;J`^s$eY<
zM9CmZ1yMQ}zIVEOuDsNPLoB@E89|f_LKj4=R9ij>e)lc<j=n+=6@#cG&M#k;<rSGe
z3F6Zr`0Q4u%Dl92Rncmq)kSNF#)!7aD9B*Gkvn!otUd@s5OKlqdz&MJ;cp=sgD?eQ
z4#E<|0JfxLY<v(2L9`E|Ll8BCNDLx1h&qhf)iNmvK8qkFh~yyVzNquljU<}OO2^g`
ze{E6E!NzEkzitpMgJ=~*y&%$paO8{KR4=N25DnO!AQ}ZxzjAEGAbsN?wBs$Anh0#K
z7~3?6X2L8&fAb((L}FN^br5ZWXv+#06iN?b$e4!yxJ0(0V#V0$6|7AfCAJG<psUM(
zGO-<l=oCbsAo>Q;IfyPn*ao-k#sB|<=*CG8!WzV9LB!AM5_Pm=_aGl_S8HU8MDnm|
zvE-gXe9lQxTGqYOj^?@w*6kIntf4n&N2;1yA(rNsLG%lvzjXYoAoiAu9k9FQ*KAnh
z#1n`ex~6g2vyIujW6R<O1~DjzZ-V$Xh@n9Y3*x&VUKNTR9OT2_YQ30RXjIF@Awj66
zV^=sEkNYg~YQfkgC1QsM@ka&g2+;%0JFqHF*{C2!2Qemyu`+}7d@nFAi17jwL??<)
z3Sx2)Q-r6AGQN7=($s19lEW&_=|Rj8m>G$gB``aPPuk^V*xVrIaaCyOpkaOx3xaqY
z#FHQv2C;})YofT_7E2K&Qp1uUmU6F&`J?FiAeIZP5dA5Ll|if$UL(3%l$ZNCh-#0*
z*IgU&tPA4o#VC51Hi&a$5Ss)x2eBoHt&zxW0>1<?^2=xjXNdW+%QS64*tvc<)Im6d
zxFNZ&AlyNm2;yWAo*=wI><(g25WYyAA%buq;t6tDMtJb9s7&GQqB}%)Msj}@*d==Z
zdY!!y|6zfBqWgn5An=>$LD55^EW&0V5hffB;+XJp(Fei*8Ix07B;xs9^fX`X7Rbu@
zGaNVZoD-$z%Ys?Y2XP^Yi{iN|dP(%M=oL{$^8Fm@wIHsGC+<@CT7L#{Gl*N_xgUwV
z9mJgo{}set;d`P_z6#Id1L22}m`4Kh3ugU0h^ImD=V|`Brw^pId=|t@?u#Iv2k|1j
zq4-CtrR#1C^>q;c1kpr8Q;olmX?PPv4h=aqyba=CuJFo+VP~SY-i>(|#Cx7v)4G#C
z1QDeni-xRP*pp3^{%9@yplo`wM}TH74Y@TKHJCKy(U4a|c?}gb<kOH}Lop4-H5AZL
zP(xu2MKm02Q@dZ6RxDUZILGl?-#n_@XIk^Ax%5RfP#I7{LrD!~H9$it4W%^%i|T*v
zQ@4zUGWS#3$0xBk;nCW-OV4A=Y51{Zt=rQI|Bz3AKdoU!4V5%h*HA;lCmKH0P^fDA
zsv0V5U@!|-(ZGTe{moh7zS@Rr8s^<h%3HH7D~Zw2BWrrB2EBApr{VbdHf&p$EsYEs
z{$5@nPOin6l#E8lXVo=puxO~Gp{|B_4G9{OHKg!Di&AQ8NTNSmVxW6^qIjlmZAtU*
z9+-B#ZY>QB#<aS1rWU!j7WSk{456NeG>+TRx(zgJJ5e`wOso2mRrX#jnhiBH(lGcy
z*w3pp*1$?KUmKcfXs)5PhBh+G<vT{V;6!wcZYgFf4XfuGIQvwlbTQj%_~@snU4%Po
z;EL+1;mc2=Itla7dS^~wZBrKwwKl~O7{D8Kx^t{F)C(ak1gnOg8fIviso`@Cy*Q6r
z_!~pLHGH9AlyG8~n8%MA_t9{`Wa!KKH8gBdv!8~qHT2i;m6+9jNTHKyfQEtMxiYCU
z%|RO0oJ#pd!_m1ZOy3H8$8iuCB04mZJ4|4>=m-rX1)87E&w`^hICj?^qhVd^nqx%?
z<1~!dFhR_T8YT-&5`9*|T3}`?#!L~DE%{#h!mdpdm@e8swd^bnvo$Q%utdY0NX&c<
zKSX%0z&s7H-OV4rOSM45LUAq<ZSh&yzf{9A4eK>*(86zy{m8+29kWKm@<=@^1b))6
zl39;ytP&-x7WkRlZDshkC)R2hd!PZ+I<DKpdcsBxH<IFi(ZVlUH%aB2MR}Di8m8y3
zxm7fwV9jkBGBhX}Y}|bzln%kpano={!&wcg2B(JoY(Nc*OM_d(4h=gscr<u5WNP70
z!F(G0ocDZYjay*6vDN1WYCt&1Q=+1kW{6YMIQ%KqM{_&((K<cvz5G?fF8-|?oT{}=
z-OV*zBz2F5y&A5y%TBId(R#gI_I(`c_a-KK4rus|Cy9nb8cs98a#+LK<oKgp`5KOJ
zW*4N=)D=rU&O>ip+9{r9<I_%PILYIsPg=W}h9@edP=9CHn_ah!Ph)P5e>$+9a~l5O
z85qLu<8kLTT;N{Qa9hJg4VSop@5Wu%aG9%pc^dhOhWZt)gsW_-<kHVX=M4>ia)VT~
z-jrZMay=un?r?u;c%k7XhoYkOu7-y^nl#)K^S<Z<(Rn@M8L+ily~i4!c1j(YrGDLG
z4W4j3k2Uz49s%+*4bO$E91RD&((sz~cTb24;U5h-`X;>5aHm`R%VYKPS4lYXN4>X_
z`>*Ib(f6VsL>Z7Jg!mo_I}g-Hs|L{_WD6mC2suJ17($^Ca)!eH33H%+Eu4}|m}YK)
zJfe9;^NHpcEfB)Cqv5}6g+nM3LeUV4g)nM#{D`sfKi;-%J!vT(!s}7--<`CS2%&%R
z_%oy9f3PN$3}K-_nGni`5WUS}3IQRM3t`Z1b8HCZL#Pl!_gDIAq7_9y4WW_%{htUF
zt`uKcpi0DFRbck|`04^RBK{ZwohU!T)60c;ErURus8KZdNN*0o!hs5bAKgZe(5Hlu
zAY4;4Q8Y=E0m%Z~8Vhd5*9xI_2&o~E>x58OU_nJI%^!UYsP#i=5W?aRmW0qSghn9@
z2%%o328}~#5<(9iyrJ;3xxD9-@^!D(G=yd$G!LOg2rWbC7Q$yCv?5F_bTzH^xvVu?
z)6<}K8_{&pwxaDsnblsPgJ?(5P9by_=px!xH1k}utoB%b!(z02&!T$>XX@21eWv+~
zc9xzYd=&zZ`p-k?6~Y}`kKQ5l6(D~RLZ1jPJ(>1pg!_f?*Bw0rzUHKJnca&SSve<_
z-_{?<K@Q=Y5WWpzjx3??LU2v0`P<!?!66(hUHBsp358#p4HX?GIy{6C0wYD4J1T_H
zA&e1oYzW^+{Nn`1i%tk(VhEE$n9Pwx&M6^G75^_4tt-l<@2O}d@YTdLaZVSVAv#lZ
zRtU30;g4xP2J@nGYwCUofjU=op6Gnh1zgo1vuf%V3D{r8EDd2<2rENa6~gxK$~GQc
zmec*CbbNUTD?<2*Yo@#L=CiESThFqt4&i6Xz0Q@u)zZ|!Z-|^P*@K_?t_@*b2<t=G
z5W>a~_JpvPYcGV&A^3QvO^e+U!qyNRA*dnz62gJ`u}TON=ErUm&Jb<>T|4@1;<t;^
zWQ>!uz^2ZRb%$_lZfyIhu|pT-zgW@g3E^o)t5=k{WPb>O5P~6SA?ys{*APM>WQMSV
z9Sq@ZkGg9o#S*AYJ12*AC6egb#YVEo<XFa(obo?e``G=dv8O`#J%s&iA%~sIAcPYk
z%$O9*bSQ))AsiL+u;}IavBw0CN6e3rl@^5KPl~hf)Y#Kp#v$Y#6MHd)vmu-lKg~a+
z8QbQ^UI^j5G??vStLR~`FNN^;{MgGOTnXW-jMz0%j?%}WJGiAYkGmTo{29W{5N?HV
zJA}_O(JPbR^1xpq)XYR;ChmrCkF#?oN}q}QAv_2nHWTjXq=($U*<)YIrXV~D;jwtg
zPk3qJr=rh9pGR_EaLdezV%RI5s678ecoRa2Oq9&T+YtT@Ax|dqX5w84@1^qWnfM?O
zl^NcEJ?|HxW)UW26^Q<5X5wYP@J(?{IWmz`oVg;AxdrlE&XF(TDV&M?5iTH5P_$4c
zZ<7eW{w*SAQPE<e#YLHQEf`fQ6Qwh8-C@}GwXTf#D~Ohj#2^#pgv*N-m!qR%CMt>f
zNhYdfqG~2S6|=Hv=ls#EyqYkfMkcC9xZ~@BF%i~fVr{E%Pn!*D`1h<71Bb4+Aubcf
zOqepUu0yOP6Y-fa3+Jd}z~Z>Pm8=PwXx6h!jY?Jq*h<IoFigrsN+xP$hNm()6OAib
z6SH=xor%;;bjd{a0fsu6sGEs&u7oZz^)itrFd(y7{mk&Q0-CZyfd--tGtr2ZWb!Me
z*_hizoCH@|O=|N@w3OoH7MVC(&qC-^$=WItts{|bGBK%=mHxJwXqSoh694_Mq|TY>
zAk1cT%tR;QgnUUfcLZ8(9c*AzyRsM3=FddCi}ny@u2rC?T$g5Vj#cy6zW<A<^MG#R
zh}N*druW`{2pw!$vShge#-^FxdsFD4_ZCVhNeC^W_ue~%Py$3<t5qcsT7V?9gbpDP
z2m}bce=kq(ymRLK=bJlsW@lz+M$&3`)`~$^^cNl=O5^Dpr9QD@uoWw<SY^c!t9D_3
zoE77(7;42ZD~4NfrL}%6PhXcPCXKLSr1*>yrDe3h7}1x1=cdJ#kT$`Ji9Gdd5_lbK
zlC<}0E55N}vXw6p)BZl5!nTW@JXI{yM5kNvnZOKDrcVD=>)u)7Jll%Tt@uLtODnz-
zVCo!!;<KaYS~1Ux`Bp5jVxbkKJ}Ii+(J!oG`R-CGH|F9e0>5U{pKoz0-^Z}Xsy&3b
zSagZ#QY)4TEEi?!3M*ce*WPEe+KM&OMn@IPS}WGEAG*{%V8wbXHpoET$kpRbT<CFJ
z_f*}HlDbVCwCuDOaXUByt=K9)+eCMZZnt8G00;I?D|SV=)BLDC5#B4X&x-v5f4$M3
zU0s-&mi$xHw^kfxXL>NjgYURTalZuz!VVm@;+Pe%qoN(ht@xf}-iEq1oUr1g74Nvb
zSaHgVAFO!GWycDu6*jh!i-{F>D;!q*ZAG|sL#Guk&UY(rS>d+AV?~gMutKrIYem2c
z?(M%ZJ4&^}&%ySn6r(;dev%#a^V(=etBHoKIL&cr#m`p!XvG;T&RcQ8isMb=&$2%S
z$Um`eP2;OHiyx95#pvPeC^F$9$D~*;a~xXnixt0GvAt>hRW?66ig4q2>cQ-&70u#*
zv*MZ+*R7x>=j&X@qH=4g;!OB^dGzmA{9(ldF6>gz+g$kt?nK(cI^Po}+-Fy0M-e`6
z7XQeK$5#BwvDYkq{mQ5(R{Ukf>XlKCvZJ1gk@ja+<m_o+D*5Qjs26uCJm=XTX=YEp
zw4&!0!~Kos*H*j|{#W$GqAc3qaM)}#GgK^CkM|+-%6YRvN&O4QN7<0WhMG3ivLUBU
zdlsXVP5Yi7Z9|L=+>XFF$&gDRw+(r0+Rw?nHWU^h=M%_pLji$;qJ>1ebSO!OBEm&Q
zi;2=$+=dbnE@{JKLlljrZ75?ySsSiYu~f3*BOA&Imlv%d$|TrOQFv%&BcqjtYlv16
ztt!f-Y68`5+RM}!W#HewwQY#CA<+i24NV)=jk9Stx9f#<HpC13m?Mr!v>R+l5C^hR
zz+^)OSG_{*>+rspBpXs~{O+RN1CuP8VnYX4#>S`mboSnZxc$$y_eVqz*L@YOt7k)o
z4KHnYWkY=%GHuvq!^eZ7vut=?#nRt~0X8(Sp`i_pY-nsl(W;hiHZ&2)W~~HT=d07q
zhUPZ3vS}NEwy>dgRm;GtmYG#8Err`uwa~(();6>epSCu%v!T5WtE*Z%+R#a$gXp4F
zy*rDKU$QV)7m0QiJzUkoI&`<8hYdaD=)G8B0or@pV2Lm@_OYR_Sbnc+=@+r@DAs$R
z4TEezHOpojKCxl24Kr<+Wy25-fRp-(HcYZ%s13tx7%rC4HjEJ%VZ%rpM%nN_kVwz(
zZ<?uNZ5U_61aTNIN@IohX1-ONz;L%(8R}#krtvJF)-rx7Zc{|3+W1dm0*%unc|Q}F
zA=*8+dA1Fo+pyS%B{qCv!<S-TXu}+Vd7@v5&J|@*P2Zd63onRRevQ{E^R-035nUu2
zlW1OQ!!jGz*sxYC%SBg-uCQUH0P{vyvrt#tkZdxasH(MS9mk%et{44aq<y0eo5YeE
zNsMlhu4Zp<wIRKlrQw8z+ilok!%iD^*>KawSDa(F4SQ^G*x<BbuZ+^VX$HFu^S4Lu
zv+-e#lKX8qV1vJ8+CdxQb{h`a@U0Dpg&F-`;5!?R2po;rkJ)fM!nbc0qUQ-4PDU)J
z1bz^;irQGQ*>&jlyU8$Tc#O*iw+$C;xM+jN2E~Su4Pl-y8-7`@d$vjEw}GnK;Im=T
zlV%Kmx77!12yz~U3{2|vjc)Zh!)eazz6ob+I4kg@Xv>jZe_{haZhqc|zr5Yfv4rBy
zD_<~B8O^NF?UD^Y+i<m4^XoQTwxN8pgkNp=jU|t1euZ`$CT{BbizwmQIRou|I%I#5
zp})p8)0j3rTYtlbv0>e|Jk5E_!S6Qw!8Of>q{4>Vq7Ovxh~5>wCrXF=0$iXT3Oo|!
zV#uUFg`cp_HaunXZTLqle~Z%Lg}`%B-jYPiw!f3Ptr_888(wqn*brscUa-iQX1-y^
zPBs_u>)+Zy{ZI6r=x)D0haEGAB<$;@D`!VeJEHCQCuoeZBflL5?8s%;wolA$$HJU(
zkIp3Lu_Lco^4YQDPV%srIBG#V3fWQGuI(0B*p4E0loX#I29_%-P{NL4b}T)c%urll
zVFhjLMQ%|@EoH~MOXUa*W$Y*`S;#ksCziLP$){-*M5kYBO0HzbM|S*S$89?*+fl`i
zy>{%gqpBU%>}X&|LpyHy6RX>`MOgjZRKt#%cGR+?wjEh^yqc99E802HOpdc_YY~Ia
zj(9ut5;cgX+K~`RHQHekPK;R00!elxM=U7<V_PPsMJ(xd)Df;LT2C}Xw7w{hn`zgc
zIw7z!gSQ$Q*|m+Yc`>1r9gW#)JF@L)YDY&qo-9soW=C^7&dt-4TiEf<0)1OMCYMcY
zDcnkw#?}IDM4vem>D<na_I8ZEt7YsUMLo@J$g@z3cDAF79bN6{X2%*k*4okCjvjU_
zv13FvOHVs`*)fSnv7@&g7CT>^gW-03Y{#_<rU7;gw4;w5eObe5mVS2h=aAcAJX|jE
zpDM<=^<%o{H+HUWEYmD;kR6}cG1!h)i;}-wl>Aqgi7>>Dp<*F-7-k${$4JROo?|bk
zag-fn1<0fAXx-L0Mxu?QTaFW87M480j)``V|9NhlI;Ua#Wyzn~@zpH-4326$rr0r6
zoTu55@mJ32ET^!!LUrS35nyzd9kcD2Z^r^VKIho8V-8EO<4g8fHB;yZef__3Ub|}i
zZ?viX!-jM1VD@<&Y1I;k9x{#0YpiNAF0|uosrfgOTJw;Rc2;ST9gD>t+uX>&K3OVt
zTV}^{J67-zi;~%0E7|b8#<^9@tHha>)$H)v-M3XS^AxO;6S38f^^w#Kc0N9%_46jt
z%@O++0pC8;gCF$U?AXp3YR67H9&I!3;oPiX+-1jZJ1;)yEj3LSViJ$dX-KAhKfCCR
z{*WEt+O@BL2kbb=K@!;ug-M6)_}R|8IupLL<A@zc?Koz~MLRC>`~Qa#EBad#^Y?V)
zTsvrFI4N+-jvoZ9qBc>xsKXAY9VguxE<3zpVJ^2F9y=6?j&mCGFVfSfO4JweF(lLp
z$Pt60oH8MSu;^(!eiS$(dRFu&QF@*eIB&-Vfk3Gg8hN1DN%{^qjO6p_DVOb_Ua{k<
zz%Qb|+VS7UOxl0r;1|nv(Ho*SMQ_;=HLwYNez)VzA1Q=8cHHHf=0G_I?%8qQj@L}$
zoZ6Z7z>b&f9E(0@l;I&ylO2z_0!JD6%600Wb_9o+pNRe?`c(9p9e)cv7kwd0&wm6u
zRX4q|<6pb>ryhUHfB$Wfr7w!SWzFp<?9kRazI6MY9i@t;M>#-#&$*K?ZkR4EheI<m
z<a8j~q3zwx5F?OFG`9nJBKEuv<P**>S|DOCC{V}&_bffL7jdAd1H~LzSj|#Kw73Hg
zb0(G$rm>_zDF;dmOgNdKG*0C10Zc0IKm`ZjKt%@@jBmg`;jK`)E+nu^4_$1?*LziR
z;3EerJ5a@est$b5FkWBHf$9z{6|UhxO$QDh%NXN8EwQw9ApJ~IZ3ki<h;u;aKobYD
z9f)^u^J-%q2Ywx#s&~NPK!O7Y0tpOB4j6?^qKTsBNa~ueOD9J-#er1ew1_3$f!nvV
zLh3qD&w-4HJ=1~u5&l!nn<d;JVreMQNVKu^BuiMhPXD1kO~u~Kf#wna77nzGa4QG*
z`p|0LCSvK+#LOnQbD%v>w*ws==;T1Nq2>V&bd54~cA$p<xyuI-?Izlty=O>a5<^c1
zdO6Tr>=p<534AQd)II`z9ojF%5B~ifXgWzx9_YXz2R@O5ju0Iz$~p`Y7%DnUbhrcD
z^PEW|BR-=X7#-n%^6JLQ2_5Iacn2mpFp>SUKVzO4Cy9P8I@y6w9hf3K)q&3hripSq
zOc&sVdh!h6nWD2qXFISsR~(ZVzHs16G0qXC<tu@?qDz;X{#dP_&++L1fnlM**A9Fm
zut;=qBz1{H+xUxa%Vabzcc4#MZL8ZA4y<%wl>@6CXq9NXWz(;BAlEzn8qu|)>m1-K
zc(~Q%1_w4eut`eT?!XR#&7xZz*ebv>w+S3<kz*&PqyvW>_|}2lk<@(xdmPvsu{=-K
z?u6Md(F39fS?vo(8V^T&jtYF|z>$chQjHwPB79t+ohRoB2TnS0%7Gso@X36)I$(3a
zDGqin2nCJYuX6Jfy~Bac3yqA<u3&WWR65{sfVUbp&u-{th4<<eiEf&yFJMbh9q6*&
zF!j3xzXJg&D(FCrKAAOq_LI@KN`KmcA061~#4ab!IB?d1cMiOF;3o&pIq=+p7Y>|v
z;DQ5B*qNL)W0EhjjZ)Ml2Yz<ovIAEf_|1W94h;LW!c`ufYk~u>UK^U%s=F!1_(6GD
z@46UoIB=7z;(A^SO)Ri7>6QZp9eO(dE<op$75eFSjkg`3-f`eAKLUjBJMc(=_6GtF
zx$OL^IWs&K%b)BVS0baY-WYe^kK-0(PdSUH^?D}yw<uS|e;jzpQ+zvWW}h6dcxkRm
zT%X&Ce24PC4()HU*P?Gk--`Yxx~rOnsZmbkaAJlNGo8rkM6?r)oM`OSZs&+`!oS5>
z(urJ7<aQ#D6M3B|<V0a7>U&ypDbD9aekXJn;;)=<m$t5D0VfJNv9V6aD(hNOi#RcF
zWy@kt?f%uGPN<t(-rUxbyCW87_6qGvh}y<AW%g1|ly;(w6J?z+IFaB)IVZ|HF>#*0
zrV|we$W@(y6BQ*|$%)DWABmnRVx~hC;asm0$kl`i)dgxev3jG4QHEMh)OI4)i8x7$
zk9g_?9vs$u^umWT%tj|ntg1v4MN^ze6)-!IB#<on-Bc|jLz)wH#F8$$=r`jBdtHgv
zb0UL-vxu4DVwy2ij9H>|Yv4pf;Sx8sqJ~b4<6B&tIFaqte#<m<qKy-6ooFUeTADji
zW2UZ!XiFzrIpHd<qouW2$nBhH@5D$aMmf>JiH=STaAF|ceogQ{GIw&KvlCsM+AoWm
z4NTpg=qk);HzzLaPVnAMpuL9^)SgcC5+L_>!Xo^!XrG9^uRuT1{!V=Q$V}%!PVINf
zU?+w+@re_^4@>%IZ8Ftb&B6l>bz)I|^DrldJ2AqEx@nDGu1G#ms==Z2#=e{NqoqEd
zNeTS&ImU?s>yyViF;0LyUSI+{&521)Oy)tIm?p*^4YQ^=F*V|uZ+UX@0p{nP($gcB
ziz}1aMs~$4j#4MqII)%oT4ns)3EsCncwfdBPJHRa94EeVVzCoTI4t`Z=5m}n^oyL@
znlMjzz7q?aSm*>N``1ow#rQ_-bmp=U&SfT0xq2*hVwn@m*?ZPRX6L%GLOfS-vgFOZ
z(y84}LpLU^c7m%1VVx6K11Y=(i~kO+cVdH6`-I)-#3m;;^E{T;HoMp&M%uTsw(sK}
z*4J%|ShhQ{LwM+mTy)s&#2z-sg}E;5bz&bUf(vmj?02HLF2?~U4srq}7{Bu*9&+Ma
zo~&mL_+Q3hmLNl}vI|F?IO@b(C;oHdm=njH_`wOQQ@dC2drpmRaVLdOaFEx^q>&dn
zPq9}wMRDIqn-g{?o;$$}NgPf%o%qd(YixxRrIy45oCrGMcEZD6x|2d5MLY>!E+7&1
z3HVvh)lp0eIT8Ml<iu&NV<%E+yeO6*Mb9{K_JaeTws7KHgwJz?3(t(rW)_A^68+hU
z%MqU|0#|uXBbKJ~wSzWKPQ4znJP^3yME?;@ZaQ&`o#w<JV!R*mx$VRq;k%;uBKCRz
z<o?hKmif?$M-lsDC;k+E60!Ux@YIQC5zF6B)EZQm8DEIypNRb>N2c(<5zA{Q-UzR0
z8Qt$?$~!0Cb0KwMc&|KBE^T4S>q0&katP-XjTU86j6g2Y+%Dva*!llpeisV3P~4?`
z>n`X*As33ev=?C)cHys@<{~b<+GXN)f@J;>AQzL=llu+yVU`jul$5;WQZAGhE+bl2
zw47*pQTkL6fauFkooK1#!bcp&os8>hYhR+OxKP!FYEr{mqPt$lRTrosT2s`Q7R_5t
zYP)cynuQJ2xxm|lhq*9*R*rkajPWk$T`;(i;DXVG)-JSh!Q|qN{ix?ch6_WY4Q8#j
zNy#oG36Oi9&7!8bkSdlm7t&n_1oSl4aiOjYKW{bMIFqpTlPqShFFwnz>zlfe>B5ds
zRu+54g@!IPav@s|LAS;(G?CQj)hvuM5O^RK+e~~|cykw8xX{uCCbi;G-Y4xjm-Xq{
ztOBphZCz;R!T>SyxO8am;@=Zm%{#i##f7ded=kv+B-&ZD>K_fexzJro>+3=f7kawz
zu|#{hV9!y%w+j}5p8FD54v*6Cm6`S7ar?0I|7b|=C;t6K>9*Qx8pv|aW)0#YTo^1B
z7$V9NHtHJ<72f&U%;<2J_EyRfE{t?xlnbL>nB~H37sj|S)`dwfOm<<M3(Y#3XAMrB
z$WtafL6pV{FU=WUO-y3=)WzNBv@bB^DK1Q9QDU#2r@(Zvf9Apr7iPN9@jr9YW;1o0
zF_HSY3tw<O9F$t*h51VklKI9tQa)kd0(03nW*%ss3-fuV+-T~?0v8s#u-JtqE-01j
zeeJ?;o8yP<(U0U_A8g1I{UR6sxferN>cTP?E^%P&NLcRTJ1((@qt}I%F0684jSFiz
z(yp6FtjId}$hg{tcV1)5>*jSXtao9%3onZsH@L9Tg*$KRZF6ChIB#)*{>-)6g>7?_
zZ_n4VZxv%!^F}Oz&O2P#>B24-&dfEAt(~=7Abw^N`TT$e``B0)j&oYMaKMFwF5Joy
zchrSLE_hod9&usoP2;!1hef{=Wzxd7iPRFg;*N=hz~~7VPP!0uX*a8%;)%N%Yjwfq
z!VfN_-HWBewE1Q1E;wB9uvhnFovM`NbivJ!mEBn`7as4<`ucGajR||QDj&?Nuw)lh
z7kunAPRTu4e(~{FYjCwvQfFTt`qTN7$4Ma<!Y-V4;YW^Jo$)-|=+ZuAei99BDS6hV
zeRlIo`#G_&Cihz=(({5;{-P*r__GU_dD30D>Ov_uO1tq3{W+Ljc)>I4!Zj`ztb+^J
z`59Wne4D4kg&Qv1WWTxaJJ+=QrT=iD?Wm-$UMJqlYh06VS~?=Bk1b*KvxK`Y+;ic+
z3*?zq3NYz`3lDkf(@nILy<}n_F#0D)ER0WGc*3<*d}yzdt*vsjKXc)47xF$aGBElN
z$A$~J+{o?Ls`Sc**DjPDn?(LsDrt|+`^JU0Ba*Zr@E=E4#PZ&SDEI%S=5QmYaCF2H
z<HnKLL}tw62Ah-5jr?x3TBgtI#=IUmtaWn~aHF6bMcgRrM&0pwVhZOd<VImPidVO=
zw)blozsheZ#;6-5+$ibB*5OHyT9|$LjZfN{s>Ni`hx+M=q%v-lbtBFVog3xcDDQ@I
zcv3AlD!2hRY}<|1-P#9DMK?Zjqp}-6@Er}Jo%1zdk5zG_svFgqcX-n7yv8%A!#-!o
zK5wicHLvN$j}<jLJFT`Gd9IjhEy;>?gSz5XzIZqEZlt?W#|?uU32vC(NOHr-3XDu*
z516DM*aL}fEW4$rW!nv7vKuL^_SmE}H(%I+moTw#W_dC;iNNzdB9yPL8}-~^O&YtA
z;YNKovfSJzh%XB;&Rm@{lLsA{<XC0uGa`v!i5t4n$c^aL+Anby!oZA8+-R7;G=W2_
znH$aB=;%QwkJcM4+?eFXWH(y!q`1-AjW%xdb)%mfZQW?clQ`bo(T(<Qm?oLY@iiNt
zyOP+!4eHj0Chq0c$&JoD>2YR;E^c&nqnkv#i}rD&hd@u!UZTB4>2DGE*p0*X{ETjY
z+^y?4bAK@oi1_RpZyw109FWB@$c<0j7%b5tqQl)78c7|-B&VKkBg8UNbd(#T1;)5B
zR)DSOKGr-=n9kz`Cb%(?C+KVgS`5`KpSm%Hed0kY52kV~^)ak=V~rcrWC%?c{mhLS
z0yEwC!i_K8m?cs6>TH3}Mfo_-9DxOHEOg^5;klypoF_0}w8y!quOs$l0^hi?NMLcq
zzQm2C!k2n#_eC=-cVmTER*J3?tx{V1g0$9+b(}RGl=NV|8ynns?8cvNY;<Fj8-6ze
zZftgAi)1;$nZ-GnT;N-YGW#|+w!5*zjhzw89)Vr-`~tg0>9$vl`$To64g1|V;Ko5t
z!_tOBZazSv0XvX-*p2Vl$&u2&cjIV;kGXL?!mI;}-SWBaq#LI=L*1}Sk|Jsob-7`W
z_&Ye$-P+AstQ9l5#qNouE?!)QMz0&HSbP!tp;|p@4@&fk8zDEsZk(3rS<xRw&xkga
zwdf}fdx@Txj^g1iNR;JV6u2b%Gb<y|TXJ3HM}Ql@y78MEcigz^#<fVU+iqNU<Ay|U
zy79Zftw<{S;g1M^Xd3mNSnj*=K!83E1wK4K_$cC^)ici%H~x}nKAGuH-S|hM&mum5
zyYXE3g(!y~8}ibPSCKROZ^ZMp8*d`~){Xz%c<07@H=;a<@gSF!pTmQk9z=V<jpA9)
z4|*awik#bnJRal~xBs6ys*83+hWs8BkW_L(fkGY>j#!Ea6!oB3#8O<~L!XrLK<7cc
z2c<nI<3U*u%6U*l9Lh)hD+*Nb00J}Q2|FIEk_R7&rLri0W71evxS9vm1!{Ou+k;pS
zYD$z2wf>)ToCp6`+Hbd_^d1;IXdn&=9vB5OJTM6)izbSiMUzCCk;SG66H*1zMALcK
z-2J#Z9{gz1)%BpB0GT&O)fb0M(Javq<*<Z?5^W^fShR^~wg*iGnu*f0xd$yG%<Q~A
z+}fjECGH^FMzpPHJJI%{tsYjOPi?okvj<%~+DqRCc(lD4yL!-_-Sv&0+)XUk)*5?w
z&{K@PJm@1phu$7ogg=g0#+Og-8{vKe{YCS&H4pS)kO!Z5FxZ0=e<h9)9pb?#fuW+q
zJQ(i52;oW9Ep!_xT)&f%%rM%6*_kH7Sh0^29q+*efr+A%M0uH%Zj*&eJB(93nC8J5
z6=zjU_uw-R>U)vt#S9N-dT`%^2Oi8~;T~-DV4DY@d+>z^UwJT>sil)x+Ls&v%k^_S
z81O~PeOGbnkSWG_9xU)+p$GG&|NFPn*7L7D_{M_`9&GfWU6<%Z9@Oe!SSGsIgCzpA
zEcIYmr)UDha(+m4G^`L^DY{B@wFhei){2%s-guqBdeI$yVlGuNH5!tz$%D-v?b-{O
zVGGCkR6Sw42Rl4C<iWQd?DT+7{qON$`at8#>Xuy|P<MOq=k+AQUJsPh>H9?Yi*nzj
z10EcVFjEh6Wr$67dXTtG-`HgO&I9TZ(W4$D9MB&VJudpa=m`%_3Y-!xR^0dlJ3Ob!
z>VZux%w_lBRxOi*O~{qVsLKPl2Ob{RgI_%O)dQ~wss|U@r8x~t;~Mw`Ml3O2KGnca
z=dDQr4<FiU5EKo05Eh{2G$&ew&j_6L;3p5xd2pTu-fKvo3u3>qAtT<C!RRFqewOkt
zi(V1c%{5*Xc)8!eI{fCrHHqHy;JODlg#Ym1LhTHu-jwJqQAU6FXnW=pZj0qk#D14`
z8(^e8w_VeR9z0^P3a%@7%#-4QLxEG#ZpeA!!QUP{=bZK6YK-xz=rhsq?+LWL@bFG8
z0~AzL@Q(*CJ$U88zaHdPkVnC558ikXr67lbJC9R%{q3y>|9S9^OMSZG*boEty>Q~i
z6!Jh?6y#Fi`l@NPf*6GtV-2sj<YdN=8%NW>PLd(7f_w^!Dk!FCFM`Rhpn!sc!gqe|
zSV+Oq>K59IC@3r(tZtztqe97h0}RC#lu%GsK{*B2s#{7bI6gd~jDk{fAReo<f(@Hv
z2)VbnV^Y_FhVlxOHAN~Y7(1r!{53_GG_-MaB?TWTn4n;yg31c2C}^&rg@URIswqfO
zkgA}%f*K0+3JeNrD)@47LY#sfrQ6g}P+P&J#tG98#UJ}NK3375W_nTGqEisBU|qv{
zQ(M>DbgfO%8kPhFMg?XC2l_>29!oVTNL28yLBdBr#t+U;>wYAjJTIwel7eJb;6VKM
zP14?2<I@zRD`=pgA^U{wQjnpbzJf~o;!~rtOCL?Gr+_-}cxtAC<-ax0Qov0oN*qZg
z8&AZynpn7zf@K>@G*OVPpinh5RxnkKPZ?jhse)z-zCBQ9+RCT{jl1%hthTM|5n3u}
zrC@-9feKnHXrrK;g6<01Drl#mqk>Kf+AHXwz?<CW*JDNdKW@Gv6mPf|&xY{OofYh|
zMt4;Z+dZ?3g8pT*&$Vsy+2PC!*IM*Y&{IJl1$`Ctl6qeA#eb}zw}MqS;$NPQw<w@G
z=O>(4U*fqhzMq1VnQ8sSlXWguCVS@*?GS?$e4=24f{_Z&Wv1Qq#1B?5M8Qyn*VQ$L
z;R=Q+xV*a#!zW$qzDz1g<0u6`UXLHcQ?FpO@S%h8w2YJT=`fyS?`S-$N^Vm&dy<05
z3f6N7Dfm>u6a`BZEM@O0n5JN!g82%jEBH*o=L)`HA)I17L5EUj^8_`k_i}IQEJb_G
z&`*uixR>d@w@sSfZT=<CW`XQEtfv55UGw|+N)6KPZR|W(EX5nuTW}(Nfr76UJjzU4
zsK8bxJ5LTY-yi>tf<+1zD|j$JflZFPoJ!y;qL%TzD_F})X4hMxVD-NEmF!OiSkWQp
zt~#qZbp7#b6zyeFBXhK1YT$MAy{+r5lU9@2*o_J{DLBNzpkT9tEeduk*rQ;pf+N{!
z+a)hy8;8)^I)ohxcCxm`vYGe0=Jj?dpgy@0zgNLN1^YR|IVKC0;&}LGd57wr_}-`E
zXaCZi;h+MlPKiIvEDBC>csR6CcZ4%n!S|ft3XZXjF6|^nXQlPK)nVM>I@3<YcWqkl
z1dm>*)ky_p9{L9bR*urWsWt^yyBX{XZWc~slu5{}=TdNcMf_#X(-{W00uN`sg6BI8
zAq8QMTLmho-m*fpF!&Vs6$BJ)JX#_sZgDj%#g`XJY?gVN<3zy)G1Bvlz<C8{dD0WQ
z{3OwHqT%zIA4+?>tjI;NbWf~%Nx{#YJBf80)v!>naCrAHUKRaC^jFc}M45E<n(+o3
zqQK-uq8E$KrQYH&$fvL7<wmCXgN@?CtKbR8l>%<8eOL66=snT<93BcDvK!Cq>A=5!
zs0@!K^-rGPDshZHRq%}G$cr*w{LR{Ob@if%7caQ%D|oBmKUPVy{L5vZV?KxB6=!Y}
z6Z1|hpG56_AmNQTB%Vopr{F!;y7IahFQUB2;YCg_qP^I=GvQ@r<Iu#$)T^Bh({?5C
z;m2p@)LdSi92B2hG>>RrQ5y3J<QFX<TF{F^0{q^q<(jH5>P0axihH#l;4PgrmhgiA
zd@)+mi&9?ns$rQ_!_uN+VysVVds#0ki*q?I%6m~kxS}XiA+V^1rIHsPdBHvR5`RzT
zX01%B67i`jz>eh&Y}LJ*))1}f#kO6hT3*!lBGwDuLKf#mycc?5ofnPOtnRJT4PGR8
z5jQQt=ta_I<KpWH%r&G#QY&A=@71-x!^~dnu3_Q6k$KY+lf0lNi>7#yDv;(yx<DN-
z>Iu{p9hR=6Ged?%zq9JIylCLXB`<#VqM;X!ycp-jcrS*IjA`seUoZN3(Zq{vFPeJM
z%!^K5aM#M_UU*iwWN0nWg7tZl(NeUP=!eucUbGd5b`k&fUcPTm%iB@ZIJ6bHvy{nV
zyL<pIUp=E8rF+EQ!;7B6y+nJ9S|X_*3-n>GkhY`dyvasS4NHHo_QPj@S9_buK+!>>
zjDF(9VBsMV%TO<ddBHt7hl`F79Vt3Wlu4rn#&|JSptCKJ#tB|b^kRV*3%!`+#bmGc
zXVx4qKJ{V>$A%Z5dok6kZFewBbeiaN(a%JgG(%vf=;NezzB!F){KBjKAY%AZK)seo
zZhFr2l^1ipnCHcOFYdK2cHmK3lW;rg{uM2$UwiS57X#{=&T}>JVlitw#&Ft;C0;D`
z;)oYVy;$bOa?Uj`_Ia^_4hQvXyjUx+(u-9Bt3}xsrmpj1y%$@&*y_awv2POHC`yNX
z-Hp`EUaqLg@ADY8d9j^iKvH*z?(||8>yxYgl*@YVnM~&^`4g#oB-I_(vhNrE){Dbl
z91uPzdPua;Ce5FLPXkfE<FBWkTJ)F~$GuRz@OtsR7bm=Mia(Q1dSQ$3DKCET!pgRP
zrejjAF?Ft7O|eU=Lv&#=&CcMGsGEaRpuf~s6=rHcz$fbWBD`Dcy`V%xqG2ySRCvgP
z6!!d&G>$Qx5k2e0PXgyeX}`ZN>H_D~prnhU1pY^V*^4V&4Dae!tGMdLFJ4^t;s%G-
zOFcKdeLFPuS1+nGuKSzlHPIzSQ*LtpPBAZ3dAqXy78idn{_x_q7oAmfQE|tMyIibP
zR911%i~B5JMU09EUOeO)?!`Y|Jo4hPmyajlsTZL|_|uF2>k2*bqNK&}(;maTT?W2o
z?->_=FP?jGW<eAm{XUyz$e$;L4_Ch0tnC5*(u-GK{O9H0M)=o@*IvBw;;mQv4$nPU
z_+e+=Vc_c;*`@q?lO7xYo{PVV94d0E__U*;=6Y?fHqO}z?{t@@Ch(E8y;Bo%seEY#
zimNE0B9Dr^DhjG7q-s+;pNjk{3aHwn0o}%E8UJi=;LD&1g;f+$QB*}S6|tG|wA|O3
zsq0H=seC|^7m-S;D5avDit;L24vi_TqKt~ND*ARbaPuEFid(AEnSVu9PyrPcRaBDW
z@|#A~kOZdkv7?Q94FujUSVcuu6^Sa$Dypfdt|CFj=j)6NHB{76QCrnIt){9yiOD~p
zV^zedFtFIt+B)BCy1r&sf=)%e3T0D*UUX)*iOd(1&EZ3EQrg+urA#WAoy8`pNLJB;
zXZ&qkii%Vf^;Kl5NK-MUd*O5ybyPfh8CPJcuC9t)6Lj@dWT<%gXI$BVx<>K(Yc(vH
z<8)s?i_22cKt;BSrYah$Xr%Hp2u;}7f$@gVblqGjY3*A*J7_4}N;fG{XMPYDzdEIv
zismY|HP-z!Nmr|tj+X5yx|S+hsc5aDjf(avI;d#NlKbk~@mw4?xH{>oKaSg*Usq{!
ze3_B)9aVhOPuEGsf>@o>Q5R~X+c8Zy>zuKxs$GB`sG^&S?kaky2wpMrlbYI7n9xf_
zZ()n*$D(~i`-;-1pFn>V0|Yu0($hFd#V0BTs~DnUrixiAhN>7QXJm?s;VMR`csj~3
zQj{ZV_AJAT8kSKKJ-$DBw7?j4xWG6S<5f&hF;T_7|B8RAYF`~ENz!D|>5ogYv;s9P
zHB(v=rmC2x;&j)z>2k#0U&ehgIps4IGdO@Jr!bTnWthzY)*$5z7RA%8;!2N{8P2#J
z;|y~+qH0=<Q{$S}w0tGZ=v)=^RLqws2h{?BDW7#Df6b9lC;b~0iv$*{SgB%_iX{?d
z(oz-6gqO220vzfLOrnMQ0oJHkt7>b}Iu6LP@%vP)SFwR-=VtefDz>QDs$vt5+c{%1
z9V*wm*DP`Ew??Km?PK1iVmr^^OVbV&dsO^>&$yG>3z&C_?iOXV*znZ7QXsc`Wybv~
z4sf!3pK(ydAr;>W-<)JV%$`wUSK&}`M8#1Rr+DaGrd>YM&<W;aDvopHsF*WB`)lTe
zz|W_1?HFf1$vT|PD4s8oNk8z6PcU0q&IGfKm2YTDo?<$gX>zLYs!&z9RJc`?zLMx+
zb2tLWnu9L=h)MEyPp%A~3cnomGzS&muSb>YO%ONMIiw;imU-jMjQ*&?HqktCipg{(
z@h27MRE+fVm2)_+;sQs44?p^FQN<+{?^Q(k@Ux1`DqgF2!&A@2pR>Dwwj1OxDt;Ay
zq-t-q_)YYd=rz&nqBm6B6rj(XU&{Ti;tv(K#d1f*UG~`ZSSB&tj>&mX#eJ^-lKPN!
zp3zhHD4BMq4%?dhu^jGCQP$y!ioYWKRN$G4zXhJFxK%j*h3G$`FGXL8{wqp{gd*{8
z`7vbBjk;vyPmKRKimt>myc5WMJTZq4IejSWLph&z%V@3|#>$h7(LTiZkjsbMKJ8Yw
z5<V>MYUD>`9v|}hK*%SWU$lTIjRk!uBwSduNW@-LpqLNE1&&lGL+6q{l#;?ri+;Fu
zwv12vSSOeFp@I)5d^qU?d}y&CIo*dkK2#KDw2}|$9~nOqt?WY;AF2vh^C4b<snrE)
z_)s%qspUg$;aJf)(cue|bw2d1X<-(9#M9tILWGSzn1mC3FbgF4kSdVuLy8YGBrmfs
zKW|JE`=iWsM(g@e&xg-__`-(_AL{$i-G?4NWcrZhLnj~3<Vk7Z!-krcHa@iVp`j0r
zd}!=L6Ca;~Y0MAAJayB8%MHhCTC#m;>I0#fD4{vKLbzqb(#nU{!e?q)=+MrG`!y{c
zL<#ME*u2Uxp>B3Zu@pMrn#RsP{93wG7azL%kfW9*CVxsdv3#+i6>3>}`q0aV@jguO
zp|=kf9|rm`$j48&)*t)Ohn+^go7!o8oqj&__hA4#s#*5B)a+)18?W;AFm*5_*RoJQ
z@!_kq>>)l3<+!SnI@pJQ-Xw1tkg%{!r<R{243owV7iFtQ_%JfUqXb5aju9OzI?ji}
zOB3ik(T7PsO!M(=xtPq8TQ2p#y4jzyGizB0Q+(VT4TEc05}IVs6w7Bmlt|B>>BB66
z8SIl<7Fy_VvX*7G59exG82)OW`K1qYd|2nhdRE?txjr;lX;|sQJRj!!u!u9lhXp<?
z^x+#0faQkfs|*#Zq<+o%R7qVuq3Od~mP1!tKOL2@#K(uQ8dv|k^)hx&T#KcgR<*T0
zS?<FMAFeM+s9f8^o=;nDSmncNA6(13e43oS#)q{&KH*q5vrcxi?rk$`TQ>Nx(T9CL
z?Dt_4tL?)Mmh8h8AGZ3i&4=wgM|HECT#o8m+p?oZi?OvWzx>f=er-#W0SO0^vv=`i
zbu{epVK>Lv?KFlAcjK+KEqghmS2b=|tHl9vIPAlBJ{<JnkPoM7Tk73S`<7$)ZW{Aa
zkN9xZhwpv3+a&uK5BE0txDVCdCm*Si$`*Znwhpy(a`xHUmQz05W1X+Wh6H}_!78xs
zVv@}VJ3IDblEVil+bbLtb&GmL6;ZD!omC%v5%&8K5azR!Ov<&|oL<Kq<~)*>ZS|S@
zXM8y8Lk&M_`tcLbsSm&V@P`lQecJ82E0^kci~9v1hSX2KC`!1*PXQl_#+WaQUJ+&V
zst><J_*a47e7GiXJz~G%)1EHBDbZV;2zkuRc-x0NJ{0hypdWYHb|0Sj@RtwImh10}
z{^`R5frp$p4NZ?k36FhfW-}4!d9a`PDSfyO`?2w9sdM+^{`TP=>-<sS=RUmPJo4eC
z4{v$C0=ic|{L7?2bZ^){3v^ZOy4OBL?bmq&I%;a&!qoqK=r*8v&e=NZd#3tvbDu7U
zA36Pq_G8Qv9iuVi+G)Aid*?H`9rwAtI@)_aYnI2a?c9>rk5hYf4Eg-X@5djf4Z%8k
zMhp3|aGk!epN|-8kgZmDU)xgDkJ5gW@uQd@j20K=y_Y2fO8QYs;Ich~sbz&f@}sgJ
z<%G-oQNa%g)1i_;MZflh4x{|_L1m~S_Ue9Ajd)fQ;16D=9{8tYEkA1eq4&e!*IvC8
z>&K+lrX`Q!c*k;_A3DEw>vFuPeY#=O@U#R!jDB4HT+jdhOnxN#G1!le#SLaZlGy4q
z`hI>S`;p>DXNl61D$v-EG(Xb)s3TGSif2+?Ke(+#J+Wj&{Ob#3`jHi}G!SU$M<W4#
z_h#NEeq>9usUOV+nu+ooBU2e#_|Z}<twdXkwh?VB+D^2+A05~PVdm;2@N!-!^0&7W
zyF~0={pjXLcZu>4Jp_7+_7d$aY7zZdw2vsu=_~M|+Wq|)z)s$mz%bB{K@t8$x`M_b
z(x2?op?(bW<5=1B;i5&1jYde)+*-!b9FTrQ1&||vv3`v6W1k=U{TT1Z1V8rpvDc4@
zEZL9Ee(lH0WIsOjWA6Ecjebn=W2zsY`|$<KFJ+kK$7g<Qooygb=b(zU5N1dcVWuCm
z{4mE_W{YLwY(pU!zVu^`AM^cK;0J%bemtow^(*1Ie#~PbQxdkVNhmfqdZ8a*`?1cC
zezBHs{CHT>utwYni~L|wi$$0Cu~cB0=yK5&qANvLiPC?yK+9OmTF$k$DXbx@#G|kG
zV}q1jqFQ4{H%Vjp&<dN(M}D@jfqoFS`LW%P9m2ascZ%*3r9<`nQF#q9gppTbo9r~s
zinZ_p$N@iotC_>^N5HTB|9H@kLw<bg$6-Id^TY0k!;d3=9QETQYvsr4&H7`0obV%a
zdGc{T`V26CFG`@rI6t}PlH`m%2{o1^|KP`>bhA~|Ci<l}A1zKlMt^Fizivu?mmh9F
zJbqN$li>B^$?gQjk5~Q84Arg~Rk8R)nZ&%aV|2Su#RvV`MZb_AVLwiDXmO=w8~r%r
z$5}sqWsA7}bJg<Wk{>^_{9N_V`*Bg=0vCk4#^eI|7snVF>Xy&T)XS1|s#}380<>K9
z<Ch3;jI~_z<GLTylk(p3BQ`0E4$OPQuf6&7rXS0mHz3gRI~PVSQ&RG6Kkf)e{hUbu
z`+hv|<0V@s#Xe-C{P@d{M}9o!%2}ljeHi}aa#Xe6hw44`<8MEnOCitL`P~Yz<l85c
zUii7obkaY5>?+gv_#I>2T4qN7_2ac4Z>4pEU#5L1?Ts9(NK)2+Vt*&m_ri2wKjaJ`
zI)FL>)D0jefLs9-4WL*6xdX@(;1>*Ir7a101Nc7H!fhDy2ar#A??L?sOM!s4RbxTX
zLZXF5iv<36=SH5U;sL}45Enp+0Qg?Bk^z(opmYFb0;nk#8p{T>i!jv!C>PK+ASy3f
zK@_4DMVVAd;G+O43si~Ns|L_0t_U5fv*zm!HALM5qsg`8D78iZ9b)F;bWH7G)CXV)
zAYPc!k1~u20aU$jG6#?pfKk{KKw<ztwKLIvtgdOy^en<>_5^Bj04d^gSf7|GkQP9?
zK(EWj!+)7he~o$pWChTGowg+-BY^q=tnF#a6fK-$Bxlz(H4Nb3;P~~de*ldGXc9m+
z*S!G71<*8rW&yMdpnU+D`XbGFrpg#v@x1gkv<PUw+FAy<f@yDJ<^4si18BpN+v(Z{
zaJPSI@noIrMO=pfItDN>fI$It3gB9jzFPp@1L!Q=MYOAEhw-{c(-Ve$9Q{T6)E=zr
zjQE}b^a`MN0Q^PVSCn80;A7!FqR);;(bzAN+CP8+5oXdS0i5TO8^D`R(Srkc6l>W!
zxcQI(h6eDwTju3;I_mHMMg%Z2fKdUA37~MCWi&gjd+NK+jqgUaBOIQc+3o8#wDaVS
z4`5{gs{)u1z{CJ11u!{)MFA`h;L`x61h9|;?^4Pv=&nC5GBto{0Zixc)9F7C;EMo0
z6J~Tq05gSWMJ%&frDi%NeHp+U&V>hYirw&40CNLa@N>)gqVq(L4U4Dc^K{(;iINAG
z*L^L=<)Ob37<sZ3OIQ-X(g2nPP;$DS(a!DlWoPSZ#aWgIKwTl46=(Ukwr=^I+^Yjv
z!{$GT>##9xZ2&{w>(&LdukO9+8JoI+qc?y}0sP%I`r7~wbJz#4g(D$={c6gt0Co#(
z6WuPlBY>Uks5lE9sQi*#t6s{U0QLs3kDV50ImotetGhqIC&!^L)1I8bm$j5>e<*-w
zCE7DosM7ws0FDIU4L}XxXaL6oum|7>;5bjjQk^vb8^?A4Cphb?7d8$}I~l+!`XABN
zJJalk0H_Qtcj}6kY`!<n!mp9jM|4`<FoicS-7VJA8GtJQH-~GnmL5@sW3^3o*7~~c
zI17z`&yV(ToCnZnVk>sw!R1MWKmb98P+BN}Fb{V=Rq30_=<ngQGXb3C@?x!2+FI$S
z0L}$ayJf}LmKDzja3O&5MJrY)TJd54mjbwb1$VCC=KwAT(BT|9p2L*@pSi>6A2H@f
z{1U*g0qDYr592q^jsV(*&@P1Q0o(}SbPzuVaWjBh0jv&UO%T5a@CT<%5Sc;T4q%4d
zA^8`l@R;;FY|)hTyX<O9`n>?|b3Tque-OY!P6y#XMIVd)5@&fBXL%z0F3v*Fr#u%t
z=^UI~GlM7-#ESs_;SwE0@gT~NN_rVU-XM4{{i^`}4d6BB8kg}PatHA?fdBX<YL4~<
z0dHb|$F;6NgHK$h_dI3e^-)1h8FC2Z3?e#Wi4iC`EeG%I&m(*_UuoVFzqyksUl93&
zC=f)!APNUjB#1&m?QZ$Wg|r7B`t3GS87&&b`Fy2mG?lAEV+nTAup~Yo@nfcONYA8_
z?7&Q8sUX@lF#o(VXW1ai1rZxW99zWFf~XnPZm>rX6@#c8M3ta+cRlZ`*Y5uh;v@PG
zPvU`Uk4UN-#H&HZ>Y{{d0(J5k$u)xb0JVbJg98k;1$wT^sS6^W9r&NVZV>t)3_&CZ
zkrG5g5Zgv2nSw}^3K&J(rlmg{m1GVgDF{Nr(MfR&8&JvDSLI9%A}xq?=_TeZ-!DhG
zVR_lQI&6{2#BIH|lrz<nV`Yf)bnrQpte|!W;HN<}2%;hFI!mJ<1_v=Dh{i!Q2_id)
zra^QIqI(d{Sh2jiHbJxvqInQ4B-)ZC1kqaZ?t2i&%l<5cVd{gpc0sfkpDsaI#_Bo*
z(J_cl;>mK(yo&1_#D+3De-+(mPYSb4{!G_3i1&rH5_$yDGl;%H^b4Yw6k-YDV}ah(
zk~)^qN1}V2MQX|sySLW$7t5d^A1>3XIv|LF0+)+xWzv(zk?-S*=hY1jVptI4r82{V
z7!kx6GE+rIiQa3f9fiixLA=YO<JOmB#ZJq(AWn_fk{BigF;VQ3f|xAu--QzI(sdp3
z>ZSxSHHc|JOb=pl5KDsiEQlFFd=bQ#LF~;;pBcoWe&)~F$y4&o3SxE;u8gdgbuwsV
z>f6($sdIvu7sUJ^zLG3Voh!Kr3)qA^iOjMnh=oCXEe_uVG4^5tjcpz$GCSR<OM_Sz
z#7c4aQ26p7=&(YRz+9`OSQgGKYlB!9#Co2fp!WIBhZ*bXEcFH^&I~7SWN+k%>w7hJ
zQxKckmMgJaf;bq&p&+($+=^v;5PNv6Aa+P}XArwMt#U>c{Y%?rYj+TH^4BNt3t~S9
zbFp$4uGZ(~UDYbZ9SGvWyPWm&X&ZBW%Q}A)cbr373OO9acR?Hp;<DsD8pN?6{(c=p
z&o+y4Q%?kOG6*FIFV7CASP+gNoIzNF$oC`%9qd6Iev!k*5}w3foRItbvRbaw(Q$jm
z<#q)zDqoa42u2w^0#koUSLM+DAOb=7g!PE)p|b>o2uV5nt7wIs9G5#B#L_N_Q*TGJ
z@H0W2<v9(ZSqMJ`agGaS2;;|;IWJvzi>pvjd!@n!(Tk#&g7{g0_RB$B5xy$=i|DVS
zzlqZ4n!xoSZbU3MxquYO$t0egKZ3X)!~=c`$Pw>|(tbCHdlCM!Sh<HmJPINzgd8C}
z4&qOqdM;cXOV<*g@Vu~lgZL|mr$O+STGSrHujX7_sGoE34|10_^ook1J={K>Iy*-l
z-n;ueN8G>S{Dx<$OZsc!Jgd6XA@+dbZ4m#7MVV!M$C=J`W?lvZqd7x}4xwNOg+dsv
zv&4juD}>x3Iqtrq7whEABb-0PmrH_w<1W-$@`Ye{)QiBv3xx1(hx88P(+h`CB!uE2
zln9|{2*pB(=^ZnuW6Ve6(jP5Of8kA}bIA}&g^+HmP?|+ePNk*h^z<B~(|71BpIQ^k
zhP2^bE`;(SR0shfB!`d^Ld6g&g-|<$*bqJnp>haSL#W0>yvgx<hnOlMc;7^`sEnMw
ztA|h{gqk7L3gKYx-ZUPV+r8rQ?)<?!ra~MaHrbggE-nO}v?wWr_z?7LO9%-eoYGk?
z=`5$W8JH_}M6xl2#1Q|cPy9<~F@-?Q8*ed(z<M$aDBe42Ur~B8q=ry0gp3f<*t8Jp
zgz!U|+--Wq)D2-vGXHY7eEG0fe;DeAkQqYb5SoNwPl?G2fqmN`ga+|i+Z%?^NNV+a
zuR1J~CoY>~!<<YW+p`RH=ij;W&McE&ze4j6T7-D-cY4bY=V)55Rw1;Ou4@y~8=bZH
zjI<A-LkR!T7(&MoI)(6a2$w_X972~6R)w&dXCcHJc<^}$-EZk9+%|R(;o}hcgh1{g
z+EcWbXm3%AsLhz8ZwUQDXuHuoO|*XqqXY(s-oK<D7{Z_s2n?SH3=UyP#4<F5VZy^h
zc)vZN%T4_Vwn!|aZYP{*XdE5ltL_rUh>jIybR4I%@PvqEqQE54$)cZzFeQ>YHH7&M
z6Pa<k)ao<Q8KN^qS^rrAvqdNGH-5qKFZbhp8N!?pzLMzN5Eh2;weUQa8Nveg)miP<
zwf95KAN;?O)a9a!*eGw};t-ZFV=g0kX$Z^2$oHWz$}B6yb7cs&(K<%gg!l-5FJ64J
zTrsW<VO<F8L)gGn4ww)&hOmiqEri3IXhTh#L)a6-UXHO4wuZPLChC9HYext>1-8?E
zD1nw=ikWwDv~bKfGVTc^^@=rC%Qlktg|MG<M4YGI%0<r+n~Vn}7vT^m;F?C=<1N(h
z*a<^S$3yr&gd^gAG=yUzG(1*-<uJ5tRF-;zGe}a&C#4+151e8{O)T8X!L~7@L?Fo#
zf-{73;^_*(9YP?)Z}KRy+T`IxmU=3pJ*A#3L=C|w7QZMhY<?(&Fjsi7oQ^d13`f@x
z(~qJ&Zo5s!vmvm_ulz}@1L3^1<$@fJmWxu2OCj)Bj9v-hY6#c(C7&xy!}z14lYR-|
z;dTA5oFJ;6;kOW;bj={#2x%{?daX^vxSJu|61a6PH>1C^mnx_H5yI^d?u2kxlH%62
zcp`9*i-4=`{SY2Vw3jjAA!}$%c*IWuftus8{|sTwn>ZT(3V|7)iarx%^luLA2)_v7
zAK{k~%c~In73L)lI<t~*q^fU4A2+Z2K7^<+iiA-#j2vO)45L7pe_|#?hw-R}o?%m=
zy6a!X$Am%6C7L^oJOZ@j4I^KK^M_Hdb2^RveT@r-wW~mdL<@_qk4|N=#lk2aMhQ6t
zZ=oz1)?Rp2It<=5R4T0XUi$jN)G}f(D_Typyl90mAW$)kT4B@<qf!_jg;80IEb2u}
zY8BzCqSZvJM^bBqQ8U7Aisgw7BQA{Omlc?if!l5IbAg}_!w|-a(>Qq=31Jw+*dE4?
zFic@2hA}LR;bEA=ND3n(jQU~ZEgV;MO)`JUCWny{Mrs&oVWfw#vwsv{$x$bay6l;-
z_ICqA#-sYa6)h*kTjs@E7|jeLOBy~nj0Rye45MQh;ig%Q!eHKJVKfh;v2YV9AzQSm
zC@yLRwvf~|qAkPN5N~M}Mr(ni@s_jk7Fya$Dhq5U&_0X~Ecs!5TJ9ZA>m*0)EZRl1
zt7tdT?xN+K`W|8K$fWNXMz1h>3tL3{i+&tNAA!E2^z0|VwvY!14-_2~#wQV<<Wc4!
zVeOV_hM{4o-MSD)gfTLVQDKY@BRJR8ZG(v)Uc7;AOql!Yg0J757{<6TCKgXmo0vW!
zjPb%7OeR{go|Z|9iJ26}<S<_)k11iy4`V?XQ^S}R#us6H8OHQ5J`00y?b#QdUU7?g
zMi{er;%4i~GsF1tLQ>A|rrBcoT$D+?)G#NEufmw;PF%ZQKR1lUdrk8=Yu4$rVw1bx
zO_*&pb1TAyVSF9NI?jkNzG1t<d@RMdLYx<eu`G<`VJ!I&-D_GZ@NBF8@xNKzGAMI*
z!jJmIm8^Ne#BXw#SFwZ~=G9@W5m+lq3y;os5^dmxh>i`ngt0MF+9rX`VeL8<>$X**
z+ag9<c80MljQe3c;CKsTPZ+1!*f97WUVf82vRl75jC~v)VH^nKU>LqIcVo~W3gcVp
z1gAs~hhgJ%z8}Y=@5FLM^k^8z1h~!|5951QjN23OU4#NB!#E}IgQzu<`f;tgb}7vv
z%3^sj(<SA&d7{HmgjG?mD38nCB>4T7z~B!fAoieWNHok58`ka#r^A^r&horpiT#BO
z+8O;%VVn=+g77)ft~a^IX6nT-e&*^ImCA65>syf&!ey~s3FBqYx>v*6Um<U{wkH3|
zOF&^<3*&ki1sfV~hH){kfp9~jPt#50TVebj#vfuC>oL-DTbOW1;I8OB(La-n4_TQo
zs-H%U)2JV7d>qD;F#h7g$i-x0`hqGk)Td!Q3*#TwM~r{-Tolmk&n5bTtJBQ%qZ`wy
zufq73gYz_soyO}h-h`3+H1eE=y_orJ81KV~I*tFrco)_z-({Jay-l1s)|BHkn%*$w
zJdJ3sd-aWEezwM(My}JCA4u9T)<hrb;O`6MJ&nR|6AOvvJFR_K=NG22z-bixAF|E@
zNUAH^+Q1ADT*Dv>*8zH_Wd`Vh!6CT2G(m$q1PLA-5(o+I?iL_~;BGCq-I0Xg?jgXx
z@0#3K@6}&*YSnl4*+=fN?!J9RV{w)b*_>A7(k$|!pI7{?h_j-gv}Z&Xan5hWmsa)r
ziPTcS3Z1!*1ZjX|FJwh=EB+XrrLYx6tPsmT)3Sk3l&zAgi?IQcB%y>AC9NoBRli+G
zV;)tul%}&BW;rX$ThZByzf%nrtm^-~@m5r{V%FXm;YwBn^VT+4VYH&M6`y`K=&YC<
z(n&~=-XQC#Mc1VEd1^FSkz_@ED;ijl%)DkRQmm+AMcWp7301AAW<{3IhRJT@78t8r
zQNxN_R@Am4)rvd25^Gw~X{S!0g;yul9W9kq$BMdE49=M#mG;=4SkDS?t<>e)b@O19
zavI9$SkcmoR#r5!qOld>aAI>Snpn})iruet&8+In9m;!>mbWkshp|=*Q<0R~E!gIz
zXH8OOYb)AV(cX$*!un3T6Wg)@?WCO^y|g4WOP^J5=wL-hE0zs0Y}lCENd{$Os@%Fe
z|CFhV6<w|9W<__&ZpBh7ELQZeVwx4xt@zrCo>mO8VyG3ptmth;e=7!9AvcJozh$&^
zG4!#buND2Io%8h)mGF&}(8Z8-VUjoul!{&(`;rG)(XN|mFxB(QILwOSR?L5EoMOcY
zD@HQc7%N86INAzR^;AinIU*_dTjQYX`ue}6j<w=#j^uBx7)KaSoj?`)L@T}{Ptq)t
zS*9dSB}l7w4a_pbitlBDNi9~)6wjsg=33<zyxRHGn`T+z9G*0rI)|FSdTOC=CP`gj
z#X>87vSNu9KUi^Zm+nWI-sw#eBz2J$H*XjhTM>P&_KE1vEV&lDNUG2;&#+9Ut`)na
zqpVnA#Y!tSS+UuQRaUIFVx3jKe(0yBPnPTw)>!f9P2*ar^rrETj0Q<sFFi@0ja0G7
zx7ICIY~`Wtu;Td}wd$rLlD5f$dSl!!lV?QI$ZjSv?&KH=?2%c0P4}x6&EFdLTCvZH
z{Z<^X;-IYJ*TyTmbkg9x-AtFCCW^BR@gW|?VJnUh;uj|UM)>BnQ4Z>utY2B+HWaYo
zxD_X4-dYinwQt2KE8JFiWNTWTaN3G%Ry^2{bjFIaR-BWLl_$ShaX}`Vx0bS`+C^H#
zc-e|eGT$1tS?Wj-Jw3VU6)Ucan<GJjM6b&-$&hHZ!bZrVvq;n~J45dl4l5Lb(~9G<
zRbAw%Lt2PK>k*Z_vheR2ZQCpQWUjtU^iu=WAT>nIF;g$8Q7djp|6Ap{7o^s%B>S-3
z8gSE!TUPbqoDy!!TDB$$l+#)6$X0wP@q=tWgu5~~WVMpT{?H0T9`gek==TPJM^?zg
zs2^MLM7ry?v0PC1l$K}I=hPQexwH5s;T82Y^^J7C74OJ$3FUkF2#}5LH+|z82Dxf|
zUKzuc&$@pl^|S6H^%M286?Jr$bT*{7A%jij7;1JKVhI_kV$Vd#Y{M6tB?}>|4cQ3o
ziyFi&2RSD-7d1CklJeM)mz<B9U$bAxuaC2#pbaf;Xk|ko8w%Uhvq?p4YL`wLWxg^d
zQC_|y7T8eKhGI4px1od$m2J?`v!o5>Y$$KT@RD6h*-)BLhFX>?cJt5X9|F}X*br|+
zMdp%d`gbwu;xcs{Yp!I&)3)Z#1I-CG3>aZH*^p#Iq78Z*MvXP^Z*4Z%V6>@!*%TaY
zKHptE)0J#P6&vc?(7*<JTx?Yvs@Y(+L5f{D(7bVdf;4#1KywO9u5LpOg4B{~Lrrom
zYHeyAYF(=M)U%<7&LYr|O>Iv7iYmo6A~dEpp*E#9OS5-3HyLVfVT05zN7UMet)FB1
z%W>Jz#-_dyr>za`Y-n#oreWrOHgqZ&+rfs80yexHYVKx3cN;pByV%f`kWe62l79Ud
zW08j0(A$Q$hs|R7+J;_q=t=!nXAxuRPjRABcpn@3vKHY+$Iai6r8-I7m#)h|oBGGo
z5RUR7>R{@;Ql_DVVbt@N3^ENy%0SrQbin1nXdA}JRI#JA9b;|yRyxgwXEuzpVZ04j
zY`AK}1REyGRN0VtD6LGL<vSZD*)Z9LDK`9K!%`cj+Avd2=G!orFwKVD5yNyFX4vq(
zSZt`BFJVth!z{v_&Pl?v<uI)}0m*nEbKQB&INyd9o%9QASSX`!!;dyBw&5olH+;@2
zNsH1P%GQp1nz-?=+DmK@knl61{7d698<yL!MMjDRuCQT^4Qp*!$*9z|%7)b%w|$*;
zoyHpp>!}-TXw)Rj<=b_{e-ka6*%FCvvtc_e2dO)3*h7${orGO-?3$&<UEN+A_Q_mg
zf#P$(CYL=Yj-Hd0R=8MxwP8Wo+5(5!$wy=;Z8&Pf?~Goy;TYkPEa!rC|B!)uX*^C9
zIAOy{jZfKdntX<OR<oZYoTpx};Ub~#7M)}t^3XUgOI;aRiC(kex(#=2xMzcv)9EJF
zCQH%=2ip*};f4(g*(vr0dY8=hbOtw7z+;1#?9(iM8v^8@W(g6()QBvBa(c=5w1ioj
zAz{cW-7On#+wi9if7$Ri>-w!;-S5lRy(3GYT-{Vp9m70>Xqx|h8y?X|q7MiUsa-x9
z9}}KX?M{O@Jh$P6>_v9S^UGe^@QO(#?CRWpP5x-Z8(EJwytCmwE&s~of2{w<h7Ynl
zXC!UYS<dS$!!w#E#MhfwCsi_jvf;B0>Fh{vM{Yav*pb1G7&~&Y*c=IU7UoTm5Nk(9
zJMKnwnWzGp?f63DEQGAoY}D-39CqX+i2ns!ft(kOrRDa+_<B-rUOV#HA>GyKif+{<
zU4A>hw4>>DorD5*#E}b93sDPGi%`V}grd?&LUGN$|9IV!Y<Vd=O50J!j<R-?v!lEn
znR}>xxM-NF73_F>FMDNr#@q4YSz<-1KqbPeaka%$XGek^0+SwP7d6;nw4;$7jqNbm
zvHL(`L%X_jCfOmoYqDLgRZFO1M^!tj+2#ELs7p(V9n}f7?Q-#h>Qj>{kScvXQ?*E_
zWycNK=gD>KC^FpK=CZk-9o-Qt#`<<NV6L4pO)*H_QNOaQ+qFOwJD#62H@Bk&p{X6s
z2v2nuv9}}(q))I+E*2}$#*VgjthZx>9qsIBZ^tw{rrXiMj*c=Sb_|u0?dWVrA3OTm
z(Z!Cgc65`L$Z?G|%h{DQwTNeq*q-+PeuVb0<7?@kspcoE%;`3md(k=LT61qZdagB3
zTVw8L$2WEiv}2GR{q0EmNh?2KXKYUxV8^e|<0S8?d8m;+cCa1w8SS1uc9<Q*?U-oC
zcXo`hW27BpWUH6n$Q~;#8D+<4R+RQbIDIL#ZQs%|o;uEsGwaOx5-eh$V8@KST?8ad
zvSYFxQ|#!$U)BS1#L9`Ismvm&@d=h0c6@KgVmp4Kai$$}?3hcQWyfqn4Hi33j>V22
z?D&z!+nr(;*s;(KX`UQWWUaZxRQ31!{_JYo7D*enCyaR>x5SR0?O4q$zfhOjv5XMT
z9=qI*Vf0^V#|k_A*<;fVP)b;3M}-aQAxKzb$697tN6nW*tzx4co9wviz%>Up+p)!t
zD-LuUZQg3fHkrK+G<IOS9Xss!WXESacG|Ja4!0d1nbLObvE!s2r|j5k$38m_+i`@$
zx?je~jzi=Fb{r(g0ZQ8>2>jD2R>E&~9JS*QJE~MR{cguGJLK@Cdu3MqmMvD!PDoV3
zaoSJV(Q-Xc;ysT$%>vKM>RW3*W0%*jqfM#UbBv1R@m2E$J1)}ak{y>>zEo<-5qm`r
z){bkmT&GIa8Lyc|t#;UGv1@h*L7_VBa1k=R>n_e-JA8ILu;Zb0xE%pI{$y&<ju1fx
zE=-6}CCeY#W23Tc8NEpr%Po$@ZR&9j;$L>$vEy$J{XObkJDzlkeah7Pv`FEt6D*JH
z_-&2(ogMG(cr07)TJsZH#Q2o(jQX7Vg8GvBiu&4)H-xuT$#wsq&gW%l>=6ARdu)za
zfq(7zC^KQIxp0nH(2~x9^bVAEpo{|<9EfqCutUuf>p(^a@;TJjW^y321KAzO;ZVou
z3kNo2kIhQX;y|wiix{&x)ZrGpXif)Y&aYW(&g($Yyj^lR)ZHVu19=F-^VXU>J&zO3
z@4%N1^vDrgz=1di3OZna9+x&xW|dNlD#Q|ctv45O0KyJ+5fyi+b4;L^1Fy5I+eiso
zN>U}MlminIECOX6DCa;`sn>z>4peYJ=Rkr3cS^>_J5b4?_IX8z+94ADC>dLs7BP<H
z#7=a;=zvLds##ApIPhbFMWShITw0hUU9`%aEJv5GOBJdZ%?_kEP}_kz4pf((Tx+f=
zmbK;@?4@l9mQ;3yECDgrV$$pvadp}A()slrsQ15G)xd#<4#<9Tyl|JV9Qar=c2Yid
zH*4ZRQwM&KCOOc|f#weMbKn~XS~%pDl<4k&#er6Ac6$dpIMABh#(}nMMmr8uT5n4a
z%bav}itXq?CpNe<$G3|E#}X{%*P6RJ@I~iX8R%}bUrVs`aNujH;)%L@kImnurvrW1
z{$379v^P~in%dWa>CfYCC0NR?Gxv93fCIxF7~#M`2L^HUr34AmOMO<E2RkstfuRnh
zt~Ynh5j)I*M<rudzlhs7**wyLQ4UO#(l`x9OBGV-D)ShQd)mVPmdzU{Q<Piccn97j
zSSC0yks$mXVG?yRbqaMVRaVUm2flY;jstTYn91^`=Vv+4b*kDt39~tNz4LXM=fHdi
zWZKB&$(CqY;J~t}=7mhXaMdh4|EhVB1B)Hl;=opiy!;MJ99ZMPS_gjSSghds`h~->
zRI<xzT5mp|x65)l%u?zK`s;<-y({Uw%7N7cvB>VX&Vlu52fo()EPJd>+6@kDWY5U#
zl|`{hJ_Q&RmciX7o4*4m960H~4hMERaL9qf?5<r7>~UZ(c{gX{ob_fI>wOL!aNr>A
z`yG%EcNqo!HS^LJalg_iQ86BodMBHYI`F$JA32H~>O7H;D(SsroVS0l8>IuKPmVhv
zeI;<pfzu9L;+#3d(#|_@!GW_5oO8&9ZDv`d5?bYmm6;%O;38K<8}_!Wk;}4ma0ior
zG34j)bqDqhinBUklcC?QlfR9oH%Sq-%UqHhUDH=|IMho@6zZ)GMz;eV`EXRwU4hpD
zp96^s^a}hA1RS{Sz@H8T=`6XT4uoX7K8-JyXbH;^IUpdxQnKO=`rLHjmIEutXA)-#
zY4DfqR|<+LxI>@69k}bjJqKz`)_ri`UkC0x@W6qGY~f>>33PiT{qsJ3?LhKV2m1dK
z_g;FVL+qk(@-qjXOD{R_(t+YW^IPgG*#Kn&FH}P;#h=H&k(stJS!JL3o$THxRDOBS
z{Ew`ucge-xCV!MF94Me5y+8T045)%E3bIO6K?VgG6=YJ>?mF-wIYxmzS|L_ZPteI@
zc|_%Um@n5QOUSIKkM;h7n)y3pHU-%g<Wi7Z!Lvv4ITY-CWM29xzIiA^P6acb=^8gT
zN;Hpxd<ya_c-=cCuY!t+7J-5O&R;4>X;HDzgt!ko3XMMBIZi=AmRv{y6!lJ)!V2ui
zl3O%ODWYKec;ng2$*rfTZ?{?WP1k!5bj20)zMzxqnM)`rsi=4Vm7<nbP)0#nMSY7|
z1qJa6%F$k)Dv$XR&x#5vDbUffs7(&BR93L$W}*c5YFz^D!t(F1L4i?0Ed{j|m=q)_
zNLElqQO{lU9hW@El+dS~uBtTeenok<hD?BJ3KmvMl3*sJD5$PkY7kNt)YL3HV-o5p
zsH>ohg02ecDHyr7S~CUB71USIKtV$ZiI%UZH-1PFZbWXAXlblKw26YI3L4d_C877o
zb}baNRM1Jm;XGC3vAwMnbX0J>cdT%0@uz271??2HmqAagD!JqVAOal}oLdkpAfB@m
za&=}2LlZ4hj+}j!Cxl2BeJ|5qK@SBt6x>wswSt}s<||mBK+ZVzQZP-ybQu)s^AY+!
z3i>MeE+$rfCH0fS2bjN6&|hZA#KZv#1}PY<V4$L&c1z6~D>_7`pMpsWCMy`GV7P*D
z3VvN?9wB`~7)u?cpu`yS7zLvl6^Hq|&Bro!5%`vtf+x(v;}uL`bRzw~Bd<-gNM1>u
zqNpbrQ@%BeN|?%-FK6v$DC%4AW+|Ah!1J-{_p%TOpNChG=qFd|969Pc#(4^a=TiMC
zsc+)dmo6<-@PmRM6)aL94`G<uwx+D6D|ggu^A;=kNu1>=$2~J`%@ngl!OseQQLt3O
z83kt*EK{&t!CnRX6s%CNQo%+An-tuQsklnPYMG7XdZGAst&D3G_42a~3f3uDPrFnh
zvr);NB6cxuR<K1Tq=Fp^w(`)nDe7%;k|Y<uiHh@1+IK71!>-uHs8pBcBLxcVS8zbV
z2__ws4pcB#AA3w%{>XetriX$fa-<K;eHX<2rr@Z8F^c*M+TSH9(egaeQfYwEnP|y>
zG5Pd6^B*z^WqLGCk<j`~@<|1!SnO#9IrQq4Z)vSMr{KH-MS)Yn1qBxsTvKpe!6gNk
z6<p<kH+kEwyxww!Tw8DX^6$=FS%Ou8O|}aK4w*l+%<NOuFsGXoK3i}3c(B_Fy~U-#
ztstNvD8nk7zXG51iFCW(a)DVEukE&=ONv~lcSCQ9HCRFl!U`e^q6+?uc9)_`87#>L
zOA~`duF(5xUAOKA%Pj@B6}(sQ4~O_q>N^F05$-7XTgFJis-fn`3QCVN--?U9$LM_p
z4+xU<P{AYeD1$|!Ph=+?ZGI}7s)FYVUMP4&%S-Aj*+>=q{yFA<f;b=h9P^f`0ur5N
zuuMV453)=~#MN*j)ro%<e3T|B_^hb^jHft}&WZF+lyai96B(R{aU!o1`J9M#BBK-8
zoyg%tCMPmGk;RFuPJH21Gukr5$V}E}j1kV}L>h=OEh#50xt+-4L@xUOZwK*_XnrTY
zWD=Yx;6$7gg`6ntL_sH{oHYM5&;O~b2$Q7VqD~ZZqPP<!SW(IUTSZzk$~aNhi9~U5
zqMQ@uozT&_f)nxduk1ucLM7_|)RhLJ3ID5D13B4=Dg>hwCMS~qS5u|I(lDvIsuR^%
zk(6L|s_R`q?A4j^aa>_}U2;t)p1X8)oa+8li$3C3+lfJK)oV5DI<diEspmv}r#v{+
zBrKtU6Aft>{)*7ZiN=H`)TY#C)aF$2Y(Z%0L@PpTs(c_yQadNwOE>!Dy97Eo(NVg{
zg9;vWa-y>nXIwbzLKi2xI#I@jvMzLUqPr7+IC0zwixWMZ*zCj>C%$&7pT7t1S4{u0
zYELJ6Nz{oxPW<e|FHZDzqMs8#IORGYeB(raCl)$!!eANT#Ec9n!<`sG7)TvN9qhyq
zf;bFyVi;LIuO&LtiBV2Wabl_yqcxxLPK?obEa6+~I47*H6D5~~3A9Y4en*`|o$N%>
zEUJTqX|&9CVmd)J%8+S1lQ2sLE34`}htavzdDQt-Nm@Xt@vchhx&*~wS>(jgmff?K
zN?GE>VkhnxEa{DwpPX10Zyb22+u`*I^6;*u5_Mv=6Kk9(VzexmK19L_^1;pB<ndN3
zomfSq*mXwBS|?7eO{i(KtRw6_Q)Io2tP>lZ*yO}_M#~_hrGwETg{Q$*S>^*0kF78q
zablYj+nwqKW;>jya4(a<PDYFNN!X<V1olt`_ByeTyq|i2dXV}n^$=A&4@+tGs^?sl
zf0N^N;&&&S@2q`{np(GZmy9)27S<EX2`5g<w%|fu7fv~G+6lW84yXEIbjGPZsqCT?
z^0=+D)N|DH)C<&ubJAU++hr%NNUqm8t~zneiR)sFt0qq;_P@$ul~qX}u}FbMGuIZo
z;)GK+F&DmY!R3V8iI+~ia>C<;*NI0?Ja)q8gx`r9PTZ9Hzhs(aN(nm=aUv+wI8(|Z
zqa`G>8VTEs7D=)VP#vOlJ7u)oa^kiOt`mPd@h6Rv`j-<`Go=W4jg}Wi%Uvh#$u4TL
zJanQ~#X17_Wf3K)@IZsS?}|uWlI4l4{d?V>JMq+sXL3ZWPEsX^{e`SblV#?|ZW4X%
z#0S~fop>WVyvg#GwZC)XJ!{!M0RIruO86)fSoU+5+W5~hD_n?iA=ZTr+cT$kA%l#|
zyCPjp7HPvMYP!KiGP=-jd*-xOeOonlzDYg&O(shg7qYsL%?07nI>WfS$=S)vlaq3|
zFtS2YPHHY{Zt4k>MeO-pc$LW@f1_{SZpiP#wN;hBq!w@?&V_<5TpCfi7%hd!5-m(9
zLWK)OHT#Ejm5S4|1hu3Kr3iV_SCYFvOOvxMuUyWB@-D1(VVw&VT!?pJoD1V!sOVC!
zXEVCwe?wy>7iL@Zm8m*v0yUAUry8iYcIw5`<U*1Q$u3lJp|fn2E>v})nhOnFXy}63
zg(HFPHC#w_A;qOm8wu52>O>NIO&4mpP}hZeF4T6ZgDd@9$EB*cH4JnYl|HY}ValFl
z37IUfOqQ=)Xyig`7uvYc*o7u8G<Tte3tt7hH+7**l10jC#wuihq^QpW(9(rgTJ1HG
zEFF{7v1{u>I~Ur!(1Cf?nJ_?Ym{i))g--OBX&@y?kkqcS`MWTJC3knhA|O-3g&r<^
z?Lu!C`mminsl8l~l_I$$$RUVIAyS&aH!k#dVXzBBq^~li44@9A4oR{MB18wMNkduG
zFsfvn#byteV+?ec=tvhvaiWf<!&n!_5M)iQNwR$Fg3NhYR^ll?TPC<LoufQa+6mKl
z)JfFIE@bXhZwgglsteP|;wI4<F5K#r^1TZ)T{xCxndQO{F8nAHz$M?J)we@BlPq&x
znCHTLSqP<4?k8CmxbV}ugfw30!u|c-zDTw#a$&IxD_!#Qv&l~`EOB8uS)xA^mbvf?
zVX0=%r!)~R^uC?=tZ>P%<|YEGn7W#}M)Q=^^|E+f*y6%g7dFapAR+Q=qWoBsuc@14
zk{>s2rd~bSP3}jNn+><g8cDWncVUMMJ6+f%%l|>e!!GP52=6ECq3)&bbD>7E`ldVy
z2c$D;{FN$}LoO`LW)e6;%Wv#$Syo3~_+8^;gg;z3PB=k5Nj*gs|I;pPYi<-c=fZgx
zR=Ba!jSDVZbfK^tMclaL!etk(xNy~lGsTU&9I5in%J8Rt)5%nMCge32CYLZ@cfsny
zz8cx(14V+(1-ncAa2b@z;BY}yp*rPLfFKsP3mzA|jQU)-DdSG|Qv)spT?n}lW;E);
z4Hu>sGelg-lG_yj+Bh^<Qv4KyskyoRUEOUL{&XR|8yVdA%Y{2Gyp+Apg}+_6>%tQk
zp1N>PCWg$JpA3&&cp$-`mo_|<)Eh~~AL$GKqZ@lqZS7+h0@aKH&sgts7hVuL95Wnj
zq-H6WOaG6O_}YaxE_`s|U)jwH8Q!|^&V~0b<lme6e1b{b<PYC}n6alp-=<966(4o-
zN9RYE{B%`&<Fo8JZWT&Kb>?+CdGcQM!TK0CV%^B+#?<zvjBaFdBZnI~-N@|5(Y^XC
zZe(@i3pd8h)ekwRD^S`X*|WLP@PRJ78<q2^ZTmD&J%l!cOtR1Caw9jZ$m538lGlwY
z->O+8v_5If@5YyI$W^ih=u^;*I5*z@t9z9{NgN8facf)Rf)l!pi*#_Ks2d&K=;X%u
z@4G3Es{0ot6mz4v8ztQ8X`hnRhHjK{qqG}k+$iftH8;#|lyjrJ8;Ne{-KgM3yj$K`
zjLL3QWERO=V70N>7UR%t>PaCTjR|ht*=m&Nj{Ft-HSBC~!{|nm8_8~%=&&J6MoE=$
zb63qOa`@TPRdr*|-om-3)Hq#IE$4~VoI=l3H);~9yU}A^rW)j}1G|b(EjQ}8QP+(n
z`7_pb<9dyXN>(**JvZvR(Lfq}wnnGCs>QTYZA{`)<5$ey$c@HsG;yOTqphjU+-TuO
zOE;P`D*m5$)f8<d&0}jDMAb^$xY5>)c5bwHqXRwnb?W?lzj5Vn#(dLjxNBB)ma6#H
zXl$Bnsj@t|vm0I9koSpnb)y@hyBj|cEOIz*d`%uFgW^U{H+s3zn-<A3oY2ROzHam*
zf8)kLEww*k0Cm1T%OJvFH-^XzshCl+OBhPyFgLb5uGaNK;s{1ZQb$q6XS7U3jmHwc
zrOIoUC3OOMmKzh@_>Me@I>n921gSc$uBmQJqeY_A-IziCo;s77t)?l>b2g)MsB@|F
zsPo-eKv+l}k~dqL|Bs9=a$_;!C#obZapPx=e<3V&V;Nz&X5Z7%u*!|qZWQyNxCd+8
zSnGz<4VTQ8rVZA)al(z0ZaCVdtaoFB8ym@+s9UL<savQ$p6La)$ta97Y<FXa8#~?D
z#pofb*mo25Q1?>zQTJ01P!Cdnb;D3YFIglUrsW9rH|kO9?`|9;h|eE{<8Iv8qm$?<
zH%_~8Mz$A|;k#XhWoAlvUog{ITF$v~UiN=CF1qEu4Ap0^qPyhAHS%RQnw8LBapS7Y
z&*7DYB?w$+s+F2~b%NxQV3%X3MOYz7Mf<W>cDwOLb{jW5Zg}1Bx#4%?t{eB<2)Ge+
zBPvaGBjiTdjn}iPM5OC_#++=MAiB3_Orh1W@7pFUZkr%{Q+6shZoBcP8?QFysL<mp
zar;a55Xn2MidZDe-)^+&ksw(_@4NB9jc0B=cjKXqVB3Tz)JN3ER4G|<J#`~ya}IHs
zzA1;~ec^`G``QiRm(*9X32bg5QE`@vcIK}9&W(TE_#mk=zPT%p$yHhOUpGFwk;j9)
z9(<C0Y=<Gc2RS_WOit%PdJn!>tIOa)R)TPh2eIUg)J)XOX{l+tR+q)27BwiM6aQ=;
z+`5q{AeNjS<nrL|K$EcYZ;jk^E4^0NvcE|j@_A6mgTfx<_uxwps+BQ_TLBN^SnQ@8
z$pt+a*4-dsZg)cwk9u1KJUI5JULFbC<&IvQi;BZTeWnCs2@gtoP|AbSQhTSA74MQR
z{iJ*ROSP7c#1jkjWyCn$Ah&On^{6*-l%s~1ro?+tQ4ZOQ3|>_7pt1+MJlO4l&VvLG
zzVl#`2Z<i&J*eYB!x;q)9vD54uTQ@<X+Geb(d2>IgA@;hljP6{!c{z|O0GtAq>B+_
zb!NOUC{D6VsNq2>Ej2wD)T>4<4}NK3tW6adajsBZ59)bP-vh_T8cjWD=0O8;L#i0R
zA~d2lrZ%B=-H_1SgBBii^`M&vEj{X)nf4xZ@Sv3ktr=}Yl}F}EQd@F6X-2X<u3z`2
zuwI_@E6|blP9Ah7h@}fbP8@ajz~aFWMtgYhwFiC4J*j=D;@>L`sE)FUVv&a$^<(rK
z&8I(MfCmE!gQ$bGRQVn_REC(*;na!L5!8_$j3SJtj-igFN?qR)#(6MavrHh!OCluo
z_gnFkJ(%Lb3=h7S`5--0ypmKWXWr&-YB9|N(djZqH!BN>eWnMSrKsb^Ssu*xV2%fK
zJ(!nl*+iX3T_d?XSm41z4}OrjG~cws1JlODA3gZVgV)WIgcs4WSZ37GM2RjKZ&>2N
z&ys7r;TP&s58Addja^_`#^`bn${Uj;btMa2MU{-JJ-Bu$Nvc@u!KPiQ>!<?jJ=j3r
zs9DZls(r=YU7EVZgA7X&w^FxJw^MgecTz)LS}oaHYmWzeJ$UcIKOXG!V81lpqrOG=
zfK2%J#;3Ai`y?Lp;8zb0d2rZ+s0TMZIO4%?9$fO^vgo74qq2N1>CSrayR2Cc{*VUW
z(VdoZE~Xy$;DiS!CCh5vDe3=#1_5JcgTU{XbZ6)zZufqvb52f07SKyLFN;Ovi-gUM
z4E3Mru6W?|z~#YJDPP8@k>R=rc8_{Fy|7g_gp4(9vYZ#0B<i4Dp^8JJH984y5Bwek
zJn(qnl@dNx^LcP3pFxtgCtKvbVA86f2U|WGBW!9&nn#cu<RwWwPwv;<lpV%{$D<5q
zcc<R=;7{4~Jh<n<U()P5hQB?CiR$in)Jrj?z-GsE)o<(M(#jE~>)n@JY~%wE9?HJq
zH9nH|98<5ll+?OG-4mwDQQUr$_{^i;mGGSUg8I^f55MUoypqM<yr94vj*bk_Tf#f)
zzZ()icyOvoOgb;lSd9N_J|796sGq6wKu*akJ~3Xzda=cetzKmGBIcgn<VBJfnY_r%
zLcZ{#EbR}isad?p>P0p$vU`!ki~L@E=|xU2BuPRZLN01<FD~uPmS)dOOFrt5Dux1H
zIVYnl<V9gZoEHVXNcSP};pA*@BZ)=4fET5_5SCEXi(+0BXLRTn*~G1c7bO|}pDbc8
zt@)RcS|(>JnwX`W7h|6$miMB9)Z#@&FZ5nan4A5e&sd4oRi;DfymfBAPu6*n;6<X}
zn8+k4S@Ig_V5BblEmc;8+&-4<MKdp&dr`$JgNSOPohsIpN;4SE<P>UkY7MG5q<V30
zVs3$2^sG&-<3(LB>UmM$i^jAxpngSdNR?uTUDh=sXRWW7XlnJkO&D$JmB*Xw#L~Zr
zzJ(Xdyjbo<OD|e^(b|hPUW}LH^`fm8?Y!vYMPD!4d(pv*Ca3h>sU5xOLg+;8OqJAM
z8W_5I(anoAOPX4|=;6iJUi73}um77Wxq5pc83p=z@r|_2i{bR_@5Mkb26-_+t3^Bq
zdohI3q5roWNs<yqcrjACoh;E&UX1o)45Q*8L7J4-s&Bm*r*WEPq8HzJG2e>?UQF_0
zvKKSGn8mzPyqHdy>cuqXN-IjLnBm3u|F@jk^qfl-hdBiCpGQcmYoQlEFuH{LqZf+_
zi!>kcm%Kk|CI8ImFJ8IPNwrHM(qrPYLT257#FbvG^1>3$DZJXNz9(+27wf!OL*99^
z^3jPg>&fzpx(#0SMRgnN*V-tPXHVs^k;<E-mh=rbQ<r!uZ}VcitY0tAda=Wcon9RC
z;twwzag}y?@vB$8Np`mvx0mVmQ1?>zQN_65ivt=TB*^!HLtb@Xl5m)Cg!&uxDD`)0
zrm98cx(N9~E+4YTy*S~;NiR-$aWUB<;j}FL)+Tu%lJM2}x^rHfml-=Tb5S4sACu(2
z_zd~dUGS=ZmR*!R#EZ*bd8{9<dhy<if4sQn#dR+pd-22zs~0veLSBTuu*;z_m)8r0
z!O5s}qZH*LyQv=Pker#t?j!rD5)BZ7nnT2ksH`>VD=%))_@@_td2v(oza>4RIZO6C
z<a=7`--Np|by?SaMjueqYL_emY2m3C&%Ai)#Va~I_u>WNfBU@l;*D%{UcA!^`TxuL
z;KjdQ<ntlF4<EhwB-^zQ*?ssdbIgZ~K4kJCy$>0Di18uTr(VR;{ObhKauao;^0-3L
zMJIKcefYwMEIwrQsbeAcmx;<dC`B8MSAE2i!-t$c<n|#Coh2!k4_ngb64?JaJ})y0
zr!`V;N&C`=0yGx(A<l<_J``d!%^|HH(zu8Z(2~+D@;K$|2lOR;DCt96Kic_G%7@ZE
zEcIcT4`qBP>%%Y~hWk*?hw?ro_>kyRpR`lKhj<?<`mi<JNzRv6^5N@>HCn9Fe@wPi
z_Ca1%BSGiGy=04k-UovZ&3$O$gVCox{X>3bB>T{`QId(8Bz-boC($ZCRF&*ajn#ap
z>q9-V*@qNDb*iM+@FCTQno`>R_*y>H_F?Xln!<bT#MdE9bkFVh`t)z0<tkXkBKC%K
z_=?(y+SrFCgr?MH)C4-qIqH@^eB*<hk80(UXG|GeQ`=D6`p_{$QafsU`3qQpEXJ=1
zoqXs_=tAvE?MCfRwNQIdCD&T3u_w6~wKug7wJ)_FRXppbOX}}KmpkzTeE8{8yud&o
z29YH?*oPq+5A|W*k2S?O!iSMQEEc;DqkI_c!x$gN`tb8OU6U#nc?yR-e^S1pf9t~p
zA13-R&Zl1MB4Ios%R$|DK1}jKZh!vKhsVwIlYN-t!&LH>`#P~qBOg1GXzE~^E(7hu
z-DmpmsWYjwsI#easB@|FsPm}{d{`*!s9ym&Mf?LTgH9TyoJBHA{Y8=;iPC^2GW|-X
z|5+O2gIqPF%cZ{Rz2?d~@-<sdaV+;?g$%k64}4hZ!zv%n`EcHc)jq88;gk>ks#xSj
zEi&`h`moN2^*$u^)*qGCu_bYX4;y{hM9VhnW~w-BA#9~SzmT}yhaEobl#W`f+e6(&
z-AxsvJitM8uMe&EXWmESejg4H4pM)m9-@lpVIPk8@EfB|3KsC+>m<hC*(zz+F(3Z$
zq5dJggyV!0KAa@HpRE(49MowZ+8OFuW)$NEA1?af^Wl~cmzWf!O44P*73x*$HR^RA
ztOW6~5$rxVG>bxT`rsnCWkVo%<+Da>tyCv@rP(`6>jUKU(+m;~(IM<Zgb=0Ppx&ge
z&XVDWm-^ex@+b8#>K*Fe)VtJs)c)=yspz4sM<4R}k>9V@``CvkK0NiQkKmYD#d2(8
z;xpMx%Nn;-u{`(Tg%2-%c;$mRT|#ERs;|jiuO<q=@!>6_!tZ=|?}PKHPQpJvd?5cz
z{piCd+5gEg{{MW^`Q@U}|2Tsma?Ph?jHM-`X3s>BCss-MU$FKp)U4EOeq<*|Y7Reg
zl5<gWYxX>T<kfg};f!DUQNWK{e$@6O&X0nAxh`6L&sv8^-3$3q-H#f66!xQtAMitr
zIzJNpC`vBoM{z$&_;GVwQYl*2^{7+Qk26&);#t~{GE6G#m+M+h&MKB%O}dx!L$o}#
z0yUmmky^=*%7ojOjp8PSB>Iu;M->*X_ru_ak!<oKi6A}?E2WCcwzlM&v8o>_n!TDI
zPd}N=j86V!`umzu+*0Lmrt4}_TW?GhF1%NFJ4-?xKYlr*YwpLL8u~v=)voJ@Xgxpb
z6B_u@knoisO$d_O$dAV4s=pW{+ElYQBgp4<3qR!2k(Sg})YjBC)Lui9CAGaYPihIE
zK>!{7=p>UcfG-2+>_-<r#`!VckFI`n^JBOlBmC-xk!>3$+3py-`(g2;haXbW*M9UQ
zJgZ`nXfJYaszm$v(N`w6AK%c@U$Z}tHA(6KKL*k=h&q@$ggTTeKEwR#*Ajt|etDBi
zz3oQ~hhmMR{21-W7&+K(DH6UVjP)aTRZE$w>V<hJRV@?5Uj{UQ+yQ*&N2{uq1%52_
zW0D_}{g4YOr}#0GAUxHNX?~Qv6+fLigDTPQ{dkf)qk#C#^5fpa_}SDs)VY4lBZ$L%
zDK>Y;^#v;a;Kz@CWDQ_&Rm&p3dcB;47k(`E<0n6s$RzjUk{_34(EV8I$6-H?__557
z<$i4NW1}A{{OZ4!64v^$QsY&G)qbqeELZx*tRt`2EOXYU+eF^s$4<g#KeqU>mAuW5
z?SzIIzmUS~&WID;Max0zZt5QDUg|!oxb64j0C`Z33=;iSvmZ(`*2(-E;iMm@2uG>E
z`*F;VKm0h(=n1McTS}O|E}iIUTFz6?P|s4&QN^MBlgt-1zDQU#KkkYjSN-t$;rHX3
zAJ=Jj`C;|LM!tI`#;)a32oBBe)a>HZ>OqX#507T?`teoUSgABX%R_3A8q$2igoqze
zKW@kl<Hs#p?)h<BCL#H6KmH=zp-O?#5pfa(?$VN0%Y7~NfgjQsNtN)(kH@q>p+2QP
zqdupqg<Oew$$9mP`r3~-e!TVLoge7}NFPwA+<QMhGW8$o2S5Im&KVmgNogwZ$&b%W
zUBpW_GccprGY1e8KrEvf1IVP=)7(VApe2iDmjbhKwr8ixw9gShPO_ZVlj!Np3DK9j
zJOS(v$2a_1pEm%}eAIbWEd>II3m`dwDghJ>pilq_0VD=cIDjGnlr3zO2bCazkr_;X
z?b25cpeVT*wRiv}0&;#kv7|Vk)s-ceqL!wXp>8>rRE`efQ$BzS<alaD&0dKhZ;q2%
zbOHHiHgVk{gM5qD2e7%SrOgz*Apm0l?*0Z-07-<a18YdMV>-QP)c~pmP$PiU0L%eo
z4XVG1mNcrJ5<s@p+SRE7KliD9xRa@-lpnyg3i?`d6nyh(?EubhOcFj@)lxTrdJ?T_
zkx<{7rC|VH1u!>&c>y#Epm6}B0vH`YlK`3qFff2Y0W=Gsc>w(a>RW5SDq?IQM;$<G
z$ymhLG9YKV5(PE{b!`IZ6F}bpgxdztj?kXkf!dMUiP|}UE&+5U_oQ~CO5W}SO8`9r
zkO%L4&8R#&Mv{7IKD`MQ_UdJH#9m^zntH#C@tXkp2QVOj{L|E^ggpCoogLlf2VHEN
zguwxrj_QU`hXyc=AeP~T5z<|nMPA7|CV;W(B*aXaFpp~&$!3!A`Zj=N3v}bC;{%vL
z_}ttuF#yr;sFMPiOc2YI0H$g@Er977&yY`z>?U!LH!x19Qb&F&&XSq1-7uRvhbrel
z<_EAKfP(@28o<JUJo*EhBuOT~P}Axe$v+0LD1gP%jTsYe#2c0e@Dq6n^=GOi{Sv@Z
zjh6-FFI_{L|B3)4*UA7^5rkI<<Z1`ixR$z(x}Lg$x{=y`PLlYP^y%afwgj+MW>hGC
zTLAKNW4jzz&U6yp!RSuvt^i!?47;g^7nt@C_EPuBvLzg#id&VcsfPkMEE70@>jCwS
zp(6o&xU9Z3_O}3z25@d_^6xT%1p+w6=pO+bmvKL0I1xax*Sb@3jEo*zY<PS{FHcc8
z9l)6YwyibEIZV;>0bB^+GV@AljSB16T-9HcX|qFjNvf`GJa)z?_A3E-MX6d{-+xS^
z1qLLZ8dJwAL$D#i7Jzkr9Xr)QRRVCzA;`)N;LiZ^9#0YnPXK`czPMk*OCPcL0`QZ+
zI%<-rBn1Nq(MLE;h)|={8`PTt+#-n2?ErS3(`|Wd`ir$lMIWB(?gnsAjwnmfD_M%(
z58#396@Mf3Z#)d(Q2@_x;l(XH4&X@uM{eS`n|K<)GqDHpB8cY!ypWX}MBgA@2JlMq
z29X-X>j2)!h8a|U*uD+mT>zhC_6G1ifPVt`7(lmMrVrFtdCbD{%Ef;r)vascPAZ*Z
z5=*)u(g*Qn5CwwB5JXH6Uj&gQh}a<PZw!$xshNVv7{r5<Nx9zX&K5Ov%2PLU5Mn>H
zUY|9HY(eA;!f;U+G#ax9kvj-)Ka+5dAVhNpkt>J|>+}*v{;tmxL|oTY33=r}F6jlz
zcG2e#;$6X%cL76O5RHnP#9lC{zH8>N$xv)};_aM<!a)=X0zniFqEZl*gD4h6@gPbC
zQ96hlRV^igC@DNtFMR5#9^dJwU(l5aqHGZHK~xN);8*%gM|4YeC6)`Kd=LT>Do6`s
z^(j3~E8nOYxBRC2Sk<BnA|Z&X%#s*{p2c?Ctv4`NQV=I|7$mPT2oo)d^$gS68^oB*
zq$)uS+mI;HYC&8*kZ7i+P$gPDhz8dU0<vCe2GKo;^V<?@1yMVQIziM8qJ0n@f~Xfn
z{UBNd(K3j}gG~*BcrwJ)IEaQpxzrO`hnTJnHLV<BY9x*9WGFJs)Fg<)!%Y&J2GNY%
zT(gWCW@;t<FvPTPn5hk+HMKxjecK><4>n0?7ewM<)2p#MDYjz}qWjP2ItB6V5R-(?
zL3AN^4We5RRR)+w4p(zYl119@N|exp@O2P93B9Pjsq$-XJq-PV_$G*<(mB$8yKdAn
zojk6ye-HzL7#PH$pn4VVV5&g#6;*7dDh&xD|L2M?3RD^%#E77J8{oqry3R3-3}SK+
zQ^=!&7#+lzAjV1ygUDVv{dYl(lZpcIZ+pd!r_b(;-6sUq@6r>g0{35ap2Q?^8}ur@
zT(~$ji2Xqv2x3|g(}S2Hlm9`*jnwahm>I;ZAZE*O2k|qFbAnh%m`j~UoljjrJ#r<J
zl<))jN9rP~7#9<MqCOcF`-^5@O;{SlGR?A_up)?+nq?K?{i{rC2y3b9sOzax{suzd
zdFeK3md!zI31Taw+k)7w*|!sR1hG@I?2=VEFP#)3VNVcyY2T-%O432;`Jw544dRgW
z^O2mn&gVQF#E~Gb2Vs@&)jUrUj#7W89t+|R!f~pUe?k^!pBRBtL7WcajAp+?I7>Yz
zQ;2XuOT9=)%Xpc5g?d%yt>!cFN+uimwq~&h;Rr%u)ER^?2tU~sgqz^eJiUap@&iFc
z84XfH)G$?=9U+M44Z=<8EiF~r@TbOq1#w5?zX^A#_ky@jctBlqMD6)UK|GfA9>i1G
z0Ve341?APiI)SZsRn6MYAo?<hS26={;)k1f9mE@%u{ZJkO~}o#Z-eM`6Y?6VcR{=l
z;-4Ts$fglNqX_;D;-l<ZVI+m|DTvQOtPWvK2<bvdA3~=PI){)UgqRR2gb*J>YzP@c
zC=pW6NMs73P*FpUkh+dCQw6>tWT9rIW(y%ZVZ=N2mtD>faxt2l8b{4T%^O0#5b~41
z450wwLm~CuG_$j*T2N}Fv2X}Q31TclKnOQJs^v>4MoaM!>LjV}M2KIaFBw898cS=r
z%7jpsTu!r;7mG)&rD6z`LZ}`>jSwn_U>>MH9xx=)O&3A}AyLbvCm2F75=@%C+`Udx
zRB{MaXsJrAMm1|bDIrX$q}C`QHH7*hG+<KA5NZ)>Q|nOcQtMI0KdmzxhR`g8<{^Bg
z*&BsWu15OCj5eV*4PktW+7B%>pSFaSA+#d2*6eLU=#x`zPdi%LQ#)v>9SN7;r|S|z
z*AOOzFp-vSAq)s%p!9HieRo<cA@m60>kxWsdHaUYi`-kY^a<hT6!m)SewyW*5c-qH
zR99PD;G*tRmV`ke{94C2ID{b~3?+}Iig6fWcnBj1BQ^UdnH#nA;xI<Dj1A#ijmJrE
zXq=Qa^}7(hkIOJAgvqRW|6aqC5T=TcQ}=TS(?Xa|`=StLh-V1%wARiHVV1_r>ZlE#
z&FCEJT<WOg^z${J1%!nm{6P3ov&;7)$-9`*pF&uo*{|g^N*jJ*OO}SPj3AcfA*|4N
zWeBS@o)l+V8^XE}ln|UDtPf#B2<Jn%5W<Hh`i&u+U6X#BjQC>xrVuu3wQLDttHwzW
z(`^r72ctVhLpU13t`K&Iu!qK9HP5{v><eLk2nT36sM#M`<3<PmJ6~~##={{TAuM7S
z$&vof=*bX{X}SIg;kd>pq{e*zt%y@0oYw4Tr2QeBlm3rW&ob?!PxoBuFNSa_gv%kk
zK4{3iOn2*+VP()bzqjE^2v@bd*9g}`uo7&V-5!EN<FWQsR|xJ9-i7c!1WyRw5blO>
zF9aW_lT(*+gWwM#KnPMpRGDw#5F+HLX1Nm9-wa{VLESB?!0izJB>zRdL;YJzm8UP>
z58;9I_FVnvY3iQvkjM3$jeHcsW39DM2v4ccs0%NrmmYXQ|CiKPqJ%fpw^Z@@{fhn{
znG&+sh0&m;I`{q!AyXKc!}u7&CzkeE_W7{7tEZz1qz@wlIflBc;(ue5F^rlKb=UnO
zj4WXk3ZrlsS;NQ{Mt*u`r{<=LTaGYtl5<g0xIgD1=cVSO_Nb<o|0THqRibf(f>hJB
zm?E0JL>SPxD4|#w#Wl;s!)j3_!ziU$N{3N~?ByGC%8|>5Q6Y?Ya)Rbrkx(g&$^;!X
zu3uIuP(orDdRh!rBlXXw1tlptj4EOL8OC2>R1KqA7~h34DGYNMDPar_V@Md)!>AEP
z*D$(;@#cmhHH@axhq+BPSx&7mY7^>E8-`JrP>))l+JGw6RcuoCD~%h4(U{ysvzYGJ
zZWc!KFj~;kDvZ`)v?RAQs2i7rHjH)*qb;EwwLP^1ReYv3HgqC)rgqWnQpnB$`tD)$
zIb?VelWYm2M;Kp+A;x~xp447cG4>|(38SxOxjR@d_HP*NAI1Q}KrMAp7;kGQi^I?`
zhJ~RdCXJ@PEM^!U#+?|wv~5HfBenL73L}Bv1jf*EVTWOC7~h5=AYoh><H-}K6RG*l
z1te*57*oPH7RDc8Ol965!uT<aX<<xfbOv=E^?T~fFlG^?4YR|TL!PTyzD{ot`}{B#
zXqJUC3U$q5TolIQF!qG8H;kW{x*?2>VJr#b=dk>2$I>v?(7sH|yE2UB<Q3FS$^Wgv
zRbi~AW$YMrG}n^XQP)#9E>q{EgiVZY4`VZ73w0}X8?`}I^%HpqSzsq&R~WkqY31+J
zQhy7}X<Hm%^dR*J^;ha4>S5~DqUrOzR(FY`j0*f7MlseUd^`+K7~U{WgmE&AQ}nqI
z#zn$u>X|Uk63$W2Q`6dWiR_?CX_v#e62{dqu4xu)7}v=Iiv8DPwlM5k>f(=jh3wQU
zE`nQX9HILA81382RO^k}hyE}EVFYOmg>i!rrbehyYI%OIyGfQ@w+OexcwbEY{JImy
z-(h?iL4gSFhH)>9yb<)9l<|HT4`dh0sm~fwx8H}dGsxr*<53uoS;7<QGwRbcOC9}l
z!V9Y8dKtzm@@vg9Ew_3t!MiX%gz+zp@5A^<OKsFI{YUcWFw(K!Pck_(smGq4QGrYm
zWFW^-W2qUnRO1U>X7U%BB@5wv)eMtL8L~x?U9;ziAg9K;2)U_wA}BjaoxS-Y$RB|;
zc*Bvz221PNJ|@ORP%wfj5mb$!Py~e|h>xJdSzVC`5JAo12INzZu4n`$A}AR_F|GXK
z5p><F{<l(!mhzgtbOdEIE*n8P@~$@O@m3&j;-^x@2&z|9*Kef=Do3DWQUWzOg2V{)
zWJ3fdf_NGucw9~$UkOPO?BkptH#W0Gx8KuMi(pBmjBUDQH%E{ng)>(jY7J_tR!&Vq
zEoyCQ{FU@|wbXhM)F(I4EDZ_uAEs*@K@;iW8_0D7O(SR~(I}cm(L90{5$uY{LyXZf
zf>sd>i(q&Jts`g?!O#dCdlG;AJyqJ-HiC96t$hUDBIr);K<!BFMC}|w7eZI6Wb9YY
zXd(BGpbw!3_3H?FYCgRpXl_+MJ^N~wfimsM-)NTp5e(4SwNF1t<G~ROAx}^^GczUJ
zDQFxK!N>@{k6<Q~Mn&*3qkd8Zqazp-!B{QtIKsEom!s6|<0F{B=tSyw)Oo4@eHu<?
zbV>wM3Dc<4sWYgjgIT1I?3;D7WM;O|FNt7w1ap`)m-<5l^9b{)3#gK1VFb?YYAru%
zmPHXPCjUf@?XNcP=Lmj@U}*%)BG{mLE{|X}c?ET)W?vP-xpx13Cs{+|TI#w8)@wd_
z#w2fyU{eH}Y1vNQLfuN;MwP1b4ocoZ-bo$xRNc4tM6fr4_YwRfvsz~UVZAK^dj$I<
zI1s_X2!4&=WCW*}<xm8_6An`)`w;>1QEJno|E-Z@jQ&AAPCXGp!{KTVNH|T)l?cv6
zaF%?IdNG3Y1o62*$XGAqCCze~Q1i$1S2fEu!u1HOg!mQeXPmooT}K4p=GH%mK#@UV
zk}HBx1Yxo}0#5{9vM+)F!B5>eL><8(`E)t8wUG#-5&TWd4eFoNo77v>+f;FO&P@7C
z<2w;Kr>(X}!rch&(SD!$uUEA{jNp+pqom<+1TP6ss86ZSsFM0Tf)^U!xUPRieyv&F
zMC2lQwUBq3CEBgdhY0?Spm-D|qWBoWC)sAB_>|N1If8Ui<cg{vK<T5%5Je7h3{{L@
z5MraqNXVqwGZTtbvxrZYD6%q|jhbEa*^o#5#gUWI*%#EV%T3M`Mcyd#MUh|gED*()
z<Tv&HTa|H9*vW-7pTdM9R76pfP>g!LthypfMo}t?>QOYSmYQ(3cIhZ8Mo}pW;WE^+
z)N)ajCsd%uQ^m)gXsFE6q^N`_bQ;$ykTEd|eH4Z$j5JoInyAUtBvI}sRT%9uKt0%M
zWHU8|Dn=QL8d0ROku|CHqo_rYX4fXvq1KI}o@O6+Oy7XqkouKoZxlsijn7`!H<Qgj
ziepjy5k-qAT1N406yu_36;*HR>l8)jC|XDHxxcB6)}FS6c2Tq^bf9*m?ro%wMVBbL
zMlmRg!8CTG_KBi<R4z(K4@Sl9>nMtpQLiVF&@+l&wD+c-ou-!4SM%%_#W&>s)B)6i
zT59isrXl3h-<XCIhEj)7|16Y2>?5KO9Z4M(#c0A9>R76zS_hiOM=>FaIZ@1wVqz5i
z*63zLv8Z9~?^x6%sx)jeVM-KJ3Dc<4wbWMQ)H(cp6f-r;EW&JR^*j1`QOu8GOB7q9
z^0rniq<w7^KSc3k6w4W1ME#j6r7b4>L|sCCv_qXRzmS(kv5Zi!vpTC+M6oi8RkZw1
z53go)O%y|J{&yC19WCpl*g)7w-9+6?m7?T7prq5fZBgu{WqTA7m9T@bGm2e=-PAo=
zs@&JPkN*3kI6yd<R$vsrMsX;L!)a03`J=eoKppEV9Py*H|4v=AK|R3ZQJjb(97QCG
zlTn<C!WxB5hD<BrLKJ5-J{!e3jnB&tGgKW22^VR+6vgEzu0(N_(NLlPK4q>kdOeDN
z%<7KX@rKbJg^$Ml_Y96GlqduwI0-JQI|`3x_eQa_SCTmRnJYk*qJmL`$nyuNEr~{P
zLu!fQ1C2MM7<t3^n0zaW+fjK;oVuz06_x+3RJcR^n|haOXJ6eXKcGIOKB7t%`NQrB
z`Dql-2+yN<O?W|lNqt2X|3=@aUq0VN@m90EBfO8IK!3H(l^PrVjUwiT+MbV^&nLoX
zYC0yRzkv({aXULPU983#Z~Q-=t^zuW>w9N|goNOd03Yr$*_qu9Bq0eA99pz!S)@RV
zwYXbxcPSK#yK9l+F2$imcV||{gS-9jy#Dro&O6`v-hFqT-gn2}LrxDOJjfN2<Ypw2
zVU!07>+@(9%@fjjS}#X_4+?m&-h&Mu6!f5w2WcLpdr;VeA|7xaT4fJKJ&5t(&O}!Y
zQZo}`Jt*zLu@}~e7h_o!_n-tL2<2STgHnv&zh*s$EW>zN56XE^p7F{ID=;L5iXK#A
zyjyn58Yxs^(W)L)W2AaWbH~vX`T_9#4}zUZwp7bii>h5Sg=bO00|z6{kiLtNcn@ka
zl6O4w{~plp1{4w*N%EjJBgqU?LaC{Y)L}@A)@FE+=|LY4`g%~;gL)ox^ML*ttnUG>
z<MFKr%{*v8S$*XiG9=Q-gT{<EVc3-6H=)#vzjMv$2H|8TwfB2QT6oaXgI0{Urg9ni
zj$s>yZ5h%b<I1JAXS@T$jv@J%sn)$xC)QXu!_FRbVT9yeJs6Z|`GFr;&AT(CCiL*2
zC*wbcBtLo3i}Bte3H>_S&x4;mnB&1*4}PImdoap_(H;z7hB2I#LKZTRMF%k)?7<L5
zhB6$+kaV(LNf{BU)ksF>&b3ZbV;G<5!B`K*c`)9CUp<%-(wyMI<Pe|e!6e2PPcK0S
zHk;rgoEl1<=D~EvXM`jzOIr%FSadc+%8J@P&x7AQ$kD|`d_I#bV7QRsA`ccbLa9qU
zSQ_Gk4yP<*nJo9<cMn!DzMA1mhJP@m5?9e=S@*yDf;AqjW%6|lgQYEN+~~n353MkR
zrygwfV2cN*JUHz^C)qlKZ1rH92irZ^;lW`tiS72CG+~=K_cA21i;>+P>|x|d6DJAx
zg;Mu>a3I7FQlX3=3Q3mSx1QP^@!)8vwtrD=L;N@+Cp<VAlDw*ua>j$R9^CTawg-=!
zI?s7%1qR2uEc<y6E-<x=4FC4vQs}75j9l^HDkDF$s~0Nw8jD_Mc*BF6jGQTGoiAv!
zygME|qUn4tWzjdTyB^&0fCz<u82OjseTEOH4x!ZSUmcG<c*3&sc;NRS;GxakEWb)Y
z^gv?V$FS!)>r516Tnp*Q<Sj#7_2A(5*4XJGiQ$3CIC$&WXC6HFpt2WLym;ZkOLC`P
z6!hYi2d_Qo>P?CA(o<!t^iLjqX5=lycOJZFgpxim@{wWc(&#UYWT&r;26JB-4`ZC7
zHb%l3X7gJ8PeKYgyvWIf5e#!NjATfuc`sW&AvcRgGt9#<uNV0k$<HvezU3JTd1;@!
zloDRNWq-aD_M!+&Ey^&4A*scBQH=58AxZ0_R!!hVNiRw<VQDYQhf>QhQkG#khCi0E
z2D$>{6}_m$NT+UAZ&&rAniq|{XzWFgIzn|XoL;!RsKKHfLz2faV)ud%Ndzw(AwI5-
z^&lnQi)1e?7hrW}O@_4?CU}v^2+5NesqMvg{j83nkm^NdD7B6kX(68OMF!)jWAzn<
zx-43cUh6Z`fMG+1l)AHt>&hdm8cmp_sTbcc@-4$wUNj47Hus`Mh`0Ptr?=%CT2rk;
z@-|+yW&HPJ)>qK&z3AXYM=!qjVhr_9-ndQ-hcl$8+l$VOcVXC-VK;_9c+s6Y%8Q;}
zoVG=i@{eBp#F7Si@y9~0mzS<!tvo68_M(p$tJVv|`!b<txBX`?e(|C|iw<Ns;J>6D
zoOOuA|99+QCLH3$P)0~N%!}R&EgcFYm~bS+QC^H@Bx|*G>{uG0_l|L)qsBAxE5iv4
z=^rTilwz_M)2Jau<9^OtbBY&)QyE6(uSp->P4`-#-pyb*li@6e<C{3=dNGge>JYcr
zi}_wGV41A&(gNcM8~y!qFFvT%7BRk<;Sz?Fw3H?Y<I6&lS~XLCXZl6=*P)|UQU{Vv
zPU2R1vCfP2UaV%(H4N7>q~)_nVS^VNS#&4EO<rtagpxKh^4I6EtzK+ngTCF1L!ZMa
zX-CK&);(>%E2O{Mi#?40r?bzCm^fj-7r`^G0}P4KH>-!dI83F8*ec?P7e~D)Aflj%
zzq~l+#d$9-u*{EpamI@QTkI#iIO)YHFV22;P<Yl-py+8Y-fa>n+Npx$tQUmm80Jak
zX_4)_>$p<mt6lWsk{6e~xZ=fCFYSg2zZZYgm{v@`?Zq80u6c3YiyP!C`tmouxS#4;
z^2$k^$SoFK|1kZo7x%n)M2^mjf2eLV((Zflz>9yW358rU9;FjL^kPRJ-o1(6)rp^7
z$knE@Gpio|#EZMLIgb~$`tT(A{tv;+3KAJgUfiCWL1hJ~XK3KO_(-Eaf|tFx)q#Ib
zU6eOYVW@hcF+viZ5yJ~JB*~($Ktuc)Bds2%zwqKE`G0D=O?XYt--{(Dgzu9Q-+D1J
zEs?@IFOm}6*@tGlC-Z27O4%JRXU2c>;<Fc#BBDfm@glr8|COvuv`E3Lyp4#62oY0<
zrM1dT%qC)Fm6WRCnb}3;5b>^dVonjqdI^-&xQL6QLxOxR5rh}x9JxhAi^wY?pNP`U
z5^F!=$6Xfkh<F;|sPHtsb%MKKa$<fFlpBQ-gVG9#C@f;3h(#ibh$t$edLrNGmLo<)
ztcdxfdC*==L~#)*B2q<^5CIX1B9cUu6j4e<1rZggED?`W6U&HLxsfB%bRkz(L^%<a
zF58dhPNz^_1fjoH;@H+Hl|;meu#2cHqKXKTRApF0L^VdLGyEmNO-U3u7Jav>C{LAq
zni(&G+AfH2h;TAV<x$Q`X^Aezd#o%<Ium|RuPLIIhy<!bT4FY-9U%!9BqcW2?X^j>
zU3@Y_BFAm*>xf7b(N08r5$Pgk#kszvRyR)15RoaOu80{4?s_8Xi^$%I-<aTTAflm&
zCL)@OcrZHi%7W-dA{vWW{ydYSrC(=WIn19*aKCzzeqwpiZ$w<&%aQzXg1ecB<|0~%
zXi3AGme^XvchnpjZa){5me@2$W*ZT6!`hRbw5398xv37*ra1{ai0CL{f{2MCeMpQ>
zB7PCkUxZskXAwO`{3xP}h^|zh<wd)T=tfgMw?Oy<P5B1#w9iH7uNgFVi1ZLKbaeWE
z{3j88MD!KWOGIxG(+{~m{F~8gtw3snljBLJpNOAD9Bd(wu$kM!0aWvw=|e<t>xF?L
z28npKAo`De8G}W9N^oy`o%utXjG-ciQHSKr94=zKh+jpFV9}8bM=>1Da12Az9LvZ!
z5ueGhb7uZ<gMXKl*1BUl;Us3jvqbD_mt(SsDJ(iw#5AffnZc$g<vSNy_zV#<Mf_vS
z+_xb5OIT(;!BMrGFq=)5In=8nXqaj?aAbR(IZwo^3Tfl&r7U0;PFvfPoi7$?OULgi
z(AjqPac+qS!lfd96S0i(<;%I{B7P?|7G1?~CBr`$_V}>|9YSHXh&4<Sf77v6#5$3-
zsBlnN&&UQ58$*&!jBI9Dr5nFZ#CEb45tqpDZe`mc;*^NfB6d>SDMQivnPM-^%}0(s
zj7P2ENwSYgNVuPo12kSC$)6$)h4^7cj?heG<gbwYn26(yp9o1#(lk$WQ-)nM?u>{F
zG*vSkXQ>W%UFR5{XIMMKxhk7;)p#x~!Eu?oSA;>I&5Q8Ata??%brCm2{7v!>u4@bv
z65Ygainv9GC%QEew?*6`eGvf>cSW>LbW@mLk-tX{Ez$jth<`=gXPlx<y5)Yr_(Q7F
zZQ&8)kI6Mn5}t%~JR-b|iz51!=Oqz75epLC^f_YKk(BDw_@IczTliChcq)i8kwqvX
z=1t^PhFO2xiBsKls@P^bk)KMtvq<MjRr=Y4ez$x|v$ekK8AJIM_mT`r#6BPP`|w)C
z8)}+_+Y;WAqZW~0LIKJ8OXWQ|x;fkj(c(nDIpO#yqRtHN6T{C8zmUUx#(xzNCRxjF
z+Zcv3q-Zt?*(J1CAmm_@oD3r*<YFXJLNp^$611Zn>E~wAX9w+h7|AOkpM>~AuJA7W
z)o{nPM0Y_6g(O^)a9u)S32!E+os@7&LJ<i?CB#UGmC##49|^@I6qk@LAwxn536Q`^
zh?7uKLMaIqB~+47T0$8K<t6&Cjqe%Gmz7YCavl@krGO)Q$@I>z)1JN&DzMaU@A*=v
zU6mzVSjw+%B2<%5MM6~xi`onI?%SU)idPfe)g{!BFshP}J<0vY%=pU*PP+tNLM;gi
z5(Fwb$?c-%NN_Ojl+d8Pker@TJITEyyQ8Lrc1iBRhlMK5(mNGMNtBQzp^k(j!;@=E
zNS2Ty;ngAg(V?zZMflx6CU0GDPi2zaE8<Che3OtSVfrup$x4n)33VlOkkC;=Jqh(C
zG?UPrij&aPp3z7`V+nueb~KbQv_^7`g=tMlF5z1VbCcZPNVwa+!_Xx6pgI{F`lN9O
z)3;yCJk=tjg@l$8+DK?Cp_POaZC$M;Jg)EP927Dix>kK~eMfzM*_GQC-%i5jBzJoW
ze`gAHW0N{Xw<mHw$^E@Vw*c+CNa!k|lLWVf&Jt*6910)yW)SY##CMbMgM^=G^p9tD
zm(WAP+8O+h5_*zN4vDAmInu&@)8dPkkMH;)xzGfmmxONZ`2M-#`%361;Wr7(B>XJl
z7YSn}jFZq`!T<?FsId|T(un^oh==&Wj0|G<SF~&TIw4=T%wZCS(+JWbgPe_fWR4(H
zDawzO;7f9UO>#f*IcL>Qp{^b+;h!H|W5})!JBf^!@T-KG5@t!5AYr0}sS>71m?UAc
zM1RTIzP3yGvygKNwd-r<U)_Y-8wH9^m#}b5d`xZk{13tms#`q2uLDmwTf!U(3n-QH
zIg&9~!h9O#!Y<<TnB>{U%mPmwTaP(v)pjqEuvEgl94W18yBAAXBBAwLI|Z^0ZB2UL
z+V15NewVOc!T|{@B&?LMQ^GC@e@Iv*VXK5~5>`tX_A+w~jqFtCxJBHQTJeKYg|!ma
z(e$ayQ&=xy1LGS*l1((kjBg1^mZ9!;vej@}cm!Im#9jx40wa=%+~^X&oBE`-dyj;@
zG*YwcQU~s%nq1~1vL!kjBraN-0k?DfiIg?9-3Q4mB^;7)thW0vLJ5Z{PYI0{X8c>*
zeWQZos06~tVRfsdCmtswBo9EHP%E?7sZ9Dks%mb>Y081#AV|0@;SA#xJxiwe+I~*L
zc}9p|kZ_Ulw*`5MUXgH>jHkT&Z?c?RJds=(4#G<-Ek1XlFkvlsgQiax=S|6a>+$sa
zaKbw@QzX2Q@KVA(G6@N$ge(dFk|T9E9!hv5;Xd{45}v{XvZd)9k;f9AklC}kd8phY
zJOwZLv^D|}kxBlX>{_^6@JaAX2rx}mLjHz{LF(<Ii4<f;6lR$h^X5MG-l0)<y?5vg
z4TcA9b5CjRPmHG<Ps{nUe4aBb+9ajobm5hR*JSWMjPT(N)tP3c4=cXd-$^)_%hAq<
z?UOko?<IVY@KM4i37;iY^P##AUnG1b59~t`AHsaF`4HtpZXd#Z*0DJmW@AXv?2P2_
zp+K6Qq7fl^E=D4Kpx-u09?hcp8RiM;<YgqE&)Q0ibP9yz1sN&iv;I>ic~Ku?d?@2X
zSs!9q5*QW>=@)0Dgb%c}5b2i;$xAU(+K1v@;z(YOMJq8ZAJVD7NJXFZlM(4u4#}%9
zQq_mmd97n>_`vy);X|emaX#36Nbn)i2cD_97z&|d9gH}A=-SFUHa;Y;$w)09&aSfh
zDv3o?8P*QzBr}rY11*0<I(0(wG)B^W)`^(pb$zJk!?!*(^PxUVYRs@fNWUQ?jeMv!
z+A6C_NZyo@Z+zA!?<8-|qOBRW2<fzBq!r~4tE}%r@-~dL^`Y2F%Xr!|E9$_ImU!yu
z!}pAnX<eGcxqawNr3~k~_|TIP;$3~{#`q5myNBdG7@<F0e)Qod#(Oaw>_cxKo`uKt
zVc3^pKZYdynUP<7=+DT2kbIyIgBTySCX&>Ku&jnM9LDf$Y;~$k-3#1EAEx^-!-r8m
z(0W!BM*A>^@v#iYF&xkESB9iB!H0>APhvQk;S`2b8BX(IrflU_br?63Y(^G_9JVj^
zVHV@F8A_FfIX)21WjN1=`HU=JxR4>GE($3x@nNYCzxhB}ZDL4dnGefD{CAq*jIRty
z{$OMk!_^GeFkI`yIv>{iEYG>YhmA}~x!K!y*sfYtU7nn{nQ~4}+~UJlMz%5B&XD9g
z7}@Ew{?*;(!)_Mc!*DM{TFaf(4v@jnSOhRQfIofK!>+!5^z-8onYWJ??8Q+ZBHnVf
z{rJm=V?NyX;eijweK_I6bsui{aMFiUK3t`$`e>`Nl-A!nPy29&W{?l(eDqx1amfdK
zw4Y~q(MSJ1IW90HVH2-wQin{!%RUfZp-h&i5LxruvEi}v8aw32*N$8LT{nHW<-@;B
z(&s9F+lM<oB*!M^9pD<;H2yB*_Za@ekdmTiyYjwv92?3%^x=^YSw1}V;js@-eAY=y
z@xj9g@c<)UA4Eo^klg2kpYe)_>pHU&X$F0enPgqK_2^agLGwXp5|g39kdoF9jx9XI
zdY$ylhv(#u{NVlQR3PRBQz-ApOCQQt<zLY)fX_N%z475QId;b1GJMDIJ;M(^eEcuT
z;rQgUmQ$ufzLN9zTkl(o`C;=TobiGTv-uItNOnJR_>q%w(#*w31j8pk)rbtqqZrBU
zw|p$A<zdmhq11eg<Y!pGk3~_{Nv9Bt77pnYVWg-ZF(FB;AGC@KX%=Ua5`KV@l75t7
zq*O?=G$R|GDP<Wc7m^zlxe9)3uqrbAyqK%x2VrGDsxVTOVKs&%ug*vfKe&)2&QG@t
z93=@Xhj>3~`r%-lvUU35VtnySXUnL#T8t-#QWF^I_Ao5T4_dC4^vxd5WIs~;IDglX
z$}rQ9I*g=Ihfi{)GtBT~*<9!ID;!~6KkE5W-;V}<wD6;)9}WFz#13ihxAr-0?8mo$
z^g6;d@uR69cdDd(<F{TGQxfr6ilg3w_-1}u=hH!a;4udk-O7*Fetb{nL~=jcu-rQO
z(bkW4esu8TQfXJEiLUmPp_aVhK362!y|xYi;<7-;Ue+C(zi@6pa<}0r^kk$n!!CYw
zWu#ju^#?z?Gk&gMTo0<J?)dMhADQqchP@c}_M;CYR8P|R*^giR_#uGq0rdA<H^Q`d
zojZU5ehl<ukROBn_~OS`KZa0+wXol)$NU)T$1p#J`!T|gnSRXjW27IW{Fvy+BtJ&`
zF~*Pa)c;K*$NDkOPro&}YBr5@d0b<j+08pCJ@RJ!>c<2>9_7p6+PZd+Dk@xZP4;7o
zAJZxSC$6b}RNyj*Od|_vYaLZ{Sqepmj!mDzaw9U^k2!uUBqR4@E|r@%W7vYs`F_l!
zfev#HjLJyJ9=E`cVzC)5Yo^dD3XA>N(>QV|)onXB?MvDcvaV$J-nP!{kr^d!x|aL#
zyB~l1am|kveysFkzaIzu_`{D?er)k$s~^9OPFwBAM(U-$!Wuu;QipU+|2EmZ&QBZm
z3H4T|tY>6{A3GMLYd>d@+9syFnKJCcm(E>x8}-I(eup1B{pg+S-cBaBI%UCAfrPtg
zM*FdkTE}!qvWJEs-b$LB>?Wkp@q}=YOx=$&ew-!G@5f<3PWW-sk0X8@Wu+YVgEIV!
zYWptzMO^wZ7A48LWH;flWcQPY?N0e|n#qfPblgjJQ{^d%!Z|-Kl1-A8(q#05n($w_
zPi6?0S>_bILS>m&tteb&Reh1{zV62jKLUOP{kZAJEk7R8;QDdfk9&Dz?y_#7Oz!y6
zcUC-+dw%@m$G=Q|pW)8>X;h5|jF(@KPW-VSPslI%;rGMC3X&+dyJ^&uUOz-uA8+$?
zic(GTrdVA>O`rp3{hKLMxBKzhk2ij()DS<i{CMhz?uX%rNd}+duF4LfqZ*~SC#AS)
zu%7wx+>ckRXZQuq8vSa$VCBAKxUXnDDO0#oAnh%ay!Yb+nN5oOogcZTr~Oxlk1XjE
z>%A#=(@6g_lPs}WZ|B1TC>B8R0Biw-2aqj*H_P~(0Yn6lopFlh2;kNHTtspO5E($h
z015>V6+rF)@&u4Kfan0iitr`r?ls=A^niUybv|DJ`2%P-H;RP(^R(07r59j2@<k_U
z77l>qF${|^?Akh`XaI{}rPYnhELg-9%Y?;>@FfC30ImSy=^BH+{|`W5wIW`MNlFJ$
zhLN%XlnbCd<5d}wPK5v}GF~Ypsmw@~0NOTABZX=qdG!ElFwO-K$A~=uo{>W-*2k_C
zh)^du0&ucAG~5+I(V79&3ZQ8K-vp2lz?RGQ@%`g70!U;$iD7Mq$qZ8%rZObuIsv4G
zcse7|ryZFAP$m@W22hXj`XNaJMjA3~#ISJyO+u-3?6(0lqdvLBwGN;;BP{}G89@C4
z@gx*pa(7bPIb>HW8uvr4VgdViOox)%P@jZ&y8zmUcn3y02Jn4I(kXyvqwI7DE$`Dg
z0KzT|yE5z+u=X<|VGpWUwm4b?ldcSV25>pn@gu{Z0_YV$?*RG)@N)ncRtxmea$hp7
z73uY^^ThiF@G<Bh@(WAt&u~D%`nH*r2ZjzA62Q;^9tZFwfMEd)4`6lxa{?GaCb}wP
zWB{WA=;+K&+b)a_U`znN1~4Iju>q7-I11wf7#HF(uLY7s{KicT*~2tOCIv7#B$>j<
zRI9iD_wD8M0A_?zXEHL2rp6@e>TYfT(}(lR1Nc3Fc>&B1U_k&2X<8}VGKS?3a>N%g
zzL?<>hD#a#7683~CIt$Ej&dug+K68rz?uM7GX4ic60Qp1L1GG#wE@Uyxt#&*3Sb@M
z>!}|i9UB;K3}DD*JB3Y*Y$i(!NwzYwEr7X~?b`#`5t2VkaqnjNP_`!m*b~6JS^Qpx
z`xx$Lc!1$SYCa=}0yxYFDbH)mA7Q-r4&i73e=%O-D0hs8qX2)LY&#*H)J_I)Du9cH
z;!X$fcL20V{uvfM%kUh-^9)Jn!ha-yON?~R;4cTTU$kEd;3|_OOy@>_<*%`Pt~0#B
z@Fqjb{8j+B1Gp2wT_(97lHX(GABO*uTU%)@*S{+w@j(C&neb5nUsnhvB}?uJz#D)X
zfJP=glM|`W*Tne)bQ<L(hCYT%BKbf7LFz^_q?&Gp;r`|+#3z1DAf%;Sb;_1}V-Q9F
zGe>eJO`iasGX93)GltI@z6jtYd1J<3Go(Z4hTU3<Y9#lTdN_dhO#X@C2Zn0y@Q>u=
zyTp;sXC|RV+r9*>&7etQ3nDy-yg}p(B3lqo=fzXV6-0K%bA%*0gNO+6uB*97#-l=#
z+(AS$p6CB1sqXwi6bPb95LJUH7(^k84o)i(gql6Ba1gOUEU24VB#3E~<0%wnB!*$^
z??sET)Z#(x8JK=MDxDBPlni38$5kqbazT_2qI3|4JQ-zzC>zAm&qC%;8K=J{Ec3W3
z1o7*~w2DDg3W6l}pSUUq;d|R|=zV9ERQLUB8P`0nYOFG@AmW3l9z=~GI966M)xif5
z7lb{C3e_A1ccx`|GHUEh3mcs-1VQKs!pTU#78yHzY4uXwHG@bDqI0UdRuC_v(i14d
zztS$wPT!j+Gl|J-Gn_Xzt?ush)FA3m4hmcf(t=12qM~A*+A@O33}Q?WV}qz0M7<!o
z2GK2u`av`Z;zT)H^B@`q(I|*VySWjm?k+v}#z8a<;+r6dH(|J-0KN@k`z4M-Ge){*
zal5_|=v&Yhl;LWwWe}VH=67q+tr%$?#CMFeVc0fky{Bl$czcE&7<Od%J;P2xv^?Z;
zGfr7`rgB64$OiilL39sdXb{7K=n+Kf8m?~;{ivB2I`w4uV-P<v(u-klhJ6_J|5qTj
zrK#?pgBTFRKpN9j_b);8XM{K{C^RT&?bk_Ra1fsMIsW5AnD9jPlmn@5x)&QB#N?!u
z5oE3%_>l}pF&rHP{osGBKyH$c3u1f_TY}h1rV_NakfR}35X1z=CkAo+H(?S(B9nud
z65><IK0|yuBQqGz3}RMDKAVv_LCj@j9>e*e)IYMgg+Xh?7X`66h$W0ubUihb@!x`2
z#>ny@{$S*HhASAZWZ3eNbq-p^_-cl07?N;p5bGFE^3&~S*apTohEg{%vYBCATkBM{
zjV7jy!ZNl8u_K6`Ea_Yj=Y!bA_->jPH1C3Vkm@){k|6dmPSO2AlvpPm2;yq197GNU
zaX1L+B!4=HBS9P`yA5J^nBy;oBtJ&o-X@wP$C;#iMy4+yoMeYk>M2Ifzi^#lsS7(s
zpJkG(OHwWbaWRM}+3L4TL0k^veGnglxI#q-5eOm}#NR<&quCL};~=ind=CgWg18w(
ztMV!IeMMrN>sAoAY4}oHZ`<$@O%m@gPSLxJ+++9;!+(Rg&&UIYr1LO{PIUz$Pss3s
z5UFB8r0sQiDbG}QnV!P628k3c78&OY!XLz_U!BB1{^?qH$-ewqnjC~ej*$$Nyk8I+
zO|&QJ2Ce@Vv=$^M&2fM76{;sa;*-oEvZzJZI&FCADjVh);}o6;@q!!+9YW<6h#QsW
zXj&|(=<9^nWalkh6UVsTQuBKVZ-Q`TMiF^Oo_r%u!S`7B7{n)X?=rH<_#DI+a$GWO
zGK#$C>dq0qlB<~`ydLi&e6fKqx0Jh-#V4E<vdh@1@i}DVl=0VN`~FeR2pNHyd@kA2
zx2+L;QE`znx*oAp`12i?TSl~uJS^M1GV;k7bW!+rf<U#+FQb4A%9alAbIM+j@mK4G
zh_TKhGK$JLE?aAM#mI=2F;vDd8O3B2mr-9v0~sY`Kt^>LHDr{OQA$Qd8I@#|mNCAB
ztDKDTGRnv(E2HOS$E`+Ddm2V{DCMHfuqu#AmvpVEkuv+6s9KjCc`i9B%cw@0)l%MF
zbX1|D6XUBg>=)@;09Wo(E>1?AjC2_pGVC&V84ejv8I(jB3hdY$EPt1bc$xNFaZsT-
zO1Nsus3Rjy2Ju=l5*Q(#C?kpS+963YBPk41Wpsy&)F^W;!bO2d<pMF8)X6gH$vBwZ
zH6<aw;VCXY(seqARmp}j8p&uUqrHsAGMZ4Ui@RFMXe#3y87*YAq>d`-`c_6W)*+PP
z!S*?tGfq{tayZ3JE9Kg7$#L$yqqU6hWVB(2jO~`vR)*3srBtIR;xPqcI>_iKqpys9
zGQOATb8-AY6_(+a(OJfU$C+Ja1V_2XZ7k76#`0UvJ-3{DJEwOe>l*E%Kx=6CpmJsO
zrhMk7|0v@p84-2dy~sQoccO~DPIVLh*(si|Owaf}GW583;U8D=6}f(vF_27%dYFz~
z6W3qH02zimoj8Rbd&UoDCDPL0L&!Edr?1&pg5)0`L=TrSLdFUiD`kw7F-pb^nV!{S
zw2Uz_Cd!y3W2}sEWISX}R~!@;eswOao>H}X%C9oETz5=hC3e2<pbRII4cJ^$WK5Mo
zYDji&xazq2w_}=&DpwuTWz@Xppzy42#w;1LWz3hcK*k&yb7e%144+3H^@}sx6-TG9
z&Tp?dx?XWi?(SMBW08#CWGs`hSVqC>DQVSHmaq(|#HD1|52H)hv3iD%D)H61oN~MB
zIC|CbJ5{@S3Xwl#tdg-y#%>v_WvroU%h)Pot&DXtHp<w<ny{Wsh0Ae2%(a0g(N||&
zm}|h_4rj9Se*W;yGA_?>4ZZF#uSYbx?jXL63^LidUB(Vlo)mk!eU2i(NA6_#bo)MK
zkBq%C4#_wyW1kG#>wz*nC}Y2j_0>|Sst0J2CObc>mi$jv+!HRx5k{zWf6*k$?m8-?
z|HEi^lPJ<T#*(%+jXELYq>NKCPE!RG<Wz7*##tHHW!#W)PR4nvs*Ec#q@ghvWLzZg
zA%oiz_vgmA-(uq04Tz(SMN);ht1|wUu{kp5H5uEqYE4_kWsXa1^1Ld&Wm`R8xGCe7
zjIT1n6x^0^hdd#9m@aX5W!$6T=w*LNopwR^N5(_hdI3lLUm5qA@Bu@T&>J7ZM=~DM
z1Rusxcp}3i!z)9i>dAP@j`hj#(>#))GPNVc(gKVGWyoZ-l>|C)<hK@TWbiUfmO7#o
z|6iU4i~i#fvKS#D?Kb|5@#ivLFj8`+Rr-?b!Yk^lRrc2miM(Ott&De!yl40!l=@M|
zC&p=W3R3>UdVt;#Q9sxege$bw7qTnp@TEGv)}$K>dNF#q5J#_Q=?x=&J`|xKmx2Nc
z3Mz<H5T)Q%oyfcjaw~{dkVml|{!iTymsqt%R8t4_RqBektQK+k6y&F)((H|M*PyRN
zo*7jODJZO<q=HfkiYO?mpqPT<3Sty|m{|Q&6sK(CVigcB{-qk>%(OUql2Agy>svJ(
z1>>NAka%eYWfYWGP(h*Fd20*QN-N?9mx?Q=;I9*$L^};Jq{kF1io{h)vsYr**p(Sp
zVOW(RT~1U}P@VA_Aql4-PJx|8d4>YRJcX@AT^!V2M&cFJR51TN7Q9C-1qlkAS#V_`
zQ9+V|ygKsfsI4Gb!FClpRHP_KRq&o#s-O;C{3}?ZV5x$11sMu@E9j#jQ$bw?trdKy
zpq_&I3cgYBt%3#$8Y*b4poxMvQ~2_4g+>aFpW|ZB^S09wuP1V|d-Lh7gr*7xjkf+A
zq0o%gxw(SCDE`qnu7!e@)LoZ^-Vbf96byMI%(}^qsLHod&{jcb1zi-hQ_x<4oBA_6
zrh|e{Hrw|KIw|N#P0q$sh>GV+%;MWG<&-hbf>-$b_c%`tzN><63VJB$so)0%-4#5%
z%awo17q{EGRI+6{tc%Pa75t>2mx6uylPKyxZ@WC!l6TXEzT0el74%auPQiEuKeK8N
zq=qQ?ML~ZBg6!yD-IZfIKS05h4C^0?!Bl?*qZN!%FjT=X1=4<Ql!D<3MkpA`ayVbe
zdV@xx_a5sIse$A32iKEs5d{*2o-M5>pJNqlW6MPRs$hbGSqf$=n5bZqf~g9oDVR+1
zF&tgDOrdIAwCB8GvpW1zc$+)?bOkdNR5Q343T>mzH!JJ>+`ut;C{Js_%~3FyRbZil
zc{ELm@$b3`^A)6wb-J#{bUGv~ux|aVul^P(Sgb%jLN_C}*0KD9k+$CyEK~5ef@=zv
zEBIZ(LCQ+O3I!__Y*esG!5<1%DOjgqy@J&Wj05&H3Lc;5UvA;u<!t|6PG75lkQ!KQ
zO-kIK_D7|$f#z3jNAq9#%?h?qtH~f09GlDi(bm=OYtgL=YVQ`_o#*>S2osy|&36eq
z6f~<T>{PIeW_JtvXBH#d^Az^bG!OB83idO8AS8J*F!qpw!wOC*IIZA_f}>=j3Qo|J
zq~gfQOyOR8_+K8`$pX)o=bx9g83tE6o8u%+>b%b5^&E8uMV(P_R>39Kf#(=rV0d0Z
zmATe(9Ii*gMJ6F$DtFvv1y@+~s)DtLECmW<>Nu~H4J!yLkQLliaEtmx!F}@o3hpSl
ztKc5Z+^n$b(R_y)T*J87uQhlj$oXnz|A%y5*~^9r56FxacocXQJW{Y@v}H3-6uh`9
zJSNB0BArO<DBJdiHj&JaW?86Kj|<s+3j8d(c8B$Q&aT&%DRyv2C^Xy(o>L|YGzGc>
zQ$ZGu?@7*3aG{VRqO<VpN$$+(u&2~}<@kL9Uy6^-JB)iqJ>QTg@{%lyJb;3?3N~yM
z+;91r)ts+s3VbfwdI{&x%a^{%y;CsYELTysSD0k`NVAyyiHh%3d{*#9K~)viRD4ws
zrlP2d7!@`Z;VN>gh*ptJMRpaDDxy^6P?1x$Zn$zWoLa~h!3as#{%HLgR_J5cn_XOk
z&s@U`eAZ?zkBYo13aKcpBA<%<D!S(o3aU82T<AN-R{NY#Km{QkSpG79)@CbInSbEm
zi%<oQ3eD&6?LURZswk$SoQm=)imNE0qNIvaDxMt>pjzuW45;a7anG)9vz1oiAIq0f
zQC5ZLmGI%Ftw3k%Cuj;~Yul=C<SMABsG^dJ)pvxtt70otV|(Wwwn(U=;?B(Y#xvu!
z1AIz9TXhvRRAi{gRKZaZDw3#@D(otF6*X1VQt``3PEg@e@nMVLP~oH!hq=xSw(Mc)
zkmTq#LcEIB1>=ddEH8ZSFC?gVK8vGU!bCcxtb^2&Rn&>%>!?Vhvw(_J6@w0N*IVVv
z`JNwB#+I()QueraFZe$H*ped?2aU5FV_g-ERWwmiPepwd4X9gk#x+#YNJW*u_(5fC
z-M8@GyF$c$Vds9Xsfuq@v{cbb#kVS&QNR7hw@@**7+<|<#EKGpbIR=mPh{tI{=~zG
zslE7^G0qjm_-`xoZB(=+O%>zV;I>oolZsv{+N<cGqN9rMRs29hsiKn#w~B65lcaFx
zSXXBiT~u^c(KAWtc!;laH-&Cj)ocP`(ZbFOmt%TRl8S?uZOi`Up4E%}QH433yZk;v
zy30?Vl-65C9~Hw?3|G-tML+5j6@yj$tm67vZh(p>gZW=n^e3A<!!Pc~&kuJjtr`FB
zBR^2Z=uh@P-|$0Ng@-a+I;bdhTG447og7D~7^z|mh4PM3DsJXa8qIV*>=Ncpv-);#
zX`A}l-nyDFUd68}7OGgJVuFf^D&{iHNh&6*n4w}OHTf^@rw{xT6;sJ7Bz~HT>D0q7
zg@niH|CZy4q{caF6m-yb2D4PmW`_q3+2%0Pt$qd-H&4ZU8shvst&6fi#j>2jfp|XR
zUD#q3OH?dZ@w<wpDy}>)`WxBXsVLg7A=hjBG8J{ZS`(z67`8&iN)_u=tXJv109L73
zqvBSw?P9^CDqrmH?+U9`+$-R?liSg68^4wY=sSMd@brkU_E|aj4JtOW%4|}xzo_kN
z4%=oHrHXA~WUGp8jNF-F{dKrg#V#6j4V^UXR<VbigNAGxUEpD#ihotyr+ic#Q1LfA
z>L8(t6Dm%!=phwHRs5ymu!<vO9^L*oE0_Djj;T1VqVoZ}GK8zy*b(iBJwMqRj#Da5
ztGJ-zqKbyOg)=J7k<(Cdmb&F2pZdGdr&yA`pwKqO7F|&I+}n0Z#buflSNQfHxRezB
z3eC`a{8bvnZ#pbn$jAR<d6;WtMJjI4=+k^xahJM_G9MllGcYZ-8GoCUAGc3T<Lge$
zyhjGsT=++Y(vQEJE3R0Y?GBu+uEso2@sKQ5MV3mNAmgzLANd?IOPc;F23~PVD!k-9
ziaY7+xJFHQku`tBGs`X9&9F&lxPXeF3QdKsLZ<vxsN~ir@b#_<XP3t&L_}Ar5!LSu
z=U1Z3o7}o_oI$l+%$GjOSI!ypl$;)U4;3HDnW%W7;*E;8Dw==fU#fVmVp?VX2!vNE
zXp6!JBH!J|&-lmc%y%mC%;w&!_%y`&*Oi|0lwE6G5Pnkeh1@=!1z0_6<g%2*G&C*5
zpZJNlY3NhLLHuB}P%@p?MMn+|)ihMskW)j1h9Vk@YRIJ_`y*SlhCCV~HAHF1t>NS}
zZrBMSRk2RxbaRkbLp}|KG!)h_^fZ@WLjetUQ)~@t@RO_93TmiWiKn1+=AA$0ptW~s
ztGHXo_!teb8p>%Xuc4TR;u=b6D6OG{2549_l`pAbP`0R-6&;JF36Bc$^vr7IwwODz
zP)0*pvd`wi^5ep;`8Ix!{lcTL3RH>)zCc`M4gH!4Kb_|)QHx>)zL#wUA6rF3Rccys
zzU}4g56^Q;Mq8H+H8j-JP)h@+Ax?u`vrc@x27xr|q(q<L92%S&;x)|vKKG4J_Jl`K
z2Tk5ZN7Zq^tttHY*iM%X2^tbLG}F*rLz0Ht8qzeRYxuO4Pu7sCS(_d7s+pLgA%9E~
zP4jtUg*qBCFY|YgXFmDJXV7qH)@RI_8iHfP>QWQdaTMxls2}1DG&E$qQApBQLlefw
ze6f@AHyXaxFm3^#zk-7>Ur)Y;hL#$>)6j<GSNOf7IOVmgm4?<DJTF}o=#%fZti2r>
zwxj-8VQbHL2ZmPvd}A#y`Abr?TSI3Jhcz70&_zR64Kp>&($G!A4;qHhplj%^p$A!%
zhQ1nlYWPt@FAcv|7OpJeTfcCf-jm}eN?OX#ylqSUZ11gM!Ti{?ul9b_b`8I1=&xZK
zoekZ5?!5fPw~p~;Z39>}25WeGoF7P*pyBM(gje*X#6e+DUdzshX&6pLXqcd3gocqC
z#t6b#BB%IK8b(u8gC_8~yISt3M<Ls#57zVZaT>;Jh_>_6r?BuaN1?;Ei5ezR=^Ccf
zAt{c@8m4HNs##YcUuN1~6i>YQw|#bLzSW4>8DuBb1@h{*Itp~<>^~VfTf-a;+coUa
zFjvDo4J$OP)G(hKs9}kQrDWbu`Gp!5X(*%f`R8#vciR?gpfG+te|rc2n}%hi)1FT(
zW!qECv0Ovjc;R;qj&l6nCn-Nw=6e@+{-I%&hV>dYXxKJSNHzJ@G(j}1)v%7Nk@?kW
zrJZ$-@Pzl9XKd84Ny8QmTPf5`ff3f9PuWbJ%v+bHSDXEB?WS!St{mXb>=1Tp*rnkh
z>+szg_Gs9rVL$cBji|jeAKm=)Ct)A=2;H|t9$-4Or%dxlLOff0oHG2A>Q>iwNQ2bM
z8keIQ{?Z_8v_L(MX*jOowuU<zPLSWwaG46#a7x2z4d*pnpnj<CI772$G<S}iz$4)-
z!+G&M-H2_!XB#qu+clQIsNs@^zhBsk=d#g0O+7w_U8N{>^_8gW8pdAY4;|%C|H)k=
zV>rjzqqE)6a8tuAGQvq|;zBM<4qJTP6`7TMSHnFGk2O5ekg}csN5g#$4>UB268@zk
z9`Ur`^FtcVf&$%cKhj`~;>s7aH5kQxa@af?yc&EO{2J=c<wVvM64jx4j@vwQt)*-M
z@?h0$sjc}S^}ts<omuYY<h!_XsAP&7K4|!;L8ojrJlF6-gUK?<((qJ6@>1)L{>0_*
zXJk2C?3AnaO?jO2X4qb8ctvhR!+Q;{X;3QjZ`o0AC|ZI?qLc8qDVA*~KClfL6Y=vN
zJ9X424WG$L>d3C+i-xZnY&ybq%f*H182K;f_-I`@|M?}X)=aMLSZA`#UB6(@p(Ce`
z+&ZFlMCiz+BT7f9as04vgh(A-&sfbQ{#`K#t*|%yY1rGlc3SrKlAp_?<F7esrxU~T
z>nNb(pn*RP6x2~jhpxlWQCLS29m92u&{0%JjE+`1TI-0_QA~$Zhf7Cs9VK*B)=@<V
zbd=OlPDgniZ;JD!bd=U<27!L=2>TKyKeu;TDwNgHY!*MWXp&<>ntdd{Vl7ueM@1c5
zW^$G2Q4IU$w#-5PPm`;vqnZx84qnH{g<N$VHFR(~eryy=Zl}>FzQ%AaPRHbu&O9x7
z`d>-VQP$7Zd&@6dmDzE5tV2h~ib9@7e7ugDIvVI`sH2vS1bW(|BUwkHjyp#!_m!lB
zp3KD63csX<?|T$AT(WwMLJI5oR2_8~Nn@DKFoPlKWHM5hVLgWRb*%m+nUWgmXslbV
z`&%7TAM#CfG}ZBqj&8Xf7Z(cZCT>HVZQLimTLW7&9nE#L&@tzhtEG+=j@azu1^Odz
zQ#;|VE_}zbb?fM?qm7QXI@(c(jOIG(_+CeQ9UaJEmIy*i7p<9aSa%IR>F7ktv~AgY
zep_DazNQPAfsTGUex}lO{6KxE<0l>6X=FLRhmM{)ZPG1#{E%x7C*+HaDZEK&^EO+7
z=(t`wdh6(;WAJ3l|GZJs`s%oKnp<)_y24rembZ>yboAFTM8{AvjI;az9fQaSI}00@
z^8<DKe%JC{IP4m%<LKJB=EX9G>5%60gSH8YK6}mDjv`HLBXx|@u}{Z-9iw%O(Xmp;
zA3DbB7^h>dj(Ix9>-d!hTE`T!B^?u4hfLD(bOYBt|Now)xFW4lo63^tR(Ccd(-=-?
zID_F#hO-!IeRGrxa&yRHgWT4}{Cph?bo{1cnT}JX9Sf<SyE+%^I5Lr2#E>>fTB2hq
zS^LL?nj@U0&+s04OjN<KoLWkwMon1AueusTpAhF95<5WS$8?EYMaDq3tz)Z>H9FSn
z*q~#hj&(ZL(}=v}Z2bhfMIGo0r*CgwJ&xM4I(8GQ+h&@8brS2<u`ZIEC53O(v0cY*
z9eZ@_U<$i*+%)+vv9_H$W)BmN<mA1pV#QUld5Q@1DsV5=^KC@UTlTaiu?J{s>$t4r
z3LU89kd8At&gwW!jnZ*K$4MF;as@h$={T;VU=FJ%_b#;-W}!!C7ZSp0BZiAha-5=x
zKVRrLi#x5;`WW`FIc={iS=Mz<$9WwWbzGtvKI1<><S$sG96t1z^*E(|BO&Jzfu75e
z#a`9%w~o6y?&-Lu<2p5g%!&GK4tIkr=c2G`ppEuKtF$umwvGyKI685+Yt7SsOm}o^
zSEk6q{69MW)gkM&#V79Tc%b8vj>kG8+w&W<#q?<%|B&o3Mz~nU`7n3f6Phfg`6db3
zJ=D??yqA2`7rV%ih@`{ExIZKb=m;`SH)y2ru9l$c(8#+U<Y*P>^v7XUQk{+K$C^5_
zXd)Z<*1%I8&&b6YC~M%kju&M7267pAspFN7PdYx6Zy{%><2_9=%cBZ!Y4V=q-jNkm
z<i88pHtpd4iME|Q!hIy$yJP<{)<vIV#gEJJMaNeiHUr@X!VG+z>6*kIILt|KMb5~P
z&A`g(LUsc=3|ziwyT-*1dY6{dK%Odm%f>e1UndBW2BHka8Yo7NomT!K-)^9gfoK-Z
zW1vJoYoPNQ$j2o48Iq)cLGL@Pb5mghMGV9k==&zYOm`GDpsy58Jx!xOTZaUAPRlGd
zGPbyZYC}uFKuOBb06oE`FT2Wbx0Nzb+5jIf9N89=b@qQAwdKdKat6v9sA-^<feHpH
z8i+GsH&DqyWy;Dxb%R#<5Js3>6$4eNby7t3;||AKuG1H5F4Qnkcd~OuH-V$F964$S
z?9J-9c>@AfV6M$&AZax3FyJ&mcM~yf;%C*3O?}FbcZJ6rDECIl^QUXy7+ZpYL<1QH
zGD+V+Z38I=QVq}o*U1KEmv*dJ#-$aC>oq1v9o8pl2GSXMm1^t7z8j?PGwc44tFD21
z1{xb^VxT@#XkehBfl(#@*WTZ<S)>t5`mly8Q`4GLuYVGn8kqi`8}%lvnStg8CK;G)
zpoM{!27aWP8)#*qwSi6s+y=g5hqp7(-k|N3(bmApyIk9v;q)Msu!Dh)2DVE=zdv|7
zoqca$KySWmXWP!l)*WtV16>SsH_(GhdFkqEpqqiw4xVnxD0NC+;Rgc=lhTPi-N*Md
zFhbzz5{tG=Q+C*T8R%_bI0+5(Asa9-#K2HinSKTa85nHfX9MH%Tc?I!n7lv30SpH+
zBtxPLKT^2x8y6j6`=N;NBHA{Lx~PbgKI1Is$}^I<fw7biRg4T{iG7TL{KNSh(_H13
z<enGCdlPKq4g6|gB3bg9l!l)iS%L5gEc5O4t;d`6Y%|Y7+Y|#+4XmJfVPG0{uYm;y
z78;mgV5WgNL`DfS{^qwv#+A+|%%V{ygZU74u6+A!b@;gk9`54i8JJJUs%g{8@DJyt
z^{wMxWMHv@r3QX8u*AU5FT$Z(@$@V@^-0(w7e8vReHqzIVc~ZJQa;;qR;8X(`EzHu
z#UI1|FtEzNRs-7%tTwR5zy<>w4Xib=jz;-<%zCCDe$KY7oMj~RWc&T=u;`NfCIbf-
z@LLRQCO1+_ps-;iPygiJ*cr3kzzzd@4eX=J7<jjzA69|iZD5xHTh2HNdzSFCqxd}r
z?iP0rxx??L$$Qy$fE7g7<jVzHwnbK1hYTF10X5Oj#1R8W4dgYE&%|E_jv2Ub;DLeT
z22QX8Z;-u_(};{bW8kcTe~<I03>?^PKTVV3zR;p#u5$*?8@OWNDh*r-{(^yv1}>4|
zIrvUO>}8h8U$4V5C)wx;#^tT{mbLi54O}<y_+!!T5&ShW^5X&*!8fYpxDpe7)4(lu
z$ZcwcfqMq-7<m7Tqf6-4rELFD1q_sF$Sci+Eyp<L2;0M{Ttar+L-Ga&-cp}Xwg#S%
zH#YFXfX9H>fX{&6K>w#Mkw(hEt31NgB96Y-ZL?ePm!EKZlZC?Na|H|psoJM`nQXg4
z#xuqh11cjLLrT>dF~~!PBw36+W%we4r(>yyUs5Rs4rTDK4V->2%v&y`eiaTa%y?s9
zf-6U!Iw^bWM!Yxh!N3;-U&*~2_+;QSYk0-AF)i-#^S0Ppd~%V=?dvIonXsA2Wg^l<
zxQT2ga+t_zBD-lh_Q*p*?#LMWjQLLfxQ=7Fd#!B|Og`zk<uI4L;-gGNo5*7#w~4-o
zizXknUPg?F=5IWRq&rR0$#0^7i4+s5CJLG;WTL8xY9<PsC}N_ti83aNnusw06D3W=
znkZ(XxQP;^FkE<b*H+=2b+<mU8c$b--ono9&#cG1rA!RHp8cYe4`*ktvL?!zs9>TZ
zt6q5%?+Q3uRd;otYdf86t3>Up!&f#@#U!W7(FRFbP9eR8?fRem+fugbCTf_7H&N3B
zXClsoV8UV2ezM?AI2#HB&+xSCXpQG#OY`J8J&tplXcy#O6m+;u(6pk;6u!;>>$24{
zkw8VP;cJ_iT3SdnF^zY8pC>VinzK?UR5&SqmgP2+Sq=L{+3J``Gtu5e2NUTgGE6i!
z(Zob1Q)pnKp^3UwVd~qd*34?q(OKUF{c(SwmC%Ulur&73D!yxH{?|`jzS6FyCcZJz
z+QfGzzBSRzL<<uwiIjD&_?a)i+11>{#Z9gjqlCOQ`IvWMUfKfEMAwc2kv1mEZnEmu
z*2JoaxPx(4aqU<&Xsv^eCcZb(&BPBTI+<{r=t2jw)XpZ(MaCUE%+ZUO{T*$k4W4eC
zJASqA_z>2eDg0>SC)0Xz(u15p>x`ac0HvG<uUi*yy-e$``94goH$x+T()>KuRo~Ah
zelc;|#2pj;O$;#c2UX0(Kof&Z%r-H{#9$LcOpGxxmMp=<FcTw9j50Btx-l<5!bJ7F
zQR_rOd>yttDSUH&XI3jA^Ng*;XkoO8y$$$$@p;CX7*AtlV!DZ6O-wK`$;4z6-817S
znz*u+yXB0a2m9To2v-t>DJI%X;HR3HRmb`hWbs>pqBBg)G(pdxHY^a*#{F--zF8(c
zvQD9Q6LU?>GqHrCtabBEETrKxv4F;96E|xbx2(M__N0B;2KyE#znIxG<@}q8WhR!J
z_?>DsE1e!z(+k|klJ#NU3KJW~a4V^*?>P6+*wmYXzQVTJ#2U)q#32)FO{_Dq%fxOI
z>q*(f786@dY&5aS#HTBE={cW2o3PnLL?PkHZri8_4tmwN&BS&SJ6R=nkm>%xQ&@O4
zrsApe8RgqcwXExkJ=AF?_M13Bo*_T~sjg$633}rFx=+-BbJ@5tT!9-l+iiLr3blUh
zk(XhI$@!Z&ZQ_hc8?_5ZO&l|EoX!F!?)P=k{y`&G#GW7vug9M<(ff?;?|exoX~cW*
z`7Utu(Pr3(qG!ppOk5zNHBsq4-yz7KXEmhCwCj`W5@l;5tb}lrMvBR=GJI7msYMaT
z-;7@i>0f8$hWWoMPh&BE%LE~1b=Sl_6Q50dG4YRyf2sZ^G^(VD2PS+b{3afncx1w3
z!b{ydjx+gOk4-!=>1Qr(c`w`D@m%TLHa%aGNC$?;NK~J%mT!FY+P-9t5HJxW8(u5O
z<Y5ZA2CWcM8`_r8DaNF=1?(*@TaO}js*H&@Cf-sFO=OvPNk(O&V>bS&iRUI>kTbmJ
ze8#ZwX5ma9*Pu>mH+u@gJ>fOw)7$b+v`6jIx7>sGVeeRDKbZJPj(r*b-o(`}MYX)P
zPfVUYfiGAvo(grHiu_6)n1#|=D3b+S7Q(YoFbjpUkSz<@vk;kus4V2j!kgSe&MZV^
zSx>N!_RWEm?2%{frN;8PvXH`FYUj>Ebe46p$e)EgS;(7(^l(SMEZj8(dUQ#+F4id)
zPuf(@xo{U>APdQP_$r&z3TL567D{9RS)gr$ie@1;3&pam4R&L)FmoQimtOD<=C*IQ
zd{OZ%GHm-_Jv!XE<}8_oQd#I4E4<nr^?|nynaSTMWh<M7a#^UFg=$$SpM?rpsF;OH
zSy(!aPp@db5bu10yZw9YQyX773sp#AL3~ZkPHQn;7|&PFLX9l&SrDj{PaKzpxGdPI
zA;Y+hW5Rx&DV!c++dYB5kjM5*KAt`Rc4Xn$C!TvCoZD!N&qB>C+<AfjW9llPq&T|n
z&Z3LEULa_I&^z5Tv%oGatl$p878%?v!3pjTA!vfTyM*8x+}$+<0?bU0^-K%=uOHu>
z^Pf}ao?EY8SC_ncZPiuxyr|+rRcbWZoHritLV^oVTzKk2HL9`;^IiCrTFiwSE{u0!
zf(tcWNOGaQ3mvG%Tu5=Dg$qBrkm{oUg;CFi`c#s7akaT^D~R?d`BUn+P?xgJpCUYU
zbQ+M7oKB?wsv5Y^(1jh1#YWV9&#m<PNn?(ZqzRLzjLlqV9+B6|Cbo2;l?!Puv~xk(
z5nKIeht|}~kEAv<c_}KELR%NU7D$ZSD$Q9gtT`_<a0}-TTRXbobm12lM!V3-h0ZQ?
zb)g%z_C9MDvXG{Zi*9SV8-nwta5tl!Rz<jV)z;mG9xn8Bp_dE2sh#&)M=<tb{K<vB
zO!|=pM%nr^AHX<}C8R&dg`FeB%U`65>#aX?(qP6RE(~QdjFB{lQww~Oh)@{m0)2EI
z#Ys~?TF1CB)`d`3Oa5H3G}(9@X)cr6tQDRgPJXvNX`&00T$tj*`7id#F4W2Bp!tf)
zS8Y+59K@%(FwI4K`Xo+wVWtbSTzFN;F@rHf0Y}FrNwZzp^0#dcSzuN(I+vp)na5;E
zCdUF7exng_Q+!1ExUk5DlP;X1zV2gPOgc=Kkh!|Bj5*2IQ28VL4<^eQS1_)0VHK0r
zjHEx>FA}bGVI51>Gj3qq7}43pWHaN4yV&Z&HW#)>Qui_0L9HE;>|(N;agPgoBl1m$
z3hs~a11=nN;SgCVOO7%gX8eos2qTqk>Rq$G$2fYNM*9DgpN{YwE}UV0mhl|pc^Cd>
za>0cwOemj=OfHf4U@|>VRuWRU>cX{%&h<#rO(wS(Z%0z^Fu6<p5|P|@;X#ByBoA;U
zhBBmHd(3@TEJMX-E<AU^=Z4>n7cRUc`*)+88?Rh=O=H%L`fj{&;Vn%9bR*7<e_VJ+
zPRWfQ-1ygp_cW-h+cUcH!G-_GyShQYH66>9{LuxK{9!}!lM596?1GDl+XascvJ3Q5
zm*id+5(!cnnENA=0C~kciIk+UBovW{Ia`uzG(1^oFn(qH!uT!oC^sx_M7u#kl2AzJ
zHc5I$DhU;}QOmeYZe(^tpJ9)2W1(P!8(G}Q>P9v<vb&LwlPEQZ8+n-Lj7W01kvqc6
zbdM&Tyl%{$EfUG^MgdML=tfZ{g%}G*^ozLBcS0g*t}SOLEXMNUZj@m1of~DDlw>T$
zSelWP%eb*`oOvvTa&COj^74_?3U1^~k|?Q?+x!Q??glOND!38rhSd$x4ap4~)iG~M
zqnz>nm(s2!iCb$ryJU`Ek<+#^bA0|1w$4`_mEEY~Mh!P=y3NVz^#4&+H{vOWhxP<&
zoJZoS8g}B<+^EjNL`IT~Fsc@SG;gtx<VLa^DQ+y?;Yf9(mK#4w3B+r=vA0BG9XIN_
zasItyTB$gtns~OR^F>YP_QaG1ZZveGnH$aBXyis?w|NzA>c-d}ViPx7<dOafwynC-
z+%)Z4Hu3R!;m8=F1(nc^4sQJDMoTwZxzXB<G&fv3ta4tlekkSet>`vxv~^?805NKW
zBzjWXxltycSooko({DOb`;Y<DaCC8_6B$6bYG<l-7BO7YNjx^jM*N~T-Rk7{?r!vO
zV-9t(8$I3V<;EbYlpDRdkbS5_$zZ06JAM&peD!mK8lmavl>TlEaO3AI)>|i}3{$0n
z%v*d(`q_=aZcKDzyx%s&jiGLgb7OS|X_y<s-5BM@FK&z=;U(KhH;N=VDG(>DoWW5k
z$vN7MsvQ!?a?%(#z6l9Q;lsnk@or3@A^9+o0!@;f<VN?Cwzt0tlilWDrBfKEGEQTh
z&Nzc{CgUu|*>2QZ9!H1Fb7Q_6Z)y0u@v9pP-1y6lBW_v)0Sigfje~A1a$_;sOp<ex
z8%vn1VkF5@H<mH~JtFyo$#OSVL?kPz%ylGErm&iYYus4NWF6!Bh~@?+8ySZ`5;im0
z;>K1twlUwsNcn7Mvcrv?5y>tlyBV{`Chujkk8wXE9X0k&;)zP)A?j8)4!c48#Ch``
zfIi%pFKYjE%zBiHdcb<ZjcPA#>(*P3k*TK>k5kW%P3e&2Jn6<MH%_~8#*GK8LuzN;
zxar0%H+|wakD_qijlbQvK)%S0OKx0e`DMnd5uGb;sG;iL^slk-VeP~lOuj`a={85p
zAo&iHyNvf3?=$}IK<1C!c<ja#<}VqaGCpH`&iI0navqwN^osdw#y5<k8pKf2J97SR
z6j#mXf^D0u?<w2#;%72BH~yo#)D%Cu@yU&+-s*Ha8nsWHImki8<%Zi0j~lWZUNWHv
zLgD+i0UvFNy$cXh^y(x>z>T0AJ3QFwf#ODpoR|lLJP1=$Pysxs?tw<WjvUnR4BZA=
z407*o%vci@=fPJuqCEKCgJypU77wC5DCfb$$wE30(tD80gWMiuU`bX+O3LU#rU=i>
zB!)4I2e)cVq>zoH*%@;%=47NKBb=Eqj|W9rk~bpH=RtlC3UIWb2ZbZ@LLQuYEYKko
zig>VPteHPNDCR+N56*42QnVB+m+;`b$WbLdpxINDRGKAaBJ#47^Pgr`3pa^rN5%3U
zRN$nF9>hj;eqd6GQD7Xk!92w3fyhyb(Z*<Jq*Mnr-D?Mt${tklpsEM)9`v4?l;FXL
zB<F%8XUz80e~MH;sZ`&Q<V^ISh6fEjSYE+i(}U*C&A$oidyqs`=#iN0K}wHAGcZYI
zti@Q{gE~y=GLlX`4}K^v5otijt};#Q`ew0_2aP@SvsGLZ4_bTB#=}<x>S89O)7*m=
z%ztET8IiYQ@~DFOzP&B;J|3ib(2jERpo0fJJm~2`M-QAHbn~FQ2c1}L>W=@-9_j2s
zmq>11nbcjEIQC@}g;%^&Rj){@>Wb>koR(;#O;7qp<o%fR_h0}Mn%8l>m-v$hKYK9F
zgYg~=_FxFLss|%I80vvB#$L9xW4H&yD5+AR3@-%w*(X1L<$w02>e>C)QPdipV}J2r
zG>wQAiDNwG@)4`v2xB=)pZG~Q!Gnn&Eb!nr4=OIUhsxS%#_S{yCVR|P>84O`_OeX%
zV44ThBjudWWQGSbJ(%UeY>v*2q|RZoxM=jeh(!4(>emQ=**62-AuRM@nFqhqN#R(;
zxR`N?2TPgI|96!12ib`Sn+{tyF|P1nEt8esgomxGn5<@8!$^w&tc#?s_h19_jgchE
zYBTdKj9VE=xQ)qnkNN92MR$3yo0`Z2)k9xhv6n`-2e&=g=RuSGnf7~dz=H>wk~^)I
z4tj9NgX<pL@X%We;ZF~ad2rl=8F#FQ8UJED;=xfSe_ysz(g_bvdT`l;fGV8w;Is!9
zY2bX4D9|Gty<<7U(X))_7|(m~cSPp`c?_48lrOP_x|sMC=2s&+*O<gai8skSlBBD=
z|22`<WwYJ!;I0S%c<|0+u6}mU16on`i3ejZ2=}R8G_F0Ee;`rH9sfGN_{amo#~zeE
zA`*G(!7~~HlkCqu_&3S<#)B6gTu5@hq~aA%A@Yi&uNg_9e4)g*G>F1giO{##e?52~
zv4q2UY#%)M&x4O1eDWYj!|kK}vj>md_ET<qzyp`*D(!9$a(uFTJdi!`GB1$qBuR9#
z)5lT2>80&-EJ^4<N>V%saT4+E2U0Z;bn@FWGRrVL_(E=>pd(twR}VfHag<MX&iNt`
ziIQQFO$i11bt|20x{j)4r1UZ}$f$5Z$S7m{P=R(jquumkWL(RfvB?j1!rN0seS$Ts
zjBGNp%g7<)k&MSOa>~dhW2KB$GIGnvBcrN}co}(R<dYFA!zv@ci~=%>$tW(P+j*hI
zB%z>;LNXfJQVPo`Dg!cx#l;no@#30ea6{WlDLGFC$0a3+Zfi@(D4A+6C*yk=-w~Hl
zN(L?OKnpvRl~I~`8QEMEf`qBb&e!j4v|K}Z8TUGil^BUskWrEO4-rY~T2YYcFD-#m
zQ%*|vqb!~i=59fv3`s`&Y>A~#*=%&KQ#QK{2a`C)%8ay(KozR>qY9*uAfuX$u2eM{
z)n)TPoklVm%SfdBWz>|BB-7+`TLT%%GE!vJl2Kbms*I>giB~;o|I+)1N{M}9Gt`ms
z?0|zpeJa2gdtDjzSmI1}ev>zDliE<m=CZYhBs;t5Y0r^Feb+=rQyI-<G?($yp)4I`
z40t8Aknu|q8%@CeQASG{tz@*8(LqMpF+v+wAf1`*65BFQi%8lrY0t-!0)_mytxg%8
zWO%dKI?L$7q+0O;6s7zLyUXYyV}Xp{Wb~BLOGbYgmuE=5snHf&`qCMtgg!Ff-m&((
zWi1&ky-BwBlkp+eUT&*nfQ*4M()Nmj$Y{&j##8xa{48TI=P*LXNEt(z4`m$2IGmAA
z@qAh)!e&dwQB+`R@ZOmzN@28&F|0F|aa=^d-4p8s>IfN=STa?{G#Qhr>6VIg>=YKZ
zJ7=HH<iM4pb7jnk96M9SEE%&oI)|~%jm+eP>2&iVI`d`x8sTjZ7NnuNkO$ZAG8V~L
zEMp0cm!u@J(xr4#r7H1dY`r9*B}D#^v0TOq8T8?JTHXXg3b&@Etd_Ax#(o(GWUQ63
zjtoG?78&bll+CnnqMX->r#mEXkU_Xn#$kIbk<mz|XRfU>s<f?0?r67+Z8EmY*g;*a
zNu~Nn?~<{T#^yu&@B8huZrYyilWGr(-opjnE8|t|WD5J3&{iM^WgL>}w*_1!1v-U{
zOVoPF<|mTB=tZcElQNFTI4a{9S;7FvrpnTB8AGe59N3iX9b`sNQSoHdO=mwVqyBI9
zsVVm4^!76{`s{EJ`LM)(PR4mMj3p-jTgC<E7bB9Wh4#xdpdJW0%h{W)iM=M{Iv4d_
z%PcpT+>~)kM!(1QnXTh)%eW)sJ`JL^v3F(YhlSeh%*%11So=LHXRMthMvs&SG9I!H
zCAE5Ie<I^4HK`W~UObcWTt>7P>AZL$<E0G0i~zNUjMp;UGJX$Ke?xBVJCTlck$KDb
zhl}wsHI>3U8UM;4@}BVn<A01F89y<8W^A>=N}ArUQGFh#dSo;yo>it%Cc`Jw4m+un
zU#31tc5X~|9#3}G>5?f(1~W_u$x!%o<6N{lrTFQ*6qcc~gnC3{qB9zdUl_kKMtMz#
zZ}DQqMRP~R^j>7}qJS3#y~u6YGJ28AOY=pAeO_B8FEV=(<29F-%Hl;%I%K6lJgXPk
zyvWY-0YmL1%n?bN9Fviv^wg7^QoYFQMV~A7kJ)1Ld6D0XPZ?9%7Oxddc22%x@9DD^
z@}ig*#l0x(#Xq^?DHQRdXoQ1Fj=voxy!g(GGRLIKUX=8rlot*!{oRmUEhVwE7p=Tj
znloI+i?Up=a*S3lzW1WM7Zo^4)vUy%q8C3zB+72{hF0(*HX>QjJ6dEeMI<&RcE-&o
z($h)f_|&xHPZbuXx@}eIEN+2FH7}}ralng%UL<-^!;95ktns3z7fD{U@uIEQyqG3?
zQOAqDikRZX>#f$xlY~?+YI#AVHsicY(Svshb-k$PMSU+CcxmSmd-}<77i!xZdeO*>
z#$LR+D^QeduZb5wdQCfT%1ERclje*q7^9X%w`9_au{9%U)-0Ho=0!W|{lmgbi@m)U
z9lV(8#WXKEdg1h91T~}2*2#;`UeI4TL%itXMOQBdcu{+gwHsq^Mv8X#qDO@HWYWuv
z$M>z2)W?gyUYcVj67R=J{Ue&g-WM3id=TSL5&6$d27Ar-40IHoeW(}1xERA3NwOz8
z+ej})dGQM?k7pdsIEHa7<2Xjjq-L}96PQnAoWwXek~+nUZo36io9?Aw67ZWBgS}F1
zRiytxX0pyK#@SxXVKUc?1x$)&5a)R@pE(`=E7@m)S!SD8pkHi=Ec9ZL7mHb83F9AL
zEM>Bc@pnejeAzVpa^@=-S4QNkyzu3Akiw=MmbG4N_F@ZJa&p2tFV=gp!HX}C92?2%
zUO6^-G3&X##_42|5V<`v(^fC`cxiH!u+59@UNjqI-@&-si=8C-Ansx$LbrL>2iQ~I
zIQDw6&r365lAexD&X?lcPa||}GVw!X^In|u;=C7!sQ@X?lU}s`P56sO<tf_{Mj}VO
zIL7=q;|azpeAje}N6l$3=w_0_886N<KjVm{=-*yk@Z!1`$(dp=dU1)BufL9>)p9O-
zafO_~4+#_&R7$u?L&*#81UvByw;UwA;l)iaZqe`@)sgTvmHC&BbyA#nyy%qTBtp^q
zUOXT_7DTQf9(wVJzUBE*)sM$sJfZIPVTg}j&fpn&LLc(@@SL2#7oWXwdGXSVS6;mH
z;$IrJGyrK7jI{iwSYK3-emBgS-fziYQT`8vt+raUT6kJ{$9pe6auq1`0}Zr6h5jRd
zxK5z=#w7XVMRWe2#qEX1i;O;G@<FCbd0~**uMp`qwa<$nbp$z<%&~qi0!)aXIBpMl
z5%xkS!<!(gWU*({Ycz5*i4?}BIG^6L4jmg8eO-K8An6OW3FT8PKFWs-K5QzNMt`+f
ze2DhZG(|BTBa!q>Y{io&9CEBkaaP-H&FsU1ah9Au#Q2cKhwaY<+Mp_{57~Tp{c~b=
zAFeDHbNDc2syHdZaWKV6QJQj@%Ll^I^Mt%U<nzJigWZSxJ{0hgGeLPD3i{A{R$@6H
zsObv%P}qkeKJ${)Zd6JcABr*uV=>0!j3pSq^Pwb@Qa+Ssas!q>>sm~t^`A+SGcnlH
z-f3MbO+To%(OSW0K5kU>;Rhd1*Nve-ty;;4SRbrDDEqB~4^Qe#M0!0=5q-Fq;v^#Z
zK!M1Qk5e2z#QD(5ht@t+rn)zmQhli9LlqyY`VjBKtm<M4HOQN&1m+a2#-uu9B4Z84
znm!~kA)RC<v^od57yAFAwhwiDXy$|CN3pIC^?YdPLnF$+x}&}i-~F7}fZLqfnRvql
zM^x|R#y&Lh(ch^cZhL8`9=Vh!kw}}L6Px?cf@*g#`9~jG`j9px@necJbE=a_xgm*d
zd}!-KPpTl*_okS}&Dhn4c1)-l+cW9F*pbo6*om<-V;3K;%`oRgQRwDFcORBqO76i)
zBpKMuLG9ezho4!}$A`W?^z)&=4}*O8$%idI>C^)I03XI&7YCAjft^U1ROi{l_P7Oh
zqi;&ZQ^}N%B`=2hFw6(Thc7-1_t73GIO@YOA4Zay`7qUoX+HeIXPMx`L?4b^mPS*y
zK8*EY^_`^Zsm^gejQ62=s&mg$`%)=xa?iNx@1)!_?2~+$>;tVhJ>~!57FyfHhZ#OB
z@?o(L9Uh8#a#Wv5o#lgNP0VZ>BR<UY;nFQ(jt`A1B+`hO??a7+$rOI`;aBEGn%fsp
zhvqYd6c&=@bhQ&%;=@uZq0hWthu&pb=7SoS7GI&@?>_wD!-rC-%Y9hq!+IZ9aFiq~
znXF=5?ZcXgd@U1QOx@taMj!TYbQ9xt#?6dd7`HM~ZrgnH6)cqqg&i#1>BFu_>TVxq
zO8-mU>%%@D_H)t!YTk&>K_-V7>(ol2d=4}J%ZG*O;wbv0w0)B=<8dEO_~7%wPXleF
zc+!WDKG2k;Q#1^HI77u)FZADS|KP*Bz1Finob%y4cjDhZT=(Gy^9w#)q^9=aGDoj6
zl2u$G8^~#n_iGW!{a-WO^x+nHZy%od@G{DB+lL37ddG*mWarH9NAxGM>2`P>_0We$
zK0IdmlSpd$$r)%OBIW;_d=v}cQl632*FL<8@W1)j!Z&0;`OVo=|4?;&_?J`PM|5(y
z&0&)EE{f{=pAViF$wWR;sg8=Dsfp@JE=D45N@XrHdL!~9#T~CZO8quV)%{TcAA&y6
zt})>fcEyK~4@AO@>Nj4(uKA!dPZA_b{Yoyvk34?l^~2&vv>%!L$n3|x?=9*47{53s
zy&qX0+IH-<X7HQeMweExW%OgZCipAbGZq(P{K!HIe$z$M&VAXKoEahI@FTk)u@^+T
zoY7A-IsM4xM`|bW-=fKbQ=Pf}NY^NyqWS#D?+5%S<~R4&p&ud&__2Gt`NLpAKMMI#
z*pDyA5{obv^<zP*Gk@LqRpn|GSeiQfQ&MridCy$Nj}m@-=f}=e=bv2@OZrjDkJ5f@
zY@bNcGb|)t)(@J&QqGU>{U}cryeV4!=Hj|UD)>>6B|k7$VkEi1B$jbf<LJtZ1<_Cc
zT7!s<k%-+7M})_HBYx1cKPAQck>E#C0LcMV^P{>S)2QkENc5wIA6@+D>PJmd@S~X@
z&HYIB<Ja`D4g6?)uV4x_mmjq#tL*l6YhrRVNFh?2qjebT`caPw$?Ma3UrR(9`q9Xb
z)zy+3Qw#66HlbF1l|s>`93{!a(pg*h@gvE<H(znL^n)hnwDO}hlX5*AZTx8KM|(dy
z_(7j4()^g4rB*vXCT&TkXq_FYlcy%#PjyxtnADMqw=XG}>U8=cj8E?5M`u4M+NeST
zVK+az`!U9ku~eQ6QV+lR9MPN2qo*Ie{4^oW_IQUx+bj3+qpu$^qlA8b^!H-`^KDt|
z1DVhZ{9%3!Voo|gG5MKsupdJr@}W%X#~0c;Qyfl~FjE}CIFfOcAHOge%~&WlniR&7
zdHc;<&B<J<34TmuvaxMeGQS49t&{vXv_hDBQ6x*4;>T2KmbJ084IS+~IKz*b)T9BV
z4`7xbv;FwPkL469*!x;D&7nr~W1b)L{Wzssmr}Qq>H4wIk41j`=Ev8bRVZv8QuIW$
zRIOK)#ngahGgQl(xWo^_XD-L`7bzQDj%9xQPL`QJep&YTiPJ<^L&plgd0(`~kF|cR
zB*XhrT*bJW3}C&TCaG2)mP&<R=ZEfx;m3MEHqb!u<3Q!CFa3Ds$0o8FKeqU>)sNGD
zoZ%{O^JAYM`~BEXolZ@}!rhFN+b$+~&tOkPve%CWcJu8bg##q?<1i;3q!x?lB-|_b
zSA-w)<A@(eIr`sB(|J}LnCZA5Cs=Zl@f5j;TIMUG7i-O&&-!uBkB5Fd;?(ngT=(OK
zAAkFC!H<h9yzIvnCYQ)^vY5976t1%5njg7un*VNe`peAiCYd+O?^BO6x#P!OCjQ6f
zlm0#CyMK+T+Rr@d0Y{0P+Gwr`@Ys)MEP2BCG?JR9cc$kN{({L4o8`41Z<q)Dc+2EJ
zKR){L5A%17|1!S!;{%hNr!!G=(TOO0Vu{T7nbGBkn+c_Qn0%|6*AE{@{fq&|V&%>H
zD$I$5n1mTsMvdG~4|B$;(#igXyjdr^t(KGcS3jZxAVR?sKs0korD%o#G6wK{0ObS7
z6hO%>LcRd<2aq{{m;kZ_kTrl@0pt!KTL3>!jmr^0PA1s{Xj02bk{<5V{<WMlYdP1|
za^?wO$+hIX0W`mwOvGzRBVol*3XQTmr^NyR6bztH0EGi66~N0=iA4hNE)pmd3!o@-
z1kiuBP_J*6Z}Q@-Rw97!IJIN|$D7$HY4AO3>43Q?H-$2k;b&Xf0Ln!q{qJ?C5J1I%
z>7C+Fo4x!)0FD6S0;m))FJ}THkys|y07NDdqm9wdNILVISt<t*mDOG|V7e3{RRXBW
zl6b}hMv_+xpgQx!h@?gUH*ZLkM1hV?2_Q9qT><P4pjH620~i*-@Br!rP?s7lfEEGN
zqbghM4FkC7l={?&s~<pv0CwJsCf-&`XcRzWF4&J%E%(P|Y7)R&O=ucGvjDAxU!6GN
zj{&p{(3;QofrJ6H4xkSo^5C@8CV<WX5NXRuBrSk;%-b_|VC=}~WbDLvWSy0iyD;y{
z*o~2d-I??Vpl3wVi%IW*`8kOc`UcRCOfDgD#%1(pLVQ2~lP;S=vW-Cj{1m{?0Spdc
z2$`RnJT!olwVY=bh(+R(OMOneU(0!Xx_v|dBdNXttP5aN0KWt<J%Ab1J~hPNZ|$SG
zj$;D2DkY5#U>u!2fC+RKmP`y_kCcQ@N%QiXIBr0d$t)-3DFIAnK8?{`%SpnS<op9z
z8GyaEGhc1z>;MQCG0q8KE)$Z>V=_O0Uzse3$bSo9A#-|-Mrsrmb96}nOPMTV{GIU+
zM$%axzzXJr7RFI@6&Y{<YXTTkApUX2#1RdXresV!nK5yF0Q3w0<Yf|l7~K%S#sIDt
zv26-qGdKJF;Q~dsFy9)$HYVE{cLuN{0DnEncUq!;p<ld@ZxHtcus47gWOV`T3t&Gr
zLV&gv!+`(}25>rnGXWf;whiC}w{YXy&cgv5Av>(?r0`b&y_p<k$+3w1cmVTQelmcX
zCz4N*no_k&sp>mxJI@Aij<cd0yz}HwirO!bwbMxH+3xQEXvb2LT%xfYz~sUSR|1$b
zH1+Hz=|XL%D|_0BRVkEuJ%AfD7z5_l%$uAQjni8J&}U70LHZ$Q+Q-`F@~U^(ncNNF
zUI6#01vvVQ@gWVFd)7w*JPzOqOX5_4JP(DZ0X#Y>^wNaqEGNkod*)XGye1DBMCKsg
z1n`#Hs(DNxfPVsb7r=)A{tIB}u5AC3XEUnCPEDeTl<&z2j7k3IFGr*H;>Q4dl*2Ro
zrvNDWnb8%1n~8^<8xu;B14!5_5E<TFB=qx9|30vJJKKW+^DbQpAQYhglAv<Mqk_<w
z7?F0+16VdaiW-E%mjJ%9{F}rQM0618f~F75z?hzqqD@|yhhz-m@JjO{9uq{CAfjGG
z<p^R3Eg8LC$Qs0NMI70J$R5O`Totz`Cs6dsz#nK`qi)5e+(G0C;<kc23i1Y#FNkak
zvMb0RM1dft1~Dy&f<Y7tqDv56gXS|x;UG!}=}&F*#<)ljMS}qIZ3hY#<5Cr8ED<y(
zEqoV5NhYI@SxZF-$;$>&E{JMD(7QO=ZsYqPVuP>-Q9g(YL1d`o9I-jNVh}$BQS+Lu
zQV?0M+lE^l0!K+wxQ<f{;?o8pfeOD)C^AWqg62m|8>2l4M-Xw$D+duD{NJa>DnV3b
zA!*KZo8KboGvb(k1R~XgNaSMI2%=dK&6(E>A}NUEAX4Zo{Qk2Zlhhz;F{vGq*9oF-
zgwqPEq+CCU20=7rVWS|LL{b|wA?2n_zA4+v*jogV7Br`4(4*pyLGyvJC1a}~S~F?G
zNb<H!);@`97X%&Hp0NXCM@A=OC&tc<G+~A`y9Lobh@a?0eKYk4qGu3&g6JE>lbq)5
zR<9uPZ#8YNH`l%8o7CC2t^I-+NUbqQTGlYWe-HzLI9(&20!2wUC<yobxT@V9KL;_G
z>@A3)L5vMzT#%M9#qc0T1~H1dRhQ_K<p?@llUnU|G~I9iC5X{Mj0xh<K6{e`_S=<`
zNj~m?ov^||`}iOx1Tlp=;&!HqK`e+*saw=WIEgut$w54hF(pGQrX0E<O{aDX;${%H
zf|wb^tRU6}u|9~|R176)VGxUgn8THt8^pXI=99TnRx~bx2(*p+c-H#9rnu!vIwA+p
zS{t^F8}!+_IEW=dEDvHu5KE~ICna4@N&G#CWn}zYt!=hi2^$8h{y{~ZlqA-1uB0M0
zNn9Ponjlt@u!lY7lR((Gj&rhVz1}x*Z4mwIII}l){B&Q~5X8<Pb_KC9h)qFk4q{6X
z+k@CaReq5+qmFZH5ZfrJj<eCIWQv}s<9t}h>7&p)DQjKxhJ1Gr`-0}PPnC@Edx9X`
z%UHgybAJ#A$U<nmmlyvew?K`|yy6%uN&X7r2sg#WAdWIQ!+0!+<4jI4o}>|{n2zNX
zM~R$fvYEHnIUB^eAkMSoZ${&#>3l9QpQabMM58Q-D;&MbNU7g+t_5+OB{w4ST@5X_
zgSbO|5kxSEyX0ho^mAFZ_d(nb;z1BEf_NE3`Xk~)@(g9gr$IcT)+YU9(qTn-5;Rvu
z=r>X%JUm=@7Q}O^^>AU-ZGrGr5PK>~?}Dh5#r~T48)}d}(p%>LF#g#}Bpo@u{of$w
z#@b2qLlFOwB^R_?Uq^i;KNCcFkCk4hJ4XtigK$x2JrgLnnRpmwMsE<lNUER7rM!|7
zM2JeRAftjX*E(83y}C{{Xm009L1Usb8jN2UzcNNCrkX{;re%pln!Fa%DM+u-#^NG{
zi;o@jS|gJJ`ZyS)m@iK<E9hF+`F9q376lhhi4?LbSdoxSB!_~W3Wg{csvwtw+zM(d
zsG}ecIe*GQL6U-e<op#tp<Td0Px`dCaskD(w1Nr>DQNysDy(49Ua^RR_&d_Dy<$-X
z-K$C0x=8O{CKXq3Z?^P<f=UWXDELmn>jzRv1y7$^%PA<OKwoF4P+CEm2rsKZnIMqx
zdsZvYSb>p_s;Hp+Jb{Ry;I9ipx7sn471KAyDzGvU86`#=Bc<9EI3hew!GPrg39BgP
z=763jj;d601v#ENC?qhcrl5L6lBl3Ygp+czf)vHPeAiNtsvsDjI5C5b9#807cCEUO
z>}Abg_Uck^D(Ik~BWu=I&_FTY7SbKvvh8sV6*N-NnEFe>j|%N1j+TAJrV7L<!rPW&
zGct)oLUYCzjPyc`B&`%YD3oCR)4u8lTWbYv6ttygA1M@_DzsOS#=IRP37wBb!l*Hl
zQ$Z&MJr(p)&{;9>7P>0v#-xja8xPDM_ge4D-0QRBadAg?y3lV;>Y>1LH4{nV4+<TI
zIC?ASqoA*X(h2s*_w54}^i$AZK~^bY097iZo$k|!(`=AI3VkfL|HSyS0y(pNFmn>p
zvBMM$SMY~|<qAe97^z^Qf=LQSDfoq3X*`!|G~=Aulraj%Qfgi2I0Z*uB@v;J^d@P7
z0^_(qVd^cBeh{0i;8z8<<F+XZrYe}GV7h|&)L$!w846}9<_?=Qb#NBtc0r&pm&t4e
zbC`U%SKym`o`U}#nF=TN2(%+-(b(t(WV$!S-xMrV%oksaI7*Vm3YIWm%D5~d|6M_r
z*l1E%p<tzgwF=fzO_zudi#k>*SWQE0r9H>WSeiV%hD@kOVt7EzdIcL499M9HYrRpy
zQ6`%dY*w&E!B(=6*U}LMwIpdh|H!|M6}Btbp<t(iT?%%SVY86Ba*u+2)H_2gd+Cf7
zO%HtOb=rOf2NWdiG@}$qeu(t>5E33{@)zTV>C*1!BH^*F(lG_JTqlKdF2_k4_($w#
z6`WIWO2KKxTpQN7C!SF-AzC_g!cn?{?b?py^9n91xTN531r()lLBYuy9l!C*WcD>X
zUQ=*|Q?D{snixl^*IA7;Z!o#3;1-iwuTx2Qms(iC?;-pV!hISA3SvXBhVW3qBL(R~
zNFTyu1y2-wQSg-<g@R{XoqrWPSMWl?f&xiz6}(hX`I7aS)%J$TE5_H1t*#a%IlaUt
z&3{<`9b@9piL|oEdj%iJJQRGSf~A)NH0l+6BKyf{|IFxObTfL$@)dZQlY);)sl`Q!
z`>BK-B_axSQx`jhC3T&IA&!O>s7y36u)0n?qGK>AX;^6jK<z6+R0#X)I=??`wS*8I
zqMt0RPuts<Wwm7pA!7*TLij#p4)aVQWC<Z_2$@5m=}9q+L}&-GY$0s)rj=#2>>=a`
zA!i7=LMReK(GW&2wcmYU&mBUZ5b}nQFN6Xi6bwO}9G6~*Bg`Mdh*<j?tG!SNg+u6X
zx5p>gYvzcjBnq_q07B**Fq+&_I)q{r>e-8jP=bZug-|ktQp`_gwztX=|82HdTqb+>
zrS>u*Y~cg%J&B@FK7<M(2q7FeVJ<aLkqi7o2sGQAmd?KXNURh>)4|b1DD~eC4lx8N
zgt{Tr3&9qGJ%s8ZB!*01?Fb<*gvufFvPElAR^hB@uvZJAY6$VvI5zvhH};uUdqN0p
z3&;CJ`-cLKE(IJlLZ}%6eTJqd^dvfU2&sH5U0YK^pq&e7yc4InZMCTJ_X`wihfs$(
zO~j>W{SX?2kQPF_km*kxF6)-$tPMkG#06^{LKCV56+jRvG-uL`G5NDVk`|OziuhxQ
zp6IPDzo{{{4x!Drs35i_`?r~gw-2F12t7jR8A3-cr!$03A@frOHBsjfx`fc3YSA}q
z*AQq8hi;7L+l$00%nC`D>pCe)%DqD98$!PjdWSH!wn(8*2>)e{Co-w0`0BQ;e+UDp
z3Ly*%VPc3DI>1kS#$U*ULim|E<ujPckPwE3Ff4@OWIQ2^ilqMcYs|<9e^@V$I7z;H
zZ@%3f6OoS%VO)fd4`D)tR~TZhO))uySs~00VG7HqMpCCSnI6K7h-4;{4gIUkiAa`)
zFgJvGA<SpVLdIVssS85*Ey8I=&7ufj9KsUjO9xc(SE#;>`H{IDs4&YzSV3J7M#nH#
zhOmn4FbsPbt3y~5!ix}IhOjn-b!5^Z91LN72pecPhcGQ??8Xo_g|Iz@9U*L{4y~X1
zuC8+%jffB&ad8y3(!g=GC32>Is!`WTm))Hq><*a|$#yZ;nH)!a5A(f@`xxoH3d!$B
z$I@92QE5YX&Zc-cgug;KUeNL^gd<#whao%);b;iQNFKt85Uz%BjgwA>a4v-NA)MkU
zRrWNKGmK{$>-Tp2&Eygz>0BTO72$nbSS~Za5|O;CZhpkM9>Sdv?vndzn)wDN-DJGQ
zc$@KBe9Ap0r0;tfeV_S*h~)gN3=P&um%GG04&ezEeni|;BHI!RRnE}+o%tj?b%+@M
zOVZ$#G3#?XUeT}(p>!B!!gv$HTh8RWF#ZYQT?oMtlo0+UueevDFaCt@$yssqzYsi3
zNcfS-rw~3faYf|r5PE&Kkpcyog<eKq2!193#*Uv%olpp2a=c;W4x6V_L$HJq&0J$O
zJp_XZrG8=Zl`$%en~MYzrekFy8N)~);TgghHYGC&DP#&Ga~Lt4l!Y-nV^+p&Ve=Ke
zsmW0yIVoqZbsm-!X3QH#J|_9YC>YT!z+~?1q(c8sQiOTYhy-C2i}2!1N`#TEo7t*|
z7urjPL0Bq`JoTJJ%7)F$7KKM!?B&AvK8)8X_VQs=2%};cJ1g0D?RHGMZT}&RN?{0L
z{8%+@Q$~BMdr7gZDTQGTgQ6m1*?Lamlmnq7jJPn8!$=96*MiDnB!+S3hP6r<RcV|)
zw8e*Mje6<D5ux-~YeE>+C^U3bXC$(~5Nm`{GmH*pMNgjiBqn#aSc|Q<r-t#2*N<((
zg|8Jx?J(+uQ8$cwRKhS?hEYF^22|!O=6!O*FdBt%U`#Y^AJ#aGZ~KU~2%|}aHw~j%
zgf|a^HbncTL$5<|!&aRt6-I`y_STG};V5WNXd6aanEqQqdoBb0Fi6)pGBEnViik6e
zPGJn7iigoTj4omH3Zr)zUBl=WrtR8OXwE=)KJaVi*rQ`R_6VaVWmv#o_DSN7>5e*^
zgg#+htzNNj7<98;?UrCoHUD4hN0t-D_^S^3rTWs&=s{up6vm`5CWmq2p7rN2O74-y
zakhiQ7!t-%s&%f|VPX6dM)r}3!^0RswXWxUu*p6$48l>2L^f1%j1HqnO5B(*X4)MK
zXC;jdBi9`1;!W%LFb-8pnw$_bfx7r}^29K<wRF&mgyi4C(}gK~x~XAIqyF6?P7h-S
z<v{(bT2HSMS9*k5VVo^tUfO1daeb_P4kdYnxr{{Sg)yJ`uMx?J-!m=@V^J7;zhd84
zEDmEy7{_#4Q3OlFSVn_FLw*gvhw(=kEmZudVtE)V!Z5=4LYaiIDvaA<+#&xT#u_R-
zm5};0jCEn`3S)N|>%-U(#^x}#gt3uIyIvY;SpSL^3zn2Nk&$l@3p;FEshVU$)h#>1
z@MjeBp0U)wEp89P<>t$DFL5XJX)jUBW!u9ou%DWm%FLW9yN`+ZN<7G<t1i-#ts|P5
z&jN?T_$!PHVO$L3NEk<{eZn|LbqwQp7^i8BP;Z8DGK|V&?Wf3W>N%U{j$eDqO3Tu|
z%_}XgEzJxRh{|jE<FR>rM$>`Lhw(Rc)|$lC=|!cig_ifZzAfveFfLPrhjD`j)HLBr
z7;;+TRT7R7n`N_HqcW^7Sf-6c3(?#Rqp(xDMaFYl>`};`u(sf>I5B%D>TVeKXi$Xl
zF^v0UCt<t{<5d_B!*~?N^Dth7@i>epVbJ1=PtESLUhQFd(>1!-QRx}k8}EgbzPe+`
z5@~$)*hjs@L)WF(<ov_<mxchfb1Ug>7}a}P-i5I>-u@4r=u=yJZ;^fiI`}2(CeI^!
zbI$r93|h`B?=#D%Fg{aXgc0B-by1DN@P^?I!xKiiG>JAbDN`bzaKPfEs?}rWH5Yv}
zeAX8Fy0Ks|426#hhjC?z5F#TfE{(`!>)y+r(A%Ph(W8i@g`rckToEnjr3YEl2)~9A
zrJ{n0iYhEBqE+Nkkyk}J73o!EQ;}Uo1{E1qWL6QQV#qsT_zj_3DJheRH&cY6r_43?
zvZ%<a;@mc|#R>6oQwuG&lX;;fhiZD=oGNmu=1!orLFBd94)LH=<CK_N#hsPWx$hUq
zr_zT!6jcEg1yr1wC=^mrn2NDkEU1EZX8GG@IdoDSdR!=c!&*ee&>_<J%LR+6^cywG
zsrX(+ja>G{V)ha$zEe@XhdFVmB%ikwBSlLyDZ^M+rFGQJxmXm+tDt}Ju6{LNQ!Hy?
z`9Vb`6)7rGRR}6#Ra90{g^#kTu&J=C5IO28n?+JlvXyy@NZ((`KhQ=V4iz-3HjZ*=
zBoe8rBA&{oqNa)j6_0jV6IF91<Z4t%75R<`n=^<n-$>)8Nm*Z7Xkp|e70D`SQ=0|3
zMCpidZG)xI31Q<>ODz?(Rn%9}fKOeAv7U;$)K+%em)_L}oX%#yWBu~0)KEnu70pyM
zSJ7BS6BSKWtaXZe_6oGY)_2#%1}T<2urF#<h_>$;dt9vJv&pr@mMU7QIIQ9?6|Jdp
zRLrMlQPEaKnu<Xxep1m+MSB%pRCHC*K}AO{Lnjpz%iCyo8>fn+S)^)5Bw9+nS&@X!
zRIuGrf&G?lD!QxauVR3T9x8gO^c-O;+m0Oz6?KE@C3<sKeHba)S4BVO-}-3qA5yDx
z5^do$P&HT0r6qHJRxwz`1Ufa@p^6--g@&pars9{{(oZ2#D<MYba|DiChpQN&f(V6?
z)a()di;B?^K8DFy72}wUXPi>cNry~QF<HfQ6*E+9nVgOG?V6%us*2#u=vnn_(^Pz{
zZCL~9<uswxG3(o9!b~pnEXLV1aE>_UFrUjv^_s_oDz!kxZz|TS*q~yeibX1ZSMdj@
zE~a{I&a_m;5*1nch!t}sw8>)Wd`VoUnp=UKPO~gmu|mcEG;xhe*Bz`P%>p7VAGewh
zUz5Q$V7!IiuB2`d)~Z-X=C?$2w6Xm5Tzr_-vQfn*6}wgJQL&jSMT2^-u!D47TDPj$
zreeE_YGWl!j#{)|8|_38lf~?v)f0rBDt2)arCw^~*sEfnii0W+(I8zHyI+Mfn|OdK
zvN&bSsH7~H#KNhCs@D`tB$^9k{Yhhdrx++?IYJhq;<<_!Dvqf*uHrT&sW_qHBsmQg
z=T({|W%`OUjCpOg(=-NKNpgEj<q^_Z8f%$jXa8F0Zxt6*Tv2gV#YGjDR9sdue1ce`
z!2d?{BsJ=Hp%AU;bqL}$71veVAP-hd{HIZ&L$$=4)RHugY_?9<q*@;9xso>GcU9aY
z%cS#uiK0bI?yHy*Ek0E7fIQ4h;l3)=)}qFpkshfujaF#X#PUSNQyRZ_#AoEwmI}wF
ziGTi^KC3tCrHWT7G!;6@$uX*Msc@@!tKuIOAIOz))!wQ2SH*iO`2ceU&iXUyyIz%O
zi4|IR<)dmY8Y%h2Pc(3<+opGpxs;gxGijzI(zYNT6*5_%3Pm+<NJ<Z~cvbkQ2djuL
z2U`4Oz2vS9tM_}GP+2reriDn2EF_)yJ1u*d!>+2d?p#9qGMRsQpG;9h#TWAD8e%kj
zRS~5jord%pEE=LUY|AOt&T6A&{k%pLEmQo-h{~X0#x^mdhD;h1T{xFyxmn2ERN`ZH
z@$RH-Su|wTkV8XG4cRoDXf3`|Y}qyX$IaSxi%5UX)DbMXH00LM<esp2uaHN>pj6Yq
z@@i(M)8dC^&kD3KasdqmHF!1nG!)WMSi?9C<24k~P*g*G4GlCvLop4NHB`}1Ttf*B
z6*N@T@STQ|8p>)Yr=b*`>t1SUs#<j1sy_-@RtvO-a~TbUHGUB1HW0tpP+mjmbkdyn
zqVq-6(NuA>7WIRMN*W{$HVx|zh=K;I22q19q{Pyl*bv98`-$TxIEvEhojb)kMeWz>
zigpc6n~4q$v+oJvoY~?ubJL0nw<W@=8sar1X-L+PK&RG_sG$Zmc$D~OZjts`s7?wW
z#2hoDYErRpn-`JHiWHm2-v2~~6b-2wYHO&YA=flVEe&^92)_=J&i`UIT3t%YYO6;T
zuaSOx-dN{y3%y;bbj{jOLn94+H1yTbn3`HcCk>scgc@xXgti*eG&I-HLPJYB^-F8F
z8)j}4e$>#jM>`^|G_=;t-B{Xan7bk|ZM#57(RLczYv@QBUXy6o!kKyO9Vo+n;-jn9
z9;cF=8rsw^q~)`nC?s{!(3Nu2&`U!%I=e;cq0!RxVt0*hbgkX8OU;_3(8SBNU!!Pi
zo8B6xZxxzs6<YKYAAZf;k4~*&sD@!0eY(X!4L@rbtYLEH__^<s22tUMNkh`d{-nV%
zOv>=Zy1lAHK5u<cNE$+i92Sa~w+z=XLc?ecW2lKT+v*jTMrs(PnVYo@j8Fgdv*Q;s
ziO-Jfd6Q_HBy!+m+5D*DJKWI|G)&ZRSi@f$CecYXEYh%8!xRlusWmjr(=d$+Ont3k
z4mHSEX@-X2T4^R#zh%;a*_I09rCFRIkxq&6v{}`zH&*)6H($fA8WwO;sW@}<L|Sux
zf3od24GU>NZ8ayJz5m{Pldwd?QjKP6VV#C$WO5o-YFI_hSWNsw!*UHPsDuxNDX=si
zDYZRiSxRf>e`jA!LuRgUrBuQijW({5E={!jbl<x3a)I?4HfY$d;edvX8a8RztYHh;
z;iec0YbuN7ezMT7!CPs(Q+Q<QnA^NGZ`W|Xy10Xp$WA7^7<X&f!(?wHbsv*sHEhp|
z*$-+sM0KP#$tro1EOFb#G<$~hiQ=`2mLnRDYPdsYtl^l3;~Fk$xJ-^h!%50P!`~WC
zar>OnaF)qw#+CJ)V{4~SsTNL5K1a<pF`4)UP9k!VMu!?Tx2oy<qdHrzXt=6@_LaD;
z;hKi)<RwN(H(0q+0n6KuQM4rBO%1oGH%}#|jZLCJWQ0R(G*`T*;l75~8s2Dlpy8p0
zry8vt4cc|_k%kL{#K#(jM~RoxS)OQEy{8~;pSN+YMBDE^*YHxqD-AFBL}z{GJs~}_
z(9=zOL8?C2@>at?8a$j@?w_c48jg$+)*iA>EpGdl`itcs$i|A>{$nKaQNt(ZpBY^d
zxtkjBkw^*;TS_vysZwcIu3P*X0yNfibk`9i=S+@KM^zmm4PkPjI*RB}HE86bb!5|_
zYcR;_bY#}?h0mT|M+P04Xg@d&QTqShlUSHUGp1vtRn{;4DqUY=$*5z<Tg%|T#0evW
z7#&%3{5a4u{<8G8sEr=w=-JIaU(Bu}hmO2D^6AK_BbSahucPzmxc|=l%D>Ys=GJMU
zEs03qy!MHuZ25JJuu6q=(>)f@QBcRcoYKL1&dj-``_n~wifP~8Qd9?YRMhc<j$%5B
z>nNq8w2sy8XxhH5gpTiYWW8DN-6c!PNk>T?gmkVlI?C$UP&s>f9m$2HBUdctbo3nS
z_+Cf14dUvJV)KvUm_1?z9SicseSci6q(jhQ(_z;UtK;;dY@&`aw<W8NWnOE{3(+=O
zl5}(Hy2N)v(J!JyN1TqzI-0ynTJ+U=@naP2z190;R7vvZ87%QS5-3SWQytZGRM$~U
zM{OO6I%?>ssUwLh)mNkiYzNE|YxcGzb5p12NM-V_ZiYPNEd`oocsSqkb%AN;by!}H
z3N}@&tK;cZu~nR<zK#Yu8tQ1Iqp^<32gLO!#PO%3547#qDe2}L2fbQvrlYxz4mvvO
zXhB`3qqUAUI$BcKj1^kx=vPmQ9w(%1iMi0*dUv#WbJA8vJ00!$jA>+Dcg>0Af9@C8
z_p{Ijc~_$fIytGcjxN+7)G05myStdzl(Ux#cGb~)lGONGmP!*Gjx}NrYI7ZPbj;P!
zi;{GV)G<m&A02&l3?_@B0_f<kW1x;fItEZ%T^EPFHJ4=Hv|X&DME#`WXEM}xVldVc
z4hbpKqUa9RS<^C9$1okk$$oTPsBO`TO5V+xFJv)ohF&_+>gcqG$S*oZQ?uxpLS4ya
z9;ahG9k^W>tDExyhU!rhbWG%=k(1011e2J5yF}7OYO0QDESbqTopA<Z--%J%eB%Bw
zF|%~g6?3+Zu4|&LJ}J+&#CbaA>)5Dcla61>z;rC3*E>3X)3H#;VjY`fvoE49$Y-a?
zBpr`g(bT+Tyn11Mwn|*4<9D)c9cxJWpzw!|<vLdApp~n=11vOyXr+!-IxQn9ZJQG}
z{kgT+oRlq_lj#X)?`E;xDq$_1%OkGSX(d|>oG4P*pwrd{1y1O~W*u8}?A5VP$5tKN
zbnMo#N5^&@J9O;Sachc1>*|!MYO#JVuKp6Wi>uk&E6|n@;};2yJi>ab*zk$8U&jGT
z(s5YFLDmVJv>qa(8f)4B{b_R2ZlSSI@P=j7UF%;uj_5c_gLk^rsIhdTo;j`PgpQLm
z5Wb-17n~xKrY<%x*uWVbXUT6E$YtQ1j`KR+>i9>;-+Y$qI&M&3>$s@nl8(zPyr$#K
zDDevOtJDP^>)FhfS#i;{AH>_9nb)nAZc@E;Jk;?>$88;Vblf9%L?qGN6rjVH<h$f{
zs;1Y5WO<;&TiWJnFZIo3Db2fzJmzel&~T$p*=TKjMtG*<xsF#lUh8<F<0XyjLjo<x
z+-$4#JcqsUqtx|9?QdvA2)1v#8^7--J}Pd1r{iC;H*(H8-jf5=;nv~N@t=;5RQ)Si
zKU1l0iaP_sCmoCGii0-`1ClK+^5J7*UJl4Yy9&xwHXQ*Pj5>Te{Nw-?>1$8Rvc=Yw
zAFQn=h<TrgOQI}Y^VpJeOaGOZ!sPsQL>owFKqKd`<ExG+0~hkx4f6lw4Gimr#^S`Q
zmR4WH2MHF7fvyKd+PgOSx|MdwJvPeh%Jc>@8;CJbETfpgKt=<Z4BYrC-k$29Knht5
zb1A>92C^BTUDZCFvXD#9ZXkyN+Dn>tlqQ|Vea*QmxeeqYWdkV&@*2ozpppT>Kz;)S
z43snQy@7%T3K=MFpoD?K28tM%KURW)FT13o23kLpF0acx<du2jI-!lDn1L6C;u|fL
zzB5qLpjovjZJ=+U>W|k8PRnARw~T?e-`UF=SY$-e{Ss~5llhprP=9#?zm5?r7^rA~
zwiMr;DAChF$Ccs_#{aH>&s|Zm2CN1u8>nJHG$0wU8L%4|YnM*PI%sD)+Hc5VAZOpK
zaRzo2jj>FWZax=B@b4{E4a6I$ZXnS>f`RqfrP`L*YE+nI!Wl<)+H>}GJneXh_3?4E
znsiMA`)W%^Gf0icI+6?!Qpr;d)H2{S(8)k;19c2EHPFmJT?6$DT<at@F+e+^*Ei76
zKqD$uX<Gv>{IZ*((%6z|S4?B-_k}U3PaM<hNmWDQh$TXE11$`+XSE*<v@~#Jfz*!d
z;e*-Hts-@A&7_Tiwh>91@xN8myB-kVEV1N^cXTkwc<^wfNMXsxtep*Xp_Vt$&wx5g
z>}sI9fgT1f@3nTLrrs=&ALwbImw_#Z6Z>$sy-DYC!9|W}+E!-zP_b)*S%&@wmd_Oi
zvBH4J*#{ax4s)~kpA76eOG`kD>mAWU3=B2!-oOU~!wd{Ju+6}BgZ971NU|9^sew@j
zelak^z)S<94U91`&cJxX{N_H^z`Ugb{Zy6ymT<DZWdfD|ku=f3Bq}8D{zku6O*Syi
zz;pvs3`{k!FqhPHP729sI{<$l=|er|k>YkDoqsE&e<#f{Fq^ujwm66TVxEDyhPhS`
zEz#pil5*d-dd^rD82HV=Dg&!2H`6BZ2i4cWVgpO4YPW=?1`c$z&=YsH&jqSHuq-oZ
z#xfelNUb}H6!xaYtuU~X2F@0#Uadm2ubVAqTrqKtfwcxU8rWoD9odzEt(P1v5^S_L
z#JP%@cfO3;VBl^ub0?0?WboC*tp;e*(&-b0EmXmYLht#~!=J?#QuZANb{e=!21eyE
zu-m|S1AiOXV_>g=!v_8$TQz9aMC(Dy!N7hhF!j4bqFpHmcNb}y_dgBj86?^#uH!tZ
zl0&L-SX{n1wN*9oh=HTrp~o1bGFy&Q^QK4?PB1yic#82fT?Lq&Wjx17nzt;r8@Htk
z1}+-7WZ+pzk^KB+>eE!Q|3&c%Sy#MmS5M3HGG?1xCpSf1VBo2Nn+9%C3mCX(;5Kzr
zVTpE8ze7FyR`fQrthiWU&{OMu0}sdm<_nJvSn4|;8hAw2?;$NInDA#vAVOY(UcCD&
z#yvCeoP3>u*9M}tTVEJ>NnIH#(DbQwe}W|`)%H-x{)Ps-fq!Xm9k=~s;2n(xMa)$$
z%dTf>|HssIKuJ+_-R|k0neGWh$$bf8U>9b0(gF)C>=GqsBo2sxAVDQ7StJMwDj5U?
zMKAyoL<LkNNCrhv5F`mo&LAT6{I{Rqob#Vk=bl@yUgcLcJ=N7!Hzve*)D`cb^ls;Y
zMe4<e)}@D5LE9>1TbDV|IM+S2k`Jw`53Oqtt=kW+I}fev53L&yd1G(UTdeG!FmEp!
z^Cj13tk#Po&uPXlx5G~&cK4z6_e1L+4nR)4(#Sb~E6JL%BR@F*F8^h}Jaks<>#hqA
z9Tx5}DYRj1=;1@F<>Ai3nqkGZRND&LR*Alb%eFMz^4gYRTe@v=?VXEJZkuy;sMy|O
zm)k`=w)I8t$ox`K)3$uJGhqe<{ep{XJB|Ow;mEa?4x!6uTlsCPfNec5*MU(|uD)7W
zl*`ywS=)NVwu;zRQQIoU0@zkb+j^O|-P_h*+d}oWhnnnlt}QNQTb6CXwn|IH$U!IZ
zn(wO<uQ(5Ei%K}&a<=uTZDrb4*tW{s)?>DnZd(;?Yt|>B$8GCLo42z$w@5r;TWRYv
zx7>2dW|UXcBti1|cb&h$m24|yTNxtkR!EJ#<Xkkv8>Z+YwiUIl8n$(^fh%TPaohU!
zr*L)A%(AV@sdUuEkt)KgrX<<6RV~H24t%+In1@K`*cPAq%KaJ|cty#ztvuVhYFpQA
ztF~>`v8^Sx^?_~GwXJ%#HHf`nTlH<Lfo&yhtE+82Wm^qxtEp`@v#mz9)tJiZz9v-O
zA9;E}WN0#zm;Lc>nwCFhHn*)7w$;wIp0=%)w$;jZ{`j=9Ev3BEZmp$Me4|AEX2WP(
z+ai*;7dc<UJ<}}GL3l^OPJ*2Uy9iQwbAGj(Z9QXKeQm3sZFOfBw)LEC^|q}ZqSH&T
zXG(ue_d1KqsvZAT_yS_eqp?1=#g}o<+t!B4VY;>_<Na-G+y}*9u&ozuYk<vb1f6BK
zQd43%OTsVN)<E0hi?;p^!<`>0Tuxk3N*!WbLv8B~7T&go+17B|8gE;#(TZ&A726tP
zTVri&gza2UFw(Y0u|Xz>uDtFWZ97XVe4wpSK;<%9vnRvjZ0l7%j!p@231wn2XZ@Tz
zqnejeC)n0R+nQ`!uhXb1sFS}8O|q>fGr}wHg{M|kXa5zRVp~&fYe?aYcT0pn^{T&o
zlgYc<r`gtY+nQ}#b8PD^srwAunrT~a+txd_HK9PX)^2s@(ad#eYV)CiQUl_%Z0ph>
zbz-S%>$`>L+SWYVT4Y=A+17m9T3}lX=|+cmVfwo?fG;vvRWZnU{@#=-uGT+C_`d9Y
z+geO}sGi5$IeXPBUPFoWtFC@%TT5+gpKa~8t&ePLnQeW?hi%(hZd)JQ)*9PdYg?b#
z)~7bF9<x^2)@QcWW_D<|8d+gmRYphhd(;6lia&QfRH0Vnvxec%ZEH2VIA83$g6hMf
z5iBjXj#GhceZ@Yqt-lL}*Rz^5<9PVM<gmRx%r#Qpr@X<oHrmcnz2C5en=>~t>ya_u
zJ<5dwUO&ncgTJ+{D?6Q`_r0{z54N?#wzk;TR@!r+=r-H(H;HWLpeyZ+@i{#l+-Y08
zY-^9`@3yVe1v7XV2QPbV@<V9wR_|VspHUpm1HzBcW^C(6TAFPgw5^|Q>yT|7=7cjd
z#0wLt_FaoO7Z`i>jQqku%_xVRzrcT$cT)JxwvO4>8Qc29wvOA@?<|RJo#NPB8@^F8
zcEYx9`NIVR;k&KW(;TE9g|1yFTKaa;<4v-=erKMwt#h2mZ0kHzs2k;K>YtRPsSC38
zCQ~98Z0jQH&NR=2FVS2lM=rA?%0_!5wrgrG33KO6_`^-*x^3NH=O(S@N$Vza<UE$N
zo=jS|ZR?J01(H@UY29TPa2iiquB3I(w*Ij#+qROnb>FuBwJomCJY>J04?SRe<_m{w
z8a%z~$g!LjE1ms&pH{7%dp52lt@__b#~pS~e$$ecp0s>PYyRBg?xf{OI!iQskLgWX
zM$#HoC~PLJv+*b|B<<^}&5MvI`Tar2pX7xUp#=luy{Bg7OIrDp7Lr!!q*Wkk6--*i
zl2-AgRVZl{PFh8hR?(ytnizhBC0`Xf`=ZL5(3vm)|9X}b3(gC*_)RU5v`Qu|D`_n@
zqotBojm^;+pJr}+pj1SZTU$AGd@{vXCTW#TTIG}0V@d1nZQ&obMam_uN0Zj`1!D~s
zX3>%G!tuO%k;ju3&pdp?9e!|GsgQJjwz85|<)oFCw9=DS#iUg!X@!$kgr!Pa8A<0k
zKQn1{JeA4&E-!5g@yn6&#UrkIYBXuZk``YDJ|B(5C7tKxhU@oVbDrC)B(17Rt4`9Y
zo3yf%R<)#6D{18>t=&z+)meq475Fj2L-;@0rRF59n%w^JOCH~w(~<CQ+-es>+?Acj
zq8<*{PFft=`3ptsv0su_!=%+HX*Eb%lcq;TJ{5i{X?5rq9(YUn@5znla&-2qjgwZB
zq}6w5xG6((!iDnO<nxB-wMbemlh){@H704bVzNo=xun%QX|+jOZIf1)q?Jfo?UL5h
zjKwM^t+nkU?UUBT?U`L3i?(eUo|IHNNliNovYPp`U32A$y=&6ymb9KtT0NNBh;VGC
z8b{=rq}5$CpPl8b8eLDud$Lomhby#Dd(jfUP&cH9OHGRRVK*hMp){?ewXZ^?Z_;`(
zX}y%R`X#OYw2BXkdDn#pB&`?N9qS_#+e9!n;?rsll#~Z2ts%6-RC(rJ3GqRQd2vne
zT5)xF(t0^*jgU}Rspu=Tz*1rRL3rb4XRwcC=d!Z7;lH=%7WyHVf8NI?t#L_fPSTp2
zv|deG<CE5#No!itdM#;9kVK}iH8>ouDU*}V7NDumMkcY=b)6AfW_I}Xq(uzW4o^*5
zZ-{<@9_r*1&T8lMr1h3aW+tuQCp$M(zMZt*q2YZQ`gKpS84|>AG^jZ%X>BYKnJto!
z#yPe$kE1VXElpY<C9MTX>s=16q;)B)C_kkfTURZ1Us;&6F06LusP~fA`$_Bg)9PYQ
z1sxm--IAp9vC;=g>q8;rGy7yNOIpimT}f+2()u`QeZqdP9R2jaGH-Aq?l`Vo{w5qK
zr{27#@wV%gNoy7RXiezzBzKjBe_iAzr`p=2wJvFWtzm-(UUl>ZhqHoW3f42Jr1cep
zk`@mtET~`u>y@;wCar5pYg5wtCTSf?T8ER?w@K@}q_s0??Mhmklh*f1Yg^LVp0u{m
zIDZP$W$p`YO*%{ZQ(lQwzLv@9rOV39ACk_yry<DRk>m+%p~1=MZWb(Q?N4%1!b)_E
z?BzUAAl&G;Onzy#kA-O))+TlSF=-t+89A7=eok6H(Q*n!j{oK)c<cKxKboLxSvmWc
zr1fjkI+e6eQ#olJO<LZIq2n~gB00Ztvb_~OxIRpNj5F}9D80Y407>V7H5TS1EqO-B
zY!~N+ac?9dXOg_<-8!GN{@^5;w9X|h#^sHBe~LcyZP6;{v9>uZ+XY5U)V?I;yeOEp
zD14cjHji8poNb25uX9T2lc^{;H9T@d_)S3yZ}C?kY26X;UBQ0^|K_iNkbea43sRp~
z<UA1mFeR~tBn9jB3aARGM(0wXrMRxZt-vE*uY!OOL(oj=_!Rhs_Z=5!^q}y3snGmF
z3Mk-xjtniNfabv+IE9(occDiV@XN9y3hv#{ASte(go1BWe5<0Qf>H{GC>W~1QUC?@
z6x3HxT0t4cQcy)fSq0@3R8Wwn;86wqvh@iCMbE^_EBJG?vVCEl#}quSfQ0VQz0i{i
zI(TB24n(&ciKQ#3s35MO{pRSuUxq3vc&&C`SV2g^q;r`W3OY|KMUpArdOLNVN*!U5
z8r6v^hzTiHEKcu`Ka4B|O>61FCEltE57a{~1-T0LS9DiXFte4nrh@7$#>mit8Q~fV
zaukrz4K9?!?Uek$dCd6G*X1Hy1I$xENo}^6g1T&|>E80a^5zW4z1%aefr6(P%2Fw4
zsNnvSYGVaW6tt|WHd4T|6nMczQw7Zwv|@7=&S<WHqm>^r@VKN=+2Iz{R6tUpRfMmi
zS}SOypsj*-3iv~lo|#vsVWPm{%%|BJ3Jx90q_Bg6>4kGU3RcX{BJZLgp`e$7=M-%H
zU5S*>>Z+idl)1yu8qY|M-4#5mpofCIhKUZNvU;+?M`dlhQJY9fZv}lsjbHaaFA@9G
zw$)f)1*?x`_EWI$SSHCg9cm9y@PdLD*~_Ey=+0b?y~L7ypEpp!AR&VVx2D&n>)bFg
zOu=wAyNWy&FDrOOflGy^VuXT`3g#-9r+`hp@@jaLg3$^-_$hOYg4vw7@<+$ggvNx%
zDR@-@9~H*4$7xHn2L%%pOxqTkNK<(`#Gpk#6(zndRbcbJEo6#<sS4gu@TPdD3r<Vv
z^gOS;mEu3jRS55hcLr@k$gET-j~APx;2F2GWP0O%o%sqDDELIdr=sw#f{zp|Q?O9H
zixlv%)At15SFk59yjb`W!4CvK6r|cx1z#Nxkqmv;=+rH5xq?lD0v`*WpB-uPzWJG?
zN!xp%V1<H}3Ra2a!+VjV3O;A=C|ILltqAuBu2b+eCwbvtuo;DX`5$s4C@b=uv%6rU
zNVd>mm>q|<f^S8#Ii>j>`vuPbP`d9GTtC_VKfX=D4h1_ocvG4`aL}E1w(ac_$?lZ=
z@R!c-7jZA`hvSapOM-q;@S~8Q1%FEEALM*>>VLT$65(M5!x}p8CVoxn91*glhx(g>
zW5SOsIHTYX;lC?5A>^dsDM3a*%`q$cfzK*9r{JoBYZCOQf{Q7gzl5Aua6!n(f1GCk
zx=RW!r*y6;FzWxWO|C1rqu{QB8wzfU!Y#qu9Eoz!+>eW#>i;dm`>7P}DfmbDJ5nzy
z{7WmX<g95tRA4JuSG+?~fvP%$PEqlg-ytg-CWyKUw+gQcLk0J@dsJK~+<|9eFgj1*
zH&ysl6j4!BbtW0Vihzos3VyPBa+I1+#i*C-<X5qwR9GKc`;*HZ3aF^|LhbmPSV19$
zR1{XRr(uG^M?{UJm?Xv2N~qxSNO2YXHmz%M=RvEaic%^p6;M%HMNCCpMHv-kB}#^h
zaw;Abo-SBk#S^L29uxAoVDy&rVD_Yn3gS%@oK-oG!ivI4Dyazl7kb)Jrppv>STG_O
z736NHEFsjXrlN9+S5Z+l#j}NE%OBY4!fOcTsHiEVmf-ox&eLga6?IfRtD=XBx+?0a
zXse=~iux)VsA!?0rHZFiG?Xa24s>ax;<E*zuhXNARlKz+=ZzE5CMxKqYpSA|@Jb6q
z%~h;jpF?3Q6+2&ug#ONLt>X6|qH!yJeOb7T3S!TL;ipx!XUnTdsOX@gql(Tdeyo{0
z?_{`>iXB`tKN$XKn6rar+-u=tH$o*xN4lzbMg>3LChw-=J2i`>yGZycG=I)|s_3O+
zh>D>qo>S3V#Y-v%ibeHN!3$jYqxrmwzAE~u=+D&FWWFdkK*b9}DACe$iCx$EiIo3)
zAv#C}w*U?1L&AJ>Tw~wE-!gZuD>h8Ua1~#uSh_3Pse2Z`t$Uf1|EA1Wh$=?XCRHp^
z@d52h8gPn=sVc^(7^`BONZ17vRJ<yDyx?nskJoV4At$DECJC9W;`Nl|Vm$ta@V8aG
zqvFk!e42{sDgKs_N?TkrRLoSdP`tAQ=LyahoFh0_keRmJ7N4Ku3xvF@qIy~92V#+U
z-xGX4rL$Pb(blmK*$y<AZSnq3I)5lWQt@d@XPJuS!ao-LMDT7|XPd!iDpsgiDU#KK
z6s}V7`Tx_QWDPAU6}nCZt54y2N>qGBt5dO2#U_pjcl;N3d;^C==bRG@a;H8K`;Yw9
zFp;Ijzf-YU#T^&!y70Y<Ewnus5-x02v5j+)3y-_7UB#;P-k=NlT=;=TNCQ@}ORRTk
z=bU82ggY&FH)j$RdsXaHaZg3le3AVs4yd@K;xY|b#ZM|9FmPJMK@~r%I3_w&JEY=>
z@WX<?q~yP<*u5o2g`*<*EhS&{h@Zma%v~fWQu31=EXOh#M0ZAne+mAf;;fK!Da}8H
zH11X9ypRim7gM1NZ+ou@zbSY%CBMcID*Q%Dax%}nmEyPAhQjZrB!6=x_O8Oh{G;N&
z2>(@~x}27wdmxgBDpp^Q*ea5#Sc(gMdO5LNE@+~x3z{ytUGTWz6|a#>XNR;#wIY6B
zO5zt1V29r6z;y2B%gFCSNf%1FaCmX7fC~j(Sa&f*S4c=<7xrHaJ>o(U@fH>A`g5q5
zkm7<R1g%8Oase(pAIRWqm*HI_rCliNLOB=6%Lx9OYqq&wHQR_i>Oy%Jcs{@=uXDD*
z`a_{7TzJxjTo>|OsNh1H3sqgncA@{}4(TrE_bbDNiZ0}Dl%T65Bt$jwX1c(o!mwaO
zFe(@mj0@^lB3Uj}7G6d0&BdWzSDl}A-g!~Yh3c$nyGRWeYPzuMOo%*3B(*k#dDCt!
z7k=*(BdP5|9Tyt7@RXFQt_#mrjh)hsdM?y=frr}thgX|sH*}$q3oTt}<w9c@nz+!+
zg>I*Ehy0n#_Y1_PE)bvT6>E1V)ZB#@68fhdrcP@Y+PKis1*X&1g?28S;=VW+o@RC%
zGjDc}WgN~Nb2-{xybK!GB1Y^a-p-;t_|GWSx-v}{K5*ef7oKr}U&hRHVLsJd=;6W`
z7sk4r|1!tk%<1VuFBf=A_;c(*7y7!;+l702xDQQklykIx?xs*b7wWFee9?uMg!Fge
zy;Y$B!e0=aP%Vd=16_F8g;!h{<N_}l9P9#xLj;Ek(mRa3Su1Bad*q;V%K&$$jBug-
z`Os(=M!G;R-6$cW{tAC(WY9a#g;!k||8I2H{^)oYK5yWj<-%+iUUOlB^u<KMDT0#(
zC%f>v5ccw=g6dQk-VpDbF1#&d+J9<ahNcU7%Y|>`UDZ3{Wvm%4%uI3AGI%D~92e%g
z@YZPOe6ZC6^LXPbFD=SC<y}BiUmjX0%I~_M{uEXExfZdBTzH?oUoc~_3rk#Bb0M9a
zZ!ym9&s@DH?mZh?>cU4Z+;riV3(H(s?!s9Y&bjch3!k{aulbI<@Tm)*xp0(2hHZNz
zy26Fh@tid-taM@Nf!tNJ*cY-s7bIED+D(m-tmVLT;R_emyRg%RT`ZdmU%9Y3Rim$6
z*u*Nkut6jnQ}XW5xo7op_I7?NlJ8RTPItBMUDzVtt%BQK*p>>7)pIk-58~b7!m<0#
zJFMN}J>bHRLiV_@SI9mNE+OOQIE(p-QqE7?Pa-)icu??X7Y+&O`KVK#UxfcENbeC^
zT_fioLFodKZ@b3!6v#ft{`xgKv0m=)E}U@TB<mZ?rJMY6DdH*Ge=PU32+z3ihmik*
z{-kyNo_SGHCizRe=UuoUWbNe$g_m3yaW{0CbH&okD}q-AuL)9kUC0g2!`nmj-e!+%
z3-P9>Q!j+;=jQa782g)Jic^P%h8q5H;l2xxX?R@2zb-uB1g^oWq1}_Qhc37@Xc}x8
zo=F!J4XTEH4dYYtIS<=I24rn4o2P4-IU>I9tZ{HnBz!LB*7!9=?DWH`h6Yo^wdQIG
z4L%Ki4f!<W*U<XSoXv0M1T-xDG?y+Y<VcZt|9({pXegwiu!e#f=)Kvu%IAHnbZeA&
zL_-k`LmGtX%&c5uQ4N$A(@;Dmr<X-4siBmHk&P03+hu8h29ifh)hMl@j0Tdjg5?D1
zeN;$!4XaDnq4x<5Pin~4P)$Px4QU#p8e$sKHT*d;%tfcSC&epjsH9;}GO{%*FQhq3
zQW=6InXJ3;h+yGqPL#Iqn{f@hc7?Ju@RVk*F;>=4g^k>;XjKi*WM$1^X%ED^?T_EC
z5UZ}Cbjf(Gh8mjlbCaW?riNM?URhq7pS#ZP7pNP``?ygePeW}D<=xpl@1l-|x*F=S
z(VE5U3sM+Rsx{ES!=vchUyL@=&{)G54P!Ml(a=;w4-GvvG-Jd)p^4wtS<uKmwth}?
z4J|aZ)bLb`SS$9FhBl9O*{MXf%@4QH(3VyqrDDOlYIs^hd+~M<?9AGwLOTh0qNv(M
zNFpWA?CCrncVn$Z(p~V`RA`@Z%6m&Pd$H>^4AAhLhTg2>>{uTSpZ=A(|6KHW@%9z$
zC&<v(D`mZ)q4V0%5Dh~$yr|(N4ZU89@V9B8hCv#5mOjs5Bn}qN-?CvEhHDt1A#fo!
zZ%WR~%xFr^+OHk{iU#7fDtRL{jM6Y#bf~uFrs-g##5fJFYIuWft6@CN!;ZhEVFH_?
zX!zsZnG;_LPt@?bhQUw7N<0ypq+v2!`(&h}Crs}Y4O2Oqo{8~8=I@VZ?sdneF|=F8
zyBZd1n6BY14R33BN5dQqb2ZG+aB*$?hw`y^&c$X5=NIU+G|U!0bViJ!^O%<wo3CL3
zOSL)Pcdg?V9FD8L*xImcd(f~<!*W)nUidx1_ccVWL>CKRqTvG}4E>NJF~vX9uw+n}
z!jD<1HKBKAMF#vE{)8Q&;WLq}6<i@mg_RmsrTFJUR%=)zB>i%T3hRV_A-G=fOF;&G
zC8T=Oq8l}A(y+*b_dNK9uM9XC-KgNkcN#Xcb9D^U@x6vE9OF7H9a}YQ)9{Cevl_N*
z_<>WChW#3LXxPc1%SwJTvP;ABGcvi%yN8WmwAyaLl5@g)HQX6i<FV4=6Az688h+Gp
zLc>W7KWR9q;fRK#8h+MrNW-rhj@vQ1!y0(e-Y?<}pJ`9Y$wrAW6?5)1O8lnb7^j-G
zG0*zgan2iKBEPeo>qGqdgE-(~d{N_$d?Mv@$SDmx_3N~Ty)$#%jT2{tw0|acjx!8r
zU=0tL3yttj4UUvM8qRCD!0y&?NyBZ1K40ashO0X=_pZt04KG(jLg7`;w8F0o-VnT*
z3caOaMWG1Q=psepcQyR2;T|V{4Occ7yRU&~)A0~~K2eXq9^$z%4Tgmt(oi+Hb?~yY
zqy|NYOUKKXLR=S}m@h-sL8PnrsiBFyV7HjAV|TGAbv!z}I?Od8Lx)d?Uq_|FVUyiA
zJ3M?*Bp^Y@$Ap49y4DVR3uNWfkza%b1d9k36fC5pu#iUtndZyCTEwE_EvBQmkP@lT
zk~;bpiBbVNO6%yTqmzy@I?C$kpyShRS~(q$>ZqrqzK-%bW}Hy=)G}!vkLh?^#}hi9
zr1G%5kE`ZZ(2+)+tzBv~PNeIos5=vKWx+~1B0@rflxOJ3O!2Ue9?v<?33O2r#suR!
zvV_b{g;vo~RY$f6tLdnvBUeXt9W_Lfqobyd_vbjzB;^|?)<~>89knI2j*g*w%oYDs
zeZ*JvL4W6ObzL3&6G75I$5T2Q>u91wdq1zCjz&7p>N(^@x=xJ~O?5QW(Nae%9oM?&
zebGIyxej%7ofhn`{ZYDMjT6Jy#aruOP<tJ1bhIUwExM_5PCFe>>u6XbR$^dnA|(ww
z=e*uH!Di%IeP<nAbUde{w~hq6SjRIuy6gBeCvyBk`hkA2Zo2b8Lc*1qXQeK^*kZb~
zP(#;KNSW;7+rP@Z_fLo`ihXqS)6rkY^E!I9$Q_yy?aR7nM7dq$4_*PFV=#M)hd=9}
z_eH^%1P2OII7o+nF`Z<HXgbQThKAE_b!^nJNyjTXM(CKXbJ-swb&S&Ss*drTZ93<T
zmJ*K9@owY9hjvvq?^qo?m~Nbo<bXI^{xuyFbTls)<6a={hVmveC+b)@PFdeLF-gb#
zjGW0jUe_^2$5b6}u;i!fOw;iu(;t^bS8QC?fMW5-uUF+8q8*JBZ?hA1e5PXsjZ;U@
zF`-#HX6txtduXQMz|rnGI_B#5K*xtV=IO{;?pWFq<|TZA;Jbng1s4gvC-}Y~qbwG(
z;_1k!!g<B7Rb8s%BOS|hEZ6b#=@>7J>v=BrX{l@;{jnt(`&h?;<#j$0{8X^xyci`b
zb-b`M^o2ChDjlEeSgiw<V`+AswK~=ar}t>%#5xxBa_C;;1cTPID`#YWN!vEFz7qUe
zklqbK+VzNhqvKm07j<0H@tuy%Iu5d6oDG^JzSpr`#}7KTu%USQi;itNc+xWYw5ws_
z4jntCNC!Ban<RGW*rQ`FM}3pTZjn6GB(YD&*d~eng6}p-Y;2PFtx1C9M<#W^{SyaH
zhM#|qcumhC-FXXnT*vP^4okAX==fE~5f<j_5Zy5$M|JShhu_$Y*Q@>~PcKsJgpNl>
zIX28Ag-;5n_mq&+I?f3BBPBnp;~a;Hc>fYSFZi&a|ALUQ<Kv8eS;rL}h1@9Yc4nlj
zI(R|VJsrIA?3#}296ma3>bS5dmfbXV%b6~+<Ng}tw>i}`jos04SIFOjH+~LL_>YeJ
zI{wx1fYqOsThNWV>oOnG0#9WcZrC(+-H|A6Xc9!Oy5UOk$;-UDaCb`Lal@P98;bc&
zH+*jNUFKy(e@Y&3BPcwdVE&Z6fE$^w)uHB9HJkW|8%0>trJ?d}`6+j!lpB^C#oQ?F
zMhQ3WH%XLq<5Y{h|H$-r90E6rHcgaqqk5fKX@-``b+5{qelJ{BB;^Dj734`i)OpN}
zsxO8gcjIWO8gx&%al1hlNtzq!ZhYg$w{BE)qmmmhxbdPJAvZGIXzxY`me!518%^D4
z=0?Pgs2la&j%~->h`Yh>94kvtWx26ro%8;MC*K;2LRH+(qDNK1Y&WV2sqRLO8#RU3
zV47cgxim_(T5jZtFjp|%)H#;Cws4X<Y`PS$N5i<>g~A4IJmp5&5jhRrXw1-VdE|}U
z7~CyyO}D%zZp`SGmvy2}sS|b1M5;AsBVWyY+Km=&v}C;sb-1xS+{%sCZgig#Z^K5I
z6>H~4Tk%rTGU^=1S0$2FN&a7VWcqIOaHA(1p=qMC8wocS$tSB_XbJPZbY0mRt;5~i
zd~1pBZtyOWX9ZW>jgYtfAV%cV1rHAG#TNc0^qd>L-RQ$kcVmDXT=5t-Ez;MGes1)4
z<L>S-z02})dJN6&JUfTv>sgsx26@Sifo^>4#wTtJVrAWU)s69P3~^(q8zbBp>BcZO
zhV!X%i1Rk*Wg61!IoxmXiW`6DWOrI@%vtYvM@g5BVe|{mo2=2|-SB!vddIpkPUHhO
zL{^LqzvjjSH{N#R9XH>7I7@jG-I(MCk0qS!#+z>3d&SF3b6$62iW?+!Q-!=C*fE(s
z&5f}&vzBJWrn~W$8zelei8#ZJnQpwx?kJHx%Z=G=1UKfoF@0p@`z=v^>=St}Jo29!
z^Q3GG+?ekMuUDXC`qw!uhT7aQwuKV9$jvuycwhKp!H;N-La6hBkPn%4N|Jfmwaks>
z;{CmdvF2$fsZZVb%#E#a^(&U)kavX}E8SS-25(k<ta|)&H$KegyqsF=#%ijykMw^w
zyoRkE50mTB*g7}9aD#+yJyRB2BKJjNU%SCWgf?(`IT6|@NV18|GCof7og16oDD6QR
z559L}iyIyfydG?IW1AcM-8kUXF0$Q?eH=R((I40mEd1!$PR1HgW49Z|>hLa+kWjKm
z<a^yv2GpRpe^Y1afDb1>Qgc!0o*O^8anOyQ-8ke%S|swT8;9BBTQj?L$ohq~*qZss
z?aU^(GbuSD3P;`eO~^4fE=Z#tcjI><C)_yg#u+zGiuaTtvwLcg`iJnp1kbv0P6*|H
zrgUCwnm8}KpLFF#H!itx*^MhAyy?bOA=d@33I3PzjsM4QaVit<9a?xwe%B2qPGzP{
z_YY@LH~!^#DVOW^VCwDo12-PByUXR;A|%Ng6iIS68x&DIP(2Qzb9tbpxbDI7-Ej(M
z_0D7ph6knx1wAO_!KrHM(!Eii2YwHSUPi!!d>-e=i##Zja@RBRi===cgAV7Yg*|x0
z<NVPm;Xx4(ih97~D|wWCF%RBvnkeqUhNcN`ft<s2a<oD@hom|sJ>a&_QXW`Bc#tWm
z_IQ+}tOw;hc*=u@9z5znc@Hu@2z&6D2dhShD|ry|;BgP0@ZjOB(32jd3#lNOCO9}J
z%%F<GGtOG%92z{Zf~C#yV8oHw=j&n-527CM)2+%L^sSf6T}BLzvE&}`^jEqp55^bv
zkyP=Zst4IL<Mz(p?Ak)A30C)@h7bnjcu-S#Ey3KBJkJA9MwAM5Jb1EAq^{tgv5|U0
z>I*gyZ2g$Okq3=Ec*lbo9_(BZZz7G{!Goqknt9ONgBBj}GzPksLKaPTwep~~@HT?&
zJmC2ZZ9N!u%m1I|(;{#0!Oc@eDe34zCl5MHn$y`|bLw>QAmKq*s<AaZ=;y&Rss8Qh
zL3bwT!7wYM2TiD#v!j@N&4-;ydWqU|g1rU%2tF_P#0Q=GdoaL*kt~b{FL>}Gt;mCy
zJ$T83>rE4bJs9G_Ko177C9RA=v&7jzwTxzoM$HmKnWG22g}+lIn~t18udoL_SlKMW
z=&y_9P_qQRqdj<)UFN|U55{^hPIMeK31#%xJec6Y>mE#@t+J7eWKZ&7vIoBAiMC!R
z@$}}-Kw}gJ&7IXHqgi6A2XA=rChKz4IopA5n$)Xy^Tb;oye&<~(}3B49h)b(6PQoS
zGijV_LbE)W?ZF%m=6bM@_04e2lL4~jbcn-bK5e*K&H}-A1qYmuQ<C&#^PKkgJy^_q
z4ZLY!i3cBeaM6oPUVP}mQkLI~DPDZ!!7>jndvJwg*@KTgI89^r;1dr%^<W2k&{gv@
z4_0`vO$xk{W5<KfJy`9*&&zW!<QAu!xx-7xI|tWzz)K0&dazDHzu-vpV59K$f?o=L
z<-ylNm_oB1-c7<crzGEa@U8IgQj*Fmjqg)@3x`9B58mPBjdj~S_`w4bI{ql^lydI!
zV7CW*JlN~OArB6Va333COsMOR&TrO!4-SZs{6`Od5`Hix`B_M?LbYFL%s)oxe)r&4
zw(yxu@*^G`P04@r;8=<u_kdqFP~n6JCq+2#e(013KMo6@z3)W)!-KOPJUFXdpfMj!
z<9`k2e$InGJ<f{L93}o22h`$>^Wr7p!~aDO{?5(0#I7+qkX-fPng;<df?izr;OWI7
zUSD$CgBwy{9<YCtUBJFu5FszJG4GBCcbS3*_h_G9_`UeYgL%DusuwOV?tAbr4Qx&1
zfuQ2WLm{>Yk)d(QleD_tzMcKU|9Lg9Bkz8)b}KW3L>I4H(Bp+yh#|;O)9d_0A^ECy
zZ1aclIiJNZeHhQ@b$$g3d+~@D&!5iC??nMG3VOls$_shHvz7RXO`E?n1L@HsUKI7B
zxECe7*!rQXm={|<biKGDKJK%4pEItKUX=2psTa+>&TBr)iwa((c>(cKQre3$UX=Bs
zTuSno7mo@rpOSphBtXr_#ruTdlhj}7yctaQqM{c$UexrWQc6GSMM!vtU}j1l783E|
zzstL0Uc^O`<wbT%r?MASQoO47e=j$gQ8h2Br{p!fXnfOo=~>H*TrV1kJTDbm$BWv+
zkBxM6>i#Dete?{9(me2#@P>koQu4+^ns~u81{t@x7cHcwgS}|!MJoyI>qToJ?Y-zA
zq>W%(!FGaA3-aFcjzYS6(anoa!aECg5o8t#FN#QA$e;0|x5&GD@vIj;g!f8m_Vi-i
z7N<sZ&#^FtoD0zD`p`mBIxKlVFZzpjfEO<a`R#`JpXQ5Ryd;u=Dg8lS=dCV7hj=m6
zi(y_2m!L^ryewq27h{CHA~?c}kwO?{lowC-ac*O$8!N)s1jh-!DmdPYU$g(GGr^0A
zBBVZA=#z#2SGK8Myg`Ha;wvxS^kSM9pLwyui|JnQYNYqQSnS1HUcBwaJ6_CSOD@is
z<3;zX;hA2{qCLlRkHm5hew91h3z90+^2q1XAX{cpbDrqW7hK@QyFwNUE)slCkeZ=b
zjU`@u;Ke7j%&VCnda=}t<(&N4!o72d%e>%Us=*f`#Nw^ub3)ZV=AbKPwfiiOf4jyt
zPkhQ>jmCK-9K0*NSnb6cFILG|{@jb_g3gCC&tI>4?2jn-0j~9;(7xKtcbydA3om%w
z`g*}HPshIYVuKeuyx2+Xow-pG+2X|}A>VlME!%Uv`JES=z4+dX8#A+tt<5XavSaf%
z!sEK;##ZHR<-j}?+a^e|-HRWD5BNDo?=DH_s29I^vD=G1UhMT^pBF!RF@IIgelHdp
z*@K$}4tT-s5OqS;W)`gdZvN;`5_(YZXTd{)hXsETWb|K!9Pwhp)l7Q1{>isatot!9
zj(hRD)c1rJf23Oeq>xiyoK8v3(85)djdNBc=Th=Nz4%M`dBF=Q`Q=%z%U)dJL}#G6
zfva9z^CH7Qrh)5h94~Ayk{oM~hHrXt$BVmOjP=EDv3Al9SN;q?cBK91$+W+{xF?dD
z*Q;J$6Z)%P_#e*yUex$A{IB2x!H0qrQb94G8i0Y)hO@iIWq@aT8wNB3x&gO=+ShWu
z20HPGm}|Kn1CLK}2(M|lSt-7*MUH8J=riCq5HJulkk4=?|KfuA4Ll-*k^%+_3NMtB
z6gJTHhVzwB5s?&4$%_g3X1TLMUP5?D1EqvmDV=r4y=7Rc#TjcSdeaS*HBipLqXw3p
zbY5X+l&ewwT)4b}#|)6rJuc)415c(T6%3>a@B2HCi3?XWP{}}u1uhU>d(e4!SoL#!
zbY@=IK*T`YK$d|hyCxp~I$y@?!^1Ht316)6fuyp5Dh6s8$f4SxNL2&<A1KufWb=`%
zd4g_z^F(z6)4IeDG*4V?o~UVH+o^biR9$Kb$u*ECq;^VPM@U`4dV=)@TOC)PGSJWf
zPuyx`pfP*UpYdl}&Ng2LNfQH2MZ$9f=xt%3rGZxrj4;s3Kx+ff8t7r5je)iX>Lc9U
zKsy8c|Mj$i_6E2<e<bE=pv9(LuiC-DPZ_a}2Ksy!=jw4M!&yV_Y@myfgdind4RjO!
zj3D1rQ^<!~-jM#@ccGpJ`WonGpqGK?n9-U@Zv(toVci&`k9eOK+$B2=`WqNvpl0cC
z?8*2G2HvuYesWoP(EyX;6=p9P7-)d!X%GJ_JcyyoLW5b^4?;tP4;36HI9!klFB_Qs
zRG4I>fl&s=8+gsYXai%Ypl6I_ABDnKnuKXc-0nY4n%B4%e${YZBaX1b6AVl=FqNg!
zolP&aib)108#vi8`nrKB1`b@Svv*tG$+v2gP&g?OK6o%R&A@b8tO?7+TL#`XaDq_`
zyklU7fsbgV24)(VWnh7Uccmn=4a_qz-@qIx!(0RV-%*c^3O~rpDbX)Je_!VOCn5_!
z3N19S$iPx&&HFA-Irm4rXW)GUi`foO*Lk%>>_eKI@DBtjysE^f+zK)1rzf0Ck(L{L
z$i!v?-y8VEz^4YjFtFahX9iXn_?)R-i=G}DUdfSuEN7JgPtPoR$)9^I&Y;zzu*Sez
z4txVYHi<7A5vjW@w`AXNt196y4Sd5sx*6fEre7KOnhFOZ8w58BZW1(FBq;w@YWf{>
zUy)g<U6{z`-NK<kBQ&s;R(CME>1AhY!4IOjOK^u^v}|lA$79)8zIbG}fjtKH8mRYU
zgzgsu`%-*AJ8MVg0cJ`|rkT+`4J;oQp^%z?H4Gf0DK-p{9~RBJ(;~kbI3m%H8rbxg
z$)GpOR{PDs2fybWGjQC%@4_jkqwti0(+2)FaL>RQ1AiF!lW7__E9K;K`#A#_>qk7j
z;<+m_GY_`sh&xZ~;@~xKfkB)W=7cU8xW=ho_+`N>f>#CWpDFf4i^L5kyEocmb?!~W
z*#dn_kmR<Ig%3LLzea9e^zuz-E#)5r_YD*`QNqN(1|CRZTz@DJ4cG=06RL^j3yt?O
zT+yvs(m*4Br8D1zKKd%tWrFAv)J*6?C~=$c2=}HWh7i-lwIUf*p!1sum<WnIpI|W)
z`GpiPQP4yo;nXZ*qHu~oVuCB@6c+t|5_(UcGx^tP+0W6Ert`v%d%U~*YQRKk6J1So
zGf~DwSrhe5G%!)l#G@v{CL$(yY*%>`PnxJ;Vr`M^$4vMigdP`sf^mE1(93JH*h-vL
z(wMu6iY6+V2${$*k!gZA^!;5T`@akOxGH!@F7IntGCOJ_W}=RXx+dbL^E21<psz=z
zaF&V6CaRdIYNEP{8Z6AF%xn{@b7J@Y2v;+~BYK9f4!zCeYsQ3fOyrr)U)0sFhiaPO
zp-;6;eDhp5SCI1BCSDs8BB|2Cc@itoB8w|;^-Lr_&pdHYdCEjX6OBzYF~MsBn)Qu0
zGI8Qos6@d$KJ^vQB27)SHqpk!hTV~7CYqaQVWOppUmIl6wG!f6kz2fQhnp3uakl5*
zx3(tQnXt#@K5e4Ci4JVZ`drq?>u6%*8+i#6!;9o~65d&`iy(s@`L+E^dz`agpE1$h
z#1|&kn|Rhl4-?Z&OgGWf<m!al$Hem{dYRyDanI4H@<;h#+}p&3$>B#m8C)dnYdRCf
zFcbYu^fxiU#P-KyFPeDC#0$bZv`A1g&_v%B3A!OB2Br956VaV@C>)xS?CDW^xQUld
zykcSm8{fpRxw-uCVFCwHPToipO9I&>qfLx4G1kO56K|T>)4$5ACdRYfxW30O5VE*M
zf?m1_CMJr6d=jgllSlHpBsC=^pDN@H6HJ_;%!R4(nd&W$H4`73cw21d9TPK5%rwC{
za|tcM#4HoD#XCoEq2OE-^MuS7r1AnG@0xHQi_=TD$i#c8(D&KYDc)^}pP?U`SZ1Q_
z5dTt<f0POxyfCt_PUNAQ^@$07qwzVrX>R0G6Q9u<O`JQBx6;J633*wY<Dd7)C0Qlj
z=+@dxTE<qJSVMa_9-~`pVx7cgbb7xu@f9`MUnah0Q<(VH#COE)IiG%#xzTi<);7_|
zX(uzo>x;y`X_07qAikNS+r$<Vyu~cID|);|;^j(JNa)>a;_ns-5?(*?#sc3DoIv(E
zPj@>^+;5b}lVEqV*EqlV@xYJ0CiZa*wohN+$9@wBOmy)f;lqz6e&U$*p{@@HP5eyT
z_95cKA=cf*FB}fEv7>1%%T#PRvh&Uh=}iBKi9b#JW#Xub-%K1caoofi6Mt|HX_?qQ
zHlxV+s=ss4nK;`y<7mgqCpm#kO+O`gnkHAW3B6}IrTmr7&~vn|monzgPaiU@GDcKA
zPqQ~s-iOD0xX7u-gyMth!(|g!Ox!kc$HY|=4_d@-n0TXBHaE6iW6%B@x-Q5KZ#PAL
zi#nI145j8>HWb@|5)=1CjX@P&@%|&6aqqKd+q*~}a+q_5tQ<+QO*Up`?=Q*(htKje
zBX0S2`Jnj_^dX-Qx({w23?ED%JU%C{7*GAY9QFE~!Y~%|^@*Hu13vhLQ-NtRsrt{x
z^7~N0hf+RRJ{0t!kPpRtDDHDARamg75040;q==9<-DBr&`sihJCQ^dk*F8p8QV8Yn
zp|lTWnOBQgekI6al<|SebZm-pK4)9tqdsuUIte2_?!)#b(I*7cd(<F*Qg{WyG#}E1
zR20k<tmH$;$Hu9dAxNSnIx*skP^qX7F(0b?P{W6~4_Q8J*wL9sT~+p>iVxYu_URM+
z=~aE`cvB~-RoL-X6ZymRdJLtF-B#0ce5mOINiD(JKIHn4C;V)+^yjZ-F(~+shggrb
z^P#y9EqrJo3KTZ>;i(jFD5Q~K{u=2`gftawCirc&bVi|T=|dYI+WOE+<gEoCc5-r|
zYsWH+<Y^yx0a<$=p7_VrL3n{jvnlB$p`8WOS|%8!s}J4SR(@po@r=*eG26?B=X~hy
z!?Qm0VB_4%{On*Q%6m#IMyVTAdb2g2@$~bdzYl#lBpbz^_hI_)VY<FT?30-Te0c3>
z+VpPG={~&R!;3z=<ikK8CLLE^_hFC^gGJ$zok_JJJ`DHaWgo_#${OlJwU&utKJd$v
z^G9pG;=>3UgAcFzFjAt7_F;?<qd59p>5LottBd7RNcL&zV||?b6_WAP^kIVNGo2h)
z`s{}#sWZ`subzqiax`s{1WguXE>na|^}$xttCzOk@Zn9iK#BBeKI~W1D_qMazU9N)
zKD^_@3^u8cJDM=lhgm+X_F;_=vwfK3!*U-!X0uH2%=O_zNz?mo#ylV9`>?==cYRpM
z8Dn(xeIFM2@N~<>kh^L0z9;<prcRIloVD18Yj@L@aLms1Q27JVCt2#lM?NfLYtQlw
z>{~4Jg<>UEWzjM}@!?Y+R{8L`51;w4?}LnmN7GjL@P$`v(;|9AO<(DAR<MU}sWEa%
zl$Uxll;1wD^<kY4>wWl=nm)|yQS48zwttp~3MJy{U-|GglVaU{z>+9$`PsmdA5Gin
z!zLfTp*`QsqT4RyTOYm?vRUx^ROl8Twx;+tAy%ypKM2_&xKnVK;BG;txyOgS!duR)
zLGJ;{_psoPJ~V6^rTdAEApB>+Lo}YkB`No{i2gz=T^Rk<ha*0`H>~DS&V(OFPx<hh
zc#jDl7yMoDgdjCfvPXv3Bsncn7;D#(=vg1maTfK%?Z=-!{N=+{_KpwdeYn8c-iIq3
z*B^CY%Utx~#+|gzGozP$7*e$+C2aidlZsK;drq<I4E5n3AMX2b(}!D3_Sp_^9nYF@
zG5f`6iQ7Kh@!`a=th*e5-D}(v{M(0NEfXsbbtr$N!^$T*|0^x<Kqj{dLHG4p%0t?!
z4@nm3dY0yQkWLYz`r-0p{Ee))S|<LJ7d~Cm<A>Le0)7<q!|=oO<E7JS0Y5G@j?#*J
zerJv)_xnLF39AtF<MfTJe17EjV_DNE-NR<lLVgtX;|V{W^y9FdO(7#b;ztobiuzH^
zkLlO5iu+N*kKuQ+zIwJsN&b{STceyGw;pDf5^nhcKT7*iMwCB3omJM48IwBDy>lmv
zYS%WGcvSSu`}sLDtW7nCPxCzP$BsK$llGQivh3>$epK|Mk{=(pOr-gd?nl<8Z0%C^
z_Lhm6*~Kcpm(kX(unL)eg#CEKk2n2@_!0G^z8?+z&M=Sp(WiT-x_-nN*Ux8cXAXHp
zS1S8a#qZ2rRsF~oQq7NCArw~kqehD7_)#;(YmtnqNd>w*KWdA7Mw#?Fer()Xf~1~g
zYAx|FYmUdK{OH#)O5V`VKW=F3M-xAu^`nO$P5o%*M>{{xpGa%&M+-k%`_YE!Wa=&b
zsMcC<B|(Fa)Vv+hX+>?tTc)vRUm+!LQ8C7P+K={r-0fbhgCAWaw4-!)!xq&#`O(=A
zl7HIi#DpJR**JD}8bdcf7JQRM_l%J4f@g20_4K2cAA|iE;>UA-^k&KZ=r753d$w2~
zKh9lI+0@Vbaja#cuiu%1NXAyu^)C7VKVI<TMdt2Dso_;VKc4o(^|XP04D#dm%UR6y
zqnJ+p<<~k5^<$W0dzeVe@#AGb#`-bNk5|~y$Fkl!owjRB)(AgJ4z4m%aFidTg^Urr
z(L~=mB9r*4AIk?g^WM6-RSIQv98a~4onG_fk)N_jIK?Hp7MtY9WGR22t<L23x*t>g
zm`a1Zk#@ahg0At6v{ikJP4k1uU;OFPcW?RewjUvva^zatJAM%9X81AFk6C`qPD$no
znIkxt=I3(kikkCjr4sjDKNkA2h-TJ4{e3?c3wcj){{@A@C4Ox2W2+w@`0=41OZ^!0
zNu||2!k_!`k*F;bTrT)AbAKWI6G4(sg?#463Lz^6SEWMxe4c-`A8Y(rOT3W&wIInl
zj`30zzhL9{uDIThFNKhQ<;QPDE0S!W`T4QQk8k|g?8o;Udftl1S7v-GDSRjBzLj1m
ztKwTPR$_w322>nhr|>q;Djdju-1g%Kj$iiXjkF`}jGcb8Y?*z`k4Z~2cKNZ}k3D?&
z_v0r&4oc8IKYkQKwf%k^5YAKU>7~0@yxPwq`IU|A$Dx$wVLyIJ@uMdl<)f*%zoq29
z>5=2KJ<0lnAAivd{5a{yDb95w{KJp4Le2=jcwajwghl<61M|K{LKnWTT@d+YKd$(3
zF{N`!2t%oJ)sO2b`87Y<itvU=>fZ3&6!Pra?9Y7Jcl^$NCr%4r6;$r}@wXrM{2=F_
zn)CJ3|6w8Pr{5QRYG3w4TB9Ei^TE!CBqIi}I*2tvr~$YFs2@Os0JH$~0G<q>LICan
zJOO9Mdo18Q2^2pb^#))BV2aQefL}<>?w&vZ!2pT}P$Gb${iFE;C=@{90P+XWx=EC-
zKmY|(e9-I~j|5P%hck(t>rtWzqlowXAP<Gb{^R{Rl?*s@>Av@BmJXnlaC&*K4}?$Y
z>Y=wx0A&McS~k6$;G=^3O{KgL%E_6_<5JEi0{k#gqn9o%fSLi+5_!5{#Q-V=5DFk8
zfXo201E?0jWBang0c4T5(jx&xMG_Mnk)|^=9zb6`ousmqs!9MKwvJW}pu=z3L(4ew
zwD!^MX?k@DtvRV?4Iw$qeNs(6TjomE?5sKg<O#1W`1Rhb|H@fcy!8Z2bc{X~K*Ipu
z4&a>t8i|l<?E`3>;!T7!4WOBj=7KE*TMAOYm5|l}v=P!aC2tqN(<#oU^bP@Z44_j0
zodX!pVh7MAfJ6ZOX$%2$4WJu4y;b7*0G<h;djLG2xn}^+22iDPv_}9_n@4ijJExjo
zPm7ZG5{2gkso6V#J^_rZ9j^R!jNVEOB7Fns7vP6T5xOsOqb~&TqNM*y051iwp+<C2
z0D~p*fdNo~CqfSiU}ylt17H@ja$-aKRvAX#s|MYd_nmxSmY^s5)fmCN0vHv*&cYdE
zC0UZutW^E%F|_9^A*RN<j0-qR>#qi!EfDlh2w-9WpO?y-9KfUiT78nqW4P$`yRvKV
z54}!h37s0ibPksBVFtY+k~amX1#n<%j6%A%0$6J0kjw~RW&q~{xDdds0A>fA7a1{k
z?E2-jIRVTMU_k(LDZiXHkA=USM&c^0yc@v605%8keE^FBcrSo80jv$+{QwpRuq=S(
z0i0+aU&0Q0HMTT>4`_!>EgbJ&#<wFk@&5OjAF+>?hVD?ZH1u%*pRf&Y$5ztRTO|gE
zBA>G51L!$0+~REe6#;yCBSx1uHnxftVWuxd>g>*B=xWhv+A6V*(F6E8fYLd&*E4P;
z{uNDSZ0t+n^fEekkUkZRZ3ti^>uc5C#PYln`!0ZQSi!9Lw}K>(q}Lg7FOykp31Djg
zM+5jRfNkuWm9gCc><M6d06zrqLaW3Mb|2@8MDD-}aTaEmaC-NRiR}$wUjRP`aEN0(
zfYDiTx*vrc;4lwHD>sk-B;JE;hwCwhGV8+u{1U*g0kE8vyW~+avqF5<Q%-q~aFn%5
zQ2t)&+Q$O;BY?9~wc`Q&&Zg!>H!yNCfKx)M-R4&_k<$U337~y6&R9pn@iQfAp9|p6
z0R9R<MQtju<u{HBm);g%*(yQF#Q-jG;tlfrlg!HjTnXTA0DlK?l{4_gbh_ICTubrm
z0o+LOn?h~{aCt;Us@)Oqx9Js&^?T$Vo9IG1-NOL>5q@9rU%>~0CA($(r(=sZDX0XU
zh^k=68y+nPJqULYo*?Q4Q9lT85JnJ>22nl;GYDT0C4(pxgg=Nt5Zg;OE*eBIh<rg5
z3ZifjnJ;z8A4EYWGQN3%Am$&eJbPZfH(qT{Z?D(uJrV@HbVY(V*eVg5*lcg_di^do
zzB;mbu^@^|^b$eP%XGMjmuLm?<h#|%1OXxBrGt1pRD}_*v`Ul>f>=&)^2NrFF(`<5
z5LrPyLH!^q1rZA3#{sn}uy}9POAjJV$htwbm_8*HgIMIPPm;mhgSg(TWi*Iz5D_V1
z_0|bb>qNQMe8y|ZAQm_#a`MVSR0$#{h?+rE4I(>;>Op)vv>uhK1<|T?f}Aevm3psC
zu2&-nBE7YO$PJ=)5OqX3Pb$SMSQskQ74Nxy`N#{MtIkXt1ZkysJ%}kmGz_9qkXtg)
zJBY?XGzp@85FLVG!!`|~c@QmvXchzud9*++MsLYt1kpB#c0sfjwKmdF%!?)I)jH9-
zT4lE9JFOFJfv2TBBps<-t#X$j5<zqd;_{g0%UdTpi;xk!2GK3Zy`$(M-SkWl-6iPT
z)(Q3+vu5XBd#MYP?a3UaI?Ri9LP?(>o)2PV5Tj`PLG%k^a1cX+=pV#@AO^B*trIT<
z@gi;MT=kb|gsl_*wsVqV@BG?2v43{GK~fPG>9qm%h6XV#h~YuJEIr6vsK)YZZ4$2p
z!J>|kj@Hr|)ArW(t~WY}F+s3pCI&H9?C{kf#!CsuNi`YeH6g6U1gRanl6kQhEW@NA
zO0-E#7Mo`Urv~u`yQV;`kArwKh-pE*8^ppOrU&sB6Axle5N`+Zj+A7kAQNHF&X5#X
z&RMjvHr#sJlKIXRlb#>Mf*|Hedj>`}XTLCrdHvU+i-LHMZ8f9b(jeXsVt=R#`4TDr
zVktHYL&*n0d?;%5-)%}S-ACeGCb&Em^hprwnzsBjh|hw!G^+WEARgwgwTeUj-KHyp
z_`YAgc>h|Ie=a3wUTdjOqs@o9`S3*$>x1|qh#f(E8N^pXYzpF=AeP-v|C*!YLVEo+
ziK{I$Hn0s_W^5FMQRUkpz6)X-pFA(5H!oLlGbfFU>06ms5L<$nTe>2Jba{8uDR199
zlT+OGAXftOlk5y)R}dG1xERFwY$s@U5PLXTT}<B_#BVId;Ltwt?iV~j<$u$E6#Pk$
z-h)B>Ec}q*VZmPne-%6;*sqdyl!NGt{ETu;Qa&EU?~?3^AkJ{Ayp}%4U-2Zn*kAEf
z5T|Lq1uME9r1z;+@sA)ry_kMh@En_^M<sgy4B{_ZLWzpx=V`R}(@8F|%QzL}!|18?
zuCR$XYvn^$K3wCh(muUJK9tOd>p|QQ@68~ze9-gZmUwRq-Vvno-5~xB;+}Z_5wr#G
z3;r9#10nxM)LDQxb-wSvP+a24Npf<Z;L?ybsQ@Vyio0uR8+^lEHed`LFl57RFc>z5
z3<ks9Hf+d{4F&^-+lD**@ALGV-@n&;-Ph-R-sg2mdXk*;PL%#17194^{7?{42EDFq
zqJ-=MUwd+sa|#<pbBX3QAddi3^9tlMAb-SCK%k%jhKOaVC$~x1ENT(8irPe3j$OcE
zfD*Ad1=t2vproir6r#+f33x>di551Xh(J-%VxsgcE>J@BX<@zBr3@%-z#>B|LyQ4F
z;W816Um#XAPBb7IG$3Apxe^R`bG<B~tU>=jnxUdVIRnZY@ThleNR*IlK!pf599=#|
z+$ymFBg$76CA_zpsu;iv<_uK@PM0WG!+@G}Hei+kwG60jKz#%6;{-mtg#R+sG3Xy%
zeYGIAt^xH7An^O})P}69aImETdw%pcGN7>m&2#2#Vn7R)Bkw1haz))Q-Hdhv`ZkVX
z@Z5~1rGQPp<y|WSS{smNz=V&=wK1TJ0bLD9Hz31+OoRTjpbiFfG$3rik-dI~wgT-$
z+Z!-tqHgSDKxYGnG!HlFl9JsRY*--lkpbk7MG5K6!`%$%ZooJL#v9PXfSv{nGvG4=
zdKs|g>nei`7|ad|_YtMBuL1pp`x~(Duht9$Bsx%{^P7j)H4lHndJPzAz=OU?pNby-
zy2_#EVe0(NRr<cHGF*%!3>ay^g}zCj8?bjt!r#rqe^9TajWS@g0dyW?z*qx+sDg)M
zt3GWWzVdYyLfQVQ%re1%{e6=rv$FzUicU0Ok^nu2^iTatc$z4kzh<%FHdEQQ{;914
z3Dd<sLzI>&=M!ejeEn#^I)OO`%r#)10rL&`#(<Ru{9wQW0~Q*vjI)rvVBlQbw+4J?
z!1q)Aiwt0tVX*+8Vz5LC;R0AHaQ0>Vas&SXk7ZcFED;`2qUtJf;B)0xvx>R_-jaO{
z=cR4JTG7Wd{N(ip{A7T0O5zOzHW;wcfNKW)!}H&OO$PjKz!?KJb0Q2lXuu%@Sjbib
zwi&QpxLj|QPhZ`^ia68;>@;AP0lN*LvFVApw~JB;%+l+2U>^sB3*a{Is~<}}V1Rc?
z{>DE9_z03;4EWW6;|Bc3)6Wqoa?^j9OO6ezA3SP6&KBWg23+E;K~MRYjtz7<<Y!+_
z7;v*nDhJ`Dbd8o%2At-!n&Qc|-ucf)M(HmD&KYptz^?=Z|KO_N0yyO-|7n236C^Nt
zk-Kb3e!}vpflHi)v;NBl{4H=rl$NV9u!QTJtUpULY>A3~y0s$VrUADMxNX241D+c2
z%z(RG{1*fNax)6tGa&bD|9vh_iPqR0cqo=_xdM+2`u#dILp=SP1yUY!1PmY~niHtc
zxfxU9UmEbrfEU7iG$$>u4Hz{c_(n<#myRdD6=oqV?gu^?5M@LyBWfFw&4}zqBpQ)q
zM6{9L(16Pbw-Gsw$Yq3Lgwu!>Yy7!IjYi}Vpe3&n`68U(hyua|Mb{q6X%M)Pkzg{y
zY=p&#ABM)+jc^!YHR4sLkiB)tW<;BwIyl}%Gc|v+(8boFqAkL^J`E+e2>;tG<i4-`
zYRI7);W6sR9gHYx)L-Q_BfLg@Iwqr#5ygxsZbV_)Kcp5hBIQ})n}P{NjiB<G^}P2x
z-3qixDIu1b?)Xwhlr|#92%ix&2BaKqcz|wYjCd4`_Z#^cBCOWLI3sAM#hfjc5Hup*
zh}Jj#3<**ip{x<*jHqNpWh2TP5i%m#hzdsV(mg*h{7cm@H}NVi&)$kg{fbtKQNN_d
zuy22^0ezKJBdQqDFg6D*bgpVd#m@Sbv1;O0U9!{=ttmR=Msyt`>Kbv-h(kuyGoro`
z9~tqn5e+y>-{op(L?a_u6hExo*e8+oHa4OONAGx`sS)jsXr7TkZYGxIMzrA2UG^8B
zm(-HOI4`LcJ19U-<Ln5hi)L`{j#bGN4vV&p<ZUNWmeWDX?<m@dE5{PsS(Nbki9i=4
zx*D<Fh#f|BGorf@vvr8=VMI?OW*YTf(@T`l+lXhW`p1ra#M0M@oiQ;C{fy`@JV11y
z5rd2vY{Vx<Ofq6JXVZuwMvOFK6xZ<PcxKrh8#C01VMcsr#Bd`zY>xjtQrdohOtTi@
z5k{OGm);KPqdCY%Of=$;?G?uw@rAfW`(vua$Go_aG|q_eMoi%P*;r})ib`4S`O=7O
zO>~|#AdNm#jQGlkd7I;B81c0cQ;nF$#USMrkBd3|Bt0uv->XUGe0q0|HqW5Wl0I(D
zr}uY`5p!9B5%Z1s(TH^{|F?{9j96yGa=IC@(1^oh{NEa}*oa;&!sJC_`F>fD(eI2{
zB6jjpBTQ3t;|e3bH=<pQ;3~0{p6BOtY*%ti8bRp3D?sHBX;&MuMl5T^nf^b2mO%S@
zX~WM({A9%FGVvR@I9mmsg@PL;x@oSTC;29BKsKXS#eTMgEk;nc8gZ*(V4D#gKdDII
zL^oU$j7bjeG-8(#yNxiK(%*M?G3+tw?@9KGWuNGN(E|~mUyS(Gh^Jf<tip&RMjSQb
z7#H@ijC#?r4d(}Lp2#?E#GJIi57`p_GvYTRPH;}S9*}y?h<}VYWyEQT{x15r5oZMG
za8}@)5$8F-Ey90@{waDv^r9$}{xafHgf9yex=@}aT#*v4iY~kpL(6sHd!jdtxXGaq
zzHP)^fjdSp@RKY$GmxqGjd&nHekkxSm(!$pMjsjRm?P<l-T1NRiNJyuVMd=D@q$~-
z1eXcN+9z;8Xne^7)`-_UqhyF^%xl71;di3%ML&o}ne<`ICYoI|S~Q0!lX9AnOE`DL
zl1JeFy;P>=Ga-M(UO=Frs6o_df=R$EY7w=H+C=RpI0RUxB5-F{28(U|D8Reo-@fbT
z3Fa{YCXDuDj31f_UK76YV1WmPOek!^Dg~<*6fvQwiK`C%Z762K_jh7?n9$RN;wF?Z
zp`;0=OlW9ABNIxS5Mx3)6Uv+5GyU(~d#nj#V#<^;!7o7G)FK>bLcoN>Hw~}v#4rR+
zh&LgN69f`PlT0Wpz!xT_hD=B{;dYmr58jolV8XwTD%CMzSA1+m;S^CCE16JPI90St
z#9q~eYQohcmKrA16s{#&Ta?R;h18Xj>xtGk;mp$t3=K?hPj5(Q%<(j#g9#l?m_N1w
zFYz^H$DhPBGwGN6nu`)zn9$Ose+`(Sl|XCJG!xngq(@RSOvn@ti?$VQC)!^0c#AL#
z;s4_UwAfA@`EO!7oA8kdADhtG5!+p~3tM%fa#v1bbh&P#guiAbCmGAqr<V!6P1tS5
z9y9uw(AR{4W(+dx6M9R@)z5_fCjHU@YZ<^K69$>|fB%P>@R<pNg&F<CgilR)T-Y~6
zbf{>L9cEgFoA9{_XH7U~!Uz*any}S`I~{$axWG6{Y!4TJiSH6In`<NB`@)2ACQLSA
ziV5RQm|((}CQLM8;m5w|K7UMR8D6Pih_m>P4)IMgflT1P_FtJW&4lSD%vez7Yqsrm
z%v4c2%;2KE8`Jk$3@?=sW=eDxm#ADQm}A0R6Tctjo5!I@@UabTU&k=IfR&o?1D#Fy
z)`UeSEHz=72`giAvyjD7$akVc@5U@Kq3O2rv@bVdg$cuZ`c|5--sAh;gvHT5)?1~7
zuC&u<wFzsO%7HcE&<NjJ6WZ^HU1tL8{ZSM?U%occ9Cntx!Gxbp*kr;+>1>5`{o)4g
zn@!jv7IMAf`URXZKgMn|VY>-COxVfON!qrHlWW33R%F7Si2puG+RN=$Fgr`zZ^8i+
zJcaZ^GUI&tO8I`_S~cN_3DJdohuNdoG0z+L+FN|p<9zR``;N*$?aQb4<+usInQ+2{
zc28qYnQ+>KlhUaPZ}dje`FCy;6MtQ$k1C^_xH56R^CtXZLdc9{Gp`Nef(d3bEM{CZ
z;V%>3neg6(OD0@4;h71~P59e{D<(YRx-#La3D>xUOt@>pKU|On^vm)$O}H-1=na91
zrFHu)o(z#yx^aE%J>koRefLdRuqlcT4_HfK-}K?WhXVha@SgyU12cVda``S#txkPn
z;t$4sPeqG&@x9=xzGAGutL$47UYhWV#}PMgpE7Tx{K-Zixnvt_SD(?6$Jc*t?DR9{
z4@@#6rx{UZWHV!I$1>T?_~7?N3-e?8H;1g<Mj3LMk=u+mOUj(`N9QpkuNnEw$Zys+
zUF>k*q#0#TH1!qfSEhg&1~ZIi6f}cTh9^&Bs1CDl-@O=<866zDo7D`P870gpX-4+P
zF?KWDW~jmrQN;|W87|=lanaXv`sn5{V_PL(Au|e_0kgjS2O4~u89#UPdCjQ$A!c$}
zU-^Q*B5ak#SKQ3&@V=sE6chMO)05cRx%*>FNnW2BWy~lo9An1D{Zaed>EAu@n-MF<
zvS!2yB#NH$`T_z$(Recw1orgu-P|9QBs}Y`l_iuDCX_epv$LvBR0T6Cn$g*ev}(Q-
zGb)+U#Ehn9R5l~kj9O;YHsjK6KDZe*1gc62yyRHTjOu3n>Se20WvTS3DGoat)vqH^
z*Nl1sUwq(=f6>5<;ys%*Hlv{#pB48pG!nSoBJ7LtGwOL9GqwT0s^M#9MtiBHxfw0Y
zXepd&)=#8Xk@mM1NaMUmEa_%sM0ivqeW8ZUe6#Iq%L&cxYbWc$(ydGfGdh~lNus+)
z=D45f`~G1}r<%TxWCT7oql+0`&FIGYeH$~tjP7FR;Pf%0hZ#N1c;6yCvZ0TbUXs*X
zw1&agH{#h(pnsO#reASgVekz$;}bJBoB8Djd}_uJGmiWj;J;CP9Up4O2F|h>!#E&j
z3^(I*GrllmoEameony^d_{ca?c$Da9(J`XD_Fi*R6kmPj_KX{E#so9ga~#b0(u|2_
z%s1m3GbV8;%$Q-uOf&weQ+<jVUz;)2jMmeue<gajPW5SKOgCf9g~rB4_2_f%bs56L
zjg4k;RkWx$$BgJNtIw9~oxW|lt9iw_X3R5Vd$Wr6mf<T+E7ExZ+sQD{_@f!$nz2Zl
z$3ugM<YM6;%=pfXCBjQZSBNeXUCx)$lLk&4!}nrY8L_OA=xWh5qH9IzdFYC<^OsTU
zBsz6^Sz9=kL$P&Q+`ZJ;O3}$bbDfvX@#&6uhD~NX%aKgj%83}@=ip~M8n?}iW9tLk
zMR$nq6x}5{`-c>!?lohd85Jz3Xu*Cn4se@WP{g9YMLB53Su@U=p)HO(B>Ic!ucC)V
zkC<^(fIi0rj+^mY#B#!nlftJ&Pe<&(3!D-Cp?>P*4RPmr@|$siQ@J7T577hs*{>OY
z@r1M>n+2E5xXeD9@!X8R&A4L5tu>jC%(!aCHEvZi?sEFfxNgR6NxH$UvCV&z%w0b)
zSm{)d{(S5;^{d<dg6;&uJu~j}yiHE|SF-$it;z#49tyuLAEv{#bycYU@!&lW*U6Mf
zek`d^%y=q5OQSJ<>I*a8nDN$(mtub<y0dohwZNZ-D(}oV+)c0jgIL~k3!JRVD3hq!
zEr_=8X;3g(c#7&>%WFYC3vvqQvLLrW(Jcvi1nAIVZ6JSy3ozq8y>Nzt78oM-()r_Q
zF<aoUK(WALfz<+=q}n4s`zIvPr(Knx(*l<TTEy<Qz$47@Q7!r?@#Y5fgcv!t-iT)*
z3*N5KlZskUjO{-kSaULt-{mWA(Jv{4ESP;Yu7pMZZ>yvQr7XBOJ6PI+7z=zBl(C?^
z1tVG{F!(KetP%ni#9A=7bwZWa3BxbOFAt;yEufaQAYOo+Ado1UWWnJ(ej3Y3l;x0r
zh>pF|GJ&-xvu!n#y`h*C3o2RA(S}Yo-2D*Xb(qQ)e&wb@ss&XnsA@qqX18L671b@M
zVL>A+8e37*f?5{vVTB1+)V83G1zjxYYC&BK>M{IVt+NI7Eofjt=%+wy3mP&bi>2Fu
zKw}Hm{vMprJMhbh0HKKmr{|?MwV-&-P%}wtZb1tHrna=8<oh7uN^*Rz!4=~!2GT5O
z!vVP%NEgiz&9opa&{njA1?>dr)?Q%Hh(JeyPLU{+KC<9riT>8J>eG_}TDn=#-Gbv5
z{ANK93wlcGTnl<x(A$Fk77VbUj|FUbKMTIQnbudhdbW647+t^JKhT0fl53g;g9S!e
zFxrAoEcjHSLo66BFjRDyD69U=f}890HhdnjjIdy&aM#Cr$HzqMley|F_`-s5V);^Z
zd?a-O7tirH`cI5lCdpvZG9_a9O5khJsTOQWiDxRqbg|5^V5Yz<(b=L*ox@2yrk6a=
zg83GF!)0vY{eH35f`#Jqz38{1i!4~oA&TT(X2BBSr4dUgHLyIwD+KuX!j%F)h^`V{
zEy_wcaX$)gvtYXg>nvDr!B1k@B)UO#qbU7<=0TAwjli&3j9WyvT44VwiN+lf&jS|h
z6y9aQZh<`(>=W24%E_hw{z&&Z2nQ`V#Hp85CLIy@l{-#=U8C`6B=wjD|IMvJ%Lxlk
za^G2SzitAfr^MkV*S`h7TX4pLvtqd-dQSAB1?L6+5dBk>c`pd8KTwVQm+&PEE=N-T
zw%{*WGfcf|!L^9}AA#$lH!R40SD(#W7TmVrjs<rucxJ(K3+{=-f011G1s;e#6#dtN
zM|1TtWO!u3<A~=I3!X+e@pfESpWaP|7h-%V`pSaW5uZ04@XS;?ytClF1s^Pkvg%vg
zWkohCvRh%1XtZb^EAm>ALpY~sE>ZgDwxaN<AR%AGVi3r0MS+N=pcM=5=>26dT49RV
z%~t$YSvN9Rt*}{Px55!gEz>egyJCe?EG=K^^XRrhweo?6fE6XIC~1Wj@h>9awW3hO
zQrHUr6}@c?MXe|nu@|@E3)xMjvMi#dt%$M0C+v@SmJz5fEr}I=b2<<Z2u6J3t*AUx
zuj2LG)I=+itSD>M58HB9gse!m;>D(5d9jSk7oO}5)R7~if)y35NRdJ+@r1XchHz!k
zRM9F{R25+1)vOrzr9SU9BbK^W)Do^8vDC35YuD5hOZ|wwfj~nm1{K%a*~E&bR!p>F
zk`>LYXl}(2D~4L}vO}<i6(5OnODk?nO5!6{TUpWCiZm<QL`rLCMY?c?Xr^d5lG;|v
zVJ+>&(m}MNXs3uzXMqX56F=s#Skcvr&Mm`zt+;ZrN;gUBF4`mF-_wd-5$<h8AK^kj
z>3!)Z++TEn=s?jyqJypcMUTF!Ked9>L}1|kJcn8FnHAh7Us^HTiqEYWZ^Z;FMp&`*
zd6lU$N+ZR8R3z7EE5<~4tiTtXk%;A&-}PnoNhp{#Xk5mOPPSr-6?{J0H&#A66JJ{~
z&x-lnTxaxVIL`&AS}`qB!gPTdR?HNb6|v72m}A9UfebaoykCzFu<@LogOidLSoIgL
zg`$LStysiflng8u{Z4d==u**TSzI!3q<q5nR;;w5lnteA_`!-*RzBAccdb}$#TqNt
zS+SnZe3g-^i%rv)-;csO+g1I^iVap=vf{E88?E@+ilbH>lhjS3`>oh4utjvM72B-X
zF3fUvTd_lUr|7PTy{sIJd$^LV*eAyDm|%hO+4&lDK%xgl4~hOF`m5++QI>qfij1yR
z3CDT7a5KKwPq`D4dQSAD=&6YRX@TFZI1{m)wc_mGdM<|ZV*Eq&Pb)46T#R`B#ic9T
z`R|D3w!jt9t5#f#*#8l@&TS=dGh)AGMSGvVc)0kf_pG>YMYIh$Y<M6(&v}3dJQV#`
z^gk;e2|N~M#wP+#t#}r(@ZHEuD_&Xgnmem-8rR{cJrnt6?6Z}DHxZw=R=g8_AF+H8
zh_WG@O<%*=MG2e3sX1-PWrJ#i$A;WC<gvkN!=q(NUK{e+V6*Ylv}Ahbx4|O03WydI
zHHaET>0`3N9AO@tR^b94wPBK7%5jJ)qP4~ZSh8nK&}D;LJhKKF!X<1dX@h3NC%*^0
zkunPj6t<y=K+%Z3m<`1v%+X+V{WDV^exbis#@OJqp@j`CZ75@d--ent)UqKq;vXOg
ze=aWv%o4OA-i8F5esCp9QmPF}Hk1`EXF~;n@}eP8=1LYQ$n#$yMYK{RwXzL6Z~pJS
zQxzMkioKd>^@vXm8~BchMb)-p%kj9nHq^7Bj->AT@qe$g^=<meV|X2CAohllyp3#V
zEZju2sc5rEYI9EU$NFk)WkYK*wznbe|567B+X$!IkRgz1LpvMZ$>|rip{*G0vV`Wh
z4D&eR?&x5{q0B@AFBEjPp{EVew*%ylZ2C3)k8S8;!|@Su_92zK+R)7gLU&O@4;%Qo
z2BDV?y=~}Y!$!VRh<^5qpS)FcfDHrrL602+>=<OjV9v4~CG7abhEHvHY{L^9hS)Ha
z%hjg;=wleyl?@wMjt#?Y_}qq{Z2C2d5gatuXv4QQd^ycO%7$?^jAyG}$B(vQj16OL
z_`-(euj6mrZT(I80HNG8KVgCmQ*8K(xg>R>4M$4_CfUFwhRFh_TZZZXwGDG^m}kRO
z@uX#%4bvk$Ltv&2vjk>G>~m~rc1xl2gO=g<zo!hHnmV6l+E9PGKU^=gKwwh4ltnfy
z=1FeDDjUADVTlbZB<Xh5l%+N-lV&i>*}JLBh10*t&oaN~cAnv2J6GDk(q_$YthQl|
z4Rl-2L7SSo^=>Lt*V^!-<XR_63(lmB*q_1@ltcQRU4OP=lMUN#*ulZH!Fw>c#fGgm
zl&T-(r5J{7HvHKm@rJJ=IkQ08P8)V{I&3&$!)_b)*zgM*><BXK<;bt}AF%27libJE
zE}-*O|G|jQA)ZCUbZ6Rswc&8YeuRTBd@N!)F2I|gpS0nW4cBeBVZ&)L{=p`(*Jt8>
zx8V%CY{NMlo|gy|e-$`y!{sG$Ok(+r@-YoPr}{70aM6apB=6rg{n-tdL@#sWZ1OW4
zSQWS;7A9R4xMssY5lhPIz)c%&@&A1(fp@<wQ%1cld`GlK{&@E2o(=bT{@d`-hX2IQ
zo51ilEdL7UYp(a2Va@D7`8oPk&8Idzv*DEuueq29_@CP_XrP~$8eZ7&a#8HdEL{|v
zw^exGvA`P}irV#?HNEA|wc))DA9#S<k>9R=njB?EPCIf5XA{kCN3=i=QPUdz1Ld|C
zGpP)@?Z{&Xjd?}sLoQ%PK|3_@H`rmcL$SljBs<JvwAo=1u!{bv=%p2D6&|!zFWfFh
zhiKVW`iI&sJ5-61-F9RdJz_z`URON5b`-LsuoyQKOiphVE+YN}{`9_>UH=(=g;&{2
z+EI!=c673%v>h>aG_#|*UB5b1a#@Vejxu)m?Jz9xSF)qB9kF&?%XGxq5wIg@N4y=6
zj`}Owksv;0MH5AnM455Z=)`iu<wZlH$)XiR>BC1#rPy)!gMZgLKclI3RIy|BB!7K7
z@08*vFjTeU#>7B1JF44J!;YGE)Uu<F9ZNd~c6$?Q+wsv$|B20k5?g|d*0rM^8)=Ru
z2VeQmF40S9V8>TED>byEksXcgXktfGPRG|Ojk{YWJxmC)E`qg7poJajcKsx5X-6wN
zTHBFWF2|an%B#3(c2HY&D%XZdoyrZ&nS3vMe1;vFc7*Nl{8N?Dwsy3$<A?qJg0WTF
z+d)h9_JIy|4A~JNcV<)V=w(N5JJvM`^=cLVm`m%Hzl$A?E(u*lyNPz^3f$!HAxh{e
zKp#FKwEbrN&R~7)SoSWyuV_Cz*1iuiI*^CI9n&3{;lN-X{&rlp<8L;b4X|UV9m8Z*
zsBP1@igwKjer5;1PH_K7d|X^$xE-I{F~W|K99R}>$0$2S+cD0L@pg1xk>u+hKZZ-X
zQ4D#k9bbsiKPjG3UPYW>$2WHUaw5Z*c1#qWWXEJXrr7nL12fFzEC_!sI#qO<=ycH;
zqO)IQ%krO<6&0N$I#+a_=zP(=FS0GLW1$`2+QAks5-qpU#S#_^)A*gh5<9ls4Kcdh
zjum$NDJ}foj+J)ouwy4@O)RVISS=8Gm2C|N){bo)y7M9S>qk2_+VL~zP8`;Y{v^uO
z4Fc)*iUUW-Z?a>n9T%RJ-poolDWl?JN5#{={Ae0IbLWlTE@iUV#82XPNyd|+yG8fd
zvDc1$(m{6QupRq_4~QNVJtX>z=&z#xH*QBHdQ|k7=yB2CL{Erv+)mkX+K%7t_-=Ik
zA5t&jj2&miLOv&O-j0e#k{B(wKAnxfV8=xc!mDg#hQB1^CDHKg^ec8;<&JP5?7%hI
zM}c+z4|e=x$93*vJ8s(X(vDYl+~V4^<FOr2?6_mcT|4ibhFa|s?y>K4QaZQFe&e$L
zz8w!D(T9>+{d_!AssHgbI3NFrWnT85x}ETp?|e$;jXEFCXuY-x&v*#5O?WQ)LX?m0
zdTqxWDTIZ;wd0-G-`ml{Q?PqDfmO4>UnUe_#wZ7}Igs6fXa^D<NOB;D134Xl1DXT5
z9LVi})d8CWc^t^=KtTr#4!qf%_{Y-V@{#_04&-OXy>SH`$aoN-g}U~B!03R<fq6p{
z$X93j>orX@J795OK#N2Mx-r-ta5~^}z~KO+iUTL|rZE(m?RPs+|B#<mI1dF>2fn`*
z?-8Yi>~)}!17#fi@Flje14SGt;Xp|#q^M|d2Z}jBXF9Ottfo$E6)q*IF%GDUgQXp~
zbR|IWiIHxOR!M#bVjYMROVELMfq>|e6~VJ364|_l6RRa~SPmpGOIZiXIZ)GqS`L&K
zH#$^tAml)@bf<y?DGpR(BWL?7I`IBM0v*^j9@mwn{izQ9Y%l+XKA4264pb9Mb<rB4
zYNr5`YCBNJftC)ma-gmQ^&Dst8L|2fG;-)K4GqN7Fk%ng3p5tyYYIzX)lD5}CYI)$
z>!GPbM<%q8W)qm&S~y)C(i~_bP-UN<#O7r%x;aogIeS|N+BxtgyLl_4y@Ma_qqhTn
z9Qx~NM+dqJkUKf}wIAKc@R0)_3wIG6Q&9h|BSSZdc6Xph#IvUZy&{~ua!g-`{tA`%
ziig_If&N@VVkwlA^K*fL4h#|)EK0Xe1U?lV;=oXWVUg6&92g$qxRl%@ghz^w5*-~$
z9pk`Q;V(qTiH?t?PT)F8(H}B9(Sb=0Om<-AUjI~1U-7)RKKQ3N@Rb8!JMdGlgcYsA
zqdXNmc1vjWcl<O?-{0|h7W!v8Fw22%3c4$p?Z6xd3iE4h3g&XxIPlPce;t@F<M0ht
zz-G(2(1C9q*yg}?uE5gqiyT-cuvqjvZdF%R+Lt&m?sD8x2cEaoqstw9r;YE$Cw*ed
z8V6Q7@Ph-Z99ZqZ^(U!&MkdnjlS4rU!roTlwc`Av=sE}1vm*{{kmzR7jSl?mz$OQn
zWyv?$nakcNmAb`&t>W;flCVt;(6U3KJ4JajVOn-Muv?;gM6Wxr*MWTw?04XR182lY
zw}TEGj_@IYUqpYEmeb*gM2|XfOyD@zr@(KbbSO5t>Pg{KqNhcFkEFhAsyFYf1Lqt#
z&*Q>@KOMLtsTUl$7^#Ir^cQ#Bg*ZAhTyo&D`1~Cy$G;%yDqjL5n$`Dzghx+Iy1{8(
z61W-hyyd`c2ktm<H)6T(z&+ttXZ4Y1cp!5}_|JhyTuv8D7g7+jsp?~gt~nL{0s{XQ
z3O#k;8Ryr57Y=-IAW8w>g1+R*?7&-=|EK?z1Fv~{ye~iWLEz(K{(=wv?|A+=u(Mo{
ze5p_{Xb$Zw6wIdR??`{SAD3N0&nhX)9+Zz(Q0`p(;%)vM3U)sB7qP|WQjl9g9tC+7
zI1~)};LoQZzXFp2v!XYqfC8g}|Gx1Tlqf9*ft}U>-yHIZKNba61;2F)Z2HE}Dr^eA
ztde3^@cdz1t<i~X{tb>agcJo%1ug|{1yG<V`ddm>)T8J<D!MH&?N7bs*Ph3*4e|DX
zm-buvSbpB@Q5>kEihfq4mXB|wpqPT<3Q8y_sUTHB6$Pafl%}y~LM4u;0-u6-1qlku
zC|Gwp7^k4kjX-K#(61nt{u}%ZNg3G#Vh@UblRtqz42cRVC}=Vyn6GC-l7ht6!Lkaj
z&Pge!pu9vw3Oc5yBnvaO`GACq;-4b=U5ixa<tb5FLCwAiJPoQ!`Lz_(W|Mx*UyW_3
zom5@4hG<O%>gS0E`XuD<mrzH+t!@boI0gL@>ME$GpuPfoH$AC;?*sx<8!A||H^`<o
zW{nD(Drlyls{%e$tGR*}3OXyelOwjJg3GPK-Ws8F1+9b`Z7q<-CPgeu8z*Kc$W#zk
zKxc*y0&PXxiMAKr`A1ww1)UVsX_>TkcGAMKA?E!^0fAM2te}gu;Z)twN`HP@GOekO
zlG%E2?J4M`AZl2~{_csr6}(xW)K@`21$~tN{c`PtB`Vl7w!eaL3dSoKpkN@EqJqH+
zK36b8!6ynnRWM9J<<{X>t-^F3qF^YOXzOsv*5P3dY$#mrGj^d%_2CMbnzFBYTI=xq
zqzWSy^lcrU&^kOy!DvYuqu>jH_RV6)Dqv}ZwnG~**90zI1v3=PR4`G&BypRjU~%j4
zWCdR-_*%gfiT0fqM`O3yEmQB5E6}IHRHiO&9e9&eZ&~%}9Q?dxS?1Q(;aLji@Yv_8
zfE2|lPPGpAzfpdkf(0Bm1?2e(zG2%wiX-1{tvBXdi7rw=W|>S{tl&E_l9vc96<wxa
zdBna#!S})|MSl>@l@?}}H44^pcX&|3gCDsg6kKxSvK#9a{G=e+jS6mTP_R)!PB(J7
z@iV7jX4Gi~zw_kbzEiM;GppbjPmk6y+Z1f)8gs-R72Tm=mxA5GI~5d43#X)o_ek_t
zQF`uGurI><6&#50K?R3|e~DQ3yeoTH_=sr6lpM^?&}e4zajE?`(G#L4MNf(LFRK6i
z^NfPCTwpH!JJ077oLBI|g_kb;q2NyiZ=HDO#03Qx6%27=s1tv2C?tC?CoU`an<t4A
zrJcCKEw3P#6S<wZrr;kQfC?Uo=XK66k0u2-B+5!}3fxj~J7S615p_?&eJ+^kdaD>7
zaK>l+j~|NLzoM6CL_OxQui(9c4`O*L`bN>ehxv@Br~vtef|tUtB9_;j*41U1#PZ)t
zu6Lq?XGBFgq0Wqob|Qxp*_`<APE2;EK6il~|7!#5Wi+Q4YfO*I<3wI36epZw$>)U8
z36m4~C0anVpeS=01Ta0y?1V*l>GmkA6E-It616+^JxI?_WKzyek78pObvfa7qG+TX
z)v1q9VJAFnr+j-20-C5-w2&yjs8+-Ywv&ZWi#btT3MnC4QndAUJ(U&3IN@`mp%aaq
zDC30RiE2(%cOuq_I443*Bs&pc3z<tYW(`HWFiS{qf<+}d@kd;2l4x1coCgY)7azMc
zqk<D00s2>UqM{Qi66J3JDmnF^y)#r6NENN(#Pwlup`W7Z&+2MOIrT(qI#Ej|i<i)u
zTHA>_Vy`Poi$`jy??i)$WyZFs#!fVGqOB9{oM`GqGqyRB+FYQ8C|lSvVs9nD($WOl
zh^C8Xh_bFsC&I$3N9EWQEJI6sCq8oGW9eN7N$M!t$%)PaS%W~&tfk&Xj9s1R#?5sn
zhM~I?JtExGiSdiG(@6i`;@QWEzE1QL?l1a@69b$WD9n{i&p}QMmMHn)$~vFQk|49{
zVNQJJ#P3d=abma=pF6SMiJzPp;lxNMzL8v`oER-ILv)N2lOm;!m689#iE)ux8!s@y
zi7z9TiB9}GKb8~98YfG}DNg+!2w!pa3XrD?OcR~%MAB3rjWfl0R-~@kvJK}rF;{?F
za-P6^(WWz_7C5ociEo`)Bw2nCUF^gXf$t*av@9C6)QM#h<<4TOmOHV+sec5c2PalW
z`07jpQ&)-SYSA@Ltd+g_qbN7&I)NsCL~U?lqZ0?5IOxRBPHb{ww`AGu#1<!ZI<ZTl
zTO-SUn-kl)bEN^SWk-awb~-Iw4|_OMO=I^;#(kpuMYE>$kQ2W+am<P1PW&o%9s-AX
z=EzyW$vxu4QL(c$?wa3(Pem*z1WxkYmPK+}qFH=4i=Fse;G7fZ1^y8IQ<P<1aN?ry
zU!s>H_7MwmToJzE#7!rzI>9Y}&53`+cwLmeW8XQ6x16}`#M4OLJ5D@y;)xS?owz5)
z`%XL(cpww~Ff#l95+dAIx}4Q`o~3LXYkU?d^SQtaCtgZtdC0utbi~KLcH)fyxxkL7
z_fC9pV!jLCxDe$+HkW?j4|5^A3(+oAbD_EmIb6u;g2x58kjsVK;$src<3c_G=E^I;
zKIW(A^r!+Z6m-EL#;pBrjCk^dH@jeQ@t;$@ItGV;%>}za)}hTAS6pzq^i}E-CAeKs
zBb?1|*Tlc13#DA}x=_f4!Y&kXp%|NeH>PN${H*1{Bf7W?C0xkb0$GQDX%}L|t%3_a
z7s|Mh6v^dh`|rlYxe)8p&!wzhu(bh~{!$fmAwCP5#wG|PindM*)2FQDEhk#ug^&PC
zOBUeyP%%<ViVKw@J*q5_>OvKPs-g=oG-k(ZxKPuDk6q~ELM<0+OZK)d)ZzOU7cyMP
zbfKOL^<8|JtUjs@L>s!$$c3zzR2myIb$e8E7n-oMj#!4KE;JKf=8R^vh4i$gD7)NB
z;MJn+X)gWvVhL?rNSCoC^EHLacYWbVUpTPsgxkB&!Npr2qmv6CiG>T5ORlqU*2pt2
zp{rPWxX@Fen+x4t|9cC>0q-S7diHgpw+mV8ypI^U()zj3UwD8EgQZmiWeNsGTFZ`q
zB6co@PhA)i;h`?@?E#ISxiH*?&s`Yd!bBG)xiHd&QBvjv7e;eIPLKLRqGP00V}-L?
zKF)>lT#d2~vreZkC6yMojXslI_=>q)m=ekLV0zS47w`I_PtZIUrn~fmYepnBYk|#_
z=q%CM(w#Xj%oX6Odlcjc#(Mb+Tv+JB?=GAX&u?8=>%x!1i(FVNz*@d@VTtfk(Pb_y
z7g*uK4-ud5U0506?CC0Vt&-?!(KT%FaUYHATv+eIE*EyY@RJK0Bz3zB8wEDYSkdig
z7dAzh$K4hewz{xQmOa-%$)>Sc-P{owx}B1p#yu|Vb>UYR4!f{VjE6+`yKunu|KAB8
zl;edJ{UWJ6PPwiaJtEQHTsZ2&F=5Cde_WWW^n?p1T{tDt)1q02C-Y`a-&rx<5IyI@
zdHxIF!k;c&aN&{*mtD9hN%a3KvZwy9gse&V+l4EUHFnj7Yr_ACUXR$h@NT+r%Z1x6
z+;QPaq|CblS<C63@O_v5Cj5cuLl^!fxbR4#v_BTe(>{uU(WjE-S){b*E@W-bS1$BP
z3%?fS4^PO)D(m`I+Vf8Iz32xQ4(0JhxpmDZnq4&7jefB{h8zO18)I|3k;jb&&20&8
z{g^#|B{{Df`P|6wMgcd1Ze#@F3c6u%<Ga&k%D7>4!{mn34VN2cH%2avwz^?+!{SDp
zoMjk#PmHp=^`G2!U#qV)hZ|3t$Bj=5D-qy-b8a_Uwy~CSLv_RB2Hcoh%vaov-}9$x
zZg|}&<VImPim^#8d{5rR9BSn&;>Ox{F@@g86lLmr-9jDtDyD?wDk;kBs}Gee?M93n
z6Tgb;`oXv5gU{y%HOEhl{cgm%5$8sSOi#eApFiOz$sFypa=!U#;dtrkvC%czUmlN%
zG8##uWkt)0mUrtvQVY4!d2uX<tD+kzZuD@YryG^rSeF)N$aJH!8@^B=)r~4{>_`h&
z6>Th9O|-gb4L52E(5IF_Z8z!&)D^8KT3@t*XhYFPqRhoF)li$bF=Sa>Q_*H_G#6+g
z+ETQYXlv0lQTn$LNEgjuQ)>iiWc$Nzv~{DM8||e>-Q4KTK@;xi#=hpEPNIa)ZhR#C
zv1k|3uA&=ShUjptNr(mV)*sYfZuEBJN0#Hpn>~qr-1yv$`)xu+{K39%Q2V*j-;Duo
z40L0V8wGz$c(Xn@*o}?5;;y}IJ;aSq+_-ha&+w@Le~2;EjbUz#9vAq`jp1%woD`_h
zH^3;N_N=54T%T@?qJtZ=+?egg?RrUL-1wU7&5f~ceBs78H^#d$Ns^d~j6~`LH@+0h
z#E3ohpH$i>yD=qV`AXnoT6mhkjEH@@8`u9y9Z@&MdpTjI8)vWT8Rxh$*Nq?CSmnk%
zH|D#s(2Z{;^&82!K=kYSNe$BV1}t)8u^Y?WSnkHPdMV#=xr)OQiPFOI??gMo@u@4^
z_;hC6_iprUqi3Y96wZpSW@qas(Y{9DX<C@PmRqcWZd~ui;7>F8ll)(}s(A^BL(Pjn
z9On&=e!Kh(n|Mm>^6z(Jv%nTnTDA&o6WuPl!;PH+yF_=3?h&Q`UM>mYX)}V19uPh#
zdPubQOuf2a-8k&V5jT{!2`5AeM+J_F9(N;cZ02vm{jw*V6!^DQ;FKHG(>w$O&WN5B
zJtulz^bgTLMK6e66lLDO*#2?}gumUm!YgAceo}Fjqs<ko>OWHZhtujtFBQF2+~E24
zXXzLfJ{32)6gf3++~Iks!lL4?8~5CZR*^%+eK#Js@y?C+ZaidNZaj74nH!Jxhqir)
z{*U0sV;+p`_}l1aJwpAvg=}rYrP_omwh4dMKlI#<S1h@E=!F|i+k{_=a!--RuM55A
z(p?vN<Hpq%p|`@^aUa}>QjuN7VI@bd-l6y(L)lcUYZ}_{E}Bux;1IvCkyAx36?s+U
zQ;}Om*H1!uRBU|_y=zr$U_kj^ZNkn^L-|z{P;vG{v{6OfULkM)5K{}PnBOa85bd%t
z#9~b<zHAd_nN}4x6~$B(S7BG-P*GS#5fzFGrwWe>s94%9G_PC8rQ+3+ShtF~TSBTR
zVR@Ty={2#MG?g9i)*<9oQAkC_7COf@4LJvdK5HK0aZ!}5+Mis~oV$dIj>|(ORj|w{
z+w{hiQZam2sI-c&*EA=@><*Pt^?ULJRm7|C3&)Dai3UWo?j4<=B2h&H6%AD+sVJ)=
zRYesQ<y4ecQGqQ{^<PAWR3xkDSuV%a<mBqRGIq8JpJ)?KQBg@nWsYRI9KYtve2^pa
zZkzC?=;Y@O^j}a`RZ&ev9S)<afAOZeidrgatEizOI6k8$joFiPrH85fHp}9qkdhwG
zESIC63Tk~7+sfwfGj&INlSBHCF&n99tfH-ob}E{vXsV)>iq<Ncsc5dErBpGtQ@Iu@
zO1;Pkr-zSZORk+B4rb3}-ZT|$#38KWOxpi`-I=Z;L&d`A%yO4AGuhwEnQZyf^yI$j
z;r1#zsQ6e#7Y?<GPLlT{6%(XAEU>eRcRy#WVl5r?^1G_&rlPxw9x8T=&!zP6%k*$h
z6&$Yo8G0{L)Af4$sOZZ@cp{#M&(^D@`>FVZg{$b#b$GS(08zp~6@!Eai++AKMB@+@
zLsg7YF`7%OU*a$oBUDW5nYeRl;4=>C^SI$EJ{Kt6KXGln)Fr(WN2;JUDjyo7Vyuc8
zDrQRFFI0?Iaeh_4Jv|b~sh~3ZgdT|#*vB4;U#gfWK%OKpS#*kuuO$1|5}hhKO_ZL~
zRsGW(!q5E^XQ}v(RdWpY24{2q2+S3wWuCx%(QiZ-h%OZUR&<ey#T?S^iS!>Bmt6H9
zy%+5DQWeXj4dmqlD^z?huu}8~(N&_WMd`Ul#adww3#04gWXn@Np6A;J6&pFE8R23c
z{H$V=ilQDp%B0OIw$G|Mbz;I6&H@)Cquk&gG)yhKL&Z+6nbt9PRP5rUtN263pBzaQ
zdsXnET1Qow#>9NlBbN73+{azeF=jspzjw?5;e(=wM1N87tH5E=BchZ06=arUDvnF8
z-`L>3WzVZPAyJldQs9*6Y0=+B&+wEGpwBr0KIH3O_wo}K#9UBuk!QP#Ybx)ig-hJ*
zxhh{#aal#6SNXqHypCx}sL?2{eV!WotJgZ4S(Y9AN5yrX_9||vD6=Y>Mcv?*9~67^
zZuN{-WlN1M|80-*^@rEK&0=%ZAly}PkLSON2Yey$Ag2cpRSeFIdCAjH#lI@*4~t>+
zKNXL}{#f*hDD6)Lo~d{)@IsUiAY;;N6?sO)mYY&L+JjB`YrNrP<*)IUJ5hlAUf_d@
zC~?RpN_%z>d>LUvt7(;)J(mZ$J+OFS^`O!Gm^`9+Mdy^NpHG1H{2mmDa6u0Y5jF~#
zM9m(!KaZhvwT!UM1FBuLV@8<IN@G;<!0Ca@qyLM+3m`@4FU+Va;1PwWChFx~fCT7M
znA}GHg}ZrZOJ2(02f?E=!VEk;N_tSrgAN{k<rSqpi18rSgE;ooqkmpprHktK=r=(s
zBg#9X(^$2aho40TJV^H-gV~F#L2-`vAi<;mo0I54k_TlyD92uSP~C&_9)vuo=s}7H
zyNl)?uq-y&gZy=(D|kRIP$!zoe_ffkk_X@B^jG#E)q@rb%Z<uxba7$1Djra)dN6)L
zIYJE&YI;!DgL)qQpQb8vEtgxy)$*XW2X#D{uqf`yPc4pIjG}Q=vDo?^wDO>}2Ms)!
zxTkDG(MF<-HfFyf+|+|+!p%inh_;NR-r7-ial^7{tkDC)>V4K?Co3>?nUI|60mo!V
zA2lrFaPWpcN^L!8Cxgb(YwyvY^G@jGL1*##QuHGadVA1E_+!y79&{C83Ee#CF5E-3
zr)V$H(}(r%nKShDV3b(;iS`#AAUaTVkO%u#rwkS)eB!~U5gy{fP~l+_%Vz?^J@{N;
zgy_gf>S1eew3Io<gRvegRr6%E;R`X2<Ln5`9+z)|2mdzEQzwdLlIUd7DIR>~;UkRo
z)iqsos^~Ni26aee=rbdGiOlRXJecXhEDvULv@^m(&GB<Rm?O;S;GPMz%=2JAyI_vz
z_ZFxNxpF*6D~vXUv51}=bKqw_Zp(uuEDe|iEcNhl19<Pj2M?Beu)>2!9z6Eodk<E6
zu)~9$9{k|JDi03q^z*)pt36ob!4?m;da%}`zYkpR!B6}YSa_W%-P*m3*54xX<QL0E
z(Ur|ZKV^hAd62zBXtQW^dWgKu!^ev0&nVgMLHxpmEFN4lk>%|2;GhTjPWX4T8AIdt
zi0&2LC%RvhNe2Y@PvRjDe(~T}4-R|yGyy(7Bjbn%M?E;_!FdmkaU)j?{LXz^I&j>B
z-#9Ek#+?v7B}peec=>B0eP}<;S({gFoHuyJgQ7J9XSt!?#+SLAxVlQ!KP1av9$fO^
zPht9B5V*)Q?QJ}xmp%B~gX<pL@W9wDct!M@2Ui7dkIdiLlKhVc)H2<Itg&m?;D~-f
zX1wXaEuJ}*0*QqK)H@#B_2A3>{(BzW_uv6vM)Rjx4<|nKAn*BV#X1LAIN@K3{^tQp
zWAq6-+a&awQ`22}D*R0Jx#$bgm!fogC6L>uzVTptMws8Vd+X7^jQ39T`Pqyp@Yw{Y
z22=;K1JOWvVCC@KIiNrAg`xOQaXEopKyLjh@hAb51o8rWyqgF5A0NrZN3z%eyMAMS
z@Xa{`@789BFz+Tv%byux-noZh(SOK`dl})k8R3GN`kQ$Me$|v$_z3*g50#%CQN5DN
zt3G7@TR>$9W`?y07XiFLg4hcIg(LQ=nc<?s#UhsCKpQFT+3HX!AOHlJ1jImJ>OP<h
z;1_P59-2B!|KG>jG!zTO(by!^r&;Lai|BY@wKE6(6QKXAb@xSdqGV~%EtCY51qck~
zfLEEJy`4fKAQ`9t{nn|KIDp^85-LhG1^6)1&)dCL7CVztfhrNM3XEQ!Mq>@|5$)&*
zbOLGtGrGogxR%ijs14Ks>H^=V=WPHqWMBFQ>H+mRLGgh-<NbGofkpt~&N+WmpfS+D
zSk)%L&3yreOZOa>c0s1@GAA?#s4YZW0<peeE1<PNnkX%8fOO#u(M-{>Xj{>CqU}XH
zh%y&j%cHL|M|*u7m)u9d$3PdLD=-%L0_X;G2L=EGfl9aiJ$P_s3-kicwhQ!Rk4^`3
zU-$P0`T%`_e(VD9@KkV?E1r);@0l5PHLSX0TIwHP1qK0wff2w+;K%k=J^?-jh6v|N
z3OqWSIusbr8i!RI1{8TxZHJoh89+U!CVVdTq=r>9k^-Z^Ul1g-(lH!=;8ugG3{0B-
zI5&;sfbqcBz*a--1mH{7=!^eKG>{aW$lm?upTyEK!;_^8qvr&th%xW!AU%hqhUhRA
zm?lQ@bb%S7C33{Sd=r=r%mw)0{TzT%hU-sC&jS{(^Unvq5#s_bLSPNBP}bhJqKoLm
z^B-8ko^}j*(?d&vWn3P>Z(a1oOkEB<nigVMAwZv%lKO+J@KwU!Wrk_zHHWn{0_%a0
zmg7gRjm)s+VCW~VwDF!whja&q4V=4!I&1<q18u!%=fxI|56=e;`7~?;wsR<ea~y48
zC#wKXaNV{H?Ba}<4)A!{4XnE4XV@dK7uW~v2Mz!S#c~uV_No7n@UPrEi{pObG4(@2
zhtz}uyZwiOBY@@#4=Ej=Rn9T-JkHbLdp{r3GxCeTN#OGt{*#&EQ_zpT)11V#Ts`N;
z{|=nt0TPN~7;!Ch9{2;up&_S+KY<ItYv2ud>ZM);t^xlD{{>tUxGc)lzkw^lS4DZD
zl}3*Fb>IefoD45tzi!D){R{jD+~xrS+~qL{+~*10N53fX-J;mGt#o)G78)P&NNE>K
zxSJW~C6PzKV=1I(y7ENespvD&=b|q}Uy8D*R{~pKM8A~*|G?Qf9C#=EUX-&?v{xWX
z)9u+rvul`tHYHlLuOpSrOIZ9#(c0_&TpE_v4dxcjBl_ZOTz(A&G<>aLs)m9Z3>uO&
zl-2Yf+O*P=ZeQ~oHJCJ*HCQxQH5AuSLc@=l2{w&02Tg-rgG0mL>*7ie_A45k8eAF{
z{u6L(P&K4(Pkogc<^{K=nL&@HU%q3=Hz=uaIPBF>OvA6?Ai0o+!VKXspC?sBLs4Ny
zQ^UNr5vET`4cQO-%V_XxC?#B4l*Skhz6j4a=|A$TKUPDchRLH6<1_>`G%cGl_)T0;
z!_{~3@fv>q-Jc-LD8JhJ-@SNxmg69-@PDcy{-VFU#*Kqy4HYzW*6@*riW*Wh{Xv=O
z8Y*e1EZl;<(@;f2O%1g)bbK6YS1GNkhH4zZ4i*1vU$MG|8X5|{4lVmHse6ZttDhw`
zd6ZOJLjw&BHPk(oR7bR~Xgv+}HPm|?%2i%rQX>tGH8j)oC!c<MKD~*C7WLiC-c$pl
z41B`ov&TuznfH0pV?)ldoswH>XvOJk7~fh$nuaa&U1Wwf8dxSFL&Ky-@eG+7_%fWu
zZ8fwLZZFzFw4-Pz(Xmr<(eq;sT{OHgWbey)&l%HILr)F8G<1_FE!{Qr5MG`$W@er!
zT6#;gb&jY$0yX-?hjPaB)AV0m_1E<4bptdE<oao%4$?4K!zUVA&kgWhB|mwYKgd6H
zdmLeirtf-&p&Et>f2Lu$hR=n+jHHeb7%4hR!)Ogt*2FW6(J)r{3(;{JP8W%xeY`{`
zh>qG^aiV0L6e(>o?HcwJj$!yp!=?>x!ZZ!jH8k;}sTVUe%+xTCyG+9@F8DxTj)s?K
z;t8`Q>Z=fBbS@Xw;sD_rmaO5vh6mgloIwqTH5}2fNW)?c8#HXx@STPw8dhrffqQd#
z>{1QOvtW7bG66hLRtS7A$}6RGTcu%8ILxzRt%lXYYee}Tes-78j~do7@ZSLqKe6PY
zaeuc+zS$u(E?*9Et3jcr142KugBmt-!D!g8;Q)^j9{w73a|ASO*RVswP7S*>ObdtY
z{X+~thr?&W;TsZt8xHT~B=!&O6ScL~eTs`76w5E7heShd!}TTUR}F0ij%ql@(?i1*
z4aYV7rs151^BPWQILXP<@VkanTxnBcS8g@%dhfutVP3mFqv5QE6~Bbe#8p1ND^%dC
z*ebh2?{<a$;Nh>~FAbL@OS4^}b-O|rxQ}*)E^^uI3bCBa8hFJxWlC(z-Ju(D_4q0$
zv2W-f4c9eXlTn(~Hq7ziJMbGC?r^lbg>GuN#ZyrRlLs<~l<zR9cO~_nDBWVahaU2j
z<00uqNiY7>@Q7zc0af$jv4$sX)xC;#FP>_6reSu;c#9X$1<0>7yom5iHluEU&acJt
zM)a+QcicD{KJaDEt7m7363FgFwumLSKYO%rj)-M)xN0sha!WLi7X<|Jda<f<AfIS{
zvE1rekp&j?!XQzj7iIw(O#&?nRv|BM8zxx2uz4}{w>Uk^%^VIXNAbexg-h7u)jP{7
z++L_+p(ooGf1w)R_p^j$=i<C#FXTmGFN%nNF{!9u;k2S&e0D3q?8PH(IQB3{DKAQU
zQNfFfk}<}MpcnC8_`E3N1-t1N=Q!b5@u4vwaQa~mmd21EK4rz2D4OI&?B+NomGh#!
z7a?gLqsfwbxNVrtW;8{j)xD_UMI|pPdy(oz)}U4OqKX&4^{mJ!JsGNbQSUoHyIIqV
zT3$5pqM;YHrD_gKT`%egFX~-!YXP;M^quzlbbjY2aI6|hb&b8addklNxr(S&FZlU_
zp0jwMnHSBaovfmT7cISL<wa{RZ<1dvgNrJEFin`zHUjBhT>93}D3db9A<U5+T#?cC
zUUcx{J1>@a(b0=eUX1f%yceCl_{fXCUi9<o$Mwfvq<kC8cYR&FsNXl()r)Qd-9?+^
z5B2aOU-dvw(axVF^%CgqMISF-Y={f}6X!nm|Css;C@GFETx4-~{g|E}ZJn8(U0`5$
z*<CaQ_eBQxV8JD5NN|D%3+`?qKyZg7Kdyn`BtU@R1btsu-oEqBsq>w$Zr!q5x9-l)
zbX5m>JJ830TipBg?St@r9T>&AUsn1#(BFXp4h*Cj#ali(%|Q<P2e_dQ4CWN*4^+;U
zj&EwFkcltY9p=Dr2Szw>(4pRa5XV<Jj})BmYoO$7(eh}4-w5PC-Rx_u1LGVR@4y5H
z&%6ZrA!@~0i^%a5Odp=;z$6DIJMg?^bRoCEM&modrwE)XaGF3WOm|>L8lTApP2;m1
zm@W7mfpZ<0=fDqXrSk>(lsU2>O;Y@$wMg`JY-pH0E_Gm;0~Z{)=)iIZRyeTIfmIIh
z_>3=u$*)G0V3=oQRy%OUf%AW*@ISRR4*RRBwGOOvV7=fQ9N6i=&kk&KV3Py%oXtZ1
zqXSz+cB{Y~je<OVvyDX#@C?!OD<K{N+U~#(2P!=_$ceig*zLeE2aY?i$AP`Jk#Wd@
zecT8avnM$#9&q65Mq@v%`a=R6@#Zpl8tAYXFh6cBO^F<F*az^B(p7dEOg)YnCmi-C
zx?dgmjoW#i@e7qRC4T<gKF9Pw2TnO~+JTc?^rHrkAhk{(;c2EmkF!f_0+&|iIP1VU
z2MSm*|9v(%??9%V_KV9eIdIv54-!5~xZ=R?v|G8P+NT0n>HH2{k?^~OKODHu-6|nP
z!VPXN`hbMI5^gzg+kuzd8r-c7v^x$waNwZ>cOAGVB!4>a7k9l&8=hQx=JN{o*`}qv
z&ZhAK?Z0W~&$K5D_zpaB;IRW0^Jv*;>E7lwM#gAQSuwZvj5f@zRe?4tWIPv~*%uDv
zdaaVYcHj*|w1lh@{&nCjT|J`3NO<SKdj~!_kWR9@_~5`IQyVn9H2Fua!fc&nb#^Vi
z#EZ3gE0<25K?1SQ^wPx5QH||nl8{-#SM6<1%qH25=M)lVvkQ_VO(B;cxdoQ2VC(0T
zkY9o+At0fEgn|;B5@ZR5BovlVTtW#6MI=;xrf#jH6_v2qG6K!DViK6;{pUnJds9+E
zDG3e<<dAT=qh744#;fcl2~E7VP1Zb7yLvU31h)i*OQUJL>DnW~$KJDQ)2eD-31v2#
zyaU`X@w|q{RHwM6O3);9|D-Odr0Eh2i60@frKL4W>LqAxhiE|wu@d4WkcT8#f{=$L
zO!H`kEv+=0l~7(nJf~x6WhF$YQ&20}Ro}4FEGJ>zveIprm3I2I1PPyHt%8Ik35kO9
z?qW*TgpF<)HTNTR+b6Z6gi35#!gL9hB~+2nRl*lEj)ZCwnoDRQ;WG)<CDfHrPr~OC
zYDlOpp$=`>UFVp2BYI5<wb)L;<~N(wpke7|`C3I=XVB_PXh4h6jGSpmYbc>Hl{@Dl
zZzLqHMS9IDwmowU)|yJl)K_aJffdU%($;F)l>{v+p{0a&^cD%NxQHF}5&O(G)ZrM4
zYt%eHt8`n*zTSD%{L)=(XdNVUl+am17YUt+F0J?nm3aAsnzM&avO7uR2uZqeAta2X
zcS-0Wp{Ila5(bJ<^^(wALLUhoHkAHSLhj6(*<J5Tr|PcvlhB{D=&!K_4x3|G@JQu!
z21yt!VVH#B5{7U*E%mP?3>BpLXBuBPPRv){#t~w)i=V0F_3LV1zE{7NFj~Sy36msz
zBjH;KV<n7}aBOWQPAWq|ZH$C_rba@S8!uskgzy8kKntC|N+CxwS;BX8t*|yl!kb3g
zrTiMdXr$XrWna(KtFd-=hJ=|CwoBL{;d=?QxbGyakuY1r90^M$ER!%-!aND{B`lyF
z47=qYgbg{)5nb%;Lhcs{OC&5}Xlkr8y<bwg{%iF{6OE6(^?O-<xrFtmu}VU&Y}yJ5
zD@Ao)p3g1T>z$fp8T5^{^im0%C2XNGN0M3FC}EQX+I9o?Yzv*{r7-24Jx5w;tArmV
z{KQ$W%ePI!>1BFK6MHF_uQ!Q&CjzaplL1G<2?@VQ*d<}Ngo6?eiA}vn!d?mc*yDY5
zg`(}3?BDxX>wtvcX6e2fn$aqHyO(xY!V%hB!f{&oiOQ9wwU0{tuhtG(x$hUHsarj<
zEB?xg63$3CODjpBWLms-QUW&=o#7Nm$ZgUpny0M2I@}cJB%GIUQNkteFYo_t<N{m%
zO56KXWz4xOVO6|V{fW)58TKzwS2^E4#@_<3(bR%mXPl96Q}BBNZwb6D@Q%Q{0)3A3
ztp2CqB!3BVU&4bl$wMy9bNdB+Opk={vBYz=_(#IiG@aKHo~7~U5?%=YQsApJ`Khj%
z*uoqB6%dlQ0^bRIpQe*iF4K))0-v~i+l}H*6n+&*=R|rz$TJ9%(TNx*GC7giiTf4Q
zLKHfY#fhv=WOE|B)4r#R$~lB`K7ly}<`T%F+)m_4<9VI-*Vh#07m@;L@`6sVi1H#%
z6lISO)M6t0VSWWB$|)h1aH6Es{))ep6Q!N#ax|mE3CRhs6Fw)LPVl0bJ5!CyXAPN}
z(J+(C3Af;$G|BVd!hR<dCrqdP);xaWq;i7S4b6$8Q|+uSvXmH3Ogm{L6tMzM1fBL{
zW+5j&M8jbxERj7?#G>#<!Ah}C5aR?kyc;OvL|G>yPLy+^rW3WCDDOnP6P28(>_l{K
zLV^<&oJbNpQDBCLMzRwrY<Zed(TQ~L0$SB14yI_?2qm``CTx9RRB@uZ6C_Mkov0@G
zX9Dxz3b;n6qx^FxY6uA%WVW^wb)2Zrf&Clz^)#cd6U2IAUg^7+S=utZ<5l(sPK=L+
z8#>XdbW$TH8ar{RRXC<WQqQSI6DNpNYvx3ACvJLh%YzmiFuQQ!M;BVMmJ_>V?3U5m
zi8f9wbz+$lZJlW6#3UysJJH^W4o)l>ZhY%RM<+Tt(T(<>XmobshflFx1d^af3bCsb
zUpR5RM8zWAl9=r-G<yi_=|nFlzI38DXCWkPq>mGW1n(=bpTPc3yc`}oK;S@utG0*M
z{VzcM!9rn(6JH53RNydy!v#`jgdigYjuJ>Gr+l;%--zsu%XU-y=Lg3)G1dtZrg1c5
z8lND@M1d_!$9?C-6en_*4t8u6ol4_7vBYVgWuETD3|fXi;4<sP_uNfR`vq9DoS02J
z6i7!tM`+Fy$SQN4yt6kQ$q#7~z89WqRF0{Unes(WEEYw(`W0i=u`n|gNZK6FxZH^~
zGS<piLC<$$l@qI-s3N1Pj5SWIbt1ov0y5S)v7QdY<#u9&6C0iQ)rsGn*yO}!C%?|Z
zekZoj0i4+B#Lo;1&&&Sk#Mw>>+nv}Zvg4nm{zPj$Ni93S;ttNsD7Q3hRlgA0<-~3$
zMz@N7mOZq`$=64Q_R?F-*n~)E)A;1g<zp#1;KV^Ej&L(F6i7*joH)$g^dfY6PiSGQ
zD9Mg;vHMy@kI_k-IN?N}`=O~BD$R_sJWYeYaIc*W^u3qVI3?kKPMmb&f)f{M{2ifF
zPMoKmBeAEs@kb~1uNgYSF*`wWP9RD8tx2ms6h2nXy5z)VCw_P0DrcQ9<qEwzcj)gK
z2~5mhb7D+FY-oSQ>rTF+1ubVJFtu(O?EWnF^o)dCPTY3lBbUjEJ5Jnn@-?h{0}<{y
z@uw4iJMqYgznuK4IaKsT=mE{;#1+d5JrBNZn(&ZQei6EtU>7BPDEsDF&}kNa%$a@{
zdP2uwNZFdS-(f|Ka?hQ3;lx`f-f?!N6J9#;+KD$#ymF#0e;00=F!g@uVY`HXok%Sl
z{&Gi<yl36WdoIw)P_Y7G>U`iB=A;bGYEhC-MtT`pWn`0)LB>m8N{oz5GBV1Twl#^V
zV$)z|8PA8rW|8smWs_VRgMU5_lFaLrkX=R&8M$TTk#W6MG^dPQg3uZpt41i9IU^yj
z4DxiXqxl5k1o`e)W(&$FBtw^B$S5qs(K;&0aLOnmqo|BxGL|h5m5@<Vkm9oa>e#s_
zEAln6kWq^ILe6Zz#yP3k{%DXW%W%n1Wt^#&<d)%);gjK);T7}x_+9ALiD3UpA<mIR
zk<q17!i0jAUV5#yN=mp>f+nN+#h`pE!ITk@ksu>cM&*5>po};frDcR<SnOg(LRdyD
zjg~cZ;$BkgtPzs<d?`;mC6tj7kx@>@{JIHcWz^ngmzJ0Le#XeWJQmfCXAH&5$lozc
zQbES38=({#6=fs|o-B|KKzSw3qJ6mW;$US#o)-)E>=7#TuwpeCpULPgqmPX0GCt>+
zWwelSA|;`QjQXO5nli7CNUp^J$mrTJp^gkrs;-RG;T8MOOsFT6-_?k)N&^`UInCD5
zMyy-SY9gbt3~r)QyA!hKO-_~3R7Nwdi#Md_P9feK7CfInB`Tw(5O$Z*iost-XBtyR
z8yRh7w3pFA#=$ccLyqKjGNiUmxh2DA106Zk*3kj!tWGjscq)<e6~HaqC$v8k>?-36
zRy-3NSTh^3o8Y+$MLKRv>LEJnDWjK+^N&-d_6Z!umokz&Hf`52+*d|F8Q;s8C8NKL
z0WwC?0x|~57$oB>8ACbL3gO-Ua)ZUJbDHIb$RIWjl%qe?t{*#0#&A0AmZUBHlSj~D
z_SsG%t0`a07%gMGj0rNnkumvR(pVW>#BXJc;gmasb9GM0+CG7U94F-D6^(KeWlZA6
zkuhDyQ*X*-8Q;m6!acIW2wV@LL2~;HCeu_7)hO5RP{pSwE6$Ly>Qa-LLWjaZt)sJA
zM`z2JBV(bAMKZ4f4sUNAoy%Ti{2<%m=<2iJd_lhOr!0{1;dzJ=n7CNR61K+SwG1wm
z!EmuMZ_0A+6v3H2fYABY(G@~rrHltFTJ+fwqVj4PPg+OU&rIM~TkE(_Wo)8_&nB*y
zu|bgRZKBNb>ygbeew49|Be|?>5x7-gt!36vtXMDdc{=+6iS06W$o69@d`5z4r;Lk3
zB0tN>o;`*?jP8-Km)p|?uM7J)Hc`>(!U4Jsx3<e}hv|@z7jxmTj3Y9R$~eZ2EaR1o
z<6KP{*JS)5;}>>B-;i-Z#&0svCVEoFDM9|nja)B6$%|Ey)7(cg&T^(%VmPpK+#1Uw
z(}$-LTh)sYFUq(i<BE*mWt`??PIV*mn?^2k*Jo);ewCeOj@c#I<LA>Incio-F5?D6
zqKv;~+>~)k#$6frWW?l+;ZN|l+1HZD9ZrD<Tk1yUWp0``Ys{ZA{*rND2=|RlrF>s2
zyO#$t-p;hiBN>lnJY&2SI!|Q$Lr0>AH;IJX*^O}I{EeRca{b8CcNt&EeBn_{(Up;x
z4I-~)ykSssA)5>TvO$?&H6Wb}?_|7}F>!U|Blq%~jIM?e{xI=@ajaqF=lYQczNW1k
z*avXZyO7a^7#A|QFso7IT+c{cn`kC3N&{Oziwl`ud=*ioew!$fPkaq)6v^&F4j1yf
zP{4(pF646AKM&<~A-Bu!j%N*OHHwhr5pt4zF54xTSX9u3LN0u>B2v_a!Y=F*KPMG&
z@!e06g^T(AU;B-~ukyxJY8)x<LJ84ANf#39M@k6}flmv@@F%LzTG-wq3AZWzDPx<-
zhU|iiebr21a=Yw1c}RRN_+9AXLQfZ#^okwXJfygwx}dr6G;6qp3w&lscfoMMbRpnE
z6&I?yQ2JzYkm$mgHc|4BkXSB+U5I6CZKBs}#>Tl&`($$ca$#Z_7cLBoE9*kUg>o*G
zck$~!B)JgpLIOLA39CvaD!gcxOiUEYY(Xs_PIjT93%63jDK2bJ2{Sc$U{!KqPMauG
zWibGf*PkNQT&V9t0~bDXp}Gr{eC`4pspUcqk*z7P{gGG})pntd3t861)^(wtP$OS|
zE{XaaKts_!vrV~(JB&sG8w+eAFx7<(ZK5n{<^t843nVFgD_ne}(b5HCD}mL24!0Jh
zjSFpEXy-zEX4e~3=)iIQ9G;Xu+)a><E_4!v!p<&!9b}g>brs|b#)N%#wmV0=H~i$W
zmFGaXmkVFI?5m~P9yWTr(8q=E>7_38bz#b+=HmpC^mC!V-~-Ym0|gl*aIgzQ1o=wf
zP=Ui-81BLd7e>19EkjM4=qMp)Yoi7Enj;(#V%ExMedEG!F9YOEV?^m#7cxBxGCN*m
zC#2P#=)xqy2PavRUHHxgk|_eG3Y;d8!s#x|NaHgFX_3*I&2@2M6`kCLR3y)JVSx(^
zU6|)Wt1KoZKe#Yo6!mx*tmjU7cEeaiuXbUn3yWR&-!6laYhw&*E^}eI3oE!i{lTUG
z8Y@NV)809b&NBGS7&X_puvQ2wehjP=ZEkX5GZ)&0Pcs6~Qi2;8sIA~e7d%-^wz;T~
z#bz5_3vCf?PFNb)=E6@djQ3!I2islP!5!p5z=NHP7%m)h;W#(A3%j|XZKAyWb&m^s
z&Ik6p@ZmyWui(t?6Xe5{zyTpYDDaTL%5Q^*T{z;xQErX(LDpg->3hdG!C1$&TWtKo
z{muwbH}abcS6#Tq8M$y$1e{YYoO9uAo9JngJ>$YzZrDMQ4K3|hROMxn^W26mTy)`*
z3s-~=<(CB+ohK&Ga{E*fCBF;F>`9S7s5~U{(1pJ_BNuKk!ieDWr-+a<N;JLY!fhAs
z(4F`sVZF#*7k+OLxhIgMP}}HVF5DN&p%#$`+%JWivR1V$O+#&?j~FFfc;*86V;7zX
zLjDiksa<42Vf&BKa~EET$&$Zt;bj_szC7|;@TzU2Zy3JXMt_(bdCNZmF1)8D=}~U1
zcH<*g)`hZeMBGT{MtV2$yHUW63~pp}BexqrH4MhMkx7u8Ze(^NiyJvawo{{ERyVqx
z3}kon(@}gjfqbCrO55<cc}6W?JnNQw8k@_FaaRLN`X}XaBd;5yeoh|o-pD6fSbsZ!
zr?CayDCCChhRY2jk6GA_zWGCNqlg<t-6-Zp>37ML7Z+r7*#z<uZj=<tdxwRXWk;n%
zgAO+&H#mTGU4u?Hh^t-6ZZ|wscEfao1M|A!bHnfEvlFr11|}(P)EN<U?g?fe6;=h;
z1X8FAQtFFfz>W7)62fl83KA3;a>H^X{5<yVj8OGr;W!S@4YpIpjc0FSCmsvdeIFZN
zJ9IWjs8!o&IXB9?(cX;?Zp6Eh;6_6?8o80^Mg=#jx$&7BNp2*&QPqvXZKEk}RAl4t
zW2?CF-OErVH+t_2{yIKOWszks6i%HH8u#3o)i%1dZS-u(!rNPhs=M(y?N;8ZFh5ko
zjhb%$J{7Dbuz?%3-MCgcOi3LfsVlIa!1^5XKLHl8N8<F6;l^$>bECPiY7;k71?dr2
zsi_;E?kAJ9a3ktQTQ}Od5iAyN=|(FzTD!rbg_Di%V&W3_W@zIE*ZRx*#)+pne%cm1
zk|)&odXxC;O**>Ki8FGej~kuc=t3`Yqq`eB`zLiQUa70->kBuI-c267B1r7vMo+Hz
zj@Vwp4m1A=o@^VX^9*hq{?ayAn7pqjn&ZY?H~P83G4!W39>oq2IM9tj)O2Hr8<S~6
zH@<RXs2kt9F-9m16FAb1;exQ@2shX)$tX9z7Q)d2zj1^1p?rGF5OHjp{sckB2^`P4
zl!|33(?lVeB>e3^$rLwc2;o$L(*&|;y6{hunL_ft8?yxANM@($(Anm>@q;kYGJzwD
zh3C7mfcB{!S}1U_z(oSN1(vumH7SLqONAtV)wnhfL(ARxyKQuZ8+%$NtrS?NSjrkV
z*1GYKMcg}_z8k-}@jo{<xUtcVBU}+THo5U=WfFJXAvZR=vBiz8v}cddb~kni@}nEu
z1flRJLB2Q^-08;8!k!1**d@Gzj<L^;-D!M}AbSNiJetDN{erVDm-3*f%LWgNDYJLR
zjbm;ccZ1VEA%rvw_bhh-CBL}wt0*GB(BB^IN!r$p^KP7S<Fp%R+{oH4+I>ky7X8{H
zcvb|HK3#(s+_>n*U52Bg<u17~sctaS@3GXmEI6}Q+<1E<_`ATX+)&&;f?s#zmLM#>
zA;?WP^4$tDdpk{jhx=%sExG5$pKko+M$`Gmz|7VIu`c%ozWBB<{YvVS{K$>RZWQ*Q
zhzC#H_=iE*gUlX0<yK{U_8_AN&)s;z7|t!}#!EL|35&gPqelOv*X-h5fI)*ix+3^5
z#~@1IF?I=Zr$8)wr=34A=2wj)N#{Ya>#?gUS?N6>l1uHPBr*K+T`IQP)!0l$;%JH^
zCt|aBkkx}+9_04Gb-hV853+lZ!-KNzqEB9hsFRcOgR#bm(A?sc4qQsf<FWsa<n<t*
z2ld-U8Fllsh3icUcu;wH@Xx*}<Rk?>C?q80^xL8wj|UzPydD(ypo9nTpp*wCJ-AXT
zmP5+HiC;}-40L!PdEoTeL2}#1P~ibd(NSUk0g_p<XOPL|f!l*xw}OmI%)TfU>k~s#
z1o}Prc+lXV5>;e14|ES^9#1wr{DwKm@G|y&)^}qPf*yoC80*0}jx%4x@?fL~qdW+E
z5bHsl2c<n|>_HO`7L6`h#)B#zRHaQkh<H%WgYq6!@_-MR#S0`!5+uQc#573-+GkIM
zMadqdczAWNt>0vlN$lM&N~A(%kNwCQc{L9{^Psi|bv&ppgc*VrKKFo+u~DIh2Q`Io
zcc4No5BP8zpHd^%^?-y5^*yL3x@-2N1zT(2K|>m_U39+atC1-B?0V)@51M+=--7`j
zH1nXj2VFeqDjICzK`Rehdl2=2PtCQY^@_)k5Zidr)`RvQbnw`Z+qLuXlzmKR@yOhp
z;xQdP=;T3Xracj6+2iTrF;pYxBX(bS(9MHB9`G5w?jH2;;MtMtUkdCgka9|T2?Y|S
z-a?Jf^7R!$D)jU4vdS2efgTL<V2FqBLAIaq<75YWaP>%aCO-Z*R9It}2fL0`|4)B-
zS_>ltp~c4cN&cF)3YPoEgV7!^`}?{uk&<tPe2fRxD#q~=Z~oR6SZAys8v3$%c%lcB
zJUHONK@TQ-@SO)!JebNB_6PX6x5}uvgf)R_bf*Eqy|h(HbGipJ=ye|ZgX<iD-wT}O
z!E8bJ=nE4|=Xx;DgC9JYFXTT9T;RbHK^D^e(yCB-F&!x>K*F@tgJnWzIZffgO7?r$
zZgYbms|2q0V2vPa1yW(12kX=Lp#_1B9{ZW+O&)CaV2j|){^Y^d|9F~Yn;`$Szuki!
zY4V+-DOTAfMsoX{v6~_8L5V$S*);`P?DJqhhf$yf)0lSALmnLV;Ft%;J&^ZVFHw#^
zWE}C}m7*RMIO6N#e530L4~CZt@yn=RJouFx$AkZQaM6QH9-Q>xln3YSDMwRw2T#)`
zyMx<j2YtJPXXu$8zR@z3>6{>2_Jl5Y(9g6s42=8mEcUYCH$0fLF-YMR4}KSts{*eH
zr2G#LuBUNFyU@6JyYbr|+~M}|p_vbNJ-EkFdGS9l{`BB4?pZHB_u{?>4?M8E2z%|{
zlpiwqc(JK%nZG@F<iTSGe{L=>a(VF&y{JqutJlV-+z2B3+=FyN^1_3cLh?%BTY;|y
zz7hDZz)9l`R(~h>dx0MWeiZnLPAe4Bdy&D5jH2Z%0$CK}MJB=7LS`@iYml5p+0x|M
zy~rW>nJ0EfxxL6EvMzyny(sQQ2`}<_k>85~UKAAaB3={{WKO$iVK0cR%S2Mti(*1D
z<IB=a6qfYbXU`-rdY939jLO2t21<G15Y_*1YF$TVVRDL6D#(IR$1N0C-Q$Hfjr+Xt
z3$6%M1!`%fx4Xs~Ui%k1(~E!?K`z1H%Fi9FA$3)fkjNfMpRVbUV5}E|a>ZBkBF>A_
zf|n6kSzuW&B7&6jqP!RJf>VFuA|t^IpC`za=tTv=lLRIUOc7X7AayFy4(m#gR7q>0
zsvy?EjGuXtxm2)akL<)6UexrWzZV0%sO3d%_MS=2S3Fq9i*4<qjlFzC$|iLM*7Kr1
z+uv=wYXd<V3T))X-)CbfO!cCv7hiaBU|w7^FPeK1^`fQMzQ(-J`A`c%dKXP0Z{<a6
zFQ1?Qc^fa<dhyi{ab3JTm==s#8)_%y?FCYygBKkI?<BCZKwg}__-=rupZ}9I>qv;C
zn-|@^=pmZw<;9mmt*1a<z)pqUUi1}Xt8mBY<He+TaU=)k#r5;zbh{{Z272wI7Hhre
zG%_^Ei@{zDVQXG2_u}`p2}8XY=EY>LxEI5{7$Jlcycp@lC@;SCVvHAGbDy>hkM`ml
zLEO_5m>pRmMBJM#d8`-XycjQvcrM0M(xhA+5=gxmAekr{WJi;{c=4U_q+N817gN1h
zBIMJ&nC``5FK+ENX3$W}LNmSi-iw8~&9|epzdgn*FJ^nuW}v~ML3=HxIbO^an)3wy
zAaK6G1p*feTqKaS^5qO}zgwQ|FHIZCGS29-!Xd2?l9d8id9hlMD-B~DAJVV!+D8<r
zv(Ah4UTpAUqZfO<*vHW1#bz(EwvT@L6o031(iShad$Gd{@~vL{NT>25eWhe(e-c8H
zo1fy3ew(t>i(Ovq_Tp!5|8No|qdt|5Hb|&Y+}b0mboV5&;(o5C7stFf?!`eb3fJOq
zE77A~9P)zg9QGphQ}BpDXM+Ut+Q~_m)|$1dB%JW#7cc6Tj*zeH8~dx^?$0BXob=)p
z_ofe}eK^hS-#&WLi%VXd@q)L+pY`IL7w5U+U&US!$c>qGmvMYqfRf810>t=`$%k@>
zf>&rIFRprV&5J+0ybvs$!N+H@tm|If_2QlvHyGg!>!!e4Ufia8oU!iE!LA4HUI<pm
zW&L_4=}#^}hT!<U;m2P5#XkXF4DAwr;Kf5Bf7vp`?B9Yv5=iCwn)QSM$IIW6@Njgx
zS6;lP%asc~6Zo9oB?u)iY4%m&0=F&u*oYVJz4*Xb?FF+;Z@qZO!OSw2t_-cs5!d_g
zz(+6A`H<d+PYn34!}YTUL+7pY<3ly31skkQAmJP{`s|sWe`96#@yXAi<b%_PEP`kC
zA)61`eQ3AbDCo1FrP<Isl*5OdK9ucmP?$>;<@O<uAe7|wA)ny+1s3pO_hegh@n@kz
zq6Icm*oPu%yr>Vw(s*$}O88Jx5S~D$GE*r*96lsn3x1qx>~Mx;A3{EmxO}*J+m^UR
z)+5j>(C33+5JjLWQ1d|-B)TzR2*SFi4}mlu^x=3WlR_rThp-Rpe@uw=;o%qIu@|g_
zB&`hR?nAr}2^`h==DBJ`YRwHseD;TmastZ>T=`X~KqfWOhtGZXYriUR@IEB_km9pn
z22|aLM_&g?D*8~#hi(q5T>EI9fuYJiRPkZpxj<DPI!5A{s`>Dl;PQeHvu{6^Wvv=M
z)byd2&%SiMwm_2L*OiEMe0W^ftm{KPLCEX-&_M8pX_7`hG#0#xz|=JP$I9iK`_O`8
z)=)!3)Q6TnOi?jaMJpd#`*6UIgMJJw8foK0;%Xz#kG5Q84#0;Fw3Q#dRs}lx(8-5i
zeE8Le&OUVUp)U>MLsx!Ml7c;b=;gx~f_L+wyAM4Cf4anADW4o`(mwj7ko5NP%}4fg
zgOpErV-j=Bj3xH>VE`A)hh@FP1AQ3e!;d~}^I_+*z+fLH`tap?V+dF6j`5WbLwy(~
z_@mXKZv`1HaD)#deHi7#*CI>hZ+sY?#uE<*D~z)bLXHuVu>!{l94~N!z&n50I+H}#
zlLdZ9a|trlhuJ>N5qz2t(|wrXLu5<rOge)PhxIT=d-FrtSwbO07CSrFhj~7%@nNkG
zKlm`8-sJ;7LND-PA$KU}%lKx77x}Q*hb2BN$Y|GMDn2TXKitf15l6n97BIsrM6=Bn
znUv&>35PR<SNX8o$JiK4NzJ|1I?*y4-^htDZHe9R|5e#Uv-_|`NOB}3Z58C}Pm!G?
z?Jj<z=@uJx#u(d$sVP|y6D02R;b$M3+)Ul&!wIoEy9IKY_V}<@@O?h)_hGV>dccRH
zJ{<GmppYM;O?)`QnHCBWS*3TT1mdq%lZeNC=-)od8;W?tn{w2k<Tr+8AKb#<PWo`l
zhktx{O8fY5#)sb-6MQ)9!#N+W_#ovieV$&oD)8^Bn!)P&1s?|Y(=T#46rJRf$X;el
zYnhJOK9MjrulYci`@@IpT!{NB`3;V|kIBT+n_SHv>Mhz(kUKv7<->i!?+U!<!=Hjs
zZRDzq4+I}Q%zVr+k|zI~5g?6sZdy9Undb@j%f>vc^2~?lKDhk0^S=;VU{TYir=Dsr
zeR$==YaibDP)L;i>%&_gfAK+Xk$uOF@JY=m_<J8d`0$aD--n-$=1=cO%|OO<qKM62
zF0GwxR3L-MUQ5+u{K(`-W<Rp{k<E|ne!hG*Gu4=~3Y{|fH1ZsR=VW)y^ZZxpD4LNZ
zkC5l{Bd;JEbX%C8O_j8374V~=A6H+fO-pE9=jSTyM-e}Y`mx}X>Ja+H{3z~6ba-AW
zm++&cA1R+yYC@ErJD9GNAICb{O-VxH^rLJpJ1hHfr+uCozvSnA?96)n@cQBN!|#VB
zd_(cu4>0f(QOFNfaLtcP>D5fTEZq--v)*Ny0!adX1k-rU!kKTSSGm@IkF}D!Sh0RE
z@gL;5zZj+cD8m8x!3!o<`LUW4i3yhTqtMZkZ{C{aMK<1#1V0k}sNly?KZf~{<VUg}
zb^NHy+4=EnrtoJ1Nh%6bNnm9^st8h5U^Ri%NhwgIy5OIuNosIG1+SGRsm+!P6rplG
zA?Yu$z8?+zXy`{H#%e#>31MSDn)%UO@Fsqw3c`v_1z{sC(j=_}i3)6));={``_U#%
zhx+aP=peE^1$OkKYg%b1KRWx-MP#>>D8j_*U-;2YNV*H`;m6eE7|NO0S}#Ao6!PAF
z^cAF!!2jw}r(fDg1_=2;frA7N7D$~Teteb2S#h`@Bm9^lBqIfm6*x-Z*8)ciWZiEB
z`PPpyX%e<DPVn)5Oz>l(;8O%nO4FI_$9HL*vzVI3rwKA$AlsQK$oGEC@?*9ibNpDE
zra9M-g@VsZll<Vve0r20|8MRji_%IL`>{lDcE@2aOOr1bWQ89q1^KUT@mA&<KW^?V
zxt80ll}TS+=f`?KHu(7gqx{vqCF#H${n*4UCL}urvS^DSTLu2;$F?;2PmB_R??{uh
z7!mVx8s8<zZh?FJ*qbKb=f{4*sm#U?`Ei)eqoSjVBYqt9qa{CVs5s`waX+Rhn6BW2
zpYL3Tr68=}S3iDZU{R1=!T<a?>BmDq{`TXPAE*7e;>YiPobltVALsqJKnpCjR&27)
z(W6SM|29rNyTeK@nt0KV%YOURb_YlEOYGgzyidi%%SD^jXqkG|k86J1;8xucKQgbH
zY^lUQ{J8E1i80S2-t^;^AGiIu+amR@AEUR%v8g+h)JUb|o*#eu@fY{qN{dAg{J1Z4
z$Rk^=U*lDhM}9o^<E0<3{CMKWKYl#(<GCMC{aCxidN@7xQHuIQuEdiotQU+|N8(TC
zR+}!cNR}RnPhM@k_9MN53<}=(@vk2Tj>W(A<AWfITYV?Udp{rYQCY<FQAj=sOsAkm
zZ>z!DxR!IQj0y&gh|j7ZMnNV8#bVW6HB&Py7?7xD5m`!%6Y-<VsDIsz<WP`PL2(5o
z6y#EnTR{;8MHS>xP=2LVP(dM4C9i^f3i2!HbTX0E3kc!7WtKavwvSbJWLFC-STHd0
z-H3Q%YF}&p`nX~W&RXiU_R(+F#g$a-`+8&rE(L4mSYL(IQVJXjhAg&T<x?dEP6Z#f
zC1!4(`lnz0W4+~8;8CC|&=hzTEUcaAQ_#_;=B$@0^-IjW%<?Nx6p)l$WD#`*hJsh?
z?S(KEOmQSKg%kwRc<?{6GHyZp)R;(Otb#ZN9oVLV(hABbsHLE`g0c!fKcJF=$_mQS
z0tyloUUh<k8{@jwv*Hyj&z(p!ZYiHwK|vBrb0u1N)z$Bs?cZW0D_GS&>Rn)^D5%I`
zFR+wn&4^VLR8>%2!RHDN?vAgf;4=jSizJfMZ@E%!Y9!WBuq~(hbct0{LAB1!>dv+b
z>ngu2t)rl>f))y*3hF7Sub_#7R0XXzTR-^J1_~M~_`R>yNI}=!YGc6*EU_N{7BRlJ
znsN$$wa(#q+9c~Q@y!(YS6j^$kjE{vT5_~U<6A3equ}Yz_*M#D-;LX&tH;+`Z56~W
zw%RLb$Mz4#KVBV2OxR}Ixs!s<3Wh5fp`Z&pRWO)~sNf3)-4ygu&{sis1w9n>Qt+jM
z3I)`j3ih>+?phW1v{<uKIn*odqjaI(^oPY3(~cCiA02OPT&Bg=00sR8e^f5<KgmFP
zGJSZlHF}{{e6!_<s9z}<s$dwWR^RHhHg(%F3;h!Z<WtMlO&zIVl!7q|#wz$)!Dt2F
zDEOAk`fp@3`#lz)C5Jk7vBiU;^*W?-7mrggUcn><lNC%*Fj2vZd@B9+)I#f*k?}wI
z)NX67@8~DXtf|zgVNFqR&zBgJS0&a;NIcsrb%uhO3O*|Mq~Lo6vlzP+oK!Gd!5l8A
zf}a%3RWMJ%GJ1}J9~8{zHlaUrLDyTo7gz)D#PcefMYLW$YpH@I3F_bhiHk{S*a3;_
zHpCG-F0-n1PF=xvmRai+Y@op#H($x+Q?Ob=zm<v1o(ZaJ6s#3R>jct1ly6k9Nx@d3
z)+$lu=Gv@aivpTLFQ~3%5Xhna$mRRdVoI!QZC9{E!F~k?6zo*+vx40U_RvF?Si2NE
zRC0@5U1f1Kw=TE#($2ZmeQbZZwXIKLp9;lp*GfF7;E;mj4DWQUpRB_Qj&M(HwdO3c
z*vL`3=xpnlKoa`H;)wbS<G+I66#UaZ+HqAP1H!}u@#`GT&h|<@rQo!J`wAW?IKz0N
z;F^Lz6r59VUcp5Lm*`zi_4uIFF<TNZ(88;&T>VooE7-U;@rr`RtKvQz8o#u!^*g7K
zU%e`D@X9#y>)eL<)SC)!DG0@?HyHG`$9Hk5w-ww`@Fy28px)(PbE_?uT3I?o?+MOq
z(P-+UW!7H`h_v2A1%E4euHXeF3Ldiy1<yFz3hEPvj*^M=DDr<8`qtWH@eZqTJ&RkL
zZuycSOTl}FKDy$~xONGNuNnLmSQXWO6};n?&!)bmt&&tqMktBw?sA`E{M*L}oK045
z%(c>~NUuUup{vNCBBP1|DhjHIQF;Fga;nIsBD0EFdDW~cvZ=_T+U6R!%HD3-Rjlq~
z<xr8Fpzf-Y%D+(Kb0>ajs<~C<QIS_gKGpu)Q7(64(n8DAA(~%>f0Z?Ie%$(4mC=B_
zkcz^peG6MD6-87ORZ(0;2^AMN+7m3MV&W=m=jyo1MVp__u3p@3y{}TPqzYHE`ld)T
zhYCrBSA|c-*lm_J-*T#U*kO{X!@5gs?pEOu@?N!5nXNLz@~fD<DUks|QBkf#loD0N
zo0)czp~6&ANkwH90Tn?NWmJ?^5mI5X5fyPN7#PDU%CCuQQ6!NbczT;PxO?h^>DE_C
zYH1Zu>RBzTCPvt@iX>Ww4c?6}uOdN3qKYy76XQ9s^;WN+5*gXJIu%q*_a`#7FQlfZ
zs7TGyYNPUrw9n&}){vLQXoo5)s;a1~qMnLsDn3(DLq$y$)m1bppnfil+&@{pxYX*{
z-<sAl_1!wFmTK?o+Wg2=p-5cK)H*_EP2E&3M|~9yR5WH?6}Mc814qR-R8cFUHd4Wj
z)4{N}Pu&jDnjtln)i+yB1vXPLfI)t<)m%jjAt8?nvawp?>>e3gt7xNwc&L$@y_3~e
zMLQKF%<{*S_Nx7p%5q2MPAWR97_MT3iY_X;vRM^Ne>Zj)iTgrDcba`l#gv#xH#+32
zV8TkHhl-vmda0OkHP~B49~ECRtv8q*dc)Y}xB9ARI49Jf?YuVnsVJ1&Z1yTtzgF;a
zNo$~rK`J&cGzO~}LfbyEmVajLh$Q^}P4FufLxqIGVS@0QoslX=sTi+fg38xYU^M+o
z#W)q;s5rdczDnr)so=LN_I?#%8Y9TSnpTSiflOV^*j8qqa^Z<8Cegc8e8<(vp?B&K
z-L=f*znL8Hg$(AGm&`#=m1$gYI=lvlh98@RXQ)`FVma-j;(Km1?y13n`6_saIe)#K
zt%8q*&rvZ~wSOa?Cy?X^L56pTE>N+MUROV|h-MUoe6b))IPBC2vrLz>#jH@VQpIx>
zFI22zFDiaf@vDk8D%Pslp<<_sbt=|#KemY7lry-2U8wkpYE5G|so2moc8lPf1<vab
zrOs9rKZ-0%w+WK-ewg}9+eP-)<M7Xd>{UViU4pZ8w;+22Qoc`gnp!P+zlsAw^Ps>(
z0;`qEahU%Fs5r{c|0<4i7M+q<>x3x%xl|ICC2y&gOv!I5{-@#s1Bi-~qVZEIPOJE{
zxjiJNGb+xhIM4assCZUj|Em=_$jmc?!xx*|Iz%t2xGb8zq2h{Y;VQ%6{qXOCvjrOG
zni%aLLVlg0plLD{P6~tE<en1MZ>zYY;;zuClN@H__k{dU6@RI?FNXA(%cSCg;15+i
zYL)c2(BVWL2|}w<*nN1?KPsN8ct+(8Q4W~Xp-xQ4=u7Td23rkzHN0jJW6;)+S;N07
zcr)8u74JCTlHp-FL+@35P?1hU(W=2(DUpvVmJBmijW@_YaYL;z8dnXnD7}UZLWew~
zATa_fyfU(A$f}`q|Io<8#<VqoY#LhngEI>Uvuj{Bhd`2?8gdDqTOiw^FrS9}8j5Ks
zt|7R@D4=2U%Ro^Ld<egwhJLNXg)|h_P#qRi5kWp>F>9?dsK&vU(CiVi9rBVIpn-%b
z-Oq-k**~E3LWr^&oEl`2b!qTv@M~~u*dGmhG+duzcm<O5Jz?KVsc<A3LK@UJma2hg
zhcyklW?va(2+Ub5Xle+sO`ZS?1%Db4XNksRHN<HM3;sN4CErfJD=A?{i*RWTncf7L
zet8$*jiTi=Bx^{~cxETIyud_(@d6VBK4_Pbr4<BEN|RL7a3n5TSwj^Kl{9pGWWBEw
z{`Q?gVO3F7=X{`=23~IV84bmCUu%-zxRmwR*5R5OYH3K-&{RWh4Rtis(@<Zt|77!O
zny6E)%k>p!LK%%uoeVV)vuLQHk%s>FGB)O#K2nwyOxHxS!}Ww*&6#bcp}B_68oFp`
z!7u+cY*}eAVz<=Lio?_JZ8Uf|L)g1AOKS~n*l%Tv*|r*pH#3CWX&|=O&_NLLJ$h^>
zQEU1i2J3d!@P&p68YXJ!rlGrr5p)a<Jv8(b!yBrh7ac&uAd%(T_2y{PcpnXY(|A9Q
zFpEWn0cnzff)svhAFCfM_z*6xApN}dd3>f}8gKHnz37oI196mwuQiO*5PvUJ`LMx#
zG+OYz+k@W-@~yxz0>=uR9vd7lh`cNCL&xAG4U@TcIx6e<PQw%p>2+k#F_k+)!|xid
zYM8EJhK9Xd8k$<OkDo6S_`Sec0x6s=$Q*%lHOv#_2MzNDS)gIDAPWUje~}=(hj57?
zO9ghlX0T|vh7}rC(%Nwq*K63IVU^&_t`=mChP8sM6L{oAfJLmhQ8e<ChE0M{vY9@h
zVXMggNS{0r*d{m$6BU@YYuF)#I|cqMkn&xE>=w93pf@S7U&8^m!>opbLP*U+f@G;0
zdsvX6#e%$>k@902e%0`s5FXcXLJ&r?Uo<rQ7$l+2|1_Kx@{<B7Ii=yW;Ahe#9QirH
z&uh3K$VGuy1YQz&S;Odu|93{zXFJyzD>U5I@Q27!a$Vz9GiZM_a8pCZe#R|<9#`yb
zLFUFKQ0Jb8M;ab$_%p56UmETU{y^ZvH2L3x{MXkL4KFmj)bNiGJ{9;ZP4l^i|IGeM
zNYd%{@R(j}c%xy_H?jW;d@JyshWCPe(C|?ZDkL2bePUD`5wex%+2h=L#mcB7Mu(z9
z)saa@X3=Z`9a(f_)sa(2E*;r)WY=+VLW%!+%pr76KC&KOw+E10M;;w{h45bWBud(q
z4-xYTN%y~k`E{&Z9h_J`SWrhH9ffri(cu%NR4Xb-DILXh9J?G~Dz2kM8ZW8amo=x~
z6=0&XZK@b{=#X@fFgXR01-f*&)8rl<UcuS^f0};L%b2qPO^2?doR0E33?U2(GzC&W
zAjqb7$)PlfB}iCDtRQh|^3sBo5m;7WMBv<`2E8a=@MPWgs04wD0xRf95~S>zZ2vi1
ziqNbm@Z+S|Dmtp_IIrV^j%qqS(=kNHS30We_*_R+M@t<wbkx+*P)8#jwRF_h(Ll%j
zp^-Ye{kgHej?2x8)YVZ>x6ja}d~Y91@pOx%>l2w!KQgjSWO*z56l7x^O?5QWc{6|0
zCOT4e`?KiKCK0J)v^gW#^oZ0q(n80`>5-k{gl4OMi?q_wTE~|<dh2MTqb=*|=%S;Y
zj`lh_=;){;(lJ`MW3*exD9P^GkxpEQ>5<;uBE8o}_D+d()$xUn9y)sJyg{OAH{CvF
z*j>jr9qreFaR7y8M^5yK^wL3G&@sB9p`GocqpyzsItJ+IM_2ifaZAT2j}7ub4d*pb
z$CfcA553DcSWJHq$J{cKdrf3e=g5iHk)b+<=~%+<bPU%qLdO&aXX@w}rDLp)aXP-{
zif|XaDl$g5-<?EreWT-BD)4&n#*xz<ql-4$W8)Q$<8{<;7@4SJl8y<YJKh1#b2t3d
zJ(*tDI1<|+@}02c?T<xRWtxuZI_By4LB|XoGj+_-F;~a;VrjToM>5CE((RLyvjyIL
zlaZYB;$g`g_3eX5^K~rHu}H^a9f8S_B^x3KJ4Y6Bw9!bgi+!k*XD8QYi#fd^vP{Qv
z9lLex(XoP?j>Dtzb*$oebgUOWt`XS2UF1_V!kMnsu}(*EPJCm8lii?$XG<S+jQ-Oq
zvYA%Zu|vmB9b0w$$aWe;e&X^qj6|l}hdQ^>NjgXJejnK`is&R%;FN#Xv5N!V7|Gnp
zz7<pM6s7WB9s6{g)NxA3ejNw6!F3$haZuRsh`>VvX_Lc(<S%F+zdcGHduN}|Wm6|;
zB4JzdUxZ(g{3ay-6IjpJly@(m7S+$__CHFwiZs1YFLGALIc|!Mkz<o0CuZ1-by3G9
z9ex9ffy+9sFbo>VWZ-ulS9Ltp@i+baUB+uVZt1wK;}6mPbsaZ!+~nS@7va1X*N>27
zUmLlj<F1Ye#72?0_ZfMB_nwYFX{%<oKl~-eb6>~x&h~$K<vT?eeP`d%{Yb}S9j|q~
z;ZSw_Blf~e(a2MQ&$!1sMR{KAxyZ8d7lQQe6n!O>H~m|L4)Cvzw>m!R_@v_<oupo5
zPp+6{o$RB#?{$0-n&e|UMd?@R4D^gfG8!OHZ=hl{l0oo0Z!+%g6rHj%lG#8O1BDC}
zHjvdoHUqf~<Th*<<y^Q)vm3}^Ag6(YQzM1i+rBzxS|pEwyaw_cC}7wj=-P7I$oUNL
zWO41nF$E1A?PB{aebt|_DR*uW14Rw{7XDHO7#xZjxRoKMgn{CQy=t7oow~MdOH$Gz
z!pmtL1|$Ps13m*zgRcdI%YfU!`^L6oFy(lY@o<YG9s?Jq*wyKo^wJD{BU~f)%Uz=y
z&<r#%(9nQxz%Y<#pn?I@K)^t(fj9#}0~b3*EdxC791>GLyvp8*zrAV^HteXv1IVQf
zlrd1wKzT9LvIZi8FtonR9>WQ8nK<is1OK**Fd!rtV2mOmCK*UJP~E`i22yBz162)F
zGwlERD;X#;-98FkS+rI~AWbo9QiSKYX;P-oxGqg1-~U^rhJl&}>KdqLpcbw1K4WbI
z|8$CS;xt7a19zI!0#OD)bdF|e9jVXB*0+zwA8HY4WT3HuHU`=nXksAMKuZIy40|s(
zHPFI9)Ic-QdvnA7i@>z6qkW8#L4%25hfVRwJoQ@}SlTgCwsW+df%XQ582HLS2Ll}q
zbT`n$Kqmv84SYeDsApG+aoI=Oy9mQ}75H{#q*mu>Hv?On*`&wDNKb>eCE#}BNH0-~
z6~7dux4=FE`wHx5puZqAIMoIk7-ZNniggEz7D#xueJEFxYsYO~-?rg!10z_gZY0;+
zjIMsRgmH!~40SghZQvUNN%2UI$F~N?7&vL+l!dVd#u;cHK#Ksz8<;?kHPOe!L{6=F
zmgc5?`S~ORlMVE_XMIQG8@Ov=ih-#HrWu%SV4s2g24)zTX<(g!^#-rX!7N(Oz^hrI
z*#_nqSZv@oHOUo|FxS8jbO{6V=<N-&oZ@ZvZNgnTM;92Vu{?Q^fkqh;77Cp8x?-?E
zDur{FCof?m%ah-Ci(O`5xq%f1RvK7i*#9tA_`KpOE+v<>Rr2A2Nndx4l5}m?VlC|u
zNZ9`>>C5wh4de#48`!~G%_?p(u-U*C18-g>FX<fJN^kdt@BU%@D9DR&(l*ZV5923+
zd?P2X&*DGDI}PkHu-CxPoNS9Q(=G$M4e*{W@?~RlR#}%a`k(k(D*}Cngbpx(7<kb+
zdey)o1BbcwMD_?{g@Iq_9tMsXe64Wu-tR-lsZ-b@|G8i62`Zco{xZ45Z}jR4Nv8~)
zrti&+`ycm0mV}c6-ERVC*mdXVc>|9(gwHY%iR|UhQ3_d$!V3n@YzUKFqHh@ZcsAjR
zfi7=(p*xZ)gyS|RQ!=tr5=VH=z#j&#8@OTMCS8mEFxB|Ds{|EpiHamOrWrLa1%{Rl
z-ZStgBa8`yj$z<F!>Ng^CLS1g$mO6(4PMm}WV3%8c*NmxuNio1;2GVcWbhwa_^VLq
z6S3uPhnP)#6nsvzFtm1wGL4xQ_fqgzj3JL=DXFwH>0bkH4Rq@gO>g2Iqgj{e2abvg
zU83(r_EL#pLf+6P0|&+?q%&bnZ{Dm*Fnlb?Yz7k<O~jbEl{GlvQ<F@l{XUMa<3gED
zz6`YKp=-$v`^RT9k=;Z=6NOCVFnOU0@|wuUik?s|6G`hsc}(Os(Rp-m^^NAmuQyLh
zwkm%SpWnpv?^AxuA1YvC*4m1{PfXbMF1F7Sqp*o0CQ6uS@H$Y`#JF$6|29u5W};i;
z;O5rh;wG47+LFa8Y4YVFC}m<uN^obq<>Zh|T&*6G1d=3oil<yQ;W9zu7D(a|#B0Kr
zCh-fR2vkjIf}Chvk;<ltfQgzWYMBU{2$`tBNzqCs!X`?aC}ZM&Vp6P$X#a|-@8f$V
zCC8Z<<BT`Qw^&&?p{$AWCgM%-{W0tJS>*)IMm%`}N8UYrEn7mOAZ5x&pLH#BXjDqF
zi4+snOngT9j--kvDx0WcVggsw#GAFDrOx=5CE`tIe3=7ARSw{QQ8RPG@-ERARpYw!
z4Ocfo{M<whK`!nOF<aY29TSaAG&a$2T$Z{f_!jQ^CeF1@%EFf`E)O*@(Jx<8Lle%F
zq@ls2D${JoZo(=V5=fevNHsAfQ0`p8*rr^aVX@>TdnFfIl+=O~H__5WD-*3ntmBa%
zMm(lD^MY+mv}Kzsjdmt_iBj_RLejxRM?pFX>@2X0z^($n5ZFy%cY!?wvW1?4L`%l8
zmoG)LHKZVq6!kSR$i!gI#YBG-15Ep*(m;VEyyBSn+Ome2_{zjK6F-?4YGT-b3MPh|
z;K`BAB0IvwNE4$>d~ITbiH#;koA`#WE~np`_?AmdNlJK%iLvxj6W?(dH^bvi`>Cx7
zCMI1BFS;2Xwla1iIlCxXWHPsWZ0i4#!%QwC{32guW`QE7N5)Mx(dk?)@AsHtVy1}&
zCKj6bo}0o1pZWZOZk8#$P7jaG6rOEj4!g?~o@-*BiM5~SAm?=@MDMED`6iZB4SPc6
z7MWOVVht52F|pLd3KJ_$Ua*EM7sB<+rk+`rRC!ABa_-9f5l&&1iJqZyk#gZ`H^V#4
z@M=208NP3ZIksx-njUMS-Ck?q)r>7Oh1mjmzFM)HxW{Y7G8MlVORH`XM%zj|oU<2#
zroNayal45fCia^+AWC<d*dxf#0(S}AEs#~}N#VU|e4ii%Uf5^T4w|@T;tvytOdK|G
z#KciideOu&6UR-QF>%(!2@}7VeD>8|@m~d=6!@Eo{|Ul-r<quKN@V{N{)ZH9zS;bo
z3F3KCdLgX}tF!cyiOYgq5lG4J3^Ia$Je9!g+D(D$^tViAg8*)rxXFNN;<kyR0Tc`1
zj)}XBy(Zq9yeAfans{#F1s#T=!^C3~PfVz>;Rh!EHj#KCmi(cR?C%nN#C?}FOi7Jy
z$&1FN{A1#&iD&-_=Y*$j&af{OW}1<+@Jkb~7#|oRO;FM)5cit=R`~qv@XJ7$&0etL
z-ZGjU3D*k5O_?43VB({RYyo5s;FF1T0mKB5DS-3=?3@)|IX9dk0AlR)aK-@gBhvG1
z60>`=hBF6{C4j5}uvv~RZdSN)Z1xx{-0F`EIReN@<p2r<kSl=P0pttdLMZ&s3g-zR
zZvbm%hgVMzhmM9zoC{N4_51JwJ+5E?g#tKpA-1qkuDG(|#F_ShDJdf4*TdoB0h9<J
zE`ZVjl>9$*y#=%t)&Kr~=|&m^9uNc(<lL##IdkY%Iu9Wr-6>syAWEr(v`9#oNT-4*
zp>!iiNO$A!J<oMqpYQsw|5|%J>$RW#-Z6Xj>=XCg8O44US7`-h6ckZVR6z*^B^A6S
z)jK5QFpDcFrr;;Tkc#R+_qwv4w-q#eGa$ceen&wm;V+FhlRfV$Xdm<3(G1DnNN-G4
zJ?|+ft3XqrD{v`DR-h>OR54l|cc1>+I9)KSfU4l6Vn~vMG7ZB}FnxF2tzg>E_Lzlx
z9Z2m{;8##dL1hI21wjRtg1CZ^f;2xF5d~3BMOc9}*wy8UDfXF?7WyAZZIY!aamp!j
z-)2-~@E->(nLSAr*q2n4sgsy03aTpd!(G%=P))H<y`<`lk&y_mKjNyT;K*d-0|m7e
z{4v#dUj}f@y(?hIvCCPIREM34)A4CiJ;nY}aeW1oFDMOUt|YtJ)ri`d+Jx$Dl}`MG
zg60aAYgnP7g@Tq+OT`owtrUDHr$)tFDq1UOqhQm3LemtqRq&C5t_r#-Xs6h}yp?~>
z>Le$E+=1GWDi3Co(#{IHDEtSmN1hjtJQCbpK@SC^6nvtfr-EJzMkx4Uu&cL%J_-hr
zCEHiQ#|mOehHyWc{S_P^?2_yNX<@4k0~O4Aprd%|!3u`R!ceuL3WhOwgil*Iqug+^
z`cRi(Nh6v4D-@Cc;T<hw*r9x;U<~0?S#Rg`vD9(YTf^PrjA!ZRREhsW!36R|>Llu9
z>J;jiREhjb!Pg3=GJC4ADM`%fvYgtQGZcIyQzU~|a8AK_1+x{*QLtMkO2J$O^AvgO
zj#Ua;$F=zizEiM}{4I3>RsM3cNWo%RS_+mbSRyB}mGSbXe!oMa(>Paw?U7}4R#2sA
zIblb{Jo&;U+0_cxDA=IjM+IvYv{-JgQ?OnxnWKt)W~tlC_~?b}2L-ol1oCuDh;CFM
zuvx(t*&(+_HYuq8IIH;OHYr<W(JI&>AE0jP+vIE((8Sy+OJZEPxi4J191xbn`ANag
z3QqA5_A1z?;IM2F3Vu=WWSi@Nf}!7M-cOdse^u}sBc(xU{Gd$E3)dm4IQOTx{@|#N
zPt}gg1)|`nETL9L+clPi9b=gM#Z5+g!oK9~VM~&~ubpO_XQ(oyvkGM11THAJD7&bN
zbSnN-a7n>Kdy_==RoZ14($eJH<i8YLA&7sKaE*GM`nQ4`gqze`REexIGUFWucjX1;
zmVS?2-<MPHDyz)=16dC@b!lI|b$=`!$$qXNNySsSsAX&lUMYC4pzh6#a%LB-%pwQ=
zf`=m@pGmXa%qSlrU$Z00rcxnmLyk9%iqvHJ0C>NZk@Z7E{`i<)MFthQROD8XQAH*d
zSyg0H?NP}f<=kafk@Vc3Ma9m3npBjNl3j&BPU;&fa;WxMkOrklPOeO89u;|26jALn
zm`}EgxK@~&pDNh`gf~_E5(^YmA&amOTazMreB+0k6j@r*jx5@-N0k;CQWaBCT*cce
zjJvK3OPZEYQBqj7|Bm^NDwjDl*`xZo-c_+_UpYxG6{X2#sP9qBQcF)(Q(}^tRj4ZU
z<$gsP(b?3MrK($nM}=2Kx%P^sB2MtB@Dl>mAT>k{QzbZ}BI<CAV5(T6W|E?E%vMxU
ziBO(efohdkE32rYVjQzoRa8^aUPT8L)m7AxX`wHT)Fd>d){+yd;saIgW?+v~ZlfYv
zhgz2^*+8w-^&M^?%?>RfW+OU{RWu<qRnfwUX+}s;o2$_CsuJJQDQ!jQd!(?KtyQ#P
zwyjh85uu&TTbXnc&{0Jv6@69oqu-g@T}2lszN?CE4)>{*TB`J5wkNe0wKuhoYJcvK
z07?Dn45faoVgO+vRZ0gD22+Q~;(RxlQfrus;VMR`80kcgA&gS-3E`(Q=|-zq)<Bc^
zPw9+xBEKk;?lbau>gWIYDkhL8QYSh7I5pFkvOZO0(U4Wc*D9u}xTE5(igyOMDyA<p
zO|@SHr>mHu;u{q+RcuzVMa3)?vsJ86u~Nkx8N7<`RV-EE>!{9Cu|S2~=4HN$oPmHi
z->Rs1wcJm+-QTHLsA7?HaYYe-F=533Rd@;OUR`M{lV%5~%c%l=lQq#-*R!rtv6|)v
z>KYZ&;5s?3X6jn1WF@VatF?~%2bT8!-t{A!-AI*QHqjT@s$!dpQz}lY*e;j0iUTSR
za@cDRYdcl!Qn6c(UB%BT_DU_;U5_Z6hoqL{N*VAz=}2~}d+y)Z<9-#tvbyvx=AV`H
zy7}V*aucCLDh{hSq2i=mHTT@Vt2m<KsER*0DjB4V=a`D)D#k9%EWJw?G7r*@98OAi
zd+w%@m@_KQs<^7+nu>EO&dYAE;*yFBY-e3*&qWonJofNJrLI)D%%Z<IW76Oi71F*0
zTo{u2I?dZ0{NE~WaPT)(+;Zkh;-v*?R*pi3eNQfyjtN<E&s0qR#&uuC1A_2F6_3b|
zsgG*7pAeo>>s56>SMfr{OBL%YmHkIHY7MW*uT@N{R94LP6_ZkFNUb50X2+z_kXAzm
zayn{ysuUfpm?Zi`i@c&4H7u`~^lhcGnOQ0<W;PAkHT2fdN5dN$a%k{s@M*}YLGJEW
zRKr^u>V2!^rWT;)q2{IL(~zGaG5cracvC|`4TT)1h=#(_{whtL-75iSY8Mh+yu~G2
zOp{;fz@;Hs!`pHjISpks#HM&kYG^XiQ(D85*)GYxqv4ByQA)$R1mT>StTGxtZlt}Z
zVd@;0WJM+N-V~3b;r+pxRYpo9cNQs{23=ZiZ5YzaVnu@8@&>rIA<09?J<IfK2xzE0
z)73?@e^L_E&_F{&4IvF-4G|4d4b?T&U};Q4Rf0sC8Z5HBzDc$mwY*bWK|@7yC2D02
zRS4yhQc05dYRs-UXaCTpCiw%|Qha(X^83`WRzx0wBxY?E)sY(#YdH6;aM~SeJq`6~
zO6kzYW+TQo(~uxEmT4qN<4p-=v!`zEI2{NrG_-V_R)i0!t*LFOZ8dyEXh&^Nl{Sw=
z(sk6(iP_GYJZINFiU&K?vBgu#Om^jbcB6Ku_MrCE(2F23@?<D^YC~TQqc!_ZDgCs6
zpI+TxPOifP2m>_?a-6{$hB!P_!!Yu2>Imvc>L}_b)Rn*5H%T6&;ZqG`HH_0RSHnCF
zpJ^B`%l@RxEK&Y*Su+~G(IAhVlI#QxQ#5?3$-Vx{Poz%LFqv?mwQ4`NYoqHcS$@*g
zM%Syqtgkiv_1dN0(5KOvPL-k=8YEs|CR?6GolTXF=4g;dVhKEZ;F_;tfrjrie5>K7
z^OmFvlRQ#!p<EyfBHzm;S;|^OT})j<%{fO~Dwpa&Q_?cIc#pcOJTJ6T!zvB!bhOv8
zTEiL*Pc=M~OYom&Yc-U*onf7Z&mX8q7pUts`@Pl=8a8P7QNu<}z68K=4Vz>Wn5+G)
zVXubGGFlB=HEfe>xq4u?h6m$3+r@0J?T{1aQ6<~^in>$7E}88YswAsgKqB|Zfv}43
zqfPF88h+tw`Bg*zT7k!B-1`YqSF*pc=zxZU(sd>K_h5&dm3El$yM{jqM`YQTG9=)r
z11B_`l=;_iMZ+l#r!~l9rY~zaqhWVP>w<=h8qUg9BX2^FDOOIs#PrB{*>I*u;v<Yd
zW!gW8=f137(r|ftJ~^CsJG&(-Pmyk?=vOsd)9_F>#`Vf|4S#F6uVJ6uOJBoH4WlXt
z24xG}($IL2c3Z<84F$>vgfopW<xdiKnY~99zitz&eH-fmXHV|j_(;QJS%Jy!CmIIs
z(?%WBifvG(m**N@$cCdMrsJiC+8q<Jbkpj1rQx-Pe>5cNNUcMuTPBrm-{t0w98LW9
zQwg-plOzv2PXW<%I@0SnIl+}dM}Uw~M<yMab!5@;wvG<Vw5&QFf1>8lk&}>(nw|QF
zj{Y|+Db1zJ1J_Vk2Xy4okyl3n9dGKmTtdso$ox7k?N<61({jF0CBC4J&Of*c>3I5?
zD(0RN+V+hu*T=3RI<)cXTRMvANIv5#sw3@TSN}Zfccv;a#o37X(ntv%C3U%bElSB@
z>QHsOtK;Wyl`=Zs({XjTtF(@O166^tI$S!kuThgZl7TO^f&Zw@54rmL%4IpJYC3cs
z9vxmChK`~2HMbm8F-@A1$dap-HTAU)MZ-QFejQRVOLa}=Wch1N#wqg_)Dhymg{cv0
z#U1*w{Vr37rQ5dxyLPU${J=G?qq&Y2y8V;dayrWEsGy^wj!HUe>3Cm9Wfn<kH9{2~
zRUPMZmsXuzLq|=5+!;?I_kF2-z-&Do^>x%H*U?c|!j`%IKIuB}w;k3%#|fX=P>!*$
zCfR%K)JAeFmDR>FS7X#BRDq^CnmL>x^!#3HsiT!l@*!6nITnI&Yl+ON-#Mu^T;yuC
z!w{#fj*sM|&oPcqji(!-cF@sLM-Lr6b##(*t)shcKPGa*Y_p4wiw%Pl#~EGad`)t7
zqlRwSzb@<2Ako*Y_R`T?#}7I-=;)){H?A3_;}dCWv8OM!pPV4V$5inL$l*9VNXKA@
zhY*J97)BWG_#+4-WxBrBrTS<cV|4tPS6w83|J5;8$JaWh$|W$s7^h>rj?Z;`Cg;m<
zb=_!)exYN6jww36lt@!sley5iq~wY6=i_VIBxzH}lZ{5929}u8f>ilRn$46f6+3oJ
zOw%!4$4niwbUeG}p7yssgYi=38yz*qMx@qknWEIjcRCgl=Ew@EpwG4cB~EVGrOl^)
zOI<(}vvUK>+rX0U#&0yF5jmE{I+pODMt4knFT24$*HRtJblmO~S*}CO71Wi~RdTs4
zh^*GJpkqRc*3eu_U8ma*XI!si7mNDea{Z`dtB!5D{i3jux{11(x`iq~Ier;bx9iv`
z6=jbKsylS~kJpI6ZXNjwYkPG3q~mNamody$BD4B4&HXy|>R2&YeZ0c8PscBEUQ~Tl
z4qfzD9qYHLl71r`psq@z9@g=@j))&ozx+!nj>szYptT1_bsW>t#*Maa9GB(P%XMGJ
z1Gy073T5_`Ob$VcP7}_^cpT>(;k=Fugp1TyE$#PXm*jMuNxCf6x48bIUZGy4ig``P
zb@JcT8;*Zd$1R6%6Yfy&Qt#>bcD75ZKh*I^Ha9okapSS94R&3`ji<6;bR-!_W!Q)F
zJY`7K7u1&=m=wKc_8+PYRh-lY(ioUyV6K6*tR68CHIR-h0qG57Fp$weCIgubyltR_
zfghJ9XEE%<%+Ii_)NBT_8+gM&4rV1Lw;?xxvWFxo7va+esqzr=8pvlrvJ%$nv^^3@
z1z7Z^fr17K87R!G^itFS$P!b85WJl97NMAd;szuuVJSz{>y=v4fT+fRcc`TdylbGe
zfilcWsmqY(^!+=wvV@MoRLKOzfNDUp64s||ft0c7EHVtZ4R{QAnU#Qm0Uuey`~;~O
zB!mov|3B@-4Ae64J_AexmQy#*F_$w?o=yd7MFW)#R3=Mb)eKZ|;;Ry*uj+&v25SD_
zzCJLpdQ4JB1D$xLY8$9ypss;>PHRmG^$j#2G&JN#l?57+8&l<onh>OyW`qQ_xq%i2
zT9Rc{tqrsyOZ<lfiEm?|t$~jWv@_7&K!^W3HVOFOx$Vqa;|+8%(A7XU1KkaLl0A7a
z{T>GT5qeU4QKhfmGGK@M5{`{Y>QDICfUvYMz`#H!W{?vjb%&6L8W?6^IC+GDv4oKZ
zMoI4mMjIF-OVnvfCQ~Y=G@HWX7%%2$1S$HQbN&SfKf%C6`jZUIAWWvpsHPbB(!f^+
zzBVw`z%&EX|NndWhHcJd-C0!WaW+AEoM&LZfu9ZRHSn!d`V(P+f$t0~G_c6PVkdry
zf$t4$<p`HjrL{E%mXT#_%LywCtaO}JG607+oUpIcwFcH1STAj|S*f+rzy`9E{^<0z
ziLlwgmj8Qn+nmVl1{yEOu*1MkI=iU54eT+n<hKlZu4E~d22)gE9|Mk1f8mh!8~Bx3
zDgDjB0rElWA?jfR^2Frd$$uEQq-D?>W)$bB49UQ811Ah*aU-i6Ck>o3aNWS)ta93b
z4B$^zJY(Q2;T-im^#WD;y-1K|FFDR-1AmdPP_H`vHG&+P4B&==CkCF<xk<fc;I@G~
z2JSK|F%JyfBTFy$3DV0$!XpEZWrREyIVcH`jr19dlH7RCE&2uZCG{2cHT56rkzQ`8
zA{A4)k=l(kZlrbF`=OW_+(<{3Y<hxh)ENnx+{o<yKl^qz`UR=731=s~LCxVtPB(J7
zk=rTF=SCi~w49e9TX%j!0k{0)@c-G#7j8{kh((2|pw3Tiztk3W<1J=|i@8zU;kVr=
z;qVo?*PR>hx>4D2O1q)Bp)y;B`X03`)#XMqVfjt_O4rB&Q8#oq3^&|#d~W#N@Q}UK
z?=sp$3Xnt8AXUtHdF`Swvk~eR=rK1;vgJm3Co)bbN6m4~KA{!dsK{(3CuZF?t%@5}
z-Kge9bvNW66PvhE!zr!jMol+rx$!=oI@AxSwW;!mF=<v(T{jvOum>iozA#H0QpIUR
z=+V>?Zt6x$$8SbRP@B8ag7DTpyAesP-1v}AYpOT{uP1%vMmsmIxpCc%_HJ}=W1So8
z-RS5>Cx(r3qq7@b-0072S86Y(g>HoIZuB7Zbo|>vd+@#8=tHNk<M(r;!VCM{eeA{n
zngiV!Mi@jLOdUd%u%U#D9TUR|BOHGuAzVMzCyq1PjWM$9-55*fD>uF-jC12N!gwe0
zb2q*qPoPeuPNGhxPI2Q)_rEVsDX$|klBq2E-i>L5>2Az$;~VmP>P+e^>TI|D%07oY
zmntpHBgiX)@VDdz)bHF_=)^2?W3d}cB>m6sx|F5MsLP$m6>h8~uX3E#gf-N))aJD^
z{@}(2Hx9XRn9h%GY<FXa8ylIGk!*5fGkJ^SY;|Ls!zEW4JIOyg&Mv}kH}*KrPj1xv
z>fg1x*NuH{{KBIBZv000m3rx@zHe#91LT9$VeNb}fZyHt!;L@b9HEMNl5kYc0^vCI
zgj2e{QdWsM<;H0@&d@wdy+A!jJx`r8(tVN8KAk<nOJsq|Zu~{Q;y70c!_yT0+l?Et
zDS1%ZgPU&LawExuR36-RBA*fNxN+Alk3O(B<oj+sa!Mb#@zCL<=lLF!pHQDt<tcko
z<vIBU^(9rzSA^Hpf2gf;2E|Y9K@JacdXUD0v>v<1bRJ|P2&X4xpk|~NeVmlpgDf6o
zbz-u6kc}L>YA-)YZ+K9#kUb~4Jjm?<JSgHp9>x@)=5^}k^B}*&&H1(Vo6HvUpb()j
zb$o8Ov{uxKe4FqVwHUQHHOu}qB?u*{Qso^FN;%y5fvb!M?=joJgR&mDJgDSBWe<`)
zQ0NCdP@Q-WL8Iy(7>@5IEc;QF_PrkXnDtY4F3u#Tq#&~)YM2_KMyWBX>48OvQ_E4y
zQ>BFpGKb_>vn<J0ar~MdRCTzT2i3_nsGeK)f3wyizwf~Z9@KUs>v>Se;kq8o&1Fht
zeaE>w!9H0HJ!s@XW13B<&8bbP&8P_vzWdWY%Pp8~NtJ9XdllJ@wDF*=2l;%+@54tP
zwDaIw4;FaPo{>GA_zoU)bhwiTogMB%=t}M8L3cv`x%L;fJw52<L2nQG(EQSaz8>`R
z;8PFAdeGm4k3AU0q5;$)9t`zhAbAi~8W~LZ-EANKFb_sJ{&2$lw^EHHq`c?+#3>!^
z!5D|%%4#3xIA*`_;4{Y`PxxHsVV4~sX@Un6J(%RdWEM@K9@uY}rhMl8%7d>xnCiha
z59Y9RI#mK@5@vYt4WZuv`vKpQW_d8%iD{{46K5{7^QiNwM`CvHcODGzVxSibJy_(y
zVh@&hP}hrkUVQJtQV(i)QPYcM9xV6RZ<4EfvBHCu9{lOSB@b44uv*ShFja=K1=e`5
z)+7I-j-O@n%NAJY!B%Gs>jlUgs6SFSdhD+VHjy`butm<%|9sNl#?tL9-9g<+l`-$~
zV7J422vSk}z4E;cYYFf3;1?F{r~c}}Zyp>VOQ(lDI7pVrLj-BzcfubY9QnT^k(gs1
z9B1hX>PZhyd2pI6t)27W3|S)25~Q{BgbN;A{J*VT_TVoMu6XQkfn+}A<AWq=MAB6c
zu6c0XgTFnvAv>NI1-!WF!7UHcd+je$Zp*Z9alQ25l?Qh`xa+|^I*+LLsSiAODA)ev
zLZb3-(GvgIgC`z5_28KY&pmj-Fe#NH2@@4g$-bs3PHHdyAt$llRMh|C(|D2Aancc_
zoeYGGUS#qjvlm&s$W13J^$jm_c#+L354^Vf`maZ6GbaObQB%evnupoE)O@Tmw4x@5
z^QIRCy)e9Rdr`=X!d|@VMQJa<NNKHv7e%}%>cv}*Q{0PU4ok~#{|}cWzvDQiy!O0F
zBW36))c2@my>NMv?6s#fWv(PrSY@e3)u|~hc)aj>5%nVGg^#{88}!0Y4*XA~_#tM)
zUb(}MeNrSzBc>OY7nSM69lyL6<;edHqk<O|y{P1jTq;Vc!kDVmYAMX)lJzDZ1LaGV
zT3)>GmAj)O<qH;BinYmgy!Pi=`NOf?S6Pbcd(ps)kGyCn>mhxhq1V1(+mIVk8+*~j
zYrh$g(xzTCqnV&Kr;6W#(9(-mgb%5$smHd&B|zG2%a&!kTR2x~&oOkB9cix8f!fiF
zPV8m>$kd&^=yNl57iO=QbjxVFF}}N3ZrEs#q$jiD_agMB_VJ>x<M;ETKlx+F$+jWg
zATI{9`fD$ScrnzA(_WnMVwe}hy-1ugPjVVZc<tLnA19Bbj`HFYFGhPY#*0tAIL1cC
zdNGcrKX~z(7vsHH$?WG|eBs5nUM%op0-dQ|O!Laqx-rR%$#mrGe<jPzi!cA@oTjXb
zuN_CS)4iDK#Vl5t;l($El$9x^v%Q$>v^K{nn&-uQa>^o+u<x9hB{I+CMbyRAl#BFx
z@=|#TAS{>t-zk+A{_AlS&DGR3)V0)g)b-Tcl>!^&M0>H3*?nI8;>9K}HhZy!&JHhj
zda;$f&5P{>=|To9eeGg)j~73Av77wg0Dfk6FZI8p+wa8u?!~X<-@G{B#X;^TQuh!q
zXNf<|QrTg|l=O!eN9Y`-ru3dTpQi4Xv~u=Oa1H!WDV3~>Q(POqG6l|han6fdUfh=T
zkUjZ4^(OTK^`bOIxJ127mB_!mxZ?0t!Zk0h6aIGm8-#A3m=Z6a=|t~vU@z(4rQY-6
zKG&X<KA`i^i${dV)F;%ZREc@!#dC*W5OTheEXV$eE!(e6UL^UD$_LpBB;_Hbrlz5$
zrKY2%_aOrzBUR!v`H<O%EX-#0AqOEFHM<k@2H{!9L{363YHsSOJ+72~^D<leOi}?K
z-t^&!&%VYB`cTM+B|d!bLt!64bDj@Hd?@NeSsz?JyyZhNAKvkyl+WI^iu>#<w*>iZ
zs_Zu6l%y|b^Udw9cYXGLSVlV9?kY`9Zjefx_vp)8nq(goAKX58=%_yXT<c`bi4n)3
zFK0^T)9bT$)HyzTWA{=0J_I=6pbsG*!ahWN=;}i^AEG|Qe5mU~Js(U4SEE|gxDVxg
zDDOiBAF9x)=tCt!W#9jKRsHX(tm?C`9eJ^+?n4b9YBE?x@_`Sv$nR4nCZ$SkAL`Ia
z$<`--=tFBC8u-xAhekd$_Mrv+CRAxH;X_j&nsE&Oy)cR2+-a&Mp%pbHpp8?voeyov
zA5l~KZSO+|W;^=O*@^7*KLK5MT+&5%nj?G|=|c~nJOc>5==AsDV;_2x`%wG((9fy$
z-~0^lVXzNF7%-4Jh({qUOBzaNICU6RDyGyO#q2~MCds+>VYClp=#2GYoDZLprG=E>
z&zSw3I^G$>7e4tt(!cN1Qg)chPOYi3=E+}Dzw*iNwf;SiDGg5ZVLFRu_%PF{^$kIq
zn&rc6#tWykEGuv>*I~*Bmib(M-%=O&@Eu_xb&(H?37yrna-pT@QXhV$xlAq=!U`X@
z6IS}Lim;lx-iI}WwLYYK9`E<3dz}yeRMq7vTGHANEZRW*k-E``O@z(VEmVoz>ccjN
zf8)1RJDA-`-9_C^-9!D!ho1?1sr#tX&M!XfcUao_jeLN5ka~!EnEE?aYW+cw$2uSN
z;g}D{9lxYseh7h+KAiI5v=15m$mGWvAI|!a<VPw$&iQcOhvz=L@Zo|F7kzk=a(39l
zC9<?%xNL#T4*%uD6(6qpaLtG7KHO*I-%gLWeYiosNxkLxax8ZozDu}A-99Gi0pX!j
z`pAdJ4om4%AD;RC{r+4=BHydO<Var2X(GI$$_QokN@>d9OodbX?Hw#FH4XI>Z-I1#
z^nPUU+il9LhE$YhGy9Rn5BTjr++_75o8R683sJNCQNWKk$#3|PgCJFM`jN|T@9nv%
zd8m1*`KVHqpA8BWWUc?cpOnTW6=tbG5kHFh@s=OO{CJy@#i=qFDNWH5bW*a?;5&Yl
zVlVGfOFKQ5@#8%|$};Qn!$U}RN)>|YhvqoCABMwj!tQGsy#ycCPYqCmROvlL2va3K
z=7;IWoB-wqVEGaEW3(S*SX$1Hx_;F2qdc<}s1>P|sFkVGW)(lGlB+pRbw6s5YdTIX
z!ux)F;5fAjb^NGvA)_=>-;V}<d_uFKAB_n2-z(7Ak0yTf_M?v<P5o%*M|(dy_>u6V
zIb&M;(Sq<HwI#I`^<d$DzxR;UB3-ocqb>c9{AlN#U-47II{ML_rJelf>_-=}ly>u@
zD_PdSf58GhxDI<#d->shV0Y2ikA4gu;zxhNAg7&={TSfzKtf7`gM};E;~YwJm><Il
zBm5XikfN03H;P%|l&$qsKgRm8*N=Vl$N90$kL7-R=ErzCpZoEpA77Ebpib~(B4HAB
zGIa`7dKr>F_%(T+AM^c~>c=!crqh{4ok9JED)BQ3@?)Xdjx)!Pxqdv{W*^RsH_dMy
ze~}*x9R7~5kUH~5(qhM7LipZ~rH)h9j7U2xnBC#WN<UWlu{x!cx`w)zx-P}<<yudW
z&z>9n_>sKPkF8GWCO<a&vE_fxzC><g>2@bZ{)j34?(}09o!ySVhwzghKc_f6Yrpuh
zU-q8>iUjbhAHT8ajexzq93W>5;2`0UABX+;U4H!IM>+-^@#83q9{O?2kK=y)&8*Zt
zA-lc9C;d3(@ag{<`B`}t@Z&s-E>Qns=|$NpnZ4xHx=gTFQNxT^{J6^OHK+7CL5gk=
zZc=YKrMC%psCTLN{J8JO1KHO8=dZnw{CLdLCw}{{IWPTq%Iq`hbLtDK9GwKb^4o8K
z|N2&W?T6?;ek28Kkd!Kb)Z{ddlQw`rQnD1K=e$V^83K0i0+KQXklFFG1d!F?Yyo6<
z*i|}Jj)43(3UbjYNX;EUo&fR&kdN6nsrdsaKuGy3c1kZPEPWMXzlHxNplATq1E>+e
zTLBacpm+dp2M}gJi2zClpa!4?@D80a)KXMw?cD%MJDjVm{vNq(04_o@RiO^9=&AZ?
zT&n2I3U~-c0B*-AWn}OM;A7S=GZsLQEO)94IWalEPF--Y{RSx#Ks10@0A>JHoKh=*
z@(#xd<pLO6NXy$PQ6Yee0aT({*@+po!~WK~;7qNm<5UaC|3us8rDg!N0vHg$zyRJ4
z;DZ2qFs60@_AP$`_%MLF0n`hinNzoZ0FB5E9H(IbySvz%K;r<K1kf~ql-bx&Axp(d
zwx3{Rb83qKS`v&-2`O5H@~s1C6F^s*Z3FVmGW)9R6hJ$Ia0fzr>awPdI}&QKx|DWi
zwo3pV=yYRN{O&RjSM1k<o^*Nz(3{XFfPRF&)CTGQef8-dz{hm*KDVUSpa2F3Ffo8h
zG=~H*CV)=^7#hH^0EW|)uu+5&)R8i2CG0<qeZuT$>L`wCEO|V2996<T3t;<#fB)|D
zc|iW(#6ECI69|pFc!VdDrv@;^DgBc074_=?MvSxn!X;^10Mi4Q5x_Srn&rgL4B*hu
z%_Lwpop~J3ya49Qc?_X(2;T;<Ab?dttPbKk#$*g4QxFRSSQNnG0G0%BEP&$yd>_El
z0QN9uSpdreST7vF3Odro8p29xjj-DBS68qX^IB%tQU6|?X+r=%2C#$KjnpkviQE*x
zW`{R(z*_^@Ceszb*$wuJl9c~uc&8Jyi?BO@6Ab<-fS&`{OLM<$_=J4{{NlvlTWO#4
z-(=61$)S0GI&+bIQ5+872(!Nj@J9fT*{1kfJ@Y92yr0=~ej<RA0X(O3DuB}g+zQ|}
zvu6Uh5Wq$9S?aj}&J(0!-3ReM1GvQO-vL}ETnXT+Y@|+1?#}kragEvQ0VEZ&C$MKZ
zdu85mVr~X-f1dqQoI3&BrTLh8FMtP5%>4k~7;0Yyk{$-|$nooyw3~Voz*9QU9ABQf
z`67Uq0lW&}HO;g^{6k0;wAW`6RbbjYd#+M5n<j`;uNz7>ol}~gkRga0Y3#o&XAUAu
z5N(6_D2S{<WDBB95bp(%J%~4gcr%ECLF8bSJk*@jTvVx^n-JTcAuk~xHNR6@Ac#2?
z?f=~<6hvW~C4&H=7`2EKS(NY=HS7D4;*S4z5G5SeIrHx@TZ;NFwR8}x-1elE4Z;;f
zJcx2ZBnP1c;SVCf7?tX#YE+$SQ2)4FPO5vz-XMGg*#O0q6l69UM2HZkiXS1Ae`N3B
zu^>!lE$ZuM_Bt#dM1>$42GJ;pia}Hg;)5V+2T?hQDh#Vhtr|piLbagW!p=T--R8S%
z&=IcHIZ?~u_X)SlmajvoPpwO>7eudd_O-LQx_uco2x7xS`)3c58V8YJOcSa&O$p7Y
zOFq<^2hoDuGKdd@XiaWK?btcdhVb5{f7j}$&WUzGv=3rL5F>-=5R^YD+RJZX5S<8}
zgP7Fb+P_X&e?{#QMAsm?1<^f-J~G1gR_H=f4}l<h2ho#}tJf*NR5hiFl+Nv(*w{JI
zH;8^g^bg`=If-2o;t!Bz+&MAiroO(c`J{6qXBYb#93;c`nuCKFLKsRN7R39XTf?a}
zJGv!cR1lv8F(Zg?f*2jdm>|C5I6n<yY!H*l<EWnp@de>C>UiqiY1Rb7B<e)!?o9vg
zb>W;Dr_hn{d`ZaN-#!aplcxqTjWFGbNhtPenJIgC5Q~DC6~t^7&7po9#9YF>Am$SW
zq|&N3wcoc$S|G0iH1iJrxA(<CETbc(OM>`5h^5S~dzLhHrag@1%&wrWq$Ulq>#hl6
zEwfcaSQo_lAku`8HiRE!*#vPmh;u>w7{taP4l!&~5SxSemAoa0twHP~Zwq2O;in*W
z1hJF6JBVEb?S%d71@le&;*zu{h&_Y;J(iytu$MYHujd!Serl;S_9gHe`2bb22MKQ~
z84m~XJNb_wjyt7Cf;j5%F<F!S>^=EJ5GQ5XIR0sZH8#~5$2oP$I3L6XW*-G{F^E59
zR}A7NolDfK)XPEqMUZB%1hHv?{p*EmbgonXc1l0061e5?J;H73ognTKYH;aF_4~{|
zpgxq@E^oK_IEW`fJPqQR?CmUiPJKyzL6xvd-1c7u@tRJ*-1Zw1Nl77jt7>12sj2(3
z*)yLmg!Ca44gn!#2q7bj@`aEogv=r2VphVkgpl3gtRZA`_?>F@h5rV#IYP+k_<NEX
ziJzO<Jk-1)j5%O`6`9|ODL{BLgo1=Zj-Ta1!y+LR4IvmpD1^5{C>BDQkUZ(w9(?f-
z-XXkAEkP|wmC}x!z)~T+OQ*Ese|@%TS+Wv>N^pgcOpwb#DrzC<A^4nlgW#dMssDUp
zd7aWv*^8gqKnNWd|GS36A($apAw-<WC?OWYh%WXO7iYF2wVV@Eo=_o#1#Gqwvz4h;
zsMiWxKOeWds1`!?5Nd=_lfF202(_s1Q$Glywo`h%MS;2w*CW)YHlQ}7?&^|g5<=4u
zJ_})d2+e3p%Y6um5SkNOP+Nx3DufS1Xw7U-YMT(c5!zBeqPC+-JM9S_WR@JK6QMJ;
zO9)*Zf5KRMm39xI2c1V-l=4~a-(2+yp|=zB^g>eK5c-ACpUx1+|Clf!gn^DTh%i{%
z58AJELzx{G!f-hkPRyqvj0|B^2%k94m=H!g-1#CmiZ-dn(iulBn#DekpNH^;TpeNL
z4r4+H6GJ!@!r>4mg)ljUZ6R!D@RSf%gs?J%FGKi>&ezm=AxtGqqfVzvvoi?agfNpZ
zi#ppWokN%#!cNuR1Lw;}06Gh(%R~6iiCjon6vAT1SrWqc4lfO1nZrHaPPHQ`Rn`ot
zR)w%SgiZ9<IHf;?u$H`zy58~Sztv;_8$$Sz&PM9m)%J94CU0>fx5~9p+nzB=J3{y=
zgr8;nEZs%jP2J<fUnpY-?+xKsI{O^|7s7t(q*bYZBOIU}q)M&6r853bz8}Ja5dH|^
zNC-zmI7aiY5RMc6bmC7CPKI#GaZZPDhJ4m>&JoUsaDi~q@q_!*NROA8y&S@=YWA?N
zFniUBxfa58hyM=YhQl`{-r?IJ+;R9W;U0C+@rDmWctlPe#^Vs4kY9)Jl<<Q3j4E9}
z58<~Z_Bww_=au8%X=4xUpAeG5_U4(2+Ldnw(}a;WjC5h74<l<B*;tezjLZZH&KO3f
zusklr-X5<Ov)`FyVNns?ZZkVM2lWkV=X~}Hdd@I5wY38z<)Qyh7<t3UN6sHcF+zbb
z-VCE4St1ceA#!2r#6ETlMV!*2gtw@jOSy{^-lmqImZX;Q*#jsQ#=BvZrXyKj7-hnE
zFO0HbxM=Fs<S<kxMhRo~z<+;nr_nr^l*$OhP4<N0bs`V8$=rClJvM(BfiQxO9|<Ew
z4pVFVo>^ifMZ<{ESv)wyKwrjq80Esa5XZ$h%7;-QjKVP>hKgZS3L}qdoQ$Ay7*)ck
z96^-`s)kW5jEoUvilBNJHNsdL#<DPKhEXewwwV%h!+1Z855kc9cg+r?b{KWS=o?1A
zFzSX;FO1e<v<ahr7!AUZub`WU(U1_m*0gCDjlyWm?0I<=2t&*^>4T!p!bpViq)S4o
zh%@R{(-vX045Jl;#r%+vt83z@KPcI@VSGfVXBh3mXdgzWFgnZnF%p0OURbn47#+iM
z*GelTD^8a%dN6gRFGbxL-<>L*N{pDj!ss1FAE)0P?F&nH3)>g&AI8UW$L27`gfSqD
zfnf{{V^|oG4uz%epfCo@8t9ssyC{R`5Sh=e3Gs)AF(QnSVT=mn;fZDfS57vYQaD*s
zi>`_OT@#;#Aw02b;?pq3hVfMxUxzU+jL*WD7{;V9#>+hXQTX#PzF_-FoeE8G#@5%D
zR>n4Ov?)4S&Vn!PlrY};p{Zm~8;LJdX6$L9sf1}^Ob;X1(?U`@Ba8#>3x5;F%rF+q
zXw%zMIzdm&3S&>#grsv_6LWZq`ww)<iJlk6pH<!Sso#dNfbbpl`>_4orG;TEA}ppZ
zp&n_cNs&}6o;F}^cC9?(ULMAZFb-GHR>~3$V*_~=bv1QO7;6a<vyQNy`s;4>$FSUe
z7q`N=E!TS(o5Q#$0|;YF7+b?Q8^*aXwuP}hjJ;v(lbCtQJHpr%#_lk7%F-&{NYasS
zT)pqQ_sEj&sQx5lsHaYPqWsM4{kw{oztH@Hx}W+h^*5@-A0QkI;}GGn<NqGUuj4XE
zfTSZdk5Z3?aomYHK{!c0MLkVDBd_UQHK}+$j10|fDAGxl!Cc_LCf#+9ec-wzF^{xs
zVO*9CZL9iM7_*AFuTTZ95+q>!UiG@HnZ4@Y)Ei;kB#0x&ekY8(VLX!UovqztQxC(q
z&#Y8`5Qg!<Eg-WY@d8i6coxQUj^t?=@;?KGe{{bHLrT*}><JWj$?PlY>oEQyBt`5P
zNvQ~_BS=F?>-gyiDaV^3g2!DGGRVvkWQiaeK`er-5oC)X6tTCd>=C>XLD>ivE_3CG
zAZG-nBFNP(kt>4S5fqD{xP(QJH-f?uAcA};rQH&5Mv$(BJ3q4pBAEYE#IDsXQIJj{
zs*6sOUz8%u7LDMo2%aV-r)jH6WUQbr`gQ~*BRILuC0rsR4@<Jmcj)vuuZ#aK>z1ZU
zQJDzdbGYF>)y0t~Qx&R8mBY~@&>c1+aFab$FV*Li`XdN993;%TUgqIxS2zOE2vu&g
zpnl|@H=taXJ1#SVHUr98)Ht;qwLG-~wPFO72ogDSkXki@Y7xwo1C;$gf*KKg9KnDH
zmVfQZ5;1E=P%DD>BlsYKK63hk*4><XZK)oCfTTJR)QzC_1yxeL2<np?P#aPkQ5#d6
zP@6{3jF5<+6`^?qEeKU_G?I2&lBMwv39X&16p7iEU4Iloy9nAx&>@135p;{7djy>#
z=p4cJVOrM+#x!zwiO5}8)dCq+m)EYCzeyymU+ux_y`Ay*jG&jp1HVy|FQ}f>p1u+E
zi=aP`cXVDo|32kbb+z&Y*T4t{MR4_@YrI?t^2`4ShD9(uf+5U`Gc<ymlkJbIBO+L^
zM;SvE7#YE+2(}(oBz+RW=oFqEm+YsE85=>@W4feqgwJS7>F4rd-7WD2bprKOI(1?M
zqLU(+OqfFblKK_(YwA?0L{1}2k6;Gj8^;f1^30B4P6XddcM;5u;EPMz_h((5XBqQk
zde>|7Bbaa{L+vlr{8L<VcaiU8RYcIRlD;s4wUgCF)Wy^#)bFXQI%`WKSVrFNk4WT-
z2v$b0DuUHArLx#gmX@?ec7W1lDwi#@HiC5#td}{YvzfXff{g@;`7vTYW3+j<#3sj4
z>NVXWa~Q!kI=@o4Q+H5zM(hVk?}}h|1poAp?vb6OM09@yKSl6!1bZ1HE$@q<celiX
z<TAg|Dg2j5%t_r6qLO}#-~j!D)I-$6R4M(P@J9p%(x#TI9MMr8+A->J>Iv$p+o@zj
zI~Bp{2+l-sHiB~zbcv#C6z3zj5P>U-<R~u6VajG0Mb;=TMQ}NSXAwM);I9a-$dxV|
z)STq25nPMl9{G9%e@AeKEJZgWxaIK82)^%@5L41^IckURN_P(5kKh60({#5ZACVtZ
zpQN-yEzHsv5xkWBJc_hYyrQ2v3h6~EzLpt|ASsGK_e83w-LEt#oYJhsq>I{N8KTG-
zMS5~Awkc*eLMED-sbjk*vPF?Sig%(Y6~!A-<e*<Tikwm8isH>E3PzEe9Z3uMS(=BM
zmt)9BmH|j<0kRCK5aUw@oH99xqDT})qj)Qdx1%V*$YN0xCrI6tiCVyRN=C888MDB<
zjFBUfmP?b%MDbqq-}x*{N2*98N)&1oZOB>_dK8tSs2qh6g*%E!6wxR=QFx;WGDfQS
zqVPK`gE=mf$?Svfi4Y-7&ECU4z*rO}vlXaT6y*qUsst=N)J(KI+ezVy&cRk;OwA~2
z5vo$FQL9sHP)qhmydT8}QM8DnWfZk(Hj5$=MICZoYCWp-RX>Ub4mTt;qBf4A385)<
zCkNJ?EVb6RDJ)0Y`%tr1bXrqCq^2wqiHY<`w2k7UDB4BQK8oF(feul0jG~j%PU9Yl
z0X-5ES=3oh5TRQX-J>`g#knYYMA0*fMNuq{qE{5XqnH%M<S6<?<q_@}5XC??b*V?9
zpVMZ4!pBj(W^03@7#zijC`LvxghfN0NI6r($ip3{V9&&;C_Z6!ViYM0QcmS)SuNcY
zW1{$!FqSILIKpR9j3<0f{lY1oKnV0qNc*z<rbO{&6yHQKlkI;+ogT&4QA~|unllEO
z#>PGW-3?~Yl%iQt%#PwaW|N|rLzo}MT!O^UbKu)37RW?7EleaVWa;Xji6t`0QS6Ok
zUldEDSQf=*xmcoD9>t0%Hbn7b6f2`x6~)>p*0Gk1T+Zg|DAo{UiX<yrlc=QiG=Gpb
z>2G9q6IG@+<r0>PTcg+}Yaog}EZQE$&M0JBB<-M+61gi1IsB9*^b`G`owJaS*<YgA
zAH~rqjz#fn6u;3t62*Zi4n}b}ir?u-BQmx_)bl+Pf3Vq<@jrKFMvm)v6eprM&9IYH
zsdb7Vr7{c|-Wg`)s3m(oiVL!*#q7o}M)7A9sbWYS!=)%LNAWO<M^XG0#g!=Tvewlo
zu0?S>iaSwxdWc=??<j7_e%Q;N!<$jaHD0z?;#L%LL5U+tvZ5)|Te(+40`5g|UltOB
zB`i*O9L19;Udr|^&9dcZQ9O6%>IGv`8gJ1nA$#EKDE?ts5(h7)3`sf?Uo=e&X=BI}
zL*5wD#gIOR>@mE-$P6)Ljv-47GMJ3iOw^R>Ss9Zp1{t<=CodubIbz5eL+%)4f5^q)
zr+MsNq*GCG<OMDtE6QQYROBa1Q2~OK79<pk+3TkdTP_kq(HP#bP|CtvF%*koV+@;O
zC?3PxF;tK*OkyYzL&+G*#ZX=%W4J62IEf+EG__O=Tl4Dg#!#A2CWd5!nC}tF#^55%
zIiiWF#GuBY#pF&6c12IjzI~j4!K|D5DxF^(N!}QIbo|r+HAoFn!&Hfk#N<Imc7u{)
zF`P(MM!<^Uz-CvRDlmJkR=25f_<b$SRo9S3N+p@S7^cTCBZew5RE^=27)HlXErtf?
z^%^nMjG;RDVP#F6S}`2Us=pt@2ZYJl)Y>uBiJ@~0UFg(}$<yJ{GKP9F)R&4eG>jn;
z!<rRpqZk^;&{VoBqZS^gHer08MVhy!ooyC_sH8?c<INc_zSL?J!-p|+ipg(m^0khk
zO-vrOfETUQwv7LXt@SFP%6r##F<jrM)(or3y*(Wm(~+9#8%yGI^@@}j<?b3ow;1}z
z@No>?W2m)6>m{owh8{88$fnAB<DM~GxS~%#s7jSSG4$ggn;%sB%CThfqzpAfi2?&+
z7#PC{)*2*J*V{8RhG8+tFb2mkB!+M{RZ^>l>To%hRLRqxx@BP9Q$>VF#^9~0kBVXK
z6SpMkXiN;B#_)9vQ)BiMQpUzGA%+LB;5e!{pAp8#@HycNYA3^xn2F>`)XCH-)GuTB
zDuy4lMiS$x>9HdxWt`SfwNnhD*RHxgUZ8vv!|WL5#4t040%!DD)P2`o!gFJoCxe%9
z#xOsIZ(~>z!}l>Ph~a)#V_^(Aj=8>LQ-?=tFBd9{VpuE}(K@Bp8AWvHKjzYyJl@M(
z9>a<lmPzC*m#n%$uUy5JD=T9dkSckVtT%7Ds$XcrtL5~)QUun;us((jG03x|CH){*
z;sQnBL}RV{QB~kaY3c*5Z?kfnW7rbIb2-bh>|@v_+e^;CvlzC^R?}LM8#N!6EAfK5
zgSwNti@H08Jp?KJNv^&a_QtS}&W1&bn9ZlCzr-NAKZaikzfr|GKsYGFBgm&qF@KNY
zj~I@`a5RRCG5jgZCMKWYR7s~}IPUO?7*3K;IgWgOKSMrCJr~1yLb}cR1t(@iHT4qt
zA@y<$e-W<4aF1}6dX0LW`gaWD>#8@XQvGHOx5#4NX26{o?mCVP@;=Q6RLPFbTt@U!
z43FtNar~#U=BwEUB~K?`biK^W7+%G2(8M7VuVeTphJ1tFrP8QLCQ_M@d*|*ok=jHW
z6Q7&-!bDmzP2@0<(?og`8BFB+(~#STzI>u)H1SuCKo%33Oh{HzW<ndkmX$@>sM)D+
zn5Z2KO8ipOlgmVI6NU-5i99CqnkZ<ZkhCoDwW^&g=gDp4Cl{c;NuAIuA*JsebQL!7
zwuurZVB*m>rHF~5Cf+h3MUsjU`dqWQxQXwVC;}x-G^C?Tsfpirx^8Y(N|_LS*F<ST
z858dj%9>CJE~>;No6xHS1XL3mO>rcNBfk5h<}u+l(al766Fw7u6A=?p69E%J6Co2n
z_exw^qO_m+o@;UP(q4(iuip!sXfsti(<>1(VVbZ^#7!K(=6TdBk*jxNSncF}=X~X4
zY_YO(Z|(9XDwwEfqLPW`CR&)NY@&)x<D%roCaRjKX5s^xVLH{RwM^6?)TBye{R!pY
zcUa6i<ObBb)OsfB%i#Cck>FJ;Vxp27vZxVt1kENUnldY;%?JsqRB1_QYvLn9D-$0Q
zT2tFlUA+@2Ew?k#iH>C3o9N(hM-wB51yf==o9N>BT?sY!*6CrQr-^%elu^`PCI%A3
z>20D9xv%5&BlI`%F<}68iJ4l02ayL;B|C&Llse4BaK|4(7->Sjpp&pqm>unujv;(X
z9cyBo<9}viJUOMW2_`0*SZ89riAgfZ-mb;6Fyh8!6H`olY2qsr-<X(b$~{6c)x-?B
z91fOSxTc&DHY80mF<mYh^1Rnpu2SV^?26AaG26s^6W_|&3>tH&bE#ujy2Y7iLL!?d
z8x?ye7MM7B$M{YbZ3g*`a&VzsGArGZ7Rjj67y=X0CNGie#e~4oL+Vl!qRW_FZej&N
zidGU<QCCyfm{{wS%EN<dv`GHJ#4ZyZx9S^AWQ#?9G_lddCKH=Y?2wa{FTTaZRu*kD
zG5S#4vb1+=tKu(yqHi}Lns13J6?dAbenOXk-7<T*llPd|Im9LKlZmsl)Su;|-laBu
zq-5(C-Y2c~3;$w5ZbrAC`YZJ}6Xp7a56EEh=n`;Pu6^0cEabBAhg?u2Jm*ZDCmfOE
zm7V0cag2JLdV(tENx~@;rwM1MXPr`c^4bLx7v+>Cvb<s8PZO79Cp7WO#AVt2Ogu30
z(8LuJS7rW9+>-s_itCz*za_m?gs+<@e$^##gN~STAD-K?BQ=h6D5Bpr@mUS^4r2tQ
z=$?uDCbIOiB=x$jJu>mw#1j)wS^e#Zp5dZ0HHZ6|thB-E3s#?*CjQ)n)D@V}!XsV0
zHt~;%%ocjw*ODxxvXI_F1`DYzq_OM~9++>YwIHoY7wIfa-fKvtaI?Fbj5ecXk2#ZN
zk4<7^oRZCA*+(Q@XSE=jjhdY*ehv%2HuA`5rAlrK?*-Jn7V=rhL;n3!mpJ(?6tGaj
z0&?L^3k5A~&u3k_rWTU-`49A>@>btMiwAmPDl8PC-{TK$Rfc#m3s;vldwY@^-jlC*
z3RA@#6^xW5=cuR+SgpKkp|ph+7FJp)BfVRgU}2(#vKCwxDq5&yp@Uw2;^$41EhrXL
z%YHCc$U@kHM%JkY)lKzKy;L97PYqC|dXSK&dQ!wf)IvE6-Y;D-3#NsR{R=g%k~Zr$
zmt`T#SMI0Jlf{f%n4MOYdm5LwP(h}mMY05lBhML}x87BJyI$F{zlp74p{j*y7OGqL
z$U-{{H7wM$&{~H5nLFo#NG%IZEHt$+$EUq-;R8Z#syKBl)Fs!mu=|z1w5Yp2vkfdX
zBs8Knrb_&`@jx?KGh6gdzqwmlNRXS$d7Kk(K^1tfa-fw3kLmu9Dj-f93vFd3Jjk3g
zvn~TGxG~aRCfUMJ3&UgvEOfHa&q99-oh@{+(91$^3(q#|T`hFCaHL3}NItcjg_m=a
zWt=@M3_qE<&_Ax87JkaB3dq>{@DN5<(>veL`^v=5ij@3R``AL>qPkQWWMP1uz9PD$
zfwHjEMdcP@;t#ek#KOG#>bRWQ4)2c)w=lxO7z>|T7|A2*THlbcQRGjkYLUQbncgA+
zIhGlHTw^Vavmi4gWBBp7>oX2xyoJv#$o!8>7x;p+B*8LoljKseu*kw<3sWrAKG$f0
zh4zbGU&_HgaD7GnnmScR`#_yW6_`$#LH$NfJz*AgHgyhlE_EJtzKn_>Eq~bFEsb>S
zo%l{>yLVzCwaz?kiCh9t^`(~m91!`${k>&>Fz+m11j)Jh-6d(c%z0BwV3jOjx!&U#
zAIBOCYb}h9V@w?DEP4DvVylI17V;lb)?4_2u)#w11?rC$imlW(QUx{<HdD7)a4(Ns
zo}z8HutQdC9Bty*X<?TIBMx^QyDjXoaKpk)Im;H7e5V|?@H^pW3wsG-?j!tSVL#zl
z$N$a30rElWA;*6@Hsc?%qL{s8;i!dU7S1s%Mbe<8;}%Xh@h2^ua`-gijD@p~(_^_y
z;?FaCfqIepr^M7wPHFA3g}-QCp<bn4qe{Sa*)|>a^we%yxGlSJ92w%cL;o4|F7+Pu
zKJ@`rT6k#Tk;9J(PpD6wmY-XAA?J~1Qrw<NNv|xtc53}2=iNE>RB@zcOd2OLZ5-(w
zmIKe|aIrWt#gUoWEOF#^{H%m*)a-G*;rKb?$mwvdIL6H@B*Vx<CoeT$9Qg?asGz<X
zM?pd%YGJBORLW5liK8eT$-WgwN@;P&d7Droj*@Y_6Gtg#T~6t{gwk=8A-qQ|OU+&N
z-}aN4RpL+y(u+pWWmE~DWIb_s<ERuz<v4sSic$S>1mZZGvvA5dgET|ba2ydrlqvx-
zY|~*Yj=00+2<79b;5ZctvS6yjQ8kW+(nam$YBWD^Vyeec!{M57)FQu6O_?9*u{N`H
z;;2igN3Bnl(gp-s64H1hcF~yHgxZwajGBm}IYA;@#L<%6%5grFd8=AhirU8UQ5^oM
z>WDbn5rq51(ca+>gpSls)Xs5qA#|m7qjsnEp!STTR~%o?Q)>^%(wmOld_bD*{YdE>
zN541(`cnlyCJcznW20?<5Opwh2z4k`iiX88+~GxkS<>K0srCPuItwT%j_&O*i!JWX
z1B3tx3$xQRvkUCP!tQjBb@x~g&TON>g9LYXhY%9nB}lN~5Zr@?pur)*2@qWVw=Zvh
z=R2p)bAEN}R&{mNt=id{mbJnN){(69&)aC9q<2Qp$B8jcG`?;f%Q}wrLQ~sBCnh=Z
zgA+5HSbi>g>}ShYV-qJkjX&8_Sf{d1WBs1af+1%k<K34(I&rUP;`ko=awmSG&33t^
z=`~>{!z|X>PJDS(nBzpF^VYde%wywx&MshG$hwG?d=@*g#N?$6%V-v!S*U0QO*D<w
z2kT1K!>p^ESj|B8HBS7(yq0yHX<ttVbz&oDe|6$FCw4or$%)Nu*+Ns3Dr|S+*dSr6
z6WiEW?F$DrxPy786T2A5fsB)DJNMAqPq6J}<M=J9WZcKR--!bZ2c0;?Kt(GP?es!H
zf+MEoD8n%)j+>U>oj76gNheM@ahkJdoH*yipUh{S==Fo;4<~#t)2OxcPF$eS<)Y<b
z;i3~)m@lzjW<6cRI174e4e3?3Tw|r|%ag)QCvG`W#EqhE+;-xQ6Ne=nk#N_EznxGd
zs1p96`E|lB!Xe_m6AzroEh3MIhfX|l;)4?(op?-}zY~FyiSM1*5tr+!6R(_j?Zm%M
zJaeK!H^*})UOF-NqWuMD|6?WlvhEHtwrZ6|@WzR^P7rKflD4p?<DC<vl=gIYP|NKW
z=lsM`7aQ-$DH@R(BO((6{U9DI8o%#nX3ZiZD+5`wiO6npoQNEs9Xd3jqFf@VDN1K9
z+B*p;c||N*kWfrSr927wMC4~6E+C?yXuPP1QXvtAO)es$DD#4~mj6l##YL15QBp)H
z5ms)wv<Qf(BBH8@G9t=~_=@f2M0~+ekvv<al^2cisUYG@vp<w=yW289E>|TH_8yMO
zSyRdKHM>=2pLh}EKs|ro-C+?yI_X9($|f*>`jm@m3CuP=#CP$=ASa4Q5}}AtMN|_}
zohEdPW$l&9&tKSUh>%3kr}ShIDI#i$AS0zT5w%QCWvI<sN5t1_gwH<dBAjd#P0t6u
ztS)ZN&FW$GviewMRythuaTebhdqNePpF0x}5fl*;5f<^Uh-V@+5fKr;ir6G#a93Mh
z5xqt95m8S>eHsuE4Mj8+(M&`m5o4wFsE7;^jYTvOq1R1)d(8QMU;58I^wfjtR9zQw
zsE2;DhrXz*jk3)}#PrmAa?345v=q@w#5bI6FQNlOYY}Z2+OoD|t<yh_s#EGHqAOdz
zW$naD_Rb=@Fqdv7QuaIMZmiu+pB^HpdsNy>MDd<_iqBE4r`}gYKM@l}OcK#w!~hZF
z+5g3H=RgsIh$#a7sa>S>ea`eDB0BceYl+6G4Q01sB8Hpoj}S3Z#3&J?P0LsjW0*rd
zb*e&X9A~$*c8>0;PoVIKNhO#pVhXJV5sPW$y{S`0{3zll5z{#PZ8PzE5z|EwQ2If{
z4CWi3YEgD3`%tYp46|5gizsbRAtR-^BIb!0ST}XP2)f5}f$6`Hf$slWB4VkCpGEAK
z?8_(^v{Z6lA!0c*WvSa+>}h0NDPk2xa(dco5o<(xD@xk5ina@@63F2firanZYelSM
zI~A>G*uc7x&zg*zMQkC9i1Q-0vhg5Ah=^?>Dr`*O&PuRD#7^d2B7S4o&ANx|zGQNs
zw3jXWSogCYpy^8%sOYeW1wHi>B2Mxlj)*ua;usr`i&$GQox-4Hm&D)MvZJSdyJ*@e
z5obi4<<iqM7hP@SMpKh|ApH*>y>qliswHQyn@T}`LBvH7H$~hMafz5G_nL^yBCc@u
zFA-O1H*41Tbx*xWFP)YNv3%Tlo%?fxwk%#9w?*6$@sy2sMf@$|k%-5f{fEv-NgjUO
zd5^O+!uLfyF!`Yfx($<zPiS(VHqv_OwCHTTbehfaVtS`u`g0L4XnT}UQo?_<1B=Kf
zA-{xIB3_HgCLz0oHx#SAbdNVRvxK)I-qH5OF|Z;zCq?@Q=8qz1a6U0pc*ICXkYth&
z%djI?^7PtiStMkYjJ3b0mrlB~mrjuoCn1-F+!As~$SKjM3uDPpT9Q{F%_AYNWNa@N
zdg(8F8B3#Rz&M=(5{gPFCZV8&LK3?8Q@1p2yfl(pSV9pA1eB;LY9wE8y-eM-;u4OF
zDO+-;my%Fgf?a|`0wk1?P)Wj9WNapumGFgx@)F8Pph>UXTX*-?zm)Lvr&<*y(8f|h
zLa<_5LoxkojM%ET{&Ar5YwlZu1gnI~%<&ScFjSR{P0u1>CGSWJjyow!J#W`Pu3^4(
zK?13bdrm<1L<!X-ROh-$tnG^FH6$cUa7qv*q)4bKp*HnILM;j3RBx0jVRw4^px!$5
zmL`IFl_r4}dpaL_c5nU80AmxQ4s7nNOA>q%WC<<_ly$RuB%JQ8dzl~f*2zwt9289b
z@<4j_KDu8*fQCXsD>`urAqmYTw2(0MaU=S<Ei7T^AqTy!Op_3iP**}d36!NoZ!4=W
z{qGqd4d_gn8=02I3{50N88TRPv$QEgGYQ`(8V?oGawfEyo^pFZ!nq}uU)sceBjKQg
zLlRm`Xd|Jmgmx18_R;rAXfL6IggFxCO6VxzTM45ijF!+zLT3rxCG?=tmhgC$waixQ
zcM?iu*t&AIQ`e+d#U0%!7`9podP?XeVGvD$gx(VRNa!zNfP`Zu?0qGy{Z^og{n+{6
zLIzjpqYtDRDJ)!io0ya%fwIIyXmBJ9WBc;Hxfk8H4VN%N!bomM?4w`FW23sHT8@M<
z#(ZHW7mbrJp3YsubO{qAOq4K%23*1<2^9(p)Q8FJ7SqetuT(AS?KD0F*{Sn%bh7*)
zVTOdCB#^_8e1e<aC6dFgsEuGowIn+3EN)~r`?SiR^n7aSJPGq9{3fAEAALv-`vM6o
zDDovNl(0y``7TL|C6qmATS_aGvoC50Me-*sldxPu(<*7*{<BQkClu(Kv{J$<3EL$+
zdeLyTgf$X2O88a6FEn%#)=5||f$Bc&mU!qtOSA5Y)TU?`Hqi3#p18Z3t^G9XCJEGm
z%@VdqbR&s#X7@yzpza@qtrE6LsQ;g3TbCqqpo%+aa(g81q}l17xQhm`d*a3W=|(#e
zGQG6yVckm~m_G`0x+IZhKZgo^e|3Q2*Vc*0*9qtLM2E);bb0Vm8WRaWy6}?=$0htu
zJ}&fg;e>?3Su(e9p`{BaC7hxqBjF6K1s5_;O*$*#4+-xiyq9oJ!k@I`^%ri^5J|Wo
z;X3V~_cC9(7k^R06$yVyxFq2+@xAyzFUL?KxGLcqTN<A+vZS9O^G*8=3Ee7M32sTa
zP3wZrMZ&)lo=NzdKK#?<N_avW&Sc9y2@h$^CES<rfGu==J|!x;nPH<x?vVDnX1V&@
z@{~5@MOL!3J!rW~m;BRoNO;Xv{*&-h!sI)}UeRLNVktbpQfjY-E>ovQX7thD(B@AI
z>a4YI{zhau)x-8d!bge<7s|QtNkWVZ1zpC^J(*mHbs>ujSzV}5FEz8vxObrWqguq&
zCF!X(n+the$mc?K7vfyV;R3xSxy@-Ij|(}ODVxiM+$ImIoJ6HR_qS2q{4S6da2Yos
zWMsDQFKTzKwH9)rFr@*OA};LPV4dF9T9ly}D_M%WP=dLnX({DGX=a#~GA`qppXB_7
z3*}w-+J(w|tRm%wFX=>FsOZAN;whC}_{xPn|KwT`5jIx0Pbw&+R1j7+OpSM;iVFc3
zy*Lk5U9h-N+l4wVB)DL8p_&WTT@YNbxsXJIb2x{ykr4k@nAgl{cY)O5LLx(-Z=95+
zH2oWA4HuGKsO3Vc3n?y8mFr(Lq9THtoLzXg5j9ewjg6ew_tDc_NO!^Gf|p8N5UKy%
zCi#!PYgAlw*5+c%mAj4H+`{oby3Ylf+TUM{926HmoV9)Gqf@i03v0h|`q@IpJAL$!
z3t<<Ua0{9X5f|#YP~Qb|uFFPhgbqZ`4P0pGLL(O%vz;u|)slU6>ZiT0(KvM}>Ouw|
zLU)1s)076ejp5eJ1!_cLH(FwupT@Rw;TsozALRJXh1M?PH$nR8v#kqln6oahe73Z6
zp*>k##t)+%UFgg}{4GN#)`#mYWa+}(mG#&vp_>a&V-vcw_8=oeoi{=+hF*nId%Mtw
zdBg)NdG>c<fD02{m_!{bnm})v9O%Lz7Y4g<shTj#W!%(5Fod&1T^PnNoOJ{%m5y{F
zy2MH_+J!M(Wi0D>7sk0Tw1gw!fsJ&6%ed?3>?CK8g0^R0RH36!b{X%rT<;O4xIj9U
zbsFpUE=*@2`wuS6FuB76>r5ABx$vH5(}meC%yD6d3p-tyOA|yR*;n7>!hBlD*^)QX
zbTn}+U|z_&$c4o&ETR4Ikw6Y~r3b-M&MtFdIl~IppIKM3u5w{D!y49gF8so<mi5=O
z7HVWYGr<N1YW!C|I(6Xi6Dz&2ezVJXZT%Knn+)4nx3iMHi6cw<b+%nD+@-z3h2LD*
zO>5Hy+UO|#;lf_#eJ<>0IN-ujv-F?~hnNqu9&!EeIqHL_Wj)50<FpA(wEWI`g7qZp
zDOM^v?ZO$8&$^H&u_zhOaos;%IPby*X6ngh7cMeiV$E3VAmbJ0zi3T)ZC6<duDNiX
z`3CDv)>~%jZH7Cn^-f#<ae=<jqqmm7cHy22_i62aWq;tp6NXr4+C$okooSC;c+9Z!
zPl2*eUHI39XYBJI>vPr@tY0j*P$Msy->kL1VtD<|ILaFr-nu|Q=^aC^rMW&*gwP)D
zMou?k+!)eVzudxhu9qc~8^xMBVp%h@QZ|blSxwHykexM-^`HBe1X-ka*V4Zdx!mZQ
zRmjbnhcz#2J~#5aQNWFYoF$(^4A1x23Y!+XwyKyL#i=ts4E3Re8ztTN+lzm^DCI_J
zH%7WK$_=>D+GlI#MsqjHxKY-Pa&CO#M!=1r8|B^j(v8Y)#Jf?!jf!qu=q-HhMkP1q
zm$uceB7B-{BlwE5+lM%4OsKUgZd7%{&n?qewH7x>lif&QAht3HZrDtVox$NoB14jC
zujWQ|<{GAj+NTy$+^A_<YB8j`QQM6=Zlt;K^FGTezu<Et-3_N3qUq^&Lo(ULZY@UI
zJZ@y#Zu7GJ!Zll_Z*4MhWr2>OxS@Xb=j@kHgn51SkQ-q>wfd}$?+O~jsDnbpjk<1Q
z-PNP9Jt%a(V%_`P7?1{>ZRkcLhQ@9*aU<$Rh8wyYk-ySw29s&kh)->uXQwu0AF598
z(`n&GOE)^W(b0`oZhXTBYDdb@#*MaaZ0oDjAr7|_NXN`Hv^|#|ENUbE){RbXbaSIS
z8#}wvg@HauP${LZZoHXc`_7F8<%Ne0v-WVKryB#@80g03vJP_S#s0nB=;KCTH(u;Y
z>*t2`ra*~CgS5XJcgi~m2C?UbcE(u@roeOKQ)S!g-NH~ehPm;_J9}@pFx-tnM{QfS
zT1L1*nmxAIXg9{VG0lzd-5Be}I5#F!wu)sux3+1xFwu<(%+wj0S+Y!WgS7Dz<2v3c
zZjerOqe{z~1oU_9MrZqUH-2zqh8sW9ba-*ii=W(>NrUM@D-UM5G24x2ZajBmjvI5`
zSmMS~GH%O4X&wbLjfNX^$L_)j!eTcTy7Bup<L>fBG+ANeSrBoTgn4NWayVVdvCNI-
zZmghia$~O>``lRR#wxdQPu#L>ajV@}<HmN1qW#7rWqxsEy&D_2bgdif7|4G8igA<s
zMmM&y<yY2CpG#S{d}ey@%=PTsn4M=bU)^Ef!Mu}om+AAH8@rkJn3l?iV)whT_*AAV
zZv5rO0XGhE(IGcZxpCT!!=~pEH;$To%#Gu8?wmd0#z}?-W&Zbkn>x#_XV`My^gm0p
z%zTdZPtzVeWIQO~0%tF}af#uwSvt2}>{aFk^BhmzxaP)nH*T=yE^S#1H(777-e$ey
z#-!-~?)v}7jfZTcqug`jzR3^VC{o{euJR+cJT~o5+=#nw+?lBTZ2gy_B0Y)Vg&Y5|
zLlX~Py77wEzQ>rv*R(*~NM(NO#yi>}J@~?d_ilV}<54499uGcp#Z2t;$vjF7XAf$b
zVm-+0K^D$t^&p!ESw|Stot-TNIX#GD&S6^0UyaGdoZGaV-jOA*2l+Ug--7}k6lDG`
zTU;Rz3VTq>^en<q+=HSF#Z3F@HpVQJ;A~0O-0h6PDeVC`TZXkPE7@z5N-FQcmmZ8Q
zZBO=~f(I2nuy~N*K_&L7!uplz|20Ep)_7L!@3^WA=kgfmYh_MkrL4eUW3{t7So>v<
zOJX3OY93T)u3=h2ZH==?;cQJ0YMJ)m<KogwC)M`g{3Tl*57InH_rPhEdKg4jiPgpG
z_TVlz=;bW6?DIfoR!qynCAs|`1U$Hoq@V{OwiDCT-<V|!d!Ts`VPjnn8Zp!}>(*yz
z;Gr8ujaZ_zVpo>NCU0nwiT02vg~tI$hR28{-GioF+RXH6&d`Fj-Ky;0c+lDduNOWq
z+IY~`gFAEz9<=kIy$2ILnB+kRcJAy!7Y{lzf6Lm5^+T>&)QzspgFG0_@EvP654wBM
z!-Jlj?aSJWwKr=YR^vn-8ne)kv;937z%bA(oixYsexYNC2SeGicZdDnP~*u$!#o)7
z!3Z{vq_{HuM=^|M9m5(L9y^X<JnIBjY9X+s)MO8)c(BexAN!3Vol5gE%dx_PX&!vf
zmgyeM_F#?&KX7)2S@%Z|eqx?!T4pgc+~=5US{5<PW1a880@J>bVRDYR#SBY4Sjy0S
zj<KsR^I*B@8QVYRXOmYltny&BX<6gJFD9>L*cF#)g9jTuIMgrZI9q<@NZ87}>9ey3
zTRuZ~%hQ6%+dSCr!4400vhg76E)VuH{KmSQbq_1`Fy>I~KIZ+b2TXfESN20DA7(hh
zdX)8;2Q7{n6Zg9ZCp<Xm!6^?eoBpRh#+~-yj0a~;%Xts}U_QtCr)j5iyuf^s^^$2H
zRx0)i^IslZ^<eRpm}?%~G)u30aKq$<*R$VZzHM5{e^vBv5B{NT(2GJ|+@mFb(1^)r
z9^7Z22docSAF)1WeZu;b^<P%1HTY2G=N`P^?0+77@*u`*MAu6XUYS0xJ$U26TMyo`
z<pb+`vy{G={b+JbpX`~qI<=6SA=Zn`US#niD`(@((rjL2H~IDX>^YconwDG)HOnOB
zVaUsxk2OClwO@dtaE)Ary(r>EbuVgoF=@7=s23GXpJHAV_o4)6OL|e(w3qUtG&4*~
z887A)HTLRqZ25w<yjl7s_5X+eJ;$;l8!LJ7l^0)oQQ3=lFC1*FV)`dARQ1AQT4Hj>
zS-lXvu$dM+!=yiQT+MELvP$&A)60^?#%iWdcuA>bFH*eNbjA{3x0+tmp);LrtiD?8
zmg+@q)1N-=kUh<dbT6E26scLWRAO*>;WjPf_`|@Ahq1C3iWi-{=<J2+g`f6VFWPz$
z@FM7?e^H^4rAnqF^Nr(%xIZ~hS|Z$z&RUnXo)`5QXi+!tqM;X!IGe%Rn3Y;+!VvW$
zhW`eUC0N+r)Qe_bH0L5`v83_`jAOO%q9t2ev3|qanw3fqW{Yd*MSCwOggSWfcDONv
zYj<U#es*M^Z&}Z6HJ%69#fz?9Z17^E7vFi&&5MZ?FkW=`qK6lQXq-P8PaEs$#qr`v
z1Gr)@FM2cdVeQM>kF`H5`B!UKocsrRkz68)V6YcMxM-*sBfJ>NJj{#XrhiKATBDf9
zu#RRu$)AhHGLK^&&pLs1?0Mre+hk^f4cD_z@nWhM)4cfJi^X0n@nX6cKd{3*))}m`
zSbt>wiFKwI?RYe(o!M-e<HcMrrtn1k_SSgZ^n5QCa1rrBhDEIO`GhP>y;$i*ruIgp
zE%Rcz7dzV-yuyp0&06nU8lJ1XSnb6cHvYo8&Wp9CPu)+(^S;)5aW%;}J4(NLvCE6!
zyePWUzUi|Y>lQDzGHf&JZfDp*hc+!k+r{o?-s{CaFZOsrF;L}E4(AD@<^5iq=h6dS
z9Q5Ll7l*w#ZPq>F#qTB`_2L-wannL)eZu6EUYs)dUO4WI$!ERz!{l=ee|nM7mY)L6
z*^8`~STD0uudXosMH>h|`s_M&vaf#Ai(6jYV5VPH>I}$v+iUz3Qs?_5D!t>ylRb7y
zcNtPwSnqjp--`l16!hVN7Z1I7@5KlDn55Z;RJJvrXnEwtV{$H+_{58+Ui|x+%O$>I
zc*gqNix*z}=fz7JivO(2LI)|O0dcn1rvDpSU(D}V=`k$S=0~bnIFT-3n_OM^M4>3#
zVtj^X@*&oT%s#yAWy#N$EIyoZCsNAFkc~CF4{;1RSaY)GV$IE($A`3wmb^aX<1DpI
zi5elDv)ob0hr&MieF*qa#D}6jr1((Nhhjby_rdCeK;QrPkgK1gtdHKEB$Q+><->tk
z2N_E<z=wbPI?8Yny#=Ejdw$_Vc^|&?p@I*U*z)}+E44tWq7NO0WheN`hp)M)vJX`m
z;#sMvis@r9EeSq!=2|u%-3W#rTdm1HI2aOr5RVGpvW|SOEq}IlB>6yE&4=m?HCSy2
zjUuY0Z55VR)NA=r+lM+nr20VF3&ZH!NL!lE_#T^*$A>26gmlh2sc|19A6!0ky;1p9
zy)14YZa=S#*O`)@RVIs<-KtEn_<SIheNY(aM<SKs`kSO6&ERs|Kp$wLLq3Fk(0qva
z(87n7KGgN0o(~DtZBZZU`_O=D`D{&mXy`-qw<x8?J~U!}ur8Id+n!rV$%nET6aaHA
zx(`i#Xhs3NF10yZ$Vg0ypcOaR!H14M3|WxyjgP*#LmTF{KD6VO?|igSQG1iA{cpKe
z4<CB^P^wX(PBi{(A@0J^)rapGy0La=RU-*MKFZX~hu%K)_kr%4pwx%PIX0dKt*;OL
z*m$G9ed~?NZw}QO-~)YQIW&KK<7Zi3^wkIXKsuOaf0vzLm=D8!IPSymK8)~Tqz|)v
znC-(TA4dD|y${oU7~@0MiUR#YM-PV?>qC0>gmFHM_u*}sMiYFP#1=A6WFX^YhAFI5
zS*Mvr<aVxZV+w#DeE4aVWrhzw`fzWq<0l_xG7#6^@7Oa!AeiIBTpxD%@S6|wD2ndI
zZ=yY<pMLjbbiNOy3s@KWu!v@#c?r4su)>F>oL$CBo^;ph&veRrtgBd8veMVEWLeF;
zhV>WLwXEw{*Rzt_28NBSzp@V6ENrIr+fU!Zx|MaC58Hj%(K&I44_Q)$MFgD_clt0e
z;2_xT!>Vz@nt`?>KJ4*fuMe*VTj)ns(tXVPSr4!t^x+W0VOHubxy=}FIqC!HG1^bw
z7}*m(oTO-%5s`7qhtodX@ZqKpM~mD0eJz}!Q9Yh^)`vfQI7jQ$hi)@0S6I)p`ugc)
zx!}V^+E212Tw*1-%wXJjKEv{t4_Dcl_?i#bO{RVI76nOf%Y9lGw9(lTZ?oQ^VP_!A
z-xPi(-}7PWLn|2{`mk-GH9>||#v>mdbM}c3m1V>Jl(svzJY#+CL!pzlK+RMtdf~%=
zv}4nN`0$!`Q5nT$yzzm46v!rH@_Nf#=6624_u&KiEVDh`Wr>yX(TBfWj!!;3YGsR&
zkx548o|e!IfhztIo19q&xlzi(ko9vnc3HA>n{hI7$jHe|hbSZ?myFyp^2o?5qX66K
z+S+_F@^i%_D~+$Xb4mg^r{@<6%J}oGg?5R;W(!3ain25Ll#r3J+WG}&OEQ;|aqOM7
zG&5veU1TjIgC6EqRz^7)0|#5^;*-ER3qg6V^(AWs){3l^Sih3-H3QuP_*`(%0LF8+
z3TstXGFoKgMhOBzhD|osqa?%5P@UDmO7=vCB-U!Iw6e%vLq;-ZQ)JMOfRt)7)RK|P
zP@A<5YZ@#0q|0!cEHY4#ySN={)6L+K;WaHj23dx}ptAZ|1FTdlC?jNYSjOk>)s<0C
zrt8p9Q9*qf4P>m7v0g?)88s@{n#yP<qY-ms))MU;O=Lu65M;0t=rSs8un;tt(L%;p
z8RKNMl+j8?9~pgRd?TYZO_PjnGTO*!E2FE7@=da|>ZkYFVQ)unJM8Uc49=3$K}JUz
z-!gY$?Zn!d_1)G|<nvhv_0wO>N$4)4hm4*wddavIO`&$^$(&7ZMVIx{_rHqv=9W+O
z)5|qU=_jMVj3F|H${0YQB4ZG>Dbu^CQbuM?DH)sbcR&4kKRsuEy>WqzOgp2)WDJ)v
zTE-Y|<jBnE53iylWQ>&YDK#ZqgOpL!RHhW-qj4#FreshfrTgpSWlWIqlZ=@%Cd!y3
zW15WbDXL{mkujB<s?}d_(5ia>MbTh?y={MeTz`GKj2~pokny981^x9v>4XZ+GK?`<
z5*?E*WpjW1NUoGwGG@zIDr1?9IWp#wr;LR%e($euSs#5hJ7FI8XFd&JmXurl^+hzB
zt*TQIwX>K;>3wtw>-+wCfdTq*87pM0k?{*fI8EOGeI@x1(9;L#k9S5J)k;}K^EE(U
z%{qTpbjQ}{@B#Xq0s2}Qdg0`gyHhsE*eK&m1$#T$ewDFF#x)t&Wo(wQMaE$nM`UcJ
zbtGfAj6E{8(@@LUCF3_4^ah$<r4#6&J1N)(=)VupZx7JhWlniNK=1HVbT5z6J{kLE
zXosU8)<@|Y@)85}12U=()DOytSrnyoh(R8xAEiA(#yQ$dWE`gfk#R=GSs9nJ8S!v}
zjy@&hB*o<W=qXl$(+uqg8V4nxKWLT*>T?F_I|u6LWn7T)7ws)FF3PyXovAQLzbxYl
z?WhCw0)zCE1NGYj4ZXM`Iwd7V7-T#)Hmqmdkm;GL$f_Wlf?G0f%lJ>mOBr`$+@)14
z<2kqXw~SIHGVaUxht?zc9I#)Xokr>%q(6}Hkam6wmA6q!|H^pG{Dg*mkp7f;@F1Ov
zrm(IXq#qfi-yEdBknw(yPC@ue#%mdGWxS(F$&!(Ku>SR6{f&$|gZ1vSqS|2nJ?;52
zrVrLT4Awu;cAb%Op;pQ#8cYS56s#PqQ_7+smN_$P@rEg6JitZS6~rkhsGyL79132?
zm&&Oimx4)i5@;lE4%Txk=#?X-*bx2WU_Fn5yb1^?<zvXtT7dQP<tl|06j4w@K}iKg
z6?{2FPikmHew`tDF$KjH5Kw9|L@%Y_T%(jS3O#csT3P`Vd^g0{Jq~Bipw&@UK{*9q
zDD>F*ltXu-<rS>BA0_yleLFHYMd^qkdL_kp_~DVq#@B;iDOhzqX7dtDyn-qUc8$hw
zqfu3XMZxWkxYH2{3akp;QFx*d6xbA;)^J9HU4cWvh5$AOkf<PuraOS_0aQ~^UBOZn
z%T&}*us|1{D|n$GnK?y4O$D_Sq$-%JV4i~7bao2bE9jsgO+mVXx(ezka4HZLC<;^s
z3A>__0vB~d!B$<oSH<B`;8hSaRPXpaI(vw|Zis$#i0)HBDzn}mqWcvD6le+}3WC(t
zpQ53mdWeQ@sGdAjFSt1xrWxEEZ9h~WFjS{e9nq@#{Gob%1q~GF3YyX=DQKjiiGrwt
zvsW`V4%O#mO=+y)_o4dAl~HAVw8OrX3>uTA(UpZWXw5cL&|E=l1#J|xP>lWj8w#gk
z`h%f*O9ca-M_VcQD`yHpv0=J>m@W>}>krf0DtOi+qaAg1uugjpt-+28zEv<v!Dt1Y
z6m(WFNWowQT@-Xx&|N_fns;u0<S^aUGNT(Ahv}5)h&>fN31{?C(3ggHnBI%EH;vmc
z{lqZ+#xVWWFufn0W2@@M_Dj7oc_0mGMhY2+C>W|>go2R@Jv9Zjd2<*}ahN?NyePVM
zN0hdsmY<@PV^gX>G4|Cl3dSn<LBR|K;}ncnP&klfx`GJ`@(tGuyo=H<H<6Zxf@;Hc
z?{IxGo!xMKih`<{Q>L;`W1T)+|DGm&m`?UhbE2zrr~IhkCk3+=%%MnblrmGn>ft)Q
zW{LhB%;M9Jdmi00T)#71KXNllou9AZc&+%=3f54t(JADLU&y+Mm9mQ&mQZ{$EMr}6
zmab6nv&kzNRw;OuBP&(>MKQio{)2Tb>pBJNDX0`|RB((fzbe?I;Glv-lvS{Wjr(Zi
z8FsO5W2L6HE7)Q3P73~%Qq=R`Ov`QsdzkmKelFc_mL8xH&SE@NpAr=vX8RGd^r(V&
z_l?ryZ26t_gjsr0!6}nZD>%a=c9!+?QO<Gcp9;<^xS-&oLQm{B&i#^t%MAapUSYjK
z@ytLDR~1}izRp@+``>qBH#vKY_7l_dj)J?)fAb(;-<z36m|D2U#`_8$Fg#@ae3j{A
zX7YK$@RapmS~v`oCl{ll{}jBWsHiNQ*(toDJ(;!<74=oTQSg@b5EWJx?-abJ(Nj@G
z#RuAcX&YCOL&YZrpRS}Ish5~dMT`o%{38=<ENf;~GG<Ycm3dZjDrM=ahU_ZZzp<3g
zos^T>>?7n>kw--?6|Yj0<sykgYbU>{ot#%ieia2&bb2S`V~z9>BVuwv6({f7%FMGA
zQt4i#WJ+{}Mo|^TRFqTkg^J=TN~kEU(vtv_ORBixN-srSjZONPY$slFC0%%Dhl(;P
za;GOxI+|Ek#kJy&?gMNOcM9cIe5s;}ii0&0@AkLR)m9Z$j6Y|qsG^bzy8PoS6_xp1
zLKB6r31+7f)ZcH3SMgu|1iDzLs)`29Qwc08=;{;#L4{34Kt)i6U4=u1M}?QN<%L8Q
zsVZKyvn8phrlLA+{wiv!#uZA*<kl!FL5hkA6UFcH+Y(zE*SgRJJhfEN)h{=;*=nn(
zqasa3x(b(yMk|eLZ=5Pb6%y6@+uCu4Kx6f~W-?7~k$Y(uV0Wun)XumJ#-~E&1Nl`P
z%9XU}r&L8n+jn+Ks*1JigsfR?x0E#U{HLUyG{nw@+S$S?G-fhJRMb`JjaNp;=Do8w
zP|;Aua1|q{Gb$RZ=&quNiY6+eD%w!{Dqs;ZRJ5YgoSK_hSJ6~OGZlaBwl!DLLPbmJ
z|5Mwaql8FAxT>etY@T}kmaSB`v~Oq<E8AMDn3&JD<7#?43L$Q-EB(>TDs-T^P*EzA
zX!+#qsN!1+7%u%dT;CK(CI>3&qGEO+nczDv>c-lO?(?w-JyrBlF^tcv#$V~ZRrFQS
zPemUUB}eFV8BcACy}yb9Dh8{@#XoeB&&n4y2CC?pS*Y``Fi1tVX6fzi#>GEFR17tJ
z{;8LEp}auGkt#;1n4@B@iqRApDyFOWfd=Yh!`P;YV^xf!Frz6`F<HeFT77!zL=}@L
zHtwg357H^SIg@>H8T(Wf74tjZ{$l%HrR&^m(`Xn+=#56`-qPu0oT1`J6|Z;O=&~+r
zt>mBRbdpnNsd#zKHj|Z_nyu2iAX6zl&gYn?V!n!QM-vy)5~wMz7$PiC>C1dOJtV)!
z2z`+X^|-KDH7;8sSVG+!q4(@1ELX8Yh2M{WA3v*DNkimEDL+=JSgqojisvfUsQ882
zR6&8aR>eA6vno!}%sxmb%X$?XRBTl7D?1$EVWdIcq+&B2PQ_Lgzp2=*VjJy0H-+sg
z-Oz;k)$Hk6Y;;Z9PB!MKpGdrm7VHxtZ@{*Pjr&;lvR)r)p}LgzbC!btAcZ=u9Ti7Z
z(A4~{;wZy06<-O7WGOemcAPCGI*XL0bb=0jE9?H9mebT#73Wo4P;r*KO)W3^G3gKX
zKgaqfE1e)!yr|-mimNKf=Q7*L_?L<+|DPvW$eH4e^g6eBL&Z(5a*MWtztSJ5xJ|L7
z;x0$jJ&Jj|?QiCPSSb`K!0uD8dJ6{k79Og2#C0F5cuGNa+CuF-VGG62zqEnZNF)pG
z9xrIiq7Bw>%+X8QdsTd-CC1&Lh4z|)P{mtbbnjSc4aOC)y=Nwe4>V{`Z3HoXEFYm~
z^&^`fnV4f)GqYx4r9+TUc0c0$$n8fSKXMQkuw__{7IJbQa<P&p86Q`-)2htN7TOK+
z`H|mbawzCWA<h=2M%>0<t|ER^Eo3jsT8y<gYYEov<ppZ6v>))p!xhW;QPz(t%;i|W
z@S{9KO=~JO_@y5Y=B8F+O9ek@kyiBMk6Jb=%68ZCl^<Vo(d*tqWk2FgrqZf@Sp2v-
zSV-`r4%@AM2!7c7u=`P+n|1h+$WV=yBAJer<Ody^fD(mn4L_3oNMQ%E)TUDAT7Kj2
zY$_|+iAe)DY-!xRbU&O7q8~0lhR+wN&ywHRMhM(|B4qr$487bvAFJ%gn|etKtIA5}
z67(bF#{@qn`VnTg7Jjt!L-QlzM_oVav9Y-y^%<J7Ht?gNA9QhSBR`t3rLiBgFWM+k
zn^Cr8u<ESaO5662(5a}IAJh~9CHm9Z%8zgS=;cRmHn#Soy&oNz+xS6$2iyA5&W|J0
zZFD6kX-7Z4rD5^Yje$n#>X)`^W79h^6Le)Ddk;UpWA4V<ot2JAMR~3!_N3svnz($V
zrH>zd{TR)M>&HIBXgvMs&kh6p7|1ZlkHLNnVWw+n>8~e!au~{4YKN|~&EGv~gdd}5
z#v{T=KX$^NGvuUW(dP~7vvH<=jOF&nQB3Bsk7uSLS{IZ2nC!<vKMwgZ#gC~}-H%;<
zO!MP=Ki2s13r*1A+|&J7;KxEge(+<4A3yr>lOJ>Z_-}))aB|{IKfNY9ah92#&Dry%
zZH)&QrE~q5=f`|D(zT{!r*%Zv;x6)Ig&$*bB#_TyE?wfsQa_f_AV0Sp@(at^NTru<
z2tS*=lKu)XuV$s880)pK^<$kM8~oTvficIno`;lxj&dMJ!mo5*FKt`>*yhJ3=FO~I
zSm|P8D&5Xi=vX^wBo7+lv9gA7+~54z%|(0t*uy|~4pM3U$(BDRS_t;}vEPriKU*jr
zpxtS^jo>iF42^~#Fa0>`$1y*y`f<&V<9__kja;C0y4_Z^b~2?Cew_5<lpm+5$d5n$
z7_i1lA1pU7wVb7e=Epfd=mS!N{QvW(ip1yrpt{zH0)5uH=*K0$@uBOo-}qB|#gDf~
z5-Ix^`M4bfHzoUZKOXw=h}~|`?%~HRKW_VRhZ^_eo*#F)!M}M~QOnx~TWSt4j(DH#
z5B#A1P?kQ56NKIgkNtS!$G?6&^W!P|&}g(+Y7E`g5jp`K*Z<D`oX__K#f*}y^buZh
zmVDYw%ki2v0a|fyEN}g&6(eN|;GG}j^WKjSeth)flOHhw&=JXaimTIH(^i(Jwm@q?
zHh|0lV-v^{fPHeVtO3xcYifDyJ0UKB908OI;EMpZorvZPpcDgft^jfekSBn=Y{?%$
z0fv066Uy2P22dz~BAhMEsx{6<6^9+PEMH>t_OTQVzzv~T0L25KETs|wlw`Kuvv#Vd
zm*!evEyGIH%LZ`LB@mPk;7c}!SSzq5u~rPAQUG5ue@)-sFjQuZXRX3YjZ_W5Vsb(N
zR+EJQY$n?Sa4`ROrYcpTR3NudEr9B5tihTRKr%yCi;Wy=22d-2RJJ$+5E*I*P=_In
zmE6)9nqRa@0ra;E-T-_7xR}Z44#2}qo>VHES$_ZuS5#T4=(9s00I~!Fpt@uU2cWS-
zB!J!l^a-GD0QCZ>A3%cuS_jaEMk&qOFn~r>F_KV2u}{69nJkS1Xu=jUMgz!T)=f*(
z0Gcs3XKi8HTQam_{U(6dw=7h>Z2+HS`*#5(SX0_Dw`c7TK*s>S4WLs1J-L+JItS1#
zfbQ(jg|%w{RF{gV`sa2?d$8rRu@~1R3pw-+pkDwJ1DHgEM(zKT`9~pke6Tc~(SQK`
z{z%^?+6M(NIDjF{lpPbm&;W)7Fq|zTP5X!ddOgfU4x>!VXwyQ*v1}X{z<7oU6o>g@
z$xc-|Kg={afS&`XD#T6+U@DKsv;gMkP56=d`v9ghP_KTVuM=k{%m|=E9^>L1^7$!%
zne04^b#?%A0+`FZn3a6yeFoMA0W37_ix|9hGn3Df0G4ug8S8S>X9WXwawQ*n6|LDc
z>uT0DtiQ05acuzWnAfuoxRQm8zXq_0hB^#u7@GswLhCmOPY_!v%mSz!M0^n21K1J3
zp8=ewg<RILlg>9b`Huj01@IdMu+6?ZfD;URSogB-W8KesfR#KCG8|$(%z7k%qYTGb
z$>%u3?=(vH;wek%WB{kwc$)PL>seMR9X3li7r>2`siADSNiPI&F@S#pxEH{s04~$i
z6iB!lz!mau=J<<s&9AA%6kw#+0=OPPdPRZUDBWQHo2<72xE;V9=DPv>9YB@bhTEA7
z7D`z%g!>dNS>t1Z$P~l_+G7KF6u{#EUeRI+;7I^a19-tc<n}MabJl0Hc(cTik<#)k
zG5?u9FBuxfXM1B>J_YcWHh<2(58%UR2d?`ufQDIOPE{-R|JsQSqIP8=a}ZgAnAgNX
z{PiG9)*x~Rktc|3L1d>19U;)`tKN;!<ATT$1VK*LT&#5m+Bz?=<_#iW5aojSB8dD!
z6bPbJ5T%1C7(}&Rwjx0k4WbZp;UM~L5VCX<7T2&-Q^kTP9z=;CmTWc-LB^6n%zP<)
zx6Cs1fTh%S3xe2{$5tkYvJ7;r%v-IWZsqtZYNOIeGt<ilQ85UqxlsFq^-Jzjg&;Px
zw&lxVs}#gnK}?Pj&J}X}R@?D)5Vuzf<hk?Tm?}Zog0KfM@S&wDxy2?}SQCP<1|cvH
z*yHH@KxpK%ziE~1pn(d4o`y}o0VM`Onnb6=P(6qm49P*%VxZELAZnUiVx<1>=Ip6K
zoS2<PML#^OTqg+9G}iPWnn&WDLA<C?Tci^S(yRC4U91GN+S<KA_=4yYMBgCfAe12L
z1yMhUI(?GWAc8^AH_v{~23X0SFj5Z%LC--Avl3`QM1rUr#NEq9DNAX=r=0Z0fd)Y|
z4Wb#1Z2?EaAQ~|cH)d!OM3f<eRX0nkh(gn|mgYgUru5uO+=ALUYiY^aiuD`Tt(oH5
z1kpB#cI?@kwS5pBg6PQHi}hPpYN``M=ODT;bT#eY1<{SUJ8KWto@Oa6{3#FPsd}GV
zNu>RP=pRIt5UPeSAc(c$<S7*4M{EOwnDd=&P!NL|#?-M631Vmv!#F#VbvWyYAOf^Y
z#3hi9qPiIZrO`o*F?nnd<Cw>@PGFtLI*D~MYtH#OsN&QhrUmhR5YvNr8N@4^_aJ7_
zJ{iQ0Abt$ury$k^v7RD7h*?4WLVc$8Uq%-sB`YKK+0>;V=F$ocVm`G~I$<@%%t(Df
z5G#V9-vuZw3}R6bi)kIPWf|*IR`Mr@<)-K7?9V~0WXmekPR?sgZl0Xhd!#;oq~7Fx
zbk0b9Ll7H-_%(=46o)(PTed_uj?_<&)Hh{Lc{Nhs{Mkr<0%#$R(yNZrNw+ckM(H~#
zW`Z~z#E~F=3u1Q=`-0dXG=AW#SUO=(5cFH~-XI!}(gRDPq^(Ek14roxg2u~9XOGek
z(pny+AL2t;^Jg3l;#d%mf_NOn@gRO@`wd!IL7b%J_9#lf?3^NFYzn0dL7Wca3}?><
z@uzA3gW+5dl^Rw5?0G(je+pTMF9vamOE0rt4dM#JU##SC>`Jw3CSPZ;<V(95#4Xxe
zIQx%TdWY5;^WUs-8Pz@?>mFzC)BbOIKBN;FrBmq$U3?P6GqUfn|1(N|8pQj}(SKPf
z`<%9jATp2E{|ll>YzqC9Pki}R^mPz#X!{Kze+X}B1EgI#gq$I~58^`*F(G6Mp>h3`
z7oVaZX<Htx3#0W<L3l^&%}498A!H8W?r1%G2;E2PSwdJhT0b#b&&pY{WD8;XXq_M~
zWc+x2Grm;mDy4FTkUNAtA><{^m62(TUT};~KlycDlTJO4A7lJNS0IFfA(RZER0xGa
zC>%oZ5K4rQK1Sbk*Z4uLNC-tkC>8?!kWD{lHyUI7qTP9nPCs{!7^Bm%N{4_DDuz%g
zgfb!2ej9CB+W6hMYzXB-_#%YzA>*oyFIg#^h@TY8Ag#cbIo#k^R6Qjnf5)V+L#P}=
za^<RY#YKDw%NAJWTvh4Ayd{JLYCnt@nc{2zZMB9_H-vg22z121t+o*CA%yl=9i$<&
zE$B$(Y*Gl-La5G6rD-9I&XH7u9ERGGLr7t$$x4=5A*3?bHZ64+j&BpFZh8pL5X2B9
zvo$#c7qgqy!|F9leIYdZ!A2Dowy3Or)_~~~3?auDqw#PEbbGi)hb!n9kS!q+!jSUz
zJH_pEYV||d&*#`6goe~61xW}iLs%6;lMuddXYCO}&k&*^WQ6c(h()KlyJ+hkLQ~E*
z3!!-kEtuPe(2k*H2(1{tVQtMyb=!onWsFWhsXZGzhtR<+?HIzhCU**<!8n23x|o)(
zA$(_YH;S2;Rw{ib3%)Z#uMm2NFfN4gA@reP?<5Wl(X|jlU*>+S{aFXF4rCp~I+&HJ
z3<+WOZVSOMt~;ES8W};6$vld6H0v0%bS#C?YNH$ThFK<r@IweQLi9_tWg_b&*2y7E
zVIccdhG{ggre(S@CN?Uf^y6nE>rbpRLzu-d`*YDS%bXDAn!N6K9Mzi7*#)c%Ls%5T
zV&)|wEN58CN}kJj+&&*`MF>Be_76pEt3y~5!q@GrTSLflUic-1pRNh@t0%9e^?prQ
z7ee+K7E0?w*kJO;5PoIe#JbtEZ(&%w#<nel?KG#^ZB2{YBhQ2#A?yrc)Oj1FT_OBt
z@@|GbA?#(?XWA#v%XA=wgCQIW;cy6XVdMzoNC-zmxE{id5RQd#JY-zx_-6>e)1q!K
zOz36Hvs@rJ!P%3nr&v$3o?$)9`UmSdn#zI>szU9Y=hiN;UJT(91KBS#Tw(nygsZ0g
zS_mJeTgc&N2)AgbrECbdY0+)5Jtr<|yA#6NA1svahVXX?|AcVQv^-|GAHoCE@-T!)
z%%$RORON|je;UHSCO-?|TsDD9=^D!yG&Qt0{wTa;eZ~5k^$qJ=R&sbp`_dGF;3MtB
z@wQL2-zL~@*B0o>r35iyBbzCVScc53WXTdnR+F=Zk)4^=9TnvaBUcy&!YCL<?lAI%
zkvEKdVGP-Ap*Gu>6Rd3<^f*cyhdZ@|{9$y??<9zSXeks%+nlz-VeIW?(*_B(>k37}
zC>jO<rD9<eXD-27(zKTfqck&2OTSC@A(d@q>4=qW<ygO9Eg#00VdJ5ilq!T#(d0^D
zeD#@GE3?L%rBxWJvRYWFSs@Ht7<Dz&qw9adaD)+~A(Mv0Fp|RP7Do3ls)bRVe8Q*~
zHa>pW2&2|Zdn$7>YYJ;k)>^E8jL~be8+q0VBXMCuS{UhJIKvP*E3-<hRO$-DZL%i}
zFSC!8-VsI)idm|L;Ws%DMvytg8fMj4Bdl908+FrGTkD6>FpNfFGzf#T-9HGVjl*aX
zM*A>2gb@v+@g1Rg7%jrcpvh|M&{>;?vGSfksaY7ARvXYVj8-(iVR{8jD&1f3O&E{H
z=&h+&z9h=Fp)R#`bm`_G?eLeST^I>p)LQS%-Z6~7+BrJ&Q7U$Fd>clmFhac@C%&ph
z+J$=C*3p%f;5&xyzvt?~gE=saK{W6496c!;MsMamtjAAT`ZDwjgD%%6pZ=U35H>Dv
zrfkzXj=^D!3S%_c!`Rh2btvmF*5RyV91(^qA!TG3S6ZhQX`4DGjIm){2;*WH<H8sp
z#;Pz@hcO|HiD7!<6=sqOX_La38pgCR>eon`9LBwWb5Eh+3Z?HokhsN>_I((Z=e2$a
zV|o~rJ-pR0&In_Fk+dJF<x;g~m9CX*tUfD@*<maUqg_u&<+1u4nxp&H`C-hZF6Bv_
z7Y3#C+0&`$8%NrLFm`uLT>YlTqA(VRu_TP8Vf-96p69tNjO7$#g&VD)x)<%geCNng
zLQ;A-s9CjRb#hoq!x&6W(o)xi@k<zo!Z;kJf0wW>jD2C0$!}X9#)dF<gt0S>jbZ#s
z-}z9_!x(VivSO-bQy7zuS}CPuI5KsrzBP<(6cU}PQ`+{l*7h*$(=5d8p4RFzGHn<2
zGmJf9{1&D+h^5^<YCZA5(&MOgsqX0B-?o>!tvkrA{#48UFb+_Et_akDgEa4X69|rk
zaWsrmVVn-*SQsO7r2kG^)4bHi^HPt~Vw`GG?&dxb#!2ex{W!`Nj!V~-<TGKMrJ<m4
z8><hjA^brtpGrL!M(Yb!%F^qNm%g>14`VX@omwoC|D`Z4hw%?h9L+n$C$02$j$72`
zV&Q5SuiH4%H(0K5_B!hgRw}*8kl5UryQSkc?TsxRcfz<!bNbFg{5M;^J7>Kg#sg|6
zj5lFC45Q`)%hNFarS(EFbJ8+B!|^yw&-fCagmL1&Wyt!}4!YwRkM?ugcKX|j%#Wjy
ze-XxiY$Sfk@G6WRFO8ytIqYx4_`uOc{4R|5Gz&G7iHldPMZxwlj89xjyy4sGu^KXK
zkTke7(2b&5G^A?AYud7E$fhB?hByshYpARthlZBj<BDo1MxGjSX~?Z1kA?yo3Tnu!
z;nfvOezNy-<kRreeS7C^j;xhzl%<=t3bCEI2t#4kSKAyzHWnjeajsiRLus~`U@fVk
z);8njFG^s`mm11wD9c=qwLI$=8a^K==(5v&VHGq~)KE#oi!D~F`xV2t4bo?%8J&sO
za3j`HMMG5$<6;uXV$qPG!9m-*1}iuCy&ZN90yDK~W1xr5(amUozKu)LP)$RMhMF3x
zYpC%qt_Js?O8ajtMuU({*=>%zqta?|#ZnE@r;o8vXFkL_YHP-8AM3EDv8J;+Sw&WI
zh|eBR@Aam~9=bJnG<Y?P{KXQ~@Mr%-0-pw%EyN0g%Iaqgu&(=HCFc-V32V?a{JKb>
z6w%N&tC(F$uCJkihISg-YiOvUk%l%@q#57g(8t=w8k%V6mNPl3p_PVjG-PPdH6*>Y
zkdabT4Tt`=G}F*rLkkKFcBa>k(>+Zq3nh?4kD@XC3dOY6jIX(Vt{YEEFR!NuF;QqW
zooDNyp`(Vq8un@URzoKZ*PqyD6in-^p^Jv^s5K4Z<;wf=XC>{*-1c7O?izY%n6F`h
zhMpRFX&9qntcKni`e+!WVX%h28v1GIuVDZg`J(z(WA($eQ+kgzuEVFVQwC~y+c>4u
zj_42#Lp6+`;nMJ6baeVyeV7Ki=61M-TP-qHj@5s99Hs27vKeQ_>Z3G7p4Aww;qS3}
zz3j>3G>oTH(=bEB1Pv24Ox7?(!z60qeze3m-8N4DG*<t5PPFIN==k{wQ#DMZRW?rl
zo=)%|<DcKA<Min?+T-+o<MbbCy=a)LVV;Jm<Mf%_^Vu3^Y4~}Zeqx+{XPi!#^v|Kw
ze;=g_-7CL{z8+`%i`{r>bfJbt8rEr8uVJx<B^p*~Sgm2HhGiO7Pz##zts^-v=VtSd
zH!7~Ap3jWV+!1}SFgh}Oiu0+_r8OFU(Xdv7e?hd;c)eaj<7)YjIa91Vq8l`9)UZ>-
zE(#<Kn>1|IuuVhyc)jg-V_-LH*g|vK#HiA5yskZnP9Lvt=keS@T^g_N8n2%jum7eQ
z*O2elut&ok?n$LZ(a5Zf924|P6ZFL)VcuZNehNsB{eXsp6k{3=Yxtc`LBkOZM>(91
zYk2ywa%`cPV+^_HXQM0y*aSISu}J($_BloSRngk@3&)VX*WJu#HT*#fygriZ;~Xst
z8lni+L~x!~9N8mCir}J#OH?a@oDp2saE0PT!#j;$w}H?Ufu5HCO2btR*C<wL521ky
zC;zMACPfQHg@%7L+@_P#@ZoLoyEIB?EhU>JkRB;gjV^g5=X+e`5shI*+-H8kN<|MT
zs`DlgJf?ZP7r*~PttWJ98VF{+OeUqGXYBl(^@WE2%(^ehZJw15^jgCk4etxZ<o-Ha
z$)d)Izo*V<#&iCau8AKRvPRIhy6qElOvEV4#7YnwL1vS)M38T>os8Kc_~U9(s*;^6
z#<A9kapa01cLb#)Km?r{=y@W@*3XiXn2<LD>uL+7d<^*`D8NwAv=@q?Fmn;sqO8SO
zi?dSQ5)qU%xfDb0D)urFl#Li;UYR>tE`kq*>|aIjh1uuw3|~f2fuUjql^7P!&DQrt
zES(Gae;vV(Nr?o9rdr}7s1iZd2#77LjtCMMtgJ!=HU|6W(!8Z|#+4%HorMI_Y7tbA
zARK`fL5&EKBS?*)b_55uSW_aXlagGvu&pM+1f5bXhG{FU^fcEx5jZ0dBluy5kQPBY
z1N|UH**{7<qzHTw$TaMw9WGWkt0w|4L$OhYn-am0?lww+2>oblus>p4y-aW}C6+W8
zL5S_2jgbiIM$j>WZ+T4WMbMu5yd}9lXB$M&FoH(RG*Eg3jhUOUMp-jhR}_x#*}>j4
zf@Yj;9zh$177?^$XcfUX5wvDLr6$t<VicToA2BuCmW}OLbE-ykQHXY+(|=gG;<HSh
zA~?4_@%sp-N6<NfE|LGE>N}vND4wqgkDTL^a0Ns~!txRb``}47p(yOm&d%&iZ+sw8
zBpMI}BumaYXCx^46Ht((h!VtzN)(Ztlpr8{cWNE~eCPDJ=XP~<b$4}j@9gYs4_@)1
zmk$Gdc*}?0KJ@Y7O&=fmXxY~X>jTegT(f5~`}xpcvYno8_^J;BdSu<}kwtu+r7vgg
zGt%Gi;nX(I07lL>55Gh-`8}N$-lk`K80W)y9|rp{#D}r$fAgHY+dc32@U9P`hl>pL
zf!Se#!v#kOjud3kC?9_Bnl;*og9VB)JBCg>kaMGN7LlgP{n_-hPFdap-U&X;F6Q)V
zq7TGLg8jQYCuU6b;i015Su%0c1gHBjL&!|Q3FjTP+4PtXbA8|+nHNbF)|%(TeBlcO
z7Yg!K6fF97W9DKXmM~y$Wic)FVVTR93t1t!(uY+-zHH=O?L+gcnN(g&NBQuv9~=Ex
z@5B2(JmtsJeth7=2JV(V{N%%jK78auoeEx__{|poM}79q$9tZ2nBC;VW}ox-_Ah++
zL<sqIA3hbn#fPmvd?tLGp!3(%eD!P2b*>zCh-9bWF2T<QS;XI+cl+?A4|{z0%7<@7
zu8;J5?ZW}#dwtl)z2#n={XX=)S%p=|3;bE<8`r`?ZtSx%DQEglgx?GPAjn<!kPkom
zaMXumbV3L3FFx>t>9Fu$1qa5xlpOJaKU<I-_u&L*(}z5M{N}?+AMDG;|7KJ$<b1g5
z!=GH~!?OPH;o^5`XM~>?98@dgtPkgWIPb#+F3e)Bsc?}F?AnNDFLz#B=#ucuf>#7t
zL{m(E`LI9TIo#lyn7S@_L-3|xheqjC+kdV3Egx?CaEJTkQ<)?CI>LWM;jZAga?SJl
zk<X7Bemvwyem_$DDD6iXKMMG9wXe5`U_n2sEw0aOAwLR>#J9uCY*9aoNl|gZl75ts
zQWjCaln6;`_ja;n{eVcy`B7d-1wShKkt%%e4(|g(D)~{_k8caKWfdlSjH=>C&oQd1
zlv47}7``LG>5r5As4jfw7{zQ&KOXkO>qoX9kNEMZAL?%E<9^g~^)rP$CRp2#IzsBY
zrS*h({HQM^&6TJ7k>T?9#;7bm8u-!Bm5jNUpG~vF9CafZeq%pMrKT|3#E+(av=Yr6
zDQYg9MNde!nc(_f-WGne^y9xV-bM;-wie|!f=>!=9iyJ{<5@pe`mxH7wthV4#~?oj
z`|-RV6{@Ev{K)mAop5Gf@Z&|{?fvNBhflcWhgqer-__AL>1XQ%1a-lnpdo1b5fVb3
zE;aM8qAk^x9~ax#4+};Fqk=KPxZimOg9;t}=;X(??U~*Dcu5F(XCZ5zF5bnDeis{e
z6<o8})9S6}-Tmm{=jq>>FH<OL<URfPIIs5=KYIDm+mEkqr1fE}&i3?W$IhqI!Z%|S
z)%uJ6tA4!Z$LoH);m6yeT=myfHu~&W83X)ylivF(W1t|(TYhx;rG+DDm_xJNW{3DO
zi(y$cgZv%8^I<yFkJ($&hWRnvj}d;1^kbACQ~jtrR*m-KT|dVAF~QFld1I^}<G2J~
zXmPY%gKB7bevFD;&Px5b)zg==Ci*eSkI8;a;VSsMamlf2*43;l`#h63x1w<-3a9xo
z-H*(*Su^~YDUI&`DgFB^Sxk<OA9Ltc>Dv;)d4lr=+2I9#Ec9cMA5Z<`VRo?}hx>S#
zu3z!+1c{}7ETeyhrY{#<;Ya7kz0CF<<yq~=k!zXnb9?vWJwMj?vDS~T+k4juK0L`w
zzTWR#bdePEdF##hZ16kpJo?BF@(%?cnb7cmBBcD4dUZGXvDuFwH2kRH6F)v>plWzt
zbAGel;>USEF8Hz4kI&c{Keqd^&yW3nMAkI_I-0e^kDY$>IhFZ&L$%9~&;9tq5Bq%P
zmwxQ=W4CbLLZRd<KW=RGbh?nat9)~kuO+)zkfsj!@r@rRxGno}kXwo$Kl|~EAK&@$
zz1TnG$AQV7AN=@9$d7`Q+*n<ocsH6==|bk97qfn)C;d3au)L6YL^|1RwC5<dmkLGM
z3Y!i^S{#>BDlE?`e3E0ika-}Mb;^(5g)^H|zxf}2oaR>cNY=_`-ZKoR+a9K~ew-7Y
zXqmz6ML#YvLNq+6;j$lBIJp{9HC*-MPj1v2@@tMO{_^9FAODCeuK97DLuOmitebw^
z5+Qr|w;#kI4`kdHiBqdiR_n3qE|;W?>z*IX=FuF?D|qL8COHR{qM@XQQW^?Ka|JaN
z(omS)nCvN{p(v+ydIkqrOoKVHd2tQR52r_dY0f4}2xm6fp?PTyWi))hH>-k%{gD=&
zpt2h1hds@_<usJn&}wrU`L>+q#}*f0-Iul$=8Qj}fyka$(ok7iuOe7g8l{(b8?Bm#
z>Kf8Cq-z*6x_J$$;?eMshMF4RVt{e6ENVU`<PpI~HPjNqB3h`ep^k>SY@&TuJq?|1
zd)_*qNneqaT%S>2<7-JXI)2cCuE@}ksiBRACpEnIeOi`=Mj9Gx&JDc=B5BB(+T7xC
z4R35tqXH{>H9VoAnTBi)O+?;Q!<NTd<Zub>&fzqX(|B_Ydq#U&YR)vZ(463BVr;Y$
z35BgSaLPKqlJS&=r!~wzpZTnGtoj={&q&YN76X+N(Uw6H%i<8)X?Q`y7aDf6ZyMTb
zh_i}@4&tJa21|oagP)F?)I!sEhd;~E5Rj}cNO@4hnphSIjhmXYMtV&tW{U+S$jRay
zh1q8f4E{SWW<?nru`H&ThU?QaNOCoF)G$-SEV@_2OBx1hcuPZPHmczj4ZSpU<w!NW
ztf8ldDXDhX!r8pj(w!B@svd%`ja3uJI(I6r<;`9)R`u4<N5kuMsfO)iRbLIS($7|Q
zKMnmg9389X${h@n%dEwq9j7XdbDmD=vcc-H)*7HWe*}J0bM6S`$;p0O!ypasGK4e?
z)-XiFa1A3g)E}qbq2@R>Ov6y^-+#xq9H)4__g<l@BQ<>bn>AW<F8@Zc^W)UGacbc>
z^-FG*j1ksY#+Zg_8m4RbY@8aeVWNgf8YXDa3RV4aoO9P`vW6?;)Km@KFIt7ht10Z~
zcvWq@${epKnIYYKXT0LQsW#(PY`mJSVUC6mHGHIDu7-K+l7`h9=4)7>VVQ>I^xk;2
zP{YsT)nW~c#KPwBj^CDOSbExWk_Ol|$qFgGGhXGfvsZHLRyNc5@#;NJx`uTc)^iAR
z>aS%~k5vZ?*@N@h{JZ!28Y)gub%!_Kpy30$Xo6}xK~+z+E0(pdU$y?H;bRS3Ib;nR
zHEiOZPcLysyxEBfYBNLVr1J>Vje1qKNb7G-aQf!oWv#wpZR1pG*u}V_-zKOXoZ`jS
zPL69q+O<mdstIcE1hp#UoR4vGf@&PGhrHR~OYSEccD&ti4`=Po244w&t>LLVp1p!3
z`!w7;neXwb9;zMC@Qvt`AJp)z%fI99B%IeOEc%Iyn!7{*j|K2E!|%_uzcgIa@Qa3D
zH5}HQ*KRT$;lv%!Nb;i^DjZBZrs24T6B>Tga8kp04Hq>0uHlr%f2-k)h6dl{r`qYh
zo<B4MPkG4CY8Y@ZgZvy9PSMQMBJ3M!cv0k+86g@jX{fR#jj2x&?^O-GPkH{7=2)E-
zFSpA4?0XNtK3~^xQ{$h2oZC1z1bL(5mWJCJ$_7v_fIAxg;qDzkkpS+}Eu6~EX$1lf
z<_RF8=g${FUdj6VRp@xD;H3)n^9PV3l6L(nP_1A9=LY956ab5uScSr(0hACO@?t`Y
z2jG*Uk^z(wN$CLA&S_FcI4x6?SU$kRu2D4rP%cHO0X!haH$GU1_A3QYMY5FzM-0wS
z;hrXqVq*Nk0ICO2BY<jBmp0E2%Ks3D`F*2@19&8Wnj&Wv_W4n<Kpl3B)hS%}W$4g&
zPwfEe1n|mEPu&1K0p~K0yq-wBJ3aM9k|xNa^Z+u1XS$LsA&slIcszhc0Sq@V!a(By
zya8xI1cJy8pb76W>i9uN(*SY;NY(Lxjwhtz^8vIApqcRIf-MAF3bqn#E!akoeRwi}
zr(FKDkY@y+6>J;8b3)3?|Il9u;Kcwo2k=P%?E~l#z>omm;p_z951>;3FR`Bi1Ol)F
zPyy%x1OqSvd^`-#R<f)7ZZ$gMJV4dP%>H|V3I&`E(_$=5ROu7d(-T#gVG}?sfOr6J
zbZr=Aw3M)4m}9NUlO36;YFgRJBWMx<@HCs;0Qyf<9fePxs5+Ab(37qXplbl#0_Yw<
zj{sIrboPWD1+sav$9~~2v;Xrg-Wh(rNOrFPdI#`U0B;BI+eDRTlG@ocyH5ap1L#Nl
zjHs)g@{<%DMe-^;ERxp+-w>pHKmc#Le4r2>AN2E5=ce}{#=|5vm`*N~?VqGNPEtby
z7#6_d0G4om0~is&*Z{@_FfxEq0gMjd-2etpQsd+hiQKAoq0!duxIMZ^_84*3+(~MD
z022b38^F8(Ceq1?Mtp8<b^wzC;78JA!6|}M1DF=Tbm1(TDP%?f>nAxMUQDw@!t9rm
z)Eu#Y?z}ah1Fu@Y?qsznfCT{@o1_*B-kGE-Pgcz*J4a+J4PY7V1n_<U%L7;uz{&tt
zapESc{YM)2nXLL2uvZ80UI1TAR=-VFYq($o7&BSDH(9L<;MbKF6VJq8BKaVI4GgmY
zKIV=wMI~-qA2PHySsw*Zeu~PNqKF#<IP*WN?G&{sfNiU-Zjt)oDeBG(_NM`C3E*S^
zzXz~2fX@Qh8^Av51hAd02e3PU9Rcj*x^9&6Ij6p{^CQA887xm*T3OZR2|~T6s4oN9
z6Tnvid@V(zr>OPvbHjouir!$_I7RIb;6MOJ0yrALHvt?B;1IWTR$&pJ2>m4UTMF$)
z-*JTsA^$<hkAgojp3l~y@E0!peD=L5PGtVdf#+l&4&aX|iiCJ9fa3w2U_b^ib*=Tv
zIg1w+>;RP??bh&(`PQ?=>{HYa;9dZEbeyJV0=OK&l>p9iM-AX2cPGvTk44IM9$7pe
zK-sD40;A<aD}AbJGgXDZaDvmCs;&m`X8^YXxXr~fRWVBc3gB7**8}*xQ1;&e44tZO
z2xs<Y0QF8=BrB(?Pp3Mazr)Seo6YN!f4JgOoF^pj3gJmsd3EH|QA|g19r<;n=qRG2
zsEz_U3hF4V<Kby4C!c+Isw$-8?o?HBnj-Sz=b7<#(`k<J{4KKi`%wuUC3Te1QC3I$
zX{wZt(z-1FX^PG%@uJNOHY%6Xoz0{?ahjSqO|6@zD(E0q)WMJ@sidQ_?tGTD>YP?Z
zM^znzbPU!39S`bwQpZy|s_Ce%qk)cwI%?>6NXKJ3YU`-U-s*T%N9RT<yQir~SenOX
z7|$PJF`R1YC=tpYP@^hms*aAjIx?g)^|&)Hw>&!P>)<sB&k&=3(sZOtY4XS~_W9T}
zHKlNNrj9Hf*QY7|$W?5*dR#{%9nEw!*U?yqm%F`=939#0$#iuJ_H)x!kvw)2dNq&j
zovxzO6^--omM3)ZP#qqv(?Ul}9j$e=;VfLT`c79vr>j=<z;wk!U<%~VUO!zOTxZoz
z$$nbLGdjXLKeF+xj<z~F=={LNb2^^a@gm)>W9M|o$?fQkJJt(2c-1txTh$SU6Z2=J
z=-f!luS3&e>rkBN8LH+C=YiXR4xK}op@M>jpeYy<v;?W3Lduw-UYnsxzvl#JR7Xrl
zHyzz|#C0TeyhQ)gasj8&MKe?`OH;Bt3U(5_QoPFM8LEr8H_uGfRmYDr6w{>{s)vr3
zbqv(;mX4mf^FIqNjb1ul(VZQJiR-Jkjy|lLFT1af*M*Sx)6rk}tFGiVA!*&R-VicC
z@J&JfnwfkC`)v+trs7dZG@Ck84bkzAjukpq>KLkHn2s4bX6hKOV}y=zI>zf5sbiFm
z(K_DMovrW24d<IhxIp&vGab*5(UCh-jn%=efN91jRVL_|sAGzbsq{~i>`8QfAun5e
zW2TzSS)Qpj%yh1+znQ7{Gww7U({=nlQ{|ndD$Y`~bj;SVNXKGo>X@rzo{sqp)GZco
zq|8WnT4Y+lxSi!(A$w-2g*rB^vs%qkOLQ#Nu}sHu9UW(>F)gy+o~3w#6ZL1#a=wNP
zoMWxhv0BGA9ou!hr(=zd|LOQx$678)9UtoWh*3IA{oXu#y^i;Fe843$!rH)6*?W05
z5kD6?NA1sMDIOg6-7IxwmfFY;=-8~|6CFqMXY)G(TYR8#^OV`nv)t8Zt50=o(Xmy>
zXF7Na*?8SKi;RgM{W}=II`->0pktSg&voq8u}{YroQ_1JoRsXZbnMn~+_1mox|^-`
z2<FRclYh<lpRE$J)tj@`xY=s)Y_*ZZ&i+QnK^@=f_>N?@Iyc){fPc)ejt8@O#@(uJ
z4L9Y<{=9pkAGts4IKwXKIHcoe9lz)}#>o8I^D8%>L3No%_R2#%tm6pV{h{tr!T6rK
z<WxH@$|vZk9htxBILUbweoF8U9UFIMvWRKeiOjt-bI$6{O|}80v(M=`uj7J_i`+DV
zcqE8RIxaJWg2)@h6&+V~{H^1bjz4w$rQ?Q<o7}YLsB7GaxDC!x56p2Qfxqv!ouhK+
zD4t5k%a1qbsM|X3==g{GwvJhIoGt67Zs)@OXpZ6s#64b}&QW*fsM2#)z98}kQ89?r
zAX0)T5Jc%9$^=m`h+%%aP|(@583z1fSU3pICR33hiUv_Eh~gqC>B>t8IaM=_I;Dcx
zSk6Pj9j|QAIaQ1cty~c0gDCW?{m@*+R3QlB^98dX2%=IDHJA;8vr{<;1o2=HGiF#-
zf~XoqgSm>l&0NK&GR(QES`Y)~s<Crbb(d_fRfTa<GYG$)-TID2{%8=jf@l#$%OD;L
zqIM9CgYX7XCy2T<7(_!3uz+*hp<WQ4AnFI5W5Lpb_}^UT$%n;rRl4vD!A!v{!Gm)Z
zb?BBq=BmHvs>j*eBH4`uE6r2cK{N@XdC>VJ8j>%&X%J5Y!Klk&EAv##d5V}jPc;jI
zm{uaY)OzPcuU0{{4&sF%UJRm55KoHRp9*5=Jm=wx8S_+XNWC{tJsrd|L3}<>JuBE&
z@HxTf1=|V!F;7vaeGnaj@X;rn;`!?8MeDKoPPcRBtM;E~HaKc?3F|=wY16>728<xg
zAfiFUf>@U~op*ghK`dD3v6yY|wSy>iK2-^4HY_9}_;)ok9z-ID$w5rvxPs^y#ONU2
z4Wd&JF9q=ir-=@s{om7j1o3hZU4rP!j%{ktjbEDPtL{Pkv^<AdJ{QVt&!F=QZ{HyL
z1@TG{y@J?p<)ehDcMyG~bi$pcGpjUxzeg5-Y^~5gt3Tb_CF@ne*MfLm2qjg=wR$s%
zfk6xj;+-Jg3gT_)M(vcAgMzqMF^7pyT@H5n*xJTWQ5X@#NJfb8zcw`(&iQ>ci~Zlw
zElWR|S-EG{s36+yZ`u3htT91+U%CO)SUP`=C&|Z&aJ=9I!HI&C1V?_-fG31c4PrWj
zoUZt`;<TW1()c&;dS(VOD~R8MILTn+kH0~z2x4UrbAp&Fl6is)1?O{ugg9S+#x-0N
z#Nr^91hMC#d`r2geGP8aX!zRYbdqI~UC#O4l*a6;AXW!)kP9=2_kvgx#3w;~DyG&3
zu_1^LIkQ1byOGYcK8W{S{y`8m_c+3jM7h%cJex^^_*fJ+2C<1#UnlGJ@)^`2xp^q#
z+7ORXG3(|7*;|6x8pLOG>H55Fk2Tm9#P%R~Ui$F;X*<N)0WQPhUXEpF5WDD15q=TG
zS3)S?E#ynVJ%U<_^CF3_gV-zCeS(zi=T=j<CCP><>E8tLW>yBtcR@5eo$+%Jzi<|U
z_<<uWUH``*$~DP2#0X3ptkkgbU{4=U1`kI5HHgDO9A!UyWE|oC@MqJ(<2;_8$~(_F
zl8$e-J?89JSiUf0{&3HUAo6|b+)VgAh*R7N4OBAlM-ZpEnH$Jw;7kx_gSZ;RpFx}p
z;(QR7S*3gf9%p?ah>P6(xo<2>FY#`R`QtoI2YQSXp0kHMR~Y|iJbdHi>FybS1#wL}
zc{_;f+=MS@tZkQZD~REjJU0Yy2JyELN?MKe94eYgg*)5;$9nz|yvsP}NIPe=9_OJj
zkKq&@T<XbhAjLo#17!^qFi_AyaRVg`6f#iQz~v7!iWw+kU~rZ6q6RLmODCzgHNEdi
z5BZRKnPn<FXKa=<P|EoC42QIi>BaNaFKytXj0}=;h7-&c4ERnvn&l0&pO`UnOM1yG
zX%!8m8hlS{dV)8!^QKoecnCZ)4P+UpYJjeI&_Fe*4g-(3$op#fywwfVFpzGbZm;x*
z*wxw@^+lnkfx{!5sd-qkj~M)aA8HAIjLJe-TH8P!mscz7#7{i~9#=BwhV!<IGy@YW
zwCFisWf=INQ0B)i)7e%70}Tx{G0>DfG0@0>*Fd&ZY-~6WzLr@~h0lNT8B{)x%Ev*O
z4xG-&G4O<e)&|-bsJ<w*8F$)C>8%Xs*Sh8g?vC=b5Ns(pd{o2KUd=y#H2p~`7<i^_
z`j`ct*2UB5VWy`I&|`FITLaG-=x^Xv1J4`Im!_8u=Rulw23|1mqJekktFT~u!490Y
z;W>9kWcdvE4QK|)0|tWZi~*hVKD||q9y!w@4NTEg1~LZbgg7<L8(0S3ADClP-YtjO
zF{9I0y_3Vzh**vq*qNRaGtj+aX52u+z<c*Ha}9Jg(9J+c1D!<j5^t2fo%8kJ1|<hK
z=xpGozhM`K*|404hvjrPu))as_}Q!;gBy_aFnFYJ7D-RTdFu5Q!Cr#B1^XDd+CH5{
zeGT*z3Ay)J+G_@0H_$H9vU=f`Z?GqsIa^;!e_O}^!8Z*Iq`NMry~U_7o0D9B(L0Dy
zZD5FjcWBB0tMohVX;LR+sDXKF(wT~OPA|U0GpBgQNCTq`#6w7gFq&gG(8WYo6JrdF
z<*G4J(8M?ck-KTr3`{q`CwRvjm>`6FqJc@mCksvyoGQq>&{UXVIM=$f49qq#Q#iA{
zwKB)RTmxSl*vl?)MbJM6HX2x9V4;E4bgzL$1{NDwW?(tPvS9Xvxz-ZHxj(RSzFKNH
z*C!;u+u0x0Xu-?!6$bXqS1S$tI$y2gS{tvf&R1&;tmSHDFdJBBIKOdh-~wEr)^qj^
z=OXX}Zept}<3YQ?0!8wn0p7S^;zc#TfHYX3c=GlqhwV)UHnV91Ul{nrz^4XwFhUH}
zA8GY0X1}mNZK0D5gchjJ1h)xp7o@QF0yT1hYJ1$?#VT8@c?;Br1!}i}FWF}UUy&?O
z#}+7l3A(pHRa)p=&op1C@|Cmq8Q9MdWv>hzFz}6mlLme_aL~ZF22L3G&A@kz{DrFj
zLiGzrlrQ^x!5;*FH1LxU$`1+oS+MIu<*8!-%8i9vL=~Iqh>)WOj=7TK+zqBQX3?01
zYFa`2<QyyOSNjw<e*@<XoTuN)*{9k0HP+d#RnHhWYaq`qYo&C)<u0qvZR>)8T?^H(
z3)TL^_Rw?IWdm0X+%j;Rp>E($1J@1QV1Ib=_K!t{zYJXC@~>L|3Wrm*{=OINoBX)h
zV(kxQ|ILkPk$Pm2YO+Y(G4PLp{3cRN_!p_WY}a&*yuL`?<A#65BFSqaTHeklNV3h$
z?pP$7?xotZ<?TWy3Y&<T&aJ8<CW@LcOqeE$nJ8`|%|yD15++KTfQbi9lrmA;M5>7g
zOq4NE)<iiI<xPxV<jfS04(6SZ3MTqKZu7hIjzwzOB304EW4o+nsdgn3l}%JJQB^w0
z+a^3UotM!3>e0inlV2yRnW%2!5fhJ^sA1wE6DNvSu|g>|x%BMpii@3A9yamoB6Vev
zDzI49qHz;-P1G|{Tg)1Zo#62-R&`7?U#v(xCVDScH8(lmtcNXD^-auLtTrxI874AK
zv@!9di7XQhOk|sAVxpmm$4xXc(b&ZP#p<Cs^?6A3wZ+OVV6*kIOO%%iOB8Q_H#L!C
zqLqo(Ciu_pr<bTFOf)mWJI|5oc5@Rgq)RR7)g|hq<MwF7Zg|`=!uzQGmZ*Ax?59jT
zZK8t-pNVHoJZs`P6VKDVjhnYMQNgmuEpfj7^Lz2}LfMO!DE6eCi5E<4U!q<VBxx^%
zf2H@E&`eydRV8R5V4_ncd)sr(FD+3zy_#zOu*CUYuZ$dnJbq<H$b@CWHnFl=!*)M-
zC{dipl^GGiu!*hnvY2IxisZe@4a?`vigUX2W+eo31v|1KAukDb7UW%4s&zBbonsHd
z455dKmpPjzelyY2#49HDnE1*>FV2pM*(T<g=)=e{G0Mbf6a7r|H!;M-J0@PG8%?}r
z;%yVJo5<a5jqhL&Fr6FkZ<rXn!Z{P*P0DXsg_o*<CfeV!sxNi!eGQ^Nm#RSp?ZGDa
zYi5I`YR+HQP!q#UjAT(2=MV4PGl#R?0@))>=LGE7QbnYYllU$-e-o2UOkpdGK>ESN
z1o}3`ete15`GUne8xvV~sk2Bqt&?bWsbZS7R82K8&BSyQGfZp}g`bzI5%cZqOVyaW
z7T4xX#vxbSGR5@pGBwx4JQM3otT!>=!~zpbO)N99(8MAWi%l$%SZcIP@!0(K%T$RL
z*$viPOguz-xrr4f)|gn!*`#Jp_RGr@XMdH6)e@Qgx>tSAM3-XOOjEm6WvmWerlu}a
zO;hamO?<$)Hu0H>4JJM`@rj8~rLB(yH=5vG%Kr&|EXcd8n@nsr!JA_rEK~cJsgui8
zk>$=eSvp~hi9G4~_ziR$!_vfV6JMIxVPdC=&&6Qv<*Ma!H7=OFi!Kd1_pZO-P9i4^
zB$g{?dAqFtay2BF{k4ff9nzV;H?ddvJ}yZU2ZVns_>JH}L29=AJ(KtyEuXDI@`H&V
zrRXQYUj+{d{%qnGA$%;BnoNgH95HcJgvSJrn;5VzjYWKU3h|_g-%Z>$amU0d6Mrx;
zmaD6Rr%hZGLdh8uXN8|Lah_ATTv2$zE$uzG{w0@RHgUz}pDkB^3jfQ*H6hmpZ<@Fv
zgcWJ$Z{Z}jgdAP2+O#O}kBRyrq=j&o26v_1;}nFDH-vm4zL*0wLyj<ih&RbmQg})T
z1w!bx##2zTg#-%=77?U=(GZFWFD^)B3YkiU@IVNaLMZKOmI<M(@N$CX1uF<v6igM&
zS)I=6m4!bash_k~MY2^xfRG0Ts|iw}x{w+i%L<j$e>en>2-$&0LU>eoEy2eGYYWy9
ztSeYgkkwg*V=-DhkRC!t2+xJ^d<dB#WQC9uLetrv1|c*Iq2h_G><}Ig;k_3!u5S07
z|0J!E@Wz5(K^E2jq%bv`u%c8U-&HT`i4dBF&^&||Av_(zGa<ALp;ZV^aw1l!)@-qM
zP8$wqM*0tvnxj<qx(CzO7fD|{H2o<yJt(8tTN%%a&fyd3ZKcYH+BxLZZx_M~Av{>Q
z0sl7mVh9_Kr)lhDyL6KFA#@OlPmmIS2tOZBBMFF(9zx`wrWM<z2ietjJk-v4bJ^*$
zo=^y}B_7VK6~aGVi`fzqN-!)K2_Y&ZCP>Xr3$t=V=orGz5O#&oDTJ3ocs+zSLg*aA
zmI|5Ghk3e%&?N*O?$lNA{X1#o-T4s^!pkA_48dQkN*}sCCHobc6+%v7?+`+@s_;cH
z%rf;2p`VoY4}lvp)2l*Wqt90;W(S1uCc~h#!GE9+q;R08z){c45Z)60w%{Pa!66J0
z@=gd7gbWoN7DBl@>B9v_2r@fT$S8gb2;p7fV?r1wWUQ;hw#dgz*0a}UcA^-Z6vAX7
zQv|09vUFMq(_KD8$cMEX&I)062y;T18^UVFRfs2aVSWf-)@Z&ogasii4B_~}w8bF=
z&pI!}Tol5nPKCcH<GdP@X-Nnp<~v_zmxZuAgcTti_@()(5ccJ*vohp-A3t)#AkI$7
z>sz7Lgs?V*jqLD7&$<xS(~}{5a@6^@{=O)G5W?j%br$c=+z`TtBH8`EhkuGZbSbOc
z<Hi3M!pCgAL_?-x`?EHMu$k3E_*67^aO#C@4WauAReD3lnEA~=3t^jNN3KxYLm)D-
zlr4TYF^gYjKM&y$12u#%LfFkwb9Z{X!4Dz)7{VUm%zh>0>kxiDlC@WGpWuEDHiU0N
zI2c0VGflr^_Xaee&bLyEof+SYgu=WJxA;l=#&#<mDO%{K9FkwC#)WA)--8Zw3J%pi
z5yEdmjtCwN;h2!)f?eu9L7kH!{LU3*A=N_fF5XiioDSg(BfpFH55biy)Y*`8^S^UH
zZ&?fHLO377g%B==kYb^Lg-djD2=_wBV>$mpxDw*6OYhAPu7;fKpMrl0UK6}7ctem1
zyKd(v{vE<CS8`j(9l?LN|GRQ(*3`UtEsVL7n$N=d54;Q3dGlLX`9>Pkv?3`(Lf(QF
zibyvKStxAr&a;<Qn7VgTVclC)ii!yqw@^YzNx@Qrr3K3fvR7MHsB*%~TUgx1TY-aJ
zUjK&`iu?f!l`J&1(6gtvvV|%Z>RPC0p{fON3M@Qo;Xw=4EY!3Rx@1?kP{YDQR4ZF$
z?iTO5E#4ku>z`SnzDsMCccprmb&nSOG_BddE#9SR&1zYA%tGfa-d{g|HfL=8+7{|q
z_-Bi^+R=in%ZeTg^({2C@VJFEmTvWCTFA1neQ4Em$z}+Kiaej*r}2m{ybbt*m_ChP
z{lZIZWTCNz-z%qNTku*~y|LupEnc=l%Ym)leCf@aSRnc+q-NffCoDd-h~^eLRxw-B
z8|}R$Ei68r?oI6W<`~|z4&KU3TeP-7Y$MqATJUK)-@=4WnAi!=T4-zGoleeww4bva
z3@bzwp0}{*l?LquU$F3^h4vOYu%g1V3O);d3%NEr+R!WnEPQ0)e-?BLK@0sX^tWJG
zFfDYl@DiPD!Lksw5VK%gP}0?ig|LM~KJPb0QrPnk0$y^G#O?fX3(O|iglK+yCiOAV
zISF)>Dm7QC&K9~@c*R053tcUAv(Vi_4-3>`T_R1r%ovbX$Z4E%rlu<ut@XCh$3kDR
z&n){uW!7qolvgdhX5n21vxV0!ykTLeg<%#3(6JT<TNonU8z}m;%=DIpw=HDY-a!^3
z9lRv_N~F*l2l$RO!FGKs)o=?VER3=++QLW+-`vd4ra4}ADQPEJg*ev2I14i^%(5_^
zlVxFwg{iC}ewb)sl9-(=$n~|UgZI0h-f0%rtnudS?44m@y2bwwdb4il@9Fb)u~NAV
zXIq%V3FUgRFxSF73k#?g@Um!do|O5Vta2&LuGPGEbnilof5`Rf>%2=WEVZzf4Ov*>
z_by{t3Ry0=f@@p|jjT#a{NCf5mzwXfGp=O2-@D$z`xZ7>_>dmp#?szP{D6DK-wxkh
zGUcJw-t*(U<vMsjwy=>)*hXa=n=EX$aKXYw3!hl{)WQKe!NL{`TP^IguuDAfnc#K{
z+l1_U$+5FTc-it!bg_G%Tlmt#9t&T{zO-AAU2UD3@|Ezf1w%LUQ+dg`)V&s;6Z7s9
z;eNsKOT7mzd~4yjg%cLOv+%uzpDp|%r9W6Gb~FDW;Xg{<pBSGj6|Lo)>@AUM{wn=B
zCa9fHJ#68KaCYw~gH2+fW+|t)Outz;W#JFT7&in_<5W^!;Esc*8JV5E=PaCYEu6Km
zL@b<_q8|r%AHAM>$--p|1#J|vamB(_3wO9#S@=_Qu35M)<S&M9v6QKH>J3?3L&kb<
zk`zhdlKFxAzr{Z|dv95|EoAptM|jt5H?Qq1w0n}xBb*bO&qjXXDS`!T%o*nl%J|5^
z!h8bDMoAl`Y`#P|h5lhGYNMF_@8?Bv8zqEK(7gl8rIfZYE$FRaqoR#6Hp)s-Il=OR
zrDV#6E%WA!c~fotZF?WE`PVA%w*}2>esA^h-YPcu*jF<f&22utj0ah2qoIvzHmcir
z)J82EHEcX&gOT%yjhZ$lulHspybp_=Z7UV!%(C<C3#B|}qqdDS8|gOc*r;psQ8aIT
z8})4D>+AJ!$Q`^So4K2H@II=0SxS815i`R^rj0Bchd5Kzsbo@4wdk$X$89vS(bRT6
z%^TbB+Gt|)oYItR+u2oW{GFdWIkV@7RwbF7Kc$uO=7{nWHqH!m_W2ezTG|NM&~3D`
z(b~rIHrm-}BWlmsc-F>~HnMA^Q2!~LKTkVtO(^VSN!r?Y&c^0i?4<V@+xv&|-f8cB
z!N!X=d^Y?x+S{NrJJ{HHBY)|_DdhC_)s^a(pjYFFeBP3)yyX5h-k=S`hO!a1VcH1U
z{0Z3G;&y(E^S(-XL(bZ?833!CD$Ks?^Nv{Ojo64%(?;CJZ@PC$Uq@K^dMYu&8PS|<
zCmS!>IA!Ax8=Y-*v9Z*~G8<iObh9zh#v~ivZS=4))W$FyFWY!H#eB`i>o$7Y{C4bR
zdPPVt8@+|}apiq&^mBQCA+Oqatzs6dyunbJ;=SbazGGv6gxs4l%bdi4Hr{gi+d>8j
z4z@8wNcC0DT$i2d9aY&JZexUv&m!IlHb&YQMTPd>u{K6agp<E(V@zLf_9}I<y?2b1
zl8m!4-UgjEXq=Z(?Oo(ub1RibCfk@IIty(~r3D-FY|OVY-Np<XUzACiV`HW`bGG0t
zL7(QOdzs$wI5y|nSlr25ySlkRO!bychCSJKBmW{6*;ry@*Hq^^jbY4?AYX1{g^jNm
zKXiqSRW?3ltlDUMEp;`G*jR7lJsWFmR0w+4((}ssx7Ydc-s4rx_icP&<9{|jX0&VG
z4V;DU-VbTe?=3ye%RTKQ@**kx<l^4D(Z(l?=T&MGBh%-sl+8lM-Adg$!HM~;bSArJ
zV|dY&Z8o-Z>K8j*<qpPS?y$ir<KD7UrmW{G^*O_)s`-VDt9Mfw=euou$%Wj(yGM}Z
zp*#8aauZ-Y+xXeWej5jDd}rf(8)uh!zp=5Sv-evDw(dP>gCCT1Bkfc81Gk-oS9SLO
zXycg+Rmizx{6zoDCGIaaezkGb#xWWn=sj%Xh|OP(o%J&9B`-sZ<hZQI6S8plDXh<M
zEdM6LliXp1^hz<gR8MosbAM1cvr3({agKggsHkw>#swR9ZQQeQkz==U-Np?Ym$~_K
z$Tt3zy^+oFYJ^_|?kVqIT-36-I1pa3FHTLN_o{`wi`IH?I?B$v<LGYLxNU=<DLpLj
z<(JeQ8~@PkOUmr-Wb-KGRVb-YN+F*@euY8`g%whiGxfAkK!J<*uI4SM9D_{VmwAiu
zm2~+`wp(1GsN(l!Z!v|93!SSM@)F7ko{_8gRF9)yTA_^MpCg<}=hjzN{TmPEgp^n4
zT+?KDq$)h1kfD&NP)VV(!XpZgDpXOZs!&7WAq6NrsGJWP#@Irix0-@?vU8nNU4dC9
zh9XOAiq69d%}f3J3031}{#qietx!kEW6GJt`K#278>w{_JPP#{CQS9#6D%L`rYZ2M
zj2DCqSCVvvO{)}1mO=xC#%x+S7ip!7rZiM|T%nP2_E@fQF2EW_3O86zR<^WtaFrro
zANMv@$YCvx?tJQ#?7#|dGj>v;g+fcwY@@KahS^Giv%~JSmMkUpJ9|%ryu7G;N;%t3
zoAaqpD`#oHHO1Rj;W@=C+YFmm{tE3B0tz}MyF4!_bWqM=+WaB%MTPeKc5pZC{b&}^
zN3RY@_X}#G!|c66^=T(wB7+!I&QaTj!szkortpwLzxL^tVCY_&l1B3_OQ&*FA*OIH
zit|zAR;(XacwONQ<?sYiNJr(|XJG22@RGu)j!$$J>>|i)SA}j0-6h*Yu&=_)LVCJ7
zuPF2q-rJS*Q9PTaAglKiNq@mt1z!{Fd%ZSGyIF<UnE?uKDhyP3OQCfHZ6bJEVUWUy
z3LkMejAVsH($C9N^1P$)uEH3_-)o$n4|DrJT*wH8kwQkf^3e=Y`RB!0g>ecqxroj>
z@Aw<9Fhz7GxSA6cCb@jFkYvTF!lx-r7c#@usddqLvEVF)*&>-EI9Fkw!hBa}q2h~2
z|Mf8S`*-~JZHbFHxguYxuuRBuh4rrH3PzpFR|#3I@SZDKBV?`MI>Fhy^S>|T1Hlb~
z?3;No&;JxYX6%Kbhxx`*Y~rpGMyW71D}2KJO@VK9|CE8Ga7f{2g{=yoDI8GvMq!)6
zc7@#vUn=YnO)BqF*eRUGnf+Y&7j7wqdxU?b@HN+q=umC1!hVtOyHAsHDjZb!Rw4Oz
zMfUkSh41gv`9b)Pf<FoVXY&_@-;$aNhlLzbIL19q_)*s;^-tVak=c_9zl-FQ;2DKK
z6i)yDI%nPL=Un*(g^LQ86fSdj4Lg3jqHtC5y>hrEI)4h@5d2H<n&5RY#i8AlEGu%b
zw-xR%6vHSG#y<*o749kI5wk2!dV`vI!^khfd|@Ywl6C*Xf?*Vv(n4-U78Marl5|wD
zFp7($#C<xY!zdHRmvhpag;7>Wx?s65%7;-QjEa)26Gmzn4}|fMWGjVHSxB`ostAE#
zRY6*7+~4z{%ZCs0R2N=Dkf*CrfvKis9}eRYSMyOJwFDmvqxOID=4o|>*K;MFFzUNJ
zE$qA%C22Dwj7*Vd2{v$b8iw(>@J51-!|;ZYExbt>O~as(q=lR?o^W~Jk3CG3HxHvl
z7%fHqoLkyTNNd41f=`C=l#r(dpAlsBXTxYKyuk>^8q@QVZ5PH1LSA$=+Y9LshEIs!
zm1|+=Jr}GP48sWH!3e5FV1^M2V_O*8!?41z!x$6B*f3NW;V}A#@oE^6Frs1flo^kO
z5f7uQ8x@H#I)>3Hj9ig0NSIy<qjMNtT*-d{_Fo)!3!}S~_HgaI9R7FBz7j^SFnYW4
zzC!xAr8Lzq{O>;SniP!^d_9aegbWB{Xc)tUzZu3rA*}UQ7;lF$NV0>&cqfb@R4Z9O
ziBw4P;jaG3Fh;mMIVkFk7RkGUck|YvglSwDv%{Dp!tr5D2xDRxlfsxB#`G{|gfS(I
zsZu)azERL7>k?;5(JaBFf09LW!<ZMwnlRReF+Yq2VXP1x)>;_GGM6tBvN((-LY4~N
zE}1Xcx8;(h!IfdG62Gk$$$R(pgacU@#`-X}NYVRYe8Bx&_y)m`xL1Vnq3~qi<`;78
ze=HJ`jbUtZ_Y*e#iO4?{{BOp$hVhxJPa`|R*cry9FfNC&D~!*>I1<LuFun+5cNpJ=
z@jZh!j6G828^N!_*c-;aFur!}(D;7g2LzLSV}D2vii8T^%BV?x2;)Z){u0JdLVgyc
z{vjdB>JCcwuv^Ny$HF)s#(7tAB8*dE{1L`)A~_kx?`}*|nFg6ohjCU)&$zW%bk60;
zwk}BaqFeV$7+1q67D4fd^KtNJ7<agthw)b!*F^Jr7&nF75KOl9xA0qnw`CTR#_x)x
zfS97Sdy>r)L0(sqFM|A$e?J9ML`Z`LBPbL>VaXO1EFzfv^iNtY5kbiaDn^hRK`AMv
z{c;hM7G6fMY~<hNOq=B+s35{*hm-g~1XV>?NwBhD6+v1{HU!C%SC2Ty>(!2+P6RcC
zKNLaD2p$&BqDMrN<WZ5-5`4@poqWJkS9oRwSrOE8<(>%YyF5)udIT9l{;S&{f+s}M
zFoMU0G!o2?ps^4(>J`Gju{UugO(Vz={`Qj@RA6crL35F`aCKTn(8}dq3uZhS;k$=W
zEQ;b$JRQL^5kw=1MX&+s&kFhl+eYx5kmm*43BDlsq9FC#N6<mI&y{d<qg<10Kv0h$
zD8vvn1*sE?z;d}AfpU2`f{5^U@}*NP9zi04?>Wm6<VKup;IR>mi=bl!og#QCg3b}V
z5y5~6y2#Y@j-XEjT_flgLH7uHMDR)ky`<>n2zt5`{omA+aGOnr3VGiMUKO2wg8lE)
ze@!@bUU!9WMldjfp%Dy=;4QawFuw%|ALOdB3e%7X-f?x<+;Eq_D`bS=$OuLW87=r<
zug17RK0bm85p0ZLQv?$um=wVWqB%K&DG|(%U_k^^MKV2t84*kq&eoHrW=eKW1he>Y
zd@#>!$tITob>>De?>@=G2o^=~UIc4IxL9ym1WSZ06-=64E}Rxt2w54yDj};~In~y>
ze0>D#T%N4{zB@Wv*uX$_OF!bK;qs4#u&bLR_#}e8lKoWh^9a6(U`qsBCHq+f+alQR
z>hBP;OK_(v<R+7BdbddS2(tAr@9W7|5q$0Hv)z5d_eXFbf^UQ$bZaF|eJk1TTnj%&
z@KXeLBe)mAp$LAC;8p~;Blv}C5uA?TjOZVZ;AjNLgdY)1T00)Wi3olZ30prY<dh&g
z|GV1?`}~K?&r0dl2>y)VTm<JMxFC{?5nPh#X2r`QVXfq(UlBR8e~J92TY62%b-^2g
zL(h7t_P6k4-8&IJYFnSee?&;ap67`oZxn^2&c{l=sH0F&c>X9-q9`CdIlv?q5=pWy
zu}Bm}T?tz$5p{OsN290}MM>eMq9`3j8R4l>JRqcO6y=0axxA1HQB)Md4Vl79QB;ni
zrbw!|n$@DHDjb3jy7G^UWmR{14IvLjK_TrhJsia&|CKKHJSM%Z8$~@4))uTI$l-XR
zs2|0gDCS0y7Daj#@hB2eWJHk}#WPVn8%0(W4Wei%b{a<Ucoa>dXe!x8Q8X5k^c5ZA
zm27tO-|NyG$+Ds5LY|1CS=9NQO->NyEu#Oov$YbP)={*H;z?Kjln9>|T=;wmR$*!z
zMY||o5aDxz&kH8I@nV!OwMS4S?W5=rg)a)fWRvY`!UOk74B>VZDk&5U30m%0!jg?j
zHj-3xzk|ml%hq$F=orPYD27MTDT<e(cs+_YqUan&mndEpwXRWgi=s~yeWU0eMUN<Y
zGk!YMe>sYtQM@8L93yXN5C<)&-%BJLWb9O+Fgc2T!uyLqlLLS4zEY|UknCH6Z$>dt
zNV59dQ4EsoV8Nk+L!x-c)uF*;D<h&98O5Y1CPy(UiqTO_aCP1lGRF1K*eJ%ivo>Ce
zlD%S!6YtATiDFt5(?v4XmCq1D&Dl}R6wcOXxt1xXsd-V%k79EapG2`BiiM0}(OeY8
z;wV-`u~M>2qF63uso*lfqy-|)t`f<bDAo#D9mRXD4olYw|G<^3kK%ooCmpguvPu4t
z@c#*Z9K}W<n*@_Bej3G=D88p#M7TAI-BElQ#b;4$i(<P7cM0xrYwdJ>__-_j;yyp@
ziQ?-h_D1oQTT0LD6aJ0he!&BR$xa>={%sWBxptEC@?#V~MR7t(+1o=TQ5=rqXIJuz
z5E?lm<e1=5SC}+%+|B+L#Yy463!aJMl#o9JPYWjfPdw|6@j?_Aqxh&J{?`$gqPWa$
zDi@wyT#?(V1rjKjz||=JjN-2-u5s)!?2X~NSj!Vb-WYBOzv<flJBnMvZ%1)Q$UlPj
zqPQz0>60Ypi#e;wjzPtcKZcYT3dB$_hO8JG#84=P!ZB2ep|YqIiJ?pkWn(BBL$Mf&
z$50}MQZbZ{p`<AAB8}fA|J&TyMAAiUqMRtC#!x<n3NdHLOLm}Q49SnJ2V%~KnG{wL
z<ws+v6+_h+5W|BpR1@JNQnz{x4@tI$V6v5(V&UQYB*|7Di=lQ5X)&b7P)ADZ#!yel
ze=T|>TmQbg>~ls8nXVeMOw?}}!{aeL7sK;0G>V~d3@u`4DQeyrn#Pb5Lv{>Jq%(BI
ze;#-uhGzHKZyx*i+ZJuMilKE3&q^s<X(QyB7@ia(Pr34^C7bL<@`giOSJEzq7h=$2
z2*mKBtKUILdsoLNS-)G#hp}}j3dUfFFzI|#xD`Xl)ucQ*if{~(7{<gfHioG5zi$lv
zVu-~Mk0B95ZVX*x=oUjqDSb&SbP`Nj=q$X8V6r(5r@Lf(#?V8^%Yu|AtGpuFUNQ6*
z(#I`j_5Q*K#PDVeug372WM6m3`^J5m1BJiCV2k0c7~YOykXt&~)n|)CTs|y@;W3OB
zo&RQVL<}R{SsNvB$SUu;I-HSl!so>>KZfx!Oo(A(43lD*9>a{7voxqbIff}*v+niS
zRH-t}ZFgo2vs^w~idbciE1B!I&ap3uVPOm(#_&-Li$rrp3@c+;9K(_rmb!J938DUS
zm(bv<7*<R6efCPo+8EZwc>3S}eYR39IYH~))|vf46gF^Ol*y#R|6=$!hFv1u7{jI*
zK8s;n44Y&4M1)&n`1C%TNrSAo)fH|RvLl9_u7st$3zyXVJcch~*eyk0#<0iLNzTYu
zk|pOV+ZV%r27erS90x@HcMP{;_$G#fF?<`tcQKrb;g1-;=fuTuSajIdk4X~4PeKmG
z@N*2m2>);1lbuQ8kr<A~a4d%7u7#5^oQUzA5svFvC8_qiTgvQd;eQF9iQ#Mv=VCY?
z!=)H5$8f>byeK4DJ=ydXk^Cum)tv>l!habPuklkrif#x}a?{nh9mAa%9**OYIR1&@
zZVct(C?ChY81lqXB#xqS<c&KWW=e@8pYZ&G>_D>h0&x^{bqWb79RGJ-in;RAalYvW
zCE_UQ)}_Hx_wh2WW?8px1(8&Z194Q0BQ=f(L{i1otQ1FOmnVCY#0TT3A@XW&X>}n<
zk3AGeO;=9IqjA)Vqh%be;&@Et4dQ4RN9{Q3#8FoyX>s1UK)pCTan!%hRI<4Ykz@&G
zx~2bpv~ie^$I&E?rg1ciqp>J>1+(M-cRio%TTUF!;%F|VPYAM!7D8x;JgG+BI*w=J
zcvgzq#POu7^OTUM1(V8c<LDsS=i+!ij&{OdjH7)VFWjg0pJfuC$o+zvU~;6vIE*;H
zh+{YBD2`AZ@5V7E4l52jj$U!}jzh%}j^m{`I>!--BP!K%1!Hl<g(Sz4i2vUO03{vc
z=yYFOU4(ayqni-+s=JV$g4FL3$IC8f_g-<;SkxzuzHz)A#~=~*6C5DeKaN+0ye9a%
z;2VN8!dZJWj)86jz9sViJTq9bL*p3Y%HMG-4vS-W93vz<N^qoLa-^e$C+&=lV_Y0d
z;#exe@o~(EV`dx^;+QCsNrF@2m@Fje`KiKbZCV`Dh5y&9S#ivXV{RO?T^$z9i(|fI
z7rM#|ge0vk62AC8$+9?>b2{SqIF1!@tdyen1!-+n9INAaFOD^Fth=w)T33M`V_NUV
z^9LfQWJ4Suy8NU2DsGHpYaE}&u}OrR<M<?wPvh7kp1=QEh^=pnW4oyBierZm3U><e
z%ZA46=aOZM<X^_ICyrBb{2{`x;y5Ja>p1qtu}}CnaU6_ezgz2o5Z0xIZ{zr$1Bv51
zw>0UrB>ou3Pxr}xj^h_*MRL@YACBXQa2n)C`LQ^T$8ka=Ck1~KOd9-Mc(UiG<2Vz?
z%{cy!<7^z~;`mES&kJ4^yb#C5I4%jl9LE*c=d?hBNt=I4X>vH%gtPQ|95?Qh-x7Y8
zTfLCmaoiE|k6_YTp2WX9f4&6r3QyY1@5)mW|L*gJ5-6NNxm;&O7fGOK0v{)^F@a(U
z6i*<MKs13836xBrSpv-yD3x$DA4;HR0;LlulR#OKR8F7@?Ich>feIo?6{K=SAyb~N
z_kfT}uH1RGL?2I8$yQ4MLLPKWlWNr^TSM@C5zoU3Jd!}81R9Iv(FE!yP)~R*!N&w^
zCs0R7vT08O^%H0yk~BfKo0&km@C?Bb6AMzvl$8J*Vs9HJ@OT2rrjy80uPEmTW+%`@
z2<1%^NVfHaNQ#uqM_~)M^eG`N1zRQ1T1XqW^vMLOhnz=2o=)Hy5k8xMF9Cl7Z4-D-
zB+n=CqO0F7fft0I-{|anOzkDxL9k<~e3}r0Q!FHq;QwTuSz`(&koK!nE96QnA^BG;
zI{}qIShD|lgVtgR#1oj1z{CU+3FId5RswG)(9yNfUr46}UP_>|@Gc4TOyCvaT@&c$
zYIaYchwzsL-;$mjc_lU3w_YObE!Zc4zC!v59zNmp`BmYsCGdIzZwROGO(6pk7&|Wy
zAMY8+?ul7uSvp8cM<y^hfguUJBiUhsLj{w{)Eu6`2$Af|sLL$Vs02nQ@U95Q2#!r4
z*%OwI6Uq1ly59X)f09V%ConmIDZ-};&PrgK5Z0P5WJUrrh5Xn0Y{||MoSVQrA=Ibw
z1qm#a?4ksgCa^4l#gbhjm>lME;cF9ECuBteD}}5QTrK#XAZ@M@!lu^?`5=J}3B2!?
zawGcC<^N0IBjL&Cj*`9Il)&Z$&LnU)flm_nlv|4EY)N2i0(%npDuK^L^10wPLAJX+
zfgLX2DP-4u{`?|=-EQfZ37q=FdD7`?k^CgMH-UW#?00p(P2hm=Zv+ntCTp?ccar^H
z@P`C`6hir9mz>jw4khrjNPZDaKBjdzfg=eV70F3g|Co^D37l{xzqu>ucafZO<$nk{
zop7!U*~B?+Biuq|U%imP#RTppkVmqY68I~DYodQSfh$6;3jQhBs=BiqTo+DqTgZ(B
zZVLI^mETH$;YWo#g8#VkyKemCmFB2WP)I(({DLWh1q5lNkdVTH)Gs2Ws9-TchFJ+A
zB?U_fmKLOb86jl_JyxOexj6V}qYAmGn2S^qKA4MYxp+W$CBe#qtXm})Rb37t#TVtN
zF62?c8iEfA))ahL@DV{;=-n}YE#Z&3lG;M*<f5*SWc2bu!TPyam5bH6NXtcfuJbfV
zMlM?9qGc{JMKepVK`t8R;&I`$pChDEE*j^;D?B?FP2JKaLJpM7_uoGDgh-kRHqS*;
z-YOTZMKV^fO)fg*!k3FDbMaIzo)#h7dh!1;^%X!;T;JEQEbhT!5AI}kM|Oc7Sl9(Z
zg1gUlu#vWr?j9^aaCdiiXK{D81PSgEB!u7z`rW?#roMmGt5fHmcb`l5%=El=qXF}V
zjExu@Gd5vt%GiwYTh1+*kFc7@9JO|%jT-?sf-JUmgU$pL+-S#Ud&Ulo<lK=-Cq|bW
z_b*x&UC!`xBvx{xvm0I5?COR$qIYA`ozd-vC!&9Qn$hQm$jZ0>rBW#}n~EDM6Mw}2
zOcwKk8*-z!8+};R+|ZdA5uY%V9&Yqx(kr6Vg8ha0uZ(>e`$b~=GokzkxG|9VAU8(1
zG185}Yz~Qd4y8HZ#&Gxlp75mlP|l+wv18mA?FQx3eV_T?+p!Uyl<{s%aARUbneWCV
zHzu<=#f|B1%wRs%jcH7(<}uglOy+YK$(-fJZ07U`4Ve_?vN_L<3)M{j1#T>4Wsw`p
znY>?STkOUX=H#%H$uc+O6m!R*u!5D9jH}$Zc*Xpu@LD(4x$(-4*Q__$XJ7Be1~)dk
zk><u7H}1NziKBM9v5U!O#w~7aWnyN|WV;(Xn0%XiyWQC1#vc)%y>6UizR!*QZX95K
znDJo5=MYW!R?(E<k%)5CjbqG@GoEncB(2<nv8Sl>nVe=Mg%<2t=0wQ+js1U*<a3_M
z1!{FfxkPmvVeZD4-MHe$Rn~7rVy`i|PCmS2liN*Nt&!N<Ze;%<3yJq=X}Ix>^#_bk
zBR&t^cogA(y74%|pD>v)!Mw5YOwaKbo6jS$f4lJ_!vCRP0hq_tH_LkC##>rb9(X-?
z=f-<C+I!H!gMZ!lkKGE>j|hh4gB$5QNYDJE8=oS%eP;57@hc;Bbrid0VWhMfm_##X
z^dJ+H%#qkM?yjsJWb+_9i#Zqzc#t#VlgoqL9^_#&uLt=&$nU{-kyy%shUVKa5f)^<
z5aYMZsSZUvDC$8m4`Mv@_feGfpd33CXDsDG2`1!Ok_p|8mX0W8JQ%zqhN8-QP{D&n
z5xt@Z@g5|wS;>RS9#rw*`$%k@2NveBjDfsn4pt9rY}!3=FsYcm2<hMECy}Zi)bOCD
z2h}*1l<G_pJ#aGl*PffiB<3j|)bXHJ#Iv>s$q~LzGADdp4}M~$o(DfLsn7T$Bkerj
z_RI!sl7B<b|7K=m51M$;l=W7T*k(+cd(eVOOGf&XM+qsk_Mi<bZ5i7!lKw}h%=GJd
zN00e~erLu`j4lsSnUF4c@N<M0?1C=LyGE359(0dzx95LPJ^4Hkxrn76NFK-@jP%fd
z0ibxG(s)Hm_j}OWgFYSvJP3Lais)e`8l&!k5z(nbdU(*2P2#;G<XanmVRHauUk~~*
zp{V{$e)atCYy?sUvNFhHZsueTVRI<sFh&xGGa2ClT?EM-?ZFrirg<=(^|6c-Js8Ji
zJmUmLa;D92QiM<TU`m8fWkQ9{V6uR5W+Zl&2eUnx!{%JZd5ko@=QH^>9~LrS#7Jc=
z_FzeblfyFR%OlDP4_11x%7fJrCC!61%-1rmi|Ff_Z17+slU@BXk3DVfSDV<}OhX*;
z{O4oxcIGcVc;&$k4|aO6%Y)stY-3{SaH>7Diq{BN*=H}~KF0lw2Ru0F!6D|9|8Wlv
zNB9vBjz;(~&;PE%CnCy84^Bn+X&O5Z&U$dpgWo*3=)on9`rU)`9$fHX$kj@82l9XM
z4-YPTaE0Ceul|i+WBs}ZH<;Y?;1QEsj8xCt9^8rWyG-tRa6h6vVDivoev3lRe|qrP
zgC{ILkN7-g^2~$3n0)(`@i+4qjQ=oFa=HM$_TUXI7BBo>yrs?GgE%j&Uc9Hx--C=^
zbK9rzp9h~g)dvqgGNC!}DKgb#&t&|<;@3#d={R9}#wf-NjL}|v+v_rUk=ctZUS##6
zpcjR_$i@y-RvsqVy~x2NCu1(g+>GB^M4oxs{Eji77x|eKV5C@bE9^xPFUojPmc^o8
zlweXU;uGTqm=}*I-!94}*(}9a+WY_S)5@_@nX$YV6_`+26}_m${M+p)DOK3~-U|zp
z*ofzu5$SAR*uD6f6$fJjI)1^6crOyztm;KwCe^&C?nNT=Bu2{F$)pBjP4E9^LM=9H
zdy&i}#fv&j$p2fFsN8xH<p(e7GyjqCr-)8FKqKZI7#n-h#EYiPTQfFeq&%B@(IUcI
zdeMq`{%CUtYs0*4B(|Lw?IWCO(vf*5Mi*l$qrgbXY1BG1@50!Xu^VG|MmM9!3$GVG
zFGMdCRwyl9uO%;JFX#&yG6(V*HD{lgJitB!BA!7nLd-QUbS8!ueVBw9doWVMo?i5d
z@ZOQ${w1RHWzvtazZbto^dkJBc%aw3-VI`LuotTx=4Yj$e8R>sMml6;IFk{KBfWIY
zj(PIN=t%4sCS$!A$7Fm&pWrngg(c6)UQF?#r-WV-rg|~Wi~n9*bP3bFnBm1uA8z?D
z(~DWuT|W4HnC-<JFMjf&fe&-N=Ks^Tcrm(<Wu6!Fy;wk<ur!Xs5+)11Sj1$p7fW_I
z&b*CV>9A7lQZHJ+th0=9IpYd1Rx(+|xY~>LzgWp<4V!DdSjS{N;|4D_GD-7dlNXzr
z)0=0>|Mvu|6gJ6L>NGF5d$EIB>O)2!c6zbPi)UW^<;89<_IPp6i~C;e^<tkFm%RAH
zi~Zcy$GkYs<N)JA#zS5lW<o=7#EYZM2c9-Z<b)R|*}Om-MUD7VUYusL{Vgk*<Zy<~
zvyA7w_>IZ$jOQ82XZ81HRu{bp&#)fLXTR*l6)$diaodZl>~pkweDiVEYhEmUUi~^N
zHzH|odhyj`-iP1uBDW*yb;c~)mRX40r9EMd@Nl-}ffo<GctriS$U3x^{lhU^lkH}4
ze@1e6%;X8<Q^t0-EYH38+l%YNEm1yb_fuYY@!E?wG|=lU|9H_XIsT;=ub2=ghXpU}
zZ)xZE;$NBxFYNCar#y)-P{RHn=lOvSin(eb^CO#|7(X+9VWcX3^&*|mylSLpBodvR
zy-71`1~waIPM^t#%s!O%p^Oh%e8@`kvqqNUK4kMDyAL^h$jP4B>Zk8I-a?0p=kg)9
z4@Fp<F)t|(ll(s9^?^(Z-!aL@Sf#GD06S2*1(_6LEbK#U$t(?96ehi>55-uFiFks^
znzHFj_)wCTOh)UzcJZZrcv{g~e58f2tPkaUXt~^y;zM~KD)^A#Lsd>yk<sqM=E>Gd
z%qufi@!@+W7Ao3@IOef~%u%CY^})spamNqY9n1rBlHz^%^`wnRz6aK2$<}H<tUM84
z-G?@7gexhDi9R@eAX0;oNKGG-nAeIZwS7pA@P}nm>iAIChk8C-JnQ(u2RhA|O59R3
zJ(2os{>a#2wWXmCjeJ-$+tSj9#y(8FVWl(8n)%Sgho&?-W9yLOx)e{?+=mv_-lyiF
zXB2{KgjPPZrb_zI)`y>c=<LI>v#ITTaQTqxL-$jb_C9oA(vh(fBk8>|#*(Mt!{a|K
zCkxw&=U;9k?BX+D$ll$Du0GVvZ|&y8iis8qj~gYpeen2DV^s3JYmR48_T)I5=!4|L
zAs-I=@aGAOOntb_GSdge2h|6^4*{Qf8u=(6f<A<N_{E35v?6@CS3SOm4?TU*nH!8@
zM)Idv3PdRM;v9PW(8q_Z>*7cu>_;P8+CI>SK`i!X{MCm6?EKAbun$9g=F#ON*m)>N
z4QD=#@mv1nKw%_%k}}$dF+PmtnoQv&RFiQ&jQ3#zixYjA%!KqwOqA(X;<cX@o9e?f
zAEvW7Ba-%8qo}d7=n~+=9NPS81bx`z!#p3Je2&X;*0PaG?`N6s!vY$|gO-JiWe>+K
zVzQWVi4RMCSmwiWHdoVxp;|q*te}bN!>Pv>O1R30W_e<Xto31?4;$!OQ@;+GQDNJ9
zP9^rUG+b|~8<m5^Ng3;;`LM|cA`}{Lvki47ZS`Th4?BE_DrVnCGyIW-2<bb0u<x<&
z^?~><nj7E6@AhF2o5V?+)w<3;ANI2wc^+VL(1+{&tYp&3Zxcs5j`(nt=BEz@T3Ju{
zaMFk4%<JrnC*>4P;0qQCS7`<^Kf`#I@f_oCjK4FUXC(g%OfLFxDWd%0!)4}IBFezD
zB=Wq*=5-%#M07f)`?e2vXkU^LBjGNMoezaX6c({6L+pLpl;+t|(_0_-@X&`xG|6e_
z6p>ZLV;VcUIErwsu|1`QT+H^xhp#?7WBwQ8b07X@@`CZ5kB)0FJzp{sdF8|F2!G?l
z+Xz1$mHj>Qe<R9&Og{MVF`|58@|mXPUJGSK)kr5I1J@@#BPmfLqB1*(P>2>${fqS*
z&%_RyMT~oGD%se~&6u6>$ZdNL5jjN=$;Ej2j3s!>k%wdRiujI6KE?tf@-v~VGSUmq
z*4PS)$UG;O$e7udBGj1@@@|eRDx#Q(7!jenm4=8IDgq*kizp$Yq=;rBnu{nUqO^!a
z5l#_hM3fa_7vT_5PDFVTu_EF`R1i^7#P=dBBF0bcREeCMR<0~!)Ea?E6-w^x__J1v
z_}*VSH0*7sK%9bAgpCtk@7rO?8e!KOfue*O9pgn*6;Vw@f{4){(+_afBArNeE`kW9
z^^{7jA)=;;A4U8mB1uFo5h)_-h@jkRi%4cdoT~J^b1llYu84Xfeh~4k0u*&&jX-*R
z5lw4$q(Ip=pjZ)&xZH0AQKQJeF*m9S^QUWsrXp6KOC-I8h?dlWA~X@LM6?#sSwt5R
zZA7#c(NRPv5$!~@=Y$<ZM6Wg5NWoI0<D?oLr3;Caze_}_2!V?zw$|*lV~HJqW|Ml4
zoV$wXCPES+vp95mq3$BwB0L;R{^DA}E5awD3Ma3#RuDyWSSyf8$rTZ*2)~Fet(@dc
zO(xvap-@1i|Hae_a`VYe7h#C#E25u>u!tTadW&?R7J7=H;p@eHLT)rnl$^4nno}43
z!h<rH3+gZ8R}lk64C0CnV22VfE71^;|6n#LH%d+!PG2hw6ER%G3K1(sj1VzW#B>oe
zXy%Zoh)E*W4z-UFad2_Wc#&SF)`85iA__IFJWfQ$e-n=PvQJ=Q`7dFj2r|nJvsdhG
zpUlovL`)SijXIw_DRw|-*Gv(!IERHIW^?}YMEdufYYy|djO*44<UF5qu2HAR0?wI=
zTO?w!h$Wo)GMe+f?Np_uY!YA2*%p7F@cX-jRWv<B+!JwM#2U&|#C{P6M646BUc_b^
z2oW1-^<7NZC?btXu3`2QYlW@7?3sGmH;K5jR`{1p5!*!U60uvvb`d+A9e0XYTHQ%x
z2b;y3ICDBX5>l$WwvKy5<X$K2W!y)FF7HG-DF;P5q6fc;_+7+d+C8YmCeG6$j*2+O
z8J?sz(u!UuG+!s|Yg(De30hO@1R|8}DfS^wsm_Qv%gKqKqpoA|yod|5+(g_Eagp|-
z{}L{V_=Bd+sSeb}%Od)(6D|*_NtL-G;wlaCI^miKGD%;vP9VG~;ue>3n`%gTUQD30
zW0rTi!y+~LE;+0dh&&MSP{aojA4NP8@u!FvBL1QMU&Ip;f6<gCbDi*1#4`#b?6qfC
zBczady+9=vo!RMc*5CEAQ*XZ%@k+#d+V0j1ueq!@BHr?d6kjjAqb+*9KsiuCawh(-
zi2p=TCZtdf6!l5OXSx7M$R^>7h_AH9C1jL9-Iz{7ddX}irB&9O9UCQ?!<T`Pl4p{T
zSwa>zX#$W!4Ijw$oVi}eE+GeP)DpgvkW(@{Gna(ik~wWCPij%4mzDBJpoEk&VLl1@
zB@~j(4lE#H<9cDes}>bkP%>u@nKU1!yJ{U@FBr15h=igNh?M!+Mwnwn6eN_AP+CIo
zA+F*QN=R6=)l!mi^m{w;G7`#4s3{>yLOBVudsu7|>=Mc|ufUjPq^+WaN)jqds3PHe
z304WO$2&;3NLX{i5=ZSFX^W+9DVUgdX%dAU$1LQ~^J+GSgsRixC?raVXP)p)p~`HD
zt0p1#4-3Usm$0>v!`C3C_LexOgw5kDH6-*&b`lwLEwz?}A0*V5K)kkuWF{$$q|}j6
zmw7!#y4fJ{M+rYk=pv!3ga#7CP+}tqjhQrL4Cak)BB7~-HWJ!OXeODbs#0jdq`8FD
znCMxbGPI27t(dfyF#7M*Z=UTWbdum=y}g7E5zme^OmgDPPZ=71&5+8XAR+oo21@la
zo1G(`H-FF7O+t4Gs$?EK=$6cL>gX#ANrH#Dm(ll4r^9b0%*xECCbmqJCG*P-g>hO3
z^Pob%gaFN}o{2#TAqg6VbkVblMU!%Sy+BCcoEQ?qlKB-%561D6ZNz&^<{NMd$S5eI
zkAz=1s;`9Q5>`m)C!xQDUnLBXFonK^kuXrgAPHk7jFa%}wq-EmNC`tE^sFC0l+9rh
z(w<bN*x?dJuyQ56X^vt(T0-lF)-jAk$TQ!(<nc7JwH=?M91|oQJQp{S>c7q+77`{&
zm`roBtb;z;6`vkOpF^ifm?2>%&6CO2>9i`hTi2(z&7!$V6I;S!33DXOm9S}E_Pigh
z^CZlVv#0BABR*fk0$P0^tqUdm`_X!)k7e)yJDG$_SYJlVRzkt;mKmSo2)iAOTm7Sb
zrG!-yj!8H!!Li*!Z`h<mrB>6-m#|jCItl9~?2)jS#)5`k!Zr!pCA?ZMq)FJqWE10N
zMtj&nQCpc4>DegxpZGdEB<x~krvx%vrN$FJDUh&RLY@r*xm9A^Ct*JgM|JA~35RG;
zppK#nXG*HGL2zvlj?gmSAWYjJ{A#rwWq!Ayos<()|7?zeU#e&AZ8<676ip`yXXrj$
z!aWIRC7hFRUBb=-wzLhxZxYT+xFF$5wdCJvKM6XBT%=M&$7PzUYm<pwqUp*C@%wx2
zS0r4OaE$|*<U@hT4GA}?pbbJysbqQq+${;WCG$;o{jMe5p}u--BYt1P0|`$gJf)g+
zus)RVr-aAMA4&N7w}W0$7j?9*eA7Z9s<PvmgukexB+#i$^wGHb3&(Q_f761Zext>>
z$?}pWnBsV_L0BU@(rpw-85C3VwS+gc%%hUtQl5TCW*P4!yr(%pQ(Z!o3@zyRK=Uo=
zpzx6<QgV_%T`ciW5<b&@9+UDV68lv`I`*g7^fG>`V<VD*m1r5uFT`b$QZmZOBxA(R
zc#5Kz-%*KKWMq|*O-6PZIb`IMkzYnm8M$QSm2r1Q68Yqo(bw;I^J79D*{oy&C;U!E
zIlp7i-lU|B!rX50j&e2IZxkrDkc`4IcFEW+qlk>6<R+uMjAAlkWR#InRt98zJYsPg
zDJ5n6Jl|HFu>@nM{+3l!Eu~}-mS$|e&2r>uO1l*6m)^<Khqx-ps3=2}A<3vD(?J#;
z_YHUTs93YIj4Cn`hq%6%@gp@~hDAoKj5rxq88u}j$*{@TIMR|Jqbd`-3<r~V#^nWV
z`6^heQC}6bB{EiLBy(3(tdn^S867@YD3Dl7Mr|2Cu%0X<MMgatd3sqXs*a4htT$O~
zDN!xawZ;@Lm$w$L?I2R0qjHtDHIUIzMn@T)WHgfD{?*c4Mhh8@Dd+65dGlGD$Y@Ff
zk<Ut@nT$U^Scp&#EoHRkOj<Dx9&YAbF3r+LMq3%}WVDyz+-O#^LxdD5WFynX{+3v4
zXBnw7{<B*t2-Nct9()nsg?+lp=q95(xvh=!vO>horiYqY#YU!2M)k60w)0}Gc@`vH
zjB!j@ZjoguGE^CU837ryWz3Nglo66KRK_rxkTP`I&t-buJlzr?ETfl<-ZEPCHZL(0
zddTQ0qkx`BLEk9Q<!Rj2>U82do&MTaMn4&YsoeC@4gHCGSI4FgCia)jvrm7OF@Op2
zflLO;xb$y^TI&*r$e1N1p8Jx4P9`5t^Iyhz853lTlrc)i7#U+}T?EV{Sm|Okn(Dbx
zpv-A69Y>SdNUXFrmW~9xLPv(mm?UGWjA=3^6NVC78j0jtq*vk;GB*m#HVTD%Cr+0!
zLpIO%ql6nuN6)0vWo+9hoZcuL*Aj2hdXX_t#(MIRF<-_487pb3%UCF5k&GoWmdaR6
zbHktL?vtp8%p)!-H!6$n7N~!g(QwFEA)A-f-^SN_xzW6auBH}AiECu6W#aCh*fUo&
zIj^G(CG#XtI)`(kj5HbN3Ptabu}Q{es+ElGvU!6svuENK8Pv~H1C_T%2%S+$In%kp
zQE7tOsnAaDMk-~GjJ-0vr!6fM?30n<Ps?#O_scjS;~<5tmcufR$T-COd1EUnM`iq_
z$5S}Q<Z>`!T$F>%6P)&>j8igB%Q!;|TtOuTXQ`@`xq@f~zsdMr#uFJ&Wt^9BLB=&1
z*JTWM)VoOg%)L5SXsl_0(B!WkUv;VDGOh8Y4hntCC0vy;akWEP=ExOJz9HkLj0Z9v
z(l`!w+>&um#(fzrwdC6}?l8&iO}@)Hlen*RosIVRcHQc>JDvPU#-Fq?hLg$RF)e|(
zx+U`4{wP)Fkh|`GOC8UsQM7x@crW9*jK5_ZYm)Msmeo?n3mGqEypr(`o1f1llPEl_
z`(R;gx?y!=(u6lM-crLG#DCh6yk>75(*KoFt9#wgGQLm}86T+56%#(n*tx`!uXG*a
zpIEV<O(y5Bw6)fAL@7w8fXwuY*)$?la|)x%CuCHRNkL%+MHFOKkVQdm1$h)?RgjHR
zRf+%BIRQs}b_F>U<Wx|zLHx0b3Avb1O{%2{Y2^~~D)>$@d!T><s{e)t@yAak=Tneh
zLGvalW=B<zr>-ujppatrd4=*$!lDX_DJV;WSS>zA0Th%{Fr!>Tam8#-2?hQ%p+%Zd
zt)8Q#f(qf}Nww-yyU3w5yOmMUxm*I7<rI`xuzh^;hqBHJoEueu@~o_&ih`dMG*Ixp
z0*iv$3X&C!Z)%NI5YN34r@*SfreIdJ`20&9>jyjR%*k{x`OvElby|Xgs_b8lu{vWS
zqm!`)V@<{+##)S&c4Cv16a|z1t6Nt=Jq2}0&*AWwby`=aQ00G6P+y@1UY9Ctzgf4{
zQpb-92!~d#+fYFx1x*#)8d|rpVon2^RD?}vfD+>KFLO95$2X%MRuEe1C_SaFc&`ri
zPfJR!ptXWF)PYwkX$smZ7?~ze@G5A>ygg$F1xvnE@5o4`lL8m>R7QdEXU5Kq<kLk#
zR|VbJ?5@DW#2txUo+cbg6Ufb{K;$BdG_*=gWCawZFsh7X`V|D22N^>V{pBf(uE0<b
zR?tJias?|C^i<G`x>3Po1-%vYQ7}lsU<JP@=&PWgg8mBVjQYzx5@{ov*D;Yc_Folj
z?qzO_0~GV42ZezO?x&e&J`YjME5$gP3<`!S7^Yx2<<=>21l5+EiQnpwIEp&IL*f_(
zqnQv-XPEj}HtB-$L{6kPSxits=O<5$ltSC)6dGj(^A#*mFipX9noA01(=zFq`0`NV
z48=UNdL~s{PfWK-Ae^IMu3~QN6q~a(N-T+;$HPY>NY}E33Kl5{rjK5%n49^7fZ0a6
zh%8aeEqbYfWt?-1m9dn6zD>eP1*;V7rA=7DY6WW)Y@)7Eu$C4(qSq-{uVAd2*sh0p
znyz{6pnY|1>_!D?w9qyQiJOE5n}m*=ge?lTD%eJgi$*GYG+ikwPB*);dXGf9cI=>a
zs$iEw+i&7-1$z{v7>TdtM0t~W-RZkYn6ydQui$`!lL}5LIH=%|f};wKDL71vx24&N
zBMOqzM^o3)=f0nZ$2c`p+_fq3IIYmui6<E8(D>6d|7mF}_?;%3WM1{?^W#|s=g8b7
zP@sOGik;^nxTK)dn#2nVE-I*zu_GOsPUatq`C0WcBatf#t}?&Ic%AWvf}1q53U1SY
zD!9ku9R<za6)L#WybbWD>$r83K*v+x=O{XFpFYVxQt&4w8Gt(j@R)i-!PhX-^}thw
zZtPJcgrXt*rQo@Of_@b8)5}%yLctUjQ&s$<;3cg)6{#v-DR`}*rHWQ6-q74|Tbrn8
zs^YDJcM9Gs_?I>`72m7)Pr(P;kX7VV@lnAix)iF&s3L#U=+6qiPz7kc#Kd~0rpkw$
zr#A_YHwo!fq*oE8BFkps{;kxKn}rNy-cC*0EM!uVnRFFdRr8gR8{fDlJa!Su#^&3d
zuECpyrkjQADmrf#w9P^;6}eTEQ&C<;9u;|26jHIhYV@7wuJ1^6(%Uwj`KU4~x_xyG
z{OT&8B3-JJLO~T|5-F^j?>{Y~qNs{uDh5P5OE40NQ32+~89(kQMq)`7rPwU3qHM&o
z%>Qv9w+bpMs;H!*vWk?p&S{&4<(tiSL_Rufwq@65;qqp|q9RsBEfuv@#Hp~VsH&ox
z3Y!YM3Wth#>e3EQ@;^S;Rd$B(Y_s{U#st-Ty<pT9q39N&x{5><HB{6j=Pg1)$JBaT
z1Se&3E46TYXOfEdb7DKUNUiwFd~e{PWv*nZjEWys{G_6ein=Q5srZ4E`7Y`xDyYjA
zp+5J|ye-1$cdq_qE^swa(NIMr6^&`QAG`K#5$NUhm$nEevpBE4aZS6KN-s2QreaYY
zTXPk!w+M66G7@jWJZ~QdDFfO#=*Rk*g_B#;#CTYz4P#rzc8u*AJ1}-s(TNFpTK8E6
z6+f#OrDC*-Kv~<E$JWj&x~S+%1FB-Mid%2(-Bq|%^i$18D?KW_D#U+k(&IfoA}V^(
z=udJ;DrCw*MNoyJLRH~sz34I<#Zs6)IJ2B)l8_2bMGuZ8Q>S?{#7e|q5@y`E%koX^
z$!>!tm<fBU=)>kOk+gkP^xS7Fdc$_DTylREJNsIGRk7|s!2y(siq-Gq2C4Y%men>U
zVRPXeL%1zN8L3gjm<(qe!8np}fs{OkrpI>6)sGf>n|Aw9&9N#7$1#pqF+s)HhVc|8
zs+h!lGUKc{RuZSFm`?eqxUFJ_ikT|rt5`s5KPq-W$VRVQouy*7iaD&zWt_)2rI)4D
z3JbX{RM9twqsGU$A1l}wsaULHiHfBv4yZV&VwsBNDmJOutYU?VmDEfXYg7z+6Ss=7
z)5$pE{cAbaQdg*`5|y}t7Sv%Y<-DGTHCs)34SKaQ){PvM#zhNPt(UF#Eh@IsCh**{
zhl<M^yG_LoQqEhp)7H_!mSL5n%`DqaR(3JI=wjQ=ByEAE{!GhW6@>e!`R8r>nP>XX
zdPv1#6{l33rro28?TCt#)H$y$M^zkCade#}S5LFa$5otA;TvS55ZA{_4kVsYaaP48
z6@REWN8_mCB6Y%8$KB;|zpFT}qR8$#BQhl}Uu(IbLSJp8mR87M&0izw`3dV~6<1W;
zP*LJyT$%Qcll`q%Ra~R>xGt{2Vf%F^*DqOeY&QG+CU?S5b1ipN+*R=}ZMiD$(WVy@
zODp27iu)=asCY=Rvu%%5{7L)L9m}f2j>jsVQ0opmNPnv0nTqa99Hbvy6#p0P@G6Fv
zihr)+Zxt`N=l|gxDE4&WgqO696tO?O7*BWy39o5z7sbD!)s&@X-T983TZMPDz0d}=
zRTzHVO89{`e;W5Z&Mba>Qt_FVupc=x+P=^PxM}%HyNcf=G`Q)R5RdYs=sF9L46H=^
zF}_3sg%b-Lnf%D?N8?d8%7LEvBFySXHb1`KDrBc@{mAJ@x9JIF=3+4q<K5dSx&8QI
zs}L+@&&v+`sw98sM?OFD`!RKTLMM0j0)EW3+3rkF=(1HP>_-tlbUzHLi66!M=-@|3
zKVtlVA2t0*^5e;sq~d;*_0#uAC_%NF6I+t8lpm%2DC5TocZMDpa*-~KE<{+Klx;Tp
zuGPY%0%Ju#Dlws`%6?Q~{ypQm`*Gj=WBrKp|L=KPs~<M1$ts7P(ZLwcNMZt$s(w^s
zQaz$4GI282U>rHmQOl3oezftMx8L*;IN1++6=@4UQi%9b*Kd9<Zs4bzJ=9}P<_}Ej
z`|+b6Kl#lsKS`uOq!C9ojd(WpqX~2J{N~flkLD3hB9+yWv6UaK{pL$cNg3PP+Lk)D
zk-eQC?fp<D+KE%>yH)7qH+MD)UO!xZr25fzu~qQnP&uKqA3w86O65+;q;&D4D@PIU
z#-zI+ZYCbaN$+eF<?}=IL-OPDqFC9FiCcw>-J^&reyG$ftdKZqiY>rA7*RrgXw0>}
zmc{XP!+!Me<4h1|gXrl;FF&sNaovyJe)RF<R!s76KYpP$`Z3Ut{za_){N{J~zxwf}
zqN6`!+dWCd2QcrHsj{gTu?}MA!Hh%v7)sM)gmoC3M95);A0z!3<;Q4>?OyG&A7lI&
z>&Fs5miiG`mom<e2~<yx9nVO&Ta)~l%&`mnnBq5Yz~)4vrus3BmFa%WU^3H>*-U0J
zlJokl!tt%<>x1WVs$b-UdDJ>NVLs!7tpe3#p&yI<Sj-Mo4GRA*h^4U1kIjB;VSPE{
z3O`mxa$ZG?-H$bXtR=-;Y`q^F*k>JMsSc?d*^}}=HpMI@&5unS^_dIZN^8WAi+)f+
z+u8Fh$L{cBrysjm+3&{zKXx<U<EJ-qJNGiD=Io<&(bh@iAk7dzPO*NN@i?tVCPx^L
z`f-d2Isf#<b&~m<Y^h{YDBav7r)fU;@!dAFqhhxS=eQ=n`SClG^L|`lLam^d5@xuR
zO1*T+k3V>58f_EEyh0Oun{bsqsZr#1!;hPOBm_`3fLngtrp+gS@&VlO<1Xz~0dtqQ
z=f{0Np3@Dy9}g(EvbHCFyqjt5UfurCk4H2ow+Vmx@tC&0R>{-132EDe@0&Zw?WrHn
zc%S);Q<0K;P2CrM{Ntx@7m+!DmwvqRBYgl-0lcQUN?q;8e||KW<akRvp40J;8W`*7
zJjvm^82{c6`X8b#XW|DxKKhX^fYTWrpZpjc?f63LWkAAbn#nIxe$MD1B=akaSXyUC
z$Bt`jCD6Y+GX&s%=y;UXLGKcc4w(P<%oxC@?UrqK9WSFD@}~GK0b~szTL9SuC=ftu
z21kwnat4q$fbRmx6~K%4IWk{%<R((45GBuVb>s<v@ad-bZ|1GMiTS7}^CsqJv`lss
z44@E~RXBhm0hFub$T=v1GHH0Q&dV&0V%)<q0dw<50L7V<U@RR#$pA_P@J_5lu@uT~
zDOe_evK&jC0*Ms@s2ISW;g+}nDlr)}-a=-LSX<=)RzI;+Vf>!a5<qMKiRDr{l}{lb
z3f2H@oXXBfiX(t{5)0ZWkXbE&>H#zkpa~@mAnB{MJ|hul0JV$SYcSR%kqIfah%irP
zOku3USeLOLBYFN1z;=5w5z6hy0Dj_}8!$FxY{W>v6q7^K0DjmIH!^5qvjCb0&?11A
z0Td3RND!?8XdS?X04@g5CV;j9%nM+C0JkgI+6ABoU<A-UfDQq444_j0p#U0=w^3Fu
z&Q_t}4nPRt=Kwkf@N4#1Zvb65syky>M)L1Q(>1f5h&!Tq0_btjLW++SF#w5)Ei+^$
zd7V~@Rhj!41B@gFndq6Jaeb&tZ}-IgeJm~<K)(R8tc&XrK+gbr1wdk7#@>v57=K~>
zv^*}kuZ0}uue0{2$_FqYfPtLzRK`I83=d!g^T7cOVM3)34PaP=-+moGGJsKRP7Gi)
zlW~k=B0giOR*7a?#z&M10rN3bQYNu7IigQtvd?Fo7Ql4oGZ<$FFq6qFMoRcPC7N(f
z0COYCgjX>O0$3QpDO%$JEDB&TN9_q<NdQX&*crgC0G6@1CV;g}mNTxP_1Mp{GJsWV
zQqHT%p_w_*>jGFGz?O)<fyqY3yy;`pm~4u~Zf26>kU6YdnQx=H8j0OOYb}@A5BWC4
z?GAvj(JRxF$ld_<1)#k$OWYs8fdCG2s$-F~hXObp;YR{E8sW}l=W*sI7*9s@KVD}2
zB`xku0KZdL=di6gA9pqY!gGwj1(0F7DW2!p9#yOhx5ixx;1Albc%@tp;0o<O0Xzuc
zY5>XkVyS<w2XKu!nP)%8-QcorMoPTJ<Tm4-0PaTgdjWX2neBQQz@q@Z25@=3IrM+B
z!@mJMrmZP}rvW?*;0=p^G5!<D;W<s$2!BD#?T*=L6kZ1KDx$v*peEfJZissuQQk3m
z&v-2*`oD<&A%Ks}KQVre=wE2PN5_84Ib9IxgNWj;$iSE_i0B|P29b$Pa?27#<_Pb`
znPg=%U-RhfOmakGa|RK7nU#{{jwpG8$jkh@h?0*<e#Qbp6pZMFg60D@l(uL@X&ywe
zAYy_*5XFON7Q{=RwL}mlgGdR2T3RZI(m})q5ywf&FjfqrER%APe98w=A;QCt3sMo4
zf~d?&6~^x)u@>@NZ}zP<2wM;}Shok^2qKYre8jUllLV@BM5z`;`E&mpub!$o`JL1o
z$ITW|s2N03#IqKY+KkDJ3qm#P1W}iHy&xJgF%vSW&-f$bPmB$MxI5V_s}Y-x8JjRR
zWu&MwN%p;=nv<VcTLjUP_J7ugFt!e&O%QE^XcvSMgc?NqAUXu$jil`ugb>8fL3D~J
zt{_q)e9X(NotaN=oTFP1U6^-`#A>f%x-)l26i*O69{;ard_jn;ON?^FCtY)Mm-7dq
z2Vn#ei0Hu}Ld>;@g67d-=6!<rg>sJQJ%i{K;k|=+#aEoZtPEi6$JjsO^J@^RSD8aI
zkd;9ZeQ*$C#+s{mXb{7AG7RIW;fx~~TQ$o;4x@q?&E^=!u|bRrVtf$P=M#gN6hzkJ
zaT6G81#QoF#!U`lW)QQ2m=Xk;6s9tn#yCBQ8BFMze2SVK#GD{@1+hDbxk1beVqFmH
zgP6}{Eec|B5DS=7O%~E}2-PIAB#5O!tYUo`;|j**5zj4+bF7STTEDBAuZbvYsR@t%
zH&Ppd*c{O}GD!<!Q$(TFN5yRkVrvlFg4iC>cQV-##817<B|u@wtC&5J*keKL4Psvq
z`y<NXAPz7;7*P%dagxX72rEY;I^6?MZpYa?K|V}QMPg4gSzXe3E{NZPxI+shh<@wh
zeh=bG5G(gs&Qs4^vRq)i$asnI55~)k-A)%IpR1JQQQd2d*BNgx-ekPRI3vI9b`UwH
zSjm&ljky=ZKjSP9gIH)2?lV4Mq)(lXg7`Ct$3Z*^B3lUALwFj*vmnlF6Qb$+e;V;1
zJ_YePh`)n)5yZbi{71RbUKhlhAl?Qs;Ya(cAkq%me|ztE9mK>7Hd3nHv%jOsuq}?l
z`ydKcu+`gap-=Q=QtSs>%m3IdhwUGUe2CAsA}Q)v{FwW8%K^)mAimO`xx{g3q4^C!
zx)9Qb&}3ZQs1PzRq2!ZZ+9%dYx@@y&3}IrUgiIl14q@=Rlq`(h4%@Sa@JA2J`c0Na
z_v|@BC>R2fdc7<;L&z0E?hx{X&|{1vZwTLoQ0H$O@q8hWLjlJ8jARC`*<3R$G573+
zLZEC5hp^$Hy=!Yn*H(^VA;eH_VdM@2Arz<T>4?@*B7~A5NFm4}lnSAA2(3eC6GE8~
z%7)M~gg>_l8`7-hLWmC`A%yajXPUJFV@1YFjFlOyFn-TyVT@&rW3)2b7%3Bb2#yG+
zTkfhMRHKH3@I%P_D@t|7<PZ{>I2mg&Qf$o-l9<<GtR2zsH?XEKuM<(~hR|iVm6FsC
z;l~gfv;GrfL&gS-owH;o9}11wtkl!egb684nKTQbc?c~+pg-V~NIz8&whEa)<;<uW
zP1rVsb|G}7CfIE4L+B8K?X~6S5Y7*=c4X|txM6kzDK6%zAqY%JS^e2c{+&5h7sdir
z61s)ZYIbV(5ZobHuV(Os=z&#J@rICPyFkGg!lVL;L`rNI=vz}I1eL~4Ls<>}5ZceQ
zz6;@f2!RlSA%sHELbx5mZ;j*i5R4Fxh3EitN0??8O}P-g?;brv=oP}u5N3ri^0~ct
z2%|$76GER5ehHy(2>n<e%-ElCPzb;NW&bsV0c=vLft)Q7Psm0%B!r<M3=3g+2%{*U
zU2!A6d44NB+4iVmvXDKNJhe-4_bX-{8^X8{iafVZV;s*om2m>CAZl_5lQ|z{wB^o~
zEK|O@b#+jZ()V+OlWjz%vp6G!N6WH&YVMdFg7>3kd{;-0u8uh&%ne~4wRd&41(adm
z%*G@8eCpUAvJxTxg&|PQDU&53EDa$ogiRqV3(>*6j#VM74q-WSGFODKlGfU;xcc23
z!i0jPtl_A&AyjYSAafm?>m&XfLfFXu6lE>v*c`%^5cY>~AcWXUaa%*!7Q*%rcHPfG
zy|k)!BDw7dVJ9h^!*0gYT^tqKnBBN1giB`}dqdb4$)85^Ah+}=O|9&)hqx0uuS-76
z<VXmV=gHcMsejo|KFfGKgcBj04B^6?xU(Ug3*i*=(~M^r(<ekx>~GXvQPzu89FyN^
z(lWWgxMWLKiv5H6l@P8nxlA4F%1%0kYpmQ1;X0EQc^o&Ge0XJ}*jrTLn{h<$@O-!%
z!o3jghwvbTze9Kt!twr&hao(nt)BTK+LV}({+O2JBpZ=uw5JWT5&tWMd?g*<_;ZdW
z{!a)mLwFs+n-E^HXX3f|!=o%sx7f(%ExTo_9!;JVUA9aki~SqIe<2jsP(;HAs?4ht
z3RyLie59iD#eNFmGwWYM_)6Jsk4wj~Su~{AOf!lx17kE}Mn;Ot#3VE0f|54MlYRyw
z%%&l`h8!Ala#o}iWRgq6<=&RujCnNVW%3<kKF0iv1=yK9DPbYz<EB~`wY3V@vUh)B
zFRG!Kh8PXdP(njV4ek~li)&bM)V^qf<>isMDs`j%8{_&pZ1w)Ol+sXIL!O+rE9Gs3
z<usJnkg7q@@Y^|C1r6;qwAWBkLnRHBHB`}1Uqk<z_U|=VG&nWX&=9L3PD8wg1PxXV
zHqHEU&#sv-$4SVRUYQ<MJSNJ2Ewe*2pYNr#RXK<18g6g3kXem-GJ7l$N|ne_w?^4&
zYN)zhsLN)OhF05!T8y<BlNnPq>`P6is5%<{x!s;fJq_9+>kk@Etcf{YvvPwb_8&F;
zq@jU^h8kLPZjCfF*3eu-3pSf*XsV%^Mtho#>Oi4ub!)qKCZW)h3Su|n&tsG6bSxrm
zG*CU;M)WMX5<6(<NbS|&q7L_F`16gWk<+&Jx3~>=l8JxmlR)^hhR)P88n$cbqM@sX
zF&f5d=%%5&hF%(a(@1IX(0;BVpuwxbr$N!6Y7jL@<gnYmXS*Pi!**fScA;$N)S=sj
z8QX>FQO---g&rkSWB0m(8bTU$4F+|EhDLW&r^Lj**e(pq?EG`SE8`CH7kpB}8hU6b
zyhG^8XxkyQ*&+1N@Qa3_8ir};tDztDiH3n1%FTAkZ(RLpMrAd>cK(&>HYA?NiY(4S
z)ZRj=$x+V1RLLE}5E`{C&h~9mZ6jR6HH^?OQo|?>gVH<0RZ|D<5OQWuy;>-B8Wp!l
z7_DLb4k2R(=Qs`HH7wGwSi=Mj6E)1xFjK=M4U;uY)i8}#O8(T-JIwFWr)YSZC-vbD
z;S0Bge)peFi+86`b*C^(!)y(6G|c6`dQ>2_*-pW|(tKQD@m|+F4f8cD;HZT(c5_{n
zn>&-!vr{0xM8i@I8#HXxuuQ{p4XbIAD8*K2Xp_$Tp8Rfy)a_}ml{9>5u2qa}KD(B+
zcdpTJ{JCqbhIKS9-BQ<6r%_FI3WRAIHfh+RVJo$Cr?8o3T1@QQox<^*!u6d(+t;pK
zy964bw@2(dH0;!HSHnFGyEN>kJZTPV*rQ>uhJzXo(Nx#4pH|TCF$cH_MKh;X-erzv
z@-AU%72&XkBN~p<Y?q2Dot*THN1;wai(P`cOE{+Cxx3is2d<MEPHDKJ;VSJ02a286
z@Vkcd8qUy&?-I^xILA5vMt!(T*tpAl7=vzpE@-%@f#%E~8ZMFlF_(9Z>+mjNb|z>4
z4`$z9raZYO*EC$$a6`jQ&L`(=SJZ0PM5ptXhHysb9q#j&yM)^s2$g7O^ll+$w{Ty>
z0}Zcflhp7~!y^sPH2kIEPYsVXJfY#H9cH(X`9|tby9Ifs>t@H4uDgXnyUn&g*YLN7
z7qtAj#6qK7l<nl*LfUTOCC!-*&U?FsS2PKiyC@vmExgt6PQxb+pEbPaBp)<<)bOtc
zxt;Sr>g_|WH@gMG<r~eWjTM|jvOB+M_)68Q8Xcu0%N`+}4tmDmVX8B|j^cX+3h{e{
z`g?@bjHwxQWYV$2z)l01$yrA$1Fa2Y)saodavdvlWY>{HM>`$ub>!5MONU*DLq~2M
zd32Q0QCde{9pC9FtfPo-uKIjB^6T`RHfXx0?h%sa#}?G-$(#gzk5EX*p^Q%R*_e#Z
zqB@FEmFQNVQ^n{Qzek`c2OT$7xyo)fTU3&xh^*NoyeO1vxszH(M_I~EM`a!5bd=Xo
zK}SU$XZHx3X1Zu{(prAH$L#Hf*;A?ERdjr>BTk1^hi66R?q6IMDlwBY{aztfM`)+3
z8B%S!`7@tqoSBM3GdU(+M}m$Yb^N5Gs*Y+p>gcGeqq>en9Z5QB>2T_(p`&D5XYVLy
zzP&>Ey+TbA_X_?MF2YaST(xzG&&^gO>qybf=Y^W=6)v|-_3ahv>G(lMeI2RQqG`9O
zcQZA|h18yVg?Jvv209w*XrZH}jz&5f>u9E<xsE2>8y_yDPTDKb2GvxDf46IOCt>AY
zAugx$$X?;WUZIta);ikgXsaXN5!cH_0_9Kh@ZDaa*goOo!w%McLI)ikb^NMhfR0W&
zTsnMIRjP~*K}T1bFgkwL@u6dM(~i+ybadu&doB`oED@?@a#F8$r@^KE)Zx|fAcwQb
zKC|m`3QpfXAvbNaY)U$09fppu4n>EmBcLNl!?)Q*qwLo~PcbdtCmh-*gmhe6=K3ks
z*<-1o>CmaKHoE@UCp_CHZ0zLhp`)ixk4mCHSA(|eUPP#k?VYsV`{?*ZM_(N$vOA0J
z7i{|lB3bqeXQG|&-@C@T%+VRBV~~z1I;QFvtYe6d(K^P^pi>=mjMOno$8gSk1dYpn
zp=2lX(JTt|R9pA`La+S-Jq1T~9;;)Vj)^)Zv2&l5E~>zIQuYfIbgbSl5SdK*XHKQ-
z*OC3^WTr>9rs<fjW3G;QI%d$)=omdy$1HCC;3#LhBxg>4!fYLLbR2l<y0KqK=_kC|
zFU;4mK*v%Y%XBQ%u}DYv1HzDQshJN5i*+oa!Hss(i`8Qf2t-m22t5u6pKqs*Iv~)Z
zTd8A}jtmB(4XoC&M#p&_7j&%Eu};T69s6~x*ReszHXYk_Y}ApaW0Q`})UGJ!+ymxl
z{yA0HqGR^~A^kxi=RsjBEwKXvg{KFE9XfXE*hR7259JRE|8$71Im-38gL4ln|IT#n
zr8dqMY9AB`59m0k<2a2GEq@({bsW`kOve$b!){l;)~WO?+`tE}P-bVRgJ#jRkOv<W
z9(0I4spFK6)3gh{a4kG2T&Zb}%NeSPj&nNp929=j@w<*c4hl~X3h53B`40(khlIL^
zgo`>Z>G(&-ON!NTS;svc_jO#+aaG419d~(Gyr$!p4%#uU)1E`aG|ScLkU)5oX4DrK
zk=r!Gi=<Ncw9fT8&2_s?s(MHmd`Nhp<Drg6I{u`2bx7EBNNBRqT<L_5se2c>dhBqG
z{^WY1<Ef5kG~YhCP8<@RJ#hU+<^$Jr9e*=<!AQ!2Pp(%wUhDXz<Fk%8I^OE|SI2+c
zpYL>R&EV{`P)NVW^<D?zokK#}60<~lAn=2ZkF*c3by4V5JoO80Tpgpo>PTmpJO776
z0^Jg%H!w5JMc1`w>77xAxl7ZPE~9}=2EI37q5a=L7K8rPf+Dp48^~rLuYvCjWGAx`
zau~=-=3zk_o_zhSE0=)|hXv)ZklR3&!vcjo25K<LXCS|U0tN~i^zy9Ko7tSDOQwn$
zoX`GpjXNw9;-aba(jB9V8YpI<tbuX{Vhq4QNdu(}6gRN+uyEtB@anKo!oc>!!imEI
zVQH%55uuD>4o&Et+4eF=%-K@jKm`L84OB8v|A^4xi17O`!646>LS+NzcDt$=7=1)o
zctoIEAoH;S191kD4SHM|Rs%KzPO7{Cy8(xRcmoLrwjB{-M!SAHB1~wR`sj!-GLw@g
zNmT>Yxc=1{6B*MVHS18*K$3wmRimHEF|{%{X(yzvu4SOMfeYJQg^mh@bqv%s(8xez
z1N992V4#74hSd2-g<r-9{w=Qh27WY<cvSew!0xtA3Qdj*?xO<j@B@yTH<L}M#3*MA
z11$|SrQ(hX%_zxyS93<%j)>Fa4Rk+1_n%a&Himh8&_)9rj|*)Lv@_722F}0`149jT
zG|<U_Xh1UHGLUMZD@_;!f`Ok6bT-h%Kno#t*-_zxC;8i!c=)Jr`KZ|&_i_~LZoqB8
zL)p?3BfV3-l;JX$ZJ9YPOXL_I4bx(?KC%JDz^?`d7*GxP4Fn7X+4;p$K`xd`&l`sf
zXfzd%31RNisfAK?0~1HO48yz?CqmeRYCBNqNnJWn=w+bvF`+jjkv;}~iSWJ#`bBtu
zb|we9$PT2e3=B4qZn29lSXGY+uYVCb924$lbPh8x+`wW3OAL%KFw($m19J?FqG@Ab
zoPqI%`7qBI1H+C9^NyMKGh=DE=f{SQ33OYv{g^-_K7lH1V3L6o$An!sQoqmOoNQnU
zEv^hs3R9U(W1P-7gK;L~ECaWW3FJ1{z&ryB4J<M+pN2Tbd^Cl&owvt?1qM!jHVHlb
zd$N6Mj^jd`%!x}4ETbKsM%ln}11k)yG_Z>Mu=H_rTCP?SXa{(k-YG40H8?J;HL%XW
zdIKA%p4rVSBjrzzF4L7)KQ2r-&JX|4G#GE$#JHJp3nPhJnQUX+&Pd;m?xMMB;Fy8q
z)Lt<z`KEP`fxQOy(IPS|hYcJtu%Gz>#)FK982eOBA)liLibh+TkFXHNGoGNv(#oaT
za<$Sa1E1d7Z{&<UP5JcBLi~&YGS4!Wcw%{V()OEy-wm9nwPxV0fp-Qj8n|TOu7P_7
zF2~#cFmTPlb>^2DuP|OU@L{2)LKo`|0~3Z=DxJ5H^GzBKHp?d`-Zs!?m}N(<*gLen
zoVStBeOCT7@Yuiu1MfRpDLiEIh&sQFb;iFbl;;xzl>Ci>r(DD{1AiHK&YWV`cS-r1
z`HP71kAauWUqzJHv=|!}BxkBpj`_*&4g6~$V;Gsj_>X)He5J`8#z*R_^tR6i=61Fc
z`4l1RhuXdvsP))FBz@SdXNEBH=8laDWAF@HpX9`!eytlF#>nQ@V(V?BQ^*`fjxf&o
z>tqQdYZ%kgTTdMqvV}oUQx{R<vxo8ayJV_NPWpGl5Hks39?CO}qhTBi<GV2Og%J*;
zM;Q6TC=iAch8jk-gO-9}lntX?7=^+p9LA&LLXj{^Fe%Ddj4_50jO0_C3B59yc*!tI
zu~|A2TZRewln>*1I(y|XsxYa*STT%BVRZc7HgbFX56i6IhhYh$Rv5Lzhz%o-Y86KH
zFsxx5{%oh<U}9smht0zxNQ{rfCWKLyd6&N}-~1EVtPzHjNwK3zq}ODg6h`YD*~vUU
z+mg)64`I{~BZYY#MvAS=q#pJ2?l>}k4C5!Na2TD!Xb?ujFq(zYJd8$RG!COFJ2zq6
zF)b_kQ|MMA@f**OEwKd^8b+Hih__^HMP_#^nQbE_wx{tO65lS28yhVD?Y0x|z{=%g
z7FQUl?B)wY2;=84++iG=n^bv$EtrDNVRQ+jYZ%?wzk3+A;%0IRboSsbck+pRHV@Uj
zU}Cz0RxjssgF8eFV?i}~oES0_;$QDt{4@lOZ23mnv@q!S$^c`KF~m6RNSsbH$`?n$
zVAA-grDqtu!k8V#oG^Na&0~Ha->Nh%7~dz1U&81cM!zt|gfTV@`qO>?Fb0M(C`_MQ
z9lwTgB4g43#@C0E22<sGI)<~``K$IJVGIqUgXW+xjFyA$Ad&t|F@kv5{D;LTMk1q`
zP*&r@7$3&;FlK~N?4V^r7!$*oMDstZeRr{%{yw%m4H7c0uuKkPN*MF5+NlmxX(1@p
zrg42}IZ#-fGlBA)NqU2XS&ZjmYR)D9Ft*W}+F+R<#^3SQMPV#vvVd_R&4=8v6Vh3i
zgb{s0ps*#3r4ha?jOEN%Fs@`=#ke|*f96=$Fs@}>$GAR>4Pk6#P7a%xq|xfAnnWgr
z&0*}_U=k{8D`%B9&o(lD@^<Q<{K-2QcZRVmOvew}>1@^AVeFx<{%WDHm&v{`_A@yU
z(GSwp3M1EC)8}v)M>rGWHl!XWpD^x+@gR(oVVt7vD2(62_%mPZ#%|Th?zWu{n<tx{
zVLZ#&?T(EeX#YKoi(y=%pAp|W&WFtt4lgi{`skSc-qQas%O7D}4&w^#OC_y08HrqF
zaxIMO5#<Jxm$hxTnB0!&cfz<E#=ZZ?)OSEhQG8!7%aU`Bmn3NxW_M<m1$NnmC1;6B
z*x42dB0*5X^vrbkO!ssTl2n3%Ad(~r0uuBmNK`>`&N+kRoYC)g@!xa4bL!l4>(#6D
z>Q&85PgS*uZhu&hd3h7&RW3oJ@n$ss9gS)`rR$?{b2M&=uH6v$k3gPhyv;>vG@f!a
zlcc-EZ<{mR8;x2n_gj8{G=~4{d?4^4*B?PBdCXNeo6mmac_vDDF7U-@><uTq6iD()
zkk<mQ%}uJ7<?<zXYJKe*_fdl!KE(PkAb^ho$mv6z4;y4`l#$Da+&)b6VY&}_e8}rV
zFCTjQkk5zwJ|y{2&xZm&j98jjgS>D;K_3eFP}qk?JEgJ$Ns9PTlqF1b786)pAfqJ&
zDd|HgK}u)K%Lw8smQYTVP~L~K+g%j|Rul+<l>}B6SVbV!s`^k(@OQE$)deZ^g|ns)
zwS1`U0}qco1v&)A3#71)Aaw<Pv93&lAc@(jE}!jVZV~nPP-TphSrYGil6`3DLn|M)
ztaR2F*uaN|f~5G+x@amxDmx;0n!xmId1FDE2+R=Jl<mLfY$kYfA6f`9YNOLG$A>mP
z7!G%LAKLoR&WBDuboQaW52gRh%e`tHec-mn4gz=WaB(l(yR0|fZ4^!D;<K-Oytz8D
zn-5)m_Fa(-&l|Yk3f~jOvgG##>ET1qYzf~kn(2erhmk&v@*&HIZ$3^OLa$g*Px3+f
zCXwL-LHhXcp$~lp@8`ouJ`5DRzrX=LWL9xe`C}0sB#=?%X8d5md+d}L9qL2DswoVg
z2r|rv;XZsSIRESUEIW0CAcqz?m*z+s?ZbE<Civj<LH5D#L%;`x)x~%if`W{k<{q?D
zdMi<V_Q6Tbhmas)f%;qF0GHuIL~zrGjbAw{C@#x~C@o*WJ;sO6IW@Mr#tMaT0!ugX
ztnj*6;6xw3@L{s3?n_$Rhe?7@OK`uf_lHCm3Co<4-L|Pdd`+kFx){FUSYOQ``PPRS
zbSD|DWz6*P_A30&$>_r@AHMftna|!}Fq=c{!;hSUv97s3%=2N94?pE}&lh<8ch3(T
z!7Uz276=K+LLaI&%OGJ`?86cvueaUB=u%P6&hK3;ZDgLtKXI({G+yq*3i|LvTe4C}
zeipdOht+~mzQ%{Og8z~&`PGO23I1EQWStM|vw4Rqu8lry^5G%f@`7hG%V+m}xWN^m
zSjtu(4*PJ#hd+Gy(}%x=aG$_!0*hrNZujADA4nK>2(r_MU4rZuxF<VxuOQcV=G-sx
z9uRoYheJN_s!3MIKyp;bxjBc?V?G@B;e?P}706mn`fy4VbvnD`Gd`RZ{G7n^0x$S*
zQIJbMTo#0R*SD^4MQ~Qc=rvJhq^Mn24}SmW`ClJMO8hS=r_XuIhub20$A<@kFzK!!
z_XOVeVeVvixh+m2`6C}5`|!kvr#{q>QB%e<AD(k%mXTk^3m;zk@UIX5`S8kz*PIj^
zJa6brYo#$erJg%7wocBP|C^W3*kfemkdaeHoNWISG<T;IE8EYyH|&)5?UZiplu{ph
zbIHgp<7!4~9vQK_q`We|`aXft^1JNcg9T(1lu<%PNg0J?6qZp$Mo}3n^Q0#3vY&9a
z*(LF3KA(&glaczsTU^FvZ))Z)iC9WTX&KdIyd$Fwdy$qpc9)d9M`~Fa!*)sK1eO<A
zL10B05TuffDuPrNNadt6SycrmVYE<Y>XQXhbs0bGlK9NOVx0=LWYm^XUq%BN4jJ(>
z5@on#)R9qFhEqm@jLo~G&u)2-?UMMTm=@!YcRtQ~vP*Ky@W`kqBUwh0jGuF-=G`sT
z+%2uBl*M1!d=A53%1w4l^%r^@%1DvXSVj|eRz@QkX)@Af^w@3Ns&$#HdC4hPzV{B_
zEnVrEHFmd@A)~2`W-^+~7~3nAPrMiHmNxH}__+J{ZmETg%wDNCc1tZ~5MS+<+Q?`t
zW2B5x{B%C=<juqFWVDyjK}JUzpUPPOxA$Econ#D`?Y&r?Wpt4-P{zkHy2|J#qnC`{
zGP<)DS3U2^cwdIMhKsw%db?bmj-_+QR}W_SsCiEr!L?43Oe)CO{m|22MwSeTMtGXk
zPsRr<$L0D^hI-Z6N5-AM?5${&^c4~c%LUyB8@s7IK*qlZ(?4Q2uX-4$Hb}O&u?>;I
zt!0Dhc=tWmuXu<<W&AQR>Fc%5PedWZWQ@7walDtrj=b7Z?=#W65dzswp3sSS-FXYg
zkCx$+A<OW~_#a1ndwPJ4moZnyJQ)g$VmUHCm!ZiB$%x1>WrSty*psBo`0r8Dr;C%w
zuO!to=nM~S(xzOx#fczem7L!78|OEVlGfc%YPUXPtc-CorpTBoW4w$BGQN=UrHp<n
zlKxqoG?AV^(cL1FMEpvIQLWkXcbiU<apYkVg_C74%24z{($_M+k@4hy(rg*iWK3rX
z50Yld_*TXY8O8TV-^pn4C}}2VQ^BT7Mm1fx&&evNv*&KZ?^(-(B!*Sb8}_c1I!ES%
zou(JdH=EDC%UCL7nT!Q87Rp#G8pgcr!r2u`i|D<3B>iDhyZX`+8TZPi|Hx@OtTanz
z2Y=$6rB|?#Y}+GSvO>o5<u>X6Flm*H%FC11aNuMxdZAJ?;?@;OYdK^xSRgI-s|@1w
z2T8w)QCKH%y};iEa%c*FR&Nt0nvD1Sc;AmLGPZK|`H|qqA2R-wQNWLae*7h48|^0J
zsEqA0)-`eOpdZdl`de^Dy9C`kW$Y5d-7*dcvgi-b9vOROkTC3%u|Jzf{*FD!b?kCa
zepx*v<FL?Yfu9eHJ;pKhyUxluM~4)g(GxOG3Vur9X@O_5Q~6x$yo?Jn-q5#YT$FK%
z-ts!>DHk^xS7h9jaf@rFj1|S)4FAZuCgZxyx8OB+E4e|BZB>uFrck)e86@Mrj0Z9{
z#oAepoOIpg7-g5xXkdef+59m*C)NE(Myd9_srf|655KW<J>!sZ{iknlulG{O=l<@l
z-Pip}@Ye#b&T~=oKhA|siE)19@*~ENib`@0KW<k@jun_w;K9yre}{Ux{g}y@ffjS;
z@!Q?`rI9<YAo&F57f5;2j~f*7<DZDD(}Bc_eiZhjh#!TzN<{^h@}rm_loa=)L^dz!
z$MPpm3K>fK!RyG%_)*r6VNcxU{3!27-PZ03EGkbj$^DPg3g2(WT{rOCdv7ZFQQ40w
zepD4vN^1L2P4IUF)*qBqU62}nduvloKWYg=&dodykrXemj=;JCXB9|dQHg%I{7Chq
zksn?2C%FCiVxF^}A0EGb%9|lckdAw#WIyWr(ZFvX*k?%bqoLsSBhJWf`&fF$?DTf`
zJ!yW7DdQ@!&YAAVp4J(S1vU|wL3C#{^`n^|&HX%PnAAaF3xO>Kwi4J{U>ku{YwJh5
zY~EfJHFIFDjzaRTz)k`?3+y7Wt3c-MCP;U->dVrM_VA;pAFKUX<3}$)dUIH5*c;C2
z7ZWr6_}C9VPVxGY<%i_Q2Y!StcRzuB1b(q2@k2lAq_`;W%dt*z?YNy(w?NbWehd(D
zCVk|`KtFzNok4kQQTHG}2K({Z9%+alL;d)KuDHR?=rBKq`|-bGF2j#cso;mt5800q
zevI^EG?PX-NBJ@NvGaNz_h-3W$5+{JMdVNTFZW1(k;-V$k3cq06fXr<{7|zcnjfKT
z9`-{QeC40Hm@(pq>4)V<)Q|sO^;}H*&{x}Ld``D~=wev8M;hzrih<tE)5rTU!H<c4
zwEClIp-s)d@Z(EA=8EW70x6&A$0W8^M5p*MEn7ZSkgxstCR?)jw43_V{rFZ$W@O7*
zDdpe!F-u6k7dTtsoNS#N%bU*=e15j%2SFAHT<FK5Z29!g=}TzRM?HV^W2qm@1pi5p
zoqHt88I}v-wo2(Mg%A8Jkj}75kfXA5tslSm(LI3o0{E5Iqqj^?zEZ^fn;-6@p7nnG
z?#DX886D8Xy}^%-eiR6xU;vx^*zCszKQ4;Ww)lA`Hg@{4l^+3gmGc>Ya{c#Xo8XZq
zO_TQK+wModO76dDf%S<S_B1Uw+0|@xvt54d_T#7@$LRTf?DgZIABQ-F{n*b>mWQqb
zoK4r$UMG2KTu&qE_te#Gr2DWRn~dZmoY#C`Mq<6bt(rYO(!B4<UdR17;l~+2&iZlE
zk5io8*V9h>L4~31)7Ou1SNOr*{Y=x72b!Pr<Gde@@3^*}Y?^0uvzLE0V|(_MbYJr0
zvL8?Uc<RR$Kd$<5$B(;yT=V0)A2<ED<%crSdBcy4_tO92?3?If^n-5hhJU$PzO!WN
zZBC_@=?vGVIqwPMJn-Y8=*xYsLZv+|$GRT*k+{(PSfpN@>n7*8yy#NznIF&n$QeLf
z05AM_N$=&t9>6O<Ui<OJkAFEMZlpbLmBQBkd?T$x+w{AIdaY@fQl(G5908OlnL77d
zcWeM=xzs~*UD3Z??0BvKatDw%fP4Yu3846S_wxVT(|>hscrShEsiw5su-Zxa1GstH
zrS5cBFVL${0EGic4WLl~MFJ=qK+OPZ1yGE61E>%{MOG9*$pA_RP$qy<0egjcTs?z*
zpP10>Vw<G00h9~ykAP<71E_o2-MMyB@xfBlZtkSkDHYE&MF5oos20FG0aOm4N&r{(
zNL2%vQK;9xo336rGKh6{yNb0<sUE<XJxyx_&`rts{dQW_-&{k!boJfkt{s3Q0CxbM
z0Or1z9v^@+fP?_*u(|*~crSfxLOnL=M%$#s09*n5xyaq-K=V4K?9rzOHdyCM3ZPzq
zmpBz{K${G3;V*Y`0QCc4_e(!%NS~o)8U~OOu*di1nO-dI<3vwd0O<jA3ZQcUjRR;B
zK+6DH1@Q05rWpY=3!pg-r6e^C;EXFZwR_W@cU>(4IGgCn`+2jLc|9E8)&ahh1RVnC
z7(m+q@7qWF0ABy;zS}zG=k861TyM7NK=VFI(xK~V?*>rdSWni@0a{$Y*W+_dy9BUo
zlI<s5+0JF9NxBKkzZJe8K#u^j0^p@UJp&k7#&fJhO78%A34VED;#)~(0NwzYlw>&X
z<#0(fR{(ti_%MKJy<PnU_N6dAh0%T@`c}?|CnN&{_?Qh-P*B0300wjTf~XqAkN}1T
z@Oc1Z1NbC>VFAbi_yhI@p>cbq;Q`cM;rf(1yPJI`a74hq!-3I}0gMuo(E@z}&xoY_
z`<<&+q;tn_fFo79UN8V905xFm;2k$HSqmT(K$!gvzzTpJ<g#xB?2i>QfQTUB$p5`3
z_h_vgH>~8S5RMTgP=8zi;{$jYz@q>r&?omwdji-Sz{CK)2!Pkid>OzJLB0|=DS*iV
zObK9W01JhLI$sAcJ%Dcm_=dJ(#`B&zx|4GDZbkqz1Nb3;1p#~~^q*~Z@_G0ycI2t^
zdx5hB&JjrA+yLff^ZA0DIg`knd061&+b$x*qPJBCaN(YZ(H{d?O2-J`rvTQAq~!u>
zTc)lMe5Jsj1+EgfTHqRiYX$zoj{w?7aAsU5$ZrAcENa*L$z)f|ESvluzy^`DQQ#(l
zn+0wWxK-dEoOFWx#S#SB7Ql8v{ua1H;H1@dk8aL&?h?`60@r-+rf^>X`vW++BJoxL
z2Ld=4KtG53N&trhAwM2K+Ft2!07nENKPt$v0C;~mqYY)}33{OHJQ=_#LC8;YZVG-@
z;5mWk1zr$%QQ#$k)W6IzEs#|GuIp-cz1IS`9>5K*frDDJ84Ul3q??@ARa}g+&9_C%
z?{KX+lXzF)J%RTFcpwNbkZ)Yc^*Deh0leh$9>AqPolgUJ&SgJ<XCg{Touu@m-Fw&M
z?KiU$NL~l<hK?GvpCA4kz<*q*gD4V2Ob|JO$QwkyAYy~a8APriatH0XaC>T=Hs@pF
zf*|?s=ft<sJVB6C&X7Ndx1?YY1+vvBDU_{4&7wgR3!+RAWrHXlL<v!HDWS|N7)pvl
zs9E~|%T+Fj@<CJ-$}I4$W`%4`2>II<vOASUr*htKRSV*sAifD=S`gKPs1bz3q#%6b
zoF%r}8+&R7Q7eerK{$el529-j-GZnSMBN}#gJ=}Qq-2*f2zL-3w)ufGfkm}%mMG8_
zM5iCzj3xz9FNih0UG;-V4&rDZ*X5}5TQ#FWeK$Gf4Mb|gAX0*;AKT0dxNZ(>mKL=C
z9B&y!t02;YXdFb7Ab2jI$v}6rATk7R8pN2R8C5PPKAMnBd2{LvbhikCy9-EKv-?4G
z2%=*US$ieDkL#188Eu1T7sUG!7ejkN9vsaW5OBR4MCTy71aYrKMyDVy{^p|4nBgwC
zz(vmg>$?Z>UJ%|O7eLpIq3-vC=n+KEAU2li#i)O;)GLTe_1(RLa3$MO{@0&LJLGV&
zKyFURqMe_)r|gyZTdz+Ld-h8HAU+JD>5;^~0{aQ<AH;wlJ`#L{z<~m(_Hht{g1B|Z
zHJBd(K@1i0Pl9;4CGp_}C*?Igu3<q858~4xJ`3XSZ*5_Tt%<~yd!>;<j1pN!3;eB_
zYwyEEUl4K-^FDLkbi4AF_XL6n2B8F@2Jv|iV}tnZe6vo6615;gL4@foap@5b;z+m7
z!F}a41P0^MDPO&`xk=*$K@t^6wK0P1&FvW%#P}d42Qh_xkJOt$YedrX?vo}4@kJ0{
z2GMLxdfid(pDNcQ`AS451@Ut<{pMb2Y7m9|=^f4{W=u|>=THBdsj^L`2k~tXKL)Wh
zh#5iqiNw4ht}oA;Deyaivjl!GaJE1y%n4$y;4^x<7%j5MHJ?*^k?V&bRupk92x4In
zhweES2_#u8$dVu)KKJkik^Cu|c;3A%h@XOZ{EoCdi1k7I&b%T@$x607h*d#6t5t7x
z5WfidUk5YR(D&{+*RrXLk{JD!vyx+)GvPNOUnh9!t@VcN&#1Xi+CbOhaC71Zu_=hn
zK^zF;U=Uk^*c!xcnlXq!g7}jI%@Kc-#IvG*(G=f0w+FF}^HE4rbl0@2&N+LWJA}?o
z&WLTEU4pw_C-E`nv|I^$>7}_6_6yuc*IJ*>=!3-OJYjk$h{Hi#;B*M$2xo2(XXs#;
zJ!M`e9Sh<_5GOh7Und<GI6C4w6~x4OiOa4ho)$!Zl0<&6NXl8x)*#LYQFE7l(w3)R
zZx>48(^NKqrCkc*GP_nJ<w_9OI4*);rJFrX;?vO^LHoe$P0{jy=$5D4d@^u+kNsLb
zp0~Xd#9gky3UVvB7sUM_{^Js@-~k6Kh*v?p4&o8*AH-7*N6<b<`y>cnPxt1syPV6#
zho!5oI-dveA_$gA&ca`EK>wG>z(=yRezT7Wzv0kq^ZXk`QmuMCa@)46oAMkAaw=Hx
zWm2pHMhm^0LY%wJ6Q_V!c79?W1$h;_SnA|c>@ni#C|5oC1!pwJO;;fWg%vDUu|h==
z1w|E%QSiBfVhTR|(pg<W4F$y&lu%GoNJ=Xxqo9=FR4^Yp%VzT`3d#vyUO@#xDhh<a
zTWg%uuOxV71?}fMhvarsQdLN*34BN3=qHIyzPA6Ni~G-0lU-9#TY*DCyn-$Yx+<un
zpss>61?dW$3KA3~E2ys^QGrW=TY*Qxt-@J6vXQaR-ZE!=nALrsl*FX5-evQ=^%VO+
z4M_t94Hcv+Xrv%TL3p3U<3-$8zk97WZkF`*KI!@!FCYH5StvDD(1dMP&_O|lf~E?Z
zDQK=>@jm-Mg7Y)IO-f|7P|#Ab|Fzk-Pim!r*L#w0*eA7C?AuV=2qbB%pq=3V4Ycn;
z?Wo{g1)UUhrq86<d!czWiT^2Vn=jq#lC|S>)|5k8-4t|JFj&D5wp_vc3bGVP3VJB`
zZa~gV1zrU`74%Z@L9W!^3N~H$k}#04z(Jj}Vt@3q@DCL9QSgz1fz;oT@u31<vN}LP
zUj_XX^jGk|^i=L4yu45PI!7w`lYP>?%&d>;5;?Q@H;_C<8l)iqeu<mg>+F|?D)>af
zC<UVx3{x<iPNm>8+9x)(<$kGd$hOQM#qIMuY{LizBNcF8WzYT6#XPA#1+s#m0!4wJ
zKF0rU6ma+Qmp^(B4XM!SeAcC*6}j(J<)A1qi)LvGLM(j0v?hP*xcyS}e_oxAQLqL7
z#4!{^Xm+0e5@-puw?Qh{H?1YfSOw!0@T7lE72_35V1WbNZ`j$5u89g?p^Kjd|3cuG
z3ceC#65FF-ir@<sY<%ea;WPJC5&c@=Hv*?An6BVk!DlF#!>K3uOb(5LS%QDBV77w$
zi(Ra--~wma5%m_0b>5!uy4NCoo`PcqJ(SN^@B`;EORLay*R`IkYsqivtaOp6da=MI
z0)JGnR1l^v6XYk(-)zYWL7ta!tx~X>b6>#;1#1+nRj^&b-wJ+F@T-CiRAbvXA_~@3
zukbsOweOeK3kT+1yWfYT4f~}oKiK|rXuPyZ!Da=2DcDA@>)&9Df<J`jR>eLR$B;In
z!m<6*p9=2ow`W}X&<aF`ya%Km3U(?upx~f_T?%$9*vp|&Q2BsVW~Q`<6ZwGDb5vr@
zgYEW<GRGf~79Nni2c+Q#q(cf0(?ka=9^vYmY43mDaKJAAsDjf6B<{yPM)?6L_d)5T
zf>R3aumMa`a7Mum&Orrd6`WIWUcm*rai^@$HhQZZwCC4Fj_)Qf|1`X=;8OP7ye!BS
z1y{2r*974-sdrEcN?A8W3vVg7tzg<bZ;uV$jt8aT|MLz$Xt(MfM_Iu$1<yH`6+Be%
zM8Q)|u8Il4gVNN4+@Flc3Nl}NmmZWB%#yZ<TtoXL96KnzQ1FuTQNe3=WRbVt`K)Im
z)pgk(0{$mk=8*KSg8vl6sP=X#h8!wdG)X6kRZ;4Mlbfb4SIdY~kxNBx6?s&2QPEXJ
zUKRON)K%eBkzYjt73EZvS5Z(!Ar&Q5lvGiei@%EED$p4`kx^7dozF9Py0go6PcfFW
z-ScCw)W?~re;>^%rJ}ToGAhcd;J>uo#hrdgikT^m>7I3{M^^vhSrb&Lf{KbN-ceDV
z1*%9)t58`*6&00KyeW{%b9}tVuc`{)V(-pN-mMj~s;T&4vDXfHvudcQsiL+Dhl*M%
zc$h9FCTsI-zSK9B|1$SFWdA)KFPc|J#l13FR3Ij>78OlYWT<edaI2`VqJavJicR(7
zl2p`FZND9INJ>`iCAww5tXwO+6V7DuNLND@DJs%cG**$SB78_nQ*r*Ow-L)3>t&d6
zNMf6J<w*69mzEupP#|^hA*rc~W-8jMXs4n%2SP<_6>U_s<XCv^Lu&l-(n`hsLsEgm
zQsu+;u5vatBQ2HxKDSrVK}9DOomF%c?Xibg5T5i&Icy)u;-S<$xwGgAT@Fj#RCHG%
ztMIFMPsRHxK2kA|JyOwAg{0yG6}?pSR*|W~E6U;O{k%uk7fn;MR17&RjXx|cJS_24
zCcD!|#fK{Ts_4hYm&_XQy)-i=b;DtMx$dvpNBMX?wdu_opn`blu=KHtK`Mr;_*A&Z
zU>3-6QSsnA>DFPX?)#|=(^LOFEPbM4m<Z*LNX{eDXDUXh7^z|u$K{B9*>&F|_Hn<_
zqIo>A(k&&`r{eMk@7CU_Dlh0(5mYfn#Z(oF3RT5e72{NBDncqO6;Te23Y{+9J?r8T
z>GLC!p(3JUt>CkdNT!OtN2I*@Q|TeJ=i?*xE`l*CK3B2$m6suU%R8QC99ZE?6<?{C
zpyK21SrkrG!Oz(*1TxA)A{@I3F{zViqKXNV1#TGc{aVF0D(2HyRZLScUByfl->LXk
z#nQ{(HkZ9KR9so%<yVNO9pmUN{P>=wVz!DoD!%8CO_d5Cm3WVOv76qxDjFS?=BXgB
zbyOOQtoM#e3sfvru}sBJs(qqi5#75>7VjHhOgrRGT_W&DflE0AN9`jU>QQNS{?zG5
zrKSJay<4f`XBBrf+|%rfWLK&9O~pFZ=Brh#5oE2vUj$PAtBU_+b54-;Dt@PLXy~V5
zgNlt@95j^Dut~*c71vZ;SFuIKRu%hI98mEG9Y)1Y6}wdYrDB_kziCGH;;3}Fvb|hy
zr|_tB>ZtVKs1$chavqa*Jn-&Tv4?}DVxMq^pL(axDUr4QXYW5tyv>eDG=9%x(m@r6
zRGd+9R>ffzM^qeFaf0?7TJf`E(ovCd>@n$>in+%m_I=GUY4b7ZB-fm<bV}u`TJ0?>
zKg>%Y-o52L#~H2S5`|nS8rV0eTwoWrq+V3fG&A+!OeuM-_n%|-8h%B^RTazgROCD*
zGTcz{kBXNnUa7dL;+BesDjuo0O&_Qqcb^kM#T}ZR<Hhw&6q4__bZeZKeDGS^ow&|$
z1$)c|Q^gB<a{mUry`Ob)PtH?LlbhaWDxP!2Yn;l^cap^Qw$gFwHA~~rXo%DBuZsUv
z<j@eSA@R7BxzZb>ffw5I1X-c-S@gHEOT2B5OQrK=<<gK_Ls1RIH1KN@YssS_uZDaY
z`W%-EYbc^2zu*M~78F=WAW!jAhglYv$zq^C{2rG&?zmK3!|dbI>f=%g4SSE<U+qe3
zD5Ig3hSnO&YAC0{p&?#Fc?}gbRMt>MLq!eHP)S4hedMoZf3v-OT>AI8G`ExO7*#b?
z(@;Z0O%3m`kP}kbh8f8x?Aohq_SkWWsHNF!^{O0p-rDrZiU|y@9yO_>p{|C;8k%Tu
z3Y|t8(ljKnn=x658eAIO8ay;bkJS9RQj<uUq}CTmQcpv&W}iZ05~Kg6r#8^gP(zA_
z)NGx%Nz9(E+4l+X3+m|C-r38&oli)?25}i0-mie>qUxp^J~|;a)9|`emM+@gLPJXp
zk3RP@aOrEKp{<7Zm_<W74ed2_($HDt?VzEfhIcja<CT46XmBoTLa(fEPDouebk+C@
zq>A0xm$BZ(C+zi^U#+{ds5~i2+!n$eN*a1<$kHHbe4AUvUK%nrcs2Ca@Yf0H!U<{G
zO0V8K_2CKI=IqM{9A%oQJwBv+oU~0{^`zAEJ^QF8KL`737@%PZ8^a!H7)bxoFh;}2
z8U|??sbQ3c!5W5W7^Y#k#!Ck5?|4IL?N2IvqVbKW-UcV7wkM@eHGHOFgk~R|qYH6Q
z7hCR`W#4tcv$3N!_%vu5LK<WZehrESRSYhVBJw*`KtoUj>eCG}PfD-)*|#5X`&pQk
zYA`ie8Vt?e(#8gi{2(jBp<m)1wZKaZ=S~fau1!5DeXe1whHo{@&@fKJcnwoDOw}-f
zZPPGG!(<KJKg?QoQYt;i`-O%txzL@I7`_tZ;z@qGWsQ$Z<+(8Ko%>qDHyWmCm`+12
z_HvILYcIOo`|_kz=9F|mk=&=GnHs*+Fi*pL4YM?SuVF6dERP4Cl4gq$|8ll8N3#!V
zNvG^X&0PO^SojAG3pD$68;jY_+^PJ~Ur77^<o)!Nw1}?KEsJFMOfQe5E!D70!#)lB
zHT<MuIoqjWvxXHKR%%$Q;TH`*YgnaWwT3mCeP_bVC-x#R?vyn5l*HlKa7t>}C+k-Y
z|I_e07kS}b{B8J~hIJa&b4JhcUTKv2O_{7umR2NZ-i;bgow7SS_I%dm%2``9Y}N2L
z*B=dkX!w)PMi1<5FRByANDog*d@c7j4gBrAU9-P*<v(rLTd_BGYS_aCMA%`MNZL)C
zixZCD<W24W%Ii2SwLC2y&~Q-01q~N99MW)D!$~$k!x0TfH5}7$oWuQf7WYFI%b8m2
zmG=aF{<Jjxw6x^3G|P}iot92(IHTdLhI6#TpQ-#B@NfRq57u}$?6R-Y+I(6%&jL@|
zr|m9rsbNz!+z_q0qT#BBYZ_wCNGHo=@x%JdV)l1Az5(PPPDVPphTH7^<gAis>=S~k
zFJ<wnfjeAGV(kOPHM(cTT=w4A@PJi^aXyTPTnE_x5Ke{gSi=(<DufS0c&gzU7qJkW
zAw1Xcg3D<LWkYzW;gyDhAruPXwT3sGts%I-cK)m3KRQwfIYZ!UuUU0W2xIzZ@pN7e
zLEd>27Z*Y<k(!%X&PciLxZ0nwcSSacdh>*kSCqq|3LSFg51~K^`8#-6PGnmJ3JZr&
zB!p5d;f{-c-W3g@cnBpzU}~|DeFl*7k|8X*=-@N_br&7Hg@*rm@ekJ0A-pP{#ME*j
zln<eL2sK0@71)vxst8^&1cXpYaMs1oEb3Pcp<2j(#RfSCg^grm-Vv?hWUm>rw{5dt
zhtR1NLT!<qLN+fxggPNmpPG|n>QgNtgv1b9h0r<#7ke5)MhHzs%RM193?U_iq!8+b
zkQ@TrUq6HfBK5$~6jsd=o;u=7zw)Gp&?tm-(TubZ7Pj}Wg=b|qlUPyX5SlR80cVRc
z3A7%|VQ3}{+ahGY?7q1ulW)snfh~o6^i#)(x@Fsh&@qH}Luea9yAaxEk41-&eF~K}
zi8OH&JB83$l+ZndE+Npo6m}EJU75XN!s2;}l+Xh2h46j|J+e*OllEC*o2!>l?kzA=
zpf?2WKxVG2Y|<x$4@2l5vi~sZ8^ZXoE7R#F_7j|B*)i9E5Izc_>pSlDz0(JV@No!(
zLKqxEI0QX}hXs>{gz!lS!$KHJ`5CDel9bUI!$bHq1SJHO)(Bw)dl!N~gpnb5i+C7D
z3370QYjn267edXIu2olEfe@axOAiVp$@g`$m7lsvTF-PUMLZhEWt%$`!srLC`D<N7
zgU%Vkuk1w#W(ZaYGeh`}b{^=8hVW$wUvXZ9@VSsQ$m<##!m5VuaUx2c@q$bUVPdxA
zix8rz=}cmnB!p80P8RsrM;TK&G$DMGtzV}|vuW9UdI;ZU^BEzGJ0r1>Ss{EM!UB3x
z2(v}%j!RAFgg{(*(K9!Md4kUm;Rit|zj@WwU2!?ux)z17IE2+9tO;RB2tS6fGK8N)
zSV|9{>HLW%eJ6=zSqL|-J4u!cImwC;mYtDEx{Yd1WLPCSPO?_${34JBq2$9hwt0W!
zj0j<S2!DsLK7@o;=^I1XB*^a}Y!HOP!7JUHL)a3+HZD`8-1G8zwubO0dy&ucN4A7k
zV)U;NnpgLbFzmj>3)8SOgo7a*3Sn0WyF=I$!rl<?rD^`>7-woe7n{NIiTlJ5knE?6
zwn;xAaMI-D1|gTXP%r8n4&g`$M?)xcFOkt>qHV{sTX;ecxw`9g2xmB0VSE$D*$~c!
z@Lm}2b3qQ_0@tE2Dur<|giBmwLwFOy<q)ofa6g0xA^zTRUJc<o4NGhPop_C|bt#c|
z$^H|<%@FQ{a97BAJ?yOzZnME9JWQo#*)55@!n#0V*S!#qzxGgp_%MV=Aw1!NFN92e
z90G6N{=PuM@okCExJ-#VtDlF^$+9mwe<2$1QXp?qeI>}_Yq9@^@E<=E!YCX@Oc*)B
z$Q4HJFk-{FbT%(FbB67kSD$Q7WJ}`0`1wdZl00F%JFGN+7<t1WVaO*4J5@lCg4y!g
z6_SdCQ8bLwVU!7@SQy1c_DywNCBh(<45L&SJ#RQ!5ifJ*{n*tq>}!)r%7#%sj0$0t
z3uB??WT^3{lRf%ybz;RZ*i!~-Rt}>|7)`>+2%~Bk)xt;&!xhHq1?lgE;Rqu>%%5+l
z5w?r1DX^A6W`B7wv3A%V5t2Hh%!Dust#neeZWvCXM#D1tazt8<#~JQ0JYl4Sks3x)
z*tU87FdBqWcSmA9fyrUCTj^wU)uosj3lnP`ay1O2-bFVpL*6KibkW(gu<Zb?>$+HV
zV<BPhXoRL=Gz+7B7#+fB9>$*4iEYAY8%7IZG>(4DuziPct1w!JF@JJ_3nh~n?QFQ%
z!giuPbermRT^)sf*D$(;@va!ePGNMW9cXaP*+ocbaJp9aF#5iBu_G*ph9&R8_Jk1#
zBN#@nF!pUo91zAwVe}3oGYoGSSz&w-MxQVwnzyhk{kW6m?EgElz{bQ6SsI6aV`4vH
zRaU{08SO9n%i-n)%LBvsIE;>OJfDRzNVIvlhz<^8NEq~C=3*Ec#wXeB92T~(N2c&o
zVPq0!9}&jLFj()XFnprFqeXk}Hg$dShlkyih0ss?r`o+%!cfEbB8)G?(836@Nnu38
z2#2AIHk+c6RnEE$;k~>iJ|Zl(_75kI(XD&!8573mVN4LIW5XC1#+=t4cB<t|*Z45c
z_`BJ=x6z4g(tal=4)Lon=sZ&dP72#^C73KYh24L*{c5UkfSI$L)54e@#*Z{z7~h65
zBa9!ySP;g{Fun_8ZW!~z_Sd#qVayifdx4bjO9F9D*#5Ra@*=g)@YooV`9fi}_%gOI
zjK$gdi)iO;zC;j4mxb|D7#l@&c^E4=-@{lXqASCw)7H&1fGm@m{D?2Hv)*cvv_{}s
zfxig+Rp9>w{w9#Q)`hV?oBtlhhHRc=j&oBOo5R==##TC571!A?{s`mGFh<nEi7@^W
z!aV}F38c>UF#gWwI|SJ&aF@W{0`E`CwO0`8@1vh&^8<n$4C7E3hr>7`qDKYB-*!^@
z7}o(2t+vI(=<U_clOlRbASI{6IFrq}|DWHr0;kJe;Nnkr(oy(k{G~81bJ5dLOt;7D
zN*J$1f3JpdEsX17+z`=wVS5AHKVjS!(VGHq31qS1rFHKJem7gfqSCS&+z*5JK;T1x
zkHUB?$P<A~eHz9y!Ji9!A@F5(YP$k;zxcuPI*d1A{2Ru9bcT}-hI~3=berc87%MQR
zz&L@q1m+f)M_^uoC9dXWuKa?N6wpyn@InF$3oIhA!3+--I=6Ng*HJ=8N!|9PK;NdN
zbd=WNqPcXmxSv=?M|B-%Upvd{D5s;m5K>-MM+LzvW=kMQC4rR%R?#uCxQoiwMD!hj
zPaCFFQbR{gQEV+8PC-~jZ9yCY<8{;#q^>~sXcrX{1Sd%p<W6I^M@N#5zB>BpsHY=Y
zM|&L|bkx_;Ku3m-raBtxNYSykx+`5rs*XlF+MMc@rejY|7n?_95+&q~bu<y0Q>uI7
zA2eiAGab!^qzxOdqos~kI$G;|9qRvOO#3vM*{S*W8Hw0dM?0Z^yk)cVXCw+c>UdX2
zHyzz|bP`FOb#xJyVNuN6RW#{sb{6}dj`wwVbz}*h9y)r7rn11EI*4poZz0KKe`mWE
zZ7IWg*?39lf1rbnKU>wqlKbfRPzUwjcC){Z0Xl~3_*BP7ItFrxN4q}J@v)9Uf)CL#
zSda!+VwtqLlIQsuX{eBpQ!-3&l0t1=pXnH(L(>sry*fte2<Qmv_+@}=v<|<H#4E8r
z5tRi}Ugb*ct?I51_PP}vs*X)%-4rrPWXSbta#)A1!xVnP?9?}OM08N6oyYU4q~|lA
z+Y+gc`-$|TF*-iiF;>So9Y5<>rDME~33P8Avvo|=@r91Bb$p}aOC4Y7n51K}j<v77
z{O9X-Oct+>oT6hz?yRXg_zdc!8@)<h>$UcLR>z?gr|FokW2TPpI6KZt-?DcbJTr9E
zJuCGV*Cn+)EA5+=!Jlli=xO4Q%U)-tIXdR*Sgd1-j(Ixf>sY8`k&Xpbvi_$^KhR=l
zrKxA71v-ce&q~pltZ)DHUdx-sXKO#|SgPYE9m{pd`BK-Pm6qv<O3e?Rm2RDtx=2~v
zw7_S5D|F;PC#@97AKI&RtkH2m$3gascGj_8$L~6R<#g8Zn~rrlc$E+z0J2PWfeq%r
zR3uf;NgH%*)Uj2^9~=u#!*f#0-l>~)@DGl@-5c`J+!oHJbM~3gKXpjwBtH6J#=mrI
z)3KcfiM5Yd?iS>49XkZssbiPUcPKY}o7ys9lRYA7ua13!>=#J+#%XmA={T(8w2m`6
zj_5e5<AjcrI*#cWea=3k`tCyS#B<VdTJoGkvhJMyoa*#B>68xM+s4PLXQ@B9!a1(+
znQ=4jdaqj2!*f!u^U_5fmvn6SoUfO{WgS;&5DULqxT@otj+`dqOkC&7f7zG_f)V_q
z<ED<z5p;>*mTuow@>It&9k+Gd(Q#MDJsl5pJk)Vtx8HBb(C9@harb|*Bj1aAD|sZ6
z9@FN6;Jifna~&@@;s(Ap@RFX!b-+Mp1Fv<w;VNpNqJe*P{HG(If&2zyC>fd=YapkA
z=BFJw3|uY~U;n(+rc8XCf!qf27$DCjaNEGln^V%hOzlO@yaq^WwTLfZprC;g21*)W
zw2*<K26i`(FKnQQ0clcNv%Te8Pf8;xW}y9fskniqryUFwmNHP<z_B}yvIfc+nAswp
zb@jR6AeJZ_U(P^z0|U=X&RY&uAPiJ8P?HrIsBEB$f$E~Pss^a@j)8}#9n}P9)a>ge
z_MDP7>AY0K0CCoNskQ-!0k;8<fp~)(0;OQ9c&C9ng4Z>Wwx{ut^AekvVBp|>Z=wO0
zfj(2y$ceO7l7V^#(hW2=kZj=Qd8xjE1_oMBO(Sn;;QARynn02i1F3>H%9a$kAW`m%
ziD@Ft)k?@S3^X;c@l<9rA#84dttxxg(ZWDWRxu@whGnREL251Z+ZbpoNIQWYXjnlS
zi^5rcM-hG3fOR{W(JltM8W?Ke69e50bT=@-z()q&Gw{BFEDn=_9tL_E@EVwR%ds!D
z%#bsVUIuy_=ygHja5pR*lWBlL5(X-KAng31XetM{kAdMAY`gUpl70gF3mkL7Hu69N
z9~<c3wOsjojzI<nvor&LT##0rb<7mF^n!FmkYOy!z(@n5gyrcTtoKs`ckVhq6F9<v
z+&rGq(Hx7r4%vX;z}*XyPgsxU3b0=G-9VH+d{Lr~Vn8*Z83-9L3`7i6y(oo+&zId>
zUKdeHO1F%c*LxaWlv-buOapOu9rUO%20k}1nRVTBj1?1MynzV@#tGN0UnGY1p~p@%
z@C7G@P?&bs@fCf$W&9)q`+iB@@M|(T$p;suDWV(}_1i7SHwLB|cx>Q_f$0XmHSmjp
zUk%LQTrjZEz#_V3>G<zNmU#wd8Tj77Y$2q4^-aed19J_eTy!w%JZs~813w7;1+-o#
zuX<4$amVr79miq=OAM?u@H73tL2mZzN6sAs%MAR)xllTO1qbD(W4S0TS8PnoZO4ex
z@w;w1?#9L5h>MNfbgVM4+Q1qEYq`8!l(w96uouo6<;I*YNB#e?RR;DOIACC%f%P0*
z1AiL$-N40C@tY0YxaHVDCl}F89IrbLHv8cP$H)IT8s2nlF>vaFW2+buNBP{W`Y!`J
z4D2+p&A@g8e;cUwB!yX&Uz1sH$<uc2yXd+_bL|oR-7S!{?4@U(b?g(^`KDv#Md_e{
zLk3Q=3Im4?95HZQtQG7RM~bF6N|(6lIA(x_lbjGn=v_LVsizH`F>ubndC>)ye3rAX
zdL~1`Q<)do9Rm-<)aZ4_amm0f1Gl+~8o0u_bH;I%xeSb7@3|(T*9B5em!|L^k#tiC
z8Kv-!C~A0#%)8mbdxG5Oj2482KV*BF_j)8W_g<8q8hFNqF@nkwJU8&dK)wj_NAS|X
zD+9SA_Nw^Wz#9WOB3O4lnbCg@{KwSN<u1p>%*qi{@$0mh2-sPY*a&h8wYUiO#O0(u
z!;h`vY1rHmdl2&o%p1YYixP_}5JABRN=8sBf<h5{tcyo%cPbn~%RDhfA}AUGJ&@zY
zQ7*>DT(C)r2o98ve^DyF_mc9ZBPb&pSzch}^0~`KP)=lLY4pi9W#cPEP%(n>d16>2
zC5V7|S!R_8sz&TjE>8s2B6uf)x)C@ds2)KLHiP`EgP~>wwIZk;u}Aq@^>U5~s^p2;
zlRIXYuN+g^@jBU>)$_#AuM#5oqG&Ex#Gdkr5vaLsp<7fsH&0HsA&E&5Nb5bxY-a?m
zBB&ohg9sW%kP<;g1WhAIji6Bk=@B%JAnuZs7C~&w`1ThZL`Gfb9ONvai74m$ZkgoG
z1aA?+n<;6{g+2-8TsA9Sl3GX5hIY6lF?8-)uB}jL7eV_7Iz({jWM;<*-W3Yu%+*OK
zkT9^it`T&LU~mM#bc*jTuwMlIBX}>u69l%fM+BJ>cq8Z;K`$XGUM{|OHd!^ke3szU
z{DAEgyz$ubjP}Wve<(;_fu-go4~XES2nJ=R4vb)X@fhlVEF|?VN#qP$mgXK3!O#dk
z5%OUX43FU1uyRcLR7gIf3kh<gm90NA0$&6zE~J!N(0CLbZ$abH0w-Tcks}zgwwGVv
zwvRpJ3WqO(gS1ZsS_Gj8Rz<Knf^Y;&{)vy$dD<lC5g7E12=4<)V6Y-E1%G(33!|e)
z+rlv%-=6WG3mhB4IC^6Q6C(IgNG3+`&G2|C%%$fD&ghpBd?om#2qs4`C4#9De4m~A
zwIDNy*^+63OpoB(Y)REab!Q453?_Uh$Si(){4R!t&(7AFBZy;p&Uq2ck6^>YMn6P&
z<9e(5PgBVk2+6_-774Og;1YpM-Kr%n71@_%m-bTx%LQMNEm;}C&w`IQT$uH)iC`^9
ze?*;q9FYjGTB^G>f<GeoHG=<%=x-5h5rj$WB3K{6?;^S(f=z;KjNsE_PNot!M{xaK
z`-EBzh;1sDqVUfM{)!-Qrv7e$+XU{Q=Lkai--3KlyAk<L!FNUQHcH7JA=#TP-ygw~
zLv;@bG>+6IKODj3(=l;3<6}%5iQuSkgJThUPw#QTSIsVbB7&0<oQmKyo5$rYf~8wp
zor&OV1m`#hFG&X-b<aoex=hXsT=6)GE=kkNCtPC5benc{uSRf%p4K(z%t`MLxt_aD
z>4c98)bE|E?lq2G$GV63@P~^h*SZKE@%w)Sw<EY4!MzCX(30(2<)4*vN6CaxyOPX8
zk9ra4em{Z-5v+K(<g303EUiSj5|7y<Hh>F71W!3x__N}Y#9YrKaCc33!Nos<(t{G|
z;jbe0v#H3ttth8?Q@^VFZv-7nC(ODe-7M1nzX({%iNplvrA=~}h&7SwNw_pQCoz|a
z+$KIW(bq&C6R%svms*mXX(F$Qd?t4M6QAEi4-<3ir4%qx(6nvX_e6Xl6NOC_F;Ub+
zLlY?`ikT?RA3-<c>zF8Ef?asWM0FD-O_VZuA6KK&CMuceKRK?9iIL|U@)T!T6Xi^h
zFqAh@LGX$K=N3)?D=nPRdVEY>wPj@!RkAg!3Q|qru9i7#nDD<y*p^k)K}o~JnkH%q
zNo|2_4^!h!OuW`&{hzHHw{Bh6gwsTVi9{30ChD7TnQ)t^JEcOBiTiWwd15>Ld#8a%
z@bn1@^+eL_9StbFDaX;;4NMH|+40QNy4~9LNHx(uwoVfh8K(WjuaSu~6TI;(U0`E@
zV=kvReG>n5sAW^rzRb3jiDo96n`lAHk56oABDAW>s}psPjY~X?gvM>sTAOHNqOFN`
zCc2uqnXfKGdqLhc(Ls=oCbn{L^VL0fN$MmdzPQZJCSqnZ>XIGpCJ1%93-X?c_p>G1
z^f(S^Pcf{$O!OAy{Ky6rdO2Q8lCuO#0vY|lM4xPa?ES|5O#5-PwKpr?LVvo1iH~R#
z6Z=f;H}SDZrNZ|n2ALRaVu*>M^a1wN#3wX@i7O8svT6UZKAg^AVw8zbnajioA^d4k
za)YO_pRP~F`sC3jd?qOQ>`e~p=N?eLM|$rGu`zxV0TV&m|AB)+6+{u3Jf!@CCyoLy
zW5XtN6XQ)xFkzU8m>6T?a}%`#9+N|JJjD`x?1G9>6J_3wZ}qvy^}zA#urgy!j5ASV
zjA!$^@wHB*RC<=&^Lg?_6JMB^YT|1XUz+$z<eegL5=XyQxygb*d)?^S;}llGFy(m4
zHzt-xJu^(qG%?M@bQ9mwMNg!pz8g>Zt4k93cP3`Bot@%mE~sdxdZ*>jncMGSr)Ha&
z!=W)T&%{O(n@r3%@q>w#CVn=tz{EmYU}LWpCKj2n9y)$BvDCz36H82-T%4>uaS$s#
zh+9SjvKbtLCyov6Qb!(6Ccfp&HStI?3t7c3(D)|Sn^;2^Em?N0iC+Zao`eMt9Qj_y
z{%YcX9Iq28znP$rgn^{+W$AYl8%&(a6HlJ`Rc5WrQh}e!Z8ovR#4h0vTTT37;x7~1
zOthL`j=32AWRn_sNw%B#+r&<G>VczdLvNYd<u)Bi+rcrK;31(f;Z59b6MIbTrSm*;
z<eA!wxbI2q^2xdBX$QFYSSVrPpov2!4s+Qz@z}%@6Gu%PGjWX%XG|P7al*s}6BlV8
zww5b~iL)l?EvMgl&YK)b^ON5?k8`5uoQd<My?<u<wG`sm@t#X2F0%n9uA1onCP(s{
z98_31Ke^5jPq!iEr!Gz|vpx3>6aSdFZQ_o|dsArMGNCR`{-tmEjLTBF?YZv?;eA$Z
z;+{}rX{>kdV9!Gnk4(^eStccP1N!q*6VJH1TF7PLxrrBCs7<^v@sbYkz`^iJkdnV7
zUw)l~(SJ?+$93Mqq>GLi3)}BIa#)x%-oxl+J+tC-J4;T>&fBkjJX3R9$YY^^#mj+_
z*FruE`7Jb>mz=9+T#Lt!>w_AzWajNQFS(F~!WN2IV8#YTV%dNq7K&P^R5OmHWxTO#
zXA*Ojv{1@IMGLS{+Cmu%`m5Lq7Rp+fS2nG@WzXDlf-js=hLQ?Ta(uWYj>2Wn9f3{B
zl`K@YP{p!05mksyt7@T|1&4(~ZQ@zQI~HnK*zn9zUG##I9*LPXg@nRd7HVhn)JJw_
zCp?L*W7(@#T?<YN2^JD9d~9Km1(yZ4g)|H47CaV`EY!E`1?qHc46)CX*m@$G%v^7B
zP}0CcLm^4A>@_4+bb<0lBFgr2C>vX7VxgmjcP(UCXlkLAh1M1hJ#uh9HnY&&LJJY4
zq@^IkU&g90V;N;=W1*de!IvfSwj%ZY%Tjv_ZxuRN_~LLflR8=GY{6?G%R(0mT`lyq
z(91$M3rq6le$T@DmOW3qTev;WGyAi~<UQC7G5f5o$&B{4FndX_Ev<WZ>0h2CQ|OaO
z7CsQXuZ2E>Fe9^kC^$1_HSqT1;%{MqkbGnzXZzI6@x7TeQ1I`!CQ~xl!VtFB!j~3?
zTKI&6MJrhtW?{GmnPon7d}`sv{kYF8jIc0wj3?$v9J@Bs!j3VX(H2ID?o&>oPY9WX
zNq!6Fhh+lv+ZPT>a^{RtEoc^^mi@63vUqtB_#tA7sBXcq5V7!W(X#v~p~8umu|$53
zSQf@L_nK2Z{Hz&c;d2XPDY0<BZTv(F<C$@9+5|THvAuWe(Yjv!k0qa0J<Q1HSDarK
zezdSu_`_tDZ()XoDHf($_}aoZG~?6Qy#ve8i|8TKXt5`;(=B_!S!6V(WG3D3fn&af
zA1r)lVU~sOY0oFIb7%?<jYxG5vp);wSvd8?(fVczd5Mk5%)7wCLJNyI))rqe5M!4q
z<`flJLWkHGx+`6=;htX0Ec|3)rG=j@{O?)vaxNp!lWR09x5BbNoA_}<<iM@6@QWDD
z)fUzWvex2b2M-ry;y&RpzjASS9ZThP7S>yM8O5t8e&<}{x{(lf;8MzoKioAl5;t1d
zWMQ*~EnIvo{LN|go3qbV&sH{Il=BY@e_Hs9j@qi;Hi0CAJEWhS<RsZ)VJCYOg)@p>
z7IuqiTQ-V47WUFrSgEk~J`1NUoUyRq!U3-Q^b-pwES$7(STz2Kg`*tw%Mx45@UThm
zW0w8-a-1GG!87zDdpgV+SU%@-$0?!Tu23#Y&RRHU;U5b(h3A~NaGBLvxM1O;g-e`e
z<2}knhci%)4sfJ<+*P4=&BApH61QagbKVdVrqXkW{l}KM#R+KPDUE62j)l8)01FQ-
z+_O+KrtEzSGpFXJ=69DR`W5{XZ*tK69$9#7;R(lXQS$uB<;pHjrlV5r>7eq@xu`nh
z$ZHNL&l+D@c+H6rMcydhSoqgMY!ts<mU2CGgpVixXW_<6M@$soPRYy>#iwIDTQV~v
z!#z2ph>K$XWhw7>nYp6KO$)D%tHag)vXuX+BVQExqbMFli6{z0Q80=kQ521$?l=!i
zi+$0kP!z<%qQF}(8Wm&GnmEskMl7Mji$*Nr(V^s$QIw7%?TLd~N=32tQ1YDzjxr+4
z;pdIml5$adO)f96LKGFFKopgts2)X)DAqiUs~km@D5^&7kFeM)(zR2`)uMPOin4-F
zd*~qf;$TY6C~8IF5NZj(^x|?+I|`;U*Mlo5@j_llASH5a3@c5DVpJ5PqezUx6@@zr
zPZZswcrS{iDC$MgJc<@kBu7y{iu5QNQ~9Z*K@<(6NQr{p#b|02jf6Z+;CI7qr)uBG
zn`^x1^#3yR#guJA(;ZH38byXsU~1A8shJQ`&S=XhT1D}06rF@Z>nPer(JqQMLZ|5F
z<l_g@+DFkrq;?dTr=j=p5PQNheB996If^c#J>8<{8pVbAy(n)uzZ}aaXB!%ZJ?}@+
zBZ>i0d=y2`D0)TVjUp?G-ce*m?GNIb{c>}yAX)mq<hMkMf?s(0MDYQgWU&2JB)GEN
zhf(y6BK}iPzbN`gk)vE%hbt1J{C4De<`@{o$5DI|#jq#_MKL&vAyEuv^RjaD!+p){
za{Pj{tZ#X)PV<VFojb@goSqQH$msuL>N}vMsG4whfF)-Hc7cza7U-SsnOVZZ;4VR;
zq9T&_R}dADoCPE~q0@x!0R)kp1tmyUf`CLpKt!_Sj37C`Z!T}&dFS-0^WEyYb?a8u
zt)7|N(;csD|9h5Wkg%j;-!g**h=1rh)?jge7YpEUA4d4Fk)_6mkv@!KGW#&ihcA5?
z?StWi>BATw#`@s%!SBOYK8*8Wk`G_|5Y3S=-iHZ3O!T3`la%5;bHC{0;vC;vm&W<>
zgBC|=b>G1f8sL<D@k_r($-6144@c&vMdszMwxcu6ps>zJElLaYEgkY9?1Sw?%!df)
z`*H554|-N^%5bJsW%<C*Z&%N!O{ObqBv0Y$$QjSNe;zr0o|`sR=qH%&!?!*x^RW(N
zh7aHQu)v3fKFsuCmJf4%m`9iPDqU`F+H4=@2-`A$N#iAh#`E*!d>?pm;h=OWn~Qu{
z?8DzRlE0@CUgK&cAE=SM#D}G#IlWrf*G%$%@Zm?62p`t@_{<8d<XZFLCwi=R<5iqv
z-_niir4#pVpF4e0=`}vA=~;$Lm@Ar;nXq02XoFa`+aAR~2GfS0efWi;^x>orn|;{A
z>g~fmAGUJg`><O$|5qQj`>@l8o)@!tP}PoX%+QeYn`rLhvML%E@Qifr@!{UOw6^c(
z-p|Q0&wV)R!-4p9$90$iVsg^*dF9yrLog3<DYZ#wbH?Q40?!%*(@InGUp^cY2Hanr
ztJ%YpzkN9FL(N%fzNuY#w%xG?RgW|{<-=(oZu{`B4`+Nh>%&zau5m&6aL$KIK3rx#
z_icQhQQ)e1+0YYoU0~pfWKjbxWWrn#ruy5aQ`;X;Q%=8ZxZp*@>x}7(hBpPhA#7mt
zmT1yW;yXUv^?~w_#o7OScqsG?znFE;hx@D#hU<Z#lp%h^RGFO2LGMmzO!|bY;BHE1
zzw0@RKSLQnfwHw;`tZt!Pypco68v!ZQ7sVv2|b4&IsI7Y$9g|<`H|?yhkkVQBex%U
z{E+=n{K)G^K0hk>`2c+6_oILx#r!DlM?rslx3sVyMf@n_2Y05zO>1$(lt+hu8Wr^;
zHK|tVw`!4=@W+3;FXcyR0p1X_q#xXiAwS8FWIxLJ!3`iDWdxXBrE6J#d>4azM%>VW
zU~Y~yD(?qruInk4{Fr<#r79=lkMD(5_QyBfs&EQ95(ujMQNxcEKWh2o+X0n}C6d<k
zgTMcCJD|27b^J*CDB0<c?|(^xrgDf|DLlJsO?*GdbR-ODUd!c&+mF_MwDH5kE`Buf
z!|O*~F@*+#atEiLANBq5tx|3)kfsZMLqRz~ZYehQ<4r%B`O(~uZ6{OK=E|AjN2Wi%
z|I)+{ZfZ33$2UhfS(?h`i(-jy`O(rJ-&^4ZUkk>ieL4Y~t^D||Xd*kd_2X?nKJbIP
zY47;a&X4!SM0(WBO|f^ybl&rG(=&y;b&O7XKf)}|rE1N}lR&FF_`wOXZzn%G`(gND
z`q9OYu733ADL=aT(cO<v{OILJmKcQ={?CtrH`BCIwLbFWV-a*3!{K`P(bFH_&F8ie
z?f=w|&-|EkC9MxT`mro`0{z_Ek9~)exf9fNZtfh_lKcAcg_vMJhN)Do)5&qOFXT=b
z=*J*G#``gWQ}APmA7A=0S|}On$1p#J)7#fmC`_Fr{1`<i6iXQCN8oJA!i!m(FJ?_n
zs?{waVT{P1uS5cHTWTyPSTvEDGfr@N_Usn!-gTlMy!RmJhw8^9KfV^0Fa*Br*!ihe
z=%L3-|I<igUNx)bD4opAB+x~(`Jv<xee1_uKj!%n@gwTTG<w4ii&5U_iZNIHumzre
zJ)UC><rIH>kBML^S6``G-v}D#pHA^b8-44?EI+^gU<SkO$4q~G8;kzro)quaARe6%
z-xq6oGi{C^++NRrDrLSO3+N?3miw_#IF^A}#HrbhsB^I&OSsBnjmTu*rG9)bbW&Af
zo`fI#_|cD_#3D+#k+MQ8x0PaLvB_1r%8%88$yu|x#*e2}x~}CEPNy6_lk)e)tPOr_
zq@(<}=f@^Le)i+6AOHCA3m2>(zf-dxTm0DS=l8gHPHyw#S7GFD!oAx?>hAQ%@2S`!
zD2oZ>+c!D)E+NKnGkkkQUv}TiToQPHb~2E8kc-HVzx+5RbRP2KPd|?OaoCR|LO(O)
zjhks)3q0mG?M&L5#`|&HkJBP6PWW;6Viw0bDF6jn6HYO>-Mg~L&{t=K(~5B=`f=q+
zj=xT(-16hR9~b<%=*J~Lc=O2(KQ8mEAJ@bJVdh*F>9ne7B4@-c@9V;o`7UK8KFP%(
z-em2)9lvXZ(ZB7-zkb{id3aY$ocD5Yb+o>ba^H^!ev}NLQ~(eCc*I&4K<)q@Q@POZ
z2*eBKQ-<<f)=S}mXM#Q#^aV$`9^XiPB?J-zaWNh&NAU|m06E1KA(x;GE17wO!U6#l
z3?Od+`2uKPCO3^K*sOE@K)h-(a}E}1TquB|0Tc^>xUir_0`Z#6COui4l7V;~<540I
zuK)xSMIA03KvDn|1E?ehN)|fH2QW8xLYV-{22d^l2&Vod2h*M-@`A$js}Mk+9^D8k
z^NQBA78gZTa;~RT34n!#*-j4c6{#LTjR0x}kP<+<0NxFtR)7ztKt=$W0n`aVqMZSx
zf0UdWfK%8|Hvl;RB>-0dZo$cWE``;DHXps6;t3#)w|kYYRlHg<jUk}J>rs!`ajq{w
zba9#VK)fc?fenQ-8wKDEpm896n-Fh(;m+)v0i0~tjh?64CIP$^KnqF+z_ZPS7$utr
zu>5f@0?M=uptUfDxzs8UznIpzl+`AHwgJ2yh+jnB3E*R44E;mTvpl{R!21F8rdt@b
z06qwyr_jI}-XVa_0d%1^O4a%>5Wntp44{(;S>~nq{(jd0x&`nNbq3H~#O{BA_$^ym
z0&_T4=`NSD$l+KthDVP;eCwa!6QQt|pfu@IVc2Iv`RAO)jT8>iH-Ik!7#+Zv0Qv>c
zKY$Sdj0|9auy9ZSg98{SFz>OU2Uz!p1TZXsz1LHQ2I7~MvelAFhYJoT%XK<RINv<n
z_{!P%?*Et6pO8Q>Hh`}J@QL&o7l>at@@{fX6kvP+69nLlc!iq8+_;(cbpXHLNaMk9
z`vV9B5EPbZ0q6p#f%xT&Ug|bGxo?riMgV3YUYuE}W>!sR5=H`u1~4Ol?*gy_umhMH
zi0`BEhy^fN;7+xY*_<Nq)^FpO$2S2?6P)SU^4|*3=#%uB0n7?uQ2>hrm`x7^FkhUS
zE9ksz`C*r`sAo*O<OPDWP|zvAlp%9T085!*g7dwg%LV1BWdXdJolG-ccmFY)ze0fZ
zM%PsVtPaGtfqn{Lz4$yyyhd==2Cz<m-M-Rf@}uSkA+S-<O@gYIvNi{>C4d_N+zeoA
z0NVmM&BFCe{#8(d-2rSDct<v8X8^wmyepf-XHZjek7(`{bYB4b8Lt2iWXl{BfLm{W
z2ylpb^+-A#K%rjB5kU$54B)81e+ha_(7y#eE+}PAaD`^$Qvu$nDNWzwJtK6U74#oL
zY0tR;&a);2a8YosW%DlyaGA?lfUAP?y)f*;<9YymOen#v0B+O&{8%2uzX9Cg!a3jI
zX#jV#^*m(O34Bk``+`0Yl+%2z?U86c4#aO9eG<Uy8%L?<nb7uJ&=&!`6oC9IManpW
z$PvVcL39ivXArr9a0Vd<kr+hoAW8*MI*2?$^h~amKZpVX<P|hu5Vi6qc=9F`45CmF
zB?Yr^5JiG`BZwBswaSKFMT007MDZXlcIY~bIcd5|1aT-&0=2CX&HatK5^s9xAWaG)
zStzLyM42GU22nYPDnXPB0)pRcMl!{gc8t^VK~xY-;)+33%Eo8+rBw~0S`gI*=aWch
z3LGg@i<C#lmyVi2q|ovpY6p=T#Eu%d$gdN`4`pg?3A>(7=qd$y_f%KfzvogGPbopT
zgsOLga0lTDqHz#!iV3C#(LjK@LDUnVeh^7DbFuH~OIf6xX?hS1#i>Tw7J9QikP$>?
z5N(5aTbw%g($OS{ra?3_UCjiiWf09N&@uTf(QJ{efo^XlaO-SNn;>>3*Shf{$KE^%
z?*!2<h&uby;`7><mhZ#3hu;h0{UF+B%YP8W-y#Y;)j=>BnodD<4q{XgUk1@7h^|5O
z;He<GW%v4@0NsP&gJ#%~6Wn3AJ`(t2PTY)pkNi)9=oLiYAifCVQ*rjQAU+p>=AF(S
zx3}Q*31alVv|jtt`UTNHh(SRN7W@H03>1Kd(TyDFafhx$f*2YE=`eAMNj0)#^1Vx0
z!-F8;&?5wYWDxl-$744-h%rHY8^nwt#s=|K5JnJY5aWUvFM{&5h{XhfCj~K409^jR
zv0L9U*%yRgFatrTLA>+Q!C40dN4cD(37`u~K0_Z0A{@lzAf^arB#5X0`|9PUK(otP
zmT1~R#JDa(t`aYEkU#pRV`>o7h4J46F^v-xD<b`PgPuH+YjqOS`Hoo{#E(JD3}RLg
zvxWTkVhVGDm>a~rAm#_LL=3S&(8Yo-6f%p1Jcm0QaxoADJeCGQ55LCCgz)kpUY}hd
z<W~l<Dm!Dzr!lL8V6OfY#F`-12C*)PjiMvNv_6RRkZXg`KuM})b5jsMQ`PYXuSfYs
z2<Ok6ur-KnLDc9|zGk2DzXq|Lq2GWZ8?b}P%(b})&PDhwh+RP(4dbscb~8hc$DbQ8
zF@!xFB8YuK><>cIq3ifPhyyGd8p>%n7{nhz=qd~qhk`iF<*A~+iX%b%$r7g`QN__9
z{$iyK;!Y69xEwgCAkGJIJctuPoC@MJmuFukYk_<+h)1iP5AMdFMSO<!?Xh$=2tEnF
zX&3o-hl3CQ|A)d(7azlZfrT!J>p?!l1eb!i9K_Wij%-n`a23DnSpKh^*&xTjznon(
z>F75}*EruaCEsCX$_D9X5Vu&70?H==KCIPon_e9%HS@Vi?*{Q-5YHH<AnpZmpT-37
zIEV*ArsuEDhfIb}`6)T2l$?8c>2t;1Pq@<a%KYofn;&OB4Pt$DWnM-3MG!B8NKoNW
z(O{bVDu_;J<YbSl(l&YUyu3No_#cOJs+g8r**HczwkL5?T{-=6LT(j#R8&z>RYhJE
z`Bc22qNIxaDhjA5q@u7Ie~@oM75m1?9w?`SQiZ&ZA}a1D%f(a_SFt`>E-L7k&14!`
zLXA%?qq>8%c>&jyD{?6nrBx)UXlu*g-YAtU1j?!?CqNmR^i*2-eY`IO=iI%7@+vwU
zk}9Zprh9l)R8c7#R~F#a45gY7uBD>3is}OIKH#h&Kur}XG~TUTDKC%CC)ZISsc@-q
zt4LMhRH3Nx2biB}9yd}JUF`DmsPgjTM&7o&^LbRHsi;e_yVCSp@^3!JvmWv|Z(@yV
za)(Qf1}f53e4?V4iiRp0(XlGtRpC|9SVc1x%~iZ9bT(0Ocwm9k=j99)nJQM~a1<D)
z{9a6Hs^U>yrJs?Hqraub{~mi`tki;TUm_J9DYsP7O2y**Ia&)P_fO|<BS2e0+2w5&
z?+Dy6E&gtl_f)*EqKk^ID%z{~K*eV-%XL&SwurlfiVs!XULn6<M9%y-p;a6CzZVIe
zRCK0$$IE@^B;A`|y8C*in~Lr#{-@$26~EV1nueq-6~~g4tsA9<zdDZGcYds*hl-xm
zeA>CVsC!il`S0fmlUGVLZzOz5riw3Bj8^fviry-Qs2HlEkBYu3`l}eA;tLfy-&ICc
zQu?U~9&x&AIT~ilKRrztsPe81Y0m=ZAj)hg<*Mcwk;gTd!K%@S^Lnr;?=Y3m_r?g0
zzEH*{#WPG9sbZ9hZ#u{Sbo}&oLPMWYdaz>*C#&LX6+RVTsTikXg7D9H6$~HWHM8xB
zRJXP3!XU?{rt(A;lT^$oE0+z+q<$3vTBSl&v16ms^)1=iSgzAYp#d7hw@~5>4(48s
zR|Zo>h;E_HD#9uvDpsjjt@2g%uvE-aF<XVLBBtV76)Ovro~&XDO=WtkICxm8Hb#2*
zqcl~;t|9pg6>&`GirX1~Yv=o$<(lK9?;a)0P%(bK{GE!KblQ`6Zmb#|e^0?26?0WA
zQ?XpdJQed*EMj`7+|`v9s94AmJ1aA$NjG04JpD_NhL>8RVyTMnxk4Yv-OIQ>8s*qq
zPY#@v`C8#4cN2bKp1e|4sJOe+IXprBQAO^x(lXPrl0Mlg=^K@&ha5ktSfk=MnyO+g
zJ*i@=ifvruR9hl-lZu~JY*4XL#i<9*GpR{U*DGU+rvIYiVqtj;yX=j}cQaQ<rd&5s
zPIAlTsyKdCv7H`fVVNVhsP33=<(p|b7IyLORB^SCt4TFio?Cf#b5+t;D*jNhmj#E}
zs6rcDU_ag4LHRr)%_)+~XL_*v0TJJko_PKr68KLRe8x-QBZBhOXP?PNP@)-saZUZ2
zv3RU9dwZVaDo(J5sCcg8B&VSA9tqr1aazS06_-?8R&iFvKPt|vxS--31KmRAU&!ko
zb~=|x0~_SnTv6s@OfIS@vR29Yc9%BK%U$6tR9t7NRB?^bcP8<bra8Ws7XL0MRB>0h
zDfjfty)zp$KcL)J@vn*pDjur1!zifuPgwibLW$3D{RWOp!<Bp4_TLv^%nbRFipMIR
za#`gn&3QdxEdG`X-*uio8NV(tuO2;@UZ{A<qNky-hF2;QG~Q&0JQ^Gta%jk<AyLDg
zU*!Qe<eVCx2QE!%Dd)@O;9u7lUzLob@)tuKc{SwIP>>obD}(=2@@v>wPN{xe{<V_3
zfW}vc#1}<sZKde-MnyCf)lgbPl7?a$ifbsL;SCM^cl_l?F20M0uT%MGk6cniDGl%a
z<s4AaF|LzbqP+X@8pp&ka<Ue`MwHRe_Mp;dfpVm!e5R}d4dpf5(r{Zt1q~H7_%!%6
zRMJpc!v`8VXsDv0ss^uy#u}<=sII}S!K0yuhMF2`YpA2)zv8Z<W#tqNwKTlDPFkQ8
zvX{wae@T=yq-t<!82pCYsUe`H$r`rz^|XsBb$)j$8g_P-+x=Ugw7~^u&C3aC8tQ7O
zr=h-v56?-jCOdsaT~Akd8)!(^(7CLmk%pP&m4+Ih0W1Gqz|m~HRJ6A8xIp}x@}`Ci
z4R2{^p&?U46Aeu@G}ExJa{8OUNR=*1yfi<#BYk&AVi9Prp+H+DYm1|$hE^Kd(QFN^
zHB8AVr<F*5TSFUx+iH0FpOR;soBY2A$?s@5T{j*P9`9+qIRWj3SNnExyr}3RGqb2%
zV@$peHFVT4h_lwviDql)rQuTzT{Lvn&_hE{4c#<!*YJ^skA;RT4gV8>N?aA)d`S(#
zC`q0+O-?T2?mo*gX`Aa4E&h<4g+t{Ehol*;9G_|UTti<CUobk$O83^#N5hJm@=;&D
zO7rCZ2FXjlcl2Yp???kQDEsBcIh6hyemLEkA07s3_$@~o4|hZ!qG70puQZI)FigX6
z4I?#-($H|MGJ+AGTY6t%*J8hv>tU%cHQZd|9HU_@`P-$@9Q|?@?R->Rt~1^<Z;{e(
za>jTK6Ev*-!|}C-iJV|_WsFOnL??^uV2@o=zf=cbr|xd41T=1WW0QuTHK-ai4f8b2
z*Pv@KG)&d-jRsRgNQ12*rXj2$qT%F_{1$WmUC*sd*NyL#D21!Y>k7Ck{3&n!FJXdT
zo=oRYk*8=Z-SUhQjzvqPFQ?_1reV5<85+LR;!k23(NF%CpJ}g`yI0M%Yqm0z$-l-q
zTf-cUx9x$?Qs9yMvh?lL9CgRK=aRqG+4F?dJHKmzhJ_k_q@Oh`(y*ALh^Q5=D=*Qo
zRKxcg$~a0_t?XFF^qZDet8C|M)#T&*oy{Dsg;Dtj4bh}{uCCOuO2ZmDN{bh?_bi2J
zwpznaBHwuRXLFr~^<0UI<RXofgbT_BRt9mFm}mccPbU3E!)6VCX*i}~i-xV79TQ%|
zHVwZr#2R*KNVw{JzEs|>VF!oX+cejxq#UQ^om{p_?&o)v2dkCc8u~@0JxqXwQpE=e
zxke^!A1d$H@Vl7WK@Ar!DLd|Z{DqYR8a6yj;PD4jI-hb#!(k0aG&J~A{!?)FmzT-s
zaa1%HoR|OBaGV-6T-0!a;nQ$d!#|AjQ7M`!pVCk$r+ixDn>#RKi_-30nQz3Pe=6rr
zJ*VM3OHeIkLnY;Z108eLI^TYfa7n{u4c9f?;P(-ya)qmDmvohR@^8YDe-n0BbYEjm
zevo#tqWdP(X`IyMk#eh?o7HbpMaRDy?r3PKqm_=kELltd9nf)4!+jQN9l3Qp(C|>h
zOEK|Bf<B?oH9Qu$P{TYAi#S}B<sNsO&on&O@Iu4gUb4NvbYP}TP`;Y-iVml$C$d9F
z4jnml9M0qVu#qD)RnDcu{>Rz=;~d022g!MK<ke9^#~V8G>Bz66kdDGS3g|H2DOgZP
z%SNtXE4lmzXXXLt$=Rig=qRcqxKu8tW7id_@V^P3p!D_4gyQ^~R!otuH+^@hTvA6V
z9mzV%=qOEvE94{{J${mV?UKtDiYMM)De2^I(zuvZmi!meFiqO@jibDd3OefRXrQB_
zj!HUe>PXR1Sw|He)pS(XQB}ukMSf$KocgEIwyS(B-O*r*+<S>sLytctY2sLE>idpb
zI%?~XbfoI&{Jpepq4b$8*I~!b^6$0cqdRq^>8Pti*5el=MNpTZZb8ZP=(u$y{@HJO
z$@nJ?9`$s*Jx}^^hm@|PA&1kEDTEv8XsqK+9ghv!t0S^VDt*wgz*06wmCRhqgQBTT
zbTrk`T*q5FcK4PWUUKrn*Gva1`TI(tOZnv%I`-9d70DxqW+;R2CA1c5Khe=kM;je&
zIj)X(I2RpVbhOj)u8#IPKG4BS|9d(v)=4^3LEf=cexF%XDh@hOV2;8sryuJ0;kw-V
z6GulKo#@QN%GZ~(W?s%3U)$AHM>icGGwwH(?mDvQu{`qsbl$jCYWCM2X`=G>K*!r<
z+#hlDGV$-KJ#_TcF@B)DJCEawv2izks^c>q!*z_%@wtxPItJ?)qN9(FzB&fz7^ve5
z9sP9vi%0IyBwX$M?Lh(`k>soCXj(LlIXp<mA0GMq3pw8oXXu{%!_9=DI)+hlcv<S_
z_sz^Pj?o#e(Iwp@b&S$6LB~WLExP8PS4jC%=N)}`&rTboV;l|BF;>S{I-XW;RIs_+
zthQ^|pYp2aN>)L+Un7|%dXkQ>bp)8Ylv&~R>EI*m{EWx}=g03R&K@CcDHi{Z(7LR=
z{*<KZc>PV;&|z{NnaE=zq$8~3eFN<cM07-T+|Y4Ths6b@<5wNqb;NW`re+<>bWG7P
zRmZnFW{7}(qhp!?&-Tk*t0~iUxSxB<43yXAcYLR#Si#iUI_7YW9h8~Ou1wb~L35UE
zG*`z@v*r0Z76>p;&^@E$FSRt*BrX&>i5Cg5SjUoV&eH50Ud}Yov0ldp9Vg#${HS9U
zmxB;np<|_v)*s4)PAQ)hOZ$n@oFc8`Oe?zA=vd1n|Ex>9@8zGx7510sa#ngg^c!{j
ztm7A<VG}*yOK$s)W3!GeI=1TA#<ky5-nFdY&?LD=E(h$Sbym_iamCr8V<&CUaZ1N;
zEFeq(9fueN9eY?nbR5v}QJ&PjToKHl9m=I-*Mh^2FJ~m}*U`1FGIgi2ZKnL!Q|Tam
z`$+0jQTCT~9A;3$@}D}6>NvtEyeqHYB-gx|&}*CHFCE9Y&~!d*P&!aM@i=4QN;;uK
zYn_ziBRR)2Wo2o_9hOh)IHThNmy(XNOzBkDKRV7a#5d)o_vAv4<P(WX;}_2JIzH(k
zuS<4Z(s5bGtB!fE>A1qUoR@ois9Y$X`c8h=Rc8LIc)7Tq9fiw19k+Dc)=}0#IRpRd
zxWk%kAg6)5I{wq~gbB%&tK+_ohg{T*S||Ad<KlHcd6=;KEB651F?p#p@457tt0|8%
zsf{dMO?bvx*OOo9c&TIahw^h4+o>|a>P%N+2l<tb1cMKV@Hh;7eOJkIt6b(R<>wws
zE(3`MUuKPB267w7W1ygcLI(00$Y&tGfdU5F4of<`T8_1l4}P8Z`esisz2GgcT=se?
z<Eq@hwLE&YT-ZPn1I15C*QYj_wO=W2poD=^21*-v!-!YZ&<?4j!GF)izr*s!gtQx_
zk_;ppC}Z$$0crDdKHEy+Q_fa>;%0e#=XnAQlsDip_-aK|Fi_Dz9RreqN(L$$sAizL
z0eOvF#Xwb|pKpHYIWV4wg`XtUFi_J#ih)`NK3$Tp-OW;wdUD^#2`7Jb);92CclqGl
z($!YF*{srEPNg0LiUCf<X<*0<<<`D}E(315Wtm*DW&EO_F*dRIvvOY_%Tw1tJ%cx5
zp@o6^1{xT6(?EuSbQ(4%Dc@PyYoMWlM)XEmH($|6dOSIO^?0SR!KZ>K?~PX8E9uHK
z(9A${15FGxHSp!t%;f2czq#uphq7R-)U<yhpEfqpli1QgD|+6*+Xh-2I6qZtW8l(!
z=iPbISLYI5UsK*O(2g-R@ScIB;;Fe?<js3quGqoBUmYJ0biAoamrf^qV4#D6ZwyQ`
z@S%Z@2F4or%0MRroelKk#0_*Y(3R0K(91wK;m<4s|1;2CV0vJ5QO8FHJ~qJb-8~F!
znwxq!)A1-h*Xp9_Jq-jeCDeZ69Jb8)se#W7^fu6kk_IN%%~Y;A^RATncB&_)qc5{-
zLVkWz*mTCb>xl9N%Vq`F*d_7+0|UiCUm6%>V6cIq28MCUdF5e~Wj@<yh=Da*ls+D1
zIQ@Ss;gBJXG;rskXM~_MZ<GNZk*}0L-}Um>v(W~hIWLbf@M5467@L2bf$;`(1BQVK
z1|}Nt8SopJ#D!oW`k)jw^k3;bv{>Q~i94#u0bxwgfNJ2ozg-26%bJ0GSEWOf(xz`#
z##UCAwRD(5Cd@$%gal65B>g4HQ3IBNDF&t*unokR4-1_AddfQ&dM6tgutLevvmo)W
z`{j;B+}^pe(ID5r!s*iud~4vSfxisQ;GhP6F|gUdOarqFEH&`Gf!PM;7+7Rrv4Ob;
z<{4OM;B<5Me6H3q?gccXi1GyPGC>8BOg!uxxn|>B6%WWKYvliCpR&Y=f7~iMy5KSc
z%MGkIuz{Sg)Um(v1LIX$KAe#Dqk$C$2v!QZN>Dae8~91!HG-}cbY1q@0vWEs72UHI
z$Qzj$G&oP{&mvL#Oh_nFEOqxHX^Vla26h|RV_=(sUk&Uqu#;)|QeO4Ix!r&{LNPy(
zl>`TWW<QoYwayFaH%iX%?lMq#di>Xnz4X6<KMWi)u%AojlzhOzK`L3I{4OXXxaC0U
z>+d`GJJ`7Y5`O(rIc(sFfj<q5{8m{#)={jWyx?}iy#n%El^n+m{B7Wtf!hX-8#rO$
zf`N+$P8v96;4CYWflPk*XC>_7-QPKFV#Ixh1!s~xue$5kb<#OzCRfUYf~lvZLy`Q_
zcWI5f$(NXN2Cf>oMhm+*u85Sl+D{&JM?QD0+;sytjQG2&ZW?@1OZ+or&eL(~{8BDZ
z!0|8B*g%2_hl#re{xk5@z%v8)4BR*HkxPEW${b91Aap)t{n_R^-bCSNOa7L{vyX+$
z6UMZ%YgtA2KV9YL23{I?#k%p4@<LFKwdj<y^Hiy<A$JccIm~!X&SfIe#LI}1(?pG}
z%2$?yzp1tyD~+5foiFOnYa*YCjV3mk$Zw*6iT|1S$V5RCg-kRsk#3@}i6SPdn5b%^
zsEJ}Gl1-E`QQSlcF+?d7Z<r`);{B^GDaHNxH@Vew`G=zN`8;Xse4f%K_#1nYiHk+$
zw)MSbMVE>uDw!x}0-{;oL<KYcYC^uTaqi!leDUHjPyC0D${eDRiyx9Z?UaA7;;3e#
zx`|X1PR_+dhsL>TnW!x^)HHGZUa1s;^XF{bPm@z@xoru#jtP5>Bndu&Y(g<n*F-%N
zE)#AO9uvICW_exw;WXuLPX21TGhb?&iSO-rm2f?i>zjPEl+<C5^RUm8=S8`OCK{P&
zW1_7IuZhMcnwxmb#G58EOzd>H=bXutX`+dVrY5(2!B-gu+>TX0ORsV}UjOD(YQ4l&
z!`Zbk(b7aK6Q#cLTsW<?HqqmNGWx30wpePeP4UlBZ<~0>L`M^yOtdrcu89vgYZFPE
zrT6H-1lRi}{xhWwpEx$}l-iphZJeHKn@|4GM8cd>uGvXP7f8j5I69l?VxpUg?k2i2
zQn#H2KU9(`<$d#syrg>mEPB-?H@_+6nJPW_pOW}_{*P%1-C|;jiJm4tF)`Z27!$pO
z8~d5)Z{kxEpP9T<Mfu!BZxek?3_2>`+*`V@iGJz1zTmtXDNl|n1Kh3~e<&R*$OB9a
zG%?D=my|T)U!Mn?7-DkMA-#<&{(&KP&G-+SL&XroObi!*oDn8QW@B!D$ZM3HW0lL}
z<i;P!V@-TzVv>okP4JiSaVEx_m|)_sU!3R8Iwy)=n+qv_m5`r3j62+C!fzsGqIKsy
zg=)$H3XDusO$2H4@_c+5WrqS@&4g~oHw%1*Y?#PWl88;FTpKwgXxKzVfT*D4TLRc7
zuQ)QB^L;WyFxA92CKi}jXkwa)=_Y2Gm~G-)DyK8o$3Mn=NBeI|O!b*2YW8+szT_az
zoSHPpM6KE0dBT1s;an5<dn?bLy5^fOZp1&U)UM)KWMZ+2pG>SVvBbnu6F-_*!Mrtb
z_^`yc$}TstjEm(TxokH%*9+&D8R<XJ`5Ec#zS6`hF713Ww-j^VaRyV9R-3q!p#&?+
z$*nTia$GU=24=4SWydJXaw=csjN7a(Qr6y*e>U+8D?kV(LfC9#i-{{HuA10tVw;IW
zw86x$CbpZ{ZDP;siEwq8_|1%edrj%;PJ7eECv|svQ{H99w~DlHllGd}XW|bNXIjKp
z3cm*KH}N~OB`ouIumj8)4$)Vh)+OV~R9^mE{9MW(G>(|~)5J*=r#QQ?<ER+xn294R
zl)p^eb}O0hIsP_roG$H}5%oLzRgq6HC=)z&`zfb67VDCUOD4{m_=jsPK{?OTS5leO
z%)$3`pW`aKDiK_L;JF|)=WFJ=%o_4Q`FN6}#S3Zq1L;(cyw_NK#MvAn+%R#Ib7avo
zaf=4TS19f=pH(UPQvR2IHo?zD1*WInHIb{j+-|>f<t8b)gqwTN_qmQL%MX~w1LZ|a
zl!q+5E`{44Png~&Ua*X_aOIWx=xhe!naN%Lc!mF8lFMEw{{;CJSA7Wl@|El7JoElb
zc%zZ*2!ZtO=V>`Z$Q43j2)RQj6hh$;{uh(;gpfak0wLrLAzug^>&mlhD9ZGBg4HM{
z7Yre_y6eeFN7a8a$te=zW5(rTjQAO6(GVYXE)V_6z4wg7-^06hb-WQmN$L#YqYz4k
zP&$NWAv6ymDTL$@>W9!EgfbzN4Z#yaS_mijizPRSLb$dlzFC7%eCMcq2>d%?g%B!+
zP$`7UAyg5ZIw4dQfM;ulQ0+Aqv_>|c-FY@eG;4)WTY%S0i4ze`r=Us*vH-99x&&rl
zH*E__1a(8G*;bj8B|opI#8TvXAzV(86EDl@G%|$D5SoP0D1^o-a^n!*r1AoaH-zF>
zo2HdbZ(k}sBgAKl7F3J7E8mgnpSJm2EqBRPA4*L_2$znpptnM35yJZ+v=5<W2(3bR
zJA`*a@eiM^L;NjWZbN|_4H6%eY8&G16Y}^G66xO2a=Q@T4dGC8<;7&F_fUt{NPaH_
zQn_;42O)F_p<@W0LVQn|{9y==X)-r29vyW~xtP#7gf1a;4<Rdrt|5F<&fP5(&zv5e
z<Wt4t;kM0;-|BmoH%aO;R(Y$x<6};NLx(UVgr1ZSp<f97L+BO4ry=wXp-%`W>wD9y
z%AW~6t&-fIb0SIZEl)kv);ENwbEGdqIMOVM2RT1)iBEh$2!lfSr+eOkoX9BUmMZOi
zl82w!>gm$Z5Qc>?HiWN27#_k1CV=i39fEmX9#BLc8Nw(AMO4V24#;1IK-y)DGDeJE
zyG7cFwRy*dFrL#~=@?%x$Al0T^Vi5LuFoeb{G8c;Nc_q&DTJ?uye|ZQ2myf;!*M?Z
zLs02S!FepG9)iKqLkNX%T5!T4M0k%%2zx__hG2#83rn9kWry%>2s1*6i6#|J7GO#U
zQ?ohW2rw;#>Dipadvbmk!psnshwwuPvqGp5mX>g(?2rg%hcG9ExgpG>({@OU#M$`_
zZkD`&>mo&77(zzXG)nTTE(I0~0djg2N?jVl_oCPAfV512Hp`m)$ncF!<FQtN6@sn|
zVO2JNHN7hE8bM$6aZ`9*_Sy9zY!G;3HfNInKQrYndnmajgssf3it^Id^3NIG#<^2@
zY~wP?o%(AC+XdJm=uSa@6LgoLl-bRkA0ZL!3t@i<$3pl!gf>M|e-GgxyU%f!`o(o1
z#GiVUN|U5Ngbxo1dRWjSAv`ST`cu%O%%cAF7=^!Ba0)rdA9Gka9>Rqqt{<jno(Q4y
zF()}ES<q_Br$V?oO!_0}ITONJCT9reLijg?N2jFoELlHDCogARX5Z|nT@>IF<5JOa
zf4#HMa^(t_!*b;+OPK(~*9Eu{!c75gW%F-`uw}hWflv<joe=JZaJ;4RUkG&ux$g;l
zpVfG<`vEKD5@qzy&WB94zV1gfc(9w`i5U86wk6L(crNe@L0@L`Uxkn$vf3eN4ncDY
znoH0%ogDLWIC6)PCycyd<O?G!jQ@p^Ka2ulG!Em<FbalID2z&BblvOhwm}+xRVp0D
zC`EqQUoH~HA0y<VVH69aco@e&lS_o-`=MpRcq5E2j!M6tlS;C0ZMjq!rNij_R7wi-
z*F||!Ku!*$f6fN%a($&#HjHv%Je@8hj5%dwt7?<-VN@U<Bv%ZBN;+JL-y2goj4I){
zhpUEBGmIev+||OU9_C`ftDP=Z?CtBlS2nrsRClL@Q7eqvVYK@sliqWOQSu9SoiL;@
zKB%hDfvI6Q!&tFRlEa|D{o#@lhAWK8+oVayU9G-wlj#W~jnnDt=8IA4((GPY^}?th
zMuRZY!)S3mk*XSr?hVPW8V}Qt1KeK0IrxP;BaF;2nuqbzE4iwb)+CHG4_w@Nzd6Ly
zG>l`Bv}R#kd>|cGrMIXp3@(<IVZ2w^)j5n-VYCk8Vd2y^VZ2Lb7;WjmvF^9Scqfc=
zA7-`_&0h7D&fR44-4mqu!zfiwIZ@t4+&+w3OO+48=s+a}Qa=oX`)-eXa>p<_g|Vuw
zLK!x@Fs5Nli%D-xkUoOkEsWJMse2eNPAUD!3FBkll^2d@{)DYkk1&>nF?N^KGmKBd
z=oOBytPx?14C7OQKMUjYFnWhE>05bV7!@ze`?sa{38Sw#`-PzF(l3ltgO&cGIY7|Q
z-&QC*D2&0P7x54Qh6*}N(BT}KPkz2Ej|%gn9p;2FmwpaoOc)d9q}qax4dd%DeDuTb
z@>gN(DOq=17~=(?%me`@(!6lIT9UJ9v~p#I+aHE0x(`Th5C~&>qXt2tK@CF-$Lp;g
zh9LwVT+VuVs>!hLB{D-oTR4nJ7;93}$cctw2{GLDP<c#Xg2`b_31g~||0awXVSGoQ
zi-CA{dKfh0+c5eabh0@!3>NL#VWeKknia->cbrA9WKsFxYZ48s*H@k=O!_{Iy~pMG
zoZV{o0;cpcWg+#1c{7jO`CM5X#*#3et#z;X$-R{6y4Ou%UP=ngPVMCMEDz&{Fn(kv
zI6W%_-6H5pCWZj3nXzFsswJ<X8GlI|!&n=}?S;}hp8YaoeHecyyEicC@5_h2R+c+G
zo5J|Wk@_>M#}4N&f*#o>Z{~V&DjZ^~&`Gc@%x5(yzcPGfT-(FgmXNwboZ86+UdjDi
z7`wt4UR$Oli|`&=n4`hH4Ndlju`djQ{elwwF2Dgn53>FUa7fU@f*ui+l79*?WVdpR
zHivO-2CmP*@i0zsrjxOHGW0K{lVP-pplt-F!tv&5F48d0hVc(8QUr+LTo~uWc*zPA
z#sw}|t}J?kWq~V^F9i<cY8aQp@khh)%}_I!rd|u<dKfptxXD^NQhNU%dBVKZ4a-s!
zdOIh+sqocHDR0*KH;g-BJPzYY7<U=vFz$!(fYvgdHcN9`DSVmKj#<w8U6hAmY^_x5
zs9Pztv`(eUwH~pSR<6a*rB4}OE^01SX5FmRwMrcheY2X>vs|jLKrOySvETC4ga{lF
z6pf%*1UVwe8A1LC3Pg}Ag2V`NN0281?~+t%`?!6a=8Yh@TspKQm0#rf|AKrJn2|bU
zyQ^RXg(4^%L6J!OAIA@eyLl|yrCj(fmG2!`I@-y;#Um&YK~e<C5xfyW$p}hCP&yL-
zwFeVw4^>^!fQL>P)jpN)@QSuiEfYc62qx4|Dwg5oLmIUvF4{k%WNP^cDn!sAg7gR~
zMo=k&IuS?_RF0rZ1l1#`5kb{R{5{~+7@9dwdiASDE&|$6GlG-|YDG{x0*-Z6a{bZP
zlYT)NUtZw@<>+?0G&KTe1nvkt5%Aq)as)~Qt_VghO0BXoZQA_QT#Hge-DJ<=)U*id
zMo=$;`gCB1b5yBRK3#!N^ZvJegNF4}+qO@&TGVM6L8Ay-M&g;{ji7M^O(SR)!J83e
zM35Ol6Z$!!4&6wB5(ky_?$mEer}p_brR|k0a+*i*Rs<~~_~D}TTi)6ng)hw7I;YVP
zIklD0*;>&13*+72j^LdL)<m&3igppa8^M1O+>7A72;PriX$0R#&_03>BA6J#qzF1h
z@L`0%-lKPf|0I$+M$mkr+%1AmqS;wc^1DRhC9bPz>UTYq=^jCr5dNQ_<a{K+$Ab2V
zpr-(zWS{L7!KVU$md)X(&^{6LrOvQ4Hi9oA=oi7T2!_+2edYcUTrA-k9Kit594P1@
zL3x%o@E8)oP$Bkd*=9eEmMK4ixhFWpBO@3k@Rged*&H3=%h_f29Yc5B^$>p*;ZG|P
zk8uKw7j%N4o44ivIs#t=(;}G89Eczg!FLO#7?VE&HG)V4(MbG%Kw1Pw1SWNg=A)Yh
z$$Yt83Plk9|2VJtJY_||v$i<(SP1hJJv=#rDZ&*~1^q^tLC^eG)B9}%X$PI(MKCjh
z84+*?pRu5-AzS5H5zG}n;RI(#Feid;GZoHGTa<rZ1oI<U5W&I-7H7*Wih!qnI;3!u
zi(Qsv^GiIJmqoBVf+G?9$xNfKBKSFiUm{o$!G)zxUd~oWuu|Yv5%7X|Vn|-{e`2yl
zuvTz3Fnr%jWUh-~y^thkls87OiGdiBm%UzGD@B>j5p0RzQg``)=(06}T@maScv}R&
zMzCGr9TEH{z)nG5D}Rmm2>ts7e{c3!`vjoC?}E?Kc|qhT2P61H3`cxOfWurGrxZ3R
zbCk9*_eyyFitytW{uW9Y>$4FYkKlx8o{Zph_9&+WC^Jz$BS5`|xu}Hl|FG1EBsniA
zITyrwA-EL5Wx6PWt1Nf(JpV>;O#tGX0$dmLhM=#y%eMr$EoiA^H^uG<d{<C5pC{(O
zAHf5z<tRRg;vv(Cr80_gQ9O>|2@7}>1*7;I=}%cCuSvP1coxC)2wpJ#SmdMl<gK(<
z5hO%$Y^#(bitt;?u{L>09Z_tnl}6_AHhD>N3CTo3*<};b^F-qc^9q_zP&V@m@Jdn&
zMNv2k?)sIAVo;V+B#IlCJtd+jDw^aJ6QH=Dy^`E-2!WDO%+AQgjlx{f9HpbEGT%cD
zNl_#VRb>S2m6AjzqA1U?qG%XJg(#*TlWIg!Gm44=R}z%W$^ul0qN)I;3O21KKy^Wf
zHcCs0;_^I?BxtQD{$1%_+TK$;iaJpctQF1FD4bEqQ7A&Jo}ey4J%YLgW#6=HP?v>w
zrJI`T3l2d8p^%_a6y7MBMp0-<M&l^njG{>tdmE;GxzgR{mWMPWip(g=mTuaAQjYRp
z$Y1Q1lPzzvD4Iv{mgv<giq=uIh~n1b3@T|UK!e(u#BHK@KMLZuQM@gL-x0K(pya<R
zz<Yw8-IAYOI_%0reupSNjAB$2Uq;a}icV1sj$%j@oulXy#TQZZpCEUQqFWRj%X>bL
zqI(osOok|WMPc3X{4a`+qv#><M}ju6ygj3E-}8KMy&we$UU^&upNg}eMZvS=IIhLd
zQfKcd`UvI3eWQr&%0tjE3U2-L=r6#4C<bP81~Dt<l$vr!9va24C`O9Dl{U+DC&<I2
z7!d_Q>ty%xzVeCk9)gxjGDb%+hNDMeM=>@U|Fj&8LXG09D8@xGK8guZd>w@^iiu35
zp_!8eC0Ko;GwEw4sXvN9w#@5O8eOzoHltWEuZb=&n?@8D1|<=MxU8axWb>m!jHeh}
z%EzLZ%(RbUP88;Dc}f)1vn8hr@QvV46I4!ie=C?XqWCU~nM})MH;0%d0J~Em)z0N`
z50vktSQf>+DCS48Ac}=iERJG{IMwu7xkUo3>mc9W-;_<t^H@sefH>f>Jc=J_Y7{?Y
zccJjgC{~H)>TD+a{y9VXNi-?I?(3ph&!KHBx3Ph7iQ-oa+bwL0;^!#ZSZHhE7sipL
z$wDCuTcX$+#fd0RvgS}Yiv3ai9>w-3c0{o&irrD{jN&&Y*p;j&!@QO9rvCPyhrbtP
z_IK}z#(#y|%gj6`SFDgev`iC%eNpuN%u8@UoIN7w!6^QSf?pmzTcv9)+=rq#%(8IO
zbK;Pj^iLskRM7bEKLQ*R^zSH+3-Hqy@w?hiMR7WcCs90&;!G50S-7IO8O1+Qoa17T
z;z|^s4fZYyXP##QFr#cQo1_<`xFnjy)rZ8HSEINV#q}ui4e@Rq96vGyXk>eDF;}l-
z{TIc(C~gb<ZxnZ;xGOMEvHS4!EP_LWz4wKNhfxqeh+>9dK8k|c9t*nuN*3|6D4s`=
z(?Tu_FQRxE1qX6ic*W&xdx=RCEF8U(#pCXktQ;1aG>=<Fg^3n&TXFe(7V=p5GH(+a
zkXHy(fP4;}-$DTk`LAXzc&`ankzd$C5sS}EhGe0rg<=-US}13sxP=lHN?S;>@P>tw
z7UW)ur37vFOiJyQNctKiTPS1UHRoP}mw=Ky1q<aZOqV@1EmW{j(LxmqRV`GqFlVHf
z{K^(OxjZ#TdRN!<G*9vdmbt50sBWQ#1-oJzn<HJGDp#|bT+QlIF)hWy?b6;_7HU&Z
znupz~WaM~vss*Qo`W70{HVcY{{t2mdEx72J3my-rGtT3-P;Zs;c}{QCna*Y!op8{7
za8*V<I`(t-{f(YA6%x}eG-MYGP3c1mUJH#ayeYuC4H+dn%BhtarPfn2=!%YVriHFo
zv&eT>YxKcJPcsY6Ewr@Iit{bo=q*7vt<7j506FZ-UIeX0cXlLx+rm2*CRzB}LOToZ
z(sBy}EWBsoeG5G;d}5)!g%2!bS@@rY4i-MN(Ah#43xg^oR(#&5BOPdA&j9zRt66<d
zOM|{@+SNig3io$+xA5Oy$-0`w<Mtr;=xx%9t67WAx<0b-v4tKMmi2YB3y)W~-4x(D
z?PcLp3tw3HZLjAu3!hu)W1+8TUg(*aHbm)dVewv1g(6-8$`H(4o0p&;<6Fdgsb}Iq
z8fIY}Bl4Mdu!SKOMpzgr&JMLOoO4{Bqy5f&!z@tSMWNxv{CuOBs}{yu_)4g4w>-ya
z3u7$!PI;_K8KjhaUM2DWjXU1L1Uh`Ha&xkG-_@*%7WY=Nno8+D3&&cdO|dZ5g5N^G
zLePS0!L$&v(9xN$SuiZjDB{vZcXpX7rT<bh{mYND21k@Iv(7@y!lF!X#6r}<Hy>wN
zf)X^F?4_8pt!b|usgo@{+$$#?aeiZAnuYJ_Oa|J*w-)AEn9sG4?ENe&V}^zAEL?PZ
zW?GnKVK(vFCYOeLcMbP8-qf^ZR?|5a<}z)v;`q0UO%_;KNDqtdi!5Bdnnfi!uVtM`
z^2RnbU1DLWg#$Ix*(@~D8(QREZs7+D>nyCd@FT<ese6@$)fQG*SV=G<vttu4y~OGK
zWMPekf~o0iEeyS;5I9r3oc=!*GOAw7+F)TLE4+oRVqPUb_inQAGwZ)-`fE0M?{hEb
zyO}<05(h)1CPzN^Zlj;2^uxl3J1p#EaBbeWi{C8lvXH|@P8++KoEA=6I3<?hUJHjU
zjQZWZ&%%BSzjHbk&ip6!NcJA&Rc5634-1Fr&z@ZxU(0Hl>@B@9qsjKBbixq}f3l8Q
z_)By@&OlrEn=b8{NNrn9?`lVuYI=!JFoHc3PnzD|KKV42a}`*)XW^`ce=J<H_<AOs
zvvA(RB@35Xjy#?V!r>RW_O~}>fMz7e-OH$5VF)bTtdWi<^}AlnV$|@W(+zSg++hi7
z?d5TcMajayqWPKKgq)n`JCD7V^%~#hTD}!$-na08_1wZsy41oW3r{UPv+&pg<)4V|
z1eAQCq_YbtH9Qw$Z1NO29Ei+U77}bYY<zPqYmFF)r*hdyv;iCCZREC*$3{^b#cbrY
z!B=S)5Hz2l`33#Am6!a2HVWA&EI4cyv2oy9R$RV=mxC6!QNl)P8%Z|auu;;+h)=ul
zEc=$SapPJRttBQ+w&QE6jE%B3p0#bjKUp*79)0R%nw7H=Xyj$uRIpLeMqL~AY*eyQ
z*+v~3l8q`hs@kYwqo$2ds(P#0sBYuM&mQ8Qrc|_`Yeo@oij7(}YBQs5$UH@+@<hr|
z<x<tWJez96X~Sj1ZDT@Xk8DHX#4o#f>RDAUL7jy%vBySQ+)i(DzEtXA_o8Rr^=&k;
z(bPsW8|fTng4=7Ov5kf{sJs#NH1@O#2|bNHZ`#PT(L^vagta{TdI*j}wasn3Wuvu?
zHa4Gy6}PsfjaEYK>8f7N$n4&P28^EIZfoOh8|}oY#Oqn_2yHZ;m}1mPvG;AXw-L2r
z+4#Ul2OH!0Q7zr`p^c6<KDW`^MkgDcZS-V!8(nO4wfXKd-qIscNjIAx7?8zGDCpw6
zIOwpQ^8aj{df&r?KKa;253bhQaaVJ=ONG6hPA{7|7T548Ef0A&SB+cS`$SXDrH_ri
zHip?4ZsQ9Z{cH@hF-Z8lzi{jTF$=2VL2vw6$vfD_5Jvn$Q*v-UYpBpnwH#=KjgdCS
z*cfYLlnu&{79RUj;COeha;{h^CFz#0m{(Q3<7_^G+)ab?Z}D(06KqVhG0Dc#d|p4(
zjCy`|e{I7j04qSF>sdigpJm^MZu41c@uJO=#pE<>m<-dlrV$$<CV-Uw`V>K!?rjpU
zjXzEHHcw4o)1ZNEV~UNbHexm=+xWCXMy2Y?g5GXs$Tu|LALUz4-^Mf>-|ms8vj)D`
zfCu^C*_dgg|3uG18}dqJmW??!=F)Y%b&HAT^Pcc~=P|?q?|d5z1gGoutQ9_Q;fbC)
zLzU~lXDza^*v1mh(dHd%@h(mL-kR?y6j<NdZ3_AW*RPFxG2D+~g^iUqdd2W*46AIc
zwoyEW5;6Q_V~vd~Hm=%OYh#^_!#0lCSkH{Iv6E?FW222tHn!T>X5(iYzlfP`vGFS8
z?RQk!ESmExWN`X7=Xp81Uu|r+vBSpbUh(Gid-W;y!xV2t(IjV=jXgH@a=lkqb_+)}
z>E+#LW511qHvX{jJELaG2WZJ7iD2~gECOcuAtB6B*rXnUKW!YfaoWZi8-Lk2X5+Yx
z6E-+#{;=}5joA%61RUrjGn@tC)3`}I2xt%WoVD?fjY~rFIj*dhE}p$$<2+ZiFqkqI
zg(Xz=dfdxGc>QkgH5=Dia%0F5!wnlZnMgJs*|=rnwvf3eI{r(3m&CimA$P>osD~!~
zCx#=qZ{vaR#;XgR*yP3cv5hCpZ5z*p{8M2Jr$dwIhZi<pin%1j@crtHS6q_!>a!yc
zHfb1>GiMCBV#psuffy2FaaZSwA#V)1V{zZknI&_Y6eHb!qG>+CEdH6hU<`#~C>jIf
zRX7&+KLv`2?sONGFs8JjSS;?SggQ;$h@oT*jbnH-hEg$<j-gHrQVdBkB*#!ChN>}?
ziJ@!^<zuKI6qXZx5d)`5Q@J9T9yE!DRpdZoERJ4T2s6YSx0<jgB?e|o^%!c1Q#7My
zEWV~FOj;|3+A)l7-QZrbyKlt|>P(Hn8AH7o>c=3*_$p_3Vn~a@B@AFzxMQFnI5f>*
zlhdp#26`Reb@%Ewh#_6r<Bi3abHf-qUd(J11O4_o2{|;waio_wBZkZvK8T@13{7Ha
z8biw%TE);T7O%{2#n6JY>*Z}O`m!2O+tV&y`jDzx$IvE*b}_swMsFL#+X7IGb9_e(
z{kqG0F}yD{wC5-ydujG-C7i{FG%tp%7;o`Hrx-fN&|Nr+LF^*ryNV`**o~g~)XRJ(
zrA})2DE5Dt`VJ^5itlS!mJEXAbP)u}vlCa?Wf#~bqksfa5LR+9ARtLlP!tI&2Bv4a
zXSyf$5+#QpNX}7$1PKCy<Sd9Jf$#R?Kj(bs)Vb%@tyk66Rj;bMXS%A<$BVvlEIJ#{
zjs?!H)~uf>tZjes5RyS&4EFMWWCXkz;>Dc9j`3c6>cx9ryzj*aUVP}qXnN7u%%NU<
z<VA^!nIC&G%nS8u&TubA&>`=-`~B@+GA5IG8F&Xf(u+~7FtVA8N|m;rF<y+7!awn1
zoEN2Xnm26c>D<7>+drmqmix?$uURE8CU`N?i_g9If>oslPRU%<J3pt^NnUGKTzWN!
z^Wj%sO!ngW#JKwFOwOfKY5d6kofk8_nC8WFiGITd)S7=w%Z~0;w`*go%zf`=e(%K(
zUMODpy!es$UM4fn^x`Kkei`U4F(9ji=A`2F;`ml8$?wI!t2rk+WU8EXL(Ri2GmqS9
z#L|LZ=*;598ZQhlLS8IjFMAR8BI1SVMJ~P3i<lR2j;X<!lUsZE`p2@eY5xD^d@(Tp
z@j;ohyqL}L&X%v7F~^I!UbN$#zZZP=<dY_!H!oeyX;;O16#bcE^$b2slGAt*=X@{!
z?#E)uyF`$B!D~6h<zB4x;(zoj9#<Yk`2f30N?`WYUa;hDksNXsxYmnxUi|LGF)!A8
zvB8VoUhMH=qZgaJ*zUy+FL>v_*^6(>wAkjw7K!rSZ>x|ecdbW^zxOxa$w|hZzKetF
zTF&G_nP+<EY#5Zu2eG|g{7OqYDjjm5d!HBky*R+=VC!CSUG40Hbfi8xKE>iJiqCg6
zJM6^~FJCpuJW3}Vl*yy;0?p`gFHU%I&WpdiIO)Y7oO8T5>%}Ra^5D$VUYy|sGB}g1
z&C-@O_OQ;ZYM(-ByyzD%lh*87&Ur5`cyW_`SHgACi%VWy<y24iE|W%kikH2(BB|up
zl}!5?Crh~QMX*$M$Cb@)c&%Ft@>^cq_Tq1^bsK!WOd4x=M>wNwfqOLLB%t7R1^2yp
zz&TSvWd#qtc*Gf7u}0Hb-fepE)Qe|c{KvE4J=nm^C+vlRR=ed<kXNxDy^|FrDb_<b
zc|IZLvLy2J{qpBmtOsX4j5D>Mf<g)kD=4C%q=FX}6jiK89v<ig1;uzoIVguJ75Cnp
z5)!>WCiDI$?otX$E2yAY53^+y>oK;hf^rIfiOpP9(RzmMbuEXv$}8aW(VbcDiVDVE
z%i%K=hj0~&3S0`@3aYYt3K}TZwW%6WK`owjulz47)(sm&O(8V|dCx}W6$QR))&pH_
z1$7kERZve->noU9CxZrjxFf#NDVu0x4W)3q0*8Y1kKIGZS(iwsVqF0lILmnyq$*hZ
ztF5JiR~0l=kg1@Ff<_9`6zgZA3|48PCtX2f1?}@?_DHd!jv1M=@@1wbW$M-QH&xI~
zY_b*fJySl5ExF$vsGgr@i?8K0SI~m5A3W&J=qP(Sv$RssT0t8&ex|dXf_s%Scpu)D
zy->`>SC=1Ecllq*-(Eon1z#%oN<l{jZz%ATO#4_tCk35(6b1bhbWzY%L5}pxn+m!q
z=%L^p1#c;MTe`Blg7T}Hv+vmKp4H9S5&VUrr-IeD-4uHXDN-r3+M4EklAT;3^IZkK
z74%VXtD@E8`>y5iDZ9Ud0SbmFcu&DV>2dxdF<8MMR->ZzW5tvIHK!%}{e1-=DELUh
zFa;kfs8Pv!QXZ<{`HvEG75WnEFkHb11xp?@qPH+F-HA9-!6*fz6^x-5DVV5WEW4F%
zqhP$8`@J;JrDB<li)L0TlX>-8&Zi1KQ?Q_DrmI}$`)QubMKg<B&-q-z7i@$w7C)ci
znIt?<*-R>v6@1NNi@I{z^$Mmc2rArP9n%y{SMU>^hwq0d_?Ax9!TE!N?-a~n>rKi0
zUa_tkg|E4I#i@NghYF)Vvgy9IZpE8i&+#fy6sQU`1vK_C?<9|3@CUgk=Pf;R1=x?1
zJe{XxGVt1DC<rNtD2OU}GCVV^fIm5M2M#)I`_b+ghsL^0lZVzEKNiW1E7oso{bppo
zI>gP5BW5X>O+~?61(%-L7Au%1r}i@&M96%>b{jGm(haI)Et2R*l`?qx3?xhFA=h)h
z{K3ZT%N49(O*BL`tW@wn7UJW*A6D@k+4VjQ^r3z4l=q+3|3$$Xx_VRhS_P*RTs~cQ
zor3iWHYnJr;FyBr3N|U&tYD9Vy$ZS)acohrjgu0cwuW=7Vy)Uc*44Q~0eOeES-TbN
zRIp3Iv+d48*{+RI+tGg<V;4D&Rd)Q!n#dab5qmuQgzpzTAb3#lH^D=KhXs!)I4b0K
z1%L0z_q>EFdz(G}pX~$>TDH*U{dV$`3jR<)!WTS<rxl!0@TY>a3SRM{mJjC?{H5TB
z<dlLwoM%#%R2Fqn$OXmv0w9%3YykyV6kKHw%0X#!jmK4RN5OSbZV28Kyd`*Bkd|D<
zOuVb$K|=XQ$UVV-c@;?L<p&mdDEv`Ed92{S1i#oc?^EH=6y)(CukZibEuRlb!f*dz
z9f%>>hy0=xNZ6F$UA~YHg?%XELs1_}`B2)2x;t#e1Yh)_xR4ioDB(j%A102p@g-Fn
z3^Z)S7IhrNGCq`*0^vhBA(ebk|Ff4*9HoK}6@~B5W7UL7m3^opHe8OxXjLCx@}Zj8
zT%TaA)~PQ1Wx*PPH3gZ(-6v}MP{)TF>DIqFb$zJkLzWNOKGgT2fe-0EH1@&f!|%f!
zE+5=Jv{-IW@xd;H+#$p%*!aC-9wF_zI=?ROU}~yFU-hA(kVZbF2`TTjG0=b^g9mEu
z<m>w6nLacT1M;RmG!x!^cERVC&3)+V!<!U+Xz4?%gk^glS_^NJP}=&?PWWpH<#l$=
z(*HYR2Om0${)S+ugiU85U3|FQ(fRy{-F)coLk}PKqQUtG4u-dVn0(M8?<8{d@u6pe
z_wpep!Qb_vcY;TT6ziMd{e<)v%)MqG<ilVeKJ#IM4@21d4{f8_#W!5<34dSk10O#0
zVW<xu`7pwVk9`;>`fx%1QO;ZppDk)Y94X=`*5tV3xt{w`qcJ{=^;sL2)#uJJJ{&pV
zDE6mkoDanDf}bYDi9USpgYJXj!xuhG@?nM#-}~^T4`2B(&4=l10Us(&vQ6<JH#_TV
z@ugo26`=nxI+ebCvpb2>(%HF4$~QiI>%(_qliM?sHk0F)-~Qmkk3P)w!Ry1+NS=41
zDL;t~H?d?<iVs9?@1XhM^TF>!<b6;2)_f`*a%;ZcA9`vHv(`rhd<aT*@_#njLq3Fk
znC-(H+WQb?$307Xy^{0E2|K+v=0jW#Vfrx3XT7(aD^ccsP{ZA?Z8DX)KCHdns9$mC
z&z!N3+2)DCd_h*S?2+sv=}C)xSnR`T6=zf|@nNYCM>#rtSaig*%!e&LZ1rKe4=a3F
z$&B<;&9;%H`LNoDUwl}@CT(i940XP_SE+Z(T3Wu5yq-;Qz_w11B2zc8M|x)db=bDa
zhs{3gO*7^yeXlabZ9e3gZ{O#`ejm2`u)~L)KD=1TvD=3|KI}@ISBU|6_X_`2aD&5I
z9_Yv{O8jl9^MDV;Lp~f7^4oLdpLcgE9~OQ@aM$@lG&|<Qadx_j$|_FyaMFkSemwBw
z4<Al(X!vl!hkSq8xwYVFAI{LYs{2nLUYX`>JgDJWPATs?shku2FTq<iieB{L5~o2w
zKKJ9Y4_AD6)sKdLT=n4^eb|q3eq8sVZD;4-KHTx)2B)cRp4zMIH+>-9^5M1+ayIE*
zAO7*-i4RYGxaZ>zsLuO>{|YYpt2`Bk2NHcK_(<@v;D0=kbO#Ndu_ebA%I`-3Kl1pI
z*N-H>RT@QNKH<rNjJnU4FX%@hKT0N)!a|DsQA9}5gkH>#KgU`Xcp;&b5K{kq`4@$h
z5-goaE#t@PKW(%x@5hl%_6mMf^y95d_8Z-umHepeM;$-v`cXyfUrywLA613FBv>t>
zSNG#=&^mezQEDdiSNy0Yymms_-6yqPf_wa^??(eaYzf8bM~ZNJLUH&pJg=K2yF_s(
z^j^CwQ%v>adCNEQBh8OKe)MHK+;XM+(bA7rel+$YL$Vx}4$2hX#E+&znh9q4ku9XT
zU<*H*U9eiFLd;HNXzfP_KRQZk8$a3#q25l&Yks_*P}=)ZFWt(*@P;36`q532Itg|b
z?BYk)gni#VmP@?lM^91S7VIwABVqFnN5LOfO?ruvBlvD2wYQKZ^X>ioxOCq>=A5m+
zC<pGl2lz42k3oJ6_G646WBnK+Ny7x+6MWx~5B&I0I1e#YNUv%|$v^Vr{!ObLhWjzX
zkB<{JqlAonZn?Yi=!AY_cjZrne<nCCp^x|D(*%Eag*8kj`1!3&i+th7BtK5_1pWBZ
zkFWgrpC7CIm@M|XAFe0vul<-J(W!zyKc@LH-H&hl_*Rr31-}#gUT}tB=fT#1`r)~9
zvG7lR%=E)6QALoc$x@#Idn{k_`=N@iB~k-If_`Y5EDtpN2>B8AW8X5{B1ww)5%nV`
ze2yP;{fPTv`jIQjEI(!oNl7ov>_c~1N13&&@;njA7x*zh!GHGSht@8N3lqxTU6mIL
zU*gA7A<G0;_^~`;lO`pvr1J||{oGajcy*HP7eChcvDS}ubd0pZJ0;6{Keh<jkSJlJ
zADa?<GqW$YdVH%W+XS}@?nv0&_}IBC!4ISr-XnakAHNFOCwSD4{eBz}eo*j`;BSKN
zv4su`;en2DgwC_t_V<Kx%#Y&<e!>sEk2OF}@met3d0q5nb8M&mIKyEs(X)PB6mm}R
zFTwMI7X+ET{GQ5}gkKiCB6wBsnjmdnsginwL%Xx{rYN`kxGm&w!G8ts_;FXrKZ4A4
z&yO-lC1KzMUa3i;hn(0|6jbrZkKZ>rAN%oBCC`6;Jn`cxJ*0jn1C?jO^Qe}RS1?I1
zpCH9#75Nj~v&U6PMPU^$swkzRh>D^rN~+KgyNanOuHpq1B~)B|>KL`kM&tuvo)vap
z&H3y@?Af8mwu9wMtLS;(R#pY?h05^mVv3WS8@C<c<eHRnDv0F;E2yX_WWsW5xk?ok
zQ1OL|Nh+$Ucu7S!6>q7irlPuv7Ajh*cv(daW>Mi#QB%b$Dr_oJRMb*YTg8B;&ebJ7
zbyS?Z<f*4(*A_=z;j3=Dro5EKXnhq8L@(CInVp<gXraB&r?z6tZ4d4^CUkH+Rd`gS
zsvvi%a0@9@B8}0qPu!Qzx?WY$P(>pZX)2nj$YLwicBQMxP{BQ0$r}s4mhL2PqN1rp
z$+agoR)A#1AsaDU#i{L%=8}3~y`{8LvHpntbrtPZv{unZMO)T0;(lSf>+0XGcEVp1
ztbM>Xy;#aryMr4ay<W}HK}AQ^+5__q6`fS%-nDgB(N)O7wT>=Ac&s;7a0LoexBuaM
zTSa#jLsYz{q6hm(#b7pjZD&svz1YHqoC8$k&?U~;(ziPLu-MX`cUANjLSEb9>8oPp
zeosF^lKw&h*K89DI|r&5q=JOu{NzG6TRNUC&3v-l_P&Y_RSZ?}0lTt~<4Ka6i#0w{
zF-*m16=PIz;pA}DTE6#T=XXY^_*lijyY`Wyk5a8|sA<5A#Ifx0#?8j57_Z_J;arzJ
z`I`Os2HU6XG8G%A+CEdkDEDk3PE_$#lH+sL+O?QTyYo7~q@v=miX$o}tN2>Q&ngzE
zn4)5;ikT|BDyFH{ZR!ja->aA|eB5!zH!8jr{+%EV3f{^0gNmCG$I;!6Kesu46wc^R
zD(YRgktiyBD*oDPpQpmFLRAr=($uY~2$1A+^jl=B^i@_+Me`wcg9A-SjqZ-7gPc@C
zD#D_WFX-rus)(tGv+ou;S%|4(Ts;Q~L#`A%OT}y<a|Ef+RjsY*N#?8Qo19k6?r4|M
zY@v!pbf;amLn;>Y=AYAuE&WnY$5Iu`*nlcFsaVb#Aj!R!_sLT{E7-*<{-<J<%2#4i
zsjrsQUsSAN>$P{xsh(cELz-``ok=AIHCrdS*3)fvIW7)xZjk7jK90?7ir1R$k#5~0
ze5;CWDzpub?GoLg;#e&wZ5VcnvP*Ec;Ncmzy^{A=75mst-JSbY{3gl)j+(a}2Zhr~
zw!KxEc>fpou{Y8hjj<i23vnu-=T~WVjGnW`enQ38L-ymGG&CFiirZI~J84_g)XkMy
ze{guR@FDiE&O3;IsyNF@PeVx!4Ig$tr{c1TE2{O_@|SA;7Ia?41@_2H`$dUTxg>;Z
zk*=z^#`#&rV-8XkH`pLg?GNcBDsHK`D`p=Q$y&NN=e7#s--34p8Lf8N{f~-!D*jb*
zU&RBl56A3tIyo3PtISVwa|SNk#j$Ob{XaTwem9>w3u$;lx5@8*$^pfCYFzlwZ%Q`H
zuOUgp=@-)`XS<Vy<kRrai)mCCqG#O&G!)eE%cN93seRe5D6z1HvM)P|Xeg>-<n^3l
z8eY(_y}yUNxG2?|yBF@xV)R7~r8K;wp{It@8p>$sreS!8=4CaM)9{LhS{ll0sGwnD
zQVN@>qJ~NuUe=IWEu*r=C7f9=304t=AjPU0zPX-5!ca}b>Vnjnv4)14Lf$&@HlwvQ
z{9WDIRRj0!siRrHch%KUPeXkT4K!|kixwJe8d9jtvX!r3?Q&q(&`9Hl65!C_lq@d6
zR1Iz+wDD-@B434gRg{Jay?BfK>B5@`HcsdnLNWzsCtLdrG}X{dqFD)>Y*ux!_2c0m
zg;QH<=&a$xsj00rwARo@1I6}&Z3Wv2z9z_|*ERU<P7;O=nzg@TM-6WzQafqb@KOeo
zCJs*RB4^5y-;_3Cvn2oGc#EfFbLY_=Z)-3Yl<TgchlbZrI~n+)ie4IWG>pDw4{LZ=
zLvIbAYWPe;9}Rsqe57HRhJG6QYZ#<qu!hQ$ZT~EE4A3x8!?6O+Z_`}g9JNoq;~1jh
zJq;i5yfm!nlKpQb$NL(_Tz0>8**(0cgS&Nc+1*ff?os>aXC1`hnzayb6c4T8;=zI=
zG;p`WkLhDVxMw({1=iTdXc(*E6AiWVIg)QU$FUA8o!s9n_r)}l@e=Lug>3@eOv6ta
zW@`9c!xtK+Xqc*Dl7=ree5K*mSR0Sa4fDVG$yvXWW3tALrfpwq7<$>UQnRuCWez!}
zu`jAPGV(YJZFEg%RW*<>d@JNT4KotT_Zogk@E<jP&(}sXuLea!P=l_)$1c;LX$Wv6
zR&uBsSV<l?_d6#Ef1j!P%)xz!)`xA}m704y8yf%jw}mtmsOsP~V%!E7$Mv~h&X|Tc
z`yz<GL6{nHHG~2P2QW*+Yz-L!WCk!t!(0s)*o+$HX_(Ij)Ub=SqH$H{a(0J?-_o25
zG%VD>t?U<RSgc`*h}=wdnUJM|rO(=^aK-&f`mKhI8aA>1Ra~nytkJMm!)gtC7CNc?
zB4mxr!RR`%S<lmNmCPiD4eW^G#Yr}^7wV*M)v!%$wrKc%XL;(|HSA#H>@3gh%GqR!
z<ScDBi=|_8kWRDh)$q{eu-A6{uHjeVjPBF0U-$vRgLKRC4(h*YI3$X8%ywAA5jOrY
z+fhO8y-a?L=U&@!T#)31kdr*nbtj{zI6cZi&xn3b!=F+bt8tcnJ;uSK{3S`}rOee0
zTvRS;xXigOfLZ}u(Qs8mz5tQ~xTfJcvuk*y;f98r8t!PgtD#Ptq+1$pb1Kl#@>FvA
z65Ey2$)#&MNSO4Gh9X^^4EHq@*KGILVr+_b&h4|x6CZGzt?kIYo<n@B;XjGy4Om&8
zXn3X}PXJHFp31D7%~?LlvDQhnPZBehnRY5Ue*gsnC?7zD015_BD1a9OC>20q+61@@
zpH<+^8O4fU>s~Z~V$U-MtV1h<GVTv@uml>E5WOU`56+-My>tL&11J|j88K!BSXI`X
z#;iQ6Q89o@0lXAIwE!vyP$d8ath2j*+R9F|`!kAF4Ol1612KE`0A3EDh8&1ynWwCV
zI^H^oNi{_*eZNud0Mr|{lmP5JsfUg_0n`;zPmoG|Aq@hsB^25_0&oTpN^vv{;BiTp
zOE5J6w}>7=>S-%%w0SiE?pZ;?&?ta3Nlh1|(pd76Gzp+-0G$Kq5<s&6vRLyQHtune
z9YFH{USkbU*;rr;maxLsCV-YgS_!rmq|WWEiERToINsJy#B<AS%=mf$?WF|r4njH#
zz7aqtG2@bFCUp(q%>X_OU}yl{0&qRHy%RuBA#Vx3E!bVKN5J~L1#Nl-tO4FXfB^yI
z1n_PEy#weIu!e0vK@QKpLI#z#20O<%abN(0M0`(hZ~#N392P|bW}(gd0eld!#yE?5
zu6z{0Ft%p^Uj<O~gN)$;%-(7r7r=-BJ`P}H0HZ`78^CBGV+6C7+Gs}mtic(?PXgF<
z%}zc(fKR1_&jOebz(nCR_*`<4ObXzO|F4|4w>VhN<N&@7;HLm)l5Dk43E<lRzT;U0
zFfD-TB7PG9!^(_i_JXOjA<p3WmUfW;Amn>N>OYG8b2D!MN&vbjz5x6@_W*)osS0X>
zEQEolK#_#S@>nEBA{q%G8bF>P@&*wLARfS}08R&B29O)TjsSLY{^!Zk`JIl<oc{xu
zOS6f#^#RNaV159<1gzQbXF-w`0W3)Hg#j!QzBr*Qp(hAmmQa=l@cW-mW?U)C{{m>;
zGI<rf>#1Y4C=VXmn7SrmzgEaPF`&*lb3*_d0~kESu_<89;cZ7aSUuKuO8{G0)f@J0
zQu*zI)Gs}=?_#ItaZD-eI?P$Z=hz*<o&fd=|22U9LiPzVby}OG1Hum`l;4CL;*^!`
zpurJ|9u@pu@K^xHg`5yP8NhSnKO_qe&0J>!_%ncK0c*dSvjLprJk!JZAb`IDI3K{R
z0B#3xA%KekT;(Jmz$G^9J=+z*%Yuwf7;mdqvp56!^#E>){@_-l8}!ogHtwNE{z}c_
ze+O_!lI{g?SI9q!5?Ivp?Ei{#U!u&&><`&lA?G7OlE*^+3*d<m*7m8?nMwS<PlqG6
zq#*JI(KLu=K_mx}KZtrk)DNOS(CVERgD4e5!5|6+Q8)<p6hm<#MS>`rP>KbSv#UJ2
zm8ma?SR#m$iBy(TI*2ksAc(3#lntU>5EX;qtX@8d8=p3-5VS5I47>{PvNF4MQl%g&
z2T>&ma$fstwn^d)Ps^8rs20R4LDZ7e>Os65M2#Shq_kja%^<&#R6&_mfms;kC8Kr_
zb%Oi`Q-!)gWX&$0zi45W$s}GTc=QHA*jV$=ZD~QI@L1)Xo*)KHw2{~)>IlLq#3kq!
z99q2ikwPgnOAX>xv2Q3yrI8RCY@P2&52A4pBpHGvnL?TfPH5uJ3R*+*jUYM&ksU;H
z(Oa<n<Mwtzw3KKoLFR2Oq)iZQ#efRU7+#a;>p`>^(m{}VN4Cir8%gIN)(vv>41%A#
z>JmiPAl?*(Vs|0k1m6ncZ6PnOwKJ(l!sZ=z&1pMDVlTFpl=H4&Z^2IQWU}ObLG%xz
zn~t}13<zRi5HIPdrehGjD2Po#Yz|^b5bp)?Z4loD@qQ3LyyX}j#F!vH2;##ah6eFb
z5FZDvFA&ulZyUxg9&Z~Sv^LP-R~1GC`LOA@xWw*#W*->@l~H0zV}2H7Y!IIW@pTYW
zf*2RX_#i$F;<F(94~uc%U53cf@}9Sy6M`Uq6~ySio{2$xE>S992$>Y*_C%J!7;h2{
zNG3~kvNvfe-C&KU@-6qYAUAY%@Rf#(n{3mAAbum*wpNQ7L3|&?njqHl)Pndih*|U&
z4zAVqpXio!!XRb_;SHiep(bg0Qj{QklGo2>T;^a=45}!aU_dY^s0U#P;WqL#i%79?
z-tY$zWosL@m>>yvsp1iH*~n)LJuj1m&k15~5KDttCT8=3SP;a*Am&S%KL_#KaaWms
z9^#^)^->4Pk{}kd?>5?2%ljKFlj8CqR<O1~tO{af(Ap7;g%kO$A|7kC6#k3UjSa~C
zR4c#lW=1Bh3xd)0a<~^CJ2ub{fAMUTR%OFB`!8b)iydh@9>fXyc@W!z*dD|VRxF4^
zLF^1-R}lMy)>|d4-tHiNm7>V^NQL(bGIbwks*tT!Z^ydznLO?RF*_(d&M55<2k|>+
zjF638a70p%20?o&$3!P#IVXeogD0XRS;wg$P6zQ%5ch&O6U3iET<07T<bRGh7sO=_
zsJ@=RSjccUmq1=**Z-GsUc?JQP+{t&1Yz`wBvHJ|;h!hv8c%JoWph)aw}bdQh+D$B
zl#&L_!t8e>*WE;3>i-IV62wzZq(MB8=))i$2k~DJk0i>4oXpawuZM*&SVU?<o>#Z3
zokx&0XHt@G)tq8}9R+lhm!yI^3h5}R<3$~Xbrcct1sz3&6w^^$2am$~Y`mWH{3tAh
zVhP<kcb)<ZETyB2j<PyR>sDo`(1xkZNM26IbF&IMD(a{t86o9Y7G6d0BX1J3R2BW*
zq1NeC*YUEBY#q&Y)X-5=M*|%;9k1x9>u}fAQBOxL9ZyQT_(NQ6-TFDMjv)8EI<?(p
z{Yp01R$s^03p{O_WbHq0oAPg?6diUQ4joP%X*$w%xOBML2n+4?%N3vBHkrgD(Nw`#
z1t~TZ(nyeIeTF(3>u9Q@nT`w{nL0e%9Zhsl=MMiJwmUYzW4)5}#l?bIy7iyPr;hH#
z7CKt$=%k~5F-I#M{kGXgE6xr&TI*<|<G=fkwt}w<w$t&N5bC$b+llQZ%JX8bjym6v
zbiScua{q=TOzkX67ad)NyeU|0n1`uvlaI3P*0D!NcO5-gB^^C=s5&$qy>#U0_*BPd
zI^NaMn{BA$eV&VszMSE83}#hz^ykd4W1x<mSL$)wA_o2eR6fg1WO%L&(XAbgxEocq
zSt%qR==e~_FuIVAp*ns~EAf#SFlmlt;qFZ2BXoX?!OF<+G;h6!cWoneY`Bm%N^rE`
z7#(AUd?LuyaXQ8ef5%K=bb^kFI=<2It&Y!ie8HAs*X!7vQDKsfFLiuHM><)TyJH<#
zY+sw3Lc*=0rs$ZeW15cXI()O7^**)p9~KK=OyQ;k#C>_|eWzoFj-PbQ)bYKJA2^P5
z+<htEulMZS4{GtVy4*yId6kdqd37i(M~9z>J6^YiD}_HM^Tn7shDBIx-&fNEI)XZu
z=~%8q*J0?Gt7D#ykdCkpQ%A0jh>oa^n2tC-e|lP4-3IM9xL6qm*7@FV4Y>K$ERHp$
z;A|apq~>hN7mSppTheL6W6js`Gn-V$A{`?dRPbG|yFf>&5=pEicNJT#V^yo9B|4Vs
z;0dx~%>K<K+p)a$n0<wgl{)w2$7UV>qot0uI@ak}t>YIRH?HPeqgz{(O>5k2yE~nG
zjxo#LjCzm0tiPV!!6Y5r53O=hH;ZLGnaVeUw&>WZgW^sd+jMN#u|uNVJZ)qx_m$SK
zvd&F(tLC)XB}x1(dasUOb)4skT+g#l$9^3r*uQ73k9Hl<@tclAI{s|pKFFEpx>Fr*
zJFMe~j?_oCV;t9KZAa;HI@)!0zA)UuXp2lYUyVCXpU-yidmsG#=t&)aaQ@eETE|%(
z=X9LmTy)y{3F}WCRU0@LZgKGGOu1+Oi_^|SM|P34+jU)q^Ej$Dbzk5(TJ655<7SHE
zlHg?>wfW0Qieuz^8P{}N*HJx=m*cp>RJLRktD?B2<2Elk5#*2HZyk4dY9TBN;jWH<
zI8PeLHgJy($h?O2$<+Hg9?(S(*<s+Jjz>BQ8YpBSv%KrEjwA#54Di2z|2X}2aXgV>
z{*<R6Q7U;1<P`(*5(moj#X0_{c&(Tt*+6~+8;hhCFtD_qlca2??7{|$P=Ce2zd4E;
z*7driffo%FGf>>X3kJIVUbuvTA@w}-+h?8J-0Vo(tUT#OOBpC_pn`#l2Htt<E@Pm)
zfpR>kL`f*#-sd9T%;Pz6J*Sd^$_7gQRla_|%qj-1)z7@N*LCZ94#}`t&8r&Vd$}(e
z)}25#!9yS9JD9(~%LZx~sA=F81C0!%8K`BTwt@Otsr3wN=Kpz4dGn;L4jX5oy{=)s
zrEE><1{xT!8AvhUGT=5~XAA%Ca2RkJ81S28)Wv4~r#V{=b`~$2wx(3J$AD2Nt)YSM
zN@k}TSXn5I;Z-4A4OgvHHnXG~Xl&s9xt=C0d}7`V@`i=aoX*p5q&w5#i{dttrUphW
z_B0c$IJ_%)a|105%rY?BKuZIycyxpJb!cs%4Qp$lgMqQ_+#mJ#v^8*kZ%#WwlGlX1
zE?Bc@_l^eMFwldoYM_&WqAxgV?YF&cpfh`Cv#pDP>uc?GD!aQHc+&t0LpK9&CHTam
zDf@TWyR%PAIrlEL^ODq4I=ZicUIuauEcUy{dr}9uvfnk(+dv-!erM{4*IdLp6SDdl
z__Cs>!569h>3BDCzAxt)WMHs??+yGw$6!Yo7{e1`n;7`Oz()p#8Tin^Py^8w1^G5(
zmv7y~1N%KyZsZI%Fv7q{wvvI5**mS%hzyPHc*uzjUnxFXqU3#BWq)E|oPo&(zBVx4
zz^4X2H}C}y-NW;lfeG{$;rw56-Dvl@bv9z>9-c|8v*=$vM>B=?)p9MgZFWxKC}Vd^
z(li6p4SZwZTZs;cST@`ba6mle!d#1IRIzY|r2bt!{YL|LDmbGCVg`PaW}IojYv9>k
zw_?C2%Kl>xeZAc;TovT7(hLL)1SP5)2n#V1sUgE!DMPbJLiz7o>mzh}`DSrZ+%-L>
zfn2s&O%KDDH9d0-%%ziuU=LxQf%yh58n|TOX9Eii>@={;z(NCy46HM-p1o{fiGk$?
zR<JP}yO+{`nx-$KE1q?4(%c6cq@FnHUTJWb689<tt9ej%-ywIcxgH|_aQwxv{&rj=
zs1!_FYaq3trBAEr-oRPKz~21sZ3Z@REF1Vc*}c^OC-W@^e)G9W7+8MBL3@k-p6z11
zLy+Y&<8A|c3>-Ibf}(+64IE=3h1~lL>}LrE4jI-Tni0FZakl$_frA{6+3xqVt>|G+
zL@Dkgf{qJr@}mZRm+16d52MMp)GwBKrrF&m4g6u?PXlKS)Gd~Eieu`W`wZubneNjD
zn73-seLE?OBI|jMvrVst7kCy17(Gwpd6h{PG;m*GnJ)Kb16Md0Lns!)RnBP!p3)6C
z7!BMoaM!>;25z#W^SK#r8@MH$|H(31#OeN<jwH(AnU?Z&ru&|O3nkMY82DEj`M$L9
z_XVs*erVv4q&_zApOA0Px@pYtM4}%bc{@)Cc|#}=LctJ{LdX}wp|kG%A#7RZ*-*%x
z%Q}ZZ?ERDbTz)r`PNZ}%6hh$;T5We<8Jl`?fTxJ??a6K`#Y1=@gz6!@972f@N``<C
zs)q1l2&F=(6hh??N{8^~3u(u1H2TEpCMgp_k-46-g5^ReFN8`3Ar%EPo#|CVaCGX?
zX@2%cw$xtv+~hBXP-}pvT8K-|-3^Mk2e?vs=R;m2gqk7L4WV8L`?B1xgfRN7yH*Hu
zobF1?J?2a4wL|FAG__6$<m@%B2w+BfTK$madksRc3E4Wp!>A(!X9&YX7!iUi1a}Bs
zS^p3`A*6<o8A6kg)zPnpkQPFE2n|DMozLA!kmTUl)I2jS$7mcvFxkzJA*5uoyJ-l`
zLTD30TeeRJPgV%cLues9JA{tQJQS-IbU${vTe5|j>xidlX0z5I5Wh=t6WfLGS_p51
z&?$u1Luenuwg&EwAzV`3cjDO{LLjmeiPZnS<nA2e9tG|$f+Vlr$RXZyb?+9!TOsrh
zVL%9PhtNHQcS77r5<Norr-4=Zk@>7@ym!&vD}<a7dWUduQfldUn)N*Ee!H>z-4OmK
zq)!NaC8-}fy?-Wc*vrI$A>1C|VfY|~K_LtdVTdU2C3MaS?+Yh+ZuwydLq+*0VKa;l
zaKTFbIE0ZQ%n0H85Js_cLzoc4#1LlPZZsx@@gY1-akox!k7a{waD5^;PVmsaEGB&_
z2A_q%(_!@U5WWcE>ky`}*nI9uA$%z=M}O|w#!Wx`Dul@ipB#O=5nFz02-8BC&XJ<J
zTmG0uC;W!d!<9+C6`%Z0kWo774<Y;*LM()M2tS1|GX!4<{t&$428wvv*(Z(I$oK44
zQ(y79)er(q4MAf={p?}raM+{MTikB?zY)R*ZZ~--gfP2)es&~;sF20n>1BTQ%ELCI
z$ze;M4`D7_CWP7Ir7WCh&7+)YlFG?;UI_C;_?fLY$1^c0tJq;r<GCI-+5%C2&9*vy
zaR^I7cn}7!lFz=dEoIAx@qHM}LRcQciV#+Y@NWqB=>r^zA)E@~bO@_M;QM~Rgs?^k
zyJjs5+3DF6!rl<p(ZQlA>m`Y18$#F^!ln>5i?S`DZxOOJgl`U(r`h%pc7(7qk-AIB
z*W)VhPAJ>~{?`!7d}iZ&hDSK|L)ag}0ZIKWVRKMO+g8~u@K6Yc6FMJ2s2r8(?;#u$
zay*fGB7~C({)dq8=e9E;{29Wv5Uz`IR`A?&vl}^og>YW@g%B=37mK7^<k(E`$?M8r
z5q?!rf3*TDz)*rO;}uD{5yDN;Z?Q3dwjSkfhwyiT-{Dh$@P7pFCG?g1oDV{H$k`)|
zH^O)n!eh=_VYtKiFN7y_m@jR0!xlc}oF7I(;m<_R6Xu7ctt5sdA^E~cPAK`q*!QuM
zNrl2F97e@3Duq!*Qj3T2LKsDb7faY@6-=RV35k{oqhvyVF^p0PUOJ5YPwg}-n^4LL
zDKA(djFF#NN35JktuCaBAOx$1@lqnSS{VHBCGB4hqed7tMXw|HO2Vd=klJCaJ>#I|
z^V-%Ev3|m)K^QjSDS~!EM<Uf3wtjqIUQZaQVYC+g)kJE`FdBx@D2y~wnkMvgA&tYx
z5R#eDn}iW+;$mqG&BDkMJzKDO!lp$S{A=d9O{*}LJh57=P1t%RvTeeqT^O$ke_gPB
zLhm4C%1h2pVRR1TD~WaqqidMo9>uUQ-b`5LgwZXGx59Wkp}Zrcdl)?uO65Hs9=fMQ
zdkH>IdN+*T673U4Um^X%7!=0fF#1cBxdwzWFu_m#XB(2>9|(C*@cl6Opz-`nKNMwX
z7{UF`sSFQeL>QC8s58U%F&!g}31aYi^W;%sj2BL`(L%<AF;>VY34L4`KbE!}lHpSk
zKNEaVA)U%Z;hzhBA^5j1^-G?D>0}sl#>zEW^smF1B819RA=AQ`F60}*ZxgBCu~wl>
zn*G2-hp|7517UE_@Snn1%E>c~nPGUtP{Qzq5eaiU5%|Ms*&;m{hAu=6LklAyyo}vF
z<|j8(`)_a=Ebwq;-kF5hyc=9$K~Co6F%E$+ehy<n7-kr`Vay3*ZrHl3nI$+|khjEC
z?#`<`Ponb$`34|G-U|^IhVk&QZL#Q!IGW@J>Gyut60Id+@Crz>Jd71#Yzkv@7%Rj0
zAIDS}>%v$S#_BMB31dwdf97>_r+Ut2B>Y{1FT{TAw?2!oK8y`vY?PryrCHFkuab-N
zHZ8Lb+qZ<VHH=+h><(jF7~8|x5ys9i|1GlhiP&gKdve<IwMPCBw1;jJ#;=^9=zc@2
zX`HV@@x!ujnsy$Y<&zu?<F_!lXzR}~4ux?zY`vNJ2T!nw`-mW)2#yM&^1F~@g2x3<
zgmE&F`bkoHnX`^lVZ3**(P_amVJtu4Dzz~CEU%I@3*&qk_t=IvaxR3?^Jd0fj@B?P
za#EV&z7)n~5wC=CTgcTgt_c}=Bj-Au<VMa7iQW{vB{=&=4$Jvl_~siqcciHIf5~DN
zCY`#GL;kOb_rs`gGsk^1hxjmTy*B(PjK`e+!*~)#QUvclv_B2w8E5+lZdCH*iCDkh
zbg5`9Gkmv8A>yIS*28{2vE)mnv@Z}r!3aMsjTK^CD1wX#G9xG)L6HcGMo=t*su8>t
zLGcJ)h@esgj^WM{6fZbRMNnEu$p~H)La}rA{KPU5lusySBPf^P=E<xI!Yc~CcQT8{
zEU<C}RitEc2>HBPv1$=ikHF4o1TV9mF3&3w)QX@+1Qka(8EOhy(jvKb1a%^4Akn&l
z^&+Sr0h3lrpfR(Plh`6i5t}mgnltK*pxw{zh7mLp;u3U6;E5nLg6SPRuSU?OxO?!=
zR$!DoO_auBnH~WRk~$a8e6ujiX%a!x2u4LPI)Y{qWJQp}){Y=Mg60vF$#uUKK?@$M
zzUQ?FUXP$<1g#|6I)b(=P<R_Q{>E(DFkJpRiBXdF5q#gl(J_KIB3SxLY6ppKom`<)
z1f7My89^5zT?HT2Os739Ti0&hO%xuz+s&Lgx$d_k=pI3j2*}?N>=i*zAyjtmX-53t
zkmkK3NWSjqAHjeK`p_jlu`%=&(ob;MheZb_^!Fnel;DGf3=w>fuGlh-89zv*ekf#U
z1Rn_*me7YsFe1S}j$owlnq4a}@0bY2M(|Ap-$w9B1Sc1`KZ{^O1mlD=IzEC=g}3iq
z`1pv_i4m+n?EEr<uY`Oq_ywCfD|J!?7Y^8&N<KM)X_D*f2&PEtra#J0jbQhDH_N2W
zbV+@!b74lmi(p0su?XVK<@S6ZfiD7o1V2RZBfYmu_D>Ob=?U#Tb$-m8Nr(I~bJ)!s
z>WYXYOj08VMxaXxS_A<hEN$Zgw-G@of~Y8A!HD3=HXa%fSpo?QF{P@r*<TUl3g@}Z
z5^{f9p}7&v6TUct`Eo8lN3b9QCKZnsW}q=oaA5?CB=vZWBHgarm(Zys*D`4<kDM~i
zR&rX1z#WB$KU_z!I)bwioQvR>2+|v+o{&jnO$2KrSjUVJ9E{+%2>A2zhKThY<h>DW
zj9^m)n<Ll~!FHBl*!XGntsEdJuCeDl+k}vp_{XtB_)fuHg1Zx`dm?<T-AS`wBiJV;
z@8o}ZLU@z|5nOMVO7h*!oI?>Djo|kP4o7f={dF^E=H_f7lZeM6I8HZv%|-Fct=YuY
zH*-$X>{r_#f}={OoQmLd1ZN_+*}}=_pAn?ltQSX#e{n)+nUyz+q$tkQks`Pl!6nY0
za6FCRas*c*xD&zM2(CtOjU_~Ii*@6eJ?Xe1Nb+s<^p*2cNN)4Tf6fV?*~s}CB9Y&1
zA^sD=y$Bvf@Hm2h*>Mp(h~Oc+ySkOiFfTXd>}HE!pKax0_%DJdQvPrMbZ7KY+)lK<
z0x5ON6SZpi_aR%pD3YUiDT-=Q<d3326s4mm6Gg!&3Pn*oiWj0N97T~Ribhc^YVB*`
zNq6j-XCv}zOXMZE*cMxfC`v~0VicvK))UROr*?`o=0%yO!%O+^du?T-C>KTLD5^wJ
zK8gxa?(U9CbR;Q|rOjSoqdkqct+F#0qNpmCJRC(9+h(AL<y4Pi(;xO)QPhrFYrS8N
zqDB-oqj-hAu+dXxqld`QaigbB)Y{=8t%Rd4YrfV-UN4Hid!6;8IB+wkfgp)3iWK3O
zZ|2yec&lo2heVxGxP;`tl|!@CC|-@?%_zD>(J+ceJkzN4rg~Zw=~28E#p_Wtjv^z9
z;XORfqR5P*NfaBp7W_PxGNYGg(h1uqioGctc}3Q(%kHcwvZGk@YO?}9NAoCXL(+n&
zK1WNzR#CJT(ngSa+bG&4_=Twj+eZ<(<?0Yc$EbB#A96dRZ_msM1w3y=acNw$PJ+DX
zlXr=tYZP^zPIt^cZ-|3+ek+Q%qnH%Mmr-<&qDK_NSZ#J+{mgfw$cf_JD0&k2yKcA0
z?!`vynK?DXU2mtWcNG1i=uiJy@9Go9ob9f@QT*B<b8z3x0Z|N$;=?Gu-RT+>MVn2w
z!BGrhcUSQospNStib1<v??>@L6nA&H$XNoBq1)}Oq0GD6^-&b-DtTDu+A5wAQG6W5
zr%`+s#krlXkx`6_VssSS_ZCXs?HUus*eJ$D@zYcHCs7QJrFg1%KCkR~ePU|<%AWD;
zwRbYVY>+vjZ)WaZ*910i6f^5*mUpL5jN-eRMK>hzgIs9+%w1)_Yt3HQS5ZukVpbHh
z*`ZNPiNY6!KZ>bQOp9Vh6yHZNJ&LybT{HK%zKtT3&+`p?Hpz2wk1L-o^SdbK=l78O
z5XFyCDD2stuAibvE$kuj^3cN5cep+j<>g(j3A<e1CVSK<G?o@cI0}0KPauk56uR&s
zJ6vW#kHHQq<S}<zyy~r-NEBD|dkR$X#G?3PhbzkF-Qi-7Q;E|ts(4JnTtPO)oG9i-
zu{eq)QOsi{qgX_r)Kh+zzE}{&LJoF#F79#-tmK*URTi^!+Tog4*)yW5haIsriWO|(
zDxPKR#L6D4%c3||**e@x(Ww-z>RBDdFC6<Zl!{?Z6l<e69K{iKWfbc<du((ZVp~P6
zKfZq}T3}lg8#%q`DVro|v)~rNt%9qXW(F2zGS_yA?hxD=#V#Sc1(~`>$X@zhLfI!|
zKf7MY!G!)BCz;+U%);Qgm2;GHLKF|#8cFVBQ5=urpD6A{aUzP7QCwjQvu&d|6~#rd
zIUU6rdSDcPMfp3q{ZF>ZA={az$!CSI5Ju07<pn`TnMA!o>!eFUE(;#HZKrrGitAB+
zrV4+Hcth}36gP#?pjzvs+rl|W8NDO?t{@Leg~;%)DE9>)JV&l-OmaVp;&BxJMe#($
z;xRmp;u$B#n3bAGkUNKv=M_%Edgc?JESNu`7Z6e~hC&IYu#h4#6cth|p|ip-2rnU6
zQjjauSa|6e%EZt*hBh&jjiFo&^<!udL-`mg#PCwgnz$+ok|2gkF*I9is~kh1ma|F>
zGtN7g+;>o^8pEH*?LQ68P(RG5Cic~1DAL05att+Ms2Rg6G1QI0U)xnHhO;wm(@Uk+
ziJ^APTHVv%YolfEQTu?x&U#|=c&3e(HYvv=m?CJ8!4boTwoYdZt{A>v=<s};@!E(C
zw{S-Lmhz;E<*P9i`_$GjhDI@@#jtHyMn(*oF{H<^|B0>Y@QlVW>*33N+twt8sUtI5
z#V~BGr>XE}f)ulaWXI4vp|pshrSOd-GHAd<lq%(E8$-Jo7RRt8hSy?vJ!U=6PLH8|
z3>{*4FNUhqY#n2GBZeL^yc0vG7&^!BmeiB2+9igrF}xYWm;dFNJE34V(MPRIX40gX
z&2iZFb`0HPIB_e_{Kt8SwBe1@&61v;G4zTdCuXhq9vs7_S@w5h@GiCYj^Vpy_CA7r
z1^Ws17aSl+gMl#&5?<Jw%IL)Ft|2iHD|K?eAHxSRd>F&f7(R<(LJS|VePS3H!zd~p
zllgP{@R+rR{q*E!BVr(a%(G~cN-{cT&0wF#Fxi<-GA4$xqI?p=<##g2(cj=1FUVAK
z{(CsRRo289udw(chDkJj<XpGHS#Y^y?ODgzVy-6}-CxG=6$@l9$1p91^-0bTUPvAH
zqH{_N&jvPRm?~sJX=l|P9;SX1!?!#&`X{}5PS(#ce9umaVJ6#$r*_}<BTwyk-QRcE
z7XR+}DTZD1ZKMBnDKYqBh{h136ULyjVPi02I9}AD(cxnV3a>RgrQMvASR{pdG1J0O
z4B;3elB(vW@XzaVvn{>D?38#6W(;#;m@BEdG0ci#w(!l8_v|do@`UhtqR$uf&9(Gu
zFQ+evA$~f~!We&$bS~n#XFG>H_KbBE=ZCKN3hvSvmc_6<h7~c~j^XbZR?>fB*hfE)
zVO0#PW7rbI));=_<j?FJJ~6C~VIBRgT!G}vRc0J-#LxNhBX^%Cr*EVe#rRWUp3Tho
zbINa5>Mib8pC9Gq`$fE0+!n)jwp9$fV_?#b7<TfkldKB|jce&C{H)=g7zVbkyf=nl
zW2j!v+G@Z!UYE$<Y579Yffx?Pa3O|^EFp$NF`VJN5yRmaj?jx@*1Kx_IqPW5!f%?T
z{LW4<TJM-3$#IT?1V1U{55ZG{%L}~C*O@pipN-)hONilo46ON^1=GGatk>080lw@+
z!q4_yqBq8HEr#ncT!|t1s`Vb!Rn97<QuuodUo+#m+=$^O+wFYuTQRh4@8Y{yG-KoN
zwJyFJb|;3rbmKV6#_>-K_hKjzN5MG$jp2R_Npa+h<3S7$IW1f*n>UU}QW=)dSGgVw
zXWjl2@`P6bA<qQ!#I0(7_D3?2e}(XymC13mEK-2Ym_Ke^EBT_`q~!WMokDRGj^l+m
zO2knlj-qiCi=%iPAI<;2^Q9RB56WD$FB!*+ag>UqbR5rL@#2M^I;%8sUIV_tMb1zz
zjw*2=&hMk4LL3$2So215r8p|bt$wN5z%pYC@Kcf;!d0m+OnxbjYH@TeR-od^JnSjn
zNc6v+k2W>ps2RtqT&&K;D{<6{^M_mvHc>l{I&tic<JUOq#`$VJX2#)-qkbF>;%FO3
zyEtrdq{OlNn6qgd_Bb3o_a(NpIF7EfI|W~j!zF}@TZku)R3Rr^4vGv7CE7@kN$D)M
zPC7&5I5LE13N}gTJVdiN%FT6V#gQFHbE!ZpQCO1}aZEnrY#B%X2X@-D7M-LGJ4pCz
zal9VKlsKlw(LRn2al9YL2XS<a<Bd4pjiYxQo!I`h9q+`^Q%L7Hx(K1zmHpV&`DPs5
zSk)yqDsM^B+i`Rk(j#HnY@VHK^k~pal$^M=B9F^7h<)Pd%XW@qa2);O=pV;`I0nYS
zwSi3KqCe*1B8&g+w6b#@#}G++FK(^-V3}NgNK5h$;}{ypxH!hsqv%(fZFC%C;usdk
z@Hj?@Lh)lEtoBH$!ze*6=-{!&O5JGl30+#&GqQZMb<(GCd=|$SaZHM1LL3v>o<$3P
z9tTsIi-Cmp#4qFcDsC+{`I;>s$C1`atQ(V3s<>&!CZf$WcKRdR48iGwjD92JTfy%H
z`Pu956RAH4`7w^45(;gUIDB!ej^md&{BfvpEQn(vJ7SANiz6P#(($%{M5zRY=y4bc
zB@{<kcqE}jg~SB8q{xgTH;!3xEXi~;%;R|ppCdR|P(9#a(tP1R%MrPBi^`(7wa|<!
zgO;&pOY;+B7A_H7DoJVp%j5i-ux*9lO2PjLt`cMtU#DEdiD;_rgCn-J9MnlE{aZQL
z#j!q)4Rn%;wylC2;}|{7#;{4qX2C6SJZs{nxQ*Qu#}2XFEx1#V*>}-liWl#+-nA#8
ztZS3BFOL13b4-*raUhO^ar_y_S&oRdj^E-q6vyE>Udij^|HWL=cqESFaeR}{$%UCm
z<M^Eun%!}X11H<TWs(g_J5I#0c9?_Vq>w-2IF(RN$8kpT@|{T<oa1Cgm*ylK$N4xe
z#PN5W?_i)`6MhpA*W{$Q`tMR4m*cp?zSwGCFs%X?_g#&HOBC6>*Awk<L&(iIZV9=~
zS@fu#O+n;Bp1Weds+8*=NxhfI^>4!XA={i2T32Ub6OZHgkJpGQt|Zf1r}>1f%DJLW
zI>XaAer%P@mDG7m<Td|q^(8I2!aARcWYfx(-$Vfu1x;{OCbLi}B<0X%Os1PFH;b4k
zR?k(GXrj1qMoXG_A;C)sQA1AZFPgYo$3arYL|GGQCelrmGqJODN>vjtnJ90ff{BVI
zvToSUPI8XX9F<ITy>G8<qKb$R9JQ-F4Wf0@tC^^7BE^K=gn7pKvWYrEY6#X8e8og9
zA+-}&_=b(fbtPI)u)ZM0210Ctw0D?rnrLK#SzHO5R3UCb53ei<{Z$hU6TJJmWR_NJ
zuA{Mu44&*<TXz$gCYqRNZK92drY4%1+;7v-if3e69>~z#M7Hp4ZIbvFaSPM(y_TXd
zN`pCPZCsw;)<ioKe6_d>+tB8CP4Ep9ubXIZazArN2h)1g>L^G9x(czAm~}SsJW7ME
zQplTvEUg>sBmC`z@_3@HhlzJg^kg^9biQk%H_vgDt(Rbq;OXMU`<Uo!Vt_>H6;%3}
z=+Bx6XOvk6n$}WW5=MuZc+bSJTnx{}`zAgxaofb-CO$MV)Wi}KOHF)40~3A|s)^wy
zMwpmn;!6`Bo7M$!jES)(Chl>JG_C9PD8bRJ<Xk5&l%JRwXJP^kOl(`_9548(;EL8s
zpPArG-SIoz7sbi&xry$l9AB7V5=G*&)=6Kn1sXV~nwVx<E37Be30K&@7Mx;QFP8t1
z$1$D#Vp_AJmx_t+O#EQtM^R>&;Idy1_U|Ri6Hh;z%<1$eiOw{wsg*;XfrLS!0~bv7
zNh(E+gVDrX6Z1?2P3R`VCL&TL!$iomHj*Xo{Ue!`B#)YinTXT(coxlE6!~K{^;{FP
zB-b1hvn7e*^IXr(SP1)lzKO+bXQ$(56AMf%WP@CG&Tp0cO-CnF7ty9@%EzZ1OQ!Mt
zA7_tg6_%MeY~qNC<t)?0N)!KM+nU%;*OCI)nOJXPwTWL$tf3E^_~eE)y<b{ko4wyo
zPd@s{w!y?k9`2rP3!AZ{bCdARCb;62$KncBCT$gwglk}TaF#IftBHLkcA3`oVvlKU
zRZ;b_W4DRidKu4$#$FLK_Br;O)*Q}m`i)ls;fx*>@>0XJ$O7jf>CH_KZAVS~ZsJc9
zXH6WFE?}SjVdA*(6A9&{5YE-765V&&#2Jq0^T}Lw&Q3gM;x7}|rNPgexL|^-$gi+I
z?b9xrxMboo{XEmnS&KIYye2a2o>A<oiEAb{Pqb}snauS9M6Rd4Vd5sI-&&4eTRU#C
zdVe~(T=$NNyX^X0*mCiYiF=$ab5S7||C+dOA}JU7a`C{#Llgg*cw*v_30sQevl^~^
z&m52GHdUQmxqM!=k??l(sflMCvzjeWF7oDDy??)D^8O{3W4|%2LUOLvwgq!hC>L86
zIP>SCKrSkO>SX<SI)!slBp1bV@j@<&=HmY`^&L=B6yMkEk~1h7E;%+VJJY*EoNWn;
zBn44{ahJu62&hN~$wtfw5=Da3(|I~9Q4kamkR*r!K?Fp9s7O|VqTlV}&pF?oI`7<i
z{rXkaOWix&Q&S;{?mv`Z<Hi)ci{m$H2`VR1CCR6msGbaOEUPAQyAUJ3Eg9ZAQl7%^
zJRa_7!8=2?8bXri)=r`h@7|N)okQIu>LtT0Zj=O)VZby<f}vPHiD&+dvTcaV4U>G4
zCTFvf)44~9#z{0uhNY&d(8lWyYtD}qD>hGJ<kwj(l4zMkt0ee+4N1^CJxW~tDbhNL
zb)QBENZTfnoy3Dl3``=DM3mD`;?5-GByy67Cy~dwU5n%<(JqPhNyJ1qr)PBbk0rQ|
zM293ga_A&@@%r<677gAxiRRrR4SPm1i^=RNNqm`?LsQ>D8!pQFxJ;A<xl1y<UUwC=
zo1nM%j^34o|7Z3+N!*)6k0kC+q9@hzV}A+=5ElPrSep7K!H^!)qXcpKSQate)Gvwq
z7#_`|{W;=<@SF7?R;xQ8`G4QtzF&X`1m*rDgOV7W#1m}Ovl2->l*CZ61R9V#OXSla
z|3(Uu7{W-n7GX&&OooM#-|pwphm&|DiAOnBJ^8UD9#7&OZtT#b1nDxdy~FvFC7w)T
zSQ1YqF+3SwN}f%Enfo+7buDX@z#{}5$vK}Z<e_Jh;lDg=Cw>gC8jqa}Kc0F%iLptH
zONJj3juDjC#POVG67MB3FNujsOiJQ~B&IT?zl^Y!PELY>!5Evupt_#bsC8r-m)0#Z
zJBb&Qn9fLkC^|z>-j>WvVix0Bl6kL4{!2-`oWz?+yp_Z&N$`&G)g)d^qSyRdoHk3@
zoFu-!J%@LRuP5<F5;uz*W25HZS#Kv{Hto)P$afhJtFzuoqHp7h?9ym+h3R<1IX{W_
zlQ1Zm!~#w@iIqvLN@7tmydhkY#8MIJi<9V6xowkTkq<<qEl+~_Im)smJ`@~cE|zqK
z=vF&kf_FzBC82UkNhBE|SF+h4ZlyHlk+_M{1)rD|$x4QI8Xn_~8Li~lOpRo?1p)Ib
zorFu*ly4he4$8OXT}_b0nq>IslQ%_0NvuwWw_d~y<F$g%L$o<xyx|8m8<O~#%9Gec
z->Dd<;uCr#iAE|KtJuN-U^PqPPnwsdCW-HpIFiIRrhF3nlGvZb=Sl2HVpkGhB>8@6
zWG7d2GV;Z-EM8Ma|5a=^m7grV|Ci_<MrO-$^2)5GhogIW%5CA-D!-(ulQ={-v7nLp
zb5}CIBG_G%VEmfM<oX%kB=IfBJrOyaM2k0LGhd9{F+cJhi`(^xJtOkk;>bN_g`*rg
ziC>cVUlPZd9c`i~k~o>fcb`Olq&ueO92b;2e@fyM%kq}&pXs%{a1Zd+tLu`kd?UoC
zllV1>GfDiB#BWLb&S>u$om5Ib*&<r0PsY+mqlH?Tvq_wzXaANjFwLECp8U1?^GS4W
z6D7Ww#HA$0Pl!xhmUW~-&i1lx|4QOY5|vd{QE`>&oJ3g_<y2fx;&0Y=6`3mjN#aHl
z|0eMt-7z5Y%CYQ{cb7kwu31bCQ)$-Ktd8x&=@ArHQ9?x-!LR#J$SkR%l#0?S`lq9x
zO^VcSnE0~2T-09Xb)>jjv%HE5Dk`ctbWh2>Z{XQGGVZ>Sbz8lhYv;2nspz#e{6b1q
z6}PFVsiKyO+lA)pf{u?xs;O9&9jTwLS!Y(H218<Z`1=dBRn$>YUqu5Ibyd_;F{xSv
zD)Ng*zMq^iJ+CBXx}FR7{2$Od#74&w4ONu=F><O^MiUiHRXnI-po(THnycujqLYdi
zDq5<DsEDd)r9u)D$X0PB$gWa1(pp6u!O5bY4w-GasLZz1+`DdML}8@b=!{eQvSk%H
zD%z{)pdy#JVn$3wI~8&~quKRhr^aUd+dSOQZTX?-2OTp@FRS(7fviDQqMcR5RrFTT
zM@60rMa7*e?ox4wiY_X;s^})hy>4dwQ9kr_cXl5wUAaVP`MdLTj*X4<P;s}4o+^H6
z6?u0;M%~)-&7-|&UKMk`$)jXn75AvPPsIQgLEVgdRrFKw>dVFAt3y5gRh%f3G3&|5
z=yQeqLNRwXD|##IeiaX>c&l>sn^z)d+slJg3>GsPsUo4`Ar+6QcwEI#i!$<63{g?2
zqJVzclRfW7X!)Tkj=Yj}s9xj|6%UKX93;QwFOf%SmI|@xp2!m_o>cLais34TQMsD+
za^<#HFJ>){g;DXeiV-Szx{EydM6_D2h_vpZH%F;>M#Zx#o>MX7Qn4{A&aaM+R`I-;
zUaJP-TWW8V4&_H(%F2E#GG4_572k6{Dkd^iR5&WqDkiI#qT+28@2Ge|#Z(n9t9V7l
zG!@fTyePEIP%%@*EETg=T)Y&n>&{-G<~B2OuiO@i{+P2W6)x%}757&S`LC*YO~o53
z-Xtj7_H-S2j*3S=DEqq57POKn!&Xo}6n;y^zExca-c>PI#c~xZRJ^BRo{A+Zma3Sq
z@~gyHpkg8C=81|lIFq5ii1TS9mpGcSSg6&KQSL<d!-t{f4^%8u@gdvFnr|0|qkM2M
z<B7kE4KJColBuL3r9xBjk&2`^R~7W)iPG=Y$%uXvE&M%P<2!S*bQOjQQyhJye@ROK
zo7OvBkH7FjA5m;Y<+iR0PvwIie5S%@Xi-eXIu%7KR;yUU=>5G|&qp&V{9TXopYO;p
z--`}A5LvHcgNjWo^(sE5%?l$NRh+bIYOTTv|9w|TzdKTTvx@)bXK!I%zmc^qBjdT8
zkiS*MHWgp0IG|#?$`9zUOT`x|c8D2HdpBeG`?Yoo{KmP$IhEwyD)!LMta5WB757B<
zQaHCF^$?Tp7m~fd&n7;o;wu$jtN4Zmp=sn06H~-n<#yq?->N{jjPFz&rmyRUoRur0
z(d+fTPDYN+$T+Iv2NktbVYNJ_;zt$NSYTBgXJ)DRO~vnAAd^MKce^rvQE`e1yCd8~
z@@EETX?gLfVso2@vGG3@r<rskGUC-D?`F!ss^PmO<eyRT2P06$C7Nqa?5v7&410$0
z$?&%f7S7L}+a}{`qnrzjlRe>DSoSZg_*2DSD)+7rXUnVM71n>T-YTu5+^~zEIq;`a
z{$}xKeNLfL3O7{ztD;y687Y+MoWZRT7gme@r($Jhs39|j;wh9!p=1ibwFx<ge+#39
z|19^YoAL9MNU0P`r$A6f(6WM-6STab6$G8=Wl^Sb3RP05kwVQBs-|$8FkST&ZWo}M
zpdXfxUil}hUz-F+IdQ25sqsRzRtn=zWku&@z0xt9L!A`rrcf^hq|iKt7Ae$Ep+O3b
zQfQn)!xS!8jOI_vdgJRz!|oZMo(yf?B!#9zKk>o$GMc6E=Fu=dFU^g#OrdMX%+@Ki
zN#WZy*{xELgrwClyj#dhq4Jt2+l`~qsd@6CV$nzn(G*6eFe(K(g`5<+r*Nk@B{zk3
zDYO?jmg4tfit%Ah2hr`CLN@_ArqD?MD(@^nJcT>~lw15e1n82&tA(MjH~$*ioUMG#
z;&-LcBL!}NFd~J!Q|KuqpBA)N3J(d;ThKm&_7(IVLGKlmdin{_KZW~laRvx*e+m!W
z;yft8KtTryIyi-d0HYrZCzCI5fuKVKEfjR9pbrcBh@g)O`k0_R@o@p35cJ6uh6(VL
zpu+{_4~|f5=JI00eks;|uylTYv1d|vHWhAe|3QG~QW%{=Zx?-BJfFfC#^-NRPZwhu
zBq^LVan8i}6egtbgN|c5CZ;ecg@<)KqGNIjQ&Py+P@v(36sD$dJcSb}OiN*U3SJ6+
z3NuoenZo-iEJ$Hi3bX0Q6y8qZ#S~sjp@|iHBZZe!cqN6hwUjx6zAETzf<AkrW0j`T
z^PA$Yi|(bS62*pZiNBe`W>Ypc$MvStJ1NXd;p=A7yVPmPb5nRPh5xmbh}k03;%_&V
z=BLnWS{&KR!W0&zkfPI5Se(L=6qcv3g0Yv5Elpur3LmEMf#~kC6f*zqr;OF*a^0lM
z&m>l+u*;I!K1yNLE&Rarc=8rjnfR?F3g}#N--MZhm4cDNCyMlzCpYNVsZT4(PJuKn
zs3Ry(aRuo4MVyC%6pB*Vox+|JR;REgg)J$3%IL~b)~2u_g^yEMC%WqeC7%o2m_qI5
z(kC=a3Y!FGH+PK8agUBn6l<UitXuF|3R_dyk-|<|!&0`<7mD<`z}p3Vz>59zWujMF
z-j%|^#?luI(WVl?%&0Q+Z2q9n<9iu4DSVg0;S}}@D}9;5fpGcC2Q8!~-K2vld_%W(
z3-MPe9AaJ%AM&-}(1v90=~wex(WU0^Q~1S@f1ruR%0~od_ox7KvK7wl7&Whye`Jn-
z9w#`N!cQzp8k%T0#Y&h$riS7gexbWl_$!4gDV$E>SH^7$=U8JIsETxkwQ+2MuKYcP
z^Nplxla)UNhs;&Yr1L3sh$t6QxR}D6>-n!Xk?1Uj99MmbrBB%5PeDfoGMQIXxW+o4
z!oMk87g6^QBm8Xs-vToT>A|1wRTj$1e<@VEw^Pd#u?!8VbA`n;Jhe7X@c6lc+O4D#
z8cJ%YrtxJ4l+sXILlq5GHI&g%Rzq&@L<K?130hvmtYtAW@9(FOezrMYQ9~thh~3H>
z?rSU&aOSsZVI<$K;au@db`#B{nvPsULro3!H1uyF)zZ+asZ?7-9Sz6U*CF2ZWIpq&
zR12xDh7Z@s1kg}l2shBsPyn9z_pUg18fnDtmN>gjH8j)EMMGB&%{8>(xEgXaw4{Cw
zSsL1MMa?8hL-{RAYYoOmg+3*2qv0DjMo`tQ!??}X5aH3y@u(IC+q55I42J1e7}B{K
z+H2^bfjFk2odD}{3fS$ap_7I@4T^@&8ummKwzvkpcEL^jmMzl`3oYdiE!-fb`M$cO
z-86KktuzeKaHod5H1yWcN5fB+(nG`D8hUDB*t010(lB?deCBFx()HInlJ?bb4<+wa
z`g2`PLl@sGx(E9t`e_(@M{Q1?%xp)#Ujxe&(_yfN2Q)mWg{6r@4Ad})%ZVryyR)W3
zkkIguhL6U{-kLbGgKCFpDAe%1h9eq=YIs<~d=2kwctpda8YXI(q~S3Qk85~Z!w3ye
zXjpu&GK`_6g+=B`4c@LeJvC%s-QgNuX(_$Bq|~g&(%-f`Qo|?>&ubW?;Ta9jY8b8I
z%EtIF%|p*Vr{VKw5|gIIZ_;{Aq_GUS#?p9G9xuQ+&b+xo4wp88o*I@<FHF`jMZ?P+
zi1lB?R1K7$p<&!zou&yRu$W92U2>iotIVV-4YP$9C129;;w?PAg~S*j^HmM6X^8br
zye;S)LEjMcbwTOJH*X#a<hL~ZwmnYacQm{!m~%C}r(qrqI94W~jdT9wTp_^%4GT4V
ztYM>uMYNj+M?+e}5)Dh4p&B#|A81&nVHKUiT+mQ-ud+e|uNupR5jZrptrVC*e=Cs`
zSiQwz^&tPrkqMn4Ets~38#xM%YzhZif`(I4Ldohm1uk92fi$dUS+inOr6K+;n*;(d
zuIA5(uhH=9+W0yRYZ($V;%qg?%DnciXUsR1HVE49TE|V)uVJT#T^cqs@-=MLuua3K
ztN^UBW982@)LIvByI)~7qdaqDJ6+Fg`aJ$q!+h4O9m1r=qxpBm3ck>=Tf-p+FjGv!
zUJYLnpDWy_p+pmDzn}!Xu91GpA}~%qzzn*@zcxIdSK;q>#w(@eZ!~->(vw#!j`bZE
zvORuSPyz<kQ4K$^DCwxn+YAjqYPhQ5nug;VPH6aD!x>uRvBXIYKeOO7^+flSpiBWC
z`k%lAzY1_#0~g5dZ=!ofk%<4$a8|=b1}B%?LOQ46yoL+RUtMOB@`}UyLpu9jCAW#x
z*^FHlrRh%%e+fVXUJ+o*GYN+4bq#-OsGy^wj(_NAE?h@R9gSq=Uk(3hD5hgXW9hXu
zGD9Lm2WfE~nF0|1ey)&I8I>rdgIA?8I?C!OE%4IqadOzoiEep4ysx;)8D+_pbX3;)
zBn~z8u=G{YaXZCyR25xvZqvidZlNhNVyo*YalVjsp7?n;cC3HR^)18jtEHp19u^HY
zCVo8~&=J>>r=z}(20A1it#vfya&$D+(M$(#rKXRO>CnbHNSg?%d>n7CV@m^tL$uJt
z3vS0Exup*3WQk~{gV&&jmfS{1mX2H<F&%An?tG3M9R+K{V2E%OOOEPc&az7^>tP)x
z7`;~M?#k_SwAax=M@J6SNJ36nX6Z5x(Mb%{S;zZZ!!8?d^AsI-=(tx$KOJ3kbk)(D
zBRb*byPJ-?bo3DVyX&}90Q!rE*zOkHUV`=%biB9|VD;!DY}HrCJvwfzQJ&f#-k-eQ
zP3o`XJ{^N}4A#SI+yEV4tyOp#y<f+RqY`Wn=(spC@u27q)WHiAnF$>aiM0&T@yp)u
z+QgPmg9s)uGlH~G$Ix3G-hDl)<1y;j!58oz*YSjo`CK@|Nyji9Q*}(!@sy6?I!5bw
zUdPisJuN>YD8UE;MhZGgP+pPAe^$qHVzIQqI9nd0GaWFIhSlNpO^nkqUdOlV!iyBI
zToX8uqI9aHbXc!UrYYJy^n#A)jQFA6i77hPmmfm!G&)~6tc5gP#|#~>>6oKqrjA(*
zq{h-qI%d-pI;eK2EgxM{s&&oqex8><DtTGQD_p|bI3-`zv9hJKwuSV%jyH77)$tw!
z{#xxfX+s@v>-hYoe7b;BdPm2*Iu2A+9$pjYeOI4n618o49>o-i%x<geP~n_4$^sn=
zb!a+t9gB1<*0F*^=vcyl%zEfUt}#Ecl(rS!(~l>}Tqf{=meO)gd%ZFwKS8=m$45F+
zl<bp8>QD)utxK5?3li_#S5TsoLQ{<FlOV^?Ve04;DBE;cI&2*qbbL&!>PYKY%@Zxz
z6*Lf(T~CL93$IxlFS>;%KblyhW37&Lg0ub>pBE9H#g%^1H?dL2ry|aYH!)mwY-aH2
zV3#-cr1T(fBR|uzmF`#;JFzBC%k!3UJB_JhhmM^(zN95}?BZEE_OnDRPwdtqSCRJW
z*eAdqK@W9O$mDB*Z36kuhWR%-E7>iTUwbB=TqYl6?5&qCZHnjgN*v-m54ZYSNAlzN
zH-dhv<2xOP1#We>;@8XnUf?5wj$R`lWi}0vDgUF6<E$qp9x-u3$4MQl418qZCmpAl
z#Rhs9_?hXWqq>0_2L7kxw2psu{HNnr9lz=LOUD%*zw0=|9Mo}1#~(V*k5jg-kDsLn
zZRJ~6K1Ys@3p&W$vQ#GhJQfNJSt|c9U%sq|Z>zHX$?8{FKyZ~6?4HEmEciOEvBLCB
zT-ULCiTvS}e9{{_?k^)X_T+;vC;nO{PgJC01~LqkGf>{ZYwP7q1H}!LF!1I=x%uFl
zZ8pS98Ypd`i~-_Of|gq%mo+f4sx)em%qbBV4U`H7DjK+*OO8vG3{*C7n}Mf$CeF;0
zs~D(ifPk%3?~rqDseGbXX0NK!C)4BA4Ad$oak!cU2HG0PHc;C@9Rm#wG%`@vz;6{K
z7^rWco`L(W<Zs*>|IU;f7@&P}pm5d8;!4LQa$^Hc3`pULvBbymrUqIVAb259X(m8(
zK`BpWO9QP$mu6(QHJ4_DhU)P^BFn(sMhaVn&Pv2U)IcYLKMw~kTsDwvAZ8%Pz`1pD
zjivJOC2~6hzgL$2nilV9VA4;q_D1NG4gxQqC(o)PEyz`J7Rzx1cNpkmAkTneV9THR
z9C~htaQ<BlbQ4MrN(xWuZh&;av-L>t6xg0G-)*3$f$0Wj80cl7w}HnDJZ_+mfxZSF
zFz}#(d&JQF4D>f}ufS9uKVNvCzyl22Z(wC*Ne$$msuhg;IBqPEA2?q)(7+%A1qOx~
z7)+ZO$R`~qKg4A&4#SM6H2+X0CiA&_5`_kaibIbI`mljV1famB9tqN4q0HJAulq;-
z69%3%@VtRB28J1U%D@N%BgJHf8~Ag9{4`gzMCK%iEs+Pzh>tSx4DHiRdd|R?<)u<`
z!LtGoGwjJ9EzTtvYhav#$p)qv7|&70$P)!6m_V~MQV1s9;&A>&vlA~Em}=mctN9mP
zx$D;WG=bUuW<z|YfmsILGceD<Yy&SclHZr#;#dZ_@K>1{23{8U6$4irD^H&<B!7;9
z*A2X3@Mq0sh6+RR&ClZ17RbRq<xK;mk4%emX>S{N$H2R^aGo^Rz_M-yb3T-bS8rD4
z8+hNq5(7&OOsgO*FmPm%yvV>p(Iw~1dU-KDJ|jNkd|}7+@wV>_`M|)3)Yd>*CdQ@y
z)FOG}1BvAZRv56ph_kH}VA5haX+UM%nka7~WkBO8296of4HyQ#V89#P6#<rkO$I(O
zU>k4@tTC|GK-z#yvs95*8}P(fMS}VU29%WoCTSIk3$NTT|HUT~1k6f)tkAx?w9WwO
z20_;gN+ll)K>kJptF0KpW=_MEw;I^STo9PuPig$A@y}Q;dMfO)Z5M|==c>;a4&vu&
zuDnBVb_%*nP#R&6fxQO4Ht-D#?|gZmf&Gje5ta<F1I(Qb@vj7JoLBRp0Am))WF8Wj
z8oo8~oq?kUE-aJ}vvkx`SVq1VOTO=PjQEHsEIdkIcWqVYM+3(xY~Z4S69!HiIBnop
z)_()9l#xyu{Be^ou=lS~erBYJ?*Hih%?kOfnWR+p8_%7bIK$jG_*+Q)SwNX3k(@sa
zoMnX(N9k*F&WkW0xMbk6f&UEt#2EfG@E3#pM*iOh)}JrD!r(M;jh-zVUKFmgCNGr#
z$3$2x6Hxg-25zvtSClGkj{nQpSSUZeS|QCaxm&Va(nKi}O$Q}1O%yj_Yq1i7QWf!8
zBUZClf|*#_40E%Lpk+<8UM90!!9+z9vWXlMl}uDN(ZEDQ6IDzcC?{1nQNu)4GfeH<
zOx$krcfjRpCcb|lF=R@j+ig<QNr{>!YMH2K0w!vksAFQ`61lF4V_l_>*UP*b{#8}l
z_<Z7zUJ5TdUU{j$3D#B4jkJ-8#wJ>skW4h;5=^u(@#Y6|V>8ywM02iUzTC8|bUjy@
zStp;@8WyOQW_WSr>34lyyET_@qAe$otF#exLFEEgr)(1u8hL>{biPa)6__AzdOX)e
z%tS8}y-l<;(Vj~)p_t)?po5^DO>`8Xlc41HdS8y;!c~^ZcbMp6qPvMZ`5|^|W!L0{
z(N*edqMHc<Mmy<UCc_}s!^GXRNn?fM9;hVsX)$EPrH(yKu#OS*G11q=U=s-w_n5fX
z#Qi27;Ob2DH!)*!V(F!hbl>}pmHSK#FvFxfzd9_oqz?*@3=(vppmY$cWtH1&6Fg)h
z--NY3KGZ~ki6JHm#rzpd?VIJVn3Q-ePg*`O@oDvfhjTh@TOdDb;xQ8|Osq8VxQQoB
zJZECGi6>1AGcnS{C=*Ya`06%k1S74wG~7fV)>1)v2_}9rOUZs;HojDzF)_Q7@~nwy
zT;Uzdb$;MhO?uwM7!$9Xc*De46XQ%w=K}fpzljMZrkHra#6;>pUpUFcWD}X+$Bs8v
zrc^7S>)9ATyc3veVqj%yni&>t2Gw1*!swl8VwQ<lOuTAhZ3ShviI+^gY$BKue^F3%
zLp)fmuxdTgSYZ~t#_7eCIrLOtnRDYU4JS$brir&0mJD4JZ<~0>#5@!8P5e_sdDp~T
z4pBy0eY->rQ*)K~OfU{-RFd8|QDIUT$qff4UhWuzMJ8BtmYVp$#9|XmOqlm4`frOr
z6<6+VuN<8oUuJ^zLqVslk1rQsc^RoxWoea(k4$b)5#HG*O^m3hq)oUcR9*s1Xgpd@
zvY21Ktc#<DpcFF&SW`i=#ZgC4-p`QZnea_~&QPx?1%iHTVxx&76RS<Eq0vmNGqGOy
z>&u>@%jn;;dpqWBRyNQkQxcKE3DQj_J~8o`iS6x_%?#92u`R3*m8ALW;|;1yp9;(_
zuV@t5D#W&t3c$NWGIxm4cM7^oP)^DHF@Lv-Jtp>=*k|IDi7gxA`&pn&9A=TBS`!CN
z95V4W>q!IU><r~Adc0YFnM%^OJf(y$e`DfX6W=k>e3=5fr^b8SU-0rLAvi+Yn)uPg
zaiNxW`+-UXt~)ewcwhm?I>EflQ%;)riGxBpeZG)lR8=F8Bfk8ziC;|o&%|jHzcGX8
zch2YC1W)8B#R8cgIb-75bcOTz!vvWFn&ne~^E}TqXTfw(&A~+zmrTsGG0Vnf)*_nS
z!a56onYd!&Aq)8yu2K)ZU_rKU-NfG}s#~aG;U5z>Oq8}z#=^fQ{$qu=P{Kkn3mFzN
zEqD_W#V!>7G&7!9B^R8E*IOa?7@jC;p?*>>-BBuKai<#j4?T8Nm-`-!m9<dLLRAa5
zStxIT{}xrWP|3oM333GsxlbhsDqH+Is=Vn)KEEPYMc~UH$mG1RQoh~d3ypF$i@P=@
z7H^4<(&Ujvv6>cYS!imZnT6UG>R9~L1&u7!wNTGO0}Ho5SQ8fJu9WBKu|pFR^#x{k
zWk*SJ`8{;G#_V`wi=R@0BTiZuZ~l?IKP8u0r>rHm(8_{jfw+Z*mI4sZ*%YU6YYS~H
zJhU<1Mx0AdmW9V>hKI5(9KD#&7O}8uyiAb81zOw=2z@NXEVQF#EOfQ_Mx5N<LMIEI
zEp)KZ(E{zZQI7>%;v0<E{uOfE!W|aQtc&MaP%Mx`yN&K95j-?Jv7o=w%|dqzJuKW!
z!){WVK3J0zxYNR2VpbbQB-rg~VZy9<lde)P!5p|;=ClWnmzNo_z7_^pxSyt`c`fv_
z(BA?lFm$nepYYL{5ebTMQ0jTW!h;rGS}rFn474!F!e9&QyM>lKu7z`E0MIWVR8)F&
zkv`Ss0t-Vdyi1!~D6}xt!W0WHSa{gNBNj$kc*eq`79O)O%)(PVG(PdTg(oaLY2njA
zUQs8XM%XYq@z|_*_N>sb!!0~*VT71r(}v1EHJsH*i!XA>Y#jPo3(r{?&-HThVzFZ^
zjJ5DQt!>D)FBH;}<LHQ#Y~P#U%n7JrXIh?UVUmT(4E1#iEi<}bg07)}S)*X8g=rRE
zvGA&e=@zg?o@rs0g&AVp+?8^vWT<2|Eo0$j3onXs^Ii`vpL?N@xv;{H<*kulvoOcP
z+ZJBmq`c0^59+*W;Vlbqh`DiM_fC+%TrR)RU*U-p|B6-WBE7>Y?TB;v?^&2<VI{-K
z!h8$wTUcUYDZ@sS7chTg1&cVbW~CNdSUgraxmQ^%nB@136ntP|86&)_w45?4<qw7R
zVy9zcKa#7b<Q1a(Y+qSAUht8Hqy^i8!!-XfrdrS~7#30%G{#sLX-hr+2NApHLLt3l
zTCgn8bi*zbMyeKU`6ygw+Jb8#uux?2>oaoUg?!I~&m?kX24_n>c2<*DGb%<T)`+DI
z*5y$~jKRq&vEIT4X0eSrHa_O8Ed0;HX$zYyd}85S3*TATY+;Lq-Lx<x#KLE+9-M=P
ztroUf*lyu-kwMh|W0wM&l+nwiE>dO2Gp)Ldm1kr83r6763C07XnuTjG{b=DU3x}9r
z7QPhjJ80p60NaXZ^2GJa!_(Plx34*ek7S1TH%y0#iJ2D)$v;)I;IM`7Eu6IY=nY3$
z0WADz;kbn#EF81=FGg(auG$P*&g8CI1%4v2@MtS4Kf(B)75{2<Sp7~}cypEfv#5K!
zs}yXH)Hyg_{za72g%=8cweTBjuZ;{Fzq2N=hFiE|;SURE#fcX!oU?G=!UYD#gaqpt
zi<{j)OcPe%|BaU~S-31D8IyksFi4Ma#FmD9m6hMZ-xjX1&>8Z^i3!qwEZkuFj7a<^
z3fjLG#;lSl&n1-pt0TSn#8dg1Hj3M*WTUc;5_XujrEHY8!6Yhahqe9sQ;9M*%GxMr
zqr8pJ?n^M(80VxFgn+qHW*AfynDRXw`N@=A#m4P6s@bS&<2EYnC^3NP)-Y&o)UZ*@
z=C`xMnJiu*_v)|Iv_Z<GrX?ANb#2tMagU9AZNNr-8y#(QveCdsLmO>uWZ7tBqp^)<
zHk#XLVq<C->B1_xsU1F@XI{is$jsRmHd@+fWka&@k{ZsLHHsyIMPTDSiGO-@YHjm7
z4l+So8`(BuHri2tt$Gm~Q5&)is$#TIRgN8&N}gCd9m}=(t1)3sV7I-Ek}Ks7HeXm$
z8g!Jd-kW&w4ym(^xQ(thy4lFH@%}q<WkbG$%Sp-#my?wH&Wd;8w7W{Yt}(N^+qlz4
zPa1*iT`AvXqlb;V?J!VznXu?$U1mCP{=IGVvC-EKuXl`!#xvvR?n=<7)I+g;Hu~Fm
z%EoXT_t_X=V~CAH8~59Iz(&HxLpC0?`F%8bpp8Mau&@=c2sf+NV4;>3JD(P2;$J8%
zu<^lixw0!WiY{HuA1VYMwegsZhiyDU<*@>mP+oCnrR2wLJYj>gdeX-Cc@i)5b-PP6
z+7}lJhuI))wm0##jS)7+*%)tQq>WKFp0hF9#xph?C-$r`GM7f%@>b-;g~I1;jIlA+
z25%vFFR^<<f{k}0Z&%45wOpQHV<KH|W15XgjA28bLP;Bw1!k9%`ER+*s}IW*XTpU~
zw=u)!iy~n`;GB8UVQ|j2@uH2*G&tiVbS_rfSY_iC8?V}U+r~R$;jh_v-NqaA=^A;C
zjcXSQ2`XMJd{Z2KOGL|LaSOp~=({%N+E`}eLmThem}lc>UuON8&v>x0n1N@+Vo7-c
z2O2LgV(ca5g@V%B%%jc&5=(^4Qb9iul(#)Ri&g8(Nd9sPpN_Gu5a8@u<s%zO8$~u&
z+fZ$Om<*d%wV{dWEltX%&09WMw_%8&W!y5n%j}L@wAjq}*WIMFji$?G&&EFoVgxQV
z^j8Rc!67qX(y3t$Sz}`@>%5JP^y4IDoml$@f!7Pl*k<(}mtBX~!A&+kv9VxXoR~Sn
zLGOR2=BF$sv>^lRaI390w%Pc`#<w=M+xXnZLDF<=hmD<_yp6rgYle`GeP=U94Un%M
z@3@;G+O^=VhZFo*e$=qUKKj(gmyGj@O1Zm~CU+^tCdg%nB`AD=VKzW6gz}Y*+PTsp
zq4{fp=XH_pabn-uIBeq#Gj2`%dz-rm;x`&imyg=`!NyNEPT4qS<3}4OY`)Qob5AE8
z`cOX37~UA~*CRnXvV~Gfk1?Wnsrs1}Z<F$ijsJ0J6&1Sjv<=<}(ICVGzcTSJ783AU
z{5u2e#X1egD}UHHOU*XU+xXMQUp6k-xX8(jlP}v~j9t>@OQK6a@3VR{bg$4~ntYYz
zdb!NWvncVB!GyhT<8Qjm#toKk2jv|6YvVswcn2jNbh=nr%t3~OOb2J`Ddz^r6%=K1
z52d(+ffox2_z<L&gVGLvEd{S!ETqh{7Yq3WWZ32WOD_&ta<Q<yg9;8RJE-E|biMqF
z4k|gIg(p6osM%9lbFr}aIHjtC+bE_edoLDd_fQDfz8IRQ?x2Q)x@pu)qo#ve4xV-J
zoP*j9>NvR5!CgG+pq|6Wqlh?wgZd7dJ80pcfrEw)T6K|{I%veRW+;svyl*PKPj;;P
zX`G;mgH<CE1kHrlja-SsEr}hpaggPpd^<^U(AvRSSz4GYF#ssgZh+F3R`OyqK8;r!
zTu{_SA&xqbX)6bv9ppI3b<n}Vsf&d(PIinrc<n^Tb|F8;(@RWH+B^JGyj;73M1DsH
z{n|?x#>v0mC&wLhanRL4o&$E-6anrKbd}(AbI_eDy{psSE%9O}I~MOC{d2Lfhl9Hv
z40e!k(9=OL2Ll}3@9?`JSl37C>);*-eQ2~?=`knf<Vw{q72ZpiwU_$Sp3RkhwBe`m
z&-W_#IrvE!Vd%KT0}hn?<be*JZzny-b2~_1|Dc@vK^a89-yz+dE6whrJmetX!Q&2|
za8SVY=14;Y9YX&KP^q`V5vz7n9(M4EgGU9kceE5G9}}2UB7V}rFbAV<&G0D)!yP;=
zCcudu?4yiuFw()tMRKL?37&H14yDzlLV{=h?-Y#YJRMjLYzJc;jCJsm!@Za=&cS#G
z(;Y~XG{M0{2U8rp;9!!2(I;ZNQ%b(3^nx;(p}s*LcqV@;oz<+=k`B@|2Z!!chUv-}
zC={FFV5Wl)TPU*}%y#f19o<Sf(naF0Q>C9vd@Y6G6$h_6Sngm2l{lE=V3C8x4qkWg
zhJ$w<%ypp2(wh$6;c#o^w?vnmw*|1WB(`$n<@X%Sb8zrd{`(H*J1Cwd-Fd0-(MyFN
ztVj@(zd#&a=-}tpVRwmxr4Bw2Iw_EsEtPC7jc+4yh-I8J&5{*jYW}2+w9*NGQ7gsB
zckmIz##fRKR0r?XRPI<OcQzBW29;<IbfK_k`C=E_N(Mh$Xe*gq&RUtkagb&;aPWr%
z*MaBY8wcMy@ErsWwmR76pvb{$2b&yx;$V$~wGK9jp_|CkCP`Yyd_0rCUQo`5_+xRD
zc%y@-h9n5+k<DV<&m3$K4*FEk(t*N5OQX^%N!sq<a|e4J>=UQ&aIn+CE)Lp8%5Ecl
z;UMZOyB+LtFf}T@`C>j@MnL7H`yG5qOFH;U7`bv=iE}%^^vRNF4W7=wLrk1N`C3qd
zBU#dS4h}mw$xLzZy@MkTzeb^)aB$SY4-AZK=|?e>W5VngA1vTl<z6jC{&8`1b6e>^
z*Shq`DY}pLY%TpJ=r4kvcJMy|$Y)@X{wlhh67la2Zah$v;H-mlG({Sv(m3znf`h*u
z{6kwgxa5FCTyt>Q!JiJUvUEhGzZ_g)!JJu_n2pw>3vOaEuRG}9TB6eju9I)D{>ajQ
z4vMAmuLC9m-A(Us6&Y!iNMp)GC3Akw%ruIp!$6wzXKhlR!WouMqf8oA)3_~-vT2k{
zhcQ!Gh?P&HS+-OujS8Z>{lS8YX{ePHp3D5=xmASliqVPjnsU34shLKtG^(XhJ&pFQ
zL)TEaMmkI!0(NVsQHR|P^5jc}3<*w>OF$a+sVa?2X*5WqVHz)_F*S`wX*5pb?lgL)
z(IkzgX++Y9a#m@acwcUvMw>L63)~`&mT9ySn1`e^cJ7E1u<^Ox(5g~a8h><?+NQxL
zhU!w8&mgin&jq1?oJLL>ozsY?k();Le3`978nHCmaTT{X;nP4bJjB*9jZU}t701bW
zX((xQPvg!s?nt9cnm<=0b)~Hq%6uBz{&;M5&qO!D<cGjKlzBD(yrl4X*<I=IsaX#i
zt(-*AD~;Z1JekI@H2S2`H;ut*B+|GijeFA=kjDLK^h=}bI9abI-IwMU_d+~+sZ4s&
zjPc<nDL;jNAdLs<j^`5t(-<TGW!PooQ<aC($WP<3boey9AdMk3@6$sH*}YWAr|o>c
zN&e7u`1ZxaLgo=c9~G2`_~|<7<D&b7pl{5RpGsqR8e`HJo5s_^GSA+!&j<lV3OY*A
zXVTbJUAk$>=h7IR#`Ed$+0)@N5+6H~KTeosLK+hV7=P1B^W{lt@R=7MJ5CW`vY>oR
z!Ms$+r-9Sbn4ZRlG(JvaMjA8ISd_-%G-jnSJB_!~cqfe)(|9S3SJQZn{3_DRX}m)3
z3!Pt9kgg3%@aYLZ<(`wq>uJ1^4xg%L#}vM(@FtzIM1CtBKCfYy1}A-&%TME6HECfQ
z@1?;feeVl8Ptf_|lseb)$zPBTpZKg>Ba=2<B=fn$k~Eg4VW;7w@c{=~FRx5vRT|6E
z_)v703%VkWq1B}D=z5t?W<N?JnTDQ*kw)bWaW##U5Mw;kahkw<AV^`8iC-l=@qM`z
zsU;5a-Hdb^F727d8Yau+ghv}Lko`1%Toz++5(k1)BslEysodH$)(LYp+Zi8uDn`4l
z7hMMJ#xypiaX5|d)A%Hf&1vkXE7RDL#;5dh8egRGSsFX$%b$~`u~p!0f^HX-hp4Ce
zwD?Y8TRwX#`GL&tZsrR=5lUlV=kUoOAF2}UO=F+n5c9Q`11zNDl&=Lnn8sIW{Cprr
z&LP1exU*WpHv)ev=y$jHT<MWCj;3)sjbGFFA&p}!CL7|vaMfuXPvaC-ab1h$6KR|j
zfS7Lrkp7g$_4^Y9Y<ZO>QqKQ>O!f`&BMW3c`}i%5-&sh@O6Ns<o}udn_(RZ1i)Fq)
zLwZhh=T|GZK#yO^&zzh%wj+KyjXzm--0(l9ztXtE%HX25i>ql|V|{i}&c*dK{!Zh+
zG>W<S{8HgRtob5aZ?JSck>I1Kg-;J5{inT>;Ud#TNf)JDH0Y?bZK9aIT-?Q^MoI}6
z#C&#E+6{xeOF=$q88>`<M!<8+yQtuznv3c#D!QoTqN<DA-0&S3J{hd+hR?jJxY*#v
z_y~`*+TcWFjdD9BH^-@&kK4w&ic+FZ4Hq@JgvQF+UdmUMrJq%~j*Gf3+PKJaQO^Zj
zv~v0JBkFUKE}FS$?xLX^J|b-FVqdPpr}>Rsu;TFvBcC2NanY1I+bhJ+-7YO@qO@?s
zH+)*GlUwriNeUZBDX^9G<%hIiB)4|M*q&QeYU?7~4U;0*<$F*GzO51AC@y3-d?r4k
zl9c0OM?pUE%`R6FbMee4@gesp?OpzYo7_RrjxIV0(Ah<v3&lm;4gbO4*a}tqCGK$1
z#YHz4-RZS^6Ei1-pF(tX!%ve4?sRdN8$N@ewjOTypoEPdc;0;ro3VmkoaAp3zcZCH
zw`N~~?{RT29r0fHMXG)-`jhFQq!)_aM{O>ia52CQH(kG9P=W_sJSgx$7lT|3c9C%L
zu!~1rJmezZMWKtKE|%X{V&J}F1=L@!?GP77E){ZrKT>KS=O(Dsx!t2~_^Vrwxj302
z5%4It`+L&GFc%-Y*y!RZ7sFk=?_z<Ar(KM2G0Vkl7b9Jaa`A$TskEevXI)HoF~vnJ
zE05a_b64T#T#RP7Z0_@djuCXMpk$77G5!{w;9}w}Jjul$mkKGsEfy>6lp9HT+-Q1`
zlsC=AbQd$|k@~rL-*@BDnJz9Ow?ra0V{@6=ZSr1Z0K0h0#oP1<W7x&3F5mGEccLC%
zGWYT6u`!8~ueq4x;&obSMcX$RDgxZp#x0RsmkFo+j*AsXD$H{+-^IHw=DK*##g;PR
zd^%6fBv@1?cQ7}{-X*`@Jg4f~(hFTIa$zv(Tr766#KlK0k}j4q)9D3jW1iN{T}D@a
zE`P}H#O3GZOpkFs{|ze1O_<x2%w6fC{Vuu54tW*BZ$}7J7bzDSQ-kY0T4DMQc}<CM
z0;I`Z@`hb9H`BHl+b)X45*!z47p@D>1-Fvs&fDCinlc2wi%t1?fe?G4PA-qmZct;j
zi#0CRy5NS}>*?!V^7hZ=bqx5W;TGH*T=XavZdlC`H@WzPS?1!n(6HIXE*D?WATB<2
z@tKRQE_TwAuhx2Rzr4-Gb{4LiV|`y{(LQ;H!1V{0+_jHaG5PI1vb<m3?P8CM?_3;a
zYOoHtIOyUlA*t_|_w(pp`AZiE1n2A4d2E~s+abaEhT*+m{#xKxt@FNR$`s4xw%(-Q
zGtOC&GIEc(7_&##TjzZ-C-*2zpJ>!jFP<}KkIe1FPcYz_=`Q|s@so>FE`D?IyNjP)
z{NmzQF73aZiMwUa<Z!Xv|G79VhU1E;q*k%q_gd$jVW2VsU0iZ;mI1t5zQ9HOmvhd=
zc_DnRD3^`$FMnTV*<Lx4k-Poh94?<a{}KY%UHt9h3YRbCQQ=h=*SP9EGJiAo<X-t7
z7dKpFcxZT}!rjGl|E1aI<Z}P^|6COF!T|2NN9NY$1Z<feZrdXl7yNVo=9KbK+Cy_6
zEqs*mP}bvj)$xkQ4@pqoLst*oJXG*d(ZgpIbJ}>Q<e{>M+8#I041d9)iidhnN2+<K
zO0|O1U`C``JaW5-YoEzEKjc*RP{Tt_54Aj2fXK!#GQZiHS)*}`xc|O#b$PmnCLWr4
zfQR}X8hQMVOr!zVBIK83#J=5{+4yv3n>slS9*;H_M|V%IvAcS#8K>=`wTIIub6a?5
z>7kW}&nL(Bp3GgmIP2lFW#*m8l>~>(AMfkdZcUk2OGmRjwDpkfA>twCp`C}Q2ifBn
zF(O;O&&uIqkLTukc&M#>>Ui#roh4SiRd&T&W!rn`;GwgJxQ9z6W34h`9X+NncQ-=8
ziCnf<n#c1z{QUReJ3O@56j>HT6%TtWM2<9%ccB??kL{e6`$MCg?jG*+@T`X`$8zuT
z_%+o?e-HP0=;7gRD*Pnc)5AT2-^)X9!Rh0nuZI(rVv~;KQh;sL{_J~&Oh2x@Z}hhp
zV$?H0a0)#P^>Dw32RuCJVW5Wu*WzK2I7;Ec9w;yWoBP%JtW|eM^97%$7kF6hMhJ$`
z8vo|95kD-BKIvhYhetd->ftdDj|=7#LW~M2M&TJ*ae}8jT)dh)!ox@p!#zCBs5lvM
z+eGU;7t&FpyJtw`84v&aJDZ12G>q5l7k$pdXb;bO7(<VHnCfAyhjAVzd6>-Ms>a3(
zI>F;x;uYAPa3ea=18KTNe2NFsoBTcJBV<k!!ZSR~6kxiCO}k3)tXZNv+rx_j@RXZ;
z9(qY=Bj;5QuX*^y!)6b2JiP9~<zhX&;o(gWD?P08@Ro<SJuLCC)WbU--u1AEZt^hK
z!+Rd)dwAc&JP&{Fj(%xnfBbh1(hIjo7BIHgXD<}|+iK<z57=IUGV6;fkY1^k(`H|}
z4?L9ms@yUv85Q9M0_1<lL>m%aE;uWgLF=RK?vCu(B!A=~>B08kcu>VrUC@-EnxK*M
z-KfX#V0s|uCesp!9=X~r?cviZG44@7N-<L3!w-LTUFTuFhrmM-<H5uAMscO2vc|*1
z?YbzvyHu>0yVe6aQ;(M2z?x7ocO%W~;bVc>eRpG*)1%t&zh0X3y~|y<a1;;cnOv+M
z9=3Y;*28xmwt3j@VV{TnOi#Mi!xtWQGxY{Wx6F+0^e~`(WEYL!J~Cov^x(m)Jxrx(
z(Y+o<?JRe#PlQLi<VGgEoB5@O10D`}_}YV>6XEFxJ$xljcea(`i7zZFcPS!wwj<wo
z*qIX<IxlkIyUfELzGvci_|?M^4@W(mV&;12xG3_2hhrXoWR6GVGuOKvXWj|?K;0<E
zolvFYN#1c?E@b=3!^!$_g5fQqzc8LX9M6vskDeBN=C;_XZ=#DzMSt_~hljHse)n*O
zg(8{#?RS}+%!YQ6a~?Ro)al4O?IUKU%#~i`K(v65iastgPCOLzk>TSn4~3sZud<x7
zXb|^~?b9l}ygmE6hrd1C@bIq?nDSDMe*~Za<*E5UX4BHh3%z5U2|=chw-0BQ@KMqS
zty<j2E4^ZGZY@#DM`<7Be3bXm>2PKlA7y>KytPE95$!v#im(x|4eJ=A47-(lRQ6HN
z2YgiVQPqd?Yi2DUxB0l;M>QYSsW8Yo`gL}_j@=$<E!Xgom>T0)HGO#V%F+vq5NUF`
zu(r>))VLd1Ze1Vq7nOTwQ8~Jv6RYosVbH)wLm&VBkxP?u@{N2n_R+-0;H8nKhchYJ
z)DP`R8xl9;%uB=wTKZ_^<GhaxJ|rKleWZM7KHB)m@=@qxsE@WjvVC;%(bY%9$HBpo
z4n8{i{IC%+Pkbtt<0Iyyoxr(*_8c4gvR0(MkH@d(&iOc#-PgwD)h!e2M7vdt<k2iX
z8kCL2eZ0g61yv$Er1-dlZAI6L10vgo$F^?C?B=7pk9&Re^Kqw-yL|Nav7>%G@mi#Z
z&(Cr(uuSag=aE$DSWh3le6$=MBW5#S@4`cUeAxBleSO>`0C86Hcz+s@Hlc-m4DfM3
zmG~GW1Rn75pwJ)Oh<CqSc)dbbj`dubSgolwypx$nf698uN4}3KTQY~xFDEmXS``Xt
z(go#qz7ji8p(`a%9f~~c;}OP*k5_#>>f<pV&-)ldJNS6Q$8aA{`*_mFFdq}1>wdIs
zZ2JDlQ&hVlLO@#)jPNni$Fn}3^RcYEOtDcup7EiUiLtw)S)6pV4+1i83XqQVG0w*e
zKBoE@Pvt%)`Is!kCW_N<N>a%b9~>*lXuD=h=Ga={xYNk-G0VqnA2WQ+6dr8)RP^7!
z29uU|BAnHWbVNMz664&*r$2Oiu57Hg7F~NamyP__e9ZB&z{f%#ulsnz$2&gW_3@^U
z+K)vZ-4}gJfMHuQ-=<miMXC1VnvuCa-eV+-;pQ=xrq*CAEpHI-rgd3fERXnoAM7%a
z7Wr6A%;or4;$tZnE>=NRSB$bB_@E`JklhdIARoK?MQO~HKAOIiyUNE$KDb`$Niu}A
zD5>g$Gv_KY#X@u+hR<Ky#9p8O-NW*+$;T&*3Lo9db@Y7rJ{&*Xv@k6=uAn?bPT-?R
z9NOSxwE$$U^|40a*XGt^mu;Po^@8(U<M>U^$38aRlBd{aA6tC9b}efsEiAxRAKQF<
zCNTN)PZ!%R@aO*@XU8qfeGw_Mi&OnG`wPL`Ehu*Z-REP!j}tyl`uNhv0Utkbv5UJN
zq_g@(5Bd1o2RF9;O3?iWGQaWht&by2hY{`Bz7ybkK@SVc4Hdb;9W@*kU2cO(%yx_x
z=pz5<<G26|vm)&N<l~f&-^GZ|l-SR-<doR|xJD`d3-hR5Z2sJO#HW4y>f<*C&+id-
zDZ@Rtsq>7FKg7AjX9YONg3v3%?nNJ$eDn;^E5KzRf3g4uXcXWtA6HnM15^lb)yFkn
z6ar)hxXuOoC>9`pM6}KeHBMFU^pB4lKK^A?56%0}hubnra4<8{t0+qR$mPP7MUmnG
zs@I8@2vAahceh1K1uWMn6QFE>Z{8?-ws=hIC?EPEmtr4z72dBGDHnj0-HHL<g+q-1
zHF?V6tjYnZ2DmN26Lq3h0yG&BCFuM@jac1Iw+E;eU`tWt!EGV4dVr@JM}}YNRx7~k
z+oJUYGzd^TK%D?}18@!q@OE}?J%QPsCdp4`M#!0bG{P?D!<jec5CNhA<N!?rGz%aF
zXdR$=fEEFk){V3baPc-ddvb)W<&P0^S_P=JHoA6VjJQpJ>;RDfSwgt2pya=LF_gU7
z<xX*w&k4{eK<5Ct0b&8#1(<XsyMv%S+Fs}+hpnT)oBoN!1LOth7NC0oCBRK>T>{)8
zM!7k}_Cpz618@iqcc<X@2yk}*9=%I+pYGU|C-Rh=XY~%k-Kd@k@NB@xSm+zzo&fg-
zC<rhl;4jFde}D%9JQ(1<00ROX-<8`TUEwCZpYusqc>GxIi01Ku0R{ya93a71sv4QS
zvxH=4qA0U=^PGnmJOR42jFUh4a^Zm*v8J7K3j+)dFf71R0Ui$UNPx!!oLdvAJ0(K;
zXn@B=_x#BAY|}oAK0zl=i99K2+|DE?HYPfp9uF`gz=eUin~E~qeUUpdz^DK}?k<=0
zQKY4t!$Eufko#PK(E)#425$v;KERj&GXu;DFgC!r0Mi2;Kzw|F2?3@Acp<<<dLh7M
z#{bq5<NI|hi#P?&)Qk5W*?ubG+4bU685{NEy_>|R(cSgpPmJqII)ibts2nBx?<g^<
zS8R5Gmjk@Q`SgmtDCkRqUfP=X>aFe^0bUD0CdFP4@CG@}!m-M>jC1I>1H8k$2(W-b
z8(=PDuVttC0e1cxIkUCQCp}~D1(+9LNxk?zJ!7K>N6&s%qHWLE!T^iNq`LzwW~&?j
zZC8mo6=RR@D0f|pHaJj@@@(WR3-Dop<pEX%n6?(v*J5RWRRO+Rjl-)k`+U|%0sal}
zUw~u)H9#tW7T}8jy94L}i~vr6bbw<ynPz}JtuqNMX50ap&1MR>&U`Xfj!aiDJt4zG
zzUT&m76n)xV2!|^(P)+0t`&G)fb{`32+UJH3GlJN8wK4Y=$s9ud1$l1TLk@7(AKRp
z$=@n4!L|U~1^!&n9fIx*uuA|c;h;QaPk_CQ-hkUVa_1=Q4{(-27~o4rNPxpanA#2o
zI27RP0ADevR%EeVSe2DqH5~C9=Ki6qZ*NI{CqQaN_V)pf2w}>w9S!gUjmAI~0{;{A
zcz_cDP6}L5HS;F{PNcF=3Ba>{4)Dt@Tv{yfwCMgC;5Pv{jo$;D3Gj#L-V-Y~Z+P}i
z$@7dHhS^OqE=QbxS#<vtw5%M?{{gXzs{yVF=I)%3d0pUt0{s2|N!}3nU7@E~5i*K!
zt_bIgkXeM{MR>9Z!-`O%2qlZqz6c$PP^t)}i%_Qsb&F7@2xW^<tw&ysB9tpa`65&;
z!fi#UP=u`G(Mm<AT!bd0;uVXyX><1bmkZOE3-{d-Ir>keN)cY^6OD|Ge9<B2_9D#h
zkW-y{im>x?AsYpHPVe6Ja)+8ic`ZR}3(B#oH_NG41pYo{t0G86s9%HzMQB=tW*oO`
z$A(2{RD{MwsQv8!W9lrRq&V6x%q|ezJ#YgAm)Wshe8UPZL4&hsfZz}`xP;*D8ax4l
zgz0fN+=IKjBm}qr?MwPQ|2ci`dFs|%)z#Hi)w8oRQ>l4tCf)out&~Mx6(p4$m?{r7
zNtU(X<G*R;EGTcmuyl1A6)`9HJ2{h$7cT27w=q<*pt9_IX@OBL!Gbso^cIY$Zz^;^
zU*tvFkeE8#av80U4ILb2lLclACR+4WEHHg(jF;q#v;>R%NV~pt(|8H^_{hAVV$y;S
zhUym7u%M9zjV-8YK`jeXEvREbq6ObrkZeJv(Y2~>PpNG|k_F9Pq-EY?s8iN3;6>WG
z$*IROq@-A|y|$siPlmb{)Ekge-+~4fyuH-Eo<-gE-Ipb~`<yx_pXwUQeVLdl&g>Uy
zO)O|?L2C=Xv*25)(}L&0M9FGyK?{~@WkE}e{CalUiN}V!E>o6-Bvb#Y!~CWUMe4M%
zpsfX+El9J#GCrZ51??^9Af*-<ub<F$v|#vC!+{rRmGhbeI$0nr&_yn4RITn7{Gb>G
zx-!|#0%^7+dsxuZg6}POY>n@5*xcxSa;f%)lqrTj5^up83)WiD*Mfc)jJIHd1^q1;
zV8JL0Mq4n@f<ba=hLqtJ47R|P(KtjRFPnd?opP~3%22YJBn*?0aJ`)*N65(hG0~RI
zG}0nJo@2PvGW91pOIFiZ3p`m(53?J_5Z*PZKF)%M!xJ|2O^_G-6D^oz!8{A*TQJ#z
zDHhDIV5S9ArSWa!f0k~{YP|I#%{U{mR6WBq8N)KX>lvm~Kg1*m&$6IRBU8iT#@QCc
zFEG4$kv2!_FK(Pm6{y$HxWIyi7A&`5g$2`#n-|IWw_vFSi!ErLDWTF9-7>wg$<%n^
zWisgs8_o|)5IyxeWu=Uw-;Ap)*fcD$TjuJkEx0u;{(er=%V7!YEcjJA#{#zn>n+$|
z!S6B@E!Zf*7F@rYyw!ru7HqMg(95)wqjcF4O&`8azC7BH{kZWr3;KLY9h<=@JA7@o
zV21^}E!ZQs;B?X-7VNZOmj%|Y2Gh&5W-rq&H!~D0-G297!=D!Hl@VfrV!@LW#zF;5
z2pjvoOtV^GvtZ5?d8<lQ$+8oEma^}4PO|vx>Y6+jcr7?%!C4D@7J2!HqZS;qAYehz
zg0KY<3qlgm)wpkN>X4m@g`ZYi`!X$R!K>AVuQI0Oic8%m<L8ihKULs>1qaE8sE0NG
z2*G$b+3_;%xCNqrS#ZLFlNOv}QXDD1wWAtvnodzAaoMeua~7Pp;I;*KEVy97r-<o_
z1y=?7m@iuJ*UPj^7F;F>KdWWD#+Vxx+>|~iTe`;&&uz|?Dd869oow<V)A0Grw7VAE
zv*4ixk1V(^1N%qwnA^3M_p0SOY<wX1@vzalJ<DV1SeB|c#9U^exm^ERIbWrT{%yfO
zGJh4cQt(^?WHD6mm4X)*yp+x#rpv3~l?AV5-ByrM!5djFWMNkjtKgjl?=46tep6$W
zY=#fgNDEpGOZ{kpB<0vzutq7Tc}`YCx9SGlht#W1v+h+|-B)SpS>$rMI$tQrq#%ca
zoC-24$f984r=;u(vMMNXR$p#ryd(v(DX4cZMc{d!_$%q#=Tgvqaca5(hCB-PeK6!!
zu&|I(c12ur-Q+)^&!-^2f&vN(Dk!30`zmAOEXG3ey5)+ou!8>04AXWc4Str={X^=P
z3W_SQTu8iEqJ1$1#+gPr;&-GKm$NJQMnP=_B^7+Fppt^h3Q8#`t)RSuVGiS;wzM(|
z%E^h!n9C~Y^(yUEy+nC4t<H;-quCNApn`&mj1-<y#h_CVr=Y5WY6|oU3<}~EB*;m{
ztYU2Tv|6PiNdhJXW;(+5L{q{7qde5)@mEE`n6k#gV~o`m)KE}MLD^PDd9>A(+FrDa
zro{`7(X~&Mjv8p_R>|0Jfia0~t1FIzWCbY-QWf=v)=`kXL8AFd{OUqU3mnFxoecFA
zG*Hl3K@$Zrv5E42NJ9mU6x_`i=d5Trn36c-jJc_TZxysqAa4qt>6;*LLp4(%Z`4eC
zmDXH=s4RL1YbVI+*IL1M3RWptt)Pv9whDfd#w%zicTM_V!2ksv6m(S3O+j}BofOQP
zlh9c~>$8a|(-Lc@Pe@a+<yBg$+1N!vS82A{D958OQhF%psi2P{&joxhS2wG(|5e(y
zD=7lK6!fMeTxN#x+M2|^3g){L(by#1Pl0IkYVtq@gB1KI_eD{kcY_rSQ7}}&*e1p=
zuXeijDsAKdbN`xYm;6b?70euI9-&~Qf)B6Kj<z?9Qn2J)V*b}@&2uD-R*>(q?pUq_
z(Xk4~DVU>Ru7dFjCMftt!E^<enk7wCFj)p3d6I%$`*i!V8pNMUXPSba3F2%lY!)qD
z$1p?AD;*-k<8|7ds4?kLYP04BPtOjs73^x4w5waPWl_>R1+&W~FOXp`*C+$PpLzpz
zjy^CgQm|NNkS}q$G*yw$nI|q)(Cl?u^opsA*|>}>$>vYY60<_VN(Kwxc&T5bV66g0
zfmOje1-~lzO~LO9j(8H+D;VC;v{AwOA~iNBkl$2ytW4cRQ~b?xvozjHn4ckGo6I`}
zyA|wFutUKg3La#xzDvRJoALU_hMh8xPQ~|soff`m*qT~h{w)1d!Csk(GD@eIL(k)v
z?KCdWQC)`gxnt(L-x_QR><acPIH16xz^TBez^}l?@$8Xtcqipf8KYZ)ymZ;wGWp!q
zL@%>+UCjXnK?PA+C}h%w^fO<lg%pGptT||q;N`b#MHGnk8j^Hnanid2u~SwVy0<YN
zRB%Ya38_%QVd(@JsB`KZS8!As`8uV*>6Dxgk_3*)Qgb3zV9V<?sqK`4zZ9HRkd*$L
z(<~yT&PcDeGA7J6_+F<;!~RS%%86teUXZ20hUzw4lrf;-vVtqp^H%(7#Z?)uGB2#?
zY{hj2H)Q3pqO=t^72Hzf6X3{X#cc(56g*P!SmvpM;>of1WccY~yPVRc%Vxf>K=c9i
zA+?7tRvbB=D0nT)xPqsO{P?*V_BZuk1^*Dlc`g%#@h>#zr91^RmVe{EmBn8{daJrg
z@q79o6ns=LDlRsli~XcU##oU~j%?<vasQn?mPv^bGlLZwtr((<{oJ<9%*tm)ek-zA
zk=2T9R%Exz&nBxi<e&=Vw93blW4G~;q#U`e$fM=vB}i@oD+*fil@-OUC}c%pt9&I>
zt*3|<S=5RzHU5L`DQ1OD|6e=f*x+2Xj3u;~l2&|8{v1=rin3OGYeh4f<*cY^MI|fB
zTT#J^KV}#@mN3Za9Me-PTcNX}0k1U93cVGztw^%MV1?0&1S_goVY0$(MOYsj&)Ni}
zi#{L1RjsIIMGY%zT2WmK_<ZdWQ_Ct}6jCqk8>%?6_obBjd?Z_uVntnMrBdryAp!pj
z6PB{|tg>9FmB{T7l`T*kTG5D(BpX}N#EPa?3}&u40?n;xVa0b=v|(6FD_U96+6wvW
za=uq5$B?jY!#@=zxUCiK7}L>;_FA1Cq)v9S>|rV~atNeZ(Z!0%R!p&?s}<d>_|b}C
zR&=+bhZX&;7+^(DE55g)j}<>y(Tlb9w&F-_^IKi4oLcIs{H$GHj?8|{m3#4dSRT{I
z4zyyB6+@*5c<R9n7-GffxL663vd_919693zhFdYhim_IVvtpzbqZs*<L`o+-Op$==
za}z}`y-pJy!`x!C4C4tCte9xU+DWM^b+MD^Nae9Nj1npRHr0xsrI)N&V#PEoeqq3D
z_QrH8W-=*}GuYd5Bjk?EqA6wPXt{H(m`9#(#R9@YD;8<FpC^>ef~8h0vtl*<<<#E1
zgDc1@tym>vRlBD@6V@<mtra&sx-B!3*ITi{iZfRENpoyumc<IiicMB*wqlDFTWS7j
z#cx*pF11;)(~50YZ2x=;UF-{1yMsx&uFq}T#pE99Zkg=b`Y<$`S(cQ&R!G-LuvMm{
z6<#ZRR@kj@Sm9w2r&gPr;Ihhhh}2szNAqO0;00Z*-->`0$E`TQn4lGh<r4I<Ewjdj
zWUg5ek^ava7iI1tEB0BjpIm%k(F261h2jocA^N%I&lCTM6-SwSjQYP7<0O-(sKd9b
zL;5fBX&F3mu^r-K&slL^mTns|+i<~(i_*igq%-Cc^{N$@30J7Hm`f?C=bAhP=m<ZZ
zmvBoKe=A;D@!E<zR@}A9AHsNI#XT+NA>lr!`2%fDd!*$`olmWJX2ri&ys+YQ^A5c?
zsU!1mEB?`9p38L8Muosj`f?Q#CdV5qVr+=D;jI)uZg^+KdoFI0^}&jd<WEw>rf$0|
zqgPahu7IfUP+e?#o4V9wu*qlgRrrD`*DIWbT-1hQHe|ISn+@4*$YDc48w%Nw(}r9O
zC}2|`J-KbjV?$n>`Vf(_a;(zD=3{_xeu4}?*?C+ZXN8&kl3Ii+T_KC4L`n>7_{xTg
zHdL~qxD6$2C}l%w8%i?r^Jx5<{Fdh`V?$XR%G*%EhH^GEe9~S{@u`tXYMWf!C|u*F
zF*Po>-CJX28+10r+mOKG=jNH?Y|z_au&K+bnWmI7+F)XjeeNZ3Hl?U-t71dd|94(F
zyBsxasA<D!o7(@iY)G`By$u~~_{N6XHZ<)T*UE+@8<NS5s3|tov7s(Gm74Qpp?ZV{
zR4G-Ta6dzwa6|IrsfNZjG!eGpTN_%?Y({NP&3ILPpR=1yFGX6?5s<CqTifuR4Q=QY
zsT`YJIad6(Hnh`Xey?usXp`STMGqT#((Fv_N=>t&3n3Q^b|ZJEN<BGfes9AMHuR<0
zi`v^JKcR_IHwsCNyiMJY=0F<;+0dUnfck8V+S<Y7p*H+T7(z|T7<bZFNUrF0jCq(1
zqQj{pY#2!pXOs;CYZn&yiTy9PV2ll8$>XR}`L?F96K$Ae!znxdvSYFhQ*5YZN1`25
zZTQ)S%QjrGVVVuU*zmgz+iaL_!wehd+AvRE7A`f+v?1Rk<HpB&+01K}4YO?!c$eEW
z#|BZ^>TA9Y3v5_r!)lwlVb($$mJt?F7gNPwV#8AMk+()k%CVfu6*l=!mRj(0uD}`_
zHrcRQPGrM68-CSl*kHqY8$K78-BcxVBeUdRhg%50QMdjt{)kS({I@d5K5^S^@Y>+B
zVTTQW*s#-vT{b8-bx*+EHgzk#KdAzHY><sC1?1RE(?YF%J%iN-8;jU&aN6LKX~Lww
zoI&c5!_B0}2H9**lCqtgsO%B!w;^mp#HMZ~9Izos5DpPuuFMp*VV@0u$z8KyzYPa$
zIA+6f8xGoVNG{oiqc+H9f`?_L%9iC-Z^M=+siMNN@wDtkDEmZ9@`Md1<wnbDz&#2-
ztL*apdT#bJHk_5!US8zea8A~f2C=eB^?620C7){$5MSaiNe}GNHP~9{stwm<t+OMS
z9oKERAp_5bH#Xd~;g$`LrJrrMEu9%M+_U|+x8NNc?$X(@)R?<ohWj==VDh2#{8Hm1
zso|zUKn^MO)P||`s{dodbHXzl{w9do-&s)fUmISE`JLf~tX*-2&!+gV7$(WLG6>~C
zW{2!L_g*^ljUmR4SUWz*%2v)G$447Jk<&>`Im79aIWA4mrME+N&y*u0A%h*&4-|S5
zZ}@`AOiW5HChBCP<Sce%wPWzpcsa7!kzL~)gjuI`x$Vef$5(a~w<E6|3$GZ8*fFk@
zN%o!0XIFQh%x^~lf^b1Q3Ta%JFs+cff902U6lJMmR8Yl#TtBvi9VO)y`3wd-zP6*3
z9Tn}UWQXixS(;kTjxu(XwPS#6N0`nqj4DvxjtUIe{7^5+%47k(9XdPWn3N))ONlRA
zz8dW?@myv*s@PH0j(8>$?DAvIy4<4-qSffspd;IER<}cZX`W=&w5uB$3VdTnZM%F0
z9?R`WvLo4!A$AP4BgKwXJ386X*^WAP)LWrzVMj|l>I&QCmxp!rsZH%@KoF;)9gWD1
z?ed0+PMjv}x3)7>{??9W%xz9Bv$c?zt)zH*qXf6LqqQ9?&gs6ht2+S7=7w$T>ejl#
zlH1OX_N=o5wIfyh`f-LdJG$60(2hZNY@DF$YDXVCdiOSTV^W;%cJ#2LCzIdX(TgBW
zlC1Pkv-D<CHjb3W{J@6wrS`L<KSBHfcF2hYWVh>SDMr~Yb1*wrR@5Ku7$#%pcintD
zhRf`e&(YX1-i{G=jI_(g1$CqB_=zAq+Kv}>Gsq61V>D;19g>t%6YQ8M*K1dIUY=xE
zcR!p$olF%|wo?>yDg(q6XPPvRAUxfU8RVIoGm9|Wjyak$*N%A_rz}p%+SIT>=1Wt<
zLh2&wVmp=)mQpKS&maLS>{w~XPCItlvC59svcgO@zNnL7jU8+4IOEa(&hfd<jt$b8
zcKj-LP^R$z8^bbUH`%epj;$Q$o9&QsE`z^Q=^Qeof76Dygh_4N?AXp~cTmOo!;XZF
z>WOySvB!=>b{w|jPdoO?7%pQ7+F`M)PbIq@4uWEbl^~|gj<bUe0!}+zGBENP0@9^+
zco^WdLk^!Eel1>h&Xr&ZlS5$5O0`IcCkj*Lj1fZAj(v9Qx8s23@7|+3NEVPV*%tPQ
z9VcaO4%Z!(;jQS7QIAtkP^EJ5WrHf&QuDN2uZ$%J3OeK`#Bt7!oDTKdG3V{LV3!~G
z#WOoD+HuJa*~{`C^)mIQ9arqQD))D`>6+XfJ8qDN_sA&D7)@{4aodhN%)0yk0zSvw
zx8nh8dq{mkeMEgMr;d%2lge?sSnS_+{3FA|p*G{WUEUPMCp*$P@WPIlcD%LY9V>rj
z$7?&@$h=?!{?{03&wB=Zu;Zg0pPTo;T!9z|VjcLxflLmhcc>SY!GVl~|6R-H_{=o3
zXjzi`+0VwdWvAw#N>e2(7yC0eH4il}H6K;FIzK`72`%K1PcNgB1Dzcx;=q><G;-j=
z({x20C?+uutnOxjLp~#o$`0rpDDFTB2TD0m+JWJh(`9<4E9t=Y%et=}s4`jC_O3pA
zQ2+3%u8ad?Ug|11P}YHRlC?y)Zi9a4PF;DabDR131!F}ADmifVmb!7+vNG{sG%&<D
zpm(6!=X%!b3=Wtbh<Cu~fNhrX(j~pgAwM{&pAj@AI52mKt}0ca3ZY@i_<1|@lC18)
zGq0}XZ@L-|oY`c^w8mV^fkX$saX`$v4%Bm?wgX8HBs-8I%{yVJ!;_}U<xkdCC>t+V
zk-uJie121|p@#a*k_&9;Km!M)8Ho{d(s`Y4U5s2#V+Wcz(A0r%9oU>F?mM=mnFB4Q
z4Y6?&+}wc{tl|9z^G_Az*9mm3Bqqk(+JU!k658)Ev~i%V1ML_u6?P!Bci@WKBsCQD
zm^w;_7fO^KOLL%$0|OiwD7og?t`78aptl3v9Oy1BKVfQ<C$=8qdpOY3fj{q8%yB&V
zdk3~<HD8M{OKu-&{QZjk9qMOPevlSsjq59Svr=q7hx!2wIkkL}L9zz1Dye^nL;ZBh
zV7UeSgoBio<S@DEa+@-LWyt*12)P{&oP32-uQ1Ai(Q@9$`2I0|l3OpmdIRNeV5|e<
zWRSa%-i7fFOprRAIO4=a2PVmIaw5)&$<iblCu4LKotWyt&oaLpc<I122YzwD=YZdV
z=??jsbnKFv-FmZKH`9SR(v31g?7CSF%qILhI6;#09GLIGMh7-Iu)u+ZGJqXe<3Our
znHM>*+<{x|lNURX?`jr-B@Qg5vyA%kb()xRtZ-nZ1FL9CL2>fGNn7i{IyxI<)tZp<
zD|zUG6v<ux{~{%8vjbaXQqbJ$z;A?Y4*X8|Ty2i4Su%7`tCiwA9QZ?egS?Y5V*WEB
zWw!%+<W|ZkonkPah_yJd*MY7k!~PQH8~II&16G+D4m5m|W_Lig(#vtwDC{6RsV=IU
z>Y;k65-b%490)paLT;i1A>rq`r~}QX>jc6~MyT(@HTKb$to;rgARnY2()_~?9MSkF
z;g|!*37J0WrQj(C{&L{HtZ%RNr)6TwBICeC2ijLkuA@sn>%ch&`o2j!??8<My6tb$
z=DbPUnIZX-1D73;fV&PzQi89@qCu9hYYs%;q+O>9+;HF~`IhF~cHj<Kf+gS{s}hz9
zr5O(#c*yn$KXTwP`3d!@4BB)iIi5N2H~Ak2o-^xT>gQZ3_{xFT65vF7C*E*!y?0>A
zCBs_>?hV(;@s2QJjp2i=&mRpRsdv*EKRJ-jiND?&VyN<tqHqSM{PqGeJTkzEFPzBa
zlpnoMD&j<DC$cz^+lf3*WOX8&6FHqIKR)@z(d6pA66DD4L=Gp`ok}XO*ev=&Z_ed}
zsX(3UZ_@HQk<W=jP84<`zY~k%6AH4d6ffX}lod!io}B(|nn0#r2_<?ZjEPV9(uqks
z;)^;_%pb2Fgjb)cf8|7RCrUWwzqH2EPLy$?q!V9@^ER!N6Y^cKrw7$<gvnRE4xNiH
zD<^V7K#p?KjB>RK>rKKHoEUV*AW+GPQLl6|_bWTq6+l=oH9PT>6Jwk($|X3_&WZL;
zn4O4sBGrjH(kD(-aiW?u-ihv6YgKh(*#P6RFXCi%6|Lb!O((u_qP7!*iyCV=u`O&K
zan6wF#L>xyy4{WY2E^|ED?Ul8ZElQNZO&iNm@HKlNl0;`M&??N+Z*dTQO}9SPBd|1
z;g<>D|D`+dudcomdw<h4pf;2nQO?vz`V$E=x9FQX@vRfhoM`UE=irVnjlm7^Eu3iS
zL~E(GaKf5vx>imMk2RGk6+bGwNs`~um#j8Uv?VWlsgq;}r+iQ!L!J21iB3**cH##o
z`Z|&3L>H;wiK45`*?qdMPAm<YdpIH7%_+N{>AE{153C&D8+%HJgv^q=X@6`lX=Fj8
z9KD_BL*7!uAjy8x;I-y~PVCvP@6X~=!vNMMFvy8lYYlP?c47#5soPNMwyx&ev|(};
zPK<D(>KeoPb!O?4kxsNJoG{9X(*Zp;nv;X((N1i-s1q3L#5gB5O45n(PE2rOr4y@U
z{g=_@#9}9wFmke}%RIx0Q%_7&<SF39&rVEp;ukv8rP)h#|7NLmszkg5od3-%Jd;Ic
zQKjr`C+288moU$X`Gf`3h15mVw6|$eWT{l{HZPaEd|5xZm}!~JuT{DZt92`!xW39L
z$II*L<*asMjT38S-W}7`H=5Qtv7uzVbei0(U!7R*#6^Gn1}CnKG75-ZKdImBlwTXb
zUMDP0Y<1!{cJfXqes|)k&n)#c*kqO)z0Ha3+8Eg3#2@5`_2MNfkKeq@iQO{H{N_DW
zfj<e3k_N>It90F)B)=0jDcIKNa-!!Zvw+<RhZ9bk!y>UVyhYto)nD-*nH1}FUaEjk
zrdY%*5O5;sL`W{Ap)o2mF2)>|N}lK<)avWa!u#k;)_x}rkPkBckmgI-qfQ)i;+!-|
z_J4Qc1mUDijc!?5cFWT4qWb=}WSx@bj#<K|oj5~2OEqog?zc`{kjkC7<iryvo;q>a
zi7QUrXUtXUYQi14O$4dumJ>I~H>r)^sC%d0CTBUI?s<Jzi@ZlTKBDjg&3Wj=BaI)+
zig82T7x<YIf6IFA#9L<lLw(`IbHcw`eAgoC#@R1rf;jP-=E7O(C5$+t?nwTQ&L=0{
z6FyKsQb%M<=ycYQ&ZYKM3{_x3p3E6s$ml}JqxkwLzHlLv3y(v15<+Gdvbf;$!S6#>
z7qYo9$b-QiWOpHl3tzfX)Qy}j<Z@w!3oBj7?Lr<GM!7KBg}g50bD^dSwOq*WLID>_
zxlr1Lf-X$TS^fI<#3s9Sg<L4?LJ_ScUrC+hqSRtkP>;l^yXDGJoXHZ@k}iBr=zUMU
z@G@j$p6Uh{%96`b%ezp4P|*b)L4qr}P?<dEEA>vrX};ctuBq9@F=~#<1+xqBOeRpP
zQLDI6mC&c0T0?cRKn=o$+Sw9a_{N3aF7%;O+l6{A)F&sokgUb0xR6S&qd9e5u%B12
zsDTR&U1;M%TV^$)Hg};hp$WAqRf4~Dp_#@NtERSap(T^8T$nOl9UiTj{Em95nmUBq
zkvqGP=8~;*)KMWv2SP^|IuSmX?LzKB?Mju%ZiMbGTrj9TCPz;?-&1>0%k_&{wOjv#
z3xi!4w@;1fOTV8B{R!d>aA6>M5LI7GZQGmYx*;xz4yFF+!Z3n3!wDl?7^yk?SLuFo
zVT=pYT=<128Y}98b+xWpL3L;F@h(&;l{&$NoNIIwsgtOZoGkrAo=W{$^9>J8(^<m;
z87e2!OC>X0m~qB5(}h_C;n{>aF3cs&)BO1^bogkJfQ53S3szsGUFl*M#y(58#D%4r
zv&@C%<QJ9Hd$h`h)h?WH;iL;|Tv+SEZ!Y}qLb)a}>s<Jik$b1dH@l=??~>mx({G@&
zk-CX0m24(#abYWARd%)J>@U-8b77|oyIj~VojE;T%pETLp_STEI%c;Edt8XP<WqL~
zKV8@>owii(V}OO~pej_WD8Wws=upohhm%Q{3vPmk>ZMBVhdU`!r{9GDD;EyB5F&@E
z{r6@QGpfb!b74REfC~o+hg>*HI7~f4m74QAb;roZHD{#Wc*=#pTzKNbQx{IVaB-~e
zvI|#SIHSd!b>W=G=Vc_5FKW&uLfJK0t`hFJ@OqT`*1<Iwu4^$jT)3(6Ey8VC>#nK$
zT;FB#9`!!;0reqO0v^dqtFhdXXD(c=Y<MlB+J(RA|3iJQ#r*5S3-U|qD{7ZR>U?=C
zm$^lk&5i7CymR3_vp!JMyYZ3mi7LVA+<XMM5lav!?u;%2Iink25HeA-P&2#Htev_d
z$&r=Lr<B6NIo!zS#)pfBoHWJB<wkCD9%^3d<8f*WB`iOK3%F5`P>3piVL}l%;<l<`
z#oT}!zq@4<Lww~%aW|&8G1ZL{Zj^N6J2%?6@wFRWs>W7wqp};Nc$WEN4W-=>E#pR6
zf^a!E%4=M~jfxt}=k_C|jXF2Jaig}J*9|=@F}RUHkOmtGCaRel??!<d>Nv0BMpZYe
zX^}Mv)!nF}Ijs&Cs-<zF8|we(hv|~&G@&NDkwQqNHlWs_)^(#Ep*~d#2F<31<VKp)
zSbD5pHpy!0#<w(^QJcFVzwj!)94*{vsl~S<w02`v=0wSA>qa{_2DmZMjrMN*Rm|Mg
zE#Grb?%>A3h6Xu0y3tAF&V)4SaKgE&MI}Hg>E=dvH+rz<p42{Wd{5{_?M;=)j>&41
zesH6&=Ja!;zs4B`8U~TaxKZnlaWHv^8$$^{Qb)Qmj3D(4cgqj({`a(6I4x!rd9>#I
z<i?64>ghVXGLCg)oErjijCW&##uEvX+?cF6-{dy`?8e(JiNClpT}E|$_GxZxX^>Ld
zZ<ry&<FtOU8%x}n*WEnRjahEY=IQ2$qn&rI8+UrDuTtjISwLM#T|})hNSy^s-8lbF
zx5kaNG?!7AQ&+gLk|1HL2&-l08r4$kG=B@>S2xxZHc&TGH&G>cvm3kh>Rpy&s~f+4
zjx3l(lH1+bA*0lTnjZWiL&c3}Zv5@WE-B*15jT#yv4`;<H)5`v{&ZtwG*OPdZdk~Q
z3}%9j>U6_Sa8M=k^h=Yd%MG{Y{JT=;b;IX|pEXCQ0je}9NC>$RCd~d?eKi#&?{j0n
z8wa$=Lo)oxdHJk7Og_)}V{ROG<F*?o2gjcfmBFl)I`uhB2D#>(CY+(3rJj?sUo**h
z<+woSq8pb8;#_vi`=bAiw>mbpW3MrJ-HjWXf76Xy<j-xpqxpB;xaY=wCLd5AyYW!V
zeMC5xrViI9Zaii3MmF`u#y@U6msQS#QXc&4#tS#T^x#rQ^Gmnvl#ShI4f#BH?Zz7x
z$>hOX!h2a32=CnT*%Gy>ADI-0@u-*ZiOF>2u6;7adXV0O3`|Py7anBPc*IN7?c8d^
zGJBB4gRCB8V^(fzb`NrDkvTm0SX&*Xx#%cK>Z`##T5etsawVy`(&qdgwdDn<1*wHR
zC`>3qRbyhzMLqaphpreE)UT+;sU@f-sS>vMrKz+B>o4dkc`zYkf}E%fPhFN;j#{2t
z!Gnqfi7DSZQ)Lfy9>jTM>ls}<RZo?q!2=`NL^W%E-9x$rjjIr<dQeSss(WOgN0St<
z<w2qctv&codTB`fHy+gYpaHqI2T6ovs^q2+Qaz|csH^$)Jec*$Bmu2EnV<h_TD2gx
zp$CoF{>IcM9yImfTXGBSx|(^=T;r8BGRu{=^q>`;Or_MB)ka$K!j#s**vo^q9<=kI
zJ#)Kir8*EgQae#QQ`0=?LXb)lI+;bgdC;9s56$oC!S@<h>z%2$2Md>~bE*%`AE<pj
z=tt<UMGo*_pvH5qnTB{U)Pqr8jP~M34~BVA%nNui+=CGw9Pr?v2O}lGgAE>R^kB3H
zuR6y}@nEV4r6anZJQ$<ZHr9i29*mcPK_^d_|Ne@c=)oj9leNfva|}6tHvH_tY!Bvm
zFirD+Ax!sR24SY=&m!b}nr^NKJ%ajG)OjAvCoJ$_DPbXX5mmw#d$2^~5ufzS$jdcn
z1!1M!*7ZpeEXQgO*3ew5#jNw-SMqwz`MacXlLwnUuy~+&uthqgr1~e%A0BLFBY&g*
zPTfY8-0dFhAfI}xzEYKArw6;V+}(sd9{i~}dkI^D>VjbPz~h1Ua~9Q3bx@sD7uD^-
z`O9jNp~(iH2T_`SxxdMV097F9L5LjIoQMZ|dl@B53hwh@KTB;YppM={9vt@IZx8<Q
z$oC*{)Pu_&Tw%a5kNgW8+0Gk|GkJn~k}3sHdGMFUr#+baNxkZ`nsbhD-h&H-i<*DQ
zgL@Oy_RDeAgF7DFW!5zhu4^$j2sf#>sJA_M!FLs;)IATLXp#3lc%bn^!XpnJ6Rh>s
z6;h6;9z4@xwmwXEI$g|jS^uR%501whn(a?{DWhFhY%el;)%E-}gFjN=$Wwsuj{2VZ
zfhv)%Trr<CPRFt_)L1Xl6TT^^_V5>8Wb&dQoy^o6)GXAjR0+#Q$nM3R@oG=z^dgrR
zxoPI3=FuYadT}<S_F;ZH1vJ0hQFSsF@}e-EBGfObMX4#g<6n7E+>5qewDY2b7bU%@
z?M0FoUwcu?i|SrHJ*SS7(q2^ZqOuodyeP}!<){_BC{I{FGA36RV@0yWALk!vIxozc
z6X%6qV}ln)jZI$cc=g{LiT5Hw^Q(AKRpV-2eC|D|xrP@t>DSV76D5~inLV8BMT!?~
zys(arX}VFD>O~_hvJRoH7xgr!z84M14XK}Q{nwJlUNrHdDa~)GExl+)kTx{;q6OJK
z_rKBG%8S-o?ss0C8?OHOHanxCZbaAKiw<6N^rDj&FQ*xnSBZIN)9rtluCrHuX-a<S
z6ob6z;zd_!)vWj}NrrB$XGcm(Z$fu3dJuYQ^?y(3Mb%$U*GD=qCFKXIKwm;XYJchg
zFBT3rO4eYxv!C?Rs(E9LL&%aGDo+88hsjfbJVJ9uO5aX2O4v_cjPc@IADa0v){Ajo
zT=e3S7vsH{;Kgn)_INSTi_(2E&GBNc7n8g=7*J>2WG|+8G1ZHo+29$}Y1Ch+)2X4F
z>I|Jp7MSJ5Y>gLx8)F=4p6A6<FP71q@5KTwcOhYs7mEo?sJ|ajUn4CiZ}MWZ7c0E-
zbARfLUggEF1mV?QtRb(ZuG9Rh!_4c+8#HGl;fvRqw`k6G!d5SSBm7R?Ms;x<O8q;$
z_=C<)syMp{Yrib~rx$y@2zU|nBDSJAOQLb>KBI-XiVR%=vYqPo!a;CSUDTL}`trj=
z7VvuEBl|UH;ZSpke8`K#gs>M8LX^5s24sVb`^g8W2dPrqO|R*Q#>c%ls_`)|?)ua_
zb%M@GFHU(;G^qQF$+KRZ)*{cy0MPgx;k*|YG^g=!^JOot$l~Ke2_LR{am|Z7KIHY`
zx)(RRc<;prFK&8q%Zt}6bz2rgFCKgGgvq<qhhE&%>b&p81M;A;>eBa!oMn^xDqW7J
zOg{I@$4Jy+AjjWc{G)N@A2R(*exW%py?CYZv=Qp-u{TV<_2Ql8zxpjPNpJip4+|f@
z@Zpop8oe={PgOZ$2(i@kK4j4RBZaDG^8MF_?1aqJEb?Cf&CljTyQ=CK&Os-q=I8Pu
zH~DM6W1r85zQfJChMHx9<fmW2hk`y7A{W(46($t%;Y&i@KI(f-#k5@b@D;f$&$um1
zVo4tiJ{W!Y+K1`G%%zxH+J`cPvOZMO%9bOP_n`uzqUH}6srFc9CUri<X}+FtbEw(m
z!??F;i9Y;VKz%i3rXTM^f)7>5RjD<6s78>O>OTC@L2Y?W&8g+XfwAgn{Kkjc(!KN>
zYPrcir1+4^WF2aKAL?qk_2jC{sf}!)IkI*&(zvk?O~_5DpGR_YA6ob@&4*unXz4>M
zAAa;<m=7JUrfcm(Cm%Zd@SP8To;9`6>S-(Yk=&lzf!a~aZBaR<L}zoF4?oc9LhVZJ
z=0kTMdT5coeCSF3o?71Y-+u&pGucP_e~3Ef`!d;&+MhbWhk=AaJ`5oYrjDP_*Nx-`
zeD7ko4<mf&UpXeRkg56`(?}UbUCa}Fn3ZN8MIBB3i8_WlmO9Rd@dSz7KS;fs6MdM(
znkQ4IP^VHQ_h-W2En=qoFvEwfKK$mxOdq;F&@J*|u~fx?**?_hY?fn=4|B=$G-tjK
z3&;yKXV)b|&4;>lXH83F{5;h!^<fz+S?<FcpKKJaPPY}*mDE)}tR_6UsXp=7kp(u&
zfYf-s4;wU|^`*MlZt`I>oh{UQSJihCe)nOUl=?A~)rakJEemwJe7LnxU14^}h}CM?
z=|i3T>MKAwcGKJ=Lq*Ho>w|@?P+LAwTO}7|^TF<efE*4VoMe~gxP9=Dy_&P=m@eQ$
z&?gUH910-hL)eE+er)z5;zLx%zaRDd*yqE3AKv-!US^O4`(#zeJs%DUywV@`VdZS|
z_Pcs%!x0~j`f$vL<8o1K+X?C!ssx-Qobur>!fEQ0!|JR&>%%!8&iimdR&_1@BH@Y;
zmk5_N|IGvARgJItaHWMhH*aXpO{ss1I%02Y&K<e5VrqZh_u+vLuWqM%>qCzE#)k~}
zhx&;6*oP-tsi!_XBmYgU*i&6k)*aS8_u*e31YS^IQYHC{@S6HYrqT_QnDz9jQtE>b
zAAKn4$Jc&*^5Mjh%$fYi>{mxxI%<p`v4r&04AhL&FQ^hZVNANSMpG6)W;8P9rkRzR
zjhfw$99m>fKXQ><?ofwf9zXK>kx$Dl=0|=%3iwfwP7%#7<VRuh?nY|weMv5=<=(BC
z9U6b-M{$iy_;D<%_HC0J`ci%v{V@4a+K&dU%w-r;){k<2l-J@b`%!^hQFAK!(YCdE
zMjf3vs-9}lVx}HUI#ttH{9bb4rpfF_ydMdERAFvSKWh0=Rg0|VM|E-y>fVSty5vY?
zGMV~~AGHZd)VS_yFQt%EsdcE2z3R$YU#`WEVSWtvqoE&-{OI6EM?V_-@p_KAxgRb3
zXyV7r59X#U^(|EjHX{T}#I}^~%5Qu(+Bh%}Kj}$ID?dbA`|%w?xDBB#wH>v+A0uX)
zB`a5+?4A7R>Bskebk=H4BXsejE1?^;JGBQ@S*P~r#kXerGgB|=u3M(we)RF<2j&i<
z_N7W#KR^0wJiw2E8n1YpHkdp_bB6lyBl%%1^$9Y<kCA@N_hW${qx={xUG#0nO>@oJ
zBc`AH_}PzXe)$zsjAfB=eoP>Yr|!(5j+u$%Nz}>IDb%S{2^f4bN%R*c=lC&Q^Jhqh
zlV?$9Q_G!J*Vwt_c~nVGDi^cRk41j0@?%$Q^~Lnxv@pjvGA<!6)gqVqv7Eeux{^Ay
zsM^leEW3s(m8|t+oyNcVv0md1er(jZ)eX}YKeoz14WLQ@zxnaIABX%n?8i1gw)^4p
z!|%rqKkAIqdHnGD@rNHf{YZIY+~tRrXWz}FID7o~Q{%mUSjdXzoM^5-No_1*_rpOD
z$4PMc;ntjSug!yQnU4N#l7Z2<hB4qrP_E^$?w}vbE+&TjI67SIa5=&(67eHS*hk$@
zJwUCyBBpX$)|)31zinhZA_ZlI2_Sy}$7GtcG+y=Nnjgm*dBTsAew-pp&FB62OXJgo
zGk%;UoYVaM6;m&0e9@0f8ejI~ipCoart7k{ludo&$5TIU_;J&ZTg<&ry-mGCy-U4E
z9naA#EqTD?L+T?x9uuC`RA>D&@<&;&{rKCDf0%sk$1B3W)ECs3)P;4_b>_7nZ~S;m
zN0RUTct>tpSDh~($lujfBhv*C6F{~AvIo?sKrA&=0O<)Cs2QnWP$j0&Y;$Ifvk<Zd
z@M5%DTMj03QqwqM#mp5zZY@4f0C_bwmopX!pkM&S11J$dp#UCj(sep#IP{N6pl|?1
z=m>vFC`v6B00>`cxj*gIm1Lbxn_d^d*W^+GlqQr3pn`VBvV?Nf@&T-zs?I4nD$=PG
zKxM*VKBJ|!xPW|<QLm>O0x%LxRPoIL#A`g}wyA0W)dCn1z{miq2T&t`CIK`Jpk@GL
zmM7N<$fxyU6APPa1(3+Id_$G9*A5^lfawP^CTmVg0I3?w@>@56d$-kpMb!(SKK%yN
zhFVM`LgN7P%~tR4w*h=Sk(d@h7y8WtXdXZda?1ePX{A~P&|2f~2yLis<sQvdU&+YP
zK7bB1J8F@g0_d!9BY#R)89xsUgXnY%pgWU20{DT@llnci7gd6L2hc}jcMW4-jr$S$
z2QWZ$1_tnJ#3V%qYiAr1z)+2U3}BeX!wFsMW*Qa1=m3@nup)q;q~`;e7BNi?U~B-t
zTreJ<oOCK|5*Qc2csdiP6RDG^k~^6&MXudokmS!&3G4qQfCX&ZbS7s6Fq1GVfVqU(
z)H&2zr3y+1&LhvKUf{Tr%UKw}BG$8*x`euvD!I#KHr-IKdSw8s0<Z+21h6`Q^P`iu
z1h9U8{F(sP2C$BGZlcPGekH7@ZU|tb=0`fIkKoM#l;!Kjt?~$9*6-9^)NKK5*Wz~&
z{s>^F=Iq+5j)dJz?xFq}z+Qs9Dv&IzZ~)N&q;Ks3R6Us}4_{vZ4zeVj0l3I+s)y>;
zavQug`vZ_7as&bhl0(!mHKOJI`Hwma_VLvFsRyWoJH#9g;D}sW5Wfd;R2KgL8VAuN
zh~ojA2;hAH9|AZjEezm(01pCaFi!VZ0C#0(1?1DhI1|9x0B-bEpI=u9=cL047pRhT
zk#LE6S?-ZXFXq(%uCWc*1Gq`JL9O3Ht?Cx}HuVlw%%{g=)?4-6-y53l*MI73Y%t33
zFn~I>GCdE-FLLW2G3;>wPyQDlz%z~iCj3K9d6@2BY4$F?94`WRsqw1-UTgd&fVbp#
znlt84{l@@41)vYY5Jb8lVuHvOMD8GF&oRaZWn)2IzFMaAOp22sh>Sse5kw}<$reOr
zjk6H42C-tZUV^hTnS+{Bi^)*YkSB<|LHXr;L%AUG1(839L&=5`LG_7KASmy}sZcP8
zLWIIWq~=n`RS_n?q*kb=4&!2E0R-`t#>Io^&i`Xdoh4cG*VIzf($q3RlqE=vC8#UU
z#z=cA1W{4rN`%Tm=rkuzirmvlm@x=b5R-DpH45VS?*?-aHG`-XM7-99gdnPDTs4Sl
z<m%KKnt!~YIWdT7yVTiKCx~yzlB`Wgq9zBCLP*terBq$kP>)()tF1v04K*InFLSn>
zhAJoZO@sJ0h@nCJ7(}xmng`J<h~7c82%=>WJ%ji@h&9>b<Y!n~1<^W)?}BK<O46up
zgJ`eS*)E6yscN5h(43BhPSnmaX6~qe?{{IcE43T7J5{oJ1hHYZT7!&p>rVZX55}oC
z^nHT(A&5uy<frcq<%^p829cC6E`GSNUr@HPHOSGQFn~HRh(Ve^m@p)WabFuHY*-M(
zgP0P;)F4Lij2mv~#|JSoh)UJesW&Q!(e!`P+A}7IvE*^ocTd#zPYBBPwd$J&6KPJO
zPNrVCU-0K3CXdri3*r|U2~|ujy@u&(kLeaMU`7x#3A2KjLy&rA2LXPxX|CqX3u3;;
z3xZgvagSZP#X&4#a%m8&f><5IGA(zx%qj9p%^6u<?aVbnY}A~!(kDUu8pL`!8>q`$
zs$oMD{(Eh+DTvKl{FWfLYV3HMwk?S5K{O5F+YojH@rTUo5VC}@Gl*SskAip{#O@&W
z1aVL<KZrkB)+!prUacMrL7{dj7h@-QgYX66AUmlpsx-_UgonH$<-fm({Xs;u+yEg+
z4N=3?qWnWL8pJ*(rJnsk9MJf~zL>*790}rD5ET}w|NA={#9u+24&s;=b3BL><df7>
z)FrvqPe7f~VlEQS260Yv&IfUUY<Q@SmP?v{IfyIdtJF$2)jpTwI+HhoxEaJP@@?vU
z>K*D`>OEOQR;cgE$nhYEhcx$ASMS=BAfC#4RV(IG5YOnp4x)H2<KIE(dz=5EKBxXm
zeL;OmeMOb9wkuNKu&h-0mhg`HK8O#5kJQ)Z|L#J%kh%!Rgye_QRY*_GK+Q-M^9w?z
z5W@LVB$+jYY#|g6p+pEdgE84dxOF=FS0Pk<q{|^r2)RPY%_0S~8uAeGQu9&shj8sz
zwf72!P>4?95Q-9tP$lcj5S(w+{+FXz2+;iT3u7L5<LmY@mJF#s<`y49LI_`n@Vtn*
zR0yR*C=){25cFDnIYK3Bd1?h}#Sng&skWgqlR9b~wSYEC4Ivomn5brIKR%VJgitkv
zMs%u$P(6e?WT~)52(>k?NvIV<BH<fqqapwGe^Lm^bW*5NHZ=sp&;RAt4WXXq*AJlq
zxgqubg8#-|V<wwWt36NGEQIDEtPWvK2rWWr8AAUM287Tmgw`SS3ZZuh?Gp{(F+MGX
zHiWhzv?H_+p);WaRoc^$&?$ttW@@YUH&xHuB?S4M^R85ZZXtBnxCfzU2;XZ?&x5)G
zeG)Sysx!2Y^f@c+OYNtfrP!l%149@T!qgCc4q-6;qZ<t4LKqUlP$qv2VH9DQR%&<%
zBgiAE*?Oui98La-dMvwf3}I{t^Lf`KU_6}()QKTXB21=Ep?+SYriIW}UnA2p-Qo~_
z31K?3W>Du+XHsW{Fq<%kI)R@^oJXEdT|kxdE(~Fj#@XKMmV_XcFQqP{E~kpQB7~LX
zRhqN)58c`j)`f65gd-vR8p8SzTp_qa*bu_T5cZ^+4^2>ecvA@5Lf9U{X6;;C2wSPY
zQGb{FK2hzf9Zc>C;ZK=L<egN>+C|tM!kD`19p9_@md}tUMj=>533i#SpR<PP95Nkh
zsb4FQV_&sckLE{0@P<&btWgeM2!3)vbAp5rH7t*$=Xwc?YNKc$VSfk*H0NLlhsf<a
z#L6H%8p1IdIk{pU$ryI)kB49%p}Q5ri4ab*0jH=JL->nuI)pPJ`9zAk?#XeUa4v*U
zFZG@F3z}cJTI{6|E;D(BdOd`zglp9KGu8MT<eSun@oJCB*>8t%hs_YaOSnh9AHoB|
zLoGK`K4XH}R4C5)G=yg%{Inlq_T%pm{s|#_6gi@@-vs`ZRW5>35xfZDrJN`Xdl;`m
zcrCLpj2>aU3E{2G(=ha5ybIyIEQ4Y7>OO?<F@(xRO*z8&#1?)*KOHrO8cUVn^kHPs
zIAd5XC1xf%nKeI47+J~LG$(r)4L2uBWX>>hg^@dqJYf_KqZkA7hEYh1%ty!{Mgh$!
z7{;|*>WeWs3WrgI{+C+rHokcUCcmbB6-IF_w?r5vHO~E9t)Uc?rKx4Y`21}eX<NB4
z%G0bstw@#lN`%T`=m>-P_p%`jqg+uKjcA&}s1ZiZFurPSFozLONT7;Sg;14REsW}#
z|KYUZSuIm7){q*8a3b{^YV9zR2;wJ)k)m<;!ZoB-by%t{wO$zY2@R;94C?4=97Yo+
zJA~1cAZ9DVw_!9RG^e(pwxp^tCUxSs4&yt`X%j|Uay!jwAI9^A>S7{CN1C0eox?~Y
zbfI>ocB4w<sIi8gVSFFP#4sj>(JPGJVGItVXNqyy9h0ZIxsN#SbaMO<MqhG2YJbfi
zKo}UtAkF!wyLm_$L&Nxy^+;8tKUWyWaLpMJ#z^ug&3R$Y{1bVM=8Pqb3u8QCg62<Z
zZk`;*>PMzkqG3!4V`>;b^NJRRu_%mb<X^&=9>$C?W->XCI*U3djM)U~fqnPV&DGfV
zeWv;31)4MX%Pfn@OQ}n!SxxGDcgwVx<%AVstR&>^tLCmDZw_Ni7;D)x>$Lv)m9RdH
z4TO!<O<L}grq#EGak!iL57zJ-`FH9zs$^{sV+T3Sn^}@O8M!Nr-Gn_<OBjC=_EOJ8
z)&F$Jp@d<jBkVV3bcEpy<L@y33BwhJJB$U73=hNbgy9Y2Mi}4Bi&>D{;0xnu7{|i!
zhY?`$U>N%eA+5G>7!h)mx=-`3{E%=UjDuku(wq(Z)He+dhjD~XOfz+M$Z<T3i*!y<
zPln}vD*UCDIvd7m@)^zfrfTdt^7$|>5Sk@sl;d-4m%_MA^9uDU^&0g$Rl<H7opdvd
zE1i<%xE022@*T~&OSnh9AI1aCe_bo_Q5cWI*!Qb(5*OPitnjHU2wKg16EZyy<KHl{
zM36OtTe%Hiy*0iF<E7j<r{Pr?ZF(9f%`(20M*xewrDllWT^R4lAHql%QJ)1LwK_kA
z@f)u$hJGwHJypU2Q{yvg{6z$rG|n7BI9?r-*&@guL9qxBf$5zgM+8UP81pkMX9T&l
z_}qj%)V$Pu5j2(`D3w3f+87H&P>=-+QN<}tC_?>`S~P+jTh!pMSbX*!)0C;|ON-(W
zl%OMAlCVL^SUQ3-5e$i7Xar>=C>KG!2<k^rK7vVWbTuNV89{{zDn?K#f;>aa6Xf$e
z5meUd(GlVz&=U-rZ<K4)_;qjfP4f5%5+bM)K~?(IwcKhE=$_Y-fb#9tR|P|_nrcOm
zC@0;g>-V6R&lxZ94U@I0Nz~*BQV5cpN~lAv8^N-HW-%K?&@h755qu}DO-gJO!I(Uz
zR??FZ9P4jxLKSFA_?Fs?+ML=Vf|dk{iTT4&u#fr45ObRd+D6bvYk9i}cJ?uMWwJfB
zLj)bQ+)fd6CZ|!mX#TGOqm=3vL3b7x?m_4o!S{q-)ZSX|fkA5T{lMaVsr{(^BN#v!
zNR^mD5e(M2L0|Ka5e$o9Lj)Tm7#_h0xuFqEj$mX2qav6Xfxovo^IF~L2%3*Fujs3u
z<tOPS)-aYjjyhheb3z1p`=}#X3d*ngB>Zli62a66evaVZ5xOEjn5(CYn-;-b#{Z&~
znogKOof*L_!ffgss#N%7fO%d7^CMUg!NLfZ(_a)pa8ky_TFlBJ<|P_0B`k~JrbqqX
z!HNi0(peS3I>Kr#at&c^1fd_)3;b2{*ArqlWZV?N<_Mw@?2BMa1Y09;N8pLzHyQ8^
zjWT9-NANpYlG`HKPTrw8f5>ej@6w!XL(O|w`JWN&jle>-Yv)x6R#C#r<LYz4q2)Rw
zaFKg&Q$OKwxPFq{eQyNUmnSX>=zMa^A`p-xAe}=FX-=3BiO8;YYQX*o4n*)z1kWQl
z7{MW#-FtNf`kN0&a3q4;5!{irLPmH57bCdDlOB)YbOdK2IKkve>M819RB6(z<%tz)
zs%?|wYy{^t|9k`&G`{pU?K1f~^$PVW^%}L%_Wx?QA$O3D)OL$dr)|t#&3R0?N4+1x
z1I>RJ!6S{&H&EZhe8S{Y>az&`CKz9;XZcrN{6|o@oiRgHUCdv~wf8fBh~O1tUQ^#t
z-%{UE-%}-iOh6~`A0x8Cjao2WRMi-2EHyn<%)5Qf2m6^bMj`qIHB%Is30bJ(XN@A8
z#x-vnaz>FWiuX}`h$43sd7_vV#q22ZMv*Uy7E!c}B7YPGqA*5bisDi<v0xNMqd2S2
zG;vCNAzo48D2foiq~0m6KFy0ofhfL;qBzZpQIsH*p-Mo>D8AOXR1~Gj8%wKY%aY4!
zx#gp%pz%}w^g$&iD@UOt#A&(uC=43UO^RPNLT8R5DT?GMgyW+~AXK4NrB;igI-y1s
zi3EwP8AUCPD>bP84Y{`F+&pbck-j=)+?A<%!zfaD#yZrx)OuPQ>POK)<Gaq7Mo~zS
z#?&TMNj8n*TaBAV(Ol!=_jRqJXdT6<C`L!|T@-Dih&`a|5k>bY@mur8y?ml?%gWnD
z(VoyDijIU%)UHu<CZtijP^EikElur4?oMsS@0ItA;(I20MKOTTn=0{r2tQE!M$wPZ
zU(2<hN*ox)peP2@8AcsK9ZLO?D)r2mp}sLVoXHW?kx|U-^50DSDT>KaOo?KQ7C$zM
zapduuGl4KMib<OD-Q9HI4<=Iq!_+7qPgY-J{2awJ=KeyRu0_s}b7|bHbLKfw%#Fem
zg*S@7PwD1Gu`Y^~3+k#eKZ*r1$Uo^8MzM%R7Dur{E4zfSG>T<}<<yjW>ZPsJVpb7W
zN3n*mR`Zu%Nc=U5^-*ky;!&pRxhf=Xi^^AYRhDB@6q_~P62(@H|BtD&0FvT*zcvdj
z?rsNnGOXdSxNC5CC%C&?a0~A48u$UhWyjrTa3^R868wAn?B0KURZ~wr_uRK{_w;o4
z%+5}C?@z!1<tfrtJ(PgM2{^(rk0szZ<tUkWrHd2v)8xqnoTA9${h5&Tm-QJ*5^z@K
z=PBo8r|zSD{`pJg7ZQ-7j<!lKC*Vo~-pYzfK(Sm^ugU==0p<i;;~sHc)!(4pBojzI
zX&{XWxc#GwjAluImHr?>yTper0iFbS>GlLTD3Uu9;8O0E*Y0w934I(Ykboe?FB=T6
zjuK*12ERiIlec6pl%u@H%UxA-k8+=ERWSL(1U#ZYPQc%)<_YC#0-jNxlYdT0`eyru
zyc|qkk*~=&q%4D{bo|X{$=)TP{%hUW1e8ou_1^?6OjY&0tbfW!Qj$-U{}S+-@<rwH
z)k>2+@m^ERj|BWofKLy<9?A5G(BpSK7U_{(j}&^;)uWysDfNid;}<=2dZf~$|D@<l
zdbu?cQq$9r5~kH79X&mnLFF0sSTR>81zGgSsz*t^_9m50kL;8pdgRa}C%pifi_A;r
zCiCd!Bz^5uL_Rk2lhXVap&iVjM?ofq$ik|(RPX4b^kQUjm6xFGOc7B^C8a54$g+Br
zqdZTi4c@gxOnE)3>v6EL_LWzZ9?^Ql=n<=?twf2_qXMNOSv-e!%&APTLRKZKk<#_)
zOAlcUJ>peTQ;%B8YwJ;mUX$BieLWiJF`Y?6JsRoJQ;%MHG-lFLk5-f>dNidpBb$>g
zNSW88iV?rkJFBF%9&Pk!t4BK~9aP?)vTCUI=U7KQI;s2%&vfXbM^}|})1$lc9`fRT
z)t*#uCIj^tMCqePUscnO(w`ha+PZ2hd9WU1^cbth5IuflK2(p96zLsC8Lr0&m3(Sn
zNAgj6jAn8?qzxjEacnNG6**py3G|72Oi@!!(qppnv#Yg#T20l<MTfMlQ68h+F*Ed-
zsmClPb5uT?QuuYUxhk1QnNKdzV<F{CVQm=}>#;<SBYGUwW2qj?WEc3RZ8nY5$1K-l
zD=Sy%u~Ls!daP!1Gr5LbPyRu!)ngqc&5)#Lw?U7MOk}`KdgN947CkB+&n@9L_HNf>
z2W2O@m)u3})?*JP1OLX~N8hi<0m?x=4pR=1GT_Or@uq#++>hyTT#uW2B<OKMk7tjx
zXLL@F`GaFl>T!x9{wL+M9%oeYKRwPW&&*%coY&(oJuc{Rk#o7K=5>j3nY^OMoaNel
zud#WZyg}v~r+xS0+N;y+VPhgqgC0h@i8QO+qKB1UhEq-JA8pseAuoFWXn8m(F49eU
z^zf?QetUHRJ%W1VG9b4BAw9x+JkjH+9+yVdxTVK^WPGg0Z9S@usv(a%dfcVoBk!yH
zfgTU(k5sa~c%1#aF8{vxXL>xBW2PZ#3;bJ;fAn~##|tj=OY#-@ntVgPB|SXD;$Qk_
zJ-+Dio-S+S1LY(6Nss?jUgehd=KGb+WCnbrd?$a9KS>kMO^z@ixdAD-Y^lkVWF(o2
zl+m0&qSDaQl6N|2v*^_?E<KwW49G~yWI$#Eve2`WQkK<#Z1l|2w7<CJk;8zTOy2Mt
z&O8R>HK3^h%?!wAz=}L_ky*qTkl%m;EQ0~X3@C0uK{aL}N@21HS=4}={2!%^UxG<F
zvZMi}D3X^ppp5de2BfYRpSV1~7@$*mc>|)9pQxfOaI69K3|Pc7W#SB|U_eC{R5GBN
z0oCc1$tq-3Ql_mzsYS{-@dnhS|KD=fX0r}i*MMtZv}1@o>N9CzKtqZojSOf^Z=#ZH
zBT_dvpoIb54Crn^OXlrWZz}_SrMFf|8w1+X+mVOHYWr6QdPlMo*_rG@N<mix?(rD%
zrB!qfhQArm(|}&|-sAwXj{$ut{YaU%KV{&K+yg0t$id_gvJB6@A8NobHisK9kut)7
zkp_&S%Q)jGqscJ_j8(brYmf2t31sj8X}{}`$0Rlj^-4R{fN2KoH{*aA(+!wmz#}6b
z8!^*>S+Z#v0V8G`Fvox!vhf%&*MNBjTrl9G0rL%5V89*&_8PFzfZq++%3&87u-Jh0
z^d+)Ej){}UDg%}(Uq)Fjn=xgj$_EEyrE)c!Ysf#ywFazHHQCa}Zs5rBEH+X$8L(L;
zTVxk#qP=R{m~1C^kULe)F3N5LZhh81ne3CNZ-6TpyK|iOmC*qM<TlW!4LE4PAyytH
zPZ)4Sjd0X}WAx)HY22^&N%|?3{7JbmJ++K>Mx4W*CC`!P$-hXc**7-sk^z?uxNbn5
zR;jP3abkk8SLxSO(xgn9f3L>KdPp!pF9+mQ@m~xu7+^HuxdDG0V3Mt6Y@EjcuK{LG
zWl_^w4X_ztH^9NfMLJdQ8e;}GJ@Fh#A3b0|&;UPuTW4)&4;c_<^O3AW$~^<ha<$)P
z^A35}pq-K|_42rHzypTj4`oq#rsrdoJdu?^f2NZ6*CSpSu(NK=CvTLT5-U@^G~ks1
zuUYVh{MUfDlz-Gz?+i#hU--QNA7t(-|IdI=^cJhNchb))uh}G0X7N>y{|0<#_``sd
zMnoF5x1pa*k{J=fW^ytGDZQtjB}-*QY9q25k&R&*BQmPqv__<(rzbP0Ja=S#CVFO-
zWHF+0;`zT!a+5h!Z%#@s@)cKR9(rCQ@=@}WvOMEP#}zc9kP(xNm~2F0BZ?T&+K4tr
z{Ja}m(;QjUh+;+*H==|Q^^K@?KenV1rHqI(q5=mgO_nFi7*Uo|j{Jqxk=mNM%g_Ht
zL^FvYW69yXZbn5TDzRBho*kt+`Mp+T6{FlYM_aws$jL{O-tTG{5znM1DFx$;Ca+De
zL)Inhk@9q;pn(w$*=%G)bBctGDNT%MN@+%R;gzpisG62Ww4(n?W;m{m*4Bu2Mochb
zq7m(la^LDYy^ZK&L<iP%G@_Fcoz)24jp(Ahs}bGkdGcw0CiI~9RK2~7a!R9i)a`3T
zKZc{o{zeQj;x{7(usM(%L=GmGa;l+pnS7)X!|20RGJ=x+bn<K^l0FrWW-`Wzv6OM-
zc=9T*G&S%;?E3VvhBr|o`d6G{#8e}W8ga~sX|l~6O}*TR6-G>F{S0{vFk+T$D*K~<
zCubWmhccI3NX{eYlM7^9x*aF=#zQ)xJQf+Tm|fyaj95xvrV_ah)k>K~nV1bmY^1C*
zVl_p=HAeiQe611d=<8JyS0}!2nV3yR>@;GR5#pQ4E#y`swo$f|J4mT%v`f3b@opmy
z@Hy@wCD}{aXT*NW%{XnFJg9mP8F5(o5vj3j|4uz_#0ewZMtF=kX~Zcb5{!6uNcSfz
z&l~X<<urLlNRbK88gWkfHExy{jJT?ji$+|cUslN#BNDfEnf96y*HwPQh?~l*7fr6`
z++_g_Mi`AS8DUn5-3SZaO4?K|*N<}0ouo_UcRs|X%2D2H#4V$CtuUFdk2CTc5m0js
zQbI<ADff6yv)infN$wbNSNT24eIp)F9;&?hz1Sy4JT>Bm2{%o6X2f$Ns+myTgujh=
zVMHzya+~ndh#yrWQkoEH!Yd<Qb9QgY&qlnZ{A0vBBmSk!(tb4Jz48yT(N56zj!!E2
zPuAxh?VF`9Mto)XjZ9|J4octYKjfH6IeuIF3?IQRk>r#Vq+F9Hl?m47+W#XmQBs?b
zh9Y5F6VlPst0aR78I>o`s~tZxn~+6~oYjPE%Cno0gPv0*a*dZfCge3iXF_=sR_xQ=
zog9<Tg#0EHFaazpP8K8!negVm_8bedS%j2kQ4@;M6GtvVFG-d%p|lBQ=;g?=Wb5<V
z+WUn*h*w^UlGmtCbQ}}uil)Sv5UY|6JGGBh71*puRx+Wo>aAizRr;wZ+Q>Cbh&N%a
z3F}O#X+kX%2AD9=gxV(U%2$m{Xlz0q*4HKLk@d+2qzuxK@^X5zCMGmBp}h$mOlZdN
zS5?!T(!zw6DrsfHr|C(bPg<MMhIw1E9l0~JwuBu`=)`7kvNPG;gf0{*=xRbY`nbE=
zI`5(Ko+k8Co)8<+M|odLKe9iW_ja<QKVk-%Fu{b0CJZ)V2=m`e7-_;N6Na)WgAX%d
zIDLdlw(tkoqfHpYq~;0j+Yfn+HDR2p87~96wC6I(gvln%Ghx07Q&jIv%2X4kQKpkK
zRPV7B5wn!frpzJdn$Vfs!vYf)ny^yU{7zYF!XnCIa*67VdZVqPWhN|F$qEx5bkUY=
z6_eGn`=8c+ShdE4KU7VPlo9Jq*kHmj6OJ?7Xu=K?cABtB)oiA0A-9^aP37Au)%f3#
zUGxJc>{h*dD0|6$ChVvDuC6e4(1b%w4wJG}M<_?-`SPeD$q5tAnUby}capuQO!!mP
zpEk)&siMx1|1;q%MV_F9=UMX?dBKE>luIUDrAWbL7GEJ{!fVX0lXseEYb?P8y=>=Z
zG&jRwg3*NUCj2nLWP;g*=dvbEu*fmTgpf(Q+@Fop%7h+@-2?~4sd5*^Z9;~4ZG3rn
znfOfbQvzg={5o6PcfuyzGT}B8X+AXJ4*f29kGxMlAf+bPLfs=19-Hul$>e@X|C4&k
z<}*10G|;ZN^}+<X<kveB{*`wDcD+&~yr#S%-<t4`%J+|qd{6(Pk`E?)q<>P$f0WPU
z%>3HZ{7V03LgKFU(}ZMZ6gQ)U84+eAHzTK6duvERrZpoSC8ZgW6zNJuNo__NN{h4F
zu<2EA7Bey^&uB&_dS;beO{NuRWiuO@-HaTRjl8N`E;DkQk;ja@42zQa%qU37Ps#`d
z%m6*{>VJ|HGNZ8SEn-Hwg4&FVsYKpYOPW#2jEZJdGNZK0%TvmbWyx~nFQkr?qnQj9
zMUN(9$XGMtC>2Pl*;G2VGQFl5walnuMpZMasou;Bv~jAlS;LHYN~NJ%D397~HZ-FS
zrLGzEDD_D>U^bx0i!Q~D=#5EfHlZ{%V|i9>v=(NxG-I9_^UY{w#;;}!H)Dhut<7j-
zMn5z9o6**cc4l<tgzd==Wa2`0q{~p9%;-$-LLMofw6xvW>~2O6GkVf{nbC(LQ}w3E
zH8A^99`Kcwe1I9hF&SvaATtK5`XOc{UUqNfze&F`9m=j@<bgdA^5!^_KGlp-l+k94
zF=MP5<JkQ6QajR)r%y6t0%amuq`J1ulj$N;%vjVwyFT_b`3lI487iM?M&b)Si^*(q
zj_RFD>7PAfff)<U*ubWKca+>r>USBC&BbOclb67ZC2TGw?>Up!*a|aNF_BrXG~){2
zZN*ocu}0;8n6cK3b!^)H)1J|KS^rJ6k53!T*u;FZ89OOk$gSiyQp&bdc9>CYgf`z@
zZ0;uakbB8}WG-Iq?VuTl%y3!Yw&1WCM`R1JpuYu2%{XR8N(&+_IBv!XGdyN^%{Xbs
zDKjpaaao>4`tl8rM{gb-{ihkHIp!Im8E5IT02j?TM?X*gMP5+7UyjFXPc0^5&x7bI
zX6RLZ)r@QO>*NiU-=rjv6Us#z%rKf^V$-f_%w|~VR??<&nTyQJ!KRaRk#6#*C&Fij
z-;BS_I2<3*YEMkSjC;YTyX*~;Av3}h8Rr(|wi$OQTjpyo);%-soAE%^JTl`U{a91&
z2rrMvW;|i?RMk8)<GJ!Vu`w^qcxlEfCjXl8p7Pp^H<Y)k@*m1OIaW_h`b77^j4!J9
zqZyy*|B;_n{%T&tS2Mn``Q40U7VS9ygUz30>gh?_YJ>&J*_(otvN4-uQdyANf*KaY
zTad<rv=$VxpePH{S&-F&Y!;+f^%*S4s5}!TvjtfwJ)0-ZB|Do1Ey!U(P789W`g|7T
zR-T8F*Mbu{wW;!}yZ{Ac#@ERTQ3{irJ8PB2EGTZlrZv&I3dEFPUe1DFEGS8rf>IWg
zrk7DkSqt8lNm@1?!#E4dtKKL|G#O(-tjaIM##FGNq6L+hR8@IpN)-ztb|k&})tFSb
z;7ulNE;TKvWkFX9x>-=$f=nBAO}_SM!J0Z2)U}`<y}kuaC^AU{3mVcJk&RWJQSL}T
zR@aoxW@K{<x(w2`jg}U)V)Cm6?NxniN*l7R1??!Z*-L!~3p%pdiM+#;eLB;-Sn$tK
zZOkGUb@Q@l2c_=JdsxtuB1tbwZ?X^B*McKls{<?;Xu%;l$XGDQg25K7w_t+>LoE2s
zf*BUfv|y+OJ9<RRW1<Daln=LH1bw6hqbQ>-7)KdHjwNNP;Z3z^$Fn)Xf(0B(l1WS^
zlT*m47EGf|C#9xxFj6-^dX@zXE%=>FKAW6F&b443Wj?upEX@xF@~juJxzd8g6iJp?
zuvGan%5n=<sO0K{=vB&BQ`T7Uhf3C3uul1}2cvHkN}h3UhK;f@TX1z=^kxg<X6bgZ
zU<<j`BG=5(_GNi&r|hs`CuKx+E#J*aWU4(D>{Y(cg8lRZ<Uy4$tsZ^Ef&!x=&Rg)8
zybH*~sXJyt8@qN&&T-ijIr2#hPEr08Ql$4Z<%}F3Mrqs9SvJq9-U9g}E?98UBL9Dk
z&yz3W67y$Iqi<MnnSMo{Amy3`w?`)JiPxDlyBc%Tf&>fnY+6W}g~0-&a+3vS`tip}
z(^}cIk#-9l6elUu%HiE(f!BgrR?N1-XMtaiZ&t)x5wIX=K{6{MtO!{Uw%~~cPc8Ui
zi@L?hACkApJLFvp?osZO56Bv|v?X~&e@sfV{^W=ii*(N{_+Y_D3!Yo>H@jYtZ^@Sy
zyrR4&WvVw8=+tM1e=K;%{9o1kUN%}@$>$T3&wSNns{d5}g^9eBUn$?n@A8aP{!?C;
z?eS8O+=>)d=&V?qHaevhkyd24B8L^JtlH)$V`ikJwjvEh!nBlhR-~t7P<d3t*i2S!
z3(QPrA*Gp>l8u}*EFz~BxvZ$QNLP|cZYv5{0eT)XuNC<y`N`e9)^S0)j8@c&LiEC9
z5tYxbn7kOhI9Y<sm!KWNWL~ALD9xFcAtfnmMLGH}Dv`a<G(Eb!6;W!;Xe(l@h_xcl
ziV6&?T2WE;R;E-U6W%4OLP?xsHF|Y2@zX+0nTr)Yt>|S%Z7b?n(b1|MwCh^&yi)AL
zMY<+d)MI^pQWm>`6%Ca)qBORmHMg;*Y&Nr^Ii-aaZ73~CnYNV`zbbD{>CYeSw6&rg
zo9)RCswN_R`A+iGW@+y%of&qqqO0odM(J)v56Tzbc&;~nq!pvA=wn4+Hv3sIgd*eg
zrwkwmS}{oFgJnJNQ^9X48EVBa`fzfD%42h;9eYtX+KNe5j9a7~@y1v&mc8T1@#F+@
zBANJ}<=vy3Y{e8SMC38mifQ!e<P37A>OJ~MH^+*((v-u374xi^Z^d;hZdkFviiK7j
zvf{86zgw}$iY-<gv1!M~#a67eVwDw3INzn@GE#b%Q&y18-X~j4Sx>GZrRERHS}WF3
z?iWZpj%~1FBa=<!W>V_M&P%h^ifvYGXR^nNy;kf{y*sVgrF=K#QcT1?O5z?QBkX7M
z0C~`g;UVpR0Y|Lp{3iM@*%}w=j#_cdisLMhuG5qg<Vh<|sr*mMy?4pZsN{cEoK=2~
za^8wP)wKi21&%C(U$o+q^2?Mfa_CUWHA)@1?Yk8TR(yVy?D>DW^j63_l+6lDL2W1l
zM>dis(o9-Ns}(P6YtP8erig>$BweK23J>LCLG7<Xza0Fn_-4g-D}wUer$-lkqI)gx
z0#<}scFT$f6e+%K#U15$Dfh_xvgG{q_0Wn(Ry<ZUe_Qc{{*-(sd%6`h=O%rI@6F4E
zzK~^R?<+DxHSND_Z|HBW_{WNObO}FE{<Y%0N<LWekv@U%1^=o1Gv$jFUsW=oLFD_4
zF+b#pZ9@hd4mOScX+<)dcC3!DAvq<54XG&-rlds5T_7pD=V{+!rBS_UDd}uU+fPQ7
z=b&V=Au}b54f5V66J}*I8=2jf^l2fd4Y_Q{%}{CzQ1aN2*Csa(*8ZiK&xZUAdswvp
zNkLT>w4spl!jx_E(iF3yxD99hIOj(R8%o;n*oh}jl(M0;4PHBZc9gN9tPM@<Xlh3}
z8-B6jfUF7|bT*W?VW<tmY>2WU+J=@kw6Y;amc)iyHq^Eu&Ia?X_z{2Ts@qUO&Ap-x
zm6TVeRI#BdrJBmiW~x(z9#7U(`HGmxIx_2P@$EOpJaos_wV|G@F7`H2H4P{Y$wp*j
z8x~hg+J2ha(2QYovIW^{owmY%wV|~QU2N!TLmL~OEsU8lM;Cu6N~A5D?a20I2eP9L
zohVY%*@ic-V?_pLE#J+CzI^U7Y<JG0hYdX`ecR^gMd?lUu_5JdZQ1&<*`FLh4kQQJ
zFqksLhTkY#>uLL-JR-WL8E(S}8-BN8kqskl7-ho(8y4Cynw6Pi<7e71#)h$Mjw2_N
z<H-p&Or%UAWy}=!3QVC-Rmn8UbaI9bPk(5C)XZXYwyK$9!(8R_DD!Qo;?>q_U`fpO
zH?hBlb=BTQEw&+NK)1$*KWu0_PPfE{r8XQHr&~rYC#AW9vXWe7!)lfP{V=NT9Nk(Q
zcFVK&#jdkqJ?FK-hOKJu8*SJ`-%M^H6W8!I`gU>$xs%*Q%A&d|)!CzbFJ&LOpLDg1
zJ7mLQ8(zx`EsJEsQ5zgKIBhs)!*Lrf*>Ks06E-aQq3d)ws@hL&MV++alnsB{aGHah
zCnZ0VD6;oa&Z#`^lJ?5}Wy1v~7s=DywXe_(<W=$-DfQQFxS{-}4GDC;O1@OD*Rp!N
zQTEX4@g~_UDdH9ztaO`7>~a&^lvSlm#&p@>w!ve={vy?uy^fwVFviOPZ`t6Z_|^CU
z8-nzZO2Rf|;(N+%8}8U}*M@uSdS%0X%3~XzP#)Oukn)Ip*-1NQKBbHNEjt(eIhngv
z(zgUJ5{qqedarhrlgH$2$=}-Wj}7JQ_{ENQHvDTt0XtyFdlsj)%gvzi!G@1Ed}8v=
zhVM4~NB>O9IA3h|s(fe8G(VIlx8o;0nVrXfaxc&7O<_k$HY3T@cBG=nXis=W!8CT1
zs+4s6NpDA1)tiBm(T+?i$!td!x_OrNU0F6evfGhE_2#i7Cq0)+a@+A#U70hl9r;wA
zpCVlaDRM;0*CMWv9fj>E!lWcwlq^OTCrgm~)Os#uM`<QyNLi$^c0|W(#~+=n=arFF
z?5JwT*_in9c0@^+9WktoBV);Rf2EZA3iOJkG%MLrS-I?<)$B<7D5{Pf1^n^Vnb#oW
zRZUGwEwZ*9!+1|L8K<rt^;AuLI~vd%l8wm5s(0P?y3OopZpQ{YHrmm`j+S-|w_}7I
zt?c;KjxKg|mC=Srwzi|Q9b;0KZ)3-<`!Q`fLOZfO*@5gx$})7aCtX!9#i^(_mE*hF
z(cKPztB3)zy<Lndax|)k9kagnkjuFBw4;|@ySSe`dQ<w4eaU`ge>+~Dj*^0bYWzWz
z!FCLx{HF4uvL5JvcGLEPk#>x-W3C<Z>=-S}Z%5nl+7Y<bT-{hZrpnWts~bm(jHgT>
zCz6xM$#zVkNKLu^G1HV!w_^r<rb=enF<bc@*|cs)%OvydSYXF;J670Hd#X-1O?TpZ
z)IvLcSIfM}j>YsP<Wh2(>izOMnOx(p!I$Wjvbzn5k!e@ivDyw1d91PH5Bgei9l2ih
z%4H-s*|FJ<b9S7!V~ZVI?Kon`Q9HJA{C#%$p$@j&wM$3JYT04OPBq_McI;NZhq9NH
z>rcuHvF&S*18g2750Ns$;l!F-1?nG-lB--Ev*WmYOv)5}!j2kGb@D8#UWz^`JIJNz
zQ+E7G5kGCm8T$Xovnp>8QT{JGF4&PEJJc=RMOlH_%ipxabWr>2@)GBD*^VoetK>CO
zdav7YgMQ(IcHB7eE~Z?qc)cA4JLJ-NMmwB#44$SPCrx&kS!uDuYKM*flm8KuUOSr(
z*=~9Ego{l#DZL&__OHqOb_DFW?Z6!ef_8-L=<Prs2f}vTl0%jQIUKlc#~nMq+VRbf
zyLRnX$j|IZb|@-ho9>=$Hn*bg+wp)R{*dy>j>jr_B1bmmj)fJT+wr#@FJ#x?GW<ur
zlH)w(H7QH@#*Vl2f5^o92>&Y^=e=a_Rm}&=M>{^LB#Td5GoS7FqLNe9BEH+veqn|5
z@?46g`5`agGTl%1CUYRdp}hqpcOVrd1u02N2O^c9=jl<Y*-Ya=T1q<AD<jJzg990v
zWKwx%2eK&7O3CKX7G4I==|C<Aia1czf!q#^pBq`GLh3vYoJ~`{P~JLu9avDP>h@7J
z@;Q*-0g(bENNE;ypb)*VN}7+2Dds?N2kJOb*MSY4qDwgNZC{kmfszi4`zN{-DN>qJ
zhAitqIhFt7ko%uTOF?-Dq8y0k0#_$v9EhdFIZ)YwD)b6uMF%QT<VhWJ#8*|G<(l@l
zYBe@jcv94$#FI5uO)Up%D_>Hg_PlEG^&DvEKqH3r$p$h$f79OBfhG>LbD%x*rerI!
znFGx!GRGDUw4}F9l~J0%(p!^l5_3|zWY`Y$ZYt?W>Eu9Xm2{zWb-<olJB6w{n>|!-
zPX~I@6VHe0>p(vT4mfbof&LB*aNu_b7CA7`fk6(8a$vMWy8)2gt!c0W!zahcV~7L4
z(TA#JSfV&ELM0<*osW%^;xP`4bzrtE-sre-4#<74rgH8g<Jp|xz(k59lPHrNm_oTU
zE>6N}te>uye+FeHIZNikUn$Geoa4Y;RWr|l`Sb<kLh{3P?VV_`14|rO>cBDwc8-se
zTViz_6L+pw%yI`-$UYJuBfsnJ;)q}Az<Svr9a!anH080HvWEPFT<gF(O5}c>6v*Hk
z9oQz@wga2gl5BQh3w<lul0Qe6${lR(A$O9y9N0}+-a-2&WG{Umxu49>-~JtP;IIR3
z2RyQ;@7Eo1!03R<fujx_bKtlGC%CFFI&hLx{V$R7%Wwz&RDPOr#(^|EmqccFmdQB>
z&a0Zg9JrudR+PMammIk4z!i>v)q$H7$*(zZoqj_l#?e}Rf&+Rc29@XA5HD-{;`lhT
z19Db{JS-He12&b|9dIajI^a^?VnW=esgW_`<K)-=UI%;*>=~o|0^iSt43I%GB<}*0
zTV&$ve%FC}vXeT|*opfNJdi_~6S<vu=)fZfemL;c0fQ~~V+US4u<~f`C!AKsf9k+9
z`g8Jc@&);ll$uu#T+?a$+8ZWs9r(wAcMkl^=6CWv`I-FSz(>j_@;_20f8I|!{(NEc
zEBQ?hw#T$DRUWt2e)E~kiEN!xM>>(p$v*+e<W8iZq$FpT(7uUE?L>i-bt<pYWpW}7
z^R#3-QVP;LkwJMzCptQ`y+i6VJCVf+k*s7kQkvPF$e}zZWpkD2JWk|wqN)?soXF=y
zekY=wh?ZG90r?Jx;}>+|#a3<aC{8Iv7IvZtr6^g9yq_|?RF>dWCDpPuh>0w%ybPtR
z6XjI$ixWC}d6o2Nue}h~_qAh~yebzR>x3}Qi3$|)ij+$7EL2j3B2(FK6{zk+LnjVY
zjq4Q=Q^SdPCu%xTOO0QLQkzUXU#~8`9$DXs29&G3Z{xMD+9uk>iKb4>cVdAP&75fN
zM1Lm+IMKq1mQGyi7tzm&R!;oN3A;Pdn$l6$YVqhc^tNO>QU+}AL<i*sA|pDnQi?k}
z(S_cX>_$GFpFz5MsQR8x^rH7B`;dLf0esJjIj^f;BzB+^327q6I5F0VLF^q&%G`%I
z@tYGvofxK)k(A-&2-ys3CjF&3ipglw6N(t;#CRu?KZq&wHfn+s6P=jBu1TbfJl%=O
z%BN7KIx&sXKZmw`ZXBpl9y1xvB4?9x$hl6;qexBuO0f%__}z&^P8@b(krRuZSnb3b
zd5yNme=l0++VGeqEM7`3BbPg|g0hm7aaK9emiP1#|HBDS%GfPV^jWT3>%=<BdU6A~
zk(Ay|PHa{_%v*b_6Wci8b|?0zk#|sblDnMPO-VeXT;{dciG57=lad^u9CYG3|0Q(9
zDgX1uB_}RBaZJ^mp&WPO1mz@oiu{v2O;&EoHA$C|&pL6AexCe`yg*(grRM(E9#@>W
z>V($`pA*+)F`O`|-WyKbRNjZDoFq7*XJSyfk@7fQgqdP-!s>)g^|~l_Cma-~%9m%0
zb}RSDW>ZpIazB&XPTZjc$e<G;N|?MwUYnY<&D?e39ut{-8ozG6@5BQp56MTWS7!0l
ziDyoH^58!Yo;&fk6LuFIF1&E!r4u7v80Eq%Ctk~u!G+o`ym8{K6UAI8?!rG#ymKPL
zh2$>$D|`L+m@iIzkBolL@js9s)x17Y{v$sNdCulnHouXwwBMa_ixBOAFOQ#2By(xr
zlfQIL;X=DS(dk@B??OuEk)#x)av?Q64VjjVU8jAz$l${HolynIj4ouNWF~WySzO5K
zLN*t&vnj<nUC5zaE(Rz`E*FwLj1iGX9vAYmHy@c_Rm%0>pu8ZZkPC$=MO0qYg;ssF
z0ZX`0(j_;ffLtl=X=M3QT;M1dO1mJ<GNedZN;wyPQHjol^2+PYs}Svit7}XQDH7{K
zobn2kiY`=A$-CCk*DTRhIIpTMRHIZUWkuDX#Jf;aC6V<a>$p(Yh3+o&aG{<H^<C)Z
z!uXTAJO9KqU|BmC8oJQPg~n>CmXszgG*wA6N^`P>3peL$S6OMr=C5RHvJKgml!Exo
z@p9$B_Ac%EfgQ+>WG5FoQ@W7S+tq~whqdBX2V<tCD&NzEUM}=@p^po*_r~wYR@;3n
zI!)H-oe9x>U9kU*b{vW7=R$wZXaM;eInaecl)<Dd!w?rTbK4urWSGi_yD)+t;8nOs
zyD-LujV^3*VXO<|Tv+D9a#>L>OmJbQ3$x^P=@2(jcB{_XyQDlOaq`J7OmShV3)9rd
z6=!O@@N_n3$eRDGeIhE>Nt<f63&>taWR44SU6{w3`Q#!O7El(FQuDh!m+VQu>t4)o
zi3>|9v-4=5ntm*gS>Zy4-Z3j(*l<|abbHJyHYHh2S>wVVl(pnKay=<E8(cV(D_Uf;
z3tL<`Eln4;y0FcK-7f5L!F?{O|N5AbrRr>VVF%~CliWqh0*sxNI%kKty)GPe;pf*L
z;`>|>?k5kpaF8O&Ar}tQkEmqPq_|^hoa2-eE}T@!DaxNNtl~5MpNwBW{rp*}^)8%s
z;hgM@E{whvD~~HK{H6SY3m55^$jfA%3+bfns;ar>!gb|0C^ub5P>F3xg+>eO8C)=O
z0ZgP>EtSOuE8RxM@_%Gb**9ew+_>O|+Xav8Uv6}F!|Q@ijzVtabi?mLK#ssJymlez
zLdb>7x_ZZX-=(k%d3HuUap9H=w>j(`7amaVlCqxfxo}^3b6%<Vp$m_gJSJcBeppXA
zl#KSwh3E9Y$rt2H)%*2JT+_F)Z(R85!Z#P*a)f_ecqhkyHJ4A6_bz-;$wwCkwA4N+
z{m0}p`GvIq(7tc^?!pfjGP*HtcJxo?Y24b8Kbad5ZX~Bik`ktHBPBgmc5UxSrSjBn
zB;J`ZtxD3lkzRQQHxlnGCbP)oMrO`SJc}Dy>DkEaDnC}dZZ0=+yHV4PT5jZVBd;3;
z9>i91BcB`jIc!-;C?(Wf;6_0=3b9$(jiQtyWa6?FQ<cTt*c@G7mR}wv8J2RRG^Grg
z_+piF;}<t{Okzl>FYiVaJz6FD^O3RiII;p+QT2Aa5L1~8FUwzrQkASmR(GQYC7zU;
zR?FgQyHUrDLjx;MZdO%yRae)ICT=v9CAq4rN7g4BxY3Z(h-^$s&F0T>&FHPk=41=9
zB`Gzn-1t?w+#t1$8*SZa$D|Y4p6oz&BxS0hnJRWx-i6ZDjmIzRNmmaydb%;qjp=So
zUKZKQjY<ttk8q>68-3j9tJcO~N<XqcIlzs9ltHAd;cUE<(GWL&V=|N+rh13Vt6WI?
zD|MtBU*5!ya$~d`W7s=U)r_T#BgeZjLFG|5w8QcwSwbdLR6f<6bZ@m8Zp@Tz!;LL&
z%yMHk3;u9p4&`?@7E$Js^T_#bETAkTW&Dm;v6#MsT%z)&ZY-lOCsSIqJ!mC;m8x0o
z#u|F!KD$=s>nQ8p*r1Y)Zfv4|;IGZMy0OiTBW@gJxSiZb?r>u#Wf!@dlv(eg>~-T^
z+oX5K{capky$59rq#q^|?-X{7ewsW^o*-qklWv@%|EZGd<+Xp-oJnlDaaQH$+&E7!
z$a|k%bmNj689m74!DTnDxN*mgyKY={<C+@@Zs^^(?#A+gmA^lX>C&vCjCq5T-*h9A
zzictMVR;nmal=_N#>g&{8)gaV4$?}>v^I)e)=3fVz1XR8m%IzmYciKEuNyvj3t$)^
zgKjiay&*Tk3~!NAf17e;bVa!x?L9X>xbe}A`wSnr@z9M&va_)H#*HVGr*1r>#5IU~
zPI*cGP0E-rWDRgFy;8|*IkNE{1k(G~Emssw`o#XujeqIyRbp_)OU)-YzPj<vjsKW`
zR=r=`+U*6U;JX_?+(_ktyt({jZ-j@(e^LsL^odALPoa{O9z@csRMq}Nnwrz5A!U%X
zlyqcz4>G8{pIMjLgDf6w_h5$ySv|<+L1z!Tc#z$L93I4Y5bMFRN3l6QDBuC;xje{C
z$wNwSUP?X>@~foFlh}e>o>Cr^_Mnglg*_;umbN&hs0YO;Kb~uUo0L$!B`KGVr75El
zod;#<<y7*E2d(%jlxGs9@@NmLFppzW*MoW<RPdl8o0Z6FWM!$OR3+Q-obl=&)L=8-
zgIW|>u$rEv`$5-cQb*;5+%fe%Xy8FhSr~>5WyPxAMwG@LG@&H!7cyEiHk*?z$UVih
zW8kkIv}aSiHKmOQZ7J<k9&f2Fy&XL0sFF^U=c&_l^`M&vQ#_dJL3a;&cre6+-#qB4
zD*ID<dC*%WeLUz(@28SH+qLf@2Y4`0C4(q~J-GQ;JHiiTbCd_8DZ|L&9*m%jB&BT4
z|02dHpWwk*`Z#ht>HesF&Y7rcCQ&APaF7S6X&y}XV2uZVcre3*nI0_iU@>cEc`#p1
zHQR$Z%IA78Px%k-WeYr5$mDl2@ov8|(<L6PP?bw5%gE&()KR}~TFGRU2dh<O0sh!y
ztp}S_vW~LegAJ68<c;5wekHQmgDt9ZD`guwzeBp69_;c!?}5RC-5%_bW2^_i+>PJs
z!9LcUBlml7)PrO61F~i)he&xAhbc#7&#k8Yi&h@Tnf&R&2~~5_gH!ZrZtc&g(<(nB
zLO-jL_e<i=)BjS*1<FP8l1Dy8Xm1<^i`Tp2f$%DMjl3><2jwQ2KuV3=Fx}{Z$%Drp
zJn_KnfyD#A2LTVPYA!B{%>z5dK|0C*doA2-dOYw_d}QJ~MbLwg2X~qD<z6of8TQ~7
zliTDSGWBe2d%Nes#99&enMm`22M?7$@@Tgpm++|v&lvtI-~UivlYgtq7aqK%zakUw
zs4Ek`Ve_pA|ES7$9^~Oty;sQx%15&NvbfJ4e331|2ZIk^J@_WG_Tsr0-#z#t`=%HD
zy!h!sGB0Aii1TW10TEtg_acWE$-PLyBqf=SjPxQEB{i9bOiPw*tZf77y~yB2MkdnC
zL>bIeaWi|7Mdev3*}OP(TzkXH=|%eHF~z+o;YBVla<ey&7x1E>7kSlG`Mk(aFQAgd
z6FCd9S<H*VDlbAQN*>`A1LXA5lB)L?N+~Z&tE7w<W$ER}(sQ-vqEo%)DN$ZTQ)0-(
z^EWGaQPGQrUNrJz@nl^kFKV&3vR8g0h^llMs+t!sc@AuKCN;=-vL>0er}hq2n=Vqv
zi@M6|QR;iqfRcFCg~nbq@uC}(rsS_)w5Bv8n|slM(voaN%E<k?MYK`gk<ylIN46(B
zc(IW8l#%*QUUX(C-i6ZDi`_iBO48kn9t?Y`nqHLNWFL81`J1=?UJUSJpBMYR80f_y
zFMju8kr(Y-M-TR5ycZL^7~;imoN6dJ%8OwXnagm>2y!I(f@k}V_F{~x8A};Qo_UdM
zqROXJCV4SgB~!eZN}r~Z1wWI`@M0#Lv%Hu`nXP)~crllrxaMVf=6kV#$wIP23+=UA
z?8Oo<wtMm7N7Pa;mU*#}z01iz$Q53!^kNlVCYgN^tLbY<-#KlolgC;%*OBYJ*g$zU
zL+jl{-%Lt#ix*qz+sJ!7xqb(IC%KE1%H3Y<QNEWV=Q1Dg;-D86FRZdBdU4o`u~%Ym
zviFD=r@Z)+e$<O&YTDyooS>g16L;;?UYud`vXCNk{L728%FlUmo?d!R(tmI+cyUqn
zUXsbVlU`wRmApn?CvT84=JC?e33NSaP`Qy}BF$c0;Qz>MUd*`~JNZKNZ7=NXa(LmS
zxV#9;q2_pm+Y65uUWR^B=HjD#J{A$6yuY0Ex`ez4Gr2|1hL+#);;t9>m^>yWyzj*W
z<qs*3NNb*mCtf_IC!R_#m)!YVwiz$F_|VmdmtMT`qMQ%E`0(0`H(uoQA(sztz4*tA
zls<H<6a9{p|3}Ka{-wMpKX~zx@`+5mnvK+a_Tq~dU%mLoT#}!Z@8l11OV)^FK1BGm
zcY)+Sq@Wy{q&>$)R&5K9^dXfGshLYNiw|jhNb5s7CK*+p-iHkI#OujqqGwjULwKTb
zRv)sdB)bne=q~;)^zc4iZXXIV$wTH<mH8<7eJG$3P!3r$6!M|44@Fd7(ubnTi}_HT
zUV{9;byCWQ(yFEmrK}I1dTO7qbUu{#p_LE6`Vi$qv=8-sSW`j!>>A@kWgn{e5UZw*
z^PvL0B3Vi0QxH*=UX!dwR#&|>DDgfde9=BR$fK4IwN-B&AL=TX3o_KFH}Ih$r4iZ8
zhsKm9q>Rv%BJXs~DJ{sBs#mVM)7pnq9b)?4)X9}b+W64chj#33uWByWN!@|ok?f@M
z&Xn#i3Uu?KyASJq*x*ACAA0&Q+J`YdY)f6fmk$Gd80155HB}!U`qKN6{Z&4|hb_gl
z?P@TSq2v(N`<oA?`e@smJcju&ocRcHBsoe|y1yhF>%%x7{%IETyAR`inBc=4_D&?H
zsme)|$v#Y>OeJS=zn)H?LC#FfeVFZok*`bl2T8BaTp#AKSC(qN4-1qpq>RoQvB-zT
zJ}mKJDU-E6ETgO<my;{Vm1N@XznU&%uJPdy`u|-QVjY`<UL;%iKix(j4)}1;hfO|g
zX1;~oMQ)Y#PuWiHAa{~8)Ri}O`>=<}UUDC~pG<s@KIFq;AFj(#DWi`tm!&%E!%-iO
zv3cBwKPe~3ljJEf@oGz_=`z(B5&BF1_VSz$=Y9B#$z}2ad6AU*OFsBkXzvSGm|P{V
zk$3B8e;3?Pl{aO7q1Wn_dRDgxqYoz8H~pyZhuH^<5AS{W;Dgl%n-7nCc<h5+cBPOm
z<U`m8hitAFwKEr-KDgAFZXY~8c-i!k0U!Jnmpb1z=tHGP+7?@>n0BvT{mZCZJ_v7<
zcYL@@k>s8a_vsJFhbsTw7rP)j!xJB#`tZz$({A0KS5@vGikCY<Ow;S0b9R4|FUXfZ
zypp#7`WxB8DR0U1yyL(-`oE<1jLh*L<?!W0c0Y3X@t+T$<;d(udcU0PQ}>I^bYb1(
zete~ffAitH@*h6@RG!R_2u>n3ozKOmpr=$xq#vp1smU~CTGcy#Sd6UdE<a*3_)#pf
zW=6mER+5Pn$?QiK<yk4&{1|&!`)VSmAG!R9^P_?vx&64At$cAgY0Hm1e&l6kKC+M>
z`6&fRnGk*yq)*7IZ6}54MaZILF>+{CZR?VInw0e87e7SgQHoNUEJK#{qZ}ni?xY$W
zo8`$UKcXoyWGpG;9Qi9=ZrW1O54l%J4bHBTAC)Op$f~3)Ks8ErKUVP-lqBAdnyR;!
zAGMX&@uM#NX_R&(Y~V*jKbHEj%#TKXH1=blAA|g8;zv_II{4AiuWgOP8r6AIxN0*$
zn)@Llj~0Hkq_-k}^`o^PZRqXDwxm>!FzAHs{aAY>N~Dt?4?ad^uN2>ti_zJSE^67j
zQo8xkozjDpZCjReR;H@G{OIk6NFTB<Db0SA{(cNl$p>4^U_XZVF~g6Ue(jE*zxi=y
zPK5~^aHt={{21=X2sX!%GK-OvQGSf3)bwbt>{$9Zay*%M=Z=XSP{y3($7JPGC{z8I
zMwzbia*;8!IBlaj6@K?acF)=596#n#B$-E<Pc9%A`cX1tdFhhHSmeiIj<AH3WKgN(
z%l%m4$7Vma__4cg)s=p1^kb831FTuCD%Vi{AlLe_j<TNIK+0$vmd7>TqDz)5dS%~w
z?fXS<^}|{va=#x3{MhElm~-*lS-HcHos?ZNM~d7rL?+*(#@Xw~K6?LA+Wp03cRT3E
z2`T0+R1UH0FnNSL>c=t4aZ)BJJTu}X{S^5pd0O?J5urP}Yv1Xe_v0@=F5JS!Te#rI
zML#NqP&tH4eq5F#QUKoqxZ=lEKdJ{%BY<muT=yeg0O<p`;fL*S-E%+wmcxP{3G!rD
z>GZPkZ-}wWhIBICKpOopQOu;|7K&9SSIPJ{Q4T+xez^Q_bMfx^;qk-k$1OH}q%3gI
z4?jJik{hj3hm?o?Fw{=^U;k}C?l8Yg+H_ieU-lg~ACgbVN91EU2J#+rQub61n+#VM
z*ZwQ<!jG4JBnu!SfJVLIUdb_B4u(CouZ&)^?2R99DgXHK&X0fT()*F}-j5F|iNC9T
zcKXET;2g<6a~v7!3*{^M&5!RY|KZ0^<+5Uv2e7Pid{<Lcbn>{#4qb`>QU)LrNv0yD
znL2<p^t37&Rw*V!02u=)89=E3G6nEsl`eMxRX@jOre`6ulG2qefb8@fWKJ@d>b3e~
z^8~bakh}rp3m`we2q|HK06;HD7E*a(N`W5QdMipV7C>>;TY}Q%ZnDw=lnJ0(0J2pi
z^T&={r7Npy$_4OC0J;Fm2M`rNCFap&92rB#l8f_cuXqJ|Me+kbF;=EaR~32s^smef
zBVuIP;sdA|z_9?12T&`3+5vP6pnCvy0;n56+W?BDDqk;v1KG5{IGP1epDxV?l!mf}
zP#Tj>$fl&!$ZbPqs^*+&ivU`xC21AFuk_Yr8<iLIN6YNmai;Cb4rIpwI#D{4UC6Ga
z)XSYodj!xkfVBav3!qm3y#p8>z?cB~aO9z6U$S2S{R0@F<~W!#Fn~dn#2dB_QN6#(
zL7<*?R3FA<I5|S~jtpQF{UGm;Gd6&60n86z0mJbDObK9W025UGM9L&`asZo7CjDhG
zEr407W;$gCIWw`+kajj@4k-&WH-LG{)76SusC;Pvzbju9z+(Cmm1O*0U|9gm16ZMw
z)d8%euOk2N?zC$H_=AaMnD*S|KDp}yXcr&9Js|h<irx^wMvC|*%H{yJP_~lWRImJu
zZHG9g-6fj@MaJ1p*%QECmFx>(zjFDd-$D8zl^muV3E-$oa^9(1-V<{|j>!Ss4B%t{
zrvf;<pu(TBCKtzC;KH8{;0)z|0i30rBOlx@a6U1Y?}cRXc#GbPoKU8{6u@QWR|2?7
zzeZkHx%}8HApm^<e+Td)fFpqzLjaBdoE+8|fJu#SrdUWTX$!zknKDoNEu1R=cL2sL
z(GLUg1mI=YodA3kDF{*g0R&VMlwI|f_8uB$a!cj61ITesd%fgwm*G9~egF?Bd-!TT
z;_PIOk10<AcuILjK3Ba1N@{<bybR!9*==h?zv2k5$v33*z760X`a81B2JLg#`+#=K
zU3q+<d?Y^w@E_%~>irVH=gsj__Fay#0W1n)aS%TPNEXD9AbtxXB8cQclnA0^5H%0S
zqzGbnmDqeiqzoc5h*UwO4kCL{J0{B`O%R#rX;qRgi1hRfWJZ;b*rA=1n3>HiWY!?E
zQ8HB4mOqE8%o#*3<++2%L(i*{J^$0@n?HyGL4aXFvKUz?h{CF}NDxKoCwa-u;wqn(
zy8IbL)W{Q2Du~iSlnJ725G{ge8AQ1tehH#V5LH>M3nErcRh|+>Mw2m8pF#V3P#$qi
zDv%Y)N@V3Ael*k$;MLfy8$>-y^&n~l5l^ofL~TkfQi`{w*KT%Jhs}?ZBkQZY38ewq
zFo;H!#;P|@qv)o}n+4IF-fv^l61EDWQxKgQ{z|qEqD>HOgJ{QQ2eLgWb00S*qNDPY
zBO<%ddj`=fh_3W*WOr55gOa9rL~oT02%-<YFWHamuX-(O;s*w?t760;l?)Ez<Xr8Y
zbZ8L6f|wY@q#(LyOS3(1o#8=@2;$u}UCui3BZKIDGD;q!D5HZIqmr?daY2k%$%G)X
zevg%68Fq3IvxE4!URxnkf|#o2J1vOm^cmz#mCp(y@mJy-KSs|9Vy?>P1u>t#fLy5Z
z-(}<3uMNH=h^0Z?3gUJU%Ys-Q#Qq=-1hFEBrpKbT%JbS6FS0U-RZLcsYl8TLvNni~
z6scK9Ss%m(mAr0LRq{<iY-X}W<ufvB*ZJSZh1nj&jv#i@cgg-s+2BvUAf>i=dxF@j
zmU&+gZ~AND!5|I=p_f??jyTNTQ$hSmIYJ&Kj|Fj@a)LZb%H$<FX&>@W2k}=B7lJsW
z^8W>KmVS;rPo8|L9YrsynroCx<mDi)P_B~ycki?7Y~BdsCPgMspsY<EVF<z)geeGf
z5I)swp*VxEs>BwAo$eqzj!8OVyV!J-o*=xG?hmyk^wUKGK?IeDf(X+SN4OKjUD?Ow
z5E_&#h2p+!U_l(K6q)Bum5CE|4}y3Y#3R=K9mEUD;~<`>(VhnJO!;#;>hkO=nd8eK
z{!#g>AYLnfLwWoERlW=2Uxx2h%?EkKUD^?K$(`6wLHx)3v+Dg4#F2FoUxWCjlJBwt
zPidcsl7$cvLe>znh46TjE_n#)LfUa&JOz`KAw*JAk*P`PO%p;|<$9g=$um7C%s^%g
zArmDtnT4##>l<VbAx8+ZoTWp^8A7fQin3Qm$Q?o+<pV24<_#eqoB2a1NGU*qZ0^?%
zn1$$t$s(kL!*^+4))fn(xJpV;N|L3>)J-GHgitnwa%{$sGSx33=#-ZaA&MTYlDS*z
z#nR(cQh`#DEIKoFl@O|iFe8kaVN?sDdI+yWcoRa65aQ)ohp;q+njzE*VL%82L#Q1>
zoe(;P<U)?R5wmrV22`#aLcI{`tMQwK(16~MY^3tWAv6i0X$TAWi{BsDwQak32rWWr
zscPC%T9Ln!twU&|db=Ldj*#uxY#%}giakE*b8@E;I)~6Dgs#kcsj0eAx`)t1B|Sq(
z*<brUK_0ys_96R{{X*!kD%-Y+8x+Fe5JrbECWIj&q;SVn{-DdhJnpv;7H_USloT08
z8BUHMM}{y;^>&HY-d@LsFeQYkA&ler<H-r+L^a1rAxu_2X0Ue9n-;<xl}wjcO8LwX
zX3=MpcOPoS@|er!yb$Kgst#cxn~TWb$?>72%Ej{3j%w>+SqRHRu!Ud`VMPclLpURq
zA)L^~t_q>r?C3)wtPWvK2!DjIHiRu9Y~@hv$W0-vr)(fMk{#5qP&S9~kUvA(#(Wnk
zGu=+v5yDPN;%~5bhp>muy&)W+>?8M++OumLcaYv9xArU!hj1i>qpJ4=<rsN9go<sF
zemi=S$*B<jq?{&Y@*G#w=KdJBBNTHsgmWRB58*G_)SFe*hj4*4*Hq<2`4&j|<q)pW
zud3uiN$unMbvAF1H^~HYXUQ}M4r?T3d{YQ!x<w^c*|dJdNtYu8X9%GX!Xdoa7yoj%
zE?BIGD+HlC1P?{r8-kDSCj*JO>fN_5s`g{utq`6*ihamsxJ}+6?}l)Xa-WnXe-J|A
zFQ6XD5t88(@)`M5UZb)}+syM2{#H}H2;n9Dl}cnyz764@5UPYxHH>#5{42-RFfxbn
zK7<b;d=KG=>;;cwKZY<dvV7YI+TRhMIQf6%=McWA(Y}W8O?g$G_V_b|)M4$&lPs(q
z^CL)+<YA<srz9iERI0bYw;pMfrwt>W^7NDpWX3Rd@V<~)!pPXNYOyeihmkdmY++<)
z0n}7E!pIp$t}t?|BwrYL=y}P+-}B2-<qx9(lWirFzJ)6oMj<AJ$s(jw77ZguKkdVb
z{5-xy7{7#3_jOE3_Ld?`tI9HzvSE~?{NKnrHp_<*6-G2YCX9-dSW*U$3!{Q^IgUwE
ziOtGn{M6Ld!l)j`Z($4#qed9<VYCRNWf*OWMb`|YK^O!2SC*-2vA%W~b<}8eDfP(u
zVXSJeJ(q^6w^104l{X2aDZLrlT;*NO@vXu*wlJozOdg2-HH_BmYD0D*+lJAO(msq1
zl#XO)vQrq_Z)%%UHlDZAHH>b|yNA(>(u0(Oo?-mtmAA!vGwdU4rnk1t{n+eJ4hUml
z7=zSQ_c-j}ForNmXsCU985YKHS>g9mOb=s(EPwK<6WA*<lFd=%=rG1m#*)%Ijxt`h
z+aGb#l%XbuF^SVoR&$&}nHt74O5#~9OYg_ee-Jw>jM-t-zl8?3Fei+;VLT1vSs3%e
zm><UVFm8mgAdH1!oC;&(f4LrxjQKr`&0%Z_V^J83Ip7j<RTxVt%Sc(0<zcL#uT)9y
z+7(uZu_lZ^RI-7xHjH(Y^(v1X9=}ofrZ9%_T(hlAc80M_c3#!How9?Rltugev-|%s
z^(EjoRqy|Xu6dT(hm3`;d(OS4i_IO7d8Vi?N{9xO3Js))<`hXNNg`!PBO+4CkP>mv
zxaZ*<2}Nc2fA)L7`}h2xXFZ?iv)=XYwb$^jcMW^*bBgg{F*b_i{bH;a@_`^zHwanN
zwe+T9%<AAb{wE^&NN}^@$Lt;Xf2A!FrOwu3Y!kjgev{|ZV(ci!XCm2IjN^^{dHM5V
zd?AuA1-}yfTJZRI-zuoKs~EdQpZpskdj$6u<69v{*$|VyE9T#Sls;IDpNesy7{AX5
zeJ}a^AjqtK6tZ-P?@rHl&puR)!^JpKjHAU!O4858I9804yjG&W2yRK1{#A%y7$LtE
z<3u1Sdn*4_z@tJ=7o#|kM1-u9f69&(BQDWIkoxr`za(lgG?D0m+$e@AyzV#tnZHvE
zw;0tTs2;(h10k;%=jo>I%SaU?c0My5Ty;jsAH_H;<WIqKf>dTc7mD#$G5#*bMG=;X
z;F1s~T`9&t!v7WgPw;Y(x@unOs{y}Oj8YNt|AIR<`c)_!!F3U2h=kEfLdr!@UPy&N
zUXfM!%wI+_R2E?s!K#9za!c2Upk@TEBe*ewS`pNa;HiV*(fc#67lnoqG!jxru&!V|
z!TJ$25K>Ye=HFPN%>*IXM6hWDHwgK8n%^ePg|`rFDcDMI+fsjJ+yCD1O%m-EL7NEL
z3U3!dD1xx?n<K~+(q534WJNG=s-JUqAn6=Ij_?kG9R)iDsms31>>@ljkaQJNt(@Pm
z-6K#U=pmAxf_Z{0e7+Fs6hu%c{J&=YC4C~eC4#vTJRU*c2>L}ZF@k#{=pRA-J<5m(
zMhY3gatawF$fUs${w9^LGc=G46Ea+IVnMjmT{)v77!$$R2u25Yzg5U>5nP@0zrDci
z5lj%_9f8iB5flY{Tm<6-Uj82clDi_fJCIxrXH1G<as&@X@bg_cQzDo@H0N^4pIPn|
zovDH5G$Hp1-Y@t-1Y6|miRo;RuYEI{5#cALzO6na_;3WXgghcRTkz2c9uq>f@gL{S
z5uV@FA9qhg@MHulB6y2-7{SL=a$c3xGNszj6EZ)7r#S^g@Js~HM(|>Za8>5Q2$l$6
zB>0@*VnJrx@j-uK{Cos2h~!QA1Jjp+)R!Z8CE!(G_uJ>S2$qWE^+5hc1j_=xT*#Xd
zlp5|UuZ-aB2+rJ}^HBt=Xa+m8x*4JOg{+QXjgWT)-xZ|7S|RTVu8Y8!mO~-4S|7m&
z!Cf{8`A~49;3k?uJAY-hnJp8+q*a-pMDUp;ZIS3!!EJ)u1*!9C1UmvgymIJs(Pt)K
z2>CLCuL8-}5k%(u<7jsT-$bxDjwNyIiC}L8m!r56#kUdci=cB9U82|@!FLh-9l^y2
z4n**M1ScXm8Nm+`T$`VHEP_#&LO(`O>E-Yj7c&n=K>SJYkl<m#BZ5b1ctWT%;2yuH
zeu?lM<M6M7#|3|jKz}ks;qMVFpIu*LG=e%)lv5F$4$5E5@&`N`K`er}L=zFHLXtu1
zhFPJq9sHX9eKhpncbP^6W&{>3>Jfi_JR`&wbRuwtc!DXxv>=sN#6y2Xa8|PYQ}C|{
z&Ivg$ctP-$Ju>OYJHVGB_$PwY+EDW-{*B;2T2bxNb)x=|xg0^cD9W>`Ikee~a_x1J
z#MDwzlonnlkd%#LS{FZOh71voyxpI^D@0LEq7?-z304+lY84?>qsZ>=Ut3+GHG<Td
zLTU-tj^g@2-uZG7+p2C9^+ZxXiUvX&3O0$NQJ~p43J9Mg9~bZzO(lARV6!MP<(-EX
zQM8PrRTQsm%e<LFA+4jhQOHe#Z3Np2QmtK-Kb2XRq`hR-L6G@p2?+^?1+xWnqPUd*
zzxL@EMJEwbzeBQAZWLXkSQ^FaQFM!<J9CcW4pC5|++vp>AiPHuJ)_7Io*zXYAq9ek
zg3PT~6upIKb@MHX;TDPZjiR5B{(=vm@=wDCMlmRgW6iS%i*QsFLnKPcP$9zvhet6&
z$jBgdXPxk9x#U*C+XTl5junh{_3wUX6h%=y62+rYjEmw>snC=tcQHBRMQ1`3cL}*$
zaAFjP<yYnJk?17B$$~EzH!i8my%L>DON-(@;rB-|J&GAoJRni3Js8Ei^?dKmFf)pW
z1NlQy3>1T$C6XcIeB*p9idp+Z{VIi@jbe5bb0leQ6!U~UF8G8Xm7k2_seq3ilrdlU
z(}D{E`7=?}lz)3!7{wwHJ}3B66pMu{5qw_og(zN(Vz`ucN!|b1#>+G?NqtrDHNjyr
zvfhYdSrk99C8Jm##hX!ViDGLME24Od?GREnMA2qf*2*Z>%2jVmbd}(0L8h*W;vM1d
z1`_2;m-j?}ogi!azL51%d>~}R0KYfeejfTT3gX5nHVGmBi1r!qkE8e`;Od{DZBcBG
z;yNX?FN#kkpRc0$TF8zlJ`?hJ3DW-y`7(;3L;h#CJEPbgr0x=Ov`zhQ0?8gBdpQdP
zlE*rf*)O;IPLTIK5XJWa|3S!)f(N5$-!4pr!%-ZG;tY*M2_2;mK{&xCU6%PX?L3NK
zqWD!ZKNZDsA-@Or`c23Q!IM$67T;Av-UL1!=oCj0i6R<BERe*b$a>zNF-tHRg(|nx
zqOgVNf-Ha`#EilUB$2UY9N}&t@uElxPY06s-wOQ^McJOAvr+sR#W}g}#o+Geqqq?8
zzl8iv;}5*VC6W9i_^;r9Q7rk&?~AKZT;rIEVQmbhVkjNM&=`irP$q`5F|>)HZ4B4N
zkP$<(7zQp4m5ZTA+w8hA)Qh2f3>9Li7(=BPu8;ZC3PWWf)nlk4q-r3qCZs`Qe<0L|
zp=Kbj6+`WSKliFXC)QzxReiPkB5zW1p<qM7MuLq6Avk)TUzeuBZxHM`#m}Ma#BlQ%
zT8N~jV5=CWWtDF&oC-GzxhaP1R({{Li}}{lHHL06+#JJ|H!?G0XdgpXpx;qQNHEN+
zgyaON9fTZvA+u8;=^R6sfak{0uY+Hz?ma`1NlNz^6iMnqc?^pm3-yd4FNXX;zjq7;
z!V3j^3I1PO^^xc;f_(*@(-oOXf5~b9J4?tQ!NGz<1gX;j;o&iih~bGCo{V8+45MPW
zFNXVL7#+inlXC8)aDV7l$(9AaEru}xA1mbc814ups}EHwiea2Y$H#D240j8k5W}3Z
zeydIlG^fOHPrxU|Fj;uBU;WwYUg1*(rwNvL&Ie+6dU2SGu}5NfQ22Dg8G<tfsqhdx
zPWY@qvZ+IM?$pquF+3In3BzobC*X5qcwBhDRAnYT6~nw3`XlGf80IsF7+#4Xej&Ud
zhHnQcOQbx{2!B?P!i6y`68>BuSuCX1WLf{qB`*lR7{g0KUKY%j-!FPq@_$W`H(DCQ
z>%!j%B+Fu09`IcULn~saeAypgZ^f`u@_Ad3l2t-h3$BUboj^XjO6a{9*2T~?jvL~5
zKZf-&{1d~!F?<li29`F4eWKj&e3uVn*cij67(Noo&KNce*%rh07(N#MiQpE&t%8w=
zZ_f;$O7siC9fF?`h2+Rsrp}i!d?ga{uUVMjtBPGB+#SO=LF%3u_6mPxi9e6;kKwx*
zierd~@POcNF?=7x4>9~0!@(GiiSQ@EBZ7wndHG@5hOCH=isWa(M)KbcO#MZozs7J}
z$mw_d8l4b+Qt)>{3Qv_Nuo%IA7e-^yV$ek%6O6}@2=tReRJN*|@Eb9hG5it3S&>^Y
zctUJJN6-~4SuLl8rv=XlZVgtsf5z~aNLZ?KLe2|bh@qtXl>Z&WMG;;SeDQX_UjMN$
zwM&<eqe2{)>E9&jD&2eB_ukheT1q&hrQ;|Q@Un4S7w{J!4VMe}ko=5_am?S7x%;tD
z%{VH>@xs>yl?AH^Ru!bMS{&5_UV{aw5T>wJ9K5i09M{KDM|eX)3hTyEPk4R727#P+
zXKJH38V3@@(IntkUkNvhqj?-X;^-Mii#S@w(dAM|iTjKHR&iv;(O!7#IBpbjlOR*u
z2x%+WF3ykT{Yx0QuViav#gQG<Iuu7(_zD@zIdOE5Xva8mg>(uuJM-?sSIU~XtMG1u
z-35m{E{7zQv&%2f%!?yGj>&OMiK8Hn!Z=2VPOmt63mFtgA0aGH-#Bgwcn8iP!utyj
z5F9Aj`}6;e(7|yG5y?<N<}fUd;lfYc>(8De;}{jk=s0eTV}i(U3pDQ#GA53(LT(p4
zE$hZR1D&Ec#t9!ENbb9-fZ5&^$K8QsVjTAfpA<-Xe;(p=d2bw##Bs-7fA*gm$Fw-^
zi{pOLnJM@{p#NYT(*r((<$2ui8it4BcsP*H5_0mHj7Nn$7RT&3=EN~qqR$9E9>+W(
zPY5!HC*yc3;OE-;M^f`8`g9x%0{O{fp=X6J6kHU@pNsP!xBbFDPYaJ@TLRk?crlKb
zXk!W7l)%fhr8thp@pBxn#_?Jl+vE5&j-_$D9>=OUR>$#19Q}UDUh+%!VJ*LHo!n({
z5SI(S8OI7Cl)NQmWgKq@lG4BWrClSJe-y_%al9MHS}EHHg6{?8Tqopx!S#Yq@!wB`
zd?>h4aFZbO{IN&*%>n;d$R~nZ;@B!=o8a%i`S!E^@3K4M*u{|;M;krsGfDb9jxU6K
zDfm^1kp5rD&Nxc`7v>vYcq#mY2=@r?jpN%m_67R;Y3<$r_pd<TiSR%i-wP=`<v+0C
z|K|M2QL`ZPU>rXQIV5;k@QC1dg>|WLERJ8|FypY|_%)8>aTuH*H)nNj5&A8TRxLV2
z<LK2>IU#sb@b@@Q2{|oTEJ&RQyZdS;Ni6RFyGL9wA;@Sl4pq1&s0Z?yFNP=7&#N#c
zY{%imQ9gkR3Al0pe}Y(%YjJpSq$HY-<9r+!gr5=oBaX8|{uDeX$P4dIgo%H}@vlh!
z7Q85UN$?**>b!6w^S^*!7IGzytAT`nW%c@7N~r`&CqTkbCV{d6zb=6c;pGC!mfe}J
z?9Qy1K&=F7Cr~Nj&m)x+s3N3l0yTwDSWQTE!5UN!{x9Z>_7y(5ntgo&jS^^_0C^q3
zx`Oo*s4t{}U_(Lb^n4<OAm`=@G!fo3klY}oSpxZv{~lKhiM9+<TP4ss;De`@Zj(UU
z1m-62cmnMbxH*B|3G_)IGlBN3*G*+QCoq1UQhRNVeo)Cu;PAw7D8bF7PZ+X=<Rs8R
zNJqg=LF(&+I$Y?fbV(pLfv$4XZVBWG=`N@QCFvogCvSbiA59GTA}L6qFwp5GWNM#`
zTN3D-z{CXZNuXZ>{h9xuoI4X3kibCdYniu-<{-i0f`bKzBrsISFu|<9{k1p4hy+H8
zWRxH!qZ8;Q|E|K^ZcAW{WJ^9)$n6Q-A!O}u859-;SB+y^37-&1?n>Zp;gi1e$7u^K
zbCN_KNMLdTj7|}}SCG-E2}~1ypWyw0od3}DU;@+S+8Kh6BrsFRLxK+r&Jr9|>wjlN
zk4p40!PyDS5z=0sBRrA7lL@?<z-tLSmB73NUP<8ZT!n?4pTKjX`Ly5y!Dj@S`mB(J
z2`mya^8<f|J$@{EaRS682|O?41wl$)6!H>hfk0BYQaS&nKRGVtI7(nc0v{&uMgq6J
z67HvGtx8~70zd8xEf;)KaD^a+ZzZr&_}hWx)vMX76IdgKc}MX51l|?GTdWoGp5VF!
z&dRT6ub1ctg2OHsQLWjQaC%~RBO5_R^d=6pfNvJ^vEV0yTN2nBq}EuO`Dp?>*kVa6
zPU17>nLv*udM5Ej0$(OjDv8obe3ii0EN}t`6Fm9Jjz^W93I2wyKYj0#V(d=fn*{a<
z-z)fC0^bUu&b|cp3;*}~|IPRZ68K&uKLk4AIt4!^aEL>ARpxmPzyyvYP@F&{fuqd4
zX_(=+1bz<qu>^h*{;S~eK)(Gmg_<W4I2lNO7ji0r(}CoP+WFB0VhN;!yT^rSf{6r@
zfm}^smH0Y60Yijl0(Jt9a7%E<>I^r~_k>J{`i?6_gZaTXNQN^a|3mO>0)GlQC&<(V
zJqs@+@RvmYPT)Tw7X>c~{v-IW;EP9m4|7>K$rT}21+NJ%zOzD^B+4eyI0+<iUDEgJ
zb&|Map^}kAIf<4Rtdc|pAr%EH304*?sdd#PswGifB+R5%5;cU^6zm?n?^-*F>qXLV
zl7C`QS9m=^M(ZchAm9y?Xe4~$@BYep@W0tjl4zAg>m-^6IyWTIOn7s_7J@AWi{-c0
zZ%m?~O?LYvvV`0u*d~d#LfQ#Z;pQYV1AZWu9g-Y))7&J&Nn|IHBa%*myh9Qlg}0S@
zbq?fRm~(%>&ASGYZb@_(t_a=~_kBoS68T9KB{7aSP2#7GnRg^{XA*@;^h%<45`9E@
zSQ57c`3w}&H;H~i`U?&aoGNee4H7<BaERbg!SUt&I}T4`L=q!Ka+}~NK_-nBa%+-*
z$K#iLOduaC<n|=m$S)^+dp>hW^H98gj@{5-g^o{RLK1f+LCNRqeY?Fo$@fMuEs2Ri
z4)-K6N%&;JDS`Z6A<6Tl?n~nSB%Vy-yNc}}NaDdHW=qm^!G{HB2r~bfLLTBxcltG&
zCDBI&A5G%1B=m#6{P#*e&IzuXE9CJco)B_<*iYr{o|2o+OJaT!PbaZJq6-C|5qwsV
zns==a5f`!Ly~-p@l6XFe@+vB*cp-@wlh~QWF7{o`&`U`yPvXraUQXhj=Gm_#!CyG{
zLlUnEUn=;z;2S~eG8X<TU+vSZ@QNhfO=4{lZ%Jua2DNxQiB$n#Eo2REA;ha1y1lHw
zC3!E2jY(`uVqKv5eiG}2e-KDEB=KRuJLP77l*DFwa*=#2xJ~dA!7YMY1^3nV+ikmW
zl24P^5pZpWpY%Cr0g-$u_*IblbrLbz9_~)!n<V~7;%pLolGvNX=_JnY4Sk!$z9fz$
zaWskj!Bs!9@r54<B;O19fnG>{d5m{FD3YH94+$O?ysN8Uo}Y#Pmc%h3l>8#(SHa^+
zc=D~*i6Hf462A*SB{=U<-#alBClN^^%39FWlQ5I8L?I!l2_}<Jg{%+Gi}WN6k^Hj3
zA5*sQlpv#y5SL{LBz9kaOr?`JBa)~z>7Pme11|pb`lTe!iTu3ah2W~clK4B|7nA5Z
z*RS|LN&K6{e}TM|>bvyI61|edRUy{|o3HkN{id`ilo2ee;yNK2g5^|9msaZ0*<WQ<
zR8dJq6%|!gRHo*X(p#=I-d`(pUG?m(%R<#u81=K8sA#I<Wc{wyRn$;XQ$;NmwI#O(
zDy|n&UyvEr5mHx0y+AVi>5P)@YbcUNf{g_sIB|tv#|G7MPBinE2RDeYnTqB@C~2Xh
zWx!jhXf6Em34cY}MnzlJ$i@sC?Nr>XVxfUW1~OH&SMjZeeHyY<gj8HqaY;p3MYf9N
zD&AC)qoRX~`&B%kqN9pVDn_UnsiL!rE-DID^iq+lqN|EL72^+Nb))j?P<IuIip?E!
z>iwA2Lq$&&TSk;$aIMSc_IV@A<g6)`OMK?pP`-)+6@T<o7|vb{_g2wI#XuE<RNSJX
zuZjUG2KQ0=sd%klPJg!iz=D5&Dk$AAXT_~~eTVuv{82u8u!<onJ{_tIS20w@FewH)
z<*+c<4^b!~DLfnASvhx<iqR_WQgOG6TUFe~4(*qBr;4w8D`QmLuHp_AV^tg<sxY*8
zL;0hZ;@RP?UBaIa%_veaj#;Ugwl^=`K99HKwG$+V#Z9|TWJ`V;o}^;3ihESNSRuq>
zpXr=EMa8|6Klx9+l&QR2#eFKs+ixp4n%$Lz;layA53++)Jj<?8F+;^n6?0WQuHqqf
z>nLTGiVupzCpLs0R>9WG8KgX-;!zckvA;$X&K6v9xrm%$j*1P!&5fB)sCZfh8|q0F
zPpM!5t_)D-shH2MtedZfyY9bS^vKE30u{gaR-Oq8#v(0J@tlg+RlK2Mv5F-sUS%(+
zc%IIm_dO7PS@1;_FG+akbk;-l3u+HjnDh!Qf0)8RA={HJd9lB;l-4p*89pL|Cc*M7
zV^g;a(NyO3S5~NaOU18jc@-;FyshFZHkyi6Dps@Ntd2DM8Wn44OAWK%ktjRjT_GRz
z%70JAI$m3=;C+>+?tb`lir<3_?8*;STx%2lOmL%$O)84A@;*}Wu@LgjLLMzt$UmX2
zN_4B>Ho@(JO#M{I4ndm7=aMHg|3b)@w7}Y38QrO3mx==_zE`oE7T!x?ukBOujfy=S
zEVY!qDj2?1!NzCQtF922whHg(C>yAJN0-t(=k-BhUigEGLn;ods2C6ZD0ootC&4qZ
z&=D0!Rs5o24F7~eMeK6XF*>WE%Hmt|IZPOS9-^GPTJZOZ&~GYEsIXNy^i=F|6$uqd
z6{l33RuPp-6|1QBUi*k3$<^T*3>}9nF%@x+orPf<c7EO56FbAI3S@?KG4FSqhcp`h
zunZDIg(>6FVoOf${@=jdk+njL9uAeQrMN26D$c0zR8TV|IWQ9r&p%X9=P#P*K;<mE
zPt4|=it{Qi$dJtWB%fW$ZY6$f=KU?6;q~POw4#4h{L8y*n4;l76_@G3G-PYIqT;HG
zx*F<fxTfOo-bw`x6*d0r3QB7zqoJ&Z3=QQpT&LliR(T91B>70F{QoCmlu7eugez&7
zSlF?ahRPbMXsD`zLWb%ZstJEAs{*4ngtI$p2Bfxz>*;2PgeKln|EbE^bu@ptk<{1F
zKtpQ{H)?38p^=6r8k(|rm2(?wpg}@I=7@~QaAox{rCVj?1`W+L9x0%uhJWjX-+my}
zT*HFl8O>`b=Y}bt{u83Jn)XPj6%_{LKD#&XCJm#HhuUix)+x7*hPE2oX}DR#=7AkE
zHC(vZ-RPLp=4v6MBv&sNWoh^zBNP%OnbIvcM?(h<w`l0Ap`(UQ8WasZG(6BMud@ag
zpsR*18gex(ITZSSct%O+rlGrrKZj?$Sv`k3(Uv(qsW3n()X+=Az)*IchI|bL8a56r
z=x|f`vxQ+I<-IlZ5rtp-Ds1Ypg-YuRx&1Ws*DylENDTv+%Iatsu3?a94wi<ZTcc$T
z(J)l=hubZEmG2i7WIb2FQNwIk^;g)Wqu3hkK@I0dDz|F5O~d{X%I$(<*svp&u^L{z
zdn|?JM=FfoAxU=%7730M94|<<2^#JS_}xP8|DoU>Db*yFq;^-@|CxWg+^b=#h7}s#
z(lAZKeY6S<^EKShX4LSohFKaOq#4+GGc_zNRHkdbt<KO;GbfLM{2|GcJ;FwQg!R?%
zq~?#H$282=@VJI2*pk<}&(U!8$%47UNf;<3mdJ@uY5thyIAwU6mc#mLcum7I8lGhb
zX?R}4LRuqoo?~}E7$#XH(I!`l$QK8~7c{)6;msk+%Ni2pLoaDyAYpL5qE{s8)4Byz
z;P6~3J@STz*TqOm>|~jS<r+?P%pG_r^d@b7SOzDx%Y&4aG%5{SG;GzdO2cXm?`v4E
zVU31&IC$fswXC@0!&#d>+rE!NSNR@WuR<<uV4a4#0~C@UN`*hrut~$1d4-!RDH}9=
z$Y#;dZ?@7&&1Wj{BMt-&A8WYdWatyke*x0EQBkfGF;KEi!*&f{v0Hm(v#CFoT70fy
zhlbBI(09>m9Xndq_g%e|FT@DH6dmu){I50alzZ)>8_}>w!|veLv5RB&YWS^CVPG-7
z8dSuR?AP#}hLt+r)^R|?_Zn`{(M-n=8h+$BqQz=BsNp9Kss>HNAq|H$oTMAka76QG
z(qA<ED&(k!pM@L~Y|}i<)Z@IPhQ`@lPiPpDpU0-7WpcWqZ?UQ<tl%jsU#~=^vZn=$
z1tT=$;l4slL!3TJ>5$Nn6hi$`l@&^ey5=vyTy|EqkfFiUU}>;v?T>_<fRMjhNg>`h
zEW=|1N?WBhoRxBN(mX?nhMaD`V<h%n*>P9D-1Br(8Y=0itb<e7Uv$?xSn|I$T$Dj^
ziJp*dp9a$<{10txP<ZLNFb&``{r>>vIvrPpkY5#YjsBlPF_O|c$^^Wuknk`iLkQ<M
z>Xesz@pct-KK}6U%kXoLyec}X>S(O{wXUY4x{f+J>guSWgYVqd(otJSO&!(7j%Dcj
zK;iWwr)1=nA}UZ)Pe=abvGsK{(7{x4${XrnQX@e|dF_KW3Ro}bc(-D96CF*3(B>I!
zuA_yH2X#!>(Nae%9ldn)*3nwWjXJvM$klO^&IeU!uOmzM*T!vmuOZ6Ky1yiDCrDwY
z2uYX}(h=6tK}Sa&*}CsYFL7Y%{!H{n|6E2Z_f|TIoRZEWpOclh@^U`qU3GNReN!yZ
z(Ork4BadCyTj`<W%kB9+b<m}cdpW<>%lSm|d^V9dH)5ggPYS&D`awz`9k=MXLkG>E
zuMVzW2I?53qo0ocY)0K*+c0op^Wc@D#aD_3>lmVAnpH4XaHx)9I)<}%s&!ox&7zz*
zLdS@fIU{wfyi_nsaJ1m9g0~4WX^iARa(h5{`JFn7bc|zj>9||RL`j;UgW29C7na=U
z)bYZ5bW9TY1ERBKWd3A{GHHsAdv%aZ6`Uq`pWyw1Oe!fVafXhWI-b+9SjR)shL7o(
zt>a-GvuI{A(>=nROXYGDKT4fCA^Pe$I_BzlR`(ZaY{|#jfI8;sctSdbk|%|nSQMJC
z<7rl;m-38`?XMNi>#Ho#@p7%)vxUmmUdn)83MC7vP}q@Skr3v&gxy+0dE-dvbsf*^
zctN5s@<JW2==^UBKlR+b3YU4W>Ud4ZZCudmFls7!61*A;gEB*TL&q{5vA06Yb*!Mr
zdm!|t4u*KY?CFCPM&A<Q+{NWr=~&IdWuS(EH9FqW5#@y(0y@^}_>Qhp$9p=~>Da1c
zn~wK6NaLXobZp?j{3o<tjEW=WLmeAw*dvsWb==&h>n0r^>DWx8s+oVOa_+h-MQGcV
zIHgV3Pjqb2@xjIJlrxoNJG0WUOUG^<J9K=e<0~Cs>-d}=pib@=v~3-gYUEeAM`2iy
z2oo9IsiQ>lTyuO@A@|tn>~D1J(XmhDdv$!P^F!Ti=0My&L|G*|jP4f&3csiGr}0xw
z$B#M=>Nu?9h>o9lcbWJOu`q?oizh;KzjU5QrLr7EY`_T>a+eQPe&LAIaYDyQX-_5{
z*YTV5X5GOGJM`jk<#*biT*&qOX&uEnB0Bb7DPl)7ETs_l_R43!jNX?Y*ZI?h_*2I@
z9Z4Okj+A7p>Ckn4DGXckF$7JzzW3Ts=&KwX>961DOC6EBbaZudGjw=?*QGJ1b)2C~
z5&L1)?psrahICfP=_^Gf=XG4rQQANm1AlQW==e{^WgQcSXI#|ruk`pO-9K~qN019_
zavC8w%RF$nqT{NLYdXk#W##Q0sPr$)<CI;>@aMrY_43LZxXwT&17il|?kdd7Fi_q=
z1q0;_Fv_~WFvy>eDjMM8gcp+k-dm|`po#%DPF2Bb2G~~AXBb>cscE2=f#C*57^rRF
zdIMnt*#_zusB55^f#wG48K`ey!>kTX40NcG+rU6W1C3ac;Tc>3Ha5T$11@M`pv3V`
zo})CWrF6>AYii&I1Io1!uO+rH(9%E~18og(mCMzBD+8^AvfXIlCIhSjE5gz$2lCq)
zzKhN@(B8n!hCf}-Egf#~R6&-3kO3kqQliYO4(!X%Vet&)8z?Z)(Lg5y-FbHdoejT>
za}9K5Mb3q~7`VN*LI*N#ad}3&8Q{vFfm@y)26`IE6A9OT+-v;ZTe-DEcB_Wj+|d*o
zc=~v_mx10wXaKx#9|QfQ3bz>OD}**lIjg|XUnBzr2MP`{Fj&YC!J&e~1UZTGl92{R
z8MxoT0|rJLxYfV}19ur%w$0x|-NxQ$v#<&V?le$j;10vzm{*(X@6)+4Cn1hA{9}{x
z2Dn=vI?$Jp+-+c@fhh*=HE@rCNi-)7<t0p}EeYZN@lUI0szjN}z2r2*$NLO0>HL)<
z@(0BjX7Ro(;qlOP12YWFH1LoCo-aKtnBA{{hfekT6)bO*|EPh-3_M}rNdvQKBu7FF
za}CT9t}YET`nd4wSBoAiU-*=Pc?O;_(0FrbKAYOW0vf>8B8J{qi}(r8Kl3^soSaYc
ztX~pZSE$jH{O5RI0~bvEWnzhe=Q(Oj3^nnBffo&2G;qnlO9oyxaMZxh23|4ns(}xf
zgMrr!EH$v2uA64Yk{DQN_}+e*f#n9?Vr$dwGc}sEg6&TqGGc7W3`oK$_%6B^nzS?#
zo3Ug|{*Hln4ZP36qI6hm_@0nXW}Sie7-ocdoW;>itE2h-*(<c3*<K4#^Fsq0+298D
z7}#XsBVK4=r-97|%(i)34S%IU^07oeF|b7lB{})ZHUrxYf4Barfg_FbONRdrk$h(0
zb0J>{Qs+wpUkT@hjP5e9TSg@d!`*uM@BC?k=OKFyd~5KZfN;RTKEpqR+|LqT>&}jz
z9;+}{1H<<Qevn!mG4LZtP{ZuQ)U1<xP&|WwoG9dwApO$vQ+Yfi<?@@O@0fvK*lq??
z1HT$LZlKse#K3QoA<s{G9S)x`aMA$D?*>jA_+)yR{FIO-)eFd1w<zF-J!+syx<cGQ
zOs?J0*FT6z82$+x4`;^mxV2NRX23S!7|;zE(#5Q=DZRsGyv32#JD08Da^SGEk`EP9
z2GT6sP=%+IJRW3*JnEtR53&EVR1?Cna8Ag1!3&%Pg#0bYMFJK6G4L<lpovx{{-dKd
zP}xKk6IW=x!xip&t}}7fz%_}MGJRng6QzZaFQ1iH)&%k1y@it+gsGol`g^5vg5^zA
z5K>W)@=8K_cFnD7`VPFdiR(?@u&bG<ZlZ?pnx;RBYngDS7b+V%kQ;4E*D+DoL{k$t
zn5bu>zKMn=8kxAgRspB%1}50HBn2l!jfKNR6BCqBfk~7TXPJ4FH#5;fbeap+-;q}$
zr*dl(H=5{aBG1H4Cfb<jV4|amwkFy!x4uey({JaSO=Jq8E9ME(FT*pqm&q~_5}mM#
zY!f^|n)PRhm*klKUV!U-Vkgr-dFWyy*F<OGB}WQfO>{G%nCM}myXbStF|(4gV2;9<
z$!W1%tnwh8>#=;fMK2S*O%#|Y8mVw9DK!1#eQvLwk7o8U(a%JG6Xds;=xh4>ECxmy
z2ACLZ`V;y<Q5YmhIVDp^lqVTxVz`MNCO$JU!o)}uub6n%#3*)(iAPO5X5v;8x0$%x
z#6%Ng*qHs5J6RGFW7!=h?hr`{K00YEQ#nY-NwFuG7;pMxmSI+`!d)gF7?#1|^G9Fh
z9ut!oHSwT{$tI?lxQ}jgfb!{)(7h(6nf@96RMzE4h=Fo0(k5Lkx}W9jr|_h!Ztbqq
zP0TPcOIo$$gkh%XpEEE#Wa44rY<xzEkBEe1wuw2s5!=DUToaF*m}g?Xi6<zOL%F9+
zJZXZs;A+wKI=K`QpJtR@Y+|8*$2^)A!!xX7h1?Rp$i#CTBY}ZYSYn(cFR+9avtKg(
zP4|n!o664gcu|#?Mc8_H#)n%AUo)|uwKlQT#Oo&BFtN<Ud!~QVwcNy;Cf1mE$HWQ~
zZ*kO^SY=|R={qF`HffvIdH+YakXUW{C#YQAy-TZZowqj7q`zX6`s*ZTX8yhj-kncm
z=yf-k_{hX&N=(fBx?rP;FP0W;5@c$(J3}9v=yN`s19_W}PXxEH7D6`ttT1)EjCAUJ
zN(+~z*XPW^#Lp&<nfTJgS0=tU{S)l3P3)9n>@%^;1P|W1)7fKUH^=+A&^Pn|wY#$4
z+5435HSw+KZ-wXsiCl^8H}Rc`1E#-D=D4GTX7+>W@11`%aZt!lCJvi8!uxK|KO}f;
zrn2|t{G%p_J!PZ4>T1z1R5sz7@Jt-1yQ`dAY$77$HxnmJoHX$}oxq5UQ<M+)4@h|y
zbXqv0ch*#*Cbs=^8$Di<g)|X2kud#3<4hiXk5;lv<q}mBn)pNAglWPOZU|N~VGH>`
zpXo^SnSy*8a7tS8jES`A@7fj&^VhDNzy2_BmVQaR=s6Qy@$$*td5O};zV>>RzfD}E
zU0L|R!X*>`u$wI0V&Pvpf4V*kH(9t$=g%Q*p{0eZCa#&NX`z;dQWi>EsA!>*g)$b(
zS}4y<D(C*(Pr1%QhJ|vLzboWUkdk=C|7{ORDp(jYLfLV(sIrABqEp=hb*fsZCWQM+
z=A+zNK*Ahqh>-fVEr0yNLK7j^Tc{(Xu3$YuD%7{oAm9xxGzxfQA#|`!EkqAwHMh{r
z!VQ9qUL2Kwg*aTHkWv5S-|`<xaJ9fZTU-A-rEFuNt%Xh&I$LOG`BOH1DRpkPkZGa4
zg)9qU3)vR>4pl-H@+uXQ+%;4o=2++;@{SgcT`f9$wTN;m*j0U<E*5ev-#O<Cb`|U)
z*v&$BA&MXmD@uHLPv$QYM*E6mFJK)-(kqbn<{ibu_qEW^!lM=*v(Vqd01Fc=JUk|E
zAiF@wSPKOUa|T<u&GIL;ArhrzsE}cT!!3*uGE#7qAazCyxmA!G)w#Fijj{YS9`|3j
zTe!o*opKA_Zk&Z8w)u(*<TbAqjTiZXXY&}n%fj6jCR(`1!UGl_v@prSWD8R*9!X(}
zXkLG*`@L-8Yem#&*eZCRh5Lj2OOgg&E1GU$28DrqrjUm$)ZCcQ+uaz-qvk9NkBGeN
z&Apgg-GTYDEzGg-nuVnn=302%!U7A=SiYlsg7(0nQ78PQASF*(pwpvdz9^79EfOX@
zYhj^<7cIPGVUdOBD6gzMZ(*?z@+G`)75_ODgI!s9A&^t}vV~Uy%~wTUf>fjO>lWT%
z&L=|eT3BXbxrMi+uivzgyw;sz1q;v9r{NhqRpwa)ZDXZ{w?$`_;A#tNEW9I}6Fn7L
z@@ec)WvzwxEUdHeK5e6~!ue?5@C+_#_~e%>{|y#Cv{1uFO&c36Y~qNpkhbuVh0PXz
zvGA*fk1c${z8;c$)WQ}ETP=KJVULAvmjCX-rxtct*e?9n%lY&AC@k$~7I-xMxy45V
zxr}l{{e^`uEq`at@Rg9SE$kGsOK^9PN?*6v!nYO<SvYKApR~Y1%Rhf(R{JITorMEI
z%X}~72Ma$265f49Zulp`{CNdOM9yW;v}QTXq38IqY=@tvHI7;S!*{yY;}(9i{Ec?P
z!U+o}=`N&3zgswEp*YC-G<%Q}f$4Y3+Gh(QGVnRfXU98G60@+nj}o{1C)BqLDo9#T
zEsT7-f@Z<6U|P^E92}OxBZZTt3oQ$_1<&$N82FNgL)SV!-=&jjP?1p{(etSdkL!Ov
zS9r$4AN1H3u2?wBQEcHK3m1kePw}y}g^Lz8><^!(#KK<|{<i#s5k5!o+p1UYorwYx
zHt8h`+*q-{c;UZt`F|GJP)xmQ;TnCujY>93*(hzJyp0Mr%GfAtg9E>u?XT7SDZoaC
z?Js)y@U(Jog-6^xp5j>+&k|X2X2q>#W!tw3y3lGus@SM%gGHr~=26}D=dzOf*0NFC
z#t<7rZCr1oj*Tuha&6SLQO`yj8*OdWxAASw{HB5pY&5jd$o9(&+h0pG7S8CkYu#C|
zCN}s?goKyeAeS_=(Od{6ErhhR(Mm|`Kz^f*n}qW@4%PVFww=vijX--FH{1SWT%N}0
zb@Q@pglzvIS_d0p+xM~AHgbeq>Xpyv-MxI@MK461j-uH~u(ROykxEw^-E0)v=w<s;
zOn2LV$WmZKvC+fE>A^}*8+kVJZQqLewazBKGv|MVb!5Bsw$aDNAlpAOy@i#v@kl}5
z0NdYs^s~`lNX=*cJ;<bMMMS0!6yc>sz8MT=x89@h9Dr-5VK#2Hahr|dw!hvUVf)V)
zM%ox<WA3mFb}MnTl#t3}Y>c%r#rBU2Znyo19Yr?A*|<YEZ*-^azcF(7&HV8;CfJy0
z;~pD#+4yRha<>hh%W<1C?^+Qb!PgzGJl>@1B=$=UWio4et%!sY;=MMe+L&hJJ~5I9
zZ2zUEFRm5cPdnM0wF}ub9_~oj_n?jJxnYu-HXfp#cxdb4VH>k-oN@4ngGX2@c9w&%
zgU4*lwoz;&Vq*@gW@C$utu`LF@dWQ~V~vd`X`eP;w(*LMc{b+Lv}`<Q<7qZs`Rr$C
z@HQ6MsNSj)hbl)Ug?#^Hp`>znQn=X05*yFkc)>==BQ_3ms=dgfHmLZLXvT^Z4r&JK
zzsjoFSZ?D@8%x=ABb7G<Ul%-it%#CkR2Zp{JSn)s#!4G+i^5xyRHD4f1~sY1aOqmn
zJ2u|6@gbeLjkUJ_KyaOn_iel<oY4!fR#<O??-DR<5b}YItn2eiBn5m>I52mU?c-(}
z9|>{G)n%07V;i4{q*keMjBc~B-NsKg4$*{c?69$qO&!Vn%*N+7_R1Z<u<@mhT{d>x
z_+XIom5r}$?BoEyKW~1WF_dU?I+7E~zp=50<F3@WRo6N&m1KRx?kw}SlGT-?75Cft
z&c*>7-`n_+qhMk92OA75c1ihJk%K|)n0lBEHB{m9__&QDHjc8J1}Hz<_(g1<Nyli|
zg$nl_zXlSHh2Pj*ZMvSYani=`!cTE{+E525l=s?}_j|=65@OUw%*It4*KEYu5!?LD
z$Qc_6`X%by(4=b|8@dg{hAq+2BQn@!rVT5IvhPaznn|t=k2X0{Ay0`yT97)%69s?R
zIBVli8|Q3XqOsXHZ{q?-@gU_Q-O(WBFTuZU9KKdSA(29c^20O!rJEK09}SN$hm;z3
znFCz(=RcLtDD_J@DD9w$gQgD3I4J9&l7q?)u5*y#_$!c#4$5(q^;OC{{s}gp?;onE
z@YJh<gZoR3<J3@9-2R4Vi>f%N>!6+k@~RH138^kfNev-29n=z1JCI*5q>cj~;Zm)>
zg9Z*7IsVZ-Pu&|j{_IBQS#rGG*a0Na=QB{}1_wMgzuEE61DiQ$?x2O^PfwhBS~~t}
zjpoG5TRCX$_)hpn!J7oz2vXSALA!ug*k3WzL3;;Tmm6~u%yK}_v#8WK?nbj6<T!ZF
z!D0s;9CUPWuY;)$Iyva<V1R>x4!StVl_K?Y&{Z0+yMzDwWwS`#L{8&WL_%Q?Aq$5T
z<~jUq4FwJg9o*ueuY+EWznSXoppOG?n#j46;<k&No2h<||Jbg-<8Q%wwDq@URV`mK
z$iZL-w>!9lNe+fOxYfaJteS)24n{Z_$#x#?zgBlFs{<eX(36jHFxo+59<vwZ@xcm_
zPyCrW#sP7x0|t_Zclp9Q9scom)?E(nc2MMCoP+Tq;p%IGkWD!SRCwremx&JUaWKX4
zXMc9tBnOkFHP~e|Dh75RT?$W5ra8FJ!P5>F(4wT@A9C=p<o1Ar2OUgzFv9`Ya$MR~
zC{;L9IPXZwEINM&a~#Zd@TlDDF$a9+LZ3{t;cPqG@gEBFN!H^Io^UYF!F&f#@~V@e
zr)Z*6{l^x3W>NAugGqe<kWVovWY<5#y0;7M`78TbHqr4A!$QY@ZE}(0uXVSc%3I>#
zc?a8AR0l6Oc+tTJG-m1LmmI9%?Pi2&oG**y6$h^hc};Ms;Ol~K2rd(({&FF23g!$@
z-g2-~O7gaY_l2-js~oHrzDDq!K>n_SwE=(6!8+lb+<D3RK;EisA$N8kI{1k8+)df&
z_{)+_Qb(?QXziOFd@RCG9Bh?V-6B!04EOZ+&43$<PidA8iXB88eCFVD2S;hK4!&^k
zrGsxA>|w`U3Vr2Zr;x7&*Ys8{y%65zV7Ekjj0{odw{u;HdmS8daF|`-V4tM!7yQY=
zcS5Lhz`^$c|G~kJ!Vd~ETPiS=kdpk5IA}JzfD&$ejyd?%!EpzCI{b_Czc+S%bNq+?
zCmsCGb}KdR1g&(Ka%PVI*zOdE(uakoMbfsH(&o|_3ZvqVR0o=an1i^31n(Zpd4E_&
zlD#u5gPaDlZdiuyz;NKn*x^GN)A1jvI1Vhwe@0^ql9W6>aoG|13OCwp+mu|A4hG#>
z2Y)(P=3=>va}Lfs=<i~Hiwh3^qSJP9gNwf%|5;Cli*hb5I=JNE9|!-k%N$&Fz;o=|
zPj&du!R3H+`@=^V*Q94lyC~y=XC|dws5J`w=kHk^%DTAD^&i6W)Qcxz-?Yr336*#K
zQBc)IH5V0xS9DRy^<R&q8(~sq7ga<~6JoTwiyAKKxTx#;uanhuQCkRKKda?pXQ^@4
zjSA)0i}0ma!sPW_G<4C(MST%A5Tv}rjyz&x7jV%;guFbnR<CK36%r;jbJ5&ICl{Sv
zv~c~G=x%gzlaQ8ztpr=UI9Y03^V&)q7j0dC6`k#(or{}YWVr~r$YeX8%42BnqI-j0
zf0Y`?x9hnm4ZHr*l+T+OhH7KTbJ#wvzcB77IFM6zRvs7OU0mN=c6Xt$Ws1YOF1otD
z5A5cGFUj+f3ZJL+aM9C6p^IKF@?7M*{)=G+F8CT453EYw2P?teF8a9W=lZW@-r}OK
z3nByG#-wDuyp}nZuceJp2D%vJVup*EE(W_8;$n=8vC<twU5u2<4wL9`!4a<iW*QIb
zC-hZDx&Dq|w2NC^aMgXAL?0dNKjwI-Mb7PPaMw4mX)f+`{UekKF79$sB=w@sIQDz{
zuH)JAZzz1>{B9Q$UEJehk`$Y7jp`$mp^p?zb}_}py)LFo6)0ydn8aF;mqhP#alh-o
zBlm#dgMw@vZf~c%$dSf*$i>67`4yp8UCeUvh?Mpv_JWJYTs-OGDc4{2%yu!Cm&p2O
zj_a?N$RBs{go~=B$Cb#bHqXU;7tgzR!Nt>o{t_1p0{)DPXN4~mTqO8hkh++yT`9jL
zH)i{yi&mw_aSg^-BPitaO_uXzDeWs9Wk)OW%LPhabFoy4{kq^AH28D=6A(W8c+<rS
z7Zy#z#ak{`y7<n;0T*w(Smk1ei_cuFcCp6AW)~m3c*n)NF4nO(U95F6a7p+*=J`*E
zpL@`m(`C`f*V7bTY;>_ndSru(4~3MN5L=#v;Uf|D`m2C}{lX%B;$o{<&K4QwT<Mhz
z_H8b<i~LhT-s1O<+J8>laIstJ@}=NTL7M$nF20swOWtv#Z&$lq|7@yTW#t<edtB^g
zpN`4<*2O+HtZcCv<>}&ncIBn+42*v7;s+PMb0E9;(ZxXyG#9_P_{qf~X~rWi_~``4
z8lBH!F;33=M_ur}7lxnN%h5~{zE1zE^vDV7oWJcj4RWCJn_$=KUD-P)X*nY@NKSJE
zwF@OAsn|t?y}&oOCFhvyKM&=->JCui;wxH@ADg5Lb-_3AH5a-ILpXCbT`U}^P)^R*
zp?Md_h0CgWsN=zNk#bSmLm3Zg7iV1j<Kka7tW@fpi}OOx3jQfxg{E@B#a~jji|jT2
zc&3Z#PldRW;lhT<YF?7mnwQ4#jO#xaS0#FxMt(fZa7D<@&Ux2df4#&|$^+-PV{??U
z9<K9H)k8H886L`csNkU@Lp;RQek;DeK?U1?ou0+0<e{?XxA5BG871H2RFUYk!Twh~
z)jj_Rx|ZjE-BZIuO%JVB7BKKLpW2@P{w@6{&7iL5ztPdy13c{LtJITdeZdAE8VYG7
zNHuP_ns|OKT1b(adbq(uGY`!@zep??3rQ>qEOSfV)I)2}ujY+{Hwkjyr-ZNQwDWMY
zhhZrUPa)Godk<?pyyqdyL&(FU9v<@$_K@vifQNw|ay;L$ckz(xp@Rob_Z@kQhS{B@
z@GO64iIQ~n{C+R+Q0SqXhwdH}4?R5Od;WOm-Fte-^DvrQ#pXFYDB!fh$%RR8NN4qu
zmb}G7Z_j@#ppWO9U&%)weLa4HivBF;Zl$2~IKJc2Z;rxQZ;*$<9>#l^;9-b|p&oAa
za2t!gBs@%V8!0$kaD<16{giJ8E2CHjma1+p53+a)w5Pu^#`7mfT6mF=u^w*saEFK4
zLvqKL9(Sh)KI>=T3_={|ft#8NHN$s#xZA`19v)!M9`5mczdg;vBoC84-0NYghbcnH
z8ETZyee32t29lB}Ti`y=pO|>zgC3@f&MXfzJj|4)eweAlGPu5aNTOVBWtQt$vH*L;
z1G8fO#MvI^czE5z8y@C*{xSR09u|0b+`|(Tjwt`>P~}MvPqDPY)8~1fKMBs4&TY9n
zylkrSjE5y2p7-!9JGw^hLJx~LLWgBMM^j|BrNbAp^Y%YkP<?X&@de(6jo(Lk)x%33
zUiSP+nQr#U(&JuX#bwH)Q>BnC_L_&Kp1%a;u^v}kl(4Cnd06g&&pqGtutqFo1?%Er
zrRTrDx?1pU&!3=Ii5i8Kh8C3RejP7)hiw(hVR%;v+h-jcibFVs>M5*er9AvfEAp_x
z!-uRXZPmj@51YLI9b$YWcia+K=4KBc)4KTfi}%0J;`njgRu9`eZ1?<!<9x3AQuQ#8
z=qFt*{LI7W9)9rfqg?(43+Z9Ehc7*R<>713_o6#Ja2d(h9{BPD4UERdKx3n|e<N4z
z5!@^It%rR=n7ZG?cft<{elNIWfImGQq+{{$GpjJwf2s12ha-~8{14M_L<=Z9%1#{M
zKU}sq7akMMUj*;IG=^9G#)07BiifKnPI~y=gG+}jmz?rY>>=Xew1>`ee#=@!J;XdD
zXbBI8_zf4o=OT%FC?QD?YQQPiJm{in2%3VFTS9C>NATOi{1i>g!+8%EJe=X6qmQEV
zq>=LtMmeD+VRg=lm*f76QMTt_Qs0XnE_wJ{I3K37vYeIv@$fHAvATcu%cl5G_+>iz
z=3xr?&hs_;+fF%UQYf49$9}04N(&($MGv1sMhaC@{`>0XL|#6H3MueG5<NC=Q89(e
zssFWYB_VH>9>+%JAzM|siZ8Lx&`=|Vnki(bkRv*^QfQb$qZDeVaJ@+Cq~t^{g}N#K
z?2b9t6A9Ns9FGlzQ_?sEr2Kt%`xKg_&@_csDYQ=EhLr#CrFjZ1XzH5_nx(+ONC`QS
z@6WUp`NDp=H>Pk?3hh$3StM;zXqy6uFf|(uRQ``plhMo+J}o_tS!KyhdEbzbaLPZa
zW3&VB%QEn>atfVN=$t~&l>ZJ)mlSeS{shrIg{~}oJAXCOjXFPO@yl8IVMb}X3iCe_
z>LIlw$xHb&1w(!c1u1_CL4Ig>ey<dIr_d*bTT&R1!oU<xk5c-k(4T!#Gu%&*q|KdU
zUucy_q?;O)!jP2juNVdkIZ}GuP$72daTJb7VPp!wr0{DBqf!{1!n-M~WzVK?TMEym
zusDS=ELaLNQ+Oza+f%qBg~?LjJ5wl1;jR?!PGKA`mx*9JO=v_0&1M37q(W}a0OjVD
zh1@xo<whWddpN6($l$9KlW1V_LIsnir2HB1UdfY7nyEsjrEs5+`vo5md{A(@;0!@F
z7Y`yHPGMFGi=@pTN#W5H=BMy<3Xi2QJB7zncp~L*+2#n&WeLlSV|47th1}ddnZi>k
z%wuWCkKNWUhZ{X65gDZd^Isr0dNze;XqL6R`rq7LxQ+6KDR62a;ppT1z9i+pWlG2R
zdJ4~{@IneNN<VUPc~!_uDZHG*D=B}4dGXP3Nw@Mm>NV;|Gnb~I-5uWCKJSebmeKfA
zcvA-2suWhRc>H=dg|}%rb@Sh1j~C{VP)Ncfch+Kc3Tt@B6Cn;sHvT&tVgr1?`d$j_
zQaD1lKSFt*NV`p8H*GTI&*@uI*qXwI6h2J(zGY(yn^O2F<sY~5RFK`ruH2l$$0;N?
zDW9<Vk|&W#+fulqXMLW+7b$FK6Q!_&Wgen@CdedmhLX?RzD(h(6uwU3WYq$G{>DIs
zouat`y{PjI3y{M1(t~?b_?9-=H}5;aeS-VhCJW0`$nfUE@&`C_o92{Aen{cR6b`2F
zQwoQqkbEnKCERr)n-k3@FZ-~VV(m`;2XRL^a6;KX3my|?o?{<R;Wzq$G-{-Af`v@s
zGHWM}>-Q8?c1;SWINVYwP9c&)JcUFG(G+4S95ww9Gr8iWZ{*y~$H62?xi()uP9f?k
z7%7~m2^Hj<f+S~!Sb}y6ju2PS6QoWmg>=Br2>C;h9{bNgelCUbSMsTRA%(wq-xMxN
z(!YY21pg7F8eh1g=6@3X`np0!uW|@43|C0|=abh`D3$gX6{XX-E{%*d%B20&vVsvi
zkDOu2{3_){jl6uC57+Xz>Yxo*Orug7mDB#m0#(wennty>Z`=H`fXIPBJhLlYGmTnl
zbWEdD8nx5@bA+a8+#uxoH0lVcE6AjJLh7f{KuANuMuLq6AxO<8Lg)?1o2Ah*jaF$i
z4^msC{f{8@siD?s+?YoDG_umTDUCL1+?@7LV;I_|(JtVV`{jPLFQ39pk#M8R@e)cS
zoJLNdL;dVDs7W=RmQ$xg8oY{<&S`W>qgNWe)5uMuYubNDI-jK)rF2W9hY<4aX(+<`
zeo~&%p2G743y=Bd13U>VNTV?A9~d%+I{f}Oja$+fo5t;F^i88*8pF~Uo<{#P2Ba}4
zjlpS@d#yYt0)~NUs7{#E#E>+|DH)nZlQQGDbSLLDF(QqTY1|s9jiTD2&}fNr2I*dA
z9Mx`Phl-q8F;L+S7NA{-D~G$&xHF9+iH@U@aQH0p-|-lq#sm?TM2S>pVA3SE7_0Lq
z=KYB&Y22Ike}|;)Sxil18cpsj%ALi1?5s34oWX}@@IV?5rg15af6|zq#*8#ROk-mj
zGt+n|jW^O*md3+r%t~VkjV+Bw(s(qDr_)%F#->KOkEQWM8c(J%JB>MMtSQKuo5tg5
zT+7TMH-<DKl0PMq`GS3uIrD_n{xb8umi0;$o{`+1OXJxz7N&8vo-bd-E=cAugsbK*
z76o!9y}$}?=<sqHuLyZj@TD}?uR*M4?yEG*;~l85ROGLv`6+b0-Q{v#mng~e$(-f1
z+ce%yW34E!NaLsO-B+dYmXMWcyq(6*diB=5-=W(F9ftSpx?1FG1gZIskfAN>y_d$Z
zr#rqcxQ>RAk#nu%b&;EM8ZPL#o@Umw;|FYKN&Wkd!afT+ZlVFFaXgLR(%78F$7y`c
z8>R6{8g<p2?P+|P#+E>TYa032<!noX*XC~Tpl0Ok5VbF9KN&fnv1f&RAxH^x_(~Km
zf06lN%X+)g*qz2f7B!7;(%6&6{xrU$wV%q{%aJ&<@LLYya91|zzBI<Q&pCTf2PPdz
z<NGvzOyk1MIS)@%#tx{wy-B?vBsx9Zl@dk|rExfoU(y)gwBC_4j<UdMOv%id)3jds
z-|~K@No3|QdV861OPbarVfZzT(w!Pnej<&N93wSy&vMMBaVm{O8p$+HOYg*3=5jgg
zyJGr1kwgVowx~y8JV<@HMLjhQEsZ1jIjJ=CG+sKHW2fPyVF)(`DYQ806y%V&BJt!B
zEkB1B5_@Fkq|-Q)#vgPVnK^I&Kc2n=yo%y`n*>5h0#Xy&OYgF|Wp99lTu2BA(iKp^
zf>H!TMG*zN0*Z==VnGq42uK$Z8%?G70|Z2>fQ2FmD0}br8u;EjeEy$jp7WeNd*;k(
zGduUpCR-<$kd0l`tI(M3XJuV<G`ZeR%QpmU*)Z4Q=p}OLm8dN`()r$1_*^a&^i~jD
zMcGv}Q~(9nnCk4Mpqi2jaXAGQ6;x7?rXXEGc_kIf3JNk542={rYDCD!Hn>YZO|GmU
zOG(Y9DoQHnGZlP&v~s7Tu?gMeY$Y{2I7fK*CI!_M%<5KHS3wO01%+~L1$7i$nU-Hu
zK`jMZm;CD|<jp5ihUZY`CHc{F@=wRobCr}K9a_ot6x3HxcV5HyI}|lgKsc^>?%EDT
zjTAIiP^h4@f-&voCJI_8XsMv7f@TV+2Ax2e&6QLv)_)djrJ%KfJOv>IMZbjFD7aZc
zdj)M3v{UeQ>+U4h4$DJ3%Z)PR{*~k*7iEdIca}R&%YUxD999rf@Z;#>l8{_Ky@Zsg
z0zz33V+!&G(m_D7breV^nk<l!=_Mo<DOglq?yjJRg1CY%3c4yN7IL}?SfYUPd(_XR
z<V$Deqs?<m1)cibqTr_{xxEyOI~u#3C-+qFayR*&@~IrYvx3}5L0<(=DR^2zKL!02
zJfz@Z1p^ceRB)ey`xV@#;C2OfDY&#gHb}u>1;Yitv1aZN1$WX|1rtN^9SVjt%q8+@
z`Ut|0I?KZpa1JgQ9cM@0x?90L3ht$2duOqY5WR{k%DhWaBNdFIl0x!mhDJymtAO1f
z5b)2Ixx_mz??&O|A1{bcmNj@#0mqskI#OCzr0@|1lN3BI(q^K9M+Nd2k#q9&Mg@eE
z6+EHfN&0hn?B^D_Z7RwuD$0jWG?=1bs$kwzH+NJed3x`xXB0fE;8g{$(Vq&QS73~e
z&0y+MTQVq^ohK7{QNc?JrYV@WDrR3VpsOi)M25_}jL6F(7OyCnDZ)g`wn?S0Grbke
zr}7HkP*Cn2`7NfCKxPa0rhsz<d@VzstKc04?=h1Vyemc@Q#1F8igMjNIV)aFqZV|@
zoF{_I_<o?^LxFRG@N$8Ig$kA`_(Z|Sw7sIdSV&kTc&4Y1;QU%5a7v>&%M>hEutEfg
z-lpdX=he*pQ~~i&bXa0zY_)<l6q3N`1lB58$9bAS%>>pf_>3v1V84P53O-k`S-}<s
zGfHKSyHUXx3O3PEUGu-<+*k0Wf}<7X`F*nJv~LuQ?R8J@!lG}v>=YI~v#!B==_CGl
zxp=FB?4vO*V&5y+CiJJM?E?8u#EX|dDA=K3r-EGy_9)n^V7G$b8sz?{;D5pprrCt@
zB{YPM`V;O`aG^miQ<0bR^M)N@W-3s*wkY^n!65~|Dmba&7X^nE9OohvDLkU!_W=!#
z34uoiWI{46=@!Z-!wI@EQb^>Kg44`N1(&G?dnq`}wNZ5WgGhr^GXE)3m)UzpAmt8s
zJ1^4yFDk~hsC)@|KChWe2DXcW=Wn3^FRv*0N5NGEipczb1wU<}8jMuRMllMJq!^S2
z64#l)3Mwa1B>_``rJ#&Ux&oUseOkV&z*Ep%k{xl$mGHfWxxSzT3b?3}XU3H%;dQ2E
z0_78^kVx^TC6J!rp=6YJ&Db!)YLd)|XCzQDkqZ5U*sv$3<yR6oFUgRZKvp8P)K^a+
zJAtYR+>}U7WJZK0R7>DSj7H}TyI~PIhg2)5l|bzTN)qUnK%E3~5@?@*lt69*brWcs
zK(hpPUhPybfrbenf%@XIK_a!QnRQk^e^hFeK;s0scjC^9+bZtFxE*T3p(~^w)6Em$
z9*N9t6KIh@%LLTIqE-pCNg%UxQEPE|=f(yku1_D~cP?rtB;PFH#L+SCYVr~YCD0*(
zj)E8#P);BskZ1z=m1J`ANykxQ3DBtg1USLDHR_Z=K?3mvx+Ji<abaNsMWPouJ14+i
zc7*~CG2!D>uda#I+Q`HsUM%F$QKboVPhe;Q!xHF`0Jk^&6Bv-dEeZ5YpjQH%P`wlA
zlfbQ<xrIe_Zp-IH>zhbTw|)uSeOBH@hQcB?qej6%q1d1V1`Fi21a21ywdFDxE-V@%
zI^LPU9SQuehs<7j*FxeSZ;x`78=k<u35-bKu0(3na<_o@BvPKAUPb1k_C9Krm+EzY
z0_)n#)oK<HADO_(^bs6=Oac!i@O1*;BrrCCaf}-EPhflk4<_(j0?#KfB~P9}&m{0@
z0uLqdFg@R<`y+|eql!<Q+e=fE{jmflku!m*2|P}pB=972FH-nKBDH!C>Y7i;#&xn&
zG?U0v33Of+dxisb$>$E?=>(WI+`Vv1`D`M!XDA(7{6YdRCh&%^^rZx*CGd*4MV{$Q
z@<eJE#9iy;W!+vDbc*8EbY=pt(t$$$>(rq^ZpNxoN~7>ubaIz`4m3M~H$|5@Oz(5@
z+yvfA;Ozv+$)Oo*^1LG$$WO}q3Cv4iMFO7+JwHfbA+<{2Lvcyw`ONMA@C6C{SV2C$
zx&a?~ixT)G0q3Rs#Y}HLH(TZ|Nnj~OiKpS4$xghrEP*3u<>kz-i}GAaUP&dBoz^l~
z0$G*7>IAx0D_A4sdl_=26Y_e-sJ*;F$mFy2Gn&~lmoh(3U}FMbh`ZO$%A16H8T2m`
z{AZFf+gD;}BHuFk6F8l~ZwYJ>l6P<xC$KevZ3%1_!Tmk~Zf3p{I2UAY1AY*c@oQsy
zkEQQQV0Qxh6F5M7nWCllFi-X}MFq~wJ)8phMF%<+(VzPgczS2<Pl?o%{gDdt!32Iz
z;8!ML0*9Er%VS3pILc|5z+o<%oKTfy?)OU1$;T2nE+{7wAd$CT>71f-1IAvIT=h^1
zC-tcWHbe?JvwmmhCvY_ZMXY;&GD&Eiz|RPHRzUt9{40SA3H*})=lex2cNOHz352KT
z|4n<j-eweV4QXB|6S=}AZhC(83aLvH|K;66nLLREk_nWFzG?zm0v4quFmOyvr={$b
zUP3)DG|DA3xu}L^{v2=^i#*v)z)OIWap;vOVe>CyzMuyJ?j6v8JlCjd0_BoOOQJ$D
zwRol{Q++x8%O_KPNjb{BN2HKAkxEHaP9iIb>?BTn6>3!+s**%z5=1IC3iq2_m(Y$z
zt0vJRiC@#&of(x^Es2|wAi`EXi5dd0DPS!DYbQ}hAUR1uAh`mPzitxs{=@4h(Lmr0
z|D!y%D%42ejRkD-AH8W3%>>^3Kg!~2dC#0}+cF8lR!JO8Yu8%9Hc7M<NM|>l#G8|7
zpM;b|UJ`#NQw54p65%AaCb2DvND|Q`-bv!!B;+JwN!*%5?<De*=#WJ1=cMjQbWEaC
z67eLuBvIT|E)cMD5`_XGrPa?;(SLaHd&9a4yyX8V0<pe}c1!Z_<M4RnLUv*Mv|p6+
zdn9p-7^tU!r1VO{NgqL^PZE8Tcp`}>ljxU3|0G5vabFSxk{Fo8&?JT>aT_W7V}p|z
zB9Pk!93<cy6-w?%;!Z~AK<tJ6vF-bcKWLr**~I+piTT5mxGRaflekB4c9%*z%#YM*
z96hl=7O9bWFJsp@y6B(uVI8CQCowXK$C8+o#Hb`jC-HC+k0dcBiFUiA!yn1N*0VB^
z2gK!A0mmgVULX$&$h#9*1^N#^)ud#^#QX!d#wI55(t+Y*$>^iBYhwQC)y0qh$1^#J
z#Lv0q4i&R6kts<`P2%|^UP$7pBsl1dUqa6&@iaqE$p>OPo2BGX0?m9b31feZ=DbMx
zNxYH7>?EcoF+GXj1L?ISW+d@)60amNQw&EPs8X~2#jhqo7tMVn<sY?YWsXAr*OQnf
zIudXDS2_oJQz*b*bCP%~3A*m>BuKAUe#C6|-noME^vZ7UCGma|tCLuh#JnWlOqbb~
zCh@_4_=ic%=iC&R3j|y&;6edEPGXTj*sH>oc1w~tJR_WQGMA8)PsFWd0xlPDMG~J1
zWTk-QS;e`3r5%yAg7Src>jYdc;AaAoVS_+E7jUD1H-_FM@Gq12N+4egNd9k<_*USX
z|D$XX$YW>QZck!PMweYl>`r3h9_hOzz8A<30`3rSr+^zTw<E)kN&JuLbh2&f_|Pr)
zh4&<}KZygJ5%-1n3b;?ep9EaLHheINpOZM1#OWjsCGkrVCz+5zxx-1^o|(u0UVbDA
z!Vlh*jtb<MfX4+S{e(b%<zkpw$V;|W-P1ahAMslfe{xk}pgHTyk6`<QGpqcF7wW~&
zCUK52ohDyQ;=DkJUr6FFfnV5~!%McgN~at2OG#W#;z|<#B+*O7tt$Ra;%XAtll;jr
zLSbTa^dy?|&734uPQxX6UJ_aodJ>Bt&p+Ka>)wAV8A+H-V-Ed|L<T}DiOJ<<Tktyq
zx&rdIp`Sz`@G=4WZHe9J((l*M``5F}sYp|iuA;n(QWdp(+*?7#s=3m!L*Z^JGE`Jl
zQAtIsXQY}cYN@C!@G2@Y1(Kzrs)}kVvc+Yug%UY$5_t6+@GWWW(^3tAUtAmBwk%v*
zMI9CORMb~7>uD)Rz`81ORUE4&S6e8N$Tt4za03+$RphJapaLoysc5aDjZm+#isk}o
zA|MrRs-l^|2fixtlC6b`mjB&t#X*%2iERZ%Qjw>koxpGYkEgwgi=U@>LV^<gj~-SL
z`9J&<N&XLysd!TllfR>iPAa+xdVzrP|9A>jbp8)75=e`^5q7zuOji}ff>`n&&)BR6
z!?#vq>#m}Qid#fPdJ6dM+B`;w?ZJ}ny;by4ai@x*Dt0Xj^;I!Y#ceA3spzlbi8a#w
z8;c1CsJMaLuJZ5br9mpHtm;N&Zut>|1wKST67NvKMTy8T6~k4GWw~BWJqqtqaj%LI
zD(+Ts5B)PW^`E!d?s=x%eH5<pWj6VT8hImCj8gG{3gY$F#z!-w+LeqEms1bN|8YX9
zS;Sjgr{s@U@t}&yR8qwR6%VPHq$2rg_?@cZhgCeHVxo#O^YUkQEPhnQOU<JE&s2}8
zD65oD{O!8o$#uhIeq6=q*CJ=%j6bPjii&4cJgZ`=il=CWig#9o$=RWI^ygQ@cP<S#
zm>C<H6@8AD{uzE=#S1@&*_X%nyhWauR7_Lxoq_KSOjj|3#_G6F$IB{SQSq0C3mRss
zc$EpGA*A6o6|bxKUBw^FTNQ86ODeumF`LPtVv&l)D(0woOT`B&K2-5Gov<SG?1s>L
z0+~zoRJ^OgH)YbFm=?Zq_k9)fXvKyU=MSEI%Mf|KiUlebG6#mp9|_ny8D+bBNac@J
z?m$xb=MP1es936Eor?7;K2fnu#iuG(3Wnt>Rxm(6W{~rd{$aMs;qWRIt5vK~v6ddo
z$fE*(@0Ip;EGV27o_Ibw*pllm4Sl9!gNiR1i)qs5DmF6uLn?ov;{A-gw`a*$ccrA=
z-aNdC^Kp~(-GilHsd#U6<hRb@<`<*is@SaJCl&iuY*DdQ#ct-Fift;k(*r7Ys2Fl8
z60A!5PQ~|hRL^LwsnWGy;!9e^b~2esteSr5LX=ih8sWNUO8%!}kBXXa%6nDZ(J(!@
zQm){|@cxGBr0f&)A7;x3R2)<>pmpS=il0>+;$ouWxQbs?99D5e#ZkKVf;4ilOg)*v
zRG9KNe;r~VPLN?>-Ct>S?=%kmZ`Fc(H%Zir(oU&3t>QNt^>wK4xe$Ft;-5@WE`S=c
zG@Mm&PKB<*P;s6KqvEOxMa2b978RH2f1%aiDlVyDcgmrBHsT!XAFlr@p4^==@l=Ga
zp!2C!LdDEe5mkl8slgoEnMNm+olh}Pc{V!SRAF(JX(+G3R^g}!I89WzDm>v;pDX0W
zDAOrgCeucaMf0zzxXvuSJ)EYclqsjB0!N>``B(G?Qni0U1q~S*?i`g<NdxuyU-L*s
z4IGp>{Z?5+6)lyMH#DLAYz<X4G}HhM)im6s;qwbpu7>IwYG|k}E^7)=lu%1cB{`99
z7owwfMeAtD(ZGcFzmG8+*|DyMdK&6$sN5;a)<AS8!f=F=(MB2?YiOyVm4+r77JVIR
zs-c;N3Gqsu3bL9D3W+T^XHP|lun}oZV`t~L)zD5u8-bHP?{xfTF-m(4k|1Wgsg$D*
z9FBNcLqx*|8a~tz)gWsat6`jmn1*}}12x>Hp@W8w8cH>E*U(8rfrc&`x@vg2MqZ(Y
z&Kioe)K}`RoDVhKAB(fgzW9+yoL`Y!a3(%GKciSf2^lmVjfEb}&U<lLyy=DrzacfY
zMqUp(SwkNUeKqvd&`ZOu8hUFO9gR;s9_2>>ImAc5NiikFkGN6ho>fvm4gEC?pmQo0
zoT?J#Sd15Oeq``=4TCh?qv2i+gEb7%FigX64R<im8is2899!nl)l%!G1?<xH>d-mo
zBmAge*C7p!Hu7B>?$(gLI>d2zH7})-BQ)HnVWfsp^uV@w?xE1e9+mFbaBfxTuXiJ(
zHH^{l0M%}vOLKVlf#2f%avZz!yLIC=JgDJ$4KFZi8XnRxMZ;7L4{LZt!z2xlYnZ6v
zQ4NoA+<5By4zz`8P!z4^C)g%yptL76JSiB6A03#%q3MU)e~3S&!5UcbtcK?_Jgwmw
zrt4oJnnn+khmCYPt=jVNiyB_i@TP`28m4KOuHjWK@1o-js`P7oCgaGIj>cc1^AAVm
z_PK<y*%6NNx`tUA-q0{x10BL>7HTQmx2V!6sia0>yjL{-mWH=EzcjqBVXlUEn8^>6
ze^*0Vo07K>>0dFjVsqs6PeU8WM&>d7Cgkw@Yqg(FyKh;_SMxP|q~S{qUujsNVWEbV
zTIzB9u?BWos^Jr+y1*A}SVE5-kAC?;EGtn&o@I>AviJ%vO^2h)1!NcE{glwBWR9k?
zVwHx~8rEo7ORY3))UZy&dJUh^x1!6(YARl9e@Qv~sj(4SbYM~O7eewTp$RF>D|(*s
z{aV8}8h+7mSi`p(Hfz|e;YSTyG;G!IJtw&6()VJyZA^7epI@T1{X3@LHHnSWVTT5`
zof>v=5;cg#*2g&uDt{ek*3qT^)3Aq&ZKCLahP@j0Y4}OQehvR_4ILkt(f*cf8ptp)
zLwHHHgBpGoA)}>-G*CkZj^E}xqTwi)G7Z0LIHuvahF>+D<T4e{+WJb`2@MrGWZc#y
z!a+|_?YAn8yO?>JDm5=<0#lzu+f(1O`$NMSx=6#HBH@``%Xfze&oQrNN6w4n<RpDU
z3(;d28Ck9aI*N2$(r}q`Q%7qZS2X;ip`4C19p;$ge}#X14OcZN8WI|kT$GBlJPoP_
zjVaAVUW3kLo*pwam|O#2i%i|xZEg7x?9Rqlw)g^=qrnwCqzvC0XCvEP;)UBlLz#wa
zVxSj0#I9>7d^Pp8W#XgO%jr7G>u9J0Ix6VM&{0cAZ5<VLRMJshM-3g7b^g%=ZsO(1
z%<8=gGIiLm=1*xKA)ZBIuYznHRRvN_z_*IJk=UktxAC*{YwB3tD$VYi)qh7R2fgX7
z{5m>vbkx&PUq`Nvx_T<Tzb@@o?%4?MlI^Sc`NY|!fsXP2i&In|U21fLjbC`t(O5?l
z9n!QaO?8xeze+Re_EvuUSP3CTwb0R0$H>8TwXRv~@6U-ol0#w}9kP(nR={>TZr0JB
zLUe?6M0E5RlQXDmr92%W9W!$C&(2G272Z{cMs*xKmwDqZDW5G&ef2x0BVR`c9r1BF
z9d*9_9zB07+DRY<0u~CGJvqW#aUETB^wrT%M^_!iI{(oY8eIx!b&)In7%3s%KGIFV
zQXQL%qTOkAn?e$M2;!9Y!##Bz-xlhnV@g~ma;v!Pt)q`XNRfL*`s)~=W0;QN^iRiv
zzrU0Q>bQ+I_Ke)FV~CFbl^-!kT#_<a$8Rr4MDAc@uS$0cNMxu$NMGKr=q?@I<MNtx
z`EDKe=-5*$?_M1xSNZmr^!vx*+qOsVr;{0X1Jw+S(lJ`cZsFT8Iv&vRp^o`F#_AYH
ze{xf;W6rkdc)CT$BRU=wmlFhhNXHMe!)Z%oGECI*D9zL{Rfu{_$KyIC>*%;JJV{5l
z?C9@>;m0nOJJ>SzgpMb5>{uGB^|gHO$?z?W^Pkf3w2tR=Jg?&!ogY_~o~7Dj>*`NQ
z**ijKYegU45q&|&i#isbkzUf_d>Z-Nkbe6uMEW!_+;klqj>g!|ApaE|Gj+VB<82*_
zise^zyumbUod24R*BQ`V@+?l1Khg>gmw(2R{%9JTt@9^gDw7{>oX<9gmNw4s*(pLe
zR|k>zbi6}*btD?)zpJBQi9Bva=zY;;o{kTMaCUETM&c+R3Ho9kOE}kJr3(aHDB#D`
zhn_E%Y5Uz}otEnOM8_5#TXihcv0TSzv_f=Wp<@+ipN>y;tYl)Wmfy%KqLW9g46V_z
zR>wNd{oOKMhficS8nT{4ERruA4}ZTh^0|(Ul%wMt9bf3!q~l8+U+HMNQlg8V`$6{H
z{C0&A{Z!<M^yt-Lk*&)ce9Hvpym(JyP+r>+rSQbb@HQRWb?jn9Zi#)T<9nu4c60}W
z&OrYu-83nDN8S7m(<F-8spG((5_=J{od`#NWZp7}I`-<&bm%(v>G(;<X(q6a{p8ni
zLdUP1q&j}qaYV;a9fx#W+#~&><1l~F4GHrDfBdK)KSoJ>KuP=<XALJyN!;m`J+WQ^
zKP>pu+356bnJ0Dd@|3u>{aDtyUfG|F%o$Uh^}CKgxQ6Sv%(Y^J^rw#VI{wmeM#otl
z=XCBLBz}qVCOJ;z+s&E8FHiv;e+z*eoxN@h@ol^475afWpd+c{Unb$L8AtERRCHWr
zk{piQ^|M4(f6mV9e<0jDucU8rma2nDut6d;_{iXc!$7(Li;>b1=qRHQPK~xvSBEE<
zsQ}yB6PZ5!HZg}rvF|ko@vHcC;h7C1bEs`O11EcB_bASy+T{&YFj5Se1~__#fr<ty
z37kBrmrnl52C5h!(!V(Cjm~j0)5%!|vW=96^ey2{2C5tQ*uWwKH4M}=@T7q$25K3o
zO*R944Ae1@W1yXZn+@a|sB55!fu;uP8K`dn1{xV?V4xuvmf}iR7E9sZLzh36XC8}w
zu`*SE_^MLn#s)}f+&cF{QAslc%?-3MuyL_OVhaN;4YU#rp{gZ2MuuA(c)nr&$m!D9
zr81>aLR&I7i4B<_X>UL>(Ahwdfjk2t104)>G!QlrF>ql`D4&&qrE=83d%uNmYZ#Rc
z#8*n=l~7C|gPxGy-ys)lkvbVDFi>c~zKJoDt0kh}7Q_p$N8ef<X?!#kH_*jEsgYV7
zs76-<B?h_~C^qouap|@Tkw0ffF8mu>o>de%A7+>C26`B{#X!$Ul>9yEv1)ny4@vD?
zM|&B#)xdy81;h#a8t7->egh-v;iYna1GgI(WZ=0o@c{+~3L@#Z8CcjXHb;pLHZa7%
zT?XzpaEF0A4N(7K2A=&ZbEtv21L{7wGD5a_JLTat=SgW<y?kEYBji*a6S>d8y#_`Y
zINUZ$&RA9vg)eUyU290A42(ALh=GX)#u#|Oz<2`>8W_tgdZEgk0d>dGvCYHHcgf9d
z>D$lZ6X=t9*$)|bn9=DkFIg%tnHq_nPWgvndep#U1||!SotRT;l7X_yl^>_JC&P>~
zeZ`b`Lfox%EXKr`YTzjYZy1<u;AsQT7}#7fZ-!uamhufalcnbbks)~PfsQW-%8LTN
zB;Ygwrwd5tK63nJ1FsmEX@H8oYJfVEPMpYV;_`I^vjjp4>2DgCLk$hgGw_xH`h@LW
z18)m_u7P(9EZ-WX=If59Zn3?`$?{Rk<PQvdD75{^z<eg55~We~XQXpPBGh?-xVzB6
z-c>S9UQDe>G4PFnr3OARu-?FD29|LM18bPT8EGpFd}?5|=tv1G4UB92|G#Otiorcw
zVQj6`4yXDZS!)H)Isw0IQn0Xnbc4V*azPNt=LYWUm#Y445|>22GVtYp_|9Fa;=ry!
zmB0OuvX!nD_!a?IIH^zEZWH)+0ULEqZK8fKu!9zv*k@v=fn7`<6OWqMZQw`lC`^nt
z@jnB53`9-HCiWWGXTUY!8TiS-egkI=oHcO3z(E7Y3>@crW#AC=)4&lfJ8MEOZ<Bwa
z6L!gLCs)eN|E==P{50pQ3P+iEJEC2;$|nr`YT$PRe{eB0aLT}G1HUl}3#9mNdF3jZ
z4>CTfl^^8i4@zgIMjl)m8u?DzpA6i%bUw5A5Ikq#yaB~P!oXi#G`R8@xMJX<fxkJ0
zr%0EWBu&Fyd4Ad@^OCLk1?eBIcq^r=Tm}mx{|d;5@7N_(s4yvPNdqPqc>}5eO)w<4
zOFDDgk_-W#*_%%Mty7uQ(`MdszSPfOQ5dGS?XJdr0|BS4iP|R03|uo%*+dl+*A0|2
zQQkxa6VyM=#0$l8x|z~*_0`PUN_6FKkqi?R&6LiSOpH02+Rt#qFy)*?g}WV;GEHQe
zsAl3O6WJ!Jn)qpK`sDmdU$l&seH7_fFIs=SRNX`k6E#h6SHM8ihaBsO5^dW!pIfy$
zCUQ(PHPOsOu8F!PV4{(UdM4_dXkenD3A<_R@GY^KtK{W1@=A*3+gFDupWC*^Cfc=6
zYr^g;Q=6`f4T>X+!rZPmH_^gGYZGl~a!#bx;Ix(|TA83j4lGFRl(^Gq%f2SUCL$(o
zHu2_qiBAD_d+DK{BkfH{CWugMo<Kq-W-l%#rERMi<x?4M0%=RkM1hGyGqsrK3)n%x
zjwU*pIKMGxXK9SPP2TNnqL+zVO%$1ko9JSqtBLL=dYC9SQDUN-iBdDQO=WgHmd4dv
zqDs8vrtaX;*ewhS9WqTSY?ng^mh6y8XVUgI(Z|G{CWe~mYoect+f58I(ci=X69Y}$
zW}@<`@WOo&x{Fp1E==vON*bp2c$bcp3^p;u#2w6m-EzsX80A+_NEFKvhnW~|VuXqN
zOx$JSZWH&K;2y8yui<-4SW~1qjq}UhQI{^_PLh%-|9%rAg(s<DGCgma5n`~$n0Ua%
zI1}S(_3rRbqLMR~DX}TE3E>A#Ofd1ViAU&%trCgkc}Q@6Zin0a8J@jF`s<Q3|JnS<
zOiVKIjEQIIy1&agCo4T}VzQa~Me~G-DJH)6LQk4#UM|eG_0jND65kI$CE(Kn@^a?X
z$a5y1H?iHscg%JZFPd0sVwH)POiVNJu8H@U$$ewfO}uL2H4`&TyeufMn3zddKa|6t
z|E!O(%EUUu>n3KIc+14wCf;C@(0mhfOn!Yh&dSN_Eh4O0u{^@MoEwTZJrZR}VXldH
zOt7+dqHC<%bcqy}R^B%;&&0<j7Mb|K#D^w6GE=3tYDH=D>Ft396Ay(pY?p{EFtL!y
zT)BXCKUQYQv)IHE6Q7t^Cb~TGOLQqSe`J`&F4jYcENAAM_*4+73~PGSJij<bnX66I
z`8Bl*+F)Xhz}K2sXJS1Qa=OHli@|fc_3_V45FzL1CN`S*!o()#xruMgR0-}&G45BK
z;G-j~V$oRY@U4l>CbpQ^%2*es3OEn_-i-rsXe!21&o-eC5fZ-_vu2lx9|W>PK+<=b
zI5ja<%i6uK{BDjrNB)sd0fFoh@Uwmq5`QwW-^42xW?DF4;-HD+CQg|6nUmMVQ4{ZX
zPJJ}|7a_J|hv>?)(qR)v82Yo);4dY@dta1}ndtb0<h?5WYT~4cn1y@`r%asY?66S5
z!fz&iH=&u(nLmByKRCe|XcK>$IK#EHOU7AxU|r5RPQd=*n-kG%??#-X(F-Onn)sKu
zO#E%)l8GxOdiToMe=WK-8o$gOJ1w1lB|PkU>dF3(iC^D{w5wB~m`IpNno#M$Xq>}Q
zCJ_o;-zV0;bNt=;@fO!3hRO3I1SU)-3D-#zjtQ6Zl!Km0EjyPFNgRlMv--<y|CC8(
zCa#%Cvr<bIMdcieUgrvYEJ`)XSt*1&N#f~NO0mYxiZd)!w9vppLkpEGRJKsdLTw9G
zEM!`!YN47Cm1QB@!oD@3T}M*GQC0T6$wGAtFLaGJt58tG0v)pOxo}MjXSa0Y&~y<k
z<*hmvaxK*5=oY9jZN$Pjnd@1g&h;&@7cU!kiy!YAhlNHK+F7{SLSqX}EVQuD(!$l&
z=}j#(v-l=+w8CnMkgd6eOXWupq38FU%x-0&wUzR48w+&H`F5pkEsR?e=b(h`El3u^
z79tk%1Y5|$u8A3Bqpxl_zt@?DQ49AqNtcB=RKDiy2<3OM(9y!(7Vfdo$wGmJeir&$
zD74VoLJteK2-AuzbhS`yA#S0I@Y@T&No)@{iIiCAW}(zVcMA+tiJh7kq;uTxN2y5B
zEj=ytvd~9#yj4K@kjj&@w*{sIHKC*W3Y<i?0TynvaJyh0C^UcIo3ud|23r_vVVH#>
zBGA;~P78Nfsbm|xC6zXe8lySf!k%?GcUk-bZzlb~a4;6s>Rt;YEIe&-2ZH-7+;8DA
z3zIC2v@puTcnc3Q5EjN*c)-F~VfzgSQeg_Ap1d4qVg6_FNwXtdY9?5C$il-G`id>?
zw{Juqu`toXqZWw2wIqD{XmrW<@|dm>B9AjtJL0r%iiOD*p0Mzwg*u<a8QEV7vv`Yn
zLXS<g@RSAOUq3Ig*RvL$6MmR(;d!Q|g=ymQMG<S7`4R)SHomB@Oxxc!q$<}VHM(YT
zlo=LY7O6<(Bgdkz(qo(mHmcZo-NGyjKUmmd;SCG3EqrQWrG+;w%wgVI_}Ic*7T&h-
z0fV9roonG83-4KY-@@{TbKbQOTP(Aj`1qZX4}XxK8J|9n^DAD7M2<_!hjfvJk1Q+@
zs@~wF95Se1l`axQa(-fAv4tfTmI{HSP|gjuWpv<5dAWrZ7B~tknY<*j%ED@PxA2XH
zH5S%d_{_ov3+uRqp396~t+M{VE|kV`Kew>a!dGI%FN7%4zqGJPjJT+0j50~78qMWE
zMA*Kyu+74D3!5!$5k#82RrIB4<mcsg;_`bjC@Jht2KL>_Rl>qKPCyI0E&OQVe-@5d
zILd^yu-C#t3qNzgvG5b;GP_&gqpkYxI3KtyhA-ji*r5=gM0$SlAq&4)ILvfvk<yTd
z1)p|~^MIi2REUQ)$Cx1&PIGy;aDtg&;Ut%Rrm<AQr@U>Yo<3}R;PT1EBY@v6{9)lw
z3ukDQDh=8$@qBHY6X6rz`#E*?#1p0S7XGr}TL>&%uyE0WW<j^`H<u#|S2)4BY%UMq
z*DHI_(8`x->EY<&WpN&I{mXUCg2I&~o_a=KSyar2b;3fTP3EfK;z<jHDs!xJoQPq;
zwBQPNSr%;CcxR@=Rk2xd%}Nm-Rd5JO=0S#M;ia!bJigg|IQ5h%vrx`Pnw|3VH4E1*
zP;)+`Iaa!j@;3i|Dw<)Zx@^2Nvx2y!C+UrfHY(W|a41Aqa|rTh+Q_mo-o}GAvTang
zQDCFcMl~BZ*=TK}jg9IyYS?IK12$^fsAVI^My`$8HtN_Y8=L;Xzv--CJT89cvdmJ~
zMm-z#Z8Wg)SXL2BDEyiK(Qf(k>>`#ONa4@<Mm8GTXlA3ijV3l8nozf?fUG~vf2;KI
zEvetpEo`*3(Td7!lUaUARU3B6lZ@2Qc2e5fXlEm2BP<whw((*gS+ddI#{R`p>tiwg
zHh;56b{;L-A`y?+h}y`v(SZhDkIFX6jZcr+I8~*Hg{EF#hRMTP#N{92RJEgxPBxaE
zmKH4yZQLn$woydC*%)XeZljBhQXAcE{xAJ<U2Sx;Q^loX8znZVHjU*keO8S&waHny
zE~kf$)s6Fe*|^olEjD`ExPEtC%H%_V<(l3$`q=1eqn}`7Rf_t&&VMCyJxWXa+hE0@
zHuAZTyv@e#9MQ(THU`-kY-6a6VK#=)uG7*THtrPpFsf%Z-CMI-(cTA2smySOtXk1s
zHtx1lB{f!f5=~-^!m{2G+B?F=eKyA07~WsLpUT@9ZDS0@HY^?`jGEjh#!?kIi9EoN
z9Su<k;hXPCq>Quq)vyBgoxs@HSZd=F8xPxf#Kx;OUb8XL#-lc#v++DL!Nw#TQ*2DN
z@wko2HlDEYBop#jtlGW^?PW1!<Uy%t>*$GXGV5|r*?8K<Gd7-OjJ}MYI}ss~o@uo_
zOcxP0C@g+~LAUX;jaQiMLYZkcrVDeZBpZd#pbibAbZq{i&`jZE&YGO7RhUbBP`++s
zmW_EfKCtnIjoCKdvhlXf|7no<rj0owpe&#<A%~rm5=yFqH`m6=hSB$Jyd#iz1$<9H
z4#Zom2vy%Me`sUAjfFNow($`s(RO(OC)BYRqrZKd%uC{n7{@KrVjD{Y1MyUiv2`vR
zi-gN;EVuEEjc;wNu=xQ;the!*jg>Z5iJ-5gIV5fjtr4N8k}F1r8GY7K*9is&nhI~Q
z@wtsJZG6QXu<?bBO`H_1bD4qkdE?wDYo`n=@vrH<rSirBbvc*mYEJ6SHnz|kHul)q
zYGa#?9X58_*ly!H8$WQx7?WC)zh|1A53|=Bi{;@xvoo8=7{^^UcH8*TPL&GDR<Cw6
zJffI$jW&{VuZ?{+4%+zH#!sBHHV%mBFrAps<m7awWX_#KHrD)Bj)wdq7@9AVsVX!1
zsEuQcT7^clD>OQ8<AjYy*U|Voeq}6dtn;zn$0-}9nT;-9bMc#v-?<n%c*wyYHvY8H
z)j_d?Gd9i&2NpUwXXCt$Ob1yG{^As{;o9(QT(t4G4b_Hb<C2ZbHWD_HHV*eFxWdG<
z@h_7+KVISAu=bLCRp1M1$A~Lj40}Y0G#QmH{hLXo;NQ%`e=~I(rVYym*$g_iB!BX)
zG22G*p-Pn5FA}5e4p*w2;-Bo0FVriuam_{`@E>+We_CDX#kTTw8yODDFObSPNOO=*
z+(88geR{>DyCSQ<DJ9R>-xWWWQ+%#@X+;N>Xgj~`DHy6axU*Y6<<D3axic2ec2Lzp
z3kNM7RC92XgZd5{IH>NRhJ#!Obsf}nP|M*z^g|tv@^Sphha=xt%{zW1zN}k8<I9q}
zHJalf<G$EmBVyY+Mw)z)Q_sPKThos1i_94jYv=$DnmB0c;FA_<jT|&~uwzmNIp=PR
z^OxY#JHkx{)!ooDyP1RL4o>PJ$|rqL^U_uhT06*d5OUDQ;lH`V%?{c-sV87NO54u=
zL!Qa*RN!c%0?7eY8hSR9bZQlL5OF{aV-BJM`EpDSCCd(Wl|?JB%4)YbHA=n%5<3Xk
zQNT_D76^Fgi1fmUtj-RK9GFvzZhkc!ci<+aE&@KUNF@%sIT-HXE(fI!x;q%;V6cN8
z4sLPK*FirAJstF-=Y`t0I_NEsvisBeOe%UR9FuCMf<E%Lx`b@~9Sm?VkbcOF<|I>;
z+t@|iy<Kz+y%tNKDOEGO4PhJw<qiSKnR_vvaHxY}g3_{jN;2Es4jypu&WQYb9Ng<*
zgoFD8!$<)uoUTHi`vtzfBvnry<$zj^b}&XD#GP_^V+F%F0m(Do!Gi+d{k5D?VZ_4@
z9%1IVXy9U^!+#)*eGYzd@R);14i-CD;^1)ylO4R`V5Wm79E{yBO?B`T{Vec@Ka!>h
zr04Y5(+-|-@REaR4xSan7aY7OkmnpcFA#P=^L@^*n@c`@x%8j(X!T>#bO*af<;-yK
zG9z9o@_UoWTtBpAvsC|D^y=f0R~@|O;9UprIe6W{EC+KOyyf5x2WuY9neE_BDjAJV
zxfXrnQi`9AecyI4*TKSr8SgmQu(jKTYf^Vb@~(BNu1mz<cQDVve23p+#s|V1A5!3@
z=<9o=k2Zv;64hA1?hZb7u*l)RB~0nrJfjP3+_5%(aCErul_ILQl*#O1i-WC9R0qpB
zmV?h7tZ?wDgY^y)O$t^zSVdJGtaY&3!I0xoT1Oq8{o(GpJqw;ZDZO?)x{l5~DN%Ed
zd+46b&m1(Wl6obKF52i|lY=iEd_nU|;$K{hQ07b33clj>&nwwXZ&xe$TEK4{e9NWa
z$7rNRih%+jF5y-g+ZmLr;r}`K&cXK%c5)s$_<?hoQ*vj#`<YByP39WU7DqP4@6NCE
zTlFft9sKBk(NT{`B=Ro;C}EF~vzPN?dW?GRcW}Ug>OgaF(813R{^a89;E;n~gc_$E
z9A;`=i?SVaaKyn;PVG%`iemIhJnrCxVEC2GU}ga|KPfIx{nu;gUWvrt9Q@8@kWt<&
zu_IL?@hlgA2bUdOad4iCzk`bo{ubk25Rh3!^T|o%64$PK(-wEkq67x<9|!+3G!)w;
zGD68@0$+8YI7lInN9a}3*^(S_gG5AkU~rvuQPG9zz;fU_2t;?=fx{(*i^-!o<n#oQ
z2(yu@5-D?VO=zC(;<|%!Zpw-@7aWM$$ec8WN1kq5N@95z6?k`pH0z(}*|KQX9pOqY
zD!ZuVqP7cCs<_B<k?msc^m3Ul|Dvr+$K%neE~>exDHv{Y!Ev|M3P1jBoVHYVQNv9c
z#bz%EGsFif71VK&<D#C6gX=RWGuKUJQC-UPLu6~j1>qx!2|$N5bO9H)y6Ekqk&DJ|
zYW42nqKS*9E;_jA=%N|ba1nA5cG1E`OBZcjv~$tQO)buBZCtb#IM?$lC*oZ2x$NKU
z!mpawUch=SBE%(u6UlS=Pk6G3uti)%UC82A@}DR#NsPJ3ccJZz@WC-Fqo7<)xRZ+l
z7u|$<g)Ta~=;ETQi#Kbff3q@P<Rb2-o-cfCmH#PD6N+6BzkXIKaZ^ts5<B}LKJQ9}
zgzf@zI6jHUe2a^of<nBPK%`{3J}&xlwRG{Qi+(QpySUfI2p0of40Lgai#uK1=Hhn2
zKg7lKj*+pqrwwv3ylU297e^LFlE1~9d>l_UO($iji(xMAa&fndN!umfz4foqaM5d#
zRn)Rs`d_!zC32686VFQnx@X_#;(iz7T|DSwq>E85CSQ+^qu-3^XcuGY@Ni^|iw6XM
z?`qvHe;eT~66=hsOHL{?!No&N3>S~Mcy6sk`FvcC>zLXZ9=9{85{G+CC_kCzAC63N
z@wkgMa@v<iB(?{Rr#-=#x~aE2rci>5=Uq&7@sx|FT|DFBS?0sc@Y4&VhQGwe9tnMX
zsoQrOQ*SK1;NnHv<zj}*{}~&4$;C8wSs=AP5GUk2Aw*twLFQLn%%lmAm7e-6-ZLYz
zVXCykzIV*5*y}E4xmfODg@-p>%x3646nc2m#T*wGTwHYVmW#JtY<97QS?%H-VaOU6
z@49%;#m6odxp?2jJQoXGEOhaKiw|AQckvOY&z}+xYeHYkJa9Q|ce-&p!xJLDA2qfl
ztLWy`IqYIiQWq;+eClE;Q^>_Ks^q3li)!Bz;~Pypf#N}u{*=TM8J_;Ebg_yl@pou7
zr}L?BVcmTGGU8zq&wZTl<h3r=xmfSwGrD?;^o@%RE<Shp(L;RUVpEM_Jn{MTND0T~
zQQ*5%rA>nEO99FMl|a6xbyHJ^n|Cgez7-T6oNZ;EyEx?H7Z=;<RTn?H_#ZV{B7N^-
zhl`yqesEKVjO=*1Wo*)VX%~%pBYn4!#<L_UKVX%-$HiVw>cYqY7yDfN<YK?LBts)p
z;xX3B(io4oPTv|iD1?*qXBTB3R^~v5ne8rqckzdidDO)*PDY{OM{^pSaPg~))7<I{
z@13OZUGn6GsaLa3F+UsU6Iq>^I{c+fzR~oji!(0Hb9Qf)&vKF3n0}6dC=4?|JRPI9
zJU0DH+$E7bf4jKEwaY_e50_nBaZ%1gnumW}{L7Wxg~fH)h2kRVLKPhoF6x{r&y&Y0
ztzt?3LGGLenhQhR(z))flr|2kLQQxpzEHMZI4%MjD;QiZP|WSz{L)2yJ1bTF>rvY6
zi<|O!D142JKbOacbDqsA&q&=k&E%nKx`*-}YIvyWp@N4D50yPs@zCIpay;Ox=%JFA
zI>yb}7JYqbN}o&*Ssto-sOEu(lJhF&@svE<0}pmrERFH7l?RJAd0-y$aJ;&QUdv=6
zwMg+$&qI9=bv%^oSgG$(sji0{FLe-~>!lKpB?1PKrqQkj9vXUpmwNS%qjN4qTgY{O
z5AoGFQkr;Z>LKKz_ZGRChvpvId#OhQZ?*8y+Cv);Ej_gIV4V$d;$+V5My=XX;bOU+
zhnqbFOJz<6z5&SWN+tG=s3auhd3fgE^p#IX&K?ehJw)i7opRJe2Z0cmJ;Vf_FJO)D
zWfIvsdgvr56v)fYLfXR~9`R7*A?~4zhpry(^f1&zF*Whf&qIF?-8__fxP>0@aC}d3
zcMm;0OkZE}Mg8cax%u1Y=GS^Xzn2GI-b#Bt{PcD{@n2eWBkbeh(vH&8=c9c+5I*xk
z$p8-nxfWF^80_IT5A1uphe00Ny%D*=Nr6)yEaBx44|fP@#3_oL!#oW4Fv`Pd4|jRE
z+rxcA!abzCnSW+({s=}{bQx4LZ`#~^D*5-@`S*Jm>7nhLDLtth;TR7Oco^^DLD7Az
zhjAWemS*!7`7c}!Q-=wH@{myV)gR*<M@Ojq-t>Zr9v&sp!yFHfdDy%!@`8sKJxucO
zxQEFep78KAW8~pU4^uom#dP{2r~QoBR3=qUm`~@$9V2`+^YO~Z`m-LM^YFaK4^CzB
zdCKQC1(MF+oBa9q5)=O8_zVv(dzdD0-knb7s(Ji<$6K#>c-6yeUg}5ROitm;((o<u
z*FDVQ%I{$|k&FUv#ksHGxD?nZC(Lo1tO>p4;cbxsOFYc=@Q#O%#pSym-t#bzsveKN
z@1=gOvVFKRPQ{3P;Ne3L^MxT)lEZ!EfwvY2NMxZv_|ur(7kOALWD@6~%;BZt@)H4<
zF%^G`Pudp!)Wb^Vn2%B)t30gspnA|etnskc!)^~h3jTE-zVYy_hxHyl^RU6g=N`WD
zz&a0K)7r@N^RS8j-zBrE#%kx6;?`b6nzy(c-&PuYz1-Ja6UIbX(%CH7wt3j@VT-`G
zdZ^pDGT%UB4d*+~g_Y6{4?F2+kAMD?k~yzR5sN>K`pSHLj%B53>vDF{OFQLxZKMD5
zu!oNFaLU785BoeEp%a*d9`<|qg{#*2@Bt48J^bw9kO#hI!?I7GrSd0Ai1-ecZ*R)u
z`Q~BHxW1_hDj~aYxMQ4doOCQ6diYg1fn_n;%XhSB*J%&GdAR7|Zx6qF_`}0F59gVL
zTPo1ie|k9M;Ve}$Bo=a6x#g>gr^d!O)?XfGjLEs+VOwrK%gB6*j{02U;?Gso!?J<l
zD_s0N@Fll@g~wPaW$ly|D#~H`QSp%AcH(-Jen<+fvcF4J!gUXZhZa6s`Y^eyaS`^B
z?Zfuqc(~@_x)AOPnZ5^)o~c$uix`x^Lz$q{A*?jAwpPwZnvV=06@8@pDDR_1y|fB`
zs&q_kS-0d1lPow>u}VHF`>5h0(@z!2XMHEL#78gPD5;euQhHYPQO(DnrLiVHZt_vx
zM{OT<eAMt!(@(jmmJilW`NA6^eMJgK$?=ivqrQ&@wBn|`x<2apU?$949cLlBM(b$a
zxL89U@X^ReV-B$|a+ek1C|#CFJUS;rhPDZ*sgJUkQfK|mIEtTo3eaPXcgn4NwDwW#
z<M}gE8y{_b$Ub5|+WENIN1l(6kM=%lJ(nQ~CE1Hd33L(FV+;F;_=x(T^O;U`BTc5U
zi`z!>eRS~A*+-F&jy^j1DDY9}r{1NcU3?pm-kZ=rMx4QAWisxg3r#p0>gr=|{rnq4
zu)IvR_Exw==)8DTYG2pgM-Ly5`IzM679Tx*^z+f*2j7Z0{HxT<$E`kk)3No#%UXx~
z_#k8*sjrU(OC>V&O-ciN4D@lokC8rZqkH?wclfx|$L#_i#O}Q^2K(U2G7o%*_-M7Q
z8<C+thWWV1$Gw7WxR1Mh-0g#husi~8*<Y?aF2X}q9t86YeT0wue0+5-lc%Mm^T@c;
zj`%1aqkW9^G0w*rW@&#p^mge3Lc)oMbH1ourCdLm#PQ6f0rEpW9%R<_iB0fP;d+$q
z`J>T?#jQsKoG2hUA7v1`MTtD_W3rDW!dFlDc+$sgA8-1Y;$y0h={{!oc*@7qK3?$g
zqK|*3Wj^EMIY!^dvox*#F#drF|E`2i?z1-amnO&O=fA`t>gm%cv$Wf&_QfmrNc=Ms
z;xGGn#mB2YUi104A?Y)Hy#8tx{#goJ%lY}O+UCCQ;|<1TN9imd&rHp1dopwSW~tu7
zFe!6rGSk?{2R`0rxP83i<6WBbK+cj=*?%X)<1UwbkE!Bg$gSCt!F99mkNiF>MtC$Q
z{GpHe45g2S%sOG|@OG7Vepsn{IKqw}i(ZR-Eat?&KSi<K(CDwEqeJA8L*%7CK4Cui
zSngxarub?fD+IDqz)yV~y{FQoo~e2c@2+A5Cu9;~TjOJ`j~~xxVnXJ=J<?}BHu!j?
z3=_-nxsQ#Un*p2vU-;O>tO#&-fG-(+t{wp@2Kd^?H$ML0^!M?tkIkG)KK6<5ZSnEF
zj~{$&^|6hqbv1LlkMC&RbE!HZbB3pud@EpwkDWetQwJZr{L~vGOc>@Z^NMdB{LfFl
zys<|JB$4UIWMIPl#N~)a`8ej|fRBSde(`bG$Il!t8b2fwubGs3m4Z3U7h{evKNG3G
zeMVHKoc=rx_HlyMejlfO^yMkAk2^YKoD>RBJ#sSPe-qL;=<givT9l%wJahhxh|WJg
z{`GOz$2lM8ef;I)f{%-S>Rlj8IJh#Gua5AYgui`U;abPPMd}l~<l{0=8T!Q7_{s;T
zAvv%5P<;440v`z<Nguio!-vY`-&SGimI@kOx+X+sYQ-0aOdpn?db7wAX7Z&So4I;g
zas(vea@kxMC&D*#sBIaI;({L_JxJ+xo!Yi5Ef;{IXd~TAvE>8o?NX^i0KN;s1%bC{
zFY!tNDhJ39&>=vT0GR=r1ZWx{D?oODoB+82ss^YQphke2%m@C3SAgmP?k~)m{BTa*
zA5pf+_tmWxpmu;d0giRb;N_X25yHFt5P3@FNZkPS0yGNHI6(aX4FY~lsvH6^C&|_@
z05kLZS=mfrN+Xfo4|T|3_OcYvEI{)B?E^>wS_EhrpiO|b0a^v1<kkX`Gp*4uLQ<~t
z{}TkbIl%YlQ*uaQBa$bS4+n?@{0bzxoXBJ`mR+I&<N&b%uiRIcB{FJ4m8b@lUw=Nc
zV}MR#h(Q4g0+3!9ptDezcu|0OfL;M^rN97P19T&EfQhRjr`E-b1C#_fa3DVTM5?Xc
z7VRG3Qj=jl8W;4ufe3hufV7>xdVUq}9iUHu0RaXE=qrZq7ofk8SyW-fo~`k|dn9tk
zeuxv^7U1>(Z*5KCl+fYN=-wYn1_u}t;En)y1{fY-<@wB^0a#HP7Jz=BUG;KG85iO-
zHrz7(o&fg-_&mVI03!n27vR+ZuQ9{{Mh18+z@z}97_tBl2AB|F45bAa7of-7d{)}W
z2H5m<oRvnF^_tbrW36vI9ko2pyAK8Y4=t%$?jr#nD#)lls_u*jBXdK!69YUd=q!4(
zv7-2RfXM-#5AZ^OCjvYf;OPL*1eg+FstDXu6!npGgP)b*GYjJ^(mosDqflD6Q_^$d
zF3Xi4oJ!T-UJUS3faw8d1bA<2cJ)h{(*m?E&1MCX>OGoK@G`?4U}li22~#X9#w<+}
zVa@#Y0J8!t4e&{THv-HKFrT9Ycr(D90CNMpLx)p-wSr?q>%Pt8%;-Y>Z+$Sr?(cHA
z03QU{rb)kTkWT&H?R|mI6OhEmI>bMu5I@AmOTq;KKIW_puu#xROjY1V<tz@cB*3mC
zA$pQyu{_S2{IUSc1FRDcdGflnBEaeZYXZDDJ@%=9D+OG|pkI?nBpmu)8jljzati+#
z<>h*c-5`AyU_*eR6-H3`Q@=+)oF4mvK@6~ms|1r|VA_`fz6tPckUCuWN_6>J;J1`!
zv-@V66JR^jY-rsryt`T2Dj);>9p@d@4pQd`JUaP--Z&NC8DNJ%h?l)yOvt-zy9L{i
z0sbctQW%JR0e+$m0nP^4&*>B3M1Wrd91QStfWrZf2<IOP@Jj%ek?EX1`=t{nB&Om~
zu0H{eGlHSqPiy8~J{)1Cnl>^OS*Sl5;1s(A{AW-phX3`>$htZ0H2t|HzMX%-bwT<g
zz;pkT{^Z?%q7=)pGSkilI3M7j0RIN~E5L;Se{;fe3e2c-ks0z@xmOycb0Btka(vEZ
zX3o<YS2%w^l34nt4)poe07?KYfG+5X0IG0ul8fr%$i9D~OqGru;;hCS0n7ka0Cwc)
zB+|6%x-@EN-LDo%ZUB#KZy9Qo!4D7wNGn5n8F=zoCQ{;BfTHSYEgFTdi_3ClspXpO
z%8b+>Xp}GG_XSY73>C_-d16t9xLZ-ct7*~bACW5m@mDQFW*M@?CHrOz<Z#FQonM5i
zarFAB$KOq5=$e*7YL=l^8M>9Bv<$V&P)9Jw%aBus+%mK(L+disEknIBG%4eUGNt-u
zXix@}p-~xz-<thsQC36IC0Hk^L*=crGa8rS_SPl;w6DS~6E{Ll%h0S0@77IkUWOKB
zXjukwwz(o58Ya&wpGO6Vw<$y0GDOM{Ekipxqzrjw2$f;cp!D`-nEF|cR0eLt{vT6U
z0VTEdy_3vjlF`MjybmZY%g*c!&cH4U1xk_PzDRM`Qd|p^;#!InC{P><rD$<4?yfCf
zC@!7ke{&)K^E>CA?|k=r_ucpMEXhnJ)AVeVE~p6G7gNLa!@-#7c_opEg)tF{iIOo<
zit8#C6UAeqL`+Z{s1~{sql&0t#`@vXF;RvaT$W>Q9~YqpP?LNQJmf%b<)~-aA&HTc
zWG30x#aCofKPDQ)M5UPcEG8<)M3tDR!+O=2_&g@6$3%^os1_3x?F-g_SZP&FiJDO}
zCThjRm()cuvA0PU5`SwLrbD9!(4kQx=ek_#RF6#cVuG$MvrV!-J!lvctz+V=m}o@Z
z9urMsf_}r^EGC*$s9n*fF?!gnEIpi-8WZ6^;#<V52jN!FPok&7S~73NNFu!wfv^ot
zyyXcUW1?+Lw2O)M9E}2Y;NsScDe{DtzDnrCZk=PIOH4!!>%n+>1dgzKO!SC}?uO`L
zh@LUgD<*Oo;!{KPj)^`oaWEzh#YEqj_&O$5$HW>M!I=0aCcck}@iEaqCI-aBh?p1|
z69Z#nP)rP?L#UT!Fcqnz4~dDPq_0i5T`GxQV^Z)$klw69uQVA>N4mj!GYq|Jg<b$M
zDki>-iP7Y|H?hjT#4#~3HYSojQNE)d>laT&e%hBvgkG*PjwbE+V)RO!2{AD-CYHs-
z@|c(u6O&_NX^ft^4bv-Dro_Zlnl`koeosiZDl|PN%1sQ@D|cppAD$5tGkG{>#l+kX
zqscg%@khovjIoQ>7xa|o(Y%d`pIBTF6N_TvXXXoI;)Bm(HkU9;m#k7B@E2~+zX>VS
zDoQJ2VkP^~`&FntlvZ)WPP`7UrHlWV*hsnT@M}zv_#5-}%r{W8FGoqFL@(so6cd|c
zVtY*dLB|*qbc~d?(qb7JB(jZ_gD0c(ij^HPv6E(IOzew^T`{qndiajCCuY5i=4j_o
z=VB@Jau{kb_3-|fpr%qf5EG<-;Pfh+!!dCrCZ1AmO#DgnDkkp5#Qm5!78A!~;&Mz}
zp%%u(Nm`pRah4W)yG*BI;xz35CxTVpg(p`lMpe)&cg`fFoQsL`F>!%B6H;2Y&a!%c
z<YG)*VpBN~i65JsyMCm9wNh7O;u;tKJ0`Bj#EqD^6%)5(^nIwHB74WX%Laq=LYu91
z!tLHg?!?4jG$(^WN)+LI)lz!i#Je#;uQ~egvZDvox1B=|W8x8u#2?chs1*GtCW;(Y
zsVnI1M%2zHJkzL8p2fs-+H4KsGsKISco`FtA!I|mq9sZDJZ*O|@rHVMLilY=yra#t
zT!>~SnKW;wZHT8y9-|3aInjs-lRBqNklwdL=JyK{C^)@WM=^xM5Sk%$LpTkg8p36W
zuUluKc}uT&qQ0V0qeMmAhVU4I7D(YGGQAM#_JCwMB3d<mLj(+w$q<<h5ocKaoYoNO
z43UQUp;}o;NpFY@hRA5p4s5Lms=B=qA#yUV6e(E@k<}2N7$Q5Z@nA5UA*gvYQpAY}
zL%<L@43X0iBvNDO<y18B-d>8QTr!8%4(2wjb6M07<qVO>5P6frc@2@z5cv&Jzz`8b
z+*lYXXoy180QM|wh$4oFH>_W~3tw6KGUDv61p4T{s38&zdL=?6XjorKWV#$5Vv}Aw
zKw_8<aI=$sQI%^%d@(~5H$(}JT$+)pC~1gN%;~3jWKt?)h_bBEGi+p*H$;*lY8#>s
zRZWio8KR;gDjC+#-YXa)#jsvz(7k0A!q2DyhN!`<tzw9(hWOkN)!3ou4gF@S<wNNU
zLsX|jz7bC~o?Q^8cMFhM(-5_|puWZVr6HdFVZBv=zD%rZh<b)-ZirOQt#61XhM;d-
z8W^IXAsQK?F&$vf;PoA0`ud4}<4<2;QCRwVuBl;tN!QE}^!rC5lv)^~wIROZ;w>3l
z8P*q1^!-#DL$ozSCqr~LL_0&YH$(?2$j!)`y%_yEkBXoECy`!>K!kqT*ToQB4RLK-
zVmCw3w?EXk^gG0UzC>yR{iLy{A$l3&2Sd!JxnYPth8Sju;fA2ciu%$(r-^*S$MQ8}
zKkDA>)+cF{`Ws?^AqKKOh>@O~8q9=phZtfgbFH=Y;o%5sydfsh1T(}aLww6w;|wv{
z5MvDS9h<Me@{#9Q>ZQ-DD(2pelwRaPb^UuojAw@lj1w8->seoz4vNK3VRMEdW*TBD
z^J#{dZivfwttYJ7zp!u?>qK_nkXr4s+Vi6!<{09jAr2X0t|8_bVx1v=HN<>F(0$EP
zgD&93Pli}vh=qn&WLS^xEH=cr_F3q%@Mk)2I#cQLlAdy*8<r*Hw$^%TWtkzC8)CH~
z=!S@btT4n%jz&CP_e_MV4C{i^ieKKlhQ{vC__d7WzupiV46)M?bUQ%iZ-$^7x=kEv
zBQ>6SuVaXwfXWc`Y&OIeHn$q$4@2x=zKwA^mm*KPH=!G=GN$!-)h?RStnV?zK90ZF
z5cG%<UG7p9RNa0S4=|o-nB}k`j?m~E;;liS$%v!0xD0WVbB`I~oFUE|;<zDBaFCN6
z`K%#M86tO?3KZ=$>t`6rq-S8L4Hpb?(GXV*ah2lGmBx8bt&q4(i>{-UOU<AsrsmS~
zKZdwYow+5Ro=T$rq?-|X>E$g$+&08xL;S;8cMS2jA?`B&i#Adtk^Ju&;y$;Ko+h$x
zArI26U*ZE+9x^^+q*gtlWkUPBAzm87deF!a&kXULr^ko;wG9uf^W&7tr6}wx+C#Xa
z+*^WVrhj2QX7kPv?`ajAB8@5jqwSjZc2nr4FbrYRR&UZLu0k@c$H`>+D8v-|(iOci
zH=1umgqlioh9an@aFJWfEF=E$&|M)-3F;+6w`o0}<~4=S6du!hGL3FOsf%(BmFdoo
zlHU{oQ<QWTU6~_7nAQ~OO!4D^_-v*~&m<FL22*4-1$6=ir+aNWoXn=kVhZXRQnH%X
z&C%$w#Rxw!MRqPijTEN!tR3B+7gj?#O_9qK%Vn&P@u?|tn_{GdQ4;c)BCjdFkw7n$
z%V&!Grg&zG=cXuNih`!-X^LK^C}fJlruf_x)l3l@94$f(Hbp5@#G9fhD+#7ZG)0(s
zkkAzG21UozOCo1V5mOZBtYVC$Bz9>|Si%&2M_LY)N}D3t6ctQShJDJKB5I0qrYO&$
zl1$NW_(xBQJl>f~MN&*r(G=sy1*@8(5|^rMikXgzpD`yl3SNcz-mcNcR};t2^X;GK
z`@$5}P0_{_ZB0>w`pp#eOi|wywM=m=Loy|b@TDngo1zW{pXZ}g*Az>hC*8@MOjx9T
zuz@KWnxdI0n$w^RjyB>-n~*ur*O-;nU96@y<*Lac)f6pEvC5g+nw6HOXvJ>iv!`2>
zsylE#<ttMVCqmfH6o*DeyPBeeR;s-zI+&s(^Lx(J&YacB6i1w?l-tFm=iibkX=*AJ
z>1K-V?Ae2n9CA4;_BKTys@)W;skcq>wJD~XVg~gm4LZ#zQ;ai3e^U%F#V}J0H$~R5
z;en<YWQxJ2IPR!;Vy^GMG2tP!F2;n1a_-dq6;irHiw}&BpebaEZ%r|pb4j7HqnQ6X
zI6B4@gj8y*DafDrH!UKB-&3!eVv;E)n_>bx=lM#ZiY79r;1q;PO)<q(jzA5dP}8{T
z3N0g4%S=<uGR0yV6jS_QirJ=E$W8sx6mv{5-xNR5LgQ%jxD*BdXSCH|Y6eB7iWX4t
z{S}B4E@Gdb8L8?IK1*q(u=0y3{+<zC#?i<>Tes*6QyiS@TWN~-bA1$(lr^SUOARo^
z2~(`2Hk;xPQ|vIsdQ)sL#WotOfzjVgv60DEQ~Yj<O{UmviY=zd<872*O-)!Fde|b;
zXh@Vu1vc}y^iiUM+qo1u?=;0OQyie$S=mh!#uR%^K?NyVs+zjb6jXda=Tg|66QhKO
z*x@jVw6t6LB7>rTn&K!;b#|i~$%j&ZHI=fc_(@ZoGQ|y3+%&~$Q=DP9E2cPWigUE@
znc|Wu&eOyHrnqPds%yI4cnU(rH?Vox6mdx*YW!7GT%&EXg)ie^Yo1@{Y45y{a?2FA
zP4R%*W{NwsiSg>bOI>XW@(B%&KA7vHg)n4r^qwj1)BKzn%`?(UL>{s86UN6h|7l+x
zYAu|U;ZY(_P4O=)S1+WTR8wiwcwvf{w0%h^BH@)OUYp_*33ccC-tgAplAuX=OPdT0
zD2*}&oDfna#Ax$3g)BjlK#EEGKa+_ELu68FGBfIs;FLgFme@J^LI2=DIw`sYzl4AU
zw*=azD0w7!CHUB!HY7@ERlejn327u`l8{+KTCOFXg!CNzL(B{kGO|vUeo%I{4rY;%
zRRUF)jkEs0h2)TYOUW)lNPvVK67ovO$38h3KV{6tEhp#PbP8bQLlqQ<+L>QMK?%=C
zq!gfYL@bFKNlm3iRERuBM{5*JikDDSLUjo>BqT@(N+>R&goKcUkrSiA!eR0uk|-g}
zN`$c(;|GV55=u!ZFCj_7lA+Pkj8VoijAbP}QB%hZjp{cll#}qFg>Ok9nk=D$gvt`C
zNLV}9mm=XCN5x7K$fu%&9jAh1lKvS*2t;qUEml>+Z<`Z{S7YUK8WC42>7;yN$E+!#
zmV^cp8cO(*570LzT314C>f!EDDqhF-tVd%v#u|e95*|M)Tm4blMiLrJXfL6IgeDT2
zN@yjaHM=#F(1JR-YqYt9R8~T+)C1>&WrjpsvM!B^QZ7x=uOzgk^Y3trw~;{8_ycdp
zBAFc}bdu0ZLT?G3C3KN6WK*!agsu`!&-GD}5B}XGyuXlActo^^gq{+rxl+lEQX5xl
z9|;{Vru3EYwS-+QeIN9G|HDcAJ#DbRgaHzW3}hrSNWx&Mj?JMGhTHluCL7;JD2<Rn
zNY39%7%f4PA<GyeVXTCs5{^muPQo||t0k<F@I6g_33DXOl`uiV@u|V75~k5imM}@e
zWC_{dCp1xuPLXi%M8XGts(WNQ<(4S*108$s@C*qvsh^jpOvx6VMYA+-;=L}xTc0P+
zreho$U3wt&qlEsQqvSbH!h8wKC9IIJ>WgAOQJcqwh)`M}VWEUY5`LC2)RnqK!cqx8
zG)Y>_*uPNeU#L}uN@uzhA?Ibx$t0fnQNl`!(>s0@9bh;@=H!IZyWb_Qm9S32b_st-
z_*KGs30ou_+L_p5Wy%KXA1XrgVP(p15^_7Exj&EIG|SG6g*MUZ`!@QdXJj+Y_MVY}
zdUUIVZ4zp}k1y6MROUuv?qZQ05_VE3u5=f5>Fnq}s^Y%{BD*E*kx;fr@?M&RHzI8s
zL`mFFQ*mar`itxbs1Mn*Obdnl4|9Ygj0^fj|KwVzCC4S4kZ?o7O$nFYlszfoyo3wX
z{+`iOG{Gd4EL!o5gtHQ6yHbgtlRzes;iV%NX-briT%qQ53ty6OnPy#P-=*te@+6(a
zs}inpF7fM3Lf-{%Nw`gGO2R`4rF(_%NXYfF?BC4)lCYq;LgHQ8I%Y*lzbD~7I}Ci&
zh|EW{^k|+-_>Yz<bsFvJ5?=FRKBZM$IrvP%zif`LuaNniMItYlykzXQAfeLE&>IPk
z>Ctzz|4X>jK71%+al#jERO+i3&73kx2CY*j>)$kbTP5<>iG(5rOViLOG8{4*%V;9Q
zDMOV}Mn+i~E*YAPu#7I55_K7Fy3&@BTZTu5S4JionPvE7_+_M#kyb`P#^Su;8Oy_Q
zGFo?tq$`t5rt3jCos9G{GRm0!rzHk^ga|Xp*!Vn=2sw~j78zM(WS1diWRo%3Oq{>4
z=qF5SzbH%5$PF@b$jB)pmy8XrR4PUP<v|fB_wcF|!e8=-=_g`D3d<-WBd?5nGV*h)
z3dktPS=5F?OkT8$kS8S~6e?auQ5gvwnZ$FhR63lXjF5~{b3>#g%GhxyNQr8EnZH6r
z#^r*gi^(WXbrmdKLPkj$H=$0JE09@=#nOzcGx+Gc=W;Tt$@oG>c^OGEs>t}^Y&coA
zmPSPxQ*K2nP{$69l9|F{(Kc!&)+y^VCY2dyy-%tt<JXp9D*m~QR{7N}D^jY<Xm9=G
zEn0_34T>P6mW(fHC|g8En338tjGRfulxTy5(%GVsx-vFbiPV$v)#3R1vbFpvHIUKJ
z=8Y&q9+kwVGMdTgE8}a<YA&N4RUso)Mhh9e)M!fzBI8f`|MW)TR@AZ7fsMj>W=09y
z$Y?9$WUvC|cJ32>IyKrsMn@UlW%Q8INk(TGGzsYdL(9TlWOQYdIDItKjXCAsuN*%8
zB0TOvsHcqQuGC&KddnEmKT4dgp!&#I(>>%bZheH(Pey+k17v(d{qtYK#dcA`fieck
zm?&cs%}*_Lu#DkUT*eSKhceRA7)DFrW(9H>DPxq3aWaNhjeaX*G?TH6i)&cQ80KwX
zHz)HuI>6V>$@6;|<5?fqG-<;BI83G?qv<DO*7B68GN#G+QN|n@n|=sRmr<vwI!ne3
z8G8C+Gi4OeQu`oE{0CYo?2}7GmsXFK>l~dcW1fr!G8W1pWj^Qr#CZ6dVx-)Xi;c?Y
zTg1xGGL~P6P}$-ciV-g1+Ly}sg{RyyHd~(!w@Ik5u|?yRGFH(VcOc@xYU)fHO$BWf
ztd+5jb^`^ff?s8<mvKtQX&PJ^ztKXFv6I%XjJI#%w@~D}iN8}%-ic7!#ALIKCySCE
zHSlefv1n;%8zYhJGX7w`uw)9EyJ+_qAHRE8{C*j`X=vWW?_u1_Naj8nGgE^^4v@pJ
z_=Ai@4ly~*c!cp!#-ohK7>_faU_2?~_Q)_5JR{?*jJq=K$(X-5*k@nxoQ(4_F3`cI
z2_DZIy(#0Oj7zk-Wn7VQUB*Z?G(IkPRmL?M<+vc3<k@nFB@*6Xk;pBoLdG2#CF&+o
z`kTpLGS=pel1WJXzKjPlDh&(2mGMx<BN@+VR?}M8mGD@`Qzri~lJbO_^lga9zpV7!
z<snY#g^X9MytEzqF3UvvYx;GpU6u;Ilkr~0f3!|3g-scff|!gx<ARh77IU@@QI@P&
zqC>IV6a^o$h!b%s&=gcrP*s7hz^x#wf@}(A&yL?wE8<b$rI^nmJ_T_K(kSq=8Bnl1
zU6@ikU*@z5_6-VUP>@kUI_Bxwr^TUQj;%q;%A_DOD|$N*nUu09psdwbgP$nKuArEL
z;tGTUC@83)5alY!sUV+%mRUlSaw+&!L2d;b&nRT(VLdP7$&6uAE~%m7xh#^O#R3XQ
zp{&9RiYN#vNK{Z~K`5TEa3n!NQFbGR+^AIWe?o<sN7(a2MU-1YK}iM43MwclrJ%He
z@(O+%8lhB1LDc4DnLN!IEvKM*-e^TFm5_Xr*nG7h6Y&)G`Ak7Y1(g(h5Z^4wM4pvx
zlf=&zR8!DcK@$aEP;mvmzZ2>!sG*>yg4zlmCnr9f8>;ntd@Ti85)!{;?65i0xILjd
z3hFADJUCKM!M%+Nd49kK3ck7@ssA9-P(iD{@r@Mh+Uc3RDMU-Ase)7m9UoiEry2G9
z;e_T2!h<73S}53iKhl!MrDf>a{YWbXtra-hrI5KaZ*p4&?G#+34p-1#K?eo%75qe@
z6m(KBM8Qx6ofULZ&`UvYK8mgi7K{#d<2iXVM{;)sS8oJ+&`2!__GBb7tUzKP>hLzf
zuW9)1CKBn(=7fF0ehR)(&|kp-YR1FhAgcOGX7U-x=E4Ob5(hJ%o+(Uxn1bO7#wZv|
zP1=<(LIG7eTER#*M=5wYG(!5f3giVL;*`54SM)mt;}pzN@PmTy6^vIfUBL_m6BJBT
zFh#*sS~9ajlc=9L5%2mSLW#&U&LTotgq^fh!kG#vm;5P_Ih%2g0;-G5AK9dWWX@%r
zM-9+Y$y}gdAuTHf`xPuw@Uwz-v|TG$tYC?P2f3ol73^N@DR(zvDYY<5$}ilX%NX|;
zj+}cCS)pL1f>kt)dDmK_U^Q+2d84!wZhH_}%R2EarBc=_*q~s$f<I`MDv19%v{}Ix
zT6YS5SFni|X__F3`5OB^kgco`-^R|QQzC~Q3U*Sf6zpM#U5p=c3HNd+ibkG<q#RIi
zP{C;hXA~Ubmd}3^e_X*~1xMKYlkup69=|IzTj-#U(L5X<Pn<kY(5!nCe^S9ICZCK;
zDpxO3cU;m1dOC~4(l&mM1~D#pp78=B?dq2mT%mo>0k;DU_XV#ixJye$vG_Fw*A?7g
zev|Qzf?G^(Gt!wQZb|Sj=6}=nxFlF`NGLv-c%KGE!CM9I6g*V$NWr-ul3&q+r6JQ&
zpDUo|{iEQCf~PbYUZqfa#^hi2B$FHnU$Ey(Mp7uqYvym*jZ6~X(|VzuUxDPnf4r<{
zWyNTRx4HjyP<CMV#`q!0A=LqeIhhUzoXooyj*#hM-gZz#bKu$HAc-Caybk1aAeRF^
z2kyTNrF9^k1AgWK#yG|_jJ3)~y2S<4JCMPF><%3IIwd1xHpWa2WOg8n16kSpfSvM2
z^XG|@=O_Oo3g#q&Ne&0djm%FS$nC(4%%y`4(6QukpnwAfndfyNp96o#1%KL;lHY+Z
z9|nn6t(aKIfp`asIzYUz14Wn+r!FE)aNx&+e(E3Ma|`-u#6#?m=m43d7jvMv1N$7<
z??4F$N;=Taf%XoRa-g)sx}2`%Kp6+N21U>N@f95?>%g7#k*EXZ9O$t(Ud<FPPX#*#
zlN?B9Qo(^W1A-~ciL}fRA*|%UXAV?$fc&dE@VNt3n3Gv_v4^ml12r5dpD9fI3kRxm
zE}6G)rPQ=JWqs*DZ3pT&P}hM}2PQQO*5isAIndaF`VKU(+t82+)lThcLQQHGY|hx!
zfzdlW<I_i)IY9p`MuZY6EgWd+Kr4>fhOspxRq>Sr59?JR($)duM9w_&b#R~~aR(;T
z*g4SIfiVtz<4Ww}KvxF_IxxtAZq$?YgOt8;pgVOJn>`u(I?#(rZ`-F2&D&#^Go`N`
z=x6IB_GgYc@dF$nB!|IFhI0{8hBz>km0^tE4cAGef+HLl>A)y<`<4!z$%l&O6-p$B
zu?~F4;y4E=_;@b<y#pzq>&xOp6KHa3spK}1bBRxJV5$Qf9Qe(FX%0+x;3o$b(2R9p
zrUO4v@y@}=za&k18Jb0lXju}a>pMKNX%adxho&6OtHQ}==EMijSD5F(l&6vTv{<G@
z4?c~ApGTf(sS6!g)hW2tfnS&`a^Pnsiy0|v2@|SC8WmnfoG$epAikV&1>;H@g4T*(
zPbGbg1HZCJd@Yl84s>a)kh$L0$=paYd|}c4>%xD~oOfW81DjdVQbSvrY@y*Ep^(ou
z2T0t`;;U}WUw_(YhXYiQ(oP3<G2d+~dmPwn^Ol#Q2OKy^Q^<)nP8@RJFl|0g_?$T6
zz@H9Wbl{Q$$9G4LI&hj+<)X+j2VN8^M(MZ%Cv1Mwfm1dwl{fi}17~SxXcRifWzRcs
zrgSouy+BKBQv9V958-78t~l_@f!7XPb>JFpWez-W;JO1hXgNFZmjgE)$o5(CEeCGX
zkq*+sS9CH7Kcv4Mxa$D%d+hch_k&x>&ypWH@Q7AfzT|%$c<jJG4m@$-DaWB8<o3by
z|HD3W;5i+F11}i|KMqmZUip&yZjKOn<G@=7Od1_0-qB2082XR#J!7bvPD+d>-kA^)
z!zQv5iW9oi@~7lrqA@xdRVQ3_E>-mZ-0g(NX+<NE(C<XRiTq9!a3ao$+<PJ!oXE%y
zX`D#QBpqXVMk*3tUSx72vlBU-$ms+fP8KJ!Iq``TS=l6?>2tDBtFk)*yA6U#J#Gm(
zP|C$h9w$EK$ho;JMWYeS%RHZ5gq#aHQOJoDCn`Eo*oh)elyst$6Y)+Ibt3FU#EDR*
zPy%C!G3dng&yz_^Wb@jS2=QXfi!(m0rjt^Fc@aI8cxmS4oG9-^87Im*5p{wbXqY}Y
z)2I<iVz&y6$&BPc#VM<j6Q4Oz*NJ*gRCc0@6JIz{-HEDBeC|Xw4n@v187MOO6Q@~G
z!-<+seCb4OC+0u!kywkvQgt69f2gGn7pH@&??eOQPBdkup%aaqXv}3PEV+?C9T7!t
z#tx}Yv|!TQuC%2S6ugxat+^tKN$EpfG%?yzs8UKlr*%SX=R|uaIylkM2|6eCcH(yX
zgicO$b)uUSot@~yZa<EXr)5}be*Dvd#k!LxRaCH8560v!LE^obzj+paY-y0<^l_pu
z2mG3G>h8#o*(!eHM1Lm+I5E(P5l)PBVvrMG7Y$JwN>hUQ5GQU`P9!DsB87066T?}r
zy3<4EC?}|j1#v|Qzhyp}aSS7gW1Sc>I{rH+#<7xNX^2ER%n43Bbm9>o%S0z8IWgIZ
zDQy1AIMs=1PE2=Vh7-$JnaQ|_aTX)R`GLu7#vd8yFwS*i9uxAJPZOT`0>*`mcM4h$
zCQ<s?iN#JVabhX!zc7;CWUS@T`;D~Ri4`oaWL)FKD%)qZ6U}d1ZfjXtXY2Rod)7O#
z!HM6T*yzN0CoWKy6Puja@5BLi+w8<2PV8`EixXR&*v8^^#`_-YRZ-h|d~D%PC-$(u
zi;=Q+(_kI29+0NA*NJ_$-tKY3gS7cOaomX$EFNb3lktcXNr$cfH8^VfA7iqtyY(8+
zlTMsr^AzK0#@w5%pZuR?evXmMQoltnI&q23+l-ePuRC#t$yLT{jO0ImYck;tCvMVQ
zq7Etj@wiftsCS(Bi{1Wq;y#nRcBy+#w5@GD75{*hNN%g;kDd63_97Qbx$uN$xD!28
z^i=V$6VGT<Qc+CBb0=Onp{j7HcxgwIRJ>yTn&zPsZ<)V$;y)(uoG6#aYE{hkH)t6a
zvp&}~ZDr2{tHWg#iu&<$U<VT?<CcR~aZQC!g`X8&g`0_ok#fCEE}!!SRK%&srQ%Z+
zX;h?DkyS-D73ox@XP?X}GBC-+n31u^=ZQxGiRA`n`Rhq`ik3yijxis5@)H$;eX=uB
z?pL4cP?3Yph-vxfR534`HJZ6q<WW&XMLg%`RZ&1iK^6JfyxB_5uY&G*$&*qc6@^*%
z^|tDw+^k)#NBfGZ2(q5Qcpg@6NJS!>Va9KUtJ>RS(u=Dop`r?lB^gPKswidi(kjZ>
zysV1tGpzqyE2pA7i%BXf+PTRpD%d>bL+-|4C0qH7No5sBR$CA1S5@)3ifSspP|;LH
zGtRB9qPB`UDr%^xsiGE(Uow8tQC)ddKIZw@t94mysG^>V`ZQSitar!V>ZCSM=?mG4
z#2cw-tRi<l>$&kJ>`Wx(X{fo1R23ambX3uT^{-U4QPEOGD;2+1S6iz%eaxzboCztl
zWw&-JO!Z^!?Wys4DrI$2(V26*F?LbWmC1o$EKj%H+U_dWCs;}^YMzR#Dz33x9~BE#
zEK<=|#n&o5?uBnuj8`#1MSm3oRE$vRlUoc_F-XNwF0$sjgW?QkK7^6X#m6fQV?Nwg
zMvS(W=O`6pReY!7TNR^K{9Va<CX><_n!|k}XG>Z><5YalrLNZ2o^_EwnVe<i3u&T?
zNh)Tm_)*1V6;o8qVxOrhrZJhJVmgy-bGc6*TVZFaxSrQC)AX|<|Dd9B6U&^#o<!!W
zm}~QSOlJ4CCi71!7TEfeN}-=sELL$;#W592R4k<|6`NH2qGFkf4eYsG#R?T`RIF98
z(k{D7#n$dtjjLI4{~AxnxQ_X+Gz8@Q%KC{=rRUaP=_QrrmeaeSRcvIRKw)bi+pJ=X
zirp&qP&7O8A1b!ld^?TH=wN*QvO84lRI$s}Q;W-2$HZq^7TU|o0Tl;T?4t#%(lx(a
z^`<=h{Kx)3q~b6w1a^zvu$r;KA^*wdwyf4ZK<PM}=Tw|va#F=9nwiYcFzy*_MLWxU
zSU8FJc@-DfyvTT&@e*UZE7pVMSD1%$DA!foP~mmK=fX`Dw`iAE@l3^S6?fR@5#wKs
z_Zk0IaaYAX=C4bu>;AENlF|be4_O>j+S+_5J!bPC#wRMCGTD{Gdf@Z9iWe$kDhw81
zGQMGarQ$V{L>`y7D&DDh&&q#{RD4AttFJydn6%rw;BZ+RzT|?;gn06omXFf~mkSz;
zstXUwe;jMw1&{6NX40u&Fdx_GcOl?H9vAYu5a&V~7c#q$#f7x&mVq%HV|vELAwN|_
zDWeOSSRwvCt5s1}7vMq;7qYqV31?+@LD)WjO_s$UANwjNi=Q&)Vl2!TExDP0IMRGB
z#Jf<`h5RlQV7;IVg_%%Yg_tbpY)ytD%+tJ+5||{q5OyKRJj6&odxu!3&WH=eSt-W2
z<MPLuS%MDyoi(zhT`1#1c@0S#%DNDxK6K%s3*|_3VI!4tA<2bg7h1dUl?xSINO7UI
z3w2zm$T6$B@Hvx8E_~)fW#&~}IMU5(044fC7GX6PYH-#UE>veie+JQSg4K;RU8u#%
zmoA)2YwhGmo|i2YNUrNbJr|m~(9DJU?9h;r92zi5e@<=WLSvgZVUp=HYX&yAJzKbt
z%KSTy+|q?sE}Xsb@z+Tdp^Xb|UHIOG@h-G;p}h<JT^Qg(2NycJ(8GnEE_8CCvkP5a
z=*FSC&~R6_dNR|y#6^EZSDyMf%H3VKILZ1ihF&i8cA>8eU$g(Zr&1s4x=Zmp6RdMq
zKNo$DWX<OmDZUOz!e!nkeEmM5TWVyW3xix3?!pKc2D8Hu7d;_kdH&l}uYJNgBTyRV
z!Y-pEk&!Npa$&3s-%;Zw`CAu8yD*0RA04+m7hI1{;Qv;Z>g(fJKVQSQfqzpx!G(z~
z{OrPF7bdwd*+oy7;71pxxG>d)87|CZe=0c5h3PcnIjjwwo-KUW)jGggF8sg_#8+1<
zwkdrns%VZ2b6xn!g#|9mvvcRuL9L9hT|D|rZmVE}0ot5q`a%~LQTOt>buqo7c1Q9O
z7nZuP+J!YP{Nlng7nZxQ!i7V;f^OFJ<nJV}w41bwVjhU6uBMj@{d**StqbcoYl92F
zy0G4bztSu1imNjctr{uO)5yQE1O4uR-nO*Kh0QJ;rYY*e78ka1)_xbZF(LomE^K$<
z4;OZ@vdh+YGPzMBC3gmE{_J6MuM7KVxbs-bw5Qe>9bo;SUFs0cgrN4OrTnK0M_st&
z!etkZxp15v&M=;!nQ!}_r0sgAb%r`^D?3N{&bn}p&GRl?U{ZE*X7ahnJoG%CKD4~T
z{043HOs+CsbKyD-$9=1L<aUe2JJdx?Zo5E}kg_QK?ZQ14?=q6obe?r-bf3-1Yr~IR
zc<h2(gGa+Zbn)+k;ezSHQy2bapSLbNWAc*mIpYh)^;fLxNlLHSeC@&;+IXK!4KkJ{
z@g0jq-n;Oh3o+V7D_ehTLFx4SOp^BTYF}j{Gb)S@Mkgcv2a}75#z<v#4YNyI2kzD2
z(~w6)UJZVY9<D%E4cRorv1ca6G#b)sNT(q^n;A8P`+q!}WYF;AbZag-j(qH^%<Pke
zv3~zdpD=-j92&AS7mQTo@eyB6n}4by7xQy}e>|(^X0vKqIiH67RHKH7Mh{n@poRp_
zDrA?9*HD;w5yqGMt<IrTl+BS>t)>Q<hZqwzRQM^W_C)Intr#n1G!)lRf_X^|rJ0ms
z+;zb^x{h<KAZ1x064g-7=9R7olPREv^%^#4NYPMHLu(CRX{f|LH8s@I@R^3nY*t~c
z##mLu=S(PO#f<JRY+hYM4Vw?xXI&0`siB^R`YhIFtfQeWlS*r>712OLLpD=2G}6$R
zc{2@7n2<wL4Z{yuYmgGv)tvPu>#R9IsfC7?thBQId#10@MnhW-Q#4G~&`v{p4gEC?
zV22JGx@+j6p`(UQ8alJsRYNx>T^PsTwSG)}VWPa}sMUKtHS}V=pN8H{`e^9Oq;Wa*
zYbM9`f1E|p2cd6Rq2j08$OAPD(lAEDSQZCs7^z{Dh9Me;YM}VT=;$<z(C}-O;ONWN
z+LX6ic<QI%w_JqyXeKF&)tJZ$^*fEeezlg*Bn{s)8Lwf2hAW95&(4ho%M)3@saUTY
zqBL2<u8`HjX&R<$n5SXBh8gVh10!Y4WHL*`zqzc6X43-EFvrfFtKsYb*}*qu8{)J4
zq+x-EWg3=iSg2u<hNbNJv+cix$zlz&rdrpxFLTL-XUf0WxfKS>D>SUsutvjL7FRK@
z){vV&F~~T;y3VJxj(Wx}wSS^q@*DN+ck*u<Hfp%8;Ra=C*u)MeG;G$eg^pCiZdSH3
z{-I$T6N<K-$-MztcG${J4fn@cb?sqgzlH-$_G;K?`?xAw6ZN2mBO3nH=<5|6rU}Nk
zOQgF>SyS<-hU4sijPdr!__~>`acpqdc~ZkE4W~7n(Quh_&uTcQ;i4V?Jd+Ew8}Pf`
zs8q&L$|XB@X;iyn^Q#)J*_>X`dQ-zK+Wm9{bllc(N5d-(uQmLo;cs?(%6M190}T(E
z-($S5VK1NbA8B~Z$`jiEnXJobjs7@3kH0@`&6$5SJk#);b6+yPU~E$|)cst-fLfOS
z8x3zYm>MJ<?>Lvl|1`X3o@bh_PnBaD3^vb>(to-meP2|TbtpPC9l8#OZcS-bhfBv#
z$+DBpC3<T5qE>uL8T(n&+pWXPSsuox4U<XqG4Ea3+Hm4@q|uRGhhQ<Sj*L1o=}5<B
zdPZ`~prg%BYi3f)%wkp@S(qI2Tj#ZGw&y20Jq1+kR{jul<j_%w^_)6#=_tUQJ`>8V
zBd?BpI`XhGFO4-}-YpB&oNUd3ir3`MHRb%AHFK`DBnvVx^h_$O(?{IafyXlzWo*^W
zx)5#nP73Kr)G;mv-=`p~Bch{=7hSz5rlYtH(+$ak5;{ui812RwH%jR!t>e0m8#>D9
zD63<Nj;T65)rWFAQgyW8_~ms})KN)C5}Q<4vW^POQy5pCv-<oq9hG&|&{0!I72C5K
zld3v>iefc;y5r;Me4*3tP%VX04zFBG$Co<l>uA7YZN|Df>exQg6Q!Qb$18F}9gWy*
zrlYZ~H_`F<t#wvy%1W7H)`^c&a~(zRSb9qxt#l05F+@je9bf6_s-qh_w_)t4qpgm1
zI@+_@fiZB-8s9SQmC_xpmD`EM&eXR|NTFXJch}K_&951IGWOBYi%D<BUA#ufzb}n`
zQR~XBpN?;I^w%*!$3Pu}*v<W`a(};d{@S?NdUGSCif^T%I)>@^js}-~hU*xqW0Z~&
zY?4nwUH_JbRmT`xF}68-*8O+|HI~KVb*yRjJ@bh=#xt3~_%)v~Cow0V$vR4{wRX8_
zI;OLDLdOgpGij~qSis6G#yL8EuuIKm@*`u{1br@(d3Nr6CJ*jN3w12gv5`z2KkHbm
zW0j88oV!HFFFKYnU&^@HCogBRf^o}$kN+I8lIGZMYq6}+u~x@#oJ;099lz>WuhW;R
z>eYPm23sFpM$D;GfgFyWwr1ca9h-F=&~Z@579Cr4?9s7T$2J|?b?nfwlX|<S)q8(%
zgw_13XEJx`*low$QPpa|?p)!0tn9b-oMEex^qcELto*6tsE)(TkJvs1_(Sz$I*zk4
zbe%QFhAgu1q>fWMPP2Z&_CKTJtj*8qIB#>~QTU>cOKe`&ah1sxJGbgd`I^nM_~n~A
zZqbh9MqxK@>$syMy&D<a_)Ev%It<z(*!ixGhdLhVxX0#wJHi7dQ%&iyj(>E#((ziy
z6BeK8c+TXhj(=_cq4h&AZ2nS5trylB+`_N!A@YWHejV?1yk(#N*Z*TPrsG=Gk9)<%
ztFq*V?1t{Pb_|7)i0X#J=1wNlOIb7A#awfvSxswWbi3hk!|R5R^)!rr#yG|R<Azq&
z?QNslR;6j(NXH`azO5n|ndfjLryH5v$joLIH$Jg_vbvGY<{5UmvojaA0w(l30*aQ)
zjl8!0DU;l8<YCg+`|+wZADj8zD8Qs3W6__jvsDo{;@xQHMte7kx{=^UZ8z$;5p*Nu
zMrAjuxRK~a*o~+g<=lw4QH+b1cB8l(C773TV;1j|CE28~cX(@xwA0GCQPzz!8<Ya{
zOOJLMIh1Fg6gMimk>o})o8(ZzF6(exACFgZ<1<zkPPIC)@B+!5WSxJjviJq#=Zw`D
z18ueHZq#t2rW>`~_>#pqm;Bmo6<?E0uUS|ntm{TSH(GHn>Gj=c<VIsQ8!$FxToSNK
zHK7rAqd6;08E5bZP^rvYy3vA3ZN6aM(A6r^nw75@$!z0BTjs6(AyX^bfq7pyzILOd
z8=c(f>_!(ida>TsF4f(QZZ@A*!wTDj&7O>h)M#%zw~rh9idj>%pREjG@{Jq)-59`p
zpc{jj%p7g)29yS~89kdk)Qw?o3}=({k#3Bz`GqRhrPnAnzh#6wb*vlTxp9xpac+F?
z##%SlxiOxVS&UR_f*TXvn8fB}#_5bx+?dK_8Y6jjIB(728EnpEq%XpLaAUR`Ke{o;
zjiqk<;>KLg`pJz2Oy;>Up9z&s`$}49^TkXSx$(2Dl!~`b*-PBml;7$`O3U0>Y3D9?
zV};FY)YVrpU(LA2*0*#o_NyD~sh{20@5Tl<esg07=WhIeA0o^**~(@npB`~+WwMQN
zyPf-o8;^t5r*@Qfy0MG(-FEICCVSnuJl(ofJK)AaH%_^6n)O4BM;Q+@9%1~G7Su88
z7>}`eobd$XNk+<wx>L`%an_A1Zd`Ta9P1bD-1AH>xG^E}@!s|lE0-DlU9@X%T&KO=
z_P@d8mK!&1rEz;}d%Vr&9mdMzBY)eucbTOBO}WqH0pmkA9x-|B#&b7bF#pGmCvH4t
z{;wO)m=t(!?e=8{THm3+WQE8ZCa>Ih&E#}m>qPn1jdyImcOzzd{>OwK=Qz|tHfRU%
zTQ5eFJy1ND?y=4S4#pxL#Czamu6p3|K=VNNAhQQqJaBv9@gObdQW38Q0p>ni@iXbw
z<`c?|W1fbw)m=|ICh0xMz$BvwnV1x5ZLMEQ(hPT253;eC*Mm=(z=IqfWM@u3g2}TR
zBB!n7W|E8XQx9sqvp%WL!zR7nlXyN4@_SIg_AkVwARW~7k9X^ZSy|b{axUsYZ4c_O
zlHftmgOCS_9)vxp=s_h9A|4du-0~h2XHwFGQcOxPZZD~oW>VIJD0S~YQW-XnytK}S
zP59%lavpT{T5r8b@*tUWD=?-o-si93GSDYK9#m$frUz9#sLK2c4?br?#jAPnM-FSQ
zDvzy+SKZcYFiE|ZL}D!uzO?lli$z@z>Uq%HgFYVA_n?6X9X;seK|>E3dGM9(+1P`Y
z%$s=7lu0wjR1cclKACD+N7RDNZ5czYn6$QY!$+)>ZyOKVdeF{;_O{-E$$_y}Z{OMJ
z?riJbnRH?7%Gk|=Q$F7OZJ(YV^s;$ix7^o*uRR#%!Eg`yu|CMo{f0?@4+eNJkfzWh
zYwb{~`Gq`~vxYDZwf#SQaWle$?>rdi!ARCedGIZh(H@LtGRF4rzCXID!pHgZy$2IL
zn8aD*87DAK{nI`917V!PNNs37)G9d5gN(<lQ_KtxW_mEogC9Kj!fUO>*&h7p!9@=)
zc`(O=xgKosV5<l7Jecpnat~H;sGk@YF)m<S=)tF6Z@Tj8&mJuHV2KAyJy^zBzc5np
zqfe}^IJe!pba(!&uJm9PXKnOgHIsE7{OZ9P=4%=0?{vwT(t0*G&<=3J8ouAyED*I$
zVZSrq<iTbpS(DUs1+1C5&4cY89Pr>E%~j6Y#YkB@JlM(n{(YVPJAStZdpy|7%09*s
zg{^zK{kA`Sfpy4(!!#>AIL+b_4~}_oocW&~9QB}DI%Ru1Yg$q|!TL$YO8cy?9^A@v
zhE3w<JUGkz+D&W!Iq$&*Hg6tvl#hBBJQJ5axZ*)NFVcH))q`suJoDhW2iHBg!JZF2
zxaq+y5B~DtZ&q%5aEA#6TvJr*==^xjz3ah!4<2yVJ;nvaQ^==ODQhOs>t`Q%@R;>~
zJb2>4Qx7VXQmbxN58nPbZ~ygR!CPx*d*Q)L4`eSCFJ5`@+JpbN;2Xxb9=xMP;q`TR
zAdR0b&sdf4o^>i%_(nA5f#E^ygl4iRc|q@4-IpOqKh<>3i#oh;dg1lL=Y{Hp%L_Np
zMk=d$p);p{njn+XcWF~RUW|WZHIH6gOz8I_&Wki&1iUzypjChI(KD?VJC=Q1DfA-K
z3|?gPqNo=MUS#qjvln^2$mc~CFS2?8FLHR1&5KXG$nJ&UN{^M(q!rc}b(cQ&=PzT`
zoL=PeA`d&Xy6X6pNp3IBAF!H7sp@sBRn!mpy(qxBg}o@qg!Dp8(jB+<D0=rVVG%Fl
zS==xqnZ8mCdJ*!XycbDcBzh6{qJ$SEy@=3<KVEdPpHM2!MW}XqgKn3H)*+YjqO=!f
zSZ|eIDeFbli*jsI?w+C1oas{@EVLF>(mbn$$zD|Q;xjKQc#+~oMccE$88t9GLVrY3
z*^4S(eC|axFRI$PG>f_p|2WUn7q{ki{~xU`s_sP%FKT*G%Zo3)XyQdvFKT;HhYL3J
zqOKjGz8Cdu?yO>UYy&U)@<*w}8+p;#&h39vZstXEFWP$1&WluAZ^fjA7cH4Qugm)Y
z-2!;=l^1R3gR%#aVgr(<rM0%2_UzNiF5AJ2jy6BND%hF%=Vz>Dbn~LS7lTS;aB1}L
zqNf)FN?>3K^zx#&7dHiN3G|_+deJB&8fT>0j(%QDO@nD^@QoM!y}07XRX+xJG0=;R
zKK$;(ATI{fLiQnp55xXT9OA_hFaGpms29V$81BUgFXnhL*Nc%fg(9KDa%h4VqqtSy
zdNJCIG0ex>ZLYh-YU+1hjAP|{#_@J;p53J<dNGO3$&51@r%*d>pJ`r9XFkJLX6y*f
zviT28W;6ast1pXH-8?Vmd-01G%UJ)(izQ4JFfL?V#P~DgVn!<1Vv1FKDVy=kmwWLW
zb&eM+yjaQlD#mq;s~OiYu4R1v+FI$qda<5O;v2m9B490?-@VvGYut;SoVA&83uBsl
z+E&|tn-|-e|6wal_&#@+7rVXK!{Xc5(q1M9ZJ&Ki_Iq)F$?Z|r(mureFypPQ)}bAx
z1?a^MnjT&p_u>R+U1vP$#RV_^<wpchd2yOWDsqO&Suf5pIdAJzzO@2gWb+c^WtvfT
z?o}_YG5@u%<yN_AsPVwyEiZ0+A^V{CaB6+<ju!^|{N=^pUflKKo)^!(c;Ur;FCK8#
z6UK*(j~J<ikC{-|f4q1$#JbL>^z=h6<1^ZvOIVBjC7bUUUopOBe8c#bk=!1vj=s0~
ze@tRt_%DhNkxefoS{+==qGHzJID9yhJ?!;ih%e;yL1p4%Bt`Q<XYOY7*!t0QA)gN?
z9|tM<eF)e*&WAM2)7nZpAALhnl-x4<kjaN8J~Z_qvkzH($nQe|AF}$;acX?+K+$X@
zmMrz#(dZ{W96fLCtJ!@J+*<gM!-t$c<np2M^^fPrPkqS4xw#obudLq7%RC<=nGK32
z74)Hy5A@hTH6IH5aA!(<q7Pvoiue%kLs9k&GA1xSt8HCZhyI60d??0dMaJSjlxI@H
zhmuT6F_!hAG?Oxn^FFaQ=P2`XjAZ^?Q%ho=%vizJQ<(Jr!m7Fw^UoM7`%uO9smkPY
zA6}<gpJILCLv<f&u(+#vxULU1nb%_clCd^p9mZxAtoD#+Js$|``_O<1@rFzqF*f#L
zN%Js?&3tI?!*Cx)_>k&D3m-cB(8Y)1&BMLjsZ9<iwB)d@d}z&tf`8>h8z0*G(2kXk
zjO`ga*gkJ|Cv;-|QyuG*;jTV(V{-swcOUxMo;{fK^r07%-ahp4p)d2V8IP2(j;LZ0
zYZ_Df#)tl_r~lN_2QnYTNakQBLl}qB8Nt^7`%E3_!zdpn`Y_3d>CM7vTZFq$iT~Dz
z(LRjvVXW=>9g~*Xt>ELBf6qAHhY3u&RJE>oCi^hOhowFoY8IaA!`U~9vwirH$u!34
zj5B<g$z&Ge4~*oz=1Oo5N25>+e3)zVc}(W}@Dr1XWj|hDE%afL?ejB}#WaFUPTsTT
z$uB-E^I<u+hnlq3hZW3MGOn`q)jq6YUb#h>+$gPM^H(3%+ddnZ{N@AFgveo&51VNf
z`%%D;Ek11Z;gS!Rec0y1cA85*?DpXgA4cAkclfZAwvHw7-R4C1xr_e0FF|Y#ttc7U
z<HKGb>Ya=~NsZhdzmFEa5BV+ziSK9S0OLW%LyU)gIKqT{{-oJ5FP;b;<}n|R+x>9D
zhd<j`vw|X@^5HaBafXqUvrNu0o@czkc#*CdRwt0d6(6qp;PJ!j$2A|W`*7EXdp_LY
z>ZtKu=nsSF0dgO1*)`r~a)<FRAO2=ioF5{+&%Dp8(0@KW@Zq5kk9>GctC;nF7%AFw
zCQp2L%H&_hXLfGxC)Q_rFMN2($}3wB^6kbOHs3P7V|>pT>MF;4FnnmVBHm<l`XTu(
zQ)VQhFmd>C?4^fHN~#|&J6H2VXYRI@TO}jy-zWO~Ru6yThu@EY-#Veh`H_)H8b(sm
z`jL)#dd3WlMLJvaHWTyAj9C~-%<4xrn>TurDZ3wnP56<ANe;%GwofiUK4qSp(VT4E
zds52FW<Eb&)wJe7K|c!l@q-_;{V4255kETl(b<o9KhAg1qJEU~qo^MVTq@{CaV8<g
zM8+^9g^DmK=Et3k))|>n2|r4*Sc<W<?ODc;vNor8f0g$m$&c24Oe#_~*^df-)bXRP
zA1Ss^RVEb~EBW!6tylJ=ip@84k9_V&H9x*!r6yI~POHwm24iEsL#f65OUBxa)Xr)>
zBK2(E+>iQxG+?u#A5Cn%5tGJ@6Y5)MqNdE7F-H0-sZ2<3!K9_1K2fxWzT6ROOuzD@
z{LRERj6~Y{(az@WnRM`@qpkF88t&r9l_ue?esuFA=S}N$-`$TMevI^E6o>8U#~=#w
zGO?E*z5VFJ;x~+a8L7zEO#1opR~l=q`?EQKaUkQf#@6-fV2(qfhWIhm=EIl__hW>u
z99j|otsnorv>G$jkI{aNVRJ0w1V6rGLJs5n_@4QATcJ@VeIlEa{FuySik%zZ!@6;s
z=Erny74aENW-`vAmBRn<`=cLo{8;J7DnI7>;b<k#@+L0vV;)U|mx+|-`|%U=1-7z~
z$s)#|{a9@4dv7E*c$K)6<NxBvGC!94adD$HZ&$ErUQc}AB)r;>HGcfz#|}T%`mxTB
zf38Qi`thqhD4YFQ&z#0+gCD=yd?N*6zR6a?$<Zww`S7P7SK>A{x7*@QKXx%c>&I?C
z_RyZ=2epBkw3qcmjQbe(`*DB?<sST>)pVG}Beeh6xkqUU^9(%B(J0^vKTa|~#dw<W
zjGaqs;hbIeJd+EI7a1@4ahb`7nAiNcPK!4V$#J;h$4#0N0gMgcmLIqMC>22I0PfKA
z^W&`_@BG+2H-2VO{ck_+`f-nzeCP1L)WhAZW4zB{A22@j;}Mg`)Zu<SVg8hH_b_WU
z9WG^!RPK54&-@^K&iKNQmrPzUzGkG{H-2pYBTD2w%{M<X1&}#lEzFo7&H&T^432Cv
zN}MG#l8?f~5kQ(lR*kLzv;g8*)NLOR6L$b#^tIaNwRIm8e*ghnnN&(o!#r&O=|1G1
zbELO(Gcd^*z@vTE{m7yA;R)TtSpvu!K(+ur2_Sy}1=uG$<EM-w05G8<Ihf>R%oRX<
zN2_Bg<qjZ^?UOfve9V8TWVM!3!2lwx6bhhl07Y!iAVsiw(Et)`ezapa#5|EPZ0iY~
z!^Lb~Jb)6+OWFzzT$upM25@0wxLLrO3DE#51<>hgJn?b?lxNQ*+dnyg3N}w+QjyW$
zLHjI#zjwt~4xmZ^RRj2(^(FySqag^OP5^ZSsLo<7#u|)tq&1mjxM|%YeHlP)Tc5y_
zs$KvMZKXbw1_7L?V)arZHXAd3n1LiV4d7;0Yb`eqAT@v%0kmX?VF9!XpmhM<1LzUJ
zSA58H)E$|$VQd>fJ6mrbKnI&w?Hul8^Uh4VFm?@~o2@HS(VkopRsA)SUIFyBl|BLV
zW&Xk*-+lpn6F~m}2G~A>0~pABkgX*BXZ<pCNB~1^<>!9Z<QX2o2wNG+WEA7K0gSfw
z0qeEz0vH#75(h^dz7Jr00LKD29>9bECI;|p0P6!d+$lUMfVlz8V?H^6DNLpYFpbId
z0DfRHgOU7a1~AL!J-dfVnH|87wlXIGS|cP<n$O~j0DfY!Ab^ET76q`B$<K`Bxi~;?
zj<p&?i|a$#UjkTW=PnPx%oHVkrLC-DvYK&C0Bf17vvb?djo%Q!Z`>6JsBFjZ#sIbl
z@CWnX1K7l5GvgM<t&H0k$-iVC>qEjF9APixPR3mU>}Eo_dzj>0sqSO4pYgLEA6NH5
z>Id8NFq0zz{K@1f<H$s7@7l8|dV;1<02c!|Nt?j>_*0yFn(++dSw?a`7r=Su65sD%
z3gB`8{|4|ZfGYu94d7k?_u1hZ<88+4j5io>(pi8BMJra_x?Z}&=3lgUncQWpJi)qQ
zd|-P%3gDs5yWEf-+x(vZo-lvP*pV0P^8j81@E<EL8DBHLV*InR^^x)$=0x5yc^ANY
zCM9^UjxjeFO-AyR;vmOaCy3B1t8LCWsBu6Xa>U_n2dmFranRU7k3(D>^m*1U>W+hl
zMdDs2zBu@q1Q;7|o72Q0Z5-0YAw7#(88gHoBNHlnh21i-nVB(59B$grX=G#N6UOX}
zA`W+XrRR*p<GJw#<4`CLxtNprDU;lcc^LD?A)lR_KMn<KUTj&Ya2&m{xoF8aYj-UY
zhj@-(lrhYhz!+o<F($_0!&p$uBdipQLvbc07~3tk`mhwoq_CyqP=<L~#;C2A`#+}6
z0=lWJ?ZOoIxF<VSWPs47ErS-<!QEwW9o$_8cXxO9!JWYdcV}>i!JYrTyFK6fSy|6|
z&OYxw_vU&+n&?nSxutDvQ5}lua7l;DIuzHTgbwp`n6E=g9ZKoYMu)aKl-8k)4z)Pd
zZ#q0{t8JRfoM~CI99dq63Y3auC30pi?TDyCuS!-UC9F=VLDnQEZb~iZnc6zk(V?ym
z^>nDuygAuGhsKnKq>Ru=hu`VnPiu3LM-w)ilFf8z$m_f0Ep%w9rfMZ?l5VT5-IKS|
z;qdL4zB=^N;ePwrKXhoXLkAXg)S;UW-RYgk&N_6VbR{>g)2>QA=sn3+d$g-qFS<x?
z9s1A{u3!CS#Wso_tiuo;1~4B;4pQ}d97+GwVW<w1bePO=7&)38PL3c)>M)8Tb1@W4
zJw}JI@*LHBlH+t3uX-owFj0A>_OVmwGs&ssG;%sQgKW}VJB`eui_E6X(P6Gil9x=e
zK!=4o?A2kP4vTbHtiu`|*6Of?HF;jezHAp;A$#mn9hS+CAzx#jJ$5-|g$^rKvPy^5
z%4f8WU8lo(N!rB9k-mZBY}09%o{eh0n<$&fEjnyf`CmHR=4Es{>vxbc;Z7ZP(RY)3
zR4&)J{W@GN9X_nX-yGxsd5}CLPvnZWM@`uuIwG5_W9%s%j;eVbqZ}ts=<tuqPwEoy
z+)nH8u5?%)XDDaMb2^+?`31^Fjx1$YWJz?$r$>H0uIX@HF7A5yMo`?);ieA%>F`E}
zTb#=y9UfC|%c}r6S<&y3_jK|lrP{uCpUns4LsCxfl0VTwuA#4(Jf%M)C45eKLB1q+
zMrU}<N|{i0-Tv~vkWRb*|H@<J9r>R8Kz<}Yk)O#gI!yZ`Rt~6dYMk#n{Gk6-NfNzw
z@{iCXDaBq(yFjPVBc)#6*@IV)RC=V=!^Ym9Eo0N@q1U5g%UJQWdI;0$k)D!)%t%VE
zqsWdV#Rg7dBu#plDHhU7O3j9Lv3AZy7QjJq>fus}o8pm;Qc_#Pn_9>E^!OBv&8mlA
z4`~L-AQ?$!A~Ta&NGX$>kYDu3rbl)?a_EtZ!-mvc!g}PSN2w&55?rm#G=?6lM;s+(
zJ?#jU$FF+iR`q!(dG(3=VF5kj^=Pk02R#bvQAm%5dNk6bFjr1Zy>@R_M317Js+b<7
z^(do9aW+ekCCO6cB%Vuu)1xe#RmgH=MY23uL66hCN>*aCGMTUk%F<TVqZ*UyWDQdC
zN$s?2N-aHVtE3L4E?G~H`jiH$H&>5XxeWcTM@u~}pA0otc@sUFDsM(<u15<>&rRAI
zYejEOwjm{Kt4BNfALJN5(~f#{(qoVwgZ1dFN1LbGeS1F^bkU<LrJEkz_2@zGO-fBq
zN-wf(18t^#^ysU4Wo!1Q4<HAUrwVD;?$d2!hv+d{uN`ROf6AI{8#`2wVU*$I2y!Gj
zij<noZDYr%@yAle=`mg<6ZDv<{9?^iQ}mdsM?Vw#n=nm}>3Tdj;DrG*^q8qfNdrn5
zFiVfwdc4x(wH|Zyn5)NmJuc`mPmlR}Y?aaUSfIvSt;a$=7O}aQT&l+s)q9>FPF}|5
zay?d1R+6h!O_QO~YxG#l<~njSxt`oWZX`F!{-2Eh^D7?#ViMIX{hATc+w|D0$38u_
z>mf~f?9gK;eV0mh>#;|9`4{Q->v2GjlN{tAd6bk5afotQkH1xNM30*Me{ktNCI^nn
zPw4Rvz1X(I|NS{78->XkRdZI4bM!vfwJ(jisK=PP5jXX?rN@+o(U)WgX73g9DtV2R
z;_Gr1phrK`&fypIIdALn=4|vMJ?^NQfAzSl$2~Uh>yd|_)s*4~OdgVH&PF`ugipw)
zq>S^7@?4J>l$R=(75JaH9(Ds92E5fHZ|mrbZ}KEH;GG^>D#pIo<AWX_Irw+-6Djlk
ztj8DnS3SPzk?@f-$(P>Mp280~`LH*MfhT|R#3Jn!m&}0V2Ba_`B|{^b%7FBg)TET9
zF(9q-bOz)pt4%A93<hLWxsIYYz(BF(O#FO^iA}Qs7K$~Ymwd?ADNX}i24piJy8&(k
zJO;?G8<d+A4c5q9A}L<dXMkVj0Rw{c@kJ7sCzAo0nPefelE09d`T4zU&qK#^N9Qmg
zWI#>>q72AqKz;+FS(A&DIff}Q1{|Ffjx`{T&Dadu{`RY?$xX>a<~3kY{={V{z@&%)
z@sxsOAyOtUY(OKmR~I#)n97UGv!*W_rHxbCfHDTGHeihbzZp>0fG!4fHK3dU<qi1V
zfX1@nc0^Y&ppF4^3u^CLS2UoK0hKvO6|#l_RVmd-si|&2n<(w{SW_jn45+QVTORER
z)-|A>O6pS@kPXR3a@OK!FjASqO$=BcAKlu3rtE4)$_ULVEy$K+D+7Mk)XukU3}|aW
zJ5||<@`nNKRnmdd(SY&$w1w%c@`$|2yBW~kfUyRQleN7y)I-LZ5Iw+vo^19aCGTxO
zALV@w=tu9blH~Ex1J#&=3>a*{5Ci@+U?{^;<S=rC0mCV^_$qHCeU&NkoHN>hF-$hy
z&=UEbh4BV_I2}FRfaR5=Cm1l1B0h;S*?=i3nQFi^<tHZ=n_<9AIsY3l+kj;pa}K$P
zoJ-C#U_NC5xzK=p25r9am$ZB4#SBH3P?j3xhXb_U<tkrcz)Iz-4CwSsJ1ed=V4VTS
z3^*>^(SQxwnAmT?Mgum<G5#rfYP|M8kDCqHp{Ctpz*gmd8L*AMog5si?YBGWyU5+-
z9&#@k#bc!Dh_LlT)ByuNZw(z}E)yOy;IQ()4LCwSN}6tI?--vj;2#678*qc+Ndqnz
zP~>X(6q~2XGo%!sHORN1Xy>}~q(L2<7umdIz-3i=g>sd=X28Ai+Im|*HFVQ}`v$CC
z9W8!K*3Z<?ZSsx*|5EOf_sGD*6jJa&jrq`kM+Q7L;LBNUv?t7;lFvwMMQvTZG~ks1
zyNuXv#A^foGoXbLEsc01Cx1D!84+p3I|JSukj{woMjS2>{ehDwGvcEGpJWBH`GfpI
zekEn_Zw7p)x8Xr8$xj247`1gGj|fUqBfR`vQ*tA=bqmQO1tle!icD=p8r7TDh|F=(
zQkH63D1#A04ivT+A)b-c8KI|0VxSmFlM!Z>M-K^EIcu8{b|V}{IN5{|F12hIdH3Qr
z!o#GYT7EB^KGJVQK-C{D9g|5G%!u4Z<S}Avv)HoDVzU^L)ri4&!oL_1&B|<SW+!uy
z(i@`WB%_R2&>~*KFzaKCh&5v9f7%5!PR%Qq5x>$6{QH``M&vWfhmcXui02EV^BYl`
zQox9KBMQ=sk%dU9DNHG1L{XJge;zG)aW+ekC5<ShdeeOiNpBe=eq)khy;fY_hzds3
zFrp?GrlJv*DV5Z6$~PlbQC^i&jjV1=JTufXqP7u@8P*{ikabCU%JnGq$-kFGG^8{l
ze<!or691>Ki4jeiG$Wgnt+{?$8PVE^4MuD<qKy%4jhJf0G$Yy>wfmVKM)YLyA7pzY
zIvCN>h)!(EGITYfGrbG>o_7n9cVn|Vd279Pi1jk!PuW;T^fsao^S<OjBl=PLlLN?v
z^Z6jUOgoq|#E32{wV~uO%!tuOjA1^U9AU&r$|y47i>IV=tPvBLj3dXBl20%q;W|D^
zC6g&r<Up>f-Ahk5%HMZ{7aO$`i!^5#G1G`yM$A_A^C@$Tm`j;QHsv{1>KCxNkX&TM
zHQtXc;b=18QklCE%h_B(t|3<%v5K;ql*(y~v~%5BBi1D(WS4mDq_@e4o2TM88<Eiw
zF48>Kl{aRKY_-Lqt(@s!36wtsHe$Q-9Y*X_UglK#Jx1)6vxf<3P1t9|ek1-d;-pc#
ze>h;oaU)I`anOiy)e6fqI>ZSN8}T>g2zit|MoP`Wn@MU;kG_01TFx-SQ%0ON;-xI}
z+VB}8&KfcQaOl1f=U9K!2*bbO^F~}?^P&+~Da~(tE*Wu|euXR(r)~FZbdl>u+@K$*
zqvf|a&TUc#yko?_^t&p#C;Rj2c<Fjz#6wQ_h<r{yHsT58Dfx^{IRC$(%Pi#b^hz!P
zM*Jrye<Qvd@q=A&jrc@)rz+nY@qzx4tf=mLKePG8h_9;hn=$d~^HU|sP1?yni3t%D
z@uZYwCR}Qjc<-9Rgp>?ZshZT3hlL{2nULOuA|@0yA%h7SP4Jii6Uv;6)|p^6A$&=@
zThN<eP}3SICKJpQi^^MdiLlY_q(kLS6I{yOCM3MR^P2GWa4540S=i+>!A}X0K~*1V
zLMD2`-|1vE;TIF)OvuGB8yQ7rCv%t(qU0nq)Yi6jG(Aj8Gsc8i`V0Okt|Y&*S%A!K
zLLOC_*Mxk^^P6A{)|O&<#4{{N79tCiDbFM;W<qfjYM4+{mNRYq=^O=0m{5|vrO5JR
zX<5UR-$)s=ETx<Y9r@=N6-=mTLM7E(-Gs{YDk`aJLN(<@78ZN4L3^gPOsFmIMSKi(
zH=&LRbxmktLQ50ssmjJC)TcL4NkbDF(SKLTr_tI=ye1|zRY@~Sa}&C%JFZqH{K2rb
zs%c|FTY5XPXFhG;Yi~jaHanWoMOAh(p|kSZu_?OJyQyT`oQNLEds2Fly~#c%^rcMV
zI{*Vr7-&KpGuoOl$b`WrBrzkxj3FlcX~Gc`j+!vkgkdJEG+~tq!%Y}rl5g7!Pd8zt
z38PGSeKuy={Gy{drY!J86UNZTlH*i9-h>ItJLS|~YE5EuvI$ctQ^{$nrq+lgGfbFi
z!Yn2WOju~bY}Gr5GS`H8l=&(@);401^5rHhR=&i9rSxUw`c{e8=oM@}lP`ufp~;=_
zW)rqBS!2RliY({4gh@=;ppuQ0O(rZlrQLyNZ5(|*9KTgU6SlEyj|qEC*iPR;?j(1S
zGRbbriqR?dspJ4<zezsptL=veRes2X!^;1b&2d$GU31KY<8pQ~;j#%QO!&uylO~)p
z;lkON=$la|?-l9)E++0})M*o1or|e=G46~S;Vk8x3Fj#nRDMym!e83{cEyCNCcHG^
zl?m6_D^Kk%<vMwTylKKM%5Cxv`7bGhoNFF;kAB}IUzewyT_2K9$w%a46P{2~G){aE
z?U@PBnY<unD)}q6*CzbO=CTrTZz!MTL_J%3hxV-r?@V~luuqZnAJkMIP54BAZPd21
z6o26)U&(Leck+h`KPggEZD%N{8OhAZZAKn5lADpjj94?`%t&cQ^*2#QGfZZrGGp{C
z?F^RMtUa$ZW~4PEof+xb)RB^BFe4+qsCssKGYm{>{i1#UiP;Q`85NQDb5xAg44WB2
zGa^}FCp~63C{9u)aZ%i6g!nlqNx;NQ`podF$^hl*JnjA=lNs6A%uHq>vy#7%KMQKx
zJ-Zn>WMn4NjHcu?BZ@MH-<2Jv$B^U0+Eg1`gmanks~KtTYu{8hl;1Lx|3Z9TGxC{H
z*Nl2*^eh;k-;82r6gR`SCaQoL@f<<w3z|`gUYIPR@}g!uucf^!Qo@YpN8|N}<I9^-
zQuUTHqqG@i%$U$mJ5uEFn;B(QZ#gsS^Qu%qR<9YAnAadHtC}iiR8?M$Qr(Qh=d?GA
zYO-02tWDM-rE7D^RQ2ggYNR@{+}6O1d*@>sGHGPS@07-5b2FMyWU8i=W~6*8X$wkA
zvK85yl*$DQ<J+0>hZ#4`xMfCrGdh^D*o-A+bTp%r8RO+Co6*?}IpI|Hg$J9_#f+8J
z3U@W5n;G5JIQ=L+$ew2OGNZQ{eN=B>sqC%2c1v44aqabI*8p-LImiq-B}z@zJ)t2?
z{xoAKWtbVm%@{$Kg3*+bW{grvldASH%Ey{9PWjfCF%!+0WX3Er`rS|RC4aHWX2||?
zFPrukpi@{jm7GRSCufi|<pAV9Z^#!v+l)DKDCLWvOU@&uIp2&0$`_ikNO`{tF-y%@
zX2wY~PMNXXj1@Ab8QVB=t@ANg-7zc8SY^g)CTqxz<XSV<QPz_i$ld(*q)qhA<Q8%(
z8O5)1+HS_XLh<|M(6i*-VaBv};hp3zayKdA9y9jR_o?LRy{H2m=b#yfWS^uTBmX94
zT^*qum33QFJ98da`3cHD<kD&BPn&VZjMss<i)NgawPDomLIcV3o@2pzHPr<(7Fx7p
zt)DyBB{MEFzd~Lmuc^xGlpC@wcwW72#vL=>$}^R7-JePSmBYb|`)1r_nQYlM7h@in
z@sP_|`(fJlQ$q8~#g5+-dSu39);uAf%FZUoJN*?Y3-iK^m-I1}v}Jou|Brm5YUaO+
zd2hxCIjdOUx8S20pUg;YK^hA_n~|lcb~q=oX!6C3uS~?hnem<egZxP@bK0dVepOV2
z1xYOskw-F0atl&WQj)1u@5pm8>C45XwIKE9D7OXaEJ$xb1`9G;wCjS+0v$!%MA4H5
z(rCeqBHDG_tZFP2s|E6>=#tynbdXL9#@!3M==LqzG3%j=fa0~_`9p0j1uO_!P}+hr
z7DQT*$%4EVj9;K__skaLupq?xEEZ%{Bm6?iW<hpJ&O+MUbJAnUC^DK1lTr|40r*$#
z;&BXfS@5gs&22#*<s;MQ%x6J<E=B<hic;dqf}|{7AxdEjim0UY-jL+Q*eq^A2}()T
zTgrlG-?f6GgG0Y@MpY~*D}xUX$)lVF<>?hvQqh7+^vWtJUMj9CC#*(RCu@-MjA~M9
zk*D5x>RM3Gg5Moz>_B}B8d&hdDjyd_Lkk*NP~3_VR{U;3V+;PZ;I0KtENE)MA`2E<
z(9DA776dj$EwG@4tcS93?JekFK}!o}eu!?R=GfYTHuSbCX-D}()-(Ukv7-f@EEsCR
zFbg_c&_({>cW$UZYr0y{i_%R^+nv(Gf}WJItF(QlH@%Ol=}YNn!KyCW7MIZmaLj?^
zAaXD{#DYI5Qq#Lh>~IT4STIeEGg3B+1ryjDWx;5bkD-hu$5}A-wYC#J<eyhhR5g<*
zlgTMkqw>jV8cvr3gw2`c91CVyFq^)yX{<bCG<nRmU>?Ky<e^2{GmV`cztDpDjv|Kd
zF-t61DqR+AvtakQP_ot$%Pd%K!3x%&<R9Lyl$F5dY6~_{WRNwKwHB<StS65zOT1!k
zv|y8}+-$)X<y$TCy+GQRR&D3(_FHhkf*tJLN$ygWyD59fz2rXGJ^0PN2Q4@xNAb6q
za~2$C*FU5T`#0qXdDMbql;f)R1SR7)?YwuAe#(N=s`m`#tOX-^-9K-^1q&`Ryg^>F
z;4-CfBkhkyuh6eraE)@El)QG11~=)q$lK%{a%^SodUVese+mSP6;>-ASn$vSgB3<A
z9$E0%f}a*7v7$lC@DtgSr-eRQ@Kg?GIfGg7!h#PRM+SLm!5jK3mAt0>Cua%1gZftG
z?<{yvPkUPXmJE4(WV3IQh|d-rnIHZ_ihQMfBfra0OzA#1sdQ~=8IG``+MBpER+P&V
zpVW$E6!GL%`Po4&lt)TRDl1Z}Bx#ylX*pp!QbtH`MFx6CQm1mg70+vgrNCrG6<@5`
zil#FnS{h@^^bZ9_MBmp(+pMr#k==?MR&*Z`;jrQtE3#SPw8CYD+p1kw0#@AV8TQaY
zdPyJYCu62*FRrC5XhkIJ#WPVdTaiU2S*=*HI$pZo?vI|CEjsE`NEnhQJ2z?cmgrm@
zDyJ1ulxR|h4JXWkj3wj9mQ(FA)vs3Mwn8M26?rN7tn#yrS|X49RuoVkPbp}{r_EZI
zJPI=@VntC(F;%%~U35t+N?EbUip5rxwxWy`J+0_v#cx)WwPNVHP!ri4R+P8m_{yj{
zR`eZLbj3&QD5$_?t7t_fD=O2gkX5bno8#KCT+NE=R@7i9&01E}RKDSTlG^lk{GXt@
zvg+1_>RD0nY`8ut(ty&?ibg8=-HOJ_<GO~MTG31{7Olh0t!QmU8!K9<@mpHaO8L<g
z5pAvVC#5l+nTWJw^AEDU6&)y&ceJ9D@|Q=n*IZq!=&Hu)CVP(Z9<r8-@yu^UA1j7i
zF+w;kU9%%meXZzcMSm-nKMuXh9bf*aHqHPm23j%5ioqOVh#KeAEp3oL*&Ip^BU5}$
za>N-i(u$0qlgzSWlog|`7^9||V#Qc1#<4k`oIw89Bx0hfnPkOedM3V>oT~C^R!pbQ
zAZL<E8fl9m+jlmbbI7??%%jXFrC@;-3+X9tYX6hF#EPX>T(IJz70cxLTCvZH{j%rF
z{<$amFIKL!B5RfKDl1mAxrW?Gt|ixz>&Xq|<<{E5Y_eiAo8nt2Tgd{=BQ|`G+Gd4t
zyA?YqJ4s1)S+SeGhuo|3L489HKgP(k2dp?~#UU#WTM>Rz>%?R2oc6aBXF2#0D~?)m
zOwIQs<v4l5ihn4ZeroS9oT8s5rFq7Rx8=2Ky*$oYabD$(n@3!-;<D^iwIlwu;)<N6
zwnW{LJ)v)?#Fyx+R$Nn+*R8lgze(OAZ>!#RZBlnmo-@bMsJm9&v*Nz&>VJiwTQTHr
zl*j`%ACiyA$5uR{JSCrzQaO4|_=OcOt$1a{YYzUI{LhN_lsDvC@*Vk!@7&7s`e4OJ
zCgPv0*!5m}ohy$oR(zGy#k$Zp)%)EFeN$~CCb1#HhTL}Ku_LJs$!wTy!yFru+mOPB
z`ZhGMA*BteYzW&BV?$~i(%6v6hTaci(%Q6hvcU!;C7liFDH3L&WF&Q@o{ZoxvzTn~
zvT3%#VuO_~Q#oz0(e0#zEYeHcYA(8)l%~f9C~tK*#z*(7Bw$039!Vz8slC={mnAN<
z4Ovu8RvUh?A)5`^ndBsMsNRqbhaV)qFBfG)H1pehPaxKYI5tb!kjsW&ZMf08SeYu}
z+;?MgGcPFX^KMKY8}d@b^HK8KP=FGz@~>ZF3vrUdWDy&R+E9#Mf-Fvsc4_b9m88e>
z6-sFv%GmIm4P|Yp$y^G`*-%A!c}fKvDypQC4V9J8np~`^@@h6zr`J$Plk?i@s%1lM
zmDHiswV@v6!$s}uk{a63$c9lijJDx-8yeft!iJVM)Tmyki6qP8hh*0NzO^YQX=X!n
zHCo;6>6874Z6&*q4Sj5AZ9^Ly+S<_0hHk9+gX~1MCp(ZG$wO{!ZFHuKbfI*W1sJI9
z?cLezLG~njk=Ji)cLjavgUNoRg#9T4Y#6ALL6i=4B8J%Trwu*$%SS_1?=Z@68%9t@
zs@zs3c8m?W7KO($$?q>Zv7q+e&Nv&!+c3d~iK=p%4U_1TRWijUzgw*xP4+X|a!yzI
z49ZL!W>FHJ`&=95+3?VYM>fp2VSx<?Y&dAcLK_y@u-%3_4`UX~99L;C6IR=>WpwNk
z8<tX*k;};y<VsR%R>}TzFGi%-rqCK2gllbBXTy5>1}URRzR`wF$~VhY#;}C)*vjxP
z8@8$5G5^NP!tAhNCzom$Damdd_R#mLWS<TDm4EFSmSgsi9D_FeZ9|D`+N-A{HXOBK
zNY&V@HXO6zxDDkO<~+yMa>9m_lz&J&kM~pb)1*v(hH_SRGagMc?Rk!H!G?<zNiNxN
znSMnjFFwXz<Am4cFsIxk?~=D{xJ{Aq?@<1=!Tegg^^(UuCiiW4KuO+AyDB}l;fW1S
zJ6v`=wc%{R@E04t+VISV3s<9`+wj7Mmo~hz;XS8%P0ED-+3-5Qc3{fmjSX*^zav|%
z)kc=b2OB;z`J|@$Y{P&x+Iu74WEHgyr?txu<mLQs!w(yNvL=OH+w0_!#EuB%Nh!(5
z<aUG>#wXOIWRl7*-$Ru+RT?{9a($+=BfT9Nm>cad*^!a1Q<Zv(!HyrSmjTU8tfa*b
z>wfKYVN>;XI~?>G8MW_(aogds<5xT8{S!LzCI)t7wj+xj;$G56`t1l%Bo9&|?Z~8(
zE%~+om&|HMl$y&glx%inr{o|*WKL4*%f8o+qi8#(7f%sp7-L5)C63IcDo1|TD!Xrr
z&ud3MJ09Ed#E$%S6tH8g9pmhXx1*pP4eV%WM<F{3+cB_8bagwPFAf#qAQkK=YDY0U
zimNfp*inLBk}O4*CTp$K&K1AWwdJ&<obvLN5xvq@q*PLQWl9x0s#2<v%`0eE*z}u2
zHQ204*0Q5EMY`%x>e^9{QeWkztHw66<9B%$b_}wku^pp(hCA8O*^VZ5G-X*cJKEUM
zmfoCfVMj|!E3!2yb169{wjI4A`G?BeQ#!~Fa7nxF$fH7q6kQnhQZ-#E-N^1_53;AM
z?aJEz-<!=oq%`|d`q|N+GC<|IKgPQ6#%y>U9&E=DhJV^IoHCRgrYb!Pw9Cy1Hb;`9
z$kF5&SyzX&qjkI;6YMx_NBe8xiFQn~W4RqG<d}LNJK2r}vY|JJrr0snj%l1wCYddJ
zn(`TT%%smEQw>VIqnpF#Tsa&l^T~4jZOVo8MdV^~3AvP9M&9J_46d|e6`OnPSWS_+
zZ=$Rr*V?g;vYy;PZX~7heE#re`W8F3il}_29oy*J$sH<hl`Q8j<-6^$Jkg%ZUMBm<
z{p0~vbI^`M^eWf1|7HH$jw5y)wd0r_i$28OvE#TL*DSb3{zG20<D?y@=%?*CN0G_T
zP|nJ-UC>55uks6a_}6I1(Iu5!rd%PflKxrgudCi0cHE@jQps(Z-F9tT|H}oFWxGqc
zN8Y#Nfyy7+@kn`<wV|hWJd?fJ0XXp7ju&#;bYPz?;-ww0?2x1KhaImum-P>{Ys!Ci
zys_gglTT{y@9cO_|3H3B=&i5ayMCsBA*K1%j&JnuDv@jb_m1J8b|i5i!hxg??W~^4
zfz*^_4kV{Yn8JaS^n`sZ4LzgkP3u59dU`U0%3B;StW&P17#uLFWN*vdW(O<|$g_*P
z61J+`MzNC)(&>PU;wHDu(_XoF9q>6&%Yjk#Qu`eUI1ukZK?i~kL^{yob<D30M7@s5
z#7S~EkeSUaWLEMQG8>tll=@`fwQEGkft-?X+Gq!2DUydBh@r3GU1*%jb2%`O@5|+8
zl1JrvDft}8PbokaDW+Y~3eihBP?}OWq051ylwzcm6{nPNprlGx7ARJRUeSR{4*W(h
zt9r{hP@Z0a^oO;5TOO6!tl@y%)>ffcb)XtWdaF|^+|Y_^I<TBaTx|#1-;0rxd>!`I
zCF_y($p#KIq%<NI@~1_cIMCD~U$lrfPBe3%xdY9dXzoM{2U^N@bi(aKD+gLTaLR$x
z4zzKgtpnp681Fzk2matt-DTFYZ)^$MmPVa>8za(z&5jOqqDa!2(#3(UD(NQU=Z=@I
z9uD+$pcjYw(}AH5^md?+1AUncB;}d*qx5%R040_B{<J|33}!NfOr~B54s&2M6Pb3n
z10(1o$x&p}Y1*DCk1-C6Rh5;$HJISQL<hFX#%-(ZU6UM`=a9GPwZm;PImLmglxYr3
zr_3N{lQSKdMUi^*m#8`PxhhGTt%&3c*j(elLI)Pn7n94$CFD|anFCo$CB74~g2_s9
zl>@6OGMcGLuC?@aa(Fthfxd;@sA@JjuvvNGUy5y2{ud=*RI2R`?4a*-V7~(g9N495
zc2o8^uvaDf{@+p^WO$4`<iKH7^S1*>=tou3H?Q{f>BreT;lMvCKS}Xcj5y=KSvhw(
zk;;j44xD#DK1lQ4feQ{?bl@?|E|ITq#Q*ESWe2V}aFxkTQpUgLz;*f!GGXqwRPSvE
z?$C8yt9Kocq3)6Q$p_>^Qo0^d-pz`C;=of*_>6o_K6l^+Mdtg`fmd{k`u3#%*nH!_
zTgp2!VZZ(0z()t>zK!|hKo3)~pALLx^9w2YR|me)zmq>yUNb5_iBp>-f=o(EGno^~
z=_yn)Z(+_X(c#oiq;Vpx6XLS(eclz*q*YuxC(=9dG)=<{PCQ-_GSf4XI#Tb1fg&|V
zCrru@%_?T$Br=tiVspYyaga{c+v#GI#|b!5+=&uSc%A5zB-Zalz$t&6lGEozffMls
zQs)dhaj9UuJYp%4PGoW-Gd+tFA=R7JiC>gwb0RxEhf3sURb_;nY(_Z|t@1D>#)&-1
zb4o#+6S<uDRrSVGa+7(;yktHn@>2?sGGTsGv4YAAQ3^Xzgi@3&rh3c#6;;xSQcl!y
zqOKFAohakPo@-H+ow!~-{2R++zeJUFYA2I&q)2%uDk!h$L?wC@&u>+nm~1Lml}R;K
zQ=L+StVz})Ydg^>iT0u<Q`@k7m3KX-b_T2O#L$+}zvhl_;6y`t`nls9ks`lS8avU1
z(p2U0dAt@*v~*&j6N}{h??h`S{*-Z?XyZg%Ck8n&*ok&B(|(~F*P;eG@rM)bxeOg-
z6R!;QqIV=aInmjPF7&Qsce0xkz3OY1upVsoB&9jyeE}JvH^=Ei_9go{(Vrr{1DqIL
zB2J{qy^v#dyihjr5GUj~^(TovR6jh-iQ!H>`x!Iai4jhWbYi9xvz+)et5_0Ku~9O)
z6Jt2XPJ2R=C}W)%r<P$nWr7nEDGA?ZFO`#>nBs(pJf>2nIWb)&Gh}oB6(wDA9hB9Q
z;$A3nWBjxh;W<vsb!yi~d3N)hn9ng6sCmihVzCoToVe`76(^QDvCN5+PCVHjUhc#S
zCssPK%89CHV=QTl%CKebN3C{ZjT8EJF^4(GS|>I;vBimXYRvVN4dg~AHc^UjkJ?J#
zNB-r+HYc{zcab|1a`_W5CmK}Ou8+G_vWK!)_Lh6vMN=O8nH+H9psG3K#7F+d+}~V0
zS;8Yu994dda-2Nj#6K!Ob0Y2(pYLh%3@K0ltXu`?=gAA?Mb&%Bi32I~O4(H>t~v40
ziAQpjIdQ{@n@*HXmQ#LuU~ukmmIG1wO2kR?7Q@?4+@btSN`BXgd-VG%dEmtC-C^l^
zEGLt9F|r+BGkGGXK|a%G>iIsWyl~>BN?yrgtk(8w*$tAXZTMF9NtxD-Ic~gn;)CpC
zE{u2KqwI=uxVezqh0jiWal+?<--WMEe3L^jci85_cPGxz3(Iku-i04d{B$CTEAgG2
zlrBWLkkkeF;IYgr8S~_13Q~UmTJlt?J~br`nbw7LD!(`@K7$JxUC^n-LeaZmpcqwd
za>1;;>A`rb@+n!9%F^0haJaO^mWPw#BHb={R1O!s%Fmn+1zZTaki&(L3)M@+MLY>b
zx={XRd?qq8nT5<s{z6JYHW#uhm+hO=r5!1j+=b<`5=ED0G$rgp3?-I~BXf~bBPWME
zF64Egz6%Zbbn?0In+s)K$nV1CexU*`#8V2A#mPc06sAZ)5f_Tmi>bt&wxQ%D*evNn
zDN1RwjH;0nSO2#$a%R36SF9Z8Ti%5VE>v`(5}Vc4x~=R&6?#>&n#y&v<7>E3lg(OW
zT^DLo>ZqE+X^P4YP>;<vPm(lrp^*z6UFgJB_q$6wH@0@6F$<cw(A0%yYT8yVG*{k&
z($a<3e(jxnc^K+Nv{AinUGfgCwx|6;wkJD~lXh!&t)1z;UFhRN7kXE+8z}|dUFbpY
zsgho@?_ElK53?`BA!I)n`m34&E)1j(A_uFy)FExcKiM4W!Y~(xyD);yG2}=WM#*~M
z=fOrZNw~=$OP6W$jY~1Xg^4bh+%UT_$%V--9CzV_3sYQ}>cVOl*0?aug`dA_^IGh}
zbWS_Ng_$nQQsc~{%ywZ8WiFX8UzuvY3k#SmBo~pA%g?ebacMV5@>uG^GWv3Ih00gD
zuu8dH>DIcm+nb%TtK`;}XPpb{UD&_@H<DY)P2^@5wos(9+wdfR(YKM?$sMY<-P<C&
zT-fcx9wz%#zSjlWon-R;Ob)nkkaEa{Bb39c^6!KKe%AV^3&&J`v|-#oE}V4XmF!e5
zoZ^ySbm5W<r&)7GRi1U>9Q{0bLFI4nYj2obcHyQAw_Lcw{Hp4`M!D|74NChqiLah+
zyKvuy2Mq6!|B`oIxJSvu>*GTg9<lk1d`u=>)SkHTl+A=!WY6icBrhm0T}Zg||IdYz
z9}0YS;fo7z*!7ltr|RERKFC#o@=4`#8~@dXZ)~P_<GY;p>8ae>A@-A=%#9>$MvzI#
z!Td~u)Ffv!1)0*Fcy&n4W*Smz(z=n3UQNw6gBux{=tw<jAdRF<<(nICal`6HQ#YEq
zVROUoMo~A4x#4ib=|(QMc1n>-7bnT)hT9E~8*szxMrMXSHCoUOKRrNh=U=8o(le1y
zdA7+y&r1G6{_l5%vb&MPjS$0}ZiFc^_b4}_mG>PL5krqvNgQRuiMU_g$W71VMm!}i
znUBm*79clIPTYSAx>1OU%%!j!Md*6|+<b92O0e0`jgoGZa-$xbrQImwMin=zy73#6
z3S?Qb99f=BcvV=DUWu$snyzX064mIn$m(PbvL>1Ejz?{J9kMPd6DIuFQ++lYkTPH+
z%I~VCu^Ub3ax#%gn!C}$jX&KO%CMyy-Q4KzMk_a3Gil>S2TEJA9Vrw3;YNFU!uu*6
z>7B^VWEZk4DfQ(G=Iuc*x<o$Cjh^&gWN)$$*_X_mPkR@xzwB~LLh=|u8AuLtW3bAH
z$lCrjUJ8b}wY&7OZtdPcCLHd@2#zz7lw=fTv>Rh63GWh&b7Q<46PQd@l@lqG+?cGA
zDQ?I`PzIT%lId>DpwA>{sl3^t__=P(bEA<5zk4v>jRkIeapS8S3*A`c#!WYFxv|)d
zC309bj=12)Qa6^lang;|vqH<=SmDM#H}<=+(v4MaY;a?vbgA*zP_o|E7G^Ddog3>Z
zL$7FijyyKGv6IPWH?~l=lH16?+$eWB@qcQzyRjo7l&v{J`x(bwZ0>er4`r|F-E~46
z`2d?o$b;k|Hx5(&CI>ds{x?S+N7+2)#&OCC@*h%q<MwM;u2XEDCeM&($#dj+*&+Fi
zz8nc(WOB)k%M_XR3gs$!jlAy04b^*ZSNyeg@weIhPtFg+qVKrzuN!xn+;ihG<v#g<
zd`LbbU-7dFGM6WAJe9MY8_$_b^2&`D^p`66aii#KdYt;4&l@-1s@`{$_v8mRKC1ka
z8=sXgJXH9boc!JR#e-}f{BYx^8>u`<E&ESoY>kcKJsk@q@n~0s2r{V$$taQ}r=;*8
zB?bHvt);)krSZV!LBr2cX+22iL3$4|cwl8sM$$;?NEt^@F?f)Vzr`$x$pf?MwRn)`
zN#f^iYz*zBgLHb(vWB+Z-5z+DfQ%%)9{4Cy;HLyU2&yF06TW@nL1vX?p=9;I%Q<HE
zAcqI5Z-#4m5b~f!rvmvr$nQZ;529EZP39uQ9>h>&Ua^!oHO{Xp&rQig=JnuM743Ny
z@F1Q^IkF&G#)Cp06!xG9n^IQ7gQCidc~D&WwmaJXT+)M5OiHV~<8N`lDKATz^ERry
z2NgW1$YwRNlB%ifK^1ycmE`MKKt`_aK@BD~Ri5Np+F{<jwLPfAq%K)c_132}kR5=M
zuyq=H(8Pl!9xU~ssRzwGnBc)g*<_)Z<{osBpX-v<t43()K`Rehv)RUj4k~X;Y3IQo
zl=do@K{_h$<Uwb;E>`=0w{9MEXLF<nJv``1AL2nTN`JC9DaCy#eaU|EtZ!(ala$8*
z4+g55K^_dIZ{{cJrT0%Zhk7tf)eQGw1bu7@ZG=%OA59sP(B;86m5-No#e1qr9%Ol|
z-PO#ZO!i<3Yo@BoX_V<6%%IF9z5I1`nQFENbC}E}C7CBjF@1pt3q4pwUrdhTr^WJ|
z@krS+50-my%7fD$tngr^2Rl93<-sae=AIbZCP#q>Ydl!XWD_Y9uJd3$eFM2s<%2S5
zFW)wMu!YH1mH*|zR(_Aoc9rb#;5NTic(?3M^Wu*%-{Zkv5BAXysLK5wBn&GfAN1f5
z^TVq5Zx0T0<fAG%=D~60Cn*1TaFX)wfOZL!#~BZ<O8BnuS?1?d{dvj-@}dWqRDRim
zE6SfvD|*d?xqU*{RdU0FoAg`cZSoG;KTg{l?|E=v_N(lunH>*2cqr$_OvsQ4k34uR
zO&=cl@Wg|s9@O%pwinMlcrM!oI1Rk;;H4bnKxyEW2d_PluTn4r|9P<NuZTAuy!D{`
z?eN2?p?4m<myw~Jv_E+8(Szhb3gDARekCw0j~|rJ9(<vECBKp1NvXLwASC?BW)dJm
z=9?~@loUw@RGp_4q~u)WR~Zx5XDT2yJ&j7z0w0DYelnqE=M))KE??3wlgQUd3*~D>
z4JtQ6KBukiJo5KFRv;FL(>~6r&3$-Ov=^|eO8LKWDU)~og)Z&JUlVzFp#4km>6Hrm
z06!1_f(&y4kw7LOGmr(?#rK3CR!c2^z>-x>l^ys+c{V_L6GqFyFa#w0wTt9YOrn9X
zs*j;mU!d(^xq#_&;|l}7GR&=N@&I}1`GEXD0eU=85a`2KyH{cp_s>GW+?t8M;aG%a
zMS)^!oZ>(UdP$XRe3YaN@Eb4?7zC6B$^o5$E<kyp0`NP~n8g*z8e}E1GEjvgOJ0>y
z4XCb?p3AhWOiiE`P#dVD^7=qsdOelQY^5!H1E3+3Mk;@PI^2ZbmTU?%1DdPe7QppW
z$z?)$v}D+dYz?$gHL^0>0e`T0eXll`_Vf-wM@lC$%SNs1@WIf8amBDMsw=~8vR?r`
z=sn54Krc#fQYPsG6u+xY+mA_qa)9dXYl|2R3<2f=^MOBsp}-Vi34h&b7|X_x!-2xc
zFoHgk90iP~G~iFwj|IlDIi8#VoLs4$ALKES$s}MhWd{FlXeuyG_9Z5BNU5AbnMuw9
zW>XUOXX%~G=CI@ua^NfgRsbt`5G^DZk&9*FDND&^<Z@D`dX!yzEwc*P0Bq!FtARBX
z$=6cW0qZI2<F)1A1Z-yWZ(s|s71#spO_+q-L2d)KQ!HH*U+wOcBQc>&{tEy&<<@@r
zeIJv9D&G$rpeGz7Qg8@3%p~DiAE6%wj>!?Kruqjs@&9U0s{C-Ph%>-hIfZ&*@!}kC
z9(V`52QB~?fd_KJMCwLQLzm?I(=hfXC%jBv0j{cXuE~C@{06X`=M$;F#i?$ScYuE>
zlHUdHDZdZoSP?JbxZ_a|fk(h&;0Z^2rN(>;JflA+Uyv_VZ=s#qQTbY~0xEe!c?(pG
z)Xt*cmqdL4(t5S0@KJk4+KKTqki@IW7vL-KO-=h(A8qIV4*XEbPx)ikJlZR}2-YX{
zA{iyQ7pW-HmBNdZ^kA37*MO<LNR!aZ0keIIN#{j+CK<fQ=!K51C&%4NygC@zG<sp8
zY<r~TR#|c{V!Vj;LY|AAU12XAUO2sQvFZ0BKyiEFp@5Xhy<Yf~-{o&E1li2tMWh#*
zyvVG2f1zaYA}ggQf16K6$mT_MRWmS;b|DC{nUjnn<+9ZArna=kyHWN@p^;@$#CcJ`
zi+C?`c`<52=vOsDZb}|9uNV1Lp5Kf0W^H>l$yc<X7bUz{S3kCp>MiU=5#>d_C`K<%
zcHn$VdQr-Y(oD*GQNfEcs{S`hS+bm(OGVXN&5KI(%48L?s_KnCsQvX*buVhDq$Wky
zLme;bdhx-Fk6zUCqP`a!z1ZYM11}nS(a($iUTiNEZX|2Qi%wqr?nPrSnlO~SHKnN+
z%~aCdix%{jWGj_d>k=#VZP;w<MLWtLs<*ut9hB$l6-JiW&RoJ?WEZll7u_iGT)KPF
zgWi*L9n<c9d#m0)Ui77x@2<TtMCaH6UJUnQ1jB(|3{sVYy%?hWPs&ho7@4D0Dw%eq
z7ZbdgC_8|v98DSH#aPNXm5-Obk^9>uCX2jS?8Rg+rm#8Hi&<XGrcd)?x|(W+7c-Sx
zxWIGRobSb4$~@IO^hk;Y$`^X^{-Ac4FY#ij><`SBk*mn%<O*^nnXqiD=`!IOFV@o6
zsU-J-&<5p;7N*+l#TGA4dvV5#UM*5=^&)Au*yH;{e|fP@HWn)nk~_$qUhMK>w;Exe
z7kiZN^<v&0Z5!=pazN!TN~bvF#bGx8CQo>AgmP5X9P{G1@>bon4f>B4Cz+g5`P?xn
z&dSN(iw9mj^kUhO@Oe40%!t3vf(ztDFD`j;ncj$ha(=~&t7?R66xnTVP;RRHmKV3Z
zxWneZ<UKF$QgZVvo@9CMtL@&pYpkrpM_xSk;*Vb8Ctkc}<x@5#c}96ozVPBD<(29U
zcZ>ax^)lugFW$=OH$ME1$$N4aU*&!B;<FraJ~a2?ix*$L@cR((;hVhH=oG8>!QjJp
zd9uetKfL(qMG_w(eA;CqqYp_bX~|?hB=;c&Jr$XfywF*@ny03xA*K0zYkWH8=_wg}
zn9BFKbSfX%Cxy|6-Q8lHJ_NfK5izl8CM~3uw2^in92BVxcaL>(95?A9L3&A92A@2y
zgW9qMeTej-oDcar$7W)0*oPP&GW(E)&8$BBqNaMZSDPf857~Xl;X_E}Q9k6PXKbe(
zNAiefGgtQ1vKnJ$a3Avfv{f2M<|2RfAvYxtnU|Cr*>*BQ0Ut{EP|}BZ9}4<VNX@G#
zMP9=cQOP=M(qhVsQ{;$~5lYd^lBLNq<ZtAYqv;!#)ZWuB??VM2Dl(L24Ie7eE32dm
zr7Bs?hw3Wtl_kEW54B{mnbh~8fe&?5Z(Sei(G&LVhV;g&w~-IO(`$E4yhCW>LsKT@
zCu!@jg%2%#nC-(HA6og)+K16TjA20=ANp`xw`H@P4}VbF`_P3VlXvi;qw-EZbXH#H
zOng@#y7|yuB|RxU$W8oX|6cUoGGA_pzG}bf=R<!V2CzAh9PYy)9|qHh_%Kve{^`Sf
zOIUWrVJexIB0NI*NFPQimsyOJ<?j{#z<G`1tjGH>!H0?T>7+cPNj^;WVTv3nOs0{`
z_`2AUF7f^I84PFoFpE+vmv(b9*N1sNZ1!P`ER_#MzeO3-#H{vVfe#CPSj5UDJ}mWN
zF?}D;t}@{=A67A0POcy&U+I&-4%Y5WDsfB6Xlr~}>x0NTay=={4L)q7Z&Hbz_P5G7
zKAiR8oDbVL=3XE6QMQvi$eljyqR5PP`>;p3oQn7RaDdGdJ{+VRQN4#Khkf{4B?;%}
zqdpu{$#IIYOp1S0a*}e&htn!KBP*w?b{NXzybo7>xW=vvK3t?+Qk9o|xT0Jxqu1&G
zk~hek<Sp_xd54sd6E^x?AMUB-z7G$S@3JO+EN}k!kSvJgK|J;0nGY}hc;&})A703A
z<41cxUi$D#&Paab@Z+@)|M_6{!y;vMV&C}iSx)Reyyckh$oFde50sDOC$e9?h_7<;
zr)TivyAMC;sr}kH|EHYfDdI^e5q>09NixcKy|&U)_>q#$RAfr|kAC^`H&vOIl8#L8
zhoPZ%2FR#-brikiDlt+_end>y{<6=?=DkBvK0j=J*!^&*N|zr_<%0%CxRrbS+B-fn
ztvtMbEbox`8q?1(;78DpNIx>MnN?M0_9Kh(T=`P`LeHj>J|!bUe&qC{q#vdH==&oo
z%8y_D$n8h8stHqK$XGw(D7jSc^L|O1UkK;%qZkwMynf{KLnOZ+1t{@;6sAa6(2qjO
zbp^sj=tWhsYQ6TluQ-P);m7&y+F7);A7%Wg?MEFye)FR&d#jS={HQ=FPfGC){(x*n
zKPoY)Ojc374fyU#H8!i0HOQKN)S~E5YI8iYII6B6js0liM?F8JS)UYXKxs%e^5b`v
zkL#notI*VsRvf1pDM@obTF_gPt<NQ1TU)c)hHOi=^Wz-vA3FHa(T~4nWIsCj(b<pT
zevFVM+!xbDw#%YWZ$G+n5*fc6r90WfkDioXs(163Bz<JF`q57%gZ=1Fmkl?7GSH7f
zs`m_ks%Z$DfBG?$GEDVmJQy+3k5PWC_G677qx~4;N6jM9OZ*t?$2dQx`!R#X<H^b7
z1V1LK5hlt0b3(iCouZPdeoUi3?ys$xne@5jEOIs}U32{MgI`+BJU`|$T;Rtd)w@tu
zS{ki)u}ZRgBbIXUmXXWJ6{IZlN<UU9AJr?g){k|5?DgZeK4!fi8#u@ga-$zxDVx;D
zn<-mJ=ZJ{ERKAU}UH10=+OfHl&0VT@w;y|y58N9eGup@5?I#cTagcI|l-|RB{8u(C
zQsQvvsO%eZILNm97JbZ*<9?j*;~$Q8R*iYmk5kG|Q_jdK^f+G$dbBlj!H<7a<$UPJ
zyYZomEV$&yWk0T{sc!pm)sJg_Tvy3W$_;Ye!4$VB7n5kC-I3A!xT`AfQ|`&m#zX7@
zn<anO&WcyZhaUOySOy=j`4h@hKc1=NxgRf-AKwu5TAsKcjRN>RfH!`;^&={P=m6gN
z@!k)20G<Fo`0<gm&;{_xkI#Oj4j|M^J2!q|o-BZ`ete^U_ajL_J9GYE^CxK;racRJ
zL<EqOz2fJeB}uM4MF1)3sZ=sNIwB3{A~Q-GKsx2=DH+I&0X*Cgm9QlG01N>b126?(
z<{<Wfe7Y&|9NvA0_ST{`0GmqQ<WB0KJ5}PMjNcY<uuJrZq0#bozn6(GfXo48q5A^}
z1keiF(+LI;$uJWc&F7ev9wMdYmjJTSvy(Z<O}(|rbJC;gYaR|DCV<}pC>ua*0CDUp
zLgpg#lD`I!JAgd&+7FY+L#E9aKz=3#0*I$bn46c#f&mm#NnzQnT*9IO6bqoZ%F9qn
zkR{1d0hFes;5Q`8Xj$(@lw;B$fW|e#<pZb?K*azm1yF-|WwHvHFl(8rY5>)kh*uB5
zT{Q9C>6!u53ZOQ->X7vUsH-Y<!y@X_=L8e?nTBlYl1DTSph*Bn12`5y(*T+UurQ!q
zFPaC?B7i>w7#cuJ**XFA<|M7vnB4+s6F}Pl+6C}O0G(CdK7fw&4rIdf?L<#Fn!3=t
zlJYDb^Jg`>v)O~}89*=9dy*H>J^}P)(l3Di0Sr*RgD3+7^7T{Nov=Ix2QWnS7D%go
zt=X^u#sn~y;c#+903!pq^;Nr#8O3BYdD9*-jxs%f83BwBU_t;BnM@(2eo_FFl|Sd(
zHB;G~7Qht#!qiMQ=aREj<!s8FfV_#FxSaEt%nx7zrSb=DuUizr;sBNeurz?(av&TI
zEel{d3pNL^f+A&WC@TY4MOjUj;(oO@fOP?^SCtzn8_3Z2B%3H@?rHOq$Cd!LN)o^}
z<~zvkWN)5trDi9ayU4m}8}8v!?IrgGus?tUbXnBH0UV?sQc1U;QIh}7=8*tC4+}~2
zcmOBl3=_bk0R9Q!WB~V!Id24TinF*7z(vYw@=O3{Dd))Z<o~wyr2wuoxlCRmWtp#1
zuE{?0CGnZQxF2y-ws-)y*>#`1L;g$NCGU|kg4|j>P%i7ORNdIevhC!g9l(<Sp0ev%
zK)$C`I}<)vl`jH#DZN{?{pwW!R{ofU_<wR0V9i_d9hr{b75q_6`<?QM{2ag+m4Bst
zlQTT;E`F%|CnZTxTY!ill2W#INRcIX(iB0Y48j}<OC(YSkvfQhK@18aO%Q2=C?7<H
zAkqbqK8P$qWDTO+nCJ{aID&8nk&)x*g3wb8q=ht+CK;J>TJ6bJHf=%JDQo$Sb}qUs
zo1fwi!b6e&>y^-}dVN7;=JzWGR1yp#lAejoO!n=U_)6iIAYy`8+%h^_5ZQysp{5E2
zF-E<b$QeWw^Jp?mnonu3&0~XzV>4F}g@Y&(#IHf*W|D`D4<c_6`RMtBC_qU#UY4Fp
ze21i95QUh_fc9DuMH6bsVnGxSqJ-)#MJY)pTvkd4k#Lvz8^f}yvK(br_lSx?R0^U)
z5FMG6+#gdph$=x;4We2Q%@|e>q6VcAS(B_6L@kOeRqY_^(Cez?`s(=l^af-@mG|L0
zRKK&?IEW@HZyLlUo_L!F(Sl*iAlj<lRzb8@-iGocZ$vxFA7pzn;q_*xAd>71bq&H_
zB)T*6F64sliC3a-L39tIM-V-k_a)_7^a`T4@;;QkMN;)sNq@=!^7Fcg!9ffO;zAG?
zgZMLup+PJUVnq<cf*2meY?h4(VkBj15ThvL$<d_DaSUZFIWCCxH?_}zO$cHllS$;F
zXGtbgq-#nLt9m9ri)le5I~_5dT{Fm;LCjK>EpkW9q0bFs9%a7l#;SKg5DS$r3S#pi
zZEs(~WGT6fOt?W>DKib?U=W9bFiZ%o4q}r`LSGZaT8iZBWcleE$c-w$bRx8cqwOKL
z3WL}t=ZD?eZT3!v+sPed1546fl-;DiR^s#B%jQ0EKY1XCe(HRCIEWJrWz4^WI6^<F
zl4C&}r#Iy1g8otY$skSzaXN@IOwN&K$qtPZkG}Ik{LQ&s3gWW78xzE{AjZCpz7oWZ
zAZ`Y6mG#$1nfrB$tA(~oZ_)1uaa;A?3F2S+U6tGmCSJ!MFnLHmQoWCZc%pnn(}?Fm
zypWS^Bx3yGbmhV?gLogr2RXZz3%?>?lmC%#f_O`LM@mhX=h~IxV-Vkh_#Tws!`04>
zpVjzZC|}6}$+gw~gPt@}EBh&j6(xc!YSHd1lF^fs(o7MFggdTOkx0!j4XKMn+DN2}
z#MYeJu<2EOhDc;o-pLT5S8j-ek!~VS@h_&Wk+4OgTO_(i!X61nB#K9(L?oP%a7E&m
zNMwsd*8ZV(6GGW1gxrzvL~5V!k=c34NYWPxKP5m)Z%~qxiTAXb7-o({7D`rCGq7Gn
zcKWZ8$W6%+i4Y}cB%&zMWNakDlo(PQzkNj9|1otIP*Pl7*Jf~cmyNY|S9ewW0D}ez
z?oN>44uOQ=?ht}&aF+xK2@u@fU4pxN@c-1Fx$pn2)$3W$-S^b3>av#UsiKEeBHtK9
z>BUtNYe5m^MJdI|IP$MYiAt#6l9W;wl%|v+<KG9Cv!J{MjVx$vK?Mtzl+>$PP@M(e
zk`>8H7F4EGA*+(IoN`VR*07+q1(`nTHJR5^y>e=*!@Mpj1@$bbPj5grRJnXoZeqcA
z7Iab5HnpIY1+Cd^W<hgG3-WuiB`I^ib~UDr1#Q{vM9RC1cB;2Mr32Z~BG<xAcxT(0
zN&Lybs|DTI>`uy<KUmO%-cu!M9wq8!!Os?~x8P3;dRx%Pf=L!kW<g&IhFUPpf_@fU
z>uvNW2ap5FL8NpIwqS_zPrZ$)74+d2jN>39ERg0%Qe+fmv;|`*V^yB?q&A-QzmOA1
zS>|6Ym`IQR-e8K<Td>rEWelfT@Ec{i1v4y|N&i*7y3Mj+HWL|V4yAa7n7NdB<a`Sj
zSg=slEVf{g^6UI$w8Vn=@7yvh)RtTD2Yba=SRh<UuCib?Weq9$?-u+wRu@^z`gLkd
z`2e^<4txvFSa4QC3pUET#IL>+7HqO$Gt2gq|5&iYf}Iv@QPXavY_njyN@D%yX?Yi$
zvIFd<>`}dYE!d}A&X5NzILPK93s&)Wo`)^wyX7Mm9JSyWyN;9pdmTB}KiNq&!YK<*
zD|Zz#kB)N|+_T`m1?Mfez^;qrzZP6lm6s`3EVxSfaKxPOng!R{yg}Z!;3nl3xmCT}
zyu;>QSp!_!2ePylB(fsLYM#d)S@6n&*RtocOp+%SJhk8%o6jwHNqM1q<z1^|s5$pH
zOg@osEqEteivB@WzPF$WZ}t0;N&I()GT~<nzNnh7mW0o|iMcQ-$RuP^QtFdgk(^$u
zVoqtMRCy{ZQY%kmMf|>+-ii!X^m5>52Qpfb$%<7rthOPu6<Ms<YQ;7yvRaYNipEwn
zu_C(_Ijjg-5w;?y6}e>E&pwM4xvl8XOAoY-`<&g#V?|!hD4!LDDDwMGSrU2Vx1s>O
zAUQg_xn|^1n9VA~Vysr!tgy4GS>d(9L3ffaQtI6lj}@hY37-*sOmr)f<u=DO*z~LV
z03|5T?yUJL6R{#{MP)0hFprfdwNfu@MG-cOT2ai3I5ll4D~c;GK`BWtduaZcytEZ%
z*!+eJae2zo%aawzZ%L`IXhkLZ3x0PYEA5n4q^cEzc9`p-8oR1nQNxOwR@AbhwiOK+
z)=?wWv!X7&>GOoYJl2=3pzh?@(27RvE!)RjGv8U!)QY)Q%(J4I70s>Y{dRwr8qH{7
z#maMfdn>+YeM_<x*_xEe+fdqC(M~0WGRAeVqN9vsMQ1C1u%ZXMx>#|FcY~6tx-#iz
zMR&@mF$urd?J485P1xc;vg;>Va>^`zkI~zTK34R#qMsGxt@y=?{_GuM#Zbxsav(X#
zD!)HB_p3$?62=_H<|uMFIl_vOl=$^Cnl6)!p^UX+oJw-OHvbMXfz6q6bXYNwK8c)a
z#bi}Eg)*;Ms%ezzDxV>n%u!kfnWd81lsQ)XMv1>i;e0C=Sn;RTym6b{$$H2K-$M2-
zvSP6nORQLG#Tq8dNEvWBMQ%{Og0fQOtE^b9yrgFQuKW+mS}WG6WWDT56%wv>xxtFR
z<dMNIkH0A!$xY;DEB;ZvTdbJU)+c4#t=M5jMH?#Fu+xfNa!#-zn+?0I*ki>*D;`;~
z*NT0d-M?1sx8i^mXV^Tbmf<+%5P8^&Bb1}$F;brCz*gp8Fi)^~l00R_X-W;=L-s8F
zoE7J-xIn*5UL-G(@#lmqbQ$d`MeaQ(e$9&OR@|`SCd0erEme8jiaYeG*UWE_?y3B~
z6%Xh)`4@!8^w(Crp**qTsj7Tt#dG=#@+J97^)?u0ytU$;6<@7LWW#^VKa=lO%?B$!
z(m$z0ZV>rJdEJ4@Vr)n(=VzO_=O?itDJ8uP$!th&LmD<ykW!F}lG29wyH!e(+J@d-
zlWEzNj*P!!vh-%KAtRGa<QV={QSvNoF1ep5yA3&PsJtkqlnps;$YqmXIR<<-<hCIX
zYaBM@wc+M8O&*18$fsO>-!Dmi8wyYgs=R(}y|8i%#cG31C3YKTT+?MjCkJ<tvOI1Z
zJamops=R)t(z*?X4Sps?Z760#z=og=AypH#Axw{ueR*#|88g;~BC4i0|0)q@Lye&M
zR;ReiOHfMM@JiiHvb4Nhj?&B6@C~IbS&l4EN^b?qw>Gpc=a*(>8>-ka#D<|ZRJEa+
z4LxkgP&rw3nVk(SZ1|pYsY%u+YuQknA`4T;hPw26WR9ig*{^{O4cUxXV;WH!+t9>@
z@90v{%!a1)_<MXer~mIR_AO=EY-nRcD^-7eS4>+Q+S$-WCGBnKth@uIqYa%@vOSNv
z7&Wh$2ToUp-N^1X{6LX4Hi0!gZTQiKpKR!*rtMGpS@ujyAF{9N?PtSQM-drT9s?K-
zv|*6y9c)AVy?}?=Fx-ZzHcYdjdF#OK+WH9AjI?2t4Wn%s!{%fg#!@Db<H+&kFJx1D
z!mG)zHcVt9^PNPIdnk)fq1V#mrpwN0L;uIxd>dxkFw2Iys(v<QjvOrf*5Wsn&pI17
zkDk7C!dw=xxzL71HY}zuv0*u7DJgSYX2W20FU}P<tYmIIYmTtShTmnq+0n<2KWtcQ
zLuxzH*s;!r^)_6!;a?m6v|)n{$83;&<1d-khK}h2`)t_AadwcKY}ics$A;~cEu_q1
zs}0-eNBMW^ntZ3RlgYTkF}vhdfWC*^OUB<Hc|To7I6ygQ!y%O%rW~>1s7l7ZGJcw>
z9k=0x4JU0lWy5K9U9sT|<pOz@JV(mN=jF`CHGEMemnfIXqcJh@XSQoLT({waEb8@S
zH*Bc6$@~W9m7HX3xMjm_8}8WfRE==ghKKZfD!FgN19~8xxy~P{{ILyB=<)Y%mab=P
zJ||z0FUc&sVqR0E<_+bo4ewO)pAGNn%@&#Cf3)F~4WF4Lu_wH9{=(*0GLaoI%oCG3
z{{kfwCS^039my#vNXb*$kxF^$)`7Hkq_d-~9qsH$Z$}0@V(lm*;W9m=9XagC$>L0Q
zWL8sUu_LSUY<6U)Pv(_rbI~n!SnbGdM;<%!GAW?y^HJoVyYf@~)`WM11=%cQM`2Yt
zAe;I0ZEX7Nu-oCV!^x(HbdhdSzii(6N27bm_#;BM!(h`-hR6UJw99Q_%~{AJ%p_t*
zlp;y3mwHh<irG=aj+%DF*-_k%igtW@r<bs!q#b2dWhu(&9EnS-q>LTk(Es<kP|l9>
zOe&Dys>)_R$H;({?5NC<tB_Sm$*b8>UAeqlsAWfOI~v>3gp=2?qn;Y4t{v`h!gHx_
zM+22Nq%^YQ>4b#d@0fgVM^jbP%#P;t7AhIR)zZ?ARw`+2M;rQx)aE$DUnG*Zg6-|-
zV8_%ry(7DRu%nY5b4D5R=xj$9dRLWnv!gqG)urrG(1VloROA0>$4~TL<j*RXow=_a
z{p?8VKspEd+cCh7-FED;W1w9w+$xvj_Wy3jU^|A`@v9vZ?HI~w<$mI$DZ}g-u0|VS
z$4L4pav?98I>rtu9!riR$CJO1(lvq7<(xjrj>&c`SEEg_<2O6z${Mg^njO<sK8rGg
zoN32_DhX?THj_EB7j-k=e9p6Dz8#CzR0}BaZ^jndv53w1wJpU<>{!ZVnW_(*NU=is
zO3ErbR;y$UWlS{Y4_Qk)w6*dQz+}B08|~O+$DeF&Q1yR_DBmAVyqUhuj_s6x?AW4u
zx5}2~kuFPR%O0~s<vS_6?5M@}lY8yhXUBaz9@w#8R)QUu?Ko2{aFAt3?Knm`WXEC3
z5mLsy&$IDyJ5Jhhis1>eUSIRA*J=8B@{Ap4Dd$M(-Q$Y6K)-0m+vEBrdi<-;6+5ol
z@h_8G<TX;Jx^Bk}<u~P=z^|1gzir1I=6A_^WV2Ah_tFpLz_jDD9gpmIY{wHh#8~i-
zd}hZh%5zdidqH_A=QkdwuT}m=7FBur?&gm1ADi#V4|aT1y>d(UFEX!nS~7?EDj@Qe
z%|s3}l>d(vCUzhRB`GOMwn}<(*2^R*97st|MW$AH8V7pcE+qx&9mwE76$h%y_dgC~
zav-+@c^t^h${DQ#`Qyyj$}A3Kbs(Dq9nPEkc6RpWAajzrNa>P~NO>K|=RnATFhe+C
zalq<8epOSzfr9ixWMMM?owm&Zy8}8C2k9YYWGBVtfSVG()il-Xb-+ij+$iDN6b74q
zGT=av690}j;y~1ak`9z&7)ur<i#TwUSKTSbrp!0af#S+bIB=EURFqapc}f`vzM+&Q
z%aQTlX;h$pOI9Q+k(Egq|4Qq)Y7SidoTz~V4IQZNz_A5-4TpT0U~cqU4%DW|3x_o8
zsHy5w>XG#wXvvSal_%+q9BARd_sknR(1h|GDU&yKpc%b68REKX=|C$syOXVDD^sMt
z4W%vF&VlxnM{(wobabE-o9X#AX=ewzuqj<#Dcu~X#-GLhpz<CL^rZht{zPWt`|aKi
z^l{+06DOSL>p(x*d7Owi(cggq4s3T|hXVs0805fG2bMW7*nuGq{3foa80x?<2d1gH
z40m9x@)4Ag4veCVCdZI#vzzZ9#yK#a&0idtM3HcU1HaNIk_%WV`D6#CFqujwx|whn
zzv&LlU?Md$DYMAg4$PrE<kci{*9gpY;7;?vJaWDR3n&Z8MWpmDrYv!w$6dcPmphPt
zt+BIzinR``;Apv?_*Xix$^ntpq{te|?+*My>69atgzFsep7pKgRDU|Kf$|r*SxAv(
z-bmTxz|&$0cPIJBfh`QTlG{|}oEjx}I<U)uR8FLJVz&c(9C##W9yvw^8hcrGhTP}C
zeg_WF50b~oL*!uxj!=%0vJ6`d^XsYO4xDh{qywjzpH{u+`^L=W|5==M;2gvAawIzN
zuLBoU%|*&3@-lhFfh_)nZ@sQLaF5}22X0Vq%6g{Ad~Z>1%USWhc~+FiT_!0l=B|F9
z{(yYwK)I9VAI+aQuw<n6#(}q#rw%-$JSSg}FG(qTMS1PO^!2(l-*KqV4t$~f=fHc)
z2T}(ANclv@FT+=QQm1)NNaREeB{7+VyvG0SO-4^nrXZz0r4yZhGoMHrC(=5R&uLyy
zA)OOBikd4YBg@h|kwMkph)b5qiOg(fA#;*hoyg`yj}CfvRhh$yvFFXd0OnFjZb}|9
zuM;wq^j06F=Xb*Egxr|5fD;ATTgVB!6AmW|vuPo%q>apW()^_0q`OFImf}UF+-!PC
zP0d9H_i+}w69&akN*-_`NDrxG?f@g|M68@)oEYFl5hsc|@tqS*ohar+oD<(VQIX>p
zccQctdsBI3?j@L%BuhDQDv<E|gfdLNA<L5G$ns89p!~_dbX0O;%}TAd%<+&>nRyi_
zs#2<v)n&e)%&$;tuqjfLQp<@SznFO)C+ae(M>cSxzN&m%&D_KdooK|QvC5k`@o}=*
z)yyfs9?{!6(awpthxO)8%pIt;aN>K4cuOZ*DR1pW8~Wy=sidpDEb|icxcG^~c5tGj
z6P;wgVzaxNR~JfGC%RFb{7tn?^@Hp-s-`F9M<=?>j+3rlZ2qizdpprbd0$FDCpN6$
zQ|o68bYhYdlbsmk#9$|e$lBOrF4Y((hSH@u%!%Rj5#&gfkD`p0jr-7$veFmzv9e_^
z>f^}qPW(cVWP%gF(kH6q@Ct2;6H}e|OBTtAX--UcVg=X947Id#DKnjzrIOiB%u)Uu
z<w&cTc}~oyFCdqY3&}-JET(j{na9*p`Z97kDdCHP=Bilf#40CN%kHG|b(G)9Kb%-g
z>C@3X`sA_Ri9c2421;%tW}`fd@!H=@v;$6TVz}9ff1KFj#8x)<klUQtN!d>BAe*Hy
z7h@NFH`!u~ne3&D>~ms2-5xT}mS1NZ2b~ZeA`g>C$fM*jGIfRQC*`n`t?9xr7fw5I
z#)$$h6m;RN6X%@xB4tjTcjAH*qtC@Wk^O39@S+os`)GHaxa7oT&h!d-gS<-q>%=w6
zb@FxCTr)T6w@7K;rraS%v^5LvIdNb0K5*h8{So<?+}Y18d+Nk9C!RBT>%=?C3-TrT
zihNDJapLGib6v^fKPK<V0{kDA4|24!DZQU4pJl#b^D{^y7h+t<=EB7_zQiuXZ85I~
zkltm!A|!DksSC;I$z4cINkK|)N*7Ym6K^rMg*?)@kd{e0RU>oHK+i~KQh8<<vMA5$
z!Z9v+b|yJo$VtgX!iC(FJfzGeuM7F;bq^+dhRV;T3{uF2!Y)*Hp^6I@7pyM$T+m&x
zxlpZ6sjuPKO}sa>-35mWPEJ*-uDQ}&F1XeB9v3vaS0z<8mo{Xy*CoGkq2swYzY75u
zg6xfTp$H{JhFyqIqNI$xu7>%Bu&4_qnG{ob9HqDmB~()7v%eI*G+9RFmE9?2re!(n
zaxRpoR3N`4rMDub5-H1BRi3X4U0kT~B5idchidIYO&4mp%)7BSb)hz;0a=HvOG<A&
z7wRiNI5DLp4P9uYlE#!KE_|mFS@LG|=41=<d)3?0g;vVX@Ab9e!nAdvoeS;NbL{Lw
z2jv|pom@!y-h6F(BmYt)Z~k5A=0bNDeqe8ZvWE*lQ+kq8_9NvdvX={Gc)jS}s<#iN
zFWJw9wd(301DFhSVGw07IfRTKVYmw;TuAIj5;sP=Fv^83E^KvSv<qWgSm?qc7sk3U
z&V_qfy#FLK#=G!~3$tBVHOBm$JHdsi9PL*ZCQ^3pPBDohy^~#-LjPUe<71i&(^c;b
z7iQ9Dsbu%S&>W8Z8#$MpN6se~kTUBDjRT8aSmMH;E_}UazAIbm!fF>X^4`$PIN)+}
z1-Vitq~y<SzEZ4Vr4;{8`GZ{R!aB-&)!S!ZNh#jI3I8JhCO49sT-Y2R$}d7)nCvqD
z=CaL&?JnGL;jRliT-fQtRTmDf)ONYB+l7;=eh=lK3wu?vkFwu|1C&SG%`?Cu)qB{5
zBQ6}3^NC81%g)c|azZ5+%Eq0NmjD;eFu6#cCC`!P$qS?m-tnFP68$oHg{+XyJUz++
z|I5X`=E8N#4e};=i@Z%rW!9L$Js0k~@X>`(<G=$K9=h<xg|{v|QuBIFdF(>w9}+)t
z;VGNXRPTsh$zIT3lCQ|us`q`Rn0NH|D*4Za6&n&>sXs7m-Ol_H;}iX}3tv>_S4twc
z`J`gp@;iTX>nC+1nHxFX$mK@fkG|w&2I-|pl9H0jjntGhDo;yEN2Yh<yM~4o%OfL`
zOk`#<3z^l8Y?SO|4pQpRzV+vJBaa(FH$oD+k<Sgg8_qX=xS@43FPLVf<aeV0MZ$uV
zLT(hMSX92|t-1f(_#97_Nam1n=q@*W6zO$SJf!A^mlD4=bh<(MNvRJ|V%nv?e$5}|
zGyT?$h#OHiV%;d>#y2b|N|qptk#VGqP~0v5Ph_rbd6Z;WiY)C$8CBEvdax|LoJz`5
zD!6fmS9h%FMkOYd$r^4{QI%EQs79}@l1se0QB5~$siZcgjvG}Eo4@?2??wZ+d8xbn
z1{%82$c>p^%<`hK8%^9uqam$^@7!oA&(4Fg9yD{Kxf|!)IPXRaH@<gcsT<4OXz4~P
zH~PBK&yCh@yt(PW_gZVud9`t)Eu|eP_al?}c5tJk8=aVRcjE^)I@6`AiyK|(-N^X+
z_w`V{y(m4&AIYEGcvQ^%4E3|B=}qb5mP_QBpZ@yG^3)8Babv6-1Kb$M-a+JWaxgi>
zjiHobq)hncqPej~$g6-#Mo~t)F|CeyaE)VgvKvz<<H=v#m_YfJoJdY0Ws-is1g6U5
zY%V6JyD^_KLsq^Uv)q`?=3F=CP<|t2+E<5?`FN+lc`9lDDD?v63*A^mx2rp@E@5+?
zJ-FNrN8QwayRp%Y6*7y-WmdYe%8k`5SVyiQWiG$F@dte^`91G^w_f%BN!dXD<wo`z
z=9=FmEB0XA4mWnXv6)@}kXy*Dq?B!=Y<DNzKXDhEN2Te;Zu%ZK_PVi8)gN?YKm7n%
zkk`dJL_bU(A!X#B`2Tvx-8id~6K<TOpHj(bIf9hGdT;(lXl;SS7u>ig`?&{cJ-Fn?
zWj7wX@x+ZQZd?_w7@CsUyyMuvobaw2*W9>HmwS@lP@~<X+#+wwRX|l<X{Gt$^qw2{
zRr0`%hxA8ePOjUhZlsKw=c~_dJagkYn=i<BZoH(tB43klNSWlVoYqe0BL6XYPktaj
zlAlN^NOIczW!e`vzPgdfgBXu_@=s1CCX<j!$z-Gy$lZ`r&{LAB$keKLV!x8<JV@_>
z--Cb$mwkE$5Au4D&x4E}Wbz<0D|4&*EFNU_ARC+6$($bKpzPUgzOv_1mF^|xDI$*t
z$;z6qXz(Dv2i5F`n*{|tu&T;}9u%S%CM{%EpE;V1ZYQPb@W4rTspQwxO=V0EN7hI$
z>GMFR7^Kw5*~4{74|-5cp44hXJmf*x0}**dC{Yh$RZ_%*qV#N^%?V}hahz#!4@yu<
zlBLMfq|}t5+&URo&V%wEjPziX2NgW{)`K=4wDq8(2bDZ%Tqk94e_Uk`s<6J92UXPw
z^(ocJ>K@eapeDVR2XbTXIv&(!vrudE+*OxekCdjfR-l0g4LxY2lEy{THl{ZrzayKf
zUeAX>-#c1!4_bI2@;%v-Y(+}gnlf@lnsy$v_n>FhWCK0uphoCU>F7Zxm2{?bA-j6e
zP33Z5;~zZe!DdggH~Ay^lLx&h@+^L)WbA8xl;|UKS9w1V`qKxfBrvVaAo^gH451A5
zU>IdMIf9H|OQSs)<H7G9{Nce^S*0GV_F#<%<2`s^BQV8-sVx45oZ!K)l!@ddaxy8)
zc4CRSV^8y7jt9SaFkR&{C^J2nMVU?38D}02b5+eE59TSKPg&r>LP{RqO@6TlOW0iM
z!3xSUaydDSpR-odSCPl#`0Dw>e|nF9;{t6>CS$D!>pVE*!C?>9d+;aAwtKLFvW5JM
zlm+{nveAQ0D%tG8Kg$2JneW`TvboIzxzD>fiChSj$xaV;d9a(l$AkT9s=btb9z0)>
z@Jo*a9vo!&g;)JL;=xf59(nNCgJT{Xm$SE=f;>3EnzL%0lay2BX%Eg&;_oLb%W%$v
z^Q!WK2N&s|_zHW)gR36gRlWaGZhCM{CD%Q;L62LM@cr#AHgA)6Jow+eo9}sWpWy@Y
zA^EK(;dwpr;FSljJ$TCe8Tp)iLB1qqX}5io?2QL+JxHV>M#DRmfAQcy*#kZJz~mG8
zk=!#WVc9;*dGfo2ziEDz^~MYT%9x2Yz7UW}G$f@+o=n4WBjGPoDKw;Ho=Wwm)=+M|
zd2@$!8q#Yxqv5QE3>q?O_(?-A4Vg4#)=*kQ84X!9WYys1v>nC=TGS3?(~w<54h=aq
z6jo#AqJYe;A&<)QYH~e!b0KH&cNZf0*({);Af=G1Y?CLkMT1p?jfqR;c8WuTlM+9U
zTlIQ0X!Npbi}*C?8Vn77<`E514FP&kO%>7*rav!g?$5FG;;Od@rKpBtlsJ`tNnNaj
z@{$@#DPL1D<{J%VHB4z~G?jI$p<$&^Ee*9bl-E#!W#5ujHB?knRiaeZP=(?-YMxT6
z(W{f+)--BRYLfECyAGu>S(mJ*p+2R7Z2eZ|U+x;RDbh$o@N&X;eNE(3fXW~JoU9qW
zxrP=RzNfd<(2mklLn}&avJKfGeZo=SUPBiRT{U!I-jVD?${agu=DP@yZcKWpygTIw
zO@14haMbi<@}q{D*Lm*J&|AY24NEojky+gK|Egi4hQ1p5v9iC0p&EwK2ap5FLF8a^
zh=#BHFM#1}jwNMbMratRd=zE0hA}EB@Fg&gK3*liP$rOR4kVlRk1<KZObxR%Ojb2h
zC{xL48m3cbkVp8Qa5i1$zEHy)`fn<kOPNQ`*RX&RIc$C{BacOFF4k~rPAO?F)398_
zX$?nvYWMH>S7_L&VV8!L8dkA#wT8b$G_29^JCi>&tf#Cc*O52*nc`2n47)*-8%voV
zjy5vcLT*yMn<@WjxYj=58;PwNwyECj8g?lEGTnTKyjvEJ$sTgAhJ70L(+`mcNU1z1
z2jkL&F%N4v!n_lg<QV-pd4fDio+2AnG^e^!RR8GH&uKU>N3<6~FD_`fs3D10UYKx6
zc0Ubo<<zR-3a8q%$NxaXRSo~Ld5yeHUMFvmH#OX%#P6SX=y%C`<bCofm-C^9M{GXU
z@PhIrzL%7Rd`5XL=e_yn+nASZz9L_fZ^-^D&12y|4ew?9CMmUasqX`G2|rUllAp*f
zr(?cQzLHXt$jk44yhu!mKhou6donMwdXdeGZ{7!zvnz!cDZNPLMQS!>+6-Q#QJ&U|
zboBHpS$CU%5%waJN-}$qMS0zKf$U!7@ZwBLzsHN5Dz|!(i=NwyJYM9b=l7z37y0NQ
z<BxY)hJs!cW>ScpSSR(iL5VE%`Fr^OpDvYlFC5C96qgrnl@wha(CA*3_`J~R2I(g&
z@akkCFT!5*^P;~O5ig=%)bOIF7qMQfdl&eYl|{TLN-5?=DKARX<H+J(l%SL(|M!Yk
zhRw3F&M6lo=7+U%^zvi{GIZKJ8&{-@RH9TSt9VgW<<-2XuDq(NOf4^Jd(qL0PF~be
zd1Ei?DzE27eR>13p~@RkM!gL*@!~srQ!l>vqNNwj*leyUTgYlr?}A!+(N^WHy=X(f
zyENgv-Hy%nUUX13J3g78#5;TO6O%4vSF)QI-M#ohRrd6v2R$!ebAMEMuM#o6l>bcW
zP4*%Cda=5J`5H06i-EFV-Sp4!VvrYuz2;}<U%eP2TX3+p@}6(B7endN9OlJv`Ur9)
zIZE|b{uGe<F<uDAlH<tn<S$-Kph$1II)O76^@*~#U(_dgF_|Jh#fz!*X)2lSMPPx?
zEY|gDm*Zx8F~^G~J}mX&H!tRTQO$?yKFsrCz85dNc<IFgFBW>S&x`$DERvltHrXn9
zvXa-;7xTF<@nR`u87V7axfd(wE6KT8%yanYQgLg%@*n;9+Y9mE$v?bUOIb%szMk@@
z7aLUa@S?WSiv~B%*PZQNY@%-_{~@Joix*qz+f=e}n|aRP;l)la!!B|+Dfu4CUh?{F
z-vKWUdU4&08(tjp;;@{tRpk*cPANZ1Ip)Q2$_er$nW|jEdymtys+q`K&U$f<exB^r
z#N0pYwA3%kG15}M<i%x*_!Td%(*Gr|sXWhDZSj-nO)nlu!I$VQFQj>!6uINYUFG+@
zxKF=TF}rlhI(g{DBegajd+|j1Q_3?ho~tC?Q|*-(uf53ZLlz(2c=6VY<UXYE;hh)B
zngvfDj=S;M|DPA{z4+k8M?RfIKHOFB{68`IOnxE1deJ&I;WaeIXTAy~_8|!+DVdCv
zd{OCGxf@FEFaDcvefzSRZ_HA$D>a$MhqOMV^C7*e&*(!2`jC<4Csui6Vl(i2vaCL2
z^P#X079Y+Z3GRRF%P#x&urfJ(I510-M@}Dd$-I2X!z91T^ZJmF4wbA*-Bjue_)w5Z
zA(gu;#9BGKSRab`VDrK5gTn_W!=Mi?AKX6ZY<fspLRnFoaxcZ_!=r5GmwpDDe$^ZB
zA$;3>ULhu7GNO8;GSimk|4JA2p%}yRKE$cs(v;#plu$`YA4<{dG%}}>M;SK1A<Ozu
zj?yBjImZe<eCtC+Ceo}*sYF)xp^D0n@KQz9LMdwaP}7H|J~Z>8md`vw>-zBGv{u`P
zIzAjt-E>mTQkxGMvU_iR@2@9ahqd|~qygEGY~({@HF6UlzEi&NV(R8TwD6&i4}E?3
zp7{?xRNkzOI_GccLn|Lz`{ZtGS{olaQQDI2NXgq%I*=WG7=1vKu(Rsz;zL(@H<fg!
z$VM-`S?|Hw^(22JfAXOhMb^yEKJ=!);iXXf`Osg^nLf<-VF2^tK8)~TpsF9_!(in@
zC_{Z1rjpFZlZ^CXln*mxk|Dv-D*wfYG0MkM#`!Rwa*uz1lqH$q!>>L}^kI?@li4-R
zhbd~RsXm-sXdZ((=a`(%JpODvlk=KI&L(BnbL3TkK365Zwv>Lq#lOIZV-Nim=9v4>
zLJqQsT<pW2H_TVPWj-wTp}39`I#&3w(uaFK-1lLX537ARB0GZ*YvdUDnrOXD;*(qJ
zU`NzEKmWmT){^VUk4N+kKK$jwKR#@cgrQV!@?j(W((V+!Z07E|*@tCqOxfzgHXjbD
z%I!Yv@nJ8UJII|r?4s;eHP33q?4##zX8x2y9{c40XL697?l#xhVO2kr7os`l!%ZJ<
z`EcBa6S8hq?-d_T`Ec5YGfXb1{4C|1oQo*K_-jlV_M#7$RLx}{`b{&Rg*>h@{Fl7u
z!*$9Ha>+pR_2oAGLF%TJQ~B@ECA>?S*(T<J4-b8?>agi}<ile*XX?nHo9EsqvS+^0
zKd|zt56^sfPJiLUTgprF6)E+v<yAm=uAu*&^8b8zue|V{n2$buV)L^PiFG8=@kRB1
zr6kf3!v$Eh&wTAmsw0_>v`nO#Tt_N;3Nj@*oYz}RO;1DaOPR2K(&?C0uCz=jkH-u3
zj5;#u$gCraT(*;yS;>54HXYe@<e*D^ZXG$5=c3de5|f9LmyF-yQVBNm>nK2xq@XUl
zZo==43+u2jKhHZ5*>yN{7)+cxc6By1S@{<8Rm`Qstw!+3!W1|6D6dL<6rIe<7c#$&
zfa(qE2<Zs386k`6h*DxzO%Yvgv|2{Slt(d!apdllF(q}B(y>9uUph+bD5K*i9ldmX
zqob^jHagnsD5s;mj(VJ=0$Gie(Y~cr)KQ62nXE!qC8g%8rA&1lHQ204*40r<_131;
z(Xo4d!nUh*Bu9N64RkbQR|{3yNJnEGP1yWSM>9%OviSIfX`AcF<~P^g_sm<8tw;%5
zQ?`~di`(hwDjTbj`EI{G^A2Q3vJ=^v?4qOnXY-S<Ji0OIPX0jlAbaZgks>ua$H)Av
zqqmOVbj+2lQ^MazR__zJM=ScWrk{@fItI{(kORp<<Y4mDLvxNp>BC5A4%e|Ny}9rs
zb&S$6TE`e2lXXmC!B`y=DC5ZSYN}s!WUXqhlV4RbQO6|uq;%#vZ7O{xIgOl7O4kfZ
z;j}TcD6>^QNA?q5GIt)6rMmpj0_M{fsG5a37SR`zOH}@Is+i^U-&L|g_D|)jbgZVY
zA=C0^D1WHlwUl)_)>Hl@<DcE%IyUM!q~oxT+sD#w(y>QJ$%E!c*Uc>ZhulJL)v-;-
zcKQx-myVs3<W}?j&+h-@dv%N}7ud%{y7uchp!}eYYdOvLW=C`!)$yN>_vXnh?wF3N
zI{szZaUCagoTQ&3&*?Z#IYXW$_nb99O`q3sLB~ZV(!8wW6218zv-gV1b6w1LjebYR
zUCMPGH&pLU$}RFXc_?4ZJstOTyi_$0bUdX$RLLXCV;xUa6910_&vZOz@`8-HlJLF#
zD>h$~Z^*Yg-ce*xH}o_<==dlvD+Zpe*FWj_EXQn&k=j7gG)=$gNJ{xClBTIV60sR$
zATcEgDf!H|x-c1=$ql5Sq$E?R8W~?kPGgwkrzO)FNKcVuLSH?jflP+^>Xz9+4g)#q
zS;(wpHUrryQuFffw7KZ{RFd039_4uryq%tKw%K<frhtKh26hLqCxAi*3L7ZpM`=GS
z2CN1?8u(<uCijdoFxkKq0}caD1C<R_G2k-bHc;F^2?M`o)CVt#^B5R1G^iQy8t@s=
z4a9Q31{qSz;HL!0pn(;g%%fW#VI~nWYM|x?bDxn%5d&?828%K;W+0BzkayE7DO+c;
z_Kkt8`}I=HrM@(!4Ef=T`DDu)D92`bRa3#hxAcl+C6!OTYg9E*&A?9vdKnm0$Y0$+
z69eBFsKJ_=25M1i8)!Q<X9Id2vaW%8l=`I1_hSq5^|7IWMob!$N!uo@|E3078EDP0
znSth%7UcJ2OVY)EcxfZEW3xNi&Oj#voei{Svjf?YEcBas258tWVJ=+^bY<R+l&-{0
zQ~yBkp^~1IAIU$iB>LHa+$ikd#-%2YH2N6m%Y2-Hew4wol_~uV44@1o2az)VPorXn
z(npcQR6d+C!oWzCJj!7Hpm8*tW5}^&q7kXbQ+^?(W&-6`0~0BeRNf`CcdCJD26oAA
zY~Y_nanlVfFtE_T4B0a$>oZw7%fM^{bJSG7$u7-Lf^(V7Bj=Ox%eKhC)T#O^1FH=z
zrb}}PWvPK>l;tX4VPK{5#Hm7SIL>DBcLRSISWDkPt|R3ctvB!|J%;}zBFSIzT?RH%
zHmS<Lx9a~G*kWL-N_HC9rhL1B9m>=C%}u|rQ?fk<_8Pcs;EI8La(F)0j~c*vb8p;l
z-~j6ns;LecIIR4L)bn^eX2_o`aYE(iC?^e^QpsrpXXs~D^1P98Uik&eMFW>q5_yv7
zs_ay94w<jNHc%+J_nLvb2JRWS&ZZ<c4BS+H%fM~rcMSZN+mHfz+-LaIzyr!d@{y{1
zY~YFVZejm3<<AYgQ2x@uE9G@tny;{LxR7rRyrcZ5mifJb5A-`t&7<kFfiH3n_amhr
zUkxPkBZ(hL{n&6?i}53|AJZ@UUS|!yzZzFQnNdJa`+g+%LvBESu9=bjga7UUEp#$&
zlgppVkJNtid|t?pG=8M@%ey{gXOhm3N=Gy)PVa{dC65f0jASN1GE=gs-mHFX+f!1?
zWHigrxEy}STypx6%a7a~Fdr$sc_?|wDTCvn^89`jP+pL-eR;CN@)F>O)eoB=5r%d@
z^w;KJBD@p_>GZ=zag!cW$~4NLx5a#FWZe(L4?mj$KSC-G`q9{7erp<L@|FLa7WE_6
zk0MNpsmh}91qIFGIC^oi1X)rRn7?`|<Ht9CJo4kQA7%Y0=SL4ediqh`j|zTN_M?g)
z-}+IJOIXQ|jIaH6-MF~5<oW(u`m1q)55B5?boruH^P{>Sr{@|)$_8t27M68!4Jb9q
zT7J}~$nw;o)b*ntrM}9Gr)k>Ik4Eww{b=GxJ3rd9>pQXq*_3SNM{|lhV7{mQ-j9}S
zw(_G5MZ(syv{%jju<ie;lx7DuyZX_Q(uwR$N^ciFQ;}{e>F&o5^n0t!?=*h&<0n7n
z`?0`}UVi-S$1i?N@Z-{Ze{VkqN%PORKCJIc_EY2Z_hSHkAnD=_%?JB2gw3ITjHV1D
zhm$h95tNaBj8aMCG)>3Q$CBg7@#OFe<`T-|S2@;Ngl2HlOe81yF_|J8YYJtmAJZt)
zRX!|D>6x5x7AYglrpzIKBj@@tPxU6dr7iShkssUr*x|=wKc2KSR{61-3$uh=N-iUp
z`>}$ulDyH}d~dnNkKftc;>RD9_2gP|9Vunop7{QhQwN)W`LRjmfBUgfd5_GAH`D(i
zb5u+CZgVS}+x!^nH@{rk>BlZVPWW+>`EEZBQlx8-AA9KoD+TsZ_LB$vXjnbruSkdd
zILz<}d6Ycn$8mWKGxxWx?aYJjlpGFz{OiXxKhCg5!i#>KrJqyDc|R`Dmlra>Nw`G6
zOkN?cl8#*F$k*v2Hz*xarM&6KEkACn{GK0o=y%B}f1B?W@6#WU4@n7+q%8KtkEe3}
z44`rV&-{2UXSM(e2Jpg<mvSl&AVmPL<jm>EXHNBo{7Al4<Gl0ZKjrT!AN=SXFu#@h
zr1HIw5`Ce6RY{@%Vgmf~KY%2ZqyZ$O#9u}HaVGQm%0-w{GRzV{ssK{c(*%&7l9rUR
zbOE`fr}>RX1|}KFOk`$NBezt@8bG!Hva2KyB}V``Rgx=!-1Jq4%(>^K=Tp6M=lJ~e
zzjz(#LID&Gpa>ILPD{YN#g97xD-#=OCuJx{08YA#j9)*V05r)P1-t<SDLzsXJphC5
zCj%<)mP`-P!zzgc5LF%<z^Z3HnY?HK#R7;6K)&Yth7>6tKndj~DWw7^O({bbOzAbh
z7R;cRWwRVvK7b08Z%OH`7{JBShDenFss_+8fKCBa3!r)cO#^7gCs-qZy3#e$JQvku
zQY&Cym%erYb=YiK$b50E7eIYB8wAjhvd?d>`9}1{WE1i`@?BH&h;AN0uT}b%N=7S&
zEy(W!as>%<kLumh96=tf18BpfE!mEgynO&2=mRR5M@Q!Xx&$ySfawgo1~4dq!2xs&
zpnE`Wx{DqG^ik9H4B*EAeqz(S|CIdmZvb-B4UwN2_9h3YYfASGpr4wye|%Q}169(e
zvpyt%p=|yVz%a^a)jK?Z5%iJdD6+V^U(A>Q#xfa4jwfX?<c>uq+59ztiIhnJOr}f;
zU@B!4_u<V8%wO5f2w-La%L7=!u2})hq0A=Z?;r770CNMF$7E3eiz)L1SU_1wMxP~o
zZ?=TZ_&b^{4PY6Y@mF78DO-Gpe<PDs0jy?o4Y@vm-zk5PYe^|yN0Hla{YlwC{zd*x
zN=>gcO*aLwnZy1Qz;=o}wJiZ`rEgP7p^h=OKH81|cB*6-Med=qH-LQsYzkp>2>Sy#
z5Ww9a?geo$fI|U%6GYh{4hL{V&Ne~h4B}`2#{zgRCrplTJb?QFylWG8B7l<t`OkWs
z4&X`vSJ`_efD4qf<T+B7@VuPOcnKZxiwrLXa9Q;Z<!z7t4dA9qt_5(NenTa4`Nv!I
z+X38>Wv1UFFU{l5P|DoTTRZ#@0uVkVACZp(ctUwfJ|m@O%_{w601e{wR6(Q;;#B~z
z19%g_TMnBvh<5?}7r<9G-;<xn52VcQBP9{9%Jn&bFKq7MSv^tEJWk~iLrEM&5=w>Y
z=GU{yRB!SiQqWV9n|TGNH1tfWCT$Su=;_G}D$hufOBZIQWKnt6AhOZ3ljnHNnOs5S
z4#F9PD+phkK%O891<mI!3zL^+`GNo?KPh>EAPUk`B~N%Rg@drDUTY9Gx}9{8UwLM8
z2eIX%5egz4gon9CdS%uWoor=^F@o?15nxm17?j=b?}Rg(T<a{N^5T?e5V4dZL5%8U
zE_qQli;;0bTx?^$^N~jhCMAP%-RXoSFHI>EMEq6w$^}tAh!sJs45C61-v-ekh>k&2
z45CsHje=+#MCBm5Z_;aW!YXuWRt=&Wy*gQgO#Ugabjf^c1yP&zb%Ll%sV6I$QlE^!
zCQn1U)Ytc=XcEN7ih4^X-_e_r5;mhWCtC#Zy~@uf*ITi^HQ9!2OUjt-f@rV2V!lA9
zAUX#zCWx^?bP1ws5WRx<If!no`9W275B~q_)b(K4ll+nVDTw%sYW8MxKoA2deaOCK
zzaaX@3$GM3h(3&zr5YT>5c*KEHm_(joIWCmk+MPQqsjPddoJgGJ1&UvK`dhaOAr$%
zzXkDY5EFx#$)=1yi83vS$&@MNRMqR8q)%5qBZy4gOJ%BA3}**1NA>nt5i^%QPbKpy
z3xZfkdAiQr(DGOu#1bY;Rpm0u@*ut&Xr7B!1+hAab3vRBVoeag2XR17vqAh3#M&Ts
z2GMD>In=uN$;tKPpFwP({6*^b%?p@s3}O?Tn}gU&k?<cm(C9h%|0dg1zMZl|)@r>{
zQnrip+D+~uW!8ITo6`5I<aU4k5GOoA9#*3rkyiowF_j#b<Hcuw3OmW<6nR?po(bYC
zeZmg&SiTT6uXOi#fqqSnP*rn@a+$nBUJc@3N;-9&@at^eAa9blg1Ak&L(1Sug18^V
zgCL5BP$GnfK|BhgKnMjxcpStNIkZpdF(Eu<{Ttb2Kbha{JY(}Y`GR~&z6#<sr5>-!
z{+9kOi2o?>gZNC55k62plAp*^u9z>X_bVk)$h=&b6ekWLNeI2m8c9P)6GGY$lCddC
za!QI2Qc_Z>JhfDQ(xgBpPZu&zVmZn5A!G<4V+fhp%o0M@5HizkrOmxg9@#?3!6Z8=
zNz)Pmxo~lOZ>|t>hma?PyzGUl$rr-^uJfNig!TNAyif>zHpCPT!4fiGRc-g{?=7ZV
zL-2;+<Ak;l>>)VlPErfOrN(qqJRx|>nR~+ZMJDwS4Cc`g{FH#IpUqd&U<e_VghPnX
z^Ky&G<gsiP385&Zn5v8mVR_K}L{>6{QXzB?;fD}PhfpSjx*^mH;hPX1UG!IGeOa;`
zSw4gclv$3LZz&Z?8LCn!;eAV$5UMh)7D8=Gby60%2Bl^QwJ7O$-Q7C$&-=~iTR(&b
zAv6nNO(OGnZx})o_KG(Op)uXs*gTrPqc>H(#m=T}9zu%{zGu=lgmxjcq_-kltI9UA
zx3o03Z+n$=rgR`XhR{jnLwOO%E^KxUp&KRs`r$o7=o!M~5T=A6*ZBQ0gux*U5ob-W
z5PqigCi}~dLFr4%tou=Bo{1Si8AuKyXXxg$8%iHd4kL$?(lvrIk{l(A!K)~bVRI}w
zE`;$R{6hbgoIuL7a*=c4#1JN_M6OjnRh~$irgK90Ere;zr>ou>l$jySqRdvgyjaW)
zVO|I;Ls%8Ue3dVuEFc$>i$YkedgW5XOO-F9EDvD?CH^X=tLf`i%^J$@<R2ldrL0rE
zJJ%Y2hOi-ov-}S-d0v0Tcaa;(*3p=MLf9hDH;l<)Yz<+X9Drds!`L3eju5_vkSL6u
zA?ym_UI_O?xIQOtcL;|<I2^(rHLtyteex+lB?m${s60b#vLhiJW%Dw5EQHgP<KzkQ
zBzcOIrR~8VtDKSL58)ic^W?=4E>JwD67Gd@iOmA-W3Gg7HH3ddxW?p`9Hjgm_;ogA
z%o`!xqz`;<o=b15{0`-=EY%$|e;_CS5N7-m_{jVb`9@v^C{N@iAcSZ1m!wScobrNf
zF~I!d>s1J^*}U7r{MPO*{T(UI|3Y|A|3EelnS1po)%!VwFY&!!qLRnRrimD-!$?C(
zOeP_dlF7*AWQs6SQe=`;VI<0~i=+)BT^I$z3GZOjhmkdmY;0x-BO@gfnOW6jq3q>~
z${t1@mFEZ}Cp{OLo4m-MGUlb{BSFf-=ck;ACVTtTS1^o1VTcqaEu@vSk<w)k<H{eJ
zh$}2_BhfO9R$+L;(84GkMwu|YVH|B~gu^IWI?fkH)#Qdw8l*J+VFc(wGNkfBx6D_x
zNEp#DV!2dB!YEEDN){vI$XQ#HN^uFgNXalt(U<V<0N;dBHjGOf;u<q77e@6kYJ^dq
z%?e?B8%Ea($ttp0C5%dx%A|~zl$WBa8b&oHsfL?-T}^sDvX-i>9Y!5`U9tv$0WQV$
z*=!I-Lsi)*j3UR(zi8L}qBRNQyD&tWk|ND0&BJJ+lJ6-8mTRrUnCCP)htVaBU6lfD
zIAB|{9oasN4wQ~$C$e;1b0_Z_Mz=7AhA}LR?#z3I@iXNIvPT#_DN_6+<tJHJ1<dbz
z<<XnT0J2XQeJTCO{-o5jx2GIPA4Co&hp66|+A+h!xVhXnj)};KFh(*FA4M4*#u$~1
z4a5GtjC9G!<2lJMVN9U>s>Yls+l9X*oD#;=FrJ6;B8+KaOqVmEtfDY(JjpvFj1^(5
z3}a>(v%;9oX@3i2ZWwduFL<^8d1}nXl=<WWa$y*YRIh(piY3aIQkI3WTqV<<C0Z56
zYBt+v39Jd@clu`Xk1#f<%C(erVXUY8Nshm4o?HHkuZgF81PEi3@@L&*{!zX~P95}Z
zD%noi5yrnS%r}s`!`LG$GmKku9L2@$l@*dAbb>Ye!q^|ifiMoTd6+yz%7jTX_>U+*
z8pbjDag|)TrJW4pR2Zk3TnOW07-#5bRn0ld`LNvS&wQD_r1F0$m*u=cxvKJp8O^e5
zVO&?q4a(?3G5wNzZ-=pYf$#oT;|{~SVcetKCm)CLfFdJ24C4`fh5EkkNf=L=JR`gE
zFWN7|cqQkP2ueioI*d1A=n;II-*_9wJ2~G*kS&7$!gw#I;s~NwOMeLCV;D&z<~jKj
z$4Ny0OqcKr<!cz@KbwE)h+%JHQkqF9ul;G0MUb4HB7)SaHzg%i1o77hO{4O(6qzbL
zmq8XILj)O>XQE_|Ad5;uS&C$jAV&m+Bd~DVoDt-U01@O;W9E(^4?Qm#f8Eji^aZ?v
zYXN#eQkJ|>1YNxezml>>;AU=9z4izkbSLRjd9RM<?&pa>Q;9bMAH5O(7x+wG-C)xn
zK_G%4Jw(Pv5T?io5lS?IawE;NP!TqZs@`G|#3|pq+$b4AsR$ZI&?th^5tNCbW(2zy
z8=qEd->|Gw1mb1MauJlLNK!#IJ-wnzK6WTmS&dvJf~v}^QL2+QBA9X7JTcZ{v$m?K
z6G2_&^&+TGZ=jMB4FZiLXcEDZNW!mJzl)${1g%)mlx#*eCtF1DJ*8!#gul?Wj-X=%
zofx)>pe>~x*`Dk`%7V$CvpdtfNAN=gUFcoOZe-`23Fr16Z2m;{B!7%x%Q*9sMK3mg
zCVP_--qPdxMbKaNv{+bTF(8705j2aUc@%>p7#zXp2);xxB!Zz4EQw%g1jjN2hea?s
zf+-Q4%@`aW!H5V((nm!wo+9~Z%9seoQhcL=<0wD)g1<yCA%b63<wVM&uPJ1zNfE@$
z)Ci_UFfW2pTY}SN1Ib=@RGS&Wt**sBKGP1l^}(5gvlvP~JAye8{1(CG^{J#eSLN5%
zr;^F%N3ek7EF>jaL|H7GFQr$S%OY4F!N~|tMX(}*m9n!%usecP5v-12Qv{nMNc*DX
znh4fKu%7-q`3Jd{EIC5^lkyiS^&29nG%~x0JpN|5F@lmAgVOv*WP~P<ZL)PD@;(zS
z*61CZq!G#_+auT!LF=R1PL3d9_b(}=DY7SmgAp8xU@s@xNA4%3_W-97In3mkn#&R9
zM<bXyTbH>XXYUF2N^`X@cshbJ5j>9IiEN7q&PDLAoWvsda4&eCyhL6gFOtL8r@9=$
zl?bk~DV3|5hJ=z|m%TKHaVvt`5!|3l^CqQCx72qcxJ!S)3GdPG%i8ATQXs_-)l`q<
zjCVgM$<qj)Mes^a@)6|B5PTlN3)x0J4B4Ibrw_i2pn)UU@3S_kX{f+m<4pwb<g_oR
z)BC}<vU)2R560#czL(Pin;*!Jq~uda1><YJMvy3qNEFd1VxmYKMdd9)R}@L2NE$_s
zC~`)TEQ;h&$WE9ciW|?g6j7v(LY6^1WfZ9xN>i334fC{QI#rXNB4rt)xcfSoDT>UL
zEMzt^YZRL@2BlXX*_jmWSu9r+xuckyIcOvEkOiX1OOZSu1ySUu$T1>eLDgF*io#J?
zqFD1fD7jVT#+INx3I}s%6kRtYj-PN+lQixqJW*&-tj`eCqcEa4TgLB=!bg#C@s|{m
z_@fA_BtW_LAgSabdYJ3VaZKC$cOW*3Dp6F8qDT})qbL?dTom6%&4YT!Nni0O%0?kl
zB8rkxl%kg*OOw(yYne~@jhdt!^YUZ`RZ}fPPzJ0RMJ1M1CgUfm7De?a8p+1p7^o3N
z%_!<dA-hoa=bEhQTCyI}o4Zr(DC$Jf<X-Tl!`!U(SW};r;s#MPR6aj_u(9kd>C!Zb
z;yXTH**TkXja^LbPuo{(5ykgW+>7FV6fL7@6~)phmPOGziZ)S<iDGONvfs9iqGuF8
zM$s;c_EB_*V#G5|o<;X4I!4hciq1^B$`*<7cA-nbs#88`c4JdS*31uF2|c1%c+w~9
z;io8iMRD+TaCj6yN9Bfe7!<|eDEdUvmrFZ9=1z&<l>PsY%k~`@#qztF$PhlGq2$d6
zNhOiTFg9gdkKimulA}nO<LD?x_9(WlTk3I9jE`bo6!W9_MHZlkF;n)X48aLe{L1D;
zavC`)ipdlyn?jiy#lPP-l%_nUGnqlk2(vhj$ZX1-D1KAPTzRr7z0xHcdd6pMfvk`y
z7De&4N3m<^gIUJwvK<#kvF@|Bglyu@zC4N*QS6OkUlc2&SQW+QDE^5;idRRmR?4C%
z-?i8pdDhR2-=p~bONu|3>}ir_y&T0`f*YdvD~dnq(rni)^~4;;-*POgWFsY?tE6vZ
z4k?iByG6E_+L^aTv5mf+8&Ni&Y|x!dq;eN!H@S!WM$RN$fD=)ijN*W-`6v!WaaeZF
z9ELnonZ=PPj&Y_($thn`NO)Y<#+}k4a>_jwHD6&bL~${S)3Wt52G5WpXDR2RI8WL1
zOq1|Z6qn@`7sXAk%q#J$G>WSfnd!f>%iRi!TxYWJYYK6B+=}83liOtdZmA`_`+uf-
z5H;VEe~#iy6c3|##Pi-`Dc}j@Nfb|`coxO;C|=997!`a$ioA;AC4K*vpfttZkCMJo
zy(hk=kaP7r4)R|V?<pTh$v;v)MImQ^Y#VcYjUrJj3U3T#jzvr?62~HKtoeo~iAY~<
z{jFe1O43*)qa-I&kX;`o?Ybo>HK}4DOdX3f6gjcT+YEW-O&5#wvF1UMffUIYi%iP*
zJWQG;7FlD>O^}Vu8H?-`Npi$O-a(ZwohDZ-a>pVM^8#evSmdKD{h9)?$WNDpMNUmJ
zVL>)U3dNd-o`^LTwpiSb#hqB#W8sL!!dNVdg)<heSagd;_gJ`N;fY1vSk#M!77K4I
zipQcvEOJcNe6a|{A{+}n78Ua9vA29iEc~(fe@uM`v=l`XE?m+DE*UTRQ$dupcV~BY
zft?(7W|kl*K|#VIiXd4)kPHR{L_t6#2a%+rhy<0OfP#RaAUP@+2$IDB3h&$g-+kwu
z)2GhY)z#J2)m7CqdtsM=O%@;~=-MukMhP@d;L=X%>bh_u0VM%FfnF7(h3b@26L_>j
zjDTHD;NmY7D<Zm90(JsT6KIxzlYmP*3rR&&((8*t$plFK1UvzVJ9Q{Y8qgTQX(H%f
zpM=SL_MK2pR^Gg;q2>uZoWO29!qy^zmihP*uA7frCD2;nHu;>k3AA}7#3|vGp>_#$
zP2i~n+Vdb*hMq{Eg8&^9NDDw_CjmMqa8GNA-7fk3Ck5D0CGvCvwI_ypa9`IV-2`R#
z8NuwHz?Ll*`OhZMlP*f2w-D%;K%f5!6p8i~oPu>Cl<ZSW>M!{0Qpvys1|{%P0xu^p
za8YPY4e9v=1}88iffuOipU9X5h9*$Fy)=?a-U+b{OJKObWR4I+WvfY}@<&Gtpw%h$
zP;F_fIQJJ5{2OZ)1K^be#wGA}0y7hMmC>8PAFZ7?5}1&{{4D8*Kf<piFi~K8T~_0+
zS(6eVlkIhCm@F+XD^E^fikS6g0&fX0RnTewQ<WQ?F2JZ!@fiY8KRL4!n4Q1^hHkZJ
zhr5wE)W)+OB@@r3F%z>1<|k0IlQgq`2~vtJOkk0aCw@nOn<0Bi0!tIvn!vUMmL;$}
zflnC*hr%m(zBMDOnX?JJm%!%_Mc+^0g9KIz%<e}5e8`<%;LmtPSLO3RPGHTbI5}%*
zQkMu@xS6z8;B|to7qsaY5{EwHtOTAoDsK>Ua{?O$*d*vNHNhdaFGTlCMuh<6aOkT9
zzE0p!0*4dWp1=-fZY_CV0^iW`V<EP^0_;p+R|4{6X?Fr&Ud{eCe{>H^!Nmy0NWV+q
zd%>p|W%dhI)b>LH2lDa31R`%(WFFx$d6AQX9u@SMpvMJ0A!z+;8f8uiOmJF&9|ip>
zfinr575I<8vzL@hP~g`Deq%vUpei_*!1)CJPT(Kb)llR@0*zh^T}xo@tk6Y4e;4$U
zpqCT4BEVHa=QoN|>^jqAY>2aNFkr-V;+qNlDezzU9Ln5E;C2Gl71U7hZvy|ZCMzhT
zKr0ZrlR!}g#T4940OKMB6ciNvEJ2GXC?o(S3oH2X=LiAY)wPjq!7nLjaV0aiM84$A
z-H{x@A+wa2Meyj<NLd9H6jW4DPQf>$<njv0ywtfQF~L0wDhp1opp^vuYGSCx+DH`z
zRTY%#SAt^I1fNU}fvQ%8YAbk9;qQ$~_X>KSp!X}NDFFGkxY>1)2LxsJAq905<S7U%
zcxjDPSJ3(jUaltB6PSSf1`0y|UsqBPQP4<mq6%aM4F!$~8W;5cO)s8|QUkk<1)mBN
z3J%_s`lO<o0$stA3c4yV6qpJgR?tF0yOFY`poxOP^CVkz9R;ocNd<ubo}iTU6-?MH
z5wN8M^WJq?O~u@1f;Ja))JIv=)>6SE3Z78Vfv%(3Bju~P^5X)u6125~HUe;{tpbid
zreMrZ61(k0m!Q26=&&oBN6?Xa4u!iYSh%-RCpxoZq_cvw0Gk(t*u66`#M607!P5%5
z)R2BY7wV?q83h9s3{o=nu)Bhu3VI3LL(pdx{L-i}hkA={KSBElN@iarQ)UU+`YU)Y
zpFcpsSHmJ?KCj^Z0+C@#rs@tBnB5@?UdYEo1!y=mGF-?|Y=i<9XM)k(EJsb$G%;4e
ziwq0{l7W{P67-CQwi;ehFiyb`6)&iGRl#^hql(fhCMcMwV4s5h3SLt%Nx=sSR#LNq
zHx$gJoeCx^n4(~&f>{dQR4`S+bOmoIIJCu?MyJh^3Cf<8m(P)hX3H}a5WLMZt&$kB
z#{GG_yi<yoNmQP#V2*-MN~Sx{malv*2XD(4qVf3(7ASaE!4jT@f<+1zbBS#E9R=&6
z^6$mu^EtT{cVsktT|fSj6kp2h+aWJkutKb|OwdIWo%d*Yjhy!tP_j`ZeqdV0n4-gC
zA1e4r!4?Hu6|7S5v4RZ>Hqz#c#a1g=%T;KSf;HrCacC7yT6{)cFZBF#M*fu3r8w>R
zOaZ&?-jY8T;NdT#n-pwTa62l0DL7v!cq$?fjbt=XzHl^Sz&0MPuyBupuN7=((V%7;
zbHMsCA~&2P?@;*v#pInO)10zP!EOcL@)X|6SblqgLse`gBJy4Z-zoT>#vF<@$+BrD
zt)-G56dX`+UBM0JCXYkGSp`2UIIQ3ZtCoVF6dYA>OyRHc;go`*hhxVToKQgeMYg>4
zZJDbRbe$OEah#@xh<vJK`tVya!L@_2{fA;_m~@Ns*!@MpuL>?I_+7zoEdB~E2zd@w
z3CGV1{C>AsyR$OSm&{9obA{Q*btCd+(XA`V^cdH=Cc<Xvc9~B5L%~f21ymGN@uz~n
z=v5YZ1$(0M-wJLCCtI@okAgq<W>GVzl$SHE{!hUjmVG8^EKdGAeQgTVi)B{NQc*}n
zQ5D5he9+V>tfB~8c4jD;E&sPCt3zHqTjl>3lZ&h1_UA3hE*y%N5SZPPDsu8M`DIj;
zRbi+wRg_avUd4kd9#T<3MMV`*aj%MdROG6ts-l{jv8Pk_tV${>izTY4U?g)3;qCH(
zx8w<7xw?uP913Nknv@|;x7?@VeigM;oS!C>NhPE;RlGS<CVoIgZK0Wo_DHrIn=aQ;
zQCCG=MMD+!RMb}?Q$s{<pdzFqtU^+8eX&DFQ9e&a$!{`X@GLo^!q1CGRm4)6?to^|
zBgN#HSU2yxtZvbGBNdH>Dow?mnQ}sfqCyoM+Qubl11A#DHeJR0v*Z(pDp@LQ6|GgY
zQQ@d?)y%m+tRktxQ_)04Q?9Gx*x?xGrUVG+*t7EF!?7zRbN{Ea87op)ZZ7zYt64iT
z!P!DZOBKZQ(jzJ!RWpIglqs}bZl!`b(oc%FRq>dL9x9$y@wke1D!Qn6Qbl_ePpIgm
zqO*z)Vj|~uR5OK$fODDP1Zi<b+#MUcT~$1#qMM3m=yR1{>={3Hs1moyA!1rGXm1ul
zcW!f5#*CgSda3BI;yD$)g{jBimiwycqvCkgoJZHX_Z*3l(~mycn?*eXR18!xNaa7d
z$#AHFA^m0b9J+C^n9if;D*I>1Lsbk@aaP68Du$~Vq2fI{T*XKgqf|^)F-^s26=Uc(
z6%$pARrzD+c$H3&<(E{vEc`i6oCWLTD=JvKSeodu4bQ}R^y5`9GHKffq4;Ymw#<?z
zi%6KH;&q|q#U1h+YNlMUF*c^qGxg(d3QDslG>A`E@s^6YD(0z}q2g^7bLi)2JaRZT
zlY3Dyo2i$R&YmI9lrxpTw=8p%eA4+U7N~ev#S#?@1?L?ViEMe1z!av;Vihx`c=en#
zyKaq~r7D&Swadt79mvk8U7>=btX-rZs933DtBP$ZK2-6MiqBPSP_atI$12vSSgT^S
z&`)h_-0~+Xm;warRII1|Ir3+8U9}wj8Rt`>nM=?rI_>ot@<tV#c*;C46`KY4LRi9F
zCX<v$SuGUb!a$A2spKmaU#r-sV!w**Dt4&Yt>Rl1-w4m|RI!UGJVzc`EOQaaIccUg
zEAt)|dsTeTlQrYp560%6m3eUAshRsCQ|_Yi_Kxy{iUZ6e#+ZtO+!1%7;;4!NhhhtT
zo9(cW|6iB>UvxkwKB3~IiXT<{q~eqcUNooa^BI{su;94ErD@Fd`tdU=u6Bwanw^=_
zDkuGmieFXK)KE*qZz|5Qd}%16;XD&i#Z8uO6&IOADz35Ys3<W<zNF%^h&N&yL;J5#
zr{ECN{u@kBM`8PebMxY4a$h{bzf}CK;$Id2srV;95^kxu@m3~&Zqt4`xkiFEk3ST<
zqoRO@f*S6sV3)>|pQWMEsjPJeLWML`NZYJ1G+^0sx2T3<8p@NYfuq?Pax|3EP+UU^
z!J!!WB?V^jEUlr8#;=o&m(#F#T4onzwTu~4A{k5A<yxc_HB{D6MZ-NBay5`c2UZe*
z$4XpPLp2TeX}DiQb&WrK5Qm0)HPjH88z<-0vza5<W-6S1enuwpxrAOl=K&41HE0@i
z4G(H~NJB(JR6`vNbu~255YjTKR8K>F4TE#ixAJNn-65af8{@^Dry;CC(lQ~z##Pwb
zMl+GdZOR&Abd-k18scKhWH!_?F~-fZ(U~vFa@Xl{LW9EXgk@G0RRfvK7g9rmsiCQc
zW*RIFwgz8Apuy4LYVa5y(_}s$@?4S{rrov=h2o^47O|I(#Q3z3Y7kHH2;y=RjlZ)H
zXS{vg)M>8aVGS)cJfiV80^+PTErgyHJLDbH<wrHN($HGN(CPB%eGWAbnjv$DUDC%i
zJWd02q;#~?&|bs$8un>;LPG})vo*}o&{0Dt4P!Kn)zDc(T0?&g&uQqQ;Ykh8YUrt<
ztA?jEJfopI70Pmv&he);bkj0vQfa@Ved5+=5a-f81gB#vv%z|^Gqjh6z8d;z=&hlT
z2AUL~DK|P2;}9_ei7q7=pkW}lpkbJXK^mUt!D$#G<f~`P?d3RS*tpya43Y+MRyksV
z;TlG17_DK1hLKFhALKTj<K!1Q?lhY&?|(O&b4g$18EKeGpKExT5C0lo(=bWHI1R6A
z7_VUh<1kxZ9*wgsaG@t+GN(_ZqhkE;f^j}5($%kPn5<!nhBtV=(`C%b$j}=UV0)9V
z6?<)RhIYxFuHh{WGq|HJxt#d6hM5}vJ6C)b1Fu<>t5E*8nKFZui_X<BPs17wYc<T*
zut39d4J$NEFD5V4ut>u@8jP6CikFE)4ex4LqGc*1LvAVEHA7w|?0j#!Ow7hDyr<!P
z4IgP(#cUM;yi&u5Lae-+QI+v|vuKa5)jrm+TEiz|M?5&jFx%r&oXNr`igg;+YuKjY
zD-EA&_)Nnl4VyK5u3>|Qjaud*<c;Z>XL}m+-qJ7+H}eS16*bU|tzv10H^sIv4&Tl^
zAdye{wTA5)c5C=n!wwDK2+5s-(kkvQmCC5v#e+K%BjDY-N6TEt-)Y#ZffqC%8~A8M
zO6GnIKWHecqnwTd8V+jsL&Hth0S$*WoYnBNh9eq|YB;Ikl!jvrX+Hc5Be@)xI3bjC
z%jBQd@S}#GG@KD`VSV7E7q><mxE31|{}&CvYWxLcTw(p!a8Bbd6XADJ6X@IX8ZI!i
zQkiIHBPWuVNf7Sql7{~s<y8&WSZ5-cQTpV%2I{}Tn8}uxed3bCIQdh<U*zj3tmAJD
z|7f_w!mi;KgDooG*6^>$5x!JX$$tWm=@jQ12VV-9Tm^I#)RCow54x55+I+4aUbqwi
zD{2uPMRk<WQBp@SJ@YD*t)sY}snv|w>3uRXiD;Y?b978oDwokQJQgpdgZkM@3&66^
z+v>n0CCcllpd-R>ZqQLt$2~gk*HKePu8vANs_CdMmZ+?wijJx}-fvN&*&LY)>&lrY
zOs2ztym$>A&~dMxDS+Lw<;V{CJ{^^FlQf3UnbA<ZmW~H>)Ys8KXsfN`h3)b~T%xc2
zpr8!eIs%YWS4Ta8xn-_JB_Ywx(=%_T44ZJiq@<(F0gF>)9Wfn-4pT>5M?;<eN(~9_
zB`!Cja~i~HD(_{gqVp9Ust!%h97L7l4lP_dGxOZ2>sXs*FOSHU4qHc3ho{5QaYK?_
zLAh&U<|!5WI#ydHl#;njMn(n0qlu2DI@ak}ucMic=G>`{VLBex(LzTT9Zw1+Ep<H3
zlFpOW@hDF%EVrU1Iv&%}T1Ol1v3~r+9Won(>VJ>xq{Qv@%+12l&N`mZ(Lu-OEekU}
zJL>49qe+VxhuG$3+22IsY0Au!3+KhVQlXAMI{NB(T1Ph>&+6zYR6V2fJ7?tXdgf|l
z=t|*u51rq<n)%#-3-!`7<(juxZy`($-#Yv0=&xgdj)6L!<8<*k32mbp937<Nc^yM|
zxH<+iB<5tw1tX1sHJ@TsLSNB`!*z_%@s5tgI!5XkrDKYYH+76=aO#+-<24;)b-bwK
zB^@sdRa}dWdPrZ<F;2&;I`|OF@-?0(K1b&JGV9m`fhoqjzQSyI5@mF}!C(-Ng_CJ~
zvnZotz&596r_5W!ROX0|IXdR*nU|yKI^NbXQ^#96W(fT(eVogq=MuA+cMmAD^~^Ii
zm*y=`CS!h{js-kQ9rN|f3n_Qaz4EGU^MkyIp%|6R_p?dg)v-j!M><yNSgK>0j`x^Q
z44dz=mg`s{Bu~qkSYp{^sOyiG_&~=>5%x6ox9_va{E*oZ%Zz?3)><RNo61+~_=H}a
zBNKDowK{&7DbpCn>ZdwB({WA5b;gX24LT0$IHY5vj!imt==es*W*uMX*rwwvaok_(
z*rM|jjLM9SlLup4*$u_{?!zQvs8H?KI<^Z*9tUghzv1{!9lLaVuVbGM=EZIu-|E<-
zgCD~1<&>{%dv%b0$Aiw!Ts;>jI(($0w*5N3-0vKq!D27`Y=PdU42$7mx?0Cs9Y5<h
zs^gfBQ#wxTIIe@ECv@<JqJDm2MsSjvbJDcuN1^8@9cP39J;3a!|F%q-{-3zN==hZ}
zuj7Ik{Y}R?R*#h2A`)jhaB0?}i#mSSaaqR|CQFT+OCrB`=w;8!pP!MhGPSd1DkO)1
zAO76X@dvLk1LY0e)bS@vw1Hv<{$lahaYx5p9slUKrQ^1af0;yYWt}|`qBd&ycb5Dg
z(|J)I9|NeW+5x$Mfr17K8z^GngGiiA+Mi{hkdbj+rsbr0xG#p|+z~Zo8z^p|q=6g*
z|JytHB@A>JmKiN&ptOOqM#fjXZpsM2+ktA?r4lNyV4$Lbdkx$tM(;6D#Xwa9xuRRi
zKxF~Gh{o9ly=qtEiVfn`4b(8ef=|s50<V3aMNFMs_kII44b(AE*FY^JQ)(VCP+N$x
zAgm9|4;pyL$Xo;zzB5hcyA?krs3$n}4Ky(Lt-qODEM$N$l8pI0Dw&b_yofJN>_!Yk
z4a_z$$AC;31CtEAZXj-;p@AL-o;A?OKw|@s8F<`4!hmAHHIOu*8qf@w1}p<>Hb;w8
zi`CDL=>`nZBC;|$H<{WJx?C+*y;{sRaORt+V_;0RSfia$&wy{>Q3I_E1O`$Dnj3i7
zKobK^xxt#b&FJ|>d99B*y|QD*+`RFKEvgY4fLIFyEe$+k;F+qKH=2S)Gj#Nh=rg;b
ztqo8htE1l5KpO+^=cG42`2^|HqvP8jFVfCHdjn|$T?{<I<wnP=SC4h%Ds;&9==@bR
z*g6^LEV^Z0tp0BMBGmk(Fym<+kb$lSo-(j_RgEbxRetS3nWF`Y#ki?w40JcJd2=?~
zu=Yi2?TGd?(96IG10xOeHqeKL85n4wuYrCB`WtwTuC5;Ax+M|2H>6Y5M~&lbOLj&F
z8F-$@XJDv-!3KWa8STC^I>f-+O-gXIZ<7+_3^Q=4YHYZHgY9BP))$*vJ@(jDJNMq)
zQ3ggEc-g=!^s|AnJbixbZ{SF^SfyRjTN7h@3&*xK&g3TBz@o8n20D(ZKEc351Fs72
zjTign0o~XUea*lZo3rWI1~p>YBeOW=4KX@PP<AI9n8Iu_Fx9{`1Jez>WuVN^?1A4#
zmwX#-@?ErUef}t|K7+<H?}laN49l8nfQ@s<o{zq9ESrFBF1^RK49pWl^9?L8u+YFF
z1FH>uV&EORo#$d;g@Jd4%n}1j4SYE?bNWpyW%NYvNiH+6EhjyDzx*Cg-@r#g@&f}a
z4SZ<eKxcd8_p<Vrd*%Dg**&q-J)V<ZW#D52{A`Mx`<{vO!+|vh){2Rr8CWL(hq%ys
z1D}d6m5@_ppZvLj4T7`Lz$Rv>oZ;WjNi(f-OQpXwu*JY1EM*3^(l7%j44gFZm4UAf
zd~aZ%f$au%82Hw}9s}PP*lA$5P`Jy$+?Og3t`XaZTpljLrVctoWv_wnm^d|J43)m?
zi)|7qAdSr0Z{P=>vVo&w`T_1pRt_;dME9;Z&BLsRUt}EhT0bjZJl0@+v14MC=X;#l
zv@6P?QwB~OIA`EIYoLLj44gIaGwVQC{fx+8eqq7*<2j6t(M4jn3&(z8d>Z)807Gl+
z@GQ1<g=54Q3|usD)xb3azl&AgEf%}XI(8!G5;rSy_6keQsv1l~X3%x|gx|(eG<Jiv
zsC^MG!J<KX{$vcFj}|nMW#TUbe=}=#NB=SKpMg7El<`nszir@OcB9IXtXNPecBiZU
z%G0si=c9LdI^RZ1?u`~OasS@T?h2VGY@&*ZswRq<C~BgtiE<{2naDO#(nOAl;wH|o
zs!_s3`8}B_)9UNgNl?l}X%k&L>SavGg=5opN3ZUU_IWCkxiqP~i3%nvnfPK?R4N#&
zXyP6dxn{<I8oQ&b3&yUfGOeO;WfQcmlB^6a7^`Mx?1zbaO;o3FJ)N3s<O9w<^{IWI
znMsy(P-5C$xt56sOiZ;g%|>k#51L3?@GLxJqK=7gP3$pI*F-%Ni%h&@qP~d+COVr)
zn|Qs96f)tMa82Zy2%C^hL`<kAG!s#7%H;P6qoI(TJzS2_wy!0&%gthqsJx8S*hE5r
zHN)lFSFEi&B*g?VTO&!)#YEGDC4ga~?^&0N+9oJT{nQyPm8Qa^3D3m%er^X7zKOuZ
zqb6FJNSSD2qM3>2CjYt}Zc0^4OXM1fT2+c~7%M-_(VK-@n6S%5-=7vCr=^MAb+iU`
zqL0wkMuPm-Cfb;I+(bJQZB4Xx6OYlEW97cLB`VD7DG|3f@%OykCrq@sS%}PnrIQqE
zRVqz;Ix;Fkkxs(4+AqmnOgw2~oQYR??k1ixF~r0RLgCXUo;A_aL^l)9h=sbF=poFY
zHmapDMt!N5iQXojH!)b4-G@Hmx7OY$)K^TQWIqA=3;LX(0|Xr?=paGce;vuaQHTm@
zFm(<!G0em$6QjlGa6v~1tK^%7Mw<9zUM|JxkTGJ>7sU{}W0^!frN4fXUNZ5riC2U%
z^d6aeibiS7coP#$%r~*X#6%OXnV4?kEfbS?peCl6c+<oi44(bb$;_HV`r;e5(>vmP
z8{@a|O*OIVf;^3e?a?n>kSBSu$2Y}V?~Beb@ivd%#2g;$4t*vguy<q@ZQd8<EaLmW
zjm<Sd{yZ*PD!p+?yl<&=TQBzT4g2EZ@IrASau@ynjiF_w(v$nf7MpnA#0QMqkHYUV
zNw-@|Oe{6A%tW=5@^TaXW$8U`q@T2c=hf9JJlI*Ck~ndti4RSDX5w>(-+1XG6N{gX
ztfAQ^J{FwSoO_|2m*sxKQe(y*8ZJ|8tq@x$=z0^MnmCcx8}5p6?ya=G!Nf)r-<a5G
zViW(=?!>k-0(ZqWvksW}(!>_pnJb<7FpD&=XN>foJMFfa_==@wd-!V;+nLczON>2b
zbJh;QB$)n9;Rg#xchTC_&Tgi8;izXuh>M<&>^1S7iGNM}XX1Mk`%L_7;un^+PSV;b
zIr~lgV4}t>>41qNg2{~^WO3*dJH)!zJ9d~;N+k%6nmA_SIJaZsl!?<!(xoM+gz<lp
zfpIPa9-Nx<qlvRLU~0}!;vmR8BS4#`(&#Lg^1qt+&BQem*TpL5SV)(Z;CY=lalynz
z6Th3dVuEH|5&|!MVbK`2%c47}a`CIeu;ra~GH)<?P3$k~{$t{%iN_w28}*X@G|{rA
z^gsNUiI0X$f14oRtQfn+T1wn7!YSiMxTJSX+@--Ri53c2C}<(qLM01X7H*%k%UCFD
zp^$~b7K&IH)*?b?Nee|S6tnQ@IXT-xaSQ1|7GsHBf)b+p<4HTmLMaQ=?zSVdw8dw+
z$P0Jdk<zeo7AjbHuc_4QxK!Rk-_Z_1MZvj8&^oK66K~j+EmW~^uZ8<8Y%P_pYN6GA
zHY}VO>QuAvpPQ&|p@xOGABvtTl_sT!kBo}nZ=t4z2Q1XKGR~xzXm+jt8DA>R?%D+r
zp34iRqIE3PwGg+^&_X>c<MTWVVGH#Irep&PAq(Rw7ysg+Oh#};$%1TwyNg(eTBw{%
zka@X~yZN42%*rGbhaUK*QzHwFEoc^W3pf6h9<&k*&V>^ejB_Ey!iBz$Drn6cu3^En
z;8<`iSQhs7(QFI9*43%`b=U-}n@6^-i%jaG^EzldMDr~K7S3Au*+R-f6ASY!%(u|g
zLNg0vER40#+`_{aUa&CKLJJEmEp)T+jD<%mJZj-F3y;&27Ft`F*(}k99NvSXps~`n
zwZO{EF6&-93+*jDVW9(UTUvs3k2edabmUw&!S=L;PC`j%D|2h41??gzyH5(x)xuK(
zuq>0wvdog+-9irw1E|MLJZqt+g+2@e3%x8p0VaA2K8J?Y(O)z&3-z<m-{O;b;yEjG
zo&BXJc9e`icfzJjOic{5Fo-){R$`!;c;3Qb3qveSeJjH06d?F&Q|SISdd~|rhFKVH
z;qrWIgoROz^U`VZM+y$XXbYtOW4>tNB@3@xc*DZWR;Kv8YGJ&ETRUT~FeC`lI_n$x
z=i0_52q(N|VWRba|IhnNYU0%))+FXpI!5r-=aI=4rdxQ+!W0W{(mV@aUYGV%icDj$
z?TWENzSlEz=iVRIXE3Cx(84=wq-q7-*VoIl7`=7$In>run$4hH7pCx-L+)HgZ|O9_
z0t*Z2I;M$*MVx41jfJ%q7F&4N!ZHiX8I8Y2-nbzxu@EaKFJ%C{7-H+VF|vXg$DNju
zKC$q=g%23CRf>OXVWou+EztN?%<-ny^S??TG2SXf-#uxQwmxZ-vs!F0=b}xfS}#H+
z>nz+U;4T{;*(ktzRtXEAS@@g*xva$E0nP?m)m*1cP}r?o*xf|)hDSD&7Lf?Ppj!k-
z{x`<%HVa=_IA-Cvg|97axA2{X?=9@0L#)KN%(#xy_{XY$V_~O-T^4o=e#_G7o~6?i
zVBU?`8QH_MvOvIAze&k`7WP{>M5``XKUk=>ti(Zfmz6jmw#l8I>a4TNc9=0xI(@{#
zQHx(+kf408E;{Mglj0|Ykw02EDONmX@!#7dPFtC)hm9uv#G`59RH+_4!y;BaI)1$T
z3-g*~!A8QyZx+s3C~u>Jjq@x8oX&z~;i83(^CN#)xXIdO;S%$rLhQ1ID;BPbp>o#>
z9hjYaja5Z-uM2u-Tc}(j(Q0vQ-qO&YVqgDdwZCoQFAIN*?mrAy7MX>)E3(`3Az^9h
zG<VTaNjz}HzGLAo>$#0$HVW8y>M^IVjVWJB1#M)BZXp}p=H$*%6K7W094#V7uM~^+
zP!riUirZMXDpJNq2^%GCl(IAF$r6!cXG#R08yV8f(8$sfrR~hK97oFv4V+a@%nkML
zT+zloHtO1_XCv1}B|fX$ne)w^np4?ERU6f8jC|gyLK!_VcusD08#Qd)Z=<FShhNcX
zgVzF|Kkv0MC?1v4I_aOsY;q=buxknC143Y#o7h@9O(hT7yz&wc*{EY<-=du6ry@MH
zDlMG)HX7K73F8_0AsZ1JQ5$*mMmiR@A#vTXzTlLdd%s4&+-JbZHcsR!bO>o&%x!3+
zk)0`tjcyitZFvd0Lb0LJlQy2Qq1n)Fw6M`qm|<`iHe4H~=vso>g3=^j(@7iS3c3X+
zNlk2cHhdd=NDFMF1em(C#EyxX$F@Re+BLP&%tmt?6rMaa=V1X(AGJ@FPWL`$KVsui
z8y#$Pw9$%o+GuCv#W{8x8=IOW_%QI8je)N^ZEdtK+J00U{c$_<Xu-y_pjdk$`~+>d
z;Ii9Etp22pt~NRgOncHcx-bl`x1&9zYp=OH^d~R4PuY0d#_n%AGfhal+vq`UHeRyv
ztc@G5#rxXmXQQW$UN(A*z4ONGBLGK<UpW`<Z{s;0S)bTw8v|%6gT%&gp0ADPZ49<C
z#KwQWI^F&ad99?~^WC2oyDxCj`R?SK?ob<dFF52p^@Toy;bdc!4aPr(M~#b^Ys15f
zw&y50V{DAI(PWA|NJ&(ho6Bdvmu<Xa;|+${5N(_=X`+qSY`kh?ybYca{WC%E=U;Fc
zNRw>5ZX>5~E>ny_c=j)eQTp7I`efmyDK_2|U{ay>2j}I|QPXX_#iVfXrh^$a-nMav
z*4mh9V-}Cb#%3F{ZOpN;)W$LfQm!=DM*n5<JR2|U*SEhCns1}f33-8yg*F!12)!Fw
zY~x)U@7VnM2zi5@s5e$#Vk5Zg5S(5Y^8b{M*ooyfR@nI1#%de*MS9Q1s<qNbHs0rE
zzm`5=SoV&r6!b$uYu*Ww!|AJRd~hO4@QIBzHa@lSnT;g}!)t|}8f7KobvD)u=7X(V
zc0cEqFVd3CTkYaUW5fg-nN0<vJG$s!*!a@M0UHNxY_YM`#x5S5jcs<O0P@-O8yjCS
zZs$k77M$%ib_g)}N-Vs<Sy3UzlC{$Yzx-Sq6{7sNHomj*y^TFKzP?&$FVE{*Y<q<m
zjuhwf@ID(8mzDT|;mtf155`0CA`_B{?NW_HHV)hP$HpxiM{FEraN798#xWbmZTxKG
z7bd%nlQw>&Z*82iahirHiC5<5_8piBCr04jZJo|=RD{!6=1VJyd<G#ozq0t-ILESY
zqx*tf@>yD0U<oeRxK91O-HR*~|Au}S^pc>L1ts%}jjIA*6O;v+Os>n~%njbO@u!Wy
zY?NM<%?F0RS-YAfiW~^{`7id$ABBkN!0Ug<=%U*;R`!zqWxm*`wJl~XlSm6VDCod;
z;5f)~P{=`b2Q{3GWMK!z9h7iz_u)tp2So+=xk9X%gC2vVYzI^8L}pfulys2eprQlb
zM5Ua}t4BEp<sFoEP{zr)np4U;VB6I?)}&f;&Atd_Dma-l;*G!qy2nATlew%bIjG{G
zD!VruS9UUQp!ao&RikasJGGy8x|UVk;qs8{E*#uT%}(ady3fJ=4nhv{9Mp8cOYlJl
z4>_pi-~k7<1*g@268UTdyvOS}sOO-*gK~SqbsZc$6(O^MgQbl-?|9kWn%2p0c`X#C
zz|nBj$)uj-;MU{uh=ZfA#IGh2Q<a45Am$)0MjHxx>#%dHbh=WRG-+c82?vVshU!2Q
ze&Bw&aox#;r74CC;S>7D5?ziioE&l;Bpq~f@C-fRz<0o0e$qkUAm!k32kjg*anRI3
zO9ziQ;O7{8P;cg-xr2wD%oWUT3kQ6d=S9qWnbnxj@Q-rHK^q6HoXpccpDH;-+Sb8i
zVis?%5z9(&3gz27sJ1)&go6$a_$ET!(LpB%T|~FD1GbWnmrOfYoOUR{*0@ZX^oKWd
zx;l7@!Yvb1|BO8Cplz9Sz2kPjGU@IN8wW2sc*()D4thFB-*pB%=;ffdgF!sRcO!iq
z^yScTd!U1fjXU>q(BHvxPNq`r`MdG&PwImoQU-`FIq^>&O0IrV|Ll69=jorj4mAvM
z@PdP(4u&}x?O=?9;S4PY$7bht`>Fa!5!h?%#u?s=D@R5-ApX2$WUPb1BW&VcKUL?@
zwDb1M4qo9&Ihf>NoP$?IuuX6<-T}|+%CBKkMlZwr`LCsk4*25>|ErU)J9xW$WU_-d
z=!df*mSWOH-D50MQyolWin%E4V!DI392|FWg7u$M9DK+aa4?g8sHnV4FR6)H4rV*p
za@3yVV1a{$Ow~!!Tqc@>`RvY&uuI`hsl*}&?>M-!yu?>U+{HqyM>v{Sxi}vH0z{Sw
zZA%?26JWW6_Z+-W`C`!(bogzFYw_{^0|)D`yDKSHL^@p1Efa~pUM9WD!N(5vJNUuD
zY6qV<_==h9U=3YIv)kxf9IWF+2OAx1a`35x&v=@Dx*O=gE!O9P4w|1!++)16w`kH$
zOPd|M{H?=>jV~R1AuzkqV(mY<>-_MqO`TgAW<ojfiZW^LWxJ>k-*C~z(hfnn>z!Oz
ze9O}=0d_n1HlMRcfV~dB%jbOWU|&Aw$5wZa+6S2X4h}ge_Pj$+(pQIhWPeIWY4f4T
z5eGZUqzR7kXqJ~?bvj!nebT`xW|o7$MR7RI0Be!B?BGWSKRGz#;H-ml4$iZJ8Ht}o
zTK($a7ttl>?g^V2_Z#bNxoD9-k~=q-Z@w2CTy(JHg#EjN%4XscL${7TZh^#)ZTTj9
z#lckvEef^2=HRBt5w3V$tb4=39|G_k$!wn1|75xNQ(_h{`~GoohZUP;?cT^O2e$?I
zm$hhA=s$*QESXg{O<KUkBNxL>_t;qi6m&81M40t$(Hqu;M`A@>6eZuqqb`cM$aWEO
zk>`RAEbeBm=^8FdxG3o&$3-a@<y};8QQFNE^RjNHfR}Nx`9N`cn4EGh{`NC(XGOxX
ziZ1SPQN=}77u~PAxh^WXsO*AuzDE(4Vyyhn7jo(UYA&ja6^%>MYuW927aST9qe8g2
z*TsD<?sxGZ1zb!m;MR0e%f$m^w$b0H*FJsCJyzSQExL>)lucj1<J56c*F`-S1M9Uf
zf7i)vq1SiOsBF4{3r>kQ*B>dH-qp$tyO3O1E^HSOZv5RyV;2b*Q5Uj{n2WfJhA#Nz
zL(gaaaPV$~pplSV`$lAeonYoFE)2S^SweN8aj2s5$MO=o%dhE3+%j#3oav%fZuD>!
zsnWHO<HB{(b(7WHMUqBlxqQ-VLN~hbT?8&tE*iX<Qz|R-a4Xl8DX_dy`=&0MxtV7|
zK3|ct`>=}^^yke8uTkbsOBbX^Qi(og)2&<#p|Hzq0&U#PE#KC~(=NKXc+AD)F50<h
z?_$UD5>L9Bl8D~Y=H(@xaM3{scNDafpq&M!hO_`(1Rdd^tBa>xu!M4Geg&mv=g2cW
zVi(W37(h#0F!6i3=*5k<(4XZ{lZ4zt@9l!Q-^WE?y0?WszHEA7*>pb_pO;PdcadAH
zJ-Y|Xrq>ot4s<byE-jZH?BaQPvPpuq<@d7b>}ob^1+l-?9_r$)8}euuV+0uHVmM<`
z;E^;yfc7;U%G9|b6O487qMLa>dDX>|g^|kZBQN;UOD<k^(Y$i;SE#2&Vw|7^o9?t5
z@8Z`c*%QQ+iGp%&(*@4!3?Ucqw8i4KnCxN-z1kFyH^rL_PVU9W1|QQ{{9W`+qE`}c
zxtQT%kBhx7#+A-{n|^Lkd9#a|E@ruy?P3m3<eIe3#at%Km!bCrohRsgLCIX;VqrdB
zB)~f^77OrhK7Waer7o6<?s69^^7(V;h1jTs?R^&?<nvbw@S&g|xmcCY|5$+4E<VZU
ztZ}h6AD@0frnT!`octvGsf*9JWfvP5_G2q=<Vi74t?-9GhZdI3<8sC3=5fnxU%2>E
zY;%jC)UegXwtW1Ri?0RVp3m7Kz&C>Kr1SInyIp)M@X-AsD*4XE_bz^Oan6OhB)reX
zX#w^#(gZl*;+Oy&J?P?)i^HOO#Klnoe%b9lRXy*-`Fdvx);lgZCj>p|;uHg;bsi^T
zt2rV^Civ0CPhyn#jEl1Z|Lo!yh6+of+K`QUUOrkk^?RZ7E-ttTCm|(q(Z%nqV@cef
z#3dJ(nRhcof4aEBn0zO6&Bb*At_mtYtlw}k_GRfNz523rY>NDci`^}x?pOI=@{5uG
z7i+AGe_Y&RX-%S95;b3p%SGhdF8+1-`8n>eL?^LjdF-x>0!friA}5K0$;{tRiwa7R
zB|xDh3JXvqpMPgZrD6hS3tC*z68WQF?JUl@rIIL}&pC3fdYOD&Hi>cqm(S-EDpR6j
z5|p_|aB>B$BxvP)nJNN&TDTPd$zSy(e)vfqxF@@Y*c9?*?oDFl6PbU7QZtEKNz~mD
z!b5V4VW9_-ncrM1wKPOrJBbIAcqoZF6yU!0g&GK2?z3w31gM|H2g5=`ViJc!g2QfJ
z5(lq_$%!NpO`>%YZIY0ah$WFoLP_F_PF6gL#@t$YsiEjL613Bu2!|%cUGk&H+#VBk
zH3=;VJqaTTI|+x=M@VK8Y*rFon@jAH&io`pUBP)YiDVL9629m*OQLxaK@#gPx+%e-
zWD^0JCb49^%<jWU{7*xRe6=m}B_GM>JUUcvC789!rQ0U)+OW`u+o5hrJeI`cw5?pa
zT@p{ww@I{5qV{?D>@UvYAN8EQA!V7~F^Nt|bWY-0!Mt=5U6Q=WA{^pZ9?d)(BY2XU
z8Bu#fY)>WebUtprKJrWwmkZh51??dyyU!-ku3Va+cM^S)_{ziA9{MKHkCEvi$3uVa
zm%oRS#Ox%VOJYD01Ctmen3IxtK8e9eyp+VtNeoG1S#D%R5+jp%LExc+k~u7i;rV#+
z=+G+{!=sWIoy3?V{;VF2{uKIUxHLA27n8ViI-GW-AW!=FZ>ihp(3AqwEA&Z0eo%mM
zNxVuI&5#C92#ps8tPZ4gdm~ghk#0<afIk{d`g#&?Br!RODM?Ick>@Fw%zKjszk@U_
z39ddhiBzFTx{kDOcxZ8{$c!Y0UJAWUpDYjU-5C09ZRQL5W-^bSlZMQY<|HvUi4#ej
zOky5GI*AQQY)oQ75(|^~Fo}<nSd_#&NxUy?Se(SWNi1dXtO-y0DYU+vw1mbxkuht+
zq|1_6p5%v7(uyRCu9G_b7k*E4FUKS@>8lTzO-Xzbk!p+ynTx`!k_ep%uT5fI5+5hA
znnOv9GUPRMOR>CKmqH_JMW0;}s{N0&K8a70_^m+XbFp8#ao3T^XY}xc(*8tb$Si43
zAZ<!wa}v9f*v&La;>#qyNrIyVH-@()v5oDcf?vHaZRKHo7p}cJbg+W_RT5t_4J*iO
z+XdJmC{Jf+61giP3s*)S-5mWki9O^eaVUwsNqi^F{vnC)li0^4c-*_C)i=ZDKa&1|
zRBc3Lex8&Z6FQJYy~W`Qr^4MUNrzdBIQ>@W7!P_yNZBSG6?=@_jBta;#ZaT?Lliib
z#A)s;iNBKgF^Qj8w|RC+oJrzr66b_fKa+nt{3}f=8vjK&gi7wY9R5vk$lO#mdOnE@
zBDyXn@jKIeR;XBgX-Pfp!)+4r72XaXhZ#=Sgu<&#ii=Xt3h8<hH<GxSj{G5l@MaQi
zLlTu2svAEzB=mO@|0I#+p^%4LN!+I7t<YVu%D)WnB<Q#QM7PF|VQp_F$bbJmRKUxK
z6%@36nFw)V55qo_vpq1v8&3!o@le!5F%RvwNj!Jb%LNm~J(Tc3pD<$ISsbRSQXWcs
zc*(=d9?Ezq>p}IPc_`<hyob6T>UpT(p`r(PxYxry9&$ZgZxE~Mp^}Hi*CJIsyt&w^
z%-pXZZG9&4$k528389T$Bh@@q_pl%<GU%zS`K=-~sJ3{b!>AC&?(<O7LoE;YdztU6
zp^}9~qU$!t9`Nv>hv^F<wLNToQ@U6udTm_fArEyta3Up3pSI3C6shl_frq25q=bi%
zhdd8a4>DDG_^-9(T(Kk%$yen64oVRZ=fAM|<u*ePghz}D#XQikxCe3?s!>|i&;w~B
zK^qI|U9y^8wG<CDsb-Np-Gjl^J#_S7dayjS^zeuW+k@kwiHD{h7|gB*-$TH4J$N4K
z50Dt8%*~rUA{+ZlDY|!bXz``+l&3T2-ps>mg(BT%g_?VK+Rq3)?4gB+f1(oQa~x??
zcj-|Ntvo#D;g3(ltvz(_E<HXW)K-8t9vE*-)xWw+tU`}_7*sC(+lFX65AEsX&t<kJ
zJUp3@2s(M_OaTwidq{ie;$Z+~>d9<Rdi)D!Bxq!J_3#ue5&T}64MsWI&BHSuruHq_
zUGRGd`fUE(o*u3Z%P8qB<T<4eZvlb(3EDrO|C|8)y`G0B>I3PV#x`dS_Atc5C=a7O
zyx?J|hv6PZc$hgqGRy<BJ|`>{`8!;zK*n7og}ZLembQHrW;ZoV9^++_Vyp+oFe}@O
z9x{3KPl##tiidIJGcrBA>R~*$;9;7Fy%(ej9wvEsogTPPo=Ba7$$z*txm@}Up5s-Q
zGH-gAEbx8d*c1VFUY6?bmb&`RbdTRNg98;~3p~uA>liH_&a4T|^q_nkn&n}(hl^iG
zmqu8<?upLvFxSI8Zg98s!p9-rBis>-$%d>v=H|wDN$OeXq1x!!A_mgg7`yL!Si;C;
zh<Z5JC$iMT3J>pjSSGs51^uXCWMnt#eGeaaSj$Z3v3_E$^svgq$BYUO9|;a`ftnk`
zEe?iOd-%iyZ^kv$_F5+8d2epWj*!C=y57UXUGhHl@ELPwMTqX*wlcDFtMs`DY5Jeh
z$a`&*hs_J5%?$gNnQx8$LUh0Mu*E~$D$(OdBU=S$8w2KEi*275+3sP7hvq&W_VJB}
zoy>P14{VI=^01pB&8p?$TMv6Yoc8b|55mKD9u9jr;^E8jq3=EH^RS;;b|Bnrad=;z
z^n-|vgI?zLKfnt1jP_kby8Bl65JS3HUfVlTVup0o!wCjYARS|9H7IhN$@rx7<{jzq
zkCBs%kjBy}53GAE)Ja|biD&2GcMq35yjWE_>){s<ztUGs<XNGeOTtXC-<XvvLg!dR
zxb8TK_s9hvF}H9#{3#-Z9*Hndi`32p>SYgCJltT^jSh7^Uf`++M&mW+V4hUAe&o7`
z+65!07Kg`FOJ46UH5nlN>ESOAg?$w9@i!Bn4^dfiK_BmzOW*SFFYB0x+a6|Jh}QZ%
z^Lt(_0(U&z^-$!&NQDjZtTCA+D&XU<6QQ%K^(;R#y^x^QU(<=Fw~rL{k>jJ3k77Qu
zee5rnF789ljh6H=V0Wy9z*Wk~jmyYnmiAG`$2~rBeY9*MmGx2HM+G0{{7j<BsR&~!
z{E$@9$L<d!i>gYAwIM#JRPxc|S*ePTs($A2qq3OW=C3dvRn5o6a_Q<m*53+UPDW~o
zE(E<-(E9|vU(kl1$rP@|2=P(d$B`r9un$Rq2Yo!`qmGZdKI+k)qv4Q``V1;1F~4D=
zfzK~#Nz{8e&QHVG<;P-qLWW;R74Z@Eq5CknQy(!OjeR71#C<gMF|)hVYj^S0-JOmD
zW5kVoto)}jLB$feiVxL?=Ho8^aos<S*~n?pD^{ynXVZt}Bk9BQVbf#f(=H9@6QiW#
zgQ^Gy?=DW@`v`obd^8aP|MrRf(A^<z>Z6$t0(Y?8WmEWnOXQVL51$fm;p5Q#kty_{
zk4Jnw>Z6s9K0f;TXzgS5`Fc<KnEq_IjgPiI9`o_Ik4i5#Xh-K)S1NR{_*VYN@en!f
z1^)>_I|$m*M<)R~3z`;`l3fINt6#mYK0f;(?<t>`5xV(!#>eJr%AzNpIB(YL?xUBF
zDzSP!e2o7g{H&loeQ=0f(%;%dd;1`z3~lJ=W1x>gKKcv8o@222II}6#tFgJ@o$$8}
zmFIm7_VKchS9}cdLFP+>zTji1k6}KB`*`lr!e-yfBYceXG1kY6LSU4S(LTob;M+ZC
zu~Cea{QpP)$C=l>@Hiju9uK|l;|(9L3W4!HCis{r@N0rnj1wmbOfa{3;mQ9WpVKMu
zCXbJw|IqWyO&=flc+1BOA9H=o^YJzV$;WITdpCw>@w~R^b*jlLTSiXq3-5l9?*-vG
zV(7k;(tK+6v4RKJxOm;t(n24Le7xhM_&4GAc7!i{7+UP(_l;rBC4Se(5+4Lh1zjfS
zazUs4Dv|%55T^WhJHjh{eCXp-CPm}OM?O~hSnFe*5a_le{IQRUBSUPfnV|x&5hjtd
z`&?)})00v9f<#sA&V@)n6BB1#%O>9FW0Q|JQ<$2<X72staLoX<0({})OCMW&Z1qth
zK*<2xe0;?i@NteM$j5e88y`RT*ugyYv4<=A*y&@Jk8fE(-V1&Be(16%ZM_lN?c>_l
z;qZ;f=v|R^^CDz!s40Et<9i?bn1;WEKX_Ow`gvsL8=?1o>41-eK2H1ik(uJ-u#e*m
z23850k(7=x@vBM%M;UnEh8IqfHf)OU`v6ahE;*-oYSpCC(?i7fjSKz6u=MdW^YNX~
zSvqHWh#%dYZxI>zeuQ7=_=}HU#ZcEBp-+xm{3gls^uLb+0SX4VNH6*L!^ceqZA7}{
z<BE@~0$=8i+Dc?zW3Ua6th^bzA;5JXwbq5mX;48b`j7M{OSg}IeB5IF_cKp-hx<#M
z$ma)M6Sr9+eB9x&mXH4DgRivrHcIebBj6~Rcg4`pGecPc3I!+}phy7ybg1&Q(9cst
z1rA4x1}GNbH%R4j^0EUwF)?&^wO(9+DHB6Ae+`{)7|jV#DnOM0RRfd`P$s}V0dfPB
z4e*O5RS58PMX6kX@&Rst9h&uf$yFalc7Gs|Suw!3zm*`U6yUAZR%JTmPWa^b(96$B
z18m9oFI+9ah1KDE1Kby&dVm@M=H)~{{ntaCSA}<dBQ>uYsklSp?=0LOU}ry>&F>;T
z5TJGdDTPQ14+eNBz@7km1JnsnH^9UIuLY<VpniaKfGz<V1PBF42Jiyp1qcUF18CI1
zzn=w&2WS`|8sL@U$yk84+d^`HpnQ5>7m0MS)|s3}0U8HT0!+OUVRz+J+nj1A0+9A7
zpZ?=jS(+*n>*NHm0vtMM8Qe=3>80{%PT?QwoB+GaS;hB9D1Tk+><XDdQ*EDX1$ZRD
zqe37Rpjm+C0jRSHHIz>`74)<6>4yUxD4%X2)J~pi-<Tp(e@h<6q&PvV0IdVG=fMSN
z!(DLK71Hg5!8gjM%T-7}#uc^BkMkU}90JawF&zSQqyZJuorNUzuyqQ6hWz?RDff1i
zHa{7lYk(mEUI_41fTsiW4bU$@w*b!s=n>%A0Hbg6|28MOizQA?%*^c>pjUuCLM<2K
zKauS%)Y5V)C*_ovhf4he3<xkVz=+@4J;z|^>(E_;0z5Bt4i?ApNp5_?;z-vDX-*ka
zAw4v}umCRxcqzbeP7E-L!a{zeSdL<BGe=llWem+Lo*XMEnY|~)+nthL=2-_AFNDYO
zSnIYw(yAnld{tl?PtF7}I^!Sd?9bI{=cE90>G=S!2Y4gE<N#9w%ntBQh4h=0WOxUd
z5nx(?&kkDL#q<F50}Wu~^tS_$&I~Xsz@`6OI-jGjXq_oc{+s}tDx`mW#Qt!wHb20E
z0BZxR3$QT2q5vNRSjmONxi1Z{EWqZM+{FRjr3X$$*p@Jor)Gj-d4Lr{?0peShbyGX
ze@~2Z<2+4vKMc^cqV<Uo`zXMw03QeV=t+BZfOEYg)jo>Q4+ISRH37O;w5aw*h4lIW
zpNc6vxWNFQv$hBLGQfra8)=Ui+9VE($Ja2+VJ>iD)A92E@?{GvzZm60TLqvEU$JiF
zPuVU4e&*jcSNw*VE}XxMyI=tkd!aTa3u&KDoexj7z6<bufTAfBOJQGt{q$;p%K?61
zj?nV~P6s&1SS=VoM%(Vj4h1+IU~Fmo2+gjl9SyLwszyFBDcf-&b|Sz@0mzxMrSOjd
zeqxCW@N0lGf`2x^&nzkT#3?{PN}Z&?(R%^TGk_TwTMBdCkzt4QVt}vi%PjFbOVb^9
zQdRByu*2@`;*l!>ZU*?16X!`+16&JmofUPQe1pNCmHb2S%T`SPR;T^`q%^U=^A|6a
z6gF&({2kz*0Jm6d>Hm$9{{s9Q@E`u!t@#(peon3BvAPx0cQ`afuF>DQD`X0!V0E=9
zoRvbM6bh#>sGn0Lg`i^k$ZCiD?iJHxDyFkjD4xPYsm!Oc?;B2u6w0SiA%&7D<fO2D
zSiDpUrBf)A0yjc|vMH2Hp>J>Nb?B4+YPaxkgtX*or(z2Cq;PKv_oa}_)<LS0Le&&1
zrBFGAmQTgr87xontu2G(YAFyC)JUPa7~<&vhLA#^A(^53Q=sO7rc*nGnkm#uVP?g&
zv^Mepmwr6nPIgG+eXIvlAYETE{pT#Hj@Uw7LF)-xKZOPYaBHCy^73&wh0D_%GNUQD
z&xRitR8H~#aU-5WLv~Y0reM}9!neFeDKr)W333Eb1m#3k04)VQ1w-IwV=CvZ&*hMn
zFJlYfaCO1=Qt(p<*DJzCu^@#<@+DIOG)bXp3e5y=o<a)&9?qAce$Hwsx*LRsM^k8(
zKiWElHUhU5^s#(CAEnx*&_0DHQs|Jv3n>gu@moqVdw)*QPAPOwAuVtZLAwb0q@Wb*
zn!-~8KP_mteEu^6bWibfk2J-e72TdG^b(+V3jGA=BPa#>GIPBMLH~SCr+P&O<l}(?
z3`*g70S4#uhX`<fSMgyf3{PQl3R6-TA($_w@KOpR^Cd_9ADXTL%!#87AIAZQyTgk+
zxl6J+%E2An9hOb964_)!;evZ{ch>?f+Cp(Dl;Tp{t+-Q)6?ZFM?Em)T-{+a<ecpNJ
zo0)HBzM0r&m&p*up-v1l^?bLBk2LvMCq^+JZ7O4&AUDXXai%h!$pngdCKFA45|gwF
zb}}9q5H_B*5b68YGS!KD99`3#nC`?3CuY*v4_j_g+&b~I6IY$M=EN)~W;=1%i9enA
z#fdpitaoCA6LX!I=foN()>7D0cwCKI;>3ydmId7ALZ|VY&LSrkJMm(Xg*qMa+>$%1
zZK)H#vcWPZR++KA+=<_quVDP$)K@Z@c&zYhQyDuyin^$tD|#LGm93nEcEm;}I^~M{
zgO!G*5;jo;zOqbDwQuHHTNt-8ZgXP0lYTAw{}nrXnCx_77n9wle)5~>y-w_NVm~Vf
z84sAHvu;NnGWjks!x1NrI&qnmV@@2WnOQ8Hrd^!NctTKAcHx8*C!HX2it&$EcH(4n
z#)-3RO#GY^=b2wHm5WUNV!Xuow-a42SjhMa_Z56?{6KTvX?z+Ya?^=_oG5cO>ITmP
zDRr(HkK5Z{FqYQzHm~d*#=DFU3S_(Q!~-WDI`N3sQN&sikDYkpgj0kl;;9qQXjw)4
z+B4-jEg~JEBJzp&*NK--M2pBM;*}Gxo%ra)CnxCk4sRIWJMosHB1RzP9R*e01R|9F
z<I)fGQkW-^vY$DdK{P6UVNN7U#EvOOMM@ifD;^_a!3`m+h-@M<iLgu+GK<I}VrZ7c
zSn54*A`wdM&N;G+ICoLVDIyn>93o!C2&BCIl6bkbBew{(wS!U~5tJp8Uqk^B5K&4*
zK@o*S6cJHWG;V!!I!-9eUiEC1y!yPOn25PM?Zrh*oGL6XRg3QKNTh^_k|O>8+Tc^}
z2&F}o5m7}%RS{)HloQdVm7^kKdB&RV?4(p+9!+<OIOwP(qOyo_nFP{HE=j8<A|Wa*
zPQ;s0DMYH%U|Atf6H+;|5Q-73B5WdESPMZ!eGv^rILJmsT@mdpLJb;tW}$&4Az8#X
zB5HE>SVn=wL=m+(TbnV7F(HdlR7b?V^^QT+1;P{&sUn`YcBC=ZV=NLUkU|dRh^p04
zL?eogDMEpGVPi(2!4gOI`+`e^Tf{UG(?xhhNFut5=q5rI>1#JM6VaR|UxZggNQBN4
z>toay{UQS7|2fBc>;Kn1C?Y+Z@W%}yETXZ92vv*`z7;X@OCqJFOq%feepS+0sh&+B
z#~QD3wBTmjiD)mPrHEFXZ7re=6N;;?!;OG!%USBBgNVdhLMIX5iRj4Od4uklEp!$!
z?5@y7M6b*O1%NY?Ktx&Z=q{p%h*2U&i|9$EA_j>VETXpv>xcwO{Y3N;(U-#MaWrLb
zr3zp5{vrmj%|O%AyCQADjI<#lhKm?MQBBc4!%&8a__*0ZWO{XB)@lbiJW|B?B?cKI
zVl0KCh)EPYG@rIw-;>Yl9pgphl^qipiO_8cTkWzBt6OWbh#|`y6_-0cW)yy4PT3!s
zOc61aNx5mMB+d}&wiQ?@VwH%WMEoq`HxVmD%n~tM#9|RkMEt^YLIF8f#2n@{MKta6
zM9ilhN;m%$v504EA$ej=xYo+?drAV4WLvGJbdrc@azn_n(y@#qHcyR&<xCd3qKVVy
zip?r)w+O$Bbf>SBQE9@`=QU}GGiMT3(?}oM+yCyMOE1=mSWg?l1-lCyL~Nw}>p~$H
zHi`H{#0?QQMQj$aMZ_@?$3<)vu}#EYigOX$MJ!+J*v(77gTjMvI<%9?E=C&59@?0h
zg}YgWnadsfd2SDhILzb#<3UC`SZLb+WPX(Kh=}*+EF@B*L+^x$lOisNxG3V3h|?nd
z!7bsu2)YZ<!{G^MM4S~dIkPY^PB=#k8fWZrLYkaS+Z=z1xFq5l?bD0G-#m6YWUkQJ
z#eBe=6q=2zJarE*3bgmHi}**x(MLuLMuQiHTOw|Y_$1=9h&v)(Cx(}FVA7#y74C_6
zAmX8j`y!TAs$V-z__t2NBi=+$MLc8jnDGfC-MNld;W_hvY2WeekwPm)NOfO}Xqr)=
z^iHHtI>H;;(a&qXWsx@8dlCOJ@0n5fKw-Sb@sZ=4?5Tw>BBET#;X+OqGPsP5pUH*H
zE=0SKk+buAB=ngg#4x8Th_W!r##n4bLadAaA&8Fa9plOiR5v^8r~4)l&*egH7xKA~
z--SFbV{ej8UMAP_CN|0_Ad_+69Qrp)0hjR_L`hA_R@j9iE|hhloC`%=DCR<GE-mh&
z=kN;TNhudfxG+6SVo4WhPf>ykkvM};3v^Pw8<tSU1wwlpM|l@2xKPPu%uoGRM)X#6
z;nI_uy@w_oPZKJ;P{oC+E_{v?tS&@N6{@+6E1;^oU||yHLOc@^C!fpG<53nOWOgi*
zAh<xYSBt!IfyUx+A;E<jF5LK3^BZ=!rVAIAIp(DaiQImb9I1n!r6#$M?1Iw;(S<rL
zG#ru8fSk`H)O8`ng;W>PT&U+V_8M(Q>V-~za+R|6SuB?+k&GL1l}3#7wmGPjV!-8s
z+Xasck_$c;{4VrdoF+4RT~L^)jCo=NDx#FHO<KSOjix$N;^s6Vxo!d-CNJyOq6T#r
z!sLvCdI}oT4A3e_C?lZ>&7=#b-8kb$Iype&b>XH9&0J{i!mlnYbD@O`EnVp2LSL8h
z&a-*m=vFSYc45Hw_%<#C@<w-Yp{)z;TxjpY`el|5jAuq#iBsyx*-kEe$Apy5G&%NY
zB3&sqDrYZt+TP8D?i3rR?IiYKv!0B-7<-c^3*xD$p9}q6nB>A_7tU?VnvgTw02c<j
zFvx|$E=-^(T5B0X!@Ou6#W<9avcp^$Zt@XKM!JljDyWFkXjaBBj%6I@!gwa0sfK|s
zTio|9Or(X#7WcY9gzyKt_>&#}h3AC+!aRk0ry)#bGL3P%3p1F^Wc-QoXU16+ipwpO
zX1k0ZR*1}TVXh1FT%b4h)J~JU(et^B1uiUfVG(oEm$<N)xss5LvP(_9t`NQ4MgPRd
z78ka<u)<|L#AlTYt6g;0cZ08Fd~-T0@ioketYfm4@e3ENr&j^aZZvH+x$p<`&5U1L
z*hc$>vlm_1;lfVlM_t&(gjzn}!fuoAVX~KTALD)(zIJ!ev^nI$Vdj6D$`R9sT07>#
zaTiW-(McE1nl`7HoMt>@+Mna>dDG^C3txTyi_Qub|7PVM=9gW#Vp?8ha*gpiBRToi
z&s#3srk(DF=*EWk);lh|rbb-2>%u)3?$b`8+j~+}%t;~gz=emb5P!tvF(cih?5PW<
z5|SuAWAdEwg$w_h`b#FS=!`8GA+xtMr~~#AZj^N6oeS?>_|Jt8bPl`mt8Sx*1bw7)
z-i>HC))uyXqN9ldb+GV-G0JW5#I;!no6EM0Ze(MHvN23DF=lqtrR;`fEMrzi${zhA
znlQT?IatZ*#^s5&T+DMb<}oevx{b%{ka2!D3b>627!`Db9%e*JA+{;ZScI`CV=>0!
zjAT}PZ5Fsu$_<+vb~j49QO1pCFYJ}wh;=8Fb)%vimE0)D+477P7^$>jd_BUCtCJ~J
zEf}fdMpZYe5f+S4`YKj;!@>>5xv}(?J)XJMw4sg!HymyxxsmKf{ZRG<H@<PBrW*qW
z)vMtK-AQTEpn8dJtiN8bmK$_aqho{WWp9~Eq_!KOXa|uxZq#+79#yAFm=l}g#*r4O
zX>O#tv9U#Jqk<8_&e4vxdkc$Ak{i%@OQIVMxeMy$+kz3oXDw1)Zn)i8;l}T7c-)ZO
zSmMT}mGQD0iW@!M=;em$hS!ZYZnUL&UJ&PVLwAGTK@s=65nxecBqhis#2CC29d@HJ
zan812B%3Bonvz$h5}_$Fd2<>R-@&ORE3HhuH4`dr=Qcj|bTIYyZqPf`zvIHxaz{5h
zx$zwrb!P0w*u{;mraiUL-Q+!(bcoK{+l@YMjCEt28-3mA=f(&w>hH#<)@ju85Slu(
z)<7nM+!)NH<s##bZIp((F^rYrjI~|aNo;&m80p3+Rz@?DIL3`HBaB;wjdx>$8#CQ>
zOATXgzi0e`aiSZOm`rA*(tXp7j(+6q6vnBH(`ZL9nZZal<M_?S&u-)M;CvQmG0tZE
z#f>>k<}%J>q*?=9*%vTh$hgSV7rQ~P>|_vECTS@h1#T>JBe8PIayMobPx{Rb(o5eL
zT4jnQveJ!JZj792IqEjPs9EjC7AC~k(7EBpy-acI+}QiAKxsXb4U8Kp@J#&=CYvcB
zzjct=RyVe}jSJ7VyK#V9Bff)`oo?)6vYT-aBbDx@AYs1W4N5;0i2Hs){6W)`Lv9>q
z{wL!RQ+Macdd!XEZk%w#y2w)Mw1oz8lKCk{`c-s>(|Xp8b8Z~;;E)IB-MByz<v|Y*
zF1qm-ZEX({Jh<e>-*nb_5bMEZH?EK~ZoGEmDut^XZ#LMTx^dl&f5^S0)U<ZSL$PnL
z8@Cy6x^c_&Dyd+GJ8s;isbl4Vso!^FHL_C0ho<s~$zwO3m`eIl<00nHC=yKN1(Sbi
zO-<!_?HpwDhO?g;-!i^)<2{rA-1xxcBjYDGnx8cuTOWB~d`Y#uMD!QdqddlnXJCx>
zAS06)#!QTv8ObKlK02!h**qxiK^Ydadr-oIk{;ynAg2epOv@r3<n|zs2YFd3#F&pU
zziCszgMua>bv%aJFU;8zwR03T^<qqlGY*@X#aqG-4+u+nP`s6u$j2tBYl<h7^`IOn
zr?SMcWqE43MQl|MDsZ+UV<pDQjMP^Z4}RKiT$WbNRH}PmF?sVyhIo@(J+LviGYY1D
zacy)B55Doh<ALNsP1fspP?t#}V=WJAdvNBt(NPjB$sR;@7*8rs;Vh9<57Mt^B$8$-
z^*pH0ynzP|nKbgiX_m&u=M<T{7~Q6REH<<3f#N|s588X6(nN95m_Hnq3me~y`aJM^
z5MVLrL5PXw!3Wid3f+S+D=iosd(ec*w~W<(G6IrPQ_iN-D3~;3B)z!@dxc~oEls7B
z2d$a6VQg#a)di!w4jxopkf9Tc9T{JbOZd*T>FhxllXqp(jWKFQhMpeu@?e1n3q9!V
zK_3ssc`)9Cz8>`RV2B4pJ?QVj01pOvFsfjrTfxYZCdmUmAUt;5PDnQx9PB}xwJEnR
z=)*i1?!g$^_)(4#9*m?a9&B%tJm+JWERoScINF2BBT_Hd7O3J_4^pZnQ(CvdF~NiH
zDT+M!*@KB5O!8o=2h+%yj+g!^KYH+}S~8IzJh;0eg~${Sj&5*J-K1?z=<bEnJ(x*O
zp0Lm0HmRckHJiafMMbJ7&+=fd2lG6LDqMfI2fr|x!$>WV*zLGI@-TH)!N`0M#3X^p
zA`ceREP1e*2J6964_14y#)DrySmwbBTIdJ%<sPgo7@-zuIKNS-_!4@bw3G5X=^m`|
z;NCI&mCpisLiq8ReXR%UJXr6+u7Z)ohpE&Nb?VyS82nk-;K4=@Hqi-?Bvfme{P*MZ
zQw1YiJlN{NZV&c&aISgd9;xZuXg)pIK`j@I?DBvtck+128FGVGgp|D=<BiaM4=B5j
zXD_OH^2dUa1JwHl2X#s_dDw$LJt!a{w~%~<X3~QU5~3v>^WZowp9g<?aKeL=9-O7F
z=>*6VcZ%_}2Xh`|q%5T~9?*qqM9$M<HOl(mh-w!-xbW4umyPtlm=lR<>bUH|6<S0O
z9(!=rgKHk#_uzpC*|!$HPQ&q_Q6I}cj5j>kKQI0!<1NP9jCUCCGRD`)N;c_zEmZ3v
zMQob=W>ed&Ka(l@xsve2gQp&Rq4kx}P>mt+nFr75rD}@hg$M7rmw!3?lJOPeYsNQ>
zZyBjBRe8@n{>S)%@gw6W#?Opj{b@TXwjHOkHL_-u5F;Ungq#vGN$5W*_UO&(u@W*%
z$RdGmGQ1_f@r?~l4yCLTvPsA;8S{DOZB4qckR~%1t&W5|67ovM{1;eWEpJMEu0oN-
zD%I~_tCCMLu0PB#ff9|Kl!6kDT(VLsB%!c`A`*(SQk=0E<Dm^gvGoGkl#o!86)=`!
zbpD+}MP((FBPV6V$|x_Pf`or1yp&K;LL~_^CHy3zvV<xUbO~VzRV7rD&`5$)LUjoi
z2{k1oN{FL&_Bm`4>=NQ7SUIT=a<na0e^cKSDiS0(BqT^6CG|V&>|*t6NX9*pz9H<J
za<gvQ-oMf)TT4Q138@m&BqT{lmQYs$6<yAgP=~t+KgdDGlpR*AehMo@sD*kG8c+Zb
zmaJ8u+@7CGHdK+iqu$9AQG!c?D#1%D^`M?xf+Rtf;9-}@jBFHkiQJ$nhUaT+J_$QZ
zTmK5!GzoVHTKy6N5-3aJiW2pR1SJf}Z4a^8mWpYOC44KPvxF}6{f~sE5?V=UO*6T|
zkuISH6XFpj%@~_YbcJ~Wi5*usT1s%|E<|KUgM>B`UM+F7r%96&+DcfO*0ddC<wB7T
z5;{t_u*5NVQ8d|flJFfH6Ca}_bd}Ie!dMC8By^Y1L&6XVLnS=h=;$e-mxS1jj+h1s
zWj8u{OXwq^FDqX~!hW3XPvbK6ff5EWA8aa9e=|HBCSinxkrIZ}l9h9e5$mNCij1OY
zsZf8kgqHpUBDH^Y)K(M5(6XutH|sSWFJXd&A0<qY@V!J&P)(XBVG@&ja>8T^u=)u<
z@L0TsA~Y5<Ae<_p_XT~rgsHcMX%Z-PEEFMSh6H7!gGBP@X9=@tjU+64P<6J1UnK03
zuv@|$33DYxPTJQ=m`8&x<X9+Sk%ajY7I4;8$U)+nB`J#~&<%}ONcdgC5}IlWB#y3`
z@GFyLjHE1=@SDjClyqb+VbonoQ*^>kWR--~X6YIxYbDUFgQ<wpdR8__*vMoP;~x?>
zGua|x2NSZ~%48ekc8a1K^}e>SlTH}+b`R|f3Fjo7r%9VG>|@L0686((r#l00a2#Oe
zAmbs%!xH{va)gl@JW8(uCZBuUeuDW)38$ExmJsS*kA7e>x|VR(w48o9_JV|q5^m6O
zMB72aC7R@&_Nx+5%<(syU6F9vv`=r8m0Fl^L%7Dub;f@f=}TQIx+TGuGm$=X^?qJc
z%awRr!W}N9j;Qn=uPH6-eF+at{!qdrlRuX5#N<zzJd^O8$qUAObE2p^ot&>Eyp!-=
z!fT4UXo1oj32&L7d}62Ue-b{>49mzY<D-O6^g<~kqm0iK8<O!a`yPYSqGZ&F31^T&
zw?Uxvm5|b5f9kyF;TYMti3g?JE7P)Hvi51{X#Uhff0XDQWz8z1mW<jmvdPFUBZrKf
zGU8;!%g7}ow`}}kURFjPnSLF^-x@V;y#L838=sW(%NSfJ(*9Fg0U7y@*$c{`w;7a%
zR7)-_qlk>FyKO~fKt?I%#Tbh-mXJ}B3E4D_x0PmI##HiVvXfrYV%<|&C`YdXGKf@Q
zBvO${CC17!sxYa_SdFndqlJ;|=Z{ag)h^yD;~N=S4p`1)t!I-#XqRdB=qCGgni<)g
zrEE2r-0G4>yhN7zHDx?$mXavrWxEt2gh?`zWn7}EkWoiQT^S=}jFgcgBUMIFMo31Q
zjCwLWG9(%GWwbAx?v&|aD`+62p^U1ptlvw?$p=##$(UX!QlodeONLuE?%Ot`Z+gK#
z>1zu`;*O=&D3mJ8P-FyTEJ;gMWq4)ynfu6r-s!K7rEPAL*36Z7VVU(vp~y{JEsaa}
z*SC|sP7TWFLdz$kF)fyiW-^+~Xd+{1HyfpN8BN)qjGO+G7BTsvZnhROTFPi8qqU5i
zg(CawCw?pxS(=*KMn+qizL2yn^(VLEc77O>7TlM*-ILs2Mh8|pn(cRz@g4Kdrm{Xh
zrJIcIGTn+617!4&(Njhr8GYHH7fs!ZaBmsK3rAXZb$lM2M%fyLBZS_<k$yCLb<zj=
z>J5~!CSU4c8AD_Yl0izR!jVyhBgUX)EGirsF5|ae>BD54?wd~J<G$40WFTWSmC9Hw
zV~mWkGN#IyCS#n8@iHdM_(8@58Q;tJIX-0~`(x{qewmw{L{<8vzbPCcB(Hv?1sxbW
zg<{g3C^t-|*?aOab-IihGUmvbD`TdNpJdFEF<Zv6UXB(Q^`B*IIAJ9-TAJ<I6MvEM
ztbX!@tCqihkLz3^WuA=rG8WSO=dv!~DzpS&OXo!;QVX&1DNAH5mGOs+%`$!^8yTx)
ztd_By1}oF^mGC=Pqz1>klk*md)Q?Y5eaVC?xmjATH8R%9SWlkFxLqh^os1IpTDca*
z6%o@msL9mJM%wsd$|gpNNh%^Aw#e8j<D881GPcRsE@P*RT{3nM8I@MONQCaPLNiRk
zyqgY<V`(%Ya#Zpj8GB{yGuQo3Ci`U^FqMN$4ly2<(Wr>Ad`CEYRK_tT$7P(9aZ1Js
z&gQ*Ul59>hCvt|4BUa9`LjIFT{#>A`*q3^dV}RC+_+J$EMIuBl)9ECmu!15AuFAM3
z;}adBGOo+`N5%^o|H`;Q0Waf$jE6FA(L~9JUN6ktAmrUB+>vpgT3BbhE8|sE8Y%b4
zhmAtp^}_R~DWp3;+8)tyA>*lx$1*5O>HQI5z+b{M8D&q|pUcR4%D!oxfDJ;8^}<VP
zhmMFvssG7%E#r-hceJ@=XsaEAibUShxYi3xHVS7>+DEN+giqOPZV;+$6h3ejs`Zhb
zIrhQ!MMji@913zO$e<uvL9BwT3Nk8)QIJK!&+COu3cX(yY)6I63bL<tkhkO*>Eso?
z8-KS!$VR$?8AT!$*E%S>cDZBY2OGT=&!r%*f_w_d;oJ)HC|L2A&~u|eNTbNFprC?6
z3Wyg_FyetgK0n_mtl1z?`=dYDiYh2ZbrpQ0ptyn(3aToorl2HMQBYn%1qG!Plve0J
z>_RyOWfY`bGOCwVK%NlK$ys@WK$B2WK_vxM6vThDkw1YCHX43q1)WzrXlOJLnxg6o
zEDEd&Y~<TVTO1iHAWz7voI_%-Z=&l@49DyW96U1um)2>NN@D(_LV^OCYFeY33KA96
zRdA+yYRMx)Ed|NkZ*2uhim^1eKG;SbF?^__U{&*av{LlZCc|laih_+tgj5AoL=Mzf
z&_F?TFDza(RM3d#Q$;=%P6eWZBMOcxa4B#r=%b*o0*?Yoflh8H#(xTA1%7IZxuVd2
zEe(;9SAmat-rRBYCk0JGP(et+Uz4qr{c1y3o6|++q%>CWt%BAH+OR<rh3@Kxbmr?D
zTO*2by}CkI-79FOfD}s2$(iHnL|Q7KqE?JV=&EwUwhF$ZX;;vW^fE$w1s%ANj*OiY
zY`A7z>rNNF6Cr~x3c4%k!Ny$~yD|QpXd@4MD(FpBn&s%FfD$Qm!F-SFSxM=qpud8-
z3g#&opkSbasS2hk7^Gk@i4E+N6%3)}phZ+LM!_%z!zm8Q4F&gx8jXByXB0O}Esu)J
zPF|63V-<|!7A7hf&u&xc1SaG&Iq<z=T-8tFBsQbI5@*=x^64LF-ilj)R4|1J@gI8B
zo30>gq-}<RnJg0ji6VK5b!ao|EDAFg530t$17<7ug|l-QsS&D9jm%fDfFei1CIt%>
zEK=~|e9CGCixn(U@Eh$r1xvZgGIsJ;=2Y?bB9Z0nD!EPG(zV~elW)&#E6ITtDNXy;
zTgBPNpHfL&qhKv(*D-EjT(98IBF0}=h!Fn4xJ|)!1)G^~QRuO8_}UH`^lOo0hk~67
z4k|dLV3&g33ii+m^R>0cR+=~JdY^**bU1iZY0_vc2Y8CC2?l?9+7_G`OM!HlMlsol
zw?7r!FA||z#}ph_@UMcG3LY=Ao=|X3!FdXdbJmlLrx;Hw$lb<zM!{LmQYp>$1qBxs
z+@+;w@h=5e=%{CYNx|Pt$o?`f4OO|O;JSjF3T|<0|0uX&wnk>dC?L;SDcx3ZhpSLU
z$`Z=yj{6E8(EL=iJ>;VOm#vg2`-t3T{fUBS3Z656N+(J4R4Q#($r{zf`hwT4lVV+S
z&q^zpt9g!B3SKLCqu?!ha>$ZN#XAM>6?|6kMZv>umj4udWJ3Idf)m-oL_V2H)dp5d
zQL0flgNj;R)2K9>v!rBH5ySkzwJ>EftH`1vRz+47IaK6SakjNJ8yjS2q!poIlB>B?
zqwCx%@~EIJbwS?JC}^Z)kY7as6;o79RZ&nyAr+zumx{tFim0%w5L6UZQA{=dxe%|S
zxQY@gs&KZX3aFqNpbb(=H3F56tkNph4>cmEjQammuB?i3%*&ff1tt|$R5F#yG>|jK
zzmTe`sHPfwvu;~kbrlxXIM(Pyic^hKg*b(!RfUZmARF?EdUvQuP|-jI@fs?=QIV{o
z4!cxSrSAs}-x3*XF;e!clSwMRdR~|HG!^x}8Zf3Zl0khQ6jh;}NOh@^hTK;pM$(-s
zsECMLg-1m*70p#hT<TNdXCkXmn2?jI3a<+Cf7s79!hi}*MPn7;vH_g{G}0iCJ)}Zs
z5@sZw{#Qi?O;p@2Ekvka3V_AdbZUH&ZF_Nnp1VPdOGPbIw4_N>(OX3;wrQ=RjS31~
zvY$A?+E&GPDmqhCsA#XEgNlwSNbjWLX{Y2-pHe7MmT+ao)Gl1qO+|MmT~+LEX%zKf
z<DM)oj@0{Fi>mig(O1Q26=PKN<I({t2CC@K{A)*pR18)zOvP{&Ls%cmNZo~oB~v0Y
z;;S?48#OzUv*Z;eG9VnQVuFhAx#Bn#<Jn-^5Tj_KikI1qApb$dBo5Tcj9Ic-DQJJB
z$vJ1GLx6Cais>posm70PGgQn}aZtq}6+fx?S;aCH%T>%$F<Zq#6`|?2UugKntYkcw
ztIVOz7*n6J^Hj`Napj{?w1C!qge|_IeaTJhA{C2yy_V2g+_U~ltMFaYQks9oM%mhZ
zlAh?+-&Cxis8+FE1!aGymQ`$4u~Nk<6{}S=$!nvuaAk7W3-N2n`I3oiRjgyOo{^Ld
zDmI#Y6E#@ZN+Rw0Eh@IsZmnRW)0nnQmZA~jJ5=nXa2;>kr(%~1IuIzfchhO`%-B<V
zIOg}Ns8BRQ3qiPFr8~wL2gm{1CPgDe4y*W6#a$KmR2)%ply<I)ODc}3IIiNfiZir>
zrdUtViPXk=QpJ1N>6kjj2h^5~b~-uFsyL_OJiAKsHZeV|^P{8|pDY(tT%;Yb!;*P(
z?CfdQ^!X`&tGKM<9~C!fhE-fuaZSZ_UiXoclP4dx#YExgz~p^hl5>qnCUR4SwVLpB
zO!6%iqrQ|Ro7*bxsG!o6jP;*RvQdQGSMh*W!EJj>hop)}Dqg7gmp1Q{q{kFUDxNWa
zqT=(bbP`V#NG-TFzG2&x=PH)IOey?0DKW+RQpIZ(Z&bXZ2nnWBq8l>zJ!^e>Jid9+
z2$6R*a25a2?!FTJk<QYY)-i#E541G`327s&y-M5vc#`y4#TSYSFEV%mFG_h4?L|f}
z@_CWpix@95d6C15oL)T3V9o4B7B6DGX!#<3#T}b{cuH2U5xUvDSl-3@gOrfni+eBP
zTUWPJU%9-<?KNJ7^HQzbmONhL_B#{<^a4S*f-i9;e#aQ0fENY5DC$KqF9t2Q7V;YR
zl&1UF74~BBJKN4*ZAHAGk#0`5zshWz_bi6us<_v9(Jw(AeV0^{@pYf1(q5GDqJkF{
zy(sH7o(t39y0x4aRCKtsK-;0b7qz$A$ScB1UR3d-Dl3(}@bomqmi>}GPAEyF8jY@B
z5|KDB;=Smmp}PjF7d9G&hFA@DF9a_R`Eb|=hZhN6yrPc0sNuyoUUc%}J1=UI+g|8i
zguSRm9eL5n3#S)JUL?~yd7d=qVxf)~>)xl-^&+)ILaW8bO*vACb7>l5J;wTs4H(Jh
z$c?B5yM-J1?V=Yh78ORf7u{D`9t<}Q0go4wX)iN5|2SIp!t2Gp;g)XmjlO(d_)VJt
z6OA$GMaa}!b}rP|i*LPXLDS+z6EB{GZRuV_yqL7g($tIVyM)%eg}l3kW?sBoAT($F
z#%!CuPoQ2}d2xD<(AtX!6&y=zS-bxh-^Po!UOaqbX-6{?oAl;JJn{BkbYQU~<LQb5
ziJiUZ;>Bt&)_BpC7Q%~>UW}qKZjI^gMGr4}da-+%jr^gp^zvea7t~sBFZy`Vm;E1P
zj-sCz{h1G79BAsluZ<qee2A$G^<tRGhck)YB}^`rFl0o+XfMWi@rxI8SRd=f6fdf8
z6UKQl-irw=PGtO^@t>;3Pur826PfJA56piwm26vMrg|}rv(vqpW$H61fKC1rlb;zk
zwvV1|>NE+|=3JiMWnRqlV!js(%+f_(EMz|NZ{u2m#mtv5E@k|ck&49fg$S2>@tdiv
z@ZxvoD;Zar`mT8y)>627al?z7Uaa?GgBM4<IO@elw%JP#lug-0+>6bu>@e$YVY1bW
zZA`YCdiTt+)cZ~^cA3g<FZP(6=7&o6d9k0B16~}YeP@<NWr;n^{7+MPx317JFY3(`
zE_v~{7stIg;l)WVJ!jgSq8Vd;hViVa|FSjayvZ*xxk%@Xsl;zFJh|)z#rdyujlFZl
zi>qeoH73`+_{UWCt&F|p#qjOIZ7=T7xwp`9_pq%%A=|O$MecfWtVqH=FYeQ(FzugF
z*n9Dav$wX#JT~<wUOYAV`J5S^oBRcnf4z8VD&;E_dgH}gFFkPp4Sjg$#d|M``%uD%
z|GfC%MFAfQ`tUqo;zv6D7G%ia!zbR$G?vfY$QQ;aAL`dN?#LAFLq;EBe8%xkDVGnK
zm}mAOix08PvomI8%*JRKKQ=Be$>BpzQ|Uc2I=9L5_>h-*KF0i}K6rb~kde_;w~!Ab
zoh1wVjDwNdDdIy>wkgKw2^Jx-qz~}n8y|}QB9!tO^I6r0YCe=^n=(F>^`V^Eas?mC
zo19Lwip(pSN@X9an0!ENEFG$}qpSO1VKI(Qc(XK~iPZ<254}4?+c_(krGGrinqcx8
zOjcGbRMUq<A8Pq9d5%!uM-M_0YI9MN56M2%VP2P!x~6fZFej4gLz>C!`B0!?0*Mq(
zGv8Pm`QY?nfe#CP5Pfj@(9?%rKDd4G`0(^#rcOSTIu|eb5b>dz53&ymH>LWZ`4D98
zW%T*rH+u;%xwgZI^N<fZXUFC?ybAl!*oSXT%cedwF?qrhW3AIUTW4mDT3_r%3)o3%
z?n4V7TC(1Xv7HaCnY3YS%Se_jQ**R8c?Taln*3?=Y~T5?ua>nlD_u;zE0b=F-5Gl@
zwj2=E+lM|r4E14{4}E>GUXAZZlf1yPuC!ypLZLsKQI7+d4D?|TlfjHb%+fQ<3J+&K
z)rV<JMo>WdFv^F~K8#^yk`H5<Okf<xIG&N(AATs~_a>jn#6^Kk=RflweE88UokDBm
zF%FaIKFsi8b6I-4qirUa{$kqv<ipP<pXI}BlV7hCJ;&s8eVAwR`ApiDj$Y)$Vjouf
zu*Qdy$e_)#E%9Ng4-e;Ce)VA)1=Vy5{d>1UImdFd?r%P<VE#MfO2$=YY5AfV*3x^P
z^O;KR6L!(|^r6gt>v|tHu)#(OZzh|*+B0ru-11fFX<2g9xNK~j58F*;hYveV-l}7f
z-6r3|WG@APsqANRfbk%0z_rFTlYjbfgpR2IVgfiy=YS92`O(>r<3615!S09P$4MVf
z(V62%K0i+TaK?wMek@*D=&TRte7NbuEg#OCy<G9(g2^xX@R!Li`S7>NFZ)pYzjW%I
z(p46(`EcDV{l|wJCU3hf=C%)a=%n@Gvk!NDxaY$QAO7{>z7G%B>^ZH7Y5#=DBgV&!
zzZ^5(LOk{1nQ4=yit&1#?O?{2th{A>WtP77;f=|gP0H|&`FqCyeE7hm^6hLNO&cwH
z61Db)voU@|`Hj;)10#`WKQfxU+hb$xGI2JuA6b~hnx$K|#yl(S$mU0OR&tnnPCs%n
z&&`;})M-cL_oILxHJ;kb`{~anDC9>uzp>v7n>Ho=C}Q%WOo}lU_oIZV&)jC5SKw?Z
z#?pS2VN%w#$=e~?xzT!mr%=IfoCX#BsN_dwF10XLF)ge5QH^<ZQ#txLI*xg~saXB6
zncSZ>*5OBjA1*)KG!{R;@uQX>wP|S6Ej8IJ(T}m$(vnph`LMKwHOY@bv9@GC^0%|z
z-Df>E--x0*e$+MFOz|Vtk2F8(`B9%mCu0LY8Zl{TTGE6Ib&OYP(NuDFi1zp)`O(Uc
z)_%x-<SpX}`_Y&U6h_q#uOB`?{AR5nlYk$ZspLw@5@N2KN>n@J1pAh=>5NSnn=-bU
zX<U08VcyJ-=1f{JlHQWZtq&!MxAEiKH?~F%jd$#A{b*;}v}e+Rv7;ZIO#R1uQC<A#
z>c?+>tnj0oAKm>J?8gv4diX&H(U0w-2l~;|k6wP9pI|Fc+<2kv?MEN8g}#3DW8R-}
zfT`1IR_VNBkRMZuC8T<Up?(bW<7Yo+vB7XZ?mUkF$&V3!jPzraAEW)4Y}OsaWCG(@
z#&Ld(H%sXijePi?vlIQ8Wa>8_NB!W(kJO{7OlLCHk7=gzXsJ<m24`n7?wgV0QA3Ay
zwq>>-6fnQ|F^7qzdBR*aSj;$&k?PK8vVd`+AB#*q|Ltr`m@hSzUzsfPW4Wo&Wd82Q
zN<Yr}an6rbe$Y8{ijGY`R{ODr&DQ#{(~n(#tn*{N9~)TQ?8g>AHZtF2w)O`TTEVTR
zvW-cW^TsVBwlm+sn14{F-G1z0e$<b>Ob+@%uVQ4m&yW4A9AG46QaR&o$ss=uo64U|
zj`)$&pGHNLj<Iswj}uHznwH*v#+Etb$Ls^bg1$CddWxCzeq8Y5g&+U=anX+%dxdNh
z)2{jP7uUMP_&4Ka#w(0h8L72S9gAG|;~zh6uyWUrdrWTnaf``q#ygB;Pjf<epR<n{
zANcXmEPX_K|EclnM(K$kPg#FvmOf{)ZocL2eBq@Zul#sT@i1TLvCZ;^i|Cy3T#bM0
z$2-ox_v3>fADREhIAWpkmg5th_5tIx|IFeSM#`37lPLr1(Tt=lJ{X-TfXo5<)(B$*
z$Pz$o0KNeH0b~szTL9Gqumq4jfE)o72%um9InBD;`dM<BJa+(jnCCT>d`$8)uAH8=
zPymGks9=^B2>{HCG8QxS;!H{eP|{ScwT&)i^3nl%=F9&-vy^30E`ai;GHjkuk$EM?
z%8XSQt1?z&q)|t9#>52>AAl_YdjNNaTSjjatO0D@6Q8q%?cFXxV9Q{UgoXh)0!Rp;
zMgZTim>NJ$vz?>>5}DUxtZnLVwq{6XUWc)+siy=mW4rMMPMWFI3!uKq8wBv-lJSYY
z5i8CB!~k5(Wz)vZ#1nvIDm!D1cM(bes;PLHOz4m;5P%jy*8sW&5DXv`K)V1IwvX;#
z#jXbs4xllOeSx(>3mYkw_X^(z&?JDST)l<aT6zEx=FJ$Jn|ie;Mi{r`Y^wlTGihU%
zwq-J<c|w&^3GJD82%saAPNvOwOgab9#Z->cmp=jYAmwqioF%qr0KK?q*iUJ_nG7^7
z`!MMnKtEIIAHV>UuWylIP=KC6gCVSpU>wRg%(NNKWDkEd8yUbT&W<)q&u)tu7r^)c
z{tVzq022cEK7dVB8o<N=CIv7jfVlxoX8Re8KQR8tIE9hsXDX9v0ZccQ?oYDLH2F^f
z{A}`B0nBFpi>bVvnPXl6^8?rzz@gc~0$RHO(sL$x&Kal2q5zhemWu;e!h9*?ucj{d
z&$K*%-vU?>!0!R%PtLM7fR$$H>Ht=me8aYwH73upJ!T#A^`^2R09pd-H0^|?Zw|XY
zU)UVL?f~}CK3ybip^al&Zey~YaR=kh0Ct(B<=>asONU8xV$&S<m8asV!F>Vj=h6d=
z2N@4B9%dw)ZhvPy8o;ptJ_hh9fa3w22;f!#w`p(Qwr80moDASp0H@jhVt}r8#u>Bj
zStjQKIM3vQsh{p;?3zmfTw~>LQ@<R*73Nn>Wfp(FyUy8v0=U8CrddiG_F5UoodEs~
z;AH@J19W3s+&4>~FnJKbLsNMaz+;nBjFAsd19)aC&jWa2^1)eSX{}!c@P?Jwy!7f!
zD~VL=Z2<3Be{b6VN2iC$>3l2D(D6BdF9CcvSE$^=mU`Y1rC}Dm|JVM1enxA^Xz~~)
znKWc(vi+d((wtR8HVrj2e4`<|h8!9yXsD<mr-ob_ifAaRA-9Gee>?JN$giQ$b4wmF
zn`X_+{M>(5x^-s(4cA^;3To(jINp`ZI<RP@kcPq<yuECca^6oVrlGioG8)QiD4}8Y
zL`!T#Ybgx}vc{Fv01Z9=jPE<wLfO(}Q>51W+;+mT@z!!01_`$E8tQbl^}cT@eb<^l
z$==dtucV=>hH4rrYoHtFl2S#ZTann`lraw8>KfuS#A~paV^3b1)vCd!A!VRN&=8%)
zo;{b<PF)YSQaX9YM!JJb6EvLo6i?Zj8WJ^xH8j>xOG9l9^))omkfb45L#l?&_Ih<R
ztdbh1kSBGMiPR;3d^WmqZs%u~{;_dsv=-mm>S<`T)DlTf+%ehGP(vdPiUw7KQ-eq|
zxz8eLaB0SUeJ}5g_h@iyc>2lqa=Dez`O$vPS!iz2h)fP7ScyzrZu4sJYY1rY(J~cH
z39qnJJZaH1{8K=n6w(l6zMx1fWvK<7*7vA`$hR7rXlSpYgNCLW(lxZzaQVC?qM;eh
z9{EYjv@^cBh87x*T(yPr*eLtuiDP}9TJ)Ee)*ALtN@$~j_^Kw>okb%J*2K3X<M#23
zK3aOzbad3P;#6{H_W!qmwoV$p({S;fgVOnlmM$7T479A>72j3E(HeH*J!suEjL|Tb
z=6t=Smxg{C`ZMpXp%0Ujxug4<WB`-l8b)XsNP(eYFe^hD=~+}mG>|<tMQIpy&3vSW
zQEV`pkqo}te8q7Z#?vxUOlp{*;d{3ENy9`9lQiQl4L`CnS;G(9;MX>(eIirXfNZ8}
zn8tiM;|x=u$%Jlu{<8*hk7`k;zi61FVaGQ%%Ffj=Ps0N4Vm{;7mcRP;)qb&tCA4G_
zbc|rBhF>*2Zj2|5u}s5qTE{Tb!}yJ6Uc;pj{tn@H4J$Pa4`M_Rt2C_EP%MbzL9EfR
zR>M6F_cg53uwKIj&A9pS1`QiE9Mo_~!zS7<8n$WJPT@`VP1Ck$*h;hQs`t5R8sVvC
z2_z<TN!p>|Zqu|q8un^9)--LWhATxQyEN?P?C5}v#DT|c*~SR_*piI*(@`@<IKWvV
zhc*1E;W&+2!@Hu9BNP?1n^IGV=PPEUW3&M;rBe2!hEp2OXgF&coYpXOQEJZb9E6n4
zX*kbHe6a|%Ky^vHsNpY~6OAre$3GfwP^goW8WtCeT-R`wHeInu`(lyt#UezmaW?Ep
z*jX&{SFy;LZyh%^+|qEH!lPJ(#Cn}mNW4SNYxuWVBuDW`wc-(}c;o@iUIXjD8eY;C
z*6@f{hrAu@cuFDUay%j9BevGL9G3@Lp0V<rk&0f>qvamN5P7BHHSH-4Uo^bY@K(cr
zv{PtKXnsyx-ZOT3Q?q^69Oa{Pl0xaD2I8L>zbffR3PlC6baQ-GMj{!QL<f<PNsOsy
z3L-P}ER3<H{-#8xY(Zq_Y!1f!LF6<`a|Myx<awCnWz5I;szfI0u>kXejD;8rGZqP=
zC=;?F%MwA945C{Q-GjzI2oOYS5NSb_3ZirnWrEl`!cr}W>OqtZ8h<t~$5@`R0%JwS
zN{p2mt5EfC600(&Ds-P}OAv8E)a+wP38F=eJ3ffooF#4z!WM*`bs<QPqE04}k|T(O
zAZi5h4HqRc)?}nodqHb0lb?=vT-+3&6hv|m^d^U%QdfsbUB<FC(-LpR-}@3@FNpd<
zv<{+85DnP3c8{W31<^2wMnQc3$>I#c6@;5+Ba>BREHEL#6GX4gmTzhEZcHX31tAA9
zZI@jMLJh(jgfECt5IURr$^Uy6Er>wSxK||EPkL!34036=<?&%A>R3zdn)Mnpr_%a4
ztkifD@-~R*KP~A&M1sgN(?VjiAlA>ZHRs-21ko~x93vfMU;K+vYWtEN^(EXkh;~7A
z3c|BAwL|ep`ydt-k8})zcn8LD#UrE$6_UOSqH_>kf;jprwJYQH;*oo=QYmG5o!TRa
z716?gAU!~;>78*xPjWAa-a%9l>-7nuUl2?Fa6DU-(l-b~dhB?AR!IDHq%bguK|u_r
z8J;Ro8p>n{qo;~6jN<KiO(Ik@GKf(@ObTIg2&01-6GWd7`i3wzh;cNrK}-)~Jk4Iv
zxVzERAifXc$duGcj1w6tOSgt5oXpuD7=H|63X==PBUIFULUF1-BM8fo)Hy-S4Ps^x
zKXLZwApR{LnH|I|&XU2~!AANe2tvxv3u1l{kAip{#DX9e2C*rKKWJ8iSovrC?Ao@C
zK`f@Rb9QME%bEPjxQvm^8cu2Q8_j1Bzq7I?h_ytRuQF{`2a#!kg^Vc`xnd_=N6T%N
zZlF?KAo1)cTh+g<n}gV#A@Rx@%V9RyLK`!PZ9#13?4BU@2C;+rPR3n~RDCy-!jFw!
z_64!u)Ell64lqAxDu;sD;&hPNpEQ#!9u4AJ5Z8k^7R2!&P6Tl>hzmhn4B`|UoMk+1
zws3}8IPw1xon!Gl&HM{v6n}B{GUFxF{%<BNUkF!B<?2^OPNXXTFu%=sBZ!+!ZZT5n
zywch31aX(M_ky@@>g2!!lRpe%&nlz$CqX<70wI(N;aL!QN<^}RjMaP|#0!dtAYO8n
zPmHgEcyG4wn#mi+w~X)T{OoR{x|IH7<wFo3nUK=YU*dBRUpN~TLPqW-10$72hmc-6
z8<7}RGMRej5N7o^{EQ7DD~s6}^MvSW;D(<$7;`e_Vk9v)Z5)rWUU@^v7ef9J3UE>J
z5DGFW!dS?(FC4<XSN~s~qAV6;bl0+#Fl|bP@awH8YO{0*WkRSIqFeExYzXB-u!dk`
zv+|5p87nYWWULfIWhPX;3X^*ejP9y2uO5QMER72xo_W2(DP&-09`o2*GX#OT!?a9b
zQX_<Km{fBafsq(Otq^LPHg!WtVxDX&bwbEF+?Y>FDJ-TkriJJpzs8I;;H(xxFocF7
zGz!5Pf*3-Vm4c6pT#PcKo6!@3#DuD!OG{9gtES?mh3jVw*3U|Sky;}q6oMW?+Ys7?
z5N5pvW8)CM4WSA12xC)5s*)bUx>o;>v1TDOXMKG!<A`X<ycJ_>)4ojz|IM>fX?s)Y
z9zur@I)>1Rl`f3mnWddWn6x&T?7Nyuw-C-OH2m+uN>5Yo#iVx#BUYtSX}=Kqhm3z9
z4iDk#8S8)$28SS569$Hm<A8k-i=WTL-^>~}gpT)&$&`jN8OGRlX);}jG$I7Tk&L54
z#=H8_A&lYdSjKUTWHUa52`2xZ$waoNq8~!|kzzH3Wg$!nVJf}Zj<GHZVHyQ_{<s+-
z%nV^V^S`cUCFQ3OK3{Uo4&fIjKQqpvm@E+?eGUai2n#}3$jUq}ozEz;LA$@2kTF@d
z?Vg-`!_oetZE*-o=rCDgp|muFVhK&fA(rJK{1(E25Dtd0g5Laxus4LB6@`@{tO{XM
z2!DjII)pVLtPf#B2tU7btPR22J9!<Q3~d^Z9h*SuRrj=wWZcf+_r@5B$YvUN2s=X9
z8N${OwuP`gghx57WLEM+(rTr#p3_R%DsLUT=*4tw!tN0Egpimup;d{<nRW@;Tc<3`
zmf-7^OwR0Mm-bV?ck5C1PzZ-9mCb%Ggg-;5ddhYzgyT$(gm9FOri!+X1?<HqTTg^=
zGK5pK5Fxa`6Vs)ZeeGLoxv=$22xmjcTr**2ee2q7mJ;W!`JJ{o58}^<Fvpg9A%ydH
zVhiO@xfsG<A?!-6MZD&mxXU42389;g?mDi9a4m!?I;!fp9>PB%d<h{+$Bhtf(xmmY
zybIx02)9G{H-wiV+zH`s2+wIl9kAVFgT0+?!Tpx|A<(Dq2dq%7hfE%Y@Hm7gA!Pbs
z{7mqa#b>5X@OTE_PU{P9ioW!C#rmaA(QiU{&3xWa%i31f&n+{(rFrXNqt6cSX}g8+
zA%u@~LavMdOlQ$Q_UFm=Pjv8>Hooy#c*y#GubqrD=!n))R7Wu#8FgbIS#-qeh|%fA
z9hr43{#>(ox^?BY<mbQ8g>BZXI<o1=ts`-sB|F>aU@SJ=+I*5Frw-pD#}|t&mk#S1
z3z2K3ta)_g)v@YUd_Em@=h`Uc*HM6Z`_DBC>L{dxNMS}IMRZI%Wg${rM+qGjbX3&g
z`W#hKM=2epxjX2{Z?{)i7e6{{>a;siWptEfy_}BnI_B09iU`(7wUq321mcxwEY(sf
z>#+2<5Gg+``Km8VT(^X3I;!hXb$F>rN1Tp2<du$ia-LiJMu$y@T}OhB8af0WeI7=Y
z*py-S0*iwUJ~~qemx$1$_1tZIbJ)9Uwwg3EROOnjmJX>(a<Y!vI+Ao8eeD>3+|ut(
zy{k8^6Bk&#Qxj5jr0S@zqk)bzZmnY%Ysz*@C?UEY#oPLLdKXP?Hq_zP;nC4Zhf_zJ
zS(dZAY$7=}%|gkgBYnH&$YAT-YIaG7tV7Y!u%xwJajWve@?Sse=Ma6rl;G2i!>6T=
zRyzDT0y+*=iPdz3bm%&QI?naTG=Gon;&Dqg(H5rhF1Iz-vAeC1@WB2pXPYpR-jsS|
z9x;_>I+~lj1(OUbt*yyb9i4Q1r=zWoL8a1ae~53dqn(Z`uj3D&iYKINhdSt(eKxtH
zj*?rfMD9$mcGl5FM^~MG6Nz8{n{a!QF|l3x8b9In(9x4T*Kt@!FCD#gEYPu#7DY#2
z9b<Kj)6q{yj=lDQ)FV%6f5NUA2I$6zou5uw2kRK3V}y>8I;#C>8LFen&8XpQIZOw}
zS?Gzk6Yg2)X^hVY#E;T3M#qZ$aieumI9Vzs5$0=VYu3{-o*LBgvyNFhzSl8P$4qWy
z5>0+9;RhW*>X@wK*ZuMIfWPNe>{E0Yw;<E;=!x~&9{W^^a2-Sr&9qL}@k>o>=1ms5
zaTz^S@h5I){T6|qC^4Igbj+c6*0ColLy5y#=<#`fys^%sx(#fU=F^s0ZYlXgJ>n^K
zg+;Vmb?nvgG|sj}$5I{Zb!;FvbS%@cM#owm%V~a!T7T0qes$s0jPzV5BgR(f_??<6
zma>wO$SNJHO+L7yHSZeZGvJu<3F~xpzHhBD#kP^QZ3){p9os1s3uf4)gPwTx2jgbO
zEjqR`c@}N`xkTjmQI;J#cIx!xP#g7oWT15ybIR^!vWJnj#y%bUX#?)D(I^h+IPix+
z>7b4?OD)dhmOphI(NQprLSY=$aZJZM9q)P4j_Wv0W;#yjILXQ>#*r_hdc?%h7tUwN
z_*s_6I{oDV=eX!R;{{qB9e?S#q~oTJTeMkNr<u8?<1+Irj8{$lO`H*y*E#zS;|(1z
zyBH#++pOHzafiuW#(Ru2IG!Icf5`ZVk!p2GH>yA7>|0u5Q-99ng^qujykvaE_?qzz
zBh{T6F|LKEG~V%_jt_L|hLJCfk2*f-_@W~!j1E&RpJ{HRg>pT!5Z{w7WC$ZVjM5kF
zXY3g=hH>JNB_?dV3Y2at1m4>-g^@Xo4G%3@!pOmTEN8PaW@F6GNHzm!8Migd8AdL)
z%*~jGk@UkUvH8QW!}t-QKp6YB3iQy){dHo=jly9R38P{dmBJ_*Mltdyj51-mf3LN8
z7%y|!N`&c;5*eb~WhxoQ+0P{q#?~eA^myM=VZ5uDM5JsO<-)kR+d3puLisQ%aHpSI
z<tY4Za?^rB_+q^Nz*?EbMqxO^s1ioiFsg;=G4aO5rPaA;l{1rtNn9B5VOYbkg^?Ua
z9Tx43HNp^>P%TFo2`2w<U+gzw)Z}bp7`2(yGD`=36Psl6?Vn=nGOx#&!kEgK#z-ws
zw`Zu&ya8iFQ=c>}Q>VjLF$^gTISf}AZu%}aYn&&HZu>2>4_Wemv{ssI`9rfRVfe!E
zhoMqk&H8=1%^L>&O49v-CBUtH8^-gUHjR0ZF~q1dh8Y_(l0RjSX54bf(j*MRA!96&
zFq(ytr!n$2M)NRQgmEQ|t6{VZqZRoR#)>dnhtVdCkztGqqiq=N!sr)9|1jE95Qfo}
z91f#n7@flC97dNgmfVj2j*-4@(iX>4wpfg{_m}un4(s*)w(eo{2%}FJeZ%NUV_#|O
z9meZ?^?QXe?MpnR*ta&yN{cM-$5{6Dw4Q$+Pp|a@!Wgr}HYkk2VGN{xSK9JVw9bpS
zuikGN62|Z_MvxnstV6>XM$`4Hh4jmRSZdTV4CcjH<^Gn@)Iu23!<Z4q*f7S0@naZM
z!WbW>OJ8gg!<ZDt1e&GHw(rBB#?Mc&wpW@?4&%}fmj5wz7En?g?bnAzR&e)=Ly*}W
zTVR2O6*LJRWM`(Q$8FIBOK=MblHjgE0>K>uL4sR=-~<8$cL@mu{cb<|_Wyk6)Vb$Z
zx1Or5uCA`#ot^HQkbxuX5|*YI$>xft_gjsVGf-u}VO?kAxLn35(gL&3N?WF9U`7TO
zWME+i_E#~@%)ngE%nZ!RK*x5**_`C#jB`W>elU`Ao-z!2pD;fIecKs%Q0fmESj3UZ
z6T3VEL*5!a)y>WJm=|Xtseo}w29{=k*&js-%QEoff|0P}s?pQQWISV7$r~yI+cU5#
z1FJKzCIf4EQ?rMxGSjdw1M4%eAp`c3N!+22Gi}071AiNw8kMv;1A8tfY?H7p8Q7Y^
z?<boE-^n<sIC&8n!_plY_=UG^2KcD^&J670uv|2r%Fv#6-_12V1IO4%27b-JgA?Wr
z7ma%*lEM2p8tlnN3!mjbkb#34;FI`=82`q!?VjZ@S2n(IAVYinpTWl&u+j2chW6xs
zo(1uIuKz>^PV&-kw7kBU!sqm-T(Iz63cvG2E*c4EGH{mXRaQMGhqxeoUaBV@v0Ti+
zr3|dh(dZ8@1#eA!UBJ<cDa`(vfvcRc#`<wKT+6`q47|?38?HRO7V+kX8GKR(H!^TD
z1GmJvE6SqV8MveK;UbB2?n(B(=mXIr`BNYB(q!Nnm%9uck651aPWi&}<LQJ|D^sd=
zxBQ)f7a4e&q3w0}4=3$h1Jl0(bsISOD%UxAEU$Q*b4kw@|Dn5uuXSzJBJpj8_GR+y
zHYD%2yc2#e`av|CjV}?hGJuacL`h5z(VU{WY^XcenA?UNdo6rkDcXh@8>*&Q&a91%
z6?6A)3r8c54S8+onkVVt^u&BN<hOyqR6wA^b7Nr}ir6sFhCwzIwV{{|88+B#C~iXu
z8|vARWJ5_CO4(qrA>M}4HhA)w%i2)RhB7udZKlheQpRscfcUjU8BpGa3OZM`p^^=i
zZKxtnb=|LOLp7b1LdK75s9{4*an2NsXCnhgnW#*)ZP+)<NJy~3XoJ}Xiw!0lYA-M}
zx218f&n55771x@$oLX&2w4n~qdcXD~o4Z$6@F%~YV5)0FTYj9rEup>*4Qyy`Lkk-k
zawKg?x1os*d{JH_8&cTGj>%(wur{_~)*Qp||17DDEN{78qHLNCpZ#hi-_2)kYSW&(
zY{n5-Wa^RM{PxF$bEAzdZTQ%Rb~d!P;S(Dcu1RQZ(|%qPKII6HGPM%r3ASNpY{)!j
zWcRq6cGfv|u%VL;op}@+*dX@{?r6iq^@eW6lDpV2>7n-RizY>*cp#Q0HIK5}z!kWM
z4GtR=?Lt7cA#4M;Dsb7f*A#ng@bRYr`ya3}d2IOkytaiwzj%w^hM)~08v-_Mp9R0)
zn!m8No6NfT<qnrE!CiPFHVkc)n8}$V(9MSK0taLpBfd(DrQB$#rwzSq_}qpsY}%(8
zUy1e>?ITLFuRuQ=`s>b@HXJRhvS@%f6GvOggKZdM)80LJj0du5yOxi%VU!KSgolfc
z5IvqA%hIoH7;VEm8|K^ajSb)0@SP3c+c3t4y`3!Ak6Fg?3T9Zw+HkY1T576k$P4p$
z8$Og(2@`CXXv0hf@SrculWdqFFxkcj)6(fok?d5_X*Nt3m>$#`$qJZl!>t_gb8MJv
z1InqDYow=^(^|g#hnc#7SKo%MHf*!u2OHvMTUOh!#)d__IvnsbmL)bUWtw5x8f)qQ
zrIqlb4f*`mWi~7qpUzJ<tPozQJF9Hmi`K%TA6&)#=ESu&tdrK(+py7wO*X#n13xWI
zcz3`;W!h}R;Fsx)+#)`m0n;r%+pwK?lMVZA*kQw~^EvkLmN8j=;jL%23~ija(}rEV
z1dS7!b_=kDd($kx+OYGqWv>m)5)N<y;RQ0)Kg$1K&(=2k;8swFY&dKK;fN@=N+FjU
zmgbMK9Jk>&8%}W2+HjRiv<;_t)7fy*hD$b_w&9Eo=Q)u+GcujE;hYV<FEo1aD3RG}
z%M$rU$_skw+RHU){vp{bqL)RhkIk6Srq-Xr>cgb#oKC{`ZMeZ{V8dO>-V(iS!ySRM
z1r2wb)ntRWOKW;hOv3l$%nyVe<y2-LbFOl@9Qe<Hr#3vZ;l3RY?09a&-(0fn@Y?Z$
zD>l~zJIdPeuMICb2zKPMYcGO(#rYX!d2hpi0<T5syb*XS`c8EGwh|u%ve}W{jwq>~
zLzMAbpC$FWUW1U^j%Ygy*-_Yz7%9zTM_xOeLk+QZ#EFx3!^+5fcI3CCpg1GP<)y<^
zz>Z@#wfE5xs7353Dp1mnVgi+RB+xHzM+rMNZ*M?mB9yYD_jRqPv>m4_)FhO%19mjD
zBUvhzx5HpZyd4$nsAxweJ1W~zTZ*dKQPqxW!mMa5Yh@xZRk!0K-LD}~(~epKyxa`n
zx$vYC>@eDqXh$78OnSUUz-$NqOPJM~Rh(s|t#$3FXGa6cCduH`*K2X0nEo%mksXcg
z_}Gq5>`1XA)sAL%G`Ay7;+u-5+tI|1%e((~lxBaMc{*%?Ew`|vr7+v9Gh9pbhwV0e
zYDYUe+S~cwb+nd%Hg>d?!~okoEo{R-T{=jS-42JqXQCbL=p@kDjxKg&2-`$i>)t13
zCW4|nZULtqs(?%MR!V)wFfFK?;<LkV$Io`;++z&b5wxSq4%19KLUx4h=xawmJ0f;|
zcw*@xnkm{<w3{8>*}YWj#ajtXL$;*$w4;|DpGzsL^tR)t9PwXp63$BH|8AORSo+v8
zrm>aqa7b!@I|kS>&<^sKqF>qh76=owgX|b=$2i_iQRX3b47H<Mar0O^hS{|bnugmk
z!j4H74djtL)(GoIyOJ3>O89G0nxpObM)+IZ86(i-v4O3nT{4X4XxMT5fa!ZX>Yg)C
zm%~jEohUj<bg~^&1g47eK+^<j<uc8%<Hl+8r7LFYEIVe~F~^R%cKm3^GCStkG2f0K
z>{!H^;5RL>W1$^iuQAMAqV3^Mhs-b3E#|OqF)fi8et~MK9o9akxq0HL%Q=8{tg&OQ
z9V>XsPpy`}t*h)<X~)}%$xL%^r?0j{S!ZEUuX5@-JJ#E=!H$h~{MkG2<KB5$biQ}q
zBMlNa*+JdHJ6C}0zn#8S>TVM~{e2qE?RM<2;}<)2a%AlI&5m6h?Wcxc?bs`@TXc`;
z%aWFTcI;<^l09I@K|2oFaoCPhiix#y+{~adjJji&;c`CHQ7$r^QIiuI7B$jr-N$;u
zj+1s=wBwQ;r|g(sDEX`%=j`~MiwWmIIrWT~s{(mfl~b9m-PUrRt4CYQ1v?IuQ)hNg
zA+y#WybbO6i&w;sD?EKWuG(?U&RrT~idRa_Qo?o4v=%XMdl<>qN~t&PxMjy}JMP#)
zC##6c_`4kB9>%PS_oVc%a_U1n9&vIyFvNk!c0A#2?m$bf|8_j%g>xX$f#-JoZO3an
z-q>MTR_28r|8ViQW5P5OzeS)8h#jvuIZr1v$QL)WRuths$$mH0@YarZc5U0E5)QoQ
zrCesn@6h&9`oQ)V8L~N$-JwC01GycD7S17>(}7$9)2}BmAV!#w$AMU#<Me>M4&)Q=
zlo-caZ3;ydaG;<#%@@V9Rv`xpOSXsuMFon97MG)BwZppXSV;#;v4;+naiFXNHKn)Z
z9DoCrg&9*`prU96(VVrSD(R)%=ctO#RRyYvR(Ied2WkknN{pKlPKd4*Rm*|e;uu8D
z4#W#2h#Eyr4ltO<Wi6`30UnM}$AP*IzAPoGz5{jg#kDOI)u~WaJqMEH)OcxZiE#}a
zXy`z)LmT-<4(&ql3bJmsi^j$dq&PrG6(yuOkS^RrcbYoTOy}kf?9Xmt*vAfh;(*fu
z)qzhPXyrf`2QnOJ?LbVeC?2An1DEgBY$MuM^m(`h-xSf_fez9WcIGpIjt+Fvoz4#I
zs-^9^)o586SD`4I19pdYtMWwHro#b6M#EMsYX4SkO1K;dI1qHe?EvFF4%oJq@ya<e
z-sgZ{nEyXzmhFTb7$_}-MI#Pm3Un3i<3KkDx;xNAvb`MmT%f1uDH-rD9O(W3W$T)w
z==T+;pJ;yv=zJ;smFNIb4tOWCHZp_sa~$fxFy2`X6su$$&eL?@j_^naMmeyPVGexl
zz-R}SJMfbO-#GBC1K&F^!GSTHMNbo$#<I`frKeXhj}vFS=##dl?>JW7j0~8_T5C+x
z9GLFFBnPfkG*0H+$Vi^Tk#WFOs{Zm0#xDvR$Hy3FI55+Jxem;8!1FZWRlqpQf!Pi;
zd73cCfqgMXLW7ECDof`(u)u+Z4*Xcja^p(I4-PDnX3MWIFfFF<z%mE7JOHyxMaNb&
zvp>w%$z!Zv#YkA;z#nT2n;h6I-CiljTIIlM2i9=PO;6*onASS5PKwrxZV=rl%F@y|
zqj-V@N4|_L4s3N`n*%>{TE?1-LFJilcW^%i{Nliya%zcUX8I@VYP#EjJr106;JgFB
zI<S`)j=%TbNoObbIdH^*qtdJWq6Zu}=)fUfmy#w192S$nbFn{<IVPRiG&J?NTtQyY
z-yAq0d{T5>Jrm8}9XRd48D5&4rXuZA>G1T=I<TdP<xrPoj_L&mt~zkdfs1kpE^&N#
z?+E`X`h8*J6|P7pjLdQjS!I*oc-?`?!%}ZK@E0#r2jdOiuz#Chw=v#ypko^o;kE<j
zHb&NE*j<?e_Z+zIzyk*!O0!QLcqC`^Sd@|M*uIM9Ck`C$ZYA(Q&*Vf#&olnbTR6t}
z!hwGr_*cxAoT43!Je^;^H1b+-SYC6qxi~0rDd^kB@YaD34rEgh3>x3@h7B6uizaQ3
z&aNOzK^+Bk735HmQ$bM$#T4XHv>QLKf_wtG6+|nD5sp<5ry!4l`MV7KvCA-Si=6et
zH@|`c3JOZtn=RTc&orU4v5<no3W|u&pXM~vdt09sF&0-)LP0qNkfM?bHz-Lhqwr@v
zR(@qDElObg_SB@ZQu;-qJmnQsP+(9Hub`rW2N{V~6jW8Xrx<QGO{}bN>+nP-e`RYm
z1=SVQR8ULdQ>bYlvC3v^4FyY*6cg07RjdozC)QT5<=?a!RWv{QW~+O%H9>(<nzbmP
zZ&JV=ard=KG%L7J**Yi9Nwq5A`|T4&2_C5R6eKBVs32KEeFc#|My3V|W==5>_HIa^
z_KT!8Qjo5oi2^R6jYU%wq$)^Lv@I#Q|6}F)78W(-$m}(@;Gq>X<KPUkHdnA>f@vVs
z!@1%=R`7{}&lGf2@Tr1U3fd?b)igGBfVH)PmuD=K-=t0%U|n{~!qip)xt(Zx(GCg*
zH;tuP^NyvHf-VX&6gY;ZbyhH)?~r(tYU6MzP$bx)fQ>McZT6G~ot#tytXnsvQ{4(Y
z3d%ZB&IzvqpMrfnDFuE70R`g~e8*X*Af#ZRf<X$x92o_D*aC-6L09Sq>lX@k-?DU5
z&_h8_;qKzoO#CR%unpE;Vty{lEdAaRKxQPhpA>y1++V?$dUZBFK$s5GU<E@sPzt_Q
zFjRa749{vxK~_^E6!4%UVl5-3HExePTERCGGfu&`3dSfHD_O>~&8%8fHpL!NzgI9p
z!BPc3DwwEXl7d+ZW-I6yXPK;E8V8vJD_J^IdF|N$ILizL|0O08W=at^ks$v9b&i6$
z3Kl6?EdD$N3ng;C-ogTo_ALv8nSKy+rz1V9DLPBUVRo5<<qFm+{Fc7f$)9+0DOe@E
zLX`W8t`;~4b&Ue<c*`)RA^p?VE7+i5n}VMuV55Sq0-F?U7GUre&QGbucIZ>LE7+l6
zmjX8Xi#R(am_>|#@U$Lvw*m(55ueBURba0KGkZY6K?Qde+*5E!!C?g#6<ktqM8Q!7
zXLv@pEXUYF4$E%}PAE7o+;L?TeVQi~{4UNZ(Zgx=xd}M^(_Hi#Xd8l`Rd7zhd1;6K
z1umFBL=$?OVyS;9xXjh8spXb}D+<oWSeULU_*3|*6wzV8b%h@)YLPb-+|+&cpId?Z
zwp$r<Tg*GWLAF~NcAv`&mr5rJI`L4!BLyE6WOL%Nf+xJV3SKLCs^FP|zZJYt@SO2a
z>v5hi%NEF4*?$!LEA!{2=qu6oueHdmj=hnJ@1(<Th3T{Oy@IT;>`p{Ek;{qPPULVR
zr&BvkHqIk5jK|^;qn(IxB99Y!orra6J;`b+PMF!OF6DC~zf<d8R&Uu()*%WxQQV0V
zP84=(Z88;cqNs2&(X1}fFDcnFqNPMji)NiHgW*JZC)zsE&WQ?6RCFTVi3BGqIZ@e(
zYED#lV)%=MDo%9!)%>DmQdP;);Ty^LmAsFf+V}cuIZ;EPrYQG~rO8y=34=KQ{iS7%
zPMDmyp;*2;Z#Fw&aU$7?Mow6rNOYnhPj-W`%WiWWC+ay-bF8(l69*S3ShgByCW%9{
zz7q}D?E>0=B$-V*l*0cBHg+P#iKZOSwU%YYlT)2I&^kTc338ef_n;D*@LH5tnHE=U
z$gpNkG?(}mPPBC5V<$dw@};s`3rwH#5am@uD{<y7HfH&4B%54bZSO<}c1cAo6`wiL
z(TSg(*zQCpCptUvjT7HG(Zz`jC%$xY7w<eaC+toHod`MM2&Fl=w$oV{uZR+yPN>2z
z-ElkN(fQ?~D4(!jG$5L_-(uK_h!efV$rSA_+Euih=v94Z#vV@e6sMQy=b~STvJVH%
zanwGN?JL?(w7+Q15s6<pF~Es|P7D%fq!WV$hKaK75P_jiG%27p#WY-;5uyzWYUU^>
zzLxB0(Q%(@yF-p~VyqKOo%qp-apKQ#Vx|-0o%qg)@5Pxa%HRnC6GbOEF<D@WUdlsH
z6P_-5XIU9mndRiygA?cJF|!5cI5AguUX6*Kuk!*Y77G8MJByrHtn(5lGIOM|O{Qf|
z%*!6T)`{hM=}!VHoLH$ltDIOZyheALE{a;G^Li&X=)6&2ljvqAwm7j>_^u^xn?O&K
zw)^A`Cw_6_A1D5GVy6?koVex0Z6|g+vB!xsTyUKDRpJjjam0ze!mPN@iT%O{bmySJ
zA<=zB@*dUwlLE&?k2~?3zzMySo4lXW`FDZSPV~zj%R_K;@N?q)>BM<G=7JL!b-v`p
zAHtV)=Zah!)@8aX<~1j-3;d<W+;HNi&JP|$-*MuuWFK=qIb+~|$5{8C6Zge@phrG*
z;*rjr+fTSMM_U;A)QM-}KNtO5^o1VTdx`a>6R&t(isUV+!q6yg#+m5<oOtcT8z<g6
z5v?Ld)o$K*PGlE&uh;z`kWI`{E6PL(<Pc?iP8GR?bL&p6T=`;E#HlDMP9EJaq$01*
z`BdZ=E}%OFRn!}o%mxeVP7whv2*q@#xQY_Oi&|;-7hf4$TGhsi`@eJJo-!)Rs{9Wa
zATgCh%ZpYJWtEC5M&36QDyyi%H_oc4CPg(=RM%rTlRwhg(ja!LY|L6)#o|8<9aVJV
z=&6WTk)Xn;B3VTv6=5WqRCM2((=5!dj!#=^vZ&blt<x%+sG^RFx;#h8HV{n`<tOv?
z1<F4%HDu$hj7$5OSh2B+6crt~6st&;X4wHAC{0DWWSgjHB|x*OKr<E1RkRRpsp1nA
z{mRC(^kZ@U9hAcKsWAQ40&PUwinbGNFPc@cuCYF=GgU1c-&sW$Rr`P|s3Jp!jRW}D
z7~nvuaH#Ohg<vE*$)u=os@nIjR8g0xTht@!74?bM9GJk!YAFc>CN{-(LZV?_pp*n=
zyQ=7>Vv`@6{phZu2d}jU<vi%Aq8DeN8@b*1T*VhE+PKixh2ARqs3`722^acu98~<K
z;)II+D!x>4K-K>8`bxzB6{A&rqhg?nK`KV^EaEIrUgjOFVwkGkSxiGz3}sQ8h0}~m
zXSj+HQaVzP$+%?wTI#a;xn<UGRg6(FRmC(FV^xe(F<!-YDr)>={$aBr{-v4ly^0C!
zz=4!IPZF4&sG{+8bKg%B$&(~<GDlnB?LS)lbQLpHY*b-skUUexEIzlZqRhYM*(&Dn
zZu-YOpm_?z=BijEwdRS^nXh7j@Iu}Bf%9ZhJc}0V&Jq=W%28<ksA8Fl<tl#COV<dj
zP_a^XRtc;Y-SWb`R`=HltXHu?ceXc8-o&LKyJfSAEu81#@6=1T3H+>LyTA_7U-Z&R
z(+s;*>{hWyoc*G|itZKNC(1s*v0JF#8m8p<l!Gb`sW`0Sh>D}UL*rA9i=t8NG2X@h
zrZ~#0G?}IHk&2Tla=S33SIQ|BzpMCsaLQ>F*Hm0raYn^ian7l@pyHy6^PE@Z)kEV`
z7q_)uQt=1p)m7`n@+!^C978E3U*QdM(eig(>Q!;-JV<zd*Zdb(r%RT5D(-WtsJJOD
z)48SMwu(FKTU#q5@2YtEBz<es^e-EwF#ABoL(YxCDX)3o4NiHa;&Ib-Mm|>Ygpp#>
z|3}3$;pd`%>;4O_JP#5W!1S+*m%9H-#eX{U(dIWgzg6*0_`Qk`Dzdq>gEHlCA-iyt
z?yws<g>&f+I~nalj0>?YJQ`_aDj*Q&LLPy<x}Q%Vzi9dqEwZ3+A<@Dv6cM0b)P-Wg
zZ$3?8wxkQCT&UqfO&3bLz=s+daOrTNj0<I5DCYuPsOm!T>FG@6U8wBBgxuvSxKPoB
zN-n(Lk(}>V3X7h<F_Q^Z#3V3`THS>KWvxsfx!`LRx2v4BmJ9A3#>Uw!4P2=0g29D&
z7uwZHGP+<ANDyrli8i}nae><#)px<_LZVCir&5v&bzHb`)wFtrfm&CXP)~p_L)iM#
zz_2}yv|XPXx{&NbBNrOG@UaV@xRByPste6rC>(2!^s%J5knZBzWnucIuce7_Q{5@n
z&%)H)g%&Qbl-!a-l*>f;R2(+aisRYOLbJ8BNr%~XF0^-HgNwVRpo0sax$vzEV_azP
ziM68(dv91&7dpAn*#&;JuZs&d7wo*~E^xnWI{a(J;nM!DQAA%%Fx<Zq?R0^_MBl|R
zbiw0-*M-kr_=02Wf}h=XA=8B`RgwcPEc`ho$ZOX!eMg04Iw2RrQnZ41Q<Y@Ld1F@>
zdb&X9CfePFe$$eB2-D0AYB9Yen{BM6w+nq-+-n2Fx&HG&k1Pxx$|^4Oci~HM2D&gv
z;45Bq0k*)%vlWu5OoO>Bh~K418ngTxaQt8CBU~8i!YCKMcA;s-WIF8dy%y=c>ZOl%
z;bGAvMzWo6cqz*@p*hxtfB!Phc43YS<6Ic;!gnrw@50r~&Y3RsnwdI*!^o-P!bHhV
z5~V-cg(*5u<xo^K(`4FPUY#M;$yZVmX9*wdYGi|RU6|*>N*7kSaALJ}z6(oTSmMG0
z4zCM8xbX98D-)eXIxlAMmQ<RIr~c@|G8dM+@RPK#LbUrL%j^c0Kg+8R>t!%(wF_%p
zSkL43N#?U!v2#+H*1E8cH~ySdKAe@MEZXG4X13tMNf)-b&~>a~8;|S4R#v}Pv)(J?
z!fMv-F6?k&p9}jrMO}E>(8RRMg`L7j{>#hkZWs1Q_E*kE_ANG<sntdE^YSW7Hx7w8
z;KCsn4!ii@8S6o=R1Y&Yv`9VT!ciBFiODRBm<m-;TenF+E-}BkKxXhM7k+o)Po5F`
z+1qg1g>x>Pcj1g=&x+E&aX0mX3r9+tFS+msCsN3C(S=~yB*JC!uZS|hSJpzUSwX$#
z!gUv(@y@!Q@RtiWxRi1E%4;6h$m(5eyy?Qw#l~B_%~vICd1biGu5vV%81M3kuMGD@
z?~5|~fU`^I`AdwCU3kJ7-pKltE7&6o1I{inQlE2~+HU!qcb^OY2)`4h`LDoB(N`|~
zr~9v6cq9B)cX)N)3x5#J=GNL|%I-##&N<x3DSYXA0*j*Eh;d`68^hd)btBG=25vNT
zBaa(--6-TnVVbRs`P{fYP5Z1qzZ>H!)-T}3gq-mOh1=(k-<zuuAHgW%#z$_<{HI}2
zH;TDY+>H`$RB)rB8ztQ+<whAd%DUmqYb-5V;iC16E-B2Ga|3RaXYfVqH_@hJb4}Fu
zgG|Sxn)Kan+<(_v$&D&*RCS{=+pp1(>Cj+nH8-leald?W(+cX$vzE^rr7@Cz4L54K
zQH$s3hRF@H8y~N<7~F_=Bf*U+A6eB3s?m*m!&5F8turgAUsh0QTHLU@QP+)nZX~+F
z82U%crqyv{PcIWw+aE1SZe*E^uP^>5`4d@`>_#J=5o@`*vk$hGwzPF?Uvf)vBh`&G
zH`3i`$!@sO#ElLEQkuK*&+~>&-Du{<tn~EX7Z|rzQ0XwWaN}GBl`$OcPu%#_jaF{F
zsG!Cb&co8yQoRi?R(d)E=u_Ld(Vo5=pSjV+jSM$B@}M=$o!mI^r}_3F1G%#sw`Lo5
zl{dA1ZML~VwY%YP<IJIC20Y!6OxRY_tho90<HTy03@$g^ZcNIX__-S%H@t2{+{kpp
z$MbR{%wr8O21E%VH-bFD@}`5kjZ`{g)}`O8kdL4gYtog2a3H;>8{ORK?#4G0Q+se;
zRaC!IQ(4Mv*XBwuH(vF(zUgQE!j0Z;^x>gb82WRxdHU5F_I2Z6&cuFhRI8{Cn3w#O
z8w1=J?8XrO`LJ3U=*A$9d_}csMU}rKSlT6#S&N*N9qz^mH%_{7%8ik3jB;a_8@t`$
z3o*XtbaErm%QTuDbK_e!RZ*QHI>wE$ZcMMJuC1t!6KA~WccKjYp0|L`6WL*%CkwFF
zR5zxv1<B6PORwMP!Xj3m<;HCG=R?vQH|D#sKzOd`Jf3yWk}O*2#t&|6aATwRi`-b|
z#&S0nOLmFqQqdnd$T=;n5;|l3$&D3mZbGLu&U7ZXWu+TMwi#CG4*&F~zeciaMc0Y0
z=Utzi!lF%XY<6S28#~0`!YM7lqWkByqimDx&!YSo{1<_pqN}!Qjb|0@apPAveskmP
zOXFTQ`VTbj=bUt7pK##;PCDG_?;vNL8)HtI`8EDSoV{zT{8m4oBRJy5Q8zzT);8%o
z=EiYh?sdp)->Ie(ZhY8pCj9QkY2G8er`+Ikc4s)%xmdYzmba2ydrthk8-EB~;7vNz
za8a24B`!+gyoAfTb4B1!H?9g?6TL3_m*@>qR=LR;IMhJ6<HlV#9=h>}OA414tCcBf
zpY^`*_Cdx6TtY8*q50U2CvMF6#rT}VQrg7tfj{Nl6cztW%&2iGM=Gi;{hK3D%Dm!6
z%)f5D<T<*L&4X8*61&Xrcv3ISg#RS_+Ko4EoLH9rmMh7KL|$U*dtUuUX-tf)!TrBH
zi18rSgD4M}Wy&FtQ#6+cxdo#2(tX9vaUSIHpoj-WJ;>`pJ`W0dP{@NamvgMIYP?lZ
z&F{f)<%|V9cvn$fecF`z-qd4!bn}tM!XDgSXJk<^4~lzG(t}bS;BpQ=i(SIQ-_MOL
zk0(@&a<Y-qY|R5^4=C0WmDKB}O{@qH%6o9ii{HJd;6X(Xig{7oi%K3;_Mn#spL;MZ
zS9}!@+Ii64gQ^}>^Psv1A9;}OK@)a(kfDYLwLLI+P}7529`Jcjn*79r8t*}Z2dN&U
zd9+WT_-T*P1FA`sVD`Y`0sq}gPV{iAFAeH=P}hTc9wd2?>_H<j>wD0^gN7dPVVQRa
zl9{HDGn{Lr0aIg+%z<Q9pSm<<(Lv2&JEeAOM`U7W_??-i(oPExnt9Ni1GQW0B$XX&
zDMgI@*n>|z+Q&7YinbDME!sx3tteYyO#hdL4jy#&po<5ec~JV#l%9WCI`Wg2zbu_Z
z`HN772R08ruHP`|!3&So&VOus;PSxXf#Sh0UaM2|#FVHe9~leytZolH9(X<QX;;%q
zf1}6Bihc<Th@SOWS<zfcWl_k3um=$jGC6;?8G3r~-FXXP^LA@j4@Ts)bn~FQ2lLbT
zHDGHG5BE6MfB}v3Cw<|;_qiI~^Ju@w_4Z)JPYHcI=<7j05Bhu1_Cdl055Dx^D-X7L
z@H3~A2LnA=NIjnV*IDBr52#~280^6i4~9y1lqmgS0>jw{-5Ke@v#(7o`dXaPqTlGH
z-?AHrQdm0HgK-{=7k{z`Qv|+aS9$3@m?+u2wakoUn&iRAXIh(6#h>ZHEP-jF(?w^n
z|CP1)*^-?nI!Bb|Tu$22S_|`aX8|W|QLQIGc(BNW#U3n?q79-;IZz&~6#mhJWdh4Z
zS>-1Wz8RHBSS8LH-Cym&>zEAsYjtOx2kV7jch=&WHcEDr=w^<F9=X+n({b8>Z}(`=
z0UhQPt)%YYOz>c*#OxE@CAwR5kLa(Wthkp`u8wv_O#8(=z^3%lLjsIB;=xhjV;=l2
zaGcAI0Cz?{A#hTZ?VREnmCBpd=4lVkh<{e}oE~%DgMXVQGv=ZP_j1M)E_v{W2bU$_
ziU)ssaFut5OedCJ6aSXzb*jJ(QI_5mDBm>cw(i{V;I7UaOXa=q!2=H-dhm#AuNOJI
zc<jLw4?cL1&5Ng;ew?MvOz%B-&dJPgCMTs9dz`?(RsYuRP5i^&dcf>|JT(tqa%x?y
z@k$&5{Ws#g6X&fc&8&d`g(ao(JAv7~+ELgznMcX#1v%D>I4^Q}k=u)CuXdE^Iq}pO
z;gg?Q$$7m0>s4N9fz|VQwe6^w@_SK0=Yn1o5-u!SME8pdu$>ZKl=Py%7hif&%8Sxo
zboHW}7iGLC>qTWRs(4Y(3+FXM1yP7HTVCKpbUe8te+o!;<ta0>RlTU@MLRFrd(rHu
zvAP#^yr}ENM_$zMqNW$Myf8`;OKS_niyB0?mom{$5T3l!NHz(Zy|8#;6;2f8lly1;
z85mH{izJ?PIWxJw7Y)2<?nMhP8cJBYXtEcL1R8shDv%=jP3|PtVoLL(<<(?D6Y&X6
z3Br6S0kbW2zm>qpqMvy2sqVjfZDm+%$+i(~E6Qd&c=4GR0WX4Hbo8Q=7d|iiUhVxh
zQ+w3x>_r!^_6EERFE=<V>+-_JtKY(C7t<liQboY&g{nJ^ryA+Iz3}LcS76W`<ARB%
z*Z(E%o1d_WZ~o-v-fIkd5%Gc!*<3h2Q_TO%@}bf0Ui9<g#6?37c5-n7Q%`|jj1>4n
zw6|y<QO5N3YX9LPuwtPFrmwu%uqS$x7n?any%^}lATI`cG2e>?UJT)M^<t72lf4+`
z#c(g`w@LfnixDi{8#S)7aikZA9;MP8<pr}}dofzz8!yHP(EOGyzc3P*#?sXN@m_o<
zJg<?NMH9T3C|R~fZt}u7#fzz4%=BWG7t_4>Vp8&SPSng429sxa(W6_+_FN_^tIYOd
zju&$|Xq8l!QW-W++EMrBWNQn(_`!?iUi{?6A}<zuv5fa`C3WO#%Mve^@^1BF%QFkJ
zG@ZjO-t4Kxohb)Or!B0cuJB@|7puKk<Hag34yHJ1cJCNl=Vq5OFDz@lU>K{c_hOwF
zdpD=GDWCf6WxWl&%Z6JviW0V0Qnz@qmBDO*bIFUJz1ZdDmYo=VBzn6SJG}h0L3>{-
zvwT~{PVuc?BYD$l19cDQgI9Zz1!I1d$i0%~7mW7{u!sxVA>O>-8IF2!%!|XqN4PjV
zF)o^!Oh4{>({WB4FWdpk=9r}4culh>#}!PSQ^0)Ei&K}(M{cK__Tmg@kq=+^aMp`+
zTnc=s>BD(1E_jjOhXOua^x_hiVjpt)@P`+dy?E%wBQAy}%M~wf@HfwCmOs6?>curL
zu6x0!&;DXN7VU|-TRAKhO_n%o;`3UGH@&#!#ceO{a41Zc2VUIu;`9s)(|s@QdAV7$
zm7Ek~X=+F$OfXqGTP%;gc;dxtFWzwdXN(vBc=4|n&%OBDix<+3Kc-vW&eY-ywYIWX
z<@Tk$<jQHX@WX^xJSme_O8$>m#G(Ns-+J-Ei)=o;^Mcv;qAQ}cMzZ_R)nb`A(-P%F
z!5fyGW=pOZEz1`a=kg)Whdi~7<lH_)`?R+f$A}VQeYn3qfxv(~KID~1ay}nkpGqJU
z^r4WC&;BGgzT2>{4@Jm6RP~{#55;__<b!pJWzS4YaUcFRT1tqPjJK5Zp_C7$B@59q
zqGd%HS<Z*ITMY!J@?usHt;kC@B9UfgX?c*r!uG4_wLTK4F3KTdSm%X?T0YeFp@|Po
zeK<NK#o&X<2eWXzXo3$$0haDCSS)PWhx$G=@FCHMtCtLQeW>Tto{_KPL&rM?0#g!e
z{TIte=IOMLi*M*dvJWXfr1~(YLm7UZwUG~vecImzd^(<qRnmOm)AZ>+5SV2}K19z)
z>GxK$H1nag4{dxX-_6+EhZa7x^x<QMov>VcZ8m+I%$QGnpnfXaO0>k4jJ7_s^TFwZ
z>O*@UI{47ZhdSxj2E~n^`Oq*X{(AY;jy#v*My3gu&7FN1lqa=|#AJvv*d}22!6A_C
zWr8B`{@auv)0132czy8s5K}hA?SsdM1IrU$>`9>deF*pv@*&LotGy}66Fi^Ls8agP
zx=B0=)0$tb)QAt6K3r*L?&?FX+eSh+$#(alhd@tJ`n`Pkq+t@Fw-0@Mn8F5q=<7rJ
z#gvIYBxQ^5=R<!VzVzWMABOob+=l_Y5WQjs`7qdrfgIcBmV1RvGke57s94s}D`xJ-
z5<_@h4x5Jhu(Fxu$!Dn}d>HA&*FKE)VU!Qun^{<$%34cXq>Y{*`wio><@?r$Uy@Q8
zKgNf7NvTX@eHiD%t!9?-;(RCiz32ozrg*QI;oq7j`7qgs>WdBJ25HIDe3;H-`SG<M
zGknM%XPM1O;=@c~W@iZueqx!+b~yL^XyC_u9~SuV)Q4w2EcD?AACCL*n-7b8SnR_V
zAGUH<Z%kMsy4;7Q0(5@#VVQ9CvT@A*<iiTdt`uGG!zv$E3%}cFSR=4jl)>wK$bG;>
zVA>$&MjtlmrJK20y3$y*&4-_TxcSP6yT<K$={|uS95)|!`mjr~zl!eGWA^Y;HnOmV
zy}I+dVDbIJ2Yfi_!y(;2>ce53kNCg?W%cTqn0+I8PYC?UJJg4hKAe*5?>=16Yn}Gt
zjPO~}bGm<?*W&8`&herTm&E@=FTKpED7;{m7IRJbjt_SQuKVzp4>x%3lKr-I6k~1)
z-xg(-eWTu!>?6_pq7Qs{sK@Z1Zj5>C!xP<^J|X5g7cL*7{K(<Q3m^XB8t6l{H0{Ly
z^<kFT_{Ao}ONoCa`k&})(Kn)uyjZaKJK^`b^Fbh+Uz;u2MZ-BvIsM4x2mB~6PHxd+
zenk5bBOL4JQ{>3+N1S9?H;+JGKl09vX10K23yT&MEhNgKZuw%02p83zdgbDZ`%yx&
zCH*L^`=ta%&WbLhJ7xVSr}MDc(YgOKR`8>uAC>(0X>kIxY`?M}wfv~<M-@M+N^mtl
zKGJJd7nmC~))1(v`@1H^8H7!KnEi+sP7pQfF>~f=r)Ke^uI^a<NYuHGA0J}k8NgJ}
zk0kLgnM*L+(2rz4oPMZ&H1eadAD{Zs%8wt5n^OGfo6XqZktx-WG(Xa%R*S4QMVpE?
z6K$U5Z%mjxE4ro59}9fq$F%kTo42j~=pberJ*KT6?R0K0aNS(uGe0`|(Mk7h0-Z&>
z_>rOee=be7>+JAD5iVH7%=2>j;pR7X{OIAw%rv9NkDwmu74Z4t7YOKn`t0ZskNe&j
z<`8W%L^vjCMrJd`>?+#Lk9yx4X!i6Y;fjF=8tO+cKR);43u)&|KfV&^E!u};D9}%o
z@%`DK3tGhix-(E<)jx(o0)s_|=%qKy#0}GVxWEWMM(WPs+POyi@!b^5%ss{pe(kZ8
zZ~XYyk1@hy{g~~?9N}?(jAx|q_o7opC-^Z@fORJcOctHuN9R-{&1sUIE;>V$=1hTE
zZ2zc%*|~o06?RMfC{QS#*?Cer-;V`){6ar|5MHD^i~X3gK7qkYIoZTqCb~*=Iqw=h
zas@%>5%Md_YCqP9vsQGSUb@~7zI}*oZse4fXWQFvj^5(ORzH3YVS5PM2!4zX;F|!p
z`>}%;I)M5C{Nl$>c0PcD0qpW?pFf}T<Gdfc{n+EjuYT<H<7&IKlYZ>;W4|BA{5bB%
z0Y5jfO|z_uJ><vaN2v!TOE_CeJ?zI3KM0-;rlYKKBc1%TlKPuO9{4Je6;DV2f!R}j
zd^tAtcRx=1aYp#8MA97FA%%LukBff91`rp(B|rY~<E<a>{J8ALgt|ti+kRXT{!{d-
z=rz&nqJN3r5WOkNTDSaIdbvwh3wOl4>&HET`=Ss0c<9F?KOXz>N}MNtzF7tT2(#id
zKmOMFIeYa^>kQKi{@Rc~K8ydAfR}zu%9WPo{O8AOz1ACElqCsS{(COt0qu-FNNF}<
zX0r=K1&~7^r)Vy{G`B#s=-dxh#=koeOU)BNUOndDnZ|s=`2!%gSQE{dLID&GpiBT4
zvezsUK!a0;(gEbUY9JJqY%$T|q9sI2ik1>(Wc=4D8y^_T22d^l1W-PJF@GEC1W+M>
ziUF88yPjDq1yDJF_y7_Ds1iWc01OPfoLY_Zt+G04s_E<b#_GZ!iPjLUDOyXkwkTU>
z{FpxJtYVY{nF1hheBOmctM8>!Edf{qIM*+QKC_8>MRHxKQZInvr7X-YyH~S802u+;
z0%#b(hJYzKfE%HNMgcSqASHm*09psoCV)eeO=$sq9Ka_5qzBL>fMTB*o6^r_YFIG2
z$2ns&ahi*^5N#=%_$Ut}1I^4k3Z{O_j>RRn65UWNsciu50_YIHX92XA;Qt<%W$>6X
zCcftA$SY$<iR7VKw^IPr&Z1pJpFA#W51{+S8p8tkah1UlfD+&vfT0HPWdL6V;0o|>
zZA1dd48RkBHvq>YV=w?;0R8|10i3>8!t1sUe`TOQuv<E{-q)s30O0@z6|KKwWHOz{
z-<i4w&@F(TQoZM2>6^ACbPu3M0MCb77*M5F{rdIOdr9f%qF;#i7VRU-u)YHQMEi@f
zqW1D19xH&s0qw;>14a2b<d6WKI%*Bovt%X)3=iObv~}p-<Piak3}93M!O8LYeyYtE
zvwR)UUK+#q!|+q4Zv)sAz-C_S0LBI|E`ad?{1CvR0KN<0`v9f|Fr7C-;D2xEnjFAH
z;Yl2pxrS|X4eh&_rie3Dj|t~1Gb4cgSIx5nm=nNE;aQ^9HW=v7<qV%^m>0l&&hsj<
z<ONb!?QVG_?*UsV+21mZiv^Yk@KXRwg!$IirM!p%WJN9ufMHp04_gtyT8UX1z$$^&
zqH9DmzAMhKja@D40$8t2V6^dCH%bwG@}ro%ge?JV<taBY{lxV@fS&_s7DV$PwsRr{
z@R;Kq(EerfO8`5$_zMpRN9_(^Pe9ug^-e(B1ol^I0Q&;qR$|;RbiahL)}H|!2;d;^
zg#Zo*@H^*~6de)$Er6o}$MpE)Jkw<DZLufBIjQ@nxPZt;kY~g>%Uf9B@aY`q^_V}n
zObK7qolBgVWwfnJFN<?U_w!uOc2(zV0@p?V;td|a%>Zsm_O>3g;<EN)=OI&L?*?#>
z%i~|h4t=yYh29U~fgbaa7f9#0CfT0`@GO85L6i*Qx%jz)sD3`j-vPXk>^}iy4{8JZ
zZvZdFc_sQbfd2$o^jhEz7XjJko6frc-s`0w0>~yU(7#qQdz8*Og2<`!@lX_ZJj@+L
zwC=<N5gSCDWb*`3Fo;6Jc}4RDkzbE25X8B~+6!ix3X54Jh^nQu7bY_m4WgJHSv-hC
z<FvixN(E6mh+09^4x&sDFK<TI3?f@xOxYmHv1qtq$!;rxC?7-xy>8VYD(YM*h|0oM
zbf;mh?A3&;i+&_pLoXd!t+->MWzDq&LlE&nI9l7%gGi9lv>=x3FdKs~N!A=h{U90y
zVUesgh{Pc32-g#>E6P*gNG9n#zqs~-xQ0O_>&{1|vNzJXu|P@?sk-yyJj=^@#ufa%
zH;7y3j7&`h2E;aO5k$)%%7#!bgpY&xB#6zd6~w1Ov<jkE5T8pUtwlQo(I$xLx#QdF
zEw>Azz0QwEm;5Y<jzM$^qO+L(Ai4yR5rj*!Hc^MDU6g0R3#SM>MOED&9g1=bdqlmW
zKE3q(_tAkMA2~-Th;R_y#J~1XyB#9JnWA0wc<w#QqV7TT5T~c^XYFYDMG&)sm>op#
zAo>K+H;8^g3=d*N5d9@`kRJb~z*nLJf*7d#mHyNYJvfLV;tUlXrk7UuGJ2%&_#nOu
zVpI@c2QgYN9TUVi!r$sn(;+3t3XjvBT(W=P_d!h7oe4oq6rQ9zMMh?y62#OXrin8{
z_ooLjX`OcZGsVgAD300bdo2ZbTIK{XSIl{$%Y&F7!~)@koTvgnh%ORcEXt;a9f(>g
z{G;eH-RC~nKMAi0Vx_>UAl3%4E{N5VU86@fU8C*2yI!&zgV><^8N;$|()mrX>|2A_
z7Q~Yvo{IT%5GR7@S=PKgh#lhm62#sh_6hG4-6gs^h&=+oit<>esz>b?J|cQR^q}Y=
z(ZiyQ<Y*riKBhaz1%4A<{Buq|v2rqqQ$hS5#Az|F2k}=BXM#A()hUScVqOm7f&kmR
z6vRcHQ)KhRKRCw@YJ0F=3F6Nnu1e`OJtkO7yT`dB@QomDiur)|Y!F?;QFkSKTl9_|
zKlDnrdph42sJX4&LxD%4kM+_TF)_A%mS<dzL)tq3JgDt&^*1$$e}ecoh!1+?OMy3{
zuY&kb;I&?weOlhPI=>Tm&-*K+Z7ZKmTFx#SC7MH&Mdu#I<_aOVWTQokhY%A&tZ-Zi
z`9mlmoF|050{KK)ciw@hf;txop^(mnLwKL54Hr|<5Q^!3QiZ4zI+qNglyGU$GP=)|
z93hksp?wG)LZ}cz#SrR;&>)0LA*_{sz$*(B_*L8QxJn3BL#P%)^$<RiMiN7)5kgI2
zlW46F;`R1xhhWfoN0aOc!baU0wL-fK%pq9BvFg6Nrgl1YLZ~ZFJ<%k+6c1t>3U`@c
zY8yhb?l%gdaR@0Pq=t|tW=qlZ5Sj@z5p62U_PKv_^AM(9Hnz|mu45mE@QGwU6>S|t
zE4}ny?wB?@H)$N*E`-YSEpaCd&HEWX3!!5OUxd&*giaw`>u>5DLeKg}!r>Q&E+J%u
zU<<(>LMViAh|m9ObI%=uCj>=r(;0#)?9!d(JGFgFy&(j}@rn9H1A0u^lG&4XXkn2M
zGR5pA+BJl30$HWq_4pp_n9jWVpZ|X`eM0CP!jce{hR`p>FKlC~lzth)S0RiF;p-3v
z=yit*3=CnA?hFoLh|ZhB+LAj=vcp3dAuv)e{Z$s^(UP4I!Z#s&8^Rd9biBaW5XR}w
zk?Y#em+wOOUUw$0i=8MuNp!O46uornmR!?9m>$B65N3w3Nc>r%^F(Kh&Jmp}%Jz3`
z(}r<=2n%#)p}-Fz;8Sh#FP7|OReQZTf5Z7Pgyo!m%M8oJ=kFD@8fcf>^0AS>x336+
zn@+9_VU@sYQ95e`)`qZ7V7=%D(TyQ&64=ZoqGc3=w}h}&oNc1qs(>xi-x0zuoTy=Z
z8ph5Lc7<RLBVul{JA^$Uya|D?+Ws|!y&*gc;du!ALf9X|`4BFIa3F+(A)E~16z60W
z>!A>i36Kwma3qAIA+&9(q#bimJN{^;e>{ZWLO3B|H2>JFnaZfBFB&%dJ%rOCoZ-wl
zVLlte<hF^mE2}LX$>)SqDywuZhHxo_J0aW+;SXu#&k(K(To%0&!kjcG+q@RS^$>0`
zxS0AE7nZ6`8njKk8R8%K_^h(Z)UC2Qu|p#L+aa`zwT9X!9vNf37sCAz9)*zDI`KgW
zd`C_7QBe<dNR{m45RSJ?WO@?9Q=JREOzSq$@OKFRgz#?&t}+=fMDyBGUh?*tXqa%*
z`ig_u*O<}L{GT{9Ux!e%xQXyKgm+wfL--IvkuZveku8kuVYs&>#Dx(R#*k$Ro5opk
zgtg~DdmD}PbB2*i0&<H+i^hmH*k+0igUYZx;^Y+#|8C9~Mt<P}q6I|@i88ow821um
z3B|%F9!AYDYK2ikFRc*9oFXwL!~D)IN{3NKd_FSDc&4&pl+$@`k(lzr1Qt~kt|VGn
zkEtS1HH>PyQ(fSrFlq?!mDj9WTbR$^lB@RA&WMT6)>8R+D%B`z3WNWiX4VphHH^eC
z7o3DTVbm4ihXeJ(;7dgLNG%_%wH{Ae_NBQ&7{wMhN)Dq@7!AYVTUGh6Ewyp@e{Y~|
zDv%OJsz93Vr-#u*=NnC;n(5p;j26NzML!n(sYw)%zH^4DRT$mF=n+QiFxrICt)a1P
z7-vr!9m4IxXdgz0Fg^=wd%^5XGj$B(#UBQ8r!YE)(M5b_>s&QcGbC#Z!!A&%Xgp1}
zrbwI4Fw`(y9GNip^MyAIUs!v)H3M#*FTs}``NN=g6Ag$4MMI)23Ud+AIWx>(mb7@L
zoI_32CyjIV45L>VkHdHp#^*fKFeZdCF^t|}^a;bfGv)9HL*KCW<*o&5t>Xmxh0#BZ
zFNMG2ln!I4@PIG|3NUz37=wjZRn@-YHB9&$y>xgOBZNnajuQP^FCEPb`Z$5Ln7$2T
zjQC^q(&)Q}VU^YKVNkyd<9qgbwRK))mDx#QOb%l@ZyD}e!87fZc<rkBlU`QB)G(%r
zljp95*%@KX3}aRpv%@$P#$nzOVayHVr!ZE8F@AUQJYK|~lXK=#ndXPFAdH1!kbekc
ziNGRJI*Y^n2+oidxm3&_MVE;#=SU(wt8`@;TR1<%SQW-<DP1GFUUaSKx-fQB)(*NM
zjE&-K3S+YX&CR(JnF!m$_*u+-qT9LV3+&J%e-Sue-MC9&x9;x=<5!*chOxf6k*)35
zodW^~IgFdMGddE+(J-!taV?BvVH^*mAWUTk8h?|p3!*2&I4N*S^fc$E0IQ#Tn{Y<w
zvtgXm`8*fKzS?n_E^^w7|A**h(JOl7pIo5&nX)3UhjCl{zx2`@0yjl(iSm_ecl6S`
z0{2Aki#`bBp<en(;K%^u(=eWe@pa>ztFM-L9!B+8%fQNc_#O4XdE0WV`kVgYN*h6e
z2>uP@Wf-r*7_}xLTLjr7_)h{D^E!+-VZ7!2QaJvd=!Y=g3-IZCnpw=qsEF2POawV1
z$SIsFf@lHyxg*+!)LB4{6+cciPXu`d@<qTfmNGH8U<8FCC>H@DC@em|R$4-!NCZXo
z$YK!`7iM)<WK78jN=3Bqpq3UTl!>6M&OcW-v*-N6YI$~VPJD%k_8NhTqLoCMtt?O_
zf~vYxEuuZL%Ay(()Qq6fax`9!S`pNa;LbeUod-h%@ey<%i5?@75P>m*BK=XcKTHwr
zw_l|joZVoKz!HHqg2V`-x*|tc)QO;O1T`{IGZXb9Na86(us4GG5j2QkSOmi(Xc$3q
z1f3)3!sABJID+O8w1^;u!*#-(9^orDlM5d+rwXKr<}DP}L`s`RaO#-383*u~x%meR
zwPge!N6;pMwh?@P%=}3Ntpv!QMzC>a?Bo+>a%(ZIUq!VO=%B~6XUD#ZV$5d|bd-1o
zcaqXFA1vgI2y79ABZx#`kH8UuCjzhZN|A23B5+EU-BtzIF}L)V-OE=f%EuG@U||YI
z;E#YY^aBxWms1Ey=>-YMjG$`-y(8!o!C%MC-9$g<RfwQR1U)6&E335}R#wmT!J_1_
zGV+TEcZ<kH=o>-52nIwjkYPEj{Ui8FYO&}`aoCNh0a45jVporthln{?VmPpDZKyC?
zX5<LYu?S{HFe`#l5qurN@><DLA{ZUPHxZmYV*WmYZzI_M-oi94f-yReWq)cX(;P1j
zv)_rsDib1@7{Mf|K3S9|OR22F_NU5GrbRGaV1{VXnXxRI9l@Lk)<v*Bg1HgQlQH~B
zbiU|P-jxw7jNk{!E)iWM%Hdip@L8>7GEer$2$qR+-;is$K(FIw7OjY2Wdt-=MX*Nv
z)uJqVd(6C6I8rN_?QGzLiGcHDX9Sxf*etw5bV~%=1X#K?0=9hnsQG8z*&YG2EJ{6Q
z{zc3)o-)kt65cJkCjyo-Y#+yvi&!S2GI1b+gPey8;~z$FD1yTgT#4Y%2#!Q>lw%md
zxd@I$xK#>HMeutBt&f<0i{RBE^T`NKL=ZS){v6gxWwk_;dOCtL5llU3W+byWPexP8
z=Oeff!9^*ec}bdLl|Q5rwsx5pv8*-mh?#9(jo?}YcO&TZH1#^?4_BwM*4rGA7IAcL
zL~t{LTT*&wOBoh*X&6iY4p)yMiG)vwB;J$Y`{F#{u(yb#$(A2Q@Hm1e5j^D@9>MDf
zo<;Cn`tULWp3C1{$0GQL6H?AA?c+Gs`d9kK-ZJ2ogb_X&5k-9y!TSh4MDR9(cM;?}
zY)<(&?w6KYEi#8FTc*}*Ry#Q|kuy^p?JAkbm5JP$D3*!hnTXCrOeXSWB7Y`gGZB}G
zJek}fC>L7B-L)q#ZV^Y$n+Y<V+U2YTGEp!SMKVDi+%m3ECJIaG78GB0z|5G>FQy&$
zBp2nOFQzq`6JH_|B{Q{ahfI{p)W(@yMx4@_;0yM%E>qb|l*`nvDbJJv<um^uPuBr0
zMbUKO0rE(npyY4`BuLn|VRp$6_K^f63rGgR1Uox3JG(ox0T2)qpptV`Bq$<56a!Ht
zDS{$NNs==NN)-9;6zBct%&Bv`y1Kfmy1I8l&kib!Och~19YWQRGxQwXM<Ywg>LDlQ
zJZgkcQ}8pn9LBs3Eezq^5XOe!3Lz^5BZNo@?hrg7JR3rr5WFGyLTC{}OEwI_A3}xc
z!C(l15bA}{B!qs`g8r?+`XMw7p%H%tD6`e!>^oYpvD8wYxRr=yhtM>HX2NGf3N-sC
zhr&6+X`aic{KD3SmFYnqtr+=FgRMh&#AzEsyAXPFm_m3ig!W=j_YgXSz%Dw6xRV?m
zg~@(9N!xpQa=HrVd69XmbzyeO+HUk{dXTt>)V`40s;7WnLaDPatqNgi2%!-AhcF<7
zmqK_sgn^>`#SjLu$MVi!TD{S_5ET*+7QYBy5t-M-czW@w6e-E7A<~Mrv6U)V6MMpf
z$<%WJb>4Z9V@hT+XweX2A;d$lLKqpsDA8$$kPcy32#FAq(l90bS*;8I(nO(#;USC=
z4mH0n9g)e9(vmI@nva$yZ-($z2yaO3m|UAF@OG~JJGrAkwRC4(2;)Q88^SLkycfdz
zAuJ2wlMp@#VM2&INc{^Lu06hqA<PmmDTK)(ObOxKpzLYFVeQlqUdZs1GhH|{a``ib
zPXQjYLzol7T&bED!U86IksR{p=K|u(yL=x?ryqr|NWjOOI|3F9T_TiLt<LKweb5x2
zhOj(@%^_?F;j<7{gs?V*FGKh|gc+%fRUxbnVffF!l>~YHGgBGFYlQO!eRLH#DNNF@
zLRc5VcOk3~;p-5{;qh$<-^gL*b$Vo5>LlGD8a9efayE%7-yR>u*6#LwAHuE>ehgu2
z2tRQBr%AhgJA@K!=WLx-h=9jVVGf^FNXhU2DTJS;xI4tRTC!O?a#o=|!eNn3ehpz?
z2!DleLt^+_2)~E$hv5Ao90=iH2n;5}ct|M0VTmn==12%fIb>YHLO2$}@eodhaGFa*
zUjK;@=I!?V$t7ZsZ`ABUJWdKHJUE;DGlI`@&756`MQ^L-q!*Z?vkP4g;fmB=4B=9)
z0Q;iARnc}$YN?RDT<0p(syT=3CYQ&&{=Y-`hpUrB^_G}%H-vj3+?Iy4<c_pG`bOFN
zA^aP{!w~YQcp$aZ^B>)Lqb$W9*-TDe)v=Hry*s-Qi}_U)P_bRb4i%57D5&C16>q7?
zq?n4PDw?S%tfGjDr&Ux_F==>4Q58?9cv3|%75`JwF2DbA6(s}|7g}a`2APA>8O?Y2
zN~$<GETf!?@+wNHD6OK5iUY$kHf8$Dsvu?U{!IUcVHs6-`YNb+N=0QA6;)JH0TEy=
z#dusCmQh8;QA(;fBJ#v1rFnG~HB<z6imsxjif2>|Dd6|1sHLK|3Xh6yVoV(sQw#X(
z<`!KlXdxxDMBc4p!pMp&^6-k}kwSh&g<onv8J@wmr1hnWGL2L;5KMkU(MdplV--zQ
zWUHVsiysLMs>o5%S4BTYa=Wj&idHIGt7suba$2hVU}6D+XH~RO@w|#|D%vuhDmtp@
zq~bXhMYsDp2yHbyqrHmu!!sJO;qZ(W!!t-btLUPltBMXBqwPL29eJtkuA+yE-t2C8
z#tTAwKGG&Ky##j~l>KfYe;>ir#<u-c3{VkQVW}9X;zbo96{?CsDh8`~Ma8QsUQ+R8
ze!rH^csUpR^i*kbUSrUNGgQSc;rvFL&R`V<!YVWshKh*D=%nck3LF(lQ<zZ|F%=Xh
z{}E+ds<LI&QYz9aUN7KJ2u;$G;TbFrQ!!k{NEM@0j1WmOUzb{r^@r(<@%jCurO6nf
zZwTEjZ69fPTg5vnK31_<b<U37RWVD&{o)PBsu-tYyo&cY=qjeEcwfZ_DkgGLFmqJw
zE9aj#D&tBy|Ef_L1<U&<3ug-FRCzzEJ|C4q{@3OF(^Zg?GeZQ(oT-AfY)j^B6?0U~
zRWVP+M<OtPRK|Q2q#vqSpkkpkf256?*_^Ew<*FiHqGG9vEh<i{&6hC=RYYCcn^b(N
zVmSk=;wu%OsaT<6wTd;;@N*Tb1gsS0k90n==L;2Ug~{T_;vFqvFYCxu@tw4yJKw1I
zRxqm=fk$oEtJpwC#OsYJ$fqQgY*sPFmCfU+_JzL}^S0)4e&9UfvNI=(2L*OAc~tzT
z;-QKknG7n<sW{Ie-saoQ?o|B7s-3={ITtGW_o&z_;1?AoEBQO^^!-XspX}X_`S)|p
zQE^PgaSr!(-$4#pdH?T14+%Xi{J`i8^8XOd5iT_XczQ|Z7aM#hoRETm$Db-r3O>aM
zS8!?%Jw1T*jEb|l9G;P0P;pV*>6*7vo6W9EoLoD6w^UqaG*nzwaZSZd&iBo(>p}}u
z@ZVsrR`mbHWx0Z%{LNVfSo~X<<oqLmCf!zXN3`8#atgSoqDt-T-|H4=0zZ5Cm%jqS
z&*+=Iu#!Jd7<t2ZCX8BPWQ36~j8b8g4kLdU1;S2DN`&$1PTyl;6bYkf7zM+QRheNF
z3On``4uh7EL%d>i20<|qcwFfJL}uma3~DGYk~Eb;dm`+_`AMNAg&LzX%7jrijHkoS
z7?lfy)>aIoQW#gt`^yWh5JtNS{_1YW5rk1$WQd;%I}YB=Do{l@RfRJ6tg05K7U#=f
z)x)SExTa8EXEBj#hfybtR$;Ubqiz^3R)rA=BP-1RGwIFdJ^^l_o-n)uj&Ad<FYi~R
z7sXwGUDp%CvcqT^M*T1vgwaq8ZY+G--zbcumHafmiSXGwnay%*n+r22G)E|dLxC28
zTZZx1ih?W-EAM#pECU-xTZt0=>P01CJQv2brw6nb+AWL@VRRJSNoW_LooU{jEQ)oN
zBEj=AvIOLJ52Hse|AjDmhVfXn0gsyWmWcHc%Ax5SM!a@5yB-k6z%XnR2@@}dF(?d6
zhpl5U2R)2U8a8WqIgD4r_%Doy>?@4d!dM>0XJHHpV`vzo!+0Z%?q}SgFw`)@f=^F!
zX<@$oibNPmww>fMghs=Ngz<Sl<*jAeCYw)ob?v9bq$)0yk{0b@t4przGCmf0q?p5D
z7*sOJl@4QA7{kNh|4_}k=qfWn86kR3HEKw0Bg2^5PZ<@)*1LfR{gg3bycx#yFlL1D
zRv2%G@qQQ|gmLO)_dDb)%N`fTyV4g;8XHEVtsdG_etY(K(fM8&DDGW0$u%L2+IM`c
zofO7Iv83(9(&S7IV+s}Sa!(CoS{O9=iIeWd{T22;YIXL^FlL3ZC=4p(w&&Sl%wyO6
z6yIdm99CU)&E-tY*O2n_!&nf;LUD?JQT|~V<0iVs^;bR$qu9^NSG$#+V%5iCEDmEy
z7)wRxCqkDAWfy&Rxk*2jV%f>A6^wHjKZmg=jFn-m3S-P<*Tyhbhn<gr^Y|)^HM#hU
zFxCqGQfT8#j=(z3+)1vl!}x~xODDU&6}q0&N5cE0yE(1eAWYVB#5Zwq2xE(ccbCxb
zDH+BOf*JGe0=5Y~(^uIcU}qS+%J^8z$dLXh%%6nr7D{9GhVe@nm%_Ll#;;-Q3**l)
zPKNPY82iP5BVp9*uN(-YVt?gO7zYKkzUaF9yN8^^Qv5xPKLjwf$UGW``;hNg7{|F}
zO?EZB>pO8ba3TzTDxKgISI*<EvtdNn=J5OJry0qMt}|hT`YXdPy3Pszyif{U2;*Wd
zKEBd@C5)?K+>_{C3*$P+eX{G81nn<+)KB?4j2lv9p4=4B`<nY7sp25A3mR}+GVo3q
zcf(*VHR`9(Nap{2Nxy%?cn}7YjeO>L9u0Xl^wH2)LxzTY8WatF4f!<`&`?=J6%CJR
z=zm%HpN7XZ6cn7Pp^%2c8j5Hrs$tzycfn(x&n_!1E-QJ;_*g6^%+L3EiVG;Mp^SzS
z8lKS5Y+~R^4J9@Fw$z;{>)UZzAt)uqwPU<xHI&m(Q9~sS<u!c!x4VLd<YncDbM8JR
zvuFl&LPPy4%2Q$qd!)iPvja6RD^)c-t)Z5N+8U~9C^kJXxkYvj&G~!J>KeW(+p<KF
zoSGV*(a>&epv+Ep?>T|jY=0dMbv3x_`m!`o&wD%EE)8`WdJ0br)SMF_-z~Ksp<WF>
z0qdU3VO2mwJq_J8{PkE?eGLsXJg1?(hK3p%(NhgU4bA5S8f$1Opovg&vIP{G6JP`e
zp7Q6gsG*gH*0f<-poNB(jP0BNUHg7=VCC!poACdv|L&aqECn<?d8<KNjaQ)l{g$7&
zorZ7=FTs?Jz785XY3Qt>qXq_T`6@S?Gk{$*JTH;#D)g&q4wFYW(MHfigK^IFf`*<l
zWW6+u+UV*nn6aWIXQz4kG3FYkXqc*DfQEq@hHDtX2x}OmA*vy!VX%gmXpaVs`~|L;
zC0ws*ctwh@3a!&L$f_Y4hHBs_FbHF&20|KC4F@L#h=2XYt!ubCIWT8hAfkbTVsMzI
z1wMV?G3of}q93aM8aduB<6LnKwuXcTj<uzM0?e7DhW{=r*JlUP8d6gAt>y1EB`{1w
zsRqih*^ZuSQv$DR7^C4$4I`N_Qv#!ejuy(|8v+=^Kc)uW(lAa;eOtpj8s6ov+Y$Fz
z4IdPC5_0*a=DQ2Fpd;gHs)qMPa*|LoKhQ9N)9SQ`cp~Ro$t;4&QcKOm(=<%i@Cl8V
zl%Ansj)u7!7QY{usp0n2z%0SDseFx_^J|`l`Q&Jzg9{|QA8PnW#%m#ib6Gi4+{-X7
z((o~hZ9Ok~Jq1_0>ByAX0XA8pVX3rTCX}g8=5h_6Y4}>wa)pM^HLTI_g-pPeLRV{8
zC0)>lgPVOk2-a%&lGaWOtP=~D?QpZ}uQa?q#>*MOA?C914V!EDj?=%Phqi4HuwDa)
zgPe^T*oq0j8NEfr_Zqe`Z#C@SQ-)96j@NRw+ws`OEY(p`$94@nG=2{YyXcyR(;9x%
z@RNqa8h+QXTf@&9_Hi-Mut&pdErNrm2Y%6<KVIIeVa4>oe<PavKg{}-q5dLge246M
zGXncX>>wAwFLDlOc)Nb^&UO#+Aub?c|ELzhKe!%#m~~9UaScZ_^n0Qq1&*@V)<@;6
zI>A`Y_5LZnu<9h&fqD(Q-0yjRdf<$PvrI(|4>g?AaGs;7;f{t28ZI*UTsJga(r{VB
zHFh2HUlIC|?!T&Glj_f$-h5PrN)KBoE3KThQU47MH#L+s{r_-Teyr&Y-B0{C!+YOF
za7(IcMg7-(nRf-htNQN=_;6C``x^db-m3lwqIuwYH}OBJKaY;QIx=+>(vhJfpN{-G
z3h1C(3Ov$J`k3yRS5QaI?gd$7k2JEdjv_kNFY*)@J_U;Ej(I$a3HYDT$91qHGAUU?
z<ev~q`BFMc>u9c{g^n^5)=^DIbsby*%IT=2gX;hjxIBk`T%dxEiaNgE;pWQB+<SkV
z3p$?CQCW8;dld@5>v~#nRiSLiY0fpj2F=q^Pe*+n&*-S7!>hxmqqdGZI$S!kbkx<I
z1%z{CLCD`w^K<&Rb$E1ajk!iXXwmvR4<~ph-On|UOR=JZY6Cj_x-%t}fBN&chD$Mp
z8|Y}LBU?vP-C4;S>1Zs%^QQ)yEp*ebCc3i}(6$#gl^(Xh)l5fFM~=8mCaVtQX~;R=
zQb#Kt{dDx#(OSo|I(q1MK~%NT(OyRf!EJT46F_^O6TlzSjygK&&g$JwM`s;fbad76
zyzVUT`~l@JCS%AYJ=7{l8UFru*PVsB^y~nqWKSKvboAB1ncG_j&8EM7=*w(pDQ1W=
zihEbi4$#yAItJ=cb%fbm#~>X;B<x(42kUr62LX?l1iY*}3(@ikrC*ieYq_=Tg%f|M
zj*#yB1k-o^-qA=+2gf&}L)S4e?wD=p;3`2IOdV0t7LzKfjZ2Y3L!8i&)bWjhZw;h$
zq^Z_`$G|Wh!<jrBP#q(5ysl$`j)gi#GEf|P9aD6S*71gpu{y?aICQ+pBjSHY$6M61
zEyzE*e_O|2w|pyZ`PAFKArb$(6gc76Uk>~);vdgU&@q7~F%J#@`#PGGZTNu>R^2QU
zBz8soEx*eCr&(~4j%B}OQ$zO?zNtE<>6oKqE^Qkbn66`%j*pKjGjz<PhFiXtwY)8t
zdbmeuR4wmp9bXuJ*3J{*`3%08aiovJzu)grB8T4>_)y1U9ZPh4q+=0Pi2>~N>IOG0
z;fD#9vUeRTb*$3yiH;dXe4mMTpK|yj{^dH}IjRuw|MqF*3Wn$(-{(5C6Tat8_*d&#
zqvJbHURuJKpYW~I@wJY%g1;2{l~7jE*>7}QH~im<zjT3`E4K79fb4VwXLMd=la5#a
z@om)c!%<~IUuCn7Ejk#k^Pjr-y@SfjT|em9rsKZO59VUKjvYFV=r}40ck1{}$9^5V
zbo{8}Csy@Qe%7%^$8N3(%U$$>{<4?7I`)a$U!+rVewBeED1O_=t{IsFIu7fg%?Cy1
zkPcQIYL(58CeZiab^IZbWDf8P4##vHXC~;lq2q*%!WkWBb^NL0q$oM1<FpQbH-Y{>
za*f}BIH%*hj>|f(a0&XycR?gCa{YNMz`oe^B`$-j-2_)f;2NW+gEn;Qt1vgHisMUx
zo6?X8d0W8WLjMtZOUI;ML29@os_yEz$JM5BHe<f?Qx`jWz!|Eel!4L)9_q+rprC<F
z!wFYj!^zeB1~Lrv@9oWJI782odU)Jdz;N>9F$4Vm0zXJWRm;bD3K=MBpqSw#b77%H
z3^3DH9`yXraC|Re;0Xhd3udvnfGRHso-~|vDk(bY6qB5(MR&>=C~KgGftm)&87Oby
zDH>*=f*4jwXhp+G8^+<@ohA@H#O$<+fvN_o8K`*QO?#d;@Ii-yyIWRZ^k{i?!$~s+
znMw7Gfm#Ok-}1Snd2IuA4JYjUUPc|mnR;wa^BD6i158@ZIO_Kr@X=rcGYu#P{072o
zZXjTw9>ol_H&EX|0|PA$v@+1pKqCXq3<M3l9&<G|kZs`52TBtIeDU*e8*kq=uBLQW
zUg|74*q_5unCEJ4@P91*1fQHL(n2`=!_3FGc*$vPpsnG&N&2kNHqw^0<nU-`fPbpl
zpqjUXfsO|H8t7-B6GNvf-3)X$(3z&{N*4oN4a|xtXF|&Jk7}!VDYIs%(!)Sc1HBBq
zV1TtR9QSpr=Iw3ZlB(EYr4L;TDXYQ?nbkF=zkvY^se#u-c%aZh23|B!#8g80J>`Zd
zgAKeS{FjBUyj7%ZPwy)R-Zz}yhj6TWdP4?2F_fXwi(6Gr>x#<Zh$#L|F4pP>3<GZ(
zc*{V<fN5a3fe{9x1|JS8wt<9!5)mb4AkMfMXxhQgS6q3NQkCJVk`%GD(3Ii4^qMZ=
zW5Z#>p*vGIyIvPOTIfijqZp`VUV8n8#GmqG4CLM7BJ*tn?=Y_nOfc}S1cY%LZ(yw0
zKh6MyGka-{X(;bG);e)}-$1FM3j3l{6Aet2;w15roXG~J2+qip#UfpvW}t_mOqanT
zm}Ou#XHCqt&cGZ4b7j!aZg$NRQx_XpBG%3~u)qM5YN3G-4KzOEVZwZ5U=j0~LHj+M
z*}{Kx3|(wOFP3tu8X#Wn1RtM@s+B^Q8~9AB=rsp%h2YO=VKAHWOt4iV_MmSD1=cX-
zq_|eZzB2Ho6j`-?L-usdp<f%k9jEvQ`$@kuu%2OwAR5620~-xI89~ViHi?553|us@
z*}xV9-y7I!@HZ6u4E$hVn}MGVoHCW|26h;DuY19txX!c*>@+asux}S<qFTSknVcV`
zNY3C&O?C@@U@A94_4gRqYv7!#*OHj>i-9*bd)fB6xbhnp0Rw*;IBDR3frAE)aw5l-
zLyV*xzl&yac(98<M9C4M)b`^OImZkfH!$z8?}UN3&$uZzdwmXjIc4B;(`j|iz-cDG
zfwQ8y{ub9uF9q3<R<ZUxhcBiSZyUJ8jOy*bZQzc9%Yv^MxN6{<!Cz0@FmThrUtA22
zDO%U;Eq(m6eZf=R3Z8Et_?vMskeur7+S@;^Yz_r(i5NL|4cy~O9znhc?i=`*tG$8V
zEwXt$;MBX}`Hy*WvM7(kXN!(~E;~=eVNUOyoi~DFZG)kX+4&<V5aBNZ9*^L$2nt3}
zID#S~mKnj4KfHy6E`C0n@+?wwQMQdZy_BEgC6j=9ibp`n5)qWIkV#JAhlQV@s)vOs
zQ?OfhsR&9(P(OkO5tLzK3{WaYP>H=nuzs?uTm;7_y6RnXmye)A1e^OSt7c{A?-oP^
zPer&;z!gE|2*`Olf@%>g8lY5(plSp+?)cd7&_Lz=`q|YZcqW2KKcz+l=MMT<Ra2UH
zGL%}vuPu}Ubp-5x+{Ys;!aofIyQT(r1mr}^6!u2o6B#9fH(UB@OfK!0Vt{5G^wkra
zsfTtpjG$2jT_WfjLE{LTMDT0`Z6e5yIQO!G5#&Uin;T6dXclqKZ+Q>ln?Uf!CSUUi
zT1A}OJH##M$R=M)p*%@$Et1ZikaI5b+eVyAkM<F?6M^T1@?@S>9U|x$L8k~7)DQCL
z9C5BVc*6hJv;g~hK7wu${*^smji7r3JtBB9;+%WG5OFS`dT|6J=otYodE!%?yH9;0
z=o`Vn2zWQFU&Og0;59x^)cXr&ae#m}Qv<vwu=3g9pa=#>oOAV;BF=5Jmm}b14zFl<
z>duRZ*CNh^Kqvy0LpCKaB!Zz4=N1RA6t0%b2}hubn}*a**i@QVWO@X=aX}D~w!DTS
zjzth>TAIi-VMSm^a5#eB*)Jo^%#2`Z1gQwp5xgJ42eg5`Y;?U5!I%h!M=&D74?;Pd
zQ4##~qB1gqto`o(MY7(m=N&DaSMR&t8y9>tf_|5M??x~-g0}>(I#%>;0q=0Qcb8^u
znL)}p;f&{qj0?Vf-$l-Qg6j=ZCeWP-=0-4&E{}6fieOp<(<7KHMRKMHm>L1QW^qO?
zf2M$WpB5%_Rs^%9*y3CF9047#_~wiKA4c#I&D-x@5W(4Y!G-kevX9{E>>~7Q;ELcP
z_P)sTaRiGa`1i7p8pvE0!6%$<5p0a$Q_-_Jf;9q`NAQ_|6+%B3!&XM{?iJrE;V@`)
z^NR@9iX~rj<_=Q6WQME=t`q!~PzIC1Ikm0%Hxazl-1{x_?TTaAcVg#yp^G{zn?&c&
z5$xdvk6=rLuSH;M1V0M@2cg>|*b%|D2u5{Q*fkB<Nq1Hj*(J49%U;O*x3lt-aENy^
z$p<L}dxf(vg5L!EBJ@|GyP7rJFSc>W4v0Msx+n)DI7FB4yV|VxlKxOK_(udsxQa4*
z5gd)+SOix%dAT%2a3X^95zx~=BRDCl&WPqy5u6sFey-5>TQj@|XL!$w0E_2jya+Bt
za4~{Q5*d1Nnaf}oh1!Vs>@IyxG~9^bW(3y-|0OhIT50<Ax8U24=tkE+0&WRqkSTCS
z@Li$zWJJj1h&+fOuL<r7{V#%t5v&-b(7Ze*riL@icTx6EalLxqmCpnXe#}IE(;3{M
zU6cYQ27l`&82n?wc3ZLwnJ8?cwTWj<p7Noni8?0gnkZ)Ce<muJsA%GG6U9y54su4n
zgo!6ilr&Mw#FL`x`re{Um>W}Ex0h#e>XkO}Mp<te6YQP#up<ImTh2sz)0vx8LIWz9
z;6~MFMC>UOl}%JN@wAC5rZZ2A4p!=)D$2H;GS!5W{?=X7M0LUJtA+q-_EdK~rE9fJ
zXI9oWVN`c|bg?fJO-0OY!XxfCl%m%}z(hS0++V9OdM_&fTjlkOC3pWT{K(q+Qfwd&
zG8^e2X(JPjP3O}gO-yGF(xhzDS$Wum`QOY$Q1s`RXkntI=?FBJe(5irYGvZ{V?~*(
zRK=<`Cfb@9Y9eH!or&j6^fJ*~`fYEbvxzPyI!LjjQ1;Tv1brvyD$2W==+3^rbw6+N
z-{}>0!J~(Xp6paCc|pX;qzqg2G11q=%XERYrZde43hn<0uLuq>o%M(O7flSJ@45V!
zXlEBE2s|i2g|C{32fagNtY0&og_ll|Lw{8hVG}V5n9xk<CQK8oHDvUe01?)n^)W5E
zzHz=EzVC{f*gHt!JmpYwrQMtzv?SRW)uf3O-H+q7IMODDnOGIY>L`Yr7{UCBqE-~I
zn;2>0N19<`l!?)%bEf?nZ8I^(#B>ugOuT90EfepUc-O?+ChtFZtDer`Z~X&4D?FY(
z*2FjylT1uDG2V1e63Bd?Gvbi%J)!+)XY-8Z0}~Tyz^rVZa!eG!^AHw;4SZ8f=L~16
zP=aYpuzQ6GW}28~V!nw5CT5$MV`8r9oW1Z2hvy_b!60REo-nCrp@|PoEMxO)?vI2L
zEHSaj#K$H|-}TXQ_P&@YouT|#yx~$4w2gMM?I$Atsd&d$%Ndj64GC5-@l33w!6w$5
z*kEF{i8Us^Ho=o38u<m|)6(}Pv+Is;t@Oe(v9C<<yo<*=0hHv4+&6;1HSt|;Ezk5e
zn%HDwn~CivHj9$2V#yZ4-wQo?RH1U({{!{Es4(n1Oy^u~7n}4~2zJtj0SY6}D*Ce9
z#Lp)3Mv)Q49tP*3>zs-6%o7v8nE2JiJ`;bMIBDWHju*qute)%QCDj4bxk5Z>I+x^w
zRppQr4-5TWC~N-^aKyw>0mp>$Qj1k51XEAL0u4`z&ND(!n|Q>e7_W@Znz)}(c)@<b
z#6=T-(MJ=PxEkllx@tO?*t`b3OjRadKT%$ZD1i&U-9wdYCa#;#mDI}fUS2-mH1W5I
zyC&|jt*ZRP+4`OPwuxI@Y<qeiiM3UgJEn6j$*TLDM<yO}LK(^fX~H`I|CxNytk9%N
zd9v6lPt<A4OM70M=ZhkL6lKVXqCganMNuNkcPo^FQDjE(zbMXV3a^L@MNuS*qEb~j
z3hE)BV#S1W?`DzO(^~L00x!lNkD_>#n>>|sLmda7h~mj8N{U!1p}bmTRcXQ0Kr<Mw
za_nxNt6CK0qo@!?MJXbRr=reCRgxkbR*pJ%MXE$ml@nZ3_&E}`dRj1V0uVn4Db=IS
zu+|Vsf|^n1CQRpqQag$|QOt^Bb`*7^a7EE0iWj2DiozX5%P3k!@nLhXCkiDBe-!*6
zoi_?!)cIE9Ghbz!8A>3E%U@<Uj-p8v^#s=!N@fEQYbeD=RQOVm%xo#<2yL1x*({2n
zD5pTs?QJgn7DD+INHSZ~{zcjCDI@kg8%3Ka+D6eX>U=5kIcZD%G_|Cq5G*L=?HEND
z5hk-!6rDxpg{Y#Rad(a4`6#-HdEKMXQeL`qp=pp{$$*TWQS^!;Onwx-qj)Q>42oiK
z6n&!T8^!UM(l3fr8+-!=_m5(LfFc_Tv+Cex?~5E+OUbCMyd>Zi(cnGods$pyFRu#c
zwJ3%N7%EhaA|!yuvqv8FV~QSyL1q+hM-hp_j3OCDDvBr#+nZf}X0{bYEQ)v(6sG2I
z+W;HdOqiKYZ9>4&s6w3P%FlqLyc8Z51>?hxMhJ(@*P|FIcvLQDw179F7?aC+Q^G~z
zccOSViua@VAd0b4J6<fO4dWQ_xUyoC?>(`Qk!LRxqL>)PGzRKl_ar7>Gw)<+#erax
zDY^QmiWk&RvFTCFh+?KRsqk1sa_9noo909@FY5eA%@t$%mMq4Bn@@M5SjeuUSRTb^
zQG67|q9~R`u{4U0IYUqQ7e`_L>3{WVCh?sj4X6C+UlzqD`~}?T{xph4)dt+(;lA^*
zLFBY|cTvw%BRwpxV9ZZ@Kj(BC=^=9^J-V9N?`kHi)<p3|6l-JnGKRHLd>Mr|244(c
zMX@f5zoNK7H>3C_ibGKxj^bNRpVOX=QEcK$QY7cQDAq@v{UjS`dHo=->{z=wiY-y>
zr3<Uv-$$`EiXBnx<Ou%a`yq;LQEZQb8$5VH%4cf4{^i9iw{z@bN?cZcjN&IYi8)Nt
z-CX&lNc?jYe8NufdS(vkFH!s&#l9$hi{c>jd`e)y*mgkZf0q?LE_9ymo%Zl?7&oyH
z{2s-hQJkcnD2|B1N16YZmE%$Ha`jjgce8`smcXmm6H(`Swl$w|M{zoei&0$SQW?cr
z#(9kQLKNqs&QrGYQD;{Mui`KN>f&=oR`H^n8#(y2>oRpp7koT-g+qB+q4I0Oxh|A4
zjM&X6{^k-IL&+HaiQ*Q2>|)3l!|f>UMDZZ%Tun0+ccsbwDDF|9cOiDi%YQy<|Cjc+
zb?yfI7sbOU^29LlvXVFEjM1Y9^fZb6=8vI348>yjUks1MP%wr<F%*s=QzSVS3<946
z^75a7DiU*?DjIVh`B5|PLhxbY<1uHe52IQl2HIad<~)(4Q_O)UV$S9tN|uVDbPP3P
zcqWE2F_ev=QVe_}y<E&OvO>&x2v|PmY}eua1RBq@sVHsP=~FROj^XJTs>M(xhN>|%
z%v*$eW~i3oCFO(8>M`(+M2(n}c)W!|OtX7d8&E5T+A+9=Uq||K#hjfdY*kkRLKk>X
zCM)J7*x`*XPs~X$-o99$nWMzuk0BaEEQUY~^<wB6!}Bq&LTC^}$C$I-s9_9^VhF~N
z6GLNGT~U}<&0=UGn8oZEnsWM#@iGZnq-z|Y=6n@D<~(U_6LUttWelxjcvf&Lp}Ye_
zF$RIVSvXj28JQTK6U!MNx<)<iW9T3px<gK<80bi64#DgI=Rz08d8eEGc8j5V41;5M
zDTW>~WMB34iJ`B67h>ospqJ3zLTMEzQNI|t#fZW$#?W8z{%L^$F$@&7tm1SYB%{Vj
z+ODqe<(Tulo==U33V0=kR|UK#lr|5EfwzVz6N*6<-@`E&F+>DwLUj()0w?%P15z{Q
zY^kD7(s&G33?IZWAqG2!L<}QheBgp42QltS3nfSi*l<0AcvuX>rN}&IaU>_s)WDb+
z-ei8pFq)};%<~2px6y?uzy+tP<!3U#MYUtRe8f-ub`0+@Z)XR1yenXA4C8V+;|07Y
z^nIZmg^4jtis7Re7R4}`af@MI%-J(GHHK*t-Z?Q$k6}g(vtnS5@#A{T|Cy40%s_Hx
zON85xX~E%}D^2!Y&EP=Hk6{64%?95>CPQ7{hnzcQT5@j^_c$?!KaOE>3@exe67VHL
zKZ#+f0ET^;04_nF3Ro`mvzW6dhqZKhC8tSU-x`@Ct72FkbM|6!>EleN`y7rhV$NMY
zCgfK!tYgN;onNT0WB7)PQXKi?_%?>`VmKSaIl30Zh8PYoKV#S!!zN~R*#Aomn`77#
z!;Tns(tsHLJ6H6F7`9P<k!NcRNB%6z-6K2C6&+PK$YVQ4s&0_`Pj<!dqu`%oD6V9Z
z`I8h0cE`}EK|=x_dzf{by?dpKV!y_)k82258`B@+4mzfN)PL}lhcYqE*`snu`aK@Q
zVFAC#@P~jSF&q^@nHMg)+4h(eX~~Hg{^a=T{*%(zX@*OR)JZ1y<eZ_WtAgB7b3TR(
zG31T&3e<lwhD$Nri{X9@mt(lXR1~YO3jHgF8!=oHOjEB@!`%i1JZ=i}?-;zd+${bR
zbF|&cm82JB-jU*6F@wc_MTYVZV|XC=KcQ^+PIV<u+%cYeir6+I?u3g?F8eYI#PL`h
zmEu4g1>?w!J3)IwgbT%;(fMB-h2tm^cSfXW9L3`JZLW*W|Ge9P3U_>$Lz%}#vUnUN
z1oS^wl*}jNC>cj7QB{U&<0vhdtr)s;xwxW$@<J;}&?rFt+z|Ct9F^m6#gP?v_9j&k
zS|g6C0?2tfj%smKXTKFPxtZ#$FO$rgaXcdewc@BFpmwf2bD*wZ#(|RVI6QGQh@+t}
zy>Y(!>aQ1vFAhaG6!r@U#PNjekLqzevwoZ>MNSqml9X>0N7Fc(N!!Lko5YbFcLt8N
z>?jyVP8_WyfX(C1o~stbijykLv6jN2F-#s7Y2mYRw27l_9PQ#56nAcbJQqj%I0gvr
z5J$&2UWlV-9G&9m9LMu<bd#zs1cMab#qBCZHstNE?s3fF%^%^gig&blKhPSaP_kDX
zed6dVt$N3u+iPU@6G?*paqPL`<J}=*-r5=%$KSOT>U@z=?Uk{2ifeFgFE0srS>#_K
zmOD{H;=FRf|7<*NBNT@khh{;y5GIJ@UL5!1(Bm+;dc^Tv9FaK8IOfJNFOFy&u{hq0
z^V$UQIIK8E5*Ny`3BJ!x@rI9pL>x&0?YX!A`|J@7Jj3D`JIVEW9K^$gju2X~MRv`J
z!T<JUkBVb-9B;&NzIpbcM%iN+oCcmhOZ)n~RfNU2<9H{I_u_b;gAxZhW2Ik$bQdoT
z7$?Q?LN8u&eGtclIHt!jBhDWqOp0T298=<0e9xDhpH0nEFJ?}S<Hu(_(}e!8H=CG8
z{YkEwam-@xRCO_v#>|dmYC+%7dp`C;Qx}{qTIsj!`Ee|W<C8c(jbov7O79lMc@5%3
z<0GN-E@l#c%uXc~OX656e8yzT*Ey_O#_>H`lmS^D$7fRYMI0;Q7*Z>Hr4(89xx|4n
zTqT^<Le~hT7Zg|<$Cq68g+rZR$FWW@1Iyw!xqNC^AIF9`4#)9(92?`<Bv$Q@V{;r^
z;@BO>&v68sDc{GjJ&qlMw+j71=r)n3z)mUdV%!8&UE{d<lVFYoBgP_+J#p-l-uDXq
zMd+`&_Ap$(aqdiZQL=R)ctG$$@xAx_>_d_*jM5)*9Esy>9OvRVDs4|mh8&CIIET2b
z?}Rk`Gmajif{Yv8JQ)W^lbUJC={U}ad}w767SG3VA&zTtT$e$=7{?XSc}e=c%z1Io
z#|+^p)4Z#qhh6*?$Bj7d#KGLS83%Ln?>PR6!>%@fn8&R+ZVR8dK%F3)5YVr?60y-O
zga5|yAdY$#>Rb3Pj)$Cm79O{d$3k8U1ubM+$grHLQNY4u7V=rhZ=uN=cXs)lojJjI
z<8v5T>g@kq!?#LSqHTplxQGSDs<2>I6}3>za;6V`53J7VaL8TULJ13%EmX1agoP(9
zl($fUW=wLG6k66oDGQ|qm$5Lgd0|$qX%i$ZCrkoWQnaGwOcq$EB;C=}O-GAzDm`U^
z!$dJ2RV~!AP}{=O7OGjOZlQ+dgzFg#H7#deQ0A%D!Qz*kgrOIlM|FgsWx;JB`*o$R
zD0d0nUdu@&j|c=Tcm*)$eHIkKexa0^m*HWQsIY;Bh8Ege=wP9dg~k@zT4={eQn`he
zqPD5DYA&>yg`kBuWuE3(PTF*D9ek9NEiBMfy4=b_Ys*>Oo|S;KvB2epNy6?J^XEiQ
ziO&kt&HY^}F)SS|bh6OLLSGA=Ep)M*#j1xyud9XUEoXLDn$Y6cSDke2W}&-qo}Qo0
zBAdTpp(kCK?CNEK;q5Kmag><={Vepi@QQ_3Eew!;2U!>_ng>ep#YaOkB0$?-vYhqy
zWpXZN67Wc@Eb^L&4Yd#wFoeCg4l-fbk!s=8Q^g3v(l2wE*su_>u-n4V7EB9K3yUo*
zu@JKmxA2CAF%~S2_%oigg<%403kd;aCIzH~^35H-YBbz(Ue6gxt1R%1o7XMym6@Bn
zm06cuqb%pOGQKr7+QK*2n-IK7BP~p`Fx|r27T&S&zJ;X|U1b|IeAmJ_%XuG)&Bt2K
zJ#e<=G2X&^O!$6Euwo`(y7|CzUJIIFVIuRPpE8L)e(auX;n{%-U)NfmKWmC`rV5>K
ztMCj9Gc9~5#aR|+v(;A50t<62=PkCmbmWeYuYK|DDuQ{UbG|V7_8BD?TKN2khc7g-
zmyawg5<SEpTj0xR1WO4ld}m?3g-<MeYGIuPzU#Ey!e<s%TUf))+2vkgp~ocGN(sp4
zVlCsdN+QOW%ZR_=GBU~ar9>}U#<!MhNWO;W`D&O2`c-6~i!UpE%`i&1z9r3DG@7^Q
z>VrQ2|FSk%*l6K<3tKI0;*WkkFW+X`B4D!xz9i+ZA6(uer%}F!KUmmiVTXmC%#$;2
zR&5u7$$MOEMS)!wezL$<`JNk~{AgjzL>B?Y@@n<>SlDafvV|)aezEYYg=4he!afVX
zSvbf^Av*V4$f_4?dC*7w2ZTe*^BnXYw(y6ABNl$=B6-lqH^0<n*+(Uej3nQmqCEL0
zIIoYpPFXn3b%v{-yU<A{#zfc2-xYd##==?4c?0e|=gU6VnPV=#Nq5cyt0q(%aDg++
z!X*n7<_mzW_PLmlbn2>wYg~kF6tr>O!e18tweWz)$L<>zZdtf(;ie4D-$MW4Z0fJD
zmXt|;M^f&d$ln#?IWBw$?LH^bCD&)w2K+~G(M9=uHXc&IcG5VnjSSn#F2<J8;ONs-
z&X@c)3fRt=W?XXRx$n-jL1rNvg>C0eNoG_L+evBSVm9bPQQH}*V7{i0n8j_Burb%h
zJR48gc+y4}8(nRbv{B0D*@!=#*IU{~85@mlG_g_EMmd^cqmIr0)<XpwRcutXQPFmG
zXTio(0xH?y)+uthpNjjnxNEDjjR_Sq>z^+Aw2f-Evp1}!jp{aP*tmJB=uXqw#KjF)
zq}&+xjE!100;h{|=NNZzky+P<%SJsL^=(I6mJP2BpAEMSkL~O+qZqrR21N`QVkrRu
zejD6!#;Qy-p|%D#8ro>YwrYLa@P7A#Y%-%+kOJKIm2IP`jrKM=*l1=WXyaK?l4GN}
zjdh28RfiO8!FZYqk5&R&iZ72it*N|P6XG^D+S+Kxwl=7o{c=}Z{&FqZ<GB7A9c^c8
z8N<>^%wP~YOGA1=8=kk(%|_Hl%*OV8p6)iX`JqM|J#4&Sqo<8tHu~EbV57GP^yRQt
zZrFzgPYDo|D3n9mPnd_V=M1zl@FissgJ9!D8neLl!ZP>M$2^o7HZ5@VZ}&?y@>T<O
z^oosFZM;TzY(%8hP@eqT&}`^7RN>s7?+P>Kw;E7$@w`r7219fyld5PWJL)qrVA?3e
zE|$4x)eXjNST-iwm}EQKzik_78^Z)AgeIA~0y6GYq`+_+BW%27<82$S+ZaiMi}=Ra
z7-b{xpT5yH#@+UD5Agn3t~Ug;2{~`t;GXC0)dnp5-Sv)*cWsQf@t%#b3{-FL)-Q6#
zi5_nIr#9{ueqZ<>Fd>D%qOZc;#edIo@#gun@A)T7?F<_;ZA`H-)y6a%)I8mGc1?eO
zRpIV;8pAgW2xi$Joozes6mau7_l?i7LG!ltRp#4Rz&Vw0?zb$o@u7`dHg4Pa$i^ZY
zJ7}|wk8Lcrv4#`eM#nnJ5*y2He8zbvMRJze_(brhxty`Z0$WQ3SJ+s|30^AL=v>a{
zoVGWce0eo<6(@4xoYkDsdliZ$f6JkUwKl%7@vV(7MZ;G@*X3&a+Q#U5LF)O=#(Eo@
zZEUfz!Nx`#n?ygWDDY~Vz~Kr_+6+}DpLBh1^M4T)9$N*luO9?#%jIup{`B-xV3&;_
zZJe<2r;VRDe}^i2Z0xnUAw=2DVM-`JOBXct7Y2|5H=7)@vCqbDObHuD8A%bN<e6#%
z*!2M$2W=1>5_(wZ??V3&%BtBFn~;8b!9#5u+60c<$Xc9T`MmOTSUJfFYvZDgOI#$y
zp0i@i8Nuu&t4)Bmo#U9=xFA)7hbrW-`DKy$i*sag_7xjf#oB9}7lm^uz`m}FsRTE;
zpxO9a<o^-cp-o`c=^Prv2;8x8mx*+{L6HRR*|;we$VfOt`LE!IqUV7O(0{qj^CTQE
z@`@NGIkNc@$e%!ggcHVs31mvuV+kjV*j=Gq$-)Udxj37?lSw;^CQvMa|1l?TH+VdO
z;t90$2PfpuDv<!`IwiQQLGXUTobL-Xtv5vB!|PHBluqD<VdyywWfCYW$y^|XatV}A
zAaBaa?FtE0Okj8dBNC{T01{}LK(hp%N}w{$PQWd#sw7Y&ftrG=Ch&9u)mZCpL=8Nu
zlV7ai?)*)k5rMiwYYAm-?F8xwUV1+GNZuvI6}5Y@=n?Gazkmwx2~~uCRN494|3Cuu
z5~wenMhP@dAlAEJg9I81XIF-!ghz)~{hK6^op9E}|M(2TcC~%BMKFP!1bQaWD}m-B
zPsvUKS}=MEv`V0L0?#JUjtvu7x7*!DYTF797s_$B@ZQXm-9CX1!ta<sx#|N-9^!i<
zP5jlJkL=9Z?feyd=LEVW&^3YQ6WCd*UUw0mdN)tE1lm_`RI!TVcn^++@VD=F{#d?u
z0v~M787v$Y`y|jefqqi#pTK|w1`6(2eZY$X2IWe=CjF|{8nD$%3A~)ZD^m5UP&0wo
z1PsZQADTc&uqrexR7*e?U?dO`uqB=6Z_CxapcC_`aAHDPj3;0TwuL5yCKE^rNGC8%
zz=5yxE<VSX3mgrvConRBSCe=xiBSoRPT*1kmlJp+fiVdzW~a;CZzk|o0y7g>b;k8}
z0`Da7UIOnYoDbW*D|D>TvT1L%?%CrK_<LgJc;WD~cONk46PT93^aLhyaNkncY7%4k
zu{-O8XR?TqGlhxTJ$q^b^ZyL8I3t0oS9(<)9w3uoYOfZv5|}MAa}rpXz=sLUr915c
z^AcG9oM*mNQFwu9Cip0U8SMf+=XfYXut>W8SeXA*4=zbyX#&d<_#}ZJ64;i&rwJ@i
z;OhjwN#HYfQQotX{t8%;z~=&zUJv;Xn<}dr#stz60u0WY1ip|ctrhyEQ1YAI^{f+_
zZ%*WYB>63Kc&2M>0^f<udZ8PHZp>}9Nx<d=|NhsBJdf|`={*Nr85Shnp1_U-jwkr7
z3hYc^mx%4*Ouyp#?KSU@OrcUfiv1+~-3k0G;IXueOxnLUfnO5%HGzG?KP>b&p%mDk
zzyZMrb2*2Y{6{^k`dv7G2t6Y7Xs*n$1TH?~$owgsi@E%h0!|4%oxm9ZXLD=MC2(Hw
z1);ZJbu_f^<9VyO_eug+xws{r?*m>-;CceL6S$MWZ{HUBD}fsc+)N<o%b2>#^>+gQ
zFohEM>mwI8`IPUFVe4i4tgFyFP*_=7;Vu{d1WF|FL=taSA8?;*X%ZPp{44Sgg#IV=
zq0l@@M-PtzeUUGT`o4_Jr1S87%~Dr>0R@tHOh7@Qht^bLZ6Uz~g#{EzqNspkx%~en
z@pux&rPv`*nBNpASSRC2Db`M+P7)=PC?&<xNz_Q<jq5IIE0aXoB+8MWM1>?OCs8Gd
ziXz6^nRPNM2}UmGDFJ1l$YK=*cvKb6(@9jzm8nh#d-xyK)=c6V;nxz{t%TF6ZW4@J
zW}S?tNw|{8k}9{*`bl__@FwAtVm+aXP`}WCP%5E!q<uwU17S84+9-*}65%FEWDDp2
zqe1!Cm->TA<RsBNi55w8PohT>Et6=KMEfK<B+)vFXOn1~M7t!K-Ey_zdNsb_$6vX+
zjqr}@?!9xW(9xeWpG#tSThGzH-U-7z9h2ykMAsyq7x~UfbV=gYsX`Q{On%Li?`wCx
zCo>l{@KLy160a9^TD_1&&m{UMF(8RU-xunYM4u%3Ced4zP?+64ESSZ<zN?hCpLF-t
z8qdHaUQA+e5-%k&dVImY;|mU=o);A!y@z>TPJ)_WNut;Ig8D)?jsNMCLx&_WG>IRR
z_$i4{5^552l9-!BI0-F@aY>9%LQleAFW21hBqB+eNyMZ`&ezMcqJsHtP5ztr;<=e*
zT1nW#TrxK^kwh|yR1&p^xmoo_5^2H1gpxU2zzF)D#7M@I*;qPjbZ#v%k4J6Ca0ZFm
zw{m-bTfjR>yqn7zD}YVjOXB?`rY12hi4W*|5|fgcEcQ=KI^SufF+2!Hv@1DdN#+zL
z!@w-MK<4x$W{93yLT7RcY;uwR!#a2Vi?wHqB#U%;UJ~;~=8Gg2B(X4wWl4OJ#D__I
zB>ayVu1@)0shX!nw|t9)!(J9AapXenB}q`*Qem=pD*Ti*iO-W*nZ&xOc|J>GMUtO0
z&bNDc9oGJOp*HENBvvQUv3LG8401)s3x30bH2Iy6bZrt}Ch--UC$UR(el7HyB)&~z
z$wJ3Fc1`-7@Yg4?A&HG*361$7iA{nx3*C~$_sse6d7hq;XRC17mPJZ#lj3%vJCfKb
z9+6MUy(^twb|>+35@(Y*m&BeV_9k(V$(+P5Oy-4IJoXFtHHm#m{6;el^dxggq&evU
z2DADA9?Po_7<#?I;UrEoORqQBQhmVhN&F%Bh)^<*CUGnm9~W>Ui9ZFL6naYN5m80?
zGf7;pKA_U&ocuKgoKNB!i;QPM<w6n{lem<`<s^bi;VZ(da9ufkO?jeb%d1?#YqlJe
zk@Hs)H<GxU#Jwc0Hd1aT@egNo65H0f{!ZeHOG@|s!P`kx+S>drk8+1eILT?gv~fQc
z?{mmD`Tt}3d6a*-CNxs0;Q?pIHvf@6IS+-OCx!VQCEdcmwt1tB6!N8<T+N?LnTI|9
z@;sJ8!4xu6D3rp56fUMvIE5l9BvVMGP&9>NDKt!>Q40S{;qerzr%)q>;wh9!p+X83
zQ+OhUXErKNrcg44eOG<ioxP<}Slq}{PAEZX0cC`i6*}idPs4J7^3+@|@cJ8pN-5Nz
z>#34LWR8LqUO<4wr&6d)lSX@Zki(D7RZZdP6kM&n)lzse<+49@lgaPA)T99^)Joxx
zw>;l$cGpg!P6{pND`zVN>ry_206Y5DrEXBNQt+hUO~IW4izg3y{R<Rd3Q7uo;jlQV
ze1P<=iQYk*70Rsq&Qp)(rO+S+%9GRLjGv%!3QbbzL2FaUPN6A#Ord28t1J6y+vTE7
znx!zNOdyy-j)3O0VWF~nt%uB3DYWKre6Q?ZsFbTQ;8_NLud96uZBl3}xE;f*XFSI%
zrWylSwaVoq=pa=cg?19ks?I5HfOML7&E-6wLN~$Ph2pjPtiAQ8yJrf$Qt17t-_7pZ
zS6$bu`un8NH-&yF^iN?>3WHM^kivhzx*yM1@x>GdO0=K+P+76sy?U>6vGY<2FQ?GG
zT);}<l@wl;OF2{MYbn%yzWKl&+%e)BlETmwLQIJUMO3NPg@#kynCe{p@mMn`uaS!*
z0vgL##-b_2a`|xq-OA*(Q%Fd^pY3(C_xV93ox-pb)}`<@E$5Tp6y8tagA_)j@Ola(
zQy7)Pc&Zxa9i2j-#ojlW_9?s}!efNi@(0<FRd1*8ZVF>lc!%*R&@{EMIhh13juX!R
zGv7;LO}PGtMH@~?VPXmkQdpS6B+ijy{>dp!N#XAjg}?9wr=~D1g;^=gPGP1eI9=#W
zp);5&1)5TZd}7i$Da_+M6+AbE^s<6v@)&-k5XDG8OyQ#xzHAm;mBOMF$Xt@b(iA?H
zCM+%%omPq9GU0rZ!lx;)A(bpo;WJ@=E;1{`!bkdt6e+w?svh;Yn&VzNXASkIur}9>
zFLMRH62OKRJi%{L_%?+fQ}`)`?^0Nw!nTxiAArY(6uwX4%306G6gH)>nZ*K4w+JO@
zTt4%go<#_@3WxGPq;PphMS|@q><}fcbDo_k>`LKYl_o!VgN!`E?i7Ab;kOj_b0$`8
zvPYt^FNM8QB<GhDe$B<N-EP2GHLj@~Na0`#CsOz`g+pT1A1NG3;jmyD`8#9Svk1Y_
z6pjh=*AW@Va{>9Siup-Trf@2Sa}xQ}TxW{;>B1RlOMI4H`-A*7<UNq{BEu13NH5W~
z6qcv)SsGVTxSB$%G+L)|Ersh`Ler?3#$PGiNa3+G3Z`+BLzBV-jzS9mq;M;Re>slL
zJo$I!y`92c283C<!E;CG;Ub>r&wIAL=_)ZSc%O@8M{nQCzSdQo>t7xZ8Nl0~ylE86
z=gE^skG#%}f{ZlsrQx08%AZF6?_6wNAdS}xdFR#fk!Ge*D2<Y7luDy;8b#80BJIr6
zqG?!Dy(Q8ZILXtlf~Q!T8<IW$6Z*K&;%RsexXI*+dY1$4#OIzT(>Q+9zo@3CbQ)#S
zsF+5jG+wLVxp%``HjQ$kwmjPw_Et#aolYLLlV{F{E*6o-Q)x`g=c$~AcHZ-H18@E-
z-v7qBsz{TnY24o6d0J>Sq1A<w*=3UVnKWvp;ZGxwM(s4}&?;$FHw{-B*E6!R(#Zc_
zQF`>U=_$L-`E0RU1P(OudD9?g?;fu&jXb6Kdx?&tz0WW7)=Q&)8jaIvl1BGmTn*A_
zC{4a7op)hjC)AD7cxgj+sT;0rnw{m%NuzlhP1F2lmV44IZ?iOlX%O(}vBlLQjrk*8
zZHjnXrqTPXr{xE(5n6pJc{YtUX@t^H(`cJUJBB)q7t?qyjrM8uOruvC9i-pRX>_4&
zY5e!SGs>OP_;QS=#Y&}X8XHRao=>A&8V}aHs%-FdXV^P=U!cMBUAKL{9t@PvxAQCS
z=nq^CTIcjmgJ0L`$23UelR{a2(&)>McDi`fujlMYzy5Q+bFt<Fn4kMx1mp}#<K;A7
zNn<cw7GtK=c5cB<3uL^?!A&E)-+QQj-nAcjhNLkx;jOvJyR$&n&@?`s;N39a6Xt-X
zF)WSYY3OMfOsX_&(G%h9nCptB!B;#?CQSE&&UQ7aiVJN$(8Enri8S_&Es{zjopxS^
zO48GQ3Lo&%hC46j9WlWfjuFh~G{&VdK8=xS=V|yT8uoJD%QxJ0|MGTimv?lU-v{)*
zk;WJSZwh@&DEV&-ct_~FX^a&xbh4XORQ?`^GL6Y;y#L6mmy{1UN2UcPq%kp#tl7>p
z6c#BtC5@@fhcwQlJ%<K(r;9wFfP9?Bj5KDZF)NJ=2V6WBq%m9YoLtV_H0BAOpUXM=
zjw88{^Cg$_k$^=)mn|u?SoALux>V>gp|s=^#y=Mi`XkSZG(Jz`v0*4U3@g)EmBtM&
zJ87&=V@(==q;VvTFE|A<^R8z`rLmR?#^$1-*fWj3<*3bYtrPln8sDT*qq%2_-$Q2P
zaqo9&kbYFm+w1qd8`G%V#<M4lx4Y)ul*VRGgl5W?G`>$`E7!n=&g|Qj#t(wG3EeJ~
zRXdoRf{Q0SEdH2l|4(V`7W{KAXH?(3d(-$Ojp<)z|C+|{!rv#w--MFCKaB%|4+=e$
z%RkJiktd4+!~S*i8P?G>j-_!ajmv5L_=)Ry8Yj~@mBxwm|1otPP*N1p78Ve82Sm~m
zgiDYNz0*CjL)?L7mn4d)D53%@K>;xk1QDitdb($Nx_b$dktirZK%yXmAQA)xR0LE&
zq98#~auoQti_bs*oI3B^diCm6)vNca!}L_)@vYMFk=T4iV!$@m<dfdC;;)B&IP_`w
z@@VOhDxV&Sq1Tl&^z(nEvx1%zv{*_HaxRR-f-ejHL!-^}uN^JLuN3%~QIL=>3VKOU
zW?y<oxjGWpM&duZ_efl4*p9?)(bi2t6TRej*9C7qZ2iW%AUB`6LqDA0?WcEdB<_zy
zN(6->C=kJgxLh!T3A<8Rw06B`^Zt((Br|?eE*$aJb{=t9B!amoWtJ9;AT@%T5!8wx
zEdpNz>3nq`LGcJmL{K_{{qv+pBUnGRU`bJT(`D}<)W;$y6~RXnr9xu4Zcs@s6G7Ps
zHdal!@t;&Kf_3ARD*4j3QK1SERE(fn1l1#`#46v&CpyYiBA7W=emsK8Lg&0+{T+_W
zh~W4HZ>Qg?5d>@JeN`yXbDjUGOG*tP!$zMF;CPSB+7Z-=pm79EBB&eTb}mI5h@yHC
z+<l^8eSxQpl1`M98%7|BYzAA;3Hc-V{;aoz%7VFZo1{b#h+yJyDJW>BpdmpU3Cf~A
zm3)kXrV->u&^m%<qHgmD!^cyV#ct2>hXrjRXv+vz4^^@wD4C_SiXcZY#}8E~)+U0s
z5p;~;nF!iN&_03=5j+*alMy`22gxUc(X}$u1AOtV;ve3B`RNG$8?TVli82v%j^Kp|
zzFC^{Tm;WYz$#3&J9rg;tI_&JPT8?s3U?6-S@GJ@T<g@!FGuhSThY-$$Ey)^<BV&l
zrJ;KSJtBBRMPC(p5xhp{iQu0IdPdMIf=?ru7eVg``b1zy;6(5`g(JMR#?T0g-1GO1
zU_b<KMbIyT=Y}f%1^sBA|ILTs?Fic3mb;#j2GZY7_}>xqT|o=y7atVC;0U_R$QZ(b
z{3!SOPbRK&$Tuv4_ao3Fh()mQj5Iug4<Z=BMkn}EatfEp3XF_Ei+~^^D1l0y3w#7o
z!I7qV*oeT4AQ{21Gg3T)L<B7cD&)^u<6m*tzp<fgair^g1pQU%pY47(g8T?3bI8l2
zQ4x%eAUh(Bi(m{L@|X0n5x)EKhIxCBSN)645_{WWnKV9vn}y{Gf)Y%OV3NQWm-(5U
z62VluJstIVWu`A<rs&?Z2&O;m`HY7>uh~$Z6~Szp^nKsQ3=j(YGUf;{H-b+DI94`D
z=KKg2M6fr4eY8&mpGB~SJ{iFxPQ+swpGUAXg2l9a!HnXil_e1jDV*_qX@ztdotClF
zUnX8I_$wkj=t^0%-B0GK2)+=ds|Dr!mN`;vZ3JIMurq>P3~H_e5p0fNO9Wp>aBYKs
zBVAE|4T5qAn*?Cdw-I#8FHTTsib8%$(ZJRSzKdXc1luBDmVVMHF72Rk=J}a^U~CFp
z?@^iA*SGs=>fI4ET<-r#==@ROlcS1|L$yB(=AH<C5n$0-U*$3x`y)Ja1g9eSE5hSQ
z@H>~aU*uyE9Q@UPAi~2$P-mHRP-N8_%Ap8&3&$cd4~wEBf*y_FTzUyIk8{;p>SsC;
z!JiNDNdais(-E9s?Pv84kIHW(<ueS8q<ofj1t9*L0uOOofBD}CE=JHuMPn70BDfsE
zV=79ixDvrtE@CQDR9uVTdIWbE@^sg0X~{#%4f;|9(GnTABDl>#J(5AZ{N<Df^lk+A
z=;4Qy0;)$pI+A&xLF!Xjy7ZmYDqEGycLIe}6jtF=QC!FrQIV=*?uXJNBFkDuRTL9=
z$YjNNCpAr!9vYDPiC-?EV(5*u!r#h|s(5y`oZd39w3}Q~#b>=z2}-LdqoS6I+A7Mb
zD5s*5ipN!?tEjieUy&nSuas9&K}D7Iin$|wTWZG6Rld4oq%lo0pB*DtR#8nwb!r|X
zR}mC~RuwclU#g+v%lXpp{gp)#<q3hAt*PRh?!^h}sHm$#R-v#t74=m#R3WKoprYTM
z!0=g8!!m)<Zpzjt<X2QBLxo>O&H=gYlS;*rzO`RTv+o3Iey=?Cq10xLKcFJ0f`BPg
zfRLaRXriL2isw~yR?$pFa~17Wv{#X(BCK-r*z8;tEmX9ma*8zyA9_*AR`JI{|GW1j
z;#Mj;UJX3?rN2z?5KCLDXi_+%ji7A>Wj0bE_$2MtILy>hFgpnPl**G|Jo!C4!(aU-
zvGf@s)=AK3RXiuaspekA7gW5cq8q!UqKgW)_^OIoR{}2y+*QTP?DP6Ga$XU93J|-~
zbAN3SChno4muQPPPsM90$S=Io*Hh&wz?oNfW%d@O>`WgOuM3=fD!^<%75!EGqvBr`
zZ>kueV!nz6D&A7@Hl0d^t>PUO@2XH$XetJ(7^LC@75fSY{v4<brh};%recVS_c)Ii
z{ej`WUKjo4t1F!vDetQouHx9?BE)N6lZTcoacG$|Ld8fG(Q+mHemTN!kCj$b3><0_
zj;hdAm@48bVk&rhW~k_TM6O>mFf1ff=dyxILdBRF$}`8asqN)7*-|lcXBs(<>U~r^
zPUW#ja0Sj+F^X|<r^#p)V^#07@G&a*0X!3#9|{gXsU?4ciitF-irFeAshF&y#29Hh
zRSl4*sJL@G@R5qC44IfrOeX0x!I%AMl$^mnh$_TO$L4;lVvdS=f<xiCDn6mA8-C^4
z;>=RXry@&y@UWj%7E-f{A65LM@*E;8R`HdJbt;yq_*}(m_N|?~RK+qCt5kfUBGOt}
zuA=oSx%3|r@e09NDJTz*9=t%}uQ_|}`6;l55vQW&b!n}N6PMDK*OiIizT#W2;%gP#
zRqRl)fiAkI*hYpVJG@JY{OA3mv`NJ_72m1&R>fvU#}Z|Wplx<3TUGqBN`CHxAen!?
z?;|~MDUJMT*X0}g{okwjLB-0R!JR5^SLAlxlwB%zs|dZ?YHH8mCZ+YTp2440>``%8
z#SyAfu~)?bx?j7d`&8^#@tX>+ODT(`0b^vQUsdkQluGcs;IoJe*FhnFh}Gvyf6zIv
z7MipmObtirX)5~6m;R#N-bp>K;!hPPId-ugaz(xWnXlqcey*ISR1oYMkox9P<+O@3
zD$dg1?gUu$H&?%wfper&a`VDX$vH2oU*MWBSYh@e7k{qC8j5SU%*9_t5e<)MxXQ&}
zMFGwGD)_pJ8}twr|Iy7ZrQK9<n^SyF;y0YPRPXthfFB|A<IKA%?y0!1db^JBt6kna
z=YQf$-tu-l<0cygHKb@Lq@mmCB84^YJ7*rXz)wc|z82)SphY$BGg0s3=Lu55o&I7P
zQZ?^eP&SmNc^^EpCnYpIs^M|X`-GTcJl>+DhQ~CN(!5V|(>3o)(b5{qXeg_poQBD#
zQ^{}mS(qQ4G7WT!m)B514633~Qc3f^o@I0V*qHh$Q&~e54bV_k1J6F-r?xfNx`yf^
zOKr_Q^^y66XpvbqQCmYD4K<^v6-8YQ^)!60VX21t8X9PLUBeq18fuU<bkOjWh71jU
z4b3!fGa^~@wy9xiqCsJ2Gz2wobEHOsW@>o3dTL1Xc1dDVE(972J^?qqX)5Y+gQH%(
zgUvN$X$Wg*p&?g8YYi<mwCx?t*3e4x_RsOn@a2fQU7yc>po*=u5u7IlZL8t*<un$x
zV^1yw+KWa%zYt(`GN0DakrT&TbPdmF=%k^G=Iu=NtmbW1^qhw0HSZr=97t!4+o1=!
z71)a!UJ#gj>2RZ-%e{h4e@uT#Lst$;@L$nzv1`idi)kDJcinka^ETx9r(;uYLqy>o
z8uB!}rs4Nsv0fT_i*EF!VS5ER_6nQA>>G#BhYs*WDmPi`tD&EUDH^6yc)h>BhPZ}=
zhBq|~(D0Uqw>6B^5Yh0ChIcg#)i8|CuqixH!yqwaVh((;zyw1yy!Q}O|N8<D7c_ZC
zq5#te8b)xsF9aS)sv0yQpbMMtoaT!PK*MqhVj2t$rr<EkQtrvNt!s*<A<5}$nL3%~
zJs+?&jMgwl!{GgXM^IPLd<~;CZ%ZZeNylp5R%|ra1PvbwJWkN@8py0aq9~Q`tD8De
z!z96ZAk3YPhP{yek%noU0uA$o3r*KBOT%n>=6?SS4Ku|=P<~qN)Q>gHVZ{Aed@g%l
zLE+!=IF;-Gr~VT$iJU%8BIoN=&)|Fw+%9Q>n5l(=ex_lO0E;y&;Vk5Pn_@B1)XOw1
z*Kkh5-x^kESgGM>&3hZLitB)eO&Y%CxI*%34PVngGnF+OZoDFYsbQ_)PyR+p{YCjo
z!#crVui^F_>E~1*Wj1KosNsi#$~Qvt^$+BgwNgrz%-F19i-zqQc90*JwsJY@DSs!b
zZ{yODkp4sos%4|!v$}@e8h+HUlO_@!U~|;NG(FWv8Or}8G>}i_$5CRBhF>)7)v!;)
zVGTz#?ANe39{!C!EWocCPED68y&FED;h=^?8vYP`twQ!s#WUhFbLT%(p~fZO`Jbe6
zV|+(79ODAWD%7?%d|bl`W_QaJ9$G#1%FnI-q$8Ee4ebg4#mLogMnn4TK+DqE!-q=)
zj|4W{3Y_IS&_r&yJN$Zn=6MYlG!%>?C5nGE{Hx&(XPE)0;Sw#N;U?FA4Q+NxSGf4o
zKHY*>t_F@B4P4W3oeSXc0KXFsPfh77(k)tBFe%0jnYsNqH=yQL$#=OLXyC`g{HpnG
zZu)&r#0SL+M7@o#*G!X!T@UcX<3dpsjv_sZ@=+9t;*lsGi=tE%MWZMdg)fTYQT};E
zuGlTeO_fulU^mhP<xbArGP*?6+idyKC~mx)%6Gpdqo_Wj829w%mdmB1C=*4wD7cw<
z*{HX@`PO5B<pt%;IpI5>`?v)(_o=QBMa3v8M^Pn;N>OjT<!`4w9tFRkCgvze5k=Lg
z_q}(GC?*fgtQPe?+pZo(Xle>~S!asAnM(RZlpBO*l36>7I_z^48@c{RQ7?-3qZl4V
z{U{nl(ItwPqG(8Awh~4AC^Dk(NBLhcw1`5ELWv@i%A?pnJsgPgC}Houz1Q!)BHy-R
zBC}BxjiYGJ5eb?7zMLjeG!>YVX(e)+ML|kFX&qUqu}ErJAShoAw2Y!v6gh0=Y9Kp`
z59}fYxlyo`sf_@w*?CzZzpcm;?47MV8AS(nBMLq>l)deLDvD>K=oH1%QOw)#?<gq2
zrZ$;;;&?WS=c0&S4fH?Tb>c1Gf(^dG8>P;o?hAra$%|2_O`Eczu2H<q8H}P|6t6__
zY80<U(NpxHTNK@+U~_z0`RH0!k0|n@xH>)jl0VGxdNvWXPZXO^`g@B$P}sQTdtGqI
zd_#Z<{&4>&-i%^!6hB^<20Sbs7{yyrye+ctuwxH}S+UWO5NYwKG)ORq{}LX;4lj}3
zi(;q%!~P#_^i-=4q8Jgy)F?g@O^oF5qtK)H={J8wm_m(0;~Z7Usr8nUHr*GC!iZvQ
z6dwvZm{B;wGVv%9QCLwVqp*b$XsZW?B4ujUCex++iCUwg82!+m1<K@(5tuUd*Qbq(
zVtf>n=&n&r5PGW33UeO!-||h2;!91U9&Mk*d6~kF?USBw944I>#q=l^N3lexni0jE
zDCR~nQ)D?=v!a+C#c!JQvCv6Q+j31miQ-d{ZMQW%@1f*^DCP@Hub|k%hw`6AQFCQ@
z(L=G%qgYC#UCUY<MZvSuGJ#h{u{?@C{Qs}WvXo|A6~z}(td3$0`!D!p-ft8>eKm{p
z0r)D4b)w>W&h<u#3crqmkC4<rfp4PN#N|atQ61lMTBA4@#otkEiDGLMhZx{dY>VQ%
zD1M1zZxq|3*g^h_%1^>X-$(I76gwGojRSP@oO#l&D0b5!cV(tl&*ekzkE}IYnSDL$
z*Bfa+i;AqfC+a=qZanDU$M6(-eit4>H)i^k#*BK;!b~qL@uuK_kU2=TUk5qB!%-ZG
z;xzr7JK#leEQ*uD=Q*O|!U!j#;24=@`cr^UGIJRkr-ayF!h4ye<}*U`*{Jux&VV`}
z#f2ye==kMI;GZb|<@y=L%_uHL!Jb@U2SlTnqPQ#onH&h|HIcm@Mb`~JX8*7BRup%l
z_)nDHrd5xmv(G)2NQ@fJ#oZ|GMRA`Iou1RcmlK|tTX9LapbnZbMMojs8{oI4G79S`
zq9bLJk9>A)-v(bX9jQ7R>X3A#>G0{OsH2jO;yOy`pkdQ>JgR#(EUlxAj*>baqs)?U
zDIE-3E?>lKk)1EAdv6%tuANs-|KCY@@NS{JjtaUr(T9$vd-O%+aUC^uJfVBGs;r}m
z4(QyO3e|L6z7nXe<97L+>IH&Kv;ZUewF1GKI%?6cN@dj3QCmkH9d$+az59W3tCdKd
z0NY|9@J&d4!KY*c9n&x85@hJ`>u98-u?|^>q9c<7j7k9^Ndr<Q_^{T^6~2%TswI=O
ziH@c^hWf+VI+}@E%{ffnTde4cVclEtTIycRw$M?tMs9xXyxt{pF8&dw5458Fb>!-3
zt)rce_Bz@KRn*p2$D-PK1QhOEID_w4IPf)B0#-lyDIHJqExmzm20H3^hE|H9X$+lo
zJgZ}$j{Q2G<Amx+>acZm*71UlcXYg~<3$}^biAgcr;e9&bk)6o?B?lsS;s3ny6M<_
zJHWpr^FQhQqx7q^{J!w}%YEH-^w9C){o?#@GXEF6x<U#5t2(=2@m@N5>li@0@z1|H
zUf0oAM?X$nZkT%B(7k^XQ&nlp$3Ir{{YifvZwj4j##N?3LCeQKHNT~!Ma%5Bb+94+
z<9MKsK{_-YQ5}PI3?ZM6q<gPl-eVss1Qwi1XCH>@-hZ5j>E3_OQ!BOlphAfcbVO)&
z9V2v%6gt`42d%I!2f~q3Sl2OsVmfhLM@)yI!_>Xa7H(vFJ-kx21Tpm|bXYW3+idoV
zbsZW?$0{9P=*ZVGO2<t4u#V9>#^{(x4LZhB;eXPHg8J9x9PAxrcASp!f-^x-ayoAG
zP1Z4mzDF+_AWzj%zIlLYngAcso`-zQ-fmo&bjHI{W@qd8n4Q<LK*t;%dkx=Q9iOmE
zfB2?14Y#ix{8Yz09gqAaT|cT+_lHv-3-)+1XQ7VIbS&1fg#KBu#3Ihl`69!gPM<JK
zdZTIha~(@{tkCi6??wKe6<(%;6<K|`4rZD57@qQ#>}}KVplUC#*0Dy%HXYyT_)^DO
zt^hi|;hai=uXON@(|SSIF`)cu%$^w_f6X}>Aa4+q@2@s7HswsdnA#%1w{$rH_zH{s
ztz1>cNUxnsWp=xc9Sk2GKk4{h#}7JoaV#-;r;uN~Fnv+`0AG>ubs3qvMbZ6JDXh+-
zpLOiv(yDu}*Vs2Q_X-@^)Q!TwG9J0;#ZWkg-*p_&@vn}H>^YfFWggdYg3FPPKXe?{
zafHiV$KcYZGG87jAJuV;v2!q7XkXxBu{828KbP{Sj*~Q(j`Li#riV{)q&m*(_)BEl
z9SonQ!%UaPb_|YvNnw>Ki^Au0Z2B$z#T~v2I{N$@_=mC6QaP2?ir8O2tyn+h5*Ioh
zx46*hxI&xP4P0d)uMQ8Lle=|q;F^x>Iw*F7Q7}rmDX>yMZCt}NX7A|uPsh!DfdVn4
zZj$dZx(CYlb=+fr_60`#<zu$zu`pXK7{khsr5c5sro^!Oq;F8fS0si<VyGBHr5K9F
zP%MTrF_fjA7}8=mb>3ex244)tV|X+Me~DHvUiN>`B3vSd!%qkIo$?Xyx)*3lvvdqT
z76WOi7<WaGO2;tm!(0NIaqCGRYn6+E)<}<`{Wns1K`X@Y&oe=0ACIAO4E1AZ5JQz1
z5W^EO)Qq8O42Sjws<YxhfvP#-Y9jl<Ts7F$ehMv6i_I;T>cqeS4%i>49Ru59t-3K3
zil&lTFNR;92}bvY8^&;OiQ<nzjzJRg6v*JHQ`0E+Wyhcr!>1jTPz-?>f<ib`&{M_I
zvQpDncjB~gqZoSc3p9>l@MtgFEQaPWY>#0_3|TRRW3XdzVrUUV%NX8@;q4f*W88*4
zt8EPJVrUh^Pj@Az9076#Z5>0KhkQ!5kKsv<B8Dz8bP#o);Zh&NQvyFND8)K**51n^
zcs7Rl9WtMfp);rHN9nm3W?u0Vd{Qd&g&1m2@e#x<kG{m=49e;rLk|JE#_+NLuL$~T
zjQh=Ib)&YySxl77i{Uj<)KAc!F}x8&-xzvv;wJkj&|6gL6T|C5fSk-BS#uYAMS*K+
zr2S)fGlmBoW(UMD?>$fRJ2AW)!_XLp#W0XM2WJhA;qe9GJ43Pt#kfItR{P!35W#<s
z^SdBS0X^w^KZfBk=rP1-jlo$T#PIQ;tVj$aM3$V9>`#L<0yPFr^sW50v@R=^Xbh|V
z%zXMiWl)DqBZfo_mQZWb$11jpa}tZ>OdFf?^q0z}!C7U8WF=#ux!9;1Lw*d4Vptr*
zs2E1aFe!$~bkP^&F){pi$v2M9DYD=5qsJIXrFy~fF-(YIVhl5SDW4{lQTyfj>vNhl
zOq&wJRBEQ1#qbdWB*wGd@o@|%#>vw;Yvd=DM!W<F4pp(0SutE6ol6bO-rX-#U=AJQ
z6M3$nSfY?w@JiY|&YEbQ0t;eT7z3Fs`b_jqRg^v7$V+1QJchL~d=<me7|)$Y;c4Mj
z?9U$mtcbKchJKeNrWITw1U|gSpH*L`%ojp(bqs3+_)^eQ>vCAs`qS)njM*Fh%`vQx
z;cJ06#PDqlUu^VmjNu!>srHw$iFRusGdU?aq?vlkmKe6iu#HoYU*SRn`MVg{4T8`%
zKLx&z;fENi8K`bxXAHYyxDvxvu39nt7{lop&M;(R_?c@$41dJ1hhZMWZ(QCv_OsI7
z81}`mpH;pNR>%rJzS8$AJ?EB>c*T{h0#~yLvUY|K&~IZf8!K(EdmL6j9K#XXKZZYJ
zI7)x}C45{^79C@Z?+jDy%-gxCD}5|F$rX}~YSN4i-t#-bUn0xf&a?FJdlJ+67|zAK
z2mHSUjqE8xe1Q=Z0~`G}hD)Lf@kPNYIU{^oNPekFId3V~=m3ms10@XHh~XwjXCTGE
zExLCM_hPso18;Zl&>Lg8D>VFlKftGQ-c+-7-ga`-h12qQPhP<AEKrJ<JOhOd6g5!H
z@b24-7$EZzfeHBbfHc)WngQO%vtvd6l=v{qR(uBd*d-kfKWd<)f$|0_7<kO^-e#0B
zyjL7dr9`&0pucA|Ei3rt1WkV^^L_2SibCLV1C<R_ddPoJtBL^_-cu59nECD{{YF+*
z1DrBWTnz(H7zi6^VW6ggS_U!=gbdU+P{%;P@P3-CYoMNi48yyhuWx|08giu5TTw{^
z1JB*adTMGenUcVN*3R>@bpwi!=PL-lMd6bj-G-`yLSaw-kT*A@k>TCgH#gAO@Ul!z
z3^aX+n~72~`P7qTc&})@rvL-l2A(qTw1HOap{%qs(B43ffm{Qv4e<HB4Fw8i@TsTF
z=Tck4^BF#^lhT)-G`yc&X#{3Fi0W>R=WHDfJj>1-{5BQS3j{kE-lIpq#>(4vk>?G3
z(j@$%fi4C*8;D)cdVz*o8Qyh2K>aTn=xTtN4o|U{1%5@)meazIZ3|PTyMZ1C-ZAm6
zi97?Z88~F%4+A|7^fEBcz<AokKpz7Uwrk*Z18*3p8&*CryeGB39D;#?2KpK3Z{SS>
z0}Su^{cXd0vZD)eEN>ZTyFQKJ9Z|%mxjVJ<1{oM^V3^_k>ODm8E7!>zYT&(xGE~CE
z?E40$^i_t7M(b?$6SK+)10zLZD`aX0q6RDjN&397Pr~pX6=Mbr1EzsT3IyW>jTH)S
z=$pyMF3vk2X&*fL*?i7A93ExBG2n`d!Q1|PnnL`1PqD|Y21XkgV_>X-59!0})4a#(
zNxq5|a#%FMz(fP9418f=l7Y#b6a$~K+Xki@_?V`v<NZ+nk%1WoW*XkhglU{gie={V
zwF$E<<#XRG;SaM7?@^tJPrh?FuB!p2xdPlhl0HxP&mseh4a_&Nz`#Ow{%U{&`OE;n
zG2qJz%JaE(iGe3i`j;A5X5e#Ci;j2xMjGE#EH|*yK%>Ut6^8f1hi**&XE#`VwZV;2
zvBSXk2EH_~*1$IgHW~QJz&Zn88`!`_AS=u-7S@Xy;T+LE8%6iHDsq+?ZhVaWRygnv
zM}6B2Y!;Z|utk8af-abz`<;R9?Bthz&Q#HJ5-sop7k>l$83^=J1G^3E5fS&JfuFd7
zos)j1a~||&jl<-k$64sSKJ6ES&r0A#a7Oltm4t6C7?{6_HHVfwVBmKH)AmVxjlefc
ze7$+l0BQ6};IM%sTtH0JH*wU!F)ke@QcWB;aKgYv1D6c^Y2YNos-b*=i^dk|l;M5S
zc2?lO1U)V283Scii2~=iK>Z{!{cYg<Lmap){bS(5I{&|d63kvIUp8>XKtU5JCaxN|
z#;M;Z|7YO30Jj7s=Z1ls4{@z65;?aG+!36SEB(ygeOP+Wz<q%Wn4T&oexJs#-3pl~
zw$%TKiEsMJg-sMO@!K;0oruIN`9)3aODRstG!s4(RZUbgQQSlc6BSKVGV!SCeT`Pi
zL}?QxP4LUN#{~Vnld|JRpp5B_i>bVcvI3VAG~Gn&r5?Z2V;L1pu&av~`Dup|XR;qR
zQN;v546AHn%VyukZT?NYiZBbo46OH6H~CeGRNF)y6E#fqSnhv941v9^X`<Fc%s#LE
zL!wRUn&9_){E+YLU4H`;4NW|4qN54PM23l$CbCWVO~@u1n`mM}F%d8kGSP@5+N=aA
z(=8>_^mZEgBH4ZU8Kr6Wl;66iv>n7#x`H)cOKECiM$FgTM3#wWw8_9Ax76T{CEZp@
zJR31=;-|NQEd+huCoel8ag&W!Cfb;2Ya+))E_?E3u-<m*X5V0I6N6X#hM$#}y&G)D
zK76KhFulVX+S6z=r6&b_wp+^QtGYd9f+ssnY54dvCOVmT%|uTV&zgA7^fvK$nNw_{
zvxyf>yl8sI1yXovKkvwf-*!t~OmyW`UQXN8H~5l?22U#K{en#7ykg>26WvU2>kl4g
z(L-qKZhD)vP;H*+eIU(K6+Ud6-AkzL$GI@k+e9Cc{o<|Q{WpWJn|Q-SUlTvREVBs?
zf6sqeUv2TdX<~pF!WOX~2oH34%f#Cz&qELLxJJ@}CI&IqOdK=4A0G#sm`>Z87-Hf*
z6GKf5Gm$W1nRwsCa1)w|sEH3ujGzmd{JBT!ek$v|O@X|hrC%kv_ckeFLcQl#*~4v8
z^Lc*VM9hR~^1|nzc;9bOe;1|j9;x~QnN%4q$4zWnCyjb7C27JoG0wzzTEK)WG>kE^
zy0emRVzh}>Zz!WoL{`g8%|A}*csXrbO=YYQ`|v@d_xuTd`DtPz$5OQf|F1g9#AMNQ
zx-Cr+V5*>Odf0vcM*_2B(>Togeu9}MW|`Pw;(HUbO?+(PD--KX%rP<7#1a#qoA|`U
zrzRGg=<u)f<+$8=CKk}!3$>cmKW9Ee^<I#8p^48-KELP2f5>Kbk%<Q&IM-jIowC%#
zG81dqNfXOWtYG-h&G^E^N=9hy+@D{~Ud84{2QLP5NttEoY8w1Nc*w5oAHMg`xD{Nv
z#J`rcbl>T#(s~nLo7l+3gc_FkH_$nM4KF_xV9^Jc0-I>e4$5Z6wTazZeczhsk}UpF
zwWeE5{L!y*_A%)@6WbW(H-d97c5PHAkDTo$Zq&&n_`$?Z6Th+{8j95!P$qt+kD2(7
zXKi;5w%-<@5jvj;>@o3+iTx(7oe1n@i2b8<t0gx)8s5hUT^6o5LLpr}D!4d5_&c4}
z#32)VvXya*gYTXU95k_Ls`S;?z=&1St>=P&m?(cec-X`dI>vLsT9*T)$4#8zIul3j
zIQ}$ol1p?Ph2l76;x9I8;yQKu<<ln4m^jPTV};BSoip*biGNL86q9wH)B3&ikDwPA
zM1?Yb9GcDkONV{z#@?-gOZ0rXHPdAiS03W4wCeLgGH-C|7l-d~><pHl{5MV9GI86)
z<3)Xi_9~=}I;WKEn|;^BJrnmCzuN-0`!wE}m0KW=f^l5F7?}Ndi3fDV7gFIkio{VW
zj?!^F5=YTEipNnRj>TUpr5A^b#gQ6ETHNb!)w0UX(LtZU%x+8;cr=dLyCh2(pP*zM
zj|on@d&QaMi0Z8Mmx-fn9OdFjkE2=~)#Kho(B|di$UGTfsvtncI4TM7_(OhW0jda!
zII2G6kL}x-(^n&oUx!Ig#PQCd^u5iM=j7a)aeQ<tji62(b>rv~$4hb4i=%!VIdSC1
z(IAe7aWsviSsYRv8F46a1mf_=(RogoNu~v^rV%uX`%2vn1migQp2F0KO$!`)$SKz<
z-1s4G62~Wp!xWp?A=q5tmT?eg#Ss>ug`geR<&c>jN2@sAy&E|CNE+#-am8B4(I$?k
z<LDSi+qm}-{bU>+;%FB~`?&Y`9Qj2VG9nw-GFh}I?t4neNc}>5Fn=bFPI0^t$BS{)
zDp=y#IG&5+`8YQ1@l(E3!3;jg^HI7pCp|4d(Dg5g3aO`56Qye$FURpl9DU<>C5~6)
zcrA{eocb|RH$i*E(LL_HN97w`(!99$wISc=^0jKOxc5G`PuzRg+FJ-ec(qIB>v8Wj
z?*hX|J^e({fH?Zc(c`rgmcB_P17zyqE8@4}cw6YFa=y+T7{{PE=8wgKu^1f3kT_Ha
znuGV^7#hdpNmNc^SRC)iu`q$p5*QxG2XWkt<5nCa;usmnB06mx5mt<23f(EMs21mD
z{>YDG6#b-_tjCdzW7q*H7KagsNwqcQgeYQZoDK0Guqm<?$M(faUiZ}RXUcZmyBIli
z?ER7}=+?Ud;?Z$zaYExbz)Hb)Cxpg`>{vQ~L;1rv?%oR2^99Do@zmVRXO1fq=m2pL
zOcIn}vH-`A6q`z?jbmCIEicKlSY3eWam)~4W*lz@lrD_|gQkW)j$;nTP7BnO=hDsM
zynf}(XSBAFKNWOd94TL=GD|+e0>P{!IG+jppma$bpT}`TjB9Be%h>Zcw#KnMjummN
zi(@^#<(RaR0s_3V!oP}sDDY}V)~l&3T@&XKqB6l+!6*1i6x9yMU&rx}BX8mg8ITD!
z#IZ4swK?)P4>`}*%%S|Zaa0(mY>tC}h&$`1Zj0l)IQGV|Pl#=gV^<uz<JiHu`_%uv
zVE!N|)$SCH68uQFFPgE35j05tN#LKUu%~ZPN#$~mOy)15sA{3Wel8a*VrbaX$DbA?
z{Y`XW&q9gaI3V~31wAC_AA+{p=RYh!`U{UAjpJAx$KyB=#~DWPK0lTG8OLcMKzvew
zQ-c1*mBdaZlc_{q`D`5LM3ukU^Ej@=ab9FE2ufA|#PRP#d@+to4{`22|GR(7SL0Zd
zm3^J-#^3TaK{>P=f_dYWR2JQ49B~avpko66(fw$O1ZpR6FOK_hR7`k2Tp)ph39PCV
zNKYUofkFv9nn1|}3MWt`0bc^e6L=(nq6rjBpyEvVZdIk{w9vs<vS*#iVKy~^G{K+L
zP+_)20{NpuN2iAV=#ot!UrBk43inB+6DX5FsRWkxOi%gGpSYY-Hi25xLd4|~c%YDY
z+TlQX(HZuqLIUaQQ(rmcuav;!lu354oB$H|ex9GqDhZH|oZ5=nstHs}pn3vYhFl|o
zClaVhx<+DA`CsK~Yvj}da{teyItkQGpjYWYb^>Fj$n_G)NWh;!eUWV-Xu|}C)Xb3t
z9`UVAEGM8Okd^ReHjqFtfyN2X?9`B%Kq%n_1?3M+%5Eeuvm;*jHKCmYGE>t8nh8u-
zZ~hR3A4;}JpyflXzV2(4z_?m+P6D|Jv`(On$Uc=o+XTKH!ZVWO4g$1GpuGT33c9Yc
z@@0=~ma;C>q{}JKB+yAru9?8I2|Ooo-vpjdpmPG<6X=n^3qpC<1YS<yMWLsQpf3qZ
zZNqf=W-sNH1iB?a@T#Cc8>wu9rEDcna9$UBUK6;dpcL+vKyQI5+(!Ubc|%B&LnZwZ
z=%2uw2@FVJPy&M!cq@Ued;J3w*z>INb^`Atc*iTf%ihLQ&&|zd(cpGX$E*ndG2cHV
zfxK!xh9$hyifdd~-b-L8oiit}X1x4(s!Znlyb2`nK>{O$Oia*`f<_YFAw;UcnxIiZ
zSxZkKdy$`j$)IzN3lYQ<NF-n-kWAo1_CEoeSDAci6eHq{<gn*kWLMC9LFsZV9W6>1
zd?t-aU~B>er|<hm{4R}8U_t^PCoqSe>_`(6n3BL$fhP$%If1zw(^<qSA0;qT)SV_M
zInz0!-=!HMyT4clIkN<wodB6EqPNc_CxQFLGCmOsKTTlA+cMKU268=Re!^Smn!S?B
zezN+a1QsXI&O&<&OA`1z!EY>aQh3YK1iltvSpv%wSdqZW1lDtQ7D|6#kXMOt_$uKo
z>0czUnh_z2z7%wA0*zixr6kkbp1yTLnC)`KW@6xMNMK_E->@?@egb>xatUlsU{?aW
z6WBseNZ^MAcG7kAv~3Le1dqkZ{4Rm*2|P6@^v=-C9gNd!5>uCJk}@>2>UYY_fuZ7?
z11&~LwbisAIY&SE|GFptl;EjVnKfTgeolbdJ%VP8FGjpCf&B>_r9U(Y{F=aT2^>t|
zPy)X*-iKyZznpR)!82kqsguJ0ejE6M2H|PZO#(*}I84`_;HO$<=PXI<(<H!jEP>-(
z>(sOp33OSTnj4TQbBZmp4;IoaoKD~jm#G&s@6eaVh0Z2$iLsyH0X_1$1pZFod;%9l
z(Z5{2#>?dYlR%66N<0v_$Z%MjN-*n*oGq4gC4u*?w5vjR<j1Y9C2&1~8(bDj=1}u(
zMx4O61RXI?CZCiQ|4ZO5*MH8JqTJ_op_9CMnL=E^@^C>5DHaL|%xqB$g#|8R;Smd4
z_7)?PiLqAfp$z#x3&kzevrykc2@8)}sA{2_g_0H?vry53WTcg{P})Meh4SqKytyi4
zdAC?)Eez<MN>EN@39eU{%Uh@*vScz#$|{w}u~1pyDi$EXi*@o?#6-X&v8r1*KP0oJ
zg&LN3y4;JWr6(*jaijrlvTIrRE-hHwLLH08i)5a>CUGk3TF7gVP0+wXLkrC;G-p>W
z{KNz4EM!{9u;8~K3r;{##R3xr5~Z8niKP*QEHo0Frh<~$n2lN>pv(iY2UW6Yr2?&Z
z5y`O-w$Q>tOAFZ+T3I-@U*XmP*YXtJWKK&22UnFpc|4eFp|yoJ7C+IEZ`h%>oPyCI
zuF1SsF5DqKX`zFK#SB{uPg!`{f^K<N^NtptvG9h4z7{%Jc-F%Fs!DGQ&slih!YdYD
zwb0o@+cBXo7GAROg2037<h{t@_ig;#$v{`jJ2H<;-^&(KCwgb$@%Sp9p4Lt1??KJG
zr0xR0m*s8vz-*p{*94!qrvSYKoxWY_W1-5_(CZd@PYGqt&A2lq#2e#&7T&V(HoJOU
z>2Kjpx=p3v06}*hDMscy7T&e+frSym%?1iOM9@Kk4z|#EOFCWgJqtqxXPBVxTbS0z
zNB(e;-ML;O9x1RUXhcvlRpHVEOi>G)=6I4Z3x);LLfpcK7RFgfSg<UNvA}<k56qU6
zoVAnEh}nv5!J)tXF1Z#)Sr~00Uu4Olz`MZ!Ddh=j?JPf*gZ*5hhVd3ASeR*HmQXm+
z!Xyim1^#=Be~N{v7LrH&#2;B$|GYfi!VHc`;9=+dkwogkSLIv#6$(82nKIkL#}>-%
zR~EAAMCu$1b1i&A;VUV#$A<dlhd#ByKFqUldrWBPj1cjB3kxiKUN%U~9)8BTc0-Fq
zqZ^wC4wMgmZegi~?G|=eSY~0lg|FyNEn9KoR**j>^aXu;N@%5pRRR!mX31YIO4raa
zEJUV+nlx&<*21?Zv&YuSTgNV0_?qteMXPTuTz>8qf(;fn3J&o%w7<X|ri7T?EM&F_
zx>e9^f_}$^rFt{E6E%Eq;RiA;T(Pjz!Y<3(FyXv~-4=diK+&X(M+-k&_`||s3wtd5
zV&PW{zggJ#M$TSR3;Qk5N{es!IZcyq$%~$lX}8}k9H3c*O->bQT6vy-ah<$_>|UL`
z>YvCb^|S%5^5eKxN4Ol#^RMsY<8&P5B;Jy*<cCgJ_|w8)T<R^Hq+^!~sx5=3EKqZH
zk8rY7kiusyoV9R{OP{OEA1Ckg1t#v5IiX`_g#H#xde;RD|5*5!CYm9a+#y}$@>M5~
zPo15s1}<56eYgLktiV+Z*DMrBqF@r&E!?oc>(PG}F1?p|lQYiNC-`r1yaPk8u1#%!
zvG}@yp*teW3*udiXK!Wl5_!+UeY((N8P5#$u5>9$6iT9a5+#z}#jbD?k0enviHjrs
zMUoh|Mdk&!SQ4p8@Pe3@1TVh4@{T!~k})V`pG@&3y(=b*9!;WT5@nMpCuAN=qEr&4
zllcB}ab8S6ye5?q{8>xVxEfPudJ^T6JVP+ElHgZJqGHnPKf5|6C8)la$)>OJw3kLo
zl_ZeF<RqpfQ8kHbNpwx(<)pXtRZpUc0K_$tcp{0KNz_WBcGA1V2a>3h1TV^Ulc<-(
z7CV)f?D}G8QW6<S{w+PNK@ts<cyKjuGQOCfLl~OLtjx}<X%Da>1Ze7D5}8Sa*vcyk
ziy9@tI|1ID5H}VT*;dmenkCWvVXvM{A}fh-5;YXLMG~!PrE4;AOToz&v{e#00vxN8
zm&;lBPNF~?A=y^Yc7n2E`y|>;lL$H_@l+E1#wt%I(J6^%Y3G@8$0VK~AU~7DU(w<O
z&n0nxb9(2bciCn3`6O;ysRS<w4w)|s&?SkN1h`)(kIYv@&ox0`O`=;8-IM5%#K0s5
zC6UJ|OM1cnRuVH6r6>C!K(8cv(@M<dX0!B-BwiPo*$*xh>no~sFWofRIJ>`)e^XFu
z7?AXq8iKcl4C}s=#Jdl11viyfkikiOkn|QJmJUhcy(G5v^9|)(%*|jLCcyhi3>V<c
z`1E0=n~o58q@WQ&RY8Y-(Tb(fBy=&rSQ1VWZW4y@JyXzl5{V?NBxZjj)qBmC6im9J
z%{~tdak}Zu`AMw#Fhp~GNdNDrj7nlOBPgTQ7(vG-ajdJ-X}YxgCy6rSk{F-F1YzWf
zNlX&cM1Epyh||HznwrE%Njz<%qm5}vOi$w1Bz{X`23t&GSrW^Wm?b*=SrUubu_QjG
z?+Iu4B*|}tP-uK;E{jSkZE6;qm-L=cI$e?$CNZC}<49j#kQUGxie>z>P})&8$a_M@
z%VLfzpe#v(SIh&u{GW>~$Ffv_Zf4pF(c+dQwkEMMiB(B_k;H2HXA&DYe3sJpE=k<&
zS(+JIo5WX1?<#}3dA#baOJaS}yMVq_Rp#Qx#dagZEeT$3*hCE{ds7mdlirOkZ)Lwt
zB7QB^tr28)*+7LpvrRO;OSsT?ocbho(8H5hIwiD|25gc2gD7e=HMDA`Cr{tloy3nx
z{FKDcoDosI@}D`wrz^M5`S&F8OA>pNn0U^={hWX0Wj~ooH?%(qX|G(4>pwe28`>yr
z<6shpk~o*d-%0!-^c+dzXcC77=G_ioCLH6?k~opXpImCB?BsBTbZzMXUpt&+^d)hc
z%hVeA6o=d*m^kW{o=M`Y5Pov7%q-KmR`U5IF3_1rh5k$8A1<&-TutH{7pNrKPYPX1
zdiPO(P4<rHy`03DZ8Fo9Brc7T2(EL1>J#K$;?1PD>)MSZI#yQr#_v`VWHQ|r;0}jV
zRblpS68Go>obGWU&RPK*|JKYQE@*p`$dn>L>ormln=h=;*hUi@MQs$bQQt-b8>u$Z
zY&>D3rVXEs;x-<)QQ1Zb8;{y3XCvK4NgI#ZC}X3n?d@7$%Ertd*`;l4xSZ84E@z(c
zSM06yKjW`?wMjUx(Cf<Es9>X_jY>BD+3jypH;?iJPtVA)cKP4h<$vR>zlsgmsBWW%
zjjA@P*(kN!U*?cZvE64qnPIw2v6OQjW)rn+@6u4)MjZiGb}smDwWf7#{MbjXXJgcv
z0N?r|wJEa=*~uJl?<2(qU$03vGHm#5a8EGu`6MgbUQ7`OYy@p&vgmgyWMlJ;(1BPc
z-J75h`}T<(l|AD(wb9ZBUjjE{b6-o%ZDiR9(^hTd)(rx0mTpGSLS#2J31r)7W%FZ(
zv>Y34Y_w$`L|s;IZR5``(+EyJ+N_<84z~9)xxEc$$$U}(-Y4+3`6(NGz3gF5pN(xc
zzO(VHjpuCWHexoOx6#=~KO6mR@7d}Fo2Tr_-EHq>>5DeH*m%iCR~s+eNXDdYHr5Q5
zZ&Z_C;ac=)km*$cu3z<-cJ*Kn8+kTfqgQ0*^cJdmQbXN5W_#JFd(S_8aAqGHuiJQo
zqub}-K2_>#dvD%`9GB`1lG*f|HU`)jA*SXn;c|RA^Ns*-+g^avz2CJl(8eGegKZ48
zG0gUk&E>JYx#xpJY`jN9oewhcK<f8xj9%sEF~`H{MHhlaM@hsV*x1t}m4Gul(niFF
zYD2TVH}He%dWR!K1%B{C-mqcXSYTtJjkt}3jUOWNCpIh^#Kv?RL%L_%HXIw1Y)rP{
z+Q_%@p^b6$CAQAd*%)hMMNg%~3&CUKLt96OZqJsr=E~t;<Q;S5@ir#dm}ukBp8;mS
zmIGznQ2kNLH77(o#l}>w`8K+j2(0X*d}L$Qc`5voQs&d(f4?b1SIB(fIfFrDV-|g5
zhcw&9$84@&h0&!m<}lE%N^|L8&2xCU>Az0eTuq_Or#9x%0t+SkyD;N=zK!uUbE+Kk
ze@17vvEIhlocBh7#q6_<l{S{pX)np2)A$0oQ$x#aEVuDTdb6!#LZkLbyi9O|$5o8<
zO2IWYzOa$=v@*G6a5Y2nx<dS=C}Qba8(%%d>x9#ixq;^Wu-g_JZ!VWM+W3Z1HZQ!1
zi|xk1W`VyIbbPy}6)HB9j(Pj(ZKa#NUXWMV?KXCB{c+I1!S|dRE=>-KI@oDrmyKgK
zj@#JHShMk~jo-w$ei9Aswehpa?h%yZ{e=_yem22Ay5G0*enI&FPW-!#12&G>-ut41
zoGBZJIlnXI{gr|Y*aO*tKPZqL7+W`wVVgcwK5BdGGfzK%`VHR+hN_K=bW!1oCvET0
z@V{-GqBa|+Su{Pw_loCioDrDWvjXrzd(mfpp6!0##sx<1Y5zZ5lUZxB%=5u{&hq6=
z0iFSU*~S$c_iYq#aMi{&o69?H3VEI(&RW-P@GyFUTQ+XnxXalQ$Jw|2TINa3cWnH}
z-cApdx!#2Io+#xR+?3&2&jlS%xUhp12ZbC@&xDEI`ArN-o+VwxLE5-b<YTFr<E>ym
zQUOvO?^RWrgY{jq2}(G4)Il`|)g6>{@R)-N4k|h*<)E~KG7ic*;4=|#13ojApLt4D
zOQoEHbjN#`T39!aSw1wCckuVm9^i9RB?phQ)B%NAarnPV6$e!vY^j@<T_ghzNU4n#
zH+0Oc!Ol3S>7bV5y`|v~UU&CM90>1?Yg126xt`<QC)W|Qu7mwuTQU3Ggb;6-8#<62
zJnP^&$Gc=?I8Yn}9QYl4S}W&rrKU2S?Qnt4rvpI;nGV`GXzL*4ppk>-4ze6Hc5v#f
zoST>0)Zu$44=<0Wkv5}?jtep5C$5mg4q7;9$!<H|HTTpUnW4=^pcRepAlJd{evP?S
ztZuGw5$LothuPMG+2(~{JC53to^rg9Y46}k_HAs4ulqVUczc$7skO{osiz%ubnpyi
zjs(sfkUBXaB_2}6TMeFf(Ahyx2fbK5OL@UTH^;m2d(i>c^DYiv687xs;OxJxGN;S5
z?aK~c5zJQwCFl5FnN_+w=;0vG!D|j8#e=+6*qj%BDO=w2hSFOY@C^rj1?VH_>yEc%
z@wGrd2mKukaxj=pI~d^L9mo4Ug+HLY<zP;^z}t>@jo?pOyk3m@TYlHUKnJ%s`5BwL
zFZ+4b7{VWa9em(m1Sh&^MzKnPp^kU$9wzAf4u%WB%`opR^{&?=IfJ((UVtKwcNwDQ
z`;+`%zb{1{=nkAwa7Q8Lz;N(+K9=UgbP#uN+{FnO2?rJ(!$pRRB(3D&cLxVp%Yp0Q
z8wZ;l<U1JUV7`L|4o0){4yHSp;b5$T4;@T$FxkO4_Iai<!NEiU#yhB2Rr&7w%tk+C
zezPiN)vA>6nqpHNOm#5L!T9Rg-~EvJk%N=Hi-d+KCx6H!XZ6VRqC3-O(&dIIAJb6u
z=aKR(L1&99<WDWD%%!*7&Yb7q6ONibwnlzoMe&PoH73xP760a?%!Lj<bFj+67Y-IV
zSnOb_gJta1JGo07%vw|IbAkU(4^7-rc*qZ#RJ+{43QDFIpSYrU;*ZR`pQf&K@JHP|
zuUDKq2kRLAoMq9OwGO^w;4I^wz4B|TsxYx>Qg-8O2OES8i^|jtZgfy-h;prN9`Uyh
zULBx(@8Aaqo9XAA+?^>~9el@NDHq)4pnmz_s^!If*@5kXL*@<#<?7`T>~yfZuCmAB
z??Ko_?BGX+zhM6SkQSMkN*ShB1C+g7jw%FyW%WwRJ}v?d9;q4naY-tvRzL6??Y5#g
zi_%tAIq2XJquxa^7k@Z7?BKG4D-Mo0IO^cEgEJ0}G5k;YPdNC~!HG{(kCQnnjhvHQ
z8RjZXe{m^zh|Bc%ILw}9U^@Ku#FP13&<oVxr0IDFO#dfF@UMf54lW5L%(9eX?aQ>j
z>foA#dk*e9xbENvW5mH7p^Ex%I#|9!X1c`%CnHe2Rnz|jXV><^%rf2O>fNeorz=VU
z7X@7uaq)<Y6c;=C%Y|GVJTAX|MIvRku!|B$GWjE8?~N&a_sG9hR(6fAoa!RYMP(ON
zT+}-4_ff{hqb`cO*!z{VV{-~=Nf(c~sNkZai&8F1yD00ToQwA?sf>$tJ|(M@vhTEV
zYLb%fqP)vZ6pR0RTKVl}X5)>4PEUkBX{S_jv3j}8EOEnInUA}80N^73(NHxP)m>B-
zc>bfIx?dKn;o=DwwO!P4G2~!oP4>;j%Lg-=TC7TWKu7<f)OAtcMFSW0TrhjLV5nkq
z`S9xE4PD@)w8%y!y<(7!`d!E_hPim(h2kRMqK}K$T?AcZx_HXP(=I|T8o9`F5q8no
zMH3gzTzr%xH+6A)nmpwf#Z1cYTv2x3@e?$6LHgy-atjwNU9@r0)<w1p3cQumw3Um<
zcZEk6YMSGM*<3+C{#<GO5VUjA-bDu&)Ub24^dyHcSRQp;x_diw!fGk<ePQxDx_HLL
zD=uDj(aFWLE?#oc)x~q1;wADYm*wYakcp`)e=FA6#af>FT}XMs#fvTu&yu?cO0aXX
za<N|EWfz0{W|cWC_1u@ny4_rKchS>DFOGD3q4wM59xn1+P{aNl`85}$ksO(n!mW-J
z?oHDTX#C}Esbta68!o!k34ZWMV33Qx0{3&#-^H6Q--6;D!FkKY+e~*e=Wj_PrF_2?
z#Yx|FF_3nv(3%)8c>KYfTo=?fpiUO)djb!osybQyy2!(sburJyd>12JjC3*1#dzA*
zg~~PDh3!If5q0@VWXN>!Lh+F9!r-_nG$W1)&aqnxvmXt~jPnve`TBv98)QoW)?(Ii
z;kp>(Vk|EWcPi(L>Z4rzC*}M&F^zPzz$dOYp`H(2Fi{&5vlCoQbTQq<3>TAJOlHrQ
z7iZH<Q(UkEQ$-&d6bXDJz%)V0XRrEvq0DqKn~nOES#-!Rl-DaM2ggbuyO<-G%_Het
zD(5m%=;Y;tOrN?q{YYzq1uho4_};}2E<SUy$i;dWU%Ob$Np$fAW6j0qE|$7j?qY?D
zk5fYphfAc(Xg9mn!nDxtSUNc?U956J(7t}w_xah&2ZYzqC+SWuzM{+7p=ST2ylsaF
z$Xv%cwL@F`ds)&AE;hRO&PBh{L2CZS#kVdtvsd}qo7nDvaNYi)EiSgY*e04FXV<+f
zHb(&#vC-|K?hZlEcTw8Tmv*|?<>Gf22VCrS@uQ1hxC*)W$;GVPz#c~EGxE;@GdrhN
z*3M2!-<4JNaYk-t{>n&MC+`=S*<bpFE?&?4jfTCMxvGSG(B<zVC^a;6jO#zwF*|hF
z#St3zX6CoWLPy#8!#Vpar59c=m#>!9VWIMNTBz(o<xdwUUF75=H{ZLHJmunwi>ogF
z;zYPSPeiWJA#ldUSr_MA{O#hR%fnWb^Hf_=X1d^dJKm2usr*AfU#$E~M;aqDk$K6*
zWg#4yqHGu?SNKx7=Hj}Gy7{P=j~gy-y71+rcs_1%{c&;6#eEldTwGcxH#(u*r7A83
zhl5N<4`e=dEOYFE%mVo+n2$&DQ8XW?k(-i_!uha^Dnmzv3gu&9I48STt0MUz?Or9!
z?C=wr#qu%per9Suek=P(Rb6IE%ja$kGLJVck&j37@pwKe=c8mk9?M6$e5B{2R6go#
zkW1&IOg=W32ogV1Hsjrv0ahuS4^mbypN|1ci&o6Xw1qM|Rv{m+9>`pLAk*BJRw*At
zPszg?W>v`t@==?uJQAv!k81gNA|EyLF>!us^?cOG$7`F5UA>pt{jKo3WkYjoglgsE
z0cbHI)TwNU{5tvg=V<1w&4F^`Q|srWLB404a6TI5L&}FgA96l2^3m^pX0moxiCUpX
zlhWGN3Mu&r<fCyu{)ejX0FR=I+J+EF2%!i_fWQmVl(NZgW)?|EAlZO)lwJg)Gz*|2
ziXc)1D?4R(XJ=+-7YouA5JWms1Su*a0)h%EARtYe2r9z&&dtaFeE;*@=REH{_uO{w
zx#!*~ccx7cQV`S2`~5+zno}ePK{Ya3G^nt35XbJ5>W&XkOYs%n^k3!NAo4`{ZG)J6
z+1q2gFJD9hpLz55B)1a^Z%^H_x?km4cjO|D#Y^6=j>uQGCv^y-qp+WOK|B;hry!mW
zVnPs|gXj`O340nuSJoax?;!e6SHX(igXqaY>5|(ch;8G2hwsSCcghb3@z154M}p|Z
z&8;jqDeq_W&wu5<K_u;x2L&-Wh<-uzXU047fFK46Ks>OjpY%ej;zxrR62wqZX6vl{
zC;pKc$Ykm;L1UYIj|VZFst$rBj|gHUdlbY|LH@?eH!6tSs{SW}7#+mLO-XFhPrK!1
zMnyK`X^wc1-yFlZATmBoXA+BInG6Ka+--^6yd<?s?sGIz%|AW}Vm9LingmTn$V?34
zr6Ar8Vs;RdsOlhQ1o3JRFN@TvK}-u`N)WHGcUAo?`PC;1e||Z@_D>fABiE!7vyn5o
z`KR#<Wxf`~$(F@$1o5Vjd0kL)n3shxP@c5*lt7T(48jxwY7klw;UFSG=s|>n_~k_4
z*{=#&X}{(rb+!&+E`#P8L<@6>(!8X`p2F>01LK;PP{0bpX2+?G<|QoI3F6b{CCs(I
zc?p}xkO*Q9r(O{62JxP#?t>s$=KDd+711%9-A*wt+esB|IPaS;OlSeEu7-DE5Q~CX
z9OU~;Fvoe9avpW4o!FH0VGyrRsQr<Up_tv;Km3bif{%k(5k#7TN(xp6@ktQh1#y68
zFUs5$#Aj@wz^j9<+h0R0z`7vT2eG;3Q2Kv5`3*sAq+;JKB!}1qBG(r|><nT{5L;<l
zK~(?D_jwS`lm5WsLgMWL?-2CMvITUoUs>K=oa1kMzhd^!yt{*36kL!#-}7Y<OszGs
z*4IJo4dNTNe5SYZLeIAX?BjsG<->IEegViI-@<oLwBZ76GKfP#d`|@iaU_Tn9QPo8
z2x7J0`%@4{gP8Zd??=wEKjbQ{z5J`@ecQapg7`UzA6t8W3F21)lG}I>y;keEz<a0p
znDiSb=>y)=oZ~deTGA<+-_GQ7oxH!ZNB?-ZtvbtzJR97(t#6fcE{O9~<|jUe`wyo5
zA=>sgXKoOef>4+EE^~B(xEjQ@Ag%}TSJ2(J{K+Lo^E}<idkww~k&4wqQoN#%S1~te
z@GWv~a)9>uxNrG4h~1aGNeap-xFzs^LEH}FP7q}jlvUiKCZ_wHe*y%QWFSaZ_|^9!
zh6)PGD+urKvOpG_q99d4MFo|;GE-SKDKS^NbOj9*G-Q(EE__u4t*W4!f_oHHS5R9)
z9R)QM)KpMQL59LFrh4L!`tDUgt=?K$f7oW<HE+&_*52n@=2ML$TYKv&sHdR5f=mUB
zGQ2X!3n4$?f^S4`U+)LK7d}eAPt+AqP^_Slg2oD(u%crgNr9}Ose)#TyPLgVK??;f
z6+9rK%>^}|$Y)Y31s(;@e4k33CHP(iJ_UIzJ=qG1%KFG>$Pr0d^(10u_bX_v;P-xV
zI|UC4&_+Qn_0wOj{<SwxL0bg{f=`)mK2Fb9@aI!LhD(1Gkxne<ZLhdjTZIZf-j!UW
zxYu6{e--&UDCo$#6iiU~FFbT&_Z5s%&{;tj1^pECSI|{KHwBL<=*2FZnf&5z`yI*M
z74%ThQ^A&h<cAf^tn0gV#YcR9U*8V_U(zCPZv{!mynPg$e>$H@eHE;!;3pWMV4#A>
z6g*D)ddeUL!xWS#7_8t?>a&MDM9^2#I}i^QxY3w=R{GfO>?UUBms7mM6}*7r5gdZd
z{8qIk;?+CTh({}Ug1S}ktb!*MJf)!Bf7xSb290u9)QtSXr)iv@CvW`PH&!Gub)14Z
zI|@z)a-U;kZfCO>;}xizl88$sUr_L(f>#twRq$39??eSJE106-B?U(-`^cH3V6sRe
zey5uM`d7X+|H`kNO~U%@X$qz**tf&;rh<9rd^4ye1+xTxRpE*Ibb7zn6uhqBT5JCs
z3dSzYpxA5w%FME2oVUzNK03*_6fCgP2!aX}1!)>8X;2kt3c9Q4p+Z*>Qt%Vo!|9_S
zqF@CbsRBbmRKdFn-cw*IuoO7#W35!Pm1HYezDkbKT$jiM=OWU`Eje)o2`YAE!5oF>
zTm926N$;?c%}W@@cgTBR!CVDP6nv=Q19pL}Qm~MgljY|>4d*lUxRhI%Ht<}|?RnB7
z4&~gen%UA~HaH>e&5`za{U0e<D)=8O*!5qVWeN_ZN;TGddTf-Jv*c6KnO;Tb4ol6F
zrB4*BQm{keV@iCgV6}qHG&9-{XP<)g3O0yx)(JY-3ZSmMWWM}fIccMU&jfSGacPr+
z1IMLm$r4*~-`OJ4tqLyrq`vD@w$TF5<$SJSJDo<Uz)tzkdvbTOVG6!w_c=in>{0Nw
zg1sD|fLq9y3heg&uN2J49(1&ov~Rim4VC;|V0RChsry8|sTEzx?^rdbo8T;*EFV<x
zy@JE+FEut<ZuzoIdPKnw^fno(49rsIp!DMb>C@9vpnV>r#}xcbC#IsVieD7`N{_1G
zKLy7XoKSF%bBcqTBArz5n}SmcZ%ayzJ<@6V%!(2fa#q0^dIJR$4XNE}Y1ul@d5?6m
zNOJa6>@ZTkpx~l{KWHkaq_@kv4Zg&IR&Z4TB`>qr<=iZvW~5$I@Gr~RA`iG;^rwRB
zqDPefOTi6+ZwmUip#KOuxNJoVY+og(v?#f);EsYSDypg|qvGptlPai4QBhV!l8SOF
ze}IMZDh98R>$Pyrj2Ulx2k~c-<SdL!sVXX|V1p~FNK;Y$jI?9F)a9qZtTR%&ipqlX
z!!Bva6q!lYRNSMYmWq$6rd3zbG$36bCD&9@Lq*5k5<`>k<$I~mPh|#nu!A9GsA%W)
z*B11HNphx&dMaA0cu+-s6;N@%iU(9QAgv%ZRB@jQdw-y&SNbd>RVXhtQqfq&3+1FH
ztWHHUfoac|o^WSG-^*=&N-AouqJ;{diX0U!RkTvw-(q@IcvNJm;H1bVK9@tuD<8{E
z+WX02UK)Ah^0|_Vk+vkOcrx3+u!00R&9B1QCH-Ve<#tMKROG5CVB=N3#$1%A;`yp+
zZB=*PbxTO+FSp58QSGGErbS766@^qI^&mJ!Dz3Klf0<M{prTmC!!1hm!*Z=NgNC;#
znJ@VtQqf68XDZz18b%itT~%~rPY+194e88jH;_N~fYf)GzbCV+ct^#%DjreMOXZ;q
zC@Olhn<}1Q%T@GM(T_vShN<W;n#b$|RSdX`-(8hS&L9yT|4r(UyZqq-3{^4gE~i9*
z#{_*`(BEsMGw%p0>aNTv0Y(eD$4q)kfT=2`sd!r8F)GHY7^mVHj+fxDgaV&C>7G^b
zoZyTX^m#!il;Xw36nIhKi7H+aV3MFO3p$zebY2o=7^Vo$E2T0mN~Wurq2dh{Z>o4z
z#r67mvsApMVkSp$m3;D`XVfTp?QzMV<P-kaRggZHRN~(%zoo+BzqaRQy{%%liY^ay
zAaj0;k_|0NR27<v7^lx2NmudR;K8<v@2C4iD#9uvDn4y1nM_?O8!DnI_O&RfwXgWM
z79|yT1U6O8wN%V|pu>u#GP7(=&TTg*%b_97$%+e_5Oj`;_eaWI%%t}SR2)@tOvPN4
z2Xe8B<+B78^HqGv8K;82Wr2!CD&GDswNgRhLe9<6?!RsqbH>f`w=7qAiHaKsUCUXj
z;z*f_AFEiQVwq6UautUz)z5z3&)?M6+bXZ5xk^&^=F%rB{+m#Et3?UvY87i#Y*X>M
zinS`%srXFAW)-I^O6yf@RIy3Lh!kmqn1i*mB!(F?Ql2{@t?yE4i;At(e_QFh1%=dh
zhpK5jO3u{noH#1JRPmLHFI4PQp=L?DsLZLZ&abu4>o_@eHz%p;t|N3Ne{$Vy@BdoG
zUKKyE?+x<4p<-2htAa`Ny5w;B)AQ^X95TNX;DCyQ0vx)_|6YK@RD}SAUWvj#s`%+{
zG^JWD+we1uO2r>4E~)rc#c>tCt2j%4a=hXR6~C!CMa`>NEqr(x%Qe5#LZ!v$a?S|Q
zG3+jUXBKCkQ!)O0%0(6DRa_wcCY7q_lqD_fQAvwRocNbjTv2h0I;Tuh<*OVo6*pB}
zW0PpKDjJooxI>oyV&AhRZ?@~E>IL%troF}7Vf{x`H>_OcjFu(;3f!xB*ljj)r&Lx$
zlIHrQJ9PLtQW*`;cgy)LN9sgBrlGus3L26%oUb4aKO)Z<>QB*-s-dFDLZ+`}2}8y+
zMWl?TYdj)~|1{jzP(?#k4M7cxhH4t_(a=%jJLjmbp@xPBG&I*xQ^UO)>T7_8S{gD$
zv6-6dw`&VrN5coEtGe?a$#pdx`bbW+b$e7#Lz!x61PwGa)X+#nV-4L~mQ30yT}hSh
z)9~y_`E5C^iH0l5QZrH1jXSwbHOv`VP^mEQe!-!^u!I&GT58DEkf))Q29Jgu4U&c|
z4Jn6QoAheP)^LBeL{~r>oay&zc(r{VflRRzQfmzliUR$byEkK*Z8SXTkvL`85dxZb
zTMhXd+G{A(P@uWqfMP3q$n7++iccp7c8aY|k;bbzcZq*wlpN4N`ulNrMeCq}lvz4y
z=&a!hman0UhOQb0Xc(xW8@sRJVP?^=uA;O*OX{KVOHl6G)RQ`#>2K=G<8s_fLmv%&
zHS{iRuvka>X*fJP&|h%gYvm`VVX&^ua+L>Z7^a~_!(gUr7^30ZxtT+SB$pVjJMCoY
zSy_5a<A1W`5gJBncwED9cJqL{tg}Y)Nk?fIO@51#LEp<~ViMOi;-@q`tzoK$X&T08
z7^~q$4HGqtqyAg@pVKg2!!sO84I^5*@?0@VpVu%!L%$s91yLZ|$<j!d9F}`*$>9<_
zHAQ+!!z2xpHN320iiTG-v`$Ffa{`^VyMB+jr{6z?7W+x@bPY2!yscq2$5g{i4X?2;
zG~g<(b<Ls;A1u5cm1f*4zoFqx+N~qKMFk#^$Yj!y)q&9oY0_kOlgT!BZsiWEszKAR
zS;H0$x`vR34>f$GA*>;y;T;X{QX92W4Gl33j)tfPlg9r>z|vrIu#zh794T`L%c6dq
zABbz9>C$P;(U1_DZ?QY)@;5nSmdI6-D!!-TeGLmWEYdKSc{R)z)<t<{r|+64vJfl~
z;L%m?TKR0Y>k_MuE?msc2Bak-iD0RQWg6CKSgT>VhL1IT!j@NcRk1<?_l=w~+;Fbs
zv}#_$R;>~lKh?0BcAHf|F>aPf*9rax4I4S9(xmkwdh~%xyqw|QX_JU1_Eh{#!`}xz
zL(559HEh#xK*K=|pR*zjyEN?9utUQa8tNXFcT&KS4jR(f9O<F`(mX?2>hbT<@TG=*
zv`JCmSAy<kA%^rd^Nw;A_>BgJz75?i1jF0y+`jDB@EsjpD?fcEqlc(54Hq^1!HJ;Z
z2&bfm-!%N7;YSU}H2kdLCk?feD<9SHizL;_@?Vmr2c{M6l%!uY{Ho!&h7+t&mY8a_
zEUEOpysTwO$xi`Na!zSDtzpoC!gCtVX!xDp#*)tRQt^A4GVBh^p-o;M>OZgH0(;uB
zB-N58r%EBe{}PS-uzX#^Um7k`?HaC%ZeG*yCue=aZGTJKrJkN{e{XQsYdq_L$%kcT
z{F`neCvdoB$*v27R*xC_ug2#HZh@3som51%+@T}YF;K@K9c6VS>G11lt)rZdWF2*N
zWa=odqk@iVI_}Ytq9avDx{k`ayJ}R_ktV>VvK7x}NtJZ>SM>)=iibQIXy=it=-3;O
zMn#LN3Ym$*H&)kCLq`T{Os?#jkXNdy<6a$qK3Y^u$Ley@<<A4*cM31IEUB%#*K~E*
zsuU^xpiEj%M|~YFb+pm}9Sw9e)zM5xLmlxQfkrwSljF;~k9`p{y$K7XC)qDqFC=lo
za`N7<BX_jF;Goo82gmUN{eK6vg=k?Hp+i@hI<j=WTI2Tduqj<RByUNTygGb3as*S-
zA?qNM0(7%=lZwixN*z7^2Sw^5g0^8@I`VY1)$x#yPCD{+6zC|@5zx_2M|&NGI%t#J
zB(!hdVe2WWah|(7${8&ulBHrD9dvZmu^>z0)w;4(Ub9i2zF2<gu+&*c7aiSnbQcxn
zmap8eFs-W&`h*uNNIi7))Nww`|FDiK9;sVY`rMXU$WrIdQgun{#ldY=(pyI#4)g;Z
zxN+^Pqo0ocItJ+AF0^##xoSs%8(O9gW)(W7>X@cuh>oE;o@PZlhUqBLF-pg19gpdF
zoa0iy@<`p?ats%(;vEBCk&WOW?hkM!rJ|VhgwB_*+$HZRA;XI!TF5bRS<SuKSRLbZ
zyr^TMj%Rc{%UaH-OwjS1?z$<4@w&S^+SO5do|>7Q+Hrwv$qX;(xG^t@yV;j?Ow#eP
zD4cwjeDJU|S;t$o+za_B{Cq@~yKKE81bCq|UB?U^iVjuBt2$;<k|UyHmX6n0sg5^v
z&{d|F$zxzI-n?5fZ=^6<u4-DBh;%~i@n-7?a!jk_a_#%CN}8ra*ZId%ysINbwdk;@
z3Xwgc!_X0>8du4)npZM)#Ke6D>X41(&>tRA5Yyp3CB=0(I_|VftG^)7Giy*n#~dB>
zDxWS0&}mS35|;oSALy7z8{03v&(`X==5>?)+bPXwy~0F!pW#S~v_J=KfJuvWEaAj4
zaleTVb$mnvh@gK2OIf&%6Cs=oVY!Zv*~k#g5LW0|NsA4keF&fESj8zBLb(t=<^0m|
zla8Z0*63KPW0#KII@ak}uVb6e-?HbNJm%Y=<1?Md1iTwL^v8Szn`rsJ$;H(M?OZ8u
z<~-7|RR^(~^rn}989&#tUB?a`Ux;#c3h-D*iAiczFToxiU+UP;lF!Ls>9{^a4#&LT
zQ21!Z*MjcVF@3G~c6Az_cb|@LUE}ob%g7`BPR9Wq2X!3MaqgV=2O8VjB!cg0c;{q>
z!#a-W==-~i$^TJ^kwbh;$Im)`*KwBKL&vW=PU%?DwBR@=(K(sn1od`S-nKREBx_vf
zBj-24c`#Ubnr2o#=M25UeBX~pGf2<TwWjA>)^UY%R>uV$Q(l!W>i9!|<!93wWw<1w
z8UGBr%JJ3lH#<n5DVR+COMvTwMxzBcbleohX0|G6eQ(}-qJ)2S+@>w*xTWJiA=yTx
z_TJ?y6LKpp8^XB81+3zs+r<RTm>fd+5bA|cKZFV)q=Zl<gsLH=hEOqtS-s^-AtWvZ
znzYROdTUx*2=|rAS>CL2dI<Oa?Wr8X$j$Pke^Z)XDtxN9TrGr}<cDxi2tzJ<8LEd+
z<1U`{rKeU186p1dTB;ku=$oF}0@o3ERU(P}R}Q)~lLq;?3lKts5aba2Av9#wAv6!6
zMF@>V?ae~ixYOG>geD<4^9tQ&gus>%vsFyGKZFND$Zu9aJZ5Kc%Me<H@atOH7lJ2*
ztPs2*^qwtc3re8RmX^$xo|`T88<|9!!@NfeDKCj!hZ+{N4q@IRA31p;RQpAGFoZTC
zs7(uqa|MUEtq`V6z5oRw6nF!S7KTt1!c!qU9YP?4;*k63q<;t<Lg*MmuMoe#<asEB
zP9fYX?|V3e&LM2SD0L5^Rv($5i->j=w40z+X2`$q$?g$C&kzVsre%>n62c(cv*bka
zBMUNmhp_aluaBSveM9Ic@Z>Z3j1CB4AcaF1%s~ucR0v0}XFnRkun^ulCo>EQVW?md
z`)5lfAv`9M9v5^tyRgp3EF<p9`+CcniucWZ*=+x4(TgVpeKG_lwg25WCWNseyc)tx
z8es^}aQGhgP7Wd1LV7lY7X=`GE`;%S@$&*q2;l_*7Ekq2U}6ZR;H3~I-Ie^*^uA0B
zXZzE=uLwF_(5WGOxzIaJV1gL}bn0A*VzWa0cb@mH5Z(@9&mZ2`LU=udl0H6$H$r$*
z;F}NSGCG^1HlsifVRde9Fa$+JRd#$vffmByjkTD{z-WlZ+@SEl4No|PMGXrhAs8Vr
z%8cvtWGe(agoR@0V>H?j-VyluhSJVkDRE9TVc4CE{c~vf8@&wIXL;TY;XNvUl=uA*
zf6t1G?Q`aeC^-wV<awMFns0sx|E`r877%PrBUnT&g|H-q4@20^4u<d%M?Zx1A#4a?
z8J$0UJ16WS-y2o4KBmtPfq>B!A*{TM$zfO}I80g{;t4ocZ0%i{*T*ES6C48HHP6Nn
zHixh!giUlEA<t(V`fHy1o7X1Y8p7XIb3Ui(hOkZG)aKq#x}|>ou4hLGJ44tN0`V6i
zJh>)`fFXTrTB*R7A$%1=%fGXaQYM7G)H!F<cKMqS_EEhdZks*d3QF)@2)XZh_J?qT
zpHt9046pRdJQ%_uA@Dt|dWA%0ug*S-9TDaHAn1>R{v;?1A3w}@Of>1|5PlKhS3!>p
zTG~j`-$FRW0Se>&FiwYXCWO{uJQ&9BA)KYV3-dEaI2Xcsdekr~hH-%-7{X0zAcR-W
z%727#E##i_BEBRzmqWNB06A9$;QI1s2)8dv*F*R#gg!0h8>Dl69dCF^$-lb5`ws;|
zxWmy8fzh=$J-0$AT$cS`2%oR<Jl9e#6NYELFFB0zVU!IcDU64v`^ts+t%lTl-$;G0
zD3?(RR1o}>Fvui_fgmjm)-`5Z_B~-#3cIaM52LaGRRpan=&cSpOsXbu(I{{AFqoxA
z7&QgBSI}CleXeg=%*&<xi}UGq!l)ZY%dqPVGsAAD4lVHB7lzs;r(PKK1%ROBGzg>N
zT};U?F<+xF8i&y&%&)khSr`w5(L9X%!(dW4$)!^|N~A3Wr+2FoVuqII<yO>2n7^?1
zW^vR;`EtU@7E!ODK0%j!;iUkB6owqez%RTVtLONIJaPBrvTefX6-Mtca>K|Aqiq=Z
zVRzx{5=KE7?ZPOgGH1x`!|q~NC@8^u2a<}y2!yeEby8_`{eh$o)G&pGOlOgcNu9#@
z`=*B_P;$a<Usq9hw=lYg(L>;e1!avr1&~|iJtDw!CyL4J6GmU^JdCkn^b4bZ7>|YV
zco-Af`UeR5C_5#<pfI2Jc^C$Vxh577P-cio8Y<|pFiHgQPbp;5@GwS%`A)3#WEdmE
z=%D!+Mu#y<;4wFAm2#d4<EvXK#FTt0jHg8w;vOTD#)a`r7&F3nHH>G&crJ{IVZ6i^
z&XC8mA_2Pn?Rj2+hcYGdUkKwx5q+Uf4x^L8m>k9{VN4B!k}q?{O_ipEQJSUv!6Y&%
zHZ6?lLg2`tbPALk?(%1bF)Iu`%+IsnwJ=@}W9d~{3FD10-VEc3Uh?cP-V#jm-xi#|
z`umq$kt=+eO-?Wj;;|ibh*g0#Axus<jG-;_>@Z?sM8YscG#Z8(h7|@2VXAd*5HtRL
zsgO}e2qeOoBS2h~Lz#C(lmhS4GA|dlZ<$9XqjSUfAdDMf+zex081uu}8^$+bEC^#^
z7;89>!dMh`w-8IiSQh55T~Yp`w{xSMC1HHXUiX$6J__UGmU#qRCYFcsN!Z;-eH?aI
zkQIV*L0QSEr1`kktP-gd_*8(^f<Dur1NS`Z!uTwV&0(w$yW1g#4NSd@H_;_>Pxy<p
zC5)|{p6h%MsUCS-_O>v-2xBMb)VA!;1>GLT4gtuyuq=C57`tgXVSE|Jo-l#~h7mk-
zvY0{5E55xhP>R16Oh)&G@ogACg>jVD%U?eA^X?DhyRf@}9tgYpfg@oY6wyP1elI9f
z4-1gL(fflC`%zHJcimg@o?h}X`t2~zhw*cmf6>K@txA3k<761Wabz1591rt<4LH}J
zfOuGgf>Q#Yp%Dsjnnm4BI!lisvYfB)N?xE<EcIRr<8l}m!?<+4%^!j@=2i;%R|JRP
z&oHhEzV)Z~S}Aj(_qyQxC8C!%dMQS?`F9xiMbIdMe>ip=`Y`?rBQ1hT5e$DQaGM5@
zEhk5CCyX)?l#O7-UtWeJky?t&Mey9|0CD*UDnyVHakHcfnzy$iaYca(vgO{ja?&HH
z96_B3>PGmp2~QP4YY193f@%Vge@_I}?_#<#a%x6!?_EwU0Wt)wEok%UzRU=^@ATM;
zCv&c^UIg_;6cIEKVAp_jrZO}XQ5M)Zf+i6JA}EfaX#~w8{L7fPAcFfNcp$>}h`jy?
znn%zgg6s&q5wwh;RRr&iF35@?)T+c2!H2C%7$qhxP4Y#MBV@b-{89uXCl)fu%s#+R
z83xXX)}rtSBWS}$uJ`6fkSD;9`5snEPFoSp7h;UERqaIE+EZ_9J%tez32^m>htUoZ
z*F?KU&@F<F0zVW%CjmM~&_#e!o9wW+B0={EdPLAGf|)lxJtMgOi2UF*U#*(b!ve3^
z;C&<l(ruRtdkdL9f>O9|1ZUTz5DbW5AV(^Sd!iT=!Qco67#L{a(Fle_a5#b^5e#L$
z5xgJ4+z3h{cr1cx5loNZahgp8<0E*UhD7~D@N@)YA{Z5MFYS5Z|D*t;BX}a>-UlF)
zcK`^UieU5VB;EwLT}>Jr!7~v&8^O4U8>I~I4Dg=7a}k#kGcV}`-mf?(zZAhF0bUUF
z#Rw)w+$-*O{oKoNg2@rQ!f@7&zATca2+2}`skFM~DNLOa!K)Ey5$IHi5PLhqpP*q@
z1g}N#I{R`~ep6%|KGE|=gzo?s@&f-Y!C@_A1|wKr)vL0D+~lO^DAZwkj<hX}(XLBt
zg;-{Uuc~?z5kw*|BCtg?O6_%&$hRUe1!w=gZuE9pmmd=xMx6-acX7kfzBzaCI|95*
zn-rk5DBkh-AcAFVPXzOrw7@$*f(0zUmb6gNB@rwV{KXMiwTmfmlcy|25@kLTU}*%q
z8s;$iF%5>AkMQvmRz~ni1l;+oi(r)i#A^ijRM6EC9KR@iUDdl*M6dswLIH;L5p0NH
zV}xG=OZ{byhxcblH%G7~f^Q<&#{rFCTLfQ4@O1>AN8G*Wmx2;(7hp#OUkI>M&|P;^
zcMGsb&}M_vDZefW3<L~&1)tIS)x6(Ea3F$%5$uoPyZ<9!n(L6@e9yUA%}Wjg!4DDq
zNatptf`OkRI2z%P&T%S&r+Uj%9?Ur=z|RqP|Mp7+zY1_%&=V1NZ^pgc$%wnhOVsdE
z=5z#UbG_#xI3K|off@as^X@MGd28B*2re=&-E{<iL~tpBYZ3ez!DZ@ys(dAat4unV
zPJHWJIzuVG9>HG`Fxsba0mBU;b5msDu^a}<|4RXScmqiW{^QJ|&yS#t;TBt36f;t?
zv`k|1%NZa@HvYeoQw*dUc+fx_0~HOV8E9zWJ_D5uq#MXEP}@Ld162&vG~7kJs(~#H
zr0RlJ6O_?=4D4I$C8!}}PQE5llHpzh#I*#ahU*xpYoNZ!l__XFA^%;o%BO-}=A|$U
zG@y4{=VkVhBa&EVBLj^Mv@+l^(8R!v=5kX5%>*zGCfzT<0|uJk<+L#H)~&Q>)uNUL
zNPoF1lm2!!kYym-fF#7cg8Br#cwROSCb8HY5v8zfz;B?nh?2i(Z4zZ3neF9Gs$2sB
z1H}gN474?nZ@4$O7}^;q5SaI}KAj@9H&7^|MS}897jIQjtb>7$26`HJ*uX;uIvMC{
zpd0(uGLL)s&H{81G~6nW%<cmBU|qF~DNjym>LUg|f7R35z~*FcFF_fVrpbK-CbO@B
zes}r(1?Y6tGswVT1N#kpM-3Yo!nPSm7#M0`n1PoKOfgVm;4uTwP;~|#H!$4bC!4T&
zh<}8Ekp`YLFxtSI+tNlE_^_}1goqMQfRucKr-VGkh#AHRFxJ4h|HFUIz<7i2%i$#h
z&r=Egy$mlHz#Pv6n)El`_7Bv4QGjb*QkgXAuFPb^JtKC1SC{GQn)?2mo>vUK!5LjS
zYpQ{12BsVQa*l^#mH;yhyehy<LC0-(lU}<k^SXgj{+qNJ18*CcZ6ItQVjyTh5yk2T
zR0Ep8q+|NXtczjIN{KXN;NVJ$*f0<^VBM884KPr?RLnLI6L}p$nT6#rX^w$+3~b`G
zHSn&1_Y9QnC$D1j49qpK$iQL)Mj77+2Id)<&sNQoKWtp|(-8jx0}E>gsHlY;vWq@)
zNSAO>418>0g@KO@EEP%1DJjA-5iJ!i#VZBp6FS2oescbw*r#G3R<rR2){2VO8`xlA
zoxmsWDX!kOa3ec=y^w(P={f;6X0sUIT?Te@Y8%*UV9rWuo1oiiu2f^=qAFceNy*<K
z_+JRRlkTN!Dw%sk340BEW8g~zUy10~cg<$B0JNxm2EG-z)ZS=#Oyb`7fPu>fu5d&Q
z95V2|fx`yQauj-bj~LkaLDsJZjvM$v;2+s*14jk^MNkSHGw?Hu>gP=<@i9tFdU0{#
z2?M7M5HOq+;5R`}8OUu}RLVaiIKK-{SJ`*Yz}VehhVuq42z=4N9|kT7{H(u2Y3ho3
zfvX0t87LP;auk0WxK2xee8<3F^gjmvrMot8llCwB{t=YmZvi%)OJ`t|;Xebn?=nj{
zN4BJ~oH9|Ajk*OgBt^0BVA8ua^2$e1A&N>-q(_kw#pYX{v?!i=)yt47Kt(~P%}S~>
zw-!??M<HF4uU^h($plqIw5p&Z!u6|1Q6ma73M-15QFkC7jG|2x_eN1Gii{{~N6|Ej
zW>M6MqHYxV(>x8MxG}?%83m%q-QlSxqV)wO|K^4CrYofeQ8YQ1-tb&H<?oB4k;vFs
z&?bVCf4*OU^7lvKjlvhj15q>=g|vvmBS1?*TM4SxkSUxcaQ6S<cU<UwaEv#H-4RSV
ziq-;9*dGNOLvTaT+$i#*cq)pgqiD-EL@^?Yq36;IqG%UI?<o32(LRd8C^|*aIf^2N
z?Q(}GIz|zQqBx4Vg~{ZUKa`Yr)>E;_#SaOYQrsnqu2J-i;$gw;76tj;1-^4IsYevk
z*0>pG)X!taN22H@l8Bj_w>9nk!sNbD^owE$TNOqBC<a6^m~B4m87SzWC|+EeoffW7
z4nxnaX^#p%F$*6Sb#L}QCS*zkC7%s=T;Sn?Qh+6lWM5WDyt6tgil47~Mhp5x6i>3=
z71D!p4pYZOF*b@9m@A5xvV7yBXgpsYFYq%_JSzbC&k0brDEaxQdqa4FpuEw_yT=om
z#3n`YW)zcHc*rv)idUl0Jif_Myd1@c6|<H-P@B=IB6WHcGiYPOeAA-t&F9jjSEG1M
zL@72iidiB%QyG0-<f1&IZ$<I8s5%nGY>xhVk4i}af>9^}klF5xtl!1qC?anagal<0
z1I5@#LzEL0lsB~PC}L4u<J6AAi6S1wo+!SIA`!)$DAtJi@(yPxyA#DnQJkJ9zbEK?
zLEjg2ZWJE~z|?tBtiP2>ut0DYMzJW0#Zg>ZDJ_Y*%M+Is;#ybIiI)ogCxR|x6@BF8
zQG6_-EAHl^@Jhj97UES=d@7==1tq89#q_mNtYf`VY!H?1jACOHo1*wUitSN+MjsNz
zR#7_(VcQtCi0aswZ33_y;vIL({6dt&q*5`a?h>5coPFW?%uavxRTMu(ag>^jVs8}R
z(0xU5Fp5J_d`s)v?WJ?xFTlz1wdtn5iz0Pytpib1Z6ND!q%_&$`<^~zi|>ah4hukh
zM1Zj^{KP*Be0odTF&Z#kV&$ygqWDELgQ`0o#jkgJ#OMjp@{@wY)~=tKdWw=!oQdN1
zDE?q-6lbG27sZ7rE=F;lgDZ9j+yk&=mOx6(P|Cj?#g!<o(sK#{G6}eypulxu6?CLY
zCjO$m(Ky%1H|bJBp4$Td9mPKakpFKKx9;NqIE&XLwVo$a@=g?GOg9TdSrcQnrV*4g
zk!+&8i3%oan5bzY#YC!!wpqTaf>tz<E&w@cCMuceP&sR+?qQUnvPi08Vt1>O&)#&I
z)l7VJ)^m^GS2y|DK$m&1iCQK~{w#!v3;`x@morV&Hc`g}aa}<xcS{{nKksM@e?1|S
z(k->ViE-;>G8>p^D46$|Xk_vjlv^4FnwVfJOK8fvDhCM8cO1r~2TU|KVa8#_c?J_L
zO&qpy#6~L<9uu!xm}w!)M7D{YCU%+dn(&!;$;2cRIVL0%kDC~7LN?(y(TRF9-ItVF
zo5*9=OyuTC51MFWV#8r6*F@Kb89Z@7X1<966DyOYjwaf%Nu4CV-dSv-y}*nXnkX{i
zzVq2h3J7MSnf?xf!(4pTnXi&QbT?xcmTY2>iNPkindolf5fi;kSgrGWn0Q!#o`Rle
zRT2#3y|^foNxe<<G11RNe-oLR86Re5^fleLRi}EScsoDA01+K%Vws5Y?Hw{7HPQ2+
z`*P7R6GKd3WWi9uA^3Tu%&wJ~SXd|HF%x{R``k?b2$S1j>5fNw#>7Yyqf9h7ER8nt
zl!>PWeuA|KK>m-b>#@IMICeArV@+)J4$8@r#tB7z(KW!1Kg(iGjOVCjWK1yK_aPac
z7l51>OuR_TTqaL6(Xm@40=}t8fypLbHZj-aE5w*$;uRB`3Ejk06PrBJt0rcem_}16
zFHIM8hM<h{0MRTHubFtu#M>rbH}QsvH)-na{b#18?yVpbY_6GsYPl(grP&<ini&dh
zxMoI>%{VL#svz-ABvqIMW%y=$$V8aKbV5p)h*0u`WSclxK_W0jG%Bdc!J_>vk;xy`
zN{X3qIHS)eeSAoM@}L|yL9k(_e~yWFO!w6|zR<q#a+`Neyl3Kl6KP9ia*qGkhNr#e
znV4^4IkT8pz@cHi9*M)W$i!k3ONHvFs3m;=hf`AMtyHVjCv{kgmkEVaYz4={#AXv)
zOnhQu6_rygZ7}hv3BG8$#>83^)dJFL5hYkB1lEfv-vdl~BS5j?hoy~zze&)~1f?*G
z;(J_MO?*xV(y3@08?!*xnr4u0H?c#^rcu>1_+H!>!n!E4+r%CdSr)P_d}-n<IwcDg
zEqrZaFDHwMvnIYVvCqU&6UR(^Yhu5NBPRdQ0d-IDcP73U-~dO##PwDs)$@mve~43l
zsZ79d*hDGwM<H3t`AOgoLkb!FS+xIziIbx5znJ)y)|FNNxQKpJB(ZD1nK(t;Tb6l-
zvmh`3=7HqX0_3;O@0yoSKIu6V=S|!)@t=tcCN7$|YT}xSKTKRQaoGfCE~jnP6`6Z|
zgNU!tDSeW;);H*ul>a9iZ{lwg|Crd;I{z;YtBIQ&4&R^;z8*s16i>;c#|AQqc`48E
zuPE@Bz4C1ncW9y(%2{p|Wh|7n+>BeAW{{Qw@{=u8u+Td*gSfnf7Z%9OJEdVpipVux
z8kA<Cl7-q9>R8}>Pq$Fb!aWu$TR6a1Km{eJ$^p7qL{QyA4a<G+w-&*APpQ$?v~aHl
zP8=R}q$AC+(5-gHL$x#bZg5=-nHC<f(A+{j3-v8Dve4La&y2uA0}Bl;*I~9SOe3v0
zvVflCJ_{)SzqpBoW)|+Z(7{Ag3sQO4g`T@Fqu*(Xhs6l!URqeLPi`s7`Q%ViE6erF
zbU_{q&m_BIUJE`8{Vepiki$YO6j*3y;ipluY+*)9ZmtEth1LQ;Xt|!VjYzGXnNcq@
zgJO9isjZ-t&lg~A-Hi4Y3N3W8(A7ebg@A>Q79OI)i=|>gZzSgucd(E=%TK`2N$`0x
z=$#trovDGtF0-43k1}(6T6ow(cMCl%bUrSfdN}iTMg|Av5ep+~XY^u53w(o=dhTQ4
z=X-L;1f;%#L$$X#=)PP!z`{TaPg!`H!(m~t<-T}1(!!&b`_kqx3nc;!u`tv^r*hKw
zi)9|Qc#H}kSuk8A@gT$FVq|A8kcmeK%+yg9Mq7A-<`Iw{pXsmkyY!^RUk3a6hALkS
z9%Eswg-I4BTNp>RTbMv&v+%5i=R}tA7S5edVqSWZb&WFmc%<hApRHQmCjUhX6D<(T
zmGk*JZa43smuP`A{p7rCVTy&R7N%Kv#R3mRoGeaS)=J`;2x5lm7I^A*hK1Y5rMgWs
zmNv;?be4tJI4Cx{*?67CX5o^B%NE|W@Ro%=bUPN_wlLemQVuugf(6Aw%z|S<wV=^T
z56Y$m-9pHMA==izb$-}FM5vV5=N**f9mM0YQBJWs8N_9~47Dt9P^Q(&uq|*<cx)<e
zAz@*jh4~idSa`?62NpIx>i;5E?_CS;S=ex2hT<P|u3+f<7Sh`0&lQwld!8Ez7FhTy
zKYyWxMHaSyoJr371@dAGZ5PQOSy)2F77YE6N%TbpLrb#|EVuBng)J7gT3EpeVqqie
zweX3BRTkFJS8&eO$@r9Av)m)D>=Bh;&pW7|r(~Ul^=z2vHHUzy91#jUJhFf?p9$Ne
zel`m&B^qb2%WDs&ZnN;Yh5Y^5JE<k_pzWM)t@C%#_U2~2UMoZPlzhRN;whn(?&37e
zl6H&f$xTuBnf|Zn{4Jca__a*zrCQ2K2Q3`3@QsCi7QUseW=T9j_ML_O7W%aJ^JU{o
zzPtm1|8;pc>3a)@EgWOpEF7`$15JH_{F4Qq;^DUBM-e554&kW44L%P%dncEYzgReK
z;e>@>E%0UI4kKm04c?=9=1B{`aW=Je_jn^bC6s6OGjuW*{;<IHo#Cv7^8%j}bf7Pf
zCx$LqC>~gNqP%pGuC@1IzR*rdo?p9S;i`oeHd@-aX5mk!+DNx?-NIk=-ZqkKcaq+)
z@Q;Om#bmt6rk0ofW;4#^bUQ5FvhbgUGPbKd>iM=%;~fiZF#X}UimuZ;<Q>FgN9AlJ
z+o))}j+)H!wmUAVHY(UivGJTQkB*dCxGkYPb&@6|>8|Cb8I^5Rv5{$`o{g$Ds@b^L
zMlBmf+0s2WYS@_CN~$iXy+kInrogkx77??S3{h7dL2C=j-Bev0kM^uYSInmN`Y2G}
zMk5=IZNNqY8{{NqWRNzrao^o2t*(iU4Gr>|*|^_EQ|juVOm|8Z@igTFHu_b`ZEm|K
zD|u+^h4}%#d*8}-4{-UY9~&MUZ(eW1kYyuVDAsG^uOY=0qf3-*$TkXXOgt|6ZM3#g
zz$VS~Ylo!=ZM3nGYolk=3`Xhb^4JR--#(m4+|~wZ>5hn?o$W3?>{olXM=VK2HUc(^
zZFCR?cDBLPjy4{$(Mez~ZRDIo2I-l)?n2f@@Y#~?HhS1FY(!bRjfZVK%fYho2z6rf
z<xdQ@(c1>SUq2iDZS=9>&CBmA=*|PlI}Riduw4&1&~{zo!^xFPJtR*zKWbx$?Rv;3
zYz(zA%;wKrcmmpObBUmj+jvX>x~$TU47c4in%bs&A7x`SJ9RFHL93U+tsv=>HlDKa
zw2d*gdx(2qlMK>IO*6*Y7$-Q~+&*Kwhu7E`((yK)=b+el%LcDRCfIn%#w3AXAQgbM
zPo(n2F^b7HUbgY7jhQy4*!)QWW(dot-lhtTO}8;kfG6AMk;&jM6X0y+Sj@8V8dFE7
z_v5((c7&^dFOL^-q%S|5`Thhy!P_>t!08;RJGrxM1cfmuwE5BeF&tECX+kjvg)#)B
zG{}&Ru<d%wi0z(B{o!I8Zfi{&mW_=zHrcRk#B6@`8Xt=q>D(L}aT^I6b8O7FvB1VV
zHqN!lf8WMj8}Hh9&xRu9lSBG}KmP+8^K5sY#^@wZNhy<bp^Zg0KD6->r({4{%nlYy
zOKhG7lDI{`S>%3#V5yC-4!Mi$G8%l5dz6wg5l;y@D{OpfV>Qjyc316BL?NqeaHGqp
zM;=7UH6m%9NLovKtKeqmh_4s?4WdTY^_h*$tjNaKHn!N<YJ<LRm+iX5Z36GG@wteS
zvz^M}^<yjP3tCG%|4zXtNF0)P3%o~AmhdILQ+f9+#$I~D6zN;eWj0S>M)z^v)z9G7
z*>^S$i1r+!bC~ImcdK-eldE<HF9{23XME2=oatwqxh?s@#*a262eN~oY#gPYV^Cu_
zX5(iYZDYuf;TIdf+Nd2vofwX@@ixlEkQ~EF8^77OY~zZJQ#MZ9_`}9o8)t0%ZsWX-
z3-sX)GRWb_AI=FHDwY}e=>shyk$;h<jtqVyg3%Seyi1(L#WH_8e3cn({(lFzgbDpg
z|4+X}@7g4zY~73-9Qu(3H#yV0Ric&B!2Y&D!0-=UceUKzI|Bc4BHQj3w`>e|SnMd7
zxJ=Al?})isE!{{b#ax-;JlPaOg&3;FP%Va(7&w9zV@Qi3Rp9PTGsvkVge%8fAIR+K
zF?Wd}t`c((Xmjo3&itMjs>j?*?^-eUilash_X<E<Gv;1;ENz`{wa!2Po5V#YBgRv}
zl?ndjddgyBXdFXk4E18*qEkNx#N5l_uNt}o*C2+5G29n(2b9tF-70Y<;stV(7@EeA
z9fLQ9W-;8)#>DDz@AN<n&0}cE#yslhUZ~2l%oZ_sk90UM|KGOxtzz)Rz|9qRK@3?j
zaCb!DW2a*7Codk1L5jI61%p54eked@^YSFFHQO(?X)Q3f>y&K6RFNf5P;&T5lLG23
zhNoh9I)?T!6vogshHf$UwgA25Q%mKd7y>aA$K30S4lz6wL#G%zvg022G%=l3XMwv2
z0bbYhAQB}xQr%<d5yOBO2FAc0a?hA+%)JGESkOme=oLfjW)f3#TPOF4p>NFf1N~y?
zFNA6Kubs>BAcJ5~41;5MJci*y=Fu323NVCi6Q2CmIuG*>6U-7p9}|U;IU<IUF^rDk
zi5PDFQJ)TEl&F_W4{K-iNg6|=3^tE=`N#5@7{<oHLse5^?roNFF^rGl`52xN(PssH
zPEe+D!#08D5yML{Okzb_a$bzN+vbThr{hwjRt72elaoc1+r^h-h+eEu=IMtsdDZhu
z3{zv67Q=MW+P7nv5yPu7ydJ|Ff-^IQS?rF$lgd|Sci2t_w*1YQd!&v|?=7l@tJq;T
ziPvAVS(lg&6&hvmV=r``S`2y&-?=7-P>d&!urP*29G&NjBQd;B7je*IuwgNnF<3Dq
zVwe+y9phUW(zHuOP7E=D{VCFW<)t_qe5r^#7Jd_^V~4zVVt9|;&ywDaf#<@=;SQGI
zi+UMzX`JPy4`QwloEO7<0T#r-+jRVpg}GSf4Wh*{EQ#UE7&w9-#_&-Lt7BLb!%~Xf
zle;p8PhwaW!*WhBp;+p01-mmbz*J&3W0kP~Ph;*EB*^ELAo)D|wl;=!F>H@vM-1y(
zyQgFmJp(6Z3>#xunUjCPpTE&la{ae~Oxhg7mKe5jdgkTtlk>OT6`&YXKaYW8#9z=1
zl85aUbf=(X?xM!p<deTga1MD&h`-_>2BfcJ*c-#HcK&Z-_%;Tfo!loV0XM^1CuzS>
zK0mK?For|4I=aCazK`K>3|C{g7Q>MkexOVYzcI-p{Yalr&2YNK+{<cSQy-=N15%$Q
z@-G4$7h+8Ml`dkm%%l^7!@R_&VmKYcB_VkxhTmg2Pn~Dxo)sL*pA*7#S(N7;k_$0h
zjNuO<!y9pwWMExPy)3d^;apzg*77G+6vIEX<i+mA`(N~v2j!bF+z^1A_m7tQTVV2e
zQAy6fVnA=j@Sgx2P!3-i2W1^JcF@E@l7n&%YB;FrAlX5A2UQ$Ybx^@Uii3&{(j0fc
zkuB%bZ>Ku$R)o6_;z|zE9S~m_KA2JRD~nVLGgNcjy~;g~>-lfJR=c_YrDFFwsO6x6
zgN6<=9MpDDPn1(fRK&a#BdzNo(?MRRp~R%DsJ<u!LYURvC#qw~6lf$UxE=E6a}jCk
zprwOW4w^Z*-{C2KG<V!fn--3{WN_W*V!@pN1DPJjy}9aj+@*@CSpsA`;I~uAC)4M^
zQ#&Ka0f&qNeg~}`9CmQT!GjLkIC$H^YzMh)t%JuM40q7hLB4}-4!S!iaL~>{N5{Qq
z(%x||%>sfJI<5mO5|n@oL9xJBlBEtpfSiXMbaLDcXJ-dp1?VCuFL(oo3avUBOyU&i
z;h?{R0S<aPc-X-s4thE0>$sn-=<T@Mtv-&sn_@10YJgXr^hHeS$KhU5%;-Q-=A#aV
zI2a`GU_t4NSU%}cmUg*K39ER%c$mN};V}VbekU<$goBX|#yfc4!6*m3Tg3~vryPuS
z+;6iyK_#^J2dZa0>9|+-{vCm*9rq%1jDxX`yK@*PqI)JJJtLye(i*+)#p!d7y9g4n
zx(N<uut!u#Iq3xlFFKg$;3daBfjixC_Xd*$o-8PtFFTkb@GEyYQw5kNC_BQz9gr-|
zq$wVjUKey0dp%NSc+GJiXV7~v=?w>Oid5pa1Yqxiv^NKzI#^9f-fD1Q(TW^s4s-`0
zHZn_Mh&l-0#SsAv$8}juGHGDGJcifq<i;F04i-9C<RI=KK?@h7Hpjs`4&HO{zT;lR
z@vCU>I^Z=6@r-u<xy({Qs#ZawSEp7vl=G-<$Gw!}Glh~YX#vgYxSP6|gVM_NHlH{k
ze+hfkDC0v19|`_aL6-@-Tu=&sEWipuSJIxB$fYH$azJOuqSiQA>)=ZVUpZLkV7-GK
z4tRTTgM*EnK@L8n%~wsMl1uOF()>2lFdTl^0q-@+*y5o0he8hP=kx|Ar0tIDY55?A
zm>*i<TK0v5osN6Gxy!+B0ca9iyH=tx>~X*wEZn<(O{?3I^R0vZ4)$`&`0`l7H=@9O
z^kC&B-dEwxhwmKs7Q`Vz4><09iGvQdFDfMXUPNm($sqp0!H?Yh$Kj9TCw9}p9S3FN
zIOgDI2Ui_jbMT9UUmcvK=W%dc%#o80eiPt?pnQ75tI<;qPCGb5pO7a7knuaswSsi$
zP*UlIDxVUbr*}Op{o&veXIus8f`f~KL*{0FSEs$7QPRr}uFyrNNL<R<Q!d1Ra%%9#
zzJu!y{&H}`!A*KL2meqN;)w$vG4Q#=zmB`eG7wkpIFw0^SIPg;9_aR0$+TD&ST>HN
zIBLdmZye>~?mi?fj!JQGlam}r`8X;FoDxSx0a68JD);{k8<x8!kse3YII6`_Iquq6
zmAGqQgGajedG2Axkp(s4?(KSl>T!3b^ZwZRdKtWfR4a~*IDZF^W^vSxgZ7*mN4+@e
z#4&M(zi!-}_<TUgy>9(D5O=3}<2V|`(J+qt;%F3i$B|4@p87w*JKLAraFj{^DK9nQ
zAkue@l<$w@fjF|_$d02qAO6PSiM#%go4S^9w2HesB3{qZR2b+I$){O*<KV{+bK<Ul
z_6f=>HF6}uXYc64TgUNW93$E5INHRK8%Mu5`p5C~X(=y`;y60Q(Ke3!I11w6!`4DJ
zIF5GgNF0wf$RKC7plXARO<Uy7yab4YUu$8PJI3))9FN4&E6%??qH`SG;^-bnmpK2H
zp3J969Mi6>IxoLx+k8%Zj(Cqa9%fzQF;mYt$jNV;&nRVj$I(X!_Z8Vo&EvlV$;?ah
z7!b$6I35?x9u&u50fw<9%(5kCsOawyff?oF8-C7(df@eGNgSk)33-01Xt)3zxDj!8
zqe~@>j^l|qUgT(UDC2l4j_0Y#<I>Y{jEUpyB>%H<G_I8~R^Vr7TAieEf^wh6u<cON
zb0Ue7<Kyn`F5%0YAWES3dm-++zB)}aUW#K<9B;(&W*n2_csY(~aZG2AX8QS1cuL&;
zh|Me1zu<6i8OY%^$c#8%jbmoqy&6grd-z##_d@A)a@a6o;iVgUZu{Sg<Lx-YaYQ&l
ze0j6uP~uSI2#P2<Z+1!6;_%M$hr~Q0&_(oAwOnr6f9Kuc!xHtzZ(kV9Xh>03@my^J
zJC0Z!AI9-f91dO0s_Z#}#sy_G5y#v*K7x1RcsGvs1pk9L=Ed>8z;o|PzELHMV)Nrz
zaF<h>v`|DB3A#9rC3jPo|K?d5$1<vJ4&IuB<#Bu*$MOU|PGChGD>*w7@Feg_9IN8E
z7{?!Rd>Y5<IKGSHKpbo0SR2Pq4ow{E;#eQY);PAsv4Q4&um9(<g`4BpDDc^P{hK(H
z_xeA(8{HBI1sJ;gG;n40L7&qy<M?28t?isLWjnn1vOm-+{|nlGif_*C;$v3=yW`js
z$9|UIEAV9;U&Zka2h=G1n(nK2U@x`TF0k`uKk0v-64HHfd`p*7*5xp)ty#j11P9|d
z6vr=d{2Isiadh+y{eh+)EIJ&=Sfzm9w?7g`iZ?*;BbR_Uerp#v%5ksZXXB4CZ=;f*
z1tqAPRdSqjM+%&$G29q<f@V*7Dxq%v8G5`pPSMXy^_>=!wG;o{D?rVhJtCjww4y?e
z$geE+l4gApxWGZV5|Fb>F2!+~4mp8Z30#TeDqU*=-)0A{#qlTIbpquQxE^;u#s5zn
z|HkoG95+PtW*mPDz@&wB^V#4dom{b7aonLzCS3fV5V$R9zpN5+$_oB#N<roRZugTD
zD4%c@lAb`rZvqt(7&xi8qL4{RAXR`ZZxvB8O(azkblM?_VwDr<w8l-UBE+f+I<fko
zdqn%$h3W#-5VWSC>~cl|wG(K->JsjF)k&b90Cfe;Ot`w0+7>XWzTiO6_n$5#=e`6Q
zCD1g1W(jcg8z=DK(}hihz{s+GwuB>oe*zCA&?4a;2Hg6ir+ET>#}!V<Dp}nse_-`N
zEfb)zaR^AW639+qQUa4HoPaNZhuEV8auSddC`h1Pg2xa2asvKwg?Xe2eq;;}CNQ{$
zKbN`c7kraFv`qq}&x|cx_IH35Mai}a<cln=8x%9zUesuK3X2mcOrR)%R;zr01iIak
zPj@Qh&kiWV)D8(8hOc7+M>D*?yz1+mK$iqYCNL_2t`tsS05zXL_XK(*@Nfc;B+yf2
z2|r#mx>-*DJNf+LI)ByCi~UWYUjn@o_%Y4jCjm0GtP)a2NiUZh)<1z^H{=hqN(Qkn
z#0iwp1`-&Oz|aJ4|21$&R>>PThRtmDKTLfEbQH<=H3@`32<~=q3rt1>1d<TJeOYvo
zAdBnbi!8n@&cdS8Gu_iOJ=5KT+v4uJxVyW%eXk$C`Og2GI``bV_3BmCt5=l?q<d^X
z`re97kIzxNvlGKj$=#gj;sjN@G7_Oy(#dTPCwe;Zn-hbb=;cIjC;B?k&xu|4Y<--_
z);;+fPlHH*Cw_{GBQlVuH-M4MNEzfbzJP<s5GRJRK7y6MBIAZR@qK6_wGQW{eTq(@
zLPL*oVzd+UoS5&#816Ee?y>R-W1aZJiE)%3w5S~RMV^#vB@!m^DkeHXF`+q3;wm}$
z+&gZH6Ms4})rr5Hm_-IoOe3GBWZIV*PAm?yO(*B|I_0ito9RRmbNa2wIBKHE&-t+t
zPRw<Jsy{?R+Dh{Lj}vYuL?;$Fv5+knIkD6UC;4<@2`i&4sXIy-9jOR(j(AqIvp-xp
z%;}O79w&5)?e~PgosgaIIiWb=rF0r;YHCiW-KU|c$?rtKi3z1`J<aJV&tGE<WUozY
z2|BUN2}+o+S>u-T(6k(CTIIxQCmaIe1gvpltrMS}_~OJmC)PW0(uq?}Y;fXVC-yqA
zk5WZ3Z**e26FZ#P<iuuHwm7lXiET8xIh_oijE-xxHkIC`U-DJ;oouk%iCbl?)U=DM
zo0_NYp{y1xR~jakXqHO)ekYDNany+etRHmZ5L+Imtj<=OEXjsm(SM9Z;wR|zG4EZ$
z`eV@loS<>Z__PyeoOs~GLnqEUan6aWPF$lUJ8{8@%T7!ml)6*M@^!lPBBc|Z&92F9
zQ&KinjsMs@<%$#cMx-UG4zjuK#0@9zIC0mBn@&*cExLkcqz<jruH)}%L~hfikuRNy
zY)-#NC+PRI`xMDF_AOhjJIv`r2c|x9;;|F2op?iYbK)tF^^$J;x5>|(c<!X{i!?aR
zgyxW;KJI#>i7fU;zoPJ()Au(|dF#YGCqB^VPP})b#=z7qbL|Ck7NptI&@|8|nw~eB
zs>BJuQo=itM?hWy&zdD(Sd;qQi3|e9G>i)qkV!y<fN-vsZIzf&z$J4!k<5aT7+D2G
z35XPsMKHd^p>Pg6rSa>iI7*mo0-^<E7mPcKaw&%ZO3|DGaxr;lPA5ILK)=Wvgp!Id
zpMd-V$_uC<pn!ma0?G<_JUp$CfWiVw(?I7^<l*)b$LvJ}5TR03K);dpVgiaY0b>b9
z(n~TaCE!gr2USl^NG(Ile4UVgi-X*jV<!#swlnv$R}^3o=s2O0fEWR!RA!82tRkS|
zzsV*6A9~uU$tbLc-A}okF_q>szrWokz%GDD#tErw2c%XNusCB_BLR&CR1;8LK)iq&
z0&14C)*}>9rH(yGKrI0Y%oEAru_Yrt&Y3eYnWFu{mLgzVi)?)_*<Wo>OcjtOpf>B&
zRF_E|nu8^ss$@o3UjUtADh&iQWKPF_<gDZ-0_Zy+S_^0+ps9dn0-Ce(GviN;WY9vu
zyy!S0R9dpwig8)CxV8e?2^b|{w18g(v=`8q0xO_{fQ|w>3+N)ClYk?&6XO$8(*<mp
zk@a5QxEjq;8(7lmlSWqo-30u~oWx(5cV{HA2Te7^dok%PpifA7)jE+rGW8cQP{1Go
z0|fkGNnbfKjedO7k3ywy@^1nL3kdd0-WxDq>5w`^Fg`d96)=p+aK;ggq>mKvdx%rt
zF#^U4n2;l73b_?9jxuv(+C;(lTsNL{axyB8K7y92mHPJ|4*HQjNx)=orB9x7M#Yiw
zpWJ<kC7nJ|OcO9&KxP*rU6>(Yrhq*H_6nFKV77pj0#*r_BVeuow*ZmGqJRr<3Rn_v
zoiE@YN*KX-{$+uHg#u1zEwD(y#Hz_f2RNt@8JXQS|CVV9Z3^q1x0$JsE(mZ5I56JQ
zE_>Mbh2a(ZJ0t-f0RaIjWjLM9=N6v;ML<{8;$<X-%=#@djQupL0ggYaTQmW>fMo)f
zQ#^Sl?`B!4i`3F;&6t=}CCdr{vEQ=L46X0XH0RZH`3u-0U@IM*!H%`G@6=1cI_|rk
zvCv>gk%5kllqB2C@dF&21#F_D9aW%WV{6?(4pOo$3a80z6R=&t4mw{wEVrI!*eTE-
z>V)s6yQOXz4Y!LjZGa=?oAqfsqq<MPegW46T&GnFI7l~=fXf072{<g^9Hn=P{RoeK
zjPWSrgvdnddz|?RMymeD<fMR8A?37yGa-JKN$T!m=LK94aH3d^*I%>HE?g8qn0cY)
ziP@UxtLch>FZ~@vt_mO=wJhw0fSUqd3V0>p7F{Vr98c+LWpbPHhsj;WdyMxP$?O3o
zXNW&y@>sx=kV0X9&QogjIKvBy`A#z};fL~?t~hS`DB!Jtscy?V0q^NLI$Cf+n3bwO
z$Onqj00&h+3HVIY=9yEdBV72({2SwU#tbfFT~xwc2xp#=F%#qMzD5&GfWnf+g{&@&
zaATw!Q7&Y2p@thZ-H3J}y9--g*ychG7jnAL&xQUj<Z>am3u!LYb|H@od5Nqu+g!-!
z!qtuT!Y&kHCBF*=m{4m$CWTyh-6xu=MO`SyN@W*{Gbt6a1d|djlng2Ub>`A8l;LVw
z#tJT!V^Th3GeL+Xw-sHe6jEYb_+zw*#44<q7-JdDj21>Rurj&7-eh;d!90#J!G)?!
zsxgvfbtdr?pO8|MVmrn{O^K`|xloHqvI{9p#)`(oQbYEI?3Ow%)ODd(Z%aED>aqSa
zV|~U3E;MwZ5%Xq@jTxITHf1D-zNLoS=3M>Bg%%<GZ+B$N5O3u|>kx0_LR;o1IVQg_
zZ|_0}7dkTk)rIaZbPCz0yU^K%E-rKpDczXdZ4yr7F3%s;Bc%6c(vwycQiiNI!rq6g
zeO<WbPo(Mq7Y4d8&xQFe407Q&7e=`-nnJO}G}wjVY&?W<DC00jCogjZ^O20?>US4v
zau$to0n<!VT=>(4vE2HH3*%fEAF`apWCG(v%J7B8PEnc6ikz!Jvj&zjPfb%@_{)W9
zEY4z_&PbLsn9O7>xxq3!q|ae8*F|3=ZX`dIGsU9*ap75Qt4_<Q60v~wg)S^&ve*R|
zlO-Yhr7k#`3n8VBE7I+P=z_#bfYIZE?1DFBqcHKgP<pE|s6V9to7<u?*Fs7qcjVf5
zYmlqUTv+bH3g#<a_?O8l7goElhWR?iwT$Feo||QTh;N|q?ls1uveAW2tZxprZXs{E
zji_#SVTTJ@+{o(2P8W8$@R{xz7k0a_$Az0N+~O{KT{!B(F&Fl6bwA^Qkhg;_9AbVr
zq#SX9jtu#?eKuWPl6>5S6E6H0YCY$|N#>_Q%4sHN7|*&u-(*C6&%1EJg^Mg+4Ow1d
za+&dp3s*iGNlWD#E7uusxIo`nP2z1A?zph{sp*XicU`#W!V5OI&qxN(TzC-T4_$cV
z!ebYnu<|sdo0=MDM{pY__c_JHR*(plmoB_wo7W-Bb4w%NGJnVTp78@?R7>keCZ8Bn
zvuCMN&-&GcZ!Uayq45+;{CZOcw~>?OQ!R~h#)dJcYPcI2Lp+lk5h0$LNu(R+pBgKr
z$A+`HQN)d+bpN}Nom&erw)$qt!6c^}x!lOjyZ|G0%;QF0=J^=&hjcm%)LM|MBfA?D
zE9}O_>b5Hlt;zK*#oQ?F20fyjHG^ewZc7O_O1e?rjS6m*;x6UrM^Y0@>5#WFOv*A2
zr1KJMq1K9SRAMELF~$uG6B?_s8&#N_7-K`anaPZ1Rx1-5qdnA0&mU6X2Yks?WnPW3
zx*PE!n_Z9132r31(cO(6ZX~%;%Z)Z}v~?rdjTAS2cB7>mljBpy*R`g)k>;ka1dR=N
z%(dO9<3?RK2Cp!cPc}DUQjf7dV*@uDG9iOTOd7jE9e>z2b)y-DDB0Yc@h3*Aw)jE%
z7$dggaa+6TH@jFGop5+pdxmak=f*E?w0GlMSCHPpjgD;Di7iKOHB;Z^(=6$35U0}F
zjV^9<b)y?AzlQYVVKLN7Vox{zYwYOlMjzV8KIr8(+|p$F@`U@j(cg_M-Hgc(U}Yd9
z4M7T(L2eNLjd8FWLzoO@9L6}D@krxLWcIroquf~Q#yXmY8)Mv<>&D-1jCJD=H)gmo
z(~WU%oakpCH`MeOlkv1)8Db~6F_Fn6H%@*@AZ4-}Q&=JXr<*=*8D^O(XD6h-)7+R&
zu7;ZO_p{foXeqqYbnu~NmK(F(h^-&DqL+P+8+ZHKi|#gMahvA3G2acr4VN4Lu%Cr)
zEOKLk8;5t9%Knr1V?K-BSV~!Xz|^uufhBH~ahvY#GC3(YZd2b!2{hKaes;GTBHL7n
ziKbqX8y+`gR(y=q-Rs7kUUnji8-5C=8!9)gV$>K{FzSp!#$}Al-SB3JrM@e<nrmTk
z;#5|<v4)lEWvx_Q@5Tl<4!Uv3jep(PNOy&5+Tq3~4(Vn$wlFF4C}JxIWSbiu)|x0X
zl^a;MGf(MnKh(><lRNHW-0j95CVSo3&txAttYxJ_&JWN+4j6>+up39*xXO_{%CkD@
z#wj<Bxk3J^9A|QZL-!veiKi*~*P71JCC2288)unZxmu87dx8DX(kSeN7difySiJ1U
z6(&ELuDNmDjT>&<bc3RC+l^cQr;tKp-QlLYj8whH^P#4PZai|Mk%Gnw9=q{`qDL=7
zQ1H}^XKoDlVT2FQ-FV@K(*wbSmu|drW1EES5?;HpS2Pb6F+{{0H{QDO&W-nOG!fBM
z#0NJ%(yZpit*mAL<i=+=3W+Ez;)@$!-N++i*A+9BZ*GHxi}+4=_;GUv5&5gzNeLsL
zJ)((Z6me>rDO1QkLPTZ}ks`9Nl2t?$kt*59GF!+dCzEK#>>_e7d9~9<HdJzPHMfYh
z53^D=FIT<K%=ttR<`+?bNkK+Z>SRwSBBH2>nj&hvGB-nfF%jiOR1lH1nZ39Ou!j<i
z<glcOQXyWNNg2knjO9e+D;`H?6=@Y!Qi#NfsKiY%jFlNluOh-EB36Vsq}W7QLflIF
zzeb>_*jaRlm{Y>=e7aX+RaUBrs2;M9XHr8%*W)I#Nf5EDLP{cwNsP5bB#TI4UXL-A
zF^!SB)MipgL|rB$>N-fIQlG00L^Nd5h_NvvwZ`O+Zzf{kK~qZ+5!X#bnsfCh5iOXI
z@-vfh*<xFXXf2|Rh<|#Udx^Mu%F<RuI}yK#XwTK?b6H93K&zms?zVSik(5qM(nWM;
z(uJ|!2op6?=_cY=R=P9xU?jaKlacRDy=g;FnEHt5E21Cs69>!#MD!O?@~VYOi|v+y
zY&<B`_ctcVd1Hr)7)Hq;p`wK0B1VWfC*r(_ks^K<;S?c=7$qW8N6Q}~#)%j$V$30{
zQ78e1rH&PGTr5yww0%6;3{RaQVy1`*A|`Tml87lH{uD7;#5{l0<dpakx6M<zX_|=X
zO#Tw_@ozizo#;%t_r2{|R{`R)M9dbkRK)NKHRgzzD`GxHRRq20>Bsxf{uYh5sLc~`
zj1_v((*h9-MJytlNA2k4_KT_eX!|910eY7jRhNjy%Q=a+ZJCvPx<t4|?4(^5A&QVh
zY!LCU2#*MvJd4oj_=xa{P(|!MU{OT)MSPm&2(a68j~w*+wPhv;&1Z6im2|2GDJMm&
z60usuwL)2!i&!CICGGxlV*>P6w|al2kv;J>ba+Lqrz>K&l~%D%1a+rTih9#B<+6|&
z@r`sa?^?EqC{ZqDlZeeC7QD8TLPcC*-zs98i0vX=yUjZo$&6m%LRBKWMeGrASi}*!
zvf9}9ir6P&zlfVh?e*@a91wAk`5_Tck$hE2ywTd8_mq9TC7le8Qb<Ld7I8*IHZ|(F
zi2p>KWcw40WJbNF)Q`_{C*>3?=2P|~g|kv$)7<E@lvhe(o$#~^A}&(IM0^%;NyKFl
zw?*6$afK%Kv*Rj-h{?K>)+wD+uZy@vsnR+1205g>Dq}mDJ-+VHWKzx-wtScyopn<3
zT@lYjJQs0K#C;JDL_DPV)3ME*My*SP0)=JMBU-O)dMx4z6Vj==q*LVf{EinQUW#~6
z9wKd~d^KK)cun!AFxHRX8<AEI*0&<wiS#wTmVTE~=5|TEb}5C-KCt~qM*8O26PENZ
zBEE{qDIu4HR&^ZTXtt7(`QJrkkWlKVBTPa@QY3^+NbP4On>O1VjSnP7NXX0vnI7AF
zpR$octyv^wl@P@qq9tUPkd66mJ_Y19hlJx1?da^(9G^x9B)5b-5=uxYDIu?fd=d&v
zC?X-hg!7FP-&{*6Ac1gPoy39?3Q0(Am6$1OJSkP{*@{Z2^OvQ#gem8&#UxZ{86DXu
z{_;iZfzFALFeF17z3{x0WW4w9Yg&96CZ!p>%`%mhP)<U58l|u$%$iOH4=m}#D@llv
z@Rx*X5-LlmBB6tXj?_y+tc2P$q6D)9i-dRyH6&Oi<lJDkNw7;u$!)7G6mUq0lTcMc
zH3>Jaq`XgzAJ)M3bFKJ!3#`<nTuG@e;Xt;yT}kouP4_ivMP%I3ksu*aLK1~EUu?JI
z_F58F#MB^8g<4Z6@)FY6l5D7n3YpcVt+|l(X9+DO)RRzOLIVj6B{Y-JTtXuW=x1px
zp^1c<wNi;M?`zqU&(>5z`uG1;Zv~>r!%q@gNTAj{_2LM<g{-Y4w3hIT1XYcqlio%`
zI|+T=1=>oWJBKc!SH(Ng!KaI&y@arccBGKri9AafMi;My&Jwyv=>EktR6<t?-6Zsv
zFhIhuBueNdp*K~Br1X&Jqgq-|ww&`e?WQ;F_Jfo@G?s+2&r|wwYo+kCZaWg4HRGGq
zk0;}S5(Y^aOk2!0ze%88gk(>{kwF19iU?J|RPRJ&goKe2CP*L;ze^Y;VZ4O*H!ZXy
zqa}=yFjk^BFjy_F0)NnO6%%M{#z}ax%`*K;%DrrHe~K0=4f5J1N|;0`9iBE>!k_GI
z3N6PI-K}-%sFNw=e5!<7t5RrD(<RK1;FaK`$V<qPiUm|HWSu2pwuCtn`lwO&8f2L#
zVXlOgqb+|+sFlyrP)vR6PMz`6F<&ySlz%7*YsZtgZ)V&=35z5wmas&^QVP!BRu4@;
zf<U=6IZcx2i+AH(65LFPZ(nH^L!69rA2XM2`3vc?1b_8T?iq0k5eaK0tdp><L3}_$
zF>88|wwtS@XiRj*0!<T_(ZQ5W%PIHh{0<5yzEXl1h+4(^YWnc`(L&-HO2zgmMAq}@
z%^#aLO4tyZ$-fdB&yS{QOxcyZNy27IgPQSMBy44pwPEtGdzSEY#|{ZQB^;D+NHYG|
zX_tgOOm;Jp(siAMa4%Q)G47{0gj(qr)x)%pbW}a4>%mb8$LMnNAh!p{C7h7(ie@X}
zKM5!4gi`WI_;k*CO2Q>3rzM<`a8|-O2^VO>sWxgoPuD`mf<%5)FS1S|RWEZdYP!PY
zs)TDyt}~JiHQkbMTf$T3cO=}UpyjkbmT-?Ybcuz^eI|1j79##Y!o!gMh)IrWDT9wV
zo`h_ku^)2#T*8YGf60XA)AWwzjfAffzR{&r!1h+cJIZzmA0&K~K&@ZMQo?6iUCm@d
zQmVC2B&6yO@?Appoc7EfM0$|HL$BXQxW`baWbz<mh}W{F4_qA;;lZdTzfe;a53+g?
z?Ll@Aem7a7Jjmw3Kkcmc;RUFQ3DJZ(JjRqr%;|w;ax{@o&O)Tu$Z5^vK{*e~dyv<I
zd>-WYpn!+Ijlu#C3VKk;W6ZOd2ZcQ-!n~-*Si+Cx(9CI3#EWwiRf(7Ipri+-JSgo!
z84t>OkUG3T3YVpu>{Nbm!U`T#^q?B8%Y#ZD#CQ<vf!Tv9FRhgcJ^$OIb!{SOcT8NR
z<xs1Img9lL1FHu%4``3bfOM)7((2+osOrI3hq0|xp2tMTbM$I?knBMX4{Calz)GSA
zNgh1Snnq42sz0JlO)0#h+GL#5n#uv8n4~eGND^QCIHjHk^*xy8F@9BS;6XzVx_i*W
zgGL@B_nLXooJnI3nlNd~J}DYB)=#Xo_MnXiEj;vn3PzWfjIC&o78If?r55E?Ti(`m
z4?26$j`=S?_O}3is~|eCLR0GKK_}L$4=?azue)%yn+IJ(yHBg5;QUI};RT5F^q?0-
z$%8*U=<Put4~BR!)Puh4lMH_Ipq~f*Js7~sAVx}?fuTW(ldHj@`A|{~^I$l&QgV7Q
zf;Mz`fsq_T3L|mT@B&1rjAn5R8~jkHX&i6yBo8Jt8SlXaO1zwQ+QEseP~2z<Q#|;S
z14X>IqtH|j{-Wf`Sn$V1K{(xm86M2^V3r4qD2H=8W_vKlgZVU159)2S&-LJM59WC=
z=C_2?c~jQrbR5s=m{-xN6}K*+fP6J=%H;^3YFfyAx!JL!fpszaS;9yTmollp+v@Vb
zO=HQJB}4Q;qNI`$FT>-3OnK$OGY`BT_&hl4!8s2U5Bwg`uXvk0^bc!LJy`C+3JU%(
zi^ixk(yRG`OqMYwJ-3j-N)J|fu-1ch9;{}4O~{4}EM>Ei&3X?uc(9SOn!EhV2Gm5=
zvYArI8<EW(Y@uATrf>D&2wl`3Z1Z5d2Rm5Y$4IR^ne1ZR?ZF-<dl?T)ab&Qc`2og*
zjE5Mh>97Y^vd0oRMwh<_r#+ZzO+VqGZ!E<r+WL}?Q|H=NnGiR`ntqb9&YIpP+_7?D
zGTEG=cv{nEW^=5zrk|&y^wN6KgG(M<duhGk!TCZp1`3In$+-s)J@`Jsbd{Psxb49m
z53aLvlaZQk(7EdzON7cTO7(;!B6mZr_dU25;$1SvJYasfYXaFkV*WVP`ox31)^yUJ
zd+>sOoXN-|<E00$JorX79=xV~sTco&PUt-Q8xP)6()M$_qs_hE_N_JjJ(CQRt(UCn
zA89R_ET0&OeD>fA^RJ8-c3VlzAR|mhlnnYe#&8)KWkgbSmgB*f>ZexPGsz$l!I+tm
zsyS`xXNJUOk&#sf{Xu3zq4?uPQ|KY2Y%-!{WS5Z~5lht^GIGkuMLzAR)$OV8MrOTQ
zD3$oh^7gzkipeN0gLpp1{4xqKDJY{56Z&iR!c2<D#)Cpsipp5lA}0~ZC?TVgj2Iau
zWjrn7pa-8TGASjav}`<2L}D2kWmzo8Se~&0BR#H52K3eldH{$1M!m9(s;pOGq$U%S
zSQ+M!Vqs!sv@zOcIGDsSQZIUZgRmM`=~>GfGHS{gp26~$j072pGU~{vOF`?I>E@1N
zA3nt<$*4u)l93`KRYsbO+A^-bh^@N7lx?9SdWVS~cO|n<TW!Sa$*3=*kxZ|2ur#3P
zMa0ZnYaVpY)Q}uza%?$jBWx_AiHxQ)n#uT0#$Ym*@so^SD26gx$oN@C8yRh7<H@O(
zGFmff#YlgGPG2QYx}&~*n%Uk?HooJM-d8|htxMnU*+E7}89im=8;U#0#=|&WWOS90
zP6>0~PNlPqIhhU8O~$V>GS|2FkkOq9MVP8olpV%H&_sI4=q;lU?c;gly&ubx<N7l1
z$Jn2703#U;lrbp8qpbEJGKR_+BV(+LVRRGDw~vr9QpSt!j^Q%s&+Idej{KeCu){Wr
z(PT>}PGz*ruVtWTY-QuY1bT2|yo_<QH7Ctf=yh!qWK5JXNycOuf6ACDV~PxV(uyo;
zHwkHh^xy-LTy^Y((|B{I%b3CB?a*jCP;YEmXHzI>r@UzF#atPG%eXA#3LS)7ws|tv
z$XF|5zKnllEReBKhD(N<T5p>Nwze;lv6upDu`ZDz$Qal>eyI$nj4Z{HYix7WoRAov
zDVEI0Sd<~j&}9Va{+A(>hqY#f(MzIk_A%d3CL8e^WwQBY1Z1e(lwrMDqihU|rKU4+
zMX5S&rga%DxnkN%8OxchV668hb;^m<RWfMY)r@`K8OA3rn%2?rlyOSNdKnw&=TU_9
zUm2TZY-Yak2cFEjMaEVcdt~gDu}#KyN}jXHyC}P4(9_>Lxk^v&5bs&N9pP>n-XY09
zs{3T@mvKnOVamPg?a26mjDy^T49JWg-J+6df8-I$Oc}@6=LtqKI4&dZy!~Rp@b;gK
z5%Y{uPRq!jE0)SR8D~QLER!6ot><N2kWuApG8tTC@e=LA(v0*^qx7FpS7ltIz3?Kd
z7uRLnpsb_IS;kEnw`4q%@tjhNrh3xyP{tz}cPJt0YGq}|IO_u@_ZeG6#opRuBJr_|
zGKH*9WSrY-{qof^^|JLTo!Md5oINarbsJbMXH1)mSrhM>UdebZ<ExBsl$J8y%J@us
z^xX7L#(NnbWqgt`x|{vk0rLkL4SQRuWL#ubADCRx)^B@E?oyU#^DSR!p7SmAYwvfu
z9;;X~coF8s+Z|@&RZp3#95jb}k<p8oTs1OzaXxcwgcmhqtW?eHMM}Cg(u<-ImQJOU
zH;*wzd6CVFG%sp<5$#2GFDiOb$%`Cb<n*GX7p1(&<wb5XxF25J3;HMD2Y*@fc#+qO
zLB(wOylD2HIlmW{t7fWNuiFcFL0FKnkQarS6k#mNNUg=ZxN^--1YVH07bk5cn7n_N
zP}++pTg~Me%Xm@Nizd;r<#;U8?b}WB3&s<vzy>>dSz^4X>_rV)pchrVFnJN@MO813
zt}(}Y(W-h@yBB7zl479=c+pyjC2nJp`1UFmhZoD6SwD|4Rr8|$SQGg_zt2phI#=T<
z2rG<g0u8#}T#JWJ^diZNaemX=ZRUL3C7ELDMJkEeVjFa~k`o$*{%yRD*Z8#m?UZ?O
zHd|d<czb(2a_dC{3hzx@LoW^mO<^}}C6}4%95FS%(4mPJO}z;BA)^n?ylC!);DyVJ
zpS)<{#ZWJXQSjR*|LjFqFS>crl9ow}Vv+O?UbG4EwqCRg@n4v<_u}WO*~pAaM=v^s
zTGPGg%)CoTSw1O}Y<~5kUr6chMUN2g=|!&)@9jmO5bw*Rz>KQYw?Fd%j00&0nf%5`
zt%I2iVa$}R%5X16F#m^gjLCQ}CV25XbFv@BWV9D!LdsYse^9`gJgjUdGb$6kn8nH@
zFD5gY;>9#3)cU6vQ$zeOCS9s#n;ueTcrlat!*PYkcsBDnq1L%f{$`x##e61pZRupW
zfcZkkMT{ga_R_bP8k@B=q&S&O+WeE-3(<>XUL0pdq73w6g%=*K%8Xtwd|oKb$%*EL
zKg0uGsLX$C6SeAG4SKOGWJ7zg(u-AI><cNYz1YEg4dYrb)_Jj>`4+|vl&efOda;=a
zdEUh2NwN{%=J8QmL;5x*+r6Oeqb4dlS=q(7+lxIR%e_p-(<@KgC+}x|z>9-S4uxzE
zGdaR|)QexfRsP}ggcq;9c;m%?UYzve6dT;|(mx~`fj#ZT886N<KgW29@jT-N#*1|7
zTf~y_WjcMVTxGn@c#ZD5M=?Lf$`K!Ri$$tF@Zxre-|^C4;2Xo;3n}-#n0UYl$U`q4
zdGR=;KWFm9i>D#w8I%9oC%$0vlJQljbwT|qZ<&8#e8>2n@dG0b@sY_VFFrHr%jfrN
zsP&r{-<fCd88ZxHq-`Re$%hCZI{VPYhs-`i`cS}!f<9#NA+5KWN)9GjeTWJv*?fo&
z@$5cSjfo($oUG&u>A9KYp@Ep>3+eeo_Jw>X>_bf-5_~A)Ls1{>Y*Q>`S;dFqKEQ_(
zK9pp!B4a5Z$}%a<SccKebD(LI^PxN|6&Tm|aQs+BB_Co~smw^?k1i%3V*kIw#KLIx
z!N#Qb_sTy!IJg?eSk;GWOsJ_klXxF$F!AguMq(oKZazyRACi2i<wG(nbs5PZ#fQ`%
zoUt}zolvWDxQT4)`A|QkG+@$@F;C^h#y&Lhp($Pdth8rr&e+n2pO}z`7EFE)#hjE@
zthDx_O~|IL5AB#Q4#xfB10k7p2(@<fp;L&bhx~M9WdLKhQ0uQgbPw?!KJ;YXE2Q-H
zp-+hSWzvtaKclZtJPkUK`5?yMd>G7x^dU@!`Y?=1N8W4taXHe5Lp~h#;dh_$({q#$
zqkS0T!&o0?`!I*aKYW<v!(<=Eah1%*`!Ip|#E=rzJ8}y1X(8oLAEt)*UrgfX8-J!g
z-G>=moyj<has3eEPp0Sk@V5`Ed|2(nJRj!!p!neT;U6Cs_~7(GVB>|1i+xzcWVglm
z+j}ZYxVn^npwBa^F0M*GczkgCAo{Q{U-%Eplx!J^$ZX(a^wKB~>_1w&HI5AUp!%?!
zn>5BCBN^yE^luRH!*UsmXPQT@V6rk~<7gVW#)q{&Z1-V@59@yDK5S&No^gYZUN{!{
z!_OukwuJg_X7XlhG&OByzRibMosGHe<m!ILT|VsgVGna^+Uvv1pZF;NA6nRqzN60D
z4sh$ikj<=WS&sN{l&i%R9Ak3Nhx<Mp_u&Lr|MTIZ50`v6>BA`>PP2H9@eJcx#vOJe
z0_T}uVEiR_K~kt(_Td&QSA4kY!!_ol-(Yf`0&@9(tG>y~j8wzbZ6EH0Ebsa-^rEpr
z4}5s&!#5wkbJHXGJ0Blj`0$vkPZ*yvK4ZLB$MF1;!sWw9R;c>ghj+~1gp{{F^nG1`
zn%;+$4@_QWk0S9C^UsW57{B^3>YJ6CsAN!(T|o{7VG6<(WK@tzL6l;goe0KAMyh6J
zQtkJ!EDEwJxYNv7X0B4k9%T#JL^Jtj3CqbOpMv}faxu@%n1_+N<Ylt$O)BvM3JP<z
zAY&oMtuqbJREj7l%1SZDqT7w9A)ufHS4%3Wz@!u-HI-IShIv`Wa*X9et+VgjDk`YN
z)fh&*g31c2C@_U=EKFh<&5R|xCt5?THYVBI8wu=C5XaT3j3>j4IagN@&(#`?X^b@)
z6BHyeNn)(UNL`W@q%cnnDY1Qw@Yd#P9R+nmdOarf6*OSdFr;Vd5Zy#UQw2)`SQ<bx
z1<e&W{Sf^4NkIz*75%8>$Il8{D)>*qNd>JGv{o=!!4L&)*iTml-4wKC-cG?U3huu*
z_pjh+uh65NXt3ATQ9);J?WE9a1M$RXy1PE&RnhSIrsyuAnM6;_@GJA)jNKV~Fw&Pk
z^i<G``St@wtokVEOV0N==sQRHvEE{%qrZXy3I-||q~JFSrf4eEG>pE*W8X$cjhBuG
z#cB*yFigQr1+x?k=Ux*SM<^Jn;CBUQXPL&bGD^Y9ju!gvp3w@%D8_f(l-h3jdM=f|
zo8u1!4GY`HDHzX|TZ-49`AlR!Nx@_VQxyEEU^*)^es)Y%FioKkpN_v2TsRa)eaW86
z+`&;Z*k;ij<G9Uc9$=iKV6K9{70grMV`aXAe-tdGtx>Q*!9o_7C|IOmv4V2TjXS5|
zO7jZ(i=)fdER*B1{uB0(QczIfQXnhvDsU_G-HwnHcxX9QjN?OP?`G@zNpVCLH%}fU
zTk~9XT=^{<RZHYdRCowK<McenEukvV6zB?q3ic@2t6-Ue<qEbb*sfp&MNGja1)CL2
zEnz)7-n5G1(A&CN!O@PEH41+9o2aZ+u#Wk9#tk9;Uj-XO{K~L2^{``$g0#zytqLBd
zSs&an(exUWu->g}-$B9bWZk7;r-A}??S*Sveilu$cZBa&V4aq@#+|rN!G5~cdFBVm
zSivC$hZXGW{lA-`OYN{DJh!84Gi0H4PicGM6K3s@<2WlPD7VK%e~z%xs!u66tsti#
zx%@ao8KU45+ni&(%6Ojf0^>!-ON^HlT%n-Vww2v!>1a#0)wN$!a9zO-1veGEQ1DX0
zEd{p~Jfc78RE&Q)xuf779UnSG`K)*8uq4J)^d3-<=a?4fvp!VNafP|vPU9bZZ29a@
z6tu5vq2N4IU_WSi$`PO-7cOsqPS<kK^y!A>70=`Y<7)+P*z&D{cM9H9&Ib}{uW6a9
z52X|xZTWMealL<}n{b$MjeJ({MZs4E-xOr=8+ZGpMwX4kP2Uw{@FR?sjDBSDBb@oN
z8b&WF5nRp8xO=)0_DDZ|x1|%w%3_os*_cH8k=>6Rek`#>{#4HR03+lL+m{+KZB@bC
zY*36b4`W_G^7-+-xh20Jg;^=UxTCqFpdWW{Itp=>-qlcqNl`}fS=gMVxF7JNgdZjS
zD8u@vU#s=Y5m(BO^);<iilmkH!?f2{>x8K+x872$<@_kmyaHp#?6!?BY%zXR_M^2Q
zZTzT0UHoY1M<YLC*`@}gnbG2hl~&!;I^~(!=7-%62kX@t<NT;f^C_KN&5v?<jn8AH
zbt81~+)89ahp3v&6Z}Y|?%Pe_x;e>@T7D$^k>W=kKkEAFJ(jjqKhkJXw@odsriQIH
zj%sZ`l(WXqyPKzM_57&shoyCv@1?>IYNiH$Xt~3WiOJO3nEkh4Y{J--vB*SIGe2Hm
zvNorm0<3h6N_hQKmY<ooWSkvlZ{^38E9Q;|!rS`Mj#lc&C_jGT*8Ys`{pjFFM?X6G
z(Tf#p?)Y>+y7}ogK=#;_&VF?9qpKfzR{bw?0%}-yKYAWD^<ew1S2I4kXzIzlW9XAr
zZ$J95(wC7I($5bkXV(B$2Kq6`kCg@E#~v{CPf7gEkHLNn;ijQ}4EJM%AH%r%NKUrB
zF^%+N{NRWZo&I+}be-fF&8<@y$1sld;}1W5U!G~49}`*0UBoh;5^`kR1lo>_7Wd-t
zNvuz1RQzH0CujJR`BXpt@?)AG(<#qcnc>GwKmPX9Uy7pF2J0+8qLWhQFwQ3BrHRB*
zJ8X0P@RzVv>|p)ZmOkH)fBaZL-EHag7-^-YriFei@?$ZDeTVJKk(5Fut>h#x?DSaf
zQXXY#En`J4KiqWO0*DSk^h5IFfgcb3@c1G7an(-`(80_0dl`L<3JvW?zz@}rb#z8(
z@@LJOAItn$P9G1R*mOUFetHL{b?ZP!=M~8-=oGKEuJU6wi!1$@(A?hLp1g*uYw3WT
zHTRognouRV@KYN-%DRC@@nfqW+x*z*$0k2E`_Z(ogS_?pY&zP-PUObU#4YskV~B&E
z0om@y4nKDD+;;l0i;i9;<GP?Hh#MA39=<hMH`mznWB$$U%Rg4%=f{3O4)}4<k7Iru
zr-l4&`gqB5h;0rt9$~z#n2*v1l};gVC;a%&kBh9I^y8EtXZ<+m$B}ATPP2H%kG&t`
zs{a((tgLZn&$HO*b_V);X{uh}>e|MROH3{^USTYg$MAoh`CY~vj5islT({ox<I!r<
zZ9nd?(qoFTclVgzXRMViHo0KfBR?Md@!pRQemr6QCF4`ZXN>e*>T^1JZ_O{r+kV5(
zE7o5#9#YJ2=uS9bdF#hJRxVdHeqZ>=JS<?`^PiZ1_T!5mziH;Le!RJAd`hXQn7{ck
z=DX#)A0MZhG6b;Vo7Lhqg>$crjMiC}OaVj$kU4-HrLB<xWC<W^0L98joy`#DeVidG
zfd6h}Aa6OnrY|q8*~u(`4gquwAZGx%0w^0mxd3vrw_=QW7z2gF^9GQQdHw(j1h8tC
zsbBzw11J(ep#Zu!jU3+9_zjxM_WBV;+42<M48@rvfD!?0tYjb1+;P@!Eg3*5)`^!6
zpbYcJY+pWr3IQ~wkHi5~WZlA8DS(&&=DoAh|HV{hr3#}dfY<=iuUpIk>>O;w{CjxZ
zr<GP~0JZ?^0XPCk3!ruYYwBC#0=RtElpH`+u98xXNp;5f0BVHvnoJTH6B&~jYXxvM
zDV{o}1n}!rQ!3A)#p*=*Bhoqn)D55^EA;}XAAk}S=1vWRXv*}?`03Dqo6NnfjRI)Q
ze4VLK6DFBATML%5G-uw5@h8UOH*75eIQZQBa{w(_8M?yAnbrZcq4Lf)Z=tCz>+KkS
z37~xdrHdGGxN^xjDO5TIFerfEC`tiz4xkHL4q)sWK(_#WRfOr+0Q#}gJ%ApR12?Tb
z1Lze%?*M(MGrV1`5z&V@!unF$^hpdXH$1Pnm)xIw%_?Kq3}ilHp{Y~Fu)zTg31Dgf
ze+4j<_3@0u7>5TiB7l(rOx$N09l)3X^0!a<J%HVI+bEjh0L#@5*0BNn5x_XMZ<-qa
zV0qZ@yNrKWxD*@NZ)@=htZ&b5ofyER044`8B>-P_+n=m2ykq2f{u*J+zGRrj%528z
zjQf{bX9O^ldD?8#tN>p0Gh#J|6?vUyZUBE%vIQ_dfPVs5#QFk8GF!+bPnO!mFZ^v^
z%+<{H^o7MN&Hx0ime$}3z)fpW>GcluXPJ-!cox9(06YQ6bb<m{9e|gObw(ef5`aH|
zbB9d<igpv@rVWp=s{v>MoZn@9N~{(e8Dz_4jQ$<=<#Zb`U#pr{1~9gQ@mtB70M?Qp
z>J`8`Zau)bK7b8G=r9Jbmz7NcYz|<106PNM5<p7p)NKJIo=w>r!27@AI=8ZXEn(fT
zG;VnDl$~t9JAe#hth*Q|C#RA99@>J<rZWc<!@rnMr={+r1%7qxr~AQWp_v>E;7|aE
z12_`EDfW=w&U!R}69GIqVH$eVd@O+DtiMa?)U|oyf6S@lNjlN*I}tg}${EJBA5zZJ
z;Yvy&{Q@g@7%v8Ji5!kLT@K(TD_7{KQe+O=uLaQVy!krq_@Bwet7pmh)^URk%GlH2
zze>Ipz-_K3o;N<Z-3{Pg01GQy?g#LQ^#=hwBv*oE)-L12(&aMt$E-gI;3@a@<;$`O
z#!kHm;3Zw5D$1*P6~JpcM=J8Dc*FLYRpW+#%lsY1Hh>QSd<@`Q0N(@nL?OCrJr<Sz
zg`$zu@i~A$S6Je=Th>0eehnajUTXWzyjd}4P!X;oql$M!6T(zPk1-88XnvBZb|#gc
z<}>_Lnb|7k($EAVk*svH+Onv~sv=6Ir!5ezB8Q5cDzdA{JKNIem8n4<hhvyEd8#Rw
zilg(>K0h~YeV^fMnyo@_OJ4R+h%q1Ih60xSDhe>aZAmPsqR3n$Eeo?!L`6~Zzu8<&
zMF|xp$#RdixC*H7&#|7G+@Z+8#8N6&R<2Q+?dKH=|FdFB85Lz!cy6Yie(dOMH-1~G
zprWFR<|=+tQHd?hj4>)ItH#T+J}gVD!itHpuHO`^Voi*7c=<4k3abj63cHE~6^SYw
zD&kc9{lpSaN_I<CYW-}fuA+TLOEncA5)zljSoY?zw9jf;9&4+iq9!+OinTP;tw}0s
zsi@7POqgLU(A1KwB1NS?y^c*)k)~p3A<JgjT(zNXbs>woF|m${x+?0axRcBBYcc!y
z;)Uv~Xk0z<YlNkNiiRqPG-7PbNYy4Pnlf(|Qpi;c9<e>+&y2xwmX<17sc22pn`vsJ
zq8+8yn6O9N9c^i6&DO!2EWfa2p6kYrbYMQ#ZtbX|6Z2a;E$OuH`K_H*%qU{~`$;zy
zzp6N_;)sgwDtf4Jsc@_4siK#PX)30x=*@k9XY9k+S4BS+{Z$O0<*OK`VxWpaDuxi>
zXDQXn@tcalD(E4FyE81im(xGjTe8nG9q45qT+%+AJ&a(y)5AD5BUQXr!_JO(lzeO%
z#rkL!V^oY)K^-Tt@`p<APRDo^6I4u8ab}H!yix0p)^W4<S#B;cWqfRztYV6aKUGXs
zvEq^CFFJ-Bt+&dhe5q}FvfO+r!b)?P!QK`y&SX5Wz%)z6Y!!1<%w=U>NdKD&{q@3p
z75}Kv4qCkdYx@0!qOp#J+_Xr=Viikhpoa-gRyxkME>-bupC!{mtH4V6Nybk`QH4ZR
z6&oqfSzpd5GkR6{R48;tR0LTGsPvQvqAS~;TrkDZ{|KwlDb%}a{3BYI=d(YZX3}TI
zow8V$(cXPCJueZpf_tr0u}Z~inyTHho|QE!)~Z-X893dVL9nzwV-W^ez9l#|aBJ4t
z#c6JvnD1g7`zYIH6<e5ZRk4k{WwdNpv6Gdd+e|wsy;oUkMOhwOjdks2eUFO0D)y;p
z(buwH#R1x>!IsH3+kh;VgLGNFF@6?zs?hEb<&4`>sF~%cieoA=Xb97AT*V0$Hz-?F
z{KwwTF`i^R#keHFcA7SwxlJ~mrS#xi;yf!CR9sZCdw}(limR;D>S?`9kqNV2p{pj$
z+95gqnu_ZxUe7T8&5cT_`h{+><#Wc{jCWMrRq-sF{ho@4tlX!Ac_;jV3iGWDPiB~2
zj5a?~@mR$Zx|Bwko{}-G`o5XERF1b0l4rwA#Y?*XX*d<1*w4Eywl_Zr`+v(w#_#F!
zVV(TXo?-fEa7T#>DW6&VLbrj6$Z_^>D!v<M#2A#`2Q~GR&1Fvy*N{;|QO&sXGco37
zjL?u-!(O`lHDuEetx?LEvuMT>#91}^?os*_Ve7HO2tsxZ{@HQQ2O6Izb7;mwa%#w>
zA^6q!sog)#xI^-2$jct`X(+({sc(J_g|ZvFUyulkg*6mmQY1ZcMoFXTW{t>VtQ2Pi
zV+jo<HGB=Xm!jdq?M3!PzTa&3Sd9skVS}<7%4sOCp#oP;8e%n6WL}9ehOshZ6-Mei
z{9Kqh#A|4<Ft=*3F|li?s-c<&hlV&-J|-A5{BYY;ovZQx2Wzf0J_FQbg-C*i#w9I@
z8rCl`x+H5z(NK6LimXJchBOU*mZ9%5)Yedkf~n!bwMun0)YFizp)-wmEWW;mUzjw|
z&`?7oa>&(Ij7>DOU_zEnnKaYTT*JVZ@lvUnpEM8>|CyUwhAjP+3b$t7MnhW-^^e6<
zcPi~@r|juJczX>U*rp?6C&p$)GgE694P7-1(&!gV<QY<}n}(iDi2tggJM$hPrD*pK
zy_ok7DSb5b4e@?V`ZEroX=^xBH--wmz&g&9$<-!lFgFd+FjT`Z4Z}6GY;IFDjG%)b
z7BgPM1PvoK{H|e?hQXa}FP>Byt6{W;F&Ylp)B8NHM2`;5zgvmO9~!=e#f)RLL}Z+(
zVUmW~8s=!2tYM0V=^AEe_*27F4S#8vreSfR%z28%6kA?I$d*(nThga|g$b7~%{-H4
zRV-!}W8>$Q$n59Fw&j^3=4$v`gHwaRP4hG?A}1Q=YxqaQ0uAQ%39}X^EM(H8i|u~K
z7^>#)Vq2nNDR;3A$oL2A<kO|WtwE$sq?C@yls6{Ri+qJ?Tq+(7vIZ~DkerY*wNz#w
zdmuh2cl-5`87WW!4XOrBgHD+fMB^ZW8kT8jprfIV<r-FKc(37uhLsvtX*jFloQBmJ
z*3b<=M@++74eK=Q*06_iSi=Sl+bOWJ?HAGZuSS2>VB4&rn8&tJ!zK+mSJ|f3?QnUR
zt-Q~+MZ;DN+ccDwY&o>J5h*dA<p%E1uv5d><d|I=I`(b%`<(<b_)@n<$>B+5QesL^
zNZ3zjtyRGT8V=H4wCiv*A?A>V!?aC4n?tr8(Ll-x4gYB%`=c6;Q6|vARBYsG_|^o%
zlWaqiJk2(zC>fe3W!B@)P>?;gRRLQ|OULsXE@-%|;f{ujG^GiJ(>E5mrr{Fzz061h
zUD0rr!lK%$7i?cQIp#X+H`ovPzsc2Gyl_FW-PLf9mFH}5U&CWwKF#WZhKCw5U5|T2
z(QDVPziQj1*|KZ4CmNp8g(=&fQO+nf3Lq`&g@!g-+)E9w*w1SXZ<$bt-q2+1>HF2V
zcigMdzX?LEn2#DhX(*+`b+OWC4PWTW)saufS4wpakvg*I@b_t7e1q+~h73BwbktaF
z%cRrOpf*}#xQ+=UY#DX>2yNS{#ns!85TPTpQR2wqqKyezb$U5~Em}u*9Z@=7dX1T9
z)6uU&5_x!HPtTzvmyQ#Pjl!FgI<_qGOts}^|9N!e57^G8#t`P$Q9wsQ9ffr0TN5a4
zsLMRrR#->V5w_wi7GXa{bz?)PXO1YQgC;<;f^O`42_26-wvue=l5FI&G_Sf0O<qSi
z9p$N`j;cB;=%}b8R)<+fB^@z3-c^dJ8=WC0CZ@8EDmqL$!fPbeuM(5d6yq?(l(EGW
zT$4mL79BPnb{$r7XpWg(CFWIZj6=uW$}tZX7F=YBp_tTf)uEb>>N=8jr09sJc<QLB
zBSA-ATc&E2W4fF#(mpmOQAd)FS}aDcO(H+(M>=HHl1A8!;Zk*^>8PWlt_~7w>u^pj
z^4Jm+;Yg<;Xxw@_wpWR%uY>ri2?;JwJJK8JXsn}X5XFLMLUGgaOviH_&2%)^p;2UX
z{G_9Wjz4sa)A6&8mO6Uq=&7R>?TC&}I?{Et(b1N+RY!XriOXySn-^@SqyFIpZ@HK&
zhZ9;ZDcnKFtH_9sIu33~kSoR%;aLr?kh!ytE;_n$uM~H|ZaRMDE$FVJ^M-^H&1y{i
zH-Wk=Dj$=+($-5yZyiH*4Aap^M_(O-bo@q{qoco$0Xhb9-_#>Xw6seH6KE!%m)lki
zX;*Ar++c2^5r@zYCdOFDC(J&a5V6cQT*n9<qjZd>IFxEXlB!V=zw4l(X+%5EbBvDr
z6=SBaiW{qAOaFG`D#VcI>1%D{Db;l>q@>a@QO6`5Gj+_;F<HkH9e?SVrsMoZ+n+k7
zlEbkDC%WUB#>dQBVH-9)X}XRXI_hPPps7+h+rOP_nXO&9nAtk!=$NNtK2LbAj=z~u
z$KQTRYRK~;`+q0`(HRy{{EHcjrE<SZyTv+|=<w)}bu6U>;EtjWfrt(_SJi&Tz9;|t
zzg`CqB}h6hFSlhaZKR@Chfjw>2b_&do-Isb!J#%<Z$O7iY230PDY<XP?JN~TF$wBe
zrsJ57<8=S)SV8g8u~o-P9jkP#*ReszY8`7RNmkm{=~&Af-EvvnwT^}VxEe=<;zRrU
zFXh#;IC8j22gP}#j{W~7k+PZfQZG7D_idEGls`IX=pBSQ_UPEFV;9Y8d;-N`Hw`+Z
z9eJyfBdLDSMxOVP9~}pDPy$faWhxUx2}!LPt?du#IIQCc&xdmCDBUD0Y>fsO-T$o+
zb3(^|6c!y<bez<2ip?%^PM+3rR>wIVXIP|A(8f`G&g-~9A?jx&8#y7J93F1m?h++K
zR0J7Z)p1S79Xk6uuJbBx>bONG>uTH$9kj-K<&C_$t%Jf&K{!>~sNSR8)A5jQDn2_8
zXvbIBXbWhFUjHUM*71aPYMJdRO|o>%FGJc9Qs~HlBKCqe@jK&7I)FM}>v*H%Gb?mE
zz18s{#NX-o{(I7U9l19e{y(z*iE*yY$c-<|iF{@9jgmiL43r^=ups>}GcpEIAP7=2
z1rZTM_8@WukvWLSAfkfE7DN_q%^C#VoMcw_s?oiPH71&My3pvlBjs_Gn4Cf63L;Ms
zd8x2SdTusLu^AU{z96Vq{vf^jJIS#&sY+SHRY5i=6hz@5iUcvtmAOXY%-fa}CWo}x
z;@nDR<{%J6i6BY_Q7VYoAg1OlG9yP)=^)AnL4-<~Aj$@DdT7!qOH4TyR|k?R1W_@F
zN<qZ1VhYkH)uhTnRH60$Yg<w>>D=(7$t9C|b!<n&eK=|O>{ltt5`;Af8;@Rt(az`y
zA})v;6=JFe5zk7sAgTwkc$u-5N@b0h_sMG94>f~G2qH0vq#)|EWvw8RgGdXab`U8+
zh#PDz$0ek4(~tBh7_`+1g1XlYqF&HAGTk>P_=eePE{h}2Z)?RgVB>?^i!=<<hhbau
z3NcNBXd1+YARd)Vdil0evmo5$If&*#`l4jC2;%1;mIR?Rvb7ANRS^FKu^@=n)Fmut
z9&JQeOq(Fu2GK5vUxJtw#Oxs22hkyjnG~)jnW7roI#ScO$|Hj46hwLuorBmj+T4?|
z3u9NtZbAG?v7K1(O;`+-?#z1xL7eP+1<{+97DV451_v=Dh<-uz=hlJ$r`G^h$jP7}
ze)~T<`5DSh<Zamh(TB50ts^O8h1lPN7{z2X<DWr{31TesKZ2ML#Ka)R1u>qL6-~k^
z2!xY@m>k3u7H9S@NPbBC|2Q>>zqn}{2W@%~KRQz18La&1(gCq^g2<h0o*Ts9l*aEW
z5vP(lLzSsY?5LNOek~R=KWKb_DK#!>^2JJfzJ*VEUTI+vi|C-0h*?ZK{-V;JDuoG`
z@^DT@fsrQT3PO%BW+esT3BntMFNna!N;2hALgA=qam7Yv^e?TZ1mO>2OAzOt#sw%7
zp2n?aR2el!5_KlQAeJ#%&bWecCF3eavTRl?^BU%BL&~}!)-&G_QvPMKF^EkeWiu1o
z$c$Tq*v5Q2<8j6vj5`^31+km*Cy2dVJ;=C^aX%x?;Q$?_Vws6hITXa<AdXNZx%C)h
z^^qB=sX5!62=)4p$;lv2F*(h6Ce(VCLKNcXgDBHBi9B2k;!+TogSZmJognT8ag~F7
zi}vVQ+%-BNPvfpL61fq?P3DgxGg9^O)41C~5E8!^#C`fzYZ(?ksq`R-he5oiM5RMY
z20`ON&KHbNf_NIlGv=lY;m?^+>!wT@)GQf@P<hGXs~`?$GL*MLybGe>G89^d_d$H1
z`}zMd^&L=B6kWKx?6Qc8<gkQ~s5qm53@os)G+-v@uq-eFDkxEc3WB1Dk~0zwpz<rs
zbnc#+?h!D6VnBikB}fj62$)Il>&x4B-Z_2l`RZ1>b?e?+RXsB`v0z&}^^X#aIsb0P
zf17c6Gyf(yk`)W0I>D9AxGEgtYXYusMn)_slPR=>P$mb(m29b1GKTje;T)l*gfjW8
z9w{Be%`w~(!>uutkD)@0Tc${v7@qv6sGQ*2gqDp3TX$x0bKYiSB)56EVhrjVktSUu
zl|)(!Tv<RBp-oLCH-_plgk!iXh8i){i~%v!j$u{*?3c>PLcp$jL|Snt_BMb0gpkNt
zH-_7$6xI_;P(OwSf^QdkhtP(_xp&6ErdVu4*`UF@V`vn^!!dM>p>YgNVz?)Urc&m+
zO?e~UjU4NyL}I~7=jG`Iecp>Si{brB;pQBgfEF<naIm+8$!r-zD`Dox&^m@T(g^u?
zdj+I>mUE{8C5Cn}w3lM{bM8u)?7$I~4&NKYn_t(+=9ldy>(!fr1|Nvw!5AKjVa)0X
zlkF-7%;fS&rx-d*v1tQ>)hbao+`4yUWJKv2L$?^Z$Iv5&5iyL6p=S&~oDcP3M=umi
z{5aAphTbte(m>%utLQ8I%v;0#V(1?WPG<vRD2!pCh(xI#iJ>S49$E(pB^VsTkYXHV
zQ_Z7f4lOP}EQaBN9~Jso437)=EurvXgLH(pCBjd{u=`ZrH#-WSIuhb*uF)|(8^e@X
z@XBjU3}Xe16FOe#Q!z}4VPXuEVt7V4P0r<)8<ag+Fl#+cBOF(i;K$lIq*G&fE{3ad
zT#I8`4AWy69mkk>u*^Ll!z(eo8p8{*AjxM&3@-|PshBe}hL>a5kR6^Sl%PX{?AbBQ
zp?Sn{PaJb&m>0uWG3<(Aehdp@c!Sdy!$R8aPkGB?SRTV7!AvfWVMz>A$7L-(khioL
ztYA!_V8SGSWejU#AXp`IwNNIfH;<C8jbR<_T$oFnM>jT)ZfPEUD~9zk?2O@a3K_%O
zF*q@}F}xGQyD`LKh|?P9SKmmtrK!a5zZj_PZ<|N&*^~d?l*lGYZf2WDLJj}P-}yrx
zbJZ9$;oFq+LP(FniXn9*WW-<!=(Hv8Z7=VUJ^7a}hL$bPWtH|<GZQf+WB4G3EiwGj
zJerEZ<AnYbS`n?v#qs_>LVgVAN@S#kxp}m5_+<Xp7(R^QqZo*{#gO$^HpOUtDfDp+
zpT^L#Y>7`O_Qm{y&f)Db?4XNv4)bA|&)7?ofs~E(3r^GiQ1ug8*N$hgqc3Udnc>2I
z*<aJT=<IQnjbl#?dt*2r!-*L7#qdoG2Vyu#AG}=R_@&UdF?<)p_Y5ze<T06gzxod`
z?5AK;B3*Xm{TRbfjB<I=rMn95$cqvj66G9WP<kitFq^#;`dR4jQzFD2@}fs$I3{JN
znb{}uPsVU6hAYB39m5&whcPyWvsBTJyo)hh67Y-AU#TSlzX@f5^D+KeL*eg|yg*OP
zi;_9*lRVP?p9b{aT?K#9g=6?9hSHzpee_x0zXE<<U6}J(-hYD0zbv5Aj=ZZeT#ND2
zw!9~I<Xsn#5l3b`;FO4?v;g9)II;zo6uNqQUQQgP;+VN3kNBoIaw-mCvo}lbEkbV<
zT1Myt%Zu1oxj4$l1CtBKQ6Y|saWs@<r8p|bQA2PQp;hCk7RMv^51Nt}%@q!7RTpsU
zkpkiq<CL0l&}eH3h0xkU>%>tvj(Ty_kK>Lwo}3zCu?BIhSye>9=XNP}Bl+EqygQ}Y
zkkFpz^B3nu+5TOUygQCY0?27BpzNN4rg22#$d99S9L?fEfO@NLxMdt8)STw=;Ej4-
z94(6Z4Q|e8CCs{~vzXN;j^VlCp>Yh0qacp9aVT-L<4EJd&bd96P^wyoIPQ((yZxc}
zhez&<<Ni1visRup?7HCxggz*gFHy<ivei+NJ>uvY2iMb1adZ|y+(kgwIJybwF7)*>
z3bT5}(L0Va?ZSiO=p%r*NI+kq{o?2^U_fzhVVw6s235Y-Bcy|h`4{xakYXGa(4uKL
z@?tJWG(3(+;}{jk&BG&)F;14u8WG3HI3AA&e##{26M~;)WX=rVV2+9A+`zj^WQ~nu
zTpX{(u`-VFoPs!>jbn-wo)E_~0@|0YH8GB#`$i^7a&jC`3t%IMYllhM&QywF7rq+D
z>^PodgTIER#W6jO=i_)Gj+f$C@n-G}nS~cwy>AYusm{K_dS)R<F_RL;G3#vp=Dg^v
zI9?GvK9b8SV{cdHNNZd=Gv04JH;#F6%#UM19LuSSaQ?zL7R6DnNq&RVMd`fg;y9LY
zEcNogxii0agZ!mjjOyhti{ns(e1c!@%x5Dj;{5Eg@i%$VRic?aaqNv_H4Qk9wQ;QD
zbjRVu@p>F@#PLoX@5XVkMEFgbSsd%*IB_;_T<MGr@nDsITUv0Q%3*;mW3sr;Zj9r9
zaj0=<^ny6vk7IKju{bu-m(Pbro~`~>R`~AUL&UYtXBPgLACH4Noc2{-eT4Nmj5sW5
zlQU(;QF3=)gA(Ch<8oHj471<AYlPi65^;PM$IdvCairqd8ppOcyg2{bCgX!RPVUb0
z<6tjop#*G%;d+Z?%`XxDFpiJn_#}?)9BltcR-een(&L%DC`Yk_UQ;4$oXz_*4s*5g
zWSsy%R5Sc}9AB`(ICgO=3nMeW%;WQA9Hi@tA{paz_U+31nqAm=Z#@>-9mmCCxdi*-
z_=e0lPQ~#posKbWQSRY5zNf%{<^34vo3sG@5Xb&F4utag++Hh(oCA!F2*5#^!9zkT
z9?9Y){v5{<x^3UaM`a$5$8k&mIipr&oe)d|;1r*xg~ai@Y(mb)gX8coar`QEX`j^a
zxj25~f^{aB_@6hco{!_cp;funUpKtq0*4UCCB~Tt!+ic>^*H{FqxQd{zv9T78fo1v
z{5MVFmB>4DB2!;2_&1LKsMVa3mpKu2!p~2OFs5CRm^N@-;dM%-;tdsVs>oDPLPakX
zy;WqX$X3xvMPn5uRph9srXp8GDHS)VD5K&w75q%Cw2GSrbgh`d<Si<0W%<70p}oT!
zj^~k6R>cD)OIB1dt{{B4Z@8R_@+yAq9p+O(K%1Vql_Zx1DyxW|3sn(XRp{8RIn`Cv
zP!UoQR#8($Efoz^+^zyrtFDTAQnI#+Ix61o8D<Nl^@T|Rv<B7rkV$-piiRql>Jd&g
z%z0vZE;)Cq7$uSu-z5XNo1?y%$!E0io2a-)#eFL7SJ6~OL`7>AZB#T<(Og9<6-T<}
zux_5zZ7H;c(DI)Kd^Vm>;d_U-R|@pQ$t_UPPDOhaZKaqZ^qww3;SSVZrHrcQLW?S9
z+$;RUBEthJ9#qjuMQ0Tcsd!jLM-_c~hCi=XZDQq&r3Al*`W3f-{z7&a6(jnEyQ=7>
zB2f_TE<^4?1@;Wrt(4JIl2k&?lUaRK^i?sQ92Nak^jGnOiYHYJP*JGj5fwvK3{+7h
z!VFO{h>c9oZPF(^SVhm@a{KlQ`_gZe@{}xjq*wUsUg2RXhN~E<29cJ}qay0#D%_so
z$AnT~J|oz5uK-l-9WEimBpsz<G==XK9;0Hc3aWw=x20EbQW(dqH8}(mR7_McSH(OP
zlT=JrF-zrF+VHfBXH>kPVup%mRZNj#J||*KmA<H}h0@V9$(mlQhvx;{FoPFWyrg2L
zaCT&7yeu|$Vs+3jC#YiOj8|zMy~4Al*#TFxM>qwv+c{MAxzK^0!9eD#Sf*mRiUleb
zs#v6Av5KE7XDs>uENyFM1{++ef(?%B8(zWIRIE|4R`k45dS9(#l_c43ZxOq2dTzsu
znM(`8<gAmd*M)vQJ@+jY>s1_7aY)4mdVz{BRD7x89To4YuvIuJHmdlaicKmuOD&4}
zo{Zvsp_GS`#01Axs4A|X$YMvDXh2uNNq4`g&cPBGD$HWpECD?$XSg&r6(6ejNJWzU
zmMrP3NUKQEU(SX2cmk9v8JzJC#2UBIq6)$^gRRoYHla7>i1M(_k5zo4V!MhRBG^u$
zpGvWNssuXxjLvl~6!?NLH($!6%wI{dJu3F9*d_RD+C$&)ZlSDowL$fLD!x(iql%wY
zd@FTts+94)itlJeC$m_X#n{vjQhh&dPp062l$>!f=;eBaz@raya#dVbafP8k#ZeW%
zsW{IW?3!~-#c361R2-LDCsdqdbnO>R-zgQ3b;zaf(EiU#E}6dy_(gi;?3|P2g=*E9
z^}C7-lKf9{FRJ)U#osC}srW<qe^R$SgMdcKhgJ$S^Frl7ynj^uD^)mg)O^rO<&3K;
zuBj-k;bsljRb*&^tFp&T4K(Q-4W%@c(2%8pQJoTIYk{kl6dGBdL(Fz=V%-WsN5tDY
z<=mp-Rt*(3RMJpJ!);n%Fh4s5Wu<XCaybnbdW9L#%4>mN^Qpk{m4k4{Mk;GKGa|z2
ztHN9@SS+e(!TNI9$fLX6-YKVshMF37rSNqMwKPD(*d)d!QCmYD4O<*+bx>DBJq>Sa
zcuNa5ne{b1sNo?E4K&=Y;SLQADV2tMB==4YjRde{NDH=1VGVa_!7k-)Ne(HIMckO>
zOJtP$J;Y>F4G|6b8d~*<@OvZ8G_=sr{(6bYgCor~<Y^%DkJEWfE~_1G$zmD^_}pDG
zi&a`n#WorW1aMo@R)eD9rMmg;gc7tD(1G6qD(2iL;C>Ac6mxP={b3CqMfl+wItl2m
zp@)Xfg1cxKl^yOX_`T~Tx(QH9XY|z2OT!RJ_SVoxLx0Y=B>QUUr=f9)3~Gbp<won}
zTH!(sd%w;bsG*2*md+?B9pnzuf}Is_FI@F?-e3*YhUSnNl|~++FimrZY8a+r^VA#;
zhodg@d*-7W9@Fr+h7lTOYnY>9q=qLnOx5rll}2ebjMgwl!_t0{u@iH+3*C4oZ>+RA
zMGJP1>|&gT@xtMz@hJ@xv|tN5Q7FMA4U>!U(;A*B#?RgWEuw6>&$t|JkEdyPRodaU
zcDjb=HB{~w;q!uk8I-3^_(h>F37skQWudc#zCtTHpUGlW4)>pPHO!-tYgnmazJ>*2
zJj*pK)UZgyVhu}ZfhEEm#n4bT2eMQH2l#4sc$t{ix8ZEs-rfWGD@3u}!M-{uH&CyJ
z)f(2&p6i6E#<d!@F0Q^#$}qX;@m$Wr>l)q=4)NSKl=T`mX!y*;P7`lyct=BB1N98N
zt6`&tM|2F;@jngkX~@)3LdW|WHc?s)`#E14Vj4cw@R5eN#yi>IYDj3%H2i%cq-!uV
zl&zIRY-)J=V7{%v(O?N?^4jST>0KuSs`ZE@HKa6rK*!YJQL#%Rx3`G;G_XlUzgAY#
z^v4!aKCMoNwn_`_mnbjKR_?eK+QzTIoeqt!SM;%lPc(c*m)Ede!wwCfYxshubv*Pb
zB|IAXOz_l0`8#RSqjE|e5B+#7R6Qe{Uaowpp~jWazAGWpuSNd7v?2|=HC{=r?9s62
zbco=WBcX5D^1=N7?Nq+gaK3-hw?b<yR=(G8)6ozgWn9sZ8h&CdV))W<K*K=|Cm1E@
zFAJ1I8h+MrM8jc8mO2(9^Qa8rn1<sFq{l)(%~9@c5gptjI<`f0UW@1{8SgI|e${ZA
zK~IvOp9-BV)@1#wp>u3=Nrd8^*YF$Xu0?cPi|D@cihe!x?6uHE4gZZT`di9eVoW|7
z`a{E?wCXD%b6+9pUmD(Bpj4hz^pA#rSy;nm4c8d1Wl)@>D;lmc)}0K^SrUnz3Vq)q
znxTW=g(HVa($kkiSvs<H+@qtZj*>cZbkxvMQ%5NsH|Z#+qr4s%#*R5kX&pD~xJAdU
zI&RbXT`%;$5=t*qIMHQTYeEqR@>u<%S@nvlPRr%ED(I-FqnZv*_qi6)N;<0OSbQ|}
z!4jpij@rjV*_q+0I^Ha=aL7Zig>t1N3s<KkEu#drbU;T)=eZQ?XDhXJ)Ys8KM;#q?
zb<`6k)wt+vJ}C>_u7gcA)ba6>2*Dkaq@mJ0?$klkompPFONPS{HP&&rjz&7B9L~Rg
zzVbvyc*)`X#OY8I9i+5}h>m7D9@6o!j^;Y@bhOjaUPlWZEp;59r?l14N=LqqHac$T
zv$fQ%Cc5o>CRCtfqiCLX*!Dz7(UCPZx6E9n`;tfp9j6vY?$>dz4kr2BCx8}myngNj
zI=>^0r>=x3328?iopkim(O*Yr9bI(v(9u)Ju<=D*b#!Az9r5F#Q9E)=UJcc289j0$
z)Z=h|FHVq-K05m9VDFiW6}kX5@N77n3K@7JblXB@fQ~{IYZ)D+W1t>bW04M8OT&Zt
zl%!?LC>1rBlY1pJL`PJ|qb;M)T@P7@@>yn>j^R|bj!($f@tBS^I@aoVT*n9<FY0(n
z$4DJd=$NQul8)&uqfhD>qhqX&Q94G`#^}hWL#wZcmR<{u(=lGhYsW(qbey~%gqNpu
ze6dpDxb8iaPxIrPPS)`>+tKm7j%Rc{t7EE;hOa4{*(xs=p2`SM5v374r(>FAEpHj!
z+%n2CFUY*JHR_Xtnn96H1Yo9)mvt=Au~5e>9j|csI=|3@3agY?b<7sPS$Obzh@7A1
zEAw>FYv$`P<|#Crx2}X5%~ROsBHFf&<vLdASVCo<2rZ?rvGD28L2<PDCqfiVS)jb8
zW2KHuod?BFgjVSoutZs{gHA!fVIEzneAzO(PRHvyG#$E*H|QfYB!+YyZ|OlCdq<3U
zy^amk?a|QNI<73wxpFG>$<Yv#@9LQFR1y1SkbF<1-K1kPR{{F$(#SNY@J!1nvtqOv
z9R#!u+RTt15mg5%-NDdd>PYHH>9BOzI$Y5nJzXD_<4}e<3QMxJgtSRDy5$v5M@FmY
z2RgRs*mWf23r!0>dMdP4$2Qu0M))Io(=x?csa!f9`cMZILNMoK=**SScDAhJPaS{h
z_*BPdIu7YLtYfE+&vksK<9nKfjxTlW*0D#&SG2vOp&G5CU(+4RE4w85*x`I~xNz*H
z`!iB4RKC@*_2mCG_-};M{%VM^%Xm%sLC1a_2k21817G`5$KZv^PvXTiMLt|yF3eUA
z((2|a)YZ@Q5gotkIH&VpA#jW%qK2jXaS5#_b(~;C%?vXjut84o+tYFx7|-Z9tK%0s
z(e~Ukog=i^G36D8g<A&{{ifr*jte?2>iAviGEh^)GbR+V`Xw<`E}DM`px=ci7TtF(
z^tX<Gbd)jp+im=-<3Cn3P}0C<8iS5Z10@VRy((~@tF#s!-qp}`PLL5q6=JqCafveh
zcqq$2h4~6?n`<;5#xBlgjsY&sr45uauzh<jIX4j>54AiVy4k=j23V1e-)i7QIGbHi
z`DG21Gf>q)H3Q|@rh(%J^D7&uXatT{iE=JfBCVptv<=1+DyNDFL%+y1P~8BGz-($5
z!E#g6KrI3ET<=PVv51towh`EW9V1x9XjF^|^$j#IaKXSu1GgKv!@xWP^9?jKaHoMn
z0|O0&41^6lWZ+=~cNw_bK!Jg_1{xV?Y@nHe<_2nJhMO2@Y9L~Oc7Bh6r9C3-i^~c{
zrT!^-o`DtyS{cYU(9#H;g%2YbDW|fvf%D6hHU>JjiuRbT(4rV9s8Yp1I|KI`xQ|-B
z8ftF@Mmuz_(t%@{qfiyJt7<KV1j~Ve2Mj#Oi949jhc?VLnk{!Ug2>#}KsN!M40JX?
zoeXLf?IM7SZ+9cu$@DhR$3PDQJq^%w*-<Y8gQn%OFgHRh(APkJ4((c~pOk0&l#qQ5
zFoLkpIVxg#&WnKw1_pDC21Xiq!a&r(BL-$KR~|JmlxjQ~8oyK-E?^kNUZ~vQOllQ<
z%)sLYxVd5sBpo68B%l{OX#|ViI0K^$jHX2$3yl#vmeaI7m&u!U1e9gQOUXUcawpP$
z49qa_qJhb5_DX1qfvE-<E}k~<jEv>qYoTYw%$Bx_K4)N>0j?=882Id3U^&x`AXYy!
zM|s{r>&!3#0}czkWMHPq_Nsvuhw@)Gz@?40H_N~)MiAsVJCvFJGMmaVFjts)r$V#@
zYV7S+(FFz;8b}&Q8CYasv4MBE2{*8WQW<#Nz#BAF1IsCofi>*Kz-uh|T<$6(*kh~|
z`=`yHom|AJxo<#Gx>b}hXRU#CoWaa6@r6-2rC(EsKd)Q#rUBag1_N&yST8NmEU7D6
zAo*__`003vPP);+{|v+ps0QAnF;q}C8Q5&#efEAlL{)IcV>HM^`82J)(qoPKMVbL!
zOv0wR447=;Xvm_qcO2v`E^IPi$zBpU-zr)*Kk688MQ;fM!(LNpHuM+zqi4W3@Qs0Q
z4WtcxK=U^6se!9Yl`RH7GVrm1tp>KyGB1Zd6iN-Zx|Gl4CyX-&vLq~UJz|7pgkcDx
z(SBy&O9NjS*hy12@CE%hKgwxkr<?_9Z<m3u4eU0shyJxxSvj_ddSK+_)@v_&5trez
zNMELT(^I}P@V$X!3{X=32LlHU95S%qz>n0SM3@6cuyf-+gb{`hE%~s4pQ(R|QAZ3=
z^Bg#XIb|T`>Oe_O7&uAI7&s>p@)Qk*hHBvc{3wTWmS+5#@(Y!-ObIqx`BB;-@o$V9
z27Z@tNB##(lxOp!oEieo*Chjg&;d<6Y2r@<e=%5@$TRV`fqx8CHc`dIzXtxJ_Dp1(
zxGWw)sWMDlq4McjCqmbRUKayk@{Xm!h*&1m3_?u_6FhOO&X1Nfkz?W(6StZuWd;GE
zv>C)?j_xKC4E}TqCT})_Ku1u<#BC<Zo2Xz0%L<iT)<iioP!7k-!dzMCuoX@09amJz
z3~c_*@(LdsZB-N1Ox$6jp^01*)lJkkQO67p2sKR9G*OF<FAPqLYy|9Leh^`3x)i3a
ziFzg)m_aZhzrGo)&d;t4nq`vob`v*}cbW*9Xky|X6JZl~nP_C9u^EKQyQQz^#^ey!
zT@c7wa5*?BFap$AtTZ*jvrNPcv`4_FnF;G)J_BG2s=`DU6J1TTGLdiMeiILvXl<g6
zi4G=$oxh2;CfbSi6pr*%h|In9b15EoO6_Gh<S^!w-fQAM;ZT80K4{`0HX`EDwI8N(
zPKP>~=qP}@L|QmGj6!sQzL^=_s0R~+Obj;B!$eOL{Y?xo(aS_{w#-m(q7SE_UQu5Y
zGs_2?RWb?AUk!Go$rEk37!{f*GV#?SWuO_XEF2~cgIO%bDHvj6xQRziL`^(GHJ%I&
zH8IQ#g8cKp1aAZADd);7oUg~sU`IMa=;Jb|F|(DCX0W8vp*XrxCPtfh&BRI*V@!-S
z@w|x_OpG%z-o!JUINFj4x&}2riKc!kG(qS@>OVgk8c;M@`h8mDq!IF{GQ|u|d{a$4
zCnYI!O#|F8a0fDtwqXWa5pIup@SnlDjOVm%6EB*0$qb6kq{W(;#VjtPOCtX+iM(Qh
zk^faQc!AJiQLqYdXmd@>GqJ?PQWNt<3ACI=CKi}jXa<`B2H`tsy;lPNTFfp^1`|YW
zFEg=ROwR1mn(s_lYlYYq1KlbUt4(NhKoe_BtmXS06YrQ<XX14e>nYyi!i>4q-!So}
z87xv9K4<MMQ7?zdacwYzrH~KT`gcuiG_lFVW~$<P=zk{Or$P?rzeh*A7AicH&#q}X
z<nVM5GZ8nTQaSS!ZWXwf;68*09EN?vglQse;sfg3gl!_lQC|x=5-!+p!h}o9mvBux
z;lPuu(xo+HtY-$h8a_TfuFD{TEi(2GO?<?taxAo!Q$Mz78>7~>(C+-`$0j~u6%(_M
z1us45{@YFPZ2+x~t$ix|8(E*5_=1jR<3XEuw&N=kuUeRGVV8-o89FS~wXmC0M&mK@
z2MylDJ`*QRoHF@yZ+vUwu!)~dd}rc&6F-{xiT-;!^n-M<pB|K%!BvCG;bDO`e89vZ
z6KC_I!Tw(il7M#3AV8}-LcNK1A2o4I02fyBPb?B@25%LZJk8l*v^4R%^mSGy?i{U)
z9${kC=}@`W(MGMKj6A>5yEDStTxF?ONC7TLaJxvSSgPFDI?5yD$T2y8n)r*s*+Ll$
zf1CKnL`e%d7XCHypNZ=xGAv{+RxX>kYT_D=VM*kQL}ng0+AdZ8oU70(xRmcW9?G;(
z!s1^@fZK2CJlhHk{_)mPng<PlYkesTH(9~Dz+*ybX|~HU<z@kw_7>ej0p$3+{%Ytp
z3uP@-wNTAMISb`2RIpIdLao^f$Hj+hK_v^7t>BPV#R5;DPo4^q(lyu}?TX7>u7w&F
zYFenyevbye-+Y-;%K|Lawy+^H%t%G%zVZt922Aq!R*%A4=xd>$g$5RGx1d;PXYucz
z(a=H@3-?&K(?ZC?-L#DbO4!0^SzhlF@M7yIUng?Q!SL0{3T(2m#hWt=DNj=i5eqFX
zw6f65LURjw6f7gmO%9c_rgiiOt^!uz5!_sLrz@Qb<y&ZDp}<0Gk)LZEnbdY$D>$k!
zaFMd3_7*x=c-TTm3-?N!Y~%q8_gT1~-Hk1xjcKi;+zLJ@8h(h1otn#oHUm*73!N?W
zve27~$_#h0(48u^(A7dWD_E?nEG^_-@##rL49k?Zrxm;);=?zkds;{Pa9-vseU>Ub
z?34DlFu=kj3zIDrS{P_y6xCv($l`x?W4MJ!Eey6W#6r}<BNooIj?(eD=+IiY%^pgb
zuZ4zD39X_GKEw<Hk6C!!3eGrBS{Px0??y&ic)|)!i-GD+gqX!i<W$nmDa;rPV=X)-
znmoTu8OOR-u(e>&-~o!klX!xKiIi}@QvGl~b;Va(Pg{7#!iyGOvOr6I*1~f%DhpFA
zOtk`=zfX1`d>=dA3f`+cZ{Y<C*IGyKlou>j+C*nq!5)ltN!ig%3op}<jt0vyw<t8r
zSr%TQVDgr%^a^E;g}D~~wD6aOc^2kd*k<8F3kxhPWRDj9XJL_r#THgsSZ!emM?|lr
zVT)TW6Q{Uksj}R{3JaIzbr9W+8zic3r3}Auo9G$~YpFB~>n*Iaf)(=(8s4cup4TPG
zctRh1(+b}Dc5V~hVBu}fOXtYD7T%#PoeuGxDkq4u&o$`wCv(`vdlufeU|Fy&Y_hPK
z9&N#}5VL}vfNFv3QQQJI09>=U?lY;;mQDtMOP)y^TM`-GCJ0bG2s>0V-wRntS#Sk&
zDibuG6QPAW70-fiVT%=<Rns)KRmunS`Xv#T;qj0LK)}Uos}<}Y_`>!h3m;qf$-)5(
zpIF$==xt#Sr<>Dc;VUY9uJWmc&n)b;@VSLA#elgSvne+Fg*494!5B`?E(>2<;A=XX
z8I6DA5@oN2eHMOTKsXxc?Hh5Z?<{;PfP<xzeqS8NxD8;j{ZjZxy8p`HmB>L0hp1r-
zXDuAI@Uw+e;<HCA9JO%V!U+m|I&@4LVHHZnj;MB0M$VIrX;*^tJ4HH8b8Qo>u)lCB
zE&N71xA5a^h5mkyj(<Az%p#@x9OZWl7leO_hSVm?4?!sBMGpT|h=u>)+>I|{Nz%V9
z{KEifqk)ZoE&Rtt!NzSiE?c<5MZpd}K)Fh@XPmc@W#hVq3_IBEXWHO<ONL@9jmAR-
zX3h!rX4!V|UXC_d(hi)64-1sCag&YGZ24s978|$P!MoX;g|ed7CW<-1Ify1&)<!uS
zRcutXQQi*hwvvs?HY(VtXa}np-Hn6gE`>^HdoZ8Fp@h|J<l3lZ19osYt!|@+9jq+e
zF!K|i9c`jD?cgOa-|n)P+BWLgsA~tWF}WbtvxCC|t#p9ATq3^R#vSb1MhhDaZDh|@
z!Zz;WhT(eXPN5;8?D}pSjqKozAF<KcMiU!NIm}Lj_+s!LJNT@D>kGG(OfnXIJYQ*M
z2Mc<05t4Fl+E>)lMk^a_Z76o&Bl(nkvC_syYe}*$nFV&RYEa32mMZORw3n>=ZTz+%
zI52jwajzYGvNrH!D0_0zeKI@z^n_J7{D*8jY@>vOEC(HJbh5F=##$SlZFI5ml#K~C
zy4vVw<1rhLvt=7SY!ulTWTU5zUN-vL=x2jE?`@-x9jsQAoTDJ%`qkf-JvM7`9_K0p
zY>*ZTrMWWH&~69Y7-C~6ZOKN|#<KB6k4P;7mf<Ozb2{7(T!8zfNA2Kzcd$*gMMjvh
zZiJ1IHouUG(Kep2gU?5}HG0wxc7VhTQ=F7BG>m#h!DC~rjd3=(@G*IzP4F6of?Zs!
zOtdk{#%vpNY)qz#Y)rTDyp3n<;FvkZ##9^63TBeEN*4rmpR<G47u5VT&Pzd*oxWgW
zhK*Swz>79sVih}hVKS4}QV^wekv5y7P)Ht9sI*r^W3S4Lb8o<7*IXO(Y%I62!p3|X
z3+&*ev(&~y8;fi#k>q00PxILd-|lkpqWiN9tz{W!q#!!6Ao|OgqStJ!WR<h|t8J{}
z==e#&wa_=q6jEY_f_{y1*V%a8#@9A>+jzsqn>K74j*YiyoHpLG@jeavWN3qpcWk^%
zC*`LALg|ScB`etf(>TW!u~_H1!P$9}jm<W68~hmb*UCyv++3xiXjEr{e%S~YagCz#
ztaLSG*f8l(*Fx`%3eL!u9qcVRB9{|w<3k%Ci9IK6_%_luQj+vIQ%@D~^vwwHfw&m)
z78>fjz~;Bw*k%W>6#kx2MDJsFAKUoE#!efb+t_YnhfL6CLitMYQvsa5<A?L990EqL
zFKjehTm37Z0>ou_3?Xxu;1QW&e)PP@#$Fp|ZTw<mpN(&99JcYZjc;vyCoXxw#`iXU
zu<;|U`b22I9lTiM@sJA{AL5^c&mnNg^v8oX4%xvjl#a|9Ji_uePDzi)WZq9O(9Ktl
zi=9(-R3>B8Nyei42GKiC)2+C$_K2L3DqL!RwQ-Jd+s1#41~$&y_`}AZQvG-OtbkWC
z!rWF}q(#Xr9F$4q5$P{>y*R@4<!^=*Ib#1KA&XAOdAux=a4oxL<BH7eRpBs~b;-ZZ
z){cfUoPcIJ!CMZ3YzHMB40SNfL5_n`4)Ptec5st}(hh1msO8{h2e&w=>;&QTRtIIA
z;Lu&c!EH{k6)fwZoD(eiw7~KXo?D(n%O~bs)AqRMtmuHW5<9vYdbuE4#X(gk*tAq5
zbx^}Wt|Z?o2+knXJm1jLk*Pg6sO=!^;4TMs_~jo54IJFg)*MhpY<zz~u)D4=$#g;V
z4hIdLV5Pg$33euzxh3X%n`5Dn6Rfk8hxBd-jT|&}5OL7h!NKJ@T<@AV!PbRA>>dvM
zXz(J4=cZ;3nmcIe1lu;slP4{At6#)6TL>nT;kp&|DFL>Pg8~N+GiW<#>p*dEzk>&y
zV9MG#!GhJnL3?SRlg0M$6(;%j3E)D{Mdv{$IC*ice8>UUK0fCQqMaOcb}+y}p@S|C
zx;p6XppS!Y4tRL)?x2Sg_{Hc2!3L?PgI?5_eC)-*$U)KFIH<l3`it09LO+p;r)-Xe
zEszd$FvLOBK@r<@FxbIrese=!^%HOr=hSfD$mbDhgkZRXM;)wmu!^?i;Bg02Ir|Pq
zI2h?*l7q<(o^bG_gK-YVI~e5z@hABFOU!1p6KoY`FIUDo!3XqwxQssKV1k2*e2xb1
z0r>Wt`pIb<<tH+vPdnht@MmSR2%Zr;Ts&WyLjI``Kbz)zm1z#9JDB5Ot`n@z&pVju
z;AO!tIGEw!MF%f&ustG=3@D;1_>n8|EGJl}UX|G)ctw)b;cVgXWeXKJ&k4>23mq(S
zFy8?`tY6>+hiE?JFLtoR!Ey&HDBezm=C{<rGMcv>B{(m1nb$;M2AMrC<kEo2S?yqr
zgLfTlbb{9)YaP7l;4LROlCKl`I;Z|j=nV&qEd-26>z!bm^p1lK^qP$D+d>(dh{@-O
z{^#I52c`qd!TSz2Ify$@sf5|eW{!)KyFIstL=TpyFd9wHf#HB#5n2NM?%R%o2$<w+
zG24OT-~+a{QgIz59Hbn0qL$YDqR7!uk}{VMKBM<J``1Hh2?aIVM*Yb}R12Mp(T{bv
zIl=u-*$Mvo9v=$+h}v-QiG%G9*134y#SRCbGWfV?<Ki<1I~`nikm2HU2VXciNuzb}
zrGu{=eDB}~2fG}6&89>lyQSYf4)!|OcQyFPo@XWQ1m0Sv?4x(IjWYSIgYTSRx5+ml
zl$@5c-@%U#4m<eS!A}kjh$kLo%SVD0hx+N+HhM_fAKq~ghjYZiQ3uC3`}BfIMcd~p
z{5B37tn|5Zg5G^Kw4WOTevgGt=irQkOAh{UaF$c);5Sa9!#@WMCiEO#qiuA|v7i^O
z$lM|P?gVeoE{Y{zkRHjW=kol;GsT|{{&MiIga7DXnc=^kVC%)L%RjVsk%7s}4zAFZ
zB)l`Q^ZmwE87!xgOE6afnqsDl5-uvcsNy2aMYfAuU6gTymyIP|lyY&C8|(&i+~CzB
z`{ib@v>O~KZgFw53nsY^@=GHGWZveYtQ&kzRM8EV(Q+=zyTLb?XbenNa04}R+sXBj
zWh%MBhLfPGi)t?Fxv0+``Toa6O&7IXRCh7vzCkry-1wptkD_pcuv~}Y$p^u;T}-W8
zM02X^2HQnOC-NJ(xZTCwE*iPG!$m_EAs1mcILF=T21i{UMH!_T9~LfE?s5a)p;oC|
zI(1_gO*qodk$c==L&#S^R2pMQQ&xA;j6*ved|QCNO!YRGWS)x_0+`j3pcv;1V6ZK4
z(bmN%7o%M$F50>1>!P2F_AWZOc-Tcp7xz+r7Y}lDCqnnTctD29WrC7Wt2B@2+XhSF
zLoS{?6<Aj%7oDj+7d>5cq0;!}A2--Nu4x;5zm9Jky2&WIySOkXcuUsHMQ>4lA2*0U
zJWp{7=nH%a!~Jc47Xw@jck!r;LKg#F40bWZMUfkP`O0n^9Yp?oh370PjW!>3dA$#Y
z(hR8KYaxDZgDVu@8$38Bc+Ws<C#Citb1}l@#rVP0JkGI?3r-48xcI7V^hrsst5-zX
zXjjY{<6^9f1uho480TWViy1Cnbn%pn2`;8^qFqen7+pN$;#n7y-QbAIuWdZdUNXZB
zO?;2daWO<Q?yc%Lh#QROTugH@-No~ilgmeDxYEQTzJQvtP<eqZUkP=8A(xn<zC^=t
zG26u)>SwX?vWr*P-O<qTw$WLvyEMYNc-0L)JK&l^_n9lbQ`MY{d4lH)rATaTk&DGH
zmb+Nt2A@7Jp(XRE<$^Jp$z?KA95|O1j{P+kt60p%N}6KZC{2zLV2ulYua7!^v3}87
z7slSAef*Bf-l8{L-WGxnU3?_-`<9FMU2JlL7iH^RY;f^5U1qlOj*E@b%e!u{d7!!S
z<M02uc#kq12@PHud~C$v&((G_8)si`u=2*}&Ms8J8Y>E*hq7O4l>@h2*mOM?z6-~N
z>mtdxp+vbTCurodCE!;O8CO#rGFQ?G!DrdDhqQ|=F1EV(fCf2RX{JQU+~$IBIr!4x
z0VT>~IKMjbv5QY!?04~_i|w?K1%aGjaTO5!DVG2jI~n|`t~Svxr76Ch{=yA5pL`R-
zM%XE9?Q-!o6;)o@?czHZ-@Dl3g5L$&E6SmM_6hjL#ka*A7N*zGa*CAb4=$coqMV(d
zTpVz5(ZwYf2VERuAff{4xl5G8E`Fwy(r8;m`Ju^C7sp(jba9GC;s(2#6G9m)h&ct^
zw4COYQC%+=5|Gkz_z?W+;+z|7c+R`{jZ+|}-J>gmTExF|n6%903gai|f;Rbwi$7gl
zadFkfU$hwpShjp6#7*fxF8*~v-LhXMIU;_9aanR{ODsd{y5=Gy5xj;azAl9cn9NL|
zL;_ifAdG0?;N|lYCA#})eog{q6DXGeaj67vrbcPOHz#nbfLnwfJDPvb<{XwOBgxwm
zST?_i$?^$QNMLIM+Y+dlK&1p4CU9p0l@q}|Ep>$wR7s#}0@V`86;91!esuvggnG@g
zS+bU3Bv4yG9iimEt3>Mwu3yY)kihMN?<nScS3f(HKsbR32~14jt_1E*plbr%5@?h_
z;{@6!pd`>FfqN2Yo<Lp#O%qtWu4*KKW(jyobkdy2cS<zWdC+f4v{bujiv(IG(3(n{
z6Nxu1YN+JaR&rY<kT0AD?Sk@c1Q!T>?Uy2Q+9l9Ffd><KD1i<M+?&At2|SQMtH#;C
zoXWp10aB%1lyp{p;i*<dryd$a{BQytC96vU>DEQ$bV{Ie0<Yx<n8j|Cueqvv_XK(*
zFff54Dc>`J-U;+cpqC_BtY5om-(ox<fqn_}=K!Uh$9^uP7=@DCym5B7Zwdz`FgSsc
z2|SU&kOZO$Jet5`2|OZYIGo`Eh6)`fv|FD*7^>)TNsbUo4qF~A<9afIQ3;GK=8sNb
zOfhB|R%Bs5;}RGz{HOlE+(`*cPT;Ks)+g|E0?#BcH-UKxJe$Cj1YSsBMgmh4cuo{P
zO(+NQ=i)+AN;^G)=MxAixx};EMPE$dr37XtFeibT3A~)ZtJ2pjp|8lKP`95o4Ms$5
zld>JsDyyn<%9u4jfdvUHNnokuE=*t%ZHB!_6&B9O4`z_#T9&}_1lA<5R+^;%D>!{p
zYo*Xt39#@hGP$dZ?SXx*OW=(J-jp)0C$K|i>V_mYgxQe5+X+|+*a^Ioz`F^=6Hul6
z#soGCVEO+g@Ln-~KY>kxcjXr{D^|?sjBCZ%5TFaaA(bh3eY>b5z!S>qu7E@W$zo1Q
zK(bxb7m!Zi0|8rve%mg3L-G$3_=t9uL^O$y6Zj;7y$S52T7C^}PXxCI?BaM6_%spx
zWd5@Rz7Vie=;uPoFFUg(>6Zz7C7ko^qQjnU`85Mk0_7WJ@1g1bl{sia#GF;g%Pqf2
z;M)XFByci;?-KYvfkO!#W;A%S@ee|ON?^YLa(+x;U4B&pJ_iywDEzlO6f*g9ahYQR
zjwEnYz>V_91%ELmmnBana5{l@N&Ihp!I=ckGNL9?E{R{r-&AlxD8a7@oD=+;(DMoW
zF5tDz1v57lu)xIxE+z0s0)Gm>R1$wtIqwu)N#Lr0zlHvjz`u0r_Y0WypKvZSw!a=E
zuO%=`DIzG5#C6HaNCqurCV8bvL9b&$R+ezGg)&)EKu!|**NXn#SpB9Xf16*xr?h~Z
zh2A3c)+EXZxJ@X_WVVl%PxAJ{g1SO0BvCPmN`gmpE2^GEWx-X1Rux(;iCh7f*A!GZ
zoy)o`StE(6?V~l5sFg(b)dk>Bz>=twMB&Li=05dPK*_Hs73(L_Ac@-rvwB{VH@Bl<
z5_ht@wFQlnIN72#K`4nv?W5r&?n>fr;v|&zQI=;GDRGk|?n$Dlv=d39SrVUql+Uan
zHy+UDNnQaIfEG!#6fLz%;<YseZK$gxT1&-6ZHr!76O<`PqHPj=r3*!}T<NHNlK<6S
z&_Qg2=5cQl_X)mV=mSYSn8ZU#Je)*-;dD%*lYl-+bWWm667AL(^h}~_65G}nbZ2Xl
z+bxNH>kHW6iL8=0XzE&auO!B-FX$}=GUGvRU%~x^&n$8VP^-cmm_(5PwqK`9?jXT~
zg|Zk6Kf+;_3=d6W80UpIS$&y5T)^W=j7VZdPWaIz8s~%`6FMNAGct)Ml6W$SQAtes
zGM{yO$W2yt2j;TaXv!cBvf{Wel#SUL<CA!b?NFsjOh{s467!Q-kPKcLOiJRJB%V!T
zauQD`VK&Gn^9CiDB4wr}F;&2GLPxicGHZGg&nNMMa9$Kj<_rPf_g7vLFf)mllb9uV
zj?h<xzVvJUt4Yije50?qg69dn(Fj{xD9Ob_7l~|Y`HUr!WbV==mKEdWNhCz_l}W5h
zVsQ$*U1W6<Ym#_0g~w7@o5Z>#7R`^eOrc`Q@ar_-6sn}~MiOr(@m3P+lem(^RjTOM
z(1s-5PU4*;Qdjf$_sf1aiH$VcyzI-IvLxP1;sh-}iT9J(l*DIA>`Y=aL+*1;oFv>N
zVoAi4P=%u>VI-jmW`WX^vPjJ&tR!q<RzObwVO7bzk()>&nZyT4Y?0hl5`J-AFNvCw
zY!*uwbH+STb*tcyNCj+5;=|(HEu9B_l0=_jRd)zyJI#Jr)vjmq2mGGTMm}X1od*$o
zp2QbaV-nvc@uig9E%Ym)yM%r%l!d?fTp`_)#NH(K3G>V6tCPc)zf1CpR~$&<U=lw_
z){jE>7uUVf$WK(}_&^DVk~l0`$CCKDcxXqGxX>lL-S*%Ll%tYcZ$-=F0#*$Sn7otZ
zR1%kx_#+uyRDL>%GfA9f{7>T7Bz_a-@pG9I`(`uuTyc_j8J!pWJKGm<Q7FsIDpT^$
zWUzn!M>u~8{aYy8VS#@I|0nd+EhWeq^Rc2I2wh{?PohniNcj{pQpil96#r}{g|YiX
zym-7sia%hFWTlXu!nmvXB?;<>545eCBgv1tRXx^C;a!xaQ`p`ma;$3j<`j6P*exlv
ze?M}o;4&%PmO@#<<%E{HCCoBgRz*lFq=K&bR7{~#G3G@pRa2;z!W}6zOd&Ug>M7Js
zp<W6#QmB~%e}`K;75uohRx0?#?u?Ifh#?&QYPF6O2+PlP>!;8l1!5NCbGu}*Oe4v?
zGlftJO;WgrWuz&VX`I4cDcqd`%iO5dC<XrPm$+uX>U^3?$>u^M#kHEHu=V+xH_GRw
z(4v^Xb4*sN6!KGO&C#XMErsqW6r|8Lg@;mjI0Yqz#k}Vyh5J)zN4-(uuN5?^8Qy;~
zuR{tS4vE~G!hVGR8WMRRh54f+%o_7&^#@b@FU7n;!y}{}Q`oUj>B^=`XLL%Tvn21y
z3U{IE21fW$UBgQUKj!U`LeCWXr!XLeUa8>6(S1ZtUiQ*Eg_5^cqZ-NVn?k>0`G-ey
z3R4)E!XqgRO`#}-K`DIHd|*_n52j|Q;SynLm=*uX3VLahk--9;iz35hXu~;o8x)Rl
z*q*$L2tQ8AQ+P3jmr@v+!V@V>N?~#;xOnYJTAhGVDU42G3<q*k7Wo@*${PJc-ns1H
zX0~xDj8EaI6xOs3Pe_5x-Gg!`rh=Q<`0Tzl<LMNhN#TVQn*LjY<)4)Xr>8JQ%1kXT
z`CJOq1ea<Pp3y$~ycBDnoxv(I1aHj`GdWZ6JfSbAFpDE<AALoVb5eL!z-*zcNNMK^
zE@%_J(ffSPW^wMq6c!22E)(>!Bo$m0wN&V`6qcv3B8Asd*mxoT{S;QFu!>nJtWRNe
z3e+2aEWA#@8rsiek+pP(KFXj+bISY}dY$I_d+3c6-W1UKd?u3v5Z;i&+bO)mIjS4x
zFR9;U<0-sH-42XwXdnGw3XhM?;m@D9oylX8%oWj`O(|?nA(lcs6)Xf_rl6+4>-X&x
z98Oueu$F=@fY?aEEXJ0AjaI~^mTn1eNd>nfCIlx_Xt_F)5=!8u;0sO*{h*kiT`s(p
z7QQ^Pjb<;^KVno#;pB!0oBB9~PlQR#yYXAKRd%HCX$l0N3Ee4_$<I^xq8LBZK>0K~
z{8b9iS1#hgVRs69sAOK+;A3wJ`{<QE+W7b;g>N}h51NPXQuv+@>!G!WALx21WO>N;
z@M8);rSL0FE`<Xr98BSO3MW#*?F5H}9%dNn8(fL-vm~3=seXjh%@LIubWAwRBJ*Sl
zrzClni@Sg`so)BQQN_1OP`qD?%k%Dw-%>cA!k;Ppb%UA0B>@*`3@J>I`zUzTL*G6@
z*MCS>r~1|ZPT`*v{!8I99l2u0jcY6ZmE4_wlwip#f-^l_P2m~^kR<sT9(V%=0iWF!
zGfH^D0B_uJQPSguM}UXg9!jy8hYB7ldMNGTW{>~Lg|brk7NNI#xG^H$+)~EFSdo)W
zmGe+u3h?e7CV2%4X(bPpJyaKd6%SQCRP&JQfy3v;H7wApWXWLGDrE3(nYKLxP7Mz=
zr95#h0fQ@M)bUW)!`&Vld8p^1zK1&{tAWrvJT&xhJKL9AfOxkLd*=l>Y=MBxkcY5`
zyF85U6E1xzlUckCrm+X+HuKQj3oNIJhkK;8rXFrw<`a?R(+7&!PM+Xa9$E-sn=QTI
zGN1p~OB)Xb9;SMD&O=)diibiE13k3!(B4C54_!QTU|*uHhdtcu;XV)dOKT4aeLyI$
z>3GlsFM*+`Hwt(3&`Gj5eUy_0x_ap5p$FCI1-GNL?;Gy!1=n#<PF@q#%R_Ir&@<dm
zYVlSaUft8jL*L>gv-&eBw|oo`Ca+{E@-WE5lbl@P4E8Y8!!W@^JVXUNB8s8_?1;~B
z504A~QK63sy>XvOg>AVbJd6|$Wq!hg|9FI8w1+VsCVO~Vvc`INO29awY;(K^3VcJh
z3B(>=>JgqKbW`sz@iS7AQ~a!lJ;jntp~COX`Js1snuqBW(!)v*&wF^m!#of3rOFHs
zFMF8f;YCTlRNUiC8kKk`dw<2l++zN#0%i-HBa}m1Aon;ekmOPi%RDUfu*k#fl{4rL
zi-o^L=oYd6_PxT(J**JUf@gyJTUe5Gm50?H{^#L64{JQE_3);Lx4ht9lyx5VHc)uo
z5b^86c|+*hk&*QtuIyGa`YG>t*x=!94=oGA(J~p^&J=Yn2p?~tyz7B<BfVo=F01o-
z-^0d&@Fov43c|ni3lnel5c81k6Xp|VB<vmD)hS2!V0bv`;gko{gXQ5%4_|q(Jvej|
z58FJr9uhR~iWytP43ZvF9z1EEx467DE{l!(9_EaQ@JZA0`-ea9f@^u0WERVR=wWx~
zoKHP`=HVj`AJfKqhi|<z=M#FIhaF<}m7C{J9uaw>Oh#_M@a2n{JE^4;SscjcqJ%GK
ziswQMdgSc#@U@4ZJRD%NUT~?@J`djr*h3xCw0eZu$g1AqM8lkKJ$x@>f9K(%1as0F
z<%)jrkWnRLKUV?Cy?JDWw>%y6aEN2?mU~>7hdmr&0O=Y2St87^tJzu2^S8H;9`(S+
zj|uI%K4)^3j1!DPC-ZuYjGXpxhEdc<MIUE9{K5e1qm++dJ)HCKkB5If{N@FBd|mSJ
zhllgD5DyoGLpQm|p>54&kHp6sRA;e2rI)`wsJ+5}38feF_8yk`k5kh#e9gmkk@hl;
zMB2G3Nw&b;3?G?(&|S8V5<WliFJL=a!Xf6RVazJ&2Vszpvpn}EAJju>A2$o&^;S&2
z@OthoK5i9G86UU#DC=X-gqF-LCrsk+_!h_qDa(^q@=@8x9X=ZRsN$olk6J$9qneLg
zKUjda$pu-}ebn^9`>7b}YxvmOA(z;1ppe$~;Z@G4<D;&R-`Yp5zTtX4>ie+D3}O&&
z;A4H?Fr($|K6o`5aW%Jq$vb_7eB9%ssSGOY<1PWL!kB-z;6_vhR{^0-L>S7$+=!26
zKAQW;^Z&20^?y9lp?A1v?{Eu0@VI<ZAFX_R*)@mBaF>8Gm!QB$TWS1?55-429~*qU
z?W4Vq4nD^Fc*@7UKJKIDef0Hl=IxyOeLU#nAs-L;fjeyOtNhd>{IHLXB2rHuodk3f
z+Sx}JA6<*3?NBk}#?@in*{`ggJ$$T`RlZkonchBnNu2B_oWVYZ_~`FrfFuij6bTq8
z^u{f7)WaZ28W%F7J{}P~isJbg=HoFRkNX(z<56m<I06&gaH|ngm>1SPAz-9XE|hHZ
zNx|HujP^0c$5=_eUA!k5CrP$5!N)`&ulktnW0H@_K3?!KgXJq`JniFIA5&;Q?Q@@z
z*&%bPWIfOQ-nkI3bbHRnG?p(2^O^1k%LijAvsm&)CVjl@W0sGZQk}u%-iw*M#)^UZ
z6={KTuBe#7c36FmkGVcpa6<iHBR9{-0uhpB<_m{lp^rsA77Kr=k7YiV_`#KfY?(ds
zMy#w3Q5IV+1wIyat@N>uYA;!Bm5<dvc2vw*Be`pR<n#`6BgA!$Zuq(|-|+FKkGBNh
z*fp*9v36%st-fK>cYM4{ALORj$3`Fj^O5wC^6{RJ*MH91>?7vmeeumrLeD)oh>jWe
zp)v?ao0LuS!FeB3IfFE~{LP0+<Lni-q=4hYmLxd~MSj;uLbAx2)I03?@O^yl;|m{Y
zA0PPm*vBV6w)o&!K9rJMg>LiFeME$YO0|3>x$K=fVRE|^_*Bez2YqLK4(syy%*Rg2
zB8P>)^zoGshQtQ_lwE!hlfSK;v75dxn8{uzgG=rH>6){Tn|~jt>0&;<Wkm9E(8nPk
z-~0H%$4}Dcejh&y;N(8tCFj>3Va5kuS;iI)a9(5uKkVaYYSqIr3QQ#z1ZyZ4!J|HI
zTA$OiYYvmgeVm{G({nlLC#4L*Db8|<EP}H>e(`a^$3@0}ALpo<UV(A`CR(M-pQlKj
zgIm|Q@cr&1>+>RlOA>1S_3<C8_Y42w<4=hXe+m6t=s!XkeAq~{t~r+(UV4NJt7MSF
z`ypvUS0xr*lMu&bMjDyvAjp>xnv+JBfNY`UmrMr(9NaFqR2ny>Q96yAC9Ay9Thh2y
z0K;Zp-Rfo1xGf#T@Um%?OJiEy>hyZ9%j6JONTZ?@u0&cphZ^SWaOtd?Mzu7)>RD%3
z&pNqjR8Qmd?%HQ|*RGL9%{1=qUi-f8wQHq;G!9j-eYkq<+G*5Dqv=sZj-qZF_0kCM
z!(IDOKaB=yytETDcjERm?nq<hHmur)_s)bHrg2vqcc*b@I!K0uhJ`Zet-h^M8jaIf
zvK33WqDdO}q_I1VJ?tfo2-{3!W*W`XXr4x48UxeFOQS^^52W#68ZFcKrBdU9G}@-o
zDvkU!+{KMsr}5qDCd=0}X(P#M9iq*aG-gssqXP$(#wWX4v=iE1=$6$@9$wSrKB;wo
z8k^QMVfBxfG=Air?1$2LIE|iZ^h%>+8lBSUmPYq9I;YVkjjm~os@%9n_co+#lk|zT
z*`ySy2Nn2rt9h4OE~wv%$=+%7NuysH{nO~n;dF?utK68BS)>EfU?UGNX?%Z)7B_zq
zG*y(wpfpCN@kAPf(-@M*@H8GxBbvq|X$(zcSQ?M5Y0`R8)~Byzv8hs9v)I(iA2T?X
z$I^H_jWTDe5qInmr9zlBf*PCIZ``X{Pg3SIrl#>+8l%$~lg2Y?JS%GK_(w}t87p{P
z8si19?o(+@5InJ%GfBYYH2<C;&_AEKi?TMYZ8Aj$azhn6{%bicjp=Dnyys;i+WggW
zX6451H+6j>jTsz^DB;C4*eP3hrbG1QG-jod65Du1=u)At7F)~gH0B7ND|DXF`9c>6
zT_}`xwJ43nf|nF?HVnyLmd0{Pu1G@@@S4z-X{<_Pb#cl6rLjivS_&`V^)xmJc%!(?
zn*!bvx?X7WAuZYO+k)Ro<6Qw8g_6IcS?l)%zhBJRl*Z;_97`i!j8y?=tF&M(U9gdc
zS)6O7VGDMOIc^$>Vw|L$L$X=XE9UrVq|^97l3UXFRKQlD+ltG4n8rtfKNk9l(CtEZ
z2xWsen*B_YJJa}Fz!$~2UowUi<6Q#27Rp+C)7VGv{y$WG2Xs`$_x~bQCA84X2b3oJ
zUKXSzA(T)83BC8SARVNr^xl!KR6#`)5Jka`qS^Aw*0*axP*9|)C`fMtg8V=4uKPW|
z|2cC$=QDTi+?ly^=f2tGW#hpH502#HC=a^_^*#6@A3x^fPCoAD<5)h9=i?V9nSA_|
zkDv2V_F~@Q^Ul3_Y5RNjJi+d*-Sg8j_qBGP%E#$^T+YXpd=x(0><q&%9~bj+HlP18
z)%7cbyn6=8Z&LkT@LWFr5JLH%LeA&oLQ=A`k?YFk_MxX;m$-!1ZWi*Z`MAbB^S1JL
zKCb8EMm}!l;}+9SfwaB*d!B3U-rTuU!&loCXydNd#(kUV@p`ktUvzBR#?3Bo{Mhjx
zGr0$aJotw>`GWI)J|5)bUpi#6;}H)=?00;8-uW;e4i9#mcNP$wT+=}wspujW_MnId
zqsqJLc~I1YVjfhNDkYD4P$tPA^Wbse#gmd0AtgL0DWsHO>16Axfy`9lWj!e8L3!a-
z1uF<v6s#mzS&$=E;bbOvC8?H_KuFiUE(&W1e?ss{!J2}#Jg6;%I(3B9_24NXJ=(Y_
zWN~_+h(t|lrU}XZqh$jRp7x-d2i-kr=s_b7+I#TZ*7}V-m{(lQ@F0_#^tK1-9(-3>
zT~S%>__*5CgDekPdC=N}W*#(W-|FhYHtrT4wDcgGo-d&;sje<+<9@x3`&^0|`?=Z4
zO5NIc(AI-pKW26NtRRitsIBIB(9VOuOR1eJsIfNg-@?6eJ;?K5!i|<|%BdYZ_^^`N
z(SuGNboQW&2h~oOS#_Y<Yqh#{_2A`WS!^YzsU9Bm^kA|FQ#|P9L2nO+c`)3AJ|6V-
zV1Ne$Jvi6K{cjt0Kdz{*+TVj~L$jZ)uI~Q6!ypd^d*JpUeBL?41GT(5)Pvurc7OjF
z*T!dDtmX=SP+Wb6>tc}9Q^$HRl5X)}v<JmoJ64|T%)VU3;Ir9dJp4Zh?JKo)UoNYT
z<De<(c(MFJ+l&bwJnI3;M8QddtQKmY@tg<Gd$7QRg&w@%!Bh|CdT{pb_R~C=?m>sP
z?gqtGv!aTZ>rZT1e})G$xl?W3EVDeAEqspPt-~sX^XTX2I~$!d=6gWAmZ~oDV6g|w
zWSfembX(#<;libta;k0J)hej-+PXRa<sPi?;6)Esax(2Ra*k#ZR|)T4#@_VR!q<4P
zRtQ_y30d#KOF~|SO5sKiHhJ)-7jJp7*@G<}RPmy!7h64e#e?%6T<~C<2iraHdEocp
zRS#bC;ByZ+`PX?uJ$T=P{T{sG!A=kMc<?r@N$YOGw*;xYOGwV4%($a8t9zOEcBH)P
z!9EY(k*0$iN>a|UYHud-J)YL$9Z3$*^B#Qc!6yu`q_vNPR9#v6n}?MXy*?GmXCCDL
z+ae)3D3Vv&y1($?knk@#+r#Qt9?YMewRB?Vd=ESxcs)4K*3I&Jz(r(V%>&(om<Mt0
zhzF+h4SNvax!ao=6e9;d$vL<uht@(KIKS;q!j2ISqN4my=WNS^ly~ffeC@$E9vt`J
zCl9{msT74D1rG}z5&WKKc1~7{w>q)QQ9cDkNWQjt2Jx5&rAn24^n3MZ4^A-HlC8gZ
zaLR+zQa$Ox8FAh4KZ~#n%NZWDq1{M+WtQME5w$;(eb4cPPVSu0{F8xn$M)M_9$fU`
zQ7<0z+FN|dgZmyl@ZhosS3J1NlgJF<!5t6E9#OA*aFf==Avb7kr0b2Qz37TdA7obf
zxX^8pk32i{u8cTgRL(y_?s-t6sJ*ilCfK9@E5d?a6!PMs2M!r`no*EV1%yB1MS3+m
zW>^Y)?Hw#C@*-YryJ^q4m{dt#d$RlE!b^KmMo4ilQoJZ3yrdVUgmnA2)Pgfv|2);5
zT~fU$E5b@%loL`xu)H7@^tSGbNj~m@JzQm(!`mYq)x3ZgZZC#;QQeCgUUc@Nix*FL
z@uU~cylC!4O)qMBQQwOOUexxYju%cZ6ff$E5w4}47f&U5`wufI`Jt^_6-k<4nHw!A
zbO~?zy-NPH%%`yzO@uTQY~;oId-n9wMKi;T{WG)bex6GGOfQ;BHA|2>Y+5uutA!UW
zz33p_v%P5LMSJ0`#X^o?8^N}MG}ZZXvv$H?DAJK0ps8HxlIKOE9{pHl=_ry;UKp>~
z!Q54<-M#1`9lLq)$_U4zBWh1CdU-Lxi-BJB_M(p${Y0V4(3FIozS40{-R}L9qu-vH
z#il_bA0jwd@cOM5LxpUTvp?L6XS|s2#R4xzcrnt8=e&5{i&3I8){AjsaJ1kUFHYaH
zJv`ov30@R#nLXKyXOkmN^x^>jaoJ(D;8Asw7w<$f$f+~Mi;}alNM7(_su#1pm?Org
zc`-u>=Q-VrOOj7!iey$&UgCO-xn2~=anBP84R*h6Z`>yj3orCykr!K-e!W=i#S$;p
zc(K-NpRA=`tV~*1=Ed}7>C2_M!iyJ^^7+^8kY44*YLUEfv*M!-UF&2mFM08@koAJx
zf(@dxS#V?0!X}=AEB0g>e`Mz_&g~UxdYxy@i|t<cAGSDOpfvGSFJ6=C_5!89xzl2Y
zsJ$V$(+iFpk$k?(i`_h8K9uuej~8!K!He5o?4>ik_|A*NUcBqYJ}-Q<=EZxQo)@2c
z@daa*&KHB93Vz_lM?yXn)Q{M~_Ob9!1eud5`Aj&;K_PtHY<t+^kQZM{^?t7mcKk|s
zzMw~t`d%;AElVfSL}Gdo5TY}ZlR7OXb`E+G@*?I%+>5Ztqsi8Yka9WpL&OrE-aGYc
zA>Sr-zVTx6ecQt<4L>dTy%$Hk_|uE?UL5t}2QN-~aZ2{+M=y?h@sk(Fq^jh&cP;J0
zUO$Ve6N1&2*c1Lmc&8=lr-l6L#cx8+cyZQ?ZyuC7Tqh&=u<-99r2aV}`(NwyM^e%z
z$9=(zzr48S#dR+(CgoRzToSx2xOH2ntI5`{H<V<AFb~{FN^UX%s_i+%-(KADqL>el
z`fyiTA9~^N+0T@FQvJt^`^jDpy!bcCts5;0h+1L6M+6HBvTq^&Fl2il5|$z&EGo#5
zNTj33e0bc4;v(eSKDpT<#fK6;`>9dVhtfjGOEDmG+$1bzd`K1jCRbgomiM884}*Oe
z;zLCrD*4dZhbBH$_MwUoPx??(l&ksxAFBIMO>D9+JyS!P=<Q`A98U<3_sHf{Yxz*y
z2i1o(AL{r}*9S#fpAvKmQmvklRYt*^FaGzu3v4Lq^4UvkAWfWJeIKrG?nLr*vR6YP
zjeK}H*FOH~K4kdN-G?4NWctw5hg=`>e8}>lnP|51p?T6;>hkm!!dnWmd$y2TA7{4q
zp^Xo1eaI0>dmq{f=_BFozu1z>ETy0A%*k|+rq1Gujy`ls`nlKEPF<v_t6(=lyJNkK
zo<8)FYClo#?L!|S{w3*u{Au4J`ugxg?-Ua1_xE9d4+DMZJHz(pARjKy9&BE;bJS2D
z+&)b6VY&~)d>HP-6d#`R;Ta!B_%K0io;j?Jl(EK2b(9aIh0ypIA(zf%jq_o==*(<x
zKY)1Fp7mj(NG1tR_Thy#cGI{VHxu&nNej%SFNgx0rV8osSIZeb%=BTY56eU{%ZGVB
z%$F{+eVF3|m&r0$NQ3d67f2H=EcT&j*X)HpEE2Nd+wQC`N!mX*q4RPdR`{?^Brhg=
zt@2^z|CtZ%toC7z59jOHx5u?Utex77gk`-CFD0$b%W-e?VG|?SkLrGG_F;<;fBSI9
zhpj%m;=`vteCES8AGZ6j!-qF~c-4p1tz579@H)M5s9@R>*Xa=@-1l58bC$S%ecH9t
zhh0AG_Tfz*_>+paeE8*Lhr6rm7irXWU}1HS4<GvQ5kuOCLKmEcN-29uN-6IMzU#w2
zA@2#kFUZ#YJ{(}sR#(VB5MkY(u5FK{f9%62+@mh(<obJkNEUvObI^y+eK_L7Q6IkW
z;gApG9x6e>FMaU(;Pc@t9`Ke9%JY5jNK=7k%~<vOph=VILrYQ6eK6>d^$u2v)Cu^&
z|C_w}q0(i&BjiKahlmeRAHMeSm!Yu4T1@cqmu&sGm`V)yt;i`nEaW@EOY0rq3rURl
zgAYIY@VgJ^d^qOAaXQe4lRo_9!?lMBhdv?7KXVHTsO&<?Uo9P{d^qjHSs#8)+NAu9
z@a`=gwO?{9aHy30Mr(e%%O5`cNrOx#3=&bh=))x+F8J_Q(m9+b`(BpTD?VIh0$e-r
z`4xp+%Sy0`<>QQIO&=@GrQPu1rl{Q#yv+b>=_uRMMV*^tQ||h3Pvph?_(w=lzr88<
zeR$x*zdk(lp`hRPszc<D2o@0hOm>0GWGN&%g$1cxM92@-i<U0XuD3&_!AJdg%#X+Y
zDDFp!ALae1;718RO8UWtl=GvM*evZw8UKI#n<|pB{{Q0P<s5h66@_SuuI7jp{ix(e
zRne&|I#rS#*-Ev<wpR1o>t(fuA5Zu(!jF-DJn2VGKRWu+$&Xro)b=COkEVXq@uRLE
z4LYig{e1rc_55)8QQyzk;Gp>Vo0rVI4TWxQ$RVnJ{>QieX@VrX4`ns*<7qz{`mwND
z-%~x*Cl{2+{H%ZKor>g*#3m)Q+{BM`PN}1s+0K>0aof3?q@-v0(aevwe&qPkT$Ec1
z?#^+y@FVYq-l=oav;Ao0M{7FjjV#(}<41mu`(E`-^4Zf15!*?ZTtC|T(P3Y|j5o?r
z$dbpZG>z$?zI!mMvmagj=<mk>Kf3zS&5u6Px)$}j`_apf;d8t6@PpN!f+W7VT~6e<
zdsB0NIldCx*AK^utm`@MenMX8s16hh9Lw#;AmM}k7+tDAB}4oe>c@8jGwBUhhb1+K
z`|(VY7pq)!6!qykKNg8_j2{#InB>P;?yn!WOLbyjmhpZ}NcMV``r~bzll_?D$1Fc)
z`|+F~&-*b$bY9>Vm+nY~=|ZOZF)b;fyy=HI`+jY9_>ZnL8J6wbRGZ_+TtDXdQJ{nR
z=B$2`yQ?fYM^omDWP#X>ZR^F!EcRmwog<Q^ek}82g&)VumSsov@Ak_@pFHEuf;9W0
zA1nP>#Yk)CUM*eL2<~`3=iBb~qSpDb-jA33c-fD=9o5a!x<PQ09~*^GZ5(HEy$H!q
z9n~!oLV8Dan;+Z#_&~>pI$rhTH9y|<W1k<d`?151xBS@U#~Xg^^kYM=`ljHq_Krj;
zoa@;0g=2G`y4#OEe!R`6OrHAAmjx58<a_zMFou1unv<tC%2VI-<9*uKuusE&KMrtW
z8lKkhfgd0GamtU=ethJ|$A0+z(ERwsk5B#h!jD6KeCEfR<!ZMT>gRqO^yA2E^_|u(
z;`Djy>P70rx$2jUXFm$AP`~2V&$T53_o`!OsUF6_EY<6WPe|4*Td4bC`0+jM_+k3-
z<204V^OvXrKZ1T(^VN_abEd0d;h)b}BT|jBDkR2$6cQKwTJRe|_WD+cqqpO*kgk0k
z@3$;-RQNG^V3zuWAC*_CKl*W@MVVh-PAN54J?_U(Jh@BMpZ(0?HaX!(=_U588qHBp
ziiE;z>(w)UoaHh#6w>gkAHVr=*^euJ{O-p&KmPRNydQt?6kI9tO%KQAW$K4Rvj3c`
zUSPhOu9jY;{>2E{peFc5UJRypy2La%pzD;vt*-iUjXB(p`+i*a<Axu9`*FvQn+z5D
zHoMGi=}RNA#VU=E5Lxc}aZg61H42+EN*CF!5Bzw@1Fqp;KNk0KP|{193TSvl19j-D
zgk)?xcVP`hG*r@1Swm3`#WbX9D68R74UcIksiBmH$2An!P(s5eoXiY+-&4d6=Tm-Y
zHmh8zJ+y{08n}FNY9@r`L{dRRMGfUOe3xB@tpy5|<owC$sPctMR?$#ZLtPC|Y2a+D
zX{e#$3E|Le2UgcWN3r9RtZJyOp^k=HqA;(ui_76yoD9jFmbT5$XQ=fwI5j95RI#AR
zthhUA8eC$81J(J~K{;JipK}|UO-VxyjWmqaFit~b4NWxk(9lyux`qr5Z8Wsikg1`m
zhUOZsO;fk5Q?oQ2T&NzslG2QmT&SL!*t6e4wS|V38nQK{%~YG#Q(Fn)5g>1^VO^EX
zl{3^F4ec~^)X+&odktI&SDL5Uftsr!I>eq2B^@*jU2KOF$Lg$s#=B|g!ky~hwW}Zr
zg&exOOyE{4S1%2{HH^?OQbQjNeKic$Fob<IXw%gG8U|?iyLlP%ff{JGjA<KZ86;I&
z7^?BzDu-LcFb&VlRIkoc3oKQ?o}o5atq#{fd`82}<#zS2o~gTzcN(SHXL&STu~r=;
zNK(B<x$zn%X!eO-tKnG<6E!T*uu#J!4U;uY)i8}~FJE+uhUYbOEtfgJWAEn}fxSv)
ztyf>ruyjcF*|j;u=^AEeSp1?okK<~X#jRhW&JpDCoXsP-*gmAhxgumM&+mK<U$0eJ
z7PWIPVs{P8HLTFEgqAgI-l#6qu&S4%%SKh(p!#O2wHMgO>O~FuMs+oVe}TG^`?$cC
zuVP4Sv<b@^4eM{awzYGwBhm1ZhL`Cs4R2}Kpkbqi?HXRyu!%!xc(6u&MR1FTtwJan
zvPeD9&P}o{DLK}^>ubVyXm~@z>q$9Xw^KM3DlE2pQ9`my!yXN9YuK%U)g3cz;a=hI
z@XXFthxaQ@35Pg4Lw%1yrQwu@)6D-G4rmB#h%o<a_)x<k4PVkxGt`e{uMZ0Un1@}%
zr^31QpYdojPS&Yk&$VOta}8hc6x35YeqPaN=l)7VK0}Ls)8OGznxXnN`>8?V)!-A!
znfZ2=7T)eyic45FT{SeA8g|W50~&%FLK>*UC}Je<T&Vh1sJ=oaqZ%wG4Go87Q8DHs
z=6MZq2`bw8n(2kPYo*F^ynIQvjvwmCoUVSa;RnVfLuHeCggY`<J*we_rD}m1<&J4+
zHCO#v!wC(?g|qsT1T6_C$v?m2(tgo!k{uVQEc=$JXEdDUfzmNb$FCZGV}jE0q>kS;
zoMYzHQB21l8vfL9n}<uoc?}mdT+(ovAv9b4i>ZTOe>+XR$jzN@C#W)O)himVYPhc9
zhKBw#)DhFwYdp5o)sZXIA@kLn8gB876e`(ey86!?mB<p^q~6hRSA#=G0Uh@={KN2I
zs@Fh$D%_`Jj=Eu%-G$vLc_>ZuX4%~z(NR!G5gjfu%cD_9M`0cLOH^iq$L8B^=d=D^
zcgLeT9@9})M>!pj>$tT}Euo{Nj^a8}*fd{Vvs9(GS1eRZ=_swEjE+<tGgsO}GabD!
zU#+v=K7+g%aMk5?RM1gHM^zmabu1c@N)K1kF>H<<PE@F@!#mF=)pQ(xswi|+*D<6<
zX)d2<neqJZT(yP{Dv;FFQA<ZV9qo10)=@`C6CLR~>gsq($J06*>Zqr~sUwXm)uHI<
zJ6lz`km+he&S$C0D(%$QL1cJ0(9v>(`r``QX=~=#PHv>zu4~K@=hz!T37wgtBa@ms
zvUN1ok)@-Vj^;X+H7p&eT8>88y@ifeg-Yhmv`3)@N=El^w9?T=M_b*Fz}D>eqT1(0
zo8)lvy-O|an!>7YwwkLWPe&ilR!0XN9d&fo(Tz)M?Ycfo?WChKTVGV^7Gf8%!(QEW
z^w7~$M=u=-<3mNEw<wd-d(@w>E~lT4{`9Jjp*jZW7)T4V)WL#0k1T_9J2*)^-5p$o
zn;WF#8QqRamf`g68g=Cw_2_bY-$#i2;u5=Qw2m=4USoG1V|9$vu|UT{9piOO&@n~F
zb2^^Y?MM0SUXF=6ZuINQCmO4h7(9#A$%1@>KTj9wn885OF;%ypiPNR2|HPitbnq!p
za=M+H59?VvW>Z1Od>wN{XRg?1PN1E6%k770ubz(o;UXQ2b-bkGWgSa&EalGXSj)ZB
zv0TSW9jj!x6*^uNYaENCbCSf>v@91MUKlvr#8qUSj`gCMxb5(g#-<HAHtN`>W4lad
zla4Jqw(8idgVSayU8Oyz$2-z1^ishpTn>AEzSzD#y{g-Hv$}ms@dC3$#~V7{(ebX1
zom}8_^{pl9ZXIvxAhC;%T}gg)rn*OTRxMHA*0GmsS)%eZ5%-CF!7}x&<?4Gn-q*2T
zx1Z4m1lPAML(Y`TC-p}<KGyMB00#s3M8~H*_$JDm_>7ti8v_Fje6HgQ9gi3&XyA~J
zFLnH&<3}A|F@fj^>xk&^aK{TNrjBDJ6|WATZvQ08Pm-?aJhLSfjRs#)$7L%snkfdI
zkgfQpr~zqWYf$H3-`f^es>%yn)$dCvQ5}|!n2voHosU*k;#}Z8=eIh()A6+qW0<<C
zgz^m?)mOb%MmfyfQdK#^1T{hZUdR1#>hD#R-%^yLI--YDTeMQH4p)yc!|1rG<C=8;
zi8)-yIUPUiIHBVg9Vd01(Q#JCDdrhfInBT;q>LJ)rag3)$?j36iSnx~>Nn}$ZoX1=
zg1UT<%9;E@O&yo$lP}Zz*HO;v_)Et{ri+@&1)ex(+TQxg(az-_DXa7vro7unedNCL
zvW_cs>3t{5?RM_#JQ_M4>Tnpg-)`!-qvI~!J5s%+<F<~!nMua0bmoFaY5ZB=JqB%U
z<-U#wOg<bU!~SVr=~)UD{?(zCQRvB|V{QDZhVo#vy@~<`N)%M;_AXJ#Kw$%l0o6be
z14Rv#H&DSqF$0epNTHg6@D=C0QA&^M%3}r|H|%*97o0I&`Ey@-Ndu(}q#77oSt)Hm
ztEKF%p_DPu;K$T;H=X1S-gT5U@K2X=<qWLrsI+gQl<ucgG*HO^3{*Ez*+3NoowAhG
z^^|HComCCIe9>9+T}L$ozOIh+45dVScMSti81|;uHSnZ?ui7a!4b(Dlu%F{tAEh>V
zdv_fJE!(>@ZaZ()RjjVcjE2fn2I?6YyrSHRA5xu$?KJu@oR*emz-1uEKsy8VIaLGA
z3^X_Jw1I{O(hYq5v@+sxrICTg2AXh`9_3iw+N&JNvgJ0<Fpz1WsR8mV17(XUHM=Tp
z_vehNt@Lj1Zo!#%R9YLD&`)h?AltyKGRlHUj*Pp`RtESk*3BvH+ZgyWS1D6WX-kJU
zQr`HjMSBCe2D%&QVIa@I$cjoQ1Dy?gddJzpKu3<)q1@xosFT{eyBK!NXWVdhHE<`G
z`irk&Hv_L0R@Pp3Zp>ARKc@6F(8qxOmvj6bXD<U6|918^aId!V*f^!Hfqu!|AJ?}8
z!(gC+K?Xbqy!4fUAqJKiSZ-jb0k^?F`o>fP!wl>@R&fMpWneg0R8x6|%Wt4mEu<9c
zQeu>W(FP_Om}FoKBf-Ep1LGMCx19g(a*U0nl1wmAd#qBeyz;C8;?-<rHBVx;GG>%A
z*}!uKo;NUso`<sNu5)gR5?rXL^_A9j6pl5`z;pw14a_qzgFd<KeC{9TECZLDC^HSL
zdB^eO9A&nFwdo4W90LamDB(fMd;_<O*&beGV1a?nDa!1}m4)<YibBq)UTk2Afu#nl
zEM<6e<(I`h?q(?~47_OIJp=C>SZQFDfn5f68(3{%+7M-(f%Wu28D$NJGx%4`O3BBS
z4<{-w(I*aNWhv!NMz4Vl1~wWvR!?EsPH!(%HgN(%$hQdDYT%WmWSfESwx+X*`majI
z*9^R#w6H_S8-hCp4~<smUv|D_;QA9vn}3`KA3BexD|-yQ%`;-)flDdfOnKM9JKVkw
z%FR4wd3*Oh0~B8Mxt`vczMtpuNR<x_d_-SKoP59_@2T`Z*k@Qj$HxXfk+b$C!{FBz
zpEBng_`<+v)G=`UqVs1ir;YMs7p3Gt<q&h!J?G04%07PCY0Xr=l3mCbT$!n;@2C3=
z_zhe&aE<Z6v1q}-PYhrKrh#t^d}|;;Pa23Ah#Ckn8>B0(Z#lyTx~3?hI*w@rtFme_
zqV7232D+42ViM9HeCg_5S)m8M7C-PG-o|s4?+koz;D~|4+_KSXvmvEV7E^jOP>ve-
zQ6lgMj$U4Ar@M?wb~GMiXf;S9`Psk;1Lq9<!R41#elc*`z!?K44YU|gl`B1E;J4<=
z(C3x2%wsp5ztMG_6p~*Jym85Sq?Yo#NUARFF@3bk3IA!}FD|gBa^AoN1B}CeCpn1W
zmIW^wxWrSoyxe62S0slpjp)sl>5nMPB-ahxU|Kd&#KcVlw+uWq;4pF9z~9_B?rDbd
zZ3X3yfxA4^bYKN#@RYJWTPQ#FEOGVo5@SQD_Zb6>;S0_W-*piGWy0*$Wy3_JfQd&;
zRK4Lm+)`ooC}`q*Ddnj>jzT6_WognVt*D7&CQ6zpW#Um2%&x^rswxbm$4on%9;fnc
z=gry5sme-<i4rF24_5j)lrGJc(k4F-DygPDbQu!|9ysHn)MzNRtodImICUwtf{BVI
zE}FPxqLPWqCf1l(YoZD#W}=sg-X^M<fQjZNT9~MAq6UXB(ZIwLY$~rjWul&mCr#8e
zQOiVa6Ln0~HF0IC(l}jdK1`XBu2h<$JdvT)UZ5;@C{7cKX+I)ewAM>eP0XpQq_N{z
zC3x9M%$cq{@nT6nH=j1q&_p^HXxh1@k!e5snwV%T)sHJH#V4!5367_(I5W9Y6Imvj
znRt4Xa_yFrNFg6v9O#Ky89u^Vn#eYhYa-7?D-*3vv@^lv%m-*26K%P=R?5`f4puKs
z%FQwDJm2+`zMOV@+DS_b^|gK8fgNu-yO`)`qLa)y(z{$|`f873Yz5_=(n?no-Ar^h
z(ZfVf6KRtj^`A~#{CP7*W`QxejLh`fN*@z_O+07fc@zCijQXR@P!nzw{Y?zutj?Ak
zXkw6w!6x*PCF_?}MqY3ZJ6&W57k<$>((6k7%Q?)%a1-NAOfd0`i4innVzi07yVa3`
zO}|b}RnkuHR>yD}O_i}G#tC`1g~C#%rP8KB+OTHIvnD2*_;`>ynOk|$x%Oo0ByPtA
z=ZN21#>XpDO#B9A<w$jSN96?*Q@Lv<=9@4SWg68u?p$TMi5Vtlns~LcGRwql6GJwo
zHz}nQenb7XxI*sSuFf?v@V=8}*dE6M6AMkOF!7>^MJ5(A*wU3{CYH#aE*0cn_sdk6
z*+`a)0(B~MQhpkztTeIOMCuTge3c1rALYPUb;R*hURTzcSZ~5Zp^2AFylmo46K|Q=
zz_3)6Ehe@~q-`{@$;4**xvcVPKgXZ%INFv}UXew;YT`8$rT6D-qhkvx+qoTW6<&9L
zo}|2P;tl$Ic{$$Yc5v4wDQx0)>@=~Xy_=h|%fxOTF%uu~v<_7En0VL3J`-;<uF}%>
zns|pc>nSs@IFFA}8SwAPseE6KJdfwT@5=3Gmomz|f1S-%clpr7M-pjYaCf*zt&~p~
zkV5)}Qn|~YnK)?TbFOiuy796Tqts?o)is~G#y+YXGVvunoT_|fBA<a>(tghJhIZqo
zvqDM5XTopdClfz22{6D+L`+0YTszysFyWl022DHPnkE85I2l%X*$#<|!d&B1_U+m-
z5i{|<i6bWBCcb72>`ed8#EF~EZ%lkE<e$mP%ahgFZ4?SWZSOwJ;Ax<gJk;zc6U*OD
z=H6o_elYQ)iOv_D&(BhR-=9N5`Ee8KE9vfg&J&XBeq|h*_{GFY6Q@j^HgV3SoZ;zP
zUXIUD7G9jrim=PJblzHjXKKn&E>ORia?ZpbCjO+KIp_$59jWlo0A=bFg^8Ex>n|>(
zy_@IvGE){$ZU8+3xJrlcL<E2UuA8`FqEG;Z1Gs78mWlf&9x(r#_**tH?aTCcn=5xr
z+~Yh`l)K!f7ZhG@>r7Sup`E^J?TI}o=dJJWa$Wv4@z8`LfC2$~dIbac=N-o*0StXc
zdFyCu_LlUvPbxX`lq?cJ(E!Q@P%eOC0X!N&N&qDSc#Oh2%Hsk1!Et|=qxzt#B*g=$
z-7qcmoLVw~QUR0>piBUh_Bs-GyzalG)|#Xwo<6Aol$VQK`2a?iQz`~fiA%1oR0v>f
zVdd@5OVa<91E@m#0sBhqc*l{z2S-xbR6T$i0b~S_8Nd?(JQ;v1fcgQ{44_s3^#b<i
zk=oL+Zle1)sda>OIh6jCkds4H+HnS;1fT|x7O+2t@bidPUfDEQdE&COMrDN|*C2qW
z1K`Dyvzor!(J+8U0W=PvNdVoRP|^e7rzbx6jtp1Mws#jj*P>$|wP^rZ0kjFAEvHdd
zX%;}s0I~y^y)C^tyEjg25kR4I<(=o1RsryG*gAmNUFV$srFe&-E40q#asp@<KwbbH
z0`@JUJ?D1QnJdUlKDC`P?U&S!0dxwWtE@Eds<Sg!J;Bk19xJ1;%F9fxR!TQ%{jiwA
z4`n?A=oP^H02Tz$JAgg`j0#|M0DS}K7r?Lph6m6;fB_u3tilVxzyJnu+BKD-0qicW
z3=Z%s;=y~M(nzUUKv~mYC2<Gr$I!5wPJX2Qb%4T~n0CwgOaLP!s74Bw-=Q+V#&BB$
zm>$540LBF{o>39NWKozP0r0GF?{}&6z(kIiZo6U%Js+?y2~z`jK43pqUf@q5rm9RY
zb*m`MGrY;Oby@&Brz(ubJN=cJ0Zc5a%$8W16+p8I4hGen0Okg8ZFtpr0o0kURIBHh
z-CHSn$+<9qMFG4P!0Q1l4q!<DYXVryv939n2Jj+xCxB%EEDzx5R+W$46#@HGMqs<j
zU0x-T&(T+Nk^>wJetxJazr5VK0M-YvC4j8~yd)0X5Wq$r;hpNs0j$nbiceBD(UVu4
zKX-I&4&X>5g?wvQWm8@I$^Hu0TSnO)z&0Td8!88GJNfW^m0s$rESTD32SXx&cLUf*
zKkrm`2Cye!e*}IrfVTqnM~_`x)OK}u03Q!k=*A)2)a@UpzfGM0zS)v~=S}sU0AARV
z&L0sF-wWXV06q-hz|(2_1Ng10a)1XaR>m=?D)|RI8cmec3ChHR%11OvM-6avs;zty
zz^CjrQK^5^$&O2&RX=C1@~*53u4n*X1aK&TFL^Wq2#Y*F08aoWPwRW?t@bW&07OmD
z7qI^r(=U8*{gRaH!VQs^+fpdNMNzW5S-pT`aV=MfVbI>4vQLeO<&Td#IIhJL6hJ(H
zubHO8C?Cc*0es8j6GBFR=XU`d=57YDGKlZ#@Bo?z(ISYW0sIiaJ*K_@ehlDP0G9%|
z%&gMic|3qq0h|utrvR#Lbo?wr%1;RSMew9xakCrcX9D<xStWq8BK(z}4B&U+Y&|EW
z>PAPqjSg1NC*^+$xsYtVC}d_$TZiQeS1ppOg4YDE3$pbFp8~>X|CY(>?WFwg0PZCD
zT_NQ*I_?MXAb`q2R0-nW03I@d2T?KzM-T;qcsz*WK|B()7tT^Bh=Rg*e`U|4a1ceL
zT2!!D5L^i5k0$jW6ViT@Eldd_vBrc>sUS)RQ9g(YqEjY_zBL`?f=CVG>Un2b5hgU*
zH?i=FBCHg|>tc{X8mt;bwIG~9DAI}`o(!U<@ajR-5JC%22;qL!3Zk~~rvwv2)Cr<)
zQZpf`mt2b)L|PD;LC{yOAnFIvIH}n{NW-B0`rOk&9GA5>65+P;1vw~7lOWP55g|vX
zB!NwX$P!^Q!Ni~~gUAkINDxDVXca{3AbJMTOBC7!(M3qxAadwQ;T;5NvwaY`LFCaD
z;+g;Xtz!_Kg6JH?U;n?nt90xp*gc3INjr3D@8rS<2GK|4ePx0Dg!d0(fRMxx#6iiv
zgBdNG9VgB^-9ZcsVsa2uf*3BX;{=}xVnh%lg^v~-CCK@|B%T=)#8{F1Al30fObFuH
zq|OXk!bGV~N>1`Qsm=;wb`Z}8@j?(&MKUdj=|Z?`v_B(=OG3zJ29XG-IifHxi1|Y1
z3UWmYf>;>D;vjx0SfBcfL_ZPm+&d~P31Vpw%l?o3<w2}Sc4wDWL97nq_aM#%u_lPM
zL3|Lzhe50hVto*Mf_OWKmx6dXh*zc82Ei?Y8wEEB($r>ZZghAXy0!-KiU=FzJGLcT
zw+E5%)oVNyLF^Fuo5|KUgzOYdMBQ7$cM0wmj8#tKD0_v!FZfOn?+V!`$kz9g-X`BK
z!UIXkM?riX#CJg)4&sv_J`KVM!W5m)f;be!mq8qq>gPc`-P84jaK;HueI=ZG;R_-^
z2#-{~L0mX&x3VxH_(e#r3DJYN+{4BE5C|eDl5h~AWO&mRi3}47A{vAx3h^Mm4k9L;
z25IUW;UwP*NkmA(Ki@O+)1@LmBFO3e7{sw4P6u&@XIzB82>!(5#{4gw)=miN*1kRY
z$skTiHE~QRIV%Z-<X4gZ_J3Oc2;xtg3IQRU=kkMiz*NjdiO#hkt_N|E0nD|Fghs9i
zNzD0bGM;Y)aZ}{~2;LIB6U1#H?De;h#FXv|zn9#{`$-+PK4kI_p|m_73kVhsp_q_I
z1Pg{xD1^cxJ7d!<OA(RlQTuW8sPN)~kA?8Kki?)VA(W76Nx@Qr^gkEUVw0mx2&o~I
z6=C@hDkNG36DzG4LRG0&609u95vzpIUrzV`yj?wn+9A{tg&KlS2tFxTGlW_p``{#U
zLfsIa3ZYR5jYFs>3a$|93vq^^2;nGd2x-EvZ+EfUAcUu-nn)&eMMJ6b*+fZ`5Yj_v
zo9G)tW(X}pXergEA!LQnEc9QlZvKCa&}<?avqjiCgjPZl%V%qw5Wlp_#lP1k&k3Pj
z2<=126`ef6L?UG?yL1epQwW_y=n}#gAsh;!YY5#!m><G|5W0uZBZLXktEb@b5S|I4
zR|vhO+J{~ZVE}hos<hcp2v<5Vgh3$;4Z$74U=a>U>hNeM95PHK|C@P2I6{OYLvZHX
zkuxfU(Oi)T#|e%V{9jy+PsZ4@AxsQmQV5enm>I&X5T=CioG8B_sBLyUFC;PI)DWhH
zFkK`w1QR|<w9ZaS=7umQ$rGNR7qTDpR9+auq7YsU;k6JJhp;4smqXYP!cxj>I#z`6
zVhGEUeU~#brPs=k{mUA5UngXh;A+7&f@=k9K2>eK^nFQiN}*EhvQhX}2F6CmrljS~
zA#4$zm=)Dtk?OV(whK9QrV53xhp;1rcSG10!W$v%l%}^scvHwO!M6lyCo$FCA?y(e
zyC;nAmFhc!)Ojz2_l18VxL@!?!2=<DAcTDrPsWd=`mrGA|7i%HF@EHhcrdB?xe$)^
zWe8t|a5jWrL&y)o6T&wkd>eu{1fS?cL-2>7g%FS`&lF=`7j6ief}A8vFoaMDVUch?
z5pm%E7DZx(5KFekL-<<w|NQw~2**M=9>U?I&i5f43E`+zxw;=h_>l+g|J<N{N@|`I
z^0VLx!Cyl5^)=z)QzAJncqU{&$2pnbLijxdM;HadI2Xbn(t16FKZQ`?Vh9}cyhQ$m
z5dKQa`P{#h<d;LZBK)f0H9_N(lI(sXgqtDU3gLDL|A_o=!MlP~xWf}9dHY^c!r9&r
z;Xw%hisYeS;wDMYv&$pl|L*^fhfy$$LQ*XpMzN&4NEk(h)2oSV@S{?FENlleEffzU
zC5#dxEGd|9QK>LWOSMcGsbQ2Ap6J5$vLktgFe-)-kfusuR1V`{7@vnxC5)<JJR8PD
zjuHmK=nzK7Fsg@9BaFsjGzsI0FrEyfUKq|WYKBoOjHkp-Z9&?v6aMeK*G)<i6H8pH
zlrS2KTop_U!xcvTFdBsMbW)!)OiVa|jYOU>l1?5*jz}`YXd1R}$gQQCCD<~IW??iJ
z-XiHM#!13db{MVb?Vhg0?Y&;1`fb8!E6NE4&cB^h+Y9Cj<|XZP3ZruvgTfdbMi*)7
z8%Dn{x`xp$Y)5JLFnWocc6tcuNteogQPNu^eFPH$)1Q-B=^PlwfMhQQ2_^O4DL5pI
zp<z4|#)vT7(mFg0{$&vD43p~rTr@J-cU%~w!Wb>pF@lMq$A<0rO!$9%7!#x^F@Z^8
zOqS}#Fs6j@To}v4SRre9p1s1D6~+r;OckAJNk2@N>I^~7haoy!_`)z2g)v9?+%V<|
znIFaiA&ChjroC7s?7K|J62YZnp9=qbTD>Upbz!UwW0i2Wt`@?+YlN&7OssT$7%wGT
zUk+nKl5>We!q^<fmN2%4u`i7G!gwW&ZDH&T<4sZ9F8F#FuO@rFmW<>bB6&kFk>%bJ
z{&rGxR~Wm)*dx{VHacp{ZG3MS?}!D??Oka~+|u6<V}BSQhVfAt2a*;(NXAJb!*g{X
zhw+)Tev;JrG^vyD;TK^X3L`(+`lXPs!uUsS`w545MCeWG_`>ifxh6yp!w_N$E~#3S
zLkGhMg%J)T!X1eK5k$kV!nhU2?J#0t#KSlh#_2G=PFg$0p8^U0HjMAWI2^|JQvE^j
zh~UxW{5eEo2|tRQQ#~HWPr`o=<Cic_hH*lwiCaw~XP%VIc}C=ahH*ZOvtj%i#&06|
zT`;lgbK(C!#Ql*Z7sB`}jO(IvQIK=E62>Lrmy?pj=3WisT2jJe!l~Yn>dj>Qv+v(L
zxe*kO;7%BK!?-63|Az69{uh2<@PQ!pX~z-y@5eQdMC{~WAo5=(Cod=xPQFM4MI$H^
zL23lWBKD6#9*>}S1dm4Sv;UZ=QJ+UCCCN)hP$J0_%P%F>(vkl%PuU2{MNnCU<s+z&
zoCfVwjQscHBCnL>RsLr!g2@Gnu&H_kH6rL4L9Ym&h~UWxvLa{}LCpwiMW95W^84Q+
zs1t$ne|;tC)s5gOk<=6Xqk?TMk$KW0a7FAVcoS)=FW4}G211?|q%wD;k?_WXi3L)g
zo=}J&GlHhcrbJLRkDx^axe??=&@zJT2--%FBRUMERzg|}wh>H>LTo2h4$(d-PZ;bV
z)h-cqjG$BGzdIQ9JBvIKqFp2CCe`i{^bnGmDzSG2eIgha!T1RJO4HB?+(P=%S_A`x
z4-_0MI4FX8;=mzN<yf4_FySMUlHn0NljI{LmiSy76~Sl`@>$Pk+!*0w1!-YI1kZ9$
zBbXAwMCnpRGSwteNaW||B6wb^vm<yx$n*$iL@-tOG(paXo0#~?fXySAC33ogQ937r
zxe?5ZV15J(MgG5^6fIyVCZENNgtPn72$pf$ag2#$c?2sW*k)n7g%=}O$&j<q+rp{{
zR&!gUXc@(t2-Ze$If5$@tczfM1V2UaGh-=&mm}EIso{|bHbk&7f^Q@EE@FRGUGCo*
zn<Cg8!IlWNMsO&CFC%z`14Zy@#Qsa(?Gb*TCw8-Y1g}N#dIYzI)!!w!L-5TA-Vj3h
zPKMmKc_b`vMex~rCBf_7S2lm6(AwJ({zpQ*6T!O?d?fZM+$ZD%!S@8;k6^!$1A^4K
zd(8Er@O~A`vC8tXR6mKpYMYjjd=|k$5q>WCg<yAY3ATO}L4E{A1ZD)APAQ%U{6f4D
z9B`KK32)pyjZK<xT`;p(2TB5BM_s2xBM1r)35Eq}JR*eCppF$mEP^->{yODr!Rc1s
zH$o_R<WwI28ag(r<6-H-d(rni*X^2<j4D#(C=*4i`aeYY$ERsOMsQ3r8-K`oJi=dF
zG$c6@!7mZ~8o_T7oQ$A!uA4vRIvc?$#z3Xa(}HINS<R}Rv9+?R`44@6r^C-Xzu4?p
zGN|mi2>yuR&j`PD&2>J4u1o8`y~{zK)zEc;@esj9W~y8_t1Oqe3*$<VT#evb1m&Zs
z5XJQfZZN$^Q6!3+-1i6`MDT9}w<GvFg1Zsii=g7kUd=M?-@@Es0Ou5}km>p-g8LDC
zkllaQu5xVZGsbm%v}@KYj)xIAqWn%#P*@;}lACiMiK5Jo&aAe}b(2iW&L|Yc6JxR{
z*|M`x(I|>hP4pj);;|@lXXmCw@pu$3wagfn>n<)$U56GTXRi`bI5y?7FD0d-C@rSS
zL{T;hEXz%eV*aw+f1YagXm&<9kx<B96{DyW#Zyt#i=uKARidcDj!{&Nq8im?2-?iO
znL=EWQ?Pmz4|a5BVfD!<YDQ5vihkqk*J7_VxpnBY&ABACrP^<0?#)k{y_V(rY@CbS
z8HEx>!zda>p(ZUih$1ZtR}|L<7vy~EN70~YtC_iO+J8E!Q~6d(<0yLHPH8HVCW7fv
zWJHnG*p(UOSKan)-YDaT%+du{=4P>#s~DNtTw43g%cah(;ThRcbnfNq8b!A#S_x;C
zXdOkHsGTm_3X<eR(Jsl`)91qT1Um?JOty9s(pj*JAoE`LD0)N@jlzneXB54nSP{jG
zoO~30qL>`TlqmYrV^O%H7)FPG;_6TRm7NAgF+i%6obIm-iehloezhihMM+)&hD0$m
zYX1y`za}OQkK&mq#zZkTiVG8zH(mC7dLyFtuZBkojuIRl1>fuDuh+*#F+K{uhtM(K
z^}eFe;Dji)cUPW`Vxo{qoMf6p2}?$4<+&)Hk76EUCW;rLm>R{bDEK}MUl0n9QBFRg
zOp9WARKDNff^&wDnT*vc%FIK3s5U#HEI3z?@64>)sxF9PNfhm?DGQ_Uw@_FX30W-Y
zX{9WU+OHfh6N5)zNnal2KLP1OvNDQQQG7%XM6sI5KZ+euyb;CPDAut{6dR&gFTGxh
z@;{h6_Vu#Y$oIGg>`^yHu_=np(pvb2{YLA_mvh+4*N3)5LEIX}D?+vjQnFpht5Lj`
zl)O$0MLV%+XB2O8ucLT7inlm{k_z7_=F71pyQ0`F67?S^t9zsTG9|1pue=|{yHV`p
zE*DU^vwU-yzdGjx-s2Iw=*%6Y?2m%4MjVLZ10f%ZCM7I<hvbteK4p~t<qSsgSriAO
z_$rG0C_ZOI%~5s_QNEBkAvwee3{k!m<gcg6JyCe0&}HpDL5}MuNmusPQZ$~0XH*ux
z)MP~Mcdbo9l7JAt&pbwPgrW#X(Z7+x5@9@#%O#0L5oeOLP|?EIQG64{ttf6s@of~}
zMe$P<KSyymihJJ|`96vxGIZ|8h4u{S-1ctaqfz`2#g8I9P9oko#(m6nb9!ScDU_Vx
z)-$%F_$vzT+Q}&Xh=Olf@U@mxQTvU-(@~reLVi}ruTlIa<oBffoDja3@+ZkHC*Q+A
z&&<PDVbhh1QCwoqVZM@STxJ?{t5<kJcc>+<IIl{TFJ)24SDtP#|MNU{P(~;U-%H`U
z!Q_8OaVLs@qj(ra+ak*E0}9^ddg;<eX*p@iKT+Hl%l*%kUgUQ@h~n<eB3zxrLIDep
zT6oODBbI%Fidyz>{0mz4@hoJau!SPRS#8m!Ghd~!<rkdAESwyxl00sqxP>wnQZ4+l
zQ%$i@%EH)QN(r$>g_0Kbi6={2_A99@{OgY{y_K>S7L8ZRS?E8(u9lZ-n%0TJN){?x
zXlS94g(?=RT1d0tvQW(eEY!46ix;p}j_MY=xHFDdRBBlKG6WaP6BeFKavtZ}7V21V
zT9}vDm#<$kwrkvR*0u1Ig?bjQ4Yb3ag|G1_7I+d_R3Xz!DEvE=`W6~k_Uo6$-c9E_
zt4|AOx}&7Ag(enSTFADLZXv@$a|<ujsGn)!t%hmMxa8UjNmHq2S>S6DYEh+)nNB&?
zTCihHB|lGTWuY}EY@wrtHKpx8rf6fKt!2OMlVhR1Wxp%lj`r_5`D!<j)m#gCBIic1
z%JkC7LU+r4eX+9z{z*$03tfeD<0uY=l21Q!5qntZDVt)-cJKw5J{I~~SZN_#*42+2
zVc~hM!omOx11*fUFvhaKGkK7O-`d*W?L64R5DP;sxGjw2j;!iC%)-<e{YF^$IoCa0
zIIGV{FOus0`|(SpM@jXk6@_SlWvqpXA{i$*-onD$87vcoJS$jyg+1IP3zNCDuhUtk
zSa?o2XTs`K3)3ttwy?y)bg?sAkiBLInQ38`kUgsleY3v*9BwPaK#X%%3oXn~j=LZ^
z;vx%dq6OkoI$?dm9uLay*=<jInT4yl?&TI%h|L#yF7n(b7WC!nR#{lhy`%pvY_hPK
zduL(2g_kV6Y+>fDjJ1nh=|(de*<hjW`u?WgoqWlNjExLVUqO;B7PeY=g~zaO3eB?h
z(^{ECmY+{$zseD5Jce~Kyl!EKg-S70j^PapJ9!2zoU-sH!_0!ug5Sa}3%f0RY~d3N
zdn~+d;e8AHd2p_!?6q)jPVT!F-ph2oV`0=d7w?C>*zB|HOW=EgyjdNft4Fy$w7_d5
z$p;p+(OD!no^SS%=#YGB;WG<|EPQEU+{eux9hrI1!siwaK3jk7y4)`;oV%3HLitw~
z@@cBE%VVMZ8=d#;?EKx4bPji9TS>2luU^XKD4GSGA#LHf1;c`AA<i^zAz&fM;It62
zkW<0+>fb3LF|{<OAT6*&Em#&lSd`1@afq03f6EL?zG1epaKyq<3*Skv!xp|5^5(Ua
z7jLFepQUo1`v(g@GW#`k{luGdV;d8M_J3kv%g`-fZ#=VQ2Ip`>s=rtmaj*-kr!AbZ
z@W8^q7S3Au)xs5q3eO7<AfsiB>mpsjK`Xc}FnXV{E&Rc~SeE;z;CVp~#2e{fbm=%3
z6+Ua-=n|c9u*+o&3#Qta_G=cdTi~Vfo`oA0Zd&-;!X578p6<6~M{Wz&&vPfLUyRDS
zbSGuv-tKoT{IRVh@8_Ncx&QF&XS(hS(p?WNIASOnL#Y@F#PCQAg<~iZ!>JOf9I;>w
z&0lN$DL(?laD8>|f<_rdV<;9w@fcc<&gA7eFVB5oLj6Z$cr0cI&*L!+%(E}a#1xT~
z5F9o#lR|p0bPN?3v=3UAi6J$HvN437YsOMe2t%=al2G{dSXV{qzI<=@Dlt@zp-&8b
zW2hDbVrUsdb_~^Hs1ZZG7@RS_u7)RLs1rlonC)tQ9MG5L){LQ63?#K<yp+~wp?m2W
zj`dW`4%BD!+)MM^N(^cY=`m!)kQRe0h6XV_9kY+X?h%=NW_GVHGa-33&)qPFCNYGY
zx*Em6>i#@;;}}Lild<4LFa1m}$}?kV8na`ySq#2Bcdw1PrEaHWafV~ECLc|wyt%Zt
zpkz(%ucvyoqCaEEi=l&z(k6!XG33V3mfl{Ln-fFlEEh{Vj=Lh4<k+&@vPaSxrQO%(
zc9bq%V(1zJW2Tc}XA!c>$#jdMM+`k<_DSy^gFB}nN$Ewo&Y^{<&`b1tCwujap+8q0
z!}Bo=;BLnF?<O%ehCwk5j$uR$BV!mM3mHmN;%E21?%dpAF+3B)&(~6h$Lx=sl)Uy_
zv$9P~6SL>!j-r3W+vDCU$7z50ieu`m+;K6CkAWZGCd+Im#4s_2NiiILwAHgQ7~|@b
zSb6SlnJ!LvfA@k@BsLf!x4w3~5X00M7PET{(_)w&!<-oA#_(I7yUyy|88OU^@jnY=
zcFg`*+9s<sLvGMxshkWaHZNu$nFTRK7w66wPT|E}1sBG!h<+I7%Koj_jt#lbKi6z2
z*Al~vF|3T?-dNXn#Z#BZutN53&sf*A;;CPZbuqNq{c4_jRSc_RSQCTeN;<=jg@dl=
z1Y-C-hI28z9K(hfzKS6~hK(_7ieXO-Z^y7XhAj-F7+#BEYYeYYtxuWlJRO5v+hRDB
zr#2bnS{cbCzP-gk;gUS{^%!<??Rn}B!SWaSy&?J}Z^rOe47(UAgIv2~poHZ5y~0I0
zxT(K4hIeB4Fous}csGW9()|O$_hQ)3`D}4e?R}Au9}r1m+)t(HV`=(A@RJxmrN@LH
zjN$VbcK0d6?)JpCI9?O|M+UhLiNcqH=k6Bv#Ng#t@&xg8h*0Nt$Ka1alj>&a=-J{h
zr5X@qHDNi(nG26_2V?k-0V4{Q;MXz4#1&hMWyEFj36Fgf!?&W4nAP_&9AUV|aDqv1
zkc&$@8p97U{K!1h!F^0L*|C;*`#58M_28cbIfq}kQ(GLTVmKYcN$z-!aug=ao{8Zs
z(?|z5ZBp_p12Tro16|*@%A$~Jf5h-76HDCwI;Qi?NX)%)l#1i87%s-}ZwwD(xWq0o
z{2jv`Iwa8P3UhA^H)6QT1Q_Uajq$U`RiJNX=ML_hOxk@jZ;PZ_X7(-S#?0)L%<Ru+
zb*Ii<X}uT2KQa8Fl%!;GdiH%$eh|aL^z0?Wy3t^nyCofQ6o})|xNZ58Qu2{FhIMck
zi=$v1h2kh2$CJam6_M8a8QC50cPtu5%gk)*OzGfmJiHs{@K_v=$5A{Ec0ZnxO|vO+
zEb8EH|7o8RaS*9fn$|8jQ{yNbN0~U@;&=acuYY?&iE?q2kE3cF)#9iSN7~@7pEc=T
zF^(U;$?h_yd!;xwc5u%;-Li5V51iRm;u!i_r`LuyLmbuPaK=HM8gV=k$5U~9)WN+c
zl-;Rh`jc_gjH6Z@?8s6lj@rU&M>?@uHz{vmW!IBl6tb@()>O_R4p$tTdUvlMM}s&X
z8QqPeggdy2Cp)-H59-=5jz)1bj-yE&-Q(yHM|vC?akPn}Z5)|#G>s!Wj#hDG#nFsv
zgIq1+_JM8A<qvYTh}$8=D&r(^Fd5#hMIjOV{PHfg=ETu1jt+5jl&1F5D=&`RIC#F;
z_h7Cacn?#mbc&;M99_jYJ9dfV;1)-r1O1PjvxBo+96S!J`p=c?8Aq=;+}z?gddJZx
zj)8FuilcAbK2`%{psSvO{o?2^oZWZls_f3Q(B-?7!Suh#hX~Rj&2lnSV;TPcXu1yY
zD5~!pNdOTNYUmuAsK8`b5wbA}gqn~_NFbpPy@`k*ARtA0l_p5<y>~>a2q<M|cV}jI
zXLgn*MJd8h6cB0uvyXqi?|tVx@4ox)yYIgH-tNxs&N$K2iC&`VQDl|g%&X^x`-m!?
zqypo>sr7eafD`jwSm44yCq8A|6tqw<$cfLK(45en7)-|sOCz~bPJHgf-)+K&IPrxO
zL!B7r#Fz9x-`-_qo-IeBgoM@MPK@Bf<w%cH<)}1yloO+!*yzM2C&oDOwG(rlnCHY;
zC&oE3&57wwjCW#!6I0l$LCJ5JBx!QzG<lLB69qO;lg~NhCo@E8@=j;`R40fmtj=&^
zrW13V_*MvK(Kn&P*4aXGx0vKECe2Qh*SyG|H9cXz6AQS4PONl-O$(h^%ynU!iRvQ8
zKTW2b*f7zt#EGR&EaQ~5PK%34=R^}*mkVV|RylD)2-i8W+KI4qd5sfmMJv0raA@kU
zcVdGOR!I*T-|WN|Cr&%@Glz3xn-d3|IOxQ7Cw4fo&x!pZ&#}viJ=_<}+jN<BcGJ~j
z5;^f@QW))I3u`1C^o>i0oH)!Q!inQzxF4K2;>3>yt<+@4qoS$fjXYLQ2!7IuQ%(#N
zmMQ#J>+}=jsdf7GKtAz|6K9>c=)@(iQ92g_zc}%$6NA#*40(}%-iZss2m{W(TtO}t
ziPH&1$X!C25-taE9p~bN#|c$buZmtL(`7G@8Yf;eh6?;n7*5=B;<gjPbooiTY&sEe
z!eW(Knjv3zqI8CQ*@-JoT;<U{KK#=jwrkAc9yS(M>t)Dq_-|YwCvGxxGUQeWwdS<9
z|L(*ePW<D<V<+y2UUzx;3u2VF-RJq~#9sy09tiSK;P4Fj<+}L)IT5`+{*(6hcgKf6
z;vv)C{x@4sIY<^}$WNSj&Lo_f^Hku!PCRqsKfx)yogr_}kblXLUvPG`=EN&e$XTfH
zmV!bGswv>#?86mAD0oLfaRuKzw-r`UM3Buz?e-ToN{Wi=+X{*)=>6Q*>TNr*gn~!~
z<rP#=5GCY~eh4e8prnFQqFP#D83ivhWa{^RVI$ty7FSL|w1Ue;?G-YG{JE{7f+`BC
zDtKJfUP(b^L8#2pGhW*2Wy&d;a?eb;x`G-CViedE)KpMQ!Fvkcf8*PUFzVM9BfcxJ
zjzIg{_74=)Rgk$gZu5cgc?ZJl@wNh@iQaN*>?J7}pD8cAm1kG*p@LWi4h0`6SduAI
z;bR326s-F#Vd9oJDzh|Ha4=JDB(P&qdz^w#6f{=QM8Vc=aq$Wg70liqmmsRtr;rnI
zWy(nke!Z2~Q~`T&xHs0Ci7I(Z1+5gUQm|S<vVs%^OBF0r&{{#Ng8m8yC`eO~uAq~G
z&I&RV{GKVdRglBkDJboXf0Zd`DQF`&tJ#9gZQUkU!3LYHqk>~LTRXwqE67u@^JsLw
zf(}AbAxpN;&$&83f|^t#E*%olML`b*Jr!*Jrb|}^-2@?*6?7Lov$Bm<VlVno+16KJ
zZ-y~V>LYN%$#Ba132x7l?<Cs?Dj25VO9h|uB|yPv3f>J!gU!01zaaukH?<GpDs-s#
zg@U1sMwZ+!OXgL$^VgdUS1>}sEJj$tNCjVU^%YE1F#1nhyYRSCT-=f|qZN!%@U;^9
zChk~?7)nUSDj3Iw7Q#o{qbQl6;FY%&$t33g-FlOmOF1_0gCZPg3f*fL{y4`rRS2gE
zoGx&Nz?llBwGXHM90lJhSUWI+-zv^kFi*ik1>e!7EZOF-H($X51#3pc9<b_dYm!rD
zc)djm7BjUJ^sOGY=xV+DL+X7`gI22zS#rkNdSeII8#%PzawYVUmN98t!%nh7R96c8
z=t}My4#$n)LQNOeDOj)Is)B1=L<Jia99Hmyf=yf<1^boI=kzViLj}7O?55@b+cpI|
z1ldl_EcxAi3H%VWQ%KnQ9j^k3Ui${x_X-7C*vC{KVEc7K3a=d<5Ums*6y%VCri((K
ziH<1vQNb_Fa0N%1X`=Ovz~c%|74$lx;G~!c=fw}FKPfoPP)|*%{!b+FXYzjWB)lYb
zR>8S~UL57Tf(r_KJhT;DRB%awTY*P`Q-Pvj#=I04C1vBzi?0PQWQDFvwEZ_yEwG@8
zL2E`kbZ(-)@!kR-Ze+<ufzD+Grh<U*XTXz4OUQ!?4)wFW5C*RZNr|VSFCwoi_)WoE
zE);U%hJu?4{#5XQ8*^OBEd_rlxTD}Ucc_A9{cUM8!+0Iw<)g^E3Vx0(OP%`)?(tMv
z-tdDtDMU)jw2>bw_@9CoJTMjfrQi{dK?P5g(6xoX75pPe@BX0=oBVuAe5&AI1<w@x
zC#J(oC>)D&eo%cbB=y?J<PmElXyKKD*TMq%sqCu6FjvU(o+V-7E=0Hx?Lv7M3cFCm
zg-92oT%d17T`1<lJFd{Y-WK@h^pxVR(8t~quF%wWL^~J_+UYqVrKAg`gw1j;ly;$v
z3q9j)WnHLT;F!e~nUUg|p0aOA7&}&Qp`r^_Tzps|D!Gu<M(#a3rLqgW=vRGz0t3Ra
zs<|+EW(ow7@Cr$F!P~cy8Mj(4)OKN%E3{wUb)k+6*)Fto;XN1Lcj03f8gdpc)OCe6
z!iNIuxe()mP4N0INP<j#6k1ce;3R$9$V~Wt>$5*9kTh`N@4q9N|BYOsP1MYV<}Sp#
z;BX<%g-={)>_QW|L46mz>%*y&C^VPF*~nSe%}XIB31L%#vz|m!^4pTI7GjjvE~GMg
zF0>NUNoH6|mQ4|yY8?7tye-XzbQiLOJ}*jSxR5DKUHUeR5t!0O<^{kuqV>v>Fis@L
zg<KbUxzO8%b}qDcp@(SAb0Ob_PFzq??chR3K~6`8t^~4h19lM-@@_74E#StJNLldi
z0(qH*3Ks|3d%8d$j*m*|<3e8-zHnivQ0T|^{4RXz0{!nVBm-RFRmA0OWa<xc;WHup
zUlT`{Q7MB3r@_w!86uDe(J&XjbYX<3@(K^njp2f0Q+8<93sXkA@Rb;1ZyT8>*k~8V
zxbU?LV_lfVY-t&Oe@@Cc7bdvyjp#Vu1xonCfQc?la$%|vPNwpjh$({8?8C(^zZjj;
z|LwAu{*Ii+2+T{F?!pW~=;2HkcyW)y*+PGgz;9icD~wQKo{+Ri3hj=CE_~<0FCP5r
z!6FwHyHLZ8nr?jW!V+eSiywZm)P-d({OrOR=D!OoT-fKreiv4{u!?D%UT(7st6f;*
z!Uh*My0F%TL8a`q{wuPcuL3Sy<ldPdON>8Pk)NbkHt}34Yro${?lUcqRo*as3%B{*
zdRtxCCdhVyI|S|&xJ%$}fqMi}e=mJF6h@Li*M7i-LoOVq{~u-@bn!XAWhwl@g(EJU
za^WWzex$1h<Bz#;+=Ziphc&mw|CN5ig_ABITh^~j>s#8(?spW)mM5K-9_)`lP35aO
z6D~=G&Witkxp2-E`kK}03O$98*A0Gg;a3;<gPil6CS#IZ`u)V%3tWiEqAZkO;_5F5
zCsAB*2~D>P8uw<l>=9KqsV;Q0V*l5$q%P#ikk&;@eisZE{&L}w3nhBnOc$=Z@S6((
z7c6#k;dxKn6&Kbo4gFj2GLO4E_3l?}eU%$9TfW9Ming(dKkK^T!c7-$yYRaUeAVus
zEmQv%-R1)pKTG(7Irh5A0~a2;aL0waJUaF}?$M3>g!?>yTH0A<`BTUTT}xB%)O&Yh
zWcQrp|G7dx348In_3VFbf72NkUbsO1kHE(Qp9p*^@Lw062|}I!m|9&ENnUcB7nb<+
z$x?2-a)o{z{#rN|<_@_R^3aV!ZiKrLQ6PE8jlzN#5m;2<+Xbz~+?bFZdO99UaUm?>
zMx-E71v(`K`951N?M4|l%DPd`jfx!Nzk0=n#6`P7tl&m@LC71w6?d<8J_&y_P|1zT
z?$GZ{s<=aUgQ+U8nm`Dou(}|7vgKNC)OMq{8-3h(*Nr-Ev~nZajrZJm-;Jii&IfMP
zb)$hBAG`S!xljb`Ze0DYVSP6wcj!h^F>dhpB)szjxlKr>t&lceP5#i0k63bSEN8Rj
zhHf-+BhJkq-60|}bVGQSSU1kxuiy{^@&5VoZX~#o=tg6ADC{#1gg<W=DosQ+N#Olr
zF>LBvs13Vcd)L;?jplB&aEI3VR<_JXaJFQutk4rVQ`~6nMte8%IE5rB)r~f8WV?~(
zM!FjrLYO5mQy_Jo^ob_!S`pUPjT|@Hxv_LbSgq#L`>n!i=h|}Jh)tGAUQM>GY9Zyj
z(ZLPbjqYxAbc1SL1d?=eqqE@MMu)T7)s1e<pH>o)RT7TU!;P3$VLjcLDu&p!IJ+0a
zH8G-MOR29L{kRYwq<GNZ9r`%1-Hjb?3}ATO_|%O-ZY<&fSlRZO8-v}L?8X!~K6hh?
z8>8G9Et<Y?W27Kd8|ua|H@@U5Z_Z<NxR8%<<9XFIR$pezUlnN1uVNchz$d!#wcukJ
z(zfzAH^$S$wlcf0OmO3y0?jGIlPQ_RS$`EGQ{9;6#%wp{2!-ix%oJqC8*9hnsWYpf
zZ{=PcSp8O1=L?+c#=L^o&d1^xxUtZU>)xpE+*p-Tj>;^#ZRN$(abt<lT<gX<E|%cS
z+*t0$3O9zgmDdQ#N`dUP%8k_pd|aV6^>d{+*4DeRMaVY@+$eC9z|8_fYGUGBMRl7S
zn<kZ{aHku)xGCKD%Z=S`>~Z5aH>zhzdzsSANjEe%_PcSwjpJ^d5D9$HjiYY7%(Wj9
znupyu(pLU~D5^bjq#p|i?XVmZRimv;e$tJfxn+dpl)#_dIL)w}2zx3N&bo2VjY}M8
zs_hpy@*Brq<ZES@I97iZ!t(+zh`toE(5zEb712bA%MG{S9)Z3EAvN6%uN#&dL80t(
z!w|$TkVY!Ex0`}Ds%#6mk&+W~o=<kT%;Q4Lm;8zwkBZxi<;d5B=5=@I2^tIqm2bFl
z(~Vnh+!jsu-1yzi2bzP&!iZperC>bC9XIZ}5mm!M%ex!L&b%B=a$o5G>Ba*$9tvK3
zcmkC}&*pIBZ#O>hgg#vV<HlnS=fPVZ?9Y^*xbcEZlPNtFNb;{B&)j?{t?fU-p9{_=
zmX|{E%8l3DHG;2PmsiMxa1UyFP|Je|4+?uw!Gnszei09fdr-oIq8_|094IE_b#r7|
zd&h$zJzJ7QdJrY#<vl3rK`9SPdr(G5(sJYz?K->}y{re5v!!Sc%84clD>ZgJOpSfh
z+E>`D<oSQcDtl1HgQ{ZC>O#Mo;PAlJFM(Y+!5Ttd=lAqC7HWG?M@Zfk__T_R^7jOP
zUmycWNnH=>c~D<ii}xVG14%d*<AKcsyO1~Zppge3dhn444TNNSj>PUPAA8X6k93k)
zA&(R25J=%0wNFHK?%e!D4;qW1TYAvM6Izs}qA96Be|nDGOoXwy2Q7pGjqqtBTe3nE
zY~=yxyCz3&?Fqe<j1!pZL7E5Y9%RrHAz@Rd2c13W;z5=NZG<q}gFHdndXOVXxg`m?
z1^Vqg_^F80-h-h-BiKFP6S`j7L9})((COp>uh+4)tB}YZbQh!>1C=9{FBW=-*+WQp
ziL9p}y#)65ppPJY?dvN@<fl<o?(e|>4+eVhsRtuG80o<v4?gqY3!yVuAk{wi;7(EL
z=)|a_`T0YH@L-NSRFGi>I$wG)T<{rd?CkQD2ctywYk{LZ7*n9B<j8;I$kZ7tBpYrP
zp)=z>nBc)T9!&J$C^M~{G>JLj!Fmricre9-sUCdq!4eOqc`)6BxgN~(V9ya-<xHv3
z%h(wn%=BOuljLRWY!AK_WR3@0U&PWBh5P155UD)h!-p`2ku30Fp$8;X_)ZY=MS?6A
z4zRjZkkta0d9YlN6(0Qc*tW`pm7>b-H1+MaFcOwE9;_{puk+wmIXi_LJ=o;IZaVD2
zW)HRqg`EQFBo(#_+$M0l2Rj6bK4N=gbC;+V$(8pCLg5b{>=S&y2L}Y9O9zExY&|3-
zhXuZw%MlNPM(mG5virNpV;&s$;DiS!J)pvAAwR_o6oeM&0H=R^e#Fm0a>j$Rf}G<l
zzKeY0)vAo}^B!E_hE<WM;-UwaJg_*B2TrDa)7W)WOA|Lg&QW+o2nnlhK|CI)f@lSD
z-2-m{_j%wi;D#Wk2Y~`fja>P%2UmDvsE|}#_23%MLltkUxbDGk9z65lKM!traFYS?
z;1O5BgWDe5^WeS*zkBcpHy3wnu8rl62M<q#zu`aLYyAD*=r{aN4<4|I8{~S_Uqj>n
zC-leljJj~L!K{_3jT*N7+k<~RSg<4VDTnyj;h9jH9Un8hgyxqeJHN5>uLs$A;R}Yv
zKlk7TUnW!(QbR+(WX5)ncqNp3bdPu~h$B}HQ$ajm&#`}Ke7K6jD*6w$r%xyyp+fIf
ziXDrnnD}E{zr4_O&SEOwQBhe%6&1x*lu%JdMOo1$Qbm-Cl47jJ-6Kk=`1s5C(xO_X
zdj#$D=@~^k<y1tgsH9?*5SCXF`%&A9Lal;|I`tiIW-)GGMC7pef%P3#Ra8?^OGRxJ
zQ1RK$NGjA&(Ry5Xb<wN4uv1eFMU@`DD}?W<c%RnPP@o1p2zB{DMO_v3L@TQd?6P`}
ztv#b2i?xVRVN<d6Gkcs0yNVB0OnG8!sD?goex!!}qT4$+^kJs~C#C-XC#H;Cxsi(L
zi(AI3_+L+lL&bl*V*JFmBi=qFSN=pryf8RBSEkv<Dw?S1tD>KZBo%`SNzGI=S23h)
zbW;`2a&2AC)Ni4prHX77ZB?{Vk*wlGu6$^0UJ56xhQ2z_P?4(QZbJQSxpKM+-l{ZB
zp!ZQdO1^xal&K<14Sj;hnIG3iMO^ckH9M1tIVy5hbXCz!%&47;E}UbU)LuoNihMP6
zCwZ34oU+6YqS{elCxM+Aw0A;}=cp52|5%m!vWo61def_9TMrfUKeF{y(Mv_KnepTU
zCMJ)2oIG?@T)pIMD)dpI<;o=eRSckStg0BO;!`Goiq#AS*Hpz+71LA<R`I!t;VMR`
zydPcC5EU(2+lHz5LdB8!;X_s411E`pjj57m`;y^pU}JS@Ui3(zHeTRY0@-VnAfxHO
zAYT{A$Ep~oV#T+y)X6WOK0(O85jaucB!QC!?kSf(Ma5fFBd9!G#S9hSsaT|9rixkI
z6gBeZtC%e`uYS~Ko{BjtzE#mP%QlzWB-?f`S0-oQJ1F;tED*{Ih4X{XCM{O+y^7bl
z@(LA8Xt_#S=hLZ61vxq)bD4_eD$37_&B?ZX-PRVLX<I3}7ao<txvx>NR>hAhj)rmr
z>s9Plu}8%Q6&qD-6PlY;Y*w*V@KT)<ws5PqlZ#Bw*;PG{Ugi42ewkw5uJVDc*r~$G
zu<cUuym;wKBke~v#j&j06vqhfRdGngVHNvS>{oF>MUih~Cp1kuD9Epq?e*KqE!xSQ
z+sQwuSeRxT(oQ}?Pht`#WZNQE#vK!*|E%JSisMYzb4e#uoD`am+SpF1xY8qq%0G!N
zr#X?MsqA=`nkt+s6cxX4$EmzgKQ1!O(rjPY6CT%Vb6y2;N;~=f<@}#3q%UhHU!tGw
zWVM~_Qo-taF*~;kkBU3(<U;L3rBZuYSK;L}RlHE)Q{m@^QgKg(p~6)0n~EDM0*nS7
z<5AB&_=&yL%<Q0w%PJbRm)G4+XYfg`srV<`c3s7jjd2VneIO~ZDUPdoQ$?rY_B$$W
zskp7;cjoh~*gsU1u9RN?bSn9t@fn=suj#go_VRrdf2#P4CzXoR%R|{he8AI8#Rnto
zLr$mukGa&wM*cTP6v2GPx${Wunes%%Q;|!Y+J(tE|ElQIUY;m8E&r$T5{>OZmE=|J
z<(Dd6F_$z{(C}JCn1(iq_L3Uj(ojf4Q4Mcv2-i^E-lnjIA{rtDzmjF!-(F^-hNfIG
zy?)cAVjAAj5UC+b3+>I~8nUu%o=tHjM3s`6o8qX<psjeA@czu$QW{EYC?i_SYAC1S
zzO4;Yi#olYmF%Bwi`Kw6+$@(~Q9~sTs-cGPt+EEWLV7g~RYaBER@G4VXe!C{sdi}i
z?`bl3aZO>lwuW~#oZjN7C9K^@w_R#4*P*_KnIC7rr{R6_^6A_}A84VNu#^~`(Y{C0
zZ|!ACLyU&?7B*P0X|QY9?86oxKGg7$2AdalFB)k0SVL_c@9Jo%p^=828g^-j)!@*u
zM8i@IaT-3+kgcJuhIkDL8jdZD%+!#mp|OS(4Xrga(U3%kHMG>wR6{cjX~m`H8vboB
zyQ@lH9t>x7(7+hJ&{VA`wbGER!KmKt`sXnpR+1u1Nm1>?Q#GtzR+4HN?90)sNa+F_
zR*=d>N@edvvxy~(K@-M14~?mHEICI*u7<BPjMC6fLwgMaGz`>`ry*ZMH-=h62ZruW
zy)GKMYUrq;lZKzZiQQd7>MZ1=rk7-^ZEMM;6{P1Sq!B}7x@#CxOX{himxdl1YVD4D
z79~;ATSLa^gnrDTT2dduS?w#xsUsQvNoutDVMoH(2Qog@Fi68t4Z}2ireQD*GF9?q
zPh}~gRH@H3+}oK@sjBo_l=KA`B2Q*1yD{ra4Z}5z)KIdtG`yrVLc?XPeY;%=X?ZfM
zw|6J(sU(foFh;|44Kp-+tzoQ&Ng5_=7^h)86F|c^8uSIRFVY=T&m>1Q3zKhT+>Vsg
zy)7q-NmZ>Zt*;?X(J)oRG<H9f!MV>L6f?xzzIUF?>Ce<KOT#=3^EJ$77>~!*-j(pJ
zhFd-Db2MDKopC8PX)g1*x->B_^tOR3vOvRk8Ww3dQ&Cz-vs1c|EY|S72Cm(*JefL6
z_9QT{)mYWAoOZg0w{2|WwZRn{)^Oc5tkked!)m7A;n0V&BPSf|2bUsW$K;$@f2BW9
zZ5R4u&Uy_SG?bm3z_L-0O#(M-*doZ*g4S&swioan+}cHB*=4teJsJ*bIHX~(hJ70T
z=n={HHW!!0?bmQXL)ZZO!8}>XlWV@0bURNztl<X@C3HmUIHKW4W)3%_h7|`Aj%qlm
z;S?3d#2(XdT#yqQHs!{R|1p8We>T~Ec7^fn(B@AgtcaMOH5Auz_g&i=4QDl+)9?$s
zbc)pn$NkE=^CG_nr-t)_Ul4dv;ODhNS4tInd#9dH1OIWeCd%ew+@fr5fgXXXK#i*}
zh*w}jeTiy*?lldjh5+}YhG!Zq4M8R$kE~FR;R@GR!)*;$HC)qhL&HrC*SW3UZZf5}
zW2IU5Hzr$g2i+j@a|iEe#CL<Ejy3q50n~6u!(ARVlWdRAHrNxaJHAN#t)}rOa&7z;
zqkehYpBf%$c%<QP4G%T^k8Ay1*k4TJ5z>k6wsk#hcU#8)SKYRS4+_!nSi=(yPwC8^
zdd6Gzc$V_Q{ukHl^4%{VjLWxw|7m#6Gn{|v((yvWOP=#O3h5}ayuvG<|6D;m^rc4s
z3+aa4*0O=^UQ^qh^akNNB6Jj{nvV8GKjB;7vl$Ke*zUt$#?;$lJ5oBG23g*w+TD7^
z1iqu=P2^Yf4(F=z`;I6bRdrO;QBp@K9i?@Y5t<bRmeo;CN3@PUGsF0GQhA;Ki4J@H
zyf6(`&{4U&jeODP^=6HeDzU1Agry4AMuZ4-RM$~cM=c%0KeE*j_;^aW7kP5&e0gnF
zEW`U=e(0anb@cy#m%dlWdph3N@qv!IItJ?aR7X7>^>w7^Xstui5u+nsM}iKU4!e#9
zIzHC%p^jFkl0VWB7a9Kdo|f^eBSx$%IjyqPP)8#j4$8$4u{xF(m)x#YZu8dpa-g*%
zzn1igjs?xaD7jZbO4QL<M{^x5bf~A=H_?%#qp6O+>quiuNNeww3}2JlOh@m0d1Q7H
zv89gj`La}6YNg}rYSPmD(8-X@kXDdBEhDAsNYl|tM`s=BIx=+R=*ZQPspE$mW!vb;
z){&)$4k8|pJgZAI3kzz={r4uc)v^Cw>6Aad9T!(ezK#xh=m6&#$U{C)$GWQ0(^3)-
zL%O~EkBp8wdLC>^(nUvC#-ASQ=%(Y3<;k*+?mG76%bvPY52`Vk8?$(v9%$}x<;%22
z?4zTvj>iwO`s;XAJK4T7lb-YwqtHI(19U8oiz6AN<1-!e88ID$nNFOwj<NJj#}_(A
z>i9~>P#w4P<>8!racP*28a1R|lXAbLS_z3^;i8PtF{!##x3)Bj3*E)>ea+-CI!5c5
zSymbwC4I0VxlC<oZDna3W6Pw{F<Zw39pC7ftYeCfi5%ii-0OUKk|3KtjUi|7r|Oud
zV+QSrv66NqRO%p4Cy$aysBo=?gT>`bo}=UY5>oZ;3E%1%H@oU*+Y`v=>X@hF*n5&v
zLAp>|TBzeY9jkS$(Xoir*RfIz_q~oKI+p2J&Rn9~O~V>?kkdPaUN}mg%;1aK^|g+D
zkXGm@x+8&nm5!*j$!uM*KY1-fs$-ju?K;-$*q~#Rj?Kc`n+r-UUYxv<11(OT^SH?t
z9nNZ@_Xb-<-o{<dAm@zQH4WRLW0#KIItEpjc8b=*)g-3P9vwe6bLcgsjwM66x{oQO
z<A9EXI-ctISH~e8hjn;$_?Uh?{B``o?(C)GsE(g>oaXkgEgjQwT*nC=b54ZZUU)9!
z*Cok(hjUWLDQ>{hp*8w!Yr@Zb1zA&)FTQ8FPdmtG1hR?y;vC<1iGZBfaY2Vmhg(ON
zZ!#}(QaTi_V+Z*X=l*F7Np_i#w?h}UOv`kTctkWb?mj_QcaSM$(RJM0mO$dyVd%J_
z<E9Q%M?lAQp=s#|>bRogs*cNS+LG|VnYtWOR%BaphUgmOuq&=lC28`uP?d@I8#_ix
zB^ujrF=KVy*YT&0-??j;*sCM%a)HW7KXj1qFoy$S^p?@M$Ix|<S(L^02Ra_|WYF=C
zj{ni&4)R}&<b}}NkL6oKu0G<#U8$5j7I`x4N5>PfUQ4P;TwJO>)A1j}=tY#55A?wc
z9{XN|d-0N+@$c-{I>NkoMTJt*d!?jum83J%OWx}szvV^7-3(?aQzF8P!d|@N4ehle
zUKI6$EAlqq10Tq^wlH$5KY2<!$M0)Xi+Mvv*i_t$5?-A7JfcWPx$*vt^W~+IUX=2p
z3OjmH+KVz?RPdsr7iGOD=S9tqa(OS9QPEzkjY{YKrQ7@>{^7uw2GylXUeK|`j&fyo
zzu@Q<6?)&R{E<=33$V$H_r0j@MGY@%c~RTTKhb2=^oHI+G3-?CRY!W!!tt&bc^&0C
zUaZ`m%wvIXty%rRi@IJ&Uhuv2)1et(bd>9PQJ)jv5w~YuDkn>f@!~<v(1_=D#(n6;
zM=U-xVDaK(FQ$1h-3#8Tx1kqb(T7d8Mqb2v;qW5Pi%-26<i#gm#Csuo(cOy#FA{0r
zi%c&Xd(p&;=3cb$!sB)%d7+HXY9@G7h9$oZg?+R#6t?uDl@}>qwDuy|izm6c4d=%W
zKJ3Ul?AX>hFO}=!#iTBI>0Zq0l;`*(oh6tON3Y5h@0{gD8!z&`=-@@R7j3<0=S6!j
zau}ldvDD0^w|}IErZ7LYSblDv7r95$X_m%GzU?S?^rDj&U1_9v)6PPf`dtKBni@wx
zo0m=RR$y)M<n$h1^z@>)7k#|w#aXAt73-Qu<1FNT8H6M0ECamg$JTe6)_$1XUs&Ue
z==MM^;=}Aw9>-^13>LAqN3{9eiy>YN^WsYu*xGey`-K-ny;#&dX+uZ(Xh)gC;a-r8
z6bd7}IM*RBt$EU1)j?&dacM@01sW}IjKHr2jukjg;CO)(y!b{C_L?ZjB!QC!P7yd&
zpxRNM;l)fZ>iF=U53{_O?Zt7r?Zq4~zV%|jFJZgAn9IaF6t>)p6<*Bq;@*+e`CcsW
zhTb(bw1+R`(j)Zu^Y1t#AzUnwlJC7(BKXn*$udD2pD(h~i{OIzRbH(2;#NmFKDx{r
zZXYi;c|*T$UB@lfI4rht*vE~-*3-jR^*1mfU)A5pylos-wQ(5vW}!*tEnaLDe4D`S
z1@awU>@48B1i3jjf-%|S1>bq@6}V5}et`$PI4H;=frkbDAn=I59|a!u;+P<>xbZv5
zG<DL8Q(nB~Lm?l2^5V1?VZKmse&#Xa#S0!*UYzBc@&w~qWOw}H#jiBdE8>|K=ecLg
z+bC?=NxmTXMK3N1;`HK*7grfxFI--@xw*VBy$E=rdZBsY^};7KbuUgH4yO^C8udDh
z==Z|l5^rt4esD`xQ+9=r#bVe+7miK^N-pzEOUos>=H*xUxaY-vFMjjlh8K5)!c8ua
z7r%S)hp65b$l=B>?8IIqL|P-cE1Fo{_EXtEdGdJimluz`xLv92Lofa(T1#YvJ{`R2
z^|u%Q@Idh5X@N~PJ@%qrC;5%ezXkHf-y~D=pJ=+dC!f>d5P!`|pzx=xvadu`Y4f!g
zE%#@S_GdBp<%<@rRHIzD50O4ZaXEabUZ_K1ABy-;)Q7iyyjOg72_GhoOe*HXJ3bWm
zA!%Ahlq0umC;8yWq=~NVR+q95v`spnnEUUth9!L{?L!$K$V>T9s%rX@_}H>Ol=GpA
z4^@58`?ccdi)GJj(Z0|%_VNNN2&^culEBIWb!S+$PaM@~b55(F83~|oKGYCRwFK4_
zNIT9kk;K|QyelNn91d3B_u&H{VtlaqaA835V^yl_Lp>kr`;Z!w#OfEFWD-eK`!vk8
z^Wu+>7eytv)GhL5;{(S-JbhB^$38S<9DK<0fxlpHM71=jmEf@g9RlNg_(YI+jyoYC
z!G}a2rgoAW`%vjs$6nQ9*L9McFnT_aurw8<nGekiBrODK$%PQg$-dCF?i3$d(?h}A
z`S9OPTbd8)zR-p741v6yo9PQ(l*<x2?9#@E>;m4_haAyLd9DziZd*njm2qOKJ>Q28
zK8*HZj1L`s=;XtvOn@9)XCJ!w(94J3K6Le=n-7ORlDhlw*9!aCMpBj8nX(V}J_?Z@
zqKU0N1$i_$xsMNh>7GsM$2~qP<NI1|50z_Mc4kI@9|rg^KDzBdAEr%iGqplmgBe*{
zTiXZu@R<*TefZpmFMSy9!w?_7@L{MA!+a=dg>BH{f9NDnc&ijgDf3hG_*ofG*Cl*0
zA!>vVBgLR^$4kkp>_4}*f91m{A4v30^8HTo*FKE(VWF7OI1cT@93Q^*VS*3ea9!wz
z54&Qei9SBSN}A+Dv$pMKHjyTCzKx_Q0^=G=<kPtqI?FSBm?=n_BvtP$&w4ZQcxibf
zX|@l<K`|1qC(QMsV)s(>eVE5&=q#_UFV&frU$}v^z=zJA<qZz$J0BMLu-J$1eOT$k
zDj$~ku+uIr_hE$(OMUpNvwXb1w9JPWHi_h%Lt5BbZm~9wI;(wH<HH6YHu|uZsp7-#
z&N2sOWX`UOTkk{v7fo2mH!(OLODkHHWh+M?+)&!;!#3`P0BiwlXOjD{$B(^!>|_vp
zIL{42YZNl0eE5+Yzem_!9}f6%(1(3KUgV4mZyLAX2jZxm((OWNhkQ8f3;mkTw#(7A
zSD0^x{Rbaj)~ZTE;ZYyX_;A*TV?G@B;e-z-nGZg!ZjpG3Q{FBux+oFHZ<Ah*2|vwM
z<G3D){{%sL;v4xnAAVsBizm}s&Z4kieX#GA-uFw*w@Md%xa7l4A8z^JWO^?O(|EA>
zpzwT9B$u#HBW@o&1zcsTCp4nh2Op0JA1*T`wn=^;OwMsn$P+_I&Q8t_2#F=|(x!N}
zUJ>1|`|z94x$46;VL3fH>0M-vIVar^p%|w}&H6#2!?%6--G@v+vi$giXMzvq{ixu_
zU2Yu4(2oc|?)&hk56`%xeR$x*LmwXd@Pu}Jz;<b8gRH-~>vu|j`S3`PF7xcH{=+1k
zX=nL;tMpVjL-#2Em;7gmWzQkU*xk}|AKvnVPt1A2U9ekvDe#rR*8;=*A$gUoL}DR-
zXhmp;$Wqvkcl;>s=X0^8B7WYwN-FBd+kO-ik`{a8{VnXpqLNF{z8??eh_Ze}`9s0v
z#LEa$(vMPtl=g>Kjq&;SR*`BYiq=%6a(*yFqQ!{LJ&udNNfrI5<j2Q;H1wmgA65LQ
z<HviVdsRPb_>tTykrSyVrUQZ1{b;;0eBZCpHT|gNM{S`)wRhPuC6R=s{uyRVC?@sA
zSRV+^YF$C<32f7{q~u48A2y*w|39R|ets1z{nA;UofP+xKa}At4FoySE1U_|$d3d+
z68(r3&d@i9AaQ<tQXq-<<HjY4O^y9%;zvtATKSR0!0wZpiLsi}fo-9z+upP!W8Pc{
zTL^sEA}(3jN%7;Wy$%}rcSU$>KfZa@D%FoP(UF`bT?jM8^jU2~&;6LlW%8q~KeScz
z{pjFFj^Mch>3=&v{(O?&-j6&%$h$hFj(&9V<1;@7`_b8ta%ZG&e#m}w5xlFwtrsN9
zyZh0@k3lqhrASZVXMaBi2-3@s-hTAq>euNOw>>odzJBx*O;<aIp5K&wJe)YtkJMga
zp9=Y_l_5#u<xui`?#B>6zV?T9@fUs!^~2~DKH86AelS&7M)~ojAHzc)MzA_U$hEW5
zNI|}$w;ST$X!iQI3S&El){cdfjP+w2r?V)G*&YhJ9~0h$Q7kJZAMcPR`!U6j@3{ni
zO!Z@$Xqw~4bU|haeI9gFo+<b&fwKi}7NfA~TR-Ls{dod8srh~^5PTuGk|2u&E@nzx
z3C()<9tZL4MQN!YYy4R2$1)KC24T4%EBshlAXz2IYCoP|OQQn!>^eU-aV-{wk+1h-
zgFkedZ4^jyqi5J=KeqV!02gViAG^iS<lDFeJEiS@JatMt_$nY2DBtDBznx_gx>U4m
z@;*QI`|+WPk4zk(O~&8Aa07?@IP6DN1Jw-t;Kva^{_*3nA3yqWlpEX+zaPi^IPS+U
ze*Egk2|rHyaoUfc{W#_4)4HXf{HVDxp5*mj$H_vm7iGs8cE6XlG%We7pMT$wF6?&f
zYMpn^k9jlf6rT6vf*&3~R6j2IafvJLhvG-YF7mCmS>F}TpbpEFm#Hp4+<uIjVLw$o
zgMEpbA2i;ri|pmPKTFj)qb_nv7nwuMYH2t8F#Wj41KE#&AC@1#ar62S^y9K0BP{8f
zA6Gbfa?(}q$1XA>L-$BVG|#&3$9!RjYB&A3#nax8JAT|29Xa~%q9gU)KS@8om2sep
zOnz5Pkh7z2fBLa*OPRlzdz<1P@Hpk{I0QGc7RM29caiDgBR~FTNc%<P)XA#3Exz}o
zG;WzEe!TW0%)nDFnIF%@Zu*aj!N3Nic+j<KSo*<|>=%B#^y6x?#8*`AD)Ysf<;J7b
zw+s|AP})El1K|cD3=}s|!a!jIkDDeIHSo3|MGREzDj#W|#9qY=ykmeQy-cz#H;XUL
zA9j@^4MZ6zW#ISrNhJ-Wbd`Upl>GfyZAjSb^03Um!_vwcC}*GoO&N$bLa$2Y4RF!9
z8TZPe)u+z7_DPit430>vEQX*F@+v~Y5n-UZfffc@8mM8Qrh!HVVhz+XP@DS1phOGr
z8hGEp2L|dGc+bGH^Kq5DY3!cA)lt^~73v$11gR%bDV5yxlh8zB#Gq5Z%%qOpz=sAl
zrFK~3iTlVv17ZAQfej6eX=eZ9dMXP?bQp*;@QHzV4wsTx_^4FPl(>!w1`-+G&GAVF
z+y_fFKAhdyz_lF`OA`Z=$0t48AvHD7%s_K?>}aFrB1b6_UxnmW29gcr7|7*Znk9Da
zDyJA|Z6MV^nt|2ZQrj3v=iJq}OoKlwiaU}Nm%)&pmiW5NY8IokJw&pF^3bkwTLTBK
zr!MI#w=>Y5T@3UykY^y@Ko<jD4RjEioeeZ>8rRW4Cj;y?{95YK>(bt?GDkeuRqkd$
zHqgUBPj3Hfsoe$sZ%aH|X}Ony-Uj-J5Uon?K*`PDq~h14t6k-X%X0f07{GNj@VNno
zbf8chB>1NS8?J8inec(u{_QFc5yrou8-jF*ilbx046um`G)w&v21Xk27*Gv-Wnh$n
z%?7p@7|jJT@V$X02EH~h*1${yvkZ(gFy6pauGe;Hf`M-gOf)cwYj;lC-nnJUfVd6K
zvnCtZ+o}}#6y|d`IVCxf?_185%$R0iI<5UERW(y*u*<8Q)pbH|`DPoKV_>0y@0j+<
ziQgKSXJEd8xd!TYlUoW4BeN107#LEoT<6lsz0OJ9y2;CnmF(Newur}OKw?=;$F_yY
zQl=|&(!hEH%MIK<ES+y=UuB?VhlCXdRtiF%?Z{fqpcz=pLA%I2VK%KO%MI1@S?UJP
zdb`BqWg~a=Te%bt?<Q}elilQt|D<m<u+6|x1IG+(H?V_exPik4b{g1aV4s2g26h|R
z!yqs#@@+gDH+7SFK+zyaInhl%VBnw;IuEHsVeyuwYEKKj)&GGOTIU_%zH6Llb_<<v
z?DeC8zq*AE*y9FH7`)xLbb(vm2%Ydh8#p7#DFa1i`6mOX1tFi4lz7&_IRn3P$zHdb
zFd%MjkM_S9xM(<P$ua{q=5hLYQ9b@=+C>AG3^)xaOa@tY8*tJ8jqw~ymSvI@S)MD0
zj%&?;&Lhr5VG~{hJ_G;oa5LaHU@+7?y9}5H0tT*fpBk`)oy$xrS?16|BlISa4$$%y
zF_)iY`MQChDkih_1_L`G`#0eg6>b{1C3NUKTN})>|6$;cfrm6=;I4stV#OaAxG&WH
zG*GOgjUA6yNdBJ~j?*+NCjTXTcx2#j9>v{5bN_CRy=<A>c})_j#-X2xRd~tspId{+
z)GYfm1OFL#E<*QScliY;RWX@`#?!mY{kqGq47@fFW`eJnT&6-M-ZIg7V)ne04qPd|
z;)I)_*GInM6fsfML^%`DCf+tt%tUE3w7y#T+;>crFcE2@xCy@CzIn-xGEve*DHD7_
zWU`GpA%%)dqA8l4(p@eil*@{tnL_1FR4@S()lF11QOQIV6IIPnoJX`z8k3n=*~FnM
zSxcKG-aH&VW|wqlCy&-p>)l6bHB8i`GbZYqsAZziE~$=*_e`wrF4s2kt{~*|cRAiS
zF%#)jU`JXzdRD4uqP_{qM2v|6HL~8Tk~{3I#8GU*I3;!ye_hU^GJ75FE;lgov59|7
zJT}qLL?aX5nOI~Z)`Y`EFB82@#F_ZSM23k>6Y(YzOf)yq!bGBp#wL<DL4Rr!VgH`E
z_c)zN-^EWosZC8Z6Rn)GySv=d#G}?($tF@vT!~I@WrAu9MQamgwa_fmgppK}&#0AX
z%3mlpT}U{EEE8=^v@_A(M7D|X_lvM&jtOF06I5XLToDaUpE1cZk#C}liLNF(h!`d<
z%kFHVqZqW4Kt_WOup<M~&4et}dYI@g2<7yu-LmZDJ@GwF{Lx)zl~e0uqOXb39NI)b
z6a7tmX<|5|ZDOE_FH8(I@u`VHl;_2LZsIc&v@qC2ja^c;tD!X_S=~L1riKVtIa6wK
zB34-1Fd^Z@-KCR9n3#9J$X6m7BSjnrJ`F`_lyEOEFYap-V@*t>f{AgAiHS)jCNslL
zEa+hS#>7M(2t8!~{`k6E;=80JI)6`1JDEK+Epdv8sb=VM0eS0dIlaQtNM>+o6LUGJ
ziCGLnYU$Y~<_J@((-OZG4$$nxyiy;B$I{e%hBqy7p$Th1!~&sKw}(uHCOzb=8)=J8
zd~f1s6K6~;;npy*)x<Uv%S<dcvChPLv1%(!{(VDQZDOT~RYJl=VRAA=l&=x3YXw$m
z8n<L*)CLoqOswth*l31sbbtM4DYI$ZW={W_G`V@=7B06lM7EpQVdAifA582tvCG6k
z?u#?hZWDV<>@~5Exzt0Bypu``AMJ>zk^Ri}E%67qSgjIiIeMpq<dCR-xnEM6Brfzy
zM@$?wam<8%J?%#mQB%rYaZ1NcoM7ZL5`Qu=%5<DGamvJq%M#13-_wZCZ{?g8(d%kS
z1AEA4O`J1vnOnfbFD8DaH6Gd~ZqK%#=c1T!nYdu$q6v<8NyweT;KUws&6XX4da4l~
z>o%cs^|zIwjz{RQRijO(#PV-?qK}@BY-4a|neYqw!O>B4Aixk=k|hk1P)HAhCfJ2$
zubQ}K;*N>CJm^gP#thF-_}#<}6E}sC+oC&_Z;8=qA@_Oet@>Gic+(1pCI2DJ(#|~-
z_f39-Dg9;QPZJL~eeSQa$q!lG7QeEGJUl6JLaVG6eu<^|HtCU2{#)qq`Vuvtn0U%V
zFM#(0_}9cU9>@Vi1@NDV=O!WoC>+2GI#WLRrHNNOz@w4_7o^uFYM-%%1@Kk?2b(9d
zl@~hpK20qYz~LS;NqB&Nk_}1rziL$^fMNl>6F|hK_@V*4EeIEy)#3rfZ0yRySEUjK
zoEP*;22d)13IS9MVBG%r(g9S8PA(IG(nEewCb?_?<pPKffFJhn^pGQZ$|U7Qb&w)e
z3ZQZTRRgFN;LS`V=Uzt@LEh^r@7?A=0M!G$Q4Hz?_yv0CU0lroY6bA#&iDuKWewi#
zs2u?RR8GP&?UeNVm{c_)ji0ZRddeRJP&W{IYa|8ueUMZyfck;ZOUW`Tl~odcsP}fQ
z!d~_OJ`7-V0Am99C=j}*#23Vdwg!TK96-YW8U+v=z#t)U(31c<2GA*hPbdkXRRGBW
zBydszv=n_C3(aN}@<9w^Q<?-oObVc>AcL1hv&zyufEGeR{^rKEPy58B1kgHw>;T#d
zQ>g)D3PP9C1W6AdLy+WQ2^6wq1<*!FI`))V%@O0aqvZf{1?Sxi=t&+WQ&V_vko*8{
z%})6*yaRcM0M=!PkGq=NIe;z!^bVj8BRngmt3dYZ7JwW;cTw#jaM|NXD)bbb_W<c7
z2=9za<-P$72w-3U3;M?Q3-I59a(_Bj!8Wz0T<Me0T}nQseQ~SLQUmRuF<iXkjX;vm
zsW147o-(UL#f*jp@MQqQ1s^GJgg{R7U{Cq00M7T6M+rRhRVapE2QZe4Wx-)#Tma((
zI3B=>044<RO#o{-*#IU6Fe!lV0$3El<N&4wFg<`70Ze6fHJ7F_-=>tQ)++P|>cUN>
zi{qna1~4mt`J#1p0CSkJeWT|E@U4){6-Z@j65nklJ-ZzBRSSuHK>!N_ICdrZhgK4C
zF>^90^dIUK0esKo6xF2xEH98R6XfiQux(2tsJ1eIRROFHU=8#9r~mh-^u!2`IKO4s
z`T#ZruseV~!hwweYz|<H;G4LPEkXlr4Pcv)><oY|Z4Y3Fs3x@v<A1~Hp|5o~t?i<k
z@O*Co`vUxsf+NC{{Q(>j<bc3~0;Bsz(eh!zN$4%{M^Qa0@Z_M7!ZE?wdNP1h0sIrd
z;{bjN;B){+0A>I`2XKa`L;$V;&IWKUfC~X!4B$os+b;q9)>HnKjwK|WXqP)WE$%#b
zL}E6ZUiXwQ1>g*TzbJTeIQ{eDP5JYH(`j+;06YPB1MqRb2cQL@Gjm{D(KWA#*Rj&&
zxSXEdIyLT9r#zMt$HM$#ApSJsQ@0}!fEB>)0Dcc37{FzY&Q{U=N&r`RA_--jPKxd&
z->>^I%XLP3Xg0}BI^R60k+)3Ey2-ah7Y_PiFZquE?ga24fQJFx4d5Opej)BYdFwcO
zyY`3pKR;=ksXP7*fIq8X)Bm^xo%0?A@V7AXm%t}3$F7dK9ECQc(&L^4@RUcQg&G$A
z4d7V-krtvX{1?FU0E$>BYT*Ub`)E4#3tM;@KuWLB&nI35@LCuQvqCX>OJE^^;Q}KB
zvT5|Ha7NzwZN^WT*>78T$3k%n#jMbxbnhh-7j(-jVPRC4BoeO9=w5P33#BYXTPSa#
zw1qMjny$_)XJN|UMd*213k%+K>?LP10(C#GVDUx=sBEDME$8QQP@1h|;l~r{-rT$=
zs-vofh~`Pv1Tr$@c;jUAq?#6LS&%HmSg38`U5hu-!Uq=WSlA{;dC$V#6X}dFZO;BC
zoW|=~sAr+Rh40ST3iq;AdyzKxn;e?0pP6m5V7Jh~!p9bG@EG@@g^w(BiFEMCIoDl|
zt<7UE_e*lG@5KDsc{sfx9qwgoBtqd@kQHa)6AMc%EVB@AA;H2R3!hm?w9wc>TMIcB
znpjA((Aq*OV`8D1g_agtS!hmP%cjNJTL|*votQzBl2}b<7=KA9+9Gyu^_Ub3yk*3|
z1FcT(OG>klZei%*R&6X~Fv8I>RlEtAJmR*u3H%tJWnq8$7?%EtwrrtB&5ku=b1k&9
z(3vx`(B8tPoVa`o9W3P0nF=xf9x=sNw`y@dp`*nolqGCPY}v_zYe?G9(J{oX7H^z_
zJ{I~~kS+YV&e6j{PYc~G{N5>P_~nG)KT@SmF};`x*=fBkM9ML&?pb2<dy@KD=x^a-
z_k@8K25|awY)8t*w0IOB*|sH}{M5qmNAWEGR*xBM;d2W!EzGho#KIRAzP2!yQ?M}1
z!e|TGIkqnuuKT4%SQyEU7A~K4unbITxuHbNR}4{|m{DBuj)|<EU(<@!F<hYA2@EN5
zoQ3fgCRvzlVFF3@n5DZ~ePdx_<(T(|B~N5loJ)v{j7iH&&#!BrVqvO<X%^~kNSi(;
z$yVDo-NFnD=RUG8%1A%kORjrI>QOCbwuL!NX$uRPGu(RlF|BIG%(Jj>Q2bm`eNiJM
znQ!6dU8zimn0qny?<`#HB`>mYqOQGfx5UL3zNh7hX-jD5VX1#cC)Ft$!w{W`F3X?m
zEVn|x@L3^nrNC8;{F;WVEv#XbYT4FW*ztk=Li3jEEL?dV&r+dE+(xdig}GNS?+P}v
z7kA=il(~$p+!tK&Ao7FQ&W;w|3ZhUDJ1y+8@Qa0CE$p_i$HGAihiK&M%)OioC&Jsj
zq$NG9VB2rufED^H`jcLAy|#8r4qNzvVWG9plX>5pBNmQxYTUmT!jjXES~zC$zB;n4
zxBT)zQntX87TED83#WJ}9Y`9`Tb|HcK5gM=3yT)o&Imkfg>L)6D$9<Aw#B_e&qp|K
z;ev(VxTee~3zsYeELawt78DDr1<eB0To&fFi2ZF)cHGt^H<Kzm#UqeaovYlb!?~O3
z2E$(2=C$Cnu(!AD7gb8M-m+=oac{XqA9=(?8-E+KeUl@|OykzRmVbqNykzu=rFQbG
zLUPT*bwQd`3<+;qxMksyg}*J_=I&q`_mLlR#|=sNL(KY53wM~JJg@r5+vnTw@mT01
z-xo-d*GFayAMhMYjQwt3#Nj3J|FiHHcSIkVoVe#i*grhg88<p<;faMdH5^ZQ{#$s)
z9DB#kD$9RD{#;;iWP%kLlE328v`XCAM}EyswBIo)JnnxtGQ)!S_3c=a@E{_Bs2fDR
zAPNUjB#0_OR1KnN5N`)jDu~iS6bpvJOAkv1@lKGp-;XXHM2R3GgE-MgjuNd@ASb?_
z8t&)ZE7;0VejtJW46P_g*&xaZ5-pHT<%6hDz?&`3yU|Ck6h!49`i_k?!eWWf`pDIS
zyu6QhgFrBpenYoJRS%*@kXQI)YYMEzra(3eC6nt(b%G#%z@{MH4~E|Am+LDRO$t5t
zZDnpb{uHWy5K<7$gJ=;%+q`lyL3|WMgJ38#Z9%O0-ewP?PI>!>wDVbZqw=<ogBUzK
zx!*#YBZ!8AHxd{tkWKTpbYg2<5T67=5-%`8V4^?@8wb%u@T3AsQ$d;uER$NUWe}}`
z$O@uO5S^1_lY>YLhJI+2!f2H0K+-yh+g;kF3gKIOA}C1@A|r^uRwa;U22sDSOu~{a
zbaDi?71*>?c&;F9ZO0|PklJ2U6Nd3KGdc!wB#0jwUJf0^>>%a@(ItqkL5vLIE3STC
zWVaxC2GJ`BIf(AT&|h-6Wro(1dIZt3Q0$T^wu9MHZ_Xu%{z3HNT>8o^eS>J19dc<v
z5Ca7t5yYpoAX*0rH7Zc^Gr<Q3@p(btA%c7n#LxoCupquH;KP}Fza_Ebn7%SCj0$3O
z5MzTF7sQ<hwuA?^F+uR&Twe<$8FRkn_#h?(F-=VT8&0i*Z3?$QNyo$>CIzvmuN<*C
ze{v8@3uo=_D-#FjB}@&X>6oZb?!`^#TIVIq5I9rdEP)jA!{)a^%nf2w5SxRT7sUJ^
zmat3-{a0%NtD9_#f>;=Yf0=E8OZqMdcVC&D^2LmNOWXGX|KOlOEDPeTesZOL^70_A
zebHe>5HbB^mX(663SxDEWK9rj1z#s{y}%6uHwsJ^9k&FrHHh6z=6>=vl4niY4UE{q
zR{<_oKbfWM*w~#S33mmN-K9Otq34c0LF^4;Ul99)I1t1^u6RG0GpgD?lDKtL&Y>U<
zi#h%v<P`oOs#H4~#IYd$4B|l$$9X<*zCn0`xH2p6WDpmFxWpWYww(&%ryx!T@pBMo
zcnCz>F8m);-vJ#(_5BZo-aAP7P(>JEgD9IN5kkqbOACY)Ae5mhJrGLhgeC|`?@gqG
zBA`;FcSNL%w9L-V?vyPcB7%r0zt6t!Kj-|<dFOLJbLY;R_wKv*&YL&8Gh(nV=0sk(
zc17?@Ik=oVf<Mx))<@pA7WXoS3bR+|=jOI9<*()7dJb;TX>WCIz1nvB6M6r+cov59
z?Ht^p8O0EcUe@&&4nYp?=in~eFgNyBfh2PhlhqGn9?&=|ZJr!F%)z4^<nXAe9ioQF
zN)8@>B9qq~5YH<zbyOz6Au@@U178mOIoLYOX6C>WL}z!d+l?HY-Voipd0c=AvsCF2
zdm;7)nFof*)PF2CH?7W3wZ1~~l*x*zSU~{=&vNib4&LP8-yA&8!Jj$!hu7};X>CjO
zc#(s@a`1}jt5lDdIhZs=E>X?)HywD0{954u2rW#)D+^y=_FoR(vH?TnC<Xh5$axgx
zQ}Ax_=)4N9Y)<o^PWWMn{9W<rTT~bt$=meXf(nW%D5jv068XzmVFe$4*1d>=Mqi}O
z+ZI!Gs9an@2_-U)o4b{uLP;g!@Wc8?vumZ4h(SsVWY@|mD6inUf*T4dD5$7lih`*M
zDk-R}pp$~m3f@srML|;qA1J7*pqc_nK|=-A6+ppzJa$Qs8Vc&xb<|ZNu2NI*TK|*O
zb<|c+CzmIQ?<l>ipq|hi_(c!u*JtHJ<pu&tC}9g5DQK*~Cfdm%i&o$oDld&~_u?O0
z69w-p5kH)m*<;=>B}qP1&`gO;bvi1rD~M5$punlXq40&A_WNz3+9+r)c&vgrh09!M
zp`f*pv{Vo;$gSy7yRO<><#HZK$&b^cNZKmsGgSWilAYL281w4jXt#pECA&+(bg`>F
zo0J{hZ+rd@RB*%%J{Cut-(C`xsGy62?h1M+=&B$|iG1Fxn}RKe;`o^@cDAA;E?HP3
zMIa@qf}{!LXRUfFNLMgOiM+tDm%x4s`YY(oRw-CNRPL+b(ok8ZFxhrssGKuY=H?$m
z<%f;S4^U9+eB3~RB%C`9R`9W~>L&_DD;T3hQt=Q4Llq38&nOr{*BTayf{QO>M)Gt*
znY_uLF%)JfIFgZ{BvZjy1(U?yaSFyO@Vtm&_)kzGA;wQ}WwFaAB77p<^@5G%z^75X
z9!;iSeOaDl8cnC*OV*%ZhJtJbOBF0rFjK)S1q&4{QZQSIOrPc};Ga_G2tJpZFJnFx
zI8Puq`GvC26fB?xlH%$PlllK#$D%x+D>zm$dWnKfn@cQK&}x|6XH*;|jEI*V+bvhH
zf-b$xww~rK&}gMN#X1G6lt|iVSuMyKdd{%8wF*|QO{b8}=srx|z@cHa9F%`-QBK<z
z3Suvo-pu4MFaN@~4S7l3qM%z_TgEVXn}Y4Ehb>XCL%~i3`xP8euuH*i1>bP;KdIaN
zVe%dYUn%HUz1_y4aeFx;2{w|inGh7bI+3<@n4B-%?&L5zc1s#F29v-+1>Y+8j-fY9
zW|*`6-!mw>*^Y2T^4Jg2Gl$8C6|~Kh$j#YHV~;9Wy(mAgFZI`SJg(rhf-?$E2nS<p
zPbxUY4yME{dD5A9R>3(1S9{rhQgB{@uSoPoI+#$tAh5u2`7+&@;XhoiKd#5(ue;8;
z6?=t)cq^8?!O8S|;}WiN@3okp1zw}^hs){1<(mp_G0%8V(SzFx?kISv;4cNgD7dR2
z#EvWYRlz+4$-5ir3hoQ%l-9*+3LYqUsNj);9D169HTB}?w>7TVNtE18RS>T@igE^;
zPeIFL4nJLPMckCCJ^0-OLxHKlqKVkMWwyghZN#90z3Zbhhs#7y;ddS@ctXz{E<aQ7
zn}VmTWL5O<9JTUxnwo#;=H`Oo@;CiE{h{DF6)M@Pc8U8_LAzPD7YdFKmp}d2R_t`1
zS4w1-Sj>as9{jD~HPf|%HwvOW$nU|wbb$Vy@_3Nfga2ra;qqI7Bu|IS`8<(hi;s}&
zkC2znFU@zd74V>-2OB<){;ie0kOzf5DB?j;4_c3q>6z&QPoJ+Ge?2zhz~?KM@Sr63
z&P@9_Bd(OFt*i&+r9F{9>Xz}Ky5V3MJ3=n!iNtAn4{m0~Yug-)N63{t{CF|?dC=d3
zcRZ-#L7WF4c~I4ZY93rXYLj@l2k@Yt2k&`M!-JY0)bgOV2Wt-G=UEzDvR`nQufv+%
z<yq<q`GFDg^%3&Bq8S{W`hr*^<OaD%k@MJw9yIcxu?IE}nt5RNAe!y>;6o2ztJ3Iw
z51M-LfhUqkUxjR$KR4`oKZ5*}4>RPX6?r%uEHR?X%{`HS3OH!+ko2^IZL!oS)&nAK
z+kzeJ(5Q<CT|H>YzE^U@^K^U{9F68d8^O8h7No5Q34%BUwiD<Q$oBzKt-atK1a=hI
zNnmGzi2|ucWu7$2!=Gp(Su}u6P4OVrgFYVg^&riI?jEGGgDKI9;wUguCid`v*fUqy
z%Y)t?a2Iv{r%<7`L-v3Q?~RnnXP>Arz=MGvjN@2)Fvx>_{mTsXV3-GkX>(7+W8EWV
z-cNnviQH8U;XsSc;lipTJQ(T0<vrc^`r~dd?!o^ZSY<kn@*u;5$s=W!(SnQ-m?>~9
zyWo%Et_dDwdGM(R^E{a7!6Xlsbu6Dv9S^2>uz#dHrLcXf2btw!rVAvQ=0Sr?$t2G*
zqG!;n$3(9jDbMs^mM3zRk6w{KGNq&stjIq{NalLb{?Euflm8Q$@4;stEb!pP_Bg(j
zc%cW2L>Cr&aBZZ_3u4@|=+8YcM#>}`b0W86%RE@_!9ObAs952_N)OtqNKmoLgVi4B
zRHiq2u-1d~^j;6vd9a=a^xzvtp9dQ~*x|uW4>oxsm(Ck^)3yq-*@G`=Ou@(3aeOHV
z75*J5Z}afqPiZXM>3gL+lI-%JS6r#R9(?6Ng~2^`d$7lY@}p$iD4F<u^HN`XFne$`
zJ)Cbf>{YVDeh&`ND+)9^=)uq$(R}%UbCleFl>Ds+-+A!82Zua3&5qoPJ?y~|4~~2I
zL<4L3q#UKE4U7AMj?t;yHE)Gu%)N(tbiNupd6axo?BZV9<kw9xr#zsX<cz52tOw@=
zSvg8(wO@~tFM4pvgX`>z2WK`%U-m>MBtO&I9$fL@C$V{bl-#sZ^pV@KSJ~h(`AO($
z*F4D1OyE+<O%HB)@K8kkZ4d5v@IbiY#J#p(Jh(^OR<M!ZrRVIm{VFhOX*y>P_r<QJ
z|CXPuR-n!!=7Cu@eUzNTxbVQ^f$D+R14oAJ;|PwDHO6~}Tq8p!f7m;rR<}66kdT-j
zSoAR!MO6em2zu}v+u%Wn<0Uf26X8Fc3O@E=NJ@!${X3;+$b$;Eq?La6;F$++n7Tdq
z!-MB^o~ib~J@`|QzdX2mBIbqQF9m)*)lP+1LY|Q!b1yevi(UT+tZ*{s>oa*iNA!Ol
zy!9ZDio7ZcsF;*&%cn+`r}C@lS>9e~WBw==pJqhX5V-kehD?QmDhdhB!UF$1U5>(H
zDvGOkUqw?DB~+ADQBTEtDoUv+t)ileN-9og$YoSiP;oCq<~+8nigGGy6iIn>yK{M!
zFInnL;o`T+#L6n(;Vu<5Ra8+?RYi3bXNJUA6L?`=1@g6}J7oJ~Atc-+ucc!0g#2}d
zq_&DWDngkF+{JR#N_<z1T-T^T&8Hc1eH9H<NUT3I+G%&(IvU$hjre(E6^&F3oSzmc
zeG_adqIsYSdQpkdk!3elLi|9*hbm%K#Hnbe!mgq@t7_BC^V(i-v>d~u7Nt1Y_lC)Q
zZzr*C>FAYe!;e&?RB1=gY^9=wXirNap)g($R^FPe%AeRqV8Rj`xl=_u6>C+jQ{htK
zX7f}GQqf*T2NlUYP(?=-om6yHap!TnQJ>g4tC39GMMa{D_|Y;Y#LDAipKM8EW=K-e
zO^xIbmRhT$QdRUAEvKvKr6Ns5cX2G=INC!Pq$iDED<)-7Y3799D(>z`W6iRPv7_Za
zJa1-nUyk^l&LsU*EEp~K7f3Qdkoc?i!74shF_GS);u94^m;jfjWvLjdVwj3iDl$~e
zC}tm&?ikLV&a!b1GeX5k!OOk2Q!-lEs^N|Fae|Cdk;w)KUUf#vmOUNs94s+j#RL^s
zJq7tMzk`{jiFdRL4FAb0rl^=pH&!uK#WWS!G^QhNx*A#XW%=K0nP-U286Tv~R56R~
zd|;ogVvf)xzqU5={on1^?DJI2S0nE`U9AEW+kGZ*p^B(&X$u5?Jz8F*;&T;?Ra_h`
zdq&GkRV)#ln>^hz6%;NPxI!Q|SMn;5%OkB)!OxlTEX4IHHmLYf#T6ABRcuo6y^2FB
zHmmqT#qrWn->TT6;!72~RqRo*RYkCKqirg-GlZ3P%-B0r{5@LcJ5+ZGvQr>u*XI)(
zQIom!*LBf**;%O(?@GQ>;ru@CYk~Vze4}E&iUVTvpo+$0<O*YCDzH%bI~CW9*%y>f
z;#&<5b11psui_YkMa5AS<7>p6QQIYqk&hgS+26kWN3|TsRh(d4CpJ3CAXRZz#q0iE
zP6^3rI-Bg^u5&8*Qsqk=%@+3af?p7LQJ`EgihJb}(U(>5K>*259CQ^gRs5ymXBF2}
z7%EH-++5pr6%Uz|y4h~ffaPs{#>h8S+)_buTOi3D6~736SKzM#@8#~juj0Y~<WY^N
z{7BTs3UdTeIAnsTxpJ={nn0flzaV<<-Y<X1V=?(NzEu3qVPb+(@tca3!`p?~U#|ZM
zB>Ci4dp7t9rw94$E>{{Q9fp*7CiXth)%in^=JTSS{?z_Y6)$M{E_P~;9}{_MuxL!=
zCAY6Q)-*EXMQZfn-tMQa+IfrmuZsUT5MG@0;;o82UZi@F=0#pF@_F&07tOqg@*=+%
zmAt6zMFB4gdLzlRq!)#}DC~{gvlR8Bh!^uW#cV#?nkO2NC!V~R7a!GiuoU;Agy7WN
zIYut!g=1a*(q5GD!nrw5pUrs&4Ua49ML93Zd-3`5{GEr#ouq4dQIV}06S*5A@(n`o
zc=4_m^}ML!#mATJRlTU@#gnS>568&Wy?_@ryr}6#EiY<&VSXLcaZl_YW8@N<a^p<7
zK+#Thyr}C%*GzeIrhI5|^f|5Dd)`PUZ{UR_NPU5PpupZW^zu97vG0qXHWJv_3!5O(
z0;$u4efLM^E!1r4#jwsjJ`lU6cWh+$BF2kf5~JI*vtBg!qKy}Ay@>T<f6emDnXSEu
zqfNZ1Uavw6FIsvL?~U9E@~*IzH{zcwmP9?hQ?k%KJ2_9mi*JG#Z=8jBtc!N@g7=I|
zzKLz;1+i|hz1th{?FE^U)w~W~bo8Q=7oELG@}ip;iQY&Ebn#+)rd&6@Jb72ax!LY=
zY_iy!B9OayFHgLXDR=jxhZoDeSm8xaFVekyL3)#EUi9*!w-<f9=<9_iQ+|~hnF+iu
z6(f7m&x@fng%|xfzGG#kk%3+e@S@>ZxrEz(;c>@7UJT~&@xX_X51J40;uFEo56@4@
zcUh5-tq=ENgqQy#zyvQwdNIn2F<xYPBNwR*FGdSO&JU^cD;p$9Uq&Y9W4)1y`Z$5k
zu`+p<mtXwE6rsOtjBAn?lXH1*p+F%IpXvqcq5gC)W_Xe9#Y}Hx-n+z$StN99FFy0)
z-;#yqc#$<$p6iXgN%g0+@}G)LO6Ga-UvlJbZh;pI>BC;Wz95}($NR)3W93C0qp|Yt
zvGQUee@|`4y-PXVV<WM-%!{0{a?y=ZE4`SMzwtgVzVYH_E88kBR(r9AgW|<HFLrsc
z+so&S*x<zuFOL2$ZR9AZUBB>Riy)i4*zCo?SxGG4{4160*^qm`^kORw;>Dh_4Yv#2
zRH-3($)^%=#9z`*QPqY54foKQz4*$DuW9!6`H!y3!xyIAcrX5bv+{gr1)XYQojm)6
zdmr`UI$!?a#b0CPg95)5_?^J-1s)Q3SRmDo2*U3RaP{&Bj_mukV_s-2<ByBsF!$#_
z<;7{nyM{^{&d^F;yyPKXoTHVzc;LlDFD}p%9yGW`<9l(D-h0n}N#JFHKMK4e@F#&+
z1^z7Xn!xJ<ZwS08@YJPP)^o>;e|9(e)r)(KS#M;r#Bb5wW#ANUSZ8gXf%_si^7p-X
zXIx~MxDxn?L&k6@&?w}ELhtp$?}aW>oJwC3yB@SJ|7d$!({Zxqg-=L+<QL_3cQcrp
z#3?Lx>Uh^<C6f+zYQ*~a*fAi?8>Ic;HseA;*o()^Zz9s4dhxp#zlqGidODAbg!wZs
zo_q192>d_1k&n~y`aW+~Nh-Wx3xg7GnTfBw_}h!p8p>#q9}K)^p7$b;#(xM#79LsN
z(6@8>e~jO8GKG0H<kL`CLlF(L#>r8{lQ9J~@RlUMh5{O%e$!)+Re@MYL-kWJT%aZv
z)lf`B38D7CrR<J*;)`ooH%_Jkk1Z*7l@bzemep`*oIGe~97ndC27YCOrMw^&1pZgA
zLS+r_Xh_%4OG6b6RW-zDaA=Vis#nwSt`^Cb)ippv4GsKkN;suaZR!_jRFf?!U8t58
zc^e*or9g|-(a?WMR9y`Z=S8M)^)$Svp}vL&8s66sd7Yhxh8k=dqBY!W&KGQ9^5eXX
zHRLJw0Zqqu0rAU&O*HgOi+mQa@`60vBx$PQ17X__H8j&;*RW<>{Oj2be+)`|e;|*#
zHcsx|r+jk_oi!wCh}96M;Uf(#G&~+BchJyML%bFlGB-P0vpnxBH+^nvrGeO5LmNTb
z3Zx`K5T}NAg1B<!;9EdBE|qM}jZ%EyT}KU_G_0*;<0*(U%lGJ_p{s^u4JjIugeH}X
zZY<MHaJt;UZBeNjzTq@7C@n>~G!5Np$<d8^u*+KHQ#kzoPX6&SHA@z3*jqy%4QDl+
z)6iFgtYMXg)f)QI$QowSVKfZTFi^u74VfASX&B5(Gz{l3Y4}9L5RI=i$EPLiT~@`m
z+!mkzbo!d?gfnu9+P&j`OR|m7Fj7N?hS3@-zqOZh#f{SNL+d!>ZX6Ng<(JL6O1%<q
z#K(=*FpeXoVTy)t6XM2e$kH&8r>kh2KzW`Rl1UtzQuZa?y0Ye&@$!`KI!@IvO~Z5z
zGc^2tH}1qMTls78@m9-hjp;W!eY_l3Am;AS#9r6pXKVaQb^Kg5Rl^*5NL0+X0~0gG
z%kN%}pQmA&2H!=;^%)8CHGD>=jkhn*@W<*{mW6^W((rk%WU+=Nf-e<#ub+)-%QdVJ
zl{6XCWu+jWw2Nb%YdC!La}9eLFB;Zs_(H=L4HtKJ+8~;-S;LF`F&hPLqF1koojYEx
z|5^T`rR`s8*s5VC!%f3B4clqzUGWDB#c)?EwPo+42|G00E@_{*Gd^$Ln56Mt#$1ly
zO%GfiOH+KM;cE>?X>ASr=noqIA&5g7_G>tx;UJAn^FEJDDq}ylBYxEG`0q6Qm7Yi=
zuNyCaueKbM+V!wF-N|lUkI??H(PQH6ov*}mQ~o*rn1&M?PHM;=8hxBjQoCJ7)pn;e
zoMz@{?0k|~s%6~hs2C2DcBtd8o;0eR*Kk3@Yo;vrUBe{}ss^uy%Zz;ux7ZO4S2X;j
z;kt$!8m@|t{7m=DPN1uBWUp!PN5!xl953Hw4w;j{`lt3Occ_eg-;l&R8vl}j`x+i-
zxU0eHl{mI`^sgGq_K7?FapFCicYK$Pg<?vmEgx!l#L6`&OpJwNj?GCZoZR&qUB%wj
zLnq81(_&?8PQe%wjpL}{iH6^JY7IK8)ez8N&@vli^1Zd2Oa=L3c9gbP4MqGps3D{w
z%!I(?VDD;<m-9@JR}D^NJL%*sdxs@H)$qH9=NkUh@JxfdRUD1;hlX1DVn|vr5(>n;
z(C|{jE4s9>@L!C?LNWE?<2d@=@5NM^AfM=!cv|f^{%O}Y8vbQu`S6Yp|7m#3)a^rY
zAM*H+*M|Z=6!d{-&*wvaADXm@i}K;;pW<0c4oQ4<sN=EWiG_S9>_ZV>BsxBrAa}_Z
zU1)V|zp>F*vJ;B>&|!j1Qo@IlJ}$+`<$NgRi@0kUAIkbr+J|qWV){*xQ?gRx(i5L`
zNh{DQu1Ud|@;+2xlg4!Uxn*2MA1e9KX?uJRtL4%Oa)bOaReY%G!@EAz^P!p#)qSYt
zLv0`6Lk%D3-Zg!ZQMfF|db*?QvVOMK*Wzb%DqV+-PwHCNhZ$|`#e2s+?q{=##k}W3
zeIFY6(Ab9tK6H$UFEZBE&<7qa`68o0LJ1w)=EM9tr5GJee9#J)iS{91o|u}Y?UW2I
z9P@z>ANufqu^LT_)oA8}o$Yyp8gCHegTse8PcZihn)?vz!y6O-nuzn^BOm-abR8{x
zXz9alKlb<$??Ws0-H$4MwDzHm4`2JR&xf`?B=|7IhoL?=eQ4)HPao2KaQWc&A<2hs
zKD4L7edz2%B0EB(`A{sBkoR@jmItM6Kf2@(opt>QUD&WV=fH_lS08>I=Lk-bzRPx(
znd?aQA;pI@A3U0r$_gtxZx`xL?A^`o?q=`qLk~9cAiqAA`thUm&6i!heCX{%KOg%0
z(1)hzZSU)Y?8Bz&rO8<?bWc5-DWx2D4e(*04}*R9*oQ$he!*6okGQhGOfe@op7gUH
zsqg$KkAt7S{ltgaFA`dgm4^8++=tCReBr|gA4dAH(1%4nG~6wX@*%^A(bVj3Hx8B?
zL;u+-O%}*|!%QE>3QplTLB<Q5;6s)m69rBZNS&u2+o$+2)rV<5?Cfu!<HIi#9n%G$
zA&|msA7%<ZOW<sQ6}L;=Mdi8TkWYP>C&+w(p9$pN1%eFOAbsw`Vjq_Ku)>EWKCE3Y
zE%jj;`JV|xuP5y3W@qCm{B~&Pl|CFf;#$SASm?;f8=tL9w9jfE*3hHgcdivkvQCio
zK5P(Vqrgo9$Bs{>!WJLCWK(_EMR%(1EHurw)rW09Y-ea}mv+!?vTSR6+dWr1?78K<
zzFXpJb$9!4uR#1>AISIk&}E8)r1m!VS4;(GBjg(&_WSVIhbN3O9}Y5_e7Htq`tY3(
z7ks$r!}mTM@*%KZ`oV|8?28Xoes><F9kQjPrJTgRvnBJp6e=9^;keNJH|RRy!=G91
zll0^m_bGuSrv*79@T|adKAg|p+wyI~B?c)+JRn{1;YUW+NL!CFwhfJ)JeKdN{>g`{
z;=J9W+;?&kI@NMt_u+;Q4}5s&!%ZJ<`EZvZzz{3h`L+*ts4Tem&xA5%I-fd~v~z;|
zZ5ii1W*gc5Wv1;uL$9`@%Lb|HD5={t+an)xd{BMxvJK6hiVsT{Ngg)C;UxKHwREeF
zQ=?<32|k9o56|j3$#r^lD|b|5=Q_L7V1n(}*%W9A3<#t!C`d?Pn4#UTGljqT@RSkl
zM{z%XXN3$pKcf8j!-wb0-afqLh*$}&-lYG@9P7i%zms12a68Q&yHC15()O1RuY4f+
zTOi46LH-f=M&Q2!Yc}hW$B*~6rsVZUeD%}>`Q+I+)?D{DXMR5l_)*A@!hY0Gw-29W
zD=5g@9uhZMiukckcNP`Gn-krSyV|)~!jF=ERAkFjZKoXWQht>6qnsb5{V3zdq)oB6
zHRsUMj>EI1@_vw1@MHaSNx$c!^0RerMn@$-D*Ms<WO>S$Pjd`-kWkf+YJOz+G1`yn
ze!!29{Al4v4L@qK@oaz}wfqrht|zdzA9ehw>&Lr()b4Jlyw?oJDqXssV)rbT-ZpgZ
z9%Hvnwl(mhp&yO>kl5hIuKr(1mEdmd=f4i{z8_8fi1woiPg*sqWq-T(FX#I=oO$ay
z3-_^q@c#+9>q9@9`9TF1yB{&R+~G%a!DDkJae}ahmQ4PB^zoywAFY`D{Ydnqiysd&
zY;6Q~@}sRF2?Cu0+X<wOOAxof_I`B8m3I`R-c(y>LC#lm=Gzt5)sIis$EEwxO9+$v
zNS|cuCU~+RDT1)hR6)}G=$<R-;YUxwSIv^BaBqU#o0fm#Y&NBv-rIKUS(5BWKR-TZ
z{cOWTd!J=ee?JEJG0+d!SjQkg2K({tF#B&4WNykM-3MmHZEx!w!g2Rwq#q;R#0>Le
zIEf$0)7*=9OST+m-+z<xws98mIg7lF8Rf^l4o(iun^Cqgeq{Qw$dAwc80*J4Kc@LH
z-H-8pOz<PikBJ<5T`JMT{wm$h{!a3vV3z#JhJ-18>|WrQ%ziD8ubCxRnITQ37xhXd
znc+vaAG7?J&5@cQ&GhrD;?m?1(#UDjc#m_AA9MYf@5g6;eCo$Mb}CCg(Z)%I6FCXY
z`6LVcSg|wt<zm}Hy2QfNhl8XRn#9e;ek}20wI6HzSn9_zKUT7Nek}K+>Z^oe1MD%2
z-75s==2f`rj<+YDcm6ikHY7`4%dqles~_7K8h&i>;|o8w__5KCP4v~<9X4}sdi>+x
z5*jX)2HBmB2S&&5knY>Nms~4-Nt>)J|NRKt^RsbEH`{i0VUlg9ALKg(J{e&@^KH^D
zKZ;IIC)w-ASAO)+(No9Qe(dujua0~=zVTzfABG>M9|!z6=*MY4&TusS_|A_bejN4V
zd*N4&Ea{LSOY=Jqb6mRGDIxwqtM;-V_v3^g9g91T`SE9_of4Llest<#KP5tyji0(J
znF?q9IOoT0KkoQ(-j54@T=(OK9~XJLd``FSS`+0Yx#Y)XA^B0@6@fnq<ld`({4Dsj
zTuJL5Qm0=MZZf{c*>CZ@za-?J<nFJ#;*^A6{J86f=7-OZUzsj$CfxJmKE3M$_r=i;
zUK0=Yus>jmINJH4z()de1S$eO0#$)j^Rmm9i-gDeMFVs{MxBlGFL&>ca<*LRw)_bA
z@yd_C{RsLIVm|ldxgTNre<1ydAHVtWn8sY~>XGVXCVc9LnlJu$Kc4x)tV`Zxmd(}2
zPRy6b!6^Py#PSP{;20Y>U;6Qvko-E_#-z8agY&f?PXp4we*EXhKZ3uZ^G|V<Ju9`a
zcYNzd9z8PG;sl9>gmFiV(ve?BoQ{ul6wpynM_nE7>L{e6u#Vz7O6cIlv51ahIv#bi
zYrCYPI*1FW+TyE4DGy7O)KN;uJ36Z9Sog7g=Tuv19Z~<5EhE&*>Ns7=$x=>`@&YRe
ztSGROj>>{i=Vm{<R>@se$NdJbk{jEf+#prcQC&x;&)P#ENevw}1+SGWsVztyfoxbk
z9q;Lo*jct}rj0GBFUa-6?gl!>?{c#{jdV2D!TOu%7`sif>1efEiWZ!N67G6mM^hb~
zMN|I+9X+;79|~+H&@Pa|7(pBYn+uH9fozGpTIguWR_W-hBc7+wk)Xq=qqUAUI@)rx
zzH3;P<Ni3i+{ga>cG8R<c3w%_>2T@jK>PQxyY)y!wEM-`UI(XhGqYq~x$McdjyjjM
z6FUvHubpI1<N)dDrX!g*9Ya#P^6)<PBt3E=cym92-1CE!qT^<!Elo$&;kHyByDa`n
zF&8D>b%c}cWtYTrK9H`XmyVS>Q!9Gw=%Ztjj>$Uu>X3De&@oa+KOOybe9X$(_%!<f
z9Rqa?(s5_JZ9=w<Ir;De+kxq}!8(p+MAHc77~2pX!*o2$unpD0&F)W~^w{A#GP~PZ
zMohDf(vd;S>lnwQ((R*ljG_Mw?%Z^+{k=4Mrr`AXG3ygq;dmXdN7}M<Owe&D$;r}x
zkbNSZq=l36?6LMKwE1FbrjA)Urs|lcBWIN~UB?U^%$YGOC1SRYUq{%xd?q~^<Cv{u
zj*icDEY>ks$EP|z)3HFu)l7Th59R0Sn9mTHWXn#mZ<^<hkn^sEIu=p+m}|jdSLgo8
z2X@AtdhBA5F43`6$1)uarj{F3vn&r;u49Eb+;!G@q*mnc%~|ql9cy&#W8&4ZmLa3#
zD<)(e>ve3<u|vmB9UFCQ(($E^tvWXA_(I36<<b_$<7e*KwcHIeB6E0N<A~dIoEYQa
zY-c;$JjPDGaDq*3<KCrXw~jqJ_6mi3-*n~P*PY6-9x5c9N+!OyLn?Ho1FtN`*wp<x
z4p5Upq2r*AZ#fn^exUzz)GkP^(xt;XzSnVx!_nBeWUSQICs96olKY4bwYx+w;svo(
zrgTilaVCV!$RRAfE=i{t-E=>8LB|;#XLVfU*y%W@<GhX^SH)kT7fp1~30b&Fw>+Kd
zY@O=7OlM1Re(5Vu{-fYmbo?X;<yQsyS;w_p$#oq!1ZR4r!fm=GU7cA-$1ghW>hQ3s
z%q^+TUj=fOdruHb?hEoj;6o<5TzQTTMevo>Np<p&|Fw-xtyJ2{)cxdBhmS*iJ&|27
zXe%AJ4cswc=?KuJ4U9Js)DhCr#K8Lo!a5%7C~csOfhRhC)A2^fzdD}k_+7_K9e?TI
z<={;1vd?t<q2sxZKk4)55?@d!F*0XnskhlZGAo_JSF~rAtYpcrb^I+jH_wi<{iEYm
zmOOr-yUaxSKPK}@QV|11jR<+mv^G)BV<4{qUR=oY8Hh3>!u$dY2;^o#>I+^tS3><_
z28tU{qEkx=EFrL@fp!@-3R!3(;+AxKSp($^ylbGIf$|0_7=VEq1}Yk;WT1+Hss<_>
zct<p&!SK$J%0meqCdwryIjR}_?I>TmTkzLRN1g)lHP1PTAGLMXG*HVx9Rt_LxT#;;
zz}9w7>X3IS=B{f*mOg&#<0QUkL~djn8fZjfpn(C2E#Wn5htz(cRByWNWN+!GqV~o{
zB#$wT*bGD)m_OSQy*r5uBg_&_4SZmrkAc1hJ~YtGfZITO19k&32I390GT<=KJkuU$
z;3E<Pu}0*^r27aPlTy5FZ(*P%%|6|BK0W@?yWR3vwzF`8-P%AK15O&vh^&pYWg84s
zV>G=;aNKomKQDdvP;${+s*{U0ye*CF(wrR(bYuetN?i<e62v(`N@P6)q|O4lt7)N<
z-0W%~NhowPkZd4D@F_hb9aj!WsRs08QuW?a8jajr>MpQ{fu4e-3+yGZw?OLD?j^|v
z`WYBuV5EWm1_l_2%)Jc^G%$##I9|R`F~?v757Hx-q>l~c%e0YGSbwf#h=HL7hS76U
zZNsVD+kU-3s{!*JwDa9I&QS&?Pqy`+C5<tVA^2#4V+Yy)C(q;=XGvoP{+5$4!9bRQ
z^#(Q=m}p><fu#nP@el)3=raZu8klNe8hc$Zb<Z^0bOSSJpUSS!44fD*WhUFR4eUs^
z&lEUIAU9_ln3K!r3i7Fed4kN(mGAphVm+O@ITu>e*?q1>20k~i*ucNLC0?D0OAPRC
zx9PO@<jW1LFtFA@=?uq8I);HYY;&4@wGp|XuuOaDBJSBHQOMiLmy>Mk3=n(&>)L2w
zlYt)$95b-lz!wG%8u-@07KYDc+cpE+4SZ?fX&L8M`q)8<g{uM2E$0pc`wbj0khrwO
zP6N9{%XjCte~*E^f`29O>s<LhLB27-D*{bXBgxKtiv1I%v}w|J2EI3Ni2Y*C6D8i<
zeV=7JJ5gfc+RG6Gk0;uW8u+Z2#L|1U#6dr9;FN*W28#XZJi*xc#(k0_yGY{Z+icqz
z0~ZWjG;r3yIRobnT&Y;PnpBScs>useT4XkI$%sr>ZW*|2;77rkRjwEy{v`0Kz@G(P
z6L?+V4S`g<`9EiyWaCtaRsCY%E`8O+AQQhDxX1isqN<7e^jHJ04g6!^p@ByRUT_Eu
z<S?xnFbtRmJO)$)ngO4Ix)beQrh?J-Dm6<vyF?G$=kha=E^>VSsY5p~YN9-GSKPBX
zj%H2bEdvG9+(82&0|Dxca4elDAD(F&pJhLnWe?MC^itjRgh^wZ<4jrCZwB^c*`Esh
zT_87~8TccYKNsXrfu*)2GnBHj9e*(l4Y+37dJeX8GXJ*`nc=g)Z|IZEJSK{n_|L#w
zW_T0%+2v7E9us*@+)A;1wkeWZSn`=@+|%BzxwC+Yf+nuduoX5juA7~1S;)klrP1^U
z?`TI669Z=0Sjud47dKJDM0pbxOq4WH%0w9xWlelB+E&^`^CUa(r)JHxF<vUZa&kSP
zoC&7f+vnms%#AD+Ry0w`L}e47j<6-ou)Sk~x3L%QIrS`CRv#&PyrY_l>Lyy5Xl()}
zYMA)I#D^wony6(W+C&o*wb{15_PQL<;kG)0x0%(El6QG7QS*iOoo{A!e9uIE6PeZB
zEDcOZxxAr?M!CGP30p4zdZN5xgzfL8()*&#O-<aKU}vkM2HTsNuycjq#78D#OgPw6
z6SGZ;*Ps@89d+tD_dQ68H4$DSjXsdfOF#=V67TUQXljy{W@OE0PTqKKG7+^g(bhyK
z6P-<PJuSh6+eCX4P801+?4RK%m*v>AP;!|dvQA!E-d|9H<KDr<sBw;tCT5Jb^OBKh
zqKk=C6KN*6uENPrR})Dlx|!HATS_*OB1j83XHQC}WX=@#{o1bXX5=<ufWRImdYVY5
zRi{Yxea;IL<z9kwv$u&pxxB9lS@3?jlK$dws%4xh&DsW=_}Ii@6Gu#ZVq%Di)h5=M
z7;0jeiJ2y5nHX+jgo&vprkNPYj+huj%bQs8xs+jIG{<+flrvH0+Fegh*Lz4~O^~zj
zF~>L_Qq(bC-~@qL0w)TbB#;V|O-vCy-x`UV(@i|NnlQsewh6BH<|*PTI>c^_=7)Oi
z<Hy@(o0wx_nTh2l=F)BGX_FnZt|#yT$2=2DO}^=?#C#L;d)j|bjQ-5T0uv-G3r#E%
z{PSGNV)jCCJ^`Tu?|}ZAD08)kd5<SuVPd6;RSdm4&KskpRtqF9tgSV%&cqHAJ58*o
zw{WD`ND~`PaPMXl)dorfCO9^kXt>?Q8O0YSjDpU#R>T>$n%Ksp*1NZxsQY0zPRO_3
zb3TNVl16#scbV92;u|`W$@LuP9ur@g_?pd|VB5>!y`IR#$WrH|b06b6#ZFRjl6*i^
z_^pZW#HkMo?DV_ydoj>;2G|cV#*d~*dODwCunk8|{J<<~;(>`{CXSo@4koUdIAP+X
zi3=t!nmEM<@Qjme=S)6XbDS}8R%|w!B(sLSr#lnRb97Sd)Tuw;eaXaS6IV?9WTM<W
z_m3uc=T&z{963o>)k)2(%pM&h<k0J+>n3iPxXlb;qNOSER`Di{Y=XBQEjPvX+UIVw
z!TpOFS@FKhTtN#T>|QRMbdSBB@Az?Aa_q)(88@8d4^2EW@rQ}$CUQ(Dj7oYA-Ooht
zY@64FW<oW=2EXcQ?-i7M946V$5;pm=k^jeaK@5SWKuci2L{JdwhnW3}JN|d<v{BM;
z!nVJ2#ItNq1$S(8le0WyjxFX~ALshh#0wMun8+&Vd}-n@6R+99zY_R3=@pw=sng#~
zCY{}!i*5)etjn;km~3lysx$AxFwXX$iMJg3Aoc~3$3k8Ug##!OKt2mm7A9JlWFfzW
z0v0-1=xm{&g+dnIx6qWD7K&IXZ=r&Pq85r-kyKX3LU9Xc7D^>8l(MjLwN!$~PLh{*
zayeb4N?Ta8uQK<tI6s%lT9IYpa#rMyn-?Y~{E8MTS*T&5riIED-my^CLN(U#O9IzA
z{<++~iiIJQ<YVXJxVBc^0v8)$;rz}XTVJ(oH6WS7S{7<sc-KNb3j^~w>ky-yb$Q+o
z+|7PT;Nl+D-m{SMV|y;g)wd$6d~<$m&&9w7?CB)8WTBxTjRZCpXcNf2(H5HI@-|V<
z4=j9WA>KkO3(YLpEqwGm;UkMdD#ci6ZXwo!!vg(*6MG_ON4&ssDKgFi@p6oVbJrFY
zT3V4wEEgPztu3^%(9@FK7TQ|i;*ZlpI|~UG8jrHOD%<~_?QmI<nH8Nm>MQBOXghDE
z+gs>hp`$qUfCJ@t-Qju*A8938=)wkA=xw2^g(M5zEF@dlILeXG-OkGaF~x#9$<`xs
zQltu=W}&-<>06U4ZIH_BmiRRDX@7e<d%7bs+b6Fv+SbQHUkgJm3}YiL^t14>1zy?v
zTNofT2V3B!gx8dT76#E2#og^&xcOv|&*n;}*%yD~`b6jtvCv|x!~=)@lQi7I2n(Yv
zjIl7%!j7@F`I)v13!{V`2Hclujk#T%`^VceIdDQa!2&nO2|nIJnWLRob#_uMW4t{}
z)WCJKS(%Q>7N%IZX5qSpsTQVL*ll4C`)FYXy~x5c3)vQCT3BqM;%sS_z(p25x44#z
zIbzc@TbgS{uA83<oF{O;Kngz-WP!ki0;l~}w)r^Qt|5^dM&>adzJww3JR!B8eYu4d
z7S>zXz!<Tx%EDR;TqT>8<ycK4Y?0PjcvjrWqn@vmJ~$V*jv>&)&Qc<-8*fOPPIYXw
zu*t$^3tSi7#UW01e!-}m>eym|PuN+$6lANwZ5FoY%6C}UDL9p>wxwTWO25~_R~9Z<
zxM<;P3;P(t7S3AuhUT^Ky@f*-4sg5}uok}K(5FiWMo4G-NtxeDoB|C$A${J&`CdQi
zu!SQ`1q19O8oA?skk)p09%XkLxsUEo`oRM6n1$nlke{${GMAsSa5|SSm?WR0<(oL|
z3C{Bt^uJxS13B@Mh09iCmHVoNA1&-XDg8w2@k()0x?+Jdv47^Y|7dp<B|lq;p68$@
zFXcCAB@1CjjfGnlZd=H)pjfzL;TI+!3-?&<KIxk?ad#PI`QquKe2RU^knVHzP3eJ!
zx${eqJhbpgNLcN?fW*hp9>$9Wp9Q}KFS|Cv{x-#~2{Ku>AI@-9OLgiN44U*)DM&IW
z)wEz)2+$9M>D>J3RzkN=9pUBDS7qF(eeEH}U|)OQHwjNH{AS^;g**W~weY)zzbw4s
zfu{7#!gC9MGKU1EKLj$jykOpVTks{jIn_=1go5$YiaPfdb^dMPHG6GJ|62HGq<z03
z{bS*csOL@*CkuB`|36XBzDaUkCjS6911T6lR3Nf|z~5aI2q1qTlCros(7#3}N+y1l
zOr1hPvv0vxMFS`nz}f)T1yDSI5&@(JkQPA607?ZQ1<){n(gBnSplSfs0w^0mxd18z
zP%(gcBOQF|S3ZC>A4?Y}$*vl%O4MH{y%Ru{03NK7DhKd-nbdr#q)n1%KT4?oPFd$9
zNA&;@K)nFo3!p{-H3O&{z@R%)tpLB}E!7U7jv#L)$=ydw7sCnhN+j{V8^Gbpc{p`!
ztV)cp`T;ZuM1Fzr-*-~Y$udvM-y}2&pfUT!{sv$RAUXhhfFDUjlK|ci;DZ1@WEofb
zv%T)70X)i*SU9O`7KmK_Sk+V6&Uszjrw&H|%>(!-fEEG71~4qi&YwfX1^8EMJNfnL
zjt8ZjErmQjfQ?CZZc^dVE*E*50NMu7C4jC0B(SI1Qag4hTVinr_*TgTO2}Poe6GBG
z03C99M?pFT&^cF<D9C{Q<&s2g$pX6xET1o)wWSD7((hqH_W*hXFeZS^0D1<H9zg#9
z1_aP6fZhSf0Vq=(e9+J*fW86nvc>!Qt*1+Kd7turG*`0isH6PQbo)S#NC3kF7!knW
z0KS^Y|C3@!02?wL9|!ntRtFzR3=KqXSh%)7OepOB!c8?wMg~w|qKyv)GFV~3_)$WQ
zHIEK}HFH<=1jpC_#s#n-fQ12!4`4z7lLDAb$zfMk0G#Jc44~y?d2>lOXF&z;xuyg#
zHGugPE_F`}V0s{OmozVcf3~_^<=ivGX0|}eX9h4!@Y%VNIRVVg<(~?2t-C}`rC4OO
z|1(kT)kTg)0el|7vH+F`B9HJE2O>*AO9Mzg<XRHI{iaTCvhbHkD*{*<z^VXN2jDI3
zmcMrM)~{j%=d2wa*97?Qyp#!(`A%PF&&l$78ZCf8071G+0Gk3h8o&<$Y!2XyK;)9d
zEAkcw={e~TgKnzr%K)|puq}W-6Kr3zr&+e`f^&0+AUgxtl`GjDz#hT(3j8WpzNnaE
zpE#C>e<R5L01o6z4hr&Z0N>?Gz89o$cH~jZ;Q)>VK*GZ3JI4Yz9>CQAeh%QBJ<^E)
zF4II=_LKCV0rpb@PYXOF@T@@YIv2os!7t=WE(UN(aNa~y;l}{31n^TJvM9vj70(Fx
z0P9)+zx<K#kP#Zd^#E=#Qo7l125>8YxFYe^uDHmr-2~_69V!ccH&^m&0QUsHFYtjt
z9!2Gx0JwDN382j)hr+m+;BckeiK>uz1#*`bfKPCLu0$8a5NHat0_a%6LFG^YVJ6!k
z+6D2Ly<-XuqGS-iG5Iqg2N4y-?*Tju;6(s01Nb9==kx(3;ZNp0D~Xq5=CmJrNhNHl
zye=18Tkfv_UIp-X04E1YJBGS{JSw&6E4^kiNpr?FasCs)8z!YD&VL1x{3poU0P+MQ
z^1K2`4iA*_2T>r1LO~P`;_yLfb*#G}8)i!-+3au^38H8a#eygv#IQihz0*>!TCQtZ
z$%7}S)*Tvo%Coe)R4RzlK{O5GgCNQTQ8ow!Q6q?QL6i@o#c`>6FtXY_eR67rAULC_
zD6o=1ZdMlL9f4H@Rt=(>AU94#W+3ccfj&~rAZi6MqCi!yX4e)Kl1M?Uoh;W8ST~4w
z1*s>H^7jO(A4CH|O3M<34TIo;ER6(dEYKz}T3{1_@3R-jBWfQ8(JY8IL9`9R9z;wK
zjv$%`(L|QcOqTtV<pzVKMnyWt2C+5G`NN3_j|+nMk-!!~v=k&>AmyzDX)W;L5h;O&
z?Iry?S)TEUbmDud?01qY2zL;(f|wmd`ye_5F*t~igXkDUry#ln(KU!~>bW}yaqpMp
zL=Idv=iK4RJAO^U6geq~Zb9CXpf{V^LrM;!>XxKtQ{=((+$pSQo;y`wS`gg@p`?c(
zJq4x<<N{QeDRQ46GN#Ctw<VGH4MOIrr^qb*1nD2d06_-k$_LTN^*d4FlOTo!F)oPl
zK@4T@g19k79vei>{<h&kT=_DI4I2@}iYYS7$RI}L@{Axx3qD3*roh8O?Zu)l))aX{
z5LrP?3}TX~v%}v>`~lC}`R>U<yjkz&S<2YE^9MFlf}DMUWST&d=|RlM<=H{Z%;jBs
zrOpXrZV-!uSQ5miLCgzcK@bar*uO=ZAH-+8ac=L5+bQLnDt|Y@vA(PG-Kp}TAcp6S
z|D3}yRql2t@$-KYa@I*pgIE^i`|<Ea5X;%}AT|cEDTreOldBI;?LSpsNxzyZuL@$d
zAZrA!6-fCyLDmPcL6D;VB~jQWZ~T#037e<NU28eF1o34MdxQ8Yh`Wyxwg%C+q_gHW
zX&Y^_Q`#<&WQQO-1@02KJBU5Gdq>@NRyyF)yQR*5mGDyy=Qr$T5Q`q;^T#+4#K9mM
zhhYoj+aSK<ScEVpgztkm#JCQjYzT*gI1+>vL?DQxLHrQJFKi6^7{u`)E(h@=53H5v
zL=Y!~IK|eUlUm%A>K1U1x+$Gzint!hV`qXmE1dJ3!1Dqx2)roplE9MlBTqc91d&kJ
z`BM;AIf9oXhyTpcKPwH(kyfp6Ukl>EU5Vv7{Xy`X0&nHYZwqoq;Bl|?D?=uThe13F
z;(m~mHy1DQ4;WmRrEDes+*FzK#+)FOApcv$-zq08c()Tzx@5fM38GYWry7J;5KSN@
zz99U$To=R;_*aHhB|{<xg9y<%gZMXyFq3}}Pnqf&8e^p=L45cu{Wl7yM*apntW|eb
z_>6%zmVax)KSBHv#EVOb6Boxn58_X{{o?o+0$&Q`=3j!m3gYiv$pJ+wdNX3Bw;t)|
zi_(8Vybbd0G$;^4o)GeekS~O&5bRf_G>*t+$+yon{g(9Muaa}0+m#~~459NisZa=o
zLum0PEjvegd`qG-hp$KoMML=Fj>J+-km4bf5TvBQQUXg0q)z*m-O7bfKEw~rqjLxq
zLZ}!*lMvnyp;8EyL#Pu%-4Nahp-Kp~Ls+;sscHxZ+q!1$aE(uh41KjwB!g8K2!S;O
z))ZJPg#4?^QGw-g)wFj*nD`{AUI_1nBFl*drpZ%hx~or<>xbalnbaVJBCVY)QV0!m
zc_Tp@hhWQ<M2GOfG?{8mNqCkJ93gxdLbDK7PIKF7llAVTY4WgX^7LtPzn8An)8ytM
z#D>t3jmh6VE(GpM-ICHagpX+R@~JE>LTH)G;{|CILTf?V2prJPMKvCk5P~xV5|(y?
zxCFWdwhy60?%u9Hq#U0nUn%NH453R1atQrG=o&&&2+1L&gwVL1d&xpaHx6`vn>tM{
znv*ahl#&`kUxstMGff!q=ADG@A@m4=q^CfVbU}KB&|8o`xpM1Hf~RfL-_>3HLl_Xk
z$Ph+_aIC&-pct|dG;(X_Ac2DgejLIlf(#KjR3LSRg)lsq=d0wVsXwUWTH|$QgiwFF
z92vOjkyywKVQdKZLwFFvxDdvNu$g`p!h{gA=qe#B;&6vBDTHYuOb=ml2vb6sN?&T}
zEE?}@IbB|`A@)v7r`gEO-$KlwON1~pgjqDyblFkH%_ZL+`QzVwl`@-^OqZwq+I0?n
za#|eATtPk+I8WgG5I)P@yFid_w>o^zmK1QV4Pjjfi$hq#eyvH|GF@&L-DznE%R>AO
zvy)}HAS>uUf~*p_THqRi)EN`gZG8wELf9C>rV!3gmp`5ocXLQGmw(4+BpV0Z&Erz%
zHgs+Y;mZ&XF$ssTHH2*;><(d12-`#05yH+8c7>o!msekN=9wY?bvh+`N?g~IDVfEb
zaa&w_=^J;PUxn~Bqd4BVgm<;6?tP5J8T@uq8u>RN><@v2<$xduL-;mV@*Ukqa9WiL
zM?yFn!o?6Sh42I2AcW%~oCv{N(?y#P-kscJhI}%FwuPL9X4p>WbCaA3;k1yDp9$ft
z;O7LM&y`;Yq1`+O6)uPHBilL9eJ_M7^p-yM`*YggeC7O!QC7uyHH4o9xhC*-2-gL<
zA&?3;1-T`VO`_yZ2*2d+y(`GC0>6FaqO*P3&;5|SV>Sz;WEeR#V+c<}_&o$q2x<ua
z5MSku1uK)hA!s4^n9yd(@1(nb7?M75hTQ$z#Kota2HoJ4^L;(RWJum{c0G`2g>bK`
zD^SQ82!R+3AtXpxASI6lc@n~Jxsth_uFpdFBZRk1*I_&l;m;6Wgz%Cfa4l(2Rx(@L
z`gX#xzA5L1C;!DEDBk&12wYrZ`8$Nyx%{6H-U$A$!2fdP>t@J#!^js#R2ccgICdbB
z4d(LH#2s-3!uax8+E35ZAG~xH41@Kv6cVIx7)1mrDzI4Y-r|DnPfRTpM(Hr>hVgC~
zWx^;M2EwR8F7as#s)bQKjPl_~GM|0TRUwRuVUSc3SXm%9-wC5iF0U#`<A0ntKTbX}
zL+1Z4PAFY#hEXew+F{fQgKhq0hJ5~|^T`akaJIbaTH5VG&N}Jw^}={BjD}$}3Zs4)
z4Z@JZ*plw<Jl4*ha)6Snx$ON?>SfEUaA=f!)O)TMubt6hG~u|1p@i{%7)`?%7RK-}
zJ_zH(FuI136h^Z!>|wMCqb)lUh9iuR!e|i&@86q;5gSHa7-O5dFLX?8lPwR)mbutC
zr;4*>81Z4W3Zr!x&Y7wG&4eaz+Re<C*JVetT*KM!*6o}L+!aQLFgk|OE(})~?l9WZ
z8hIQ8rluEc?2caC-s^Op&6cIoZhyAiDU8lxB!<x?9Qn!9)&lYWWy?v~sqf5`Tg{AA
z%O-UTBRPzIVe}6pC5+TC(!=N#Mp_u%!{`x4PddQL_Pu7xte@4|-Oe#H<yAA~)>WOo
z!{`%6-!No${6qJ#nR1rfSv1G>!Qtc?!#Zmjo&Rz<2ZS*&j3HtC{)KB$7=y$3IE+ui
z{4-tmKc+jjRdN10Q?|`cWoOIROUXFr9LmVr6N$BCmvclIBg5De#@;YSg^>})$}m=i
zF*=MfVSF0Kyf89p%rM4<F`mO+*V$Ex9J|~~c#$nl2xEFUvfN6Z6$Wu)7?T7cpB%;%
z!KVtGmMeEXN|?c6D(=n}NHQ~wS%S~bmCO-jF0Hhu2NmXr@mUxP!dMu_%dyE{46`||
zMSiW#vM9`7%XhqV%602`!slTu4ugbcNf=87UzRIbF31Y@Zmxq0c^@UL4r6T?>%v$Q
zj{Jp+OP%lATqNtm*cHZZA>0tg%}MT!0yl-RS&%R2$%1?t#&$ur3Z&+?Fs^^(B-tS(
zI|Ytel}rg&{C=<Q<Z~G|`>Qa%4&%o#uF!yCe8cz+<9rzV*_|*Ba@x;OE$nK&w*8Zt
za^3;%AD2maUOB%D<9iXjhr&1>MsbJhu-IgUM+7+<#t(uV%a!k~l80(1gz`y&rv#o3
z<BT9@1yYCSx)8?2FfN60IgHbbrNA3k@v)9AZ(YY%xi73pajcP2mr6f{aW#zlVLS-q
z=P<6(^TW6oMtGFFTwX`PROj_@<d-Km*l|I~Z-sGN@H+y3`9GSj16*q2`=THy(u;t=
zL8%htiIipK36HX2m+s>gia@0I-h1!8H>GzJQ4}m7MMXqZPytaXA_&OtW|Pfko5KI(
z{{H)Y^PTVH&SWxkrzDxoy%D^eiXB?5)A7RYqQxDxko?B+J~8cgPKm2BdfxC%ET#63
zd-fLe-FS$bJjIVje%yM9KRLPiQPPjw5AoMSJbH-74{_%q?mmR^5avVt{Sfy!P0iBo
zKScSXjmB<NXe{&eEbVBv>j9^uHokuZA3lU%2qgg_K|x(GBuLG_K1&NfgvCBg%`{N6
zXKB>Te3#FDh=H>-hUi1YgvSLFg2`0uze4`wP<l;e;yivl;YVRVium!QAIvJRANl-P
zFw2=Vp7P`B$gWS-S6Sx#eo*HO1^jqg_%kU<K|h{N@j^n5EmbzXldq^B#r!Dl$BL8f
zcF)pg&^piMl)vh(tWtiI_TyzgYWrz^g)&T;t5)%&tRL%+Wt8*ddFu8ZAD72@IQvn{
z@_tMyrc(J8{2*5J1476v`SC)EzbK@#WWp$hs(w`S<MW`Wx*w~jWYiEOdC8BO!j+Vy
zmXP6n3a9z;iXZj-sP9J|KVFsG>iY3|QI)-d`z4k>qn;N1H1NaaM?*i{etf#l%U<{6
zFDhfHx;*bW3mT)h`qFu#AH)0@?nh%kn)uP$k2Zc}_|eo4)sL2bH1qRsCTQV@$B&BR
zX;_rmV1355S(-gd`)8uEc}>QtyO~Xf7xwz$^P?4&GhJSAHfA&$mUZz(U-{WuTR+<Q
z(Z!Fhezf=F_vi9-@Z$|Xz8tKi)$dUKhUZEhZ>Ar;>tyibPDft1my#uzEtum+u8>ZG
zjO{FhU)J9AqnjTMW@|(J=*|-6s(sl3`ec#xkV8%IEkAk+p}ZF_B)m^b!nG`(($A0n
za_#`Zfr69|@?&s{4-xX)aqr&4O0hTFjqqcnACuYoevI;Cv>#*r80W`ddCJk8c8nhf
zhG%`SNjX*DJKm28eoXY!iHGx0(POqYzE4imRT<}2X6QSVq0N2MBAK-No9gEeF)_oB
zX@1O^tvyxF%LSaZmDHJj%<^NlANRH^+G%gWuQIuia_6dNjvsUV;3XL5`7vMkf|O*T
zkVS%v1^L}}nIFs9p93f!;9n`R(vQ#B1N}I5DDNsiHu<sH?|i;o?Z+At_AbsOQ_?mF
z?jG)5?{_u;JeZNTQIe6|=;V6ak9Yid&yPcXZ1H2OAG`h7<Ht5Xw)?TKaKoK`+-#@r
z;G)fNH;t{Xj!q-aou0Of<)5DR^^CN=Oy<WyKi>6YKlLUl{}-hVaWib1t?_WwWamVt
zf1is#ethJ|$9`<wlg>|6ANcVhheq)t{8p8}eBL9RI$|Dv)jG<lLoC5RVI5Pv@yIj^
zKb6C9XV-B*PWW-hkGp<+;m1ioe(>W*KTi2^+K+GiIOoS1c2_^n`khbVy<hNs<;SJ-
z4ZmhzdcntCE(d07XJ%`!O!gh9<?Pq`){pakeCNl57fbMP$~Er=KfdQwvqT~1E@Bcc
z<6LAWe%zpPnDZs?Pk#I%<Y$uE8b8?mBE99ZA6JB275r83njrhqZ$f?-TzMfo?;P#A
zAH;g^D7PfH+kO<?+m?ra`f=IFWVU~aghEcUf3s8hVfzu~WHLAXz8??$@U!IX(pfHs
ze}vSlr3U;6`eFEC`l0*L_8o;G#P*t+_VS_3yjL<07x0Ds&Zb<;kBG?08D2h<P2AHl
zC+0_-?GnI~0VMoL`tg{(@eLOZvH$hsKR+IEwk+0>PrplcDl03iG}<aVN6QlcIm0&D
z^^rFK?)P{q;5=pJ3pgJl8_iJi2T(xdPX{pQcTc&y-e=^HDGLVhtnfl9N#OvBq<B%u
zhsjC=P%?n50I~xp6+r0#UJ9UQ0M7+bCV&?Lcrk#o0W@5vln<an0ObO>zccgs0P;?7
zlPn#XMg#4NEKk7sQp~Srtd#Q=EC6n>;kFZ=SUG@d0aWJ|1K`7U*+H(V%yW=yPqpl>
z8(P%}fX1YaE4sO9Io!#mFrNTzTG2RwmjkFBK)nF!2apy(<WHqe0Ivq{N&xIdwCf~(
zc1pQ3QmGrjbRm>92*4G9n+_jXm(j}m-+CF<P)_038762HK)R%-eB39#E+dtS_0%Q-
zWCYMIfc6124S?A;51>T=%>wk^rtBQ!Bl29D>3LG;ssXf2ajy`cU@O7af^7ub%GG%}
zh7Q8t2sn2A%rKMrr>a9U)mMipIRWIdH3JwNK&JpY2cQM;RsdZB=o-MLH(fmfc$0-(
zq;wY~=_aK3g-qqeqC6~AN#)jso&od<pkDy}sl7>Qy#r`6J*}_sK5WPR%9sNRKa{r_
z>*80%hlAa;fEW<KzyKc9%q728()Y;i9TLEp0LBI|G=O0N3=d!gn`4f~ohr1F7#YB*
z07kR4+p>5H!{Hfjno*F93t)TzlLMF%aK5%o2w-Bsc^9~~-uLl_43bH5m_0|E8o<0<
z*NgyW1~8543V><m3`*<$RVMq=tN<o0@y%v8$n~lDRc?IcVvG5A*LeZV58&xAxA9;>
z01Me?LTDVqq5u{LU<MHmVo3l?*+xNlgIE^8@&Ez>1Udh6WCd_KfHMKC3Se~r`vW)-
zz?uNo2Cy@LT>-2MU_G_kRoNK8qI1f)p~{AUV`D{9V7T)&ZBqc71OIPA^|qvZCx9(N
zwhC?&+%C97kY|maqtPsDcK~|>=zCe&BRNpQO@Li)EBiQ{X_<0fIT*mZ0UQtD1hvFb
z!wwn1=aTsS01gN6f$&B1d^9CvwmkjA0FH?8BSA_&7IHLzV?sVj$v+ixxueQ7G#~q4
zrM?J&RXbiO&q->aY6<e-A>XM0!gCdxl6@J#R{{JH!1VyW4&ZD6mjk#Gz&8P$3*hGf
zwvBcF$@xEk^8v@e|6jj{_?_?zf;{{_fFDx)M<EvjxFqDKl>Bd(`bz)}2D&b^QF+SM
z05XTUnfY%4{2IVDxez4`Wkxv`wZF4l4s>x7>5Twx25^^c#QwuhdqBAzz+VCEepmUE
z{qudLNp*F}-yUu)z7xQ`4~x<Yn|p`2Px~G_d;tG&S_?RqFARM3BR&kk&$;o6(x#S5
zL)UM%Ddk$JdH^BLKS9(9!eBQGpi&Sou(JhVan1~)Oc0R(Y)<t-<P9RqDRg>TEPyzB
z)M+oRLCyV2f^*{@XDutq9QG>={|fm}@R8tS!8}1c5p>dgQ%)u33*xDuV^CQ-h^6(_
z{6Q4E<$W^gDG<cdK|CXeMFlA@7{s%}3#BB5g%lBt40JI~u^@`eVF|&Kf|QqH{?)Qc
zRy0y0Ym~A<lnbIl5EX-XKFD`KPx&CIkR8L*IAxJky4bpgsUnD(Mb(vaH1c2p?~6fH
z4nhf{RuEN!s2W7|AZi5h#;YpJ%vw|nI-BsB_@y9f2C?F-_pePEhv#TFrujO~a&OqA
za4X%*LDUW+E$HkSpsB)%EEjkA(v(ausJ<FR-5?qTF~5iFOcz(ZAY8&}j#NL020;vb
zH*cSrX<LW58wN3IWSTpO*MgvR11&P@j87{t-o+EsgLqxeYAo19Fhj7ZAk#DpqIrt9
z5aJP31?voR`+{f{#M&U%1<^W)HbIQ!6@zFSM7togAl?e1eGnaj=n_O%Y9NTrAaa7p
z4WeTZSyXHbZ#FyCiFPB;stgNzs10IGNIC`SxKio&zOOTD6l?N7?%L*iGw4_tbqk`q
z5SrxlNRj0$OE8KSIz5BvMI{6=D2U!c^a-Lrt3O5I6H(tFCOzrv7X*2MB{}2`)71eI
zOLAq7HaLhOK@1CGcn}3<C_{rdJ<)kyB|l#-XG9R(V#GmuV|v=hj~mjaX><@{f|wG-
z)F8$Nok#ugK}-l@ToC^*a;z#?LYm)BWCt7Wo*cx!F<Fy>(C28CKl4$-XX$A{OlSWI
zVpb3{*vZ@ZxcfRMsd6c`@LX+n5Oac97{sC=<_0m3nh#<DQ)auk!<;+P|A%xU!Fyb_
zCCXw>{_Mk4TAhqmeO%S%YH1&4##i~41wmXMbSzm`2(A=dB}n1wAl3*^f3^q@*9Wm7
zh#!Nv7{taPHU)7oh<Ah79K_o}><D5fTP?%)P7qsz*cQYVmhhayo8vb>DkZ17X(qO?
zg}Ob6?fEijJGLu`-K={M`$hA6g4i3xi2Evip>Xf$))#YVfN+4Zi<QoKOK{U85BIe6
zz8A!yAWjBxDv0-kI2^?BAWj7FK@cAXku0iy9t4+1Xl`(X-LIJXk>JOIJUkl2u@wI#
zh);!oCfI+5!UW8LURJ&cV$~EkS7Xi<a}G&P2XQ8d3qgDz#Fui3v$NcNim6{o%C7~_
z3VtJaPVienW_4c3cY@qB&J2qcDDneac9xr#4lQS-U1EO=;%*Rs2k~<dzXWkTh#Ns%
z4&q7>*Mj&hh^s-gIOzM8`XA@wJ0o|H(#)TG%YWyL*WE=c?>~fa$Zy--rhgaL%^+?C
zaXW~=f_OZ_^(Qqp-Th#lLT*;;XpdE<O-N(769n<i;Vx!)FNl9Q5iw-B?g#Ne2>FV!
zY5pJrK?K=Rsp_qs)-_c=^K+~AokJx<oc}qf|M4`Mt6e|t7)S6$#^U79E}>(W4x5ud
zhq;c9I%4c~oIiC`)RAD5ac0(0NXNfH{1-$%9Z%_a!~zHL`6&03Ivt30eT5daI-by-
zVV*fx<LKjv&a2~@d>NajrR6Q<&96J={7+M&gNY01c)Nzm(+4$ZN7Md-I{sPg?76)?
z!(CWM5gjFUl+saDM=>65P)g{Il@mAS@lID<#}_${PXo@z*2)g0c~KqZbjM3o869PH
z=Ut=1-zwkWxEqkwr)|{pI?C(d!@vI(-wzGF+$abgm2}kC(Ll!wI$qTAvX0t1Xi8RD
zM=jmiYDlLIRdiI<o%x}fAW3x{HH5z;STiM8bbNB8C=>8RTE3*QnmS%(80PHs<5tf)
zEMXsK&u5F_uDUwvNfb?27?{Szd~~#A8XayOm)2!8(vhy?H65!aDl1NAQNnt?uA{Mz
z;Ukn6t;}W9veFBxO_;2pnxUhqkY<9EG#AoBhbJXbg~Y}vJ{_%ev}41uzB=0I&VKv0
zI-X8fX(_<WRe2S1Yib9o{igDUj%7WS^pQR~yBIiED>KKJr6XI%7#(AE<mkxN(N9Nz
z9i4P^)}iTmOGg(SU3GNR(Ot)ezOHtod~foUacOsQb4K4(=Wg=!&{6GdTHT2XH~xM6
zw&#c2nLTy%($Sk``(EL|>7!$QnvZ?8ukIL?)98<l&VD;U$3Pu}bqrzty<EI05C>7E
z?<llDr1zMiRFRGmI=J_Hm|&5n4M*x2rDL>?@5d?KH~W@6+pb}a|KCwb$v7S3bu8Dh
zLdOIh6LrkeF<ZwZ9g}rT)iI44Ufp4e?ii)McF%LCmXBmQ3)amwL&r>(e1V&siws1D
zF?Q}8j)<7&m8tG!I_9z|?|B&Ju~I3%fVrjkA|Z<fmk2J^ot^wV<-pynbBo+7*%Nff
z56@N|t2qY8r>)hoPRAM@gT^T}zi<`|OH}pIvT{9#Y9Tkn1|1uPZxY-r_;xDx9UWVQ
zzjC@56K~V8UB?c&M222s(kg}F!2)Hsjy*a;ER2r5I`--KMaN|w`*j@9@u`l_bR5+2
zu8yNR@-0-}({V`0hdPevcwfh19UpKY7grBG>n`||j}z%HQ`0^!;Qg+X`jJjkO;_(#
z%E#;~8(Q(zo1BvXuX~K6iQV9II*qe<NB&&LaUB=fb~;XQ`0Myq$9WbwUj}W8PwF_O
z<FpQcAup$$D>c+J!g=_mkgs%nosyi@@s03vDG6tx1=ZE>WP)Ocq+LwU3+fL#exyW4
zyjIDJ9FLqO#-;rvJ+@|TZ_|7koVALaPN(CM3u9f0S|zXOxT@opjz6V2e%0~2jz4tV
z3wy5VSpQkO-#E!U>t;*wh4;FSo9s@Dlp8uWab0VqTTQ4u^#1L+t>Z7ArQ^PiJ38*N
z;@K*<r~Y&ymkulb=IEH<rk!22qUr<AnK}YGf;t|u)t>b-%C9@yS-G#iX0CcETRm|!
zOJ|vjs#$P+UyztO!ko-QC>(NpzgV2%btH9%M|c;|5#{`^!*|fJJ&)_o`^dMwU6=1V
ze*gZ}@t=+YAv_(zBOQ-*<P9NT2zf$yB7`SHj{SSLPklp1x{31!WzC+e(LVR7kmFn~
ze+aLS_wkUN$TZJ{_#?=!1w(i?gulnTYmZK2*!{QX{W3*XjY%sKLeUUvhM<H{EQI1A
zycj~|5K4qlG6aNBDTGoX=K;QS$g!RvsoG3^PIwtX3d;&97ouN5Ck;b+Ar%BG3L2-q
zTz=%~3@?Q6<#;z&DXZ`jGn8r}R1Z0;SXD!gnbo#+-eXm>?;P>f2;rp=IuA{Iw9~s~
zh-*xJwN?l(hwy3$bwj8f0-roT9`1T2gtU<J0AFLFn^-4=DWhDJ6YGUgKZJ%MxI<_V
zLhci8R|qxUP@n9qauOS@(SAgEErdoPG)?!Vha5|m%=?b9aEl7+*bjZwWRnmwLfB|v
zlYyooGz+1Sfx-rwhtMK~gCV>df+qwugmEE^520lU-VpkP&^H8M2(3bRGlXs-v<{(7
z2pvLrBZRgg=eea_2<=1Q%S-pq+Z~*d_OP4t3{!Jehs+SNGt`b;vRI~YHm14ar;oi^
zA;)1?b_h8_as?^rB&2f)T~d;+A#9qfF{*nAJwkYkDh)wnAv?Kz6VndQ)p$4Oa}lSn
zUQGF>t9QuRo&IXJi&h?7e(4uN{}6_SFgye<{tO6VPzZxV7#KqSacOk7MF$r{LKqst
zhZXbE$nnZtjVnU*dBsPd5h09ZF+%uisKO@`dbArA!f0x5eS0o1a|;tEjdPD0jtybj
zBsa-~5GIB&Cxp2nObTH#<snQDq2EN;ln|zdV9nLGOivs1d|vL~=GA9}oTd0#A)M%@
z&{}Y2$a&JBVZv-t<Nsa*=Y=qzH40&S2n#}3$U(ugs7wySbM4DdaxV_ylTm5EcX2IY
z%AxM1A;+APVOa>vg|84?nUb#(vYNwWp2lSBr0uqHyv)<si0ebxAd-!Olxz~RS@7);
z-bu-~2zfZ&_tDynf@6F;Lf9F?o)Gqiuq%YpIW9gD>}FS4r!2dn(j5x3qS4B}5cY>~
zAmltA^!q{O@(YcI9<Rxy*Mj##I26K#5WWxL{SXd^aGaV6;RE*Yh3=yv9Ag`Wa3q9}
z*g5lOe9VC}H=V0VzYq3VFXhm3pU?T9gz#C&d3wAv+Vv^N+Q_tK^EBE~el9|iFG4uU
z(aJUr;Zz9p$H)c$(?Yn2y>DdN8LD@dGI+l7bqHre_%?*|A$-G%%+t=XRD04%D!-p~
zuVrR|Oc#9;eiy=$@+z$%=u(NMi$8?$V+dvlVd^J@OCiv=-VF}t5dP@w;+y^-LVgb6
z7a^AguLv^1RUy9$UK9K+gx`hG&Wj1Ivs9g3>oV2P-f}VLn<3l^;ZM2BZNYy+_)Ewg
zL8iIOc{0WC3ArD_10j4#WCDhVA^1fSNTm#N221gf5JT|PkC|2okr474$Y;Rj0GX#f
zVK}Cm(GX%G=S_{qw($_^tZ0=GObY%h_@5x79)<8&cpk$^d38z}@ks+k-fp#Yp2j!I
zrwrsb@Qi_ihV#l+w~woUfu{}dCHLtwD!pGe?CqMOXFqE=SG<15Q?sXwWhi2xsDTa!
z-Y`(iKyd>#47_BZgn^O<Dj29}pp=2q26)#fZ{RrtWel`m-s*V+WjPH_NGoT6KFTT=
zbaN75;1=<2BV8oc_bS(FU^rv;MFW+ER1$nau<b~970#s-)9AOS8ZSE6T~#nX!cEh>
z>W1?zjLz<A8c+;0G~hNI4<5BxeFLu=c$q~qkjDBBaJ^#Sc&>|ECCS&0bbXXx<(pbv
z1N97U&~=_^`Ff)6@{S*+G%(;YK*MdWB-2WZYkIF4Xk?(Rfp!Mc4ZLo^YrtoK2^t&t
zu#?i#K(mEeO$0M|7ZB3yf4DHKxsVou9s_Dh&f!e;@;R-Qv~_C(Z4Af!vsD*I$fya`
z)Hc)F7YuY|rP@m^IF6jxIs+XIj509VK$d}Q1HBCNHjrZ=*T9<wx*6zXptFIlhGTs9
z&6;eQsNC$NbfJC*DtyAvpI7CZPIm)auX}nJ(3sE3cC@wO0s@Um-!jnCaK6IuG3Ku!
zO2PND`WWbIV2FXC2KpK3Z(xvt&BM~TLNdU>K*L$P;DW<}dyX@ZjfLEUC6>=ow5=E>
zSD}_h8W?V11Uq3~mDgpP5?AEyM3<gp42(6f*uWA4;|z>9FxkKq0}~7yd#V$u@RbUe
zL8u45wM{axV}tj^;+(05^X+E7fdvMp33on}7?>e^W=b;4!0Z&C!#<PZ^MrK1uJAQ{
zp@Cm7dKVea*A0?CX0_slmKs>bkz!!A;e4W6ZeWFhmC{Bf`YU`ap+lJK3CCL+7cJMY
z#~N5?ICk0G5VD@VsFUN2XoKOnV`@}eWrJ4uTiMJ62Kt!jYvLUPTMXne@q~%32DTaa
z!N89OH|b%Afx`wqFtF3WE&~S*ylY^$fjtKH8Q5=NuM~+kl`V&s<ZIyGdD{KC?gP@?
z)YTh9UGod%u*~nV>kf4tV(liD<l+0$E_|4OZHMne14j&eX5e!JA4$bOHgMEHY+n|Y
zz;MjKCk8&{<qj!5mS<FZ*UR-f1|A+aaKgYT1E<*;)_K1$aFRpgQ-z#ew5Q8Ue#XF;
z1}+%*-T>WJd}TN;8ZtfV*K&AP@EgH%g5L_B7i9YHgtQr!mS$%E{=J)_y}Q#z_6GwG
z4E$r@Cj&nl_``5q+5BSgLoK*^cFn*Q16NsJPNejrIWdjT`NZ_2KKk?QmY(yQf#3P4
z#&2QEGfoaoyHQ!a&e_R8Vyy2b>)zFMi*=c&@p4>y{L{c~!|`7AmmtX<19yf0os!%W
za-SESr!m1p1AYVl8u-sZz(A0B8i-R}S&pgx<t&%ZqGq{5f`$Q82qj?yR*FYh_!N(F
z;u@<kL4wn=f$n8XZ2UNjZWWuh${_Mp;*m_1j}2#cQ?-7s=`QuX+#EWud(uQ+6E#e{
zWFnu5r%aSFQPxC$69r6^G*QaL+*az-CJLHZRj|Y}ChBxlxkAF%tHF1aXH66`K~h+-
zh+t7c3X2ITE?B}u{ei_O?AAvqZQ?l-^kGOo_Y+6*ZZD;riRVpJFj3KTW=n2IVJL5c
zX2@4wQ(>Z#i7F<lns~v)izX_Y=sex`!t=iULtXslPKU8`8~aMv%B^Oi&r51`6IWy2
zI`OoE^zWgoum9nxX+klPVWO#tS|(mL@tTQ7tj^<xwN0d%c*S(qtlE!rF?_r`oenwc
zn0VC$2}4~W^#tn+HZb8z#Wob;mK>N^H$CYl8p|Q`e_gJ^=awcc`Q$WbRccCFGZW2C
zv@+4!L<<uh6J8TO=0iV+Yco_6Elrs7G;W9B8U>LZBTrp*{NOZpxi%)+ns|%KG11OM
zdlSD8bZI7v=21JC&Prn^6K}Ba!xV;06CG1L%S3jH=LpF)@$`I+$vVr4JhzL9uEO6G
z?3R*u7t+H-?&prD$BM5yH^*M=Cry04sm%G>3-dK{t`(5?Gtu9~853Wc7+_+ciFGE{
zn;68-U}Ca~DJF)P7;0jSiLoYznHbLQw?`ReI_pBcziU0h#7Gl0*JXUDxhj`Y={RCE
zua)UyI6l}l&ct|8??hf=PiH>&^4tlM12^nVGMy((-qg5OFxA8~6H84jW9KRBnr>pI
ziCHFQn4l*v`fbR0KWnz>ye!Zy!x9s7gwGY6C&;MzLKX-v6kKFtaVnPi@YcyUi{&O(
zaG01_%|@B+NLF$vjZ0%-Cd4&zxYh*SR`YU{JRIlRU}B?*gC^cJvB|_{6FW`pGVwMi
zf77vC-o~ERGi?joE~ai}E5tK-I$fzyC)-WzU{BkmtSQ!!&Ssyx=GkpxkBR-%=azhX
z+2MC9v_#%#I`itiDXqwPi$B0jy1AHm+AYs}CJveSfP;?hJ~551!`?S>*u;`<?dU|2
zfv(t&nD~fIe9v>r#K+W|iDPoeC@!+`Gdi8ZaZ&CQ(^;(h)Wl~(J{LSLNcjmNUzj+V
zlFa%$^Rx+mhG5RbuS|Sx;vbgH#90&Hn7GC!HgV3xw<a!`_{qe1(^=5_-oy_kzB6&b
z1eXfAY{)?QkJRD1On%_LXgapo9nD<6nDfg8d(_V+E}OVw(pcE(U<|eMdAm+dyUG#A
zfm2+i$0t5>a)FC048NQB!^EE^ZkxDn;)aQvCT_{4hpte#pMlEZTQ>bqauJNaK>spv
z$HYAo_f6b2@wbVr`5G53nQiHZ-tVjAu!6jaR4u4J;JnmYy{x&2eiL+eW}Aqb2$%?(
z&`pFm>P>{1Pkz-fvAuj-tE2Pqz(sY7b44+gAtD9lmyV6aoi80R6LCHsgz;n;2@^@y
z-NYj{;>@o9n)r8Ft5H+aYoAW%;bV@V@vb~!EI-zcgsw1%`zNO54Lfczo(hBeWN2-j
zFN{hrsnKWD{9zObJD-r~*{tJO_m6YZ3x@G*7%gJ(#84=V!eNY$U_t~%!YCTXU<*Sm
z6bqwx7{|jn5k`qHN`~=P7(K%%6-MbWnuL)N#&cnm38P*Z^}{F|M!7Jmg;70>=ffx;
zMuo8Bka_5Qjc%+M{z-T$hUrpFMHuNbTQO7;@`B)tf|bLll8UV=WNX}0BaD~Acr}c=
zVg5VDw_?8b)86!&VGtF;T4B5_gp%4q(!zKpC8;Ci=SIG@vwhx~?z{VaPY%m!5QZy^
zM!ZBA4a0DU@md&fOiAm%*}I{PdT_qxd%M;4D(ctswb#R_^+Mjpl8IeeJ^h`xNfmWk
zX<ySYnuU=SMs^s@smw6EVfe!Egz@h-MGd1R_ndUiXus3jb7t3B7hC^#IQ#R9tt<3(
zwF=|re64jDtQre^@DFdBFxrOE;71QbyD-|Pcn2YGgpnzvV@ggBKRIFKhVf<?-NNV;
zM&~fPgwZvO*nF*16~}K_srl|-uVnU3dbnFGKEvHT?CcZk5r)QUmhE`(--c|C)?2-$
z7HBu0$>|kF?=TjHu{exAVf1Bx2=mub=od!+Fh;Q*!x%u7F3<*sF}#^?P@k-sulO$C
z@(g0%IHC*=V~CKUf|LwnvJ@W?#z^5OPdL`lW2nhJCC7#_E)1H1a~_*-c>5j6&iuo3
zrc&F9VN42RN*Ghac)y=AIgCS^^3nSCu}>A6dru2vI<*?cLh8JS()EZkBMk01Wtb^s
zmf-9#=A`6vh0GJ2FG%}traxI*z1GwDYrv8)mWHt}jQwFO<CqF#RT!(oVC)LE)Q8H-
zF!*3YgZG@{3JbF)jJ08GVe^Htj)Ud6(x|60x|gy(?D)6YAV{)N$fhth3wc}comA}7
z+TH;d+iwfw;>)UiQrS)oYswD6oq{~v6~^uq-xJ1O;U(*N8Fe6xgVYa)1IxzlQM%oG
zRFn{UnWIYq*0IB2<)fa;yI&|Dgz;e*M>wn8%f8b~X_fSRL?vHVuby=H$6*kUhH*^D
zCxVoGD&#Z4&p8Qna}s|M#>p@WStxAbR2ZkJC8{)xGhuug#`j_T5XM(wd>zKQFutWG
z+j`H2(S3pTjqsKWv>DZWJzM+ou2Ig1@m&}fn48<nz42ofX#4`ZWPvuyQh%gc!uTbO
z%VBVP{3UjnFn$i>N0+*HfmS___o<;SX7Xu6^$O>cY}eH=er1!b^0kP1o}7`jx4z1-
zKHK$s7=MHj3_}m&dKfpt_$Q2qY|}7qamHw%{>eewP@Q|a-46>i5=w51{4c>fVcZo$
z`QKrFQ*cgUxF5!Y6lcj9{9y#b2(QR)`DJ_BJKR~I-Cms?3d0B^zl8!8OvZ9r2;;vn
zu9oS<np#v^ef9FOtVkF(YkDk;Au1#$7#B>0kxa#I__94ud}5*Yh|`5jeH;e&_A}(M
z9P)&PCxwvbwUAHvQz;44KW*U|3k5B@az%k93QPOPJYU6yntP#R&ah&!VjlMuu~5`P
zD+{eT|63?-A<e=o7D`wsY2hUcH7%5~P};(C7Rp#?yvWD<8oi&<CDCvHsAVk_xvRWj
zIsVYf2|h1aUa*3Nib5C*3zbql|DPV7^`e|xS+I(QszNBQCZxJx4U1kr6bcm!wJf}B
zp|%A(lY1LHlyjAv&*W$BD<{%BurPHjylSDog$5StT8<q-?L*#r7U=Ky8G3lTqhv4C
zToxKy@QIM6a$DG+KclJT{E_4}3yp-N3%)McSdg(zgk%Wjzoj;_=w(r1Xl|i}a8F92
z3TY|m6&!KTDJ0*a+E{37L9_6dg?1L&TgbG~(Lx7{P6Iq|SSY*8H*}%)U2%2QLhZ|1
z9kVQCTj*|~hlO43wHy|nMrSp0={zvkLMO}dBG_4wq>GTQL?PV-i%!jAl)r3Sy0+uF
zpMCD_X`z>eeir&$IJi*jZK02azLxVxmDgYMDv|6n3$;LPU*%g}2UxhZP#b7r5c@{=
zw8uMrRZ6JLu)rdXg&b;O82h<}u!Z3kMp*d3!iN?{S{P+vn}zKbMq3zTVXlRFY?txM
zSPK&@Otdi0!gveUhP%;1t+`0szc+o7h31R2$rh$q@Hbb<_x0;E)k1Ywo13BRX%=`m
zU2ulrOhF1~S(u&TbJ#sDc`2N4VS$C!7S>o;$R^&KetdHJDhr(#X^Sj=Ysg$|VTlm(
zr52V6UoN;paAhjiKf!nMugr>cZf0Sfg{>TDy<I(Lv?`~nEc|*4#0`QQEo>4($z}_0
z3x7v&OG?fqwf=p53EjKH!cGhCihP%a-4^z;78X}>TArU#vP>v@4_my2N|Mi`?zeD&
zjb-7*OPM1VX)N=VK0ekc>!-~3EF5AT7isTXIBbE-yyY+FGKy#MOX3j=A6YnW;X4Z-
zTR6%&+`?%K$1Hqe;kbnp7JiF(Keg}~$BXo?!qwH+I9+dOe`#M<wd(5NyWTG>oT-p=
z(!%%6)cWPT?X!JbKFK;`;Y$nOSU6|lD+^y+IBQ`}FW>B~jqbMby4re4Tv;wkb}Z6{
zZ1<gBq<zcUEz&+Zpj=>977Pnj=Cu03!jBgIuyEbNMGKcK{AA&0ww>0l$-Bzxa^8;`
z<oseGvPgS=vG(n~+{?nR2woLr)UQIWu`WV>7rgkFmr*w?+_Vs)w%7P>Sy0O7eCf-$
z&kOC#`cv?>;9nN*2)QfB*uRC`6J*7ylLr=v{|G*0FBL*bz(P>Co|3$}SktDYGpgfa
zjdiqG9!{hYC=u8eqMQ{Yc(~3Nvk>Qvl@H+&BrGH?<cZ*k2>!M3pM^&j9$UD4AoIB&
z+})aH9+>2KR2Z{ZJ2>38ak2Jf1bHJkx>zd|alV30yy)ql-<L0fs=czFiXgv`0)kHq
zQvQsPf`ZQqK2z6QX0osAMbAecdy7U;E`sMHC>FuTX&o6=JOa9zFCkbmf>J_C3qB{v
z*fJ56P4P?XeB~pUxWs*EQ$~dd%^AG(=Xq(d_RnGs5mbucg$Q1Zpt|H=If5!ILj=_#
zz^Tmpt1`G5?8zmXdq`HrB^s5prB25h5xf+^mNi*is2{Mr{VB~?D}t9J=pI3j2x>==
z7D2}dvLbjTf;thr9zo*>UX7q`1nCj1o1pkZYKH-?&;+Gk1jPD+4Fp{gG!#O)JA&6z
zypfPnYg=`kto*kjqe%oA5%?l#6#;F#nntj^s`tXv>a|8{vk00;K*G=>0#Ayo5wsNU
z6?|=p#sq9TV(SPBO;Z@!M9@}vJHhrTc?ThHM35;YYl+6h*%9PK&?SPd5#&bDDdMad
zc4p=i6xQy_xlER`Qga{c`(^}Vd$sGv>Wov?O;TujcB*X7{b`C8!CMgwiePXAJtOE9
zLEi}aMc}2uP6RYt>mzvbPNv<w6SM6f!GH(`N<Or18@xngCfVba|F$|;84|(J2u4OQ
zDgqW@SOmi(7?HXt)3A8VWc~W=(GiScks=ru!4FfFW)qaE6BJ%<NV85XTb}7oo)aUO
z6v1aUKDRMBf+_4LHeR$bHG*jo{2akA5loL@Mg$*3@L>cqBbXJz+Y!7I;r|yfCxQhL
zER0}o1oI-8A938u9WT-LdOKfeR~z287<SC^Es9`q1e@51Jbj6_B!aJ&Xxac}DRU_1
zUB+e=vO;ie1S^HC5?n3FWNRYW{$no5x|C#n1RI2JOiA`H(b8tLzqdr=ZTGiY9SeW%
z-NNgRac|>*{UdX01O=9AU;paa9zlbuxeYrjJ0jQ_!LA5)M{u}=dQgyLkC43)>=Uv-
zB|i|sr=zo&fZ^Q;-b=|333>m2hl0gwcRUioM-iNi;1mZPrwi&ig3lv3CPn&$Sw-MJ
zo6XN#RhDXvmuh@SSlrxqoULCy_e2C=L~yZWTc4H9^0TNpOSKV8wbK!tVQWV4BPXkw
z?Z2cZBlw!FQ_#)Ip5;it;yqE<x8ao9WKz~Q5&HMbIw$z8;CaFC1TRGJy%45ZzEryy
z!KDa(ir~P=tj%xu{@d@{@vDbVEWN9D`edngIf5$@<gxLDjjIv-$|*DgKSx1?w=mp`
z;C=+ZNAO1k*CV(=`BLromR|1XeC|2*(Nb+tmz;a$d^b7EEz@pA@TZX5f|UFv<c{E7
z!M_E+EbEK;iqcQZ0}c>QIM1m~mT8@qX$=PW0uclwFe3;@Q07-v=e!Yt5rI0j>&8(z
zMpKnezp1n@6J4zcA`v`_;Bmz9LSu6zcFCdF6vjp)h;bqkoAfyE0x6#4T_DB(6T%bu
z`?(Rzv~K0pPnPFAX(O+VA~uTJ$Y<jz8&BJK#zxwO%>1@fh61+ZzP=Y7UUpV)tjsBB
z<5?SpY!tRJf0>rPsnyI3b=NZO^JQA;p!bcIzPU}+Vm6A~sA!{V?VJ)e#yzK&w^6}H
zNgMR^Qc94dw2<cn%LtYgEGPK9;N@i+eZ|n(&aRW0gZ5^^MkO26fBzTSaz&ICscfT)
zjgdA+@p3k*+3?!%*{E)#hK;&5>e+b7Morep#w#`y8?|h_Y@@c#l`+jfLMgl4v3kDz
zol<kGLSIZZPdixZytj^xS8aUulX7{O^2;s9_O`x_1~!`8Xko);qoIwaHk#RR^NR6o
zCZL}vlGkiB5(#;_jn`AWv5h9eGg1=wH_q>qe!iyAu~m&f6_1TyZm6n_mNx1y*Rs~P
zzj;Mzy<Fq>N;+j~Wuvu?Y#TW?+Sq7o;|&{`HrlZyot5@BI@p*pQYo9?SN*InXO^$-
z*9r^J(FPqr6}_Nj+4$$8(xa<#;%CQ9EZ0US8+~l_wb9u|7aP57^tQn(cBKyKQ|lL}
z%5U1}Ci#<h7t+IqCgd%_o~c;w=Q(iFTk@*okL&HPlzuk)+c-8t8NqC?DFbYryRJ-+
zXOj;U$sikpg-|j?$WR-@Qj+09SeMVwE6q<Uqiu|_vCPJD8)Mm{Y|OGT+s1es6Ig3b
z@-`;gn8cai##U+2-pjSc+cW1b*N!gNp8cuSG#k@x%&;+&ePdc$k1N?t{pzcV`okvQ
zw*{QOZB_Bku`$=iA{&cs%wzYqvB1Vc8z;AWD}3j@u(AF3%eC7tc6_#eCt|f}IZJFD
zDzDb{_?EI=e$D14x-0cN9Sy51Y^=2L9%F5+va#C6UK{&ttl_<BgYO+1TWqYgQFd0V
zb!>uvJPhlFY!KXNV^d1L*~Z)di(24gvip~^x7zsa6>nBs-!>cm<r>3wAv*+j3huJ8
zTgV>4+;>_r*?t=bY#g-lu8jgKw5{WO^YV9Eyx;f23XK)q>G3sQp}lY8u#Jywd~D<W
z{=N@vd}!l{jZk@Yx{=v^h4%17=Cuc^_oDYG8`s7sHa=yi-RCH9Q8{1FNonI(Xg8~=
z)bP?3+Ho5v*sr4K9mN+^BPW(93Py3t#%UWt8@i1%HomlR-o|&-(hBV>8)t2NW8-T|
z=HxV7>gJ9wS7Be5);Z^Fd@G&ppIzQRyQr&1biH8XdmDe+xNYMH8$a5(MajsL{Nnk=
z3hkneOE!M8ab<;8`eODqAwRRULMXgUBK)f0uPM1Y!~L5Lp7OikAA;8fZwTHL>~!73
zG{a2~m-qj&affAF>b`5kSfMSMmovDBqmyS=YJYRSvT^E{T!#BX9ti$p<6%nf7ZMP(
zKlg>0iH-kkJhEZh2-}F+h}*DiL~PhLqBiapbeG@e$yZ11J|~BK<Zd6!Lz1wO<j}tE
z`IikhC#Tv<t>sGXt(6+fHhrb`*hZcx@<s7f6i-C)WE6R$DB8|Rwr-`y44K2xm0F<!
z9oOIT<d3326i-JH*^^EA_#z$G)ok1GsPEEB?b#>_Md6B~VHAa<C=$gBQM|~kq9_(c
zi6}}&@y|+4@v6n6X#Z5k;BfAi!R<;#Q96p}q9_vuUBR4F)vupd=?8{8e9A`g^@w)#
zS5q#Emot6O3ziqGAV^_FA&8=q5GJOuauijfcqxjSQB;khS`^izsKIXbhnHS=imuWQ
zpYdJysviz%moe8(w>(M|wRn0IwWD~fc<ZgwD%J4)dL#S!;q59`^rc17W|hY9N)&a3
zzbaT)uwE**zK{k{&{B+v-BG+2g&IZ6C>lkP9z{kJO{EO4N6|QnCR9{srROS5Z>iQA
z((aiNZhF^g7De+YT14TAV%7&<<$BlUtF(7lX|u+;cc^OLODeVJjlvg2_b7Tq(JG48
zQDjAt&8tU2cRJKS{rWjg2Kw6a5(9nh1lvc^K?o&pM3I@|9iv$1RVk!fp2h8bIZ=Gp
zQf0`EqLc8>f?ZPbu2C)u{ePNnY~uZ1CjNS$PmAKMD0)g18<AS2p8L2v(5X?MDEdb6
zcNF)c=odx*DBh0ZohSxGF))h7Q7nmKP!xmN`caICVn`H2qt0(AhedJSmvd^S!mz4}
zZ$N>Zd)GW8qZk#%#j9N>M;#wKf2FIVMUC(E$r=*{ajf7t!SPW{5HeAav6G_CmSB=8
zQA~|ueerhFqL@p5#XDUNX9&&|Wb7;<vjyh}(jgBM&x>NdoV7rZl7&JRMN$5X3OrmI
z#j+?iMG-sUT^_}XC{{+X{dM)v`O4wnJj`V7Y-LpxU1FZqQU1VDTO+tukcaDptQXuM
zxRH&1(95XJQ3U5HlM8mVS7}?K*h-y8@p%;6n12)>M{zWY9Z~FzVpkNqqd1aq+#*$j
z+GtSPp;-zw7Tcb^CyKpM?2BT56hEbV-xoX}$iss|-lfun97@UQMCh>a4+K9<$&U#6
zD2n@5E>Axe#V1jG8pWRRK5qJDW&h+)FgJNC)br)Mt{#u#L=@Me_>EoSn&*oszKP<T
z@RJ;0-CU=lI4$Ii;Fp452{QKUD9)xh9WHH~()HUY&X@LGB1ZA-YVA8gk_$q<kK%`v
z<VW@#;ob!b6R@a1Me(x~{ujZ^f>#8u3jQj{R%7CFzk7a<;tzI9s(nyeyV<R7{IAgs
z=P~c5@LQ?=@Mjdah5wb3+==3DieDJ-yC1~^PM9$ij^Upu9!3#mZ;8SmMIZ_@iZB~G
z3O$NY6b9$9)!Gx&vv49a_^G$?YAt)U_Et~d+jUioQ*jhFi?q=<YPDvy_SM?!TeMp1
zR99^=D?J`Xf-`muPsfmq;$KekG31Zo(Cjw<aSWF4#J{dQVneUi9t-A)Is6I1Ck1(!
zH->z|{TDqv%sub<XlD91tNB$z;}5o;iJ@Q&&&Dw1qE{K4Q|ws#OPy7Qe^+ZoVkjCz
zofuw?p;!#XW2hWMl^9CIP%?&6F_eyhS>1b8ZQRfGptJhiH|ldSXI8A4>^ktiw@eJg
zvN4ns@_dYc%|->`lvff`Q4oSJc2QsW9}#4lZe!D`#!xMWv>0BAp?VB8#`@~5&RVg;
zS0e^$?<K*Sf;?1Ws3rX6l%#eHW!7knYFbzAe>A(yCt2ercdZ*kJ(e>DH*;R2)sN9m
z7Oogx?%-{|M%y<xz2DLHhi9cXKhgd*R(W!ElgFM$G4x-ft$XZAkKu`$zSm=zwMJuT
zETl;c87WCqA<bfFF63=VrpC}RhFAje1iUf$V)!7A594SRL+cp+jp4r-+QiT{hMh6&
zilJQ$?PHh_!^9Xm#PCK8ePiesLuL#eW6)xFD~7BXw~inuhTNFr&6wVAYFAR}I+!kn
zJH^nuo|l_L$UDb4O@XAVAjz9Tx(Rj{>>+q$jn*@UUOYF3K2*_}^k>gz(xoteVnQFt
z-)>QId#KyjW%Q3>0DDUeL)lC*H0@h>Pz-}(7_&>E`yH0y^`F}_*`rG8`{TXCVi?W>
zpZ2DmR$FA`3|!Q1L<}Q&;t!rtf+VAbjEP~akZ~#bcp<FCq!=d0FfWGrF-(bJY78@}
z+Zd+BFg=EaLwz%1_&VzOc8%7Hj@@D&UXEp$9mAX$=1N8Gt<jpqy0Rj4A2erSyB=pV
z7x2Uw-icw0Xm3#rt7BLrd~pm*VtBkpV^}I=nc(smR;1)BV^}48U;j=_Mmy7=Tl<E%
zd~0J^7sIlGzV(6|1UCw95@gh7cFq)keyz4OhHWuyk6}j)b@TWZzo4#;dg`y$SWc>x
z?X|9mx;utFF>ZdtuQBY6VP6c#V>l7R{umB$Hej)1I2gmbF?7AFz86F7pFM~2`W6g!
zcV4Rz-(2E8%q|zhXEA)v;e5yQAqUj5R^_%eJi?At!OQSb3?B<WDtIg<|0IS_Q=GO@
zqt;~h9p##_R-6B{`bCV-`RcbZoR8sT45uXLr?l+TF>GF|oneh0xBOD@E5WY?DLgCW
z8^LoiytFr)!tY|Z5X0pdu2BD%Jm1GKev0F&;s-gT<VPVFW4M%({1n5_DgKKP`g{Cf
ztv0BEdUmZw-#FJ|_$`LNW4IT??=k!l!>t(p<RF^oz8=Gk7;Z|LCpO67f0hqMx_)-J
z{aaJrw`2G#hC4CbrK%UX&64f*)lH)l&bw>1=!Hyb@6lTAehd#{2*#ju{*U2d4E`7b
zF=s<NJykMnd0MTy&haDK^{AIk5Q@QwA;D>!eYH@#0wdC>Mw5fRZ&o-4O9**Hh#f;z
zNGv6f3t<^vU#I1+({5?mZNlD1?13?KilcKJdE$5?j_PsLh~vpP^2Sjrj?!`Di{q&{
zip5bp4zrk=KaQet%o^z~Acs#2J|oE3f<m4ZEF@Ssjv}d8nqUV8yN(s{m5Af<U!Ic8
ze7J8$amSh4&dTm);q2$)C=<u?ag>jvEGM^8CCtMm%f&&%w<$koPUauko>4z_`6|Rw
zF%HBXzi{-($NNR4IOuH6x50V6dLfP%<IYW_vLHznAyoyd3Fee4@lqT$<51&h8HW-_
ztvH&-(JYRa<ER~ni^<}s(_KxA(?&IO!+@Mu<gkw5tN-KO)w*%iOY!<b8VGVbB30y;
zYq3<dmuI}jY?o&=iX&af>w=Utj-yG6X9)4t?bJMu7IE-57M?ghspx&LnEGoqUkCVT
z)V8ve>Wy<{39aL3BeiZ7N5@=Ww3Irapvop_8%Mi1=$@{99OEu|NWT0zlYgV;=^f(u
z`c(QGf|-IH1+xUR<H!+`E69}GMb;&bu5rwbV_qC@#?dW~5pj%+qk9}Z;^-Ae?>IE7
zahLb4IC{o0ex0^_omS{=$8P;*-<;j+v_5h4jiX;2{dr1h-?1&8R+~KM4|=~?r%m|9
zvvEn*fH(%SC!BB3Fi6N?!69)BP05GFF+9aLhP|WW7#+uqIA+E%CXTVJDKAZ(Z1uF-
z?0Igauj>4czPM9{330v#W>1V`+Gfur!O4PC1Sy>QKO#6ij+I+H6wZocb{ye#+MGD9
zuhW>-qnge~mIukq%5Qt-$FU%eU2*J=V__VN;#eQYhBy|-v4kxW$Fex~*2xHe=B&X^
z-RUj9UfchRhmz$YUm>_saFyWdIE^cvQ`QQu6Xap7_1cVgJR9TK6vyT`XnfIXy~aAe
z%>slx-N|dJ@37W2)h&Ws<JcyIlI?NqNb#K{;z?i+bB^O+9Ph@lFOEqpSR4l=+1Q_Q
z*VR;)4tDK~s9V-+@5ON_j`!m@%sPJ9p2aXPwcmNzOZ_zZD*MtF&u8nkBXN90JtVL@
zfsf-j8pmr1G)mwYJ8c}vIR1^}(>Okh<L@}`#ql}2WgO?&vEw)q#}{#&jN@*dPAl9U
zSL9cB&hGa2ZS@o@J30NdAjz3HzD)72*ez51tdMU6ixyJP$MIbp7vlJywf?i~uTQBB
zpI7M<d-uugAL6(Y$JID~WP6>=X1FNilHgB*KgaQlkjsL7-pORLU*nGJZ~A?@Ddbul
zzX|zW@DIW3f;R+zT(A8v{VmR%&#HgMaa#!aUqbE(-W8l%NWCA&gE%5_*m3;B@m@fE
z7>7TOazC`rZmiPC=txy>AP%a94!VPJ=$tyXc^N`+7%6VDm!`PIi8`$<6GY>P#SxDq
z5$B8T8}z92fQ@ybb(4F!W!`L<(L^o2LHjR`M{!h1plSk-Ir%40IDsMwJdwbY2|SxX
zp#<t(X#Ls-EpGx(*HH5%Fl}GfQ-b*gd00Tm(}K?=P*BK!w^c@!s^iVtpwYkj=w&%Y
z6DXEIxdfh1fDXXvo2YmKlUMnwweglnpkx9hr36b0J||d4u&f{x4Bwy~8|E&bK-L-6
zoAkcgD5pXK6%!zVU?ss91Sxz`NM*sCiSB9%R8OE*0xu^}BY~F^sF{G00G+F|?^W68
zJF&xizp+Z+@7t=Y3pZ%B6G%(ol?3V}oTj1Ii{cMFOUkLQCP1&?4>xBVVR`!I)}@x%
z;rr$?)K8#6in|hMDBPWrw78p<p1|t~Or@3*Xq-S3UOj<P31lSDG=ZE1auaBlK=TCJ
zB+xd2TbXJLs;;|_mWCcVq(l|cl5YViiBCu?!PbH+E~xF;95=nR2%A~b*ZnD9`vf{9
zK=OuQreH@w3bTY{3(`olQv#h67$8|iYImgNLcXuOT@vV;z?%tlOMr*H1iK6N5TsB`
z;H?zzDWv`$FXg=x=p%=H1^cDa^cS)=OJ%(VCNM~@I9QO9Aqfl>J}e~}E@VUkTYvO0
z!RQ3WBrq|7NePTiU|a&@6PUn;o|0Dht9CT0c<sGRmY=3Qw7e+PQJpNOPf0ii9oAuQ
zy;~lVgU@)UCom&{RSB$4U}gfd5}233e7<VUaL-O)P6BfiDEi35t=$Z_?{_`FLF12l
z7bLJ|pSMGQ*UAJICUAR$#;_=X#ln}QBuf)mCVY8Hvf_Wl-QnL28c$!7z}f`XC$J%b
zU;g#-q8q<g)+JDCqsCpe8(FZK?i~s2Okk7n&4LuZE##d9wg}mpl5b03dx~ERd0ZQ{
z)f3XT7RcF}>D$9G*xGwAfp-(wn{e#J_X+N2H|t%DhX)eQo)DU5zn8$7WxnGHoJinM
z0`DgftF0bp=TCtC5*hV@B*+-6(97SE1U_OdhASV7@Tefu924@1;HL?ECgk%}EdOEs
zMFJ-|C$QoPoJ!zy0zV}1BNHU>WddI%@O1*uz2en2YFBrsmz$79w;^XaQ%y|cpLWT=
zN#I<<apuYJZ35?oe<ye$CI4Q?)Ja))8+5#wz@-F!N;n@}_@6=Eov;3sJz=A^znXeE
zfh!68p1>aoTutED1g^24B+&m&AD#I$`9i&z$h>_qi)A=+(06QGCUdx+z~2enliY3y
z-W0qg_^06Q1pX4j^ml~Z6@2mgcK11;s;La21Re<gNAO`v?iUge3<~P(nfW{Y?<^w$
zQ-onbOOR0!A+}(YbJri)6ebc#CNM0C;Ys|Pz<=z|Nfb+huf~r!Q6%wf5|5<?^CX>i
zWOzczlY)5#^9eqcM1CPmQy___g+G&$^m(H=Cy+u(=NHv=XFAUA3MU=A?;?V82No-y
zM2RG{B;HD*WD=#4sFymow2+!fJeNe7B+AO+3xeeYpBF4I$g5XKqGF08iApJc^j+r%
zpfAc{<s_;IsVZ1au)1IkL8g2uiDqv)e-~v?lBgx}ms7E|g`^3-l0+RLucl(_3aPNC
zWc?%>B;iVef4j>_qG=KhCCZ(IKiBnI5>II^hDJ%G3x7Q&X`Dn8;bY&;%LM$(ZL=g=
zCqcr{Tu6%~JSmAPq-7FbAwI!YsaRH_O%iS8uw4>aNn|I{UJg45z9E<?*irEI>qY-}
ztsFV*Dwr$SiLEAt3A!Zlzm#u^q?=&(RBVqVcYQl$?wJI=G4~cd^h!ET9_W37(<ar@
zCyBly?<Yt}|0D(oADEI1N@B3^At}kwB-o%#JR*saNnA_fw<Ja-F`DYVqnu1)OcG<0
zSkKO!#JD8JC$S_6UXgAJCL}Q{>G&&Pn3%*Q;geI6DM?IC@o7m+7d|5;nJI*xtY!<D
zlakL(VqS{RPhvreFBGyUiNz@i+hQrZD1THv*}Y82@+4LWS(%cr60%xwjo{iO)(K&m
zdE&+-HYM?K5|wit&y$;zIGDt{(zV`B;+-V6B(YTv8M`})Z7IH8$PU4sg1eG<Su4V1
zd*pDhAP@Hm*)MoNkfWIL!<CA@mr8ReiT8ycPDwsU;=>d_BIKha9&FCT6Is-wQs84r
zd?MsiLCQZ9^10w~!4raC2sR&8_*4?7lQ@&amy+i>!LK;D3c1fFacFGX*GX{cgRZc@
zNuu=dv>_85|JdJ3vh5r5oKNDrBrZtQ_euOL<o|fO4rnKe_q)lKWD|OkCUX%RtPoH%
z1P~s`3kjXaqqis^(tGbxlnx?4dhb<HiXehC5d~=?MXFNmqM*RbX8(7`lm9t$?z#Kz
zH?y<Tc6WB>`%XwaDe;s<Mm#OanH+KQNtK6Z<>7bfv*&WedC4!NCAkXbyObj?=ZFV6
z;-4IGB}Z^M)6Y4s_0Fp~V&?tKYdNA$pV0Lj@k5Sl9J2V1*pE_jLn2Szl;l>9xGl*Y
ziFeayf65WFll7?f3rCC`@mr4gon0VD{FNjA$PwI}`)7{0)HJ+zkwtIa-P>f4GyKiV
zt+Vduh>357Y3PjM&q1MobHu|Op(cfv6nh7R_<(+t;~H3aEHOu7Qlc#}CDD;cH6<xL
zNmrl2n-oe3l|)avUc&uJVI~Ew-xx{ZljJ`m;en(GCdHFU*9CK^i<K)Wh=nBPmY63g
z@=B6VBG2ZRq=3YNNik?{AquzjYF;=go=A#)9m5PoBq^E{#nO`ENl`-bN8je5LP^Pa
z(Y&E(sib%+DgO1~p$Dat;_0OL&JpJv@k~-Yn-rr`VsuJ8mlV$@MYb)P*`iERlx6uO
z-I*dQDPEvXQjAWDa=iDXsFxJ=nYW~<K!v1;Bt^xfcrocVxtEjTrKH;*D<#E*fe|+N
zWexI@@F~EvuSlJ6Qmm=cl!sN4qH0pqOp01b_rb~u<Z4OrYLed5XrnAzBPlYHoT#sH
zes4n}B{Ud#@>HYOlA?A}#90w%qnXtIJF`wwT<;s<ro3p<ZCx~R6Ju_NM|g?`2S(AH
zLQ<@rS9kNHSc9Z!m=v9oqBB!YipELNGAUXmMU$k+N{Z%5(IP3%_Kq}7ie@a>MisK<
zAthaA*6lw!GJQdUj<fkH=xivOyKlI4QnX2mL{hw-6qiKawn_1vUAdjadSwc>Pl^sn
zF|b{jLf6#N1nZ5Y>!+BUXFDd{pRGJgd^0J!P?Hs%6mKO(*QDr`6upz;r^>NzNl|c0
z-R?>8(SpSP`iFZYMbD&|)G~ZICrX#lbRbKkyM2<PZ&LJ2iasUtbuc6SSqK9{gNB3$
zBwZ)7C&q;6O_(^CEifsDCk1W84o!-$2ZR}h{im}aLF>MI3&yEGA}L1l7N)s&1$j7z
z3P~|HDdsWrNimL9lN9eI#dy|lQcOvTsYx+0Dc(tn$!rEgLfq;9E^|mBjpX+W4H^`p
zD_asC@+`x&q?jQ!r?VF1Zerq0DRC8gN2okIDdxzt<nPN<9o827AIoQuYdn@}^OIsh
zQmjvk4N0*uDHbKg%A{D8bglX?PKsqou{<f3B*oICpoM>4nl}G=iuV8c;8-EmXs(Jj
ztX9i>u1SiuN!O$mHP^91rJetq3tT(@{~H_Hm=v3m;^U;)mK2+lVoOqNWp%JG$ma#U
z0DK@5`7kNi-+2|L!^9b#m)p*9ASpggiaklOGbuh{+4c|bPP!(un6X_l3S;p?9JlFi
zfS3ME=4AX9H5bS8v7voQ@p)40Pl^K^vTUK-;$Tu7N{ZV_aVIGbQ<<qH#kWauBq_d3
zisMP~O;Q|9imzD3NpXyw=!(0gUC>kEb?d=`#GLP<k4weJer26VijzrkDk)AU#fl>q
z{Ug&CB>TH|$a?#?*!TyTuV0Ry<v@`X7n0&)QrtLionv_>T?dGrzi`+4h3CYX=J#y;
zNpUkNZY9NK4rTqV^8;O{hgan2!33{zc$ECQ#2+O7m_B<WDSkWTUYCw3xo$Am!UUJY
z-DTrXihD`%S5o|(6u%_JAH2;z;a{no6u)yA91yC|AUb(%{U^3%$1cQHH;5h|9{E%1
zys#~M!toY=C&m4wa5zNUf-aCAu<6cf_K)m<!-uyiKgs%+MS3~*P~szrk0s_vOiHvR
zrX;S}5aY50k1f2mP;K$`_nBOBaM>Hb^GbZ|gBDzdVc5cFix+M2k}dqUFl|xD7KLpQ
zutm@od2Er_7P)Lu<JtIo9jx58X#c<XZ4rNVVS?jxK3n9sMFCqBv|TGqg@10st&Wd(
zxy5pIR$bzBG<d=mMQl;R7Ejuus4a@w;=t=xaa&C6+5GHwcb8@D)9zPWsW+^Wwh*?c
zV2g^jfbIG$e%=<`gZVK%x!d9?TaYl6mgH$$JR`}o5}%W(w{sQB$XJY6RuW6%3lhso
zEH5!6ksf$CUrmR_+`q|;RkFp)wusxJt}R}%Mc5YAZ1JisD%&Driz>{OEgCIMaLxS6
zk=Cir&A1%>ZKrbIg^9q8tm?M-VvJS878xwJ+ASN5bQi8unJe3C+V0x>S`uHASX*MI
zEuxatkr<OWcc{A<zMd`W^IEoOY>Ni0zINe;w%C5kT>-xCe&(VIQLfbbr*zXMw#c$Y
zQ(OFRVdCG$(eGDVoBwG;q{WrywrF9CuD0lAi<Z2FR#rQStt7T)ls*<sShul7TRu7`
zx=+16(+jq@MF(3XZ1K7+-jbS>zhR3`w&-k&j;!dl>i$m(QTV3q+PCDe)<qJ^Zw!ue
zYsuoF`FO4Fw&-DtbGA5di=MXVWsBvuSYeCaw&-Jv$+nnci@vt#XNys`7;TIGwisZG
zA+{K5i-Bw~y{$pE7;L*%<*)X!xO|sB4!DeV@500|TMW0w2wRM#n(X_XPFOpxS|$E$
zvx&=M@3}a}7GrHO-WC&V@wP2qJ7{s)>NxhPV^&u6#yt*MKQ2s6w8cBNc-Iz_SkcEU
zx@6sb#9C0ZW#X*s9re<|D1}pPF^vUfi@CO#Zi^YVc+VEIWwFd;%THCF#k>2l{vSWo
zKY7tz0@Q7i%AWPUE#^p_YJ1}|Z`A*;PV;%Tm~V^4wpd~dI_Fwoi-opW#0(sazVv-&
ztL~x27c&nWh!46^e<|DlrA)3)StiN93ln_Q(nRM<TdcCh4qNQB#cEruvBf4^Y_`Q(
zTjX1mSZ|9ByhO|BI$ON3C~?fr3SEwFWVhWBpH))nU8X6`AZ)S42ka)c*k+3lZL!rB
zAK9*jga+@$i8pgHX*Rs>BG>Opj~(&r%j4T^(PdF$^dh%iePWAUwm5E!Z)~yK7N6SU
zOIsYZ#U5LH#%6DeBW$jz7H@qPYqu%BSKj+RiJ#kIza$4F9+Y@UA{)tJTPUx(e_=ZJ
z4%w3%j$df;H}_W@rfhMHmGxAVUYIBR5G&9-RE4-VwqjA@ge^|m;w*1=p>@g@r)_b@
z7T?-}&VceP<Ofc4_oBqj6Rst(W#Kr5-|>E@$9Y)faP$KE7khC^R85KRZE=aiSBjM=
zF5BXYEq=1a&$hT~i)*&HX^UI7xNeIdZ1JNlZm_6x#a|p6=jxh~<Eu4k8-MC}CM~oO
zZ`)#B<@g<2+@+d`eR4m_^*qDgh&TQ<i{uwu{K|VwiN}i)XA3s{%@+UI;$PmvqQvj4
zi+qtkB>riOdy@Pmk@CN7abNNW5?A?S6y92tc*xP|Q6~S|Y}(%Fku4sx8EkKqBQYt_
zmPlbr5=UaqC3RoZVxE*6*P9Y*N@$Yn5`z+rl<-MH9e+xgX&y+q`J|8`S4!lT@;nmr
zrgid3!rw^+Q=$;x$y4I_lqj4MPozY#lqjAO4~jG>k`hHzVqcL4HLqlGLkdaf0?`sF
z@nlLon-aAbC!VYlE1449PEuh>oLul!l^7(JlK50gl$M0@rzLqtV&TP!*B2+M^beOw
ziLxmXPKnAXVWq?iDN!yZ%BRFFzw6uUfB9VRT{Id)Lx21Y8cK-@DRE+SgrQ<eyeRog
z5-X+UFQ>#SX@2Cm8$FV8|KYy9II(?Ktn`*xwUl@@CEBD!+mxuD5;anyaY{5viHww}
znG%^P5#`kv#%ra-YrMyln6xshMu|A>fHhi~Rq<lx$mimV7AICO&Y*3#Iw=ujQP*f3
zPr1g%>q;c4CrSO3Xdp>LiH*`{8!l^=l@d);qD4xyOo{B2I}zF}C7P$iCyNuO7ANSL
z<;6zs+V5W$Ct9)Umn2%tt6cs*_WY7Wq4UkEFG;jZiS{YcEhW0AM2D0}q(tYGcrztl
zPl-2DqGL*QVuR_FJ*S`5`J<MvFG-v^ZShTP@)7IBKVw}|;;oeE%Er^j8g?OTZl&mw
zFRYe*E%Vt1G-lExC3>dB(3BV^6?&ya@092xImdGvw;#SF(KjV#ElKoaRUWn&`b#n(
zB?hJ?gCrR&afrnBjF=K5QetGvb<)ktZCH{ZzIrk1>m`XFmn6od#8|dKM?B$(w^L$V
zN?c8eYbh~4B_{CpQ({|6OiYP)QetsREJ=xXSv4s!J0;#viODH3g$jcsGpN};{9E_X
z)RdT(5;Lb;)1@Te(!`@B2_DX5&Y9*y>zA)H%PdX2ml9jP&dOYxn3EF!ONn_YF+U~d
zvOJe2mM%?vzBDmpDQl$Jf|NVza#7YoHqOh<*cd9-k1k3H4i_X#Q({?4tWSvzDX}~y
zR;0wLlvte-H<u<>rbKFKqVTc=J;~m)v(~VYFH5XViF4!H<eY6*Z&_lU<h5E^lx$3i
zO>877v6X$6(+kVoy;_@@!<5+nYW#zgJJ-SB3<%%568$J8xUX~8vIMO%{&T$1cJ`oF
z*4HU<EG2fN#7?%Ql-QLLpEGVs>`sYK*^yJ?;<CiRllAtb#Ahk7mrZ?Ggom5XWo}=V
zAa;1i`n5@zX4?;>#KDyKA|;Mcvqkt&O04M=Kb)c?(F6&@E6>LAEKhuy5=S|1EKiI)
zR*##SNxqVYwU#H2r^GiYaXuw3ursE_N%p3L)^{m!DkV;*#F>=%mSIrj#>VWn%M(ME
zCuS~B&^+~7R+;2mKWTI>B?5;Vty`WT9$22Zm=c%dJ$}!-;NkMbXCJ$sb}y&I6%HDW
zW3(Z|-vrlF;s>dg-w{8i#Eq2rHzgjjF4(DAytKi~IvQ`$lHTo<xRVlh+0xz)G5o|q
zpi>2spVJZ^{+e>_X8$IU<oA^LBhCMm<X%erCCT3s@2Af`kmR3~=+QUCh>!R*;q5pg
z=!l$@NU~EqLUV-8=8+N}$KCAdq=Z7r{EUqsTKASG{3{X_hg(mtNX)C<((8!WiUf6Z
zM{Jng%;yNdBf71O8IEgiBC#SN9>r*I!*oQ;85UiF5_37O&CI-x$mh7`dU887Y?ztH
z5q~`A{@Y@?l^#)$za+k!)4YJ=nwBc)h~zk{ki>iwEVh9njwtGg9**egh+>W??ud{h
zDmbEqBc61G<%l=OM@l+EIN~`+&=x2hQHpY*(lYQ<RO@X$&1oM;l$QMJOEF3q&h9Bx
zIit|CQs~-$c0?H&y{sb+S1&|^B>y3E_<|$KIf9NG%1gYoBy)7va79PF=!lMv+uC1p
zL?uTwbVMUZyzGcq98t>=uQ?*jvyQ0hh-%F6s7S;SRUAQc=;T}ahH2e#)zR3n6^U0J
zQNs}#j;QVk+I#fQbKQW}bX><Y47AA9WJJ@hXQQ<pk?DxIBkDRL%JLjuunw!kaV<De
zjS5$1SPR0@IuqhdxgKkzPpE<8+K{a82%aTbu);OS+}IIKSV4|x<%ldtH088dk5F?q
zgFJb128FX7(aaG>&(ODTS9@-0{KVi;pPr!>jv(3FqFHO!kt5nVqMbuC?;+Y%X85UK
zf%cB*AY;AZhy?4-)AV&Vut8z!44+tygod?qRcJ7KVzo|==*%kPU39X#vY=X797(!3
z?vU~pQy3HH7TRu(_-I9fhB3RdiaS{^x3_vZqBrlw5lbA=#}R!UF~t#69nsGb{T(sP
z5yRQK95K)lcUL5aI^y_>#30_|?2N&@(3L0$*dg+elFU8X$EHP;m5C9K80m=dj+o$x
zQH~hxh_M{-9if+LHbz!!<&_EYCs!tFJ>PsB+g|sUG-5_)E<BvboOcX!Y<!pH;E3~A
zo3I%)TA7&Sh{-bU@q#U>@aD?IG)GK##2iQb&k-{mG1C$6Ibt?j+JNvZM=ZLU*|>Fh
z=E_95>MaZ1X}0co?0rWNcg~A_^GA!hj{E;;z9SYmVjfdCm&M@kXl+=TNUf{3kkMH$
zD--oE#_q06&<f>JM=WDWI%0<-mOEmFBQ`o>lfz|`Vil8h#Ck_OH8Q@MS6`V}EBP9U
zyyCN~66<Qkf7fdc;h(Sm;SG-K8?M%>#AZiqal}i#8-BzBT$T915e0sT^3nDoOMA7o
zxK#74Y}<n)BzN~)A3I{3Bi`Q?XUM7*-|2`?9Py<ijyhtOBX&DtpCdkZ#HWrpRx7rb
zUGi{j562vN=#9lG?7J#a;Y7W6S0(m4;(#N*aKvA$5(gde;i|+Tc1$K%CVKjl*zr{f
zI$Gt&4)F*zhgu}LRwur4#Mh2E>4;P8Yx5Jw9KjE$Z`d9jF{E-l-;8E2tWFGX6+OYT
zhoZ5YZB9Glj3aujPJBzrwyZHPwrsIFQ95r++BZAvxX+q*RwvFo;({Yqd$7iXi;no-
z5qUkx=fNdMTz16k3f@p~#SvFI&?yKixaNrKEMZ3|3Vz_=?}!H+Hym-p5jP$2GxOFz
zbjuO99dXAIB!~Nj5-q~L4^~s@&Cn4)vHAu^XsedEX?5ZkHn0}qHvdF_b;NIu;J!JA
z-#LCt{-?xy68}n{{acdz68U`j*AWld868o$U+9q|_+Wi3Ir}C#6(~<~z~}vDhsje8
zhoelIbtQTfcok?0bOo)7DxW;5&<B>PfbYO0$5&+=3j7La;?<{se$94fg>McDn^JOM
zQJnHz3UVtbt>9?|c@*STP*}ke3i2t)ub`j;&NlFuL;(e~tx8jSoi@dIICQI3NWuOO
zEn1u_qM)dPk_yJ&w2CPxuHf9{{3R508kTSDE$g`w>YxsJo>b5{5Pf{hHM}DfKtU-f
zY5SA)6eHfU7?+&*jDlwsysDtOg69-GuizC0VFjFFE~DTj1-trGD67Cya5x@)zFYPS
z3g`~LoJ5lH3PNdKL6V9JUX&zPs2~+8DR@~XGOT`-fvHuNhgB3*RS=Q9Ks#5?!0G5}
z3OG|u=Tie3#A_(XP!LlPS5Q+yEd`khq6&VV8hK4YZ3Q&1$MwS;#E4H%vACGIj)JL!
zLnm9h3!7=_kqUJcWGiT<pq>H>8R{!&AbCTHjU+ZspKT&Z786fPm`HP8bWo&)f|gQv
z{nLgN-o0(LQt;R5dgQHTX4)udD@i+v?Im`Qn2<<Krqhv?rC^7GoeDZDcvHaw1q&5)
zQSg?6VG4#T=&GQbf<6lRD(FtqE7C(jPX*s0FK48CDd^3T=@BaZILcFW`^Z4jPeFeL
zgA@!_FhIr{sNmywBRvL1=qi`W-yf*P!yyWW@{Wc^c*xXvmT^ZY7|D89Fj>JU1-Xjn
zqczBP6|hH)Rxn1Au@WhHTas}S$4i_baiW5EB%#hX??&2w9bH^3-xLKL8|NtapCnTi
zOp|1~#2FH2N}MH;%I_(dE&2OtNsEb*xe91%c%Fj!3Rt=13{>`<X+ggdixezYuwKCi
z1xpkxWd~HSQUSd!EK{&t0j=MxFPevkeAHIl=~|FprC_ZBKB`tLSfe1zioQ14{i3`u
zB)m=mSMqRbZb0$aMg^OAMV2J{$mq~!1zQw+z$n?_ooWH%hf=;(Vu2M|bX~!ZP5yh@
zrhvbtXfBd`y8;p(e!@1-KC9rog53%}Rqzelyn;P!TI^*CzEH4N!9E2CSz-;N?fZm2
zXWv(FK*5KD!mP(N142ZGN&Q2UCPWS~Cj&y%Jfh%B1z#&T#(L}@Vw9r_zEUu*e}oDQ
zBs14kJI)4HI=*>ogejApWQ{Lzy^emX;FN;X3eHH0uU(%1<ZI3~J1ZsMvHhDF^dLa_
z1qBxs*a}h#zE^Nb!6OBa6<k*E?zPO{6#TA$?sTsxxXMR><kuzMmiU9j9~In?gqk-c
zxy5c$OywcN9R+u#@TauS&kBB#{MWRkRK0lce)JCo4;4H!C`|q*A3FD=_t-Hd`CH<B
zi4P?HBk^B})HKUA=j||VsZ!A#junTZN!e!jFOt0Lp{S!k@gR=}W!i*29vrS7RXxx=
z*cXX=B_3Iw;G6>!Ie#vydti7#;*;o?$V1bEK$-_V$R&C1w1jbg<#Tp-R(=l(c+lE|
zHXao8ppXZzco6oWum?|g@DzXDdQilJq8|LcGn=OMi+NDo0~$Aj2PHh{9FDRzmh|9B
z4`K%zu@BOBr|^KSwCb8{Hr-NEnfm2RN1yiK84q6apppmAdhnbFFL+SSgXejt9#|gG
zzd-*|1^5L~me&nLXbha3NO^e=_(f2`gNh!6JeXcFdg#e0k+ycJ^P&gD8uTDAstsQe
zU-p1V2e?GhFI?G!hzB)2sO3Qw52|_~_E>LhvVLDxu$l+l5n0`XS3QXLkMPM(WP#W4
zAVZcsC&{mV+;D%T_-h_SJ*dM=ca7KfAkzbOhbvnxIzEmut_KY~7_l(pPdl@&2lW~E
ze6&daa6J$FYZA0!OF1PCJ!mA=8cS>?v55y+k~EdbM6xAmCb78(EhK4~KD)7Xn8iN*
z<!D<E+IcY5gJ~YL_n?CZqdgeIjCt_72faP$<G~v&=QW8-*D`y0(2=+QFxp9CXNf#~
z(}ON){+0(_CGRG&yTl$6cMc3wxt9kw2U`VKW^n{NeKgjWrMiZj6EpjH(BFdr9t`wg
zln0y>>v%D9kOz-fX3riKAs@`EU(6gLaj3*$9t@XcghZYl$*hhJk?<9WMvupO@U{mN
z`O4SE^-a97Z)6;s+5EcWC6Y|=;H`#H{`{rFJ0862!6d0X*@Gz_aQimpw13VgAo+9;
zW_YliMKs)X7d6v^MIJ2nV9@Y<vpiV1M0?Kz`nH?x0UeaT@4*~)t76R={wK*?iSs1R
z_h5k}3nelZ)s}d$)Z>n~%h-LgUC$J(M;<baJCV79*}ImxlCP|9wOqx^jkXwQjd`sH
z>pa-w!Dk+<_h5qu+dbI9WIeu(9&GivPl`>fN~73jHdGHj@PI40K4d>d-XC^klQ$}z
zk8h_RNzIQv;M&@468TJFVKVwod1^=de4j`{3pu+y*eyA|Z-2`ESRx+@HTQaOi0#$`
z`#_<6QsHwC_Itp5=4}%`;K4!3AMT4%@`VRSJh&p&xSsG!mYWCXJUHqBA7Nj4@U<kz
zJUA{%$1$N7dxXA`oC+r-IVtg!#M2&}k>p#6XC+c|(FXOr<ou1!cgqW`VtM$z#LFD7
zaz!q2yy_F8&m*o!qQBRx9$fR_x(EDmaMOcZ9{i9_?MDx8r1@tZ!nZxR<G~*u{K*FV
zv31vjpIO2l{Nw@unHJd7Xzn)aR}X&k;CBzWy{q+_#Li%p8yvWafIH48DfGE@k7J_;
z_gN{QTYpI`(%QP&wfO@N{$ZVNu^!#ar2a?6qAq8r@Sv@ZcDh@+In0a~bG=Bi*gZ(e
z@>IRhyzW`Y14R;#7hbPhu=F*?HAN)47ls!Ny=dfx&kMg7rM-CC3)72$7f*Om#EYO8
zxxC2lMFB5zdoi_dD32F;y*PZa8AnSxS>tR^J|=t9s$4Zr_i$AQMhbdS*o(Dy+;{at
zUU2@0L?0UB$Y0cpVqPqJp%T0pv?X5LixOTu>BW@Ih5l|8F6l+r9=X445*A*pZW5-1
zSoyCO^y^y63oieA$_uWOSuiQ`j2F*(QNxQ2FP`(_c`w4eN2Zntm+`{#;sq~Qm1U`r
z2-9y-IWHc@qpwI|dC7Sg@}h#|6(znX@g<3sBvR*PFXj&llQ6aXGa3iW#v)!+^`e>=
zlQyeWy!bpP+IX_{sux^#Ufm0R@$nZwONrw{tY^5U7qz^o<3-Gi*Sr|GCXwmIh$UKW
zN`{1f9U3A=y`VCi+2=E?xGYK9{jTptT`%f+(YsHCe^luPi%(n18+gHo4tJt8_M(Xw
zL%kU0MV1#$y=d!2J1?@mXy!$0mcUf2xfiUFR$lzDx>*Y^TFPc{SIb~U^xGL@Ca*aL
z)!N8vEm1Yv-ir=i^!1{j7YQ$3_oA~GZ+bz$EpK?y(Th%A_r3JO<hqQ-=xkjqoGxCx
zMa^)u4@+Z)EAJ|=-c2GkyGzo;i=JsoFWy(0o69ujXZWN@e=i1j(XC7FAuK314=<mp
zk-=Wjy#K9vjr#TvvHOdGAtp#qG<1kFoF&PY!_0dz(u+}EyzRv}FIL>P=-GL+7h}8_
z%j#Qb-S3cxxq9ZcEY3rY_hJHDkrzyAq8D6`^o~TXxGUc}%<o6eH%{_mvKLoIL}CY`
z4E%7L=EZa`W_mHpi?U-QGrUmWY{-=9Y{&{0c+ZR3UU0OW!+sQuoYFGh_hMI@Fw>-O
zSvtPt6w^HB#EYL*{Gwuk7Yn^;uA+sCMP4lS;twzW^kRt@OTD-yt7(}R%e^?@#X;VY
z7c0Hk;KfESR<Ub%v5sA=iaS-fh8>M5e-w9ll_+2KXat^<lj~Vov#r6;G~49GW-mVR
z;-xClEv%s8@ejP9^60Ol{D1MG<XhR__4r2;Nj{cjn-|;Dk{y!l^diqpiwe8E*zJYx
zk1cm%pE7%cLkxQ)`Ap(oiTfme?!|sder{NRYKJ&<uoZc6){8H^IO4@uG7n#}GmeVT
zwZT!D)pot()7B)|oW5pHDWM#b-H?s#xFp|5JR$L<#8VPadvQjR`aR=R{?3bYZ2VsQ
z=*4+<iuu-cFRnL<lU(rPqLh$-@5Lp_FQ+9}B)RIvwX|f~^u~#oqsymTH>89Uus73$
zoQd3KgSnY`$BVmO{KSg(;ukM|<-Jd}8k{ros~IG}NuBSfSiehB<y+UO7UlQ6_>1GD
ziu@}6_ToOvR)wMBffxU9RQJO6;$MzPUOe*RF-L~x;YGj2x(y6Z7#PlBOK2X>TvP2*
z^YA#WB}vK)heN#zjvI=KK{GQvDk!HHxo3WlE*Ti6Tvee-g~wJ49x?@=JTz4VRM3a7
zUt;Ix;h^eXF1Lz2Dso97t!`3*u}V+RO`j}zRS?hp9xb4vpo*F*YN;rsqOgjHiYh9e
zP*Ft1(<+`(QB*}S6<pR;T*aea?kbB`N8&>cy6c5XsCZJvvTrShl9C7&kffBvr_yIj
zOR{QB;#n2Xsd!#R87X1U<r)u0=c!xYSS{~I%c`(cyr80-3Ld^Bk)*tekmMC4R!qxZ
zRKXQuRH!5+FH3wSeKssfWflJ=UR6ak6*W|3sGv=`S5;J3!Cw;O%nAL4ku$0P{!`G8
z*lQ|ktEi`<KC44TR7FfhTtyufbnMG0e?ei&<cvbBtAaun4zYoXhAOgDG*!_^MPqrP
zCQ{+Qf2POJyRoi*=PGB*v&~rkmEsiAt#AY0l!{g=7OPmIqP2=PDkiFUM@3r|?NoGE
z(L+Uh6&+N(siKRDgo@WybYh0{Mc-i6+;*K+b!2YGhW_Jp1xV6ao}%-Mw^VdhK}Qwc
zSl3rFb3Kl}trs8`o)F>Lo+^5&7_DNAir&0m75!BVP&o~i)tA>=9Ph__=@;V0Moyx3
zI$e)g&WH|V>t)>;QEuX+r`^FSs%Auos2C~<`7jm3B_APiWLiFoCEOxRg|R9)0Xt5`
zczNn=c`ZtKtqCfA9pTQ|Ui&S^4Df;Su8J8dW~!K^VzP=UDyFhi@Dj7FX)2QaLn2wA
z{eV!}0pU4w+y@Z7-_Bz5TVwrC#atEdshF+eeH91F6l}1>nxlfqvkWimG2%Rq{3;g8
zDDzd&{bj{Q6~@iVSfnCv)9}BG;^ZVt*_c&)!NOFrT*V3%AE@|H#Yz>cRIF98jy<t?
zXy%joh^tksk%!MVb^UHLtXHv7#U`dN<%{;m|C4W)hg*1GQzHLK=+bekijP$6Qn6db
z$11j|{OCsKwbdB5v*;u*7>sj<nPF<_$R{ec40k7-cbAS(=ToV0SmGXupGn*+ai5CM
zCD||WfW(6m8TSy&ze$*c*sXNrOBF{|Tv2gV#aAl6R&kcyO2si1$5otCaazSUDo&_4
zse(U|891w7!F1hnG1NI5Jwu(Lp>O#}Z4suN68cpkKd0initkli;t*6TdO^iSN$9zi
zXDK1hsuR1c!c$x&VaiPBnu_ZxZnCqpS_g)HQ1PRR8!BkQY@$`rv!x){&(kF?@wQYT
zxhu&X6=jEp_O40rmE$L=PZzqss`yRCehmjS{I22;_B##jH2kUJ9>-4&PigpzgFlC5
z4Z4Q=9Q;+}u+^#fN5#J?9<xb|4b^z2>O+p4tfs*(r!!5iljn=^sc$nWu~np0cs2JW
z*-@cr@MvH^<rfXxFsB;m@STTK7FDIET2;fHb=CL|V`%Vc$g3fr2EPVVLr_C54P3F@
z_4Paf4fJ2n2Ge;(GcMT3t+`(ic{Gr-AL%_pbP=9kLjesXHC$MepybxwLIpJx(ok3`
zbDINK7eAq4_uN<!i6liODW;*gBqh@FCpGX(kP1QrG|+tIiN2w%qR|EA8<f`Yw1$^7
zRMPN_hG#XD*AUY1oQCH$l+|Eq;HF@6v2r|NmC?YTk|cC=@`C2hC6?1bu67ACKZkQy
zuAsU7noeC`)KHNrtZ|ExxNAg&_xrMjSD1o^*EEDRROlb!UVxe!DoY;W)w_hNNF=GM
zp_=5cN~|uihQths)ZqsgONJv`Z4H?k>S&0`yDQNn#4m`bhKFksMHX3=`-b8g_-l!-
z#Q21*tD&BT`Wk2tr-6nn4NWC)sG*T0lsA^7iH0F*3pv?R(o#b+Nt#P+A@TopT4`u4
zB}}1>BxaNR?KO1J@ScX*8WI{_*D#Ewq~Q$>9W`{NnubmqI&0{{cBO$cv2RkdXM~IS
z>5ZCyKsfEp5_TIT9p*L-ch}HULoW?IWOJgN4kdeQ=%eAcev!UxX3ayphKBiV#nwyS
zPs;mi7$C_&iPRjVVQ`uc(J)kUIx6C+5gJBnc$-zMVU&i^n)|{}Z)IaNjMdx;y>q=o
z<3@)_DvgWqLgU#=`3j_AhK30mN*|9hOw{m><nKzHl$KA{FeS~WYM3TDce^tRd%;YW
zz<|&!&Hd_RXJ6STl*|=*U&9;?TQz*d#;;+nhLsvtvBZXj=P`Qo&<f^I9@07B0u2jU
z!ox!hi!>}w^CgljWuc`d%QbLY2i3Mc$XmyZtk&Ew@iiLOYTzCLeiP9{>pI!p)@$Gr
zeKsWibl#w0W4dQ;l4P^QEgC+M<U@(<bnI~-YuKjYQw@7G@aeW)!%hvKXxJeS`Dc^D
zU96hou@7%qyCvZ`!?meAWCn(QSoAXudo}m9bDxIKHE=P&b6V6r>==HUj(ap5;vl0V
zzmCHizR>WKhMzSY(eR~)D;ln9II7_*4aYgWXkaDsW9n-S$5_HWLbWw;^#X^x6B<rx
zxTxWK=JxgQDW)^l-G9+*YUH%+$Y(TsD+#;vSq<Mweoo@~wEO})^7v|0xFk#XvIcrD
z9k|iz$KMU3-OU=;G+ftkQ^PHm!{E>l8h+GpgT1W1#TLse^2ckv>dm>E?>29tPC@Qv
zzN_(DHFSsdm~b5j^Y-V?P=C?ztA<A!9<$MM@aNdB;em!fIQVnS*TDaA>@xQ>jPDhC
zbAF*sL*1zZZo2%NWjMp)K2s{ND*w^&FUz)1<ROcza%4!)Hs#)q@K0!thNK3s4poP(
zA;nR5qpIlOmJ{v}cX(JO%E0Ez1>PRr9TiFFK2p<>TSp!px(*&15`7YR=+|MUc|b=n
z&2vd|Yl+5bAC8}Sb@z?;vzb<rJ5~W51$9JpRMAmLM`0aL>v%@T6FQ3M5IUfvsE%Tc
zqT@*&#dY_VIibw~pHC?M3fwi!{XO*Dx&|d>vLvN+Y#kkXN=IoOp2f<u(_H`2ch;yJ
zZJ5btbv&n|l8%>kJg=jS4oe5Uwy`yGvbU^`D@{WTd)q}{kl8MmzKilYLTO$>l8QQB
zOiNzU!5d`y{NwNnXV{qMwFy>4SO<~AHUD64U01ZKj%qsU>8P*cRUOrJ)Yg%yqlS(Q
zma~r6bnNOIswuI-<ht|#$V1j3Z}YXM@{a$w;a^poMs>t>aB`!Lju<mPHNwda76_-y
zK3rF{t`6??<EYg@M?)RWbTrq|NJnEGO?ipZ`Pf?66r1SC(vj*HW<&<=OX8aRY#sSp
zgb%h3vpKcU(Nae%9h_+?@NZr=`_?+z=vaR$`ofWySc8=Cg}J?s4m$4o@sl439j{a0
zhZlW#Lq|s);|z>9&`C#UR*H^~biApfi;j6Z=IeM%M^_!Abd1)~O-FYf{dDx#(L+a1
z9esF@I&PL~-b)9ajPzy{POFw`{?D??v?TmpTZ?|xnGH$?=oqMDn2zCW!#W1*7@}jS
z4lY+)(mqV<WVr@Jc!MMx-gh6_BXn?Y+DK;Rrr-n-=VO^N=kv$t7^`E3j+s<o=5<Wa
zF;UK!j@Pm2@4S2{b3+`v!#leBN<;e+oMC%cavn~SWU|C5I;N)O({xNv^ER_`&(iUp
zjyaU**f%PabF08?9q;RC?~C;w=ss@Ps^_wu?6x?1^Kr>`P74VObS%`dQpYMCi*zj3
zu}sIcr(=hoZ&`k8QQ{IEOLh0(5PePZaJh~Z)EStM3k*8F>u#%Atz(Uj4LUaJSj&3s
z7g|STclbc%S+<IrZLIrGDP2k{n{;f}@gd8ww32f<Ym1H#n7#fDIl6M_?l?HYCQ)r|
zg44Di>)6H~WZ(q@+jZ>F@kqyG9XoY=qT?)k2V1g^-8zow_)^EGI`(iR*YO1-)@&JV
zT;Vh7G>DSy)j`~+<8w*&OFSTv@`I8b;<XyN$}=}-Rc{#0TAL^_JaSaWS31t<_*Tc)
zI$mnmFkj;+Czk(g6g{SccwFK)5>MzjDGBALbe#TAf!nDXMY*r4)Rt@#rhiVydG=f#
zzv;N3<D!lqb=;77_~@U^y9;99>$t@7S(~^l@ruN&5-GeU$#sc8NaVr~{xiC%gWI_F
zkBV@~?k)C|`qA4G@303+@{`1$CGzYql4M?r{jTE=9S?PI=htTqqTB`cCp-S-*u{AC
zo{qnm!+4b8Zyop3{DCC@Nc>mFthI^%bhynhM@N#wxPiO|Yz_iC6ayXuj?NI@y*`^+
z<-~Qb-Pv9PssYV_Zs5bUiE7oF9$lN5RX@tQySX-D7`RzK%IfnO@EdMDGMEMek_Xe0
zTn2KddCuBIJ_Gp;lr$h1eQlzEff5FuG*D0;7LrJLVM(5lSVUq`iNz!qm$>k&Mn~SO
zOBbKn+q3D883sxj=vFsc*1%H+BHzaDlx)sLGNlc)Nra!4_>4pzJ}b#{2A-FsjKs`I
z5uVz<JhpyWyqtmZ23i?tZ6IWzf`MuVUNunBz>5aL1}YnP$v`CoFB^D;hpnu?L$R^z
ztPf^nFzjD#Re9LrQm%N!0KKeMF;LY&(RB$<?NT%QVsz_!8QeZo-9QZk*#??X%|J~9
zwG6yw;9%ou$!Hb_fm3Ch);7SMHT79v_cBQ`4Me4cypAL>1M#$^u7P@zH(KuQ$6=HP
zGGapmjU;I-k@6-6veLY%B(oQ0G&j(~KuZICo{2A8VpUw1;7*@8XX?>NK6muAG0>K$
z4D>b7&Om#Xwt?;}!!=e10|^7K8#r}6#{1=B^*0P$8PjHP%V<ZIlJu$CNs`VI-;~%z
z;#(5CN@SjU80cxBm%;y!Sky5bUzgZbH@1CVyz{!mqwVp5!N{()RzCy%4GcCg#J~Up
z0}U)5*Jcn&FjD1Q?5T%sj`eKw;FbFK9%qeQml$dw`EzWTys4a-8N+4yj9?=?6J;1_
zV3g#eC619eHhuPOwzQl~s!cF3k&V^|`0$Q_cMTk1H5r&>V6uUA2G$#xVqmI){~4HT
zV48vH24)#}kIj2_-5CbPy&9WoAWyB>MyuKRj9C8avDpURH}LpQ)*J)Fw_9{Q`R_;8
zXWOme+u|M6jCls;8(7FfF!0BP=mG;ruSA#Jjg}c%*MBj(*uWA4OAX9fm*A(0Z<j^<
zt4M4ayOKA&oOwGGWmsWgWty*&WVL}clB|_jsYRS>8w_kTu*1Mk1DgzNW`8%Z)xg+h
z;a$VCw;1?9*7BBMY~b9C6WyDCWZ+{1+c@mA3ff!4+gMW)*1a=P?udM6uX{MDdgD(F
z>@x6~fxQNH8~D@!_ZaSxm}j}Q<U(}Qx&$S>qkRTGH?ZFTE=GU(J{m0-=be(Y3B<ep
zmU+m)VFPyz+%@opfg=V^8#rU&OBRTM;|9KA$uFw<m4UAf95dj{+j9AtESB)q+b!M?
zMrT^F69!JQMwZ1-u`n0cJ-9A0>sFiFyIh@I%d);TaMr*@W{ks>fpZ4V8@OQLogP-F
ziW$?(Hp|`3+P1>Fye?68YUKE~_$33E4cszto3-O<S*L58E4;zE8CPX-U6aUiyKdkI
z$$yl1L*mW!*=@z*<;ymEv@X$Tc!YKLlYyTNJmEtTAAT|Ls{zFaj}N~Y_}xH?gEQNJ
zfj<pwc%^>d_cQJp*w-QYP$J1+2L4X-`vxAQ`9B8!P4jntj6F*8$CBi*U!)~A2eE<$
zm{j*qV~=XZUTGQc{A$eWgX%*rA9DM^Ob*}Yu8Pro&?)I=84`UGdFYqKlo;?Kn3m5g
z7&{tiTzO`89v`?1_`8nbygm@~`H)|d0um`H=tH42FD%JNcbXOTA^df$gbz>pP|Szo
zJ}{}gWg2iIbf(>=qz}yJ+3GQlw<Xsn>a0(c@?rklp{J?V%6iJ@zNeLz$hnk%HmJ||
z@T?Ed`P>gco|<vH0Lk<6u#CjAK3I}a{(>asd?+tTNMZ$vy9?)|!b?6>Vy^rs?#IhM
zyyC+;AJ#L&yt)rve0a-;h!0hKXzD|@4^@4r=0gJ?8v5|657m8$`%u@18a{Bc=)k~G
z%!dpgXvu;9F>CtVznQgscuf-W+CF4T9+g-}B42@cihmese4rk$-Y-P!4fWZOaz)7b
zaHKtlMm{j{CO%NPu@8K6rjSb)vV3UVBeHo;vlB-fHS?jljNaCV7Cy9;%B_9i8!x{;
zUS3qVmE?ooY?!-mxQ!262ZVWDUZS0h)!v5=l2DS6<aK@pq$M4F=p=b(iEpOmjT=?y
z>O(glru#6%hweV~@L{A6qkQP;LoXkO`Y_Cg-sDpweSGd8@Xl?+{Fv(NL%-&6H%QXo
zhXIldlsG7TcCZgaBtLx0qVkUI+1y_<+=mftHf_TzCq#%`COX;&F(oqDhbcac@nI}4
z)FVXs+sxbfCgXhgZ->r!NhbI(F)ewAg_-7)B>6t0<y5ve8b;_7o+gv6wyv58HRa(<
zA7=S5*N1sNyywGgs<AQji@fhcYMaF{M;`Lh<is<hEAZ@m9~Stq$cM!~cY*6dd6jx6
zqU8L^zC@PEQdu1oG8VJC%!f-8BFiPNkhoIfDv7IoSR)B_*2;(^8+_Qv0ml!oADevG
z%tr3R&um~meBi@gANKk1A(egD!*)I-(q?GrBX+c5;ZJ=a|5)NSiQ9eHAqnL>efUK3
zU1`Z~ANaw=Q~avsqy)ofK6iGaXxlKq>^^53^Wn4)``KcB$TK(+9~R;YoP$0b@`2>A
z4_`=fMB*{VmE@?zuOxmgk<%>HXE-hozma%C;z@~B`iH1<#)t2HAo*6}S&83CJSXwI
z#0wHHN~AJPGhLGWvJY1zxhnC757*K<*CqMEhab}t#$w!?^6-|#+Y;|cyvqU~>e_nx
z#fM*g_}hp39RGdzU6$CNQs)mJSWwH`gzwCck=*m)FDd62A}t{CW_eQ&eE8P~&e;6J
zX44_ez+e14d?<yFBtG^bM-s}DKG<oV^1(@S#V-?CR$28!^TYiPm8kpS^TY3l;dd87
zwXh4&URm)WA(O-4kWj#nMtcfzYz)dnN^<#;Tk<?<NnStlrFniy3i$C?p?p*><VRsY
zo{%XQ@uR38PpwyZX<mZJK$}!0{CLujF@B8oqog0gk2n12=m-2L<wtElG8xN{(tcFp
zu<Xavemvtx1wShK@vI*^R>X}K@sJ;fK5O`##OHaZl9ZKbNqj*fb;?On-j7GK<2>~A
zjPT3%MJAgo_7V%BMVyCRZr6WG<dweRSNxdUH(b+?T7HE6sO)#Q6;OdTY9f9Rt4OTs
zM>R=al}LGYKWe0Th99g=3SaZPi+Q+FDDU#@w_1nEqkiy0aX;$%!DQ?B5#!wr4U<1N
zEK<*p`ZAFgGGYTi8p<3pDdw$_<jinmKblCMC9!E*p6y4oG;b~mFWS<NR`RBJ_15yD
zZ6xxFZT)B`d3%W+Bqk)jE^+!hZdrBmyH8=xW)JtHvmbBz(Z!Fq{21!Tnm&=PvaZ>X
z`ufo=&AUs|Lt;;fy(IRQ*hk{XN4XiRpXB`|4)9~3B!eUlmN-NrH4AN0hcQ<p-8EEf
zpH&8iM))z(k5SA?&&X(&WScNE`ApF;$=iO6^JBLkpZYQ0j|qOv_hW${6a9F{kLiBQ
z@Z()SCQ+?_WSSq7{g~oM)Bd5UQu0?Hcg^{}Dosng+3>$b=@T1AXZkVAk2x$2zdQ5x
zo*%RQcwZLI!8aS`I~nWputw2E8Dm<78Mv%{t{?Mw#l}&0^?Uyi=b0D!vB-~4c)2Ck
zVn3Gn-DR0~X5?PV9x=b}IzP9!L`as&!{riJNL(p#mBiH&*GOC|kz?$7KQ{QWQ64hQ
zk0jaT$7V^G<`(vS$v>31RU$Qc>SLJ=@@;->mwboBof4_ZQ@doITbdcn`5r$$^Wz&o
zPWZ9ck9~f8;l~j_KKEn4A0J<~4*7Aw56(v&^yA@Wt7)a^&%G_Wr|&sCdvGu7uphMV
zG2%_@OFxeKam<h7eze$QeI=E@X4g1tSsg4!q_FJ~>!tODXsBmV`RGYMPWf@wk86IM
z_T!8nS7elL{otnZvohJ8d#ou(UB7$Z$-{GgoR{Q+M9MGv@qL<K^5b%vb0>SrN>T1`
zzwXBme%$cmro07ao8d=4nDZMwty|QW{0?<`S`Uu8Vdfx<H_H@$W?8Xs29OoNuYUZ-
zDmJmy#P5Fm!TT~%&%~d8+~fFWqO^&>{P>&w)P&E(eLo)fVY6xZ@sA(>a=h~6vESX!
z!_{a%9gRKY2>C&iDxWuG$nk?aiINi8H_1D%PdI)kCcGw86WnU#F*!ewapZVmPN8se
zY}ERMX5#d0OE=v#Nw~vk#`=WcglQtbi2^19j8Zh3+e97{K@+)5DBH59wvA3I8l`-=
z*O%8sJ`>f<jLb5zN#i4%*C)7}te}ZPCSao3kAiB2O*}!K5#6XodA5k@{&X%XQ|8%X
zk`$L%LgJGqN=hOmG78lgy_AUui?d(o6MEXjGbXB-sA}R_6VI8@r{;de#PcS~n6ON|
zV1kx`>;7Aytm&@FWEhhbEoXvA>%rIBMaxUh!;pyzX<kv17frmBmQ<4DWr>U!Hc{Ec
zcTJ-a6O9IkD>jWXWm+4qX5v*7nI@tps+*``qLzu*Ok|j-N#WEuJsRhHS+|oKWoT!+
z4vs(ZMr)hkGAf4qN9z{7BPgk3B4#4ayE~Q1(0D|IXJ={A`qVTr$i!e14S8u3ubX(o
zL}L?8ShFTtv7k&eHPPHe3lrHUX6}d|S)XWT;^TQ4TzSZ^*Uukj<!%)wdH1Gk3ZS)#
zHYVDcXm5gtZCPUL6QAD8BB#s04lKq}`4VhAO5~X})wq_j$c6-YM-!b`0@>mICOVtw
zn=4Nj6K|P#lc^00T^pTEWa!Fdix%i+VsCc%=$?k%P0&f7`!j_^MknuOqIa72k)*H0
zeljU4F!2FWGEhpG)DRYID{F#@i6(}c7-nL)i4i77vw~R89j%cjMoArVZp|p!&Wi7_
z#+rEB#5fb<P5gEwHlnq~FtU7<XRDTvat#B2J-lP$T@&+6%x90-Z%r~W#l%!5yWg5@
zy6YTj46vq|m~LXOiAxtO?rr?_v^9f$<bcI6Q<7N{-;+37;`<WkNc^9P*8N;%rdIwy
zwFNTqMJ5)T_;kOukZt=1*Hb4uFOfQf^A}iVV!4T5nQap*Osq7q&&1~@R+(6B;v-hB
zi8UtHn%Hb&i-~n6)|=SG{#z@$!2}(bY&6}as$43}Kd{wCgt)Aw((nj3iPPfx2PQsb
z{k99UzPR;Zs|oJboZd7{+-71s3uK16o4u?@c!!BkOzbkT)5M0;uA!c>ZQ`$;tXI0N
z#lYP(pPJZX;xiLF=4b3>n(L~SJ6VsMWMi$Y{U#2W_}0W(69-KkGI7kraTAA4d|~2C
z6GvI3$;#tzTVuAwj<6Yz3h|ZZE0%xX5ckx4ZQ|~`?p6!((1ye}yf4-f>w=p*esyOi
zPntMof=f_XbVL^28J1O@DEG?oC((B%&Y8Gs;+l!`CN7w`$T5Mvj4Kne+$9GjmrPvd
zoo0ovnC^p^zt8waLBh?^d_iseLDB0RAx-z4=Lhz|Ue=FHs$}ejM3S2(Zl(Ec4sL0F
zSCXG3^4*@%e_>BK9p&ft@9b_I@B?@{fIm&#Gf^;rLIM0`;%`=8!2Q{MpH0GqW4ioY
z%}R|osKkGGJ2fl)YvQ3Kk0es^*hEg6Cr#LrrzG-^7!{a^B9rw5;FUy`s7d5mT@oVz
zpCtaYoZ05tfIJKakV}%>67!^W@&=GE&GQFPAkE7!Pznd|L;%GCC>}tO0E!0O6*yfN
zSzPEsQe%~iB?72@%PJXw2;j*8_x;7oFNtx#Ap+oMLa6|r3b=*OZ%l4Wp(R!B#^vEN
z0X!Q(^#E!F@LT}T2e7AS_{9Lq1W-1B@&SYbumX4?fN}xU|14H*VXX38iy`((lz6UZ
zn2Yu+1W+-6|9G)>;ReMUkiQf_r2uZsvR)40)c_jtD?lEGB~o5FfJmBGk)&z>)g+l+
zG9MM5uHXD(r6|iSBY=9mdH^+LnbeZ_TDp8{OOhEtG%cwUKuq$u#JUps#mA(0%MDmQ
z(<6-nXebMW61w+o%*+&tGH^zyX#m-*iy-m`(JX-G0qhLmlK@(<*aH|Ez_0*X1<*Qx
z?g8`&piKa619&}vHv(AKHQX+MM8N&c+CG2|0e8_CIm4vv@Ps}gDs&8>Qvh!T&^3V0
z%<9{rHv{M*qrCiebVKj#=1Z#5yvBdA)>Vymlc#16b0s|k=oLW!00uDSs?pv7^a-G^
zRG{aGImHyFPqlsl&`#-pDGUr?Z~#LB7$nsw<bQ_^IR!2au~rq!L;c|aj0oVp0A>d;
zQr^Op0Hy{oDuB@ejFGV>1u!{)vFQ}vmSkK2<I|D}0ZdHucLI1<a{j63<!a8&pplT@
z-VPC`$pV=kz>EN1{xnbFud;qyRd8kiH1Ri!IgB(tGm@rCqLr&f-w$9;03QahmDLo$
z+yGVuusVQw0n86zMF1-Upc?fTq_4X$fJKroPD_?ZvNV8YY02^cHW(Sq)$UKTi8DTk
zm7bHaCV;g892gezjkP)rwLZR*!CG4vz<QZm@(lrOlzdZKvRRTX5<ig0<;oug@Nod!
z1MpXiZsQ;@)?(mQn8}~t3h$8ewSyD&HY9chuseXu0bB{-Q+7Ib*Z{s}CIi^ZoCI(%
zfMdn-?34I8Uww;47k*rDKl^F<=1=a-=6HK3fWrYC3E;~BPJNvHMF5w+iIh0&n&jf*
z?Kd_gjt0P&$+P`(58vRvPaX^4cmU@ExDdcMY<O#{od~#VP?ufFB%YL<<dh_*12`ke
zw-V1v{7xcu&PlTM_X2#g`s1#3F@Wz`SsM~uE^;XVHeK4w<$kxT0bC2<-vAy4a6Nz@
zI7$a_k1c;+>_@)I2k;y5_sknCv<-=y0o-E4KGBBZb^v$M{B8h0N&d6MU(#|${5{~l
zpjH|d{)6r0mZj(!bk)j*(|_?ogF^QMco4v}+nImMvm{jhhbgbCM&+V+t<xJ4j{<ni
zkvs@Bh@1eD0VqLGpTQ0w6@bI8eZ*p1CR=t^W3Fw;>K*X}-NmaMH+X3+2tDY&;TS<z
zvuuxsyb1{=z99Va6uB8hK=Po(ToQAq&*qUNuSC8W7YL$Y5KjeBI*39+6b@p3zew{A
z;qPump9rF45X?rAAc_W2EQsPk(4y><L6l&w`iE(9mgZz>gSzI!OcG9Xiy*i*8xl(e
z!IhKTTGcUE<mn)u38G98WrOZMg=d3UoE3Igng!jZ>CXq<%}V`ShKW`X+<?O!_n{zO
z2%=mN<%8~AE~nPHZsb4HOcjFe=VwKU1u7Qgr)8xeUJhbLe$32|SAqx!aV-z7=RxHl
zB0+4<jV-xRC5Wm)JPhJd5Y>WsHHc4x*b_wcAZi5BJ%}DbWH2Ypb`YI|s1?L(LDUPP
zeh{^T$P6MDL_Ek9IOU>@l^G(bBM(U~{aE!-yJmHRID*I{c89!`dDtL`hE!l>1<@#o
ziuKC1me^P#51UAmC9!D`*=cz*Nt#P+A+e>zRzYA`HAZA8QlWi2DSRV{jzP2!qJun4
zuxdQ@UzhyQS7Gw}&sEO1F~KOkFND9iRF&jSdA6IxE<wD-s$bcnD=TPY!gHcN6|QBu
zm*^QpuOOxcF+GUhL98AX9vQ@_Ao>K+H;8^g^bcZa5W|8PAkPkx2~Im29vH;;Uxi5q
z2QegwmEH3EclCW=RvjKh*4E6L8xs%el^em*-k4yrR36O+DWgvgVr&p+8&wz|!~{v+
zmN<^ZxG_Qb#2{M!PkWb-%iG2~Y@d;WER%iH@(tLSm?Tr+*(s7tm6+)%!RyWlVrCG_
zf><8JtRUWFI}c(3Q?4DF9mE{Au^`@OvwTmXgeef`%Cqx=xNxWGs;e11#jr4l$;?LW
z&?1=)UV3p5OQa^x@-~;UaAp-CS-~4;+Y4e#5UXTP)&;Si1r@}aAl3%aw0pJrC0o=!
zT{UY#Uh21>t&wa9Vq*~PW^0seV*5E(m4SyJ1o2@IJA?Q{Cbcz)kAv72#7FXw%9p-%
z3wgUd+#!+WLkUZmxJyb{6uTw)Px-ST_6D&(hyy`dR>`+7h}U1P%&Px9h~bi$P26U1
zFo-XMI4UC^l6Y9+7eVZJE%y<2klNuJiOjEp_&SKYLHrcNu^^7K+=93m#5X~l2;y`Q
zXILN`6DNZ>#e1(Edb&YDCeFL#T{G|=zhyB7@trKpb3vS!gbFq5yV)Q~)-U*d5SKVa
z1o2}KmxH*%o*u+?_R!OADP3jjT9B8V%HP$?fAL@w9+KY(;wFcSAnq_r2b<htuC5oR
z8taiYNS$9YL%C#rc%h$zxEI7<LHrWLuR;74M7JP*58@9=SU!IS!7%=_!c?x*tOD`y
z#>C&UOz!g@=eV``Ac%k1JBBs;SIXZV>{cibA9L^zqExQ`qv<-Jq$r;L!XXl7c4jBf
z3j8F)_TDb>?&LTQ<lx9T3CK#$8Ho}kDWW7%Bp664IU|CiA_yXg0TjfD`d0x#vLeFw
zo95%ae)X!WtGlZ!b=bW<lvZ%7IQ}b+;tCW6w~ONr)4PJg3et+iLkbEgxRe|Ec5RAP
zA_XNqO+g`ruV?W;?vMX;CG&m-MHCcO_)$^(`r4GfE=3qym&#k0DyHxaC*HDnrm7&U
zz*FE$Hcf%9Aflkhx>TFOaYGV|&gkeUFcol27E6IG@q<NzSva^W*~YI+MHM{2Nr$v6
zrC?Z*cnL{owWOTxgTnFki?YcNNzX4DFQf349+wqdQBY1nc?HiYn4_SAf{F?{E9j!2
zl7h+#aun22z~62V3aTlnt{|=;UBQC=nMs9z&er7TXnN&8;t2(7v+^=G>IE{ARTNaE
zqB4>!=#gGS;in<UX7?hkGAO{#tSki&DHvQSnJKGh-pZ<_VE4o(Ka@!fyI!l}<_1Ti
z>9rNqb<+#Im9@8YdM<GV%@j0OP*1_b{2>Vi4Hc|AkXc_ro`SEcBnu~#yGo@K*`Jl?
zUNZA3n}Q|^8YyU5J;_pLd4rV)GuLizFm7{$rV0pqS4?lgRt0Spv{UfqZ}C=KHPYKC
zxIVmLYpQ5O!!^6IUf-70s%(0D1sxQ0qJgR=FEz~j;(V=d8s>FWKxAT#B#Dp6rq}nh
z?5f~V1!EM9RnSdAiYrwxM8RVUx-00dppSy~PI?aoJr(@5tqt*i>gUxfljx;j(x36E
z71R4F=%-+Sf`JMS{t>TMDSiCRhW!;Bcrd$M?cAxA(oc`i9i(8}w1y*)eRX{9P#Rsq
zNQ&*JlX*C&OD0Dsc=M0gqIIc$n;KB_qZB-@plg++eJFFZf<N=}DxS-&c_?$7g7FHb
zDVVNcf`TU~gM!HlCK48D)og@4v|H1w!<$6Xlj|!brzm)mib@1Ht=2P<oT}ihMDqC3
z2EYChpP}Gs1+x_Ns*#+jfckk#>X|BfhCWa>eKyy%sX>L24bPQLpYmAxvvj1H4MW}2
z=PH<|;6nxb70jn=DOf{yQt-Tjg$iC(@S1`bC}h*@mlP~kFm+t+iwYLeXPV^E{kr~;
zOFb-6uuQ?r3YJp&<8!s`Ssfelr{p46Me-E}V?4<+w_)C*6%CdvSn@#j8wyq^SgBwY
zy?u7W)e2r$&}x5XTBY=k*?C0h4=p~-%=x$0n+o2jlKgRDlXVK#E7-{;E7+i5qk^rp
z!uAF=d!%ntuvx(t8nk<QiEUZMJJkMRdP91zVW)3XuwB6phSI;a>S@-zD#`Q>4VrbU
zy-UH{3f@!jJ{O{3kAim;yvv->p()LDWpe`}kCsTEKC<Cn1uxb}?ya0$Rwg}rN7e@l
zYTVN5AI#jR;M20n&R%-a9a#qye5BwM)lQ#La7e-DbWQ~yD?o!hYWs+S5l`hFR`7{}
z!y}D<%OnOb&OXW!=qDAE$LN;bYJbK+Ksu|$y^JKC<V%Kp>)fvt99M93N^<{!%o7}^
zSo(JdGP&@t<?>H51`E|;^|XR-75q=ZZ=A(S|BlH@!5IbLGdC(YS0X#Ip$XxS63?8`
z@Mi_P%BTOL;8!~E{IF3bv9e5Jy+|I}*q~&E^xv5r6kJenQNdYuq0=%Ck8X0cQu5Dg
zNy76A2)|8b+50k?B~GL#|6+2c^>?Nn?2%5ROs<f8xJvS>f@=y|t7xO*x`G=DN~kEQ
z;%^22Fv+V>RoqnYFLStx`&8Ug@E_Bcidqfw&gC?@&8D}q?kM;yr^)I`O+so=WuaOM
zsz_7um7iYL38wq4Om<-vD;nh8ucC;Gf_k?5Kvq!|#Z(kmK`%X%O#bp=W`kW>h$o*J
zVfV?)3#-sn7%EH^S2r~%^<bhxR-Uc~P8Ct{?9v8f9&Tc(uvPdfqADB}oTcT82A+!C
z$I@LDoR=X$c_wA%J)q+46%AH<>90-5C4ywKlnSWG;xSvrgDOg^5Gvv-%BU!-qN0jQ
zD$1!ict|g=;=;bru6>zL?aMs6y+H*PgiNZHRWMp(YT!IuknUZK4=$I^9Fndgp`r!_
zP?1zoMFlfJb;?;Py{d|866szt{mYEN1T@6L3d#FE%w*okP?4$P#%~RY?^u`mXKbNs
zV+++%k*%VEiiRp`Q{eRta#hq-k)wjq#5LAYLHly;KVFX4Q?Y4WZhaN+RZKpt;#9@t
z6SbR=lBWhc0+D<bjZ`#M(M-h?iDY9HO;mi>BYkNi`D=}2`^VC^u5Zws4zRvKOR7DU
z-a^F}CA0q<o15P~y_Jf0%4X98L;Et@s%WQTs)}hU+N<cGVu*^NDmtp@q@tIK-YOnZ
z(OE?|6)6==gI!cSs^ZJBg^Fk8byd+gk*xVaX1nXPxTEceW<RC|yJQa)#Jj6_*$s&G
zvhsSW7@d{3uR^kqiWhsN4^S~sMPC*DB>nSssc$PJ`>P;ltYUHy{b79WU|Ph^4j;_y
zRUw^;h4?TP!^y8=j0$B&!&2jNN6^Z#<VY2xRQ%(lKd$1*SaSW@_}sJcw$+kj=}t2n
zKA~cwig7B&t6++opkiUS+IJJw(4AS6xc1W7Q&gO(nVhWR{JK<y3AqEl?D!;=zdh^I
zmlA~2Rm@N^SH(Ok=XrZ3{Z_?uDxOmDw2E0Oo>6h}ygk2SlA%4D&gN#H`yi7WE7LfW
z|HS>7b5vMwXLZTS`zDn>U&R6y%Na*1o~JM>ma14rQ|9HpK;@`dq~hC64PKs>`;zRn
zSj7^F^lsmTgPh)#W&WN`<iqi~FROS(#j7d`{8N}))oaw}`Ub<#8`ZXD(W!{9RIy6M
z*qX_;Dpsp_oz_{_@=X<Q$N|@EY;!l#Ip!J_!<HnN0cMP9vQEXZV(C?**@PSEiYoHL
zXb{F`6<au07zM-F$`Dp@iGKA*jAgru&xzCSDt4-POT{h~hg5vbfK{<u#Rn?(so29r
zG)=st;$4Y+S1-)!UWva?XWJm&Q&DtZClXn@S1$3PirEtXNFw_sJfLFwE<yT1+41I>
z{PJtXVTpe#;U^LvQ8D;gag-*j7be4^ZQ`-j;+Trh?)KuaWAfK_Nq(u~BtwjvnIn!%
zctXOjRD3NF(oa1nzEN?SDej2)gVs^eqfPox^ce=7itibWA18jGcQJDg$eRCr7F$a`
zDG2XhpZb{zjj9;f_!lM+75}4G9}x?G5ZX~u_1gsT-&KS~W20f?qf^CM<{~D{qvAY0
zijses-R^Jkr=0f!jeA4vNM!xROj5P+$*&rH@p#9}QvX*ZysF}w6!<#DkP=ez8<O%j
zqvPIMZc1d@4RK4we<~_e&$_MRj*3t?Fy-DUO)0r{E>ZoQ;1p?L6bd5|Mly{1!YCX@
zsW1@6{b3XdLv<2%7)8S<CUGN-;t~l<$X4Yp5=P1ODOR;GbV-R2-feOccbm*Gta}u;
zI$^kBc#`sfguaB)dpy<F2LqOn)skV{tv(n=`kF+!Fv^Ef`W|PQFv{M;IdX-2xCo<S
z7?r}Pe2)^72uI_{cVS%O>GvpA!l)X?Lt)gC6IBbNMi}2|X`HmWq_kR}s(H7|nnZ@A
zWJ;KImw$aKJB-?4)Vs%%Bk6U+s3Q@MlY5W9$NChj58tEL599724a3L}<4_nMhtVjE
z#$n74V?h{A!e|=C_%J4f(JYMSVRR3pM;M)Nixy#Y3geM5T87aojMiba38TGiYAazo
z3CU^YgtB*qh;#^}qa?nW6RMmOP&$XvC5%)UkA+bpC)72JZufdU8pc4`cUw;AadO@k
zpXP)n=Y%fZ7Cpo06~^E&hJ?{Oj6PuulD+zd(NB&uKvw&Qks)W{IPAy~2Ffux(T}%9
z@jGH@7{kIC9mbe2hSOv@p^;&Xk|T@=!^{b>JBjT6xEzojImp<1IIH6%PKLWpPlWMI
z7_-Be7{;V9CWkR4j3>jGD%rRYcISZ8!k8Y$Q(-(E#*8qyI*u??%En2_!+B@PDx1hp
z1(JdEXTzAwVI|LVVay5R?BWRNWFVXu##@~;y*i=i!&n%`sxVfE@j@6chOtBnz|po!
zWiFDFz7)o%x5Z)!o92X;hOsP+m&14^jO{t0<;=!8Au<fg3B4M|YqASRsCGvXu8_S}
zN+Cbb3B4Z18)57T<DD?x3}a0gTi88}wPCDdhL?TUGZ=G18^YKqg(04s6ME*h*u=L@
zxjItrinomda4li%3WMgR26o6UT;tBWed~lOE{V{Bq`WN$-!0|oniG0AjJ;ue5XQbR
z-jmG77h4?U{d@A~N%=n{e@^Hl8mn{W{xA+m&Si@ufvs<ggK}QVb~ubrWCr^-j3W{W
zHl{F+O8nC>j&a+XEj|n5s}<sOM*8QnN($*;hH*TM6Ko3ObQo7>igg*GufsSc@sko(
zS}s~<q_gQ8YVUOJxz_@oI(18Mmha>g--jXEr~m$>_$iDt%n~|k>G(N}U+D8125a~=
zjQ=q&X~9G8Z(PNF@pECE594=<{~_U7x}~1U@`C8}XBZclT{RTba50R(!nhg6zg%w^
zmubXLGX4(Z3S|r925q-K_4xV}i5K6^ycP!GbqVLLPrW}Wt>oU!f5K?HH?zgDjK%L}
z-U{PCE?+~MhTg|A_N`Cd4&zQ3Aq`|;DWHM;cbN$bX}C}0-&O>Z7MAePq%`6z%1@<=
z$X?U-W{%p{zPJWOgRUW>@o&SEs)n!zO~a4tQ(L#@-CCa_k)`4<9SjYohNy-IG*}vJ
z4W0&H_Hr~-{k4Oufo$PlIuLg@1RbkM*my&#gocuG%u?*WrPKbm5^U|UAqCl;_=6Ie
zuz^48jj|fbX(+FuriKg+6*#PhDx5+?B@LA|{?1rD!KSo$Oha5&w-$^G4TOs}q|zmY
zJj9b4TIYtEp2%jErJ9E7vUS^r6st!!q-x0OrhT0=HDqaMqoJ*ahcwjEkf))6hHMQ#
zZ%E~6sH35_20nkWbSx6j)lgRhU%mL|_D_*`Jq-_Qs81^tiJv@^&B7<OSvzYHX{aGz
zLo*G{HT=6F)ks5Q4NWw#mCs@<O*Nd$4H01%zKONa&{D&O&7E3nVE0qM*{w7f8&k23
zDe~~ej7{w{wAb*chHe@<Xy~Y+s|LQgb<*&NhMR@sUFfu2PT@Gqp4<?h=J?>YRU%o1
z<Dce+QW_r9&{IP%EqJ3NrMrfAazo_rq2UMFvA2dk8v1J(pyABE&fhJ{?yI36*RnCi
z(Mn1lat_qccVmiEurI4aGz``7nTF3b4AU@N!x9ZkHH^?OQp0o&Gc=6S@VJK28pde&
zvSaeGj>*hA87K2YV>OJ^Fz;~2!0w6h8YXCXQp2ux$pVezPiUB^VG`{=q~Y{d@yQyd
z&`f6yHdT^v#>N!!sTyA1n3~338&iD>K5(>Ae5Qt{IHrdA8lGlcw@W_DMIkv$!=-D9
zXXyW>vt~>9<;E28=QRAaF*S#dF|*TL3V<Y;i)>0Q(D1y5GOgo_H7wL{zG>WQoqSQl
z3le8_`HRLPhDPh;OZ3=Hsm2RCkx2d<4<wdRDh=;z_&~!e8eXNhYuKaVH4V!(Y}2q^
z!wL;6HLTZgC7M{JVYP;JEGI*+Q<Kre8<hWnMClH}8}gfyvPQzS5-vL#BF|mO?i)00
zl;doYaI=J4Bz*N`Xe;MB86w*b4LeC}m!zC;$?>V`U2?$BTE&UKEtS7?Sf_Wi;B%Ju
z<m%p~{Oyu^>HKRuxf44OZ(l08u|sm7Y~8QnfQAn><ZMb6Qu%9E@sG$UXZb_}Rl&Iq
z(I19&+VEE5V-1Jt>Tf05Y)TOh+>|<^;V3P;DfOxBa*RG;Bq<@`7jzX3g>>Af<G6+s
z8vdu@Hw|BD_?jNe^ul<Nw);-Q_Zm)V_=Z8}Bnr<Cot9z#EseD)#X=&*7;`wIdz*Ot
zi_Q-;iT|YG7dhh@Ca5NHmY*rurW6q}{HpOgLh(D1<nJ2(;3_oyO$x(S!)5lO18De@
zQ&WuA@y0bW2aYaufq^-?&_xD&jZ7APP;yDOlHt&%)K#e~DwzTt-ko(#!}WWf_QR$W
z_4yB@nCU`_M5W!*@E`M`lPI9$Hks`t)gIDuM-q)^LR`_^l@`>IrU%YRX2O7|<9;2b
zb(GOjL`P8_mJVAFoWGb3O^5kK=i)jP9V!QmBnxy(hIRhF+ylG1CHR}&nNz#!k{;1v
zaF7=Z-Q1KiC56naIyzh(o(^Bf{*GDu4rfqT)LT>!lvYy02P7;Z;i?zXNH3)WIv!-N
z&8ec*HBwlJ@6?lJbyU((Sw}fN_#~8+@;WMz6G@he5@AU8nx7HV5!aEfLr}2R@r=#E
z2Utud33k*`RmYgA8A%;iTBdRDuBIc=CSF4a8Ca_8_`XB3-R4wHNy(5fQ^G7A&EL(u
z@nmzdW$UP|<3lb@M~;p<I-cS=!A<1qsH<b3jzK!=>3CR2R~?V)sIMbWM>`$ubu`e?
zP)Ac8&2;3Gb91VZj>bB6_Dv9PqT^Jb1k0f*`Gi-uWjEI`V{@vNj@CL_=xDODc}pGH
zSqYYhPq%$#b1MCO$7Qt=ZFCTCD<PY<4oG&;@raJjIu1|G@2KPY(zH%Gj?4+&?OXM4
zl}HyI>^paUem5N{9dj?MeYjX1-6^n}=uN3Mrw(mS_0Z8%$I3y;A2z3Yaiuj9BoZE+
zlTS8|(^p47*`>dZ0TKya%&7ES&^lPh5FJx=JgH--j$t~+>KLbExQ_mHJB`xOqgF7&
z2puE2u4(x!Bc|k&__%BuE#Vjn@MfzgR<#<hV}g!}Iu`a$JfUNCzXZ#rti&(<5<Tq_
z*EXjn>6lF4-jZT*rIw~jb<NN*O~-VqaYd`?GxIs)u$MwJrPYXk|5E5_9kX;E+b~<l
zS{>_jJgeh59WPU*I_6M0I+oBmFRSx(%-8Xvjzv-x3nW~q<9Ufp?VX?}P&qHis{c@8
z-;Den{Sz-y54o9(b<i{{q%38OY)LJX>Y}1DpUwBW6?&C=*0D;*YmAGP_HrGg#^tlD
zkjPWLvR3POUB?^Ja8vpua-YmUcS&V=Q%7=3YK??-UamoWy^amEppLh6Y}Bzy$2Qq(
zvyLq~20xV8s^doQtZ7@b<CF63-igLrQj~nVjvYF7_skl$w8qO1C5Vu?OUE7^@96mb
z`?haOxSMv_l4AAYhZ67VcwY`xC@Zm-s>@2er-L|=+RJKuz-4A7_Ay3!Ws!0~$489K
z2;vbO)NzQBNUgq}_?YT)6JO}~QX+?Sd_s3+$V|*Xs^e1~$0Tk{%`e(3i&9lPk?|S5
zsCVLX$=|$Z)^QytB>tC<uXKE^<9|AS({Yk9rQ-)3KkE2K$7vnk>iAB_&3=goYbEyE
znf3Z5ZhTsbF895(#TT>kN%={~86B;9Wd1_&Y9)TAUwzw_W?~bozse@I7MYR%yN*AY
zU1i_#TT*9r%zHZjoUG2yOIxwDM*Erhf9klvoX{`PcX|*M7o}IXdnj>93e1IHmdGzx
zDqq!cjnPVdGT%m!7Qx>-{?QSNpg@G*NXc9jP5fLnag(=_s)>Jf+>!|K|0Hr-!aEW^
zcVBv;Hi>Hu6Z8Az6*?O$6v2HF6pNsEgum00UO0k7f5eJJ@cEj={SnkyUL!uC!?iEs
zMI$Knd*St8#1|ZCszmTlZZaGJaaF?ZZ4;U#>JdaFVnpCa5S6$Yffa!rffGU2!UX$z
z5x5a-c%t3>Eh$zvO89_eMg$K=P(tD*B_u;BN+o%SmzKox5tNZg*?T<YBvSd;tO^pT
z7(t~7DoZ?ekEdFZ436;QmQ;EKi3mDH@JIy72&zO-JA#}Dszy+aP2b0<g!E~N>eK+$
z+bK5tXy~s$Vl^YkU^RmIZ4+%$iCSDv1VmUKlEeyMWoL7)wu!&Dq{vf;N_aEgB!Z?9
z<VG+(79SCd*NvcF1VkQ|u)c(>=1HW1gbgLkm#~q9jU}vlI@BzJ<`J}wpj`wlB4|kg
zBAEGKVxgOC6#?A<rIH`Cjkk^<yfwAt$Bz8%7k+E{$}3szBj^|jZl)L8hB`#>P~~{(
z&qF7j;2TGsBj^&r#0Vxu&^3ZbBj_DLp9s3qH+D2mMetaJ@0|7_v+0ygjk`zCBZ8h0
ztcoYrR7muS@C?>?WaY%o3JD_dt*O2d{4Z(^j9^d%{UVqXi}#P<*r4jIU=E1jqMMk!
zHa<9lArVZF)dpKrL%D=-Vq65nXp1%R;Sv%V5y41_kGe;BTq2_-93$aa3Evu(-g9Nz
zcsbyO)`=NSttTR&d+&ZGZ89Z{;FUjO&qeTL1T^c^2&P4F`G<xllZojO%!puC1kX^0
z2%d`Yx7{*08vFKqHuSU{knaG|#}XvYmPULwg6^k7TnGy%<;ZV`3(lhhP=O{Un^+LR
z^R$<Nkp>n<@B)LvfMMW88YqHSBX})>mm*jk!O{qpMR2lVsLrC$3ytDS$lNHdHHzP@
z5`S4zUWwq!!ZcQwN3bG-oe{hh!O93~RZFaiU@dJS@zoL3Z<KgFf;S{mYI^cbPBAU%
z&dON&cye6?>m%3_!P^Vf4H0aN;DL7WTW0e6n;DzmP7vP|L0>z$ndaV_s^1~Gl@sa7
zZ4qpz$4;|ZcE~Q|EZIJ77srX<%LtA~usec15quoM;RxP|;N1ugMDS4rdn0%+f)69X
z$>e<riR_Eu1BsXJTZ<`<lv#Oc`|q_b$x0+^MGi9F?@>-(S0A_>980)4enLlz1bgKX
z8ogd8mZK4TD)E7RYvumZ_A@3f+40DgpvxB$H&pXP1YbpPgK0B@uc`0|uFF_B6~Q+V
z{1L&~2u?@vZ3L%wgny0TJLx?1fgdCIUgAGUShj!&a^~6CPZ6Avl%FO1MMBc&y=V~r
zkMR=0l2(G{cZoFmD|Rk|^Yl8JGJ-!N_$i!qiPGj}?f;?ig$M{QO8A$AYxgHQg|pVw
zPhO4S8Z*+8wx#N2ZLC+Dz1ropB1|qy&@KOo;3jj|`3%j#zfy+#3=}p3&%Y(B|3z?H
zB6sdd7?Q08BrGUl8lgnktNI6Ng!daLc8^lTKv4skS7NQJh~0HWaY<JsRPXVGC9?6`
z!b46~)(zC2TdVbFS*C&hcLYmU1C{~XfMdYrPzJILcm{j}3CR;R@PL7`2Fe*IVW6ae
z2Mv@qP|Co=p*RfwD~AR|PUj>R_E$Mz;ZXdeI*Bp{;sxWo?udmOI+iz3!GIveKt&3l
z8;Vg6p?D<&WT-45kyqPgo#8kI;)k9t#MX2J{9WDD+|ZIbiKKxl2C5o37K&FlP{Tkq
zga36a&gx$U;<N9F&2vLF4P+RYxHUy#w#pG6GEmDvE4hknF5Ez#fd&S04Ae1DkMbMH
zHBi?;rT*&CJ7QJQ%z<d~+}4!CHzhuSK3%B3f#aFk#3$CyZfGFiKyw2l>Lh;8O*Asl
z*gz8l2Xhk3a}sR}#9!H(`fYBgsext&HsmJq3dRXr7&u!bbL1V-k_qRIC{`fe+CUov
zZ7IKjP6i$^(4M7EsDsqWj;$%Ky`#jry2YV5tDOyWF+edm3x}n6<>!SSmFwzeAZ6e&
z1KkbuHPFvM4+B(VA1P-~iTBJ&^fJ&}3cx0g$?jZ5e>uw_$umIW10`%fC9PC}_+UvN
zVqmC&VFozJa7kfD;w>hnai~!S9_Lz2v@<c<z!(EJ>FNf?8W?9_uYvarj5m1q$7=?b
z8+d{SGVrW{=L}3Tg3R-zfvE;28<=8X#`F0z^3w9J2FYQXf$0XGGVnC%<b0zQi7Shk
zL}tqBkIw`*f>{QhF|c4xsI;BQ>TEgY8$Y*Y?wVs@u7M>6mKvC6V7`GxoTyLM0t3%8
z+Z$j~Vp&Lszo8O&;T~n^i40aB7?=N&figWZ7fVQl7ldVU{OQl+zhdBJiF4A)FNF?1
zlmDuLhqh(k`CDCKV5Nbr2DTYkWni^|_4Ee=uN!zJH}eexZ*t%1owzb0dyT=@t9%Yi
z$g<YJI!PhUblUH-x~pGeqk&DdUH`;p16znc8LWE4g^X8ksD#@Yyxj`zW@OFJ-(g^<
zf#Son-=eYJZ1pz7iVp84GHNAwnkD6nAKLCQ@QxJwldY+D4G^+$!1oP&VBkjsKN;9(
z;6nqS8Tj15uUk|54ICz?fdd9UGSKjE^&q`*QvM-1&b}+^$Fj;pGKoj%r3P+oO-;{B
z`_#aGd7C?CVDwdWkG#R1yrzC(;7bGF%I?PvoG@_Gz$q?dTZ*gxN+Ms=>rP~_aHshE
zc*ZvdPBS}YC5Znx#X9p^vw{yLzBBMWJ*r1$`nF&RKTx)9Dc*_B82H)11p^li{6goM
zn14=c=~n~)Gf?yC{NLo%e^A?5iQgsu=(f~ZiZLUf<)16+c}e6g;7<c-{SvP%$p6d0
zB?DIsT$N43dZls3%gi3Xw4L-*TjJLY{4JZVGa|O7=$tng=G(H_^pB*kydHS<Ed&2C
z`IyKxaofNhrdAUrOoU7nFj3ruVg^_Bf@Wa2A|}#I6f$w2iNa<OEceUSIoncametsD
zNiCt7TtZPcy_nBZOd`C+t0uxG922ey&4g~kG-1gRA}0QwpU(#bgEA<l-apvluMbLI
z>mG!UEqPwqmhwz&-j<4*Sn+jR`l>JKGcT)SzHUnmmo!nzMAAeR6EN|hiOMEoCQ6$q
zW1^yoN|L{<iE<{&b6qQ1amKBeR4#3Lqf`YGgv7teN__oEDZ)MT@`Z`G2|f!XOw^c?
zpE)N#-Nep5S>-ONgdcAU_^X<zW+KxBzX1O2wp4YF+&57};uOB7oHRqii%$h%!t#)b
z97(BV;yV4r3__{4ghUo!%ve4r;AFa}OWnGO1`^gY@vs?O{pw4YXQE-fPGln_PeaL*
zFJU7SjV01V!ln{7ld!po77}S`qK!n@x0OU%n^3n0H+Le0EbUFCOgv_ygNcq(;7%sG
z%GO6rd@>-}naVsC>LQyc3GqiwFkZTui1tgcH2PcZF8QC3u!n>_CG5rZn&@MquZck>
z2Ak-|F&6|$W`K!ld1?LSP@~th>RiDdNTVy}g_CWEm>6nel!?bp43qN?H!(sY#w*Q6
z%8~gHLE%4V^64L(07vtS`6kAj7-M2A<sX;tZ%?t5{;KWd>X{RG{H~t4>$O5+dx{7<
zPBc+R>S2nBCrvzWVWEYoX7F{0CKj4nm_}DIF~h`66JMJ+Y2qmpPn+0cVylT+CY~{|
z)Wk9qvrRn9vpokf@tldbUMqCp^5i@db4(QdTb*ly9)6@}7U6ukgnF~`=hewvXyOGE
zFG<IHkt@3Q1hh!v1x{oz&}J>Iv6yo$t+B+!uHK1{_{L)56>7=EN)xY|cundM+p;?j
zNRn+iHT+du7Aj<wiPa|7npkJzbvf^wCf1mE!^B^8G7oIae&w}7#kXcxxxX$wnaFw*
z8zftcmBD_u(M0_d8JkQTc|QO0mTZ>Iw8)(Nf!ngTnb>aPV-tsIJ4T9$4@~Ui!YQPQ
zw@vIe@ukc;Oq*%5^5?Ek>@o4438Q7|9WzMaEbp4wEAjPqCaY|E|E_&ornvQdXyTBp
z?&p~O5(gywNWy~>a%Um^(zPJ7v3z3UGZUXvS`$ZQN4|wlTUO&!6US(>+F4u+;TIIl
z#0i<=4wvgzzE6UA{y3fOL<S$hnD@Ri!N4SP%EUKJFBVE$IL$C;60=}i_|C-l3}+KJ
zO#EQtM-vxJTr}~Mi8CgCGx0n9T#1x_r}57welhW@iT{y4tJT+S%$%9YX{$RI>6q`A
z?(kB*+&@g5qphnY&Pqt6W`_>vP5j9t4L!43f@Nd1R)5h$OkAZGnYb)D$JWbb(-o$d
znaM$tv;9BXUH&qooBwU%A3C0eVis;P<ubinC}`o9iT{}SP27=#u*)}&#a^TS(L!|o
zF4=cSn7cidW}%RU`>jAWmIH5j_gN@xA?7yy>gkL<Uo<6g<@Qt&GK_A1m#4UeF#lJa
z1;qjv$iY?F{nY9#-9p5Iac{IwcIVxk)#`Tfh-pEuoBQUVc5b~~$AW7iYT*G3L!HFB
z`AN^h``c42zC_0HYd@Ug$wH;9;MJw16+CDRelEl}3Lg9UZ|a6dO7I$9#zI*u_yDDr
zg>n|kTfuk5vn*7wP?7Rm5EhPXPgSx|*~0mmX~dV=iMy1zg@+I2^<I+9kVv|O2@6Sy
zu&Ihfs#>Tfk?IoGkg%qN<mvl-V)WERriDXRg4KWQ#6uSPHVm%t*%oSB!AF67E6cG^
z#{wV6a@o-Wf6AM9T}i1Y;i1|M&(zlHTgbD}z(PaG(^$fM3ymbAwoPpPBUWKq;x46`
z738k25;m8xg@i3Fw6f6JLK_R6X^XR>t%Y_LI$HS9Nwl}{)ArQ9{hc~U<Ufg5yd^qW
zm~lvu;SoxBCP2E#zU<Dgialzfn}w8x$1Kc~vvj9O7RFf^Z=t7!UbKjXVHSE@Ab&p#
z{VnvNDrEKT&pVx*Bi!nt0T$YxNDQ_xL?QzjVp-{fEL{0X5DC5zI74*WB&Mp`a0??W
zjJ7bw!bl4>YNwBqLs@eIp2sbG`l{IZrQnz47JVYR?hk|<ODCyRg2)65Pgt1F6<L^Q
z;aaKiWD8R)Op+s1-jLh+UvcD1@uUT(e&eYY>i!_y9VvF4W})aY@noI!nHHY1@T`UB
zEIe(2!n4;i5}74o`-6hR&Xxo2m@4L2n9JEe3B+h~pcCPIuX)Yy#eAu&1s2}>Tkt!6
zqmCtBu<#<o&BJ{j7Fl@7LSqL_94xl5#KQA77TQ>9VHqRHhH2wv3$Iu>X5ljnuUdG`
z!cGfsSy*mi1-;$E8Vf5e47w2;{%>rxg;mU8nWEsA=E#!bbqjAWKvsu7xE4EqBUZe(
zR`6DAt%Xe%Hd|O{VZ8-5ZLsjoL35+T2aaq^&d(v9GQ}1P+bw)DR&2GfjfO5R>T3ag
zWdlLt4hx)-$Sw<STR33hBMZAN?6I(q;m}vSLl1PtUasB3yB6Nrmr=+N#jeNxONjR^
z5Pl%xzmJI7l?AIGGVnJh;-}6143^envMmk<VTGe|qK~C`WhRKj7S@&*OAnc!Ftq6y
z8RFSXvCWfOKb$2#rTg`bXMf$k(bwkZ)V#&t9K#h0Us^bB;eQr>vv9(~R~Ei!(y;I~
zP06)0;ZwJrLk*nfr!0OSLyXkKwc+t^=>ut^Y<l{4^omSDd{}ca_Hv--A1(Y$(>vlP
z3uov>5kcb1L&eb+&3>`)tA%s@TF<U4#yVnjmGs{&{9)lw3m2FzM~bsdL@YP>zc0l(
z3#T$fn_eP65h8`wxkxX)5c|u*;PN3>FEOXJ7Wb!hV&Gq;Co?VExZlQg3pXr;Y!tBZ
zw}pRrfGH^cWB#Y|+uQ##`7<QX#%i38{XSF>&OaYx^)_vhA?{cxGa}ByE(L8&EH9cn
zqL7U=8;@iPRu82FWw_5q?D6>J(xQls=QL5=hGL`ikWf(@e!eJXV{}dN!NWqe5w;Pr
z(YLqIY`kAZ=yu>3)Jgek0i1TA$)UmG#{rgQ!?w}fMhhE`4cA5u8#Qfs9MDDu8x?Jo
zxEzbxC~2dVjR$P(oggN*6(wx^)J5E`Ct%}28=qDc<tT}bGBzk`St<522|?js{yWy8
zbNs$~f;{DIG-%Rna8*&sMr9jG8&%k4f{58jx6!nX5H{jA*47C8r;!oBgw6j=CRhsg
zi*uz_DTyPh+xX{fteTu<?Az^0Irg2IVIz~{+h}Mbi@j{rv5{*dzl*44^Z!1J+BSag
z7SEQD#1^W^p$wMzWp{!;P}j!8HtO4;57e`9?C;p#=3-nEJI@9o`Acr;K$vfXKETpM
zB8?<$Y-33gp%xWQZ8Wn%{~Y;1;H8ZEmNr`1{5m~G+GtHNY&>eCn~k<M+S%x0!>B3R
z+vs4U6PH6PB+@$Ccz2KYWmwQ31{M;tCtK^z#^yXII@`FFFCM%d>uTe}$Kt0t#H%H(
zl#R!146rfKMt2)MZ1lF#$A&l;>uIA%Pti+4RxACI!)jj}fBYNkFCmeBb`VfRb_^9`
zYKTEL2HO~FW0;NSCy6%?nGAs;Hh*4Tj2asM<W6k3jUS?-;3;!zVUg@AM%j4W##9^A
z0&9xVHYV73!p0aIW2rYA3*w>iHr5z{^-JB1EvO+roGd2Vm}KKgNoTLgHl|1y%KM>J
z&(#^(J5t?xh;NqZi}z$qr&kmdvur$LV}^~HcJOxkl#QpQ;hs<hpFL^8pIV98HlDRH
z&*mq>;yD|0Y|OQ>qOQnXoslz9u&kUQ#=e(m);B(%Qc>*oK|r<Jks^G-#)~#C+qhz5
zk&TyZ9JcX^jm0#pjjcAeG5_0GX5$STZ!-VWUYBCa?I2^kV&hdCuh9zGV)l^Gubo0h
z9kC`ytgx}t#wr`DZM;sNKVwxM6whu<9Bn3uw=W@%mlJE~>NYk>Rj;$L-VQSVMjIRC
z$lsS1T|YKA?M^WN-&z@Z^kcJM^U!7+TWtQEnz;312H|!aJ8ZmdV>k6#LKMmnJE@`!
zkxa$kVq_)6E~@2L?4c@RkBxV1?4#$<yBNhx3pRS$f_dOQ8%zbv6(yHsu=-IE@d1NK
z5nH>7{WcCr4?kq%Bl=inv9*>sXrq1iIB^ytAKUmhB&rk_TZ)P!HjYv}ItdNRAhPj|
zjng(hv+=o&6Vf_gkm1qzm$cE<So60th#zN29yCw=7fTxAD;r-+^PRMDic9MgXSSi$
z-fI$A@LL)#EJ|F79r-85?d&_6_;93aO#H}n#6jrQHqLOyA>vm$wkdv=I793g3ieXG
z#K8Ffs2@Xc6a38vH$Ea~nKZ(JZuX~*b2h({D%kxzEglu>jo1Yn7wsTL|0Uri3E6bA
zy&&gR8`l``4$3+FG7oOpDD2>V2Y)j`*|=jP<OGA?wDF(x<bNf+#V#d+!8yon8$_7@
zDL?@S1sxP}Fyv0G@ISFM2Ubh5dq8OJ&DhIsu<H99%xEqSwhR?<P}G4*1_#9)JW^k%
z4#EzKJ3&5CoM4+c_CiL##Tk(ed76U=ht-8HAsI^66NVEgBtU8k+kxYtgu~Pd*Ma9?
z-?>=S!J$sVcm6+T=07f&{T^^|db=8165p<hQVurvDFg=(I(YJ9v%soQX(#XymNF92
z{*2Y0EOOG*%R8vxpoYUQKB1z6N)8fEu-?j?^h&Vj#woCa3qRBnRAYw_x2m(RW=uF6
zOLuUmQiw>>K@|twaH~3~<^<+oZln%5NOdPrAT5&NAkzu5cLN7m4jyt)*Fil8wH#zS
zxO66`j)U4%#p+Ow6Kq&aHB3G%47xX4id+XPdIg$!*g?aZB2P;ArX%V*V4i9CsF>8=
zKHbc2$dln9!SK&_(8vk$z`z|TO4!svGs@<oy36mXp@oB;4&HLm(m^W+PdRwnL2CzX
z9E@-<(m`7X?Hu%U(97Xp?4pB%t_~h`(9uCB2b~>sad4u(IJ+|Rh=Xo_#j5=kdt{vG
z^?K;fm7(_i#nqLeZVploCcYl(;ova`-#;$8JN*7hXu<dvgNBL~mt%zFXX)*rkAuPV
zD+hfY^mEYt$HD_SwJrKP7~p`>v`P_#cacGCIvYE6E;ye&-!U}Q;ZNm=VHB*o*t5SB
z_rBo{etj{6Tiz%Kk2{#`V2Xn^zvhgV`k&}vjDxWb#yJ@8U;-8B;Dd5ve_Ju)R*VUd
z*^j}V^N^_5U6k)9COIhkdWf6&lMbdz^>PX>WE#EQ33jXL9PMhXOM0+R&6Jc{l|<oO
zG0VX-4qkJx+`()I&pLR)!HW)_bAnx9zJmo0=FqQdin$Kv(K__@0r8$q#l+s?d51p^
zAQn_hTS%X55-L_nFrD(4vB<$o4qkRZmssqeh$)sjSmt2<_1F>zJn&q6EI#QIv);AX
zBW-NLS7_y?Hk0S84mSQ5E7?x0aIn(B2C0f7Kj*A+@P?FUwS(6=tRt#E5+;0ORp?DB
z&B0m+-}D#j9ISWvzm~+>&hZgFMe|hVov;|#F}~5kCI*^=Ee^KJF@wXu!(S#5+Zg!W
z#e!6`g1rMs&)?x-c)D1SDRwz{+rc$PlY`w3_Bi;;!PgGnaqzB#!wx=iu$OT}{alS5
zaPU42B!%41*muC~@<R!)&Cg@*tvFFI505(*p;kX~aFCh7!N&~e{UPq2!7;dzD784_
zvq*4iJ>uY)gU_7c%zTuA=3u`k8kQ71wKC{FckqRSFPVtW#&(>D@Cb37X-9|?^!$*h
zTV2#0*xHGwpLB4F&g|eEmBXCl;EaQx9enHHJI;PF_9Kzk;@>;?fde+RFLf5&<GA02
z%8Bo;$9`g5OcrDt*RjMeG_-@?9Des#{K|-XKk<9M_}vLM$3N&Zw_@BY=XVjiZpAnt
zWj^nK$F08{{7KJoaM20wFLq<G_hXaC32w5N99(9iz7@M7;Z+ImyAqrUC;XOkgUO%i
z)P?Kv?;>%NiP}Xm7ymlA<si*PAs7GAk))*xxVR&i6LNz^QSwDC0{K_JmQm0}w-JF^
zc^P3Mz0bw{E{eD)?Be6iiQT)h2^lh_`dY2NGZ{q1T_`Rr7xYQhMc75eh2aLfkLL2P
zx`gh6+s*0MGl&!6fzWh=QzEaByjbyuWxK(mUj4!(^j!EZ%DbrGBI=@O2~pBTDHoLF
z0T(5tw8yIlg2BauZm><4by3;{FEwS{;LgHhf9ngewL{`OsF!m=FCq`KbVVsr+(o*J
zN-iq9e9;1B`>kiDkP<Sbe?37^$VqEL2^Upd{!>DcbpJo+GxM`lby3?7HqaU_YP$Se
zSG?jP!$qcx?k;+`{INAW<f4&_#x5V&gN-9k>NA@iUF5i^<MJmUP>*Z59Lsg_{H`!f
zPZy=5KI~#<KT)4ewZyL0qGgZxH<^N-AM7kHcrk3~BA=@09P9#&wI(i_x@hO3y(Bhs
zgH53&cL6sDMs5u)T<q^HW`^pta?#oar)cA%Ew$8Ktki=km}=gOr+0AC(Z!=ux1HGP
zqKk`p?c*&=3+I^G*~MQ;k$F9Kyk*<2w3H>*w2x2YQQ1Yx#ba*Zv|amHZx6QO|Hc^9
zJzey2@uZ8XE_%D@Lt$Kupi9&geO(NoR@p0C^y7*i68$9{(=|TG<*R}iN=;sg4R$ev
zYQGdCg;l~~l79bK@!Y~ZZrmeXjCC>2#V8k#yBJNKR}o{}Af`IYuwpPW%Er5x;9{bS
zN%W|GVtIG*ghc4Qyopa{I5e@RxZvGfDJIGerbuF5hxjxX)9Fqw7Py!p75j{|<4hM%
zxxpRqX_x<CNX(K$#dmaQGCW?auAuAArT{LUb1}!oFQekWv=E;xjn9?%yt@<<H)jm3
zE}nPsk{o%Vix*tH=wjbbUX@of7E#*X;{BR}H&bP3e6foqE|$9Zc4K0hiwj*to0~S{
zM!<_O^W>{8UUTu8i_cvwcd^37ZWnu8taP!;#YPvKT&#BSx{I}Lu$LJ{#2YT&bipjN
z_=I_BvLI!R8ytz<>SCRX^)5bYXK$dTB%KUw+U#PBiyba@QVH~m?@ewr+hwn9F8?T1
zaI`L+LsWZ(!PZ-hN9Kypj9-tNyIh!$#y`CkE4w^?`2q2ci+AZ@%pr9CSo&TUAJRE#
zWf$+e_<##h#6Fk5R3N?@5NC?+tqSIc1B{3}v5#E-c{QFI8KLj(Jz?(oy6JZ(Ox~Rj
zyZFQnHe8;ikGMGM;uwQVE5TIoDgCNn@O;5?^Wh+f>OY}<;o?gde^Qe!j=MPF;s+N$
zy7)@k;u{yInIvz<zGgOXaf+@kV~3FW@LSo$82sMFcM@k9vWf7|^XgA7&QP)A8vpL%
zXWCk(%Ky=t<pm{)*A%}pSL{eVd@jc1`5Q;L9%CZ?!^K$_+=<RH07K$Dy-SEDjhc;r
zC&A6=BIC}*4Hthig8q$Na&g7QRc07fTz0`Xgd1B5U6W1MY2}mVfd1l@8TQ;qLZ7q{
z|8Ols#D6YsyST|Mz{M>|8M!FV^LgVQ;?qLn4%5*@QP9JHzhfZ}1w71qxmE*ah6%!J
zFVZ|*8{K%vj?}tyvBDni_i)h1As<CN6!mb%!_OXyc_{8-s)uPF6c4J0#vYn@2z$^x
zRPs>SgYF^X!S@jL@bH}&bA{o-^n#>ed2l?q9&B0F2Z-8Z0())U)&WC8o(HD!a!mUk
zN_Z&kp^OLSw2~g+;XyArNSBh7cuUcxy}jo_5q&eXwpehKD(j)VhYB3FZ@e7&+ltY<
zGfE#Z_*7MqLme^rK(yvkEapLYsO=%gL)_!fKp?|IriX-wq=#xAs(Yy71zDx4hxfY0
zkF1PO86Rx--1KXBIB-_2DO<UNFKHGW0N9k}fqVKx9%^|(QsNdrZF7Rxz43?4Y!3^3
zu{~eZA<y*~pC%smkn5qYhvzQGxSV>N{Ys3_6np5d9`Zc&Zy_3ZXy_rI)@dIvJya|)
z1*3r5N+U@j($qsU4?R5e^w8Wx3lE(=bn(#ALn{v*JanWcX_rBwt%r83hC~}$t+1#V
z5{GxBc=BOWdk=hLDO5W+_E%{yHg^)8JUrs@ty1iHHRCf^boKb7&A5=A_Cfo2HxDTf
z-92<_6kJaVo;G=;e2o53Mo>aJ%m<z0y*%{xFrEhT(8ohx55qhR_t1}v@-WE5U^<?M
zfpW>^hlO}lX6l>1JkIRbYgmY;AL3ysedb(jaGGF5b6X$bVWfx0J&fjD*JHd#kMe?7
z<rM?Pkcb%LVJwBrP8;V1j~*D3PslBXPa@k_#Gjx!(!@l$OdeFM`^6*=lRZrF`27>{
zq!*lmSbonFV<!dYx9J{cc-Zb?hliOSp7QXLhs7SA_JTcq9xdo$mWO9N%%%@`!K)xo
z@|5#A4|6=sl@$6IW1l|ERyy_qx!8psUhsl+_q-R}^cOE^{i28GFT@scs7B)UVe_L&
zf_udGJ5o!?;9-r2wH}svc-g}W4=X*q!Uf8ZS?=LA5A7$2LdR{M74JTfGO~(37GLFI
zwTIU|yy4-OmiFixY3J93mTb=8!Rbx8*pCjGJgM^3w@!xAMh}}jtoN|N!|@M8TqDba
z%|blIZRV0a{QjA-#S0E~EIf<yyuHl>&n-lDdU(sj=N`WBu*<{S9zJ5a@UYv%9uMzR
z!&KM#*gGEfdcoC?VfZd}`$&MiN9H0TyO}t%Dua9IK97g?;9<6vDL(XqV`1h$F;)-I
z_vE&C$iv4Tj(9lg;jjlD*glaK;hsf2T0`);^;0jn;}iMJ!!br~Mj*3OO$@4{aZz7#
zfgVnK_?GeFh!Y-8GT!YVZ+yi8>7Sbud^%w2IOX9Rshpxe7Or1LtT<tQ=iz(WT@T*7
zeqfU6Cw`P3IC^hJiPfQ>q+2q^`Ofo;hhG^WJ|6M$KM%h#W%(%W<9EiChr&MY_i@(4
zIS*GnT=j6?!=F@O9r2+MymVjiaM8nGUT^^)^?HbUzC>-ysVCl!@x;hmImNi<;kt+a
zJlyth!^7Y7IuAE#%C0I`#FWA}hkrd3@x?7Kczt4_cvp9%7(RT+y~DKcqo9wFkDV{Y
z)9=K%HSmU*=A)30`}`oHcMTWM*A^KKMS*Uj^o3XvA4PrGJ{-3CDDFe^q5DvL9z_CY
zP<@_?Mcq1SVLynJRqccOSHGx;_;}-H%=BUSV6|BdF)v3{{2;^fG5gOLoA?Ot`tW@C
z{{LTWqdp$+QOXDZaEq@fB{<9eP)R?yAoER$PfwRe3!cZmnW$C$GPsG9@ln=Cu8+Dt
z%K0eoqneNEJ}UUADF5^;>#=wxAC-LwA8{WAI)}NT@ID*!gPny)I(zjK3AQ#8->%Q#
zDUnrX>?%I0`oW_vcTC<%S*_utrXRRgEgu<Dd&IMRWcuiz8@v&993md_gLvWF1!1<&
zi$m}fmg5HxeRcfc?TGgaIx6o(^?W?+qp6Q(e()qx-$z3q`F;=@dBhdbz~}GH2Ja+|
zxO^wDQDYx-ngpL9H1T<Z4$MSia~~~ye&T?(K9<}sHg^y$eYEn?+6QqhD|mUPQA!OL
z?R>QN(ZNSYAIuDm@&w1{bld-qeRej|Q;5pxqO*@KJ{I|S$wyZokNSAR$3!39e58B~
z^)bxHV?Mfb$vy`7=pmQZ+eaTCJ$>||HQS3DL*oogDyOd>TzUHWLHN)m_+(Mb4B$XN
zxK|GHF<2tZz4U~JKbV<+szZES>>Iz(FSvaS_wl%o(LP4_80qs@i^YJlViebIh~urA
zHM<^Ui7|9$ON{d|*2k)$A-=lI$rj^jTuG-Xi@Ac2x08HKrq}s+md;#4Oz|<*$21>L
zN*AT;(vzqAnBn6oA5Y6EDy#`{ikbAlov9g*x1QzW8HV$a5VJb-7(e;qiGuiZesE`;
z=VLyt<72KLe7H99!DOZVA!=ZO)X(!i7Sh%Qg)$=kf<)*KFZ#h9x!`@l)9$%CVlmC<
zW228vK9>4e#`XGGC;j1NAIs^AK3?(hs*l%vOu7;{(xaDStNHj`AXwu{AFF-5&ZY~o
zRrF6s@SWrhdXA4TF2&X`BRwScG!TS*P2GPsMk2jpy^jqtW{H28NF)5Ta%i)UEk54%
zv71dkw)xmW?;0w$``GnYjNbCz8=;)KV$`5ev4QcOj9k(gZaY(RhX~S(C)4-%c*n>4
zRHKh~<r3cW`7cZO@sQZ-<MyhI0z={xj+><H^YI}~b29XikNrLl$cS6`Xox}g!61>l
zGZi4^g2T_pJ`U4@Q9K*vuSw$w!!wF%Q5^O0DQz7^S`^2ak$n8YH0$GYF5JhDK7OJJ
zd>r@jjgQklPWb$xGo12+&E;zvYl1i_@jj;DW1Z41&hr=@iO9E-{yopYd@YeUKO*F@
z?FUIAacfkZp=ZX#Z;X-h;%6Vf`1sWi9<=|*oD&mdXqqA3tSN~9E_wLTWQU!pa|}Qq
zH+}r;<4=z4<C@gcMIV3pxZ>j~vmY}<-#E)<`u2MX9?_YFSZ&$Lre^pF1@Y@l5kCI*
z@sG?HWMDW`V?%bP?t3+Ui^KNMZ*!o@ZTiFJ4*%V)_Kx3S@{fXV{sp4A^Qo~~6LkKW
zJ5z<CxG#zlQIuqB6b}!GhojJ<xIc;_Q521$SQKhBc$h67#h~Frk&spT603A7;(V^x
zqliS|MBzqZL<0?Td@BlS!;A*ET_W5s>?r?SJ!tZxm|b0Ly&dzTST(M3=V9?^6c0o}
zPum?AbSipXsVERd#b|J%dr-o%QIw0KG{>iGC4!gIS^vhEU>Tu2c$AL@dsBrd`dx@^
zc{_u9O{FL*M-hwiA5e;T6zNf1Y+(yo-M%v;5k)c@>|#}-;3pvD=Xp45MB|?y5sf`j
zJ&GDp42fcB6g8vBh@xc_t)j?`A}fmADC$xq>gRf_PBb{5)QTcoR%=I*!-eqU^6Rnk
z!{UV8i^*`OjHpKqN6{#X#!=LdB2NmOA4P*G_I8bY<A{dQ;Ija3$5jT#nez{I33SyY
z3MQpyQ8bU@Z~@UY3O*VzF}8@}v6njW0!RlV!pze;iZ)SnjpETL+D6eX8k{s9p?xpM
z+DFkLijEZE-&oOj@SzM-P^W0HNfGDH)j0}&Dq4H6=n}<GTN6B2bc-St#egUVa-t}@
zN6|ZqK2h|DqGuF8e(Uv$g0oZq^aO6Kd{X1XR9`M9%##56M}zFgdjt!YPsr3aC>m_0
zqz{%#i?+7;JjIT~q8J{<1TH^{5mAg}X)H!ZF)A8tlsvTj)jdv;9;eA{k*X%fM1xPL
z$3`(O3LbhH0^=nonfa;W#3&|3F*S;5QA{T6EExDtMlmId`0CJ8&op)ajji07B5`^Y
zGoqLk<zH*^J3LKhM)5SWO+?J<6@Q9LZXz0vjI+ukR{O`}&u~&6JFAN4qL>rK@o4bK
zJU5DYG<TFgi--A9EQn%F6l<e+K8l4=EQ#{)j~AkNk#bf^UmWFE+JZv}Kh3;*6nTlp
zJs(?FJ-yZugAB{)kWnm;Vnr0MP%vH8d?PgRrTD8+ycWeJFL>f$p$sdd_<L1obri2N
zf})_Dxi4mr{sx_JVEoM}q8;KDmc{eZg;`&4b?c&7AH_DQ*bUL(bg`A3WyHoPHbt?S
z4%4*RmMFqs1)m+z{TlRZ&4b6yBgV>M!2w=5YVM5UEh?GmH;P?RydA}XDBj<cu{(-A
zQG5`^z9`;_;@xO)o_UWhEs@SOgDc5|morFg&kaHnc?kJXBKxDkO@W0x#WK@~d=$mO
zC^j|~hv@B0`z%Z2AIphI<RIlbi;g=xkM0xyl<DP<*k@5x7#-Xrjzw|hV0cWn_&kcL
zO~n`VZ6=VmfvzT06y!M}?e!HMFN%{4<SVgn=)h5&k~rTXkBzaujpFA2G4&nLQWVeE
zghy1w9GGxtcGB)FK~O*z6crV703^<CgJJ~CSuiWfoD~sJKtKV(KzihybIv(~N-(0|
z?RvlWo&Py~>fEkQ)z#HCJ>5OKU7K&cxeVO`!Dgw7U>hez4Qy_JEe)`v26ooK;WUn<
zv8x7l*T9o0JeA^SkJwuS_W}0<`)E;gh88ZgaG(Yb)<8KE<xL!7K^m=r=L{U7JEAi&
z(8$0q99()%1Lqj{jUAx}Hc;8X@ftW$1E*@>-x@es1Hae673Fh(bLi=0%H{v0v;rpm
zte&otTP1YE(Bz*QV3c9PfaJd#C}W_=z_Z2m%)Uuk1LY00YLg=_XCTaJaNuV}4l`7c
zY!!trxh-FDoT_5rbOY54R5eh0ShC`*{Aq@6n&4Km_8C$`b%TE-t)pj3ly#mZV8iI-
zTm$DBNEz@9oNwR)1BL<9z=Z_k)I|n<E}yG4PW`tx8S_D*hJjh@3I{hAEaAg|BfvIr
z(>TSP7q-p029Eum5Z^yeG3px#4Ai1*Y|+3igOap?jDbjSk8$e#acb;1^=Cd88^{{?
z{PbK+1Nq5?OUmX*&nuU!W8h)~cb3W5H&EBW$D@-=3@jd}_K!>I8DKU7MlTiSLwDyJ
z7`U=YuA$JK<J8G<DrcavftJ*&fhJUrf$I(2VBiV^O%43<S#k}Ba=g0Iz*W+no44f2
zWEZYB&`dbSc*P9Y8n})^j#r<J)v3+d#CXMS-YCkvnLVN&sJ*@kN0wu8tMG3#aJzw(
z<C2!+Rhh37j=~*mx_qvMfxE{m2IjxhKx+f{8o19u8v|{r0RsgC?F@AJEJ+N!J6^RH
zTzyQ^!2oIZ@rq2QDgzx2-W$x{W1y3PWrq?n?>2Ck<nNKsb#0XEY+%|~nm?v@a`cXT
ztrN-pB2rfa-3&Zn;6V|)%+m&qvx|Wt;}yX}1|Bx>lmW{8h=E59JYnET1CNP)vM-Mt
zm^5CoYow=7()F(zuh_K)q4BhVXAJm1CWpo=+FPXw>Ujg*4HO%gY@mmM7Yqy*Gk(#)
zOYES*U&X=8GHP!a=xN{;1FwqmX#*Ve*9^Qasl<N{NqTYWO)JzLn!IJ8w}Cze><Ox`
zfj14%mRO|PgGPf1>iP+)_X~x$4ZLH3cEZqcf_mS;2edQ;{R}Mako(ZUN3<*H6z9}q
z6VxXLJ~i-}p(iPYKe#6$W$y^SFhI==FfdR+e*<3%Aai@W{2<Zl*A#VvR?AlsWfG&`
zOh|?p7;4}f1H%k_Z(xjp;RZ$+7-?Y81obTyGCTQ>O8c~MRqNck14)HZ$$JwNlSUc%
zX@VMUV1Y!(8u-D$cmop*{K$HGC;Qsv#xW1oMICm^Z<wHtPEag+$JcsLSWmf$Y9a^A
zz(o_)WfQg8FvAoBQw^-3kTMX{49qn!&%ks8GYtG47&AHFIawyEpR7EGb+!yB$8-)&
zccLPgPm#pTsGo%f78zJVmC~Ya&o5@uspR#~wZT6*Q7vQBJqyd}2d3z`!ztE#q9R^p
zV6}n6bhZZ87+7myhk>02))`oDVDv<_o$58P(ZCi;GC^%Ju$colQF{!U0p~j@4P&c;
zZJY&z5}F5H3YpEi8FV1K4D2>=z`%dUl09NS`)COU_8PeV%>o_8@`>6)KAoA+oOVuB
z2PNkrHeD{yBBV#@{0;nL;FN)1Idj`v$7p+e3K*bbsRU}~gn^SZJek*2#qabgGWTl@
zE|hDR=L9E{4&g6x(SHl&^!b-<87OOF-W9nrrZzU33Tr$6?EFNj_T)rWWTJwJ_e{KR
zqN0gPCT=k~A5q!l0voZ3tcj{7PBW1*^%LZD6V*(dZ{h+IXPBsN;>t<tJQHV{ILpL2
zCeAf6{XnvDc5=1=TEgj*v^~&o(EOrFiupNY7n-=pgk{1uQG)`AIT<EsnXivaOySTA
zkq=Y*C<fPrV<MTP=$c6Pepz^QV&a+bO#~*EZ!V-waNM7tq(T#ssV(7_@!CQ%!vDD_
zPs3mrYMQ8TqJfE8%wwXCsb}0JLN7K^*VN9F`m9HtOi~O(CTVANsbrWiNi{TanTcym
zTx+6{$kxQf<tB2b_JNH{rCl~jU16drdt~Yv#ONOO-9*`9#XfREU2THSlisqK2~u|O
zIup&Q+hTRIiR(?=U}~>>lZhLpPGTyM*;o%JVDl>ZSIX&9x0$%z#A7BNH*trF7AEd8
zakq(<CR&-un<$vL)6~z|c0yZ|7Udgm$+t1l*2Gukb9~&8wl~p%Iw@9(WaIOQPvjem
zl`_%M#OuZS`CBMfEJ)DF1WP?utU8;x$3!<151F{v#C;|nG`SI-rve`ut&Qz|6Ay?=
z7Z>Fi?P8*TvFa*xOtIp+g~sr(iAPP$Emn_c+pEp8C3JhSdcwq$CSEb|s)?se94}T+
zn|Q_qClsCVvnHN1@uG>BOgvB19hAIaYX97wbclB2Jp}OKUVX9(CTn-iN%yje5}!}{
z8oOrVO%rdKc*8_b6Mam*DC%W`zWR#Es<(;H8|CW%m^|@nfpdyUeI*0eOOIB{y-l4@
zR_{>N66F+o*94hN`oP48CN`VcV&WqcADfs;3o-Etg{MiF7)u?pat?usuTAt5GoT|K
zWa10z$HbR1?)OYq15EHC%ds9vZBN#-iS+1%<jKiuu!$kG6BFN=;Jg@W;u{mgOuRE$
zamEdo8faZ3WM;7-1I=$FXZ@&Tl!?(|gq&#Ko8S{+;ABNU+oEOuAl>|l#vtHF6XnF`
zj59Ib#3WNc+Ncdq4T1?KsGNx=iYF^NA`W!1iOD9WuxnFvhNY7g>2wn_SkS~W6EjWB
z;-J$znV4<j`-(Y+IVN^b)|N)hHB!IU)_fBSO)R1|%I6oDI5k<hQ?z9+<^Y*`aYame
z*%Wo-6t&#M3UN~#Osq7q%0%ZWYK@82CT{vj58s+>fim;axt9Hv)b&E=Rn0Rem9vr2
zv-2FsO=1Adyw$`uwrk>F6WgWoy(adV*ioX}32G+|o?>(QTwK^=;=)RLQgg}^>^E`1
z#BU~!nfwO<95VU3k^hzMqFny4i6a8o1fxd<|00x+a&pM0!1PzgO`J6GyEJ{m#A`=%
zFaDrm3+HbWf6-T$(GO5kcJ28o>K_@hcc$p2(SIBo3zaNXwzLx{YhmydRo+553peyE
zP|u{3r>G)Htze;|1+F<)Pf=7jpI=>%B~>g`wQ!n+(=D83;cN>x{+?8`aE68I7EVr4
ztvcnu{WjseJJZtZ=QF43=i@mR&b1ItRjh=o=xv`A&a-g71p+Rs$RxPPLJbQ8Yz(wv
zSTHU8Y2hymmId3wy%z4X01J+V1{NAxa4n=P)V5H^LT;+^DC$&|vEW+>EVP`eLJMgN
z*Y8XsiS`>>AbxL3!lc;3wY`(9g-<?D7;0LmW#Q$i>Z7UZyQ%8KnFT74+P>IAal2ey
z3-v5qV&PJWuAZv)PgV5=&z`E7;W7)2EZlD44h#I%i=2ff7B08Y*wRnQ^3#+#O<iH3
zDV0ohS-8@|RTi$H3>L1ow3lOOW}(f4MhX7Ct9hO9uNPXgPtx4NuKo!DGqmhx-elos
z3%6PP{pUP`GbDMkLhcr3ws7|u`6km;+iB{h7YkjdsTS<Jg}S|xP8M2OxYI)3Lcv07
zHfN!&g?1Kx8(4UKnp!ZhK=8#h)!ss4VfHjd+`+<+0@x9zDhtEg<u*=J$ET@|f*BpV
zBYzj$weZt_30F0pEmWJX81Aw3lys-7`z<^`i?T4z!h;sNSa{FE`xd%d=w{&s3olY{
z79O_nl!d1)Ji_svt{$`SxP@OE<sKF4bjV%sQ}Tp`yQZrrEljyRfBSSr&g0Y7Gpw_l
z`K*QKEcBeN%5Kj;Z=t)C>Oto1`FpG6zFb@QV!9eNUCo@XUgB6==wqR;g;y-RYM~b`
zxqY4mU$gKAE3vR)x_Vt&A^3f|x?@hgfw$!sb#6H9?0jz;{|rU^CY7_Q@Ro(QX$%t*
zW_X7-IYSw{lXt1@ZTS++vL9IZ(83T4LoIy7d0}Cog+Vkw3!hr(XW<JApV1g*sLnIg
z=NA7!Jpag!Jn1tt)XWz7{uaLE)UZIzYDrmV_ZE4!_!TRhq1Lv@e{EsJ4E6q@glnO}
z7Uu3w9vqT<Bla_#Nfw3)KGD@=_}0RA7RCx^q=iw`Ls#?7uI6Z}qFs*RdjT}IF{K=u
z-w*6BXUewxPZn4SQ)})^$RBTEg2g|cz)A}fEliSX=Tj#FrdXINU~*|G7Mx~b2D@Wn
zx+IZP=1#q7Fw4Rm3NOsrLT}ohpI4fP^MZLgZOJdNu+YLH3yUo*v#?xdM<1C!ODvqX
zHNTV-e`Ipo)_nbuNou5?HJ=q5t1PUxaLB@83u`R?V=uPS1zA{UVZDU~Q<BXbcMBUW
zY@$_c&ok6-n<szz3`N}W*MxYBg<}IX*luBmg}oN`S=dPdEbL|nCno)k{A+jT+32Pj
zYL5lhP*Tb3g=R-)sQugmvQU1ex^%1V??D=jljpoXV&SL-g5NFtLer(U*_uDexyj}%
z9B0iIE}D{*xjc7Yxtu*ykyida=`cEBoh(H@oBl)ketpBDzb*Vj4cNHB#wiQ`TFBUl
zZTx4UjE(bcTwtTDjdC`s+BnTdc^gGGs@O;dClzc|v{BhcqnWBwDQ!7ZG0JCI35Q;;
z+;IIoI^9M!8)w+s(cM2&RkzW6Kys#yvuw2K+;Bw~<E5GEY#Zm;IM)X8hcnfPnd&^j
zv)bqRye9KPn}4<f*G9@l4LW}tmJQp+-T?*E)*kiXu7vNTvu7&Um@}ZjH*2o>2^<?+
zW@@mZea;gZ(l&e>fems(p^>fEKYUTu@2c%{#jSJy%~V+%HElGsahZ);Hfr0rSc=!N
zaouzy{yX`xu~D~gVSA-qT^sdmTw>!=8x3sG*VVWA$2vJaw%VMRziViL_~|ye3udWC
zHgYzuw$aQ+V;fCu{ban##_MJBm)mH{)LAMsOI=~(na3@v>q;A}Kln8vy>*r%hg16+
z8$D;K-TB<LwsySN32km`7fpx!@GNzsjhk#d%}Q+CY~vOi9XM(>ZnbfnjkY%0iRNh-
zx7)bGMhoc|b=cZQOODHlgrSv<J4<o9vU#SqvGuz=W#~Uk^`BlKXm4ZuEVW>k%G)T|
zc*Mq|Hk6HyHtw-;uT<MfXlEOD+28}{Ziya{zVM;XH)7UvpD-VwvCUTZ3w36z2W?!{
zA=gD{SD}n{6Y!9YhpEQdik#)27ao)1T+KdiV^?GSP=11K*?5XQovkJeE|Au4ZxK9e
z<2f5|bGU6hZ=<`7*Qk84pB}be#=mIeiP`D}8%M6leLh>g#4b~Ta|*ApxnGi3IRz@^
z867uUZJ4dz5KF$GPx2;5#KsV=vSzDZHqM))dfVtDps!G;kSFuvIqEH1(HwR49QCe^
z_iTJ_qo0jUvkLD^7d{sJfsGGsd}O2j9QF7dwe{@+DfRz}jZbCZIBPx=@I?pR*)MGT
z)V}CT8#IajLf@F92F}seGRVeP9Acma@U@M>HWu1gL{V)Fweho!aW=lOG0evIHpWmV
z?JZV5+{OqSGa}<#8>6VM;R(ZcHbx3&o)XSziPCi0&{!MmhbMdIs2^yJG{qyy&m!|r
zHu|^EubrdD+n8WuI;*uY(Z(bjQ*2D-H0fR_rnP)tm@K%`TtyC}J&x&ZnQ79^f&G$c
z4;nLNm}-{KwVkVG*_h2~E=rqcqwZWaSFkZx_j<l?76`q1u43w98%tO}9i5G(HkR4g
zL)T$rxs4Sz)=_vHnXcwadWMeqHDai%Y^)YQqh+I3mE2lMCEj3Tqm4Hz<#uztY;3mC
zyJC(7x7gT9chNCVJg9!7Z88=F+ij3C?69%36z`JEWU?OCxzEOa8^7E5Ls~gt<DiX0
ztbatp+78oA4NXpR^4^)}QvZlVj|%<8#;;Vkt=|!t=a?`Fj@$gCU6*2D5(~0}q}&Af
z)5c#m{-%C<C3^=Xr*>&d{4bq9y*f|@C<By*-X5s{y~n~nmV;JKd7ucokK{Z$SCPZM
zR|NPhs|0XCLQoappTzRV()eRM{6jYWD;Kk|Y5rYIb*b}kl^lPh`O^M{vxIKgkte2L
zq~`+X0S$nL!1(|d54C|hzy<ntr;hU0kIUu+^SH(kK)$IL{yKwQ%7Fk!=#&2>o`AGa
zUuXb4^i#qjArJ|NOL|5bGC(XG;w%C1Myot=t<szq0~;&mE}{Ga>H_ryOqrRGUmx0;
zkg`Go(#rt$ItMhSoK<p-g!19u1h^cy0k}~(R|vfxXvzs&Ie#Va=)vSF;A)^5H83n;
z+3SF7BpdOyz;i!pCPQ;!&fA#p?wTc>n}FMed9zRs^ew=xf^QT0@#Z{pmgH{<v;x`!
z?f3`3#r5tK+6HJXfTP@3CRhKtsy)yF__RS0vn9|kiR@q}AP>Fs#!ZF-pn%zPRY#zC
z*&M;R?uENpf1BLh)WclWS?E1N?-fdBr(T5zfCs7J6w)bl0lLzDTvT(>jUxqI@8AXp
z57W$mHNaXb2Y3wV4}2*?J`TJD{+I@y0G<S%64{;yx&u!G&oB?`JeE8se2UGNRvrlv
z@EwGETs?pnfER%tvTe&pv)&OJl)M7G3cLfn3%tg%Mfo>?o>Ix{&?hylfuVzmUO;c4
z56~BQ3wWEU^VF9klQ${h$YkS*gp}cqLY|ZdH}3)O10MsQ03YCgyAvM?_>dE)patWb
zFE_7P|EEB|QprCP@Hwk3ueaB}U?sB8MtKJCM+$+-z!YE*@D(ry7)x^k1_Q%^5zr?W
zLjW$WzL9!{3gw&luo56uv0W}Uz6HKx<)f34qMXr!M?r6$v0d`Nhu%6P_yPD)ijN0=
z5-?8a&n1+Zx8zsVHdtx`FcFwk$}bkcq>|LBz%*b1un?FI%#hUiz)T7Z{<k&eihgEu
zOsnJ?NYkv7(#`|+f3MZ04_3ZUxKly?B49DF99RME?v@B$1}qgo&TEfZbc_TmOF63q
zq~@vBr5t8h2doDi2d;w+oaw;7z<<CdU^8%tHVkY5wgNkWUGx~`bK8LJoKRiN=HlUZ
zKreUs=;VrbH?W6iz7&{tlH@qA_tL_PlZXFI7-hBtlKCJ_Xn4X0Zpm}`2ym2rr^10>
zfM0==!0*6sz%gm)giyA~QpYLGN&VnvAcu99@LAPg^k$WE4F3rD8)!7A!04$`KIe5A
z2W1_c>)<>G<s6iEP{~1M2Stu{UloNCRB&*(D1XH~Mcl(RpKOq?;-H#?GaOWPaGHbD
z9lY5-$H3mPYoyg3oax|fNn*#p?NB(&(S0W-Wew*@l;C^^7dWsT>Kzw4xX6Lwz;sZ<
zLB%$?SIXvY>tdFGe_LCO{&#uKa?rIXM`lTXN!j0&1J6MN2Mrzg9KNAR>>%rC=Nvc)
z9YliD4l=C2uilNU{EepHx3=iLYf5T82elm3c2Gy6bsha^rlKx(a6)#fnVFnRB=u6E
z^@WyH$nCq!95iuoxr0V*G?&XsYGVhT=Ba1r>gM#5!oigeu5!?n+WsbC=+eZv+Cei1
z*Ok`BBG)*$Rs^6EX2Fh;(cA%ZGKtX}9o*z#o`d-gZgy~sgI68A=HONbw^2V1x;ePr
z!5t2igN`Ch3kP>PXf3#<gH{r_JxGz-IA|-?c5u*60Gnv<;JJB<fV;KqVB#R}py1%$
zdHVR6Y9U~1Crb5M!jp)59esFlmxH?<bQU~np5mV8J%S1Db8x={MjvqSAWJ#=@R3V`
zY4h|hD+8Gi(fK=g#=)}=9&zxfgQpy@p2r+K?%+vj>j|OyG34k|k{NFoh`C?=v^2!l
z+17Ioo_Fw~qxZDClke#BYi6UIe1Uzz!STlou6Y=x%r7~3*}*GPEu)l>HN5WN4F>}q
z406y@lHPalfrDNSdOPUjpf6QXTI5X!Z%cPr{4EiKZLw?b2qt*1RAx&1p@WYceD0v1
zq<-w+Q`$r892@;anr0=R35VjXou|HV&|iuV5aySTJ_9Q00s$N1=KNO<zIO1VgP$md
zgCP#Sb1;(g`rBlvgAtD2HvGoHFq*`idcz%Xr-(`1Sz`2C2i!(DB^wc=9E_$64#o=e
zdnx#H8NDuI9`0TI;9z%GlYsjSq(3_t$ILtOGaQU}Fu}o82h$u(bTCQEPI18E#k5Sb
z_GGD(l8{5nz-q}PVCB;Vd|#Z*bTCU=neAXMr=B!4$3aP>j1n(!u+YJu4*qhm$iZUz
zC<jLzEOD^Z!8!-)9V~OOT%6b%2P-H>`P@net5{Fz!-yP))sn;q6aCv-$<M{o1_v7{
z55?ddbg<dMRtMW?RN|<&aJWmoE}htR2Rmq-4e|^nu6`%I*)Z)4_c++g$<@U?L<1|E
z+vi}vg98re#~5WeDEvANi&nSO(GqXQSB9ewesge)=2ySbFAjbcFsrV?D8q3FCxycz
zCzyJ=K|ucR!u&(%pYIj^cJL2vz(sji*K^9jzie7k*-#l5+h!KZy6Cl_z@tN2Ce4Yj
z|3xk;xTxylG#3?JJ-EzV+10y|m0WDDnxoBBarL8?&Ybjc7n5qF_SnQ3E~>kD-bHs8
zXSz7cMMD>txj5U^3(j+0oaf>k!H4E4mgSq*`7S&czKaW7T<GE=7d50U$Av*j<}1sE
z?ZOnys6AiRo3FZT&+{dL_`3P3|3!J1Wh>=ULfg()kIdIEiGhonE^4{x@J|xDh+L#y
zWLymXLO%*)S3e?&vy!2NS=&V&7xi5nov(V%R~Nge=i(9<557{U>*DMAYP^K`^A*FT
zE=ae`R}Eafxm0O^vKFXDE^;n9xwy+kV;4<av~qE$i_2YH;o=4tH@ax*;!06qa~D^+
zxY`AmDAYzXwzWX*@1kGgt`U5#P%^I*(4caT*{)|VWIc0}i<@2C?&1#81?m<TpDa+^
zA-~ndJqy%rF8*kf@4i6qgtwr2`y>pL7pRtkM=Vf`u3n(7E>2pzXyc--i*_y&7kL-I
zEl}+#^Fq~Xq3R&f>I+q{P!-QF6kK$aB<4{r$a!d?BBsLccG03$zB5~QwTHR3eeT4_
z<X#sKxp>&ceJ<{I@qmlh7pg8a$c5^e#<>Swo?qk%x(bKPZUQDORFAlL)Wwr7o^til
z_c0eQbLU@-=W(ID|HJj|qJ`>dS1-|d*!P@(XM{d0lo@E8OzPp{1s5w_ta9<9i<exC
zbTNu`x_HIK=PvrWc$EX;;w=|%Q%ITzZFrG-lhb6O>Ph{~SA95HT>ZS`xc8RPZ}MmI
z*Fx3T1<ioW>>{m)cU-*d;!_u&xp>dT`!f4J68eFQ4+UJiNO8XW{~7(UFh6lo^k+go
zFFCYcq_5L-Tco~l(ceYilgTiOw@4Ls<iB(=z{Nloalx6(+dCr`sjpm+e&gc6nfb42
z<N}C?xELyU#v=abNPfh}1=72==7+mDR4qS3=(j?@b8-HFgiQMC(Jm&qnCRkr7h|N$
zV_p2<;zv%6JMxXr&i~}%XBXpLtX`ye>4F?Sw#K=74KSo#o<s9+@4_UShl{B$rn#8R
z$yh!&g<@|g9A2cVEmr<w)nHIE-Ng(S3tTL8G1J8?7xP?nU97qsPiDKA<ARj9>0&k4
zMa#vCfl-F}!hdP88njp~a<N!Ug1C6G+O$|Lak13JFN@VOq05D?5PEWGf&A4j*0}hc
zbA-0)Vx5cKbUQBAyV$_dbg|V%l_l!L=gCGFo9OrGrk3cz<zjg5@np>LWbbFmHrn?3
z%nldZDQczMwcGNfJ6-JJ++U(@l0dN6#Xc8@T^tcBQcKi+7mqAa2V5NF$SzR>mZ)j(
z6b^A%m#7*0lQB!wQ5VNt{m}eHoZ+vWgA7NK^-EOGqWsY%>bQ#&E>6077n;|K&i=Si
zajAOr3F}W6f6?)#aCQoRQ|4;Mzb^h0Isb8SiZfl_Q1~D#lS0`PPEVm)3ieXfWT`5b
z!u1OZ<%Jdrtsu0b&`Lrp3#}rQnX3voP3YZA)fp*pE3bMA&n{JbHyPZ;JTrxNmny#d
zlXFfA=cZ621tW#?*zURc3z)OG-pv~d=ch1isVZKoE==K~lwN>UyFJf^4K-k<uwtol
zQ%I#?rEqAevQsFtOmT;Z)DhZiVS(6_+JY3?9!czF%4ffpsXEIPD+yD2A<^e?E0aQ;
z!p$k%l0r6xnkih7Lems#rBFMCx>5u4k0>_kq>yh|bg^(K<iW4>qPJcOmz3tYG==&p
zG)U=TYM4SUg~lmdCJi;BLge6yv`Gq=bFV|hXfZE&?Iw%)Z&{|UOyQ~&u1(>(6s}I8
znbdPlO0RR+5ch33Qe06GU)Z6jc?t)*m^Vq&*GtYDQn-<Qzg(+``~26B*5cio!fh#Z
zO5v^)ZcpKk6k4ayM)Kd<zNkeCEd{qq;ZCXQfvzSW=x=n>2Wo94seK9^QfOCFMD&nI
z&b)BA7|^nfP6{c#W1v##D1ex2xw}*7oWg_bYzp_JaBm9tr|^Ij=i1{wN>aM5-F~Qk
zW9`07&1zTFHHB^|JTCP=l)}R)JXYHJBLaBJM)4kH@zRrVf+r-2(~a)^=@gz}k0P{=
z@N5dtu|gjY`FK8s?kOBi;g=M8r0_xt-_XpY;EO5rPN7c<FQxFZa9$DmhR|12cufG?
zeO&;L;d+*GdZqY_RoY21^iAQz6h2DfO-X$#g|}09NAUY8y|QJVcP08>3X|Ix82v!_
z>;h9iPT><y8OiWz3ZJFWUof+ME}$RHNsc?o`GS>;6@8h)07>QP^9bP#lIT|{d@W$G
z(4j(y2<5<al6r=xFd~KJoKq=$o5FV~OiN*U3L{e(mBQE*en{!p=g}#>oyC*o?`cI}
zCp>E&LolZv!H+5Yl)@w`klQaZ`rHtnkixi9OBm0oI#TZ!kxrD>3AjKlrUp`&lF}<-
zu6RkOrZ9Dx;=BBe6lSKdFoi`@$*dISrS#4%Pf}*5FejytROU)m1Z$S5`4n$!{=hP|
zpcE`l=@$*II+hApBJ_i<Cb!p?rBGqHz8$wRg;gnRN?~&ft5aB$!g_W#rLTwa*|au=
zbt$}2A;+5e<mJ^SzB6u2;qJ!zMiZ}2xy#iSsdjG)`%>7N!nPE)Q|8VM8FmTSA#|ru
z4%zNfu!k0SEMYdvzdwb8^kbaSDKuHG*iF*I6mnF;P1GY&gnCZ*PdW}teof&wj*f>>
z9*(7OJcXM)-0a~*3Mc8cJk<8^dkTNh*Li@4KV`a|>)|{PfAJBJLaXKKAG&%E<vg59
z;olVgqu=nbc)4oQCwX|e>bqR^U#=!DSLHnvd8p{2l7|Ycxwjs*!^;)-TRwTOP}xHj
z4`+CYSE#DYutG7MF5omzk7Eg^n&4rTbL}=4s(T<k)5BQ;h|d;qj)z@S3XHPL=X)?b
zm>w?haG?j@W4y>i4G&FM=sS(fKtS5}c+zfmq3sG~dFZl2bzh;+%N$Rit7bg79#S4W
z58QVRJwzTJD^|Xzw_5`bAFNOW3~3MFu29TFOb|<P){ym3Q}7SGOL<<tj)#jqTtOK;
z)b;fEHe$y=Db(|DiHA#t!^8cC9_o8|w?)1I+nrO79OfjrOrmcV8`D;(oQKAqz9@3v
zwtN!-mwWn^>Ug{Sl^(9*I8IEOd$`&|GgdpHaGj^0@+&Imukk>7t<a4t6qyW+Uhm-s
zkN=mEztO|-*$Dx|Z!6R-9&V*(JaqMNn}=M7qB}ga@Nm1Qmna`ykgvE>we--+!(ATk
z_Hd_%)*h6Hjvm^0XzQVa2cDpKD^)wTGC{Q$OmO8&MP{DaR;q%hpVwVi>V*(Pua)}p
z<fI=9ojiQKQZX=RXAk#yxZlHnE7iRoCa+ZYd04tqeLFfKKDts7GwA^j4@w^5%TFcU
zD5r<s9{PBA*ux_pUhwpR<D(o(CaqFe+4;vkJV60GJm=v_4=0BwPYbQFN<Af+37+AQ
ztx`<7W|ey0LwDNJD%FEx>`YkOii`5CSE+&X3ru~{!%H4s_V5aa-oqOlizS6uJ-jA$
zUOGnSXLw_k8njCF^mxff^%BY`g&A91=qrtW>ftjFZ+dvk!`s4nhgKnA`6~6Ehxa{v
z=;0$;&Y0xzDs^g=`hYWWl_LIF0P!c1|E$%j&T7?cwffvcKjD1i;R_G_Jq(uUmmUUq
z806tA5BI)ZC=qfX=aiwJ%cLbTe=V6yqC+HgsBoBnn1|sWM$k4^tM7zK@NFqz>#Sk4
zhwnX9^KpicF*H{X8$E3D@B_O~+w(Bf!%rT5_At)Fcv{_R#Z_p<E+((XOz<#~on5VX
z7B<O4v4<&i2vl;}95>0i%Q2ZArfKfw)#|Bll4&$rv-Wg4D_MaM^KQ>953}i=JS_1r
z$HQC?BL@@~d6?&6zK8QW<>}|ITv8ajT7C3VVFB~3Rtr7sSgrnCttxHGGc%VNOFgXg
zu*$<S56d};JXBw!7+eVr)~MUpsMQ|UdRXUS4Gr&w!lr43d)FvZZbq%ABck!FQM>`m
z!0YRqJ#6vt568>HRu9`e?D4SI!#B?tc5lvarvM&yGU@F?@zTPlYt$|ed@b7T;mcnV
z2J-jG-1*%@a~=wKnEqPffY5_N4|zE3;fP=+9rtil@GqsDU+Ec2@iA)tiCWBdqLg!z
zA{|c1`Gb!D+HjA;UmiBEQGW{_w?@4+H(~T&k)fQA@;?5PLHX$2LKz=ref@T}q*tNA
zYx=fEk&ntgs`#kjqoR-N|4x2gqbdpDYaKIG^>LbyE7xjkIo(H%wd(cW1vXJrKy@Ey
z`nbf$r9RH`akdZJ=Ls>+@o}z?i<sZX-?4F?ubs(-T&k_lobTfTACC@57|3k3Rz24{
zF?>9;R=b+_)~d-L7ffHj;aa30>kTW%hwCHlBjaP@T9xt<Nrj#d-v=+C20m&R7gnrQ
zp+t$BcFONxtA5PqV;@-`#RHRz*>NAWnA6v*Q!e<~+}~@JUZVJDJgdNP#yWLL<6K=I
z^?dN`)m^8LLhAcy;NxZ=xA<u2<1!!3d|czBk&m2@D||Gi0?XtZ`{1W2m-}eKq;;yr
zI(6SV#rMQN`zKfWxXQ=XzJ3pSex0hnJ^z-_LF?3nb-LHrN_TGXah;F#>(sC7RC6Ds
z*ZXLFTK=r{>PBDhMcgEmo8&dut6P2C=Hnh8_xiZq#~nUevhPw)eGBvYCoMRL>(wn4
zb9b^5ABm4VJMN>ck9I!V`%vrEGwT&U5+vwA{jXO9Z?0F%`X$8NrY`vCNXc90lu*8@
z5qA<yaF>9)g?9G!K@yo?t=HYT&&T~f9`F&g%6H<%wT}k{k6W+iuUB1ZErSZx+T}<e
z_VEa{9paJ@kNSAbNACcA0zB^H32HS!)c{ZWc*@6UAK&|UnsWMh)5lxvsgLJ;yz1jM
zuK#^>_wf>)*aro^CiL*}f{zz{y%o$OOMb}1H7bvQNx9a2*~crsUi9+NmXvv3_tDcw
zFCTA|6e*wku&dGAM<1!MuP}L>TC&B&CO&Izz3t;29|L?0^zp8b_k4Wf<5M5+`}n}e
zM^ZmG+_?Ps(8tF0is!#vjeJbup}%0#ANsLJ6?6T3d?Da-AN*W}oc=89>yH$86w3oy
z%1lh*2l@EQ$1oqmMV_yH4E8akw2wneCI3bMKhU7G{2Yeosv~^8I{J?0SIB)U_+-oc
zNC8Y8RSL%V7)w!oZ1VAgj~{(3^|8#yPpr_#93OLijPo(x$1ESSeN5nF^ug25lFjf*
zK4x+X$i{fFkI5XPB*!pCz*Ha8N;%Vg%qYdo&;4^!hP7P{21e)knD1kekHs9>_SOO)
z3uVq8U$07b<H;;J23;Z<7$twXj}<;v`&i@u@1%95k5y8zBr~&dvajXnm(6Wp&UU$V
zoNf}WxIr;mvPHky#}*&Qd>r?&)yFm;dwlGbdba!6>0_6V9nwTewR9$|d3R|;-M>!u
z`PlE{h>xQ_s`C`U$054D;^d%Eo}ZQ+865V(15@&U;ba$u@O*)%#=rTRG7l+JPxv@V
zFY4nTAHR#VfB5)Q0FMLM`d^&XawtqO7(M0VU;6m~<pS;K{_{~r!1IzvOWVaPAD}2e
z#Q>E8RFG7@no)9Uh8eEU=PC=6N3rBHdRl<f1GEg#DnPXWX9Q>%;IaVK1DqMa4-f=6
zE5O+Si~weUa{`<j;DP`b23p(a1vp>8MH>`PM*8$hj$V+zC;%~2YjB!Z(C54*C%;wz
zJ3vYVV80N+33LZb`pAKHC8@@o#4F81nZp24fZ74-2s0fZ4v-CSMQCIK@RBO;*D+ho
z0JQ>b9*mMnu&{@9ae%r3E(vgHfUaH4dI7kd)op~iucuyM)DJ++%=bTGHIT~5thGTk
z3XltMWq_*!G!FDB@D+i+xJA%}Ksdzwx}>S_`MDEQuMW^Gz|8?}32;q-Ybhajt%Y6}
z;Ccb%G#5~E+<ZfzkCn;XJkz*I_)NW3!0iF<2yh!SL<Y~SnWu&DOU|!(l*}6L4A45j
zy#el{@FG?F03E1O$;l$^D8C$hCjs&SI<mGvpWYS%s6cP?mYi3<Q+i~1SAfm|cz$$u
z0G@&JdBo%0dxX<$gChU_01pIsI>0jl9t_YWz#{=3rEUZ8*7rjJ9;QkIeTRzcK+=C@
zzk-0N+$wo2z!P-)0eG1BcmSSPa-BxZB!;H~{Ye7BvjLt9@M?h90z4m}dw`cH0|gH7
zLVy?lk8N<2OQr@*h|}s7R^A|gmK@}90=^#LjX=9u-VWl0lb!*31^Veg+-8HKukN-%
z^$qZ5fIkEL#V*r+0xSx!IKVpr-VHD|zz+f53-CS*1{e_Fg8&}}_$<KZ0X_=kF;qVH
ziGYuVmR!#Hlmj6j-0>OIFF=1u`XWHd<rzM?N>T>~7!>e7Q1ESluL67>U|67CIxiOu
z4lp#pHvxtO;LRf5mZ8}EB7o7Rt@I~6!#QCKIX+pcO;_Jh7#@ih<wpk?8DLatk(W0p
zeaD8a^E1h!{1{r7S)1U;06zto6<{`#0*nhVCBW1G;{!|xFo^>cU}B&j{R})y<;xv!
zxDihlX315w%BSU~NpuEn;9xRcDrX*U>@zx(Q{$8_GAF>?0P{H$d+8_gJSwoOzF)-f
z9B&W>SSU#w?=hHxbV-1v0k#L&5nvhhBd4Wn11t})BEU-OFu)q&mpGZ#;(tEdpy+Uz
zd45-8U4ZogHU!uhU`v3ll3`PT%>sJfXmK-yr?&(pr>=}{3-mgcJ6byf><Vx^z=;66
z1MCTKM8u<Pdjsqba6qE_gz}h={DT1w{h#Pz!6m1GM+5vK(O(1nCZME`$4W6B4ml?S
z{9ejo!9Pkd>;F5zKlHaDE(~!hz`u0SA*zS?k25aRcdM#}C>x?&h{_?VgeV`PDAc~U
zLioRDC7a;vAg3ZrU7o8HYM;z#)lfSqhSNiw7XHss(5vvC%-9Y3Lun4snW4U9a#o15
zLw#?AduSZcc^lL@p|*|J4<_ddI4{J84eETsCpV~zLevQ1hX_I#AxvqP&n7E`9U>KK
zkIKps!U?ria6QBIm@Alk+5n~UM7;XE>k=XgQ8PrXP+M<0L>z)UqI49QQ18Q#$sL<)
z2wsXHs2!qCs2A0Bg);Tx5Y;v+hW-`w=awz`$wr9!R9A$m5gLSO7~;7Q&xg1yM57Sb
zhqxg`jyef(ZHVhay`R&B@`Pv_;&RHfQSr+H8hOp1k}E?r3(<O`BEBlb)hxJC^}M)1
zdX4ajnc7@1&+HaY)TQ{^a$|^_LfjYP{t!2ZxFtlJ5HD?1w}!Zl8e6Gahqyh&9UOuX
z<1WwfeXvD{mZ3IOV!jCyjP01eGeozI>amv##4OcqW}$6}b|Kn_=s*pu<Zc?i+NgMa
zcKoSi`9{U>>&I<WyEdvq2o<8w^g>6WorK;c^lqV@h2A5S+3scc7ZwP3&ENsro(#u>
zY$8Ng>TRZaIK)32_17icDCbP|kWec85sp{3@Tkzogg!3x387C4eM%^^?fydl^1w5p
z-b#IzhPO%Y9Ci=UgYt)%5aNXpFNPQpVj$HO;$?~#qAzVe#H%7wFLHQDv`M`d;`I=3
zgy1#>zpUvQ;v3!|>S|uTNq=b5TQaxVq-Y^;hIlK)Cm}xNtO@Z>i1$N$5Tf4%<J}Mp
z?{QG%b`5t3Svl+ZFvLe8K9)+lZc==}@j&6FO^W;NpN055#1|p@hkECqgU%hoe#E2`
z3?A0Z*^#eYHTNawY}MQ|c76~CD8$GRqe6TgVsMBNA-<KGhlCgwf_u?JCCYZckzQ~&
zes~BTMRDu$1L?xUvbFx5WV?dje}(uy#1A2U6b|nXj1e$aXwTB~h@V3I%n_6*k2A)J
zko>@kXHpYGOk&d^c7-SoF*(G_5UWB=2{ARqoDg$EOq1GXgqSH{y3mp%l35{UOLTdn
zXXuw*O&;{j3o$>$;t)$DX#q#AtGP(<LZMV3Gnd(sUm9XrsE@{02wfiPuc(;BE|b#o
zsfyJh)`Zv+Vrz)CA=ZW17-AEB#lB>{)V6`6-%6Lt-CMr<zxq=z-Z^1(a|lLPPgUDE
zzvk52Q6daK1e3`%SY-HlliD3(Pl(?`{1IYrh<zcBhWI7Ke)`yM=AjUWLmUWkP>O%t
z)m*hnf5yoA`TgAyVe(M#cd6~y5XV9srzhc*FQ>o!;x}&GYCaL7(q?s%mhij&+>GC&
zS)0|LA^xH#k5ClhZ_X)dAVS$ldq0}fsSy9tbMlIaS^Gb!jmAt&PgpL}UzQQGQ~cbr
zf)uG3p;Dx6ua}H+<p^~*YbC$IuUzNUJ1xTL5iW>uVT7|f6jh6G4iDgp>zxsydZbTM
z&J@~yvm!n#!r2mSCed>x=Xugf<F4lU0yt6^MW_)Wh!6^gpA{Gp_^x3_up-!zzMant
zKYj!!f*T<fq1VRzbDP!Mn-#w;8n9V;!XcA;Ec{-k>i#5(kf!7j>P5&z`V+rel%!IQ
zr;u@kYy^UuLfH^;?Fc_?Rt$9_EZM9sX1hgsf=eP?8sVx4S4XH%=O5wn2v<aC7-8+;
zBp0D^gv%l{ity;<<j&QF^ZOOZCnh+sSv8St1gAEurV*};(CtV<e8v_<K-w(AHSBDJ
z8zRJ8RP!y0^x6o8E$X@m%_BUvMU5GjygDp-YD@k`>L<c&5pIfba|Cj35qheN*{gMq
z(c2~3B0|ducL?Udk>5%%zc+mK%sittFUYrv&^E%0X}pw1JL)0A6A_+_&>=z+;lT)9
zBIGGXgw7G}k#SKGUoLQ$3}VMfFJ<|OC5N8iZqYF35oa__uFS>d?u~Gtl)7K?KM?7e
zOJO+KS)?oV5aHnnk1$XBqK7080bL4HA7!s2JT6Q|`SC@Ka(T{Q;;CKCry@KZ;k-1?
zPvaTpiLfZb;t0=0cs|0w2!kSYkI*B+I}zTE@B+ITp?8En5nhV$vQ*nM(!Twb2(LzX
zjfT-G&uu_*UXMUmK=6iSU<WmGi|Q5Ot1W8M7M1Ey)HlML5#Hj+Zc+biQEzkjWV4Ig
zWseUooU>KE7vcQ~pGNpB(ie|Ei11;Ak0{R+RcovIm}an5@tbsBV7PjY`h<Gks=pok
zJOVw*7c_N|uwO~{yBgdGdTy)wGSWXn)%sX6pcH%+;cFUggdZj6;0WIf7$S5iji*Zf
z8==F54i`E?=(j?@6FO4pD4{GennPJNM?h_lk*dZ<;E_F}KXK3_jE^uO()$T-ZdKz-
zTHLDIRMmH`CPpZZFqz8d36W5a_=K%$N`!e4=0}(sVVaoAbQ%&r(QTVwwN=fCFf#(d
zETOZ7GCC*1T)`){Dn=JXSV-5jO<CLY<CyN9fnZ65r4dd>_&vh12+JdEkFX=c3Ob4o
zMQbChi?EXQL|7f6&NiOPsWqI@+f>VKicwMuxn4T5HNu7n8zXFr@X)Yi%r-^3S@0Gb
z(l+&}aJEtSR+mvBq&p+*if}l>kqEmZ?1^wls@ls@Zjw8|72|fbFT#Gh$1%zLZTcr`
z4sTNjh3{=wOucNoYQ0?@jqpo^-y$4~@GD!~t~gcsV<|6hSDj0K|AEZ)8GfK~g0{3>
zjohy0Y*&9o_%lL<G%BX?7oC5Ee<S=C=~eDO5l%^wo5t#i(^WnyER)tRyo{Dj>)N($
zSLM>$d;hy#l~3zWFN@MRcZVXVlt!IyMwK+GrcpVKMw9i#ym+Vn{S$8EpO)6|0;i`@
zEsZnMx~J#xckm`B)dim^l+3dPoSoLcu*4|eF3(Ntw^6=hUXaFxX*5sc`ZO*|qedF_
z(`b-}k%pN@ltwxYi>djXlZMMyJ}KB~eDQJtX?=E2kV?Z#BS@nje+i0r`-}2^T7ye=
zC{4@e!nB?;J14448gUx6(x{zAHjSET{i95LtL0avH}6mkJCVP8hpLkX4}vdA<Ki^x
zra{g#JJj1dR6Y8cGP$8U)TNSvc`A1`8>aQiMWZxwY5g7CWohlls3Kmlq&YQCqe&W<
zQ%h-Flh%g<P1*Xe<SHteIuSf+hx)rip3G)xtlpsr7`Ene*Gm5DgtB1&Vs%3rH&SNy
zP6q2H$|m6EG;U$LY221Z`!qVFaeEqL&&;<-qa}x9hq^;3Ijz#TGmSQBv`wSJPF3ZM
zJVR?XaYmlm#?MmBL)=dCvlskjj3kXh8Y-=SC?n6o+NlT_I;PP{m>p(nPkvV^<^qYo
zu+ce<d(yZ!t#5DMm&W{=1_O6g7=18}E>v0?kEPKytrsLL{%{)IXo_jQwBQdZFc3UK
z-#$F4KRmg3r+Qp0jc<<6rtt)=H;t##csh+&KTCLU|4bU!epw*Cvu*C5aS6e5X*{3C
zyA6u?YTrGL9%;NlBUz~5eXifBUY)3KTE3jdD``wiV>;_e<2B|_<GnOqPvZ?yEE*Q|
z6u?q%rqN4qZ>n1E|MW>C>}K{&>qP}GNWUei^oMV!@lF~`mJ}#0qb&P=8WSY-gET&r
z;vY$LDD@-JPty1_jnC5fJdGj3=|>|^V_+JCB-&r-fHb}o(0QkJRy|5r<6jAr`)pqe
zVA9|;x=Wrx#rhXTzDZ-4Bn{^rOyhgOBZPjN#&-fn3T5U|0`8Ef_Lww&lIU2WKM4I%
zC|7RG%<!{B$E7h|0PmHNIWdh%X?@bi?ib6{Aebz@o|48?0srt#t+?KdG-jr;DUHo(
z%t~W+8q3mHp2nOs=F)Pg-n8EL<I<Oz=SdUB?qp#ai>PFYvbn`H`_T#48+=UfnV`G8
zG>t>DXkU@WN@;F2Gq*3Ic&j)C<bK_|JJlLVTARi?n&Nr--W|`O*3+T2%WX(wqX1&^
zx1_N(joqC4X>3blJAds{%I=`3ay4#e8gwAzx8;ZIRJ<`*!rUuuT`FgbtYlvr`_ni;
zQ|IP?TJP!~5=<K=rcXYa#xI=Ub@5<b{F=sZX;iO;Gi%{k8pqS<m_?^7PNZ=%jq74G
zkMVmNe{e!&&^3cU>HO&`Gq@pxzti}Ko-+eGgHvhz%Z_AlMn<dgzqF>6GANTlS>cq+
zpeUo?3d>8B7a*CTg5Zk6XA(J;GpLe5RpFd2si$T14^!~r%T(s!<Gy+ZXJ&9-2IptM
zvS*c6a<%~GJST&5Gr9=hTuKUFkimr+TqGIzVp2ouH%r?!GMKtkvGV0Yk%5yzgA5vG
z;AZq!x_$<MfK&$hL*NYhx3CDp45AF`W%SQ$q%+85P%DGl8N|ZLX0UyyViI4g32F+H
zpiTxCXHYi-E~GopP^9h8%AeY)0i(=+iR8RAgZcu<;X?Yd3>sx{RR&j6h6=e{2A2yU
zZk$1r44O?gcs-s5d_^h0X$DscK4X_+wq`6+PJjJ<oq%gHxK;p*@W)-7m!=Zmn88gM
zBpKv0xH*GcGU$-eyPdaYa9akgGPpCNkCkuF=r06YWN=3YJjdaw2Wd;eJn10jW!=`2
zr+o%(q)1z#EZa^1&6W9?nS;xLE{Kxv%HVDRDua$9Ri{$fn(`DNgL^V~K*o+wL-y-l
z>Ei>3llwBbKcjy*g_!g~8E(F(b7Z?^@K6SaGB}*U!x=o1!SD=5WbkMPk7e*y25)EZ
zcm_{U_zZfm!i>Iu_)G@Riu_Lz6xVy2#yna36NbMYvq+z#VeC@RXE5K^-?l6*mwO?D
zH!|p%!HXHZ#M*vMUe4eZYI2u;E?l`wy_&((yVPqLyt_-iE_BE)Mcj)<xJ$iBYu}}M
z3+^M7%)SCv>{7(1?N;xwR0f}A@OcK`O-$a);Qb6f$mor9>a+H4^<f5|&|1pmKcY46
zRv%|@&2GgX0Qu*|Lb6+Z%8}izdQD3DQS%(u47xQedUJBZuf_Xk@MQ)Aq_e$utAR2K
zkMCA|;C``NeU-u28Pqv5KbUrPW`1Y}V|J?{!dbdok@HOk!z77$82y&wWiT#-@fp23
z8kxb^41UO9R0gBzNqEql(T};2b&br)WDHHcZh_#(3_sm3`Y8jhvZyis9Ocg<4{z)3
z-K{2MFp<-<LvBR|lQJmIV0H#`GMJpflniD{PFlrOsf5L+WiUO18N#o$M;Ut*DfzQ9
z@V`&K?N{KH__-O(%V2Q^OE``hETA{rl`Q-}bWsLNH|NP@C;>||SSA^`cwo-u8NKJs
z)H-|A$_!RzusVY^8SKqqUj}P4SeL;zdIJ&T#yx6%1{<hb+W8*UbB`LhM{N?!=w<<1
zgl-i&|FqoLJ!;V&wSyspof&=chIm&7q`QUg5n67qiuS7g862cZ?^Opli}$L|d(|_0
z)hJ0ilEG2>#u(?t_$7m1=|5vsit!s~4Q)F{xfsVYI3aSDiE%Q6-#Jnl{FT8UY#Mn6
zE}VE4Hf^u^JA;2RSh-jIOI2`!_bBlC3Mm7b|49;oF+nd;4(?SiO*HtKN%<H>vA%1~
zQQ*#Gg;<t4?TaeMs1l=ktS4Gkf_-|Js!8-Tp{K{-$J%6ajdw<jXrKCiQgUXDvtnGc
zPj%R*NY9QzaE{Q2XQ}h~Uyd<q$EXwI!Wb9DNXN*;__j}>My!9J!HHqSFk@IT>=>`_
zQ}(gs0TX;1dW`kAw%k~MMmlPr3S*>Vd^95QV)!xo?Ng&hBtZ;PGD&I4QH+KA)ZTr1
zTR4u9jZuET;=511FZ8cC){OPxLai7z_A6fdxj07M7)@ea9;052OW3;@4W*}a(U->h
zHv|~!$NCq3cp2j|_F})v#o+H05j2WXS)6%e;gHEMQ}`-<MT}+77n;Rr8so|s*X>t#
z?^jpFxH<;G(wzx)c<oZXoW3T;wbC3h3tk`Nh8ShCD4WHNF>Z=6FUI^BH^;aoMxPjc
zIZ`ohi}7HLE-`M8aYu|o3>BkAjFvIlQ|&UEtzxw15XZPvq9=aU%Hc`tk6ZI?h0{(b
znY@Hdn#9P*DA@yS+STMwOOe?zMyD8^W86b6-S@xWth-AJ-YxX0{p#Kr_r?F)?cteA
zoo?p+F&?0zO7HveE`8S+-C{f);~D;QSB!^aJQnlcG_=({BJ@$Af3&u^-ObJCCt^Iw
zk&+s?>V7JgwYU6o*Sq`GvoW5F@j{FjV>~Yfxee8W8km=Kmnb*kxogTL;!81Jj`13e
zibF{uC6%}IU*$ko%?;kKxDoV*RNgDrSNFL=(K7~5QQ0W>f_e*+^}HG5tr#O|X))f8
z@lK2{V+@G#ZjAS0d=}&L81KjUfW{f);~3-jEAGHEd>CW<ugSvw>XTT1E%Irsf7p$`
zTE^7~qoiEB_M-yJ<-UmZcbB|~-k+i#(~nMW$qtM$D8@H2hQ;_wgdZGZNQ{nqlCNWI
z*{_c5S3_g`w_kq}$i3yI#R-4@j$6CKV~pSwlOm%!=}&;ai}lx?JPx?(WWrVJ=osI}
zm=a@Zj4?6B#`rnLI8M(4s`rrOhZsM`sChuYef$*TsspOi0rm0$H9p1!);vQMbJ}*u
zO^h)q#{E+Yy7fK@$BwF-Oq-ljkBcbM{s+`Fb~(nZ7}I0Sh(X6i_qDG@o<(NIm=j}e
ztbh7XH*`Q38B=V0Tx`rcpcZf<$JkA=V=RiXIL5{pn_?`9u{6f27^^wUI9cw@FPCoq
z+OI&&p9){WRQ`T=j02l=bWN=HF8Ewv6Ki9vi?N=aEuUkf8)BT`Zv`LJpY3y#VKY@4
zgKPL5F}B9oCLQ7LZ*%psoef>C-wsH*Grv=kDD5svC1UT5u`k9ky6zbJ*))B7jH3tC
zK~}iDa5%;h0f(sJRRwa6O7y0g<yq&woAW#?{FRS@7{n~aj*y<9^N;n>`CnZBOCSFb
zwX-9<IPqsG<}J#<>A_AV|HL>Y*(x1W4FB@6a!~z8$y??L%4JbLi$+;J>F8~WvbZRV
z8d+4x>TjSbW>G1N%2`y&g70g$Y|2;7;<PNz$f9}{r)Tl{$A!iRRm+2_nqcdozOH#@
z7H4H~4r>^bT-8H6wEGUKv$J^Npt@#ga&8u{ot8UKD8czz@JGTgkm!X%-#w^|EX*wG
zWcA*il|_1X;%5<LVP}CXoGgm!7T)?dakKdLpdy}nP^Gf)vLGOzbk#u>W|7UJW)=}^
z$by`V&^U{|lA-J&oy|C;>K;<HvbgS$VyG>EoQt!l%eSqGg^q{#A0xOVi%YZGf!EKX
zK^FDy$P+U(r2JWYct{aHD|GlFmCK@W7EQ9aJd4&@{oK4Fi>6szpT!MX(9W;S>W>Sq
z&El#ot`<(SEUsa5{0*6HdLnQWn3&f=ugju&7Q7(ZZb*SU&o^dqQx+W#tM{wtZ_Z-+
zA;s6m+p^evNZrCg%;K*@ilKN(;dWt?e@7NA1h?e499HDCqGk@OJG1)dJDMF<ZL(;a
zMY}B8XTe`Y%4fk}wCj+?we9s!+c9)ItO{B1%MSjSKerH-U`F3KtnSL<?kpzO#H5<&
zoW(s^l&OibHF0ki_hm6Ai?LbUpTz@IQ5GNlKdQb1T8g4+o1AlodoK@Qc4ucNr(F@n
z98nB_yE~(T5fdo#3JQt=L_xts5&;E_7(jvq$zm47fCvgEkeoB$({<%P=Rc=Uo$8vN
zp6=?Zo(|R3Dcq65os@(W2Bgq4g}YLCAca0D+|7KlQSTJ)PvM>v?oBCcg!@vMm{(Q@
z482nSopvWPe|{%FW~&<dl7|oSqh-qBZC~;^g@;nuT&?gipEA#z3;j}<budo~Z*6!u
zrLJ;lut1Fg2Bt8S)lXsN*7#9=D}`-a<3SX^6e?{~GqNWrHrwJSQ+O(c`zjO$r|`5;
z_-KeA9k#`tx5Z4u+@2L>8JWT`R(4xFT;Ov88GT-m5dsHpi}^QUX<tg=<rK!H@T#cZ
zD=CagVQdPcQW%|5Rth7xsqx8M+tgTV|Ni{v+v3r4^W#%^Erquz_9;wAsk0t@I+e=!
zL4INilTvs+#Z7bky)8brEpD|vo-Ftjfh1m9U-|lbGo{Y|^1v_OeMi1NEroYe>Mj6=
z_XMG#H9Lg&MReKqeU!rV6gH%=F@+f^e4N6H6h2R3CfQ3NOkq(9v#BH7<GB>h?eQGS
z`SzIM6G2|PsxU8w`BcvoK4pJWrBDv<-X0Slv^`#&!jcr0r|?+{uWVP|(OJ%=DJ)B2
z+V*(o>f);-iz~Lr>$fXzkPlx_eNtFOb!MBU@U@h4rND0lp1oD|-ruJ1om7x`dH>e4
zzOraqox)mbL<&Eo@M8);rSNkKzevhm+vDmxloj-v6o}JQW{ud2G~W@gOJP0JUtJ)s
z?}&e+Iv1kf*&<`|M7ZksM+$%PtrT`k8UCVPi(vdMQI?z=4Vx&RDg4VONMU;lJ5tz6
z0e&;jz<jm|&gnU$SMG>+GPiBYc!rSCJ?tM+I7l6*Ozw#Hk)JyhqxQ3Z*byHP$hqX}
zJL1Fg#iJ=4OJU89_(%#@(reI;_`!+Aq<0wy633-$<-3(MRMwDaxKTqD4OKNX*U&;k
zHBGIqRM${L!yS(lJ5-8lYN(~DuB@@9uD7VIp}vL&8tQ1^>Uv!v))UxpXMF0;INBLE
z)X+!+k#b0+)r?{jP02=64VUkXn+a^ZG*7&xhE^Ip4ZemF4W;s}lQl6P($Gf3BZrh1
zm)4r{f<mutlzAd;HMN@8PQ&`q`I7{4!cP1Y4X0{2O~cJQ<BSGF!|58%&~T=vHjx=V
zXjw=Jt_e&F)CE#hn84J~Z)eQ$!2F%DrK!;fgDr?7&=vUNPSpf~hVwOCpdn;^HDon4
ziT-D2e6EI^hO;!Z*KoFm4npUnvU$oqCi^1d=Lm7t&X_mUbkxx9o&0$kj_!;(xwufn
zMH;Tva2=VZ;Svp3YUrflQVo~!bGzaz*jT$_PVRUz?s5&8T`{Bg?27q_1DLBcbk@|#
z1>#q0AS8Z`hLO8s2EKAVpKi_HpdqiJi{M=ab`$s!bKaU~C`bv5LZnq;EKS2ZEJn{M
z-b4;-cv{0y_Wv4sXy~uuVfOzTZq;z7hMpR3WA!UXf3#GG?}*$^i4qEN&gSmYaJPm&
z6u;f^JsR%SaG!==@`<Ip;-7aZm8Z3BZw>bgk=C0Jy_tVN@a?-|rg>09UkVI;6KQxz
zkQTd@tD=5_6QP^*M>Gu3uy=X!j@|J<4UcLVq~V8einLFl`SD|H_o~smJeaen_&6D*
z;YkfoX&9oZgC~PE{9Ib#M2t&DJd<ecjxXLFlk$v)XEnT|;av^GGz`};S;G_!&uMsG
z!wVW-)G&hF*3@1q9mYQVygI$o`olcoOB!C*@QQ{}8s;ulk8ZiYjLAl87`!_kqhYLu
zcvhZ?U)>!~-yM(B@T#T;RD72V886j;O~V91NSUZ%lHjkOpuEBM+O4=Zm1;PoxMz3#
zmWDS4|9yAdeQNP-4J6VjI^la7rfHa^VYY_%HGIGhVMcMLh7UD-B>2Yyr)$c4YMnjt
z3_*y~4{+N(F%!FcVn%r;kr@tqwRq*8c&>(d8otr+t%ms;7HIfN%J!*-g)Ezf6&e-^
zWvQmzWiQs0w`6MH5={+9xrL$pDri_v<@!yX@Fo15$|YM2UubI0zx)9Emy(|A|M_<K
zS~6VLv-CR+E7`;ve$=o^!}mgeQ~czwrmXIX*{^a+$j<O5wy!+p2EiKkdm0XDIILl<
zhF_`U8g^+|$G%0w?;18xsz<3l`8WA!NT-XX`bG_ZNOT8vb8+QAHT<h#e2>b1N$>Qx
zKz39A2(n4TW<e&-Qp+z4TQqDH$~Fz#1>vBM^hYi&;~<=BvYRbM9i%{3i}*X<E8p6$
zVIL9Ma9n-4nwTFDI?Kkum5L+mMl{q;s~+;0hU4tj)2N<Cg)}OrQ8^7R`>3PbVpUry
ztu}CpS4pc15~-S26Cx5RLN(IL<g#WO8|o;7TYjrnTA3UZsU!K<O{@CWOXKxTG57R&
zD5hZ=jncR^gWED_oJNy0)}--E8cow^MtT~zrO`Z%7HM3N#)WCLOrupAr>1dQ8YO9z
zrqMQyc4=jURF*~?L0YH(^R9q2Xjw-SJ3j4wS1BDs5jiQ1lUc%^rKhC-^HtU7u2RxZ
zPveX<+%&v2&P*f4x};&Hp{0>d!$>Q~3%caY#LSj+@Jw1YD-k{-q&sm=!)+;plU6tb
z7eo9sf;7%bqrE%|)5uD0%p{UzEMZO_(S(ngGoQ25I5&-s^0^N3=$y2&Jmgb;=sbDr
ze0j=c0aEzlMQL1|Mj?%28kb1HIt#osjmy%wTyU1QQ#nG;oS<+`<0`?g7Wjl1`(2a9
zwGzE9jjm~QWAjP0i@?YB#LSA}28q%sD)D<O7Dz8o5DVpIfr-Ey1>Tg#ik_uhvgn=$
zw~+W&k2G$PM>M--^!7CFNaN)+UZH@c(KC%_(s)*6?5;E(N~2#Icc*br8uzA^jr#qR
zkom>?1n-qrTgklz=Oc>c18MY;cOMkkmkIX7O#eT5iwM*7PvhY<o=U5K_ag!y7dSxR
zz%(9B<1xVpvCMm7?ldtak@A226Y}Uuft6@lCdd$hOz^ZILj``ZCmxo@@HC!JV?-Ly
zrIiUBJ8Bk#e=9DEQe{S_mBj*gB8b0`#*3m*#9vC|k4-AUs5C~W@kttUsVS55W2j1L
zyphJ(G{&XXuj<t_=pulg0mi5CS{f75*t{pMxi_9D2z~ENN`p}b`fZq;#*{SPOJiCZ
z6R$2zWwx{PZ>RBQ8tnAm63De;;_t{KK7CgZCVoGS57L-H#-=fNec{72xHR+;%d=MP
zZ1Sz?f)kmU#w_O9HJY6U1E0<jND6TV66d8cKaI~Q9%;4Kv>=VetnxUuY5u8D7N)UC
z5T++_Ng7MjSSD$hY&qpqJZ4aYh<u*L7ioN-#%f{mmucnc?%OoJk|^2!wIJUJY`Zu9
zP7*N9N<mho!TB|#oNRL9_Cs2oXZ$gZpVI0`5gY4gK{(#v36Zr_Mlw*x`#RR8v7Wl7
z;|d+WrSUtrWpy;vu_29()Z#SuvB2zh(%8yoVs+B^o2*D<OB(;AarWMLa~coqjW<!_
z_Qv(+#l*iJS{%AJp0GEbwKx7~u{v9{J&he{B-4w#sGG7|x0C57=YQNAKVGr0JB?$T
z^LtqLt`V*AJMPKvXD6IS4IN_#mK{vvP#VYCz3Vuf#*wtT^lI1M_-I;9=k2uxt_2+v
zoKfz5SJY8SM>QSyyqd49ql&Jwt*YbE*+u$)V5qe(Cgjxn)O~Sv9fW7?i@8r-Q%5Zw
zwRP0dk?f1>>B^>sNL`8c<y%wp^>zBKQb;2mjdh%+<8&QObTrjbs-sL-^N40Tn(Ju6
zz&XplxTTKjHy3C)_Z2^PbD@<)OLWYYXlotNl@$sPkham$R>#RYPSMq6VeNFBBnWW|
z2_b*1%%A6NPt`$4eCxjW3>|0cXs_dJ9Vs1}4oiovBdx1LwT2E3<8@YTf1F`u_s0z9
z?~hF>Ds#AHf9&XRbp$#>68FcR4xdH(TvmSeD@Z)j@#6kCt0SkQb>qUc{qb2k7VnSu
z?2oG+h}Z6qiFeR(j*gBx&SUM?sP(ZQKa0<01rNkS-_Fx&>wF!T=(to@7F-tyyimtQ
zf?O<+P9*r~G944Q<Ui?Lxcoru9Ed3=SL*1b<1rnBbX=w5Y8^M}xLHSM9oOi%UPl)l
zFKo=e(=ED|72lh`PFF5o88~2IF}ms)H7XzL=%(Wa=CI5v`7=*l$m=NR>d;(KAO)3p
zav)B0+^A!~ftZ2QneIAz=;)*4K^?b{^JFQdOUG?GZr5?Aj-Jf_Ks^0GT(UgALszcd
z>GSF?9bX<$p8P3V>kq`o4#fBBsDCiNPe(5{^iOf>VBA~Bxd-F>*<PQk#hD%l;|Fxm
zC*HFMV|vVE$@{WJbo@KL*!AYZ8wcZuboA5FU&q5b22!MT@J^yfSX3Qr4#vD_Z^6NM
z$HDleN(JKdbW!V&B0jF;2{x#XS9Cn7<0&1_>KG;hFjz;c>V=_HnK$!8bUaOckrhb7
zXHG~6M`FWuJV#N~F+zwH2dTzgJ~tjowu^whG`r+QmV83~B`Qms0$rjJ(jt^_6j?MX
zKUK$@I!5alL#;82Cmo8%>KLcvRUPAXkZ)5cb%)~DbWC8I9*S>1o+m#i>X@YCbxAN;
z;2Q#&zRw}WZL<1BLEa)Oq$Ka@ct;A!wS{-t)|2vdU-0oEr7WlQR|jK1prq-jmqGmu
zKGHFreV~r@I%eqjSjT5NR_K_iW0sCjbu1+7M(643cD9Z=BBGz@n6G02C0xh%hvIoc
zq|k1bPds{Dxl*T{#v*EmjwLMBYISwjfS-#r=4Tn)ZiS^fmQmxn6_yK3S1b_!T*ntW
zRxwYCjgGG<)raE|oAb29_*%zz)S8*`H#)v$A9yIPcR1!9vTY8>E2*}JWA5?swyZvf
z<JCHT(($v7ABb$u|ES}&c`?I?!|@uj<*+KiFS_!+zTj}YR>!aG_Dl7a^YaXJga4b3
z-*p_(ag_bPj*U8Y=-8>_4;_E%*i1R3;1!~V4;Oja++RBW*71*yO_B*a8R}a3QO7O9
z|Lv?ocYolA`K>y(u}FvGgNI|<WY#$nb5yWP$Ce6(Jv#R4*sY`85w+fU?bN(|B;Kdv
zfR2MyiX-uUb|!zummG-?>EH=Fexh(BCUTgXE66b&$8}WBph^Z6GU)qskzaZ8NL(?4
zyFMxAK8-60((8z-d({kTWKc7MY8jkTh^l8W{zyFQNK9BOgW4HrM^&<~kHmE{sGGr&
zBQf!Rj>JS79*rAh&@h8+2DuCxaqyqP=^31nL6Z!cW^hslCuh(sgXS6Z{;b$GgBBUI
z%%C)bvJ5&Njay|<lEI6e3fCQtZ#x>7&Mgw>R(tCVMjefLVZgwnaRpk0X7It$c=^$I
zU)87`rSyY*xt-N18JwC?8waOl@XOJ-^^|;vPl`MaP^q!%D9+3vm4T6g$y#Jo7sr&D
z4ANxFu~^S2&(GzjWqD~-qhqm^ft`VufuB*fJx&JtF;#a4H>2!2h%{PM5@Zl%Ks?NV
z4%}A0pC{z1AV(BuWzar@YcjYtgR?W}kiogECetrb`F!(w@th2JbdLCW8MVaSIfFSB
zqVqGjAcG4t>LN3SOEb7g@QY7SE+J*3y335=vJ5UiLBB$fD+P8EcvS{hpLoi*co>r&
zKd#H*`V0yg6xkxH;w~9<&ER};V7~fwc4L+26mQ5NpFw;q?sqI6ek`7RERHisGPp5=
zo5;Y)`K3m&$FicmJ-#`k+%b`pbB@K`nR9o)hd?5?FxzfwkL>mg?qCHo*d>g*Q{dYf
z^rYZraCZjxWbj-D&u4IN2KQy~WCl-V(2GKn!2mXT2KTcGGU%5<{|x$M@E~)@;2~+3
zz7%N*w6kI}5&wV4!$L17J|c<vXyvi^QMSUo5_TzrGI&hVbJc<rrhHtIJ&^&evzU0W
zM2BYZj3gT((Wm8gCT4gxgJD7}f1Q-!65Vnv9+APw3?^hSF@qN<)ftS=U<`#s61@EX
zzx9elN1e!dtVCZGI8Go7!>Td=@fo}(2ys#-2|o2in%4z+BZJ8qOc9)aPX@mJrc{CD
zd`sv=-pSzI4BpFNS_VI4@M8w=Q?oKyl)++3COiKOKFMINwAb_uW>D-isC8UP>`d~O
zK0`8ak1KB>v#5815YCZDMCN5MU*27qQGd?`l-1+P11ewtROqyPV6Vt2)shUBX7F_e
z-(;{XgXI}~k-?W4e8%Qpr#3@ZQ2dU^9KJquJpP=0$oPDdy3tn|j5{8$7*O2uT=Aph
z@#5q0569zgGgz6ystgVskG~Um=GJ_*Z(`c&f6rd1LSk1)R#V8|D6U*p{3(N<GuV{D
z<_y+Q?<yp}X0VRE2YUmlDaRXhaKr+y&)~NVHe|3-O8z_5r$RzH=P3%3SRwhFZCxSB
z@(7Yd|B_liS0R~GA^AtjOk`z+<lhXovtVbIY++F=BwI7sMlG0|-&P?xIwOB*i#lVn
zBcm34IDXij!JZ86G|<z)-VFA!Q!?Nf*e}IsVxXyk0~s95;7|sKGpK5ynt>x39A#ti
zo<{>;4=NtZs5@UCqEk@zb%yeX#>4Eq?3D>B8K`WacEyA^Llr~4_0*EMx`7%7>Kdpg
zl$ru-8>l4+-JUR69l?1!XZgGJCECzH13|bD#Ix;<3^bM~ugNG+*~~z5gCiWAZlHyM
zmIhiIfPs>VNh?FmC^={;F;HqKk7vC5vdmDIih30j!Zrr3tC;Y&$g?MH4YV_Gl7T+;
z3a1#je17p{17?jvuZjsFqo*2pp<+Vh3`6zLXBtQuSUI*x$<Yj?4UDc*$QbH+UoI4X
zP%+W@(V=-p4FdyzDw+aUR7@-bgc~cW=5`HSVBkUno&n!LU?4Pbu7QpQXc!O~Xm8+b
z16c!mDkeFBX9?uyDJcyrCEGR>IvC)H_Z%q|5oUXy;0GU3gGP=w&X*`p0bgX`VuLq|
zB5&Xl1D6`O(m*Ezba`=^p>{bhtdv}Cs9yI9fkvf-_*Dk3X4F6z1Dy?AW8hi?bO)DI
zO8Q86rc!d9P##!UBz;_^q^qHP_~(Bqb~DsuKQlK^STInOlH6(_Hjo%_Kg@R*$gw){
z8wJ0K?+P-bQc_OuA<<h5d?u8iD<!uXxShGJi|-IfB(*Jn7pq`klYz}-h=F?zd}Ls{
zf%^>fGVq*%=MD5WaKC{^4LoMx0k*Y)eg^s*c+fy!0}ruwzZKYlaM|sD6rn%!TPr1;
zj*(KSazY|avL80^h=BoYO#@YS=9!){#smy&7RG}NJZ|7=149iwVc<yvPm#U7m7`8B
z^l?Rz$0r9<<7O0jD0m2!Vt>9x<%DhYjDcZ>8XPh_%i_t>^l+hYp@zf}21XhfXW&&K
zzF^>G1Fw+n5`BqkD2^;>xiN~O$o6fAF@`!pT%IRaJjNQ}5R}p03*+$yUZZvxc+0>9
z0}~BQHZaA&B(|3UE=az?Lar~IQ8|e!C-kUKLna#BPL*$!+fC5|isxkCHt>#tX$Iam
z@Gdn=3~@OYBJ!T(K;(+b$p=!B4-K{8N!usZj;oY2sK^GsqY@dIX<!yL)WBi`vklBK
zFyFue1D_a}Yha#ycmKketAb=Q-=+N$EuB6U`a*%dgpI5nErpf{WjO`Lz*51N3FK2+
zf2}a^xq&YYd`0<RU-&{=fh&zXK+S4?ZQvV8+*uskK2bUOR-!HED?9U52EI42#=tKI
zRvY+19{ohg=~UoFnOt=Gk<720(464s6JKPDtYyWi(FQgcSZ83pf!~<Ph5}Ebac#Ey
zrDZ&b&9afQ(ZC-D{xa~ly#A-5?4W4qMZWRU1R9qABXl+p>6FiZ4QyejVInfI)xb9P
zfhJm-*lu74yJC~GOYAhT%fL|s#|-Rd?_uDuWU|-5KKA_V@C|i(j!VRBtPd+E2g#rL
z>a_A9Ls^b-bA<maMvur_yv>kBW#CftakjXr+LY0XCMub@LDp$0+e}~8L^TujO*Al3
z-Bf~C(?l&3AOBvcVPcuIS8Y=*qt!K0&s1$uhX)pFEA8X!R478qQbQAsOf)vp#8ks<
zKIMg^>nbNrP5yl<H8as%GT&V}saGXo0tT9swK7p+;tUgKnkY3<X5u6hC!1((^1>dp
zG11mk63!KADmafMx06iD4HT)=EbS>KrivP#YO2djY1w$1iPI%nyDAB5%~nX6&`h`{
zJQHaXx(UOCX{wb*=0L5_oWL!4(Ght3>7s3dkZE{un~=db5y(>t45Ks)Wc9PAI){FN
zi3?5SOq^w+y@|6;oF^%ntb>VjOq^>f!yZPtGfvpiR5pIoClsl<=QD?XMIMVL{UQ?=
zo9Jxf8WWe8xKuLfWGXkgmzlVnQB&Q{MzgvrO;9p<jDm07)U#AIgsBW)ua;NJxpb|G
z>rBKZ64uc~7q-5Myos)+a^A}qy9vU!;7zZLG89bkaC*^H%eG`GDe3Z+e-qtJ^e}Og
ziJRH1XQ^!w9@r;xi-}uJ+-8E-$l5=78ewuLg}TXi>F@4N6Fp5l=%TNSyI2tx$-(sw
z?qNkt)Ui?5#(gGwv5hQv7J8ew-^6+oznOTzL?07xnRuHynCNTbITO#D_@9Y~Objyd
zxTzee@$#&GCi;`5CLW>mR*oJuF+h-k0-uoEKuG8Kgno4%Gu18jj6PxFNfS?-7;54v
zQ*DZI-F~pCT;*`@dx)u)@lRV2KRaIe+u_q^*odauuYaNh!%XEkXt=4|wJ{JMVPd3-
zNhV%5@d7h3F~-DLCS&1iMlZ9ys2#-uH#J64r{2wvW<T&$kqF0T3?#Bh<4onqZoJ^H
zn#vszo#DJ@VuH{oQh?{HhGQBcZ!j7C_OM<iCYzYT?~3OfR+B`AH<>{2cTBu%;!6`>
znRw5{G!t`7d_wLqTdDXg6CaxR$W%LhbYwSOh##|!+Lq2RPh80LetxFZnyjG5#n~p7
z3!@mFYhs>>g(eo6m~UbMg+bmT8<~s=m<b`-$Wkpfv6S75i6v4^Qt0Prxrxt&EuRbI
z=y8Q0<P2H#h2Ts{{A&~6nE2Vm8Y&LeO>SKJ!NhkaR+?Bv@sMknz9+)*n_P9YT9WaS
zqaOv~D?gbCt0Y7iele9z_*!y9{AiK#E5)x$v`!$Sznj>=-hg6nVIx(;#J?uCuqWaD
z?<W4H=*ks=e@W(sxWV~{)j#pA&8BkF#eBHvx7EZBcK9Z^J+zH~0aL96zAAUh?=ry!
zpMxe2nb>V&kBPn1HG2MGqnOyomKu_0;7vn><<}~4>FKcKaMT2E4mu+EKV8*_c!R?+
z=6_Xzt0fgJRI<>@LWzaS7OGfiV4<OfsurqQsB0-@uWq4+h1!-{h-Q@CV@(USEah;U
zzZg;o>EgJKBp||*di5;Smjq141dS}Ej7=>xv(VT=6HDDsN4<E2w<7LW>ek#s3rlHM
zd5hBtRZ9y;<*v6<3uP8gw{V7q)|R@3k?UHgSZHIRt>7nFXlLQ-DhaPABf_UNaXH!g
z&xMq-?H3~Hr&(Z>KBmsJz|G>c1>Hi*f@b08@&QA!BY!{{3x);LQa>yfo|R?a#adey
zY)kE4Ib_<~>hDIJqXpkWVBtLr(=3D*A`1g7478B7kh74tP+(y!w6}1Xh086RZJ~pO
z^DLZi;T#L+TIgu0aXXiZxZlK3?$nOR1(q^^yhz}M0_hNsE~hTGaEU}|wQ{K-+_mAO
zD=b`T;Tj9qTIz6jCsu)CDYvcB4dc}oI$Iba?#}*{yC$#WcP(_a(9Ke}s&UD;i{w`B
z9gCm7L85Itsij~(En0{z+{wfi5(_t4xK$F|WZ`BD-7WO6K!<odXvV^Gci<LFogHI!
z=qryE<le+>7H+q2hZK(`r0MBxRT3h1S-9Im9}5p!xQA^`w_p}}S-6*cJGF#a(fJ;8
z=xyPCzH6a>m4pUzq!W^Fgncdik8}$UTcC$YI+J{elFU1s<XimEuqsKNHh9ERH`X;4
zKX069Kg#l37-eC!g+Ue`x70DZmnfeWo@722hFN&Z!e9$eTNq0G62%IJAykm-l|y6V
z&sboKaMiAS&3w3p=PZo0@B*cJYW{hFEWng1$p}_+Zl1`Cl-^Ed<$NxG_htDszy69K
zi+ZTbp2k?1WZ`wP(ZV<juUZ%{PbXS<jfjPENBYc)2!(-8y2`JAdc(qG%JAU)TNb7W
z@}@virdn87B_YC4?rQ993!CmNeaFJPY@OLf20nV<!Uq<%S=dg!w(yaKFD-m!VY-DG
z7Uo-6U@4EX9}ApgVWuFY%(5{11kQYz=O^;%xdP`2{IN>%DT`rYIa3N{k%h$;mRKlv
z=C)Lbe0`b4%_&vdGvv-AA}cI>Zs7|`OK){+67R(zWcdldw(yOGUoEV&@U4aKEUdQh
zgN2oB&8pG&k|&W>Y}sN&r2Ive`9}*su@jJDw|=mMlr@6?!VD`#jINa^{~Fb*ChINy
zX5nuO|5*6l!UpLK|D>W>YQ*)2^myzp*mcY(Q-g3Kf3Y`PuR707WMj|LEv%G<%@+P8
zCwYZg&(iXgwC!gaLJlK$P@>om+o)z^mxbLHD%$E7xyQm@3x_Nmwy@8_ehUXFuEmb@
zQ$$}b2c*|3@0!Z{v?KhqrTm*!uvM~S7LH4LTE#HRi3vw*?9FIcMQ&8GRhw3}QAH5q
zTqUk<D`U$VwyGUFPyVfH+9-D%TFXXlTd5lZ)w7<B`Zn&daj%UAHX7Q1jW#wK*=TH|
znT_T)n%HWD!>*vIjk!U@8)K=zyiA9CjxB7I*dWdyQ%hUzMzs>iG^Mt(xn(F5q_x01
zzm414XlLUx8<*QS$;Qbx0vn-?Q*1R@(rlz{oND7V8}#aYx(yo4r)->I<DV~zXR=7o
z7a3YrO|+^B6L1$yx8d3FZDed1<ove0X~VL?1(}Xj6Gm+z5^-#}f?q3i%Enr+3auB2
z@Y>+4jrKOqwsB|Gga=-(=~g9YD@*&c*a}q>A~gH#VB;Jc=i2I5$iXE2T6DB=fsG4o
zoM$UH7YygyG)hdkg+yb~i)>uVk`$tgZCoO6kw}wKLK4T!iLbD6rHz7(qK!_r8suDW
zqYHUx<7yjp;MUp3b+$5qyvD|CW^3cCs!4Hgo{+xX{-~OCwbhTHn~fV-3@TcUC~t%N
zv$RgBQ!ODpR5gihBur-GE*m%6xXH$CHg31oZr9B=df2$dMt6z6Uy3uTB~Q#$4a$MX
zt!&)!>bgdT_SF)?JIEgfq0ri#W0Grxem9$Mh_Z{j&qgmBn{E7SqqmLwZM<P)vW*99
z^szD0#tSwcw9(hbQ#J;($~GRd(Vt%zaV?+9^|RF<oQKpNvDM^mpp8du43Gqzr*KyC
zn2kYf7qYZx>ElA@3AG#76?kfiv->A)HHM+^b1F2%#?v;2*%&U#h6;Sf1|8Qk!L#J;
z9CbL0lT${Yv++DdPSPwaQ|fcdU8Uvz(_R$f7#m~xQNj82WgD;97$s5m0HbY`zg2m0
zJdRppW1@{oHl~$fyp7jRyhY<czB@sptljG;=ybkR{;erCrrP+z#+NqUwDFdWS!{ht
z_BL~~@xG0BY`kmZJt5M*h#9h5VBf_q;sYBW*_dwQL#Z8m3{LZBurIPP)BbO@A=#-W
zyj*Ia>E^;k@f;hU*jQ|133c4YJR6_dswbRpV*$H}ae1Dn<EcYVlR4SsNjfghETov(
zAm6w)MYz<)G8-$TJbaODw46N>8+~1YIM;JHM<)I`DN_{km5r}$th2G+#y2*;l^54g
z=54IB@dLXH8>?)5Z)3HTgn4p)TAmdr+Ke)vpKSb0P5CTOidrH&E8-I0FE-ZN%94<4
z7r)wS!Gwz~<iKy_M$gg>HZ}@dey6faU-}0VQ_k7LklS6Ozsg|^wbID3G5d$FzAtVf
zv5gu@_N<m{v9Xn1jRVucHXGa7b2@0~V26#JHYz));$WAJ-8K%f6SJ|0pR=)#BF7fl
zP$(aQvh(M0p#$t3*zFw3^U%<MYHA^ipF3jXDAlA|QqjRN8^@(Q6&%&X^!~>`1y^@j
zwucYrD>-T@i8!0Gs)K3{YCEXo;Kjkk>JDl+YI)(UYRSB6Nliz6x|TrRY{E?HIvA8M
z@bq6j=fA4)$YFg4gsZD1jT|&~(ArU#sW)-Z)Ilo;B@UV~frEdmCFiwQYp^XGWu({U
z_d-iYEuC#zplt9;9njlenG~1^GhAAREC0&3anRPm=?>0t(9XfpYRM@MPIYjSqa^KQ
zN4e?a@)t$xG=6$T+_ZW^OFR~m_?Zq;4$_X2x8s}CS2X!_s(M14>yx^Jj67w6v#TeT
z1KYuQ4$ddhf$QKb2kjkr4txiJgV2FGU%6hbKXZXAa?rJUl5^Ayf=Jd;1t!8M58bfo
z$^5e&bZ~Hv11`j!E43rB{348w66Lbb1r9EBaH)gKgmRI<iv_ZOxI_?&C||ssxPxmQ
zbyD?82b~;T<0w~VRFkV5T<xH<14=c!CN6wYhS|hi3MTB>vy`t;=DV=WET@Z3F1k6m
z!NCV?Uk7;y1qZ_&Jm;Y3Aa?MOgMJPYa=3azbFw=e+(^lB)Q#acJGh1X7reWJ^<mUQ
zARirHTe$Yu!fg)TdaZc7Kt}7WE8OXzr-Qp3-0h&ZgZr6&Sn(bQ?^aKU-0R>zp}bH%
z>E)<D1!u>kb8P&8g9jb-b<~KxkHGoWlm7`)<zSvT&EEKk0>l4ce+Lgcc*MZ~vc<tu
z!n%PDzN?-*CitU{`dxC-Y)kcIkb}pa|9ZA31R;@=6z*;hb}+<I2J=rlc*eoA6s^jI
zp$;n5NQN$to7G5$IXJsU(xpanT8)HJdT@Q-!B_|59E@-<(!mSzA%1HVHOs+Ej+)}V
zOnLLG@Xz~-M9X~(k7j*qsQra84!C(ilbBZ>jCU}_!BnzqM*cNc*1<$J?gC|HH;Fpf
zC7R5JyCE7>BYB-~ky0ahVtjE_jfBL7B?a2syh-NQNZui&JP*z@yzPLd5k$V8SA5sO
zdyYCJGEE?n_t^yhs*|uEIhalrcG1Sg3<n=O*i7YhFw?;-2R}IY(ZOs7a~yo;V1=VD
z?fS&Qd<P30%#|o9^8^_&zxb(xg$@=wSR#}~4t}eVRH&KI{oQ9ZlBMh=Y9`Am&w?y-
zpw~=D;fY#i^0|XA9DGfsqY~9jNMZQW!B>(A(~!ulzIE`uWd5ClmGU`$V#1>0D)Mbn
zkvLPXcEFU^)J%SI@Uwhtqk}aLesQqY!LO1(o1lBmWZAU*I*KBTR5RJY50SSulivlN
zGA2K!W<vO0&E)%<35)j!S?b^~2Y*ZWhca`b@cbOVyGaT*bxD4UgRLxsi;6C`IoR&t
z2s_&<g&pjX9PAf-mn7cJOdNG8nOU*?dxf}9%FpVvI%M4e2M6VqLk<p0U{-fe%@fv6
z3P<G;qsJ&eQ}f3K@=+xhm0dJ;(Zod+7gb%<aZ%SrH5b)g+*~WE>7r(>gehydNYzRh
zI@U@^ujQh)i~LK)zO@p<dM@g_7+))C=%RrOTHOp=l4q%g*GkwTq&IRwF3ql$G<DHT
zaOO!$a~CaLv~tnHRb2hLRzgVDmAEK%QRZTc<iM<2yC5u&l9O#+v~zK`iw-VMa&fW?
z-9?5uyGo?baMkkNsT9{8d4|(moGy67+6lM+_~=YYkP@i5NV_m=Cv<7TM}~{ZU82Cn
zE435Th2_F_adGYBw#BjM!f}-iHm%59SB)+2sht#WDEcm*lmwxR$VJvwns}Cr_AYWR
zsC^8V*DHKbJ6TjaVb}CS?c^L*$Hhg=*#+%|?pzsnba9>w+Je$1`FttZ1p?V)T<BtN
zZMF5xKK~LIm%7SH9it<L6)zL~a)BgX;VKW_M6PmiwTs(b+~K0Li)&mIToheg>#9Q>
z*SWafRs9|py}Jl<gRAD4U0pRLA-$UrImONkQf_7$v+k4%7u{XlDD--DRH^vlO)i$o
zLT(Roa&Z1uf%GkNiy)j%-X;j0ukz`gE_!n1-^JZ7cHddbmEIk_ly`S#MdThA_e$pX
zxp+X3UM^^;&|4sp`vu`2p^rS}Tl6LPKNk<VSma`{i+(QpyZk#~q9l0O#Sj-yyLiOK
z02c#YJnG^JHW_QNPO<SZSN)d<Nn-veA1Alx<WH%SJSFtO0?Usb1$C0^>m);6JVQpg
zc-h6XWVnlwuG*#jqi5-GN&LKv=LF$@mNSSEf^&9XKB|8~qAv>MJ&CWl80F&C6Lq2g
z*wHS=xESkl8@f17=rkuI&Z6Ef3?J{}HEM^P^x@T4lU%&c=5sOA#T$}-s*5)%#xAC~
z%C!_<<mCP4o$*^P-gfa3TVH(Bz2o9t7w?J8aItP0vmKMClOLvkpUjtgSUwQsLrPAU
zh!j4WPE}&t&CQ?ptGcdbmW$ag=DC>fVh&fm<#n#5d?F=bvbof+H8Bw$I9edYg)TmI
z|NEzN>PM02S0`CQ5pwaji+@}!bFtjTY8OAa_{_x$7hk&g%Ejj{z98SaRpDV44$C>y
z=Me@L>1&F&U*$WhlH~u5i*E&?T_~Tf5>_(-$3Ndo<FdIqasJW8Pm=667eBjL!$y=S
z|CK|JC@uJf9ZRBqoxieni}MWY1X<5+0gCcFwaLXsdFxMCotgbZUa7uZ9jyCH=*(wC
zon(`X%`P7H@Q8<h*{zW$9&`^|+4;L@>Y<s3?Jjn>IPBtxi=8fZv8XQg@oA-q^Q_%2
z_OL<gBn#^#zt%~3gTsC*V>UYA;-EC>S2JUt%spHuIV8GFg<>_2x;VzZ+Cv==$6ZwL
zl-AQpV?_@y|6Zu%p|S^>LeVCwiifHmYI@*(i`6_dshiaBVAV~k3x!1D_w0%ZiPsY1
zMRk+99_o2$;Gv<Xd`V@mS6W<OzS6f_m85Rc$W!Nq8+&S>tL?)0wgtr|p1P%rNOKP@
zJe=XF!xt?*wDQo-!$}@WJd}C>qxApasmT<b6t$K-%a*7s@B7tFp0As<@$g>Vq^-aW
zi}NRYIK{(h9!~eLYF%M@-Q=IT$*CSH)l15|siyUkyQk&T^^!9^CI1X5K{W5bD_t@k
z3=c&Qu?LfN_i(9)%UCZDj)${6wD;h8xUyandWbxD9()gh2YT>h7`j%S+9SN9UXu0H
z#n4mhB{>hz)=L=Ts?pgVI(X>l;XDuLcsSSlud}85cb+)@s$R13g`)OI@q7;#c}n|;
zU*Li8LJxn|ONbn(mt5@O5)bw3CzsF4GfH*4+{4u#I(z7TEPn-y=VAEpVke0bxyl2(
z6e4VwYgk`$TR3^GhwIpCd-F#9WN^1aR}bAh6oer+u-5g}(rezs&f&%G^^+$1)S_|U
z`pL8Plf=V~<d}!MJ>2BsW)D3)+~TSI-|ikJ)K6#xb^WTCpS#t=ZSpNHg`Jv<ZuijB
zQ>Fs^+#Mc1t)JZK;rsgP5&K&jz1-vBUJnm?=<DG=5536YH}dyWexxu*>L<M^brlPI
z{Q(bsJhd;`w1F~On>MhFpZlMOhdlHXu5wMRKSis7+Ro!or$d9}x0j0pJPh>klZT%@
zJnG>wN{)wV9tKGvM|&9K;c*X7czDvoQ)Ht@C!!eaVTgyJ9-i?~O+43e()6^aW>x&?
zvmS;~sdLI}7U_hfv(JBC^4vE+9_3+#hmjs$5Q<9HAbC;nmrhV#_V9|}*{Vu?n1E;M
z$9fp&;SCRyJ-q5+yocAx<Vktn+xVJ?iEQ-MF~bB8yuGm;pX8~_F&SmD+Z!ZPJWQqf
zc*>(%{{{({Re6qV`WyL?bBk|zc-zA}9^UoTLbvmpYG3~4$23UZ_rMwGTo3a+eBj|j
zinoX99%eDxAeq5ZEiBITaO$(gk6DbX3!`r=(3=o(BC|cr@$fCn-yqrFAo)b_Mh%ns
z9u|1`n%`o(dsygUxrfg@Eb@?Qm@M|Ngmv5<*IrdzO4Xa3zp!Dlj33<{lX%L!n9&s;
z@?6VeyEjZer=T`W7`QC?CH1Re@)b+fFyW(V4U=zKe##YjwV^;)AuHJ%u*KiWFKw6*
zZW6d!p8nwBM?pB*XW~BMbnDOFWox7@emT)PYuR62A92Zgy@%ge{&TVLT>S1~0~NVF
z&To&69{wOJvY3>`pC115up-3gA^!I854APGr2#g1*z94FkJo+t>tPGE&&TyXwtCpc
z&elg$AKN|b@KDi5B_BII?DBAoowhJ!H(S=je#*ewc#punY#KR;cfi9zPYnhRdpN}O
z4U=@E<f2B&{Ty94N{+~*qg0LQ>ezBjdZVO*uZ}y7Xrv4Ud(iWzk19TD`Kaxqs;_<!
zT<u@cD5>V7y03oIHGH)Zz-8W=KEg(Y8I9Bu?#y2bb$rzK(ZI*XMoC>C4L9fOk@7=K
zg!%I~-OyK~<wicf8BuJ^tZGGv_-?JJnUCf^Qa&^vEqt`}Icz{1AFX_p_-f6h)K|wp
zS(1j0lQSA8q?8H0wXYmFT-rEk>!TeR*xf(F$4Nd;7W{M{D-P#R5qPS=LgVB#9}hN8
z82E@8a;^SMU#*rfuyaWJ(0yF!(|nFIaTq=V*3pOQ!xAnrjqTF`6v}Exz7N+2)r88z
zC=t)cu*OL_<(b*}$OpHpvOaRmVQ`)&2+r~`rEzjLVZUN~!5249Na-LH63-FjTpt~M
zoaf{G6ZF;BMSOYzdCT<uiWmF1#K#q6f{#mmT;}8BarxrdeE+6}%YEFis92{-!aeST
zjgwAn!BIt?=<H_TD#4r8EL`oQv*6eG>R1F5TuY`kNr-gu(bdPjKJN3;jam7)*++NP
zB31G}iaugrErS>2bxuFovb;|=@o}S%o22Q<RsL#u-vOJxhmTu)+`+c?aVr~<Jp4Z9
zAAxDO7jQc>p;J?y9Pd`8r%(TuxZB4)zA|<qeUkh&h*Te5th`D6L3;V<?c)g_Px`pu
z#{)hd_VI|1K5SDT{e1NI)x6SelCYES%go7{CJDnse5HCsgoYo?M;(rvP#oZ6ppVDd
zvSag)`rwr`d^CPg@iAXnDGU-wB;i|45>BI@@-f)Q3qD@-F~rByK8E{vj`CJl_4Y%3
zJmce83V@F<nk1W>Btx4dlbR&61fgU;@8ftAHQgH_!pW`bku30}e6NR#FZrO}jrK9d
z$IHxfdcIlH<P{&Ie4O4iVThV0V=3xn{#ns$tW?v4dp$i~F23rkF~fKtzaCUxL?-x{
z=%dgyq1hPCl{p%G!^dPFJJ^9xkbF$_vC7ByKHl{47OU)IF?HF;J3eMmgnYc~<2@hK
zSa<TdLV?2=?#B^+;G<X5<U=1H`FN^nLVP+)+cY6QO(5}^K4$rtOKtM;&s+J~Y|w6n
zPXwPMIEf4kn<lH9Ci8uK>VuwSb~Q~F_^8_~IklOZJT4R>ktIHsl9N8Z^s&qb?}Xxo
zp`ZC!?xTIPgnd`%X2}X4p9?c9Y|QiN)`!c!^6|BgmFz?2=eYp;4Q0v4cNDy438OEJ
zC=P0tOlg)ZYnCtpJNeZ<e(>?Tj}1P4^wl=s8ft`(pM3o6bI==YYah|y8YN_{JYDBw
zJv-z#^S_df>tjCRD;4i7`HjNAzOZCjk#Hjw#K&fK>^}bV)w1N@0{;?7C$6OYBRG*w
z{9H376<d59YL-xoxB6<!kDGnlD4%nR4BN?*TtsA-kKI1f0rUWSeC%Zj12he=&&Pgh
z*&F#f0S@>$=%Yq}ngI^+KhiuoM#1xO*vAoxwpkh<WiQt};Z%{ZLV$+X6)Fj=D3DQ#
zD`DjTRZdW<2B;=@^%InHn<t#|)C$zZr*?oY66HLock`rffO-My2RL>#-!MR<K=n=y
z0;TLko@SAb<{Jlix4Eh>myVkSXdd9?0H*|K5ujy&)&UTpRe%y!c1a0+5|##P6}>D_
zH?4CbL&zv$n*ePCoFw#i0{dUBHZM369QB7fpZ?rkrKbisEl>lARDjb1q-Vxw2Ke%e
zn8+Ccj{mL9jr?_mZ<{Awmlw4Fb(<FcZJyAfR)%j4&UXx85D8!fumgkvq5w_+H&7>J
z{Q&e?<ORxw5p{<+y*~wknjjx(o-jc+KrX=90XhUYD^UB|?d3(q<Q6IcDdz-g)^M(5
zMS8j3F{|?eoX--T6<rYE!ayw%m)nZa{^X(n7qd~WSNG5nUd93hXcMAsh${kI8DIw4
z9-tHX#uoz&3UGCR&H;J`xGTUlEMb5`fMS5_0$k6;m7^O3b`jWBV4*}E<><zC=@OM2
zN#=!4Gr~AP65!?l-ASpU8s)}7bw@V|eB@+>_Xu!HfI9*VljR`3b!&jz0(Dz1Gi1)U
zGx53t*PZSRls&-45z5^0?f~}$=u3eKaBqP70zAm4l?%NB^bXKR3UI$bT0cGzp!_C8
z-Uy>gC?6_^4+ZEKsLuS+0R00z9AKcl^#})G@8@ZnIDp8^JZ%nne?1YFhquV_f5gjq
z9}n<EfGGi{26!^SQvqHG@M3_$0ftB>&joloz|cV5*gGu1Gt{^@^4#g*O2V_0H+pj_
zM2z0GCLT_PuZd}|_<Vp7fpP{#gSU~wCE`r;Qh=9P!2sg}yb`GEiN^#OOCbp`I#6di
zn2foRpPc&-I2q#tWiLk}jZ0q(Fd@LC0I&0vlksS&V*5l%z^}X^MP<Dv3!hidSHDp*
z?acshQGkKz0p1Rjso}c;-eV?9^Y4&Rg^0*BvX1>suM)06eh~b(JO7a&9|p>9aAyBv
z&oCmwH6^Z;&I~Xsz#jqr3@|&uoB-bj_%6UF0S!E`n2jD_UZ7TDKMk-jP-dC)11u2a
zbTPs#H^rQGUD+avrBIei`p*Ka2(V1><pP<>Rd44%mv_Gm@Kt~>1iw)3E&W<>=KqZ#
z<=OJl$^feZ{2E}L(7zAxV}PFm@QbShl=UwAAyDUiy0*d30oF*GwE=jW;V-OpuB674
zyw^faA$fNy;d;@>4FZ3oq;)I%o!#JxyJ)GB8|Bfz+~K9x2dEgLQiy*ja_prk1_3q)
z_&31L0J{Qg39vQ54r<Dq%HUy}WVKzQ%###CKH^t)vrz)<r_S>7FDmBL{ADc?uBYt_
z)G7fH9v~`Dd?>(S={AoA%CeEu>LcvIXb2Q2!$sN%^=OeC4^Sagw<>T@$3V-0$|0(R
zs2ieQh^ir~g{o($DX@B|w5dk;pT_Z8YDQ~?s2!q?B;ew0c`regtRJF5h?XH*g=iR}
zQK*dWnull{qDhEmp;|L+8veJgNIN}7H_XYG-}2ldRQ2KotOHvlC84sTYaOckmWC*k
zSIVs!`4mFuBXXu)h?7D*6=HCRlS7;m;>r-6LYx}nv=C8<Y>3lCoDsqdVTGVeoHIkD
zLpA>AMs_NM7OEX>ZqO6zAu=J1P;sW5Kip8J`Ia3jU7#VZ8^RHsQ5x2IA^h+^eF;J}
zMWW(_g77NCT!^zmbPRD`i1zYUhfwL=*&$w*dvd9C=Lm(wb3=T)MQw4OAL4=#m$TM2
zqYFb^6ynklmxZ`E#3jsRkJ^vpqcJTK?#&VQZ(CY!+DhUT@)jw4bXAC}$?y>Ogy<aN
znh@PX^aycnsKzJPhv*{6bs;UTmBC@x5ZyxLLloH7@`%Lpt5TSt7$OdFQ>gw&Nr)RM
zB-cl++9*g%Arjwfp~iAIhsuixU4!02h7Zo)9^wu`ZWVZ&K+ccu6yz>}Ox9D7a`Qi$
z^W7Wbz7P+E=og}we32!2AVlvF_p^cgD*Rlzy=9*e4@v@RTwg)>=zk%0eo`dTKU5}d
zk4okbQxroC2r=-)x5^D5RUu~=9}6)^5<ec|NkN_v$k(|xa*M3u4hiveh>t={4>2^v
zGh|VSi6Q=Mjb}r=5aPuU!$J&a4ppP)LW~G8Qt;<PENYR^?69ru^OoC@^4#uAAx4K7
zL)oqxy&U2dL5PnEl`~QzYz|g@Y>06oUJWsx1sI%vjlX*_%4I$r2C$mX56Mpo@p_22
zD0m^>2r)UtRK8MKUHCgC1P|C!of+1(Ncg9CGgJn08|TCiw81-}8lh36-wp9zh-snn
zhodNhD64WwK+1<9wpLb?xEa)X)+of{5Hmx}3Nb&#0#V7?>{X~)A?8T*6M-G+V79wY
zZQ^KwEB5S>J`L5ljwN3hD%(g>h_k+IizU>Q$`Sui#FvIxM$N5RpdsRNK|T}6Y26ng
zzT}uEiz~DED#X_m+6cu6-%yD{@RHan5xxttl6`N8O(9l=_&&rhA=XkprA9xTkUj2&
z{dfZZDa6l$A8e7VIf48dVjWvqqU%p^V`GTlLL5Gr|DC;7%Vfe&@rF>H<sm}f-G8t-
zHpTQM{ujHKqw!}u^M6zC=(c^QvRK|6Vqb{;A^r`qg<NHGQ(`HcEfbDOwuiX2Ws>7A
za0s_$(y3)Kx=yq!#BTO8A!s_aw;T#WmXdNH#K91y6N(ig9Fh_qA!FH}XQRU*maZ-m
zIYxP4{uJPr$*a6Yv}Hmh|9YNpRgBcTl>{zrnN*EXEy9@*QW2_0s6l#!vIsRJ%=<j9
zAE5!GpU1T#)Q(UmLfr^!TPF1)7_E|nEt3|llFM2p+gHR5BQ%PX=ff5e8b@dnDeJFh
zk!t#;k>U@dgp3kt9^pBmw2aUyLJ6Di$>Oc8l80L*M7Y+?17EEpw29C*0wP?wBtNp1
z+9_@q;iL$sMd-3Ee{zKB-xnE9737o%G`J#*_z4nEkMKdO<g-@E8G`)YD$ydOBb*zd
zV+1`yCPEY;8-cS4BZ9>+HgA$XH{ao3b!Dm@DT5^^f*Zk$z!QrMr1*jdCn%vH^e>u=
za8{)B>zqif%I<5G)GkTdM>w0TD@i&CB+{-#^_)RTavmv3;R@C+!ub&{h;U(qzh5j~
z65&!oE{bq*geyuC67MZZUZ@xmA-pUC_q8vVG>mp4lOtRg;ra+;UN2r9;o1oNv38EY
zqvh8`|NUqAx8>l0Kj<zIx<<%H>L16$_1z-z|4hcNE0lYVA{<_lOe{&_2uXxLBm5QN
z#t1h>cs0WK2scOQ9^t77gCq2aa7%<f%!FK`B_Xqo&{Oc+BHS(r>30Z1JEglK+#R7;
zgx(aeZpC|8L3*5v)L}G=$9+O1g(>fk)SZkZJ|JoMD_^srKu7w0$>azFA`Fc1P^2uo
z`mqrsTtf3FUP~0IQ+1EXE6Uh!owAJLHu|Fx9*giqgeM~miqx%w{L14jId8_4>)Uvt
zZMmToqf9?Uau^xmg$Pea7#iW32+u|sPSK6j*<0={4rANV*jp?@pO2Kq;D|`s3es+n
z=9K017bCpHc3~^<GPMY=L>L``{wjMMP}W?$&UI7-LK>i!pEeyEDUWRnN|JFAzAZ_(
z+VEP02@&Q;SP)@igh>&mMR=b&72%Bt??iYv!esI)!dq<j2vZ}xDTSdoLav?Cl$wY8
z?p&#MPH9=h!<b|{KmA^WZM=|Tb4*sy#OQ+vA4ZrJVRnR%s8A6;jxdwN4F&HcrNuMI
zY92<ovcQ|j7^R8eePx&<3jRrixsftB<YG1NO`b<ZSR21Tw}hsBoj#90jj%An$_T3>
zEQ+u=!U}d26ob>10pXGeOC^(K5q6g(pG8<sg_@DyP?8YxLo|2%BEpyK?WIM&Vt-Yd
zd@Zfa8qq3}cP8?bF`d<X%Wj17c_gO4EGqT)5mra|Il`I<KSbEvv-HOZKS}01+*(?i
zP{vrod%i9H!agm+ZxMcH!RF_Gjj)cL&ka$oG~ww*hV>Mf-xNZ=ZHTZj!XFW6n8z)C
zS_9G)kdIE<p8q?-KkU%5D9K_IzsNLX3%ijBTUfgYdm?Nl+av6dx^N3@I}^x>UFKYV
z416aw<*w3QEN8O<51;Opl=~wbV6PJWXMRlU!GrAl<<ZdyhXpx8!R}v1L1I?dlqM`2
zkylyBEGlMEFN^wFRLY`q7B#b|l~wXzC5viVRL_FRs%F*2AIqvov~r<!G@sVUDvKAM
z0Ie;F>k1^jjv(tc#q@D>-I-`0(PmjR&!S-#jk4+}ed8>e2%TotjPk9f5@n6bGjAbL
z(pzTLX;U6CE6t)T3nL3Ni`MeAZ5HhWK^AQU;TZ~!)lbUe<Sb6l;*2a#5jx9xS{A1Y
zepjh7rK1A!)asc+NoS!8l46YnVFKE9uz$#8)jsB9d*YV7VPsvw%EHd#tSs7R;gDnF
z@_rUU7H$?E`BR#(i}*{fAfXv8g)__|%Bt&lvRS1g+#RF7<OC;jb`~A7xID|>eRPfx
zXO|`&1vxhh%I(<F<g3!;yevpRKZ^?lxlrIm0!hC(i%U-6mu7L9;9q`J<RdNuvmy+g
zvgndUSLQ6WyINr96E(d?kZZHJ?gZuftnxw17rSL~Ll*aC(JPC5R?WX|$>P>5>w}_1
zV}UmbOa$I2kkikb1>q~*1?fRPl&TG;+a!9Iz}p4hA@ELtOwcon@<U#C3+0{@^n0_)
zsVo!p&f@+op3P!d77t|6C#y~%J|XbIEc$2ha29<f`oAn5Iw3#(gu?#_6F-v0fGi#t
z3ZnzFcuep|Pf+MvnDjv+;Y1iHLQiJ#lq47|aHzl`lIH2G+TZ7oo5`NZVx&my@T|Jl
z;l(Uo%Hp{!p3kb@V?-9^5<+~WP+ky0V)W%KUddu?7UQxQMZGIaxaPxY=IE>%hck>3
zgmcMPnWkldqsIy42?g)-;%ixOHRhzUgz$@p%lPQ^EZ)fC*DTg$F*%DVS$vws!Yrm{
z@n#m&vUop>x3X$L@^%*Q2yzrE`Ywy%DVv}7gxI6A8s~qI#fSVv7PGSWh`mI&D$^+j
zeib%H+f&qAGbktj=0DCNEK`f~96Zd<Vu9qqr*pFSgd#nsq*#{B&4Q~&^90UkA-fhB
zT{Tnf%WxZLQ5Iik@l6(svsjYFQZklx>{0ovES8IWekOTRIO$rMa0PiN^e+T{DUg@+
z@lmdq+L!q@i|?{noy8AXtjuCn7T-(BnSc(W`9-GTq=UOBr2Lr0nk;^iOn%DZXG(h|
zWj0gp!<N5(YVq2v8c6VOzCMfJ$depq<?y?dsznYhbJ##p&*Bem{<3S$Ddzl@#ot-%
z&SDQGwk-LF{lBE=c=-CJh0R&~o5hwawq~&{i|tvpEHI=jA)Hi}%q~lI2xV6m-<Bmi
z1t-G2mF;E8-YoWI)$Z+)EcRz{KuZ2}>!iiF;z9ONt&_u99AbaoI%(ZHd3HzKsdaL9
z>tsUf<Y*SW9pG3N$FtzNL4}-xGg~LCS|^oqsGLKU9IEC}BZrzfb=2tco~3k-Q7wmE
zYl_u#YN>W#>!el=wR32YL&F@te6d(3hkAn4%|YLie<oF=p<4YM>LOui_G@AJ+_+H=
zO>;Q?wPNEOn&d#rplSIjv-3ME7MkVMbdRCAAUs{vDu<FBZqMP497=O2%i)R~uFRoz
z4#*+OA)7;+9NOlP%0bJaT@EJ+!%xpC2bCx1a7qsJ56?jNI1H!eaGFqvcMg@po{>`v
z^=IbP^$kSQEO`ze&MkJH6=!lVa`1BqaxinSa&TGTKl2yx*i#OU;5Q=SE*pDV(mkON
z>4SuU#Q3Zz%z+4f#pH50i=~p{@km1Z9QSl^P7Wis<j>CGIV42R&7q?txFCn~a>~-_
ze1Syx_aUVC(Fm&XouwD$a53w9Jia8SX7rclFcHb8NQhr1l*@BiDbY?jT$RK1IdsV>
zb3O|5)$)nXIqX1kO-{`Mt`*2Bz;!t_9U!G^4&8FNIfw2!+>k?__2njS4h2Dq0!gXd
zCLxS-Xf6ox8`&<q@;6C>)7vCH*nFJ|9oi(fip<<1u*0nQwj6rRjY%iGGl!lz49Vf?
z9PY~D?i}vT;XbnKsIo%2C#Q~pahlKNmtHya&Y@op{aL&=$^AJzm_uJ?)h2l$hdw!V
zSb(A1GNt}Q+a&)Zix%e@9wHmtB#YW459er{gU50hl*5Gn#Q`}yD%_wX49ux14_EEx
zJyPUa-0C*T<2evMnZpx;5TA84U*TB%R1S+L6$cAsbZ8FGkpDSM%Hi1@hUG9ShtW9<
zXS3$;QVuUOS|@rwhXr30M+zK~!|pa}F8_i=UlhovG~%MGy;pJ=dwuj2H<jiTo3>5H
zND0T0bvfm-X)Np8TJ<WYwN2W$O~$iXSr;}<+vK^n>JK~j+v0$>$?G}1k;Akc-p^rj
z4pVaf$JASZTUC7T;}TMe1t#E2cQ=>2&+fg?*>UMU=boV~!j6yKq8N0CiUNv=0g8yI
zC>V$>7GWYL3W$O6duLtm_y2#MdDipJnqISJ_UuVKLiv<pC6m5QzvJ)_m2F`;@x!J1
z-G@~|3HX%5`L~xJ`)vNvQjnf<Qi1gGQvE~}6MeE&U(WeNDL#B4zpRN`TZ%1B^vS+;
zloA(Eg!0e&nNn;h#bN_X3_M$kjclO?+8cPT6q`!%Ln(e_kxTJHDc&o^`=xlX6q`%2
zy%cX!s-<|DnJLxN&Rdv&U@Kb|<taByaCL^5*JTjAR*Kif+ctJP0vM#?Y6~s~vHyIF
z^*g%2I(@rTFKWC~suws2-erpz*Gt!ODRz`%PbofQiAwQNDL$pX%`E2y7mWYoQhdS^
z0o=gGn3=@RQtTo}ZY|(i%x?CL59&pk&)MylVs9zFk!*ZfimwE4KAZt*zGllBUQ%m)
zai8$NW3MPzmwzi(u8V!oXcy#}C^xzNREqudVBk0dKbPVcHqTQ0!@iewSBl@+Ge4R?
zREl3q@tc&ZV*dHCC@=>Aw2p7A%lk(u{w&22;d6reuTp&3MDNw1S<(>yvQ7=uFi_J#
z6$4cbR5MWB(CbHBfvPAYm+jcqA8qJXO!He4Rm(ta1IHTwm8*_{V+6BwT*YGnDJ}}1
zMLyoZ2?owI00So)dZnPgfs+j_*pm!h*m?%IC`NFKfm02fZr}_9r_spDAf?UNh#N?j
z8X0=ci+O8kXqi`F>PBM&O$;<Q(8AEeq^5@ME}9wm?4@!pT@kaeEtx2<{V}vMv@&o{
z<Nws4jd0o;x;4>>Q|=uMbTlx`z;FYd40JZ&8wd<^G0@dOsg$&v(B4v_?gn}o=t&Or
znr1I?`ut#VR6{MFJ_bq*eH#olgd**0fQxrGG=yOwV}Li7n9Q>Q$I$D8mSlqhp?qAC
zk|*?vkBbM7Xl7_2%YfBN`Wt!?EoUG#P)4yBhz%s-L|3kJaSiLrSBv8&HK4bC;+f#I
zgT(;`28y>q28LAnAIyRbZAAYJJ5-pojxaFNz!l7rfl&tX1|~9-1`3A$<sWNcoPlzK
z+fks{uJ`3f8~V?S<K*WWV~l~iO%)9};|-ie<uP!cfwK*q!wfg<Sg{mEnRDF5aTE_N
z^1C*H8Yq`(a7JRXf%6SqY~T_@k18(^dXb?QK`s=^PeZ~r9bV}m*2{#_^`#d23hT=a
zRIGYjY2YdY(+$iZ$G|lPZZdGQfooY2ta?_o?EAf*D%9dX%vB@~o^NEpk&Wnji-B7W
z+-cx01GgENV&HZIcNqA*F?iIS(`dX#g9Vvt=+!Hp=BD8^+T8}Yj5Up#yfRO3_b_<A
zgsXD&!<#55z?lZ-8klEbmVwz+Z$qE`r?@yfR6*w(SYTig;~7|3*GS8jR|hPl46Bw<
zusm?bAK0Y^?lthMfx`ywGjP9wcMQBM)xFHXdIQfGc)-Ae29_IGVPFj_+Q3Q!4;gsa
zz$z&||I}Da7WNSXs|`GA==C^eyIE7k=g2G86M0d_<E(cB>!{x1;Ylg)TG3b*nb&AA
z$kWDuYnK%=WXv1b`5V~E?Dgogk)6Mxe|29nu*tyl23{1MVbNYNz|s*^6q9r_Tg@J=
zOD`MPVxUb+EwqX?xK|9kYUqWh*C;dt+YP)f)@_DfY~s;5(l-roo5Wk}+=l6`5fv*V
zZ;LmsM!jd?eFI+@_>w^k?2znz#)__4@}c<olq${pe}sN);E|Cfp9m({X<!$7hF;Zo
z8`#7Cs<B>w`M<@l&m}5`o!hheR|dW|@RNc4ES-UG*oREX|G<n1_)h4z6;$r5pzHTy
ztyq)#Q7~7*ewK`}yax%6F8Rg40m&qnkjSJtB!wmTjok%1+YB0K@P~mv`T5A;_>5kY
zI%422id3RvUHoHkO9^Ucbe4|Fph^ZuXHX-9su@(v=&Gc8v+Ap7{y$14tCgl^2DLJ}
zv9NyGQb_A$aEwHCtkAld|L*SKmF!$rJ0XJ;GkRpzD1*lv;iL>s&ft^`>Sa)$dE=Z?
zV|^b5!J5W6m8oZNdIlG_&<n3;FroAG1N03uXpqq=L9?o{{{Nzq)NP3~S<*rY|C*a*
z&@_XN8Fb2^Sq9BBXrIBkeEcP&yUKPM-EFqapp{r#3vH8u(L%en6)P_TC+^%(`()%D
zr0gtaXBH}hk_`H0&^3b#+2LojK6lIL?x?#^E)8%Uwr57GWv>i+3+R*i?~Ovf&cLNQ
zs%0s&k%7r{Gy3O?$x-Dj$r}@OGWuF7TddrHK#nW8Pg50S5N7ax1|MXQ%^;V-!VDH=
z5M>Z&aCHXPWRPT#W{}UIkU?1n{W2Jy!H5j{Gun+^2MHY@l$Aa(gWEsRx4R6^U`Pf-
z8KhxH{$dOhkZY=l2ed-d{*4%x&k2ppV3d?P`?_9BEzh8s!8w$01}cNm8H~$dyl4d<
zEn<){8NJPEYzE~`^@#K=aiR*Hox$`U^H*G~yH>vAd7k9w3Q|dTf><YJFi8O8nViA-
zf-ewyVI}_}YDgu%gf&%(FU#QaO3aCU#&GvR{mXNu#DA60%bTieGq^5;sTtgv!Sxy3
zkio4P+{RkV;3i7ASM^&mxLG{&!$f7^9VuK#U_5)DX)s0j^uyVY+Xdetlq**Ba90L*
zXD}y&xx(a}?L8SxW2sp$y{gZYym25jBcq2y^gl~DvxQc4{_`@J&#)t_S4>UR;gv+<
z%7YS2VsQpbGFY3zx(t?PaBl_=W$-YoCWHIM+sX`<WpGKW1`lNLAT#rjevWW?2CF_U
zpC)y&Lh6G1PT9aKl310&BNFz>3|33hYnZ(Z9u+1t$!Crq&tPR!r6({mctGwWtv;zC
z_xW=Qg+hKRgQqjtn!zg)WPJvkGI&0NXENB3!L!2T+q?9+F@xu*|9|H<Hq|>82*`XP
zgBLT{EWHHBrJs#0yd**1YpUl!US<W2E^HB3f>$$mErYkk!|NGr%ixU+wo5bQUQNcv
zi|*fK>PL!iNfq!vWp7i(MGa00(e<4S-mQq7y~GOL1W0#e@FClgg=;K)l)=aBmrU$6
z@d>*!Dz=HUOzg~H7x@|N&0u#1douWfTm9LI)h*!*BcHJy4cAxSd@kZ;&p-)(C7AbC
zakD+0zR6%;24|XpiElIbjvc9q+9tlw;D-!;XIGZNj~PCxhJzU#;!%Q;CHvWjWN;vZ
zpQ#mR>NdrA_+A)OTpcwc{WXIlP1WHHexnZ8)K~rUG(A6pJULGKCtcaSo2Y8yFUib5
z8T^|8pA!2!qaV_xZq%(`;6xc`297dyinLZU@#XG9brVOM$ZjmhwDKAzjJ4%8O+0Pr
zb$MbgHL`oJW8xSS^-R<^^~tznO`KrjM8S1U9A~08k7YDd#|wvmM{%i6Cz-nE95taK
z>B*-4l$>hfGy$iWsF=MxUHmjK(U6%rNu6PWzq;H{&SQ`D_7oeL;KRP$fXdh!n`mMp
zFcF$)YNDBmo+f%RMH4MdbTrY)L`xH`Otdx8&O~cdZ>MBG*2cu#>E)CXF}vti%@jYc
z?M?lW?I4tq6Z14~XA@mbbTiS#L`gF}y~%9ko2l+5dQeJx%GYer@0Cn$rmkzIdYkA&
zaWTWD{!EmZ`1qlGsfoT~eZ5)<nOy%RlO3sP!ZG2RuuRyDe@cEqGsVSg0?*VM#VTeU
z(fFpGz0uf2&P0C`158AwK4X}edbkpsdZ@grnc~Tm)I^zyuYoPi6z>f0XX=~7xt)8U
zi9wXJiQy&&n_#`S`m{JiB)?)=`A|yf(;^L9<p>iaO^jjzAIkGJ78aHT{IZ$i=sGXV
zg3xlIMH5N@J&!gqM)255&Nu<AwX;o}W8zX1mzg-%#CaypH*tZaK0)XtR^rn9M4=Qr
zTkB*~_h1B6k_$~-EZ#0M_11J6s_P{pCAzYSU2ftE6RS-;YT|z;u4Mh1m}lZD6IW9L
zChjnCjfrb3q+#MZ6W5!#No06~i5n&I=Vd(H<i0!&EBa<}W&At=daH>e&D3osrkL1s
zIM3SQJ4(#(RO)}-l6y={GjS(1lclRxLQyQ^v3C=soCuvRV1|jAY$MIJ3NeORre0g0
zV`8>MNDd3dw8)%qVu6VVOgv~}p@~JT%|gk&CKgM(7_p_egnD(L*tEH>m!*{CANgL*
z)qN)Jr|Q-$nf_sMnF&%FT9=zxLG^g0_^^o=&TFtzO8O90v}FS(M?<|@W#SPN6>rWC
zI<EoWoLyt$F%xf?*lyx+6Hl0Up21B#X=1I34JMv7u}*?8hV>?%V*gNSW$(vDoM)s<
zVKp7KCC`p!qlxE4jfwf7)uu|!g1=~Dvx(PD@DJ`K6E9Qj?-uzC$`&Ta2_F-$n%F9s
zRt9H=_3`%R>NTo*b4ARzTDGzGXoI(Q72Y)Q7Gq$iZQ^Yc??`#yH^C>%-(^KtDS1zD
z(<SAH=j!py2PSr~^-V4RP-^636CVjs%~i#ohfk<Z&GkrTmx<jbzF?=sDwAl*{7k?-
z&DG~7_@)mz_cvFgWaGqFCiqy%$GolXn38Wy>|-xvp`C?qO?=0m(?WfV*RD4B-o&5O
zE)zeP_>nR+vEKx*k@?NkkJtZf;-CQHUrZbjT(Q1<Nbs*h4_Er(Mwj2&B=5`rAzcb@
z-eZ44^A|fS3pFhKZQ>txgOWs5OD9Bgl%)rORm4hAO+fWZ*A2}Tm%M9QIL5-U7HU~~
z1-!OUf;s|ryj^66S=YjemhMH56H0Krg%d12;^mvFw4PMS=PRoxTR6qiLx|=UPPK5F
zg=QAsYpzbWaE7JF_Khrk`kt>k(loI2hKh!kK3Pw2ro}6FwV%e8p0jEyxQPY+7m&&6
z7gGLraFK=0t%apmU|U*fWudjDS9N&}R2yNkzUb86LI+BKNm%G;p_2v6f^DI*g)SCK
zEd9-*>1v^;;BG>@SMqxZ*wb9~641Mn-$wvPBYg#w3N<WbIM`^SzkoERFga!62p}gA
z;0pDG`V|xiEo3d^#2O2w|40BIb4e;WsQ|{=pJlXAuuyJcpoKveMp*i9da$LJBZpWR
zDqwFT472n=i{nzx^bV&O%S#S7SEM7wKZA@CkQd5l9E%o|g-a}4YGJg6F_xadnQURK
zg>e?nv2d=1@s{2~b9@W^r9MmW*+Ll``R7@n6Tw6a6PQogbwfHyRPpZ#4H@cu3l~_p
zkhL%+U$H5a;3BbJOl@hQ4<=t`;c^RCTDZ#6t@{c~&oT122l4+b{TD{lZhesl(s?B^
zwc=U}*IDRpqlb;_S!xSs+JKE4E!<?`Eemg3xY@!j7VfifKNa%n{H+$ITDa4~Gkc1+
zS(swsb_+dPs5{u2*5$(%iVu#^dY6T}EzGqr&%!+xrdgOxMXFjd-NFnDvn=qFF_SUx
zE}Ydu5s;EY!|oz}B0q<z{FNt|Z(#vTw5zb#!qqL*LJNy5@Rp?eTBsLWs0y&e!cyUr
zd9QdQpyy>49<cDNg^d;-w6NU5Itx!(SYctMg(um3h8G^P@UVq779O+kSqo)sE3UHe
z2>T)n2V1B|SuZUW!E;~cFI`?v{5bPGulxxLq(`5+qe`m(k*5=JtCngl<Nr5rv{Yp+
z)zcQ%Q$!XfwN!kzZv&N~P;y&KRc}b4-H-z5a~3vPc-6vd7M{28f`!c%Ub6IW_={5M
zoVDivKGlPL!pj!6SlG%kwp84@#tQvqMgA2F8(L~<Z)>S{%IODiSLa{1u#L+0YW@wO
z1lujVS&4ax$~zX`rB<+uU~O7>-@+~nyCuaBIOb=EFsQJ@!iN^VZmIZETlH3|T`T3b
zQXgCRgc<%NPxC4JqF?emB@}m>?V;${^9(P1$7ruDAJ$5JZs7~Ih*s+ER_aU2naa~j
z@eYKqE$p@M4ZR&H(rKTC=US;9t<)c_)VE}|QuSM_?=Adb;YSNUNq>0Q!hQ=sGjIRo
zf29udtI=8=vhdxm;sG}Q*6N_pEgzH<k8Q2U|Kx-6>s#w%-M_IZEz8fXQTWrs5%#?{
zPPFkC71hGgHfq@T#{%yksA^+%YxS?-qioHgsbXVhYkfPx^Q~1i8}GJO)ouK?v&d@`
zxSCnhMr|8)=$Uuo*?MJ@;G5R!7#qjhsB42SO>j@zaW=?2UMQ`^Y{;anuaj(?Ve^Hx
zd_5cWZJcc56dR{8!ZzxtHtJLxX&Xh{My#9_Ki$@C`HD8`&NixnjfOS|Xd2mgSU_VN
zO>DHY(cVT=8_jIAveDW`b6bDTXj<5MA@z#Q#g@Y1e=D;@ej8g~KEN!st@O!_ogHj+
zw9(l{7hC_BaLC=s)}JThm)a;!e-U>TCyq<I*?M%kyN&8;qnC}o4oV&Lw$aDNYc^h|
zG{~epZOpP!YQtcPHYV7}*f4Dju`$$!Wy7`+*@$g8He4INjlkA3rF^)A)U&~NwTzv`
z!);V(BWokalCI8Q{biAN?ydi}$V>GJ5{k}7e;WfNY#CE*sQNK%qXPG{E%~sVo6rW@
z7-VCxjSc@4Y2`=%__nIb=LK4s&@darZH%@tMq(IYW0Z}&;E_W4y(riyx1mI0++4>k
zb`(gF725B=<9HP8SX=LV8E@k(8{-5sd*qxg_#C0Matq(N5|7?AcqBj3#v~gzuoJd1
z*~a-cuAt;?aP!^;HZHPpG1X~F`GrE6$|W`~wQ;#r?)5v1+>v{kjgv;|Y>+Z<tn@2w
zTxH`L8`m;3wM)2T@M>Fs`&zVBq+wfi9s7S)N?S#3AKq5+<m}kKB{$i)*~V0AnvGj*
z+)57*=5M!gbz60JTXma_DK?(kS-h}j$%u7%f;+?mvqW!qQ6+55u=SyJa_+G)&Bk;}
za*ejq@BtK#mslOd+*3N+#vB`~Y&>FPu8ny%R@hi+W4?_Al&X#UY%H{~NCdUS*0)?P
zw)L2hU`bQ`^vqI;oVQGHtNHylmf3i~#)G!L-;zwe147EFFm|fTZM}T3Z;!sM{UM3)
z4te3?VZjwI!mPIOsEucBY-ANQ#Tpw=vYAsQ_7oly`Zxth-QJYvvod6^qbR6Ow%*<P
zw2k#Po?+Sd6!`E22W%XtacZ|zMr+*1Nd9v+Hrd!>W2=qlZM;C?G{uYj5U<X2iiU>z
zOv!9!z1w)%2K)AV+bTXU!tHP`w!|woE-b;TmEzs@ZIPRPw^5^P{AuHejqNtxwDGNt
z?`*tf<82!s+xSEZ_>PVDDHg%++IUX@)8Y&>=?)tovZ+pNSg3rJ<0D(&uu7*-ZS1tM
z$Hr$8WEcBS*#Nnln$Q$$_Y`iry3yx0zOeDNjlDL$tc-b53myC`Tkq9mm3<@pee4|C
z>i&=csjIwliuijQKiSxC<A=(yKeFCsp6zEgJ<7qxVR2%m9I$cF#-U1|izYU_UGl?+
zPJXlThwy)A-X=EWHa131!wJm4Z2Zl>*FggZ|JeAK-ME8e9317Kilg&c+d)+a)g07t
zP}2eRfzqh%;AlsWz?oIv>B<_U&x(xIa`aYeuKkh2S7wfNP}e~{2lX8s=iqn;CptLE
z(J!#m+wQjN1P6Syh`kNZc(S+Qv?`N0*}*9ePLm99On#~Z-mLXr+Xft*)5>1%ba7&n
zY3QJlgSHOZIXKe+95i>(!a-vPO~el?rKy8v4qoAZ)6OFM4ekw|TwQOuZ0VqtgEkI$
zPZX=0b<x_<&#8BkhvRwmC5zDBK?euj9rSR}Q6lW(psRpR4mvyf_kqP{SJutJ8SBdZ
zPs^*WE63aAgR7SGWHv^X^mfq4(NCQ8a`bTk0!GU=ULuiHq+&S8I2h|-oTEQ0ri0i)
z;=poXJ8&EvZmYkNo&(nb&#LoEpO@#A`wjvJ4PPjR4sxuTb}B2@=jN23&`yybF`jnn
ztad78S`J1!80Da!gZ>V<96X4bcX0K)#eoj^ycgp?`Jen%?Q}we9Sm{wjdOgqa;Sr0
z4u(6J-A=vOPCeRAjSx&gE6b91pd5^LP++w_n=h9le9%r69sJx*9o=4yVencyS{?`H
z-I&DV9h~K0nuF;M&USDPtH9B>8lLOmJZ6b1<Y0n>iNd_p!6XNh9bD+(BFbb>@q7mt
z5Xfziq`c^_;!;OmCrEs;qwk8mgtfC(-}HEygUcO#(c%@%n1d@F@LENBper*^dKD!s
zS47^lzj&>K8!6%a#p@hg&qVhZZ(!ZE(;Q;bn^;Y}esF*BX35*s+9k~PtqyK;FvY>`
z6-)<rI#^b#aEGH`Qf8L!a`a&1ZU^@WpFtY5SG*CCb3R?#s~HYvGFS9N|CFtR2PB?3
z4(2*o>|lvl=Q)_~V1WZ(%*Ys$_G%%Oq`g|?;P0>U1T;MDved!&_Ue8Xc}Y3Jy$<dZ
z4lysmAafZTh=2zrGs_*UaP)LBGt5sv>BA0IIauppouvDSgU2Y7+G@2}9~HVrC^OHT
zJnrBL2TxLT?bYH1<rEH?#7{YRT7=1Vz23ny4mLV?&cOx;lpBlxtfMc7tiTMiiG^KI
z{=5XCb>3%M;A<C@Z+7q!JB=*rW%06uEmWQWX9w8IM(yBZ7oWIz)xm32Cl@nZyzXF|
zgA-hw=;93r+a2toN>Gi*^?K96dk)?g{FczSg}x*7U22*<Me%`HKM~4MI~;sii9ceB
zf;k;Zr%wg%6uL|3ZlMd?>v^Hi*&-bL;owgPUpn}TxKQ!~`zTf5#NF2p_OhBpQK^UD
zJJ{#oTL<3>=gsz7MIRSRKr4^G{pjE)2m9Hw9Q@+opo2rC_vZP68_faX(@OIzn^hb9
z=79XeLV5r8?+(6hugH1o&*BkBU;0<YMO9aWzo<pR`G>h}ul{xL>{CU8qg-tz<_~o>
z7d2eebWz>a|J_Fmt@!({<?5T1>bN*YKy6o#`N=ufMP1fNos#2SoYp}d=i<9V#ifn)
z$}hM0@}?;|o#djPi;N4?MST}1yJ+X4y^B*^oa&;vixv#);&c~qb$`3`ui_c5KC;os
zMFUqK#cC*&{V?&FE;@8jyngD7ml`w{{|wSZKvSX3gkE{O{&+ExmM&Ter?te{R%jcc
z^uP#7JGkiR>gR($S)T9YqO*(cE_%3nn!StAt}Yf2Y{ZwWyNQ*6PCZ@pq8!Aj!nL;x
zzGqFRJ_6V!_7(r7Vl@P3J1BavT-YwgxESlgapAfc;bNo<&xP-z%tb#Jfs4>Z!mvk|
z@Vl0Ek#iBbc)Y0|9y8mwPHIRHyZY%v0zTxLif6tC%L(fKE(Xzwku1#*a4}E-am7;0
z5Lf@j40ZL<bprB-5et*ks^pAv^>jB)!A0KvZyADrM&&MwE|ja^b{WljS(cwDljm#>
z`3`EFi}5b5cX5M@vs|3*;xZSPyEw<ixh^KUnB?L-R}UdLHYQ~kJ;D8NusYer`7SPU
zaj}aFTs?TcP^=ud(kBPK9Q~3>a0!da61|!~wv8SPlX(R-vkk6vag_x89|a{Rzpi$1
zbKK}!@qCR?M#3Q1F=H!q{M_Bm>bTLx?Jn+caTEPZHQnOkHUV_Kl{x2a091x4`6(5R
zLhw{-uPWT_;!a`G^)AYANP+tw?h&VHLa7E9c2F~2%yRLfi_I=(yO=|fy1389To?0P
zETlYLJvR94qjJt+&Udjuth@@9O!g|A-dyZriOc=NB}>JL`$&oTe%AdimbrM=#YPto
zh|_WxD_lJ2>MoH>^IY>?>Ea<5>!@1X*6v~zWllvB>mw}qc?}+Qv6>BelkQtM<fF{j
zu%#P%T82Z)CtUpfWpS;GCtdv$%KaD|`7^3x`B0aOr(LWkzp;Ku@fnGe&5F-%Zg6$q
z#UAN7mY3@YE?$r<Z4%0j0UV?~*i=^p_iVi6;$;^fxY!{@*dmlCbGN#9h5f&a*Ic~i
z;%#Qq)g!uX?EIO-A^(j|x4U{P5f{_nlnhjC0C>m6yTY#+?Y~Ebtg8RQ-e)b#8v#>f
zA^Sr~>mwKc?kwEeL62k>Ut9jEi=F)Rc=*)AE*HC9O!jcThdnMnb5ZKS@bI~dFW5(U
zXz1ZfCgkFK7eCO$y8PEJ_DV4qc2KK3sBc`oK(o)qxAZ?o52wE)=V<*54Y&0C=;9|A
zCwMr~!+sY(yEx+FFBiYKIN;(B0^Unc`E<}T1HZDz*jhZ~V(MoFa&~l3hbgoU>Nlak
zyV&$gk=8#c?Qirf0sZ{kLH+HbmWSFN{$VkxavStK-cg=bIhraSs#fA^9;#R3qXpCu
zTGK<7j#@aUbyRgccpcR-9*DbiRL6R#>)|*LLpv&(;{}}EQC-zhk)GtCo`>%`s#82n
z?WpQ|c)p{0ucIP9*~5JTPGwXcU!_-PbW)_JS748?v@0$~H}Y_%hjt#?d-~J^Jhb%C
z%0pvMua-9P&{RM(4=n^V7fL6;le)aM_S4$aTm9R5e7jr`v=J*;SNUZmr-O%%5_4}4
zotUVHt{%FvuKSd9VM5Orx$l&iZL_<_N5=IDot~cFkJ>}%v`+d=eJ>9)p4LA5P#LZ+
zFA>^TC}*Va@1!ywOb>&ZH<731A@C4-de4vT!SUcys`M~SpN8-~^qHscrrY{?ku>We
z=b^uc0Uq8ORT6pVCm{Bact{18d3>;2(UsGx1ia>yfYyN&<}!^3Q2~xB^jcKTB(_&C
z87kQr<st83n5TCR(+u}8!ox_aG_Ue_JkQOs4o}v5DEBbl!&x4Rl%c1$xsId$cT%H0
zjPWp5I0rlFdpNlvme&K)i5sfxbXI43ILE_z9wyKaaIS}fTrNbPynLx?XGP9L50mIx
zy}&a9G<3Sa!-XE!dw9mfMIJ8pFwet$50`kjlu^yk-{avj50`tm)x&M96qd!q^&W2U
zaHWT<JY36ybXHe;;5Yrz8ii{F^zE!FtfbcoXF_LnqlcS3+~R>Zy|}XZ>Sn1F-um)s
zZ@uZ7@}J`2b`N)YdelToQjB+qA39AHaBXKjh`Nh%o0`8{=yAJ?(>zS4R(O~xrJLjF
z?w3#P%%Z++%Fh<c-Oj`;@?7ylnJn<I(8Ed(4|!PRVX=p09v<+p#KTfa>wXXSvf+4o
zqdqgk=L?w)0$y38@3!5ebJ&Bo0C`w0HNHap(@(_>HV=DP<>7IU4=XEf`+tP0&bvE2
zeH+qh3UFPXpOrNp9`p3KhE6oBnkPIwDM8kX&!^a4#unCj`d(sQT*hmZp7!*uN{nO!
zr6j5~rdRci9-i~?iicM{Y+}Rr@REm@J-pyyZUek1+Rirk`NraA4}YJ)SBVwr7WS@H
z3msSHw+g5z-HV;oYaU+r@V19{JZ$suhKFVb-el9*Uo=PSdsntIS1q-AyhVv^$#XvZ
zz0T@g5AS){;o(E}t^*2-Misb7@xF%-M3IQU?X0)Qclb5`k%y0|a@&er5u@@m!kz5=
zDLo(e`Pj`4!9%GJ!^dY-ewN+GDL%en8)v^tv3U5(!`B{u@o>PyUJu`R_};@09`;c<
zlH7N!$JPHmVR<KT<Aw&@`}8BLV`lkJ%pSoF<?KVoH^$HGF8ch}D#td)K@W#K9HEj_
zEBTeNJ(mB?!|wtPQ^MdIzUmJTe@c(EsQG{ACRjU<$zg=QC|*xrhQ{D^3>@X7ijQM`
z)b&x-M>QWcebn+%-N(^BYWR9nJ%vDZ<t}tm=6QY>)b@3L>i9Uu*BR!kqt^nApEp)r
z*IbwDI3FkZdME$!zP6s=>#hDL`uZFJSK>(Pi7T%qsqgDIOzHDfa(r~~(b320KF;vb
z%13Ko7qfwnGkw5EL$NjzO8&718vAHM&s|hYA5DE-<IR12_YQZFH4`fVi_pT?cj;H$
z$-|=oZG61&YLO%7W-i+LdWnH21=_JJx98jY=-NdQbdpp$`{*KNq~<g7u0DE6*}M7Z
z?xTl~o<6VXYd|MnAW2HI^M&%>KKl455uc2zudkJmXAp>4p&1{hk1;;R`miWr9|L_1
z^5OV!eWbo#4)c87hyov>WW#5rtk=g1vOaP?Vjl_XYgImCx#SmsW#LA8PW4ypq9-kr
zc>4M1@9Qti03UqOVCT6Fh`HN;u#X`=@;(aUI#fK5^fAoG@Jj#mIYMw}*^fHP*RPba
zZz=b6U#cWXQ9RIR#no7&eT)##<9v+waUF%@<18O%`?$o%r9RG~4){3V#|1vl^YyCw
zL?4p`Oc2_f&x{_Um&Kd%kwjnb=jYy9?wr5S$I8aI$k+RtIAXk*LVHz@8%Zzoak-DH
zd|b`^kLz`XkN^3&k_C~=xcCdhg&Xo|y+)*Wtq-1&=NbX8z^W}T@!jC#Mjz9BO!sk<
zkDGnm=3@%0uSvsOBv-dmyX5^)(yy8~xZTGcz8+`Z?PIEsJAK?m?Ukc*qz9U7T#--u
zxkr3%tywa|$4npdeJqfC&JsG;$7~;SSkX)Kmv;T{?(un4m<bIl{-+lDSma|d+mWwt
z@#2j7*2a2DmV<fTi^a5-QsLz!!u>v$`8Ynn2>~AP@t}_#R1Y7^eXQ`Y(Z_R?p^t}r
zJmKR>9}hF2udk$doE$!7z9IjJkJXafM}2*)<1ruEE^3WX7NlZaP0H$6>tmgd^*)~Q
z^=XKwe7x8KPg5FlK!BTYxG8#r6p)gCR>1$&!X_Wj``GT|O*TUY^zn+1SAA?2QNQHl
zW#*xI1M0vQA6qL8)8+pi$L-7*ow&E*H6O40*d`UtRNkNtNJVpx6RmIgc$<BTj}LtC
zIKw->{^q{x|M&9gdtzlZanXTO$3NCC;gu8|RDVPv`}o<%FH~~&T5N_szVoru$1WdV
zGGokYox*NW{?C2v;U|Fo(o}slT<gYq<nV<!ad^yD%y#j$k8ddC>Lq)943Ngsw=wn!
zAd@YN!|(5@epO0-^6>)|-p94AwITnti4C|}aX-5_x#j7AkAv*415^!gh;i~`#LfIZ
z4*U3x-4u8D`1<GKcOQQWApS$Z*<JLFxJTF?yQpuL>b*dJQ^_yV?`HnXimp~db5x)~
zShJ*>fEod62B;qBf0Lty5-jPW*cfXCI3~cc0cr>O)Nmc41S|r#Al41^21{1Zae>~E
zSiw9oz)1nz0A7H40qO^66QFH?lLIuG*swu>h5=3qba74%a9W_Hv9B>s4{%0++y8%$
z&o&BhW`L#vngsxJRkNf?pl3xI3#QDgw{Bpy(HutAJV1*8Ed#z`t#4SRX(dTa>#46`
zZ5{A6YRzxQ@&@P`pjUtn0Xhcg9%x~963?B91@PW8=BjIeZj!z4<>&`@_0uOK=@Fpf
zKd!fU?h~LS0IQEq4AnP4X#gYmZ!bzFfEj=>I1-f=z!p$(fQ5$z7^LE6Fh4*LU_^kC
z0m1;;0K)>^R4LwEfHXi^fJo{~ZvhRE2!4&Xn94@eegXOi7!drYPCP<8Fu>pdLjnv6
z^nGX_bWx-g@3amT4vXU~E$89-;ep<rcvdGp3py&$Ul0`_AD|HEFEWP&<$<2$EDAlj
zWdq{T0mcLven>0WSjh=1VqAdnQb)v8p>qP98{p^=HA0*hU_yX51H2VrVt`2jUJkG&
zz~lhu2bdM;f6@ztUO`HA3UE<?izx(dk_^BdjF&KGs!;8cihY}x3A65q5;~E2Wq_;1
zbw+@z16&he3e}0y2yk71@{YJgD*E~WHwCzvLSCM~fk|9bexp#P@?#gp-G<K&(%Uj`
zWhBe==EK_pKJ%^L9lj&L)Btw|xJzV3KQ!D_d3S(&0!#}qoi%IX!)@i<Bg9!UhOL+o
zCYULu_;Z(zd3Jy~0p<pn$I1=xWPter76f=Wz$!Mb0E+_LA7EL4#Q~O3!5D4(a!xQV
z4R9|NW2rt^!M&r*5;qLj>#FGbK!67WZsx&6*-y)9$>jl7NTMq#B>^qE>bYxf&Ln*#
z!0G^N*jT7$g_1`DJ)>1~Z;@i;qQm3j-}zZjk#Qp*{jUwMF2KeB&jsLK*{1?L6M*G<
zTCD4Z(p&GYYD0i$r4~5l&e*7#+>N{`zzb}Etd1Hb&j)-sTW?g}OqK4cUJ}YUi5Uaw
z)&Q@F8oW*wWwR3eW6$b^u6h=NhFRT4{pnTx4RP8ol>B}Z8onLiodBN&_&mV70p1I+
zBfy8^;e9rrh8;f$^kf%3U({7Ea(xuw;{dw?><;ir0A47;gBv>o%-mW0R4Dy$-I@M*
z(wvmzy*<?4J|$DSsxJb3$$o%MJHS@~z7DW2z_)>(UmY{LAwBOEF@7W3LKUj`TCt1^
zr64~9_#3De;>Q3#1=t_pXEv??e@Z@oVQsS84{#vRPeyV8!%rbI^J{>^0e+)y%ZrWt
zh;s(`cj{_Q#r-Y3VCP7HzXJTjZkh2*RQ%#|x{P7@Feq;XIx5t1s1oXj0yi{8Rk4!8
z={V-OdZ?Qc_ixt>Q7c5}5M4sl4pApW^AIgU924T$5T}MXEkxZA$Avg4M7>Zq(&L4m
z5bB-ARL&E{%F_pQsvqKHMkqUQP6>5Or!*)iZagMFJ;WIyH#?$nhz21VhB#BgHWHt@
zX|L7Z_<dQ^RdtmcNScUKQ}M>FyiB55s6PY*Eybx#h_)fG?yue|MC(w0V%P()?X(Ng
zK14_H!<7ZjG<FaPuvgSy0pT+(ervjh=oVsWh<h1Nh#ny>2ytPkHKb>V-XZ#g=oRXf
z3!aoI;pIOe`i3YEQ4CQU!U&Osy7T03ekO#&qOC8QAy)LPZiTQzK3c7(O=!O8s($UN
z+z?&}UxEZeL!onc(F!Mm1m}cCAz}gby6G5F=08Ng5dE3?ZfXRxB&8S@Vt9ywf(KQW
zYp{SJA%+SV+d%JeVkAAgseawmSc!0?L_R7+UI1MS0(x&Mst}_?oXgHU)ZOEl5N8pr
zFOCf{F68sLivNk@L%jA`abGJ<>2!98bHvZ8ZfbKkrJwo@_5b+!Atr`;*=Ul`txL-%
zhuGCk5%6b?2iPwPadC*LA?^%u2`e|m4Xnoymxa7uOkEw~nh+cB&0ikkicnvb@IRqf
zhPW!k+~xT@tExub^}~Fu`fEcyr*VCV>qHaC;pdpMVO$u!Da6eoZVNFb#4RkvKlxi(
zecjcf8_M|;J+!-;++A@};&u@iPk#{K5#skV^h^ckB<~6_EyVN?ceD6xEX(tEbypWZ
zpdU(D)?LjAF^jokDH^MpA%6QUPcVns3$Y-?!VvRVgzoCaABrD$SMvq``9qN$yGmgZ
zi~nl*;!yt{5|A#T+Egh_UYWly#Qh=OqzZ*t7UBWcPKc*NJQ!kmh(|)KrkaIV8RB7P
zZ(xDXUQkPE9t!n>HMiLiuL|{k8-hn!-Y*J|hj=2ynh<<F_OTFLN2B4!h9}u<>y)e$
zJzp!BK^Ty`bO_dmcqYX2Azol?-PMK=o1{rT%d&)cF2t73<#X=KpVmW>61VH2M<6eT
z*c{@e5HGVjsuuWurPo9Eu3JLBF{fUo{)9NZynJhjS15!YYE}<L`g(}RdZ=w7-k|BB
zi0kdrH(G3`Bu`T`-}X>%hj=H%Um^Yu@otFsLVOcqUx@cZd_e6Au{*?$5Fdv4G}N=T
zyxroXP~UO!afn0z>bsOb5o@iUiZ{mWWCz$&@siuHr+ROn?t=DEN*l|E_f(&S_&mfH
zj6^s~da9+5<iBEWd#bO6?iEVw)Sl{FYIumBL;S+Zs$TMa$X9jL{t!Q~^JkZ`A<wVL
zPnCeytCy5-@2L)iI7pqLvN55a>JViT^0gO5{Ht)dDTU_bUix{XKiK*7Qh&136YCK+
zZ~?S3+kDIWAGVqhM`ckZi<()~%A#skciPp35>ylL`uzOS0%{1Y_-574qD~gaWpR8K
z6MLy+vU)<GuHa*{c=sqp=8e7dW2v)VD(4Qa6SAOsoS4PUZxq?YNb6^DauyR3OiXY}
z7N=%WEkgAOr)6<^7TdCTBa1V#XpqJESzK1C8fMWbi}EarS)7>#vhcGAvS^&elo^E%
zS#->zNfu4BXqH9uEZSw!b$a3cUaCbFyL+kDS+vZeRTdk1skdGzp`mLVaiVM6EZ<O2
z1nrq<Z`HN8qP0^Nzf3Rm%%WEoQ|A{tXVHam3hpMfdzP>HsPVlOU3&<J{%`25dS`j<
zxhlz`PnLJHt7m$v77aU+(>IG!aUwPZWQ3YRtt{+HS0@X%5_<x^?XAKrvRMpeEo6~n
z(pmJ&qCYF5kBYNMvnb0VVcGjAax#6?us-UBK5AYcwYHBMKzWjusKHqb%wlgJH7JXt
zO4J#=zqv#WVMUavTT0Z@5;Z)_J04Y)zADeC=9Z6O>LqGq7NfGfv`~w#>5M{wI@4F<
z)A}lv#po=~&f=Ub#$+)zi?c+k<0z}XYS4m$>Z`^x!+llIwfOMnk}LWu*4OEE3+HBW
z9@EY8t~0g1uX?+$nwZ6;EGB1pS(f^@ulnTE@)o7aELFow)dg8xn8ig|T%5(MEM{kM
zNfwt<owB%v>XF6eSzJSX=vtgss;<c5$}FzR;(uA*z@wfjRisyEd3lSXImJ+iOI7Qp
z<=19$odmf)i<>AGL+9`Y)|#Pi%z~w(mCSR=-<-cSi`%GaY$h`b*Bk2gEbho+dKNQS
z?^)i}pzg}z?kw)42F@rvVf-hkdzgVNF9A^73`ITxX^o6(no%VgHB&rOuyeAQo5i9m
z7H2UyqvmCK9$7t*QS&K~j9MUcp-@^|{5@hx7E7~OmBk}j+)EwHVtE!Tve=kW_h<0{
zQ_QFjGHRKWqSb*BHBI#(mH)tq#-^fK$@Xrl38s38g*DZ~EW4@wldjI<(JWqJr5sbT
zCX2_Y3~Vwig{dAFx=!d5Sv)C#{IyKlR0K~6=V_tqD_ysU)3aH;B%F;|JeS3$O4k>&
zcs`34#M-5OfsyPq)j?Bj77p`3&dXVB5o;YwZ57bOQoZIDUX@I~mc{E?^tKc|_p{XY
zEZ$^A<Zw?8Z)Nc|8%qwub9jfHQWgz!Xq3ZyS-hXcKI(H8A4nwiW*5H5Vn-GqO8g&D
zfdzcbZY_&X1@98NQ)orTDl)l8ILzl~S$tlJ&$ATc{E{1)W*5H7;%fnWg_844mPbys
zhwrlZo=qu-syY0S#gAG1p2bHq3N$}uaj+8a&*Epnzf^J#WO*z_(c7U)&aVOvXYpGl
z=NU`=k;R{4JtFiUp?_uZw}AI021fF)SdYr-r1x8@S`Hm&73$=0jDYGwj}}@(Xw4jt
z0H|6y)D|l}H?!5Tg6ri_KZm-4kIUis98M5?lF(9HohV@$gl34XNKY20({ngQ06C}T
za9SmvEPl?&p@DF26YH5dAcvtjus>;>Lz5hg95OjH&7oNiJ#*YRt(psMmqYs;S_p2L
zL#rHG3#Ny*Ikc(74QiEC;0{bB$NkT$TMnHB5O>L;b0ywkD{{I@KmrEro<olu_vq>-
zPiwCndgst5#|^RCXWtx3n69H7M|&WrRH9-GW)4=48{X7_9PAu7RjOF1lY=Y3%OT7m
zn}eT2kkfqv{aos3N|VbW5^r}^a#jgQa!7?=CX_z=3Ft4By$VwtDCrK$VXy#lh6rF1
z?B70h)QB8L=5R$0|I6vm>!=*Y<}faYJR`}WJO_56qjTJ~rHVQ3Oj9%}hd~E=Gx!*a
z&Q+nyEkKH#@i|P&VR8;<<#2Wm=j3p14ilL9lM3(5EL`uZ1+F?ThqdB)Vh-C~MMGJg
zpTh+?T$a<HA({(wxHyMPa=56H!@iXKZ(Mb$aQ=^fxmel9GUh9DxG{&Da=0pot8=&}
zhbo@_vRt3TwK-fT*3&)J#Zx)q-ylV!hnsV_MM^Z4lCMm0ih$cH^S}(;p2Hm#$;~L7
z?WsF+Tpd;%uG}RBX+66zEr;oBSvh>1!;Bne=CCG*$8wmJ!)$6%4)?K*G%cT#!y*B5
zbC{RoI<K0a<DL`U#utcnq0nbNMW@B$lcAR6xV)&A3a#U-`{{>`B8OEuJRreWh)>4z
zpjej+rEHt}Y9;m1QxCD9e4&I<Jt96It&DlK0D36#6<yg`J)Xl;IXs=i6FDwd>F(>v
zobKP&=CDox@!7swpTjdbyq?3h95yhC95z$6B$bUhY|7zz!Ov0tzOLo@Lf84~g&baF
zRKB7i^W_}2<nZR~!mBxK70>klif~9TtKWxVUz4cH>-YJ@S8q_@IlRm6oi$kDldd_u
z&CXxE^$%2oK&MF4D^TxK8w2%xpmyZ&K@PcTg*yYaEKnaZhk>G1N1MZ^IsBf(A35yI
zVOI`c=I~XHGe~N;=*H)wEqikKOhAS5e39dPi=uj;66)6Ubq?R<@O=(@bND8Qee54X
zMe}V=k0k~QCio%8pI@~<ho7mjq53h0p9IVc75R^b>KE2>4hM4}ekW9i#Q$NTzvl35
zsQzV~q54fYln+Bu|NqS42=kNUV4EXSjsw*>Sv>&zn<8DD|0jokb2uu}Vy_Z$G^MIW
zTDG)qe7ysOaCC$k5w=HoGeXS>wIZAo;oJzdBh-mtMX)0r6XDnh?IN^~P&dMH5fGtq
zgySRZn^rg_!l@BXh;U+rlOin4Dw=u>xTsKp>qj`blFxDSX%SA3(4t<ShD>fofgQ*h
zk?vTY%&G>=NmlL4>RzQ$gfk;<FI4}E^{-ilCJ|ak=#o=SBQ#?qIqj`^1a>klgtipg
zO6V^$b?4JY{4+?~h<z#hdDTH&J4WclvMeh6ytvSrej=1cFd}q~&@ICHX@x!!dm+_5
zLeB`jBJ_yRa&dv2+jEMbH)XZBFmrl=l-3dn!cct$ke`uMzRD@)!Hn2csqN~r&3Pw+
z8(~z0d;~9oAEAGQ0TBWUq+!Q1B2^Y4jF63x6HY8N5=swDE{TvvIBRx+)+0In-_b2n
z{dBf99>{zyDx4LmArxt(6=1MXf;dt`BMgf$Ji@J!8Ywv>7!hGbqzGP#bZ!d~$|H=I
zP{jz}L~69uvWh^F(oEixA48pq)mWhnGOiMw6@jj23uQJane!q{i12uXCn8LY@Z$8s
zya-<|?l_5lBAg%Lf(X+iJr=!?0*^42%z1^2BU}>UCaP<MOR26Au8wd`gv%pb5#h=R
zlyJ*fnX#I2a-aXP$g%qNi9DHCiBtQU4asL(*G9OGDimR8tg7<IEyBgIBEB&Kt<!`_
zZ?{CaL-Iy^tAN{tPKj`PB|m#+IbB!8>dpvvMYvn|O!1@Xh38{+PXy9w5k86)!3-(U
zOrf(PFf%OR><Dv&Ggl}%4^J=5kFbDEBhs^@_eHor!lDT0t<5ivu!QAp*l}rudujR=
zh!4c7cA|)vQKKR}9AQ<22U(AuuzX*BMTF&Sp^5ta-=dwUm9*~5KO}TOqKF@1(@qr4
z3ZbhbJX*<F6XCH+d{3gDjIcJ+>p^d@--z&3giS19r1u6q9pPDVS}*h&q4c>S!fT0s
zIg4gvgy)1$4p&QGpsXUiDxA%g{<jEtDZ<N@KBv7}+*;}SN`#92ORrUOUXQR%FeBt5
z?3$sCxLND12yZj37@K0e6XD$md$q=5NX<U)MR-5L2h@#ad0KZw_)z$b<`h1P@G%=v
z?UJt|d=laFM0HBl?g*a>b7zEI5vrt${L@lJuqVQ2>@LWm>auO7iebMH4gn2+KS!tP
zYdW1-er2lmMfjF2Iz|}dJ4w`uasBMV_Yr=G@MDCZ*kQ&vEyn%`KSww!MwJ-9L^u%P
zNQA#49ApcfSNJu;;RuHWGu!0Q{1)MN;mk}Gt>pg^;ZNaEKWSxQ|CU7mjqpzda;9xA
zsi5>wHAb}<C&oA_M)ep+$EX!+KaZs9{5gdhv2LL?W4x3qGD&O4s1xIu7!{EWT39$%
za9yEf9w*@V7$;P6K1o$QiL<_Nen}PMWUfw*aZ0SKhM`DLk8wtfb}`z=Xb_`ejMg#Q
zFkp-`W6Y`5kQqRX#xa<&mNA-0Y|X?<PE*M$0ZsE5Erib?w6?1BLu;)v)iy@YGF6c-
z%2bCK9b@z$Q!?2pM&}q^1aF+91=ux4cd>Shk(Q}(Wm*(84BIP4?-->qj2L|+m68~J
zV=yxnIblh!D$|n8#4uynlw_HjQKlte#dxGl(J(4XU{{%PMJo<pV|g+B7z8wj%2YN+
zj=C{G)g7p!7;%gXV_Xy?VSZv1VwA^V*HIQ@K#YMg`o%cDpXx76g4X@ipcsQ=j1>M5
z=A@q*5#zCb?D{Y)#?XFhLO*q5KQ%nY{C<kATl%S;{nRM&pBKvb85L<U##u4Wj-g_V
zjxi?2SV?G{(1ZQdG5xhSn(;B33pV<zb7D-4F)7BmG0v-ukUl3+m-?#;Z<8ss7#B!9
zgXvTm4?SEQ<B}Nn$5<BQ(ioS;m=fdm7&rD;m&dq)AjTCj{ukp)VO}Hjsu)+t;D><T
z7WP-9*T%R`oUV_tRybtR+f6Y~3gEUF|Mpk6#Ms_n-71t}iTCzbq^AwgI&(*isWE27
zm>uKJ7<W-s2B?`a?iO$lby5I>L<1C^ri+zehUA1`tl&8@=EhhQV{wdmm3|fom@kwm
zGRQ)~%my*TE)hzwG{(Jx?-NRClSyw6#CV7Tq#OpQ2V=|}pq9s2A+2ns6qy;L=T+3b
z7>~zzBF4%AYITe?0v;7g4x@TZFafPkGOXnPnHcM0JS7pnDBh?oG*63CtryDpH^g{W
z{BIOW&PU?;`4}(6IGNMG30{n`ImWISyCt@lV!R$>Ta1^f)o+w<iLo_C%Yo{Z7_Y{7
zjWG{Yw7N?Qq%`?~>dJxYjTmpm`rEyoMHbGR0{9_*o1cIf@5Xp9=2sXW>#9-j$JinM
zKZr4XprT>eCkCnyDT;yWHQ{_BcxQ}HV|*qa{?FSUa$+2eaVW;;F}{fL6Z1AmeHr7o
zf$FOmU$Y6%ESxY%?Tzsb^<<Fxj-A*b<qlG$`zQ^z)<KHqe}mNbF@A_aryr@hgVY*f
z(%XKC^YcOK=NNwsQoqDFz@{`<(J-yj!Rpr-f5-TTT?Er*|1((qP6ZyUj?h0_`d~G2
zu=-Q@^#7MQ(RJZqwRN!im&H#|EdlXS3HA(DRfJZEw0Z(g7t|2W(L(<otZE9A{8|ZW
z3$7#dm;}cPsGH!#N<YU5I9})pLhBDvCkd!mVXb5`!c!BRmS9MNp$Se;a7KbCL7bpL
zf`*B%)-XY%1ZO7bm7sS5BxszVZGv`*{$4jp&^$p4!A*rW6WV@={vx*&+*)WWp}z3j
z2rd`gK0%iRT@!Rj&@n+Lahf(nbrx{>5Z&Y%)k8y6w*=i2^br2$A?nj1ir@W1LsU=U
z5cEk<BG?t$H$f(WnV?jxhS0i0b;f9{1h#N=K85Ls)fDUr_Jsxsh6^(*0?7%bT3$F*
zt8PN+)$B7U(VycqL0N)+3Hq~r@k1cYDMQr&0sK<a&;3KyU<vZvP+c@OlVJ(U6BL<B
zqK7LZgpN!wN<dy{LFflV6+QekRMi}&+7DAI!RSPfrp6>Vn|PQSn_yf5DvUc!jZg5(
ztOCth0{AC#PJ(k2oF_h)4pa1hgV0F{CMOtFhQVbxKfwhFE=h4|iVG85l;GC{hZ9^(
zW`b=A-biq1g3A&tOt2`y<q57xa1RTZ;C~6OOmItrTN7NB;OYd|C%7TOHHrSa=M2Dg
ziJtekmeyhVXMe{q^>>Yi<lHFy#`{Jb7^ZF#d^2TIzYl+kZ%Z&G!Ck_n&)X9mH(X6k
za0l}s(-EY1R=P5kyDRZyQKRXCXC#<OjUBEtFiSXdgw7UPk%76A&v^;v3v+?c!f<5|
zSIoxZ1WOV;oM4skmnOI`!Tl`naCL9OQF<fBOtUP(<HI?U#{&r-OfY-6db@s~<r1Vu
zO<l~DQt*cod@`p%vwgUFB*E$go5)Y_Xo58f)+KmKf;^VsNdb>1c!G^?--xe<tD{D!
z_sh!Hij@&^2Igt;vp&Hy0+{HA1kbYlj!@4fV7lAp7U*-M$dh4-yNysUu=7vwQi7Ky
zRKF35`PrQ42^miKOc<fIBzQI9?*q27Hb<yegtFGOG)Ab`na>egp5%~jPw-}fk6A7@
z<mq~u>8%8BCwM2py9stA_>g#ndN0BI32Kg1`$ni_ae?52gl}#tf)*oHcBJBh!beoj
zk?Q7=>eB=}6Q083m>-Krs$B`Tk5pfbRJ)n<NVO-yX976?MnldQ3BFA5Rf4Y*e3#(+
z1b>WFdlP(<;Dk|%b1cl~z69S&JY08cHA<;jg&z|9nBYKy6{FNo3HB%WIl(U?6Rt~g
zMJzi?2P}?K{~M*IjZy~_91_=Uqtut;^jm`8*)OH&k>Za8e<rA(;^Y)Z68x2*R*Kpw
z{!Z`@1HNBgJ=N1q|8n^?<X;Sqj8aFXI5Ds1nyQLZHKDEY%E&8DXC0klP+rv_J<z*m
zs;48!oRn7wXB6tBI3~rhDe9*9KCezladTd+%&X%B950ldH}dMl6ep#qm*VJx>RC{O
z3aVsA0R?qRic?dxOwmf>KP^Q=0jCQ+BgLeGYLMc#f|fw1&G|+t&P;(6jm1OrR4))W
zp|=CQo26(fR_2pTP7pB&af?(>77?^g(MCdbPW4o6+Z63nbV&7-UAq*|9_Y<fI!aoc
zzGE@(<FPRD&v?2BzpK!0k}J+TG0vVTdZkb)MyKeVqECt_MVz7}Mc))o3O7Y*3M181
z*=CANs@DWLaa}Qe&2?4IBwNh+jDpQP6ttDb6aQffKgD|m^?gAFDX;0)C1SvAid>3n
z<=S(Da+Rb=Qw&WpEJc~b-#^8G6#Y_kD_6028(*#lrWl;+mE3E})u0r!%hl>~HAFZ}
zw<0IQQ{+<=QjAD3GQ}(9I-k4C)hNj!vt6FzaJed`IIgG&=+v^Ph%-esCdCA5PKvQ9
z#xXxdH9p08DOMEKSt-s=aSl84qB=Llokc}JRpcyRG`+B;sD3D_Ns=YCsBk`&M5)Qt
z1f{wuHB_k!7?3ho>LP|!>SDnJ<Xo2G@)R$mcrnElDgKw@i4;$!xH836DcA`tOL29I
zYZx%aT`8_jab1cjDX2@=rzqc?C%7@i4Jno@#mta%6ZJO5E#l`^*0=z!JklrIK6?X#
z+od7gA#|!x_6*dSyHnhgVo{34DW*wDXR%x<rl*)e{hwW6!DmuQrWX#ED#~F_in$_|
zg+k{ET_AM6P}cZ!lCgJ{7TWhpElF`-su#+ave7AZuh43vwG$_n?@!TSwCX!rJ&@wT
zR4>*qPq8Y+BdP8cSEN{(;vv?~Xf=7XdN{?cqt%kpiga~~r$(#CQoVtJ<AFz0tdVjN
zlmB?CKbkb3j8+FntF_eRG3xmg>liA<(<#=o6^~JyB=|Gb<Ww(hY@lFe7X()mXf{eD
z&j~$ljN)86d$3_+6su`-%DDynkmAP_FQ?d&Vq1zgSfQiTR_bAjSJ|d!6ef>RucdgM
zsf<yF#;93i)Kg=0Pr|JN+f%%m;-eHFv+EnH-b(QSWj<EDP0y0zyKG7+g0YHv)nTkE
zj#ckdNyaL2*k$cV@gXHMRu9ZL!}CdsPg8u6;>#2}Q@tBxcZxlXXRO+lVlU%=q2x1`
zu8;bh0w1TUjMF<Vx{g!1ae6PoS1I-}t*%9yuLbO7l~r=M&EVS<--(s+oHb5;FPPw`
z6#FULGMHufndzqZH^ot9xMrL>km9!#zo$5u;!uh?<J7OL)^U18fL-_D%1)bY>JNGw
zr~XQ@d7S!_`5&i_2xXD~PEminqWOmvSE@mkGE^<Ysbx5=4Asg|y$r{ep>CO8U_H7F
zwFJ}<S~6bMEYoT*Y`mgtZDH0CdW_HugnwKa>WTGuq4aq|8BP>@QYGhh@mXK2Cks7A
z=<@OE^fH`LhBjqrTZRVzkE!bbcB=ULAiX?#Z$El{H=!mWc@Tl*0eO(yYXStM_byeC
zUPVPjK#GW>f`EWDQL2d8!G<8xdj}Cv@cZTd$C+>D&d%B0v%6<c%a(I*;%PhOQ^N(S
zxM@{4t>&hPqq++ahezK`YsOJ4j@t3GIoFA!o?BZtjy=6nKle&Y?MAOueYcR-+9;09
zI9mMIgFwKAJ#Lz>cdBOZROA0@o5az&cdDtIZ5Bs!7ufT0R}Sin!|!GTZkiQG%Q%8@
zgxo9<^xkQwL6VrZatlZFPCXk(n>b=|<iykRY8ywpI3n@1To(6EMdM&#%<bN(>^L^`
zPW{|F9lO##p1ywVK)Liub#&oIeNvs`ko%;yPLA_n3N(s%9AZ3u*(Al$zfWpfpY&}M
z=dQ%DqEBjfpS1Y&IE*;zh?tZ=XvSf&PZ5Pg*l{?dA&%{?tP^o0<LKhT$NHqY#?dW~
z8F9>vBNa#YIL60OqF<^<9M8ouFpfcSELhy7XB>Uv=o?3`IR5FAD%&^JI}T6Z6s!33
zb8-5+d|-Bfn{D4WmFk-s%*B5kqumn5(hQAbcpM|*7~3~BERI+Erq=gOecm^9s&8s!
z9HYp+SGuqjJ7LxHaf~6RJJ2|{hrirDnG$~jjVO*6;+Pc2bYk{PO?D}t635gyUZl$P
zOSSEnV%nu&iZhzVS-SuWhZgC=l38)grk2LBE{-{I%q279=?%g>H+_ZV#W6pQmpC+O
zUfkv7I1cqoz1}aip<gPrw9COIT^3S0aV(8vSsaVvcs-8Aal8@7seWnAWLHF9LbX|%
zzJeq^f&Z1i8OL&01pljg&@WZ2e`;kMtKxVoj@5CjiQ^sGi=E<Pn{D5AN#d%T@Vjxm
z7svZ<$yyhOg?#GvPY*h|W>;QSua9FZ$>^K<kjfUv#yB>Sll@byYTZBeQ5;+1_#eEP
zR`6fB)j!SHkKKlp!j3q0#&JH53ofa<;`rGGK8a&@9G}MVSsY))ahM$FpV|}0{y07?
z8r<1Gwbupqx#_R{QwQQW7{}*s_K=(2?Vl<+AVuWH15#hQ&A(;OZq<=EzKY{(D!hv@
zctGl#IGD~KkZ$t5i+n7OAL2Ob;;$c&`f5Omqx=}hPjOrwkRmc^C^RtjOB}y)ngdhE
z<2Vt=Ns4$$m)~fW15;fGrhex%<2W718FFS|iselIpg;$v*kt3t)Y&+W3{0JKdtjDL
zSYGj!E*Ck9%Lmeb$))Eq{o#Pr6*6jIdQ#WoxE{xiIBwDp#PP_L)U7z~#&M6o0&(1-
zTOO3&^-wn`+50ZS12_HC)go5$28z=BiwN1NRj+q>9LL{u>>~1r_{YV38pppb@Pumf
zdRj5qB$t?0;M{InWl*a5pcJ)&C3)SF{37zXKqq(f0xq1c9h538qKJrUA|Rruhzt=`
zMGV={hEFjUs4VjEIbG6sP^yForX}69l$(|oQN{(zx@kE#E$^nptRSM|e{dxi7(Xag
z#qDjupcMOD<EGU`)DTfqL@l>!*Pzr7gHmVRr?!aPgHsg-r;+dTV+gL7qob=QqP~a*
zA{zcz;t|ovg)`k$aMN=~s}R{MqOpi3BEIccrJ0E4BAU9jg@5hB+7=>u<>#MlA>;x+
zH}#7MxB#nKitr3h5g>Awh&FE9R&LtbO<5jxfoDaOdRUp+ZO79+M?^$L{Js&VHX>U@
zdl5Hh;?_)b5YbV@iD5W73^5ToL`xw%g-#+mi&*90EeCNCqKHR29_x@q$RhSD{8A7U
z5vqs>68@5)iO@xOB{Y_J<_}ZE=OPY?u;~0nyeeX$2uDOh#3&J?MI=RZ5z$*jA1Z)|
zZX$Y+;VmN-Cgx3v*t0LAJ1LBX=FZ8RbyM%(G4h;<o+2*qjx}8t?fRzDOT>Fu8hRdz
zeMR&WF;K)H5&cQS{P4EI!T=H9*YV0HLt|QayX^=JX3rvqi5M<o^ZMw4`re@;23H9Y
zVNX5pu}hgFL@b$^JyOIsm&4x`7VZ~HH+){i7!lJ%Ocya$#5i(Q#AFfUMV!2!IYGok
z5#7%RHg=D_AmYzJq}YQ@mhZct`R@SnMG;d(Or@o4iN@}TJ4*{v8G-4ckY{skVTOpA
zB4&%2BjSgd*({$Wf@$N!V%H9lxgzF?SRmqM5%b;hXC4G!qE5C55T|3kbSIp<z0~uH
zTlis?C)mpKnutXrJ`}M*#Oop!i+ESWS`lw>Y9dyMSSezuh-c4--xRT2M5SxNWg?DU
z3!c6e{8`E(<)v4J*zGEI(mU5`5pRolON8+-^P?M5hry{eBA$P(*o60@?}*6zRgN#W
zQ2u<NMbFrKBHkCVjx#C~ns}|m2lNc{vaObp!8gMPJIB^jlh;P)wT#@D8Qv)JRtWn<
zhHFMXq98=<67h+MEh4sx*e+s+h>u17!<}av^`u~kGo?Oo%7nWQPQ|wdchb;0hWM~>
zw}^rtL?y+uN5rS>lWJT~*i*wdqI#M|dtLP)+M|-8{Vop=h&V{otM6MJ^6VX6idA2T
zI4t6C5-j3N5l2Lv5ph<;S0cU^@so(3sSor*^@Q)JPBd5%x%T_-H}dWrBG&q@#1A5l
zinv-(Ad3ddS;s{DNL$dem>qgqBzu1m@hi=?n(q{)`KZ`&5x>#U=;B%g2JXu^Nn;eT
zIvN>yI(+Yt|K6r(1taIH_0c~>oOWAH7@Q)JY<^C}c@g)iV<IkyxG3Vfh#Mj<(Huws
zS$aQ{>es1z?9-d!D>S$B;V<)quF-gvoW#>i3gV`STU6$C#qNr@ErJSpM?}4qF^c;@
zi@^5V!DtQPp35=nQsaic^(_JqD2w{SLlJ+8U^c6HfXI(TJQmTRs!%dk>b1Jw^^Lqw
zL_DP~NvJI0U-CynhJ<1ga!Y7%B9Ko)ehJS=$m3=keBodHW;Cw^rW*&u3P>m@@rDjV
z$_sO9dLFfl6p~PwU2TYVcoIzh5iV8JQ`D^`LgZnvxP%fC%19_Hp`?UT66)?ORa(N&
zGsD-H<mo;uT(_2w9J_v`OgRbVB~*}5QNorNN)>74$!Q;1u~vDrV`R|}9ZS{qaV}J?
zDiR=}x`e6{K5rijmI+mpz?7ZTkoad+s4JnKl=d^VBqZJ`R!2g+aHO`xzcPuee4M$p
zbtJXgU!PNxkSRfsu<_j}rQc9OBMEa0rmbms0bzP9=8;gSfiTpJja(5Uu=Cqc6A4Wv
zye#1r3C$!lcSji|p@jq=$C8kg;Fl1P&|X3Z2`x#Ogw_(m5>EZgHz-SlBxFfwCE-D>
z(50H8qg6w>x(mPe5T2FLhIC4ZNH~7Tf2UhcTM3ogMd;af&k9G${Ai@w`e?R<Kfmz5
zSyND(di8QbM+q_da0$AE90{EyND^cToh8I2%vj<PDa881>ARWqme=oP`VRQ3Rrk=-
zDiXG{6A6T0Zs8?DbVtCDU`ntg*pz08(8eCZXBC8vH-h!c3U?Nk?O9iFBs^Uk`=ec?
zi-fKc21*ztp__!1gq{+5N$4(Np5T2>0*9+nCDg;s9&hF)ODDaMw>Qxa`TI)z`bQe*
zLl!*=p1G9W{YkLDgaHyJloiI*^LD8su;kaPp~2K52}30eqqcMmJ-!&~Q!4abZ*gq{
z?{EntsiL()ghxnNkUx}vW{mK`vEk7Yo|iC2!u)E&BnguxjFm7>!g#l2f`o|_bWIOy
ziQlKb@Pb>;nR1#hO1wVCED5tEOqDQA!gR7x!pUxd^-a9z#)Kbq3s7n|ntJ!Oi_DZT
zI)5m)&pU@|!%if;#Q942rkWrf^t1C)Wrg3m2@52UDn9QaH0o}UG`}igp@iKMK9%sA
zghdk8Nmwu8=(_0Z5|&ALQ^I1ZWyte}ge4M|x>dVs3EwvL)^Cs&)^Z6eB&?C}j)avG
zR#819ye;7^7EaGrZ)Sd=MxKlbZ@ZY8cYA;oQe-Cw#@?ll)%3h4;e8iaE8&YC0!wyO
z6F!hoWlLcC#^_Iiw@P>6LvsF3=pzZ6C2VlvjS@DwK(UXa#~XM%56|90vOo84qasPX
zH^;{kezg58Y0_O_4;MZT?2xca!t&wSZAN78l+dJv(D>cxClZRk?AdDNJQ$Y!nS?zO
zey3?j*ehY5gdaFl3Hv1+knoj+ugN;vIO&vdSi&I*A1+bo-<(`hyKR9NYI(-w34JNy
z2nj1M2$h7ghy8rYRT93TVYcvgXyN^iZ0sR?OPlR3(Bi&#4K`RM^z!x0V<eciMi0=~
z`;!D}-SgwZzf#jA{6c4S*#B7#;h*ZlXN|o>$_dA}1b&ln!bP4^NjMgXoTQRRB4>tW
z{~_VDgv%1HNH`;*+>GpV63)|uHT0g9Ks7koN4Oy2TqS`7UzAY4u)w)rBKM|+$q=W4
za8<%J3AZKOk#JqY4NkVIaEnYRD-gIzXKQ3pIsdHZrIs?iE8!j|g3zCC)qT?ZUTjQ@
z7;EV<#%>7^`JseI5-!QOEaS0+ziF*92FdtG!V@|r86g=@>HO(SWmK1uOGa)P#buO`
z@r;b62Lc6T6qJ!iMqW3YPey(hnDt5Y;{L$lNnYcwzmSZ=G75ZGqL_?7e-9OrQB+2T
zj82t>;pf8z+W9ucybZn#bzS0#|CQNiLUu_RrDRl=QAI{+8D(TtkWo>_A9aPYGRny)
zFXP<BP_Nz57j{Ma*9_fk6*-<2iM|xBbjQE0;Ioxv)EtyU;NZ0I3yu6$WmJ=~kn8Fq
zp)vmkTb$7^9t_lwQBOvF8H8)fs3oJe%n&cHP*bQQqpplrH~drf1^NvQuDtGVAfus-
zrZSqzXe1+3hDU~1#;B}FlZkl+8Nclc7T*;;)+(~APN=cWa0|v&h6ra(icO1!_7})$
zE~AAEpA5f@_d0}%+$l|hpD!YG><|jbXeskQuOsohp$Bz^;oGBZn?(X-h%zJ@_lkvD
z%V;B`t&FgneO6|eUnuxT_|krV%^IF|GCIiUC?g^x%6SbCvt^W=<7rQ7Z~4c-LmXyf
zGIGds(kA1?U4PYCp6f*gVNW0~W79m(iAu)GKEe%;_uZAvWf_W$t}?pGP-SQ`EE%?p
zVub}=#_vl!h6`6-QmoZnk4a)ihc9*VIx-S6lH}FP#qP}VP!_}|KfB2IYJcET-{2!L
zmXgt3Mjsh{W%Q8ooQz&Fddqk)B-oQ9z7*cuKlsx9%;^3=hlzRFL+^n>_CUCwjQ%nP
z$oxmD;KOw#9!(E#d9@fZ|61Z1EMtg__hoz_W2lT_G8V{qS;lY~BV<gL@uG~86qd}$
z7L0fKKU&7~GR9DjmqLq5h3<zU6`uyj%8U^WEgzJ_?5&*G1Q`=$ydYyjk<ix{Lz842
z{W$vO!%U`MEs9wgp(!$^%9tr*78}a=Inzt8I77yC7cL%)JpMSqk}36s*)rzHcuB^W
z?-ZLWW1fupY`EXwklT}O>801vo54ul)&u(p&+PM0SRQ>v#;Y=x(2gjqy@7=?7Rh+s
zg<s<=V%`<C1g>?tk~w}qxLC$Vb3JcRQoo7>mdSWi#u^##$XG68g^blQuAK_4Bzu>5
zR>^pa<`53h+&-=>EUPc%&W=$`%)TvS-QX1AcWL9<vG-(raz4D)74-6cK{lbm&b#4X
zCu6;gFJv5+@u7^js|nj>?2xfR#zra<iIMTKjBPSD6R0n2k+Ic9qg$g-8@nmm|7P&$
z_28kwDSEbcm14akk)1Mj$=E~Ta!}d=XL=+=L4QhNU1=C79QsU#G1o)dPKmMc1A_Zx
z?3eMmj6*UG$T&!e&-0v_;qlJ*)L-f;Svf?Vzw}R#v*yEAU&=Tl<2db<swm@Yic-cg
z8Q;kGR>pTSzL&AHzQIAuwG6k}mGJ|8U@*cy|IYEUw?DV}a~%l$NdG{|%DkEN_Ji<?
z%Nch5tBff_g9M7@c$uD%aZ<)vIw)F-j8igB%Q!>dMSaU7ZB7bf9`V0aVg*YJL%Rx0
z-<gzmQ@+r785d-{yESmVkZ_T{VveW6`0UC*g_w?>?YSc3DmkFQRB%nkb=tUs`U-By
zxJfb;6jvDIhubp#rHfW@N5)+lf5~`AcR^>)Jue-v%<pFSJ}n`f9-PW?ga`Df^@NV~
zeT_`vk&E*;Q~nCL@VzEJyM~VqpRmIrsi$-=^?hygdfS@<3v(-YMnPc(MHJ*wkXJ!L
z1#267^Re*n)&<-&znhkx5@rdXLP=qQ8Y!fp=$7z6B_h93Oic<!6$H+d$xyh~4UCl{
zOEP^W6qHm@K|w|Kc{5x}!KAw0G73s77+)YnwVZa_Usgdm1+`WvtSYade_ijBTHfk^
z1uH42tf0Dr8cKS~RTRF5)wvpnXzHt~@SZ3@0IaH(o|jQrsHxzwDb!XFtmCVtpiVEL
zenKdb5b7ul9!t-+;_Phoc#y~q6f{)OT45j=8Y#$B;8WmNASm!CXsV!@g12r5y$XNS
zB8?S%d_2&sZKMf_DI4n3De}MUA0I`VD`-KsTnJxk8!4eh^8OPHC}^qRT_w<pWGDzJ
z_-0>5VOz*jFz$?R?-GxEFgAnx%pob_v_Io}RzVvDofLFd&{jb^1??4dP%v?Gv511G
zf@}rnY$0CVm#eX_OTW?!Yx?@zLPyfCMRF8edffWL&CHm>PdIv0ExgReZ)L_6hze8%
zKPx3A1u{>5IQpgHocP~{(6_qpu_K)886$Hvm$4Z&eLA_ZOCf@#z*g{*f&~g31qq5n
z!2ktGg?skEa|$+id|ecDRnW~X>8{{Z=SWIHvFu3Svp(WX=@jXqfayXt(o;b%1%C;?
z-U|9s=%&zzg1eVFsZ!{EH{q-!^m7aM)%OilFo?5O@PdND3Wg{crC_vzp$dj67@=UK
zE0JGT`-gMHzl%LkBl*gP$n(tG;mZF62|TZ045vxGQgGpwGGi&1KBYRg@KKH#En^cX
zm%<XIdG~x+HL^<86ecN{Ou1M0%~S9qhpXkAqF^c~TgSI<Os?ibQqvTWUDL@5Q)pSz
zn8CT%^L=FtGZiqM<)*XUbdH<OO;ebkRr3{mdBES~MkY6LFDr~K#7c#`d%UXPm=btH
z!4d@v6}(0P?ej09<`2()ol>qOjH)0krm-I`v$&C$8+N&luv7tm8kQ?qrr=ElJnULs
zE5ywR_gOXHimqT+l|tVS6yH*?TESK-s)Dx_tWnUXjPQ|ychahejS4o=oE5yMU|TA*
z#}vjk%BB|46~E8ID-AzTu+9YtuXlkDIobb8$c+I_eJ#oez3ch5ZY#A}L7C0bEhMH)
z9x4)9v`xWw1)nI`tzd_OowT4@1$Ma%r$rbQ1&ZK*g7}m=qoB6n+pA!Yf?44R&Gr{d
zm{ZF~_;rtOp8}3DEFM0n;B(rAhRzxeDfoiiQ?XFRVe(dC6eSv}I6}57c%tB`g0E?4
z<e`G|3ce+63Vu^?Lc#Y6en=Yvtd9dn)BJ~1T=+@BkHl{s8FeSfY`JhGdMCK<tav()
z@QZ?9Il-NQ;~cb0)@ws!o!dsXZw{PP@H@x7l6i)%a**i1m3d0RA9Uaiyx;HlzxKKR
zw1R_y2!X`P=vm6k<K3F+y`bQtf`^>4<-erhGQGNj+X}8IxJqxY;3oY)EkXg8_qDUa
zPpb-cy9l2Ow=xOW9g)3pdtgd^;f{j4#8L2o9bU}5r{L_?=zUUBBE)?(@wuC058uoU
z|3z+86;h!XHxZBAaUWBSX%`n-|D&W27Pt>3F<Yi)|Eus{&rn6hyk*hcDxOhMN=0cE
zc~s<8QA9;i75P-;S5a8S%^slwDw6fQ1yvMMabZg=V@+&-T`woQc6NxraUTRC{&ix9
zabcEcs3@kQxQY@gN~+jVM<_cke5Q;rsHvC0?PlJ;YkJD4D6689ip7_+%c=0x@>Eb!
z+3)?Rj8I<Xr;H=X#@@osy%kk_`-VsNdWlw<-4+NDsH&ox3aDs4A-krES}Ll$aIPbv
z8ZNN7pj2B$9ToLd)K|g7tGX(GOe0GNh+nOY2G%Q_@-!nSXGn@bBNdq{92E&QZ3}{m
zmMVfINrhKMV--zQbX*o~p`xjZW*oP)&|JmSf}u{kW6Qdi*tt-tQ%cC_CiqnNUCe-r
zUhH{mpv%j#InN0p6<I7-5mWKi^5(5nv{BJkMQasd6;jR6vnoCsAabeDCJ-S)I~61T
zEf!UgP5K9k5fyjdj1rI!#HuWdwpY<X#kkv<<ox6zDXL!%*`-2Np{eMsBCbMK({4d@
zQ;DKn8Qp#&@Y$Lu=`pt{oTH+GfYU8US7E5IRM;xs7?NVEHPu3<n%3kkLsG>5r?|kU
z*S=U%MHdxgR0bzwQ$3-piry;vsOY95rJ}ov9`0Ovs_4HW`kagN=(N7EkkGo3w--fl
z!2g}glfEkYsTizc2r*Tx=~il>ia{y{(7KC+J{T8f`kcr6CMTY^_2^mILsbk@F;c}S
zviDZza2kFUVFWuYBrIMX9UX|!$_@^TO|20ct>Sqq+kQXid(7iyI!?uS71LGBP%%Np
zL=}@&yr|*@DpD1J8?H$zjuuM0K|Xi#7*kZ_w2MtuF^$}~ka=-PYOU9Mb3_iwcseAd
ztY|)y#-d`ridiaVtC-^|%v@Ks_O|c_ud7_QP|aRau|UPkDqe9BN)JtK_joghrub#>
z(w9RNS@8q0*HkQ0aaqL`6|d6@RP0vqDaWPMRIFt~6-!ktQ?W|LTNKm7%r|MIB|<Ay
zELV}illFok9wW14CFNd8Ah24+q2_@#D&A4?wu*nc=kR3v;GEdW+1c-^c<pNbJd4VT
z9V2^NM&4KP0cAwRQ?ZVM%knJjB5YK#Ud4whHn=4_zE)WN$laB&HdQXfP5ovSTRBRO
zcMF@x(#zv-HU~adu}#HxGGE0`8sOaU`L;1@a`w@Q*?9*Acey1j{DgkvhM&M^D)y*2
zrs78xdsXbCS63N158lG;S8;&qr{dS0=`(--f?V@DL_X(;?76hyDH!^~1@331uT+lE
zps3zip6^wBt>PQ{3eM<;6mA(=)h5!lYmB!iyfOJsO<w@<-scAu?@q`|{G%!!R}%<)
zkw^MT#R(#)_*um-99PA06~EE%eHUVFuzMEMtp$Y-@<_j%vENmkBDLLP=T-cn;xzq6
z0pYAG<uh~_=L6pt46%gQOy}rBx@VnP8RD7q1r--L#DmOBDtHk6M+>=+)j3~I?5c`u
z^d}msYq+lB1|6@4d>U@5xJB`)ctX{p`Kx%K;xBjNcU9b1@u!M=Du&hy@uV?(Xo^>3
z=MVU~0=%f_biD0<$l0l&GrU<rctqqp-sd`bKTu<T(~VaU$p02v&Ql_2$gSaD70fPf
zATWJKLmmxF>Iq~%H*swnr_XO&jt%G6P(VXT4W%>`)KEx6Q4JXy3Tu36J;JAm3%q*J
zPZ?G37%8Tug;iWb2@N%~Jm;#VuhLrX%h>Wk=K|M*r8Sh%P*FoA4P`Zy(@<VR1@=EK
z*QX79=Q^gZkSKIsZFtly9+gzq(r&qmhN>E}E`%?(j__o@np-%rSB#Qnwgv~%5Y!OT
zP)p<c5#XhpPeUCIgK7&6G_ICWS3^Aw^)>KVkEeXoBau)!fwhe^WNKsrey9}UqDUZ4
zLf{(7qk&nkn>KdSCT`l)O<C1ULvt7IJ~YKFceOMJPYuDZA)uk9hR=(I#tlu8_!Ijw
zvNW{P&_P3^yscYn2y2LFh-!FNLmLf8T9$36;bh4&ZHX{7#tXz<_ll7Zy!4s6IhyTG
z_B|(OM8Qyd4QE^U_)tvjs-uROhHhPQc&U`5rM<-7p5eF#Q3G^T=l!n+S;H0$TQw*e
zR1Nbq%-8s02z0VS!%();U~1^2p|1u@gRLQ@p}Pi0LqbCr4P9B%!kg4^dyB#YkQP0J
zsW~AoIl8e{@CMdLOMVy|+rZmH!*d#XY3QwC@`h+n4UftR_qPO2Zj4@@p3T+lq9$Ih
z0j7<}?nl09*duxeYZ#zmAZK0EGe}FH*>Z`(8wW0C3Kb6V@SIx`q8+Im8m3{4hOruk
zYZ#$nq=r!%p64ts7a#4C!Si|H!>CpzeX%l?=5Rf8oQCllrf8U|VS<K<q)Nk!8n_gB
zLBk{s>&kM^n8R$lvI1e=N_28Bvv|WYO~Z5zvoy@6+Sl~V&@iK!cP4pNUZ^%U%-b$z
zxr~{kftP@DHM~~KGqJAlLmh!tTx-3gVWoyu8Ww1HS;H$DUZrJeSgK(mku@yV@P>w8
z*F+a-XxqU1I<*eMg6znK=3ZJ{&h`M=>w6G9=JPJ2aZ!`MF2i+TySu^V8dhld;!5T_
z?wRnc@nOPmX;`gcla@Zre_O*E+E?4i1`Y3Mcvr*w8a~jlR^y8^vG>^9UO%rV=KH){
z3XXa$vQEQjpLe~64=K2=S&u^DXUhwvcLZjZPhXTg*F)H-A@7DLJN(G)|Hwb3H@g7O
zw?EdfO~X+Q$LI~3d$()Yr(wT_9d34~hF#Q|X5LRUe5&Cy4ZGbeuPRu0uAHz(!(I*d
zEkE1-(p}(oiSPjp2Wb>FJ>SuSXvpNShOaqg4Tm*wefXt@MHec+za#MClOP3m#FgWd
z8QHY!LruKjX!ur3FW5*k^?{d|b5=HIZ{NFp{y?qU8hEds_eTvsY4}USLk&M`_(j8I
z4Ob`;4aYT{()cnI=+J(nRciR1mRnUgLG{}d<sIDbpZiCQ57(~{s^syKjMEy<X*f^4
zqHPkG>|N74#(NN+k6qAkk)~%0mpIKvUY?RsXIRdQ47R<h;hKiK8t&2mYq+7|7WqT}
zPqlF`wr;kJ&;%%jvn{;5(BVDN9Wv(&|I0f9_ci=U^Zdg9fO=I%;9U=!kfoF$TRqb7
zm|j{(hK|2A{G%bijsiO0$H7y&eI3u}>HEZgU1yk!I5j<H(GVFpt9LAqj=VbZ>7XWa
z5zg|@wggzd{%R&u{!$dwk<;8;Sck8fw~&snD+#>)DWa!!uTT%+m#u+fI*RM4sH2jO
z5;{uiD5ImSj#4_f>o2XRg}c0*z=rR1O9yY1)6?#yyp9Sw;~ry!b}DDPWbwj_`tWBk
zQkgyL;EuSOj;cCNj0?ZKyA=KQYh}}xNE_izN(~(~b<ET;OGhmowRIReOdWM})a7tG
z+UlsMqrQ$7BwI%V9SwCf*3m>qBORGKJUYBOc$)Y2&ZwZ{_>3@NJj!hGIC%L^*eN9}
z_&2jrGN-AF^WyQm&2%)^@n!MQ^}(^FC4_~y!+sr~bQMB6vUCJ=wA2yQk-Lk)r(IV;
zt1T4&C$p7~)@~2ay2u<N=W#Hs<MPbxcHe}U<@sSd9T6R!b*$VMXjEK?>S(W{gO2%T
zPPUE*@z@J%V;yzGbadi$`Ur1j2z8zla$MMw(`UcD3;3e95Z58n|Lc%-s5&$%Ks(>f
z*`5M7{ED7F`H#iCBS*z_J^jPS<I(yD1GoJ#ONXtaw~jtK932TAtGf!%Q5ke};d3Y0
zL&wLBnsuefbadDGB15E`j$d+OtL_JRpWga$Cf8jjKZp{Oa8I{+FY3cTnMW^&TICM)
z)zMGKSRLbZ^w%*!#|RxGbqv%oNXJke!*mSRF+|6u8lmkoVta4+>-7&V8k%DEz@%*c
zm=5Q}J9*0n0!+UcS!$Gy(K?>j(d<ZQ%Y^JPlyB|ylK!hL77x#Pgg#!!1Raxgyr|=L
zzwksIlU(2hH?{5uzr8N<ril~z=u&8kj;T7P={WQ#$Z2lqWKP#HLr<?jyoH|qM~yLk
z=4o)YjyXEM&~aGDTpjate4t|;Wu)UJ9jkOO*kFN<mvy|MV~LJebiAr#k&f4Otd%1R
zX%v-1uj%P)6lU*@kMVwlC(=9_rgRqT2(5~q`%PM^V;PNTeBKp0-qbOsTxhvV2?1&&
zb#heh&`L7um00z)O25mYx5#ZBZ|hjYQHZJI9UbK1yE@3moKxw;=O#%{uG{|ktD>oG
zvG-|l<Fomkttzb7@u7}A#MH4t$3`7Hb?nlyNykT=4uwv=)xmM=bQ89?Vx`)1Tq^B%
zHHB>)NXHHx|Kt(sbqZJPBD`8Py(unvRs4iKY$>%{$EWl&;mC^8!e=_Tq3}M*BpU64
zeeTo2i@(q5C_awv*Kt6{?7xFjec_-EUfl5dh5|aI<9Z$8=WWrS&8#nV9MSO`y#aYh
z7eqar?fF&5H#)x6aZJaLdir?zJ00Isy><M2*nc7z;YB2`BWDLANA>j834x#JA#eFB
z%?<yoW7IqkFTYs$3;n~F>7(i6Zny0Dg`VM)I)10Z5bgKSDII_4xT52#j?+5M=(wQc
zqK>mV&gnR>qn(*W;+1LHyeRwy=}SPSm*{HViGKcN=rX<8;GEVKg$nb-OnHNOjZ@Qc
z!)-V)Cv;N>+j6qEILgP-`_sbtre!zEirmq0SI0eiQ5}Ejct{`a((}Mg&si~E9+A8;
zIo{wb53QzU)zGiwv;U@0_*i(tN5@ktl8Lb<{?(Doz()o)8^~?o83VEb#Xuedc@5Mz
z(7?c#%>wxh6f;oVKz;)S3>0(=3md$fMj-=RhNiL)g*Fci7G+5*5Aib$)My|OU;xjF
zp{WuEN*btapo)P~21*+!XP~?R?(Dd}En}dpkv6V}5Pp-h`eu157^rBVl7Yg-(*ZeM
zZv`0u#;~!UIz*byiBvUE%|I;!wGF^Pb&h4ArosD>tXonRjc)0t^p4=oIoZ5{X3FhD
z9Ru|Y><wkqHPRQaeENP8J6SArv|s6l1{xU%7-(rA(|};0nE`Gs8Pw-7;5E?L;PGS0
z6(!4%wk8Ie8t7L(#DF($Pq>dR);t~H*W5r013t2GUk0;&cRH-yR96TZ2pMQ+AYvfP
zz=wB>KWp&+bkNE`Yj=WN-m^*A;Ok2<j>}j$_Sx1*Z^8KV4SAvlvJG@J5Hrx;?RiI=
zNYCl94lc}n=#P0NZaH%d#0`iBI+0)_z0*8V(_-vX$5qWG1Kb~#t(M*D+Y;m_cTcJT
z&A@mA6Ab7E3<G^RF9W8*my5CQ&&+NHYy*yw-ozyhj9KlUxzzJ}mM1|GXL%m}o7u%c
zR|5<}o3<_*{~$`Vl!5LBdKh@lKp(f0o(9f!kM%Op+W@!T3^F`6HOvr1_FuiD$&|5(
z{S6E-Fw(#%0|N~VBB=(3aomETO|{j*25zqM9z9-Sh{3bCte=V+9B9jdjNt}Gkd6L~
z+H0e$mgHgKXflwZEG~>S@WJGa4SQl^3_Nb(J25$fQ+_ZsHIC%HFWxvNPBid>f#n8P
z7?@;WvVqwK<`{U<z!U@14a_j`_T-GI?%b!j>BGHgv38r3!NZW524+#8yO#7V$VHxT
z8FMcuFxS950}Bnj#y%^B<{MaG;AJDdq<P6mM+)(*e)R0vD+XRAk$GElQR-`wj_2W0
zXOV%|4J<XV%)nv;Z*Xb_LrdKBjd!EZTnln&@|m%elR}==z7YBUCiQt`jKE3*s|>u)
zDI0jpz-m%%V2uHWZu)nY>h*4v`u2{IKKNZrZ87k!kzV@pmSM@<@Z0w?d0xbGV*=|8
ztanXg6IIl}28w=hv5hpV$C({#TRg-lHZ1kh`ShhWbwK+pV~c^UG(!_G@v(tz2F@F}
zU|_p}9b|hM;TZX5V3&cfIg#p~PYmofaL~Z#20k_L8I6$|Vx%L=0u2NPV(p<f=oI6o
zZ@+;9X~&YqZ6L|!LYL8KT>Tz0@P&aR2EH=D<@aH_AokG6n?D+1mf<>YmkAB_db!hV
zGd|2^;Wq}pHSnE*hwGz94b+_%{@%b31{fd37^>H&$GDy39)$3Z27WT|vw>d>{BGbB
z*%*!dYTyKo$iQ&}zp>m6ORLr<#;S+Iv&S`18N<eqp+5|qHgJ}DZs7Zu%5dV|BElIX
zeZ9qTx#lm>%uD$5>Y<AUF40?>C~V@gfh**a!K)=)HE@lbr_W(43eLc7x-zQ0%ePx}
z!VSFVuVzl{nzeCkn2}xcr)5)@?vl6T!wrX}SR1JB`P0Ay1An>5UAqhE(G5HzRqLai
zBjcjE<YwVN2A<Hdo5*M4seym#@J-|~)A4?}Oi&QH&2;q9*Hg3eBgET*Gj;rw2zLZS
zstNf`aOKaK&w`}i=Plr-zE5K-3JZglgo>EpR<VqUvL=d}$S_gNL~#=(&2$hHcbcp%
zVdBNXBDb78q$*|d9uNhZq+|9-;r;qvh8mVLQPD&t6Xi`*FwuW*n1!S#ay7HEi7IA#
z$5GWx-+HXbT|Ar;cvC>@WBg=w6E#?CqLYc5CTejmCR&=PZK95epDPMYOw=_|&xBy6
z`B~pY0}~BRG&1qh=`io<7&pbMy7g5A?m#n5ytX~Shivhf@S15>H#R|qVK^n5Gqkd)
ziDo96yPf+?_)WAh(`tXbtdJ}#Jg6uT=D2+tdU?teG`Sc^hlGVpWSMAXqP2-<O|&r)
zHq)_ZyuPVlUZ7qr*b=yN(BIa?C%HpxNQU!ZAz~tGBHKiJlm9mwiJ9o&_Qvqhj+}Dc
z^mdOsvP(0vNf<-jI-7`_NSH{vXrjq)+NVR>BsVLY;GSJEp%SfiY~A%RH^RRa4e2Hf
z6QtZUVViK=CYA}(LuFt<CbfbO=hekTS4zjk02AFzq)hZM@f<rZCk*|%Ol(rA?k1=b
z+%xtx(aS_16MfC}>2z-sFWksvd>RFc9zs78<Tm%MX_~bh#;^@!Lz6#M7-nKHwTK5t
z<HG$@!Vq>+U*PEwI~i_bgo#lmMw|GGi|~&FpX~^Yq*e^i{;YwQXDQn&3C~mdW5YAI
z1sF>(&ct|5&4OuRf{BSH{xR`{l$e-AKAYHWVlp+;#G59To0wu^s>$14yli5ciRmV0
zo0wx_1~r@}K+KY9ix4WMMNDtNozcNkp}8jJk*XX1nJvry+gn(BI5eNCMHAQ?;3n(C
z8lJZOgU73TUNN!A#Oo$rHL;LtMrEks$=^$0)!ymhDf2yxO}t@ZsflGKP7Drm_qW8v
zcSk~e81%wODjqP-ukK-_$_f)JO{_QZp@~%{-lCzIc#n$xWoWgDH74FM@wN$`%rnS`
zi{5u>j88ICG4H@?0j_Vk%cFC9-^2$rib?{#8N(?#opr7nw>a$IU}B?*9n|w9p-m<}
zqMtXhjY6p>Y^JPDY&CJMN{BI#)4JyHOoO4J_062OH;7-<4o&MLY&XGBv{!3*cG7%k
z&f~K$Z4R(2?m<2^@fnrS#P24*yn(&6EQ->^J`?**9HI`)@*E)B$yf?&Y^hIXhxxnn
zxe2SAz-QU2=3mfFnOL1$uukgSwtVR}>2)gfHRo&MCt9V6Z^<_kKbSab;(Kb;er4RE
zSaNLMCMU&V-GnM-LdQ(}$ntK&xjdn#OQQt1srkjkuO^P0_|4?Eh-2K^bCc43Sn916
z&AE{|VdC>H>9*X-o}w|*I!xR(aoWTg6IaO)>Y<5qCeE9<K$q1$eJVn)#S@H+CN9xu
znz+LL8Bp5D8@e7G@<MFN*zm)#VIDRTxNhQxiQ6>TRH>ULZc%S}{Chggkiz$V2z414
zVK^eU01Pj@XM&rHzf3$dao@zBG_)e22Q<TPMDnWpu+*BY$RqaFQ+RCRZ%*?$;eZ@D
zGS|afQ9j%hKjq?|UeQ853%RWHQ9ua`B`xH(@Qj5#7V=ssWTCKyd=_~4Q@}z&3)gB1
z`7OM=B|xCtg9>cL+XQK7u!x1C7K&TQI1$LO(yGg<Vs5u@eD2{6*PiVeWBErNP*`5d
zLPZOeER=Q;%2+5%8t(YZStxJu|02<MUpkWQAkwj6e-2KE4pz2M#X?OBwJcP%P|ZRO
z3yc)yW*io{d#Y|>=Z@(3VW~yKQVbCNrn7(gjEr~g`fFRLV}U!Yi9LnWdjhYoQyS!W
z>sx4GA!;Gp;+I&^$U>HdoA-m676c0|Ech&VEO;$6v(Vf^V+&0zG_}(4pO*$kcCKpv
zN{5htOYHDYu|eMS{fM?R%Aio53HU7pECeltEF9XE(b7V{zCqrRG2FCoXD<&}XnhO=
zV?0|cQe`1*;aLl9Ewpn9Xk&ppdY(1S$Ow_12#GHxP~`{@ewfMAA)d;%w-B?C!-nOB
z4sP0!%xo9gGBcY@?qor<AXy;XnVf+q?!v}Ak8DA)P`7fZ-np=9L9_T*$Y7-9m^}eT
z43bD54KbdRB^H}l*kWNT>9LTou-L*I7LpdaSQuqtw1ut~x>*=xVX%dih3*!5Tj*n<
z2OHi=8*EPt&sn@-jJ)01&yrpidQJ&H)gp`v>r1v+=x<?wg<m#@|ILZq=@zc4Mr<vz
zt##}-DKL;aaMoA5Q(%aNBQ1Q~4v(-f)WR?e!>x2E)MQ8aXjtmcXoR&REvVDN#CfTR
z@I0q%VYY=i7QcssaTX?9c+p~{M`XN(i56bquYiS3;n;>?jA?^Q;Yk)QX_3C2BOR}0
zG8Su!g{c;%TbN<-bq3$I=Dukbuihdx+s7ie!!s?k-&X3AUcxMk-(CoW%7*^^E7<5>
za4wN8hD!w&T9|L)B@3@uc$E{Z<6A&=s_uK)!q>x6tE+^PA4OT1RolmK8UlYd^u1>B
z<2-oXZO&*qQgZF@AiG*(VX1}p$wMn0(zc8vT3Bu2O$*B{tgx_>#!}z6%EGp7rM{}}
zV|ds|_%ip$R)!<N8lksor)+rIclTO&jfHo}($0|+r+m%T$XW~Ezf$Zyi$RismrnT@
zqqU9%*Ykcz;U<LjF3i;h-`&_?VWY+9^vEWQUlYP+8mt_c+e;uCV|A`65dt5R0CvSb
zEu1}<v)#gO3!l314qBxP?6UBQ#jC)`3zsvG{vE7+GyItaMqwSY@P&mv7WP`$XJNmE
z&uQTEvJY6;?vD}SpoI$!!))?xb04$&r^P<qq8w(QTcclFV9eo{)DR0_xh40CrephC
z{T*cOHx|C7SE&(VI2<GHrYeyiEF7hkS-5547*)c;d3J8$CksDYIBDT`3nRtIFBXnl
z_|3wvRE*=n74bmf+P)KX3yvVYm)<@TV656H3x8NR!*MMzu5x${-)TCu20k|Fk`P)8
zzOPd0vx{@|ElXm&z`AIm_VwUp3s=~!g#uz=<SE}FkMAm-s)Z#7{5NPjJA%t9h8QJv
z-NOC4KEjNaWYukoQVHB4$E<XqUDX;P-Z0*yTGD=rN#?JO{z-1^%V7EA0-@(k;h}{`
zls*MfLMYNS9qdOX{F{<Wg+gEYc~kk+N*}p=WMi|9f5|8txotdS!?xkr$YUd~jpjC5
z*vMxizl{nuD%vPu^K&SX3>(F46tq#uMqxWmTTz>Tl^!YL)_yQ8`-B>~^kG?I7PnEt
zMp-+3j8M`>DI2A2@I->Q<O8RMc{6_M8KI1gNezVWW`~&)t(*<+G0VG6R=ppsWb<Wq
z)U{F1Mim=XZB(~W!>v8Hx!9q*#jDwXoj#P9yfw%R-&|#cnl@_N;5kw)J3UACd0NS0
zTE_-A(G%W{*0<5XMq?XIY&5jd$cA9U!$}no7&(y1Dd)uMw2n+(rR+3v))W=0%!zny
z-1s&fYrz*Po7!k*<H@gidCJ5$_?EAY@_jv@4Zn?uji`+PyLynxu%eKS4|kMmY2(_k
zRL};a2zXYLWuuji);7X6p0&}&P6uCYDiIpKp#*QN7^2+PMy1Z)c5ZnY#@KiAcDU)!
zw$a{(XhX8mfntKMlMTidbhHt(kz=FWP5;HE#TY{W+mIj+^E;DQ^RnYMK9ka~H!_uN
z^lu(eY^Zknh0SUUa%nbn8>WqR?<j_itDnR;5e6sh(z6JMo(Wl;X`2X-m=ZRUHm2B^
zYNLydt~N&67-gdyX|U1TMjsp9ZS=6w(?%~F&)Mlij6MaV^dZ}U^x;Xb+-08350`l0
zq1^l0=x1Y)jlm?z73Dx1zdWD!{g#md<nzohj}1#gXx|~yG1E81#!wr>Y%J*)YtS{e
zcx;&0f5X{7)e<3YNcr$WnWqz@ZH%)q-p2Ekd(ZF~I~@ly)=nQi@wvKBnc$AKj4$KZ
znCQYJObU4>*_dpnL)7w*jxp-&MH@Uu;F@O|_1VTs8>?)7b__FZEVS{O&41a$Y#R$~
zyli8Rjk%PRjrlgt{$Aphjv>BAO10q|oz#{;^sJZ2?e19wULnDEO1$chTX1-4%hmM3
z&Xpy37TI{6v$L_(#+$A9k?Yi}^NTHZ(cYkXXp#HP1It)tBiG>A3M$?~vE}g8a_WPa
z#fOshEb)|R5qrzVYPZ!o8*jV7yEfL^SYzWIH#=S_$q|XkUDbOw|MLqamwLGUWR}1O
zZkC6Z>#4LZ{stT8dY9Trs|jT=rig7f(S+ZRwr>&JV)H^19Ua6RetQkuY}~PN*T#0T
zk$hl7_F!X|jc;sxYvU6eyKNkz3E23QI%#9SjRQ9J*w{-2?i<_Zn(CKg7M;M;))Bs<
zd-mB#|2C0>)Q~oj&u#qazNg7U_}%f?VH;oCjK9U#HjYql3knQ{BHI7LLYUoMRG@A0
z2=O}`-`n`r#&Mh9e8W*2KmUh+%*IdD{0%X-`jI+j#@KLP(R5d9bNhZF>vH>8^_z_o
zHvX`2+D=DSoTPWMamsaB|9q3=xhq>S)Q5yIo~Kpo2**8RgYS?MIB(;E%gI|dF50+6
z-KLCk3(HT6m+2Gi^w0XWHjyiY+eEI~pbitb?v_7hgtjT%bn*Y{5Mry_>}`6CXJU+%
zy+;+LOLS1*!JjrB(9Jq1>EJIL52<DjziWp_?1#RcYUAK<8~@N{<QB-iCpJheUw?i|
zN7On}>zNQAW^+4u#z7tjd7ZS|Y}Pr4g&k&RGngcwgKN`Eo;ocOW+w$56mn3^f!;b&
z*g+8oMIEpc%80?VOo>C}3@05x6<ilB?%?YZAtF;Er5u!YP}M;-2W1?Tbx_GcWhc$C
zat<musOX@)O8|*1-?8(?@@ev@80>-mvx<|prY$*P-Y^=kl_iC6P{Tn@2h|<EzL!OO
zO0brL+79YE>38ReOj*=%(y_jzUm2b{_p!*c=mriNvNs3xNZgz@a?s2{a|f9Y1P2}m
zUI&dGG~wqIZU>)ihz`v3GU%F5b`gQciA^2w=9*P4$n9ocp9BB@fCK(l3xxs>S~@uO
zXC^OmxrX0ZP~x>?$U&BaRt{P_Xy+h8;BjWyK^q5co%FB6vutu&<ZH;B2qi_15h3az
z+hs3#+ulKk|HmAPi3sFOj)P7PCODYrpff-I;Gma--VQ_uk^|L&=0JA9fJw!{&TGM(
zE&^ZKt28UUeAOKo4zAi+-5r<?EC-H*gag}2ho<nUn-a#p;USQ8(8WQDJn0@Ael@cz
zSvNe@&B5A({_|E&t&5q&`D&hrm(e|(bTAB`=N$BO(kEkjG!k7E>f@lVgFy}klf(P{
z{Tw|1NBBhL;3I#azk>nn&@JbSz&yB^@^);9gP{&aIT-C=7^^0FhdUVIFcRKF`28ln
z6E%HIM>;6+s5OBUw*U^ltr!|hI*SNn9Gu$`BQPsN80YYx!GWe;o@z3E!AZXtHrv4*
z2a_C3cJQKuDGsJPn8B*s{;5nI@G}TAatn$3nS9BVFvH;roYEN&Fw=prW@wh178sl}
zmzWOTaInNd_o~8t2Mfso2QN8T;NWGq@KrZu?JF+8H6h_PheJGpT;$+&BA*W5-Wp(f
z#1R%d>A)n0PVsJZse?B;>pEV(W3|iy)ALKCa!z=;gB28OPMFV17vQUxs~x;e6Yh$9
zU9pBL>fn_mUQOa%ipjx&1P&(fo`d&kH3`&A-~$dsK|46^V7-G6iR0j)gAESuzv~ei
zd*&U@ztO=a2Ol}u?BFv8d&sn%{w>tu^`4L2bgNr(ZKt0l+Z=3n3kmOVft_x;%fToA
zmG5?ePaVu0o+8>_2m2iCcROMB$a{JDT$z~X=)^qCe)LJ?bE=%;IqcwY8P6eF3RN^;
zW~+92n11Qth+F%WgC8CIL|5Zxmkv*T;{xBh>344Wy_^2v;HV26bJGEr^0V`w9sJ^E
zSMAKTZFq_$e8wE@{F{Rl4ss=sJAv_2JtrNUrBXTgou=wwaV5_m4$jc%DtS)3+3$v@
z{_=QO{@K>D=N(+2^3(k~xai=LgDW&N2aAR@+*!87Wf$1o#<ydL_nL!z-F$wl;dM%3
zLYxRU9NZb=VaZJgx9D4}hPPSb;I4yv^z&}XeK%#*uJ7~z`5*j%LnNXsEdD~Chx`@z
zue^87T-$c%{Nv!M0|HMd%A<ZhcZR2!{nvrAJBPqC3FJwjd;%2`$eTdE1j;6G_)5e4
z2^2`+ZZm)B1bVK^DCok46DZ^Y7qZK+sz?Gw6Ua#LMK(`~1WG1Q%!P})>GkWaSpLnG
zRt>#!DYq4yFw3+|0^$TC&!mzI{^?RK0lRo+Mv2Tx;YN*`HL93Er35M`P$hvHnR>MZ
z3XVwC8<A?>rD4?sikA!!Kmx5sq^c({Z&Q17M2cyx1ZpRclR&2g>LgG%foBtFLoyN!
z?1V4D_)kv*whDK;`d0H6F3>Q6MhRrPu#jMgyT_Bju$QEt76iR+wy~SCyon1mb<<`E
zH2<&s*ZrkOHSw@Re*yt=?`p%A2?P@evD*TTCfSWxQf+(5EVpV|zDBJQVA?u?unY7p
z--ub_v`t{<oM3hW?GpHAelU_iB*zyedF4C=T6XfaPoP7BUjp}ZbkppurDHBIXQ9c$
z&I!a5_#}bd2_%2)C?;Sf@bZY1L<TO)krPl7P!rG+e1$V?Bw#!r)(=T~0^>%c__TgL
zY`RtH+ULV|0^dLDaS}+lK+;WnB+$hLSk*OwZvVll1iJqRH}C3y&V_rrX|Du&C(tK>
zz6mT$;I#z$CD1>CNeN6&U_b%`6Bv=e$OHx@FxYJ}oMK8~<A~Hy3c@Y<azyIFh*a*8
zDHc{9nHsvIED0Euz-SUr^Gx9R1je|SW8G9aYn<*KAPyV;bk>-Vz{CVzaI09@a%75W
z*@r4qV`S>Z1g0b~CxN*MOif@~0<&Dq=?TnmfthaF^i;aTqVE|00|?J{%ZH9k%}Zc@
z0<XB)ml9au0xy%{XAPo-9;u{Z!N}AgH~T6%?-H;mf!7mwpRPE8#R<HTz^Vk^N?=I>
zOA~lAf#nI1a`v#yO$l)BD-u}gX6-lAOxR_}Ov#+p3A~-aI|;m-z#12!?($r$`e0=0
zpgY`Jx9~kWwEs8#bqTCbU<>7*z=sKJNZ_LcHoKTJGRkgDU=!8&QJPWghbbTO`F|7t
zIDu^mY)@cE0;KAHwH%ZUce>eK36ySZapM0Y;8V)?c!RzCCA!-1GrF2@R6ctWxbcOL
zz&>_0QrOQQsVfa%T$PLI=LsC5CrP4s5?|045i^0C34EErkp#{pa5jOj68PF3>ld0#
z0^cU^V*)=VfOzJ2EKlGE7e2hfJWAE=WgSc4^vKkPL+UyulfVuw^JjNlBVWObCkyCn
zyi9*h;CKRmk4*iRz^MfONZ>>QC)w4d=x)RJJ5~MbX#dd-YZM9maKwL_PCzW)ZDspo
zqdZ3^G(1PlD-FkvN?l9fd;%9}ysvsLCU7Z%%Pw4cR4Q{+>WT{|N2RXPMYtu=QK{?H
z<biqb)@XFFLZe#=+)kiK5=E29yCQst^d#^Poo52~$cJvF?kDhoF1McWr^_+%QYJa}
zR{{^|5EA%nrn-1k>M>34X^`-zqf(a!i%$}G%Bp1@3M5f*pYbm>A&F;__-Rxsmz%OM
z4~I)4e-cGTr>>1kp?vtOHaYo{sI|{HyVqDZqjTNSDfUn>i9$&fPNsX?I=aKk+3KbO
z9rErD44IpYKg}6Qlz*l;=_!%qXQdHN;@KohB~dzwKoTvJD3e6lB&sA)HHmUWPU2Uu
zr*aY%l32bp(&S&cViNI(+UEm0+}qW@Qj&k{)qeOd?e{FqezT1K_LYX!lBkhH%_NWn
zvwW&2vGa$_-`Z)HI{RxSk(q>$MC~L$xa#LqCyBcM!S#};@4^k-wBdi{jglBprUa2a
zNqCcJmPB*6sxe3Z4`+&)?yV_De=A6!g<J0buh#cp58rmp!`fgnt;wNeS|12>9#SeR
ziPodj3yf9-*sbC@Hq?8*guhJ^ZIc+B#E>M~B@s!YYZBd(h$fNEPQI|rB-$s@fjmh<
zOrm2Fu_QVraXC+TX0Du^By<W(^$mRF6u+e%`Yhg=U5!pLD<vT(p|RU3A;ra4lUSWA
zhYg89fH-;*MiK;Ok51M2DpF#5+)Bbu!bu{LM3Mr!*XY?>jo!Q2`tj68moGNzl0^44
zjd~aHvphwZvv%jwBZ=pd=$%BLBzh)sl%GMk(y*5cOn5awc!<9v)4oacBYFOgEFAfr
zhb8^p?8gfO1C#Kq%^+I_xgEA?9T=L#uq0+DacyMw@FYeg)4@@bk~s5@XJiup$JBLz
zM^Sy>NR=L{R1ZZ(NJvm2iCG|sAwXy$bji-V?K@?q_uhMNDu^OYK}7*+q9_U~RjNpp
zE=Ums#De_K-gW%{zHh$sop;}T_uY5jeQ#!WW@r27VemfJ$^mN6=Vb=uVPGBxQIdxX
zOwj>qNFKHhP{RaChUQ`407b%McpgTGym)d)7HM;oSRS2+F+wOAD`cGDc)<yR69p#;
z4(?bw`=!h&d6=4qY22m;s_6{x<F1*+uGus4@WqABwI*lGlH#)i)suHzbMr7S4~^Yu
z;>P?uEXc!|Je<wL!aTf|hmZ2`F)ioejXW&N!*WTXMR{1vb-|o@E{Xf+l03YXhoyN?
ze%IT1IJnQH1}ZMPCIeNq(FyP5MK3bleUpeQc=6Am#TWiaD_iTS=Bx7XZJ+cHXfqG*
z<zb_lwmJ{*(}CFuYrjialLzAP?#UzalE1v0!0&uM<eDm5Z*3m<&=<+NJgm>d;XEA4
z!-hP3!abP=nI{DkH&T<lT+${^?y|0%S=B4^$ZuH--%Z_`hfnjcjbmw%IHyJ8`~`8u
z&+_nj9=0<+^tNRpj~zn36#VtG{9g(AT5zWzb#~<;ePJ94ueG?QPWSEh9amz7q}_Sg
zBV?~2CHwNQU-$t>^1YCQf`{_3?r0p<j&fObDt96eC-ZQO>GWLE58R0IF!ZH_AM+5H
z5;xXP{PJGimHiXAvvHWGWG(la+W9o&&_AjB_U1n^74uNSjgoGhXX54I?>s!r!^J#Y
zV$$Z}dLAxIi0JU#f$9p^U>>gK;aVP6eUN*8U*6{*<dO^;sE9Ru3GW<Aype~S+%Q+B
z-IC4ij__aea9arFciJa$$NMc0cSYfz;C;d01s@3hA^4{t_5aGl`DM|Dw_BF`hg-KB
zAI9f@#K8_oTw6Rb&JE&Yg8AIYFQkBALBT?Tg$1ekxR4@(FV;!izAdeoJGvDY7d-CE
zU&@VmH>$buq#LE(DC0&2H=b~#tQ)HbMt>Dm-i>l@yniV1jdu$Wx#|P?lY1AeSF>4S
zMK>zBk=`$@vKv+1_`F%i5Bn!oaijd$w7}uaqf^tr9;o0(bvNp{kwk^(lWMr}tQ&RQ
zsOd&6H=c6iX*X)S@o<Z~mfq^zK=sE!^$cAaq}uFnIp&uH%K1U5{M@*@Y`#7tL69WT
zjpGwD>$Yv5>_&Yz-ti>;Iy~_?H=cK+p&Kb~yx@k%->v~`o4I&QDUf>iR2Py|H`3^{
z8!k7l-LCs0dD#T>L0z8BLt4TI?Mo(<OrX4x8$aEwyVR4A;YL$8mbtOqjhEbL=0?~J
z!;P2S$aJHl8=c%}PX9|5?%+nQ8(D6&aN|*@lz|1Cx1{kWl6bUoBioI2SL>3u7GWE~
zwu0>h+Y9Enar9)|rgr(FAAbg^h9y#%ke%J=;zkcQ^4thiNb2gwEAHqA+rb6ub#sH*
zT`*&iDz>1({F%+G`IFq#WLOR*YHt4S42sck!zazXf~V%B(-e=F@?70hbNn30xtzUC
zTtUX?v-H-3RLG6UAjMBNrW=+U)7_ZihE1Ux6WpjWKaL+)Uv;CWJNn6Y_4T?Z&lKwA
zMsF$habt)ZLxuNsqn{9}^><@{!w0%C$l-&9Jh3i6b%wbyT8hJ++7UuV3XT%w2WM)I
z5kA(9aYDumQqIrX6Db^|Ceh*E36lk<2u>B8CKxQ6z}lH^%yQ#3H(qyRwi|QY(NBd7
z+~_vBeBolLe=NwF>jrV2;Cwe8KiK(N<-~>V=q}WEY5M#@>J4}F%7Oj9>Bb^A3J+_;
zW3iBem$H_)@s=BJyRnqh;YP4ga-Xv;i=Iii`D82N$5Rtl4N@!ISn0+NH@<RXl^gH6
z@c~!88}D%qa_KS6YQ?pxoV>=(2d<*OsI^xo?BeLgrj@)_w{Z2cYu(u3#wTw4dA06G
zZhY*<=|O6p;CjJ}zvNasn!C}BO>S&=;|n)7yRn5!Z*cS?XRDikW`WO{*n4ueahQYD
z;ypQ^Ns)v{{NSi0TDu~t@!;s5@FktRTDNva`LEr4-Uip)_{EJ~ZoY~kx)83q@hw9-
zKItSQ<HmPx>~>?18++Y2=Ee_h?4!c1x<^^{Q4-01Hx4yPIN-+jB0ng2Nbs=W5kYEZ
zKWg$vdV;+;vG_M}$GJ;va?Pt9{XG7o8z*GqUMX6b#nWz_;TU@+|IB53u@KJ)XStl|
zXOToZUm}a=xPl5Mo_FJdkc)zpToQ6w@QUE%4f#j*O5ukHZoggUH@NP`4L9O6Jf=l2
z3vaq{-;LkhxW(<%joWVAapNBMhiB7VH(UPZ<~uIh-sOUtlhA&!BB%WJ*9lu|r#)bt
z87ntN+{>CgsN|o##yFGxw;O+P6PT5JX-#73t%)lRr42oh_>bs3609~Shx+xi6Z2`&
z(?O2~3Hi0?cMiio%q+I5b0H0dHGbm2O&yPGD5BxAhASG1YAB{*iiW8gifbsLp|gfA
z8cJ#?r6EnjiyGoJJ}-^x8fs`LqoJ&ZiW(|uD5phVzsYYepU_ZVLxr41OMAAjpn)&r
z<xhtw=RF<1I=HfiYFhLLK@|;EHSi8^ooneE8)uI@k;CV`pVYwHJ&@-7GP$OPS{mwU
zNYe0>hNm^u(NI@I%IfCNXn2-iiWaX|Tf@wpMtmCli+>Uq^Onu(=Dg9vzIY^P(fdt_
zRM?$LlB}V=h6WlMYSAmY=QPZ3)A|K1dN=BM4ZNE`!uQ8|4&_pwqT$nyjm*I+l`gf*
z{^ptJ-IjC>E^$6bLn951HMG>wN(0B$M8iuOnrX<;(3BoNRxjoQ4Zf@)Q;Xgf&tiz4
za5dMW-;*;|<o)c-7E(pyRLIuQT0=V;9Gk(rS8X)R^=Guzz*m~^wWZ|z#d>?G-McB9
zIt*h64Y^wMVfc<3zH61)NdqIvs7@M?-Bm+34VDI5Lw6d{5Yo`MKynWad2FJA_vYMM
z^uDvMfs>_)<pV#qpI5b>(xSI7cOJ}T5WE_E8vLR;s+udPA)rMUHN!<G`BDN3dFwo^
zfoO<XlWFrHk@gQy&Wvd2rJ=WmA6%KQYT*5{o-%_h^5~;sn1<n6^ix1z4gECqXTCK^
z8z7Q_%&T?LpCk;@_$6Lx>I@e75W%5>d`w~lW2j-020m>yO2cRk<25X6lQu@fSO!GA
zt#-X5--vtCSC2R7e|eZ5S)V&W<P!z?8YsTKmdz)Nk=<9K&wET`SePmrrfZnNnVpwC
zlR2Ydf$&)xW^0(kInr=uO*Y?3M+K63QY2q>s`Ek(Z)jM=RkN@CYl5#c0+H4%E+*0N
zmWH?K@ag#W1zi*_(a_?GYs!iC<k8=zosXx&GUmC4y&CpuSfOF1hD{naYgk3k8SOWk
zuh;ONh6^X#f1u$*4XZV*;S`6mY2@aWjQ2%nSEtr%HGHIjl8;3)ez0N_7T1Z8WXWK)
zLBl8FL#LY=bYP?S{L1RwEgH6J_)^0Tt_!XR2BcWM&!v{X7o)?Uao;%6o)0c=m#Qx`
zWG~C5&iz4czvABVp#3h5e>{Y*#WDJ}Q^?lAiUa(XsjFc(yBMsBc5S^!(t~T9sl|6M
z@Sf~`4F@!w&~Q@2_hSFB*ymC`D8)ncs%s;T_lTH1s^J*(O~Y{we9-PkK|bqC{!u9V
zz+gpkic6qK(>=qoFK9T;DU;$^4d=LCp03AV1^y%w{%DIoBs{NS+VpJdU(~=Rmt;im
zEX=<APVUbdu5#h%ctOWC4ZmpkL&KjMetjkTx}?@^?zHs3X1$wS1$w<(jPNJT8JS<1
zz0H&Fk4(O!;WsV%FzQ_m54gB`WZ&a<<jTA+LO$&JyO7}0Tvp8~+~qF~e`~0sqpFUF
zoJwxmI*RLf#O+i^VIBQ{YX6vyd^(<etAW2;qx?Dw=tyqq;?E2VN^Kz>f3<e;sDHmR
z@ud>3rjHUI*Fh{ISX9UMKN7DERwZ=)Clo5^;BC-SI^uPd(NR{%`xi1w>-fHT^5KeI
z$cg2oNC}I?@;WFac|u1;9hJlajr5tCMXanN|B?p0ky=g1lR6S~B<eUeJR3Tm=2%L)
zs_UqsW8lX2HFZ3tBd2&5@>(3-5JkcwU42GJZH`e#9m?;e-|pSIuC(3vcY5_9ibhUs
zZNJZGUr$GUJ^EYABpFn)&I`7TWt*B4M-}SwoK*dKwQ~a<4RwsuF<wWCj#M4lI$G;U
z)A6E?OdZX2r0a0$D7dBh%R2UZTQ?G)o9bw+qlri|bky1(&w&hiAv@!s>m@cBqMGTL
zx28ScC>Wld&3^gla+VGvfA-iy$L@BiZ{1I4nzdw{AEdX^p)HD5wb9X5M@UClM>`$u
zb>!)AGZZ>Ha0q(zC&sxtI_l`EM;|Tjq@y!Q%%w+({D1M8kJ34bwA`XwBf7-6b=UEV
zj?up-_K@a1dbai!a5c$SPt&36@agdDc+e_S>G0^_TU*K5io~mfNkYQcYzB0^^H+NJ
zfn~~8?-*q7LzHzp!=S#70h}@&mJVA-PaVB<M08YNn9Vr9s^hJV&3PC2X17KhVEnG!
z-a7i~=ts?q@qHu?d*Zt=KAQur`|DVGyekj#K{^KO7)7@kG#$(1Ts(&B7^-8K4n7;a
zt#M}I#+e-E2puCu;mIWpxOWlxxb+xb;Y=xc_K$S_7I>@<BKZUz6Lox{<4YZrbWGN<
zgzo8>qGPI#1v(b$m?lGJUd`4qUB?U^GbK3HK5IWq2jj-zFb<rBIXdR*Sbs0we!AW~
z9rM|CdUm)@bl>2P@tTg;bu8BLrj9qb42v}7Gv~Luw_e1nuf~}y@&%^}`&{&v&#3c9
zvTt+jI@Zx3<E&$uj@3HWa9lbcQ2^uru8x&D|9>sIg6hoA4v)*=i)wlBiTC#y^S{#b
z8f9*|pZ>m%4|IIQA?x_iS&VBX+t;RMo>`mQdx)AjIpe)nE@txFeeE~s_(aEM9b0rT
zbvNqRB!rv_#KUp*_+r(qI=1QfOd|g&`SJD?@{PEk>)_JfE_+V)AL-MFC}Vuq4jo_V
z_)*6R9bfC%$u*+mfR0@{zR|IV!_o0AGq!7^-CWB*W$^s_9rucJ?H{|7vHo&&rWn<I
zdUOxx+jq%H`1thq9FC47Iu7bM#N}TgnHFB(+?+4+Ix2~MOvevG-h4Xx05+>G%+Efq
zgE;Dr>!glTIxgwBtmCwfGdj-cIIrU@BRoX?M3;sr68>78#JJ<Sz*WDa{Y4J8QRa;@
z(KiFo$cP!)Jn>!OwpOj)FYHUlRqp@HgkLj$8KM{y63)eSaj(K#t!llKeM`r$I*KS1
zRk*F=4!3B9{0hJ6xU1t&?#Vjt>9}Rq`-47QtxIxW$M4KK5kB^EDkb@cDpvj8CiQP_
z{yH90C~=~V-nH#NI^q<6xYU;X5ySgJ2KnOT)ZQgq_sL3SlL9Jg^W&AJdcIYFq@Y5J
z=Bb4g3M=%RU*>W3Zxc2wrchj=0&f&ZlM)JLg|Jmgg;EOf3g=5EjzwZ=g=gXud6W?e
z33bXT)GwY`ULm<uVuO-VNkxU{#6l&7$_iB!{{#@vDAZPf%3n?4$tdCd-^8iS;;Jju
zP^hKwltR~XiT?M~YAO&*uV_WgE|&PT!qJ^^B%TV1&*r5*t58QFQK6nfU4;|n6C1B}
zom-lkAe_Zmt0aX_YbVy1UXm5q{9Mzx_8YpLUzzp1!V3xw7(In13K>$HqL8lOQb?6z
z<)JD~VSJUu7Zv!xKL@osK9LSzDc!!2LSqFI`tv*zU+|Yq8LFBpyrj^KvlE~AGRIpn
zdJ~)x%TzenIGLQ1778sDO1_Fxuc8%uQFzb9Y7?#b=PwEi!dMtaTg5-3N0l(DhS6Rj
zN1>P>#r^1@kgKr6gRea3sQ4Qb{7qN8)$Od%Md6adWkye-o5EU!j}*EqyrM9ULs00U
zkf+dF@!>@NS0^+DOTm`rx`L0<7On(6f?m$)wm9175fDjOAt;2BkV3V&(OScim_jIw
zIFeT#NlziY9C_8baebMA3d0pfDDd{w0EIycgGHgam>np*-~4D7Lxc|#94g3f{3st(
zD~cmUGD_i15ssGP7(v#K6~Z1TC`?p%TVbifB!$V0wp2|~m?~tB;$Kom<H=)|!gPfh
zQk*Fxtu`;(7wr&di@cclHdkSu(`r6vO@s?Y@|wcyLf%kVB7|RIEmBx4{7u1M#}=T$
zw-nA!D#fpB_!a0oB3~o8Okugg3dO&`!)lSN5@+5O-c6i&Pk1a8u^D+^Bp(RU_=nC+
zeXOvKOH$!Gh4l&>6t*aA6}3+kHaYqmg~VoIv+y71#(k==P2p=Pex~rb5O%s<$X9}2
z2!1KJLy*7kqXRd@Pm-MqyF^a@jgW4iM&r3#;d`zT+8<M3kHTK5+Q%g(wfhwgh$J?~
zLkfo#PAQyLI3n_63O{gv5Ke2cG&s(!z>)muM1Zv?MaV#%5prJetfTppkaG$gGL?B;
z5XnU@XGd~{J2@kHweHVc$k*y#6}%?+i{N!ZR^3pzDg2fr`BmY?b@^F!ho=A){VwsY
zAa7FK6GF*-A-@Yg5d1^oPa%H^Qiu8v75-6pq!8zU+XKym$2`dAL8=F79^@zKR=2bV
zWjrY0K|v1+iKM6?s|tJYxWkKh{vBO04~mPhga@UBlyr1r!;hCDS6^8V%6U-BgQq+w
z??DBTR~LN3gUTNMbt$M;Q6!Z-;62CP^P*2fRTasT9#j*;9forO;j#IpP7Nv6q>jY=
zX%C(eNs0%xJ$TlGWDn|lP)CFb9wZ8>>x_aH>UoeP!kEq2cEPwk=RpIJKkvZ{LgMGg
z#df)dQjDd2)X%wbFM9Z>DzZIj?SV^bn|kn)2aSYNr?HSGf*BsLFWx$7=E2Jzv=U*a
z2hD}F6m0ceDYnY;poJ94Il$P)LjKFVxHcZN^`M(m+s=brZuL@ZFVV;m-a#-HoK7Be
zcJyNlt&0@93dUxwy9cjGv4>!uAbX_4x(CX`zmCO34?G@tJ&1Vlss}#N2|Jp8Apyal
zU`R0LgW-WGMN5#DZKt-Ukbw-22fc*%_MndkeLd(W#s1DL$4s&90FlQ$AMC+!4@P(}
zM1(^HhY4~{`LMxA;bR2Zc9aLB9ZrK|g^%-Kyoaw>P3l`eiP7e$CwVa0!@ELQ=D`#X
zrh4$EXioEBx{w7Pbdq!53=d{{`2QpSo)_i_neAlSTq*KIFwcYe!Us#nF7)6v4_<d#
zy+I2iU*y4J5i;ds1EkMOJa|ilZ#()+otP~5V1)=bd9YH*2OfOr!72~lmEwCItP!$W
zkk+_yy)Qgwf35J31pU*Zw?#hoV4W1#JH0SzH+Z6V{XX&VkAwdm>7>PJRNm~t7LjcA
z;8PE_2|qSB?sFlZ2~I7LyxkMs3BM2|`BKQOMM+<Ku#@Z5hq^xO^57c}GQ4Q&<-0ed
z&lQ~Z;EV^~iILqN?D1f)2m3rY?7<Nc?)TuJkOPAB=X=>zNO&CLtjS6FsMP-8!EqtS
zxagd{`bUwR^x%YJfnhoIKm4o*KXEJbqP!R9JUH*cAKa`weC-J?dT_&on;u*e{i{x^
z%R;UQ{wy=g$>rj`=D{x_yzXc+18*^~9{etn+k$rm?>IWY35g~DJ>mDAdEpozh=i&B
zmxphH#p7NS@#3Ke|8Q6LqM$cAS&u{~pYS-r$2c4(0{KPKrB+-aA!j6FY*ko_-Cjs2
z>P0c(@m>`7{(B-Q<wXe*mK3Bu4W`J7DD6nf2q`O=H7%}!7f*QclowBnq@ov3dI2vg
zc~RMmDkA)EjaT)enn+^%b9Ld%<#b;|ID4$=MJ?g6*?dNLT`v-Z)b`?8FX{;AoW?9C
zdQs1dG!Z6wk?chSFB(d*zBl^y_4C4?^G5e-UTd+J7i7pxe)1HNlSB{E<fvctBHas@
z6e(})MI(pPNE3&1QM}|uGcUGyvDJ&0y~y-pq8F3AXzoRp7q%A>FIsrf(u*Em<ayD`
zi)=4)yy)OXYsXGIFWNY~tryIzm_O}B$dTrH(NTCe!A@Ruar8TTqpO%(Tvw6Au3@@6
zwXZPdk`-<*G%vy;*S%0e0)iedd|vpy@H&|g+eX+hmN`MkTF6l_9EmB!a$@+Z7d^cg
z?8Oi-dO14%yyz{wk6>R%&MEHi#Q>-6Ku12v>1C)F!@L+P^5IVHC?O-f7%AkxGwEn4
zj^RX1j_!El9R2Y^CNK^X)yZB=@!}0H7I`t%i)m6jS8%!)Go4m5gv{F-H%rKDLEh4x
zBi=GY=6Nw+gbTb_C?vM}m>#c5@pVDQaIqI}da>GzHC`<7;w_OcbH@0#6zT9%FWzx@
z%+=*ytngx`7ps`YQuUq}OgSpYRuBni>U}RhklKx2d?@5&FV+cJEBKMqiu&ul_(X){
z8yq=}#MZ(lFE%^1Lni0{)QfG*E-!9-@tGH&d-0<eC%oA1#TQ;27R@ic*db)E7hiet
zweat}*y+VCFaNFV-!n@r31inP--<96uH9bj`A=tF+&<y^y*S{-_rec)amevA_SuJ?
z|28E$#Yen2$|^5@5Y6L)vHgU#9MnlKPKof6;A!smLI%!@J0s+*;7?pl@}cs)6xsHI
z7Z)8)&o6s%#fzW4xGKV%g4YDEbG81D<_+Pz=Hvw35*}Mhcf9z`i;_N+@<ju3m;1RF
z|9ElFi~C;u?pXNCiwClt|8UadPpRrKRQ>Jf#B$@27lnK%>_eOnkBQBEf(3lYFC^A)
zLE-F?XRF5@Ud)Fg!ix%WBDS2XQe1cmM~9=1_o1{8m3*iy!ZI;s!LmM-b2MWeRq){n
zkyI39b7oW(AF4{RmJij0R2QT_PYQuAdW}TQ8d9t&7&G`3+e)fGEy8C6YYRRr$P2Ip
z9}<1&=tCzT>iMEK-<wKRk`Ku~)EC}J@Hroz7xIE&ieLjD8VaF5ObKGD6w?G>^da4;
zb@>p>y~ZNp#?{1!3}5u4T$`RHx#hm(Lo**<mf9>IS_sMXp}Av$UlFwQp_LRn_>k?$
zTMLP;jy68Db>!`YwD%!LNbI_l9_IR@XNTzXKR$Hv;WHmT_n|A@^I@J3^L^;<!z(@v
z^<kI~J$%UX!S6%B2e)Hc`Jg#mcY^E@iPw?)eE(ic1bqnk_#TpfS8><}%Lm&BUKJQV
zm<;l^xY$)LCoAGZPe=1r#{zxsB|@%<K0^8m_Vb~?@83_{1AG|h!yu6l5oD{uJ|t|5
z{<x-Bfp{X1;XaJ>VZ09`d>H9?KFWvDK8%r8{FO&+9~;Yn$aTd8kx%hqst*$#%aeSV
z?C@BQP4i(UQ_%;W@1{%D3_;e;7Ba`t=S<E0A5O0p_^{ZAH+@*>$Y1l}b%(zpWRVk%
zB|g06!-qbs_2F$FmP+kvAKr2FSNX8ahviaS;loNHvCpdiUB$gC!uJGY{;%=jeJ3Cv
zIE21^<ip24tmA5}<D%#5eb^waJ{9~#a3j~IEVNBh+$^|7kQTQ3Q1f*3l4+YrVw&51
z_=0)p!*w6N^kIh&hkQ89<uJMKSE9DZhp&CuDSVd?-}>;K58pU8V>=j4?G{Pw>%P4{
z?33bt!S4kR2r}Uh3ZWZ3{T=b)s1z^zaLk7vm_<IE5D6#!xRX@e)=rA>tPej4IpxD?
zPO<QRw#D_6lgK$KUhv_fkn>J7*w_3zsl-d1T<3c1iVr`F+Eqc;UK7GuxZ%T1AO7~?
zp%1rw_*LY8_;A~YJ3id?;hso-li8tu><oV2u@jre-(^dA;LPBkPVHY@9dd?ZkN=3U
zkROk@`TOyhKe{&a3+5AyWlI6!tSTskXWqg>9v3VkSX7WY?7f5^CH>eQz!w3O@+01l
z6MmfZqqHAo{L%B{_kNW1qnsau{TSj$c|R)n(cF(LKc4WTq8}-==0_zzD*KV>M?F8P
z_)%55c*>7zLaO^w!;dGOej$XJ5F36?Db{joDSX<GXQWu$j|3sl3UcGE<40Y8bO&zH
zrYbRJA<1d`oFB;!ug~5k!=Lx#1rf%I4LFLqaSi`RlIBMfKQjDy(T{XLT#f}AZ{+aC
zLSoa=RCuNzFFCc%guE=48CV|N`CItW(htiI+mBX$Wc$(0kM4f77Ugz=Z3Np2#!g1<
z{m9|>|9<59(OKjj1!=RB5PJ3Rmp_iYs~@p1++Goh*AJf`J^aX%qTA2M&i~!XH9vHR
z^BWS{^!$&{em{bKg!~AIPAs-zN8jYM&W$q!*^r;G_yt15k5@&ZpC3IP%|1eU3HEmE
z_jPKyTKfwh;7A4v8RY*r+lTrw%+HrX;60HK_hX75Q~mrQJVyF4%4s#ukI}-%2#ytu
zU0#m&V}j%7L_a1unLxKEiyG%~njh2sc*BoHe$4P=rpOoiF-yo?LF&&IGRGOkJV!p?
zj|IYc>fv`&uL*x$kj7(s-C`*&_v1}JmiY0OA8(7~9Y2-|q5W8p`H5qhNa#PabcOJh
zj?OCjFMH8yKi2s1l^<XG@xC7)h{9)neCWqoKQ{RBi60+1t=9YTu{2yKl34PyM|QDM
zB%A!$EQIN_MaZXu)Y<As>|%SHBZ)QtoO^|zkJ8~wKXynJ<*_PyNV3z9U4HCyT74tr
zJHc-S8Jyit?H(a}o!GM9{eBz}VJs}Xv^(g>A(0#wJmSYuKaL6i!H?rYc#8Z{2ra~%
zVUC^h<20iYh$ihBKhFBmB7l|w{N%?uKM+9m0M7eyfw$WNC=tL#v2ce2_v4Zum;Jcn
z$IpJ;^y8LPUG?LdAHO(x#lEhK{Dvc0CUf+wKl;I(wXqKuxBdU#S-b1UJwNgVkUxO?
ze*Eso-+nw43l9YU^y3d9|Bd1=DaJnf{lh&!5M9NO{D>364gcTB%Pz;N0s$13s)B*&
zRdFHVlrsX43+Dr(MFP>sM2iMcOvs9g`B^OKXjbG|Ab|J)N(WFzgii>T4WPWEQ%*>%
z>k5JYKSRZ)tWp4#9nC62s>bvKcv8q;hoYC<H3Fy^KvDq7BCHj_Qvv?}BSy>l?wJ5;
z2T)h4o()8|@tAQotRuqMGEWE~QHqq;3!ur5i6r$o_5jiYa0T$Z)TTH(F9>NM*ziBk
zrI_aEycqcRvvwm#(o{%e+IJ)w;u8CMDS&2T=VhsCE|@9EHI?P)bEaAakR8DI044;`
zI)F9-7y+08v<;wLfIo7C7C`#|asucYKsRaFL9nx6ZU7w}Yn_Dj7@pk4kuW~p9iA7!
zD-Q1=$xlCHlckH?7l2=g67&S%6%sqAP&pvQZ~#FebUwt{mmG_IJ7)!82hcx&0Rcor
zr?=p%g0#?6NH4+I_r`sM_YI(*qr-h*AVVj`F#!w~GAw}M0Ss|;h6;&I{RrWs1V=jl
zjCM4sGuGkbgitaufJp%?4&coICI>JjfQ3>uHGpYCW(rQ1*^FI2&2ZYz5;8l0IRVTK
zU|s+VL^5A6_SuI+;9wb<=|`gEHK}@C@QnZ#{ZHO53E-^&)=1Ucg6{;dEP$oLV+))X
zmP>I}04s!0veKDB@^=GxFM!oj#ZF`M^}eI|K>!~LU+YL{_G5>y3t+v&Hw5qr{pnef
zmrol5*c8C#0Ja38*HqgCNwx;?sl$2y@iXC{|BvL$0CohRLhyv}RRCWHuqudmgV-6s
zF0RTT>ILyl0N)0XFNpj>d>6p(0Ime^a{zk+*c-s{0DcT$pLlgpkb~MEzyaak3&!&H
zPymOectr4+;L-oqZ@0QXaHSV0#1Neb;A8+7MB$X+nE=iPa9VgY!k@<dB>cQ1ITt`I
zMOho0(2D_Fa%wLNVJ=+_;93CpxOI!<mjG@Aa5I4GjwW5bCH#&f`Blhm!PxToEr7dD
zE%WVn;eQ42cK{EB|KZgB8Hk=lVwwLifPWl$O!6pzxZuB6bdLqm-W%Qb3ItIwh$=x;
z4WdvGg@dRdI*$v|z4#!C1W`1IVouu<K@=Ar%jc3olnVZP%^V9wX{jwESXQu{AiFCc
zM0UPt%%2cRMMqvqNM%79sV3x^AZiPFG6)1wJ%}1otQkZtA$0F4Ax{g^EG01?o^>R#
zvDXQru1FFbIWIhtf=CV`5JWJD`awKL--2iz#PdPC5Jcl3ngr1xrXP%+uo^mTQ-p9^
zOAF#f;pu{n1YN=ZzqdkvGJ<FtM5a`|B>1vmGeP<s^N{wN2ay#-i(vF;ZY`xYR@F-Q
znZt42rbfTXY!gJ6Ai4(8Hi&kdN5@XbAaaCv5X^Pt%Wq_}Ri_|2I})BQy9Lob2zL-#
z5U+?l))zH<1d-=x(tq9I-XN54kKjx@`do@nxZlxXOhQ3~gM5)VCI?{zVFuABh`vEs
zqSMpSw1bF9+PvyWnA^RC_jb~Wz4r^EzX(SMF+j*L!GW9+A%lY$62wp@uyZ{VyXbv$
zUfl2?Mg%cZ)J6%$?r+j<Dvt?btO&;mP7oX~$bP9a(cx2qm>R^wAYKb%nh0kFF*}Iq
z!e<Clf2NR_8*_qK;K=6&F)xVu|5M97Hm3G^5N`zWb`VR0SR@KdWFV|v9K@R<`EQ?p
z%Lz;DYUdrPT^7XhAXW&c4=W{6Nn+RG?**|sh~I;F5X71w-e+nBu|0?nf*8Iwaiide
zf-J5T@{!=jg6o1<FJyxtbv_YtIyY&Pkj;*Ki;%5?p9*dZ;xi$eo0nq4FM{|oh@XNu
z7sQSrz7mJe1o1UD{~*2(;$RTFxcQ5GUl8AN^B2BHaCb2JZ5ziG+Y(9kIy1hXD>pa#
zne>3HJBIF1F#0eaB|ipnIEW)b92FzS1S#iQ`@!MIh0yGYAWjBx%8{QA{(D6iONO(K
zoZsJ`5AvmX_)R1i1%D3WY7m!%UlzO~lf~u0iMSTTFG1W4;#LsXoeAnQH9sxi5H<Sz
z-*wcl()_mI9j>6EiVpL*E0TMH_Z=gD1o0;~u@LHq@K+Fj2T?kNGNI@u|BxGd2!(|I
z6U3t+;zD>VgnS~24JyCz0-^u^&WdZWun3EWP%MPUg%=6^|Fv}S(7zK=DimFDB|<0}
zioOeoJmzP-H2L~`ld>U{3!z2`HA5&b!fJvQLU<yCioz>}P}wn9MI=>YDAr;&pA-p=
zLr8VOnE$odbqLRfFnXwZO5{%qJ|hmZNgXMYBnqi3nBdgblVXyi!vuRSgy%zO8A7X2
z^i29f2x%d_7(xTlX(*Ty(-#~pelmH|Lue90MhLE0ZMV9Ogfw>gq7O|&XfDE+LTD!B
z<q$H3aI>O9?97!V5*Awsi6ut1@SG4@3uz<RHiUK|v=<)R^w^4@A3KDQE5eQ;bP1uW
z@J=Cg7DAoaiMv|}Jwp6J5W0u(ic~ROV;?`=Qq)4wWtQ25bHNKd5)RfIf-i(p;b@xq
zLkNVhK7<V+1VadgupoqmA%sIPLKqOjzz|Ha)-!}&Ay~p`#10`M{8hnN7sTEn^mQbC
zgfJ)jIg<VoPY!la2!lhI62jCFhJ-LQgb9w$Fd?Hu7#_k1;Ufh{IhhvAt1%&r4Pl&A
zjTdB6aSCFoMNcM%FiGT-1!J>A`Lqybg)m!$(*<V;&J>K@Qk)a||K|heihQ2nd_lhR
z|FsZa58(qTz7fKr5SE3oT#9w&A&SLZl_4w%;Vls^6?|KeKEzH6?>O1DB7~J8yf3w@
z1Xnwn?}qT6!(&5OL;s!C8ng3Z2x~>>Bf*cw?7C3&+CCPmPeRxj!o?6Sg|I1v%^@5P
z;YbKuLf9I@&JcD<!%sul7Q$y-?_!@T=<^W12;obq-7fgu+_)XQ_z&T0QRDNjlQWX9
z-->S6S+WX9z6oJZ2zx{LHr7Ot^4&sW#`g*TK7{>3*w+ENJufb{BoB)4kRXR}G=yUz
zoRuQ&{1Czk;l~}xk3wScIVt>92&aXd5#%X`@7(xF_&LGzg0yyl>srQpStP%Pa65!6
zA^aS|)ex?U@TMS_`7chZ>ml3_9vjXrN6zo`?g;;rTY3n;g>YAj_XK|r;l7YqmOc<p
zAN~-+#rt;%54mrLQ6!9iMEF=3`NGkud?dv<S+-nLY(*paStXK!VH66ZaQNSEW@7VB
z9mb@nC=?f@q?i!4<#k92;U&ZWUjN5CI;Dk_5iA=<IU(hp+6qFR5UeOzDU8ZODm<SM
zbu5f0!|;UR4Fh3R52JAyO~R-VM$It#W+yfXqgEJCg^?IWy)d2@;j>}X3F8^z)TtfD
z8$%UI-7sDp;7Snr@`0}XPo_?-lty`yNRq>-ABOgM93{^=IxmFryzrEw$!ucJE5O=@
zVWfyKHH`EyT*A|6TnH6XD@M)U=w6=KNQAye?J~k>8b%vFv>)cXVavZ1MoadXo!Bgl
zm&53plb9Kf{+7H&7|p}D+BR`<hx}P#eAO<oO3~!d+@vzC%C!=;Y{AxoZ*|DehV9t!
z?RMRX{1reLIUM`(ln!BZ45L#RpAS{Jg7l$t7+s|HZ~l*skZufSUK;gT+aIZPxJMXy
zVO-8BUAknlJB+hG<nYjiXo5cuRg|bOh9A$#Dw*sH!ym?wFouQ^2qPFq?=bp=5eg$5
z#^&QWuZH>02nb{)Sz*{=n8H~+dORm03Je0@bboiKqH@nLO7Zdi#oc;I)w$7K`-agk
zjKN{_AEx><4HkDB#L#6WB@R;qL}#F2^I^(8ENX#GSUZgFg)uFR>0yirV`LbU!r0d`
zaa0(ig^Ukl42RP$k;k|&#yXrj>x(B-NHRe*Cx$U+m|}5q7*j+tRq$&Ot{JAz4O5@w
zB+dw9W*D==cxz}%x#4QAklAc2<nLiBCZ89^d@h9HibuWS>a{Rl52Krb?grinV^J9A
z!?+N};xOI}M=xj(hp~hfgl`Vx?J$;xu_lc7!+0l*Wn3K{lim$uc^EB*s}*6a3_~BT
z-aXcKl{DGVz%{UX*6ih}1Ba{kM0vF!g>1;<gD}>Gu|A9s!&n=}N1XZvNgs18!xaxI
z5C^PE-4MnnVQdUz6Ia}$hNqUNesHmMz6D)Y4OiQTt8>HEhIUz7!q^(dr(tXhV^0`+
z!}yGe7seN1d>O`e+H8<jZiM>#v&_F}yg^pyE2(MolIo98JGc-=sILUS4r8Z~U4q{T
zvi93Bz7xJ%u=NN<;l42ThjB2BLtz}CZ)e+n&uko_GE%Y_x?v*}dH=^!wob`hFhWu7
zNEq+V>vA-VV`2Od#_=$&|K9d=7(a$_f=RnE{S;$6JNYE@A(-5;LDp~oG#t||>(=}v
z7SAw4ME~_7oqh`ATo@ck;pM4oM<~`_4C7K5l?+ria5;=C+(HdJZs2FG<uLAraX*Y}
zVf+%t%`k3pugJ=}9>%T_>P8qRQ?e@TP4VZrNPZ3Db{M~L6gjR(Wm4|2#}TT~NcHaJ
z^xWRb)kmtkwD4`p3|s#_j0a)F8F<XVA7T6%#zSuP+&#8u{>7N|PX1dsN#kD0WrwG*
zi+P<~1v|PPg+Zh+pMm@a3K%G8;K8tznpHZbk5rvUs@@}2A(8B8omHfFGK)nF6g3cU
zptONv2HswnRNO!b17|9yKHQKod!#C9psnF5Wk9Q%$|CuelHJM}C~M&KNcDt)at7WX
zsrZuB3I@sxXYp&1T)3N2^I+SG()M1CtBQfD2AUYiFi_3FlLqP<NH72c*K=Jp4AeC6
zbg$&<2A;UwmXcZqo-$C|z_XMaxHnQgV_<o!tU))j$$4ipf5R+BuY1|lI`nyz`mtwn
zt<tH9{9h#l4Gp9i;D0P78>nyKIfHw0W?ffu?NRE&2T9M<&a})I3^Xv%vr_7oImsEL
zqVGBBK1wyaoSJGN&49~5BLgoQNT-G4ajfOhdz5;2N^bXZDLg7Z9Y1B1YHVQRGg@+X
zMpFYXMPr3_2AUao*+44;*#<HVG&j(K4j7<&d`(;yCEGJOMi!6!)9_lY_&}fJWusJU
z18ofSo#D#8*Y@o)ojx0-n$L0(+Z)JXxE?la@kM3_&ewvZjs`jz$Q90Fqbq5h4RkS(
z`b%n81N!Hgl<=5-CG9}rlw+gRD+YQnolN92k!Qed;1eVInjnqJ?9o6!1ImEMfMvio
z;5Fbg5Hb)p;Ad<*CIt)xsna+4_9!)>M9QK}SNv%8&Z88Ao^;9?__E6sLQNLyj8+i?
zuQIj<dKvu1biBIOE^w;Lpx<2QN~iQ@phl}cG=8Kti!Yw+!eV~|0}L!Mu+YFj1A`2V
zGcex3U;{%83^y>sz_tfTM+z4nYG9awE5%Y9jm?~J)x}YaG%$*u?@SwOV6=hOrBcQi
zsF5$V%{AA}4oR<!R^6^Nd0lJQ)7x%>fr$oY7?^2bl7YzvrWlxNU|w_A+Q|i61ygl*
zyE+9@rx}=T;C7+Z@dq-Jcco1k(4KzIGBDe~>hCk=8<=CD&uBH54VhYV+AZ3d_RF29
zC#y=O@cl^dmoI&)Q0i+2|Lg!O4Xon+Z(xyur3T(Hu-L$x2HxUYGjL*VdX4re_X?yg
z;r248U8$8Bbc1%xP`etLu4T+p11k(n8?7ij-7#m+tMMFB(%y{m1ykQO@ScH>417$l
z46HH0st>sU4UFBH_5qhbsg#{fqh5^<wWIO12JXbCu$bP&wT@%I(qz4X4F>*c?iw1O
zLeE>LX0W#Bu@V~%Y%;Lfz!n2P88~NPtAS4q95C=bXTiW{26h_QW#DrI+YNkaU<X%0
zk<u6Pr@ps0;|ng;0;!`*r+j7LYlAPDX?Lka3Wrl8*p8lOuFUwxz_$kW8rWyxI|I87
z>@iSbZ$_<o>HRln4lI@O&S=HCICiGXrjeO+X}^I>M_oteMc+ns(7+)BKQeR%4jVXP
z;HZIPGWM=Nq_X*z(dq}u?LW^pId0(Hl^M%MXEM(FMyrzsPH|^5aMr;2(P~1mRQi0H
z%BQ;gHCnYRoO-Qr>CpW2+3_jo4P0OXFk%KSvUdYl4P0Z}omDS0_qh3U!yFTxlut^h
zqz&rC!QSth^9%Pe12^c5fqZePH43Lv;daTCTL%BG8VvH#?=z-878MqaPr0s=elu{F
zJG_BE88HJDi<JJIo3nxYOwl5x`xQv_Hg|pTFlFJW%*xGNjL%;N{x<NCQ^rZzpYhxn
z#Z>2#<U6q*F*)N?;>_rxuC%`O(@k8n_eN(kzlm-px|=9qqM(UFCJLKKHc{Wi<0guj
zsA8h3iJ~TonJ8zXyour_N|-2RB3`WRD3#)!n_kicJ#W^+RocX^`RQd$l%<_rY4;mP
z6YSQ&PAlS5T8vSHA5^JeqN0gPCiaibe8Pl#jM{Lv$w_ZJs#O+)Enaf<8>6b3c+$i(
zCTg32iRvb5nRv=X4HIc;Irmz)YD!1bOQqB=l-jtvmYxyq=xGy)B~v)Fd7A546LnZL
zQO`tO6O{|4CW!r0J))Y^#;Ep>rxr>~O)|l?Kj^0>?AP~w#&af~H_^<*%O+kh(ZEEy
z373h6CQ{h7i5E?ziXF~uOLq=O{p{^ryjgB<ha8%%x*)xgiN+?Hn8+{@%om-_&s94s
zzFJcgFY!0LrBaHNPT}mYT-SQWKhfouX`;D__9k*nWSMATBAaR^{Bfx*P5fE7bSn-&
zK7}J%x4t!(NgESw&FEg&&cu6T6yv|foAX{=>YHbqaD{d-k!zxpiOwcEn*6b(dUr(z
z*X)Tg>Z=9mo>D1Y#QCl!xEPl$%b+v#;T01-OxPwO-2XW#?44>R7~aGoZ8a0R31z}#
z!e`>JyIt?jIa@wzos^#JHF0l@>N6p;o-3zZ{#3>!Xd+}HY=Zo9rpqw#@#CdU6BaXS
zta_t#N@Z`(nQ*(L8p#-|UNzCv#C#JAO!P9*+r&5%<4yE2(bvQf6GKh(Gtu9~AQOX4
z3}D*iOXcP^kf*A-$;I<r3`oYr%qOcSk2qSTTB(#5-DQWF7;a*eiP0uT$Y43Zk(|wg
z89W`V2<CiJEH!0S#)f>UV@!<Y6pvL6zKyO0ZYdK?Of)gW#7q;DOiX43O#Xv;*~NuZ
zr!d1!Of$h=xQBOGkj~zVexGr&X*6vLmr9vsVm6gc%wx`ExVVIQ{+h$7OwD*^Sq9yv
z4tHSkg(hBOZZFGN&fGKchKaXLEH$yn#9|X~N!7DuQr<MN#Efp*uP3yjGW%VUFZJ_(
zQhMc2eaA$*v1*wKt{rB=$Yv?ru6OLsSYcwN44KKZ%EY@2>5Kw93zz2T2G1z4#>D$3
zKDDvU#s?-oWTzJ1v9Q*}M<&WxC~M(k6YETzHSv>)^|Wu|8x!AhHch@n6x&UFVPcbs
z&CEa(pPAUg4diI<rzZBjq?=>aRx|nzWRk^iq*L-aCv>bTc_VAXSe3ZH<C3xJOKJ5L
zGt<Nl6Rg@ZR<X%W6X(XNUWZHUGV#|~Rb!lbJ(BDir@k|>+r%Meorygr_A&uX9N@8{
z+ddO(cVv*Laf<jom)ri12SxbJtF9SYIfKV3DjYF!)WiuBCz)3_vW}TJZsJGbKL}pW
z?lMcdyI#I9{W)b~&8x1V1<IZlQy-2~XT&m1?H;GjnK(}mP5jLjWa6U9*D~N&6PHX}
zHgVm=4HH*P{A}WyiC;Lz)QofE6!9t}`5gZZBZK(ZcvW@0I=LnzX}rq2nRV-C)=h2#
z;}ywm6L+|#Ox)*^9IvSSn~A%ejvdj4vktii_jEB_ea5TbO*}9`Nu4`ce=t7Rv;GvE
zHeQiGH1QAjZ41RLJTehyp`e9A7B>Esy6Ts#$1LQtK$71=0U^sG$t<29(~Vfz!s8ZJ
zj#ou2Y`T?2!d|``uSk~0cPMV5goRQTZhx1;AeXeFGk$TrT2i+oixkFNC@r;gEOIQj
zoQ3ihUa`=_LIn#?Sa{Jwx`m1sDp`2OLTw9`EmW~k!$M8^GeK3gP|d=V7MKH7`I~$T
z&rMJ*C#dQ|=uBjSI@7ufNi7TSrDi;3q3OtOEIw^vf>aTowNQup7M{0Imrh!!XCcW#
zqJ_67L`SrFcWbsK`E-IxwxW?_k-WZz3!?CXg$5Q<Eu>j^>snSr!4%PC@5Lr63fb!9
zmJ&55D!T2m(8xkt3+*g4w$Q{va|>A(GNj4N7BcClg_kTe6G_HIMIUH{laf18wQtj9
z>){f8Cn^?OSZHM-+X59@N*pFmRIR1R+BRIa6IB(?<5w9BQF{wH7CKt!B=h^}MAg9p
z<3^H8AI3*XXQ}F9p{s>s6V=U$s+;)GU2Jj`lr%n;%kJ_lxGjvbFxrA<LAUU#g`O6a
z1&;;8f@#5P!Dk_8A!MQOB;~h2PXe65N$T7oSD;R}Q-ykjEih*~Pf|T6sq{&zcUBHl
z%MzW41>3?$pQPVxnlf#YVk_o$FAKdb46rcJLLUo#E%c|^@v2)^4mJCUez)scD<&!S
zMg2h*23r_mVWfp27KU0FW?{H^GPy^4>TI8+PK)xGuQKjWQY9xx16zG^w68H1##)$X
zVZMcN7RFncY+(wM$HGJ|jh*FxxSf?TSuM_MpSvStl7++Ly3J0_m}+4fgJxm2h3OV%
zSkYB^?N%<2nHC03jygu(W3rmVLmZw<<<tx=gw>PP_Q`62g@qOtTln)v7XD6sjWcWE
z4Y9*0@g18dCM$Zo$il73s?)LDH!Uo&P-KdFi%DxmH;`Vk4?I03x;-wlu$-&OM!Jm^
zT(A~ySh&gMY~fuhTlki%!@_E=V$QOKH5T6IipWh`XW;`2AJRi^__Vww`ssD8RH31Z
zywQ~Cr`@F@UvFW9RDEKhP32A-E%e)+%5R6L&}E9+VqvR=9TvW_@TrAuOp=aCUs(7|
z$mbTeGk>P2oZ8u!9yMeW*X-m8Q=(rkeaR*Nu<e@1+kGv@S+&!`)ptt#`FGo0j-+vc
zPTyJBZQ%zC$1Uu!u-C#NsoiH`zl8%9zPAwbvrzr`T}wJ1blN5-#j`oh9=34A!cj+l
zj3JfL)h^m@;}rFyg%cLebIDscY2lQGvz!i5elaQjw1qRm_fJumr>N_HwWa6hxTO?n
zXFU~v_Ift$U$k(Eo?EzP;j)D*Qu{Oax)o`$DE%YdRhX*i=Pwqni^09kvo>8xPnfE@
zrf1!<@GGNXqpFSD7VdDbwo%B&Zx-%acxd4t3->JCx9|ru$HMOxT1<^j&;u?{Ax#&%
z79B|WODz9Q&4hT?4wR~yQ`I92advdx^V@h#NMK^gd^R%DvsO)2wJ)}1^8)t2Y4G+x
z4GY_N+(t<orEC-t{h~IC+2}I4WGq#Ri?D>?(q*X}0*%MpC~c#>jS4o(*eGkGoG4U#
zHhbp9wqJ@fRQqwNdcsCU8<lKS=6FS3?0j1qdHAp`6)M%qZuVG8H5*UbNVHMU2E<NH
z8?|gy7hXe<n)LiB8&BJK)<zu>K4YV{5Sl7BP1T$h4OCr6l3>Fn5(+yBNwQI&wKkF+
zo$u<EdfvthHd1V)im-u=jtesz+IYWy_UPkntJluv%tofEG^zb5A-?y|Y2&9UmyJd?
zM%Wl>qp^)9HoDp9&N$m>YNMTv_BLL!(ac6m8?AU5=E{26My8GC!uf4amW?;3DSq?T
zf-^O)ON>8Lyd5PQrm1Wjt!=ci!S4gx+SpPnI?KOJEwH3_GD(h&<8dh+ZFI8HfjSIV
z=~POnuz#BB%;^(_m~i*xl3k@p1=hY|qlb;2HhS5}v*ET8vJtkS+0boxY<QU-3zP0&
zNF^#6^`&XbXTvY@ppA#qqKi6U<8+CrPV-AqEI(aQ&9GtHh}bY~d~zb!VqcfqCQVoO
zE2r{1I!buFY9nj9BI(UetELXLF~~+A8+~o`lU4%+``h?3C5sBNR%*H$OwH-4@8z_i
zHimHQC)>`LuGURg!)$yzT@ANUtwt&jDvYu*+Qxhv3v7(BG1kTu8&hqJvoYSrWcGDA
zjmHEVlbCh2QYYFtGd-F-G5Ou;s^|>GFWIKqm~LaPjd?a^aIWVi&9pJg#%ujs46G3y
zHRCzk#vB_<<=a;lDXcz2rOt>FT3ASB8!K(BvXL`Gy>4TPjkj#PVPlaEV}@GHFuvLG
zP5L=QEpVlgFJfC88)m3wf=dNie8-Odf`e-0%Nd+0xhtfK!gp=FXJf66k8G@#j`qz^
zAJ|wU{Cz?8p4>d^Low31aHq(_?2m0+o}t#+SkE~vq&=FUXmbODZ(}2u?MziYuZ7!{
zwTY=XQ*CA@%v3C%&Cc3lW2+4k9)X$aGaH}Vm>I#W2)5h!f~z=!>JfZtV~35KHg4JY
z%Es3WGF#c$X=9g-BQ}oO_=a<5W1o%vHomj*>&}$jHuf;o(>h)2n*7bQP9tWj*JrA|
zQpF;L2W)(A<Dkv|XHTxYC+=|9<U=+N)9sncH?0$kci+s}J5!MyvvJbKDH}h}R6lSD
z*!a=L32t<=lxvn^7u9Dea%!^Q)7%`g6L~D0*6Al3=h(`|Rq5rtjZ5sJYw`sfPwa`i
zD8kOORPwY=mu*~;Dtne1J4<CQ$)Vac8#hEq{)>?7f{UfExM`h!<z~ojKZ3#$+~MYL
z<8MxZjn3IA&A#k%*Ty{?_if}K*Xe<cKUiGu`d#p|S?W(N-s}`gdhBfF`nl_0Tw*(0
zQS%=gk8I?NAb%ukCr+@_gmUDM2|qqd6=3bSPCVGWV1!>ncH=?*cmzcvC?7$E2#Q8f
zEP|2|l#1ZjS&Fr^P&|SXPTLZ*RlFFaow7noM^HuxHJ_QS%0-YdTago=5P78tDo0RJ
zIGfXEl?bXv@MHwvEq7Imp!;mqcediVNNAQLYCNV~jR<N+kR3tm2x>*}R0ItoXc)oM
z5j+z?{Rp0mpmqe$MvxFeVg!{Mr`CyJ)ofKaf}`8Y&zP;gn5|CER(tZN-JPxKaa?m$
zQUuAOIkIRX4>l>F6?i^^0UZ-xh~WLr<)50P8qHBnzv-9~0sl*=Q3Q=6NR1#(iZ4ds
z5|S=Rg|2fH(cbY&6OKB9<`HB?(2Eu#XcocC5xnGR4*k0I>^W-P9F^%vVt-fEB7&9?
zyn4MN?X(XTc&}q(s|fx)l}^$og0>NOBk)DgE`s(EbYrX{$cdl>gDC^ajo`6XiJb&H
z3SM4Uf|BEcyXUAb5p<1UZSQUu=O`ja`bq>nBFJMr+eM4)*ByZ#fr>zjpuk*3XNZ)0
z9LMV9>Z@{-{SgEr=+AIP5R4$i+6a0^5RSlzz>Xji!R4`?%t$n2E%vgrRk>|l$T{hp
z=<#~_s&f^Ey&~uxLEi}aMew;*lHNW)SM}jU&sF5+Ts1Byk>qkD>qbJi(Q~7JgEBCJ
zK@kj&MDLytiC~Nn@}WY8MKD~*2uD6Lf>FXpJCgo4DvlLC&XJ54G9iMA5lo6;as*Q%
znC{e06*5im)`jS6;fXW;r#L%;In1;Ojzusxf_V|Fi(q{O^CMUg!CMi$9l^o~UW;H+
z1WV$RU*}*er8TUOv}mq+gZUhv%p<o{^5O_z2aO32lPZ-@CN7EKVtn$ZxoT+y??kX7
zf|U{6zLzxhW{HVf(y|DaOEGJ-t9*-;RS~?)yp7<42;O6NWs+A5k{p<;h-)I)P&u1q
zvzGK>1RqEE*65_Qf+QbBaBZ$4NqVImaYF>3MDUG_abpCVBKV9xQ#pbm6O-FkNZP{v
zVV)x28o{R#6q*`G;WlPzg`}tEsi!L>Z;zl#r^K%#=rd1!!Bap4J2xloh~O)cH<_n;
z%u`MNOrg$B(b*+<;qMgcf6Lu~voKF>c#yI?g6IFp;;|=!y%Fq_;{FH@I`RV%d@p=s
zd@|Jz2|w)A9*LlChp7CA2#!ba2NzTXKSppOf(s091g+k0buxl;5p0{M9>yo1ir{nv
zXCgQ&bM#XL6uvW0adt@7Y>%Vbc~L$wPhDb?M{qrY|KsU9z@w<Xw*#SLs0kfj5ERWW
zyOg*I2@pz1fCLCFAP5W~2r4tXGrQB5UKFMG(0dm_niLBtDo7Cp!G=Fknjom4A_)I?
zFJHdrxzBmtd+xdCo_o%@XJ$8>nVX|=g_W(V_Zr<Oz*W}sc@jB$M`Zju8j15`IAKma
zyT6Ubt<m^%H13SX)q8>43?hX^VpOZl*G2i6A-{bcAiX;pUtRC}*J%9BVl`i4O8mo9
z`Covb^L&XQdxG!&XguKMLq-`H|A}}#8qL>9;~}%<#oo--xR)}D$tW(Pq#R40co{Fv
zmza2GD(03DnB6h+rBX5~RP!?@Nf*tR%F38i*<W5pIT`G7@1(P9r9B~oizdi1Ge&gw
zSCUa##u)`)DySl(Dn}LMC`go%B%`i^dJ3w^s4nBKjK5^mkWo{{SQ+DF)RIwKMmHJV
zWz?atjHWW0$*3m-GM<*vSVnyr9Xk1*6!dtt+y*k%Pw}TW_cfH!h^iVCymp}TQ!?Hj
zn|CQQf573+&&YUI2>WE5pWsiH;gR9xD&2esE+#gS(R+XApMOlC&Rz2*V!sex|6)8j
z-6r{)%Se}zA)|$i6waFDe@;fKj5HYm(fxczfJ`>Ghp(lKk@>z)bA3My$!R5{HTNzf
zM@AbNnKIf_Gr?QFwldnuIFXcg^k^nm3HdV?4NJ|E5uD=ZDEHD)V0Jm$i4Xte*6h5l
zGP=mfm60doi}}*kHv^YWrhV~dpy#<<Hcz#fwrMT$^JVmqF-peEGJ4ABCAKq++mz8q
zMt>OtWE9BgOC{^mo)><&JYVW3gZ4j~FHQ7iD2F<Sf69JA#y}a8j3F`x5u8j@&(s?%
zV_v?m<^t)M-qpWA8Y-j8gbM$*>3yqB)lVn+a~4Q1$`~$Vgjn<?dPBzQ^=YV)%YDti
zP+`~tsW2(`6&bI}h{(`oaMoxUTjs<CWl)bSIEoBsfy8b|hRUUf=4dj)+{?K*dV5im
zjQwNsW-X8m85<W!u8gP*Q-&pD+0jfcVRJh7elC|gVxx<eo{PKX%@`v#TVZwP#7X|~
zGA77)SH^xB6J<<d7RlHkW3r4XG8Qt!WlWXvnvCf(X2^J5#xxmk%9z{5_lAr+`99iA
ztiKU>^nG7~xPqLSGG<YLE)rt1d0u23UgD#`dkZ8AJQkZTV}T4ZUwbV;4u?n=iz!QF
zEaj1Dn_tMZ7xK$wESIs0Zj`Y?#!4~Dp-(2qa-Nc}we+tMdAL@_I-#UoevJQkIZAF6
zvDhJFr;JT9Hq+aJ!_?X?W2=m9^zBdC?7mgRuUs?tZGnfiu1fwpGIsHJmM*<lFn0^O
zM_9OPMt}y4%lGY*adv_9`;Xc5{{a~XWqc>&dl`phyeH$hjL+%J1D)TeLu4Eg_yZXq
z%DBlVtJcWnUOtlXv5Zfc0Cd8w42JK$mj0uhI3qwCXyIoJYZu=!8I`8xQ@+%UK(U3=
z2^lA4d@18A8K)S#iT*EGd??el_h}i$TI4e)k5tcHH@O6-Q0G}0=VV-v@eM1_Lg{Nk
z&&&8FDebL%-x6>4!y8k-mGQv@e{g*or_hFJ>(jX64>GRGxF+MGj2~tEPdMR{jGtxv
zByhdHv9p|0J@*$GS42cu6E4db|8uOiu;mpLT$k~yjN7cbGH!71Y@W)$$p}pg{9GgV
zxf;2Q-7UI0KPLa?oVcl_vj33rC-aR}sJV|_wxQi(qcrJn8UM&Auiyy<_jr6*?OEhy
zG+!v)m+|6#-vb$c?28+J-*^6j@8iS$AIXSQP*OoD1xY9CQQ*?%v|<X1D=}fVcm*W{
z9=S1%-O>vF+L%^O!FRjj%LqQ@%PJu4HY6s0e{))bf(oqX3aTrpsG#b5aW@aeB`T<-
z#BRna^AbR&f*<R)<Lht8A$Yu2l7hjz;)!br&9xQG+7(|@L9KV=Y89>ZSh9|S`<r6+
zKtX*4&nS3SK?4O(DtJo4(+V0Y2-m3i^itoHA=#vj$Xx2X`+Htv1<hB-FTa<`F5BGZ
zdC3Yq3bJVP^<=MtnTylX6<pq*+C+g*fnPyW1t|)iQ_xJo!S;#G6|_)rZeCjVg;GB~
z|J(eW@Pka^fPz$^yrqIP>ePEuVQ`^DP=0#ub4EV9846k{Xsw`)f_4hp3#&2}v=!iD
zkDU9j7EE6#(Xb8*Rx3&6X63G1C>?mZ^up(S9ffiZEn5-SNx`ioUuOkf6vS8aZBF#%
zD#%k1RWL?DR|VY^3{@~pL3aiD^ePuUU7?49o(c*S^ku}S#U1@Bx0iwg3nhZy3P}4X
zSeoP`IC?R&pTGkZJkO{p7$5{V^n!xZ3#ID|B~l6x5@IbE#4k7cN&*ilQbKJnDj2Td
z6$P&<7@^=L1*631;!gr21$a0%{`dCr)Wi0&0%8u0Rv<Hc3L**=A;wWvK~Uh3ppR$m
z`6Qr;?xTg0uD}r35!6(`QA+`r;B;Fs3F<78S}c-W(dAlW6^v7`SK;fNFkZm~h5y8g
zl?o;*n51B~f;kE%E106-4Fzv1n99u0Nt;IV>iJ%yZx>0yMbhhx;EX(iI{gb0zD(uN
zbS4tBSBT9Jbjb6)rY@3ZA4}U_Hb8;73g#(Tte{ZgiyE;&!6Jn(QY=`uNP44x!9oUT
znD553E$SXis~_#TxO3VP8q7m_Hg!3V_UY70XHvTq^jan~6Ucj0Q@%=F70VfHQ}C98
zH44@$*r;HWf?bQGbqdxi(03+K!-7e<G+={*{a>bXiOmYOFrW9wpI9VO4~MogbEE<e
zk#1M;wt}4s-cfMvbm|T|r(6=jrA5*Y<=XCIh?mFjrmKYqsQk}G(xM~13WT0_6<qC>
z@xFo&xE3=_!3zng2Ng`)n|eq=;8<GO#nPSuz28%?>{ROC3-Uiya9F|T3Qj0EqTnM1
zpDOrFLG81tAB$N>6_gp<^UUdtE{lAhD182T0j>Swbm}n$#~G|+X$^1XHxN22eV%sm
zVD3o;r<krhus`%2+B)+K1>6*;Ow_tcdY(}??JEUmxlj-v2XRip*Ua-EUI^km4|`AF
zHwwO0a6#a};@H=H-zoTB!A%9fDfmIbMHVpy|5LE_w(lRU--tYKzs1r|EE@gOt|_?A
zswgVn&w~EKsv^Lt0f|@W83i+vy|bsLkg^8;%8Jp;JG-{8b{FprCT%Y-Tg`1rw-nq~
z&@qVYAYTWMKUnL6cs7VX72M(da}Y^E++|H>#SS7qh;B8q|5gweM6n<S$L0N_pyg5T
zJ=TG)t^O7CzMu~j{3ihU4;4Hr!tQ?Wr<n=WYV|tTx)p~?1o86i&Xt3x62#OGyd{G%
zZKZ-JExKg{EgM9+Aj%6|LC_}zrF=pV>*n<&V5=yYl>{ZT`zbH=R}JFBjp-e_w94q|
zs}@A{AQ}bvGfvdtMvi)G1yMT)=cu=45cP6fNgsIAa${E238LA!%(`NzUJz?D)7T(D
zeL))t`lO%@1-09yQP0ysG^QuVWzwGbahbKhE>WUPW^xdoAkw(CAiO~|q4FS_2jLU?
zEBDLt3$TA{ddJMProosellx`02qGnjKoF^d^Bn0Z@4N$E`kw;%w>w|#n?*o3rU#J`
zL}n0egZMk8QmY_Z2hm3OVTw_KYH3)`sI;=9(zv^JL39v9?P-$OENPbDe7>w3m48t-
zHz$bPAo7Cf6pUR@lZN-}%rqF@uS*b5OzlU|mEH@YPY?yPDj55gvS$#zg2)eI=&Zgy
zf;jqo8Ugtm?`C8btKFL}iU!!-ccmvm-yohBl9cHurV~)CKPPstO0j`K3<~14AYNyV
z1tA3y2|^EI2xkQ`ItV$4VL`kY#E2kX;%3`dmHT%e&SSNr(t%n5b+OcXT*k;CMlrjB
z_<mErYuWy3i=|hB_~7~OuN3pY8pP(h0k$J`0$)~+SAtN3(1HjC5enk3j2@KvPU~H%
zPT>3W9xZAGI6cf`ySgh^F@i9I7#qa6Agmy+Y|e6nhz7B8v1A9qiB1svaxw|n7LLtG
z$>}{Nh&_uXf;)j8<AazO#3Ug(f%%Z#`_|OHlY@L4bq3qiAf^b+wb-SFpVSUa3*wC+
zmItvSh&O|n9>n}076ic;n9c~|_+n{J5HopZGrhBdm@UBUtT=YJbd1rtf-^6OI}?5E
zE(~H(5K9Gf$Kn!;1t=8shsDwo0e%w`mx(2QyH#W4c>l^E|Db>!LF^O)tAp4W#HJwD
zFtR*@g1KaA+=d|53(SSsCH;75+~y#*1o2i7+l9j15f!!yuq}w|?Y(T<J9ys~9PX&a
zB%j&AyScshogj7vaUh6;LF}djg}}Q!IClJAhM<FYpWr;(F^;nmM<(qL;&7*U;z+jl
zP!R9&;FA-?`$Cxf4}@WnA9y;wEjxOfOek?gXc+iXl9cJCz|kPzCXAF2o(tjAAU+GC
zS_sucI2MfkGv@Umex<jA_&kUcL7WWYYvx-Jr-C>g#8*Nlv40ki@E1Yw)YsgeekO=7
zgCMxQSR!S?Im@d6TkBR|KkQsCIq^ae-vn`0oW5^^_>LvwVb9CV*dTaX-{{!te{^z<
z>>rqu%eq|@^hZHC`cn{>SRbD3#yZe`Q|iw_{1OBK8z){7C1uis&Xg=$C|%=uIqDsk
z+v-LTH-mU2to<#BTS43l;$L=I{Hd7*B#1vm!MVe-FTkIo)U(u3RZe!RZwF+to^0!z
zRj*L`M_9gfTqe8sh0X^-{KwOJzB4NoomTAmtcOha&aI3{1$rPZgkm8S4<SB;${{q)
z?njvtA(RUtwNNT7l~*zZ8eb{|;?jba38Ab2<ZwIXLrB={eL_%zgb*qST(O8#DTFiK
zV|A>G(9b2RhL9+5lA!bhnKeSF8NyQ`JRL%<5Nd}|KNP#;tv1SECj^8*P*-s33Hs}V
zc#cYa<A?T*Zy-h~@MH)Li*Tb5ZjO&9vvCNNA@GIpObE{wbvZXV1WyRwB2JSKK3tYT
zNm73ZO@*pvf;Jb6QcnxfeSJbqVSru=VQC1<LP!gtWeDHj_Dv5VJ%o%9IycT38bT`p
z+J?|Bgw_JL5j0a!%5*D~+6$Z&LPr5Q2)buvZH{J#&^?5F!O01slK|v*7NCouxgq2U
z&{fcGf<B&3$sQr}7aZcAA@nN3y#?qKLO~IyuK@i*cwT_le`+0DsBy*s(S1SCfr1VS
zVXy#_pp+T%cyxS;VIjO2!f?^GLa;*^5yDF$j1-)pprZuktd~Q0r3k+&z-U3`5EKFa
z|1LtJs|u<K8V(^MfG(&ZD0P}Npim-k1ZR?<ZqaB|fH5JAE#iy|VZ6W-iZ~Mm7&yMf
zWC5lKI<;u@wGdt}!qWtJL(n$`<t)B2c}57NGX<R$!t4;{2s}50c>-{BWd&dC-O3>>
z5S)cY{6!%wF2aQZED3=VDZD&{6`|NO$<KwbQh<FSyc@!*5LS!snh@R+V6C9*1f~3X
z0XC2du&Ic@S%57eY%St!6W~4mE7`T=?IFBf#NQ#n&Jf-aV3(k~i$?bduvgI4gGzAj
z{t!M6;i%vo5cHs+hXj2ug!cuY<Oe)-Mfh+CM+E*z(8sDiDH=U4z^5U6R>V0*-@Xw?
zC2XGy=7|ta3UI1O=5&bv0~K@H89~1k^sA!LvmyRtY5HRgUx#pB@GlgNej`AYWpUq!
z@Iwe~9kg?BF@zs!gN|c5{ujbeA^Z`>pJ7}I;b-QOh6x&e3E^@G8&qsmaV3PSA+%7D
zqT*Tz*F&hPB2mS!A>3f$RZ&94%@BSI;cf_jvCf2Wn>s`IlO^$kxM+3%?;)7Gk_bNR
z<!#<S=??2ab${WHeeFVtoWDc(Cxrh(co@PxCRlYp+rJ^Kk@|7;eh3c)9{P0w`B$p@
zA2GoSCE{W#;?$TJF=a@LtJo`amQ+znMS==0T3S$ovI3M*aqvVcyX91rSMh`z(?$!)
zAt0@wqN0jQLb$Su7i##)ycCy7T17=k(M?iOO~unH8mp+TqK1lkDxjjKiYmRlXL@^U
ztFaG9wN$*eIg5atIx6a_AYj|MH=(|YAv?1gsCZIH7XPnXLlwn$W<4cj*lnbu_RcH<
zPQSJzi?g0l(L{w$$Um#%l`$_Q6RYrwDQ62MO7bI^Uqw?D&4d7#Xd7Sq@ZJOpHy0~X
zfZgX*1XT1_F+fGCiZm73Dsoh`RMDoIzk{IZDl$~GQqfv;GgUla&405{YD3{wnFOS5
zRkWi|mPqYYzJsqH1y-&vV3#0EMMp868md?KcT&+=MK=}QRdi92tMY64j2Yk8%M+lh
zpyafeTY^l2d=))Z*sC)8s_3brmx@zo3;L+2zeH+Y-QQb)8I^L`CBJ~0^=yK`5~&~U
zRI$IBpBte`FHp0JNh&6*7^Gsb3R8upLZUb5A{DQy7^-5JijgWtsd!PvaGF}n|IfgL
z5h`91_@yP%w}bkT*?oybI(~`tvdWjV_N%xniCu!xDr6O^3QdKgBB+9MLn@Xmk=|M&
zZ5h<h6=LjCJ}l<yDk3UAT_RCADfxzqMML{ho2}x0O@CCy7?rQM?dPa)RV3B&|0Ki?
zYS}5bON~`APQ^JbdpyHEwBJM(x2G3OpkysS0T(56ii)W!7N}UrJXG<zikT{AshFnX
z;S%Xh71LGtcPG8U?bq^iV(q2U458tFyOP)?bGGQtRWVP1IZTzM5{KC4tDqQVxEv>v
zvq;5q6)Sk4R1^xyCBl14g@v5BOemow@k$k|cz9K;Rk2!yej$U#)4hF{O0<pMSjQO6
z$y!gxE{%0xUn+fE%fCs*W}ZzAl{IWpu~o%Y79|ziRJ^6)w2CiOY-cK}_)x`R6+2Yy
zRI!I;LB%`tLoFZMZWX&!v|rbE?NW*K=u(NyeJb8nae&2v$-^x~2eOg>x6em#h)2)v
z-S5{L@2hyPNYB-!Qn_W)2ck=GM8!ucj;r`wa6VS?3F9m9QD$$40&08C=|;*Aq@U69
zrP47$JxT_dCxqlF6(@P3m&HuV8<s;lC#&F$iZ4}s!?aQHl@L2CC`Zj3Nu=jge68ZV
zV7A|#bV0=%(+hU=@poG$eW&7k6_-@}%#ziy;0H#HMK3>rvo5m49ZdgG%p&+nfRW3j
z=CiZL8ri?F^3#&S#LGo%k<VET>*QZ&@mKMP<yXTE7Jn6gsQ6RGZ%nOa(k-T<iZ^#8
z5YO!6pMSab?;;I2clN2YJ1Xv~xToS@6@M`Y#7_TF@i&dE*@gK$G@QM&x}U=LRXpI?
z3}=(iZr`ke|3peKD;^3^e0NeY4aGH-(NI>41vg$pDGjsYsuGtFoRS(^or`(?LAt-R
z;1C>ICY2L7LD2FVE-sUv(C}(;FD2P3XsD>6(y_Q=%VUA4qM@pW_8K~9NYs#|p@{~c
zhH4tBYj|2iV+}Pl)YJeC^)=MeP+P<Eg^Bev{Ap%yd^v-(j)uA#CP%VM>e=j$KV6S)
z&hEGd8lKe9P*}2ONWVs0V!8B`#{YK7I3CF+rWj{En3wU4hGxs9WDU<!IFenVcy8wL
zfJcK@!%rW?^;#~C5Z3xNG}X{jLptR(G}jQ&_&@}t)c3d0@SFzDO3`q?P8T_nP0H?%
zp9lIxvePthEds7ZnnBlTAkNg#T7$J*YNO$k<<gwx(w5~CyUfhC8rlg}l&2o<B}+p`
z4MQ~y(~zwpM?=1b9vV7n=&a$_aCTP>T{PrsxU*a;Gr52q((ji`c^XIu?(W-7LzNX$
zcMW_;V9pAOw5Nt%8U|??tf9AtKJ=}I{u+j?kP0;P6@ZwkNc(Zo6%xS!4KIkHg!2XL
zjuCXAuz_8MRiZ*Nh3A)?k6A+IiyDS&Fu7k1BQ(6EA*dll<7@dxYIuc7qG6PVmo<##
zT3cg<eQqs3M@I`8S;OP*%oUQN#VQzqszIa8)%?1kcdGfr8X^qz&0No_OkSr5IBJMd
zUfpaBjs{mlRM^Ha(Xa&_;>U>YI1Sr`{bPmanI|lshX?hWs9_QV9Y$IhlQm4y@VkaT
zG)&d-nud=x9M$l;hG`l$Y1pjc4GnK<Sgv7(hUpq+&~gp)G_30Foyjw`Qku=9q~X*G
ziJTiNq&XVch@V<1&DXF%!y*lfX%g=k&&QEJcx6m7Yo$~u#FlEXS4v9+CE(C9jgQ#!
zvu&&CUr8Aa8<?L5>#P>?Yc;GBV2z*)S4v!nlIum6v#4Ps5BO8QI=hlcw`ka^VXuaL
zbclwxgtvET*skGi4ey9>G%QTyb#n*LY%TxvmECr7rz^WLSi4qAiBr3tTq*6=kT9)a
zj}U&ayI*-J^IZ+^YxqFJehmjSd^WV-K@EpAyeBaAFydrlcM=2rp@zd^?nfGq2*4YL
zt1Dwye3mlCh22jye5&DR-c(bAhGQDeYP@jcxQ5R)e4)kexSlLbWZX|^I7x@_W@%T_
zDSG~F0o!T8AvmMqOV*0QMBaLRC1w#YZNAoUo)t{Pj~dqQO}L=p8x7xTc+to%QJvp9
zqWCI_cS=9-d<i_JPd9SH)%;wDOaD&;#eU-4AL>!;lIYf6C6Reqi`}H%6l-14a8<)K
z!Qsu-uL4{bG;3GVjUxV<YX09eJkIJ{8g7fZDXSzd^e2xz3w0Rf!nmv9FD-U693RF9
z%l+L~Nq=kjN5egl;SV(Yr{P}>8Ghe=!Rb1y;8yR%hZ-JfhzrL`eX5l`VpZ%EUtSoi
z*u@01co-~$?3M_lBv%=jP$~@mNrE@Mr3EMxj(xYx`()DcVLTB=y)Y0)LKqdos1ioi
zFn;artr*7D0sSh6WB2ft!gy_!L{o{^>)DB6B!y9f+QO(N1jy$?t5!+XMVEk_T4B@?
zT`pZajJ>NQ-ow`o$F@9VXY6Laei#kH@P^SOj3>ir7)IkTo(W^z*9DEjcq$Bv5%a$N
z=`g-rC9zS}vtjUlp8Vu+?EarJY@TrJk1y2k3&S5q^DtV3!4D2i!)PXKxLstwmmlK7
zD7{*$zgl`u$i$}i@&>}VJT#A>Wf<vUEDB?B7#U%-q8VXcg3&sRHeqxRBR`DHFtpS4
za>D3DW5Q?`M*A>2gkx6<UX`-K=om(J7`&!bEt|{B1jAuv6|jgM%PQzhdz6eWVdT=o
zJz`h+yfC_k(M^OeX<zKNgl*LHxR$G96MKZwGmHUYyuiqY(L0R3Lb8vb6etj&=W2;J
zX_Y_hPfouuo)^qlS4;f`m?2aR6nJnLgZNRmZ`$7vE0Ol<F<1)6uKt`jEQ}Y!h=wsH
zjNxI72xD{@au_d#F;d998pfzF)(W#<5#Z&b?x3a>Cryv*{xFfZ7D^bwFv4L(=<0n5
zA-apsF|t)*0D<kz?l!jsSJcC?+axm#D-0uyeP(vgUu%%h3k1)L9fl*O@D|7o$39AM
zh;%HIB#bvWH;nONObBBtQ#6c;VN9Zn(yH=~YcfMHp~4iVw;8*35YxAh@#{iot#bwJ
zP7`7T(*<*87_$VJ5k^Xr#J5*Vv%{DpI19s=E5Lj~&#ac_6@dkh1$YLt@)+(rtEEC(
z8^*_B91UY>7|X)g8OA$dEDvJ^Jr>3~F=b^Ks|2W36!+DlyGGE2HPZSpHiWSyjICi%
zIcwcUX80OulMvV}D0jy?uq}+Y!q_1=+rxO9XSrV`4)I3oDWRO8#~O*ZWV^!H9mb(B
z-V0-okl#zshyULtl}Y<<ICg7vAdLNDR9hp>Tq7L}WBVG3jXK%hXVnVhL*`P`ioDGx
z=WrMwG4q=w9x1YFTUPA0^Y9w!lQ2FF<GV1v563<cd=|#(Fun-mSQy8-%CWf5#gvo$
z62{CvAt>$V+*4sZPR=u|0D|+ipkIY?HjHy&G-{GK?py(H(LX$x{&>pyFfMSRHPSa>
ze9PKm_og0pE3b_i^8?d3jGx2!Md-;(tNLRY|D)gf`1y(8C&9cVD24eE;BpvO!nn?o
z$RbdfNG99WFrHnPb&V4r#yre+BaEA2P@Z_yoD#o<aVw15JlC@deiy>uh$Q5!_DvG+
zuq@Mi5qucIUt#>sdJ;j~2>uD<9!qfq^&|L~AqZpGHeX@{Rc<G2J>z{4#(%7GVLamH
zgL6xH<09a1amz$dHiAi`^NU4LJQDkjZoHrbB_b#(a4A7cN5G$eateni&mVkNnHEP{
zUTAwFf=6p4wgdqx2wG9lN`h7vv`Pe31)wB<ESeNSwFp+6Nv|G3jR<NAJo5GQS`pMc
zls@`QdhJN;Ed%7#iJ-2)+wW!9D*_ziAL!?I@-~Rz$p{)o&?thY5j5l0B6vE2CVY@t
zzvRXdR9`Du%X)YtcqW2pBS_}ZT8YgQ;pfc&!Cz1G?K-h@*R|4#b{&0UmOp|nb^Ef7
zS}Qe=;L~f#Y#9->D8eZMJQqQrh?6QnnxHKOO^;ys_7a@fsz|1_0Br=F_mQt%1nncR
zBCsRq5Q%+&ibRmrzh71a9V5t&ASZ%85fntwDT2-s+&$y%A!wHf_?Wit5#)+)o}gU?
zow-(`7+d5>e5r-$`4QY4lTOexf?g3U8WzW)-Vrb>K0B5_b7G)x1pOj-DT0v^JRd>-
z2&4#xM3C;L4~XCe+UBNHc>Y)3fe{R1R-EiVID*g8d+k1!zh<rU?pkSR1j8a25y6&)
zx!d2XlDi{~Q(mN=x6_74z=`g{T&`7Za$r;hFGnCpphWOW1pdi^(Gj%Tnf5B<TQi?B
zr`AfG-t3S3U<9EE!omzyDB;qY09=tvf6*+H%jL}OsYhTi?p?el6SbDFWC`!+>2drk
zxf6jK!O{qpMG%c(Oav2|>XFz_ovnKT(y<YYi(q^N6CxPg%g=UgtyK6#>CKILOpahm
z1hXTU6T#F7O0AQoMes%huSGDkS{mEy5qwZBEq*}Gn-NTpV3z345Ok)Xx2vU5pvIhd
z$~=~z8^OE?KX~$A!!TdySwQf=g!9$X>aCMVAM0Ek!IB8r<@7=!Hnx8bl~kV-znljo
zg0~~s5y8p`Rz<LxIbShzbp&f7*uZQl*LKE<w6zg@xj%kg1nPl!{`95W@wD~Kmg8w>
zzD(Unm)7%9Y*P`~!c2(ZqxO|=f0eq8A=C5TieNjvbS#aU`FkPKojeiiq+iFSzaPOn
z5$xjendtkib>?mXi1!GvH-dddoOdJGUxW`taIgp;ir_tg2lPtiL^iWW!r=&xFyVD%
z>-Z>wk0Yq9qmGUVjeJL$X%QTY;1e!=HuY0M$K35jd_02BS@$Bi7r}`LPDb!+1UDi$
z6~XBUep}P!#|XZN;Ecc*>61w8uK?c)`jw#Uo)zF+1YZ|%&I@os&~KQfcS=!=?K{Ew
zK7t<vcy~tyG9Qm}t^Wz;PZ3-a;AcU95tL$=1-KHyRROLQ@vpOLZA_)WO=0A#FIFM`
zP2gLC-WIg&X8-RI{J}cE+5e}Y1a}0u%d0>U=WhX)UrYWsg8NKb9i?@koA&`rZUk{U
zrgrxJ$2#A|`%uuWbA1~U{Cv`5tv>!@I*RLv*HJ>prPhIxIzIk3oz2?Xx!XF4w2Y3j
zI;!j7Z<)&Jxc;C^1s&8-UM#^?o)92G$JHnN>_!Xx74_JURVoQuS<otiRuwc+&?Ftz
z1fb;g?(sErr1kdJ6qKNr9(%SY!Q{Vub#*kT=4+_qZnm$Upb)e^`8u8yIB7u%w)edi
z8|ipT$J06*>u9c{g^p)*JgZ~Z8<l)atw7aeoj=!vS4Yp~X&b*vST#Gpa9J906Y{J1
zyc_!Xb=;U8XsV-`jyXBKZvEct<#iH=Qgl40BV9*^j)0CYasp{OCasfF#Y75hm2z6@
z*fcf$(UkO+>!emXTI*=9ql1n%Ix_h;qjgeSTIK1*Yn(bK|D$!%{dH119W&<S6Hvpz
z*K)IjHUf5Ybac|OPRDv3opp2}SQGcMj$9piI`Vb&&{1{0<XazmG-X$v-{i-hZ^_nO
zfM*JmZbbb(bqvt)0yh=)_tMc@M;{#pI{MQ2f|>YXpr4LqXXBpNLHt8XlUZZ@1dV#+
z_32xQvj*xIq+_rS4jt&|k#r2vF-pfD4LrHUJ>S3Id?*!uI&hed7nw!ZlZWg0{9f`%
zfkz1Xl8z-;b2)V5?_>_GI1=YvPku$mt2##OkabL9it12w1a;Ut933GYs*Z>botePx
zub1{-sv4%-pY{G!!P}+0cldhApijzsO&ykwc4aGdT9rC(y|iGx6n(;*Qr+w7i0T;6
zVxnV=j{OPU^X7CLr}GV}mB;FsSlPQ{y`;5`qlSr$qfj;UL6_S<rR~0&H<?b}mG|bg
zG}6~}ysl%Bj>S5r>3D-#p<}L&H+4+c@%MUZwvO^m@@MFnrQ^>?)@SRbnK~wK$snLT
zKdzT(OqZ2ixzIcv+n?|*&@o@fg9a6+V9@D0-U=I}g*uwn^!82m7Sd5VR_Iu%V<|&_
zzT0wP*w`Num+7%vk<0Dkp4}i()t*qLRXWyi?^V067TP)q{#vG7MQ@vdeTQw3Ht5)>
zW9PNxqfAR3n{^z}!5>g<;rZ3ETgM(9+jP98;~mC#Y~RtVI&Y^u-QLVc{I-rA)W1P$
z_(~S(V{mz4|6Mu`kL^2agS1!2J{|8;$-@2(R;R4nAibBBKyYw_w4dc-gG6vp#~~f>
z>3Cnq5k_HopZtl5ALvM~8TgRydL?6W$KE?9cRj45W?GLWle>PzGO|J9=*K$BZIp=l
z^7l`;cRIOxJTaeae4GiUW0i%~7Eb6m$s99L(!?npr*%Bi5oh2F9cOerq^mo5ztr)S
zj+;7u({WbEIl;W7<7*w~nbkVh=6KmI2=J|--w4{MF#fxu(eHJ9Ul>oZi#mQ3%>U`2
zz)u2~UJ@J1T@v4*llNyGzv#HE;|lk}8r8}BD_x!Ay~g~>j?3!gCB7~=#5V-^aZf6l
zw{+YVwms1CJI|Mn`$GAjI_@yjbo|3wCpdr6hCQjb=EWAhk>lMwFaDn3aIJrthuLv7
zbxw{qnjQCR$x0OXk0(9HTkcE(DIHQWC$5-*;sz!em~0^4KnVjq4D>Wm(m*K#PZ@aH
zKxqSI3{*2v-9T9bd{R~g0~HOFGf>{(o8`M*2zOsIFZ~Gv2}bM@g=~Dl)Xj&1N(QPJ
zsA{0$fc(k^c4P*A$<BDbLV%B+OEmCFd}@*bKDKV~=b6Mc4AeAG*FZf3wG7lYP)Cfm
z-Iv8@Uj5TMpAQM-L$n%flwg2*mLvok8mMoefq^HD*rUnFq!=H@Mcl}UJ#g&OzzjbB
zt+9b;474)P+Q730k`1&lkYd1N;G@#1J_CLOUT!lhqlpoFS{+;M$yt$32~7=Xof4WG
zXhtu^rOx>*leFx^*yGxsGY~M)lB;ycX!k+}AEd^XYJfD&K==8vN2{e9I8i=zYI0tN
zft4LHGB!$W3}hPUWT3Nwwg%c6=x89@KzjqeN3q9<br9f0WN?<)(a$AQ$-LSrq3eXK
z90MC4252O`@y)z$T@2(I=t^I;&&U;Ye8-G#2Cj|G>Mo+d$B|JuU*H<Ma|<>~y$tj=
zARAB&^f6FiV5os%2KpN4XW#_`0}VWH;M3L_J6h&5M*X=&rN96KuWXbKpU52kPVU>K
zQwJINbAGyHV9oK&!A9(<ed9*?hZuNcqZBtOi}XbU!;RR}<X$mi4=WpCV5D%%OPsPX
z_6WpNnHkUQsx(S4UpBz!C<ZD8UNvxVqr@~A&FQ?#7fTHq2pMn<L=C7STL!kzhzOuD
zF$B0-I+c>T0mFc4@M!e5jo70;ErFZ1&-nSBTy`A;1Z^Ao#~3)bQM&nd?nHwhw=vGZ
zcmp%~$2L2`03S}sCl+=r(}o7{;cQQ5W=t_K)xi4(J}~f_f!7UeHn7FOH15~HG6TyE
zylLRaq{`GViy;#mpTSvu@_*eZ%``yjub*~)N#bk+a}3Niz-*r<=u(Qsr_ML9fah+L
zv`|ojMFK1~P$<BXB7XPc{>Z+plEqV3Fr5snGqB#kDkJvX(KUh+tQO$Rl{Um{g@^a-
zth9mgz0&5?_^hGhviR7*jXb<<GBydy?p6ca4D2)Tu7S4<Y&Y-@&$t0T|L|=Q!JRz0
z1{M#=C#Qdz(md=u;JaBUHs;meB>mmL8&BCD1A9f_7;$#@8#us#@*qsk3S|aZ3ix2U
zrjxP`QS-$%?}-{hNmh~%4IE~Q8u-@05uQgL877s1Q|&T7W{8=MJd!LU12ek3lgsCV
z^5}hL;J7d>H#PGZ<pcQypEFe!r1M-HDqZ@NF#byeUx_3+&8q;NUn-SP#ycZ`^I7Iu
zW`Z~x7YuyO<M2);KKqeREIe<32Z!y(qW~X>dhcZBcLu&U@CVc0zz+s4GShx+bCW?g
z@IM2WnQuHhgED?%jtOu{&=b3J$z=OQIRB%Z7{1DU5TnG`1h_8f<Ix)eCtPXsn}J&f
zZj12or0{_JE-*_9yLSxSHSowloQc1f=LWwTMe9NNd~oPL2JW$X&q-&UB>h+5`-1YJ
zh~)fd;GqZ;pAov^N}IQuS1e|N8*ec#tGEf5>CrAD-UMUH=Tg?~n_tRAX%ngi%|aOy
zWlel$;+TnYCd!)_Z9+Ejgoy+b875kps9>U^36BY{iAp9ao2Y4`mWe7Rs+veLQH_$m
z>_lpKwd0~g`SSekL*CEKS(sAYL=6-CMcl}%ficT7y(=;oUk%hYQO86>6OByNHNm%*
z!$f_PU&&(q+!W8ujz13bH87EKAam}a%qLCUIFw15ckcPfdCJ7oCY~|ztclczzQ$s-
z!PUU|oE~#82PhUel@T{OGucFRP6|O26Fy3s_-$s2-$YXrEvVVVC-YL8nP_g}xx$nd
ze{@+jCvU{T%&J4vo-+|J!EW=#DQmiQe`j{e{uwFb!<lI&T8g#4otu(wqRE_;wo6i)
zj_=;uL>m*mP4qF5X`-!(P9{2=XlJ55UG#2dM{3)b`T4=j4kofp5YQVh&Pn+zJ&<i8
zhZAR|oE_RRWs_8MamqJGd|ga*Gtu2du8BMo_kRwgx!n_A^mjG+6-~FRi&OGV^f1xW
zL@$%ya%aANy9;;S@?ydInz^&C1scps={F;#z(ijYFPa!`V%*h0KNABv-Nf@I`kNSF
z;sq00&D@y_Q?_5sOk0rh&qE(qA8bN0G1SB`6GKdtSf1IeLgm6aDFmH2Nwhp?dPlDH
znbC2CiI+^gLQgKw9BHE2)Q+P}yli66lCEzr&wTZEmlrlk*-9oI`zp1K?s!qn<SfNR
z(8PQb3rvKVezc8Spd}{4CTtUq5RNc*72296bkQ{g-Ku6%kHsh?mL4-NrDtlYYhqhr
z*Qkjx6e#StxG-fb^=y)6Y?8R{?VKLWgb5}lnt0vBG!v6dOg1rvp_$Q<0#uS;m@<BG
z%2X4tG3YZ=xHSg%%hbRdCf+nL%fxIG(@p#|JEik4ff**4y2O;3Y4RKOOoBNkF8Q+O
zi9n2-oidj@5&|4zXcn4SWa1qYyExZGA=BH$1`|t6EH$y(#2ORJOf2UCVUn0wA@m%c
z*!`NEdD`2X$xkKR7t^xJqn2w;Fi#k@bz<X;9r-+H8%=B?$HZGEHk;UDVk?i;{y1)D
z^CpRz+~it-w0(B|b`x)#*hw#~Do)N09`-ANi|MIfh`lo{FD%R4%^;e1-^2$d_L}_5
z3l5k#XyRRNp)h5?iQ1zxnPxoN6y_3#OuWbHVRUTVErZrl?UY$Qo{kSq95(T>iBStu
zj+ppJoSm{O6FLv;NEv-t#$kW<Q658a<QpzZNxdHUl=5+YruuOn6B7+AJjwfi6DLhP
zH1UY{|0YhGxNYKh6JMA(W8#X5t0ulQ@s)}HF;a~6?Jj3coHOw?^JiE__Myz}WBpBE
z%{*`7f+#h=bn1~J`MzQ5O1^K&5#W14$@#&=MS*`T;?!-KddbAkCVnw-nTa$bh1ULK
zcc(XY7#;J!2z<FObHjAsH51oO++>|G@v8~0OG|FBW)92X;Yyhu%dYM(S2~cF@%o~a
zTdX{bQ%=rG`NQO&Ht>&$dnVSsmw9PU${iDTnW!hz|6;ioPCKzlVwT3HFG!)lzs#Qn
zDG%tn@g46A%I<$+A#&8bj5rI$EL65o#X@ll@fONkc)~&n3nf|YEtIuT%8D8G#n80U
z0!;d*HYau*l*t$Lw3(lB=1^uiD^|6*Xo7_b7P!G;*8&wSv`q`-EXb>5#e7Rlfh(IN
zdZ4O>>K1BPNVJe-p<zzto8JbiS+Q`?QLHdEE!475$3k7fT(dg9wuPUj#Y#OXHPo{J
zE0$xtf-n{1W~bD*aOrwr`rMR;78+UTYN4Bjrz|{ep{0d%3ym#2W1*Ra<`$l{kZi$k
zp(%G{!E2$31)qiQ-p%ATS^Uo|iUp1ePdCfvqBMz1u(6_6pPACaLcl_*g%k_VSs;^J
z=I&}b9eI4xXmh5&`Ma6t=j7e}B9LLBm4%KLvMsc>(8fYL3+*jr(myn2amvf1W5P>C
z)G9ynZJpS?gN5Mylq?I==fp}Vt1eFg4|tA+&K9~bMhj9pS+R4(g?ItYweUxrKaYN1
z6HjY%hQ}^y-7Vx>7-(UTg&r1qTIgrtc?-R0`9oiC3w<n1o|W=+YAU-07W!KFZ+R?;
zbOQHYY_rs#0lJtrKrF=T0`UuiLz$|pG6!3bER3`;%EAx}LoE!qFv7wx3zg=lm@`ve
z6d@y^{KNTqFInJWXX9ST88kQLWedC(kG3ES@QQ_3E!?Y|HgIMN`D2%KQ|Jc^Aq%W>
z>~hw<mBm@T_wUOLTd~jbx&^~RL|}IR`ZC?LU|E=DVYUU^f@5KZ7<DZ~Exg9iSQukr
ztc8gdCRwo$`{OK35MaEZ<RmPK=Lc$j9_I(=$$~k>ihX8(J3DSqdfHUMA^3A%{4@)1
zGE9Q=2AzPkdD(H)z;6I3&rjkrEu2qJI}lfjAI9fcm}{ZX!V(MfXqAOU%we9pe@iZ~
zu&`+LPs-G;*vb1=b{rd(P#eEkSSm)BS>U2Si*Fv53(g7)E9t#XUarf94oOLC$mj8~
zQQO8k3+tJm7OwGBTG(jeLpsxfn(W<V;edsM7B*YhVqvR=Z9FWS<2dvdyBock8@>DK
zqGa!O3vXN4A@EKMy9Id1LcI=gy96en*dBrR3d-(23-1d2TDN$1=L?00EWBr-wiE{`
zw$S@R-~%!@dVi@~wY(HZ;UgA4vhan4GZsF!aFpF-?<ouQJH&lr;W(3IqxVzhBqN*b
zJ;t)%A&!7cP~dZ#D)0#lCyOlcukimeIPNr~-z`2eFaAplUs<>;oN(5{ISVy6dM{Y`
z+QRsaUaI1D&Re+A&PV=Z`i)Tat)Slt`n`o81h^<DSN~Cf|1swUxMbmH0j>^?`$d47
zn<a`}5zBE2ZvVQ4UoAYc5NG3tg_{=cTKLPtZx(J@_??GZm~>n0owjkOq<>oAcIeML
zR3*j0f1>-hg@43C_j!nfAO01T4&lZbO)mO?XWYWF3ImkY@n3HAJ`}j=CT}qt#cfow
zQQ1bkjS@D>+9+qo;!@H^DI2BjSkClW9Z&z%+>^vs#)faBmo6%AW9;hqCu}4Lz=bN<
zvCvesL9xft=UhguijAr^l5AA7(V{~f!<uNL*G4Z}`Ay#HHfo58HHBu5l20S4iu<i&
zqpppUHcr{7X9G428>Wr=HX7LIW23;vlQtUK$g<JV<`Z)8l#NsyX*Qm=(bz^aoByH+
z>3GsJHlDSSOv&Pb%}e|q8(tetZTL4!O>7J=^!sT^yTJrL(S7t((hv7iTg>*ITkI#Z
zg^h}<5>sqENB=DLciJqiS?mwk_~>Nd{U!cEn<a|1w2^M3osIT3GHkT6(Z)um4Sj;I
zwT(`Ner>Zvh3p=g?fW&+*H#!q4YNZzuWgP!U7>>=dmsacwhgJAZ6n7<cN_T(%16FV
zHagqrA~4sgwJI@JOz$Q*c{aLo(Z5nxZI(#6M=I%I<FC7^y=?Th(UX<o{djg)Pw?%T
z<@<hBiKtsZOZwXAXX7OsBW*lyqrZ)THU<fs2iSOl$}3iySLpwDQHcYaCHi47ooVAm
zhH|!V2t&3iai|U2uqZ9#m896#hA~o0{WN&EjS)i68R48Y<NTv+ylg|W5w`J)jaO~R
zHWVAT<`&GEkVLPJwsAPAAC>HL0zn%g8;@PVcrBXjQ@P4y-_6ZZL;#&h^>->IkELal
ze=R<tj?c1T+t_Sliw(zyYh$jBc{ZXp#@Kkx#_P;g8{=$DvN2i2alDNQ%=0Z0SKnOd
zCzvSsk2zDQt<XPJPzoHL5|1s?G#hW&7_zFwn>H3#jG0Y3X+qL;rm>hynVDka+{i2&
zEw@Os1)U>C*`04=fsNHR)(8z0TPT)TB<Ny63kBusOPCTxc$ompZLAPrrJ$>dMj4T{
zEdJ~+@o%)Tp86O2H_!uxetL<~A-_kGZxcPUJfTsaMDn-V*hZ^tyl>+z8{2K{wXx5}
z+ctI(IDtKM_5O^VHr^3F@3AG81G|_lTcq8BGF^!y$CH>>@7maJ<DiX0;shNKmV7cL
zo-W#YIG<S;-6Aod-0ufAKD6<PjZYbI8%KnxM|qmWDwNs&N!-T*GvdzFc+#f}{htZ7
z$8CIW<CsW(Zoz1o!EH*b5>MDzxFvQBNl)AOf(6Y%Ne5?ad}-sBjoUW9vT@eN&o+Ls
zan8oqHh!>i(Z+cj7i@fI<9i$5aQj;%y6am3xZibelwh}%$gyu5rg1wz+W4P1s+YKn
zEfO6|Km5cM@1_#4OZiU|eV3WQEb=z4*tlxrnvLrsF<J^4`h?-Qy{N=Zv3*YbO+@Xp
z@9Oag({I1q_`}A3HXe$#{<Lw=#=kc1*tjbWAUFP(jlXUDQ{-wY<m%sTk?yk=&5S(=
zrS^jO2f}ZxGgM2?BbLy+sl^=R9Z!mLV%3RyiaQwhS8BWiTF#b#GEmAvX$SQkG;mPH
zL0Jct98`8t&WWA<CmbX=C@(O(^8Fg5ceY5uS^X+FsOX^j)>y40t>U1ngPIO%IY@Lc
zYDtM|9CeW7;NvEVirJU7V!_n-8e(aV{<13;(Ao~_IDiA@Rb3}m73&F82?n<tOq*Fk
zn{JI2;U^t5bl`K~chJbeQx2YWknG@T2aO%n`=AE(pBNXbb<a4lvoLd233|!nz@Cug
z6^mY)63<j`;>4=Wrn{-EBuyPOa}aQl>Y&r2jON@X6)uP$u%rabc#4DPoY+->vmWPX
znuC@OG8_zERf1>sh)9EUGR1>#S~+Mfly}-HwQ-P1AAaPMj%4`$P9<&cpaY#V5w#~G
z%RxuBvB+j~kmI0z6dj`I<e;;It}eQ{=;9#P!D$CyFoI+{c+<gj2i+WWcOW}Z9OOIb
z;b5SHK@NI4=;ffVgMJQPTpu^g<LT|75B+~9xxm3p*|VvN=c&8N8|r(WchKL#iI+VC
z91N-A+4oW4_4~=qU-k6(Y~TxAvAU=KgXF;uBnKlIN6I)D>R`Bo5e~LoPaa174mjmx
zGY{#|tx_Y&^AcBo#xt*5(uRMN3w}?&c0bwNDpBBNdfvgS4*u6Q?%FU9`D~*dkT$(p
zHRvG3gmm~SXQ&P|2NvVyAnYLGz;Ix4N5`vjJFDV7I{o>I*MBE@(Cy^Ct>U@Ru78r>
z9_?`)L>-KA;0p6-KQ}d2EKzv0>XEUrMSGU<OmHyK!E3bK!6dQ$$quGCXtF<Wp@wJH
zR%xn(qvJeXUWp@qUD$c@Ne|bW=HLyX?Lxq_e~4!Wo$25$2iqOYaxj}o>tLCKIS%GJ
zSma<a)6YTrGoJYl7C88@k*D3=<i=g%zU`Q|Q0ST1-xH$#N}fUo{Nwl%;Y{;Z%rhf@
zOJ45qoswARV7-Ht4puo>%kEZbwFAb8_N<{>?!@9nCDS^4ey`zaH^j5S!A5T1!B%dw
zzh{$!%}j}Ap85}ykKas|GCWe2hvC@f!24WG37L%7+YWX(IK(7(u+zai4zC4xSJ<=5
z!5-$-P|y8hp54N1e^Shodl|C($xNsH4h}fDn^WbWkSB*aFaMiNdvf&7?>qRw!DkMR
z(F0=oN2~)54m&u)f3STzmWrg@K8?BXU-D50pEzKO((|7(t3Mma*0ZJOxP#9foOCd{
zZEU|M==^_^Irr(bm@y}EJf|EKz8jzi&N%qeK?Rp@6vbB#&N}$h!5s(Z9DMEIvV$uQ
z&O5l^;G%;c9eg9K`qsgB4yu&#eD`sM-2allckqLQYLz|2^ey!h|Ifis4t{p<i-SwT
zCp2<swXSpyCx#;)vr!y#{<}NLSE<v%?+*TOaGj;V!A%FhiG{u!6H9{|0{=I{BPYkv
z{#y=iQ|uM*A#qr~+A1+pJ&wj5dL{0_o#eX?{&MihL7a=f9sJ|qfrI}X+++2-o80SW
z)%(Kp|8j|o>5L9@jE9|OP~k(dP}PB6np(_7aTjG=lywpBV(`DoC0vwrV<&yc$AMBV
z7`W0d`V~*3No%L{Cb+s)D(B*@|6)0r;G(>XCtR!==6NU4vpyr{dCncAdMdf7?85J&
zsf#Kus=BD}qJfJ<7fCK^xv1@;nv3c#YPhH=7GlJCBA$OKmH@@JNvuLlm^yB(p0L41
zT^IFSzMVXl8;p3MRV;5Ah$me%bdl`B<D!v^r(8Va;#n6@yI{R)?BeB79v=2zt9y#&
zc!;ZxtjN@=yG<(hjK}NZvny47E=n|x=ecX*#_A8tk(L@us%9>lyU29W)<p{!DK1*N
z{9z=X<HoC047f;jF=Tx#Udvzdq*1b=hh|so?_oE?MJpG}s(aeFF#b($?c%>blNUD0
z3~ZBVOo`jcwF<oLT(oCBcaiI&gNrN|IW9W6=;$Kb#hX{Fl=&x_HV@zFOSuu-a%Z9B
zvGeJ0D$H}yGcS*RnCof6RObQj?joNNbn%6Y9vpQs)5R<oy<GHm5p)r9(Z@xBi{UOt
zxaiCHx)|tUkjwvJk5z!@={FYxT+D0id4U#oifwAe&Ez}R5{L)8kX#IPG0cr!DY|Zx
zhKLwlYTScidXXNxoqW1dUDb+RR#;tMa=~i+vWr(-j1=x2<$?xZ5GCtX#_MkKliibK
z7o$buF@Jc(6c<rn93v8VKcKqMT#R=y!A02R`+s4&uw2~uy+$>^M;F=*%0Enga(YEl
z+lAv|jEk`@T=E&*=i@KjNS@!+Gk;_(?Rm;bc_?VcIAQ$N9M41-lU%&Uu8YYorns2u
zf-YtGqURZ68nb#{z!_a}8r_u~_XYz*r`=BG<z~7I=IRXk_I|9&v3?HSCUI!C%U1?t
zyNkD7%%wkFtZ=c?#e5eFTok%kA{@d}xzNQTra^iv|9LhSi$L?TvXm+0#x9Z6yj<v~
z<-FvvOGmA8vD(E(7n>OF`^jrutaY(Y=!Bd@gVz&R^8D~;@@K=m8^m#7DsFbM#l=<^
z+k`^aC>|p2f>nr@=C@pYm+U#;r!RxM!^KV)AG!G0#XF3ni}zi8;9|FnJuddUIN)Nh
zi+y7I@6zqtBt}1?#+>~7xL6IDaVPoF4&Ons&><J^xrkMXN}h%Hl4%tS+K2RvUiq+#
z&-YZIw~uf~f5f)Ny&rY)2`dAKgh`+BsJi_5Wvs}s{vTsuDdSnVO=6mzU=`|A<!WWm
zDUnVmMO=Q-6InBdt@NI8@uiCjQB;iLD;H;Jt&2ZgoOAKDi=UYGF3!8S;Nqf-A6<Oo
z;#(Krb1j}7*;Dm$0=@kmv%Om$*CkCY@GMh2JleG6e{|;cWY$=oM@IZ-7r)TwF0Q+{
z%+2P;U2$=h-tHF1gS=y#RJDVL8>IZNOkfwcT-<hXQ-o~CaPRng$;^S@=<P%g0o_=<
zQd`F5x|#T=i#yEZC`v|g*Tr8h9=dqM`tRZ&7x!H}aB<JYzbreSSLPJXeOTJVn>rRH
zx`_7=|A{EjT3){>5EqSAq~cK&i^hr`i>f}<Q?7ZF_-HJv2^Rlcxl|P8q9`9l=_txX
zk@sGpY!s|T1k}k{^v@GfBt((b#FKX;wy4q~mYkKMs2s)9Q8bRCN)%P2s2xR}C|`Ju
zq$sLKQ6q}EV`>j8A5&5-8aq&&RWpjg&0|O4c56?qXzZqoH+9rmH;Q^uJQ<DMN%DLl
zis$bq*N=jSnr6`22GQ94>ZjYJhEX(%;;AU6P3fH~{7=AqdnSr!qi8|nqqsc6lN^OF
z3V#%yD7;ZH?VCjL^EQc>NSeVa+Wwh}O`~WY1uGbX(k#lSF?i^@Ex*R@7@vzG5Jj6P
zGNVY1A}xxHC|X6)GKzHJy|?ye(4VYh-bDd!kT-{{a@5m08p{@5g?T?b=4$P>Q7{ng
zqToUBF84B@v$znMW6*vKvZH*LH$IHwFz^4P=p4nQC?-eICHj9<eFt<ERTpj~R1rd`
zBH)K&f!s@C!4PUF0fdAO3826rNRy`0MDO%Ib7@i)MFd4rdhcDpj*6Y8BA`+P1O(Cd
z&Ee;*_tu)V*FO8SeRezhoJr;)KY@V>45CI7=$JrZ0!0aQB9WOtM@vKjwsQhoH)WTY
zncYnkdkQUgPoPHv+<hoF3YMa#d2lD{MUj$o%0GcVf=P<{$%Hryuzk<Sy!#4nnJx}|
zD_cr{mPuVaMafeU*&;|*h{k-YL(0<$3{K#=1fEY|NCHC>cqV}n!bpZCq78j`0<YAK
zF-DP%%WuR-Ch$^5%7FEmV+50<5*VET;|8CxPvkx;y0CWR`1G*}j7#7}wohPu0uvH=
zA%RIGW<@4VQBM?&>6_$D%Sj#HD|Tb4lt@5MKuthPfMG{TL_vmAQ`Zy}JL(A-luV!4
z@gdQ!N*%G*PQXcEVS?YvgUexQu?fteX(bROFg1Z`34{qG6MU&xnL|ycDE4O4!KVm>
zBe3|X*_B*zcb=ZWidZRzIBI!j0<$QA1YV`p-5qVOvlE!ZwO5GEB`1BN*g`3hjd=;Y
zmcaZ3-bjGaj8?>nUKbi<1CG3aYe``J(mXDNDg94%BX@W!fwvP_oxqv|7ANpd0?QIu
zF4q2T0`Dg<W=NDfElFVi$k=;{X!9aM;!>evA{==|0;@QChZG(_Rtl+dX=I5$yEcJ!
z32aJWGp9~q0}bqKNe;+fTs1@V#)SAw<GQgeG{OY7C$J-dZHXw2XEUy%@-m5$nY#nS
z1+zYGK)VyzlfdN!t|YLRzMsJH1b#|jADK+x>jb_@;6MT&Ch&Oz2NTg&`w{JvQzxQ4
z`C|c@?{SLH7zFs2)ag;Or{@=Zk-(QU?;)`z-D6*gg&d;SFO#TuhA;X8hx(Q_O!*{m
zG=c9q`^jd91-CyW@FN4oKar^E0yLXa-ODp`@UCYZqa-_}@W4fZx7wNZGgX<unFP)z
zaDqW5fm2jy0t{vC%0}8eNja;Lh<+1B{s+VFKN-J^S<ZKlF&Cv_kePGrLa#qn@e<o7
za3O(<3{aP%?UJI~d@-HPcwnR={$fnNn!$$#b2Wj#6R0KQZW-4SxSqfrGRn#LhqG|Y
zkWo^`zw{}(t&CI|DKdusn{k^QiIE65<?Bsj)GVb(?eNS}Tm}y^oTZcu2CFhMZkO>_
zQLMBaZ5Bkz$|!!UWX{Qo9D(jXy?;S@8EG;q%cvrwf{b(-6=iS(qI{_0vS%|mMbqA~
zN-_v}II1e6nv5DUYRb4%Ms*o?$x(1%3P+E~Djoaz-zfOgCAkaC&!|t{o<3O-GHT0s
zSjHnV?vZh?jF^nLj0sIr>&UoY#se}wj@7?UK=R2E9+Xj6Mm-rFmPxd<3>o3FOd=5+
z9zm+FzKkpx56L(+wtc2xgB%*0v$;CyM&yZ)%4i^?k&MPN9+QzRqoIr(ISPGrABu<p
z^H{Ga1E-qQCaDaMO=L8a(OizAO;fIVWYjX3oR5gLAUq!_jyN+4c4;jmPsTPG+hw$2
z@R#v|j7c)u$#`7GKpBH%wC56J6v`-)kuRe_=%Sm9jxsvQ=pu@hc4d}7mqFNBj#A>Z
zCb?aOmN^CU@a{5t$Wc~9mUsu!Q;sqXil~>2-ZJ{h=r5y>j3?yi4A@tW9M)=-nz%pq
zq!^rA*d&oFZtqlHqJ@yj+OYvNjF+>y-_gH#DC2-n%NQ(U4Cj?Ggq9{_gp84L6ikN6
z7%t<!WZLQL89b4Z@{AmrH{J94=xFQbGfD<il+iM%BeKfl*mE+*QwYnX=ViS5OO>%Q
zzn79ePL9r}beT{8$zat4(O@F2Xnvf<7iGM}8D+dqImnP@Oy<I6C^A$TE>$c;lcCEn
zWms~wV;W+OjKJjW&79c7Lo3^IbW20|&<q?IH#TOonNO>}mJ!g31VSY;j;;G3I_W2A
zMOC5=WvYy6GG@t`En~XOR0msgVl!z!sj(S!()*)0K))FIUD4$R^@+@pF_%k|F;B)T
zGS-fc&Z=uSXA|M<j6ZY%9*F7>iOrYshK!{$mdRK^(;^Qt-jT6T#v-wbx9JYtg}Gjl
z%v{>rfl8#hnbp(U-<7dM#(Sc6YF1>cU$l?TLGO#c$V^!-V}*<jGB(OsDPt9xk+F`x
zTspRz@~IG8LpwR2F=-ip-Zwg+(WH5|u%4nG9W9FK0adn1#%38?gm=*Dcw*g3o<#(s
zQ&VC)C|Cv%1tk>hlCfLHaT!0!*dt@Fj4x$;CF27b`)C7XOvZkpnh%9R9uTZjEQ{}p
zcJPmAU3Ft03l4kMjD1GarF*_w;R_iDg*v!8{+G(NSL0L-IUi6vc1Xt8GQOAbgN$!v
zd`mus$#Kiz&Rh6%4Ys5OawB74{87dc8AoLt7WPJy<0+nWuJoAjtTTh63(}uu{37E|
z85d-nknyXG-(>tQ<0L~0ZN5i&vdWF)Q0v%f89R1n&sipQD;@ho=D%m+tc-I)s!tZh
zKAISN=WND#87=xn386Q+>&Q|u;umFHVr-Xjo$e;%vW%-T{+7|}{!&-uC{3l7sSB!r
z-I-g~9aFjKgxEhcT1I;Xw<-8n#(#A1YZ(ky3~0>0XkDkaXVZg<DN&}EszhEu5fP`3
zN-8L&;9doF6n=#pWfW9VP*uV03d$--Q&2&{9SX`RD6d54Wr~g|3imq>PS3sGJC?4X
zqJl~aDl1WrK_cbGq>eD9N~94AvzmfC71UHvONow4)s-ls-lbsavgl-2JUdo{<Dbjm
z;5@?ItpEyYD_Fd+I1~PDrz>$-TEaa_<g+~Q+^67v1q~EDrr-eu4=SjyAX7nI1@#nU
zD2OSM^^!w6DQAz1B4@mL8%*A^6g;Hh5hc3gdRU3_bB=%Kz^q6t?P8Bo0_o8LnU`iO
zXs94p;m-{tM?oVcilxmIG*+<VM5iVSnsWK2qsvdqgpd!tn5NZSL3%tl3KR-j2?p}G
z_9l@tvSn)}${A+f$e{m{(oVtS3YuwXuA#kx4hp)d=&mAPL4ks=6dY2}Q9&mK(-cfs
z&{;tj1<xxOtDq|zE9kF4QqWyN4+Xsx^j6SQiS~UuY?0u(P(TWS+a+i0qu>bzPb%oE
zpqemRUJ=k9=n?&tC^GY8%4~$l00mDe7^z^Cf`JMKDHyKc83j)(Q5YPeV5ow@G_7{A
zGo#uO(ogTYkwG|2iF}rn=P%qz#qk*-G)PnA^(O6kw1P28bl87Z*yM8p-?L0&12!I~
zV7vlVfu>-Bf{6+yDR_~qZWv>bd_jq_2o9d${f~l#0!0k|O~;t5MCmBk$mOs|bwA!N
zrYkTMBo$0nU@EZKoy(+2D{vIN+brgaCD0lfOZiTOI;EWlViqzpCM$*d3Tb$MMakzB
zL7(<V##ALbH+9{ZR^x*dUI@ReU<T!^V2y&A3T7#Ii%M58TfrO!^Ax<MVCP>Mb7^t|
zVy_5)<SPDDVy_DOXGZ$Eg82&GP_RHOhw`T#Qi*RWQ9iR!!6G3ms)l<p?U^xwD_yMM
z9eNY(nQNi7Fo#$0zCe};NRfWGOyZ74<K#utas?|CtWxmP)A4s(rgDLtWhKpNT#UKI
zFC`*(TdQE5g1rhpP_SOX1_j#`Y*(;R!6pTp6>Jgw^98{<Zp6Q3FfES@v20bMEnBM_
z+rh;u*sWlX0$#px%U}Y$i{@H7LZ)m<=NW`7jVP?RPr-f#pDFlU!2tyyD)^X#3j^k9
z_am`nE|Zt8L#xF;Rru+-=%7R<8N?1M_(H*#)a<1wfE2%$(SBH*hkZIVP3vm~-_S!<
zR8sLR!;XTh3jS8`y@DUe6@{$eM+Ju!9H%t6ST$C&cI=3Pqe9pJw2K`RNQvbVRsXXv
zk`oGkRq%_je`ZjW9xoVAD!_7yL5!2q<bG4|JL92(3kv>Fa7Mv78gRQPfYWFhXU<a5
zXQIsQJbnLC2_BS~$X!%$Nx@$VE{mYly>4`k#+%G5LZp-`7x=`O81v+73a-=kRFqKh
zkAfQtQdHcgqVaO+Uj_e>&(oEtXsVTSQFOmIOJy2HR*R`fRik~J#>2Fyq>551%BZ+q
zMQIgGZ_4nBBQ;tAV`Etrcc@5HQ9+GjS2-2GmW`EH(YJrReASM`c`)G=>1yO|Oh1V8
z4N+wkRa88r@_YWMs-l{TIx6l{ai@yvD(+SR6?dtqp@LVnwbUrzpek#s;<$GvgDPNr
zn7ci@Hd&?1bV#{Jjc!L7G0LaL?iKC-ZY)kQD(b1oQ1O6@2UXNnql*`A7F0b$ACERM
z6>$|=D$*B3Nq&75tzM7Qax%qSyep;<NbkB_dPK#etX0ukMFSO&QIaZ}sK{2)P(==(
zlNGm#cOQ)Zy!vjWM#(c-r8b+YXeK1kQjK<AuBEw(Tngb*Mhi9C*C=-4t;PABhxa@c
zZ5Z2C6sY{!f++odTt$1qd^;6g?uuNV`(OtZyi(vr9C3=bql!*kJGoUO<#Hl&-dT<E
z{4N4=UO6*``+g4<Jym?D;v*_lMUjfBDyFIErJ}craVo~E=%eBZ6~j~vSMekjs$!su
zK`Q!j2`VHN1Jo$Me$hOV4~^j|!5-OQ8c+7PkC6VfiXke7su-+BuQFLnNa0f^bXCTv
zXH<+(F<QkK6(dz--Vx*OPoEt{@z#x1uM#8V&BL=Qo>TEW#l9<>gO8=Y#Ma4ic(+4*
zf{KYMOcj=j7gS7Ap{me0Db2EZYC?s~2A48kQlne1h`l>wiW+V1ydt2)IHRt@5Ypqj
z2JQ<K8kfM9whBi@s3Iw9T@}7q3wwD&&TJFVUpl04-=Qm2E)|<hlN%PF!j|o0v;n$s
z#nQ3qRF;b6DpshNLBm!tU&R|LW~rFX?lh#Pu{kQ{s!_J^ii)niBG=}C9OP9YTRPo5
zHF7;p{W|s1qr6)`#uLW^6>oBxDi*6)s79~h-V!#mh{`%2T|bgTN}e3PL%NFhRV-Dp
zgfbZxrC#sR(r!c=Ax;<O<>$&ev1Mv>Y^0_>D2lCAu}Z}j6<bxTR<TCKdKDW~tmVAo
z5__E*B}g~7iQg7R=ZK9$R-0995@CVEmazLCemcf0mu)JxtBj)9r$*V}4i&pp?56*&
z%G@c&VP3IED0;6NC4p2fl}?0SN!{%iR(C*+E(XaPeXU1})Q_nM6)75S)9|T^&s3aL
zaf%M8;-HG}Rs5jh3l(3g_=Z7V#aDv8L&7Dat3|%HUYhqcWqvk;+iv4d(NzPb@f|~7
z_wtnCk17tU_*um-Dvqc)s^S<K=A`Xn{HOTBL}jU6>~*UOg+SH(L>2Uo(}adDmrgJq
za;||9PA{&{8-D(ggNol&TvTyM#qTQqP;pkpITdGwz7(;KjD4{^#W;9Q{5+#KUl|Ko
zc|0sX6TiS-&%`;}Un(xExXuPDt`NB`c2xw-lDV<^W77Yo7jMd@8DA5=PkuPy4Hf@V
zbaebP(K($9Z#Xymt5MM|P)tLrhPyRDLvalyG*r@1Swl$;r8Jb&P+mi64P`Wx)uK3j
zyM{T-C8og~mVU%@&>b3><j`zbo2Eq@K?M!z8fX%fA&V43?-ybfHLP4N(YC8-sH)*E
z_R>&Ii{A9zsYMpc{F7Nnb&bE?n?~bj0>BNOmR3_kEiKxADP;10->6t^4fkkxR6_#|
z_iCu4Awxq<!+ly5=O57UpoaTN?-ZS*c`rKfrC41J^|a_U!7HU=EOIE?Ra`@T4Oto<
z(xNEAeLRywIG@2&D%bL`24*9VXi*@gZ|-;~>UH4du8(QRCjWc0n`mgLAxA?a!9Uf+
zRJq&tRcJ*U_mpp}Mbf5iG!^n${d}BL<Z5U^&UG}<(NaSz4O=v9)zDf)9z~%+*3d>n
zTMbWX7^tD0hQ~GZ)KJL$Uqc5CT{U#mkguUYLnjTLHAI=u!;wdHq!&CKT}LpKb<v_T
z9oIqwAktlne2V<{(4xJA((W%}MUjSH8v2rdExPFAdV6c=qu~h(<Xpy+TC}Z@$oo>>
z%rN`yuYqas01dw*%7-O3s1Ti4S>)7%G(4?g4DCe2U=2ewJfmTR7Hx<_sS!0cjFjb>
z9CNq^S`L*(4sTq`7^&e{x3p0jh|?ZeHJa`Jini?MG(4|i0{PJ}R>L?g`jZ3B#e`?P
zV2`;9aSHzh4U;syBo_Fh79B`)S7!1ugjL+l_br#0h$<RX4f8d;p+VE2YnZBGng&CI
zsUgr1YOple8hmQGYj+x(qrnvu@q%=5R<uEQqR0a*jf9jW4e#zqwo^1r7F85Di?!#(
zdFwKr{AhSp!#qk@!%Pjc=|R*^rvhg6u}5RG=vil@I84``tKk(P8CnhlGR>9gvBG<J
z@|lzRI#pjf#yfMKIJgBY(D0^)_cbiluu#Jy8vhTK-qE6W!Eb4JTf<_(43`i&=DPCr
z&ZaSqe^<j2E!x4~<Es0_+RTr0JEoN`)398_dJP*ite~rESgm1=7Tx;NTDY858oJkw
z@npwcgYsXiVIBEt6s?rwlX)T=siSeR%_2~2(ok$@9w*}8@UX!)4cj%O=(tVC4h=gs
z{H);@4ZAe#*6@XfFE#AZuvf!}bR1g3#_SI??ALHW<Nq;%sSfRyw#`|X^6?PCfbcQJ
zNSoL2nXs0}hF0c|L!<hfJ3_nI&c8AaYSGO<DSUs#j$dgwq~Qk*KWg}zj(;iRTl$5D
zZv?9}HfAX|@?zg}_Pl60gk17r4M#K_rHL{ymWs|1+Xuv{;^SKMn&T(>=^Jt08#8I4
zga5+d&lpI#X}GN6q=r)(e~ScXMKn0gs7T)t#>tGDV)=vJ#cNOskj$Uca9-%;Pfj{6
z*0W(ch0k2*f`*H<+d1(|!pFHf;^gp(hN~K`X}B(Q{Wmq(G?hvCdym%Va{l2$#AyFg
z)GbpP#Mp(e{0RS}dDM=OVmeZF+^M6wj^a8>=qRV7ypEDOO6e%0<91!RTZa_xKBaX~
zlC)~#gC?bw)p3U&#TjP%3@@ao>8PNivW_Y`()B2MRMb&PAdKfHw?ywlxzfM$%X0);
zT~$2_U)2Qk_%fne>@FQObUdh|u8x{IYU!x0;~sLtw|+z8ckBEpSqyq)QG9MJm+sY3
zM~r{J9-Tz)6WsEcLzkzNINbw!v?-9udOCQ+8PgHhk)cN}z;~DTu8`{M$kg$Wj)%oK
zS$gzphK5baGb^Ac^0n_HdZcBVeTzrxKc*vF$2&US)zMH#j*e$^jL^|YM`In`b@b5D
zL`PE{t#q{3(TpR1o|3Dhg^uQWln)>Iu1Z}V1D}agXuK6{DVSj#%hS<DM<*Sfb$)^p
z?Q|6A=%{1fmYR?2=s-0M%xbUWxB1y8UaCx(FDN8Zq<7U%Eq5`UNg$WpMUUR3ch%8N
zk2Y2YQrZ&jmb)rt-cv^*8|aX96zS-tqqmMedh|+yugqS3E}bJhK{*Sq`U%)>h16F^
z&tcJDKG2HzDlm#pI-b%ogu0_}bPVG1>&ABeQSNCSgY{@z=jy0*PD<eu=l()|cw8E$
zN3nglfb@cqI!1989lnmyI>xZC4w)*}@tn@TPsRit&+8bgM}JB*PRHaYa=CYNr8EHU
zP1GY5JyGW$^x{PwFX;SATU15(5?6PBDS9Q3S`3&p14W0b!`9*Gn6o2O6V_|!c(YZi
zu19$(!-Xjf#-cl%k2WA$9c{qX!7Pr#?7Jem(+G5g96`ri9Z9mJW15cXV%1Z0j9Vei
z7Jq{`l}hgymq*54)-glJOdYf6Tva=A`G0jQPjh7~ovlZiKN;TsXC$jvbiAr#p^in=
zyN=g%EFgP2$UnFE*LBPnIOE|PG_Cbb_)uS5THiZjPl?m(TeQrIvBk8>(XqGn=#@9w
zCZwSFE^-N1r{iZGzvy^h$5I`8bnMl!OviE^8+2^cu|g<)H3hC?rH)l(qgwRGBz*b8
zK|U#nt<|xP3Cv#^JY3LbNL)|LuN&nan{;eugx9fCnEDo~V^nOLj;(t1-h{!2PQ;Ge
z_2{mEZ12*so01tC=ioO5LT<V1eV}8X&R^@scRKd#IH2Qm9S3!MsN*C0xQ@?se5`|M
zGY9-c*!lCzGKqJ;lCg0@Bv1Klv{`(?_GdD_(s4+~m*k;#^v7(xkR(@M>-a`TutH)3
z9xG_2WZ-)pU5CaGQ*Jtb5OL;5u@D*(^*-Zt`cWOnbR5^Coskibo5)Y>a-c6qCQb%U
z==fE~6&+V~oYZkj$2lG61&61FY5hSL*73WDRHxehPatP>oE7nhsWrpSCqvu*spEo<
zOPol@MUJ*A^L$ao(lWR}<^Y$48BkUfEDeLH_}@CN=_qZWjDhPq{$XG@P~5-`9slY`
zF>srK|EQfyQ3R&4h_E9KiJ`KX0on%hG(sw+gn?2<6ul|Nl15~oTvx4DsVv@Zpe!i{
zDjAWZ-C-cjKm`Nk3@lh7l^2j5iPI|nEf*;w-H1GkNnK?FRSZ-$P|b+Wo{S+JmN_#S
zxYIy&BU%Vo#3FS;zpH7WmVvGgx;ePp01Rw0u-QOu1NRts(m-DW_Zp~Upq_yY10}rT
z_Zhf$I^%xMSUJbMEsOXA1|Bq!=u=czKqBMz=EV%e4P+X~GSFdnDx2}CFZ%X6p8Jr2
zhYhqe(8|Cg1|Bug$UtKQ`&UQ}3}hQ<DDcN9=T?P3t&py+ka7&949jZ$a^CWFP5!Hw
z+r&Uq16Pie|LB#R^vi9V8OSxzf(zfB*IdAD_vf;GsdY`*VEeK1t@+3Q209t&Y@m&S
zwg%dhF)GEtyFYhIUn%{G+>H<BJ}!y{_vAKSDdii8{oTBPB9e>d-Jjc06iMl{QtCpX
z87MSRWZ+1x+-?SX80cxByC|->FOx*B_q(P|$V0qJZZ9FOJ_epJQ1{;4-Uf!Ql!!cf
zPi~iA8WSojrG5tb3;9en@cG7al7WE+1{oM&fQ&swt9z}}f|b&d!rZ3~3^p*yz>5Zk
za3}*~3_NRKn1SI2MjChvxd#_?toUxhGX_S`mfkHW)35vfl@bwhHOj!@mC|VT>YPjD
zIRnodm|$R{fw2ZIt(3+KZol1~H_iYdm%vq5tCjl#jc}DzQ}9e=|GvDJsBwco2oA@9
zY(O!f8qkEMCf%3YuWoLcCi%Jn!@$w`S(X9Qz<9HO%b|RTeE)3!>9uq3T_w2&JOhD&
zQ1tCkt`xQA8#wSsNg_!DO;$-otE4Fgjz5(-S->&Pn&g}*IdPRV&A@a6FALFeb?Xhx
z5co_1X9+mlz#M_hHSnf^g#v#?z*h~-6Ub`@UN<mb;2h@-1HY|~l(;}p9{##K@kNxa
z;BbwAZwvUofQt>hBan9mOj(n=#K5#w(tDz~WR<kkz%qd^H?Z<%n_*ci1VZtyx<y$n
zkk1~>U3-hN&cLW6<y#?l11-S-4SUzB$PDJ*ox8=rR<dN_Z428BY$tBwZ4)~T>@@I@
ziHA-8mp67BxN6{U1A7eYrHN7<20oy_XBT{E;3EUy4=LD3k2CPi<=g{w$(QpNm&#%7
z#|AzzaLB;d2ERsy&kTHF;7i)4fnsxW9=uR+kS39xNxW%F$D7C_LkqrQK)6tFllToy
z$iNQ<el+l%==Hr3{WAEsS8~~aUD%$;VKOtmkO(^xIYt#5I8Qq?@RNa`4V+@MWJtMD
z;THoZ4E$<f#kGQAhx5}W6q3RLPclwUC?xWmf!_`MVc-ls;&A>qt0WFP@3xMtJ!{|`
z*C;6LPUPQJea^3vE*QAX=~hV>Y5xZP5_r?q5=SeuTDo_&RJdBYLVsT^jae;SV^Ct4
zHBr^XKMej1*Cy^T@h^kFfm9R4O{AE(&5XEx{DD$jBRPzOV@4d3lM-fBEM=m!8F60H
zM91ucXf8p&-Hh12Q6h&N`l}`4<=D(bC6gbli+%$=%|yD1iY6+UsMRo&4~5C9KC^1{
zn^l7&7yXl4Sq!!OQb9EncbceU;yyAqw4l0)n(SrbE)z9OJo9Dl<)H<9h}>-gChjqD
zuc#%ZwqS3;YKb_XqeBabbCCN@JiyhNsBhvy6Ln3*Opu3qqJ4%L*#?z3<hgEj@*?GS
z&Z~G+vzcaOIkbc<6O;pqWcv{lkD7Se#9$K*Ogv_yt%-IfvQ0EJ(ZWPa6FDXtnP_UF
znTf_?mbHiTn+Rm%YU$u=i3Z%<1fN_n`vYSNNW59qipzO9KhMO(QaP;!WO47%f;NIq
z;*x4z9yih6L=O`^O>{8%*|EY-COVtQ7kB{`Wa9VL66u5!E);Yz(UtOCBXu_s%*i3W
zn<x@zEsI17O%$2vYoectUS?!<y-oBnBQKzio-iW=ep0B3NTk*Yh17L_L3zr=KogRQ
z0iwt%K6Eicj>GnY#M+4rF)`GHWx}S}m>6zi0@p~*niyeXw23h$XoS@+=Z>VZE)<M1
z@pCe@yO{A=6VI6#Yhs)jjh^_tkREHPJ8F$O9WNLl!^B@OG0B8tLKT+tqKSk+USh9F
zg|v{HP^Om0782)kq<SgMgl@v1iiZ}M0%6PLW1{xml#Y%G*TftXb4_?Ad=t}5Os7;S
zc@vXOOfiuZv#|Z`qYA%B>3IC1zB8WdR=Qy($DAsv=%g>3n8D(#8naEz6b#G~Rpg=8
z8i^LpE+05)9OM-fuhRTXye3wC`<N;ee)^ayubY@};!P6^O}ruWzCbjXTOx<<*<g)C
zlV&sG6wV?cC{`^t@eaMl!o3#WHL=9R4<>#z@t%qIO?+TtpNXX=mYLXKVxx&8k7X`5
zvC711li$hgwt}X$Mp{XAuj(^+jkLzZTG3{ms3m>xkb)^QbJ%OWpuaz)V3Uc>V)k7k
zZfr5J&BS&=*(%)XwNX(Z-C<(Z8fhnWv?dCG`!5xczT3nej!8#bBT=U}9h1x1Z{h%F
zH1V~G4^4bz;xo$7#K$J?o|#j>Yucv*`9#2_Ya|luWM>`}#V<^JN#$l|_8rjnD?z!O
z%x43#P0BZn3?^=N|Bmi3pe?Jur)qBNb#oBH!(5t){}?tc95r#w#5oh^O&mAzlZlfi
zPSI#h{32HOt5C`b2CMN=v~NE&@*OJTgEi7=A%s6noH6km9hOc#wBYy}iJ^v;&t_*u
z-)n0m61nO>O<XW>&BS#R7foC;@t29qG|1UC>;Y|Om+W|IK-()Oh+H-CH<c?W71v6n
z6E7Il_8&pK!QgM=g;_OjKJ43Qaz2-Tn}uQ)(k)c9kZPg0g*z;ivrxi9Neg8x+-{*1
zDcPB&1th`<KxNU_h?KQZcdaDds6fu?_~or=`(T?iE81Dupn^bJtd-cTl7-3^?y^wB
zLKO@1XV<vXLUjvOEmX7kS>wXw-~v7$Tr23aR$}egwbGWWxiu}+vH%OD^RaI0MR>Ob
zwk-B?er-YL>}*-b!hIHoSQu*IehUw9ObhuI9wd_%vMn^UP|re!g@-IWY~jxf1u+Zt
zEo72ON?@%-3a8EzgL6#c3^=4eVj)~BHL&oQg+~ReobD#KMA(aXj)g`R+E{2Sx|7)0
zLX%s=Hnq^qLUU1UGO>`g95&ZN3qffqU@HMhZ!M5K3mlw9N~WEd`f)*F-}ZueR<S{W
zg^m{bSa`xhCyQTPL^liFttd_EV(}ZNg{6lSbhYs28(E+HoqP7#sMy0op@kv~r1Z2v
z%6ujvmvehrc<WkjZvk0F37i{T@T7&l76w>&%0fTl1KLUg(mVPKgx<kt%jhZtt;iDx
zS$Nt4-G_LCNrgAPX|Sk@hn<F57;eF{;9Gdc!Uzj5SeRsCq=iuyp0n`073CYFEj(*Q
zJ~D>(IX8!to36x|FxJ923ll6%<ifL~?SQr8MKc;6_mP`^MBjPQ!b=tm3#NsH1=)gT
zLAUVrwOqx5%H<!9T!5ZJq<H_f9EX0v+In+xEYZxd&~i*cry&J4U88?nBCepY4c#Z8
zRakh{!aQo+!ek3CTbN;CiUp1{&BCI!5*=_V4P$aXXPM5bnK?HnnrUH{g}D}{&aSaV
zc<XG7pSFmmyE!;ndWDk7&g4*Eu9aRBMm68U8v=RV!e1qGXmx}OEG!hoH$~NzwbJRa
zg^L89wockSxL~n`cPv;oY#Z-dSVAASQO?GD7T%|wSoqe$QVYv09I)`Ah2<7jSlDD?
zvxSuwR$16!VcoET)fU!RAY4bES{G%W+%DHz$XzF~*lV4%UNmE|@wI}D76{vhowium
zYGJp9J<R_tY`3tJ?wnn~?0ts?cb$YG1uTwPC(#0T3A?Saw$EOH?6a_+4lbIpmW?^-
zp69w<oKVOk05{5ys6-2&TKJf4tTb-rHMlQW_}s#m7QV7@kY@H}?iUugDbHUQWr<7?
zZzhw6sA8&BB$hWJyMIU1wQ$+O6$?LD_|d{?3%^-7Y~hH7pDp~t_;2Bu2!=md;3~)u
z`9Ch~cEh@8&yq}>5c8fSCu5^5;@4Xfv3QEMI;oI(!tWOTpd(wjK!02<F}FWs;jHM$
z#h$Zp-on3Q3L_DT+?#`36t#be5iW_rxh{_Xl8LJp{$_g%|5>=kg|C+W5%9VNCZa4d
z;pB5e5GlqK8@JggWuvqmC6mQ$6t_`=aE+8|gIP4Q#F91$nE<l^A67AGEMudr9WCLW
ziG{b@sIjIGqYy{Vr6=0p*UUTG=wzdUjdU9gZRFUfXrq#i2W&iOqq2=EHfq_p+eTFz
z)ofI^ahHudZG65?YB{Xn)i#xhB!6mN!^Y`#QcWAg$uLDkgbiS$wv9SA?z3@^jkQm<
zz1If)D`mYzoLk|Y>m|bb?a1%KTN`Cv8})3|w~=Wh!v+r^F&l9@LU!iDSv9y-F>dgA
z)<l+#hip7%BiqKqHXgC@sEr18v|n(g<b>N95$*_dKnC;L+)YGF5*yiQY@@Y}JR41H
zG_}#fMvt=98N-{|(H7R+j+~l1OD;KCFOkAQTH0u3N70^xvl$z-u_L=}XX9})&^4{C
zjhjcC_BJ}$D6pfrk#9$#j1O_f8TKX4nA6!t7aOB&jJDC$MmHOSZ49x|ot)U{W8(>%
zKeXDdCxu|6myPAKniSg6enB7XZAUK2p$H#eAGzd{HmDIAXJ0!yezJ<NpN;;aC<!<~
zz^4QpC?MMmvhnmSoE|sSj*NUHb^UVwFdM_UKv6rw#>DlJ@edHN+=T)*m~5quvGJ^p
z7bp!I&)ImM%6g>l1RG=RD0+++aGYS9KE-{FtkM~o^Gvky@{j@+U$pU(4aJ7a&^MrM
z!j94;Sy%;;n-q<T=B7aXTDbmjU#`xuVN$%Ma;R>qhMTNInb<gM<D3o8=KmF9GnHi{
zpySwhgU&(|wK3VobWUw!ir|e*P7~}+wWBCeuWK4vBAj7krj1u9RU5O&l8w27y^qEe
z&JhT+IBJvZF;(MEG|$FsHeR=*{Eha^W@Iv2$gCRk?I_<P{-%wE)T50RHWt}<i?Q9t
z`!?RDwTv%ZY~vl`bmR*K6vDggC4@jX;edP|?%$UAFgNt2Hi#^<qg|fKGvP`btLS1j
z)(JPHnpWGW$&G;8nN@>>GY4C5V*@9>mb;N68eG71f>{TVO?H%Eut<it+So>E*!b4Q
zb{jivd@6*q)5b3Pg^hhScGE05%X(?AV1S%3iy-8VNvqy(Lr?Aak&TaS9I)}B4JIv%
z*Go)n=qa3i-+Jj28oZUpsY(Bg@x;bK8(-M?(#BVIv`^g(VuXk6|81aO)3eq`j?9O9
z<##r|xAC)$U-+vGvugZc<Cu-(Hh#2m*v1jYy}3C@xr!^fj1|P09};hKqXK!L-Tp*F
zS|jng<Ae=nswWwjZ2T%5|4}AsYb7q>w2j|w{2?Uvn}8G-`6uUuX9R`K&NJXJDmtj{
z;DU{d49*TpI=Cb}=(>%6xCH9U#uXb^1@UhI8S2RiS-K{Qygi`&Z&0v<3sM~1=HOo&
z|A`{kK6_FjlZ0XpdOy-P)j@FwOdjY6Y)lFviKQHrc98C%qJuKT8)lYuaEF829iiWb
znTa6<<s6iEK%{~ora6$TG|n4MO}+e`%PM+AB`1nA)to5ERCZ9sK~+IvGuBqzAl2I-
zEu5ZzmxCG(8al{vP}4yz2U!jt;{Cq^IH>EOo`c#B?s0IRgZmxa>qL5~BOr(3QS0W_
z4UbVQKH%U%J{JnAUCt$)#0&>92XP1Wo#>K>ZCY-K&d$9yNSO}Uokcd|B?E=|u!Bb&
zJnBT=$4EuLYvAB92iZ>Kr}v93vWvK5;W&*PG<NW~gZ2)ZIB4pig@cw3nmK6hL|&8Y
zMBCZO4H7Q|80#oudQ&S0tsS&+(AJ4IYmSr0#m>yBozjtR*qs+97YdjewsWF5#+cB-
ziK1wMgN_dJ$&5G-G#1%7_q9$AIy>M=mLpJEUD#_wWO&^j^l&i6!Bhu59TYlv(ZNd&
ziX8NEFvP)7nt_8p4hA^rcckGH4wf8l*pDLGAQ5@eL0>^R^=&qb{RK`$x<!1-!9WLt
zZqc6>$j!ckxppzgFb8#xG#uq%w1eRSe?~wOM+ju3fCo27V;nr|V6202g7W(Y={bSy
zGg6<YqBly|DE+iBbG(D~>l?n{V1hu{Y@!1~R*^o5CX`4el5ik9aA<fA6bGsU(?O>e
z(Lyu_`Yk-aLIrj-91ya~qUfmTjnVS?u$Fv!4txiJV1{gj0+}ozYm<UEA{~!3B%J18
zx`Uq`{Nmtc2QwUe@8AaqGabxwFx$Z#Atg$C*S?&cha1jy@QPRnakBTSgS~>cc@AC^
z$m;@baWLP(8x9tT;yVJqDd0i@*>{nHw*>ySfQxU@N2FDGmy<ep?-pf^gZCXQb+GIf
zWu=4Vx9}ALdB;v)b&Imv;f9jVDb_kzCy47EY`RsuK_D9)JXxUv+wj>eDC{zRZt<-G
z-zMO82Rj6^Q$V)dC6L_?_6X#r%t`-1Xk?#*{SFQ|_)rwT5bz@bKNgT$`$Qn03iz3T
zpF22st9Ibhj$aD=D*+GPqJJ%rZv^~S!0#M%5eD|7gTsPyT)-m^jtYcx4c#amyM=Gw
zpYs#FX`}Q8k%gHj98iO&7)}N9tAmpQA+h<s9P0Wv2Y)yq^1FaUD(;WyXBaCsr4l*s
z;7<nCxk#If3l1(af=x!<$++a;F9(?cvI1OoaE1Qsp_hlN4*quVwu{9st~t0)dvoz7
zfBDhD4LZJyo-Y1%@SlSW7cmzpE^c#imx~%Min&O2QNcyJi{dUyxG3Y|b{8dGlyXtp
zMZMhkl)Mzen@E+x<$pb$QP#yBF3Pzm?_yeB%HDY?Y(wN`n=}`TmKR@@7j>!VqLPcM
zE~?!cirp&<yo!tG{wiYeP8aOXr@Em3l9kSmGv=k#bWzJi9YJKXyIm08;{pO9URxkD
zH%j;3MD~>=@je&#yLiCGgD&c_ujqbr350AwJ_(7(UDS8c!bM9LnJ%(iG<1<8hI+`w
zqqpXLSWq4jaO=z_4O~3tB3tmxq4<2B8|Q$HTr_skOf+jEU{eAA?{sX_Tu^caWbv1o
zO<K8V?IPbrftW7OMLQRdiw123Y%8GuL3_%iy=c=x$o!_Lr?pAxD2Sb1baBz?7SEit
ztBY=;Z+9wmXQZ0rLdZAyDRfcfVuFi_E_%7>?P92lVJ`Z(c*4a17f(?vi<&&?V*H{e
z{ao~QA%FcO9}@ZWcOi)ei%u1hIM7A)8=VHZcv=wI<=u@En+<j`M2t{(Q4<nL8Sdg4
z7h_$Fb1}ljNEgr23|x#7<Bt(=w2KcnO4=KRzigEL*(lxY$N`_HEp3uG3-LaSnvkXO
zVtgX;P0|Z4Cb@83crIRa@sbPEh2<i_F<q=Jo2|Q01fmH@iYkyc9CMR2xNLS}lVrG<
zwMlw4-fO_uPueb4Z;~7rtnGcWi1^2wB;Up9O;XauWEX*`Vr}SxgK)qpf-=<wTXK-Q
zPZhD_G#ArF1GX%-S(@QuCTHQ=59chRz)QrVpMrHU$BlltcCL$8T=2J*iN7i+^IW{<
z{_i(=U#E5^ww*8F8!i@5>>J7%pWpqapez*aS!A2H#K@zA=+`jcp~UE_9@0E4aq%9V
z*F!lE@4Hy);*5*4E|$4i?&6?}FI=o}vC_p}7azFb_qSKMSVKX%XwWcoH9c!yCXsb6
z*1Nd$T=q`(9hbR5zzcE?@r?rC<YKcxwg^c2R)K7DvHcch2Sd;^nXKC7Vz<lx0Ls`S
z;A<I`wv@|Z@$V{``&=~2%{hNMWAnny{Ty>)<^h_Ai;pN|7oWKJ)CHS8R<qRQW;r(@
zi=PSN=Ps^vD#zlNF1~Vc(#0tk{F%i=bbKT8n2WDneB**YC-*JmK+lFJj#vE7jeb$?
zdpG*2wI2lhQ9u?CyEr27qXN36(?~qd?k;|I@r#QSE}Cza?%FIZZ{I#KAZx^u7@uEV
z*!z1CIql*%7k{|;yhY}OzCAJvD*a9;IvwLvtFZl{p9)FmbI!$|E-r{>=LH=3Q(<yo
z`HPI(9&Yn+$;DqT`nOHzSKlww&dWBuBH&d4{}zzMYc8$}{2u{t2>9=<+W%Z^OwVVt
z7stnod67&?c>Dx+Jk>*S4<|M^PF5?mcv8Hihf*Gv9co<KLm3aZd+51Yil@g*9cnvf
zv-IG9UCMeO+?d`q`m(5<%CDZ5@KY*ysQq>(2tA|=oW+VBD&4{>d#EDts<$ZB1ahZ`
z>H@h-z#0P96tI?n9OrHi;bw`*Js$4$knN$NhdLha^YD;|hdtcy;Q<dZ4{`Fw<t)xL
z(yG)GNL>M6-z;SagjFjxOZ7cudg$_NNfvi)ma;_EsMSS>HcPGB<&yY_pgiUw|JRa_
zdT8JwwQ44DK1Al!YMUdv7kKFCp^=BiqGb~g%{}CLXzHPvhm65_Y<yy~MA*VZOSTc?
zkj^PcY~`V~hmq5Y_~dzLa|>@Pkaiv(7fAbC^bP`fLUbo5oji0V8y>of**RuMv7&B*
z`JNsMJ#-g%4*}WW>SoDFt3u>tt8#?BJ@oNV%txw^Cp<jqVZDb99{PId=fUyddg$*#
z@-W)N7%%!L>i`b}Jq+?dy+7qe-;%wWD16$(U=QcEG=9dz5D!B=d@!#ZtA+_=xM)U7
zqi?d?UCrc2w)y?!5nPMMe`3lSCE)%Wm5D#=;W;+;Fu}v~Ui5WV&N9}+4YfG&kxTN%
zvGLrjGFv1LKGDNV9ui{k7d%W7$cqB%`)jg+>_PEhdss0gm0!43J?LUC&BNOV^7uTk
zMdGA}AesVN0*+bRgiLa3&x7yb6%Vg^2xx>Jrh1r0V|%-J(u+P+JK2jqjeFp}97<*i
z6;UN~L{NOXhv7=}Iqo?gUiL79ikRAKrhv1&=#$<2qAV%11^(c*hI2XT+$=sjoz!_A
zUi0uC1GR_OJ<Rv8$irJg@^8?(wn%S!SRjg=u~F&jgbO{qa4h=D_uGP*C0_JJ-^Fxr
z5ATxO19^S7L?7nmL%h+!C)<6Hy_62_VXaWva>_>xxXMG>`*Qdd;+3MvFV=E7tHq+$
z2snO=M9MlZ`gZz`?m29*kt0;g+|4lJVVj?_NfbAG*dmav0&Wv<yMVLI9y>hj^gx8q
zE`e0OGjlKP#KRE}M?LJLX?Zy4;R_E3JbdWkb4I7HJ19%yA9?uHL%R*}k3D?i!T7Iv
z@9X)=Ez*l0#HZZZ_A?KJON;W@c+PwAFFkza;X4oC(+rlx4|(|7!#CUnm&8xhO+RrU
z{;h{=|F&7QMcTTeF^fNV_$#g8uz){`F6<@kh~L&bkMv_6j(fP^;i8A1JmAy#Ne`z4
z^0S9u$f1W{J)Er9>B=YZE?eVM*H$2Y+QV-i&UiRWV`gYN8vjGUkCj~Fe5&=zJVzlc
ziT}y4S+@Im4=a~6<Wu#%hQA%kA>|VJ@$e5_z{6z^S3La9SsHb^>f!E|IekBgU;L_g
z)mBYguWWox&{=ieL;a#mBL8~$kK2b2Hv4B$-%VSjwr!fG_#ixRtvzS&c%)=;A0>Q@
z^fAguNgt(r)c29;qqL7QJ}UdD;zz%=eY=3=eUudlDR&5@oPec=H%Svng<G}hJ}TbA
zD+%P%^t`G*s`<Fb$Gtx8yj5G%M^^2&)qUJ`i&DeK!7UP};8V-T?^~q1eSG~*Hhk0;
zZBn;JwRHskfR6_Sa-Wa;1@d#Htebu7`utgWDdwY|kMZB-R9MnKLo|quZW0#=Ye$bR
zo<-b8PalOo9`^BwkB&Y%`FPYv10T6QTKLG`Dm~_-k&nj2eKhnjJM8ggQC5x^=eMG)
z^ZeH^A5DGCog!8HD5aSX5<6~{n)_fgW2!{RVoM*be6;iNxR2JN%?~5chHL*QB~P>*
zv^8qkR*cUP__X(t@1sD}cJT3{XfSK5#Hv$MBG_4s(^bGO0<PaGafEIH?=B#l^$@&q
z@FE|*d_3)Au#euNwy%$VKKgJA5XC2HAr!(^iL<bMe;<+$u5^%(0iwZEK0e(lkyQ$T
z$UsqK%Xw3!6Qauy!R=5XE7CdpFdxHxJacmuVUH1<u0)&<t48}#D)N_)%Ra{Vc-F^r
zKA!in+Q%9nV||SCF^dAB5`9eY;rj4=O!V=B57~#}V-m&UBjIDgvMSv^=)5IAhXcOk
zqeAb7#Dn~t5x?fDJ~SVe58H?C<DadP;lrerZj*>VQlXH|_VE+5U2`VXFJ$*S$~AF(
zM8tTuPsGQ|q8R!}`k3Nls*lN(WI;~YIgibz)-T-EwO7Ylm8bc5Ge2iK*HVzf**VU}
zt~oP&%;eMsIUKXzHi?uuRELkZe7x=B6(6tqnD65aAM<>aE6BMrwft*hgo}4HdEEyG
z;nQN9w19*AXkL)BNI;H%?0EJ<ilu(x$c^2+JEB!AraXPT?_(*Im7n*nj~~wDzUO0!
zK!_(Yv%mYSLf1VVmigf7mit)Y^YoE(>`Y?{YNc4_D%#IBiN&GYBo4mT$2uQh`8ecb
zy^js-=wrW+jXpN{*y&@JkIg=|_}m4s-N#lR%a3PIzNh}KHhJ4R=Y01>{T)6o9L?TX
zsXiHQcRc%@&N;h%?D4^>4}9z;15egxdo~_;Jex#5uN==l;NwFdU-<aEFz+KDAN%->
zxQ|bK)IFB{$&JRJ(vVKaTO7@%?p`>WebC3nC+hP_Y?Hn{n#~y-6y$wLJAbdkfBAV|
z`}oGk2_L`u_?A=qIPUY;rtm!_<Ku{rqdsmwlKrEP!!+pul?NTp{;N&i4@a_zOg@s`
zwr5_mBiYA%5Y{`IeXeuP&$O|cm4ES(-YsWX&GfZahh^8ApY(Cc$2lM8eVnEWeEi|#
zjE|Gon*UkQ;dk0?m%RC-I)B+Mr{2UGXIVU&z3FJQ7P9@Pk1I7R7rtBmBE?0+ju(<2
z!Wsp6mjrLUv$C)FxXQ2`plX1>eOzPE4p2J4by~HLlmNE{xTf}+J2LAAZER%Lzdru+
z@z|km`yS3@arQQ;SP;=!EFK_L;0r2ry;QnXi2yI%-f;P@+>!wZ-`^&c32=LWv;Y+X
zjC%%U1C$T2V|L*k0m_LsRgahK)wat=1A4Ii-fdEP0FF~pj9G6_l@r^fO5|<36so-{
z2mH_aUYxXAfI9=!3-JDSsd|9B0^A#*PJkK#Y6iGF07Un5XWQ1|m6t0Obts&4sGC%)
zZS4T}u;q4X;mE8n&0fv6OY5#T{Na=A`vN==;K2a*2N?Q$+n(Dcu8s>S8eY6^fU(=9
zdKcQx+%9DVhy{oT_~E_WKM!Qr4{&jOUsjPN79R@maDaD1ED7;QfJXy-6X08}_qU7&
z0cHi59pJG5*#Q~`$O$kwz>olq0yGZLDM04{O#(Cx&?Z3J0L=n45706|D=|WDfEFCk
zNqeh!&a<U+$~>0&!sXo70X|(`uI7xKyZ|ij*)IKlEtd!Fb^#s_kRPBRz}HLrv=8ve
zo2eZFOwP{izqHS*vzlBVQAi5kLj_kVbfhA(Gx;98OMtEco(S+{fNlZ02k04~kRqLt
zGihh;3l|G|aF&Y&)u-ea1sF6dr&oa90nR=e{hjU7?(N#WoG<-T(1$$p&j#jY_6^W4
zz*7MR2IwC|mjF_L0Rc*sh~6%7K*9-ml{wBJcDb6{W^T^YVx?s+7Vz%_*?wq%VFBa-
zN`T=3o(b?gbs^e}2rw$ZXn~Iu@X)NBF#(<p@SG@ioLz-~S$bw>PR-IeI}=$yZkNUd
z7*GBKObYO4m$Wy3YCa*r!~hqzOJ#OMFMSSP&22Th%8LQNo|=`Q8Pkx&>-D3P#p{(B
z`Dy?yK$2n%pa(DlxB)ydof*IiU<W9gmVejPf;;x*Kl5|+7YL51EjcsC4-f>HIVC?N
z=MAIxn-tOBk~vpq<PYW_LyAeK2Y5Na)Bw{0)ZQWS&m<ZN#%2U?;%PGjkdx}Oa<U)G
zBogk(okJrJura`<0IvjiHNY}DRDgK_UJLM6fVTs@9$<ceg>)8i6Z=Mh1-I}ZFXc_j
zGdIrXn>O)9f}Y+s{_4Dx#kbnLCy;kUvv&i`X&GNa<IhVW!U5kGwMzpW`Jj&~#$OR&
zb$~U3zA^xbs{;OOa26Y{y*1`K`spjhZ}PLAwYTWO%r2V)YzgpDfR6)g4X`c1t^m6O
zY!_{K1IgRh9RlAeAlWX_BEBcUUfSvoX}=(T5MUqmk{4exw91QP8<U6PZQ|K2;|BtK
zNbhSI|L&o5&i;vL{8@m{1@ftYyXO`^C=fRIGQbxCe|}{7o7{dC;1F$chr~g?4#2^q
z(E@zWm=L0Vh#vy{7$7CYZ6OX*ECK!qaE6Kta4f)y00-aAJTBnR0{$dmr#Fj{{)@mD
zU9B;EK-RATP6jw7C@h{9$k?UDe+y7%K?72Lr!OpM{NUV*X9JvL3>OVJ$a#i4f&WRv
zW^}qm|BFGD%@#CJc1Ub?bC4^yYOf09v&B)>HSPid{t0m7R_%WQ{uMaqWk<H@`DU?V
zAyPx!6{1Fn;vq_eNDomlM9C0y7c?jn;`R`w1YTM|64|kAh&w{uy`X)XAeIw&`4GF5
zA~qm>$`0xJ>^>Dj5bj;j;I{=0Dut*P;*A{=@ya0xtAwa35aQ%#?GEYA5QNnQJg`Hm
z8KPE*`$F8$@k1a)?GX2b_;H8CW^Ay0L4(UXq%u3DyLL+VauqwJI$<POA`gUkFhmBm
zxl^heqF#vaQ>&0S^26!)kjYqxraPq`JEcK8rOXgnA&Nru3h_{ghePCqXcR`b9LlP4
zV}jz3gm^SWgAk8};BUla3z%1wI)10rP~eXjMZZGTI7E{WZ9}x<;31lYc>Zd`Rw0^;
zHav{yhS8Cn9VhRUT7+mRio9MZ>RY*Wh`bPQ@08k5{%&+l!2!4JlpYV!K17EQ`5_MN
zlz8y3F)1t4FDwYrF+|T0g(1%DluGQ9I#G{q^t(Tu1?OEtbQR-w6SH%)?jd>z3I`{{
zckPOPcZ?$t=^dg^2rYyj;)xJXh8P)QREWMI`h^%2;^`2*r=<1|A%z$a;^_Dyvd!N=
zdMd=aec1zVO^sefyl)xIarW078e&+8At7E7moS`^_d>(T0D0C63qC2y;s}AW3n`;R
zj0rIz#KaKK3O=9b7Q9QMG@c9jrwfsU$A%aus>X{M+wF>et%+-SA;hE*FNH{ijG4vx
zyeNdgF6=JT_SQC0L`NcAHE%yu(SV2%!VEDh<WUY*2s^~&5K}@pqP-Ww7Xoxc@VCa;
zHxTqB>Ebpi45Ob<A{*2TDN{pC3o$*!%Ys8P(0`Xiz3>)jMu?fB?}F<MS!9<67t-d?
ziO61v1r!t+AbTNR3;F4l;;+)=E~K&LQ}z12F1UTRf4TW#bQ?BdmsE5;n)J;Oi@4+v
z3q$@+eNm%Xsl1utq;CtJ-wCl;AhbhrPEioP7vg=|XA;elSQ=s(BOcu<#PSd;LhPg?
z({bL-Tp40Rh>amui6SYhL#&~DisCu}*9&-RW9s3w)N)lbH{EKvO(2^?Y!S%TTXeSM
zINL+)5ES-ek<acB2L)wMh`j>&AjC)HylUn?QQRNmK!^|j|6awuD)(`SPeObu=${G5
z(KyTJ|4+*=1pZ}+ujoM`z81rNAL5%3--h_^R!cH-lf9deQxiEH;z)>7Ax?+jTWr3P
z=2`V9oux$ln1IIx{7Jx{1^h+869WDk;-o;D<YY#NT<R{wg%B4*{6WqikI&jA5uOqF
z*%0Rha-MOcL%jF4ls`q0c*Ew|mqPp%qGl4clDHh=3N0jwv?Q*E_?uf*62+3Z7V<CC
z;{P#N_3m_?0q~{xKOt@i;=hcaEi=6^&IXl({FG!=OT5k_=~XAhQ<Er_MCl}oCs85^
zQc4P#d#+^7Dmg5cN#gb-f1Wa4F3C@M#LFh}c>k0;lK3i!^CiN^#oA7t9`Dej!kF6W
z6_ONJyb8M~k)A}wBq}BO&9V4X6XTVWINPg}V#W8bPhqiI5_htV7O#=S;_30~N#5?p
zzZf4UepeD>O0=lnyAx;Zr^oM30!h?QA~T8FN!*jfgGtm);$Feh{esmxNxa@K<-R1Q
zP0kzP#tGrZA7Do}zU|%`^+cO^l0RP_Cj%Kt#FF@IYW%hF@$rfHaXC&7vyylyiN})2
zPU2y~Gv)JW5|0QbwR0uODk%+;NED?LX_y3gYm@{BB$6YFZ=5Shym1m;n^kO*<oon^
zbu->PiCnHdiE~M`NTOvDvyzydM5`oPCowsRDM{od(I$y!k{FRh+a%g0(JhJYlyeew
z_GETQB0q`KdotS#xMxqM+$yUeiB3s$PNHKHd`I^DTa5|3B=KRD%&tkEfZE3=b)J4H
zKO%nLzDE*0lXx<TzDX1&Q6#$bPNG*5ziuzT_D1`a<#Sf<lGwNpiAI+vl2}x%0};Z0
zN%T)*a1ujAFDZ#ZNj#sI#l`~!<*6hF3S{86IElyWWImmQ(Y6zjp-KEZui>yH4(*bN
z+%}-+aDlgPlSRtNBt|9iViGSUF`7!}ut|&+eV<L@xg@?{(!OAOyme9Lg{$4hAC8Yp
zVtf*ll6YClnLvA3l{+zs7m~Q5bRm9bmoz$=mA^Yqr23HlW4_5xBq1kZC1F$YKjtV&
zXi4Zv950`v(&l$dT!kSx|Lpz7CK+oLEs9TW`J5@s8aqjNN%$OOWv)vzI2ylqx70GN
zZIDEmM3Q33%VjZdcO<uOTldQOJAW!IFo_w|b+ydCyQS%r)tdHms%5^M1mRXcg}2-@
z{|{B~0VPH8eUAf+BxQ*UDB%(egkcv2W|kdb2rFp=OIk8CK@d<;6huU#fFRp5J*nde
z0wM-fqL>gtSaQx8M52g_n1%nHx6bGH{h!n4o?EY8y{dZk>UEgVQcDFsDmR2PIlNT>
zvjA2B>;icDHRf?-e=~<$^2_vC0W$K^cpSXecu@fs7vSvzEGfYD0_-TjQm#}1HWc8q
z0=!dz<pubp0IRsC3b3L89~9t2dU%rSy#l;nfJHruy;Y)9L?X8D4A)9V!VK3(1^Bpt
z@40jRFvUe=?U|bCl&>zpngXmVz<Tcb+9_)}m-eaD**wRUT%uEhNv==X@2&DbJyD6R
zo}c0RyZ~Pm;F|($F2I*;TRUYV8y4WJ0yvdxcI}^gr(No~)|H<taBY$y9h&K)a7zKc
zEx^_SY%4&a>blpaGP`(jp{uZf?@x>miDM($TYNjYD+_SC0A~uYy8wF%aEK|W0DHNY
z3vjRiKWpXp(*t9x9AGTXh#RT7Fx~|TN4RmW>qr5P7T^TqssP6daJ&F5s#l;U=e2%D
zJe93}DJ!bFIQLWH8A^&Tbe%20xdMDIHqSG7#Eq8<aIpY1{+(!&P_z8RtS7JMakQ_l
z=u0D)3vfkhuL@FftpL{({08Th;5Ws$RQQRrC_s{mk}7`TrW^0QU4UN;ke!;(E3P|?
zqB*I*G2nUb9#)BxKML??0q)VmDXD)kw$G*f!$ewuzd6W<)5qH-iPNU%vzEtQPGnNw
z$y=0SYFwX3arRQ7UkMdQ_75VtPemye52|=bMQIgfR8&w=QN`NwO#)k#vMNRuy347!
zU&R9|%Bx6L<KL!Z^sZM*zVUVZBj9n9d_>0f^|G!?Dn^G=E32rYqN<7%6*biO$A#Hl
zt5#D{T{w#qhYk2>i$cO<>~ke+s;H%+wu(9`W<QliQ?(9sWz{!Z6sUaJch5&v)a6LV
zd+Q0-7i=K-u;3$tRN#v*IlS%z`!!P0SVi9;`UTNMg-gXd0W1%osftt;U#j>@MVg9c
zDh8<-tm1JMPpC*&`Q=YESMgevl$I(+tW0g8Vq>q=$n(9AZ&6rutMG`t(T#K#tBpy^
zP|-m}M-^TbEVfqBMnzlUEVfhOOYog`$@apB_f6XA^*og0%2d%+MK={ss<^d9=_EMq
zVn$~bT~v_p*juL)HM3OYspz31TSbnF`@U5MR!c87+MBDQy9yHO5PPcVrD6bAGso3i
zMIROUbb^Zd-zt=}{#J=qNb9F!R)w_wD#m6f^%gm+o}oc$RX&)+;t&->RRm?N6&1tO
z_%}nQs~FC?t9V((WECS-Jf-4U70=Q6YW&+QJjSY+|E)4w#nURrh;ZZGZYvil>tBj1
zj8pMULi2-f6-vgdX!K6ziz0kp#S1Dve17NzLDrJLq++7joTOr_G@*S~y&_Gf3QkGb
zd{xMpf?`y7jSf`#9JN!ord5eE)c9u&GdXw0m~d5vU&ZSx=1B38wwZH<P;H)yHxhil
ziUkS&rjUgy3KEiq2TKKnYYEAmbl>@ZO3_G2MOZ~dMO4MRtmW8L7%CR4cw2?3;=;Fz
z&0VR&Qn8`8Yf>-QKU^RcO>dQ2q{1%I{Vn=%u#X3;cu=y0D>B%(RK+reN=9m_#rf~3
zVAZgddCP^o{zHvFy%lKfJr(b(_(;XaBL6@|;HiEqxdAt%e5j)A<^gQ=#fB6fpQu=+
zV!et_RjgKV{#w>rX+p9_iYK>ZWqi<god`+TaD(vAxudr#p9#jTsc2W&i-fpQ#n&pX
z_;J;bO)9=o@vR?Q{n)Hx3pb`8P5k(l3(AE)=z749Z7NR$I8UE&gerEZIKxe}RblN;
z6^EIuR3sg7?GpXnD)tE3E4WW^zaaGw2sx<YkdW*jy%Zkhes7p}Oe8liWYE;{g#HN?
zClmY><2=Ei*s7f64%({lILGAtR3^zq72m12qvAIemsEVO;s+HsRb1v|NiJku=cf22
z@2ZMx+}hJK>i&>UVgIb&<TsdYre{nra)>{2`9$Ft6+fx?na;17M@{OJoZX&Bo!k5h
zs0!*oyHzPN^1F&Z=m$Sa`thfVzf{~+aZknHqWO=Ce`O4FwkkYgTa|S?^4N7TKi=uw
zy|^DG{Gf!K2Ycbc+WY({<wqGm%KGs|=kBGsWGXlSY8DNqoFDi5<HKn5MmCWnA(r<e
z*^df-RP>{cAMm4+AC>*6?ne!Oe5I-grub1+$U`^U?p~HtP57C~8SA$y)Ok>fwTcw{
zsF~1YRc+xUV;2ps>qk959`%D3>idyDy!*p~Bn|v=pRe6L;1NIAq+DaquiNve_LwL)
z6l~;2dv`AiU4At6W4a$R{7Cg9&5wS5KH@+#KOXm^vmagjc*2k7e)#-o=SK@aTKbXh
zM=L+veq=n6>hYsvm()<V)PHJrn)F@n;+)hBKfHdl<>0%e&S>hT4i#Ga(MB}erFmH_
z{kXUDjBJwj6#9|rM+d1rm7UsTbJr*R=;X%;mv_eMBx8hU$HcV3rAzmp@9yeHH$S@j
zk>^LRqs6lPm{Ph@wjW=gt9rqzl;cOP45{7n^yPEYUY(WJ!;hYR^r2^{FZK_nd3$pr
z%hO}+e5KR67mcki=hC(cyK7P{ecC|p06zx$@thyy{TSrOU_YMnV-#I6Ic<m^!~7WT
z$51IM^jlMJm;BD`ZiFAJ&Q%>L@~89SQ_jszUEC^dv>#9VG0u-?WNcI$osu=ikFiqR
zw^iX7#$PJ`tRI}h?wM(9xY4TgydN+4@d_u%F!SR@KPLI{vY&tNmiCe#6S=J2Qzzzk
z=4d}@>YY0~ZL%NN$0ongD(y2Zi3abT>HDf5vr3nKjb>A_XmhG`cYUie&5yhNyc{9@
zIg>hmEaP7AW40f!`=R?`_%X+ixqhgA`2CpY#~XgU>BmBG;Cw$H`24rxTr5uTmdooJ
z5MO1kNP$$*lL0?8KSF+l{h&_Jk2_W+_DjyFi1_hQUMibJMSo*zcaE@Qf3N9><wwkq
zw?uCH;V_oE$DKK3Mt0$xv;j)_MN)OCW~U{z?8n3RD!z2F)7yR=o0P`!(Ckw7+bxxG
zxZIC-{aEA2T0d6!@t!pN*pK)9_<#f8+U2EwD8iN0QQhIZ)Z4*g9Mv0h)3~Nf@>AIF
zCtOxPR{L?u*PC(3;H2lNu+EP!{rJj{^?rQn#|CllXMP;&ScT4ieskB)WsSZN`?PbS
zN9slfDzm-JeUtRg;Q7Xnf;2B}7Tc!ue7)xuspTvlUE<s3N1-44{qeu^;xn%8e(Yi(
zrKIlgW2Dzpe!F|86#3lmVxvyG{n*1e`NOl<k9|yrcjAx5SVcS_77hv?^2h(A>#*=v
zo05+Banuj~Q`0d&j{9+f>)yu8;%Prliu@FJ0eqBv)}-ngKhFAbPUMt)C*(W>OvuHA
zeDtGn{Y!p)FOtiG{F5jOuleJTjA{o^CxGjI-0<TECM#yz0LljNqaU}J!#OrTe&V_}
zaozUgS0O+9@rxgaN2I*m+_f^zb;pn2ME<)Uy_;~~x+wqr3D-7{>klT|ZSg-g{+mnl
zxa%J08^Aw){L8Qx$;p$&DF1zlmsmW25&@J9;JyGp8=3NHOBaPn0kqhrl<b*Wid8*R
zOLJgpuCcA%<ge`V5X%K{e*jejND1J90LlkYF@OzfPI3Sh0;pfJNA5PITr*eyC#w(_
zv~^Vqpt6{%A~<%Naz8)E>6yyDss&IZfCmHdp;i~X|5UMu0;n0l!fncX+mx&{SFHeu
zUo~+N$2IXGfVu$;31Dad_1IkiEdy`|&>(<^c_kk}-pYQD1n_78jRQz)?)zq&@>l>3
zMb0ALPCC0yX%xU$1Jf&v%A}-80ImR@I^S0x+?$eAwhEwG0AKV=e>{LE0@!*!g*Kau
zg!(N4_zUUhYv&g=_XLn0Ku!R;0kjGrBY-CZ=oElAfYt%D3!r@fZ31XZo84UPvf|%j
z@&(ZQrA(4B?tYPH`gM@1jsawH7IXR*>5$ZJ-aBVeO6LH&h(cBXU1@VsO1A+1E|v28
zw*S5p#fCJMEl9K7Inx081<*f$%Psr$U|#|B37}^Hy#iQO%=hBryax*vR*~cfK<pbp
zsykk!9m-idKqP|#7{~>3_cO=#qnx#aMeZ(ClmLbWFg1YJ0vH~^hyb1m;Mo8k>zO(-
zfKdUA7XFmr?%~N#3z?&oq{0~CV+C0p7r>V09+Kw*7$3mP0Zb0y`2b!Jg%<@U1W<6j
z4Rv_vEvmdE!ij>D1WVoguXe#-_fhAS0H%oiRY6K}3YBRIK1axO!5IO}3}99Ov!(cY
zLWg#aZ>&+&<6IHW6MRE(egF#sc#~1efdycRPz}H@BpN_KNJx-IG$BDQ<+P+Co8bT=
ziQ2sUBt5~60L%m**E`7$z>#81a7h4f1+Yl?V!^isX@LhVFO?$6vH;ke<lO*P1TaCv
ziyGbw;QatD1@L_U9|Z7W0GsLj09FR@Q2<|ZQv~pF0G|Y~Hh^^j)Y_E9ucNOD#J{h;
zT99N-0MqXDB4O?N06yj3m#Xul($^gEe8#<SHl0<UbH4;Y35yGi$|Sr8FZ!k1#sI$N
zerf04B>0WsunH-Ze9P??;3HY=5AfM({Au~N017$&2_?4&u!m{0tc%AEAv*)uC1iI(
z{#2o|m#bN*P=|ORfP(>?3E*r1dlz>-6u{8{js>93$T-a9YnOUNILUEl!h;zn0yrro
zr*HZxZr&LgYZiBHy*uNyaH>&qj?uoQ>z+30&mYb>AHW4BqQ6ql{n_avC*C)GQK9l3
zW4L?yS7)bQ4&X`v*&1>*Tn*qF)1!upTKuuzbtcsSZUy4}hTsnY+!R7d!Qo=Wp91(T
zfZqf7Ie=dRxE;W+0o+OGnAMW}c}dKoFC~}0y&#GDe=v=Uaq>TzqeS!Xg#JGP{44yf
z;61@&8j5Qup&>~_$wb?RdyDP=sr=bd75g_R*6hppNJ?oaov1A%q^yQ=3CaB$9uQtW
zAxYLSxk0>PB@LA|w9wE}Llq5GHMlf1)sUj0nub~$YHR4VvU!>Bz120;(BjV%9@OxV
zhMF3NS54nnw*TF7882LD#DAFQ-=x>kkoQ-&MjA3&q(Vbo4fVA67jk$j*HA-!4SX)z
zK#=5NA&+QyRLEn3<MWHL%Jor6_Sjg%&ite%8h*;{QFphO$Y4v=;wR`QG^A;0rr}Ud
z6&4>CA<3xG-sTD3CsfnT`D$pVp}mH54Xre^Nz`TtX)Wm0_;uy@!!aHu%O|xJp-=Gk
zL#g4Z?he8`Y3Qt>qlQckfA>z}@uWC}KB?nPW7{sG)=fiKA(YHtpWzAB%%WPOek|r{
z=&s>84ewV?&C}3B!ypZVHN;LdDxOoaCta<fw}w6%`qKj4SUojg<F{PUPxzgBDFgoQ
z_2oOMdzYs!d^nZ09eY<DC{;AhUo{TVFjT`x4NqxM=zP7@-QtZ$Xc)%D((vo@)Z_1`
zuKhac>Ui)OVDyJZqcn`x_;UvQTD&ofPiq*b;Ta8MG>m01OmVNi*0@wLS5Zfi@s0U|
z4sy=-WltqeVZ2P_c?~ZJ;b&(QzNBHIhD{p2(J)EF%NiDIc$@J?<HgfvXqc(t6%A7~
zY$#M-)i71VwN7c3Dkl+N(=bf~`E)_*uc#E4&(bhkLqLPZMSLykbqxzNys2T1hPfPY
zg_L<3-q0{#i>Iv8Ba->U-s<U9`8gno_q8Mn7iuVwT2+IeoqneLU(KL~kOoT>@Oe^L
zLsWyVAtDlLvQwg=!PKyIZv3aU?1f!WZfkHvEv8`+{dUsBs<$+-wrChsUZP<stMbx5
z*RV`OgTdXoUaK{{qhYy*cQq{R;_e<P$-mz<1ASNUEI@y1_<-F7`hKWkr8FV`NF+BV
zd-oM89}B1O6Ai0`^X$(ek2M<BYFH=2_4Kob&xC&}$liNA&r5>7#Ve$2>!1FGhTW|j
ze<{P`2*1*>QTW$_({~J}aI=Oj8hk;t3*uXPK*MDXS2S$XP^jS)<E>iib`3i;9MN!8
z<Ns7=?&Rz$x~HDZ-^G}ZWboK6WRKup4f}-b7d#+%P>`C3gdFBRy6t80ksVpbG@Q_I
zQp0fuCqJcfJjeUw{k<foWd-;3)mg5gd8aj;(QsD7ISm&yT+}dQOj@%J-t(e=qfpt`
z-uoSsWTy8LH#;}-J$IRj-G81lxO*87?Yvk&?JDDt$uNj2L0s2xgL_=VKN^0}a8tt{
z8vfMqqlQ}=?r8W;L$P&9KWX@d`FXn%_-pXbRETz}x2@A{#zUItS0>Nx%EA;E@plb9
zJ9t`Dcinj3J0jUNb5_s4xar!avGy6bT-99U|7y6ap-d2EgSbcIL6i*QzF_=kZpDLm
zzoIKCh!R2MRd(^%HY}Br<3oKZkN119ma9|{%^q--79=@d#r4E?rCbmX1W`VS`$hi#
z(d>y8T-z$RMjL6#K~xBWykZd9+m%W|OsnA<*VFUYimai#v#JJ>!e{S6xPqt_MD-x*
z1yMhU8bLf5MC~Bz1o2Q1wRU=H5`!4AUD<xE@oU?ac@McNRB}bOD+uEDb#L7uKH08R
zdAHNIHC&u2=hz^K!tKgqK{O2F;UFFf;{0~y(I74^@077G`=F6_GR5`#cBN4eje}ql
z&YeY)yTj9(29X*>dJwIGNaKuxXdXn1ARZ6m>cKwLd4jFV$D3^VD4od3whY1@1j(|t
z{V4IUqmQz#{F+Ni`5j6|5Uqn~6GUW4k~awcFYG^Ao(4OVbv0dWgU}yvwc4RP0ayEA
z{I`2g2GJ>q4ncGbB2y$Ib|{qd=&?iT9E@Lm@#q~ymjv(1wM+0U`dN5RLXsOq_XN)q
z(j$nT2}v)K3u#3*`-m`K@c9iX{eu_~gdKzv#6a@<Tz~q~o(f`+@WFx<4iPdmh@bDI
zDnSerGF)(k;7CE%4tphKR1l+spq;0KcsYp4!p8`X6&x4DGeVvfd`@t@AX_~z<ORVA
zLA;odza(U05R-&V-l0(Wl^~`Bu^@;ygLpNe`5IlyLH0`JvAt|>s!a=Gy421{=*$da
zR)WtK^19$0!MQ=qOVqw0WWHc%hq5q;0^z|RKG>nCL7dv51cLZxhvFBE{o7I#A>{?X
zw+#jH+YTknzz8DBNRXlxgb~CKf9J5u6l=tyB9Q}*1@RX5LI@*6SQNzKAZ`WmQxI<l
zu_TCtvK&i;SQf<EAl3!(P7uqvL4sHn<aa7idP&s}7{EJ~6+yhm?YUEVU$ArEwE2tE
zSo|=EmD~b7T^|MUaS*&FS^T9(zwMd0%T2yoB&=N{MCqG$Ha~6Zw50Vxd>X_iPE*=$
z5d1QT&w}_o$bUx7XOn(cQoa!R+__0#1@U`+8jp=az82&FHV3gKh#f)fWd09gtLPU7
zQD#Y1w%VGXwk^m%uS@E<Q`yeFf5$s4Z7{po6~yi!4g|sR4BDyekyiT{t2>pw!aL4#
z?-#-;uov>9AN4yF#Ni;0kTVYlaU+OhK^*7i4dOd)=bg%lAkGAFHi(l{DC;U+&UK30
zp`7cq;HNvX&WXI{lB(x}xLnRvzohGeNT!#I-<VtyPI4uP?}c9uVzpEeuLg1Vy}mrI
z1rgjCzey?GuGkMj+zg_@clk6<$&W$2QZ{ar_;V1yFgJ$qU<kK^_?4>`Ld6j7Fl?B>
zLnsx(??L<#M6nQxhwx_*e+BV(5dU!XcPitCrIy&_F;Vqj_8Y{tuRX`BrS90N+zWzL
zB*c`Z86`rX8hKJEF2A@_p<2lh>P}A@x5-mlg!hN=KnP`oQ>Uzua)OPshyJxwDK9)(
zu*xolX4ze(5Gsc-VpqJQDpHj+Jt;*<RY8vJ$vUakLZ~i9*Dj^=F8+TJYKGtop<M{I
zLZ}@=lMq}X)CmD0JRHI!A+Qxq)eWIu2vc_{^+SkCFO)Z+@-Bts(GVUJ&Bh@#6#I>c
zn>?)gn97?x^GdmTZmq(xH4Py(1WyR*A*6-SOq5%M@HpLDvOD#OJe~-lxk$(hcPTAJ
zjm_O5oR{8Pg^<Aonx51qgwt6=S>=@h(4VbEnM1vtJ+y5I|A>D35ITg=BZQtIbPORg
zgsvfUW0Md*KAX}hgw8TMI<xw2<*BbdT|#(bx59&#d1QsqJp}q8Ta0JzR&qkf4S|FQ
zhs`5T2Eg_06+-V2`iC$egg!FJ{1Ezv5FeQMWcY5SUkF6DVvhqu7!<;g5Qd6{!6C#(
zm$Y^((|0R81+3bwJlrrv34x>9wObj+h9Qu!E%B)kMujj&$5@>o{o`q_S`?2&F(!nu
zAy{G9VT=pmnGoI$VMPefhVUHaA=n{|58?R`{2>HFcp-!dA-od8lo0qTht`)eUJS*b
z2J?6+go(l@B_uBknJl>KXysSwx)A0|@ioEM1*Zv44`D_KGlkC<q|I4Ea(_&I_gehF
z^m)t?$y~vCA-o~vf3*ujcvB<`1*u;kL=8a`3z`%!?N*Esf+46W@xSX2i7+e}5sZeQ
z3t?@^YsqE^Z1QnN7IA8;e21P7;jIv=p3b7eq7W8~^4lTs)eJlHef+2W!tZj4OF~$h
zu(K?LcZ4rbNCw?3^<D_?hfpbu%3*vE!iOOo3*opZtPJ7v5WWcEBgS3`pCnqX6S7Kh
zbqH&OtQ9PKvlPd(UO368LN*9~Cb;uz@|Qxkgz&A9uLL&=ejUQ55WZnz=~9u+H;b_O
zx&J)BHH6(FVbwMvg&}MYVMhqxUrFA{U=v}_AL9BOuf%ar2zx`=C-TFB`vngO9uzzz
z_`hC`gmCo#NKS-slEo1I4&fBHa0u5!xDmn`(YYviR`8r4J3Sx5g#_<)HTgTPofN+h
z;c7yDIfN_1LsoY-xh8!1)&FMtLkK^I@Jk3cMgC)=)h!`EC6sRq`AzUwL7KY5?Jui9
z{<{eO5d2e+RsV$WFFhQN@0z<Iq*TaC3ZrBg_e7zX$XQi9j1mccvQ^f7!pkHirG%6g
z<Q%DAR(QEE?oa4YUS4=|LQ+9U#W3bvO|EsUa+NTuhS4{Seqp49Q7w!&*XFbf$KShA
zT{K&SQ6r28!+0o+nqf3e*r^o;!l*07+F{fYQuM}_dSTQL<FPOrhS4C5hr@Uzj7LR*
zAMWtrZsKUE%!8l%Gzz0}7)`=(C5%vq3Pn0am>Nb}7|le1lICGN9>x=46lwlXzlgLH
zHFp@EFw%?q4Z|Bo>o77B7K(Z=>ZOec+Y0&;Hrt2MK_nf+=p05D;hBO@hS5m~n-}%i
zHH@4vaz)rJj4UD9f<+45!^o3jAHg1iy~61Ee{^WAw-h<H`~;z}e;5P8m=eaTVGImo
zP#7;s?cgwm2zfS)p<yV(M+*)MW26u^A1-7B7ee;qQ&Joyc=qyt(f+g)#|VxU94Gh;
zop7QujqrFbjPW8Qe_qH7VN6I!UZjT;F+VYkNg{taQ9D`4D`C_VovC5G7DhmX)50)4
z@f12cjOikok!Uqj$gD7m#`!vfHjKH6+Bd_PC;Sb;`GN}sFDB--P>KbDs-QoN%Rj_3
zq!vanj8GV1k?VpH!KmN|CrcH1%#flf$cAk0gb|}RB6vQ6x58Ky#-%X64`Xo{Z-=oo
zjAdagVLYeA&n$C#=elb8$lnQLc^I3*_(n{<8^%Xrd>oE{^tmF8_eA(UPXR(c3}dAb
zTKHeAej<`}VXO~hmGISqYZ97k!~gHCNuP@FOTi6-pM~+ckS_%J0wWs#N;t{JFuqQ3
z2JPlBwn*`W;J0Dy3}aUqTcx-yp;;KlcHuh`5}MsDe18}RgzORA8^%5%oDRD?DEx33
zM}!<o>^oK+70I#xBRQVnC&M@u#%WPFFL*}qtl&Apq8&#&7s9wG67ug77A}Wzg~BlY
z4r5du-&LljN<FSI_ioN)@p>3H!uUa2{S?N}LT(EFD0nN3uCWR<$m5qVeiPws!CwVO
z-AKM8M7t5+T)zwdL-5Zq{@txm_zy`K%_C?L!CiLETpB^$2#Q5eJc5c5REnTP1WA$j
z3F3hWN=9&B1ZAa2Nhu+vBlzDLv&{eD<)rrhgrt0;RkDx@f<+ezl_RJYL3NQ-iJ)qt
zDkVW`MDU>S+7Ub?q^2Opp#6|sE5Uh1Q76GUq<Rt5m!d0z1_^n?2p&%GM}#~o_*euz
ze(lvWKfY5MiKKA^O%j?#6KonmY6NK!G)u@IkD%!4;)#T$_SNK;5x67h6+!O^JQ1Wv
z&?$n>5wwaRL)1D7dLw8nq;;Zgn}juv!6(9Yg6$*dkkDz?sA^_{KPiMh?2?dV3+XD@
zErP6seDJyC9O1bUJ`w$Iz48*ZJtF9t;H_>Z_lY1sg5eR2h@h{?2SzX`f_}pL3l2!=
z@4k{eIKhVs8N!*~jE9^e#bJrsA|H;7U~~jeNAQ%$M<r@!Ur8R5;Lk)bHo?b5@QR!-
zXz*DPJ}1aozYxKM2;Pt2g9u)X;H3x_NAPw86C;=u!R!cLXI$-3UKahS5lj~Hir^H%
zR|RSLk_`AYDNYldE;u8CnF*a)LK?r9Jtu;>5!h0k7eUiKN>KP45zH5|AOcm$n}W2z
zFoFW%LpsDyF@E6zK~1p3p7?$YMG%%^Bm!Lsg;9FGepM14Mg(R;ZVCCKWxgXMCis@%
zB0=gGUEwT|;(HNv$;et7!Lmf{J3^KVz8k>`Aw^C8O!28Hz7Hc<$t@p6sVF{*;Nu8R
zMsO;EPa;?q!Iu$y6~St0wLx%=Ap2b#!MX_6OYzgl|2r2HrQFX%{<+{6jF!Yz*2W07
zMDT3{UnlHrir||B-<;6g8o@RZ9*v+dg6$FPPw4E3V0Q$2BG?(hF41R?MfUebu<!pr
zlA^&Jh~S_!KNP{?2#zFl{x>SB9ZT3hF64w@`?LzDBRCVmFA?01;4IVTn6&RAxD>%T
zQ8=Gybs>U_!i#$RK7z{;+)UJ75pq3(s|m?9ArIY1z9Hm?gq#xk_D3n+ir}XRevV+R
zgf8VY{;O2|nb5x@<Tt_J1^*C?4<mxVBlstRf0^N<@$}B)uGAKj;=P2oi~q0odc5}}
zDV7wZi%LgPCW_h#ow89>h@xT?<wSD7-~)-;@<NgY{XZsG5>h=;TUkhzD5@qTDN$4t
zzI8yaq7l}R;)8+@3D%6FmXHCmgOvBO>qrrTbp`81QC~;{L7JlSqftB-#r--S(9tl8
zMp0~zVoMZ_qi7Pv(|jBeg)54tQM8GoZ4{|deq%E$EgFBNAW8f!kYereD4r0~JPLQh
zev2qtCit-%$sXb9f~^EI1igZ-1v#odgFU_|+C?!`B<-W<5XC^@9izyMqDK@xrTAnN
zU8CqGypv#O!7fqc$vtnD6lpUzifrLIf;<sW*j;#DLb7XrT-Ym$z9J#-9Yvo6&ll40
zTyj4l{i7Hlg!!EJ+EiZgb^f3z28(crAcZenNmhgp6C5r$LU5$uQ-Y%eM++96AjU>9
zE{YeUcqxi!qIfpSKa<D$`o8Bx=U{r)^HGeC;?c{wJYLwNOl;))rC!#ADDGDGts2rR
zBw;Wy3L^?Lib+wt9L3})UvCr-@<0?*qIflm*Q1yd#Z(ba7i8^gQA`tlNp1{hB;+%N
z%!*>RkfIAJ>d%$pn^DY5Xuct2zTko=CN}slZ!e6ZAfcm1;ZN{aZzO9`1fvKgBvB#Z
zC?Z0}CZ09vQ522J68Sq(EEi%&;Y1M={+8ep!9`Il7V>st7<{qmQju`v%c8I(nY<gt
z3K4!0#d}e_AH^yuevr`oIEoL2uS`fjisIMod>Y~Li3ktPt-3mjHBqdMVqFv)5}NCU
zd@5KV-4&aY{aF;B)6X}vu-@CWLi}v_r6_!rXtgnluZ3?)NWO`p#>x2I-?ve0jiR`Y
z5<0d;Q5eP5D6VnLdz9@_?2BT56nxUPLmKXkVpqb#?kM&M-z&%g)7pV34n}d2!*1p|
zB=X}?oQUFZqSX;0N253<<bP*`lk6p-b4tkRD9#8e%J4LPPKxIRFL0~My~cM^WbGv(
z-$!v-$Q8jN``4qm5yj16<^LAp4^jLQ#cfKY$hJQUxh43M;LnNJ_%(`=moljHyU6cE
z@tcsM$f5iXDgG(=SE3c=|A^#YZXzM~1dHkMEmJhAB;l9$C|8<PEve%^9d#e_Jz{k)
zCGyfb3il{wgqIa$!*W6<+$>dIN3xC#9bO$3bX3$)Uq=HSm2_0rQC&w39aVHx)lt%u
zRZT~+y~?x(@f+0?J^lt;k_mGw@rAGt>Uc;;Z5?%V)MWEF(rW3LY;`B8x>q4-wpZb!
zPU!sd2|Djp>gqV!I-hdl%???E_bLzTctl5<j%GR@)$thZ>u||98|rAJqp=>3pBLHo
zA>ZP?%C^1n7nPDXmHFP=tE38{<h#Af<2s(u;nv~N(OgGpb7l)M#oAk2GFx(x`{EW@
zOqW)zbda>z7njh~@WH)W>u95+myX^#+UoG>=%S;mj&?fQQ&_|Iq>gH9eH{cl7IF9}
z$<)CYs`A^&oj6l^by;@Leae_=ec7a&jw~H{I(q2H*70zwtgky|<?8W=dpSCu-=|R0
zT?d7H-Z+1s(o@IV`xKWqzxI*xsnaU)wa9&R<m(u!L($P!M?W0{bPUw-<vwNKW4`Na
zeEsRzeevtnb}7C=ItJ5+De?8Xw@(=&yxxAL)qZ7|j^R2+@gctmcb(1}p<|@*r*ynz
z_UXM}VXL8kck6YsRFQ?Jb+BQ>`o3{Gp3%|KK&F9bbv&ozf{u$i#&ZffKG5-@ju&)H
z(4p$^>v)j{b<EH)Q^!OdlXSeQW2%mq86i5R=oq(Oc|}%d_q_N^pLvX{9>3R{w_kZp
z$22|u2}0yr@~_7$ckGlkU5b?a#P|Q|n62}jdYDh4jyYVKHr{!Hb0t38HOR8}D-2Xx
zdu(f_@k!nS9Se07=pcVnaQ%Me(0=7Q=UdZvZc5*P4o$~mdR|A6k)y-XVe1I%i0IJS
zL`PJ|NqI0*tW(z3dRg`AXC)m_>Ksr^#@hiU=YYcE@;_1?J)SGx(h<|+?^$M4EZ>sJ
zWm=@i-?aPu0cDAfr8<`Dc$YhCt#6r*cXUvJSNI>a&8OttfL<%8@JH%<I^O5V4=B8j
zeZ97i&EG$uFdkOw_(;cg9XoV<tm6|MUoaSStkSVs#|AzAD(y8o*6R3_U5rUv#}(OD
zk%L*U<H^Fz9S0QhFY9M9a%l529iQvycB&LP4-WV%4pqly9b3fhUkiRCxJmH*0fh&b
z<I36OZ`rnd>1{f;O1~Uu{4LdMeTDRAdJp!#Q^zjGr;cMfcIznfNY(v14(QmUW3P@o
z2jX$Nj}uvw!{hr#zJv5<`O=4V9MM5jhxGU}=LZieo0n!+sOFpeTPMB_`#7s~oYrxM
zi=yL{4hBZ&gK<-@j_{=&jF0WCj$sFt!cX$fNthK*>C4*lI*RA}xai;MxWtrYpt6DQ
zbzIi*kB)zJT+wlr6VdUD%=DU$>pE`e;Kxi;4k|xzadq5ccZ{@qtzN00Mf{Nwa!^@$
zP$8e+HEWZQ+d6*L@h7|H9CiGr;}0f*OBt=L?!@1P^QG0~g^&7p=H*++j~wJb@PMRb
z>wE^oT^;vylr~VtKrsWw4U{x+pMeqvemtlo8Szy7M>7wDzhQS@nL|qbLrVXSS)~k|
z9n^~#!z`9HP|iRFBfgdHH}HUg@&=L(e0n;om@mui%cliu!tC>@y9e9Wd(>Ca0C!xg
zLrN6`RoR6Bmw^-m)x^ld2C5sVVW75wI!6457!MkF$Usd4PQ$9j&n4@ZG8kaBjCk~N
znHWp8%a?|MdIstnsB6Txz>q@<kvX%0fjiqOQjM<{XPi7@;86pQ8E9yrvB7su#@{Xe
zWlbM9X(IzK9f~h*-;23Bm*zAzkZQnVAl*Qkfo2B(PTc1<@Hj_X)7RWU3pSro@d+ue
zJfFKRe`resM|1M|zVg*eb6A{xKABBg8OSiu)_~7|SEkd(0LR0QS{w0G?b$Y2Do48{
zdn7;mFwow>sI$Hc?)=XWDIMsjHd!n_o{{yWfldbAHL$`!X9HafOfvAYfvyI+85n9n
zF_2{-+d#g7z6Np(<QnK@ptpfzhm`IH##i(85S}M^<B-ymYkgRu+^**9W8mrZ{O2$D
zW~Ariu+s9d($7GD1A}FPd~5jt0|N~VqS?dBgu_anH)~kyte<Pd)9DZcd|u5P8G2@z
zf#C+m8W?9_gn^Nqj)Bnzo?^_@j=w_vq3g-S@>X|Z<W};M+P<ebjBS}?3<M9y{r?P;
zzkwHx_*uT)*39SVGy^Yi{08`w8SZ-O(6QRUUKbwrO<-U3viN(P6^E6V3~WBEOf+!(
zu)@oO$p&6A5HO$_m}1~n1G5=m2BsQ#&A^eZnKKPcGccXuI=C0F1{rA^x@OV-3?rTm
z{$7(qomry!%VA}Xfw>0Xn~a49<{5ayzyevmjgR)=c;*}NyA_fd)B4t2mvekc_Rh1(
z1>93(()<QW9Z^&xe(t8t*Wb>*e{xFDK*&JMz*`2w1|kMb1C|6vR8Tk2b4fN+lR?W3
ztM;nxWA?VW1-Pb1lxL49j~r22A5qBJ=^_J*4J<LRlpE(^-`fUe9Z`N-mYw^sj~-jb
zUXCd5aK9M%?1*wmn*4M`@wj_bIjX#8;C%xp4V>a48u-w_w+6NvSZUxR>Kpi60^nl<
zs|~E-*bJ=V4!Yo5^+_J{9(!MFU>)~6H`GyuiDE=yX8&5g^^DclS(I?4HZZE&cuBr6
z@TGyT4Qw*-6&-R^*=WS`6_3$Jm4!zYhQT)p$z}sgSznw>-XaoKQEi)nLIZmZ>@%?4
zzzzeu4KN|>l<m2T`J{YlcEpX(L_zZVwu*bCYQd>e`^B+`xu6CP7&yoPo11e;)`g!M
zFkNubj~em&g5w5G7~q-f7_-OJzRWZHsn^=0O0oGRxuB;FoT1#nZwzUMih-*Jt{FIQ
z;DUkg3|umBQKEhO=t>Oo4UOV~LGrx_uNb&2gwtWbKRK`$tF9ZkVc;hNKO6YLK&$#$
zKXRs{E8Ud2*KQcMa7*}%_1?Wlm0t|pW^#~?Q&1!RaX)>vGe4f{FCSHYH}D5DxrzHs
z{K+Ua@UMZpl6-iM{@cJmGEH7LPClE=^W8lL>RMkh6U9wvXOqbpHYH3XneiRheZ7~S
z;V%38s8Y&AX%l5llrvGrjAvTzno(zysZi~ha=#f**AJNS?ZdM_uMkMeo8TKkNh+GC
zWMbXBSpP06o2X*q+EQF!imE13Ozc~P{fkh|M0FEa99(r!!^DFo{;}|{g@;VkWRDig
zTBv2Bwu$*B7MQ4G0w(&K7+|8ViFzh{Cfb>(Z=!*TG!xBCJZ$0-6OBwXHu0#5l~3nB
zX5x02@-N?W-+j_MvY4l#$u}*gk~A^lGEu5-TB?brX8e1<Bli1P#iQvl<;a*^_vqZm
zO*~<ur3tr*$>-a?SIpDgL<<ua)@A)UH?#HZ%!WVr<oB!6O?XYTHqpvNhKUlzJRLfF
zYgcgBt?1@gh|BHwwK36_&aB{m@|ZGvYdR$xS7-Ix>uYbKgNa-d-A&xg&+BNSi;1o#
zGEF>b;<ZNoI+@rrQ|WA?V}-19O|m0O-pNo#HxpSVa!kBa=*yPr)GO^d+&r(@+|0qp
z6m>uzzb~C<qKApzCi<9oYMHO6iRsxDYZdeK;$#QqPB^Aqp4>a%L|+sAOdQ=^tGDA}
zD;|?B)cLVT>a|yL2AUYeB{uPbiNPj@m>6y1X%j<DC?-bItchVJhMO3{1v;keZtE>q
z(LKF```(D$XIEvNF69};d6h`Ja=%C0?Hf5TkE0!9Vyua0WnIRZc>9?0)pp-AoO@}{
z#0{C>98<K4?$g1H=S+;};$CT6rL*_**E1)Wc#-2bF~j6N1tyw!#l#d7zqO2eW0HwT
zg`}6cK;rrDjwyqNc<uW<ubP-jADWoPj%H^L4`nP};VThJ%PsA>QOx6;mpQD0d!~t5
z+%<cBb4|=P@w$n5=i1I;SSGuzO73-)+#C1#)Z1P<WS)sPIDj!}e{hgW>gj>rH%%-w
zalphu69pzz6Yrb&z=YpKz=UHW#{Fd?Xd-GtXOy<85Hb<wXc_b4at9=NzU>^hyr;OQ
zbE&xV4HKpbiyP;-GUHs<eI-0}3*BgQ${R8-4bFSZ#3GZg2EZ~Ci#aJ1&-lDcOw7&n
zUh{cf&*r|+Cy%baI8%AY#BviWOuWbaTggp@7TbOAnz%H`%Z2`ZpqFu2+?#jo#qJ++
zEf_*3zB2KViH}XJH}R>7PfV;bvBtz&6Ah0m-3R2Z=87CwzJ4w@^jvP1$G485bzB)X
zGWR9k(tCUxOnk=Wj%0k!Q5{#VOwH%IS8tWa34XyXT)|DxZ#40>iQNoo6PrwYL*vJl
zEfSw|k1LynFjf~GR|=oX{no@*6C~RN3ybin-0ebk2<{ZzC0M(RXFGql+u6I9>4ouG
z%(LIb-5QnN?4Or1C1>|><&cTPCVpVBnK;6jH*wL#cP5URIBw#MiL)k(J(D~6w)cdI
zlO|3v7#e4vHnD$dKKCq<`?~!gZ<8d?Ic5MxV1o+e=S>j5JFal1g>y46nfTtsRi--=
zmrYQ3#YDB;zDDyhQ@VJ+EE!+uzm6-{S)1v-Ve+kTnaYc4w<8%W{%GQsiN8$zZQ>^r
zKQnQe_?2m`l;;<&OWm|b+Im;)983#$82qxM|1iPTq;J{L@63u7-5lhf+_p)chdOx4
z|1t3|bGwC-7Vet3$J9~5UEIRU9lgb@_`paWxAP|M@|CbKt%T?3J|7kCvrx)HX$#xC
z4t-!y{8th^R%HL$&db%wR`SYOxSz@vrdxQxLU{|B7M`?_Y@vdMM=U&Qp`wLK7XKR-
zwJcP&P=$S2sBWREg@Uq`QY^evKP|hWn^|}6wfLk)M>1+yI33M+$ijmbJ|2)u36}Y|
z<BlP%w#APWGwNEXXQ7S-Sn!qfFj3qs;i+-YU7y{ZP;TCJKWw3a6;F55J9#+~?%%;{
zvmUe1(1P27$3i0ujV(NG;Ry>(EVwMBa$u8lmoD`+wZLEwE%$NX^;zmmv(U`Kg&CP?
zb<-a`q1@`9+uTA63kP#6wj^F@`~4B`<H6jm19F++x$fx}T3Kjgp{<24N0rR5(3(E!
z;PqPn{XT^Y6h58LMf6!{XQ88oLGv;>srD8kYqC1f+tCbWOG;+W%Au>bL^C>B=*;O@
z7-gZ0g{~I*S?F(}n}sY3JuURIkZmEyLJtdTCU(zdUl#H#9Lvw!JTiC0$$b6U+_mT0
z=9ci#GJn!CNlEQ(p^t^W7Q)etd<*mX<gMxCZF53lhB1faQjI6U0Tu>Y7-~V`AT12$
za@VLdgl;^p96aBa;nDwu(r9Mp2QT*?W?{I65f(;TxN|bUUJ1{gUU^K9Jh*U7adR4^
zjkfT#g%>PLurS8LSPRcuc+SE&3*%2H&u}4<_;Sh2o~yDR8<n@<gmR~|_iLV=lRV=s
zJa6IEitZ0jC{B{+MGG%6ZY|y^U?O8Lk}-*K^-AxfN-j^1B}R4Md_sA}!XM#`DQsnd
zM(9k>oXn{fUbEucgy-MyJ9%I5=J8ZD!@^7pg^X|uvn<TE@UDdw7GAe7$AW6XZ(%O|
zV_|`XHyH`*vfi*TU;NCa+`ZG+H6v}*^h{2WKO<VmsJ3wGg!1PRF9V};W?sO;<ua8t
z3qeN3sQ4L~jwOcZd72%XM>j?+3|W`u^5jJ==oSnHq$kf5d`r->U<;w#u@Fme=7B{P
z7F&2bAz5Z&NrErsMyr>`COqB|;c^RSN_tp)&%*l_Hdy$~!Uq;Uw6K~pvar&^M;1Qe
z&h>ej;+RI}?DKtW;g=K2%zk;Rm<>)UtXjIux7NZs3!hq;l99Ha!+tiGey)E~A&Jb&
zq)zLT%I6lou&~*}7VZTL^vOmp2l*eVU$N`<-cud(xbZiMi@sr0IG(!whx|Sum;T`i
z{aXuLEo`Haa0ZLzM&#z7R1TfUXYCFPJ1tza@SVkrRqVEKl+kWskA=M!4sc`2koGYk
zng1DMCzZJ;m4&Zoatwzo9A*Y6={X|FWOb&uc=33ItS#YTJRG-h!opb#=PaD$QZg6O
zX%^m7QkR}oo~)PVtjgl`6&JVa9v^egc?<coGcT~;!Cq!ax{H^WcS?FLS@_<<PZoaW
z>?~ZdaKpk67Oq;jW+81``gQK~Oz+_xK1O43htDqWW@J|DR{o|1?$cY62Y%$9+V5jR
zpd_QMx9{-WU%0<4{AS^{g<ma9o!py0E2AA=oczw1xA2#Rzhz#3(m8{@Wnbz}cYQ|h
zmG+c;PZ`p**LO*tyB6+oFg9-5C}yL$jc05;YommXBpV(Z={8E*xX(r%8?aHzMrj+B
zY*e;U#zs?bUO5~0+bC<}vy%$5H-CcnfQ|AtD%kNzzIh@)*^d8Mj|-ada&KOERJ7x#
zn|~YoPM%b%*r;lwhK&bpq}Zq?nmq69?vYpB2GLCqckmXgmzFua%0o74+NfpYkwV`s
zr11>M%L!iX)V6Uq(|hZrQrAX38;xx=u~FX!^TQ)H9<|ZH#>1>C?P*meeuCiDW7$*6
zV>TMvXe5KFe@ZDjUGk*Hb$4-IHlDE2+(xR6G#hQg8IRM5JCEm)W;Qr@9!xLoPboY#
zw6M|AM!!=^gK$Rji{0Hecri&kJmK<e+sa0UjUG07+VI+FZKI=&Oxm>3*2c<H%JDJq
zaoA(g&PID1Ovqi@dAZgdxE80B1*a6Q_|U<*Pul2YqZ<coqqB`JHh5jv)y8|V48{XJ
zTzD$~>m9zU?Y-GHa@gZOUw0e1HW;7v-t}!crI0X6nWOS-5C`t@^|I01hGJuwjXpN=
zZ49t6(8lvQ75m!YNwyyy-qG8uey77{^84E$@+N4Ijlnkl%&IuV#_3ZEvpVmXc&#$j
z1~2>;$hF^a8zXFtw(+!$74P^)a%F9d;^2#UhOW+<yxg~XO;*XT2QY1pu`$-hU+3D6
zvvD@3;ylLWz}(+XDZCQqHhj*;cpIPCSjAD<c)>={M##nl8!y_JZR2%zYGa~}*KACq
z_iVgu;}siIY)oeKhB7$dsiWh`w!&%URYq?GH;<`8Zu}C@|Mf=YPPZ|G%BPiCHfEBK
zN#oJrbbM-T%YbQivCbSDb8RfJ@g_GyJMTOjZ`hb`qx)%PYTrDn#g+T!P3YiVXrsV}
z-$p>@J~f)5+WgQt<K8PdEvNeQ8JWB%(zwNndEPAUVaSDTL~Ja!@wSbq4c&&#=(S<k
zsGeJqTi&$sb1Bd0(+X!{$sXx_pC`s~mhrr0V-Y8QS{W|4By=NBn!Mp!Vq+<z%f?4G
zmf3iRabn|r8_R9H%TX}`hj@7zz!c3rd-GftEr(Alybt<-F;m*}q2T3JS^ciGt<cuX
z>nL7Gf6Sojm&f$TJ-*t;8XJ3T?6tAh#yT6DZEUfz-o~dkzO?a`jSb8IO?!QA;|mVs
zwDOq^CLEITy;6BkclEbip2s)ZxKPQ>!Ed6GO75@e|4MFGvU~Lm_cyYIH~s7W*2Y#F
zJ8bN<QP?YQ8_~vg2H1XI>R9YJt?;Ubceu<jySQ5~*4fQ{UD888XI8Joo0_fdy!&kI
zw{ejJuyMe~K^sSG9JO(XA#G#&Yl9aI&HXvqz358Yh4<Vf$7~$uLafNXV1o(#v%&E+
ze!|8{DV`EMEqF%otRQvH2{|uwVUgL!l~eH&_n?idHm=#YOrLc2E*V<>ifooYJ9*EY
zR&Gw{d|jfBA;H)vRi^X}?yu8I)icVEHg0hfIXofaCx!tNg@Yyzez9@eMzVtn4t`~)
zOx+GjIQY%R?>7Fn@sEu^XoNe9xnh@(X@BCaydBTx^3H-c-A&FY|1xbd=Q|j>+t+ND
zuh6c_E9863EoYRc&nSgS9?Fv(lyu^Ww48(c9F%fU#z9#JH)rLPcA%Y6%1bm(J)`hE
z{?QqQKW%=0zwdqr4>;I%Mp5s&%RBMpf9*{E3s>4!bWq7bZ3lH6RCZ8>Pk0<W=%A{D
z6bIEDRChoN8|GxXrsVJjZRfeRTvG<ynKQ~m4$h}ks^!E_h&3JXSqd}uqEP(um>z?J
zx(*(8@Q8zY4(dB-;D9HNLwDn=dHamQjkbJ;FX?3dqnt<y533qEc+5dVPVl{W4!{4b
z!r;7dzHQ~fUYCQW4mvyN;vm&Qngg$c)->qgaR+V(9w#0ZPdI4qpoJ5ULtZ&BdQ<DA
zwd5?4-Hc%>q&w*KRBnb75BpXe)!DdX>11}{b?3El(AGga2kp6_NgkgQkN?|G<-Vrm
zGUhut=t$3;QJ$3MnRMN=y?HgxgVreTB(=N(>FS`HgMJSBJIHd7?VyK)o(^)PVJ=<j
zU}JvXA2TwG9$(~1N8EJmu9t(}4)R69$2$`SdHXnMbyjg#bo(nL^%eP>o;+#}a4^t;
z;$WDAL7Xyg0UQi*aA0H}Z&Y~?J2W1m@l$-srw8*EayWIk^bSTbEbqDPt?45j@Oc!U
z-taPPz+mr*cYQgtGDkaDHE}3!G{!m@=iogD?>l(L!Ly7m2SEqVIT-I?wu9FlJn!HI
z2h$u(ckr3dJHf$A4kkJ%f7JUTCGEXyhve}rKZ&lJlEbSz_WLrM6#6C$zT#ktkXHpM
zpDN@v2RkddS!CN84rV%-<-{K}v5Wk1xxXy)RUew$>#Q=z!CVIm9TYg2=im(o^BpX3
zaNU(1zdL@RJIR5exx7_*`mFM%6TjEseFx9xssq1+fCJw996g)A<euA8!b2Q(&mD3Q
zcCg67Vh0fiQ3r+t(?Ld=(o25JrDJvaMDCj`2YiO(IEb;<=e6mCvx;#xenxo9iU04x
zp!V@=fKna3Z#!7xV7Y^L9W3SQmq=UY@Rx&e&6n3@z2kt-;&`-O>ieKw{1RmaBXEz8
ze@DO@?GGG$=wOe7y$)77_=u6iiLkkYPaLdw@F~~J!D<I<85<6^irF;|&c4w7;#q~r
zi=wB~^X|;bytB`@fs5kc3kP31`17ptIk)*arCozGa^9^pDDD|}BI_$|v2zNK;WIKf
zIrzrGb_Y8gY<94PIfRp~-|1Tioz5xTK3loLcVvw^r@S^RbJ{tjkU^rPo^9i;nvu5C
z!7iqzN^V|J{5d54h=~vPc01rjIQc#Y`#DGl=NPdL4mvpI;J5>xJr6M~9UP(O&nbL(
z%NuPv>L|0~;M^9o<4!x_;G~074o-8qOL~|XnLT=6$m4$D_4bOp?lVsOPLPkY&XYK}
z<luV_Udg-2Y|MXzbC7o`-}$Rk&tS&*F6A#XHxBYHU7_%LfY%<p!nwu}qJLueD~1~m
zevpKDCWf01e&mjeVOR{enEV|yilK1~KQs9|C>O*1G2CYIcTg;b;xXJ|cMkrbDQ4_d
zSs$NMes|(eNOqo6cvJJ2gTEdA-8$|$_=gFH`QO36^y=i^m(D4Ca#EJp#slM5dUO}>
zAWFoL6hrA4%EVCZeB2KuW4JGd-E-piJEdZ9omV(`#?K2rH+{u;E*pcVU3RNT#se{w
zkD*2k55|xjLxmVB$515}PlFX>pgwaWb48_CJYz7QSB)VhhK+aK)nf5;&5t{Le5lSn
zRXv8z=ao~#b9u&mD2AFb)Q_P-47FmY9Rp&h8$+E~{Qi{raP;Ur;_&lI^NwC#iSZhv
zUJM)+tvwvWBQZP{i=T<;kVj+Cw);r<*ps`aVGO)WeX63HUTVU5vC|m3#LzT`)EK-m
zw2mPyhGsFejKLkl5BJ=U$H428<}vgdmiI&qQ?~nfJyWNWyG0DaQXXDbd16S9p;ZhS
zF}$-jt4Ad_SAU1k%|}=>OM51tSNM3jO$-YPeH~)x7(?3_d@;0(fsc0E$Kt00^}Iq(
zQcKBAsh^e^!;|bZ$#Z97ckZ1|F$~&}$(uypWps_9TMWHp=o3R$4B0W{#n2;$oLKxx
zBR$+bhFsw+Zj+0*wLS9MCwZ>qR_w_s#PIHUW#r`Ed^X6<k{?6g7zV^JkkR;yw_gnX
zWB=XH@_{EKwy;$m^VpymhHwc6<PMJE{eRu`GauRyrH7aK_}H!Ux~$<bjEG@r49j8|
zNqG!&VwfAls2E1a@KOvDV|bbY5W}-EJQu@Q2Ech`?C9KajJgW$Hj}y^8kPG@3`9Qv
z86U&*F-(ZzMaB<}%*piL=Q(~}8CAk_VXtrVJMpI|y!BW<DQi*;FUK$=hM6%;j^ULU
zUW;K`3|y4^Lm7KZc&5bgYK&j5%iuAUE?tvF!W%B$CQPUNyuvdqKN^@7L%9pe>=<5`
zNyS>`@f^2$L~gwcN_Hq?UJP%<5MUt1FrVuf!@?K}ILIW=n_Tn@@n=(Q3w^vE7+10O
zh4ef%2AZwYI^EBGanH?*rC<!97#78_n6BRA<5gLhaTr51hBhPf4)@Q~895c*jAU|y
z&Hq29-UCXCqI(}+U;z=AxJ!nIEMaGcu<Q&wz!EmVl2$TEXflX`AR<A65>*62Km@ka
zbWhJr_kxl!5(OnFh+-z^oH6k7Jzf0vf4+0--1F3}TUEDi-MU>}-7}pBf;EB?tmR56
zz<GI)1@3iPVi6nHXkl(LIfOE)^bjrz-VB;~2<KsM9`<p@^AO3y7kT(HkN1y=<zZ_c
zw&lUjgOi7R8o6$1F2KES^s4dtkjZ=skmugNY!F`bT~_duJbao50;Y`uY@&q=I9oWg
zrzI9`r-%I6XGb1B%R~D?L2iaW&vSSC+b_1^x*qgS55|G7^6+&YcI9C=7irBRJM++N
zXgBVlcy(}(DLN%osaSRoU8r-JkCvyo4xESmdH5j@NAqwX58vkDAcGRS&Vw`}o)05<
zZ9Uqk3!Q<>`7m8K58u-tPD?z_Jv}^^hqqM*xp!*E=vsL=k%wRMz+(i4^y7K>iJDCA
zuC))gcst`~dM^*ai}`=e<L`gdey3ZW?);mu02cz69?yLK$O9=i8+5<FM0h!whf|!#
z)6!`nd4@qxfOC1cCBXSSTwsp^UlsHc1B-YpcsUPO1c$?HU!v@_0(|``;8mc2Q?f+a
z+w@h&e^HmS%ogqmOmIIB4+Lh+d6<Vs1$;L9Zyx^3!(TE^%6OcI|IuS*OqB5?4{<Wm
zWCUdtl2KSjbs05e6p;}xqk@czGK$KGot6@0l#)?QMsXR>$S5JBq>Swc(-{NL4awCw
zYcfa~9-kBZ%xBuLw6u&eGRny)FN3>K&*sjgW!YU(Kj%78cK>#1+`d4PjBku|GVdIA
zS9B%zQaZJ&j3dL!RF>W2J8tT#u#xN_K{Xi}mCEu~k*95tQBy{;43CUjGHT0sUPc4i
zy^*gYqppm4vK#zI@@Yi{@0pgldrnLBssD<!z9;-NOG6pFBWo;!x4MmFzHgt#KWlos
zdn$#!GJG=pGA8_-&_qU487VSa$SC__H}375$!N~;_Q~b0{^V(?L;qYp_Tt_?Rd!E8
zSe<^w$ISs5EoJw)Gt=yrxvgZhmeEf}e;I9Lq|4|?3&?0Iqn(UQ8C{HY4z|6F4jiNG
zo{^6H!#(O;IkMZs)9$r6OGY;BFw95H%K-*-%aPGpMlO|Sbs1e{bd%9tcF%Aq!_;(8
zw?>14>woXVy%`@{^9H$xjNUT($ml7fmyF{bf=woNFMmej5hCwsCUq{;R~T(<S=SB&
zWV|S2sElE<8&w9%?jigT_EjczkPsUzyH|5cN-};K->v)0?nA)gvU@EXDPt6;k9I4a
zI;wOL%8ZsVM#d{L#<P};mxS0j8Q&jFe~ssFXWTKqESRkRWslqmqV9r()PohPKlSHH
zGG3DrmSNG<GG3RlSjPJ@rpS0h#@jOH%9tu+nv9t;W(f_a)0k(ZHwB&{XdV7TR}nuC
z_h!>ogb(mZpIWChAHUK*Z^`a4LXp#L=E;~Z<6YUk>02OUp^UWybKjA%NXFnZ5?!}O
zO&<Zn1@DWg`Fk=pkH~e8mk*>bk+D?9M>1A(bm_qlWGt8Qp^RlRsx5HO#*_BNF^w5o
zWQB~CvU|y980>$$$10lo!!)+`F_(-Cm2Sp<IoLB&p6u=f*2&<xde6b#CJgH)%TUCK
zn$O8dEaE5CxfW{sLNW{)3rhNf1G<?qc#u{9VjDMbEl*=Wj>w40*ezoZm$nRB##R~I
zWH|Iyb|GVvF#CGh-IZ++?Ki#~{6u6w71X`V9qUwjRPJUOvY53kG|L(HG=PUE+hy#a
z_saN^U5n}*PRZk?NIz%eXC&SteZ^sN=PzTI>^=einoj$&`zV=-J8j+=Qh2Y7eYBp8
z9~d8G>=(m7B)dDt17dZ2CmR1&Ob`PLdp{`ny58+DqX*ZQSokB_`I;t{IV$6rj9+E^
zCgVrpV?T45(EkPgsle;#-oMbnHg=}d{%}U(|I2Y|ewXowj8BUD|CHTRqpN2m9#`@J
zfl5Ai!hcG}Y5KW>kqXYpILol3puU20GR`xWDu`Ebfy0z>kE+VJB;&G-+ui%zk#R-F
zRnESQn=-D6z{uEjoso8BH^xJ@U+%1Qi^BBbf$qv`+}pjD(L}T!*Z5spply)b{s%H1
z%J^5tf3kZj{z$CWe`NeEvK?ys5>B?sT#&)5^J8*^-3lqL*F9my7lUz%dqT^%P#Vn5
zaG&i~@D^6wHNO2xYEcEn6eRH#9R<Y|Jfonrf-(w9D0o)Ea|#j^lvKd`%C(=y^Hh_!
zIgDej=KkDLv<bnWAhl&*WfhcDP+oCQ;CT<l+dvK^QONKprv6!}qJl~aYAUFupt4Y}
zs)A|?swnOzfh}|#lv`bK4_=_44_^|f;H@F5^BjhlyQ!@u%93AO0pDGzqoA%RO+V|-
z6z^7^XV(g{6l5!CsGyO8mI~4oG**zTpoM}|1s(-n1x*w*Wfx~9pMoQEU2kOKGrneu
z8<v|ZNTI;;Zac&7=>acHEG3`Mp#2I0Li49g#>`dk#0M3$QqW!~(^_#~;b<ew%X=JN
zHPRKdRWSan#BnjTQ^1Ga1RWG)h$@*17z1fl9`JH@Ix6U-pqGN)3UWAc3UU>^zy=j`
zRnSdAcTtPCsF&9z^34|7t$b#%`}_<ZGxkv2gI3-I^;Fy~8P8o^&Ex%j6!cXvNWoxQ
zga06_;6*V~;{FN-2qu>XvxT3e4y4_l@$;x;hyqE$Fi|>GbjsG`v(mf5;1nKSP<NDq
z(F$Y*ih?l;#wwVrV4i}P6pT|aRlzg`FDrP3#u3&VuV8|Li3%nu*gU#hl{c{Ytn@19
z;;h6w&DRu67GkAB>2zA&kTUVjnJEh1ppW@;Ykr?ZP3U;j70ggDTfrQm<eP%dQov)D
znTmTiclxZvs}Ij)-V*x1t>AsJ2`OH)IA5}2BlBr|1s^C_#uYs%m)H7*3Kl7NN5Q)a
z7E_+8{+vKbruRf6e8J}7S!s!arJR?tsmE8OC7g3Ta96Kf2JqzyRw`H}BtKN};qQG`
zDEvuj+LqqAA1PR^V2y&cbVyN!FA021=Wi3_W_6w7E>*UZ$0=T!wz5rtFF5hGR8^oU
z*sfp)$E6^oAYZ|HF;YW8L_t)6sUWPt5}iU&24Nnw(m!JgZ0h-aIyXN&26wphHg|3v
zNe_(dwn4!s3bu%*KBc)7_b88-k{Sv&DM%mJZL{LOp+uDyZ7Rd;Rw2oG-$rjgClP$6
z;By806nsN>Qt+jMT?%$9`0A++ihFJ4v0>E%#ddPwWm6?FYObk03ic}Cjo!Wv?j@BE
z2iePh1qZma&q+rVd`tI8Pd%vMkZ9^VK~G5D7IFTEf3>0TVX<nsWVmOe>mF5bj9u&4
zqvJ;ogeyoxZw)^w_?h#oVws8)3Vz|zR?$MmuL^!sP*_C~6~8O^L%}r#*A@J!;4j8`
z1!onUq+y46PH`y-@Y(LT3m1|@caxpQzF|#$=M<c0@ZT1=q~IryujGL;XRCNFD7dKL
z!NjakZEtjY;Ie`%3Yymoo|_tfRl$!_<4ZhDJ6YR%L%~f2e=GP$!7T;1X(-lGFz{sh
z9eN9wYBi5j%`@k{^m__sUdr0|XZMmy=0mQj%E7(}KH>tInx5kK8S}F?I+_0}_)o!O
z1^*NJEGg}&(K^R}Gx-Up{#tq=71!=2$EhgZ)K{`kt4X{4r*_A!8s>>tQB*}06;)Lf
zW2uVLD$1yMMnwq~rI;#uo>fs&Mbn|41Qne&1)fuJXLqG^$#ZL{huJHVr`NPNH1oA=
z<}0hBoXTGUCMT&lx5r;z#h?BBJ-cNjiYz(*?(tVpQBg%D6>mLGtE|Gi+dsOIZ`J%9
zg1;+xs;Q{1;&~MfRMb!b74=k{o|sirMN)jQmWtXc5_be<`7;_`POhWk=O(_oDz18b
zH--iG23%%+6{Jl5^<^5WXr#i!UQ`^e;c2WQnRc)<H*L;*qkYa-4Sn{!^g+A*K8{XB
zGZjs!f0BnB(&pscPX1_G`gou3^47q=+XAU7{3?d37^Whiq9v`NB1c7<ilB-PDl$~G
zQqfvPTNUk8yfZ1OQlHKp?xeL*k*?zQUVn=N{uN1{`M>rqsdq22CD5Km-V#{4DUhim
zOGQT&Bi5J6<^bz>t*Pmgl7a+Rs|Byr^U>6uRdi9&S4BS+T~%~b(Mv^d72Q?js(3*~
z4;9;*`L=BgFmbTQuBF}1%IK+LW{NMA7+jU&TUn2v^Qe@tC$5i*H~0Bh?DO|mF+g?w
zZLo?L2~>R0#5YLAXLa0}<&0Nv>LVs|h!CTsBqokvIJH$VMa3H`MyeRa)zsYgs*2Gn
z#;AB%#VabtsyOz%XTvbhI67FF;7cmh8R>zBp0BnC>P*VoB6*JY_q!HWF+l~v@^cdD
zL=}@%ey0FwnHiHgW!nQ^)$$O(HY5FY6$#IKX4UadRWXg4sCZk&bQQNY^_amysaRLr
z)9tgInRG%GHS2iha27H%W~(^T%*Tn?G&hT@iA!e1t2uL3%u}&Y#Uf7hroem^T&fdl
zcovXZ(UVufb%S?QysP4U6-!jSN6)P9Sxmg&&(+6e{?dEtT;Lg3l9#G(h<Gq0Fn3|r
z*<ku|6(6d&r{cbf6)IM$*rj5(id7t=3P(l0iq$GUR-vm1saT_8tqNI%Li((0u61<R
z3ZCRkS$Q1(r7SwRDol58e;JJyZsg-iIlMWuaeSK}cKZz#mWqf9Vv|l%IT)sAmhn8D
z;;4$43R~sJB6C*UNlU()OnRhC=iT*v>s4$}v4hjiwO={-iHc1sHVgczpc_@tTrAq6
zVylYy^_klQ<w%QH3zBXZS@OqM3)1C2SMjBaujq$WJYR4M>UashRx!78a3|-hp)dVe
z&-@LUXEtXJZ`gB>ioGiSQgKqnJ{8}n_)*1i75h~jP;rPBV9>ad{H==bR2&r5Tkejd
z@t5{))$rY%inq%jQSm)Tt>P$6w>9wRFwerR0SxmT6BVUk&c14%KSq13hQ6N|C{+AH
z7iBc4;yIz>%E2DAA>#mN{5J-FMk-z%p7*t@?WH`O?GHM96Cc<9XEV|l&(Au=D5T<&
zipwg_s5q<QB3-n!=bVa^3Ej`LdQ)GQroO(%`@ST3E^u8x8zf-wm2M_CXz075;)aTw
zj8u$l4Sh`4R9r8>e+&uCoE3kIA%dZmN<QzKT_wn%eOHW&4o_zr-N5re#X|-_4Rtg;
zQt`KnvKq>1_(#RRyqwkXJgeb96_0s2(-5!We=44+D5Qa&&lIP@H@<r<1c_h2lUBHZ
z|4~CvQ4Pg3Jfpep$5dQH=s=m3O?|}wBzj6{AZGeC$x~9pa~cvf+?$?WT0^JaIdqRw
z8b;Ljki%>l4If?aPEekTZ3$G?P(?$ch9nKI)b&)*P*FoA4W&|Y0!}8ESOmd}!JLfv
zHf=u1tg4~9#!t-icPQR!8k$~D-n1}_hJ}Wj8d~1$9jNE7+)WicwKPmE5+tXthI$&>
zX=tyZzJ}*HMh#6gG|<pcLt_oe8vc5c)=0zSCu!dwDD%k4{HCez{N-ei2CpcZUEkNS
zx`+O=;A3x74b9k*hBOV$HKb@r)!^5_@Y{m=4D}q9JiPE-tR18&=wJsEJpr0}TY%vr
zsNsVm!PXkuXlSLO<Kr}DNz*laUMSdB!-R^SNek17sX2|=K|_XyE*iRO$kd=D1v_cT
z(U7GfTU4P8B|8e^vo1Ze<n^TBmOy9D)PXXG=lHs5=&qrMhSeoJxf-9Yc7H*`?MKC4
zUE@7cJJ?`rfMCV-GChUBvgzr4H1yR_R7Wu#{WSE~uwBCr4Ffd1NaZyw(=brOAPrMA
zyrE&Rh9Me8X&9|R(lAux`<dS18t9EQ$S@6?lYRfI>zlSIFoFiJ6dWli_V|g%Xc)^O
zvx<h7G?4i+9e|Bg_lzqL8?PZ)!LuVHgF6AzzdK}1)G$fIWDWP9_r0cJ+COd1t;ziK
zt3b&>MvGnk*ERR@apt}B<Cl`BvQ)#{8s=)4u3?6T*_s=6=tXaG3O>o4CA?^+z>KJc
zn)w*0OK%R$(Qt7=)?2LDIoPa$XP$=n8s63Lo`wY)7HW7$^fLW?8}_wGU|zY_R1K1n
zvslAxHN8s&C3s(e{g;!8mkN(1Sgzqi4VngB!wOEHhP4{j(c1Mqt2BJ9VGY*^CxxqZ
zwU_%q|NJa&2p?4TT$-Qt#`JVvLHaiI<*{p8zJW)kZ)n`ur(E~?lD_c=ua(<(w2a~L
zg)|r(qlQm4m>RCO&apK(l+<8ph-mKCC`zvop#Aec3~fbYlG!ehk*{Gr7yBA71MCJ?
z*&N6$<#|d^f7*j#ZKH-Qj1T+$n+O_sdROpl*6>y%A1^&yHT-=oiTZ5Q_^oy?!Dn<=
z4W~4m*6@XfFEt#|@V$nwG<>b$0NrU(7DK^K4SO`~)v!y$Zbm07hdWX(#zLvSeHx<c
zdwio|zW^h9=M4AyoCdyelXH%*&HPrwckD|8W7ohtX@?nnHe?<WSqAE=ejms6gNCCT
ze%J7ahGQCj)Nn$>FPgjEJuYI-&%6tuckT9bwUUOn7Gcq6IT^od_)Ww6H9S?kzI%;*
z{cCuL|72v)5UAlf$&m6%CMSrikJ}IK`A4nKJi{fxn83BB;T&hVPVkb3%Nowp&zt$~
z=H^@w;36YQGvEA-j4PZS4L9f#x6-a@xK1C~<6o2%Y_&PiXLBGvErax?VD6lkHFuBy
zj)uF8@U$~W%C$gm(K8=#sb*wwS3eh?IqNeYYT&++n>1?skA{CW#OWxc<39#EE~_np
zC$uo5-*$I<$xS8!uXOf4|Ajg}&U;}UMRd^3K3Sj1b@xvrU%ZZ;Equ*FnZ<Sf5jQ63
zcuhwM9nb1$ucL#Gk~*H#QCCMj9SJ&0>8PxuijLAc%IHYck;L1s-En1g@H$vtM>*a7
z)+*=yuGW1+2~X`kmAC;O=+CI2qoNL}v5$kQq~nw4Jr(Ntn60X#nvU8!=GF@Gx?EjH
zO&zs#)X)JP9pBBFWM)jt>%sdV`s(~wa<~xadv$c!^?kFo9;h6wuj6?gejNcF4Rkcr
z(L_g69gTFn(!iIj!=r=S_{KVxHt-R6b)4B2@adSaJB|WBC%Z1kt$s5d&2^+wzKMIK
z;ME~TM+=U(hUemHFLyNr?VI>m+EPcFj&vPubp&;H9ktTYT7Vu~i_p^+R`9Ib>2ITh
zl-YJP)Q&)x^_g$B%3+M+WiCTUrjGtP2I$Drk*y<F#|s><j!rt>ZtUx-BS*)_jeJ~#
zopn@QpUGv&#n?s1sEmx;4Sn5oJeriXXjD#j0q*bj_h2J+Jd+UYrK6`{GR#t@w~juX
zbRFE8^wZr{Nzn4MoQ1pn#4qX?sAD9X)iFrNU>!U3%%3ZJhH$cU4AU`O$51NvIIT_v
zcUQx!FgFq-ILpO?|0er*>p@C9TE`d~T*r7FW7(IEaXP3K<C~r2;ZB}z@UjkOc{fD<
z1RbyHn5ZM!<6}VJO<AqxKJMj~uIs+9MEYbMuhV)u@~E(mH*_r4@xG3!I;QEEr(?d3
z>B5s|>X@aY^R~bY9dGLB1rO8JUH;j+dt>qzjj3Y}TiYBceJP7{E;awgPfuICIY1z9
z2`mt^^Nx;pbu84~FvUyHA{}e_(WR;B@9FN<XFw%S<;!Ibt<NN0LPyfEQpYMCALuwX
zKkGvsD>(L#gUfU*7hpvlZ|}^EQ+JZDmGJoLc`h_hs+mI1$7;?gT^*i3r=@cttf6hI
zd&+JN5U=GzD-|S=btqgQIzDCBIy4<o9Wfm`4>v9*vpZ8qNQa@LP9q<ZeWf^?jeKDp
z7A=tEiRj?wjRqm*tl2so9qYNY5#;5Sw<`IRZ0I|a>(ULJ*%m$~sfBN&j!ing)bW*$
z%{sQ|_`Pb{4iO)?S=y>&n~sA@W}n5Sw$n@3X7W&?wwC#sj?cMFQhXfj7dl9pID-uD
zU$ZV(WkU})=TlOByEvP3)9J>K7i8_#v5!k8#It35qhmiKn2yIf4(Rw+$6q>5>iCY`
z>G(}Y*DBsaIu7eNF7OdS$vmp#dx3utG<r@Vlj)eq{;1;{!6|z<?I#^S>o_6!ztAx_
zUvqk$Es!T>t=~oIA3FYbPWqEm@M?V0dFhmn(>iYGxXGZQ<E)NLLhPKN7X&>oXtVQ@
z_G&!)x+t=p&P$hdT+wk=WUuR(d0x6Euyo$lle+zLD2?Ejj(c1wI#~C%pm%iK6<~u@
zp3Dy__Ise?Z+czF?!*u2brt(P5|q{d;arRfp6l5CUmc{B`Jav_4A&vl4<RmuLLpQP
zxi%~uLXi-j3n3wdc)=+i!ZQLC6||V3eGa=?l?dV4kZS}cW|>Nc@Km6b5F@8-2&F@=
z+GPqV5|dv}WXlVh7($W&6$EAJit|#X5GsdIC4{PiSt|s?>#Y_-^$===V4s(m{le=-
z2sK3!ze&U_huQ9z&b39AI)c^}G}0}Z%|0JOgAkg9&|EMZhT!WqBsqjeBHLI{>VM$8
z<O$*S_<mjrgz&-8>?R?cJTEmB9Wl$UJB<#e2>GCBq(um+A@~I+P0)a#Ed^!QoXV$`
zX;r|X(b7X`%l1Q97DBra+J`VAgpnb12q7bco+0!KAv1)m5ITp@C4_9DK*ta|g^>Sw
z5)(Da5zL3@C4Q3Z<g)m#A#@X*7eeSR0A-#^=8CaUtOs>o)`N*fy+h~|!hjH74DowF
z@ob@Q2>nDCl%zm^(Fld3<NFN^K?-4L2!lcxEcn|$Pa0C74CN_INsf1zC><^+n;jLx
z=n&ovVP*(pLKqvu<PcsD;iVA9g)lyZ2}1Ja5MB|0=4ID3H8p=Vgoz<c3gI<jIx^Wl
zCz=A~FSyI(o?K>%P=0C%(?WPdw7`K-fN467c|m&W7&AE67bJSftPp00@O}tWFGzDj
zcq@c=LU=cXw?mj4!u${x(8uQVnis;V&m^uFCT16g{%`p#3b_l7OKIQ*$=j)WQm5|k
zh48d=u_$tvSl1!!eF?KdAL9N;YAg@o!w`0cuq%WWA*>7`5<--{gz!-ac_GLltQNg+
zT<b#kID|DJJ}h(BCOcXy8vj6yn$}im`3sUBLP*G{Ay7sW)v1`luz5k+-?6(T_$Gb$
zf)o}l5Ih}DjKd6JQwW<y3r+|dxEL==`5~+i;lB$~$C`;87kmFCgik}*$fhnz6kv6#
z!C`I*VXJ8Wix9Sjuswv&MHf2+^D{v^Uv#a+MmUhs7bV*5OTqt2P!@eHsu1iBVNVD@
zhj1c<y&>!i;b;iQIFJzbhj5r~^HT6Y2$cUWgo7b`D+bGo)Pyt6Sw0j3EkiKxqI4vL
z@5PKi^_CyF%6{q0iCA?}`jK8&>V=;|I8NhVbb|>g9cjZw*Q0(3;g1mh6bAe?gx^B=
zU8u_L*fsV4i^dG$LI@Yd<em!QObBN=n?tit3(5vd{L=ZHC_Ntn@qvr(3T5LgVx*eX
zvHK-@b;s_+S3|fK!rvzTF>yVF8zEdZaLvHY5N>gq7?@(<b_jPEE)29Ya5sc|A=EQa
z-@yG49&r5@O|E3%Aw6nBqsJlqFN8;IFob_Nt#q~@iruRf$D$we;^$2c{3pZ)_Dy}l
z;BO$_KvBc}cw!*~g$)!jkf+2o(~Hz!=Orbdw3vb71}Ye+Xn@&ggbW2(TEf7yhWqi#
zk_MhLkie!4lot(_HuyGp{K3D9@k4%;EF+j@1ubV_ZS@>76Gb*j(2QnogKYNyDNxzK
zTltw)3{*8x&2aCpVW6hr9*I;pP{Tl4wICDkvuYWrZQ#;Qe_aC)>I5lSheNCB?Nu#E
z$^*$g4SdfVXkg$~$D3-Pp@BvQ);p=m1}3~0*Vurw&HWB9Kg&pCdJK3C_zW~LkRrsI
za^MD<8>k|A>%7~Nlyym|Ek9V?LdZO2`V9mOjOyfTX`q#X)>P8KjT5O%K>=1wh;LKC
zNiX1#dG4ar-arQfqYaEPkYOOxKu-g`3}hL|Hu!=Nx*A9v?CnTR68)VGbTW`*;L9{$
z;lbYcOA={=!CoiL*UfMr?7kpqcR_OnWfA#IJq-7^$ppO(97y!`Gtl2a9|NoBd+QEJ
z>}w$Sz)w8Dz>5Y38rYrVeyw=rfb!KZNi^3W1A`50?O%?}AqFG^Lk-snnMN5HCh+hA
z&IkcU3QF^`I>p8scu8<74NV$nV8)`fhJ)i~Oi6y(z$*qm$qS4(Fwwvy&W^~wD(K#Y
zX)Nl#+NG}v&SXL7O-W}9Zy1<rAZj3HV48vH2HrQY#6Yon-Wj5=c?RAzFw?*+1G5dh
zO|^R@&k;p$8EA1yDn2pym9g#zG_!jo&lRQqSw$!_-*BIlEil~s)`bRmn?tb3z&nET
zuAt<+XJBywK69+tQcitE??<$%fe#EU<E$<7E;q2kz)Axj8u;sPzi+xryI+!6#I(x5
zhO0>g9~)R>Kw}HdylV~q)r0TzseRWOSlGnR`6A9UAafyzBGmvnlzA$qlWE|iMnS_s
z*nlOlNpI=mC6g&aB}L1`2RuQW&QC8g@Rfmlq4QP){}~zUsSM3)VBha)8x3p{hWgaN
zh)eEwf5_ZyV2dc7(%Sv1>71fTU7e(D2Da06S0(Q-@EMonlh(v<Uy?pIaAscPF9h{;
z>_p6ge9c9ArO`nHI}Pljn;F<chcxglCowB^uYvts=H-0*xbEgB%~1T`&{Y)wnXFVY
z$@xx{KE<TuA2M**z!3xA)4T>w8u-Bgf1vTBf#bBpCFv+tD(pYTQM~B>Jn$z2KO6YX
z!0!f582H7&uLl0UBz<~G`tFjnx@Yd`OH!%J($|B!{b7LgPth9NX>eI$J8b!sfzt*q
zb46U1&KNk$_PKa3OXm!nH*mqgMFadD7KNE!E96$;4=C6aF%tnRUJ=W4>SgIV1A>8Z
zCSEpi)4(kQ^-R<^aofNh+R8*x6L$^VGw_Id(jR&x-e<&P@HepZvNW}tfBdfv8;tQ)
zIX>WKMejcbp5!DxF%V~B{m?G|y3>ls2D;bu|BpetQee^>LE_&Ne1%NcIqAb+T$ZfM
zQehKCOoZn6$Q(O)NHG(|O_Vp0XyO?YB}|kuQQE|_ru(Jck|zGXEYTnSyevIu;`Gu!
z34#)oyCRh_(X@xR9EVfU`*?GDSreq*>p6cPO7&ckl1x-EQOQJQ3Ve}989Gu$6U$!>
zW?hl8-U`yCtC*;2q8hvVHnp~iIs#NTQ9}R-T2s(kf>MlX*ER9mv|j%X^Wxn&f`u90
z=S?&)k!d2!L_-seOr)6znrLhy*+hzo7A8C<_@8n7_*&-pAwCmLm>Bo^2AZ0<n&@pN
z=*TM)adUy`!|&G#q?+)XU|*ZANHeZTsNs8jv2(ygOA{YokxFgKZOqSpnP_by!^BIy
z5*{f2HYPr*;=P`jnr@=4iFPL1o9JM=QM683|K)!h@i3Nn@gwh&d&x8)qj9#0jwS|~
z7;K`Gi5wGsP4qL-*+dr;J9>H9OIH)a^Sz@_w^=*NN6^hgcfldf72pLydzk21!0%<E
zcLDD6RAx-z+s6I+iz$1NDsh$*z0(gS@n^cfEsP&%qSdM*b?XL(n2=12HZjJ;P!q#U
ztbMiLl`GQsSKRN>^P7*uY4BNnMwqzwdG1I-M+r*iSQB40bMG0)d=;SZOD5)=O{;OT
z#w#Yqn>cUcf{6(xUN!NTiIXNKii!B$bUzF|$;4|WCYyNOL_Qtc#1s>6m{>-)F)`J|
zG!t)`c-zFNnW=@YO4Ciu5d1ey%rr5}1ew*YO0xx+Q;;RIb$LIl%r!C3#5*S5HSttt
zzKI1U77EElf>M~0Ev`z<v$Nhau~_u=fr<A`biFDqF|kyLjlL?qC1lt#`OLDr4^6Bv
zVVE#YtTeI8gls~gKbTle8=6>0w_){XQrX3tr=xf#l`W8y_y6Nl2Xa&s8eOZrKV(7|
zfVG%qqIzq@pu#3BTG&LiK$4{q8Zeke5Hn$$a0=>jL}XI!4JJM@vB$(-6Q7#cXyOYK
zUz*rtVzY^@Cbp3&Mnt;B1p8vw#M|kOCO#7lvWw4!82J<+rB+{wK~Z?80ACBr(p>`V
zE-0lA`%HXe;)sdwP3$*uz{GbZ4w7D#zAd2CmRY7lCJqZGF-^@We#-yB#7`!EHgS}m
zEM$HZ+8!6e)R1BnK4Ib)6Tb>3+j%O(qTd9E+Oo}4b-jNu09FkA$$0pC8o?_QeWy%3
zx6s`;o~Gs#f@e&eHE~X0W-ncp_8v(kXdmyPt6wy6$;4#_856fm)a{bUE8tazxaq#w
z8s9a7oaF0*-e8CuH-zb?$P(N(afk7r%W8~oeS0sJxo6_Oi3cVgns`z!mGqGSwR;Ac
zEuGMf^j{PIF*=3uUl@-~{Ez+?h7!gT6LDeWgwZ*SLSYmRqe>W6!zdC)d>Ey}C=*7}
zFp7l{Ygqc(Fp7uqZrwn*XP`tF&xG;XBY*a8X<U*w?wVBTnp853rIk|;@Y^wAB!p2a
z3}Wt$NzaV%mkpy_7!|^(7{>ClzVhs)QXnymX4fPs#h(;L`I)Kb%J@f*9>R$FxY*$F
zgZ!1ksLVzZy-X(#rdA81dKgW@Xc|V1Fc3!VFzPVf_SU2_3({!+T4B^5m#e+%>v~P9
z8%Dh_hJKUkAv28UMN^H!`0%xi2JGEQB4BD5#=_Ko1dYQ;4)ZTH`mwuj?A%pv_F>5N
zhB5k@<P((HW??iBBa3!8RfFS72_x@)Z+aLls8tVds-S*B1A?{`ltpO*1O;ssMr#4u
z6qKra2E1H2xosGv?ZRj;0C5KaGQ!9VW9l_&$u)`0Y%vhyn$$6j^N$ldh20Aivt7dI
z8pbPOj1Qw*7~R9@AI1RAa!z7y7`?;j!%4Z)=!Gz!7I}Mw(KC$nBWb-v_Uk>B$h5<L
z24sG>v2PfMJ0|xF<7BtwP0#sW3}YZI5XP7=2C>be$r5|{wc+3}MwITyG(-S?D3-x_
zXc)u7Zj@#kPQJh+3pk?$NLZZNW~Gn!6l249DU9E8gX1{TFwT_l5sxh0?Q+*-;t65A
z8pg^nR)sM!j7eck3uAiNy>QeS<*Q%5^J`&D=H&j8`nsS~1ZDOO0j7r0YYe`==5AIw
zO<a02!gy2Ie5RnY!k8V#oG{)BV@bhWydB0Of#(W3Ptf^-E)bNnxln-BzXskZ;Jhoq
zdx9<&^nF2JZS7vWmkRuWpvweZPCpcYr7OZ<Qv@Fogz<40Yv_mP(&&d=T))JnCS|A6
z+Pt{04P#vxTZ^aWh4FpyRHhTxBsB~zjPJrY7=|83D2%;f><hyP!wh3%7@NY_7VZ-c
z!@1?%K>o~BD~w1O(J*dZlVaqD@%5WsZBdj^DOdd<m><S^!7O!MV$u1tX`gWE<s^R^
zM&0XD#lt;GH-};ONZuC4_Aq}@o3w?o<sbjnFgje9iho^XM;M=l@nsl;uS=hY@!q$o
zOyz2LzYuuFVZZfl>R0SS2<!}Fw*b5744K~I8Qyz^I<w*)&iHkAFR`q1;x}RJr{{<9
zcTexij>+E&eO6qTXc?wwrl%gF)6%=b_%n<nv`-j6hH;z@Hq<x$_4FUY?!M?~7{`PI
zKg#sxi<Y^4{V9xJ*{@hfKZkK5j9<9o_NQ`LooZjC$o^DL&A#i>?_s2k^!;^Raw(Ta
z7&mFaFiwSWnyceO?=?Db7-z${M5is5bS{jC*QN7eT%gBxO02{WAk$D2eT(n*^xlvL
zmh~sykS>RDMGU0N4e2T;cWiLf4R^fP!?;0LA3x+D1m@h3R^O2547V8>;yrgb%lYxU
ziY4ErlQ4D-?Q%bi2Lj{=eat=-nBWm@CGbB597;Y8<A2oF!Waur!icjFu+Y*%Aq#~q
zRJTyWLJ<q`7Rp#CYoVxxVirnRc-F#}ozm+~y-dX|T+vdVvGDCqsf3nN(!z71w6uj!
zZ%7FiN(tcECGEc<kwf9X1TANwyoDqS6)fDnA^lb)iLE7CeEp--uUbk)(O_kEr==9V
zDOIvi<)+)?e|?5ju|QhYLNx)J+?1Gwg_;(;7JL?JS*UHHu7!F+w>m<BkkgfkYSg#z
zyoE*<8e3>!fy{<N;SM*YUb`fYiyCg2-M8;e>1foOY{6rJfT_1$n6!z7W)_-TXlmh3
zkt9|jlg(1M6bmgZqzaw=7GA#T8sz?ad_0{($4j#iw9wT;Hw&#Sw6>6Kp`(R17Sb&!
zqPw=DuM7*B7TOViG@!l3_lr_G2-^5gY2qQX`@TK9FFVb$@YYR<jdv2YIv41fWASmS
zt7?}5&Z(C&x?9M#FxbKn3olscVWGb$?P;Nxg}xU0iEM8RA8*L$W8o8_&rU&)3rZ&2
z9AM!^F-HR}3=)9zb>XH&x?oB#$-+<zBP@)xFwDXuQE_+yV0Cq;YpzlBiaG8Om`dD|
z#!_Jm?^{@6VI1vdVTOe_*|>%AqSH4lOb}qQh1V^-YGI;<Nfu5QNqS97d(A@If#um0
zarIkn`%Q02Q-nM*dncW0;f-+_(=1G9UqgLNvsMq7X<?Ryg%%cBm~CN>g}D~y(W(|Q
zZb>xt+ZLu-E}%_F=L_TX7exzbKml0vj)ixrx#*gG$y0j0XJN6Z%TjVC1`?NA_`t$C
z3wain36)k@SZQIo(C0%7RKAMvrB!0CSF<k*9|?Wlz9n%A)`(hbpVqy_zi=PGmaSWo
zOy{v+TW~C>7BmYwy_$2qu`iu@`z`6<Ey=K8T8LPP(g9}o-95W+*n(wYrq+pBw$o~t
zboQ1+91{Wr1GSWV3+pZZ$8WjK7B<i&7!b5hn=IVFC4I{Ecw5>iaPiwxi`&wJol++O
z*c!9jENr(>+{QCDc3Ak#!ao-NweY!xFSsf#T($6}g|94}vvA(R*A{kK_|d{~3%e}r
zws6G4_ZIe8*lS_Gg##A$S*RaK?ODiI>r(1BWWJRtCA8f%CiA;{Ip111#CFDJen&mm
zq%a+{Al;S-4h#PGE4vgKp7{f<$F(1DHz)HSrXFLDEmPaS-fiF1Omcp*@Uw-J7EW0>
zVc{1GzghU*!msqV5t%I#)9=s8oVX-~cvj2QKP-HBA@#)Xsl<QMky@tyMUKdxw%k3>
z^4mFQgu*jN2G3d;I3jcSnoQCQqV$rW7X@{9N8a?y0v~JJHSxz(a;{mpY2lV&UZ+_O
z$K9~dCC%0RHY1OPzYFT#weX+--=p%wz4rwzl~kO<4>`+Ye2)ZW5jnq4E%Kj*$MlmZ
zLQ%e9g(sYy2>y*AE`mZ4d>+9U5fqM~NCe#?=pI3Q1VtmL6+!I?ibZh$SaL!Hr6MRE
z!7~w*5F9c~M)0h_KV|uteJ;YM`MKBI^qhQKDjh+Y2r5TVC4#aMloMhVBIr6ZjgsXf
z=ybIWQ=$M#5j>ch#%x6)R!Pv!d7UX)HG*mpKya81eqEz_1T`X9bXyAj+j`HB$z;|P
zrOvVB@bI`g5!8*KZ3OKis24%~2>32(AcE(Gj4y&=b5k2c&@ckZHxkqvL1O`u1ts4j
zK#Rc%Y`n*v)=eU4Dylc*cpK!VM9{oIpDjjL%D0FhRaE)ozt+sQ6s5rkT1EK7*e+=i
z{P;#%oj223N04`0S`&%S*b$&un+X5H-c_T-<ZRORqE==ESpsw*ZRpPs0@WvU$&R37
z1f4}uCqX&bqL+&0M3C@N*N%VqNqhg@ri&=*DyY9|>D&ljh~T{l7Dvz{f}RnKi{Rx5
zdPUGXf<X}sj-Zba=12!b&^Lm95%d?GvVCgx>1~Ph#R8dubdUd)q41ChRtyP95eyYY
ztA+5e2u4OQN^ph?I)dG`@>71a$g-)i5sVR-%>1coFNwZ5kEf3%zY@Xt2;PWbY6KG^
zV4JT+Fgb!(BbdnH59!Y8lM3pZ&*i*cfa_mtGexvRfn#@iOp9Q81oI-8F9c>pFjIgx
z1#R1{EW4f+!R!d;L@?`Go44tfRdU}F*e$x&hRVzp%r-sxk+UFzcSQRO>39+R{ACR?
znRXvf?y)iOE^WIpfKoZ{N3bLUBLXvmrJ}EoBUlr`2N5ibV7cI|j9`@jAJTvVu$>Y=
zCV%}&;3JV;?N*8BKnm5)Rj%}8=~}u?1hOby_jGF3^j0EBv;w+dssd{fL}yeTaV<bT
ztA~W-yjQw}Bd{Xa6v5^QB9w_BKZ5lUe0N)-g<}!yeB9c8YCTTPN1c-<2T3<X@JR%_
zueYWGZ0&fjgij;*i<baF3CQ0P!B(Nbc2Rv>1hN11O+4<(-<p<2x+8+mp0<1}`Oa<W
z%Lu-T;AjNLBKVs9MsP5KLt5co3_dNr`y%*;uYCu+yJ_vUDSIN=8^KHKQWlN~j34d2
z9q{gt;9II4fxb57fRH3$#UDS&{`+nM)1e3sM{tDGu`VSvIcelr@Am>T`-1=zM|yvZ
z;CKX=BDfsEPn^mK{^W=vIKibF!S7tN-_@WFzY3LpV~|{y{nzTav=ncfycE(u7}IVi
z5S)yF^lSv@7@al+Pccs3kxmPGM$n{@-t$7{qM+MHdM`v!^Nw4WX=P%WD-m3c;86r6
z7iZre>c1AjjR<Z=aGfR{>Ss!ynSCpQ+Y#IogQZq?B79g}<gUniuJ!HscKqJ^2_-iM
z?=ya~osGeVf>M(BZ`KWXzpFcV?z)u!B6u7@mngb2{zveHI!946inu5WMe$q|2~jA$
ze1!!q9z_uW;-e@kK(QzScO(ih)x0A;6Gi!B1DHw(@T{OE1*JeKQ6({oq$o;9Q6`GA
zQIv~ftZ1RUC_NSH_q4Sa?no7)s2D|+D5^$LDT)vN@jjKQEHJZ_tQN)oSU>hyBZ}%#
z{BbU6-W`b?w~;$itte_o(K3p(DC$H}H;N`vG>xKO6!oJ>j>1zgisz$fAaKJd8b$Gn
z7|!-P5<z2;<^31i^hPn~ySN|jNIoIVAwSi&naHLJ+FT4OMc@{KUKV10+Dc^k7?HJt
zQM8I8Gm5Mz3g4AlN6{e)4y{cT=~1*5l1=VP?W1T%3*2=(dP+Opl`=#r!O*)>b`;a^
zN;y%)?n)h_=oEF2VxDTX?5@-~ie9~Z-KWHp(=CebQB0$J6uD8nK+8w*QWQO+=ov-t
zDEd%1ilIHd%_jNwu<@SWi}lL4x)|si#i%GoN70W8kMQ+p7g4+@B!>w~$$?P}iej+H
z4v9h%;1AKrP=W6~#XY^lqZlDL&)t(o3eaMBDV{Qo;RM~22!_n)$_B?p@p2U7qnHrI
z$z{GhLEkG;q`cF&X~(SA_oP>&m>9+6C|-~9VY+`(6s68}rK-fQMbSSom0(H~Z$z;<
zB{=S$G?in#CzU)STD~W>s^Fgy#hX#AisGXvW=1h9iua;e9K~!-aTIfz?n!S6`nI6V
z@*ba*y3H%#%okt*=V+C8VHAr5ct=oj-i^XnK6QHe)c2!U62)@*9*=#Z;21xMVp$aH
z?ny0Hdf6bK%TW1GR(U^+Vnr0iulQGTM9Y2EYx&z3f04CTNAWS`qsWV5jWF8gd(y8(
zd#x3i&xR&1jz4lwVilRbAv#h;kru_pd(zxdK6aXPzOxa98AZn!I>iu<!s0TFp==D1
zD56pP7{&1@I`>PAQOPJA8o8*aX4sn_bzd;p7sWSGtdC+t6rV)hgWN9!%_*7uX%wUz
zqu3<CW<j?Ix>e9^QEZQ5M-)%)Nlc$d@tMG^^^`-v2EP;yeig;n0_+r&{9RG(F2H-D
z*eh^+yEqo<$CCF)@of~}ML~Q(&>FWAs@#_jMsYZbBa9*Ur9*;73#ZoW)b0By(52Ne
zuCn{m4^iF~qS=Ntrty7(<X7M5|0#-}84syp6eptY!|0n)+=}9tD1MFNw<vy(;#3r;
z8F1)V_a&x3IicSN2>yy<Wn2HrC?YQf_sV5R&qQ%HimUYJ`x2WvCmO5~^bwyI_yXrh
z0CFw~a9PkRf-YTA?wY8}>er*VQGofN@OBh;qWC9@f4TIk7rz_Dy(sRJGr#ee+MOOS
zO0Q`ADC$0qeHi7}V;eV$HYS~M*ZX%Aq{jyK;9bCf9L42EKeY8e7GTp)?wv(k425DS
z9>X&+6po=t4Dm5^t>9g9UwW;HS0CynEh;!<7Nh^%mk3J4@N5hTG5-IU-_m^U`#&-M
zy2STf4Bs!U$gJ^FO9s+XF_ezECx`p)OB_YH7|O@cD2B!{99&U4F^1|f)QBM|=AI{4
zi2dKWaYX?t30hguDuPxOv|0>{KCeX07uWS7h6XXD9Vk{ahFUSyj-gHr^<t<W!^!&+
z|5K|jOS`*&b$j=|^!3Tk&&R-TF4XFt%Fk-_9@VX3%zbm|NTkuADc<B5JTY{LAtMHF
z489nGF|?xcF+7}|+dPJp7@7*qY%>8qYVU0k!<ei<D%*)+)TXo_@8kqxSh&Hz>{6$+
z7+S_qGb_NvqD7LwQbu6mhrZS^w2h%%3~ea+p>KZ4M(G0dinS^FSK5T!<Y)<B`<VNd
z1py=cxYYwPV{WL=is9DfM%jYa@9*96uyalfony$4VSNl;I7ieWhS4$nEG2e}p-&8b
zW9S}3ZVWHP(1T-nDbSn7ui)(&LoWfgR4T$O6G3;qaibfJ`^C^dhQTomiD6!&<N@@D
zD~(<hcu}_^17jEzL*CXnCi1thjFVy*DyDcu48zW+mV452SPa8Czz@93CT2FQ-1*>#
zUFZNKV|a8lc=%M(m>9;!uquX+M9VM5Fr9N(!8<O7mpQb7jbDl3wHPMTB}A5-2{F7X
z@I*l;3EHlHV-~$0!^X>v-iV<@a^op6*jE}o`#>UPc4`dM1fO{QnB*BTycu&}i<&9u
zB0*;fIy;6r0=y;Y+cC`Lcm-Y{=zKw0m;Y%%x{%Hw{&0Z!9Z~eIpzjH~IEMFQSQ5ih
zkzFn*B|nH^nZW#a7iO70jA4b~tQ2(U5SP!$wmJqi1}%n<W9T-|w<d<QF|4C6J&<IY
z`n}Y=7+O4#4mR&js>Jw5?zvqbNFyFd5e7+mX%Fv`us_75%8&mFY6=<_)Do0M5dort
z#%MYLoPyFfA4nTw_#}oqG2D&eQ`$L(y)o>IVN(qAA9%ONup@@eF>K*@AGTTfK-wC^
zHhSX&iP`fvyY77;eHO##F?=DG?cyWeiyb}D&l@jmH-wA#%NV{AeB!SK*crnv0d^Pg
z_XzOcx!^Yp6wN)~F=)iFyt-$93<qL({b=yp82(MqAjrEEJQTxW&bXd&BZec4LNQ#3
z;bIKtU!{MD;V(9|-g`8LV=??F9FN}nn*hfJ{fVnafD;9!zr^rs0q*&*(eDNL4*~vU
zgn8fw`2!o$PYTW{K~D>MM$of@o{QnU02E$yrt~F&jgM2Ay)5t*L9Z6bTod5BpkMBf
z<A`q3;bXWhMtAjr<eBR&^iaAN!+j1vhX3e1MSKs0{6o&vw{di#w*F3!7-#&Q{$|9B
zVfLYppS1Nb%V%egW4Jmet&olX#qfkNvqS1{U0X4*#My3m8G5&KVH-tk#M>xpqnM35
zYrF>rcncqhdwZy#fZ0=XQcKu))<*GsJd=--Hl8DP@Qi~58>MXbwYOb1O4}%7W1x*e
zHp&WSV;jjf%GoGyBhf~Z4cMq@qk@f!HmcaDYV&h@aqHXqE7?#-1S;D&HX^`#nMx0(
zYPNf0$W+62?|`b?SUB37d_47omSveGzm|=<HtN}^ZKIA5Zu%%8{jKb33$s~T-$p~h
zeBMR_0V4jg)H5}$EK3^+PR`b@9vfa8*)}@b@Y!f$qm_-;Hk#UKX2WkIV57N>rKQS`
zTaewthO#U>MNl^K+56e4VwfdMmVYP1RjDPjwtEA6ZfH_abV2#0j<=1CbQ|q$bP&u3
zj}qG2XlH{>u@=)StK&#BY-HNVvhj9a%AqAL=l{`8HgasdV55hq(%D8=8{KSlvGGA0
zf7eF|FFZ=<E{d}6CFF7x>ry^#6{vbAVawW-o;G^f7{FoPOXzK*kBtK*%lETUYjj#)
z8zo13&#aCkW;+!F-u^cFuW${>^rDR+8AV>-G-NOVJF>CNh9rhOmcz6$)W$Fy!)-+T
z-mNpUN78N&r4fSO+7ldQV>E~PvX7-5A4+3r<cHEP<9y?6yli8pjafEcu`%Ap6dP~Y
zm|){o8<T9jW@Dm_>T|MrLp^C?kXr3*<4>8BJ=w<VHr7oH60?Z2dEjN=R2$Q5Ot*QW
zo4a+C>pZ;I?z1{>{>0!6VURZky)?o*+r}Jvk&Q(*-r^`yyl>l>D?pV=!Fe`5Zr^V{
z9a3<J+5TFd095p{$9DwtJsXQ{yelxPmpI?^eH%-dt>~q;O9j8sPpQnZl&-j36q$m4
zXk&$ql{Qv!2sZL;d}L#_jWssbl9T5Bm@fBI>V@m6#Jy)`9~vH*9gZI{JTUyBB-7<=
zXf||OW~6s=iSnwAZ-)&@9T8v^b{7&Yu&!a_zggLoAr0HGI5jq+Ha@knQP?47!?BSs
zux;bbhY~HeUSvO^%>(Z0*dP?1AX@HPviv3+n{9k%<8vEZgydEm+ic8x!9Q+@>-O6P
za|gR#n!P6AJvr8UXO#B~!TefK%6w_#s{&m4QNm6eZ9nfre&X`%-8S~v*lS}S1Ciqz
z^BWucZCtQ%k-o~2+W67NaZ&v{8%Jz>FYrMdhYH#}Ob2*3+n$>JgWw#c{HQcGbzn~R
zF~NDdLVvRHv&f#Zal*zgHh#D9hmBta^Ect})GG6MYWI5yj7VH5f7&={qvfXHUtBDD
zF1^to&V8`f9r$S*XKb9can8nh8%IZ`k$HPyk!>e>608)qy=3FEjR!U!+PGrls_5t*
zW15ZYHf}TCGDt4VzQJg0<I8E;H-!LW$cmBPTW$PohnkSy75v2Gsp}s~_XTeJOnLGj
z+4$SW6T$gM(8mn*HvSd(KNhv?$3#gcF6ZQX2^>P4<3^rB4hjpvBd;-H;lvC37j^K>
zL#ddc1e7e{;8_Rr9V~EA(!p~Mx;w~a{C7~wL2FT~w1YAZo_El|L0Jdo9Kb<M2jv|k
zI;i5Hs)Hm46&zG@P}xC7MelnVMJfvLS4&qtrWa>rGtJr*WN9@~R723}f+o+(CjaC^
zsg{G<)O=NTeFwK6N_8C6bx_YiyD?s73qO)r#CCd(b=#b=XHY{2jT|&}(9A)%#o3J=
zBs=hMIEQM~TvOUB8m~Mmt%(DlXoQ#@k=7gKZSG+0!-Rl?mJU)Jv~aLttZ(}mZ>ocJ
zzw~7C3y}0kVwE&%<zUys?7r`0lS9zT0W~3L;~?EZTek0@v*@wCgANX|9AwjgDc%eR
z!_vHz%ydA__YCusb`+9qxsw2!M)b=OQ$|j$#o1jPbmfQ~>^|L-Dsiwp0;LgNaL~iS
z3<qyI=*iX`j1+U!+d&`d<6xj@q_2a14*EObwTyKK2qrHC<o}};{(D`@AP0jT45eZY
z|Mw<-h=W6S6C?-s9wZzpkB@gGu~wxAu73`9Fv4-K7sTIn8^SBsC<mh*jBzm5!9)j>
z9K7UUoP#Z6y%QWXc_h6o@OTHWh%EVJa={Y3N;@xd0qJWFCOeqwV48#1X|6}o6bJH-
zq~)X1h~E(7>L!GnwCguFqsVl&)~+8DtIu>WO9;H>xM#>YZ)T^ad1pJA<DgcDeoPI-
zz~2_OohxQ`o}dFCNedk;a&XMSj}G2(@U8>Hfk`_!SWK7TphkM%cd*34M-EmySnA*d
z2Om0E;b564y*)R3x#I@p=EDOF&Ql&qE9rqhrLJNNk0eI#tuOmdkMt5Vo|Aufc;I6P
zlw9M0Meeo0L7u>}1I2+VCg|vrI8C&#i`J;dwBKrkgxH^3yRu@~f#qPkgB=bc4x$b|
z5fx*C<_pScvN@>f*^Zz*awlg!$6ipnky{7{8%1`Lpj#X~dYG_Tc*~qn?p98&ShL$4
zcW?IH((KP1eD2_YgKr&t;owWUrGq`fx4#l}r-QErpto~&NOw87Gc}uFuLEA?_c^GO
zR`&SErOBB%EBhM`b5{0#L3u6y&T)4I2kC?k`riG&bM?axzAtF=2;FRAkad}U5X__W
zIxdZ$dmeZ26aCh~eFr}~IN{)ogR>5Paqz2y-yHld<eRLBH<!e%-xU1A!JiIJIymLv
zuY&fur+R4RvhnaE>9hl88I8YwB=M4c&cS&HR~%e*aCCb1h_@0iIJhV#g_ofdkEBZu
zF0<c9600);UvqHX!7YX_2RB6fHwEP^WWDANq2lc9mc#sa9Ncvfdf7+ZscK@ph|&)n
zJakYfABFQl{v!wf(#;(FEn4_TP<FvaIF`o_o^S<?DDppg1$Rv;-Z~4i<MR2%nIhk;
zO*uL;P$b{I7Q_o$cO(DnJB75U$QH{-&jj}>Qz9SF=3~cte6}7X^YL6hzRAb_d?e(f
zR6eHU<Bfcj&PSPiw8}^8e3Z>cxqKw&!;_El`AE!1t$ftZ2j3Fcx~1-J?oG-^l^Ifn
zd{oRwrF`6YBt84LR5_nt%J%W-ugd>N)ptNiQG8!7u;iS>?s7>Yu&^MRA%o-~N#e}z
zw17ww2}VFbB#R0Nh!Rx<(V3pmGt&{2pa=>|l%OP0k`Yld-|e@*`5(S>>fCed)vH%k
zuU^%3*L2SWkQQ*yA(_&JWCT!E2$J$@0eoG-JzA_8a1S%<1W-4CS^+!~K<xm!l*rt2
zyWagHX(W%*QFrTAD3Mt&fXo2C-Q;Py&~xI^@;p6DOl#2abV^nL4FhNzKr`08<!=-~
z<A8g%#yjiB0`9T-CL^Uu0QqL+JMnAze1+;a51>T=18%wBlh)eUuO)pIaF0#4Z0Of2
zfbvDUdIJ1G(SGf2`Pa&^NxJ~r2k=Ay{Q~F^K*s>O1<+lpbPAwzz&!_>bjx3ESn0>v
z^8jAI<==G6KQp~Y*8mRA$-KKPvxn&PV!K1#ck6lvQ0GSP>HoFgeaqiFfV&}IAHlwY
zr`BfnXZHda8^AcJGEnfD00sr{Bpui*t5WZ*!2!OD<R21n-#Hp8I4pqSLPiAO7s4X1
z5T9Un069tdH<_&!;ZF&U3}93MqXT$avST>=O^34jty_L-l61&yJtM1OY5Mzez3~D3
zdZcx+{hcSU#r*Xr3X(h<z$D?%B_)#sn3CjEg-i?J`J{x$l`jSGasX=sSQo%60Zb2I
zc>pT{m=VCt0G?CIEeqh)0A>Zi<L(6k%;p4r+=X|(bLhiYdXo3pU;niL<_35*UZ3f8
zA@c<12N3SmlEQ@n_jF~EAj#qYmI!|%DOoDyO~JPW-wyE7t^}1wjcWhyO8>b~>N^3f
z3}96NQ>!;HmN%^VZpzpPnX`7ZUd^@wSQEg711;VQAfrM1_XGHNTI+h>_cIQ(Xk5AH
z`T#btCjmsb;_ONr>4B>yKMr7%M8yXId?<_JqX2r|?%VWA$?xmd-yA??xU1uj@>yHh
zABpEr1h)x(D##%JEPy}&L9WCmDQW;AF1>B34VPpxd$Vau#+=M(02<eCxcHs`VgbYh
zumf-cNCfbmr=b-<!9$t4@ZqoYH8?e|^fd#>eyK0X&wph8b0Bkj0FS=m`67Uw0qhX|
zx!||owM;qOzVvPXF0SPZS*=dC-yOhP`Fl{3KO^f*|N0D-y)5GL45CpG`vTY>z^wpo
z2k;FSasWpHI2yo#0M1n`@I6N)aek1UVOLMIR1Xy(HfWT^g*;x(Ivl_=`+EIxZ`iQ_
zjx+cJI1|7RvJC&J(R|B=flE(hoe1D$0H*?|c{uAdWB9h8Lh>I)vix%9S#ESw>ir$S
zwLh}X1#q6T7QoNkP6PNefQtca_SOG|;mu`!qaJy+Dw&r8xGb$y8D4_B#FYT9O7<G}
zJs}kSCgg?hN)-9A0JDEFlCRWjalPJ#T`45*r)KsZm~}mXe*(A>z`p@7dy~U7TK*@z
z_*74q+kR%}`%~|56X5IzQ6-2av&-EJpl}dHg19fM<^i|po6S>#`1ZJ$Bu@}|gRX=r
zUy#4-=kokXNr4~=CV8PCUhmn9rA348S|}HE-|*s(@DvN8xJXI}mK3BysUS)RQAV<5
zgNWsnp)eQY)9RNGqCyZAgBW(TUZo&rHEBR$JS%g+==y0vqz6$yhz3Dq1o=RCX4N1N
z#PHkxt~=US3!-`uj|NdE=x&BJf~XyYJ-v0!AZi8iL!>|XBO)PTcJDW>eUbis>UXUh
zL}m~q^=Q9-*9A5D5udy5rzA@{$^GZR{mcnfTc#Wx@>md!gP0J+#2}gk(KLuoL39qH
zSrE;GXc^=mr<UjIt1Wu><QEw&=;~+NGgdiqt%Bf3zbA;+^jpxqnQa?HJ0ZN4;D<FO
z?Stqb67r5g{yB9?lE;JS5=3?o<A$U*souV85dDJ~5Ja~ie%h7UorC2wZS`9A5Ykhy
zmtb!WN=RQp>O2udza-DQEOWrjtbsuc3gXEi{|7uvoz-%15JP0hLxWi3&3gX3;l$Eu
z4TdG>Zn%&Uf?h!%XL(Rb&LF*%6NEnqC5Sg}`=1J8WDt+%ZJs?jl@BeC3gW}t?$gVo
zgLpdVzRfX4@EJj7$8vx{jF;@XRjEuAJ{!cOAT|WCF^K1am>k6PAZ7$HrpSmXLA)Gv
zUjg8E3R8oa#(hBEO@2Oz7n1zNAYKw~-*%s-uAMXZl^~XWF>rCb*UTVZWe9QVD`d?I
zVmABCq9Eo3-IpU43ce;dSCGQjh0GJ2FSsCx9hdsDh-py}i<6p5gp}ty+7Ifz8N~9S
zOPJmg@^%o*gd7~0kt<&j#5*Es_>Zf$Du~rVyvr%z)RfL#$JN>)^SvO}3VB~}>?h4X
zcqjeX+U6`;&*e}dv-0Hn`s(JJg7|<z7(_7WUOapl#O5GA4&oy&(md^%rc8FfS=hqp
zy6yjrGf4eI^*<5Z7DV6F2F!jc*(GCAjtpwZ*Eu=4Y7k*Y&d_>Gn`efCh%QbkS1dC^
z62#fgEi|s;AmUsO73(u=c5IR0I;~J&=Vf8X7WInPpY>;NW-YEht_T%rDjd#T5cyQ3
zs@M_4=d=^Vxgfp>VrLNhgZL(hT|pF{-0;gFz6xS@5PO2|ckYF6_2H&nrB<oELH7%e
zh7<b{zYc<5H0%=zbtw5Zhyy_!=fV%-U=ZI0aVUtxbZnKZ>ibfN-?O><rAR{4aQ&sO
zN4Tu2H4H!5@Tlk<<1%0NII|~$I2ptl5uTz;gSdX%|D$BdS)JLRL`cFc)2=3i&IfTJ
zh<~^><*)y<IP+={*VxG*ev$02f>(mLB!oV{9K^GFaS~p#W<28_-Tx*<e+d3AIC)IU
zpF#Y^bv-AQ3V(B_UFT|Em(m$yQf>tCZxH_laWjZKDt;T<@)oyuU(35e+zaBi@H>JO
zmcQfAy5qkeL{`?|6cywTg6MI_|I{7-OO*Rs=2fxcj{k)VLue<zif!exil`{6x&c!_
zML{9tg;W$4en7r)D5j#git;Kds3^hoTi4PmGM8tS6kba3i|o>0J(g8Q#q+;+Eh`eL
zl@qdg&d`dg`<!+q6_tfl9X6N`NK?|~-QgtZDl$|IR53_(KW?h3=%!+CxF1whQ&C+-
z4HXSlG*VGhMJ*Ne*t&{GRMb}S)g3>7T;fp`pWX4-RY6`yu;1KL<fkw7CDvEbKy|NG
zvQ(VA<G*vqpLW;JW!`plH(u2|rt--Fv{v!dsBTSEG*!_;MN5*quH|O*`QTE`#bzIo
zw0ouR(|7%?L_!6RkU4k#ZB(>XvFfhBW3!=@w^Q9qruHg22qEvNqEnK07V@}?E=fsO
zAvH&L>#m}Qc&Vp~J}UYO?<Lq<aK@yrblnpw21u5?pOF57b<Ve@Bz)KZq>8~RzEH7K
z#Sj%kRm@N^Q^hd4LPd@WzluT!OYpjSgbF@%z5A};tHP(^+27k|t2lGl@9*2|=3PHO
z`V~&AiWlf26(d!5k&Y6~+ERS9il>E-5qwtg8NsoF;{?a6n4n^!@Qp@F?tRuI$v!7Y
zo0C;c5k6JLwEti8MHMfpcv;2h;+eyv?O$EuKHz<=PA}f~y`qBO7f)BAG|eP=RmCh7
z2^G4E*{XYI_bFpT#T*r{shF$cbro-`SVqrO$egF*O%)&VH<ho{o3HZAefQ38p&-d3
z6^m6Yk?b2PmL}zs#+A(dihMrze+FSVi)8Vr%;hRJsi-tE-wM%uN5x7Zt5mF2u};Nm
z74NEiBg1Wl>0o3q@jVsqi{$Uu`ZGJOf&1k<(|QqZ5ZtKZujXYb{D8ex@sS8W5u|Xl
zkdIYt5wbNYA9TJXOSefj*KB}ZwOYhP5>%lI2?>S;BZ5)EB|DmEocDk0(g<tC>Czs(
zNpdE%G#Df&>h3dJnkp<6w(5Sp_~r{Ghz_Iov-(Wi`6(d$bHTkL+@)f-ijyi%so109
zOBLU$IKUM*wBA=L_)PNGT=-mZ*Pmc&d&jd+#qG=W_N(|t2><Zn<$+m!_Ozw`L3)+%
z&~eqM_?{E3;;@P%DvmOW*0-E8uq3h5V$ZSM?E03+RRmt`bFk0AFWU94^=XgMjoX}1
z@$=lw4&lsIoARcuOj$az#AykbV%1xoQE^tq!q2hjbDUFgo-0VlP#qUoMa70NHimIg
z#V;!U2;t8VepPWv#j7FA3gI%>NP1TD5L$$AMa5MW*Ek|>Wg(0%;Q5_ZROAgIA1iVb
zOV8S|J}XZMf2sIe#dVcGa|&ly+HLlBblQvQSvOSttKvTuH&yKV*n3OGjXjN96!6R{
z;CcM6ciyNL@1$qlQE^wrJr(y=JW!Dm0);G^;Ll=<6+3!L-SeLt>UlY@XXV!Hc=e8{
zA-qvNyG#gWL&zUOfe;FYKx;)pC>lZ`;e`b`kPGXwiiJ=-gi;~gFXDN1L3Y34sU<=v
z8N$^?-k0sh%k%rX-}jadxua&foY|yY2tOC|q=(S-l&^dU6+)=U)X`HZgvucVhNnJu
z&%b;_R+SLaLZF3l1$^x7zC50`_xu?l47um88p6Kf9th67=U;ozUtPRcL$Ib`tq>jw
zp>~Kr)`|upWQnkjVBHW}9nR+1nd*roQ?S0^>v<YB453j7r|<c5bsiIWGr`7!O$3{U
zuxV>S>g*BCmNd)x&1~{)2%ZpHhu{st7ebp5+J?|Igl-}J3i1E^&?$uW!aE3d6uf!Q
zPZxDg>O3Ao7vb8NbjrI6?-fGt5PBqadI}joCcRGxeM1-&!jmC95yA_GcR&aOh4c%d
zzmQ`0{gl&GZYdQ8hu}B7L#1>`2$V2e=a_F;2*X7<LNK=qCD|e5guoz~Am|TaObE|}
zpoH+0NJfS*ip~*U{l1@?PYdsPpD%TKo89-14dI`4S>uvIDvYPi`~E4S%<RMvs679^
ze^Lm~i9aU`zAQLJaH`<65S|zEf*?KrVhAq@fA7AZS*BM)m@bkTf-?nGDV-g{oDi;Y
zRTl8P7Q);RehA@22(O1QFNE(x_&$XBAuI@CYY3l&urP#0A*>8xRR~j0`4)$;G=w*W
zFOgYzBZOV|{VZa7D}-esEEoCPg1Pb)Tzyhy(EHiBlH>RNt3!A<gbg8V3}KCwzAyNm
zV6OhbpIWY!>^i~qf|u|6HwpPDgv}v*5W<Hcj2QAi%dAM_AB(~k;cSsrsIV=BPeU+6
zutNBZi!Ov{2%1<3hM<a(-0Gna!gShwe?%;h<jP}WHW7l(sgxoH$vqjqA^JDQrL#FY
z#16p;VQ&auhp;__9U*)f!dD@DE*8EBVW;?qmUo4)TZDVW0z1!PQqENVf&WBBxAW`_
z&F&NYMsUAW=b%{nZ3qWKI4HHKNekQ$DQDjfg^-?^Msis6kA!eEgk!>w3oe&cw)2>e
zIwwOo6~g%tE^r?R;YZnseiD4DMJhKXE1q+P%Q>It<j3B#A=J{m=R){9%_TpFaFNbz
zi7O%eB2_L4{wn&c(l)Q}GB?sK-ey2;kLPL#B&WA|$$yh*{9TY?S>|TiU!2oTS$V?9
z8^+(VbzkQS3gJcw|AufU#3Nt)7s5?x;<n%|#$FBdP0#X4SJ~Tz!#u=$+#-gjK9FwQ
z=a%@uPa#uE*xhD1u6$vnhVfdMe<hHWKa2ul3<~4PFbalID2zwKyqH1ZFp7jxDU8Zt
z6b+-8D3=eTco^3wXET)%QX-6!NlB?NN(=Awz)yv;QiV;F6S8bdb_F3UttiCzz+WYd
zv@oiMfiOOOE;~Jp3@LhUayGM6VD)MusUgU0b#|tG21(5@Xv&$KT}z5Sos#`%7<Izv
z8b-G;>WZ*!812HS7e;0nFFo+r52Ixmt-@#!MwUouhYd9hqmgug{IM_^3vZH?G!3Jf
z@a9QLi!c^F@Kc%9J<?EX!EF!xZG=#M;DP^eyNvc>bYwrn=#Z2@KQ+5^7?0EKDGJrL
zeCO*D#>95+h%U-_yNA&ujDBJC52L5l>J>(BA@R}aeZr{KE~Bp?t9;Zh;|X4bJn&zb
z;&z5<Ko|o>nLgw!P!esIF*uAN9IwcShB1sShVg6|!^0R6#xr4z4Z|CTFARSeN*LLq
z$+|gVRGFGh3*>C~DUpu~V{{lJg>%R(dOE2;Mo31A(ppBxqH$qN2%~ztjPXgGfho%U
zDcR4YD3ijNpQ20+V_F!`g)un{x`I`v2+~pcr2mh!%XnTSFC;CzD81SuO}re&D<YpB
z#*8p#3V$`J$#!QY`Rp*}gz<#fB+d=vbt#$`=09s=9Xk`of-n|xa>G~=#yepw4r7Vv
zEDPfe4!K>%o046cw7DZic`M1^<|rm-7i^cYJdEQh3OoO2+l-ZAtm2AJQQi+@br|o4
z@m^B@k9HYrxWw9JoSB;aUDCtsAw94@jB9N()Y0kW96oVV7$0!rGz{19VHh9LT~T+(
z*c`^kVf+=r-w|vHV=KK8!So0|31b@<V;KK1Xv6p{jGq}NVFbbmhH)T_gJGy)gu?hd
z?0zzaIs1HGK8$D>+>R(=(xk`?BPN8Bco+%cdQxJ9@nVZq7Fi;(1s%cdNu3=+a@D>F
zV`mt<M6x@KuZ8Rp{8I2M!M%bh6WpHg(raHB`$h7NAcfy16}}7O`!G&~aWafUVH^(Q
zXc))BI3fzw^C(m<BuGMoZSyF{!}uX-XHXvHR2ZkjI2*>fFn&zR&xCRJgzqQGJ}cGd
z3$D$hoDajuqg+U8c01|&=Lg>}Veo?dY8bzU(Y{_sHgqYB%VE6TIGgQW5#>FTvaf~l
z8^a@y^1Dd>3geG3{^T}w$x9*AA9<9&xfSPCa!&eK@kSW`a*;;hjo?4VMi{*!=pDhW
zFmAKO2wFyPhh60^7eQtO_rkc(c+R7gh~R-VQ8?nxZ%PDtBFHN|zaWMAB1p|G6+ah<
zprB+6MUd-x>TuSIh_I+&F~Q=3xf5D4f>IHbj-X5g=@Dc^P*zGS2+~5i2+9l3wOLVk
zrDSR42&yD`nvjugGO9*^2p&nwt3^;Ff|`=8F36^Ht<_5EFk3r<M<b|{l+=y<FEUv~
z{rV#RD61pGse$mU2pS4$B-kW^$AqxYjgxhoilkWt&67UK9d)Y+JQ1{upnU|bBWM#r
zi@eIqKls{;KAT`e$g2=L&@-~2I!X~^qf@e#&JjGG<Xwbxji6gn(mjG6!g~r1$m>RO
zp9uO&c4!1oM9?pSCnFdfLH~#wzyp$XpUJBXjPNJ5I}TzG>vd#emv}$OK%Lqodq~8+
zH=L7K876~b><y2&x1}T6WcVWdkpWDIU}6M05%?n*6TvePC}R1k2u4P*F|T4uXGV$f
zr&%}I?$Nvo?QnIB6$uAEo}N6MK2H3jj!nNV3eQUElnACqFe!rPBs)2Rw&T({SsyIu
zP&}V9ErRD+H-eWqr}-2b;c#Av@L8;M`r*Q%^q1+YlfK-$;94hqGa{H7!LA5)NAM~Q
zM(`m$5W$d9EoMjXdIa+#m?PQO1m_B(MJg5MN3eiCiC|>}3nN$*!5a}QjbO2)B@zC#
zwU?>8&(p4U8u85t-ilyZ1j{3MTkL$&-qj(}8WmP>2X60HXZF=z8LJ{#9l_cN)<y7c
z1ZyIAKLV<;%17hV-(x?=r!z}U+GmyZ5p0NHle9}Y?GQK88$;YGjmD*YAeLEcbA<n9
z3zJcip0y={tr3JHh)DL62tJD-5WzOdek#aoMQR3xhXk2bg_NI|et$wbvr);$1vSB#
zV4Zc|pVxV*kdUk%fgz;n8Q%@lm0J<m5jYWS7da(g2-y+A=Sj(!vp&jqO15)8WlscO
zMsPBMQzGfLE8kZU?2X{-2=+yAM21O+?2q8v2o6N>O;R#_c*a5Dhmw--A{aO!?R&}2
zOYyPRVc~=FDdb0mAB*64gkKuE^RlKYPCTS=I)Wb~xE#S1>B&zKoR8pw@H2vEBRD7I
zyV|a|nSPGoSCL#4q~sSG9G8|`dWj(?*XLKI^!KFBH6gz-28{n{{t>~S$x_b3^$7mq
zmJ&tVC~idXFL%EvYDV#21UDln7e)CfZbfjL@sOTXB#Ju`+~xKjMcyd(?DXE_dd#P!
z2*1xLUGIG$$f5=L6c#b%i@G`mqDU1&o?rAy3Pw>V>RR5++1cqWEOHtt8bz@vibqi*
zin5|mGKx|{$_S2vkF`n*-;qzLej<DPQD5mX=@eFoqGA+}t<2^LPo*d-M^Qb>U)oWs
zM3ELnMif<P`PpXFOcz34@`w*&s+wT+VXpBX@+oVJxP*0UMe#@!&FPt;8MUK$G|K<-
z1MQbcRq8~M8Abgl>PEqXsd`cOT<eik#gnRln|~CIq8OB_WQm+b4TXG`-$$LtlFCgu
z(p05s6qJ)RV{@qrNegMEWfVCVyse@bOS6Kl1?Q$Jl(dVYeH2ecF*1q{QFM%=TNK@+
z=(M0iCmGJ;QFIo4j%9PI(nW;iU87)@q(>AzqZk~;kSKaZ(L0I(QJ7zO`v{Uyr*9Nb
zP=3`rZ%($8s`QJZe-tEag*Y&&IVg%Jg&$2-SaE0+!`S&K{30AK=#658)MZ7g`9zo<
z#qX&KjTgx8V%7X^b%m3aUs-wBH;R!H#WNg56whz-J}qt;Bb>9)EWgq{zcP-a7DCDR
zC?-TPF^Xp;Q8G!YkWA0-4*5B8!c+N`DN#&~Vj4|F@fYJHiWgYKIE>=UC|-)<<tRRh
zVp|liL@_;zccNGs#f&IsMzJJ{H==koidj+2iQ=^=X0wzw7jy{bSE^NX&lu-Mv6~|r
z)nXo}sjTnyD1MRb{3sSgu~2$du7Gm*s&|p_#mRo&%daer;!OsXNZu05%c5vdKzTcg
zlM|YK{=FOF%yulGtPq`H1>A;KMX@@HEh2e0iZxMejABz1?<Fm-74m)*8;<z$=ku(K
zVm)~j;|nNtCpNpf&^_a2=Re>zzi4ib;@i7!3^08}=M-=qXnvgiF}o)%ZWXl|6PvN(
zr;On!^e7BEt$-4UA{<2|ieMCK6gvwjp(w5wP)JS)Mx!WMP{~PTYgCA5XBJdqQN$TD
ziEQc+6Qa<qpkhX0MezlVL}4?2qSz6|=d^an=P#&imkC|}y^j{C%(}A*DlA%8P}wEz
z?iOSz)6Ap3ucXiWqxdF@y~4ldBAVE2UljM^+4KYP+b9l1aXN}0qc|wtI1<ItC>9^_
zeHX>|Q5@pR%I{<Lun5^MhkPuG<D4MT|AC9Kpu%xcenNPS{60!fNkwwIpz>1`XBZVx
z{2IksaRPnva}?*II3ESQL3dqXY~S}X<@)5JG<U3^aw&?-QT)cW6UCJ%uF4p%F^t6n
zRLCWC;~!BJETsG?3MBLZd&Qn#kK!NhU>fRc;0gJSC`xN6qv2nE1VnL@n|~DfG^9%D
zZ8|54`;5sAS$Cqi%k8v~LQZ@TMT&+z8uDr`$ra`z)p9lSYbc<hxP}rM3Th~%p{Ryp
znro!6h9Vk><jXuBrvDR?u!xDIq=r&LawXI+tD&5Rsv01Tme){4Lz;#P8Y*h2r12l9
z-Mas$pG(qdM8l9m%Jf1?=7J7&3n_#4c-t3Js%iLdZPp_iYHO&jp@xQ<BB3x=NU5b^
zeIbR3*+(^W_<LCSUxwAyP)Ea8g%l?0)YCvA6Lt8FRRazD3aO`tEDa4ccN=e{p_K-Y
zhQ~B~zo0{74NWvO<-PXSg8r=qDQPD1=7KE*TMDv>3avFL>$2KtV7GbZy!()^t%i0Q
z+KZ&CU<W}ebQID_LuVn63wBACa*cNr-aRSlA*AWng1t2K*3d^oUk!saJgK4kgS0Pt
zcX&cWKMku_7h1N|*K(n+zXl2i2oBUxH`T-J$wJEYLJG-Xkq;3ZDoBM98oU~Qis4KQ
zJ`LHNyBH8djt0Mma~jTbfEu3C@U@10GN&Uoyrto74Wl%S*6_53F&bXf@REjSG>p|S
zS;G_!<1~!d@T`VO8hVw;n4p1CG*OV>4ZXE4D>ts5)9`;nN~UU<rt$B(@Pg)kg~VD^
z$VD1qEoNWV@QQ}lHO$j6UBe6wvo*{S%QH2+s$mv`xv)~^LvQ6IGW#0W(T83(F;@tS
z$cghcEYPq-!y6hFGCm6{i!>}2Yt(1OTul<{)5uZ{Z;BeTxeCkZ77Y;%Q4K3JyrW^0
zh7UBX)UZm!`x@4Ajx@Zh;XN_CMjB!#b1e|rB73!t@vLEkhK<rnZgW&-i{!cE`cT71
z8a~qy(6CwKf6w6)4cjzq5uL4^nsr(Aq^qn#{;9Z^@?7uHr9lm<hLDD^6w$XV%~fC(
z&IN06qtG;%8Y~Sl4RH+#4Y~$HCWTW#&0J+7o3J%Fj3^B|#kU;Gb`3i;d@h~Ob!M&u
zcWKxyP4q9U?9uQgm#T)n8oCr#t`+bw(I9!QeP;J-_=YjIwIFX=ztwO+!x0Tf*_o{c
z4{EqG()XPpzoTUOUc({oGi^PG1?TR{9#>d7#?T$!v3OD684brZ%q*<@pt)b+F`dwG
zQurys(}F)HOMen_HIL^kC$X>+&f}@nvcm;>fLoA;n;I@M{&~D3!y);FQ=gvotKcQU
z%Zvo+`Be?qH2lWRN5em&PbdGO;cpGsHT<dJFA+uxE0pgoto&41`A?AF(%z7wf0MOJ
z6;W<!xXq2Xh*CL*I~wkC8;_x2jK96_e(&~x8-5J;IcwEBG6g>N=7}M*h(exM2zBzs
zkeU?ckGYzo<=eVKG5$3<%E!R70`3?^V(z^_>6p8#6pf*nkm7<R1Su~mq*M$YinyCh
znHb7St=>i4%aU?2<Pv(OLd^9~#TY6H8CgVOmZPW=!^|Q|TFkv3OOLtVQ)I;4ZU3#c
z+0|mG9>a$*d=x{C7;45aB!;0e)QaJe82ZG}H-_3VJQ_or7}~~ACx*H))Q_P-4E3aA
znS!gOZzmVJgJQ~xp;fZ~4TUs{;jyHoaSTn8ylD*0gf~x0S_o+wgDEy?%@gB4Z@MmO
zFMD!34kU)IF?17QhZs7=&^d;Vl3lXUS7D*=ap8xHC|!ii_IMbgSBfZOmiop$Nb4R$
zj~IH!&?^Q?dUH05D9#4A^DLz%h2&4f&|j+e6Qtz5)bs%{42)q=3{SEH57GupQN^N4
zuLo(1Ru>wu&{wypGAxGSF)WT@Nem-m@WwDbh8f)dW5^c$7h>*`$%%o@O^v}HgA&72
zA{-|QBc)@b1V;-#EjUK-8Nso+66rs!jhE^ZVwfo8S;0wy&k0TzoFYj5wnbfUOp9S#
zYWnkHihg)8hL;#2i~(^q-SUd`XJAn`_GSv76T@pUyefQF44m}YF+3{@Zx&VN#_)O!
z3u9O$3iD!^AH#we`04r4QXfB6Nj?*08vG?Soh~JLBZj3hY>+B%#_(1Q@5ZnuhPPu_
z#$ZnNd3g*ggxB8a;}DK)aFJ=H2v^0hI;pv{sPbM6@5it%hV?OcmiqP=OJ{7Xl_q{G
zsxYx4KiO}~yl)iwCczH`-$+g0%=k~w3d9hURr7HSTiD6b`L@RJ3FnuGKP2t(DJNHs
zr#|EI8Py{9lu3;t6vOryc8D;{O(2Fu3=zpvEh<D4j0t)sr0GH|K|_$5rVyS-*+QJ8
zoK1huuEwx0hW#<@l-}+ZWVd$-Y1jaJV)!zKuafe;LUO;{{95=+J9EAfaxjMPgnTP_
zfNP|w>w)iMI26MVF`S6uaLhd}I~v2W7>bwk9f|RGQPN15j!VbdOmVZr>f&S!r?_uS
zN&8VWbLFRFU=c0k;@KGZ*i6GX8pUxghVwC8h~Z~$l5rG?<6;cI#BiOvWemT@a4E)D
zqP)Mya5;u6F=Q1}uElUQhJ3{o%8Rb`rWI4jf8$nJOyL*Ml>8CHpD_$5rtoQvzhdqa
z9ZY`<Ih~buBZhxtco0KM9RG<y+PM|O)5VmV+%t<Q?-WyR^CKXJyD@Aorre9++hPid
zSxmVfbDu(C_IxpgJ;@Vy`&KB9ym91<BQ@@}MM;6UTP1%SH;XAG1>-1QTw!7n6YCa@
zqgWi3;;77`I7-k?9HqrtNimW;I<`nshC1(i%g0eRj;h5KrgB0!(h6}@jDv*ju0QT;
zQe3GLM_L?p;%?8=<H(4kMjYLXyLPIwlf{&3f)G4$%vW8ib1XE%R5OlRaXb=7t7E>}
zaXczyL~$iIORO75y*M)Cs4u-`i_aEU8pM$m2i0DaEGv>f7Dr>6(otJSlQ^2ju{e$;
zaWspgIlB}`k2u~fu5{m8utgj#*-#vwIJ&aK>#|zM(I$@0;)=F$v=h=Pj`l)0*p6{@
z5MKG!Y-V%$jeRbET;yE@cNBMHpj#XViz`f5iYq<i=oQDrIG$xXQMY#-{o?2!N1wQR
z7Bs&``MwOxp7o!IyI%$NZ<{qB?tWMg6wFgXsa!%C6vvbF(yZ*kad_kK#W6&(lnfOz
zOmMj1h&aA1l*yv(ICA26CeFuW8Z!BXjEX}M@>EhjQb_a7Uh0e%{<Pp2!Ls@5jTJIZ
zkUHaqOo(Ipxw_0wisL!*IA+8#IgTlDJWoGxyvrI)jiYx7rJ&)ByzHAsC-?I;DWSX=
z$4i{e1s!-8#S_ADC6qZOl$YZmz7j{|BQMF!I9`ooR@^-nTTw#kyV*<qk4q@C8So{2
zbK+PwDVvuZuf^T#khyWZE`)qu9P^WWfslo9EJ{jtmQdb^V`&^K<5(5Pn{oGCVg*a%
zcuP1>5#NsEv;Vxy;_jkb9(OM<X_iMfr%EXK7J1_*e5)BkObM)EisQXF3MWt`f%oHB
z8^<0xKh9rX!umL(acFUDh+|_MTjTg7j!lfil?^t>-T$ZiK=4Dsj|3?ky|v57!nZsm
z-zGd1=X=3fpR#*#1mfWT5z~|!M^HGktV;=vghdh&%q@+@5s$-(V|yG4j(2QBQ+lEc
z8V_k&!tIA7J2;7@vv$UjGPdF8ahyzT^u<G^yQFWsAL{K_aqOkv;<ysW*KzEN;{<EP
zu|JM);y4t?VeV97=b+R&@Q}6d7yy^+eJ_$(+v;;fM}!}X^XF>29DPXhxM=<$l4S$4
zIQ&y_oQ~ss92esFkzShD;7lAJ>kWT;sMcAjbxtIF6^pfg7XFL$<l;k`zl!E1k?`LG
zsd<$=j@xnEiQ~68evjjyIBvx8hqU#V^zhGzEc`7Nu8V|&qJ@8j-;`ec_mJkThcxfT
zc}j+S38W@)pPTB~hA9bm><=E&&y#SylsDnV0QU`Ie&Gd0vw-m2c`qcIxn3%oK(Pb{
zCGcbd#S<uzK$8TTCQvegQVCQ~phg0v6DX5Fl?2ifD4TFwFQ33KGa8k9$YzBEDke}#
zB$Wl}$(7GE<n!C?NxDd?N>4H#s)YoqC6Mcl+*&mgsFgrw0`(JkB!K}%vL2OMwI8Zg
zCxN=jTJ=QEx9ZqR1K|y&Z&?rNH%j2K1R9GZSD#Tt{bmU?PoPTzT@z@LK+6Q$C(t2*
zR?=>3Y1i|Roi+)yO`zRFb~cu9W1yo*ItzAsNdIxMkUP3=33N}OPXc`t=)opZvU(-(
z=DY?yAJXqF`nmmlLgf7g`#q#HKy(I*gs)?;^}z`YN#Ml<UP@qS0>cs*lfW|x3{PN0
z0!ji;CE%47v!#~rA!|8e%`X!Ev?HyJ6h2z|HtHeGrym;2*aXHU@LU3u6BwVsmaiV0
zD4G)<(tlR;CyAt0UDxsy;nM`CKBW1)Xucp4zMM|YmlJp;frSYyN?>{dGZJ_$fw>9H
zl(uFiFnCqNS0A!4TlgG7E&;BK*M-j)oF|wY`3r>S?j(y7Sdzf91ePc8Mgo6MZ}_H^
zE`3P<E#Yqq^0)qId4*`Mls>%kkmf4ks|D+}clW6GxcMh=CV{gFtW98D0<i?*39L_G
zLjs!<_&9-$32aK>!vsD`VE*;4{BZdo0j?Tut>o+yhr<WRxx>@omISsY@Ck!<WrJS%
z8V<_aWLv`Bw8IH}%D76;`b;p8KrrEcPSK7kl8|7hB`MU22#+S9v7t%sAGT7H@<al9
z0!I=!nt+jjnZTC`d_}&pp_RbBnr*gAMLPjU2&;T@uGtQ0=<@`=NVq>T&k)*~z^(*#
zCw2BnLsVw#Y-n!+Ung)NfrAO`OX_@+z<%Mh(4$Y|Z-w)Z1D<%l9xHyAz#)-*FF37g
z7K;uGXX&ctna9Kl#}oKL2)jzBok-v`x3#=YPD&3?3DS7Y$9uCIKPK>#NZ4UI;amde
z6S$nf748xjnq5fXBKMF4eopWvqAiWk$-j#6OI*UI@)j=L{?BW559Fyw`Blz%0(a@6
z1b$24clsfLe`SvTkSc$3Gui9?Gl9Q^+@71cuu0Z+;r|Gh8`ZFK(|Z4jlc{+-ftw<~
zCD^A$R>r8TJHktjPou*91Rf-iPe-cm&P$5U{}*oDwsRJX^61E`yUlTG_^vm5o?k~b
z-HnX`ItuD2q@%*vhD=p-6xLBhM^PQca)mmI3n`_ew2%^lC3V~?p|DCB$(9pjwrs9W
zNu_*JQnRE|G07|GsGL-wJWY7IU`A4>styQmRnoOzU3y+akVB}cqgIl)o{;{ijygIn
zcJQ><QCCMj9W8aV(vhj7zK-TPTIgt?BTGj!9bcDJ8tQ1IqxHCsO*s6L%40ej>ljy3
zS$#D7#q_LMC6zTLm8LqFs1quwoRuP0%>7Q2Iv$#m?=IU>M@Jjo{kpTQjvFQ2gRd$R
zIx)-d<BF70I_T)Aqmy*6w~jtKItzbXM;9Gkb#&9wQ%5fmb{FiSyGN|GN-2C%f`mo6
zrR05eJi&qM7^vgG+7A76OdsE@Q7NUr4yJEQ`1o}>pClio<4GNZb&x+dp&7qVVPLak
zJi{EOW4O-O$??5`5jwm&uIu<mhfhbg4pm1;cTeGRbi72O!>>cp@sy5{I-b)pS;r_H
zqjikeF+s=EI@;dzj-~f>_jqB9j%P$dVfRwXxpv4X?718CvdBHz>xPLsUy8)_NATD}
zZ?_HJNgVzL?=R(jQ*`VYpFT~;^I~TzTO8E#`U39@l4bQ5bxhorPC{#iQhl#*;5t6i
zv029q9W!+-)$yi|S9Q$Nu|UT{9kX@3-8^-Uj@NW-YS!vh0ngVH(n#iVu%#4|*F`>0
z$9y4_{PviCk&eYWmgxAVXU5lGWwRFLqu<MZLk!X;C2!HPjx{>o<4oyTu49#s)jC!r
z?JT+LWvzE~tQ1L3e%HwH{n^BKbxbOy&`2%6k3M-{$2uMB#pi1U*=MS4kcuA&ZX^m>
zw#YU6A%oxVV|p!*=VKjPbbO*?n{=24nYQXUDi4Hzs^c>q0r3OnUw3t9_W8T+Ydb+M
zjeMTBN-1F-5gmtg9M%!lq3PJmHKHS?Bd%jR=S4?Chb|k1t;3K`TCBd<`}P2zsUy85
zNXF###PfL^Ddm>(`L8*A7X5P_U$Wxx)Gu`G)WJtwSoFjh-!2`y#UQhLbi5$))6G-A
zlIna^X`hb$jAsTp$I>VD8-{4}RC<Oz|Dcp|kO3^3-*esV%chW}#QFI>9QYAd(Q!`4
zc^$`e9M^G1lo>ofNI0DoJi&$8(hb^EI!^2OQG{=P;^p&2KM7~imWu8io#oP~=DO~J
zj-Pd0(Q#GB&01*}b^M~^S251#qb{-5xHLW!Ma|1Hx?($XektVR@UQ9kUB@3fe$%mU
zyX${Cfn!gUQvQ_cf9d#Js^mUIRJXA2hK_%A^fu7Pz<+Fx`=Nnq25#xN&CS_BQ3H2$
z+|`lCKwiUj@;x0XhTG5kVl(dr-viksKNROM2=f_86@|hEW(@OifIJP$Z=isIXKgQ2
zK?8-7yl{0aD&XoAGf><>Ndu*%ZqpX2>&B;-Fx-Q(HRIAs8z>|4ss_p$C}-fJ&%-wz
z${VO)Al<;%MLiV_R5FlephFu^WdoN(-t_@*6(L^%<P%Tk++5?G_ntRH^fP*8uoefx
zqUr`}7-(UjrL<Dhz@rB02(Kmhh=KkedTR^LQG9g`)HBe~KqD#5G|<36mVx>P7M}7k
zaYtJ9qmSDN?UOtvYE2Dyr)q4#Zs{RuBH8_=lx7B+8<^bIEoBO9$Zlo8W1v09Vz|N6
z+5jEGhY8ylXltOISfe~U3y&>vBeSD{PV|+59tJuapk_Cz__!c7yBK);LQYpfW?xG2
za3Xpd?jwK9_A+p$l=~PP6V>_}c*4LO1FsqA#~~Yd#=uwu0}Ko_;4_eI;FEOBHq!<f
zc+$XNwqjuX8t(`L+tM-Az%T>H_vTPiHXU@=a04&3_Aoo4mB&lVijO?U;A>(SWni?_
zRRlkmT2C3E=14I@^0bV1LIL+plQ9g!^sJkulyz5f#<7ZlR}4(2zJZAbj~v~-=vf1k
z=uZPv40j{FJ0tr!A><6UsRp<^kxVn(*du>lN^^CHFS56Ea#7#Qf~-Y8!@x{w`avVS
zYG9UulqY?gYhbnr-&5R$#>CRO23|MthJmF9=1I>NFe-%17yPk^hnkBFEH<!2Bx5I}
ze>18DkpsLm!1tzsw+y^vU?t~^4sVgVOw_i&k<E3z+`tM0?vhW>`m2@a<VEi)1FH>~
z1}p>b8vGeO1PlZXyl3zsKx{Jbfq}IgOFj?NMg!{%{@xwxRC6U8M9y~kCK1#4HfbM<
z<YNO{41C0JYKP6aI$wEjq<Xe;>J5BKKO0a7XVAhnDP>)jGTXWunu%rZlU$*yfslc)
zfiA;635mCefv5q^z^jcBGZ2@p;P`~Jdol0x&3%j8qS98cE}DkaVu-S?ZNM?`m4Uqm
zwu{eqavt-0b_oAmkPi96K*1k#NOl?6Ek^bj_)-Y%tZMHDJn?G-`wSd3_`i+b{ZjfZ
zcaN=JmVP6R4$pM62c(ni=Z&ha<{<-z85`U2@^&0CaFp?5VX=i{3{*y-g^3n^FmQq)
zZQ^MYCmC1V&`gvzaoWI-2Cf_U$G}ep&d7v%N-K2HS<a?`Uk#iy+&8(-8#pw?cR@I_
zKMT3Yp!(f?x9gI4yGCi{FYasxu1L0cY2~UA`v01N--Q1z_=n)1f-SaWQ{iv!b)^-i
zvH3jD#=JKe$tLoc_?I6625w5nZgbn`r+{p~-p=kO+{yI*y2g9gz&$Si(#m}U4-CvN
z=$T$xN$km4QCi`3LS7RMC#DrNQOHC-6R9Tho3KhN2TCiKODhFT>^+&oM9FiPywetD
z7dBDEM7iRgq9%%)C}E;N8Ks!0o%+*@G75{BN{S9EmN8M*L}L?8C^1pqL>&`#O;j*Z
z(L}oGekx6Nyp>G!D5IpAs4Nl+tFTHLWm8pugO2WYnqi`<378mLMyY0^x`{7ZdEO|a
z)G)E7j8e<QBPME6SVsA5xaY?*N^KK~_1V0VdDO%|Wfbzd?L4ef&qSs)(a1!74z{eq
zk5o2yeWSO5iKou^vgi;KDd&Am%vLF@JZ9qg8#yFRO*Av%GqLlsx4DTH?6ZlUCR&<k
zWuk+LjwU=NTALVJ&)=2}74)|%tMKZjjfwSVeB1uX;pI>}6YWj+y6BZf-pF}hClj4b
zbT!e<gfl$*aT9Y(`MS{f7dhMN`q=>rnYx=?(P<>yL;Qbvdzt8MVh9^D(Z@tz69Y{Q
zGVz4zUVikaBt5I2iD$NFH!tF;5%4ygm_C4mYU_Dni~CgelO_h6*fqf2j{KXvg^GBn
zFidI<H!(s8A4Ps!o@(|=mv|Y|enNV-i5wGt6F1E4r%a5bowABz;<>WCoyi$x;;&;l
z{%h`9zUSo3E~|`T9~h-3{^P`%7-u44B5Gp1i3xOqiDf1xnt0a4t0rcdm_$=1UNG?@
zO||l*G|D^K#1s=#O-!Q?k7qw`;%-TQwGkfrfet*nBZtD5IH4w{o0wtZ73ut1d1^gn
zppV}e(rGirTK_K_^A3^O*(T<gm~Uc%D8DB7I)}-ajCq-!F6{31^Gv)x(pS2uf1!y*
zCf+cylx{zt!`*(di6tD%c^_@w9FeVU%6?Ofyd}a<hIzg%;a^c!p~7+#D@=UMC^hkp
ziIpbSaUdpEnOJRNjnvv)R^f<f>Rm3w|Gd0le$T}F;&u*m{aN2y6Sm=HU~Dk4(ZmNP
zKBT0qvWf0G@8g9fdF)EgM`CT<W^dD2_KMRvo5cdnZZ+|ViBC;@X5!cN+3)1>FTdv9
z#*nM$5-JBw1Wl->dkM-<IwFHVWFjmEX`J3@)Bu`^n2BR1j+=;ceVO>u#8)PC6NZT$
zCO$V|iU%xq&&0v93O`#NF0{sOKyEkjQdJ)#kgo>RzvTUb>xe;UVz-IIO<V=WCj<U=
zBexrSxTXB%<>vzLCia^6n$}Ew#~zy4Z{k}M2c&P`n4r4~)Wyu}-gAt%yq*OU({rD(
z|K7wQS~hWnJ3t0HT=miwRM=*_&)D~@fupkG*wzmwPMG+G&f)%V;*?mv!2RFEk0#EV
zI47R@iOYYeyEe}-%ocgMve;o(KkqIFFK3Wub8lpRHgS=Q@r;ko>>lu5GI80&A13}Z
zamB<{6W2`qX5!}w>GaRkiRoNxi|V<7O1J#ZPzie(sI>MMqjZq(9}|B|SFcMEmotSo
zM6&;~yVh=+xJ4&hXkg*Ci96h8EmW{@*Tg;U&lU<=xNqVCcX&(uESSeaULmhdNat(9
zZN|86x!Dn^7V=x5B%b2#54@5oWTCKy;ucC+C?ZvgS}11WNpTc)E@!!B-)e-C7D`zt
zYoVN|l@=^xx&CR;0AuBDjyE#gOzwC<tZ1Q<g&G!WTBvNHiiI=_>DK@52N%jJ&ahC`
z0xVP$YpW)ts~K){cgrfYKvJFdMYEQLM=WHDT5SuDTBs+yj$mC2>nEgtS<oF9G1qwR
zT@^RFEDH@S^tRB)LL-Ymhk{NPI$LOLp^1eS7Ft?pYN46s?n})Dr+$%>=bZ0@pK>Tk
zyXb9Y!DFGFh4vO&Td2J>yRGGJxouc$s4spyhoSPqPd-XMGSWIompTf*eL3gkd3T?G
z+(H)%Jw?cIb+yn#csI+9jqZY+adMWj=e?4eZb(~r!h+X=&q6;7{W&`p28+S~&gO*l
zK^6u|w&TC9)0n2c?~)-FhFKUcMMLSyzq|~v5z=$E#SU}9E}oi^Z6U|PNDHH6?0yT^
z^ZB0=t_W`L=X>qEk2~T1OF5%0jI}V%!qXPUu=O)O`lm!W<r#)hIfd>TpX@nfk9z`x
z;aLllEX=g<s)gq)Ot$cfh3OWiSeR<zCCj}|m?pJeOxAtg!V5{h#&!=m83t5)*}}b_
zy^Ytp_i>Eg8B&+0A{^{23$rcEweY%yIU?uF?@X^*?llIFn|Luf&%%5Q3pm~KBG_U%
z8)@`n8m%pqD!k%dV&M%7D{ZW@vDCtwj942LY`kURZ3~wyT(+>x!g32oEF874!ooWi
zf)-TPvarg+W(yx%SZ(253p}>^z`_~}?^#%DVI75MbKV!6`$rBFv+LRIKXQhaQ#M-I
zAiQolr9(MoN;zc{SIv%WmVPLvJ`$wO_ukLmVqvR=Pej5E>dJ(4I-j`B!lxqq%tAm&
z_D|WY@*>X-g5HpYu!YYpd|@GCA!@<0U|Y~E#4P9*3=44!2a5O;7K-|PB*aJF_Y!$8
z{CYXXWDg7bDOp`kakwhq_cCoy3U`R4^g>s-)50zb-_n|e-4^y(*hhcv_I_#MD+^!K
zW95{+5@3zK%%Pn9KXoOC>1-kYehc4NxK_l!|DPO|UT%tm7QVA^$iiU@|2B1tz87oM
zPbutY^$vyov~Z)T>+@q4j`QMQhOc(Q2@5AJoV9Sy!YK<M7V<IuWZ|?Z{3ys;x0~Wj
zvXmiFdtw^Z&Re)(;b#jMEj$q8za;f9mQ#KezPp^l>Q^jWwUBBfzm01aeq%o^{Ks8O
z&sk>V{BGe7?g0OJ|FpnM_kXx`)WctluDqVV1+Q~^QGB<2o*SY-oi%H`yz9Bi-JW63
z?R2a67C!}qklzvV^{(vu78tiFHuBi+k<J6jrnW;~+pR*9d(M;3MzLxxFJPmfjZ!vB
z+bCqar?M#@dW#7uY@>*cqQWnaPiJB&Z!3!1?#)FB!IFY^$|?DSULN3-vH7DA-m<oP
zj8IO{D@O_y*}9FPHip@#Y@>>eRyLGQNVAb{qppp5HZp8??LT5;e|cY38?aH0n)&@T
zY}B;DTbSxLmX~zTJntOOsbyo2-<MflAum^6;m2`p8;{!V=S3Ysk`)uuGi}tj(agri
z_q`2lWZ7t9V^Dd8hf57PE*tZ%dK=kjS6+G2$lkut+t|k5Q@$pxJ(O45lhc%*S)WbP
z+(rvgZpnTY_Iy(p2Y>YO?8sxIwRF3UjrKM=*l26x>si_DY`j=rIey(s>}aEtje%^}
z#**?%XB&^(=puY=d8Mn3ZZ<x?<n3*vyNytJrI(FE<&_@7dkRu`^FhwV@(M{GQSNKw
z3HHS2>nE6ZXIg(Dlnls~R8XF@@nBaD(_kBE6%>;86_g<&BpGgFgpF5hOt;~+;j=N`
z#snMLHgaS{qipaB({JM`8$8!lZ19YZ>C;0wqbevPMOdsYM%#GW#u(1^$((0wj1_Wx
zfNz|Qg~NTd+jwT3a1X)AC%OTNDK@6sc%gza$;QR08PC~RQ9=2%f->25H*;zhJnfst
zAr$s}UO{<L$n(?}!by2W^S<PE53}p|FIG^PNM_jXo!UGbO~c-qHeRLkhj?ajfF8`D
zrerB;a@zNr4es-EZM<&d-wH~~9xoG%=G$1n4%=A7ecr~(ioV6{*ha6t(YwUPhL2qG
zh7BUq3wix-@*}{;+cth~?O|GBV_A|f7gDUELisylie$BocRBA4x;R*4<2`<eIH>60
zeH&|S9JKMBjdeEG+lbMzY>{y_JoN(`A2M`pz7>_tw8_RcJ`5SnrlUS$7}(fiW3!Eh
zzvM8{V_R)}VngLTR#djx_|(Q{HUji{9`|&vaYbdp9&gab?lzwELcV|U_=i<g{#~6N
zvJqyL5uS+5`?e+7QOQ!G30YWCN!ZYBe9PFVq!>0#8(+}pHf9{lvFH}|yrS~M74JqT
z$FX5mR1Q~Ew%gb@CwqsD&xMdvXBS)N65|@-`nB;T<84ItSGId%_FF}T*X>{Oe*8)I
zZfhU+0oy%t>0C+4S4k;XNvU5+`G(86l6x$}ee!_q?w0Ke_`m0RvGKQ!>oyMCIAY_R
zjq^5++Bjz8CmUyM9Jld<jgvM`+5AgE@2pD7no7zEjv~|l>4@xLrvJiEzSA~HezcKj
z>tRwWDb%N&>8y=il@ynAa&7!(<99|cyKUpLjVoN*itkq&m)spDoBTo|Czo86BJyiC
zsL&*jhozSj-h;OH4;$6H;V*agy?^oo!^kG##Yvapo_}oIu#xH@zk`2m{KqwGBgMhV
zO3F<ecWm6Xam&VSj+&$R%*(`2bC%w-ai0-Yo<}-<7E!{YJPz_Y$g1q}e6(3vVWL91
zND4UoPXuqO&sWqzK?j8-+qtq*SO|-XI2bCL#T*oOP{Kh;$K8#~J18ZDyo`|2f;}3e
ztdIgjJmr#-IY)D-R>?tS2lX6eI;i3x%|R{4eYi2*aqk3o5BFs_?nl7n%1TuSa4>p9
zb~Ohz9eh+-A+Iiy8mySdzp%2>?^sU#6FHAKsO_M4K40e|{zo0uaZuMmtg^DVvT~Ng
zOn6V^_1AaMz(Ff9p5>sS<6g|Lp+*iKbI{a5GY9`wRvJ5KT}5e8%iqL7nJNlX-6~4|
zDoS$)EgY~{BdaLhntqa&4oFz!5u2?Yv~keZK|2RG*LXWQXzyTN!pqdrK?eunDt@L#
z2eT>JTgBf$+t*n%NxC}d=HQxx-yC#z(8Iw-2b&!9bkNJe^A29%=p6KM;CG-n=<DDK
z&WM9y4*EIh?_iLFCmjrMz!PuYRu6Q*yHWQ<;+lKeKiEO}g8m^6R-g0nAczMYZPNXe
zb0-<jQ8@59;1%Nt!T9N%+<WS52RR&6y1(t|99F+}&i9mqkq*W?nBZU(C&F>>$HzK&
z+Hr6C#yEI}edAm3g?v{(aNFgXx##J8;~e)kiuP$|BInw{bMz!f+9H*=W;}kGB<+$+
zalk6m#K=^7qp*kfTtp^nzUbg32TL5hL5Dkd#lh?Ju!HFiW;l4&!7L7QV){(6Mmwys
znctP9XU%2=I+!cQ=SV3BRim13b`^yo$0HYZc)o)L4i-A@Z6m8Jl0F<Vyo=e&H|{AA
z`Nk)FOC7xF;2j4mMd2+6%N#6s+^_uJcJS3jFAdV|b!)rlMJpWq)5ImK=y?b4ajSRm
zE;oPrP+DO_4I23A!#z!~*1<ZqE@rv)@rWa2d)Y~rZgAW=rSb<3K6J3#!5%IL&b5Q6
z1I@w54z@T5I0!n}>fjSGvdsZ6eprjgVxD~dPaS+FON^FzOu=IZ7O4(Gj7;t-t=)j(
zc@$3@BBI6{LyjfpAnw3&U^_@Sn0-3Oa9}#n>4%BwbI-ZG`o&0N_1uOW2iqNd;b5nO
z)QRc5d)>iknUMaubcrz#X9No8fk`Bv`;o*(zohFN9Cz@8gS`&Ec5u+accQkBv*zGi
z2m2*Eqo6<c9Dp;z?j4Y>(nYl=rho6?u!AF_c8GTVatC-+vd0)Rb{a=L=&XB6b7DgJ
z2@cu8c?TC9oN{p5!5If<Mfv;M_|d^n!k1T3X59C#OY`L(^_&wSd(Qj%pB-FuaM{5X
z2fsM((aj|(<rsf;u&s)F=gYfP$|rkV=P+GmfYks;{kwxd95mjJCfo5RSBHaQ+fjTw
z{&sNP!F>l07&&6?KW-6RT*5i<e;xO*nx<|!|BtEffU=@^zLq2)hzS(fUGB1EBrEBW
zK`>$>NO*5|p9B>U6fpc0L`5Yk1`LR(h#-il7>SePn>X{!Sx_(oCR7Zl-|brWf4+12
z)VW>L(^J!3RUM}Xe+u(2mUam^v$UvMqmByy@7<vO|4mUf)X-2z!?7A_YN(~5wgxo|
zBxh4FtA+DQs%B8@YN)5-I88}gUnl|Rh^pq$8dP&e&M0oA;RFq(8d_>NQNu|ZnrdjK
z;baY`NV3y}HrAAEO*CcxoMK{br)uDY3}1m0J4Zy|=902lXpvCXQHh2Yf}77N;&ci$
zHBbKQmUNkhRvOxC=%A@rZmprMBxBBPG;BOsl}tNLwIkFA;*J_l*U&{nSB*WcqD~q*
zOL|rxt$@j_=Gku5Ids>Qm1Xy24i_okc&3J)8qyjv8hUByt>Ih^=V|Dpp|6HP8U|}f
zY3Qe6fQEs5P~A%U!2XikXz{Mc7FSZYnHBppLo^K4FkHh3O-=6%)6{$*FA<-m@kcpo
zruuA6dC_x(vhL_D+07&8d<_?9xKzU^4I`PqhKn`+O(uPjre+;^D$A1f>0RSf#Fq%4
zmmcYe(Hh2RxJ<)14W}(lkJV5$>G!==L8-=zoD(#4M9I^iRIorO%tT>+&^%kNp+e(=
z0<IEHB}+!bB*9q?JSC=Tws5kBsTz13$`lQBR?Ol1=GiMGnR>Opn5JR6hFKb}(J({Q
z;A-Y6YpGO;nbj#dg?_Du*&60(n5%&bKnKWnifOLXaJ`0U4N{yOrZXp>`fvlQW}MQZ
zn>5@^tfQBXc^c+Z{d6?eaf^lp8jfiAolAkcdfckvHtM{FM`R1cLJfCl@HF^*eGPYM
z*refE4U04^rk-ecRKpStOEui9;XVz^NXxKX!`&L*)m4LXkESNKX+*>;<Sp(jAI9>(
zU&8|$9@6lzhLw_r^J$#Zeo#}3(aqjbwaGB643E%W-YKX5<Z{ev4UcJ9r{QT0YcxEr
z;Ykf^3EHZsoOWvF2~p{KMcEd1#ZxrW<5J2?*Q(^z^%^#aZg14^N9&?zM3}p-E@oq0
zRi_L4VY7zkG;G!I67^wP(H0Fau)Z`rUtRvJQ2J_?EnkPTe=lozg_f(q((tOJc}>IX
z0_bGeaB$|0wzEycb`gxzhC8UAL3*c#T>^-AYtRJi)f__r6Z0vy6e$6V#nIqO`4IEf
z0u7;t&oq3lGDoE0eGMOI$g@V~lq4Do8e$Dx2chbczCi^m!&@5O*6^kX$znO5eU-hc
z=kN}zOoP!*nf7~p<t7=rbkYwse5B!14SVPqgEZfZi*z4T*`7&%BAHjMT<}fzvMAbO
zhj`0<8un}WPQwA(uZAx*d@Z+pMQ_0QE76BB9hLw5M#HxvOydqJPwK`&4Tm)RLhIJ>
zy@nrX4s`hPteR)zM@h_vjDFy-VA^#rabo|Js1jouwp_o_@vcd;qW{qFCneWWSI1u(
zj?y2p40Ui3?QeRy&oXp??0Eb`)7zIJsG+M4Mr|E+bkL4!>PpC3x^g3IR+w|u28o%q
zGxc=T*KvZ56Ln=f$LVMwi8-8Suco13-g~@`MuNGb#As1b_9PuA3+I)+8Lrb&ohVEb
z9jEGOt)q>O({wb|(Lx6#=Vm%e1n?=%b+yx@NNBN+R8f{u?g=CvH@&!2lC{*;v~A~s
zDAUnO2j_1&mqpIbQK}o?mR8@gxV@xor(<MMmdp-1I_fxGM<*TKbzFNO%>i;}9o-~Z
z7Ya~6)m12mPQ=`r$h-8vDthQ3JwwNt0v3(QFxp#39~~JT<vRLONF5jHxL8L&9sPBj
z&BD|%K*vBGLv#$)F{rw%21~uLK&Zep|6#)CgU-^`vIy0Kmxk*Yp`)tMNYAY<nURwC
zJc*vKD~E7_P^MwAU#Kg)yZ+k>=5`6Oj!}}5o8?C9YRlYZI>zZ3Bh0b78nQ90sgoM7
zgWEs2jWDgNU6B)nPSnBi8l${4qjsu7N2QJ*bo{6ztK)JV%XQqXW0K@HTgMz7lXXnd
zF;&ME!knq&N*!0}c*{=@u9-UN-HK_t+L&=nkIJ=i#dICy%n*9D&;wtj*-@XR;~HHJ
z^RH#*MOg;oxjL?+z&aM{xSrLwLCp)z({Te|Ust=!{-@(6mi*H6|BAAluDn?=qm+NX
zuIBny7G-bIu|UVII)*PvTlbW|Sd_g@aED_n@6d6l$h?e2p<|Jbr8<sVrRJ%oT%K9X
z2IZgh%odePn5|La6=lDP%11Xyb^bN|by4;n9V>L~)}iURSI2!ip4ah$j{9{ypkp;{
zO~*=IjcOm(@raHG$!uC#qd5DJ4$?!lmBu#r(rh(WQH=6oj|v?%qj-&u$8~Jfv58V0
zt$0GmQ##h^XkIh(q|miGF4&WKs#fZ08nTWJI-b$7<CXNu#aV^}Uny|pNV>+?X)>Rs
zPG(Zi$!ij9mguHI7(OYpMMv?nG>ehtPsjVBj;%Ug(($s6*L7^u@rn+vs=TUWRlQ1r
zcEwqO*I1Z#1!n>|rru6N*i*hk=T`O#MtADirK9VKnZd<b2EL%K!_e`*jt_L0IxHQL
zj=T<Ahod84(OsGuRh)Ho_^iq$>1{_VJYmkeG{f#XuZB8u5_pwNa$+5cjyI`bItr5b
z4eESxmaFPaLvZia#Z39Oj(6m0NguT_^<8?5VPH4oJr=BVL_efj()y@KIzHC%i3qSy
z$EP~>==e;>=W;vcVa|JnRtd0dSJABEEa`p`tcz2`@Rg3QCH)~C-$+*9={O+ZTcMQv
zpbla_otUDI{ao!2`CjgNid`KYKhpykINQKs9ly|P8R%r-R~9eT(m(?PM|AwItF??{
z4E!O0_^5zC*$U_w{B$`NAjte%$3MdVmqpz;OV7q75AtgmsA-^<f!YR+HBi?;9RplU
znL89or%D3WT0P+q*B7w6e&t3d%_WtF297t-+CUovjSQS%pqYW@22M0^l7S|Y_++6?
z>Q|mZ$+xAM$>QQ{W5Ha(In}^v1_+uOV7APYl+hvs#Rgg$C^K-sR$gMDg#id=CTohb
zToqzhu+&hqWXzL+YdvJPGSq_6>&4l&hI+dWLfZ*tw7r3Ru_}#@2JRk;?wu-UZcKMJ
zl!rglKu-f*4CVispew~T(4A7XK@VY`A(YX1EsNP|^fJ)fz#v1d6ZMh&`x;0|w!FPx
z^%Dme^c6}HicQKeP@=4t!3GW$XNMRVYG9ZF<8+nPa06!<N+p<*l#5nmo@3x#0}~CT
zMbz^QTxj4T1LqrH6WnD<`T_$Z4YlE!o}Bbz1D8-eO0we(Tx#IKd&|cfxXi#P1EUQ!
zdq2iNmRm8`rx~V>EtzpR%^AoZMHpvbeE$^j1Or35p=C+7cS$y5pxnTXe6)cI1C<7@
zFmNShD9L6GOg1pZz~u&3uPL8o;EjXntD0n{lw=o_D0`nunI9@=b#N{6Dg(C_<2tI!
z!{yTqOs9s_OwAC=^{lG}kTX-jECbgFxVD-<TfiKlb4mY6Gx4JhQ`Z|Hy}`i0htmW%
zNfF&_U>*x3lUiMpop0b40}Bn@VPJuQoh8}A{`9Q|h8N0-Z=(wBPv0)|qBAOq?=<jf
zN%k%Siwy1?$sXH+CrYJ1xvGfte|~zYfn^4|2Iv-GIjft$0<o~v!aW97P=!qNGI6hg
z`<RJ=J=9nO4;a`*MKZ9Gbzxwwfu{^SWZ+>Int{hyM{`RaVFgX@{iq1P%0PQpbz`_C
zm}SVY#=sK>o|H6?)9A*hxbWAqjXK7G$)4JlUT5HG16vKeWMI944U*4`2A(mn(ZI~M
zc%DkdGGCQ`&cGG}&kEiw^zKr{=T7PQnG|>YPT(F<10Vlg;SR*pZu;CGlm~d(z$*qW
zC@Oi~z^haM&ezpY4c2Q^1DVI*gupff+vT}CL@jxBr$h<pFf{|Zfp-nOCrrbDZy+GE
z3rqu+0bBTv0hdodR_*cTcNU(Z_Wd%<;r4F>IRkIX6L~c<5YwC|_s&z>y&lb5sENCT
z^~hQnmwAIaxmS%ADITLt|CWKb>2`Lc-;wkL^xp5wLqFmZ4SXP&S$#;;Zjt5oE#CDB
zi>td@`e!(=MRqTpm4W&ujx+JOfqitFChC~jZ{Q1NZs0cqUmEzzz)uE#Ht=Cvd~M)c
z1K%0=MkMFHqlqu14;VOT;73Evp0TOrnBtJ31_j>>CHO%AcZMvLvqL!?J1n>VB9s#y
z95VCOju`mez@G;GqC?o5Vb_sz{$Z#=(D2VPtdyg)3j@cP_*-t|+x;U_akN;&R0D@v
zrmDf3LJ9WEpoY`1$C}D3)-_Sjgfm|0A-6-2viCyTz(hk6Elj|~@g^FXXl9~0qrGdN
zVB!=LjZK_bo##m=P8Q78jboW6f;roHnh9<`Jk`XSN7Q(ssi`J{*mor@GEpqK@mW)M
z<Dnzz61l6Qh1!Z%YNDlyGep8N6Rk|NG11mkb0(ZZX>B4aqfvIE+L>r?qLYcvCNBG=
zqJxQ!=6_S5RfmL}ZYt&B$f%2nt|q#hYNm)|A8$r62kG5R{M%N2&q8JoQ;nv%LF-I;
zE=MAit+$CjCT=&e&_rJoDHCH%j5X2EM1K>*Oq^w6fQf-72ALRas%_!Ci{ZQJ#Z`ES
ziJ>NDw@}K)rl;^`@o*C(OpN6FnmF6UIi}i(a=r<Udd@X*o(X<IK&!v+(0^wOUm)`E
zcw0J+i%c~lzQn|(Cj7mbi>1)!?*KRFu-ryTO1|%Cd28CvWz5#ZH72e#G2X-k6O&9#
zHZjq}*F%uuvrMEV6Y3jp<lf^76PKH6f~ZpX6g$f_WlAeJuAKZ=dWwmuCZ?H~E|0rH
z=v5}Jq|R6s46Jn8=CfAC3=>zIm}O$yw-ucIql7H^nUXCvoMryqpB1xB%rSA3iJMK#
zHF2GZ>rLEXg5HT<>xb<XeD00%2!j6!*f(4?;xGSOF;5Dd<$Q~Y`IKi>`tBClB_)*$
zBpK7(YO0jC3FWH&9VYHH@u`VDChjt^$ixada}$dtJ;ht{|JC496U#)@<wEZk$~5<w
zxb>^L1oxS^pSD9$sd6S(nt0B{7AkqI)Pp8gn|RE`LlS*hDEW^FSS9pP-gs*{nQKfu
zZsHkJP4hls;z`O@C$&N7TA}MqJSBj9b^xBP#_I)axud)aY-A2&GMj`FJZoaJ$V`i4
z^m!96n0Up+t9;zv%!{TPPi-~vA_v{|GcS?3CH=Bc4uXhZGx55KT_$!@+G8@?Ol%i$
z*^DAacL*lf$@==Xf<QB&n`#wo$XF$$VZx%})JT~^o0lqVoA{|=5y2vQek!nuk4=1H
zA}|q}c;8eVq@0P!#5*S5HIX+Fn|Rv<Kh8>M;FEj5Y2qyb1ru)wAoG_GE0}=h!w<L!
zs<4{;VdZ{XQAHVLkLv?^fKHVk(&^RCd?b`n4kWpG?4cLZqc2PCHSw8=b1j@_;d2xF
zOw_k<oQ3_Ayl?7z6F->vf<<TID_RiMwNC1Q&~Jo(C-hsP!*&-jFu_4u>*x%@A$knq
z{K(u)9HrAX@w17;^gN~-lGAX0F>yrP=C4A@`Aq;P!+)o*Ta#uO-%%z0Q*QZ-?<k)Q
zs+k`XH7&LF#PF}Fz%dqT2&Zass+NV?7V20y)<WI?kH4NP6#Fvugwv_7!VN6iGCEu6
zV&QlTjVv^`P-Ni*3nyAQ#X@5XCt2WbpWJaNR{F^no@|lj1}D-r%`#0aoN9r9ftEsg
znuVsqX=dS7Nkdv}DUB_&(8@xIg%%bd95P!9D7C<8JvNTya9N?Xg*FyWx4_N(Z7sC3
zz}eIe7TOD^L#@gmhl1hDPL)?3N_Vsrpp)rjfpgSV%&wNwq8=8`u+-^T-Gp`*%9E_l
zw9wPSKnsH`^s?0YPG1Wt3%vz1+Q;HoAw`@H?I)nWg#pzZHqCFf{qO2v3qvdnvv8J$
zp_bb2OUm0Bh<k2H54Ui(@EIK;fXyYZo@1#V1;P0iF0fE(A!}iz$UNG@7y%brxJUqB
z<YEh#2)?wMGfF_xB0E+<x{5D!oQ3fMCJ3D<^qUshs^*5dWrR~Mw8B!IPj;{`w=l`V
z|M(!U$7G??EzGbm#llpHUSZ)X0ZeeE0IoF?Pa|L26ymEbTw~!{xjIwmEY@$gn!Gey
zqSsltUcej+a|Q4cx0T)?`2X^`(L&WDZnAJQYt6!ZNpPFcTP!T7zPC|#+$wlxdnNhp
zR22(%RA0SIz?~MhmZ__Ys6wuqky~61mRVR%GqF+E#@+1vTX@65n-*4BxR)hkaYGL7
zvv9wKwHBVT@PLJt79O_n2+L|$4}OwK`k;k}_?pNbU!I~zT_r{O7_Gp<qZU?6IX5^%
zDdh4AsmCqUn^F9v#X|$qPe>-r;koYW*8tn56s;4^(-zhXxW1=)%E1{$8>l>%+Prti
z>=JS|vTFLK8Y8>e!gCgM3x<U)7M{28B45^0UBPsjy7vW3^;I^Vjh8IEY+<{F9dh**
z3)=)R<*SzR{I3apT_~GxdJ<mRX<?Uz-6BkPWLFebvhlrkM_Ln~Fv_l=XE5bzU?H?%
zS+M1O9SfcSzLzTrsD3`3j2zBJO4)K2A`5vDgGNdYw>PuL8(T<(S*Vt9II?e9c-z83
z3x_PcW8qy3A6xiDa(>UkM*`lrR0rk*xr_ai4=uH0na$!8vWw$W3wtblZQ&aWd+CCD
z*Z$nXJ`wUWmhG}~?iAW@VHJD+!lXQ3SgOxPz_<8{_wozYJ(+K5nA3~Dvp_$<BBF~v
zAWtWzs()|c2Md2%_{+kN7JjnuyM;e2{7lW<QFPeCFBa%andh%^7Xb^O^fwDfgtO)r
zHBrfqB`Fmw9$A|;c+|o_7XG#HH(h9bbvv83V{Fv0QPV~(Th(<2*&Ss{Bs%umHm+!<
zHt}*Iy^gJPPaB4MHtO5>(Zx?Lj<eCg#$pFc95l3XybZ^OYon2k6Ku@4af^);ZJcCd
zn2ob+oNVJ18(nR5v(eZ_6B{KqTG%+%R-c(Sv(enfX*QbLIA(<6RM8?^rl9*O%1~@0
zmZ@pjD7DebMr#`rHl$nHV4GfMtFr>G>+xU5xQ&grHcn^$wldy!Hagg9o}|4{0&eZ-
zXoI^@*a0S1<$s1s*_masIo(Al`Q2^wU{<NrKpSV+IMYTy8~ttcw9(7PRTpRaQj!7K
zx+LA(Mjso$bq7b#4DALWWn)DjeEe%V?5^hXca>s*4XqRej1ICf*j68M4zV#*0P)#v
zzz;bIhT9lnV~UNbd@md4*cfMHyp3~hoM&UCjSJ<iSvBX|xPZ5}EuxK7^=dA%aj}ij
zHpbYhLv@LbOKpr2{PoLea@fD(G(PEAVUlwhYlj=)WfkE39++TbqK&ML%ULPoQfV9I
zHY#jnBudUrP(9fB$X414FiPevtx-Hcb+9Mdm~1P+z<%QuHm<aBjg4zrVm7APsy|6J
zn{HzUHKBg0tcRjk+n6a)&aE*z%LeDeABLKxoNZ$cwbaH<Hs;#6&c+S$T+a419DwTu
zKeQ)PZ(GHUf~!Qj{46Eg&BB>iorV+U3v5nS;}ILHY~02Y5dFW;#zGr+P^)b$u~i?H
z%M*7>z1$^qk<eEzQ(w+5wXuwqYpYH;t6(|(KZ~e~8lC;uy|h(btQ&}XB@L7D2!i`<
zJYcKol$BBfuhq^xXyYLYP%}g3!!(>sih#QGsEyS&p0lyV#$%#>PuO_U#u~wo3tfDc
zQp>eAp0csg#wHu<n7NH-SU$Znv;Ii0XJu_nZ=f;uP#kXO=7+isOTkNQ3!b&H+5WFl
zV6<xg_VYGgu(8X=Zc1oltBu!fY@?7bq+hb}ij7yP`5o~xYid&FMPUBg^os84>T8mQ
zOm^(I+t^`aC-ZNd>Dw1Co~iaxvx@CD&}`^7OxA4u)Y@G|>@6GAWV%7YWLh?CI)O22
zpC`X3@@)7v${e(E5ZDN9{7MtEk+Tum_`=4QHu7`}Hul)qYa_8yu<;&k+{PO=-n8+y
zjdy4}(~DUhtf{xeo3W0FXG|}CmzI@D(TA`Fp{{-)O8c>m4{dxiKJ}4M@`*`5VO@M#
z@u^TogEeVZD;4ZB8=u?QXJct=rEmMIHEm)szOwPPjh}4%%&csDE9!m7R-NbXY#b0L
z)3Aq%(&rqs)lOG}?^#4`)S~1MVgf%3WpwKUYKG)6HL9-iFu#bxG@V%c2-TIo*TD%6
z{;=^Uvvp9*!Cw@tZt5Sg@uO5HWEuTinD_sY{<qrpk8zZjsNrDg;xw1}YCEXo;5Y{j
z931PQu7i4xGEY|Dd@)Q`WqsjPneA~s(9l7CM)C2E@@!nH{;G%aZ&c0`9i?DR9h~Ig
zWCy1>XzZYggHs*Vrm*}Uo0wYF0;f5uo6QQM_pSoX95i>7(iS;r;Q$Vb`9w#3bx!6f
zrHbC#wDQ6^C8Z8pI{3LY*#44vusvEkXyag%gV7G!I%wx$u!A8ER*fxb@1Tc+GaPhq
z(9yx^4mvsL>Y$s0&JI=#Ko=H*e8$d4&|YXb-5q5_4EIkjZdF#vN1W-Pr-PJ(evb0q
zy&Uv$(APn4iIUT;6gLGG<4Zwj&S?K?{y+x<1ap0@vR%<2!P$1o+Yfax%)$8%E^u&`
zgW(jcmikZV2nT07IL}e0bdH1NavH|Djv9vF1J$zl-9d}{Wp>d>sl?}lii;dvD0u(8
za(eiS9bDqzQb!%4@^Y!7U(P7zwC5NHV;x-OU>Zv)mAcG9xq}Kvsp2>X;~h+Ju%I<2
zI?B2;LerGwNcxZUX>vGMU+JiJ`Em!71Z0K&U5d#LrZ~95!IciCvh>C&8;N*CXsy)B
z8AVkM2k|>yil#f5!CIzl4z6}E)4^=ft62`N5pb>ZpURExqBM}9s%e-bSLX_48*zh!
z8y(#0;5Om>&%sR&Zg!Lf@haCS=P@4#x5(A19Qc980tY-nh=JMO?qH#VyBsXyU2>Yo
z9n?wD_B$QrzL*uG%=u)ih*q%F!7{$4i>WS_JGh(n;-Z1ePnNL4LBYWr4(@eupMxC^
zb~?D<!2=GqIC$Q{N(T=*Snps1OVz={)JzADGR^d2svH&U5z+iAr@d?dRy%l1Y;%q9
zX{wKlPCiksnNPCh1wSQpT{Zt{0bC+^#=%Ah&&lnZ96T$49RNOVGpnF>iX#hVtD+Oj
z**d)7;6+ER&eO$hrApB59K1%cZM^K@6-V`U7^rMNT#}(9dY#3aNin*OuV0G2$P#aN
zR7*#&%fW8?2T>2rf$qR_;5#rJm<}8VuA@AFMU~r-wjHq1q;sh1$^74_lO8*85ITsc
zDss?MPMii4&|_5j^DF0;#PXCxXw_*>Z#sC(!9fRyg!#6EPaW)W@Q#Cb9lYn@eKD4g
zg?=FPBL^P}$kkKDQq?c|#KFG<QpY@6-tyv-y$(Ke@TG&V9DMFzpM&k)vEN~jBF(dF
z*0)h7*nA<;2Z0y+6@AU}JT~=>gKsIu^kU-g#Gr0ztrouy&_VT2(X2?nckqLQza9MJ
z;712PIr!DVZ=$z93q4G;?ed>d{6a_igwoz44t}S%cW{*c-@%`J-}cIV{niI}r&Z;C
z3D9?q?XPr<3ihvqV_ej6ajc644r;il>7tga?4`=3*LIb;QQ>JjG!XiPx~}pJ^@Os)
z;`pw<VE(nOp^M{P4018pMI#p{xEv;<gNqYgoaCapiy{{%yEw&Fjbl?+wFr%co+h-3
zi&F*ks+al$SzhfhqqvzQX8NV<Qc@TftzFefwGdkBqNS^<0}}m4rVYykbI!1pfQ|K1
zOu$>(NVKhsb^_YXD<QL^i_=~7bkWO2Cl{S5fQue3h83fWi*D|Jeb=rou9I~!^4a3w
z0_6bDa8)mtKJZLeQLbk8cG1U0KNtPw5uC>C>mpVCI5w$EdZ>nAfQx|)a+V9*2!4bA
z#C8mEG1SE+E-vNMU7Y1ART=4GxQh`Y#(9*XPU>tI=TOvIsh}@-RK>Z1s|HFG?0gp&
zh^YL$jwX4bt6cg;LN6A|=;W)_;bx;;T;^h&tGW=Qg^qDCRscCHnei?rxF~l~!3=w4
zCb~$wN{g!6+>9{U8ZH}-N*7sI{h)9%^PJq9N2y=#ViFVdP*H}rrWbJw7OnCM7gxI2
z;Nlq<SGkzxVu_2Td^;C2sC6!8ySQ3(fO5{1SEDe*vs_#w@|TpVoj-G2%yn_Ii+Qf{
zPS?4(-UVAg`kCisoOOeX8|j3>b8NEzb8!=^xHQXeDoN){b=>Y^p^ICn_AYL9)sUyk
zx^ENA*FUaK>JArox>&?gnqGXDyxQCz;2#(-D$UZ>MDt4)Q-F18dY)x;{w|(y@g$3g
z&vmiN#iK4(xVYEF11?swFsnze_qnRMyk97pzxTj{taq=+!>qgEc*s>8M%!~>;$l;&
z8icMEZCN9>z)|62uKG(jdk(aV$6fqShF~m~wNgauT|6a4w@&EOLV4y1hxQz3a5%G(
z*}8bo#rrOvb+Orn;lgzBoQo|kUUBiNtG2T~PYra{mckc=vWrf<mB#MkWh$ZkCekYf
zx5{&6?KKy#yU<*<qPoq+b{D%`>~@v&p{rpJZHJ4UEb69})EUx~N|i31Ri^q>yj_<Y
zxmIPluwCR`#8R`43(r-3S67@&)x5OtB5)B3pO+#RIl*1NtZ4I7nw+Vn*~CRb6zOdj
zZ%FCADYR!P*wK1RFqiN7t@k^UjNay50h}58z{Q8m(8WH=Al3A#tA-Wqa(~Q{r;Uux
zaNd>CJ+5l+_PY2?YLIgX?7FkQ_Ph8(Zam=POBY|syL`)<U6uCxgI%VtT}8j4FVZUr
zzN63VpL(^sq6b|ZqW<*3_u^H4U@ZV_6zE<^e|B-$#d$u?_wfr0jly_X<l#3LN9b=o
zbnx&yGj~zXLwyf_y7<dQ4G%Rv9Ch)xtGZ$TxL7^5go6l9B~gVqF#p%ZF&?+Ury0np
z<)OBx9!HnLhN+H+J4>^5J<z2b>w$X!2<V;I%pK>UfrryPH1*KX!|@(Y@NlB1JO<0B
zk*7+DLjX1zCwa;noZ_Ler`nX0g>uTJiHBR`3eKBx(08ifb){LoG~3KWa}TZLt|AY`
z0?ItRRhljF)WDEKq!u3F;ZSL|RQOajs#8nh?AxIlL|SfZ4{bz@ww_XE-qlXTqlD~P
zb@Xt$hnXH`dFbS!vxgxbhO#I;boDU6Q;k$NPc<>!J@oLDw=C35oxvQqxK^6sDS~Hu
zV1vcbvkD09?V(RKzpsas;C|Jd{+`;e!duuP4D>L_!(b0}T4tFiJ;T;t(!)HQ<ss|g
zau35jjPR7bU*sugezu28S}GsNLBTncux93559bLuUnn^j2pB2!LZPR(%+gO@?BTVO
zN-pu#EZ?ObMtK-5c#MaM0>~dL;4-1(gpT(xq53MtNLS;Ghw^G%;i0k`^9->`9wvL3
z>fs93OBW^f6cL_H9^F^3rj=KEc=L4C0{-3{SILdjgiiM`qdK3fSv4({*Sf~TwI1es
zxP=uo2(zV9uJbTQs&%fX*4j94Kux>e!wnv8WDXu~W@Xh$-6WLTT#1V=&yX_A6Xtir
zly_R-;WiJqQ}L+qoUGF;_V!J2B(=~}4gDP+*r0G)hWJieP<O>#>|u$A!ybO|u++mc
z54$|<_ORT;-5%C^*dQ-^kB0|6Jmg`8hkHHT=iz=24|rHfFuj<)Yw9W|VGhWMm8~kH
z4|{mT!;>D?dRXP*Q4ec8Jnmt&2cE9>7!`F_nr^ddfI!OL9q)RA*0(WT<x%O4spL<2
zSSQ-fA>PxTa?y0l^wrOJ*y!O!4_iHKl45+$!xjP03f=7Czxf{zFHmxs(qV6hftW7n
zB~R7bYaU)_A^Yi<J-p)KRZop@Ihf_8_NA(SxXr^34?8_<r(3WpxJpP$$H+#FldA-p
z2c23?Aw3u#OzHzw#e?O+_7JlKdiHfZxE^v+S)K>qL&%z{kqU$ou)jyc<gkTGLQ{%7
z<g06zbv^9U3JzNm4+Rfzcp%>1Ls2GvTb$3k9^Mo1j)&GV@%X-n4?KKKGvPbdN`2^o
zqtuUt(rq&E<5Ti4KMQ+2?4>^xKk%7{&pmv@qVurN!+yE_D;72Ih2SrR-YLyAXDK-y
z^tA_O#mv9+aDdiVjDwPfV`1h`dWf2{M?LF%DnPAF75<T`?%`+g%xn~@`kcSg`Fm*L
z13r$>`Fp7Aqn?jH==@n4byNS+v(-xdMGMNLj(YeED*CsFe`rvpYSMs|vkJ%fsNtig
zk6ON(wBZB}zi6xN<5-E-5y~kYt};|zt?%PFAB}x9@zKCXLmwyjIMK)PzOs?~q_^Bi
zFb$I&e#FZEfSlyxWM2)7I3PO3SM41~Or+GDQ++h`(acv0b{b#dnRLHWH1}1jQRJi8
zSA8vx`2J{9#OZy`*OmBSuaZN>QXegS^z_loN12aSzH&HSeYEz`#zzNVRXSU%w!RwU
zwD(oNx}6VuT{%J37{8;B(<NCap<R4*7H~!PO5WSuSBlilM|U4ReARfJ$<k<DbcSH6
zQ`Kx3IlX=K@i9UK=<6fpV~CHTKKl9S&-d~%$j1O*hCky{tn^hcr8x^tw=<aal}X**
z2P4<28I@r^&hjzbR~?45Ot#SUSlx&JO1GF^bheLkm|NSTbA2@gX0dRL%n39~a)FOc
zKA!b4(#M59F7k1)k3~Kf`?$o%r9P&yMtqF&G1|xFJ|_7X!<T)!e4LN*KE?{ZOeps^
zl0U)6L?7ioDtx4UWPB{Fm#W#Ql5|qbY@>#i1OHUBk(JD<Wi~5U8Rb!L6oz{UC;PaP
zy0J4oh4pR~P4#hwgtuNyGq5DDlB)|^W@jxapTXB*9r?J`$4noyeB9*YW*^u1*j`e(
zHd4KgYel1G3!NjBsx{Zgb%L+2=G@@pM#29RdVk9-bJ)}}JI}`tEwlB?vh!I`Ewc=_
z_;6ch-*1_{jk;Hsz0>DEE7P~LtZG*-^l^ue<)@c-Ihf{lpx$NK&1d2+U+sjsuq?a8
z$5J0FeLU!6nUB}!mEY^5<6r6Jf*HNr$322qRC72eyU)k{zB*Lr=kHZ`z{i<ymh*tb
zE6P-fJ>=tIACLH0<ztPH$9+7?dXycNs~MF&Q7p8_e4gs5+B^EdCy0IJ6`%C6*2hym
z&xa|$zbv~>nDffA#H+tdulKQmwtSgd>v^s$`-~6LjY4_vW&$4tA8+{J&$hPs*v2yV
zRX^c*A1}~kd~Egc_D>b;6Ta%>B^Gbj%9njL3VuZ}^_ETNYkX5`^7`~=AC!~cS){s2
zJ6OU#JX))dT|RcRvg)J^AEpmYFr&HvuPkd-a~uJ-ygn1q6O#JE419zFZtRMjfXGL_
zn!{vO+h$@P3F}ez(lq*_;!U5QoZxRC|L{e8yu*U>@w1P2eY{7H<l{SP-G?3C_p!&v
zULPO$c>dVThqNHG;`6fXN36B7?8iPn5%8%{a+<fwe&*wIANzdl_tB+Q_MBGP7wV+4
zt+HSEnA<A*rH`*@M29Mfc@_;n68YN4H$Lucl_m30NnbXxHXnU}{NpPR`Z(m{dzOEz
z><>aeZIwORD*K~gsv`M^+4=YJrxebwLVu(4XW33D=fI7M!ToZizq2mn>QT`ga{i*&
z!m0Yw^Ispw1UNoGqX0Dm)C^RO*9%Z9K<xm}wM5-O%`DXk_ywE-4A1RQ)UJ`~^lJLx
z@tOK^%W(l3NN5;f{QF&*2?N0i0Zt6iGC)~?lLDN~Oah!1VAZO0pFTJxKuPQD(bFm$
z3uqGH#Y5=@Eh~AoX@Fuf12hZJJWwm<MFAGBN^`eE_SDRnaj6yo*0wGx4e;`+Gy-fI
zm||cu-b>IbK<fY<18f+VY7?lln%f2H^Rc!8o?M(xwa$_<+FqC)0^ETNqo+&yPC`2i
z<?USp@T3BQ?g4rP_$ZH$^Ee~GnE@Wo;gKAA2Iv*w!W=Hjp?82j0lp3JU4Xs;j}SpV
zKpdc7fc^oV4zNDJfB*vn+{khZFet#_02Ki$0}Kf;G{BeuV*?Bea8`hk%r?OA03!mN
z7vTIr4MxrudM>3pm_A47gY{D6U)VZZ(K=hNLFxilK?k)#g6#sAv@Qy8aezw#wY<f-
z3#Pm@z^DMDC7)SK({oxY&qK;fmjxIn{4_HOFd@Lo8mWm=^_)Lnxj%i<cWIt^LMCUz
zGXdzs%LAP7UIlZ=2Dm)HRRN|+sZI(oCBW1GlLM&b_&O<WQ)l;;QeDBCt)IHHb@s|?
zFg?JG0M`bX9pLKVzlHl*f%<}Prc^Pj^_t+n*(CnEa87`^0j>*hy~w~X?^d_YlHR~f
z4y1QXS6^hXxgotNz|8^f4scI^c>(4JSQKD!fLkQD+XCDkU_pS_T4!$!)X748Bc2_!
zFi`E(9RcoSjeM&1KTyqv^igGamuN2mH>EELur$Cj$%<vmj>>X*qj@chiOE?J;NAd_
z2Y4dDeF5$d@MwV50Ult%Qhx%l?jDp|_=txBgwu-&7MElw`6GN#fTVSHUu$&^6|4I(
znrh?BngG*(NfXc(2sXE>d{X!=*QVD6YODO(08a@Z=63q3&dG)V&ji>WU`K$Bv=`c1
zfUN<Z4X`=DmH^KO|9x-%9JNkb9J4K6sKz{>frkK){}QW%#TDT70I#q-52s(1G~8>=
zAqID<vvbH~+k{EVZa<?tX@dcr0B(TYa!D7e3FR3Syw?zH2CxFyg1J$jLkX4Jw-sIh
zKR`qw*Q5g$RDh}-!n~Rb)K&_9%e-FpC9;pojoC?nLVyoxu&kqAc(X0u2=FGgCBWMO
z4>terR|4+@c#ozbb6M|Fyy0p$KJz?Jyyyosfs@p65FZElB*4A^`vZI$U{8R(;`dlY
zOw7Pn_)Iw5CiFRrcf2~-;S1sL>X%d`$&mi}D|)j)4UrhWp<~>l=0*+#I7mwgF(t&I
z0N)4rA;6D(%@Jyk5RHqQHh&86bAa|CI)peJ;1}9mh!aEn8sIm&>kxH990~9{)i}UE
z0jQ{d1o$(+UxC^r#;+ZZ(r3#4nY}F(_^WmHUuH7Dq(+FEq0;SRLh$2}&L35bK9t_P
zCo{DtYK6+@3_7HGn8$`_5Tap-x*_U?SlgzuQJZZ25TwTmrQs0QX@leCu0|m^Ks!*X
zrboVhu>7PDCx>VjqIrl@cze&jO+uU+f*Vm9hdl2t-STXl7OF+4rXkqfqK3C=lRY%0
zh!#;4qBulZh*lx`waJ!*Xb}RTGK9<8WJ^QkPZ(N;YK4wq|K-YNTZd>P@6|5EaPV*7
z>9!&0C>Utworhrg^x}?ubcl;WTpXfPh|VDfgcum2ONg!^dWYx}qFaa?o+>{h#F>1r
z5IsUQyJfcq*HbtcAMaLhEZ;LkuMoSEa&p{Om82A)FLV1l-7iE+B%}a*E;;=r%I@Ew
z5Q9UUMe#yBKLSHS3=7q)#ZXDWUShkCD;VX5?GYi)4sk(<k$j^N=Y}|scTGqw`y|7o
z$+(@Y)t(Ha=ZCneO_pH$Ag=7BFO)Q!MyQmRgt#<BIz%SKs1Tz=Toz(ns2U48t1*mD
z?mbp0D}tDRhUJ)Ie2595>hVsztz6Mib&si#Oi&&o8{+a16;dFTp&Fnua3Nq4RdiAM
z-Zt6IZL(iHuhw3thPWcc7tAWel@v0>qpXV%(^!ci7KXTkRUhJN7IlalL(B{@E5zIo
zdYkMuA+8mTS~R_w6CGT`njK;eg&&i-zEOtLad-bwab1Y(g+sw8!>%{V{}<w>5VwYE
zw+WdyhnOGY777`v_hOn+(~7u_bAgD>&8x(Fe^a${Td2AUw~L0e67OV<gm{oT8Dde0
z#UYl3SRR7@c8L_%(&|EECT!{M4slP2m7!V?SwUm@By(?w`$F9PPnsWz-_*MD{typ@
zT<EOeC(k@nj)8Ue%NG@kx|KgHSv?YB6`$3uoMJQ30NF+7wDw~m)`W0ExFH@7@kEFh
zLu?K4Bt;GJY>3UYU(uYWL#z+6E>!Ks?D^$<U#?bg6=p+-XF|MjV&%qAwJe)L)r&~l
zWQjMPnt3k7mJlz5>aQ^@A3pbrfq0%a#q(HPRkPopj+a8bOg#^=JH#s?UJbEBWPUBg
z>mjzY3Z@q`&uuKRda3<w)DJ0`KkxOX6?I8xc1k^t`#!C)W?41Vt_^7;gc-t;OH5CJ
zNqGw2nZ1?sVKu4SL---y3Gr@-AVkQw2=Qi!T!<({LGEQq=0n6GcrVMD#hZkxT8Vk-
z-RZ^bH@+n)>$S~NlD9>%kF?2BvEK{veuz&)><Pho{2;_fAwCZAA$`c`41a1&_sC92
z)xMNZLa-<()!q=FF%w{4h|fil`1;fVUg9d)er7cSXsZh0D>^#rOb%r^d=ui^5Vdot
zlf!qcf)KyZjfXfWiuYrPpV$iU5hCgjRP06>mcx=SRgL^CrG1zdR7>qQqxW7uNa5dT
zBL~udhxmuBK#1Q%{1M{M5Jzcu&D2j!>MTu{JzoA7wPm+D1+IVFEa|@?j>)O|t(8;$
zpC(@;r<#D8x&JhW`t#;XD#5Wi)Xm|v9Gd1(FNgX$oRGtbIUJW$&ux%H!<_1A(ET2t
zQ?<sWTT+Hb>=?IIeM>t0lX5sYhf{K(>!XP^&Y?*Tr{<J-PLfi(wQW|j(^LSKVY3{X
z%O&K%r9-AE%AuGtaQQoj7CB|bOi8gxS>UB235B^`FK?AYYxc}@=#@j89NOm4F^AJ7
zH|jPeX_rHLrm4(y$l*~w^lSA^N2eS*=g>8WZjx1(obui*CFXf2ckKL~?w(W4RuAFN
zYmzxbqU4;J<8PJJKbv~z&?kpsIh>V4Unz$HISkApmBac`nSMF+7qPk6L4nz&9F)Ug
z$!!QP4Z?4m(hM)Q%?=eNpE!46`S2V@h~($wRD!c}ssS3E!p*I)dw=@e9L~$({G9SU
z7vwNfQr;wAwH&iwHRTU&FS<B~OLCZ=!;Bm*&0$my<8zph!{{8w<S>@E<kYzDP%pJZ
zn1CNzl8zH*Rdiww=^Q5KFeRsc8I#GOJckNNz*(uv9I`n~%Bf=qI7iC)E6&MWo>S9Y
z-|tq(y%J2#;ffrl36odJVYo7ftAxX;Fh;r3#I0FZ=P)ye+jCf$!>k;x$>D|^Ze)$*
zFgu4iIn2%B@iHYadsY<qx}55Rz0(udQ-`G^$G@wP^S>N!%3&VWGKZTb&98mcUHrI`
zS8u6)yW8Z_0=}1kpso6%key7v$Q?9|9G2&BcMf++`b9Y`rU{HwpOG@FB{?h={$%Op
zvZJ^xr`DMGMZ-NgtdI;>=J4a}qI-!a)aDEF<f8jn@}Fhy7y5uu_5c?S#Dh6JR4o-d
zv8$+=IeZ-9lL)J+HZ+z9r$$)A*Uw>R4!d%AB8Mk)cu^j-R_HTADc(~#tgFUPQ~d;Q
zsOEemuemXYO;p_+Hdphv2zX9tRhRX7!7uPl<;&BpIlPp^%fftJD4+F;fLB?S0@x2H
zlVO`gx96}!0FSjNb9W9}4)5gfuIQ?sgPVgV*vP>YU<tK_((oMtqh=KO0`fwG>Z@T6
zIl)mi=YTkqIEN&MLJn^T|E=n)Z%QHaD=_B#wlMi6#d|rtpTjRX{3;6h0ZTrIPXvD`
z^dq61ng2A0Jvn@t!&f=%rDD`c?GyT$P)0weV;rpb`-Ss`(36GpHJyJBhv?8c;9ENX
z91hR~4yAt_s%RBBC>&xQxBh(&KTv;i>Wd_XpL6(0Fi($X^l&wwA1nQq!x6gW2**YE
zJ%>MX_&bMxsQ>HIf97yh+&l4K^1kfnFt7>xH>c*}YDTCPDR7L?8bbeRtCk~cN2n9w
zSmA8win<Z%3FgcjuhIlai5o;{7^z<3iIEzC9v`8R01iJHWjH~iYc4H0DZ<GS`0p5=
z48ZTaPN6<G%QTL_KSQa{z9KY@a94yy5t>D49-(gpZW%0!P#mFMg!U0iBDKe$WrVT_
zEg~Sol>@-P3Ggtn(nwh!uadSB+&cP?*(O5UNX?J&DgzHS>JXu0gsu^~ML0b|C&{)m
zqn%a$Tr6WI3|%61jvPVv2t6W@-z&lyl9<ZeQ^1)*DF!*5KJ6{hK0+xKbL$tOe}u~;
zOo}id!oUb)B8-hND8k?f7ep8tVMv6b5zdZqPK2nP+C4ig!dVf9M|gS&4%}WoB2t4>
zj&q55_1s83?z{-+vr>+v`N0bZ=^TKQdCf3f7~!G_mqfUfueMbEKZ4<6!Td0soKd_K
zqzOh#KD?26UKU|ogiNHK&K$-^n81fd;IA{Qa(JVydR9781Ahur9-$&qL+{E+ePf=D
z)Hs(ZKhcm3!{i84BFv@2M3~AvBg|sev%Vr+#Tt)rwMafqB%$kmz8j`XKKC3>AKO9Y
z!!R?#&UWf?#MefcBf`uU3CX$R{1P6F$&=--k8neT+a;?TBm6JIJPH}%rbr!5$P%l{
z?Pj@==^1X3x413B0s(x)tpb>m#qw`kER@7|@TDSLJ50&IH>GTgBP@yVM1&_JERC=%
zQhSgVj4fHtn&rp55gv+gcZ7Q)tcY;0Fdq=gy<Yc4xSxtqJH=fnj50mxN|wVjX@ZC4
z(xa025n(dHstDZbL%^^)!ecZUZlY~hRQ0c}$K@8@yEej8)bI#egmu)J2-_lTkFY+%
zh6v9`cp<_w5jIBH9O1bLn<(L?^s_?g3AuBUYf0oVY!PPFkb(5Y2wNk(65&-E9p@{A
zzATh>L7O7;HHq@OA!3HtCCUjRZk6E&j61~ixVL0ygk2P4t2$hi-!SSCj0ia@d;~Ls
z6(NY!3=e}H!HM8T>O8tC&I_gRBKXyus&+iAPS0fd2yvu3pYKLUA{4~uydB{U0dEPV
zFM2cL3TXua-4W?K)vk&7y$J6|YQEwF$%jkfAF^_z|JKB-R>nV#uqVRgJf`HaH^OHT
z+T_tTkIy6Qqb=l7Bai)*D#FhZ4$~_}_$tB=+tc4gYK@PlseB!Q-@9>{>>K9H#(iu_
zqjp(F4@5W^;ZUU3l75WT|Ck8AkJ#lX|3R1pKM8+pnY#K5tDgR(X6D}rzeP9_fs3kK
zOJ!H~_XtNL)xZ5iD8Zis{t{Z&F8g;i{~rOLwgCT*G^t;zW*)WjXqHFwJZk4rCy$1C
z9G}OrdDP9LULN)HYW9PB4>%I9JrKv`)t&_626?r)s|u6fD325JO14w;I5Cft@@mIU
z<2+6laEefN`KrF};J3O2P4dd2@#|gQby^-fU#n;;ISgu}Hh2`}QJP1~Jc{!wS|XI7
zMINZe<6C6P@@V}?Ig7XIM+2?$Y6-P<UiD51+U3zckKuWY$g4p|hdjFG(M@p2JWdxt
zey2P-3+__Q;bc*F!M*b6Eue?cGlZU*M^6D&yOjIn(O05_g{FiK$fKWt{z7SGY=Zf$
zff5~*S6{9%$}l94p~55{md9DuxL3O@d(LO)F_Hz9SBvcD<Z-S5;`0QYFZ2STkN>E)
zZ(Wqf#5~e@T%5-xd0Z-&#t9vj$7lg#_y_@Gh4L<Lq?}x&c6X1j=1j<|-IctQ5l*(6
zUoM~`k4gbd#xx9<3z(Ew-^4LGHIFOucr1@Kd0d&tRe3DT^VnoeW3oJM$m2%R`l%Ut
zT$9JOd0d@WYl{ps^Oz+#|A&e;n@}=4ufC3%o5!5I>d)7g&mON6=Ji6SG_7QU|H)M*
zxG9f|+GV+c`Q|+4G4liI`9g2as}buhc`T49`JDeJy)BR1g~MrlHT28lF3IY?JQn3q
zb5nX5?LC!ROy&GLy+kO%(mXyKsyJM1TAs(<d9~8i=CYD|@>n65{CoMb?Xm>-ONI~R
zu`-VbDaP7#a47vq9uHN&^}_<_E>`97C{1iqra>yTIu8ys7PM9+!{PJedAyRxt9d-Z
z{PS3w$5XVCiK!R!SjWoB<2kXi^?7W_V^dx^#%F|X6w2twQ;HY}o)yk!p<8+=ceh3E
zrByzk#|wh_Wj&)D?rmk%O}~`K%L4A$rJ}Fp@p>L{9!VbC^4Ok-nTM5Er*`bfV^<!#
z1@9EfiG57~uj&G>@2FB5f_eIiorhDEAP<+uH7*lMl(&0%_`(T<!=`~(d2dzDkudYD
zpsR~HvsB3A4JqpP@^~|^d?UkKEVS<6ei?ejx9Kh_Gw<Z_t^n>!VU!KQ`&{NbHuVAP
zR6tcf_LDq5&Ew1hdKR#U&OeWrV!RyVGdh3jd5qRE_R;z0(Im#HF}}#-%RCO{@jcZt
zkFWFScxBOdd3+-lP0jo^FHP{PYAfKK?Xm}0Zczn|<)GM(+GZ)j|49GFvXyO4Kj(3n
z-Z)0x7{BE4YaU1Q_&bl^@;H*mA5;ncETC`dcN)9bgU97DI=W`+PqB-?^5AX_n#TOU
z(*KCFtr4SUjDJ~=G59B9-jZoj$y%-zqjs#kaUEWj-Y++jG0MOrZR^FTALArRa9oTA
zF&f1<L81+XRvmkLe2nBGwS2>{xC}g{_Qd$V5&Fq7PKnW&Q8_}K2d=U|z`n$3F`C9G
ziP0ifrrj(?QH<gk%_T|`=KMMN?9p)+f=(VWN@KK)@#8?1en;C%`piDli_2o=-Wj;&
z*d|8X7|+Dm7^7W`_L9}w7#(7CjFF9Td5qIzbc!)F#;_QjV|0npFGl|uU1KbtQG7;>
zGh=j%(Vh8hReyG4m%c}=I`;gKs%MN|G5W?x$-DO!O7-g#gMVgZpmMSVc*J+r()@rJ
z17i%1!PBh=#j5kn0_S-nOv5hCkXWr%QLCBxSuuvkxFp7<F-F8VJI47jE?}X>I5)<5
z@qfb^RuB{OkB!Xd$J5J4ieMMTxR{c}>XUr-(0EQ!<q%b&Jd=lXRE*Iv#>bctV@!;(
zEUs7`PP^)hbTdu;Q;C4d#>J|)PYH=9#>m7dkJV5p9jn8s2r8sNC~c)Yls!Fm!<cwd
zjL9(;#N647DKVxpeT*AoToL2S7&BsA9pkDP)1<7X$7+?3-H*3lS7$vv{cQzDA2Vaj
ziZMIJ94c4`HTl4Iye7uA@*rZpsIqDg%v|AICzK_?xs)4O#W8M<F)vmpobxmQuE*UZ
z#pMrCXCu##aSMg1sm6EwsGkC}%x{ZvdyM;H+#h412zGajdt%%n_)aOwyM$86MFJKJ
zT@qtyHGi3a<wCh8xFS|31K%s9^z3j|P3#Y|=lnp7l`)>rX4b@bFvdfYY;}x>V>}Y$
z(O4}Yu8P$;NUS@SKTDXMY69{p?PDU+tTL71<1wCKH653te}0mc*iqT<Q!&=jl*Xl=
zj<JC{hU|G-#d_+DR-vZdcpB%6s(v@c*g`R4JR4)P*aZiA&rybUS&q4wfHw7l@L!ZS
zVx^O_RXEDG#CSEv0|{0pcrC{3G^hlpC)gHadyGG0{1szIjGZw)q1wdQ#VUvq#mL9d
zV(2jf;>o=YzJ9EBD!LS=U6#P2l9y&|p^i{S$!G8+rO!8&l)OERk&}Fg_m?52+lldh
zj1OWIV!RRKomg#sd{gM#LfMmfO8__b@)D1{dsm{w?+GA><I1Wr<A*Umit#bEaTprP
zu#|(xJu&vi_%6l)y3oz(&*<%Ad@1;IwgLk73#BzN!B_MKYt;d>-^BQuO-8#cqu-Z-
zd+)!Ev0`@x!NC}Z=+&voF}{!0r=35=;1OGFUVmUEy6GRqtr3v<bBx1sb$f9oqrcHl
zE>quQ9ue?+5q_s$@$*cf1Z*Xb#`v3lJHg2b{*g+oouE#Fe`B>CeN2KHi8@oFW`Yxj
z;k`n6twhnwny5p2j!jTEQ40YL6Vyx8V4*>xx?$|c)=zL;q8c)Wn(eb>vIBN}f<}`5
z1fiU}<Gm*)r~;=XXq=!`g4PL|Bseueae|UW?ejS;0sm#zTyWC_%@Va)h=G|G36uX`
zVX_tpkf3D(_M*9L!Kp2V(nJBSyOjx_fLD1eFw3V+qV~8lv`x@1L3@d2&MzUSLxO3y
zm$T|SCFq=BY=X-YbV<-P!N3HA64hhumY`RH-U+%V=)qEw{>B*s&J;>cPg=n-sw>hb
zLEl9EY?m!XDgoUZLw^DN66pQ@;|xg9w0)MB1}7Mjs5Qrn5)4f+ObYh=1ZO1}p5R=T
zQl&Z%YD9u_lK=Lzot<z4o|=N=_BQTzJ5SQomM#rX>$)IOXLgMgdSRkwn;E@0!6k_r
zyYZ`sOIZ;KI80-7v@pjAt-3lc!T1FKOK?-74$7F2;0nG@f{6*z3C?Jr%_OKykQH1m
zv?2j#&Uxwb1d|d>Nx=V-FiaLePqKKda!^wx%9PwzaTSX_!CXE!!Sn<(Sk4J%C%8IM
z$8fPhoRwgvU><Zv&bjTg*Cb#^kzh^&CSV}ux%33|kZgLcPjEvbt>=tla&Dw93Ai~?
zd!BDeut2~(q4N`bG(hohO>kR+r3scLxIMwb1a}e02^e<>xKk*1GE{wFxJaUltJ5qI
z@bG=*%M;w4;6CP-&D@iyQ>PeKP}KI>s@dIp6E%@b=KYDX&8jWj4-zNnR!|+7hZ8(P
z<0_y=0jm-`n!snlCRm-|u>{X0*pgrkt2Mz>3DzZeB2f!coN9iOHv3)$SF6{uJddXJ
zE{Z;#V10s3qQDyxJj0smm)e-9g=u4&Iw@#sSEbt=<~&PtNbvl#YN7eo_Ub?2&nI{x
z!S)0@61*tN`BH+HX{7a2TN7|s1~)UjlHk<@uP17)komlpsPPm51Hm@obNQ85cP46b
zcy|IV;T{R_+tRABm7c&zU?s2<wGeF5^d|SdeFRpv&#vC7M#qkDyaaBdzPzg%GFR<S
z2x)f-4kS33AWD!=@IitP6T}G;+FF8l616B+Nbn{T%rALEqI4r%2k%z1@-1Pi6Sj}Z
zyh}$%RTocnimNt|REc*sH~%O2m>Na-6MT~3Q#zIepC#CnsLgLo$!!~a-=3S&pVP5?
zT=CQD^8Et#31y{lOJ2(lD!xk8|J1%t@C|jiQHJ>21kbk5ekYWGom;Mo5*(tEP<ayk
zLjSfl{R5rJVEmZyB<%{0)PADV*qHuV=${kRu{?aoUlSZn@OOgW5*$hJJ8NoH`cJx%
zCTdT}9|BmIWd0?XfNJA(FZze}a+z93{#O7O%4>=q9$!GC0%{ddyP#^MP62fbs8>)G
zeQW_g9aObnzkuTkXjo9M-$0VFH26fOCx`g+fjFUn6ANflK-&UNk~F6k(6oS)3#utO
zrGUl-rBO`^IJKZ$H*aB-fLq|270|qZD$dA9%ZmzVT~Ispn18W=5}_>$fB;@9EudvJ
zE)&qIpmeorUmqzmZ&yIa0!}ZWy~xu+1mF{SsZ#-+g-N^UB7ANsWbt;b#!N#a?Os5S
zg3`t_q^!u{8Bo0n=v}~v1$<OMp91<8@CZ$~fK&nf3Rqmg5=q=&=tTt#5HPTSK?Mvh
zU`PQM3TJ3Rd7iTi%B~59N%X7&PbXIV5kfgyBxZthB-yz_&nw`30pwpGV5HDn7nDy7
zm2bJYfJ+K$4034!<K$VR3K-4j^8fFA>w=oVCmvhi4*`qV+hmlJ`Qr<iP{70j(gj>!
zzzqdt3MemNS^?7wsF2%v*Q5d}1!sj`E|i@L_JJoCFr|R0!nsl?(_bNg^M1rv38tf-
zQNYy&%&AT@ld2_nme6a2u8>j8Y{Bz7s@vxZzD_8koIkvgZzs`(1$9^!nKu=1bJZ<E
z7ZfnRI{hsL^>YxWxm7saV}Bb9xu8y)=b)ARJE~LOS-@R_7ZHqBzq;U67VOdj?q$JB
zkuED>c|naV?v|AI2xXUhML{iabGX5C!0wln56Gpjw_&A#2Mc(pfQJP)s;&Mm#Cd=&
zZSkliexiUU3s^1qu>#gevd38$y=%W)^{e!5HP;sKQ~}Qwutk!sD`34Oc$(_^SehF%
zDC&j+o+)5s0h<cy%l&5ys;%VzjP|cA=a0$w(9M#wT8k;*g#unIV5@M9_E~yPE)cv_
zz{_GIZxrxK0k0OYy8w-ESHSC%az{aR3%3=py#Vf_e6M|W=|J^ApiAZF;5(^uJSMcD
zy8TDY3cUcMfS`b|0J8wA0H*-A09&$Rv(6z85Bt4fUj=3J3gE)JUr@cT!@s4=_o=_s
z<qG(=eKsy2DIj9DRL*_sIKj%VRDwbQySAtQA64H0B}LJNyNMwSNStNi0~BS3+%PN)
z%LpnM0LgKeFa*gtgCL5am=F}nQB<O+7!ffGDzM$t(=*dE(=&r)$tWWEeSP`oz4OlL
z^PR75-Kx4(b?bI@b<Zx3%J~y}{udJdjak;C6~SKwy@=m759a@;4iv#C;zk!CX*A48
zReCUM;J@^uGPjO=?-MOTtO)-W;aU+a9{v>JG}|pgq6o<%9OEz+q2idFqcZY;%7AmU
zA2tT^9&v&LBDs`&U25<t37GsxBn&1T(!YvuR@(ii$o@mb{K?fhhO8o7kg6^**cRcU
za27xDmF;p@#KHKaM*cTLjr>n5dcxHr`76-<v;Hf>b$Ydmi7IXs;bsvYSJ7U@Er!G*
zR8>(;#hoJDEkZffegl=JB3(r>6%G{{s(onxW8=Y@DjIFI|HdhKmWq3%xQY@g?vrFm
z)jkC+rJ}S7{_|GyNyS^0QE|7PudE7k9{!N?P?r&V-?xLxtEiyjeiao}`%$H`6tC*?
zRT3LKur2Ahd|(yH<@1YEMK*0v(O5-w3RTonQCo%E<*T8B`hl+o)s#y3?hInXsZ)h@
zR6L-fo(h)=ZS}whsUX(!Wm#Pn{7uunw`LEk_WOl)E}vU!Xdo31yMI7^mH*^)5clK_
z#i|d#E~K!Dil!=Bsc5Z2QSF_ZM@0)2%~Uj3v1ad}a^DW(-yh>?Z6B8}S4B$|c`C|Q
z9?;i4m_LD`J}>_Ni+mA!RXn2d0{~we6$@NGK8f?QkhUt?sd!Yik0_bkEk6o-Oxohl
zQCYl$iYHX`QSC_nq>86Rlg}(qtLUhrtBP(aI*HAksm>~1<EM-n1D=t-cM+ug{DDE;
zRrFv|MK2k#7MlwFeFkvuILlP%t%Aqtyf`?0RrFKQUqyk6;VPb0Q7H8cR^d}IK*c~6
zhvyD_EeC_dXIPvq4pA{w1^-6w8khYe<qSTDR>v@zQ~pbl5$w2%(JIEM7^T|JLG%P7
zr=B=g#W)pD?j6McPQrf#+-*nUc$p?zNP8x!n5^Op6<?~DqGGCwH&nc-Vw#HSDqdFc
zii#O3W~!LSuBjNYvv8J*IVzqLK3mZKr`6vS?s56(pL5xx;`U3``6^!E*bd8GsNzNO
zhXv9jx(d7Sl5lp73X4+yM&Da3ylKXOSGk}H?C++i{F;i_MNWQY<G>{<-cqqi#by;t
zRV-7noO3D)Z>xAmhJ~6(=nNV5@z)9!D^;vhv0lY06|3o8D%PrqyL@zVno80n$6hJa
z|I6jupn`+L<VLRCiuNdx-`~I0dn&f5*r{TdiuYA~pkk|vZ7M#Lrnw~NH5tr_W7E{X
z?ecABpvbo0zwF=`^2ZK84g5&OZWVh}e8wgk;bYZ)$NdRcpVz)Vl_Z;^kQdk8=i+-L
ztdsX#9?yQI;%gOqIfE+xP;p4bJ{8}p_({djD)y`RPQ~{se&AwRIgp3j-fsu7ENe@f
zQJv&RF_pa=zq{}k6$e%Prh<#{R}}|@kkeES8Yh&~@w*scy*u!*iX$qbDq<>%RH!Np
z6+uP=c7y}&_5~R3#7>>7xY}UOGSTtnpuL|JhE#-Am@J!v@7E0EqM*ajn0Dy{BCNK{
zfUh?cTAU6Q$ECT1ilmUEf<{w&YFa#0{ZC1fA5(E}zD}q(DLtZlGZ>!YXnZ?}OXe>X
zXH`62rB?eYwa%$HPs`6Eb{-d0T%=dW@JbAqR9sf^u!(vmuBiB1#RLNr4g90xs*3VD
zD(LuE#We;@KdSrjpNi{T1sa~$a6`pSh7Ju+YPhB1HY2Kr#v1N0P^+k<p|XZF4e1(6
zX(+8BLqn#9k{YbON|uK5ms}*pH5Aj}(D0J!T2L}=jw_3#gd~5sm`(*=z1C)z(J<<?
z=ROVPG&FJh%4%5NPa$c1F`fG5HB`{BvzM}{mivAU4`#S|Rn)MotAn{!G*s14T|<tB
zY8txEaAa#(FgM33nr$-N7boOWe_3y(hK8CN8fy6MFAp?4amhuwTSF}k-j}_#H7q@v
zUq|H3dVs}+*G)+t((rJK*VEui@tH?F^)>W%`x*#F&UnZx{pDdRO*Ays&`!gn8Wau9
zG~{XMQZlW%29Jg@J(QLje>UZ$ku5ajYFKgBGkTn|_T&I&ogc2u9_4JM;o0$y)*ABJ
zVqc|=hDW5JSCW*x-B)QV5*8Ud*W2o1`ePbu)OI|s@x;T|pipVAp+$eCgN%9jqHFA_
z?58w5%>maiT0=(-oiy~*&|gDm4bN!k#a_@z4SQpG$zDn~4aBa37cQogcjw6TQ+jCV
zso}rA3NI!n&UW<C@JZ=v3Ap=es4~aPYyKfmfrdg2!=&{Af&(=S64EduZLkKKG(^Kt
z4I}3{eVkL(vtG%gkhv{;DsQ=cuO~Bya}YF)kWwQxxHHl?@4WKH6pqm_R>NcsQ#4FH
zmCb9MsEua_Yq%$9n5bcrhF8{km1%{(Ot(3ukbJ6!X&Po}n62TfLI)d~u7TFh&@kh6
zHfx?KmC$3`JH1cNb9O9H=4d!#dY_YVm@8&8IbXvI8jfo?q2Wb(ora$@{LHc%7HZh4
zVVj0U8eZ10R>L})p<%Ix3qIv74X<i=O~V^pM?PimFy(b2)28J9bHr1o$n&NonYBd2
z=cT<DOM8!=9<WpcahZm<g^<6)l_LDzlw^g5mBLpEu1?9<2w~H8Cn@V`;c3r%8a8Oy
zNH@6X+N5E#kcTg&e_p6iQsG9{77bTwy5HCEfrbwMrjy?{S^1DFeX#QAWM#XC9UMIk
zUu(!7rtD-lhby}^?4rS;?2qW-wcO=eI^Kr+V>*V0nHRD@)$kc}H5fi+k6`zG-Y+zK
zNnxQ<XNa<Aore-474~WvSlj)b)bovoeHy;iu%B~1GiTdCrQallnD=tFbD;9Qh94Mk
zS~~Vu^ZrO@hP%a$tlC-bUo`xxA;xG{BJ+TTgBnx~=f*jH)1Vb9ziaqI!(W983m%fb
zALbNmc<W{syU)H9QLUDPWXRBh5o^4STRJoieyLv<WJ3WVhG0-bC?yXIF$E(UqC%d}
z%488sL!8dM#+%@bX!uj(bFn9>;h)nU8goo6$*AFeHP=BihOhOW)NqP{(U0<eoYrtg
z!%YTcTCU-&hJQ6&W2ZEn*Kkq8C9Yzh^707h1r7DrdZ)abKji!D%bZ6I_vg4jyp;Yo
zJ2+IiDoFAVC(-RAS$(jONS*%}5H7mNiPweS(6GIEe<p7;_{+K|>Bk=>s@-Mq_anoP
zuY5|HAM<?5uWsMkaZ08i#r$yik>$t9&peZ=dmGHkAt~+$ITcFyLFD!4;DS<ql=fre
zMOPU=IPYcsD3Rf2lKehD9y^;&kFDUhZy(kCaQbn-9~J%flBq-#Lhf9bUB!=?C$p=H
zgvmxP6y#^Q839<Zjn9$eM-4yLuwALDrXNH680rW7sO3j(KkE3=+K+rc9`NHqKiq!Q
z_oJ@g9;-*sc<TA_kZ`*6!_;{<|M*bF<;Ui<%s^>x(_PtxgOmn-G~@(@JhSfF0i=;1
zjs3O*Pr94Y#E+(aD3V)0n%7K7`Dk8qKUmNs*g}xWTp=w5^ZaO)lJBmU)y5C6AKm=u
z?#Cm3d)c=0<554_3XfLv?yH>rnCQ3nqk|u3Yq%e$RXOgJZ)HCr9WQ;#bFor3d-0?n
zzYbNN^5dUc?x+3eD5R5MXTfI#y9iRJtB_Sg3x0yThaWvUDSbFfEge1m=;cRmKO(gq
zteiF9c+uOJ1A8I6T4`@TKl+PufncE^%MK7S(2qev1`GO9xy1^c!~7UdgZ)_O$FqKn
z@MD44Khlp;emv*LT)!PLM$;d1+~fTSnyxW|W2unq7$^L)>6+ljM0%YcTZSl;MR|F|
zMNgjM2g%|g%2XlK{Fp9ehTu%WS%OrXEo6@1FA>+y=>_xr_;9T9f*;RI&GQA>#F@|X
zUzDtAWvWr(Pq*(j+`Qc{^5Ydh7W?rsy(`0gr+78qYZji%e$|iH{dmKVa4GL=bk3K&
z-1fZb#}Yr@^<xD~t@FO+$5KC*`LS)bgL|YeUh=-}$2)%TzE6IqpS=NC?zi_6By_y}
zrMxTs;GJ%j;A%l8kN67K`LUiW*N;PfY~Z5v<0C(I`>~0uLpEC5>C%3@$L{#?z8_oJ
zs2?9l4fRS@`_PXnat|Hm>Hk`8|4&zWTaR)qE?wAH_3ZH5yPBP11})j;$1`(sNNCT;
zoGCxP@Z%Gy=Tk0o_V=P|Z6C$oNBNBNRl`m5sQINIU;D9_M*igZ%8%P_A8)(gNS(|*
z;Kx4U6n;yOEl~Cge&@&cLVggW{6`@_`SG)mUj%<m<#N@qwu65B=C|+ozY8ADbdw+U
z<A@&@{J7{xksqobNk5MIq50vb&5TqJIdne)euTsu4L?{g=*RVo>A&<<>eqJHp68_j
zvmKdi!sMdxBP#WCgJJm*W7iIO*btGDxE~2ldV!K%s1X13;}|0Y1L?)|<9?iA@bu%9
zAK(3x{@-(6Zl^cgP461^aDR2AWZH*!GtT(&myG0D!E-deq`fa1+FLo#Xg1gTRUhS&
zAD0=2brjQa#gD)JV7te2-2eD-)sJi3@KaLT@vq<BTaN8-?>Xm=a^{yzV{_EJ?#B%&
za#Qe@;B7(X-Vt(FFip2>P8ZD3ktu`{wLo#`D6XTl&eI`x&sN#ok#cKSLPtp*rF7d9
zrmyynU+?{gw*Vbwb=)Uq%juxz6NSqB0_EphS>*TYsHo$i03HsYl8(wc-qW!~M-?4a
zb@b8ES4TA+P905jG}Y}}Mz)UHI_l`Ct|LcB4IMRg+uv&G_{EjQk>mv(=J5f~j8jJU
zQOZoreL%;9I$S#Rl4-Axbkx;RPsjH)-4E%gANTNjSje5;$}hc@`|A4|PItIjB*R^w
z2J2|3qmd-bHp^?Q<AGiZ9|UG3JWMJ&n(25<$KzsKa~+TBc<QBo9vv-o<mwon^t9wa
z&ClkRgPd_YPe&`7SJO@2nw96c^99=odUZS^gz~mR+Uf9jb27<`HMiH%K}Sa&opd~*
z+xs!ChWlw9PqJOzj^3L~d3*GBQhw-aI<q?Kct*E(M7?x$(a}{$58b}Ya3s6w=q^oE
ztmcRgRLT!hwjOYDi`A1Yj&M?^w-jVqZUg%1=&xh8jyXCCbQH1@9b<HRXEH#CPsb3c
zcA%IvNN}(Y?iFdtP{|su<5?ZUgqNyp->|sH7@=dNZf`cY_aKfEPExH@wXr(J>6oNr
zvTolIj6)upG+sx1h%$lw?dq7QgEvs#UZ?2xMy1(B&kP+?Y1<%$*EAv1i9?kwX9h5m
z&(v|gcHS&@A=Ay<#B)04>UcxPn{+&%GEc`M9WU#6UdMd4nC*Rmb1LJrWU%t0js-e)
z!d<_<Z|5Y1bFolIx9K@7_=*mDYp3Hi-QF84rfv0ozh6qH%^b$pb#S*_J(^8iqT?+c
z%XPe~W2ug#gB9N6-WIY<`nV^n7$xuM_PuXyp<{)Pl{z+Xnb&l$((%E&`RjFXGrwBL
z8XapzvQCiOLgtRB&wuIb?%La)I~LifW0RC6-z;R-BJcau*KwIi9Uto0s^eE32Xt)H
zv0cY!IzHF2gFWTg>iAg4E*&4~D1X~Y2j0`tF}=29$Aej%pkB@Uf1=}4F2<A1xDPxu
zF}GL6f;~Dm&T?{}_JxiwWkvkR3Dxnnj&F4A)A3ugs??t`RN1Rz%1IB&w{*x(%6F37
zFPzDPNAtfI$q!OL)dCy6+lDGX(axdD&s^!0Z?+|GjVL(CYIOv37&?B}@rMqL4lEOQ
zNXHQ!MdDP41=o~JyE{NpIog-gx!>c?r)F<wsiBI_g?!P&_43)ks!RrTgmj#fxeIf(
zN^J=p5gl}fm<~%vRQL<^eUk?(T`qd!qO-bUG5W^Q5zcE)Z;~^s<4@h*Fdx%#R>*O|
z6M~eV)Nv}sPYXFC_?O_YA05=$P~Uf+F>s^zf{u$q=pHpy&m|p=)6%#j`di083^D<f
z3E(OZe;BI+$O_<^j{kJr)^Udh4=Z5&zpmp3SHW=QrjA>5p*{-lajy<@7XNDiZ!U}p
zcXgx%kRGrjZNnLke=gW(H5mak$w;epBYXBTrC0!t0C-y|9<bwlyA#=CllGmlM8G~$
zC@IK>N(Jo0qJbHiWdpb`fb0OO2T+be#`yp$2kfRR1aN-<&i)FUK3dCBQ5t1cm9o-y
z^mkSXplSfsMB!*}g*Tdilsw*=odJA1E^|8EIRQN5a?}c-wiK)pK+RMQ2%uzf+bZ6z
z>ICp$0CfX=%j0=~^0I}zQ~z~5leg?D;}q^^>IL8m;6eZw1AO*F{QwpQuqc2A0W=Jt
zAb`RE{<xXdD1ep$<OR@}qY=OdLkgM(&^%y2;3xq!3*gK8J_?y6dT5O5X%Rp!>$#J`
zr(nIlk6En(XdS>~0X!bCgI<0Bj|9+GcpGNbaC-x|RNu!i!be3S7jnA*9u3$Ld&kjy
zV*3Cd7@#~Az|#SA5dMVVlY#>WD9e`TcMPCY0Q~}B%%PKa4xmc_T{&DLDbv8m*xM~&
z-#fUmU)ahH#oZ;@L$GH6y@d1@WNsfJeFZDlarBpZ%GGwT{s93D3}9jalL8nd@(}@y
z3}A4;J`nH)Fhs~u4pdHdy#~Hv0Sph|Ss6Df^q-RJZ{p<0jAA{t-QxnN5c7@>U`znF
zm*-P5R_Y{CsyP^D$BWv80Pc+s<&y)LEAu`jfT;mY3t)Nx?Hl-J2QY&jY2JS(=P}3K
z?&WOqS;BJ%+5voys8RDdA(YGu;Q0XNi_S{{@S)&^0A6GlvN9J0z@rJ?wc8G|%RU-$
z4R7FkIe=FJ*b>0|0W79T0lXW)iU3{<;Pn9B606<_;LQNW$-~Q%02puzavfa1y!cSF
zG=OECDY)MbU^xfskmntlYo1qd*g4(LR4leq>RBhaiu%j*slPgaHC#ji`-zDQt=BC3
zU}1d#8>INg05;Pf-p$_>uy6gmr`PD=eUGho&!!q5DnAI|!vKDyB!H~}Fox_6;2ZWa
zfb9Y7VBhJ_bjtvC1?)im5j!|U;hmJ6WOo1`)8L4U*C#?g72G5Enc(MwUkIKW;oSF=
zqwa-l-i5#Bhz(Kx-S6BdYvj8CzUPV-zCU2!_&6+FJDlGi*uh+T(%+P|@N)paP$7U2
z-TR{JS4NK<w;sTO01k@ew*Y<@!rb+j(*F>CC?z=@z>yR$3P2UE3Hk+jkivo^4tW9r
z{y4>B1h8^i4oNrwlfxLW@A8oVq5;GLumU)h>CPXn+-Y85t@Lss#AW(U2au2{;5a9R
z92NXi@K^xHg`5yPDM-yz0W4WzuWmZP8L5Y}c2-(EC&;Yxi~|Fd`)a!{alRNU4CEWQ
z62RXKk_MbS|7Y+Ipsa!W4E)RBAHdxJ(hU3;K$QuOcLq5aw66znBY>OYOSc%u<Qa|e
zmgIH-cSJHQ+skCSfeZr<1H}zw8d%g{$uhtlHOZ_&4k{Eg?BXoK)BX~MeR^ERKuN<+
zmJ%#2$Rz!<^%2ht4SeMcls8aG<P{9uZ{Xq4PAYtw?R|bqPDKNJ^351!ODYQ|sUpf%
z1>YN9kZqv4Vc(mY7|1bD!@xtV!~pm0H4W4;@PGjjYr1*AsAZtGVLzdqi{%lyy?@XE
zUm1K=ER(!0o9L}<8J}6t!17|54GlCh;4<JgP~QNbr+76GGIgSZe16i?*nmHlXDer<
zJw4e$-qe6%pqYW@23i=%HBhTeH9qxtXhRwM*u1+di+9PE2J)l}pOmS_PPGz#ctR%o
z+s1&`KyL$m3~U~s`G|oh4LoJo0l%$*b_O0b?7;Y#fyWKBH?Sht!P^A)w;c>TVPJnG
zuXVkw#f!XqLLMGNJ#C<)fnJ8aq3vX#vw?<{z1&beW1x$H9tOUuo!8Z{H^4s(RJs}V
zR++pz)#Ul&rMcdoqQf2I(%OzS4SaO$z6Sak7;0dcf&K;x3=EPf;H`5{nQDcGy$u*3
zl7WKriadXhcMLZ8e%#{|<bVv3th?hfhZ}g-z!(ExHt>xQ;Z&!0w1JVrM;Z7%$9>(E
zHDQp0o_4E7_E^Jy2pwl&yn*?1yzzqtohRk8#YqMx8|WM29~i_G15=p{VoDIx3`{pr
zA&C2fm|<Y1fg=Wr49qex+rT;l>)Cw+&(RYMylr5vfqByOVgt_`_C0F>lWfbt3nbHW
zD0xxj?}Q7;IWG$hyljA{K#Mp#1C(Z$(kbLI-7AJ2Y}E$7R}H*o;B^CU7+7l9;g0u<
zHx0aH*im!|OGR9~7(9848C$v<10$2~7<MpUVPGX4lCFEQ*}H}vdr9^eI`}qWl>wf=
ztue6L0F#{A^`|{++1A*?8<m`#<qZZl8rWyxTLYWuP6oCa*e<^Go`DYx`y`VyzD4H!
zeR|X~W!lN?4@JIJ@comX!mP|426h^thwSDM!98ibbC-C?M}j+#<@0IrV*{ViC34)K
z8rUO*cTy&Kea4Q6<O{(s1u6f^z}G3h*T6R^K5Jsmegoeb_)R9_dp2$0fVeIl`$q#m
zbAfZ{7I}Z7!mJz;KKC*9^7@rwaJc=rx4mliL57q^s&hqfaDJCQ{vj0}GH}?i9~HM|
zxNFvMs|GX!R~aO^oDJv(PO<L>0-R+7Q3El0xFa)Yz%<acj}l_*eeHd6SjgE1z6c$-
zhrM-d<jS%P#0?xZ@F%gi!pM^_(BP6QDM^MMXDv6~^_YQ^21;>1ChLWg69xvK^>Fvw
zwx;`&9QPS9^}K-#^db(_oeb_*&l)&KBa1xOj%N}Lch*G%ml^gMZ!_GN80(IBZf8{c
zo6)A1@(+Dxp11E32RX@@EcZ1Ae>NIK=^(BfxWSMfL}m~-4cub%GjNw~%<z(tIkvI=
z4wq(>Xy|*WOf^PqCewm;q)ivBcQHLHh+;vkig>vm9U?qkBCSLa#f9?$fyyO?lklFx
zSEXfwC>z9mK~!e!&2X0sf+r_DV`K~@DIc_Z!6W^OQYtTqR#c#J5LJSx8bre&8U;};
z2xkxvP&tU~AgTvZD`@XsbAnjh-HV{TzG{#UQJAbL!cT`5Fv&Gln*m{f!mCcuUYjI!
zgLo)tM^|?c4+|mZzNnsXSI~ZC)9P6Mfx{lYPO2Y71Cjr6Cxgjq|7CN_(Kv`ELGU55
zX%M+V)Qh;3AexD!ISp%4(1IvQ>bRdRpoHCQnUd_<>}?%Heh~eF=pRIzAiP056GWFF
z9tqm7+a9G2E4^){UA|pv7sN*`9gH)N1?`yg%UbW_L9~|<;2?Am@<h-+`F}Eqr-VE$
zNJ&Q_odi46>}Q=6b`2tDTtSZ@Ht;Dxigyp%NBykr(;HbmgE%l)=@mrpAo>K+mw`0L
z&BxnCGjg~)BCp%fR}e&D5MzQE8^nMh1_m)Kh~YsD3Sw{&FV@Z*8iX&1y|cYf^;U)m
zY22tfZ+4eQIZw>?uB%x{mwQ%be<ZESNE;zYw;2_*?<TxP2l>UUhi9|nf*2pf<vz+p
zx<P+?8S<JCM1`{hc<9$+m17deFvIOHmN}Jk9mMZJ{1L?Tdwv+iLf!>}m>I;ZAZ7<K
zKZr}2wxiAwh35sI6Pz2wJRv_9t40M*S<V#uQ-l}TBbkc@f(K{VJMBfBsUSWG;=>?b
zq04by1hG1ZSEYv6f_OcM3377#Mi7rq$>j^LH-mO8#bmqAB|&?m`<5s#4Pu$p%v<o=
zLA*n^&v7pod{=OVAcZT1d^+FB8rB4{F^Ek;tPNsa5bHVeCDW+Gz5NEMmO5Oso2BM0
zLA)QtdqMD#jmFQ-%H&Fauz2PiM<$1QYY^MG(8^`(4`O=|JA(Kkh%bZK8N{w2J_+Je
zdSDQ{gJ{>#_i+#t&)EiW%&%2<cN}7OXHO8HNuzrXJ2QLQkLsTXadfOg-t21jS3!Io
z#J613?ySA^mI2B>>Bu)h`=vQID#S&lymT$vpIfHdcR_s577u%V2;vvIZV*2P@ly~7
zk7u{&W50d)S!TR+X6AvQy(d2?wQ*^1c$xf-6XCPf4h3<T-Wx*25RL><L@x^BN)T!g
zS`a6KI2nXL2%XL^>n<Q`f#YKaVQ_*Z+3I9=NC;O)n8CAo0SR>&5TZfEWOyxhHi$oi
zhzF723~uz+FP53)0*9M1hwuH5i5g4o9^pKm;uRKnPYFNIaR}lxmrq0A8HOpESE%rm
zk9b!2IjM@ti{e5Ys7paST_v0SC7;#M_ctR(5LqD<3*oDoj;oCJLEH%9U#`<Z%C(?<
zu<)NC$7gv%-%WaKP50d((n7e!s1iiu894)eg@*?zcNmmj_VyU4yi~)T9ztda6ta?x
z5Gdp(lOKHX9_k38cnJ4}?D~0*Q6hv=Av>s&mlTqFF}rjKWrPo{Sd3X^L-zKDag4lN
z2<0V<yg~?H^zf2Y3ZZfcxgoR+p-Ko<L#P|VLm~SfR4s&@5Nfc|UWzk>>=3Gl(C}h9
zle|^cxR6&f1cXp0gx`8Od84cqLTxF?7;<Z@!rSh~yXkcG2SVUp^uZ8@4swt@974Si
znuO3a1efSHV6`FphUgAqWsbXk2scZlo$9GHl3ZFcaklO7jYII4Nb{R{N(jv)t3?QZ
z3@vCLf=9^54Sh`Vp@zt}5-gGzLaPuugz!WNtwYF{QjdkuCIm0L+*4^60(Z8Lh`ij1
z%(fx$J<G5H`)$jk9Ii{Qw-?&)Qyx!Q(w??C>`3)w2v3FZObA^#Up<wlL+He+LUthS
zD19N}#+zliKjAZA*ATjKHd(~wxN<R_lI|h<zWh@ICxc$k5PC@yy+imj;_4GZ1E+m3
zxNEhI{X;0A!C^cSMqvm8*x3*cv6T=8g|I1v%^?g9!56~J5N3righL&|*bv4^ojlAO
z7Q*llo(<VM*ij+-XmmsfBRLU8o>%reD^&J!TRS=g9-qE6(m5u?{}Af<a-1?ggb5)`
zlS(FX&mZ;jz<ClSh4umIWZEz>cZ%RtK_)4ub50LohWId@_VKu9b_jDqcq@dZAv_nt
z+z=Lp@Nx+ALiTNr@n=B@&xbHyk}q%=x%m&_gPU2*U0KaRoH9vyDTIZzVUqIjAf-o7
z<&_W?hwvsPaKB3b$+6?Z>mj@r0*{)n9?K?jIln=l%yQ?h_VUw|B_SLbYM;_C3*qe$
zR)w&dE7zyI6T<Qk-WAR_AoYe8P=~Q`1?}W3VCg>3$JTJbYrEGAuK6Z=t&nvgkn?G7
zgCwc2F=U5FuKo8y*b>5*tTu%A*_{w}h44`bjNTuHu#I!EJbNqGPD3AEh0nIzL)alM
zN51pk#5MFe`gwPU@UbL658)F=o6*jvxt*hjTyoW^?bs8-XOi2zObxp0i4ETLM!qk^
zw--N`^EF!u;oA`QhwPIRetPr``wsU$!AMsJKSP>S&GDVo@M{R)%M|<&!jD3J68t5E
zpBY9<d-=X&YUe_}Kq-I7b3n%Ypx|#I{LbL8JiB*o$Ga7a{X0-O%;3-95Vpfe5!V!5
zD}?_-(71#{I7%lEK@TAif*C?21cOn?r(_RPLLu-2tsoc6^c)gO!XZ31%E28}RCJOu
z&an_ImKvYSFD2qa5~(DG{CtHE?8ibl9>OK*+6nr62!Ba;PSKc%lQVTD#78qbbUPdI
zmu~hZlZR1fLpT@0dC|Ne=pW)_)<xm$`?T(bmqWM`!ru&Qv|qMxbeO9l{2Q{LOzCXf
zYdLs7;yw3z2sc6~8Ad4?iko!K5YmL-3gI>vX@5I7+z~SCtS3E;yhgsPFp7oktc);z
zo|BUq#_~aS0PNMs=Ln-j*xq`P7Y~Ctsu90icJqv=bQopAs2D~islRL(<-#a0{Jt=1
zMY0))x}3<Qa)q$%Jokt3?wM>7K5bPFql#2pJ&dYhERs62g;Wc}DOnWq?JX;zevU|3
zRSh9E1-CWw)e56_7<IznhOI#u4a0aKj0eN08@9Jz4~J1t$U|Y29O>l8FdR2m81=*Q
zXdp;Q=V}h#cKMN5qp-c=nuO6bjK*PnJTaF^9#JY`Gz%j)jFw@9PJ4LYZyvUvAUt7v
z8^EiD5Jm>ZqP#F#hmp_7IY?<0{@=Sxa;^eiZNk`h+C$PdjCNsUnJ8xB(J&qh<I6C<
z3ghuG+H;`7SP@2tFrElw0Idq+$uOP@qx3vy|1h2o+h=s0iD7gM+Xr-=1UK)?<|`E@
zPhCv!cgE8t3}RQoZees6LP-xHJvo~xN$)WF2=9AOl9F@43&QA|;Vuj#*4tTcVlMB+
zgTfdb#^Nwu4Z|14kT52NF<I1xhA}>j31JMA<Z!`f1xE<7s*z!g5<WU58AIPo@o_@F
zKbuGQ<9qyxk{tK9lLdKA;pAqxpATbd7}LU-9!5@2rCvNQbBTjwMi?_iLOv^u*}~_f
zB+rF0SNOb?gkg}i&6he~2;)T|lq{eR3tyO$EE4jv;46aM_P-X!>tVdjsSo1~5iSYy
zdvDL1!nw1(63KfjjHR+7oEOuV384aCZ?SjFN7@_g<s$rgieqIMtHRhB#;!0{hp{G%
z_rll`#@aB}g|R7&&0(w;WtzP)j13%TS)|;$IP2K^9G*kwHg|H*&yCIdVSEtAhhh5!
zgW;W<le)z-Id@yb*e1g5bRPN6XFy+NM;Hqx<dS?ucct5h@rg9_LhGs@k93SWll|dr
z$ERU@M*r`r?2#-!_|tge=V5#yl6&8We;vl&Fph<BJdAJX>R}jMfMI+a#(u_@Fn$R`
zA6f8S7~j*pg9V>wy32X`^CjI6Vf&Mw9|eD6Pvv8qU&A;M#-T6{bAfYF^KUmw)^Ea@
z{GD}Hx4-}4wO7eI5=IdN%N(zt>u903X|YUIh$hum$Z{{+?A1jfAjt1VsN7_pGZaQ7
zjA$5Pk(;9b;)6~$5evf#BN@g~X_{e;LmlVx=YR|H3G2@=y0z$ktI)w`)y|I0<WT1c
z8Iym)xJs7@<5U=@QxWX%FwRKsUt#RIlfhv;E6H=j8t(I9To6KjF^o&XFAH8t$?qJ`
ze50?EUi2>)ny3GbFm8r%EsX!9iR&Edady<@^-Ck)tuStfk#5>|M(&Wg&%6`H-7q@W
za`QMS&9pa={BoO*=NTq`8JC$U5^A!8EaEUx!bC|E#ifRyN7?s<QYK29C~M+A6J<nB
z;dgmeM`zh@W6PN+Z=$-197eXuN(B>@OjI^;ziCI;ih_S!N++*kqN-`X{c)Q1>Bn0)
zv#ObPTxCpNonJNEw4?Op?)Fnd4HGp@)G|?<_2js(9CU*1G6FX#;MaO}OgtdU51GiT
z?&X)Cd?I_$L|xN94q|cE{N@0K$K5UyZdMfoVyJJTfr+#T(j#bSqLB&H#Ob)Jv56)o
zW}28~qNxeR#4{$km}q9AxrxV2JZ{2cqJ@dpCh|?>nrLa__QQ@m6R~dY2YY+FJngu2
z&h_p&S1S`FJ&P4<W5R3l*E(qw@_NL?(<d|AnjoK6C9R#PQS(s~gU-9gR!nPe;_m%v
z9ZWnSS^sr*JZa)76FYi&JBj3J6MK5OtDbjtG;y@Mn^)tJ3Tx|}YNe}*ZYD;U7-^!r
zi5@2Un<y~R(?l;5Y@)9TUk`V06MalPSTU_hC&%_4?vJ{=qg~y!t)Gc=J#0>^3Tc&z
z!6pW9?&t{@oFC-7D^^Zpme0fx6T?glXLBMMD)toXWt&8WXH6{2caJJ-D{raj9mQ!f
zG0DVa6JuzG$^X7&w?0lf#cHQD$)M)A%4v&7C=*0D(ZoIB6cbZT%rMbru9MbIWAUEu
zMLpcp*{N>sM8&kr-QASb=;fYmVvdQ;Cf+mgoQb(6mY8_U#5|KfTEqg|V=<rgbaTHb
z1O9?E^j*4bWT!0-TE5W4BAK06L}5g4yDu-ZYmIy)i%q<0;x#GtCf(q?>vd6nL-5|5
z?oUsnd?~wcVx@^yCf+vjj)~>ek%BK*O1n3PD@^Q`aUN4K?cYji=eoLAi^4h+>rJfT
zaCLRBmClan<|d~BKUGTGAUYdO(CkgZ=?rw9EhgSK@q>vUO?+VDLld8v_|(K!(b-{Q
zr-^OCmvwV*m!adJ?cxG7@v(H)RWa?#nS$M-Q>KzVCam`2<*Yp-`O?H!CO$Jk8$K8P
zH;Wbf!o<4DX;fnuzBciViG4KVS!J(@U(?e_Sjo30_S0Iaq({XxHd?ZB8g2gG#Oq}X
zNq#c%vkAWmoq>o2O&l_D*u()72Tdd^r)})*rp>>Z_+2VtoxfB{qj&uwKE^tan3$07
zrbHD|WTNlwEJ`#{m^MOT7Lx&)rl1MqUXSwK><eoPG4#n2Zrsz|yHZ-jM3hMm%U#zg
zLCZwkM1sbcIA-EF{XyhZn3c%;Q~32euAl#O5t}Xco)F1N6HHPkZF0eB6K5EdOq^w)
zGjWxx%*1&U7ikHTjeO-B`v$D=UNF)1xLxEj1I``S6|S=5uFdIgX8kQZ*tg)FQ?7qa
zTw~;sR{o=(A9r0haf9o0g_m4A?V5DUbyIRFxn&~qikEfXVQdi{HbFIFMg*A=JM{UY
z$corOseA+#gcOUwA*6T&B_b#pL8%Dt6A9I}TuCo2yo_L3!C|+vm{l%<O}*T7X5#%3
zU}06(Up<0~5mbtxas*W($d2Hbk&60fUXvY;su7SdSxtn_2<H9ZprqzrTOlWc8WGfF
zJrVpB!Py9(FHk#z5fO}xpiTr2M9?dO-Vr<)LEQ+7uWj^11P?{<a0E&O%_2O&$6H5T
zjUs3qflIhsu)bge!6WJJh7k~{*(8Fd5rl;^d5?S?b5Wsr1PjX+>kxq_f))|vM$j^X
z$E1clDUu&Sn+RG7XTjDHoNSQAvP5r$uLW&OD1RgZ3fo4|PBh6Wr+LK31=|Zwzu}~W
z7Y%zdf~O*QI)aZnXHfD?1RX_(yi)|7Q=CS2kvhAIq?=%O!5-4VJL&G85fJay%;D-I
zxqSuuMbJNjf(QyD7%Y+jQfiRkzzEoPUMzcWxO@=|iD0NmhKmkO9mcz=Ov<w&zo$GZ
zg3%G|h+t;~V<H$E!J82*iC|m=<0F{MNsplQ^^6G-Op9Q81QVsUNm9e)2&PDKYO3{n
zHk|3G%!uG0>B~&foFzD0aE{<}5v<?d=&|VkhVl6bUJ?2H2wsTbMXB~Bk<ju5VmZfT
zp-2`9zAQ)~JHoaWNARjhUK4y>kn%UgY<pBASQ^3F2-ZcgOs=;hc!&O9%pP;LvOIzu
zsqNheRz$E;Y*-`ptP;LjkfT9mUL4HzV%P_wvq7eBBUf1jn?=HE-;<G{@|Kk3eR24E
zHh&nwR*`QL+@8{*%k2{Wdjx;bwWO8ZbWRa|62Vsyd>z535$uWJGqLKU1yu_+HDW`b
zi_RAje90vcby3K+_KME;5&RIrH^TP`ek;gQ`y==+#i#Vj`Z0o^A~+bqy+Qstf?rd)
zzX)O94+vpkxi@;hNxO7_LlGQ~z=$A7g$Rl`;HHbdU7>Ab_KT}bjX)D+%KZ`O!UHLZ
zQr;b+S_H=;I39s1MJ&OH=tKo$f@5VR#)T&$NJel}G}#K<`csCwiAYYQ?5E}I@5u;G
zF~ABxBhlktFPM8Sg7Xn{i(>lg%7q9nM$jONhEZIK;Bo}FBDfvF6={)0{)>S1|4nZf
z$<+wx{QnBSCLL!Vsm5xri||GSH-$XEt}5ksBDfnt^(d~LaE)k^l@`T)QIv}!J&KH|
zy__?nC=o?T-UTFCEDA>y#iRBxvLPyvc$#IElH4+al$WN#;&^36!bxG5d6k!BCBX_&
z+%Ke}Acu>!RgR)c6jepy6s#u5+L+6}WJ_{kX?IQ(HKM2)1)_K;Y6q@bQM(n+avdSH
z1sRq(J`Y6kpcJetmNTw)oLu!`k<^RA6@^=r>x<;O$yM(KL$=sRB;F_<iK1~7O`>Qj
zHPD`xlBGn^Oh|J<PZTXg;hv}EvXoe!C%LTzTMOokS{vbPsMq;)V%sR%vlS`QPE2|<
z%0*;5@Z*9;S|)i18Qv$Ncv6Z#6-CD=Iz{nx^#286wtH{TI!EzLs+BHMXIC2eVndEq
z_b7Tq(KCu(Q4A1&>m5a(D396EKZ?Flbeo{i2}y|L1ySs7->OiOlzjK1ox4@b8yLl)
zC<cq1xHLVVa^jFEhDI?gis4bb9K|b9JR8M`C>BKVgws7TYVRvXM=>UfQ5=nnb`<3o
z0%M~X7saF~CP$IBt<m@>R{iaoD13t8)KZyCGcy@@r$jL|iWj2zft!C8IqI4vqclB=
z@Al`<h~msH53iX*>Nobyj@kis4%_-Q|2e_Ag7X9^d_Ic#!ZSN~nS3#d!|ye^UDvU>
zruQYWc_9tRb`N#B7jdBOq?0U;;?*c_Mp5gc=d~zakK#0&i{gza-i%^J6f2`x619W;
zvMAo>L<nbcsgOZ69q&ZJmkX7L^`l!(9pqikVUet{9a>RsRTQhE_O2ih#hNJAl1K3g
zyBWoV9gQ{!t`}so?e@kSqu3<L&4Swm-xJ&-_`cu=f*(e)RS3&|zs^bA9>tE7WM>q+
zgnuNsJ0+*)r%~*Q;t!F076m0g3jbX2izvQ~;;WSYw^4kZ;(LXB6UDxi<X*e`CHbA;
z_ngrGKli67evX2@<Mm4vzoz(sC=Lq$EhYI~Nc`7+?8_mk<gnn8D2jxrf|?+8{88vB
zPD>0<U)&XpB1AWc!sJ5Opd_P+2x-1qd7zy;DxC6I6qfL~U?L^&v`INC{7=DSg2x3<
z2%Z!?B{=mrC#(7^inDa!>fWnS%>1y?Il(JYoR8u{6c@Qbeo}Z{5~8MMUKV05bqtJp
zsQ-5q|40$?jp>>HGM>}^boYOp1%B)u#XHND>roUma*vvy|HhC43UA3uxy{HK#a()J
z4CP~XoZ*!o!+mYtnK5LDWOT`56jG8U@?wGx!QwHLh@oT*rD9mNSt%#N(lL~YVbLy6
zStetsII7>Q<M}ndP*}s*hrQbl<dZZklU5;y`(tSSrBYF_l3?W+stBnXLv<l;x4T*l
z&KP>QyxAgowTAc6#=ackD~r4}g#6XmT`Pv#F?6S940U37Acht(<i_w|40U4&RdXwX
z4+%Dm;o%tS33mzBkMU^FR-4lxi`YPTzQ^Xg8pY69BuxY<X)0vM@_h1U!kY_vVi-Br
zd9PH<7@mybsTlHNXca^281iFyG=|4w_-tivn;5(?JR+sKEYEK%!ghiz&Rps=Tkj-c
za`0H^<1w_4p+gK$#6W#!QGulEs@$hVhiV;T=q&bkN=Z7$@Jxz#5z<w#n_%Y|nLT6Z
z6~oXNhQ-i3hCVSA#xNj;zA^L@oq`zj>sh?|OY&xYdrUqmo>qNE=0K4Q791qVEXsYt
zhX{6kwSdCm!pFogHil<o7$M1#f}>*i^!oqCc{E3FRqkUebH~LnK88s#OctH?GcsAp
z1mP27V3(Pk62sIOUJ@ab(_)wr!^{|_i)8x%yUtlL%#NYi%G~E;_R^k1?BJd!{5iq7
zf>@b*t9}+0=1bWZVt7%=gQe0Ir0T!t3=8Qwt8y2`u(7tAWN{3y#_+=l{CEPd#qfFz
zSxFR2;*A*Ij3E(2GKM8FycNT5G5j9GQm&MkedGI?ZV+|79mAR!*2eHo41BO%9<v`*
z-xXXT$mGfxRtaC7lC((_tcziN3_D}k6~hK8%i^18mGIpsGnw3+lD{WpOAPM|`5-0#
zFovzdw+U`f$#)28emIYIeiXy!F?_*sHeI`8_D1XD7(U^Yak<G4jd|nVLto`u^EnoU
zocw{$moa=5!%s2$H!@$x__s%}FNSYpIJw#WKIfa5{r2#uIgOhi&#O_)y*~!x4>3%v
zS>rq5-?R1V?!02|A7gml?I5}1u+Oep+b=QvDx-HGhJ!+Qf?9iqlXmiS^p6-0(N|*#
z#Bi&F`)~|JLXHSh(#P#oQ(P0`7c6M(W3Iu8jv*XFFr{;OtkX>KSPT*2(Uj!-HBKwV
z<3e`5T;pgAfAVkjByc%_V=)|$;fRGI3n$opt|<%sES#dtG2U9JVBt&*f5nhyA>G2+
z7|zA;PYhRM_9uVmW4I8*#hCrkV_I`3-$WBH#c(->D>3l*o|OD8gztQNA1q+<-x#j3
zY|Q>e$$x^^W4IB+>K`0+dU`3mDZ*QVm8xd*w;?<XzeA_3?!8M(<fSLyMP^vYv{2ka
z2@6@4T^lPW78|Y<v*55mVhmIG@kU7tr7V=S?05R5ExWc?HaW@&Nw^*D7kK%Z?tPLh
zXJOW5C)M~{hWjm4w9wE(BMX%*RJKstLLCcLEL62n-9nCqY8ISQZMNXlOHRJd<{ty0
zsjP%o4GT3bz(TiK4j$(7XD_uZ`>Wv1g%0w+TUX_{Jz(J>3lCd(&_Z3yemTyQ|A8&-
z(Wqy^W#J#Uqk)uiTbMSdI;&+3^=V8`@06b2J3|%L+}J`B3!N=IW1*=9#X<)QPgrPX
zp*gQ%N^1)q3oWFZc@|hC*FsAfH+GiBaOn7jUMo@fx@I9qDc?dH3to|o-sq*NkKE(@
z{$EHt!AAujv+#H-x4n?vEger<c*;UY%l>T<i}!Av^|WMh%sDT7Y0}Ap^`e)K)Wt$q
z3q39V6LWilx>@KUUG6T(_bmL08GAitxsAOo^kH}Sjp!@~XW1UZck}yOD6p`M6Jepy
z!T<}?EzGbm(83@KV=aucFxZ06!Uzi^Eex?RRN8vh!qTeQJ&)xNvp~a!3-W6p^3s=`
zt$W&2Im)vC=FAxCTi901k-U+Wv)R#gn1d5N-ogYiW~zmW7ADd6S~{lCC#!oWvq#7B
zSrvP9yFg)u$68mNW`X!`>#9>)I%m?~EWBi4p@rEN=7<-)D8u!f@aHYewJ^^D=cuQA
zRqh{V`{#TMFNgw%?vst)1s3?deOJx?>VA=hmpQ*2iskvQSXgY~H4CqEQS%cZ5z><0
z^SsQZg-@N%W(VJp7Ju&P<y-zG7T)53h-5@dyMr|T9Sh4Xd}iTu%Z{$^au6(Rx3I#(
zN*Tjd7S>o;Yhkr`6u(mDOs(U(JM8&T24}sfv8oLgHm3L{A)76{my&F;@V@X51o_E2
zi)^**-;3Q_K07Szw6NR4#};<U@X~L0R?cRNA4w6ezE3QCYGIEgIabW#U%cTI^9O6J
z?F$QEvUk#vuPl6RVV{L>E$rn29B#jN`$pCv-K=I6FPGSU3*TAz!NQAKnXHYI$j>If
zXJD-C<>3EFPb>0JZQwrV&lY~M@T-Lb7Jj$zhlPV;0|((Z3z60K2d?89`{+nq<A*F9
zmSxD#H7RG@;E1UfGz(kecs~xm1)a+|jxKQoII0#}#nC#BpoI`)wS|)w!WK*mF)ku5
zcBeZ+S2SHwc7I{NexsFrGyCz2uYt&kTlkY+XCYxBX<^JJ&)r#7>ptl|O0T=@Vsb)8
z+Lxo1(^s>Ovr*IY`eoNC3#S?4;;0eF84G_|_}9WUx>gDISqtYaT(EGC{;<<?aJN!*
zs`6ra_eBerEnKm1$-?*#l!c#ph;<L<|83zaSKlgS>lWo73&h$zlro<w?fMq}XW_bK
zZ|Td&@y2_~4GS4@J9*QxleYwK3*Hf=@UDe4QBD^$>o_RPlu}u76pO<V$G<LjDZ%1`
zB?L<fZatXK+|t6!2$mJRPq3UI6}p#n(~JsI?fr37jN_ZnluCk?<ESE}Y8=@@m{m=P
zQ}9r}o096nUwOb?GY-VjG>(@V`)b8eJB|i%G>oH89KO!VLvcJD#{<Hdd@znuW`12s
zUi;hgRA+uD!r$-lZ$Y4HXT=rgmoxb%qxrKsD?^9p|9;t4;MFLOxz8w#<9NJ_GW9|_
zc@vR5^M_N3qgfoyrF9z6A`VX+<3ssHos_kWeYqlUnaa%*!V2@_XcNa1aeF)Zi_`6;
z+;lw>N2_Qy9jtBK{#|^#xV=SuG>*sEZXE67_<oCWt3xaA7NtWRE7vG*Y*WY|Kal@q
z98bmZbR3OKdppH#7wsrDFv)s&e9<{>A7Z?DA-!uH-Qrjj$IEear%oJ0;}{l4&p3L;
z(JzkvqS-qR>zt>L@PFz$`U+{#t$>vj#O*Vd0fL3B>iMdFT~DWEphyM@GC5d?PjHCf
zzb{lB9>=qB%!uRQjz%K{Nk$79DL6{-tH!=Daf}r{PH;MhRLBIuiGnOUNyy|lrlcfO
zg-jDX(%6@1?7Q69H#3e|am-HXJSSvM9DjFIGMe~U&s>qri{p7A^HZ8H2zfD%1wvj*
z$rrL03)-<Dr|%UmlQ`atV{sg>#_<|wR=%?EmP{jgJ&s!PwcC=oeUP;-j`eZ8701#z
zmWlJPjl=#7EROvvm3IV5mUHTbuMk`*xGD~MK66*cv4#rkmAe!AU0tEPztTRd+z?0C
z>lqyR_u|+X$EG+oGs<oDTq{{@(VVIzO)k5Re&4Ty!~H=VA9CUncsYTsacqlYbOK`%
z*dE6YTAM)a1a`);D~?-n+>Ya;ICjSoj>BZl?<gO0-Nmslj!)wFG>$!Sd=>|z(^rC@
z3w{yD<q~cRTjsgHWc~HM<h;I)V{aV2Z|9M>EiCw!{fcA5jsc-KzN33H4##ohi~Jwr
z_%V*(;`lv|pW^sgga_mJC5~T(-`u58?LZvS(FG*^zs)D!TIV7D!BOHA?6ehl9ggEj
z97UWUult@vl^XnY+?o&y{X+COsx|R3No9j~fjEvm<9%|6UC;38{nppbj<C5nF0pHI
z#JE7>_>($u#5wN`yiJ<;j>eJTEcfWgD;Y=WefcEs#0y^C<~h#5(!_U~>u5ti%1=n{
z$v934p@g}^oA}Pe@mCxqyv_<aCwM-N3n}?UaRVw`iDPxO!q!`r|LDna{1ZpyYTk2A
ze4!lgRfbu5NE6>RuI{RZlzi00cb#{)tqQLjaol9cRlVfykCi)d+-0Oqpn3vn38W`b
zI)O3?WF(N8fFptDx_ZCfsPND06r*qSP-0gKN_^#|E7IoT36x0SW>+uI#7c_huT6ZV
z5(xJzWT~<V+?T+TElSk{IELjCsF1+@!ppOjefGfes+d3(5mHh~NaX|)&)8WB4#o6-
z{4uRFf!H>s?M8*|QY|NeBOfS8*oRt_*GQlypSIppI=z_R<_kruXY15S;DH1lNuX^4
z4<=AIfd&aQOyHpe9!_A^Bi?>Zea`0Ydh%z3>L<WY<@~ws>rH%qm$zI~-$PA(gSsh?
zHuW`1pm74Z3A9Y0Ndiq1XeK@7K~{29KZR8t&!61XN95H!0sciN_Ps>{eYSaaY*x;V
z>BnTz`$}E{trGSUZk>QPfwJ3_d`Y$ue5hIhv%0tU=4?{hCGaSVC(t*6#}arvf$mag
z`vf{9&^ci*w@-e{e<FdW5+LFAWCD{v_K-ZCl5|X<lkj3Y70RDUpv#l}%2#lANuaBY
zTek$5<kh2uds`)Uj|6%qK+-FL-U&?I<t?>FVX{<7cfSPsConL9K?xKjP?(ym0SWA#
zWcO}yQy=kxMFoTDLjC(ao4|+!j7QzR1phgUEg32}EP>5UeM}CQWQVsLBU4q45(!tw
zH%)z<yRn?IQufyu6X;9n?s0<S1^e~RnwY?(gne`T<N4gl2~1%nS6w_zsB=7TY68;|
zn4ZAd;@%kvJTGLX;4Hz}f^!6)6Qt%`A@dSYoBEiXpOU}8p%%VC@Fl^8f>fsFD+w%4
z;HLzBPT<u9UQ1v@0vi)}J%Kk8Sd+lo1l~-b<7L-72`o?G*_#<l5_l_trS$nW{gw&7
zEqMHjiy@lAcM~}NnsWK7tLN?X6$z}Q*Ijls$V^*B2hL1u_`0&1u71^J4ar`Yz$<$_
zytZ6+5!Wa1^-<TKO?{g<&Ix=c$@dc2lE4=Ue94jd*Y$n^yA$|0fe$1}$%jI=a_WU_
z7u=D`-I>6y6#s}GwZ0#Ve8M^xE1!uOB%da*M<nDl43}M>a}Y)=H1#Xd`I>&hPF=Bk
z@l66NPUh`P;M)W~%1A33tq_^DUldM`wrluaEGPLvgg?pvM)|>N0>5&RCZH#9Ac2Dk
z6mj(pb^eyX?+geDd$XN5nfFHmKMc=4oItzL$|0V>+)AgM65ln~%xkVqJzJ@q*5TPt
zU2|!olYJ>KKzB_bl0Y<pptL^csLM<sltA%g`C&0*S4P^_@yfZyO2LwXSOQi8Cqy$Y
zJ>nD}W7Lw4Cm958ryrHRvlo8~VXvukoKv5XMj^X=QmQ?bz-b|81S$WEu9f2Fgq%;{
zLP~NmfjaqxRO8v>l?47v;Ccdov)$V6e*{Uc3i&sIYbnW{rasDVByd+GHwAAA-u}Nj
z3DmFPr5dlaq+MZp5*b1=1#2xVpwN*-@g&L|McJb$kwnQPswa_?L@CjsLfIrr3onzB
zu=sr`UQS4P!3s&-FQj5Bw^9<7Q@o0hs)E&$aHizhLO%5r)DUt#i5p4OOae*NN}_fW
zKZ?9g5)UM?G>K(NJeWk?B!(n0G>M0jcsPm2lW3nry(C<s+%gHb5Zd2VNPWQuNi-DF
zD3#kdi6+ADocB<fmy$%YRBm%29>ErZxq|JF<xw*)iB?IpP9k4~Z3Wv1GS{2LBPq^_
zYbX3s!N*eaO~YDs5Z*0`?nyk6#FI%pC6X?JPYZSwWSyOo=q&u1lw_PIi}J2XjIQAz
z=^^q0!JdM>1bYiop^uQhN%RxaKPA6*F0U}f2P82t#RnxZSh!DcX`$WRuq6K)9-dEP
zeiF}$d_ocvg^Um!nZzg|qXk)HjF7QOj7v$zC-KEOdl)CBBr}tkoZ?fGn403#l9-<2
zGlcL(2@B3jVzwmbq;j7VGB=5NDao=G&KFYr)g)d_;`1)<1tNJVC104tq7;8w$SZ=2
zllaQ8SI}#z+}HUQAjRJlvPAGL!AUEfZzu6i61!76%ad3y{N0pfg^-nktCCoqlCMc(
zt?+dz$%5YA4djyCB=~{g<|N(|vPF>Qy)Web7512Xn8a2|ZWG*|(%B(oXA--Fe3X)N
zBtK5#6G?t5xHpMC$^XODcR)!|d|v~*M9D~4(j_W8AYou>b{U48B_p!zF3_T&<Qyb}
zM9Db`l9VJ!Mg=1ZDoU0tJ9(zV1cHJBez)KL=6}9(>fCeRt5>hmtLiX4-T1GZwHA(v
z=D6Sq!IK;lAzujY+hkSB^i?)ai{^~r*Mi>&GWS~{-w85ef5^t!Z2XvwpRy4V<+*H}
z&xT9*&)N7z$RFAGRmf#Q`niye-{SmtAr}QN3H~?Nc_p5ERmin$Txaj3kvTRuvT-vT
zx3Y0NZh1c&cjEl6kbBwqQwXPkm1f6tb2{tJh9?_dQThZ!+3*Vq2nGdN@RbeL;Aq*<
z;~FCyW}JtG<k&>B5sT{|2ze;@Nbqqs{u1)HAbmc`#uZtK<o}8?zYEW@@jM$ZL`-y9
z8~%TB`&=$m4JPDvA&=-2T;LIeDd&KaSCsi&7;@0sLkfsUQcy@C7hV#QGAe<}qAnD3
z;Y$y`@}Rg2C0rQf!rLyCbfJ_Buek843opA++J#CkRCd9g+g3&}$%V2)%F%;erT&M)
zxyp;?T%xUlkcxuIJ^FuAI9H3rTyUWZTQ16KF6>COIhxvtOw~oK;X+Lz)U>RTSj&ZE
z7dpG}x(hZJYP-<Jh2=}ElaRKf?R8vu&4s!y)N_HSmn~eV??MBY^^(u#F4$exO&k6;
z=X9Z=3yoYzaapJLw+h%A3%NVfL9Vz!Y~n(y5b`t^n#Q@qg=WI@?yxf}-=NBL$iL^X
zI^J7o=|c5ZwpK3wbePhbU9+o-UH$T}l(sIkbD_Np9bCAZoZ8WaKc?2Zuqx?FozzY)
ztgn_@%9Sv!T51;;y1LNcg#j+>rcE~&`U>gpvQ8A4dbrTjg<dZ7j%(g<A=)D!v-*hU
z&A6V*bT)f?N<YC2!AwCavxF3WoM)gAp472ARq7&n%VnLI@x<vJ7Y4hK&%<*n3~}LI
zMuiJsx$vF~LtR+n!crH8xiH*?87|CpVT21KT^R4e1Q+(*Ngl<yC}$hv!e|%L!^uok
z^7qrRE{t>Ge)WtWhh$Kk=)!|L$p@e2nIxoxU7hU06t=;IsV+=+@u#=sX_EDemQ2gn
z?j_IBlJ~Z=z1qe$%Z1r4EO22VqvC%5IWEj|@j;a2xtwd!EWcw_>bT&X?}F!Pp4=x=
zC|(aIFLGfq1EWOVQh9RCon5K6k@BG!uszEdQJfSPHgFzY2<pjeT-MLND}}ETq;j>8
z?ppF%$z8`eHItb>yYC=wbYY7NAGxr}h0Wrbt)i1rr7{|{vrV|-+$yEEaoxGFT{v?O
zGt^z!DdH{{K6PP_@ZEx+xKJ=pE}Ajzbz#2?2SmTm#jkxO^)8X?GZzku=5rU$75$&(
zAs5VE);KdYy_9rB434^R%!T8^sXyt$i8yD$Q*r)<kSe{BPP=f1QRl`RZhY;+H!eJM
z;gJj9a<pCemCMJ447>Wh3qQK>6IY*zXSr9*bWlHhYsxu}#;xR^U07sS&kG-GSE>0$
zG(WVkQU9ChuX7|__}zt3{qkLO;gSoNIVN`Xs^ne~PVoyVel167S8up*liLV~n#<FL
zq-sv4doJ7-en)WdIQv~j$V;}I+&@Km--YbBy-P^jE>5otJ{L3>bQk>G)@nHeoNggO
zyGk*{s4HM2VInCsINfj|>_Wr^a#N7{sF0Xoo@P#FF+C7*<Jk1aF8swB-6-$I-!6oj
z+lshR)Qu-DJayq8(NLM_#=qSBU3e~<+-}SAh4B9bbBTt^JPp-6ah@Qgd_y&_kbH4{
zem4pTFDO_@@TGWeVIc*I+KLG&?M4|P#RW^aQBp`L!IuS78mg?itZ+_QIU$`Js)HJ;
zpGNvuaHFCdP2F&~QOS+UZrI$Y?FQVa;zkWOYPwO?jibeF)!eA=#+?$jlZBm!syVk5
zwsk-2Ab-V;SKUZ<^V6cvT5c?V*)kxnImJodxQLBq>$vfn8;#sZabs3dTU|F+m9W)!
zqn;aCTkK3r*4P`kVRwV1p&K{%Tbh*8nZ(9!+&<$_+-Ty)CnasuYdNPjR8z$dous)z
zkv@sd+;F<lnU?jP&E06>MjJPd6|}W<qm>&)w%K_Hl6R=8Y_|8<Xm9NXk+-edy3tO|
z+6#7cTepHc2;Wu67J4tMlW_g8{dG6GxY3mb`P-!%6ZhLmx{27I+>M@YD|&mex`&A*
zOr6}RecX7{jW6B!%8kBmq`R@gjg@Yk=Z#i3#=9}WjSM$3ITUVwVh@Adc-xHuV(^wA
zEeE<WEIm_oV|7E7;*MH2;yZ2(7K2fOLnL>k8}Ewvp5RcyVS>X2M+nyMok<S|8meW7
zW{q}Zj2oVD>C`Zd6@zhZey7{2YoZ&I+?egg95*JrF~yC<>bB`_@RslUZmd0+GL2bV
zQ>MCcR&i4K_q~+GN9~n6r_XTXqgQP+1!r+gTq*Y(s&n1=z>URje8{n4XjQXu^I71=
zd^bqy_D?5zypDx#EMk+qj&4s=iA&tL(ZsgYjb&~$;Ny0KEHjejZsgu?XBv3Iv5MVy
zV>g3@p~!}@UN^RKHc4(JZ;-GjSuf(>vM4r+a+Ba@H?{~V-pE=n+r(^_;Kzd71$PMU
z6r?xqa#vQS*J`AG>c$=^e$tJ-ZtQd8b2ko)*?u<;#O?o`?O>_T+&CzjLvcML_E=Th
z5e8KwYu9btNIlA^bA#l#Ajt_KS&h_FZhYa!xF76nC)3hK>S;I5xDj?E!u{WkZ``==
zMz$N@y78SG7v22V4}Lh~_?~mbX(eZj&2~)NVc-5)N{v1CosCpJTlkY3=Q#Cl6zr2(
zYi|niXW_rN@vD#vg1-s=E_hnZc%SyN8@ISl85M3^b>o^F*Ey%NoYPy_{$R|=y<Fbg
zB)K8tO*irkvqYvlZdgx#a*Z@n?@X}YbK@>Qi`q#2(+#bWnkPkdx#4C<_S%CC2{*i4
zJ~f<v?op{W9|P%D63-G(jCWQ{QB!u?16)KYndc_i3;gN`(SsYh8-^RcBX*OUz+U^C
zJ?$(wVvn6X>PG$^>Hly8cOxeJf#5?o9=Y*YI1T=G<1gXf`56?Mo{0EVaCJ-PGwxlj
zZMk_Gw%1AW+>IBa`A;yH$I2}zS$RD8GTE6RNRsG5UJsVlv296qQY_#>K@VQ`ptQ&O
zA8R3=;d@ZRgO@xg?6Lm$TEv559_#O}MLn=xb}}uKe@*iLuvGF7rzJhG{x>Q($)7+c
zWjrYB!DtW0cu>xRBo8`z(8+`H9#rt4wg+`QSa&bEq6alSsQ+hjB@Zfl01v8&zJ_2`
z52_2HWi=sTGnss-mb^HBE|OO~c-4bx_mXR|VIJ#zELp_c*~wHc6SPhaJ#cu?%!9ff
z)MIrXH1I(2pb3Y_gN7cYc+l7bIzLs$#?;6IB5V1#tgVThRhnTdE7gOhl9eXN22j~O
ze=efagXSJ|@L;Wx(!zt59=J-|+De;SdC(@_i`E|Se3b>=PZEht?L5|rZhH?{-EVDd
z1&ig%Sn25O!RsERd(cn1)5U{s9(4DhtMu`=w6g5!DKoi;2XA=L$Ag|8^z!g28fyf2
z@<~idQ5UUtyvd<9Qu=yOqi8OkA@dZsT+v*_3=c9HHXgj|L6!&oJs9M{+a3&%#;`rA
z2Lt1LTE1Lw3D2897qgh&5pl5Kzh#oDx-8{;9`FpDX@roW9t;yQJg$F`ZRL&>aTFsk
ze=dq+Js8Kq@nF3N<2{(*!7LAEi|2_RIm!26k_VGTGez)y!A^SeR3WUoSNVL?#h4cb
zGlb0a;8-yy#W}3*Zt?;T7J4w(gAY7d@+5Jd2lGAn>Ar(w=opwZZ>6J5TiYTJ7JIOi
z>%xNt_me-Qr4Y^|MNSHFxd$seSna_Y8S1ttQg{Nt(!*=j<W+*~5eI**<Zk{w$$sBa
z{$A1s4>o%6nFj|w*yO=x5B7L)I+VP{gO5De$#qvE*H#a<am-gcKIUB9OYWJXwqNbI
zd@+-n?H=rqEb`^8ZM!_!E&iR^{Xdb;ekvmCrJubXwEL|*Cw-p>`(^eI2vWm&AD5yY
z^57^3$Aiy3IPAf%t!+mHnYAKCC9(_0J@`U=p77wL%-1PFhR~vX)~wwsk(U=8ytYlu
zN<8hs84tep;2W+ZFB*HTOYd(z_``!69_x3X?>zY4gC9IN>%otVe^w{@pBQ*mZRb4J
zQ=|3P*~!myUJ5yX7UVl#E_m>p2Uk3}>cQ_Ec~|l!F2HY{1COU%<j$}?W%%N<mqoMx
zL;GmCT)pPOb#5b1le=|J;}0&uf0D^>dT@(dnHNR8xb49m4+_0&FXXkJ(YnhWPslwF
z{`BBJgKcQKkMnXXxnl`iHg~NOHkY7V&?D&e;P06ZX8Ae(9GT*_Ah$;;MIQ1%6D7Is
zfg#)!3=2l$xx7~pV+?!nP|C8>Cqf<xJ{J5-@Ne!d!^+Zt>8S_*i1J?#o(XyGK`yV=
z<`*9P$GJOe9qy;@N%>@hJ-6s79v^3Ce-pe&l>U<E^&(%K=ND2yu%O`Yc@k#(6JGM-
z`yuwTeQZU&DCR|7FY0+w+=~)kRP@Tfe)vjBFDiI3Z=apDl=9+bFG_n+#*2>Y?B%?e
ze#u#umEKSJpooo_BpNEqd#!OJSvSX#aot(Ti^^WWiz;5!q=)utRlTU@MRhM~c(Ff4
zrN;g|m3THqoqj3(57AJ3#fw+H2&JgCq!cyDUcRK&^1xKvi#ozz6Qn~b>wEEO7rWhS
z-T66v&(Xk(c8^oWcvBmSrjg*S&FRclylCP@%!>zJq<WF&#R)G?dikHGl%`%x@?x?V
z4lkN{;q;=p7yZ2W^Pr>Ii_{igbo26$-XL!&*vgC6UbOMzQt!03UUcC2uwF0POYXB2
zm6i?nI68^*&R)FEw8e7OMGQ!~3JLDBl&6|y5POKGk6=&1UV^>7c*6_#QOAF!lfHd5
z<4sZa6>PA@k?zI#_8AACCuMk%DGkmN9O^}XF9vuqP(*fQh!?7t|4+vt@pisg#$Yer
z7C+2=$BXy&I7pbzf9fdOA>&<YyjXqI(r}1|c`@9J5#nu(7h}B`$pzTKYWXNHMvK1C
z>vkHC6Q9&iVB19hMTH6+sEJ;jt5AUk#K*bvPVr)m7i&4NJ00(PG1Uv!%QTHa<;4sy
zW_mHpi$$WJEp6r?%x9!|F;|pVHaI>IJ)1Yr3!`<CbDtyipksk37kbh2faP$p7aw}D
z#EYd~tmH&@$yg@yQmj(ua`Dslm}5n}_H$h_ZtQie@*=X=v0BXNVIAXPuj5k@N!E+F
z!HbPvZ1Q5W7h6QLo6FOStzMMvnz_r1ZC-rr#SSkDcFtg_7e^e#?OvSiV2MmSrBv2Y
zi?a)#h)BNYS;ihO_DXg81V87h5pqEAGcT@ew2B<`;_hz8AyKyc)NxqI5y7Jz#$AqM
zUL5!0vNPkKK+=xqi7diDubuMpvIrGFN&mu&FTME6i_>1*^ztK3IOE0FUi{+4uU>q+
z-SLg!kAmNN@f|l1FMbg5EL*$XL7UtyGrF})B4PSTvd(cZz3?UErRHbO;C4q;_yx(m
zB>0=)?_OLKKRF&QvtM3Zl`NLMCQew(^|<B_FK*=U78x{P)@?6boNjS)hoj-eJ>h=}
z`d=j87m_WdXwQnuHnx^02}Q5yeS&^30z!g<1~(!hn&61-4qZr}?G95&STG{~*_dd&
z%MZPH<b~q1{$2Rki@&`1*NbOfOZ?l5e}p^{d@8u>n1fl2x5(=m&$(T5YJ8~V!++e9
zH#zDbbrkYhB$r@r!8|@B_>kyBpS_N}KCYLHf<EMvEL!IGp@8swyBri5Q8|8I^6|5s
zYGEJfvxpBxeJJKbaUW9sDJ6Z@4pYL1wnwcRIX<O)c-e>2K5#iuljK7gAIkcyb+K)A
zCN<^6&w>5iIx@=pP{D_;B{Qh!8m#QY!;c-W`cTV<O&c5#tRh&|hiX1l_d(m?sNusa
zK5P5szERVM(c2ssS|yRQNV0fH@mZS#UD<r7?L!?=zUG5nNL?S=H&*Kjr%iny8pJs#
zt6`is64Jl1N>`1=Vdak<O=NabeMs}6sSgex=J_z+hh{!FeR$J{z7$JlG#BhB*usaF
zKD6@T-1n)iWq3RI(1s%>x&Fp!?L?fj$<bbNS$tF5B#NEHptBFJi@u8wy?vm4S0B3h
z_}5oQcM*H|&~KB2rFwE|x@M5~^5J*Uyb*WUM_d`3Ewgmt!&u6P4B?qR3>1>(v$j4?
zM1LO!`0y;8LHp36bXDf)EguGn+1ox0@!?$`-eJdIq|#=v=sBk>PVqe-#x+)lijqeM
zYKHqTLd20iO!8r}52HA7oJ1eS`f&6!$3zL3abm-x8y$`pK0%PRuvOobuQ0`j_eC?;
zhp9eH^I?_`v-w}G#_Dtl$QhE$;~j%)rVnfqYiFyvHqV$NRjk|Zppskn2V%LWvAV#A
zg+A=?VW-bJFf9_?<ildR6~4rW<vy(NVJRcOQYKf&G9SKetkRh4h`7>+Ra{5A9IJg;
z>qE^-nQNrryDu`ByUqutUB-GbptwP@HVO{fY!%<^!xkSt@*$;5##SF5wa%a`>bLpu
zu@BqD@`hA*{*a~LC7MG%>=yEg51-0%*dyX+KJ4{jpAY-Fz;`(gh>~lB1$Q2>@Sqs;
zct`%Z4~NCzh!0;2IqJhPAC8L+7u1(NobchK59K~`oburdv0*{Z2$4sVuY5R7gWZ-l
zrZYa!jN}_1IFH{7=Tc4n%<+Q{XMHFiLWK~1^x-Fpe*EaiIUmmZ@SYz-{rK63ix<*=
zV*m^J#fM*oP<cUip-5x(q7Rq2mi=hx$7LU`a8K|-_u;A!*L>ECTeE$*?!zC#Z*$Up
z;B&dRxXM=9nQk)t2H0=hPTid=fqH(?;0_mcxqNqh)^`x@(NACJpHlWd2S>gW<l-(T
zxgJiUqWXk;eRy?b65r$P_aWf3-m6S8=tGE&sl+#6q-u|I_imnK_+WAm^rNgFVQzyy
z<n<$;-)d*n#}_r=i4QR!9!QN3Ir~057XNJ0pzitj`3744C0(G~r#}4SLvBBw`|vMU
zD0h1wa*4>sGrbVY98MdSef&5#MK&*w-|Aq3AAE@}NusoY?Ih1HSta}^;736}3i<Jp
zA4UBr=0{=4Dk8?Tq<v12;^K!xL?vtCke2kLlpinqQCf`YpO(#c=VRl^%lVPyM;&JQ
zQQnUVVpGeHihfk`qlO<f>Cg}OQ9WK)6{)(a-}+_*YvF)Y6U~ZgPS!}zuZZ}$ul%b*
zXpp0)ak4nE`BB?%O$WbROeIrYHd4&$`B7guoj34<-f{+{ksm33boS$QKlsTE&TnHs
z6hE5ytxrceX(^sl{YdkpDYN?99inL_$kC=5OSSN$r3_I=KU(?G+7Bw*`O(IYwtg!h
z>6{ah`>))~tL9^o_I~UyRIY<Kp@tn{ZYQafHeLMa>c?Qo?dC^!Kl=HRA^v*^zTrnt
zKYIDmTSOLN@gr|!d@><lA3xrdf_)_`oo4;*+q>tZ0Y5s!R%J@=TYhBu(cg~&ev~xJ
z50t9e47yUK2zgaS9mJvb;~mL;@z|<`jpwJem^(!Lyz9q*k8@KT=11<EDF^)c%#Y!I
zjPPTmAEW%(<;QM6Mss-mnCr&}evI|=3n`c?#aVE?9~1qU<i`Zje0?s7iTcTYOo`j<
z%(RB+eR}I-Wli&Ax@67pV|LtTrXRE7oUaj{Bb*<^q5V9+b*0R-&X4(iEbwC?!_1Fm
zek}K6u^%7$vBZxDMQpZToitM$B@vhUajBBC{1N+meKJ@0vC@w<Trx#%9XHum30dvO
zvFVOqr#tE&u~R>}V&+=E^_vdKdOtQW2Kps!^kWNa_hXYEKm47#*^l?DW-#%cE&PRj
ztKWLDE&tTK&5w`$XfPpNKkL}ejd5$r4nJ;evF{WtyWdX!i65W((J0BbpQ|Rxwuh7A
z$KP%8QFF_a`ra62pC3euOv4(MKj_CHu1df4V8-Wu92Rm)@QC0^KaL8a!7)FM3qK)P
z<ernt8-;TbzYxurf?o+zdD@RNjFU7Qc~eFGM)cnbekb_7;17a)z=LK#ar5`%N&r^_
zIL|)%@k#)%2Jnj?zxr{{k3apmz<qv$a>I|Ce*EUg?|v8?l#6~`^W!>)qMYrL;AQ#|
zLd{jq!UiSLNG1P+TguUV{AV{c{44z}u^GBSx$U?91y6FvkGo>eTvo*Ys^9k`n^W({
zL(ZL%>|%rc@Gz=NT5oss`r%_6{4o9S`_WBNLw;y}1i19N+nItw1}o~#b?MU;wNHmM
z-H(j}(wMb;TduGlF~9X+p@<(*ZZdzC4~<cH*Y5KUX+QL_{;|$i5kB%GZvgoMc<jet
zoKQcWaEJHfg&$A3UT!5n;}*@Yx4V-6@#9~vBbOC9tDfZMvo8F9+<$)L3LqhX!~kAC
zo{~F&Lm!pR6F}Cx&Yz;meV^vB@2EIqntl9I2cPeyCVv100w_h}fc4*^f&uXFMK1|2
zB)C>l_b6)N0Ez@qG=O3OtEa^U-&CxAF_j3Qq-at<OQ%>mfHDD82%usBWkp|Juv`F1
z0eq{dwDEnEl2i70{sfXrVo)uB$^jsNTZ&pmG_#MSR}El%W#_E5=~R+b51>W>VR2G3
zfbx}{R*l<IY6Va`fI0z?CkJ2?LcZlup4S4X8^G!S)&#5ptQWwf044`eKY#`S*aK)7
zz~}(R1kfmeE6r{GefGBkNC}{E07?K&0_Ye(rvOp|sCUrbDu7phuaFi%(*PU+Y%68s
z@3};#W&t=w(_FBHU`xTW2Q8b{0sM8)-X?%i&r?a-ir7xDeE=PVP(Pxly>kGs2k>S9
zeWgiV0_Z8Es~{WMO-T0udI(uK$w_4|;k^al5Tvq?kkn&#^7H^QMC>QXr<JJ8j9X>}
z&_943pQq4xfG7tFs_eTI9~8jb0lX8y-~iqY;5`n-E<3Y0Vneu)PddNl!(-)~Ljxd=
z3}BcL8VnC$gmCIN>`x(%5^?E4d+lv?x1^RG8^Acu;I_JJQ_GGIU_t;pTc%IsLTI8=
zNxrgWI^%pw!1{q>Y5?yCtbL64mbv9l3t)NxGXj_yz=r|w-vq}K^YTTqvjX5-eP(m^
z$18IJaE-Fh6`s^Y{UCsO!siFDAYeTewot^y0W1<yr-{l^OwF38OT;JLE)}v&aJk?L
z!Igrm0x)W4&}?l0>!=CfLICRn)-zgL83O@q2w-CXTy&cP*b+eU!{p5Y_;06BLuC3$
z#A@>@eH_5{0FDN5jMEW7_a^G@06r12Q*c)RQ@&22e%RC0PXjp2^*c9X4+s2d>R!Qp
zf)w`)IS{~SLJkTZisybFz)*2QS4RR+f3|#9oM}HEz{vnkaS6|~pAh_VhMoM208WcY
z{$&7P3IF+K3dJ)4d>z0yT;Lqrw*Aga)^~zu1;6Jw3rXmlMti0oMf^$dTmX4zTT1>h
z;b$HN0=RL>L4NHw$HiW0jTYK}3*h$vZcepxxaQ_gxX3|%kbFtT^Kt;etJW}H3*b6?
z8pOdM{-B2d_65QJ%H8Ca!te-URuH!XxD!CHAbJOJH-LKq6c3_A5Pt@6KY)J&cosl5
zqa}bS*JH9R?@7Bm03WA@Ej(%W2zmu4*=+$<9e~LlDS%J_dL5g=?i@^EL5*SnB~IDT
zOmyx&;;itRjmjThvt4ajAtIh@*0WtX?2HBQAb^JfJPP3N0G>$J;{cW)cAjitOQ>)A
zi@VnB@@c*7PXow*)JZ4*1n~0?JIPL)t@NW*lIPsUgD4oZ8vG)F|HKJ-F45!`%o9X{
z5b6_y$SXXbV17ZqQ;1oGgtNLLLA(^ihee&a52h3r<-pJFMT2NK$zCjorpeBMUpfm-
zw3iH`R1j&@1o3hZrGuy*L=CYo6GVj|Dhe+vSWYl0i1I<ae$whfDZWrhl;l-~R2GC_
zl_1`DoW!hZL3FQe>-d`Ok2<!RLA(+~ogiKd;?*E(1yNg!4~<Sw7GewHjLp{iK}P!{
zPIju-<D?O%>~({v$HoWID2Rneo%Mrg5QII5CF9eNRdLQ~qIN&!r2a@f8>cKKh|xuz
zsSJ!$_QpXdK{R3UIyS9=%~#tpVB^_$M-a_|Xdgs}Ae>Tls~}nj(L9J2B2HVHkBx5`
z1b=5IS^b)=O%QD*i^KS!uC49oDeah>m9E#fbqu0Y5L9*(gU%eHAi4zcO<mit+Sb&V
zxy$i?*<FKR;8E-@W<A89klofZ2s$BoBZxjhjA9ppcr%E;LA))N9J=%%1_a@*?(D|}
zQpc7dm?@YgNM-*Zy6tt63=~Tmt3uuq93;qv@Q(N#9K?_y-WAR!4HxoW5JQCwlZj|4
ztsN1!87YK=IY!9DxPEL9<AjfoYbFFy=1?WNWttSk<RGR5@qRpadJt2EPZQj`#~NX#
z8A0S(Tb5*Y5Oac9%ot{y`R30cekzbKFUVJmV^b5APa40SW}6?x0>*<FEDGYSrna23
zQ!~-lEHT%TAePcNh|NJP3u1W?tAki0#w!F@25~MsfzFv$1^;&fyf%n+L2M9%BTdV$
z4_Xf}4`@`DHgvu*h)acY-A=UCPqS?a;-esT2C+-3-WtTmL2Q?T+k)UT&uoVE*t2LJ
zOiE~2Ep<PS1wnig#2zWKtv~{8J`I9+riscTdl{37x#p)?k4*2Ef~@xdC&F*_?obe)
zbE3Is>n9!#;z$rba#(^m8pJUMQV`z;aXg3<L7WQWi=g%L5PtaPWRQ=QI`|z8zUtx2
zp!IPpzN_I3XPIw-5Ih|Ov-n-MuSMkhMwrF)UC??Bi1q#ly3MpR{Sd@i;iu~)Q9KvK
z`5-O?@tYL<ImkEYCjBb>7p}WVc~(R}<^M_iJ&1oM=DR9c7deJO>lHVbgVt*$uCNP(
ztS0eG+5ECL?XPjB_!(HiV#CYd2;ycCx48KS5eOm}#2tpgt>k;$_IVTtBJ-T%ViR@o
z8OMFmKWa3<A4IlrR}kT7id)blNYNXFk0TjN@itK@(!S2<vLQAph(aOjUB`M52G_E9
zm^&xKWFTE}Mp-<FND%Y1RKB5Z?Y5+k8zxd8qvf4sl7}3MD$YkiJZ4A-@i%8-k3BJj
zCtMnPQ~nF$<g2!)90vw%0o%Vp6g%&j@Rj2kXS1=B2G4_dA(nhPjv|e7g^)XhJRz&#
zvnDDrLHPPtY<WY-7efA!_2^*15Ka`fo*OJcQL(+8s{S${otl?IC>+AkH}e$<p==1X
z`zD^tolrDn{VGvRu()6e!IFZd1YZ^`Em%fy#9L*{g{%k2lS23`l3F)aZJDZ8453m8
zp%AnXDu;j&-VIroT~!2|hTsUHs_<$dR1cv>2sJ~f6T)jDyuv1#$$a|A7Q(9`)CyUT
zC-H^k$szDv_k3ME-v>@j?U3~nbrQO*8$zQHQbMQ~0$<}_KZFJxA8|qhdk7813EzQF
zk*RSAX;O<K*hDZ@@T9|bu7~x$@$tQE%|dX7&^?46Av6!6MF_1zXdOaJX*uhy`5-s3
zN2=N;gtj5P9zqwXs9gx1g|rW$L&$m+e8<rLUaZ|o#0|av_fB{|Va0c<FDsR+tJrsA
z7kb-rzBte`gkB*Gmb%#H-XXjhLSHd^L$FT>e|%Y)S?MA43qcKGmcy12vfifNKV&_%
z#pk;+#WG7OW!DCTtWOmT6rTx=Qd#ybF&GrW>E70;zAfTAA?$yco8l0$d{oLB=l4Pw
z8p5y;hKI11a}mOb5JrZuEQI9}38O-oD`YgQ3t?;s<3gCi*a%^K2ouPWj{(Me{u9M)
zatM<`So1uQ$}5R^zieEdx0I)bFimo2N!IibW{NmN@b|-xZX2y1$X?Htch&R6*&)mc
zSwAX$yxBqgKy2oPFh7K6jnfu{usDPdg)bCb#2`7~VAhfl-bz)M3U<wtmz=*W5czz|
ziV!x0u#uhO`%y#I%OX~Vu$qktS+A~LOZ}ko>o^WW%JL%R&>Y8lMshFv_cI)uLfFh<
zmjT=o!bc%&3*qAsuB^4bzOglAU5xNnz~E{2?IG+4S<lbx66Cvicg6{oOuO06hKVE`
z_D@6DBR<LNl*+X~gaaXb8^U*7ZXq1xst@5*2!}$}W&Tk?lFx-47CaKd*ZC9p!jNM^
z+<}ziqCXL`-Xe0{O#MQ{(}G`e*31-o_$mZukuaT+tgi*X$uZ8K@I8A(57NQ2y!p@0
zR<+#<;inMJajZhP7{d7weh%RRyHmybdd@E){2H?MXQpHS<#xzdIDcbY@!RhISYP71
z6vAcJ%fP1F5Uz%BP3-44v5q_DXzN3${CMtH?<Cy_p?AStH{;%(<V)bERfcCL+z#Q6
zDDTfNoAzPZy9`BF@`&~6e}=5riQEq%I|Nq<?hyPT1VZr0$a`7it>ioh%kzGqFNFJf
zE0iBtm+fJtyi^Q^@K*`z-N<)al+{BpLb$Etjt(<~FvDBJR1Fc%Q3y>nI5g`8wy_Xi
zgz#So4_L26&Z7{X3Zb9JbSV7qxaNtF>(P4u2>Dm=nc#E53NJNe!CV@0Ye?4k^-AQ?
zkf0$+LwOB}#PLcI4MjEN)sRm^ehmdQ6w)wef>L#rGC5VHK|u{Qs%90NtGuM)?plSZ
zu!d3tGDwPPD6XNb*q6{ylDtetY37QCPF|LNElpL)Y0um;VndOsoH(RS1)52bYT~()
za0ss~_?g&O5q(v`k5kp^Y?y{KscKEp)Y9;ZhAXM+t0L0BH&s2-J%gmShB_LWXh_xg
z&-awq1nq)#HPjPQU&EtRwSi#q2?}{b4UIGy<CPQ*iV*U~LYTX8bizw%YL!V!8ta{)
z&@Fl9xP)dJoErLR$k5PSLkkVvG<4U{QbQ{ZuWRsrptRP|MnfkJZ%tHsOjO!xm^Mr4
zpaE%WJHhsnMX{q~F}M9BrL!m(PgGc{i)QT%4bs%E8rr6*Bt2xP-_$VsPiIdJy)^XJ
zP;iQJV3IO;szUOHhCZC!V<{g@R<88V=$oeY)j&)aq*<nhEDi5zeDoCk#gbLLB^3?O
zFi?mpSoUciW)0HtwutX&7_4Ck2YIsc<>-W_V-lE4hwo}2j!aXBX&A0yoQCnDIn*U>
zgocqCMsb9vC}T8?)i7E(MYfPBhp?%1H9;CPN$Q%Y;b6HW8cY@?$rRDBgVQuj*HBwW
z9UU_?%+&CuhOact;+SaIq+zqhM^Z6Y!&=R{3-p1;Q!jj|VTp!MMq6#3uVDeBak8>d
z3>LA-6srL=UQCB+)?J`AY3fo9%QdXfK)y_nHY+vUo}#SMuv!QmQe30KeBZip)Ih{_
z;&#2@1`Qj9OqiHJ<9U;mEgC+ON&HO1Rt?)U>}JEHn;&b~p<$<n?IH%wS|h;0*%hA-
za*pAr8uo~0zlOamo~F|5w={L1lsYZq0WqjAb97L{Ar0S*S3cKpLc>W7hh>6}XgDh4
za7@E-(Qr&ok4x~Sshm)jJ*D9b@%co2c9K~;&Bdr8%xz7>*L17lR}B|rcD~hcR>O}P
zzSHnMcb;|14~+jQ%9Iu9hgYXl{E0I)I^mp#^W2V_svJ*N^s@$5`inH6W>dB1m;@?+
z)9|~7KQ-Lfa8bi04L3C0)Nq+=U%Hk!CgG}vYZ_9Ts@Fxcx<Tee2_(AxLqlf&3=YdJ
zP80VZ2Hy1y7Gc&M4cVg;*wd~}RVwds=eg=6;jO}K4Q>q{4KBufQ+4PxW!{(suLhrn
zkOobIUqgVoqwGO0@G%J_ELe7`LNcYPsxx4ks-_qi!s&!rtaQvgC8{B&p_q>1Iv!|v
zs3Dh*+&Ug<c&y=>hUXgo((t#2ryBm@(w?cjzD#+dq1`McX|^(amXbUv<6m*UTijBl
z^A{Ta<7P5Pc~CBiyLZXT`B+^Z-D+fh9R+kG=t$JT22+z)M?M{2NpXq~xnqcBAssL2
zxFq_*qFFpuDXOE04iZ}KecwXz5;{uisHmfoj#4^a)=^%EyQx}QM;R%|d!c28u+8O!
zu+2Nz1@f87cPo?%EW0nAog!A&kvvtYspAzL&{0K4RUOr&R1F=wrdgFTRoC&Cw2fo_
z%T(o6F-X?2dYV#8cxRalPL@r?@0KdB>8Pt?xsDY&>glMjW3Y}PIvVJ(>*%VZn~sJ$
z8tG`IqqU9{9gTH3bTreU=xCzj+}MPs;w_bZ9IvEtFdf!x!eJdQkBm(qI_X4|&2_YK
zsN^lA$eRwerI5m}WxTUOX``di9Hpa<wmRDBXs;vJQl*0qW({|!m1Zg=#V%)b($QH*
zj~UAAI=bjse>|Ohx)_jmXO@nEI#eA!b@bBFPe+E1-cp2?Zwh%s$KKgWANJj$e(X^D
z>PV-4mE~&KY~`3k&D4=4HvM({>QJd~^GA7NmGKD!*vFX)`CH=ZZD}XPK|1a(vGi>A
zJE9ymUU^r?dphRmn5$!`j$t|`>X@YC%>~ME9V2y&(lJ6rYGy4^M(Y@(W6c6(ypFLt
z7|-K$oLQhS67D-x68pG>2|Ak3P<W2ST$0H;rs|lcV~Xfwvy}IBygO4Nna<5$$82#p
zQ*vkNs4*~urT!X{Ny1=zbT(<z*n|(HFP8!-i*?M?F<-|59Se2bo2A4Y>LL!pOl4x3
z3@$eo*)_lHhdP$%Sjt9DNEpXi9+$980-#VcYu;DtSjExPv5(=$+I4K=a@bOrS!+3E
zV#&JJ>G*k-@_e4MK{Oi$Y4b`mb+e8wIzG~|Rg}ARq%~8w>G)X3b{$;8otvoxCMN7)
z{EOIsuCi0dpk^w`lxAwh1<EHnK9#b6j92zZpk7_6(D{BH2Xvg(@uQB<bR5)iQpYJB
zhje@{_Q!P`=G2T$ILgHyNZEVdd4vmG`gKgl<8cXh*D2JW(DBoRgp%VD$iI++Uvkr6
z^sZL8&z$D0>G(#+w>rMovALOA@@MD2A1G@-u*!a?<9i)H=(ycXt-M+}+)Vvm{1=(0
z>>scE#MbJ#$l7(V@#i`CjEZ>*i~p=cYo`9f=yIwrJJkz1ev?Kr_jj(cc?uJ=F6+3W
z;|3crU%9H|nvTF6<quBQeC0Z)b&fR-oDQ2)B~M<W+!V`Of-K^2s&_f{I!+rnW8hC6
z_jL>~Fwj6Y7c5UI47_H*t;54LYv3gVUL8Je)CTex@UuGZMLPcGj;bT1BgV~~E!Uyz
zcsed2qQl_HKX=Y~%J(aku#8?$r^@xqKC;VEu6n21c$va}J)f&Q<o+++<g~7xnDAKa
z*N?YGlIhskgeP>%fLx{gqvM&5=Q{osaVmX|SGKKEUT_OtqU190pAL#l69!~3cmI4P
z!9b#cf(Gg>P`nco+AL7=8pvl@r~Ua26cGL15t+<A{)?0NXhH&)YGDIK3{)~u*+5YP
z#SClBzHFelff5Ev8o0W^I$0v#TdfdFiH3`pytIKb1}1JyFKeK@6eKTaAW4+;Ly=g)
zKt;)2<5VfaKotYk3{*GJX1!9Cxm)T!ESFSovDL5|25K6xu_berR}AcPs;?TTC4_B0
z<5ZIkToOOz^wz0oW^DsYhGrIDsMKX24YW1T&Om(w4Gc6fkZQngV9~Mk6zUf$4GlCB
z@lxpwiqx~B#s(Cr@vCDg6w?fxUZ}J%(9%FthKf^l7-%NMY2f9u8O;qmcB-^tqS(s7
zvxQ0<gKtJnX)Q=neW5}n#r6g|80cuAlVnjjXpxoG*}&@tdKu_#po@XoYnASTT@CAG
zm8lzRlv9@;26`IE+gzm$Q@Q5q8wUEwkY*Tolf7=PrW@9^Lto((cdk)(u2cH4ie(nb
z6yq!d3r1uz^%s#uHSm^!Nd_hx7-ZmWPMm@7)ueX}3^p)UriQaKghSC>&Dr<fHSk_s
zKUByt!Qp}<42%>qN^rCw3y$HU8<jvZ&cJwS>I6ZaLNl@DW6LFREl)A<zJXl^b{m*#
zU>axEz)}O#C5%5XFwejY;WG`)5;EJs93gKsw=PKM3V&%xCi#3eW@5qu0}JVPbb@uw
z_+I8B1B(reXs*6@GM$<k&D9U32noey92tZE@56EfD-2xuKv`*Em4Vd;PL#>GHcw%A
ztZc46Uultb2G$$cYG51Vf4s86z(xa`xNttmpvVn;vjo*g2DTX3(cC(q5LwVYU-{U;
zb_3QCXT0TV2jgT>g`Hym*L>xS7=L2mQv-($9AN|2D0>X-H}LyHg?ukpgeWgIR~f?x
z416Y82MruD@Hs<$jWS}5lHFXT{ln&J)kW4SJ}T33(!eppx;RQ`p&mCtJYiVZbR?$?
zd|}{AM#V&h7r$Q_DA&TeJ|eHvLjBsnHwK2A7-8aD1K%0=+rSeB45!k-U4u7~tROsV
z;8z0|4E$)|C()c^M@nb>V&J@ipShI8CoQ|RP^Yg~N)65Adil-3MJ{b=$?t*;e%f3%
zaNWQkoD1$e;_dp>vb?&v#>R|S2DY%ShHe<RY2X&eYIQoV8L7E#SQo{2#1ED9!wZ~0
z4cs>nFc6g7Z0`Kx&}AUwa>h5K6W(v3dPL(j;FD#@Hc;tj{79Qal4}|W8_*2sj0$O_
zA$neeoSCFV4Bn>3Lj#Wt#0)&($V~iSkn`d(=d$s!VO^^(6Q6$xpL4xDHBSxv!(Gcn
zs)>KOt1zxiR50<}zzZIpOcXY)6Z`+T)tks`BA3aV+jwVEMjjJ~Tc|uS-rhn@5Syy6
zW#luhK`2NxkzbU&U@2fC=Tc&*oJF%#(sZSWiJ~SS3q&as#Z1heRH1}voii{vi<?$#
zGf<hH%~4)9@nZ|Mw23k%Znsd)7HU}&<xK1No@9b&1ut5t1D9Ec_);y^1M`%MCMucy
zIs$5&sB8izs+*``qKb*CCaQ_^8ZA{i=g9^uTDVMMshTEUF;Po$d1ODfN_o`;4|6=;
zSqFNK&wM4NrFGP+W8yUv4NTZg)HPAhM1AQguMRr4RQt8G&f&S25}6AAnAFfjBNHhm
z-fO8gHbD(9D{`&}6)8BgrJ82)o3Q9>BHe_;L^BgTSjBS1X`;D__9i-*)_G|Q6Rl0O
zG0~Fx8A>bD3P?^O&oFyUQ`(wnXJU^uU{y<%7d|J)B<yFaOmsH!x`|FEzHF)1nx=fX
zT<Kz>s|l9sF1Syorkk{f?PLp?)stB!dYgE|1TRA0lw7*)BjiHdEa&>PpNak^@9<mE
zl3^lK2zi!}V?#0rn(($%-!U=Rglgg~#!@S_bSrg`7`$!bid+K{hp@98uDFNVt<=`z
zmF0DlYX4DwC<o_#WtbqHk2EpL#4QHfmb#-&j4^S<#8DGtP2NeyhbESo7;j>Ni8&_b
znwV%}5~tO~G!v6e6qt}O#l-s@ZMpQwo}n~rr4o6qG@Z&;>P!=}7@wCjW(dCBN?pTq
z_!-uv%4~XWWnJCmtfLQ1%ri0H!~zqGOf2T=n5*!ldZ9$rlCcTvXIuMWtJw<EwQ&hc
zO)N9<i3x6W%T25>vBktkCRUnQWn#UF4RqK_UCjtLvCc%lS;`vPv{FfUdBTet9@<#@
zMiZMj@3WN643d?~(N-!0<9sWX(Zbt(TTN^;vCG766CZOG49wVWVuy*lt<<&q(syzk
z#1)H>e7M5Gzt1KSznZOl%2+b7*R-x*J~MI9#6A=IP4E&gCbb+e!M^aKuhxWwLyVBt
z>R}UkTC1OPt*x{=dwr==r?q;_#Bmcpm^f?Vgo%@!`iaUnrgca3l!?<O&Y1Xukx6f@
zRVu%dERx=>)g_}7X#6#2ZKA?EmONqm*0hdCOy8OKp0U(g?Ymwf{%GPS6BoIMm^f$R
zylI^pT`=)8C%U!zD;qGi9?35v@-%EoYnAw$n9=fgAurY_mxWw4aZSh-?j8#j-Zj0>
z4Todc+M4mnGn5-9ZkmWJw>U#0HbZgFRBlTgG8DI8PPu2|PYzvTl?#bg?wiPF@c#?n
zzi^pwn@D(s#7FQ@X(BC#rZM<9-ES*x!e|?YUwFVo&_qbMW<qCRkE}!+!-Q$#<uFQz
z`ECJ3xL2EaVIs;=s#y1-iAN@44Dw+q(?+B`;Fz~oFSk}7n<zd!<*A96+NghV8|<F-
zS8Mfe6T~NCL-G#~0VZhtj7u+X8p#{c%$jY~|F~4ccqxp+VdM@YPZ$NlC>TaU7>QvV
z%Ab}$jJ#p1AbCC^^hSO{s&3iF;%~Q63x$z!HH*!t)i13`7)8TSGO|jBQ7nw&VU!44
zZKmbaHtN>PS#RZ4M-NY-hBl?bD1X%IU70Y-hLIeGEsSzuB!y8mjB3mcqe9p+VDXA!
zR0;!O+#a4%IgD!~QjU8wSGG}aT+Sj^3FATMflRmZsnx@%5ymTFyeeij1@%RltaP#`
z&yguvwZb@c#1a#(XWjm!f9){pgwZgJM$+=v!l)ZYJ+Wcc^}}cohCPf`SF+Ar&gwKQ
zWoS{AdUoVk8#N`2A9`f93Zr!xjagj8CSkOcW^+tZ!${*e3{PQdD#Q^+Ga*jF=7KE*
zX>+BGs<pBFvw1`&Hnm+C?Zdbk#;vdwP94G+A*5p%orH7_qn8lozAjaF5$qa9w=lYg
z(L+RfTQ<02&p7WfxMJ@x-Uy>l7;lC#Ak6=AX3}O=-YgDy-!NafX3c&-&Tkl*5)zEP
ztgsb(B(&)-O4<wzLzRhsD~!Qm3<+b9h;IwNBgh`@yPoxK7_}F)7$*3hAjP3FM<m1J
z8g+2RkztGqV{{l}!dM^1hA_s4F^=5~W4?4@d>B*0ct4B@VN9eZjK$Zo^0!qdOYUb|
zt-dfmr-m^tjM-t#34;+hJ&c)Q%nD<Mm~l>N7VVS9+Sz@^)!Z;X2;&`39_rb(Ds8Pq
zz95W+VJrz_X&8&7?BXy!3?nDB*gKAiqpdYE%feV5#u}Ls>Q~TPTXj_!D`mJiZr$6e
ztJ$8mD$|y>>an)!S{4~uX<ZnPbEk0<H-@n(j5A?;9meJ`wuEt7X6GYzA&kS~d0TwO
zFSJ!Z4r6;5JHps0$^(MC!q^kH*&W6wasH`H2Ww&4E6RO>`=xnQeipYpNR9B%<C-dc
z(vHOW(J+p&RU)1U<BPcdB-c)yvr}~VWf)(HhE-GawN*>BQ@;`ZBR7g`S>JNSwNs62
zS>J{6eHbK6KL|N1*sY!VQyAx@$oVjS3FFr=eio5a!&cGl1%_)FSHk#B^uG&U6ucxz
zo16x;d6r3jl~E`9>w<p>-Vo%R(tznUx1b0rMsO#LyJ6f5<4<mq5fqA8`_g@GJ7S+5
zhARxWa3c&e43BWHpij^rMj(u!a7{2InA0j<cuw=eVMM}+#dE9owZ<?iB7-MKd?*q4
zhyfGEUt#>sJzSdfMD+iJ@vo4l+`EQUWK)@*iROjibHVr8ss9Nn@={hVDPClxwe94I
zAR&T8(d3OFpO6P5tgQUPNeT$zp3h^-OA%{YOGZ$bq@7wsL~4o(DHcI-AteOIE@;85
zQW3l?Vrjv05tI?atg;bniy%o7O?kns?Nn+iMNm0{D-m3c01<wD6{!)VML?fbBd8uh
zjR>lV$hxSk8Nn+N)Qg~g1g}O=D}vV|s2c%ulUa+{(5+3XczivJMd}F8A^(RBBCto$
zD1wx@^M(=7l8H8rrNJDNCK2mkr$q4nl`N8+J)~&_jtII%&^>}?5jZ1g8$r7Wnn!TS
zo7pOY))BObpk)L{+gXRm;<8P(5uaz<so{1i53lP!%4{D&hX^`H@Os2Les$ykuI=9`
zg8c2(D($TeiX!7St-Z>6yF}16K2tnk^@yNn1d}6}5<#yBdPguZf<EolH;54ois0=C
z-jt4K335#O3P~62Czv6a8Ns4YGudm-QU3@Ah;pEyD#)^L38C3L5eybSI)WiWh6}zc
zNXz#kd{n~<9;RUt+{~LrG9s=S8Nn#wIqQO1V?-Pq!MM21_y{Hl=a|r7QUs&hTW1Bt
z_c<LAtc_q@1k)ncIm7e_X0XlIvKF;hXGSn9f)6A3ro9zfv&G5$2<F5+&lU1Pjwr}b
zUl7k-C}fe~;t2MMlO+)>jbNE5SH&%tN3bH!S4L3vR)1E<v|5yF1lfi45o};%BKS6f
zjS*~$;6Q}WzhQF(TO!yU_wZ2!+v9wzkZlos9M|M*TstDz8Q1J$*!Q!xN2X6A_%wn&
zlC@WGKU*HRWW>@YM?A=AjNn)Vha~rN!NYOOBSLt#N&Djwd=bHy5uAwUo)mIQ@Qvr0
zUkN!A&prMBwf1XK<{nb<y9mCI;6mKyhX~FKKO5KlDCDOI&c!vH?w^JK64(4HB&Yqq
zMeuuEe~}AK_~p2UCxO=@xXz^)MVl!8h~P#9kqDxUzzA+d;ETW?!EJ8)5!{a;JA%6r
z+>?Fd&-e~dBEEaniNF<sI|5Gx-gxf+Z5_<bNr4E05ty<nLlI~Z=n)w4T-xV2B<7@W
ze0!l7i{L>7d85b|wKklG5j=|EvD8K9Id$>G<F5$*j^IfIPb2szg4|JSW&IoP^@|9e
z34bn_b3pk|crLM|an3@^6GcK?lNkM9bmfntKorSQ*rF&HMWHAPM^PkdwUz~$UXr$P
zqb?dnu_zEll_-kG{gkI=6eUG06-8MgFGo>YNSP@5E%@KM@HMbVIngHxatEWPLKGE6
ztRz@j@Vab$RfW^0W)#)pyt<GYf|G_+ctyyo@!VR`|3!Z7DC$JfENX2&uSu>wiiT0t
z6<$xUzF-4E){?W_8b#40u1Sfav2aCj*3tisNoo{nqG=kpbO_;zqBE{(E~JHE%P3mK
z^{l0B6z!t;EsEcxXdgv~D3(XDB8rYtbmE9bkr74bC|-}EOB7vYE*K0svBY+Ei{cIO
z);;dCM-)BdyjK*xg?mr@Z{+(#@uq0{3Z@J0k-lU`krl<nC?-YGKZ*fSyc@-PQ4AED
zw*^%}*87%_K^&8Qi4>XMiDIxQhX`^ys2m!_FcHT_F<c0hqoWuhd}LfRO32fPuQ7Lw
z@SL;Cal*$7PT(ZU!kHY!lqlwilJ@TlnGwa*xMo@u(}m|u;>@^yRur>^=WHNzqxgVg
z6!S&7L~w!NBEf}%IqPMy@DBy`h1OwcX%x#u%vohCqgWNiu_%s5u{w%1QG6Q39x+%O
z#pWosM6pi9^@8-ULCD4^HVHB1_(J_hQS6A@Y>i@DoPR82yI{`g(@x>L1a}L5BAB;>
zwVL)uQJ$N>XexG4_eXI+_-9cZ7DAhYQ5+Kfd0g{kSjrLMM+I}n>O>SLqxdq4uj0GG
zDIs4(QS?DN)3rtYPe*Y^ikuhxI*RXwu$FJ4_*VFLf}BSxe-M5)iXVmi6va6q%*q*a
z4(!jO`9<*8c<u!uJf2>R;u4z?L&+E}M{y;JTruR1;c67uqWCk4`%zry<}Z<RQ%c<s
z%((<(Gj54^TafkM5pp+*dvVQo$1}5|a7CfVHEtpPC_HhEHws^z^9m~v=fNmKajr#C
zUna$f!i@4y1c*fOIEufbh{kOm3W*6m5Nsz!9tr1R@$V>}MDaqzr&0V9#lKNJ6ESDK
z<b>k$DA){kCnpR@{u7&dGVFO`C=j!969f|lEn^}11oOx6f9GQbV<;rbmtrU^q(}@!
zh2+d*G2!%3JZ9YnAt@EZ%Q2LTAt{E^G3zplsf-YYO4%5Cc2GxlP`R;}kD)>guf<R|
zhKg}NwPL6gLuC;mSWU1>3{{1&AZw`}LyZ_}iiYAVLUOj{S7VqfLq~mb47RvU?HK9^
z|Gy&|qlmqz7vuMs&_J^6F*J_bH;kc?@RYdb;T7wQNQt3IT$3tfR|nM*L$esVJV4h6
zaK_L)h66Et7DI~|TE_4Rhct#(F|>|hTMQq^&?bhqG0co%Rt)W8XdlC%7~YPdLkt~b
z=o7=6F?5RYJ5y+|wttTpUXS7P4r*5!#ygk#cZuQG4k}5v7`n$WV?qBF!>!9VlAba2
zilH}WVQv36c#E=w%8Nec($AJcS-i^Y8$)IcSuv2O3-*g4BZhn()t32GV*eNh#PC)O
zv>zDbOL6=208J+(s)(%UkNhfg--%&x4C7)LAH$Fs-i={+3?pLLmrs39iVqde+J{NY
zD|b|RKW(IRYIF=^VxZem#Fw&2SUa0kc2obcF%YSl5W_?<p334eOpbvqc|XQaP9ynQ
zCVRvpG$Ubqh||P?Hq&EZr8A^#%Z}>o80N&Vk&Wr7&W+)Nm~|buf^!$c{1}#sxIl1G
z42y*<6wK<Ve#q)Ns!K#<DefMHuUc1s%S5w0u3yzrT^YkF5m(2sHimV=*Dy*KT6ZIv
z*2l0xlys7#sZus;Qw*CqR&hV>S^YnX^Q}V8cT~5>up@?DG3?x4m+5{-b*Jz!$@aRt
zh3D;L@jb%##Vz-88Fo@z?#N`;ey#<vIT*tsuFVH1^MHR`!r>Uq7{W0e;UEvGa4Lo`
zVmKPZu^5iaICCUV#&ANyj7xyyOwIEX{lARis~B#_a3_Y-F`S9v7lvgFU&ruG3_rwh
zmT~?p^IPs1iRyRMobG>iYbN>kq9^%L$axM?qWTjTODFZ5Ao8VEJfHb9$1`tMW+#>6
zg&2N|;d%^zNRi*U=f`kG_{A7531MCIK)fpAH9>lyCN0s@v-TS?++@UdQkQj7*??QZ
zcXv|n#&9nNPYm7|Slype^?i0>YbHHp$KZ;=9d}5B(^8Qy27e5}7(y`wq#(0c5s`X!
zfkcZzmx4wNY!Wq>rEDaIC?o%YwHwE{3}Z-qfV>azFos7l{1-#62Y4LAUopIspgxZw
z?@|06!#^?n8^e<rp2nbcQh)qDlWBK?`YeVVo}SOz9&?m0VkmgjI`rgzVC9nMc>o&I
zVS;FwMSZ>p$p8PS`VMF*is$Q@-31g8Fd!-qZ;1#h3JMZ@f&>F9Ij6S|hMYk~%mGEf
zEGi;OP)sPI2nu4vh@u!s0%kEMba!WV!tTs>r}nr1<9E)Sdu~@(S65e8_k?|KCWB?Q
ztb;Q+D1*_{;_ZSH%_`1y?F<gdU{o!uPPqv=tLm!fAJ((#Wl%qZ!!kHLgSIuSBQo)x
zPeMFWImy92tcDpJox$lDoRPsX+V+GDnr3ip28}X!WlL3sA`}}d9+yEy4~tcz#p5%0
zJ!Lgfq>%i?44P$dS_UmMXr94I8JwEIx4Y6OPiuQ}250uLPElm>!U+{EG9cma3&g{M
zDq3izW-sbtZP}H6e@D8tdew;=cm{3Qki*HKT?S`oaQv`z`wTi{aF&jU#TK7dV?Bsg
z537<cRm9JkJF4a#<KriCoipf?!G&tGE3t=lUIyo9u(XHOErWBFkTV}zt;YqKc#Ux4
zm~7oM82UjMl8Z8N{$H%vL$RkKAG}cBCxgBj7+IKE^vj?>XE1~184So^U<R`?xIBYF
z84S)~Oa@~!7(%n0NA+h|2E#L`)_^b?Bb1~ybX6JL^=>tV>w8$GNRHH6$}QS_rfRez
z70AbBFg}Bs8BE!go{+)B45nqUwMTp&nUulg3`kb&OjGiG4{M56O;sT!r`5EkXD}m!
z?YG6-_&YVymz1;R(hM#u^Fj}6HhBgMGPpH^D>Jw%gLPBd9@*2nI)iI6xG961Gq^T`
z=QmVem%;T)xC(B_pnEOrMn#f=uU1hwCj%mjRGyo`ybR_uAljUA3b`$l5UF!p2DfK$
zUk3MQa7PArW^hjiovSKO?`g4jlDjgvTP3C9Lgn`=c2k8#8NQkT6M9-pnF(Rl;tZB#
zFeznG@}SDeA5zJiN$X)Qq6;ian2=Onk-;Mwe38MP3?9v3Wd@s=t{FU*!Q&acsPp(l
z22XOl+{QC_DuY!Tv^8pHUQg@k44%ngHT8R1&uT9uw9GE9+ZCtla~W)z-k5~FzmUQD
z4EFVmtJbNvul9_WFp<gjQU)JBTD>8IjY`O0&VZZhfu7c@8N8OkN17zBXYfV_A7nry
zZ)UKW5$<Wdm%&@i&p)c(QLNd^dOHL5$icp=4mav$@izkY^}ZIjC=MT7`607(a3zne
z88n<wLGp11+cNk>``W4aX$GHV@Hw+6gVwz)rX`OZ>OToPCGJwq-HPmmlD!;h2480I
zm4@-+Uh&f7hVXR;-*5-cAjh?k!FL(_lEJSTe4oJ&8T_O%+^@zN#vhq@DT|rU-GgD|
zh<;WHi@#;?dj<zG_$PxuGWautzZu>h7LUKw2+62kagnVUD=suHx_@;6W)x}pie8qT
zfs=usL6AY7s~B;VT#e7n^>NY5;DTvw8Pb9ZLrzdHtEils5BG{^Fv?(W&6p&zNM><w
z7WZY5%A!UV=VozU7B#b|l|_>*PRQb*EDp}b8+b()wX--RizBmWkVTy=4$Y!|7Kdd~
zHyd9*)ysmv_cb07Ukfp$EhbdVoZ9x^mDPu5!Mn&KvLJ7!lB2R{m_;Ksdvq4J%&9&`
zIad&Mj#Ylas#@&yI6i-<XxUgLJ9=5iWq~Y&od#8Z^|FpHx8nV8(=1NRqD>ZOX3;E*
z=33QK@uVzYsDe}Ir2fX&B8yYA=r+F#E%P`{bv{^J&9%T{t1M2>#_>5L3;yQYI*Sz-
z$3=4f7Th+AcB<bgi}qP`$nw?t@$ZHl@>yAaJ|J;+mj7a3S;?sC@41wBRQ<tI+n$p}
zXXRZKyDD-nx+$R%e@FWKEH21mW)_!Z(LIX`vlyJkkSs3B;^Hj&WYJfZdt}k8+^VON
zJ;~Vl-pZM8<o%QnRP0Ybl~7(<>4Vf;x;He7VOfmNVnP<fvlx-Zs4Og<(5ft|v*3B3
z3oV_E7cBY6ES}^wdGENp(G2Xgwqw;YukgpHGJoTs+BhZyx6K;X#4ILhOs1(CgEKjc
zDJo$Vi&GV8jeL3*GyWsIG>gl!xG9U9vzV2|<yl;p#r0XtR#R7Hadl}>idWKq{#eQD
zYIWmU4xxs{iJ)bALM)wyyYc7XEN;w#KLK+fb5wz3F7q&pyRx`Di+Neh&*HW$ZqH%?
zv!%CntE#nIRf~k_N^5-Z-nF-t?rq(X#hrAocl=WhuYvE$#y{5ZSjefI)^_&JH2G=#
zbvTPfS-hLYds#e?#bVkS+n)F7531!Cvv?_sC0RU_#l!SrdgIkuJe$Q*Ra=(Da^_(c
zk7V(bO4#;MC66nv%;GV%Q@ZhI?Gv1)vS#Vw+o~*{R>?DpB~AVWwkC_UI=Rnf@w^)0
zUp{bv_xHA5$YPyVtyeh{fD4VdA&ZS!yspBRv+<1;e{pz4i<=Y~qF1x=&k#Ib%kl#a
ziOLC$-pJz3EH<kGFDc*7;w_yrZtrhSZ~RUct9x7fr?e%$pT(9e_Gj^979V8sA=jfO
z<kl=c%3?Ry(Gls7v)Go!_AGX&!B4ViQ9J!v7N07i|D2uscBMbph9o<=%jvq<rDVq+
zRs4yKYG0_eJ&K$!THcq%mzvmLW$}$Rr`p#H+MM`e;M**|Qz7>^7Qa{igCc)s`YDT_
zvpB%)Qpqn_{GP=hS^TQS-xO(w*8a?*>x7EGv*0f#f9VkT*D25G&xpL8{5OjXx6Ld(
zHmPA{v&eH>nA$d{MO!nRa))ZQEbd)ARk7ArJH;%*EVvH`jNanvf+B}NohS<<2QwG{
z;7;cgxp?2+F+Ls$57ySmp=J)p=FupRS~(n)!>c*Gmczk0)Xw3;94^Y?hMJX!<j^%2
z-+R`{;m{oF=1?yO$>I1M>gRA+4oBy3Ob&;u@{u_-$l(a(t0q;9t66ze4wr7})-VTh
zTKi;D#o=zF5;-=9#;Vzf&D};7s?&5&nwrPu@Lq8ga_D?YS01#`B!?4nI6a3ma%ifW
z&2u;@hxRoqPgEn#l(X&0Ik1;gb2u%BQ*vmb#@Qne_R><@vQ;Z3TY6hR^tRZlbq;NE
z=%}X7)T*{Qw9DbqRkhfvy~@wZp)v=*x79)W>Qo$cL?7#Ht)dP)Wfz@tI7gdz&Y?>V
zC-<@TZ;yw}Ue4`fb<5%09L~$({2aP#R2kR{luYYmjon;5ypJ`fPkb+baSlClxFUxu
zbLg4FTRpp2IgHMsm-60<eH8mD_RFDv4g-`AeGyeTEFIo;U=D-mL#lGHB8?1DGBk%_
zN`@<r$l;?&U8qJ(tE5_Sq$1^`lni(=c4JHq<8zph!_F1yvFvm~dYpFpbE;xu4wG`Y
zgfpJQWU4JlPs?Gt)=tS`suBu69NzVjJ{C>!n2`gEGjq6I<(H|>OMR?aN@)D@9A@V*
zGgVR2zioKet8!RaS$Q?{SxKipjjzq&x*V40up);&9V@TT;pQCXa$a({Q6-yJ)uMb(
z4mWA>Wi3*2ixw9u&QqMPxFCmHl~Ct4CATZyk;9#3`CU2OUFP@Xu%nMf<$H6uPlfj@
zF3Vw2jxTSiwSQU52UM~+hX<7`QDl>clsv4sG>4L_C45AMYjSvwd8mA);$w=BD?Xt}
zJ5T2DRGF_*@^lW*C|O;WKbynf>gV%0tj%FV4jZ-V1;rN?*X6KYNwRM|qL<YFl0Pr2
zoWfV=r}F=L`+5#<<gmcTtv24wVRH_b*_dVHtsLIwo?zoh8}H=sZVm|>NgMCw@O}>8
z=kP-gTXOgyhp)Lb`dT06ur-IzbJ)(b%;95Z&Zw53=CDl<@=sLKpsz*VTJbY(J4$vi
zEpzx%6<E7V32VuB=kP^Yz9)yh%FnBv-p5XBr>XFjN@$R#=*Bnd%(sf)DY9yR4nO8F
z<GHSO4nO7aa}HT;^^4-KIs8_3k_Kt{cU7kTAKZtP|5cX!ox_1L|3}HcikTe7_O;lA
z7IHb1oOg1_=iq8Dl(Y7SX`?)bZrUhcG035ygp#6?P%+BEuwykIrj4GX(<CW74oGc9
zk{UK@+NfpYpt9s(C8apifkSN6QOTh;>e;AoqplW9z8zL>b@>0^s)3E8Y_zd)rj3R+
zj<#{4jb=8Ev2m=8<82IG)3uR}7Hhg5r$|y^qp|X<`&ukQxs+?~{qZ0Qo7gx(+mbi6
zagS;~+t+Gt;}mMzILXGn%Ukj|S;^+U7Wt{lPq%TJjh4!H^tD<k`KhnP=4UAP`dY0y
zz<zO)wl><?=wZj#z3pvuu+h!Nxi-$SQOUlpZFP=~vz45>tyO+$%Z@fW+1SwbtY%$W
zJyN$NNoN~fRH3VlfB5f9r?g=!;(0dCx6$3kg*Lx96YI>Y+maSoOU;Y4NvTN5#WvP{
z+=-;8jb1i-+vsDX%0}8oUmN{w3}G~E^tUm<=3DYG*v3H4=F*l|zu9_U>U8_P*1dUw
zH>nk|M26WIZexTE3O79)3meaA(X^j+&1<nvwT+QBrrVfdW0Z{-YSg4b9#pn$jJ7ex
z##p*h(Q>@vI7JrO;{+QMZA?<h)UtfCjVbC6brwx*HBIFt<7?KWw>)O5<PsZ~Dk&Kx
zUT$Nyjhomb@7)whuCsBa@^kuGSJ}AQ#x-=WpVe+bmut&96Z%=yyxzuj{j3`lZ&aM4
z$SNK;+n8I{zl8x=i+MKY+gQ}ks@|O@-e%)=4#&YH2Y1-G(}r!sv2mA;ySb0qc$c|n
zW1)?wZ9K!|v2mY`6*eBR<J*w?Z7jC&APw4hz>aUMR`-h^F|lfijfW_yX)UwyFzswl
zFJ)@!Eh;(5Tm7u%D&a#m7Wq@lqc$G5@q~?)HXh@Ud6l?5z5$`NC$&2^e2TknGJdeI
zr=PWo(R-$<^VGJhZ9Hq^6&tVGSYxC1r`79hthe!;jpvzHoL_BTZ$0?jiPr3XF}_G)
zueghiHeO;%t21<oHjn6Uy=-F>n{TM50w0v!P|JGF#_KlTpaaaqKdO$aVey)u3RoXs
zNN?sTz>fbqcdr)T<^t?*QU0Ed_igOA@uQ6`Ha@Vi+r}3*KD4pb#%DG@xABpUk8OO)
ziQ5&Aw`YHAn>zf7B3<QpAJV5-+imQyvD3ybW?;&q8}ydXXBa>}+~&c!?Xj`f#@9B!
z(Xs5a@ueOA5LUB>Mdh!UsQs-qJK`qa+W3y!CKqX~_%|kwl+V4t*G~EPmu_&>KiT-%
z#$Pu6w($!SwZHY7jo&pgzuH*R-x|5Uit+q|3u=E=r~L_f^(Pm8oyyW(`2p?;HvZMz
z;1u)6yNr#Tc0rz1IlE@su=l(TmwTy$GaYy~eD0GDj&l&$C~!}9P~Sn(M#zoY!J!V{
zz8*i)r}MQP7!FJ)&W(+)S0$V{Ig^ScDF-#myrzR%Wqy#7gB`F5)edpusb^S-bscc*
z`}W1Z(9tpeo%~@A4tLPd!O;$maB!p(=SBl34jqTg3F56fjU45Goa7h>49l@j{7{rd
zW+1b-k%I~+COmj!NI4vw;-G~Cad5nYCQkf_rm2Gym7Ji+Cn5Zc`exeK$qt%3ILX1<
z{?;4QV&6t?tfnV)<5UNyIXK<H84g-H@uP#%h)7yFacYt9;1suZ;-z}M{@rX_2kjhO
z?4XB(_6|BY=;q*D2WL5`bkNDcIS$Tt;wK~>xkcz>e?EVs=k@sXcxSq^1G?1JK^G^U
zi_&y3!FsO8c@EB}&y0YBZ+4_FaN<YkR3>L&FLL4^6zB%y!&dy2p{IjhblbrQC;mIq
z-VXXX=<me8{Pxl5=&N0DUYJM&91L<W*ug-?ZCD%xPTUYWKfen{J=6h_e3;HDCzKAe
zVU>ew2O}LY-_kl$OjJg1l!Gx2#yS|sCq<08hMLb<7*)2S!Z-)-^|yG8S298IxBk{-
z4$8q+2Ol|@>R_6K6%HP8Fx|ln2RAvm*}+T)mpHiE!8Hypb#NK8&cT(O@rLPH4rXg2
zUCybm5s!jG&Jmv#UscZ1e%sSL_{W*oauT)GjSR~lRo62nI?LQ-Y7DU0kcl@(6=;FQ
zxejh|aF>I-9n5nu-@&a8Zgaqi<8wJGEclP|?GEnL;vE_m)^c8md_Z)MgM|(rbg;z1
zy{hwo;(ZS8cd$q~{}F@A{8gGeD#>CEAjv~oyNn6h-+EZ5lES52K8vcE|H~claT5=Y
z_fZEc9lYw`H3yG5c-+CW4%Rq$g1N^j+gSaKgQvKB2E>o|pLVdSWVx2b;c&bqZ&y3<
zKeO;}BcEebxvm|&%$4Hc1!k0k7r74%u+}jwbK*F&Q|{rh<(k$@PW+buJT@rdPwkr+
zsGVuXnL8fID_Z1az3$)*&c1{9x!b4@H1&>y%?{pj;{Bh+x65ms&sX0q>#(CO4nA=3
zVOhf7sm!@3&DzHfwmI1E;713aIQZ1T7Y_EQ@@EcqmRo)9V7u}iif8N8)6OoQ#8cL8
z2c>D<>tLTM{Gj+H*PVlJ9ekz5egmwpHNi+Yd^YFt9XHz=*7urJoFGcLSN!DQX9tNq
zl6m~%;8zDOH)jXGIrv>oIf{Qc_)E#3ifqed_*?mbvg9A#h5mJrQAt)Yr#qyryflgV
zvOXWR`P}@q80zQ>$~k>SC5-kb<0~TNMjmE9UQ=ANoG<F6@~EMbBlD=qhd+57nn&F{
z4$9-;JPygn8#ucljvrvvR!u(Duan2QHR5P6uj;9=zT!3etJ+SeI4qCD^Eg5!{9i5p
zD#5*rdrN~nj#7gS^EgIpY4+%Ryw8yEITa07<k2{fUp@Th;kZ1I$M-INa3OgdpGQ9z
z{arN4<Agk}&f}Uqn&xq09s}|im`AgG{A8&^9%tpzJdcyKcyb<X^YNpbW_$#sk`{TK
zs)Wj?DQT(LDv#64@-y;it-MVhXDYdQK>TRvLB)0|X`jdVRkbKwJ*lEH4{uUM_dL$d
zqhlVO^0>dEC9BvkpIM!gM`s@T{HjYHUCX?il5-W$Q#@bs0>)&3MSWVhFprDMUR|6=
z59K|}l3scAR^CUkZ&}_ikN#!;)&Ofz9)t6kl*eQh4#}e`k8~bG^B9)La24`_)d+R_
z*8vutXYbYJQH(5)bd+jZilY_BD2`Per#QaEYgSIkV`7<?oSC8%aYY_e%kpV?OjkZb
zai-!WikB)f0+;16OZnwx$?QCgf$?-)sS<jAmAbmgw64wLx;$FBINinddEAi4gLy2;
z<HkJZ<gp-+Tl2UnkDIk2XJ>96x8yNjix*9fpHj{%SCN0RH+}+1wcAv<Nb&YO?oe{4
zc6yiM-HP`pE>vU;?^SYNshG#EeQ63G(6%It^XRUUhw^whkA^OecCj>%WqCZF#}j!h
zr~fr8sX1sJR^;&rqnAf+Px>*HuT-RO)VZR4iuhz6PpR;wJXYoLbRKK-SXVp!4AUu(
zHF-Rz#nICmQTVKKE{f;#@q^Qn@YsPCt6osaIz?8k&*MeqRAzBQ9vky`Igd?w?9b!J
zJYLD;)jU4WV|yO2<?(tRTk`lohxvx$J9)gRWV7O1if=1UOvLl}uJZR3-~Uf7t3K4?
zwmh~f`AG5O|LA<8{8Pox{v+R!$Id*yQ3>trQnELX-AcYt+@o0XWS{ac6~9vaTCt60
z8ZCUA$9F3EUhxOTQrn;M_&JY49!2i|+`jV2<dN06_)YQeJbqX5hvJ`#e<?BooVx?c
z|55z+KeepNY0=HYR^lk;|D)q6_Z5Tx$iqA$ZsRU$yYWMH!;RCah6~e;_o9SiQZc1S
zPbjacYPH;WFFi=HG{!?*)X}OV-1wpTp)TsVsIQW`iaiHfhbeh`PnsPauDmqHBb7H$
zJnBF4V_Y1oT{LykNJ(i&W%CMEYpi&jB6t>1!rJ4NG;wi4Su$aA#ffU6nIfHU?&2in
zCo7&(mbY+mYMGzrqGg#+9%!B6qBTR|qKgXKxM=U9gYq+7v~|(WjZY;s&ZD54!&xpm
zxj094DqWoIV#D5aM=jnuzYEn$zXi}|V``(WD(8ysqjtKvIM>B_F3wjum3zCmKzaAF
z<U$u0mHEX=dbsFWmh^IQ<i2>1;_*T<CVjQ)=e_9xE(W@Iz{O%0gIo-Dak-1xE{3=m
z>SBzGu`Y(W817<}8}BMDr;i%pBCWj2#ccyEO6Y2}i;*r?4vbF<ujpE^Tx=g`jduTc
zj{AL}70;TB2`(nO7+>~{ftsY84JUJ?ePRn!biSr)FZ6bri|J+k87^ijzoaa=)Wv1W
zXDPm2H{L6*aB-!J1ukxNag~d!UCeQD6KASs<u%;%Y2U@QE@}?4_=C%JE*KV)8`WDn
zaQ~io6XwbKW*2i^a8G0L7M+fHbbeK>;|9fk()syXWRJJGxZTCwF78paJJi&j+9NgZ
z(qh{|7Gt>3#hb0G?{~4t#l7nDeL8R&;qYm^G)L_HK^IG0yzb%+7Z163*u`49%KhKP
zG8d1qBNxkEtkAV~&aYMM=)D=$Uzk>}LDotakGXit#VQw+JnrHN7f*6R2U&3t2E|e0
znTt)HcJYjhH7=fWvD(FbgREzHD51A2=XYW8roHLs)m0L9L|o@$y-GIHJ+=0t2I{5q
zjBjwkHO^jMcCpFDo<SD#_7xYex_C_+9?({$!M^EYvy0D}GcMj@Ll+;p_}IleF5Y$V
zp^L39-qThXY`w3f=3r}!i=XCJf1pKnM9$%J6C<x2Y;9v$Tzu-{Ggat6I3Dtp!EuC3
zi*DMP)jM45bn&%|Z(QthvD?L$F1}*K=&*}@Zv0#1t`3!ZUCbM7C3aMh)5!9{@ovm3
zI^u@G)+aplx65x`e5YY#tG~3n{VslVG1bE~4?ns1*+p{?CwchA#jh@Ec&N#XSQo#$
za9reF{NdtH7yr7*xcJM(-!A@P4$tp$puB@IL%97uKdIv2A#ny~U7R??vbko5SUGM=
zL*g-34T<OLsy%7fh3CTXV0!Rf1TG?G&Y9J<_oNFhirgXw#sj%?h!tvx9@pljT`1w<
zwINp0L&}Sr9B*1IvTNEW*79(WhlU=G_HeL=+8*k9sOQD59^&CpFJ5SMy!h-uvS*0(
zH@)4HuJ7S64@Y=7(!=2-T<m+&RH!-BYBJPnp!!F7XsUZA7abe2_81SxdN|%g6Az6%
zbR23m=4HPsS9lmO)S5oj;)0?zc<~-}>rhMR$<X-s(-Ty!nIe5_>cwZb6BSnswbl)d
z!*#NUQ#@SYp}U6`9!~XemWN6Yr+H|$vFdaWXLxAo#XG=9L#<XGejKWiPgt!zwDr)=
zLmQ8uaj7~}k%T@MhFT4WS?#so4mu)E6UTKntqrp}d+5S}c<AKe!eQ1q47J9eoc?t6
z(9OfS+9M;tg~lP%Z8~tChx1iV&RM(A!$lrOc&PGlv4<WW`g!Q@p{Ivl9{PCb>!G*K
z1-t%cQU%vqsUwD+lF`Gg0Uic=7~)~57e{*#jSsU1tJ~KMvsSA=9L_Kg!&Ug2O6cU*
z!>qK2Y7b*6_b}4KD27X~{VWfoJ=7W=M~QB;`4|uXG8#22iQ~O^|D5DuvWE$3lh!73
zLWjp=Z#SHurb2(^T+WnC_b|i56CR%QFw?^&9&Yn+yN63XT;}0=P9>}QG@j+*N)K0g
zxZJ~R4_DCm@OZQ3LLi|hS8Lp^D-BKgwaV!Xd*M!g$>fR~Rep=&91k~XI@$Z<ef4G!
zb5(xBaBJ~!Yo3SsUVPci6Tt!|o0?iUqx$*b7VnJi@NlPxhdnIyaF>U>JuLR{poe?Z
z!hJ*~3q9Pcg!Z{wiHp?j2Rv|R-ZI?!cDTijIzQZ6qMp#zhg6@vP<fe$<yw5q!wN6H
zwS2_GqbjL4!YW;Xu*pi5d^4k(mmH6K@r6h85!O>4R(bf`!*&l(dw9mfCJ(Q8Snc6i
z4{JTVpsm(;c+SJ~>JK-0?yig#(}qdD&ck{SFVUcf&LgZBz4$D{+9ti?>lq#!Io{T>
zK984~q9fwkSDES_KJ>6vBlfz74>Uhn^@fKxJ<J+mZB~3sk;S(?yrcYG#rG87FV}9N
zpL^0&WA4!iC+i~*AA8uwDbW3jI}g46#KWh$bubA(W7P<Yy8&^Bhn*h2_V5iux2o1I
z4|_fA^RS!4Q3-AG*u$*TtC}x8?4MNel?I1Xz$T0^$+sT9V-+_C54;hhgva+De$a_y
z9+tN2pSbg@gm;lYYXmsaPtT~P!tWmb@bHh1e|`Mv;V&)_A5(n%?co4J<fDU+f4Gi3
z9O9#nkBo<`hoXm&20hs7t>?kf^+lguCh*>Lo~IZ+6HzjSX8~^7!>mA&k^<Ke|JY`j
z6?rgx9OQ$$4F_fVNcpJYBjNvVEJ;5OFRN;nCACy?S(|E(l((qdTMpK$+CED6$cOr<
z>!ZR)V;}W=)c0|uj|ST6Fm_ZseYo<+Mp#GjTu`=ul#hl~o?Ow$kN1<K{dh}1*2kFI
z)-kF>LJ4>8O(SA*oDcYD>f=No;^TN9C;0IWvs?3xJ~#2>YY(PnY3pm|qq&cheVn4+
zp5)`~9Tlbd;uN=Fz(-i8`Z!JdB4-sxO>C+9t$duW<P1g1Tl;8J=4UEt>!V#+QlrW`
z%SWY;fj$PYFCQHlA0HR{=;Y%ZALscv-;Y;WXCGaBboJx4&)6Pc6_2i)AD>BiId?9T
zVQ_q1cY!*_GdPFVUHOHI=Tyb(tB3O5KKl3=QDyb?!RwP=imdJH$BUG~>F=W-d)Es&
z$_HpG5{`7Rk0Cxr`WU6cp+1Jwl#gLrqyl%UD&?FAHsO)>QLU0o)CbGQXdV7|6|%cA
zKE{@L+(db!$rTfHa=GzNR5D4C``A<;(|m05@rsY>K4$p1j|P3r^l^!gxjt_3ajB2X
zd|cz>S|77~T<(KQ><Vh?wKUH=v$Yp)O;`H3$_FF%s9vO9&4z8_&G0%O*Za89#~dFw
zsKdO@;e?j9Vg`q<-sIz}J?WeM_+FUBPHn2^`IztHE+2Q(?4I-jAGi6qo#{8kx|LpS
z=|(kPDczy9OHGS9cWU$c#ZmO?9v=(YUCl~X@gjlbUO&G3AX((&0UuBKSmk4}j|Y9M
z)FCYK@sN+@K34d6SckdP$1<(rKF{uGhZ2%Um^^MA2l7Y%qwtuI$NhL8DE+bA6F#2Q
z;({uR!l!*a!}aK6y^qyACRIG^V+|)!&-EwrY(C6-&d2jU*7{glWpUnL(2<fK{ZhO<
zU(~){Vwx$ToDOVM&g6Vq3C&XYs*l%v>}DSNc-_YvblAtIKHl`P*~j}nwy5%3KHl;1
zt`7EXof_Vi@M4U!^Pc~|=d`r;fsYTh_G2GgwIR<?A1UF*%ycteyj)G&n9O?S`pn1Y
zTDwzcWV??YT$t<P$>kV%g5yQ|E+4#4VRF*`9v^#s{OIE+ANzcK>Ek;e->bq`YUdjt
zUu(puT)GMRmU&xcajW4D_JeLjtlF>2bcS2a&pv+f@tcp|b&NZzEZ&&>%DmN^tUtK<
z`}m8ykdJSt$G0;V&Zy=s7<Y2UnWhe?DeeOqA6Xxh1562!^I>ya3vf~Z$48z!ZGZ*=
zTpu2H^#BJ4@O=c_&jTa_6nqppsJYcfz^|cM+*m@L?udKoV2cMkGK1IwW+rP>0cr%`
z1tjGR6bDi>i1V#h5T6~mns}{JJHR0U>IJB;RdoW?Rl<olR0;1O`0R+g*<k?=55Nn4
zat`YLJ?SHYct!BwqB|-;!vMzxK!BqI921}-Kx4IVY=B1EBRi#6#2V=sx%Kg!%j<s$
zaJ*_ZqkYw6&YVD@sx?)~i2*vLEgo#hA#g)GIlw6aE(~x{fEEEx4RCgVjsZ>!&@w=q
z0A~hh72tGjenx=O1tC4>X^uu(2Uxu)%`4ls0on!esi#AL_Nq*;O0zadyE`jDrOIph
z@k8BC0nQ0<et-)CbPmu(tIiGL^rqRaIuKq`b_+nHKD|9pb*81Q?!o^a3v)4YQS(X5
z#Q}N*7#3i7fSv(*1sD)uV1V9ghi&@>=%da1255Fmn%8DaJ2vjGwd}6xnbquf5F4(l
zHB^Oz0}N4p)^bpEfH)#RRe-Tn2#^lIryR6wseW~UkxE7>vehkVYjl7yL45CAGQ!*E
z@c||Tn5a55$Vp$8j_)fcl_fMdHNdn04+VHQz;w-x>xlto1eh7%k^q+mxH7<1+T^kT
zmj{>~V3rp7%;BYUeCoVHi@fsW`Gq#G4scC?>vTjca)n+S#2YUOkqeC;-WXs`fV%?R
z9pI(_HwU;iz-^q(nw4_{%nz_2z%2njN?Y?3Ntg_LaKtp@5SZS#GqyS05#UZLOsZf*
zUfcYbj;~IcA@^`913VC5aS&e{-%Do#EDCU+rVz7;m#hp(o$C00mKUf*M)*NpdXz5-
z;%BOS{Ju26vH-6Ics;=K04oAK7vT8-k1%-xtP1dSfRzCr3-EY=Cp2RhHtx!3bBs?i
zZhO*C(Ud;?k!p*CzcO^Fww?*FM$>O~5EmJiXM^|;l1VsB25qfIZ+(ClwfPHLT&GCm
zF9p~T;N<|D7`ORdc*nt6*vQ?9XI{NdriE7mysD{7&W8^S+8Y7h4DeZi&jV}@@K%5=
z0X_)uc7S&Ryc^&>j%9uqdVap1H{a*d)?19y<0JA918h~dKV{4Ve5~{Si8iFpz-nuo
zN=SIHUyhgFZV#{{!0rHFF!+-yc4{)vPb%yR;?vyyd(wNfAtgTq*vrJLjvd|?;7cx8
z{hjVBC0{Fkqxh}jcYF(|5+)2ad9S@+O|jpf1N_2a8uGRwzXte?>nKEZh~ESJ!G4Qa
zR>YqH{$dIh<6ZIZ00;P5(E@%h;GY2hGKUMezJN@CEH|zKS`?7u6m#P(;IIOm0Qmq1
z6>x9?ZU8TUQGi*1AK=DRWidb)AW&XVoL6m8zF0A$KP}p<t+t4X0)kDAY7|hjfMfxw
z0^U{mm#SH-5L;ubsM<Q95*BM0P^W-Hwd#-p8jiH035{r^ZULXJXh~kL5Zf<xad-ho
z6wtJQ6AL)9fCgH1ymm@cN3nSU&xfPPk1pVpk=8MaB*!XgR6vE2#)`+4YoSCGdyb3;
z(nKwvph!0;X;#1$BdwFv&*lY;92rM|$H@iUG16K((mJ(((+cQQK;Hsd7SO7Ib_KLA
z;Pe8{DB#TUC|aw9Hd=gsr1gQ?q5ZZhVW2t`a8>~q6>xC@l?9w#K&JxE(N=p^xuf#G
zMq0H;#jbWPpo_L;v1<WD9^DE!SNVC0=a=OdDCw?vp<?q<R*wRDvd2+YZ?#-G%Hk~a
zV(&^Qw?<k03g}<J*aF5CFhIK-Re)8%zybzoac}`cbo!{z<~)XKaaaMvl~6K5NmT*q
zvZR`kR8BXjz<4s4qYD^Qz?Gw{*>6=dRXE1++Qq~ICKWJ2IfYD;$;w~WI80IJX<=#s
z)5?5$0W%7iS->R)T&lvW6faYptvIWI%ayP#-MFI6uT*mPDC=q^*C<|Fu6=Tpbpv?;
zpBJ#bfH?)+RKVf_9xUMI0_LjP{RP}oz&v&GULEHA0`Ac&`oBQsw`%b=#oL)nO6bX*
zO71G)?y`hVveiN@eyl^juYm8AFi?vMc%T5T7jmjCDd3?3))equ0S_0jw15=_Jfdxv
zsh#EJRl~lrqpU}@YPBx9lx3|ffOZ~Je7t}slsu_O`BO?(74Wo@XB1(@^F?dVs;OF=
zs-D-5UMOH)0c(|W?bEmQ1#laAy?{3gcu{-g5_?I>2E~m9yj+%VQu0axua+gRDPebK
zTh^P}*9Qe`E`Y1!EycGL-%)&5kyY<0d0%mh;sDF~uz)F+wN>#WMHW9+vQ6<5_EnaD
zriAmpqkx^-?^gxv(s42DdkfgDLPp?=0``=7X*=4d#V-}9%piPSz&8batIbQn`L2NP
zwfIB1?fwFOEOWN{rGQ@xxS)vcMf_I4@7w^3II4(03iy-zZ4s#={wm<_0&H&S1sqUo
z>?_N&K$-u`vp|_&vbl=2xdN`W;(5t)^DiJ|7HOv*Go%3SGkyUJEo+q(FHaT=1r$}z
zCM+67nDnPb8_sE>7-t}Jl5!>$^=lNtPcqjnqFxcTia1C$4^ce0h}YC+?P7dhNNK0E
zQ>TbSi#S2g9qg!n5r?V%5sHUv7p1P*isZ=R|3=iXh@*=*L)DHc;@Bdjh~tZBR78ae
zk1NJ&giRW2k%X?I%s;cNChWI}W@Sm!B2FyxA2dW<am`h7Qdxd7KR8|HEtH&E#A!-e
zmgTLKoL+>hMp_rqrie3(Xj??rBDxjPP9xA>)$XfnH5eU-u0s)LsiaczY{ia>^t_Xj
za}+x(c2VRGc5d;1+roJ&VM?E01n2q+J+)m}#6?9+E@Da%7Z=f^h#^G`EuyC?_bZ}*
z5xt7&T|^&hj<Wg|<8wND<jgiz$H)h$@}MHP3<nlbIXccC9)pYEsj%;8YgiG(ix^YH
z*dj)#GHb0Os)|T!v08DYI#x=^QAJp4XS7Cx5h&&7IMtk3#CRpMM_Ut$@wEXBUd}Uu
zD&H~Mnp(uPBCaXo+9IYGF{6kpiny|fne3v}kTW&Xy0nPPikPKY#4au`_r){sW23Dm
z?HVy}OJli8Ta|pfn%TQ4UM$xYaeX-;HxxmiZ!O|B8Y$bEQ^ZZmZ!Syb7IBO6d5ZJP
z@&(2Jop)~6j_y#TOB+U8rQPGMVtg%kx8gmD3l;BGyibt|_ZP8<iCx5El{{F)l45+#
z&#H&YIuCPx^=CW&&`J67B35vsLktM<ND+^6L`4*eSXsnlY|HQ#@putW6!A(CuNLuS
z5l<EId=YDlSjB18|87`a#M4D=8*MEZTm1~1eA8iX!}P_w)6W*Mrihbvr+GZbIh{~J
z!X_^i@nR7#ahTz#bw#XKGJkiP#SLn6QxPreSmWzh8;f|Ei(*JMTk&5oh?Kup#Op==
z!zSJ@;tg(eFJW^LZx!)o5r-_TdTdGc52GzQLm#O8b`kFsap4WsJl-v0|By5Z?QALH
zW9{pMB0emF#<z0GFX+OC9KuIM?A@KFh1r{`wiQ7n|E!45i}<C8UyImY#Ev4qD&p%R
zb{4U#h<$2pcc~%MZ$iaoU#7n(Vh_{o%k=WKG14E}`I5_RNHq_-@l6rm7V!fe)8^kX
zx9eEPTwhH;zgKUmPqiO4AdCZJ`%@7=vzLakdt<&x|5n8BMf_95zuf;hYfGvRsHs00
z8P4Wti%tI4Nr~rWcX|}FHylM%nIfDb@<n8e$Z3dd4PgB>@nEU!7U5|}w0Za#i?wX-
zt8tQI5h3@k5N$(5MHnF(hd3^T86pwl&=7S)BtxV^)DCe-h#FxW<eDLBg>gzW9}~|e
zQ{tfTe_3>}lFBjhKi7<%P(dH+sD!=O3sFDBks%s{V8g>gQ0Ischij1%7Do)JrY3D3
z72=o>$A)OA&5thI=MXsRMj<NHfup}jv-gq@2q7U_gg7<C@gbUoI59*sRiot-w7aH?
zeYCIUtWvY5gmDg^tX0e_a!#~0#-b;)##pC?Xcgl05G})a#wjf2|2*~Nj1aBEc)sXE
z8#>&eF-f}+?L%Bd{SY0ri*rJB4slk9N>%34I9uhMppGG!tDVAl#WCl*gy^bO-RaMe
z>Tc@)`615L;(3acuNY&|!wcAjE=G2GVThv|G^Qs#Li7yLSB>-v(K|$)1zq}Rar0Vm
zQc4jcXMXkzW8{(_7-CR}5h2!%v95Zp_23XgLJSR&ZlCHsJY_Y<Fy+HTbm>?*Wl0rv
zo@j!qF#g|=!lGk{Bg6QW1rtI{3^7W%r8rt~jN(|uaUu9}+VP5f`vLi+5R*eZ5#h-Q
zQ&i{Q5Sb8DLre=XJ;V&gEyUv?W`?*V#BCvN4{>RT%R*cq;)W2jLR=o=$`DtDn9VAE
z>**C?{5IOs>u~AY)gi87ry;IWh0<&N_(DG(<fY@r5Oe52h<WP9O(AX$F<0%-Ldja`
zeX8?AEC_L{s+A-qEa}`4;?58cg?Ko`T_Nrcaes(KA?^vWFvPtf?$d^)u1olTMji;U
zIK+b?mN1#i?v-jwn)GC8h-D#GaKkT;kqXO|Q-}OfwZHQJAL$bzo(%B`lP$zkAy$Q0
zAL7LjPcsQaJQwnIJ8ru=#IqsRls#m3C7T@D+7K@=Ny?7>pI0TFmqKg^u_?qW+IC}z
zmsPVAladj>tLoJd@6Z8$#URA%A>L5sx5N1B5^pNstoW8<=?%}ve3@=PBK@vP-V5=*
zn%xp&t4cml{7{je@Z}XBmHEdZwka>}j^Aqg8G8xw1Jgdl_7FQld=ui^5IaNcB2H`j
zRfyfH|3%rtCu8Eb{p``=-VpoB@-LOFT92=F75p+L{@ZoF0fV27_%4jUox$UKB@Opg
z{}|$@5Wj@@mAmU$>!`8T&m6*7i?4SGcW}?a?;-vQ@pp(nbY1+Zc){5C`w=|&iIxM*
z-YISQZ%Y3#s``EgcE|tw$cD&;xG=&+5$q67h(-}ABIHB3Ar6jEJAxO&XTK2=5rPl}
z?)GYpZ=o4E)|x%mDuxKz^{rL+jJ1fgY((H2KS+`hUL0%Hh)^?%UyPHAP^t1wOREpu
zR>gl&sTIYJ9i+%N#~u=)PK3iE93J7&2z4XWkK*-SPZbz#hK2g2h0nLF91-Ej2n`|}
z72$&YiETP$j*&VIBV4hn`q&6Zb7;HL$3*yPti^-x_VM>t6B|c3E<*bV9U>rtL^wIZ
zDG`p>zM4kygmOljL<q-PC#V}FCq`%%#qY^)9^s@YenljCY1BuJvs!SN5!ysJGXh_>
z&o3;T7NKPnzqX}Sgfk+vR(`r7y``M<*m_s|BA2%Gvz~R)IICTR)5cl!nJ<vpHofs#
z3|fS9B6Q}6_#03Z2cc6Ge}AW=BIDEV;CNhJB6N*#K0~4QyG1xR!g<O^j<eW`uKqr}
znuK<`NAZ-=$=P&!ewT|Q^xzmHTo<8dgkBNGN0<<ycZ5C>MntHJ&^JQA2ty(a)oApO
zFd)J}<qOBf$u>xXHaNnwTBJ*iArDp!i!eOGTjMN#zJ&jU@xZdGbcE^%qa%!oFj9v$
zDvDPzjZmK+S`qk9PyFApu@T1Uq?FRQl)zln6C+HDFf+m>oQvU=lOs&mK~0G;HHtro
zz^<op-p{vqd^;}w_Q4G1@HmU#Ji0W(Wf887a8-m^8qzo{N-kHNt=M?HMF&{Lso`?F
znv?i<Jn7eHM<mxrxFN!Q5$=z0V}v;oZi{exgqx!HU+3mVxFy2P8WxU-l6ev4GqLqG
zI2`7J2>g%2TXo2sP;%P5Bf^~#?v8LzgpT9me(z$4cBZTKqbdtE6wL5@Irgb-`_@YH
zW#fa!TZ<w*5aHnnOCv0f@Sx5+S0AgEMDYvBABsRu!m#k0ILjg|kML-OmD>A?2#@HH
zCykHufkVD=e4H~}rz}1e;c+hN?P<QQieY>z!YcY^NGC&{j_^!`znJh5R&(kjY>%)b
z!W!yFcqhWU5uT5*Ho_|rUXAcVgmpTEjSLa@2Mx{!l{`4!TFXx9{CJD=OF!equ2qcH
zCiS!9`POR@UXSo*gv~lej_3^?APM!~V%qB)-dJSJ-!2#5i|~Ggk0N{=VM_##>%$0J
zBYdDsl_!Xg$6FL~MetzTZ46hj>a!?*!x-&+!s(dW_R|R5MN9uN`ngv9INsVBVONA7
zBJ7W_JHi(czKZZQch2$FDf<(9BJ7Q@FN(kV#CV>npHTTy+w$Kwzlq|L$oC9Ut@yuI
zzm4!+6o0a${)BiIIKPMejUSoA5q@K;MEF^w@vGvN`>TJ6!1c>O{l$+^=m(Gfh`{$y
z{TapI?V`<+*#i;&iExA=M;h{PgiHj(5Yv!sgdBH!I->?{ji;kCQkr^(-HYHyC~ENe
ze_la^g61|?F^dd%t(xgjn?yPaE@5_>FeGWnL53V`NXn2JhSV~I*+_kQThkCC2gogg
zqi#9Ds%^+2hSW2pz9DrC;pdRJB_3)BcMLYEYY2<oC&U{j=jbp)Zk!Oy4>x4g1d9uY
z>!^VtM;UUOAuSDQXvooqG&STzLyj@zSVN981co$HJN(bY3PU)+b0ai1WXS}JQ_KL0
zA;%kXf+4j0`~+*l{zMZ)T5M1App$2CZy#$lGo(3%hMa21Nro_0SapgaCmX_7w7sWZ
zQNmLUcUR^K-!jL2zLg=T8&YWqUjuc9A*~H*Ye+jo_<m`QsEr}t>CnzJ#G7ET7dpW0
ztGyu|IAs&9vpA@U@dis}7SC2Yr7yyqV@PL1#uzfzkS>OFHDstEyyWO+$hn5}Fr=p;
z=NWRo2K-_+G^D#BT*4O_a-kt~m7Ej7YX)9gaE$DN^F;@GaZo$cgA5sLNN+>>aJ<7S
z`x-JpYcHB;^)sZuAtXHNPi;HU5dPaH!$`HQ`akkCGQ<!rE0SS`3}?TFRB_4-;rp^E
zOdC>d$VfwYi9(;b+_>%r>FL8VWV9jN45_(Vzw$QDknx7xVaT0^OfY1kA=evngCUcs
zX2|7+%w|zP@HEAcsfJ85WV#`j8FJ;scvGEW$V@{nF@&EQVUa=RNQsxSqlq!+`=Vzt
z{q)t=SFn{KR~d3OU7Z;F&+Ul+Lwb!Nn>Z1M{5;Y6Y@#*pZ(L^xHv}F`p&JdEW5~^h
z%w=Cw+up=f`8z%_v3X6tCf$&EhRio)fku*%=fRJ5@gKTx)wH}#d*}bm-fjrP$XYsc
zmmzl>@{A#?4Y|jVg@!CMWVs>t(lMs4AzW_v>x^&`7aOw3kOy>H=@Q?Hz<=59%I}@2
zgj@GRhCHl%sUiG492M9*J6d7LBZfR`$V#o{Cx<BH>V8b+j~ns?%`U6re?~uP$Wz?&
z4PiDil0+V>w8*m?=aI!{4OzoL8S;uD&l&PO*P0<43|VW)3x@FA$5pdVo4jZU{~dn4
z@}g!qw?uZ$ZI(gXsA1tg_OhllNBXKEuW2T4RzF`?e8Z3ilPs<mHhj|%u5Mm@a(ijY
zFX$QaE{!MTx`e!E$ot%6OsQka7B%>rA-@~)f$|R(w;J*hGuDu8hJ39O-lTlOATwNs
zkbkPe&kW&R2{U#FoiXGKL-uejtHN%@(ya{@c-ykqkbQ=HX~<XHH1zhWbVoz{zgwGc
z4EdIufFa)-vfq#&4f&yLhfQdQnm;k?4EcpW`)XCGd8vyMmNfrR4_!n4WEOFQGUR|E
zwjqwn|1l)PZC?}SUqxQtuzAi9zF?vLw6;9ya~bm8Zh1D>SCz7s@2v0)@eK(KDX5);
zOeq=?a+5bDWeUH17pdGZ<IShVr1%tInvyVuZFy{~o933z6BBD|m{QXeW@ar#PBi(!
zrqnit$<Ik_$^QiJZXK$oTAR|wl)9$WGo`*tPBf*NDTkSIxG6`Na-=DZOsO!Xfhk9E
za(AbXF~zKrZfM4v+tH>l!@Ez4S5tbD#oA-d_*6nNaePH%Q;t`g$C<)^U56qwN0e~)
zZeq#_rtlxexwx9rK5rkoTYT$6b5l+-<#cV!v^?3AQ<c;5DQdrkB7<<6DST%|OH-Ji
ztxVz2cyL{xq56z4EuU#hTT{B3a;_=uOlfb*Ia*7fJ8)d<akeRE>2Ua8@Rg=;VRE&y
zwxcPXOyOH8C})vJXH&YE($y5MBZis>-#vStDd(H=jw$b&a)Bw`O}WyPt4z7jl#5Im
zW6D@lE;glyDT7TJVoFa_dYSPlV1OyT&G<~+$CSP*;dOXFQ!bliaf{eGrEP!ZEK+%(
zDT6pKny&1Z**MgcVT_(BqZm(9Mws!Ykv3)9wbfOo+%+k_*&*kNvRbQnMkZgX-#xTc
zGFp-2V#9H!j5lS5DKkx(V8*9!$|q}_Cn`=d<>^WBPCmtysittp-a5&eW(qGD=+AUh
zzMB+Z;9X+MrF7erSvsQ6)>ZM~XDB&Ymuq*kP2uAOj_3*<J3k4^JI$-9%&3}jJ9SLC
z&XhT(+++$bw5~Vh22*Y{g%;R~2fql$yJODm&8EyXWxgp3IH7879#iE&{8iJ^i~V_Z
zS6axo>Wr889j4rA$^)h>W|U01+mwZ-+-pkd`u`qNcqL5Zj0q!fpDE<`Gx)`-7PA`j
zB6AVjE~_Hps2?=t5mO#DWr^D71BZu9d007XmnvDtj8d{f@kaf^*Gf|!)8b2}Jg(#!
zQ&uZ^Lh(t(r%YL;gw~!`67T<I$y!s^l=*W?o>we=^5X^N>r7d%<V8ikZ=9xhY%pab
zr<H?M`D@%{OnF5)YhP8uPsY5V<gK#&O;a|PIaeGt-!`T69me-edEb<8nFiedP5Ho-
zy{h@4DO<TbP5GRWH02}arzxM9^0CerZ~1x0@u?YK>G6t}lgmdg3^nI^yD2-Uqw~&D
zQ?iSFX>m8ZxWAeQ->t;gT<@X$^YlGa+wN1FU+R>7Wy;s4xVm;|_8abUljC(npT9Td
z(1g@Y$PcFMH|0lDeljI%O3sv@P5H%?-%a_$lwVExO^3jYI$?7Bpos_HIZynPtu|C=
zO!-R{{w~MlfGPhd|F<mZJlW!PH8(MKZJQF9QqU^LlzdsoHN`7)UrFh~T2Xl-5%2k-
z^2iiJi>4ywrD;tjB$bdF38`6@ACiz-Wqy#7gA-D_Ea6kQI?7AU>m{UqLOLg;OF|Ay
z$l(b&J|RsKa)jzMNXSu2j!a1D^PNnvh6w?S3E}9DPRKC{IW{4U%Jv&8sZeCz9#@u=
zQ=e`RD#!DLgq)g?(-P7&At#c2Q{5~fCzbV^D=B@t=;VZ)qQw^FT3TzFkXBkeOY!uC
zoLR0tBO$Gow<$|Fk8PE=Q*57*4hbn4FYT+mV5`)svlTlkc2YbiA-vI`=Uo%hEg?e^
zGBhFQCgi+?^i4>=gq)v{3lh>pmAfl4X(#J2FHFcqDq-`B6T(l`knrf4kX~hZZzX*g
z|8i}AM&>~Ln2VYN5;9N~1}P3Mw_33t!<3Ip$oPZ|PsoTwd>vJl5KHB0#p<&D$b^h4
zb8eEOm5(V)#+IWoAt4hJ@fm7%LMA0-GHsT1rYM=AI5i>D%JS(6nNyzAnF+b1EHAyR
z_%bcdQoLNT^kJhb5^|*$uTs2P@ft;5xN_jvC*+2NRHUSFN^WEq3AraJ3zKqFLT*mT
z$w@gSDRZfxkY5w>TSDd~WPU;(PskGqS&)!h6S5>B4<+Qbge;tF?O)dNj)dHv5R!(S
zDsO(Ln&i%e+@%uoyOrES<%Hauko&awfa3j%ixeMKQ;U^9sJKQYwD5339!*G{bmdZ&
zFG~ntu(@3M3PtKXl8{ZRPnTAz@UgOcPbTCkW?Di%Nyw^%Je`oY67n|ZB_XR-b4@~m
zF=;k@R*US226;S}kmnP!R)sGl<P|0B60$xaFDj?b#)Q12d_!5XZL;-pnQv0Ece3@W
zlGhYpPskeyc~kjjMcQHSsd{OWcgm9Y6Y?%^0TS|mIwi6tAs>`=K2)+*@gv2L6H<Da
z>Zb|$EFn8p$Z&nGr1Ub<?Ha%xOu~cX_m}R{s@)0sqNJRVZ<Op++^0y#zD&qh%D*m4
z{?dSdn~?7k^1TXwNXSp6+Op1%N*L0gmHeWZm=dSW?+N)MAwGkjkUv#!E3)dZg#4}i
zfZ{)8`M(LtlzCQ3PLYvu64G#rl}|{EDVCcMPvz%Ku}VQJB&3*-Lz7ZB87EJu=~PR3
zln^5+rt(BmYAQ)8(vws&PV5><>8(DqEyH_IQVvc^?W7!%6ec`JH*$(qCn>Xt%BjY+
zP%kNmY4iF?VUY(F4p+$$NjWkp4U%$HQch3_duf=Iilj77%F$)XF-bXAc_YPJ)CX!F
zr$s2zA5lX2@k*L-Ijd&Vvi!uPG%NGwN={N-ImK#`lv9&(8J$ncX-R3Bl)*_El9X0S
zIXx-6-l`gulrxgjIw}2<(myF}lJeXXt4mV4Cgq(Pm1icUt&(<0X`hr1$~!8u_ADip
zif1zjbE+xi(J3kClyy2MWzniw-YqHHrdSsy<)WmVTdqA%$@xjSKuPzq{Ld-;BueGQ
zN$F9RT(-PrPvyN7dza;XlG3-#>A(Q`d7z5NKqc-J>*x+$p7^Y~$+DK;53L-UltZUl
zBa%{;6il^-DGpb>V5*f)N_A2$P0IFk`;kc*m6VA|nUoYODWj9Z^ZvM`jA7fUR)c>q
zHYwLlwH}yiZJcWHJ?i6=G9fAa$|ohCOtt91<fKeV%JihnU?%Vbkx7}FlxfNM%7i+^
zzZGYy<Pv7)v{*<BY|9s}R!p-lPs;41T+5D<az#?!T;B4$Y4LEbRL<g6Nx51%h1V!K
zb((d3Qf^4f{G=>M%8f~xL;FdY$NitltTR4*n#EAe<yjypB+LQgR27n}d#93kYf|n`
z3i)kGxn0#RZQke(C3h;`rIDm2<4L5Edy{e>eMrh?9nt+sc_=9lD_@k92b3)4Kq^{3
zsJKLN=KA=3gG;rR!(W$_Wy+T;u25u?N0RbrQdVm5F~!x2k1IZrlqZ$Y!c$6CDL$Q)
zXOvv0v3*wg8bxY8mz3wrd~H%*P+t0c06&_xo-?i<viFygvLPuOlk&1kURB(r_=+MQ
z7f|gr<*zHU_=b|R`SQ1<yq%O9DXE!~carih1DKQ_lJZ_s-cQO0N%=4-{L0Lhq<r*v
z)vPDt?`yEQmBpm&P0GHce9X1Oxl79Kq<oSTeq(EUQg$Te)1-XHAWw@w@AbLLOP}A`
z$&{{H$&dalTwcZRaPf+W@(t509$#?lOUmUn(rcDi5x-2zS4sIMDc^F8)2y$P@m(tQ
z`2{Q9K9rh&r<RZ4AEebt?@!8)Ny#O}P71$a@e@~seh}p6r2LYUUz74%QvOcLfu#JN
zls}Tf|H=B3D^cHNLH-jTuxk}Lh5sbwU)9MfvPnh>)netj)wEzgUhO2sO^TNke(WR9
zRW`V?lPP{uf}|KJ;fMKn6p}FsnU>Sr7L}9mh^TWQ{?MM8l0+)5O{U@`Or_$d$1L)p
z3LDl+$w4VON~;c5q|RX}shyHTv{*;6E-fhGvl=S!sHesHDJlKk2qlN7<nw9P5h*!R
zNdrYnSk+LKNsd->jN-8=X;hZ;2JN_%ASJ6)@@z^ZCC8^^LP{p4q)AFnNXfY=IWHwm
zQ*vTT+NPvkO8%N=8Pns}Wj9Mna}Fvc<R_=3jS})xQqn^Csb$G&N?IzmO3CR;&QNTv
z*tk#pif<lgYLQ)#w@=C0De0(^4k<ZHNu}bE>Od#u)a<O}9QBRGE@gRFCEXO8Pq)rb
z$ptAHk`lgxyL(D5RQbgzxu~qqH+8eQIek<QmGmsjdnxIil0HiMmgW6Y(qH)i#erq{
zpp*<Q^A76j(3A{Q$?%knP*RnW@nxNKN~)EQR2)^7TPYb`=3`Paw#>(|Uo|^gaZ*Yq
zr({`5mZxM2N0*ZMDOr$`X(^eWk}Fek6?21{DY-Nym!*WmoT;WRNeKtbB5P@CR!S~c
z35&CpT%kxEhUMy%T$7TURdQ`gu1m=cYUKKIleoG1b7M;8sIXLZld93?+_L|-q-0*1
zv&pR~xh*A2RPy<>QMae$j+ETVRMe~>Qh1lTeYfI0igbHnO72yDpW^+BixeMFq|V}$
zJXq#@8T&&idAMwugIXFdmUwh4Qo{GWKb4YIDS0F%kEUcL-I#8@GHujjN}io=@pwEX
zPjID7x1LmdM}<$P<Qa9IdByz9ji}^7n`=_?oF>~lDS196Yg4j0C2y(Zg_OLigiY3^
zWPM6rR0}Vq<mGZ?HYnMclAY77-=<rewD?N7)|g?vrWP33*HiL_a(4Qrj)-PC5aQd4
zbeNpSyIOot@qNWDiXSL`sJK;;(b)F?sQL~lDT?lU!gf!0PfzTg9>T(25XmgCNLqpf
z5hNo50=o;XNX|KDPy|F#Fpxosl10P>q9_Io<RA)25Xm42lK!{feDnRk-#K;ex%KMR
ztMsb6r>Cnr1wXPmCT^PeDFr_>>cdYy{E~vbbS)qH`LK`GOF>vgM8$y=9Hb{J=%nCK
z3J#|rpMv}fj-=pd3L*-k3XY}V*A#F^n4;i#3Vut$^%UGl!S5+Jk%B){a6SbmIbJC^
zBWgTOfy#fRAl}bCEfOA!M9J9{@ZhX-BH<1@O8!d0g%n&C38NQ<TuK4=7c<IGwV!)M
zgjWTxrJ!X$FC+2q6wt_>6#Scln<=;@3jYY+P64+wQ>|A&ms=z6a^V$uZUy&+JWN3@
z1rLNL>PF>B{oHwCJdc9Bir3y0!Gv&e9#>W1Q=lo(6$BInCDl;C4Q{3azYy}ou1{tU
zDF};@JM4IX29pw-XPIOva3s5}fLjG)3b^B*8HsTPiDNwu<Z%lqD5#*if=mUe3JNJG
zp`fIK!V1z9JgR_MprD9?M-*_gDot_YXHf;*o6IDhDo{-1AIo;d;-a6ZUMVR(T|s#T
zJe8uff-(xqim;qWSV;yZRZvh-!D9+4OZE)GN`l;M&I>e;J7c+3q#-PwysFr#rhx5b
zw1$G33R)^?rJ$B{NMli8O=?T7#|7&ss4JwNAT!oi@PzONf=?#p4TUtKeIY#kjLJ<E
zG*!?{EVmG3{hJHfEW^r^3Z7QbTEVjl+ADY_sneExQ(7B|rrhziF1AxZlIVdB(h81X
zM^VTU%ueK$Bbz!aa20G-@R5S&6g;nBf`W+(x==?!Z_(^3_3SCUTOu#d|54C`6&6?L
zffX#Smn6}v`zYwEpr3;N3dSfHt6+eFfeMBz7@=U0g24)SZqiVNH)-Ied*&tbQ#&NX
zlJ*mhJyOAFk&H^psrHG?j(5}Rj^ns*N+TJsfXGmDQ`#g2lR3T$<|vq=V5)-Y3T8<5
z7X=f|e@XZ>1urKp^8kUF3SLoor;67V%u>7=%EK966$MV}*OHohWkeEtR5>nl6}+k7
zeFbY3yrtl61@9?XuHYR7^As#luuwA2SHM=}?eF!~`F`#q1&bB1neQrCA__|tEEB@c
z`R}|=B(Z;1C|D_}YXny*;6CWp!fVTLCoEHQor3iWwkW8Y$K9Y{qk<2le;D1QV6(`{
z*<FSDyCe*((uZOyp}9@L#|jQ}Ayx1R3sUfdf;|d8Q}8*br-I!Iwu}Ckf;$Ai5TvP{
zLfGD~l9F9Qz7}K+x&QrJ1;kW->FIFxcM7WXcfVKAPCDmD1wSd+&wBFY9|gb2jOL*P
zd+9>`T?Q6G+$YvZ4k$Rt^<VT8Cmt{(SD~X^{1xO@kw?X^T>KSWQ*d3uZwh`_a8|)N
z1t%1olu1pSrxg65;Ix7>92c1#Jp6&DK~m0C21fr>a9+VB1(!wmmmuBvf&!lDaZ!+j
z%83!YqTs6N@UX1^j_C~rH<LF1PELVa3b@+;BY0czjv$5qD!7~E_jnZ${vauNC?uB(
zt|U~>tIFc9LQ%a1mNP<C!R;pj6+sm~6`DkK6{ZTm3PYk)AZN7`TfB+nY)(joY#^gi
z6_$$8D#oa=Rm4=(Qc+ulqav=NsES8a<Ws#13M5y46$MljRFSIk$C_usb2%Y})&I;~
z3OR+j<)5U8B=J&3&QMH6DHWwvJSy_yf+Yk?3Q~u@L@cACvWhAy%Bm=*B3(s!6&Xn#
zc01K7sHm8fFj`5)V=5Ax#~Ee6(N0wrnJQ|is3w}#llrgpcg>!uyqfR^pr*>-(cTdR
zk4x$^D%z;1qoS^gdMfIxXeII|R5TFMM8%Urn75INhQfJc!25)!Sk=Cr85$=QnyP3f
zyt!aY!4`rm`n$Pg6rPr7Ye80n)o!bzor+#6daHO=MSB&`sd!#R2NfMft&@r@AvuD~
zlFhNZ-<b^|XY)I=t6R9Pq;lF)$WiDb(QcCT0*6%y)p!fU^HRF2=#jM6Q}xy&=IW!O
zuZlq;?<d$_kd9Qng{Lq;q5}oD_jd=Y7@}gRieVxdsbaX0#0pRS5h@PLe5YiT3TB~j
ztcr0ecBuG5#dsAHR4h~Ru8N5&Cei0r%uz8}#S|6ORJ^QWs@UYwkuM2(k^RGi@_0RM
z>ryyfgs-WXtzw3XnG$_P@KwQCDtO`w%Vpp}E3b=?*9As-`U-KbNZwNMwu(1pOj&Kp
z-%&A7#bV)%&KI&!#R4H5_Z$7)Mafi7fh9@4R7GM&yr*Khimi;QSfOGieNV+E6+AC!
zm5TROtW~jE#Tv<&IIf2$tE`jg`lL19M{#sENR&60ALns5tJoq@@(<X$y{S5nS4!%W
zZ&UHHiqAyC5ocA2pNIo|s(N>)jDF5OPp`XO^{z4uym0JP@uiA8D*jdRm5N;|&eOPx
zuT^}b;<$?6RP0vqt%_e%>{aoditknYsNyFTKZsfO(jJbuoH9zzYBT&S-j$ei6z)^8
zpL4mrdrag9R2*U!6$fQvCUPASel*!4{{WZzOk(&|1?7zXuHuC1-K_FraZ<%86=zkP
zQ}IVK*J(PZ%!M;a2@k~MLcxnTXUCr$**q@i&IMU!uc)}H;-YZg&RtS*Ik~(P9pGM5
zab3kfV&?`gMu)R+s@|RR-@+N?4L0j`OQMwD7R|)!bXUba6#*ZDKHOLFfD5?Kn@tZ@
z<nnoLrU>TdLv$f|1X(dAr3fcUxRWYTpCB8hCsPd{{K8GaM7bd!!ah{+p`s5FAEG{_
z`2Zg*A8a2AizcrxF(F*@S&Ab(E||}U{6Y!{78ImTst<*dyqVm4v$!H6dBlfeJ`@$s
zYc4Or?21QyDDIQKlGA%ADd9s&k(5fxOZ!kJ$;<jsPI!7!Qr-ui(9Vo3J;R4yV!x6P
zkNHs9hbj{7;6qg(s`=1dqSXbdU)P6B;WY$n3f2;=El8cmh1B5yoz7yEp`J+U`|yMh
z4SaY~qK%XK4Si^o<WEW661kfA&@?G;#&QSz$75TFu%%!tAD$M{+J|R^v=MyPhqgj!
zs+|vs&l!-n7a^^66q4mbwvZgbE<SV;(pk_IWUl9gJnuugta4uUMAFrVZbG^X_7G%h
zPaj%IZF`HPtb#s5rtxiR9|rjFo)61?80f<wA71uhx(|bW7~;buA13=S)Q4d{jPhZ$
z55s*J;lm#ry}h?1>2<dY(zVE!zF3C^k?^!_;us$<0hwb3#|e)2VS<o}f{7itQ+$}}
z!%IF)6I0B~6ZKyd1$rIBe+|y?VWtnS`|ySjulO)abYAn}RUx%{rY4T!=lM&_GFyaP
zk>>a?*N6E&Eb!q?cDoNO_iah#nWBkfjo<O1&j5EGyJ%Bd!U!!a^kJ!}kuUOLu@6gp
z;BPk`F~?>SDPQKpyR46#OUa{$R`{^ehtGWY+=o>@toC7}51V{g<HP$tto31?53DEk
z6T6JpC+)M)4Z>&07;X0910S~f@R8IuQKc<De3;Z<F~F<&HXlCm;Zq+zW+zCid0JYc
z^Aq;B`>?}@-9CKl!xxhGOCP@SVW)787n`ulhp#32jg&<RTgSGLu&Uqr@VyT|_^`(Z
zTBccsL^T*ql=U+o{;*^Hc-xP?eE38AI=<AgpA(0@q2Y542Yooi-qTP=!(kte_z>5S
zPs33kj`?uchkHK!>cep#uJ~}(hu?hOBmGl!Gar8U;e-z-MZ$f%l>bzsAn~*hXM8yC
z!(Tp}_2HZkf6_&}rRI~3nN*l9`&fw=BrheG=wr{j7X=w*xa`CB0iMlkK3o^IJ3idt
zx+MG`!F>bVn@J0|BriWscRQJJqih%bSE96b--ic21T+LSJY=V7$g3em^O}=eLmnY)
z1zW_bChDMQFf=Udma1wvF~5#agC<1RF#2X%;yZej`z0@HYickbbY>kwBB7CphOqEN
zlcO3e4QwWpYz;9Dj-)2~Em3ZM4Fxom(okBG3Th~-;Smj~8VZS|um%W86XZr(S}US~
z?Pc4!Nw%2COA0dSQ4PhDyo3-|mGx&*8HrZZkfEWh@Nyc`g_PH@^I&!b;j^SeSjkEn
z9@CJip@zsS3s%)oMF_isHW{jEs4kLmlCh?6%4-X$CCF+gT3uH|Jq<%N4AoFy!xI`h
zYRJ;iK*N(7nrmpGp`nIG8k%U}CTlOqR`;hgG!_X>QP`AR<jpkvF~B8nsiBpIXEe0Y
z@N_b7Vk>&<gibvBp8;-L4eceByq$(;HIQ)QGqHonS##RY){vv2yM`VbI%(*vA(6@?
zSHp8`lqj=k?(XlRp{oXNbABON?&d&dH<4%qy&dj7HT2RjSW<gy=%b;ZhW-*QIMD5z
z%#|+612ha2iEp*H)qRlgCkA@0W<%KgVH$>Oct^uL4I?y+)G$rM%Nj<}Q8i4^Fj0yg
zqhXwe@yvcOd#pG%o5tZ_cvcEx#U^Q(s^LWqlQm4y&|6BOoC+-HCCQuM6i(MLL&F;y
z=4hCy;T5UaYf={X-OtkSss?7ECPRYE*6_L*Vf{H%Sj1cnZ)$i;^3w9#8ltg6+`OMC
zlx>`^VS$DX^l%LeH7wGwTEiL*i#06K@UDjUq@L7Y%0?x8O!k=5$Z`!UG^}F72fA#_
zN-3IWCQzACB8_k!y)TtqE4B4J^S5g2G_>83cfH8DseF@$%^J39_(;PC$rgR6VM~%z
znH|fuf_b-T_*lay8oVP2;@O{SpdF^Nb+1b|Zr8Ab?yaMtjxRXTxEAS1;o_{}D-CBf
zoYk;P!`B-2YdE0c8_oMu@;eRR)A#mg@7D0G5dIguVxap2U9oNEFPuJ?)A$w0JsN&w
ztu*}1a^)kKpAU5TO-5Sa8=-qO>|>`j^}c<^*RT(2IHcisE^A!>SzMpWM>QN{FA1kU
zCBM>F4`d(L@SEnnyURZ}`KLU;llA0EA8j(6<ZKfCQ=-6JESH+6HEiltdGM~Ba~l5C
za6`l2^vPb8x%23}hQBmi;9{uZvW6?{*!|h>?aN`f#6@PMFR{_%s)p<A<kMNjdsn{3
zb*y(~at7`Xy{X}rhWi>GaKeh&I~x8Ka$ArecE2k<!%xyDKJtD~I*k>6s3DgQHX)Dh
z)rW*3w~pNW@{#au{QkQRRYz$ZWpwy-Xgc!iD4;{vVelH-r*cGxUxz6?DAocxiX8D8
zP9xK9q=h6YObaj8IWW+Bb3UrW5}~bouhu)lV>%WFy**8F5#|%TFwh$>)~%q9G#${9
zs-uvO!ct*&Ad?b3Swu%s9gpfLE=iB*D5iVf!p#drZIFvWZVBDn6u?kY2Vc15HZJl~
zI_NDVWp$L(QA0;f7OkVaj;cDU>8PNiqK?Ws?51wTIXM}O&dGU9_r|o6?u{4ai6mkb
zDU|OFSJ%;1>ZUYuIbN9}=Uyc0*J2Ta-1<6d>v&vhTSv$CzJ==Po&(p_!A(gdtkN*q
zXZM7Z(m?mNU-1R?MmnBiKkJyPqp^-AI=bk1K}S=nZOUq)qos~!!kg>f#;C!vL8+CF
zr*%B5qrHySI-b!nw?m<JI@;*qi!{vGR<e*&!YBuV--hd;qa!;_M`s;bI<j?ei${*s
zkUD%1g!SQWAoegfE4ezJlV&oByOt<?UI({AbBMd@=%!<cj-fib>*%3lfR2GW-@ZdH
z9es54)x8ZDtp>Thb?p8yr~e=?`@`#L+@it{2=>!K?5~4nXAE*z4s!XD!yp}l+3L;S
z#~c}L&MoRXhU=Ihl^mgCq*P|C?!6H)ip{@}HAZl>Ncag?$~j5L=@`!r{38!b<OVC^
zL>-gp17;>0%jjf!`=bT9HRDAcFX@=4W4?}QI$qZCijG-2rb|K8q_fS?!5vi$Glfvd
z@G8en#~Y&dnvU5*_zlxZvVnSzMBmiGEOUiZ{+1BteOt&oG94IQz-gjmgN}_l7U@{5
zW4VqMqO(NDyF!-gSSExMgjo_FDt(VGE%Rlij#WC==y;zUm8>L-re;Eat?+d^xK)I2
zZLOCmQ^_|`U&kjpKIM4nptpY{{<B5LhhmC$whG~<V|Kze9UpT&m(ipJlFvkcyZG4W
zI{$uk8R&JK#XEQvkm*1*O1{#uO9#J9eaOJq95Onsfi?zq>-bj3104@pLml7iIIZK1
zjvwf3I`(lf(ea~>pLG1J;}_c8l9k!eW#ER#U!^8o#`n_kWb_Z{IH=>ej^AX0AL7cO
z<CyTnf=8rEoZ7#N`*9P&<5`*XLsppNcTVA~%u_l}2q8bIqh3?*Ej98#M99VPtd4U!
zuIae0<4+yubzIVMSyESaO{L~vIxZwFTom&6AeVA37woqyG6YvSiDW=;==fX5zdC+D
zkbP6fEgg60lScMGT%WI`Q77TIw<Xuphf_I8*`IfH+@tUDlh85*B>WgCF_(ed2Fe?#
zU?7iyyaoyzNHdUPKrs+CU>Q&i_zVOMgbZ)*l4ig#;5WQEr5oP+LL??LKIH}&^=ES%
zBZYiJjNheY{lf-$CP2hM=^NfxWf|Bfwt<*|{00gbpu{l{H~5!|OC4S~@(HJ$5?Ux|
zc>Y;PFx9{}vQw23t`9I!#K5BliW}Y@tD-cx**iOeO@72cG0DRBmuRYlfs(9)fieb4
zk$1>schLv~Nm&Es3~whU<qYYfz^(n{{0w(R0~rSD8+gJ%B?FJq0zc_%pfa0gAXAk2
zo_|#X)eUcNDRWhmqN7`L7-bPPM2GSz+<<SOwt>eD)G@$lJzC&W)2(3LWL_>!tO;{9
zFz}=SHs@&r4GlCh(8NGfG4+&SV=0l-En%71%s>kREe$j`!1}Xk6w*S1v|{fa@CK+g
zM{2Ok9^?MOwg%c6c*Vdh1J4?0&zc(;ZlHsKjt2S|=xZR$K(>MB4RkS(BTefh$erxG
z5#rUbvjJBm&(TlBZ|Rd<5??UT)j&5%YO^_wOKx`qJq`3S(8B<ur3QPObjldsoexQG
z10;1t*w4T~1A|1ZzkvZl5^94D3^6e7#~j`!4K=_ou_ivo%I}`j$Or=?rNoyEj509V
zz$A%|5gcb=yn(SYh`iEqDB0B$3`~?%PAhH`;MY_soXi0-FqK9Wm!EHb(EuAu&QH5C
zb((>fCChYn+F*BvaNd~B6q5Md^Q#74Gx&}HHXE32;B~gnz;Xj`(Af+uGO*adTmx?!
zoWfW@onDpS5`0JSZTiNIGzwYVJj1(R;<~z!ULkenwK8!w3-{-8MdC)hB?gvC>C|5)
z<X!1cMpqbEX<(g!^#(pmaaS2wW8i%Qt0hVaJ9aHw+N<)c>)uYf$X##e6i1M_!NAsL
z-X_Y8LL%K#KQOR`tFeJ^4SYzUfiDc~H1LsuZ3YT;%-+tyGVqD;PXz}Lb{Uw&@R>+H
z=Pby|Oh|S}(f>(JalbV1m4RK-1n%GbM#$HKGY5P3?X1;z65V6qM<L%E_(4eG!upee
zpCx+Gz%K^&8rUyUcEvse>=qIRHv9lbM=se336l;RIAY+afnx?<^y4Kzel>91KwCfB
z`SF{9-#NJqTrhCLz)3Dv2F}q}zo~ah@U($H*u6bc`6&tt&xnwp3?pawQ=;cZfseB&
zq2@&cmkc!U<4Hd*8@R%?%a2F>xN6{<x2PiM$91|NS7tw|W@rCxczDmip26;_!R}21
z#9Idb5kh|3z?~%jSIAw#0UfjXqWFEu{=mRPAvBfCkKAH8k6>Ow$}bLf72&F&Pf!!o
z1r0%J`h}PY;Se_@B%dEFjv*{0;zv}7C1?xA1RX(Y#{DQY#3jk^M*%+yiX8~DlvE*w
z{3x81r1?>Qh|45~B7PJV`6J2H7DL?Pew6T|vL99aC@J#tQWo_~`B6HlS;mjD!pjM!
z3-X2egyjl;R7`4S2&v@9V@XM`A?^g$L87(Acr`z&OEfd7Q$t8iKWZf<i-)+6CwUz|
z>I$!yl++jUgdj()p&yO>ct)a62{smFM<r_5#E+&TVUwHrL2NGALa?P^D?gqV(pr%H
zOf|Nmjbwa(i2JM`?fn?$$7wUOgC8CJ=<7#6KeGJD_M@90-Tlb%qmv)5AJ6%bcsakb
z-+O_dw>^A0|9L;U`0;`tU1{@57T@G2@`Zn<5)-6{A3go(?MEL!_+o!AzZV##Ce;{7
z7%1#d1wZc%vWNQd#rs*WWo8cagGYOvsgpU#kHLPBFbwhYn1w1NT~3tk(4p#Zss9Kz
zgkJ#@9OcJozxRV^j2{z4GFFfZ<AjX&V}cOw4yJID@X3Nx1Sy>A2iI5<Zf}|9_x8oS
z;m6B<O!s?xYG$wwes3eyOo_fCNck*3UKRfR5O259Y~io_!6@a#Ibw>|<_dX}tIZH^
zf6zOAEL)P!kk7<CKj!<fz>kG~C?-@BJkE5HAM5?t;KyRW7iCx?WGOTH@viXq{K)mX
zccwJMaz9pxaHZfX!PSCHT_fau!L@#@6T&lonY7W5O@41L%tJpm`|*JvANjG(k1c+_
z{gU~i;N>CSQ4(8)lkgO^kNx<>k7I0(AD{a185`@z4}N^kCTNuyb_v-oxI^#@KXwZF
zQjj`d3EB3<<6jH;CMn-7<Xb<!OG@$#b@#AJ`KmMQ_v6PT|H+S^h5wS2>=m+)86Q@n
z@&Sn+Or{><00}=Lcr+=mbwBGkyE?VfAM`F>1%xyDyO0xXxR6tVeQQ)=(iuO_O7ylL
z=lu9n_;tbaf|vdHO9+)O2)XFTrKBWmxL1<=s*r1bJn~ODDl^;=$=`xE1#b!d!!>Pm
z`Gn3Lk^C!oSMZ+TeZdEU&QLd(xKnNuc}#CW>EU@zq?qW}HnZqZclJW>fws>CXP;(5
zH}T{AI<;C9GK4rH_nR;!8ZZ$vQGci#G!ZfpHu2`M9O_#_A||3q3FX(e`fSNged^@b
z-MB<M40Xx#n<!wSpovt|`?FxHi9#j{o5(TI$wZn7n8-H0X;{QWQ4>#?Xkg+I6U9tq
zn5bmpQ4_^YlrmA;#Gs*W2@@qvY+0N>d8j*YsJrRitbe=KDPy9niSi~YNYeVDZaEWQ
z4RzB6NnTiyb!eztk)1Ql%ffJFsQZ|S$|h==sBNN(iK-^5o5(a#%|t?{lqfsHTozYD
zgf)h_HHGxb$YHsUo1o=7ChD4KIm~@-m^)^eTaR5Q1yO-f)|u9xG||vRYZK3yXk_9k
z6U|ICH$gj%#b8qtO;{6tdT)hSy$QkpWNcxgm5HZKj9Q%4(!`u$?uKFRj$tm1?;qwq
zbup`riMA%%nRr&R(+-np<kB#=y;$x*HyG|Up`$3Uh%6yg`*DT0E2^{UT`9Vn=qAJ!
zd`|Fr!7hR?m}ujxPR;HndYE|E#Cs-svI!;@nE0?r-QFhpn3!T>DmybfyRV5MCWg`j
zO>moAf58EQ0|hA@WMXiVGYcidBs$K-aC**g@0MVMiIHM(l;CJV%Ey=(D?G1U_{Jyg
zOb{~B#H6HTGDmi}OXDw!WR~Dd$<%2=UN$jZ$PB@mg0BcNV}s%DtHNIsoGtjei8nYR
z!rvC0D@gq}O}v%l2dbn{@($O3k<9-e`9c$mOk7)<Q{cOt#U_?;tcSZxMY2o~aqsB?
zak+^VCO$B+?u&veO{_Ap-oyqIt4;5r;`=7nnpnfhRXvk|l68E4KDS5sD3515B=|;A
z-b}9$!h>0uN*(6qKD#X(L?Pr|hr1t{*k<Bm6Q7tkX5v>9pPKm0#4jfHn)uwrM^#e3
zFtL+aOzdEz9(LjZvoXCh@k`D-zP)eaXA@Tnd;7JAD4DxVd`&kV?tUY<Tku=K?*zXW
z{6TP!AeDb)4-a=qJ{ayDa*K|ckM~a9XJWsJLnaQJIADVEgC^!SF2sT^<jy3%7U+D$
z#8F9NJu7|J>6_v1@59|Cm8%~&@tcW@CN7!y-NXqK=S=*`HPgf?6KADeH24QSIhR-S
z(<YSanP&uZjc~0IUNuULaPK3nPt}z3CjK&UAz2V72%mSIDqWB|mrY#dAaYVvO}WAu
zDmO)Y+oxPNaYLrkceyjmzMNHKgv(sFO#H+7VqvI-+a~UCtV7rm!oMc&niwC#gb?nT
zxNl-&0FwfEVB#UyoB(DmNY52O?f@zU@K^wO0>~Rcz5wzEkP?6rKrDd1M@p#y_yX_;
zU<RNCkga6vg8bp!bcD+dSw_Hn9zuB_fM5Wj0Kx(95TS!Umw2X;8wns9@Qx3%1-T{A
z5(Pd>=aV8nu^~DE?`|y~@cxqMKEj<m!YvR$!2n7GP%_}X+mISSS^x-mFQXO`Nnut=
z-ach&kpTFqzG49sm83^lCHZbLk@80+wRiyhIuE0z0w^tZ$_IETfm=qhlnbD&L_ZOo
zbP>)U;e7z8LI4#-pGg@aXC1ghp>hCK0%#mS6Y0#V0aOd1y6`O{+{^%K1W=p$0qhy!
z{$OU-WHkbO*y!%oU3UJAB00o50n`uRi2&+KMoQ`hKxL*j2;j*88V1lvk|<{?OCfnm
zc!53z6Goa!w7Fn2LCR_5><G6-0OTaC0(d%r)&V>dK)(R`2hb*fwgEgJK$ig8iCV`1
zvV=TKKN;b+r!xfI4gqwX=T(&pc($Z=4j_l_G15&R>2?Z$$W)f%2JoCHkW={uW(=U0
z)ThZvw;MZZq}zj?%o0bs<jh6v8Ne8c_70$r==5ceQ4%aPcci;%q&pyhf%F`)!z_aW
z7#_fg00svzB!IIc-Jy~+EP#h2-F&0milaQsBc&VJ31b2nmE@y^FtzC@mwa3R;{zah
zVU#-|*>7V<xs&OK0qhRo+W@8p@L~XO1@JcgCxB@Iyc)o30q@4+<p5?1nJzek@}BP8
zQ7-WnS`#7nr&q|A!#jWP=0AYB0q@v>*8|>9hBxTIa@fM001^iUQ21uR+bkdE?%)9C
z1+azwV`a||U_k)O16UF8?!FcVurz>W0W1n&u}GE#z`H3Xy+6vkm3o&>HPlVqRx$dX
z=xDmTGJsV9tPNmY0INmlWf8JQaK|V&DmQZL1K1#v&4Rq&+bCp{Aa4Z|#eF~z(Y+Es
z3}9;j9|f>2fX@Q>Jb;fy^Hah7qufsdn7t^SnhdnIJ%Aknd>O!30bG_kQ~pH&J4K(I
z%DaR!^&8RoIvGun?*jNffctb*jwu}`fK%*n>PX+RCl3VhlklIDl3xPYo8<e1?B}{S
z+WTF`a8M+Nh%#^--y;DWP4Z&_{3`so;BSJz3!V_9{>cFB(cW*j(*c|jYd7hi0i0v~
zMd!}|&I`FHSaP)cR{$4;Cyu|UHQGCc<B~{tp2L*@uF@amG=pngGev$w@NcotpNgz`
ztI_VQ0R9Q!b^vz*xGPDN|10FYp6w>vcuyq!mHIG%TtV~*p=SuWgUA!ahe2!&B5x2W
zLG%rxUl2+VY7jMos2PMW2rY=xL6iwX55fp~{+||vKL|63co6x52n2a9Q)WakC>Rn9
z3o?mWqCr>^wFR9ZVnUci1!^Xg^9PYCMNn8k6bcGbxsVXb3n!H!Mv4ScG>AunC>BKV
zAWDeZqe=UTQc8-jRMJACEMnOp$^}t5h$=yEVx|jL6t(g}RQSL889`JM$z%UlUNu>t
zYRQ^c7llkgR-jf8wS&kGA}5H)gQyck(;%8jYF(*kgCOc9ZPpj^M6&)*2GLL?jRYGD
zJ|!ix{!JvxA`+o_5KjluI*1m@nzRg}mFQ5JUH427ZGz|^oYA&Io(-a1QbIfJg_BUB
zqhOX`!a}DYI@5ooqp09Y(hGvm2|h2_MUX}~zFmXpCeiMK%#|?SQ=+|s=q;qr|D^U0
zVn7gY2k}l21A`b8#N;5R1Ti>>Awi4{Vq6eB)Mcn-85zVdDQI}o!iZ$=v8+)d94$B|
zDIYIU){RD}GeM#g1t%qSrb={H5U&RDVh}G$bXpKIq^y@E%DmH)qdzk#c|{1@_?nP8
zg0qvUuLtpl@I-&k6>D!MQ{PHjn-|1<5v~YgK{9n|knc-)Gi8xT77H#(rX~z73*ud|
z$-2EKNz0QhS{cNuAXW#lM&z4<ct4qUy^ytn>jY_SgOH7ai6Pr8`~$%)f-HqeA8|Oi
zR)nC1@Np2I1o2xCzX$PY5T6CHJBV+C_*`oBWwLJDCHsybzDU~HDTL*6T)q;%OYrL;
zz7dkB!*@Y^AH+dX`yq%u$y`4QVSRoH;-@74IoY3kgV-m+{XrZ^W=T|@cu1@r4&q1<
zM<w;wq=jQi3&)cZR^vnvCxf^a#PuLfF>eqTlc}eJ_*3{9!Lx$r1QYc?FZ?gT3xbJi
zu+^6&dO3(IN%>VF%y=V+zk|3R!~>Ds6ucvND~NxD(9Z2-ZOQ)?;oTtaB~xkVp|q5#
zc|+a=&n1{U<T+IyK?+kuNTLW)1({b5!3g2;5bA{B55WwfbO>ca2!s#}p->2gLkK05
zLvVzILx_YB6>bUI$x>J%i(rU{P(YH%^9jix`p?yYl7b<mCQ}nx(n5GdBnWw~LY*QK
zEh<QzVj(;#ytrUV!4iUOMJXZ7Ma{AylnbG92vtHzPbx5}d<Ydns3?+3f*Jpl>#_gg
zG)VobAygA#b-@~fng7#@njzE*p|;4GC6TLc2=zk93L!g$`XM|K!qXwN4xxc$Y%a=A
zhR`sCMj<>U(WZipLuisT#nKbjNSY=4wuPip(o#q(LALjqkawA5cvd8BLTD?bo#1~>
zwU=lI!H$9~A}54SA#@iD)a)EW7b(t7=6z1c^GW>|WOTYpv|Cb#c32HopjQaJLl_jo
z@X_9*<~|_|2!Y4-^bMh3$a}}Ef5<zJng`#J^L#nJPc<;)y#>c#i{n<89UQ`t5Qc^@
zECfbJg)o|?gpUYeWC+toyOdvl$5S37@^OM=6MS{qWux6sMQ38jd*Oudmah>qDTK)(
zObKCX2rq{4cF21O`BDheLYONGFVlDkvqE?^gc%{s6on(B-B&{1+n!Wjc*y$>6hGYa
zS_rcxm2XJC9>N>K5i2w&glnVS1X7dyO-bT6dfwt}3V3fdzZ1f|5ax%lAcSQhyc@#8
z5EhBrQpx^at<1#|T_VUVloSrQ{IHS7Ls%Zd3Q1DOxGOmp?XvlnGT-rDC499Yg;ah&
zgtZ~8W6yB&yWo1k4T2j5x#x>Jo;C~T`}X{G{9y=NL*9dw>rs3Z!Z!9>7*oRdID}8=
zu3<C|<I@m63*pZY&WG@M2-`zA8p5#<c7*Un2)jf0HiVrad>KO7G43}Zd=<jw3t3->
z(9y~!*(K3@V_b6nA#(kz9Lm27;rkGN4&fJi2xrh3_ea4!eB#l<WoS3X?KQ^zDTMK3
z+^OH>><wXG2!}XcW8D25)^BnS2r~NK824ZZ#BHK^SagmgQ>poD2**P>%OO~j{#yvY
zhj5Dh7Q%@T_DGhKA)FM#ijlCMrzN{N);$x#-(y_LiRZ)ujiilr{|ey(*UvD_FfP*5
zx>Wr~@RHzVK?<)3xf(*oSofOXb-^1nD}?f!LT-i7VyruGtb1Fs+~Fgj5bpBf4==|Y
zkuFuIk9F^d@F0YT?BTuHi^sZK#=5yANeLr&7>wo-%qz%fijZe^WvOBKMDvHS?jK{l
zzw;RMFpRMG&cI8l-Wv#kFoIze4kIm$P#EDboG{{HM8b%My+4BaKdBY=p6J>VZ7k=K
zQ63B9-dOKH-+W=@52K*yP`Lo3<6II3rt%NU)G!K#K|%=;VH63YS{T*CC>q8iVU!M|
zOc=$&cvOm5vNET57$w5otD93Y?ENdsf`}Eyd00wxNXiOf5$Qt8h0$!BS7Ld|$h;MV
zR20kzqmq!v1S<<x5v(dm{chvjvE$s#FlvRts@4djrX<nwBC$;4wWXPlhfzmJ-7xBf
zy+8EXKlMdI@<bR7gg+_RP_U68i=aZ2u=fDAT^P@X(UjE=qdA)yM(Z%1k))P_KaF!+
z38C`SVQd}elC%k<Z5TK6XY-jYqbEejX!|fagwZ987sBWm{?7r7&xMf{Mt0cycQPl8
zPGNKodzW2C?~QY#<GqI-ZrFPOQf$2U6Zm;a<!OXn!{`?F9)^qyqw09K$#}PW7(K%1
zNzc#DWEd=(y##xQ(MJd^^bMn*@cv23fG`Fo`5+;@Z>NPJVrr=1Fu~!1BLqj%MTLwO
zr2d#N#tQE=-aD~yd>8}9yA#5gDD`KZ*@{WR`AeA#<J2(bhp`}x7sGfdj2azMriHx~
z?@+Upm&2GI#*8p#hA}6MxnaB##*ix6v%+{a3=3)GuZe_YHp|UO%eOM?b&-5oEbWaj
zPfp8Z68~O&GmLlWF!!?<-V*Y57_Q?b&66mf1CuYL3x%;ff)x=grc;H{K7tMrEDd8>
z7)>I0qeuC7!+0-@Km@@EmWQz-jNiieJ&cuMtO{dy7~h7mI*c`8d`_?6gbJfT=kzUt
zYr}YYch)*OQfm78FgAoS`ADgaVQdn4#|k-2-7Kje2-fJGO38;@K$aESDmov9v5nr?
zI{o7?K1t@HwNFL=Gm#{6?O->~DgPC_^p|p9h<vBumx8|e>9o8{_}7Bp2v#pumi75A
zjPJwPAI5<&eqe8>r2ouv=ak<gIzI~jB-nFkY1;Wk_+G(%g1LH>r~F_TS4WjUDtJib
zhXs!a@|&J4>zMFg1&<3}z3BDHi7-xvaVv~}!Z<~T<VqgKr7%v1vG7)nKf^qgy7U>*
zKPz}nu+W4u%zIw=UxF6|6a9RdotD4ib<XI98COJpmCM@b^4Ek<@t0=a8^Zq<yeYUi
zm`?faFz$qrH-eN1{tY8%PWcDYCwE2Xp5T4KNS*T3e<(ax#2fM45#)&=QMbhCC=pbd
zQ%;ZI{K87A==cOR!ON|@5)I*gK~r!}Kd*+N2*MH6ilBA`kqDv@l!%~Y1Xct#ONpRx
z1hI(cb@}PW!E`6$`CD8p<P+rRP*OnT1x1o7xNx;sZkp8Xk%;F%5S=0sua}C74sZ6T
zQ%vNKiln$;qHd+A89}889*dw%1aHkLUq0e_U|G>ACzvjn=<N!^D~kOL;h(<ed1mE^
z=XKR1JV?1x6)CH#q*fD5l$9yGhG0!Wx3yRQ$0Mi{!Ba9@>qby7f`$<^ilBbP^G0^a
zKY^N0NQn(3*OP*OFZc3tST~(7&DEeu-tvvb0xK}5d-<jjG-EZSXIfETl3ED1jG$>G
z{pgljG~PObHW9RCwWTc2`9<C?f@ejtc3Opj>&i{9lip}VxsDNJMKC6Uu@PiPkP|`Q
z2>M0PDT2-sbd8`}1a1V+MeuwCT_SjJIM?;Vxo#ZJ_4naiHxK8!eK^;h!?|9N?)~|(
z3f&{<5kapAdPi{gaIS=M&j?0+TAuyS&P-(K69KElap@nyfCz?0Ff4+B5e$l8a0El>
z+lO=gH~asVHJtts!AKg6faU&IZFB_xRijI@_r^sqK7zL+ct>1lLIkg~ql8b4V3Lr@
z5lo3-s(9%P&Vn+P=&mnH^d-S*5xgvf^65h6<X5ORQ<PtcV3rU{UX9?jB%d9@MZH|Y
z+MEd9l(Oau^0*jYZr&13$4-scofpA;PLK$e$gnPmV4<Y46>JneVG$*_YB0*~S{lK-
z5jeNXFN@&RXP$&DC3#PT+ul!K8Nn)!S`^))SRKI{&d?}oNAZ3HYa=kC@JF#Og7p#n
z8o}`hHbk&7g0Ca^CW1{7Y>wd52tJG8197L1Wae%W&-_qutKiMOWjQ;x3IAB|6T!rq
z`FR9v*G@WH!;I}B-y!&gAZI;2{7d0q3GR}awc(++-tLaz+X(hXurGq|r1?Kayfy#(
z2!1J^_Jio}`5!w!3IAE}7r_xS`}Rv`9_ENFtaL!+2L%raCT9H+;YS6J39=4s*KZO0
z9>J{${)ym31Scc-D}oE`a2c1gvYz}Q`lkiYM8NAHXD;)e6Um=~=cQd-hbg}(6Xb@h
zCzmAkvLLU6S48cq;I#;@i#)MD|1JEcV20prx_tz>qR1V^zcQEa3*ME~dxD9!JP`g+
zkTqc)@<csHQls8NkvHl|QUn!2u1J*lglmGjV2x^?+>9a+Mb)Uc9tNWbMe#@!#i9sD
z5s9Ke6a}M*M!oBr6ZOX3lDxKHOpq%!?Zk!W6U;A2pP@W8>bW|i-dGnBd11jcL9Vpa
zDI&b6V4{tWMo~P9@=;WXqD0iYmX(R(Y|+e;qEkw+v>>l3v`|)fIl**6dIIGYquy2K
zv8Z>Y$PjrY!9>4R7G6a#QRiw>R&}X!rsS$2sWk-?{l<no9`$b3o{fS_cbzEeMo~{B
z^`mGI#gkDyA%PW`ey&`@C>ll4GKyAFJQYRvU7p({uyGVk#4;sKqi80)xnK*yH^#e6
zdOC^$UzH<CVCyKJk<>PVZ3Wv2CUUipqJz|@V-%gEaHGhIB3mRmY+4kZgkPLqj;&aC
zy4-V7JRe1uC|*b=QBIxz21dI_(IbijQ5=k-XB54}VSb6CcNBf1_$-Rgr8oLUF)fOh
zqv#h!e~}E}5JWLDih&Xx6vf~uhD0$mieXU<k7E3q^x5ZHPM@E?y{`8HTc5S*Gm51b
zD_d!l=uZ?J9mSX^#zrxY`cX_^DK+YxT9&?kyc=AQ&NrIuob+H$)xpIpO^RZ26jP#@
z8pVrIycETszm?+I2wmP!|7yI;BZxazta?m-=1h-bMieWeSQ*94C|=<tlCowAzA5->
z6t6`wJBrsCjbd&TTVAOC2A%Vl#(5^V*T%c<gpOFA&iA0q+jaPx?yV@^j^dpt=0!0-
ziUm>cCtj;s=|8<!&+L-^<MQ;B73pQ_r}r6HeUaE-9L16-mPWBGiua;e&UrUE^W~fA
z?{YCOoNZ5V`M{^~%Jh4WRxPtAz1E`iRb2cz871!;!Oep2N3oV!qF5irhA1{halU2w
zUrSZzrK<Ufj%#+;DYq(pQxw0fN{^O$EaQ*LAFv@&d>F-6KKbF?jN<VT)qCYG&pA7I
zTE?l|r9Y11_TqFt3@I_e<v;$PN-3*OR^|m_dlWmO_)a8WM6ol9Z-jp-xJ&RWLAy)&
z#{RNj3+GJXWZy0PTfyS<)1PXV@qH9OM6pLCKMMA|n3u{w3IAD;zZxjn%jKwZ`o5@l
zx4B>3&s9ou)jAZ#;V4c<aVm-<QSWZ>H^HM(924?u6vu^>DNy0^tjBmU<xSV`A~_KS
z1GDg^<&P*%M{zNVOEUe>L~)MJBMZn`Sz5UYotJX|isFLExw0{EZDEyY<Z={OI5+cD
zVy!;DQT}QaT^swZaW0%G&nSiQu~lwF@plwAqqr3Xe`FT1@DID1mv0NEh0w;VJ5k(^
z;sLJ$T#Ywo-4(nic&SD~O16&9dB{@QWftq4oy$UQ3ndq1<*}exP%Y%OkU7C+eNseT
zbZwT;f+pM$tkNfy`nrYorPD|f(SU`Zh5Qx@SeUy$>)hK}9hPT>EPiw;Gi)JZA!@<0
zU|W2(sbD?}F-dYP#4VJsnnE>V@0830p$<bq%c~?`zDl#u_@As)3uBgK6%s5g5=Q%O
z$(pKU7Pat*g$5R$v{1~#qZVpes7>BEySRm8YGwrsC0Kb2r7V=TP}V{@3u`_t$ks8G
zvG8%xG?M>fx}=u3K;f7hSrsj0Sg2&-F$>i!RJTxB>d)F%wNNF=pPt}8RV|G|hD-}J
zMP4JBT4Hn|$_pTkEy}el>v0QpEN<A(uFLLC$$mn3J;C~dGwY?Tub0N8JK32H+1nO6
zSZHM7DYo506AP^@Jk6fWli5^yqq+1<Gr@($(prd+{nk=Q<<e=b*`F5Lv1h8KF>s6+
z+E{37;qAAx0_`)2&sv}myVF+H&g^I*%R(;;y)B++m6>g!tA!0}W{!nU7CKvSEj(|b
zi-r216{G^gbHbl~CYzkX7bN5G@@b5Avv^oaCPQ}%J(9eqh3*qv3a9!q`&eMlq)yN3
zYoVWXT7L@zEex_SK%#t|FVVMyEiA6?^>e~=hFKVH;g1+j$1uXeNOn;Sjbj*PVYG#8
z8#y+{SQyJew7paP$5|L}VW)*JE$<c92^MBrc!fn+m}FtH2xm|5zFaWH!c+?{T6oFA
zbdgW9@Un#jGH-NQ7Ljk)%n%{@*a_||3$I#O&%UzonuXaGR#{kW;dKjdSeR#FzJ)oQ
zCKlde&$F?Ya`P7J%_QLqHVp4rU?Ab8leoabLJKP_thBI5<fZ;9$fU)z*`xdtL6W6H
zmRWdL$a{jzlc^uPZL*aA8ee1KeGBU*xNGUs`*PCM%rBbO;r}x0EPOk`+aXBYXkn9u
z4=ikv=5MC|%<|svn$gMqwnN<yE$^4n7lI^Pg?uEqP4HvEPXs>|{LI4VLbeMs*A5Gp
zCwPAVF^t)e_LYTQ79Lo5XyI!M-&pwB!Y>wfvsM;<;?!7@{+)&IE&Rv@XQKN9on)-L
zhl4xTRVRASz`2E%$o*xzc4lQvbg94B!afUsTexXqzl8&I;G^EL!v`%KvT)qOZx#+)
z-hUqq$AlcQa8$_ia)c4(zglQ9(K}x0cMB(2c?*BhjYa2A3ruyZ*EvN$WJihcjD@on
zme=r3ohqbx8P8d`k;fwpG{syb7c5+~aEYBDQFm(26(QFIuL>rz_nhcnm*@?_p%dL(
zT>LHE<1|c7zs*tRr)&l92r~NmME9<6o-E4febMCKPt?z4dt(=}5w?-rMjjh^ZKT);
z+TNR=itW9dZQ3~Wp!3t~>Z&$;Hb@vWA-bR;=oe)sy>c!qV0(WzkSyQeov{<K5w(%e
zMt&RTo_8%9t0%gS4ckV{_Wp@rlppElZ5v5kQj4_DE?{HW(d?o&9<fnSIHRdH3JITa
zG`p~nG#f~!77?;@qD#$UHp(RBkJ>0Myo6xMq`Z`k(!vv2$_g(hn4Z)rZ=-_nih?Yc
z#w*!)%tmD!Rcth|(bPs&8`W$)ZljKkq1&>m+sL$0LwJ>!>eRGR%Z7hGU-)<V-`tNA
zy--^uBz4*Cru&3M>)CuW+^sMCl<6`{0~=4;XlSF6ji+o>KbTFzA{aWepo7_sMc6Um
zHnY*(MjIP#ZM3k_lH+2dwHR+@<J3f#r7+MY^Zql@ea1#$URHQ*7O|a;XXyrOvpR}?
z@WV8!wP$low}VuM)n?u-8}&X+WA;uqI@|cw#&H|2jpuBvu(8s{^ESHJm}p~?jTdZm
zWvAH~Zljxx?lyYc=wo|d+U;S3pJ?o9^OWFhl3o%e(I&Y?Cb@m7V`G4gel{3o;5t0e
z#vn%9XAiM4*!K1gQ(j||x8awmL)j<ne=B>A;{FtHM{u>5=t$O0zN<S*$Y`7I1bSc5
z9cyD8Yu?2Bb}FOeMR|gaeHXmwWIC{oH*LISW2%i8ZA`Z@Lv&uU@iH4FM<PrU3H5nu
z2aBF*;}sjP+IUUm+?UO_qi5OPM(p^}oY}VbsZ)kIHeMJ0Mp8m+bCaC=wcob!j*W#j
z7TK65WzDy}(@Uu4+)7)J<dn3Y<Sw?c%*MMM=t=Gp8%x>ed$SpCw(>S9zbDywGQ)D)
z+q}lD`o0G4Do!yQKiJq~V~vgXZG39uGaGAdth2Gn#%3GqZEUcy(Z<+Go}D49vw8~Q
z*irI<jV<(+-jzQV`yUE^WMiucsm}uzw%NGeq%#AfpNO3LJdosb8{2K{vhlTz9g=aU
zAl1GQvgt<JmqNa>G3t*zJmrH)-`Ln~<9m^REBKutlUj96<zY1>`Q$_GKXQm|925`v
z*~Tv%QycrGA#@df8+tGMzq{8ch66S@G#opAXNS>4bVwPyBVzoh@Py_u8!U(xezWnr
zjno(l#c+c65;k(hkUNG`HvX`2(Z(ekr)}_i;%B+s**If+N0;zC6YiM!ll>+il>dth
zuW;_5r-b{>FK}4@$ST;(y=>!(jaxSU;iRx}&Bjem>ib#OMd1eh`~{cF+@=1v?Y(%<
zz=_lPfcGKq+cxglxM$<O)c;@cy}QDB63FofUK<~9toiX@w&Fnc+yz<WotwGDJTc^r
z!HB^h^V~Zn1|<eH=4}#5oO0ufK~F}tn0F-3mx`A}1v7>~3>Jkk1Y_8FD{by1HxfgL
zH(<Rghhtt@4CItYsk1kmC-B5#aAL?8Lw+f7(<C>$xf_px$O;sQd8Y;yjCt*41Ebwi
z86__qLt4z6{+Tf#h9WVPiy=LRqA@%YLx~tl#=HYDc<E;-7Q>@46pwj3&DsB)syzLm
zlw_xcvN4p7{bzkBBZLQN(BGI;UUV{Is1!p5;S~kBVVtRt#k|93D#uVI22Lmv3ONu}
zg;a~-yGbrXbs<cu5kpN$sue^17@mlsHmejvotSsvPhDv~)yV4!C*gMcc(>FBF+3SV
zLlGug)F=j?4#B|P6I5%$n#8arh7V(C7DMwG2F1KPiWa;RHZvLe#?Uf`RxvysLu>YJ
z3^_486Z4LKZ5P9{LfQzn73A5r?S*uRp(F354|}IopPl3#ESV*8l01{$PBC<5G={Ds
zbYplv<{fGKTnq{2LX+JtBB8L_WG{QS7`n&MBZfAU-4E`h^^BpH<n0|pKT#N;#6BW_
zbF$kn=G~w4Pqt-13<Hz=uGx8T3`6K1?3@^8(=%fj&I-pcHHH^s7)jrYVPXuEVi+Cs
z&VU`uo{3>h%sXb2`|c<37~a<I_!#EZEHoj84U@gQBX%9nw50N6Hf^PEie%(t`Hq!x
zD10e~X)(-*VP*_3$FTl(TJ1lxrb~yn-j~|3W+6sjiD8x`{odC*sq$56%WE9*KeHI6
zkfp!DL5$(u7~YFvZVYe6upowoF}xMS+pJFvf9y?l@1(sWmftv>&5U19cIU^uGws=v
zCnvj$*tan(6$Pd)5i+X1%Up~u6AL8wCcDdHSi$<RfibLPUsX+cKZdn2tcqcE3~Q1W
z3b*lYN@G)89<5n+io5j1I_o6qwSGApW7s5}_TT=Y=H?hapw}JoZlM=Elf6}xdDpi)
zhL2*{MsJVd6A^wB!>2KP7Q>ek{aiZai<oz(x;=&+B1{~(y5?~9&KTH)22;Gsd?iV{
zMDuIGrFYU2b)f#YG4CexJHhW`_#uWptYi!)*~~%iPci(=WhdqxFY^mm4Bpan;0C#S
zh3^yGFL*%kpx`0F!-7Wyj|y@*qJ>|jtmA?#`Zpm;-pmuR|6J*K*=2F3B-&|;dxmp?
zYm|c`4$j5!CodBY@;Epj!(TDni{X9@7h<>=!!>4!;gXCF8-AHyEj@5WT76aeVUL^^
zeuEClMI+`Nd3sY)Z^gWGZdY*oC(qcwUGN_kdL)~tq~77UXXLQE{uQ;mf^_KzV(lR<
zIRF3LR2E9dV6WzNkm4ZdAml)CpgPbU7!G`ncaE#(c!%CoIn>dea^Lf3zXQ`j!13yk
z7{ml742B&<9OQG5p9&5v2XWD)G8JscTd87#B#z@vQhqjtoX5)(3pgm`ps<624pJSj
zUG6?Fl|_8q!y{>q=S3u(o<$uz;-IpFDh`S{c+^2z2jv_TcThr#C?l0;(Ip*}qOjwC
zeub5Gyaj<q5@*JyJ1Fm<qJs<v6{L%p#D3$7!7d`9S|us>F~?g)nM#{g9aM8r(?Kl<
z)g5F?i8UN=x>4bOv9^Q99n^79_kTL=VUN^A9qLI&Hmbhkebk1QpCoaxw=VY8MI#4K
zIrzK^wpT%82TdG&ksmwrqp5>t4pzmnI*#TJULIQY83%0~v~VzEirdn`;wf(G{Pb21
zo@P(ZPj4-_QG{(Bv~%$6)#~%(c-BFC2ge-z>Y#&z`o~K3aM061gZ>#E9b`Gkc96q?
zn5!)=Qo5^yP7XRdIJLZ{>v&JdpA*h^9-eowXIXj|*0xy&!wU}nI$o2cn}aX;@AeBB
z-RV*D(+?gg#az7{d@Rx44*ED4aI#ci2g4nV5Z=#0e<1@LoW4<Npo2j|1`7^zuzG&`
zAr6L0^ut}1sl%{yM8-%5qa4h1@CqHcX~t*=lN?NTFvh`HcCv&0OKOgHFu_6dl{Ft<
zQj>UNan1WHYEEQv$0{?*FvY<%QJ5-7$%_tN5?<>;bw*!K%BKsNkxZJ!`QqSx2WuU?
z=3qAK>0ph6*XcP97CHQ9p(6{OLx*`#{os@N=Q?=P!CN9<=-`_v?%Tqt_Kt&jNj~4f
zf+U}|q$X2qudcb6j_qJ+Qoh2$G6(N+BLC5m3h#-0xgc9d$x7j?99*BBHEOdbVSBg4
z^0Su?Evvcie*P<KYOZsz-oXY38y$S$pvTIZsmt3BYSNJkn;dL*K*E|6w>a3nqUMJV
zw$gJRq_9yRvD22++(tiN;&tqfIvqc8@Tr5(=(-N}$!KopO87*FuN>@hu!C;w;O>-+
zoepl?%YFKKDe^BJ%%78=r0%^uy_%Q)ntj3nJy~kE;9dvc3ZdjX2j3_84?^|`{wVm9
zgP)VBzi<?KWiU&D88wOf9UO3QQ0jBU!BI9!_+df%Vf1DxVsL84)J3^Sjyw2`E_9?+
zvp9ZtaKb@>I10vbl5X$dzJmu2{-7T^xZvQTgEJi5Jf;71koRhVvkpcodC!Stz?Ixp
z+GU(~Q15(YhQBx|T4$X3tMVlWm)Qec1|3{+aFqkZ)lbjW45hDef}`}wDK4?NnQv@H
z^&W*v-*j-x!5s(xI{1f+UY^q1cB=dPXEeN8>b8S>y)!7u>XcEVWXfGe9SodP;ES9L
z1_~c?Ws4&aM=*}uapZ}^7l#%{-Z-xG$(s^~5(m}RmrMx{RoUc|Z8Ow3zt&g!SWX5l
z>v5QIOfFQ~h{GTE%Gwt%u=rtal3mYcbU%@o4L|#H<xm{qI3jUG<FMn1#l1>CIGxvG
z-Xo=$y~V5f9pT6Gl+G7N?X=Qy!9ATa^2c$lomW+=rN&VxjxuqSjiYcJX>mLn$KIbR
z(+J`y5=YTEzWu9m^FA5R^z&-_NF1Y%RVOJH2a6yn9!H5dN=l<j3A%YpkDph&aG}zr
z<6tvM%Egf$N6k2D#Zf+v3UO49qe>hV<H(5Pu{c<(gk~jHqfluE_0<Bb;qa@utHx1H
z%o=+tS7)n_Ro{H5a;CIp!qM8)sUg`ncFL$7$K!E48An6WuM<bTIO@kySEBEot;|x=
z`{w_;WXcn9G>GFs$&@{Ly>Yxh#cdSFQ*ksFO-i)UwP%i0W0KlLgiQsh-<%DPqh%be
z;+Pr7D{*WeT=nTVCdM%-j@EHJ6Gxjk+Qu;~?ybq~xcJBMLL6P=7}PIs`#3tsy(<Mn
zhd4UYtVFW~JH?TcOzqq+FLj>lm)8}^bArzcc1cJ?p<5i?;}}e{673O3pE&x8LQlb7
zg1zIQsYJQ`;us)8M*GJx`}KH2K2U^%1dm^-K19e+!9?ESaTp&|9udb#x`D`<ah#CR
zaf}f%_J8#MA63@@?nJe9xtFG(f{0{Vl9isB&<qB+fD{oBqzNd}xqws)&w^Cxy^El9
z0i_C9kSd^nAcz$N5s@an_pblWntOcj=bLYRYp=7<KK;y@NpcyWd<K&I*dzB44~CMD
z^kA3=!<DmiloT;SnQnbXc`(|8F{)`IiqCitCP<w<nB>8-Yqs3%B=1BIzNwphb)WsN
z2a`Q`PkNw9GHXRznc~6Q*-4qGvlgeWeNg#*52kuh!g3b1PEPY+Iz2_d-a09F>X{s}
zSsu*x-~$ilcre$41s+T}YtQrGLk|{`f8@c)PDv4W_R|IDQ*_-#caxTQ@UaKGWtw@g
zRH`a9^kA#32oFB-V1rB>4??>0sRt`bgn#D2=j1Cq7(XUy49ot)gNo;}gsk#lwFhgx
z`NVCFNB*dIZXs(uSf}!S>A`x%cOOruenoSW2VaxS%Q8fiYctI)#OSzmz-{C|c<`+(
zcJdv>ogREgB0dZLO2_<O=5U7!gU_dar2Z4}XW}o!T|}vK$zj=hJlHEcp^k@i{N|Cr
zuZ}tzp3(5T2XFqTTtY+kiPU}%{_vpd1^a*pr#v|A!JnS=f#;wHhh$yPD|y(1V;&s$
z;D`rDsjT)@{!7dgsVc*=Uq6>Ra5i;9vM{Mh!{pR96$IBENuA+P-lySy4QD+#=fS)y
zsq-G(@ZhFw#U5OgZBPb!Z;PuQ{QP^R%O1>VUrDYj^b~T9`gK{$!?LGe&#Kk4#VrqR
zdyq>*hK4&H^t_lVRWJFs?9v|GlZ~`=%bt~+Rju4irs6*y?2NbYS8F!3LxoHYxi#d~
zaP4wxO?SP{&#ChlQ+YJ3tkO(KKI)Q`Uqg?}DIo<k6x8sjhGH5X(D0y!hcy(@@Q{Yr
zYdM8AjH>0xO|y`OC`s>2_VBJbchX0+^f6Daq8f%jTcO*q>|Onm9t|-KaSfUVU4x-v
z&0+h<{FI*&Obr%^myvzs67!_||Cbv6Sko+^LCkX(vVs~y8YcEhhBdsfJ0)U-Nl^{+
zCwj!R#lJ}&M?==F45`CAH`7>jPpY_v5*kWsD5c>^4b?T2*3xV0F)6XNM~1uh<&320
z`|UCs9+xKkkxFSOr=h%tvKsOn&-%2EQ>|+<OT)B_SrxSO5qHS2Y~dBjD-oX{Rwjx=
z6_TpNY8tk`m|H|SLO-RU_(i+JZM}wukAEp%Q$sBcPfK^bm^`$noNN@er9-MTlk2@<
z*>yG4)9{Ukts3fUXrN)F)LBDA4bN(LO-4jRBMpr;bk@*CLlX_pX=tsXjfUqnG}X{t
zT6EriLBr}|PBRT%Puq)XI$4M9ZhAi9Ei|;$kXgeKpH}HEa;6-xg}0T}p}|wr>A-Gj
zM{KWQ$*}BxXKd-HUkl}WQA0-!m-pM9G_3MCAMe*a?^F`As|G3J6%DUy=*EoV|B_VT
zoc%IAh0HmT>Mj+#V4paX68;|zC(qc%1^W#RZ)zBzVW7-L4R2}aqoJ>co*H_|SZjDh
zbIPB#+aIud*L0*TF^ld`*QcL`{u(6O+bn44#7a#Lr-Pqw-*S+K#M#tP4Z}2u^I*1X
zh=%(P+ZiiU!=>v^r6b&*nQH|3`iCkXe$*MQVT^`_(iRP4HH_0RL&HoB<26js@V<tr
zG8HwvqhYd!<HNEi$q*0Aepl-7huvagr4tA30wltxXn0S9klVwu1*ges8lF8}JP+D(
z3GaKbb&28Gvoy?>nXF-fh7V-Mp0Ve#dxgx=Fqew(?q^dUQvZm!bZv5Ty9%|2XXiR&
z4?k$P7@oaYhDnn@n1+=y!89z@@QH>`HN5<kvrNNs4Ifr-HuO*>Y4T@Zq$JDanohJ(
z<<B%og(d#yG8GTnE2P51v&CnX^rwb(8ordF8J@j{HIX{3WgH3B@U*>N7Wh-n1`Qi!
z@fNBq{3|M(HEbdInz%{BhV!<hjvbyodwBN31}%ke)|_n`Zfdxt;allL4LdY^r{R=_
z(;9Ya_+G;<4ZCIR8s+~%!;i9F26-l2NFAM>lGXH+hMzUuu3h2ROZG3aKg>y`xrRM5
zC>lQBm$g^JZyNs8a8ScO+59#9Fg*K!l(?r^bZ@i$vSUbJ4bK){r+7<As=luBvEkW=
zG#u6-`{z-a!0Rfv&eQVl@a!Wpd&6n+mxg096-Q({Bhvm=M`WL1Stp57sI212e`cN0
za9+a&4R4>xIxCBDMD{u2f#dc?4VN_B(C~MLQ+{zuc81Fuu4uR_yRmdd{i4@3v<+9D
zb;_B!&wfz8LRp}s_}ue5vRU1h&0j-4J-rLbbyq_!#qUW#wg3Dho5OQ?T%QabnaU?O
zNgf?}mGa7n?6e!r`-t}w3lIzHcz{HFBw!&Og>_6Uou~OR`(YhLbad14l8#4o6xC5l
z#}hgp)lp1GaUCUec=Yrg!P4Q?q3KB8v~{9v*M^Q&U6ZDc^NsTe@#*mEi0FvwfS%s-
z2VSv5Is!V%j;s{avG$5B;@LT=z9TDz=^%QHM07_-T!$_7nUiWcGAWnbrxGf!INUd=
za!DO!bUd!3l#bFmE)~fu*JC=yj7%nVd@(0|PZ1?0xpZXdsKDUmbo|slpCrjup1H)o
zqK=W*GDVkM<qBmAR@PBPM?)RY>gYcryQ+>lI-b!{O~;cus_S@4M=fdHj%E_4hLBoL
zO~#)wB3t;T{La%%6^Gi?g&aJdRaZxS9clj^&Fbk$JMU=Lfacs<&XxB0y6;Oh((#;*
z=XLDdmDN}(@NTmvI$q7pC8Vj27j(QRBlV2aOh<Da**e<kXrZH}j@CNb$hdS(KKQf~
z8d<584#5gn?6$i6P_D8W%_At6q_$^piT}nuU9ba9@$9IhlXTP-yR(iiBvP&f>B=Su
zk;cBP;}soKbi60E($QVVa2+FLV(55HM?W2J>v*01J#@UK;|+4j_@+#}YneMoCwoeJ
z!xgswmg=pe@tjmI>D8{uNU1!1boAA+@N!l<>5{Eq%j~aXfR4dBhUgf`ID_N_xG$Z0
z<7%el+7rn$REIt<HB35|)r()x^FjN3!eye4)G=Pi1RbMvjMh<cPHK#faU^4jqBP0O
zCD9HS)m)sY;~gE7RGla5cvpFTKPM&rvMIf<W2%nDI+oCFnvU5zKF~2;22{sPnU+Oz
z`J#F1U&}L#4#Fk)9368dV;yIKj(IvhB%e=*PJ=2hJd^d2wEaxhq`SKKi<{s=8ID1f
z7fAzaJEBOCk9Dk&xvgWVj%CcdT*oImGOlGxYMX0$KGjihPU<rmh2K)2lYe=`7G<R@
zPaR+CSg&KXjx}u5TIrT+nbN2}ToLOSP{v3?ZP2liqazbwT>E^pM<wgrw!e~nAS1Vs
z%{sQ|7*-a;%i<dyTV)=WMZ2=trsG>3(*l?tz;+!wbOcR=OnfI3OxB%|-aWq8@q^4&
z18ofaD54IZeACXr&pLk5aZ|@F9lLbw)^S|N2_3)c*rQ{=jz4tl)zhz@ev_4W$!>cs
zbLOtBeX@kF*}oH=vMohFpyN*+M|2$3aZtx09fx%^xtAeH#dGHp=a^ARc=h%bKGd|n
z3sQecadT70WWTy(%jI0NPwF_O<ARQhEa<e3b0o*RCeN^-v$71eN<-GC&da!WNgjVo
z_usNF>9|a{8xm@7))gIBb@|yQhP5*;7SXQD{9KTdtKs#`_l{=?8P_VGRO7aeJF+Jm
zc+kLI9rt7>H;~UrH}G#AxeR0&_(uZXvZV<>c1=o!FL|^~1Gx>j4asBR^AXwdI!-XZ
zf%^;;Fi=oXnzJ|SegmaerR3T@K`(ea^Y?+3CoM?DZ)ZMappb#01|Bs~*ucXE9x?Fy
zHT%tLnMDi;y1h~9jxOX{J42dT%z(#$X2_R#HF3}l7zRuO7HjMFt*?ROHIRKf-IKez
zBxjUud9P~{1_B1^8mMO=Xdq-D%Yb~nGHf6s)iY4qK-5T&QQUx?ZdZCNN{mU$U`anX
z(wy6wB@Fajl}Zqcvvp#YH1N^flw9KZn1Q5$l!3BFdP=Msl`Lc6frqvKG;khgz|pPq
zl`|k=%d^7Soec>t9V<<%XrPjTS_Ymr@PvWN2A(od!+^}FDh8?<c#^y-BfHbAI(g6O
z&BRP}OS;Xk$;d^!<<z{kfjR~xRSJ?OJY(R4uF3GOEHUdFXdq2C@SK5$2A(w_)oW}(
z;z-|CFWa(_^v|v=A$L<AQ6$Ur2AUdpfkm{rp4p6~C95H+&1G>la9SAXaV=9iBzsk=
zm4W#KD_`oVx0MkwFvGx11MLj7H!#q^AOjr?yl9}iWaPr^XrQYM{dK#OfzAfLeju;#
zE>v>gw0o3m+0DR923|Js3dL86J4a-XxNg@N*P_qp<dCmZuNipVKpz8r4ZI-^^yz6}
zRL9Ca46K-!x<8lpmQ1;gsagN2EM_k{^d?Gi=jv1t>}TL@D!HGj5S^>{H!y(aj4sB7
z>$c}^=3oOu3`{UE(ZEmx!z8|Rpn>5A9-pg^Ffh`<h=uxmr@2I1bS+b`{9JvEfw2b0
zF;w$;x`=W~{P6~^wx}$ZnC}>vM2D#c-Ze0p{Cxvc47^9adx%$hLp<}BZz+{|q=T{d
zR@$7#)ak@wV_V2ZH_N~h10NfhE#ppoj!ah>6!N(S=8=3zl&+Ip3k)ozxyZmnM_WtS
ztKE_Z3u{6a8~CbLx;aY?EHkjiz*+;#4SZtYGuZ(Q92=1>sSoT*eJZoPgE3>8XN7?;
z46K$yf2wr8T+5Y=yh?`tXzNoIT1s&@?`B97PT$H{XW&Z%-x}C%V7-A21~wbmVql{b
zDl>r@rGK6r-$LT#>tJl6BE>!1z4A8(wi@_bPBL@TUAm1)wdU$l^Sk3(?2sk!VBYTy
z{9xcam1`$S-ciX`<y!tID{j7ixk_`-$aMXGHt>sqT?Td=xW{SvtARZRP8c|8V6TDS
z3>-D^mw|n<Z;Z_T!@vRAxD4!<`8+7O@>bT~`p$u(m1>O4{?ou=S;Zr>4-!ibN**$>
zZF{QK$m}CjE^kjsYQ^lzgX%lS3>-JmdwVMPprk~2en;w*fzz_M3|uyF#=u#r^T_Or
z2F^)|Wm`6DU*Up*^W^gn+wYypYCAMpD|e-id$Pu_$a6(*XALUcFmO|*7Wp*;*JWyr
z%obg)ZMiGWADMki_I#NShwa-2?nndWP1m5Lm=e6+o~$q0R{mQye*?KpWSA&y;$ah+
zCUTo7V4|RjJSOs*xX*-CINy+DJ`+cBRmyLoP`_pp=ZV2d@6hD^CPwc_i9?`Rr93;E
zJz(NN6AzhqU`OiF-03q?A&Gn^{c2_Poh)%EV&V}Kh6&R|Q4^1vC}zULB1})E4I{H9
zlxE^T>r*=McxENxdt~eeCoL0R69E%52PS<|!#a+P2uS=U<l`YxN-xtzyf`vjvV=`U
zOpLTJ%0kpcOwI`=cAAKruuZ&X;&l^_iG+y;CK{S3ZlZ*VS|*-0QPM;y6Xi{0nJ8`I
zF%yrQNSUa%K9w}_Q@ebZJz5zPau@h(bW-+1*?7yE_<B{UoHYMNdIuIRn{5RX6(yI6
zCrwl`@q~%0X8Pt^*-YQrg;bFWbV~}Co1@&z?yXOiFRY1P-NaKSYDksFq}^&VSF3tX
z-+`5Doz9X%Ys)ZQvg=Z>W6Ix=PCa9$4+i2aySHFHCe=65h<Ai%g_vk(qP>a6CYqRN
zVWOpp=S)0rqN#}&Ol-Pow|OCtG-}INd76pOy^Q7zGGbKHJ>m3O-mI00)+XAT$Trc&
z#J-z$k@o46hFpz18{#I46e?l|GkqrMDnldHGttpRClj4b$XTKb!-}&sL8>Q;^wmoy
zUN+HP#@)m#;x;<@swqE<GlWdcOrNZpw$CRw?z)+|Zp3sk-!So}iD@RLo9JQUEfYgb
z3^mcyL@yJAOe`6l>}{ftiN&i@{Y~_h{<&oLGx4^Gaw~K>Ur95i+ERxrt5V`KfVCP(
ze@PX6FoTr7WDhej+{7dk@0u7Plgh+66XQ*clKF3@&jVvkjA6zlQ$1oz*sXiB++&6e
z#{?4-O}t~KkAe$28wDOqmn)aFT5z(7_tZd7k)?4heVBaT#8hd~`jmTjPTk9xAv52^
z=O$K|m}O$NiG?N>vCbcu_|U{hCgzx!YhoV7nyXTIPo{72QjPhn+X547npBYLNn@LS
zokwu7G|<Fy6Q7v)*u+v<1-WxAla9KT_K~8c!ri)6meN0E#Xe(|B%mBtWi3ejFHEd7
z@s&(|Sq>&vn^-Shy&$#5#99;UOnhlV4wf>*We{bomu2RX1F8hvq*s#4Y%sBr<KlEr
z`)o3?*~GUdwwu_(j@@cv@JG$QVT+{PQ4O4JR78{klC`r#wyBd@`C@sbU8_%LeQ)9i
z6HyB>3qQ(IHSxEJe@y&r;ujOgOdOX{FtOXj0TX|k_|?Q7nZ_o5mtBafQu_Zl78mVi
zNE_v3wO{&nZc2jxAzNiT<H76-N86=OcLz-zV&#vRI4raATBbXoQqPR8$)hrd8Ap0U
z6iGT^;-ra-(k>IHxH?XoIAfysa$O2NYvP=V^AbwlPTbCP&+`vx>D}Oh>`~o4a_+rs
z;);n|CT^R!YT}xS>n3i<Mz^I|pS@Xf9+uU2Q`Y8fyF;xCg3>1~?^L|Qol5F(m$mIu
zr@}o}OrA1C%w-|N!Xp-nTFA7J+ronu9<q?fO7B$pE!;<v*Fruky&cK^BVq5SSb&(6
z!>1fUt@Ms0JK+NshLp}Dq!5*dEfld(*h;THdsk)2D?|n~ePq34KWd?v1<Qihg2#ep
zLAPL7>CPP2*{Hz>D+yJrRlc5`4bw_LL`YA{4aH{x76MlKq0diDT(zaEgBHRTs<RV9
z7GxDjg(Iw|Y?AUZT-<_f$qyya!GdEUVc{tYH7pdD)>$ZLp}d8X7D`!o+(I8dp_I0e
zv><UFV=Lq&EUhR*F2iKaO{FZ9wbI>=ZiY;6sbQ9d3KptZsA{32g-RAm->@rNctUdB
zvSm6+CrG<wa}!;HRI}2%<&#o#sY&i!@>nOOl$o14(9V!PuPLQlc+SG}7M`|H+d@MN
z&swM>?PAmFTNvKWBU$QNsAoayP)DyM^^v?%)dp62kCJ*eveGvx>GsAPnmJnfS+xlx
z$P8?1;ROpVEwr-G%tCVuEtn)XI|((1b6)(H&9z!nZ)2gY^kMg;dy~qh*iLGtr^DXv
zo*wHLEp)W-h772MP8K>_c*(-c7ViQUx=QDCG0x0rCbs~&x>=Z#nd`|e#w!+HrO)dY
zWW$%F?lQy{UX!t_=g5Atll!ym%meOZN@@>FzOIaZ7T&hd(?Tx`eVJX7ddnb6J+Ea-
zDH2>1nN$)}?q&Tg46ra*rYp-G$Si}19kcVf&O<E>voJ!2Pd>V01B-Ssq)^#;M3HF1
zM_U+U;i7c1g|QaKS@=OV9}D9xOtA2=g{2lIT6o8j|2hP7EKIWG8*7+qVVZ@>GUW<o
z9&D0liiNEg?e&-J_vFOVK3~oAS?|m2J)b4wbPF?NUCc|(mVk%tnO6EGOy(nbXVDa;
z>b;DouG)3m>vJv4v#`LzLMDA^;UigGw=(3Fi}=j9(r-##=S8y0%6b-CSRyNZZpsbP
ztGzA`QlDiOmRtBrW{ZVSEPQHVm4($7K4XLx7QV3Xxy<k@_R+iP;8MDTm5eLd9ErBZ
z!deUKEo`tLZzk8?w%0MQcz(&cNfS0IMc#Tzc8Rme!e$HGE$px$kvA39wpjQ^dPWxM
zRr_1nnx1z0T+Z5NrQhiZk%EeTk$zwIorRqie4~=W<(-m5`(CCBUjqMR;b(~^!)oCd
z3%g_wv9RC5ZVSI!*k@tmEqjlJy^?yx7GCXkrjXxcN9vQzxMK?rxt!Mjka=?1K4{^~
zIu#Dkx$Du^f65#_+PdKC)FJBPe^@5N?$i-F3pr*X|1JBhg>x2;TR36iq=l8MQ>SH$
z-p&+qO6JV2ln}u)78<QiN$FD1c?%bqw^V0COu1g)mAY)<icBOwCi!vI!Zq2xd?@b2
zbqhCSE_pG<i<=g1Nq2cs!;9M%?#L$TMbL}87VdGMEbPVK7XFcq-HZFZ$mK<bH@%DI
z^&*obH&K+YZ)C`o$D7`|ZwyT4Q+j?c-n)@L)yq|Y;)BG3UOYhZZ|Xxd3n}qoFN%2a
zh!;h@Fuky-Kk9`>QjF+P&JtWFH;7_NSg+!K5}y~NZl`Mkno?WgAuqx-D|r#|BI-pM
znlUfpB&EEty>Q4&5EI1WUYuYAxBew5x-m<WKSoRvhh?>tvL5#$MYF6I6-df?QJy5r
z3pcMsb4f*|NX93;sO&`*dR8Sq=|wdXNp&kw-HRBXo@#ng%Zt~%c-@Pqy{JvMm%OOs
z#WP;C_o9Orb-k$PMN2PQc~Res23|Dr;yHRY^rDf9{Hzz}7*k4VOi|3|y=dx1bDA#@
zn-LeNQFc4Ig%VqP(Z-8xnsb#;Tb0_5MB+>27ZvYJ(vjGSIK90tK3%-%>P0shsf%gT
z%@yyJe3?G4c=0NU=-pi+gV-x6<{MtTNo9-|J-m2}e6SZiN&0xv*Na}{y@~D+NXC9%
z44@+XZIb>(Y2!ep4^lIHh!;b>7)E_0ak%msK_VkH%8Sv8OH3(ftQX_F7*FvX<v)RB
zqRjTY=~+5S>F<)vyOZ&r7w>!VmlwypnCiteFTV6*y%*EHnBm1zFP3>Rlg@Lzm`gH?
zINOU4NF=Ou<2>^DO8JoFBQ^IHc(KrnMJja($zo~3j+A7V>tiaex!j8tUVP!jClo&=
zen$M9DE_U7Cs&fMA+A#TYA;-$wN%zAUBnGuZ1mzMFMg)@l^5T5u~llQd^UNp*^4b|
zbxSF~+{oDG#kX|$-iz%d-w}7HT+;J96_@_}LGd3++;0EHi{HK2Pi2=EyS@0;i#;@d
zQ~rBZU+trkRQewzhrKx9#h>H{iHC^YxDmP2?1&dfDZ1uy*;r(6^x;7tPI__5i)&t7
z_u{k{XS}#X&$Gny#B)SxwR}6}g5np|oD}^s#Vf?CL@DToZ2siAeYho?zwGV4^u~UN
z;@?Cu?~>e;eWPbmHg-||q2jLb3}(snAvb4f9v|{j$>+oUB;uc+<UU`{U7!HXf<$-Y
zddP=DG^0Kg_Tgb4bRP^Kicl;@e1uq(C@~-P<?MAHrD(pKJ;C(B@*$*juMZ&i5&cS+
z5f3OH^yTcm5;-h!sJkr^B}Ow&w26)nyZJ?+5<ZmlVVe)%`cTS;(muT6!>c|#=0nnl
z8a~wYp$xM~oF{yE+=mp+vcxQ6IbwODTWAIHio{C9#eI^MNvilzm86;vPmxIECrPUN
zu;f~nn8RnMA9-r|@U#yv_|VLU+CJ3rp@|R8%cgHb&-hTES?a0?^+;qlXy8Lb@@I*S
zeQ2b7+{r0J_MB3l_n|4dyYn~qp@k1!sI>H<l@IO6TNB$7rSvwcx3iTp;bumAA3D%{
z(T7eX9f`wcr`sY|XCK7P<z0Q~=EF-qyi6Zy@1hAFNy^i}=`M;7pZl=Fhu3^~-G>oA
zjP&6RAKvt#pAT>Q(1W>p5hd4KKJ-*vcAMVheU#Ey&9weh2Kg|UWB_rX)PxIp2+d){
zp+t!+(T4vIALYYnA7=aTfe&MR80*8kK1}vuoDbuDc!!=7l>bDvrX<ewVV+4!cW1~H
zAEx>+jpBPgysuK-X*r$dOyUfp<eH^?gwOF|t`8sku+)cnK78oIVy1pXTu7Yn!veKt
zb5Aj(8gec2<(!~|FY)04wq5u#A3jy_my>)#lvVbb(q%{e!iSYKH~6qh>1#<=6W7Qn
zs}sUHAHJlxp7>Mu^bl|K;VYRxRJIUB+(fcjdW`k_M(JDCOxy0m4j)SRQPPj^eAwy3
zH8}?R@VyT|`0$tV|Ivp%KJ4}3Cm(*M_zQ72aTn432H>xX|3<Rkhd+GSNB%p}-PxpW
z2Yfi_!y$@)s`?!E;fN1MDT>d(E6e4_d^qmI38tR*;S9-1A5JNM*?Z6WaL$LzN;yw*
zfhf@~`fy2ciRo76iVs(nzgyxBAM*QgpC32n7Qm$2KK$cDE<f)0aF@zG;@?D>hi(ls
z{OLP|TzN<`{m4z?h7~<8&3t~`<7nPb^HD#F`BA`+f;1oSqmUnk{dkb(Lqy5z*7jkV
zkN8o9L_{}uQJTU%erSFK{0LIfi9SCJKTJO?ni9=R;>MI*ex<|z-=~rg#i$=)l8Ew=
zTrof5e%MMWPT~*~#QD4tNaRv}l=h>IA8q}3%#WlW4gGl5k1~Ed?#GjURQDt0M_J~o
z=tnscsbQ8M<rQ}~(h4+%S0Z`BFF$igcX$;)swvN^ezY2qKH0iip7Nsxlj;&{5^MWW
zi{xqIzh~w;emq0Py@^YZdNk|%(SSshvpn`UqS>6-*pDWDJV*XK@daYj|LMtQRHQdr
zkhCO9v{rt!CU=ij*?zS1qlX`F`O%(wXFt05(SiI$m8&C3C!&l+S3kP>@tR6~iR4v3
zURKI0ez;RqO6=~6{+v^#D6dm_gZL&<cEX;1^zvi4>wMVmO)|ufK7RD|qaV%w#J81?
zoGl0VG0=}eO4)cLWAOiQDQhUrVSb3Sm?LP8^kWpsXg|jKF^+tUA5U=#ji))0IDse`
zz3nPXX9{`OkI8;~0jvb3NQe93014oIKc@O|#E+wXO!H&9ADjKy;>Qd|SnS6VKW6$d
z%a7T9d_Zx5A9Gav4@u_wF^|MuCLgKP`6LC(q&NSCek`Kt_VCAkETy@YxQzH2aXIl5
z;-^IE=g<9EA@!#z(N>YH^yi$rRx7tPB*ogbT<6D^eypeY6;X0+AlXQCC(_q`Y@+G*
z(l>r=^&|6E#r=M4Q@MWf%O9q~cA7hg-xI&{V<(AJPlC(!gC9RqksG&|Kg;m>v5ShB
zdq{Ts@vBl^PUhL`$8Ub@qw+gZL~(Xe$R89B5dZY!Aju&=4!h3WSLLDjFF%gS-Ut)~
zj{9-KkK3{d`*G5bQ}n#%$7w&#kY6UAC0-z&^W!{;dq=)VE~Q`c|MyAxio69<x;xO<
zY2J|ipX3&Cp6ZReeq;cdNO#3OKmKOwKSWV-QP1E3AUBYYrs#QqyyWhP<X8HA!2RTI
zZ_9tiE6yH3OaBjzc!*}9^q;0n>xGFz9ww1LStr~LD1W?1ejzPpG3Dd7MZVf8{{j>Z
zz)ZjIhnJ>bdCH@JWRxy)cfueLq7nnbBvE3-71etWIpD>qNM0M5v?qPWE)J9cngcC>
zl0YfoDWC>W8hDJ(m4T$nRhFa-@Hk0|DE%NcFGpS;$O0;mOYllSMa8A6Pbe;@sVd}E
ziPe<;BuRB**Ivn*KrP@omHISL7xH63)K*Fzl4pQLJW<!D*@)Oc`7|VXHoe<eQl-X9
zZ$eUkV|q_`p1djX1!6Pg%(s?6D_|fn2xtwo0bT)K1=<4H^z1@x2XrK9PwYUH$S>l*
zcjrz(XQj)+>`LBEDKC+{EM;*jb{7-qNAWdc58y4}b@DfeZxW>x>HnVOy@|b)?#{G6
zH2V@od0VCSCmBGL7jA=rA;2tPHZT+zCNl(h7Z^^5QNU=D5x__iH~1J}EHIJEIN}82
zc%sxTXPMm2c;|nV$%?;EGKKgau#9VVDliS0u6$+!Gsypa=O#P(2f!R)sbm4>GIb$w
z9`GT_N5uI=nR^RJ+;hSr^2NXs;A3*n$n=5G#pP5!BZ~M5$)`kFai5c{P^r@MtAN$A
zd;(}0z#3q!Yytrk3Sb@ZC9n(F4Xg(?06#F-M&K)wZN#sMTYya@n~74cyLEp<b1QP*
zOMDA#r?LasN%EcYcYn+CJ^p)6_!0PtsXr^9Ur3}keg*ab=Yb2rUWx~ZzY+HVzXSWp
z{~$_z+^&<A`zLS^I0PI9P64Osa0ECe8$S6_;4hL1eVa+f6XYj}?iMFvE^bO^fOFJE
zISWW|A##b^Me28fd%z{&GH?aBO7Rx)8u12jokX6t+y~g3G^O`$liVRnOlkGsz&|wa
z4<J_n8G-aJnva+nKpqlNa+63M@{&w@%M?+r{50=VsRc+xFBrfBia$uw@0wjWfQJL9
z5J1HMiUjaT0O0^40Th)<a@f`a(CPUou^7=4z`yq_BapraNN|&A1>hy|1>h%fhr?}h
zfQmQ=0|=43i!K^KEP$j+jR%kjpg2vN==_g!i2zE`EJ<_+sB{32Nh{R2NTFo{cszg<
zeaaD~+_EI@3-<B>WYKib^OclOg8-fgpmG3J0;n25P3qN%PZ6I~p49_6@9Jw%arc>8
z0X!W*?EvZoP>=dE%D-;lzi++V306Ol^Yq;?fM)|}6hLD-zYstZlIMxf5#`h>bEB!^
z(wt`GLYgbFRRFC6cqxFFsk9-!NNgKGHi`JRBWWK%2c@|0F*?%h6hLRCcL|`Y;@tv}
zuM0}{R|0r7fI$Ha4xqcF(&6m@UL)xdz*_;lu5!IW@+MKbs3%DuVlQHEqJ(uPLtmQx
zh%%1-Nd_pNfh4zYWDIc~0vH{@P?b82WOx80NJc7M-XV+$U@WKflmNz2pF|ulLqIYy
zfOkmTw_fgRhj*z=CQ1$EDE=P#`^2fl{_K+(0nC)OSth*}W(6=?O0hBC#s>k+5j}#u
z5zLi^6F{{Po($o`06vo53*tXP%nx9J^lboV0$3Qpq5wV#;8O-)97umCeBy4#5}F?q
zmlCC*WdSTFA2vIen4bmkxy-QuHc?y=z<QD|h${nFMY5W>j<_a(wIu)U9$(6c_e#n~
zw-Rte02`Sq{Hp*~^7OJffGq(W4B$`z-!OG&0N)3&m3$lVTlon9$&LWNBk9GpxrX>d
z06$XPAHYum{2ah<G=CxP4&YakU9Nd6V-JbcVK2!U9z0|!?o;~jft>fl;`2uU2bBJ&
z>`qN8h$z=#ipK*uqEe5N{6#z#KtYb9c%BI0r1Ci>UCL*Zv$EI&C=<lvL7WfZLI73}
z-XJapa4CR)0>~A_<p8b(aEE!X5^oZ(1#mrp8#4WFWQ<gA+gx&s4z~kv&AT+E4);j@
zCd#VM2qH6x!ZKTAnFNt1hzH2U%p1i0isvKAAH;nmc}8W6LjjdqFqpG`AEfe-(hHFk
z9+mxY5JiG`B#5FxXcQkM77M}?#72(YgRGLfXG(BA2qOrSZn9*=N0NL&_=6}(5kUk<
z>>z?9k}DcSNbztG5ygk{SQVogC%U%}hde<nPAnn0_=#jGnx%;n`LQ69<P$kpQ$dss
zqCpT1gD4k7`5>MQqIwWn^m#(%sz6dPh)N{xT$N~*gQ%i>ss>Rlh~cwy$t6ioQLjs^
z5k$=(YLV9_K1~!icgfTV;u$LLIu*Sh&HBNd)BdwTGzy}15N(2J%%r9&LKBkbf_R?9
zE&YWcn$c`dY)Ndv>Pc|9S}ER^Nd@{hdnt(QAllJvA4JC>I+1rEzDRWMN}Yq~5=2*}
zbR%)^ZW39@%T!(=it;Ln499ChydK1!Aod3FMi6fXF)xS@gXj^&Tl5(pL{E}oQoSI0
z1<^Z*K2!z~C0gGg`YHZ4N&g@Q1R>vWkko-Pi#V$XE1w}j3?+AW>=8;IO)@fwQA$~U
zCu5A_V@bvl<;FT8h>1bG6T~Dcvx0b+<h>x?Cz&iGrJSW2a!sW<BZz4vqD&`|{+X#1
zx6@_^@qtq21Tj}}_ayvL5T6F|ncM}aF9>2`5Q~)0(jXQqz9fi`$=#VRB`ynMxk~+n
z#NF;b58~?}HU+UFh%bUz8N@24ZU|yE$vWa1qQqHCvXEQTm*ne}vQhbbMIxQNndE2U
zmLR?fVyp7`E{JVGd`okC5IdAEx!ePWl(jR6?}PXuh##5Sm8Y7Y{>Sqd@?FH;O8+&8
z(cGVZ3u2$_ejz*<!tX)s58`?-eNz2Hd7cd70QsLm93(ju#L*!BB0o$#62w(TI~J7x
zZ6t@EV3O3(x}D*so{|kSh%?kL5YH0NDbMpH#ketE4C0d90;pUeUL#&57VMXvz0wai
zg18yPtsrg(kw28)&*i#9pWGqb4dPx9f728_gAV`D%q8v3pZ;?Va%F~c-eKmULtYgp
zABp>=l>5l<521icEf`97)a|#D4~0-DlztZzU{c`_v=H<V9;R7@_(%vvNggG7LMTSk
zh&SJB>^*~uk7yF5ZWf7`=nlF+l+(k(5JDl83!!`n;SeGrB<U6<+95b3u@K@U5={mo
z5khgAr9vp7^pYV|=c_#NabM?_4&gDC>gDENCWObSq=;pSJ|;=7ESgUcD}+#yq!Lk5
z<ztk}<W-1Ol`e;Y>eBgA|1ct9)Ci$w2n#}37(%TOo(^Gf2tz`s9YUQDx`psk2+xF2
zm)YAB>xIxLgvR9ci48(%NFwDvOCp<m6Qwi@;W_f>iA_UzfkX}r?wO%^2rWWr8A7WN
zvQ@6uByEXph`)|V%JD;rkgHuN=TpTF%Kya>I)>0Ggw9Io8bTMv-J6c!%OSi%v0n(U
zlDrYZn<U*`=MY{ad7bD!FGz_!X!at$6+%xE(Z!)Rc^_h5qPvqz>f0gor!s&zkSO|~
zP|hC)85+Xae#v)3m>j~e5QfuXL<r+aMiNI6M~8Bbh+}AuC5|J?Y?(kJktdS8L!3mE
z6UdYh-XotA!uurRIfG<s2-8TW6W!<BndGyGvxy%Nw{q3YC7(x>I3JRH6vBKGx5pNR
zusDQ2LO2k@k`O))VQmQO=&)3#U!ukG5SG!D%}RoN62hk;d`3mgRUv#%zCtNqgs_sl
z5dYGP_^hV6Mw;es`ys3k;rkGN2w?-0Hixh!gpDe~S0rB(H-%82ZIL+Ngs`3BR^_>k
z<XfUUlsiKBPNnWtb5HXA7{V^<KdIE8Nq!0CJSp!E;a4hqi2Fj=t2}>`9%CJTr?Ow^
zBK{e|!4NXS$PD8U_0u7o3E^-EM?yHNJdcz7MLecTlv<q#;iU38CEFCwnP;ioB%TZ5
zJjsO+E{AZ1{9*`~NdBGkS7}}+UQ<aoNZgI_RtUF4xFg#>#eazRh<_7v5oL&Tg>&u{
zvLEISBTpE`!tjKVm-_u-6d=h*%ul>8oU_IYhVcNEM~Dv+3y1L#iL|#+7;RXP@P{cD
zAxb5Sl02$B-KJ?YEuu~|h-Mh>+Zb;cJ}Uk&f+X^~UxLdOkR<NFAu2A9h7k*6VHk_T
zh=*Z^<u7I+I}9g`L>RTgc$&_|!zdHR<6)EtqhuJRD3(@{-IsEY(M%HMHEfEcLKqdp
zD62fng;73?tZ>eT;NCteF|}$K)kvNQqcTYqVx7(DZ{IyhUV|uR^)Q}NT%I&Vsi|Vt
z4x<i}S`eQJqj4Bb!l)ZYy)f#lTn$MY5M`fvmZTB!-!tBGG+zkgd6K3?DN9DD8F_Q1
z$U<(Zc&jj4leZzd1J{nccNl%bXdgxgnlFaYC5*0Nbfnpd*qJD$xSi82jMu_=J&c#a
zc$rDB5W5p!l?ldO=szl#`zGfNnr{)`45Noibz}AnqZbu-i|9)}QYLK}{la)VjQ&(+
zbgw)pi~%a|KoZ%?L?0YZ<B%|hk_aD0GMqRfj4GqDMU+;I4&$9LCWSGE*~f-4j%0io
z6I5jB&xz!2eclaYau{>Nm`8C+7*oTT7RGxt-zT~anNI!zaYh(3!<a=b<!<8EI-911
zokNn-SF-bmF<*IpBsEcY=LIsaxU($|V@Vh%!#EYj$6+iDV`muOhp~*gz7Atk7|X->
zB#ckP_>AJ0#LtPV!&pJ`MHnl?@)vK?Q`Fs3gveoX4VAS-QPz>X(WdhHFgB2H4C5;j
zH?Q~z*-YhIq9|KPz9DWUZX?PB-cBMuJHq&m+<lz?fqa)NmN0%K|4DiN9L6u??kM~k
z#vYnS!q^+eZ{!Dw`@%Rt@_QKj!}x<-%6jk3^hYGoSJUV1KPk!!y+b62iLU2S^1s43
z7RGUM@js!~ulwM3n)=0X`lla~dWPoNFwT*jSGg{bNYgHbaXE}DVO$O4b{KcUxW=R#
z#Op+NCEg^Ln73qRazDJQlw1+qBmbNDkJ39_O@GXt5kY1oJ&w7FLYj}t&KE)c2;Pg~
z{TS|x;Qk1*qi7dJfd~pl@M8o&Meslb4@U561l=QeD1t%}*bz7p6lNSR@!<%HMDR!i
zMI+FuJgQ3ZkQ5`zKBJLT=Z6#qxk<E$?%w5#z#oy1C)2eJMGz(l5QCANy*ENLMvM~W
zOe;MZS6uSSm5AVp2r5%79zlr+N=8sBg3=MBA}AZdV@wjyG7%*If8NI<>Gzi7ZfBH>
zpgfZ*60?XEA~|<ScgvCpm8i=(zY0k=V$}$$Met+<)gx#bL8}O!il9aW4I_9qf|?Q3
zil81npC(G2IuX<+cTee}JQG1(m72_3sXloFqWkW#5qVQ$;|Q8W@ErN`ME5<U#F1}+
zzYsw)ip_~Fh~c|AA1#Sb>j>IM&>@00OcJH7%!&xw(R5$-x{L8eDxD+fs60E7$RKu6
zN>`aJ>hr0WD83xQD=Ia;p+)do1PdZq7{Tiiyb-}W5lo8U%?Nr#&@Y0wBY2Dcy@@?l
z-d-fK-1?C8Rk|qsBN!0Dun2}nFp&BX;vnTSm_!!TP^AbT5y8j^##0$Z977yUbZ4ye
z#@I;uQ@n99g)Z6S`L(VIbeKqVzeMzI1n);MHG;_$CD#;^_lPoKrjdLQ!JG)Dlh24?
zCdn+~Y+04u)dgKLm-<J<dBhKi?shkyT*hTl1dAis62UhSEQ#Rb2-Y!4>aa9|FJwwb
zuq=Y*6hDdJvj{$q;8W!zk0CN!1XoaTUkFIvRW#QSR}-ZZ){@9qs>I>T2-Ziify&oJ
z5jT>2MU)%UCX&s>fA3{mY3_(%8;RulHiGTs?lk+3e5XqNK7t<<m*>i#Blsl(GYTt;
zU9veua96g$2!4%VPXw1ExI*W>5gdr%&j@~tU|$5kQ~X24*)P4#&EMT)4^lrC!SM(V
zDWAg;93ekS{7dQbk@^Ypvk{z&;A8}+A~>y5&ycupr{$b*Ug;M}E)b>AOG+0X>4B>e
z+*Hc72(FXgP>Q^5yQTPTk~>7%tp1MRp9qRYdB2V#BZ`7iJP<`Dm3+k9#5_^tjsEu=
zM-Si0$WQ$~;{8OaNdXf1OBcc)jG}N94^w%FScvG}@`^-Jl%{w-63yAAAEn~{AjqRq
zH4>d@L~}kJ@J8W_;;ATVMB$GDQKX_M8$}?BU=)whITS@WDt{w8-8#7<BynPt7$eI1
zvPr~8CUb(kcoZc_N)k)`PuojV={PDoNm7RRIMF>#Nt|*~REpw>D9TgMB32+uYDGzP
z&$066KZ<J9tEkkfG6X91Ns85p61*l!-6-lsQH%U(Vr^m_;xk0q_NAcuQ8b9+g(#Xu
z(UAIc#Ak_(qG%k=`KC}4D)KXsX2X)tlS}rd(f>YuH;<wf^%g3%WfbnQQ#@N!Y(s1-
zgU%O~?W5=r#q}s|MDb!29cApI_$rD{QFM-CVifO0(ItwmQS^)AZRYJ3MRy_OFGcY(
ziNt?}<W-_9^VgzyJ&K+*-%vh1qIgsB`}ijFEt>8c=@mt9nth0UmFI|_$^KCch+-_2
zfl41rGKe^sI3$W~Gt)=DVNnc^VubP>MKUt_-_P7fM=^$?yakoN^d(uw(HtMe1eHrZ
z`k55PyHU(m%4CvhQA|<FdnE4@r%H)E(??CYrc;?goJpKTl$L%F#hfVSMlmmn)lsa8
z;=?FDisI8KK8s?06bqvGIEtlFER>;-Vlgwyx5fVb2KW*xG7a3amPN5ViccuIAI7;T
zqwqOJaa$S1iYUI2*4;>dD(5<^QmOKWbFJd*qgY4&rBd9x)rM&L`{c4Sd@YkIieIDH
zLx;^#d>h5~D7Mi2hPYMb-4@MxJ12G65taY;J!hqVN3t`D@1yu3iXWB!lUl{@o#Gdz
z?;_bvl=|$A;y3d1QS2l6Gm3*z{7$}~C?)<ua)2lww;hV&a1^Ii>X9gpDSkAHzZ5Tb
zH{*B|C!#n><&@H;?QX5kP&rFHr&8s2c^9I%7{w(jSCoF4M7}Y5RVmk08*fH&D~g&i
z)QaJD6nA8wi~%v+m9D0<5yRh6{1e54F+3DQu2{PFa>tN|B!ieqbPt4i$qU4gk3^jF
zliWwVpEzSmzJeqV5Z$wGp%@Cs;GrV99**Hr#f!x72zgPZ92$@;_Wu=)rXI`rOxdJq
z5xqnoQ6e9{kr9X?7(*(CvJ^ux6px`q4B;3eF+?dk#27J7w22Zy4rvK;_h2SU$rv7^
zQtDqHk{vw8B+1Lf@HmP5c3ZN@RW61nW9h$}Q9gz&CRK>x36hFL@u?I`f5<DOvQnzV
zP?fxzQsf<Db@Hc_QX`hL&paJNZ4qO5ErvQ$Rt&9TXic}eF+59Bk65251vMaP7|Z!K
zQKJ|d$Iygg(->Ze;W_2`Jc)a}X%<5Zr8ifj(2~kk^=`IJ4DDm+K(TEM*~-6NEa!WA
zFUHU@hL@>#QmNfy=o~|r7`jq%4+idrAhmr-we%IHzDn$_@-A7`?DZJlkUorI1jRRF
z=p92J@*Xj~r969*^dh=jQ{NZ{sMLNWZ^zJ|#I3`?7zWWCOdLuaLX^AkFh$(k{YaYQ
ziKAi|9mALy#?q8lj3bf90e3A-pgA#ycVd{Nd?v^6F8RNon@pjZxS3~a4AZ1z<9IQS
z=`qZZ=k7S}k7H&Gvtsx)hCMONj^TqCHpQ?xhB-0JjbTX)A2Y(d7#65fJ|y`lhWScy
zyLw>^i<GjM#JyuKjp5T6KBKaXxSaS2@jvpb-WXQIuqKAJRKAE|m764Y1QPclXf^rd
z+ZpRr>V_D;RD695|2`{ijNvQlUlU&#lx)De=av|DD*ta{*h;=FhHqoouJrF>*r9lp
zFx*cMzmMUE7=BdxFC;$^e^#qt7tP&7w?p>E@LLSmVz?f|z8HRw;S5t{H224FFor`k
z{~#V9{u%r4TeZVfPQ-8|hNCh3MN{$~Cpkv!P&a)-mf}v*JViWBd}mVn3)p9+dNG`*
za)~J71(J)zbGdR|R{9l^tFp!M6NDQy@5%N~a+7#V?gAuth<Aw+(|s}i56wLB^erG4
zQN9^3Jd>E))%of^Zyfn(<|n#6Rv?aoam3<?$J2i!;(<7fILtU6q|ZZf6pEv891q7)
zjEY1q5=T+RABjVzx`>ZbIm*+cn4UN^Dmu|!ZkEawB=Hh`QZ5NpYQWXqj{xEb(~J<K
zMEA>Gb{tMT{e)g!>JUe9CZ&ia;wVibH7Q9_is*iA{;@ccG|LblCyJ+pDjP?+ILcG0
z5=YfIvf`)^M@8lHL>!eAcORK6)0EDvrgXPspQI`Gny2EZ5l789YQ@nsju+y1I*!_L
zG^9hFIG%~4zRFvdq#p6#^O)4F0TuaH>a%e)iledee=d$Dil_ey#Q*SSaWtoy9Y+hL
zw~nKw;;rI2_oFsc+7jJew4L&4ABUG;xat^3Cz(Gs^4sVfN0&H0i{tY+y2jBhjtOy0
zjN_#^UXEi>9D|wtl{k8lyc$P$Hz4tiI9?-p-4(f--i)IM&9~y{N#efic003o9DU;G
zOTE9!)h~{>6?b2b4Txjl|0qM^=|A@;y*E0Jp>Ygj((pJ&DxVSYoOdsysJLZ`{}`HM
ziR0oJul(hd@{Zzj;+Pc2yEG>gr^PWv0><$^&8b9p=1WZ3nWx7wgW}9MW|Pb!O6sL1
z=|%KG9MAJd9CKx2GwH)P7RIrN{G&MLlPplVB=}<TrEx5aV~Nr~CUGCem&frb%}-S7
z-rng4guicQtcc@_I1a^eIF6NZtcv5CIJU~QH*0kqU&gUMjx{RRT9S1{w^18p{;1TA
zBwxjIJ|)~lbF)g_LLvjYEsk&F_$iK`scetqdy*Z>^SikGS0?H0%l)81$PaP+s8VJ9
z{u0M7ng`<8O|mzR-$;HX?vXjbXYhSA_Y)<~?{Vbj%acEpB3tgCiXSAA$$un{qvW@U
zf5mY!j#F_Qqj{VtuU}4($b>mfaxRYZahxHSvd)soNBI{>t`jfDaf#$|99QDFs^*^f
zOS#vWB>zd7m~!2qc~h;>+i~29<1WQqcDjG$x);aaRD}OSB5w#YY-G|Qw~f3cd6d69
zy``-CY}{|-85?zN6tGdyhWv)gvGIV72W^-(EM|GgMiCp2kQcI1*v7-;5<yCoCzql$
zJ;X<eq8B4^zvQ5i>qNtbd~75Ra(QipDf(>q<*hNf=s}Wzo%44jL<!kB-+qiJpQxlN
z9w%vfJ0oGExQ&`LOV}uBqmuF|Wg}^$49(KS$85NV$;WAywNZ{FMU*F|@+1|ASw#2l
zEcK~q=j@qJ*r;ryijAstc*;gK8&8r~w{uSEZYh#WUJBJ<l5qEz1+{EEt(4j%byVbf
zHtO4W*~Tk28rW!PqXQkDwb95%3mYwMG*)?=k~FdLoKl`=92x5ul+w&bbH!!VOC4I#
zY)foSY-7XyEx)8@+h|9zJ@MZ+!!Oe8Xrq(d0?4}%yAiwEIe!)BC7N!Jy=tSojkj&|
z7tzLRcKWZM^`^t?HhPe}L6maewEz42vbQMqB=#aM9h&Sz(wEqeD7j?L53n(i<|yJI
z;xOW18$(Ej65W&haPkp0M%p=N`@UQANhrBSGieNQtQwICHYVEGUIIHx;2j&2Y#dAA
zcmnU*m@NI~;AaO@r1CaeIcV+ReH&A4JnEpBgK0LV+xXJPdK)ur%(StR!DkVd+E`{|
zwv7*H&ap9HCZ~<LHs;y*kfPM;BNF$!mpMpfiH$`hi;3YP={JWTlM6X<BV#%FXG-~m
z<Wu?I_V^pI&uOkusbARX=XAMGty0Qr8*3C_OR|nAN4^a<Hrm)_W4Dd3C~mj0Lwd}{
zCYqaVY$e%3{D%1N^TIZo-xA%IC*Rrlo~G1%r=9bO+YeNJluowsGx;ydNA5vx#$Rph
zvGI?MTn_fy_|3*&GC*|OXX6hW2W<RKbHB>#eo*zNjYBpL+c>Cn`E*Q5KVsvkQrseB
z$2(5tvW+V?PS`kU;}n&%ve-#Z6VDLcg@4}0MVc3g?r~k>U$WsY!>iOqxoP7X`E}wA
zrOPV5W#cx@J2vi-+*PUW=RtqdlzL`3>HETc4(@l5=^!`FJj8qs@{)*y>_7PxcfSK!
zz(HXu1syy<@}Pr<929c?`+O(y-P^~*4vIK<L`5j-{CCaD%<(wT929p@!h!C<pj*s=
z>A-RjQn|b&@@sjikB{glN{a#{L87F(XP7X}h=Zuo-S=8?2ewii2MKcb5xAs-QV!}k
zc*a3#2ah?Z;Gm*|r1CFIQik}rgOt*xf69@UCuS+#?d?hqsyL|X;0dKyCUNhH)f_zK
zpoW7dDOM-``-wnJnokpJ5#4)1Z71h`QP)8|2TdG2$JF}7XNe7n4T<jQs}Xr)q8sOV
z2hC_ozcqF6g5vV3s=4AV9JEwiI;xF>whm@FnC&3jK|2S79Sm{M-a!WkuQ_<#!HW($
zI(V76IuX072%Q~tQCv#tM*fmg+#Y+y!K+ldyE@VBt~bd05Z@&BaPXFcp5(oV?sg|F
z>P^$#;`);JbMUr<{tgB>80cUSMe&qp0e5=1e5iwA4kj{nIB|^f9N}Q3;-g4L6Wy;{
zjCC+hrH*$nL2>y(=sON3IgsV^uI%;>rZQ==+y#`+domMlWypsJ)08rUWI9m}s52Fj
zN`ByAj)M&jHaeK=U>=jcaPT3?5(ghU_=tQyae;${4i=FwCQ1-_tK&|LrAqmfWSN8I
zO8Laec@z7YQa*REg4|s-D;=z&xth4n!5WgaL@C7`(=Q#YSIXfV8DBa0+QD~9+2mlW
z;+sjf5WgY11#Kh$*1>iXiM)eEjtx6WzE}DWBtJSipBMb%V3$nJ1YS&Fw}W5hCYyjK
zfjzSMJGkiJl7ruv<%ol$B>Nov?qI)zKWH8#N{I(Z{&e8J5EkW-gToZv`T3WFV-C(L
z|Kko$k)Ke?Ns=2kGfpezj7&DZ8J1}09Gs_qL8Z!>`Lcs64(?0f{sgW%xW=SB30!w@
zgFGXFn<RG}+;wnE<-ILq!GrfbrTpXIZ^b1kS0cTg{`(#>lV)zB`!+Z)dA<bllepjK
zEI|Gcu^>@`JV5ebB4<VwN}zB853AIoBt;T<gv5P6Ah{l;DQ{7<1oQ+_36!N`BoIy@
zl7LCmO2C_dk32y16D5ND@f3IE29**@<oxO_nm~-=W5jp@3FTvxI7DfFagq`VluV!$
zd1<1=mv!y_DnF@|G6_6R?w(i6B~U(r=M!j}Kvn`35~$DAiV0LAd4~8z0#y^JMqW9A
zDkKtL#`nnts?)4Zd@6w&ZYqBvSW|h{B6&K2^~2Loe069_cHwoEPdyU(ky?WU8j?So
zKogQi#KzLAd~JAlefs|sd5&WG<ey0YAhZq5W(hPWX^}uHl9ohw8A`6!H09&bwj|j^
z(c6)<Pvp$!jtO)Up1|+~Iy33b1bQUUg}iG5-4b|-{FMY=C3%_Xo}jvuzfSxQ@ipl{
z^;!8F%JVIfz6tb8pl3q<!|beHRC*Kp5T$NzN4-sR5V3y(161n3M9!&xFqI+1p(<6D
z_6V6&39LzAZ33eb7@fdJ3CvGmOafyQn4G{AI*&`>9g^`X?}P*<lDpr8k(x}R`EKHW
ze(#^a9E$HJFg1Z`2~4Lsn>ZtZnF-7iUHuZ@Jyy9J&IgH{)6`r#OZ<5xA12bjx0Tnk
z3uu0lz^4f;Okhz0i<Rfn1eTD0tQ7Za|I27DC%Qk$`HcJv;^zshAo+JbtfaXrfz>2Z
z2T59&z?TW^OyGN&u?cKo(znEo#BUP#DuJ&P*p$F#Dq9jczXg^E?u|+A9b1_s%C-dD
zKW4REDLWGQPH}m`@<ReY(%eh@Np^dc`f~!mknbY?yWjpwa}QDG^KS|4OW^ke_9t*K
zfkV{)NZ<g;zqR_4yPVYRu+oo`9FZM>pOO7V(`~|u1Wrm#isRSfIF-QZ1UeQ+r{XyC
ze@tBmloUnR-NXWl<g~;~W`~JA(=(l>2Mi!NBN>*QK@gN60*aDB3?M;*1W`ai5d=j6
z6%&dPNfIUJC?N2^xxLNzpVQ}_Ten_Sy{dXu-P7GOBi)f*&WmbZoUeroEK<yii?wj6
z7Sg;(_u_IbT&ab7%(^O@KgliP^;)<|B3|7fk&DKET}7_$Zr8#cCjYC2yRPnBy*qfn
z7E-*){XdoHOuZyCn9N7aL(KFdFNxDTvB~enLtZ@WMFB4!VO9}hK`#n<QJ7rD(+O0u
zcVe}uH}_6RaW6`EQPPW2w1gL>Ny-t$KFf<T<YkEu+AZ%z1u7MZPDjMP5|fpQRlJbb
zGDWQJMGY^Sd(py+nqJ6n{XF4CT`xRd)bb+ch319V3!fJe7L+1>FG4O4coB5DbBa;C
z2)l~(NOgIXM4Z$~EHC0-7;dgf;#|_(Uexj8Q7;k{YZHy0x%app^Wt$T&dPG)N4%;>
zv9T9VlGG=P-oT57<c(ZKs%k>sl-SJGoq=lUMMp0>dC`h`YcJY(@sw-Rj-;(O_j<3r
zt9KxAT<YvaH&^dM($$L`5@)WvySY6`dU_$3I^t>{FZy~h--`ua^z)*>7ZbdA(Tf3I
z4D@1zTWXLOL&*mdhq(IFB+|q%l4pp+iOz+}vtB&s#Yie+h@*(o^k@>9ujfg|dhvo6
z<H*OmHga}wLR9Qu@?x?VQ@qJ<HBR*6W!L5vFDAKM&QMcb{+bulTs~c5&x@H}%%bwD
z7qdykNyksA-x<l*y?DcmH@%ocgSXro=E~qOdgoDb?mjJ)tw8>M&WlZ6yzRvzFBW^T
z#EXw;v($@sNIvvpnHS5wc+ZRXy;wo<U81zRl0?RE6^ZkUj;qPn64wyLQa%lRK<>OI
zw9eJndy(p%e?RtO1NBdc&g>tk=lPV$?Ots5Vhj0a#4m`Sd$E<ovHy}>THNN%{SEdV
zUVP=n*Is<%#gAU>qQOq$cV2u;;{4i`l=|L_AE-EE`xCk7zmWV)+%1vDZ+8F6<ZrHx
zJlgovi#=Yn_Mwdre|fRjiy}T0^<keE`@Oj4#dR+ZcyW+LE)f6r;;0wLyg0<<Vd4>@
zv?~vDk9+YClV^x0yf{U2lK9}fbDBx##{|xjpOdoyiPR&}b&>p%t6cWtip#Hhv9o^i
zf$|M1|9Np&RvG!f#9PGMUfhvkbl=&KJKp!axG&qaFS+N-k>W!hA2OLt^&!pG(@8RX
z$!ELr-bG#?^7-(vo135HA)@p34Z#9#?$Mj61zldqhr;B}=2Ogv;yzUMp_&gRT$_p{
zC4DI6Luv9XAIiD8Wk|{r<t4-NBo&CxV_Es_Ht9$uVr60#qKI;Dp}G$>e0bD{$9$;i
zL$(j550(!e+W36%`%sJA>z0z`79dxBi24xpA;hFY3=^H5JVO3ViRA6mm=8LW!ZqLj
zeu2vH<^I-j+|9Mc@>Z&xY7?$f+lM+Xm&tmZ{7E0``|t#LU1B}g#yKf8@S(8}O?+tR
z>WzH4?-z*=O)0kUp&3bYV!oT%@*fi|$y*Vf4+2m5(AJ0de0bl7c0RQCVZ09$e97If
zgAe_D=<h>EA3Cu}XCJ!z(8Gr=K6LdVhhjIPv!b0JnG_#-Qta(RFA`Ct<9*2cx{CB=
zfDZ$i9OJ_vNB3c<4}-~vxR$ax5A)#}CP(@(+|{2Y8R7fi9mVH-xz`xd;wT?RyOwhM
z`g!uP#20)R=gyS#)c8f}vwe8YhnIYq=)=o0q(01`K8ZM$IGHH*PjPFQMrArtLP*x{
zOxI?X53iCR;3sh@^|}vpeR#`<H(Z-HN#?k{nCHWM9~S$tg!%&FA|Dp|k{@i}X43ig
zhqH%EolAXK=EHJkz2kZ%`U)T3r6_!*FZZ6I@KwIt&pWGqSmVQHAGY|g)|dQQn}t(y
zWa>X)sSkZvN3!0B4J04AwS6qhif8sueAwv2CRhKI5iU*0A!Gg-^=&?EC;6PX)rT)g
zz9fpJbAh+Rhn=qS70K7cZ)8v4dFNXu9pfK-_|b<agQy?GE+2l9r5!*#fS-NX?Zan&
zeD23DKKv?0{21!TZ$A9)!yO;~^WhI4{`BFP566Aj!#c%>zvV38!(Q3{sT^?i{l4Vy
z3^@1q4$5q@*N2#Un0UmsJnGAR2Jw#%Cw#c#!&M(n`f$pJi?lgSJWD*|mXg>$CsV`Z
z1)?maxA<H}yt?GWWs1&~fGF2|_?OCcq9`|fxJe#poqQ!gj$1z5rt;vf=3SX_KQjEu
zb$!o=`)=73KT`d<XM{8oiQYVZWcm^J!}cSuANl+U`Jwoc-;am<$sfwB<j2E)6!4>@
zAEo?w#E*i06m#n-<VO*g7xw?}djv)Ox#J@q7WbnBZ5$6vlb3Z%Ws#KeV-<f8zMLQB
zsZ=0V^y9&&X=mH1?1zV0Rs5(bEt1zHR`;WZKleG~gDdK6f9@__%MY&~K3WEd;+x+O
z`6)1GB!d*4R>FQnU7Ls>s>>xe=7+|l?uX%rN$xxwl5N&v^0OwnzZsSA<1s%Tr&!yM
zIwX%0rBN|{!jHOsbnv4i#d>};^P{;RPx?`xN&`O{`O%oXp+EPEy$O>|iBgYqK`R$*
zEvU5iqm3Ue-P~3r<L{(CMbeJgmM8(>^u4`wYHacy_)dOw_G2J(yZF)7kKTUt@gv8N
zZhrKn-ksQk_~4nHEZbgGoI3lGONIUY=tnLe+nu%sNFebEqa+9UG1#>n;)e`~yb(Rj
zk7xW??Z+BFhWjzXk5~Md<j1qF<pe*T^JAnRqo_RZ>Z3`<5M`#ulDy!@IFj*1XRHeI
zFJ@k(@{%7DNnR$3S29+UC4l`{<|<SDc*Bo3{g~#*bU$WLpXKJxB-xcw`c+q%?Z;~_
ze_gtBI{6E<a?J5#p&xJiG1tv~%a3{F^Ic_u9~*cbEB1>hE+H=V=YC#T%H%t)y>E-U
z+>aH0taO$4NZuu`l9=C;`}XqtvOxF_-daCCVD3iZhukaHldmJnW%frT;={+{5BVoV
z=R#<cKlv8)r&Kl*w-B8xjjgh5W#0&(KmcF*vCWTv{5avqc0YFbv4@sl5vBg${P^0B
zZ~WLv<p)20B>C2l@BH{)`o$IM;4WtULi~v+HT>+yZkLPMujI~CRLT9_k3ZbpKixg*
zFF*GBvCohFejH}*0oUelKMuOw3ED$`IOp^uejN4V7;}%iHrej`%qRUg<;PV&uK97A
zxffiUGbCq;=ZNQtvejQCxkS876rZn<$djP!e%v7ck9bq|D?jd#|Leys66f~@AKW3S
zayR3yANTyY&)l>C(gR2d@cs``>UU1883E*Xl{_Sw#Jt3O0lYgu`MaiaJVZq%_mKb!
z22d*iZvcfTmJK8$p)h%o0Ez}sjJzbVI8kaS5y<^6Sg8O?2ax6JWdgZ-nsc#TE`ag@
zR0yCV4QdkQ$C|5<RB}sI4&+`3Rt=yU#p(gnaC4oTLM>|{+f_Uy&Mxf>Am-}+00IF7
znG6vl0VpJ4*G4V_RPrd%c@st>*NFyE`e;hPb4RrUNXYd`0J{UI9YCD`rUWoGfJXy(
zEP!4C^bX+h0G<e-MF1@Ws2f1N0Ghb<JW0}!SU-RUt}gcz8o9i&)Zl*NYZ^c^>doC;
z+2vZ1cM70$0IdUP6Tnk$Zu<b*lD8u|pQ$^LcXVy!LP&blg~@KjuEZRo6zNXVgD93g
z|DQj70vHs);6U;Uq;CNIXw%=d91y@ja;J$Q!kHWwz)+Im0gMP>7`fE^Od$6^0-mKZ
zDuB@eJV!p#wUOO^jLXLc@I1NGFR9@LCgthR_y8u5zZk$ol9!0i>VBF0l|b%8jY$Da
zrXn@S$N6aiOb=j_bSi)u0n7~GodA{vFe`vpX|{+sTOu=nxdFV!<m+w?Zv^nB%l)q?
zZ;>x>m3aZoce!(hS{T6FuHw8LvY5#w#HF&DxRWmrU<H-+0jzZG*UHKbU=@?^1+bdr
zeK*&+3|qsbGejQ*@S&T#&RwU{>yHBXIDicSeB$PAByl_x2Q~+=C4jF3_$GkQoGjw!
zuKiY$FXSvh;#^!w&D)vWLHvp+BfOJDa(@WmTbF+q!1pe9PA)$Nu#3u1L}wNJ62Pwk
z<P9QU5Wh(m0yrPQg#i8t;LiX~(Q;1!e~}y`?hW7oiL|&cfc-9)3z&le{LSPc;t}Fu
zqT|C+a<M#4@(=L@QEEFWdl6^nw5yyUIZHf8lrg**z@-501(MI>q}1gAu1lx~aK$Zk
zmE>CBf1h)225_6=zr<UvrQ_9|0RE$Lm*~82e_uBLAX0<5SN<6!X+fluI3ITMkY^H|
z?=IyJ;vpvEK|CBpfnf57@+$@LNDu{sD9Nls#A3w4MCnBllA=UeR>fVtL@@XFLrMiv
znqpQE<w?r8Hf4h-M=n1lDpko*A&81@uIzr5gQyZjFo+PvszKBYBAdKg5Y=7F8o~eV
zjh-NUu3n48EA8@H)bHv6S5c^_K}3THySWh(nd_LV7(r;{I?;JnWs+M&=Q*++L?VdV
zRHQGDlhg^~QIf}q&eif0<aLQ+SudEoS2PHsVGtWa_#}izK{O8HUJ&<#Xc9!zAl?h&
z{UDkJ(L9JTK|CKsiy&GC(I<$$L9_~@br4<LI@<)%f&3|ATVgw6d!n>Ea;w^rypyYR
zCaKWg?ixf6c{gHDV)r0=kVskQN~sr<y@R=T!}<l$KZs#LJVSi|aYzsYNd^%I6Fc+U
zF;A0AZ9_>qQXEeHTo5Bjo+UaLFeAxF5l0iHtYnQ1;sqJQAm#)yE{O3#Ob=oP4JHIJ
zF^HFgc#+AMh|V7Jid(}Jl1aqLM46_kZtk?;|Gu3%lj3aREaIzf?7hb1>%=#R56;(f
zgIE~E+d;fVeI9W>QT$&J%)KHKz9@*LLA=AP#X&4_ZT2#Nmod4LxSY6xD0A^H$tvP{
z8m|swO%VHoI1t3zAU+6UcM!h>@nI0_g7_wgok6S*;-et81o2rAA3IgavXuxVcdo$2
zt4%?C8pLLb^8C?xQs8VspHuuYh;2b^B^UcINW@^ft9%v24ss{{zb2RZohH5w;z!r=
zyCA+N|AFYtyVSXh$)AGwnZ&tg@+-OI{z>v1@%JG9aCNyn+e7}BtL!D&N0gf?2ZQ*V
z{37vC5NAma2XQ2bqd^=C;uMwR#1lkm@gE5`eoi?_#W_Wuc5~0T;yG72PjW#9ilr_E
zaXE-9L0qMNJBVwp<;@_jlizR^=i$P?LENI^jNu*f|A=>q&evX2LP!mve+UCYNDCo7
zghxYoEQE{@@`O+(gt8%IhLAUeA|VtFB~KIih>wJjKZJ+K9}b}aiR3!h3{Im3Ln!3x
zg+u?l=Tj_%lCEByqy*79EtVoL9YU6CBej(ap?nBR2;mSagitYr8X?pSCI6kJ63wcG
zP}#Mw8bTHF)qFnk+MG;TT-B*Oh>+|Myso{6q!v-G=Y1jgLkKV#3?W1!HCViQch+en
z1T_RJggA4fM4cE5K_ijTaBfc-A(*b>e8t#ivNkah%KcX<v9IIu$3u7`gjON64xw%c
z^+IUs*6<`rLt_098o0Uyc_Z@1#3rsDZj;f><;_EALEe)1;2O9MlQ|(g6++t(+PU@}
zLul{v4kYq~v{MM3L+HX}SE9VQCC<y?%zL*Gx`)ssgr08Mz9hXu=<O<fNDAIc?dK}R
z<(tAG3<}|;5GIB&ID{b~jCFE}!$TNBGL$%s_zY3XK1(7#j1J*BmyZl#l*?s@8RPQj
zNt_qnUI<~FtB((10{M%sA~)Dy4&jv$=7#WA2$QH!4`D_KlgXzLrxK?T#fQ@~teNDm
z6K93+D#>i(YeZ+PoCW?y2yarHLv%iI%nM<D2&+R_6T*TJ7KX4agyl4NJA}m{EFoV+
zbZT1~!aGb_{B-ZsBmS(QxGIE|B<~VM|Lot?_sHLOl}S7utYvZ?@dM(A(syR9XYwQB
z$3$mu-x$KC5c(?Ur{L2NHp`Bops0c^A$%6Xu@H`j@OcPZL-<94JcKVo_%eiVL-;O)
zZLH@j;&$Q=;t}`m>(?QCLq&YvN#bm$-;?hm{t&{Cu8lLQKQZ}p2)kWfo=Zv%zlE?j
zgnbl$58)3t_s<aakpD%LNfcu__A_~icp!v>A^aVJ+}M#UC-M(7>j?2E(V32aLO2n^
z<q)ofaFV(dxe&ss5Kf11##PRdoR!(3d*_*a@Q-5`nY<)B9#`4b5U$CltsqUo^$>1^
zaM!KpW(c>*|8<pHB=UnTcU<K^R}oL{g>awA6eaiif2jQar-BRx1*zmwkV*2eg1jX8
zUCVq*?g&Ud4^ebxqyYIN3O=N_g_tZ%bS9;kg5nD5D`=pggo2U^bmo>K`V{yTlva?X
zpp1gD6l*Fdr=UD}RRtADq}@s+6^ZiiT%z0<pS(?7nY@aUykjiMYD@~LPEv!oltZ1Z
zz~koDQs8yD{OLwOL6AvRLCDp^3KW;i<{5GMW%>Ruc}#((<es&iGlikRWR^vILP1=C
ztstSGHkHQ|)FFA4D1ORBJA?VSt2kBFRZx%0lSF4c8!Bj|pgonw3Yw6#QP7k`YHO*W
znai7#v>;aD)VEU5nn~x(_!N0tqLgi?<bGD_K&7LCP9&X)y%cm&&{aVWlRb%2svAjn
zVh@SZKFRk~o#^fD+Vmlj7fbpp7@**D1zQyiR4_=vYz40=7_4B3f-wr77fZL)a0NqM
zK1{(g<j#Laj8O0_lg}v_<=TuSk%1cRD)LJ#V->uh;AK}Cr{G2M@x%#4=kC)><P(X~
z1^Hc$R}@TQax!rmaSCxNQSP5iCz(N%QZp6Ia`~$Y?oLeZDz7VeL&5tBRx5Z@!5kVa
zBF<GX-?e{>WFFCZ9cTghLIrQTHli;kU!q{Cf_D@wQ?QE4a@Xcvk`=_2#Iko%ov(g~
zGw)Gxl4}%v!sJ@w2eObAtRw%JDE8|WeB|=RW0I4*fl24ebEASyatffbnfMuTivq{k
z*&Dx5@TG#|3jUGxLWAEG{GnjGf*lIJQt-8c-PFHPu#;pL@mmGolSsSYk(B&B>jwot
zlFJtAeBzeepA`J;S~?5r7bbrt{^rKESpKPCzk&nQ_YnUg?j`OcUgPQSAo&sE-^4=-
z4wE={OQg1=Odcc3sGd-8Qo$t!m#Lg0ULc+(o>6d?M9Q9%V7QrjUV;3?sQg~UMe5E<
zzv9~5QE*kkHCb6yZYubf<c5-aFZ7mcdD|i7AwwjU|0m%`<(`6+FjDz<Lief2@=s$@
z%+g8Zk)Lz1nkS6RF!F|xFN_M&<c^v@jEBPbDT1FPcsPs#VN{8rY6OpjQ80`pVJr=!
zP#A^7XdOnIFp7jxG>ljnS{TK`C>};On<x=RNs?+|lp-k;Mp=^5#H?`cvz2m8Rty6q
z<%t!-_>J3mB_^v7D-*>@=i;X-lg^2?I(ZFZO`^ON<_V(~xi^eJ7(sGh7=99|$GIaK
zVlqNh!U&T%K_xb77*Q(DCrv#JgUR|tGmJW6JW6g6<6+n&31V%c)Z;uFevHYw#K*&U
zf<(?`@{z5cYx!h287Fcy2%}*bjlyWmtQKK3ac!D~(bVPgz^ggAY+}-o94*6WMdb*`
z@ToA`hVg0`v%_c?M*A=Zg)umc4z%e>>`3esMrV>PVdR9-EsU;AJ{XPeVf3IPtvII@
z3E*B-dWX@6q;DAgU7LR4+_z8$gfWo)l7ddm4-uO%o)2Se7(>Gt7RIw-Jja61gfZN$
z!MQCtBAk2X9Z7w(n>&g`Djee~vQxbf#<(yhhcP9L@nKA0)+@vp!<b0&67j*en_qT)
z6Za;$K2N3145H}MNT!FAZ(%tP8D~<NMRa}~__Z+RG5LBJ$FF3+LH?#x9>!d9spl;c
z*(#lJm><T1Fc!MGZ<ENoaEnM5yL$6GsqcibER2g`Tnb}(7%Rf~HjMAWSQ*B<VQi-5
zD%XBp81Iq4AI55uHN+3XSWEJt?;kQLQ@lQmkHYwvN%3<d$p+#lL|JQ_NIoTsjdWp4
z7@vjlIh8MEnn<=1zX(Gfj*HoLCch@`Abv$W!ub4#T+DX5v+#WwKZLO_jQwH!D3yfq
zhimf_$*;tp!`SWWzqk?d8<pRQ&XxS1uFak>{vzK?bl!ZBb`OMchRVS({tn|%7>C0+
z>6SVY#xa@AFpj#4>>K~M{Dh1@dm;4*Ipyl7CH&mCEY5~;j{14x1>%^A$<yoQFs{h<
z8$tdEu2TOuj9Xz`Bfn0(K@{VgBxi4@-X^&h#(k1I#Q(y$OCpxNN+-X%o)STNB)O}n
z5{0CZI3MdW$n!*y89`oh$1$1HhnOr9K~XsikW1MDau$f7U<8F+r7(%}cuTIji$zd8
zf{GMNL{O5XTm+?D`!W%fjvy=Yzmai<u52WC49mNg6-eZYPTH0K;uWk!tW1=FtrkJ`
z2-ZZfHi8-v)Qn&-v$7-bM9?mR_7T*Iz#Bn>2pUG<i@+a&5rG*&fR;)G;Ru4{A)>S*
z&l&_HOvZ?61W`9v_7;s?cNMX>B8W3tF9MsSP6UsVB#5<%vZ5a&k@}yA;Bl8b`&(Tm
z<<j&?SFcYZpAH(4v?Ml;ph*NxU7O}4%_49<@<`1ss5pVwio7+kO$1Mov?X2`os2y>
zIz-TmN=ITRV&@3DM9?*YoCtbQ5zB5Q-HDFR&RF$~<o-ubZ`ZO<1brju7eRk216_Rp
ziSv195V?HL8X_cup-jFI!8np(5j+#YaPkqvF%di)!E+Iej9?U%(UIgUL*m$jU-pw<
zw|<^kB90}II3FLuga{V7`il{~62YVhUZOJ5)nAs?$9JkHOK?)07s1pBrbY0YYcri>
zRs=I#Wo9Jz9kW-d%yxCTRCqmtHzIh`Rpye+A<6~YTO`gEg?KwZf(5SSLXx*#gT)an
zAzw;d8NoXdEF)hY!3q+oL8@}D1K*8c6~*@=ct3*GvIB4tiH+=94*!4#+le2#HLQzZ
zy>usnkEv{oU=zuP2tFZs@E+HvOnw%@W|A#L=bLMvlW&dS3)wfgl)j|0jVM0I3fe*b
z74ho`z9HF3{GRx21mBT7xTE_+1V2)d8g|LrVa>ZE_$7kl5&XlfUn4l++WZ#5@8o|F
z|CHiWa`uq_6~SJTeZ>8d|Gm2?zR7zF2P61f>YS2uhz5s=((VzGqY)e<S-mg$Zq<nh
zPDb#eikDQJir}>D6)IvX&O~rlwn`O+RGf?8d<6eRaF+!y$a;z3I{C#2E|FX&UXdVl
z_r{Cvd!9F#bt{6KB>xhnX}Ozy+vRsi<R#~O5!{d9AvL)!QivHU@~B89Pg9Yu=I*`D
z-K|XO`G`^^ubTVrYkn%SWr--q!%P++KBDIS4@+Stp`wzCA}WfiD5j#gin7#85T$Hs
z6(wC>O3nR7WEPb&t}gptIThuZte~QztIJD<52ClSiW(|vGOLP;s;*5n71dqt>`2)v
zyefPYJt}IsxpIHo@A8m}0C~_=Wb_o5hgC#eu9C>rk)}dd(L+T~6$Zs7Dw?V=$t@Le
z5?e(b6_1i9h_%(+7<){`<5U``ctS;8@_Iz)Qc&<oCS}~}lQ<XN4OKL9^~NN!!#5*o
zrJ}Wp=5B5a6)jyZwY4E{uc8CVQ!3h$v~z7F=B2HUD!RBzCl#GtF8gO!6*)|HQ_-E|
z!Dj*ILvb$^15^xTR&N!3Ncs}{5&ILJQiD_sRxwh=D2hXfBZyBEhZ2VopHVT~$#Oq3
zJgee4S8*yF&EyLz#<=?PBx6-P_`i~IRK}~AK;rBw6IHyd;<$=`RJ@{Ml8TKgHmR5_
z3q-{N6$@2NRWVJ)9G03+d{xD4k{QIA#92gV247S029vK7Wo(^4`F&HO*S+;OmsxMA
zn5SaC>=oS29(+UpZ569jyhocw#KkI>s8~w=j*1l|Qu8tu%gG;nYj`D-@5(agp8r0R
z>s<TQD%Pl2tKtJHAG*4n7o6*d^;AAm@v({x<e#`Ua)-oe<x>@#RqR&ri;697?vE-y
zQ}MZqtyH$F*g^7ziZ4}cBbO(z&R-pU#pJiL%r9quP5upWCsF>4(s`BcJ0`y;{vh3V
zud#Qj_=%#7z|SP|*6yz)dsO^I@|%j^U7J5t{7LQv%wAVNtYV*v{Y)Mp{;lF5i8Gal
zWGCk^3LbGw9VI!Y<~n&o#Yq*JQRI!{l#0{Ly(@D{a*=qJDBhk^ai08wtEf#qmsDI<
zaYe;d75`GdM!Z41PIPV$-XxcLr1&irx0$@7;y+h+UapqY?mZRvDW*h`&bvBNDm98U
z@(1fTBZ@p!oXfd<QRHW`bQBMf6pW$}$-_|;Adz|=A#sAXa1_OvEaK)CB`HRfQ%nhx
zlEhNPw(dDAD~d8yq|UNYlyiCcXzrCm#V8O(r6?*#@pu$ZL{TM*s!>FuP@||8MfE6Z
zMd6L2Mie!p@I;e;$?;}dO4sXY^3gjxn*0Dh?oOI05^26D{9+JAD2hN7S)EJmf3bYa
zK4sLqsqz-962+B#>94I+!%=M8sE%2widgTA9*rUvg&jpA3N4C~+cJzO%qXsRE2B%(
z-O3!Fsw^pOb-9ri*r-}j#G?q`$&%)Ju2hxVX|<zxG@AUi$vG$VI#ImzxhmiB6t5nO
z;;j;;#q6ak+27YQ>PAs7iYKF}A4TgZ+C<SHiiS}%jiOl;jiP8AMH5jjXV1BwEj36%
zal7pGr030}Xc0wA8Nj9LdmGhiU$twrEhFc4wj^6cvG#hBJQYRTC^|>cC5m=Yw2z`=
z6czXAQcs5{WPHS4JbY}q+R4>FZDsW7SxQ_Tem$*g6k;GfeYmWrdlY@5=o`i2h~9(P
zGm2g$y@{gFi0J*I=pV&!&gp-3Jp-Z;92CVs65(IY&l>FVAyHU8jHjb0GOfc<;xOVf
zL@^%zbZkTv&&tTOG@grMWE7*K7%lOzPJJngF;P4p#rP<8r=*XK;stSUhq5{~U2t3!
z&#m+?PEBvIUzJ=DCs28jHlj?FN!gn%$8Y&lCPgthiVve$7sZq)rbe+OiltFZW4{&<
zr$;d(ikVT&iej$Y-&aXqBhHppHZ?~EL5|m{ydfj(TF#NO#cU_{ttjTX`ur%?mo6>(
zLMm?)7dg4E&87zJ#o(PNR=dhFlI6q|QLH3+m$-`f9#KlYAH|nbJ2>sGp}01R4@h$U
z$P#^h6dy&gC5jDAJ#u_Z@`<3UOd3#TBl#v*`IKa{R8lEfM2^p>d`_$}smzzMl%iN@
z;%yV#qu3Eeu^5WS@KqFFM{zKUzh%mf>fc21Qxrdw?<9U3#djp%6MrE7NZdutdOuSN
zCJ!d}MDYuWD8G{Y7RB!*f4KUe5{*yC#NaPi*&D?^^8LgE#I<)jh|MALW3qunahUuF
z@hDMc>;FV?B8t;doQa}trst$A-p0!L49_Vh-_4gI;#rxLz1eB8WQ?7Q;(Qdf@1|ae
z;&v2wqPQ5vr6?}T&J)GWDE^IN)okUe#P+r9>rq@|@*(-Eg?!2JTJ{a<!*67-kZ*p;
zx^9^%dTeZ|eb=+^u1J0o`7esQvM8o1J6EXpqPQPLN-X&)AeHEB*Usmr^cXVeQl1#{
z$M8@LnM{h4d1J^&?k|)k$%kG2ep-5g7#@kCpsN&#p->EkW6)YDM+aqk(o$Zl=vi~O
zOi^jBtUbJwQX+<uG2GXYVxUwErDNEk;VTVUF_ej+YYaItl#QWW49#O`5kvVHD#Q?o
zAs9o&7!X4(wsp0kQYnU0e`i;Zp>hn8tU?r0HHK>BSyOYer{>g%p=JzM&Z*fkY&oiW
zV%VBD{opxu_o!0JdDR=kz_*m2mngm%1pP6DA|4^37?c<q#LzH?a14<co`~VibJ=PP
z(HLsSP$!0%bTfvN^*UNH{G@fzWBA?ZV8&p?utDn}$}^LdY&&b}zj{0dJBF%>E{PZt
zQ*%x-OOlVq@K_8VbuTqJm=P`O`71SfJRZZian`m~O5GT`XL;(yFe@$n$rvPS;oj`}
zF<d&AJ!o%sqZoR(@yO9Q2J_1-5u3zN>U?%nVl!f&k}0By+bv^g9YdQK(u$?DB8vD_
z3~gh0_C&hyeiyTI(mm~BXdgodj&PS4S~XKTl6Q)sa||OYdJ134K9w&;VnDLmPixmr
zJe2v;P)<XS7<$IAGlp+t=q0|1+cCTvL!TJ>N{?a~A49(w`b#9lFf@h%GV(FZe#06Z
z!yuWI()O#R%5?6eboyBpK17T!W=C&l2o58EK8CR*&k%<bM~MF<&k@CVWDKLoN4v@x
zl1J~SNp6ixsV^|8!V{ZkPl(~g7^cK9Rk|6&#28**Y)^{e<rrR(E_YHM?WBm=5BJg<
zo+=~7#ka{aEXS<(k60B-+S6Fo4B~WRK+8PSQJG2pYwxVtF}xPThcT>^nqzn)hWBGw
zErAq+)V!EgNwsrgn9Ff~i#U%cgFK&PK@1CB<!zEh#95chh$l-}$x`Aw#AU?gF{~gF
zo0TN*5?96Wo~sXg!;;q5#IRO^_LwD0b=|>=qI?iT5sv(N3C<Wc#qeniA4^orQu<jH
zGqG88C*zYCq_Z1|GD_D@sheeqvGUKQ;}t#9^k*^1po!Vx+Zi&yTiMVTF?<<AvtR6O
zL?PQrcF0-4RlX+qhWKlbtnXs@K89;CT#w<07=Dc5Xbi_<*d<F()?EyL$oh?8cMQM8
zP~&o{46isK#~(cu@%C5F$Zzzmb0yE+ik=yrls{wG6GN3Zt$iiS{1t<Q#9o^1i(!9h
zd%uIF?E^6!B>$Uuh<Mn|JwhT8dpw4JWGG@d8^a0KbBcJ<sdHYYxFN@BS%!gRRG*9C
zd<-%LS7W#k!^Idb%Qh8*cW~?yi>yVa44sUj7`HBK%Lt3xReLJp=ZzR{$`-BRVGaMr
za4QC@r;=C0?HKOFkViw6+Zp##J^#t7ADJmJFR^r&BY%%I-;W_hORld}Vj5AB=_DB%
zWTqr3N2ZpHcC(e8Ps7BPwycQ!8e~-}mr@I8ctk^S4J9-b)KEx6F%~bZp@@c}T5@TN
zR~?Jxk<gM#%Jfh~*-_DRyl-Yn4V7+Zl+sXIOM1AodzKhvX(*#5qos$IB~2Hs<dIcY
zUPA>9%``OEP*DRk7#d6|uA#DqS{l4;w2FpmBvpx9i`&vrbqzH%T>eq5sllT`hVIm`
z%xn#kRbsx~ZfcIS;?v;Qph~AS1hnL;3~5lrlO9TteU~oGADJnA53_~{QC7kGbM3E}
zWyUmU8gz<9O4u^9)%s*Towu~ioy49c6>4})LtKNcAwl1o2QuoA)E4(Hr-~W+WJxqW
zuHgv{4K*~<P*+1eExCf~OZQ9K{rY7+$)u2E@?v%a4G-;72WnZ3sW+tqV&6o=NwbuY
zD%?n0XlSY7bq#MwUu38?^wiKxLmLfGY3QP%tA@53+G*&ZVfymSb`?GCHLP1~i~qx?
z=G^P9bd(vPx5A~x&TLnBj<~untK8De?i#vDyuE1^A5pGShNp)N<K--w#Ei0bZw-Ak
zjMp%MHT2amM#J;MHT0)4Kt>*(XEf|g_636|O78}f3?V*E97-HUC&gemhed{B1j(}+
zo+BCQ>Z3G_cKL_FEOBhCmORD0z}Xivj!7XB3{v5X8fIvi$s#XFE61#f8eS$5{tC$?
z;$-3!;#3XONW^A3JrpuamXC&av+UP2$cZC8(m|S-ttGcgA$v}#6YizGsbP+WWg3=i
zn5*F}4GT5Atzn)7c7~_(r7W32@oK&XSpo}Kvyep^7IVawYB*+=lF5?wxP(hahT<LB
z4Nj`vFO(6K@n0c6XjsMmuGFw=UZ$Md-jfP7Y}Bxcb*|R1hVdg_Nv_~pCO^>dp@hw1
zdmV8-@gt&$ACqj*@QJH9-hL{T&$YK}*v!he5TzHNY51IcEAb2Bm&9$v?#1$mnJmxb
zn$qx%hTrw%rQJ>q-)d-}qoI!PG<>h2fR0CW{Gj1S4Hq<AlzwS)>4ifY4r};X!)^_K
zYS^RUU|Z!EsYk;f8h+Jq^LV=Kfxl@O+$B>;>zic+<rthl<*$p`e`(mKVZVmGTJoA)
zl$VO-IUtp2_*;XooF|x;B3C|#du2(MBv*Z#bwtBa4QDl+ley4vT*E01r^S<so_~lZ
zh!WnSoD>I6t78@2qh-qMoZ%!2xjn&_lhJt%N4hHePOCLPOL}!lwk!?zG~Cy4MZ;Cu
z;WgaSa7}i+Zpsa*icVgae*LUU@e4VMxFl0>ZBLoooW466{v(-PGV89azDoL$Qe^~3
zr+WlbbfoIY)R9-m`m0%KI?{Dy=y)Mta)=6P$&E|8nMa49bi74&Mm`-6>)5?V&9B3k
zmQt^r=OG;z2c}Ec?hj1ACVRDxLOQDJsG*~<jv_kB>L{n9sE%SfDwOw>(s8ANr?`$1
zI!a0<<&x*$ZZFzJ%XxNoO`f1j>&VhkM#ru$%Jzd<mG<dEW=+j0uP4t_(6K2eX;wi;
zMX9!2a&<_@E9t1Lql%8_x+v9jJU&|~ykD=%r11O~Q#TG(YU;?=Vd;qL@aU+eL)Fp0
zca~S&&=Jz1=m<|~=hu@{A0S^lHAe<ENM&q}a;{&NI2_gy(Q)i{nL{%&ujEU)(OHS=
zi0RPS9Wl^#T)&<w#L%($Vzx<r*wf0lQ*&$`32{$H$3f|}b!^?I%S1e?qYiCWKdr1j
zW<91SXG)F*PbtB4&l5W8GPj<NC-r1pz529LpNfQ{w9-gNV;xg<Ow-XsM^hbxbqvwb
zOh<Da9i%NCEp)Wh@sy6XI{H4|u9fI{(p&3jRVi~&D@Ed`jgJ2YD2Jxz3_GE=V}ILA
zbG<tJK18XS=8?X4(jlaWj-EO?>*%7RE6qggCe@~Sa%4&F%U-)n?M~lH_RSREdg<t`
zV-O8wRQpKlGLJgemGel!{;YGLj?D*jsbPR*!BZowOVTXXLArToYR=O-hUyqAVX0%7
zj%Rd?)-guMa2+Gq&~rLgbyj33o@JmO9hffRI#Qypl_JL|9o{Tk$n$#gG<u|WmaN1c
z<vho`E8}#G*D+DY%R2t-lQludi_#+*z5FRM>0%b@n`zceUZK6BW6e@qKJ!k}A$y~6
z>C0qxe~ON47m}A%({;?y@qvyHb<ET;OUDu&OLe@eW44ZkI^GrsbiA%(j*huH-jL49
z_OdtoO{t-8axao&N5{;!be#KHou^|y>mM~NbAbdZl5u`<h_b1YE-03(D`hT{=%S7D
zVO%cM-_fy5$Gb8hvV77#%XO@z!3u_rl)Ck@ExnVh_jJ6kL&jm!LVGo%v~U+?jRZ;O
z<YE!NR@QG9MS^ynYz{iM>)4^=BOM>>_*CXg#|9mr$YPY)F-vXhtZdXFSnX*=*0@yr
z@VGK^rL;xIXA<N(zTngp9IAZIMpI5y6q~Zsa?-jgU+T!o&e-O9c=$kvuXKDZ{_FTj
z$2U55%AT*|d+E#lG)oo{Cw<vM`<L>b{hgH`bo}V9g|7#uOUP;0vZSX!v*W+WW<?@O
z@r;yTWzQLs9O~a>$z&#Xtv_VyWlr_vN9liboDe^C?A5VP$9_HeG5?T`13C`sXx+*q
z$-gPCyPWz=OHZAap8G{p4(m7~8^Zc_QiB*Am7Re$!jF^42koP&o|CdqN-J_Yqj;Kl
zM#ot_`6b_TvQN&k<#YXc9T#*|y5yIO_L>)UA(v@+O|}#rC(}JwbX+CLT4+o1hHSRW
z0(W%enPc75@h_9NblfH>uq-gAXl*eN{Es$bc9-NHF*+?L)j*noXABHCkZvHuKy?E(
z4CFEJ=jcFb16c+#4di7qpMe4f9x?F!nXLQ<Hs4SmGVrj0x2o!AkEBbopn*aLiqW{R
zfg)1#(RBS-dQmD;;jXH>C_>~YPO${BB(ap#AJQeOjDfOL${9#m<(C>nl!E0cRxnV}
z01Ww?23;DhLQg6gXgDpWGP(Fum82R`Y`RU$sc9hFKobK^4S497VZby{%YfH_&w$@R
z)If~Y1`N!ptg8ls20~O6Vwkwsr$<P{fnnA3c}LTe#z)gN10`y9lGY`u8xTc^MW5>!
zc+^1LfK8VY21ZWH5zE@HhrfFD#|%7fpq_yz4f)M*eJ3<Io-k0CNl{v#>QJA&p#jNi
zKrT&4RwF7RHYS;OqC+#bE8{lMKyw2v474=l$Gy<SKvx5;4YV=P-arQfPf1@+>un8e
znU*taTF%O8IYQcT<b`xJ&`D<bm3GCa=j@x7Bh%5DS=Y&z)zEVc^fJ)fKsN*34fHS|
zqS*J8(VL$0wqKVblI&xkuYvxos_FEceypVT^kiGxPwNAyOHwQc$#jge2NQ=Fc-p{F
za;aw+$>XE!3Da}LW`u!fW#UW(Ogtw;YTye4Um6(2zQ1VTB?F@kjNu?ZZ{P(sDq}L1
z2D^@?kCRAvD1AIp>Yrd>kT>b@L<27yc;CQk1FsmEWMHnuxq-<BrWlxMU={~|Dsj4j
zY3}$>KAR=eF@woBr{}zCV7397**6WmX5e+U>rCz&5_?s0XIW-;4y%$G6ytdY=F2b|
zSZ-he^+g628(2s##os3R%afe?CFDzqqQ7I{qv<(P&$rWaBr?Tdg@Kg@-Zikwz<V?+
zUPTu!Hj>+lKCCgY*1#qMpBnhUz=sAlaM0fI>gx=wH}LoL9N`l1ACXJ)V;TsN_4Nt)
zMq;({nWAhq@HyAW7K);LW}x7)<Swz5N@e0U1KVYzFq6B@4g+5qIA-9ufv*jGW8gPK
zZlz+Ufo}~YYUsZh7*Rw2&cKfbcF8Ve;0G$#r{_qnWc|eC&jxnWUc4<ZBS&hMEJ3mP
zl?GL3<orQ{JqG@g86iJ-BwY;l8ra9=VFUYJ{UFH!1ICPGLw~c9L!8RZfn?1`3>=m9
zH6tfaO??<`{xNXEz;y#RWV5QSpEPjJz<C3wWc&^6IFf#b`dNvb898Dghm6bx0~e`Z
zGjNIIs%%8n^~>bD3U|2TlJEU`o9g;+N7AL>O#}bR)@>q>iCYG48@OxW9xd+}_|K5P
z*iP2J^jOkZ#^k=N0uyOw(y>2TLn^t{S+ItlPG0zImgHud$ZO(Z69r7j4lhbR6W?X)
zV=C+UO$a_j6#Wqs1x<WLo9#!^YkTxUX7U6fq_8P}eUfybsEJ}Gikm25qLPWqCQ6zp
zWumN!awbZf$X`vLQcce?<tO;`c(vqF#>C=Uxum>_3bc_eSF*&oq6xUAM66<>stJ#Y
zS|+MV!D@O9=2j<4a@mZWnkKSMNbzw;(gk<dNN(U#mDjD=N3!ZjdeB73L^l)NO(-V9
zCYqRNY9eAnWw_Qi5hXEASf>2#ogO1<CUg=}43aNq<it(bChD5W(@H`H#KdD9x;j)u
zEO|8jQSv6WlBbWyO+3M5=_Bbf&VnM=qw=Jyi_*YEL;BFjgzSnEijA49c{Zz=iRLES
znrLUDg^8A&jy5txr#i^I$kEC~YZH5BB-gLtQ!>R8IY-lF18i@i1MBH5K~*yu;TLA)
zbTrY)ghZY2uTOU9Vxp_$&dkYS&4Z7m3zw>TnCNL@oQd%!dYS0WdPbS(W1_E#XU*h7
z?#ChnObjIHPn6aNnHX$hn2Bdh4B_}l(@#s-a1e%45iT8<V>riQghURN=4Z1+d`^0O
zHcNthq?x>O5HeaynRwnrzmv(1zhKH=d+TEv<U&M|v%mxsFPeDW#2Y4FGBMG_R1?!o
zylmnX6UVFRftkr|WD@zVTFFH;*_5BP*Qc1snwcYHx``PkCe_k^i<FX3pGj9=Wh=8d
zup&wgvrVi%+2J*g$@nTs<xLZBvHRl59Fn=RG~|p^OP|LM&Ns1ueUvB?``3=8FOt}n
zXtdDON?xNbF|onKCnlDf_`R;@9TUq;EH|;j#Cj?#iSL_OTO{ROaxq&)@*Z(x)r{?R
zJ*&yr5Z9XcfaF7>*smj5Uo}JcN8}$9pO~4m(ZnWMH5MMS@Tqjc#9y+6O>B`3!AyGi
zy{rO~ttP%8k*ne_O>8sqwTW-c<mGpP;wggLP3)k-+7_O#By?xy2-%vNvQw7r>5AW)
z=yE<=uD!+bI}^i$X@@shKbZJY=EB5JCVnyTtBIdY`IF+z-K<tD&$ci1SJA9N#ZrC~
zhh^j?=9#smb+Vp6$cL3kSw5xAkrtlWmgjJZlzsH!oQd-$_M13h;-HDYO`I_0wki&p
zIBd$DHyk%1zDXrVOdMrB4Nj!@>!l1RmhxBqOmQ`(cGf=<`K>)UEj_1baE5qVx^q7J
z>1H0mq=yuxFEUmaOk9+t^sZ!zBrlt|V&a~O`zEfMxF$P1ja#?yTsLvU#7z^@oK$jw
z1Nbk8NSc;$6Y;ieuq{1zO#CMsV{^}4V)5cB!c#1yTFA7J*Gi6mnuP<!QZmTXEtH7p
zBIdD@#bsCorAOl|Pd*y7YMxXcwot%AB@2};Ji<_{KrCpXkcGk)idZNvRat0B4~ts4
zt`@T((;@Yjl=>}{vryhbX$x5v4pEn^G8VommQt3@6)TZ6zS7E$S)R)+Jab!m^0e|)
zWLpwQVEr;ya#XQkQLk#DnuY2XYFG$b2wA9UA)B@NEO@MBAW0>)EXXWKck<Nh=(QkI
zFAe#b8=$cyWfB$gm<7#3*h)S;jaX1E#G8Af7UuNN8f<xlw<wmPTQDq0yoodKwerZ+
zOGBmw;gQ-|aSJxxOIUc^!V?y1i?SrMj)g}pJjPaJA&5)Tu1v?y%c)XNT?_RrJZYgm
z4MrDBaR#IT8xqTg78<$UHYWMHcuF%1%`LoP<4qeaWQfGr!d?rlEVQ=pmW6p1+E{qX
z!YB))Ewr`J&O%=c{VcS%(7{5Eg>D>*j;ymYu@kX>v6L<r<Rh>gT}fo&bhprhxji}2
zJ<JXRT6zB4ZTGU!+rkRVvm;NQJ~R-YXB126FJ=~=u`t}iKnV#8Lu5KwRt8OM2GdwZ
zbtnf-lwlT{oX?g3kkOV3M_357@@%S+Inu(j7M`;(jqxKN%q3UsD=y0%W8rxVGcC-r
zFxJ8g7A9Gk%$mnpc*(*<2Kjgk6D+*QzDU4tl;Cfbtl?#jz$+G{%khJ%vvwo^rdXIN
z&9R;>Tzaw$r^}$V^vLwhpnmK?)~h6Mi2oL5TX@aF>r^CQuD0?dil><8vm+%^-oKhU
z$HH88b7rxW-MthUf%z5|Soqk&1`7)<ylvq_3+pT_vamQgo><AM#F-@)mRfj6#<@+>
zXYoXiWz1bp{FnjxuEe2*_bsfF7-->{+*|qn`K;A6kWy<ctRZ(+>j$nbRo$4LjOX=q
zPsZURiK6Do!2ZO-Mho9r_};=M+59bhEz8!zW(!*+yz}Jw%ED(BKDV&V!gf};)xwt?
z(l5C5WRRU`myJ|5VR2)J+it$%DLa~EO?#x{^ah!t@3inOv%~>Oepe#p2Ma%1_|3xa
z7Is<q$--`qfK0tCqMt2vv^;Y3o0;<q3yQ<P$`o^2Wzhbx@I`9M9t(eRMQ=(Z`*^Kb
z%AwYteHQjx$Y&$JjRO|0$s^P_?#6M@!r!t-$wncu8pqRd9I<dzwwgGq$8pTUaSQ2j
zWW@20g%cL8Sh#8-e_F~(3ui5yvvA6S?_l<6S?v3>&sd0D%$7qGrAVIh;-nPWpFQDB
z_63Q?Guao3^Ix;X_%e$;-J<+83)d~&wQ$eE(DT_hEF3A}xozR5g?}yFlJ$EgTa+ay
zRUtoSrrfcRaVA^%f6S8RB=^3Blz6hOp(Q;VOL;^|jbq#X>@?!C$J*tIBQuVYag>T9
zZyfpJC>TefIM!@d@)I8-iUSXm6d*oA6dUPL;W&!KQ8b?HsWh}-{=a^I_JzWEip5c!
zqI9_gNvk3$VpBSftT-ygQ8}I*qB3!mi$mO#tg><RIh`$}d>j>I%u9GG#xd_qQUR0e
z+2!xgWLJr!s+5v7bun9#Vjx%}j+${ajH6K;*>QN{s2zulOszP)aj0=b*^n=e5Q(1{
zh$9$Bt-LAXgB&tA3iWUt5fW+TR*7Vm9I-eoikg#E(xb;=#9=Zi?scAJiCLUU+qFrM
zcuIQeu*;9iXvFb&98bhiFODafTbI*xt!h?rPF8&;8xUnY>%Ut@@cf1B#&I->qnFh4
ziP|)dW^r_hqiY<^<7g4bQ*pFqk(R{P#8yO^eW{^M98>b9=<>4<6g$PyIga+^9pdOn
zl5rvXBcqfU%h5M8MO+e+6Gu1Z=E<AVouo$`ZywA(#_1M=o^gnKLVDA;K5_IVk?`)v
zx$7UtfH(${4<gF^?q*C5mX2^{hsH51j<4eQI*w=J7#_zvaV(2tL>$k?F<G3C<GDCS
z#_>WN<Kh@aPsYTtyQF6{`R_j_2TG3T;~2}RlT|6<F`l_E#_>`d6UfEpR7ToFM)E6E
zUMA*AO9t>HnUwR{IfpF4sc}q;<1GnAx;;IPIV3aUm`O4#j@L<ECC(;F?_QHB&YL3S
z4JvQCy3E~NmygLznNPkbj>T~-h-0DjG&4oUO^&x^c1n7LETN4oe5p;2rA+QSoV`4b
z6>)qV$A&mo#_?_(>*81+$0{1UAIIuA-is&q3fUZFg4W3PRmvls`Y?{QZhU?qetx1R
zBm8`Jp$X-s{<3j=#2SQ)ho8i;F^(@eKAYnBG>$Lga?_*TW{%Pp;(rISq_`ZP#ql|n
ztwd2IPD<5HF7Rz}oI0Cat=r?+AroDtgB&u*-^8&qj^nbO#_??&-^KA~9DCyUK8_#a
zkZ}D)7BXA^nJ5#qD~_LBE*^@qn@I`pU*q^qHs=f3zsK<hMQO3pu4G`y<o*@M$$vA%
zr9*M-jbmRN`x(gxWxZcax_ZC~?93EN{vC&`eIbV_O74+3j>;Iil{iICNHUHaZ0l4U
zr{lO3$7KoTB6-fpy5RVqmF}ELZd2z-@@-KrFg`C5#lzC#A#0E^zfN+McrA|6DJct5
zlVP0kx^<J{zr<T{+>YbL@#Up!b2HNJP?T-?UL5!1NVSn>BgK}R8y?H_+$xYVW@e5&
zq)4}sVPiwS^hS@Q<gt-yL&Usx^7J?2*>u6hH8KUo{vjI=+bFR}ecVO?Dbm#Au~Ey$
zBQ^@!C}g9soqUR#Wuu6VqBcs|$)|7fP@|ZXVwUjYHhxM=K5JgxS}AEmUa=NlnwDbx
zOULAMt}-^t+W5MWA}>Ievr*oLy!t3d1sfG@z(yr1)rggeRftuI9cC$xeRU>l*r-X8
zO_VG#^U4+Sx$Lm`UoypKLoO}+HUc(+HbQa%(7%+tfpBuDaz1~a;u}=OhT!v;vLiNB
z8&MlE8@7#v4b6sb!?a=9Fl-D?OWAc<?_9Cm%f76;Q<b=gSF?>v9prJ(BTstnk1SQ&
z#*})VM{PW2qmB)++0Z>xa<#@8f^uAFnel{;x;E<Bc+y6H8v|_QoK)-EXlSF6jRumN
z>3MRW`jkJTv5h7&p*FhPXlkRGji+q1wJ|D>r@4*Z`BGZRrvN6)=kc^8Ig#lR-r7bR
z8Q46YP8lhJ?Z`V5+uP_sQodS-WOcOhMy96|%TCHj>B6k8jzJzz4oS0&lpZ9#i9K!f
zB9Y3)2f;o}N^N~f`q4MZ8fasX)NEt444sW3HfGqKUn_f_wlUPkb21%otHW$OW8*}Z
zb|Y;3*s#>V7E1o!?S|V}U(Xi)tS#?FWQwwUi#5_l`$fvrsbxNB+ir{mNoCJC8{=&}
zPrgU<jJ5HCjiog`p=^&NC)jw=##9^ABsgtMv@yxXWE(Hrctr-Ygy-yD_0EU(<U*eB
z3wwqXOCG;I;+bNjb)J+31w41x+S8K`W41)EjhQxP*?85)*-w;TK2ct&>5*g2yK0S1
z$~&#wZ5XCh8)<J}q`YpUWF=dIaE^_+Hr})GzKyqR%oE3Kykld&jS8C;ITqVk;PQnw
z-nOyzFI)6QHtI+8wTrWaFQI|Mm)Tg!<Z`#v3LDiAB+cHXGIM6mDhcn+ip2J68*602
z)<KavSZm`08^>%M=OX>k#!egGlCP6-w(${{=f^g_u<<4N2I40+HquO1?j|aq+Sp7Y
z$`%`+x%_i+o?I_kMzXfq*e(lPD!i1sL+W3ser4mxsZOW%+Nr}k3i%^P`G)$6ZXG1|
zI~(8I_`}AZZ0-jeyCgRFTF#F)e!rJ|FI^t&{$%548@p}%V&hj@{w_O=jd+@;!5P)g
zpK^V_EnJN8Px|53${rhk+c;$7FB^Mp?2{&XC<koFyCve}emX3zAGEQqiz0_Sj^9%x
z`Jh>H4~xUH>U%1K`eYuJFpw__$;&?ysIq(#=$ODs8>eifCXklEX&Yy3+_G_7!o$Wn
z8#ip+v~gbAvT<D|;!^fS*@bLewsD1?w;PrzFH6XS`|=l4kF-&)%7!ev&>2;p<L9a1
z+4iz6Z%rI8=aKIG%UyJCIgh+=zja&Y9rjmTy+`t&Y%(PB_JtUWeqYW4iR60-$HMK;
zmiMG5kdXiqsFXmS1TqsSl}NtYkvD;S2}~TSluRIhBDs?nO`sUbLkT=gB4PoOM~DT9
zg@}cTMTlQyXBJOD-V=~UOC*x-7&z|?$orNDC)kbT{htJ~5_tWe^fC#QOQ3urIb~%N
z$+Jn<v+AaMX%(b+MNh>9x}Q<yO^*`k9wC(zsFFaf1iZAYnn2A2vc)oi>Iobuo1F9-
ziR8;*MHbjgX68u1NQE96%UB7QWBH(TUjqIF0to~Ycrt<dGzf{Gm$EGml#)Q0VuUEA
z)C8gl#1hb`7)0I8mC8+WX;Gps&Pt^3Hc29Z+9Y)ncr<~>5_mj;x~|O=B=Rch2U_x-
z;d)Fuyg>pD6Uh*jxo(t5z7*89f~REyjmeu3MQoZtGxFxH(t<=@l6kL<(kcPL)(NyB
zd5YMU*p4W<?MdXdicSf1PT*()#}eq0K-UD;C-6}MISF)2U~B>}$c!Y=BY{2%^i7~=
zBKf*k?*t^SdP&(zo|#=0d0(qnAmfi8)pGJyc>+Tccshap2@FVJAV+CX;{TYs4k#z8
z_q)q33kU)tu<X(<DkVWg1IxOwW|K@Zne+)AmKLfANN>`+^xiuN0)nCx5l}&qUPM%+
z_bQ->fJ*z{`SKh8p7YK<_ucos@Aa2tGV=yq>C=+Tj&0I6g@a4dv6perMvol4mxBRf
z)-wmag!C5dBiL84pJ0DM=K86tk#}GY260N4v+BQO?3k5JCA&bv&>RfQ!Qvb&$-(d(
zjL5;f9L#4%$vYtj6FKLFj}{yw$h_|h87nwWaJ*n`Yx1NVOwPen&a^yMhABcGCnYd2
zI*m(!bK6YqR?a%p<g<j#&cPg0nVVy*apq!)3v#fK9hGeGjn5KE7Uf`fk1`}nbFeH2
zpGXCk3$Dn)${c(kd{K*L%);<t4p!x0^Ph>_N!WHOt2we_L;g_?)(T%|Djy4}FTJ;3
z_@_DG1g7yuiSEe3&Kzu_&m4Si=GvNrE$m4#`$ELLDM{OMussKdMf_64uLQpqv=_@u
zpWo!*+Z-ICnTWf%&*V$mFZ?^URLCB|Q1{Heoafy$_sP~o!X<Vf2L~mU8$!pjMlT(a
z#qx`Y-{;^c7uunWA0!Jmv|~B=QTR`SKb!h-A)VW%oyak6**%$K++oOYihGF3&j>jy
zcrFL$g<LRG^OUt-&cPLKAP&6Yz*TPkQj_N#xX#T#2mj>YQ4Vf$U5Nfr@Kz3PbMCb?
zmU%SUdM5|J<)CNHro659PgsA?0r9TjAA<J;|IERCArInFSi2sybE*E7gTKWs?-t{;
z7>{%Cgxgw?Jo&4o@t*UiIY@LEdp<3niCKa~o!yMm^Ei+s(PY8Af+>Pb%_k(kU;)7`
za%WmW2MRgxyaR<DC?Yx>C@Q3s!+2ic1>wa6>E}fUikrNI10_wKDrDzCdzu63l9Bg}
zF?(s@WgI9gq?}-R!BMr1JIyLM@R9>BJB*v*87x9xaiF4*N~T^}NEHY86i?jJ>OfU9
z^;HL|34cwnx~cQ-JDUSF98er^J5bYsW}}UMe$#;r2WmNx=`e23-c{co*W;MwKy5lK
zW3A&rwgb&~q?5lT3W?o;9N`W@r>VPyl<$$^aX@vTp#zN^@H(JL&jcLuEPw-kiSp42
zb|$}~Y-(l;iV|`l?7-N%cHYPr5kjsz5H)#S2kHs0FW5kkPH5KHfhG=o?Z6HPnmUln
zBnQT^v8=oU0~{FWKnsWQaokC;rC=)uVh*$x-d?bcU|R>;Iq+lNQnY7i_({1A4!kW%
z9R=TU82ib)DW#@WPoqI+5xY3>t^-|#_ZIBtKzAWM9Oxyarvs4!34BP6xk!k89O&yn
zKS^cuJt6%a_;PZLQN!#?(jW)8EsT&}8Z3N>;84L~f;1TJK>Xuoq*#vP5X%f7?Z6mO
z-WOz#@pE~+0}~ur?Z6rbCW^j5aFXC;2c|eMRrm}CW;!rUIP*>yQuNJ~Sq{v0V4kVZ
z5i(bh57%(D(s;f^tCcVw_gE-=kpqi`EOB7Dkfnml1ZlRROVS4ptZ-nZsjPC~Lz8dj
zdX$;-k+gb~;99|Tf*(8Zi396}e<sMD`IO@&d-VoUHkx{ghPKVZKX+h@178T=Zl-P(
zvW@lZV*JwoQlej(spER5>~!E82QE8s#er`f*yX?(spofMbBx{F!nRxZ9tZY1uuu5+
zg8LmfAmpF}ha5QUz_N~Md@S*Zi1AM=_bB6L-J_!XAjl}cNdG9F>HH@LeinY*fnOXr
zVd|%ZoD}3UET>Jq?=kyXso^=n^JcGJaNwfwOQyoFI#(UI=D=SL{LTGeO1~p`!>q|o
z2YxmAEeCE3U!7v~)o;Roci^s&KODF(<euQ4f;1a&CFz05A3FYb73CiXcDJ!5It_dz
z{ITE@L5fd>JQGY1Gkz<}BP7X*WGC_pFW|&;PNWEDu6$19H#wg=p;FL^!lqKliRXns
zYi?sw5mSFwC$*RpFFNtKYVv$1iaU+#Ev20(<HV2>2_>8;=|rj%rJTldrVQy$q&abD
z`D>HzB*u|qStrUl;dMfD;@bh$%R5oYiORwuSiy+{Lo#0yeA$UtoY=N8gGxpE@0~<a
z#R-cOuR2jp?5$2@3`?sjJm<T#caP?#_sV?DiRw;dJMoref8B{pC*E}84JT|))Nta{
z=}k^fj@_9YtLX%@WH?dF^uSuVzDxVOds3DYwVkNr#GMJ5=LctQ8<v?gCDy4|=F?u8
zb|-S2P$aLz38xb-$zFU)Y{rnx9uqSYCT2DomgyLm>vqB;NvacBQ(~3@ne+Q+R+<v?
zIpKF=f)f*+2sjaRqNNk9oCrA)cA|+?n~h>yB2MT+qE0k$B04yeVqH<{v8zobdstdS
z;f*9O%^FLTy+__uc&-!8B(=FzsfA#>I;m`O%!$@cbatYP6KzC)+X+^c+1tj=oM<nk
zgA>Kdr7%m?pVK>v%{xw9=xXaEoLM4MV(*G&4<~vG>FPu`A<WfX$kkc-$$L35z=?rQ
z^cJy?Y17w<eopjv;yqJIE0j+AtkIc+oEYrHXep7(5GO{6%}~>Fm=nW=zdt;a1`H#e
z7$u5rSQ?{a;;BxIbz+?G@q$cxy+bNPmEK8{oR}=)94DqYG1ZCL5}oG6bWVHWGn{xd
zICZ8IcZ12ddSyoY7{#@j65HG@iG+b<u2{|!%&eA6ae=Iwg-$GTVzCoTc&)~XPn=ll
z#4;yVIk8$sYPl0DoLI>@!}EW*kndP3yRFRbIGFVzn^Vxbc6JKyGhgGxM^3DDVjZXA
z3CsG^mhkypUX<e<Q}5$V9t-f@+qU&i<67%yPHb=*&jozSS=YiwvXKSNwe4r;Pl;`E
zVzU#UbJeK!?M{5@#1?jAQELaQ{R_^<q4uqezGU5ItSKvXX8g*D9Zpm!WdB<H{9emi
zK2m$96W=)T#Xni!I<Zd(`7S5EGx=^O_LzLH6TMd3Xz;nuUZ$>{)i@xPImk`JiNj7D
zapHR?j<R!BXE@i`Hm$L}y4*lUUz}z8(TSh93VbN-!_Q6}r=<%&xbTY;C!FZu!rLyK
zbmEi~WnC!e!f7YYIPt`Zr%s%8;+zw=xwM_=dctzviR(fx2vWJ|#MYnfmz=mP$`w<;
z>clnS3)ZI4?1rh|6!NPRJ-XR$36Ab&`^|~pMSs9aBIHlOKLqbNF}IuTx@slT)qN2s
zO^J~|6#kds--7=LJ`#M)P2+wdb3Jn+!G*#u6mcQZWi*5#MMxeOl1wF8NM6B5H_}*Q
zJ{R&!w15kYJ||dEu#h0d=UwP<H<6^M3op2k=0ds)TV6<@!ca`iUUZ?jkP>FDl0s4i
zOPL-@OIgfYM)bH_M$5YZ7gQI#E>v*gB{9o#;bj+IaiOL}E4on01*;2HU8pQd6>&=^
zY^+5T5=LJ&`RhWe3BD#JRu{~upGM0!T(C*BhG4u!)HB4smJ69e-V_Y1Ge)_#@H#GJ
zyYQB9iY^!ICeIP#5OlgQRq93?MHIK7hb=mk^+tP}=7P_Kx-Qfc-7gpr934&xx)5^V
zUGeZ-dt2Crh$QKPQ9<g;v2^;c??SE%&0J_8dP70#ja+DK@+K}cHF@9TcBVFWp|uNb
zL~P+gOChaDy4hla&ijevZKa=S-`<6GVneY^dt<JSxu4k4g?C(7>%ux0I=Rr<g(+;f
z3thyruM7Ry3UY~d6YTDScHbB^h908ybYaPqST7fPOSF$5Qx{0{`@1l}g@G=-CnLpK
z$H8J4<ibc7Mv3uY!6AY}T^MG181BLd$@TAKWA@Q5jB(+8(I=Qb#|jze!gy0*5fg<^
zGL^~Z%%A4MbQe}iDKi8Yy0FNFnJ&z7VYXTNJQwB&pKB_t#(a}6aG{qpaIvW@V?PLA
z>cSxDqWJV)F5(A*D+E_9G3M}xF07L1YQZ&v)IZ{Ek?bG4@QDlGxbUqD>s|QNg)hbC
zGZ!`p`ND;bLfBYl++=##?84`9-ArY_Z8cN33E3_<R0{gag|A)MVJbU?c-q@GO^NLi
zzT1U8LcSC1eLr!pkOP7&dY=pXg|8W5OwNNY9CG2XnfkquBZBN1b_>HX7k=c3c#ZF$
zKe_O;3lA0irQkR>f9{70iYPeY0zdnb735WLQaGch_$lDR8Ht`{E+OXx&kJ4<yeLTf
zOD<e?;fh4Bx^T;d+rqC2UKhL}c+-Vng)rCNDX}}k?+N~9>c0!Q>%t#G&Wy0r_)p>Y
zO`8Y*@$;7pf1CP0LLLb|cHxPsKXu`m@C3zZZ=xVc9wAABr>4ZHq$nt8rsflpU$B6J
z=S;ow+)P>)lIZgaev^zv6}+IJjDoU?@zcAQf|5dB6r@sIK?&i!h{PyEszggENE4DS
zSX%JRo5sH_<rI`xuuj3BZa!3l3JO{(Xr<sK1urY`C{Pu=qM)LJ8VYJEsHC8>g4YyO
zS5QTPMFB4;Ra0P9jNkPPRTWGskiZKvuZqHFv6nq(r%lnMqzUJfX7)&VUBMd)>IH3M
zN868eOR+H;v+*(E3<b3mWGi?}L8iioc2I}aZecr7&YGnl@j)V;*H(<{Kez517hRca
z){A-V3UU;<6etRQK4Ebva4N<n9X|6OKTw4i$>%pntN$R;tr*A7l!)2*xU^S+rl7Hc
zCJKBC{0izTXrLgVAgCa$Afn(=1LIVUkb>8rvor87A)dUXvx}0gbrnQe!}`XvnZ$Yu
zc=3ecg<Ko!&``mG9w{V^qz4WrC9&pP`lU2wapkSe6y$QC+t@}GELEzYeTg-#IV+}s
zgjw=Tjl~qSRxn(_2nB5vv{leW!Mh6DDQK_Yy(RXJ3OXppe*tXf+X{Nl%HEWmmlwDg
zeMdnjan5Hs!~Z0AW<C3q`K_S6t72St?WLf%0ye*!g6;}>D8@ffEVL&}Z)f8l3iQxN
zL0<)f6bzQGUYb&>pMw4@SHS=UyoG>go(xostDOu(l9S3zjqw5AAqtwcv<+oHoV1L*
zo>BEw)-d6Wa=b>eAO-Uj%vUg4!59UT6--g^zJjqb6(=efr(nE-V}~;mx~1@%bG1AP
z6QqavKT(T3Nk834pTt2akih@urYe}GV5Wju9B9sviuM`eBztO%4;Qnmciv8)tzeE~
zJZ0bZ_uRSc!{2lJ%(G|n42|D&Esbpp#D2Mg4-_m^ut>pT1^mmBe~v5@vV`ldv2CgF
z+wE+fYBe32Yg?gUrGk$nFBi^-3RWvvqhOUNmOjScBJn#e+`94iVwHWlYZY{EYOB@M
z_OXIb6s%Y9se;=I?kKnsuzkk;P{An$8x(9*(DaIBlY;FEz7)P$@N>Z}3ce6Ro2?4A
znY>bB!dD8uR`892Z^h>h1qtiR?G(Okn!V4NtkDV9U2KkmLkbRan5M>dE7+@GA4hqd
zeUISYr<T8`+V(3T9uS=4Yu0~~{h;tcmn}yWe9y)n%RS2ZHZ>NRYP&ew&L;f8A>-Ih
zjs3_e#F@b6OtAmNl_*gv^&VS(5q?5Jw`q1NUthH_<7uhk1;I0dXBC`dhYSDxqUFY8
z%V$$#w7e+FB?XriToHbiyWGZdHxyiBi>Ah|b0%E2kX)M@yQ$!2_uQvbW4{Wyr64`Q
zN`-e#|EAzR=ls>A-xb_dj6*Q~P;ig?o`QZ)El*b3VtK6;r|`t==j<CASRZh>|41bH
zTfsk^LMqy+c%<O5<o(=(Ckmc&_i)4S#xr)i8<pLt;zptydE6-K#tUvFxsmL~b8ZxL
zBd;4NZg|tI1>DBrWBCO4=S#>h<S1|U<B4Qx);v!W3%T*U8%0E?SlF~=D($Hdi@EWl
z8)<IT%%4zP+%mO<8}viMP|}T5$yiFT(bGg`Jeg)qccZi$Wh6^k!E%D}jOB$xu!0*e
z33*wNK3@@1QLvJr<7uMB4XYb9+&G+QrIV^|yzWN4xL4h%CZ)e7$O=?<W7CxuBn)r3
zVKXgD>1j3H$Z(^;#f(~RINWf$k?F?X@tJSBk>y6!MK)(|TWvS$xUsOZHQSB1+_1Yb
zFKi!N$ol4*j2!lc#me8~wZCn$VQBWTM;4bGiW_b>!WC*CgK_c($JgVA%9^_|<#Yyv
zCS+od%=Bq7MgwjH-MHuGry)Yj=*A#72D=e)LwBQ{8|~e=e9sbfBiD^)Zq#)fXN1;s
zqrMvr+{R1T8w-*&WYdIqODM%?6X8t-d0=4oCy6{-u({hfFtC*yE!=1+eA?k``sYiN
zV{Wu&r@66iY6_LMlG--4)bZKI8?QQWF8z?**^Mr4yzS-z6zDS{m1gg_K@Xh-NnY!h
z_O2UU-RLjX?#2$kl+n|TUi2m&dWc?qT8!S9y|+aB3HA}}%jrEW#v}&Yqdf14NIpQw
zz_{gv)FEyRWz*c)>c%iPhO<}QnCeEM!`UOm#+zDdq#L6|8STbcH^vDcBly1H$+vCe
zg-jHjAb4|88l5mqlIUbN;>t8Prn|Akjius$hTv?$nQqJy!g_x5QQ90g=5n66G2e~F
zroO<9MZy=F3N1a`Gl+W^r7`0&H<r7x*$s*xxUs^GkK9=6#+Bt6E8SQv<U_$#ZahAc
z{r;6KCan>LQF4ZLZmf6XQxQMr0=b{(6XCbUH(}~$Zfun320^A$+{8-m&iJiRUe@7r
zsoNGeIOxx<%-GO5cbgmA-MHY!MK`{5<106gxbeLkU%RoxjXhj1tm+3DJKfmj#&>Rf
zBT*{f3UT<GG7MjxPGz?!l@Dj{b7Q|0bkL0hA{IHCO@l3OrxFjD{d3sOQ{P*1njLlH
z2Wj$YH~yY%JLbkuZv5=Vj}oN~MOOZ}8^5@5LbA83k-T|)lTWv2P(SI$DG?uhU_{S|
zEB4q~A?MsU??yREqIgN_!wG+vS=dVwz3RrVLaw=SUC0g23Lz6Gr#|1&7O(j&H*Sk~
zNAPzynEIO=Ol1S(Hh)M>&M#|HW{B;+8xP#*>_Ha~9=h=tw<8Z~dGI%T^>FqRH=YXl
zN3uNP{(Ln1v8+n2ooBMLih1y&2MHb|dXUFstVDl*+jAZyc|ejZm{%}GFrQ$4!2*JN
zA0^U~p`b(y2|h1aSg?p-QNb4kQ~pXU?m-C;UiRP>54fw8^x)?QmeRsg1xtC5=0Vw4
zbD5g%!F(YsrHpteD_BmjydVTC2)-o9QYs2zu4*1s5?)!bil9Z%Dp*zURl$E-^qNGg
z3%)M+hM-NbhG0!WmX+z@F%4+!K@$(MJgDt~=7G<HIv#k&+Zdc4WD9>w&@Ra7l;eTJ
zv|-fcf#QK%6mMKNQ&o?#lgGU=i{E4Hs9_Hx9s~|$2RsOh67m2Y>}{vT&JMBDUiYA`
zWMnid228EzL46Mzh)$bELK+G(bwp|@icLMp^`MOhZ9Qn_L30mUc@Xp9hw3dBSemwA
zB|F-xcC@wh;MPA`z5dK1Z|%X5X|d#fspM4JdC=a2cRc9i0hJCOQ0(Zz+a4ThXQxte
zSH|)q*>t$7zhO^8@m&wPdeGg29@6k`^gpc$>%*{UTC69XcreC;_ocSIJs9f2Fc128
z(AR^09^>=kJr4#5>F+_$%4t+Mu?KoEh+SPMFF#@!Wf&|ThIl}Q&S^H>gV7%2)fFQ=
z#tIrKD`J$GeK9S@EcQZqiDNw&=fP4BmU%GVg9#oi5Sxh}OcFB3gUKFD@xZ!0V}=J)
zMck0ptku!%X&ziU)?~T|T=gt8=TRQo%=BQE7*m-oWZ#N1b3K?R{G0wZ=AAEDJPT95
zzm~PogGC-J_FxHzV_Iy-2O0FtyyVM0_`rj;9<1|Vg_KKuwUCv9A9}D#2tPQO#IVML
zk3<<Ko7l%5d?L}$IHPuFtQY>N2S47=Q=w|pZ#x>F+8aFB=)opQViV$iHcRxuy~HgZ
zeBr@X54LfjJvi*ab`QSv;2SpcmW4mNzT%8(Y5UrP>&G*eCnW9gAm?P(PQmUgQpmsc
zV3!Bqd9d39dwJ`A5B6|Y=qa?{OP?)m`qQ+19`Ix^io^pRY&f1l%Yz=IrWyuEJouj5
zi;9XWj<T1yzo|%4af}V|;ED%VJ;td!KY4J<gVP?q1vu?z4|vx4aSwhGazc>GNzRZl
zHj*<Qob}*>2NxypIS<ZrCU~v9mz%e3lQ<TpUScP(|0^`VwKQYbG#hXH?&-A-9GiWO
zjrHKZ2M;{B;lWMu@Vf`~mS+6Qp4rgkmIu|w+ZZLk&B?<v{5?qjJ?l3?ig!Ku!-IPs
ztiEU58U82d!@MSZRq8>xWBj29e|hlOgPrZtXH8A{TRc4S;2+7p{q<zJn)HvQhR^zh
zTk9jsuzQxL9z5gPxo7YM)gXz26&@rftH`UOl!`PJDJt@*D5T<f75P;ZP>p^osN&1J
zmgiJ#Igt_j%kud<Hs0Aj*KbX}npIdu5f#N%lu%Jr#S1Emsd!OxwI7>3bwqZZr5R7O
z+H}HDa#fR(l2puJJ5@!EVhME8@t(!MEF)b-X%$dWK?TJ!D$1!SucEAq?GKGN&V+{8
zkGDzL`j6$OyOy^SlU`DdPJ3C!?P)QJe=JDNERu($l8VYIf+|8Ps;IE2aH?>ru&Su4
zqNa)r6|btOrs8!K^#`QV`D-dXV{NQnbt#M8Mez;Q7%T>xkQypFyqC&oEftw6YOBV<
z-K=L?rQ|oI!b_&6WC_VTJyu8Bn5}~KVR%c3T}6%%R@))u={TFB8Z*kHLX|9TK`IPh
z6#*5kmt|-we4_isIBrvLY&I)gV2C}eBBG*^ipDB*73=ROM^)67Zi)AKJ;_^NHNMF&
zev~-=ex3#@8nOxZEF1-56BS)GYo+~7TB>NOB3C-LnTnsb<Te-XxR%vIqAMR-D7I1&
zQ;mlgTB~Ry&ewFZF}izPDkoKYc9e=wyeP3M<82ikITl`oym&`NClzN^oKw+RMHdyH
zb2_Pbm!+$itzwRfZmgt={`9G$hl-ESSbD4IqoSvZk@=E(af%jBu$?m=jeJkF_Equo
zZR1&<eullZ^z;}XAsnD$po$49CaM^uVz7!aD&FU~^IDLK;X=rVa^{<yj~R}je~FG#
zF<J;8jG`F>ANd)p!hhDnFkZ+w!TV<nr9B^NRxw#M9>to@zEUw&#Waahp@H%I&Kbju
ze1?jds`3A9ozZ2F6tT||vyT+(Tov<FtYdps%vZ5M#R?TGRV-AEr!|+T#uHnMgfqIB
zOZD$$lBFt^skkVQFD>WvE@@@>K#WN~RIy5hCaqX4BA+(;NXQyNJ_~v0wq-3B!t@v)
z%VO#$DmJKCbIP(_#iuH64lDZ^Cqshqs8OfWmL{hy8&zylu~|Z`b1i7e@Z-4_UvM(3
z_<@_Pifvp$Dt4;)Mg=o|$#$K$e8qt-X`OPe#lSO`uT|_|CyXikSg|t75&V|Rb6DBk
zDt4(DJ1zS=W|^K%lFsLURqR!<PsM%}hg2MvP8e{Z`~l9Q<U9w>J~@$?z=!^hNV~q5
zUVT%ZemyD*IlJpe&K4ENIgO=atebCo>=!XUsp6E16DmF{nwO7{amZM=>P79RRh;1h
zoE{?|SuZ#1g5^BzRh03ftQQwmTvCz8izF{DtGL3-sJN%%D)%3^^;Z?QR9sW}pDAu|
z=ed<}Q_5ZZVlInjAo*=o`fU}zsrX$+>W<)qVP%<msCFvxF0;#nz<;W^ui_tG-cj*D
z{5XHGKjdt=P@ZPwf2sJJ#huJ$U}GP1d8$bC8V}VzRl%`)#?^P)GJblD_HPzWNbnjW
z$M;l10*5Bqi@aVG_M(UvoUSQe96i!3pKwmy{9a=o7VzRZFA56hvv1QclrJQllk<5Y
zoR&qsc!6f8Eooj9^WsG>QoY7)3B?6TN(j+PS;<R!ja9>iwsd-|lo!WuSSY4@QCd8d
zxoPQkD<eDATF#5|USxXlrWf#{g4dYUuY2*57cYBZ^`fd5uXr&f(yWr#m~s_`GrD<t
ztg<Loq_Ir0NVLiM7O$H1c}++)mi|K;OOK^mt8+BZWs|?*h0Ti^Ui^H@QqzkJFS?#@
zL0;m8gut+}*G^k%c|knsv1WNu+Y7JPc=EK47ujAorD<<@VfXTPmNiGpZI+P0z&>|~
z7&vcXl8Z@RV|Q|Up?ZyHpFJ{a+;;eUAD{p2mzJW5XP=;7kOc*V6t9>T_9Eg%LoXV6
zp?i^U!E1HB_&q6s7rUZf^lXq!g<r$!c~Res243UJ9=n3q#)EmSjoC9^eCWk0FZSn4
z=w8~|)Qem%nt9ROi=|#H^P+_pExj1+MVSS!weljye(<83L|Y5Cr%xd?XzN8g;ag9q
zGupw6x4r0SrgjnXj$kLj&VrBTHhEWwQAF1yVs|h4d+{DSgiY|Gmzmnfi{8S6Qw{%p
zh4&MjP^CGQ0bUIBVx(z5NXRfR1`8Qt>O+NGTAaZw!-bFVf<?EM(npEH=ol~F_hPJ<
zpV3(8#Ud}pdojU_*<Q@?VxpK$5u~3<LMD6BMVwHXD#|p$>0ZnbGE<PLvpAW@H6dY`
zE8={?d4fm!82zw7c)U**d$B~KsUuS3xn|uizpJ!$xfh-{(pGr!fftM}I+ziuXIshI
z3RzGiYqb}Lr^nWE9B*6Jc#R9oA8`;*Se8_<c0ZlL!zk8q!bGhf3-Xj0esHgskMB>t
ze9q4J9B0_z#YU5F@?x{eKj+#UW~adyUTpPZn-|-?Sgzp%4PSck6&I<7S2TR>#SRwj
z#SJfZdhv}H2faAt#kVZ<mT~UKZdTsp-*JJ+fe(AU*z3hU(f50Cz>7f>jkjIIQ_so~
z9EZI);>8IsPI5(X<MQGsu30aBpmQ-eCfS#Ko%VUQ^+zucudqf-B=8`P<6b;V&KocN
z7w%NIEwvlup7P?f7nisRNUk$n$lU6^;1M)uy*MZ0c`s7xSs9qO(;taM9v;F2G_H7Y
zm3xBNP~ovQ@l+N^o10$z>O}z!&uO^j#ceMhd-24JJ6`<e#X~RtVn!C^#h=`Gxuc37
zdllmx42FAN@NkScCwaie-b-XZaB0W&zs0^qcKSbDFFgN8>`9)onUa)GLxP4x4au5u
zI1f)ddA>_p9t}yFF$DAOCGvO>9><YaqEu3Z@FbS}LU_Ik%POd$kcM;(r8PXSp|FM$
z8cJ$B=fqk>Lop36YA7o9FPMIKE)BgEmqJMxr7>NlYAB^4O*76@s+LwNr$hn|%%K6#
zz<FVh(dsf9%4#U5q2`RV@*1GwqSF}t3L0J#=R6W8KAIf6F~t)qYN({4pN9S#Dr=~s
zA)q0s!J@&cp|*xP8mek|RYMK>)KE>sYs_*l@pTQ=#UalF;ps7j?-^st@P>#s4FyWt
z8O_j8OT(KQvNSBaoRO)4Cx<j@Z%h6okuBl@H9R0CMdm}chPO0$G^iTv8gj&sqQN1A
z_D&5e+S_=Zl1sz+Tb8dAjd!)M`ED_Y52#mzropG-<)ub%#7}7Pi$OdZ(h%0rTtf>D
z5e>SA#u}Pvh-#>-p`loEOzUZ=uOake0y$6MX&{`(*G!9A_m?WwNHdOw;ka`|nzA42
zTboJ7T+R6Le*JDDm4?L=T54#ep|gfA8e$q+Yv`ciZ4GVA`m__$mQ&)VbXJd{y@t(~
zGq$z2#cSJ9!#f%}Y2Z;UcT1I`xc`===8FmMYW($qo*H^-=%(Ql-P+ys$x~=()<eUZ
zdd4ALtWR$ZeI>PzX|p>qVM+0{$GY`B4Ffbx(lA-WKn;U5jMOkn!(g!-qG70z_}0ON
zIZUF%O+O<zd*w|!qcx1tFiyjGPMF)4_ce@_uHflIj2`Qs#$A+Qf@W-|w?ioth47dx
zM_ua_4O2DD(=eYaLc?^{oM#A2lV=Fd)Oe458hfDTE9pGjYPN<sl6@}wv#xdjl_dJ)
zK|l*MEYz@6Gd3j}FVe7B!`bOE&N><_5l)>7`)8Skp9`gPqgcTrG+ftkL&Jv}R%tk-
z;jo6)tcHefG<>V!BMoace6C@OhIJZvxYlPHHfZ>mJ+JX3x7_udw|Vo@`KOY)-;qX}
zjT$y_G&TI%(0ch5<4CUZ*;XEB#As^N`h|wA8g@u8ZQ~3qnZWE{vqcT9+xaQLA={Mw
zl^_X6is$ouSs{I=bO;HJcWL-e!vPHkIlJmvzYe7A7DB#9!(Nl`)39IoCrD>fxwma?
zpCpHJb9daxJ)+@z4ZmnOq2Z{8A2j^LZqaZ|YW1Ur9y`)lVe3&laq`uq;~JJUG-gz{
zhKBNiKjowbdONG(oQ6{xPIE5JNaLsB8CI->ad_H;>9O+~E^rspaEUuiaYJONdo}4Y
zcNpP&8(6PsSRS=9T-9*R<V?NE-s4v3L#hwAG~CwkNW)_dcQpLQokYWZPDKrOWkPN(
zk?@CxnLnl7<8CHr)@>+}u)R+jSHS}f4>kO);U5lM1M6S^K~9G2Ju<6aO=8b8>4}D?
z+^&6i-iK%0{C&vhGq(CfpD}fld`K3O$7dYTMrF^733+|SoaY*3G{uKf4r8|G_o0B#
z_(bMM0JA?QP73-^S@ycZJ{0lcMIW?=_M$%H5V;q8MsIx7z}}~Uy_gSm8(JAo>DJ=H
zsh9A9$U~Xf|D}A!K9lAHw;Gc8Ct4XF%KDHHMPd}?d?@e3@eqCq0X|gl;gb;7hwzdQ
zFZ<9gg!Uo4;zLCrs)g`c$atq)CDtc|;=(KYP{juetK>sfA8H1W5x}c7W>x(t>Bnn6
zRQKTvAGZ4Nx({#o(1{)5gUyE;KIHn)jJbTsU;};d`B2M;Ods4nbnKqV@TL!M`C#`U
z%ZJ+RJ<+oTpS+tygYO2U#4U4taQfi#!6B*t>WU9>%YThMVxaoq6+)c`e&G#$Xyik{
zhoBE3AHqIF*{eQ8OiNt|?c+Y{`B2}71|m+IoyI~L*hT-A*w`$+iP$tX{m`tr@HRfQ
z71DyU#fMft#3b5U@ZVODv=fE3eOpL-A3B&ehM5%fj%mXRbn)R`9~Swr*oUq@bn{_`
z4>Nt}?n4hB2Kq3_hn`~J$A`W`dI|P6>&&wHiSnKg{e@6@Yi9NUlT#e*!w?_F`!K<W
zp*{@rVT2DOefXef=5Qa*4ND<mAQ|PuXdlM<Fh;`rl1gMM-7=7j^MMNQ&Si9>50iYD
zCS^?)oZ`b&$s4z)Wjs4GPB-;gX5HoqnJqZShq*!ukNV$inJ>`=J}eY+dw42+F7aWh
zL_ZZ=Cb-&%<*cOe6+V0@WToK0qq9n)?DI8TdcxQG@G+N?59|J8xn4L6V#ZM|YsXvh
znGYL$*eFSxeE3|*X48^Bw+Jt{&Zzk|AGWjKd^qpJmp**u!vP--iow@DeCxw5A9k2|
zcMAFDKco4b4|_%2E#e;2GTxAV65VgwAM)WacLvkuhz~ys|6cH@4?mcetk^N1u`|S{
z{ZC@>vzhvf4<|%9>BCtervy*46{FM6NJe@n-@}*#tjPr*F8c7uhsQo#^5L==JoMp;
z4_AG-?ZX`(u5m;2;aBm)TsMT=6l5LZ)wpG*(&um7R3&=fhr2@l@Zp}+kg4(J|0()6
z_GWbWKzLmLOE|^9efUQ>{WIx_4^Mq4=tm(xo|!gz{Yda5(T_a-|LtJOLXrgkty_v8
z`9#StSinqWDbM*4FZX#7i~8|`ABBY%`HvYbi}~@QDCEpi+~h1J)sIqs%<=P5Khpe2
z_oIy;ZN;Fp9}Yj9ew6W}tRLn4DDOu#Zq$+rKPviBNq7Z6Uh?B*;jj3?*&Cm<#L9kD
z@#9sgszs7mhpK*9{e}%gr;SaBSGnq2)@H`)e!T8S9dSj=H~gsKM@>I$qQu9GMP&F<
z%a2Sy$m4$A^drlU+7jiqK(XWbEC!NnKi(3Z{_TF`m^@xpmmi8B_5EnzhuaU29|1pt
zQk*KN`Qa53?`@wS{{K`aUZs#9x*t(L!hS^j#tf%1_jxvfp{^hGOb@j0Up<*(Lq8h%
z(aewLel(WUT)`%OH1%Wfm+7>LJ13#H7LrQd%8!;Nr$Nk*))I{y6WjUG-j6|a;ztKR
z-u9!rA3fq(1iSk2jvt+bcNTnCu!|r)!~@IfCQ7{FJ^kn_(Oztz3}_$!|9@gKOFuvQ
zi@|$-4ERsRfx<W6GWO~rehl?viXT(`80N=tKPE`(2*LOL7%OBX$4JO%L1r9dmNm{)
z#tUJ&@#;<VW0Gk@`^jeNG}C^jkm)iyGtAUkLg-<(sm$|Zz8~lPxZuYE5kKL)^<$wQ
zi~LyZ#}Yq25}l<i_2UCSR`{{ZRF+H6(BVoyKJ;Ua=&J-*3$nt@$UvJoUn}}LLFyk1
zVd|%TeCEedKYs9IgNR%G*yhJZKQ{TX*|gu{$LA*J$J`etr-$u+eCfx2KMwful^<XG
zv5VF7V~1(;jUPLO>%Z9FSz-THILVkx#$fH1=srL8__5baVrsnpR1R_?t*{@KB#MWm
z?bMI>@x7UaQD$fAF+YCs<Am@Z1%LA6XEX0{KOV{qq2)<GPWy4jk5gtUJBs0~M9=xL
zbpHQ3kj5ANxWxS}fZ_pM_T!2lPr1$dan+A&e*EUg?~?1f;4MFH_;FMCujXv|cSLUc
zaYsaU9X&JLWv%@9%a1?&xaY^8e%$xt!GCPxd5K)|wEx?WM}9o^;~y#F@~=iW#&?4!
zqQpHX1dI+z3LsfXVgPxB#J%MWASHn311KzFz5oge$sa(00G<o{Z_&k#xqs4Cp}_w>
z3&@KE@PgPE75uj?#ms1l07?e%asaOckQzX#03b<e0i+8l8$f9xWy~ye%RpD<0w^zH
zymTrRB>IvdZKziappryi51?`YRRVZTs%H_gD!=vzU=<#B!d%tN`cq+dRsWB-H%x8|
zphf_{-pZ;qCyiNZ1&|rQWA;V>Zw8PRz`6iF4xn}bbpjY1z>om419&Tdcg2G}fE*#s
z18@Z33_uSc8h|SRB>*h|pQO42@C2Zmoy>w>;r=g4@!I+W2uL(67!(Zsr~b?m5s`#h
z>IP6xqD=#+A3%cu8cVdHU?ah}=QuVomH3Rx4WOAQ@o{VsK+6DH1rQ6MLjZ3}QftAs
zf^E#2v<slU$>W|`pN;`^3ZS!Cz9XspOk@L@)J4R&W!C_@1<+lT-U0Lppoj3Df;8?W
zgjMPrKtJIF1^Wjuz_fYKw29YzkaTI>|Ih%21+YX6h6gYrfN23t4`5^fqXL)^z(h$J
z9l-kmj1@k{Y|A)_ju(u3j`#B<QKkq^7L4mt|HEelFjJy)1DIv%vxUSfHpd+Ic>&B9
zeL(<=P0NJ=EHZhGIsf}~UMkA60G0>vf$$FlSQWqu;VT9It><cqek8cYENiVq<F)-H
zfb{_!4d90WJ`Lcr0CoqkCx8tBYz$yq0NVrDB=%pJxi$;=Jb*0$#J^g^+p^W{F?#+o
zfSmz+6Tnwu{I%eYfbm5o{&ku*-v+Qt^mz8~{=@eQr_I3t_L+RYkOR^R`Z*N9VNs5l
z?V|nnW*v?N@M8ei0=O<VKLv0ifRh3IY<fE$z%Rm+ZX0{%sQ^xMKNsap0B40<5Ikr4
zKQAQSw-+Ue881nr;^LJ6u9`ZP8^V7N;BEjnxswEN%S^o!z-{62w$smV5@oJGgggx3
zuK-_hjz0sqZ{~Vn+Qf@vuD?b3M=<W{ky+cP0X*Y;4q|K&2|*+V5eY&MB2N%WL1O{F
z97J-^_&m)YL;+Fq29Y8ppWwfxJQqaaAc_Q0P;}-kB;@(v|2_qZ2Ju1=WrHXeM6n=V
z3?eOvbg?NOM9Cmhg_jVFcX+Ab|9_W@|Ew-8sbvJ?Me|2D%PJp41rf<1gn7wd3L;Kk
z38G>Um4c`oL`D#`f~XRNC5YF8s4kY)AYK(xRWR<nnpydH^z|U#2*PF>)DTiLXnfm$
zGR(MgVvu)}GJ|+C2qg%25LrRg4#FNpP7rm(K0AoFgwT?KS-9P?s*WI>Z11oXmmn1e
zZiDgQ2|^9RA4DJsZ_p4maT3q&6aLxDxs1kl&R`IsAi`3&c&*|;YNA2Z4WdgB?*{o4
z8|nwqGKf||G!PFgv2hR$P2NZdE7>H7ra|Ne(JYAOrWmhbyk}a7NFEEKbv%0zZGvbk
zyuF#qEbYuO?I7aYL1VpBXDP&Yg6I@PXVX3|b`7Fi5JQ3(8bo(V>JvoYAbJGRGl*WI
z^cIZU$FW}!{Y4xo_@3Z^|CsTo(4Zg&n?uafS^r^TKt59HIb5P6%v_^_7%hB^*@}40
z#|1Gyh`mAV3t~bL6UFA^ASMMdIf(f|ED&W%5YvO0A$+RfG{Ja<X9h7lh&e&bGDX&B
zu5glhrWiL~7{sC=RtE855Q~FY62$T#J`kIwW{Z|d-^T4(&lRStcuQAFbWIQ+1+iLq
zye(^kSSL|tWVsaM`X@oG58~4xJ`3WjAifS_Ll7Iqa+}~L!7V{-4&rm^A9{$F{zVX5
z&05hLe_3xAWAZP9@W>bY9in^_#J56r3dSq2D~R3ks3~&J>=8~6wAmlTfgt`0;_o01
z25~5e3qf2A;&2d0f;bVx$soQD;%E>*ORgWxygvqU%;daC^^@>_TYWr;UrdD!ITgfd
ziJlic6T~?oX9eRe<&Pa!DUO#!zZS%GA(sWO1aVbJeAV9w;%1OXf8Y-he+}Yx5O;#O
zB~iMf*>5KQT?h+`ukm{l{WFOB=4_<?Ac%(?DY@K1q(b~Bh(|#b3gP(>9@CiHdkD!P
zqpDBENn!}kgd~VaJ>Hx=5{-9A-VpLjG)0gG`9lBO+Y5y7T*%m~848-IbW&J2$qOMA
z38ARi&|BO&^<tusln~2OA*6*+k{9ro+fzfh(LM8cDJwBOgwi2Y3ZZfcWkMJ=Amx=1
zDoU2Jg5?Cu^IrfV6$I(_B_S^hvRvNP@bS=;QA1Md^~kIef+d7kLs&f^#Tvp`UIGfi
z*(0-kkId>lG6#K<a%4yf#fKwOs)sPYduGiL`V2@Rc|C+TL?O3@P{ZVTyC!9XP%DJY
z5MR4!Y-{wK6~eminax9J5kl<{SZ*CrvO{<)1bYZMA?TtwSb7LS;mqO+K{dG|#4YHd
z&5#rtcqOWZ;0wVoJRtbjU?Y_wPC_DvLx>33&@G)wQQ>u2A0hQaXey*Z2n|DM6hh+=
znux+HBol@i4(TmH$|cX0q-G%$=$gdng6hfZMx?Y1VFxb+Nms`NTMKd&+6ZYY$WiDJ
z!rLLNV$V|%ahV`H=baEbh0r;KE+M=d!hjG4O80h^{(Mh(H^J_LJwoUyq?aH^q&J5t
zguWs46Q#dk8yPsJ9^0C7cT5_GW>5%&Ls%+vY>1RTPbTxw5Qc>?JcJP;j1OT#2qPtx
zt$3dk&*Y;+7$f}OnLIXxab~J7BWt4Y>83JC$YjAOAxsTnn(#s0(<jRwJ0padA<PnS
zcHG$9d*_5O_dg0(#C+-M1%e9&7lp7`$Pz&g1n=bG(6m^YvOI(jLRcXlK9u%8?w+}l
z`+#ihH~8Cpq<xJHC@25g5Iz##<`bDkvLZf~&gY6?zkM3QXCZtM!d5A0gG}lC+fp`$
zut^rtX2H+7gh!>Vt(D3Zv?YXU*OExKg|Iz@{o?IT&8#o!A%vYFd?ije`d^2TCnJl5
z#@~paJ%Zl~?vjk(g|J%)D>MAn<h_!#PmsAPW@H@*;a~`d#O7zy@^A=8Lij#}qoVv^
z>Kkij9W(ilA^aqqBAvg|)%ewaB7~D%ViEWwI2A&%H0zBJZia9=gfk(W73HenIl=RS
z7X)d1QOG61%Ys(~3(SaJ6LMXUmLqGV{~E%rkZ}u^JA&IG+zH`+2oFLya3-DiQ1J`!
zZz231!d-TC#QH}F_k=Ks(LdR-5i1Gtq3HjF@F;}8LU{OY+TWtM&u8selk%8bZU_Y<
zC=|g{&WC`lQW)0~tShJ5o`sMQMq(Iw!bl3Eco-$ZNDd=!7=^-kK8z_BEh%B-52HXB
z`6Nn(&u9~$3!|VYrF-NuI^dawSU8MwbD9(l<ApGagfVui?fN4Nk!2MN8_#RM7{-Mj
zxus{su3tAE;w~9RY8Vy5_+w+aQemWpQAX;P9!8BBv61iF`3QMwDpPF1>2@k*>7Nyz
zVlN*C#PY*^cD992juT%B<7FxIl`txX(J{fwFtu|Ek$x(NQ6&sZ7}hYxgz<hDRl|5S
zjD}$}3Zq&WuZ7_Z!^Qecv{w(~jWBFsye?5Hfg6?@Vbl!cEm1PUs1-(b7_A!TW`^-*
z82XG@9ZAXxqqdMD(`?L`{V0pL<w~7=mn<Z2U9s51$O$9knh|xd^zOOqpBY?{Tv`}D
zA?`3dVX%Rvd*`ZQctw1A-LUiv4}}qyP6&h%3}eMrOZyoyrrs)HkAzW|4ZLd6!-$6Y
z4yKk5uNWC`_Rg&rM*T4OP&}gy4Z`^CiILP;e7+M#r!bm?(Nv<jVYC&}ER5zd+%1@N
z#nLJaI&2xnQK=8J$Hc647;S`5DLl!}ac>t!dr>+Fz8yx^W23l^Vcy<j)S<KJJ;Ue~
zMi=4lhS60>H^ClZbPr?jjM&VxMo%(yNVN72qYp(fV14>>u%_DjN%Z+~_WohK7sh}v
zX3U5U6p^{u<UzvsOV1ApV`vz|WFSU{!C6h4;bJg?ot9`sM^O(W-E1Q#<k&FAh4D=o
z--a<hj0s^Z31ev(6UEQeFs6kuNjL|3GJ7nHjWc2#>kCtD(?utr$BMDNS1dEbm=(tC
zFy@5u<BZtYs}`nqe{A6)26My4i3g0f&~5X>SP;fSwsE$hED}G{blYMf`7c_Qg|R%0
z&8Ghk!dS_f!_|~%UBU5fl*?SJ!dT5d4`Y28Klz%i31e*->%#cR%r*GeESg<DXW+*o
zasqESoAqfJ8>BLvV4rcGUp6XvXtI4{7@NXiXEIvpspa!9ws7|tm;QzL|1!)MJGR^!
z#<no-&WLS~JDh2B#aCf`9Y)EKO~^T)cSzDsE~4v(t6gDy7sh#R6!aiT2g5iN#vb8&
z!`R0rJTol!i*i7a(XCUO91i1%L{EnCJ;!LO?H5@EN5l9*^kb|WtJK@*kRQXieAZ~}
z&!&gtLb%fD|AcVs%-E?gPKTj1&OH;x*)Yz9G5v~BIs>;IVtkk`hH*cP2Vq>I+c2(#
z`NCYwO(OTti<YZgr(s+V<8V)-=o@B<+}3V|ahn^UtcyDwEJ-Rj&HlTPyJ0+*ve?fY
zapt`z`lNmKKZWoO^bf=Mi={-2E#>bp{*gJH5Wyqn6`QAmPXt*j&aSb8)1FC`S-49i
zMvzCcCkf_@;Nmq)vhciuDG_5cr!hmZ3C6ZuAcBEia-Wk_Hs{`D%k%tvsol~MLE#9B
zL{Kz>7b2(_L8S<aMet$-Wg;jWf%4Q+Jc85+N<~m20?*7Cm6D=&o@#s3*Nl@kErRrj
zvA1-4VksRlwi=#{K`a+R`3QPmw7e8S>zT1i(`<+s%f#3}BgU*?FTE@VuL#nTYpQYt
zJlUf*t1-u3B?3zX)(EObP(6azBX~7}-Ip!ZB1RK-kF}q=Y$16~qU3KxV2dD=Uj{B)
z7;1<;-}X^clnlXI5nP>RWNfvu96h`lK^A?EwZ|RSk#e&I--;k#_gofdk03`lql0J0
zoDoE3+FgPQ+s+THtCn?F<Oqle)Cjy0<9mV@L4^isBs1@1<m68ZL=cQ%yN)k)gdzy@
zON)+xjz|Q01cxIy5<xVAx)BVGU>G|gg8C73i=cZ14I*e5LHh_gM9?UL#u2oLpk)M8
z+Sr;1HjAKX1U)+BGUT%I>2{LllC-8nF3nm+5R0Hq1gqQFX3vZ<wY6|2QE4ljq@6KO
z(nvm@nce(M`r8q7j2H(By%Ry_2)abjNum|5)`(|(H-fHg=G7YW_BJEF-zAOMgQFQi
z{|MfTpjQOFBj_i&`b0pVG`Kh|ou%}Z>Yc5TN|8kj5F5H3BxGO&!@H#YxWvw+!4V8G
z%dN1?K0JaE5q`_U<_JbcFe-v+5lrWNPPC2|oE*UzAynSyS`a?YRK^RL5Wz$tlLTMS
zn?&QAJh&r*sS%J&m|<%jw9klOW(2b$m>t1sc{C%`IhAK}&f$~`*!VV|jS<X^U|t0C
zBUli@+6cBLB{6AX1S`a5k>Fy%C4x*{8o@G?FOT2@lP}F_w$kJu3R%UWF_kqDd}MN#
zvQGHNf}aSk7yML^rF<5_29wji<vd&2KP;a|uqA>$?79<{FId|Mc0{l<f^DK~kKjuo
zOOB<};LfzP3$1KlMeudRIP!?fhyn>sPG)@*!LA6ti{RS`7-g8$+;{_2L|z=QTReRG
zYT90=COh{<`0W=5B6!@{c94^^jP+WQah%s7;lK1YPB;3V8wj@`9mRC~5W%qsZt-h&
z1V2XbQv?^d#c?~zYyCNb<E%*ptCACf2eVE@aFXK^!5K+yEH6bm#g%1Eq48M}&j~Vm
z+uiKE$s35}r3kKZsYY-)f-78QBGU4zm<^HW4dK5E-V|J(oUk%Efo0u^;5RlZf+rFD
z9>LuR{*2(h*!&?#GkUv6UNQMt58DF~A4c$(ko8i@zd2`0TmRt(`?B%crbk@eZ>3Sm
z%4>ZZ!82|<I`ZpC(2=MkSvNX?A&-zG!M(`|^^+5>Ot<Bg=xf%L6di}9=mI*P6S1&h
zK^=vJ(8I6GQf?lwKd<x3yp8XrDx#yPj>-vncvMmNyOh@X6JFF&T*vD=-q2A(M@bzO
zbyU)ks-u*SayrWENE2`AI!fzcg||FN)TP`qW+`QLR7=PcuQNn^Nw9*BO=9`7j#qTd
z%x`p5JTFOQ9abGxbyP9^Sah&mOnQ|Lb>l@^)phVOsMo}RMHG|XGx8?nvFWIxqqdGZ
zI%?|35SuK)T7qv1X6oQjG7Ce=ggkMct>Y~n9u}d)t|Lc>ONS!%4joP%Jta&3<b*hJ
zOA<XSdyvS1t5w?S)uHK_Q`+j&5uX4wra`<Pg53OdjMa_R7v|=#^I>^()1m8#>gXu?
zmYK1-I-2Ncs-vFHbGD7s=Nbq$5^Si02j5Yolg7GnSlq)K8M!)|>4@oQt)n?x4QneM
zTVlqlY@ws2c#gj!gs))Wrb@kyj&?fQ>u4*fJ6qUzwpa%pJXnw6ZFY4TD+y27Bfg`f
zlWuGRopp54QJ}u@N~W|W_IGvkXl1<lB47WM?&Nf(8)vxj%(|XB2I?53qnD1}I@X@F
z^wDuJkFnGC)zME!e;r?xwZ5mL%*AYeF3^BsfLNYwZ5u3phUyrm8+-c@9houXwHL!B
zN@au?lv$R--J8uB#pWkjM@#A$9q)7Y=1mG)j8wk5Zk&$sIwt6t$Zla$o`fwf<9#cW
zbWG-+(>!wu$4keDI;QHFrenH}e1BV3=*9u&GdM+Mpl9h=B4jp)SjSv*^cU%vCw#uC
zEYPt~_>DJ=b<MC?$HT-VlBJ?A6I?F%fgqDCd(!-0Wo)ovm5$XqKGylO3u`!yFK02V
z74nhbv6(R{>va4oWWA10xu$e%mekL5Y|yb$$CH_{!n0zp%rcA_>dcCLZhHHqW-_C}
zSuu9P7cv313T|WG;~5mc(($#9lR8f6*uhy*+IoP)r(>s%Z`dt5cInuyV~->)-kC;&
z?^uCbStJa5b?nozUs4;5G;RTk>-!tp4{?Li@uQBPbR5w!WM|qBV)ng`qdKbJHav8#
znYCws?(|Dp$Jhhn^Jg8$IRkZ^;6O`pG;6yvt=-PF_B+#-?MzFEq@31qM#l{uH+7uV
zaZbk-@l4C}LN4jJpyMKE{;U|qeu5;IIXz~@SkP4+*Tj-H7g4{?6<X6Ezv{Tf5!CUQ
zj@vr!=(wxn53&4B@OP>C?ftn=_UF?6o{m3t+}H6yQkT@sI&de0&Efwkg%23*qRrnr
z{^1yL#_D*)ifu`u_?R2Mq_Q9A>X~GxpZ9jA`5M{jKTi}%QFM-?OBBgb<c-1;g&GB~
zpQl7oI*Kw;<clJI6a}JqE{YeTDELNljr>XcE?O{(LQ!0vo%wteMWPt>i+#kMjKZRj
z7ZrtsUs;Pq@nRIkqgY;}sqIcidK4w1C@GeyQIv{e@ue&VTBe!V>6Vr|t2E^i<z=I&
z5XDP;3Lpwb%SW+rRt!;WZfIv4*UyT*9K|b9WJmd0c2ta_QWP0c)QX~V6uew!i=x*r
z_9{_WgjfZuMNw4<lU|MDk6GCyuZdD!@O8mA1b_QIi>WoD*u}{&%AQMxk|{h(@XaWA
z!zZuN9iJ7eElM51z{V6>+M~#k%I9RJ@w)D>vto`YZp|_N^>9YviejU1B?>BT!HJFR
z-Y7K5^>!4#DEv`0jG|E#fhdAe=#mtQA{<2|&if`Y`^{3;t4q=zRZUjrWb#IlXcW8W
zWY&$Mo{;*24FsvvxJKWk#!)nlBCB)?vp0!i*_=#HfZQmWMbSKJ-00pWine?Z;{|(*
zC|U|>B^VQ=-kJ@poJ&IE?~A9klU(fuI|zQ$B+d9|KZ<vv`2J$n>mQ|bk~&XYlEyK8
zH;S%NOpano6y2ie9>u^Y21U^$ik?vnkkBiN-ch_KxtOI-6n&%U7sZoVF-8X^=iyrp
z`$xeu^cafHHbfpy%Rn+XiXl-9i(<HB9~w1ICa2CoG9rqRQA~(pA}6gFjEUm?C`JqC
zL$Wj*%LX2|kBb`TpOa8z7|&{-usnE@I7xJx9j}(m1BdBzY82C$J&I4Gm@a;nasEd!
zL-@=nW<@buveU!-DCU@au8?_Lk{QWNT0qZdEeiz~NhuT;bA<|D8pUItuYT52;d&BF
z{~(Gr;-7!3t%!nuZ>@~t!zlPy7q7#w60$l9aw;E1jsJ1hMvZ^p*0FEpUcrx}_(V9b
z&r|s<iVabGBR)4qu_=meQEcbZle{c(YZRYzIcH??KZPw(<8QSuqTnBDB;~s%(aD!l
zd_`mN@HK~cf{nr7FKOcKjGu33knfD*<$g&d^!BZo?TX?%A-e_lM6oxDecUB(XB>zE
zvtuOtIas$dNDi6`^&^~GQH*O<VSK9!N2C8o({(^eQ9N&QIC4hfrzjwB+@=!_Zg6)G
zQ4|GscG6A;36do!O3olra?U|f1X1{bii&^<14%Ief`K4{2q>T+|8Lqq@6D_Cb#--h
zb#+xuygeN1j4MCk>Q6Y_8Am#!+#HmjgReT{>(2On7%mON(a!jWKIw%Xz3^>ke8&yy
zg0)@neP<k_CvCi9<9KJBVD4m)&ftg6ILRRjzEyClGk)YD<0l@hTAgt^g)=GqLcnZF
z!DN$r#3GqOxfI^o9XUr|4bJ|pbAW&CjPn8zKV2bwfty0BI`dDkal11LrBJkKt3Nv9
zUuO4XB`<R!EM?64XJda0C4UM^ZGUyfHG!`SdgBiN-;Sl(`wzq84(FDbu3%RV`Bklw
zg;OY!La7u=b1s5zQn3_@r%<O-^3Wsk9^2!Q1%9bg;S%gB6)u@VgLx7Gdk<b|Nt`A4
zWm4#0G0A566e^@3rO+mYiYZh|At!}U3YAl+l0y9ykV4fIs-<vO3bj(Gp5kBU#a}xe
zuaQE(%Q0#uu9*VqYj4JDr;t1vqS}rN{5mPrP2s0E<K*zDC%PzqcMA8Ukexzv+Lpq-
zDcqOBkkj!Ym6AVJOqP2}(yJsJQh5!dQ3`scWMe_^PhoD^5RWDTG)<wI09+TD+aE8@
zNk<AAPJzB^kwVK9A}K^uh><fm_TrvUZVH3`%x?a4?gJ^X$>YhEkufbJc`5w-XLjop
zTBY#BkQj$A9vmYlU+^jRU<$qF<P@aPR)Ba4i4<16mz|`GJ`9&093y=wg?1@)P9c@T
z!znzHLWdL{PoaGZ%R`CY)sl~;(DbDAsA&FBH7VC`d!Tsoxsu5zQs|gMnG(s~3w$;^
zrBJ)MK|m^}P&T{m<OP13yH+y!%{g63K}|uU_kNE4bfLhYa|C|ldV-u?RYGK1DcC8j
zPhmp}P6}=c^HP|ff|r7y!hjT>PN7Q*T^aMObDv6K)THbuQ<y5px^vV5zgr5c%O%_F
z%<dtWJq67^n4mzf6ncwhA8rseUyYO5S8(dJ%<a#u%qk$WSlz@xx|-grk$546!72QH
zCOjq;B+-x*o)O?#L5HO<Q~-88C&2T9K7A!Q{0@Ia3L^y`CFtlo{N;^GanxAR9GAj)
z0Vdq(ohZO0K_{p9AJ&4|d2D|@IyHr9qB&jA4jaNV1eke8W|jai3OYN5Id}MTQ>gJ<
zK9wv;VPOhOQdpWopRc7wDLix_yf}r+A7n?DN`Dk?&gL?1bP8)31})<&=r=jGGKEzF
z4EkTzs=BRKr?4i4dg&OuUVb$3Si9U?Kj*AVVaCnamnD)D?@GRu!pkXqmcr*LY!o)U
znZmXdUJ>|JLBE?7-6X(kDQp&Ci=eLyx>e9O1f|(s`j^~JoWkA|_NA~Rg`Fw9o5Fi3
z+^m{>iz)MH>0JW9ox(c;bWBL>`r^FKfP7zs?!IB+-6{NaJhFU$^aJV{7TzN$!N{8N
z4^#Mv+g&{QX$oA$;RA_}MeipfN=rQ$L}`iX@%@a7Q#l;+1;tVrxHYWCTOCN@U<$`m
zIKd*5!r>IYPvMyG@R1abrtl3@V}tZn3SSE*J^xFh)wd}uo|*iP!JKF{_t9vNf%zLs
zhKY~nh4dR)JM%&nDwq3#nfO-nCkA8+CsQ~jgzMjx_%Vfl)=L|e1clcemwplY2{_Ai
zv^tx@IcAECu5wToeq}PsC@1553csarA%%-6l$23QM$snm-&6RLZb{)%ia$4j%PCx8
zeQpxJO3U}<5FEW3DYrShUFCAb*HXAHdJD<8k;308++tOHBd7nZ$Uk&D&pVs5*<?8F
zlJcnM-xO}AKuiHrYA7tDh?uvi%%8IeCYt<FPB9t91?DVla>m0mvj!dxmzIOzFC&9E
ziv}N-77U4>J(E4_#oY2TD#&Oeqp6IFG6sDYt0kkhj7l;p%R$gq5wxa^ssdCKl>F)f
z)R1x4FF9<oKHMeqUs}W)tc}%?QCG&@GVYO4PsW5+QhgbaF=KYA>w`-#nO$mqhtf5E
z&mm|a<6aq!W!x`=_S`39(d<$UW$azx-`tQxP9ydv@&a%rvT}B*-M6y{n#stP@raD}
zGMdZCk<muRgK}`D3(1Jch{_0yCOJPW@JVAba%DUq2PZF{B6)mzI!=BI87=Qf=E-O!
zaO*pqd;ugGm&*m`O21TITt<P6wlWejlJsP$a2wxY7Zr9p6naQTI~fmi3o0l7;}G!l
zG@?}AqcR?op~}!?bdd2lhaU}fVqDSGE1`}u&eU&9VV(z<cMfdsEChHOP05f2rhHn4
zatCuEx(q{xC-aZ)gY$1jSnJ3zX;?R@PvfK|!xorh|KqqqhGUzRPjWf5oc2E{qnnH!
zGIq-7E~AHx#WI%2=qckV8DnLPlhG^KZVZv}jEp`q`pOs}<7pZFWb_yQDLX%y@fUFs
z@<^UEP?$7G=8u_xe0qZmEK@!JJY_#CW2lUgGDgXGPR8@X$l)?(o{o=el^7-?y+-1x
zpOj{g5WNFJQuv9|qiNpu_!zMYUM<l6ruD+(8Doqt4wo@e#v~b&WlWKSiw6pGcFs%5
z7i3J6F<s`FE(jGK+*bOn;aQ#g$P15IGG3H1U-WVbvt`VYF;_-teNLuHl6q(iN6ix}
zB3K|}A)WS##9dp&L@t-$bfimVER(TW#ugdNWvq~~LB>lmR?1i<W3`MmGI)--o(z-o
z&DG>u(Of5EJ)L|!IDJeTl-QabCt&ksnLnU`P4uUXS7f{@gI(m4QUj0wF!fN|`_&V#
zlU8W{ri^U@Y!&nk8O_vCVo&UeeevzA80DJ(PsZ>~ITI^1pSmXIU&ybLO1vdwpNtP>
zye;D$8M|b>E8_#E%$3M{RKgO`p>*etrMv!={XkZ-+g@omIc1W?N(aXt85hbX_sSst
z;OCr==(oQjU&;7d#>X-~k@2aF{Zu96u#C@Sd@dvNP~JfqU&#1U#_`)N4=|^UxL-V%
z$3y$G@3Nxd+fFngeP~5zZOfvzBeZ8yc>CgP4m?V~$@pHzF&W=70_Ws@$9h#Qc5F&6
z>8%?P^=#=KGqaA%I3eQ)#>1Rkdt_+Ol-!d-_>>SXR4r6<Uk=CqEaMkSrtw1>r<sY2
z$uyo%<E)HxtZ!-5N~7+zoL^=9CF2_Fzl`6wUKtl<Tw$%dmc!$BZX%bzSh^%QXFiUS
zd0F7)!?XWuUKPzh8N)NO*n6EZ!-}0oiF8n(|CVu66zYEjB`4B8&mCC(mW+P|=eD4Q
zgm7U&iwIg&&|-pe)FNIgrco-5ifL3z^C2y=(kPooxire8aXVhDYSGg5&&1Z3&;6om
z;@Rfm2lI2wr%@q|zZdvyvWxu6X;ew0dKxv-Ag5{?KkbNBOM?P~swPQ!X~%<IHPc8w
zT&hfyKwIrJ>ZI{V8tv(^G_P$CP9s7MX&{aJ(`b^$-D%vD#(iltOrrt8gNb|77+E6e
zw@IjnvIm@q@Y13Y?SC*qX0?TW<1|W!6C<i5NO|Qz+BA)3X=JC-JdIEqR}Lh2)Tovu
z&EbqnoR`+bv4ws#jaVA-G!kj#rtv^JxD?M%gLAb=qg5KM1#X!}o&X%nu9fkEANEIE
zf1RW-4@rz_Bj|%^e0L*4Ca+$SX?#(q?O$JIQ@DV^vp?E4jfVsvZkNWx0_Pr-*nBjN
z$2dhAUDD`~#^Y(oX{6J5B8`>b<#eJe?vD)pFx)YXjthO_&Vrvxqx*L`p^ov(&0<O#
zY8qY|6w}i9w0>JxU|nD~4FNJ~m;zXW+IM=LG^m7Puhwr%4U@*ip8T_H*EF6?qkkF$
z(&)yy(&&{&?=*U((KC&w(m3VB_Gh=HJyq^Xnp35Zisw;DpEO?oK4-#0zppT_*FwLa
zu%BWSemaeTVy<V?7?j3f(KRHE_iHAL6>m-h(r)Y-!Q{d@<fWR)p=q$INM3wc8pG4r
z&PYyU1fwF2g=s7jfjugXml_wIFYxFz#-uS;;BkV!kj8icDnC$RLK+hVW-d$;V6vc7
z1YP<^*{OGWr=>AHjTxdjGmSZS__NY@@eZCXK)Vu2YMYzJygU51*`*e674syXOckCn
z(^!(mnl#p?u~f(`W5A@r8+H!l;SG+Fu1NFoMb64JRtcHag1+){7Q5D^u|ADWX}p%k
z2JQlH3ex-mB6Lp2UP|NSjo9z6M_-{~TcSK(<<x6qZ`W<bdpGhor?Djsf;TByHS~HK
zThn+$DB&$0<w+??!26DE>EMo!`gf$UGmX#E_&kl5Kh1e7ja_NHEAZQCyd%Jf!7+Bd
z$L(V}x6Iw2#_lveNaMpaK1yRx8qxZ(y>w%veBQ`>b}2-#Pc%E;oBK#7iMLB1Q}Raa
z6IPPn@;?=rO`36OMmDYbB8@N8_?Bsv#(^{rrtu9^U_-&86R|^S97*G=G!CcnW{K+k
z7D-#akA2MuDV7{@Dd%V!<&VWEw(v&I1B;|>T}xj$BJqs&Jq0%99Ao+{^a+lO<~{Qg
zEO#dv&-AB)l!6~w(9)=^po)T@)A%Kgt7-hn`k%%b;pAUgFgItP<-)5c&ZWUK^2)ms
zO)DgMcW^$9-_p2{#zn?C)1+wfcdBX~f3jWfCB}TiL~ujhF82>^=#_w3BptiLWUrd!
zt?^%JTw_62P)5P^G;X9(?e&}z3jR*xpEL?9D53;=eUpVcjY0z7O5@)&CY1@1fAurF
z^1fmOX2S%j@m;K_f(}KK#S~1w72~|cMUx!HMo9&w6uj#OH|eF7pp3_yFbj2A1?3b}
zRB)?OL3t&Js1~tE1to}zYbRoi9}eM7Yb6DgKYuz_RY5fcEflm=P+dU{Heb&PE2yd9
zE(MJh+^?XPg4zo1QP4m^9R+o%{O6pz71R@IcP;cm0~8$0jt?wfz=?QpMU9)}-n%1f
z>&+O?LH8=SPmH3q4VB<>rI8YZ^tf3;g!9s+37HDA6*LuV;cfCub=$T%6FdKq)0~@F
zBatI$NKiJJI1vR=1z(Jf^2Q{lAXmWy3g661bH_%xFC*LK+G}HZ3R)?6n0y5@swP`2
zcu+xHLB0Y>2-D6sO5p$F3;m~^a6&;+L4ks{)Lb=D>EGDm>PbHLIC?$CNgq<st!A{H
zpnMEMOquoy9#`;$f=3lRrXa6svV)k5mNdH&<D?xGZhefGZJo%!8C;LiFq$nZNRy*r
zrUFHQO0^2QE6^0^!bMLiFcf4II0{?^rUGV`#pr61%jIXX3Ty>87Wy?VC*xTKYNMzp
zoYR%68by6Uy9g(<x$o;_!&O<Mv-26rJrwj*FkHb11y3pHrSO+XF<3!w1*g}<Uf&Y!
zr=X95zQO}D8YZkgF@`$%{S^#Q@U#*<Sz?pNKn0{sfgv0&$A&8WMJzlcFq_XRIPp!A
z;CTgH@-Pv-Y|g4&KyPrak&GWYpW&@ww1P1T#*2ue563D&Z5*e7A<8LOUbsix-w6sP
zDrj9amnM-;QSgEoGL>OjH^|LxTSByFnu6&{aH+hX|JgS`NYYu%1qC}5yrp2af;kE{
zD0oT1Tm|zKEK{&t!F&bndc+qiSfXHof`!5c&ay~=|J=S*;ZHTj8MIsfj59u`e3M)u
z*1Jl<Y6UA5Fqm1IXzdz0c~cHUah>qkT3T2&$tP6nh5c&r<n#uKmlbSOut~vd3ja$~
z?kjY!6Mj`eiM6pO?vKwq9h?`qsLk}Vf~^X+h{f^>jm$R`yeVqPb|omnl;1}CYbTy+
zkxTkN(X~TR78CmLZ3XWr*stI-1-n=}6zo&*p#qxpo`T&9J`j4|XX5XOJ+~*;bV_oM
zf~7Uv?qz1BW3?9fbIR~ve`S9pX8A;D?$adqW5#Fg#MBzePnF;T@|(J??rkJ}&frmS
zghgXs;>9h|FBKdRS+?}`D3^9n!6C+H@gzg{u+YP7;zVBw4PPrb$_+Y@pbuH23hj)2
zr{H_qpreJ3V+xM5uxqHQ;e>)87&a=#s{9vhIK^aF(OSii3Vvb@R8dLA&vd?mYb?kN
zZv|%*{HEZ7g0l+FiOo7s4M&r|DkwfB$-txk->cX5zk+{}=_8WvF9nyBpx|Fta7Do%
z3c@dhnaeyaUKIkYhkvrR<mWO&iI0{`ZfuZXmAk>>ub{MwES3Kg5H}e-DhjJ$0l%f-
zUj?@rs8xcR&|puD4_jW&4igkngC~b2RFqUvRN!JNimQQs@_FoTlFP(r4Dh*PDK#ix
z1fTy=wv38$D$1)UD};GU;t-}Dm$OlhRZw}e8RMzBvWhAy?pM)7MO78mRMh1xDyplf
zp`w<G+A3<Q!71Y|L3u$!%;UNLWv$ts#d^yb>(I9R;KHN63aGeO4XzXJRx#w&oCa!e
z-nmC$Ho426*Gw=6?^DrGMZa{6xRDC3nnz>d4T7dB&kKmEh^av?WUI(g5mHg8YO=W+
zJZSy*Mldj}BBEkpM~N~F8$QZr_~oiW?P3tN6yO0tTc~(+N|O9MH3(4_<kpM)d=(O>
zR?$U88+u7aM-`n^#8o6zJgoA!@{m-66KjF6pTT@8JIqzI70riKv=e{}C$l}LQ1KYe
z6EpJE$?2ZG6>hsW_Bd5_l4$l5oM>k@Iq56O&MJR%4;dAv3Ry*3g{DFmPF7T?Dww<s
z1J)LT4QpaX;FHkwx@}oi=pruJQeg}KxLlNqwM}x#<T9t0&*d44Q+q0Ap3CNmxGTj}
zJgs7&if$^ptLUQ!XAqXS9-N55&>+#1%jps4(Z6y53sf%^z15)Pa?42jirDL?qCY2H
z8ymnZs~S9KU@2geH@SmU3{~-*iox`WiqEgcpJ6Or%XwA}?#izp%ONLRE%v;MVcf@R
zp;0P^s~Dl;a#n<5Rj<UiUX4#HTQE|^oA2gqoRd3R1)IF5-t&IWI2Gen>`}2-#RL@-
zRjgLAhS5&tD(0w|t73|Z7gWq*ys60BCQTKyPv_F+<W3VD>fuB)1b?QW)ehy%ZyK7-
z8Q;h{t|a_)^7)-v^Hj`Nu}sBsA+tcmA{C3d>XD&^D(?OyI;BW*iRfCY;@6uwTnp9K
zZ4$q$T8NJYR?yBVxfCE?Nhb?HOq15CSf^r}%I_kuUd0C5rs5S9F9~fg?#QA6FN@{3
zEnUDNud3LjVzY`ZDqa&Z>PK<%*Ut#GT^r}5udCRq;tdt=e-(I%y>ANNa>+E3&Ht&`
zAqKv$Vy6IaF~tPnlZtl)*u@AJK--q}fs*)dIq!+}a?5s$F3$CV0Mxlp#fK{X;Kr%=
zNX5r0eqb=D_(a90Dh{eRBy8BP;tLgDs`!k-pyHb{1)T9%q2{}bhYqM%uq|iVtt_sB
zk8uW<&O5B)h>CAje5c|o6<@13${{K!zc`&_*jy@zOg3WN0xH><8~I*E?!KI3Dvq<n
zm5Fc@PcV#)Koxg^fR>+P@mFzH#W@u}aZj6uei8GQD;4>fh3-%eU36N-8DZO_MvR)d
zN53-WRa{VUQ4FE*Z(>7fu(imiNx!Se?wNZ@1t(%~5>w9=6<1Xh(NI*wpDO;M{)BW(
z&}%AgaEeZO<Xl(Lb$l6uzj+Gau2oOeR1=Tiirl0>3pXeDSH*35k9zpzUqhu^5xyN*
zb|r^^0>v~G*HBJFc?~5r@D8Q4hAa&wHI&lu$miL7QNnit)LBLY-)rzKNm&g!w<0TU
zMrc6UFS09Wfnj_FQ&EFGB>qxX*-9EJYv5}U>gOvJPE<`pbq%YjUqcNIH8m(2R1J4&
zsHH*D&_+XT4Rtg$(~vEUtgE4chI=*C(@<XnG~BJ>K;h>1Xu&f~>ZDcw>F>N$x=%wx
z4fktkBIa$Rp)tYD2w&6C13Pa<_y&iTH`Ty}lmGMJFlloxL_?mKE~Fu>Ay>l#8X_9_
z283&jiluRum{>AbN9JRb%CykXQgrbykMDqJOgSadN=)5aL%!&u22M=_9@G%m&{0Dt
z4G9fNdR0Sv4Fww7YG|k7VS=KiAJQ;vNPIzu(xmrHiIW!fa!D!BAryI317Em2uHi8@
zHOxPi*nBENfeQt>ysvzMlP*j=RUz3~!y-Mz*B`Qml)&=~H)oSaTEjoLvj{W|x`t;p
z4Ao$0$Y|)Mp}PiCgQcNo-AGsNqXtKVr@`0Y(yPChE%j+=+QqUrDi-vuA2AD+Atmm@
zO&p)lPsiSB6nRp^y6Itp9#o>?X$=E4Jf)$R1~U5z+FR)FLtLZ{C+aJj9}SNZ_t!9h
z&Ua(%x>%$QnS;cT!9wPVLS?9gVnamp89}M-IStQictOKddQZb}4P!Kn)i6TCNDZSk
ze6TN;`7An0!|`YH8(vL5`&pEL$F-sPO`ppjr(vRoNgBpe$%^a=^vU009u!E|2y@_M
zF6zh7o@eu?Xo!|8I9n_^jai^!u7-IUX3&kFMQ3trXwTm{pN<T@sNt1PiP>UaD%rhM
zq5*S6bIIJ$d<~yfC|JmS(Xc>6zt#nubZD_iVq2ElGMAEzHPEUhf-V(wnV`!BU7=y6
z0ILMmYbGhYmKJLGL&Iea>osi9a9G0;4KHbUS;M;;-qWy=R%zI#VY`M`HEhzbS;H0$
zuW7*}O@3F9azZzbOMIjHIyw8Jeu?B8oZ_UkRnSZ83&?qs!5}^}_@9Oy+!_sUYuG6S
z_&k$uX8FYR-Mw*sc<_#fT`VTk<9zu`C5I0r_{GBe8g^^=M8l`_h6X+$-J@Zz7+&;h
za-W6|HGHJuV{XS=$sbQdYX07m!~dJ~zLH5k!rf2rX*j3_4^cnY@P!6`((onsx=Mo2
zY-u*Xf;hm9-XV>f8td?J_94;5*UIF4rQvH0$Jomx<v=Q7*zcA2x?z0z<hL5G7jYjf
z6xC}bzUStaN-n+{=~*UuLc<Rl&T2TP;iQIB8h+OBi-sQ=s4b+QSiWi|Cw!TFq)hU@
zOq8!SPHVyYjx(&Ex8nrm$|OTqBh^~Of7Nha!vzf&HT<RpuQ{TB=ZvjYZ>tui*r+R!
z-!)uf5iXM?hhr;VjePWP{ECLFETlTB==f8^Um8m5$kK6*)@rz=;a?3mH2lrHX1ZO=
zxp*XJ{o6^>tA8hw6Qeg-Y9>azOo-mrP)J8n9mRAM)=|Aq9)*kOXuT#xfk71#4?mhL
zuA_vGQaZMU!c@W!0|wP=TT;i&rujc_h}Bvj?sY28vr-uy<@DezNnBRPvZ6^|XqDGd
zL5I67XX?(ZiaILk;EAtSy$Ii=@bp?$M>QSy>1fEQb=1&NM@L;9HFcc%CA*dmZqVwz
z@w;@qzc<F`^9;q>dhlTYceB*xvh{R8$K87Hw7foDQP)m2PTZq|UlcUZgHHwc$;vO~
z3!0Tk-Yc36<3>6f>u9DUTgUx6_?-*`sfivuw{P1r)Kn;6);`XOn(N5X5#x$@9F#&j
z$jq-2d~XxhgVc!VAdU*kF6v=~(@xIbQb!)AFwopUD>_rhDIGuR$k!q1Sg5lOqm7OS
zbqvt)w2rurgbq!It|O`Q4-E0Bj>p9E+v;ei<6&XLLpo}2lbB7Mf=+mZ&E^J=_ByyU
zf(|+!r{~+p6&+9L=%^#DgZb4-#~US*b;=aTIywu?W=a6w@$uydyQq*%QdKyR6B#-(
zI=bq3QU{l2>TtM~!bO(wn5|=8n*^Q1UQb6CZsmgsUzkcJjhy<b#J4BibadCzi;mLK
zLq|^?PjMIc^z}f3Gj_gOmOG0I1>CPb^wNn)KOOyb^c52^b9Yxw@_P?z;|EKm19c42
zF<HkH9fNfY(eb>FVLG1C@hlg+Kl+@Gep7OX3d{hY2CGZ~1Bte=k_@L;b&S$6LjV7_
zKjW7bjMgzm$9NqRbR1b<FjfyfjvA*27P5f+a6Bj)^b+43(LWP)u%t{95k=)M=$NWw
zwvIVErs<f@ywEXA2h*fg?-sGf;Tc?YUM@4`MOt33?eNQG*(6}%%%xjS#pml-pkvph
z=sX=u+e_>24bmzYGBP&1T)|=;OXz<c@3EJgtK&5tn;C&RR_NHEgTgCytkSVo;MGFs
z8i6^**%ED-!UanbWy9fhI@Sw*_We<gdP&F2IyUNHS=glG;Cms0S9H88IG6s8v-#X2
zpORa2ysqPaI(F#T%CMn8ky6`qyeUR;r5qd7lX|Tvyj>Iuj(u%L)=nL7>v%_a;4MMP
zr{pdjL(3I>`DZZ2g+E%puVc54FX^8@vp>+WN5@AxKGv~U$34ZHf2iZXBD0Up5xJ~j
zbsC2`*C(tP7t4O8<8vLK>ew&5M}N|FT=f@X6&IpGxubAU&Hl_jK!bH05)&O3^gBV1
z==e&2uLY&#Q31Zu@vQ)RFP9~g$M>RnOwi*xP6+UWpeF^TOs%4&f1;mt+|uzc%gD{p
zFDz&}&gwWVn&ytu6l1M8r{lbi-*o({g8@cPv*w8lw47C4$6t&w9hY?cq2n@hykfzZ
zTeE)sGREtxE6na4Syx#)c4YC2=)Wtjg^T=abWy+D8#?~hgDb1+Ot-obUNsT_qvNJ%
z>K8+7@+eafxvis+fqM)zFi_Y)5d+l?)G$!gKrsVl4U{ub+&~Efr43{mC}{*|u~G(j
zlH$R$WXodBc}gnvSn1YP3V7lxW1xT8<jyk5@&+mxsBEB$fy_p!<C|F(4OB8P;?-<w
zc)e6|)elltp@+?C1}=$L|8ujFY}Pbzmw~%^bjht{z-%McF;Le)Z3Ex+h%J69cK%$n
zo`L!XAY{mSxLx?2Bi8Aa(c1;F#II2bQ1V^_yZ~-u1lPUy3Ea>?BLj^MEEp2M-{9||
zl^(V-@$rwr<?)&dNs2W!&`ih^^K+&g10e$^4E$gqY#?G_A$w`IftZ0F26`IEHSmCe
zhYdVppoM{!2HF^S&_EuGzX5)|lWzoH(Y#$b+1dcV7+F#|Nv1@f&y)B~4!;tK3!D^`
zAI~IcL;2v_k^;e@SX%=R-NEey2=6XvZ=g$yB99s9VDPMpO$feP<O90L4Lo7s&A!3=
z!Hxzx8NoLIe1OxL>*Ze1pMoPB&;?*`S^z~*)qr+~KlfY__8JDxm8eHx34Rwr?K?7#
z0ImV=4#ziwHzSnqDmYIH+U-tncLDgt<5LED85n0^yn)^Z`WSe|z_SMash!u?zyJeJ
z8|cU2EZ&?|rN7`43^amE7al_l47!5{3&39TSwe>zcusIe8$o$|-oP*e!v%-MaD)L~
z#*7kO1S3Ur=k*9NOUD=kW4W_=xusWS{jxL0;S&r@G%&-!Oaqe)Og1ppz%&C>==m%0
z7Ys1_n1d^dw3&XfEb(+kMcqiBZCS*;10tPe;6(#-4a_sJH&$x4f&7_Sa}4}@C8m#v
z@)l{-fe=;AXK)rOvp^`MhT#>0`>DkSmKb=08){&wfn^3Z7<kFRasw-Pf$?<iIs;c*
zhE^I_ZQ$sD+*N^lW7R4)Cv%P9tQB<dzajRn7egN2Rh{1$zieQmfz9mA3-K=a6(e|P
zu*ty3GqYYbg4=dBU*mKo!;7vad5^rs!0U|g>sh>ez3*y#D|ckQ)Zu^OZ3ea*_|U*d
zoZ7$+1MeDm&j@apb{cq_d-_?FH#lz@;Eh$`MWJ_$;C^ZsL-DgH4>I33u$z@(a%ivU
z`oO>*1Gj5O*h?nIQo}w2ybn4yBSFr`^nCl$hYTDx@QHy>4eU4YnSn1291t2lH-ekH
zFSt`zk{sS{ONh-@+p~BVc98NTLp)9$%syh^E0z=k-y8T^=s!v)2*6$r+`h>Fmj0g`
z2$LQYU6r28KQ62t*e`#<YvG=S@=h8!#l6d*aRxsc_=#mRgYp^tY~U9Ie{tc$$)^qc
zX5fN>GX~Bwrx+5CMz<7Co;UdNG4ZRQ{H&DEALLciMFYPZxFVRB#Be^!xNP7Lf&aJ}
z;jRT=2wzQd$W;TRf3h@*=5+%%SkE&klEL5HCIh#O;OWgxBX~H|Qccv%YR)fFspMb!
z*+8L8Fr1Gg*!v$SnnAG)N@Y+wgW?%*NXbkP5+ySH@3#`0#J3;Fqi`0-ibp7AGbkf4
z9|V!Z>G&|DLIxExsFy+g3@T+%IfEJ*)XZS-$w-w9s%FsoWaRl$Nz!T=RL@}a;_QR(
z<{VTda`=tbT^ZEQpiTz0GT2f$l)ERwFSYpL)^~?W*Uf+*bn$C0e%yr&?#|%8Oz`NQ
z51H@D;NDE|cCtYxc;>vhQ9dc(dK_BhlQzr*F9<%olDt2ICK)`CL5mEUW`Zcq&EUZ%
z^_pdZf|)HSnau^r$si;^SWpT?1c+u3yTd8EzwGaee0H_WATI+c13nz!HnkE0`CM!!
z$Tc1{mlr&EHTVp#4QI?Co<SmmhcalFK{6A>IdA+6GWfi9WJIAdZ8QHLv5d5bGk7F}
zM>BXVgZ7yqq2^a8;GI4JA1QEDjdBGYGC}S<F6a}2b`-RepzP`_KuYLmQ{jx<Toctz
zXc_1<n;VpYkwGSdsToYmz|6qPV0;D>#9HhO24yff11AGF122P4_b0n&(1V-82$?Q*
z$)GE@Ltr+$W%ysJeF7c?Ju`SJgT5K`%b-^V;fb+6g7(f}VB`3uIZ~e?(%OAx-htFV
zg8^iU-o1_El%&AZqIsZPh`8xu|KcQR2qPzhtv7RspW#+!Ff@ZX*^%cm7@on144%(m
z7(KSwKVP(Mc%(GoccWupXC%Gt$3|tazP!|Zv0rww#O4^GXKV)R{+CUK<3w{r$>tNq
z!Y6TOCrI4lYtKa|XK?Cv{>Iz+Q!;oV0|FkCs+XOf!Hf)E%V2W`Gc%Z#!NLp{WzfBO
z;>8RuuaC~pVACf#vuU9Ka|Lae$eowLyGO$8T9Co_o1#BuMNcMj7iX{}gVh<V$zUn1
zsw3TXI<_){Wf?5bU<G~taBSzv?5>I26%WVQyDEbtd3nVf7N5A-UrTw;(m4Os3}*ir
zTc5$pwB)Pkh72AqT<;~pB!9y-oy?6He7UjUl?>jRCN11pz)_pT*q1(yZOP#E47Ljo
z3@R>d<=$0~Y-0=*m)^+W%?vIqPPn_XNne~KJx%`zNqT7q3xdFJ-Qm0~z&jc2y2E)l
zgZJ*>_XXIU!3P4o*CTNCz6?I(6d7F1;G+yaW~L0T{cQ%HFfX|8?WJ!r*q^~?TsS@1
zA@}nPzR2JZbM5o&&u&M)%-{ffZ%6*^T0nYGV1laO8Hb7IO2xYuC*{Dem=TMmuQ^cY
z*>ydi%-ttL<4Z{2aYr&Z#=rR*96g=EnGB9IG7sgP;GckHaFUUb!A~ssg1Pd^;y-4B
zKi8UiC}-_rpUq#GM~89<$~_Y!|7-^P7>XJEmccoJe_rhWDnR!3#F{_CZw-`4H_S}@
zp1~!aO3a`l{lVa2NjFi{#FY%LW>DzwmbWtalhJ-I)bXF}zccvf#QlG<EM#z<`#4a#
z!T3Mp*mI=#AnD)5K4t#Nfb=FMJLC~;-B|E1s{w<2W5H`~@j_+*3Y+-6MC4l8yavUj
zVkU~4C}HCKIp>*gqa{sbzKzye;%5m^%0y`st6If)6g?3wW1_5ye`kgZjgfkdmdcs<
zcw_SN>gE-M{S{4285FH#qOyr9CN^;k1gFL%>48a7g?N~~HB8hrQO-hn3wN2QWumu<
zJ|=3LsAD2-B4MJgiF!g|YZLWNOfM5{YNDA5n7G?SsZjhL6JuM&8VcM%(0fhXCjfij
z-xR%4NNQxFF((=-(d_%_(i71pCOW;IAjme++(b(g;g_R1CPF51#dKj4zn_gpO~eF<
zm>6BcC8yQnxohrk_0?aI?$`4lpf{e04V@NmVdCwFBmyeQ6RKKq;1ZwBd^3nl9+HVR
zLZ0|R!QAjeBx!;%^N5M|CJIa}{wq{xpw!mHLjt!GG+d?B!zQkFE6y7AsENl+_$IoT
z=s@Ru7k$D+M-z_={O-L{?NPB#COVrixMe0%CS(&TOT7?Cn|N|y5yixVBjeoJh?60e
zm-uYzLV%bY(}X2tT*0j2WNZ_TiEDO-n3Gc869QC7+?8rg^fZIw(`Sj_&BVf23%Z+_
zwZwmAiBH@^aEK}Jlo0Dh|94J)zQpfqqMwNiCN7%jZ(@LnbtcxEc$)iuJTlhAI1>X+
z3^Fm;#1QU+iF?LK&xqdVO$;;ftcjr}x-AS(xD_AxQ{p)xz~*ohBTS4mG0NoSbo9a!
zfAVOF;Yt|-ZH&}%R(OmMF0<69PR8VT+HB%Q6BA5KG%?A<WE0aEbqrk-FPNB0J10pE
zm-@B(OH=zxXU0ow-GanYe};)q#!E9z{vMRXE~<LJYpBo!X*L&YV!4SGCgz%$M?aWY
zME5TB=aaM4Utr?-rT+fmQniuN&B;+JUu<HjiDhD<B_<YlF*2!>+IEi!zyrgjl_u7h
zAXp{nYC+j7-Y@7~OQ+qg``S`}gNc_+oG|f&iI+`mH1UCnJtkf;@v4cPCf;IVns|-=
zF|p0WW)oYO`(Eq~VcX-s<-ab>*vf#MEDatY(USd3{c}tG?aUDqJ4|q;l&4i!_r{7X
z^Le(dx6HqIJ@K}QT_)Z&(PO0a4mWF=zo2N__e{LcTwCVvHo?Vm$us*&t7l4-x$s;5
zUK9IFd}-o<i4RSDWa3j3`%Q4wAJe@ic-H>Hi@h>lQkMByqovPSxLATFOJA5cxH?V)
zsO>o~ruGZ`aL~jd6JImYOdK|GM40*&lclc{Y8vIz1}yVmSmtvJzA^EwiDM>?oA{0e
zu%9%2YKSZPUSKv~TIO?^9LUXmv$)&%iSS7iznWmtJ7wZW6F)JA$Hq>ZIAh{x6TfhO
zCrZr*hdYjq)t(@oHBo+S?3~FvS&3u+o+y#e8pz@2g_7R{<ps>|qVg26P}IUD6X(WA
zf0($;`p@*I$4uN3k^HBL>n3iP_=_oNBFhRhw$D79EZ0~1Td4ZyeEvUN&iQ=uIZN@e
z(!VBdn<#9d!B~mCg{&YWUYuRfsDnd+89fu^?_K5>vrx*yiq`Ss77q52%mq>j3neYE
z>%=mj&C(Wb()mJ$Vr2v<E2w-bS;0a@3!5ywW}%XW$`&58(7{3#D>$Rou~66Im&~YU
zp+(8O>a6)zaM@NvG;0dV_+eKqb`1z3s<ssb*q;8<dxt{xEZjr;E!4LF3#%GNIreS~
z)kg%qt;b0BTDZ?bu7w9IG_=sjLURi_Yz~(iTWDgT^(g6nTD7pC)^dMPKdGsOW)_&m
z+4ROJsl@<E>K7z+$O<kLBSLb(2q`R#=`d1?T8LS=*sLv?)Y)pe-@-ym3vmkx3wah=
zS!iPg6`-|+^m0Gnf@I;R?zx<olsfw@_s7qaHZ@E<Xo0{OB_%BsSa{gNBNp0Pc*w%s
zQBph3I3>Eiyfk~c&op7Rp>6Fg^cyZcDjc$Lxle6Bi4yd<g(s*@c(|j5P8L|)Mq21>
zA!VVLh29oq+GD}B;8{>Cs1_^>wgt_CZh@z7!@}m91)Ii5LytxOm?>ohv*n>|)51r~
zeF``h-tOSose*wm@^~<2d<$JHbhFUiLRSl9GNPX3sl257=IZ$G#a(iGSm<ftDVi}_
zqLP!#{VnxcQBUM>0cYuBp|6E!EIe!B_Hw_Ug#i|x7M|&E;rRv9){)Xc3xg~SwlIVn
zy~1bdpevZ3u@(OCzCoEK9%|t^3nRGcOa13946`ttW`7;3HA>q2ay+%dXMy6VTl=Hj
zbQY6Q7DijRccL`L!dMGiCP=fMuS+`4!orCXGk5<4X@Z4`7ADb|7M5CAW?_nj7Z|SG
zAjXV^X%=Q$m}Ox)W8hHs4B>WO{P3K`#r9p{(*rMBL2k~r@XE7EI)|qirrSKhT)??3
z%(uXctB06_Go?iq7F$>%^pHt6PF~@!UJ*E-=e6ZbF$)_kyd*MrrG?cN*3kb8!>fdQ
zIqzE0wa&tNE4V7-hH}O)XM|Y?nCXm)mxbgjf^M|HE?PxvU$sC1;?4Aig^-P~jn^$~
zwQ$wKpBCPrW(!|%2yI><ZL_e;!n+o>GwMXF?y&F{BgDc^A@KeRpW8=Q)AR3G_;!UK
z7dK+>S$LmYW8q^9yDfZRVcuA2pM^cFF!bcIviFXcu8xyPd0boJS6%6UXu%jSQS1{7
zpRy>ej(=`pKl6H}|CxoR<D{WurT+xJ8XJf`ywX2FF$=#i6NN(#S@?!FSU7Cqh=s4{
zpV89S7LGCtIv4mWeFiGSo;y{jcJc2ld~e|g3n#_cV-}8EI3c#I+O!z`Nk`FR6E?)@
zu2alz3qM=<kwLpM*eNpqyUbunu%ez3yLsNiZ$jHy3+F8SD)6i^63tk-(!aoxVu3aJ
z4-3DGt+`}@yR-IuK6Nr+XxL>7S1i1<GPr=D4Yc+z3)fhVR`_?@xNhNwg)%nE+W4EQ
zEEKU()W%IZVWd>Z4oc81h6GDZU+FeyA0;t&wEhyCJgpbDv0+3|po-anKuH^=Y!tUq
z!UoT$->&q@<o1=e!Bc-0)lQB!`9A*VN}q*}X;scfc^kED)Ui>)MnxMnY}B+-$wp-x
z%)#n*a1Fq^%3!EM3r9#*?cf@tnxN#fJhJTHWe0`2mN4eEz7h){FL-EGT|20I_3fY}
z*0aHyz$~t?DkzL#ppKMy)p3uF1~%@sai5JQHk#UKXrqyh#y0M^(QH-l(4gHapH~ii
zCO{2Yqa~JwW;8e+W~4Q@kxl&rBwol-A)_eA4kD9hz=(~gjlQ(OM$AU84cSJTrrKy>
zBT0|hXlWzQhGe6SjaD{V^JhcGOZhgsvP5^!rMJ7R@@vF{i<1ZK;B*tWkr2xnv&z4_
zpVWDT#H*2^TjOnQJY=JTjmK@Yv+=NvJ^iIeZ9KxcSpUUhCo6HD7nX{(JVsZ?V?2o*
z7$rSnqoa+^Hc~b^36FigD%iN~t9*Ko*GN1|QX8G7*idbFHheocQ)o6UJGdCoZ5TE(
zc2KKL!C^0}5TlxbY74$&!xddDP(1FfX>(u~8{LH};;uHH6aw7@C5MHmhmD>#o)Vls
zLQgM&d)qj>%BKu3$Qjj4nf^8g*cfkPf{mwb3>0FcYz(q7*v3#B&)FDa;~5*z+PEn4
zodtmv;J@5oK2CaGY}{}gBWw&~NQ{??t`3|$lG!m{YQ5UmSNnBW`y4Xb#uyu8?I71U
z^*9@s_DhTbuJ`HH{zMy-sLIBCF3rXi8#9;=Ha|0PU$8Olzg3KurV0yLz^B`Iakam3
zb&#Q4(JULYxw?9-=*$=G;4DBt%&{?-17`*+W!)xcfsKVWR@zv_Oj+VDva!_0G8>C+
zEU|+c&Vk#eS>d9|<zk{0c2I5hjFzZ`y&tXiSKC-)V?DFR##)Brp=_G5jtj48|5x65
z%|;tuvhlJo<EPa=t>Sr#4u93gCdOMAJl+Mb+1SiHb<xws78ZXdyMxahY_;(Qt#Yu;
z!J9U=*|=iks*UY7{>S*Vv6p~Per)U#V5gvO2}=IkHr^4q%#+30eD@CjJsa=e!Mg?c
zK+to$q~1NGeKtO}@re!M4+Z^5&_mg+KBZwcez0-U#%DG@xAC=&qc*;<@ukgQ-os%g
z(fi>8^xkTpe{lUo*}Q``NaxR!-kc{LVcxCrzv5zdNlPn4cud<Cul88+Z)|*T<Cu+a
znGQ!o-wA4rF6i7-dX^_phQT~3ca497fj1+}<DurQPTBa;#;+`5EU?@cdZ2NuGfcxZ
z{x3F83p0q{cs9YYr<NAb__H?7ai<azkG18)zuCCJsI&10Gq<O7QFQs;qm=xe>DfIR
z-JIZBE;H%oNuMUAzOPDb{%PYcavXRL@5gbSwa!5!2RB$+ZB%to&A~sc(k$Z+N;|kk
zSFoNtI5k7MZS#qDvXFzqPN1{*8o!7GF0+^e+S&H3UepQxN}U{fuUnDkB^*rXA(eFS
z+dOH?8lRK~WH~73puB@J4$3-#Z_74sMO9nY_!S&fbnt7WZ50Rm*Z7qjRCYjLy;H~?
zI4gX(r$iUg=iJun4r(|k$ZplZK}`pDIjHNPo`YHrYCEXoAlg%+A9C&wW~5<%eHx;M
z`VQdW9_oBQT=rVY|2%oO6S!2al|>hkf3Fj4#C<}!mXx@b#t!axAUSB`poxQ~4kFa=
zpqY@#cF<fbpR34mKvP2w!UE9Li&eu1-wo6AKU8WJbCB!cqlA?2-~k6M9JCf1xW6qO
zv=S>N&U3K6r$oSoA2?XhcAms#(tbMjK?iYq%t1#72?t3B?HoKzB@Ws;U`WvNhaCJT
z%q9Wndc;9{2ah^<%mIIHf_y%0Khh~s+rbIq{BdChqs5vZ#7QRyogF9+REJ+NL3Y61
zNsCQP&X;~!;~(oT)jXUt#*H(QHM(MRf;x2v3~$2;B0M9gDX1l=EhxJj0XVhqpo@b!
z4(2-O>flKS&pCMBK{p589rSU~*8z91hl5@s#(Ik8Q-YHJ;o&m98K@odxMiHZpM(Am
z20IwyfV(!p!5~Ig^Hxub-K1Lv3UD$SdE#&m?VnpI`3x;_Fq8^kNiZ^Z&aPXnr?j<o
z?ADd=FbBgOOmi^Z!3YN<9ZYgC*}*6WqlGc!9E=g6OAr51Ims9v>)`eppV2a22oOvV
zV4{dFHn$!OQg{jz>Pna~@PdP>A{dw^Y|d~nle?3YUZfM!4*fGrIQ+kqVMfe$u;)+#
zBZ_G_&%r_mi$qG!7j%JxobD347CU&iyTq_BS2b^mz-&_OawjOW8yvjkV1<K~4puo>
z?clZf!B0t0W{n8Hb&Mi0YWBG>nZH%dTkiw~?IkJpvV)Bdc02gM!7C14b?`Qez=P3E
z+^JWkEe>9%Hi6mPELKghm8s!ir^v@Qxr7-KkN-K?Ch&GaE9SH!bBDkT`}0pq_SQ0Q
zIpEh0<iEp>qe(1QJtQVIDUbI=^L+=g#z{8!IM_>Pa_e(ik+Y8#rfS}YqL+Z9X3Pq+
z>tiAC3H>a<`JSc8{M^A84obQx<>E^R2OOMZ3370df#KjM;kR#l1pYki;D~U}R}Q{)
z@STINMU!E3)WJ7*F#YzugJawm2b`D3aRGi1&N(3{nJ4e`(o1aqD4Oj3nH9LF#N!tS
zrv*ME=vhJOD|VgdHgzxkhp>%H_|3ru2N%V5RO=xnyGg&ZICPUPaijBM1eYCLad6ea
zpTZ|aT>M1`G8CEq4(RRcB8qMZ%qaSsnI$-!j?J5NZ{s)tkJ~KKIjsu0pbRY`r?49U
zGK;!c)kETkD8&RQ?xKVMWYT-3-5>%xy6EI0%S9O%hp%Oqb#a%AS^}37w7j4dTvQaG
zl8eeNst8Q^pXbyitty(;TvQjJhM+a?$c#G~uI-|Zi+mT7i@GlAxyW|W+(msCaM8#`
zV;6V3xW`39H*iq{LGN{OpNnmIdE_h`9wQysT_UZ$)}I`b?sw6|MN=2eTny_bJ<(mt
zs+j1FIJ!x>YyHlh^X_gK&T$cP5pfZ95q3dK7|j3cCb5@hvl(;I!bMBbl`H52Vrq6#
zPaZu}F)<VIR<yI5)LPJk-$jVqxOmXT!!90i5qFVr(e}>3q>BP>Xr?%=nw8s@l+!&V
zdfN#)>{o}YXz$`t(R^Ic$HXc+2pfXs9M0jqPq<jvP2$0|bas()VY;wf@On>np}WCD
zr?eZ~S}HF16pMUS^lC2n(1uM47%nnGl26Fl<RvJdt=TRd7cTd@e{gH|qzli5?;^d{
z@8Y7Xi*v==5c6ttdNG$z*eKJDu`wmuUC<KsTRr8Xmy7m39`(`NMIRTPJ)}JJb<xko
z_b!gP=ufM-I!2v~r(FzmF~!9TE(W<6>|&&gQ7(qKc*aHScFSQdo^>(Q#q%!SZE8Qq
z3Q#inN&VOd7jxbXC0affx!oyru6$%THH-=Gt{)lU;@41U)GLY6F2=b0SDu*YVk|fG
zgHq#M@H3CP|KyL;69>H9@!XN2`2>?(Om=Z~N6x{z!OyiFc|%&=E&gZawo_e9bFqNl
zb}`+>3>WiU?3<Qb{$OaPi`g#bxR~XF%@+kFcy~j%`T20&?9f~nAATNseQdPjwB&p)
zd9A<epMu7>V+ZGk7P(mLVu_2wdC^HP<PQ5Sywt@qZq2!zEC0)xUo5hm@v}I-!o_<z
z?(=m+q^n)5aq*Umx4Eq@*14!qKK!PO^)5E>O5VlmT*6xaB^R%{*yN(nKRGYE*hp`O
zTD>A@rxhXM*XWRGp{KTmSFiOq3(Tf=HoDct8!kRS8o7IA;f^0CFZXV7>7O_qvdzVI
z76cb(-j3{a@zXm}n_D?MTvWX$(!4?b)WU5#F3f$$#V!|znAa|9Op)Go@v)0f1b$D@
z_g(B3fW03Gut(6ng6^ZE1o%kMR^R7P>{A!}U3^B9nCXv5pVTgBdo{G13p^e9!UgF8
zo&^Nh+uUXIpuj(j2^04|9zEjXYZpfulP`w8a?!e3m_RQV`i3>?sqpt}{co8j<wD;H
zO3<NB-f<TvT-5Y%mxmu*oOE%6#nZ(p7eBiA&BX;S-^I@^&N2&J{Nmy?_u_csjEnA<
z;)!Mne#Y#57W=+_l%J#I<b;0ZkWkz69Q8u{uUPo<TK}IDk&7;VXQa9KlTN!4x#Z#x
z7yJ}?zmnnD%L21`MSzaio%TI*|DshtM6SEI#<c30%cIHl7{7|YyHNBW7dKrL_fW#a
zEm5}%c_{4RUl+HTEaM91wT#vr7Cv7$RB1?V5f4Q@6!SnlJu8=giT3?ksomKm|KO;k
zhf*FYvdcqh4_O|{c&M<>=O4oKK2lITJ6yL~D>lmtW;qY#Jq&6PC8vUiDsKm%GJ%Kc
z9%^{_q*th_hiU>edLhQ<r22WJXO&o&c;vo{1s7XHYI&&bA>twGp^k^T9-4Y+=AoX4
z`W_mw*9yVI-5&1s_@plPxk}PK9!Squ&TSw7ac(MlpNH;6LJb8asN6c<*u(uEf5;wu
z$J={%JbE$KY@JWcyw3KJ<00e)C%EPwS{H6h(B(!b%&Ggf*k37r`n7^^XDQ|(*F#$m
z4|#aNLkkZNdWd^y=^@WUz6Z%eE03=~GOay$>-?7->EU($qP#G1orZ}v9$vZHvWOcy
z+dIT&!o$KxbCVtlJd9Z9FJI?R=^wNI4IjH1B5mj4VGoacc*4UY9@=~SM~dMN9v<~z
z%+2lkbm%b;zcvmN@Bh2yH*PrP7Eqw0hayLU6?O9P&DP|u_Q^7Z+U{KE%O27m4tqG_
zLGhq^Sma@`2hD@-VU&l_RO=z*;VBQj=pxR$G2wgY;=%G@dvLhSr}Fz2gr8oUL*R<0
z=i%r&pUtiw{HEdV9(s6q(nB{7%ctfh{ta*GlmFK`fA(Za`6$_wk+9z9v8jKuw}(T&
zXZQ2a-$Ngs0vMcQ!hzrNqJJ-n5AeWh`Lu_D0=!r|kIg|IhIn{Ja0Uz7{_~t?J$!yH
zhrJ^`3>8e`=LC3O&|w~i3oznNZ<7Pz77v6eHpatP4>LT>^f1oDcn_03Oz|+m!$c30
zJn-Wd1}DGTy8oW=yn~6zdVkiDP}V!4X8$XA!NXL#^r$q=!>O(XGd`7wrwdL;igB!m
z`5s^0Vz!3?@5JVayr4GzZRuPFPnpm>4?mU)4XY5@{(fTR_JlFFfV;NPLxZ=X|GQPN
z#KTe#yJ)kAWpt*8EgoL?u)@Pi4{JQE^{|Sm^n7Tw2cD<C`7%n}D=)EnY{5DY>ltYt
zUiGlS!%H5vw+%nF-sg9x4c`orzRXQO9oxvfo)IQE`dE0Ahs_L_FQb*phF)W`mksd)
zvprX0%<ioo-k=7i2G`Or|4k1cBf5>dd?wWIQi6ZB#@Tmx*y-VI5AS%m=RoW&L5sYd
zWY?|XQEoKP7cX3Qnr=?M=iz;BnTIbtbp0~A+rwTD`#hY<Ha_sMht6N`&%PR7{Y>;j
zFF5T|!+sAR2~0g7vvi2a`BYGz*U0?L!&e0%&P)2`f0C>N55^C$=F|)wWcoD8|D$K_
ziuL}Edm_8Gg}?IfHPggLQ6ERSY7eJrfQN5AeCOdLH<X3N!!ZVPoxJ~*i5%zBiig8f
zq#p!0L7Us=k+bA_@{OXo+_fJ){LFHcoqwoj?oS?W*3X~+PyR1LxPBt}%D1tz9?p6A
z+rvN1S&xstaoNKa55F<wCg)!A(EF}d1Q$f}qKDrFST9LrR$Eo@2RC|E!7EF`S3Ugc
z;hKl*%*XDTzv%Y$ezSKAzV4Mv;mkvMH&~@#DcII0zze>O-(>OUT4qa~pOOCcaN9#6
zA3b~J?y2t%UKSoyB=`I2;W=-G3j3gjzLRr{`6%w=ULW`QDB+`|kGekU`6%V1w2vx2
zs`|+CQO3u-!r_WO%KCg9YLpkW+<&xvh@1)nU+A78t|WvhU)ks1+V}+3d{p;Q!$(c3
zk|K+{g|>}OOqWA<`B-|ZfJbcsYWa9zs>EiUJN%8+;`M#NN9_k9*OrFv_Hlb(q=Ao<
z$BcV?H0qPTU`T$iAyKDwtnSr<hUECjr4k>{+!uc1bhxpP`+YR=(bPxSN5n@nAK5;-
z#wGig{8MAY&3%M?5abA2_=9X>9?7h{-Dl!aAEe*Uh{t@)8Ik*QevHi)K3e)n{2x=_
z0VP%Oe9bO#7Z5~p@`8dcFuN1pB4HOdkU>C2a_~)_mu7|}Q3(bVP;y2jXAza0QOQ9C
z0~t{=B0&)p<h!r<=6C+*^ttDDb#-;BuI`CX<>$p{sG^aICMsT3@m?EuV-;B{_HM~8
z%uhY4^(4tw?Q0TAjts5wfUKUTC+li2Gvdit(NskXj_8%#W-9+%(#dbdml~YkTt)3m
zE~c!MhCJ(Aswg!(yZk44ZB(>XaYDsO6)&l1r{W_O<5jd*(Lsf(!pp}asCY$17ZqJq
zys9GqWZG*gmY+-`=_uLm1q!@(Hm#G2&RpDzb&73v6K|hP>!zZIik>REt6+A0g*ulD
zB~!DPiq}>2+T`v{vxh4G_<P!|#cHExE72y^e4J+$Z>aFA2&f3E2&ssRg|Lc<il}gE
zYAP(@D~lA+RgAovW=PhgPBXg$OoJ*FA;v^Lzes^TLi(!cr($T40xasU;)9|#*?%={
zpo&49a}}di3>M8dRlKEQh!`KLVwei5-9BfJ{eHPR!$oK4>9n_nj1U|tI7)Eq6HQq9
z4%<4N_O9R$XVTthiz+@;G5MEXG%|+EB=*N9jI)Ugg_3_MSBGhAq2viFCaPGeVwKGH
zBo)(D%wToy2o+OBIE^obPNi+1n8l8<dpl32%~UZ<#X=Q}==Lfq|B>cCn>A0x92Fm{
zn5*K_sWhg+&Fc_9k!;l)Y4cT_$?wXvfV*{xO2X2`Dwe8PreX=#Yho5n5s#hiMT5&l
ze?_8}vvobr<fkfjtJtGrwTjPFtWoi~ifu9>U#R#}#TMafRjd=TS;cw|<a8R-CY6r|
zviZh@q|lADUn|tvmW{8U>3%%PUa75#B_rRiVh1;rid|xgl5d23rQ+*^<jvBBDIcC)
zX)k@dIS#2ftYRPc?CCV7{VEP5_(36T@ra6Vxp~XgIj-V6A;(nwAmn?&qk_K{DL|bc
z8UH1F`C1yCijtqXLo3+JS9OWX6*;BiG`FOR0$!X^@kP+}kBWa)oMp^mMHS~&++uH8
zONF+|b&cH^?D$Q^1<77iaajn9F40>yXOl2pQE@dPpY^=^y3}ID--X;@@JvW<3MsX~
zaYse-o$kL>+*R?X@I4DN?!N2%Tg5#U_ZhUmad<X3%8z!O>E|S8IzHZUsD*R7%lUwj
zysq=1;D3TYopVu=<VCU<&w5eIi-KMh@}iU%rM)QZMG-IV{p&30MNuz`d6DWxaW9^+
zoNHfotsLw~@nZTHP7>m=svf2iUNjo&{9N_0))QXT7?5>wO~#X6d&bIoQO=7p!k-eg
zZ6#f-Sl&zT@>KSs3azQ03SLyCPA3;rB_Z#4o%i2!RP}<Us(I~+rM2o_JncmW9omZ@
zCOT_)VNS3|?S0N&lRfle<sTU}w`4S4lu_G@=e%g(MME#1XA=)H(pk}qG%xCSQP+!l
zUVQkqqj+0aUi+RjMRa&^Wr>61a(Xdpr~3tI+U14Yi*|z@9<RLw^}SGJER<x5+_}KP
z>R-vU6B~Ka*o#(dsJkc2i)=5NdeO{_CSJVgMXnb=9&m6PxmY<~v|gfq^@Nj{=SA#}
zGvA9bgB`zqok48w#oVIlG}6+G7BV618+Ep{ak0;>y{J9J(MFJjGt<tC_FlZ<#Xv7Q
zc=56qy}an{#o;d;uXxeXi`Rs|>cx>#$rO&OV`C>TI(yMYigrzKbQjW9u$$mdqTIs^
zlAa=A_1A@jya;=t3a2Tr7rq4d3ki4;6mtKw3@Su~8(cCWnisl|$NixKPjgEoQO<@J
zaWDFKF+e1Jz33<8aep3Tf01<i+x0j*$cw>V%<<x5FNSzA)Qf4NFwBcLz4*wB@m{>;
z#c(g)_Tn8Wdgq&LwmZU$kz8?+urvSb&%0i{@5KjRyeCDY1wVNroz0E$Vl4efB#&Dk
zmni+8g$Z7~QpQF5lci{);3PrnOcBD;sfiVtE|M7u`AjcnCHQQae=0N0^<rK^{>lH5
z&rk40UM%L+`O(*pC0;D`VzdwM`>@Q5<z8I(;&(4raHn{&&5P|`tm22iUTpDVs~4-i
z_>9ixOWMepzwCG};#}jkUljk<(D}I+#4o(~(u=ji*RhDT+-}P66)L_V!714!wKj7P
zu68v2G^5}&*NC$A&lQ>Gc1hhKr9XM`vllzP7}U1nE-pbO&sSc2?Zr1<?Dpc(mE7;y
z`CEB=yg2B^AuslNvCoUYYj)i)@&jH}H=N_6F6zuJ-u18-o9Cy0%PrR170qmV#0$RL
zrY}*y6M6qKF3M^1s8~M6=)s*R$`mrO^tcx%ytpQPJ1N+5yyLZv$|-KZuCCKO0=ziu
z#W^o7b5oa0|HX^*3=v-NxevcGEJUmQ=EVhW|8&>k^A1;e*X62>nBM%|b;%26TRqeD
z-DCNzc*TpWVqxS*4rbW|r{#the=r96P|1gzUfg2T^`W>Ax4pRI#lK!W@ZwMD)jxuN
zF;@4>+*-|jmvbWgp5T4<<W*;rba(v)p7u4JW52WK{2?Q}&tAv>==_)R9tjrk**r;*
zBw5I=JB~s=oSErlD(piM;YEFRTg7}x@nKSF7dg|ayRH&qv$PLS`cP7M-v-JPJ`hX!
z_zJN+2^%dVMJ3NDto4+bDl1q{u)Gfyd`O<<qGb-JvJX{!$nhc9hpIkQ^C8`b3?Hid
z@U#zg#MC+$KLAB7AG)SGYxr<rv!f<!r8u7v{;Xh&nT~<0om8mp!*infykMFSAI^5Y
zzeMe7IP3bLt#(nZo)1KaVC`gg@gq*B4~?X)+N+%|AKX5WczjTVWcu)e4-GguRb2Ib
zXn8rGWZU%2hEn><GcH=lU*u#z8~czYeIw8Ip^0#I^+oAq$@NN}5BWX>eF#Z&O?_C{
z*!?Q)Z*w>Ep}7w&Xy1ocKC}~IYafnO%x~+%nE5X1wDF<CDVw|`lENRmm~Bs?4=?+`
zQWm}9!{xRv)_Po}qYtn7(8-6+KB%m9rfU~AbSb~P4?Q?V!kO(Rq-dr5{wo|kedx_K
zDyxw9@?pq_4wBbJV*dwbS;Z@Me1d+#fDf)8deAsa!!oq~J`C`o*<xpe)9!=Lb@|9)
z_z?9WCfxMF^5Jwd&oh<sSrqr-*X0>~rIkKXk#bh2!G0p7@$o&KZ}>3E2lFdO|J=NR
zJ`D0<Fnj33P#-9H%ZFhy32*xBXUB9Zn7Qk6&V`;%^5H&=@L{B=@&9l6R`A6W3ah*=
z*4`0(SMWVSmaeUo{{ctm!xMg#@?)$I<78;3=~P0N`>?`?k9>TXGA4**nh(=`n8@rL
zC(|S$lYN*XWU63h2WN?9&iQ?vGkloq!zVtF&-7uIklCD{#?CoDd@R|8OVnAN^2+yj
zZm8^;=fe^oj_0_^=ligL&LajF`LNgr3R!V%WB0K(CCHbGCi}2V$c`oIN*`AFu*rwb
zK71;@{ZeqX4`&y+m_FkGFXycB;q!##3r^Zzeig*E)`u@AIoAo2tQWGuhmArmo32^S
z^R|e!tv+n?q01TPjt1Ei{&8*h;V^yJhaEobWN-g*?egIpA9nljm1Msbq`X+gMtgkN
z%aC{}?;!Wu5_O*s`)R*I`5TQCW~p<)hlfJQ5Bc!?XC9Jo#ljCh{OH4X!oL?h>ccS~
z`dBXNXeFD{evgprCm&Au;Qh$)vk&iVb{!WaQ7bf}@T3%-qBC!DG_TO;jEv~459fS*
z-w)dH{Chs!_u)K!)ra4>!GCvN_Th?<3xXGYxFm!{nPZ(-eYobs9UuM_;dLKw&@+Yq
zE=Zfyyy?TO|C7BfeBTWxi~jQAuGoBQgVT4{S*>@8zkOg4vv2Nq9=_`Q$A?0GkTCu0
z!vjtc=lrVkKOY|XP{0prGD}SIqo5y@?@U*c{Wx<epM-K+E9^%RKZ^S85tR^Y#r#MS
zlIllsKc2XnLn9fBT+LSJJ)yWt`u~3)Xsxs#Px?{cj~DzX<G0V9YJyJ*mKEfCq2*Xb
zbC&m`f*%!ySMsBZ5Xvk2`K+bvBVAopMMB<XqpP}~_k^UU{eT}e{HW<ix*uQPQj#ya
zp7Eo$AJ6&mtRKwQ5+r%>T8ZcV=vmNRm&R`^Bx!!sk<xvI(|y%lTTW-x^W$c=+aU@k
znz%FkaQfl$L*0}?<25cj+<ti2;$?^8N2U<+@=H})vQ%y0M?*he^`oO7jr?frM~BB_
zoa4;$Bgc<iKeGLJ`C48R!50PB{OP15t(7y+kJp}cw)Z37kEVW5(#((6LYn*0LP$$L
zT8SD<w>Ivz4bIUuJZ=1F>&Hue464$#ogYkpzU<nw!nLlClWJwI<o(>y^)jcorTY~z
zLg70fWxnP|CqKIQ(bbO+{&gPv(9zkCHorQXd!0#7*dKg!^TY2)z>n^J^x)L_(QlZG
z*NNBt=p~%l-i&@D%af=a@6cRcIlNr)1s)&g;Z-Lkdx~eWH0Vdjk1&hoyDUF`s_Kfc
zlM$EZhwjJ2e))zUrj+hHr7%mivlTs!hq<DD#Atb#D=xTxv4gyyAN~E<7QprZ2Ke!Y
zAKU%d;m1JEfFD!*nCi!1nfbT;81BaqKZZ*7w-xqhBE$T6Q?lgSTP2MUUN)=nNOtCu
z{kQz1IAl2APUyVj$GgJc6C5r0J}1qOF$taVLdFV?^W#GyA0<i`BqvP}K2dOz;N(Q<
z{j8*EeoXgcp&yI<nBm7vKNk35@aE5r#;d*{$!sBW{P>u2D6h!)5}xu;L_SY&zTo51
z$1h<P`?1WA<sx6=$5J7azqMaPtPuW%A72Vt>BlNRJ{7*&kI#fWHbvz%eta&H*DiXP
zUCR~RV85W-Dr6mp<HrW!8wEFUkK9h9&SuGO5o9)2GmEvhC5-R%W0xP*19&=suegi-
zxZ%eiethG{ZkeK!e(Vu)z>kA|>=nLGu-$m)em@TRa=B`UXwZ-2B0u8Cw|*S+;|D*!
zV<`A5Bkc{x_kLXaDdT%3=O}l<8xE$gK6L)bnUpG*N~QeF7EPt|QdN7|L&6*22}ZE~
zMZXSY-tB2OamtU=43B=C_2Zl$7yP*B$1i@I_v1G|1}wGz1mIUcHjmBy?%xLF&YO9e
zDd{9km;AUQ4Uu0KQn6{ns|m?9A=d?e_hatpB&yx?;}!#K0Hp%B?Z+KIN(AgE%Jion
z_x!l;$6r$AuHSwS{BJ>$cLyl{_%V5@S|EVtSCoJKcp%w_oXNrsDQEhR$~5w;quiW)
zW|KrSIe>yf3I*)N<xd(5OO{581W;6XF~O9CJT-vg0r1N$)Vbfo-aaLzlif3taz4&3
z9YDDN$_MbI2+IgQl^8`?A(d-1t&osZ3!q{El^)9js4Aq2U_C9bx0OTtb>6l=ZTa#N
zziERS0rUx=ZvZs|cqV|h0lXBzvjNl!pkV-w0;nCp)yr9R1E?3k&9{{20(f3XnqcmA
zrA`3D#yPsW8#w|9wQT4Lz%3*_fD9oNIs<&SHlM^3fD*t9w0~V$y*`=MGdV5SmEPBt
z`T;OYd4mARA7>i}kQG3S05%L&ve}s{S$Tp@1etv?fSd%+6;kX<R(?X#R7f+y=A48@
z4pyP5mSV6~0E_M@t%bJ{d}6rLE`as{gr(;l0(d!q9s%?W;FSPg4WKLKFDo4b7?Yab
zS@^PB%4-313V<a2VivKB$f=NZtpu~(0_Yw9iymhw?-hU=z;lzGy~WP!0W58lne8dQ
zyHTb$0AB$90H%KEVhRQj2%zJ$x#WGH%_Rv*QR~i`kpNa+acKeQLW}^c0HOhyl4Vim
z_S9Gaamf}xmi$<<EH%CK(&T>P4>JRp6+nL;0Rg-bz(5W*>Y5tBpa2F3Fgk$u1N?p$
zh6XSqfRS9~0GjS|z9smkAhX+M=M7Kr@K>%;3I1*XZwK&>WM6pGh2sj5`tNb|-*kPs
zRQ-Ts4`6%%69O2UsP&<caRFSbmQ7`*k3^r@iBdFKaLv=%ljz%;lZ2M1hz^yf$q+b-
z=|W}*&feje9l)Fb*2<`FZgzeg!2AFf1TdEk&2fDqNHR~zh6hEjPjN2ff(EcWz%Oh&
z7YQy7V2O~Wg4O@C)tFWUuquF0>9Ok_D+M2}PhK6sX90X3z!%&mo1JSCa_TTkg>xO8
z<X;9rLL+bPbFO3e0wCECz{UW69_831*{uO=mh2Wm%I}nL9WP#inmYp6$w?03-4J#$
z_y_P&5aWaRI)HBi$O|Grh}{9~37|j_NkQxlU|#^g1#lsN{oL1Ao!<rUeE<gnI2gbo
zksJ=-2z}|QQn_1+j+bqu+P8GA^~oeh12`7I@c>Q)uxpR=hX8&OLjI$WgZ~!&IUylG
z8NjIk&Wq%90A~XDB~f~oW9OoL=wjV*rJTek^BSggD?##WLWkLl0bB~;U;4=g7Za{I
zF9&diUFBj0@K*qL11MD5+3auUb#B9}3e)ca+z|eU;LU{mmXO;4+(}6O44~Nv53Bqg
zz*9~))BOPM(J>afR@ca$v@av)bLAg;>8ssx1I`Ch>!H1&>{k8@;F0voJHRpdijo{e
z!651eQ7?!>K@<+6ToC1hC=%paxJm}`L=Z)TC??sIAX0;9c+DBFQ<6A1tz>bLmk{g&
z4~3<KmkFY@Xj1ZI5Jy)zNuCO#tduJ678_KjWNv9^g&-;hQ7eesi=35$s2oHM;Z+1F
ztS+RgU^T(t+d7{X0zv9DE8`~C4B{D)Je!bDsh?Xri06WMUL<vbSbxuv7R0V~4(jKu
z%3!uo!Rn46(nX;`kl(@PY`D~lE+q)3aF-y3ZXq7QYNefA)6Af~xb=hfe7+$3g)un|
zgJ={)V=<T`ZDj?KEu={hp@ps&1=#`LLMM@($(7RG-#D8F(JTlnh$vU#zN2{%F9p#q
zh#!V4ErMtn<g0sUE5X)+%(fBIR&Z$BD(!>l5af3QP;#8(<sjPbc61ElwIE&z!oN*<
zRdC?HMaf6KqI3$PYY^Rn=p00sAXZGMP9f9kx{bOA(IbeSK`{GRPKC#%%=QlA^&o$r
z0&ftJAhaNSv>Zf`Lkl86i9fekekyV5bJ+`CR>;5kz(W!aV(sKS5?!p-`Xk2-qK!i_
zf_&D8;-8yG3A@KrJ{H6qK@1Ec9>jyfE~Y*~^cCJuu)p8{!TDDeDlGclGbo5RgLo?l
z^1(q25kfvx$S}c{HQmF5Sb3Y@4aVC-Mg%c3XrF^)CR8WBBf|HB7%k*o!4D@?e_zO$
zAjSsqf#?_6pFun0L{9!o?GhgfH=4OApAf`Ex_1bbLYNf9<RFf5Dd~j$98-c=z$FV}
zY7o<cm>$FouEjLR{2*oqF)N6<LHxU3nH|JO?|YU#>zYFs@+b2U{5XgvB+t5fU&{I<
zh<PGkbj&WA)uz~cM>06rML{fPEagTEVo4B7gIE*9=j?D0%Y#@I#HT^TKJctySA%Fi
z&XIbw7_&4&&dFI#Ppj$vEQn1N3zIy?FM{}zk{~v71%p@@1mDWo5ad(ON~{-TcFulh
z+L3&cjX{tfTB>ddVykHG4Dv?}c9rcx><D7#@m#)B!R&uRsJttPuQ(6i<v;MaJDkXM
zlx?(|Q@7i>hrypN{eiQ`@6LTe><{AGAifLYKoAFmILyuRYyKfYlKm5^kLld&w?>&q
zL^AT8gTn6_e5gF3`eOwWsu6z-;-?^zLns)+&p{jy;uiO85GR5-8N}5ft_5+5b~<PN
z62$o+P6u&@*g5lT5a&c*Yr2D_Oceea#BV`d3gR-SD4u^o6fTPX7*Tkvrlj{~=@rr0
z-a)x8YQIaC)^?vtrsW$!{1L>>L=%sz-{CrDIqwGXcMyLH|BLf5#kuQP@}Px|dqLa}
z;y(tWApW7}1o2R+KM-WoBy5hR*aWi$LiV_l1gAbIO3uWhLLn3m;pxrJ(jk1kB%_F6
z3BjTv6cdsn$kJ3H#Y0FQ?qs&4WS>ZsmI^_ASd{W7Lnsr%m^z-PLRdP?RZe(W;cTdU
z2wzTdR**)ileg7bIfN=9v=5;}2vtL<7D9Rm86i}sP6%~bG0RzLy#pb1)SR_KsKNcU
z-oaEeglB|5n~<>e+M-6y=R$a1c$y%K>PS~vR8QuCGvE*sEt}~K!4*QY5T929cL<&k
zvO>rXK?xx<ga#or458;+p86rIdf)Rxh#$5l^Q8n6$^Uqxkp23ivFO}bs`A?0B!rw0
zayg=lSuck0`U6+2O)+k<ypX-)nud@s<oqp#*~eS2-AGr95ZZ*W?0i0X%Me-#ZymD3
z#hxh+3R%>allFn<r4ZUBG+Fv`2(N_jMhF8#c$K4Oi(HftUJHTumQEpb4#9s#;l1V6
zOYSZ-7(%xYCe(NHaOY9pJ%k<{CI>4AeJ>%sLm;6J6_|Jd@P^<EArgW{Ya#m_X9@`k
zgb*C21cg67?7|@wEm)mL-mj-!dI+%);vpCzn4I|#w!G)$1t!W_`drERO`*>2HOlsn
zsuTN!(3kSxlzt%$5Yk_e5|$E^=D7xiuwj8?SO}jkc9IO1><}8yat;-q+^YCzo1AZk
z@Ky-JLl_~Nl#C1^X?zJ1RvZ<=+X?ygvYGFNFgk=z5p<5={SZC~VQ?5j!Wa|6SdJx(
zVquI6;lmI%hOjAwk3tw9!kiF3<}A_94)>%GCWkOlIJ19T%bgO!)DU)@aLf#$-WRTE
zA<PgmU67Ju%hdG+Q%PopFk3XcrMo+~&m+za;gb+n(y2oHsSaj-=3ErQ;t=MCupoph
zO>$-&FSai!bzunqHspWh<t^cU31J0Yw}x|Bh<{?1o&HYF@(`X|rjF3^$obnMo=06~
zl$cjL>(da{gz$L?t3#-N-nF_=>Sxl#vHz64U*>!f!rBnl(Set#UvjNy=4~3~SWl-~
zrm}Pc_vXwzTBA+MH*+;Z_$7q%A#4p{TL@oqyM?fw!{MDjg!NmU>^#4d&(?P`%QrU;
zd6sLo<eLz7GbW304}CZ}^<W5xB)d0+eUFv<IrfKeKzN1y6<GbS@UsV<$3i%g(D^om
z??U)qvJ?B+Z><~^&Y1Z_Lg&X2eiF`im#J_(gd%0rPb5lDhHxsuPYXFCcs7J{3Hkj4
zDZhsBTL}Mf+C#Vy!o?7O?1p<GTngbb=W|fzZLSWl0VVDCA%B;OR|T(ya6Mt?pR|fM
zg#RIUGa<i4|G8M8*PayCy%WNp3He__?uPi$p*^(wlBMV0T57k#IQC#*=7SLa6Tc#V
z$RIGR7|A2i{Gm{4fiRN7_T(oE78EQbSXi)#AQi^VN=*qPHH@q<vco7IMu{+Lhw)q(
zCBt|kjA~(252I8VrNgKk#(O7S)62S^4BP)KS1F7#Vf3D3zen^`7-bVS%Y{*1cm=_V
z33>m*_G3)xQB^28nVoYyyQ+|d`*NNR<CS}^XT$smDGy=P2%~MG)S6*T`NjQA7_TSw
zCK<d;o$zgTtuX4HQQio4BR(HSS{QQ{I$sE*P8fB=aE9TcLYR-*0lhbaJvmW~T}=<;
z#bGv?yiBeCM}y&gTyyH>5!oNNbk7rplIUlqkot@U2koV45Jtl=x(u)OQ?tBAoTbV6
zjiu2qmZ@yI2`#gSVW?r`gpnIYw=lYgkrzgO7_WuVDU7CJGz+7B7#+lN^Dwwr?S!`w
zY$@0(jMhTh2(}eu2VM%}kH74<AH9p6e>Qf%%()8V)i63TMkQyS|FZ#w7wTp)ku#BW
z4&#SN9#fYveq5%K+>PXQ6=CY}>>gqC45Js<E{s;M<c%AaH+i(eAagc3mGe(xw-tsj
zjF@!QA4VVyBMdW)U>Kn=S}s?$FxqH&;V>dX?k!WxE>|gWELT~oi}3ETd`pOTxf-Q~
z6S<V%PtT(~9!8%q`i9X@nixp$8kE^Ti~(W1A(BPSavytjw_z^Z;Rj|83WLH2&2oo^
zF)WO~!nhm8n_;}gi3(#w7{kLD5yp}*mWDAhj8S1s2xDRxZ_7-MX9re$-U;Jf$-YO2
znVB~_jQLINUG}~RKM))vNa0u^;{-nx{D?bcWiE^Q4=TpUHYtqB?3ENv31ey)`^MO_
z$23iZABQnr$P7WsXNEB=!DkDZ6UL=>|Nkk#b4Bt=81sb87hE8?P>>cpxk)@k7IXDG
zI&ZA@ETaeB&!;ng8OEtTuH}L&!dRKmUnS&I!PSDFg|SA+=V5%ogKt3L+FAA_oLiW*
zHq0NnqsON%nxZH0F1Im^O=0{T#_=#Vhp{D$BVl|S#?~;lahGw(Vro16|9JMeMV=j!
zrL~<xc7^d(Lh`kcZ^GD}kn9QLDG4Cd-!H<gv+Q_sK=?tyLktT-T1JaAeHX^}VH~3~
zb6;G`?fz}f(So^0!yx`WEAPiJexg?_R|`~W^z)27@;fu~NKT0JUk>9+7$-SJ;$x@7
zxDdw0FrpVS&V+GRS~(}kKKv5KdEvhb{+5vEe45l~q?2*r5*K&5%J9X3Uk&407`MW>
z9me%AmX%2VJ&YSdyveD5u!)*B-lTu7%X@EK-jF*U;)$AhcUWs?p7UX`Kf_>_6G;3!
zjC+h}5!8*~ei;9R@odEQ-hbI`M&k%dNANI=|D;QWBY4Eo9kTzby+Fhs3wcsR;=f=)
z!9s%68I_z`B!ciGrD#G@EP@o_sR>DOAtfRxnUFjYL9N5~k6D<WjG(f}%OpylilA(Q
zmy4i$f>#hyF@j17N%PEVRU&wNmQ{_QT0&l3$kT#|poWl|iPC2xDAmHg($tEeb_CCf
zocFFYA<suJZ)`R_Xa8a+h4mtEM9@5f77?UJkP$)S2(lt@M&OFzg$RG~1a}0U2<k`d
z<74Uc5=sP_5mcO;TO%!NQn}10X66wK{N%PvFS;8>&?th{Wi!b+Z|p{&O|I++nnZAT
zdWohHycj`F1bGqUN01xAn6F&7E@ZHXNM7|sF>)qyVl%15qLvY~il9vdZ6o-8wWqbL
z9h-Rcti2guilAKtuSUR--d^x!K}P!y5v*OVGS2V*v%xFEAD;ppBY2Hf=+$+zsMbX$
z$Be*=psVn1g54wNA*5#nuScK??-fDs2#zgRZ!A||tDNPHz!!lQfgXWBf<Ocz`b-4D
z2p0XA!M{xBkB|EGcahI6q5M~|VI+c`Kj&{4kstiUsh@Nj5%Aen8)ug=o@!KLg&K_@
z7Qr78+>9U|L7xa#M6fb~z7h0`U`hm2Bj_K&fC%1>;GGEGh+tsE{z+i}R_;L&45mjF
z?K&!gArV}@n#DBs_3WVuJ}iPag})^@JRu(u!ARjt=4G%-gFjv6YI)v`;JpaOMetz+
zqa%2Jg*rxte{qfT{RlpY@N3CVrrba619z+x{prd1D1xTz9Cgp<R5_3_UigFvCPpwx
z_+&vU1Uuvq+yBvES_IQ0_&9>O5zL5SW&~+f8b007H7kPIbh!v7Y;?WzdS0#O4f)Kq
z?+#_KW1Uv!enK~nU`fRO{p0)y7I3QRqP>-c+zuVHx14k3vA1`-kn@Lxi#dv?odwLS
zr4cNP;6hCgA9TAsVn1Y)Y5nc|RS|p|!FO~mx^4uYMet1oyCYZ=!RIoruOj$@i@rkr
zV6baf1YgpTB3LJqErKjsAHfFU8wEEd<eTZ_mmE}J+8V(&k#85=k<i)6vCPY$!u)CZ
zhf|zibCvZMj_0{H9?RPk!QKcCaU(=9wxN4p1p6a65J7T%*YsNr`2CZEoT9IK<}`4V
zzme<a@5PQp@NLBY5VKwx_tM{7{NeVio3fA6V<Y%Ag5M&%@L)|v=jjN}MDU{w@F&5a
z1-Y8XBRC=aq~NK9oS){Oji9}|>A8sgi?G^P^55B!LGp`a&kHu$nR|i05y906u0?Q(
z5vEq=<p{2D^Je7T*L%61vH!%LKhZi`uIu#(eve@23iSq8zhu|buVvn;?kXB^7J53H
z!dnsCW>C`L)NqF*Vldb6q=vsDxEn!|hGY$YbHCiodqfADn0Jq+Hs;)CaJc6DC(-AB
zBX}VEq2PZB`Qi5q7tnAkrB~mH*;|%63u-8&p}2+;8VYORe<BspP*elI7gz2|&Tr?G
zVjAZ5$)+-SiiT7TBuxD;I7@0c*v|EYhEkgSG}uYEUHnn=#97Y6WgF$Jc9zlbl!jUw
zYHKK~p`3<44`w{8p}d9)8lK_M$~!A+c(5Y}f|UfBt*oJn@T!8<67uRAo)$j7Y&z9y
zXc%%KtEPrUDY+GEWf7~k&3V|u%~mc9a6PBtc@6b6Z1s1WzCumYP)9>u&Hl;?zx2Ct
zh01UJRrt$Qqpaf4@bTSVOzE2ayG|092DgUx8ain3Xizj{YiOb&Q$u|XH#2e@Yj{CJ
z0}ZbwH*KiF?BG1=$^C1yvM1G<**dq8h96g`SAKS7X(+HMd&$uZ`s9lmax}Ek&{{*T
zhCB_;HMG!>uc4`iSCYDRp5khz*}v#y*bJn&GNbmt5RBj9Ja^yKQp4-MULU^bCZ6l>
zY@^{N%|5%^YEY-=@;9w(zRqt)`vsfug5C6<`(+x`&|O0h4SYrLD#yjHaw<~YYd-Dq
zR#L;M`*J&J=&YfOhF&F{-85_;o!ONu($U2q0}|hOJ%^H>EY<j}Z^g&iSm5f-<}~|<
zY_Cg}5)Rp`f#0RSxkBZ?F8DPBG!$E@UOtz%rfViiSVKg^slIk^H4VCkH)D7!27{Bv
zQAE)$3QI$jv#R5kj+llxCr3xVjy@XtYWQBmQ4Rex^w%&?!+Z?`G`ykVJq@EZ4Ad})
z^LfzywuZs<goEy3Y(m4bBkmy@hKhu|ShvD&iI55-gbbIW1~XGA87Y!c8h(D{VRrLD
z_d6Qi)j-0uP^<pFh7UAM)G$fI7!A7~d6+&FGFHR5goNGrNJIMI<ndx^0^KIP@E?sm
zG&@<t6b-XEx<l@%8m4KOA)MLiLjIVMl3qah<3A52Gc}|ga?hfv0t#);p??aWtKkz3
z#~p>MJn}r&zcV9cfrc^%-Rm`M(6Eq$(y&;=5)GegIDg2!lta_-sfN`Wmebz~Dip5N
zutGSq$wQJUStZJaA9=_>)3Am;pOG?LtKQ;~hdS;d$zRY7L`VguwXFWgvyN`F-_5RW
z)UZjzcXYXV>6<ld(eSl~Z!{D+;@-;5-X?XIhHX^lDj#-pj60-=e5Xh_%&$a^nyj*0
z!yXNXG#r*%dqsJ_#%~PTv&ULAMYRJAK0>}b=w_Dbh*<kp1Dn`4Bjw=q6e_bz9KtaT
zKQO-OD5Be){87V24VN_h#FgTdYB-_coQ6Ktm6P<V>dI*iXXv*Yg8SVi_qkiuEYBj6
zvm#-Z@?SV<+zyO~8ZKyHDJ#~hS)SzQDz-9>To(Bs?3jit8m?-%rs2AV8`4U*k;&Bj
zU3A*FPG$A2tx{?EmbCJ>hI<-rb5}BQGWc_G_qo}PyHeU_R5CSdtW=5Y&wULKHT<XH
z9}WL9N^dXrfNmz%Sc{!`q~UZmC0R#79R+loC+T48tWHiHR-t|&-EJkc&s|hUF&$|-
z>gY((k*cG-jtV-8>nI^QrF4`OLj5On+#gYugf@w#bv!AgjE<*tdk$%wsjTpF2?^yD
zbyU&;9W`iepS!YPRUK7?P}1R2)oMDbOP161w2ni2?coq>itt$-wS+t)NClSG*72MW
z^6y)vJ}>-n#kxA`=}>fJ>Tt*mxCIAPQ_^*0==_HWds<vlg{xVptMbimdqF)S|EYTU
z`Z`|F@gf6Mb)|uhhB~r^H`38qNR|$+4x4_wnnY?g(Ls{a+U86-I&wvsn#?xU(M-n*
z9V>M-*U>`9dpbtzXsM%>j<Al1j@C4*!&61+uA{Avm$;5amDdE@>3CU4dqK)O2&q^^
zA%8{3tCH;~IG~HdEzn6vXUTTa(NzdFZ?s4ycGK~_kRCdE>gXknQtlJdTgU4<R2@xb
zr?WF`!mHzWXPfxNPJrv1XegAhtWHeUbm%&U>lmTK&|&K6r=!0POGlIg+~e-c_^%_*
zY0*))n6hVRGLdQQGalkMLz5@ANTu2U9dGCuQ$%@F$3Pu}bPUlkRL5W)6Ne^G7@EwY
zq@l@=h9nmqnoNCWhjAc9l)gn2;#)e#Qb&xB)G_M+wDq>|cLd)RY|=87O}{TegOfH-
z#|Lbh7Ici$F+;~p9UtoWNXKLyQ*?~iF+s;99pCJ6FQ1tF=^pn)9Ykhtc2S6rvr~0U
z(=lDt{$5ap3Og56SvE15I7`QD9do7D9Kod%lRwt+^|wW*K3$%gqXa+Ev0!2{ZO$jr
zu~5g=q6*VeA&Yb@PDqvrS-98D(q+Pz>&UrOwQMol4OZ#ctYeD|@KYVDb$q5{jgHTC
zY|yd2no`rO{sn!nin3P6m)twml<@rYiB*+#obAfWdd_@hJBGaJ&E6>btg=aV3dvR-
z+jQ*LaezfSl8Pwb=xA42*&%$Vj$Jyw68^Oyee6OJdlX}eDpmz$w~jq@j|xhyK;B**
z`*gTUHXK!n-#Bl0kPcH=`Ci9S1_a@UbsW+0t&Vj=lD}h^s;(4HQK*x**G+y*#}7Jw
z)$yB-A9ei10I1^(`$^Z;aYDyQ9luvr=GDvY)G9Try0T?l`NCBc4)Bx?X7BBFZ>_AH
zmB96jj;d9Zb2|K0l`U13^NCTnt*TtmaZ$&09p{ofmvmg_manW_l}PgCHg}%}nOAgl
zV<?!N&Mkk96IfN@y#21@hK@ft5N~$dw=x-OnpacEZ|k_DW2%X1CjQj%7w6x=S_5}=
z{LLM0pre6%47@s?H;`uFA07YdC}*I&fd@JsGJqRMG4P*`M>>)X6f`hwx4VFWBm*uP
z1zQh$vv*Zd3K=-R*R9vfE@GgtVF$n(b+S2cMGZTibJ58;gj5414Lo6>xPea}Ht5qm
zyM)+WQdKEsptOM}4U{qP@$o#y%+tHw9PCpDHjYd#Yw#(PinoeA_H!p4Y^Z{PiUyuG
z00Wf_R5mcBuu|2qmv!xs<SGWZa9qKHj_hhuw4<0(-9YO?3e{>DsA-^<f!d<>jDcqj
z{9DLg>q;rgVIhC*c2myma|TN6vE_9P)HRS}AlE=W17B276a$$C90t-2^mSxs7`C%H
zg%>Vwd!WmJTZA4#O1>|z)Hm>gfh+^r1{xUHTwZA?NJ5*$Mg|%uB&^beleQw~MFTyj
z=8&vxp4x0`&b;QSc?R-1A_Hv<G&Ru7KntdV3a@j#IyN`#+fIRc*+10HZfT&Ef$hl(
zOEU}FcfwXj+-(iCGtl0^qyz4kxJ(D#4-U9H820Uyr7s)c%~LtxeuXRb$g}K#n{{6^
z(20|2V5))62D%s+VPK?zt_HesfCi!lx*O<WKsDfHhYkDe_Pmw(x`AE>dK<RK(znO%
zb#qe?=@>m`=lBfJHw*)Q0|8c_of9;$bhn$HLmm=ISTJHh6GFKz<jJSY(~C^bCy&MM
z*)fjVz(50o4D?~Isw@2r^cNrNYoKg3drJ;5!21a=OK)&u_t`zUxX(>@9c*9-H4VHe
z`a|i-RTNgC&(q1@lIp_^C{-1EYgbiB!t>Kd8F<^kcmop*ykp>9gEzG5;|#oKV6=e`
z42+S!y)T<$cooI&CsTvWvC<9h6psDQ9`}a^J~H?aI@>0@P3NCzfW3NQpL>!4_K>y6
zCv)<v*rn49OgFHS4w<aXFffxVXkf8{Sq5gyYR)$>hg-?OTmzqQmFs46iKi7%K04?o
z>G{YrPt^Ddh1mtdNfwIRkT5MVu#Da=e5tq=Uy1O>zTChHy3>Al&w>hFWfeU{y0O~8
z8g7{+<>HE*&o~=?C8ut7>jUo3xmgT2la$_9b2}$1>kO<nP{%}F6C1d@4cs<x$G|4~
zyn!DL{A6H@fvpA(8aQNN8{0DQm4UAf@F?G5fQQj813L{|Ev#fn!2f4K6$-yGu-m{s
z1N#l^;U+Dr>=k8REt(az6Lq3{-3REIMQqOVg4x3cju?Do3BEUQYLA=eH4l+*>CAiG
zJmZcUIA-7n!@ex>0HTD626@D=>7NZ8H}DIipMetwPIA;0l+y-|R#I{*D5tnR%PYSb
zdGks&JY(RjfpZ3aucYkmm{YW}eR^)FQ0!L&zZs}9E$60z3tVXKyF{!g@M2GH|4Rlg
zCnQ&dTot?~cwO*!!5g%n<Y5&fJ)7v6mUD|9*gQq~I_FOVe=)S0c*?|G1AiMRW+KJJ
zJp=a*B%3H`;vdF91CKaT6AuhL<aVg4{3m;a{?Aa~x2Wx_bl~N3?N2i8ZCih($~{%c
z#9MpZg-sM;s%oD;-1sC#P5YY1?Z*8=r%g3c(!>)cikr4emk{LP$k^WLW^O4HrA<6(
zf}D}z$%?5A0=!qVMJ{w%6V**TZK9ls@+K;n_Pwa0iApB87J4zIvS}|_H4|JH`bibj
z_Li!GlrwSpV4{YJXHC>HF|P<OC*WE?W8#yc$y`(3{pbL^^3^u&<$m78bEbW<WI9^Z
zz6qy^oHv$wCLAWZo9JO8oh_PZW1_7IrwNydMkX4YaGUU$P)uZ+b{OP+hA$;<S5xYn
z_A<R-q5<cjy25KfL(_iE$T(SSWL1U&9^Y9evQ0ix0Zlo9CSEj=XWFMKS0Tr=V_mL^
z%iXiv?{hN>F_7}|z|v+MR5hiAiI%2)>^3*;D;7f>gIFumzKpdN31^=1li8O{v@`J<
zC*0(-jnKiwtEPPqd|9TH8{rjh(qi^b;qvjW*pa1$?JdIzr?9h$t|mBdoXIYxz1_G9
z-NXXtioB<ZUM2>a7;K`qiPue7Tq6^zi5rhRA-c*Dx7UQvgkK~S288hB3MM4W>Sm{>
z7Y=ihkLN{9XhL*BLy&S)$jbjbF%xkU{Y>;X(T9`JBfBpbsDK@&cn<P_TXw`g<M;x9
zfQdIu3^eV)$fJ!>k)$f$_AxQk#5fZlniyu{O%v~$c#rOFVz`MBCPs2u3n~9zaWkNO
zo}`T8(2ls@Ht`OVUpbtllsV)co#i>7Wb2GJ!H75hQq>Pkyl<jvmgnO`?rI0zGn17u
z^h^^ZtVLv;{D`Z={+JkVVrr7om*=?22jyhDJdLjJcQckwHZg_0I_$2n-%c!=Zej+z
zXJNF3nI>j&e_43K!fX?B=rAUZoA}toToap3Y@wgiLrknT@tKMFCKi}jVq&Rm<b|9r
z6N_nKpSzB{My8i?=hDHJnOJUOl{g+HD@;2wtmH&hRyx<oetZ;uDnf4dU}a^EiO)^@
z&cDIL7c_2y2G^VR4SB7JbtZVb<JFh9WhNS7WMK5z$f<6SNrRiXN$X@&VXKL4Cia^+
zK<_oN!^9pFdrj;#v5WT0E8m#-$^`FJU(>ZJDDJ)ayg@OWT~T4_ZhG}E`6P_SKbKSX
znf4`(QFpQ<`=E(KCXSilRqC*bBPPD19TVTuIm;{mmTt)SOd}gBDO5hnojxzUUV1jG
z)6@?pel)RhMGou!Bo;`RJz?S`Z`vmQGI7epX%knt7fhTHANa+@c@t;3_vw(1!krJg
zxxVxbKFs!4uF)a)MH9a<9ElgT%JQfO+@>#^@=H>B*#v!n*=r;wZc6s<@|@pI{J|KQ
zq%5qHeS`5QNuk<WzR8xP+%j=n)CL}K-!U;DNhzDG^h#3hn)us9vW0>c?wPpHXm8>n
z<G*RY6Uf`(zdRQXxp~&}?Jr&fmQGLkkG^rxon+w=1E2+N6BZHez4OS^v2J!D3)|~v
z7qL*(;zQ8veb;WK$_pe77PF9IA=R?q4rQ$$_PdK)C}G+6ilzk=3R#i&%u*IgTWD^f
zg@q?Al(A6Hg2Td77Rp+DR6YMh2<0r4w@}Tp&z%YuDq5&w;aa_HhERsYN){?xc5LL?
zLEkH}*Im`J9qCZLY@Q?4Ej(@E=VyA;MPb=5te9#DVc?~~XD!sW@SKHOmVHg7pEGDb
zZz0V>UCR#C)Ttv)FI$zzc+1m`rs%-w7BVcnV4;C!uaVP&%Yxgo*L2|Yq8<y1@cI@q
zEihtmA%ewoNw~y}B;*Y(aQkOlXkwv}g~k^DV<9_>P1nudq*rGcxl$+lMGH9=@+~yA
zpsiGMEj#SwS)h|JfRNKH14}atEf-g5k)+&gnn!17X`z*cu!RVlu+YXrcMCl%w6*Y(
zg^m_pv(U~$dke2vc1-R-`vsJjIsXUU6+Df|87ld9@vD{{C;0|1v6F?)mi^{%Hw#@X
zbhYeP3S3!AsLXIpSK;-NFE@Hx=w%_m893nn=08tw3#tXL1@hMgX_=APXTeYZ+3&u1
zz;*^UN*-j-kGMk?*bTlUxs|MF7IX{4EWByK;J_^mwlKtkWg%)|poKx4z}e}15f|fB
zrzmkjl0Fvt3hyV_UvNO8^bH}(OT9*{R9{X}-cM1w>~${~mR!HEGL(D7k^SaA_tj$d
zYs0rJjI!{yh2a)P(1-W9M_QOXuNq%b))bw$3M=nec$d>VEO|v?g|8X;3iM0bwD5t2
zQx;BJ7-M0qg^d<ASr}*GLkn{)d}8r=Nf^%<ZrSg0OrQr^m}+4f^@}Kz*b27;&)lN+
z&GUyY$`m?(5hcHvGTp)qsq)K^WS+S^mwB`01$7pW08U^RWsYUvbA}GDN^k$zvTx2b
zIM2d-3o9+Gvao<c3rj34<!<8V7qSo)+oZNT>|RU{k=2~kr1~-o%f$z{zKjoagB6nH
zk@~5H)!Y{r*3uLH^L$1pxA299HI{wCQc|dZ{iy*xiia;xe3Eq*)?3&hZpIf86mpe$
zKr<$6wy?#*9t(T9H!W;qJYghfuPp4a@D&%jyt0$Qq`dN3MdjhdqFI%cT^7jgQ-Dsz
zT~k51@K#Y~J6BL<S5Wwpd7p*-7JjtwlZ68o4qEum!uJ-q)`u({ws6G4fI<r2BKT@Z
zvVU0ex3aigU%r`e)WQ$NlpjPwa*SK4utKs<-X-|i!f^{HEilXX4Y=qhgzrnS70wS$
zremD3aF**8MWratS@^}me+;DDK^A_saMQvq3%^;oVBspG8Qr6ra?!#i3zseMbt0n>
zgAXrkS1f)dQek5Dx`p2@`wIPsW#26s-*}|nVBENwOChh*eU9hdws6P7eGC6s_|vkF
z^}j6KWpLi-=GF0UseaD_qaP)##mLFGkN&mrfN`>l@=%a=9xL$X$-8TTD3YQm7DY-F
zJhhXfC=^BEC|=&<E*Qnl&V?Byi$t-svQji^M``woj>k~R(>yhb;!!*mMcF7yL{Tz|
zC!^?9&5o;2L{Tb=(oy?`IWGVl;M#iG><_c&_qxkO?e_$DE2eTeF<YKSswuoVuvZn>
z+;02MTsev=QMjUTM^QD3YEe8F#q&{AkK*YlYD7^p%0F{ZVp?^2FQRt1qsu)L#j{Za
z+NSanNZ+Q5){0{Ej1-dEQTua1#;!C`t`~(PiaJr$joJqs@2K1_H1(gmQF;^^Q8=R@
zzg9PUl7zKZN8Ehd#1rNJJK@DBa-ztLqJ9*OqsWq;yb!g+Y{MuT2w~j&^pR)86?da3
z&W@@`((Y6VhQ915nnW?_i2Y$Aw-Rrvxl!ar(ISeL?9z;s{3x15?YP}EYDZD-Sz>c?
z-gpn%LA6!XK789m?ajyzw~pGOm3Am>%Q3RUN8IhB=)liXWA-PlFGun9+>BSEcr}WK
zMU%-pM)6t{2ctL?MW-k_NBJ-^jE$m86kVfuCyIBY=oUqHT8JXb_2K}d2uBf#B6mYZ
zuPD?gyuy1&@j5k!d%TMrL|+vCC~B?r1i1=PXkRPSSE|3Q^juXG^25(7p(uz0hkNSX
z_GnSm&dWEV&_zhgL+)klR}?dfPZee2^^8~)@hE<8)^KDLeWK_aMZwvQVNvvpVoz&#
z${<I|BF8KBl>Si=2So9P5b}XS1_=(1Vn{+hl#^W2Lxne^c#BRu(leYJxtV)}@H3@z
z&#%vGeZVzhkz-U8Z*ykyGAAu`?A+ykFN$?5)eoY0kZb?;d~_7=NA0;~`lWIng)MJ;
z#zpZV{W*%YQG67|c=}Zoi=&tj#l$G)M{%)A&dqI(Nl{FVVj3;%a!-z8&N;^vw(fP^
z8RV!x(lI@X8BtUo>G<b<=G5a(l9^G=63J}AIf5Sx&K0E2Cqm}Yi{5ZByC8}kJ3I@c
z`1^*#Im<S?gxe~LRh(FQ2q)Z=P2ox*%cEE!r2S0iz3m>#v*&nLb2866KBtFIaWH+x
zSXV7`4ZVG%tKc`D^C{_Ha4P0|Xn!38#Wu$#`XncWJUN~E8=~0AfUv_;@GB4Xw?wfu
zik(sHieeirH&@;`>*(9rMY5fCdgSh)A6Cq~Glma%#n+t1DUN+ne8Xv6p3!-pV>i3k
zPN6dSo+$QmUFO-nBJQWhu5q#_2ZS76sUD8v2!lfm&&2R;6yHU0JBm9|d>_TpD9&&*
zMsX~PA2_s;juTP*7{#^b%Fi-&$z5GPMKO7xLtE<NOdgkp7Co7MGKy2DGEPayPDgRP
zsyk_(hy6LnO;KC9z?F^SmnhCh@vF?+Z!-3S-#R!nE{C&s&ZQ_WM{%9b9K{um>*>s^
zbm>nW*UmbIq+}Hw;J8MI%<*vGH@I`BIcfYBH@NVdf)w64;i|FJ(Zc2aGm5_$w_`|&
z;Vy&WQpdlXMlN?0_c*$po_AU(_oMh=zQXj65U$Zf2DB)WV<;HIBlh#GgG-zgLxC7t
zF7)*H+i~?1$7jcsYcG0MoOTq7*~?ToX1h?m?GExHF%%Wyo>}(TQ)4I|L-`mg#84uJ
zk};HtVaQ#_6EWL+OULkJ45ftA?7HtAy^cFitj&J-l-s}1^HdCFW8m0(JZ!*SP>vOM
zd6;FziZMQZ5tV87c+pZ%XI6=!Y7Et5csgc3mc3dGben8G%VwIB*+V6=h=`#^3=^v6
zZ9M0oGlW_w&&E(IhWar+EfKY2crFJ1ndg84&cBa&o{ynk3=WR#m?urJP7HO0Q1Zu0
z_0Myz^cb9ME{2R4tPV=+r7mxAw>t(;44+<iX2vjJowN5TrxF8;CM|aMtLXe|l;czx
zXM-3T#_&34__DK642@&x5W~wcWW}(5wClwfa#(u7oh{iWf`uBT<O*pkm?xMo*i^7t
z49#O`5ktjru{I*1sg^OcO7PY(OquVba7s9X_)<dNPDp#f?;EE4dd%@k48)!>yc$Et
z7+#ZXml(PV=@dg}A#-vIQLUTs?lJTb(zBq4!tbV6Cr(+M+$)CLO)|-QOKF2P#nl+R
z>`AWM7egS1U=02kChbzTm2(p*4@uUHAuMW<7_=DpjV2Z`=^`{@;9n*(8|hPG%<}S4
zIlmZVV==@NybpaK!TZI~U-*E8<P9MM1qTTZ791itG=^b9YU%bjW{1Zxg8m;zQXC^=
z7!|`228|frj^UjcHjC!FF}xSUoESciVRQ`d$1pv{Pp^u75W|=lrpA!(agB{(97h+!
zX9FD{(%EJ?#?v8V_=p~op1ZM*yWSi}yF<=nd$XgJ8cvMi<`>!9+f|$#!_lOM1FGdt
ziDCB{xAQ&cv>29+%PifpA#n!VeLr(%4CXAy{=JS_G0f&t?scT>a1!TA-&V857(R(%
zUJUbN$UEU!PS>s8aDniJf)p+ivN(n%LY5}v%P1+6PK6axYo#EoucDs|FS$x(mJ?O}
zP5V2{YoyW7WB5YImx5~r*9lT*y^sxp8wEEB9_`}U62sOQw#BeLhCMOtjbR73!#Vqp
zyLZO$`wjc=tas5XuBLqz!`Cr<Lsz+ywp%21R;kU37C2a>044i4t7q(gem=+v;ryRW
zJ0Ljq$pYkuxG1O74#&WMZ&v<DJNA90?_&5qhU;vC-t~p!sNgxlV}d`#?5~Ob7{gCO
zex`#JO7}JK9FO5d3?wH7PYIqDr0`4(XN5of(!uO6F`O4`{JW%IWB5(@1u=L<_{A75
z#c(;H!=6x+?OtUh<ZL{Zemm|wH>Ssp82%8QhxC&eZVA6n&n%Tp{o66z5y_u1{Keoe
zau)r~&X-EQCq=aUSefJ>`p*O>$-gl?kkZG03H2Y30Lik}-P-nFNF~QnFm7LID)&X9
zI10ycGmcwv6p5o~9Pv2%#8E7clsMYP@lqVAaTJf^`8d+zC=o}=I4Z_bDUK)NxSi^L
zGLAArN(q*ZBYR9m%Ab;KIYDO2CgkMhMOYyYbzSb@wHcM;s1iqwI3H2rs47VEw2*3X
zR8L3(oeD!Z2^DI_@k|`gilkN?wI3I)t+K1DLWSofySQ66vvuOA8^?=r<iwF&#a%BB
zR~+s*9C4(JBty^{$CGPQm|Asm5j}AzaWsx2D~`-K>c`PY)M(*_I2s72CbLWpC7ZIr
zReEj8V@bA1nuyKE657laVT(9g#*r6CejH8XXck9vkyGt|9mxJmA*ZBO!b0nWP8%U?
znk)F!Q%buy+Q-o$j+f&I#SxC<l{j9F<8@AN93A6$Esm~nbc<u`OU_Q5mN>@0p4nND
zl0LUxW5-k^soO2PdmKGESKYFE2(pNrsaG7mMMA!6O{!N+v5H@e_?Q(70m%kMlTA=L
z635W*U6!CGsK;T%VG1wUx$xl1?!Fft{a??lvMnPT2YD=x3lo!Vc^v)X_&kpP$JBd3
zJ5_w&<5b}Rg7gks5wQ?nlA8z*dGHEKQ4mFu4o`|o5t7`N<lfwbqEe)TG!;Rb(m_6;
zNKsT!LFu40r70Z?MFoEQp7+mp{nwhc*Pb(H&YU@OW->SMZq|mNg`kHpKZFG#7$KM;
zObB6O2+<H?A-oyFo>4xQcnHZ5QZz0STQDK$2rljxDAXJw)zN|@1xE=sv^;MJp_(za
z8u6_V#)L37gmEIL9U2)g{Oz>n)&rhNAxsWoW(c!Fn39%H4`FHuY@H@Z!oD-4^_{d%
zp<}b9`o7>C!MTF(a%<f2z8Au8ny1k7c_DltO{~VpR{Jo7yYqc4%R;!^*|#u+Mf5O)
zB_S*g;p24cwJF7@^O01kR!Ejhbwvm(Ls%tzby}YaRAaAoA$$_T4<Y;*!g?MWA$%3W
z*CA}6W1BNKhp<J+#t=Rg@|oZ!!K!;RKNoT}-@jD|yL>5Ro8TAp@PE}QWZ5nfR_`tC
z|AvQ5Y5%ueU(2&2gq>0)U)QDNcf#5Fy^viY>=x2tcv%X0w(JSvcnBv#*c-yW5cY>~
zAcP|!{1n2$^jUP6Y4b_uAvu58rSQD^Sz3>!b&d+5T4C$S5Pk{ak_dkd;Zz9cxF{i<
z7D>OWrO$*wq_wjmDeV4x2<N4GQSgEw4HmW*T4tBaBEKT&HihsfH*y%Sh4EJifAgRV
z<H0blhj1f=Dq&O&<7NoAc$o>KSQ!7L_v7sl{!R1$LU>8|9l^Wl{az&OZhvmx;$f5s
zqf8iO!|usYGK|tf?h&M<R2aJ#<dCprkdLjwzU1Y?s1U||!ui$!O3F(sNyRWKg;6<-
zLd}6(ow4rOQg}X83!{1%^~3o0US)bMe~mC|3um>akXm8z+`F_cqmEST3f4>O6!|KX
znh4{5kvx!=5AI#IVHgjEksn6uFdBvNa2U<P$O_|;Fdhw~&nKCDa{=)&!OSok3-N@}
zgg)HyM!S?`D?d}bBKHYW!dD)s(i8|I7{<v@i&2^7@i3Z-&at^}wRsp%gprf()j~*1
z!ECY6w`h}AG7w3j!Q3$NL~?p;4GNzO<Eb#ZhtVU9Hes}7)8@?1VelAi7shj8_h4)v
z#?xUuBf@6|I|%ZC?I;RVX6eMRjHy<*r=DjJx|Ae;A&eKp=n}?DqS-a<9?QRvsm2qS
zXKy#DQo>Ps%FunoC=k*sjNU?Mq>qs6W2(IzM!zs#5mW5aU%C$nyQey<ECWT8mM@K|
z#_FIj28XdVjBQ~Ip;{PI!<ZJv>tPHFBNfJoFouT_3L{QajM!ygI1DWeU3f%L4Wq@n
z3^o~Iyj-z4$tzhUOyR6Xg~XT!6Md{Q<?Jw=u=`m?o?w>BClq;7GPXz<Bf}Uad}0`*
z!+0Z%v0;o8$(v!kC4?V#ZuWNYj*)8Nh8iEn1gTQ~wh(R;?x~)#(I$m4S+*D@Q^L60
z*h?}!j2U4p4`W3b?}RZkjCo;v5QcqUU{)CKF(6f&&kkcw7;|M!-xUdkt(O<vJeo<h
z_eFBJOG)ziVJrw^aTrU&_)z4F#MDAT_Topw{@c}9mWJ_B7$1wy9_h;uAR1Ygwol_L
z!&nu@`Y`?{!qs7{31h8rT39DG+4mD6l&~)?YzSjx7@v#Ur|EG&3xk?;U{e@WqpP&f
z5jTgiMKsAN{347m!?+yAl`yu4@fCZ8u{Vsb!}unQdI|3?!5xC%g|Sn}w}Nan#?>Hx
zA4VbBotFO~<VQgsBm2VG&pjK)FJT-A<6xM70gYo}9OBTOeMiFhi4zgt_VYYS3i;36
zw#y4xrI6)#7$-!Batc{UeieQ$jNigI6~^f>&PcDbA}{PtO$vVx<Gctjg>fNmfdgGk
z^T(RG<Fd=uFs_A>5kZ*<{s`kwW)4r$2>uG=?=WuhkmnxhUG}=<`3>&AtP;%go9X;#
z6EpwcFm8u&Cyf7OBTy2Py~B-Ds8BTGZmwJ10wp6T7I8NV<;D3Fke0Lco(QN=N|2;<
z#NBQrWktVy1QjAEC;ImaatPYLFM^7qSuKJ}B4@8E(xo#02<W$bj#X6@`h1eXrs~3L
z2(nr;;u;~T9YLK4>PAp6f-w<{ji7!6h~W7MI!ADS1P??|d86m)2pUB2U<5f4<VMht
z14Ym*f~*J{MeuM0k44Zpf=43!hXZA_uld-80liV{M<edHBK^1c?<=8rB4`ppCOa+-
zyjVWV8^Qb$!G5I_6v^`mXVo8pB0P|m1cf{<*ffHV2L!0rJc9j)lqWa^A&+eIWXnJ;
zBWM-jf9zBSomKc>m+SS<zEL8pY<AAqC6v4fo{Zor&Z4=JAHi1}GFwM*_vx~9pi73*
zCc<Ay%V`_otDyrQwk*>wf@)KhYbBKS5zzVf^OR@Aeh0yhf}Gd05p;^+T4|-$$l!Ak
zTxn39<b?=cj35?4Jc2F}ycEH6$CRNFbd8`}1SMye`f+(?_Xv7KFd%|~5%grlxF`|y
zi=cM|eIn=^K|uuO@`85v1fMzFb5ED-2{&30CoL~npP$`7f-|*R>{wnv3CptO1^Fd|
zuS75?g255I8o_H^#|;XbM%{FKQ9>LdNHTJC&g&5ji(q&JA*M|PS_I(;A|!SV+pe*5
zQtp77)k&JXk@srN>N@?bS>23)awCGrBRLx;<wm8tqDeM+wK~3n2_B2qmS)-!BqDGk
zNJcO!0*{lMir{*FZ<Y~KE#xC3=uo83jYRI~2;PW*<V}WjdBI!UiM9Joxz&{tYL1Iw
zd<5I6yv6@^1aGg+TpGbg5lo0+BJ=IT(lgd8lOmWL!ITK5M(|z)??*5#g6R>=iC}I7
zGq|89b7n;_TgW?tGb1SC&!v3!uFU)Edx;%-boc*R>fH#6t|*|K)mK&Tya+ysU{M5%
zBN*z>ogcx65iAtGKycTU+?p#22JFf#|Bq{=$7`j}`f|^|T6#$Y_EN91qTu5QmT@OW
zupxrw5v+({O$2KrnC0!Wl52EOSrx&-@!6~rR|~&(HHU9fT1WdWyz3+QglSndxT{KV
zR2_wq4VSxa<axEz`*{SLBlt9e&lu-A%3BWxSvEyLT(QV|woT5K2)0G=h1l83p%;1W
z?!JdA2WceODez?kL&j&*fv+O?I)dVBGrx)8y9mCIU}?&`gNrNVTfzP%eH8ABVD*;F
z!x0=2vRm*6!5;<p2=0wwpAahVkKjO>9~5$k`}d<vHVt~fd)dtSiK}+j%kndig-mak
z{oZ2{9FO2c1SfeAMcpq<eu>~$ZY3R-j#Ckw=El@eUBj6O&NAUu3{i0|g5P*<s0gU|
zJ%aNQ{*VePs<;rrMV`7UimSL3!Q}{U@{Hwi*IT*5OpD;p2-cnVT;&#K`Yp`tGR32P
zn_2RN=PxF01WP7+hEMVQ&20HMv&XlYY`P(8_3rci6T!d2?=pJ5l>Z{QBW6!e@!aPA
zJ?{yWZ*pgfXVI0?MO4rTM=Ywk<M!F-DWURb0z8AJdNPERRB?}xQi7!g>CD1?CCkwB
zUJ9+1RZ&jGy(;+YQRP)ksqUvs<P}t`o}EonNkwH9^;FbXLCaNC)KF1VcvTgT-t<>f
zU9YOExb>5F++=t3TGCou#UGoqS!JmslDaCMxZqZyf|`v~Jgnk=6%VKw{FBl^#X~|K
zRMAjHZqYm{TQ~i6r+7NuXhu_ya5xnn6-`vUaLfOgipDCIPVqF~?#-_5uQAm#uD6n@
z!mDE41&?0^BSx2|_fmW+o-f~|_q3d>TmGHBl%R^oRlKMo^RU0Eie@VEROGA3Qqf#R
zD;2jF@-+gUCnQ|iDq5&~7lDUm%^^RVT8cv1eIE2ua#VLIb5(a8`4ih5uC<D%RXn5O
zNfl42XrrR7ilX0TwpX$8sFx!)@1?X;@$0;7ro`+Eo>IlLI;iNVqLYf}R6Hwg)APYY
z>v4h3^i-Z#(OCs&@q#oJyWrv6xrirLxtY^N#Y-x>s_3TTWflEYbXU<sMIRMRs-Cha
zy;Ss8@yI?m8n=5XM3$%fD1B8FFq!)*<#%R3-%DYL`b(e&s2Hf?+v<K=ctyplDq0`%
z-#C`ZsP<WzO?-{3DM5azx}VjdDqd$*#V4w}t%j+vRV0|4DniVwin(DGriu;zoQPB@
zQH5wKbRmX{gZ>=K8`kniMU%=gA#oL!kYd$yD0EaLx#*nfASI<@go@cJ=BOB{Vw8%B
zDkiBIt>O()7_Z{!KfT{n@s^4)T#n^Ai9yO(72B)ku>0n=!EwSX{-_j6-j-ey1S|j9
zVluY_Bd=nHim6PzK?=(>`h2<?$vZ!0xG3^jf-?n=)Nb*At#ehpt75*21q{d_<vlL+
zW6B4@-xr)G80zYC9lJO9q4={%kS;BhR=T&CX{O>vgA5ACm<lByiIX1-E>p2w#R}o8
zxNU{36s)``dyNpzcdd~BTDx;^5LVW^i-l|4qztc$jVg|-IHBTG6`!g2PQ~{sHmUer
z#a0#DxHmVJ*{os<x9~}SnYROT)|A<P(og<{iZ4~{P_dJ4tN2RAH!2qQ%>7!$k;ikW
zNgX9Oo1BGmR#$g(`M1<R=`Rrr?&3yc0;o8o;s+H!ihRF{Ju3F9*e6wLvP*KdhlH<R
zc=eIy2gDN!*U$DG=2*=9C$o;K_({drJ(ZuOmCCJ3=Mg)sC^-CN_AwDIJf@sf@r#Pf
zDn9th^Q($eJlj>Am)6rN&hpq-aYh9#b1a(uO~vLneN#Vir(E%)T)J^V#YOImCEiOi
zZt4*q<>mkOkNn$@U;Kam<-elhDmUHRffsrzJFaB@sp2mcB{Y=O@VAQVD*jdRAJ<gH
zO%?x$C%06Ddnz>5@N#LAU9+>VUH30K>A$Vw4o?^jMK$#9?z^iZ*i*UhhX3vf|GqB8
zifJgW;e)^Z>xKt79Oe3T*NuBLl+ySk2&kl?w1#4NIb}7J(~zN|j8v}<4>YWrOF5Q#
z?$uCULj?`Pk1GS-4m2EIk9ORmfjDD$pt6ReJrtHI8W_p&oI3yZP^xO6ha9VhhMF4c
z>8P)xmWJ9IrfHb2p^k>S8v1J(z*Y_QHRNf?*8mOoYiO*&qv2FL?*kedYIsOP0}XBG
z1nW1-eNe;M8QzecckesFMj9UBM9StqwaNRihJjl=-ScuD)$o{x%*Osx7nQQRGpp~+
zY{IIBpoYgaEWfCDHTX36HAF8eR8urGni~vg`089{fzP{L^$<V4?QN=|nTBi)Ej46G
z>l1>_1!<Q0ErgSlnH+4TAx8rpV0GFSf3604NWxO{lG0kklNvf|cvizx4CXn{(;A)|
z=OJmssfmQVord-rnqE@KIenUXMsu&A9W?Z)(&XLt*`3&ZleepeZtSk%c@3R4yr7|r
zhIvhMIMDtjnJ;SiW2>L~L<(OL<0S1H`@3uC#Z;j+4%FD+Q!sCCkesEDh60iF6=WzV
zd|5b2KOsL)4-VAuiUvc2DTBVMVVH(0<ANOGH4TF_4AwA2nkac)!_YM6M6$M2qj1~N
z%;6eB8p0Y@?(;@?x!Rej3s*I0Ql<ZFVg%R})ezG#R>L?AaSfJ+5gJBnur(w!ELxjc
z{ml$VLsCOZL$x_U5{v)yVNQ^^<sBc__v)PBC=G9DcvHh@4XiR&#J4oOc+N9Mj8Om7
z;K01W0S@hy&K<8|qJ~L~zlP6C=T4x*c3#0IZ{MMTP0!^{)-XjwtI0t|sqEZf!934Y
zI&eFmSvo_*I~tB_IH6&thFKa`YgnUUwuU(zNW)?cb2WVSSLOl@48^+|-qY|tg)@R5
zXqYc#p5Uj`gP)A@QL{*Of8EV~CdP-79t&kGCMp${X!uyeG7U>L9GVnl`A7oTct(&N
zmousw4$KHLj4L!ypS@PedeJhsz*-IKH0;#yt%grDtk<xWUU3i32>wsQMt0G#f!lVA
zzwHcnvY*M0+ayQ}+<l)5-^?_g9^4|F!udl2UugJJ!`B+V(Xd_Pe-N$5O#4clVU*bS
z$QBQ~EZvd0gF`IIymn6$O1{(ZJ#{o3)UZqT*KQ3zFogyO9?JF6s~<J&(XdxT<?GE@
zWdJ!f@_i!N&*LK3$Lb*-M^qc*IjZ3ZJ=u{-|9{r-lW<nqmtkR!9n)~Lov(1yoz(D)
zhJQ8ur{Px~K^iV=xT4{-h9{ckpVe@V>HTER8D{CUAT#zi4Zmx+$k2`Qou~dq<pL+G
zdKg%q33QC^UE<+3H+X29ztKhIDi1~t*EQVWCe`pK&wSDUOZG_LHaXngTp;#k0J(fO
zW&7XK@Q;Mz?H!pMm(Fjm=4VRW)^LaCu#Sp4?rJEa<I1F9hK{1TJ7RGiC3F<i-PrO#
zqlBfTG?mhEj}S^GYo5}=={Bonbd=RmPRG4E%o_d*I@ottseEqR@;VBS6wW34vbU1%
z9<wzCD+^Z9QB_Da9o2<6qkPoip;SYv3^=Q`bkvqAc^w^7^Rw$xe`hAE(D@U?Xu?(<
z59sctasRuXMmiek?nB3ef+P*;<YE6qQr+A~d06M02Lg}is1Xi4s^c+6BVVC}rLhi=
zw7#;<cj%PYtHY<GkB+`N{5ljJZFIEN@y$MOKu2>OPw2>Ani<sbxQ?ben(1gbIrvn6
zC5tXyZ$`Dn6?3mF$!s+(*g{7u9XZsewf+iqT2eACSgF5~tE0!{;FDsOBu_`aNNBmW
zj>~^#QuvgP%J1bgIPRr>J00zHyriS6j;D1rp6BVP<5?Zg=%CpSI<8$PeSLPYaet+g
zj^}hducNb!HO#2j*jJbOFNhB`+eOEV(!^0-Ur})6YA$`Fyqh@CLq~TV!=tX`=)`Ko
zo;rF-Q}48g6c*@snL*PrL`Odz{dM;-=T#j8m}z~LfjaoO<i7gy2hWuks=dN6R?OuS
z(6tZpU(+#2N11G8&u<EGsE*flXgYM_x0%Cqgmi?tOwF=}>)4c&&F8X+4nEteI)*;(
z;{)J|-*T%S$m1i4p<~okPgHjwJlSM2Pk!+55s7wUy88^mr(Ih|LPt##wM;lVl3WV|
zEe)h}jL@+|$4(t1X-CIO9jkPV=3Y4BpP}O&9dGD(Q^#96#^{)&W3rC1I>u2mtW03X
zurgl9-uBAd^t_GtR9JcMh`;F<o{9WIAgq+A*}8xKoGCi0oGv#_)Yxk(*G^OHx-F*D
zU~V3Jajcm-X6aa@W3i6eI_Bt@uVaCZxjNp}@xG3E+*5;_j@;&ZkG;m`W(0Fy(-n^1
zXK}^{)c-v9WP=t%hcx|A+*qjdPw)Mg>bB@tw*`AGR+S|>mNJuvG+nOaBW_hr>P+S`
zF3^K5=n3W2r*V3|Li)1Grqw#u=-8rTtB$q0dw=^MBO_#;;3qoPb2_0w>qmUNyKdw*
zS<qw?=lewVr#d>^@PDS`+?C9kW&QgjK?*<DLAA}?ELC$op#TkT<4o6kzS41Ew&x2S
zU-BTz%h|5G*HkJ@>ZyFqr25#y+vzu4nxbAxzSZ#^lgB_=1K;b|MFkzd>)5U12OZtQ
z%4r=x>e!>>xQ-JHyN-Q24(m9gV?PJdaZtx09S?n&J+xhLV=Eu=@RDqHWZ?_Mei9?c
z1S$EM6ET#d+;<UIfjB?US8|Exq$vEVgBE_#-FIpF3}v&XoZ=K7Rl5I}eTE&6_}S$w
zgCNR#kN7KP_|NOOpyN*+e{mOR%0-^WLSB#gF6qelF#EF3-%QN$9r3gEsx)2W>I<Rd
zgsL=EmA`fTqvKy5KB{tE@P>|?Lg?EqAystcKOMJuyc;NK;0||L%*RsHaLHXAMGRhb
z6zUhsiy0_xxIVLb$58Guz*&?M9fpY3N*l;9@LbHtUMxp+rJR9#4b(PJ$3S@l6%5oc
zz&ZB$FY`VFRSkE76)7=r=}H;$$})5nvDq&tn?b84yw<Gj>h#c1I8aUTp_YMDoBe)G
z2^Ul98mMQ$XTWcuz5y6$WZ+=~T!{M(JSgM=K}s4J=(Ej3(oiH13C_vMrsNR=j~ehA
zZj!J(W}t}y4$U=fY`E*|;n0S=#1v*q6PIl2uCi2C3<L}`H}LH?534}~O$`KNzQ+xI
znW=25-GZ6Z%s`eHXD=42Jt6aLAws?*cfO{yGLU0nnStd7at-7e7;YeBAm2c11N{v2
zH}Ir^rwnv9@Pfhr*NwIYIvJ=q&(qF8d&9k}bTHh<5MESx4S1T$o4n5$?oEuOqbNKp
zIANTJ%Fl_ygVTb~Gj4N()|}vr2D)%@4fNow4e&z6dq`IqV%R@ry0K|)kiy9qm7WHA
ziK)H@dUK{n-P>0mku1BAM@?2aM1e?N7F^ZFeY6?CrKkNWO$IV&rUl=h9(={Xs|H>(
zaJgpgGo$jqoEn^1MxnxBQ5#}lsF2qU3^PE_*~B4;VFM8Z6Aer<pc>E&j509VfG+cj
z8HgJ&gqwm<L570yu?*M-KK(6kgn@+k?-)oL?lq6bd3#S8?gg7O?KUmQD(_SyWfqjY
z!31umj4?1)BySpcprGtq1`Za<;^k_b0p3D6_qWCDcrMcn_wqJDV!{9_r@fO6Ofm4j
zfq4d|8ki=lHdAoAjQfs(8B!e<s>h)5F@d-DSq5esm?QFc4ZLSyE-f_8;a!f89=wJ<
zKd>wVI5gk)f#E)!(*MOwasvyvf?3`V4J<O;yWB#lQc`NXhf|~G5(7)c)JLN5G1H(~
zKBvr-;5BlEft3bM7&vKQm4VfCz`)lA))-i8fR8p?4Xopb<`&Ne0~-x|!ht3P*Bkhs
zfl|l4Trx(6xAadrH3ORs_qNPlQ?^#y#O@L<R{3C<^}74?w1u7w4)E!9n}ILHZ2m=s
z4_RMw<G1r}H^4da5&jzkI}99P*kw994g6r>M{Yv{-|_rsRJZu4zuUkr;jHq}hBIQq
z?-5h`WF7ZPR&$M*v3yG1Z@3RZ)8+&RP7fY3@RQ-*Q4bs7gWHaa$`Kihi~F;IqXrl~
z#`Bng<1#5;L8-$>?_Ui3N{NA69LT_FF1>+244g4=)^HznuNpXK;5VLrOnbw9g#6vW
zc>@=i?fJgKhxd!(BsquXM6PfthXlA^D7kY{`Dkh8Q=xhc+Mlv;e;Xj@ZTT+)Ocg#y
zTo=g=L3Uy5KL-BgrZZ8-#D4~EOZJvBdAi~*Pk0k0Oz<0zA|{HO?!xg|k114)SEErr
z&Xicv1iwSL#{}a;!lwzIEsREK6E~*2H*@aFvL?!z?&C}q6Ze`ZZ{j`^6-`ty!G~OK
z5MJi_T)_0>POM~tTca`+%I5MK&&Mw6R5ek}bYoK8L=Dr;SX$=3qXN}xo2X-AsfmwF
z)HPAhL{AgFO!ul^U$ChOm}pj_$^9lCFwwxogC;yCnwV&4;vo}{n0VBL@=s<X6Aue1
zk&$O-Wp#cu=Zn*sjqlBS_vwtsOnh)6o29XkDK9CRCcGwsCi<Q7_$Vx&_iEWZ#f0C)
zfbH2Wmt~G$Q4laeA<MKfd34}$j-HWMa$9aQ6Imvjn|Q*+(<YuV(ZWQwi6>1wWum2t
zRwi;y<e9kt<>353%jKR|a!j<{;vvZwQhdL^wTa6em9z7dKF=tW7cH6B#suZ<s6c;;
zmA2;P_1K@yruHVnmGjuWgNcqNUSKe3|Ge_7iB2Y-<Kmtx#wyG6BJV7gS>@<eS7&!I
z@sf#dCc2yGYVuJifNrj19GXM0y7o%B9@264nlkLg$oFPgO!PO=$3*6T-oAnbf-ehF
z_*>c5156Aw@s^1(CSGBzOhiq@OuS}dkckl8HZj=55EDa9ye>m8o>+#VSa+oy9T+B(
z;ewgvTfFm8Hl2x>P&r36*D#?8p`W@5wyycn4d9{!ezuw>dStX<HEzN(F~Y=16Sj$j
ziImL6F~LwLh1VLGPtC?ZW&iX_fa5Zrtd27AhAhx%6H6-RQO+UW<Yp=9hTVBBFxJF4
zZV(ginHX>4Z4*<uQ%p=SG10^n6Xt|6lT6SndN`R69Ru^}KbOgTIoReY-=r1U(@o4U
zG0Vhk`fp+;lh*J0z{2@*MCxz;T$y8nlbS25%yB7a^?eibOe`?*A(KJ;49+N4=>L2Z
zBq#C%T)u_uYhp2jAWOMK0(HG#uy8t5``E-XZkZ?=MzP$)3KJJhTr{!L<li!2mx<jb
zR&y36www5h3B1X>*2G2=pK_VF@lC8}Lh{QW?p$tFqYQb^oZkGNgrB7RwEE1%Ch4`6
zo~+IM+;p!2n@w<oFIiErMXJ=KaGQxQXl+Brv%>;kN*9jBQ|N0G-<TLRJ@}m*4m(Wn
zi;-_l?35}`EuI+c!mk>>7d1*a?hht@G;!F(5fghveo*|}Yhs^?_G5$l<q$g{M;yPR
z;bBf64w>#(BCi^O4V80$GV!yCQzlNEIBMb;qckn}iwSn&?2el_VY=T!@O<O(dy<+L
z6`K834mVzq_<hS66K75QZh|`Jc=SyQ{>F{QQ6>d<cg^5%^z*#Tf*<HSBrkDe@)V7t
zd=ytqTxI5)C=$gr6Mt~Io95g!@u!Kum}&Xh*G>Fwy7w+lpWg)X!<4hQVS-;&(lQ;p
zW#S(b|4Jlpn<#dlkMaCZs{97>j`+hbaCiYL8bz@v?unvQ)cuyMcoZe0?$wJ|ml9ET
zj{Hi8Zu4eRI*N=a%0}I5CqFXy{Y;styZY4OhZN&ePV{?UbbY80MKxBVxG#!|QB-1r
ziM(<Y9F&(F>QsrkUp7{af@85-BZ`_)_cP-DsC&t*6-C`B>P1moM&t)#ov8b<$T`x1
z`l5-b`?<^ja@80j=E(z5G@zf;g3JWob{>kNQ4~F*=o!VsQ9Kewt0;1!cr=Q~q6kLu
zcodDJ?)Tf?D11?PqG%#<V7j^=Mp5^>JAS14qwbxDUIplF)cy9A7gt7=lIxAjHjScL
z6fL6e{UM8PZ}#&O?Fm{go7-G0&=Y=V$Rr_VOZS#hcQ-L~xl!ar@oW^GqR1BuPesut
ziq=v0X7yxx?)(RWwo$Z;;^`=!iQ?B<rQ1g_v}$R3&gnBOSLXyfNZdLyGLwS5oN(dj
z-g8krA4L}#l(&)2QShVug(wF0E6eJOQTK|%6=71n6h&8Ypc|Jg%Ud^Ern^)*DelBx
zQS|0qqR^x06GdN+9>wcX6h!fI6oX{e{i5g}Mb)Q$uSDIn9}smv*#}0!3n6bcytVQ=
z_i7Zc$vV;|J>eILgK1=*X9(xJHj|;|SF*#R;N^!UBxJZa&*+7th)BxuJ7HGUsJj;!
zQX>j8>V8o_I*Mo%F)mgVBgBVz6bU9t6qZ!!l`Vu<8d^w3ad~QxY0pqIXUPA0tKLZF
z%-rB8i40ee`{j)&-jvwB#o&+1A0unZp&2)(*|;di%YOxVJBn#BOpjqg6ceME6vbpN
zSq$xCm_k>%BVz8=Wm*)|xq?xgieiRzoE^oSDBg);W)!oc{Nb%){9DLB4;82KH!BL}
zM)7VGKSr@9iuV{0>GEw9^P>15icg|g&v=TE`YWPX5XFa4EELH{f{O$f3oa2{DoFk4
zS@&<dK9=e-Zql^;N4>^M;j08!3$77dE685!qBvb!e&ZvG4NO#S=Sq1SrFDzor-GlQ
z^*0ImJc`XxocOm6Eu3CaK-|jMO4Ao<%`b&)kK(8L?jN9i9mO|195R}yPJm@c6g$&Z
z3aRj26!nwd?*(^7v0DfwKSWVsVl|SxD+>0C%_C8e?_&-KIS|FNO8G1Yg&Yz*EJ(GV
zxZJAuXPy-|yhjC(39@>eQxJYKE%}ABn3>I{(@~s>qC^ZOV>lbdxhVdN;&v3jMe%zS
zf6}*=1?Qu<GttL#f&1k`zU}k1-{QR(#U-Y}c+X|QD}q-AuL-j053cok56NFl-3dOH
zzlB_9b~Vht5yefZ-V*#Lt@AH;#8wZL?{L;p6pf)+4A0;8Hd|RxB!*UocgCRX@A8%B
zzwz~2o?ko${?zOS-9x-5hEg$9jNzBY{?ajI#85uQ-!AN4CWa4B2JV%7UN+8KHijpg
zG%puJmZkJac=p}u`ohYB)WiM?F%a+L7WiL)q*4r(V+gUSW#G$Xuu2TXsxj0WmQ7MU
zh8i){WHp9|V<<8zw{{G5VmLC%Q!j@9E*9ZJv(%08M^QZoF67jgCJ5dy_<&#o!3PB!
z3ev(uF*FiB`a))hzD*v9;n5f#lTkQO+ZY<h;EC~t?Z}KFPvqVhd@-~T?iXyD)>niC
zV*K*Q_4DzxyvS>rtTvNsmSA(iCt|qR(8H$ev}Q{otzyU#lAD%y4K>M6^VUM1jNz%Y
zq)iNkWBuOIH@Bwu=@_1gp<4{yW9Se=#~8nt!}BqWF5zW}o{gbX48K0<{#MlT?e1a1
z(m93~Wz}AY!GFK6FsfZ*cqxXiBLDtSZK{ng={?xS*CU3WG3YTEG4zU|Uuj>T82ZN0
zTQt`>`K<#vR4#~Na129Ycv<9>^b^uwaDd>z7+y)Yz8b@8X+9{1XlHi|H#%E%XbkU{
z<d>5!a*c+ib%rx%gogzqf@-=|6Y|7`;wEQQsYxt`IBg1NHSdc|8n<G2D~2&K*fAtx
zaAMFlct*x>V_B1A4EHxsQp|II&IrLdqiT?kl2$5=j^PdAZwfX!kV#?hRz=6gFqsE?
z3{3TLF^m^N{x;8l;S&WX3D*B5z^17&@IQ6XpVM12vJ`LG&b}Ej{svHH%{Xes@lFgg
zW0)1gY%X^kMdO$g!`v7SGjC&fH-`6O*bu`;#wUh(F?<~3AGW*QKZs$G5c2skEJ*VY
zg)EFA``Kb_S}fHif=kmn9|`#{nn#7@F|3v9igfErA**6ootCT-@>WBI`s-r&BrRXh
zRS@3k(UNTXG=|Tl`mNw5!LI~Ak708RTZC^F{4$1ZF?=CBB(8oYMz)LO>0}KW{95=o
zf;(c^DWv=G#%%g7hVNt8C6c{@6z-1U2jM@aC3}R#E9J6vUkv-DdLZ3;P{<)hKI)^w
zPci%)!*#BB3`b))7Q^o`oR8sn3@1eMw-`>Q`<~|UnC8C<IVCvGn?X}&_$eUObAp*N
zwLTAd*~D@ohN~jKD0oSb^2<W5@Hi5EO0J3I52jFB=dT$47G4+)>fDs-E$P)pI{w4c
zGOhn#47Y{fNlWeuDU5lsxSLB=1&hZ~LP*It?h#Tdj&gC_8%JrWW(ZQhOdMs?oM~1*
z%`3%GA<gd-Qc;jATUkhzbZcS4REwi}95v$TC2n)pB(>wH!(9-^+&JpSQ7?{H;&?TV
z`f(tRmT|O-qjHa&`{T%r!yCr~aWoLggK<0}gslzZcu067!G{Hxk1WNeN7Fiw#nD)}
zN3cm+zH31fs`=t*CKA7(l5PzM2?{<QN7J<Y#Zp;WY2IAO6LGW<k}cRNs|?NN#E~1v
zb8$Q$N1n)^7R-;MwU8$T+r{ye5O!%Jq^%&0v`@<m4L%b`2a$9XeD?oZ<0w?<oR;*9
z<Ape0lxmkadJB0;uxlLMgmf3|8AlHx8!{9+z|u>q!<V^{=@Um^sgf56dHMgR++X+r
z!GUoU#{9K72E{QZj<InJj$=q1u{h#!3>7t1@O44j942JAU?`4oS{@NH;v3f`O}H*-
z#9<1F3Kq`V5<XIp`nHfn9FCBrU@F}@B93_@v#7>0Dvr@<`5SS(Df}(L!nur#<J?ST
znn=dS@wSi&ad?_#6k3=ll1YM-1*gO@Rmgu`3kr3n$1y`B|N518;+QF%O|yi|PRH%t
zINpn6cN{;&@xC-|h+`wYjpGBU&W~eFy6=KGK8#~w9E;*u9LEZgFG;t49LLf$|44}a
zwSQS!vRp{+bY-QGRf4Mpe}CFf$JPobStsNZ!S!+cPsnYjM&Z0ZmFgFQpT)6B2%A2S
zV{@8siDRqqZD~nZhWIj$?Qwi1!ms1_Hr@J-kR5UC6jHdp-=$l>k7HMwpK@yaDEvfP
zvL}wcaqNp@zes)(JRo>5t#e4oVZkF@$6B7kx%?c*(X`I7IF1W1%z=|}{1V5n>DJ%l
zIF;t7<2WPyY+7<o$Zvw~D|gcJ3vpZ&eo63hTFxP^#qmcRvnOEA1oz?b&p1krK<N?q
zD~`Y8xE{xiI9^JiYXUdpxD`i%jhAiw6UV>I0SgN){1?aVI67K**20}Q?(&ed@Suev
z7K&OZXW?E8#Vi!JkYS;Wg%TD@T6k}5ZN4b=jpgpEt@%eo_gE-pp|pii>*nKD7JRuj
zP&TJIo61^Pw=-k?(%PN3<-Orm%3G*lp^k;R7Vfi9(L!|#H7xwqSgB;8iiN5cyl0fk
z7A{<Ew*IpK39(wbN`o~m_XVxB1>K=74EHrx`)6<RD6H1AP~XD+79OzBZi>=kPv+ZG
z6^QbTVKt~wu2rzfudZf83lCXnZt+LH(8$8W78DBs3)erc{fLFe7CaUnwa{j^QnIx2
zn1$6H0{$int4+k3&q5|$rM{he$rDtD=h7yN-$H!0Yd>h=aSKgF`Q@>0l%j`RtPm{I
z%;Iwpw#`!XSqia*g=`LFp)CVALuqLt*Fv7~Ru*!ku;bSU0{IrEl~P(;c+$dK)k?dg
z%yh?^TP*h}3q<mE77BvFXDoD(q1#({S|k)YqR_Uj67{*gI$3zmLefIY!t)k7TX@C7
zs}^3c@S=tO76w@8V&NqVFI(tmp{s>%7J6IgW1%~ZTj*(_7jt8EK9{@o-K=>l3%L5b
zA8t*_jk{TWIWFyd7O2|0-t3oqUs)3<wLHM4Jxvs@DINHEK;X+~%I^C`8EB!QuQ~tf
z?ffC-H4B3*ge^oY43;Sj;}TmKVxd9Ftf3ZO7h$6xbGx4RzwT8+7TAl{X!FN*W&gLd
zwrWA+Dp;^A&<)*!Y4NoHsB)o{Vd0x6l~+A(xqZG=OibmR>&EWSJfiSV{A>#e?t%r%
z8x!j}79P1+ihm{d!Hm2S7Dih9$rwzvFv`Mc3u7#drJo(jE^MN_Vc|`#h{bOs-9-sZ
zQ@XDTj6TC3j^WS8V3LK&7T%VzCRmtg;e&my!+&QgT*MdsWj0H-q4Ztm3r@2zU6ent
zFvG$-7T)D{voO=bEDLj_X|k+4jm(znovBKdZ<M*hnNgI#&$;hc4*G-hM9ANWqmX63
zR2R@-hqB#&RTf!T%$;bXqKzdMmRdM!;h2SwEPQNXvxO}dmRVTNU2NeK3oDo&8%wR`
ziu|gqw6Kb~kslbpFmJ{E)hpDlPWx*tv^=Y<6=Ze2h5uRDXyH=}8!T|exhp9@Gq%*t
zRPgR0<uePPi%S%4qVbTM!_{h+W!cI-Vquqs-4?#E@TG-s>1qk3^;Bg$*U`cb3tw6I
znp-$u`SPGb<X=thWd5901}_biFP1^_O-py;-&y$H!rleN$Oq>sKUnzD!XX)V59JmP
z2;axdKdZb{LfLPDM@P9L?g{qkh~T(il!F$ISIi<gY~hH7pEwukQln*=2K(}Q$8%Yz
zeB8nb3;$U7*TP8)zgW0v;gW@4Eu6A&&H|Hvz!~MVg|n9X7ocav2qo;x@^{A)zghU5
zDJ`uR1ewDP)&^LpaM{8Y3xD#!v~bnJH4A?f&Z3DDDwZ*Gf2ryFOI<6H!SXkcCJVQu
z^#-@n(!fpOB>a2NW3Ak&^}bMw_@9N_Jk@QKv{9#e={pQUPMM-M?pj#;LvF|Yfg(0i
zXI&4A+3wj}T=1P`fem@C@E#jwZIrW7%0_7$88&#rlo6fDbCkDdDBWi%Ud3I7du@EO
zvY@<;F|CVj4=BxV<X5n9ZGhWU$wp-xij9DcDmJRxc*sU08`W%7w^82)Z1<dRl&RFP
zQPV~(8?|lJwNa01nMxfSUVj<d88E<&5<hW><@N{u2$Z?s#sk!m)&@2nv~jv(w-4(#
zZzvv8ZF%>SJUVU#gAdzy#71Kq9vhEJYltVtA>}a}JRI1I$}CN6yl|#irVX{Y!jCGi
z4WA7^9bOuEQWA`0LK`J$<8d49Y_zx0)J8Kgm~A7=#@fo|T1fZiB78#7;D2=aph@@s
zuKz7<{=PhNY~<Q#ZR1HBc{W}=kTY&XFki^7l?CVcA-g!|DI0C1dt2L0r>@0w*>rbh
z!K1}m($3TL+(uU$-E4HQ(b2~9Had&`vo<=}_|C~G{2U)wTzSsM{rSr6NX`qQ!0s<`
zEE`>H<bRu6VO0SoH*=N3Id(79vC-3ZPgFM5*&662!oD_o+vvkw+8P+sKl^^^xM-#l
zYE`D6jsBD;P&a`AHU`?*VPmI_S8Tj$;~g6_ZM<e<kd4tc-mo#)#t<7Z8*v*$ZM<$H
z!noNO#$-E?6SDF9fV|;0imwakQx)R=KKWs;#j1kLa8P3+c@<M!(rp-wPoMmbr4*JP
zt(!+h&X1nVCHa;O+r|hRE0)$?u{OXpP1tZK*{dX(`IN5>(D>O5g=NYaWu){SC8(@(
z*XvCiZ`pX;#sucJjj>F*i|)=E$E@Dy*?*5R-p0iJrJTm@`IAhRn#jcFr-_ZJHj2zB
zHp#|hvBuWUO9Q_*QKm_Cy0lU_Bi*{_YO`53X4_b5<0Bh$Y|OPW-^KzP@7j3J#s{ML
zzF=yZ>)SlxB}N8$#o`BLi~GuaD3U=R*Ir~}p>V3Lt6qAs@Fg~8<tuGg6%aqRvCPJL
z8~>B0q*7)%qhVvEjfZC`YnaJ4R@qoBt-V(jP)Jj*HIaNGICOg+CENEX8*FT}vDL;l
zZeG9gsg2KVY_{>4jZNHfa%<urN}nmNY++*Ll;P*snET2eE~N}8?VA0<#&#QD+4z!~
zuum~0ufCQczOgY$s!#1v-rT1Q@aKIi^8akyW|G_Z-o`E)yKS7a@tchwZ2V~BsEuPb
z_So2K<B*NRHuf<|Y#gw0kdawcz=M~^^~e(L+W@$!vs(qb-_1H=<0qbtBTN5m<JNu;
zuQYaJg(vD)jTL^J9k+49#wi{$HvaXOIceh;8^7A_D+L;tQKs(A``rxkZV>xAaE9l`
zy;;Rt7dy*Sv7}P)eC}P3GU{&D?>5f!RJ8GjjSJko=lz##T()u1#$Q+K@-A9rs-oSa
zT(NOgEby=X2Q*fG8l6XP|D=wM8#Zp*sL-)2gZ8)03#xl)cb%^AuE_Y@ve7-D{6qJ+
zbEmn1{b-tUXQr|!8pz(S+~L&NH{o_EB1lqPNYMm}2^q83z2uZgx0X!c9^s`D?u<$&
zkRjDF3EZ33DJ!I00>|ZiWB2k2zUS7xkl&X;#RMv)HLE62S$LHM##|`X_Lu)JqpBrP
zUF0>=nl%%smFBe*sM^7uFH5}ylmr6OR9_GY+@Ap7f&4%M4H9@Tfrbe*O5ouHf)naJ
zBsvx4qmb`UriG;w>OGRcqX|4#Xn&{cL*s<|SNtA9k|shj1-+bjTJ9IJy^=SWz~c#Y
z+E}V>0!<TWmO$$Sp5%zz^Rg0{-dGuQwOR87o=BiY0@(@VB#@gx%LG~_uxeRg`2vLt
z`oC2LEZ-Mb@)FP=Zk^BWTLUGR1=>B_x=lDpwWkvJc2xoQ2(R>Qg!5Gr%%yq#1ML!M
zpTN@zJd<#LeUkT?22Zpg=^)jPg3k(e5_~R!=Y@0@d_nL<LH6oG-{!hMMb|BX?g?~p
z@REZb3G_^$goBa}dL__1fjJ4xO`uN#eG{0Rz?1|E5_ma*XaX^=!V*uv1YS#EPy+p>
zO38o(1`2;g@KwRbM|jxOuugDr0>cs*p1_a<`0iPjp$TOEPkEgST0fYZqlD;T0z<#>
zYY9XW;QM$3Rs5`~!rOn4K?$pR0*0uWf{W${D2yjyB`_|5jt4!%n|tj9MkFwj!!`FN
z5^#i&CxxV#ZzEhaBj6vEz{VxYn+eoB8yKCy8wtGMCcwh#z$UqGF?BhqCb?q;Nhlwm
zz}pE-NPsW?os>ZR{h1%t4^B*=LYEBn=>Uc0yJYbBeQE;vXWV~sJv*`3G`d<pI9+gt
z;5&jd1!pBNTgb|jnN)i>f%oWD0-w^E1m<zRCp>Et_#lD#<WB{bC$K=sQo#=eDPJgL
zk>Fy%B?<KU!hMS`%SQ=(oYq_>q@lO^3VxZe*tb$}mEdZ@HG=HL)<N?#*Cp@?*Lr>?
z%lZWVCwxO%a(Hmr&l1>_!0!p1PvG+eHYaeTv+`2{TN2osz`+DgDB0T*_<})8U{?ZP
zCa^t$ZxYy%z*i(4a{pUZ@O1(k+T|W!RY0U<CwGA~eJ64%uoN~CcZ+aO0(%qqA%P#I
zT648)gnjoVK(ar918L*USG(OWwajPhA@PSU9j2ecM-S=E>dy%rP2gApp@quX1kMRL
zE_g!lq~I?J{3?WMrxG}w=4XVwGOhOXk;-og)K&r{HHVZX9=N7lNZ`)|{z~8?chCc6
zE+ud|fh+Xzn%jC!$W_5bf$Trh@_nD>|4seBlq-KIMI2mD@D(L)^`_u|g0}?!5&V~-
zs2!xjZK;ynN#Je*d<}b{5n@pX#T;~At`v7bv)fiEGyYO^&2x`~N)9SJDCK}vmeLL~
z(!7j=vT0t<!M(!E3sw-kFWp+vLH+Yt>|Vt|RR;kFK?l_wRCn;OgGU_Ha8ROGpuPh*
zsOg}V!(W66)OJu;NF4_^>iAfGE$yYeo&#Ua<|L<v2JUyzz`=vW64?(3QphbvZ0O)2
z$Nk>yrK!api3A!s_@$CUwY9fPKkD%HFK8lW9}{dWIBrqhOi^PmzvKR~n3r=u;`2F(
zd%96L^;eJLfcU@Lr5|_D)WMSuo{~|TIcVV^+u^&j0$C24i|`3ScDy#g+tR_sOka+J
zTp6O3V9mj$^Bmk9=*@S~+Cjr_>om{svNRC#>!l)X9JF=ttb<Mt+BskZSe_Qr-r)~V
z1lGJ$>=_3gxNzY>N5LhxOOtn9UGSWP=Vj0rxwzuV3xeBb7Nbi))M-9uP$^nFc&SKN
z2i+Y0i#)a`(Vd4s7buCxljzCA-{GSKzIV{uK_3SnJ6PtRuY&?Et^>nCq=E9XgCP!v
zI_T%1zk>k|209odO;_4x=QQf}ii523)o--Ve$~Ni40ZeL%Tx1+gGGl5G{XOc@VbLx
z4u(5e)H%CtC#Bzlav>@>P#uIF%+ByN$!J})RO=nX@;*7L%-*eN4l=t0E3eHn9Yh^W
zb1>aOjEm*qEeB&9SPpClqa2KOkZ|B|`n#2+19l(0pxm;u!3K+SC`pNYgoBYnhF$MU
z;TsO#<e+SwUvB2q9CqR8bxO4!>tLLNi4G<?81LY12b0&7n&4n>Mm`m&c44)v%r281
zOkuW2(}D@Pg`S@pmUnM`ALlZ|!8;D#cQDVvOb4@MF7I+g2Xn;3xef}u&=kAS=H4Pf
zM&ms(NZ|(#<}+3f7CTtr;6n#H9&52s@KS}=`%AZ8J}i%tbN9G>iG!sMK61b+TiNvb
zgDp6_J;j5|9jxHQxgRGhocKxy>lpUc1=L*SV70@a56D~NV6F6Jm#JsGH28_=tQVy6
z8_(u%aIn$Arw%@Iu-(B|4mOF+Ee^Ii_}sx}hHG_!wcE?GWOczd2VXGjMCb2Pt-su$
zeAg$)|3BPyqmTS+F5hnN4r%58EB=O>8x(rD)4{jQ$v(kKrCYN~;VuWe9sK9uwu1_>
z{2v^gad6)o%8w5AFjfxsIXLFvxP$!;4mddM;0TSZE;#7mkb^fWH@~k^>%FbL?AxGL
zuD^HSCkIEVJj+A=vjgI}hr5jr`q+9xEdRm{$lbTP;3Utn1}(k{`c66c;o)vHby_5Y
z@AI=t3uhTL2fsP^-NBy@{&H~M!377Gxm9VZQtOL6wQA*FqW`N4x~X~DJC(r`gI66~
zbMOZb#@>PLV|~@u6wnmiWA%KaZhwpXmUO(%-Nf^7O~DfleVp=5o)T*cewY)a@;?s#
z73Y6@*ZaRl-R?NJ%N$F(8@5OiMU$wWM2#ehB~d(y@<~)kqC^rUlkhDlS2l@(YYOg3
zqEr&4lNhz8pvM+pMiSpu%qb&CGSkW-hJ(IxN!**nlq<f)YYGk?$ocC{<-Q~;CQ(I%
zyC>(q+t*tuiONa5T)7X`hW6^cZB0Q{X=Sxq5{E=yGl^PBJdi|#Bx)y7hvP=Q^^+Lg
zqIcaSF5S+rm&C*=xxWqZQGT*hE|R!EiQ{8^6~+h8zn(|=gGn?@;*lgCP2!;>sM9Ek
zhs6SUy`erT(*nt3Ni<Gkh2Ek`lE2I83g=hu<4J-zI-@luH0YIB`I7JpQ3L~mJk1!!
z$I4f4nnbgt`ziB&5?M(!Pa>X#mBbTCv`C_F5(P<QC($yAXOifUM5`onl6WeKHc8|r
zaeJ)qvrWF%N#rH**(8M}U&zmE3Z6{z|J>&Py{2GGW}lpwbJ`}+o_$}=p-#IbdPVb>
zJzMW-+Nsh<9hOI7$0VLj;-w_Iidv^6Iw$dh@aK})_;}XyVwu*yYuEe5B)Uiw<+M5a
zdT)|$Jp7aBE%MGsa(nRn=Rnez)oXv}5S!kURsZE&`rIdpuRG;7AC_me55CN7N#Yew
zynV1=68(iV>sW4pkQR3E)g)d^VptNxlY9?+-k>CgBr#Mh3>L}ZHF=c3&b5o>Z(NgC
zVQm4cp(Mgd7)h9nxu{X72~i92^*o(9P^>k}`GdL9Bw}3dwFMsz&ujcg*OmJM^pIVS
z*Kc7b-8V$NlSCp3Cy8VdsU*fH@pcj;k{Fr9n@POId`m+2<cwxg)o;<LYd(?X4XG}^
zw{^|8f@6}HS=2u+iLpsgfy%^i%e=OawwS==WJ)J7mHAxHcRM3EDT&ER{8=U#^X9F8
zHAvye_j0BsF+GVHNzh>1HobfOlSgv2y0^>S7BiEWmBj2M<|Oe!r{3=-F_!_n>CazV
z@cJ!3{r~*=vhPU~TYIl9m`9$(&f59&ll)KV%DN;LB=KPq3z-9E{zplCoWvpyl*GGt
z1L46rOGM75r9#+oSrW^WSi`)1HjmX6LRPX@trnvP<*Z6#brM@^wO}jD>?Pi{3|g%g
zdoFjKS*6b>+^xfv^-TUGHZVz&_?(N9#HUGQ4pCS(3HeO$`nx&w@W?y)ly4EqHo>ie
zySsUx?HBlhhtj#+o3AKeF)=uo6h2Jhn<RE5(IbVPDeO$*TP}AB52Wy265l8BPZIwo
zu`7w)N&K3`sU&_#;>RR@PU0vdxx~9C$^X!ZgGua_>OR5!f^408C;w0qcV^dPe11ye
za1t*z>BDk_8)s+^N#Cl$tn9pFOaO_)FFZ4c=QAKDlK8!9@Fb6^I{7T@e(YM_*~-Dw
zNt{XIuO$9X;%pM<lDL+{A3R~G&l4<(%SoJP@GEt@D0u9C<${=^gr&)vyv!jv{SGLe
zhQTXITup+6g<~ZSD1UPMWaq`F=6qD9wH6DmuGH<5#x1T(_Zvyv<i0B!yv6Bf=CzCk
zxq__z#}kHUdkPg&xRb<Pp64l)PN7H&56-DqG=*X*9PODm{zlj0DV(m<E!Hdho)k(5
zXSJlXl2GUCSTG~y&bn+0<x()#7L<|JNsU|Z-F>vca&HRr4*5v#OQB*4wNt2*LZuWc
zr`#;6kwTRe_@2OODQriJswu1-n@cB&)kQ+#l(hxatSS1nQn>Y44)d*U%1y}nDIkS<
z;v3%($c}W3$Ttce&gk8MGfLt4lpBPGDLj-yRtn8iXq3XkDfm-RQg|eVM`fTUDNH;P
zcubT%!W#>63(y)@GcyHm3I$W$(S0d5=iPxS2LmYtQ+PaurqZ|KbAgp>3)q?}pW7@2
z;@-a9nGam7CsJsULfaJDrI4LM%M|ib$WNhF3LJvga#QX~<w!_(t}TegB@}B5p2^I+
zc(QA2@$<<Po)XeVu-1*P3{iU-`k53u$cRs;FnfL;-_zJJg=bTs1B?}C*C~bPQaC3D
zS!H40&eHdV6kbfBi%j_?k(5|hK<DePE9ja+H<5G~q@P*q3VNm754eI9UQVGmBQP|F
zrB4cd(>$~%yC3ya7?r~46b7U)Fa<3IJ%v|Ncr}HgDZI{TbW&au9Gt=+A(SL0=MNG7
zP4O)9VJQqxA<T_mJS!yle}u}B6x6gb<>lID8!4D6*eN7Zh^7#eE>;S0A?!jURHHHr
zyAvJ8Erk&&B&E8gquV-Cc%hE6Er;Zd6y8i>atc#;+T<&5rEub;GEVpy!LfqRuPYdz
z!rLh<IH62nNK=@^-LX7Bw61{q>_}wO)D)(1rBaxa!gT3Kg_$YLNa39n#)&d}k+94X
zYlYqCrtn@0?@O0=1!-+w3Lm5}U#iq+M-D_nyxBQ_A@@rPKc(=qEZpK0K2Bj-3QJP%
z3l*29u<DTaBf$^X6_77aVeRXAD=87OLa^fxdA#AQPGMaNpQNxR<=z|l*s?Z-E$a&S
z6tkYmmXZIR48ipHAGfyfjVXMZ!e_#_3vLqpTyQhHb9W2>LXds837Ik0eRBU&_}a07
zuTuD$o41?$f0$XmNnuA?e`gBc3U?n^RL}RqcX6d2^zRn_12>nDJ%R@X_X_S4+%I^5
zM^Hg-q5VT5IV^ZYuw;{>M^iW^{Ld7Q3;8{T^UU+8_e2UOIpP)HFCza{kfu)YfJ*Z-
z-0W$7E`{IHe2%x2^SAecRR0kCe>7bOloZ7lWtXstECLcQf(XLw&TQ`h3oL9PDUy_&
zm!M=tFo6hkn4anBiDVE-f(VLA7D4$aNfcCaR0IQpAO=tr__rU<Id$&2_3Bl6_3Cxl
z-l;1y@k^rg>P%cq@Ly-*y717X|Ll-IEdLMb_s^NQ!EH4-=jKe@nu&jA;>mrUzXboD
ziK8zUvFP8KxIGgkRqzh{4hJyKQ$j_Oin}vW;*6))C$8UG59aN9vWjD^2iMJL$LTOz
zO7vN!w2CsqzwYm5Hcdskif{mt05VjRRdLyeD?Xm4hw>`s8klFGf{KbNzSVGELnRfJ
z$yJ<Jai5ARDyFJ<MaBIps;X$OqJxTRDypk+smN6EfXdgfsHfsV6*X1VQc+h0RPZC5
z+A8X(P_w)}v(qcNy#q46uC6&u!<%@SPB&8Ot7xF2k&4DDe%q_?TZ@NOG-S(Nb6Cps
zu!@s=mB8Wr2^W+{R5X=r6BR6Ka4d&^!)h{5S-U{VQsGv4LL8cNJl$$~R8X#{$d;z~
zRZpEoN{$MzikJ2%{G^At<aA*R6}c)3R1~UcsbaN9X{DmIkYz^{X7g0!OP0KiinhXE
zPIZdjc6o{Xw4;dTU8J;=j+o_N+}K@56`fQJQ884-qbeR#@uZ5LDp<F(iY_X;s(4(*
zjJ96uJEi(OrJIWGl6``$<#_p>WDl;w5O2@J&fn|#$s)Vxr8-|I^;OYNMQ`DK*h?p8
z4E%Eg75b|fpkkmDalV73!803+IiA77*$#UwRxwP)1QpM4Bp+uFS20q>Q=%|}2K0ET
z_OyyoD#of9r((1ejZwkRV=k9*TA&U;ePnjL>U>VgL6U#nQF&IyL>14gctORcrrzgN
zOj0pfDw;Q1uvW>_g_Ngzloz=WDyB$x8}jPVXfM;F<~gQdYn7iV2xKYKRJ^L<eHH6f
zOy?L>EKspf#Y}pXil7Qxg{DGR;iu6&3foUPmu#r;smOb(&{RRwvE|?#<$q0v1Y}55
zv!tVeos<wag^IY;ji^}uMRHU)bvO*R78Cohky$EctC+*hqGFzk`J%Sp?d59nOCio^
z^65gVb?euEk&4$;EMsdjH8!<a#p^069LZmzVyT#dEz=tO^U&EQ-W4j|P_ahES`{l*
ztWxnNeN2VY)XP$)PEEc4W_jOI!OtwYrmrkgn0;HtJ1X8)@t%rx{IGCi@vV(Tx!GQ>
z4t0n$U_GzmIi9mY#YPpMsW`yttJqB6P_awJ78P4nY*X<eM|;Gn#cx7BkX}f(tJtC9
zW12dz&W?r3M=ExD9G~y%^=c<_sJv4=d1{XL6BVDT*hiZy>AO|zQL&d>evz{4Nd7|`
zidc&d)_$MU{<)1s`xzfxUKV|>;tLhWRh&?9P{kqkJ4ZRn{dGb4QUx`?k`?5}|60Xi
z>HUa`YrB=&n~K>cm5<Rkns}F4g?kj`q*Oeu;*1DSF#=?IX|A&pE6%C-hD%1Zy-r2y
z6Iu5=6&F;D&@fWNMHSyOd}*k!;Rm`jKiAZdrr{?QmsI?v;%^l{Gi<83&M>9o3WJ-9
zvqy7&RdJOAqiqi*zji@+abr<qMS0ily}ifz`s>dw>A!PzRNPQ;Q$@#l3J3P53}&37
zFx=&)Dqnq^L*x#<rQ#nIB{U>y_?NDdrQB9=M@Xn~J7#yKC_~RB-{l7Hq;Pi0n&aN3
zG?dnyy;f4PBxN+jQk9Y$ih5-$DZ-guy+}#dkfGr|4OKLh)ts*d%4?{gf!ns6hP^pn
zM#YNKR3#0SHD>_RQk1DR%CgP9U2C$h`!!V6P)kE?QLCom0Sz@YRM(v43(r=j9C2n;
zQv=t95_bCR;ru!p>S}<7BN<h%q&Pw*ZqIImy!AA&7D)pQ4{3N*!($p6YIs;fa}6yx
zNDYlOxHWh*JffkA2A76R4VPP1KXp8ZOW9NdvHoFY{raLT&2b6yg2QhrO18|=tAQ5|
zMR<-NCw_5{(oE#57Ah>w)zDHyp@t$2tu(aO&_+XBrVEa@RJ@?%X`l~tjq)|;VpO1k
zo0lEYw`nx4<Bp7~?KE`I&{0F6skgnT)tax+>(~hWwvz_7!@8X{Jg%XihW;A5Xy~fp
z2@OwbC^?~^n}+UEk^0o^p&?&U`W?$*wrtmQw$oEXFAcpl^bxhbv`LQAd{Z$mh3so>
zigPI(pkbhfVhzJI4AL-I!w^yCkQlLRbWOi>FlVSthh1>)!?}oAUbZve?d2S^_9#zj
zcv{078dho;rD3!NLxWGl7!6}JOwlk^!#EA&HB8p<Jk6*%7w(Dl0S(Uxf0nlpU2{gv
zb1ZW?vo;$q<?>FF(eB<<^n#4!MGY@$PE?^KnH(Zn4uErE@PCD?sbRW?X*4NM{^^{}
zMrLUE-L1^jpweQe3mND%4li5LIl@ful=%wzbD3UV4NVPx4YM`OVRa3bhKPnJH+!lQ
z)L?V7XwLrC6oqD?>1sFihUvFQ6iQ;^&wUgnE(=WwzwwyGjmD2&GQD#(%+v6ihQ%6=
zxxDi=EYPq}ID4ngA`Lm^s*+rqt5D%}4NKUvhUK)I1fQjvb9v$hp?f%_b2ifocG@|c
zl2sbsq$xD~Ps3^rZ*i|_*sNiVhP4{r)$pE%x5b9<$nfZd`~-TPa9WZc%ZtnV8rF*r
zJ)HL3Af+4Wawl>)S>hHATQzLgutUuIfhd2dfpxdhf95N@n|NDnETZK<(!gy?$;V=r
zOJ%DvQL;<JCmIfOUu*bO!)^^<XgJ9I$Y3H9JRth}G{=ppPdC`Fq1&e7&jji4pG%No
z*nDJ;a!A9M8opvUl3ENPjH28!bsDwfmmc&AW{=Xy8qRRxG#uA(LgLIRh6pZMs*_I2
zF1wad^|TbRM|O9ld-^$P^BX#66K`yR;y;$-#D5JJG_2F{u8xZuzSq!M=f8^M2Ms@J
zsHvltj-NDK(vYm9q>i5%b~N13aFYhn@Qa4)Y><mGGUuv>YZ`vlaDPVCW4ur<Qu;oS
z%Z1=)=QRHB8vYO)vUl3yPYKkFLX4<?Y4}^iZ4Gzm=PAl9Mt%vc|4=gDxlZk0QAjVP
z@?DMpwTdsYl_VVum|UGUInHincf?XUO6#bkqq2@NI#P6`>PXY^4O$+b<Fvzy={hoW
zl-I#3@p;OPgUMxel#?t!3Z;;jl?pm4N-yMRHWeK`Rd}E7tp5EvstT#1gI!ZnO-FSd
zHFPj;aIz2R;3w9+2_$cGEQh2_C#ANIIy&4sJUZ&?fR2ZCG}2K|$Ada1&s84MLH%nU
zrM`{^y7PZwynNhiWQXEyD5d-=wXu#zbTrlB(m~}WI;PHZX3Zkr+R<*AI<lmQZ62AW
z%ob<M)}iRg)6s@w)8W<8LPxHsHPg{tcbtK}^P<c)8Lyb=FfDcGmY9L1l@2!ETKXbs
zt0P}WdmSBg6zC|_QKX}tl-A@i#5vBy>E~>LrXznXTj{8yla5Dq4DXswi#^6pJzjc?
zvtj2sJEDt@t~#dac$I6aqq~l$bUdx2hmI$74AL=J$CEmG>gYpL=%6F@($QO{!0LRe
z;=laRT>WUD9HqaG0Xjyvb%HskMkgFd`9ep5p^~;5qGPCzVjUYYhOm_TWtff;I!1DY
zIzDb$hZ5Fhn^b0^&L}phV-goj#~2-BWksIVF;2&L9nXlZCg|X84}FYAV3Z)KljB`I
zSDC2eIo-Jx;a%d|mUY<j^EzJ8orl4xtisYc%1b(4mcjqjwI&zz=WOp3QQ&4Le?`aK
zmUTE&+H<;&8O-XKr(>q*1aw#=Iy4=+4nv2j<Gma&d-UlTc(^88C^IF8SrWetk|e0Z
z))CPWm9-1WFv1+hY-dGI<v8Yw>0sELrDL{^xb8gl(166MHOo?M4y$y|rj>Z(G+)O8
z9dGDZsbiszMLL$~SgPYS9kjq=9k1)or+u6<TW0&5G6`q8OviE^E2!pCW(@MuL`ySr
zU*?L;R#xeFQ^y(|Yo#M@tJU1vU31<NYctF0Z|lx|$U8dtIKb;Hkq>3W_jJ6k;{gLT
z46Nru>$t?grDLPcpZvlXIu7dCtYeFg|LNGJW2=r2bZpnLL&r89%Uac8xcHC`wp*by
z6R#i5q2wdFhmM^(cuzZcp~5jd)-IVw817L%(ebH{{W?BlWYDpP+iI_}Pc-)ma-95{
zkrhW*Oebfp13EsJsnMAHZwT6_b|>YKjxTkb)p1VeF`)RGaY@H<9fx%s(LsfJ<*M@A
z$fIIUPMKz8#S^rHj?+5MNMGEEj2ovUg0aVD?UHF;_Q*TuZ*+XiIIrV-9p}Yv7o;ib
ze@AcO9rYZ=lj&s_Kj`?8kzX8xrL^kYq*V6U$L*!gWrjf=B@84P_(jK6*^IY|I)2r0
zQ^#LAuG0uQ{-Eb@3Uid-Wjv(^dvoVHcZ>|SykWb+tvAp4-zA2EzjfTw@sEywb@1B6
zg=W7bOzf0Kt2Uv4G3t(vyE=G7$Xmf5vb@O#N*X9<puB-n21*;qFi_S2-zStYkZK^!
zK#Jik2V0<ix&d}wRtCcsDC9#*&%xeWsm^AvV4$LbDhBR1P{{!Ia%BVe85nlL83zAP
z%DGJEC?r)4R5MUrbg0%(@v{0ooiii7H4W4<(BHrS1GNp*G0@sTo`JdsV8Cs_W1yaa
z2Mshb(AYqI0}Tu`H1M#2&Wn_XIFZ5Lc`fVEwf_E2;Ug`F%JzBHe#CI@<eM01YGBnK
z=f2uyAk%Q}(z66<RlZZ=NP0~upb@eSC<dAtXl@|KfY)$r%T32d`tMP=7W56a+`>Sv
zftDO<jx&)by-F(sqq4lbbn?lU**0w4Ko<jD4dfdrFwoIJCj*5BiVU<j(1BA<RoWTO
zs&S8x+EmPoDJ8rF@Xmx5qwrA!k8y$qXf7J<aRcm&?nE6blXo-F-9Rq`y`}da2A-rT
zzDj<AcJ}-iI(iz;wRrWz?RbsjTJ$l{mko*nZw6Sz?l!MXWwQef3^MS7ffo%7HZX*3
z8W?S0sDWYwBMgj`riK|9ZaCKtj+V7JYa+8xaoxpSPaDpQINGi90%eSWu?8j@c+S8$
z1LF-mW8hh~zfgJmt3o=`1gXN?Y3g&D#HpK#+2AAt&l`w(9A}%%9z9MpaJ+7>@{)m<
z4VbKGV2XjM2BsUBVc-=5C*MfrNT$iUP?>)CssTQ@9owzUG@u$Vq-)AGv4GB|j_1tY
zRQ&7n1>EmGnHL`f=qdqj3Oc`mxPhPn+d#-bSVqDwIGF1#>qHFD!=qdRUbyEe93(x2
zcAjNmwlp<I_5v4+J+c<9&9FA#zybrwK9uxfp@BsP{x<MO)b*Ny#Rd)-_}swj29_8M
zXzoo0mKs=Q;5`HH8(3~&g@LyWtTFJ0ftAF%E#IVX8@TH&#s6{RzXtGoWBwQ3Y6Fon
z3jY^RDXpwEz=P-BHt>#tJLeUnP+7-S@U(o_K-KS*V%1x*jB;m%va~}1$$A4D3~Z#I
z{G82f(aC&vQ6t$Y+H7EpfvpBUFz^Yz(ZDtX9~$`Bz)l0(4SfGW&PSYb3-=#N{tmjq
zk8bkQ$Fhm$_gVj=N8N03Ldj>^#f_YkPyO8-n}PiXDBNpc+Nr!xO1Ig^ZSrB(%<f9L
z@j1+XMn4Z1FfsdufrIqY67JQF^LTi~Ap@rjoaX9m$of+7E5WY~92P?P5g|tfj|m<Z
zJRx|}fF4Vs+8G094O}wtvw?H8@ZPM8oRNWV418<gyht`ps##)F)_20Ga6!nHNj1rT
zFu<Z8MY6hn#!vLd`Wd}<xmd)r#x5JU&bZ1Q#7lsItA=v`8Phc(o9k!%Dul{MyfuHP
zKNvW)H|vJ9#&#(GQ~1tFHE$YV`_m5O{Y7&f$Yaqh@t=PL|243wdhTt(JA%yK6;i_I
z6eaoi#@n@7cbD>^v=6WNFwKWDKBV~IWswi5KBW0j--iZ1r2CNJ!~H%~^`R_Z{`;`G
zZGL6J@;(f0mS0hL1y<Z#l|@XIeE4)+$$R`hDXk*denRtVKB&_@)qQwCBzcATHGHV)
z1ALhLil>$jwSB1T1Lbu@^Pg3z<S+Ed=rAjv<a~O1Js%zv1q$y;9`fOHPkyEkSw1xM
z;b9*dah&`@<No|6J`fxG@Q9H2Jo!h4=QkC7R&fcbJh<S6vgrd>dE7E24%;InTTt;K
zM@Z6y<}7ONLkl1J`q0mZTpwEc(9MVLKD6?owGW+T7I{9j@u7nc9ep^JpWjxn9mkxW
zo-e#Wu+WDhA(_qcsn(tbpV0hH)dHHdlMj#j@R*dc7E77#5mtHJhc2{yPX5jG^sWg~
zAt#?(tcMuwNuRR;pYWl7={6(AH>bgS`q0aV-aa%gm-B7C)_r_vFNE0NhXFo}@L{A6
z(NdWMeHbFkN<PSk!6Ni#r2kNmKUCz!f*j;9ABHD5jq{WbPy6t^4=?yI%7@WDjQ3%J
z4`X~NwWriCKe)&Gkl!zZWSkGgd;A$6p5<bd%XyAI)7L2_pXkFOcRq(YNs1_$EabQJ
z^cSTr$2P@>mqf_MUlx6;(Rx#T`059D&$8*S`Y_#x_kCFJ!wes0GSd36i1zV8^I?_`
zvwhHgFnoBcMSet@CGknt6!Z%Qe6WNB1w(9PYrZW={jdnX&dDcdiuw=}NnG$=Ddlry
zT^9H-SLE{qDW5N7#M6a8jc-o>f6a%*J|||b@!@qJmiX|dWS9DIv~lYdH0;e5%Y2wO
zzBxU4xp*)68zNsRxJr;}o%*`%dM#J`z~K27|7^Ff7SmcE-uB@gne2Ol>jY``ciETN
zpGIbOgAW_osSn2(G3ft3>|#?sY!MgQ=EH}w^jm%4(tjY0Fqm(b-go%$k&h=!=5vdE
zERyCAw%+LjhxB;a^#A#AZ;+oYP5sn|-JFFFU-&?sJwEL7VZRT1MVYgpK5Km@r3VCA
zmx;;;WmkU5<rZ@29`?;B>&ySzha+O}!%oP`=Sa8(?!}7ZKK#+RHPd+?PWW)rhrf&R
zPx)}xhjYSD`@pq0Bgi6};u{~nmBz{Gv=nlszVqRN%>AMd-}~?bcWVttnd|bS50`xS
znJsXaO=!-vcUd6=7YD$^sP&5vR~hL1sN=`m?`K`(bWF4`@hihue%5s#e)D17tDfH(
zlTD<U=;d<%;lrOk-0<P14}Vc1EvJNuzkRsn!(GY#<HNt)#jTawK78<Nzpa~!zt~hf
z1vzPDbMA0zn~F)!W#r6A&tcsp6Uin@nkZ#DO_dfLD@DxqPR~g-k!Io{6AewIo5(Ox
z(?l&3WlfYbQQgD?CI(+gDsQ5KiPei!AIoU^+os}*9PMkFl>{pb-X~Z^@P5Ing4G1e
z8U3gqt6Zyw2_q|6Jzb*10v9b%+e94`^-Mfyq9DCYT@x@deNEFcC7K!;kLV{Glh-%V
zfWtUlqW|?Wq0e(WUvJE`w0!2nCK{P=nb=jb>Q9}$jZHjaf+X*pQf_l`6BA8M^f{-T
z?O3=dJOA#0oJ`aC)+NitCs!4>iSVEtk04355XD4}5N|@>OvojFO0J2PrgIv|PbONK
zXl-JdiRC8pOtdl4#Y9&VZB68x=wPBF=fbA0rxlrKXQI$VuxC;A-bGdK%WrSu(8|KI
zJ&Q^=&i}n<QRB_U$6n9uWa2RsolQI{rBrCOx%l;95sMx-aZhJQucB@yx|^6`Vy1~6
zCY~_yf{7PRJZYk*iDykrr2m-cZQ>ad(~i4#PxYMbncv66;}?~_Ci<D^Z(@Lnr$sVQ
zaF`$!1_>E#Vu*>MCW;e@MNF?BP=<@b2*HtwT2Gny-`PAWj1tLc!7+kkO^h=!o}+C%
zctS#-Lt>Wtl`kqBp|Uk+#{uOz6O&Ak?8q;oaI%T#W&Gsc5$=~v+&-XWUQ}KdVOdwZ
zDJG_xc*R8K?i{A+luP@s3bGxx&noOoHKCcXO@vJ7bUZGE)bg1yP54a&Ok6qS>V8$}
zy197gnZkpA6^z?lY?-LBEw5>20f)y%PJWsbHqrdqyagr}nuwT)a#>rrV}dmn6~~3l
zqS@c_%ofhlIVQgNB5$r_=b4zFkT?4#dy$FPn7vxK)Wl*FuS;4YlF<j02?4KmKw;{0
zKC6K*kL|B8@rH?gCia_HNoO0HxyHm=6RS*&emtM)O(CmIyd~uDe1*cdO}t}bn~4ui
ztTXYhiH#;UnRt&5IWlj(;QO@X$UJ7RtZ;AxJ@EGyZx%RwvxyJ56O%KynD}Z=9@ADK
zJ$mGRTQ~p3E}rdNG7~%L0Gv*(mLHk;*o3vYn0#K10w!|)hVw3td2{in+;paMIv6E9
z8eq4HJ2Uh5nAmILpP_~1A8jrserDq6m+q4$PMO&Jwd;V1v0ZaMrzK4s<X&Fp8oNU|
zWa3MXgqzXCaTDv2bJ)ZYRy1+Ug!fQZ<BM7Et#M7b=A<i|vd)yq<jL13M058Rh5Eld
zn%`ll`?QHOCeE5TXX5$_*N<#acYniem7aM)@LLn-#oCm7XY$tqYm!_PHInZ|=Ld$(
zHwH4xwBoC3mrVR@;xe6zVb;X&CVt_n?RW8UV^SZ_RTI~^1e*6(+GI#AlIyfX!+a9r
zAExu~r5S!4e$w-&i5n(vn)u5^k{`)_{B7bEl}+5G#kgNO4EmQ=+Fbli^VWYg$ho??
z__m4Dn{#@-nNz}#c0Ig<dU%OUNn46b`ccY{6hBh^DD6k>EyW!=3@YQts)qgMt<AYy
zKPP)jargFvv<5k8ex&=+eM>Qgqqh{loZGsrALaa*S1GT&AC>*M&yNazR1`@i!QpQf
zGEt$5ANPx-x*yZ}<X075&5xO<i{@<^+*ouT@S}#vhxEx09dp<8qm~~eO#ETex_-cq
zW_~pHqn;lFnpS_%kNST2%4aTHSf_!IzSrH%uDj@Z$d878JnTm!kyF^zkH&sH;ztva
z+(T-z$R(0Y!K{S7TZl(6TTt;MCsFG4^RrT?ZVNwh{W$B#IX_zZ(aMjP{CL@q)_&yq
zF~pCdezftUtsi~;=;uei9|eAN@#Cj+jSB^fxFUWGe#tc<oZ6v#sg5tYI(9GB-j5D`
z9s%R(=*Oo^vN{PqD)^XSXTiq>vznz*r>nHqO|ZLQ55Xq{pA_sV*h{dtU>`wt#PKlo
z_hS$T!^NtYIe^RErOrS<ZfQ-{UwY)yjLfSuOHJESOj7K}Fh9onG0u<Sez0_;A5Y1m
zjPPUerINf2cv>16<;Q3tN0-+bBZMte!CvGVJSS_s9~1nT=*M$@JmbfyO?l7yu{X}+
z1{`Y)E=(I4PMze(WIvww;{~bSY>ta9a11Z{!9>oM%fIg-nc~M(Kfd(iD?eVLoB6T8
zkA;4`>c@0HZ2FQPGw5=D7+gm`R6jI7bU)k^Q}=XGs&-J`?x19MP$qOxN_A9BKX&96
z`27fQ)%JU~9L=-*_`ZX3Y=h^8iK!$(KjsPv`w{VDmLIeIi2A{HVt&Mhtb8VI!82(G
zdKO%&<e_{HhxAO^JU{01ey@WvSGu@0B#%87c2wBQ6D_kB`SF?`Yy4PCOZxG;AFKUf
z^#vQN)$gb*@nflsXPKaVEuFQN`>}$S?4Z0MLP}N&Sta-;M=~*$!f_K*-|}Nj&6b?k
z+kU*`$2vdW6&(&K)WI3Ryl2wh^JAkQoBVj+k8i5yt`}tK1|btV6~3NZu-T7~{P>u|
z%PrU<xYdsjglrT1P;k2-b#};nNp|}2KR*tMe3u`e`0<7CPZOH^{Men~dxY#2WDENf
z^3VJ@ApCQ|20Ptsndu<6-o#Xr&Vpb2v7|@ANyfLj?!$f@;bvLmJ}P*^k7IuPoaR1G
z-$?UNjYUj-rzxjI;WSH=%AFxk&zv!*h%J2M$G3h|58#0S&inD5A87%k2XMiUi+=p;
z$8EZYA3yl<yB~k}@gsK@8(&lNsvmq8cgc^-ek?n$IPc{|(rZo4D}MY!ou<irHTUk(
zoGMw$HAalM!t|?<>w>=t@>fdE-)`|IgG`}vlkumta)TkFq|&d9@)vuol>0Y>-pCxL
zTYmgHGUp#ZsL$*jKkoWbGJvsbb4mnI_qdW2Kym<gGL_^Mg>Uny!(V&jFHV#SpmYFb
z0!Rs<UzKX90koc1XGcfn<S#999;!wK{=QR20IRlURSw|30LlhXPO{|#s1QI!;qR<U
z34D}YDF7yFk`tM#NVaMK_b1dStS0=PW{m)91`rD1o5r460n`p)496Tm9gaDGTA!u#
z4*&tw3!r@f9RheTfMaE|Jpl|k<R+;fKm(CH6hOlO9u`h{(*PO?Z!GvoLf#~R=GC2w
zOs)Vj6Y{J8+`=Et^|Gkj8c%irN&q<lcmrrAMQvDDNNd3sg1LgM(lUTn3I4!vcV2>5
z?donDKz;xP2}!#E3WXOXBnS4V7_}8P(vedRy1R><q*DNoisUgtN;(Jdc!GBcpsVn1
z2}#A@TlA2+PY6C4K+gbr3GXd<Z&ZDR_Z93X$gY1ooH8JQfs!2*z*7M{9l(L|*@Hzg
zL~y8JaR9@F3>O?B$QDKhuxqA^WK;m%e|I0~;90iBJz6-krK;B&Cz{U%Fe!lX0Za(s
z?2Ddf0%+6IJu!f11JJ(p)EeXdQ*+&H<qpqtnwlKI3jw?+6`vQ(N%y`Kz{>&n0|*2#
zMTCu~du9rmD)@@vG{IK`m@Z_7Alv-saEhAXnh;&k2*8(+n?lOnPUTOdvx-IETjh)=
z7=SHBc76e~bvI?vZ=(Uk=qEOs*@y=)D}aj@zPB(tfH?tlv(Vkb+yLfr_XTh_fcXI|
z2w-~vI|5i3z@h-&3}AHtuLYc^(G>xF|3LO);jag<B!H#Dqndk}5FXO8JixD#+)TdD
zv;G?9c_V<80TkWITE!joZPvl<t`Xy_zZJk54(y7uEr7Kg^K9?C0lXK$+X3fbj&}qp
zTqimt?~8;*8-=WwDjNjZ$ff``3*W*$zSKp@R+3!z2kem>KiB<g??MVcl-798!bdXH
zp9Mb-U}pgTqk9B!B7l<tIf^2H{Q-Oyz^4K14mbyS><OSru6thqJi2smz&V<Pgokl(
zz6S#MJb*(1e95ux%lbk}57LrLT|66w$Wtf23OI-5@r03MLcR{*u#h8yNB<MLcv#r+
z0C;d}>3(U09?d@$!07;fWJC&k&ji2|Y`+QMTY9E&s+|+UVVn=(y8wP*47|~T$8B5)
z@EwT4qeCvTg*ncN!{2i*{O^V{S!{%7l>8(WFEN_6ch0t^i7p3lg)O||{w09x0sI!g
z)c~H^=Q^E{d5w)^Wd0i99}Uw;n0^o77H#hF{1L#P9Iz<-Ey&WF0sO^4J<#naTi#kL
zvq<{)P5UQ+cV@W%6}%nb3AP?)OIS#<(9!}Qf|4ziv{2hZ9Sfx_l(vvzp{#{67E%kd
z(=DX@<Vq3FY^sGc3lDnS-IlsJ?9R(`Sen<zQ_kW)%ed~hP~JiX3l%N=elD+)h01jM
zW$u5Ed+xJP#lp-{&7ZiCz1^LC_G|aLN}g^93aeTu+L1LO)m_a(bqgd92$IyWP*ZrV
zgygYtgX&s<#UmHp*%t23$*O0eiG|PZxE{1n-$DZm4_SEFLL&<eE$9>7SANT?TQa+#
zl83vXu~d1);*Gj%?R}Y(&bvsyTJ2)>rWRZl9&PQ(w2)=NZQ-vc+%H}8Tsh$)@mS7U
zkSLb3#5oqc7MfYkF~`idu+ZFcJfGg)9=W**`71mfX|k)8h1M4GEVQxEmR(ppgb1-m
z^7AdUx6r{tfrUZ~Z~W~lve3@Ll`Ag$jjZ3kbxn9bi=?B4KelFZBX_dEF*ly*?tR|%
z!!CEuPg$KUJZ_;2o4xL)PPgl>t`=r}n{|1+^ZzpE$}2rAJYnH&%ZVXRTIgwEs)bi9
z^s>-fmi}oA8>=Suu`t}i2n&5J^s~_4!T<}Gj=6?%vbtxWg&`KI{#0TRvuvcY+j>x0
zQK9f`{lX@D@}CN%)zUr1w8qa_!#IAeh}o{^JtHj~TvwX?Zf&eQWx?mG<67(;Wnr|1
zF%||^$ew87IU!>$jI%JFOKjm8I?tc(XDwVDrEK5hqFO7T>)0P|l1cQFJ6X?Lc!A5^
zr)V<0CFXhNvin5~FIku(Ydw6btMX9K%NA%KrlBdB)LAt%eVT<=Ed(vtocMWH`6I5E
zay`>6%%DSBP%UWmUhaqmUdnZjRy>N_VB@)-WuIr!L+Y(?`z-`4SfcsmIrnS6I;@g&
zxiDlQY+<Rz&y^9ecs?%{S=d_Wj#-FX&M}emxh@R;jQN&xg3=tW!XoEbC7vS0qmg)e
z)I5=ABxg{#K&mVhWL+Nd^O~&SVhgX!Mp$B@TBq#&i`@f#h1@2)ZSQgmt1Zy%<SXb)
z7FKeo&$w4vn6st$O=mm1m}R1qyd|1cUL#~JP1?l0!JqSvg>@GHB@^#i_>|+Z@V<rh
z()Gs{Hqccpe8{bLCTkOY@?!oL&e6hVam!mfv&v3M|A4V#eHJ4&gWfioBhMk?x!Bt+
zjEZ=6SZG?m@FNRn{N8%!TurXJ9=PAVlMRY1?y~TS#D_uUvYU*_V9?lOVXuWF7LIbQ
z756?1Us(8jWYT`gekOQ8kfomsDcjhysg>uTg+ms;wD6UMuW9!8-G@1&y`J}bD&Jpn
zQ(;ZaoBOl-n1$mO-mKB`I}0Z)jI}&xE&iAQPFgr6+0*n)+e`Tw$zJ}_L(VR~vGC43
z_jwE7N~inAyPsd>Nv)C1U~<7ixkm0yw0Vt|KUnyY-X6r*Ab#S8;^qoEJMm`=ml<q>
zs2ju;3%@XQ1W`GNs}`<VC=tZ1CGK`f*}uvv-?4C=@r2=&A!v2MKNkL_@nuo|Ohm;S
z7H%?LN%n7U`LXT?e|6I_ZqZRQGD-F)=l-%-DG1cL&CvI?`##G{|G6vf)T@D;-6aK)
z97M?=N(E6mh_XSH3!+RADM4fed9CqMCpCz#m%G?bnv9T=^dS15&LUy5U-od}$_G&)
zh>AhH(o>mL>{&m;!%$D88Yg~VkXL!!AH?3Zo|kI$yHU?wHHg?^cl98u1)a!Wvw@p~
ze;|k&LFXb^Q%Y+E(LU~Fwzg!czo>U1f~Xfnn;_Z-@n8`3gK!7o38Fy|4>8-Suu0Il
zTWA=>4@1%z9v_x0C5?h;Ec_8cZa3$qB8X29XSssN3?fUacbo71-<=kp?Q@O3(;_<v
zUQcsn?G)iTL3o8U3!*v4aM4A_;MIYog=D)vG^C~Iw+dp{Yu?s^BzZz|>$>Sh`9X9H
zqEiqBG<aiAp&&_75bYAYeGnalAKFsPB2MJdAi4z6HHgQ8=*+&ZyH{&z-1UzKF>rKY
zsgJU|1<^f-Cxhr2M2{ezplb!{Oc;^zd(c~PVfD2)vlzHun4aD%h~7c;3G%aW&xYyg
z9RFiMFTK4lO<@$RsqgL|!~nJ_v*6kd4`NUdgM%<9yN3iZlwN(QaP)7<eH#qnA+5zh
z3=29Zc=Aq+=Xs6b6pGzUBZWLA__W|C!O>iWUD;JeWQ+@9d=N*2I7SDMzE%dYimM;Q
zvq4M@;<+G#LD)e|3Sx2)Y7klw&j;}WeJqG+LFYuX7lW9}?K8{!l4M^N<WaLz=+zaS
zgT{E$9FKB)RaSg@5LFj>i+FJALNCdTAZCh$ys?$02Vn#e2*L`2C*}D#-yr-!etD9{
zi#w0@+cMY7IkGh#>&7?LGxk<xJ0YiKEDGYaAR<9TgP0w}9J(vF%(kp}5VOdicQu{k
z^vHP5kVu>x#5_8{T<-#|@(5)<-Ttd=W_fNJLnv=_7Y4z@d2f%*SRBObK`aYmIW@Pt
z@4S@0B#5O!oE@IQBlFnB_1WIv)e<X$I6gAtjUbri^w}5hPq=n(2C*TCjX~!|Vl`Jh
zh&7BnS6pj@crWNY9lRaH=xwfdf>;;CyFvVY)I$g0Z=}#wE?p~lpVPmSwLa+FZv9s1
zZa>kzDTvM7#rJ$8h!YRGw*~Pb9YFX8f)uWt@7*564(`FZ?*EB<d=zw^6m|yjanSig
zC*?c|j`!+3S8-PmpV0S2dAAcN91HWxNU}$=Twl&*Ul99)_$-J63D5i@h|h%wk_)N8
zbWpN~g7{L%SAt&)9u_<z*z#ftDj(-)gGjfX$b3@dB&BVf;sy`m42?{KFyaMqE{Jb9
zydZuI;@cq32XT?B&^-UUAT9)*vj{mOo`lFVqxmMEBj=;X_Y9%yvpB(@g18jKjiB?S
zz{7Tbrn&ye`a|%t;1$7N1g{2hEr?&aj*|Udkov!|g@w*pz4tirPbuQP#LXc73OeWR
zt!-V%<Nt=u_5KsYzd<C~&e?^x>C8bq^|9+NSA3C|e?y@&^Xxp1t%N9$CkrVl$SS3T
za7G(f6_l|-OtFzFWZ(9JG#l;BGzv3pl(n6f%h{-Aqq>dqHY(VtXrq!1p6FM_MrGSM
zHJHa8vbFn!S015Ia=$24wVkspd7v<rAFxrwMpGLu8$123nl@mgo{d^IYTKwILSAR<
z+PJgMx!|4{;wd<i^`MRVHXgRo$VR_gsmmt18`yZr25$}@O37?!gZIp9DtL%<4<$9W
z!Dj*Wy_82pPGJ)pd;}oLw2>ulkYmHmiR{UK;iN0u2GL_<^5~+cKX<t=XDc?EKU`4p
zsN-puy-Ce&w6M`BghxZjwb9bXIvelWXl0|djXpN|+Q_rfhB`JLwb53(VBPjM@)Nv3
zNTH1)8z&EXct6w52Jb6s&v0G+Bdddrjy6cR`-rUjn2l~y<tE&nZ9HzH3x}bmGdtrs
zcUKO6ehTjoyW7s?m8pk~c1^OMu<@jgo;G@kytnQA!d2P!?iU-lt3L0j^|R5R^R@A!
zjR7_W+IZT=C>w*Muc0(lchBI&n1|SCQlW78Ja4g$zkhcPvoYMp2pc2CbWhos)hU0&
z51w!PdU!eJ^_2GH$VYRrHoGR;7-M6s4L%)=voV2-Wn;Xw%zIS&25%Uibw;9S>k4=a
z(V>;+IU9#>7dcODTnidxv6tz2A<yQ!U$XJCjn}1xDK@6s2->i1ykcV-SNuqp-^Qz)
zOT=@eQQoyJ#nWxf5apTl+x?D7nN%B^2z5b93>&@#H*L&5oJwIp8ngu2@+-v|Asb=N
zx7f4DM#M&xYdzOHpGM}(AKM9Zb6LtAkx{@j+XfHyCYd7=mXh-+a-NMVUpoiNFOcdB
zZ6{Wo&dcY9{rRNpH5-d<l*=r5s&y{29L5qGOKmK(vE0TA8>5>jZ`*jo#_G+URW{zV
zvC?)PT6xz>`|$d{+Qx=2J!@!cCHpP*)i#%8Ey)SjlqDV(vCVgE{5z&O$$K{5xA6<T
z&c=FH6eFDG_P4Rg#vaLTCJNcbb+qw;jhbohk8NzTao|JO4#|>yDB10TwV%%Th)e&j
zr%N|Cai<MqRL1{o+={v>srFp{C(<AX@Tra6^uP+)Of>RdZU-CtZG1*2wDC2!Nq#mx
z_JEDgZQTCK^#upeyYNdJ2W=c;U}@#v*&>@dbnoSp++AvU4%6Fh9Jg`8cAkum+BnA8
zWx4K;c-w7u@phdzQ73IMo4wq%d`R9Y+OS4TYM$NbIm5c6JZEj3voU{8);A19HCp~;
z<69f&ZG30rf{h<-=RjNjb@-y~oEz($0?cvh?jHpIdelSCS5h~ZIDhB8WINxc{%qs2
zkSl_pwko3VnpogpPRhow!mr!-&BmNI`M=XpBKgC{pSJS|cEd)_^31<%tg7p|DLNlF
z$*25pkuUZ*Yx<83&#hXsN_y|uxGU9Lg-{}dq!6lwP(6g?5K4wnK7<M(lnSAA2<ahY
zgit2rn3QHr4Pi#Z!jupgC@2|Ixn)`il#~3dr<0ToIpKw?P);<dQ!#{4y8Hf+votKK
z6hh???hAo&W@`<lij<PDsH)VRuctHnKnOKLcqD`-A=C_^RtQ^0w|-c#wqSk1Iw8~*
zf)GCJonKFonh%EX*_hTOObtSKNOT&8Fg5C>WOLNpNF<E~nWb<})Y~+K%n-6f%@x9q
z{%KE2BkmBqqUjOL7E}aTF-HiilQ$FIJcJe@u-RO}mI+M`sdWf>A+!mheOu=Vy`7M@
zA>@ZpApA&1Ht)j=L+JH$VNu9=py2Df_91QoZwJASf)kQbDS0e}&LLb0;g=8|51~s4
z?}xBHgsvfU3t?smY6#s!=n=xRAxsS6i4dL);i(Xw4xuNz2w`Xl#Ubz+ym!cX&DCFc
zAHlvfekE_edwh3QmJSGEU<iX`RD)%-6b_Lr<Ho)!%9*Rl!$KGy!U#@zvg^u$lKefx
zk@TWu_t-&c+@#!nqe9?Yqp>09%^SD#=n$S;=Ncozx#tVUg)lyZFMi9K5W+Jd93Gv)
zw^-EVOEA8!VVlo|Fe$`80J-M-oO`y(Av_<#3!L(K&&wf9p=X9rc55+T8NC!jxh*-L
zz2fFpni|3@AxsN_=QZ>0@zoG`wl9P23?b76+s^j#H7_Hr7J?qaf)EylV8}#*A=pBE
zA($cfL+HET6`&bEcUd9)c&9eAyr{Lh>*AeiDCE2`i-!<qcTB$~M?;7)J@34)=KFBI
zMd!`@tPp0?`73A631MCc^Fx?R<&Al};Ncww@3*_Z<(d1pn@@;~LU=8Nbuxg(+-@~m
zE(>9K2(JrYBDhqLMbB;XtO((a5LSoqR>*ndv@(QMA-oxK&Y|Wth3}s^#|u{!J`r%V
zYeION)8{$SA?F1(@5!n2&OOO(H|6h2zwfd7ugQFQ%NM*f`-TvXgm5&3jUjBJlT#;z
z{oHgRY-Own;eR3Q3V~r^TL{~^mAEk_o5pcUxcDf9kI6a0{A@nOGdP!{i59#0dzGJX
zBq8hxVK1jS$-SHFNU#31Dih-gBM)Q6K8Y2KMJ(c*$payL8N%gX+@DMKix3WmaEObw
z+0$7sONF*`+`VSFsqmGkeJyx6<UI25_VSp_@l*(>g&Y?=!LbRsTPBH@q@$^sXF@n1
z!gqAt5YB}#(n@>s$Lwz;)bOJ4ErnVd34_dq5Eu}Cpp`~>E{5>Egp>=vC9{a~AEops
z`iYRA1uqNU3nN!UxE8{LVbl-f*ATADFsg;|n~=))jsOecj}ZP0;RY?gGOK(TH@Srw
z&%;Ox<8QjwhAgJrLT-idPeSr9ouN_zi|!;OcZKlzB{__eVWfwV5k{#nN{5jacG@Wu
z23;jJ?A#!wgq>^I-otLbFyUp6F3l(C;_Z&BlntX?*g4(a^?E)ZVEI(Squ4pN3Sm?X
z!`DBpQW*ccoW;${7XtT%5xMTJBKUOu!u!Lh8V1SvK50zVWsVPoQ6r3+Vdo-VC+u8V
zY6)kycG&Tall7fzO<gHM81;lujaQHcVLTMZ6Jb0lO*IUoc^ECicsPtkVKfed_fA=1
zxWjlP?7Z`75=PT7k1ES|g^?M??keuf$=TeVylcINT#q!86XsC@$QHi%RhJURfa-%t
z7-X7-v293N^=|IXad+Y4p4>3_zNkwW{jYgihS4gF)?wteD$Ea~KuDfon=sl6VP7mQ
z6y83J4q+7CQ)^Y&P6$WXQOKiVJQhZ$M5(7zE-QAH?Bjy$mlB4fu3`QRU2ZqQ?t(o8
zSwwlyFnWcdhhc=#JB&VIj16NP{cVxAZ`kqMr?`|HKj+9=AG-!|-2<+y8!ZNgLFBpT
zgGDkV%s(W#hth3g-eQqZZCDt?6MRG%BZYro(ZeFP{Is+`iY5|5$(XQnX(kyT#)L3l
zqQ8al4A(l07sAe!VqzG4+b}7N$y~Tbp69~Oi+%nzhc7~(5A$FDJS2PPxv4p4yX!?7
znLoT=!Lzw_{**ALhcScghw(}nd`_H31Gdh8mBXIzTEE@71~t@*X3`WB-C7t;wic^W
zokBijv047%fN|azMlcLsi%ojz=dMYE^8H~1gj;l&m3jQqjG^1+ehDK?uMT5Q7<0pj
zl0)I!w%K9Cq=mTPEWtXBhOo_)i!Q!tnHR?VFcyTtKj@qvoYT$r@+N_I?9BEYlJi;^
zi@9Vm^p4^6FqVXIJ%ZmNSQ^H%Fv>@G#JO|LT^`0S;-BOz!gwQ$m0|w*5^r+8VeAWI
zbr^4j@nIO-!&no>+A!9Ku|cZ59mczfy6=RsF2M_W6up<=?{h!47|h0*Hiog8@-Q|f
zO7HyQ{G9k!$$r2<)VM6O+Y+TMbmu49c1ZS<Fg^<7<1lt6N_PqQA9qSQ_wbO@{)UE5
z^-o2<TX2uyQ`2(xhw)h$C&M@u#(^+Cr-OxYSW3ST{4$J#LJkRb+UguJ&-9gK%T7)r
zKN7|<$&w%Cp8B=Kcg>ygAE%!r<aKU&PKR+OjPL1kB0L+$w_%(YelCn}gv|Y?H7kCX
zsC6-n3&P9YbbiRLS1G5vA4T%B;7@{=1S^kqUS}~~mh2UV{ku+US0#ImTas(d;2*|6
zVf-7$?;@wd%`pB*@IS-2k>DBLaxDFeR{@dSO2~IjOu8M$oiNHokP^XNk(U&=DIu67
z$hyf9oE_*~=u3&DbV9!TbW*DDjD#dDf^^}P<|nmW=KL^SS;>}*VEw<&9a_Z*Dn-yS
zf=(i@Ecjpq_X(*I;d7Sbw^bvk5kbues!6uGAmtB4;63OZnZZ;`gmojREu>CDXT#m9
zEaf&M){EfJ9nN1H>qpQaf`=k#7(rG9?g$<hg(iZH5_KC3dE{QvH_kFOjlh*C&EyvQ
z#hHaCg6s&|M9`L-If9%BT8fT0q1hsWW(nS0$ieh}xkARQO6uiJY9+jNLMJbR5#p2i
zB59Y97YHd7EE4Rx$ytc@!aHzMwll~_BX}$Ve*}RDI!Ew$1fwGu6G4{<x<=49f_|dk
zP4G#<?t(occtXgTi5YB%si$OnMbJBfKEh8ZP8W?1RU`I~pg4kIA|DXJzz7BjA1pW|
zf+MFKWu~FDTa}jg`0xmx5`__hBL%;&>?{-0(-FRYaTbfIOLq0K5sZ`U^a#dBFd>2$
z6Q$2Y@LYmF8^Oc`ue2;_lJLn9JTIhuJ7*X#M6kr;yj*%If|nzhB1NwVP8DQP-C>UA
zv<O~JNDfX@W<)SkvT6i|5KT}Q{N+c-2bg@4H3c85l4L~?j9^m)n<KCz2u1K_1gj$m
zM-Yi%aRjeN5EW(Cog*X`K|F$4!e<MPUz*O+7c1t@jbL5`^CMUg!E1?H3nN&R;L6pU
ze+KlYa<#vl@hnNm-w?7if@Kjbk6?vl$4&ZgU9@KIl_FV{&_A{y`K<`nMDV^y)+XfZ
zguETWI|)hd4QI*TmF#;Fbid>bm1(_5HVAGM^tG?PC4#LHoQ~j31Rq4OErQP?I1s^y
z5p0iOR|KC#utSvD!p;ajir{0(j;inUa{qhIE4BZLMD0=MQz82VcSo>C$n=bo)Y;1&
zy~Vkd>=)s#!zI_YEBko_Ur6>?1P6tD8NpXV4l&$qFGYQ(uj#QOBtIO1Dtj<}TdAWF
zeCf--r*k}l6A_%`-aq=^d{0T0dq?)1jo^m}evIH;1m8sPtrUGHcs|i`j}J;+h~T1R
zmC?!H3;DB)b1h){DT2!pT#4Y4$bS~hy5d}Vei2S`ErP4Uw;d|Et#!(;!XG~8to!c~
z{1L$;Q8bC-&xC%}C|GnOf}0Wi6~W&T+~TaGNEP`%jP?<f5dLojx24t{!TY8=Z89ZE
zX(_>E!IFXldOD6&T6mc#o_nnHys6dGqDYUTk_cIv5k-07WfPKeQC!*M%&0;_QZb5F
zCmefLPDt*HqDq3_FNE)SsZcG7>QOupMU5zGiu@tLT7vbWs4aw=b)u-7;1Dw6Y30F$
zq`r^_f}eet(l8-^SV$wm#)9XEB{hx06-6|PSQMF2WO1fa<c`7<MVBbLMv)zb5=AGG
z=S1O+A}@+Il5G}6OCcOp^C(&f&rL|0)^XgmRTQm7k~Q18qO}!X7)4PO`3cQ}D0(e(
z4Bjpw=^&)Np!d%b9TV~&dOG{%QOQ0QMdyV4aUmbRQ>|MR-J=*T*&b0mA!I-lPYUTP
z*puBw(OWoM>k~!Cu+wbz?%G7Aep1w5@I!afz$gYqF<7!g1&0Vyvwh{XV&TIQlBxsT
zBcd27*{7ly7sdD}o{nOaNJa~e5xm#wSm6&;a(rMy6wgYQ{23u^pM0Y5qkU2)MKL*w
z=OsHmiWyP75XFm<eMxX?6fX;5ttnB=gJV^uS422X@Kr%R+s+hXM&XY_6|P003o)Yb
z31Qvly;F{-*16YCAPQULmS9k@?u7q-n>Q3iSR@fa{!Ngz;=)OOh+<Y0v!i@VfVolZ
ziDEBD7{&Z3-i_kDC>BJqFp8B?tcqe$6t6|GEQ;k)eX-z@C|(!x#Mb|!%2G<U7N-nx
z?iN-^(Hnw~_o%s3E{<<Tu{w%(L`a>tqF58fTFGu4pHeW{3BqqDO7FTn>x4IoI%a=A
ziuF+*OM&fCY=~l`6m1pUB)B<>{X_q=@Rlh0oyuwRfn)6tqSz)1<cn81k{wa(jN*SH
z{7CR)!7r*gBi|LprwRQ}gk&u#q<lALcb{{2v5y@^aWsl!QG6D~fhfL8=zku?!Fx?5
zBzMy49E##gs(q4DcUQ7?zca$GrS!1ik%Z>^Z@P~QKOM!HC{85gCxx66{G~+p*(lCM
z@ttJ95&TxLMX}TJdEq2u-}GFF;-X|PCMSI_B(lR<sUM^GDT+%`{2WF77#hTInV~X@
zGBKpY@Jkd|qxd(9+fiJL;#WraC~ipg>rwn3<u8FaasD?JJ?pe~F?GlRxj9M8FMU&r
z{)*ynA#H0U--_a&C~l_xw=S*cxjOyn+#TJC;;!hFilIadNiihHP%`GUeCq)xXcNzE
zul<25wMCla?WLut+<3>gQ)5Vrp-K$*$N0#Pj2J4$P$`D8F_ep;d<+$0IQnqvth=>F
zj`?pd93SnFX5Q4w($0N?lr-_AeBIW$SFal5c|)iZLtQDV9z%^7Y6^cK2F{T>wIo|x
z@Qa0c6>mBdY5Ss^2oXLgSTBb6k{lruC;m_j4P$5(L+cnGj-gQu*)b?FG#2HiF}Q?0
z5<}%CNljvi&vkWNk(n7oRt#<_Vml40rk&XSUp(~0&_%k=k<#Wdw1~kQL$eqj8JE(!
zoMSGUE;muPrI3dvCEw`mtU_K4ZDQyULr0Of6)cJ&KZXL~Q-&lJ3Ze3uvH9&{XdlDC
zhECl!lajr|9nvX=$2p7`9*yC#7^bZI&(58tV(u}eYYg3Dcp`=;V_4M4iRay8=y9*v
zKeG2-%bH%=dE~S|F58piPpi{0<oHsb82XCNA2IZcp}+9WF$~}UVpuNOL4q#{4vt|+
z3`2#p`j{AsV;Cmc;W0cVWJIELWDK1~{x{C2ML0@ubPT8Y0U@_c4C6#HK8DFcCdBYe
z49^Ou!gDc9Oz?H{obgYR?50k6&nM(B2zfDvzxFyl@Ump5#4t66S7MkJ!>kx)$M9+l
z(_=7W@W(JChM6%Ki565Lx}YYwXigEEdMP>8C)t&Qomm88up}FcAsB-#JQ71l$XhQY
zg@sfMdwv}6Jj+KVd#<)}`&lQ-#bel8)>+CqB3}^0LLqZwm?vbu;D?E~7K<diG=|q=
zSS<YY7?ucOBj>+zynX0S&oYs`*u>dWD}=uh!^#*|#qcKeGn0E1r>&0Rtr*@<)LkRw
zofy_8ByZDD+5fH7x)|O~$lnvPt#$T#AsYlYCQ3Ikd{vb97%^;(;RBI>8pG}wwh8}G
zaJ%4+7(Np6vEct=*eQg=zPu)7SAu^cM1RAv*q#`EjNvERErxwD?2qBI7|z6SHiiQ+
ze9o8?!!gnSB8EdTd@1~(V8s!RslO6_SnzAXjk{b&gs`;iLD%sFKPBXZ;7P%!MtV*Q
z$$UgMcnsf2_F@d*3SkT1#c=+fP6g++)rEw-_X|niC-@IBWJ>9!gyfo#pLrEXNUrcI
zApEKzM&_}#Uxi;!==>JL@4`<_ai;cX3^!u9Nw=pn$DzjYx0JStOGuC5pBVm);dTtQ
z<ERtIofz)MaG#Wxh$AVE)Hu@ONRFeV2+IhTilej;cEM*5;?$JXl!Rn!+m!S;GUBKZ
zN5weGCgkPgC?~w$u>am`b*YwADN$NEj)#vs4{=NnZ!1+Lj{BvkY8=($ctCiyIPN_$
z)rg~}NNUB=w0rdfx^rzRJ39H^b5Pwl5JwXh#Zgbx9*U!391jYoW_=+I1P{8L>&3%y
zG)|N@64GN&@*_g}%CnU#j?6e(#E~0ERvhj)a-`HFs0gy1>^SB<l#{pHxvPJ)Rk}Bh
zW^n}bQjT6pZl2J2dbqcx@YaH@1ocz@%{?!U@*g?Rq;2EKkE0-t!Z?P-F+7f<INHVW
zL>y1X`Ms;Nf=pfF=nzN8I6B4gXdI8l(K(LYmrMLK-En}C_c?eYxAfx){dt@7y2jBh
zj_wIb4<W}sa5O*3Na`6!uQ&$AF({7SarB9!zbN!g==Y2B_Zv%4`MF9?l>s8({A}s8
zs>y?e4;36DSmmHIuVUf-Iy&)ZL>wdIcqWc#Mfg-4V}v{{I4X|Oam;U)^xgf=nm*Vt
zX>1(h;utTbluTgtpPb&ARvk>47{_yQycEaFaZF0+yb#CaIG&H=kF(BmWxc-6IGJ9I
z<J%GrpAyH^IHo7`Uy0+@1fLeirW|*P4_$vf>x_0rLf-CRk|z8uK|Ky54qqH*9CPBB
zD?)!9b{rw$0YQtaFC=NVbG2m(OExYT5sV7P;{1;l$8BawmSnb&4j<Q^M}r7|BaQ`e
zER18BWEUkgUl;P4;9|k$&nruWEEW9sgyZB)%O$%)u=BE%l|ohtz8S~rI4aNjZ=Ai>
zmtGUc+Bn{h<DEEuh~vjN*2VE|9Q)(=EROf$ct4Jv9CjS*<M=;Q-vJ#(^}fB3K&S~N
z^x{L8-OYrWgail(0TOx(y(}Pzf)oJ}RJwv7LS|-nc6Zta5UGNQ(t8mp0#XD8ML`Tj
zihv-+@0sf_-}#?2=RME7bLY;zZ@YD7Hi=Aj<={&JHVb+)`+x1lS3DJ*ErPNnTWLl4
zc)I{Qa<Ef?m#;Yb-7RpJ9{<zbz8t>p4f6Nr;D7)Jb8tw2dFz~p;MExkt-f*^_iqHV
zL7@Uib8svNKjh#-4vy#GL=Mj6;A{@Q6A4b`;B*d73e3CA@eK-Y{@=5{7tE_#!Z`uX
z=coCuXOR?9wu?FVF$Y(2@T<7=Qw}cW;IhEoE*AJX2Y=sm{UT1spZ?#@u~8MAvi-&g
zCiqu#_@=Gv)?5D@qooWk@J9~va_~<Mp61|24sPb)FB)(TZsp*14(^G&{>;Ih9NZQ7
z!&}a{Eb3EdGM2{=zZAGH_*L)y&pRH9)4y}@NC5deM;DLT1ms|Ak^kM*@UH7w4xZ;A
zMn(}CFIXyudKuBOBWjn70x}B9_)j3@l<pAo-xCXo1mqkj=NL?38P@KEuS+*5n$IsT
zKrunrK5&%~pzw+cluw+DQZkku!14nqEz{(XwH_VUqpXa08Ru>MV56Lj@-o&1u|9|j
zGAhcb<wtElD#@rU<81{~6})+&eia#0cq*f+?3`AUQC-GMGQd1#bd*s;Mok$_Wh5~N
z8MS42WhBU`Bcovtsh*6NWz?0C+}GW|koT9`Qhgb|o|0RJN5&g3JWLaH*2_ywz*9*^
zB5#z@h<T1EH6;|?fMs42eK*hjPoBH6j2@ZsmlanN8L5q=LW#+zxA<O5>zFJfMMi5G
zugGY|OEOx>XelF2MwRaIGX|7yF5{;>_r9BMK4n)hab(x{Ls{|ZGFr)aPftGCN;<yQ
z(|3Z@Mn+p188X_j)}iQc;-z+rT*r>bwwKXCMy3pM66Q$Lr+5c8NTf7A%X8P8klIN`
zXBi`8yegxMjIJ^U$QUT2n~d%<ddtXWv1PbNM)#D_i()V8eR$f-&n4CCAx&;5wSMUC
zBcrd3elq&Yh$=6=TReGd*#t`F)X?_1r@fobCV!LX9wcKhMJHpJjH6225E*?2#Sf(x
zihDifrAgJLr9GwLGJc*Px3*6_D@#5rJ5t6d8E*;Qy(VKcfsAo7UZ?P7jFB-`RI1=o
z&$#juYj=5zZ_N$&t)dBcDoEGv6do^Qf{cl>^W6z%$g*|nDH$I-DJO|MC(AhAJBpup
z`XN!8D&rlQuK?hVjA=5a%LvK{$#|DSma$Yuj*RzZ%#blh#$4tc7jtZAROPNwGlh0$
z$(SwU$YrOpr1NBaAY(DDdT7*#!j=|@Wb-MdLf%_-5=dF`k7OL%oVrlPA{mDpO5}Vj
zW5rn)!6!0eZ@8C;yC{&mx9ZC>6d8UQ0ovruC{@PwbFNyM@gtr}ly=w2<un<m@0J{W
zE_T{S*{ow&hAv}+jEyo3876a<@hLq~hAkr^BbU}5<DnTu-*BhSmzK#`PI(Gjy|Kl2
zI?v7L%DcQPWqc-Mjf}MfdF~~>y{km2Rx=LVaPB=`E^3{OlJyckm$6`_^yplb^>n(b
z5^cUpmiN{6t}kS4Vg;GGj4x%BIOy6dW1qNvvy87OtJgeV3%W(ntunSTs>FJ>%h)Mn
zmy8{Pf90c&Ovz)nj6H%=bE5Y@&dCy<;rlaL>-{3z1AN>B??FKi3F>L%iEZdPBI8>b
zXK2;6Tyx#tqcYSE-cvGY0LN$yqWUMq>34#j6m-n^QWQ(M;oj3Ml?;OJFL_AM$~eb}
z#56K4#YH8olD3b|xFF+qA)kx1lgSxB3i=Zh$ha&pnZF9~v!K5SdPUI67n6APHyKyO
z>9zmEq%N+@_#@vQ@?_k|$2Vo%l5ty{Zpw(_;TVjJdotQ9=%C=fjK3J%6x31hK*mEE
zPh~ul@kqwsG9Jr#!XQwr-QHnc-|6YZhc|rEKQj1f6f@7=@%O@XoaYSw43!FMDfm~0
zOK~jWNOq|L3JNN?ywvmPPEwSDXayA&R8mk#L16{O6_ijAqu{M9?}$H!7E!RLdlYd|
z1;qq2W~*;pH!nFQ#c5du@d{!ECNoY!&8@yt3Q7x38A11Vankc>z13GPKV^9Z6$IX#
z*prtk=ku!yP(^{EM3Y}lL3P0yS2Xb@0g#`vh5&h;y;St7c2a5uY2a30T?O?Nq$)^L
z@G@(6!(Cs2TXC9$51vaN1zrWs6z8io2?}yk+a?Mu3E|`xNFb+y;51awNI_!-C+fSB
zc)NlY?|GUiXezE=?C)g`JW|Bz)54yr(av{r__%SkT+NwSL2CuCh-_ObNLMiJx+gC#
zrT<!~m4XRnQh4NzO}7J58wKrHlGEO{)XPDM?M{Y*KR2ZkJSitV2t{Qo$Wky$!D|XS
zD(IwOu!129{wWpHSwSxay%ls(&{aV<1>F@VSdClg(ibH4P|%Z?x=1f(b>b<(yzOnX
z6-?ghW5ajgVLN_FuMd^(^7a+9pP>B(9iU*K0K7U#fXFAVq}akk75Eek6Y?y4M;cB!
z|0&U~UR9j-ZiIqXWm2Zh>^f4x={)z?brR`l1+TNp3MMLeL%|pY54%K-SFo$6q>gis
z6*s;qBtRjI6X3^DE(X%y^W0ss;@?uBXT?tvk{t1imlB?=V2Xlc!xJaY_b~r=C|hb=
zMVgA~3f@(4M8UTT-c#_t0#kvdV1|O33Kl8&Sivj>vlV=(V7`Jm3g#-9r{DvYuuuXs
z|Gb3rh=$P#G?-7e`uayFEKu-~f`tkWT2ULe`qrNIPMIz7DwCa^p1oMXCkj*reg&To
ziC>~XR-mvJK4~fCmenCg$STh6$##5oyu?aTv%L4+A@KnPny7w|+RSs?4>I2W(;ZR}
zX376_^UxhHaB%hPI8s|dM8OsXTbaLtWeV0RSf^mQf)xrrRj^VRJRiY;K*`V&K2tb_
z;#sX=m3R<!^rWY>hE^T#!C3F1KA!aoO2)+$)1z3bTKA;Sslmjk4Z^B7k_zxeo_mvm
zF9qH#=vVptuLa0{QhJ+$?F#lP*r#BJf}IL>GjuTXw^CcQ@-Rm2qE+|oeD9%@`dKpD
zK9-Q`-ml;Q1*_l?HCRE~)kre#CbLDzi1)BO_vWS?X89GTi*js9f6}AWyMm_*o+&ua
zS}3@x;F^N(6r5D>gMteRPSN%hoTocnE=4(iui%U@o^QAMZnl!n()^+lJKRY<$1r;*
z^=kKyLz_4qfQt%#WK>k}vx1>Fy70#6l2Jb?{0&OfB?au9uzml9k4ThWEiYYRNcl|4
zE1UAGg5QLx7ntvvcgqthnfbed>k4kOvI_p7zRtwnqUCpu%2U7`Zcs{A(z@#{Zt|{{
z9s>GK(Q{dM6x>ztSiuv;>BQcna)XJqvHJ?@A4$8k)%TaE!UGmw0N(XTfWHNOywz9h
zBM%MiALf(i?%OKyaj4021uqnoS5ZO5zY1I`3aBWk;%Toa8U{7KCObY#MYM`|73EYE
zQc+lS+K7^>6GLKD6sJQ?@fH!M<P=p=EFW(<omoO$&F<l1nphQasuNU8sn9A&WmJ?_
z9ic6m6-`P`S;3Fr=A)LkG<8viw7rTdDygWeqMnM%DypcMq`In#N3`APxOSkjR82*7
z6|n`9UQ%(Rwv@8S1r-gq`D&=>u+7J#rixku*A}#npu@zamsQkPk<8mW#-GpX>Q<4U
zBIi5r?dhF7DoDL5e(IM-AgTOO)S!}q&WS9~t(Fb=2my#2sc0;4lYCB76-fefl*9xn
zsuSy)vG8#N>UfgRy_MQrMGF;&R2){(QboFosVd%4(Mm;Y6$4caQt^t4HY)n4=&Pcw
ziVPLKRb=zIJ*0N3)1%9*oY<aqQSqX6VoJM|Ochxw2s*0hDgbdO6`cj{qM~M-BywU}
zHSd;xwY!QQ0{6`4^b(*|dx^uM>btVLv`U&YGO-^^*dxBbiUAbV(PWMh7$qK?sZ2u)
z9IRr9iqR@wS20wDPsMN*BUB7i(X>_qEB-}WZ<RT*tp>!<LZ&{E*l&MT#Yh#5?JEzq
zAEjdH=%m*u`QeEKZ>SifV!Vn8DoRA9a7Z;)#hWU|(Fg}SV;??xSJ45)6IHyWVzLVV
zHs2%_(w?@y9^QAi`3Sr#`m8?Nb&86&X@Tt>Jo$F=G-4GCRD7i3U20RsTov<Fysu)0
zirFgW2>YC=I^#IjYu`BUEEVfkB+=7p^WA<g{NDSCTfAu>s7M?VKelh_4=Ig{Nvpm}
zWwf8qk~Ea$NajKni&Sh?u}#ItDi*8Q$ZS=7qGE}Ps_D($ojNa7fvP=2D#A226~TyO
z$+8MX*a@*JfL}#G08P+f{?(1!d@Pc#Vl{p9hTBkK3Sg;NE`Tj4FGW=33cM_zQ~SG;
z<gXB?p9;E?9-V)66^(X^hY5JBQL#3kzfOSlDn1urLq30Iov2MJzEsh^hqpp`X)|3o
z<o-&<*8+?i@7|)K)Yn}OZ}YX8ot6+vAM>O?qsn#_yHxC^RX37$sId2C?o=_Qr<Y)l
zioGfhP!tW4=FamxzAEig(ICrvrj4{;fIez;h2uRBGGra^>AKhR8x=?B^(t<v_*TVH
zl^@u_Pb!Y7IIiM*6=x`%*q9S4zGGy|h+=<<nmwtaQ%=&st7)fHke*iY+Qy*-XH}e2
zaglaaD(1Yf&mUALCUcnCSgvv*KeEM^Ph2~$9XltNR9seZMa8dFuIyUA-SxAIU+Aa%
z8`0D$!$c$c9ohApimNKF3D0davNP@fcNObjk^Z3E;*zh^Ab&_A$P<NOG3s9Ha*M%7
zMT{Rs{P>e`QpGbB&sE%2aZkm46@RHtlgFOM*4I1rdpnhnd!S<b_LRpe9x|}>@jO!b
zb}d_w#0z6QEB|r-^NQyQ<If6-$3Fr*Rbkvp;^_+pf5vt{Hog(%@}qzsTXPbbp?cLl
zwWh0}A5nh%*3a`xv#4l4_V)IEbH}}OfQM1Kupb|;c2()+E$T-xKT7#g+K=LXEbA6u
z!jF=Euy{F5vts>D*Sh(!)Mm*&BRl%UF}H0#I#d}y%KA~mj|-<`<NYY-N7LzD(i^4m
z4WROVRPdvsAH?nDCYAiC>_=5U4i)iK@uT1~_mu%9YZdVDv}A7SYJy+gk4p&&F9}RO
z1n|}K@X<B>h&+y4>+#g_qplxk12`8zJwIOd<EbCd{HX7T+mAVZ%=N?Lhu4n*ehl;@
z!4Jug3_sfWk?2PQKhphZ<wrw53YCg!;YUk98u`)Kk0yQ$UnezZ4juavH1#8iwHC}2
zKT-uCznLHMGKnDV|8QvDrB}42tT<@ubKWU%Yd>D`qm3VJ{ixSGi2>neyu|MA%T_8W
z4f5$QslA^slcJj+-Tlb)Bg>DDe*AN_q_VOTCuf>(Ys-8(`O(>rVHLbx{3x1HE=S4g
zDo$T1<t4L+AKwp*@99S`KW6N4CTDtcwk^SVT>N%lwx3_0NbVyjL0>=m3EV%Q^J1HC
zkROBn7~{uSKZf`*)Q?eqyvB;>M)~|0;m50doZsnh^q<giI0d`i*Xy3Q!E9+HrMlgB
zrDgiGe>@KwXR=14{dnDvH~dcTqDyoFgM3n{zD>VM<E1zK7{?O&G1HIneoXN5&u*AZ
z$@Gv41iTadP7Lh3pxj$5z;<79@nrTKrud!y$<*z>xBXz3b*iB62+GrG0!;Vg-F(h_
z0=zHisy1a=2BT;EEI(%Zaqy^@<)?Or3`&~k#|M6F^5aWdz8~}b$fdRWvA~ay{0R9G
z_G6(RoyNs3^7G%RP8(fdu6MB?pRoM%ya7L!__5RvzwihaJBK1FFMax0l0_}ZQT$Nz
z@rtvq*QdCDTG{DlLZar!s;IP}pvA2W-4BD_(KX7X`(%5UZ1?HqoH;u74J<$O?LM0}
zFF=uU-Y@ESm;158kJWyx@#9k=9QIvT3Tbna?KAPjueSSE37;L@C3~&7wBC=;MN!xJ
zv2$ltc4#-yLCQ-T{jjyPq1D=*+V1;;Ht+WGpc!xW<10VT`ElNlul?BK$G3hQ^<#Tn
z%vMU0F6qZMp3-iAFU%>39e$_x$YZA;yZl)6fp@o{dj#Dp=srPtX}=!_@^P&x&h+eI
z8s3K~(K}MU@#CjIq$7g%SelaeoA;O>i!GPSj6E(Yd#$$j1ih(|^qn6oOD3Kal;D&f
zH@Evv(-8#cjG%_x_pAUno@M<&@%r&ALzW*G{rJ(3%YOV!yvci~ob;2(d{nu_OMWm6
zGK~L16J6_!c3G+`j1oJ1ueQm|N^E}Bk86HB^y87AU%kL}KOXp<-tQlN<oSUezMCxk
z1Mdx{Y1;k9-X40(wl$Kv-x8N@3(7Qq3UG%GCBVIW{(S-dVt~r>G8wJt-b@cOXMO+n
z<FOywbm<9$0}CH$Lfm6t_X&%eEYnk-`|*PQ8^G8A{`JEZK$8HPa&KG!1p}xYK$QTZ
z0*DTvTma<*C=|dur(z2S5EH<tDeXr8>nRd|k>2h5w3IRdC&(8KpqK!~1uY>c`6UC0
z&Bt*8l*-4Y19)|r(;}A*pi`stw;HC$2e7PR`o8bFebOzeLI77P6mF!sDh3>PetAgy
zN&&3*MX}|r8bGxG>N1Q6P(6UxmPgeHV2kQvkzNXb+xs|+yZAy16;YFA?kQzI%B&SY
z?EnaP)Dd7*Mhg3rakX482T(r%H*@PD9r5(_1Td$A_f|WXH^8k6Q3(M^0VD=sCUk8e
zC_$SJQp0@QNPxzIM!D0HSi1l+1IP*>C4goDyb?g008#@;3!r5H=>dK>)d>!))Tvbx
zXH#1QFymAz0d-g8ep;)5GgZ=B)Ouv5(-sdn=xQ6llwy_I1)Ol2!JK#a?iWww@TYwM
zU3d682pSxe*^!bApjQCB1L#ccm?gXLQUJl|G>)A)aPAgBjq*~n`rhsV^awZ(xO1Vm
zXMo>h@zTpkvjgZ8z~}&851?-V{V3i5-`Y;<Pi2*Ndj7)$C>xzTAb^2_Gf2?Ef({XM
zsGvSUdCRZ>icIcGFhbPpRY950NLrD={ZBi+`hi*}()#P91Hm3|2n*TOrq9S7zBdCH
z$BIzA0gMk|LI58HurPp$0lXE!%m8KuFe!k^lurO}2b^9<)AEw%t~1>?mD*>r2GaWh
zxb7xT3*g-V-V=Cw0C9U#$Sl6cQ>%{Dt3~pbX&o6wX9Pex-0C}<W)Q&q02T;E%njfJ
zisfI=`q#YkD4fUcR+*hXq;k*3vyCnmlSJ=Zb=|{i&e-8wM2S)60fYir9Ka_5$N?w;
zED1RCcvL6{R!alO3E<nE6=`)f>L(9N?5+k7*x~cj<Ji3~Ctbdn5)kQmi$<?}%|+nv
z6CY*?*@qbr^Qeet;|?DUY0?$16@VSUmjP@JAi}!>SP{Ud0n8p2RlGvfvH+F~QFAU-
z|HfGzSQ)@)0el|7209CaMh|IK0ILI76TlBA)4%U5t)nlON?OZ+5SMi3h{IVQz{4Fr
zf*+$3HU>~~r!RTD^aY<XzT539shjADmy!v-3gGJib_cMBE*anl%A&Rhu!F87#HbyS
zwowI&hkz?Y)X`31(p3E}Q9|~j_Xe<!k_q5w0Q&>rjL>2FO8^G~I2gboR`8mq_RE=V
zva0rNnRz-Rq3%v+U1Qb`?~wq$IOauNXL9Bk-7Uol#mB{SPY6oMe;2^Xe0(Z^(*l2=
z&pE@Gvmu(v&QlJ|O~WP)7Xr8#Km!d8HT=jz2Jke1X8~LaFrwl{05=2pIe=dRxE8?g
z%prhZ1Gq}BuU%!;d(L#wZ=z~j3$>yH&aN%}yF7(K?|J}#1dvB*=uW4l!J8?3?wA)X
zIL&w~fZGB59l+xN{tVy_B_F^es*H1k!ooTJ{aQ=C7r=c=TTA^bfCmDk@AUCh9@dFQ
zHSkPkM$IJV`GhV!GU}fI7)v?m=8PqaL5)8T-~|JzhUyyrrBi4qqoJ&Z0vZZxD5{~D
zhA7R6MTInHosor%*0A_QIzeF#bsoBT#0XGCLyt-xo-%Q9jo;~VmDW&#cX6^v<7a0a
z5GQCULAMO5N)9Q@sr*wYUPCzzl{8e=P+mh$d+*xRL@wg=8R4y<p`r$Yc1=B`RWxTJ
zw5le0eLH=}l2Rw`^l{qfB@NKv*5J`lLqkmsbv4w}P>Y=MQf<v?p2ke@9Qw;$hxNTx
zR;lM{o9Ll%UZ#rQ8Wg=!s;@cYBd!~gdNq8}Jzmm~s3AdfS|1wf_11k^yAmTLmVDz7
zsgZ`p8s21OH8j!CR6}<PK|>OsrJ<FE)*4bYG^4}@mrd0We<_7BWWaCjbDo=~p}B?@
z8lKEbe_S%5rG|73b9VYhUhlg4LDy4nc6>!c8x7qwd@v@uttdaOIztqOows%x+H2^b
zAydQDk?p!_PV1i~sI}8a+)?088hF}SLl<#M{!Vd~x17G`&TE(0Q$sK2sbPTTjA46g
z=&PZhhOnz;HpQ;t^w|_1SMFqT5ten|KeY>2iu-&XJy2+QtcF1v22)&l?jah+X!y38
zXQ(*!X&5HJa6w-abcBXqclut{Fj5%ID8VdN!SmVcaicZ7u3<{Al7H^>y&?GT7mnM~
z-Ba~1_mZw2sfYJ&=k)O!CTLJJs2V0}cuT{44GX9^4U<{ayCrLnjHaTe2r0dz;cX4K
z%S*dv4V+3#s2~wf(=c5a&$|?OEzcZ*-_!8E0F>|y4KwrcECFVdPAkVtJmw0{JV8Iu
z@Sy<JI+o_8k2EZ#>1vQQEYk2X<;jTAL!vKG-ODCqF4jQ$iH6w&+Y^+1FKMa9Uk_vx
zj49}yu`+6ITuSymw_ig*LoO3*&@==!cD51GoTi5($B=kpSc9(Nv&Wf+29qi{?(Nb@
z@*MD{tnpeJI$cO6_$<$DJ#mJC6;67%p0ZrS3JssqeRevt+zcQqnMpb6N#TUgG_2CF
znnB>zvUQ?7YiQ5Wo)uyuXsvkMIt}Xu_*~Epf^HO)6(2Dr?n@1u=`2As2;wV^5eert
z{GefrhOP8>4M#L=)39B`UJd&+?9i}N!ydY}?%Ji{RAuR_7O~xbO53<2V>gvM&P`C}
zp3^$)*KmM0#>E^KI(`3i%0U4ly}XAgmR{a+yL?WMXif6B8jfoCPQytJ$21(*aKCC<
zEOs%I6G9PV&r0@=Wa{D+Lze0~tKl4NM#HVv()Sw9(DElp+-AVsI7RbzcHiJwXM%m+
zBk6*MiyEG3c+U9Gc&Oo_hDRDMX}GN6I{C3NOiAzfS;H?HuF%Le{H~#N0ncyr+`rsc
zHC&@RZ%Nzxil@5IQ>bym(5ar?_uR9>&g|kJ8uB#U&~T!m=az>0yL>k_w0%~HGcE0^
zd2S2NpMvtz9SwH{zL(Frui>wJ{D5I$m(RD$_cx6{x%598p3;_1dmn2!I8S;a=!{*y
zzpiJnz?bey%NL}+px$|V5bhvcL4NHPg@X98Pkg~3%HQb2r6O8OR1ncY{N(oVw*oy7
z&p1{%h?pRX1W`1Ix<NFr<S7<J@gS=5c;YU>^uk}t2~aYKSOMaKC?!DYAj%3*M$j66
zIUW=*Fu~kAairzB3rKJ(=JP8BQCZ+B|M7b}bCuQduT~G@C4mt{4FPHjT3gUsL3I5h
zn(2Ae3F7RT!UXk1$zK+fRamH(@&w@xg7HlXIt@pw&)f+?XZC*AgkHuj9|y~1HVmRs
z5U&UEMi7mIXc9zL5FLYP8bneMZG*@NA~}fndqka+T`56q-{t%FgQ#Xf)J$)e8blf&
z7sSi`lUfFm9z+X)dHPO##>0OyX#A~$7(Y?s(K?7%@^PCWq>*ki+Xc}+hz>zy@<IEZ
zm74XfoPj?T+HY3}won`wbPA$#5dDJaA4C^cJc!;wWCxuobSCQ-bOsUKgXj^&qUqkA
zl=BeRyeVGdUi9CO9ngpO7V=h95*bE5$?n@Xh?{k@zTf2=5X8VBUJGJ$5Q9WMz95DL
zF<7J@A}DVh%21HytTGP|;;l^2$RM7l#*GN#)gba7J627aQ^|9CVd^L$=PwVW<5P(@
zvTYqU)jKALu|X^iA}5G9gBTaYoFL{>6hTY~;yubXh>6UZDtO_{m~nDuQV{P3op?K$
z!e<j8=-Yx$74#iJrwKY;&?>5nDS6AyUA`H#_H1WDl|A#BLCj+QW=gf3ZnNnQV`4Xb
znaWY*ydXXZI(@JO!X%=mWqc^=J3olYPd($lPm9^@`zVNoBF&;8mIxtyEKU~-`iY?a
z6E0@bvR_K)HRa?WlpvM|u_6dH2!9YZ-OyK-8*do6*wG3Ep#_~e&&x$T!5~OOL4<?Y
zU(Tb8Q*w+T%zSJG@tr$?%t#O%@#O}&Q0S;~-z(C{X^EbKNeot>2A#q3N+GVpb<;l!
zVpR~UX~riyt_h-2ZYsf*<m9yiN6l_W&gVgF2%?jL&IUFH@dY&!#@sMA1@R@TAL8aT
zY^L$>mJlk3@HHP1#2-|55L<)T7Q~?-4$~Kc*b&6uAoc~ZlV;g9epe8?g@=|Oowz56
z`P<UzW$V%sIWl$ia_tY|07Fx+_=7=I+wJSvwkzHCM6aZ#yPY}YZ-O{NUk>725Z?xI
zG>8+deh@P|d5;BgoR;%aIyZh)8(ymGZXXwpJI&5M8N?~7FNi&dT{Jefs^dym{hr19
zz8#M<d|X9u@#7uO2k}D?7lODb#K?j6^d3%=`lAr$b-H=~zCQ(>zUU=NK8T+wpIYfW
z{Y`*h1icc(uL6wT?c>#}B0bYw3*vWyzip7*zjsvRc?SLQ23?GD2%%62w}QAG#1p0o
z;?E%N1f6l*Bf3vi;$2YyIw|+(+!J<qU(mmTcpw0S)kC^`6BohXL0oy?`<Oa<>~46p
zI_c9ON*1dW6>^%?XF=3Y_dcghmiN36^xq&ZNeQkH7M1oC2w_Pt4=)uA;p}}k0S6TH
zg2ExhgitDk(jge9VvB@OB7~A56b(5szgP%!cKfDGOeh|5Bsq0VLTtz}zmpphGhZ*c
zzj;br2<C2IrE=}cgitnw96PFF2=O753pwo+ZGP4hcli+iRvE=sra}mzV`bi}?K$4b
zS?+IIBBe?QRYPbQLV5_*LZ}`>!w?#U@KOi}!4rZvgc>2#4B_Pv>W5H^!mN`}C*)|V
zwkQb;6KN~e4WV8Lvz|&f+e)R6I}0f8kQ3*pY;#6TsW<y*Pm;Lb@}2r|2_Z-!B!<u+
z<OG%uzbDN(@7cX0<@fS2ci;0i4xtJ8A*6)xIpP~>uBIU*g|IC-i8fOp)7e+Kuw#6)
z5SoY3B7{_tNg5qwt+VQPN=|8(o<gb8v>Gp!T7}R$gnle%2(N_DCWPK0WQWj}6?r2%
zGlVQrg$&-l+t*Ie_JVexKsfXhPSG)hUZO5kM<=0_&LMOWpsS$dcN3s{2tD#SJ*myF
zT)b4Xt+aGWnLZ(O3r6?l)xPm(b~}@b**|wA9T3965XOfvA%sC8{+u1Jhww%SLqtBW
zbWik!Ff`;?U5oCn>}lR%Aq)@Ut+<44FDHx$Vd}rBuZmOStG**c7!|^6;&fk;R-*-A
z%0C~ZGVYBDVJr<}jdXjr?~B-|TT5JThA@tX(W1<*54@WvwVxPr)}!B|<;X5>mtB|W
z{dj^jDTKvH$owMXZ9Xf68zI~b;hhksh2Re%5W@5j-VI?PEj)zxLU=!f4?_4bgc%{s
z3}H5{muaSWfBiCjR>)b>t*c9oa-FR&x7$c_>6?3e^Jridl4|Vnk<O=1+e9r0;UiIf
zBQ?ESS<jyGQQT<3S;~)D7&=i1OG6kvIQ|nFVX2ssJ1Vjp&&Zq;f-JQ8AW%jLIn4?e
zcetPJeCyt72%p~SPh-<U2!`-e2$$#xA%sI%9m1LrbSjH!LRd*}qNCMLULHc)9-kG$
zkE6>lD_dk3p-&00Oi=Pm_HuewE2y}MPT%RXkh33kRS4Z%NYkm@XN7w1@v)PzHiUH{
zd=bJX=HQdohp-{!%>G3xdq1ZU7WWctWYs21#a>GqUBCUvJwE!^muv#)R?U;X3UL}a
z^$aaDge@U#70iQzZWDBS2s=X9DezuFcZIN9fIUpVR$?YR$k`XdepZk*jU@8;k5A5_
z5Dtg%jkx8wphpD#HiV-B9Ao*p7h2>)&WRAdW5YC5IvK(#k$`x@1=neTzZaL7n9L&A
z($0oJdQQ;ug8mS~-=3ZqLbxbSdG$vc&mJGa<q&=j;kOX3(qVhXzvvME3+-RHIRhHY
z@M{R1RhV$4{xzCeY|Ql#{s=jf|GzW(?eW<?lNkpV)pqvv<%KZ6OB5GVZiR3=gl1u+
zhVds8GscEdGK{+++++9+qevL{L-;Gitz~7R!+1bZ#5*zMaR?7X{2VmSZ%)tZmQ-(1
z>ff}PJ-!*A^*&J1^Ms|^CH)h^(|oUg7Q*v<{DRIEf-CHV@d9B)2~bc_a&DJuMVfNJ
zRVeIO!odycg~Qml$5(08kfLE{gBfQJiic4w>{xP<1!+I+@l~9VP8=IXTo@I@s1!!2
zFiM9JA4a(_%CI_lZVs}_hMhUvUZrA&_KD)brIYgiJ#<G(1@SCC?%LV3%3)Lqqkb6f
zFxXeD8U|<hS)^)Vy!m=5_Is;`@e(hEQ6uckS@EbPKutkwY0e~bZGr2AQ8zzLy)a%D
zcx*6@2{<?I2_q>C?!;ry&>METlnG%-VI+p}_Z}Zlc{C9GhG8`N5A={4htWjfrum#Q
zdws#dU6RB2aaflWK?hvum=;F!FkTPijWAk-(UKJmV`LcVVYCW65ty?*w1?JVr>*(s
zmh?&(#ix1Ogq?`mHjE4b+J(_Qj2>aM52HgEnS$9_&@4fjxMLWd1a3LQ%hN9T{H|ei
z6FA``htH#D7z4u?B$&Oz=p9CO7=6O%D>wrL?H5LW0l4(WTTU%<=zpBSf<H{qA%gPK
z&@g-gfBm+Ta(F&}L>M2<aX6!>tdE?H?yrfO9)8||wH_@@V*L4zW5O64#`G}%hXPl}
zcy1bbGmLRzj1OaiFtB&Rm>9-eVf-7FGBxaY`lK)>3qX7$%`-*dx0&ASnK(1<M0L-F
zYgsL~dZ&e*O=3JaZTMao@3X$$<7b8OL3R>VKO+q8Q2L{6!c3ZI<D}-blV*o;sDw9R
zudn@H-#jLxrgXH@@nIPA!+1oK2x9>&6~>V;z71nx7>mN#$ft+#F-<g#oG@fz&kX*b
zgs~)yrNTnk%Vit!poYs=vx5?b8b%-tEewCy38B<}-5IgX>U;i(b^`VI{Yi|&!7xH$
zgu~EjDwIPQt3=Lb7{khYmJ4hNY6}_(BUb?CuuK5gmZ%jX@uz~W6tvp<B;Kyp@NggI
zYLRS>plkE*T_?c$Fg_PxLq5OvbkC+Rz6@hm7`wyR9L85+XA|tsFuo3B3+vwAS?t&v
z#<nnagweKG;X&1;Z+tyko=e|OAuRLkdg!6kao6tJ?38(Hr9ENn4dVba3FEcO9#)x=
zVIO63%)4LEVS9atgpu%#kHcX!doPOPwQo2Q5o^#4o=3wt7RE2Mw=j-}aUzT#!nhE|
zcVV0i<6Ic$!#G7_F63nsJbtG4bQs^$_!}gYY3ccNy>v!Y?JP6g>-2e6PwM(4J#oR2
z6gKD=>B3=L4&!G^^|be=Fh<-;(f9f;h0(JU<>2L*Ys6Bg_c%&v!npTq7{Afj!nhg6
z)iAE{p}pht!kFz#rs{vEc~9|Pr_lELT8!-W2km@t8u|^M<B#rgHi6Stx5BtB3d5{g
z1bhD(#vN8XjC*1H#egqvzaK{Vx4loNd%sn@@l(CE-c4=tWn0pRG>joB%8-=DVLS<=
zg3ft1{1e90Fn_#`B08Rh@jQ$IItuD|!8Bds|78JmXTZqtd$F+;YUbH-)M-$nbpG4D
z^z!Yl+Kb{&Q6@SH>3HSS<idhp8PkrqsE%SfO6w@2qqvR|I!fsnr<X3NJ6on(${x}M
zliJ4W_+zgxPDk`UA5UrF_y1{HR!6*!ayrVhgdDlFlO}I*c3Jc4n?+i3hat;QNk?TJ
zwRP0dQAI~p9W`{+<Xy6hD=gJ?RM(yLg_m?EW<IZ%2HgqTRrfiudW;_ZYg|k%-DwdH
zoJeA`TUY1ze$iA%lFoO^TrcaWufr`86kE~Fqr<CXR#ngWyygYtJqbFR=$Ki%lf+_k
zLzkcp1m$T%0UGIOEWpVM9=<}t#6^p=OxBU2gI&Sqx@ZuurBU6@nDYHTse-1l4EuaM
zZJ|4Rhg$0Bvd@=%xx?m9Jgq5Ps>wi618sD))iG3uPe+E1b~<|M=%u5*jt)9H^DZ5k
zI<i>z?D*6QQLNwre|AS5zvVRPq~opWy|%q*I(eV3tL`+=-F5WP(M@+oI{&=`vcPb&
zd2L(4nS1H2BU{G+9Rqdr(a~3Tc9`@db$iR#NxU^pY^`r7^=Brki*5HHogem(x*)p-
zv%nvva_mNL9l}zL>Bd>IVXT*qyE^VMnT}U=T+{Kpj*&V>={UG1`l^l{lif7Aa<dX&
z(=l4d>pI@hF-FHq3QfmY9dGIg>IgaJgz-9N>zG5M((%KMwCOtDW!YFq9g}oSrZ#m<
z)iFiKw69a<kIW)n)U_??JAy+njfEMKPVnkV=PJ{@r$fGxHbckz`Du=>&ETb(v;iHL
z4ki=(o~O>$F;B-wIu`2qfWcqK{QUHP9ZDu%AWpYcO=J3d2a*@*_*lnM9XW!(SjQ(i
zfBf33eC34yGF+mAOyV<tcx4@affYdyJ?N?mQ1Om8AOMqTI=a8_lsQaK8Qk2~5z(Ow
ztPE~$=rDCyIy&}G;8h+y|McdHtIKpO*YS8_J2H9ue^*!N_*7h_1jt#XW3`SWI=<Dh
zM#oyl0Uf((a?exO>G)EVVZDye>1eI9Ht5)>;|q}|Z|6ZNk#3?)MrO?&+>y`Ptm7*k
zU+dVSV=Gm^GHZvpdMYbxn~v=Qk2sV}Y4Dbvw2I%o|7F6{JtF-f9eYJG%4eUB{W=cl
zpk$aJp>o1O8gqk0V$#DR**Ahx!bf!+qc2l;40=Y-<2ughIIH7?j_(BLq>fWUvtzgR
zV1m<v`MsblIXUM9{z1_5f|6PHe(D7s7sct1f>M~|Q%9G@>96!S0e;qj%_+a=xFSxe
zH728wNq<osOh@~6cO&kRyUuv1BTq!Fx;bsx6TYE4?>G#;m~>MIXAgMX65zIuKl3?v
zbZq<9#Y^{TQ9243C}`k;j)yw_)!{Pmh<-H1d4+^&8kJ4?o0<~A?TMfagZ~KdRM2NS
zo(u3I|LThmoOdEvm|^RqocM1b+CX6gF$M}5s5Z-4yX1TYd#dbcF{QUkdTJAis};oz
z6gTj)f%*nY7$|9=f<YA^)<B$rG6u>T=w8cJ%0OuYjLBTlvqmKHbqPl4cmw4Ol;^Yf
zcH}-^q3zxYYdVn6e*SiNDjBG3pq7E!2C5i1WJOgq(5OfJXZxI`pK1oG8+ge849+Zh
zY8v1^@csLI&wD1;FgQzDlAy(q#KntK*k05zP}e{`1KhLCZQg6%Oyd*FU-ojtkK2I9
zKnnvc4R{SC7-(XksR7AAqJhQ+rfrOVN4)jZz(7O8X=_RhF2(L*Bg5%5Hn^Fjp7CDU
z=S$)xQIX~bxKXppv_!6<q!`ZnT{A&b4WtRsvZb?Oi31I0m2RMwfwl%R474`*ey)ql
z2W<?zVmMRWr_)o`w{FfBq{W8hb_V})f=mNh1~wsSaG}1eLI(<YLx%gAGevpe*Ot_B
zM^4q2_fSn;40NU3EL647jVj=cCOVqvVW6jh-wj+h(91w?1F`{yk2cW9z*`0;8R%=E
zAB$?>bp!nk3@|Xvz;FY0V`-oP*Z1jz4Gf}))+Zls-i0);lxK*6p`!X+%<>t|l2-X=
zRYn+i)xc{)Xm!`QM;aJKscNajW2Pn%aQ^?+_2hr{`QG4zxC_F-SOeV9$Q9~04aXP8
z8_tMqobkVr-R2uf6KGxgeLN-___%tawBI+GYBez5zybqrQz-^!^B5LI`Me{Fbo^h>
zG{b3*r!#W{?-_XC0C$?PHRLhFz)Ztw8Q08{21KM;0+%tIH|v?h90PONB3JdyGw^}P
z?Lz~1hI%JFb+_N|^c6ocu+YF_W=Q*q@hlRz$Is~evEg)VeqAQ<U10arv_&VRB{YB(
zX{mv2Ej>A`>HUhX!?E-x)qvl?4+bu<$_6w822I*P&_KulXBEPRvv;e>#U%DWX*0Tz
z=he5REmO)`REmKW20k?qp?&s{a)qq=t?(92_Kf(@yUf6uIo{<4{|n<?J<t0h*4bCK
zlF~4+in29u*1$OfYYeP4u*bk&1M3W|r@yR@+G^l)@hm>{O9LAO-YDo7f^HJDdWlj@
zuvy@*1pQjjErRkA6L5KJn}O|yv&g$c(4B(r6132eq}_}&Ly{UyO4(;%zhIsa^njq>
z7&s`vAwikRVFm}jS~SjmL~y<p^r)c6^3xm_fO*y|mhzo}lj8K0pr-}>p287;DU0gP
zCYdKi+xd&N8@k_jp4L@2`NogQ7Y+PKEf}~$!5X+^;AiS3Gv1z@GG)Jyd*(0Gp$d2x
ze&XT;8fD8h_g@*NG}ko-oF39|2Cg!G7HP%f=f$b3I>*1>E%6Tnd5n7|Dww!o;3gxj
zi5L^N4BR&G*uWD5f6~kt;SD@AaF_lVlelERk8dU4GjQL)U-Z-J64%=J8s@OdZq7D$
zE$0NBNA$Sz(%&?pj1(T5e)axCJ1iCR)W9=7D9YIb#@Oq`&+?w<23`oi``6%K@4YV5
z@xcOu5)?EMC2+K$g#?{A(b*+c#6(dOaVAQc90EiQ%8oB)qPXceX$g^xo5xC;h&7$S
z-l??2gMgdoOPk0T6<fx1g4><E<g%vYBk?B6nOJ%-Y0xLqo=)v9>)91eR5FohqJfFZ
zCaRdIX`+^iswS$Ls9`#D)I)nGurAe2XFRp=u=J7%nD}hJZ_j?;wqqSS+;tZCYMZEI
zqOOU0qHOHraWgYZl8Ka;O=q3gZ921>^-Z`&C-#5g@$k75yj~O6C~8(eFG~`XAg+q1
zp@~K&TAO&qL}L?UMn-)zK03`r6BA8MB$-HN8ESSZcr7!<#3(g2RZxOvCWZ{^LU4IP
zSJLJtTA0qKCt8|lB}9}iPRVIHJeHfC`d9G`DjCzpL|cl>#K6U#*iN1|K6gsq&cv3+
zQhO8s?)P;Nlps@p6|?$wGSS(@MiXC{=whO)iFZs)qqt0Tr_5Pq#(xt%Suhi?ndoIg
z`NlPXk1)~OM79YIc>9>>Yoed&xGGQko9MLL`}d4)*Egj92L@5IH{7q9ICZz@U{U@d
zCWe|A6zB1o7%l+uFagFd?mof<Cp5?jSN4oFIfN-U`GtqJdV8_!aJ3@dtoYF;UN<qd
zO3KzZ)3=sRA8X=Glk2c}%fvW}bg}DtR{VGqKbOs9H)(=+B40SVxZFL-1c#_EMnu0&
z)#te<o2Y)kH-)r$V$%aYHXl=|ucm$5Hj<{Bc-Mq(a%U{wGx5HOc_uzEF~h`66SGas
zF%iEqC82>d^GW6`6BF)v*yrJ(m@=O$GXHP4>W3!gn^<7tBWkCSGw_M&?&W#`w~H)f
zKDDKQiA5$pHnG?Q-?-<o#Kb2iHuPx5V?<2<rGlT6e^nMhp|l0?=kp6)E25d;I|4j{
zCPD&-1%2QvNv3JS;;D(1CTtTC6D#N=S@CtYW#)<kFE_EwblNq(U9!7+=8djV4F1jx
zMxOgK6RS+VRpeT4VzrRxu#Y;fGf}ul@)|+c3i`Tl$mQ(xGb2lVE;8Ie3-9Zmx~2>1
zCKF$p_|3#s6PrzZW#U^CM@@W9`!uo7#C{W7O>8r<i_YaMyWnkarvtw2;#nI#NjpsJ
zq@j9}h92;d?iTz#!b$fEdhSPO+V+5ngLIbe@rML+Ut?)dlCzVCUVPZZHzv3r`-q@(
z<|e-An|92^aT8}uoHcR6#CIl6(n=X34){2jeR0&;GjLkeg|Dr#lg9Y@y@`ie-ZrOF
zD<S@ziOV!I6X#7QivD0aoi`pAC=HkQqKO{`_({-9f|7r;rHebLX@0+$xWbU$B)dfC
z>|aeRIpA9|sA_Oi@--8`oA}Gb0~6Ox{9)ox6L(DHG5DLfO)-uvb0gA(mUdHAlU=@B
zEW?oY1Y~YK;Ja(0$e$&-cF%2cto}U{dw%G0pO1U99FK=49x(z?&KCYQ@z}&u6VDh5
zDmxM5iHWs~y^ntD@sEi^ty2gRKFDTipVQ<zcwd;f@N)`}z7<k-=eY`4PCzJZp`hgi
z^C%0^77AH7zB&8*1HR9-c063M-WW?vZdfR4p_t`#gUbq9+(HQpB`w5SC~cvPV8&S}
zB@QN=ccU2(0&@O8jTg9_pk$U8pn`>p0#wT9SGLe<bs`f~vryf_V+&6#ykr3uObeEU
z8Ww6=7;a&Ng<2MBTWDjUt%W)k>RL#)kYeHcE9L50Xv{ph|DUzvS0F67E!;fdW1rJw
zA?l#-<w?D~77{EFNP-e1T4*3}LqQt}+P+E>FEz284=6RYxD(qM)FiQZ2c0>nW)@N{
zw6M@pJSfdV(m|)k$l%$WiDR92yV6-HA?oK>d$zW)>>KYZ7N%eH5Dab9h2X-3%nS?d
zEOccz-a>l|9V~RT(8<C-AG<OwaQc+moc*IK%X0orS+`YUtBua&YG?7#hCilup(t*<
z3A$V8VPTMk!9smKEjZuviI;j=;JA-RZwuK1_sQq<wa_mg_ZMJ*g@O5;GJ%dmET_-u
z6PzZu+(RvJ;+lX{xWi}w{gVk^wJ_4cdlufeFv`Mf7ACW(7Diim-NHl*Z&`T5!qCT3
z|9geUSr}tstc9#fS#Mg-3Q@;{KH}+>vVJf#$6J_SfgtOMmvoX49et1zI5KbO*LT{z
zP0dn(7T&estgu^{CMwHrc51Ph=I7Elq;jVvQa+<Aq)`PkEX=g9$il}KW(kSSwlK$X
z`UdR0&E?~sy3dE4*B|Ct*#4o!;{yvH3OrxX1%iGg=t4p5r(PyoY~d3NAq!y(*D4HV
z2^oBrSXgQ~Yj!z;637B57Sw!>-$FoOP0(OIpL=79dOe&s(?vNAVQ;TaO!S=YY+Hy}
z*k@tCg<M*Zh0PYevasC33JafG*kIvP3oFUo7`>hXp@-gZucfCP^sTb6+QJ$O-TS*1
z-Eohp>iK(7cLMf{)=>+^y^n@F-=<*sH(L0DHe=ySdQ)Hbf`h(_$r*)8I%^i8=|ht~
z?ZZ63wy?#*P7Av%Y-LGe3T~s5_K0U1uJ3FY*0O_+*+JTnkXE);x7`-@SQv1@wb#PM
zUrWC3OJsu;8J)p~o@1y37MB%p*}~5jhyOTi;e>_nC=d%rEF86P%)+-q8eHXMNZ;5y
zk&`6HMe!KG9~6nHvo%#c=sRiQlyLb=6vD+0r!8C%cYSZ+j0JX{x!ix&!a2+72hQmg
zcb+z8IfFHJ$vEl37fCK!_>sm&=8@z>2Yo*s^bxE*=;L}s*(OQ9Sh!;0wuL_}{A%Gh
z3)krge8i3v_SUw%o^h2nVBvSh)uo<+^F76+%zGjf<k3fJN^F#$6zh3|QHT!sDD#$u
zB8PkrPk2cgF78;kYvG=SxN;fXeYCTb^97Q@^Q8M0{<84Ef;LZj$jC3iBSC8(@{!4T
zZ_<A(Jf)-Ac*Djs3(x5nHd1Z8u<);idNy9R;j&S{MhzP^Z4|T-Wn<dzsA$`9ZA*Oo
zq<f6FknJeFu#FfSMQjwcQN>188^vsA8LqgE5;iJ*QJT1<?Zj0cWo*Re<2V6I*(jaQ
zsoJATSsU@<w49BK`TX)WD&*s%ZObyBO5(J#{lA?m)oi@AUaD^6B^%{qJ;a|^_uLuf
zg^l;>cq;bxkk+zM+s1}7F3vd7bh*#}agoG2HtO2Ab-QrtA>Y6Qp87W2Hk#OIYQtm0
zYeTY;Xyen99TIG3>_)v*Lg!Y?vfu5MPFHOpB)}#6hBinW3EJ4ku7HcDNj9!_EtzaP
zTRxmF%Ddha+Zj(?IqR7ppP6Q(xs5Cv9c{F*(b7hSjdnKDZM3rSijBp?W4W8LwGB2y
z9G#tiUWTV_Y^RNGYoqHSA7@2|9P;%$?P_nMgN;nvSw?3Ul%eVPY!A(B!XaNL8=Y+o
zvoYL87v5!~uZ?~-J~-s-W}}zwwCT$Z`MTTaVS}KjpadmWCv#7DZ))>^lx;f!st=Xh
zyCgw>A^ZWNE;~MPe=)~-hh?A;#ULAl1t4dLjiCbj1l@JWN9G9e#8+*MwBegGkliho
zc@!;;UwAv@dyO(Vmo{2Z0())p7#m}4_-zDiylG>cjafEk+Zb<Sf{iIQ-nO0PjEOV=
z8<RxlOCPx>3sKNkf3^}^e*F?HaH@@WXu~$9+c<N`$6(IFu)kO8QfH1g-=&?{c;Chh
z8&B_cooPGYl>7C3!x&wfwqW4JZK;<(&YELmu8oguEVMC?0<>Xwh+kmytFWFAdCBd(
zzM5XB)qHBOP%Fk{E*G+;TV&&78?p_B3bmm}B`>9Q9q@f(gLA)21kF3-qiOwcAT5U<
zKRl53(h09BWXquzeT`dZDJ9KD(8kv`w%7>S2-{d^V?C=pr<6`Fuwl~b8c8QdJ8w)|
zHX_tf59xsBwrR-=-P3a1xs+S9XPJ%V0<5sH(#B`BZE?y=AK!PAuClQ<pR-zkHH-ky
zoJ;(w73t@6A{(1+d?gCGk<Ko}&O&nZ_tOLSCSe|5QbAAM^7|f&g=2q8g9H4nHn!O~
zZsUZF?X>nquA?@N+1O#@NO|v08_y5<o-b{(i(qM!-Gc71vDd~vf%n@uEC8<_uyIh}
zLxS>^TQa{9_(*=5Z}TtF-#z~}qdl-|^qq~9Hb(hM^E-8nB&S4a&)9f1Ir+4W?`_lx
zbmGAe<DBJlYjjy|_dZ80ukjLGuyK(kUx^(n@gr+Z4_c1i%W=uZWePJFt8($PjbCh>
zir{nvS8V)B?~7n~1ivvF*r*=COA%bN@jGpd#%ANXjX!KWvhg=P-Np?Y4=EWXiajwF
z_$I@`{>)o8Zrk{iZkXq8pOJj-&4fDw-xZY1djj0I@s|J(^7)loyBZw#9(*<SF{58<
z+!Gs9yTnr(waaEP^D2jZ&nO~B;0Ve@@WRHwHVQ>hI09D$V=txjAJsl8f&vi~j5sgP
zzFjhrFU~A&C`Ct{c<z2Tk#xA^%pWEm_QganYfy3#L5m7nEP~<!kY7T8k`d=CPq7ii
z<?~BL(5Oi=6FjKlDjPxN2&#z8<0B{+LHP(OL{Kq;N)hBeb^rFveYTCK-C^J0!#<w&
z8|At8uQPwOVM%t?2&zS#G1{?~X{3mtMg-{*w2Gi+1hpcNB1nv&b_8`Is2_nl;;h}j
z^iEpch!X=3&FEGyf)!^{UgnMGvQoZJnRd7;9nceTnmlg={I+C*pp7S`5;q{9C6C~J
zDUQKpz_4EI>Tt;4ID#e-G>tgp#Fi1XUDPcpg5(HN1Sd6u?_Azyl(5Tt`x9r*KP`e@
zE^l+eZy_j8ndW@gL@uPZj^LFD`bRJzf?Hc%Z6fFrL04uQaV&wt&xoL11nnc}AcRIv
z#|Sb7&dTR->9&)=odxA7lXVlaVhrrg!aQ-_0ZAU$rAGuk1;3Y|y#>t{w2z>D1*LfV
z2@v;b`oIVVMV!^`p)6agBz6la%)t?yOidgTK}?YpwnsD%Uj%RTifYuS%Lv{WK~4m6
z1S2CDMZ1b%S_H3AJ`s$IV0;9xGclPn<MXz~-nYB4v}0(E5xg0}pLNnl)^xG7lMeen
zKJ1$i!NdqAMKC#nnQNTB885v>fmBH0&I-1hT-litak_19NAN{P0*|Qzyw@*rdIaxA
zFeie!G%(#YuTso=)Mf-Tggwj>vYJVgIP7EBlyo+YbK#Krvpb-2#=HnVh+s(sOC!!?
z<A<zoE9d)l9Q4hPI77b$5qu=_Stuwuiz4_~;KhP|BIti}8l8VHOrb>;alRy=M4(2n
zJ%Sw(_#+5J@MQ#>BhVuJIuJgOU_-=N864XyIYb-aS3o1sg>M?P=LnWXU`CvwiX|w4
zEkH!j-h)b#vpj;e`Bzs&@M(lQD)Cu9XBDelF^b7}td3xf;7`kNZd@nu`uvm$Kg4bn
zQreWy`9c87{Ig*h9F>1XQADsU;=E!&8yL4l+CpRIE+8Qy?&zRc_#Gbl@6HHzMQ|vB
z!x8L`IP-h^NNYLqc~1n@(-QXzy5+EMKXaHau|Yo&!9l80d|C111Fml(I1+JYo{vZH
zt#}HzP969u^=Je)m!<PKM%y0Pjo?JYnPL8pF-=Z9DJVe>-)oNG3>_^O19NdUf^#fD
zE^6fBd;~v4@NWdJTwI9YVg%PC_#@(c8tBIet}>WYmDJG;@1+PXM{qX9qkb0sa|FLI
z{!=M^y}vQrzTPhedwyjdi+K3H22TlSqI^a7cM)MGwNB#LlkcJAMQ}HQdlB4-;6jq;
zCLN#J;nXONKY}|n!l4r9rPt0&Ah;OafOONuM2<)9NAOn!4}?aZGa$6}JQVnmpnpg3
zID#jvdjwA-couPHo9pk&Xz)tf+jRyvTap@?<4h4$e(q+$UNBx=8F=xquRtye=AvRQ
z-vmLWTCS*EMCYPVt~0Bd7?29*I&+EfxhR*5m|PUeMbTWR(T~eTsazBjxVWGt1m&fY
z0>lcM_{=>*3<^p!TMi8boj<u#*<5_M%Xtf|d@de-+LcqO6$EJL%j)z+AD&juh4!ov
zUuLh83%-lW!c@&g$-mwA8z)!GMfF^~l#AAXv}l{qz3}Z8cMtn&=Au?E8s?%=E^6nZ
zPA<H;NXSLqT-3{jI~Sf@$EWxugqL%jjVSeVQTQ7l)j?Y28{bR&Q$Nh~PJAtcZxKql
zNX&KK=W0+Yoh59Li>BZBei<&kSlpy>E}G;bDVHC;LA{w#O>?ojUO9@C2VWETe@uM`
zbQQ(-e;`!p5I`yNp$d5~FVrL?K<Fib0HGso>7b%m06~iMu80UKh`fFK%C@%~5Cue#
zqV(QTnt*gflrH=~Gv8m%`JXfAbMDU0&d%Jq_fDTl@uRUH>#x7u+b`5M)sIeoWciWi
zM-x9bslKLuw2=hqW`3kgy1B#_5?e}aC6QrT`^DH732IPVKZxxlw)dlhBr+t@Khuwn
zxpdYpr8Ai@#xrb}GO<ij7r)S;u6`allAlDjAKm;=N_)CXfBN+Bqh~JNOA>WkidBex
zWMTD{IP-L!{(cPbW1b)L{TS%SAV0?YF@aI}G1!lxehl*q#lNTL8{!vxB-vUf!-q@H
z(SE$)#|S@0`Z0>U-KFI065EzrwdnZyF6B+X7?&8w7|QwHk_i|i@okCkNE|EiU5W2W
zd|%=R5}AvOT|86UbsX5k^PwLT{rH#y?8hWOKJsI#AJhEcc}naHaM|8uKiYSXo#IE}
zteEN*V@<D!#ZC=d`eyhslalGjT(XOM>vkoxK|9Nj*?ys(JfDh4|GMevB`r~BE%0NZ
zA7A?Ml^=`zSnS7AKR);46S_C^O}$=V3IEmB_bEL`B~DMT_n9AO1}D=r-Mm$Rt6`V<
z@r57D{bKhVIl!jK3cncpTHVLjplbR@O*6mtW2GM|lj_GRKfdwfTR+xFmX=?XwwiL-
zJ3hWkWe#OjxR=Zi{qj}6^XbJaCGd1s&5xigi>3XV?5Qq>%R(|=>^ACDD?i4lcw2?(
zhedT(QA&mFN0jYbKQ8#;_~H7o(~n=sWIxtYas1fq$2vb+b&vgyqVC7GR-#eF9DVP{
zMw$2@{Mf*xa&=#9;!AnFB+AwIZ1SUYBhUWPo}c{K;>T7$ewK2@wQ%I;g}<_yg>6*o
zl`)rhDck+nL7BYSe$OtY(H`Hz6`o(IP<|Zp<FFsQ{doIe%pO1XO4GC;E_t8i>H)u4
zX1`xX%c9|&&Oxb1r9Np*4Laf%vxjWM{O%WhsH1)yBWIR0JT8&M3DyFVK9%cpn$b%7
zti<1P{cn^@Iwy15e4+2xEh!iMxa7xEKc4yVhaZ>yxaG%fKd$&i?RJwT*fH*^AAkCB
zjbU~v*Znv<w#_RK+jE$g#0`c|Nj`BkiGAd%yOlf41r^zkCw|^_nA+^!Y&K2*@?%Lw
z-#tJ6mIUehe*7cpe<ePU_%QeFBS}<W5W`J&Y@4z5!bPh8`SF|<TSXBSFZ_s6kw-;d
z6{}9y;UK{Owj{)=$fpXSDx_jc%f#PjcFC`T2lW(?SWv~Uh1&AO9{Lnk@pXFA!WT)z
zgw-)cRTNV(M2%(Rkkd59Rk3Kl1V!tJ_jEXI(5AG~D$1y6prWCQI2C0XKt)v*<y4ec
zQ9(sT6`cKing7j>eMJ=pp>X*WRs^>u_$sNWtkQam-LK@vt1^XERJ0qPaClFi4`z7Y
zoad>gqPhx?3a=_Ow}y(^D(a}Hse)%L*HTeBxyx%3N&NF$&m&AHg}<C=(OsG5P1~&`
zsPL(%uj258*ka{;iTt){8fV_?s$9A(_R@+TdU+q)nM}jIot{Q2l2kNT(Sqqwk)ooh
zie@TW4K3MNMVg8xsxTU<D*k*+oIOsOeF5T2T09rBrmJGTCHHxC+bxFsTJl4|KnzvU
zT16Y?PDOiF)FV&xc-pF>7Um{CDq05>87w9??}^#IOcfnfbW#y%pSY}h_YaPzWU1(^
zg2Xq`<e|HjbqBnwzVmifk*(s@Y4P1uyso03itZ|UkXOyi_f*kKMQ;@}@|QLz(Djia
z`${a;JaOV~g&+1;d6+}Oz}#R1<Rj-D2B}bF$iWin!@#qO#1B(3T*cb{aidi+W;H?;
z*Eft(F;YI#=ZoD67c9}ep$g0YrV4H(c}vCEd1+1lO*PkNyhB>WITh#0D@ve>po)-+
z_nA8tpQ>1*Vw{TcDrTvetzv?T4^^=ueY%S0`%=iOiBcFQsi^x<Sig@{OqPX0dWs~b
zN}Q(RV@XtM(VDNQFEdne;^It+(@K<`qhhX#`6?Eun8!G6U)dBfM@+Z<M8$<nxj%!I
zONl?5E>f{r#ee}B=5FN^74P&J@MBiSuHDLKDh~t17b=!hQ%V&4TovuuWvV!n;g?7T
zB{tQHU!mel72l{>t>P=0@~;^{6-{eV++{q=2YObiU_-84jYQ(NGR;&mRmB=r)bb4G
zR}tvp$$vlokKIZ@g{C5!>3h0c(Kh!CQ%F>{L-3;tU4@}yor>?Mq$(^GjtZCdUy2rm
zjiPn2x-UvST^K{+N}j|VmZnS<f3$jgOwN04cxd^072h+3DmGBj@_V_+<cB)xWZ*{X
z+F!+-rpfG6{5Cr&ZjZ8A#ZNRK6loP(RBTnTgN3Dvbzd|%Kg-Xzso1WHIkIPFZ~nzI
zDCHNaq|}1Kzjt|~tgmyV!EP0MRGd_CO2uB8T5@k)*YthVf>CMI&HXA4s5q$N5H&a3
zcU<COiAN+Jm3T}d18hw!c_Nptm`6<6oR*LKHhIpdI7{umAOD+*->GO1;@7L*7xg_U
zRXy~)pyHy6gaCX2TvG9eilPA&3*fSfD=NDrxTWH%Dt5kz#SE&b`pKeeQmL=2xWQoe
z+kgI6_k=ylA7|U&R&j@_q2iuYhl5|may;s;WccuTZT?nqpQW7Di;B}=uGneykBWa)
zJW%mahKUUbyZ4BaFCQOEd?N9wM816{iT`M4R_5d53l%W|<dGldmDq2%xOae#M7{v>
z2T&k@f&reZ6GP8JGECtBUJBs<4_PE2%n<`{tgm<gB^W+{8Ud6Hpj1F~^eP2#ZBE<L
z0Sx;pktUZ7tug_`1rTYKSXN>=iRC4}Eb$eI6(llP#Q?Vb<Rwu#fL8;k5<u%cO4R@c
z>`|VN?2G`1k1|Nmj8x-a%K0{&8B{X>&wmAK1rWPYEMK2pAoI0=5YgHJahz<8+k@%^
z5YKep9^{co!Yc{BO$?xJ04)M&89==N>IaY#K;r<oYNbH{$^7s~5of~y8U@htSnDK-
zB*yJgzN#U1!K4O|7C@*<nRIfvP!h*}n*>Ckv?)`yAfB#S05uoJb1Ln4x1P=UYKF(G
z)S(sg6+q_zx&+WBfVPY_fKD>m?E+{Yz#q?&rcCX*^-N5M05Sqtv`5Jd;BdY4-Fv!l
zJt`lmwj=j;p+aR*CVz^h8`M3HrPDQlY?j&z(Xj8v0{Svz)+Em-<vcwD=oP>r4Tm-K
z4xkTHrJ<IFz5%=*Ku!Q_`Beb@1DFxOOfo!xfdRZ1!21CV3P1_)I6jODU~oWGXF~!Q
z8o=1Mx|0LL0^(?8{;p~N&cg$u{u&|i(oC@xdUOD9FeJYUh@NK4wL&%C4B)K*v^~lg
ziEoqVb-a9hCjjn8C^F95I&V^|rL8GxhlaNMAb@cJObXzm09L<U{7k<p;{%uwK&C(S
z!+>bx4Vlq~GjS6G_->Tg=Q24Ujyj(fz{dehVIlU8|6^?WRI+qzdg8FOB9}TXE|Ku0
zzHd6EE4~Dc&#VAu2cQNJ2w+YCa|2i&z={Co1u#E=WdVF4%Vhy|q;c2J1EQ{9$P$sn
zVu_zf{8Zu+iJwVaDv{xN^~~`T;)rG;OD)A18k=EX2Jlq?YXa~G@O3~e%{seB`6hss
z0jvt(&qv-zdAks|>`_(+@NEDidUsNWW$cM&5cxTo^JI_mtY)$nKrjF^0E=?SKL%is
z;Ux;PSw*84kvgkWtuj)|?p1EpX~4-cE|swZhz8&U;4*Oj1n*vj4S3FRkY<AaYnT{X
z<XcCU29Q@ntcLXgd>_E=0PY0vLjW5B*dD-+05<Y*S<I#Yeq=_Dc$H}#Qa?)F%yN;O
zuhBOy|NNLO0aVaSZDom6_xv2dvG+Xvrg*k7weW07^6U)Y7nXYfch8jkHGo&XY{&-K
zE=K70G~Vvn9l)Ld_EJQz#~+hOVxJ`TOFR(3K}j5vc$l&mz)>poO9dFRVxKa_bT2EK
z<MQo^08UEcl*B6%PX}-&fU`7u9Q+U9LI4+~|2c{0nYNk<95AQml6bMR(k03gjX#w_
z-ekc6WWFLz;wlSHeswK?8<My#@qdZADQTwa^NleaQbVbNcLVq<fPVt`m&K74cQ1gy
znctpqM>vre9&|q-R!6tqs|?($JP6=n00(l)QnnvSfqWXkGwS2H4v%RG*C#&-Am%}b
z7mE}BlTx?$ql~40r9aP=z!#E;(U3<I0!+7VLQFml`8AZ)P)<Vu4Fxrn&`?rCAq|B!
z6w^>#gFB@=&Fo7W7WRm{|3;f48j5Q8T4~d7WE)Cgg-z+Z<jM#30!nEptzmOUTp3!G
z{9f{e2R8C;oF;0GBdtZdy1a&$HN2{!iiTG-?7msLl7`9}D#%YNYS^%=^{qWG6FK5H
z*(uFIRAE?NkAa4&8mh^tZazt`uAzp8qtks?fAdV-s}w6xwqf&>w_a)cnugjM4}8N1
z8tQ0>*N~;5vj&d_uZ9*HT53qp;M34ZLz0F>O)TYYprN6Lx|&!glR71_o`%<^B-Ymu
z_j6LMP2wmgE)k(@PwEq&tRY21s)jTTjWzt-uQgjN%l0ZfT&~_4v2?bHCXPDc(!{13
znrTSa&|Ko>1W(RZ-<Y9ZBI#BdT5D*hp}mGSG7W7d2gbaJ=lL_8%85k<9W<Qj6W38g
zCk+{z=xDcG>dRynmii{>zTR(%;qfi4#C%N`4P7-1(J)j)wuWvR`f2E|p}U428hUEz
zrSU>!5uU~2>{WV8HomUm&%KKBVc9+!^cr3JYWVPR(yqOVDUWFypkbhfK^nLbjMB*U
z!)$+YoJW!A<l51}8g?9tCoxRJa1En0jMgxM>3lQaNHTduNj3l|A?zn6&i1`QF<Tll
zM#I~huo7=-cuND1ThDi)7x5iUROQ`QCcmp;Tua|r=C`G9PK~VhG;|!$Bx`$e!BJht
zX&A3zwT5psOkh$qETBwkn5bcrhUpq+X!uCOWDOrn31`1@iiT;LsEf&>sT9tMZAox7
zVE%o|!TP1i=b0L2X~KNX(ZF4P<j-tP)E6HV_mnOquGN^UVIIYGpE6$}i59)%7in0m
zVFjf{!zUU()v#2<=bC7hEz$6q<ZaCuadeocb=FUNyvvxLEU_<@L*HL$h)zvhF0p+5
zwxqwJHfd;;x5PKpxQFo^M4}O1sbQ5S7I4-*CPuEZ_NG+$u;&`GPQy<cwrEf_1T;ig
za2f`$%%^DxQl5(!X#9H@E>>ixAjF?)qAsrez2~ik9)sN0kfUKOC4Zk{Q7QH*js}}4
zk-^fYW}f^z>CnW??eS@@hOM6@J(`y!tc1+Yk4((<`0pgH*YG`=Mpc!Mn<Q?OSb3>v
zEPYunwp;a>%`BZ7Vzgn@K4mL4MZ+%YyM}EVwrluB6HQGvmiAUj+(Ct^@7t;2@n6|=
zH~&ssQ_b_Mh704{%sP--t#jNS4f{15pjI+GOMIWQkGk_vtZgHc4{Bh4!6=`VGbC&2
zKII6_0);k+GeI2FaGdfVM6V!DXgJBd1d%_8Qw*Ttx`rE6F%4%mT+;9dOHdQXg#NDK
zoD}k@jgnTy^`>N=*I?{Z=q^a&B6G1%Io>jH|Df2TD1BMO6)9#{snqp-e=<8Sr?0D<
ze2q%iCUMr{MB+^iw=_J^@KD2T4R^@-u5tfrxJ$li;&Pe$8tzeHe=AHQ`8Vz1ARmv#
zSl+)oAOB&&$(fPCr^Fhw;XkH7(lBLv%zql5lW9_+&hJy6Xn3lD#50M%?(9OEy7ofm
zB{qndAQm+D<q6_R6<=OS^O5w;X{i_Mb}tY_!64#-C>unfAPNUjGKf+^ycFbJdoe|V
zC>j(JUafK(HM&?(^qPMzn$)*oLh&GoC4%U4Ih{o5Aj$;se({2XJB!N!|J|nyewb8#
zzfvxU@<DV8A}ffOgLox~20=6oin03OyX`74RjjOoSe}znDTvBJyejFMLDZ5&l^_S2
z#M`P8NmP?Wb%`}3Chk{W%YB;=MD1L<P7v{u_DJ;R`hS10Gvo2e$HXA&=K9x@ME#(c
z`(pqmtWglHf<l`v-e{i`L~;-*K{S>=^lT!DREcR4AKov}R1(c3GEBN8ng`KB5-o$M
zdAnKlyB=bP<-XQI(SdCfL|aLaZYPQML3GIV$p|7dm+lzE&sS3!taA`ug6NkS*HxAd
zFW%w;;H1rivV)?|?G{A$AX<0u^ax_|^Y|yv<B5Fi&B6-848mgB1@U?i^C=IECy4$*
zyc@)OK@13@$kKu%f*2XZz#s+%QKGNsHn#u-F|VX&u*4xj43)&NAchCUtUBGZmlC>U
ziyOXdUlMK6s31lMg#f=1#Mq!PBX0)rmh>4T@$DccHWhcMy(1sj#0vV|_d7D=`$2pV
z#MGd;<6|5Xe8kJm;}oj#K}?`n^1~pSjZT_Gq21RhbHDP+zKkLJm5+j$v|pJlaf-xe
zZ?&fnPt2GW#K%D~<Tza-i5Wr6l=Li#vvd9DNMbH?Ckf8ZFz~`476qXO5eQ;&5T68b
zuYDYklVVNrsmvP3+m{6K8Tnbe?b0B=W|;lT=kjrxMEZXriRBVkNc>XbS3%q|d<?KM
z2xgORRS@4udbPxFbN$yy!Y`4ZXh8&nh_IM=WoJuIY87#nPbi3R5a+*7rF)o=q)YKI
z=*cxFOB-?++zuid#Fiko2H^zZ2Ju}G>zS`1#dCsK8^pSxn0jVq#7gttCtl`}+d94v
z;)ftM1hG*H*or1y>W=F`qqK=i(OZnCvHS325SxRTliAwXuWZ||{6tf{U-|TG^3OqR
z3u12&`-0dW#Eu|#1+hDbcJpI)vNXH-ehH%K?8LI0I{X?$wI|-Y`<1~zr0$WHq0sWy
zl;^jri}A7jK^zF;WDq^8#~cje5KAF0<ya7hgScAV)2&iFrsRmEk4jun$3uTETRI-Z
zovywU5(^K=I>iLU`C7%Mt^KR>S@I`{CLuHp;rAfUQTRhB8p8P?E(CFxg&V}hAT9;*
zXAswd_#=qRL0n<{L45kXIM9z=I@dGtn<@RsG3xuq8=2RGxIw$oJ?>TzH-jklLFR;H
zaTfId&bsF(x0(3nzB>|AFZH|^#NRZ+AruPXeh~iz@q$J>B&_bgK~eWT3gST!52XR&
z30mCD$RBa2`7v1(6l+wTN_<Asm+s@^e?dH#KBRZ{Na5C`JRz}hiFPAz2(cmL3n709
zB^u-_ApOlszM=<|Ch-l9boX+In9CgtheS2~Qb<^*cKOBK#1#&Ci-k};gvuej%5Os`
z8A7=b%7;)YB+P#45Xywa1*6nfw%$4H87H$)HUu7xxH#TR4D~7datM_|DA*zH6()lx
zb{<eFgitXA5@)Wa64{|(#;b(DUSi`AQbVX3LbVX$*=Y=6`i&$ulB>&vHMkL9BZQhE
zkf<e*#A}kM9pVAhNp&RB(;GrU2)u|SDFj~#i6Km=Rh9+uY;1|TA@BtF1~M`ALZ~kZ
zCXAPs(!XH{9S$gsLYVh7o{z~PoO_&1m%>OURw1#iN8H+sIC3d1gzu)8Wnnc7Aw7h*
zLwF~I<{`8Qp;rjKLueU7s}M3n=omul5ZZ*$o{>uywGD}##k|F}9Wz+N*E^>Rkz<1y
zA<;bEIie%49G#`4cVZSo=n+EC5IToMSF7>l)UF|PA^#s`XS?YFLzrFMN7pTc?jfOE
ztm`RkY!7rC(vBCuvPay9--a+Cgn=Qv9zwqmxI?6W2=A^>?UXE*$Fs@G1=~#0pb(T0
z#)QPupt8Hf(t^PuQ5y~kVQ2`04=BSzc!N2*C2qzXPFV^GgFlj49`6|?>CqDDnXs!O
zgS{ETTQWS?A}*~d&x$G3Y%G5r!lxlD3E@5FC4~7QEC}I)5XOZtGlW?ojAxOBP^*Es
z1EPLx;)i5Z2>pk*Aw4mKNn~tnBHc%lm@ILM#Hk@n%YFMX<x}@E*o+X?zwqUIn9(sg
zX*Q+$M*LhBN`2oPGWJ%}lT%C0f0BQm<nV+83b*<$3}I0Si$nM%#DjfA-<GVPa*@64
z?9hip+@FQ8Gz2pQD}>J}NGoENhp>X-X<N=FeGw9Cz2;Q#RxU5Lm3<k48bTn1uNdb6
z<!gy6C9abAjl|Uwzm>Q~qF<tRK;c(f2*D6^S;{<RF%&{Lgh&XRw~4#<h<F}fE5*ZC
zOs7G?<_V~Un%f~nsl`iU)=JrP_!Vc37x`RSvN^O5^E~XrpKqS9jv~z>xY_K&ZZY1t
zK7{W>!rIgQ5W)sYZ!TY8V+em76KmHuhwu|c+CYYZEtDB1EP{y<{2aoz5axt2H;nBe
z?4U-6Q7w#}A^bu^6h?tCekFfG_$P#aL)aa{o)Gqhus?*oRL`uqqiH43HSX<uX>5`m
z2;m@;8p2VT;4{0E4#|`p4&krK9rLXccg%@Ip78K|)MI2wTi<c1)F(nXDTz}dtZwT&
z9l{x||0EMaxE{g{+J9<y2$w^+Li-=Wg%B<=Ycg<+?y(m`pyP*(@a^uM=tG)#HH1Gy
zxF&zZ0DSwuSN|i3H$%7`!X5eQmW+g+cbQsRdl})q5dIF~e_t_XMoUM6!5HC#5FUo`
zJcJh^JPP4)2+u<Jk9zmqv-n?eJkb*x7Ss2XDW4oWe}lN%@?!B6Hlo}r2{B=CflX`}
z`NE=<^MsK%EGAz#vqJ&ieL{5f*mC0@x`JU83ZqOIabXk=<E1c4gi(^8hfy?)Vqp|#
zF<t9K#&T!GkC(;07+n5AQ-5?}aazk#VU!MIcVA%%Igz^QfVlRtY#8Ojs1!!!Fv^F;
z0`Cek883%L{rl<`?<-+wJq1ybDf}@d?}OB7>ry#n`f3<e!a!KmK8w$#a|r>{$swAP
z2bAhz)Cglp7(>IT8Ah!z(!*#T#%p2J4#O8lVi<M8ysT3+5<FqC>Yj<bcen&MbbDol
z31QsZoy>KH#JcneqiGn;n1CDc^}}c&Q^H-wFI*o_4Qd!hqcD=fNDhlbgf5QoJgMm+
zks==(hmk6YG>J_lmK+kx0A%m4`v-9nnd`$_gwZmLZeer}qg5C$&yQ&xMjHn1E38@D
zuoxI&E2~P>*N&Wtrqf!s4+}%uA&d-3WQNf(ECzx)h0#S4SrX~fIgC=R@{yqH8b-GC
z|DR6}GJ%@aIc~801??3ZX}!X@c|hqMMjuI#?kkDcCH9lpU*do;28J<6(n=V-7?FYL
zNGx04k?a~4#_%xS4dcBqMuagkjJLuV6UL~pnBp(gA@0pEMl(n30!Xg1h&i|3r+8B4
zcJJF^yc5Ry5(USG#i}P(`m;|ZGfv7a8=voo@j)09!<ZDtxG=_tF(Hf(!=e+hdSK@f
z`!kme7w1jAvZn99{k;^$kHVNteugn!hM5w^REm0jaa;!DoF)tRpLabR-kCu;Kd8(K
zi-WRfhEesPQYFhvoJ}dc<)dqUP?;CT{4j2ZaVLxg3>ii=3@405VJr^gt1!L};}gnr
z7)!(WJd7n_d?tUvYm1pe-k@Y;dwCYzG8T8YI1ZzI8OGi>eP4vJJd72RA;a?}(DCLD
z-itBdY|_dwR)w*K#l+$ZV>NkxI3}@Iv3x7id;i{zIsG;)c5M%@7Ndp{U{aUH*kSyr
ziOO0FiyApd4&3h-k{FiA$4D5uq>Wr3GYm`8n_jEJ02IHjt5RIbSQy)AoWocf#=0;z
zhOsG(@2G=|W7dc9z5F`|W|_MmWKKVNn#5CZH;_v_M6_hrAH&!j#?~-?mTxaDX#ErA
z{JIFgh03)-Y!9JhEy=o%4bdGm{$X4R<0|!{ddx3jT$mVpI4qhpzmh*;q&&{tEpd-T
zKJJyozA*Mn;()}15)VmanBE5!#&9HzqhTBi<9HY+!Z;bmDXQMe<aZ7#qgEz29opq|
z7-zzmc0TiB7-uEHB;7ur`J1GF593@I=c#BHGa2T@d4U(?D~7og#+LJ$f5=DrUzU#~
znkAI@GmIN7xG=7TMYGNGYsu?jnE!NRokbz!{L3wx5#9!vCC=NwOF^a8ilBA`_rmx)
zjQkN4h~R!0|Ag^0jAvo|8^(h$9#KK0%nX>2@G#8jq4tb$Z?p<k=1EvwaYB9h-<=fy
zh4GyHkD&8{7?$j3!&6^SmI`;I*2hG|Tu+_|@=79B;?&*!>3MK#Dveda2nt0|DT2xo
z6prAf2uegyGJ<Cwu@1jTL@bal8WEk5ViJo>WZluFr&x&o<+b!u5tNRgOhg#%IR}-W
zUS!2dx~xQcmXkzzi7!ihC4vgMZ!1Q`N=OEKHG(P;REwaxe8p@cg1T**@Yhu%2*~@D
zW_C@k5fNfvD}sFs(`rVr;Il*$95nMERO&<!A3@&;UXQ>Nfj5FI@+5+U2z(JFGPVdd
zA5=J;by5mUy@=>)u|B2n)Q_M+1Pvo-6hXU)D6b@mEhHvKkRpl35}Qg)jUerRZ+R`I
zBzWCGvs|BaNi>%@WT}X-rKDR$&^k9v8%eay4bwi?zk?()BFN13=@>z$T$+FB5<%Ap
zdPLAOB5Y&h?H$OI><GF=psY&jF0tlFp4*dDw1-&K)GH!JTrdBU);oee5nS!tq`<+>
z1xBa#i=cl5Ln9a#!GH(`^1}!QM=&TNM(0>P@jRt(+r{zXQL<==Ou&b{bZkWo@5mS)
z!H5XnieO9xBO@3U5yLgSDZ5dt<ku&*K6It*=m_43i0bUk2r3q7K*tfz{E5kzmY2SL
zP<flNov8Q@1u`P4;Im^q??ym;PvZL$Kae<1;&`gb^)eG8Xj9z7V3Q*Fh^4P%p^nKB
zOo^bNjzT)7MldacO%ePU!N(CykKoG)zKUQ*1T!P}B7)@+%!*((g<&a{MKDLoz+9$b
zP@BIRmY_V$Bd=cSFkj*Vi3=qzlDJsnClP!qi6s#%mBeQf`C)-W%ICRs!zN-dpJzdH
zDuf-z?n6tipnT@{Zq4fabp$IT@JFCVuquLYBKS6fH4(geNJ%{;tl4Uo<{^dOa=>;*
zr*<^L8#W~eBG4lEE`s%xaH_wYa0x~biXhCA?c|9_W;zk*^3jlJN^H`{V?|&~Ix3Oj
zuVje|-DNS!57$auC-LKWq2S*~#8SEqlnOic2O0`*@~z)JZy!=-A5u2b6x8V&+aYsv
z1V7P&Met7qTO!yR!TtyiM8ss@&k^j5;1}w6jYiudxL(k^J%SzV8Wix-CI6B3tNa)9
zyDx%WQd(NRh~FK-9!lmw?_LUIl83{OJkj*?s|DDiu)ZpLkd{-*Ck6XZ1cxOnjzn-Y
zf@2XJr+7=B6A_%0#JLDgN#b{jrzMhmXC!e};%^a@U6M-A<Hy8aiSxN(E=b~H1eYTC
zBZAA)UCDi$XGU8(hW}IgTw?|$aU+5|lDL^0@>T@5B|USo_zT@#`S@3^KLzja2p$*r
zu0Evv8^Hr+FoLHM@ZkD~5iHzR_HhJ{Xv$`YN!9G~9>%~Uxt>MvUj)x1cp=4@4J}R|
zGpfdC(o^S(#&e90Ji1uslvfv;7%MTKL_X%%Q6QIYyuU<Y9WUvqr=z}(B07rdsH&ry
z&b~8>>nN?GjE)jIN;25W*iyQ%!_Pkzl?WT#v~L%Bd*XDI)lp7|w|s1eUReufc=GiB
zzm?VHb-b*L&dVzjE9js|SCm*uVr7Z1N~|Ig68Q;3R@YHOhlerisHyWXE3{b}!&OP#
z&(36U@6u~J>OM`btz*&Vo^^D@OCs$-G9MFk_;e&PfQ}Ito3S;*z6|Xf+awzgDcxJO
zr64uX(NM=29dGMsq$5d(qGK>wr;7u-yp_tN=-{p{PWm%&V;!kF(sVS@(Nss_!3jMN
zE6sGI>*%hdht3)eEp%k+=%}Nmj#fI_=@>aGqqUCDYb92y-mNXuuOn_p_GdeiiH8m;
z#P&Km(AoVmbnG3PKp(p4cYOo2Hl1{I*3m^r7PD~M`@c`R%13^iEu(t8J-eGE`1Z~r
zrKgU9hm|o_b|3jkFCD#e-)0v}=&R#(9sP2B21=s8jscRWdRU}~ZjgLTJFIZ2)ev1=
zHu08@p}Mfx!*tQL94>K$L_UtxF)EiH&4QNno4G!1pBA8;SQAp;(J_{GTgMa~@9Ow?
zaO^}K#)O#nbg|O=eH|a@7^ed@J3W2Se!LF#xbL+yzJJPen4n{Llf(}tzH?Zaq~pQ0
z%#SGK6$`SPvwdyiR2|cF%+oPn3N{P+V;$3VxH0Kh8}*){iyD8Xd^Jnbvvpp6EfxmT
zf3EZ)asOli9zJlYZ4BwZTPH2ju~^439mjQiqT^E?>vVjlV~LK>bga?g*Rhl(tK%yj
zU+Y+=;|m>M>Y_r_J2hcDin(5{V}*`qOJg|qN2FBGJ*=$Mu}X(tr^MEQVg<-I43OCS
zTOF$z=V4{zVdeN?<-1G8nG97&fFa2x9h#0HS*jz3m;cH%vp6aqPb<{R%M+O*G071f
z?6FR`8*l2kG9lKYI&(CD7anB`<6!HE>Tt*t@<GR1=@!jw`}D9fq)A4HCK>nVrLCQp
zwqD2gI)2gdtBxOZY|!zej?FqY>b!(KW=QpzO}gl1)8Kq@NYq3>>0)ol&om2v7285X
zfr@OSZe>}dCzd&)Y}2t_7j<9!5oL#toif?2jwnn|-fxTT(y?2|J{|jY?9s&#w6|2j
zy*dsY_P(~LdzY(e?Buc?cz}`XI4Z^IppO1WltU~#9g~hIOOGhl5pk8wFGmy(>#^KV
zP+=LBff@!*={T*Ul!4L)&geKxr6!A*1|7faIH%)0*}EZ?vPXNumJ<2dbYUBs2(}e3
zvFQ88{h{NsF4mrLgq8#TS7?ihbS!4zs?>!)C0-*#$h7wpZs>TV<FSsLI&SH>t>cc4
zdpiE6c*_6`^Oq!O!T7Jmt7Go#_=m!*<Drg!X?VFHWLXS@@h#~QR|QSSkWX|xWmCrx
zI{1t{*OAvitbyk;4Q*GJkCCrl$oN?<l)XHLXn#7t)j2n|d_DvD4HRIQNwNHUK?C%s
z<6n5I4z~;xmY=_5piaKjA_j^YA~B4Izathm(EJTg2?He!jLh$uU(LhE0=MGJ7`)>H
zuNtUgpsay%1}Ye+XrR0yti;PQ&T~h^DLSth$XhFM_Ln{)WqynmQ^^n`v6T%>TIN}M
zFDb_KfIl@*O@7NmP#FVvkraF<T_{4Q<eCO*8K`TZo`Kg4)HdKXkiY~R__su<cmp0o
zsQITo#Nmpx_Fo(+KvVyDPClO@F7>{MxI{yU;)5efiK9w=0}Yrd11%Wgr2-8NG-b5h
z0%jn|z@HmZk_|LAU_39G!aU}b{kTtWdZrpk<FBtbZNf26Usn>fk19k8YBK}r23jX|
zpzBtzLrX)L%~td=#LN+EaAv0sxzt+hL92ANO<M!)474}U?5M)WbJH_tzv;_lQVpCp
zalu3<16gFO37F_?po@Xu4V*L3)j+m^Wd^=5(9J-11EUO#HqgUBPXj{?3^mZpKyS+Y
z^3sDD;HcP-K=$@w_6>3F-0KGB@(54^cfL*SFL8jxm$Q-w8W<#LMIr+vbV<&cmPE#K
zglCu`4r&`|V7M&V5e7K&{Kip*HisQXhIzxln+BE`_{_jt2F4ipz`!^e_-&^1h38!Z
z?--&@GFIaH72fxfJ?|NKpOUk+@ARX}mq(SEX6kqY6PViP9(G1PG{jXA9~+o%V4|e?
zILW|AlAfIFGer_p4elux;px^LEl%B;VPL)?)N`i9SrTVUq~{z-%#}D#V)k!B=@v+O
zp~OWJ7aRCQ5}!)^U$CVtg6c7x8vfkCAN72^8KKW|4-Lq211k(1G;qkkmj=Ev@Qs1h
zQn0W78O!OFucdCTH1OR~WfjA8&E9`h`PRT11A7gzM9^<QHAGwMXY$;D#=@QG-D)6c
zAY{O17{+FRYegakbV*!lQes1y1j7(Rz9!RCxLMV|d_{h)Xh|Q=&^eM=$DbN-C7okn
zEz@}}WvcFdzm_laUY+&K9Yxo`kJR+Ru|F8tU|^$x!j~E~spO+e8`Hnq<o?B1ByTqG
z6SYA8I;)az`Hs|6dEzNu?Cx=f@%cwyCiuN8DccNe=Nv&sI*q^%gC~cJ5d*qk4E!qT
zT@rUo+#~VQQDHHt#rq5tOmDK^zySk~+|(6)eZ3YY9wu98+YOvHaFlXVJ?5B!<A&(4
z@RXGkh8Te)-*{E)Ndr%hDmbPzKBk;8aMplwsp4;xkSk&&oGUZao+XdilE(c_=M7vi
zkjF$`6Bi9!GB`(%+vK5v%Lc9+xMARmAy&xzY2e!b%F#fvlHP@7y{rxSJ4Tpx$M@uD
zfxJWFZc0N$F*vy;{*HmW2L7X=Ht?5$dj=jDcxd2n1NRx{z!>Vn^iSFyp4jdm>i98*
z?q5l8jRz~HNAh1!DM+Id9!q>e9Y3b<ksm&jN;Ey&^TI%kDTZrqZ!G@wh*-)v@tC+(
zIo3oz6Qxa*F_GUy0TYEx6gE-N#ET6vT*JvBQySs$hizXnQN%<^6QxWPHN_aU^NP^u
zVy3tZsJO|sRX(~BlAsTB$7+$eu9y}ZXQHf$mrcB4igAf@Cd!*)K%S8lIVl?IoZ6^h
zq9W5!vf!(xXg^dk(V}v<$|iW2>gCMd?A>(g=q<ZJoWxkwL^TsLOw2S<-9!!k(L`?(
zHBHnq(VQPLrzUEfNHvjWqK=7p6CV~URo4`ij>m-06vD8wM+dKo1QR4Sw@Iq`izm^<
z(2sp|?Osl*XQIA|1|}Ms7&R=DACjMqOeC2|CN}ZRei1+LNqmY4UU%qL@{n$9;*DNj
z5=~6r%^lO!MAxy!D^Ezr!_*h0lbV_MyIOiW6L}?z%xP(Ing(4>WSeMh;_=v$Z5Wj)
z)_^gO?N}~yw-IMg+LO-qb&!~0;^yAuOo<&Oc9NJSk*_*Sq6;~*CXJ8XOmsKVgWNVn
zWy(pD|GIWzUU=vh4L%*~yFMm&%wZ(6Y2tMg{m29p!%VSsyuXP7tY5g9rC$2;Jn;if
zQGpIJp_m+l>O0uP5EBcV^}ahg;oR-4!*#ss^_1bJuy~wh7-5Qo@;I?eJuMyIb~Kq|
z;yn}Zn|Ra2TPDV^6ikYxxcZH)P^P5VwQj5?-eG$3d!H3a9&6%V6C{4<E*?KHF^+;N
zFVz}vid_{S%k*%S-~^Vh2@(?}PLlYM#K{t;NSrEhn#4U*`ZGMIW2T$n^e$CnmWkOW
zFK)vRCgzx!YhpFCU}7EvnE1rRrzRFKza|!$Sj+^J^R>*ARC|_~wVCjKHYax|x9n>#
zVVFK~pPN`_iZS`mOqk!NE|nOwq~RCjZ8_hUvV3o~O<8V&xI*GzPqXI?@O@?CYkqr7
zSt)Uq#GkgLeq+KqrqF*4wU3f)B4R={5ik*A_Un`=6iMaOm?n7=q~t$K=E?0u>KD5e
zx(S0Zn6N2<n?;j&&NQ#dWW1EL`<N0n;h5N-ndC~<W_xejo|GpWWApwUpJQUJiFGo;
ze~<HgM=>7fSx+%*CKhOs-e6**iK8Ztnb^cEo7iPyw~5UrelqckiC?AOZIQ*g!^Bn-
zKbzP_G0;79({A{P+vVfMW6DlbY>v+NUTfl-EMcjb{)fjD_O*GL;2sluWlHv$I83Is
z^YRwm{U&(3*#Q#=O^ojCp*uvO-JV3^h>4apx(3#FDS2EuZsLTAv*Zu8qeC3~J}0Se
zvK+@8&7{bkW>PDaJ42sADOJM>zh%VzZsHsb%ZcLD7iuN#t@pTc(ZnU@$U?-zA0{qS
ze=W4JaK*$`{?|fP3xArpMiWZ$ws76V4HHjHJSEeZW)lxgJf!EKgxgH;I5CKN$HZOQ
zMici;{3A2iq@EaO`&-iYsgi9y9gZtwN_qa3K5OGVw;skH{V$8<_=x#x-rzA6N{jEf
zDt?0&|IEaHrns;0Ib~Sx<DiOhy$u8JIGmKnLS73+Eflj5YYCH>&q97n3?jw!Y<Ibs
zr+|gRmY85FXrYh=wi&o9hdW_8%E6iCmn;;q#1!+O;|j63g%TD@TPS1k;-qZ$l1f^l
zTT#lweP1cx;?!M7()mc$h_gfmRMrxft(=9i$CdJuep%ux5-V7!XrYp%8SGU_RJJf|
zzUUCqRk09yLtJuK%|dkxbuHAhP{Tq^3-J~_7HaV?7HV6lW8uS+VrLd>8Hx~<ju!~d
zJubSI9CY>alVvdpmS}UbWGi1u@mbip+mk5q?cdthx6r^s6AMi(G_=sjLaK!{OSHI>
zEHt*n49Kmb3CR|SDH1!bYID0pDGEuyx{0ffi{rnx1d^IrNGE43w6IWKZY7@ouW$Rp
zUM(%ue^*?;d*F@qRu+C(?ptMg-tX3-t%Y_L-XVW1w71Z~!axgyEM!>7w9wf?7YiLN
zvBIj8g)B?hF6&MP4Lgrs*?3&xf~&49&5{LsTIj`K6VkKEr3`O33*9BrLn3{KhC21O
zu;`0Kc7mAHJ{AriSNc*Uc<_<LeiHjjq~`z&U(f4KLa{K|!bq~t;?*`7YGJsA5tgXA
z{L9-6vxN1Yc{DwvbQd-nv%g7sFW$r7vEMq{5{<Dpm~39^#PNSiGzQ+XFotDXG%ap+
z`rDGYd|ct<yB6M~5L)<xxv=nog;^G6Gy7lWYr8OJoQ3g>jYTXa#6MlM1}9ovEaxl!
zPRU790_pRSg~=ACSeR;In)IA$;p5!58xIwjo=eY=#3emnr%EyWaE^t!7Uq$?mbf>(
z=zE@=>`u%Vm;EnbR4p1Tvheh{vd}`QPd!QVJoH&C{XenrsU+yL#KLE}^ioNDZeiy8
zDSWlu!U_w13o7I39{Z(*l@@4ZScqSd&s4FK-j)&XYbU*{EYTbK#=>d~6&iZJWwE}V
zzDCl#?=?>;&r9V!@ol(MzHGpPM&WOgG@!lcjs?j~OWdvC>mN(hEf`dM8?iP_3zmhG
zEHVqWg{Xy%7B*RMEVvfFv#_3wZB{DB!deUKSU{)itUD^=9C6aiWxaW)d%m~CK8_z~
z9Qd|SGj=FOUldooG0f=B$v;}yY+<j3ePn)i>|eYE*uoYITP^&|RLv8cb}xRH+569C
zROD?IwzI6`J#;&$eUknq*XLIYyCl6k*Jlq|_o@iI-@*Y42Q5^q5XZ%7=Nl$d$2pNi
zc|Js8X4dM7Ht-S2z@rw9N#eLf`kx^Gn~N&!w1qPk?pgTT!dVNyS-4^0riI_B<0bM^
zLoZo4$I^-KeV%r&y^rpKBrZxE^J52E&Oa<%rkW4%UXeKTC*M{2jQ0F#;Tm=1Cm-E)
zN$}L%TNZ9p_$|>{rtzWnamx4(CB*REB{xDHI6A?uin1i}K1JHX6AFoie=R&<<jqP^
zi5}8tu<wzD$JE3sv87LlxuH4PaSI=b)o9Nw{Ac00g%=hcju8t6Xam`4jj@Hbk3XR>
zO#V+id2C$T=OK~LMt&O&Z8Wk`z(zqE6>U_qQOHJN8>MZOA(0jLl8sU}^o6lSZ2Z)^
zQc)YlY#e!-THHnn8zm*3a@BisZraD*Bof3HCxpG_j?_3C6>MBcEK$}*IUD6|;4{z5
zHfoPc+_l7$FB<cTjV8U*Sbbbe==@jT__0eom2JFg!(+p1qYA^@sAi+Ojj5CSGtR0u
zSM~S`OlrL@E~SQzbtST1vqio0S+b|5jaoKH(DCTPci!z)+eRH5UmuTq{e%*4^ZNB(
zBob`iY=XKr>hUi;|3TvL$w?IB{;!GMsZ-O%R-pQ}xWK4^js4fsNhI+vHk#XLVI##x
zV;gBqxh)KGuw?AUPQ_AfB*utimU$UyQya}}q}#Bch^Wr}AhzrBxI#wW(nc#A?QFES
z(b`5E8wsTfwv}1n6j-Ih9jIu$_k;@4!G_T@j)R|ls>f8nC)WCQw9$#Bvk`?iBFjc+
zCSx5^*P)Azt~QcfB)iDA(T&RPAfJQoHhM6pQPhi~r;T1V92>5U-ZuK!m}z5{jlMQs
zw=v$v1RMQq^tUnG#t0h&Yz(xa*qrIZ<dw<nL=3V;4c?|%%;0u;hA`PPd>j?0Mh~Uf
zG)$%&CW&Z+u5A~_jI?=(E8e&9ai^qFHb(PD`9-Dth9usU_?E;m65p2ij>NGN-?hO@
zocYNI@{xspqITDD%u)Yjx;rbgKD05BX|plKhJSj#Nj5&R#mOWT^7+p_TzGb~xo;}D
z-6M``$v&1UFwGVNK3$K-PPb8cUhB*{nKNvRS<#ThY#VcIEVr@3##|foY<yzlQycSb
zEU>Z2#$xhhMm*Q^PzV>=xG}iQ`T^ysR@Hil$)jbf+AN{$+4#an(Va0I>!9aSW?V_+
zZC0P#SjO1uCMI_jms|0Q5YZ{K@s$nLMt~w}W2KGNHomn*S8K?jbgrFVW#b!)%0<t$
z2cFYyE3J|Ir^J46Lh(~zc$`9!<iizwnvEcByL`(fXCWIA{_BJirtWm@P1i2ltFzp>
zNy-*A@0@7z$`gtu!`n8ZwzvS|%?lZaKkvuI#yK|D+Bjw7G?mN7cQ&@!*luGzS!ZLT
zjZGA!3voZlLZL;X=5CO5zGAT$o$p5*n`tFv<ns&<+Xh=~Y_&z-CuV$`x`}Onwo$fu
zM>aBvJ8bN<vCGD88zYCu{=!#FV}7+okCoXZZ@FM~kBz-HPS`jpb!4CX*RW!qHS2u)
zZ5)t4I%tD4!iQ|o^RT3kNIWX>m_!CRPD9jN%pFrDxyPIbJd)LCY@D_6kBxuHc^kh|
z>uvmL<D4xvcU+{Yl)pI7bY73Yzyc~RENzQgq6hs4d38dmQ!o9pjVn|lUpLaF>ZM<^
zah;#r_}j*kUt@0A`0xCno3u`wlDMUmKfNVO`L>NalDI4JFNqx6WB}f=&NHj;%b&hn
zBa5Z>z{W!x&uzT0@yNzw#!1y)TJZ_(wp;p{EjCg;r5%`(@%n<cV~bYdA#%muC~l`_
zFt(T|@<fq0irA<yl^k0rw@!>Ulf(I<Ts9g1S`_)CC=f-#C<;aKN)#2M=vvlSIEpfo
zcu8WBD2hf=OwuJK7MEB;BEvWSB9>Sxiqij|Ph2itHi~kRE}!f3aumPL7N1ni^{E;~
zB}rG7_^QMzxo_FGVPJkzO%l~5*2sNZGm2W0{$Da`M}he<9Pp_VMSN6@{CFgKB_>Gp
zNlcXZzrgjQXb{DBQLK-mVHAy`7$3!iD3Zv!C^DkRj3On9#!)njB0Y-KDAJ;65=GOf
z=o;_{JDwgUtk!d}?68S9`Q7>1&7)`$MXM-UM}-MxTZIMMk|na!r|<CXJ)yLTqHR>@
z=AFw0s8H?r3&Ts-UJ@N7ZaM4i7)7TjMn*9zima%ZmEiL7AyIVZWAmgg%zIQ+^x0AL
zkwiC%-6i&r*i&LJi456W5_gXj=o`iBlI|D907>-E4fEmC0t`7&J`R$oL@_w`ZQ<di
zxr}XS6vLv}HZ+ZHxFkkMJa<AF9mN}DZxrt^`}KWqMlmKTW_8CGX!90DE~7n(LuJL8
znPZu+EDtLbO7go=I6Xad??v%`RJ4RYkUryb{fCY4ei+5XC>BMrn4FK|qbR0FF(Zn}
zQG8P}c1jdequ}CRCjMZnp6rKCi;C?(l>d*V7Hqp2KQoG1QOu8G0h!q(X?9fD-nmiC
zk;TN4nsmKM)zvZcqIh^hnccie$&+HnWMNb^8#tt2VV?JsC_atCWeTHM62)gxT#e>)
zqF5^V!^Qx^e;&m$R>4Zb7g4BD1fp0jA6G>2WfWgU@pTldqlo;F!Z0hNsQpsHDj8t<
zYYE>-B3dzxujsy&k87gvOXAX{q>m1#YmyF1OrF(t<c^FGMXP#Rm~oOh7t-}8Y<|)w
z*^prvkI7`$O|<0W{i12^>Ne3RVkT!K)J^=fgy0w#1ah7B+9=kMnH=V-B1|P`QNNGk
zhbS&Z@kbOJqSzS4-YE7(u_=llqu3h7&rxiS;-@Is*5!EM7IJ1qo6q)T4$Pmx4Kfs!
zZBcCJ=Z#D3p%SIbp$W<Mol*QkYY^qiXUsU(WjCYh)4kS7CH17z<)rfFNoD3qrF>B@
zPa@hM#epb(kK$Yu2ctL?#aYH6BjJx&zK5eY5=Gg&O^-&!;s3`Z9+!AR;z^08B%YRd
zMk4o9Fg%B^|Ll}pYl>)loR8uHS(lUVViZrG_F{9o{SHyx-~J|%gKU?hxDv%b{8p4Z
z{*2-_Wh{!L_X}K;GIl+RZ>x&oiyKk2%$IO8iqn0Q=x)(s+;2_dF10?2zoWPx6%C|&
z5_!5cw|;YOm)!x*$MJLTo}>p9!YCd`@r1fo&Nn`})FWo|uVS<kOx4pUo<;G3h3E(w
zuF*J?U;W1bT$2;U`MaWV%er{!>ms&14)QwOL+AVIq|)fWr2GyFI0!ljIVk9$5ZjFo
zdN?TT;3Wq&9n^AA#6eL9<sH22pqPW=4$3%)b9g%;hP)nE(m^Q)-{trGcv4{zZ(5aH
z+Cl!MU5=epZk<#fKCW2S!Jo@f&O!Uj;tXMOn1`Xg;-G?q$_`$2P|?96?k!pxLxWby
z5&HFBwZt`VWL0s%?c`M*u_lE1f`hM$79^v1u4y#~W4}qR?x2Q)%vMQse0<G8Z3j&q
zG;>hLLA--T4w4ulvrs<P>mb1qn*O+(&*$LhdObKmQP)AD^M9?=h3%8<%L(-y)OSFl
zfrExj;m00I1y=%aGK)R#WCtk@8q<HMP>NK^aCYHo)6yI)?~{0UN@f!WB~PT2NO#bj
z$#c-rK??^h9ke489JG>Ou`G&p^A$X$w06*j%s-{jwUtDj<zB8UARjt7;>6<&2ff=S
zZt7aB$|<FjgDeNx4!Sv_Ht+0U!PX@0*Yu+w__{dg>VU-3ft`rOhNm%M{EId<qo;#j
zWTS)WjLJbD2O}JeWX2u5?qHAu#X&y@{T&Q&FwjAha>-oV$tC*yoMp;^GIl)k3`ri$
z5_d4n!El*{${%(a>WHS%kB@xX=qj{$6f<wXuH?)p2csQ~aqzZ-Hypg_h%uat<qI&v
zw;Zu{qVc=FBCEQjoKoIlQ9Ag*!8ix+%4k16rF3oTdynaym-N2GZl{zHr$nc6Jeiy?
zq0y-H2@XDVFwqgU14o>Qbd%)cM-nGXoZ?`rB&JCm{<fG|o8e%lgU=i+bui1pYzOnn
zMh9~o%yq<GiFuCPXHiaU?fkc8Iwwi_YwlB6=wPvfPbjXA*hfG1=NRUl2J=&gt4c&4
zEo5acaS%DBT-x97a|g>DtYTCSzF@K`y)3xnal>L0S2!s9OEMS3d`ZrC^X)jL5ZU+t
znu&Qgb*04iR<SR-mssuKTL)_-Te|+!&F|pgYhq+I;Na7b^QlziJn@u0%@OSfy3c>_
z5M~0XaSpCI&>a{QbqCuVm<}ul-#hq$;_V<xhB#PD*FVl-0kw~F8JNdSG*6=7aZxwx
zvUSvJ2kTklT<pPBUggAz0W3jQ5E~q9bg;$2RtM)B#BFl$ql3*f4!m?J-8=qZChPH^
zWU3hc<VPM}@H%%(EHCW1Ft@~Z2Rj^`aB$MWP6xj@*ymtBbqcY+I-*a#mqJA?OHbMD
zU=P(NJ?l4?{wbyZPVb3%qE<aXJ~%k$;5bcIFVVHEUf6TU!C{K-iL{H`y+<4nk2+$}
z_<k#u9OJbGEJPl~f6BpW^3%cZ4$iPNy9nEImR;r>@tmyR672EMDdik9<=_tommM)Q
z$^dj17^j0vj=0=v*2AQq#)*@$uSn)_Jo#~L&s8a7-#rjV4_$X~gBH?7Nf$RA+;Z^L
z!7~T99o%v7(7_`IcgY`$efMIta`zn3c%um2XVwz){!R9-PrOs4!9NcEmA|MoDC+^$
zc3CRjzwOd0&5wCZ6TLF_2}^cRJAO#hTJi1l{~SCgPh1ps@xnoj%MOCLn42uh<07y7
zf3{9-<BN5X&qaP0N`~jtrk(;WDwe27I(2DMn~`1TC>_7^G@#DD<f6DM(pJR9$PH;l
zT|6z9S?qs!S|LrT;F|MNE=s$o=AycbGA`m6n~O>=%DO1$qP#0^JEaZr{3Yav1D-TZ
zFS~ffMFkfNDz`Cb#UE%Q&aSWQ;?>N!S6x(b#l!(`BBqM5D&$w-5J&I$sxBsc*quZT
z7d2gYTzFm7Vqh1wUDR>WEx%}i7b@MB^I!2y$<$7?`L$0g74D?{QKV9W3!jU6F6ztJ
z5*b4|U(?gdz9#W?U3BPFpC?=L4ynvBy?UNj8n|faqLGUewc5UMT4B{+?zOflE*iUV
zbC8pRR2OM39=cqIfF>@Qx(K+?Tr_i$?&5tHAGm1lqJ@jzF8a7=>7o_?;v&OEYZq-?
zv~$s(i5xzVIbyQgGF83OYQ0v99RV_yl{?$6nJzkVY=>EMG5xf{jz%XJgTG78a&hW-
z`_2-(NbD++o+E$lU3Gg}ck;HmI6S|HE9^sy-!pnLF~4W@VvbrTlIZK=br+*uyy2ps
zi~cT#yBOhOfQx}HhPk2%u`X}&AXl7hJeZ>5f{%1{XSSx#5Er}vcc=^QDQ3U2+4<sR
z5luG-<gq_~q>E85690*(TUOWeri-^+yzAmUS1g9)LNX?7jElEjyhApwPa5l@@~o~T
z=nkw+;^lg*Ca8CVeoGqXV!Vr`Oa@Ee#fL6Faxt00wjyRCUsW$V$;He(iR282+75MW
zIK{<O3S?&7A{WzK(I}!_n$ApRb^VwzJoXiAoIHc_&-))G&XPFW#T-e@CEp~$0P|eT
z&!ss%w@}gr_lSy&y_Ll-K5_9Wg=AFv5~eWQ`<aV3zw6D`2<fxmBrkLE1%=<m*RIg?
z<t|pZ_>w-<ox$SF-kn_f6%w=mD_yK|MN>z0@r~5e)hvQ?VvYCfi(<ZYv4*MYoLID3
zF+XLjb0S?#)ijC?`?f(BA(n-UT~t*U5f|UP_`!wl!f=t}VyzT2Yei|(g~gO~^R}qw
zvn6MuF18=_Iuc2^lBiuYW1WldT(Mwdy$qJ2q;LTwbIqYYR$&`lY;^IHi!ClTx%kl)
zO{~q-th1?Xx*Qnq<rL())1u1W>Y{U}r0tZhVg-L@aYS2x`Ka4AGT~9T&klNb$UN?J
z@rx@)S19njn1;C9#UB3G#qTcmy4XjFb#c<geisK^9CUGr>0B%B<+(gVoOZ~exx+4w
z(MIjboH?fJ5f?{Yoa^PKo3twFI3?#s{O^TD$Wty(yEx<GEEBdOl@k8ic~PxULH^fX
zy0$9zoQv~R85j3lTySxbdN(-su8ZKWspZCdFS+=`#bw%o^prw>`EE<%ii@j~_*3FF
ziPt6Gka$z#Es1Q@@!LDh*J*{LVMP9#ygEO(#NRIdq3Ku_bDwhVZ@p-C%J*YZ{*{_Y
zVR#_fb?vnB*u@hXkQ}tl!BZE{Xk&Bmat{7;@tkFmgQ7Wj;UXpn`Ermy2YGUkH%E-K
z#pa0ZJRDM{<Q)DomP6%?wm=RF=J3G7*ups|lmpL&_I1akJe=3P-Od;Wdx<`*`cI3Q
z-(oo^o`W(uT>S`+td__@sT`Ef0oRL`%n|cGyf&AdZ1!6=2S3?bD4PRLNlz$Kuw0I?
z-u&;O=7}e(B)-DWa}dv%b5Jn{m2yxe2gnfu-}aj-m2>cF4)lwIVp0=_wn!{rHF4*`
zSF7frS`Mn`pl~12O<Qs+zDAB{eAdoE%^YNPYF#S_ujOEJgQQ8jvp1bfCo!*1N}U{h
z@`ZQW29Gxf2{}k&GIHR{L1GT-<)D5J>gEU|#<ZQdDMn^qy;9(!CTwqm98p&`%t0eY
z`^fwMsQM1*sERk<g@h`dP^A9;APCvbMi7z^N+=-^LhsU-t{_zq6r>3%O*%*s6l@5J
zyL)@ty#W<eIyQQ5B2q*_QQmLH$2sqvbI*6aJ9qAsug%OiZSk%yZQabE-ZmqQCSkM+
zqjgv`i<x0G52FR?a6HtMNzLxrER1@`Lqs}%TXx1fy|dU-aQs!QNXsx{x087wr}kX%
zuYM_Q<nP&Gc4Nd|d%|{Mv=3uq7?Z-t4WmOCL&F#rMjpu<M%OU9h0%#2U6MM7g}UwX
z_hkv$Z|o9A#mb#|PF?pfdW11+Tf!hoNv^oNxHh$?tVpjgdP{`A^a-QyWBj@Q5DEK-
zG2n6dK-TfNm|z-A5u*P;j8GUx**v<Y`4Ab-EW&spj4@%13}Y0fD~#uv!f|ms825Tm
zohcPefzRFFlgEbfB01hRVFEdhswCYwO7FM+sRPT74`aqjVNttH^nW%bI5~`$!dMc<
z(lDlkF*S^NVZ0v3%VA6l<5fluixC7>W_lPuOv-pAjD2mp(p^l*KEq5|_qmitk|K=R
zVay3*^N~I~Zv{fXW^K6=2;2>{y&;yd9oz4l&oV6bEevB(7z@I9gE<}#Ej=E3GmN(+
zgHF{9cJJS8=9l7H?GKKNB{YjAiK4NDx5HQ##(QD92(Ubi6=AFjV>NpPyfSQL#!7}C
z37p?0x?ap{O&ITnMN70cjCEnLCjXr<Hioe&jP+q`kRd!|iQ#GKejbalX}p-m3LPr9
zIgBk-?IwB7@epB)-dS72$X<hOVSGRxNfNH|4`s?9N%)|G*gVcmKMvy)S=8+kek$P(
z33p2PnS`H9xJ$y^?S1%TB#dYnlOuR30woNU>KQ@x2(&QtFdov#P!hs0!}vLj<6&4~
z*kODZ#{MuIvL-B+MDCndI!4Lq9`t0&aq@I~GM~f8L-}FsW_%@c57mE225n2Ubhj_V
z_=@?K?)J5WdnMc_;WrZU)3;QLCjvycY@71W>7D~&91IJO;*mbNhr%E{Oem3~5+0NA
zdkKG#@J9)Ml92H~JLW$@x`lB!jNijJ6~^f>ZijJ4+Lkj^c6qRH#f+wBsbv{W&xLV5
zj0<603}fp%sh7gI9LBBVq1R4j5?+z`4GFJGcrA?U65-ch$ngq6B7A-g<L2Y=--tZM
zA07{lS}FPi6qRl_lkbJ`2gPiq@9!}FWSOreU(C(=i}rkA%Kb1N&^QcCnU>I%Ft?qr
zO-@Ow-g9o&zcl_~l#HNM1ilCgM35Lkp$G~_kPzX5{6t=r%kD9=p!MKLt#Cw~?(#$g
zB_hJ66^Wo|1jQmKdm>ak0=H+g3%S|E{U<`~tI#%5Rk`-QbOdE0C?7#mL@a(Q8$r1U
zmJBQP{<3yV{H+YJ#;-y|EOn?F!JcI`D@H_@zET90BUm;h@yQ6PM6fS8z1@k>ih=3<
z`{fW)sX5tKBZ8U{w2dGq0z~k?2%e3gQ3SOjs2xFa1pWvwXG!3KuBRfH^nKwv5qRbN
zb(wwy^&(>Guzo~X?>T=5^+DpYGws9Py9SjHM3BPj=n1Uy;1i)>MD!N!|JFV=0>Wn^
zXdsb>5`Oy7&%nkJq(zVwLCc8P(!xP;dIT8}G>HgaaN!@RkxBB(bxKVmX!aOy9zhF<
z|94AQtB6?n-#UUFWfJHl;St&7RGSF0S^g6tK8<cRZx=!P2u86~5#&bDA%ZRubd6x+
zoW#5cI!4fmq?RrndRokHe9W|S1b6Ot|8skKw+OmNFp#v}=wrcpM9@2eJ`wbcpjQN^
zt|ahLH&o*D)``%9OWpg*vOV{>wEZIJ{}>-2k?{w8gCZCl5d()I5rjzazQV)s(#edW
z5+5cZ1BXX2;xRr_B3xthd;~8<FgAi0BN!9G+pEg)G;;QMxmb~1@o~(eWWx9eCa^}I
z3STQ1tI(uRjEK(3B$}F+QaGmOL5Nc#m>R*K<VXZBM=&jdNCeRcrbqBf1luC`Ac9vT
zm=VES5iE>gW(2QAut3V;ELo9xl$MIY*%53$5t>6e-yfJOA@7DG&Rch1kMMM8|NMwJ
zEh?qD|BZ;S+iymoo(R2Ls}$iPigyHCB6yF<MzA!36%njtBBQh3j$k>d^jC0M1lK2J
zGi3jX5MQsH2(6N;bop#y_ED)*t0Pzw!P*GcMet4p@5-<1BiKOxMzD$EJtX+=i4aXU
z2L+S%1S*^ig<GXfXx?<Qj9I))TH|PIE;=I9S)KPI*cw5r5-F1!^sX}^<--U*ieOg+
zUodh6pG2@TBAf#&%ja&VRP#KRS)D$m>`@v2Zk`dysTRn&@ydYDBKUDl_UGi()Z_yn
zC(~!h)_KO@q%axEbFsE(bH}klIz;eI1mBV=5$LQnbu9uT0+Xr~K`eqx?Gr32rtDJM
zRI!sGK28LmuL{l^nM#hI8=FIkrKqr}<<{N&2)pjsL+f-s`RfSwM(||>PY&y_x@6v0
z)cTVlBB7I^YDrCpT<^S(Og|Yq-Mr~{5$uoPHU&O{1JsLm5^qreR^h^P{(})5ir_F+
zGJ>NKoF_vgI7TIEoPI*W?<M>}!XG94Ny48cJT4(Uy^McS;-@4$E#Vmn&q{bsLOK%|
z^P<GBOL$4b%MxCZ@T!E@B>eBMUnG7*!e1r4DdBGt{uhU4e_ley-3We<;180zVgg+s
z47?|;*{Bub>|c(WIZgb4nnFt+MWrbIj^H6Jb`-^;_$PvYY2>3wjN%cEe-s6xC>RAd
z4$NOBJYe-+NPYWch#QV5lL;*|3PnXOg`+4E#dmFUJ}a3+QK11jayyxQnBq}95k=W3
z%0<EbEG42S8AYk6Xd@Vnsg;gmb&HICQ&P)B#h{)ABh3Faamk3p@=+v3MTe(C6tyd+
z@!+OH8xuF23{{Te$tV!T|Dvc8Mb#*(M^PgxMr3&rR9oq*7RAub>6u+qxzCidNVK{&
zqc8)0`W0(2sVM43@pKeVMKL;*kosgoohZ)F7IR5_zUZ4)FN)N`Nu4_+)sN!-wLbJq
zBu9ljvr_&j0#RYN`J_Y<WK8+`OcaeChc}Q&LkXXikWD0?#;j@kK$?W<5@txqq?$(2
zEQ&iS?y6`WMT;mlE7+nSD~gs;6jD%FL8~ZQNAXS+>!WBBMRpV+Rx^sWQRGC?BZ{6;
zw2PvB6nRl}jN;Isvbj;ws&<G%8zbiH=`f+4>=Z@kD7r<_J&G=pykctmR`A-2)UHtw
zmY<Tv{wMD|jhqaT7rmnB9Ywz=`bW_xioQ`i7ZrC^kRV(#$9Ay()}}nfiMzrFL@|(J
zb3J)bRIK@-4P=fq!lde8{(ClQNK~9O!X?4Oq8J{<geWGGuu+VR;)N*2L@|mSk#h2U
zRICfFFf1@XJAq}JIyZRWWN0jfFp6<ejE@S7M3>R?6Eb;3FwFwXd2zkiVmT>_$x*C`
zVkPs6VoDTi`Xo(@f}?x7m8P;Hg#s^=ATOox+D*dgQM?kxt5M8|;<YGdMREOPXl4|1
zH{{?{XzHYtLZ?ErN!XQ*I2a+EBk{RW%!}f6i8F9%6!W84AYb2zVxdIdeEjt-iEO{!
zVG-FO@g*`N{`g<AZ_B`C5-xunfuB}Ic{5!Cmv615oXC=|VL6{jFA>NgTt{K}BIn=F
z6OHWPhA1{h5u+wXu_=moqxd3<Fr_GpEm3?B#fMQmD4dd&Qu@6p-lwAZ{aZ<*{=yV+
zUE;PVjxI?g@)4zL6Fy}GYG@RnM6o?8=8w4C<<`tV=BW^IHo-fi;6YgA{$~`z;c1^s
zNMu(Ow{qGMi9``4k)zNltHaAEtoTzwm9O3WcRO_EHUXZ;Vo)W?7yiN<i=;ttsFh24
za%#YqVo9X-$kcfwQt6|+Gd<u%k<VI0@mCbPqu9eAqqrT#mr;Bb#my*wqa7O>yji^C
z*HP?^VqX;BL~(%v`BCs&nx-gzh~md6_R|8a^BtC19FXuJl|>@Ftb}(k(cm1BuScUe
zCJ_dHUa!LUOjd3j{wa!YPZvHTKm9D>@hDD6<o~9?igXX2isG~k<cdC~c~;`*Xlf+F
zG`AKh$TT@Sa50KY5+QzBB3C55N`0h2$}0RKLvGN}waa3(UmwTkD-9`C?7|vxnAM#q
z?$T<}2(Sr|N<@8RgnLo^K~wptMcMb#a6kD^+RyvR-A;)G2{U(P{T;<a+Ia;975o#$
zza%mbcKfB=qbTUIyW1y?7vK97OfpMz@h}IK2?`PwbgS)S8_Fh_%Efdj8$}cpRnT9-
z00qSq6j$)9f<_9SP*6faRRz@)lvGekL6U+B3Q8*|qky}=%PT0Wh(>|w@Yt(z3dZXG
zJ>LZh*RSeKhkQi^l@wG~aCcz>8A=x-BXf?4{(&bIwDtw6NZ32OQFR416!;Yc6!hW|
za0==xNLB!rnKn=ntl?8jL2ZdY^*E%Cg1W@zEAN!7_c(mqsnEVhxy+6uO&X;X1(f^-
z3NAmB6jVgJkgDJrK9VnFO_*m(Dp=7jP<yIx@=AYW1!)S}DQK@CT|ovdIg6@@eNs&n
zY+B{ZBqf^%cdc(kA!(|hNWqL|5;j-RLLym=P}AR15qqVHFhUyz*$Ub!$dN>&ru_A`
zpJP~hdg(Pi+9a*T>PEQ=Iw<JMe--2@=tv^8P3WSalOk*&t=X*BX`L0}%I33SO(T+&
z#=N_N9tv_tB=%L%Q^A_0fragZeTb~^_fpVX!7Eq%8}0-NkH3|fwXExNOijUpQ=xZH
zh4SaOdv`^<feHpGn4@5>g24)gP;3-TRuED+<A8Ar#*=_MYYtOHbI;Q-hLbY4k|U$r
zj!-~2Qo$&RjFylg&ntLA;$tKn`#AhXO4owUj4*+`_&kxv*H2VLZ-KUj{af<oC1%75
zDws|vw+-^v&Z!DsR=`bX*?LLJRfUzlR}{ReV1|NUPITa3Jg9c2!eiXTU81ikIM_a8
zmV(&|>{Fp=Eble1>zq$I%~SBYf@KPpE11vfD_E>xiGnxCm(oQRDp(|i?M(%5kqeh|
zmDbI&Zs(@#&YiF$*t4IX?aopKZ!2i9$wzz3P83N&;e2|&e}#gT3f3#wpkS4P)ug<F
zwF-VZB@SaJqdCSQvQ81_hny%77&0UE9TIs)YS#278!3dgZ<B&|6*T-_>^-DBaAu7z
z6t<P`DR`ebs%WTUtAcH;uYwy2K2Y$Xf^QYNQ}7YRNr9ulRq%;|?Fym_6a}1i|5U*j
z3c}=?tlCZmpDFlU>c}ou{95yJBim7}h^&~L8KIg#okGhnvqXS<a31|#NL8RIFcg>y
zbjf-O;oML<M{WOmbs&9EdwDhF%}k5ZvLwMKN2ZE9!eR>I3ic@YQh_InG38p}d_}lx
z*lF1<OLF6s*pd2`g0B_qQ}B%<x@Thwr0$h+-uSJW>#FC_FtWdTrDry+*?t8F6dYG@
zg3MKLNWl*zCPji|&rLc;8`w7Ch%CTS1-pWsQxZDt-4Xa+5vNTioepu?=T9Wps?r(d
z%KS`4PE28^j&-SbI&@OODFs&)Tvc#d!5IY?6kL=hf-2UjNX}VSLBV-4qDJ1^KQ!H4
zJ&(r~UZR9NA#R;3I;?3pyXj>G|Lc-Q<eGx(3Z6vLe{BRSwWU)U3H7Ujn+nRQD6ir-
z1-IBaR8d65Z3TA}{H5S;8c7AeEBHgfpVB_uqaAohcoC;92=tjP{6cL9<lblGYsn92
zu}9~&Ivx7CL8pf_{;a-=1eN20PA~q@{a=dr)W9PJJ{6lEB^OX}r=ov<JAap<0giL;
z<%kh?qAKiaAqh+S{4Y)L7gbSAMQIgfR1{b7go+ZXxMqUc@yLRKr^SRtNg1CdDWzi6
za$)*7tShSuS1P^zY)Yt!Nh&I+fQtXIJSr-wsH&oxDptH#R`H~YDlFBBuFdYJG4k`L
zL+lhC-kDQfMGaD>Qn03qecPJ;X9`|B9UAso8tq#x6}45=Q&C^VQ!3WhEYB4MPphaS
z%R?(#R|R41LG4JcrASFu;a3q*g}GjRI>d}pe=p7A(a5K$2&$-gp?Ru=&q$d5AekZ0
zs%WHQwTd+=8mmZC(Mv^d73nH6ROG4XsG^CAOciZZWUHLJL^DP!RrpS~q~<DGsA$PR
z5@CI6xAzjWB)+LzIzw8i7+=40YZbQ=J9^RdPJiXLCD9o8W<m!B@_6<_DeY9WSFyfD
z@cB)Cy25f*(QhF_0p58!)Ja8W6<t+y=oGluKB?`fQe9Lek4)t4SCp}CDpu|Fb(g>N
zAbmbg?<ry4C)vdNsOYQWbrthfJg1_c%F~`PSw(*p15^xFF+>&GH;^^$E9U42smMPa
zI(s^F|FoD02$77cXysX+p)!kMDu%1Peh4E~F~>1hLL#FiGFrmtC451}7>RIdm=Ru-
zIFWG@886`k2^no(b^>Yjl8Py+IB@A@6;mY*i%bae4kq>=*qfRrOEO)>D=J=9F@q(k
zTbcyqGm{)IB7BdpsXT8%96LEn#cWC5ITFs5km2(rQuLd^0u^tlSgvA)iZ@lfrDBPS
zr7Cy2iQ&mY6}wslOC8Hyq++qk&BA{A3i$fA{GIA^W_fQ;zATfk89BlwxRQ*Zw6FBB
zz^(38<u)Qp?^>2e#ZeW<RJ=nLt58&^DmJLtNUN@5n~E!y3U5;JE>(k1PLOVsEwZL0
zNWta)ed&4csd%5Nk)Fq={F%@PDn3*ZmGaM$e5CS>R!l3};$s!xZ0TC|y{>6zLfch*
zs-oSQ&<+*fzuKE$iSLvlpGo++gu5jCf?SYDL_$)Dk=YX6e<n*)p{sCIxGD^l3sg||
zjk2T<A2%b#QjxpWZ_CosakqFw+n9>DitkkHr^>_vo{Dc(yi_BYucE-%jNK{@O$zRj
zkjR%RzLNOY67H37-{Y^}P+ZT17>%a5dK0nd>wt>Gs_-B&<RGK5)(?WWI(H*HBBiBD
ztG*=K_bPr+aZbf~6+f!@NyP~jCsq8c;<$<}?UQDoF6>+vyW{7c3DMe|QgK?v848{%
zc8OBdDR1Q6%Ii(pKGM+fmdpz(E~@xN#SNCKP=KSnODZl)>Aj+g-QQ%yRdS@9|C)-i
z6aCjE{I{f^_^&E%(%LhAg#>1*PY|1Eexu~Dob|fV#_|}wjb}o%%)hI+N3)}&kB&c7
z{HbEMhCLeYt9YQ|Sq+Ue{H5Y=8d42aH9S=D5AC*wG8+C>@rVV`P)LJM1CP!&J0um*
zgoWX}b3siQ*aS_iivKq;kFc<Y%@qn4(@<Ok7y1^_P*fAHX14Ey?6EwdfycS9z$G+H
z_%W}fhEf_R^ThegIUgvip`3<F8Y*ijuVJEsiW(|zM3N?qNd*lb98b${9egq~ordLz
zbRV(vmS4KalNyRO4k~9t)ihMsP*=m#8fs{$so{SbYH4CQH&3PD%rZ3Lm}QY_Yj}zY
zzKeSEs+0cxj`-F$ORb|JOY*&*hWZ);8d6y1+P-8>9A)5_rOh6a!5%nk5!8^XiKSl+
zHDS=6VXcRYHmiXKPW~P_6MFM-DGCESY>hRfY3Q$E04t&)Lqm>+b{d*!$kfnWLkkT}
zH8j(}V$fT4_;6PW$qzq@L%Fjw6s8MELn{r{5=Fio;kK4Jj@JThG-PXNtBI-1OOoUN
zbm-b3H>16VTn#-m^wiKnL!O4&M@x0r@Ny%u*rTI{P8vFE=%R_<GWXVXx|P>e!^UwH
z_z>?VaUx`Ev4+83l8^l~u6{4sTSFfWUk|9s5l~;2yj#+9n%E{h;^Vel=FL$It2|J{
zAPui+n5AK`h9MfJGHVSX4RzkdSPd^~7%H<KCOJD?LKbX<hLI8<CE;iZpMU)I1&NH&
zpw|^^x8}5MI!?n&n(&9Tu9-Dn1K|XUjYKACm@JXEzbbP*lEqI`G>mw??bsT938!gd
z2jz4Pys+rep6o6g#5$Z;G`y;zU@&8bhM5xi>rCi{&AE-*rp?wcM}w)s(lA#O`?GdV
ztT|7^Vx9%g^WS8_=4)7>;SCLMYS^OTJx#cn-qJ+Z=p79UH7t@LizQsCVTnYRQiLS3
zOu`isF4x2vw)~w4;VKDNYgnUUt;E+!$WNu0RQoRub6GF*+Cbh>6e;uE{3}DKm7D*2
zWv}nNm?D3l5q_@!iTt`%!fn(AYP#K!&xaa5lK98}g<NgI!0j47m4EG!Frs0nL_X8-
zxrSXDzR(bsA)Sj9x|Ws9=h4Q(Wy&Qpqo@W&14C5uj(pkOP?N9x^hE!{3^z1<r8VR$
ziD_$aD9;qp^dNgIG%_&_aScV*WO4{o^-={-Lq7E-BUq<ekPE6gW&fr49f>*$>G)d1
zUJX|?T-C5o!#5g!)^J?Iw;I0Fa7e>p4f|=e4*CvgI7llo(a)sVfv4Hr%j-hUhK^|B
z^tPiKj%hei$3Op|@N$38^t%UtVBoyKqB((#v!Nd~{KP`W8nSghy6)K%lxGd+HC)he
zO2cUlXEiVjj$+Pepm&s(f54l59^%w$bnqONVraWF%gSBUaEX*(CDu1mq%YIXNVjT@
z5`AZUm3B?Tbq)74{Gs6&4L3C0)^JC|uN03KWpB~GE%e>ggfC+7z`WmRe*X#(q0#8E
zH*i<O?=;0recaf{^1Hw0&@VycPa1y>|IoZ^!U^_(_Fu!_OfWs0hW-AfT#iE@O5LQ-
zoTBnb!_tZgJ{<*g9O@=^c5uG3pf1)7Fg_(PK^G$0{cNbPjv_j$>ZqopsE%Sf%IYYm
zqqvSIbd=UnM#rYZrAp{1rHe&Av^*tsTv*+4;MlAIHAH*I6V>$9;>;^9Wht*CNk>H;
zm2_0l#erk=HT}2idD^)Sm36T<<Vjs97wbh>Md!VKLx?QvQ>MC(8akTkXs)BC4(Mp8
z<5?a5(@{%Ds*Y!L)MjCph${GXJjG(C`RhnnSHh=t)YDO4;?1l1`88SMwIv?Vk)n$g
z8spD~UOyWO>R2xkickX`i%zC<g!tj#{wqiPjdV2DF=<j_Q(g3m({yC$qPaKDhSGK1
zEYh;-x*lCt1e@r*dZ}L~3!K$aAPq(9)<Q>?j*dDy>1e6r)mjx==}153V~ctCY>2Lj
z)~xc{U>gaub+na8j)d(bY%gK1gdHTzlaPP?^QduW9bI(Me)VFqeUrPAq>`T9badB6
zE5D>x=j&%fM0%29FJ<&_n@qkZdM^t$^zEzTITF^u{|xlg(O<`VI^NeYK*vBbSH~<J
zgIFmYFX|YlV~CEBju&){(J@pPNAYlV$1oknu{5@i!=*Tl&@qzv-l#u{QXy|G9IcBH
z!Sg!yk0?!~eK3JHwvW}(t#eW}UU*R`g=HJBV}g!pI;QKGNK)&Vs^eu{IOQhm;%2C5
zAoV3y^QE>^B;0&5jW~Z~x12J}Yg}F-uMhZM)iHzB?=JS{urVbIX0n21#BpAg7y4%F
zn4@DUQ_wM2$2=Wx=y+4d>yn#XoG_nN`&V4}$oLC%JUSbybT0Ikl=B&*64`lR_(IBt
zj>S5b==dp`xn*Zo>bVdR-Z#BW$8sHOb*$5|LdQxSt97i=v5LxaJ^91k;;#8&i+wbP
ztk*NoimTGARLgvaf~R96C7GpqD!73ancei$IyveWiS+8z^0Ye_dROwa*17b}6#jGR
zTO{Pg2U~S)({WkH6&)Yw_>h)U$6g&D>G+s@(P8S`PzFvtXgYK<NXMr-cIenCrR6gU
zN%7$7(W&(|XY#(G&&lg^p<NPwAt7JG5{c-DJ`PcIs1hIkVN*t6b&6hU%G>=qJZfR-
zuyy3?*sa5nSx`-4Iu}}CW5*;K`H7_Gxlmk(rz27>hfA0FN=|J#7uuuaOC4Xa<h<B-
ze&+rqnMBIAOx>sB8<JYb&pN)<@f~$g$5DzCD{?Nx3FVp_J08$+kd{ryVI4C&1`o0p
zb2{qhLcKc$t55HEjQm;<p!)xy<9l-FLEf%eT`4?2Ql5JR=hi7txMgtCab0Ysyrhfs
z$4*F*I4R*N9j7J2x}4E*_A!1=$N9(j1&Lgg@NC)CZM!l#34WDHk@W^j8@R6H7aezW
z++}L3gdp9}@hhzdGwmL{MeaNstaz;bZ?u-j+E-3XxlI*Q()sji-RyTN)N0>7cK&q?
zD;3CJBMy}NQ%6Zd(CR+9U$y)L9e?TgTgO8hc>@Iv4BVXh4`rCTygBt>35jH$$@0lh
z9GCGm!9b#cCkW~JF;Lh*af1sB6N(tZm=rUFxhrajvw$cegokd6yS%%v_K|ue3~;+m
z<DLnGm(PVtRtuIfP}V>N0~HOFGf>{Z8*@t~8KU*1TCu1F&$Le;J&?j*$v|ZTH4M}=
z@T7q%28N#R&InZvZbQhNb<)T3RFgPgt4pNMf%F3BLrjM)*KfILwG7lYu+zY22A(od
z$G{{5lMU20@U(&FXwVGQGf>|^F9W>|BpWzgs)*k}z!3XSc|vuHtQ|9b#z4?Osv+)V
z=b}4i{p9&j0|N~WaQ{9X?Cc&qYoL*V#s<<z8A+~O0~rRI7-(&vje$%V*h<2t2AUaY
zZt$uLWEp75YNi(CKECn2eWYHMfd$yq?*5@FGvf14VbMTm8)z&4Eml*!=19Dqf%XQL
zlq$&h^X0LV9Sr0d=tv&P2;B{IHn6OF$*%IXi-a>zCi0*~CeqEoo{~QH$B6fkpL#Nv
ztp#~u98KBI{e}A&=xd;AOR?^b>>gV`(BHrS1LF*gr;r#JWFSP=7@`--T{D9X(C<CO
zz_aH=x#UHD$6=&%p}=rM3_z>{qP-hoh$)7V5{{B^w1m$~_=1FEBpfRtBfn^%=}%3E
zo)1kh#L|KjeUc^`VthwAp;ckwUotSozygXBBN%wuz;pwz7??)3+G75?#NXl&`1C*h
zuaax)e6`p4W*FcJ-YnZp1Fx}x8}FZGVD_&C=1Y9GfjJVHE8#o|Uzd=6KSt&hDmOsA
zY2YmbA5shqEHtplz!n4V8CXoF7^qfUlx?Yjw<+^|L`O*6t#;eL%)oM~m@5pdlVo2h
z;VKDNOSneDwGwjqBGY+C;_D4;kjO>}-!-sFB8)%_uvy|n_{!|KIPiS~TMgmR-e%zT
zxQq|Tn&rV)&xe+s5ApS51D_c1h01@*k`FDp-9Wpw;@AOBdJ^s+@5W|M{veYc?9UDC
zGVr5;pA39qAZ*|(179167>F9M4LAlA1F8YtfI(@mB$obalJDa;B~o};r1+r$Ox84D
z$#CLHGgDl$vQx>Jfw&>25<WgJW-2`cyA82DC*Q!@Z~X=O<i^j3_88!Ld+vGp(g2U4
z;Oery2KE`)Z{PrVy&~Zo+JQ1f$mnkkaM$*ChG<pCjp*2BZAOVG4jMRS;Clmy3>>Cv
zlU5}YHdXQ;HL$XB#?R+NM_Q!zPx1d?h&5m=KW9rHSY4+4mie=R;|6XR_|?D(mfXMv
z0~ZaPA~8AhYv7FJ=4bv+XGv<FqEIM>J%q3Cv_Hpa`-A66s5|YID!G>oTsH8FAuhkZ
zB1uF`#Zx9G<)mLVaE%5kC!NoAiQGOPYMGHnA-`$hH}c3t0TZ{#L_^G?K9V^e-J5pD
zz+D#X_rAXy_{YG%2JXpMhWsIsKMmZMNQn!f2ee=k|NC*AhXw}wTQV|zJM}Mw=m*HY
zAY9+<AT8R2f+hyMi6W*j@(CsqO%yV*qhj#-b$_#c?F*YAESB4ym8IjWxQQoB^oXHn
z3?)pIH1V5_TQ*9WC~ab^#gRD5m?&#vpNVfwlrvGD>6;j6BFRJr6X_;0OjI;c$wYk<
z$tEhBc+vz+{Ld6iL%EB&iixTw*gvmkqNXVXyUx?)s+*``ii09Q_{Trydw<^c^fnDU
z*J3mi^;oJ(2~FAt=(~8zL>&|F-EPjYPhAtA9!`7O#LIoUj9lB1kW$A>Vf-cnCQ?m2
zV<N>w(8TyfzUhZc@hk5x$@@Y$Y#W$pXri%+G!xI7Vs3>EA3K?iO!VxOJLSiw+)BW~
zrnlJN|AOeiH!+cEqKk>HCYq9HCUQ))Gtt~c3sW4U+Qvi{i7=}ZrLMJ!mL`Uj&ut|k
zk<Y&L7tayagQAsfBLBIxwi0sNMSByuCh|;lG||Dt>XTiW0(tjeAClKNvSFp_b>b;N
zCRVLa<s&8<OmsKV+e9Doi)A*&roUb+BoC%LBbE<MeBa+-t7zu>nt0AcKNJ1Q(2Bu|
z&!_%)BEb7!W)>0$jI%ss{U8&AnK*N2flY)=%rP<7#84B%Ow2Gb)5LHSBTR7w<wO#;
zLtvySw!=`UMwu9G;#{5d=S}crDyshr%;@P9K4VObmH3Mij+1cw<F6A;{2a+(v`G|8
zUX?;JF39Bbl0>FRIF-zO96n7V(@nf0kyj<GKCCByDKMeTYbIuym~D#A66Yd0(qspZ
zm)upmn>^3N>n0YOSY%>8<*iH70uyhTpl6bC-lRIn`P{cm(MjXoMtPSD^Y_IjmY7&(
zV!2Fnsfo9x5|I~mKNBbFGaA$9SqD=tgjSeXX+nSG=kr<X;2INaO@vKEOsq5Uj)~1C
zwwPFNVuOi|Cb&qLlxG1}ToAh_SmsS8-ZjNCD*BTN-!t*PiJhicKt<ww(JOVwh0s<L
z+o(tNQ$CRJLkT~U@M8%-k#M_&pGvqxLVDx**Jma^H^r1Uv)g6j3ln=Tg!aknHP?OI
zHflmK;h1nus3tU4N7k3bS=BJ>K*QcFr(wc0QR;GzWx}R*cdg#&Qchy?o-A;f*M6CZ
zn_@=eYe_Lr{!Wro?DI|RX5vfR^4TMiFHL+Uk-b~87})E}yuFmtLV*{T_`Wsqorx+I
zs#@4@;(&>JCjKyS(8M81nu+r!4l{AekBQ?Zj+!`T;(HT6n7C9Rl@6S{8~t46@*~ZW
z+%89bf9uJdpG+<&3Y@tRI$`1@xlc=2rpPH1r={8^_wn-z#WSYp$MPun+?`?~spy@i
zoL{(L;-ZObCayDms$s{ZqGS4AHF4QQ-Hf~|EY*>=e0Xv@<>7Me)L%^8Ag?#!ciMp&
zfnQDBp@q2+y2)RzCI2SjEeUT+Ncu3Gy|25J0p2ivL(Gs`6SDp^ai4{>P}sr)reNY9
z6aUhRns`Y2v)D)9X0b=<{FjhCeMI|d328}?uz-bv5~+UF|H(D~3-Uf?MoYBdZ{si5
z*k8m#QQC70Wi2s{Sj<9k3s1;j*cOzK2<I6~TPSJaX3Mlv5)vtVG1Nrf169sKc?%US
zRI<cP0UY8bSwaCTSg3h1bopwF$)|<WwK9|H9=toL>62_hj^<`u40XF0s%D|Og%>T1
zvrvQaEex>`vH&J!p@)T@7HV0-)YP`{lm$9!C?0hze7DqB&k~|i*TN-h$kP%M$s3tn
z-$F8LXCYvrwS_hoQY-{5w32mU(?jB<GEEB&EHt!`W+9zow%WI6eZsRA8d<^uu;<X&
z!l9vMDEZtkkYS;Tg=Q9-TgbF<x=cb-3k%l^H$E#x=K}{CEi80eUNy@?OG}I^sSezO
zOphq1^El$;5`E^IZK17&Zn7l*h2&UhXQ91?Tnl*?I{rT;>0sf%GIX-g*+Lf!UH|{w
z|KA+D%QWc~Uvt3M%R+ApgDecT(8m%z8HzD2QeR6fU3*SKGPfUp`6$@m!T^a3l<?xg
zrVM=XVyFg!f&32qaj1o17M{28f`#EMd~F|}Q5Hr#$QfZ_q=n;ecjeQjYp2ncI3a;v
zf{7c;j<MjhPa10>XK)gIM{HI7Uo{-{4#r!UU}24gwH78?m}Fs@h2<6|TX>1ZuI=L{
zbn3zs3kxKFm!(&lYT;!I(=1H4gnwxksnIfx$Sd;oRS9QEI8(ycNdG4aG6JK`mXYUJ
zm@AQa5;FXC%F=&0ozgASmR$_J!J;-uf78NS5+S}&B8wzkY~lTjp(PSuD&gA}^ot=z
zTVY`(b;rVL3oQJqS>m9u;a`SsEKlQTj?Na+f1QPQEWB%BvxW5*HqfRGN!UmU>>liS
zUo0-VxItdAYN5!nQsmJV%0q+FTsZfh#rsyofSOCB-Y3O+mS*G+EPO~|u+h!NN7Oay
ztc@pZd}3j{g(DV@TKLq$4wle@VPU6*&n$dF;*f)j6L{Fd=N5KRjMoI%Q9N={v_26F
zQA-TUGz*F)MtRJL9bo6}eyW9^?7lqqlYx_S{iX%W!U1MP=Rdh@!LyKW;mMB!t|k1C
zENYC27xl+2)G6+NCfna2DvqPs&2-+)rDpB1@TG;zwKBi5(4ln}R~HliT88Ykuumck
z`NqPxkMZwFF^Ql0SVTTZ-L$}g$zdrZe?|Ln2rwy>bj-r{7H(Mh)xr-Jexz_(IKjvj
z3jZWU_h*aO{N=JDoIzke?WBcM7Oq&hDoxgD3t0v8E?GEZp>%fcSqX`plgN1qFGzS%
z!u>n^msu*QdUX$`T(h|9O!U(ZmGxh@Felyj3k}*L|EFoWyuj!t3v8i)je@pV*LTap
zT?@ZkxJ}b{KJ$*$O0xdiMdA9mXW<VEe_Ghe6F=r8azWI?i())=UmC*)R5XeFE#X56
z|B>)t2_H%5vxVg>*k3F%Ot5*=E+>po*allD3SRRgf+_6u^3=p4Hh5foQ5)4V{d|hq
z;GxsEx^ygIqoj?1jTH9(ZIrfA*~XJL%GfAtBgsYuekxm}oQ?7}=<KbzJCl0HS}==>
zwrHLz*`i}iE6TjyI+({JVXN4vYNM`=r<t9N>NaZIc*+*dbPZc*1Z-j0YuYg6`I-M?
z$!{gsV&VOMB7{Bqh}oGswrFM6_9>gZAW+X1Q^wqzoNS}M46paP@V$^?ej6Dj6S!V0
zXd~4|8yndq3o~Ml{A8n{jc0A7**MTOsgeAb0!*WQ?{a2i*7}mTfr7(N?lo&-BhyAx
z8_jIAI4*1>ZQbCm9h%F+w~~c#!2(<g@yW8$QsPbh0lv1j(e6@c@QI9@Co<ZSGB!Hd
z=*+sW^R=_l-bOCzIZK>8Ogd08JJ@3MnrEY<EmjwBU^0Gh3f)#bn5By?2HKpFVZo@s
z-EH)+vBbtw8$E6GvN6`ii#B@O=woBJjS)8b+IY^!5E~(eEG$iD-Ow&c{cNG;{cQ}e
zG0+wr;6aoP7LqwOOCNM8)cio#MVCTDZ49&Vb%_e3c9E50MHX2(s!6AjHb&VPZR2@c
zOb>19k;KV;9%b-?jmc$-jIr_W@I?B7Y5iC)%ELGt<892gF~`OP8xw83Y-1X8WPBS_
zZSGwv%Wm74*9N|13)?b9iUCEpQPBW7Qa2u)ZsVt630K$R6&t_3)}CWVKCjxCVPhuC
zz$#n{&61G2kS4B3-E%3#khwPI*?7ywLJATOf3Pv%#sY~qDVxL7v{=G7IKq_{?@f|@
zNXG2sbZ*>RWMi=n&Tz4n=bYW1NqPMJZ5zvMXbiWp+{Oy>!p2q`D{ZW@vBAbh8>?-s
zv9Z?1Itp7u(JN-+R0>l29UGBOf%P`J%JBu=ckOy4Zd-{>6kr>hDf4^9+`$$}0Xif}
zIu`Fe60?99AZ)Yo0qwkv?X)2y6G`?DZ82~75sPsoFxByYOiDWbCk8kDlyo4$5BgLa
zJ0&HlG7%e}*(fo__qi=vQa-zEeDNPH;guWZ85p&pP&f~!@mv(vy>XSGJx}z64I8G7
zy*BpQuqY%p@@?#<E`I^XhHE2c<HD9)3NY2@<fYKAHNm(IPl_4qPIcZxD`Dd+ij$35
z#RGp|3X$XdB+SKSfm2VvvGJ{qqc)D&_|C?D8wYJ1qI%LsUF^ZgyNhN`ADr=8diG%!
zhMSuPw_}-)urQN5=I-f8_`QuEZ2W5DCbRxM@S{}f8x$TJKifEN;{<>FEtz?pd`yR{
z5;-N|X&YxGa@NK<iJZ4_Ng@|)T$D)K<xom@e?}$$WgAy$Mk@KQmGM`Y-kl}6CL<8J
zZsV87c)h3nx4MaSN;HN;7v}LPmz#9k#vL}?E=st#OFmMJ9lYk?o{c|fXB;$h@TZOY
zw5|@496Ye`myIG0iaPk)#zPxE2L%|dTKRt{A+)qMM!u3t8^W<eYWu-loJ?}jM)AC2
z!h((%`zJWyBHly^3rSemK_EMofyEpYcTmbfX$Ma@D8cxS=o0Yg5B3Qkw8`dTJgUIg
z3F&1VaZ&ZfE+xx3DC-C_;#igWX-S&@c$bt44k|jR?;zPhB?pxqRCiFr!IKWEIH*dz
zm$+!P=DR*ZZUU;t+Rf^;Jln@nOif3emjws^bMT_kos*~RNVD*@9I@7`wu7e})N#N`
z3LckA=k1MRDRmtXJ}qHA33;J|pOtd(jDrRaQXB*wu}C<Tq#M?hsrB0tJXE$fHG*F5
zh7O)}(AYtmBV0h7-)!XI=gOVAPWVL4ByuX<5$#bE2je1rG8}Ze93qnGh`uy;5VUER
z)!ab~2fZEiaggPprGpL*@*K2s(Aq(cgLV$uFv3b-wu82gun8<fuPwc}oR4ZX>D6F+
z2f2>8tAa~vGs}y80abp<BuzRpI|toJ6IQ>rud{<L4!SzRj+JVf##V_j=^Q4_dpPLn
zpqB$Km?sx#4H(E`(`Yb4UkA@Q813MB*2O`82SXhUb1=XWQ&a;T406Eu6dOJ?wu2oU
z{G;O#M>NXwlRAbRUNhRBI2-ig4n{f{<zNH_??xK8i=HT%%2jg(UJtC9p2PCI;9!h{
zmmExSFxC<KZeAqmq>#{uc7zA;c1a=M$IFlj4kk)ul7y2b<mN<1_<ls0sSaj1Vy_~p
z^fD<xQZyHv!lpZTMdGhY$Q_6b9CjwiyO3r%nC-xE;5wK?@pka8gUt@+Ie6W{G6%~Y
z%y+QB!9oX%Bqhb5!@--B*sK68%v%oEfu!&2U50FW&^c)_NmtuPr)AG7IZGTYb->l0
zEYI5#DY7heg@ct2);d_{fQP5Cy<mY?IbsyKT1w6u2?t#cz2jiLgL4CuHc*$Brg3;k
z263OxMpmt83s!j(6R9Mci7gJ^bMTpi&mFw)V5@^q9qeF^c}d$GeBj_ia&TcDV-kMk
z;1kv^InYAw{xS8pS_+Zv4yvW4^Enl2%aa6nlnq5|rz5&duU-!Aa`1%%(}Cq6>>%R6
zplpN_=!}XwP#mZZt``ez+LuQ`;t2PrA&Hs;u5i;G5NEMpS=f`g-|L)UO9s)E-FLJ&
z<2uGy2fsPE<-l{0PXTjq#=&j}d#F|vGY4Nf_=@zIo$wP`P_iS7B&>>qy$<#{_{I@)
zxHo$E0xt)?b?}`dyfOP79F++10}?q%1%Ekk$iZQf^tAxPk5CO~3FMfJ@V$gg>IVlu
zvPf@;Pq&ws{Eui{NjUFx;S;35`oxnCPElcHi_A5j_M2H}nI<VfD@T^)CY^V1!NEnz
zN1D(HDS4NqpuUrraM{5XYWMiGs}8R5uh-jO*wOB%ZtaVdYg>9t4>r&@WXzimekDzK
z+Rs02o9{|z88}qDO>K4XuY*Sp?mGCLQb7|$lin}s9@FgYyYGk*<sS})cWwG7jbyoW
zB20vVe>-?ct#rVxYA^Q*GNgZ@mXrZP64U3RfQw=-in}Q2BEc1ESkx8MKx~*uheQ{J
zToiUu#D&r=W%=b$<+*-77f*_fC%^p_pr+F$^2&yi+#6ofMJX3MT<mmF+C>=`16&Mr
zQPxE{7bz}+F3P(|ase0rb5X%XMHkgw)NoPBMP(P&Tr?b%M6r3&MHN?=ukDvZT-90C
z#jn@OBv(u6{AVEla;R2zu%?UTl|H)qx%+?yhiCWIa#7nwT^CQgc*+$5%pPnVSL_^2
zT`Sx{`D(D9i~6n@0t8&q5lVL9cX8r!Xz|Rz)Un;i*Y?q+R_>tayQaE$#znS^wk{g5
zR4y93NOSS5i$*Tgn&qc%EKALOV?a-4&1t@L7a1<vFu{K1*cYX`HIZfDq+zCurmi?X
zkxw%h%^%|}B$6dzOBbyq(pti#M<Q~?%mgN$<D#95ZZ5jJXzwD|1>K$<SiBB_kG@Tt
zFrpn9okx}x3UqYQNoLwv!h4s+i8Ng#-jyua<l}1(7d>6{cG1U0FZqdUcS*oDN7Md&
z6zuDY1vdR$p-S7@1)g(Zv=>N!7t5!0E`23b=hyCoTnu(G$HiP1LtKPhOmH#L#ZVW+
zT#RM$TwZU15iUl$7$p;|e<j3oSqG2nPKJ(l@d7z(XFN}mRta|fKDE`h0UsV}KgPw+
zol?|4+jDgG-uA?CF2+j%nEgk3z2+I58Jy%|vWuB6UUTu1izzN<xI(a}lDs$DbJfsv
z7cH-ZUY2m0izVZ_vlhSI@9+w%<D$jVK;F3Sd}UI5=^b)0+ZB6fu6&+IE$ekfjG8-!
zI?QwNx{J46EORm6#R3;^xOkJC{XzHxn{E|y#XVDRxj1sWG#e=fE_AWT#bV~@;?d+Z
zK1*G6JeEylW3W5nau+LHeBk0k7b{(?a<S1BJyLo>nc8Z}yRr}4t#Pr|#X3sww6uPc
z`hD_p+B+@?*Gss;1#cGPD;d3sGVF?_dYdKOBH?=yzAqu0*R3wLJ;uMTR-QiFkN8UN
zY)fDV>0_oTxz8J2S%y!gIuvj4EV=)gi_cv=ByC;na`A<WA6)$CBJ3jKBIY9QB1&uE
z!g67|VuPOQLUW<Zif~$o0%^En899$*HAyJBr~dWRe#aHPM9vDi{C7|aJ6Dup&M0{<
z@?9KqaoELf7kgZM<>G5sn87b;c}k}>js=dL3#=*8kqjMK%eU7RJ;{A8zM;Kx@tuo<
zF7_8l|FUJ%{Vr~oN+ZJOfc%#TLyqmss<Ya6#Kln;$0S*1`2u%dXv=9Y_T|2J@nA^@
z(%~lxp^KX=yo=+s3@)y?xXSEYoN{s2#W|X<S)EQ(I4^bP;H6Yv(i!4cLR$)pQ!F?%
zKJVg!B<w{}#uXjrOY$`@J*$3V`gec#VF+De>?criuDQ7Gic4V{mrnbI>QFlE1`VA=
zh<9mU@)oP(;+~5?TyZ-U-9dM#Zkz&k@w<yu<gl}G=W=eZ(mnp9-RPb47tNiE`z|^s
zrtkp02QGNlB@r4lo?prwYZXfQmr}}F#84pyUkn9eC>BHU7z)Oa5JTY@ip0dQG%<!k
zG4NbF>dT45lsBY;6pe|g3OaDuRUo<OuYQ7)zcG}Jp<E2VF7=g+iNk!#!~}y%#c;iQ
zZfT}=D7fuPh~Don+CH1oR(Jr)$1tr|6744k<`rY86hrM8o{FJz3{S>TBZitWphr@b
z7^=olEhg3kGIE=h+0|qC+~`dyEw?MvY1<4j{4WNcBV8+onIp5Q8g}On6cS1f=XC1C
zP&bA^3@I@@9mD7fh3m!Wr>Z>s#V+iD)Mq$1#&!xO$HbaXe+(D)g;sS924hH#aRD$o
z$M8%H4PwZS;o(Q^8nW(P{Y_&+ET5HlBMBQzm?j}3q{oo)7;hqx%ou+8x(7cslm9l4
zi8EDNNSGyIO9@*^*jmCi5^{qQW3v0#HijG)vXYo7XvexVOKUG-u7n*V%#*OAgo*E#
z+{+!u8Nn_wbd8}~3>)_bXZ8yEj^`5TE?++$l-etX-Z6aR;ad-VV(1&g_BcL`<GC36
z#ZV=Vs&Vv>VL%KY#_&-L17jEz!<#X@6~o{dhQu%?hOse(Vi+33^DJ`=!(#ZXThb^}
zJBHyDupRypjJ7K<l9b;bICCVU=2yaV#RCATEc9Hl6=uhY4CQW!7h@O~!)r0jieY>V
z6JnSg6V_uvOR)={aVEwvDaP%b>3p6z8+a*(DJ*KCz|<ICmNDriUUVg8n#B3z^cY@|
z_^T4mcpN@cA}6P3%#LAB4D(}H5EGq^xiP#hMVDRic{1fK%NxX&_*ygwzQLGR(>X-?
z_pcU{R%Xu`R%&4ki%7{BHpQ?wh9xm9k6{Ii%>`^oS{lRKF|mZNQ&(}P+p-w)uY}HA
z39XD_RSfH5c!wnYD|vMcJW7RHuqFmN!PZJRX?D)xIXV0*qq`V{t|v7r1~*9f@s8lT
zREHSek6~*JTVi-GCf1p=BlO>(iAQQMQ)=k8820BTeZU0e*&y87&jde?;gcBd#Bi6q
zj^Wc7j2O%qcEqqVhA(0WlYLaNm^jaBm!!#kYHp<<x0@wCYQbZFA~8f+FD6p0eA%m^
zb;&sj>+)jiCv8&I7&NBeCY5U`3EOuUD~qfc>=?d{;ky_dNm7@>yx2z>=&&g*CaE2d
z!HXgJYKU9&@?+Q?!+{3=Ju&Q?T$%`<FJ;JAF?=nNy%I8fpG3Zifk%|^b$<-(h2D;d
zHu^wJ4AKwA#17m;l$n@laF4|Ba}390I4WNmax8}LCH}+XkRK)TlZ07ULnkD1HimPw
zFeL&fV>lJVX&IPZwoCu3p);gXD<6|OPXj`WM`e%UqKt4wLVmhLUi{wqvV0xg%6Bz}
zYZ8wSE5on9_em$b5yQ>L@qeWX{MnU(e14OGx2R3SOYxPPKq>IQ$8ax(C*mj(#~(C+
zwA*nMiQ_)SiRFolp&8|w{ruce*}r1=JBF98hSUauhvclp`TDO!9#Ki-;%fm33rfh>
z1c~sMLUGYm&cEJtTH_8Q3s)!_7xTZx<Dy?(ERH`r3U3uRQ!~4gag>UqY#im{C><A_
zt1@u}DkV&-ltW3FyF!du%g2!vN5weqoUKtIF8Z09CS}s1HtLd8Sx$XcilcHIPsY)u
zetJgz^kr8=v+Ji<i=%oRFT^n>jv8^)jH6u~?c+ck|BE9nj`TQc#Zfzsr{ky>$5V0C
ziKA{@G($r?ajnnxtD-Z^Mx^hl9`)nm0{1R-=ERX4hd+)r4=QtAaX`jTkuWG>s)S7B
z8HqHAqv7L_XC=}|!Ud&*ya<5moDoNpI9kThDvr#!*oM|Tjuvq=jf(?<K5o^ySscAe
zXAn7+Ebax^b2XI3!gLQFzZ#<7rga=`;>eB*S>@VwZh)c@Ya18xoD;{vMZV$%0$iq>
z8%KvYdNQdv^5W=7QpeFPj!tpBJ|w9#Nk@Y8O)gbDh4ag7Eaql4U==tQz`YgS<LE(#
zhQv7=`S&~QOHAn<M<3exI0nSgm&TvuUFho<7hQDz#jFe6O{N9Fo(==!ViY+#j_2bT
z#0b}u2gmX2xXMG~;Cb~SW_mZ7&rpdBlW=$(BOZs3jAN9<In%^w?7qIWx;JY||Jc|#
zUX1g$0xXVWTpZ)$m=?$MI3~m~F^(y5OpRkw9Fr-NapC`G!@(J38cfcc|8Z4xEqI3r
zx+SrKFURqqM=*bq{}oDC9JAw?69*leGvdNX&Lq2Kqw`u^xKQYUnH5LDYaz}7&6N?@
zJAEULd8A|<^C@-LLM+|_iEtds`8B>~`TTFP%5f}=168s(X6&`QA;)V=;#eBT`ZzYk
z@pc@`C|7Z;jbnKnE2uSbaZvEexM<N>c+rhlePQ<hrG70ykvC8zvr@vkINl)_YWt=q
zri2HikpA<2N#7X9rZ~37u`P~w30L7g{uRe&$%QRcnT4W1cJSvEF|c~%Z}`4&<kBnk
z0qY(YQ#NVWg#3Rb@sH#9ME*FYb0c;Vc-+K}ICfI@JY;+LERN6PDCVKKhh1@eLBWgT
zP#obnB5}my@ZyNl!o*?4VaK7yp~YduVN!0_4PahWYCVqsYQ*M}qkxf#DYV8;94?jO
zd!L(H`r#{`NA>L#lXahFWl_@d<JcX?zBs<2R<88ziG%z1r~FcyU9~Uc_$rRCnSLC+
zKa|h<MVW-Xu7x&qNcuL8@8Z}`(dwK0_oje%FZqDfpdG)Y{pYJWOq$1WCXTal9F5~x
z94Dx@aeN=g4{;o4;JFGv%HMhR(KDX}eu`u4mgJu$Byyy;Xvi|A22RO>ot9RsU!rhM
zGRL}Adz@oY<G38hl{k3i;`UYLC}|g@Ww;o}KYO}dBK~`T$kjNm#c_`m8<N1QiYWtR
z%Jn#YiQ@)UiM=mgEi^B9D=y9exhdgq64LueSHo?ZO=dBm=UoYZmyjaFkUylA_>)b5
zWbp%<V&3QC3D*BbTP<H7O8Ae2|4R5sLZ2rhGbSOQf*um&kBJg8q>zkISi&L_7JdB7
z6CO%<sP7@!LrDgDsOq7bhteL(c&O;1l83S$%6Ulg#7gXIc@0T7_DRa~uf+6*w?%KT
zf+wb#c$`RO4^Mii;t5vL$<NtLip`w$J$SeTH%?afP{YGh9_o0g=>Z;Ud8q9PYsRVY
z|9PmJk(RnnOcv0%6`Pn^^kzw>z%Buix*mKb6R3Jmd!ol!&%>OtIoxmV_Ym;V#6zZs
z6c0fb(!;YJQawE5p@ED{(@iVN83Fzn+gg+R%Nlv;yETEH$;O^A&i*#RH2yv>nC?N@
z(VI_(hXH$dHFoc&9-4V*;UUXIb0)aSw|h>hfxVNO=VjA=w)D`-Lu(JbX^V!1Rc00w
z|4trvO&qGw)<cemSsrG4Xy>85hk+gjdC2w9!9y<(y*=c4=;)!FhwfC^jb%G|=<K13
zCtTB<p*S>2co@2RLavzpcgy<q@X*u4ha(c%+Ong#mz%!pi`5-{SR+=}Lw`?<@1FC7
zz2$<O<o)7UumPTM!&YDA8?_>lkqf@rbg+jZ9$xe?&O^w<P!A(KjP%4(=V2a(dzet8
zJh{eAku1QD&1FV;813PC4=+f5RqYwz5P+Z9vXq_`c==lUF&@Tx*wZ%aS6|LgpJa|_
z3LakeFwMh67RJLA4^usiuiBS?(YQ_a@De$dny|R6pGQ|^-^!YIEtK6bxZzspWo`lX
z@QR05J+bnNww<hT4u)p10FV5v?@V&Me&96^pI-}2el0M^!(0zrJ#6zZ&%^5;R(V+M
zVZMh29^Ue>km6A(fjavJ<5<2oJ<;~<yB0csEwsqPVh<}l(c4)<B2*OFJ*uCz)Wf1-
z!MCM&)c!bq83py@^yLz+V6^wT@Ri*jp6a~D!&(oUJiO~+oria*FFgOj!^3OBCDmbG
z7DopgJZvNd8U&BLT4D8qlBB?9>fM*VXI5g1hsg^v_j2;rL;kbD_sOY?ohn@q5q>~M
zd(b@?9zJ48Xxmw351)9VDcs><r=-tziid|=S^lwFQ$l9i=z54(mQe9`dE(;5FQ}fL
z=uXpnzzRk@XrAa<MJeqb4z=m1O89=8jvMB5<ay~GuZONR$}v4yOy5Jy6M|%Wa7e3O
zN$o!sW^=@KaUoRPgU15z#MhMb>!EyU2fp&Ko033H-<G-ddT9P$|Ci*&UcY`lw4+eR
zaSwAzx4ooNo5Xz{X1pTqeEH79e%gfHyyP7RJRBq?^YKnT4tY3C)yPMWd>rv`lme5F
zM)^4A;d>7^sdpZJ@bIIDa~{rn_{qc19!_~UEm?e=5h?{wunON*n?9rhZPZCm+(dBX
zy4d4(Mw&-1CS(E5Qr^y`v0fKET=ejZhZ`O)QFA{PGg((<YL`7+AzNps($CCaxFhVE
zhwGlW(U17C(;X<Qzf!^%iKhJB5s8d*%foH{n~y^IxZ~ljhl2S?$Oo5=u^aQdhkG9W
zpt`xizbLoKfj=dFU&03x^3%7|{QUH{jPTIIKN4ZczY=-m!Iv-o<x_yU4E7PJu-8Ae
zwdkVI$zM1hMe<QJAI0*;N&f8UlKz}ZBP^aTh6YdMgR4_m+7kIFnU7NWD4ma5`9jyq
z<fCjpp3Fy;e3X+RJex5|BIWZD%uQgN3i+s*k89UM#Q9XpM`am-cxDS<Rf$8wYWd*r
z)$>t9zD{o8t0@r%R$Jy{{Qu?Sn{!!2YUksreALNDUFIU=Je`kv5((s^zC@BGY|+BU
z$1idINSrVwA8jR)Dsz0hh3^>|p+P<xK92eO=#q`|k(Q74`N+*jdOkAp(K;V(^3fz;
zI03lCrFlLw^Tn~=4+nK@nvZ7rAi}4>{B9&yi+p6|qh&r?G5mTc@Jr~*H+}dd{SwN~
z$1|IJT)EMfX(o!}w%7pWFt9_Q9e?>hRJ{jyRmJl@9!vlc>7ln55R{Y~Y7!G5C=dt`
zdRNK?DS`?jf`AB0m8x_BDT*K>3J4ZJfqVM7=bjRzi4{eq_m22~cm48vKL6)A&pdP5
zmf4xv+1=UM((y#vN6;aH{0KUcy$h#yB!^pZyofXL|8T<2vW>b#M6cI1BKEHl=@CKC
z2wsg~d<4BB=pDfb)+>TO5%i5<a0Em6eFV=$5RQNgg3m_KKO#h)>yHB>7#I->a1hJ3
zBozNnzdi5tBf=*iwieohMJ3Na7r}5+<46hWjiC{I{%Fdu2oKTD-Z?3sQ*(ScGJ;VN
zyb!^Q5mfD(Nd38UxnQK1A{ZUP%Mpx?h`#m8YB4=BhD1IqGzQDCeNp@?By7bH7e~fL
z#6h}5CPeUB1al&IJA#Q3Op4(32&RyqtCi!xiZ1k%Bcg+5!QO~qDj7b4nGsBrm3k{8
z#-X%--i!!)>9Ur#Ils~Lh_JzEKg^QfaJ0g4?rf&KF`oTqlK~lXBbXP#@(5N$Fh7C?
z5iDYwm5VNv#iq9jb@G~-Iqy#I{f>MRJ{x{Ff(d8Ciz8S<ZaJQ5cIdV=f@Kk`8<4l+
zZ20rD;d0#)$IBg~MY|-fiePmFXGk=%Pz3KsurGpdBUsDtNzVwjN3cGE4Qx}U&sL7$
zLn(=yBEp*5C|Q@of%MARACXZjXRnKh;UrH*-x9$m5p0X#Gb#96BVtUn_Lbfok9^AX
zxg79XTk83@w~D<XAD_(M!2~1tI)ZN^_#y%ZX8AILuOtubiePSD@@^`JYRN=6W?_?Y
zJp0$vCH6$HHzM|$Jv%a?<r)#6<l{MM#@X<95$uoPrwD$I;6MZiBZx-eFxdzc%CDq0
z^HnKFKXtLFa~KFB0$n18gr<bz7_#^CxU+!Q$+O|RXTz}w+z5_G@IwS1mA_2tPy_)V
z_Dd({_xQ0GkpdF7mpE+k`v?w4aD+PQT=??nG#2})#E(gsdM?c843y0ponT?=r;ON<
z^J4_}r=^?yLcc`tYXqkv_%njvB6w>pPDb#11T{;DD90_H>BuVZ`XeHGkb&Jw{Kbzi
z7AgK*>C+MXP3A0~vE@iRHU~wU2GzL;&Qr}Qcv!&&{u06M2<}91DT2!pT#euwIhll7
zTI$C$mFo9M96YTp6TdEn`bGpdCEv~&k+-OEE{)+^6z##8t<Ht(^$p#nZi%3ff`=6R
z!@@`KFB?UXv!)YsPmK{uo=Ig7%txJ6mONfTf<hmmxFSSo`71)uD6JeP_P9}kI-k2f
ziz#?SK{*A93X03mN+>9)pw8%$k1F_SMi*AOl!DR<&%8(|tBCmxj-AUWc=^R1oPinD
zBc86*6vpxjDk!L|po)Tu3MwhW5@<y?fUYSNG3K?tb!Jrs)f91fHw(jtNGP6CUFKLr
z`M-6g?+2#UQc#-(P*F-n9R-gm7^z^Cg1QRoDQKr4k0~p7LP1DDnu7WYk`$yUNLA4I
zBP1&#=mfK47DLa4bC<?bUC=d=w+&c$1y3n>T0tXzte}M=Ov)w-nkrbdrZXwVQqc*J
z@{+Cy^DjffOa)IWLVaaPm@Q#537bpEITpU9+~p`}sbI>vFfT>`Xr+ktg<J(~6`_k-
zD`=yjgI}`Fk10F)4`gp!W?ir4=fZhId$i|s1p^ffQqWOBzJeYKdMfCoptFK*tQ6@m
zHJ?SIH+2^UT}g*+Dd&G{Uyzf@1|`?gbAt)?QqWsL9|e6SVf&03NHxphZH&PW6-?+Q
z&XIXW!Ltg={uy$=?(^NW4*eAzJJN1|f-ld7iG&plW*aGZPQeRPN}OL3x9A(OLNrtn
zj{46lSlg{c^2Ll{itrT~F5w6T&bcseSv*dvyrAGk1#c^utKcOCqe&12Zzvc;o>B0s
zg7FH*DvU5A>~O{=;-+;n75jp53QnI3&-*udf`Zo+OjIyQ!MKSc#9#S4AzCt%6)~3N
zZIca62w#_+U->}lR0Y!%Ojj_2Eb(L9n+o1i5Z57*wI==Ny&;5Rrh-`tW-FMZhz_Dn
zwJv;EyJY!o*&<l_4}&vUhItC+D_Eo8eFX~?EL5;u!3y$*0&ZJgN|J64y(2~7T?LDo
z>HMreXJsu>K*;Ofx$rXiO_lRu?t5LS;5`Ma6s%UT?E92y&!=q~635XNEq@Me7T*=N
z?pg)w6nvy$lOm2!at9=?SFnLH+pI%}Qet)Z0|g(FfKP>ZZIno(w^BAMqWdnP3RB@@
zNrWv5K2flhY^LC_f+GsHNzSw=9j~W-Ch^Y|Y*(;D!A=F5eDZ~YT?+OqIG|uR89>1|
z3iilXUnx-jivOA)bIxj58mBB63U9B1eG0y%)KIf^6;pOu=fjK-@I|X$^vdI4f$n(+
zNi<i8gQ6g!pnbKX_Wnk+Gx<a%OSH~s^>vwrA)!gxzg&uT8b|%MENxUm7TZw};}AgJ
zdI|!5slZoobY#`vpUqlYEp&){)i2?D`N7#jS=Y5j_aDjXS@g-HiZG4hRN+j1Ou=yl
zKd=QA+>y_Jq*_yOR>3(1KP&h}!5<1vDfm_4QIa^R;CK1i|DynFJ$!1#|7!iGg1_Y3
z(+_ILDcrxw$xT9ZBx9y$WF5Pn51%KA6kJnqUBN~9%M}GzsSp%gR>X!uTHVi`5AzpZ
z|1Yl_3T`U6rQo)L|IPP5O8%GEU76ZFb^#K(ui#&a{FnQG=@*i9e@I2VL=sdKmq=k1
zMI=&GMKKkRsCZZv@sV1r36WNe=<>v84NiWWs;*0WRDSkZ+hTl91x`*Yt)dJ+R?$gC
zSrz3}B&kSNk*K1)iW(|vN`|bUqOyuADk`d|B%e@0k=3~ipsI>$DlOik)tPuX(L>S3
z;8X^g`QQ8usHmmlF%@-H)K*1T%Ohs$sJMEx2yr^3(c0m}MLiXEmqa?DJ+7h^cLAuV
zuVUQ!@P@?P1?R(Kn>R~Qk*Xp~MYf8NiZm5XR5Vr5Kt)4U*pLU7VxrWREL9^F&u+_U
z%<A;(eMJ{`Z@P*M6`yxXB*&f~m_nl~Q^k|2=w!RRnnl=5MROHTsd!pN3l%x4*wfuo
zMY~n~xOT?vGi%D^v7g;tCcTx4)_kraPZj-d8&wPsiR7yI;=Bm2+Ezt+_fYxKVqT@a
z{HB8nBO{Y%T~Tj$RAHSLc5-JGT~v%w@v@4pD!Qo{%uGpJ6+Kiu!z!rgsiK#PKB@?U
z*PB)7lf;n}2}@5}Yh!$0mR}XJoK~pZ$@Aem=fnL~5eYD?3iE)b%K#MvRSZ&br(#~G
zp?Q^Wwp(H(D|1qA#!{YBF;vAc6~k4mf4n@c;x<dfuIdpgo@b69#*bEoMx~51yOAnp
zS1vkA#f3#pUXbub313q2-l`^iSmr|bg<-A7s(3}k5*16?b}C*~u~5Y#72{R0p7^GU
zw^U3}g;ns^ri9m2(Tz@2F-anmC461NDH6UR;ZzCv<up}<G$Dgcm#s#E&s6coptdtq
zoZ48H$Sf98QhSbyxhm$VxOpS#Z57-5BoncpPnj>@E+FS5B=eRjq+AHUqvBl^i&YV(
zkK9O3SWr&{sATs_9$uzmxr+BytW~i>#Yz>cRjlDHXPciE)64Iv*!4?`RT6${=G-wm
zvvy}TG{NHJbtJ5c4^;5nMh*rGUTe*+e1oh$8sufXD`t&8Qn87YJc5fyuvx{&Dn_|@
z!NnF8pO6hK^t7;5#iuHM(($v7Z7M!f@r#CEHGIyhkykb3XxKqEQ1Ot4cnx2$Fe-jm
z@rR1tD!x<^RpF@kO2yYIA}SQhsfs-+_Nv&Yij^#`8nZB+dWtQd->TRz3)$*I_&ah=
z-S$Kds5q#i=$a6{wZ}yA7%@Xtp^=j*wyNm1bf&}dpH4DVv7F6|u?tAXx`=13*?gZp
zk=(p(vzQ83MZok`;S9`WaZiO$<&z-ROqtHtlhY5W_+G`YDt?pdf?ecc6-Q*FA63z4
zdd{E;{rT}R6~|fSdr7>0kjM!Me<ZCQJpY-rdVrs9k#=QAHcQCsBvq)~@qJ3gpDM1a
zxS`@N6@Qc2R9vQZnj3#w#d$Uj#qdJ-jEb{VKI1Y!sMzrw+q7cG8ZW0)(Or~pX=C)?
zCt~be;g2e=$*Pf({PE*G!h9m9ad3K5#Vr+gRoqi?n}nsJUK7t*zLv#1vO2W4kN4sN
z1n#T&mv!%%$fb6!n!UBOAEiD{6O(&Xn1wXl-I*ser-s5B>S%aOLlF%{HB{D6MZ?1y
zifNp9L<tR#Xh`dj$Z4_S8h8f8fn5Vx=9EdDOKKvvZ6yu0pGhpGVa$baX-z~`DkEW8
z3Cl^CC}DXCD@a&T!s`92@p~F?DKB=a%G5N})BsJ4CFyKdT|*5GoLioIAw2l!5VK|l
zYw?4AiM2H$^<)Ve41{$x)YA}RIW;`4;Ry}(H6*d{rHj6P06%w4{Fn~dI}?&M;f$T4
z;p2(9q(j4m)Km?G?7tci(a=OgQw@!n+72|<&{2+>|C?qZOxJ`>)l5Tk4H**8)P(AO
zQbHnGvQ*jfmZ4hsF`0zrWHf`88lKXynOSRiT0<)huV@&jp|yrK8U|<>s3BKFTMeBw
zbk@*LL!O5A8aikq?i17D`Wm}h&ZrRYs3Bj&kFS+X?H$^9AzZ6<4jG^ei=?54%)P6I
zZmbc{Svw<ktM$}GJPr0%91HZ)gp)~c3HwOcSHgZ0J|p3?684vnAD`ToFo^A?;YAHE
zX&9`5J?wpM=GDXyX^4i4#alk7VW@^-5+5$%NDU(-!ne<B==yvvkx}x=)|DMjKGv13
znLRm~oyBMkYr7_nB@4+izsz(drG-DuBP3Nh?enUJ@fwzESfOEphSxOABP(i{s9}<Z
z$r@hQ#KIQmFe#7iT4qm?x1{`R4YjW2y`f>MhG`n!)bQ4SPX=U6mk8g^)G*@#{zs=~
zd@@Vke$^&(j)u2MXL^2;6eqH_W+W5m$&3s5@O09<8WuD6@hJ;6l)KYu5qXtORy@V3
zAa*S+(NMis#!^kpC!E^VyXUO5Wvn~*aSRIWI@fKbhW9jls9~dqRT@?^!H$V**sP_y
zauuE>=V$Npn-|52v}-l2qm;EuUoRn%4H`apfZu;g3{pPQut^g^w?4j}{o&Nqflp*p
zNVjPCM1!uu(6Cj*r{sSP-)PvT;WKJ`4LeD|X^Ed}IQe4f?UHjou3C<%(eyenF!2iw
zvtCHprQzTOu_Ks9_-+kfY8bmV^D7C7aLsy;hQ0hoLqx+q4c}@wAf@9w4cyMQUlSe?
zPqs^Bl-jXpQsRfDo*6Ep-_VJXLp&mi29?!er*<hz)9}ZIFcDLO#osj?*I;XiYVb7#
z8XWnhCn0}{X>dv56YY7m>Maf`;=@-riu20~G#sLG%Wp_Y|6apk4M(W-E`*P=n%|{7
zRVtS_k;g8Ef6#D(^w;ncTX0F7Tes*?1~%!DNDl$3i=Q=2*<O}H^xivJzmZTHdg|z<
z<98NSLwOw)bez)gr-pkP{?YK4hQBpjU|VZAt>Fwso<2X!qDmr}Idxs!S@~q{vGg+U
z<Gd!!n4TlMT+(n^!%YphG+fbem9Sd5>r@Wag#mU=!^&UEG<Yi%97wvMiM57fJF>p`
zBI7poIV+`!shdZ$I<So>kFTbRU<Fwh!}m4(OEs?J5gl<l3h5}Uqlk`&bj0gO(0LwT
zDRwJt*3Y+R@bp0HQi@Me9S`#x9@uw3nI}LI@*>|B*YT*1QaVcOXs`t(betZVP*NA4
zaoe>iwOkopteTb8QBD`N9%6<PnbDb~Gmi-~zGAHV_HvmObyU)kr6XHMWgS&?)YVZ>
zM^zowbU;Tf9Y*zs=hrG)T}KTa-);TBlVWP>_{7iQ(6Y8JhQoDqJf;gVJa)51iN4KP
z_owG(aVGO|9Z#@?IvVO2(5*y$9jQ7(I+Aqcu1!nUk)n&GnVnqIzbdx0r|Fp9PHca^
z{eANDN4xynC#jK+#yT=}JgMXHqbZkm=e%+?rHPKFI?{Eq=`2HsHM7m2_FXrvXmWf(
zD8GoHeBZVrE><%g&6$yowmMqq$kFkXj;D3B)OkK^0vE-mFGc_Hq51nVTj`=RYOSLU
zi`p$TGeJz|^TZi?^04{Z>B!U3RYx}+?R5<OJRx64CmkKgZ!@#_Wk+4Oweaxk&P-Wu
zrcTXE?xKSui{^K;#Q5T|s$}NwI(q10)|bu1zpV1<y>;}_@t%%VI{ND9r(=?i$vU3V
z@vM#!I-b|jpQO|A9P`yNP{$x$c!F_g#zB2p$6#F;d)#r!T}6|gN*$tur*9J}mt1O?
zj^QMAoA~~k=(CvPSSNWTnMB9SI>zdFK}VT_xCIsB`xP$FwtJCnx-j`A2}kP~Bat2#
z!+iLPj&VA+eqVBe4u(A>V=t<Z{Hl)eI$pdOPR?sj_?j-J&L*-Jg;SF92NJ%nV~UP>
zI_B$mL&sDdGjz<<F-;e-4W~2BWpQsZm&DLpI<D7CtKO}3@A_$+VV-p{JWI!H9mjGX
zo~vVyj=LY^A3l;y2c8+@bKYh;3$uu1SIneNUZ7*4jwK`ug-GW9j*fSkZ_CimY3Zqp
zoA8^(QUnUFw_n*XcbSgmI#w{*y_Lv#Ju8S^ax{BZ%JP#?M<*n#*0Dy%mpZ=E@xG3=
ztUKT8Sf^t>lhUz8#|E~wj!n7<7BPOa2qOBSE;>GT78@x_gF+waIQgOIVouf1*(}?g
zC82FV{lN2rKas+i{BFuN9iLH%bZpnfnJnDHLRFknt=tYBJ9T`aV;3c~VkmT2@J#Xu
zv6#}Md6#<2d+nwgIhfS8Qu^0AzR?lY;po_-V=q~PLP6eGlTb7-ai5N2B_Cq(zNP$9
zYToa;U&jGz6^3nDQ=af3+f?2XS9GWka7~B)05^1$P0Hm5T$rYb%QZ4vl8XjOOoyu@
z&{0618C}vNqt1=<sX8izPRV!+J)RF8((yedaemy7I<7X(rO9_#7bD*zY=|min))c)
zTH?ng{6WGK58h5&5XXr)>W5!+{Hi0-M0pdxk-R!yH!#J(?__)GE(7%poYL_p)uVwD
z2L96VH(5)^4QfaoXLMZDaY<^b<u%Kl)x{Jv8TFiw^ExiDp)ZE%okAmFcr=setX*bl
zbzIYNg;F^_<!sB&9IledIjH2!Jo~bnI&SIsN5_2~w{_eh1qR07lj+};?R#`jd5$al
zT`nT5h_Pw^Qu!N*H;`bUkRhCq*{0uI44Z`?ddNWLgj9Y^4lHblIqmN+hKm?t_gqm4
zAC|C~gnamjM2Z{u(J9H>k_Ji{sA`~^fzk%b7^q~RvVpP&${DC&prRqfb8%|>L_>53
z<qc?7GOy#Vh}_F|Y}hWB2hi}UV&IKu${aZnN1WQMx`7%7Y8j|)pr!#BXxlZhmL|qf
zHC}B?E%fL4biI8d*AVL%c#LJh|3%bn@OSga4Lo7sSp)qI)Hjf1ptXTE29gb=7-(T2
z$3Uuqkby=98XI!n!$1Q=h!0CU!_97J;C$oM%o548UYZzU+a|{#EPqo2>8v|lbLYlo
z7{WauQ^F@D%#x4~vkf$pc=HEOKKiFLy%s;O5Z}_kQ%w9~_-PVtSvS_S6`SURp1k_U
zQgT^M104<I8)#=B&p>+v9b^gnt?Isew3zZ`?)Co=yF6IhP6j#~=whHN>)0q%_)>WP
zz_y%XBHM5n$O3mW(A~f*Ru-=w26{@omxR3~>?2`c3HwR-jD-BY`lavy0|O0=HZaD(
zAOm3oBMdxm;Pbr1!3KsI7;a#Qf#=9MvVHSgifypWmpg+pgUr8ka~oe0?i1{+M;ds+
zz^`*k@$D!Bvr43Mvk$BDqJftT(H)Z~=??d@fw2b08<@ai7#PP_TkxuZh1ZfcLu_3y
zJtKKkc`*>C8fUVv8JK8bk|8Y2PM3s@%07Lv0Un!9<P8H;4eT@Ut$}F<-ZZe*z&ZnO
z8JKS19Ru$gm|<Y1f%yg&7@|9#Wni{}Ifm#^=w?6J6XR}{`E3Jp4a_sdsB_b;5Y2ne
zU@SDSi0w7HB$W&~hjTS_>&pB#Yq5bP238qZZD1+OW?-d(_YBc#E;sPei42a#R*)bI
zvxZ#?6S7`B;fp!Gc`1D86HHhdw}w?9S2xLEjVLCR`t=4j82F6DH}HXh4-ITF@QHzq
zOps;U7{AFtuanuN45w0`%@8hUo7pG^N)}08e<>WD+hHq(k*(G_ahrj29YpU;YndZT
zI=N9%Z#S^Rz*i)Kf&FhL>@@I&fnAag-?s`Kn=N+S?3S%O`G@2$4G^+Z_{P8<0~gyS
z(%+9Z%w8%P##)@!ar&<8!gJ%kV^RiwHt>sq0|pKn2n-Y$h!{`|*ao5oRO$o+$Ct$E
zQUJMD$fl$f%5)3^J!0)l1D1ibdC60U<q<k0LZ`%-0aq60c)BPC>4{At&wy`W#nT~P
zH>Y+vWZ-+IY~Tk2hYgfpo<O-cLJ=#R`qJ_GY_FpRj#0y$&&a(K+Pl0x9mP*jx()n9
zZB|Fbk0puN`?EaGzfFIo>NB{z2j>i&r1CfL2h~1{aXPMEn|LZN2EAdLe^URm7bsQq
zgLV15W#Hn!sdk2RJI%6H%|AnC`y~14K6&R2TrhCOz*SO@oX{@uqxOlHDDtIqspP5O
zE>rte2r-=6H3Qd~-G~z9OfeW_ld%>z4BV9Dx<!3%;EsX21|BuRD313?<Sn6xOvIZ4
z`NzP0`Q%>-`6Nz0FJy`c3A{}(!L^2mB`hpq5ebV*IQ7Q_zAYy4M<gu%KhH~;NZk_R
zRZ=3QOq71`q>Mz$%3SyX*_f-<6--n#8P5cJOjI&a*~DlQV@y;rQPo6O6WvTyGf~|{
zGZW2C)G$%gL|qg0_{%2zj6|5I#eaKuq{w`ADO}q`9TShSvR`&N5lbh12p>1`go*kl
zlGtU-1CIHeeJFdnWK+x#{&^{!!s3}?s6MqycF07Ui3TJK6$r}{$s^LxL?iixcw>n)
zk+7+W^asyRw@uHK-#;l~mW0_7GLbHSWVJAnW8!HOtyr%maV<^oXwj!kj31IsVR`g&
zm_1AVCE|33)+XAR$Te|!fLQMQsaSej6YXSDd8Sww7_h!+dlO4u%Hh>PA{`~nXN@G%
z`N7*R67eeLbT`q%MA*b&6Fp7zV#Aqu#zb!ueM~WD*w+;1(4#py6{ZX4TguUv*{z>7
z(ci=X69Y|5`Auw%Pg$NactPtyCKw8UV;?HOukWXkm_tlFXX1GiBTWo7G0YUF6^~$>
z%7D_3rKS%z#kmq|%=itRg}>a6v86|uc)`SrEJ;Etbq-AtvN{JQFPV6#UfQ{<DKDEC
zYhsy+<tAP+G0wzWCZ?Nsl|(Z!*~IH6CYX55M5#ulCNf_}HK|;dIlg*7d6Fp<EXPFe
ze~T$5-Z1edQyW#10>yro;yl&FG!u<KP2tsaUn2&Hpug)3lMaWNZ(@OoSte$)gu~+F
zIw#IycH@Po(CGH*Z=0BFVjgLDD}~n!?XwAMJ)FAG#3B>#uxzUmI6N8rbrw5ccFpga
zSj<)+qh1a->Xyj5FO@iNPnJwsVPd6;PfTp3M4MP;a?2jxCwY0KLj6*U&y-p%E3#=^
z_F7Z8NwB51m?8w|Iuq+DEQ3VXzd<4&nE3F)lZ_@mlK3VGH%s`jgiEJ|`3u{Z1N=`-
zY%}pCo5sXvCO$W@%fxOI+f8)0#KwUyOzbeRlNT+GoRo%_g>P!56LEwbXpoYu;5V&v
z80lqeLCLQvo@-Gun!!D%drj;!QOv?47QQv{or&K~{9$6hi328%vI-^+nuwT)ns7{E
zM=2&$6PhWE!&aBWcJ*Z4gu&{Ycyw%U2CHfLND-FY9GhjCu=#v!*6p;egj{5anK*3X
z2xXtAfSK@^g`L%DZkkW=lz4%Je0a#j_Y%+U+v~{NX?-sXJAuIu$;rn}{9xi265qrL
z7ReOLUYtH6xBMhqA#G^(&&((<jo0o)$=uBQn~9TT$c^zF?6cTB;Ea?xW#Ug0cTC(h
z@t29eO<XW>(Zp#JXE<u8SmeAZdd6CpgeE*otw`R!96nJst63ot&wuX3+)I>w6Dh|M
zZj(jZ=CViI{9LyyCa#)ja;e2N6W2}LkoZjruQw^l=eHzI#Jnd$0+t+~dC$Z@%*#Sy
z3-?X@OUbejZz0YSrZ^jp>SgZba3KqXn=gki6m3Z%qLJ3`$4th6En?weOEe8#%8T;H
zJ#oa{LP<SlCKtExsD)$;DHcjtC~2XZh3XbcStxBG(L#9(Wh~K@Wi8Nqd`+qD#LHR2
z<8<ipIN}v7RJ2gpLKREQcvP~)5)XN@_~hi(e|O*_1@mIXt6JE#q?2+vT*E?53y)c-
zE0bNmuROh~U<uo-mWA3D>R4FwPFnUSSu~yr>seyoL46BJ79O|6j5iNZc!JeQ>`sIV
z=jMShv%6hBlxiVlA>BfTg)|Ed_@jl!mIy`F&_dfQrMUa)#O3g{%V9<bZDOIR#bYeu
zGdi|s)-(yesF#yz;Ykb4Ewr$ZWg**Q#B8x_!TEXGjd&{k(LG`Uw%fzWIhHUI=oj7H
z5<Jk-!c!KWw$RE#YYQDLbhOZhG?8+hCy`tU+e+AuWmDq$max5i@}E%TTj*k;t9;u@
zKJP3c$CCW`zi+xd_@4Rl6yRPKdRsUi#Sc;RvC!AT92;-j=x5;>wzZ7}8_!zkZ{b4=
z8!Zg5FwnwV7N%PmWFc%}jD?pi47M=D!bl6FEIemns3oGkkuop+oAmAV&@fhWU*>QN
zBP@KmJM+ZXna@jv8$fvbf`u0?ykucCiQgyb#jkScHp6oOX|;Y6h|x{BTgq6AV-`%Z
zFxkR53$I#u=goxIEL=!PWrs4J1g{v%+@CzbLh&nMBCOp+7O9TlvDYmz<nOaLjxmR)
zuwWLZT9{_xO-X!Q31{riAt#I<+_A|ZVPwv*Fw?>k3rj7`vM}4iLJNyX84GXop&7S;
zk|O_|C*kn{orftM=96dIr{r%fpUwpPh*<aUSa{bGJDwgJCeBFx&s1A%q0^P{Bg;d}
zEG#FlT6mv?-5a;U!b%J8Nlu>EK@6H!Sz;v4SemQJmTxB;yORl7k+qhHy0Ern(RFO@
zI;kVCgx6cxK;mBs^ZGy{l|Ie-$igNIr!AbZu$jVQAx5sVu*JeB7Is?rg6qH302a1c
z_{<VciG_M)a#Tx#^GeRj`P>p-+}m04GaY#CApPgGA+pQDZmRS(@s4b-FDZAe(rpW0
zS@_z*Hx~9-h*(f8?6t6unxB%wdaW(b6?R_a!~OiMTq=3;fJFF;J<CDKne+})DRlC=
zWkHt+e=#0>$-hjA^Oyfpi^^8m&^pBJ05iG>hVd-;lyM6`SqMmkj)@FsdcvZQG!99<
z@jXRse@bvLeAvPf`Q#{d*W9?{q>meSOqPURNyLA6fRiys56qcN&sFN8_3?|jr_92y
z7Jg%WJExx{&sPW$nSLewyTt#H@RWpqO8A$Ae@i$iKc3&8wQ$bDZ3}lSoF_9|xMtzH
zCBh?Iv~Y>_Dp!;y$A%s$m*rpGk~?3qaFq<OuQl}v;SDz5s`582+@c=l%6Lx7sw?51
zPI*pkQPteFaE~g;Mj>0QiT`6^!DifN>(e!{QRrV;@tF-1+71%)LJ!$OX32_l;pS9K
zVH-tkG_%p%Mo}9N+jz`IT^q%0JYpl!MtK{>Z9HnDjE%B3O4ulAgW(;xYme%E!6WIr
zuY^n4C~f1*eH}as#isl>*T-?<uAB|J<(#<^E^;+o!A3<JRc%zWMOchVHY(ewVx#)i
zFs6z)V>I6WJL<Z+jT$y;+JG&3isoxYV5_BmYAsvH-NwoNYuh+JCGB}9+;(zm9UFv0
zwA6ac%SK}xO>8`2qrQ!hjWk=Vuq4??W?k0Av$9REhEsT3A@tnzP^t~Wn!Pg{*tpy-
zv7wDd%%X7yH4ODU?Q_lyH~%ZWsf~0SnKquZ#Vi5GdR=-YX4s;mJW#7G`v`6U$YPm0
zB+@F#w$brwxY+Id7B+Hh46+fn(bC3KHhS9VW#efZt!#AQXSP^xYHg#9ja+`VLnPRi
z1@^P^Y%!W^`E*)48$+*#-}t9nds$|7F4QggHagkpYNMNt&Q#!Z1uRHecr|?HSj8^3
zSUeq7q+xeSI-0mVtht8`dd_dX8Yb**qmPaLHU`)t)LUQbd`X#pw&=T`v4!2sYxNhX
zk)6h5IXLA6@<1EE1i~12xmL-+Hip=E!N!ZE9*bvVxQ!9E*cdg;7IP6i1d|gBG%B9A
zQEOWKNE@SUa7mF3!36oL;^aIw_e(ZL+n8YEH5+4W9DObRWgBB<b?PPbF|USSkwqGB
zW1NjwZQ-{g)>Xet;rvpwe=>4sB~7$3iOjhqZniCYlgT!;v#qC)soJ-F-NuKtGplS8
z&iQZH`1NXds)W;QyeW~lB%CfG-_DT8OdGQ#a`$SO56{ob684gfc@&B$ibXNs#sV8r
z8;*^IHWt~~WMebi(Z;(rR@+!(W3i1TEUk^@w%8`H)E0)pq9G;6trV-1D{QQ^@t%!U
zHukp@YZjSf+K{lkDqIUUxE5}9E&RTXwKhIr6>O}tvEIf8Hq)^9R||=0J+2Uudi?SH
zoVFWn&=miO(z;A^e~i7uiDJ_EV;fs+e8((od}3p(jqNse*rJExSxBGS*k+4e5}e$a
zxIXzaa^|)0=cLTF@S1Dko#Yl9yKL<K@0-zLPH*%F{itNVwDFA;sIMppB+I1KH}|Ke
zzm@7#YP!e9UK>_k>wPx9wK1)FcKqDdzjkYuxT*8W`MC#d9JFEb0~-+=iVc;G#j?>Y
zK`!yL%$$?gS>O+AE^61=AY<pJ^QurQmsPV#kdj5|V@xUy?3@;};oA7y#%UX#4d2F3
zWM&%y%Vy&UdCA5hDv+*;-%Dk9?ruJF`T1<-VJd_r38ijl9HY{>QtAXnn3_Zi^2Ks}
zez4KBS1OTxAz|AedQyyAe<44R$Tm*d_{|1)Q=YW(JDa{;XIdl4#l>6%H^s9>{<QIz
zq%e1X2ZP$u3gUVY^F3qZtc`0nuG=_g<2+T3jVm@Tu>4x3i&UyrN?o3p&2%nFhG)xu
zm!HV_x~tU2T@p8~h@&pz1n&(SH*MUZ^0aYsMOiL<+_G_-6dRB-p+Q>xRIyXw9{FUX
z2*>x2Olr_xagy47TXgRKN*EVKp{TfhD2n(fCM=5c;!@}hm=Hzlhf)g5S4AW&Dq-)H
zogay!codVOm>k8UQIv?HNfb?^9QUDA6i-A^KZ?>(l!>Bd6o{g16y>6*5ETO-DpFF0
z7Exjp<)i4;t~0Mf>q=LQ;*ASQm7>BUqOycUsz{`&gw-UhE@6!*W;GW9Qffs}JBoTy
zJRTLws!kM-EX}2aJ{CoOrM$WlHmR3Syh-V7=G&@r2ht=disUHLqG%9B3V)wnCN+u>
zuiwO!GHnAU#fD~MacQPu6pf;292JYg+z3pb=b)Z%d2)Js6d6&x5XFm8WJd8M=@Z4s
zD6*o$St~n=X2dIoQr_;?Jc<@k%x*30tDGn<S4uuJD!HXZ#=V;SR1{A~(TW6*Vn7sp
z)kebZ66QwHHi~vp<VDd*J|Ww;kD@~q9px=0g+2I?H3|7qe6U0u9zl`s97UHX)~A-D
zr&HG`x{*ZPglq1^ST@t|A%E;i`bW{5#(xyg{7=e#qv#hEGu!_!&1a+N|Nl>Ip!|MN
z6yYcaM=>OdVgHlDb5RWa|EDlKiV^?+6h@K$`{KyA<r9mNo;<zrr6@*6@k$iqq8P)b
zsTluq6k|C&8JximXvvT1?4#KUvLf83@oE&WMKLjo@lou(7M>8rXS34lH11Ex)aYS#
zn7V63=Ic>RiQ+&M2gzVjOpRhQStW{TQM?(&OfpgwZ$<Iau=wdw%!rCPRZc*Oky?@5
zbJxNpZYIr+VonrqM=>{w%JaqMM_M@KA~MOmD3(S=AI%)+lNtIXEs$`bgo`A6N5Xd{
zTrA-d{<SBLA1{kyd6b7<VI?UO#Rldc73LYQ_a#5Cl5n+zYofwN{ck9@HY$dP>m;1a
zNf`OTMhR&xe<+_<nj1&_BZ+U4kb4TYMDa-!+oRYK#nvc-x$&Pyv5n$cO0YC_?`IV1
z@hM}Eg+7mp@iMQX*TanNwKIxcQPHz-OXC+L)V;iCc4Y02;!9Gdf9_XN;m=vTea_eN
zmQTKs$Q}vzMzQa~^KT{corL?NsC7Nek0VhiQN*Hfqfn#Jm~|9Z6gmauPz{69+OI6b
zS8^!b<a(Hew4>}#%Q{hE+egW1a_9BJb#YhQcVaEPDEuf6M{$G|lr$-b;t=)5>=bIb
z=t&WF;CtC>``=DG+A8g}I&nuymincR$%kAH;N0C~e)b98M)8k>`wo7J;^!zvIe5Xr
zFH!tTX>#y{gWsY!Nww)9!NKpOPZU?8xEjT&DE_24L~%BXzoPh?MJ3~PO5E?3Blm7S
zn^e;k3rQt*4Lldcd2(`{xXV#oh>8gTit|PCf366Vb%}yMFPUougq&?FxZV9)6xXA;
z$AU$1BZ`|*VL8_sm2fMH#I2#*QDGjR>zKZ+(L*<$$hgC|{OpO04%fqju7^JwDdK_O
zkK*4b;v7&LjJqyEJf$l+g&aKO2<GQ?wtUgT4vIJ^>!6&2q7EK*P~5?zjxd;u5jtQW
z#3jXvUNV3Gx_N2|2PGYpc2I_-IFrO9T}b3o4(4AEzw~3unzW2sQ-m`r{lgO-ly^|a
z!D9|8IH>5LmV@zUiqMR&<OtsD{zd!B4!$4KmL;j;pz4ECRdY~X;x#0!DIp%b{cv@;
z+K!OK^>4SnHL7)8M|1}~3Adgj*yFoIA+Qsk%B$}n$w4aztsNvgNOAC_gDeNB4nhu^
zIB4o1jU`+X*Vw_g?Gqa~Vh)*(Kn)!bHj<F10Mia<g6R%29Ar8o*nWe%O?O-muV@-t
zGPvW}mSV7w?Vy>1mJXhB#A!#(9kg(e!+hBdO;0A|L?sJZze<SNy<Dp3(<DV_F*$s?
zRBjswxej_d=;ffTgLV$`9dwfP&vVe;!S*4gsfZpek<De44vy%)J32yR6Y1;-H{&i2
zx;kQt{>I)$-B^o6acn*5)7?Q2CRHtDUk@{Q5w~*mcF@PcU<X4S^mTCP*~DiZ^mowD
z5o3gHYcro=QtxM8yxg6lF~Gq<QmmpVJOk99%L@&15attk!0v_X;pZgvMzBbvJjtu%
z4RbJ@EHuAco2?nVSjZnc_8G}vJ{DSi>X>x@_qH!Oc!}9L*yUifgE0=4J6Pf1Wd~y&
z%y2N%!7C2NkwYB3?%-AOjDv}e7)xsHnsIcKa3egy!E2HShA(ZxnoeRBxbeAWIob(R
z9K7LRs)K24;tAqpH(DSAn&gdmSu6y+N!Gd%=INquk=ysDOn1cm!0K?uEC;h4%p)5+
znB(AW2Yd2M%q8<w6sN7#>?F>ZINQD(Q{$oY3mhzUuuL-ELbg%yltmK0<KSJ1EOxL&
zB607w9<p1UH}O<$(Ic|}9T)XlNltdKfxP5km4np|-gmH;4E8~M@nvx_H*O89JX{1U
zUFTpu`7l3`YMI2`aVUoYhsli}I@svoGY6kL_=pnfU^5FNiSX7NU6{*z@tIpBCv0Ud
z;ZWln;ZK;+oerCS&->KDHb<CVjmk9QMdZw!Qrk)4pyUomxQMq|o<haDldbbb#=)QS
zc02ge!BGdt9DGGh;y`y`IQWJna`2tQunE}f2=C~9lq1%Hfx+7}V;M%?6vvU1Vh0=?
zbf7xW97Lqxr*0HcrxYn59dCq(-3U_yEPXz$Lw|89wCTWdP(c19QoN{5nR>Bwz={;4
zL>)M?-P!sv2d)E;6!<}e?%@-kjea9coITfqmqXt>IP8FddX7jU2xI9?(iAo0P`A7h
z*&U8M_`$&+4o*2Z!89HGOodPVPu8jvM}y?U9YTH?GMe5~oWlK;T>wi(&wr_By4FqQ
zPU_!T!p6d>=1&&V!FdN4$hswq@|=Rd9h@e8x`)n4X#JCM*1@?cS?AdLtnZER&g;!D
zQji_ob#RZZ++B>CFUx9Pkxj`V##Kj5dR%jGT_QImyeT1{-{M~n@H-A(+$KV;(xhRe
zAR4r6_kSJ4#V{p?H)1Fh!$UDNi=lZ8@i8RCP&I~XF%*uWNDQT8C=)}`7#@zHcnpum
z(5gpbu^1kSVSZl`xslU`&s7pW10`Y@H#(tY45eaNbhkUtYku>#n7U`5_4$o(*%->j
zP$7njF)>?`7(@A(a1<v$%ovxsb9yG#U?nEICcbhERbp7MH!I_p_WLh3Ck?qE_{&#W
z)nlj;L&F#v#ZWT_#PE0wPq5^5;%dcECx*vjsLk@zY2-{&-OPM)?2JYkbz|tdrcJ#V
z?yM@4QSfZso~-&YB*hStUy>z0uOWKX<QP(7NR5Fr!1Ur^j`S%_i{ZBxISpb$hw!S^
zB-EH6#E==olQA@nAw4Fx_GHA+Iz5kZdkXrCv(<)l7Gz-@<E)rCStC1!{R@-1zOcBi
z2<q4(hMX7%#4s?1mN7gPL+2Q}#PBo;8$(_U?U`B(ZDQc6U%MD`W7vBm%oXZ=Pv*9b
zVSTG?UbAMlCcm}+H>*Po9a;C4ah+nwXT3faCz;YW{!oY3$2PX1lzsd{PS+T^#n2~)
zzA<!<(R~6vW9StV9p%9(Vu(ti=pFmNl}$<+jR#I%aZ^}7GC<F=&%{LJnQ7@c&q_LQ
zg0X*0#K1p%BRnXEa13K&csYi_F${@eWDKKXcrJ#aF)-56^DzvI;fr4R^d}*ahsT5`
z2KDL)i41x=H0zk4*b6bd7{jLJ;PySL#A-p_OKj+Fq4=^XqsfzHQ%a60IW~q@Vi+I8
z1YS$y#<5f};h^4hMOLvK5h<O?azyYND-r`8Cnm}iCb4WO$-JiT6$6LYW0={w4HeN;
zHXOOpMMW2H#_(1Qehfhj(_@%H%Ez#TU&b(td>F&R7-q*Xhh*fo@iIl9ohAksZ^wjn
z(YtxGxy){6`aB8eOStcgtVN`7ow#>nFvlcNXTB2?`e8*YvGwEFBORB<uq=jEF|3YZ
zIY|-2d*o8D<Vs0l3dOeHTU@#k-q0!i-R@$vxF&}8WB4?NZ8FofF>H<rb-IrH5W@z_
zi(Dt#$Ye(+eIVh7@*$0XKKV#K*(9G-J`wk^M7BKm>l2A=m5|?)&p(Ud+n6vUK96C0
z3_D`j8N*i;TbcV867H68*Mq-UuP-J3-%j3d<lDUx?)jhR`ySxmQ7B?K5W~S33{r{W
z`Db=SLRCWLLCSotNnDqZx4bO*jU%BgpGPIU_ed(=#w6}a=*e&RydZ`{6nPhgU3?$I
z;TUf7RSZXBI2yxgsn$4Gc`Sy%WMdtV;fEMbP)w)<$Z4`JKS}tDgg?vlNio*_SBd{u
z_uu8)Qxg91KhOVsfKz+_O?r+?9r;viHtv}i&c<*qhVwC8h~a7s*W|w!CA=)*rT@w6
z%KzZk<=Yz){#TNl^6jk{Smm9klSXXCU8;8%@h<MgL`V5g4EL#*61z8urS!Uy_iqew
zE{O0dB$3%QJF$Z}+q`|Tn_)6-5f?>WlyFhf#ltR&aSLI)#Ai34d{0q$UXQpa?xJkt
z5U)pF)VvucQp!bXSE%B0t`L)SnN%4UUHR6<lXH{j#pflu7=ANc-W7`Iwmi?Gl8eeN
znz~4LQN=}77mvGm!bLR~)m_wfQO89MX5oq;By=h^-xYH;aD^<?lG*Lr9-4YHOxFu)
zlE+*jt#w@?diD5k&nNjYVSN`#E*iLK=!)6tWPau%)fEP9zpBY0S5S%9oL1dAXP)MQ
zdyejYmD)(=(%3~4iTu&53x{v~g|)k?gfd)Yx@hg94Qt1wT(orYl#4^zrRe0D?V_2B
z_il=)Zd_k$?xKZ@99P(f9FNawEL;c6a{k9fD_2Yle||G;-3;@b6uNumx@ha7C!59<
zp?KQ4=-{HGi#%5hYTCQPFynRdrts6qchQ+GbtY*^ey2_@^rtf4?3vw#WOvccMRyms
zWMq;aE^@0USL&Jk^J{rTrgTr{1SWU&_IA-nHb-BX$V<Jl`?+G6@QjNJjgp^r1=IGI
zaDa<}5*frsln7siT?}?HMBYBf;<*?m@tZfp?Jj1ucRP$N)1!M%ml5*e^Ae7fkcsp6
z7hSyM;_m{SF2HCPV_Y2c5%KY|i?J@g@UY9nD=x;lDC425hgV&UcM)~rxR~JLH5VJ$
zb}lBmnB-!Xi`gzFyLg=%-o;xkrnq>+#Z(v5Bu_G0VCzO9_A;bfnJr=}nA7ajT|Cq&
zafXYTE{cp77IleR;ivitJ}*%%G{?o;Y)2QXT+DSb&t>2OtZ>D^iuTWZa?$kA0v7{L
zr!SOnk%YW`$Hlu3@Wm2YBH>aO%OpY%VSct!7L46--CN<)rOGgb=4uyfSi52IbL3IH
z?@Q)veJi}y#X1T|-*VdrC9Wrj3@XAclk6-$bg_}Na<R+BM=mzG*y`d_7n_+fcmBHg
zg!H+QL%Zm!d+q5y#FIX#=PULRz05WjpSfa(5pA$Pw`Y9rVh07VSvrqa-%g1;n^b;S
z%1)N{R=8!E?pqJ0>~`@b+la5&h%UZ%v5(dH06ZI%a`BC<OJ<4GJrs=+se2_X`g6~3
zU3}+azl#G@EHyjbUz2g_ovaaWXMJ<HQ$|6S;zA|gQl(TB=O$~ei0?!xn0za|{FdNw
zgVc6mF|S+UL$|{5zqPQb+<t38=i!(O*TtVM{&L~D@Le2t@q>$i8h|?A#bFm``WLOf
zB<>KkfecwTcv|ZtE{?jm***T4E6hClEd5-l<Ky+(#UD;#e3BCs2N%D(_|0YH^Z1`!
z)L$9*i;JI0Rr+bS3w1vdN78lZo_W&6?=DWcVn_D595K55L#mXV8S$?zjvvrPY}xzU
z#c7t-LxP7hF3!5R=Hj}Gb1u%yDzk#THVjC)AjR;ai%WcUD}0&l;^Hc`O2Zu9@_O{P
zfV}0{@CF58Rl-e*TkSXwmu^W-c$=Dmx<X00OIc{yjJe;FxBp0ZU&4PS<Tr7i__C0M
z4@t-vM}<8U@$jgJ5*~_rc-X@u9*TQHo%St~R?Nd=x5K}+tI8k}9BZ3&5<4scOqKM6
zJ8@}GZ2BnW3FZG;K^zw-X?>OH+N+$0L=Vq-80w+ChYB9rdT8gNqK8TzT6oCuP}xHj
z4@n-9Jyi8jjTw2U>!CWIR0!4bL^IX!P?O)hliuLA2>%NYk@g|p*7i`x!;K-KVr6nD
zjPwVn=LzwA+`|(d{%99J%_)+1J6zwx`|IKudxUr|J&#kGDIU^2WO(ANfm9D64{076
zcxdRMiHD{h8hL2!iEW#7Ie4XkIC}fqrVxd0*}{rFHj8RflmGcwJJOl_kjXDSWO+C;
zCq3IkGY`!@{Fal`VMh1x?eN6g;qSlg#aAsoJmsO4ht{5mQT#M3#j|Es#!-COj&%HM
z<B73Su7^*n<x&?t_izi&?c{lA@1c)}zHBKE9X)jS(8EK%$HVw&Mk2pQVrLIL4xVJ+
z)2nM24?(@g?8^wdd19LA;%c$?r>BQr9(uECE8{o_rJ2gY5BWHY79$U%?C0Sb4+A_5
z^zf{Q7uF>7_r&QT+)m5h_J`4-e}B)UaXZMv5OPJu_^>Ay9oRI3JuJN)W)obT+@C$s
zFb~5$yyM|r4<nenhshpZ_b}4KDC%$z<Jn{@<6dCm9$sQm`-wn^m(rg+zaf9LhcO;r
z<_DKU7dLbt=V7eGUy+axx3nskJTEDAS<VCxuSsT`<l*<_;%r2JNob-cCa;e5EWrf7
zoY-%Qhc`UT^Dv*hw<K<=hiM+(^w4sfh(t<(-F7?t7CEy*Xu2nCfEg0blyH`Wvn8A(
z;oB0<mGGby$L|+-V)De9UwV;;g`Ti#I33Ma<CFp^w%EfG4<E6iNgof(JgoMx#uIyK
zmwR~6!zwcWPf060tn?5+J*3<Y6SA4uUM&Cd+u`>;to5*w1RS5jCE9f!HppDodpLDF
z+@xh@%j<(a@bDp7qI-yu+iMQ(d~vlHU$^d%zL~`F@R^6tJ#6vBjQS@Ywo3XiHBPX6
z>WNj?AK%K`Mk(l%^jGaT!tE6KHSs%SF8At+eFr-|(Z|)jBZdjPJ$y+9_VKijugIt#
zZhE-o;TsQoJe=TP9`<_J=fNX4did7EcODK>R6Xox%Q{64cqrU9j%`E(hSg-H6c4Hg
z$3x5$r+8}~irop9zZ2Fy7?k%e)lDkT-esa5EDttWs8AY%2+>7^UhB(il<T;+O07Gh
zn{fHrnIy)6VJiewS(HQ%M?D<!@V$q_l#!kBL+8d(pHShmqhT5N*D(*rWs7j0hqo2y
zrSa7dY~rlexSsWsho3$C<>7A+zj*kSoJN&Gxn_F}N<2yXWV`UlB^fhrio=~xc^Egn
z^k^^cPg$73#{`eDj;E>oJ)HM&!NXY(=R7fq^cxaM0q*qV@1({>50^Y#^KhN?48&UG
zW%5kBl)n>lu8_9(GOkjg&Fw;j%|SDUf88L#hYLQu?ct7xdOjZaao58=4`qCm_3@8~
z`yL+h5%1$)DJ(qHzK|~ldT~DH9_U9uSf<9)UJ`s1_5}kM^-;vfh1rAX7fn{YoY5}3
zeVd1U6!UTVbh|~P@*eR~+{dFnO86+{qqGn92now8mp)jvq>m$$)97ejw;B(q?MoNL
z#)TV~^O5MIx{n$@%KNC`qmqxxzF@hEzR<30wYNHU9y+>B6(1W<q^|ijd2Wl8vAG#l
zeN<y!Rmx1SnbP7;xTX*IxHT!hwl5fx#p7~kEgy&SL+(DYEv1f+$9&ZF(eF-}>m~(W
zyI1dopYT!NM>@0fk>n%UN1BfYK1O#=oLQzi{a#XJty6tWI8ibracX$(J8tNssV@!=
zTX;OPk&nhK$!{G?l}TyhW7DWq9t^?h9hN+kRq)Z=M++Z0sim@fWcz5wG89f>6m+&e
z-T7E47C6VpfzF9j$CPa8i+wl#y)=fo-sPsW^3mGITRx`yXyYT-#~>eJA8mcK^U>W$
z4<C6x+WY9}Bi|RX`Z>?Q8MzLu1=lzlh3K8w$wyZo-FzVeoqcri@#m<Hyzc%}YVb|5
zA!5OuFoz*Mef0A2jE`r1^!CARhJAeWWr5G7^GBAppQONlF3mK1cqVv%9|L?0^o4pH
zb)`Gusdn*HAe<l?>|+Sa;A4!B=X?zH@q&*ReGKz4oaMh#>W39&nd}o8i6eZ`UH%j5
z^}LUfK1TT{*R$8gJK-_&)ARE}T+VyR7e@ng3)Sjj!fJZi$5<b)`IyM(KE|=A-4iD;
ziwdDBH$>2tSAC54vFA?s#GUZ6kMh~wU%L~Y<YTfg+_%z87SX3AzwV1goT(&Bm(Ua+
z=ab94A@P=tI#2WQrjL{NL)>vzp?80dL}vJy>ElCkppRKTX8Ty-W2KKdKHm1R#K%%r
zp<nsAJ{I~|<YS&Ml;=q;bH0xSq(FQIFW$}=*^d?xuXlXB>kGrF_}%bgAM3Z}%x=@|
za_7WlK2Jvy$H|d0Trm3Tb`DAUo{v>zHXrLa_Bj_%gM77*HDvhG>8!&0zF23uYG)14
z@5F!`>wRosbNJ$v_R!BMt^X2ym_IR_67dn4)5lI9U-;O}0{i&P$LBt_u(Uq5`KVnb
zaVy^*&Y)sx);RZ5A7>XOCEpF-o11j3c@7D?-Nz1A){JBC&rt~*nu)Vl+T~-nkNxCf
z7M{(~Gw~}QUz7PiNakwDH@=v=+v{T=`SAVBJrWjP(&bF&cwXQ7X!%oDUf)q^>}^Yg
zV{kSlhwAh^RD7sDi~wc;&4<p!1GElcu=yx-0Uixt`LNkuK7RKR_2Kw9>f@M?m=Bjk
zrV{XlAEW2P_Yp{D8?YpoEXu;?-3^m6-}^XB;hG<Jgv8{bu}`P`=P=NFaSlcGxQ`!v
z{Nm$RA1A1zcsei{+lyoMsiJ?9Lh-XqmeZ%CQo~Y3+YB%H8>LL1CC7>VKYX0>agz#)
z4}JVaZRz6-lU-4krq17N+>%9C_erMGJ4^BRamB|~ne2ITEP3y4_=1m%)XY9c+zo%0
zoL{?92VTUvpwAp{9}{hHO{&f7)L`vXZb(RE!`<+0A9s8d3h+>XyFTvuhzsy{&%}Rx
z+?Tm5D#)PU_)dmU<CjxYc-5UMj=87y;PF`T0TKcf4shV5<jdDXMFL@OJQ9fR;NabG
z(EtwzC>C(PXU4+sdtQxpBrK9pgmozqpkx39s1=}8fYJdf2B;LEOn|Zh5(AVE(6?t<
ze{kt?fuJYllxstcHB_n-S0Ml=%*l#8pQSSK0M!H32v9XZwLrKG(cOzJ#fhouWyIQj
z%|JBq$U1Q}kAKb(lk>F$)CrIhAT_{a0qO>LJirqH>IGQ-TulbGU|4&m5Pz~!{XmS-
zk^&?LLTr!S71La8lsrO?;zI$_0yGZLBtQd}vp@t)XcP#Q)i4k-%E(2`j)p<g0O<j;
z12hYSXlDd?GQg=W12Y4mnkGJ!MMxrN1;U+!<B{ehEW-gc3biDCT4c8faPe+9N8)ex
z>GD*7rvnjwkQr4i-k86%36L9L66qhHZGd(G1_l@uATL1s0Nny~56~e%#{iuJbYWZf
zh|do|E!|0G#4d?RHJY8$HNeQ;35+qq13@U5UsP<;BS6mp&j#o($=EBvGsH_2?JZlm
z56M^|rLTnjB>XBZgHK5IgLxq?D;MgU$aWkMK<V0=7H>GfU}h0uRDdBYK!9NZhRaqP
z8vNgqS*w^h-CzXys&rA#Vm&YE$>!!on!FI;#Q-k{7#rXv(mX)iGiAmEqTjsVzhT}|
zao+uep#x?dum4JbaZEGdq9k4o(4to+dn<C$_y7|EtY0Bk%C64smRBp|++xu+B&^J$
zN%nexDFL<z*unY+m>OVHfXxA>1$Z;S`vKMlcq_p40Ph7@6<|gn43cHC05b#ZyHTRu
zrKDK_W(SxP;O#&tjYSg9m2jSf^Ces$;X(=dnO`pR9f`jy;bIAwJb1e_06*Yo%LA+k
zK-Y*jO6IN%IK!E8`Gmk%%aU;GAM3Iv5W1T7E#W$fXN7p7|7DXsS*<(CxFNs?0hY~4
zqptgqLV7Q}F~CRis(vrb+m8cm3GgZTpPV0HD|M_C3J%klCS`%!KR=_q?8E15(=`c<
zphC*G*dgM*?_}=GG{C_Cy8`SEu$Pnx@MQqnPG1H1I>3pS+b|I>2=XuXDc=Ox6JW#m
z5U+Qg9^VG|F2H^gzqHsG(y?N9<~#SV4pckTnGv!R%M(BkMCdRqjN|z)DvR;8IE$8?
z6E~(bRS>1#3Sb8qQGn+Q5Dnl^MHHZV0b&8%0Jj3%4&afn<iG$Y0|XS$07nBH3veh9
z>oVU5I80i}6HnOCM~H{T5a5HO@$CKo*;4a3sT$y?0DtaC`+;RXn|*@+=7;Vz7snYN
z{k7rG0X?7bt7PM}d*SDfXK)6On^t}g@CTJ`fYZE&CY)jl0sfMDCbfp>K3Xpl89n}Q
z`!fO0M#oLkZCTto_IHV5$bTWgc?#o>EM7Za$!A^{16-0#O#HG$t^~OH;K?<KTn}(V
zB5mi2$tZHdA9*=<s1T@l3s9~A_X7MAAie+z1-Q==b}kWDfS^XXf8}4rs${Y`3Ka+y
z$K7WS6$th=llm4eK#>9zFTkTD?~@rt3s9^;oFwvafrxUzj5ur@ygTEO0`yrZ5Hf86
zr%4OMrj?QfC{-Yi{3~66Glw(F6d?Xc=08pf7ae$;Sb*{cs91nX1w!rfuL=dCe<_=v
z%SQQd2P*S<0jd@tZBl7+)Y*FNS*hx$GC5wWQGl8SXi<Qi0-yl33Xooai~`gyK%D|S
zUVtYG@K^!r76@~_UV-QwO?niR7b^v<V8O51^$U<x0Hbqa(*h*_e>7bObQQ(de~?g=
zk^qmQw4b5^NqC_q5K8DJ^bS%J5E~$<*bt>y5CQ2RO^{*%0TDz5#fA+Pc-#B#LsXg_
z1*Lqy8NdHId*;mBw>x|1wz+fX&Yh%CGBj~%XXZ!@@R=q_B>q>=m6fJRG?SI)vTX6c
ze_P55w^GtY$q}J-5^adRB-$p0-rMnQWulsjcj&-)yCmAnn~a}HmTS&PHuk7v5}lG5
zP6Q^=If*Vw^h}~xQVeaJ19nZKTT+NTdrcYXo<t7`EdhRbTcRk5-bwUHVtY+78UMY7
zIPitI>YEg4A9$x<68+`#1OE5cz$6CA`r!ZF8Ir`%|J8@d3NuiRWF?95Nfal=io>X+
z*!?;#iP1^1MQBV?oN_xhi8?=YW5u7_yZ5mE#BfOx6xh3xIJY7;L82umsy8tSg348C
zVs%myce8g_is_hQd0!Iulbw?EqhfLrQ<8Wgi3LearSm_DSwun-(~_8;#1l!(Oya>L
z9!lboBpzj(NwLPkk50JScSaJs%lBgP<e^uxA4_85m15$G4E#7>zfyeh+1!Q;@}4Bc
zyQNX^cfEoaj`w!X6+WHB>?EE^;@KqTkja^IY;QW3mD%jvB=)asIZu`!Jl*3t0#+&W
z`6T8i!GJF9MAMhc^rJ=e<Z%(3{bCXeDGo_&PGV6Ki<4NL#F`{tN@7V8%aT|wvC8H9
zrAaXXAzhw0lD0zP=a-d<l|<vvN^71?tV-hL8fkRe#O}>~If=DNtWRP?Qs||A$MYDC
zuucjcwFFHR@+#rnn8YhmYPL>jyLuxh4%m{!Yiv1*tx0SnV<g2{obHL<e3;?N)NCZ*
z(XNFIOXl@P5^qu=ye5)#@r;QBCz`&+=P4J2lPFDMPZEccIGn`WN$gGH-6RfB+{VP;
zNs5GWG@keIbp}q<NbIK^)kv(q-2J^I4kkt8?@PX&F(&)3o<h|VQC;);eUQY5NqmyT
zr%4<kJ8jD(hkq;>Am<}e_Cl%L79zBXw)AI798KbLY5?X-T-|%qEm`yK5?Ky*mC8O;
zA@{2!zD~kS!lM39;+rItBvk7EB)*d(c037vV_T|I4jcrGK%StwOCm{(y(-SX;Pw6Q
zjcJN&d@>1x4IXLUBO{-jLtN35z<2E=oFq;q@jV4|XxvT0OTw23UsF^iNFtO>7)esL
z?cBn>qjHA{y_Q@lP7$$JiqGi%PABn05-$#n|Ckh~22(aE1$V6#%Nfkoc9xQoWIQ4M
zQE@(r3)GVe&MEjg$<v_lu!0#1eof-HBw8qFso?h{{zxKIK@|mmCUG%|(hAZP{FTJt
z)bL4MP2v(8<hzy2{Yy<aC~@nj<H;)jBys+H`<gw(x$5e&yla%-Bw`9mDPja9^68Es
zNW?rBBIym|=Ad*1Wfa_~pn`(33YP6gIR)hvVHB+nbBNXC#KaAX(41Z>_WA>{iV7+z
zz<uIyXR=deLe7jRgIi}P`1(pQuR+ZRR#i|<K|=+N6vP!&S5R9)9Yvh=RztzJA5^~o
zg-mW4tEr%tf}0fFtbnmA+p@(buV!i?>va{>Q*fIirvLT%FAwwjy&Gg@?acJLHL`C}
zaH|4V8pyKn-fY%ym%tqF+v5%eEN__Bx-mbhAXh<C1=)(2iR36~!fT$;R0(2L6F4Cr
zmSj|?R&S<=eKgG#F;Y_iX%vy8J~~jpm4ZAXLBS|uMnP)@Jrwj*&_+Rlg3g3fL0bjw
z6tq{+fp?Y*zKX6C(}hm;UZ@E1p-6UA(22l&B#uY#bTO;c<K4OvGs|P$6m(bcMMtr!
zLcoY^LPaj^rJzW`U<E@I^j6SEL4O4U6ns}tjB$Nsv;EkMKZ;Ja9dhML@xcFZ)h>@i
z$sh$v<!lb_9OyY;7^+~Hg5e4nc+d7n$S0}X_~b}Q-v%3nEjL=h7zOtzxL3hg1>^X<
zf{6;oE5ZupRidDn_~E*LgP0jrC-tdtX7-NXrC^eRyV>`5M7De`Opt{bht{Tg;ywlU
z6Zs0JDVVHaih`+%n8L8L#<(6+t7LPXg$P;e_pHvySOpI%c!<3&(}be*$Xv0TDb>Fn
z5%P$FM-{xQ;DCb16g;kAt%7w5o=`AT!4d^a6+Ee6mV$W-o>B0Wf~OTmZ3#PY?@zti
z0uMD{f9LS|M{?#WsByKJ5vrXQ<}S6;xvciABDStPCz=0w1@jfWpoj?_x0}uTwaEf`
z|3z6Yl;t8>E|%p>vMkw<&R#E5uw21v1#2h;gA)Au3I!__tWt!xgnU(ed#`3!i(@Bp
zm~!o93f<WZ?#ZG&lF!#G*r4Do1-le%RPc&|?FwE~g!R5j!Bz#^6ddW2yO|Fh?ei+d
z=Y<hlWJwn#S%R8}%AY6Vy{=&T>)4@Sr-C;mpS;QbrWH*Z)NgC)B2Lgg*p_j4hA<#^
zE7-$sDtJc`K1Qw((I9_YzS4>z#Qo#@6foeN`kC$TS1|fu@sL4n-&1gq45mO;@V<gW
z<X#0|Dmbj*0|g%|_(Z{n1XU4-mwiN@FUtAhL;-hFu=`wmr!4S%@J|(d#;!>$E&Z!7
zvrZnD9zIt@oWobyBbvQ5{wrz~%CdqJ3N8+fA7kZg?e8SJenU+{>28r|x4D2NVPmq&
z32W0%Dq>MAN$^gJorc9Ts*|fV1-b%Pfv3PwU@EW`IEqN*Zb{toKt0Z+Hk-ZJcjgXV
zvOLD95??`};70{NDF_ur3QjBdK@vKp;CnVGNBL9K<d2JdL3;+a;p~Ztr|3ZA9zDth
z{as(&RF{+SGsMFY!Q|%^T%aJRn6Bby1;0?SsK{6GtHPBU+^nLuir*Fdp`fyg3>AN}
z;|i`RxK7e*vA+m2;+N&8|5k8`YK_szmlE@p+yhg3|3k4-kV+eIMV41($)As=2FFyf
zW^sdx8&#zGWS3IWuv@IOiZoSjAW~6AMOj%VZxnWmm6LV4%gW0qd9#8lM6!}9oX-_i
zq0qiJ#2K}#ZpfKgdqk#+Dk`e0sG*{&iY@)()l|e)e5#1ECOPO(70@5Dw>V$hgPJO8
zskliM2&9ZRIwL#-6m!ns>!_%!;&v5xsHmr+zKUB^+^Pbq*sZ|W6<Q-aXq!^jK*epU
znBZ{Tipc+QZ|i4w3N~n{qLGRwDiSIhtH@Hp?Rd<_%ui$!_yHo-=YZqLQNd6ju9H&m
zb5*f5skw?3%?q2VShI3`GZjTwi&<gIEmSb0Z%b8V_iaV&JvoLyTdQcJVz`PCDhgDz
zRnbR9Ulr|Cv{%uKuk+vC=^a#bR7IRgp(;kP<1dO$I-N-U=MtSs>nC!%$g-;}yUDV<
zEPKeZr!4u{)!FGZmhN1R-YT9M6{iv-75b^@uVSc*VJZfw7)S!C7^0&1sz`G&NEN5g
zb5u2RyR%=!49Dx21~hqKeU%fxWzY=fHB!Z$DoRvLP%%oyXcc2rjFog@28^EvRwACq
zkp#2Fp}NH?9=cjQUKJDAw~EEdygapbqKdmz+^=G?DopE1D(+Tsk1FCw=@a920Dkvg
z$xCZ?w!V+J-P!ut+Bs8HOyw8bW;{TO{8_+h0y7IW+gU)Xn*+*&{E&*>D)y*&m`$lz
zPSU7&M8%^jUQn?>#bYWSSMh|3nUtL~StKH3HmGWd<R?|kQt=eUijK;W?VeUKo6lcP
z%#%zzhpcrdZ>|asi!=M($vWdjpHcCw{C5<Zl24vf@x1)W`g{`i192S8iz*h92UILo
zu}H;Y6)%x3?@Mp+em=*DJ`Wd=DExYhWaUjgMLx7M`>~9OeJe3*PvJ@xt5j@Kv024x
zB0<GE73;~;D%KM11LJhHQ4m_@3-e3}!l?KL6&qE&qGJDg5dch;c%|I{PD!|{^i|52
ziZ@jzN5xi>V_N#_D&A1V{BfI#I{)_EF3Z;lZTnvQxu$ck38%VK_X;CW#akrD?(|($
zFTV>rgfLIMM`So8y53f?SB0m-XKU0LDn3&2F=0^gu8Kn{4y!moe(sj`9x*&9t@$kB
zN<B!5RL;)5t>619j_l20<pUKT5;==wM<i4`e(lSHX~;I+rEBpMss$C_sW?vdUK#t0
z@}=Ty6-QNkuHp+)|G9#@mkTT9OId&VYBBGycgLg<eJjgvROH4*EZKi2|DI5BlGt9K
z?y5*i+G&ze6%{IZrZATa$8=?|)KwVNy#o`b3R?wdVU`M>L~yxm6PAu-r&Vu?ZRY<a
zQ4Casd|t&bDk6%%iZd$CQtn<y$(+iksDf0SmJI)+1ndX$f2Y{J?Q<z^ZU5}>6IrWv
zPGQ)GD|Z}5&v6PMAG<)c)>-U~c)Ur|y$55zs`!oCUd2TfJKv36o}WQm=y%D(e^3K=
z&V8zL?q4eI9UK2!#U)ZdCsXLa-$agrzt$JB{;!HFDlTaFS;JKo*9eA&do^5VA2qbl
z&{9Jw4W%{I(r}YT(--L)Dr?BlP)0*p4L4}GQA0Tm+}^^IcRDi=NE1S|=4$cYtHl*G
zv2IvVLnTe*?;_pFP79p^x*%v-WooFRA+DjihR5akzg0C<(}cmpeM3AcjM$*{c=Zj`
z&`^_~KAY99t4LSKqu*}UP+LQ`h8zubG}P5_tA+-e80qS1xJ5oZXHIr~4bU)Y-B`YL
zx}$LRGQHbv8gAEchlYllP_Pv9udWtTAvDs^SVQN>#E5XT%YZ2#bj@Oy#|y7`n<WKJ
zG$b@MC3qSt?hu@utAXqC;Z+e)z*$vu4bRrAM!#sA!(wb|r6EtlAPs|w5Dl$~3JqN~
zw9!zYp}mF<8ro_iq^F%GS|j%oZ^TccUh6_lcuQWIoZeXziv=AubkgvBe!nU~4ofom
zOFI+YG<4Tcq@lNl9-7!7-%~>`4d<_lI8q_?XT`36o=(z76M?LKHT2W)=Ce8Ufe(lV
z^IQFSU&E!VVt?O2(r9G6*Efjy%McAiHH_6TPQx$_!!?W~`814RSth5)VR6Fvx1WiV
zG)HL|tznFY{xhm)<P0R<I7j9vL%#uCSmQMmYnY&6B9YJ_#ubE-4PqsvS`879z~o4@
zoVRVnT_lhu1_%=9ZVgP@+2heB_i4Ca!vPKNX_%~GiiRZ`mTH));Q<YEHO$j6O~Z5z
zPiUB_;Xw@#X?Rq_V-m=RHO$a3{!I3NF*bj`m-~n&%<`Fsb03!sMv}d|J)O(<Z4#MJ
zYM7;AwuU(*ganVhnDNR0o=5q#CQhaNJ2QvgGroSZvB2IlB(#P_8WwAKPQ&vW7LprR
z#^!5sp=U(a0u4us(q7Oozm#y&zDW3+WsIyW*3GM2D=yP9hZEtKGz^)T$>EPTn|#`9
znTF*Wtu<`dutLL14I4GQqG1)0(?7mm!v+njHLTI_vL@n)){@Yz2iLtOa;2X7E`OcI
z@WT8Cn|p67C5}WV#}-^G-lPd*X|sk`Wv9NoKZkq$u%m!>^%f0VNtA1hBkj)eH3|Y{
zN5dWsZ;(ke>||eltweI~(8O3-vqs|KYsD`X4t$H^e>Q6ud8uRGSU;cT+Z3_IG174#
zF)U^O9Sz?cDB@`;i>?*#m)L%nh`ro_*8#24K@IO~P&B9-4rw^7;d2dNX!t<GhZ;U6
zClh-V;W6=#SRWeaeu}tXOcb#%pKAC_!%=d@${2M!Igsnx`ng*FXfe8gzSQuQhVL{S
z*YLH5V+2FPw^GK}UhhCllD#0CE!{4LiPx_cpU}jq-xLjU=1KOKxV<#EeAVv9d=VF<
zY0xQ#M63owgGpp+@TdvjgGGIHva(Hp2aCW(Qqa+GuyW~&^~*8qrmrC&u^LvV3^H+X
zNXqu@S9w7!;`2L1gwOXHPHXr{!x;@fkm9Svj+GyYcAl(PMy#W;!ZpoWXGQSFS#lty
zgPA4zCeHIK*NR#Bg+w7!>6ohHHx0j2o9Sq%;|~pgQmN{ws^g-Dzo?mYl-Kb$#hj{4
zN4k#78vbF&b(GSD_WPIGUW&{W4gs35a5z3*lNB!a@F!h5ob#5}#r$_xaW4Pmxd|%S
zII|pqWD8|<5pqyg2iIGf7y1SrH|nUUqmqsT<I||wD(Gl%dsXT&+98#7Tv!~-)P=@7
zcda->$J)8wKYXE}U_kC4THk6q;yUW;sHda4jv6{@>!_onrjA-VZqmi_C6!f~>&4UB
z3;!zXH|ywdFsJtQVt<9m9mI^^%wb+%2l!DPx9MU;xJAdUI{uxLc4c9A=5ZbOan6HZ
z7mRuzx9gZvCf<{xG%GjvdT}EijdcvtF<3{Ij%*$6bhOuzqoawAraGGG;QnaZX`ERn
zbmZ!SE=QI$q0VfsqlJz<9r=8*MxrHA&E3RzjcuiaW%H_uUuTNJy|s=uy3i6`3iFAL
z0v&C21{*Z}YF8mq$FhTtLLFUnbk)&O7o$KY9i4R{gJgJGbQL?r=yc*Iy6NbyqpyyB
zl8!xeMwfNxV?BxXH3htS=_r!*-m>gN*!CCle$VHJ^_Q=3ta<0b+yOcU>KOA%F88&~
zZQP&E<RLnS>KLbEypCZyhU*xiV<ho;e>%<7tCh=ryfSvDj!`<s>SBLA2{D?4tCe6b
zg)zDqBY5?_UL5~GxEG3bl<2ry$2~eGkb*2n#Tj9EmySt;L|lEJm5E9Jd#mj2iF<Xi
zIKpia_vtt>X&f1h&)m;$9?zSsgAcIr2Xsu+@s^HVI;QJ*P{$G-OLaV?<6#}o>3Ckp
z3>}Y<X>~lQgAs}U4vRm^mUTSN{<arGJO`<v6Y4#oi&gdg_a+`47@tM9)bX?q{~w{N
zXG<*2(}j^dN5@=UI2kAuv;$drMi&uiyq?v?vKMEy^L4zSW08)<x^R3k_s#<HQmXcg
zy3oT5<?9^d`iyG&l8)mmV~Ylfbxh%;@^Y5xSgvEUj#qW8(6Lg-dL0|c+jIfxSgm7?
z4u<8ERaSS5y{uy$nWS|Qod#>kgz?1FXL>Wl@xiy!c?c|hwi|W4B6;Ti>%th=M83V6
z$;uYO%+tQuFW%Ad-JB|9#qF}2L)+wD=p(!hZ|HcFJ<_pL2akRr<h;n?uXZh@2$S(>
zLG9MDhyUvMTF2Wu_UiaR$A?6ej(s}b*KtV4k9ussj(5p>I{Mrx5YE+#_t-2$XR~q+
zQa`LqEVy1gw>Y2DM7}+&i-|e4-^Q1Q9U%gBe5&I!9UoJb^-E)H41J!T=)xRoc|3<l
zY;dx9lzo?)<a61DK6>^S6yZkQ`z{iv-BIq2>G+27r9;>8E&EH+)1l~~hX3g0N?iUp
zPN5i)bwbB2jq^`ZZJue*3USU5P?i1KERN?UiVO-D!P9Y?+Mp<IQN^uKbL6|WjsfyC
zaF_J0pYU`raTzaPNASOTC@T@gnM6EOz<*E4JFNd85QTF(&dV-5GNZ{)vX5tYzi&RT
zvpO#QlEDfQ_+ypc7j$geng7Xe;+Xqisr<?OJ|6P%JC#3?X5(WUe-dM)zKP#V{6*!j
z<BEZ+1};(gQym$2%)md?hdNptXk*}tj;qwJ25vTRO~-W|HyF6lK+HfX18D}*4TMEi
zO0&$(VB8&J;AtQ+^CwNX_G@Bg43ss5)R!|*-T=ceR#)xFBe4IdIiP}piUz71s9~Uz
zfyxG|7^rH9aVNvTCm#vRdDGHnnFd(WzN%(m%XN|BIBwvH3fYyivK!RNJ~%0-rXixx
zYZ+qEmLfp&hPta&r+&2!)G^T1Kr;h%4b(Gu_6iyq$Q@p(z9Hgf8}RF2X2ZbY>&3Si
zXfU|<t+HP4Snt~;%(ol3gKrH=eD-ve1^<*`h2uNd8X6nOV#n$KG0?<7!a$B8w*2$@
z=-V958EFOmeOI?!Lx}d4^{ty5Xknn0fjmRRi!zx*O9MQMmK!Dbz`zEvd_(w@)(?!6
z|Cyksz(89ABMF0nb_UuT7+_!^UolW<pp${l2JV@Z#`C_ZyE+;oa+q4Eiy{2d{S5S%
zuyr-i%|LepJq++v7yY`(yUVMm{I{2ZB3a>`-UR-C^}e!lIXjI4LhF(Gr`eS5gA5F2
z;|7Ks7-9%_=uiWbd&I?XuZzvspIz+E^|%oR{!C<YTRr<l!5L*>w1K+`s(~>E#u}Jl
zV4{I>2F4r0x0A2erpDk#1F}c4ff9*x*2_;FGHth5)4a>TBr?fF;rW@I)tj<*uYvmv
zOfxXu!2N`Q_%sleWK!i$G4OMR?n@U8n`&S|X8!r>#UF1O!GL6LpLx*0Lwu}e*@q3_
z%d*tc&z@~Vi)Dr(M%zaW2HFX`w-x8kWGw?<8Ti`3Oao6ESZ83pfmsHgVzUNbH1M>6
z*#_p3nGG=n-@Q#_T%1D+8e$;scyT=a@Xs1}&cJ*FFOUO^a;PDR=jTb*&wD+)ERQGq
z@FyQmi<K-iu*kr211k(HHt>>xr3RK6LT@iIgw@9d)>D1+vbPQW>v&u86<@3!D`DjS
zN&~A6tTC{PO#4oOzD%I;Wyx}UmoM_kwUU~5?#tUi=`iq-fsYNmLV+@{&A@g8n|ZTF
z+N%ayZWP*;_9rp9#lTi6hNLXxF}@uhf6c&K26oBTUN`WDfwip@HQpHTCWZHn0Xt;5
z(?HGEiC;f$%YN~+pxv?ydknm7V6TC93=vwuT{HU(>^E>w{-jC9sqwo84oK9!XNYm(
z)#bvNqz-xCz#(?czy}6CG;qWa>Ye-4xI^K_a(Qfu8_9VLD8u+aA%`3If?qW7nSrAQ
zG8d$ME>V#mD>-*wL`#xasTtPxicczAou_@#>wC<=HwL~paN5AP2EH?(8!!wUH*kWC
zVL&0n)3Lw0>PaexUU7;82Psubu14OTlty&XjG>)L6W26g83?Eb4cG=8ew~UmvmE7!
zV9Nt>#Q5m3vx$74lpWBwC{_}Yg`_NS%0LGZ5l*U|lG=|N><1!*Ty5YN13wu!W8l1j
z3kJ?omwqfJR_6?cc8heiBt7wPuMB@;N|Tj?<G&jCjq+&VA_<N7@6_1E)&4NB;oTSs
z#K<>lp1%zIZHR?4W@ETSZU1SnZky6CO9*S{=KsULh>e<s+^<yrblZusl4}O8Q|?Sm
zHW4#X%0vqjElrd*k!GT{i8?0IO_VWF#Y9yTWlfYbQPD&t6B$MEXM4xXo4CQmH(STt
zXbQ`gFi<oq@Bt|xl}(WiFH@Eorm&xXY$?*zP)Ld4Y9`_)ZZdJRiRvb5n4q;;%S25+
z$$b;d*2sglcjSLDN}MLi4D&<_m!G)o!t;abny6=@p@~K&>YIRx+f3X}*p9|-F>$LY
z@}7}Qlp0<QO!S?T{>z3Kzf0uYVG0ycF1W_j*hH3zrY4%1GP=e@!bGkKZhguz(Zs|*
z>vDKq9G*R}Og5cqGh-#}V@(baMdCz;=B7{)i(@6NOyrpuY+{Isd=srrbT`q%L>m(Y
zCOVtwVxp~ycBWXN>nPvi%5QrDTv*t_#A~sVLRrrEH=Fej-zn^5;>e<A<m#>_W@nV6
z`?s5kuVN+C7|eoBRP;2_%ftW^15Ff}=xw5(iT=dKcfyNH{^`SBo7h!JOcQdtiW2}g
z-I>QaPY_r&B!lQ3WQu5Wn#V-%P!q#Uj59Ib#BdWMOpGxx*2G8?+g6AeywRpmt#_Ij
zWr{&?@Mw`ch@%PH;q=_!h@yQWadEMU5)%_m+-2fGztVk})9ElK$o|r0F^QB~9J|}Z
zJtpStY0C!L$i0$t*v@?t_&Y`>_PkXv#l%z-pPKm0!~-U#5jiGaH!<DBgC?FPPE0&x
z;$ahynRwj93=?$zSj%INn22H}<g`c0x}0t-YDyeFVPd9<Cr!*U#n_rU86$qUrjWUD
z1oxyoCA-E$0SL?-6LU>GZ(_bFk|xbFMa26vq~oW(2;sA)FlY~DlzYw;juC2)7fdWL
z@uG=^1oC;23yzy)Z$2ULPiF-?xQKw6c*(>Pasm}g&BPiLOJ#kTESJl2g)CRfa+NIk
z<Z7~Ctb~=9O{|qS*U9o#S+1Am1```)<rNc~WQA{SmKR^__-5`Fd6V_6va(H<+yD2#
z8z$Z~v7ek^Vh4L?VvmWpO}xeW@c1qhyUEWZvf6hPNnNPT*so)UTkoZ?km2u1-$y}9
z=5Wg=#hHTU?iTTx2TZ(Y;sX;OnpiV1e$d4GCJvE&%qkqqAH6u6w#{MrlXp^4<`H(2
zzF$)uaKLYU*DU*EQ_Q13p?(-tktupOn?7pda}&Oaz{D5S4<wlhg%V-nYZJ#!oG@{W
zipa#bCccx6&#IZrEe0gV3;&AQ^iO|fbBiw15!YQFW0=QDw$`!<xA3TBKNGeI$AnHw
z4M;Pn3@eFqC#l3tHn^zZWTQgMM4!fmthlD|W_Tu(fyAh$sPsz9%mX1A&%{qA&X`D<
zIA!9ri64lHm9g&$bKUYx1=DAzFs|r>;u71BR0W4(>yEZ2Bb_yI&cp>1Kl5|r)6TPB
zJaWBe8h2kdoL=w?x$#gfMp8Y+y}dI;?xWwyocxM~Qx^U-aghq#!W0XCnfRLu+(Ii0
zmrPuy-nLNH!avk_RO1%PTDU?rYvMZlXyF=FmfSHEJ0QGU4@@eepQq*UN~J86wuEP%
zYqA75&BFI{tEXFFa9Wj8CFLxXw{W9{3KsSbjNf44gP!sK_Cy>#CY%6_ud8UGl7-3^
zGGsgS#bsJB)+Tte^VyPWXKv_IuxV&D3vmm#S-9Oobqh5t)U{C0LQM+{Jif^iNtw9X
zRm(!1S^Y0vOWbS;6+{lH%{vyJA1hL?T)9>FXNc1J7GMdsxy2F#O#=(H=4Rh2%i&{1
zpcmIB?y%6%Lc&6>g+>+{Tgb75%ZTlePqHkL)8O1AdD#};dmy(}tHLIhI7yQ%&8RaX
zic<^@98E0|`q<1ua|>Nw=+i=$L(~DR=UK?NFwnvv3#~1*vCzvxk%a;aZ7p=P(8)qO
z3+*j*u)v(*R8Y6PEf!w?T{5815(2{doyk~dwrQb<g`O6=S|S*!yCvpaZJK6xBXX{0
zjp~-o6B7A6*I9U<i|<FeWcRkv$3i~~{VjYwEZ*0`$YGhZ>bXWhyzTE;dw>O=iAD{^
zuautOcCdvZ7RFmBwlLJfFbl&ij37>GrZMjv*{|txRNxT6Pg@uz0hp1IV{Yt4u-V{f
z3u7#CK>1i%j+5nr#u>a*Vqt=XdoA2&VWNe*EZlA39t(`EC7Vr>1e$eEZf<cQam%!C
z1^x4=peR=K=H1U`E0tsWB;`~K4_Me?VW)*@7N%R6Z{Y<C4_bK0!Ym6<S$NpO3=5B0
zc-+Dx7MOPXQL+=mGo}l_&1(&M6HAm+iY=X2Pgvrl$eE;|h0l6*Yn0!!NvV>jNo9*O
zSv+fDj)l3b^p4MyKr$4No#p0JDiA7!=PWTsaHZyXS?OP@gm7Li%w1sNMRwo9D;5@7
zSY%<Pg;f?7TX@OB5^}OG&UK<e!Xs2@WG<yhp2=EfF)F6datojK%v~W%{$zbM1<k@b
z3+pMZ*V?>H{;8Ru;NQ46XDyL)G>4U!dx#ylTkmVLfr4h{*SRyX$--s}+bz6i;Z=Tj
za{5*a+bnF6d^NFD2{UL>E|^03=~5-sTCZDpgMe93Tg9n@2o-zE`(O7P_jBteZ;{O`
z93{h0KrHOB@Ghmp!rK&i3;QhWC&GCy^YPd_B*DrU$x6LMKVF9>8QWJ0Yy3S62Q3_?
za<K3|X_ry%5G8bRjFWDT6zo2Y=c0+3A5vxq#y_!egh=Cl*fTvpvhcBm)ul>!E&n3>
zQz`W%;%96mYRt+PB#niWyl>$vvbu$DEquqm^SHMLv11m#A#q*d+2%=?=cjh1E<H{H
zUCd}8chjGskp7)r^F+47zFV*@I2JUCCDVdM6)`BGQ&|y>$(-qOH#fV+rDP)KyCBDv
zJQi38En)k47JN$_aZ4Fw84<R)*m&~f_aa!4>E^z-aGH{3V}y+#Ec{3$*to^UPZrKt
zC}pFxjk6ZcS@@eu+roJZ7cBfi#ctteiVRh8x3u5+Ela42fj8$Y`#1MDDU1~SqRxf8
zOO=p0FG`;G_uwz7o%rbyRfVy4nVe?fDpkFNmPfSzOQs^-<HFO$lAXP7fsXW;Ey|XC
zy7H|f&x@t)G#lwQs@aI!C}X3njY>8u+bCzFyp0=d+{k*DJhsC|2*b&n#l{>0S;0m{
zn+LDl`FW|5iA(O}n44jviY;6;)K{4{z8{^~@mQiN+nLaob7y|Bx{Vq(>e{Ghqo$2o
zHg2|2+ZJQcO}4=EE0aYsKpvx3hfv8iuYR4IJToxw#DfX?7V6s~p9vGoQ&I@Ytu`9i
zD74Yh#%(rkx6#~23mbRXXlSE}jf9OxHX7T=wvl7w%i|&oB|DO3qwn|x9id!-qMm&7
zM-kUSWy0g+t{;r$65t&<O$im<Zrer92lvmcmNr`1D6rAiMxKp)8?9}$vBB9r0j6EV
zk%dg_lq#Xakl?jr*ZQZmx6y(8AQv?*mMZx#VLKVDla0<cdfVt@ql=BMHoDvBVGF@w
zfDK(t-E4flA~9{`*e(@r>S>GZGrepv9?>by4;9&9qL}AVuCI-LHU`-kY@@#|R)h!I
z!n7DbP-`YGov2BWIIJ)$@(>%#Hl+=<G0X--1W8JQO-Km2eI#e3jXT+<jpuEQvN77m
zgEk(rF~-JN8~50_*Ty&-<84f^F_9dSQLdP@uux*-%}(Rk8ixbQ^<6e5*|?kVG>Fk5
zT(NWs5qsp8JR+IGa-WU+Z9HIOnvKaerr6jxsM1tPXzrCJK^X-~fXO_~>cywq;xxd5
zA#vWR{Y|BZZOkABY|OIph>b^WJYn<jK|E#)`-<lQJ<gkVjU@~R_O|AXlBPwqL2)`Z
zpS(N$DH~7Qm}6tEjnj{%&9;SU$Kj7_E`K*KoM#JP^yJayIE#5k0`sg5MmV<{)HkD`
z#e5qt*jPtCx3R#+i$tT1<u(@DSY+cR8%t~~X1#`36dO29L|pS2j-|GU=54kirbN{_
z6Co{D*jQ;}m5tSsOw$gc+wxeY%yN8Sjg8~gst{4^>C2?%P1$Q@`Px5O8;Bws2W-4&
z;}sj5Z0xb|wvEj;UbV4>eYb^!nmUl`=;>0~+lc(A1AlJ2tI2j7ui3&F<N5X6s`I)H
zmT$=NO<C@+u~Sywk|qD$B`dpS*`RdEUK{V&*hfz89Vge3VW`Y`2;F|(mz((BwZ%Hi
zj>mc&wDG=;4{UsB;}E5CP3*8lGGEzXHQsou$iYs`A0gd)#=pI-I(d>Ud}8BMlE%es
z7oXWU%HBD6+rj5HzMxz?=;+`}8(-PDX5%^~!p1Qhr>IzLd_z9Bp|gWFz9Rx{ByA`*
zPLL>j(@&CDhr}mtZ@Z&~2&Lu`PQ<NhL*rY+g&p`xlfH!EOGa3c&20EK0vomshg9C0
z#=W90)rFh~aq~`%efb{s$v&YyLK~5d6h)&_IYxJX`DxoyN;Z+hNg_#bn!;}5cN>4$
z_>s!r#yK13ZIS!p4E4W_>HG1|JmJ@3Q{?jtHh#A88`aTXVdl-~(E1lrmieD;;qZAg
zR~+z7cLeYJNiMZ<$;M@3qi38uO8&C(H~Igv*cZ&!M$H}YkBxtAT(NPL;?J}IYjaPp
z%sCu1ZBtqpFhn@15OYw<K|=?P9F%sD<{<8%x`T8FWgKKWsN#S}7t#GvmJf7G>$WJX
zoP+WXIQzT75q8myvaBG>in6RE%gVCMkR=C1K3VELv7}PfK{ZDV`s{VaYr_a?4F@$H
z-0Gl#BUY1ZIk?FIWr2TP9M^*qbhCrnj<A!f)=SiJP}lkYlbY)}s4wgI-<?}z<?q70
z+Z^2P2>p47BX-cRDZb9ohz)!5=kzXW>>$fQo`ZY`*$#3XBpl>AXySnDo|If>qNXzB
zD@`3VbA%1q%0Y9YMP@~KKkC=QK}$y%=iDCnr_<z<NF+`tZ?tyM#z9*L?Hm+1BD2Ts
zD`UT|jO{32_$BRp6YU*wwo3<oYhI%Hfz}kyS=VwqIq2+QmV>7pbaBwt!FUJ74!Sw$
z?qINkAr5*t=;@%pg8>eDIVf__j}p<L%8^)pZwKG@$)$0%{@8#%4*ELGu|I&<++zcH
zl+urF`aLqF(m+Q{atAp=D-vv8^bQSmFwDVd2V)%JHyh3#IT+<&1c9%a7|EZdOSpo=
zCy9zO3u05!#7<SZ<7jb>buf;caF3W5jB6xLt}Jmd!NL6wCOeqO2FWCZ#1Ye2W<i<c
zh}@nZz2Bs4-Z19GW1`M`9o**#FEK4`<{sfErZ|}D;9&<d9N~v~z!4#)(;P4cp6H!U
z@n;mMgNGdKJ3lBjF`t77gPb2>ryM-NrW`ybX+(0LI$ZF$gH2sqXJ2o_lKp+s5fe!U
znGaQ4_dV0$X$P|%yzF4DgE<c7I#@^u9n5p^jDzPKJkK_dq)`%|b;N-<1n-WAbLJD(
zz2Yx8*s~QUS~g|u@d8J9hhCK5<;D$SV=+<fV7Y@8q_u;k4wgBfhG*<6jus4RKbT-J
zkus%trGr)ESOTyq#?2-impNB@WpM$aT|*d9?rcVtbq>}$*zVvp2OAu0BtJXYLM9m)
zf5pLOqHA8}Ci!(Dr*ngx;hhBEZk2bq_`+HFHp!?NUeDgAvR`-bhJzi1*}<C&(|Rn&
zo1~gNKjop)C68~fKRk@T<zSb5<;Bv%?YY~*x~bLs{@Q!5gLkMOTvT_l&%u5NKREc&
z!MhY&2VXll=HNXC2Ps4jK5_8AgF_AuJNUp6u2(KCamsKL;#{iu(7_Q0A5mDm0fd&S
zZ~HsKNy5?LQwN_p_=2={a8wEld+|BDERBbSUkbB|D*Y=7VJ*49LH_xMbRn4>1P;D)
zaNL3BKzDG0GNR)oNiP)<w-4-Pn2iHtc=t8+vQ^m#vCY&ph69t&IPj<zMr7?SU1CWo
zupKy#h%2K3z^DKw2c~&L6RyU)T^Y6%I*1&6@8Gl}f?hcPN|9YDv-5<0BQwybxUgJ=
zI&e5B7#aVG%EUp;MJX3&9h`IUmxI5lDEPXA-yHnT)_8EwM*K{LvnIx|`xghlQYtqm
zI8v~rhWx|9MF(pbjmbPG{C8!HAKH9XB>TPO;4-o8;EL=o*SP<o4p}JL2~HJXb#TqW
zbw^}B*t1ZWe7v|Jf>|`#LTMLiE-JdH<RaZg85iYU+~A_DD+EDo0ds{CK3ZBhTA3C3
zMpt;uD!3reu(Kp0;bFu@WfvJPs<^1?3d1kc6&?BLeUQVcWavWYp#N+Ccr{lD4&%FO
zxTxu(zl#AbYPq<{MKiwQ;$|1MT{Lvj$VD9&bzR)*qJaxW1=Mo^7q_^m?_%$kI~y)Y
zqpyaoeR8RYJ>qoxHW#<MxWg4Hn!EY9fJj|oNEX^PBhlDJmWzaoT$jg(BgYkU4W{p4
z@0z$`sQP8sh{-1^Q=`6=QM&sIAw*4G81>uIH`u~OOBY>Sbam0nMV^Z`E(-XeWGvrB
zYga4{|5LhzL^;yE9h++FqMeJ*d}WBR2LHHEOtsp(=-{G|H+za>ojbbd<boBhi*W&n
zvB!Mow_!QmTy%HQ$3<TkJzVs3QRJexi(amnZ&Ho?xHz|X>bT6b5+<l5?~w{WpUdhe
z$wall&rMq@vbYR%G04STE+&y8E{3=m?P83Jp)Q8G7)jtsL|(hoN4UaXqQa+IW@bo&
z#FJ02yn#`!NH9nWGH`vYi*YVWTug9r;Pv$JlFG$I>7DsJ*NMW&cPZnIXQz!D7oW)Q
z$`o67yST^2gDxI&aj%Q}TugB>)y4g!^2!)#I+;*?I)ELgVx%T~K;EC`V!A7i3MB(~
zt22NlM{@%9u!|Wko^&zG6)B(}aq*~&$6VoHX`NQWY5U`{&Y-L(T+DQZ_l$Vpbs;?~
zr(U(E`1;l~rp6`HQs>NZG1tWl9u|0*$Ip@3Jk;~>tc&Md{OIB*7tgzx@8UZb$N8j-
z1uniI6<oaNVxfyAE|$7jM1tN{dogk7f(%JJaEjNOV+1o!vtP?d!C~>$d~8DH<*raN
zD_pE}v5K^KC6@ykvCRl`re|Lxneb&7YhA2!vEIdQ7kgZ6aIw+FTjY68jrj=|uaVaB
z=VljMSlOJDTRr<#7ai;0$Y*$MmH%#Yv0YXMq?PdI8?yeUEUT8!{_n{hl%}kVo$}^8
zb;ZqHvi|zhaVm$mT^w}5MX0?l-l6`dia48fK$iPu$)E3%1e-)u)qC<z?zjxr-*<7y
z#bFm8xH!reFNu|`4_$oX;#1k+5m|mD%a3I_vP(9f`HXnZ6ct`{=Ck}<{@W!Z`zuyl
zeB<I<7sp(&21HAbgUfRjdXdC5GWlK3q&V|E;o>Bb>B4i7bfLH~U05zuVlp$0W{f6f
zpDvNTPxRF(<5VnD2lcDo`i_@!!Y9(W0ByV2mMPW^9T%%tB-;Ga)^`z*>s*|25xOXs
zjPanZ$i=@u4`w@uI*KD@zn3yd*9xVQAf2Y9Jly05SyG3bq4KA8^>BlSb1u%i_{+uL
zE-twE*~OnOF1q-IfVuDw;CC0lxwt#6gf=s|D7{ncOC}s<cbM9xs)&H1lHqa#FV3?r
zxw!1&IyJM0e+ZI`_G@B{ZJ@fi!Zvf-GIIN>i)$nVEvPZg=$YpRhf*F&dr0$;?ty21
z@k2x)ty#_%%Xlc~3E<1hl9f6AvdP;&?Z%BBDtM^wp@xTw9x8dr@Q}$y7_rbRUYUO_
z7gp2fU*~c-tKuQ|rnI<+s-AE|v7KtNL1s?o5J>^A>7kZ~+8*k7Le<>lp?t6S&7Kew
zp3=)PcY0b0SLGT!P<gam=&A1k9`5uo%EK)lZuQX9LoW{vJly7?wMWwew|lt5LrV{>
zJT&ys$P;?Lg(viUW4>D^M}KZO#Xrjf%WPTZ$g+tn6SB;eWm8!;lVx*R{<%ve<7&`*
zSe_?VOY>#3e=Mv<a!}*3*99Khdd%p^Y*%RKiSUy49=Ah^Xu#L|<#dqG&rK^?omN7q
zI(g_!@K(l1)^U@%v%g(Dp*g$CvYUtQveHAAbS3exA`iVi4E8X@Lmv-)J@of5KsL(<
z`gy`?CHBZ613eK_#QqNQaBxo{CyB(s$^H35dEdiu4<kGj9Kti>#W+sEp~cSSrzu0@
zBPISH9iABNVT^|dJWTU2*26dtlRVt*VZ4W84--60^uV}8dO1o+$MrFa07*PzK%B<R
zU7px;${8qm?;a2Ldbr=iWDirnz<r*Gz2Tw*_gndw^O>kEYhv0I{^c=bI(KJUNzV&o
z2<mhX4|<sGVUCA~JUr~-2@f+p%pj|Hcw92fqwGS>MASfhw@mY#$2_o{);=e8e<2q!
zpY$-x!&4rf_Jq~ZZ`V*lSZ2G3F0MN#n;iIQTFG20e-F=4?Rz4ehVCXJjbRwid3fH#
zd{1nH<-<e~qcq9n99v(h)b>RW3n?Q$%KKR4VX=pgJ$&NfB@au;>K=A@Sn6S!hjkv-
zdsyyag@@H1)<~kP^svek(dG;gWt%iC>4!`XufnCnmx=sW)3!A4y_O<&e|0j(1`iuO
zY$d;Wc*VmeekG$c_nOV^*L^eTGEZ#Hc-6xe!m~a>>E^J)y-V9YVbZ+r;SI?fuX(6h
zI)hjxIXIwmcw+Z=dU%WS=;1vNyFBdn@V1A&9`=x$?+Gsr_i-=}GY4N<<J_(Dj)#37
zjuUCOCH52Z%@YeYRe9GF+ZIlxl^pc&zK0JyeCXj2rC^JQS~)Dg&M$JG1(AP*NT$YU
zo<aMZqwu2KJnC2u{hxaH%)<o_KYKXp;d2k)@k10G4_}hUJbdHfD-T~wS$=*+)p4cz
z6K|9t_nmA`XP9e+nFGJ|K<6sye!{~^);*l{kR-!wP2-k_|MZgLK_v{gWN99B4+iO8
zAuEumGi9AWEf2N_hX|B+JXw~nP?vx4@(E#|=6^NL3guhGc|?BpaLU8?9!`7sN!~9r
zspbzJex#s1P_tT@tVX}I>EbkAb-r<rxiuFxOXoJda~`<4_&il;LlNCXIUU}8@GtD3
zhkrd>@$j36-#uLNaM{Bj<gprQe|h*@V&G2?7b*MW6R`>{M%pc3ypY9+(}8<LW`4HA
zxU7H3B$LyL3Jw8RJzVop%13D**Qrt##;9pyzHl*ZmieQ;swF1cX+E};E1m9(?fm@7
zrpovz>toMry?9NXop*ze8+~-}QRt(BkBUBS_0hmbB_EZ2)beqYj|?A~KC1hu;iHO=
zs(fHgjLbtSSMx!eoEq$(w34_Fmh5#+UueiFJH>hd|Dx8q*+*?3^?kq>87=DgsOzJi
zkC%6MWikXp)xLLEf=3SIE*nlTZ}G)aKAE9u=eD=`xZOvNk0w6u@X^pmV;@;Q8u`N6
z%U}S?7d>G73TG%S7|-vE#dqp+2EHbI<oamsqYWEe9wYP9PH5_*nJ@gD%?bS3tQN9l
zrKPO2@{uPiwezy`eJoxO<6nfZz(;!@)e;$PeKFj$^Mxe#DczAJ1+Z#*Nk<=@e2nD3
zK05p8;-im`zCOD8=;ot`kDfld`(iKW#S@j85P;LAF-wH&wU;l>ohkB#KZh$&y?rsX
zJ!V#>0QU3I-^UOiLrI;QqO-Nu#|B972KpG}V=!@kxz*f1b6GMe^e|rxh{Ju1kd2sX
zPMJ@}6IwRNV}nNd813V3ANTke<72Fk@ji-WN5=VLSfS2mxHv&7@xjnF`pS5i;{+cQ
zeca_^5+OmHOMZ->WIhLm-!KmCULW`QnCxSU4?2SG_r=)3&rSGRWX;Vw9GlAS-(C3u
z3G?oX!do?s+%>Y@bXk(yANDcB$9EBqM|gxt@X<U(ix7|bc${zs7#rXTA2WUY#=vPG
zPx_eU<1HV%$N)Z`_OaB*GUCw393L<ESm0x>k9j_x^YOfoXMC}G@~jVr^|mQ&P5s76
z4F_c+)1RL)-xt{w87ItMzvyEjDemJXU#!b4^1+?#lsKy5rs*Y1*wpwqlV@&zFr8~d
zT(Vj2V+AFSBIaYIk5xW4`gq01Y9DKSto5-@;`U`(lDPatixrjDOBzu>uvvO0H~1nL
zn7jKovA@e>n|<Lfqg_F<Vxl36&sHDXe7xynhy070b~_=QoKCiUjZOJ@!v|?WqVP&7
zg*&Bq(rjR_&twWJ?54c?a0rHvw|(sO@u80+6agRme7x`D5E*rE+J5rqinRA6d%x@B
z0BNzRX_bz-KlzOh60xrdZAR)J_Q6qu^7R3^x^B^q)?$;?>a*D&`S_T9@$s3DPpDPa
zR|yW{_kqF=;ncWelZ>N23?HVC&nbX|5?@djD5^fb_QhDE`B+k^3M<EaeB<L=vV@P5
zK9bZJ^%6hUu6CT=r0f^w?46y*BR1IC2@7L<UXib>vgA+ZXVCvw|1Yx{eZ@qzCHrN|
zl6>p=@O}K?<3}HXkI+ZT$0<@==2DI%&rn5>lfS1Riv#k~PE#eG&06$$5B7-XyZz+j
z3_nCc^KsV4IUfvb<m8tkeBKu^#uwzb+U!l|3fj*;zJD^8l~u#zJo}Ogikk}m@bRaQ
z+XCDk;G&PeC=mfF2l(5^B_G$Q*nM24fcv;Yocs9K7alOq)47aDa*zbfMMlJOZo+0`
z0ZIiZ7odCqKQpa#fKL75WdfuHLR0ah=>bOOi*O*aZrOldwHQsN8v<eDRR~Zqz>R@0
zs0u!>#p5J6#Bl0OE@k9TMu5x!HwUO4ph|$M0jdY65ujRt!}|~q1jmv$=$WB7vxS;$
zGZ0GbrT{Hx3%9>}R?Oyj9VqHsCqP~K?=1o91*jhYfk+&5uxlarSoM*449MG55x25O
zBjXJM5e?3FFSf6AM}UR_dIabhpizLv0dfO0<?8{m1LOo~5@6~+afTp$^|cy^Skpv+
zRV9@eR!ZI&T`9j=fab(ZfX)G05WE2S0a^!Q+-wzyL7`-S*SrAD9!~F-E|xgk1VY<$
zr2Eg<E(pZBOxpnMWQFzi0XoQfp)5Pfvcn^-?%I;*5}<2<?g2i}EXU<|BE&3})h)oN
zqcKv1xaCKC1t<zIIKYqqy#w?KFd)D{c5`-G-$2+@$4+PV3&cFDe*l_W+}_Ue^e<%x
z1!BhmXSKBY*z(W-!vc&Ti37n})DOdnpV?_tblY}~;n=}Me0TEGfp9pmo9x=?fO~do
zw;GZ*F2HyK8Q_Zm#Q{nJycA$bfC&L626&V`3UF6|NdYDYm=fS_emcN?0qzfQZ@``P
z85}#f07nXvYTPwEW>T6Ml#Ak113VDm!2k~hpn*3n5Q}uvCH3E3k~r5@Soj<r9u6=g
zz$3ioiZfh>{5+UF;&r5J?&DPc0cHo76JTb5Cj&ec;OPJisHXdrk({#v@m-1}Cnk5y
z7AY^%XQs^!FfYKf0iFwl(w^s+eI^h~(nR~N-@88_U_K!kpC+PTwEPz&iD|g9kp%%>
zBunt{Us*1aC4VlK74Ok%O9LzmuqVLV0hR|?5#aRzZx9}`S%9?x)&*D{2oK?!0540v
z+7uOES})f7D6^#a`T!dOVL@$_g8AKcu`hr@zpn(slp>#RVw>Cu%y$DZTi+tft+L!E
z%k8q{U#|t|)v^>TZwA;A;H?0=D3UwUcaoEf;>}WJ`9(HPUfLai8IX7+F8j-6<-L3$
zzy|?746rZ2e&R5|`vKmij1P%(eB=q*)R_kYq37Qtq02U7g?kfdyd4U}K}d%s5&LiL
zIrHJfkpLf&mjZki;A8UhQG6n`%BFH18U9V2Q+9IR63+0W<m44qd1wC2!Y>1SMST^b
ze2A|D919QyNCo(Yq@i{Spa=La!0`Y{evxbz;ADV7gX7e7jA7#t*=&edL10|R{mX^6
zQ3EkZ(X288m;oH3SIUtUz-C9{LNy&8n|JHF)|)rB<ivs4*fyY&N7Ydy;Rgr;grw<*
zIb0e@KGXE)O}VE6d>`Okfb#)PQws(7DZrTkKax?`rc>!L$wvF$EvOvG|7R(8AB#E5
z)(b_wrgXg!;Abkv0DlH(-zDuAO3kwLU#VCICAjR%SAHY8&u0Bj(I^txBPp{Nsrdt3
zlA!)YOdiQ8NiU)Dxh(Y(yY>%J!B9h4UXkV10M`Osr;?W`E7L;6LQ&^qr9zbcU!8Z-
zL-B4IS@LJu5NGy_J2!;5F+}|k2vH$K#Sqm))Cf^2MCA}wLR96y3t}0eFgY?qOgP$v
z3!Tm8i*WR6A@eDS@JqVv7>LW(XbDhL)eKQ9#7!Y?4#7wRno>^{#h-W~Eu5cGJ4BsO
zESu7>VdQpQe&twxy--9UPD*dW@|F;{hG-ljD@213w}rSp#2q1y?hppg(s}7=pNLFZ
zN6y3=hG-OultGkSij_zx8X_k|B1Eo)mP-{)*vOjLzD8m}s%eO3A<`?QvCe^yvsdDl
zr^L1l(Td%SP%T1Ui2M+%LaYwaIz*cg_k_4NL_vtQA%=xqA3?hi?L+hl(Kkeg5QQOn
zgy<Oxne7;&bBJnR3U2H~97-#<ONg$a7(`~8=oX@T2rfJkdwDCHa8lnZL=n-oK1OKi
zxoTN)aBulApQruSFGT+kLqZG<F@V&3KNgLN4-D~SdI?!*ko+j094ud1RMek@V3Hg*
zHJWG2gcup3I7A8m4KXUjm=I$_oETeWG*OW%`@_xgzPb4g9?9Y4k?ML}i1DE~G3QRV
zb-yf;=w?EQi6JJ1xSL!-l7(XJkN274iPHr7W+~C{F)8JltouUTA7WOBr$S5)F(t%9
zAs!AfHN*oUriXZt@V}fMuEn$mDo+csW6dzW#mNPwvhwGk_kKo*M?yRv;)xJE9_vxr
zqsIv6paj#+iHA?dW|Bo~rm=%hhM)$ZTITCCW}Xf)JH)~ei$cr^F*n3BA)XEK-5D|C
zdt`l;d7%)0#(C0X@LY)J`H2uTY`T9~$gDn`b<Q{%dm+Sv5HAw9Pl!~LBn_>{#bl%q
z%R{Un(}q|YVi{3!uJ(st6i`WWoMH$N1(V=SUtfjB#>!Akw~3<F=_PB(oFPt!_#wpF
z5bHwh5Akk@^&vKd*dF3FvON*bS3+zhfwrb?B73YzqjudK;#G+O@(k%aSr>7<+sFpo
zqR5c-tAaYOhj@e17h(@_-ZTDYC^k3kB5ujUBeHgec#GW5Lxj^y4oOR<L6v+eKuR$s
z?QIHXh<8FTC;a9iVp)w{*cS>z@x0UhK#2E391HPHh=U>C5Ag*N7{XhDLm>`__<&-2
zqZlqf3<az6ExXGQa_<p#&1(FSEI*dzC$juhmY>P;s4PF1WjsBN;}oZjUvUT^W~z&Q
zTPM>?Sbj_Lg$P1~p;&M~PQ?{MA@@q2KS}%)i_Kr$1y2r9L+BECO_pU2Hz!C&C;~xE
zSz5BRWyzb4thloDLin=M^C@90Mbsg6s(l~g9CvJy>q49gG5YKAi9tCmPaP4*k^C6q
zrx4ddT&ETdaW=%o5P$KN5a)>yVwJPk2C)m27fYm!_*p{57k>%Gj`(_Qb1A34hxjAJ
zpQLhn6RIPQK~$c@E{O^9-ytrAxDw)Oh|45v2=$~$3(V_Z5<+b&nyQ(YGCh}0m<lUn
zPpnVp-a4K-Q!2uZ5l=Hg>4?Xup<IOW5z-@+iA0uH&c(_`LJ+7eDaijt^4uWr5MA85
zB~Y5osTiSBgp3H8kqC7o9x6v7aFGnpAYl%C<UNjPRU#pqTo;Q+sLq*tghwOPh)^>^
z&j`ID)QWIZgq#RXBHSFIc7z5IZeyDf>PEOF!mW`A@T(W0egvlGVY3u!LX!1zSE?8G
zk+5-ar<14thqyh$9T6HuXw2@UXEtO{*H^({ktdDuOIZ=J<sA;Ago<MjH}9~Lh>#nh
zU4-@#ni61Y_z3wCniImi(itq#Dng40%&yPRwTy(Uok=fYq61c1N5Tl-nVHrm!no&p
zQ{NJG1rgdt7<RfJ$1j#0A{0jG7NL8D!~NqOBQZ90jnIksuaW2+p-Uuo)zPBhnjoVN
z*z7%D_ogR`R?x8Ju^xQ>nAl@j6rp#7@ezt6^oh_n!jK3<BlL^VKf<60gGtt!X#*k*
zB&rz#)Lz6vQT4Hp%%;u_&indS;#_H1gy9j!65t3UB8+5@$N-#7HEhDU72%(AIA>HO
zCOe}ejEQjHydK?(`}2yGDdDKW$U63m9;%WE6CzBBFg3!&2zT+x2=_;r6fp`B_e8ii
z5+^zla)Pn>fpHw^7**2i*ZhiQO6Y9oPMOK<yNvK0wY1Lz5vE0WD8j=L=s@5!dAj7f
z2W6Q`inJuR_K#D4&LAf&jxoB1n(DC#kCQ_pY>V(jgqaZ*MOYl+$q2I|JVO8?JQd;T
z2(u&1;ls;gjE-xzAtp{G*qc6=9JoF<F9LUdvA;yrsMCF)qaZ|B5aC5~-HiJ4BfJm^
zPx3CW9tE><9kDluZlZ+}X(Uj2PXsN$6k$n(wGq}uSQ=qjgq0CiMOZEwW<`YG%2nrM
z41h_j9ei7v66$c~ujpSCUmb}<vDZX+IT98Q*`VKRiS-dSM0h2_rbujd*vRtbbP|!g
z0c|iPdNT<WVGG5oYaziVa)^+2U-jez+atUd;R7~Hd5Q2wgm)tBi|}TI9T9d%*b`xA
zgtv&Xx6^l#f6_&d$R{1jl#u$gjVZ`)N7yToGhE($eo%Z`nUehx-i>fD!ut^pP|9YD
zsMq(TRPrR9Q6)ooB>m$Zs?g9qL{|Tgse0ydVop2!NQ93fd_ihP_&CBR<mw2YOXPeS
zVg50EChP1DO<y8}mNQKb8tvT4`&ERmBOHtH4bie9#=p3of8o$L$Ej~Aq)ThF!cZR~
z;Y5U!ymJc736qSVkQON{OF^ZGQO~5%Bn3T!LD5SgJq0s@72%f%zecblI1x@q_#uKD
z!HW<^h-B~l2mx=N$)Z_H3zqtXo8^V)Gs39|-$%l8eqj4BBLAQ4JX%N813yOiDZ;r3
z=Odhnz)2`s_bk=#fILQ@a=OijnLXe_grB7frCuc+`3Z{QZxMcv@Na}G5&nqqXN12a
zT#9g!ay>5oR|GDJ^7RqPw)3}i<>%OaZj)yO{^bb&P?ye2@cdAYQ&%Hgqk4=GONl+v
zi~?dJ<=Y3v$$M1VL{}*yVNjxU3Ke#xbFe6rLfI5<O5x@d%B4^~g=#6pQ@A088&jy5
zLZy_5KIKMHhRRn+iGu~XDVRE^atawKWTwPal<7CAOsb?9{+dl((V1B_CBjE(DOFFQ
zMhZ1ksFe~PV2&>Yn=@{1WF{&Y7Q$(M?G);y&>)4|QmC6ky%g%FfRtdiXV#`Orjeh!
zB_)DDZcPb_d@0F6Y?OX5aeE4Pq|k^Dr@)CDBLo_z#Hkjf7snvxvCK+|pw{dZW|YdK
zIwG8$5hPN`O<`OL<5OswqS1@KDfCOBc?vC3=$JyM6k4XxDuwnbbVwmDB_db~`0#Qu
zQ0Ax5I)yeVktKtB7#Y;TD1E}yHidR6;gxE5+d!5djT5`)sBH>UVm?CuOy?B3q|hye
z?kRLliSrhPO)fXya=oKR3KKSF_LLp@Kc>C|N{Zt9ny~DWb7q&hh^Qbe3KCoaK}=-H
zX=h~`lq?_uqJSa_hyp4}B})(qO2&j3Kol?_Nkl=WXQpR*LZ>Bze7E2H`hUK2>fCed
z)vH&pUWMuD>FVL~{Nq~hPC<9jIclAQ?&n|^!LDhXliMSRr-B#|#K0hW2GJ|X*VLd-
z&^_+KYq0*lD!i!X<6C`$=*OYFk;zHIZ`}QZ?)N*I<rlO;K@1KeKL~#iPfpL^-LR75
zE7tni{YQYAtKDDp3WDy1+_Vx(fKd(Nr669WlR*rl^FfRa;+Y_x4Ppc*hPX{9Up$K8
z?Bf>qGiX%MJtjGtlZ{6^hvpVt)_5u(_3xGYToB`em>9$hL5vUL<E@ww#PhVqKinDQ
zzP{$d1Mao`Cmow!UxrCRycopPASMUh8^TjKf#vNAOG_xc&&De5Wo-#%S`gENm=na@
zAZ7&d3P&f1H-dPT1IqWkRLYtu!Q@(dO-S#zo6lmz-fqqg&JMa?_MhH>f%V;Qpw87!
zZw4_hh_{27A9Qci@wR#4KD-rlZ-nxaZ$S_X>CcB5?=T>f8_!wiUU(lap)kUnU5kQP
z9E25w9mJ9#mIm>25J!So7R39s5X3glhaf%-;-ete1+hGc6+x^DVl`JHs;-m~WcS(4
z9S8H)h_`EH&^d5iQye?arS(B<pfHF}g4ifkJ`SS1Tz&C6nf|OE)^s!1(SB@UKzbEt
z*ty~4J?#E(@25e07Q|OUd>zF0Aa(??Cy2eA3=dW4wHiBv?j+}9w7ckVjojUwT35T1
za47e&N4=|lDGHwl-G9{mBIv&JoUc7>ytFZ6xIc(*f;hyWNu#_6cp!*xW#GOG;$YCd
zmHK@UKhWo^?p1o(=8y9WZ<YR4xn1xx?l3JgME$FBqO$w^4#m%fqd^=C;@==H2JuS}
zzXoxNTY3<`1@U_j$2p&a?hRq~ohR4+_X6j|MNUY>I65bT;I}Z&oHN|~gZL+i^Ff^D
zeo`UpFWRh;$*r6JcgE(<aeLt=_INQ~k{#RQ-dn!Fi7o$Q#c4xR!64Ki;z1;W2n7)i
zLZd#He9--F#oeB9rkxfC8uM6OEC^mG>Kwi?dHk^8<^2nPw@wC;Vl=p{=)<BSd<P3Z
z+IWe=AO4CBtvYmF@o6XF1W_17Jr#GTxD>=?Zp$i4skjovRrXXxF%{Q>xE{nUZq7m6
z2;wFu<jxFUHq&R`Z|6MW%};&}r{&v06rp~edxo9KeHcJRhKfuTS*m+}xrFMzppVMK
zO10w^GJpT#NeA|Y)4Q~aGAgR5sH&o@igGF{sHmvAXXp7#Zh6&x@SE%9;G*10DqdM%
zyt0a${;Jy>xd&JI@>~8zT{RWeRb;EkQBgxhO%=6N_gb#%KdsmHXvw-KN+`8ecXO+w
zx@(Z{awOJO;Zwn9uAsW>Yf`xZygcT2Y6ft1gYNZJ+^M3Kiq<L`sJKf-Qx*5AxLd_N
zG@_!hiv8WI^0rb#6^&S0^<K{B4<>e_<tD1T7IMW~caxmkkN2$jxp}{eW-1;~(L!}k
ziE_R3ioH3z%%8A*xqT{TwN%}2CH;N@?{XwdC=aU0Q_(@iBPt$J(MCmE741~_j1OP1
z#?N>DM7Ve{9#+wwMk;3Q+SQ6a@Og~r<BdA1c$Atd9#`GFWSlTOmh0<P^_9Vuo>1|m
zij&*jU6+rman|vtrOqn4sOYMqn~HUGLq&HLJs24k(^NdAqNj=xDn_d4rJ}crd=-8b
zeN^;SF+jyY)&17V9|iiU=&!mTD4i-kPETl=SA&C8Jo8z`VAcH%i<e;!-E75Z6sUMw
z#ZVQ)RQE>NJ--$iq9UNWcYPJr{Rrj{raY-Z&!188EHAxwW4H?A!`?K`ZnBgUp7&=)
zsTi%|1r?K2j8QRG#dsAHRQCe!In}-0H;!Fc<UXlF%a1m5-<LRzH-%J8l*w@KwRXI3
z;8U7RRxw4zRMq_-ha*q9U%+2f-CIwyZnxvM_L7V#zgTf7r<1FASH*iAVim8dcvHnZ
z6*E=5#*tMqo9)ibn5E)%PRm6_xS!WI?zIlN&-~CJe}<UDS*^O)=RDOlXm&pP_?C*d
zRV+}kkjtS)aej-Luj0!g#jll6c<stx(B5J1R%Gx!GxUKjE#d-Ev0TLp6-!hsRq?)x
z4^;P?Dc9pNhH+74Zqe)oe}mvE`;gOkNs*pDcZIH0u}Z}n6>B*J&lcyFxLQT>zf8Wr
zu~9U@pEf??;FincWdoNF_p}WvHmW$T;tv%ca~;t!6<?|NM8#$mJ5}sbu|>sJ728$p
zP_a$L?G^Zx6HjIW|7@CJ=a9Adx*5lgJ3Mjd68C=fZWVh}>{IbMM{r4zy==m&(7V3-
z+!ucq=RKb<xHJ3&t+V^Sof4VK*IaZee&m+I=&3lM;s+H6ReY=BJJr4R`<~m*68HZH
zIe!-Na6}-tPNs55bzjEFJ%=~_DCa=@q~d24zo__?gEc1O2pw2bguCKVnRv%I?(!%C
zkxs@J7x_)a@2dN4jyoGC5<fCda0RJ|sL)iLQgK?vc@-B_oKf*7=bnmlD$csY;r==~
zqE9(?p9}4875{LRjVsTs`>$*LS#<MZ_ZsG36&F>6RD`(}MrQ<7sIqO+TfRD*L-u=(
z)<f$TQT*9&)XHkIs7_QxOob`mM|2f&4xfsYOg3K1CZrdv+oE=^!O`jLPJjXHigWsL
zi?dYN9GdP`ImfzpsmgCOmsDI<(XnQ|M{Cx*qT;HGW5w$IQmo!J71z0qn0U;@4eq*J
z^*a1IZmIZ>8?1(U8g8p762gCB+zz8?2*pAe7{;J5iieO9!qyPBg-{}d%n+Uop;HK1
zA(RZEZV0{*p2^HB6+)R1%7#!{vXm^p?kg8U`4F;2QXzzjA+(F;R|?_6a|MIj<S;SI
zR9WOzLZ~XFnjq!Xh13Y4rYETtLT!)N31L*90M*!5P6$6;^^qWidLgt7p;ZWXgit?(
zrXk!H!kr;B2)SSSaznT)goiSfyF<7qgua;y`IPM3h9MAryL^p=+$-2vkn$#8Df!q;
z<^B+UDB*7wLUSQgGnH>@_$%GWe;|Z$pLX~lQ)v;x8^c<Wv<~6H5IRcrJhmIc!y&W}
z;hVlWeGcWXD(`P2MQsJ!h44U^0GsF#!rn~fkq`#_)c!Yd@6l;FlpC4Kqai#NLZ7el
znSDHjC!`|z<dgo+A#@30MhLHj&^3g%t8;sW&^v@~!n+Ih5PV9oRF=}yBYhYO#xsP`
zA@mEOe+WtlL+JpgK?wd33PKnZLc@%_!6D=e>Al;>?10_AG<iCNAtDd3mK0IW^j+8X
z%nsum2!VXKls-$xcKax&gk(erBSn%H((ITJ#)dE{gvlH=Mm2;9Aw2K3J6;IYs6SEo
z3!WtH56w;q;YATnlNP6j@KOjb3#U$6jYuO*)1`IRTAZExY6xpWSR2C35MB#mMbW^l
z5Eck|UGNP-%4Z9i6T)0i@}`h^A-pBzZBIU*s~}5Z6{dwDyc5E^A-pH0%RQY%LKcUx
z#FH!yVVUsvL-;^Q+Q^3?%<3H|AIe|hX|4=mmGIS`<oUyoe8lOLrECo0;}F(`a3ef$
zz2F8xW_xBSo2XyfUvHqF9seYR%^_@&8P)60Y)&f5Usm%!4dJs8{t4lH2(K5%#Q}NS
zL)a0*&JcEmFlI>ZpCRlHVNVDLx%}_QJFqHuFV{r~B>MzE7yKfGFNJ&+!hRuN3sUXb
zEajUt7yMT6JHhYM@>RKWzN_=;cXg<ID1;wFILsv<!pRU$h46C-fB0J+3E`-aKilMO
zUF3dnTv?HOjC<Fj++RZYRmg9Gl>8pTagYBY<ODljt|^O7OZH3%w8KQp6cX9fvmyKy
z!nqI@uFSpbc;~-E`0ae_$Ica;k3D@Mgnzl`gi$|?i&9q$AsRwZxawI8g%I|5M93GL
zvSK0V+)=|Q8Ad#WL<rYHxE?|>gj5KHAzTW<2*C`&3E@c5JSI!X$$=T<Hsc_K{BpO9
z%OPBm(yM~5q?@ajCO1O38A1_m@?qTKh9AOh&*uMWrmYp@<{w68*fsutMHyj~2)mJ?
zLCQ&3R4R<pVN?&JMi^znC>utlFe-;#SIY@j5F_Qon3|<fSW$!-75wB?q==+i7*$2S
zP;_XVsb(0p!pI4uZWy)0s1rtZ7-?tNG!<BpS)wltNcDPQs4H_>l$I08?+l|s7_Gu+
zEzaK+M&mG=gmHHm_lTrn7}v_V{c0pxl6!^JXq%TCM$<4_NcO%k?hm7R7!QOIE9IwJ
zGf$0tZI+Uju-4uzrKJ=d$x<E+BQK2ZVe}BmLt(TDqiq=HM891a4~NkujH8nRtlmD1
zPGNKoql0vZU3)}GN5Mx09}|2$j3<OVDM-!0v;dL)O-F{-x`xp$j8v9FZ;6yVB|h{K
z>={NcA-%oU=|kTzf17Ya(VwGV(yhWYKqRw%C>R_@ei+-r_%sZE7zJUxAI1k^JRQc6
zFkTB|Rv3XWlrW}+F+Gf-VGIl7`7kDi@l4oVI3vRt6~?n+443Q(!Dn6$)Gn#8baWVF
zL^3{%u|mcPJ|{?pQJMaE8F?fVL{hPIfJHBaF^RJ)jF-ZgEb=K~bQOawN-D!kDlf9R
zl1lZ-ftNjbm-0C@LY-*?{O^r!F(Ztb!e0sFRXRVw&oomA<*$eFMi}qO)Z*-#9mc#c
z-jeK`Fy?ylH-%Iy@6N!t=|&jugfU-)3p|~VN-FP$kt~O0Wn8trB^BZ#DP1hMB#fnD
zXvN&pWnL`~C`aMLFxG^zHjL#m9F(jOvQluB;A#%R4+Sjxbw&G+!q^bT#xT}#MpgB%
z_hQI@$M~tF@^KiSg!!jY1)IWPmTCIfz~(Tva6(q`Z{>0xT+niE`$$Qp$@zlM!q^_h
zzuery*b&CgFb;+BV;H-_*d2C1*$;%VCyc#e><^>L0{^mQCHIB#MHpX(@$;Y#pL5kL
z@RKlo6~^~v0$)q5n<bU0^Zmo;`@ace{e1tVjBM8ZmPOPN1?nGU5&S<0vLPz(U*kV4
zrKiI<L+9B9mw-s9a5Ri^r4$mTV`2Q_$$t&wH;?}w#&M7TA>;%%B2RKEjC;kxpB(5x
z9nOXEcNk}dGy50U)Nwz_KcatL@c0^ky2T4&JR)_29J?^gFsv{_qN8(r4<j5#gyYL4
zFxNk>loAc2kLbs|*54|nB!n{{`%5WFu3yQ%l94^?b{&K3XpR4qQi|>AUk}3xqcDt1
zoaFQUSHif;O)`vXYy2lyyI#FD*CmYPwJ@HNQMkdu>Jhl<S-8c$NPH*~LD2{XL@+Rd
zVi6RN;I0Vnjvym~t7~$zA}AR_3E|9UM$n*L4oRs9N=HyTf}z>DWg;jWLG=i}-R@(y
zTm+RxPF`L}1;L7fl_I!ON?}nI$yOC)wps+7cqBC<s2OoTWUE)pVYXHT>xO5O)Dg{W
z!5ptvT_HX}2-b_>4zIL+1a}H=AXuif+wMIPG>o9LNE$_OZv??cbuJxh);NMD5wwY*
zZ3MXyG>xEj1P_YZeGxQ|;DHG4kDyruCnf}F=j>_!<S+88-5%0{p0oSnZMHPgiWY=W
z?Y-gId18e8p$KMPazoTEf`=n`LgeiQAMtcLL{NWjdm8T;!J`qZ>|5|yTA{S^xMa&M
z&wsY8>%fyD?<B}px<t@5f^L$H{WpXP-6QA`!BY{uRxZ#hg5DAIlu{P0t$;oe^o^k6
zw*3Ag>?hb)+@4-GKzU$jU{C~uBX}`_sS)?vO@0K=2qE_iDTv_di2F6_<r0A*5d<Po
zA|M|c!LSGpFD@YGB_)YcBJiwK86LqSbJ~xH@IUPQBc<-B2u4RRCW5gMOo-rl5e~_6
zzZN|we4OC;2y#lhZB3Lc$)pHg5I!U2W0q+$vm&{E!q4nWbS8p*5quuOv<Rk0uq=Z2
zBbX7vD-paM!TbnDmR4Sk;C1@O(V>26<+TWAMNq4AVBOkW;=<C(><H#W@RpRWE3M2G
z@@52kN-NZveYjv=1V5KnnEku7LJJEbSQx<)Mz4zhoe16)a<Kvmrw87PV3B0WQ>7K(
zjKJauh}0xmDn%q8MDSq*8zR^k!SV=Ja1}&wkyYaP3o7|nMzAV^)e)@WQZ1vjDWeoC
zqtK1D5fDETB&j0u^{l%#cV>^k#}RCjqMZ?ZBEqc^Y>QwsCrKHFcD9I6DWkBVPb1jQ
zaWA8M=Cw=V4&k&$KEI5zD}qLy1G^aqA>@07Y%ZgG5y6)c#3Ilm_$q?0BRCbo=?L~m
z@C_$M1V2S^fV_-*0q{MyjtIVE&{pQ2E~A9X=28Ab1P3EH6yeLjmG4?+@B-k+2#8r_
z-6}sva3q4?rOMF=j&a8j&Z0ZYD!+LAS0Sy-DxIX(@d*Cl`W4}Hk(~52m9om22>y)V
zLInRt(B-AT*$B=>@OK1%iO%A(%C@q~KM|ZS6*yN`*)uh8UgU?$D*TYWC|r#o6hUEG
zB}h^>k2>K9B3#kslqffra(KI5ffhk#IfaR?=9N=;2^5bY!R4T#qJ|{<8^Nsz{)@nf
zz>L75LB^r1VntwkE%qy?j28>Mq`4HqWp1kC*z4sKdVW>ZZbWcRI&xi*^4l*3R+Lk2
za^Ehgklc=-h=wc;B{etlMKu)DP+Y^latb?}A;L_-5`xsB8$@=bl!nrp+sASm%1A2f
z>98&nV_sgv@8y(uId?!SX{f9rM|6spSE^{JuAzp8sv4?k$S$w6DDPV4aMaY?D6xs!
z8fpnow^&E&b}g@DYal*TUa2dRY2_841|sLl9UAIucr=Q~qPSB-0}UT)SgzqN&Hd8a
zQbQ{ZcMCs|fqOJG6wabX8txU|*poETkSn~Y;C+Jkd!@}ZG#CDWU<<(|<rSK0t>Hlp
z0S$_VJPi+N=&qrMhBg}7YIs7!lN#D-cvwRR4UcHJaoL9&ex~*sE?xGm?;7Z+f!Rkj
zJjUB}XA8&=pYrqlYLAPY8{=ntU12B5cGJ*VLl=#IuH;Y4yK3ka&!+;@%*(!~H1yQa
zU&8>=r-bre8hUH!Ba*%vMrH(_-dAu(34cEgY={a2H4M_=*H9ojgEiy}8PqS23Zu%q
zI!sS%7$S0R=FFxY7^-2IhM5{()9{RjXElu1FhRp`4I?y+75$MKMhT&-Y<e`q#ZQW}
z1!FX%jS!#HaQ?DyoOI{XDcAn<8YXIZNyEz;UeGW}!xS;XTNW&xES!X<h%Yj{bJ|a(
z+UESf{wgSP#WzjE+{?b{8rWiPuK=5#q2Uz`uW}NObR+Q1*cL?Aouy&6hB+Eu*YF1W
z;*Aj-ovYzZ4ex4rPs2P7Z*dYzzlL-Ryscrr_&_xpSs)G3AU}!TVW7GNCSCT?w?!Hj
zYgnpbnW!xhWZ#`X{Dqf%_YBHoU8eUne8AcAU;fgS`5VgzR%lqMVK0}bhE*C?Yxr2h
zCe6J7TccrvkhOw0l)y(q)@fKTWOz^af`MtHhJUl%DxYZB%us9Cu7Otz6VLf6+`{ml
z^KaF#jeF6ye5Ox@Jb2o_LqplQ?RSbb%E@<W*sVd8YoR@wd%?D`yh8k3!xtJ-8Vn6z
zYWPaS2@NMTe63->hC>>D)bI@lE<5*I4c}=vAbfUd_p;%84L>m8Mch)3&OxrhUV;6`
z{rr4yc+!7Z!%rHHb6%Ck&l-+s_(j978g`Cuaj9qED3^fkJ0{jxos)TARsQ3f|2OVJ
zoXq|54m{`HP$iQ8K_|;AJE!_jX*jLnqK2S`GaCNX@VAD4xK8Er<E)0iG~ARswBO(M
zofG4{V@x~e8A%!63tTcM-Q~#{d;Ww!t7Jgs#;Ac;ATbSL4G|5RhNw*Awnbe}=v&7U
z{#}m;Sn=830bN5}LxRh#dmwjTK~mP^t-S>wmIAY;28+986g8r-H8>hdMNvA6LT(rI
zO~Wk>mo;1w->zx6Dr8@`z)#Bx>U0Zm=5xomPPM%SH#GdgeX_jrA8-C^C=o?w6h)#a
z8b$G_EQ);vpAC0AQY`8&!{QZ`43U#_8q@8pC`v|Abx8rIC1cxccs7TrOcZ6Ks1!xz
zD9S}qK8lJ_*Yk>FTf8x|phDDLfSlgMuet^pfhx2Rb^ZCm@j00RnqoYwMcrNN*+2X>
zqo@_dy-_rdqIMK@qVPq5D6*sOa_-b6kP~$mMI*Hs4c3i<J!SQJQQW~jKZ*uXck<Ma
zV&m8r_ShCgZVq=v!D!zTMZ+k599`#bMsjS6K$if=!dF4z1!|)xXqlu5J&&SA6fL7@
z8pVB4G#7*SNAcz1{AR)*s^I>7aPg9l4wF2<z7Kcrowkaib(Ft%;Nhq{$`3~IP!w&V
z$cwt0>i3zhpLCme+xE4k!zJ8nR0fvaX&*%gc2J_-F^X5R-0f(kOhN|g@hF~%A|6G8
zeW$BY9E;+YC^|>cC5rE(?gd^~L6ZGZbc>>U6g@<;EQ<G|cq)pXjBpgaqZl8>gedw%
z(Km`=Q9KhxKd<g!A^imh2o4k+B*=@;{3!fU6i7B8$QGZDVu;6i*{OJZsF13Q3aImJ
z6r(-)a3LcEM@BKqlk*ywnqwq8Hj3wjj1#0;7Cj%u#3<%OF*k}AIIp6Z9>ok%m>k7a
zAyk_p<VB8xke599%TY`dKI~i98q+J1ohA5c6f-@|*M#)1;9lOpF8mF_*-`hBp29by
zm?x6=qIgTlLO~Y2Eo8pn0>Lil3*PZc-;IJssJ6(HERJG{$CnBjRYCb6iVvgM<H?st
z@e#RXS46Q=$SSXNwU9M}YoqSh1lng>FOtnsZ16NU3i&vSO+r2qoGjhk62;aiwt1R6
zqWDz!XM)>3`9e|N$pz&}b_-cvLD?&0pWx?S=@(o$!oTt)UklkTcD@mQK=50^?*uvM
zKL|M}cu4TaC=N&QQxrc(aU_bPQT#P6hlxE^^YciEY4U3nzcCI2^8SqC_b84_^)pfY
zA%wpPo)E%;AU_$!si=JQh(amnUeofTI{l^TESrepToixPS`@)3T4m<_BX}W-^Fq##
z%%*T>Y5%`b5Sdk@2t^T#;>Ga+7KNkGM3X$it@4_WBr1~X!ga5db(2w~qWCk0voRP^
zm|UJQJR5_>EsMKi42@%OxcPIBjiFKum!i1L4LpWoF<gn_Y7{r3xETe1+_^@zKmFHf
zAv5pm3JUqPk=c~risH5?kpCCO-Gc*J#R5fQZk0J#e8l20WW<maL&+FAjml=l5;50Q
zX3RBJWK5k`_~UO3rDJ^gw!eG~Wnw5BLpjN&k@AgKT~j1X6{P6NaRrrQs1ieV3^_4W
zl@@EnP&0<Mqq3{TFtK?-^%(m41FXnYD~39vQ#-~tA^VxKuDdpS-SE{Fe;}ol_~`9*
zAH5>47sDMQukV%KDWpLRcX^V#h1?TELr>BuhVRR}?KX)aH-^Vzcsz!tG29o!Lou|8
z;r<w!Nu#Y}sC>0f^B7vh&@zSxVqm*WCndr|O9!+HN~;)%?C*mTz&xqQ0N$#gw2h%%
z3>{;5RD!v7Q`W;Vw2z@f4Am+s6GmmTn~#WBtj;R$jw_&7RO8q^5yO))JQYJvnvJ2e
zsPz!z3}BZSy2j8=%yt)4M`qJ84%xGtvY2S6R}8&lc-rfApBM@}|N9E*7eoIT1_&Q0
zI5>tuLaN+wBb+as#4n^tMTM5x#E=*QF(@Krc9=9VRI*cAWu$!=9>a(jR>t^DJ4VJZ
zDux+Uh+%XLV`7*T!{ivo#_$|xLJTj&FfNAiVrPPM=jp%PpDc$D3Ow({ld<BAWt95v
zba6@yFUIh44AZ0*gElpWmttU4AFQZQnL4*eW=|Juj3*tV!B=CL8N(Yf%#Pu;7+-hq
zpCy<M`|DzgqfmcT_M8~zN_Ke+Z^ke$hIe9kH-@)jcw1~Pl!-dKUtqp;oE8>{oK2H6
zQ140g55@i>DPm+6$FM~BQo&_{?+bn)NSzn1`sg{A-ijE$yy32bo)wkVF|3K<hZqjV
zur`K|V%Q$Tju_U(us(*(F>I0MHb}TO#jsJbtot$JUr`}p`h?qyj3Axd8pEfe!xp#2
z!1!>W8MM#D4XW*oVOI=a$FM(!-O|U;WB4M5J)%J6y)o<)IXRaJ?R+VnrKzt(hpjNe
z--t^bly74=5QDnImu~AjF2fior(@(Khhq3KhF`dW#K2%4j`0~Y{46^Lb?Dm>@&A|@
zKPpW#O6igPEr#D?e3%(0M2GsE634j&PPnV=WDKWhc4YRM7*5NAomo+#!_O5B(0P)-
z|MdSA!#VC7I_}o_R2%+@p@xo{I?l&%A%^0*yJ!9z!^IeG#Bei)Ap0Udge8oj7--~=
zK7pp!+#!pw74b6~Lo5beI9+0MaqjjpKGf%KCJDi03@NWW6f#*cTonnq%})Ww&{Mc1
z<g(xuPiJVG9BN*R@r{VC*>r?&$&OS+2j~CuG5jY3aa)kfq^J)1Q%raFc~<$T5C3Wq
zC3Ix!d=V|G>Zqopq>fTLD(a}DqqL4PI?C!Or@Ol%hhyrv0#;-yum7*n3PM=KP*;|S
z(RdZzon4FxClx~!EP?8}`w?^3sBB6|SX4_#T^&9h9H81d>PTJ6vqdvUvQ&ncqTBU#
z)bn)i5W<;or}U+PCqH`KcaM&SI@;^#pretFdv&zZ(OO4i(Ya5@{W@5&iH=-ph?bk`
z?mS8NtC@}my!bSirYUcsyB}dKMW214<U!qCR!nWhY@P(+AsuZb%Lrs%_q7u{?9szQ
z*w7<7I_l`-dHbl2Cv|kv@t8;+7kt7ir9SO+*3m=9Q#!in=&GZej)zWUcNc>!rA}I{
zr;c7addn~=vXj%vH~fLOnioW_xf^?59sP9lm%b06=85b<ItF?jWcTUkVCe;UfsUtj
zM3aamF+@jzbra~HfTCllj-TTAIgVlULC4rQo{QsI9m92O)v-;-2puDJys2ZJj!`;B
z>v&biOdVsWtm8!;Q*}J2W1NmjIwtEFue;Y~ydOwpnjqQd1t$u=pkvE!AB#Gb!v__W
zofVZSx_b+eS>j7NUe+;9B(=&1rt6r&Ug#ia;(b)&(TXn8!fQJA*6YADSH~<JuXB2o
z4!ogbHb-`4?laqc%(8TjsI~c|fPCb3-&-`U;{zQZa&u_ie!h-(biAu$fn+IJsAFTj
z4kWy`d{4&`aeI*<?`$vD-D^(%#=TU>G9B;hU>A4^8m;Kw5hY))V}<TMTC<r!%g9@)
zW3`SoQhk*UTA<om9UtjfuVaJAc`tMwW5}P~GyN>xC_>%=-X!E>X_3MCM6$&yxp!!3
ze+ySxC8cR4_v`JaIubgPIzH2}UB?c3rQ@iMV>))}*sbGRHmze1L!sj<9bfC%r{i-S
zU+DN!cb^AKr}WcSd}=G5_UrhDePP|M?O8-2Nm`Tqd#=rlyhA#E)bWFkgOX)wTJ12W
zmX4ow91;6z%l}uJw(|>@s*b;OoYV1}j^A~h(s5eHaUFl?IHBVt=eGA4TiSvD%bt<u
z{?u_++@obGq<tg#TgN{-Vxn_i6fWraSFEKi5HCt8JqZd?8D}A^9u^W2)C8k~Yxg{&
z>xc`d1=b~|bQrq(i`%F;OdXbvo^jqDfvv;ghfy5&#8If@5|?uvRpPj;;|h1?I7-EF
zm3uo^aU4bC?&Ad4br)~xxFO`GASHYTiTIynZ*$-zTTH4@UP4H5!HhW4%9LluktM>k
zq_ptzf@K8D3YHV3KFwATUQw`;CujAlah`}rT~AV7NNvFyf;9ze38vkvBRpF$$CLZw
z;IlV~qh1_$h>-2xDWtyVd4o9a5=q)^V#7EZ#qn4ikBj`?IPQz%{x}*-wuxY_AgwhO
zLLZvN(L9d4I35zo1A?stTg1`QQ%kqfI*tcLl8ythO&kx$(O!gY1=|Ux^*adf7{?<*
zsGpWU8h1x09f2p}=qja83U=}|JIB$*<J9ct@$N!;#PO6TVQKF;`o!^c97E#h8%Mu5
z2F5W+6j<6njse2idfI`(apcG0kE6hgXWBO^Q-R1QPXci$aXiDVK8~Sr_feu@VuU1Z
zgg88o5pj%^(sbQ)QCeqo+@0_XpUW8&2a$YS9OL6y8ON$PCdBc49P{H?5XZzgUWnu6
zIHtuhDUQi;1cqm?`=DS7o6gRCQShGA{-6@b8yc9(@fsR<NwCy^zUgtyU_)`tj^mX$
zI#yC<#_^hvSEV8)vxL;2+x~T_MVsUcHf7C;V{RO8ODUUsGmf`}&x?auCTb3oXB9}^
z+3s5y$2)N>jbm9Hi#KJxON?Vl9PhCU=lo2Igsj@`<AVgesXn-WLD{+Oc?<phIQT%q
z2V#8gu!0ZcSRTiUIA5P0V88eP0PT~nj$=(6pT_Z79BbqFD2@$n^ET6&IM&DUaU7dO
zvVo-)uu(WGmMa%vcSt^oyLbNScFVc#JNGZxBF$|T%q<((#-WtQ47StY@a%8mI3Ptk
z;@BC-t~k!t@bBiF=d%hm{Cgz3S8$);=Yn4dQsK)uz7qbmC)pq8%K-u`q9@<RaY&4R
z7svO~96cOZN%<j;gW@(@VV1r4F^<Ec$yyoJa*o7tG!Ba!V;slg_$3ZqN`H;xw>bWZ
z<9r;y$8nrfPJ-}994F#9BRY)p$v95M!LZZX=3Bng!YQX@kUYwAHXXpWd4I)mPWaz~
zj2lDES{LGo#G%FUZyXon2udkOlNQuCI-mA4g@lBqQD!gR@<oNm;_i<uJ5KvK=zQLT
zGbA2IB95d)HN~A@)C@tk#ZgE<3FF90X_G+P1PVD-xc|p-C5}1?WG8Snj%#t0PM}Nz
z*Ewh6D3U<Y1kP8(%{Xqw@n0PCT4iv3F%2n$+hUEp;n)_%5-6TPW&&9WcQIxp@b8BF
z5(!)?n)gbD0C~wNIVGj2R08)eDY)1rFuIcRMkOUaH@|EG<r1i#K#c^-Cr}}Q$_Z3S
zxOdtsN|j0pyt>Orv&%~bh*ia<Y6+yXG|pDYYl?EG5rJA##9CCYoxo|+t(%iT-2@sX
zaBl*>1i;dn1q~AJj!`dx+D8iNC%}%}k*;;5fK~1kzPgffR|0n@a8CkzD=7^V*fS%*
zUl7Qd$QvinB!N~5v`!#5fu;#GOQ3lI_eu5p6JQ@{t^Y#TX0sWA2SiTZGJzHeJbE)f
z-8)MDEa87JfzrPfJR~}Ko@NzZ@SO5fp`A!N3qG7c`vf{9@JIqrCeX8Y;E#C)9TRvg
zfyZe!fxE`EU^-e!c_IN8Ezt7SO3J*G{(I-N@4g|wlL$$=B+xa1ZsJML1bQXVJ%O8*
zlpca4PjPfAD<r)W*jmE>UI~9+A$=0a%Lu&raen!X0EOIn1|;xh0$(LCFo8h{3{D_F
zfn^E2pKz}w{0R(CV1)331PUtR=>&!(+&w=aLPc<>;4r~w1fLb8g=J-2J0laAA(BxE
zj21E`ffo{(Bz&yka|w(SLjCbVCM58@Cz+T)a#VmtlM|RC!j}YJOkk=IJ^{;8I@YAJ
z`^e?XBAk}MbRlUsUg5M%V5UeG3R3g61ZH{sbs=vgFgt-c3Cxx3e8D#b=Lx<g$hvO}
z=_oBO5PoB*>&80?yerxF1Q!V|7F;5@RFD@lRQ@1=4-?px0P8MKU_}C(68I$HelcH}
zz?uZs3SX7LY9akAyZ0_WN?=_A8x#0Af%PKaAjqO|m6Zje^NAqu>r%Kmfh`Gqn!snA
z37+OQ&t}6Ofg_cbw4Lozx+8&|LiYFrtRAYY(7oMUN?cRo>b?ZnWeS--7xIPRt;)*R
z3GC<UOQK;CH9F*dlR!9uNCF4AV|2*-Hi7RF_&$LjB>R`(LBZb=I3(mp!NY<-39{nP
zLXHR?6+9;Ri{P)^f~qJ~WBNUT<0AY+@Pyz=L6)8pa$4{VC$lF%D}+YQ3He*_AHnm2
z7X)eHUm+I-gMzAHC;_@b1ucPS0wt3u#V^hYyu2p=CgZt2U+3P!7_P}pa6TuH;^O@{
zpIIXTll!L>G25_;VtM?LDhefzWDB`Jd-BT(T=Do-A=mgRAmoN8XJ2k5@LvMArS)P-
z6i=dW6{ScLMUyx)IY5_2R8caLD3L@~()EzS%p|^@;ufV9W>itgOD9oAMzcy1Ws`Wf
zic&s_3Q3epBI89@dE(?ir-X|YlORr?5~!2}v2qgYt0*K@lc<)&=T(&IN!*b{eOgPR
zW)ihT_*)f)MNG9NTSqWEi5wx6*G<CbaU@aC<Lu*|!W$%Umv~5JTDv=mi!vXmz-*%=
z?oDD_5}zi~IEf}n^kFEH$W6K%RQn`42x*$ceM#Ieyjc>>lXxJB1I66S@)jb@6J(W^
zLRux!+LJsenk-^^NQ7+!+a}S@(|K6P)hg~D^@#9ZNpwu&QQ?mz(bdy@Jc%cSKPlMB
zlXn)<C5fKX-2ITLTN2$x*hBCs!JdLF-71fo_m(Vs(JzVqNxYiG%p?XRF))cyNsLZn
zkf*OCF<5xMC-Dm@NaATBLp*svNJdp<s3#eg#52O5^(4cS7~%1eLMm2O#w0OT_|znx
z6EZQ0zb6I82_G*wLGXFO^mm6BgijKjEI38*MZr6(x*>f@_{)OKPU8&p_zWSh2-4td
zNz6*(y(AVT@wy1#@igBMGFxy?5_6MyGl_X#>HH+#68^R)c}SXGAlZdU+}M@Rrr-5S
zTfG`soWv5zZb)LO^ppx83R#xK`$>EtyvFDN6XUQvi4{q#lqzclS9#V}3t7VnFW=%n
z^5pBd%7iD&x$}9WC;wQ;Cc#gV*eqm=;8wv=rQBKcSrXfmIGDttBzB1WD?t|ROk$VE
zcPFtYiM^8Dmjn-_q(78DPvQ#^e(7m)$*}I%N$eNNH-ZNQzx8y!OX7Qv{~+X_VqgS*
zOyY17KXEO$&AZh(=jSAjFg{8Alf=;^j)`Xaqw|*}eoNwak^CyyOUB}O5~n3gAO1+<
zgvU<`IhBN7&UNpMWd9UAD@fsALe6m?s9C`5c~3sGA}%EHuVgPK5lKQ59wZ7039?Gq
z8y)gzsw$JKDmPyV=t;zrC}yCzfkYC?B(|ooErnDP23LIw-BK`<u(+e9P(B4a35Q#2
z%6&4wFo{b^{FlV-BrYdi$#qUMAy<e=eEhrr%!Gn#B6+Q<LWP@2lx~+ZZ$d%%_K;hg
zPF0ot6AFrmwW5NQP>rdWWQ(Uzs(-<rs!E9zGE>MBVHv@aEK1>+=x=$xpmYkMs><fu
zL&{1itI$Y=6e_0BB!%1*Dy2|4g?cI6kwO*GsU}FZszS~b36NJ$p@x^ODWp~ky^92D
z3)T_L7R(W>E9grBLatR+s9ZmVJ5y*R)f))jBY2nK-GXeZay6wPLs}%zteWfXy(w%N
zUodE5LE{uUi-f|aDLjxuixlol;r<lZ>t<5Dc?yc?q)$Uovt<fxQ)rh$s}x#`&VwmD
z<h7NT!VJ-G<4KlRQyxxXc)Og=46GcfXrDp{uk?`=I(q!k6dv>V<3gTD;Ym-@DTSS4
z`B*ijOA66y3Q6}AdWgaYDLj=z&lFxrVNwdc7^M_OrZ6gnJ}LA~VNeQ#Q|OmM{}cvD
zmGKh_GOH^L#epJ$fg-u5x*MN-uf^dh_&r{b!qXlfl0rbZA~@8O4-@iC3eS3yC#owW
zJU&+18lA#(DU6dL7?Z+SA@reUyPWZ!=JP@(q(H~$&qPl?ySg$tg()e#m%<_uz9={+
zg{eYbO5tT8(^7at$aFy(nUTUP9)DHH%oJYpB(sFPF390qUtO6koMf)2^QMq_f^Vhp
zwvhQ==>j1OQ+P+nyMpPcE>2;IWZzF=sgPxYTupcG@Xg=h`?0!`o){mdusnqoDXdIk
zLkb&3ZB+^%31Kf*r?4i4wG!cr)s<`2l_y^)pnRPutd~j7?8hl=O5u|fHm9&&rre!^
zTRb}lpD(CZLzy(O;L{X7OCg>@B8BZK>`3A76#fylohf{q!gs=V3GPl|kC45BY-nE!
zpL_g^6uuPxl_&W+h5a7?M#up{ZXn;M@IwlxQaGK$K@lDnJS6ks#}qgp5^ZxhF@8$n
zXAvGr;i%|vIkRb|V=4S1l3xWW`7MRtg&+4Mf243i_(@Ol%N#diXC!-0@K3?Bf`2jc
z6I=y4Ks+zPa0-zWE~M~p3KvBZ;wt;y&!`3^t8%-jrclDfTAB!T!KfgGF(K94<usNd
zOLFs1;g$#u!ApW>3YHK%g+d{$>j)Vk$VM-xaE06}y`I7~k2k2{2Iq!kZ*qNASK5i>
zzZ7nZu!!M)g4CW^P*eyvw+sU%48-}tWFXT(mVu89tTRy3Kq&(+8F<-1X#-^p3^VYI
zfwBh58R%r7vw`vkDj3K$(9}Rh1C<QaHQ+N)*+3NoH4M}=P}Oj6>@ZaqQcZBR+#q^)
zRsNMCs3nrxhI<EzYJ4KPj!3c%<OrEEypAh3P*1Y=8n{D9eZzeOlto`|EVxr7<P8km
zCH!tra*vRPf{l#--E-!>ti}eKcshe>DEAq--#|M94;yG^pt*sT23i?-Ky-Lls)Z2V
zN@6R#mDHNSsiCwL;e&#Cf-On}9x~9z<5YH2C8fQA4h9}I@R$@mVxXge4Zj!A6ctE_
zj~jSGN}m+G{9is(`gYSs)7Qm7R|5m3sGEWA2KpH2YoLdLrwsHo(96K5az~wa$r!ZW
zqDiyl)<>@Weg^s*SYAV+<h}$3hyrg6@&y;OkNXE17;GTlfZxCn0|5iaQ@#SxN#Ce{
z+Q6O~uD7hN7#J!=)A`HkuvV9f=J8(Hvj&D6m}uYy10xKKG%$fWT>_&Fj5hF`fpG?o
z)=<XKjgkS9v7A3A{d@?P$e|3?P?*LW;1lvB&l_lv5n$pIyvIAcWRii&1`b|vZ(&X0
zOv}t;dQr$!LEi70W?;I3w++lUFvGwroDXAKyk+2312YZGHE^U$;57rY49qsLW=7z3
znMJEl`uUy>;u{8d+l_=pbLg#bR(Vq@&Z7e-{WoeThrZ80P&}}J)5*Xp1FH?ZW8hr_
z@3W`90`D1EWMGMOWOHU9%l0kidKuk<w^G@)8FLDjQh!W~Wn5f5PnQ+=Kr}z(&@fyx
z3s#7nglVNnSZfWJRZWG@y7MvkwZa)OO4f508Ti(~cLp}fh-@~n#lXkHH_@L{{!awi
z7OQMEu+6|%2EOKOG4PpzFAeuT;dTQ%IKBq<8rUfk3U>?HWw?)IbByYpEue6p!58W0
ze{SFlk&}PdGe9{Nh`d31yg2q7_(n#Aw;U-vV4!hLCC#buy@4MLoHOt@N7KL|1Aj4w
zHI*L?95(QafnN>$#2H>w;f>0lIS)Gr#@1Ah7+{v^sDWc1pIcL5lzx*a@x3cF{ySG0
zeK7Ec5b_g3P70nfaN3if5%Q<tSp(TWxz%Z(Yy2Mr=eZy9D97gf3kLo*5Hb*EtPba2
z<O~rK6r^O?se+!*x=)5j3}}Y?O!)qc0OfrD1~F<NCYqTg0=h?%22uv@HQl|@Fko`y
zHBr)p#cj~QO&L4KKp}T&ac|qI{Jk}mO9n0*xME;Z2|t5OZ;#bf)SAjQx>v)E)pZHW
z4FlIDbhixrXW+JhA|^_h*pLw@YND9wZkwepyQdq9o8Y7PBup71&w4D7DTJO=zm$p6
zCMubzY@&>bvL+rL<L=UYB)*)9il%$=f&*9Hlo?{Wedhrs#*OkSCaRja+r&L4s+p*6
z;tmt_P1G<^(?qt3922!n)HYE^kn?kx&vk}}GMM;ad|i?IOu%%HEzl*(>xp|j07Bli
zm#cOs-K(kGWuk%UE+{4*WZ<a;p1~n$Xrhtn9&>Q}7zGn~V-rnG<eF$|;vo}lOx$PU
zeiN-tJZPes>HfID)JjNm!3RvV5YkeR=RT<L*BDog>B-^Qr)^)J2})S2t>|>5|Fx8M
z44R4d6lUZ-Vq(F;0_t=S1xlFR)g|z7e%^gu1CN_{!o<WYc;O13G|`Du!bT|@olSHx
zk!c~zLRS;rOhiq@OmsKV!^CP6YfL<4qNj;Pru&m(FB82vvL=R`=p*3@m{5fDHPKH<
zf58EQ0|f^O4i?N8WW@YJ3K)MOLp*uktOuLcQaaUAhME}0u#avraaAsVEPKWTe`Ji^
z+kAwHktSX-@v4bYCPuSgCSEWx#>7|?<4lY<@tldFwUoB<%ny$o@=2AK!|wAxJl;6L
z#Pg=h6?wd8lJKb}UNSM6K1lXO6FhoJ9j0lul$T9R<AgLZ!^C^Flufl<gXwocd{fJP
z#)d~hXPS7;#M>t3o0w(dbrWxL(90@sh{4$==9oBLOG(yppD&ur8CzDNGvus3Pc+{W
zWR=X?3ZJ@JAQcyy@YPmY*H+#!@h-=rw(_3Hr`2{V4z2Cpo?2{TiHW5qmYI0p#0nED
zO*~WFJ+bwHi4QqR^7A;umoqGUgR#HWo{|B6)~w=`n9^icvAp~FvlM?DHSv*&PfTn!
zvCeewWAHvafB0ZpZ@OfIiH$-&Hr=<5Fl~}7Z`W)wvDL&cCVn-s&BUiBzA*76mxhV$
z9Ej}Py(V@D*)6z}%ef?W$&BI;mz-C7L_W79_?tWR_nG)yB;=(^x)#1N@tuk9O?+))
zKUY0Z{+c)-Iy^YvvVTFhGyZQ)`0p=J`}=<|aZrkmnC`F4hfMcy*<s;73i1cjpFI0N
zn_v^Pz*dfm@R(rM=KSAG{BGiJ6aSbvF2a*0PMP?_t9wESojEO}a<!bZLe4NULf)zE
zzA=F5FSdKye@>9UO`kV$K@?O*EDrvL`!9E}x$dv(7fl3B@a#P2Jb$(hnFw<_ZOTg9
ziI~t#{JWw(Q_GUjO~g%HHF3>E!bDOA?vja=2}4H5Hem|k2wI#%qukfUFr|rOqL8n5
z8|uE4CVk89vRJqx!dVq@okS!hEZh|3|4iH#gSYsZBIHCd_vIl)EEKhHVz-Z`idpW2
zDQ^Am?KByZ-B4TM?`2FSEtIm*%R+Apr7e`P(A>fU7Rp*EXQ7dWdo7f=P{G0-7WhJv
ziWVvfsVi97LNyE3EmV<gRl)DextcYE*R)VeNVT%4ZK00v9Kqb~1yswnkk%*vN-Fv+
zKosf;zPCD;3iXBGX`z9Ij*|m-S)lxG;Vh-8dqkn3$kTQjTWBgmT5e(?*MhY#i+pcw
z<vt7dOWkIo(6&d;x^k}B78Y7sc+|pU7Ft<oZJ~pOM?~jA3++5>c@`cL-X>jLkiDaE
zriU%G_ax~)c9bl=O84|}3r~ooyM-r(bP?<%NDH0+znFBj&`soNQ!MQv*{3Y@l+L=1
z)>inkxIPxfSr~7*FOKVLp`V5R76wRmpoKv~F4R^A3mIu)l!bf?ehUR68D`-b3r`Cl
zB1k&{A&THo3x(3qvlfP17-8YUsBG$#tfSPc<2vww;AjhDEIh~3+R9k=RD}OW2G&tV
z)lnu`c;3P;3%e~$wD5w3ci9&UlPpZO@S25L7N%Hu(ZX~KGb~KyxXf)oP4FcPFAJGb
zM>#t!KsnRGI?5{|<Whar!m2ZVs?8J$ODTNa!W$OmS$Io?vn|ZAFxLVr-aRz%riIG?
z`KXpw-cUz*uqxiRu)wo0-@=!56t^L%#VYSu_@xf_$G{>Bi!H3R@R5Zj7M5CAZefLm
zWm5M;`d>$R-vX<A;8`PQ)3nC4lHOWaZQ)`acXy%=_16fp)TyJav#{R6Rtwvt$_5LY
zEPNt-qu|GaeBfj=qxVHVou~0Fmb+^$sNmwKqOje<4hx@&oR-UED|NHo9x+NgJqvp*
z?6vSOow2ab!six_aNn@-1-ozIpoK#gzOwK&=ck1qEbO=NjfDfO-oL=zA^R6F@j;+(
zEqrIWpA^lrl}>C$<W%6N1D{`FtskZCPnP?P(_wahXn?PCq1w+PVfGlq%bm)?S<ZF~
zzgc`ADF%wQ-z^-M>PvbCScRU@$O#K4Eu6A&TAVo}!gLYeg2Ia9vz5OroD<K_i_YJI
z|A?P_!3*7{oeSa&^=Ub1LA7w*!VL={3t<a}1=B*rf@UFMAt|jyxij<(=oVr$IJZ5G
zypgTMMM!z^H}g}%`N7H}hKoWPw=7(?aK(ac!Ljgxv{-22lK8_~Ow?z(YT;8Uy(Z1E
zE<<|L!YvCKHcHs|&%$kP_%@2!?r<E;R#>ZujdN0q{L%k>#NxKw9IG>B+HTO8%@V>u
z(Pn8IWoXU8Z3ks-l(SLRK{*HIZB($a!p2G)6>U_qF~ml|Mr9jSY_zb^(neJq)ok2l
z<8B+(ZPc*gvjH15ZPc>y^;KVvjoLQq*#A49;y(E=oTmeLRDoF6cF$idlQV1Shwbax
zxI=X6+wNoVciPD8>z?XrU?Y8ch-a+svC+`Ry*3)#Xk@$RefT89k?TGl@S%|=Hgat=
zqZ@mCO>Nv~yYDY$TTDE)M^pFP?l}dXSqQ&g(A>rYHa?LfTEtd1THEMuqlb+LZRFW#
z%j)z*{N%BnHn#ix23zTV)n{ZY58G&Oqoa*SZFG>LM{M`}1$A~__3;S}`bMvcoydMn
zEIckcEPX=AlY*W2Ex?m^5z<w#n;_2(J!PY(jea)z+vsJZw~fB+wH!zpE!amQMz0o2
zrv}&<Xd~Z--^PyO{z2l>VBvI|5x9BQjYa`ODqc~-y6KZ^ijAQ*Ub8XF#xOcyW3r7Y
zv~Od$jpuBPvoXTPNZUO}Io8G~aq`Zy{xLR2+qk6W|1&T^{Ih?6!m(NSXiob!SAFAc
zOtA4hXO}#+!U#;X@q&%49Hr$T_dyg|n<O^r@QXI4+IYprt2SN|`_lwp7NjzAl<DI6
z49|bYd8Tk43u646m2l_P>o(r7v50aTvu(_=G2g}l8*^>EY2$6tr>pZMdNli%jhh1k
zOe?PYc%YINm=@Z2*K6e+A?Y)W?+I^}qb#wp)W(N4jO)H-;^F%?4qbJRh`xE<eZB1m
zj7&ebkIT8BiU!u_cA(i+HdfpC*TzK~YdAnQ_SyK{#z!{RaYEYIY-2swDMMWXn`~^9
zLHt<k^EIKg&@SIS<wVP`o%L_Av6bU%W2cR6Ha-=#wby;0+4yWwAU(ae3;(i@+b{aI
zOLX?y*llAE`<UZ;m7cnE^36Hzzp(M8jT1Ib+W3mg*~U>D$87B9h9iAH!T~+}$N?MQ
ziK%Y|X=LLK-}hd`ez0*+_#sd7qmaXbKMDRU_~u?WR?*&pUu^s;ojq>jHz}h0cW;b1
zQJJNme{kzN;XVO%%EoE#dp7=-T4!u<;++*|{*)QT>|Y|}+#~<T#(5hTZ1+Sey>(ZO
zV7;P&$XS2ThHB$7w@n)%8(|x98wqJWVneeL70c;B#cb%3<$)S{LOWbUNgF8}wrpR9
z4bw)3oYvtfT8kU392p}r>&QmLiiKP_(o-(X!-E1>ZCv9f?;z8`bsINq6md}0!A%>#
zT=%sZ5V$SMw`_FDQT`KT)5CI<EhDpwIpDUI;b85^?Bb5QS@BFR=LyM6IZ75c`D?yX
z4oW-j?po5p$_ENql#VL5#4?V%a5$sNJE-8`Z3pumRCG|uK_>^D9aMHu#X%DXxuRLs
zL5_pE!mBx`?x2Q)n$m7<2X!3O5}s}%+W{j?zBETE<f)~zexCz4XyD*32lX7>;h??)
z9>3zy)EF4x9<?<``TkG;o%CT;HVNN8eYb;#4jMV&6un1`)A>~Yz^T@G_d00oxF^5Z
z1-8PyrKyAa9JF!J*1`P_nmKsTL7voV?x3ZERt_GZSJ!+k9QU9fYjI>-JML!+PmFRe
zqJ+n*iHF7&Jj5W##}->`=ip%nk2-kFL3;-;Wuc>kZZbJLICw+?LN{oQI}Eqw$EDF9
zbCf3>a0lQ=(vuF9fq^a8eOyFc9CURs!of%yanRjCe+L5`^l;pds$LFyJ9vs?x+$xt
zNa!2oeZ*#82ZNgzaM7_jl71pYL13VRK@OgFFhnHud9Z_g2Yv?y4tU;{iIXiIt5W>~
z0s7-$7?s6&?s7xDUbOWGF61aD@&nI`smnRaa0kS>`GHXmMmw17V2Xn=4#ql|=->qh
z&p8<9V1k3^#mIQ6_|#Qjn+M#}(2OT1z|jG2>vU|A=OH^t$%_uAI+)|Y8t5v#<ltoo
z)3_Y^x!Ju}ebXJxaNraRRH*AdGx>_==c^88di*s9vpoK~gExfF7HlL(JLhr=NigS0
zU}@(q$uh8Y`vw*`Sm@we2j4k($HBV})^Xq*yysw%gXIoZ(3FEEvfMs&u++ga2k%Qq
z_@PW|i4yKg<P(@5i06FOIi2TNuXM1=!D<I<IQ=s7I6XLNIhofw?upKiWHiUfesy<U
z_sIVS2OAyia<JRM#|}0*_|(B?4nE;Lx$4{EV5@`8(k|n}&z(hm1HAU21KS*M$$Wmz
zx81=GQJ_Ii>D=dr(2boAO7hj#`GGys>(3p0!D;VcAJ_QRIuAGM(7CR{eS_~e_|m~w
z4!(Bq>UG!nelc}G@EZsGpl9M*V~cHe`o4GY1DCJ^)xkjrhaCLw;JAYy9rq&eX9q`Q
z2o5{=Nh~lX?o4oS%)u`r;YUFFpljxUz^|hGn*@rnQtB#yI5^?pl!Ma_wx#F%72io&
z^>komA9stO+h=$|d)@b^gR^3jMSnRs=kdQC{3HClC%NF@UyolD!j}nzIJgcB2PU@&
z2bu%jLEJ%9Lc}OdzUGUGGKYz)DIwk_9q`;PH;Q7f2lyGCa@@nDeF_4W1DlhU(RQ#U
z)7_bgzuxd&;!<*OgWJ1QXOyluxXQ^O6|al^^x0Kb;cVfIx+O)^>ME=H1(+>Th@yqq
zatT{6p;#e`7a~-Ma3L}ZQKAq_3bC{hnT5zI#E3$SEJVpdlqy8yLNqBv=|Yq#M0O!^
z3Q@KY<qA=$5PSt9-z8XHNX0@_D0JU;!j~2jSwv*2EW#>+RRyaRqPh^4)+j_x;k5*7
z3)T^Qx2|iUZXtYys9%UX3xPt^D|BB}ct;`l7DT=PWNTd)f2gZa*q{)16{1lg?k&XK
zqDEmuA@>OK#WIw<Gd)1$`(BvkTW)d-(X<e)3ema{_Z8y)LbND!U;NUHk*R>#|D)<V
zprt6DuXiUcAP5Sm2>5Q1b4C<VK$0j5A`;|1WETX<81QF8QBg2wF@QNMDxe}}L{Tx4
z6ile7s3-{R?9Ocb?$j{+`OcYh&+Y2!>gwt+GrKd>$E3Pxva8}Z$D}Cnk4aJC*fjXL
z8<OMG=$Xc#G)_t5gfx1kF)$5&GLep*Gc-ABZt}!5PD+DG9=+4(6Y;)EPFC!v*k5sg
zVx5ZA$#awZ(Bj}UPEBJ(8fVkJiqvUr<EhDk6@mRBX`HUg<Yy=un#Qn5a%LLCm7f(!
z7}Akxgl5l8W0dmIienU+b&is;X;em%sx-zapR6v8S8GYdRAhNV8WSUaUK*2>PgZ25
zbZ=@J)6%#qjjPj`p2mzcE=uF#G-hgFU!XWEjoC_8C91X!-v4Er3)B0*<TEFYOW2QT
zT%N}NI39Y8V~{UZGQT3l$UIz;Vq~sJW3I;k$~0cDNPVV(q62K&yfm&!<Hj^@O5@rz
zuG22&$2sSxaeX@YVkdiZ?7DF`q_L3Qy>8qBMH0&S0Z$SRgPYU1J&ilkxP`T(ahnc|
zZ56@iJ*mdA!Q)O9-mQ3-A|1FVB2-(H#{Fr$m&W^PJfKZplE%aA*%l2SOyePyaPTiq
z!>tHr!6Rurn#S{-ybMC^)MHdg<H<B0XD8N9Q9^u5v-k<qXVTa;zUpa3CYkkY8qaYq
zBgKQtFQ&0Hjn^2TG+s*M<usP1u{@1qka~rsc2*8Tsxwj~D>V6PI{4P;c%&{@A#r6I
zZ=~^N8gDTaNUe(0ScEMlzMaN9X}rtM(jpW-tz;EatJC-(jm>F%lg64fK1^eM8XMC1
zD2=a>;#XL|PGha|j}<BWB#loazD~(!X?z|@zDVQCh<~Nz7o_+hrYus^<|dDj)W&r1
ziPueOP)G@}yQIElz$;R}QYfh{I#9Q!@m(~Azvr43@gLLpN%^)&@^c!$M4TTZqMhw&
zR7o%b|43s8ZMqoZ;?Fex;-ciDrHjAQ*vXaFh3(>>H2zJakVcVlOJjE$nKZI#{HOiC
zCyl*I=IO_s_NCGH@yfJHIOfS+m2gz>@Y2Yok=I;5jW4vwOxeHol9V(n<_0TsSvf7x
zPMoIz7qe8tQl=Y}t<kQl<09dru8Vpus=27{qNa;lE^4@#C#gf+U{3KMVPi=Sby3?z
zD5s>3i^C!v>QmuxO){&#iz8e#anaNTd*MhoSR}>8QA)@gC^=fOp^HXJ8b`UuxTuIY
zT-+@w7U99K-8PHl&D~&yq>x?A+FQA3?V^v1zAoChXsbau!9_b4?Ok+r(al8%7adv3
zMHkK8`{B4wE}qr^68V8&#%-Mh-}~+E;#e0wRjr2`d_DMh<s`?s_(hfZW#F=wJ!@E1
zFBd1O!bvWAD`Cgc8iP+f*+oAUp5mgvivcbes6iTJ25lg_pvnHwh0$h_!K!~MhtR1>
zo?cIPafXXIE-rC{lgm&SV_cl$Vwj6FT?}_|mK&VN&US+}YJ_6AKoLi}80B(r$6&IL
zRy7LSH%X0kQRyP(VuFh*7vo%T-5al(=emKBq$*QF{a{I~Tg7#6qKorf%yw~si%Bjf
zyO`+)E5`YXQ`y~0rm&e!g3~U&o$g|W3P&~x&JH{%=P}C#B~zNDh!?8DMUfhFFLrUQ
zT3|H(=i+7;x45{}#bquoXOFo2<~FWX{VQF}b#ayQdzz$J@6{TmdFsP+YUJG}sq0+K
zcd@|5Le;#UV`Fae1{dp9A#hd6jV^9d#{yT?H(o;A%8<Ia-^BwiZg+8qi$x5Si#uK1
zrQ}|<dAA}zJ<TF)6m62+r$TbKNs5gkdC<i}>|Ym8YH~5>my1V~FHz4AX_|V}#bYke
zG>8}tKJErzv}Rc%1M-wAKjY$AIx{!<G>3H4AeRUApL6lN>eIqgbCWEx)Wu7jM;Y9c
z!OJdQadBz}r)99r#d1#n4C-gF!o{mDes}SQi`O`jU3~1~6BjF8yy4<K7w@}R<$^u+
zwu^UMyy@aC7Yr|JWO(~EO|h5R-qB4{@2Y!2)h<@MSmWYD7ayogGn=O9&qo~mO@k<{
zRYJGJBA>cg=VF74jV?ZO@wtnyIo;+a?`fL)!o`=$g9bJYzGeND&O{O(>osotko6`P
zn_YbCVvCD!RR2v?rq1Jus;w@*bMaf#)Yp1^uL?i1mZqs6l#~3VWSb&O{Tvb(zbe_T
z_?sfnn^f4r#otBVMZv{iT>M?^bCGtjlZ(HL|6J@*<$qo5<`mmm$s)VB(q0v~%_G+|
zwO19$c{$yvSzyz3kx`+~2sce-U3glAo`<Jhs^y|m3{KHS$;F`=)Xt#nB9;k)W@Ql1
z1j_~MGBe;Q#!&3qEa<Yq%~EzIFz#dmuXrRfs21_+N@`?qNF=G5L9K{iv3E=zt%9{2
zuH-Ndt){7zI$t+~kQ|Z0kr}kjpj`$>WzZmliVUDej?SQQ24Tz_svC_m!Gg&K9+SbP
z%~CvQhwe!R%`#}NxlJ-?ngOqtSuY)KkwME0T4m5W175~ZnYqkrqgC*W?&J(FZMM&#
zLuUVi)-i)l8Fb5_dj_2|;3Zs_47z556)(Kn=TgaqE?n`B&7hC!^vDFu;Bks1$1CZX
z!3j!wMe-9fI7xZ$Nb>q)9jM<ogOfAhr6Z4iO8P4f$Y5Y3AC$o<$_Fd*TAIp3GB`bh
ztJ!fGoRPuM492q|84Szd%nZh8ScYeCmR2{4t;p=ZOg&qTutg&^D{Kxu8J)o`%~Fpw
zOP!--$7WEOL6vgG|J)45MSMlG)W^+&)h3m}gbb!;FfD_L8Jw5F<P6Sdzw{UvUW822
zA|aomytf-@vh4H>W@K<h23KY<GlN+fT$aJ*8F205?bU2@q%NRP@1ZW#;d+tc#Tm>|
za)}~G?EjQps>l(@b%vL_JV$W3W;5qza8)L_P2=4nlhmieHBm3zmcg|dT$jQ847aMs
zO&Q#r36|m;GFXt|=c5C@wKi^4LZn$*pjWqKz{Ty>47M~&-KEPKlN=tmXK)8&@+a<O
z73;?BVs2CyllNwDUk3X!NN2D})!xnEy$tTp;DHPt%;2F6p3LB>3>I@zT$Ow{gGVx0
z5}K-!a+;?eRclW~HXoy(yanLEu94!+3vXwRXr6kSVa(u-3|3|EEGG-s@C;tf1lL;6
zEAmR1R}?Q~@M0#omRqVw@{*F5Gk8VGGR5VJyw;+^Yg(Lkf{*_zU#Z9}3g1-TjAwxi
z-crt+vbT9ckrWAaNZ!w2bq3!uZW(-#!5a1d>kK~3;G+ya%i!}2)@Fh`nol!Wm%+yw
ze8TD6Jm^#2wve3IJjH9;Fv)u#9$#dF8zSE3e95sSsjnD~@l_=2HA)*Y*qFhl3^r%L
zG0#8^Z=U)l1LFD31J1#}HG}Um_?NjEe6QnkTLwRKA<E##4CXcuM*B~?NOCZ9!TcqI
zUpd|~_>CRfJT+rzlJ}}4ziU~R3XA-q$sHN|spKz3n)*9~oe}>>NkhFc+?~N5_4z-J
zkhw`7&#8NRxr*w|shdG2gX6R4nMF1OkE>i3t+Vhm$Z-M8;;<~gFpok8MiyokMJ{DX
zmALq`X*(;q6vwiNX9LcS9ypSDHA2o6(#pcl!pR0pE0;$i4+c4*l4^>SRL`PD#1BzY
zQ?Zufp^CM$c&m9({O~O5W^q&&4YH`GS@p9xA{$I?#&ARPprRwQ!KzMAC_FkF^n1fB
z8mTh9<yzf1ixyezQRQRQ^9n^Miei&2nks3g$QCtM!nV_L%WTk6-gUOgqHPvEvcdY(
zPOIpgMVBnvXVD=WoGIu@$82z>;L%A5y`mdkv*?yZ_be!+@nf_5FBPc9lL)OHr#3t5
z#rX+Y^vYr++mgkJS@3S6cNTrJI7xX2H<0wr;^Zt&&*F?M`eo5Si@{l(nhmbyxVy)I
zECyzSrEd^T9g;dlIaeNXE=TOL)3O+n4VEVAvuVsayhV^TG>hR`oR!5eI?yD=Yriv9
zjbua?XR94vj4_KBU|g?QWONo|SZ@|nvp6S<u~|&gHdbmk@&5T-O;%-tdwjNid=|+p
zCS);@x7JzkB8tBlFiOlKKTk`otsO+^sJThXCu{NZ75VEyn--~QSxnDjRu;3f;OS;Y
z7BiVUzN&YN)R`@UInEYckPT+^g(?rHHm5Vm9LlqJ#K)sP{>PD%#qKQrW4p4!52sIL
z@gyC{;)*P;%wnzz7iV!5Nfs9_=yR*$JjNs&{8w^~CMmx*i|drnSG+!wUubk)ki|mn
z+#9pORv@=%LvG6AW)-sQ@9f!=pHt&!*>20?c19^1y!%g^cQT|cQY1X?QiFGAaZeWa
zW^o@KHhM0~;{Ggl6f4Ooc|e5^DL$yktWc9pTcT}wm~B_`sN!RaKP{_xJRAHDPc=TN
z`;-bdW$|<t&t&l|$9WcOv-miR=d*Yr8$9gyeikogu{4Y2nxy2VEM8ImawN&=W_io9
z!CS^uSfTP)vv@6w*CU<xl&n;ILva;{gp#)u-&SPtca*%VIKM@(<s3H$T%E-SDp{lW
zVK(@_2eWv5q!PZP{Rt=Uk`7;F@nsgDX0a}d&s6fcBD44!@9tWG4oiKN#YQdowc>h3
z$~SPLO$#jZ`AH%JwK<D#viOz?S!~VXXHIsGYCieNURFZ>y^<feV18TmBiGebGTcmI
z8wU>`isL7z=tCC&sM>E?{H|n27JqPnO$eTh<yWEjq$~NKS^TBBe`m2Xi^bmr-$7d3
zBE{!I`2_60nzbtneyoXdKA5_PYXzI^1@8syV|7_1JXG`GW|86Y*tQ|nvRQas<h{Uc
zKN~zWTi}A9MNau=#frR=3Ex(g)PCFxp8le8S(7m>_!?*2s!Bt%K5db*RQO$sl<mRs
zf=_Ajs973c-9rrzlRQlJaEOPR9!~Udl80Iz4)xH&LrV{}J=F2g*uya%4)Zu5QQyN6
z9_p&`dWxsi3w+?wXh!l#4@Y@u=%JB^2AX>`tEib|?msP3d>YDZ8TdvCA5r6;6b-H#
zSK&cCG*M-Epu@~<>Y<rRsL)&qONE4w`L*)U+Cvu)T|Kn%(AGl-4;@vlorm^XV_0c@
zt&U|od0-YvXT?@3@8+SqhvPgP?}1;7VlG>BtSa>IK!<6hr&{Z!LRNhO+jZ4Aw)CWy
zsqw2Sdwb~P;cO2hJ@oZ(vWL?>{ws%m9{PJYO-l{%Fwny(9tJbKEmM77uNb68XpJ@U
zI91ic)-gmwG=OKQ{h{jiFb`)&{ts6pXL%T*B=ng`Ywy)cj`A?t!#EG;s?9MT=wu~Z
zr^&I3RA%srRhk^nij*Whr08co&<-0o!NWuk=Xs#F3<X<FQ>>H~o$q0ahetd->S3yf
zX&&ZtRC}22VFpck_#cPO(#n}0W_!56!z>SG&E(XcJ&7Ev7qY)<CNJWsTU^O8aIuFu
zUa-L#6<BIz-KtAHT;^e}hpRkXuBNDeg$`pXT&aY1X17dTt-13Q=eJBT_Zpf~1zKkE
zI?Z~hW$FeG3q0KG;XV%wJ>2NwHV?OZxJeam_Hc_5evyo&ZdJ~iOFp(%@(vI5>Mjp=
zE4fpV4lwr~4@<RPZnMG~7kRkf!(tCh)WQRb4=Fy#SoQ45W`-_(+%gq5?O{eqEj;Go
zaSyL~c-_Mj9-j2@yoVP&JmukO56?xRc*aAzSn;ff(ABV+f4^42U{d&^hnGFP;(>gr
z*87qo1Gr4d3PpOp+yk3N!sAtK5y?sqZ+KYa;X@CrJiO`Q9S`qn5qkTU$A|imc)cPl
z#oi=&Pjf%;@V<xD9vEuMw`hx)yR&8LBM)mmtn=`hhmTeH6Hap_Y&&)MMYTf96rK6p
z1HJmf1LGeWXD*xem4~lAtoN{i6V}JEJ~n#T#PQ?vX%=ku@QsJP9`<?o*25MLzkB$@
z!&VR9dD!ORXAj?d_`$=E9)99H+FilZ_hGv$NWvpb{^H?R58FNb#<fm$LOGY~14VXt
z_|wC`9(H;7%fsIuc5-&;l1?3#3JV^vyxYTn9`<OZq40nXNt%nlhnSDJk4-bWXFT{G
zavriCJo?Zo#Z8*Ha}f8q`MZBI?}7UYl{^$Y6uscBoYt*ULkA{FC@*u(X_X>*InmSb
z;rK}SFnw4)Y(G#wPj@Y;Y?UIPH8QxUV2#y$RQK`Q>*H!Da)TA}T0Rc-AwHV;sO_VU
zkA^-P`8dqS;XaP=aiovBKI-|w)mME#h$q`}aFmYn(Lh^tw2w=)##{DOuwK@foYbhX
zk7ImP_y9ee+~|$vm4SQZim!jG%=Ak>&?-f>raqeaXz!zgkLEsF_+Y!*`k-=4<!#h{
zD<7?uu*j52$zh2qnri3c${B${@{T_4o7AY2kIou|qc;Z%U3_%)(X?D~<DejV=WeR%
z=7YHAqGS&r$N8A<V}_68{oqV}x{ot_^z?Cpk6u1b^fB1SsXk8f(c8x<K2kHf_feN<
z>X}^?eU+cA*iW&);sC{gih~pz?5bd+SZZ0T)M-A3sF1I=@uP6G`R)4P>u_{nsE_eJ
zl0Js{IMc^)_3A7iBa|E%Z)a;qP=BP4Q9efd7^4c6ij<$@V{F9P%T+$cY4Tj3FJ=ba
z$7A-OWXi_`ACr7c_A$}N*OMBZ#~GIj;>M7YFx2P!nBrp^4Q>pQd;hIqz^D57q*aQ9
zl1t7@&h#<M$8|pD`<U(H0v~gIT*Wct<02oI`nb%;#Xjb6gz&Q82OG<`XgMrr#e&yq
zITSnXsvx<X9mm{@8&e@THdI}yT}gj>Pfap_SNphD2S(58nCIgfT5HsSuROCk94&O_
zdLK9VxZB4)J{I^`=;Kx&xB0ly$NGNBo7LJ)KF%&y^7y4y>J}flt>gYZJxRRX$Icro
z@9=S_kAd3_Z(8@&=Ox)j9(Va5Kl{JRdwtwLDS4ldMI83uS5@w+pxOI<JmBL&A2-L4
zYn6IPy;|aPzxB$+%IPHA^01G2lalA2mn1&s<8cNpF0<qEgpViLk0p#Q;VB<a`?x%h
zEAn{8$FuCO96rh6IUmpa*yCfbj~D#lUTL|H6+T|{vDC*)98P}laL(@w`Y`JiAIntd
zqvCiz-pR*%dXGxJN`HL(%{KacoER$^MjxwGE$LTWwmkT#_?tf7;xJ&We7vn$6t45}
zj*oYJyr+^6eSGBOeFj96A1JO-<imK>C$7~b`6u*0;^A{XpZdWwd(7hTnPz?N;|nEU
zDt@JSbnD=Gqz%fyWz&>wRNSPv*~d3Zs1{n@>f=WrKdJCL#qWLmpd_quoATd${O;pt
zAHVqcRVCXMLn8-#`@_edD&L_P%Kth@^B*7o`q=H`KOehP9^S#VP|xYr&&z_4J~O4!
zJ|Ah$jvVIa;QGjLg~{QBT+oSGF0(n*&B62Gb13@A`>2*f^&ARey*b2Hv*@FwlComh
zYD2SZMM_L1mg4@Ws&d?EC8#LWC)Uv9p^As(P&3M{mD|661a)fXP)Fs5DTbyfua`s1
z99rd2KZheU>&P4$=Fmv_Q8_eFLd~Od|JTcnb3hJ~!!ep$p%~h166rTr(p0fo4$Zby
z(Fl(gkyovAXrsB^a%dZs>Zqh$4(%gJhlA?vltX8gcgdlv5_aN&{_UQ_u`28ll|4?$
z@ru1$r+VdZVh)pYI6sGza_F7Ih#bz&p-&Eda~P^>C+E;l$*GF{6$j-oK*>PGu*OrA
z4^|A@ewuQ&aYzoQD?dY#b2e=IupG`*$#BK96vIs-Mk+s7aa0bYm5foW%;6j*V-*kd
zU6m%sMZ)n)k~yT5OvvFpC9Ha)61qJ}$pH&fa=0vq%X65T!!*sBp2Hj^Gjf=zWL6Fr
z<ZxjQvo%R;VeyMJd9h+B3Gov4Z=`u?lzT^)aokLY&%a%f!<BT*={Z-C<SObYpQm_D
zB)>L?@Ik)obGRXgM{{^AhXrcz#vE?SVWD#VWW?~^oWm_SJff0Y74OL5&Kz!2e!F7m
z-d#D|t;vTJ@5y1261MB!9PT?v^M2(IC_bookB;HR%BjC3hleB1*!I!&_VFB^$l-$=
z*5vSH4o~Iqeh#Zu?dcp=<nU?^&*bnd*MAkhn8Q*f&nv#5NLOD{!djN)@Urq(6q}C<
z-WuSsJeo)3uW8oXIlQi9We#sBS(U?^O2W2N^DPdKG5amNqgn4Nz89(SNyX8vgUw%v
zAF6O|Fld8y@1xxQJvjJ20-t~WG>3ILn0Y=PkI!=WJQw_Y7t8YzcYK)(o{TMM@vn0D
zK8GK2_&SI6Ic&&bqk0~?G_!STlTPr>x!}R|Z?wp_imY)<4qKIf7fBfBA9MIAhktVT
zSBJ{B9CqaP|J3#~$4m~t=CED$e~*@q-=bLk5!qqwe@6VT9R60mQ!$*~yK;OV1a1zQ
z9R7<m(@ORz?#*GJk^`{~3ubf3tK3s$D|{un$eGo;k4Z6ylFBdFlS`Q^WVhfs|9F1?
z+HT~7X>xb#l%0o@$Iv{6<&ntqN;2q+x~f)9v3edglpGS3t*N9|9*0Jf+Dhu=`8}Ea
z_7Beo`)$!wy*%pYaYP<R=5azEz4ACJj|O?P$fKnyADzcBc~s=lFe=+fNn^#Z`N*TG
zCPlG{B8@X9&6GD+3`5i^kJfo~%A>Oi+vL$+Nn6EsilNyK$~zt;>7u-Q9>*%_nnyP!
zVO>2Ue!P<7^83$OJtKMOz=@hXHII|>=&ig@9{uv@pGV(F^W^;hojnJra8MotmCy)}
zQ}P%b*$=%vO>>7Ro~}r*&QL;yGxHdp$Cy0M$>Xd%M&vOn(m6YirL9vV^Z2GqFb3Z1
z5-gP@qgCPfje&4%9+%~VDOQ<BRUYH=I5&@rRbf0wMIO`gn4U)}j|q94A6cHLWD>_x
zB%$Y%58|{uMUzvb_Ri4cY{i+8=B%it)W0B)3-h=r(x)VB{v1`lgmNX9Du!7v>zKbX
zkGULOMKmblD(2?#Zyvkyn3u;jdEA@FeR*7)$8~w!lE<xDe10Aa^SCjO>+`rFj|F*D
zjtvGaU+)Sn-^8|WY{c!fZa%0wsY>3K$L)FCmB-!rVAZ;Vef?);H^1UeRilNqtyAHC
zYUKB*kT0Pu%H#e#cIwo7Add%C{&gM?<*_)AH}Y7O$C5lA&g1z!UeMe}6rafBQ6-Nl
z(&pn)e4fnXsXU%m`Ll}8D2D!1^SOg!`(hri<gtw7L3LhIq|VEcHS*;ud@YX^QSPfs
z*t5)iJ&%=<oRT;5c#G?^O5RpnlgEd7ypzYfntU&h)sg=D2i5X{3PUG9QvQkJ+B`m1
z5?03=Kh0yEO311Ix$-X}$(KsLQe=_!d2GmIV;-CG_$7~D^VrN`pU01?@NHD;J0)8b
zw;trx_j&vf>4d)hq{(f0{H)|aRJZ4`BhvgWkKZHy$3fBlGmpPi{`Wy;|A{pDe#-7V
z{^MO+0nZk&Cy%|HdIgLtU>|29m#+f46yWBO$>Z<>>K2gA!^@*u0o4oe^T??wtAKnS
z1?BMqijn=YlF~u`#0vj+jcpWQ7J{|<K%8w&It3(@gwZC}(Bz?thbY!8pq7#YWov7)
zj^bg3{VQ9&0_qpgq=2Rc98tiLntP1mQHl)<XrSb1#n4(K<&70X_bMU|C88L1L^I{>
z3us<Iivn6|vULG%l(dRGX{*V0iebCLx;m(&qhcq;P~NqGZUvlK!0-aPtNf$_dKYkP
z0X+&hP9-NO(%SI_^i+OeZ1mFPiBYus6wtSTQwkVdz{ydm0ZRH6&_9x}_`rw{QW83I
zs`AqdI4#N@619u9pHaZj0)`zVVX3oJbF|`!sMOg7jEwlG$hR?(<eUP=M!Yi0J-2}I
z1zc0WwFO+ZrHU`6B@0LuFrk2n1<WX5rWQF*af;$3#mS22M|SAvRFzCCV7ij9X|oEL
zUBHzpxuAdxm0VW9MFm{U7HN`Y=M->>@-V_-S;{Ys>|Y*fUU87x+ybr&<ps<;NKPZy
zY4WZD?k-?{0oNCBLjem^cv}Gr!%}?VOUaD|+@vI|_m(L4RwbcJw-<0nB)>E2i+c*V
zSA~xka9;t73V1luxnIdciVrA0s2EnUSoxC3&Lf(9RPixIww;<!D1S1NJf-C6C??Mp
z@O%M>7g4u}7YcZ>fL{yPUck}<UMk?z0@fAqasjUt@LmD$YuRN5ys2b)0V|ZeTEOcC
ztW^G5<j)(LT%{O#65?Abd0X+F0^W^02}876<sU_*J}6*~@(&|P*!Hyre5{gB6hq->
z1$<t>R+W5Fz?VukD}JT8LGkMX)+-51ZB$O*Hbug3lzbb>w?rO(SHSlL{1C~vDfv<H
zr%31LDEF5r4!;%fdjSP5xtjGy0lN$MuYer|{Hc<^3iwCK-%;6}QCWKRZvneh9(qg3
zo&r3T?Byw-fOJ$Uqr{Co$!ao;s;@k!m{$y~l?o_pvRY9W`64VOtR=3*P&AAGcNJ<E
z;Y2zKB{WsNh#Ey4qRHBdH5F?WacJ@X&L&}{b&5Dlb6E=|^^_k`#I~8^>KF0b=-|qV
zZxkM>5?(J+esmEHi+G}lCyQuQMB^e(FXD_MjwuGWCxePOrHG0mP=plGq=+s>bXBuW
zi)d9u>tb+Q*Q|)<QN1mSXc=+(&?e#?l(a3PT_kBA`QI^;bSk2=@-VjDis)X%$tpQk
zv1bt{DCtqeaY~L?WV=|Tm-60<Cr0v<qFVYylD<m9D*6@CUy}o(+<{8y`QRc>En-M9
zc=i6YD0lmYM&Y}Dzvyk<&?1HvF|vqJMVzTRXKCDqj7SbI!f%}-8ByeK*Fi9O+0Wm5
zNk*&Y#YN01VoVX|XmV^36RB22Wf4^>8K;;m;#?(c<M^m8sYo(G3EMJB$<!jI6){=)
z`HE8%!}t)V7jc0~W)v|~$*dw~AEXlwBx+u$!iyAX{}K+=BJL{UZk1eG#9UtF7jc;;
zFIT)m@k+)0H5M_ihy_I~EaDoK&sV%w@w!Npm0qv>hDgF1Z!F@bB5qg7&5``pB5qNB
zz|Y$bnn8DH)}4y9a8D8U7V)qq?^C2#4=P!tc)#KUiZu9;66!22Vo4-qlE))OJR0Rb
zrsVOc-lvLqx`<jO99qINMLb)?zeVgS;yG3OqKGexc%G*KO}<#fYel?X#L^;OD&l1o
zE?0a-k##LoLjPApl2;?i$|Bw<;)6)Os)+ZLzgfgvO5QHwog&_i#tDtkU>K|Sqf)D*
z+%-jfSj0y~tS#cxBGwi0vFdyhX|i}|;j>8cxwiU%*{@W-xrlF+e66@%aYGRsmC%7r
zO6bP7MQkZzJJ%wWY~@0v<U7Uhi}<04AC<GzPf9}P!y129$uEk(My>c=lYc4xp~$j3
zl>Dhk3x7xQol5?R<hvtz%@Y1AVvi>G7Lh9=U&Ov5|H=<mZ?}kSq?w88rQG8jS9$1U
zp@<^a`4a3BN|AoNgmT1VrTweDQQH42jTuR3%~4_X5)w+PDTWPaZVgQy66y12A}&O=
zOQ=)A@Dk1{;jj|FmxZ1soKQmD66%%EqJ)+u)YpQI6=~;)5{@k4s1h1Pl7>o-F8$xx
zq)}AMF(p)JE=p*sL=>AShOKU<oR*tM7FwyKeF+_uv{r0WLR%&66c4nkV+mbVLJOUg
zbS|MwBw-cZO6Xp~u_`%EvByEVEOoplso6`(fGGFG5>8UyyM#VU`YQHQJUMD3E%a9j
zT^d-zpb}2e<d70hFJZ9qQx&Osnv$^LXDC0jgrQOHuqZcF7*WF6DjCTh(Qk~r>;*sW
z-BCaI$zn_i=ag`2Oiqi**b*vBc%Y02%cv@0TnRf%_@{((OBi3mn<czeLbAlCit&62
zFO)E$go#{jN_e(}^GcXh!mTCTR>I^G&M)E066TgLrG%*^TvWov>ccd}nTpdDXDHIu
zStZOa;erw_JSZlVhkZ0h)h<<}^Oq?3Ux+=d%amMR!WB{Pho!Efyo4L+p3`$)3D>CF
z4JBNwgm&gDx$dAEuaEcw&044!TDvJKb+eLNqO99XxT6$YfrKaJJ4?8qVJzXU67Hs4
z)$WVR-Wz$y+80F@9xUOZ5*{nzag{7qd{}Ww<j*4|JR0e<Z0OPxDtW4eCzXUf&fKS?
zQmb^Ab4s2o;fOXVUJSgbnk~{5Zzx$>!b>H*T*51wd{vS9%aklHVMQbfYkaMQ*HyAI
zlCx5NFlSXM_#c@C-!9>u5<V&6(-Ph-;k^<*ETMYWalCDOzl7B+?gZa9Y2POGK?yyK
z<Qlcpcy{o~qmN2htI3b)(v(J&{BL8hANRTvJ}Y6pW_@157bSejCU@w|Zhg}TDh<`X
zD&gzMEB3{P5;kgbQwcwp@Jk7sOZcXQZ&mnR3E$J_NPnvmw($ogKSlB%qyE|!Nx~ri
zs>we~*j~bK%70h<BZ@q|+M$v#ZhtBNJCgic!mbi-DdW~Mc5~S;;fykdma(UVy(QEx
zqfQz7N=WmBUJgdDs|8D3#!JYQkkzE8m@mOsl2Z(;W9@|!ivPbPR)$%IRSuT@xS~<s
zzuwxKtX4*KB~BR$B|&WU^j$-fH5Ct04CS?y^Y0!GEh-;Y#^Gf&E2DWCb<3z%MujTW
zSEND%B}bHTWF$FCNf_0m%V=0eqcR$+@EFAdEus#hQlg}ZVpB!twkV@z8NJFlv5Zz_
zv{rfdGTJC%?VZYKTSmJw+N-2P86C^}&xWA`A$BgKOBr2Nr<-CZrv;K@%jluP<I3o%
z<oJVhPEgLjoTz+K8ND@mS{Z$m^edx(8GV(XtazYx1Iid!#vm24mQ$1rF5}cla=-@`
z8KOc~ak`QZ5*Sv-nPps}$>C+3rDR$eBg!~id9sX=N?7WgGDbyww30E3tYT~#m0bTd
zd9LC(MV1O(9Up0?%9v2bL`_asJWp{_q`)HQE1y!v)F{rOo#|!F(5#tdT&RTdSxRP?
zae<Npk-12d7c0(*M(qE}xKt&Vm2qtu*OhU38CR5Xr3z{7Y9({axJt<ZYx6XDO=O3f
z^UGMM!s``pP+XuG#{5R*)V!&Tn<Gwxx0P{w8TYH?jxz2n<K8mvV_14MzN?ITRL;qJ
zw@%>!ZGs^&NpVpb;V-~*+obMmlM0^z;n|t%*h6J3E@Md<50`^q+m4ROBV{~VM(vo?
ziOFMSJYL4vWvnmbi87un<GnK8FXJgz$IaZ!c)5(HwcckUKc6k*xrjfn<ORhS%UG&p
zul^tON*T+_c%zI}Wh{^MUsJL|@zsMO_IepBBOS)!P37+>zNPrK;(-zS?m@}bWvngZ
z<1#)_A!D+pj1MFJ(LuF*qQcM1_%zC0SH@?`5A^02WqcXsex-z!ZYX0T*VQuqD`Qg`
zo6GpEjNdi)8^s^X__mBK%D0yBy%Kuzos!V_57CJIsf=x9{H$5OMw-7wxh%C^h0EHc
z{)lq_E@OxCKO@OsQM-1k<R8U<%h;uaK8Ka=DPwOLWh%#HpJrvt@RX#>aFwvej1m^{
zBS}F?PQA)UxkV)<#jr2pF)?CNJtj3`LOZ6S6BA2`tw=eQ6UwV8hQ1vV<sKT7n#yZM
zk^}x97L&tcazspyj7eQ`uVFpa;T1yoU_<?wgqKN2#iW5|?b0u&y`%Hu8^wk(X%v&j
zntM!4+Qy_^Oe!>qn23@lF=-x?7RsB(q?wY?b7D(PwvI_FC87Uq4&v=&(m|6a#iV0Q
zI>qGJnDkIdXT`3HUDyh}X6~j*TJEld29Hy6LL@(4Nza&sby2gIN={Uyuy;)Q#H6n#
z`^RK}l9OZ7PYLzIf&*i6ib@74hP}qz!I9-5F*!XZKg8t6n4A%lp)r{rlNm7?7Lzk$
zGCn5Bm<*4}Sur_>m-I0i5fff1ogI^rF-f-xKETCAhLTY+866X@FyR%{7_E+7Q>kQJ
zOwNr-6=UKAAJU`)Kk2`#;WH|!m`qT$sWF)tlk=3HuO3c{$>f-Xj~^V`HpQpf_z%|<
zRiKfIwy9~<=j~G46mK49#$;AZ-i^t7F_|5c3u1DwYF-$Vi(+zXRO(_Smn+Uuyo7Z{
zxtFpP5ofrrh{=_joEwvCV{)DHtB6YG#pD_#VPJ{#V{&~=Zc^b5iu7|~OcorZM#+tu
z4EyM2<+sEnG;&*1>h_r2q5Mw8yA<z^$vsiu(GH8;7n4OXxj!Zk#N<WQVL%>aHz|K8
zCX1CUiOHi%Sn6RVk3@DJ)8ykZc|r+ohK@ZIlc!_yOjPQ5CC|p>xkwT^{6ggU(wMvy
zlb2)iN=)8Von<juu4H9QRz#&<Q}Sw5`|FXM*4|LQN-^|--o6!+w<Dc*qOA8hDq`|k
zOg@jv2QgWr@=s&(p^~+VA1TtpSp972$1(XNlJLuo>y(F&rhLI=Bqm#9@*QJdKlt1I
zE6x2nCgeQUE7=f}jY>8}^35^%M)|jjTO#?Pzg2$Eg|Tb!P(%+S$$3HYQ%ttSq+whd
z#pUOi{1TIYV)Cz6^lMChi+tOzgulxE9+N*}vLhzjmsR|&<NT%($v-)|MkN1I<T;wH
z+o}5DGPo-y|HWjFE|t4=ZDhTR64=Yx8WUH0Y9Aw(ui#S|ESrf*AtuF`WTV<WCB9-#
zF(37BDJD0>lZm)gi%XfpxWwbZvd_bcixF{CN!We1awn2hS5hY~hsC8vTn^D>&A1$@
zq?RJBv21PS2gbnRaj74dBjQpw(y15UKVOcFBn{$nl=5&`9v#V<Y#f(k;!+uxs<>3d
z1#uZ2moagXxHM6<k#T7nmu7M48J82{(mXCL;?g;?&{9eJxU^EzIxcOLv{h^u|G!n5
z4tG!?ThTEtos@_Ebcst>O?Ff45tr^tj#Ug>O*~GM$1Ad6uehA3{FJzyq@=%MZ^b@w
z>8s@Axb#yJ)<ruZ84#C&DyL*n6tTf^IW;b)seD*m&Wy{DxSSrBGgLA(vO^08tPPLL
z2$i3u81~EAktU6gQcg0wZR#B5W8?Ddlt$rGG~siG<Kl8|Tqeim{J4ydOOh@6v+}&S
z@YBJmcyJz{s0Am)<@h=&K7L7SJmbHxrD{@Kt}h1Da7sK_?Wf0OMqH-GWm?ptS#49{
zCuezDnHhP)hsiI9%Y||Imc=LbxF{|c$7M}iK8(wpxLgvK$Kvuh`z|h*#${n#Zj8(7
zA$=~3%jI#oA}$YFjhGCP<jT0rRfVe*DY-f>^ORo`Nv@5{b;{=}UaxpVl)E4<3)-ew
z@TR!j9G8dUvN$fcXzuNi&aH8|O?lnhs_wkCipqDy<<2PguDIN-{2s-774K7Aq<Fs~
zOFf|ELB+7rspW=C;_|Rc9#Q<RTJljPfqvW66LEPmE_{FCt++fDm#5>hJT5EZ@(f2{
z*Ksez<wbUAT%Ob9%C@QJl`Ot2$z1*}w3OXyB#*T5Qe0k+3nj0_h0pwxEYsxIZByj0
zs_^x=tW@%v;)vxHZv;B>rfOP#1q<?TrkW04CJOl5ad{^$@5beq(LH&*ujD<&CQCZ3
zR<e0@<p*&g&NuN<T-Iu*uaC>eO1@V7Brcz_bM551xO@?pqVD4KSzNdu+2?GUZj{Eo
zpT3OCS8*ZfFg!`5KF7}nwXjifQ(SJ^RJB?08%1tLM#+}AY>mrzarvH0gduGW`5`Vp
za-B59FyyDWY}4XtuK)BoE<57#XIy@b%l5eZv#IL$xV&;o@UF*iO864ivDMMI2L6Z(
zUjyOGAb-W>@3`!a%YSj%$s%msJ>&l6>l@R%AGWK4c<OdzmkKE#IVia&F6;XR2KQ3A
z6udICFD^vBLh_5<lZ|rYl8H-}_UU9z<l>T74}C?qcCx@IF=ErY#|#Nyxnijj*MC(Y
zr|_?~!5dztA(kNx3_02m+YrZ)nugReg0cxisu@z<ka)X5^V;D_z9Un^5aJ<*@ST@C
z`v(y|)R5Y$e}o}?%chPYhZ|Ct^%}xgSGa8-kw-m4>KpRvfFL=1OQZ3VlWfb8T9C$%
zQu5K{WJ5z58Pe2{W`;C2<QPLL41pn~iOFgDI!t16Bfd<u`n5_iq=_L1-bmW>LS=Kh
zI=N9RLs}csZep^9A#2X8YH3KF>D@{AejGighs<hcNP9z4hD<P|gCQLaIo*&m4C!P@
zXG3}$(#Mc4hIBRLSVMXk(#;6s&$2Z)278lr*QR|jv+;3;9B)Xk0m%~$>1oId)4QLb
z$uA}*`3h1mL)c}^C7xu6KPky>eZ60@uOTNJGSHAgjMd6<{S4{Ps&@r@vGGN@0d$Nn
zNgbLbo?^&gLryj1G;Jy08sjF6e2tD_e|~qxi2o{v7;<F06gOTRYRE7{MjA58kTcai
zS{q@=a6_J+(S7jw$+HaM#!@6_Gj79zR&c||(T0pMWV|6sL(VZ|tRdqJIhWCEm#Q>`
z1Bvf6RcVqEb`xJpB4N|mQU<eMyVN=DQe1o{8giZ?iwwEnkV%G2Hsk_BE;P8d$P`0n
z7&6n4sfKU}O{4vZNfK@pI6d-{9XgBiZb6?p?NYOiU^VMpu6Vl~H1i@uE;eMLAvYQ_
z$B;`5x!RC<ENBF0hf57!0^#}1!8=@+sf6TmjwSY&A#)?iRfaHJ%;LcqHqf2*uAx7M
zTo?JUz>xW&epKoPC07`DgF8Y_>~WJJHyd)dA@>+^i)P(w$Zdw~<epp;d(e4q=*AG;
zZpa;)duL?lE+serS3w`{HRL``aso1#JXrPtLmp)B81j}O4;ix9kfnyaWXKXj9ya7D
z_Mjn;Xerz5$%2pSWMRR_RQR~!6N*n#Q}+_Z$ezz|_)Sf|Xvnjw|C}m3ulRyuxS=QQ
zQ0-+yUNPiW_NF0}FEeDhAuCj^!U@)#S2a+(1}0xq;p>Vk6`9MXaX-*iI&_(Qo6X!+
z@vb57X{mP%*)btGY*M55Re!Z1A1Gl(jMy6GpDBK5$VY~(<!IL=O?|556OIb)!F7?G
z6aS@lDF*OML%uR3QB$hbl&=k0&)HO622_^~hHT^-V#_hMY%*lCA*)UKz?5$c`IZCT
zl$0r34B5)n&kV-WcZPg#$X-MCas4;sM??P5x_&Zbn<3m+kviOL@n=JRHDtRXztG8c
zDQ?2ZJxqTy<aa~3^(1#-<SvaQ)aU-BI}G{LkiQK1+mL?^*~QVq<)yOcKZ^ZyyEi5e
z-8*KtO7<xJr%3q=X9Rl!)*F&cb24&qGsQ3^!!ggM?Wrgl;&D|mB+oHZqbkR#kw_jk
zxlwpR<c^;Ol{4$tcBztfM47R2Qk?rSGgzEU?NX*GmML{iIm{I9U}&3?Fr}I)jwyY0
zAHxRiQ`JqWVM;Akpw1yw&R3GuG^Jbn6t^!Vr`n;W)HWsD43WvhO{uFzjxeQORJOh;
z+csCRNZY*?EXCtUQ;t$+PPi^fvqziK(3D1|G&W_pDQB5-j42hSoMcLGQ(%gi($19j
zrZh37sVOZ@X=MiI-)5$?Fom0|HrFHxuM>C;z%5p}*D8~(O=+VQwKZjLB9Pa+cO0>U
zDIHBY&XnU#=|l^rbT{Q#Q@WVamC@K+5o&fbCET`^W?7I1dzisB2^F}zE34>f$_b|Q
zGUY^-hqcqC=dTUwnt4ia;_JhxnsSOMgU#SF=44a)o5F2j`>Ap6Wl7BerVLa+2bsc6
zDyhbTtd6yuYRVa=3^nC6Q-+u_tbOWq+INznOH2+k<=Y*>&bbW8nQDXvIRHkOa<(bs
zP2s5ESzx3oqfHrO$|y59DIED=u&d@d>h?HOrngUxHKkIM9Pm|2xPdQ+I<wAIg@x@?
zOWFqmiIZZ2DNmX5v?&u!InR_yrc5?vjwzRza=s~3Oqs3oYbqOVCub^7qY<jDsGx+$
z4CUN3nS7QikY8ZRr?rz8nsSkni`g%BvifPkLGnLSE;Z#=Q*JZmGE*)$<yup&qpPM|
zY06wvt}^A1Jr$gfT)s%I<|xvgg6EkM?wZQvHKuTqlFX-vrrc!8&8FO-1#dKiDgWWa
zl?xcFPx>r0g<IT`P)Ou9#J}vRV8L5V;q<4G+fBK{lm|_D$do%-)|7iqxzCilwcdM7
z;Rd+WXBazk+w0Ski%hxSlm|?qhqTN%ha0(4XVadF#ilGV<q37~VN)LAI4M*<rue8S
z-0wBi=Th^yCIeTeH+(Xxg~?}3dDfIyO?l0f=QRFH6`xmpL5IzYitI!Vp_fc~&rH6|
zxns&QQ<ihOP4B+Klus6o<6f@JBB6v^zP_#&-VO9+r73TivWguvv+>(zu>Q!Hsy9t}
zi{o=e1qT&}^gAkN7KQKYnB<nM+^{vqQ%0i>YfSmjlpihm$&!yuS!>FfmJGM#V^+;&
z$C5)V`P7tkrtCE3A4Z$)<sxIs_ojSd%9mWvIp$6I%9O87*=Wk9pnv7z^})uh+>CXD
zDetVW;^z*Clx%f^{WLeT)ZPjb9$VC<c6%$fa>S~HYCq5=c8w{&o53~wPp15A$}h^d
z=~DLYjPAciNh)mT5;~(hUqWZuH@l7dLv8-a$<=M#4t7EN)V#^T^#4oce=Bka=YLJv
zWr}Y~P9?j!2$+&K<v&yQaE)SH^c{J|ii8_jZ><-+v7U;<<yk<BWa)#FZRaJ!?>6u<
zHE&AHlDH)WE;6PZKDp6d)4G>bjm67KR@Q@IiD`*rNy3uz_f_!VqHS4v7O;d{*|IIw
zEa7d!jr%I9E1`s&z0yccOKMrt#geWTXOPskq?sknEvaM4VU`?aNdrp`x1_Em^({HV
z3Ql?TEa|x2;OU;67LKH5zLHl~<R|_a>`#5PB@Hb(#*zw48d<V*V^w1&?c}ERDH5tt
z0!ze_rdDuGOGy(eSiVl)SFv_u6(xPo2!h<gl9sH?l1`SiVsk8c!mVg;34_qalD3vG
zo)h~gnWS<%ORm`$jKdCE#Tm*wTf%cLh12&{yj(rlI=q`D-7V>F$pA}^wWNn7y(~G=
z67D*EoF&|__ykLiR|}N%w1hh#lhDG)dn-;-`N=Bmt(@{cmh@E~ZgxybKeh8}|KvbR
z23c~dC8x0$)NS4rFm7~suqOA;=sv`f)2-khZJ6R2mJHP_>QET=ILYACl4n^mf)TLf
zNlVVQWF*^b$+eb@vShR+GcB2A$r$=(Ny?H5mYlq+Vyq?O7$r+8Em^MhR#~#UeTtkm
zCr#@<-V$O`al1+;T5_HxQ!JTk1?MB)6i>3mtA@#JRR7@98RsjZoXKh0@agLLVFQC3
zr5Tn~?+}cu*_K>j$z_&YZpnp~@Y4!&EV;yzi!8ZVOL6mYs$G0>lD9An%l|C7)Cz8A
z*l;4xlFa1?I<BzfN=xQia+M`lTfq$l<!l=9$sx&kY~7~dODS~hI!oqTa<?V-us1Ea
z!IE1oxy_OVmMmn%ij_BWFj#V<B{wl{!;=H*2V3;gv8_&$ZMj8tNN%^}4lB4q__12>
z5tTbN4tLS{^OC&U;dKJTa<3)#S+c~Ehb>uT$^AMMY3%`vKU>K|mh}4*95!cN7i@HX
z#rDd@9K9Wa+b-fGYVec}smC}7YxaDUb8UKeR!7O>?6n1beyGl^z2#|3KH-9C$upKb
zYso535RKb&mb_%i%QRxi3zod7!ljDs_Em5N3j_O#CCe;Xsd5H$xh1b!!8O$iMP5ko
zcK$U>Ubp0gOvTF6gVmnbLT_+Zj;Z1l=E_FlTb8_U$!bg9w&WewWy<4j@QIaoEqPBn
zoqW~#$q%%aZqFt@vSf{Nepcl}4#Ey8lC_p_*L5BrvnywGCs}97XO?_v$yX}*oK?IQ
zbSsZ9R6_E#CF?EOY{@qqMIBO{eH*O(tLVm%=rrVV`mH5fEcssRWs=JXkFC0%e5cq*
zf4KNT6*vI4S@N?b|5>s}CBG<cx8zqPJiCRS{AS7TD)~c^!X1|Usr)ZX{<dVN@_(b;
zf0WD{)p%DV*=@<0x{o}|?p0x$<4Osy(<pQ;$ykzA$su;IFnY>;OL9u`mXwt+tDvN)
zSmM~zSr)S;t_2NSswpvTv23xGvy`Lcy_t;@cF+rJ)t~Artf9C{?bK9W%a%ix)V8I*
z5?ZLE<S@m<ZK-QZJ>?(IY|Pvx^>BnHk5oL$mIg|u{}G(vj<%(tCL1YIvbjU5!WP)F
z+K~?&5nGzr(#Vm<jx@EUnJrJ*^0Y0@ZE0c46kDd+($bbzw)C^5zb&n8X=6(dTaL4(
ztu5_r>10c1TiV;wfko267Dyd!d17pm8wrt<5WCpYm8G1X$J)|ONq0N=9Xs54isW+#
z#o8&p=6Sp=J#9J3mfp6UU`sDsMig<PE!?V!|5)wmkm4pvB>Wqzk1c&|p#}a-da_#M
zpF#bGCb@+f4Gyqnpe@5~Im?zoHm{ath%Kkva!AMEAKQ1&P7bz%A9YVvJWY}EGi(`Z
z%P?EcWWD2pZNf(AU%LFO{j({Jh>PRN5w@Id%V=B1*fP?VQCjswy60e%j;WJ6rnp7d
zIkwQ5^K6-9%UD~uU0|gxwZ|rTRM|2v;^*2jKH^DRQW2kE%S7dT*PBHq+rmAnXz+Yn
zxP2Qp^SYr|V<xBBGToM&Y`NK%8Me%{Wv(q(*)q$P*|uE59=GKJb?-u3E>f2mF7E7k
zvGO^#kk=iW<VPN8?NSw9X3OQaunCl0!C|0#-f?%ND{bNbWfa~pGI_Nv^K7}^mK!ww
z*J##!t>{`?u2VbTj16`TJ6iWWTwu#W_MpncT)QghBOcsJ>=s*YwPlel_uF!tEw|fp
zH#Kd!L-p@cq^Ub?dAoMdcWlC_jw#~3w%ix>JCk&hxewU#pe;*mdDxckH#DNW!(KdO
z%VJx&@fi>9<@AUxkJ|D$M=3|_%F4%BSC`=12ruadUfgo7#`RTCs%7rf#+@{uvE^A?
zw%PKtEzjBVJWbj1xh*f)yc3c4Y<b_7rMA3e%j>qRREJ--WrZ!T+VYAm%Tz-5mfON@
zws<g-uW>334T3Po4qgv$sv8=<Var==CZn3GSfviUY0F=;0=0KE)Vt44zH1Ao0Qb1$
zPOnU^w&ep`*4py1>aVfoBPAaya{oS-<?!R*ub*(VbWDB9g{4jqM!q+_&XxroQ#_W}
zsQSW|FKzkOmMyk?WecOU-j)rvaEr08Ie>MK(OOd*ZRGDiwru7qG&Fcjlm{PD<+CW?
zFv9V`&#kt6rxW}K#-FoEH)Z=wyPNz+TYl19{!4Y~>|~SC{NY-D<r3<M;mCGde&g7)
zC2Py?9O}00vSqg|I~X@xc4~|MQsjTu+>r5as?8tAg9GCqTmGeE#|8g%(~Xh!@t=l$
z9|xx`dzA0hvf()4$mi~RuF5&O>R+GqILmCw+fq=q97niUF;?gGGZ!R_?D|>bN}SHU
z8go#wNLkf5JYtTFpEZuebi{I`jw6RTVmsnEa)=`}9Z5L48aO?xIYQqq8I`Q=2&YC3
zP1e-S8M!vj^(tyP!6M1E?oiFDO@kUhzS4ELBlR4q??_$M`Eq2EnnyTtq$3Sz%@J;b
z$$`QD5RY<%J;I9UBz@xo($ES1PdsHz@)(DA?lQ`e(T;$Nza#w|>F-DrF8+=j8(5ZR
zjx=|qgCiXsY2gUJxY$;)r6aABw02~1#}q%^*+!F8xNaxfDQ~a%#N<X4c5<Y%BVR7=
z)7_DWPEU4mWQ&>PA8lPVNl7;)EA*<B7YxT~lzKUGBE5BFS;tgQ#ol$RPH^OljwzCp
z9O>;yUq?=MWaie^&fw%bYZ~@(r0vqaHJbFK<e!cy{))23t{ULTKu3l;GRz77(;TEY
zMDY~G!H%5j$Z3q{ZB^ebtQx+sYSSaZzm2Cma)v69^B+UvnVKBo$Z$u_Qod+WHOlAc
z-=k+cGE#*%FRYrhuxgAW=QwhiBbPfe){)AfA7zpwRgR2PwTX)7I+9W{UNPwi|BG}w
z1^<msaD+*EMVCS!COdMzBQsQ!k|~Z%b)@(^$U{%2Y1VXBw6KbjnUUr!M`m+iX!1fw
zE>?08N718IJXoB^92H*T$p4gFsz~{bi>h7W$d!(~<jBj8%yr}{N1k-#DTfa{$UH}`
zcjN{~uHiuHl)BE5`Ho!laEEIho{`7(?vz?%_nbB-Ny(9iV1XkGHTNb*Zd8R{b-*lY
zp3^Bsa<e11IC85aw=r~`QunDc<+m%j!;w29$z6`z9r1gV+)Kx<4k}vY$o-By5am9i
z<Ux)xC5si8M7a+u2@5`|{4vGH9eE<s`CxTJntj@l=N#UM$uo}Bn3Lr3Ed5cpncK7u
zcNGj8{>atI7abukRb<m%;plbbJ<VP2$O=c^q=kKBURB9TN8WJcHRZ1>E>)W>$SP=O
zl?qATa^!6e`%bBM9C=rx$Lgp<%}=z*`;PpmWQ`*qvTLfzHPwP2;XiWZ_JrJ#khP9{
z?8qmMe9Gk_Ax9--og<$)vd59Vj(pC^<;b6o{KeVo@HcJQ?#OSBeC^13_VUCYkF2QJ
z;K)Wtexe=y<6x5`-)h!oMe2OxNcdOU7Du+K@H@pH6u)=m)p+n-#~(F0C;I<rn<jr&
z{Kb)9m4yGK{O-sfj_gngE%W}ANBGf8{%iBMBRd`0%|Y9!!$0))^>M8?RsGAU*Dkp8
z-Q@_AJa{k0<bSHhpLF&)l6Iu*NGu_)BN->So$(#v4>-Iz-C|c|9r3tK*;PF5Dp%wj
z$vbky#AJcfjf>2JKIFXrEwS&GSMqqeR2feMJ{Sox6Y{2siT#sar{JFyD<O6wh@O*>
z!;~ZvQY|6X6Z->ID<L&heu!dC#Ri>&<?B%8B(;^)QKZeoBYE9~)Kgwx@d!o!Ez2Se
z5^{7xu1Lt032B&+MhQ6~A-xjPI3dR*q;*2tBm(Cv64IO=n!&$O(BhJiCQ6zrQr?VB
zo7|A3MI>pdq?IE3qOFqS6Vfx3B&2;pIwYi{Cc7l0tCCKNofX;j-IN@w*j<rT@SnsU
z%8yg@CnqTkyE`N&Cgh}qoSl%7s?a+jgA#H|Li$7&`X=P$g!I#7f5ia_Y4%Sr>Ua!H
z$dfwi21oj5C^<DDrzshtczTq}s@bhW6EZB4oSBf}2{|hv-~1Q+`#B<#-?gD?R6<54
z<g!FCoW>;NoP^BQULKo}%7jc#$oUDWQvLA>NhV}mRQB9xFwkI1h36?wNXSGb{1r6x
zf08D{?wF!{dP1fup~AF;G#%YI)SRKhnF*Ptgj0a>3lef+LM~FtC5jg-GHZ^Ka7zA9
z`K1YAcktk2372#HOzlfDHz8Lg<Q5LCY2B|*$h?Hyn2?(ia*ek7+Jsz};B)mAQzj+p
z<VV_l^TR3>Z%|yIxKNSy`A27uu~j#7D0WWq=-oN^edbm*cw0g`$Ai!F-kFfQIB2U$
z+iG%mLheb(I|+F=A@?TaKK5xso=V7~gxt@pMjaka$O9a-J*>qES(1<kRrpY1{}X!8
zbQ#ATt{+YacZuar(-UeWA4y1gN+Vtnvg~6Cd0h3$pHM<MuWz4D$m<DN$(SVMSvB<>
z$KH2UFDB&qL~u{U;{}!TNiE8kCgdemAb(lOD~ih$mn*JNd^I7jDH+u{MP+V;{YFCg
zI{%vqSrvK0w$SWb33;1!bq#LQcGOP2myq`pvXOyG$m)cAkdQAD@?}ESXemCi_EADU
zOau=HvUMj;ZM0V9AFGp}MA7(E$-0DmrsQ))?&QlR^GcE-`YIt`CuDu(NqEt_AtAvH
zAV2%hiI9*?Lb3_@HX&OQ@_R!5Q01)&`7se(=zbT~^?gEqP#!)t_mlE%ia#s<l8|2$
zvR(OaimZa~;Dkt1I}-A*8mHvXg!~oh{H<iC;y;RP^{#~MPRM_ePC6lbl<$os`!qN-
z#lz(Y*XQ}kJ<6*|yqfrtW-cN5h!+x4jCe^&S&=mw)x@kOhg6fA)q=rhRTJJT)lhCL
zI@Khhgt^tKNp<Bc7&x%Kl1N^wnjBS48dQ@*t4VEDs8dbqDLE`Edw8|~$JBQ~Nl|=X
zBXMTBXS%23!0s}8i6V&Pg(2shk=Qe{+hQPziedm1L?tSiL4u%y2#TO6f`A}OFkl2F
zBPt+4P%sOAx8MHuf4+0-ymRZ-tEyL3uU=PIS9ilK!Nr|vhv0<ZhJvGpEQf*oN+INg
zP_;xdHxx{YWGFC+JYiNA%4og-lt@+)K;dd3R1cwsL~9By)|Ta89YU=Vc}ms^;o1;-
zh0r^Mx}jhiwg{nR2-k&BPsHkn&@hBXf*XhcZL+aMDcmF!%t3MrLTD<?W+9{m6n9H=
z!K{eURw1+wp?wG)Lg4S?_v}x%38AgDi_?&Ww4=@=gRPQ|A#@6%O9)*<!5&eu^>!9X
zrgjrG2zm(U9tvKpV3eV!aM;*BA@mKQC<H%*ej)S^VQ2`Pqys{@p5cw;k+GS9B0M;R
zAt4MB%<ln?s~`M8oC2Ij1j9n`LP$&ALZPfB6GB!n3oNde|GU2-gyA9F9KtOj+$g2p
zB$P6oj}&7oI2T5Uwzq{avZR+rg)mz17@@Zc9b1x0!?-<!J0v<z@=lau?_@39e-JvJ
z79xP0dj#Ao^u7=#2$)qr*ff|Vm;-S?OOpbNt>VEDriSoY2%m@W5Eq}a{@fM9BOy!+
z;l&VM3SoK(GeUSSgaskY3}IFXkB9I?2*U<tW{2=-2#*Qo7xj7bI46X;A@FwzOdT$_
zll+%QB|GoQ5S|hKQz0}Nl%eF)wDak0_y>n)LzoxB_qP|#4`JDv{C#JF-+8RNIhUym
zLs&w^R#aFN!r~CR4a$(o@H{81fTgT`MTHlnDDo+}EQIADtPkOx5MJiw3gPt-)`aj%
z2rEN)Efm}r4-ExXFsusURSsO=B8JorMf`!tYWBvFrqhRK)`sv#2ycu0n<1<d{#zmN
z2PpseMbwtny}Twl?qHfX)GTU42pdCqKZNZeyc@zM$+#_q%^_?Nyp{ba9m3vtPdb7B
zJy}xUXI@rE1^BCo4?@@>!XJjfkNICMKV@L6cM9{zGr^*0cL*QJFij{|^l=EEgzzcH
zx?Ito5Psta+j%M=*Z>TcVPAxBA%tH-_%ejALik#8eHX&<5cUeD%)Su53E|ri_6z4g
z2nX5ll6C$eVICEFID{ht{{AXhuQD8??a4Z`-Ly8}hj224Qz85i!jI&0-@Zc83C=+(
z>H2(9{8I?0L-;v_^P%9>$C(h$iP%|*lJjMUB0kk+Mh2co<&gl=UqiS^CmBW}j7w}_
z2&Ka)6UOf${K1T3)i0gR|C63Sguf;FMt%Pu0W|x6=}h*gA2WPXMz7Fi(UXLO>2sCP
zu|_aEKB@2jRNpTfM!7KF>79;*QC?D+6bhq);824=GF-y1(!f{3!D$N4ZZ(W(7_l(;
zBP1;hQ-B`EoJGN}k>V0H!l<SfG0I?tVGEPk38SEaPf#(8N@3Iwqd^!sVdREUGmNXl
z$P1&g6jd#Z?y)?UnG7R8jP?zDgi%G3$n+ZcRR!PKz-N@9dKfiIQkk(<7}tbxZ5VaK
z;NO~RhfzmTtEfJslZ0Lu#-0=TU8DK+!gy55A!bnx!)O#nt1w!J(O7ad3nLXqkC@*?
zXh9fF1vul2W|mFWpHS31jO7jdmSN0BrbQU%Dh65+Z)xDS38SqP(mssh^4m%Dt$T}Z
ziRSkR1(Kb@=p4q*Fm{E}g<=#42Q&Al+6}vf!GBKm3iF|S!|tq9Ku@9j8u(=P4x^9A
z^bMnb7z4uSCsF>Mj~TBQOz=n;1H%{;#^5l9gfTXZ+rk(ssa}c9FahTp_-O%|FtTA3
zhEWs-fA2La44+zsaf_r57kZOWmVcvwp{Me1E&*gRjF9Na|BpFZ@ED=Dmhf*EaF5VC
zgz_hS<HER8@LfV#+IRtX3*|2t?-g)g7!$&nD0qrcN=^#n{u2CvfXPDJ?aMIrLBUgn
zJ|y&Eq5K6KQ>O`@9>xp-GljATW=TKHrnLwl=P?0nHLo>uY2@KxS@lF1PloYS7*B`s
zau_SZcqWWz!&n%`A`#$4d|nvy!@<>@^3Mr#flzMm^9s8-jOW9_F7fg(mav2oxl6-%
zfs;<Y;PGM@FNLv8<ar>UTd$=X2AA^64gI~Pi}*Z<Wxf)|O3v;uHiWS%j90^08^#-)
zVr7b63uAQ{uZM$|l_+`o%Ur(w)Z&fg8qUpzKJlAjtdqjmhw)a4l5f*Kdj)&BeH!|F
z<B1s~yaa^tZW!Cbct4CyVQda#D<{q=Z;Rx5FC6SbQ}X;(Mf@NtU)N$_bUUs6K(L(n
zFpLlA==jQ2!{E+hM=|E*yP>~3jE`89g4PN?4&xKi=R^dba?Xa~MUal*voJoV>xdvP
zf-iXZGmL-3xE#h;VSF9NDb5l0VHo?uI2^{2Fun=n+b|A<apJxrPP+Xv4f~c)6FXN0
z^q_DK3BC2l{G;MJj<ch}I3~<z?koB(jNy{~2T7$fIT6N>f>*6eGJ3LvPqEWsoC)I(
z>aV8G(k+B>F^o?e`ae@E#lH~7F9Obs-<a3X|5frbiOR63HyQ@uQW(GS62Mv-`YeZ>
zD-HdeM*g2+{3Tj7Y~=qP2I)Ux&?9wk<X;Knzc922^ax5ta8(4M2*MHE(8w<xLD>k(
zMFMwSCIU8-pu9v0Dn!sY=1*+oKikM>b0Q`DSOkh-RcN$?zowB-C&rBN2#g49;lFq~
z;FyA~2<Ye-o~Y<M5x5Z~B4{5*#Rw`zz$z%ofnfjVh&%z^X5|Qy5p;~8Qv~@DAcE^6
zs24#Mk*OX*jR@DDe$@!7Ng?~h-`0%a>IiB_P$z=jje@SL6~V-cfy2Kh5?oEbYvf-W
z2`&f340WZnzZwPYtuMHF1T7+H5J5wUHezouqYQWPpf`!2AcCjVpzx+rW;2mY2_~~;
z1g#=y$2LaLI)XM4n2r69Pvj4b`fWv$9m`7wb?87<8~eN-G1tiQ=?;zk&JlEpU}z**
zPLSC(g1!;-i=Z0|m%Ke9=ovvT!R%!ATW`UAgqDu`49wU+LTe8!{Q3w66bn@H2Q~Hw
zMldLX!4V8$=a0!@7~9xqyVyY5)vyS7%7~%d`D7-7Yy@{iFfM|^2%b5cKRN>bajz%>
zpH>vXaEXqLfIsZJF@jqn7{S49nYu~n%|fR&_NQ*oFc(8H7!|?7#(ptpjL6&?!Pp3H
zW3NswnpHZVCEOmtoui5f?u_8B2sTFWZUp1mClS07!O95u^Tc~1m=VED;t1}GV1h8o
ze^9_gp_3xGU%&%GCkv&_6an|&S};|>LqZ=eNqt1Xv<RjP$emS>S!P8rTcXcJ@MwwT
zlMy^tg69aB8^PlxoF{1ZjeX{2cq)RYOZd+Scvk2<q4R|v`stbl>>R<1B6v{%^DY+f
zd<07bEG^-`Kr>hn=*I9;1j~fKyd?GI2v(Hf<Npp`#UabB`xezprCyET#tB8QMX*{7
z<MjyE381yCiD0eZH%d5fmRL1YKW*&4P0N>i&-DV{5xOCQKN<&5;WtIFnH{yH?sr1B
z2>mpI_afLD!8VC*7fPA;>6)7O1Rn_J!xH|E2zCnIRl?aV;3J_Q3;l%CU-Ise=x0Jd
z=OrM5F9oyM0|LGh`nAx#5$qH2jnHp}QgVL;EiVlrI4GP$LJyau9uaU<=rN)9ed``C
zN&TMAMDUL#oEA;|lM$SX;HL;q)4~-b6r73RES<1|(hAN+@H2ZXf<HM)ze=Bv;1|w2
znerDRXtJUL!^H^rrVO3H?-5**B;wynm`vgg$X^ls9SP1^l~QoG9HIFqf`22p9KjXI
zGOtu{bMYVTq>0bNkYiW3WprivB4UCv3RDGA1!WbKQ-b&Dnnm)<E2y9#q#&&D;Yg9f
zl3DNGbVLcx1QKIv5pQq^VhS_`h5}P0d00zVf}1iX#g*XPGGF~*36=s|3gKx|%J9gR
zBVr$XnXagyl7dDG8Y{v1!yE-rP(_4u733+XtZ?VNs3nh53o~CR%U@KXsH%c$3Ti31
zMnQE2H5Aljv7;K_&?I=O!lP@<c(sB_d(%9+Oj=t~>ngZTK^?&qzE(i-`M`P#8Ysa@
zX6CI=O@;)g3K?xEOqS3@2@W$fQ;<?nprENldA6bWghO)$ErhdbL~x9OeA1RmaN9*r
z8zor4&sXrAfVOO}g7)ks1sxTPRdAbvPHe1#VG2A2T@-Xx&|kp-1>F>MSI|>IFUiXv
z7PF`xg0JaTMBH0&KLveQ?4+XZM>2hx<w&r^<zI~X1N7@fV32~r3I+;h5`WA+MDS1r
z_caNA%A6_)vap1-f{cP&6pT=iRZytlCIvSuC{o}n7|upX#v2qoNxNEFm%lb9WeNP#
z`idt0l-_|>x%?%)h>cV*O2Msyxmq4AN{&&$1vAAqR7kT%f_`D#&JI-Yh=OSf#woZ{
z!Ts!f1$QYJui#$lso-6yk>%X21otENu*dl0MgCJ>LGasmiIOu>QVIC`b-$WFS-}(q
zQx!a<;5#k<L3Tw|-&BI1r&Dc~^RR;4YW{{vMa;tJbOkdMJg(pg1v3@QQovtVKdNB1
zf_;^PA1F7x6#R&p!jCDKL-jPDzgMOLb6NhRqCHK5KO<9zClx%U;AsWVC}5?m?pf&v
z{yLm_=Lu%pe`w+_P_R(J0VQ}0w@ATa1$$YSg69=1QLtXYI|`O6ctOEx1+O!sf|nF5
zSMahF(ns-^DY$Scf9$28SE<_y&S(WI*`GTzRO$C7{wf8piZI7$ko5U$99$U%W?{xP
z3f6L(OO`hktmEXWk<<1Ck8R<fn%`3JHhZ-&9VrO<jsL0NpkSkd4;Ad-xG319V2gtH
zl;9l2W}$|fZ>#x?ZdI^N!TSnY_Rf3uV5a@}A_DTaEBIx71%?mU+o=@6P6fLZe5T-Y
z`W7{Rw}MX;d@7}VB=lpUEFr(Z-y`_NXg&i=WB5WiUrI%cekD<YuLZDDp1z=eApJ(1
z$+trH3*|BOg9;8QIIQ4^g6|dlpx~&2N86^pQ}EA^Lyif}X^?49;FEb=lF0v2!3mn5
zg1;4<RB(y|!FDP5iQRQq(K(t#xzuT)1ZNbSEx~+0lmb7C*m+?x`YZiFfq#+KLT6Pm
zc+B*hg5MSVNr!Mge=^@98D8+q3z<JSNehA}uzcjr=p6-q-Cmi06!2_G!4KZQ3N9;X
zGQG_e;gI>CfKqB8aFvSE0*K3~C@Z*}(DEhxIR$>0SjD0^7RRBeP*r>r#kWyJRm4=Z
zilTKCnhIS-eiVozu5!pQPsMx{rV2|%UlsjS*eV<q%~iBe;i^cexK2eq6%|!fQc+vQ
z(B)o^id+>nRs6R!lc%DxiZ2TM>MD{fT*cpq)74Z!#qI|(%L;r(s|aSassM7{De%vg
zO@FvIQ$q#m?An>Dr8E{;OT{&U&tA#?QsCE7@uO1|Zt7pFqAu%g>NjfYPrkaazKTJ7
zAMkZAcb3;cMMD*hR5VtxqN(3hMVF?26RLVRTOfGpr`b$Xe`-^|nTnLiEZLo*B>64b
zIV!rT=&qu*ie9;O8QKVFK03Fpigqg6tLUJj$Vzund9FJE44qX(hom}5^x6Yia!P&g
zF?3bID3f}q=&9mFQ@=M$Q&F%jyP>K7WmEr+<LP$qXYZVv>BD9=^$Gf`7@*=V72{Q0
zuVSEz5h_Mfu`;PaDxNs&6{#4kVhCHLVwj4IimVE+YN4kh%`s}`_pMYk@RUbTyP01|
zg`4^8910XvD<sEPaf6ECDsEIUx?1vP(Y(yivNwtHRJB<DTU1bgHe?jVs82KhP8GLo
z$&67kR>f^9R@N%Kl{Gf=SH7RUU83V?X8qEP-XW4tT~$a-v2VBKj9lj3t>PXPkEocY
z;$9W^shHlNaI%UCD!yEpnWW-=0TYFGJe+xeb{I`D5I@??C&-pdO;Pcnim56dQt{$R
zkKthzwQkNKVCs+wdDB(QQ1O_GIVxsS?1uE|czU*gSwfG#mwZ&k3(fpJhqD`+`Eyk~
zuHtDG&#-S*JgMSvB=wYx_{?#6T?)$nw$WoCIAN!s<pi1Uu``MP*^_)u#R3(_RD7pm
zA*Y*)4`{$D7OQw(#ak-gR)h0nOH`~@@k*=IQoiom%zuHJt9VJp@n$}wuL)SDV!42q
zg)(Ucvy|YK0#*rqRmHB-g%r5*XO`Ki&+97Is93Aw4Ha+B_ky4zXIHYwN&nu=U#Eg}
zi<iDBoVs^YgY_!jQL#bAMiuX=*s9`PY5OJ>n>nEd=e-$Av&=0j9zY?BN~HXg^S!1i
zf18S%Q~s2cPyD`$?J5ZRNpy#bohm+K>!_QG@S_>F`eP1v<@9cj^`-_Nu|GHGtgf8?
zg#9xv@Ae9*PgRia5jy1u?+Xq(dtSv66<?|NTE#&X`(O3;s@SLETVl=~JN=E&zxE`F
z^X)WgXml>=0h#{if6X3}Tu-Nb<}J3mqbd#@$TBS1mpQKDd#V>jB+6|B{7CPl;vbf&
z;-rcTDt=LMO2toXNM7O3D(dgdzMk?=t2m>A;H-*s)HCI;Snn}<!+##Zd6vH+dphMa
zOY{6BC+V*$E~>bs;x`q4shHa@ecuf4cNKrA_>*Qo!y6h;lljwoNz$tAljMvlSNK`!
z)W0gOilTHB_sq;(R&j+6fpahlwYh)fSFdJszZjH>qHGiu=)k>HxhTp<v2bg)M{_^b
z+;1>9^XrmKjZ`WW#cvxki(jMZW)zkXMQ#*%^#4)BqOha5`B++uV$gK&WZR?>h0aSr
z6gM^ZA878s)ZAa++%I)~+Kh4n@{gryhIL2NP84nwi6|;YQ7MX?D0WjZ3B}-#=6;11
ze)SeUNBpx*Ugc<D{K+V;UgR<K-O->*6jh^W7)7Hfszp&firP`si6UK4wg$zb7(XVr
zX7qnvcmAfFT7tVZN?sGi+ojU&q~vR(s2jy~)b`!vM_asl(ZIkOl;o-}V8rNLGTE_>
zqi7OEDvIV&6hzTfgquaNV|4Bhi#*D3YX9CTNiceJZVSnKs7cwD0)Bia;J1mQZ4@J-
z7#T&oDB4HiM{z?G9ir$MMYkxrQ+R0EPEkG`2sG&|v`Z9olZ6Z;l~m!<prRg8^o*i^
z6ay$9#cLab!uv(hJBmJ0@G8((DrLVBFRKzXjjgyoih=B(C^C{dNa!%3gQFNCU}zLm
z^)$nh-f2%b_Ly8=w%EWd2fB2s)!$z46JDVt6-BXhQw~#yi=H>K8wIclHw(ChE!tj&
zBSQ5W2^|&1=qO%^Vr3L#IHplN6~)t0jHPWvF)51sqqseaJEZ)3q8KM&ywE#^-X-*h
z(ScSBcT1Gl(|ZMwbDw|-LMIAk6CQ|Saum~}m=VPkVLl|3@(&7_DzwtLpg9jm@rXpH
zmB?^FXGSqgqK`*0Tfk#NA1#r&A}Y<{V3lxIZpwK=@RLFrW#P|orf_W^#bN=^3Y{0l
zd;v^)E{X*uc%gu`^D@s1cv0w*lGLS9ydd~=og_0dycESU;Vc*Wvd|Smnc6$QXjK%i
zMzJx9cWE}92xU@hIhVt!)q)v)UBH?smRCzM`bHFQiom)k)(fEUTLRvuy(N>3GQ1PT
zhLY4N+mf5a2tSMB^C&h)u_cQ4qSzY6$L!bv>6h1f+oISW#RpNm9|fZf?cPs*$f*=X
z=gm30qZl<hm&~2aJ~XqdM5a{B)XgpYk7$Q2e5QU9#iyK%qjUF&083!^p4gB>m-R&y
zUq`Vwiu%*NFNJ<3^rum|Gs>r)dEMI=4OSQ7-?E*<>HSe0h+=|{i8>BOaftpzLv;;@
zqc{@9qcJ=d!_g>?al*#XA%^dwI3C5dG1QIWd$IG=QJmpbAc`NOI6*JkIyInt;ZISV
zjN-woQVgeP_GMEur+W{z@R@WrigQuq$AB1qj^cb2MlA4D7ozwjiZU^jjp5fQF4FNv
z@p}~WTKJdf+&EY*{HNz;E*V9CMDeF^&Wj)WD~i9_pDp~4C+2ak{S(E%QCt?z6`{;~
zsD=NZ;8L+blHn==rDNFEEX8QK7|O>GiXj|Bg&0b=^qFgfQAE0DdL|MJJW_!$6~U@d
zGNS@wF=!<mT|k@-Y#BIkGltnmvsMgt3{H&CH`9q2idy=v;O1wty;}MeB}*ltIYM)V
z<_WDVltm>4{5mvUC5Eao)QaJn7^=mvRZG{5;p!M-KV+-NP$P!r*Cofb<Oe!Z$DYjW
z*_kAtv{j9qB@2Q@SM69Z4eJOUQY(2~4E17Y7DFnA`Y|++;b;`&Ta&FC#;~TP|7A;m
zT1$UHOTTdpO=39P(l3aiDf_CG&rnI|sQF&=7+S=5N+H!Ih9}<5R$J%QJeX}6L#r4*
zU7uxW9m6|+c?4}^Xcxn(y_wE#x<M<SX4x@@PBDy+;cj+I3|(UIW4IxPt}%3rVQ37)
zVtjJJN6+}%DI5?(&lm>m$@Gb#FSQliTPT?ieUk0c%71Emre6&GW5^s&XIuF%9m*~~
zmcBlQfoydQZzt1(*<H_O2uQWf*&!00+REqUb#0ZT7ektPS>~}cLtzZr7<egX*tscL
zL{o{RKK(i~zm-2ch8ttJHHNV<+!VvjF^q~~bPTt!fvx-zF^r61@zJ!uElUmonWWoV
z`Cqj1$H;(=IOpxVnxB|R-4??gENXwP+hf@Le&**^!3c8P$Hj1G40pw_A+M0p@~!>6
z*8V-r8^hEX9*W^U88Rk45W|ERCUPiS`@LKHlVZr-n!R6WQEUGvB{eyQDKR|Aes1k=
zXzg>AHKVn^u(khTz0AX+%#0WwiD4SYaf>%ShF`8qv)H*mWqA>t8N;j?qIUWnt8jJ<
ziyp}^5YLHWZVV@4I2ps^9C|7r!<HDHjNz#mUX9^3c30W-)6Bvih~b$So{eE14JlIi
zTnr1?$>GBJF&qmO*4vR?C}3x!Bm<)dPiLQxVF^t-hL>Yl%A%Cii!r>!PVSg|fpt|6
z{4mS^uTgSY3}3YN89vD^S|OFL68Z{zb%nPw2Bk2~Kw*Zz8zooA@Oq5rozfd)sJ_5k
z6T=%ZyvgaXBfD1UqTHf&F}y{)m2%z|=6ZHcqhy<KVY?mKQsKfM*prg_+=2{?Wohq9
znVaZIW_gUh#~Dg5%68G)#PEI$dt&&EQ(#ASyGZV$FN)zqY50y9cE-@=Xm)yT5!-&H
zwNJ6#tTBd<WB5d5K9%7vR)8`bAkxp-_89iX@J$R~vRmFwejUT!7`~FGO$`?=2p6(B
zo5O_@+9mhYDf~8u{nDJnLJ!1nh`Aai4@&g6cRV(YI<PB_(DK8Dtd7IP=6n~!4|FnP
za)^(|z;6GZmKj5ptAp|SQ8?^}Q!)HRuc$%Sa5{!FG5i+8@9dMg8LrLF#*jZOb&i*S
z7|zFVfj*yR{E9bqzQ?=fUt;*Hdd_37c-Ie3U5w$9BsE%^VU#j|Nb~;|bLEBOPl^7;
z30qK>(SKt2H-^hGT%m)~5Yg}--N?mkDGgU?c<<xPb85<J<JV~8m)6j-jbBDXl~=v8
zLdywdw7iB2B{(GDY|R`+!=SISs)neBo4?KewBCzpX!dP(KpX!>tB~`8m}3#wP*Dr6
z7lsB?gQa2lDbLopjh`xeF-z<SX4KV?5PVx3pV3Mhax~;h-pWGhRPzK(DM}|bv}uuI
z$QJ-=C7@~v|5VSiH8j-J@Dn>+!_^vUX;`Y^1r66|sI9@%kk(K~!?hY(X=tsXu7(8z
z^XhA8pkWPP1QuFP!*kV=jB*LoP(u?91sWP@!Fs7N6&{>oxG$M(%C>80uAzm7ztX9D
zt}E=h)JqAj`ChiAhWSmC59cH&E%g}wTIRLU&{jiF4ZSq9)9~kfuM^v@p}mF<5?x&_
z8O@|RYWV1~*KU*7MQZG(p}T;t8dxcHXtOiP>UyxKrQY=~WJr5!=%e9!4Ffgw)q+(=
zKMnmk?k!X3lgDUYev)*6hVp|_pSKL~APqw_4An4L<fnBDRt^JF$zdAqZ;<>hKS_G)
zCNHBQt6{Q+DH;kj6lu6!!yOuY4L4{QtznFY;Tmq#aEpc!Qq)aCZx&jiMzU?EWTpJ%
zNQqLJQKHq}A;G$+=ES^PHH_6j0Y-15b;&w*%*xz_!&1ChkJE4`TdiS&hV9jocWJnX
z#-MSh9e1<9>dCvBq&K{jA*I5ki4~ripPZ;+5?i6+0Sz<XNOno5PK?Z9Y4>-}WBG$e
z<q|)rVXB75G|bWPkcNjfOw%x3!z0qw>}0<~(A8W9&nV%{W@#E`X?SXMPO%MqT{q{^
zl2kJ1YIt13vl`}UctYCyB!yXWw_pgWRw-ncKCR&y4OEqSzRwmlNzbRTX;`FTF-?)y
zJ27ve<YkuPZrT4qAoje5B^n;}Qe|5uNx#nz=!+U&((r+X4{7I(n=R9@O2ez1ZW4W2
z=n4(52v{j}XtN|GcaP3_O~Yyp?`nKW8L!jqHN2x?gNC&l-q7$C+oj=6Ex0?Fh}`0J
z{yGi4YZg6x#$$AQ_2hc?Gjba&^jco_&fS<(EVEHVvHb04yv_7B8rNpnB9hFQzdN{8
zZIfcR3w>W`adu|hp<$<nLtK7q*ro9sP~gPh#~GpFV-55MUugJ5!>1ZP*HCV?w?~*0
z@{>&ZOv9-msnN|+q?6LAXSXN6)bN#tuQlw|aOsYmwgXe&?8?s1PZHdppZrF{w;J|K
z6$dmN<g9F#WOWP#x1I6`j%YZlVO`VYkMtO2QpYqL*YLgI?=&2#AMDaFG?wj}AJ~lp
z^B6rL0w;xrUiMDW7m2_b4QDkp)%kKO&T06WZP!s*$9WAGG=z0Tbo`>>SI!X)rF2}R
z+8X}W@Q=ptG2(Z6wl&@#8hUh0a*<Z&lvjF{_a_~W27*_Hq)vp=ys!CJ!)3~E^sZ2!
z{3O>cJ30pRzj{eBuhIiQR$50H9Sb((kW*F<3M{Xqf*zDpPNHYGCtt}AY6%IG{7;4#
zC^}Rfmd-b_gYu&~G#$E*n8;AL?)GF{k_;WDfH(91R}QyOs2<gDbX3wo;Oa=|sHg`U
z3l+C`)cncOx!jz|(UGfTQ+{$wev&&U1W6tFI%?{;S_gDAP9_<u==il|lDBwObsjNA
zbv?M<t09!2*63VP-tpDaaSfR|8tAC4qmGWc?18fB|C{62N{8@H^Ew^%ba1EZv1D>*
z{UkxdlF}LrXe5+nvg9U$3xpoLF(;*?xsH)KM(Jpwqooc{M_NZK9j$fr*3m~t8y#(R
zbk@;DM>`$ub#&Cxi7o1r*Fg__0;l#F@q~0x6JPXR8kI}hRYy0Dh>o5*y0e6VsbkwS
ztE_bY?OB@i+8N%Q{A4d3f7VY1HlH7Ot-d-2=(t|m)lWx%9cz+Fn<rj!lLM*Ye2-y}
zjt4j95DeBaM8{AaoH$E1XUQQLCQ)szm(h{cp&)q++fpV~sKeKB0~=U6UBqFU<$XCQ
zP5y8WqK+j8GQ>CPxJfXh2bO!q%n>^F^iK2I{d6)pTE`e2ce2SkZq+eX#~pfL*i&Q{
z-^TtaC_Cw*ce@T+EY~v(<8;uvO4TbpUdP=!?vrl6N5|@2S-SLlX@_e)V*2*~yMj#8
zalejG9N{<~&@oxZ4jnsnOku-yysu-s&dn}7q~l2)Pw9AA$CsmWrs<f@F?!y6M4|+r
zZuDm8cvQz@Y}96NrjA(xh-Wib8=qi~j^7Vto#(yBb<EW<@L=}lis@<fGEe9rb3q%Q
z^l2T>P+=Xf>v&ejJRQq*ysTrsj^}i|pyPu!{sJ8fSvYeYPXDmlTf}Ly+FPs#PMF|%
zcK(2-Z-vvO3`-@tnoBPoFVVWBZ%LQ2@a-P^dCPWhg^pD^2pC?`u~NsOHvUb2WQ#ek
z>Ugarl~?~YI@YrGW!~F*a3Ov}$2y%~*Gv(=DV(m`l5dF_{F;;Gz3qA(@95Z|V<QXE
z@t%%%#cXIlo5jpFNwm)XEIC_uWw+`eeO^YH%x#>ElJtR&6{%!F!{mp0uxO+o*wQC`
z>s#I~9lLdW!GX~6k&cfg^>d+jhf|;E_*BNd^ef(gL8(1dm1aLE^>NE2R~KBok^hyB
zuQ@b2{?M^k$37irbez@kjgD`1e9!LHv0n;2q~oxTOKtoE+y&yWmP#}9=l?)UrH|<N
zPRDT_M}>b(Xr&z<ZG!?_jdNMfF8Wc&2|A*-{%Pr}lR8f6DBsqnz~kq<pLG1Y-utI&
zAq(X4o6TG-_m$5+=bh8>GcN%;F3|bYQMC1cqi3V@r#}CAwwJ!dLEM{Z+15YypGQ#d
zaGEl#@lPFp=_ngVxj6pT@ek+w-`O&8{Hx>5Na{ZwrQ*0O9^;Bo`iGawrml*k>@OZe
z={VlH;Bm8;IIa|q=#w7NA@CvP<G~I1vf7y{i!&AC{0?@CvpB+szj3sRqjel=9ML$g
ziKBKLu{g9iD#wwGLysdK4>qzY3N?f}Ld`fV0k+WRHwW|D6-<zbgAd3E7%B-fM`*6l
zyf_}N@;^V2FPxfjAdV_=RF!BAq0C!NKy{(TS$KiFTB5at&Kw!+!Pbcf=3PII260>~
zn9;fdt`k~M=+@oIh60+!1GA(|BZ)Q^+9Zy)O_K$Jo5nFpMkFOsN;Z$9MG0;xU}{^x
z4YS1I$8kd(?c!)3M^9=M4`yzMc(5VaNpMG@JCnf*q;niy;^-R3=V!fcaje~xQ>uTO
z{O)n|h=YK9(%y0Oi3hinUL1Yn=oiOe4px~|f1!hf4v6FWIErfKa6!VPfpHYp%pqWy
z*VZ2r$Iz10VR2BVSTY?)hB_Zj@7tC<zroAKv3_EvP-syc(?7~EIy{aW<CwugjN_&_
zZjR&bIPQt#mN-VlF)off;~2><ien5-D~{3e;L#Nyr@qiHP0EK9q+{c_Jq~VCZMZgh
zTO4Oz2-Y*CcL*l`t~kc#78O6_V)pTI6lcGerP0I3F*%M2aZHrLCrNdiHh6_?gGXcc
zQ`MtsMp@C6;@W9c?9aCTgF>eYr2xx(L<FYC!RWMj@Yt7{ue&x$eP+cmJC3<=JRT2j
zvL21&<4JkENhf|Rjyb|CUbH_E$CGi)kK?&Go{FQ?@$@r1L2)$wv|vU*sgZnEIAqR?
zgM||;hzFNcZjdgjm|jS08JJpp!6SV>jwNwivGAXTrEEC+(8L%MFS5rt0Zr&8mc_9=
zj=KzuH}G;CD>!ovls52694q7aGLEm}SQW>saeNrZjyPV6V|5&x<Jc0%>v61M8|e_(
z4{_{1?!76L;0*yExAl*=^~<&M-{#QAu_2C)EVg_hneW8mwhK}lwe#O)r_qYq`Mk&M
z(av8HN-@wI-`CE6FOH|%`R~WEmEGIU|L9k58^`OMM?n7eI6jEu&2~P+C+&QC@11dc
z633^UCg-xd;^40S?l?YThsSZGozG~?>PgZ)as1LO#qfC?p9$W2GRx=}Y*(Lj(Yr~~
zujAMo5B5g>jAI`sS{$e1_$iKW<Jcd^u{ge?wS)=}#BnH&!*Lvx=)hJ<GLOV@`tR&f
zTJ^Cs!{kHR@ki2Ks}vrO<9lin$B&Zq11D*fLN19fweu-<B94<Z$U|A;%im|0eV;u|
zGmhf|HKczIrO(E3P6U{%N`Ct1IL_0d<p))eLm%~P92evGEe;k%4hy*?nh-GhdmMjA
zlvPledj7>rKpg+D@HnQ83-0AFa~8Mv+g_C}WnkQ{%#}F)qksO*8*){e%;BSR$Sh-^
ztbuk0+8ZcmpuB-v2Cgws!9d7>W<WO(Hek%iu$HKShyld_uV3F?%#x`ZC<e1f=f(`2
z$O|4d#*N@sG}k~LGa4|9qwRgmfNj7ru=#t>HBh&`zw?quoDj?`6-Ba=&>W#hD<>-(
zNE)bNpr(O*VOBLzjXJmYVW5hD{_TB6s~Z^6-tRcwW0WP|*WSO{01tAkY40B_pIX%3
zC$4Rvj)7(dQU<PNy#_x}={GfSoq>7=8X0J8puT|y1{$)oL+Shbr%69x3GIF23+??f
z9sDK+3Mkeg;3PWu+j(NAgFm^0zwYa7a|11m;0oBr09UXr4YW4?ckyav;Pb8jyNW$B
zCbzAKQIbz)I~eF_AZ;LHpp${llGKmw9hT~1pof9I?`0Xf8t7)AyYQ=?_jm?_v?qlP
zJlny)F)!WQz<qtvS5A9<4D>Znswn+%nL^V31_l_o-oOp%)L;Wc3=9-JNT_*zy7u+y
zRWma~4Xp0qds6!_p===68#_AqSp$U>W_KAVGT<9H)FF7Xv+1+U?%i2(NN+T7lYub?
zZZ&YTfilxGBMgi*aEpOm=e*x~=aJKPQf8Ea(FRs_%lmn=$LMn#1Ljx*w;8yDhH7B)
z#?0*oeom*k$3@K4I}I?`za4yDC~v(X&5U;&xW~X}>{0{wvegD2H}Hgk2?iz_m|<Wh
z`=3dh8a%}QH*mj!2Pp8jH(BUZ1M!aj6ax<mAfEg{CcZyQ0X_wI#K3gPOFT`$pjt%_
zKj+om;?1HdrczuIKW1RI;LEj&9u?4bSgKA(e~y8<?4p+bx{F!TCk;Gh;4K4h8+h8l
zGX@qJSj_P<@Z=KjIRgs}Y+B;YGcex>{1`FmLIVufmrA$o=&#}yU#ax-29_9DL1)e>
zz%s8&EjO^fWs2Yh11}2aC85iNc1tBsKAoY!%Odv6-poplT1Wpi4zYn%f?pN7;&7V$
z*A1+p<iT{e|Ge=X{j~<(Fz_Y^Zjm>qV=&O`XnT@G{P~XLdIRqm*kNF&f&Z>9+F;;)
z1KR~}6#6dPC1A7AEkY^zo`9_ewh5RxBt_;22DpR7`_o%r_dXQN=*&(@9^~6a(=zap
z0pbOT!jIVl9sN%Y9O&qO!a_RwPgYKo{@&5wBT@3dFz}^;;|9Jr@RfnD4SZwZTTbV5
z-d+P!PG`OL$$bW_PCn-pr`Ud$X5g@aBlHQK{8lJDXkbn{bx0_8_&FkZqjDII8aQU)
z%7)B$oJ5_1ZW;TW*S?eggMl9n{B7VL`alCG4g6-{cLS#k{KR23@T-B-2F@7RSUdBx
z5p2buWsBI-Hvarj@H~rrV$$;>bD<>ZBK^#A?_^F9We6^Df^_l;sP-QQ2LJ5+W#FMs
z{-2ysm5Ruui=*Vf1}+ElC?{&-O0fYCF9@0VPcQ{anYhXfW=CnEWrUU$T25$rp%sK)
zY7(5^SlY=Cn~0boP=u;Nd3cPRr`>eSMES3>1aT9Fi5@0;nlMdRCYqQiFkzc;Oyruu
z5f|4CR^SzdCZv|6oDbnrs**5sOb~DE<mZ{FY$9nQ-$V@)HBCSSstIKwRRmNu@kyuP
zo+!K_S>5C}yHW&Ko2X@?u8HeRTw|i%$eh|H>X_h$aPd|!H&_U+HNkBbZWPxuQQt%(
z6OBzYkYdSfXyTRDN#<p);>~0_ZJH3HO(|SZwxj6Z%tXpWa}zC0{MgBFXQHKvR#Hft
zVhuYdTbnq3BFk`iU$(6<sQ`6uFPNZ%0B-(tk}_FQXKKqH%dOj0Xg8tVg|dz0_Y%qL
zO$;>ATW}xqe~*Fsn&`*o*GMkuo9=I7fC&NyK8YA)Vz7yuM1F{gp;BNG6)uw+X2LVU
zofaOqX#AR&X1Aw;iZUj$f(wO`Nn<15m%KNa7%qUE8%<mu6`aqxS<1hqgg-*SNTH)R
z5HmgQ_1$V>tcgO4XJ2ufiQAc%Mr+~@6XQ(0Z(_TNJ5AhW;&BsCm>6&3ZW9lhm}=r4
zcFz9neI_QbBB|?-PQKRJ=K+t2CJtWCPBt+~y7Yb%514q_O((w1Xp{1ICtj<wKZTkM
z4W5@hWa42HvrRl|;)PO$kC>QdV!8=FO`zp7)UHt2zOz5W1nEqc{IfSpFu}YgWmCh-
z9^9IJ%)}fMb7|^F(u>QaQ)BW7o;2|k%j81c#M368F@sHj=S@6oVxEabw3b&r=AF;z
zc5eY|Jmo#dhQE{{SSZYFXP-M`_jdLdn>ekftIf+S;k+}0XH`^;hxABa;^N=L1```i
zEN3&BYGSR46>QOkZ2$MND>-v37rw%JJNv6U`>Ra6YGP++|7d6bH4_wISS{dnp<TZB
z-Z1f|iMLIxr_P=IbtbfZS-p$T@Rk|uM-epqH(RZXU(m&Whx1*)yEKw6{uUGOnRLH}
zn<Up}p>N9>xvgff!@SKzv&}iwJlJhsn)$%QhbDgD#4)jhikbMr#Fv~<!^-Y5@iC{i
ziQQ(fDe;jR+#xdKb(?~R4xgIXW8yQ;waeb!UHoUd_&mw*xrrmY0~wxw{>sGHCcZK8
zEq%h$%w92)f3C@S{v~f8ebLg)_|k>@O&l<B$i!ieEL+{hZ#z4~+m;Wz_(!`0F6D@c
zV<x^cag-)EF0W~WLNb5v;vZ)lO%U)vGHEe5VdA8TizY6aIA!7|6X#6)Y@*!J44Xr(
zPMg7lzcVJz3JAy2pMCE|o2Sm3_(jxny80K`KV5y^3I1xL=&el8uKv%hQope-6Mvcb
zo8EhB<_~74%N4gdva7#-vYh-ev8q{;wfrk)&u56lvo{CyKNDpwl(Pc2UrOjzLQ4xR
zBb45(yoCxD8d_*%A!H$JA=g5lg@^^kLd=3@Vb_7IY9VT2QCELbSKjm$eQ_}R!ojR=
zA#TC3;9B4*K|`o5)U;p;81-G6Nemmh`j3=LB`nY#RkHYD-c&^kU8)wn_E6@Nu6~XM
z(!XjJR<@9|g7Ix&A>RTl)Ut4mg(?=RTBvE^Y75mYjJo9UEr1#ps#`D*XBhZ`z_(XC
zz7fE{#RDl{2dHh~zFk>fS)QMosbdB1?ph0*HfQS!y-sL7p=8z<aG`5(p>NeR+1Nr8
z3w<o~weafDQ~|SFXl<dXg=WG@Sx9vATL^A0w0t+8k}WM9TbgOm&2M9&t@Lwu3+*hl
zXL~K&+Rgv|NV<cCjutvu*q$g_UAwTeh0fjlGYd1stljJ8cNNJ8yZPNLP@bTNg`O6A
zS>XLOLvI1|y7|Pfb@TgK=x@QZkhU<u!j5kKKnsH`T+cx~l3rT9kaR(t<bQ|KgDniP
zFq9h$)eDCSJ=V=HmSO6pZhnRx-rdhyP`mq+&U&r8`$M|>zJ(hs{AA&@h2a)%w6Ku&
zVBsbUH(Qu&VTy%YER3*%Q#AKj7|AiRFovzLFs{2lngj7ghASCjE@?Og##*?8NfwB2
zvv9kGck_yfr*-%5v~U;uXNGsTh4B_%>h3e_x|nTMzK}FgAw_U63$!r7!bA(dz2=?j
zm!4z=n<@l6^+bBV1=0uD8^_W-5cQyisTSs2c+SE@79O_ngoP(*hZd$;m}y~_h3QuC
zFo<D>fCsAukA!w~_h(ypR5*_deayn#63IChDozUyOEX;FoMp5aKV{)r!A}c)MkocC
zI#06fuAk%v>;ks5Tq=G#n6UR;mn2?n;du_9g`F0baC9teWY1W5!NQ9cR$F+T9b#db
zg#+FF*DPFI;w@*xEv&TgvP8*QA%L61+;<AMPp-0p{V49~y=nzJd&G2TeD1Tx3NBA?
zS$NyRS_^N`wwom1q?M*q>)0WO(x;|nC_u2@!aHKg8)!Mpy^Gy_(h5EN5BDVJkIdO*
zVKWDMf35eeU=_DT=r#-Q(E^7Tkh7I@xra|s`syNbM#c)aTlm1jJ>O&*KIDAw;orU1
z+ht+5g?$#jp%q#9*uox~2WRDw)alW=$*(e>&<kZ!pIU)OeJYv!+`<>!BD?7AweTf9
z!-w8iLg#Ny5`Qh2p#H23WoCXA998<(!VwEcE$n9pS~$qr-NQdDp5YLUu!rBhb|LAE
z9zJjMj#>E5!U<{k>plGA7CxVl`GK1E@V{qL51&znABF#K4}a`m-bo9jr!1VEn|YvW
z;TZx8e_Qy+!Z`~+TbMT@=MM|#EnJXdtM>F`J^f#}7CN53WZ_p%aM=~VC}7Q|oZlpg
z$FP65ux@agfC7I?>R&>64w=UDuaw5+&E;Ys`wXRQTxH{12m2kAwo%5$MH`oFl(kXL
z#&b3n*eGwKf{pq%8rTTg2-{HY;F7^7o)H_1pUfyi$H&s#^CUBBBW6Rhq1&izBWWXU
z!?5AnNZ2r0)O61lN?_UO)YD&bBJ0=~+SBI)8q$h3D%pWye9$75V<Xo_o{cFzeLg;G
z=N48tlpfX7fAGBwJ^af({d^lWY}B*?8&zynwS!}^d=OL3#>Sq3>#J@D5APUQ_|-OQ
z*|^q5T^rZfxcq}x+s3BDX(sUvpgMvXt#l}T_n;InG1sx!rCvRer0{*~yoNR!*|^Qd
z?KT?QXkud^RkcxIqp6K9HoDqqW+P>zwT(75n%ih0jcsXzH{koHdkl2ft%S+@adtvm
zYBf5yy>O1d>$NKZ9c(;wM_xx8U-tAFItl13sf>2B(cMNL8+~o`u+h^-FB{JsPJeYW
zOE1l{7AJf9y>09|nC9Ay-ute9y?!?O+ZbSjm`1{;5pbXFdK=MUDV_isY-5OxTWpNr
zaM&1T<0csh&qmsYZ{r3V85>y}Ma(iJ#Ya~YhUW1#u0rW#0(t{Fhv7E=%8^ztWpAX}
zEcE*Q8gw0_9MhYnz^3uQ3`W`*Wn;9BwylGw_G9eew(C|AAm~3bCu*g~vLY+ZGrD)!
z7-wTD`^3hbY=Vsml()e<rtvoJwsDUQZtJle)^acPtQ(wxzfbg}N_^rr$;SOQ9;A_1
z50V~`il*3@EMS42&k^6>E=b~{j`U$0kJxz3#vBotW@Dyk$fW5uW(YH$2-beoaF*yf
z+s2~;SR<KpWw4&H@vM!<Z9E~-Cxt$3<0%1D_%X9EPYE=iSHhWJB10x67ur~4;|m&q
zOufZ6*4cQ=#`89o*jQ@g1ySZT8!y_y#>fhqA|LJ9SY~6njVnF<mxWKj`v@8XWnQtd
z(#9%Iu5jv~y2;%};j5gdy?h3qCS7ggb?MtRGO}xJaQ1N$9sS*VLpW~=WnPXHy}{cy
z*4uc;#s(X^ZG6PpXX9NPTWxIPw6d|;#umxKhiF_d(@^<dz<cb*@+td@*Ka`jeH+_t
zd}w2bjSr+b?AXV*W_a|AfMF+%*$&P_QVkj&0hu4$_{7E@+M5gwAHLAuKIN!!vVZ8&
z!auh$Z+9@JEQ*tws(!_;u<^5vuWjtLvCqagHjdf&j-JrQejA62hr3hqfPh0%@<AIs
zY02jIxijy_bn1vCnIC#bCACg3|G16sZJe_4lZ_v2{K)w(GMv#T1XMkeZg?ooEY!bR
zVfr*@S((%s8)qq;PElbhnHn7&^Wfl~m+>P0#l{60quX2l@7;=DZ4{rI`pw4goUjgt
zI{3rJpEmkA=<nb!8-LR)I;iR39~=MDAv@3<T&5-1DD9w(6YS&tN9XSZqfZ+v<plGH
zk1U-9nVyHzWgV1rzyXRlC@(S<9E2QH{X0u}zU;QCX)5gCXthFOauf%ugQ$ZJy?nYI
zsz+~0tUHK1$Z?SCz;IwXNH|zft;muxZ3m7MEIz+^$=kgwI6~$+fd^xhC9pRtidZF)
zVKmP{We52VAbg%2OA6pJo_VWKJqOhttQwYKsOI3#KfGehgES4MX1reh)edSoXy>54
zgKHercF@Q{V+VB{T<f5|g9Z-jI=IfkzpK4^4mu7^(evEgDmlM$lAP<_OEz@CvE#82
zj@Rz(ImAsI6gX(<pp_F`vzj_cIcP4pnb2oiCuw*?Q%R0~3kN4V1<}^5YoSLM(Z-<@
zOE;HopSBK4H7HEhDC)qf9dvcjjap6jItjh2mrvZ;!TI@_F2W(`E>-jrO83=+nq2mJ
z3gv^d-VXXW!O;b7SdsP>vDv-+0S>NrFxcUV<zQQeugp|=%^S#62mN*hmxhD2g9j4_
znkR=j@K}O_M;xRbWE|Y);C2UD2Zau9a&WVQA_u;M8y)b;Mc<l9(i<EMci_$pUN>Vo
ze^$%cD9`I}p^Ssk4#qgaGN$a9+}}p$j&v}}!Hx<k2HqOnDoJC7{@?SFS~Ze)I2h;P
zUI+JaWF?g)j2Cbh$7^)%DtVpiZsFV`bb6KK1Zm^_4jy1XJD4Q=u~m}A4WCRS7tTX8
zyplJ_9&|8Om@Hp?Kg(CW2&Orh?%+)a>m1B*Fw?<O2QN67<zTjhr<vWsqtd;PJ9t9+
z{4ob}1kftx2E7y<AR&Iz!BbA~n3x`kQ5w=S8*&Jqb?_W#2TKd3<~f)zL%hOCH%p}!
zvYa#CA_t4v{B^<PdR{Dli38dvmrPu=a0(E=$cgOWH3!OP$z=|fJ6Pf16%pe)oVC2n
z>9aI&K`S{^oZyPdeRcPP<g2W4S8}%!I3gZpq2y`@uRB=dV6B5Um|8i>Be>i#<8~R{
zAi-M>-eyA_eBxlegLfRf?_j%w4GuQa+q~s%kq&v626M*S#BSN0q<L?a=$ttjGT(Es
z)xpXyG7r}*dZa>X8_ldj>Yrrt0|y_npUbDH>Y`r$4hOp(eB@xK14bEkQ8xjc5p`#H
ze8H;AN10C@>~Zk5gS`$ubMU!?FQpH8w2AYS;R}x1#7w+uA=h1BNk23DJ~A6OqcUvr
zHx9P-@>|(Oy{Z)*VCT>qBye2<ha4Ps(APyj7f0y#I8R+%<p#^(V-7CTEH^dy&cSg9
z-#hrh!C4udABCQDaLU06abjPt@p#ISBXyvcPx_MxoOW<VK+c9B>70X~sdnq+c?ZAH
zLmp0VT;pAkai@~M3Wx4@dS3dHgWnwdPUr97is<mCl*2;)<yFApYeB(cU|`+kKMr~{
zOAcKe><wNPncqZ#|0GwS{AbD1F3Py5?xKc^vM$QGa9t!^ly_0V4c`7RU4&eOT|`~P
zTtwX9+Mx)o(jd4tsV>++hKD~$YRuK!uhZK%T;%rlbr%;t&Blcm^E)%OOv-X$yTOW`
z!Eu9Kl*uD=cz;yUMP(OB7nNM(xcL1QFP9a$c&fKw*xP@wxBq*k!WF&!Mr*x%7gb%P
ze)ZsjQHClm&(;<aR1?ld5vxh2iw-V2x~S#i8X3E$E^4!O7xi5<aB;00yia|di}^oz
zb=}~2;jB$Lr1gZq%q${qD5*_^)5t|*7ZdxX*%qEZp_iaQfn?m<+i&Iuc9n9`+(io)
zT8%<`hSy3!OV(Jo@Ir6DOdr3s3#X6Y#zk9U61Q{FUYNx7`}mz)bav6(MISdf64}K?
zHy7PqbalZKLF9Dq6FkW7;o_AonO-h>y4bxvbNjvwDM$A9n#q1;3pqNY`}i~Z`2AfB
zaPh5+{VuL|G0?@`F79zL$i-k6H@mpS#Sj-mU8G%PsM2(An2Uvde9sNOsIWMadaIAm
zckr_=3SHdbVz?XJ*K1l(MUe~N4JP}J<LQ&9vV%tE(7oR%0z9{KlZ(&#_yi+djHH;0
zJ1BoNeXNf^%Ef3GV<<^*F<4Lj(Z?Ul5kHo#(AU4s1)~F7rAV1Hjw5w<-gp;xitR1i
zl)Q`mBX6GO_YDN@b#b4IUF-)J6F5LF-gB|l#UvN!?#Sb&>tq-AbL_0b2V4~N^#}F!
ziKn=D(8W|254qsx25)2@cJYXd#V($AF^%>!G&NV~bfGg`%oH%o#iK4Bb1_?@{IU}z
z8RpPjbL$eczNRhd<1U_X@g$ivAs5fNc-qA?F6K!terfqxPMMY7v4w522ZJBfGVqJg
z3)uNCNExMpkuDO<gXr`mOK4**R&nCEctQ9pTwd<;Uv%-3i)AjByL`qG<Rz1opSW4w
zEBI;PJ$-#fUvaTgQu%*UMj2jX+g-fnVzrCcC25V&H-xSgx_odT`KDm1^tOxjF5Ypm
zK{(`3K2d>hd2e*lbVA;{E;g~reSJzY@SC)oU2Ji|&pxmawyRp-qHQkTck$ZunVl}S
zyZAun=7%ooUdVF4tNEbRuRjMSv4fsuYp{*a(B`!Fk;`8#W3P*SE<SPbsf#b@e_ZTw
zgDtPmgc2OdOMWhxn_55CDdYy=S7MNJItItLzUHhMk{bA3))|$%vTyL}-#1cw-&NiL
z7YAJ^38?h{E)Ki6<l;B_e-}sT$6WkE8|&*IbNS0={OIC47suV;b;$4OAu}m%<q`Aa
z1}7+XF3|rRTP^q$C$fvvf-h~&@C?Hl7QQueRyd4O{%BwSXI9kLKQDBqTS&Y8qpz>^
z^M4f$FLLe_l;s}X@0=YjF1xtm;!ig?*z?kd-rw}({rta#?uw*Y`#&!JWp~NWaQ6nu
z|EOvL-1i72a1}uU<q{~LK$!%h!_y4BaFk8p;xvze&)Hk`^CJ^8RI)-MP?cve!inIj
zH;DWM?&|0BIeRpLSOS$3NG7oPqpX&Ik${<ip1?Ss22BKys2KR%+)BVspi%-k2{;M3
z3G{u@J1{r%NF<%0Cab;oAIs3sRHQO}(!-7PWBvTx1diPhG$b#9<^6ny-5+G~6F>qr
z5~!KL#CNh)65z|!)e@+h0AJGNC6ddG>WSbDH3l9}x>|JRD5uwYwGy}{f!c}S3li5R
zz_T0#brMKTDJnXWW^_wGzg`0M6KF=JWNeT?!vq=$=1v;@TVvLHO|oeMO%ngxmn%pF
z??LdCDMQfh*W@%$pj9GR%(Re<WVTEMFI?oj6Bu*r1lkCn0&Np$mjDlzFfiINfldir
zUk?N8p>qOV61crO?x>Eg33Q{vm2q8VbWflMhbae_a?q1HB=B8D9IuGp3H0H}Rz&HF
z=$k;l1l~ztLjwKTMI5gL#<S!E1|~2ffsyQ@1O_KCJQ3_p4-tLn)r%4sn!qrs^l{cp
zAe}%afqR;#D&!S@(a+Bczc7I_{ruAX{oMZk|6}SqpsuK$x1}i9u%X`V`)t1;NRjq}
zf`ZsZ>E*U}=>qopQ|u@x_JXL0AYBD%(owpAiYTZk)rKIbD2j;Xdor)@|9to4%$ZEG
zDU(U=ZYDFi=KeyOL2te?bxNO+gDX6~(l>*C8T6NuS@?hqDz?pu)1+ch27{%#8w3u?
z;MxqX6K2vq!u5jGsO#{Xl)P%!DZP;rHORb4M(t*S9JQuH%-h&73PuK#SxyH3%i!q@
zp2^@&4iIb1-~slxQ#v%GPSxI%!QHH-Q_4UU#=RNbm%)RbQYJB+yS2D$Q{ll39?oDm
z`$(2<Dm)~RZ;!-BWbjA^k7e+92Jb&t7<ZTTs30RVXt}x2WpjaoNBR>PJjF^k7l=Q}
zqJ+qQNg~f?@SOB_Tm~<7O6mCM`3y#JscD(=-Ts9PMrZIMlQP)zYmWI@EFXNCQz<Ah
zj3F}xA6rRzHKVkvOd^-YOUbWgFo9$JXK|uHBHF^jlnkb3)N9+@8D;eG`u6;^3|`OR
zjSSw*p!OhhRtB`ro1VeU4CeN*W@K<2&&vtqJ2p3X=XFYHFvxej*%{1Xo($G^Qm?Z7
zh9#UQRkICr(zP&yMdWq{pJ%X`3j$e`!3P;E&ETC3R%Ng{qt5HTo58XSmS@zf7nkB%
zwaZtKS3B~2PhfOq28WgviLA-sy^PWvt<8X^j(JXio=<wWR3D7%*oF+6bk8%~JjDDk
zqns>#oWUm<Y@lpU%zY#eGUvt&{@#%%LM=02JQy}*u$fY{$oVvb8Lm@dZL}qWFDTU+
z?91RwF8&#OBa?bt2HVN!4C>W$SjCPEz7qOQsd1OUyK0n}#JNw%Ky#IEGx#op-IBUT
z;P(QV>aJJi?9E`yU~^cZ?fwjYWPdaGgMG~4XUW!juz5ggx%kc8!3=&8;;#bv|H8+A
zlT`k<{!X#H$>QQe;$ikQgQNIIP+8XzN^+s?Ujk`?^^c_fE0Eca()fPv5UHl2x`v?|
z?$&U$hGR5bsG+@v8X9V9h&03+j@59ShEp`0s^NGICuqtd?<5URxy~8K=4pR)qK0jq
z(pnm-EG<yXPS*ajFzWffbDD<Q8uoWeeGR8;$~uGRMjVz*|Nol$Lpf7JMi5OPDY^zj
za8sZq(5_6~6dSGvXi9bKNjZIns6*`B#~=)(ijW=YoU*P&LsmnXhL#%YXsD~9zD8$y
zIO?_BS@LWH)2XLHofDXsBe8*oh8oV%&_qM)n=KN_=SCVDOXi9wi*2f*nTF=l%@Y>o
zTCmtDxkHDP5sK3}WjU=hoU5UYhVwNv?VR!)<9RGlgL$sQzxx^O9RA~9pn>+nZCQAg
zGQQH&Ubvm6?0FehzEHSG!^Ikk8cG^2(Qv7TUK(;5F4J&1S9lE_nOVc`R|@=Rxl#}w
z#J#_v(}8(9r&nnxbWVvdwUed{oV#l3Kd3Vw-=6QHL9d!0JuBBuLw5};d**v+cqDLo
z3SM)5krZZ7|C<~;)1fUuK^RWT?zfzB4XK8k$TtnWHS{4LGz`|zS3^Gy1K9CaW&Jhq
z5Dr6rNrCY1w{io8PW&28oge=GK=Ju;xgi>^r#Q`3e7;u0b>#n~9KUgxbc1k%th-TD
zw$-=%R=kA*#*?4qn{fVCfqapmDcl_z?$oegeer)9)*V+y3L!07?&1)1ExWCAdXI*C
zHO$m7i`8kkU&C{3p@s+8@y_WZ8Xnc~poU=@9@6kIW&WuAa7|f#(#);txZM6V#StO{
zl-pN2rz15yrr~J~&j|5x4Zl?{ds1ZY31QUE>Sa$!5;;aAi^&UeeDGNf!+Yi_awLut
zc^;$T6%8+F7)_oK&dPC&UgmT=*LjH(aDK7EN|9E^V>P_0VVZ{5HH_oG{Au}#8YXF=
zOpe#^nouSPWD=`m6_Yhgm4;2J9J}5Ni#$?7%PIOce1lT-dTxdW;%`b*r&B&3%`y5G
z8`GkUfo+~mCXl5X)@ztc5fYxS)-X@Qd=2@P&T<W--gg#gSfXL6hJ_S>k%dJX7HjJ3
zwMVP6noZOj?>jP@?`l{k!`*jOfn$2|!Q6|#DcRrw*A<jK8EAV}ZWU+Ef+90aGo3XW
z_;UE3hP4`YyqMcPw!n{q_ceT=VGA3t;X}foi&q!&8#QbYoY9X2Au~TFi!^05k7dP8
z8a8YARKsT)$kNYQ%fuWN$4r{uIVHEB-=6=H>)WE-2i42AYuL(VO`<D1r`Il1ZiRNp
z5bxA@h&_MLmI5swzt-@LhIe%=)A6l_?=&3I@E7N!hVM1}s^K8{pkXiPk%k{N{2=2_
z$0=OsxNh%bfjje0d1@1tua`e@S=Mks!%1V5!!B+w5cx%-#5qTP)9?qmq~X@dx!*PQ
z3VKLjh2N?_rEq$B=_l4ze{1+h!w?<U>iCz7o{lmdEp=4UQB{Yd!_`quM|B;i>Nriu
z(K?RNae|H$b=1&NQ^%OS#p89*$II=@i^u9Xj+qbSHg{H@WQ=dsoaMiEEgdK682eZ8
z6dfn)%6k}_`av!AW<uR`S-)y4I_7KZI9-RS!_skvjx%-WI+p9@86EA;E8E{W)!3L`
zWyGs?QHOH*R%Ynx&5bsI^ieryT*1~scxIQBb}`W5>1d#%p$=b1pd-<d)xp<;P)DRI
zvy{93$t^ji6zkaKm9r2+QtIe9OGiCjd7i8*kj8iQb(}5DW_S3H*=t5_|C#0d)^4Pu
zv5pq{fA9I{=xCy&sg4Q@GCGuF{$@I^7;H9YjS~HFd68!(xr^RP$GJML*3nVNc{*B4
zA(snm!!GN%P{;W?F3^=bthPF4uUB>x!_5+-?R8wF;}RX0>dN`mvdFnu5aPcb$X%u@
ze_12yILyhznS^Y{6)af_XR|x#xJq!+>vTyw>FBJZsH3E#i;k{3dR3-&)6qjmPl<MC
zd%C22%i>cs<(OeP#B)0GlG?MO(hd}KP(+E8>qvF<)6rj2d+X?<qp#r1K*<~tIT!BC
z*V~yNpkttpK{^KOYQMczf8!b*uM9T%0!Ew_5wgupx=zRSI-X-T9XIH>QOCVH?$dFT
zj+=GdCWYT3@K%AtWtW~0zC75xUB?|d{-@(k9e3#%s)NPSG@ebpf3SJCu5=Ce=-|s9
zt0vAGxleV!l=HBT;T(OzAJj376WLOoeMrZVGKCP1;GpYxnkDFXRL4jiPw043$J<+r
zkLh?^<ZbO&syc@J>7|2>9qK`z(($6D%;#w?^sJQ6)E>e>`lB1A;{`sb<8>XQnN!Ed
zpA@F(cuB|0WDzG6XP*vjX>R?V;<I&}8rzDCV&_#I<8(~WF;OIEypCTNI<M(qo(X%3
zTq~${nIuV*IV;EHb{$X>!qD`%GK%_Csf9X@H*~zIW08)<I;QKGA@i5bdy7K5y3s;u
zE$8n{9ka;T5o$MMHYXtYytvU^fo}_(Cy>PXIu=yo`%cWW+4FZQSz4mwoyxv16@>Gp
zLW-8_SfQi2fffc<>R6@YOC4J|SUT3|_(aDh9q&n*?{f(fWUY>Mm9?zbk?W#%|31{Q
zL5Lf5+zpeIk1F###6zT&ctz4?iEa`2sld+!elC#O2R{CV;6s{K-=<?b#X!ejl>9!;
zcIeov;|Co(xvJ>+O2^kacI)_F$K~ssZ@B*J_)f=b=PB(ow-f2`wqGNKf0ih>V|yr^
zujP1rf|~k$Qs4m{zv$Sn<3}9_7CS%b>YVw{`hTa>sm|t8zv?)s<FJlDb^NB|cO8F7
z1{PAMm2-%bx_cQzMU;@$H5d0LJgWM)j(>C*222D0>Nv{4DF#k8P{lx11IHRT&OkK-
z)eY1zaAci2(0;UmV+>rou0U-&qb!+tO+zWOh!Y-fsOFtu;6y>#*;<Cu(Vt}CWJ8Gu
zy}U95&x%mxM0lD3s#8xlaE5`}1`s+G%BC|7WQ3wu()pAoWwPVfcS&2_Xjlep1BrpG
z0mp!As8NVmhyl+)U?^P}L$0mkSK_Rll+eJt*C;=4u{=Tr79Xr*pss<l4Ky%tmVt*`
zJM|3IXGdx)H9fmVZP$t$3>tJdG|<RE69Y{RrAuur9VEhVj!>AnnINQ)E!4oW<7Ea~
z8hG8n8wOe#IM={+2Cg@7o`Kc|dK&0uppAj^4RkPYm4OQkv^8*vflCdvGjO4S_69C8
z;J@QgPT1g|&vPy|K-C*P=#s*~O;mR9G6R=$^M^$>cNk@$ZthA0M40o!o@G}X=*W&6
zO5W<7@34cN40JZo#XwgB^V>T=)^*rm>gL$-VcV6Cvb$vNA?$jnOPVu~7kq$$f`Oue
z)Ie_oC3Yt=$|dR5R?cS8VqdUIwXKg3`x)pf%;)g2-WR&0{mF+%a*rJ@4m5C$fk6fa
z8%oYuDZ>y7n><)?Orqkv#|;K<H1L#xrw!a>;AXPgz(WRZF>tGap$6_YaGQbK4cy6Q
zQ|b&*a{fnAS*5y9L1M{d1rbIWIJxdIaIb*}MZoS8$TmM<;C{g;cFObkBH7DF$a5w=
zY+$$u)#C<62=b_bkp>>Alr$Dg0ej5Af-Wf$@|o}n15dI*Ie$Vvvl-7Acvd<%$-r|4
zo;UEafiXfEWni>{7Y)2XVOXU`oHLh)poqLA8CYP&DUnxLsey3@#!?={R)wR$Y~u~Q
zW?%xj(e1xp(~}|T6Qv9Mx}R)dih=cA(y4|zY{R7g1*K^QK3wY%dDFmj0~-x|Y+#0g
zw+t*Xu++dz1GA(73n^3v=1^v27SA>Cwt@dUpHqR%Gq6nhyFeac6+M?biz@NOg0Qvk
zP$~?(XJ9S!8(3~&wShHkm1J1k%vmW2Poz*1R&hG?EF;3wHqLTdy{|g8j*>ITeBZza
z?2%+<y_~IFXFinZ26kkS^2Wf-9~s~wPa+JTkZA^X8rWoDvw=?yd?xv~8u*;zEyu>b
zFx2MB7NK)vgin1b6N+<Tn-I4PB)#9+Ds`8EeFpX$_{zZ72EH-yt%2_i>=Dj?XJ9vL
zSzq7?vRERAx};>+UakX^az98>te3tWXpO?sel+m25Py<NDTkc<2Mqkeh3I9~oxW3Z
zJVW)Hf#1nG3o9%fGVq51!=hs*95(PL<=@1eCXN{Ri|dJr3r+kjWjZEY6aVlpfPFO8
z5?$3qHB-ITRxvTFnzA*nZsKSYmI;29A7i413EhNYsvU!xCQdOyS9r%t^f-aX3uNjE
zCQcN*mcWxL=_i}0*;Q>mu)0%CoF?_w7I?bAGX$O~Fe8vTHB)_95oz2tHCe*^;t1I`
z=XaTH;<^z9T8m%SHH8UJ9%*2LE{S{-iHWR<z(i<bhFE7rCU~}rtcy)`ZkY&+tz)Xw
zGH02nTUleh359w>tS^wMXA3g0YueC6BNI2erN*R~IM2j6CYqRPYpbb=<|gjjRpjPF
zGqSyFO7|u$OwgTdnZT9;TM1+y(p$4(G-Wk$fvJ3tw-NYc*OV&{qis#_yyE1pDgRK~
zOWQ6rahZvWOk8ZLGZMe8DO_UWsC?P7<wcIy<tDB$F~Gz?Q)y$bG||;WHxnI9TxF`S
z_^VBHF_i<-juP!8u(QBg+tnsOR942+?k0MeD48fX(bH5PP&pHM6TJkVx>xPE76dPv
zSo3Yp-B{pPSk<`&;;G3m-+Vu|usJVsMIRIW-putiv9N3UMOUS)nQ=;qN&O|mPhHb%
z$U5@V#7!m!n;2qJADX{`!qzRl*2MKDHxF~fuM<jkin2E^J5U_=T;bs^`I|Z7-FTr7
zns-Zy++yNZp>X49=)B_X<QTi(E#=t>o@XPx%T&7f7fg&cG1SD}ChjqDuZf3E4ClZJ
zhwm3i$4yjuKVafPQ|(s_GcmWJ^N@+!iNjqBQmAtuVd4=JPndX;vSj{up8qiuBL)Az
z6aJ4^MxPR7bVKJE4uMQG;#7Y;%PvcjzQB3j#0}ljQ38oD^+gjenOJ6GxrvuejNt_A
zS$!7sn;0uioo?b)_RGXn6VptLH}RT@NhT(nm|$W=x0Hd3_=zT-Ka?Zh>Z?2<*~sV=
z$-tuvuTzpydc(w<e5zaeL{MV%?QSUp?WbBCm7igP@GZ*2q})t_jLtSOhn(T;Ht|Kb
zbdia9rqb>$;BcEtfi+(sHGLIc6DuHdE|&aD1TGc$j!ARQ{JVk=^UGJ5SZQLfi62a?
zGO^mk$0j~8@rLiLF|p3XdJ|iw=H4^0R*-kX^0PM=-#77riR#_c4JLl-CT9TnAs}38
z^++z$J^jd}lg4zTiF)1B*4@)hCN`V+(!^FN<WqqZ&d*GIPPu)&(4l+ETDA!N3xTa#
zJKIcb=L9kG-<sHAVyB5+CcZLJWXYR~w|7qsE&nx#Ny~RVKL3pg5-V_4{hf*3CZa>d
z@1=x2g7eTdlb-LM?lZZqilZ$YW8p`3!Ng$`f13E&!~qkBOf2r6vR}WL>fFdd6Tg~Z
zFJAAS{ywTe=LWx-_}v5%vV!mr$-kw0%8nc{@fW9(g{l^2EiT;qW$|w={wDtAQop!x
zlm${0{T`J>$YKw7Ppes|ZsGVIY0x8WxT*MhSYE?IO$(=3IMu?j7LK!UqJ>(_W2xaF
zJb^{EQ%vK!N*@mNqHvOhlO^@T*dYC!9?B)cX%=c*(1d=vg~li4&#-W&1u~ouG8-uw
zNj)}j7}YI2;5(Q0P$gRyYzvQDc*25X!L`uF!ugicXTd^bAr{=T;0qE6WNIkLg^rU5
zQs2Va7P1!VNVKkndX+iPvT)i(4$nXHsiETJuz`gZ7RoF%w9tqRws4Mx=90e&c_KNR
zk}X%J6;5}XSt#$JPEc1wSx!p}=T?^AN|3vx<nt`FuB3O_mcPJ4TMM^ZxXnU43m38+
z3#o<n7A~^T!$MCB7hAZ*Qksr#7B01v<yvQfmkGRF;1vR|6xc!FRRXUT*im37fqa~s
zNL?&+W%;hd=+zf0*j=h1&Wg59%k{F5w@?sb&O${V=4U8MIi<?{e73iRJ{GRCaJ_}T
z7W!EjWMQxco-gfhVW1$y2T&T<J4D`EoV&&XA#sKw7Os^%+_+$rn_U(38!X&p;buv?
z(E^WpGBD{D!MTA$oRr%w++ksug@@QM3wK($&r+La40j1~kA<Ov++9g$6->QXqTKGg
zpYkU7g96(vRjJJLaAp2S1sQH(gdmSp(z#_fvJ!tx5US^%wD6RLw=K-G@U(?zEX=f&
zpTlP@JZIrG3ll6nZ()?hts%T*;RQ>*hH-ypw55F76XBj79pJyr9(B%-6*xxVD;Ai<
zwh_K+VVniJyXQ_IvyGPw^Vd5QEljd7jV!V-S%@r(8KwwMWU7Vx4;G2MA*D^XFoVLj
z#CVf)xrg$o&%!H;eM`z`&RNoac44+4bI9!m&RoH{hc@4$J8mqou+&l~2Hjp|3oTmh
zVX>t=9dQGn+8nC4c(~#n3-4O^g3bUt<eyqlq_aN0xh=Dl-4>OJD=n<DVA$&IbT!A6
zSAJN$Hbo(8EWBr7t%Y?K)?4^Mi0@k%+qc?z$E)``o@jmVys{64&iwlZ8yhWrY@vpY
zno{5=7Is_s-ohqJy+LiZ@TrB*EPQU^YvKPEfjcbh6yysFUs~8-wX{{D+XQYG$iaHx
zE{kxNg|Czt8|*dRyl~TxRew{N=Ua=OaMZ|Fzff%<?y<1f!r#)uA1v&%@T-M`tfDgi
z0sadJ{*%C;1y<a<@k?bMPLSU${BGe$C1qUV91{EwfrkbDDUkcytoJX$rwlgP&VMZY
z%kJB%Rn-Jm5y<Vns<xUkbedFMC`a4sW)sqnu~Gd3wSjr8P2+K8DSw8I<87Q^<5U}`
z**MWw*-o-?vLLktasgx&r`T%Fa*`7Nt%XxtN<LkNgYVDWA}0Nr9_g7jGBz|x)dlX`
zl|N^P(jdIN#4&AHHf$S?jkDxg*9L4vHe!i-Hhf!sGKA~YM;V78un|fU@wM%pMDRMc
za#l%7)&{NhiPWvk^UGQ4&`v!YlY6NDqXsq_+UNoF1RB|BY~wozyB(Zkqlrx|67F=+
z)J8KK&)Rs7jIz<fMqeBKY?Rq(X`{1^E;d@RMjNk9&Rt>SJR7ZTTx8>78*Oa0MR`7n
zRN9*L`4WDCjkfGjncA`-Y-i&_iMAKWC51!=BA3{>)W*uy1>%>nw7eo-E<7i4rHu~4
z!1+DWtH?LGmE&qbI@;(Y2+JY8tBr0pdfCX?*u1pZU0Bh><{P-f=Jk}ekrn;6<?}Xg
zUq&j$UbZX$evh=s14z5_C0lvcB2q3<c7%u3d)w$E&$4UOq4c*gz{brsZeicY<_6lh
zj=UYB=FT-X29dEn(!n-{*m!!7NiWma+PG(NuHCjg;q^9duyG@s*Q4wvTe(@Ie^lbU
zM1wfnb}QM){5Ed0c`X#~u<>t?^y3Z1yEsOI`#sY;S>r3Y#jA2WPcqcTyGc1S+-rjt
z@%P(!z{Y(xs1j=5GcEQ^AG9&d#z-5F*?7pt!Aq?XM2;@Iv1j_Qjo~(Elm1}Ol+j0o
z{-}-Tdn)U7!pChqVdF^~Pf0d5kC{(y<2-HS85>&<72oTb&g`kAi}V?M#KtHNhXdQe
z3pS70V~35MHeR&x65DBGnT?lijA3aurrUVM##kFuY)rNBs*Q0rCfJzBo{q>-vqoj#
zcuJbBK7{F}jO;zMwa7c6CfT5dju|G~%6}b^X%x<#dHP*^gL9J&?x^l`p#H90G$}J|
zyk%p7jfFO5+L&cyj*YoCX0!WUl~>`TdZoL2s*52Q-nKDc1g~?|vU!3~MM%2eD_vxR
zN;>+@d&kCNE-Vy@Ug^~mmfA|AN1P3#8gaRe6*fMyv5``3W0j4yHrBBtvkR+jyhp*?
zkzXUS*RNN~E0%cq5kF+slmDIbAK3ViIVF|Zveil(WD(>47yrANfx3^6ZG2+$nofLX
zW0T}0b2f9}DisjwE;$=pY<$UKV%1A?i{4jixG!uB?UfSQW`mV(x77hZ9^LtNp);zE
z@}IoR##c6KIH>91Ya8F#_{GMrHom1)OGQ80*lpu`8$U>tdfq*@I;6B$;0tw}ii1G=
zq~!eqSrJSA$;QvNGRZk1>m0B_Wg;CT|8RfdAoJKbV&g9xzuPz@#UAD`RV)2rg9;`p
zT=>-4E!E%6pOlkc>bvi68~@m->Y$o~e<|VXoueG(bcJe4uCY}F=d+Lhnj^8ggQFcB
z<A9o`ih8+9^RJCLk9BaIqy9L~aB#eX6C9i((GwljLY{p($w4hCP0h{8xsxTe;)bSE
z9h~N%+hC)%1M2Kfcfi*M7DWvm;h7FH4m1b4JYqU{Lj3(24tOS$C%)!LN2pz;0^fCT
zk%NmJz=7xBTnFbl@ErsW8aim?P`7}{K^+HmrL@@Ln}d^ekVur(U3YwmCPGAd)N#&o
zP~XAX4(dtj2T~F9GnJu%JWHf87k>xM9kg)hbXqZ?se@+De=gl9OVlb>=pxG;eAg>&
z>7bQ^KhAe<-BYaSBO!H;tsS&+&{j&Iom9m<I^V&yiF1L2KFf>Lm$h?np@TOXsQ+As
z_6{CdsPIc1T<W0cpyc2(2bVkO=%AB>D_EL?s~x^Osb+VO!mr{}aw?3JfkVuS*OktW
z(z<qW(A80|qa1>64!S$&>7bVbE)LYxa{=k$sAYtQ@p6tbbI3a=2!#s;n^Cb`Fhe<q
zY-w(ggTW3`2ff*T2Yns%cQC*KFOFg6ehzs148w14s*-t-V4#D}%baTncjif<|CS-_
zzJnVb+~nXoN14)JU&$Z7N!~z7%cTrd-_z&e%?@sLa2r{)t#FG#E=t?#tB&99;0`jM
zYgB`(<Rp>191L}^z`;TXcRRR;T$PgVb#NaW=HNL8_d9AU?_r9iAP+crP>^8)ne>o@
zpR5v*5o9SP(^21F{2F@H!DE!YYGorUDa0SI#F>ZTNe53kc$$KmOP}Ew$#+%-eBQw*
z@;q=RaQ&zJPszRPV2p#&4qlY#OPpV>L-+pQIu1Sj)0puU2V)()%Bkc!{I4A6C|BX*
z1(L!N7=2BmG^Ls7V3LE$4yHJuJ8>4pJX0M^lMKwsstI40==wRiHyuoOFvFpTaLg4h
z%@jz+&SJ+!VNHCtgE^J-iqj5nOLU&V`2u-lWs!r$4puv~RlyP=E*HoWmO6Mx@OK3+
ztEBTOrmm3aN`b4mVo1I3Iaur9a|c@-_2041!3N5SqmGuX=Xy0g_r9b2#D3u5LqYgY
z$Frjw9enKI69=2PKz*e?L->}?uMDnrn;qpRoZlv&GD&VS`pm&UgH7UJIQY`RP6xXj
zY!z|Z?qG+5ZG!jBl#c(<x%?D$cNI6jSi)D7-nltCzn%F^;cExK2c>Vg47TN{DY@Ev
zu=vx}`R^U<aj?$CdKY`yLUP!}+b;Gw*ze#f7gxLZkz(e+aACUm*}(ydy^9lF{NmtO
z2Y)&En@e0Nf6!5y%0Ib&vM#Pgx%7~u-Uj~=oEZ*FloaAeD5AAW44356f4KN_VRuo(
z#ZfM*xH$i;LUk8a1*yimYUg>*nM6LA=F+2GRo(BuC>y$)a%oK$$GJG(#j!$vD3_A{
zVpP6#ckYHYMM6evxs+I(>f$6<oqIo7a*{qJm!9ULwhPVW1s^!w#Tl-0$eEE070;gO
zs;gI7;0h^ut3cNKM=rHo*e)8oILC$K!gUe3h+V){K2kgvzN_pRi8BO33<XjR)OLwM
zV&Wp}qMnQTF6y{EZ>b!roaKV%=XG5$50MKFE31>UT{Ljf$W<?^yeW)3V<a|o!E1tv
zD13OXiHoLu%0)XD&0I8h(aOcSQez7jWr9@H+fwjjHmX8s>2{urHsrReOr=^2tSIw@
zyej+xazl^{U9@*`nTyM%g%`QFR1h}uVi%WG;(J#Xd9N9XSGc%RD(c{ZonleE@=Vnz
zct;nVTs-dL2^XDRba8Q$i<@0^b<xd5>Y}%c?tHLXSq~RIUET(mr#W6P7daN2Ps?58
zT@*N8l863_TIH25qqS=aC0DsKV&Jnh-y_n;MPC<#T?}#2&qaTE<QjnkTnu!<Y|Ok&
z?vi5(gCyz3yfO)7Y1fh`<ZAuWbyD*6l{K=u8(l2gny+~978kd&C>Qs+xJ~lh?J86H
z+g;q@;(spgbTO2@qt-Q_-X#yxbd=9d%BM@D@%Ko6K0=k;{VpDG@vw{GLVR*g?m-vB
z1ZUDiE=Xa{P5E?$i$`2M>SCk|CRIGn)QSv`31x3S?R8(_NtcJBG1kSaLVViAGcKO3
zeCjzD&kOx!7o!Auk<+k{vcMNyjCR4g7#Mv?=oLw0Bqxcl2%;6zaW2NYnC9Yj&K(yM
zTuhbxY$3BvbTLVg$x`MNGKX&B3Mso>QTWNNoi}6xPIq|*9&ZXxueqGCZ@HK$(b+C$
z3C@{F`q6Wh@%tQ#P%dTQ#GmJ4zKi89R=8L|f$3R&sf%}rnDrNu^DZy%Q1}voO=vuL
zAjenPp@YqLUF@IlEaO_#pei%)ZG>m$SGri`Vy%?3+Qk}q>OG0F@fCj%Tja%_U!64N
ze&59hoF>2(z=tk2aD@SM;3F3sIcK?ey7<_|CoXnSqR3bmn_X-r{l^@`r!Kw_yv~u_
zXIvSM<UV(?MG)d|*UWz@ICC<(&Bb<!l2}3C<>D)@=PrKW+A^W=HM#BLJI?V5g>Qs%
zMIrsGp|jgnm(dXU-o+l)xWZwSe+_e1I{Xva$Ccm3Ph4=0&F|+-Kct*~^HL#do#-a_
zXIHt;CGl4m2Pu0W7U`MhHy6LVr~*`lveP`|;!hVxT>Rmx=wVkKv>@`y_WWNi{w9Zk
zQX&0EQvVf5_cF}TcwLc@fvMGi>cDZ}1s|%Aqk)>hv4S51)DWa;P37>Gsdp68iV}DS
zJ8ya?<*`D_J06M9AOESqN$PGE95=Z@3ImUSFwkLVFu6d_ZKN|wdPQk8OecP(K-zT?
zXW=~EV*>4=gw|4<J*W$urC#~Lg?~~ZtpoM*0D8=hp`3F2ET0F91gAUh3J2PeM2Yil
zFafd><qH5^XA|;@WPU!^lUf>bs|TnLoDF{dm-lo_4Jb&9icc6NMjHd?0IhhBCC~(D
z3bX*qfM&qZrwa7(+guPHTBh$`?soD9w2cdkEdj!J$L9#o16l(Y0Bxa8GV_r(;7y~Y
z^BFCqpBGZXcI^J7+=ZY=uM&|T3n^{-cu?vh;9_ayB?2#nauH1b|CdRWETSssN}vPK
z1?b9aWPq!IPWW&C=hWp!N5OeZAa{QF@6(yQ65H+m=Q`YA>;`m~qUP@@Qc1xAdjUD%
zJr8R=<beV^0(=Y<DNDc%;4PpWNP)q?5TG~I+#eu?^a1*^Yp><{0Ud9)IL-S@l%7Vo
zCJ%&KnOVg(z@W<Z(<S@0z;(d0z;nR$zzx9tzyrXIpcNtbVm1_NGx=uVR^T?lZxP5t
z$lLZ6ZwKyVEi4fDAMoeCVy$9ISa*Ms(Pe^=ayM`fa4&HA7lmqjiuVD8vsWnGE2gwz
zc~F}47%&WYNbrZ*S$azlI2;%u2oL1XXi#_*7zupUsKg8mJeKe{FmOTP34u=vWb`TE
zX~CbVq;M)d52dmn1-t-!*E}UY8h8<y0!#&70$%2=u(iv-cJgD`O^O6CfnE<!EE`L%
z7SnMQzhe3-zzo4RIa0<8eQ+_IDA|~EvLKVl$)dXH{ua6Ko(sz~V0tlqVod$lfj3yo
zsKT32#v0Ud6HW(47nO(YnZPWvj`9i22Ic@ufTdi27Ut#xZv*o<=-giTx;VT?*?eGu
zM2Yj1xLW^#MM5FIm|c?-CLH&7cyMp2IvM+JWhytXRsbtG-Gt$*fYrbTNnKN!=Y2|J
zCB7Ewvuho&UMSt`sIw~!AMjs5C_G%sbISwxNxmb`y$e?Q39t!h;Gv<1&A_Kz(>&Dl
z@EPzq@C)!Oum$)6_y+hE%I5t`U<W1NDs2T#&x#D&Wae%Mcr!aqoOS}cpw{-UI0_Wz
z(K+H=y?MJR@$Z1$P&>Lma4CB<*TO4(&qc#4G3;Sqj?3>ANZWyZz<%k`kE{sznbA%u
zcdD!G&K;oSEGn{)is(TyANZHk!Be&{zXM00+-4pE{*Vzo4E0Uaxjg?T>G?8-iDPqr
z0lc5_Z{Qy;%Lj8LK0U8UcjDXvt>U4Y2YRWk>f!nA`K+lfjjAq`qXjbQ7!QTTMIy&~
zIL<@HgXZCQ4<~r){yXyaL{AOJDIQK0q?U)3#q=ak*`%B-koHiYf8?Cz;S5hPq_zi|
z(hxb_!)4E@o8`|GI+3GpGjtDzhmaHxrU$QKfodHt^p*!(veh|{H-2GDF{Nit*8|O1
zrfevBQjzb0HZSB=;9*ZOB_4ZfTxKpR)DtA}ko8c<LtPJNd7xq1cZ-TgiYY%K=PoE#
zUC2?+)%U<pwzJu5tHh7QMjje_xZT4Y9?tR5#6xEfUDyQ=%{*M>;bITXJ&r8SW%oU`
zR+M>Y<*7qc#9I=np6ANI&qKO3XzihmhYLKk_3-6y%FO3{PuU=2X_3BLSDQ{d4;KoB
zw&V*QP*z>-J!PfE!J=)^B_1yKaE0*UQh}Fw__VINZ0kx79XxdO(8<G9Lgb9NczEHC
zHMy(F`BF;uk|9*RHO-V7xK39O-8}U7Fu+514?R4j9(t1}!l*pE@1d8c&NAf$5}9W>
zMM<SCRmsCIX`Z~L%gu66{iD%jo30xBc*>@`uLm--`NATnNk327336#2=;0a<H+r~9
zT0Y3bwH~hXFxbNo&dP@B77vETrIeD-#$PYlIKDS{YMq%`rF2m#y_qBKVR$LMh0HId
zw+g(bl%BY(NG6c}KM!|$c+JBE4|jPO>fs3wPkOl9!#y4z^6;>Sd)XvUS)V=V;eL)t
ztFi|;%2mo<ETuE5=IMW)#&@I)<7he#=htu#BPauBmmc%*h=<o-&pqm4q=$K>lsFBS
zctD8O@h>eb^4Z5d<-?iN@F@>Zdl=1%JUqk6Lb}YU=R9mIrO$iHgFR*Ak!1xUqdesk
zp2N+FM$^2PJiP2-yoXwG`4~Rsfu>2Xa><%sWGb_brTA^n(?D;WBr)~ZBROXNp_ESa
zFv-JQ3Ld9}hbbOrup`3EsUD`W{hYkzDJ6ju^9_$zIpp8;Xq=K~l(ICPBl~JWA;;vy
za<zdx)59zevt<-G9CJLSz`eUciEtigV%5?+6uI(rzJ~?ug@;8RmUvjo#*Zq{@@uj1
z_Um~?a*1y><Smz==H=<T9+t6f?VROYF+8mDu)>34=Dgg1@^rO_H6BiWr#Ry70*Q1F
z!c~jWbspAxcq+it0p9oUfroc}Ec5Z9hYg%NKHB^Eh#dBCx{ot_e9V=BJ@W9YhfNeS
z4?8_t1L0FH{vNh^*yiDL_JZ?~Q+TUVUca}u_=Vtn%OZt=TeY`eYB9>Not$4*+~KKr
zunmiIUwQbNtBr@f9=`GLt%vW0QB;k6=V3ROxLtWZzTvcTA~g8ovt;QH9`<?onTv_+
zsqXjiBbOb{oz;!Fk;QFT?z?KDOgSJ#np089a?rzX9;*8|+Q;u64tY4@;V%z=cuKi*
z*u$S5_*zJu<?u!rB4_O_{>|m6rBlU6RUiL&_?IGaYM%emNBRFDd<W(ZGyjpR`AVI{
zz%R99eAMu9l8=*pbz?$JAIJGP-p8>%h91dLEz<1-^|yP1ujXbgA1C_Cbc>1rn*4Ow
zk*E6R6kjPjY6~QCs^mP)SMLwc723{rl@aurJ~BQU`e-Dnnh%HN_|SbAK1?5$4}LKI
z8#%VGHX-?MzO}x?`*DcChvy^qk@)a^1U^C^k&m;MI!vYhf^c(VhYArYBClNUWPQ}}
zQQybeJ~|CC>oTX0dQ$!bZq#qjvm$P3@=!_xUnyT$9p8<Q$*K|>`#8r(3m;`Znn+XG
z>t=#96_~46YA#5{jwMrD`e^N=jgMA7&h<e9r3yvBd6JE)f%65qz(-p_UU!u-6d!Eo
zV}vNDSky&6U18%fACLRE#K)yRuJv)9kIQ^q?xWzN=;I1L?xUNJ?mjyBxXMQtU)jH3
zEwGcoJIm9KKAtL1i7=_N5PP>QBi_|l3eb(Yd=DQzh0af@UgYG+!s;_hIiZ|hqr}XF
z-0GZAo|b%+lkQ`XkJLwRUl|||^wGyhUmyL*QXlyi%C7>=^k}$8IKWp5K|W66IdcnV
z&du?W!M=K>|Ma8c5J4*D7m3&VxWUKWKJM{xqmP?>+~(tUA2<7$U!LCLE4?!rb*odl
zRdCKPQtqJivM;`JBR~})<@ruVJLVbq^|zrs9qOxHVyYeQ^>Lq%hndsI{XS2cVVJKJ
zf)DyieXv2)D3nra=pK@xq2h*iWYi~)pb+|a)K~Ua6{i{w2kL0eNX`^FjP!($Cw)xw
z@jAKf<7tk&k1;-;@$sw_HQL8>9Md<Iwf-npDzk&SOHP>=eB}_}+rcK2*t-`c|4U?r
z7@(2zijP-)jPvnl17|EbPge$m&G9~7^D)uKBsSi1NaSAk1Rr$iOoa1vGN-wZslL)|
z?kZObO`h=KE%tPh^M;Q%ea!MPTk4wbW2PW81hU4rI2OD&isuT<`V&28j*q#*sKpe~
zb<W!y4j&7AP@6oD6ZTu>&Yj=d%)HRYA}OTaro#SX%c#X$!jTdR6@~8zLWVQvavv)=
z(*sxmR{B`QG4ip`$7&yId~EjdsgL)3to88$7kT!A%f;{<9SzYSok#W7bBW*;kX)4H
zaNPz;-N<F1{{j@qA<A6$<N8X|@d-t`tc<qLn|yAqD+LM_D?A?jnU61gd`ZSOY4N$h
zEv#;^!RS_wj*neFzM`B|Dcde^2PH@Dao#CW($8*I{c9iJa2ELZp4|!5mD%6=N=@^f
zuXHqYNBQGXrP=2?d$`<9$?fGr>N-5+aOF)Fo3Y==k3Omds2boWA3ysz$VHMvLr>|W
zb9^;D;Nusr`O}q!`>#yB(YV`n_)hh^boPjkLq7iSahOcVD{J>ZIiM>YZXNLP-y1rA
z`S_bFzmI<@kb}&l0@a4yjzcBUFXbs)!WLEwP(8qj0cr&}I>0djjtg*npg2||z_Eck
z6kU^JB<D%EMZkBhFPn?=HzBev@}J?PfWAs_CaVZ=N}yhbPYX~xz^Q?H%c@#WeP5g&
z;EX`M9`~Y4f%)poq5>hV1?u}n4^VOGHs6_z0KDmm*QVP6oB&+|bPM1HYOkkBfTjVw
z0Dge_0nU~(g8*@WBtR%p))EOq)9<VxbpxCgC`<4<m2~Ez!vuc*)FVaiRd2x3E>zdP
zHxAG+K%;<)Mb+|(ob1Rsf!e8iqM_3)K=S|>1-LjsivVQ-&JS=wfR^L{Ey4nv7hss<
zv<lP-H`?`|kf!V!yWE-#kp^7&VvZee8=zf)3j?$l4&3cHv`lApeBD~p%HapX_=e6U
ztTa$^*fGFm0WJ@4RiLEn3V~P3uu@S-VdMCAkSK@y>OfuN&TN!MKHEu3=p3MnAf$YK
zSD|}=9xNoltpR!l=oO$}fd1_J@LVoHK0qPBpjOJgMlnE%qZ6Pv+bQ>(u#x2fPB>Tb
zr%#~tUwjp3XNmNcUK1G*U?9gaz;%=gUI8x+9!$#O+@Jt-(8>l6VUIE;QrPC}1Kbec
z#sD|5-h;VITR0V7aBu$qB#^sUbU%1ofZGEMWgj_4(qNuJx{Kp0_?-gT3*OXB(WNiM
zdji}WU}S*D0^COq1b8^W@BqB;o-BGGz=Le$;oPtQ4+YAjEcyBIQKbrmIEf<yy2wy$
ze>6Y^=WiQd7}>Mz@c>WoaoJfN@u6Zh!;`{f9$R`Qz_XkhAx;VL99hQ+6<}|GQ2|~E
zurR=)0HXuE7+_|AS?tT=M*M$yNsyNVj0x~cfUyDI2=HcrR|5oTIyu0U0OJCT5Aa%m
zR%tqsqn4%<1ZT8!n(|2YBq2VSrc<S~*8{vG^l5xt5Jo>s)9Ea#NsAerWxdmVX?jfW
zl+m|@*toaSPf?{coAs9Ra{|mIb86?`4ltk0&nrJ0^T^m%>eAQ+l0*u>_!b9P!ngDQ
z9|Ty+dIPKu)Tbh^MShn^z@-uw^-h-sc=Yu0GF~0hA}#bP<a?(p$(&R2t2llB%sqKj
zX-$ClWH{CaSQlV@fN67c!;UTya%dQcd>CLufGq*O2=I~g^pgOa0&EogV}ZOFnvC5{
zdHyZ8?(f`Z9Li;dPuYyu3Z&fFJN=x@{IW=duY6wy*cxD4pk4)ku3Ok1(C;z64)6`9
z>eAd!fnNpKCCGtA1)fYJePr*HE=d{vmg4cQGt4jlF2HUs0)9Ee_W|^yOQWi)(`!Ej
z_)X0hHP-tA><{px;IH;pcg_41;O77b0{kMxCUbImS6OTR8sK0hh0#NtVqCF9924Sj
zfIkBq6{1S0G@C~P{KK`*#b1F^asExAtyFpv`Ii$%w1ibdMXx51$fwJdva-5FD>Bpw
zaeRmqgi=%Bu_2BN|9hNyP84FTP}MR=M1>`sByC{osUc1aac+q7Levh`o~Iuo2yuFd
zGeTuVb7lxVgb^YmQLO?#T&O$0Xoj#twWrT)47MO{2uBcJz(FE;MbjJF&UhgzY;eL5
zQHX4aI-%li!+mPd;}8qC6_OCsmKXahE7T2fR*0q{nuVwrqJF5pVj71yJ4Ay}sfQW~
ztTM=8XvjHRvy3_*?wNOp%bD|>5KZI}!%)%YAzFk=W!zF=nZSxG$oWk{daF=*CZ|5S
zb%-`0dWPr~;`|U7gy<0BDzYv_yAT(LN^?g;unSp2h=<n}iMJ1xrC9g24x<}-r<a7d
zlx?n8x-7)yA+889|F7bU<#`4Y8Lq5My_!S7x+dkkUe!B==p15S@3d=(Z>~|+kzGP`
zYN6W3DCylobPv%ZR3DPp)G0CWZ9EquAL6=DUBJYSkd1{9#So<s<sk-!xF$pzqIZbC
zA^L^jJ4v-Z>F4d7J|WM^ml$Q>;hFv+283Wz1(BOVgF<zvW^l;Eet9M_+Yrh|s9g6j
z8{b=)hj$@ePub{`*6)+v6yoL(H`T$-b#P0FTUlU&feCJ-9ENBfp+$r{Li~@i8sUTp
zcZRqt#F7w8LktaZcZew=riQpD#JwB~ib|*scHT!wJ_~+-hzA6DP#{x>h3dd(`#$P~
z=Wrp8WWOp?9|`fO;3v0nnBlQX`ov|<lOdjxp?oF8(;=P-F)G9hoF+~4&xUxOJzbpR
zU*2;<;lFdmQJm2sUJSv1nU^I4|F4<nrBI#TVHhKsN#Tj0v7y>1cs1lrJqj5gVxl0g
z37jC1bo#R;oD^cRP%5?ssA``U;;j%fIR&bfy&mEXL5RN@V#n>}(?iUlzd`CuZ!aft
z7H4iXrH-5*Vz%IO1kM%swm@c>CrIx;N^!7&on4VzNKtQ9wkX76L5TAv`gcOSOF0a&
zKg6;S%R_t`;<FGdLaYq2A;d=^R)ts{VqK{A6V`C7x98szNQ7?2*Rn6M`dTOCU&(qF
z@_6C>5FZFa{6j(bPsGPJhWI4JrVt-<#n_Rr-o_#1%LzY188)-(j`^b+JD-Qx65^{6
zUx)Z2#FrtqhS)}Yl6w87r$K(VZYOg@P+0=McXm?pcjR|*bcUEjD&RLEsCW22#2$`5
z7vy{yHWt4N)lSjwP~CS%WUu7mNhDf8{2(~}pKuNNku!qJc%-yrKl70ge}@WZ_$9>e
zAr49O*ANFQ>A!JO^ih8n41a_;65=mbTABJM=W=B#FE^~X=<uHq|4N3VB2<&Q_-qwH
zszz!BtFVKvE|jAMx~D7iiW-8~6nJce;{>TFlgq-15zdHkW`tT1Js#ua2&Y6ijZ>1&
ze`vKN`o2>o%A3V%M`|(Tr6H$B>M{{#$VAX0G>&ji1U*ukL_TOmFd~={#)&s(Qg)rK
z{sHX>P6Riias^(5vm-Q!;714|UU3LsB+BZ-2-ygAB1A%o1ttQSfi>2x%*p6kg4YvB
z4v@kJt1VEb1iXy0p)|XZq|&tl8_+~3O(Qgmz?~&dG2XCAI=2W2%ObRlaDR*kVzi2I
zZiF`?ycyA90$NA7F~Us|+C(@%LXQYNBU})nZG?*>ToR#Ogy;LH9oLH@Tu469X0uP)
zp3hb*Bf_?ka%qIiB3u>W>Ij!d>N8{`o%RcIg}^uZq#fj0>Q<P)W2DY_cZsmNPueL$
zXF+&nFr&Qoh_I_rx<%+N2q}E3SA<-I{t*U5$VVtdC`Kqn*jcm07jI@Dq?L4egnp6w
zl;bT4DVwyqQSS(S1nDb~lzQ{jQOq{SmIg++CQ=&A>mv+`z}g2#>L?UnDTy--iEypZ
zuajqY^-<@{X<>Imr0ncCcW#bw3t1FlRD@e2+!o>C2*V@X&JmG8c`(BNxcEo7H^Qq+
za=-LR?}~7Dgm0$jXbwD-60$G%JTJQK-29#hg#0LAw)-UW{Sh7zq`#IY@%X;!un5cd
z<Q}4!^-YP4i0}wSH&S1AcZH=#BaEa}ge3;vyu*vt9*el9m3VvF6VjL`BRm!1=?Kq6
zcs9awLfpSP*Q{@P%$l6LCim3RTyc$(nHM6ACUYj{UXncA9D9+h*peOoW&W`i>B|wu
zu+k~HSJ*sGhX`XMwaHL%E_8f^*CI@cFqvFEn41t`q9EP+ri>02I3>c=2(L$&-B%6n
zG|BK{-}GKd9p#iW=ky3OB7`xb7;i<G8R1}r-y+Q7QxVojct66N2y-JWjIfA<9${XD
z`7%=L`~K%cl^cl+3nFaqn{vZ&afBriRz_GAVQGYSB6U#w-3Z%mvbZHkgA48`E+do4
z#(&g2S|O$V+*ghJ>IiEhycc0D`8?R<<ZAwbI_1l-E>f<&h>Y5mrycqS5k8EtgTfhM
zLxhhad=}yJ2pc0D-7oz(!Y7<@KdACIkq`8Q9N|+ku%kMD{Lm1SJMi33W^_x0FCuJZ
z^CERa91j?CN9#+jLf_`9)+%k6w*ApaPGWl{?k?_%@KuC;5%x#;nli?xBJ7Fqt*YAL
z>H6;?aAUdVq1<jx^HwQqVfTm9?d8(k-Ut;N%RfZw`+|9XjPO&00}*~<gBv?{@|6C$
zWj{wa+(0dQeETAWyVk!(%4(9``8~oRF19gFj`0VxMW`C1TC5h0KO_7d;UBIiOPwPe
zf}VxHI8u9*)#tw)f>>E)R*4mz9_M)F2O)9wFBaoyDWO)3V`9{ZaeRyuVzrH5Gsdwo
zj*C?}-0)<6I-BA~B3+Qt+JcpG|MSFH8D+3=9_1qClo+SRFk+Z7PK!}nO3uVMU63<k
zoJo9$`DEnus`uZ>Rv?;W&|~o6I?J(Q*g^?nI5FH9zC?GQ@9^jkGkEcTd!%Qcp*(L7
z37v`^OIn=8F_IX)V&r0EW7LV!Hb%P`bz__rqj`)LG3v3*US$nqG>TC_#@R6%#CUsG
zo|=?@_b7c(lU@17G0utcq~$b?ah+LCDWW(viIw_>uI-37i@`s1N<~?WmND8$!&=2S
zH^zA}TE|$`SPkg!mP5-3jwbJ3;W+X&=KL5J#7f7(3>;z-FO1PX##J%jb8wNAb7_pr
zVq7fvC9ygbO@FrBl)gMx$N0&CD`L>a8IdbvbcmI=TdEs4YiNDYF-9kOuxG615mgMG
zV{{P;H(<N6G%2Kej2`kJpXFS$`=vx^)W9<HF$ytmjB!(}_K=Glml)T?D8(p`k+Pku
z8}*6NHwL@kJI3HsKr063?8kn^7$8s0ZLDl+R&Q{)?Mz7<6sx7+S~8Oj-jN?1gZth?
zSnTm-oRzHf`WWw>@6d#S_zf}W){G)|bBtT0`}auuZ;f$#j5}i7CeaF;5o*o;C()rX
z?i7S2+!fQ&M2S*ie3idj`b#Yp%^&WK@%~`*zF66$Fx!JMhH)HYjAOBj8$A@`u^5lX
zcvzyO3>RcXj7KUdkCLmEIK6f}K_Q9pLX6QuT(&@5z{Pkv#xv5GXJb4k4d9kI2c5(B
zyhKOw!H#)GUzBXG2z)69?U>l{mt%|(3URs`W>d!sS9u0<e2mvPHxnF}U_y+EF}BCp
z5o1z}$uU;PSQBGPjHw)*7_(zci}8Al8C>LJyg{+4Qr4(nI$e-A1=4c@iC6SXYqfXy
z*E~~*r0~CTPK>!Rmd1F81JN}9Hdlif3u4UUp!X_cppWQ<F&4$(4%iaPM!$4%jQh&c
z+xn#}ff)$T>RR?L`xRq(j1@61Y4qP-*|ZNGZj3O)N-1qsj7R&W41=qey(ew>AjXF=
z*0SRgUC*(rY#W_dGuwd^3_iXg#-}kpi}6v6jgsNx7@J~jj`2xl{vO*3Yz8wQ`K(9>
z*PqAO664DlTiL-L7U|wq))z5;Iy0|oACucg`OKH`(C^rO>CArV&KSF59EkBtjIUyR
z9b-?7y&T6F^c}~?cgJe0{9A$F3B;$x?_-`6b#~8I8GeYdFUHRmNf$Z$Sr-MH&gFj3
z{m9|_T{*C#%QgB1VmV8<6n>3yFvj5+f08-X%YNgE_e1VbjNhe4WHm>Pls{tiy-(yw
zjK5-3Nl-Px-!cA)!GZXft9rMx_%4e_{n>`2m^wAbcMQU6iF*03p5W*N^i9Y2^HEO~
zj!956Q4$h%&eupl*zvG>U0K~PJwCw+37REnp5Vj;wV0Y9N^nwwlM@&T%mk+-I5kn5
zikU>2A)J=rj09&U^r?c=6LtQ-!Zx8*Q-?Su?Tph)L^OFsPr$%uDe6|D)G<il3B^v}
z2*Ol1fjg-{#81Ew2%Rn?NZHm;ZD7U;k_7b=oSk6W{6bbT)D>7KQAf?`h~q4Fp;s9*
z*GurTJVm@gf`$niNlq5qSdeoP<v56`+*WNOl%_(dAht+QmY_?5t_fNuXqBKXt6+u%
z=Sk-C6SNkDCA3K}tBq1WF%Y?+lCJ#!CupDGiUd~*@uCEmB)C-Yixd2>ZCbyr>e^*O
zxjezr8l{SIX0|Hpkl?BW9TV^pHxendgjdT`L^>tt%(3_<$ICRySdM$Q1l<#)33^Lu
zJreXvkW0{0qSgDS8)*NVppYO_zf>;7VuJA}mzT)Zw#u5d`r+II3v+E&I~=1v3D~Os
zlI_-WoW2SA3C^lB{Z*UqPMm8J3`+2J7W1+goM1?TClWlF&;kzECAfo4O>ljJ8xq`-
z;MN2;CjWf}-^^6r0wa)Lkrk&&hc9w&OTZ|T*rVGi8-m}N;I0G@CK#4rXrd<L1B4ej
zcPF?<O1M|x{Q~bxz}quf0t4-`Iemycl;Gh6k0f}Mt)-45c7_Wwg3?>HjDf_F93!*-
zV+kJTaEtDqHbkWGkA|j{PbGLdLES9Q%Ho*>&nDQJU{`|Y5<H(^Wr9@+MkRP5!EDNQ
zuj-={EQw2#5=>6;VuF_vyqsW6g6~ejYl(X6>vO*I3WdQdjZN@sg1>6!$0exOKPAF2
zUXqARNHCGJ{_7%Du?$4`l{zKCOfvZ#XDTNGM|no>^#pGSZ}~#P{&MkoGr@GB%n<mN
zzz%LXleVrb%t}D`Y>m>K1arxX1oILsO0YP=`~(loDJ)39#jQjCw96wohJ^|8jY?c_
zmQX|!4CtROOYjaQb3x%<iLz4Sq~G5^C9<4-Jics&KrYU!6Rb(_S%S|KyvG$F0e9>_
zBCkg0)^TnQ&wVKPdJfRm{QC($kSP6aGQ$SRz&yNqbz_2$IRUGceUe~Pg3VmwrmNGK
zp9+!q=>F>d7s4$Gz7Tns(?9LA!uc}6cFHO}NnV}bnt+yE+XQm2lAbGeBp~E2(^m<;
zW|>*O&*Pf}-zNAY!C{UXxshOhf*%un&yIA=?-fX7PlEOR|NCP4L5TY(4DS}0^b?n$
z1P2rRmf%35E>HheU~OIj%=YXl5+QNWuKe#Tzkk~ON3{WdNbtY<r)LaMQ}WLQ|42uU
za1q{{`%55^zXjRyMs91n^xp(WWl<%Is#!2vJ&Sq+(rSV;O14}!Al=iTR3nR;S=d=P
zSsa_iaao+6#f}zb$1~^3!pT{jlEn#GoR~$eEcy*dPs*yjTwWAHII%~5-1;I<*`1oj
zJL?OlWkJ{U_YFvi*UqZbcSO#};>;{>Wy)u=(6cbIO8=_~{NzB9&hX7Fc&v^`@2o6d
z7@%C}6S`S-lt0WO%EHUS&w__c0#fK(^`G32dy0$_;W-n2*p7M6iL>g{I1xzxWV5J~
z#n~s8G4QjxUKaJUxHgOHNX()^7M-)`l2w0v4YO#TMT@LjKpJJyIE!<#Xp%)!w(y5s
zvn+ZoFH9Yf-oB;CC~>;LD$Al}7MGJzHA=0rI5&&7S+vXIyewK%LZ;`=&!SBhBkLBp
z|G+3q=B5PU1+2&_k+@_)dSMoqWN~R0?X$Qji_Zt77iU2_5e6a*)N5SE4Eu^icGW1m
zB8w}t=#a%#S#-*RhrRjFesvaOw-q~P5r0`^^sKo#B24;oK-x8nZdnwwC}q(-iym3E
zy5_UWE|SKK3_Y{hzq8mYi{a}EIiV9NWR)8_hC5FwFV7;)sy)&^S@m7O<-K=Sz18z;
zk+3i2A&dT53?SP%h(S5~_~DYmKnlYVwb))$No3OCEQUywNsL~f#SI+pEJkN>V-`1M
zaZeWaW^pt7l~s3`-bHyEnBK}ZQ*2h}Zj&e}w+lk`6N&%J;!a5=o*kGD<&cfb-7Szv
zw`}=+9OA4x*zj0Z?Y%s}u4VD_;UYaGKbXZZ@`NKeFlF>%G9il*A_k929%g$)xJqPX
zC50V)Jc}o?cruHpSP_?fN@iAVc|9wTQQ{1|cb@P$iFRNWm2~<;c#(X_;<YR$$cVh0
z#rq2iuVgVsn9NTzvU+S5b>A;Cyei1JEXE7ce_%@D#4ILdF^e<zxU$JvOvz%y*SWW{
zYR#OQ#T!|?N%8KKPRrtTL5N?lrbswFiy2wmJ}~XPKgZ}x1J$nAOnICo@E)kyGWv6}
z>gvY10*O!<=4Y`Wi;uF{C~aPt#p*29WU(lV#gyADmQvXIG+UkpmFXP%ce3CG@ua+)
z#j>pO8(iV>b%kVGnN>;<hE-YWh#eyDNwI6mfh^5noxOuh7P6k}2FwlQkBrL)T+Nmi
z7(Nt)N0cx5skn4t`f(PYWbr)*I*UzNY|i3qPD3g1(=4`7fd3y&*8wd>(X3TaKny5|
zC>NIx0byomb|=p)AS#Ly6a*E)yZ0`QiJWtgoO8}O=U@U+1dNz7=A6T?m@&Pt>psru
zQ>VJRy1J^mx_7pxr@J9|P{vyvWpo<P&8wsTvc29_y~`=CA>QY(DzdqwjDK=J5d0HP
zfKvS<fz;$<LHO5<oSb$(Z-_4%;!7bOs;TYejLp9Is;lDP*l!x*TlR$k*T8oiVw_YB
zR5tKKL;SBH{%VN7ITyX%@W+PuLnQpv5GNYq=Z5%&Gtb`Q-vvH!M&Z|n_^l!S{iF0`
zSEaryCi2V~1v2!$Apd7WaN*)4jXhM#y{uH=ANs_=83z7si0Z3~FY2cLW6YdZIL*-6
z2HjLS1H6LaECWruDQ>teZ{SQrzrJBzUP?k@1p^fgR5J7hdCc-Rm+%||=NhPG;4%Z}
z893j-MHFbDih&CZR5eh|z=Z}>H+5Up&Y6!&2}f7${OR11pWZBO@Ov>K_nKa8=zqSK
z2&`e~1v+lnyHv9Dc})YnX0gc7t1ir@4AeGY8b}-94;c*9HBiq$9RrsO#lEC7Hx{y}
zzJV!gN*WkwXdrv2<O&1Bx+ybJD+C$_Y9xvbC*RLsUYxVYV_@8`#Wv*>=Q0AhrSOfj
z3RQ2fb;H}Go&n!LXWC*QFc2EJ$v_(ek%8DiGXvKeNDSmydV9X9fkp-nc2g6dEoow)
zZ-rcAfuvk%;H7Trm(Pp8>ZYzTaJBIBypd}JVcn-H<gPQ&+(0V>t!cY~edpy{7-(tW
z2Em!-OA{WD%OgXX*bz6rTzVrr_tQK#+7a^Mv#o)f4cu<%2iN_vYG<Imfm;l`8Y^aR
zHE<id^2JgvNHUSmqg^@(<f3Iq1D&Me9R~6SN(>ZBmZA#Zm6i%#I7R7lELFDir;C9*
z*$a1+?`7aFL;sZAW8hu`cMHxVo=Ew-o9b$Ss`fC@%|Lf{oNOWHE3@&9Qaug*kyqJ*
zPj80bAEiuv=r_Up(c4cHGx2$Hpn*XKPNea38iNfCG0@LMe-lI5#RgUxSZ!dq!3)|j
z&A@a6BMpo)Fwwvy1NSjRdlrp1Fu}lR17j%agZx+n+?2?{JC5C2WWV{6UXA1;6?JCf
z+o;Jx=SON&4E;8WrBlT&_7`=YVPK|#IR@r3Las<L&7$j~^0N)S)%la_^!hD{^9;;4
zus}p{1#h89pr}QLUSH+O{G1OL8(6}TNPP@FVJ;U)r0hl83aPTvz%Or?l1Q;@3|wO3
zQWI+ptTV9Qzy<?f82Hk_MgyA+JYnET1DiRl4D4n67}#oHn}OX1_88bspSRENG_cFS
z4nw~oWy}*cyF$PH=Rq8VL4`cmLb=`jnFA&F8+gFLBaCfB&n*ucc*wxRhCVQscXsf!
zpZyHHr`%S}Qd~|yAY+-xqXr&hU-PC91BVPeZs0HjU_<fVcS;GXch|2Z_^`yo(~h#&
z{w?PBT!c><c$y>Hz&i$>G4QN`R~Wzsjv08)z>6G5;@;;CyujWpY1Y4|-Z#rs|GCu5
zoX2_;eX+kLZ>-?zB1>Nrx4&WFO#`pf>L&lc)B7z$FTEb;=>9Ozb@+3Rl=6=ow~oJS
z;5`GM82FUEW8eb=9~t;qm_KB9%Pw>-?vb-zceVbtqOyJCpRwKU>T^y|6$%Rv*1Wa5
zerd%;>8}iY%@Jy%oQZD?d`ry@{KolT{O~;|e@-liOW7CyGw`E<pT%|bCtp4M#89Uu
zH4DVK!ptWGdiWR7q|Yb$-^H$z2L3Yehv0t-<ee1s>feI@C-5Im{`9=;ZRWW*EM+>)
z)B%6GKrWn?H*uzkb4;9T;w&Mu^lVe_U9VuGqKPg>s*;JW-4z#>2`dW^kCZ8scAkl9
zCN45@zKJR(E->|?^o1s>n&1^AWjti&6vu_=>QeV&fn{d_)exMLxe8j-M3IT6CayA3
z%fw|SVpIPtrcBf}kui}q^(Vn~Of)dj(8Pb|=|2>AH&U0IsB5C03F3|FbtbHD;tCU!
z@5nRFJ5g$wFiqGd_H<Wi6BD{C%f#geiaReZS>9bS{q|TXACGz3uw(MOKmFG@FyWf;
zO!y|+9xMH!yW)oPXS=I+yQ_JZ7D5x13;9UkxJm^M%)~^_L?crV;l?Jo5vc6^_9iB-
z6e8D)mQ|^JwTWv?++yNZ6U|IqYoeuzRt%CJ`fE_Od!32qCayPe18ea>_-^`=6n+}e
z!qguK(2cE4+(;KS&b6njPtV<CBB|QBEhmIC3vGnLeP}lek@R*Z4*XkM)I%S~%|}6Y
z$89F=Fi}k5oIDS@x0~olS2Rm?638$s`x1o8aF)xPC^1oLqF~}Ky4OT!6Ux;0LUu6`
z^-vc+RNSUko>xZRX=2u+rA%#msF%MhzQ;s26WvYRYx0!HLRZ4)N{JBmFwxUQA5;Hl
z>?NhWO`i8y;8Pq+`PaJ)?@P8$dMnWY69Y}0kw&>R2ALRaV!eqC)Pee&SYcwNiD4#&
zo0w_p2gMO4MzV`dOf)fyfh4<^#|Uztz|jJWu1}3URXR?P@dEGcp(dI72zn08sSF_#
zoy^n}p|C@F*gki0Ok*fMRXSbZ3=@YwEoF9=iP<LRn3!wo{Zxxh%rh}x@Pz^wm{>&3
zt9CBSl828s9Ph(>s3j(r3eQ$6wanCyJxt35A=@g6pLNuPM`#MZMj#_?t%(+g^+Pp#
zmfu)yG_lFVaT9Nw*lc2piAPKvG_lphHWT|y+;3vLi5(_(n|jjb(M+tkQ}A5^+54n3
z?UC$W4t%+b>H$-~I(%3lU-ms{;vvELHjs3t{fsoB@NiU3G4Ys*XH6WVf2f9>u6ESK
z<EH*#fq!QXv*@wnBLa_}o`1r`lcs)-ddkGpLhM~fvpvH=s;qB*Bz(@q^Cn&~@v4az
zO#S5WqKTIT;csqlc?0;eWLZ>pu+M9feN*7;Cf+zzN)0(Hz9rd(J=8lU-Zk;9iSJCj
zXX1SmpPBfaft1gEVB!-KpPKm4)Yr*<Wa49nZf(8mb%sDj?431J{Hm157bd>sY;WoX
zjjuR_cj(Va2){P<QvpxgBhJymuMWRA@q>xK8L^yjO#Eo#XA{4$%R1)xZTkZ~)K4Z(
zP^GoSOpJkFP5dU5KTZ5Dq4I}77LlK|c)cc(lP3OR(0-_K!hbnQntDqTzY3|lxP<o+
z@M?_H(jYuN4c<XOq<k7@rZFLniD{gbMujw*q;X{$71OAcM#D6WG|o<=avC+$C`#)K
z`_4(@!ZfO;ac&ytrEz{5$M%<2N#lzi>V+Q4{kgQhS-2n#!ltj5R!ifeH2OYTd`TMB
z)B309;<SG6K;*?oQ#I0hwT)98;iYMP#`|0A^|p;#X<U}puPW-KkxFCL`eL30!GCtO
z)A)Nu3I9h|Sy^KKS$bMebvadiuB2`n_1L1|SESK^wR$SjFMTgR?EO;y5p#PgGmUf_
zUK)NHR$5<6?T98eWj<7#NuzB~l}+ngb@)<`gPqWoA|m=1f$F98t@kIZ7s50m+P<jd
z?31O0Nm`%5o)bu<ksyr)@}s1tX<U^?NgAbTp1*`^(rA}P`!t%Racvr{)0o~<{qLL7
z>(XeI#)r4&n^UVaZb<7Ro?6g#-xl}iskp_RJT2K%f>^&6lk-OUQ(W36jhh8&E0EI{
z-TQL=6rXUY`7LR5OrsM`OXIdQMlLVukj5K5)$M6)>Zu;<slMr{coh5{Y4EOr;xraq
zqli>~tt2lvv!AMbA&t&y^h%?58Y+!0?ES-~HF~K#)3_^*ZfSjZ<K1ce)l=P*#=U}2
zhv^sQ`B4~&T}3e>-P7oi20tk4nb!B=vKDveauxJo|5|TPF788n(->bl*DsCx(ioja
z|1^SLYCswTIsXejlpS%PbTD1lOAQf72I9knK3w1kfg=Tyd6Xa&J0^{>l%K}QPI?*e
z?p|t~;6zAa8qrHlN@H>w`_ni;;WcYb;dn`7X&O`0n8waZV@4W_(%=b2^Lr_tGBh)d
zS!v7`%G@;e_R?o1%}IkrM0fzvyfg^s)0t^36#8?*!&MYAEKcK{CMhDz(pXN<q_KfK
zX{=0RbsB5Zc(0dQMfqQs@<*9C*YwuBQ2KK(wKfetyE3g4gv<Wy>y2q_O=BB-HjT}6
zTB5edI4bXy@ZpCmf!ovAk;X%GLYMr`G<LCxAbBvYH~H^QW1k@U6|f+C8HA1Xd%F9D
zjhqh%Quey7Q<8d^opON|)%^lIlE%R_o=)SLG(NsE^(Y5y8i&$)&74Q&P`Af93T*w)
zh_53Lr*R~Wqm-Y<lbm@v<en19qSc9hJ4}ScXF0c|@f8g@Gxr>0ER9dn_>`WUT=GI1
zFQ@T};4gBBtu1+pMpejH=&fGmOx0Vxlg7Jgye9bT0^bn$W*YxhE0EzW$sQN@w!jsm
zO5UT`M@m27NKE5>4%ps`*?W4ckJ9>5@{eV{A{&XEvWU?CpK&rd)fb=hLFH)a7o2Jm
zy{5!YA;Z^ce3QnvX*B)5_{TJUO5?jUzE9(aG;ZgA$rAmX{69urZ^guuc{rc1;1}W@
zb2~fdf8nT1W3G*PHhxRvcTOWV3O4>o<4;aU7GAS(lEaO|%0f>If2Z*er#K6Ng@0)&
zXI%>yTR6?a=@!njaK42zER?fQ(LyB)<t_afd6tC=7S0r$pSF?0^p$))#Ev-ILS-pB
zSKv7U%ih12G4tcNDwh7-sj7u)mfpI5frSeNDZ2rDcTsBWftnXtdUb+Z>6Z6aH7s0W
z!LVRjxYR;T3$Ref(rdFt7HV0zOz_=}YLb!?ytY7|SVGD(snq2b>I$WSrEl}(lvU3{
zeG6AuIMiEz8c!k-YSqxvKjnWo`ujL4khZ|D%p8k5>S0^RSjbv>gC9Q-V`<rEXvF!&
zmTSSY^hZzpMvO4D5Lswrp{<43LSmtrg=;P3#I8mb8e94+GYV;9;YtflEnFo<Wgm8x
zeQ3tZcCWT@4Lhh~uIv*tmR@I}xrG)MT3Wc?!hLn+)3fsV<#kgxQ28~*q_h%IHwt7E
zt*QS(eQzo8n=H_!L~gdw&O)h$f`#@LZjmm?Te#K2ZDREu7CKnC-9jfzpCZD<;|@An
z`hz<rzT%|2NaO)Yltv0+iKP$yU|O0=b+(`^+->0=>FzF;{@m{_3uEHcotC~0gw^@*
zLn70?7P`>`jdPVY6nABF`P@}c>(ges(=)f^xm~=Mh2GTA!YT`WEcCT7+`<S8{VepS
zCoSGvlp0{^*A0W{&vLne0(m8I>2;~W7KTVx@#Qc3UCxoHd%r$og!dGWv@puTR14GS
zObOR<7RFl`O;s&C*W~~ApNzHi%(J;-Zi0o07A9MmLgsq<*i8O9OtLV&Q*LyP0{6Y}
z6Skk~YT|SYGZ+#U7Fn2SVU~q?^pAzv7Uo!(D{Ym1D_XWSg&%^IjV3m_KuSsHc8<k@
zFSW4D!V<yDMjY!dm+T6Gos(4AZkg2<)-bRwJZ@pFg>@EoTG(ZQ3xMk_Y__n)!UhW)
zEo|bTuv6R-$09xn6Y^PitA%YAwp$=h$_`;8LT2)ic{jtu!hQ<}EbO(g&%y(Y0glbu
zsrxOI>0CA;&|?pA)I{YU7VnXPiNr@N9JKTvp+^Psds}W;rN@{a6HivIojPpch=r#u
zJY(UgrJwznp0x0U;H{rbt*V{kcVth=faM#>XDuAF@REg>*=xe{0ta{#{jmK!M@l7q
z8VS>jRDMcv7kMCm#nKPz{O6c&Rg0otx9|o>w~b3|ylLSr#w|n9!f^|4TlmJpw+t`~
z?^^iG!siy=v+zFWpGvup1%4p#Lx!b%Yy6R9S$ecy>Jtl}Qct0m!7rrrYk^-1{7NAI
z`+r|P&o7AvJdyg2UB<2ql3y(RKv#c~|B>z$<bUkJI;nG9{ljs>!p}k^-mw1v6MvP8
z{Mr3YklzI!@2yT+_=|J9jq`2&#^-NN^)}A1@sBY4E8X-TJKEO!h!|l1HOVok%GoF{
z{Ab%ZQ;-TaDhhIzjU8^PVUHq8EBm~$lKubRIg(OYc+RnLt{^KpmrgFOV&ei^57LWm
z{gusyHmceBmxXv$8?U+gdzp)DRJXw&6w=Ga#RpC*NTn{dQPV~v8;xxg*{Efsp$)^v
zWj0ba>a&WC+O}R=x!guwL3nCg9YMHrsqFtRH!jw*^|$<6_z8AJeNyYZqp1eA{x8Pg
z3qsRI+D67kmNIiWUdBym32xgw;aO)L8?KF*4%u1k+3;=fv+K~-KOcd>+n(2d{kqmp
zMYjGNvi;Fg23sQhIf1PBLvPiDuAm|O{?tZO@xwJXn%TI@#?`j&bPhWH=(A_96(2UY
zalMV}1gE1o#oZuoY$cGC7J{_2vC=6p%S4ynXyYauZEUo)aT~p1<7OM}Y_zv=i>*I6
z;*|Bz1I7HfmHWnTwe^1T@9XMgfjLNTx6#qY9X5(>z5A;ZUB{y*<YN%7Gw{Yb{sYR}
zd|=bp4GeHoWksEBC>v93OtsO))+<O%<89n&<1QQT>@Vd3L3i7@$Hu)jy4n~*9vj_k
zbhpvhMn6WNtzX>tveDZ{Pg@@%K?#9V!j*(RHuzqHYp2{%{N9n${<i*zhF%&-r+rg8
zfR=ut?}HvhGoNyKw*TN$$S|5fC(|2z8OLt2ai5LR>^ob3D0jA>;^`%PM&-s`E&`9S
z@o18|r%9@8-_AIx#fn_ypCA@7m?zqpWb0?M$pVRREKIX8T^MGc3cMMNkf{7jTTgnk
zgvfU^bkrPSEB~{84L9G$0vr7^7?8n28;flGW#exfi)}2ic^5g}u(8y}G8>0%JZ@vT
zjTJWTxA6e`+QupyTWoB#vD(HO8yjt$(?_kf^=@;Xc(zWI=N9o%jccwKd;<gE8GQrq
zCedfJKn@UIin`6lb{l(W{-?z|Z0uwJJXyNi#{Tss{G550WZiKk%zDqJ>h)23g>#=k
zR$23UDQ|6i(8fdbDvi20&wu6IU9g{ndR6g34z34^57>CbM)OBY_|}hErbmVTn7~7J
z;joP(HlDNbyp5wao?w)|-SBC4Rt-F9<0)I;G{<)V{6Ba`xdQicJi}?BkK(Z;&)PU<
z>-`nC_0eAtykO%+8!yuj5(6)Bc51GA^ih1PIPG9f?#kfP;Hx&?Us=rbns|oDn}U2~
z<6|3d**GrQw*|h(=oN&K@U9?=hjN^vd?3h&><D=i^ofm6ZTw>6?Q2q>+4|F`?`(W;
z<8uxohO~{ZY<y$mTRQm`)$d>_)7Kme4GTmlzl=zv$619RY`pq?=}$KPXX|ZUKMLe+
z3&cr3!D;+J>CXbE^-;f4a=ZL*Hhvf64;z09LL$%8BRt7Q*B0~K^?z*qYa`4c%HTg6
zr)6+y1~oG{J%ckcsFu-hK+0uMK7+F}s4Uqt1y&SzmcR-E`Fe%Sl`?v84Q!S=Cxdf^
zUL~VntFegbyo}ymc76u4uGZ)9T#&(q!c$e~tW|cQz(pBU&)_wqCaYX53^fE^B9KIm
z>!J*5WzZmlh8bLzK`MjGGx}i3+8KRJCy}gNlghmWbuxNt;uXMzbp@}NLH!J_5WHQt
znxyl#SwbTNGlOgfP6p`=tPIAts>Q^SVrTS=A#SwGhz@*hL^a%uK3v)t=m})@`>=eF
z!N9+ZnGV^hID;gE)*1YAB=yIosaytEXK+mhjWT-MaASc@GPqKZrfhU@Ez+5;%3yUL
zebO)g(l*QB*~+=*8C;vuf54fp<1Ep#7Ln^|MFuT0`XDCmpKp~xOTiyJSxO48y&&;M
zc1i|qGH9DYA%o5t+?+u>`aFZ;4BBUKO9r=R&@qEsGq^2-AFoNV?&s;kfo7==8QwkJ
zxhzXjoiZRK151hIC0inJ+{by+Ni5B9V~=d+&!9^Ny)x*X!JQf0l|lCmdPs!aO&;n=
zXJ+(vM80L_>*j8Be#6wAM@mWIz6(-F?^RwSJu~`kEQx(6uzbE>1|*WRFJ+!tAb(kQ
zAlWjQk-^Li250ykIwoc0*C&Hv8H~wbEMr49$qy%z0fTU)=yRXIQB+CZSdEq}*BjaC
z;{*@+YM36g^s4oQj9%sD95OM3zk3uBpDZ26X?#isQ>DdeW$hkxr)N;%IlY=OD}&h?
z{FK3o4CZ7oH-n=YJdwe?4CZIBJ%b$?EMT{0us(wg87#_RaRw_gSed~RhR`#qWf?4&
z*j_4db#r~W^V)}X;x)3X7)AAKuFhZ$hd@1j6UN#M)@AhL5O1XAYhp$?Z@lFV$Qv`*
zl)*MB+MGeFW2r5IbEge?whGQ#Ww+~cXza{jR|XGe@K6T3GuV^C{q*D`TIOD1X1g45
z`xvpyipkIB9?0m0Q*Ks&nDaoj{6TswgZ&vC$lwwB;nPwkj!iN=&__L%!6B)8Sc)Fc
zfD)(xEA|^%!b`W02)+6K)RP%JmBEJ@e3Ze{89bB0n;E>t(UHNi3|{4=k->8rJfFdf
z8N9?8=#YDXU0=5_`e15kHGP>i@#p#|UTpm`N3>gbMIec6?)41b5Oe-|F~xg?Nh!PM
z_jm?xXYh^`@z&jUGk7lpUW)xe24#0xlk<I<OelY0(-a&1ID=0z_*SZX%9!t7^koKL
zW$+n?c?Mr_(D4p3UR&I+CVPZ;g}?D)imS(8Q!Kv`?xVgTvncsp2H%Siilv8t$l!mB
zZCP{vk<-YN#nk*~&MoZmEb3(OYX-k%a9$SYXYqRme=zp4sF=l{8Jy&lo<+GV{$kK_
zwx{7){p9&iMsGOedNuKXIjL64)!eT?6L{v`JmKkC@S{i~{9jW(i!-yh;5Ht&t2aWQ
zCDqA4YgS36EY6nfIayTB^4s$Q4`6AL=u?3BqfdBl7JQXPqzWYvCvz4TW>GbZi?gU9
zb@`cOwJa{m>c#Wj-xpWU;$WQP)9Jd}oi7oF$41wxnZ>19oL<zqLSIE4xJi<$-<M^<
zqLlD(-FsP$0voD*s><bA)Xn0`EShFfFN^wFL|Og!=ZY*EWRb}tE7^uwm|3K=FeFQc
znthd(g)Lc5zdYw*c=i0|>iKWKD|WJQvk0Y#SucyXdH8=8eiqC!1$`AMt^4Y;tXKS2
z9A}YakrVz#r{tIYV``j56QRtkS|IaPSzMjP4Oz6v;`)oU*lV(AM)@a7ug#)4iDK7v
zSy=m1{Ir&T7z=$BACI|&ORHOE(K?G8>C(-`t+M*Gib>`3t6ogqltr5?+Gh3tQ~K@3
z_wqMq(JqVjSx`v-^(6!PDk4LsmfVuX2Pca8p=*aMZf8)n!sV^dF^f)Fe0UW;x(at>
zQJls9BK#O3pG8R)cX%lFaBGF6G>bDFlykrXvO8y?vgne<ye#Htac35HWidL7F<IPA
zWM00176Y=lhn-Sn-z%`Iz-|Ib>@G-;EP9@z^b(}Ez&--|3hXCvMqjnQuX?htI_IX6
zfmsa7g2-TjLj(>LNa8R-h6@}aaAX#vPL<v#$fB01v004EYP)7L4Cd#@XL<LK&N599
zWMUSR1ett_K1GnJ0;dU_E^tN`GX-JY!4-?%@2lFMi05Q+d`^CD7PF7!nA$GRFW_*?
z;>|4H%3@I#i?cYA#nCL5WU(}hZCPIZgJoGP=Mc+cEu*(pYDE?+vsjhIY5mmUIr)PN
z^ELaa)macS>-JOYvRI$R<}9kzDcO+4Bi9x-3f{7xQvK8>!C5r2pV}h$)>D*st}X1y
zVrLfjXYoK5yM(?ci@jOw7JNZJ#fm!w64{r<ll>IsKbXZs9K2aPn#IFe?9bu=+s%Rk
zKkBC*=v4TtpCUq6P(4<BEQ>=T@UTd@u)lg-d}Z|4rB@4lf<;+8pT!GVoNSqTDhpco
zOcqabI4sOFG5c&5$Fk_yUmO0MFc6_*U*u@Lv+$}=`t(;XW$|(rbNegeuVg`Ze}DCw
zl)j$D8(F+25?GhcJkFuVL7l~S)IW=Nv-muVFR~bZQ{lZV-sfNu1*k@qI|?6W@lh5Z
zXYoycHTR<AlPo^X;xoxofzt=58UqxeKR_}2CCBMa1?u?~eYG%832gCef!_#)+3&OX
zfipG-DMwruKW6a@C;2RH8lZm4;^!=e4A91&;NTL3Svu!8PW}{Iq3C25e=x@8=IO>i
z8NF<`pQ5jrEzHj|r2om{Uq+6jmESZ#9U7oZ|D(ww?RRSH;Jks#8K}xTIMYEF7k9ci
z%RvPP&pUX*K}83Z9Q1I|)4|yeDm%zIXyo7=2j@CGv!16k<2(oFJE-B{5;o-E0td?n
zs%j2y7^p6EaNj^x)zQOB4OGMlFLF@b!Nm>^3{<}}J4hWLsEA)G6>B;ua$pZq6jIAU
z`$1~mAXVGp$;^ez9Hbod9i*714pN5)srLq{%N^8p;5cv{)N@eZf#JY(aD{^g4jMWj
z&&fgRqQM$w2P?`Ul6JuAwu6j=n+7Y(LD#`*%wUyuuyU{>Wxwzfe|@m>9E1)chbIW-
zd}=aS1p+Cj@(^{!5EVN}9574aRE$Vt2Tf?TgWDWj>7c2DmJV7uxXQuR4z6?1+`%;t
znu(nJ5OwXT>Sc1S9ipy3rTGmGh7Zy9ws1f?9Z2)(mevm1IB4tOMw;M&%2U-PL$nSz
zJ80+N7Lm|iT(@_K_9u&|@C!rK7eiDB2e&&Y<z()lql5B8)g2Cs9dwdjV1JRBcF`85
zJUe=*DsezH=+Dj$l!JR5+{>78aHm*tmjf!mt|Wi6q3Ui%%Mf+XP^~I!b#>5997s9r
zh3<lrlP>M$ptpl14wgFT!~S(J&cS#GV~47K4u&`w>Y%@a0S*RAAPtg+s2)uoEI1ot
z)5GW}2csBr4%mJ3Din=yFj7ot?v`pD2CLC@6eXXsi(Sb?=G8;Bk`o+Eq>T=yIas_P
zKgq#lL5Lq1s-`%2W2ibYR53f<!3+m;9n5nuQ+Q?xq~BON+rb<TkYSqB7^W_5sa2it
zV4;IWV!{GpCh_`Vsz5f$l5Nm1wT%9EaKFQA=&^#)=wOqB%??&MSnYre8z^U(TH|2f
zFtyIXTFH{qs%3$#uXpg`F!k*)RereIC}J^O<%X**4t6-$Nw+)LCUjOI|8~a7aIMBJ
z2fH2YrNH5u-gmg#!>AaprViIuFzpk~Y1D%b9&+%AgM$tprmG!L^8;cp5vD`K)mu{Q
zQ3sDXc+$aB4t^P~4sp;qI3jW$=S(tOHCUNHD%C0f35j89MG5pXCD5@?J9x&yvks0q
zc+LUm3Ubmw!t+MxCjnAkbnudc3td!o@v?(g*p`D|9lYw`H3uI!_>e)uzGI7X^Y1u#
z)4^K~-gfY9aiRVQMdEQOYAiU3?MA3~Id&YpFYsQWlWoU2xsM!t?BF{G-#hrk!KV(s
zbnq1i!U*-52>IN>gj`|l2=#@7H6zrcBNXA+4!+@>Ia1XhslH{?Bh-lzijaw7f8g+O
za6+ng&lP^;%rH_Fk5n%`p8JWWJ)T>YE0FDH#(*HdIryDZw2O)^{&4W8!+$zB-Ni|f
z@VA419Q@^gqK1rAG-~ch^{<2fq?9I5J<8cWQk~(VoU3J?>1zFnly|jr*!xe7RHU5c
z;v+#Sxj5U!c`nX(@z+RI*~K}ocIHK+6thImb+t2zWJakfF1|<#7l`BzqZDyARL#Xj
zE@Bsni|Q^ec2VEO71Az!Qp3e1E-rOZ(?xApU&k_|yH>KuMJ*S7MybnKnk%FPXDic2
zY1fgVj?3FjP|pS3b-AcSwP`X<AR9Zkfs2MNvMwAK8%8O^McRes!gO(HlsZ02(Nf#R
ziBa0#j7T`=K5Y>Nx-L8yzKcL?sehktk=_ek(0h?ElR{0X4;__r(a6P(E^czs*hLc;
z&0SpY;z}1yU0ma$nTxB$WOmKf<dKGmv*~O3%X^=?j{d*9K!g-ZrVfNRxcpKcEnToT
z8Iz1CdW;&ja?zSXMyOH3-^N8-7ad&O?&4+_?OZImPu=3;%zUA}G|J9;J}EGJtBc#D
zXUh~|^^Pt&xnP_WT<p6~-Qn{4O_b29E}j>w38_*k9W_Ex&X=NjXBSFpQAs9Nzstql
zE^2tV#KS#o)Wst%4!Y>-qMM6(F6O)F?xKf_u`b5B=;@-Di$N|1yXfuW@A>(DF8Z^V
z8PB6tUkbmsKw=pj;9{Wg9G#o5F<NCtE7FI!80uoA%acyge6$+oVz`T8qZMnFj#eXF
z%o(lrO7=b%qg{*<3C|1V^U><78?^k2bMxa}OmH!sf#+hP@Jx0w#l<8S<oRfR{_oMM
z>KHYZt&CCAguxi2-g&pA&fNS=7qi%q3#v3*_(|_F=KqCLrMWI>3maPCVxf!8F1EN>
z<YKXlH7?e&r(7&`vE0Q9hTM%QDn{j((XKJtgq2d4)=|PL7ptX-MPt;%V|1LabFtpV
zCb4>h6m1m0QN35kC_;LPiv2N0ZFRBD#cmgSTwFF*Z5OdSIBkwm!C19ZvTS0Pi!#&p
zG8kMu<l<o$cZ^l{3&Vo~A8_%@HQIGdL@2!9She590Xl80ZgI81M_oMT@|GNY%HihX
zan8>!UU6~Q#Ss_B$Ess4j=Ffl#ZxYxcJZVLr^yss))0{&n&^g}aq+Cs&3g)m$ExQT
znJ)e}R=wbY{4cto&);iYcuABef8}xNRhKUuwW#-8yzb%+7q^U4$2nt+)BX6S`06be
ztkr0oB7B=dTu{Qh9By;+uNDgQL(g&QeHS0N_>e=!#m6ol9jCp@sF*%Ztskcuh<xVa
za~J=)IL*TsF21CHT>Q!=TzpMEUHs_c8%~lgzIXA1Xhr$oiMA9-In<MKm>Se6xzEK<
zE`D}Fo)c7loMK`_H0p<O>Ngj^yZA>;{=>zeRPWxxU!4CL-d7b^g}M<T^WRcL$psll
z{|W=Mr+YZVLlqCdyk1hyLwOGsJyh~Qwlh7PIbK!paF+b#r({Yao$fu`LuC)=c{)6P
zYpjXqcsekc&J~1`S@(QTdyk!afrkq{RP}ThT;!p;hiaZ4BUFshd$BY}`79+r1zzf*
zCL5J@i#*h#91oM{<}dS*@(_B6Jk<684-Gst^iapcW#d&n5A{7<?&;_Jx*n48`jL_k
zhkS<T-;FCgv>UG<LHmqXh6mGw>%sGo_F#E%y#Ie_x2c$?|6<G<uOI2Ng6|lwAD9Dq
ze)c^CLX73vlJw`KG-iubb%JW<A?Klyho&B`63)h=(v^&d@v4ajKDU>fpr3oop2M&9
z^k186gp);F4`I94dbrL*a}U>hXdz;w3F-z9H&0M}{=7daFiVF}$yOd(d$>_}+LFP;
zO&;!@pr}b3k2ez)h>)|L5O47?Z-Q#?VcP`t#01^e=M&Uz;^z*+aJz?&;_50BRVSek
zVfDO+5)Y3DI2@pq{pDe$k5xW+DVk#E`l#xoi-$WsJnUh=hr2x7?P0oy8Jzzq$HNd0
zLp^l$(9OfhI}82jjkbmE9(sD{<)MdUN%?K$RaZ<@y*>2xaOFhR$HUiqi$80jA846~
z^!G5p1KB!ERHt3-4fHTbvRn}w?12;_!#oV96&|{`EsS7u9`5rnnhlA-|JoKtiOG~a
z#=}?-<2;Nf|3tNBqS`tq|Hwo&!NWukL?(G4<;gaMS0}2krS!B(YKjo2iu{Wwsc9bU
zNs4XF^e~G>bgzfm9_DyhK}U&Jb3H8Zu#o=uFrR%iNsV5RziW~jF-a}*u-F5YU*=&$
zg(A|IkZqD$Dv$_`T`mf5oum#=(rT>ou-3ym534<_@$kwdb^PW66>HF@u%1Hbw25l7
zD7n$YCdraQ4Qb1llhhUu|A-uBw|m&(VXudM9(H=z#St-Cdvdo}M}O|&Xq~LxvZ+E5
zecNoZy5GYCViZ*+!yS{=gC6=#Ru2gz&jGrQvB!2j9Q5$0hvOdJ_VAd8Lmr;-@GN7=
z!(k8GC#$DCuv?FKJRM7~;~n+zgcv(-vRc-*P}ci|bi&ip(QNeSWOdBL3m#q+8=v#=
z&SdqxKuUPY!^<9C^>~CDxJdX4VVgn|23y<0Pm|T_qWPO1-V)>uffc9dSfb>VAn%CS
zk3D?i;av`15AO?w5<c*7Tbn|oDe6NHy<4R|66etQbkV0CX!~a#K9``qRYZLu#4jbh
zX(pqEp8Uqcw;uju(>}iQ@ICGF@Vkc}I0<+-;o)bA)gL|lBtGdeMgPH>IYl`)7k=Ty
z(nk07ucFcxwlYaa=^xCB@RJ_?6#Vfiij==N>$1Bg2LAQHz@`Fs)hQvQ&Zql0!$(CQ
zm3**U%lSCV*Mo?q<$cY0rjL&)XHLF?uRDk)6F=KWWgqAJsN&-sAM`Dw>pUOl`uJmt
zI)AF>uRm40l)ZL=52{_}-X>F3H6IuG$onYqQQgPIK0+Unj~YHM@lnr5eIJ+lsOjUC
zdHFg%Zkeizd|c)uC3r2NlQ>|is_o;>mMO9^@oL5eQ`Li074ge`yg60X_3_~?1!k}C
z(ZGl6!}HP5$8S@W=_BpKpaRo0e>hE9K5QRZ5l+gWBgGjXgttsnEOmVJoTfIlEHLW}
zPau#jl6m|zwQQP-eI!1v_i=-doR3C6uJ&<_k4L7d#y*<*_-mSKBH1eizB^5^=qg$|
zT?=V6T{ZJ@t&ic;)pa8Lj_Ha#Wlb~}I@wzIXz8PkkG4LRO;@da-00&bAFU~Kx_V=}
zI(W?5y)^&JbVW$~W*_Z*bntOIduoPiPapcYm5J*ER~A_1Ha0p#mCR7a40XI!p`(vZ
zK8k&8yQXjlJupMfo}pzj5oeXHGgPUMf{&p-hH?J)p?n@GgWjC~*&U3ZR)uapj?7SZ
z`MAf&y*@sfq3&jw&D77RG=YBT>Z8s~#dOU~)m^Ie5Xibc#dacn1nKLepO4a++C}|+
z^jVP~ByfO_fr5}uBC~{peGKuzZX&+EMPay)5k98*nC@ewk5N7*`IzkEJ|ClfjF&27
z1dbI*^;mJ7v`d892|}MJkQ8>u6d&VesueTURAHl;Y=}C{@bTzOHQUD=A2S7Kc9!rE
znd@VokHtQg_?R!mg+3NBVg+Y)#ue3mf2JaZ_)>PRj}@m%mvczY(jH)9JdlCNY9DJD
z)d9Q!YkjQq@hvA4AM1T=U_~FV`q)Ts_&7*?d~Eiy#m8PB`#7%Izdm;O*y*G8EVZ2;
z-dB9{EZxz$S*rUiwadqDA7f{!D@!86J*RN8-S6W89|tINmKwUR_(2~J``FKRXQ_u6
z75j?G)2m~i6-n8?B>#wy*9BqrF&~F~9P{y<kH>u+_Hoq56F$hsrdj0(wLNBiJ4-$3
z<0&7{_$ZpKwPF$B(^7ioZ1t=Uf3~`0PM)Q$W~=Aft+Uk&9Hf$c(Z@^Fe`%hYubr)4
z_CZJquTc{pZ~J)1#~TdVj+)_3A15jmwXRh3$ZYkNkK@t=aW?m^kM|h8K0fvFz7I<H
z(8ot4&Q>3Avf^8VW7co8740SbSbRvN${h8Xk1u_E<>PZ9e!;0`j%q(g^_-)=W)RNN
zRlboT%G^Ci8~eSFAADR8;KBg^^YNpP|JdmPexiCle&@XE<7XegaQdP?bJVdp>R0JI
zI-FKBOJ(TBKSk_G&Nkv<HuSf!5&750KZ4V0b~-6USmpEpX9cJb;EX_bM7aRv1tG&<
zbJUrEHk`hy7@$&sa|4{mC%}EhX9v2c&JnzFfU0w~Kqh0ZcJ=vz)|1kz2m?7;R5d`g
z0JQ^sd+tR6ss|_vP%FU20cr%=s7s|?I{y+u7%;3=Q;H~)42;an0t}d|QUR`+t2)h9
z#Mw%n0G9`-7odKCx&fw&GUd`WDS;h&MSunYG6Avy8U`=|qytz1Owo=0rvup#AzPuU
zw$M2xuAi$N>jZqUq8T0&=m!V_3<@wfKo}qja7TdR0C9jMK#Kq^1LOiU3UD=*4D_m9
zWBM?_#EykO=Bg$E2y4w#O#@sdL^8CRr<eGe1-O=eyRLA3fa?M@4={Y5I@Cee8dNP&
z^AwRA*u?BS`8hka3eY-0`vA8DSTs-F7~rM=ZKOrkqQJJq=c#sqp6zcAK;pi6>f3qh
zwE3#We06Jp+X8e5@Yh*IcULI7JwV3*odS%Rua)uVt5);XJ@d5!q~rsX1h_XqS2`y^
zAwZV^cZxDA<||6*96(9aRByjXxGTUt0Zz_WcL&&Wd!eLS@`2E+FHqeAbPv!cK;HnY
z-Xnm!K=lgn&cb|85yBR4TA+H1d>Y<QiUtH2C`f;SWi}pbo$9tgO<bUc1Q;4%Wq?%y
zhS7BaCI^@jU_^kC0mcWI5MWe*`@~mc#cHZLIsh%Dy<?<Z`X_2$7{}mTpx8TPm>6J^
zFw?!vu3Vu1G))aKEx_CW^8!o{aA1L&5n!e;ywW07`>T!=I4i*H0CNJI=ulwAGHr>^
z53nG>;s8se#f8*I{6ijgD<OTgG{CX|H5aNC0X|%ymJ26)t^7hA2~?8uR|niQj_m<<
zaQ+XlF2KeBn*yv4uz_LOyg+AC2n7-$j25cRB4=xWEfNf*Fl@F3V7oUh)IQu9U{`<#
z0z4R?+d{QFz}^7+0<h^lQg`A)b-y5IS16(mOlMUndMLodoDBjz8el&M_*WedhyoN#
zt7-BhB7r(k4k?cX_~$HL{g8-Sy-*zqaFlKg@kod#0zAoa5n@t^rvg09F&n}N@l1ec
z1N_N|3UDmIbM#Drj{-a&;DrFM2Y4gEixe2(l>o0&rG@&<`^y~oqt)vR^#UE2FSwXS
z_*$Ts^0@f$W`MUCO99@crK8pH0B>^uHZFX(P;pIz%UNaXjqe3`pKft=5!Wa_2*A2!
z3?B#hB)|`xv^h-$_$<Je6dvI70Ob~`FGO0)IeKx7iPgUj@J)bk1ANDcXp9!Zwm3W~
z@Oxn<P9hg=e&pmI;8zkELL71T7Jd%!OQ2VH8ZJ_AHZL?=q$v50MS8vHcg`vSD16K!
zZ6J*$@vi`XbEXYZJ;Xl&{tZwuM5Pe_u{%PX5u#kEm#~&DQm2Pn?Bk2{Vov!`n|W4<
z3ZY)EIWyEvQzqeuixhpr6`Qj|R1R@|h$<n@3Gv~`TIYs(*^O-U7?JZrz4Ai?F9>mA
zh-x9Y6j?O{>&~fIM3cETMS;IB(#XXjYJ?~XQ7gnH)V4|Cg=U4CAubi1I*`J(z6%zs
z%R;0=Tpprsh}xnaOL-AH+vRduoltio8>P&8A?gc5gAlAs_g)d|)nFzrma<lZ#mWqk
z4$(fuEg`HBHgyisDnuqkHbj#USB7vxxFO;YNeC~5FKvY(0<o8(D4ET1MUFC~5LAOp
z%DE7YC`T57n=V$3L%n=Q1}0{khPW!kbs?IExH`l&;{0nvy<Xakp*}`+Sgge|+jp@x
zhx%V1;)W0{LeMUDJt<`-6PYZ`twY=x;-(O7Lfk9@*;ZST##P+1PN5F%gu<d*L);dk
zM~I#wI)u1AMCTAHM8^=FLX?Ck4RHrc$Eo5F`B1L}vKAX9LK``<7@~y`T=d?#Scft7
z>=NS65O;^TC&XQ1KKa?*ETt>%71wnO(Or<PA)Z{UW0gHZ#mGbXy+ZV6H-#7;qECpv
zAve-vkaR0!tY3)!AqGgd(jty!R$;IW4)tp1kPt(KlSOQTMNAy&BSMS}F*d}w5Tk@X
zM&NxRMu-3ZT7e31rJc^?a2PM86J%&m0>=e4<eK(mc2J1zA$EkA8e&?Al_6HK$3wio
zSS=0l%VISn#LN)0LY%cQ&!34oq5kEaEs(oJ=Cb>W?0Ev`3tS*@p}<7~$*?%Y62WU!
zC}OrnI=?K$a*ntqifILVr&>a!&Jwjc#0HM65NkrL4Y7{hu|%yG$cn_7=Cmtp3iaCQ
z7RK-rwOMdx$-wN^5Zi=KoRpm*c8Rw4huF;#F+aaA#Lsi{!_Up{VO%Xydj)n|qRzgq
zK>i0pJQ(7k5d34v^spc!mgv7H`$PSFNaP?r$x#;JmI#l9I7H_}s1V`t5Qjs28{)eV
zM?xH>8yUBp{}~t|-s0#uQv6hir$f9H;$_bNA)XEKT!`mGEL@^?E>UDSCTyo)TX=y#
z7E9ENAxLNT+d|<};dzBaFU0F1-Vn}zr1Z5A<f*Y#y~zPC%<Lvg`?OBUaSrpP>TQnh
z5bts}SgPI=hfrXbrCKt17L*h|4Do4*&q90@g4vG+ej>1p;qwq*g!qOXw^V&e<~k)`
zbJki^@|ECYmMT)1WnHR4_<e{ULj20PH^l!!{79>ps-HvrBpTkoRGpBDRI+ACfmxRR
z65>lS;r9@KNa^Vj{tR)Ffx1lnOB<J|zZlG%{5iWWQ~olgmg%<GBJCy5f5LfMr1|MR
z3O^%4xd`PWtXZZGF4L4VBYeC}Yg;iwr3j59G>LF_gvt@>N4O%wIT6l{aA|~^5zdQn
zeuSzKs!@|=s!D_lBdrGU3(6?Vb<^f@by1{!Qa!@Ok=BiPjY#+1B@w735mq5WdQpU0
z5iXBVH^OBRkM;$(G$2A15k-dD5oi&SI#R?^;`JgOKRPW}oTG>|h|n;C7x4=n7!k~f
zUo0XUAsxYrV2eJ~jdhvIkb%p!sB)bPP6SsJo4s5ykr+e>Bg7FBsThe4Y?>7}FIPDs
zQgWk6&j4(l@bTs9$_Py(+!*PYxhlfdR5HT#5v~z!n?<-b(lNt!uZuuAtjGW$bD35*
zL}(eIRfHD8&klNLxnew!fxc=@S6{1<n<BJ{&^AI@54MZ+(70JNq(Fu=*=~(+TZDNL
z=11rd;r0k4B8-gCF+!&ZT_bdha7TpV2!#lp*<6>xzsprVLiH7jsU$+F;I3p<gf0>8
zj&Kj9tx$JHxGTb(71|qpR;Vq4+#BKb6{^Zg)gdW-FO=>PdPL|SVL*hQQn7c0KH{-n
z?BA8@j5+zzE``1{XQk>VbbF=hwo*~@zzBoLyh06&FgU`H2ty-mU#Z@^v%peLO><VN
zXI3gwh6@`-k$F^v`yxzcz(*L(K3b{9N0<;{OoXu!#zi=}QpKy(O{-MZRa(eBtF#Ui
zX>6CmB#}ewD2Hikgc%WL3UQji=>n&$QrlLkS!`mJn!^ZLrDlufFRaqF=0^G_fcSz4
z3nM%c;mHV#A}o%ujrvDe5@BhCwGq}uSQcS<gq0Ci(V6WEU#wD;xk4mURK?Y5HA8x}
zS`&f(WR|7$58?U<8zXFrut8KJGh5sofpDw9EdrUXx*$(T8+UN@Mc5zVK!jZpc1L(1
z!h@0C;kGBjz6ke6*ehASO(T(;tlF*C{mYo=_Ns>>Jj}L)LI!SQBYcDr$SOA%4o7%Y
z5aNgUD<C*ubxm8XU#mSH>Ahs!Uw0(JQFg%~wPm&5+eYC}MR+>GhY>!C@JxhfBfK5q
zoe0MwJQv}W2(L!^-P!XIUX1V(jgl-W6!<dTyIQ}(<C{Su6!;n=Fv6P=-iq+aYW*sZ
zyXoGL7K!k69+hD_9^oHRjQG0|-i!36J8om++q(B7d?5T3NDolek12}&=X^LseH!7j
z2w!suNBBI#7ZJV^OKHfLf^c^kJyUay;(kc#!xxck;@b${i3i#{pbpfEqJH2swMJX<
zQ-l*7*G+In6Z{<E7h0ObOF8@+;Wq|Mf*lEdkMKu?mt(vV<4>v=;ocZsWBe82Z%$k>
zycqvP_?NSEjG8h2i*Q<uvtv|_ae9n1Vw@GDLX6;sRJj;K)~GXMOk0vKFR=X@HEWG(
z(4$Z>24STbH5wIunv>tNMiJ7qb7Gtu<H8tKW1JV`{1{bY9P3edR%(4oX=^p-1u-b6
zXsxOi<DwYz)~XsYnygjTW0b5_7Ykm}qcF5bVaQtD^_RrhCKZcf)QV9*#uYIx6Umfz
zd5lzy+SGQfLX4-@syc$R`p0Y4qPw+*bz{_vL4=9sG>FkKh8-gl!w|X|BORkz5B+ZO
z@3qRJ3F}nLxbRXJt%k8qWn)~uPC3F{rK^@nRed@t#`Q67h!Mt!sCkSlW8A(@#W8ZR
zev_WWdf8{lI{iPL*+xQa9Ao}E#cb0USH-wCM#~HH%w8>}*TmpMHM7kG*}hIcV_z4e
zxs(!TB4-QMiqR>?9Wh$PXdUAg;peP!V~jR2+Qzsk#+nl`(-R`(W|7cN;0K~Wd&Y?%
zx5l_l=pCqkjD0s0Cgls%p`+l;_RJTGW8`CWj-iCJL|`Gtq!V$e;1d_-sT&1$k?dVD
z?v8OMow;6F>$MfvuUGeov7OhedQ}rry2a=oV`+?KF?z)48Do5m2{C%b=pAENjNvi*
z#ONDiV2nXA`Y~v4(2DhEt!4#UF+kd4qcn4{c!16s$`}xwYL}@*;)oa{V~mb@Bn3uE
zzpzv8V-xGuqV;-3h1sz&#z_$uJs#*-c(!$liO58n$+(R%TS_O#n94yBV~S+=t=Dy@
zpOQIKkQrs!_3B$GofBhjjD;~4#n|1l*1Q;>-CkJ0;kH4|k8$}1#fNzcp(af?XlaXM
zED;GWF36LgrORWii1A>IhhnUZu`0%v7+YhkW(;gl>tk$ScgI-Eaa1kg+RM6A`V8Kn
znB7RjTc<YB3dwT0X0vc^+n~0^*e=X_W9*2rQ}8`8cEz9?yJLJRDm}eH5gBz|;Xldl
zi*dhjKEUALsC8zlxluhFV}FdtV;qigAjTsxKkC7w!r6YK>Mop*#W)n}1u?GwOxmbk
zzp3P#1^IOw)sYxSW4s{DPsDgK#&a>~fu}g$Tc@6m@eE_Tqh3a1ThEdxoc$N+EUhN;
zyih2R6#DH&W`)8miLb_ZjUzq5wFzF2@djtA1m`DsGsasnev9#YjN>uhj`3xTuVVe@
z@tqhS#rQbJyD{F2@xBBw<LyJ5uu**=u)%^nDIaZApU_t^K9BJQ`!`1UO?n3F%D-<_
z6XKU`Qsg8h-lV>c@lA~HVtgOt+ZY`;DN6ghd7=L%JyL#%@xK^9Gqz*Q*ra~s%p(Zp
zFw1lz#wJ0IZc-d~zjAamE-+F49~{&%PD^llqGytmw1U$<e+3xB`2rha#eX>vn(3jz
zp-tpJ87xH3NKh`p*$FBqD4*cW1QilgOmJ3$_obm4o3(oXZc^@M^?Y%mQi8TZVY}xf
zdfqrULAT9{L!OlJn-yoaDhVz~kV%kDaAAU~32G-mf@%paN_g-xE=jObggm@iRZnnn
zqGwLF!b$Q{F`+0ytpqg_99@xrRobQe%P4BSN(rPU#95_Ig3A*$NYF6Bcbiq+1oabK
zk)WPr>0T1)d<vmC^=?dYelQYP3G4)B!lRi$wMk@Rhf*Msv$iNgCxM%wNrEdAcnSOj
zVS*?@AR1P`UYx&0(ZlS=I6;yiCr)Esc2J`PjT3O*qm$W*bPMT}Po!yrs}fwlMO{sw
zZ&KHYz|LEwb<X?=nkPK13xmj$;D!Vx2}%>RNYFCDtqE>R&?-Ue1Z~(C32sdA)$IID
zG`YxrX?A}27BzQ^Vo}wKSCVpbf_9XjV9ORow!4?)iQJN)uv{Y@65O7kI6*$aku9oY
zf;$rYwncT4EGZvvQRHL*pSx8*6{jl{Ww)vV?Ml#<{Z5ry6u7>j5_Cy$XM(%f*3$ev
z)O@Sr1|(LwJHh?S^7H28@1-GI6%oSj33?>xo1kBUo(Xy-=q)OhnLs^>u-!fsd$^bg
zvxB#){s{&om@S%Y+NvJgss<+*l3-4Pxe10Q7?xmsf(Z$RCm507z67I1!;#`5>PbUJ
z@xf_+p6XHN8(Y<w1Y;A76YrJVrdqGaf45Z+;fV<*C770AdV<LbF5RZ4unV>+cbm$-
zU5<69N)=LOB$!F9643dxXvH=ynI?NJ3xl_*ncEbto0njIg0%_OC0LMPVS?oeRwP)I
zU~z(F3FzJ>2{vw1OT}G89^IynZ&MfDP++3KU$?213089i-B4JSfLRhR+^(|Q)f#$x
zyV^f5zdpeRc65TR?4a#xV}i}JZo8uLn?ze8^erh%wrk<r60nuM+cj}#f?W)@99rbC
zJHeg=ClmaYU@ymbf;Tu}Qn3UNBzQc*;RMfaR}Ut5IKh6w9}@V<c6A`ZBOLoX)ME(_
zp2Gjxt{zQ5cu9*w^&P6!4t0n<yF+J>aEvE-KEVqKo=EUyf~ONaBNE8@RD!8H)T$lo
z@DBBCf@6}NquL4H*}-c{v;^+-BYcsw3SY-3c$FQI;AKt=J5`gNifoia&eu5qbL{L?
z{0xLdiY5PB363ZDI>9#y-loh1A0_xW!Mlvfo$5Vy+^HtsPw+v4C6#lO@L__TJJkz2
z)fYR}CnEFngxlTmX@bu<ogOJB4~4VQFKP8o)ohpgD#2yD^rpm)yA<nw%h@Txi3C3<
z_@1L+m--)rVV7e1f$kOEcI{F>a=ceaeqx6n$vwSG{lb2i(m$!pF7+Fq{}cQnl;3tK
zs!BHUQvu>^=x?^3piT~#=kRZW|2QY)P%Veka^Rsmm2x;chcj~8C*^V|F9=OIGl#Qs
zVCxlgs31hz67E)HtGQcuMEl*Uat`O@P$h>8gyCF)=Lw_^<UC*SKD*V0Ic**PW>Oz&
z#iEOHx~DG5aWg-v3x079H3T6i8CY5~hoT%(In>UfmWUz)i!KvLwrQddi4aw(9u=;e
zL%kgA95Okc>Z3b?qRbo^Z&&2dAcuxI?OVz*P9b#Hy4@<B)1hVMw4Wc@t+F{dIb4;)
z)j7C1csay5BssjZTkGcM5ad9IhoTH)Da!qS-?228L!%t7%%N!xKkwFYUU`pdoI{hG
zM)t=A!prxlXi=VRl{w@Zk#n8EW&*Dj$oQeE&2zY3vNVuYTGE^xy5;y~2U_QJc<`3#
zk{oW#;ieqg@GPYqZqK1(4man}P8e>@p?wZdR48KNq;U&1+@og?Ze44?N8Oe~hcdPb
z$wd`4L#G_>$f20dEV7rh(UTA9WF}I|ruV1<9W^IEW{+CDM|I9Y<<KREJB4^p4tM2n
zx8Pk{rC5ucyY}c^VfW_HH3w3T@6r3#D5pmbJ#$!*!^#|b<<L8au{n&(p-+w%dSWCy
zajNQ<!;gE^;2ehJ&_9O(IlaHJ!d@+KU=D+%A>x<q)dGh~c0>-tav08T5;m5$-m9nd
zE_>Ce9PZ0ubPn7##~poRa^RLo3LGj7<8%CM2Xk_mo5Mu%<S-+LnK?`r|4cd6)~vm1
zY7W!HKhp(rlOdf`w{2n8DW2J4DP6H~uj0nJc{$9_VQ~&ia#$cd+%C9~QPEca1Eq$G
za(V+Hcgp=AQ(pmYRq@433I>Xb33~Y%V4{M>-Cbwzb2cJiAjrYPTvQYbTfy!Y5K+Ry
zZt3psM!J#i&i9*j|M$K3efwMAnl)?ItXZ>W_Ux(MLkieaiZG(DqRd`p1z~Z%F2*;-
z=v$0_#rRg}KNaKWVtglf9|{rV2j(leED{T_nwZ5eq_D9F{kLNLUW`9Qd2ST^gGTPF
zs`k^H2B`+i!d;Gk3ujS3^^YLjU)sMI1K4niF}4^3X~u5(VZ|6;j6ua1T&(x>QvV@>
z5FaWCc}5gtB>Nn%0og_|-**+a0*+=2dda=HpU#fKarDn(Of1GE;pBEi@=sv1lHlZG
zkTSIx(~2>Le%?<Tijcymi``}j+v6gQVrTQe>%~}P;9moCi!rYlfq~G#{9-I9#<hlS
zH4DkWUa=S_SX0GVT#SvhJll9NmKI}8G1eAiSuvJN(_SeJaD{Xl@AlK(AY1w>y8Rz&
zwJ<QquA8lO9ZN0D>x<E+pJHc1;(tOJ-cK#;r#2U33wwrQ>@CJt>GXEc_{G>J{n&Pq
z#w7Yh&`<3u#_nRAR}A8%uNA(w_R)03I8=<o#W)}muI{f6Qu9AlmHzroN92geIa-Wk
zWdh%9sWlAxYsuvdls9m$f%6PhFi_FJX$GnpsAQnBfl~~0?XONUP{qK>#H-Y*Y9KEO
z+5f!IU-v>R9bcoT8emsOZ3%zxuTD2m-N2a!=JZ!*7`l_^n~t$(8K`0490O+?x)0yf
zUt6!z09~Ss2WW=#$!y>fN;7bwftm)24AeGI%g}G(izF49i8JBFBAI1me+WarI7%&V
z4N#XExZJ=M2Cg)OI6&2rw6sZG104qFkpTPus|;Li;2M#`8e~F>ed7KCHK}LdIs?}m
zxWRxc4D}5(Fi>p3FmR(#ZZdGQ0oE+V-XijEHPFz|V}rM)IILwpeCe2mevR6~!z?UG
zPTM*Lz8au488|?BLi7bvJxYiSWDLA#;C%zJfyBUz209wZ8ps)FYv6tZsewiY?lI89
zz-<N^8)#ynsey02!ps5ccG|FN@rD8FIEy?`H8XIBfjbTC@(QHfMSTo3XBh{og+d`S
z>3qo0(!jk2?lVv@^dev@Ry`>LRc4@Ku(g4w2dc-s0*{urF`x{6=)OcaKN_gMAE?i~
zPaddN4pa{qc#t+X@T7ru1|Bld-oPUU9%fmp>0{~pMIiA<4V*DZJ#OF$R=3~`UNJ~H
zgLIC}j_@hwYw%wKS|uiV#=x^>I0cgUoWOeqsTTwxrNbaqcXx|U2HrC8wt<%nylmhV
z1FsrbI7q!g^A1w48F<}5AIXTB4j-gn6HNQ2@DL#b;X4A~HLzolA{!|m82FHtYv6AK
z9~t<VmN)RNflmy4YT$FapMk1_Rc8ZT*n$MFJy`LO{%5R+!Kxb_X0Y1f7TOQi(!QYc
z80cxB7tPM4_A0gb^f350(gFtzz3DCN%DUvgHbBGvPs72gw+Q@>`qMLqs9z0yZ{P>E
z=ppK713wyI@#hX!KN%Q2Ses(YVAb@&!Y}lb2MeUs9HM?R@H?BiQ(){L2L3d#q>YYZ
zkR|=cKwksX4a_jm&p>|zL+SPg1{fG<;Ef?_uy_>RY!IDrh-x=PkvK$%b^QXJYPk5}
zBm<KTj4&`#I^I#jz}TOMsL=)p#~2tZ2=Q@(j5jbrkck4vu|z}E6n0qy)l`wmASFx_
zQOuM&%rr2|z`U~J%r>xlh?;9)@enmfOhLO5Y33B>8(1K*3k__y3zrR5wBD&h)nXQ(
zPH3WoiKPaXu_rNcrHSPRRv0+RL=_V&4XiS-*}xV9s|~C%u+G4G1NKnWVyJpzs9J02
zLn}lGHyGF`LE`@j@?z7%CSm4j6cV=@*k<6MfkV`U-eq8qfxQOa9jbnATG+|bNh+R9
z;klUIf)m+CPaCTC(=ts9JZSK81B@H04j39z=3xUz=mRDynmEdiy>aVf298t7q5nHl
zal!yk!IU#Gqe<cQCWZ2*4l-dWtYqqwGEBt-3zbbUYi{7LYT{%Q=bN~|#3?3DHF1WC
z>LyByd76o8rY`mA0;x7}TKh~BXPG$LL=97)@;EwFoi$8rdya{7O`K<f4CK6em|~7h
zOKHsaLK8JjTw>x<6C7yOGEpRKlyH%Wi%tFR<}029fZ8Ttf=5NDq%}<4H%wh-BG*)B
zRL8{SWx}5wrs|sbV3=ZI39mA7wTVV1ZZmO>iEB-GCVUh1Ok8K;78AFcxZcDKCT=uw
zlZpDKwqXO2Ms0hhMGO+5S*Y{PLN8@#XrkDJVZt=QVwPHiUSXNAO+B7*O*p0=_7G=5
z2uqKgd_PPDCPEXjiNwUPVJb4wzeyn@cxmZ))ICeBnie=-;=na$A{9{#YOR_S8k@M?
z#Jwh3nP_67DGg=fZWD8c=`%YVDK#^(ahSS;`M#s>H1)WbV?vHUo13`D)Z=*$|2Qgc
zVWOo8GMpHu&K<6}`!{c*wTX5n9x`#CiGqm|6KzHRHYOCSfPPq|;Vr`z5$bclsfV%;
zn7Dtq&Z6;fMdU#VlK!xX_Vh7Re+WDxMR?TIhjhrv6FMv!@y8{W6!JW2;wck<n)u7a
z(<Yu_RhszFM5p2ES=!meD<+;Z@w|x_Onf<9y=bDNi6O()!r`iuiI+?q9<I(Ep%}$s
zEpbjjy=vk$VSd-d>n7eX@wSO~Xx<U(O*+O1^_B@v7BP6+^wyjqd1!=UcCU`m5-8_A
zN&7zCSj2v0;$st^o9J%h%{vR9nCQ&plJBRi)8AG15vuP9)z!pjl5oZdMPfI>DUG)z
zeL>vBk0yRH(ZfVfwmTEwndoJrw~4Pzd@cH{Zd6!5LihjQn0hvk%1{m=@jf&~?^d-(
zsvl^4!H<tnq%iiDk?LpioA}+th>_}7$@e!C?~PQ=Myd`YwPpH@R22S)3BtuA)!!!m
zF|mT(or%6C`k9z!Vmf`&!~hecOpG=$(8M76r-|Vv2GigshMM}ur#&OpX`>V&@#{ya
ze|zO=Nt$$oiIH^LQCeX}(I#U|j5RUI#AFlWO#WOz+kYZkZmoI~L==%yX3`%UrKXsm
zo>PT^NVid1ZR$V6#7q<OO)M}m%fxIGb4|>n=d&jtsV0t6D@Un6M`?ZN5)^oFlukvJ
z7MfUWVhO!#lv>0-p?CgY!7m)GmWm5e!g7;GgS9*Hp#&yp5mt!~TTN`E#Z0U*v6fvN
z+Z3CaXue+H27#H;s?BJfc9R4j=$7ANVzb~B#o8o=vD;1TU~@2Wz{E}yyG-npTzX7&
zcbnKl7agsYXOM6&J!G`1(>q@}6?xFaArr?;92Y-1Y~lzze^&Qz`i3G-MbeF#3vs3`
z7zNJIo)F>XERfE*$BGszS*Yva3I~-foMd6Eg>4q9Sg2~@1q&})IN8D}76J>Qg;On@
zX5ktO*IKA%;dBcZSh&!_*wN|?3pFg9W1+f*GcBBDVN$k;yTrNIdc|mUwgv8CE?vzz
z*TQ+0-hy65b`+m);qYj6?ijtURMSE&3zu7{W8oqT7h5Q@P}|b$TwLO*KSpt{H6-mN
z7B02)o@b`ItW0=8gk;C4x)!dmaHWN-Sc-cJ)TH-KdNGcAlK*N8?>8#yG)8ayu4myo
z3x=gvZ?Cs-gN2(Z)<S&?UyM-=EZk^eQMPDQrod$>ZlNdJO&0o(Q7q1_7G{r8#k9jc
zdU>m%r8m8kfx@|}Xj-sn&oRoj;9Bq`3&+B3+*e<tAy)$_!MF4leLmDAvXHTGkA)T%
zVqwl%NG&AR|Mur+#ST@+Y8@I`xWmGolxCqZE3Qhd+buM)(9{A=L<ZWtnFuKwtL;w;
zpSvt@GkJ3hcS}_9SiKg>9ok%XYiZ$L3lCX%*g`7{c?)eUC`%iywJ;Yf+$RXN?UO0o
zC2EvdXlvm?3(VqviG4tn{QMzp2d;09|1#gsLZe6Zn}X|!?JYcF;YkZmS$I_VAGh#?
zg~u$gI`}XZ<#Tnf!&ue90wFad@o8#q;W-N*jaAP`z0;Ryb1vroI95GxflG=+I#P~>
zK^6vEc*(-c7QVF5!@?^TUZqRFr#_}JExc~wZ42*M`d$2ng*UDLO*rrjEMHY`(Vxfa
z35s_u{nmcp!UvX~zIe~lvE=!XP2gR9ME4_lf*f4sdzQgZEPQIAvxRkIRaXn2S?FSc
za}<nX);!hQO?3Fe(noziXQqNsCWC~fvl%^^i-jL7^s>;~!dDi)w(y;(N^QTf@U5u9
z964#j=@d?t@HB28QHjJKE&Rk<qbpkY*}^Xt{*<)8TKLV<b2Y4p-!0_iWljDgW7Qv0
zOd^#3SD7jLN~!@8)sL-moZ{185USdyWnrKcjrb4?LoH0PFxA2^w!7O4qb-cFFkB>z
zki16H&)KHNX`^xQLmkFidLnM3z;PC`<J5S;^+-SvPF@k8WMOg{ooT08m~LU2h2_lM
z!b}TuEzF}MS$cYKjzFGto-GKA!!Z)+^DQi3E4J{j6z2&!D!Wi{9&lbv-{_WKVqs}n
zWid!Y5wdbuSXfEBS@_SwDwgOSwc5fON!wD2v)0l>?sfD`A+Bc+DFa2qPUG|-ZKK#>
zlZDNKbQ!0%2*UHo)Ns3n9aO-^Yc_UT*v0P1#`QLKbMp^7QX6O4*lS@Qlh`P4V?Xx=
zb<Q7RpDD-zfd^T@w21U05+rh5kfRok3G(+iJrz%$6ZFq!g=GxdsA%I98>iZ+WNYGi
z<5d+wDhoVG;GS`+s*RIvOlel21hR3q<TM-AB(}Q1(*>R(u-<sR{dj3w)N;Ifqe`u_
zZPc&<8<*HP$Huufifpa_c{a|sQOm}X@#+GhbQ`ZO6r{s=_4{~L)5f^*TIY*|=VF0m
z-Zfs;7Pivj5MFBI3L972xXi}o%w>YAW23H(J0|Gl*Gy0k3qrgjcY)ft+Qv0DRy8Zs
zlR{l<<AVu`&yN!n%Sh#Kuu<Q}oi^^WF>8WqV8gIs+PG1IH`%zEHPthJi;adt;Sl{+
z8(SynYpHl~Rx!;rQPr8KEE~3s)J7v4jt$pFXd|-q-C`bX-chxlsC*lNP=bjnD;I5L
zY{X2JE97h>HeMiI7>Mw$u+Jx|eu7ZQZ8jR)XezO{3v42glG(l}fjoSg*_bg=-C<+1
zB)r>3a~qG@V0QP|Xkml@{VI`!Ed{o=aj%V5Hu4gr1YXs}%gTt{$3KMGXe0E?CMj={
zCRUlG+S<6^Mtd8N*m%IkgErdPc*q8gaIf&tI1fuIW?EWarhQhT9;Kb-+O%%G2+qb6
zHaggN(#DH6I@);3#?v;QXTC40XKa1-8B6h;jb{a?G*YNTY0+M=@yR4@rA|`1mnFxS
zq~PS?g=wz{{jW)i%D-;o4Z4BN-&EmE8*kYdXk(C#w{5&*<5xbN^Y7Yt&qjC3vGG3r
zgz{~CYU4v2Qzxm9Z15!h>+%W1p6X*-ph;o%B-PnQ7aQHEp^dJ#?w39jX%xs){Dfp9
z!cQ<RUT}@zOB+3Gd}HHV8wV$;o;G^h_{v5vNp;3##n0idZSXP*t_V;XlauW`8+~m2
zEIi-a_`$|cf^+GF!uj#_Bi%zj#HbRJ{37brnXIhI>Ngv|+xWxApEmxn(bvXbl9tN+
zZKL&Mea|Y3MpgUS=x<|yt@}N$8L@9Ck(v;BX0jS=V~CCUHWt_zYGas<Nj4_i7;a+(
z+pmrBHbzRmqiu|_F-mYM^WkK@lrxq^n5=ap&XuVN>>T>(;6ySDoq3Tyh1Rw)+r}Il
z(`-z)!K`O8J2Ax!(R|@#t?evZf8J68wVhj*7m19TCvL{5g*F!1ST01a9Q`XrTgoQT
zS1o2IBlSfi(~M+ZCUmaFtPuW{Hnz}!O$rsJs5Lg$vKw@8x`TB#*4sF2<A{w7)WOCc
zdfF7N(ncHGY)&^}6aA3MMMJ8`sI7wYJDoc35cxZ8>|&FbwVU&&sNFWM6CuQ@%w8M&
zgl#{2xvI4euq95>${e(Dh;2kT$;Q>9qrz6vK_v&rY#g_7!UmnNJjeOGN5atyTl~cS
zWQwZbXyg1SX)8N8$-!xkcH=4zsyaADVo!GTWWtCkYW@_(`XWD{Qysk^NQA~Iy&&QY
z2SpBQJE-p9Ob2H<INQPb4lZ!OH*yU}UlVaI#r9L@IM_TzQP1;4K84UNFJvkn{dRDX
zgPM+hGxFhEm;(%sRW26Ja#PiLQ+1}0;N=1@5qPPC%LL&xLcOV~j-xLpAt#l*(!o^@
z);rkX;A#igI2h$%w1aCM)N}B@gAW{B=iqt=c?Yc>+~A<TgV;ghpn-!M9T*Nwrb-Jp
z32f-#W(T)8xYf~j{PM|8RfJ?H777stEeEy($AK$EB|IIcD$jxMAaoEp2+Ab<GgW;i
z3{032;+*RFsY1y*$T_&f!JQ6L2aOywEz9LL2e&(D;-Il8#w1L>T~ZNJjb;uns8_Y8
zY4z@MaJMA9S737o_c&-+8darX3kNO9AVD%eK20ZYMOT@ozMZD-b5L;bjDu$#v~i$V
z`}7kBC1QjJ96actt%Lg=44tOt$-|<xlZ+k`-AJTZK3k`$M;tur;Bf~}ICzZSRXtBN
zDos}`FEi~RnLg#<X^DDLAnANfP#GS|rjX|xJn!H&2d_JL!NH3TUUu+`WY<x$>qG|-
zgv>9|siv!&rz_gzRR^piTAq4RCZ9JPyy@UAp|e8Yc0kL#OT$jr3cn*V$^4!m?S%ND
zgO42i<DjpDj~#sC;Clx@IQY~-X9qnU^m5R}L01Re9ehDOr>oB#bSu+`#bl*?E&_W@
zS6@2lA-OX<>eFw!HsJK>s<(r$9DMEI8+z|_bxGyo3NuvA85;T4!FLY&&_5+eN+XFP
z{L#Tr4*qa3b%y%c0i%9(@S7mN2y8n;b(*2RoT2*8P`?Wsh5zY*l)oe+Cj8sM+8K&S
zKL`EUF8sm}2Lpte0tX8+P~aeeM?{UYXR4tNhOzm~RKp#NaP)Do+)UMGrWz^uo1{;@
zc8r6u4i-CD;$WPE@ebxWnD1bMgNY7iIhgHW63aeQaqf5eOf}iT6bVkH|K|$R9ZYld
zrK4mRFjLJCBIz>);dq<x`d_-_=dj!13Air#xq@(<u)xtH4W5Hr$kr{#c8D)>^t{u*
zthi=+DSxShW$dHgQ)^hK9n^A1e;RNJkN64)D;=zIuv&;@K4q3(iQX_%-Rc(BQclal
zI)U5|_Md}|tWy_;i%snA*r&Ou<zkD2tqzVjIO<@VgY6Cuuw!(v!@*7mdmQX#7d=Z~
z)VzzunWfY$wVTatmc9s@5ATuQ=jfZI`Ru1jKhG06#3nFH9j23it}nGF{JB-3>nwH5
z!Epztx;V|n3HEiL<xg@^#YH(6<y};8QPI^0{YbCmYRgo1F=&?J!zCv^M5?+t+0|m1
z#oSqnVhK-i@n)+6Gpgp|bQkBlxWL63E~>jY$HloW&UC?R#(7nE4Hsv*IGYxjrSGOD
z<UQmR%c%3H!)$fwY~{>W9~Sg#S83@8FLd=a-9#>Oak0w{#)TVP6uGGF;u;CU#U(DT
zaPh-zZI(-2T;}3(SKk&+=H|0i9T#<7y>RyU?EjVJ{n?7lSGu^$#nmoG%+?!nm^I<G
zBD0>r>s*j{z2L9is<q-uTzwY}T-@m5CKormXvmUY(t3fUy+!zM6@jEsEYmWH>B4gH
zo{RTg*yM5XfQtuRxGp>wO<XjkCyZ(3yNF#RE&>;!i^%2LYa!#}x;bj!Y<1Qgb=MsA
z<Q(<E9F=vEx@hF0POp5<MIT00X*hh2y3Ivn7q`1uG)L{6quMoYO@^v-_0(=N7k9X5
z?czQccd~w6v~bbV#oe^zTt&8f1ZmE!=PFY2bM-Xiy)Igbw7jdg;66K7J(U(dbqeHX
z76lh=T$H$IOM!Ega`oDGkGWb;Zh9mSCm8Q{F<`FZ6MU6#=i(t3&$)Qs#ltSzyXfHJ
zNf(c}c+|yXE*@va)v7mruHv3m%HK3s5k4WpNvBxCr|7Hm)H5!g7G`QiV$nSHtgGj5
zzwDZS!NrR%UUBiNi;gZj(dP41i+Q??FS&SGj7FRZ=Y5f<WnOdfx{J4j{`@@khKPNW
zj#||w8<z=a`L|uX<KkTxH0H1Kv{ppA&Ql+__|V1QF8*=xk&BOAeC^^J7oWKJ)J1m}
zU%2S(qKk{JE<U3(%+YFa3YXUC=Hhb~+vX`w%#IWF{+*}j24A}9!Im;d^>$HtzUt|s
z7d?Nz;$sS=N?!?sR&2ET*2Q;hVlIATk-O&mxS+*;bn(4p_k&a)73K{5PcD9T^#t-S
zQpOhZwLKa9-Nheb<UgebsUaUm{Uw$D_IzETeO>f(G1bL17yVhME=Ic;<6<Ct2^Yg$
z45tqB)nGOj7eif)7j3y*!nKK&^Yyg(k@;$b7<rV7kyK;8s<A+OCiCI~%2?*bHtS+C
z)4Hg)KuvHlk<DR&Ua2WrpgUDI2TsnvvOwFPsisINh)j1egT-VUcQMn&EEjWK%yThY
z7-*$AEY||ne}P`UVP5murMOrq_Mx+J6=2!|UB*xEEf8PqVu?g8cd^vPh6QRFJ+n)`
z{6cLmHVs;Gg-B+{PReQ*Yg}xNur0z`7wc#xAJcrSXIhu<O0@RzpNowyzVh(3hfOXv
z(<ePR9=0$coyx<>9=5sI?&6S(!!CBPH@>FkP8Yk_oi0?x3)OCR&MpqP`g*03g=#N5
zy~@S=+4>f$eQeZ1BxO-geI?OB7cVVT97G*)anwb54;4K9@;%0$pB=u3<Fr-h{O1c*
zb-BZb_}>fvcYRPr50yMr_WpNu&o#ViW1-r!P@N<as(7fjNC!{xaH@w(JY4GGG!i|W
z=iz)0r+YZVLk$n-c&P4ygV-}YoF&qj3x9h-HTazE=@$_1?IC`y2VVHYA`q{;NL}FJ
zLJt>txY&cYNY(W8ptR*8RZA4$)m!8&@=)8;MPQQJyy1tR0FuSuopn!mnTN|g-00yZ
z4|P1$^>8h-^KgZSD?MD};p0U*33I>7!_$k@)dGo78tIJXT}Ib=xWPkx*3l>GdQV%J
z{Dci8-^LuW$_-IJEmAjoxRpwJxWxm5yl#kW#U92iQl@BScv!qhakRE;kyhUF^u<#(
zKU6LY=;1jJ&wKDa1Rn17(8@#TA@b1FLo*urUzPEY^^o%ri=h%0<X^2Sq4%#!Jv8=k
zyN5;|ZWG<^{a5i}L3p{-;&U64vx%s|tBvmPaHofR#FBTh)c>lx1+r+wn+r~aMsDGu
zrBne^F_vzY_t2UQlJ-6i1rKdK-0z`{2j!uJRu!#y#}sp9S}MSC^#h*128wm`gohvh
zRSybm=iwniNO{;p`!f6yK^~=j$|#QuGV)*5!NZfD9+oWnS3M;<&{cN*tDf=jEbT92
zY1;PG#p(qQFM9Zh`grK*p_7NVJiP7UB@Zuq`X;M4J-ouwby4)X*FC%{IO(rREM17#
zbG;#W-NnjUtWEunhj%@^FZniKtiKf4F5dI>4Q6bfA9(ms%1Z@Uv$WMG9zONZP53*D
z^K=zEbP=3)sqv;YTJ<wwczm(?+(UN{Ur6vvI)hwkMaLV^E#JcfVNVae1R>s=#aXPr
zUaY?H@U4gPJ}UV5&O;ySKu`1Vy@ww>jAbjRRqsdoBolfV=;3D%zm%5I!>=BG6F)q@
zSpDwlW$r&b{K+b=(UACG9tKOno19#W#b3Qx{UZtc3Z$+23DVyKTQq}%$WP@xjPNi-
zgwPJd1Q{x7P%Jq~<TKL4D4LF4#1g%)fDi39hAsLNMSI#y)Ho00JxuU0(Zd1}!h%fl
zFwMhs50mM@$67Ge6jt04HC5yjA<qmCGd;|ba&=guX0z6osA=8v*Pc>qj)%DtoabS_
zAYU(0jOAJq;X*dO9~9XZu@p=6sk9{?mU`GMHL}dZa(dAzdQ&v5vBE>urE0B*l^#}k
zSS>tkiEAi%iT0N50@rz1?_q<7|LBcN)h6~QOVviUprx88U8)!yxK#J;TRd!K|L<YD
zheI9?d)VP&r-yy?8IQa5bUm`XJk3XBw}(AKA--3T*-LdP4tO{yw)$_W;vyaSNjy@<
zc~q*H6kf)4jQzg^PY5jM>)PkTF-b)qm3-Xf<7OX~eVpXu93SWUsN$nRi$XOYr~9ZX
z_{joK5y+@heVisZSL+z$r5|VbILp_XSNHKkul$+5K9WXLpIEBS7CNJ92*Sfe=lM9_
zM;#w^eO%z<LZM&e>wfY~4>bj$|I`wMzI3sVA|JJd?b0%7@NtRYrK{nWmC-M!%w^hi
zSNOQn$F)A{`MAp0-PAP#uNFw-kiyq4;dMT)_i=-d`b3uL`ilCsV!pX$s(}w);&-DD
zb`+%3bs4<H$E_@&sMpZf*Opp7Y!O>5L_=^>VB2NNA#;zs?<4Tx3hw!O37+NsXqn<^
z+0aMoqmhruN5<EOd1D`AmZ?Mv_0uv%JnJJTMB=n9PvhR^>w|breKhv<;aonq`)J~W
zM+J$Khez9*(FomjySvlJUA`W%^EVKD?)K5#$2~q;_-N_lULUP|EM2DBR?`~>2oHDH
z>g`^pYAjdx`6&2!)5lvr+W1f`qmRdZl=x`t;~^gp`?%lNR~|j!>m}xEmunY&&<C%V
zry1K3>85W5rvcm3p1yu#KH}?F#>LW_*fX<xe8NWuAJ6%C-p7+P#d7tu81pIGw)HI>
zmXQA$Umq)b*2kS)@_bm!FHkq5@S=~7;@GX0t4=;%^6{#V*L=K8!;aF2?q3mvoKG#+
z*7$6>dfmqxK8Ucq{g*2ul=e0)>7$pA-ag*-@t%*)6zk)CA0PPmMD*dPo9F31^f7<A
z`pC!D<?3UBL@0_=vY+~Thd;-zT`Av34<9{!bo22!4SuY}7oul(w!6NXpP7>RONpxX
zt0Dt08K8!In9)~0zV<Q1$50>N&@t$TKK^0<?_(EFe);&pM<2m?buB3sSEwI-{8H*R
zVqx0+XJ3!*81<{qTVC<!#rexusNa43;lo^^OU>s`N%EHuetR;=-23_%<YO>>j5eq9
ztWX1d3>24se1-a8g&y0m`TVd#pKzyPiSSt5Fdrj*j3S#9b7$}T2x&VFe2k{|`k3Tn
zvX8MMXQDuAI8Ko9J|_73a@q+il)j?2hBgjA2Y6Q}KQO1T!|}0Zg_`bT1`8hI#}G4p
z%wp99_%Oh1wnQIS1h_K5Tp#m%9QSd8)#PJ=kDauVkA*%K`Pe9h{ny80A1i#U6jhf9
zak=121ukRq75ZbGI<Tfz`B?2^9f$f<!^c|T?=P>3S}V2D8mv?s*hp8ZcUG$Zd_1vI
z*DsUvTBl7uHv8B@Kk+errP|JZW^u)BB4L1}{c5G!AyJH_C_cM=91?~-K7Y7?eS#nG
zaZr%`tQ5(5?MiiAk}#LUK8{H2Q6J~6QpW^mi=Z^dmJ3jCl{zKBsR5!@s(gS70V)Ql
z6rgf|szN*|K&w@%N`Q}7=~Pdx(q;c)l{#5s$F5SFg??Iq8UfA;P%Xge6u4TQ5$MkU
z%s^j+RXsqdK}b0(z}XU2YKn6MoEHEAE(vgcfD6bO;GzH*lCoMgT&-#b+5?#{aVEc5
z(iR1%Eyx|KwMnbKsdu>XZwQwP@$vw51i4IvFzVse>NQDTSLhUYRe-Al+{@AhxF*20
z0kQ#dG)RE!0yGRzES%Q|s2`v~fExmQv0DALTG1dBcw>N@1Kbkera-?vX_G3w^S1_A
zv|8Ke<TYBWU8|K5zzpCA2m)9EY)R`%lG<yO6M*F+8<X(y%0%6=MujwQfJ^|2Ww7xY
z6$j|FMkONQ{xzyApU(L-K%)Tn1R#D}fW`st2ymy!xt;#MMl}u4B)~sw^k)%8H4E^c
zBxJtFNepmz@ISX<u(>4UcCuw(YJFOW*p{r;wK^|K$Om{Rz{8?L>j3u!C<JH|Km~Xp
zz=HuwB&uzI`)O54#Wy|?W=*5<X(vU_tks*=c-pjmfJXwn9N?7zj|O-wz|#Sq3GjG;
zCjvZ4<^cJ%s)N{p4TNgbuuqHR57z2-^lX6V0=yWYqh$TOKsJOI0&svw=I_?3P61w`
zK2>Vnk}D#G1z~YUt>uYqycXb%0B;6(T@o%_tG2DxZbk`j1$aBa`*h1HwcZK9<FW4s
zcu#CnX`Q0*n(I{kb=orIXBHo^jnKRSHU{`4z^4Jm1{fEhGp!onrvN`QEvsXl>J^}O
zfX@PS3-Gz*`$d2+X~1==yLdbI=}~5n06l4(b-KeL<U{4ZVz~l*7od+M{3gJ+f^eH3
zlXN^=_mJOH@;dc{&}p>a*Qp-`XVkcL>X!h&2Kbv^A;jMV{u$u+K<^b~)_(+8SyryU
zB$oY2-vIprj0i9?Ky~^|fI$HU2N)m<Q}Vz7$Jc4o4GA!mZka18KdL_Aut0yc4Hq^d
zEDK9PwoxK^jKI->&X-aA_W`5E2bjPfJHWgE6NO>2zzf!^Np!6>I+rN{rUsZ6V7f%j
z3UK{;HAC{9DL8pJprTA7v+1AR@^b{Th0YJKAix?)$k>GemIheH#v9<@0E>lAC6@$<
z*X!imK-+q~S{`6UfYr3ydbKjZv+EUKj*MExs$Z{n2$Pe~&)xHD1FRDvi`J|4f@~1D
zU8HRausJ~U5ch=G5@0L)s1TQi*cM=WfMYacfE@vL2G~oZ1>ma0E`hu0iW~I5KlVtl
z;Re-wgJSId00#pc3UGjye?c>lcv#GSgmo&+9ZL!%cG{qNOOg`-%7v&N;>?gYhM_`;
z${|h)Q8B~-VW<@9d`soe*q}CSQ2bp;l~DUwmH$-L5QHZSJVoHC0#6fIP2lMQ&k)E%
z;%9|8JH&+{YKEv0;+&ADcnaqW<ey6D80UsKFGSIQTKQ6VK?o{9&1;2l|5Fz;R*;JX
zQmfh_5aRd$bn^C+kZC{oPhCbmLzp3~5OqS-m9jJlaYcwLLtGo8UWmP_a8-z_LtGPT
z|70$NOioA(To;0dx<2IHfEXw8S@8NH)=4hJ$$4Xln?jtiQQaJ(VTj@ow-9brw@RVN
zzyh*pTINP&gy^tQF=&TyLNp3-8%q(w3lWD%Liizq5MhWY)PH87Sk^DocG;-mh>a=}
zf{-|$Y=~TlRLVtWYQ-!zN^Ij0w}-fsg$mI`)H{2Vx^a_gD#avcGbzO#0;v!E<n9oq
z?m@|<v<T5M#5)uo;@%LgLOd1X=@9u4twXd6@lc5SLKH%@4ROENuuX^(u~p+uN{Lpi
zl=ho+DJb)SQ2%k}L7~&ZXkpgT!y(#-cr3)@Asz|A8!{hd)J9#EgiOWaKOy>e2=OHI
z6({*zWR|i$6XMwrFNJtH#B;Q{$nO;5g%B@_F-yH@&?eO}1R*65val5XN{ClOyb<C}
z$%57QT8P)h-x$k>n$uQqg{ZVyz0Ee#wy<WCrts%G?}d0jM7I#1hxj1Ghao-_nIDDt
zm?bSM<|iRKhv>qh3FW%Yx==I=Av2<H5Sd-279q2y0^LLO4AF~qw^@A=;!7rPR_MXD
z**VXr{bto$@NYtV8|v+9UxoNucxW+hg!_(dYJ%Qt_kD;yWjHB}CGn>aKeMnA-iq)`
zh+m}^8btVw%_qdB5Sv5%5#rAfQ$kD)@mGkyLky?Oh4?2#-w=ZtoO*4)5S+stC^&=t
z*<A?UZL|KA<2S+}rWJfhh@qkW5au`9FyWc9S%0sM46$aj8WUoy5J!a=Eix-?(Gtdm
z7$0JyB;*f1IPp6n)L(^sh;znoQi#d)$z}z9+7M0)F`Wz{7KfO@!GDN(Z10QIESi06
zam_7iPKen;;p_qFH*QgL*#*r|O}D7~x2X9c7KB*H*4IUmfeI|5LB7ntvPCTkv6QNY
zSQ}zlh~*(xgjmUX*`og0qNZ<A`)?_%3iTvBb*sBoZQ7z%hrE!jP-&}L7h-*g{}_B<
zZD4!fs#<K-KhB^^BknG24E0^9{D}tPmJnOnF-EAt<%1C0LzIh9KEjR=JK0Bt*hk|~
z|E+4bq~c0?2NAW0zPDBN*{b%3I1u7!h+`oRhBze5M?$^kPWgugAsd4fLRF7T@lS-9
zyH#%<7_wCnp<)#xRE%&+gi|9_icmR1l?YWMy~~ArKTe8tEo|MYig_+zo8EFjc(M?Q
zoED*4gfk*kkMwQ|COJI<cZsx=Z474$+gZ{7w#Qt)O{>8P+jAnE8=+2wx)IKcaDIe~
zBNRorAi{+aYDKsxLd{6;2BE;-A1h8KTilkgMQgi;KP4GkTss0HT?Lm#xT9zOk_eXy
zKfTW0rYC7>fy*Pb*rqyc)7H2m!j%!OjZiPbRS~*0*4uKfiEy<fe`lK_<=1Um?dvF~
zYo7ZqZV=@92;;WtD{aYNUy8%18zbBl;pPapL}(JBDGL~(VFW)y5MjGjD2`x8up;o%
zY$L)StqUaDTqN42JgVI#??gDVP4Ny`SAu74S0r-a5k`oFl0>*>yUGY2Zr7Z#;6$<!
za*{la&?v%fLZ`IG5enPYXWP~75ju&$v~_{OW-Mcbb`c(maA$<OBHSCHRfM}mpUcg{
zJtCobq_3zwrD36kAT1-DeqVtPCFdiwj?gB8if|uYrD0)CaiI`_@_*m17^Lzg5!yyr
zwOu_B;r<8{w<{KTQtJYTNxY%-;CA&O>8%T7emFw=2+u@#Ho_wj&fK9MkMKl<M<YBY
z<zf;Rgh@I?crwD%5gN2E>~F1ec}i3z!XO#0-l3k0@O*?`JJhQYUWo7_%O2q+*2@mn
zQ8c9f?RKbBZf{MUUykq!tF>5H2a~_HLlJ*1!s`+G?@(_D|1>f;)SAB?;T_gpgg<FC
zju0Yz65-Pb??re&(!(KMTm3<V4<qc{p+1W6ail+2iQn}=fymh$|I^bVd==sA2wfw6
zc^Bs~dPMjvLN_{ptHS4`cg}wycz1!HbkCFLOE$nR`M6!7%1+gjrHjy;4!=|1*vVK%
zeG}nZ_UEF8u~U6VEA3R@N9YsbM_%;3QxX0^To`_e@UtLvun%_XVeL;l)vuEEZxMcv
z^a%Mn{_|*TE6z;*72$6w@0JMvMCcn~g#`Q2L=mP&m=<9`gn{fIB8-kOD8k?fLn91}
zFm|UJ66xbJD|Ra0h{zKk!`Y~>tvMpXNTKtNN1jh%5%|<>Q5eG{bQOu>4R7NjjE^vZ
z&Q_!0@tulCMb6!&Cl6n_6_X-NjxZ(CH#+h%Mluk&d6$|VVMc@n5f(<6Nja?C2y>(V
z{bGOzi)K^X76txHVV>kNUxf4CIf|u_rn}T4Hfo7l9$_)v@1$BwA}o!t|DnR8yL5d~
z;boGF_*=Ua&k+5<zYoyWBdm_FCc=LaHnJ&2SVt4>QX3+yXMIugPxD+arnO5?z|G&K
z_U=-fB5Y>Yw_7hISKF<(YS_E=o0=yYwzKn(&@o1*7&}=~mMg>i-myEv9{OGepJuR^
zJ{G~qz|8PpAvh4>iVUvI;9!J9>{K&2FN4D@g(!Sd21jX%2qz+x%jjPt@gGmeBQ)Qw
z9^0)A`_^u?;-NzMj5c@$ffWVPPby{f<VNKT=b!agTa^r|X22z(lQTG7kW(^xik|Py
zQw2FqU^RhUj3E6C!K-I*W(H>oezw3G0^dEk7L%Wo0lkjM`59c0!NnOAWpH5zH8Z*s
zriQd$t&DDK6gX_Rx+tS1a}Ka}2FT#j3@*#)dF*w&)g=<ef>hn3UgZ_glB$jnS?bI8
zsJa<AdlZqYGPpW}+fFWSkij(>@E#uS)xVZGR@cR;N0l<TUJ~9Qs`5TS((4O_2seP;
zn88gM+$?rzm_e&OJU*rsyHy}{AYLq%WOj_TGO#mvGJ~h6Lk4aJcVuv923`h!292mp
z2Cwc>K?Y$4Q3hY^QDa2aj0ntSz-72NgCqmCDLz?2R_xK0n6k$A{BMG^F;&W-X$H4T
z@tHd<NoAUes--^9UnAX>!QC0O$v|b$Jfr`Ca!&>=SW|lyr(s*N_<Qw@l=o$HTfSF3
zp_RbAz}7;iSFm0R8H^gx`nJ8QB!jkl)x#OICz8Sa89X35uqS*dg9k-;JAu@P88HiX
zeeBR4p^-CqJcCEY87PV_@r0!9kO7~^dg?|*I^ok9Jd?qD8N8ptvl%>>!OI!ELg!hp
zp3k7`Uezgs7czJ;gO2i0X73gSrtP#>y;N!wUXeGt_|*(p(l;`AQ;4r+@OlP+?bQQO
zE<`e;w`j31^6xT>AJp3!ypzEsiCw){ae3~`s8FBx%4YDPxF5%U3?A95KFWZz+#d_%
zFQPirTp5hXU@UdZ;Ij<AVS~z`TLzzJ&@+Qx^n~5FGP?`*sqU<IW|S{{nL!V+Fmc|!
zNrv96k$sAO9`93Mm6hUaL2`{-f0scYDxbmM8GN6?4;lQD!LQPYSezf}hx-&)Hh;?C
zXK4a7Z>ceV%izz9UfksH`1gz+JpUo^Txq}0?^FL|^m@vG3<gsF&iTF>J>}ky`R-Bu
z>9o^Z>tTNegEJT@#839AAsGx6m*dhub7%byV=#je(v-M^g*f3TYPe60+owinK*%OD
zjxNnoXD~a139OwAriz?8eOgV*U<$jweQMc0HCb9NiQMmZB3Cqx-O+wEox<A}W@Iok
zqc<*+LX#5Cp?klr>vXQzid8c&qkr->UnJk$P_OzeA|-=*F|LcTID;h_oXDVDjHMYY
z%U}nqGK1wAtYFzQSewC0_Bn-oyOFJLc()aiRcxC=sZ><N;JOUfXR!37;w>3$5M-mk
z{{%MXw$hV|HwpgC(N>%3oXsvGvQ;SC1d?HU1|J-4^}_J_yV&`&b!TuSgFP8cZ+pvu
z4EnCg?-iWEeHnapNzr}@?i<?bpv02l5L?8^R?F%Y9c3F|nLn06zb{)oIkSj3k>eS}
zPt_z+K1PKYHDa6-qhgFoG0uolwNk!vjFVz)sG2`5MwJ-z2DLg_Ad#vuteHhbP7%tf
z0;wt~<gXUv^cdaN<cU8!y{LMOK2`I4&Wv$Z8Gd#Q@{@ROjPqjDzPI>_7;jfDK0ijS
z7#9hCL5vFpsqPllj8X2cJQ*tg+3MmLh><(cig-~B!rB7A9dh3#F)oeaw8>u<<E3v~
zT`tfyi|YtNN?jJSLNSpmV_X&E>KOlYZC&M}!opdtiCh!oTA>i9de_IeAx0D<6JuTP
zR`pqGK^nxkF~&`T-x{N#AUDUjMUZ`u)FN}S;6@pRm2Q^djJ2tx1YLoC3{Mb7?c3Fg
zFpyvv<HWf87>r{iG1|mXF|sUsj5}l8#X{waJ8Wr{#%L7dwiu0LG>OqP#(}HxW=a0^
z8f|W8UDRmv?#g_#7~eI^-x1@}W_d=D!r(70itmomJVwhH_r|y<#^bfx9Jv}TB-NJh
zT9IeKBdQf$;_||?EAsa-i(2*aF<Qr9@L2m=gnSAyO7W5yZDTw}IWg{!@j#46XtWCX
z2V=Aoq`kn0VmvI!!3&ER>s+oOaX!Na-uI|Pk@!T64l$mK@qCQmi`qOH<Cj`R&%}5t
z#_B4?PYWbcXTN%u2E4m?)wtG+Cf|4V^42fJcrgYMKHDng`4D+2#>@2Z1eFrJ664hv
zlVVJc@mh@6>1HwBiSY(KIakDy*jqGjm4<J|U~j{ICb?Mu58~Yz@6n9(;TZ1=!{;%&
z(>?a94`O^6<0G1PZ1Km0F**zWiNH4d_2=qKRcm#L(UtYMUwy^~A_#HL50o-|5rgB3
zD$NVMV|*z%gFRyO6r5v~UaaMli#zUDU&Z)3#y7D(oAWK3XY)dr{p!j)3WN6R<lo2m
zfo>e5Zw%gh@MDbMXh6Y#it#he7~}fq^pyy|3USIE1>(#0t3P6#c0m0ZW6yrY&tc+!
z3FYrte_z)<p!(5n-SVSijE>Pi#()?DV+@KhJO*=T)`MdVjWH~Se?Scp;$L^@nN`NV
zAPgg7jEq4dnfWdweDHu8Lz5m*<70jO{@57fV*Lw%w+`sr^(RQwM1g$!kZnqgsWCRk
z*b-w}jOj5J#rQYI4AyV&R{D=W)OPo+Gh@t(F+0W_36e5b7>IDg0AX>L{QMXT=$W0=
zLV-jst*?b}6UE{fOW6OjI0w|~Sl_I>EXMK}D`KpS!3%^bfzN}y1$t@gRk4N)u8Fah
zEjPw`CW$fsfZ7m)mk%@QKT(4eJ`56WqMWlEGP|uYw#C@a;u9WFr+3m<cJRC~A0j(r
z?256QmBKzSLHPuGW9*A@oSj3gPml5sO8eR5WBr;wNYe>I{E#5rAA3ZQqXM}-`<Ni7
z9MqRia}a`qTAvCD8Xi=<z?o)YraWp<Il)N@R%Nj|iz*4KCRmnWd4iJ@oRZ+R1g|GJ
zHNj~K%mh|~Y6(tHa7BVE6Wno7osr<e1Wz4Q)f1eV;H*RssLmI7wm=4JB)rB}4=T=0
zz<my+oF`E~oT&$U7bGYR)=W?<!6ygRMTs7ZBEgRb)x`;l5|FdDz|tg)y(Gb<2`-}?
zVXh;P-w_;L)J^m^4o4%rE8r@j*H6$O!PN<_NpNj~dI@e2X^%~4bzP#jlw6-^s}iAn
zB0NMu<i><QN<hN|#R+asa7%()6D&BWxbcaxd`28p+YYLe4k?4C=#l4$i1~8=Fr(}Q
zPJ%WGR05Y07OLA4G)~|p@DqLAdXS*G(nCI4AQWpv2{H*{!IK23AlU>L9a6bOe>#z~
z_>gLp=#MqxO%JKt6EsQCB0<XpO%pU@y)-VO(P*nX65K5|r!sdYxJyz!a!7yQH5d9l
z0$C|!xHrKYhtz$E{=8}>d3|+A<r5ILPB8M2B2q}O@Q|Kb;ZU$7LE8i`Cg_;p{sa#s
zcp^cE1lta&NuTLDeNdEdm*62mNO?Fx`!f6yK^_(OSc1pP=p6h%Dfn|`l&1uFS}N-q
z!Jida`LKFkkQW4U>6TgW>6GAQcKZo<d(TS}Ra&R7vVMQlJMe2ARyQA3ZzOm#!K4I}
z6TFq+?F4-ie4pT*1n(y3Oj{**FTwkXo+W<hu&&S#5`38GQEubI+J+w``a|qvfu9Kc
zR3M2|gKp3@LH7h-B={@=Co#H-AJT6>PxQ0{k+%-3FB9}i&^tj7s&QEL6iDQU!)o|p
z{fEA<5`3NDn?!G;`ZmFLiT+Y1zVLmu@USA>Pi8ig1cMR`PViHLpA-C@;GYD)B=}WY
z*6#^^OY}weOv}TS+ylm+?(K03f6(9R-}k3f`d<l_`h{w|Yc$cF^MC{c6Yeq7H$(Q9
zD6UOB>=w>CqSrO}@O?BS!O%n>$QqMiSfYO%&wWiJX`-@rI)XZM$*&u$MkV?JiqQhE
zJfet?O)xIOc=1V^Vq$^`f|qW>@sFsNUr|#MOilDwtHlYXC77OIp76||w;xfn6O1~d
zX0mw>R!<#Kvl4uCME!6?kvK=#<_cVVL|4{)DdPe<Z~|V@zepfE!+*<=CBnRvUG5RZ
zE!?$^suc-VvI%G5X0a;4YIcTMoSMZNHr@og66~hicgwF!uqDCP1nXHksh$7W^p2`c
zf^TG}aa7MIld@SHfXKE4<sPfFBLUB>ZD;%aBLDDFJ#1ibrx1^13!Ko~lVD$h{dCAK
z`MpfyH6U^z!9fmevZ$QJA^KYaUIkV$tNTnc91%7mM+G@1@OXj~rSz;8!l!%|70PhV
zL{S2dz_4AjPPrlNB)$c*;2mXEv-*ti$pT3yep(jQvbZ*jdRd&F#Ti-D%%WBn)w4J=
zi}SMjcU^SOu1D2bS)85KoBi1O9{)UFBa3sgAj0QdL3n73izer1d26VCiC-v?2)*>8
ztnTfLvZ$TK#aZp5Js#Hmtv>(DT-c3gaY<IcWiA!nE@N5VQI}^?C#!eg)fISE7FS5@
zl>(Wz^t3W>IlCsS`%msvA-pb&>&c%5_x0T%GH=Z4HeNrgUk42Y4mhe>k8Q=l;Z0fG
zoW(6!+{(P<o75DfVHU+%%s8ryEY=^@!^mSt^$9he(W59k3*MT-y7RK|vv@m;cd`hw
z2(x%Ni}qPWEMpdF7LBrqv-)Mk7LgMq$s#MrImZ;~Eb>jq)NNTb&Z2o1_hfN9YpR24
znnklLnq+a?F~x%LO+*QIWc54rPJx`&Bz~9RcMIf?LTJ(!Stu!WOCgfy-Yi;Wk<X&F
zPzqF@^_ay^slM2UlTlxk{VRlfk4q$NTY>k}hJrkpMLR)QQ+%lNLs|VECqfC2Wbtek
z&t>tb$bU@W<7K%&kwpi=pUmQ^ES}ElUW=)o5h8yh!iT}<vv`3T)@ay?_B3kp&G=##
zeD8G3qU|xoya*ZlQWh^~@k$o23Uk+EdXeI_EMCvzjV#y=zA1Ea{wb5pZ)MR@626<o
zds%#y#n)N9pT!4Re3Zq<S$s$@?U83wWm&i?!KU<yNccR9?pb`AMP~_i$?8LhU8U3%
z{#h1(9aDU|2|}-<<-f=RZlPBe6OXAc1@;iwQy?9NS@f2Mz<1U+S$s=3&f>Q$z7yO2
zK;c>R$zu62J+bzE7JHBBm()*L{7f&}r!GIPI89pZxE`zglGUqJ)Z}-TI*Ykk%**0W
zkux-lVbn?#{yU3*vgn&dzbsf~1BIb~76VFiJTuSQw2td~9Fzt3qO&U-EKx(~qC#iX
z@GQniWsQ)ikpf8{mBna!yRh+PJvNJRS&WyKI4z6mSxjKT+2r|BX6+nTQzYSJfy|di
zn<`xaMa>Z6Oy-hB4-q)KESEWgaE>>Z=zlcKm+JU8i^W+iD68v*S>EfVo5qlb3;P-u
zEy-f3M6JwXne;+5)Cw9_a9(}PPKlH)T^0YlLu5@BYqK~x)$`%&*xu>MIXsrbhAjT0
z9dfuUhmBcmVxN$Mk;7*8idh`X;&>KYv)Go!9#&RX-+jl)((R(~4uLxb?h?3LAoq09
zAp5e|&xRm<)IZ17WGV6iVK~UQfFSFRtHW6w5&VcSuobW?pi7*{qCrkK!*V&4&!IvN
z6>~T%2kuTMu~H6Ib2vFC^Zz-VB%D<QGIniu-RGQ=Lp5O_erit71fC`g)a`VkpMOG~
zkwf(yt~;S+o++`cwX<`mk;6GToSV~K`V~2xm&5rvTq?l}avVI!z&?kXf?O<+oV9Ye
zs0`<bl$0U~QYHksq%4*?TqgMC0_&8~>x!OCcx4V(<#4souM>Dp8PBzX)GLh|+ltKB
z=Wv4r>kGW&gl<zT(TzFWRA!T#bGSwDTXSfb(>)t!n;(;cn>koH<Z?W&uHD1VX@`k(
zdQ9%*;7Tg5Opc#JkVBY5l+(QmbK$v+Oj#_;#k=N`9Qe!ZY)-FF5oyFi2}9GI-Y@#r
z3DxS9hK(8fl6!j&O#~s%Yr&f3^m~){AKsDECyu{8q3+Ise+;=Vhe8g`bGRpm7CE%c
zp;b;Fa2PBl<*Vdgk<T^s*(X#!r$5<R=k#0$dH4y?CWnWGLFG_F$tP6X93IHw!5r@Y
z|IA3vb~!vmXDe4ioHfXw;1Iv0TuJ*J9uZD`CjiF-IXscW&K!2-&>@E>bC{LG>>P>)
zw|**zXL5Kpho?*HLQM2r4$tTCQ4SxA8ZYGVMh<W0@S+4e=Fmxymju3=!^=5+%_Cps
zuMo)<@jd=p4zEirD~?8{+26|H?HoRks$}q;9NriFU157qJiKAK5=Pxwu7v*Zp~MoQ
zs848|943|t>@3JgCZXwa_$-HRIsBT#Z&HNMbNE(}?m2vs!<T}8C9p>hJ#*+KI3@QM
zguer(!VL2Hnw}s;mW9FZa_A$$@2N~_DuLI_*!!m(ewJWql3xVp_~G{){>WiK4g-bq
zXAb`eLV<q?@^?=6zzp^+qxTb}zZijZK7)iZEQi5@3=ud~AY<E?D;Zvfj}YXd97c&*
zMhhI1!&vqwRcejPVS-R-*zq}hC>CaqM<Jw4lBmf!Ovz!Y;L~!LE(kk;AIp`@U{6w|
z)=Z($N=!0Ga1LTO<uEtL`8~|fVT6cXmcs(NmfVH7P>@AA{F}pK!Iuc^_q|$L#xuWM
z$?_alh`^OOtjl424y)LG@k4;_TCQY`L~$x$tsqs(YxgMq2;Cr*|M(WjfjiqTE?>eO
zq?>bk29G>ja@Z;i#J35uU2MBU@S8-=?i>#1a3qI4IqapLz4H5VIFQr3iS~<0nU*~U
zFMl|g!=aqM1%eM_>FP&wIG)1^zIWOej^*_5>Ag_@Zo6EH@+m5$`umXsRDPFLOi?LC
z<y2R9qw*#9cGZ=8fBBM=QdCKGljl=4MW^y5L{3S0mt)OSQ=FEfT8h(C)JkztiZfEJ
z9{ZdNQax<0p6ZL}&rEf%cvgzD1*wtZoD}B@PWt&N&Xb4PG02C(3z;y*=jBW4`UQ`>
zYo_V%h>KI*Jc~rbdlJ-6^{AVvAQWC*ei<23yxJVEHAkHkbyKuy2GtB#q_{H0k=t<e
zHe8kB>QvA1o_ZUuNpWq8R*jHvgnB8iOEEpgj1<?WxPdS96pyE<pQ1sE#wl)3abt>`
zQiSrZzd6M%DeM$Zid$1OOkoP0{d{qXKg*XGss5DXanWhzOGvaNmdmePzjjj)@u}e=
z<)z>u7anU`U%sSLg_1znm@rC_NfD<=L{6g=SwV8N{K>V*z>g_fI2AjiLJ29i2?I}G
zHc8Qxns?4Wn4(#VJ6OgPd1_ms<jxe$Q`{r?T>|e;apwn$QIys~a&IXzTURK#SAwML
z6P+pUOVKvP{V596{D4v^N>XsTxQ)P$6-v0KM&IDqH{nMWN`9(P@<56a6-xMcz4Gl+
zJe1;Lak)oQJes1{jcA{Ovlev1|GVFBNrjRpQgmRQ(nC@_nc}GwAE)>v#nUOCN%4A$
zH&Q&C;yHR_ikDJ6pW=lS9aH^!eKEzJ3MFjX{2n3X`Y-Pw<xrndFVi<tyq4;Q|4It(
zf8dS|KHT6ze<1&xB&PT<#YdE1qv6{r-c9iyOD9Q~iXZRqr+O9sgH*qQDKk@};TaYG
zUv}i_!(T?G=$zuq6g?zimlR!7e3t6p8kSD=bQ5}adN@nhJ<kPY!Y_o#IRpynN#msW
zCdIcYdZ+kGGUdjG0g?Xf`kJkyh0dLW`R^pv_bCEVqmKlyu2@1Pd1>lTDSl2dG{vwK
zzohszMgJ57Qv8<U_Y{B855;JI&|`_`F5(9Q#WF1+|M|$DNdA+eZ;EyzykDyS1MBrs
z{ORhz6#TIx*#@QjEoq_BqlLjKhOlacvvi-&aMr%apPFK1%Kd>DPj62#I>ne2V^fTi
zOerLr1HZXg7p1lKb;Xj2DJHSLE@?eQN<@K^Mbw~*CA=?}blxJ%gwupLtE-wxwiHE;
zP`eRk)5lUAOL08K+!XUttV^*z#r%}lV`2q;se685ibW}wrC81`E5+gzOHwRN_0Fpa
z?F#cMmXL=N7wmSnRV*R#q)Hl+SX8NGWr|g7^_5DRRw`MYVhz2zQVEYbGIp&9C%z%Y
ze<^m;8&hmdu_?v26x&m5mMpf?4($qC=vtLZz7@$#!n}4!@@17ucBR-UoRm3Kc=lE*
z*_&dYBs@g-6V3xE4$?|{)U9!$T4k*>6=3qi?C#jPEmv1oE;%ZkM;|OO_C$(ujc`FD
zZGrNQ@PBB!3UDooF03NmU6*+2?z(j6cGm}=cMt<CEEE9?6%$kt1XRGp?hfqk#t!Vj
z#{Azo_vd-`ndi*eGiOfC?C$Kueg;^uu7Mf`_BT*l@RMq)nucalt#2(sl8ge^F|>VH
zww{6d1{xS>XrQ%$HbT=#(pHi-mb8h1rUEpRw7H}#-oijjfjPC0S@O(kDz?F+MFnQt
z8E9{y!oayTRR;rC$z4+N>S%zv&^0j7#lTnt;|z2)(9OUQ149jTH_*e-XCn?Y(9=LK
z1O14srFt8B%zSrE)yKd?HPst6RbK<lHmaqV_U9u&$i~-FVJ*eyDL=;s85nHnb*6lh
zax-mG4l^*^zz9Rn^5Vatku;#N9b=$U0KR(=e|Rl5TCxOqz99>aH!#6~Yrr!w(ZD1F
zGY!n5z_ZJf4NRv&W|pTIm}+R^N9UKP3BczavlM%Vh{5yzW*eAez@mZ%?y4#q2224c
zB(wZ3Ccv#%zB{nY%Q3)oWi53jH8Kzw2n{`BhnUDfY=F|{)Vg8-t4Iu_2JWw=_$iSI
z*=MyBiCLCpa}CThu*tw?GO1lzHgJrAV+|Z&pvr(UFyFvpL;sdK(7*x%iwqnloDVYe
zx8xy`9&F&hTB=oTHMF)m)WAZjUt95;f+?4{9&X@BDRP8?*|qf>6gxvMAwP=DC402+
zUtU}B^Y%Cc#~b?h1cg~*-~<D!4XiP6qJgCbPB*a9z)1#{89W15lWnc7m@YT4!oa=4
z?PLRQ)>hxuR!mP7n$rx_tE0(KN1b8dOatdI0u7vHU=<1KXpt)GD8G(6p^iG+009z@
z+E6-=!7OF(sH4s|@VwxEdQWeUe4&Ahg!x7T7aLehShDLRCCz$6kI!7fNb6T3H*QwL
zQoHJ?OAY)}N42f184`b)fy)_n26h>^!oU^-PZ)U8z*Ym>4BTemb^}+kr5L!uz>RDU
zm(0D|z%>T0Wx#OKsZ0sJj!ovm()E&Vr$-Lfvub<HD|0IE;JWH2!QX1&W=3XR#ap)+
zI4Yk@fEVY=-eKTQ0}rzKFysu}E%Xl<xQ8ZX<QQ02R~;Y)IlgqCp+}ickZhOn<=0BO
zu7?dgBC<U$cXt?gQ~*lLpO23jddf7(DmGT#Bn6)`@U(%QQsfzfCj#RY1FuTG&q?|M
ztu6Jk)RT49iw0gY@J&f;#96^F3k_%Uaz^xP2Hv2@i5Xvh-M}Yx6)Szqz}p7iG4L)O
zeVQH*<b+`wgxvlV0T^BH8F=5o2b7Ja416lpeI%SemXs5QdC@+fNtU<Bxp_Tpz%LB+
zt*3r5@T-9@4SZ$bYl>&!2LnGE_?GruTl$`@zMlF{;2vI?m;>r5rrhgew}GD+!1WX_
zVz$&%KeKc5%FO;|;CHqr1N)fx!@wQ`f3agUa9=&eEq!?XX@KeLlKrio`o{n<{~92s
zd3{Z@uc_hMCeEv`_A^n##Qr8~nmDq)s%7f3gM`eIl*l?lSyyh=6PPqC+rUIa6OBwX
zHgS=Oi%m2!(bU8&6SGY;Gtu0{P!q#Uv@p@q<Ue%uFwx3HYZDz!bTZM#L|YRbOl=Kb
z?Mze%++Naa>MO3?C!SpdF9OVVHUSe|Ouh3J4Z^D{*?MK(V%p8ri~R}oG|`KCHBbXg
z^ybUIFzj!luK@id<v|i;@@#$eS$##A{0EvCB&7zM7$N|>tPTwn`H*tBi4i6ynV4*1
zq=```#+jJdKvjwWV@y!C(R&4Bsj*b8fi6x(#+#TxViAu;C?v0HrKXseZeoUssV33}
zYMP0or8=fOJA<cV%oG!mUR%I~VPc_)MJ7xWmWjD0=9#cfI3^+!u?g3NXCg55xwNz`
z2MT->90KCgfxB{rCRR33ym$~s!WzXCB@>y6+(beCn@d|7=&0kxe((MUx})YTcIIUh
z2bfr3;vf@MCSGlz=9}R9M<uneBJR^g<bkGMip#PGn>fVOABN<~ET2<{n)+}G4oEUR
z%*5d)PBO8~#1RZX6UUl3&IAtuIm*Oh+Cj|4fg>7<=`m6Z0sgE%-oz3{%j&A7lAd7V
zL{s;c#E|%l2C8O5MYuylwcNxCs%+v6y2jMcbmC7laf*pk>BNSLJIL`OK>X=6V?*8B
zpK0PO6X%<_z{DyOXPY>ekx#`Ns&h=7*-%~4P;tjRX76dJs5nzP=%t2gHRHTuz=bB(
z(Ebf|*i_?*Tx(*Ti5H1CafylbY)~d{rPwAer5R0JXJVs?O(w1qCYw!MMoXHwg6)fc
z=Xp9<L&bp+!dpyiHL*>|xUl+46SW&D+Pq^U#VqUMb+w6WXhT`8&n4&EP5qzxCMj~g
zi5pDZC~!3ac@A%+ZWb@ItkFo_X5w}eJ4`%kg7`a3+-Kr`MvIBNOmHdm-BSD>DN?;m
z`(9Hohi9BTKrfqk*u*0y9x|aCsS_LhU-B0o)JH9|_F7yh(MUaJ;&BsCn|Q_qwR^(E
zQ^J-^o)ioLuH&xO=vfob%iZT_u14zNMv8j9AQ&z=C(X+yUNN!T)GsQpnt08`Cni2+
zcW2@a6YrYXDa3EGseV#L8@|QhWYcJ*er=?k{tg@RX1%Wei#iqWnRwsC2ZCwPSaBu(
zhbBIv(L@-k@G%t>8R~DS`pm@VCcZK8Ee%z#;>S&;T_(N|%Y13#D-&M}o<`<H)6rZ*
z8>{b3d~f0h6F-W7t;TwQh&u^Tl1Z{KpH}+G#Lp&vG4U&Vd-3LPBGT_BSTE}$4Tsuj
zhdsiCW&dPQeO@(mNr!(-{7XaGxX#9ZCibx~%+{9K*TQ}lp0Mzwg&G$2w@_t4S*U5D
zmW81tvryYY9SiL(R9L8Mp`L|SmR@60-{R>8XlkLEg@zUySy)oH)Y!s-jrAMjS&h}!
z#;S>>-?w)()~~P4Ewr%E(!$$~RhI>2zE5)aku;Q(Kbl)xXd}dJEwr=nTVur?ELn=I
zI$m1pV4<Uh-WK{;=wzX@h3*zgO%yEs`r6e(Hw#@TMibSmiGEWhXTGvdYohDzVWFqR
z@phcqL|xWIzXtQSAmP3i`dJucVX%e%76w@Qt@uF}u|TO9oD`C8zx)b_3{aR)ny4Wn
zA@Rd4jIdx?uq}+VFv`Ld3sWsrTKKPt8f#&kh0zwqSZLi;4Q#3?5AowIOt3J~!X!$&
zKo9-V1+$u}$-<U2gsWAaW?{O8*%s!|?0;6xurSjCg`sLJI7{FInkr%pOaC2S*;JXr
zgd5s0dsS2ASh%0{S_mz;7N|9Ec^2Mms(eXF7Fmcb6ttv;#6oHz7bYa;%%4n35hmq#
zO|{YH(tXX;JPT#IgNq1iR~}%2GShCVnHtwj+jc$!z`}Y98!RlaaFB%+7EZQkKpbM>
zI19&HIMl*I3rAWw%EBTGhgn$JOdU@5ZLcCXDo7)2Zl;c)N1AEoi|KA|KVsn+3m-RA
ze>PLcTKeBE1!J60)RxWF5(_6-SZd)UQDH!Hb)u9aE33IWthridVY!9Vo2%AS%B+P9
znVw?dR0|haSZ(1n-nDSHg>!_%N(*N&W`qgj;Vg;yRgyCJS$t!2MSvBZYvDZc2+1hb
z`4T_05BsY%5_K0^xJY=?l^0uBYvB@0|E6Sd^+we?3p<*toy`?fB0sC8F14`H!c7)#
zwy?><W;(*cRTeI@a5<S<*k<7h3tKGxAZFWPy)+tQgO&bHWku#jE!5Q(uCZ{vg&Qnf
zYvDRZQ46)*0^25a@6$qmZmSlGrHH4YZnQw#lFunE)GZcnwQwJ!$ii(FZnto^g?lXA
zA+EpE!d=o{=mK8V#R+g%)qCaErWV@5w8jG#9<=ZXb(BC|V03zj1x00kT(bzZe$>Ka
zVjng%M)l*O*YhpZ?JX3uPg!`{LSN~xp0V((g<sh}Sa{CD^A<j|@R5ZVEWBvpT?;!c
zyky~J3vV#UExcmkRYuqDs@K>MYFB>RLjBc3aUAJ&_8XiH*itcli#?KscPu^jwaw}@
zu%#Z#<6mHXYgVWCEW9to9|!?grB#n>@$OG?`C|*8SoqGu_ZB{7fK4lZZebULfi1VC
z;%Q1G`@+JPl<JYu-&pvHW~`yUmMk$}?5t8E!x`(UzGb|vt6I@g{b1oo3qM)-S?Z-!
zJP>NP)Xuq!8(OMg1YbSK#?@QDTlj;0vW?a@_Rxduv2E0`@t1|aE$nM!KU*vNkA;8P
zJJFjh)trl}`0J1Y>|>+Hp=Dkqs9|d%_qS2g1__Aa?s@yaQ=^ux2Q7K=Ze1JoY&5aa
z)JA<94Qw>D(a6?3dG}e-h4x|b#!@MfgqzuDZlk4;(IzcyFy$@QyQ`(*7%b~*W23E&
z&Ng79ovkNbbg1Sq3hixFRLgdl9{Hq59c^^7^=KiD!12#6HoDsAY4bz_bhFW&{Hd1|
z|4#(t;3}(N0Q9!?DP4W!7G)sJw4z+@C(+ek@B?fNw9%@S8f0UrU<TV5V(TGa);^$>
zqDRP$>2Mn(Y>c!q%Emk!WgC??M%%D#*fz%47;9sqjY&4f*_hr+cckMf9;Yijs3U)Z
z4R)IZCJT};5;JW~u`$)wFW%Ew#KsINzFNO3@XeVml=$+d(kvUZ=_6Y=f5V0;z`R!K
z_*RO<q#@wgaBZYEG8>)^-$rcXV<8Brtc{3jK3b6N=2rSS!t3EyDiIov7m<>$$LtDn
zT7V-zj~0cE5@9LDK8Jl5kq6kQvT>G;Rn*1Cd>bd(SZ3ou8w+e4X5(-h2Z?rv*f`YI
z%VQ6=!R;CUXr&fPb`f=y-Bf56UhE-{uyLe~V{IHqN*jx99BtzmhUM#3ty(MYyFxNf
zHDSuXw@i<xPj^<GVB<t#xJ0Vs#~O{pbg7O0tre>v&2qVQnvJ}*T4Cd4q37;2r_koD
z6?bSkRWN+wknQO<R@yj2ZgHEJGo=>tA<wgIoMYp18&}vk*T#7^*4enk#`(g34c%em
z0voGskmvH&x+kQli)WQD5`wkD>S7z~<<_086%|}B6+PctZL+b!#-%o@HQi|I7k=`g
zI^?riN?m5-)7FYIZ;?`0+PF%1Znd#Zs`y7Zlm2QO*Dyk!pGy^(rSN3C-NyBdQWv(1
z8*JQ2^Ex=z!A-1`U5A6Z4sNk=tBtp8yv=57<8~WQ*m%;$9X9T?@sN#&ZQNz!ZX5U7
zxQ}hNjk?F?ijVS~Hj3$>HtK#G2eeVE+o%U@952WR`SLlVyuFQL`iPAkHvZmP#or3d
zK1v(TFF$VMF;>(@@gkG=rT9}eo~Cv-Ua|388}*Eh=WV<o@Uu3aW2;|OCZ6+YU$pV;
zqVh{NE?!hVVNsb2gqyZiy!)z+*KE9Q;|&tGRdd=Z)mANUt4Q`HLs}?Vob>P5c-O{m
z8$a3DY2!T`U)uP}#``utpv`T3X5&K=tSNnL;}e>3Yt=`RUe;E*Gt2k1RlN0XTlGs@
z^|_5*w*F~C&df6Xf_-K?HMpJn+Qv7Gu6F7>VZ}cw-`bejP7ye~ow}i&`rgJ5HhyH7
zZ799aPOCt+Kil}l#y>Xx75uNXfQ{d!3f}#L4P<N89vgqMXK1UMZ>wV2zl8E{sbyC?
z-9;1mAG=2f`#Y%VfMol&SNl5H&q15^YVslF8V-iGSG-7Bi!@uSXrI~+X17-tY^j<r
zX*~z^9ZYgC*+Byb4IOlM(8EC^2aO%HbI{&F69-Klv~<wQK{E#|%etBiu&TYbQVT~r
zi_BX)TFo{N?ryKHkXr=W3i8$Vs=`4B2b~?j!B_27_fhERX!}!_P7e01&{B1A(6&N#
zb<oYx-W*+_s1$p9l6e)Xr-NP&hC3MHptplQ4hA_G?4YlMehvmWIJ822ytS&o1IA3X
zf^Ei>i5w{Qq2q>#s6!nLqh4Gt-CmK5PN7@Rs!$^xjB+^36yqKETdIh!bTHb%7zblT
z)a@189TbM5GGzcva4=DBQ9LqytU^)jDGsJOC{YCm(;Q59;E|z&84hMTFdUc;-m6fv
z=nFB<z8w^s&m0F89TYE$#JiRQ+kxZgx1C`fw4EuB>wuxfXBO=o@RozbLFyn9m17!Y
zl%^*!(>~j(GU0#8f^s4H=8~lf)R(o)b5M3TbpeYU9N?hJ!9flVcA!L~105`IFkd*+
zo<;|)AhqK~hI2cpLxkI*A`<7cAKO8(Ngn3la0f@pt#uvL5e|-|4J&jIGD{AueU~aP
zc5t+)M!PY{k8^OmgEt(!>0k+Kbg<RIHU}p<SnA+B2j@Guv4c9v!RZcGI#}jlxnNc}
zIK{!K4o;RVX`bw$KIx!pc2wx7PIJK7#YCRr;7t0WqdLa{@1Es=tEJ9%u!_;xQIUWt
zF$~3h((<_sq>hTj7dTk$U;~*rSmWSAmg=Z3ad45aTI*n)6u;QPSsm53j*2OnoD!D_
zu=sihpLNvHyV1cW2Uj@Q;$X9bzdNeS99&L!cTyyn)Ja_)mx*k+sYFQ*>ZHhlm@6Gz
z<={RC_dB@S!8HzUW@ql;S_juTxZc4HBF1*QFVOU?^t?`r5*`qjZ{#C@ZI&Z!oizW)
zJE>b8+~(jewoM1OJ3NpYEOMuV4?8K65hfWq?AKY{!+wB!9duUrie9wIw9cC60}dXf
z1=xZdJmlbE2ah>;+`%Ibb_lme#i2CaVV%{=&YJD5oz)Wz4+l><__4EkuCq1^btM0%
z+3kpIBzw-m^A28e@UqnSf`b>?cR?GcArt{B_zI<hdd<P>4qg?Q#fc#eWlNzYf6Kw!
z4qCft<Ki6$?>gAy;7<oT+1wm_?cf^+?>qRw!RHRwEZ{>2A2A*reCpt1aV5p02Pu-~
zEJ4Crs$+x3`NF}M?7PJ5q@-1eq<^c8|E+`X9Q@+oR|nra_`$(X4t{2wL-V9xeq^(f
z5US47%jd`~7XMA~#Qe@MZZMjG@rRg#{E7UFG2@_?i`p*!aqusDOBegOI&}XNvV8=m
z*mTx5^6aQ;xY*xCO;^VNtw%hq#CmD@IxgzEXyT%&i+V2VyJ+a55s5ph1};dZ8%Rgp
zh)B=0v5SK)u3|hq!<Sqa&0Vx0TNgUm{4(857kmr-NTRJ;NsYv`b<xhnU>8GNw0BYA
zqNj^qE;_jA=%TBOZZ0~x=<K44i^g3Pq-t_wMNG+=NVa84(%nT57t<b@OFXlzg?D?q
z=;LC5i-B^tuZ#YyqKhWz=jzyIaf-pHU}|>JHW}oCE@RoDE{3_7;$o_c;VwqF80TWV
zi;*ryxftzYjEhQFH)>js1u4b?;Wn0L@2ow}2q)VKE+)E|<mzT#ZC(;{)ffpTyPURE
zW@j?Z#dH_5T%KjG$!55iDf&{v6<ySZE{bx_adn4dx?uK}F3NE6rT{cPIXEs{7q7T@
z)rIH6cX6$Y>s$mbLKjP2oa7>M5xY<>=DSE-@T(+uQMgE5{jQivN?=bHRdO-cMVZ!S
z40Kf|Rbn3f(pA4>Pw1+L$f^fst6crE$^|<tb)btyE)H|CfRW(hU>Aqb!tYis6t+=U
zbtvz4)#GeT$%lKP9PZ)>7st6c-o=qFj&iZs#nHl(|I_(B!hhoAe~e&`C1=^Hlo%fV
zvc$#dUDd{}>O>bO2+W;Wh@n;Q>Z+ExSk6)|E_SiP#mO#Kxj38Fc5$kUGhCeM;xyW-
zt2*7qS6vkWinLNhy-to<AII<LZi=5vXNeZPOPX_BoXe1Q_5Pw%`Fs}_xVVs)ysNJk
zU=1U!o90GMneu-Mzu?xoSm)w0vT|_=qo|u&Pd~b#{G_>*KI*16x!6pM7@T<Wrx7?+
zfcnzlSGd^X;wl$cyVxrFQrRnAY}*TyjHOr?*B<hd@EXyD2ISVM+g)7m;vp9g^Znn&
zjV|sZw{Get7dN}O)5TpbZgFv|i`#`8MXFZtHdp__Ax{c(hrm?oZWs5^nB7#h-&yIs
z5=#`|sBY?h7Y|6)EX6VE2L)yrJmO-9i)URt=i*TpkBL>ECaZ4haSBjXe$vGgk|l<$
zXt$?aywOe3o6iU_k-NL8=UJDF7hSyM>hX3KBqeW=vO#xkw3mtBSfZS-xp<vjiiZv!
z-e6;K@u!QwT)ag^Tzuo=TlW7h-W3Tycd^sOdoDh7@sVKOckuz6`JO7y@FZLAY)rF!
z?CLF!d41~Q6M<PZvt7HZ&!p7o?uzg(7hkyelA$F?ZdUxY#D?2l5hl0qTzv21Cqe!o
zG(`UB;+XC_fXQ&T+~OaHpI!Xo;#U{Hx%fkBJg2)N{&#_I?ylp9^m~M!|1bV#=g%J7
zLwyhby7*6+*YvQDhkZTWPHT90y1Uv>V2)8&7bkvy!F<?V)e@k#hdLhWdZ0SI%k(z^
z8hB{vp{0jb9vXRQ?4h~PHzB@<=GIiQ-Fm2Io^BVs#`I7v1W7)eAKThP8_Dv2)^W8u
zRR2|J>!F<>+e_;A(3N)d(8<GO4^upJ_5crqJq+>Cg;H^br-$Aix=Af0?oka$O3pon
z57(+tfIc4jN_K#!-Ph04yT|nRz!A~6uh;HicA$qtduZbi5=ynB80uk|hY6A$E(I$+
zjP@|X!$`@p;3x{vL-8V9`_j@F592(XB6b+-fy=I0`}!VgyoZ~GW}=5l9xj(nb@)?{
z!c6rr&4ca1k&32!nC)SXz%x9|6oAZU2|#*dFUIolR1alJmP>EQjbyF|&qMBU*F^Yo
zEA$X~dTmbN;RBH&7JT9%6@VV$Z>h{f^-@_1{A&+Yl3Vj6ohvDsld`<G2(!w=eCiuw
ze24=*Eb#E9kFR_j<l$fs2l`mx;}BYvq3EN5kA)r<dAQHR{T>eUaJYw!9yWP6!o!gs
z&hT)ihod|!_OR5$Ngj^&aEyoJJRHx^+OCfY<6zgZo*o}-*i$X>__w9g3F2;ccl_CL
zBEzGnel{^(=3zM<;o($I|8!pA;bdXL5in+%vWqy4=IyCY_ps8#K|K|BO4rDqicc8=
zXL(rV;UW(gdpO&}IUX+XxSs~j^>Cht^F2LeM<aZhmJhh0>e8Nyzrs1LzQ)6?J#{c#
z=;>aFVv~&3t@S|8>pg7nuufniFY)w17XLt9O6zSXZLHMk(>?Xb{ALfAdAQEQcHwim
zhb<oW^Z={7!qdOqIdg2AhfjK{t2|uo;Yv?;p{$XAWUit0xB<0?Jw5e5AR@_@V|Ukk
zxIwtx<KadRH+i_t!|jYr54X@?pH$uI>3xd0)`>E+2*qG}hlggp)Scun0C&2(dv84O
z2~JJ>^iuZ<+mwSvJduh9_wX@g^YD;|hv_e>>ERI%J3O8wj%PhQ>VZaMEl+xQ%){dz
zo)CLdDL!t<ll4BuZi<bimu`}Lo)Y<-rx&=r;GxF#RRo^*^s|Y0@_A7VNZ=I@uX=db
z!%h#cd3fE!TO?zk_EK+ncyljVwM|%-=33fIk9@u(w!N^IqMP3H@S*7VKAViF#{c-U
zXX$@HABpjKoEe+Rryf3|kv;tB;d2kWJnR<YFUZQnHy*zAz+ZvfMEWZaU(@)#)Dyk5
zBJcH5-?8)QrM~y@1KazoGXLiAIYLc;6bY-1|C5KGsj`P(J^b$B54puxg5Su0b%}$P
zOn>gB$cOUt@6}%({`OGQM=c-!u=A&(eBI&yC-iI=`}%sq;XZ<-n)~@+o8qIH>HdOb
zbdjDbm1_Iim31Yp<D*e;T}3^~lHj}brG`ZMsPr+~M`IsNe022D$wyNk&3v@+(U#18
zJ)x+jk5&S-Af~?J?4#Dco`b|&%=YfBF`S{)&ev0wI{0YsqeAFeYL48kChqJ5KKl9S
z@1u*4u0DGCczbh+TRe61aaeEF-Pgyc@r*Oh<>=w#%-*V}uU8)v=<TDAkG{S>NrYFU
zWAzj%0t0*u^f5y4gIMqCsv$mxO6`Lsy}GyJ!99J>(>qEH^D*4l3mmwmEz6Gd^}#@o
z_g15PeWDo;C>i5ptPj_R=VKgs`k3Zpy07;Kn;_|ANheA=$;WrS6>ssHBABU?Ucb3C
z!^cb?wq$4dsNF}+rYUINK5AqiMFJKve3+!^qsYV(fN(W8hdpo~MgG2zz(?#Op*t8|
zJ|Y2D^wASncoCWU$b1~&gUH-RAx4-dWF<-G`dHsbPmkfe8m46-xT}vYTjfLfAfNd@
zb_vakeROL*$j8AxF7k0P`+pyY`Z(3cY3%=fEb?)zkK^bsABX$8%Q{*D?+719`uMkx
z;;=dAKM*)dvWw*|v&RTA={d4}ypJV5PVjM}ueVL+3fz``756Y%>f<CI%X}>N_5UyK
zoWPVrNh^Gu?Bf&~<fl=bX3T9^`uA0Hx9aKBCr>G#?qj8|N5j_mIK#(`zIsy7nF1{6
zt6S??K30hsgwOVI&R+Oj0nYPrz5o~O#jmCSQt(0wd3&);Hg;R<W1WweXwv@eFQG|&
z+{du-vBAfsK5p}IyN``NHu<>9$JIVI`?!qlWo^luR=(WF6+X85*e00SvWMOl9|T@I
zsJynXy3)r{^U5S9Oyo5_uJv)FkDGj4=VQB2-r(bUDNZsj1=`+M5qMbW3Eb>sPhWM5
z@OfQs-6}Bo-yx;$r2X0C`{`1=?iS>|^u7RH`>Av1m8%7Nz{i6=p7uF(hKGDS?Bh`%
zkNJ2+C|}65oV<4U;AX0o{nX=vf5OL;^rqR#>Zhp7Q$DCQ$tVERXBlbz)C+=nPSWQk
zT_VKi^;0iOc56TNvX57Myz1jMA0M&yxcs`0H+;Ou>c-(sA8+~C$xyty>TMtI(Bo^X
z-lcihRc)KDM?c<OS0aXgFkhL~iP`skeBk3lI_{Ct|J173I9&fHJ#RQZ_VJ02Pknqw
zw+_b_Qqkw^ZN_PWU6N(h+(4KGo7?!>$2T-cpu_B2HhhL+fFQv45_o^m_&$CR_(z6B
z{n5L9{KN+GU)9e(e)aL2k6#4OTRZxxcl)W|N&HF`=PmE<r?}GjPal7=V+=4Lz~Air
z+0O@P72sbV|M{pJpk9D|0_+=L{{S@uG~fV5fEro`J@~-&EF8q(KqXTS7S#$+J3yU4
z4}Nl(Wo)2FZ#bM%p9KRn4bUt=!vKu}G!D=t02hp~V7>l|LtY%=;SdK0IXSGsBFzIm
zeAgn-<3$`}WP2oK>i}&6AV8M@Z3DCm&?(RZQ0)U$1n9_mJE{(3-bHbciWcK|NcAWU
z2Rb?j;LmXqlVR5Y-2(Ip&^JK$06hZq4)D!IRXxeMzv9)43=b=h5!mUkSrNIozv>r&
zi@OQ%BK^Psg96M9Fe|{|07C*y2rx0g&;Y{%j1Dj+!0<p19E}VxD!_<94;)buig8wd
zJt|9}k~Y~?+R|U`=ueAbT!8TbXjrPxtJ*}oJ1M~A08;`?6_si2&-$ysM2u-7{0vE_
zOWJ&Z8ZbZ$IXl3dK#vr80gM199X&v~qNWw#kO9gGV2i0)*OUQzbc=&gyl6T)kp;s5
zQGn$ERs@IxBmv5FN`N##7GNF?wYn+~Py{%AfPOTT1Vbd@xqD&0q7ZY&{8Ci_6>vNm
zhXt4);6N!z$^`)q3UFwEg@F#^gDG2}U%%ON@-9=t)&Foe4baoQ4i9idfTIE|rU&^I
z#*LBts3QaY#NqqK(E*MLuq40<0gesygXZ|Xk{l<%T?6zZ>4gF6!~jbJEDOK~5MKgM
z3h>zg{UN}Vs|koC^OI@70CxnqGr*|<P7AO(z-81oz{&ut1FQ*fMu0N|oE_kt0B6xe
zW6G-}CBO|pIIWbxxl;9c0nQhI4~u^X=tl-6xgbF6fr=}3FAQ)|fOP>b5gMN9d@*C}
z^QyJ1aZlCAfqJ~+p*>Ypb3F|e=y|7?2G|&2lfdLw4Aga11D6N5BEYo)t`lLl1lShf
zN-@Y*Nsk$*t_pCqs9(9E>KY-V)_hiy1A*-Ut`Bf?fLj9G5a_L(ZWO^NGizab6PxzK
z+D*3xICr47>TRSPs3->E+l3*4y8_%D;Bg5Oz60D7;JyI&2e?<by)saJY?SH52Le1C
z;1Rl>+C5P9kfeXgBxEw#5#X`CwLco*%YlkCteUr;2=Jt6@l=4P1>h?#<>xJ?&jxrd
z!1DoK2(UZAPb3KNQh-nC?f@?bcqPEj0Ph8OHNa~D-sRm#M!z25jR0@c9hUCW-xTCq
zYy#W#j1<lkV#=u<?*#JBaEN{iaKq>K*+no6Hk3XN^e^lWS>u`#r^kFG#jA^aBDcoK
zKdjFK><aL0fbRl)L8StGEeuInUGOUwRGRrWf?scS;`9=3n*Du%9|S|V)sCtkr6Eu@
zZdm<ufL{VM578pjt>f1K|FBCB@LPc21N;%_(Urg0M!M@MC3^z=DP>8y&mbM}f76ED
z6%Q@?kDY&rx*_TbpM68r3{fk@ev+*rDe3nQ(OL?UZS4?s1kZtAW?99+L8^X;1|gaV
zzTw_djRcrJNHrFqBpjNCXcpp_LFydIayfa+5UofMq6cdU(I!L(p}%sFY8!$lh*gBR
ze~@ZN!Pb@9hq}^N2dS?HDULaG4ACh>=MV_dHAFWlxX)nKMF36)rtsC1W;sa3mc@+@
zdWIMnVo-=)!mxLUKCE}J>KkH!l<Fth{*n?;4y=)^28S3DVpNFA5JQD>c!&`K43m^2
zO9KY0X@k{B$re&}w7_E|rL8!`H&#?2TN-3Sh>0QI3h{P`Ng*bOcrMg$0#iav4RKzG
z^FvGvF+IeB5C?^r5n^TtFN7arR*2al%n(+HIiWt#*$A;^u;T88rw&$J?tSlIz0lYW
z(Y$q~8|v>JC)B$t{S%al;TuT6x<Zsg91tQ35r-&+m>VLYghy9pA#wrI5O;Fn($Q7C
z3c=hzRcH5kZ1lVkOu3uQD}&XL#TqkYzTW1sD&*rC^Fw?&SU+126o6!edBV%VAr1+#
zJj99+hlW@v2I1%;-xU{yI3mQ66r)AuVWD1~bhwzVYGc(=Ar^;N7NXq{bu>eWdaW(}
zR;S_vnORq3h&na|)8iyPKEx6MPLP!N6GJQ&_#{bbe<I0&?e63dr-V2o#F-&Z4fSq3
z+t-v%4{@3Z#<32LlQUh($a%EjhGS<D7^2#5sXCj|URYX1GY(Pw);K4`xuJf#aiLbH
zRaGRQz88eJGQ?FOR)<(ah9NEru`$G^5ErxE{ZX|p#3fSE+EDM>!DrKY$?{>bL3HOK
zT!b$T^_h$e#myluqoc`(?~toYe9}?i%R^it#g`1x1Fc)>=w%bP(L0ld^3Wyj^+8Fl
zrXNGx72=u@*D{8ebhs|WjUjF#t08K8i0eb#AXRS{CRFz35IcsbTSD9#>Z!%#d>dW4
zy2R1KI|R6$rfZ?9F^vDaL);VM(GZV?xHrUo>`B&?9u%8!CE)!GRBk&zL_H9KA7wL6
zta^z3hBfzL+U@D8M<m@LDZkx_c|61uA)XBJREP=d^`r$li_5b3vG&st^})8Prz!K+
zs%JtxD**dRW}gr7LWma`fwe1M4)KaKsFxUT)5_d`>{ZFWDJgC8ngFkdctZe3PRrsJ
zl+^T{5bx4B5pIsKGsJrw%#1K0!uugUU|$!ZX@n0$d_+@+_&vnOAwCK5U5M{Pd`bmr
zpAcV#_*|UGcbi@G8rP3-{9iDf?au+0uf^csg!onf-mN)Q{|KuXs(YScL)8x<ehTq(
z2*N)~!QBE=LT+C1ONd|D6*N_ZiD6&I!~XsVu_wg75%!Dlrxf`&gfUe872<EnlI$N2
z%<_~p8K|U-|6>ocwzN;A|6UPUBf|a>8b$iyQZquW2=ya0h)_F1od_IHt{0(hgzDcb
z9BLy#N(LljX5-9q!$@;xa1vHS6_3elEc8o<s%8<IN9YrwZ-f>RT1My;p>u>*5n4z3
z=U4j(7Y<czh<vqb+DBDwBmFC<ok&7+-8xiNMCcId%{|yy*f2XrV9HxB4ONKHQ*L#M
z&^6KuQmSq&E5&=zm2$@7F0pN|2)$WX%gTR-DsHVqX{md^2!kUGiO^q)v>2uaL>L%h
z5CtBlb);TAFN2y6jW9C8s0hO%4397((u+h$z_SH;mj{1TMi?FGMmjFSm<W@Hsj-oE
zE@=o;V8T?PJWNfDxN9+1L^zpb5vD|#7oi+sYJ_PK{0KpW=@Di`Fe6wIW=5D5VNQhW
zhbjKqTsBP2j&QMv$5eYT!lT1<Jg|29-HzZy`j@U7!4s7U^P~yZ{=qQy>o65YNF!ts
zq6l%M*XAT5d4u7K3rX1U^GKh2SVSm^S;(A$N=4?<&chWin&p59RS^!0aCih2VSa=|
z88Dkm2S!*B;Shlj61E3Z{^9y@Oq){@HbaU^V4*N4ut<za<Pi~$jBtE}B~s+52uDXa
zM&QK}xT=W5q5K<rY=q<XmL*$qC=XXBL^v_RNfDMsSV|ARQ{&{}ij<61a;A=yf4NwL
z9Edz6!l@B1iLgGxX%SA3ur|^^saHlgBf@zR&W~_rgtHiLH0E%1$#AtwD!psCI-3QD
zYj3h@GCx-e>drsHYN|}{L|8*HdZ`N|Jpq_xteup!8>{$ixSBn?Q;iX7U8H|{64QQ!
zj*|@$wno?{wOkruV}wmCK0<AdaD^Z*lPocp3&15m!3ecQZY><4u4Ge<u$^%d;p#{)
zq`D@;wUJ&K#6{@WMfy5*gyNDbO0I!*r5hsLD8<=!Hi!%aZi#R!8(oZ!F>Z@+dxW1N
z{LF?K;m!!JM|dN`T@mh%@JxhfsX~N%8G#WVi*R3r`y)IY;gJXrM0ik`^Y8FOY^VQK
zQ4;>AxJ4?W4Ezq-5#gy3ig>1vOE<#9&7X|$gupZx4fvEW`Cx>4THHtAxd_j*xs6n>
z%B>e7ycpr72#mL1N2mrPwZ~s(td3N?UJ-zi|C$uxEf#!};S}NH2%iXtw<EmEZa>01
z?Bq=y{O(Bg9y|XC1U`!JLBx%`I#C$v@?nI7N9rcPl-yQ~RG&upEW&pYzK`&Egk2P7
zb?Ms(U(gE?zK-xsgmoj;SHg`Ed*ev$ZdSzNq^#~q9v`WGi14Gxvs=1BR>xX6ahgST
zj#R%;JNC>m8pQZ5!tW9Gjj>;hKO*dj@OOlN=&6zF&j^1>>#I9TH#$~S{RjWw2>(Uc
zC)N#t81|_AnL_QDC0UIaHDlC@bq}_`r0j=l$EXwQXsH*2!fb!7s`DsSHwIIR&A9Ey
zEkK2UOj^Zg6r*vBCNWrbvlz_<Xeu=l!>fg0T1rX|#IRuN7;R#-jnOVfMXcN4$We-a
zvD>rKmX*~LKZv9$I<e{)P7F5&VswcyF~+1AU1M~M(Jw}SsjGX8o-ulH7a+-6qqLiP
z$LJ$j{*~)nO;$00-5oh|PWylu17nPeQ5j=UjKMKR#JGBt8WQ7}QM%V17Gr3P3xpMW
zkKw|B&vcd@DU^40RivjnqhpMXF)qd!id4IT$FQ<E@#AAmi1FYkMOV_l6zTO*YI2Mz
zF=h+5sWGO-m>Gjbmhur0V}`(WBOJwpZlz2AW|W#mbJeb(cjm}lBZe8niuINhZ7S8k
zN@X)DDitqwJ6;SwhKey?h=UkOj5J0VBZ_q|O~H7@v5qtve`cl1V$6*(FGe2g-l>T7
z6PYxn>ZsVLmn4*9y>ok2%+WkukQk=ah;uv+jIkib(X?BPgJK*U<FFWKR;oi{94e(2
zk$I)!&&`Fj24^=_>Jc7t<7V%N$2cO!krD<+iA@;KbP%t_F=%1da%_y_Vw@1;#2ClN
zSQ3N%$r@3F?>T%NlXz*2lSJC(!ep7iJZ6QrC@OVXAwkRRsWDDtAeGRygwtcJjB#m(
zjTz3M%rSmS@pFo^VyvQ42@Xndc8qgkyc*-R80W?~FUFHGo{DikV}p{!xHZP=7;C6$
zj4K(ytUAWV7@H)pFBVBIiLq9)>m;QZmsRS>Ss!BqZC<G^m6YxyOv`L0S&S=UTqXvr
zwiP>#EmC}|@MKJ~LD2<QF&blBPj`#%*TlFs#&t1Xu2c-yYFBbs|LxMa2=GAU8!0ef
zmSWr_3|TMV@xG|k9rbN7ZjbRuj2#Sv7<b0FKgI*}MU1;CWQ=?1WqHa|i+?NCeKG&&
z>1bg^)lPX(#Ctdf4_SVQp<AgPTHWLE^_cE>RDAJRjFzMIE%r8#3+4$)`;AslGhBH*
zXzj`uMEz%CJS(cPmgizTzZd3{>%|x^#d@X5%Q0Sw!N$UW+02rsKL0ny8|<ADG)?ek
zjJMciV(b#}-j4Bpj1So2Myq$Ex_4vj+*|K^0`RMcReTuZ;~1ZaY#)gYS;eO@7LHb*
z?UkgboEFU|#TPNYWM3WQ_ZVNr`n~<z7~jSCI>xD^)i(^b(Rw)^-?+Yy@k5NCY3&y3
z#~8aAd$E2K<HeP9w~kh;W|et7_cNo_FH}&-xcKqY(R%UVA2IgCsF7g*1b@c(E5^Su
z{)_Q<jDJKVo}SF&G#4)})7vM(z6thAbld-Xv<|!(^5)Erj&RKcwGuQ;&?rIe1a%VB
zPcV3l7P4-FdI{Q$(K2)OA^}R<AOWQ!0bzQRY2yUEOMq#!1kDqSN>G`gMS_+Ikf2L~
zRtZ`s=#Zcz87815+b38kwX{tzXN+nmDc7+QS&`^CAwVrCMyCY3-l*b-dFO=t{pw1)
zCg_%+UxNNrD#5kFr+0!L33?`a&u|9MV`Ee=5tRU$^hvaN`zCs}1Azev1|}GmV0fb4
zG$_H41Va;iFh&g)4*Uuro^^4t71I%k-lA}1f<0pt`BPI~ly-E2F$vrRUV^a+#wD1M
zU}l2x2___%BBdtM4rA4%1d~Mu!W4jPxjL0bo0?!+0(+v?bkJBeoyEs00<#j#PGBXt
z<Nc~R2@EOAB5JHM6Wu^A8LJ2{AFJ#HP6F;$dYf=&ocJV8kS8cenIKA#CirWtiiP=S
zV^xyi`LT)>ks<3PlWebjm@OqJCpaL%+ywLJ&~bW@hj>=OSKq1x^J&He1I8(pVCp!%
z5|(%Q!b5+t$38g0A&j>aHBuZ(FDG~;!Hxur5*(J`k_77$9G>8a1ZO5VE5VToj!JMs
zf)f)gPH=RB;}a}NaEyp_Y=YwippdME!!N}+4e(;aAq|_!(gY_ZI3>ZULb)u#@^R|q
z>QV_-Nc_;?EW(u1o|fSB1S=U%LbGn1x^<jl%Dc24f#=7mRqXr|tVwVoWge@}NpN0*
z^Xbq;pOrviz7#PoNU&O%a3OXz|Nq9Ri^R^1_H_v^PW0+*#>`p?2A1kHUa_~_kl@k;
zHzc?*!Nvre5?qzw>I9n;T$bR91Y1}&-(AP6%Y{E9ll-?P*d}<wSF%k_DIYdozwJ;d
zZ@jvOZ6U$+5)ao&U@zzL;qhwac(q-K3EVqgy*^&ul;GwBcO|$x!7T}HO;C4&x}Bz;
zjN52N=_P&`uN(dy4DUTvcP4s<5-aUCLEV$!-UJUOcqjqIyN?PcctC_?oQ#>EZJ12Z
zDnCrmPS8x)&#aoDuAZPCP4HNPj}v^7;PC`cBzQH!YYCoA@Kl257?$KbLA^aeJ<Z0O
zVD|*|tZ?RPV%FYZqIx00iwRy%@QO5zm)PVdYRj++-lgQMouk2&?ezq2BzPymyKIaT
z)teN1qB>!sdMm-(Y!m`VbIO}0s-29Y1RpZ?=9D@5@jm+j=`G2Vn3pH2?<T5`=%a~>
zS#tO^!Do~$!B3QAqWYXY+a&c3!z{rU3BFA56+7oiinXu^dk>cSS{Rb}+XUYw_?`mH
zDNmfFeoXL#z;q(-l9EM!PVfsGY=XZN{3=qVlhhvq{FdN%VNQBhv4@WUsfF3&CaDdR
z6q)=Zl>4OkH^F~&^d!9@$-9%Z7kKTPf|RUi{}eS-9LsEqS}AI$=$E2@iaIIkrf8F*
zZHjs+>ZfRuqG^f-DH^6|oPw<WnWXqGK~Wo}V5=d9Fs;-qMe|hKwpEH2DO#r5q_igq
zT20oK^10kP#n8zrnyf9;F6G{a=#rvq3L3T|MW+;<rBsI$9aE4eFNzI8(p+Rx&9hsI
z?kRev`UQXlJyNYK0p2}jvg(zhcZxo#p03<i%90PQ#JgK3s{ttnrf^cYDF&q&oMJ+X
zi7AFqwiKgMRHhh~Vt9%XDMqrQiUC~I$w7vDC##ny>pjg*56XW{R-;plNx@s=QZ$>Q
z`^nx@)Yw#iWo!(}<5T@WAtlpEDJG|wnPOIoDJiC=n33YVDQe0TO)xFRbWtRqqK*?j
z-+fxeFZbCg=A^Jv*eQ$@-8z=c6z@z?_e@c2u#}2sWbl&-tN3$@@>2LIs#2&FL5eU%
zo}!>fQp71zQKbD;m8AcF$tO(fWhs9_>T_(Fvi1^vnu2R)<}xtWmAI&O$W*n2E0L!v
zUI(NaAo2VZ2c}q*;;<A8QXItIKGj{;!HlBTimDw#0x7a$suuOOPtt`_miiu^;s`p0
zf=yOOrZ_6)-`MhE5swz&?@OlFN-Z?$F{wUPnKd4tVo8dJQ#`_GNpWJz10Qi&ilr$|
zN^wq#b5kr!u{_0TWSC+_ijz~ED$L3Ml<Hb$l?hWGib`N*iZl4mpJG*tGew?frfNS@
zuxf&{MIBPoyhNUt;`|irQ*20aL5kH>ImJaOJ`!mu<QnlK9dvPuwJ9zUm02A*tP=rf
zJ!VNs;P<KO(iAkyCb~e>Z!}GHpQbCKqc2Z!MT(nK+>&BTimfTGPH|0&Z7Hry!BD&^
z#bb3UrcBeWr_8(<8}p~BYg24baea#GQl8YT8yeFa#LMj8ZlXN}rWo`%MI~@+irZ4$
zL$)dCk=w<UcQH;<9;yqvg90-p<=r&wG##|W+($ohFSryBu<cCMVfi49Llr6pJjDJa
zE_3BF;hU$a9Vs47@o|bzD07O(Q@obq^%PH}crwKcDP9yqJ(c2_6wjvMbo!^ok_708
z=TbbM>ebDxnqL#dFnvh`qZwaK@p6h+QoYs2%ThZ5w#qN2sW(!*nPO*(_fotiTEEQ}
zMEadoG{U<y?_?ePgvpb@`)soe1MVz3U45AHL|yd}oht>YFLfd2(-fbj_?Ep>iqBK*
zO7T^SuZ6=G42CtOFKNjsYT9&d5Ppn&BXLEaG9;LC4B`6}Kcv_#9{+J~e6pF$o30JZ
zKxL!;h3d0|%Jj?LZz+CfS0L~oDfXmjm!W-zKU4h0ZaG7v41ZHvzI0{SKf}N542AiA
z8P85ti#QOJVa;?M3HxTcH{+WFM->Rv%up*sy$tmQ&n~WZrUxAAWT=~gAFA7@t0$&w
zE!cH8$o@a-PCm>w&d?-7s|>9(G?n7bGqez(S*Cj!mf{x&4cju)e=b-Z(>9qlHSh9!
zjX+y|fOCy`D^-!9Lx!;##%1W3p;LxI83t$QoB<hnWaycpONOo)y0Hr0eW%7()Ae{b
zg&{ZY%S3L>_R7#Z!+;C}Gwq8$nSMa@6S%LW+&78%{^Ys2w9gFHdWK%l!jEPCZ5blM
z56>_n!_W-F$Y+N9iEgA#H!{Ph3}Z5sX6UG{%rIJXA-wg|s%e5;Izw?=s`0{Sa)v1x
zCI~!HQc_N05uuzaWv6GDA;7du%RrGhNHsIVtPIC|s=s8fo1tclF)6@e`GI9f7?>HX
z4E!P6VO_}<z{#+CQkfV}2>c8IfecZG6&X&>5NAj-EX=SdLz*F@H#02AkY^||%*#-w
zY8mEcID0bq&cNxuO!?x+^ngt7N~bc+&v-1Ls*;p{GkJ@GQ7;~kcu<CeGaM?K9zxD*
zOKh-j&Cvf}NX8aN4u@qpoT_CwmLgqLIwHf78IF=7Kg>`hSS<LXGd=!80)B=wJubuX
z8BWM>qWGPdB@DTl+6zqiw`-}CS|)r>%Jg(`-Xhs@!E?mvlnke4I48roncgk%v`p_f
zw<^Qw8CGWKGgF-*_%rDR9wA*ZfHY@i|DV!N%CqGzhf2=NaDIlh8P;XEAj4`#6s<Z_
zO`56J(2v#C?XIHY)P(|EEEUnS{C9SVgx~s151~*(+U<y$YD2~o(DX>xrVN`i+*#=M
zep!agGklig^Bh-X*h2s27@A{ihHcc2A)VpM3|D1%F2nN~uFh~xhI=yHo8j6F*JZdd
z!%Z1aG*jD&JhXg0X=W-e9le3K8jOBoruuBAx;euwtdXXsrh>m+QWD%I0M8dAe22g_
zX6fP;v(%u4<-6&Hh2=4`)O{K5XJAmr3=d>@FvE@vj|zR=MdgPwJj^&@;4RmDGU31l
z*DOfRC(KfhWmrE;@$SvD)RT1R!tyg2p33mFaCmW+`iZNv8;oX=XEPqKqW+tuUdZqw
zEtBE%3@@=)$?#5wcQd?_;Z-U1W`@@Uc%9wIY+Zy*$m$KLYus%0mfU??(qgt&YG;P`
zGJKHX!wl6bzb{6kj!S2&k1~ABPHDFKl>Oms^$Fup6d}x06j^*%WqB9H%kX`MA83Tx
z>dOpYXZS{#d{r&gZ1pX@Hd}qi9&(PJK*)l;hR#vc?#GNfx2vBry&8RYrkAo3_*n{)
z=BPR9w+z3ti_Xy?#~&H?h^=bp_%p*_8TQSwUyi>s{6mM%(Hi}mfyMX9wI$cgQU8fv
ztb!Ns*2uAcuET)p*A#$otz7HQx@fK^txk1v&`otECBB{jBx{(XQI0M-y5?w{qe+hT
zIVy5A&C!hEx~SYL=hob+d5#u2TITw&X7Xgg@8>9D=;GEn+T>^}_0BO=yPVrftA2(e
zOtKC_(=kV<oLkj(I@HkNK`V96fgB7f8i!;|y9tNhIr`-2o}-6kdrG>>P`w1G4y3+0
z`sLipRSnG1Kj*HwTE_u7=srdWxjk;EK{*D~jHZIACYTyIEXVL17w1@;V?>UTIjVA~
z9HVkn=CE@(<Uq6Jn3-c%j<Gq$<(QmfN{;bju8BD&<(QD`fMG1L(igZ;NUT9%YL00+
zX5=`=RC7($siZ@Fdahemb$hu;#F(9f1x-<Bj#$9RwU=oME5~hn3%WVH99fP$ho2*$
zcPtg>+!|4Z;)N*J(fgyR<Bb(1xjrN!&2`A}qKk_h>=VjTQ7OmVoEznFt5`KJhiPep
zFg-x-5?)}b`8f{EaY~L;b1cYlP>#hpj?Q(Tb8wD@ITi_gNRC4VU^wyCVH76EkvX>-
z#t~9`wLw-&6<1n{Qn6lEaZHY5bDWrCX|DU0<8mCIV~JRR(mr5mMNSY7JB6P8%t<+x
z=UBmZVX0-JAo=h*IY$RujkUFNnLRDX={e5LabAv<InKzjD#zIrlGd}eiO!N*NJ*Hb
z&e^LqRiK=Vmh*F5kYi1b3v;aAdzUTlZRzM3u59KP?ZvY{Uzg*O9QWq9FUR^E8+a?n
zO%y)I#vE7YxF*M@9GltO=hz~`u%%p<<8txiiMDPX)R)MuIj&?3i-g;x#W50S5PGDZ
zMBTO2YhihNj_Y%<-@8u4s5U8!-;nDLnTn9x&0@XVbKJp*%5iHBmZH|w@iqqMBXg@=
zb7zjb1<&Gl32?Qo=#hH_rt$BmgIE_EevSuoJe1?n9FOIASol98WDGynxPwMGw9E)+
zEsy7TBFD2io?}aw?&2x-SIjQ_KLMw@Jz=Y7a&DEWz4p8`jTeL)X{vh_61>bH&+%@K
zojG33@mh{Ia=gg^lZN(s&TV`YFSfY1a_*?3-pRp=$oy@ZcXYXpqsFeNVwSzZdpSN9
z<oh{3V8L8Ji$4;~5Jz3OOh3g~<P&x#a*Hr8!%@3(e8FC*K#u}n=J+bde>wIk@O6%F
z7>x{LN589l%icT39#V2Gm89S2dY;1%)KP%lk`nWi06*vWMSx!={Y}!}CFMVKl97*c
z6n}&f;M?zCd<qC#X8#f3Uq-1^y>Eg23N$Iuv_Opl`xm-MqXIPrs4r=)0<{ZpepH<T
zbqmxJB(wTOWqqmodx51I6lhrdpKbLj+Qx-`8|STN1)3MADA1umivleRv=t`2)v7>i
zfv=?{xnH8A+DP_cN4?{yc7=XdZ(m@>c0I*{^c@SJ&|eCKI~C}>mk$ZL6zE!T7aG+~
zkep>oGG==g=vAOx;D7?X3-l>4roh-j&)Mr+U?7Do(62!M0s{*C=&0H*_uNqRCYG5F
zE-<9P&;rBc7K`vYJu7qB1@XfRj3_X&z^DS11x6QqZ!C9o)o@o4poAngT)jX1xB}w~
zI0f7S6ADZ$Ftfm{0+R|%E-<aY^a4Cd>PT0OnpmDvV5*46f?U%vqrmD3`n+r&4b1dR
zSIsWCZ-6ojSOw<nr8K1Wwsn<Va6P_W3G%h8UXj|p0)By_K#8^RO_JU$kV-*n5fzA~
zESWQ~DFA`2Ku*0TmT3oOd6A6iTrtQzf%o;aYFt}dMY9(;x4?M?<`+1yz=;Kx7FbZ=
zpaO>#IK05Y1y^~iLklb{xVM8kq|o0rv{J*`71jI~(HEYY?x`b4P~eyX#}+t>GJ9&V
zR7a~;QywjXo#LtE3LIZ>8LV0&WW38?LQL=V)CmQ+F6JXoom601fzzm9f#n5O6gXA5
zk?qL^PT5;<kEfdWYM8GD;3oeo3!G74l^BOYG9=C{a28GHEBb=ArCFGsUErJo1XwB4
z^9x*1U|WGJ=`yy30+$xp$Z%yC7g$%|l7dUs)WrqXiVPR{>ULj;3c0Np%(K4QAOOSu
zV_*H{t4#$q7q~*yp}wq$F1w5YATZ0e2-FrDL9%@VEy?6ST~*-f0yh`9rNA`>t}SqV
zfg1{3CuBUWU_1RA=+1|B;Fvs1-B{ozG3;VtQXK}j7PyVf19eA%+odeyoK{`6m*(C;
z-BsXjhFpPr3w&SThXVH%xWB-w1zs!gK!FDfJYV320uL2<xWJPIo+|K&G}0#uoL`9@
z1s*N%7>fjYvh?GHo~X~kQhuN@%T=iSqI_ED2|O#nGm^6Ga{^G2-ItbL+zY=#4h%op
zwESguUowAY*=qek`g(yk3Vc%F(*kd@U9kTz@U|4>nAJP9bAb=3V}YIQ(6(2dREhTs
zyeBZTKbmv7JoW>2Xm!SO%fychy<C@76JSdIpB4C=y?ueNq{yxUU&t+%Eh=^I%1_s?
z3w%@HTRsSA*p0dr*Wt4GckCNy>Q&qPH2#sL*x8m)zl5I({9Is9fj>pgUkdzI;P(Q*
zO7`$dPUhFH{DVDPs1Nn%7V5tAuL6IwS1*CnlDQMtKZV}kY@d=&|1I#JWVxXzSO4u>
z(hH*q>{rsKgK@{O{Y!c-am^BHl~B8+XB5{dp>7G$P5Mk>PA%qSX{O{%Pc<m%BR|@f
z(6FRO9vVqXpm7OJ_QE`&tJz+-c?m7{!YxZ^wHIz(LK}g-P_cNs653O+k~UhW5;_ae
zLDG&Ta1jmhoT7k|o@d432&&9%HxiW4WgfcDLyr=AmhgKCf0WRxgx-|1gbgM1DWPu(
zaS2HY{YvOx!l)7|OBhhnCnOFmVUPd|L&fai5{655h@?YH@Wz#gl{jf!RgTjuI7X0X
zs797>OQ^RqdL~q(OBhpvRf1i@*b>IEU<ory7+=DK5~h~)*$@*;`dE$oOXbNW@F1H>
zCEWjK!Qvl<YDx*G{7^+;S_yxJiZBUUM`|Xuj?}CYc+A96(=eNdo|Ryf^idZkRhGY9
zjpW=4@*#6aDhf()OZpg&|1otX;5Jq7TM;F$c_zIY42N?O*X80GF79>BWIksPYoBQk
zW+IX~p~0+FGB!{eM42*WC`5)NMW&D`Qc3Fn?(cT~&+mEG^FHtT*0;X3*0;X(?KAHE
z(Kxf4sC5_n)PFMMKWn3>xRm<zXP*%I@;5LcOb(%62>m(95QfmlA%sJShmZ(C3qcRT
z3Lz4L5#pmFLhX90dopxfH_Z@K2$waV6Qdze9?Qd?{N<z{rIgqqI3WxOVPFVuh(Bvo
zG{P?1dnzx)9}xO(WT7U@pb*$ZGBku?Av_bp*bslGr-p~{R0t!5kKh*fR1~t;D8|E<
zCSyeYbO@t`u&G2Zzm)?$8v?(_A4eyIz$w-2<^Ly+4;7jq^PCvsZ?XLO5H}q#r%)$^
zX(2qv<!9@$UTSKHzi3h%Zh8naLYOPP#`jV$gz!=bFUxFS4Eg_4;IwB-br!dn=jgh*
zpqKi%m!kYwFEvN@;zlnuFN6ab`uq@z^!DAzDZLuPLau`H5E$UEhp?XE5yBfGEDGVn
z5I&;Qcv5DD-VWiN5Eh59B!s0RSsua)A<Ou4rr!RN-(uADR#g7Ikxr!K-4Ira&gu|W
z@uZ9V{Se+0;g5~{sP5HUO>c`2#M+WZ`oP}m;}F(J^;1#%B!qQBX7pBT=~CgezpS_V
zOgOu<X=4bRc)qgmRS26y_&kK2+_emSONieNtEsa>+d|kH!t|fbAEdfHgdHJ_Id9%+
z?LX!Gi;$0;&#n-5hp;DvFL`p=+FOy7y68W8p14=k_6h!G>ia{;>v%APZ$dZ}!r>4q
z6b)7Gqv+~}*;S8(aFoFx!l@9x4dEE$$I`nt(Z6G~gm6Ma=zAVprSrcGGha8;`zVqw
zovQvIO+O0WKP&WiTm7dH&W3O<gws3@%gi%8ZhibXAJ|8o5Am75RWF8cDTJSSruwK0
zbVWOz9Vf-~UwBeN_?78BgeyFuAzWj~gy89V>Nt~+1>}@UwW{}NhW<t$wXTo48NzQN
z+~R(PaHNlVy|3Oa(>JyJfO(~l;;M`ERkuU<i*XXhqA>0-nTOCKjFw^C4dEXqy)bHr
z@h|gv80EvL5XL=W+#5!rFzyc{f7pM_T!Ap|3!}h1|KDfxXZz`$ek&Npk6TP$EFK7>
za2O@RC>h3s<b^6138N^-Dp;9+h~|^HQ^Mf$>57Fx&i~Sq7Z<Z6rNSs3M%l3cFKm`C
zJ5;USSCt9#1AN5??UfTbAM3`ZieXd=<Iyl43;Soeau^Q@sltU6tlYY<;$v_ruNua~
zVIa)Us8uylctkjxDy=X__f?O}&`VdCHNtpgxmi8z|HCNn@p(06xLP9NV(Wwv45LXH
z8DXS`Q8$c6VWfxsCjiz9qkb4qg#AAV^WNYM!e|&qS{U>Omrn&wDbG<Pjp^8CI62o`
zknZ1UmNRJ@Mzb(K0alqZ!{%W=%(^P&{Es2~Hf{#qo4QpPt;2|g5f39Pj5cBP3Zr)z
zZNq36M&~fPgptjOl~L_E;U#8{n4$w|CpV03Tg(n3=_p8Hr?7uBbCRxMte<Os*jw)*
zq?;&omvvE2S3em>&oJnAE{Fel?-NGfFw8KNSm+l<h$D)A|1h7ZRrSwVrWS@h&(y;(
z!r&j|ISOwy%0Jq0IlN~eS4VD%e<EQ-B{rzTQe{CX!M<UP4r5FhP8e<&!@?NO1-8|_
zFb2u=xIqJi3=I3X_@>#xbiRyE<3q(VXWL|(IU>2<kzqU~Jk(qMuqhLMS|t3FCWn3|
zjIm+N4r5Lj&xSEBjA>y^4`X~76GZJf!HFCtjLGB@`Rq7F<h-SMiddd1Ve@<#^aBeO
zW`ywq_g4b`#V}qH{h17yK6>63yexd>a+6=bQ=hRxoEyfxFkT7cRngDWoFB%S<>ms>
zr_RDKUSj}<!T)}~wA}AS3Gw~D{yop%3}bN^C&M@u#*#3Wa$;d@31e9p%ftAHdm6?H
z4$($m8OEwG-U{=_g!<cI?Ch)F3FF-`zVEC4=&LqKG}52%amT~>FmDKP@@iRZ<$j8h
z#$Djh|L$zDh6g;14Pk5)C$A0TQ|ZFsSr^6|vbxV0Y+(#-=$~{xhB9w;9UEd(7{9mC
zSvJclV4Q4a^oDULjKg7U4`YXz`Z|m+IL|P4hp|UuY?rvVK|e(!e(I2c_J*;Kk<(9o
zCCF^U8S)J7PeuqGejtp4vI@?h&j9^K=1g)VjH9$nCrAePHjHE9AO4S?Pu2X6j+KQl
z-cE$^*BtZ5FlzB%z!Lck1`fost3%bF!Z^(osv*CIGhv(!<9ZmshH);8^I`lF#^o@6
z4&y=?7rBp2GC@BEm~fs==f|Wzf2N;*8-y#eaGru|a!#+xJh>L$ewp685ynlPqcHvs
z<F_zwg>jp+qBCV_bO>kiN0R?3q#Q%NpW>aU=PxstH^ks==3TLwPs2al8a@RwxoZvP
z_<7(SjSso2N?t(2eHw~uD50UC=EqwR%};}cG~BP@0nImCSa5tpKL@h<pj4?@R6~m9
z-*SPxnC7>#aQ?h3mef#DLnRHRG?do(xuPngp`3>DntvOXvKl|}Q+#-31r7UJ>!}^9
zmRe?#oa?75Yy9v^RnhQ}#$N;K%vv;FRl~zFH}c2$$N<g10FhVjuO8L#n1(krEaK~b
za{d&bLo5tc7hXfKriNM?0-FEfQXLIJ4g9%aZOwlx$6vOvOR9$Y+JB!i)s-&wG=9$G
zKMCsz&bd(KPW@E_4GlGZ#G%pz8wsWhHWp+PZ%~t=p{a&u8k%c}X^3mc)X+jh7Y$uC
zwB#h0_RprTG-N*%Zl$5MhAa(jMBY~8XBUdkVW$pBI}wslv%Q868aitHBthkBSj&eg
zEbZS(LuZX|SJk9;zS;Nst1tR1l5X^XhLDD^h8`Ly?5&}XkS7IuYUm||%53ec@vWsQ
z8dCjaMA|3sFUWy34Z4PiOqin^^ut|KiKa<kh5QjM5mLEXNJXWor^pi;Yz<R1Jg33Y
z;7Zfe8axeL<{*tXuJLC+K*K;GTq&zVGz^vMQyPW|87}sH&5+{gBWP2|NR6+S)hN-S
zoC>2gjG-GfjMexeO-<DBtcFiyGUG&TpYZV-CP<Zb*lUt-lF35uhSXFI&uf^kVSz}d
zX?RJ)%NnNh;AnV3=JTS4I$^$~Q8Yqw;+8p+QN%Fg0pXs8eakF-q&0D_*qJ9?^5mhg
zdPU>aP`xHiuL`nhp@zIJuZy)8#Lk-<7Hg=iql%6t8kTC<&l90xnTF*WKG(2C!wL;=
zY4}j{Kd*jU!#ivWtM}>5Ts>{Nxv8iAu7;HwR%zhfT6lck)BJn9@FGrJEy^DVj+-0W
z6jmQ;_*laldXLli-Q38i)38p%XHqTHOaD~EyW5(O)a<Sk*J~izAgv_q!pEI&lImtb
zR<~-{CV}*Y=KpJWJCAKI{dm}avAu)VW`;<1YS^V=x8{FuUQ|>2I7y}psq$%hUujH<
zYOf#(b<TIusdhlaK@AV;D5B#V4Tm(G((sdp!y1n8jA+<8GgP#jepJIT4c{@gyXoK3
z;oWqS<C=ein#VPDLc{mMS>?p&H2#nNN9lV~@UQk&Y3H<mW|gL?Gm>iZ_*urAhVvSJ
z)^I_?pBip!xTxWh25R19p49kG8P}!CH>6iIT$5CDmHAdv{KYKQ_<IBX=I2))x6|eg
z(WH>dzX`u3iR*U_e@OKOnFICzVm@RV*ZqN5{??FB_+2J{4gZQVe-oS6${fgFXy2pb
zULE;Gt$-kHav<sy)KN&s{klH~3i)fO2Xy}j-i1YtKTM)dQ5`8dO6w@2`@vRBM@b#a
z2Kzs`FRr762+7ObU-@lKmD2rRz><{Jc^i4XoR0E3zR>(bVGcL{8evw@aY9oS1uF@%
z%AI{kM^zmIbqvz+uny?xq@%NrYC0a#QD4UsIv&;WnC@S;>gl*en>uRfsHvm6RQYdl
z-b|yG4nC&5j*g&?fR6SRLbXLgVHsVeiiEtb2-(WQYJJ^5BMo#k)WJ_XcoP!-@jOjO
zV;y{I4|yZq|7Uu-?mx(Yk2c_qo|@?XlWy4BR7W!%&81fx9c^`F3U8sKrH)p@TMN=G
zZ>^T2t1PMV_B-u#WDD;on4=>%so7q~o!?A$=^zqQ_iv5D^0cnH=;*3rhs>ETX}akM
z=?LrSuA>LHL-%iZ(nqkTAgjGdbj;EfeZ^|uq`aSy{(>uI2;S61)1m7ybeK9~I^sH%
z4vRse`}b?&{jQ0;?-1|Q6xID(Sd;K(L<t?X&Ud&Nz=c;;jwrjj|571OftoCNt&|Mb
zF+|509na_(N;|LjXBnwuSdtGHGD62w42H@<mR@!x>WtFybW&%u5X#4Lr*ur#F>iJM
zXBPKQT<Jef$9NqRbWGH7XkCAMd4ILPYPE+$lXToYqp?`qv?)5C(=k=Y_XV3gFZg=5
zD#QQo|9P+~B{OuqpyPB(wKFNzUexiDj(uCOe+ypLF_SiD<M3>{6ti`FGzuS&!W<oQ
zxtswQI{@=^%-1o+!gCfD=y*lPE)%;=ysBd%!^}XMf!B1ruH#D`U+H*5$08kXU#zuF
z$D2A9>)5Dc6Z5~0r8+*=u|~(G2Wl_V`FK9OrDHjpay3eb?|##<U6uB4Q(^?)5v+8(
z*t?8a;j0AS6MSEAwIG#0(D7lCe<VcD(LT|!md9#m+K%kf>vVjoV*>-=R-@O-1S?I=
z|Cx^UoWq}umcEi2c{P=iUl*pbX|s-cFZ9&g*FMl9__>ZrwQ93$5wcbAq1O4hy6v*Y
z9n1+jD*fH0b>%ucbr5$6?iSpmV^zIW3is0CI{xB8(6OHfU&k44w~hlk4(d3j<2&Ym
zZiJ3+bu?JqfaS1|qk>0t)E?S9Pae2YtoxFC^Z0RT{ej!f6mg>%g(n#QD|1MG)NxYB
zoC7JRxbI1uKM85nzf{_i1_$2>p3`w&#}yq{b^NU3f{s4d^~=mBOB!4hyd;=)U8m$1
zX(j2r<X$XpaE+gyO6%`Be)Y#vHwAA9vP%2E3BRtZTfVaT;F`{f{ULMsQ^#!~_shEe
zW+XEk8z^PqA07YdxX(aA1NjWxV<00vc#olO4$ipOKz;*F8Uz=nlw!4IJXpZMvrjZ4
zDP-V&14RrJHBcZu*rZ(W0Rx2%{F)woa&9}82MrJtA7!K%C}yByJXqYo2Pe8W%_u?p
z$9^wb!a%FW!M!i$izI@j4U{ne1Jw+SY~HA>feP&67gf$cjThRLXV^Chl2kHK*}#WQ
z)2kZzDH5z=p!o~!9x`zEM$u2>LGpb?N<D0#PiCV}5<%i41|Bs~$3W1)V+J0lH3Kyb
z6t`13F0s0Sa_K&4V5nLKK3Uj+>;1W9?|^~Y21r;q;Zy^44Lo6>fdSo0uV<jXfju8)
zWR(lD%7th*iazjKg9#JcnN5P{ucS3HkZ$041JevNrVkA~#ih}=2AUe^WuUi#W(Lk*
ztksf!5Yk*QQ?P|#@x=vN8^|)y(Lg5yZ49(EkYk{|fp(&hEjTkPAMLQbl$9@6B;*|o
zJks_*ITbn^=whI|fgT3BicUBBA+t7{SlE&LNs;tS+RSUEsXhk!8i*T6NK-!p8l7OE
zzf?m8!a_J(D$|-_z%&pQYs!EnBw}Ff>H@TxH&&i;V$9&(y-JX<uWev}fq@1bG3Xlb
z=o~kNO{3#wh%AE)3^g#!z+eMIM2!Y1pH;WSa2bfEMi}@@R+KkZ%B5PP3_QaL7<k&i
zXal*1>XH_ue2f9&H?wlXbJCxs*-!Mz2F4i}Z(xFfzg64&=A};*GWAY}Nd{PDdChG5
zbc5g&1JBW5gWyzRT95`41=6P*n87VG(Z<9J23};88aQp>B?B)T*k)k6ftdzo8Cb|P
zZeX^7IdtIkv{wzxH878p?3eM1f!5i<BlSDa7ec;3NQ)Ke4PGojg>O<b@=Z^B-M||>
zQ#=j^78!Wcz*`31Hn7-WKF2Zx%MC0wU>NFTz0N<+FJ5~>YT?eol=E#@82GVM@WWF@
z8=Px<a&qcB2HrKW%D{UDRx<1-r0Qn7mkjl^p{`%c=r*Rq>Q2G;4XoylpU+)ws3!G;
z?~F+O$iT-2J~i-}fi(t7RLK3rz*+-Wp6+mJa)B>WJFlaECUoG49P8A@ZtD$fFtEwM
zW(IKGj9mtQ+#cL$V8yh)B%d>TbPjGYu+;zu<>+spZQG<{aDLC8?7qXm7vg~v26h_Q
zWniCy{RVa$IJhEx(3I3Kc^HM4pI4j`dh9E@_gcnYrm0@-)>LZywSfZ$ju<#fH3L&7
zram3WI7FLebHCx?>J<FRP=6ZgF!NijjQ)X)z2j5AHSnE*;|7k&(8Er*-8{MjEw|m2
z^F71HRL@@QM*KlqDgRN(Ndu>ZaE~ZFW8f^EW1^&qa|~Alg-qOU;%A1vfj<oVY2c!P
zO9rlS;Rb#&aM{3B9$r(idxI{)E8>~0U4q@NXUuF+nqK<VzzqX84g5y$1v^uX&L=V?
zZW;KU6PR4!c<11f+8I>dSEuuB9tS3N6Ze|9!(e8%WZE~dWn>4cjqDs`-+!6>O&mz?
z8lI3^eOg+{XFJ>)<L_Oi_QCun?lV!)^kb%g$;Xcdn{Up^<HVMxdcZ_s6UAsev&(}f
zikR3lJhiBa=GQZBbPkq(z6<TAnAlu1qpztB*UTtxVvwn($^uK7C~YFuL|qeQOq4ZI
z&E(oqc6wSl6BSHUG%>wqMtKuMFZQCHN+v3sc*sOm4%#_*Z_6H+6Dd_p|Gd=Pkn^yK
z3)w-KylJrF+!mSYkM&t}%cCY9Gf~q-EfbHMsBYq^;h`EPuFuTRLOXZLr0;!F+h?kP
ziP|RWm<V!@Og}{LRf@-<aF^hs8EIveZ?>L^`X(|=6e?2U2@?%Wq?>4LqM?a2lMjgt
zHZrkuOowvMr`22EBz0m3N;t~R#eHuLPi;Frt%->(BYe`-L^FEH#MEs$EljjDk!hk|
z_eO)Kr5*2^(aOa0&!x3CG3krUl+=tyO1)7xqoY!7O|&yH(Dxy-P2`w((nL=a?M;|H
z(r(UvvYUxq6CI@5(L@&$Z%@wXWTLalq@7Kj(zpAzo{-U1<fc;3D0N{{Mt2kJ+e2`v
zQoT&{HleYLi9RO!nh2SwH#uXIQvFQyr^6@aRu5z+F0?D>1s5CHVQHoCgi?lyM!joA
zO~g0{6Uu~T;+9eo6GbgG{mZN(2eW8Ob#50okuc$z7+}IS;h1nu{5l~0{fW6thjuS)
zWUm>Y!E)3IhMgcK+a}~Lbc2IU3^DPViPsqwCWe`K(Zow8hMO2+Vj?}p{WUSt#26FL
zm>5NOUG6&C#Fg{ipJuR4%=p|19tx+`u+-lZa{Erm9cyBoiSZ_$rR8Y%DQ<8`mFx-J
z5lfYum|<IrWMI8ElTA!9F^vIfg7bNf8^=AO&<)byrKR0l?ack5e9DWKnjx#0x}oa}
zCRSPMo{1R?CuQWDobj@WnI`6#m}_E|Y|uJ8`{AG3&6cg<(zrqM7^~l9%r~(>ESIQJ
z>J`5DH?dF#<tR5MXN>!_$CS;T_F3x8L+#!$vB<<46Q7uP)5KyE@0wU?Vu^{R++q{&
zm{?|Fxrr4#9g{M+Ur$fY_`~jg$x=PP%zBHbpnvw()9ngI6ba2%j;K{8-ZSxmi4S?|
zC*;1*Hz5BsT5aO;fvm)^wAdW2pc|}wz72&RnfTa5Q#V*|LH3>DX%wzCv5paLVylTy
zO?+lzlgSVB{igLMo`|T8CN`LuH!*`TKxCnCvx(2Sit!ok#$_K^z?*JoZ!@u-VKyOS
z;zu1T4oll%;tL)t2LHHhwsIQvdZg_i5hU4T;!7G-n6L27#adtSU@F|Nu-C*s6Z=hk
z&F$d9WPUSo(8PKFXyY5simNkm(!^mCM;P!Cb<D(3y6*YF*_&zB(m<8*fo~Z?a{}jo
z&i>BCaTDJ&(S4u!0~6HEzzN|c76vGJZ(Cr@-ry+{KbbhSCg1Dnb$-h2cA7cgMEqdz
z%#VRHY|8C+*2J!_0wjZ12IkD{f5F5>6IV@)ji^i9$Mu1E=y=%#$NhzgG}!U4j&-iE
zbwXfc`yApm(Y!AB^nt*FRyj9K{KmvC3%_OJcN71Z_}9cACI-I}_=_v8)bURfZC3?u
zb6sl!jkD7BT?^bX@wbV)CPvrlXnvnPFQQiO3Cx=n=rSvCJgZJVg}EyN_Xu{Vp8nM_
zeqG~RU@4$*pF%-}XD$S;O!Z5Lqk#t$3iF{`3f&YQR4AfQU7?0TQH2x*KJ@Hig<=Y{
zUrr%^jdVVty@WzZg;EM-6h4Wl1HT4uEDDrX_;+Do<&FS(S&=VX(EXA1y~`_9P^hRd
zWoCdkpMLvl^IP@vRZ^&|P(@+RYXQnP9tjfntqNTJA@J8r0Vq78@TfvH1$}vdWyXTQ
zjroDb(*lnvTsR+Kd0gSS!$Fdo3bhn66q+go6lyCpQb<>*qYza1Yhs|GLaM^es=0L)
z>M4ABK0sbyVfV~HuNeW}ZSK1l0^|)8`cDinT8L>1PyZFDFg?)gM4++4>t}hl5)_{l
z*dI~ujo|1rfgffCnkh6_XhYvBymK^gZdD*tp@l+dcA%v~E7{ZVlmM%(6*lY-em6KL
zOW|xpeeg+$&TOa9!T*&yvK4X^Ds`&UUg5K&>F@j;P{#wgbk6udy=nRWj;Oo!^L0|-
zPugj1>u-U?>wzu`#8;LEx-0Zh7_2Zv;Yr>$kM2@16!?Rb-U|J=B85H*S%<TC>p6YJ
z8~Lhqyn8%wc4DCPi-GU<W`}52L6eQR)vw#Gj{>vy1y<h<m<mcE&Vdvxg@{5_A*Rr-
zQx3N&{!&2yBJljyzKb5}xUyc!pLPXoG43f0P;eCf`74l7H^-%g^`S*?2L>u+cIj4S
zWgziFV36?FP6a6$sxVApyut*9;R;L62S(BJ3L_L&E(<)RFjC0+cLQ#Ne3W#U6Zrb;
zz-War49i)8XB6_S3OuXuX1$!T3PX$Kkc<-{<;9{Z(IRJ}!gPfhjEAV2q%fJ$I6W|h
z!J{x$_%wyzbGlLZyuvGs{Y_^~zS}SL1<vYx@Fj(p6<%aI+7PHdIlyq5sW407t@(jx
zH|M`RA&@#f@Xem=*>oUxd`~vZTp?^)K!b{xPW-O$s>H*`3TqS=3V)4prSOKrA|48c
z5O-}x;7x_a^aDfsY9Mkqd#S=Qp0!PZw-lDsS33hM6d#?_?ajN{-}LWBGW~pD<G$=}
zGt=LtqZHm(Sgo*%r?_LCgU18sz6y}M$3UI!lhs>#f1vQ8!bgmm(}5l*vWN7@X%khW
z-VCtm6NR-3`xS3ujCDLFoLl9NOvs-ptXJ5f@C7G!ID3P_W`)lsJ~#59ZSB2@9{xU)
zWQ)R9h3(Q*?(vTG>NVZQu-P3TVQRYfA3q`QRM@5PrNUQS^}60hRPAPbj?2A2p0h`x
zb(@@4ce49E(s8fCK7~ScoBoi~Z7er#aIYo51P&-1<ndRyNCzq$QaGjXlfq$zBMQeA
zzNbR(oTGHnvcPu=-zpqanAk9<&-}odd4ai6_2A|Jo2G9J6c2Pfq40wo^B?K7d^r@h
z+aEm1-1xh%a9ZIE7rr3SyMFpvMoZtE^E5R+bdJY%cW`A?P0p?}yHw84OtbZxmhP8x
zN#PfT544PH3YQhGC~S)=dT(yO)MukPS2@Gm*+b?Bo@<>$o$Cs}D%=qLn+m@%WmQlA
zrcE6NSo?PZXQS#5g+CRZu+YH5ZJsQJ@)jysxTE;479}l|vT&EDj2mt7RT=(e%v&gE
zp^$}pEZl41K8ufDYMb9e0SZ43t^Ff={#Sv5bN$k*SKA6R0&KnCLZoif3A=-ZEj%E+
zZTC7QJ9c}}LYH&FNXt6Uz85$dYL{Z+{@(&~u4Wgr@OM<LE1gr^LJ14wKMo8ZltV0S
zq3*ZAvKGn-DI?h7Kyd1}nNR)N+<8Cn+uyw^TBu~<aSPQgRJKsX!ZSYyAG7d~g~_`E
zRV@se8YmG{&lsr>TY!b^`dzA7c*MfK8ad<}o8&xd;b7^ULBDjX9#dl{1vY6pH7wM$
z5VVkLp_av4d1TfWBnenJV5eVRkyS?|&10%gr<`$hJJ#g{CI|ZO2u%JZSdT;h60C3G
z*uucp*8&YKq*>^1A!MPEg>(x!7TQ~AY@vz87n5jZ;o&8L3=6z&HnY%Fsu$M<tb>8(
z7Bac0@qs3<2P&gu3k%!l_?Oq#^vMxF?Aut#68_lTKu+zBJg{v=znx$<P0jMvaxHYQ
z(8I!$7CKrO^jx5;g>Du)3GXb}MX>6rAX_{980<ea(A~mc-81i<5IEVt%m;l^ds^sY
zp)X@#PN0{C@^=EgWfYRE8)a(k2=ue?!JZ(8d$wlDum#P+K-#qU$rua^wgtz6X+c>?
zaLbNnQ`2I2Scr-pzSxLa=oM3O3lDDbr_F2Jn3x*1xA%iBb1qd+|73Q0pY^?K&adrS
z@GRu}G_dZQzyJ%x1u-?4du?H?g=a1BMb}UZPgxjgVamff!vu#5ju52rQ5K$Nv{?9O
zO_R~=V)+;D$bld)VFOQO-+Cy8Iw$(&d>m8b7?T!eFHE0tE-=BuL{4%>VDL;oY43?C
z`ezb%T$XUVV4VhY0#hwK&k%A^%f&Pc(|KefcrAh%7GB_);>;s>(ZWj>wpiF|;bjXm
zEqp@X-dB4T2eR;{g~j}w|909O3-d`V%#|u7^DK1zJm0Ukf-J9CI2lt5E$l6s`l<y=
z&i$G8nuXUHV7JrWu&_u7`PZ{`VyAF$iG`&W-nFpOLcg-<%PhQO@k{x%<rY@(P((A{
zvhcQriXCh74%Dpv5mV3onb!Nos+6#-vhbdT_bn8QD^^!?$1QwpVT}dr<-U~A=7&5B
zarKd4v$$IGXIi(o@{XqU*rBiGW?A@@XSPS}%@*2D2!1Afz2FAHje?s5zur*Bnwdtm
z&qeusO6oQq0SmuaxNKpEg)b}|vT)eKP7Av%?B^z?r0%w`$HG^1i-nAmsb5-%#}(y+
zOQc@?Hmz)l)O{8nD_e<#g{@!nP+OQ)!dEzGfynZW5O!ZRzSj{8-&;6g;i!dgd9G>j
z&$QzfCKO90`HtHiS0w$T8I=5B;ln#=r+CoH27i=QEQza=%!KQMdrPJMWZ|@hGZxNT
zxF|Yf=jzlvC!FNGg`b6A5Zn+~6tY}m9-f|$<ch?}4GT9dH1AaVs^B#X*M<Bl$c;M?
zSHDR}T!^c?7H$duUGNV<M$4Z<Zu6K6xs#Ot%?+*C-VdkJssC`crBcg$7Q82ddn0@|
zggz1EkDx%r57*Wa+!sN?2+BlIHiAMC+#kUPM=KTK!*f#~h@e;m#f2A+;K2xrM6kAa
z>O)!i*;-WODT4PT6hop!1QklBCO*$sGJ;E=1?e&FerYjCo5wciD;Gie2x>%7lbR7!
zjG#KPW9>?Uk4129bH2*LDXbE~L&B>jB@ah{B(E01BT4?KkaffAJRZT&vgzy_yPHPr
zl2z(Xou0KKNQ?M~i#!lP?Fi~b5R4!-g8C7@bw%9>8dpqbYrI(Mqs3F}MbM~3YM!J)
z1Qd2Gp4yNTPVjLpJ-Zc4Z6wyx1sg}uB!Ud#Eh1<cK~v$)BK)yju(|L|K~A82tF-zF
zMbauMiHy(4il9vdZ6kiX<wVe4NISu7ZjHoDZUh}7=oUeD$|L^iW9b?}rwBSn&~J`T
zKX-}1EuPAvl}e43@prsO1ZRt<_KM)l-)T<@vf4A^9}p5AD9Zb?djyjsm=Zz%2tssV
z1j8Z-N1)MQ1Rh68C_REm1X1Be1f~!r$W}|pl)J%L#1H921UCI9n-Wd<d4>tfiTJ0C
z{LsQDS>^l(aL~KKL9(2Ig4Nas2S+d@g2R`3)tjCF)o^8|j^PoEO{n&zQ%6QHLO8SK
zQ$py;Q4u^Xkvy8S`mNi92*ya2vHc8nlKfdA<02TJl+a_;pD4X13GUxe=D7%_MldUa
z*_>?za}#R1OtSP3>C+?<7R=RWMDPNI#ZzCDrk5jlNvh006mmr~BiMMU7u~xuq2@#|
zUq+l8!QJAiEc1k{c)KTOxImg-5qwqTJ4&R!9>E*jRvTSxEQ;VwdM1v_aV(BtNd$oy
zYR9lNf@Kjr6UEplmPfE6f^Q=@7QtH)ydA;j2tJSCoe18I;IE6dHb$^Af`Mf-Ka5~|
zLah?vdxC6zU&!hRJ`nQR)f5Upir{0Zt`Yn+!ngCjDVDVntV{B;^QuzvSp@5ok_|#;
zUQF4Pl(gTTwIzbB5gZlCHo-3=_)5rj!5tBN5y8#~c1e{scQYM{aq>MPd{-v6H-bY_
z-6yzT@N2;Xf(He^5uAI`Ukl6O2#$z^6Jzy<ggRa=_qzy=^YBKI5ykfroM3v4B7YP=
zMDSw-*LgxCI2pmI2rf(CpCULN!A0R`1kVf7;8`K(BB*!mzY%|q;DQKorC{D1E=BOm
z|46PR`(71tO_1GhL~t{Le<Jv@ZX<U5P2{%)ZwdY$!5>2Y6r|3{r+fV+{Epz?N%`Ff
zK3dw53jc~EU-Z8nyhq5&;{^*uabFbWqo@!?!6<51%6u@2BGOtYiu;8;knB}h$ob3u
za*9S#TB<2g6pNyGQm3Sl691!FN_dx_Q_3WD%0^L6_<cY7zN#2SC8?%HQ8|h#QPhm0
zmPj6o;*lsGjiPE44@UtJRula3yx%v^w~vXWy5Qr2Y_cz=)JXD-D+L3>gGov4DBtz}
z=MDOS`oy|X)Qh5iQr;+vCz8BD6b*%^B_%&yO-UEtI4R*|nnuwqiYKG!8AbCbGNmau
ziWWk$1zSeZDvH+0UTuYBMbSnGr^?B+`~Ox6r<^F-izLta9ir$c)lPz41v^L4MM$1k
zX{1{e-9^$vkP;g26-DnT21ogMxWD{9QG}z=qUf8{=_jOr6rrRfZ%{o7D~gB+jVR1y
zs}gehd`eV^6NMW^On6){A!rM7#Cxx$cu77miUCQUH_D(W^0tGTL!%g(Y#kQGaN#2a
zpAxmU$+I>pil>vBqoWujJkJl$MlmjmqA{ezFg}V2QS6RlPZSfQ$d^ccHHw8%Op0Q1
z6jP#jE{d0<m?_<-3eJe)c_GsTrwhJ$tYqe6rC$*Kq9AAcQWTB1<R@X76~(-ye72A|
zQOr$BE*&d5Kgkyec}1}O_WZ9!@p=>=MDbx1Z$z;uig%>xO~Dm{iv^bmE)`rRxLlB<
z(+=@1slLs~*`A-}U3yF;tD<;c$b0{zzdFgegpZ>5IEo!n{F6|$vnGm9qxdX}Pm(%o
zg{=FZ^{$U%Qxuz{*dR?C1^?e0pGUDZ*>_8_*S09Oi;#1pCimitq|VMLcKwfqFQfP>
zii=TPiehh+Z*cH^6eptCAH~;E98LB*5XGS+KN!U~NlxR3ll+KygNtJMR)oi*_)f@i
z!HU1g)gg)>qc|s$lY-PgE#y=bKP4rc`5ED7|3^a2^HTjeiVI2kw{3Gr70&!6ia(>c
z9mVA+u0(M)iff{9OYpkj4Z&XpX`j|^M)8|e^Zfa{@IU@X@>djhq9_o<eKCFr;~(mK
zV*h2fyHfopihqUV6FFU7q)G0*!t)FM|4tQ@YT+0P38AU`g*+h0`8+73NV1iZVlfnt
z0WnmIp`5Mi7tSmZL&+FQC3PwZDIG%@A!P;236>YEAXrh5BNmVgbY-bliQyq3Rg<j`
z$8h$FzekV6@MsK=iG0A44uhIy)V38T@OTXEY*js}Un7Q^NnR_42d)%k_c}2IV;CO8
zh!|31sLL)fWXDi1hWaryjiFf#WvjP+B8Cr<xubF>hif248pe<&q>*5{U}M21f*FF;
zPdQz%x$rhIw2dKCcniUnNu5?gS_@_gvey%1dug^xd~S@f)tk1;iSgqU^p2r@47o9M
z5Vfv?9b>$Yihn{o#n4$KT?8rVf2CkI;oXyx9zvdsp=VOU>tml74%y0x!4zR%!G1CH
z7ZOTphGWoT(51>=XJvzwR1-1SLM*|EU^Ir9khtJgnWQ6}a~mYY74%{lkdzM;a_4fv
z!AZ#wAwva+33BMCVi+02o*2H2VN?uH$1pR7Suu=`VGOHvd(4R8nWTj&F^o;}XN8Ot
z94|OQaH8O(7$ys;*D{xrd`|dOK~|p^GA)MbLh>Ro-=mo?#PDKL=cO24PIAWZ>=@?6
zuq=k<BAgq;LLu`6=O;B62zf>DRl&xW{qTNG`0Fve5yPSw-jwPR!Nr2_pY+w13V%ZQ
z3gN3_crS*xgug9FwRd88SNKZ7iSoMZ{TNnDbz2M{Fw|pMAH#+iJ`&+N!H)&k2!0~C
zRxocwTK<$lC=zlWu8m3lc?_G9d~>qPmZW5>ko^}@wkIV!V)!D4oiXf6N_Gn=c_Afl
ztgm9&8^cdAoQ`3iG=0}J<9H1FWB6LC2Lz7@9u)jW@K6kgg>Z(<S4WflTOr2;zY}B{
z{65Bi?B<@3>JNfH3bOCXn16jg#giy$`3w_L3<cvT6!(+uxfm|Ta7C2Q$MCa|3(3A0
zg<KN+g+~Ut^RjcV#&9i$+Z2lYdJMk{`Bm_S;7vi=|1E}F!v8;4{~^^s1@oqKNBF&Q
z{2jwx;s3;tPp0>;RR6#4JtAZ^zmNig_X*~iI=LwI{y55r<bgN}3wbb(lsG>&^w(P?
zj-o=y*`;`rmlRSW{$G|ZCDqc&R%$+%(X*^n%L$ejtRPrXkUCZ3cqoo15@?V>)i@rG
zV_qEd<3JqM;usLez&IX><Iy-8$I&E?$KrTg`aTio=a#4;JSbQ*jyghW2?hjf3v%Z4
zz}MCN^v;qh!n%U>1nbkjyrOF$)rNx9OpBwD@N~gEk7dNsG>*=3bcv&x$XmyeC8W7v
zreKRWS_+|^RzmW^yN&Snf^7xc#gQ!}N09nIRV$sF<Q?MZD7=&4C^^wx<LDMgD2}iQ
zyT`Gnk)O?aNcG7$dJ5?kN1r(Q#?f1<RQS4D>3&JhQ`}$p6Ugk=GgA{D6V&4{gqU$y
zLfBUcVXuggXtK(tcv2@J#1?b}-8eiUdCMOZ$KW`gjboe$hX{@o92&<kA;Se}c0?Rc
zCHc4Vf^AeBPm5%<;26PYk~(9B@Y*`>Ldy6!rpEa(6efspPV=4<g-nWLa#DXv9M2_r
z_X~cSofgN-Ny+p$W(a>FDS0uDmy(>9hMB@=3C>Q+=fp8r_@Ya`!3A-=62~`j9E#)B
zI2Ok7VH_XD@md@Yjx4h@j%9JYF8XgIEi8)T%_LtO$C4z^3%})Ytcc?+?s(lszm`tt
z5O0gZD#3T+csHrPQV4s!C**y>)ydWm;^<eiG`oLHQ*msGW2-drrN}37tQEdaa6=rQ
zCVPDr$9myIlAm>Kl<FqI&4QmZC&(*@ZE@V)t8<7wBHu2!BaSbGP`*>ht~hoJ+1k4u
zg<r<;l~nf%ejUd?A#B<&B+vK(;RglVA1!$}jw5m0mq5V;j>hqA9KXhKBaUOD@M9b&
zg?uM?JdW>$oDlp$koNPEz^OPci{z&`PRDVE%ZcM+Qs-P8=i~TUs(Jbsgy-!}9$pg3
zFY*7bAhdiXj;kWPCV2gSy4;N8H>v(3cq{I|T^(38^Y=LZh~rNY(!w1fw~0v!NB>*+
zUBSGe+4o=Hg1kEryjPGG@+VLr$=mG8DwM$e2|Sj-<05<@0SGCaz=H`CNuX!~6_ffY
z36xHtOajFcD4sxx1WHO%DM8NUf0tiYgyjXx3Ffs@twQ2IpHxbqvNTm;<`?piVBRiJ
z^WlW=2a;+ce<a!ZXwm|0ZhkDYdIB{Ps41<%q)sg%fdpy`sUt{JG@dHFt{|)R5~!c#
zG}thKv;@9S;6wtA5=c)#OF&PcaRN;e=$PQg<H$&$X##DfSF;4H?O8<}^@!uYK5w2t
zrpQ|)ZMGEBO0abTSxI>tAvc=!Y?qW|3&{~|FPNJ^hh*!cOF9H@H}5RfZVCKwt8JGA
zx^j|^;yV{&_XK)K>yrue71A@=x0jIKf_)OmOQijht^E@SC3!djCQmNJNWe^BPXb>i
zpt!~arX?_4)FKHu3AhPFlf7aI#DymW?WCLu-%DUX0^>z8Fo8h{j7qi+PGE%aAxX*5
z1cnJ8o|NQWGM<v^NI_nGo=#x2@G%KIli>FSeyDeo*V4}>FfM^1wF-sgbuy7<LIM*-
zXOiG^f|CWO2<DA4RrvFa?PDcra7F?zB(OSx4@CZAf?p6|UIH&A@Nxn(MM$;TLS`k9
zXJk%N&dc=t1QsN)G=XIaypoi^F67k&77BSy@XrtYB+2qd0*exOQ-p=(dbC*h62adu
zrz}rkh46P1cuNR-y`3DL{G9|=Rr9kt%SusLCHS7;`-1f0hY5U?z=i}iCh)NcslP6P
zHNrm;Tq~I8$xo9ypCzz9$@7-HDS@pCY!l&T!Os)elGGV2FIToFuu~*E1iujEn}WP~
z?vm<mLB84fDuG^(IwV!sQF{~Em!~htE?*~bAjuCV@Qv`Pasb(SIDsP~IV$*VQuCOQ
z?*xwvvda$%{Fp$%_Cx4o0;iaBY}{kxrvy$XaISjh?F7z<^2G!$2{}u-kn@7<__L4;
zJV(hD{gS}-Wb0)iR|Kyna81Z3NzGpqxRJok1b!3w?}D^>i|O%OKMq;`5aFMKvtRA}
zS5oJWkiQeSo0R;Mz`se(_wV=G$Zz9O8$VXbEFfzvVxy>#`veQxC?tfV+%Mz-8-;~D
zn3VHsn_{Dwjmjb^Zli>a^2yecHp&Pum6VjWk@tCQS&@_zWXR>MrGkx$BB><!sDuZb
zs@QnQMpYXRi=2{bLii3U?{o4;{zw0@q|W0)steYzQBz1QL0euf*0xc{M$ks8jn+1@
zY}B<;PZXL7))!0@e8NTpAq@rdt{0q1BdMn62?d)7W(YR5|GT0!mn!u$ZL|>HQm|E0
z&g)AX8!uJM%}q+$+WZL1k3E)b8#%(;CnaMa_usH|u+cFo>16-+KBcRTZuE?UrVhH>
z=wV}<jqNs`w9(VX3>z=l=w+j~jbS#1+vsDXuZ@U}sEvL$`r8QG&}{!}prW&ig>1Yf
z$7hqHbQ^{Z(}uEf$WiToZ(FuyZj*AEjSlK0mJJe?UmO*)5x3#l7{H)vk(;pL*m$)?
zu5F{?!p>Iz?#CPFx;B2x%>8jpuX3&$Xyd)cxr1#Cu`$R-;NQmGGJ6t-+PMCzum4Qr
zTvn+w!p2iJCfb-}W2B8yHpbd`*2dE|M%#FXeQ!5sspG0K!l(Cc#}CumxGLnTaW-mH
z%N%cGf{oWt<dU<DcGVnLwQQC#*~SzbQ*AtN<2gAObFZbWbNy@gk}8=;A8$L&#xYmj
zbk%elzdzoV65@;8HM+>g+csXdF_V^UykTROjoCI9*m#8=Zk;>FMzurwd>eCZ%;Oo^
zmBkS$f6!Bu=gZ7}#N&OKvCzhAGVT3qGn#w;tXO(_YLSgMZ7j91%*JB+jj#M||0U4s
zwHbG(_+RbWo?32Wg$+tJE$dLVX-^WPX-~d|f5*nVHrCkq#KuY+t89E=<3k&K&-<Q@
z_gQ^3$WKwGc&hW-jMX;EuE~tH>bd89%11Un7LU=NuX(;7KJnCA8|!Rrw6V#?r#3%(
z#O*Sf>*<+3?XsKrZ!=dc?XW>&vdM@3m8<&^eY1_vZEUfz51GH7>9m!TY@X|UXZ*V(
zYxoyg)Y)O<3mgB~_}9ix8@rfeZJf5T+r}On-_p2^FKv8f<DiXiZ0w~e8~eEgw#vlD
z)a-iAQw0a80}S0Uz4)e;`1a>LNot%-Ib`FojUzT5Ki`RxGFiDtZBU=(d*ps+<G76<
zxZ^gi{Fw4R7gas8bj{Ky7!S=de9tt?ILQ<=K&1~*r))p-lQTAoU+Z?p##tLTxg(U@
zIB(;Ejf*yZwsGgV)Jat`|9B{~>i|W5$;K}nl<{oiG6%A8m2Rw-%MGI1jDtD}$9m_L
z&LqFuywkhiT6=rewxt~cU3>DA?OTjG8-FwM?@9f`2G#zeqaMxtlUu;!HbC)p`|_%p
zlovbO<POtv+02Op)Lqf%*W3l0=H_#7kAsIDz`?x^@;kf<KT0|%;NU(74>~B~prC_7
z4(@mGfCKt!V~xxk$bJ4=N?`}58|BX1nMKDg8lc!z)WPg(rBfUfbNn>**#K2sx*U?$
z8`UzYQ_4YU2jv}9aKMe2&F_C5lyy+f!PJu}^_O;P{75EkUL2q*I;iB}*Q%KhIjHR5
z?*XccgBPFab#6zNTP^eaD?K?xRR>?anqGXM8aK9AH3yG4sN*2$;86#UIjHHNmg5KW
z;|{7jpf^~`70#^T_$P(mys(Kz0*;>|YEyZjy45nb^+5lWr8>OXKI(J+4jLcQr<Bd)
z&m`(O&;}}28#rj_Ae~JP(j07F(xH(oc~IxfI(^!mtC>kc%jBE3XEl+g%~dm-IcV-+
zg~R-bOb0C-jB@a_gO(0jIq2=6kAv0@vK(}9(2)~%(AGhYgZ2(;m&t5Lh1R**+^OPS
zS=H{e-|BR!v8xiJG1u`UlTkWlXYo!BIy28Z=;5G?gV6(3R|nl3{9LT-yn*W7fvQsb
z+*c-bAU^4!C#?-qy&UWqs184tc_%CP1QiDPN4u|sehwT5u7my#LJlkk5r_YTg66>F
zBnK&7_IFmZTti5o%-jw&GaC$2%7H#eJvB(NDe55Rz;^ujq}$`%?lqYS*@Cj)>fFAz
zvJu=G&*38>Fx<fi2Ll}pa`49oU4}9+95vX%5O$f|f&5TT?n^SmVf24BKf^2?q&5sv
zhd82xkzBH*9m=l^QllM=aWKQ-eedy%gRu^(6fN|;gJ&I#b1=!lWC!CJ+k@2v2V1`J
z6I6%(-6yj3QVK6Lyu?g#z_dBl0Y95%3VqJOpDlb+b+BqWSaJT-IMrqu(`l+|CQsjs
z4qkHbs)L0NUUo3k!Cdy`RCi>};sJ3mM|jujnJXUe%Ftc?v7fHH4^|r*_MGovfrD2Z
zkdGMbUr)cE+nZk~yyoC_2a6pnaqtF%p;9Kxn_N+5&qWS)pXx*l^MC8kugI4=Smt0k
z=P+39Yu+>OipIS9!suR%>bD)d<KU`;YYyIZu+qU^2m2hXa`2vm&m63G@V<l94nB6U
zhG)mYhm6dhGPnH|Wb8dvwa`a$Sa@ER4_2QzSnFV&gHJ_g<6y<%s@LqwYgvg_x#??5
zvC9Sr8y)O)u*<<Fo)iaL9c**(Ih|i6a|;i6>2wChklyWxA7<xnXDB-Of(fBYCgb_5
zomotJ^lH8}nbg@$=k)Kshwg2Wdt|U0RW0{RW&o*@Q+Ro>+V9|N2PYi-;NXCRgAR^3
zIO^aV$Ip$^zAt!){;8VTCM)-_1mWDQT&CG?9UOCT+`;#9T5tYSnjZd+o;lg6$mvde
z%|H(qJJqS+5cMM?*}-`pC<mu#)4>@BXB{xVH9whhS`Naw8ku<?v5x*Fg-P#R-Z43w
zalyew2fsMD%tN|1gC4j<KP>K0b%<&_M9~9RIHfh2jfxhcgw^Zx57ViO;x2ADxar_u
zD!BN~!7T^3IaLS0JLok;_2``Wr;tB*h<bFQWbhEhZ|eCK^BpEn2X`6d&3k_GQ0CGv
zvMBtjW$r)R=(QPqwRVq-dtE+11%+MYcm0HUpNoR7Ka&EkpJ1OKq6)eG`K`OA<NYpH
zHt)GarpG1hOz-)iiy|(Hx?o6e9-@v7@v}#Yi?!7<=QPfxu!M_}E*^FP7o}X3c2V9%
z1s7#pKhC)kWo4}4%Q}>EaczjY)i#${(M2T}Ra`ve;=ZA(>QKe`S9blg#x6zM<x;Jx
z3$BH$AXann2t9MGWOWyh$|^Yj$6Y+;f}i}f_#%tz>R!bUq#7<dT}|Odv&m2ua8cVu
zKM(yq)Nv7XvDL*k7pX4lx)|(Yh>LnI>bvOfqKAtoTr_a8r+l!Di-s=JT$n>uD;JGi
zq>H?nU}F~<LYfGUE+1qUmZnlQ$_JYZp(N8qizII;<Wif|)-JMKJUdiTVct;H<G!@E
zF4{?Jwu=rfI=aYl(cVR_2tO80DrfcU+9_$Ri;Dw8RcEO-ESSdDt}ePITdxdNPrB&o
z!r&5I^rGiCX7r^iT=W*+N3g&!wV+(Ezl)HI%EOe#tt^=K@}ktRi;v3%SvrThvZF4_
zU3d3XE-V+03)e-&#r_%jVlLt?3e^fm1;3k-FX3Wn%^-^{q`@#nPR(y;<nvq%q^X+0
z0fHTdDe^(WNvJc_#V{8$UCeSZ+y&=0mW~oK!o^cAMhYM0;%OJ7g~x`eF)k*^LXK4k
zl01{Fj&m{I#S5Y~!No)u&$*cDVv<NEyZoy!2F}RGQCQqXeOV}ceVBTlzyEhJ-NmQF
z)FH7vgU4sMx<0M|HLng+j}2EZx_F6GYSr;&u|~qC*)Ha|c+bWAF6O$J=i*Hli(Sm8
zj*Hi5+{G&{US(7aR|{Q?s~(&=BVV_3#cr1iQbG%Fh_w;I7jeIY5SO@E>f$YFT}BrT
zS1W`scd=@?+9hi2etNii+r>LB-j&w7!__JwD_zi0RQRG*$MPf8YMvk$pSf7?;zJi7
z@i>dx$1c`z+VK=>vOF=u@A3%`)ChIDdItGAQTx<ILYg*6bra8^i;c9itN0|5Q}c5g
zAEAznP+LT2k;u2Z*uhBiP{qR+E_S;3!^NL2cDdN?;<Sr13}6>uy7<P$A!a8Rdl_a7
z<Hs{LPs=y9LU5m0qy6h6)Ym)$41@B)gM!uT1lJWzWA(6$BQAb$@uQ2Q%poqmmtMyN
zi&ylQ#`2v6`Ed~ze9B+x3E>qNl{m?r?bnr(pIn?0Aw)sV$QPQC@2tzmUE!LG>n=E@
z^DcgIaoNSsE-tvx+jYF?;?9M(B$uSx^eIJtg&9VS{1-)HmW%q8$zM*&Ef+Uk@bpbv
zRDx!IV{ksDeytN6w>szd<e6GlJ9yj0UoIZ>P{i{O$Q@=^5BCWF+r?cmOZh)S{$+yQ
z<Zs-)9`buAAZqo`7n>q8S@e{;&qF~Eg*@CZO@%!$6dw>?>dT%i>z`78%;@mWqST^!
zLctUd#XJ-jUed$Wr&I~yN5m|Ldv$|9XlV~+Je2iN&O><*rK<<uJXh>|wI&rj5G%@9
zB$cE}!Y&VasOq7ahvpt0_WZ0>(?cx}@KDXeBOV_0@VJNS9v<`Xz({}B=+9w~2gz%X
z?pVX)eWbgRtS*&H40x#R;Rz27WO{W3>v{;%j`U3xN#;mZ&qICTeMP=+O-@4(X&xGT
zXd?1P9@2$y%Q$Go+W$pSh6tN_7(P<%D;IoOx@UT5;h~#{?jBltXyu{3hg{FUvb6Tl
z#zR{VSsrfP$SnF%4kNa2FxbvRj!4L}JrJoJSlxwVb@0&9Ll+NS#bcd3boTtr!zLyl
z7Lt`C)y|RXCmFqmhbKL3s}bzup{Go*_Qkf3XkB}G_<N)(H%j&Pz@25UzFhSv#c4F!
zlo9d}_E2#EDh+_<LHF>7hd(_S9!w9PFnBK2QXVW1(>=`a5b+S@G(3!yrkDrM!vGI)
z4+)Xjg02V0!=ia<7w^;}(n!B6wTJ^f4E8X@!$<sekZ2C>lQPu9Fb_AH<d00tS7b<S
zstxxr!b7Y=;A+D_yt|L1JUs1TyoU)M)PsT19>#ch#^YTh0yH(&!_41nWi%==PRO%#
z{x7vCp{YG5i%q23w0u)MJm+B&gL6R|%VZ&UIs_uC(x!TN-orG$T8R18TfG7sasp<n
zK;<TZ7ueUsTOQu_@REm@J-oqnd3b$ozL_58d6@5EmWSE0mN_2g3VHL+eH{AJ>$OH-
zs>PWskoCUi;S~=<%LQ3p^{_C>=hpR?@VbX~+YOR8JuLRH#KTe#W3SfgTe#4pUl%RZ
zI6&vTwzK3i56eB&%MH*z%L)&l4)*yw9^Uovo`?56tn|=flv*V-sqjy+Jk5s-7h3J%
z18(1mf_ah;IV%qzdw6YaK1$YzJ|{3|yI<W`tI%2x>uBG@XC4lE_{PI}4;wt}^svjr
zMuz3|e19D(xXr^R51Xa?=N>BGsI?`}2}^2|Z}s>NH$bx8!*;#)4qgKCG-Z^wUl-+A
zyFGlxAiP^^kB2XLnP`$fZ-%Xd`S*I*=b>=9z<%j<z{A&44b4fTkZR{D2M&2S?BQn*
z7d#yCaMZ&|52r-`Tk-r49*%kV&cksLve)+>dQ8jr(;7cAPk5*>*pIp&rFBG+|9tzC
zhchBME!foa<!3#dlj^bY1z0_w^xj1empuH+FqYO|n8Z9>_i))mr=GQ0t}tN=H`)hS
z&5MweSNz?%$+@KkPW2Al^6;B<KTsktdXK+Nze_bZwDyU^ew8tB+rwWT?(k51xXbj?
zBv5Vu{_*fH6XO6B9)NrUaL)h~{6D6?13Iee`#KPs(n3d(vPD!f!wk(#$N-@P0t7<n
zNDVwXGH>cDGw;!R5vhuR1*Irbln#obAiann2nqr!f?z|WDDdq$`OUZfYu&ZizUQ9X
z&OP_sH|>ruzH<xvkSwIA5B}$qi};Z9UVPZ}UZz@o%Fx4^E$%}JA101;=#Asql0KC3
zp_~upeJJfi86WP{tw%XiSsyxFDYrV+ks{4f!o{kP;FX0`^r4autM8}2R?P9H?0WW9
zm0f2zxWrEgd8LQ*DIco)(9(xiQmcj!FC^Nj=|e3a;KS2C)b`<dAL{xLC|TS;tL!sA
z)M4YP@o_#YO_4k&6_s^yzfJYQ=|epq9KLu+p`>y~vdagz4~=}-)2CzoL@y25duqJ~
zlAZZ`*OXBXdQ@ZfJF)EbH{*`Ml;(rShjbsB_>kd4rVlNA@cQE6tC<g70`Z;ORI;3G
zbE?&MymTi%@w;z3b8;NzZWnv6e0->_eHfYOH_L}MKD6~A+lO{O^z)&=5AA7KHt0iF
zPD(V7HE?wHp=e7-M;|)*kSn}NUB|%tsTAgk&g<u^vhi*{bmwA~aP;+|hYvk{INT$?
ztsYFTMC>J+y#-$sq_B?<y+ZMUy%C9f-~a}HABOrc%!ho@8SH~1WRRfyw|GZGXpLK`
zvHEd4Z+*=<+{ZU0<8Ib;LlL`5MG|9c8R94(M*HxR4`X~Vd@z0R`Jnm`@*(U)#b+IU
zAA&yAXzB>C--Zq*#!1RgRB=SO=rM=pgYLtpf2Izp>R^wQj4+j*gB*?198n))^v_V-
z^6RcPvuN|Wjz0gTx+^)x`7qvxlrYMLF@gTf6%V0t2$Ou6?BkV0_{)bWK1}uDpbv+9
znC8QDAKv$2tq(JNnCZh3A71ximJjtiIA8H$o{-r-%n|akAdBV-DZR7O{Dfq&kOhJZ
zd6<qXv&aYARH)4Kst>OvG@oBrX{is(e0WDBi%ey?5AS9Tq}m%kyeY!BeAsd&V}%cI
zb5m6B`B>RXUk9>EjPe$=_O1^reOSd^Aj<D0T3$mV&q|`s#%;;O4}4fh8~X5>59@u{
z;KOzwcKEQ-hYx+&<ilqAE$6<xTh4Izf#aP>#_j8~#fPnQ!rPs;`S4=JG!iE5sSd<-
zTmm0<ac4!923=jr*=_fm%Evx@;=^tqE}9Cn6`~5sT{Et*$A>R{*zd#VKD3T1U-)oy
zh?{AzkbQ#vqRIgusJvsodyX_4i7G2jIuHAB+=mlBkRRcEqsmd?$2jZZNfdtNi~peY
zoDb)HI4S&VA5L*b`)g5t+J|p^IA?Z0LqoMoqczU*Ue-!!Oy9EK)-ICoeE8mn-=r=T
zF8FZShbx?jNZ7~^K3q!hZf#sYN|u^5GE0B*;b$qmD)>u6^O}(BKKv@=MnZm52<!eX
z<PX6jrIXpzEg$}7c&Xy@`f=Nbe|$Ki;;4!{KHOz|P|;t-Js<A-P(?*m761D9&N<4e
z*itF|0T(yVRa`|06%T!Q#Q3kGkcz@8l2v>?r$~=MnLB2u1tabvDvGKorsDFPBD`sB
z%8Op63xl#>ubM-J$5i~ms|8j3^L8dnFU~1aQbj2huPn~rHm68w6=l@;{cJ2{;w^2h
zU-YJ^D5s*liV7;u)$Cc33NLz@cyS!Dl4L8ZShUo|>=P=URMA33OBK~rJf*^^qMnNC
zDr%^BMnxT#y1g}3)KUQzy;r3(%O0PWervOrY8~3_YCpYscM6|X@f_t1yQQjlUPWCs
zeor9ph$AXa@1W;9ld#mG;?*WycuAm3g<D0siY6-Rt7xF2v5FT|G?d{r5=-)?xcE@p
zxmdlZ*)dJUfjezItXL`M#p_+!;48U3GgNq0G?VUzSIVKnj#cSRRji)qrcQGenQHuo
zz3ow@U8;9=7gs9|QbkV{y;NkWXrrQ&id+?KRb;DZuc8C(Fwxyk1utXdfO%CQFPdXt
zye}?CMMth+REf`}oeK_cXBBxWx~b@{qKlZNtBU*K_=S*v=ea`dTpUbCXXic<cMtZG
z>*|{4THo2#Tg9Vxu0AUIs%Yxy{GtjP>X)d(8v+Z(l(#y$IL-koKLo)F74N9XS20M%
zL=}@%3|672h^Ww13{f#u#Y-y2s2HYVxQY=fMygoS+4W>hVdABWqf}hUaplC6(KK&N
zadmWU$Z=Ke=<<o3{VD<~RId1B_uk3f7UsEV@Suv2im-~U)AN`e9E-0)ET%B4t1wj9
zD#l86Q!u7taZHI)e_Gy=X?d0iS!H7^e%InS72{P*5Z|Eion7sT``^waPF696{;Xo2
zim585shF)|j*97YEoZqIDrSmF+yB(|SWKBkBMef0j43sFXJcO6D_&MHmkZq`&TFjd
zz1<o2xA`g-sCZq)QWXn15{`{7Cq~$l+IdfV*Xj95uc`R2V$Q}19hayeviiN4!b>}s
zsaUS!EfsG|zi)6bcE>lRiz=2f_xoOH4LY+TFD>NFkVB^By{lrSiXAF;s#rxe6(35)
zHFO>|eq-TA74NH9tH$qCT&H6F_>LY+X*sRj2iz>3ds4Vw1&6(Xoi=fEB6oJRr|`g~
zwjZh3q+&Cdcv{|8vF8>Q+%-e$d%OM6b{lJ{IK4PO@Izbbb8GBU@v(|8RDQsOPh<?A
zs`yOEZWU+eq+NG=_o(<>B=l-ddF`dP-L3cn?Njlk3bSj^W>ek!xy9%wRdWupsma~A
zSTn|UJSeqxj_r6@MZe4O9yyF-DvmRt`BB7=6Dqz^@jK&{ij&+RDlRdm(H|N(PqB9u
z-*U7nzG2b1Bns!w=z2!QXiF*5)pbtAdC|O}BIO<Lcbsg+F4Q6aUgRVfRs5jhZ!0V1
z4L6In9QIsM@uP}gRoqbVlZu~J{36OMy{clerI3`Fo=dzY^6P?Y-ttnybW^gwapEN_
zG5cOS_xt0^{K+L#ahHLeA;samrQ)`VtBsxHe=|r9t@LMhX}yv2AD#l-u;-IF_|pxY
z_Zj?|^~bCHClwzs?6YN$vwI^a@sS93jZg0GaI#7vKbBicVL!H73R|naDY>X0#r%LD
zPy12aj}m^A_oIRzkNNSqAEo^$<3~yAH*l8n<Jhtyx6T(MzyD`1V)d*f`vqrNKT`ZC
z=f~g*9heHNL{ia@N`5@y$CG|k_M?g)eY=)rEh_vsq|&d4JyoUIt$Qj}^W!N$YWmUc
zZSQeQX;HaDbw8-URKt(S%iJWjq?8KbLMgTVc*c(gel+x>jvvqZQO^&TAJ6&mydSB4
zIQ$subY8cVx_+!rbAIA*CcTsHq_^10?nk-IK4mN9kJop)IlD~fVYidKz8~*;oawgG
z$dAT;H1Q+Dj~Dz%^CMy_>3(>mwe-f$uC`J#KZWg7&Fwx{+6lEzD*0wQB~ATk=0|fs
zGW{4Ez_<Wf_|ejjvwnQ*M=L*C`?1)MSN+KHqm3V?A5lLlK1yxtM?XLM3(w|cg|zph
zgC9A5ehwSg=_%Mru&ZFMU}rz_gixo8A1D7zC1L93M|Y9;NR*B_RgCgplI`usi$eM&
zO8c^-8}W(*{21tmU*!3MBN94;gbWr`{1_r+sNgU`Rv#{;m5gDeAEOfT(SE!ne2k#a
z4^_ymzR9db4ES-NUcI0nGg2HO!LVRNP!rSzsbEN5lEybuV}2}s(lNyki)(iy^+JEA
zP5b-fugjRm`7vJj1i^`dlM<zq{a9lwRO7oSQ|VVZj%j{OXD`BM`tgbo%4hj8TlgHo
zmlN{2e!dx-O@(<0$$UQ+2w#|xEb`;1%R!yj{8-}0XMXJQ<8=<(kClF`@?)7FoA0L9
zdD@{{4wB`PeM9g~!MFT)TL?>6`0<YLcLl58NTqPK%xHrj8-=V9d{6LwKh_HQKyaPl
zdO=RSez@F+etcEG-VW}O>!}|J-y}%kW+7X+TZL>($hR|?RB=#&Rd)KZOX`w;EaVfx
z-F|$UkX!z;pZoEJ_~$o%?DgY=agL)jR2|1YKgJYyd?^wN_X{~7c+ihSLJlWNkNClt
zhg3U8cio+KoPn!wI@1XuUkRQR{MwIGiPF=4?6wuEad(`NF$`(zIOoTCE>Hjs1NhF5
z@BR4Cj|YBS@Z%x}HrDYA_lW7(*wgX(uc<%K+p9V*`EfZhqbq*=nBYJ8@pFP-Wdyh%
ze}88A-PCJ-T=%2%!_;5>xZ%f5;mrOc<TpQl_u~)YfBNxvqVz96ZY6lL7LMBqUfC*l
zNBCXAdkOh{KmHZYF|+Z9emr6%51>K-Ndc6-nVSC~^|1g71<+}ai>a`X<N%5!Bt?Z3
z3!r#HQX+t_?x#}u@c`ETn#xo%fKmxwI)F05%L=9><mCeRxru|y6$2QvHSOWMY1IR~
zddN{JfXYJ1s{~Lr!Ji1=N#WHJlBWWw_NY14Shq$1H3O&>067A9PRP@Ol++gTOaOHf
zl4k>`pB1n8d;oO=NKMG=32_KIIqM^3spCqNx>+m1|5Y800%#mS*8sW&@InA-0luho
zWCn2TX$QSD;B<HbNDqLdiC~7HSCGP{0W=fdJR#|IuUv}&T5^K_rM3!S!c&e80UW-W
z+B$$NA#DWP3T6wo6QoZ20Oq7QNOGhi>vj~<Nia8n&Ix&*kS^@Kg@bC{1LzUJ=l~Wt
z>h%nuR{*2P$2#^0oV^1W9KeVrX)gxQClC*keFX;z_6wlDkO6`N1*wxCz_&Nz;k0Mh
zibO?P7$V4~h6XT9`0xTrLOzmy@_Q;3COzw5?=R6S0`PIDxsJM{9a;ctfVaP<`UL}m
z%m#&o0thE05t$u}SWD;Pj&>LUm_o>-0mOt`35m`5-i<4dXGLlT5e;Hu0FweJ9YmQR
zCI>JjfL#H69Kh57rUmeN080ayPJg?bx<qhB05b!a6~JF`P&i-6Y{5AJyex!8a|3uK
z!ROH%Z>LhYKw4NR$hwOHSS<Y2gygjV9F5}5P9GhA^Qw`rT>LHl0G4y%BF;AgSQWtP
z0N#`=C2t9NJAf4l$vZ;c6<kSA80@6lngHGlU~>RnYR2Etd!OEZJ#~ZNTEPzjSSMt?
zAWO5tMK%imFd_LUfK3Um)+xS4TH7kPO>n#54ncObGk}v>4w6p-*d4$h0sI-jr<_6u
z$0^x3(|S2S3t&$Gp9k;-t=-FcAb^8H_6D#|2!&q;us^}wCCeTXeq8Xd;E_b>Q8p`_
zZ!EJS(+S2ak(^BEe9d*~5idF&z&8P$;f&H8R|5DkfV0BC4d9%R^8s8G@}1!Kf>gc`
zz;E>(BtMAcQbK+?fYW@2OmqB1w`t<|Rq$uQtAZ5%62P?tzaGF-_fjcjx)H!lk^d(6
zdqStClKfWyw*v9^REq@hcL335jyYu={{?Vc_&<Ua-U;BY@Oy&y6Y_thE)^ayXq1iD
zeJJFSU{Vl;f^m6aL6YQP{3InQ8pN*^9L0h-r8$ZVl9UkgnBe1rB?U_bvAMK^3T1;x
z38HNf*+G;GqI?jJAe=!|2%@^f@oA|RPX*(?S22i6L3HZwV5%&nN)S~Ok|%<AGQq0_
zk<-sfwdz4m*~wHRh?+sv3IZZ|R`6-T+JesrQnOAFzZ7v4)Os$6=S5yOQJNY=x4B(d
zS}zD!5Z_!aefqcf0qqVVEeKB#^<}7(G!W8Iu#sTnAYMq6W)Cb|^j2zm5Sc-cFf|Dx
zL%3J4sbI52Y4ad<_iz+wwh&><AX*7&ozTe&qK)vwOP$o@lW@Br+6U2r%arEum2>0-
z(J=@mh#@qTELmT{+#os!kte*TAXl?X5M2|zTM*q7yho6~ppU<=&eThUy@Pl$QQ9Yn
zYey;+l=cgve?mSWh=IcM1qUVMgM;Y(Y`nGa{!Sgry8ot*34(l>;Bdhaf+Gb-1u<F(
zbzTZ$eIW-4t?dg!4Z<HpAYtK15Wxfw1rbj0&*~J{gzJJvLZ0JHjs;-_@kbDU24M#=
zHi!>{_$Y{RL5vTg^qtgY^s%Cj2|+9j#y=OH7{t&$E~ZI51%j9&*{MOy6*4V|=|Rj8
zK3j06AoXVj(eidG$()4b<skTZbU|ycuyK*kPn0eQVo&*aDHm}OhjcA<aS*QxA%9KC
zk|16evNR#j+nKanhW&=%n}Tlz@wSi^L97m9O%U%$_FX~Fab*yzgr6JfVD>%X>jd9V
z=&TLm1L2>(n?@a`^^)BX#KwfqFJ}8q+~7fc8N_~iW*NtpAU@$ldN{XAcAMaK!5xCs
z*(qdK5FaNbua2+8Pc3%`kqpPDL3}1;kKpHmUkL6Mq|QEC=3XkvfglbB@nccPr63M*
zl~Wu{CxbYg;75Wun&8KRI4=A|Lh@BG{`!|yzGkoz;c3D1-1P~aGeXV=@vV?^f_%1T
zt?v>#-wU}A#KnZ<halSh5pTJ7Bgf?+uJ9?Ma;G1I_({mmg1-u0Wh@dxg=;}v7oO#I
zFndGz%|z*MLVg$Y+>1Y4{S`!&5cnN{TRZ|7zJmBCh_a#hp>QXNyNn)>Qj3RhF9`3f
zPDvr`_qgv1XZGJ9{!8!&K|D<GM+~8ZoK&E4p%4m7tz^L>f<*;cS}cUxPdP|RgyJ1B
zJr=^_!b>J3r9vp3;AKKk-f~indpRW(j{xODC@-XfU`0X7D}_)w!Ic}OtA_AI2v2gR
zaMTW=+w+cU!k-ePuzCnJgx3_Tm5@Wo(;;+i=Aha$A=DA$JR3qiA<qfYT+fG4H^Eaw
za3r`hgg<SC3QVpL+zEMoAq@l@hEQR25h}b8LRtvhLfB4u2<ai@hR`{LCZYJ>^YJs9
zjv-`(;0>XvNLmQ8sF{%FA!H^bAADb|WrDX7(mI4JA#DWPCQ7qIXeYdVLefD<P6($1
zH4FOf#D1%|f(x_rLg*4gBm|8%p(R7;AHskTx`)t%?KgDw5$qY_C%o}2Q`gfKdkcRt
zAz6Q=R^Jeo&Z^Q+BtPD&OSOR^<cBaUgyCE`{scILAt4M6@!PQRc9c;36SotUijlun
zCf+QwcP<wj5yHq2d?Bc!Hl=jYQ6a3TUwCu~FR{wWB=$Z=ijEaZWi7unyWr>g!4TL^
zK(ZvE5Q;Bzg*mD7X-regxbzSV>2z}lW(d&`-VI@82(b{X5MB-8wGiwO#)hyU1jxsH
z<3gB0n{;=M4`D(GkBwC(N(<BZDKH0lAZM}&DW4)_Y6#PW@N+#1YmZeLKg?zInIX)Q
zcF1Q7nIrhJ;M@>i5i(DZI`czV+to?3kUQnMO0>+P5Ee_<<WH4#FA+Yzv-62&p4US-
z+RiyRDRXHE%V^%D%;kb_2)-%!mLQAX7P2CQcM_7OW0h6X+WYJ@gw>(=r`6rYDr-2H
zvC4ab){|}uKL}x62<t-_*C+dI<@609Yz*O}5T=Y(I1;Ox`$MkLSfxydfv&Dj3O7kp
zBwIqbI6nT-<kk>c)QXcGA?y^Nyd1(Vx?)4uc{)i5ABXTs2)m`?-VpYM@M#F2h45<&
z*B-$y1V86EKlM_`)b&&E-pkFu4B=!5Uo#Mea3F+(Ash<fc!*zb#$lReta3Dj<Z;TD
zvC0wdg0afYvC1)qh<hEG4lm4MR(;fQRMAdfg-~^zLUM{~A)Mok3Om1Ha2TgBeH+3V
zHh#-PepZSK<kZRTG?4gxDE_miOM({!FNW|#D1Ns_>v77(mN^ACY*eV5c_kG8ochNQ
zehT5|5Uz&sZwUW|@Jk5SLijy|KSH?9h_TSs<ErNdXU+Y1)x&h_;R`oI_)W6?$0?NT
zOmF*V2!Dy>F8z6&aw~+tL%2<A{NCxvZ13KmJS6{wa7QEy#wi1bxYv$TDnHfXUI=9h
zrQHu9)$1mCK%*7zUMP&hVLS}sQ3y%lc+nT*lroME&%c$s@?zWMFp7lHdc5*j7)8S<
z7Dfrlem_pRGfpWxUMU_%-SG-*WjQ+ND|%D&@i3mO;wc$MDIuk$%`#z>71DpaqKkg{
zFe-%cas+cDs2E12Fm8l#GmOe%R0$&-MkI`?VLTB=n=sn4sW7UA;RwSS<~Pq#J&f96
zJQGHZFlvS|sh#s_!CHc4$5f&OVN5%hG+~K*+2W+aeO+~=i1O!!JR8PyLf%-ML?IRG
za)cr&(61MUD~zULGz-HWM*T3-!tjLAKy(@jHcaTV1*XPfydaWQi<2t$b)|>VBn+=e
zG6dNd<<w*s#Le52nun1oMJ>W87|CWSY8gf=np%po1gXzviA}FI%MPPm7~R6?9!7g9
z%?YEUkPcxi617f}?IM^f*jbP*<O%6>-$ULtjQ18Nz0lXyBaEJ53<+as7`?*i9Y+5!
z288iqfpQpqWrQ;hrqimQEKcf|XzkeIq=8}NhcQSb1%qVEvwM^$4h};}XmZxWgpUkk
zRG8l|k1t%Ie~XR~GH<-X>}cU?7%zn}CX50@QSKA@bN{;hVFbbmN;VY6{A?!&Lj{r>
zZIiSx^e}dX@o^YN7$&U|#^NxdVZ_21&#(7{VTEB!^>KpiVyqaAjdKYKTAL_EQ^J@k
zWRl=yL7I!*O$%ds7&AmtFy)zHER^glLF&v7V@`s<EM%_WD`CtNGGB0k;5#z?g89B0
z#%p1$4r5IiOTu_PjJLyB5yny)M3mo>0WTN(_?Nif2;)tTN4%Z=ZX2%@wDXQAuN0*G
z-7x4~^uSdjp$^@i^7q30<wATd-VbAK!Vf<PV_g`3uIs%%j15xCiWk=P-pGg{wLT2v
zqeRP_*m8nz31e%5Zwup)%xi~8cFKBjrJAox`Xr3qVSF9NsW3hb<Fhc1gmE;CJz;zv
z#+PC2mnvTf?h9kDkOJ3@&*eys17Vz9oODp+BorPJPI5Sm*|jR|Xy-hZkbEWNxZnxF
zf~HOizgN22=`g;bRogj#3F8b~4&!ndSHk#K6wZh7ose^a^po$yxDdw0Fn&l#*l)q+
zy_Ar|O)UfaF^sDs{7I0SKZ~7dNv;}OyOxk&598NFb(a1X#_x;+5oAU12bY6UF@h%|
z_$!QCVLS>WDT2SlxGh!w4dWjn_XY2SaW{;6!nxMm9R*&&-bwxwIr#&|f8ho3r%(ii
zBPbO?=?Ib|C=%f>S>nD?G=gFg6px^UWI1dK*=9kl$3#d;fdxuRwxGK*5tNIdd<119
zNQuOw4b_+mmaKwkR^}-nq*4U5SV1GysS*KQg%0y%1l1yNMo=$;r$n=61hpcl9zhMM
zQqU$hFCut4g6AT5Ueszw@Qjcm>w9neIesqGiQrk06a+v@>PFxYNva?Rz=dN-<S<+j
zxFcvOa%$G+c!W2IpkV}!67t6XXACchFip@Sm@e2vFe3u55VqD-NHf8LZIT(`FMZ<H
zW@7KHgcq2xO$2Qt7#x8TL3RY~BIq9B+rMZZL5B!BN01i*9X=<5juCW<{O|1h>weMP
zNIXb#r3#QOcZr~@w9GluVwJD=>J|Z!MLi?v6~O>0?Jd|Zg8mV_7(t&1e_jMunJ<BT
z<@W!rV}XYk402!u`BIBb4HBEs>_Z|L8i6kYHG*Lg43A(`1fwGuk<c6&iN~daDH99M
zua^>~W9S>Q7XAnV5sZsqd<4M=LJ?S^6OJGv#Eitx3oXL`_l(=HU`VWM(53sjn2kmd
zi{OU1K|!f4n$#H^`QQ0FA%cmtUIf!wB&Cxhm?AB6kW;0p0-rCiz>ElHMleSdW{Ez#
zo-O3n{J6id7LP~{;FSn}hlNKGBx#r*!GZ`bMQ}NSg%K=@;I#;rM6fs#f3enKX40z>
z-XP>AU;A1T@pX|O6kN)_B3RA=({2%LiQvr$-r~-R;Qa{Rj$j2X&t85{J2@l!9jUT1
zf_EcemTAwl>=IM5-+a8n>Il{_u*}S+X3H6ITpQu9!?2!ROZ9b}*X-;&$7*l@1+8t2
z;G+m;WhH+ot@Rz7y|<Dlc}Di82!3ChOtq~MY>VL22tJEoI~_8D-P}Give&<sw3B^R
zaeYiT80Fq2IBc*dbCmm&2rxUFgrx_@XYY{#?~CBe2tF771$};NC;of*UPh!D+2lh;
zxc1WmO<V^e7}F&F|Kn_mcqoFy5gdu&Xar{>I2*yS2#!Z^DuUAyoQU8n4x789lIPrb
z<@fRNe>p#FXEXaXJ8JAAsq%9rw(|{FxrvJ@FgE+!2+l=tQ54Qc@LdGo%Vf``yY>vr
zSUx;s)TM5BR_9%afLLdki~oWCgD8_+iQq?>!ovuD62ivsNAPn5S0nf(f*DI2-;Ch5
z2(CqNosl8k^(*~T$j`S*@1L1X$-&#De;3K04EsX<5FEq5WoPhbzmmNz_>UlK@n7A?
zeADf*Ob_{8Zjem_?@1BKzcP~lxYjq*9te{39+u93W9RS+X(+7WqK+SQBx@+5;kt%j
zH5AoQOoOh$&`?}M2@Po)JQ^O;@VJIr8la)1hEf`;XsD{8w1zSo%4sOCp{#}-{k@K4
zPl|?P{k_E|DC8ehDwi}qtAd6~8Y*k3s9|$q&*-H!iNT|p|E$bBf5tO@r27dCPilBd
zLv;<WY{?n(VNNv-Q?GezOi-MwGHbBn(adhkE7sKT^?}Tf@4ALB%1DoNep*9q4Gs-X
z4bNz(BmJgocvi!68lKlsSHrlr-cR;trcY2h4bNj*s^q5j%_VW%@>YG6R!@UVLo6k&
zu?Dw>YLAtxuc3j4+zAT1$ZqLv$cY#AG}17%va3tEw9OZrcVFfik)HR0h7l8#2@{lb
z4NWu*)R3<sLxWdCI}PnMG}X{dLrV><G&I++Vqob^4X;j6ULBKbEzNr((76SB{4)K8
zvT3a~WNB!t;hhP}KlypDj?ZdCV>b6@^~@vw-NKu#;olXV>IXV^(2%3yMGbv4bkxvE
zLuU<n8g}>0d%U=(&dSVO8ewJTk^#97v%Fns()qbpt)5*qT%M5MO|ZKlvpqEQOz>VB
zdMEe+e)y}QpN9UjQZ;J1Kb@d(fvWe<eLN*?fQGf%-ru^o25A_qVYG&qG$<N|Xc$g|
zh?R!Y{vA_>X`uB=L^@M>T&uK^Vq}_h6y2$?hmP@a5l^|Z`C~NrGz2w-G^iRb9m|}T
zk`~b5*Ki@wnc4ZpJd`*u=d+zK7wAB-2+cS?t9X`I(-8SR@7x6b<zZ)2LsY|u8a`r2
z8Y~TqG%VI&YZ$9xnuh801P$XgOwur!OEWBQf`&gQC=)sIMHzYLdzPE1q^IXi(eP=K
zXR3zpQqqRBbkECobxcV+bg}si4Kp>&rE_YSrD3*)mpR&UX|)S^Mx4r-qaj?xQ`yKR
zdWw6V)jH2(@Yk@AemGHCpy9}rtib-v!jIA_WP9Jq^m>bW(obZ*s^K**x`ub@#tSo+
zXjrb{4X$Yk&+8hNYFNho^^Lc|{9HQxzSenfYN+?L`z;M`b8D3Jv?`M}tB~iK*@+&q
zf_pP1jeBaPhE-f64IgM&tznJEZw}*qdP_>$#Lj7)Y3qr~sef`mFPqjr!yUeyU!zjF
zbs9Ek*r;JW$JyNbXPGolWZ<g4xz_N!b}hWK&UiM_6S%W99M`Z#!&VJ@G<>dMn}+Q)
zmxgl-GPp)NG+fP1`9uTxP7S++d@NXVM1Kl*({(2*C(FdgdGlh<XR@=nt-jE(SHnRK
zhcxWtc24%}*Kk0{mo!4M=hBt@%11IcH}?i6DhJ2p<^(!#EbckX(Q3#n;yJ4E=L4PU
zPtBS(QF(WwazevbjBFZy&~TFBLc>`N-)i{mLE0$|r!{;duGr~d<{4S~k;^<>@!b;@
z<wWK=4d*p{Pv7GfOZNQR-1{AObWu;cCVAWf<A>(f9-7C!79E*;iTj1~)$ogkEA;&D
z^MBOvlLorb*utKlHJqBL9Nw3{H``miY+7tn&L;!B*BDeU)u0<Qy)z-}hK8FA8af8)
z_)Wv_TtOYs@dw?KL0Cs|9e-)K#l5fLKMj9txUJ!ihPw=;M=}|O{?X9wg}fY3X7BU)
z_ZS(<rqP)9HQbn}kY_aaKI)kAK*K|ZdIotNk2EAtQU*^+DWoGw$I+4=?xPx!&TJ~T
zu&0QQ>K#*Ndh?3v2=?<nIZ5eqJhRaxrG$>hbX3t%RmbBxO6sVfqoR&dI!fy(qoXY4
zMLi!Wx%941lazn7&M7*|=_s#b=C}DDjZZs%ICI$XOxmAI*{4MDN;;mJnpK&T&GHT^
zn|5naMm+xOcv43-7U^+!s=6hIOFVdz!Yb8u)YLH~C#42$^(gJ?;Y_y43I4G#_h}uq
zb$E3&)$xpuIy&4s>g#w`$8$QII_lAkWz(M5k*deHIeA@LyNio~*C7%LjY-P>zIl=D
zSuQ;uvgS=vIu~{~(9uwbM@PDjv?q!;($QGQ3p$E9JzqaeOVbfMl*wb|y-7;-UU@r*
z=QYvs`|3<?)eIeNujlS(BPBc=I;J$!(OgFd9XUEOb+pjYh6*}b>S(2-wT>(u)Bnl+
zh|?_L2~EiAb;k3{@H~4^E(342jti6GvA4Y*4@&Ly_!&e~R~?>9=j^DXla8)By6MQ(
z(OE|q9Sjr`%BAJ$*itSnUmHlgG$614nS9E->*%4Q7me8|rL{Nj)WVFOIvz|?iZ9L>
zGB}U1y*Jk}CGABWeT4KCq@<sY{s}%n$Uwnrld}fvP;|Vh<1H=_ho@trj!8O((YEv=
z9U&bfbd1#D)A_q~G|lpk((#gxF*-)eLgXZQE^W#A{7B}rwcVrp<=xS`^AW<YBOqNo
z;94hpR+mj<&<N{@(Cj)a9h#0Oo+xhUFm>MN>DC3O)OK?<qq2zHAXO(TTuocYSRLc2
zK*yM@oEV;$J~a2eeAfg$erSGI%)@oRlI$U$tYeCfS9HwNF;&MjdasUII{JQ_L!Ie5
zW^hPFJqxB~u@{or^u3uyrj|~7nH3ji%n@V^dDzA~SL{zRU&jI+OLV-hW1)^kI$qWB
z8b>%ezO0L7*m>RZ&Y$l&XtL7#Sf)K$DV*e4s$-ds<vQMA-N{P#d08C5uRk<rzgs3N
z0}f|i>F<48#|j;v>-a*)J38KFk2<#MSgB)`jt_LK)3I8|8XfQJSgYebv35N2tcjnb
z<=^SlZDGca1sQCUC+vD18+3fA<0Gz7A<srV{=7johA*B7o4DD}_oVM_77z5!&q&^q
z!|ahRdE0dCqSxuzu49LeuO}-zxe?CgUoGjm9qGJdW6meEGrd>GXIzDMGyNHP>%Y&x
zciOv0ntJj=yxE(R72;kU`*fUSBRam+v0uj_9f#>W%RG*cat`P?NNWtp-PG30GnaUT
z5lqK%9Vc`g)4>Ox7PZ~P(ifZ8FXrLA__X#>miH@$uX1Ue<0&1db)41lt&VTFvde0o
z;jSs{E<Q!MyD)?2<Go{<3@_(&e5d1k9p`C{@oCkkD9?ra(-eO#&bT0BrYkl-mU&6X
zWlr3{CkC$Q_)$kY1MLm`q~m9XJ_8jDT-EUl2gbmw<C>1^I{wyiTgR_DZqP~$_4J2j
zH5U%gyUEpIh$x%(AT^Vz(G=xRM%QkxzjWM^VYHv344R_YQ<NU>WYS&#(Q$`sq~kvw
zcXiy;v2<VheY(~Z<xEX?+VI?GGrcFTHs3iptKR0E2i%FvYmOS0%iZMn<Ruv>WZ-dw
zw~M2&fn)<E4BnZ5A_j^YT&$YK4Q!mElnHg-KSe2Kfb)I)MCO`@X>`t?$K=-OlyY&3
zvcQ*H%0OuYG+K&*G6u>TSlTH$*uTPGXFPnm;DbFwS>apWat7+R@^W1&8mMHTo&lGE
z$_A<!sBQ4R1ynWggn=3cY8v1QK55`71Jw;wlkAOr7ln29XMS?V!;|7f3wJF8;K&!a
zpEl57X<qG?-XVSS=p<`aW||8!>KJ&|KwSf=M%<py8F=16=GEprKA3&~MEn`dVZ@&?
z_7?Xz4e)FtpE5N5sN?2P4R{SSWy=N{8b~wXG0@0BW3F<t=LG{}f5^ErCGM__pFB0V
zE7Og52x?*=!$9AonS5HvoR*aq?tJ4>+Sgt4ni*(rptXT44udl?FnD}cOWLZa=V+n$
z`ODze$^bVwy}D>&Pa6Ym4P+bfLy+5(hxpBYx%5wFKR=P#fs-;Y*}xP79Sw9cFvft-
zK(2w#2J#IIGLUDWi-8vn^fA!YKsN(D4fNsyO^pw`yMZ3G`DDenCX-Ls%F?{lP-m`A
zodJ2h4LmnhVYaV<eg^s*7+_%9ki0qvb1tRl@d<}V{6GW0&(CN+RUu!wIcKl|#lUa_
zBMb~NFw{V)Q8l|wRT>}2?AOxEJvEG;R@B2M`H==jaoAIpmkf+Hz&J3pgomfnh^Y#B
zKwbl?lp8P%m<9p{f;5W(%|M7eCxr_aHuxvkdB!d8ck?r<UH49%l2xjoS7*PKT}*s3
zj2eg;7{?V6JM(GWGGKGnC{Ib_BWUzMCLjE`;u8!ou1+*CiEdxmQ>u3!pLTdIY;WbI
zCrstU4ZLOGZ3EK{%rG$Dzybp^4a_p|vVpk<X47de*O<eJCwcZKd)OCGe5}rVg$6m_
zbDj}@41Qy(!iD2TW+Yi?V3C0(23|L?*ub62<z6-L8mk}7q!V)gZl0>}Mea|hy~R7H
zEH$v)z#H`QB+oJ<{?x&P_)P=W;*4_(bEhhKe1Kum3Ip$Ow;K4+z`F)k8hFpZ`vxv7
zt;lv(8CY##je(Jljz^{{d}bKh!dp7ndC-!YYYlv0V4VRzqt1SmmfXs_-oOR}M+W7Q
zb8|7`O@AlzBLkZZY&EdWz-IbbVfX!u&9~6in|ptns!(U!xUB64c5n$=cvDB!+-YE!
z0X|W1ji}7?mvLBqEN8cYPYtA-Xky|s1A7=ZxReGyH}HjlO9n0**lS>)fp6*g2EH_~
zpJU^A3>+}xPc;V(9OA|=?%@{ZGIbk}d;3BBCCpI+#|)e?aF+XPTGnv`-x%=+Jf;%{
zz7l>?@au&9l#tVc#g~`mi_`m46?Vbni7QAvZ{Ryx{!!XR1K%5XWop(111+nTTUt8p
zr?y@`{yp8#`-8zJ{7!r~fRX2lfgjl#w+7?Cfu9XrGjN?N+tPj2z{8~#e_>>J+Fka$
z{BqM2K9bQ_e>HH!z)fygUoIc*8eI22_Au@1D&>y1^!{PsPXm7&xNYFUzVyEgzKziN
zmVsz~9-V{%{N-br`O7Q1;QohR#9=JVxXZBM$>ci#rH*C(crpK9gEzY1DHGLAJm3Hf
zq?jmY;*o(Q6U9svH}U+8B85y8Hj!*1Zh?!<D-`jpb9N*aF;Ub62^0Ocgo(#Ylr&Mw
zL~e1<<0k)mG52QUJl5*6IHR<Qb;Wbam?&$;AI`^q7k|2_-8YX9b<Q91%d;I5JdU3<
zQPD&t6ID!9HL)Zog+{1s#yzUXuv{V?<_TsOW$>J3+^aiHNgCj-X5zOVc^RG4YM7{L
z!fB$OiCP?hi8>~pHSx3wKF>U3#v?#&;e2<ZpFE+lk>@x~6Ln3bnrH)e^Jz+j!S11p
zGxC4T=cZ#&a+r9ne;!|$xJ<ZBG&0ecqczdM<OMi!vv8N48B&C?u2v|U@jU)^jfpf9
z9uxZ=9l7!ON|wvV1Ma~~xi=rCWti}q2$=|*XlkOFiQXoEFoNbLGEH8(f=(t{m}trI
zm}qOFm5J6St}Uy`V|UHP90p8=sVp;o^z*@^=QJhTM0*n*%=pWVc3hW0=O^>?_+XP`
z#`j>>053g|uibKKIuqSZ^e~ZUqKk=cW_;JE?Mibkx|*O(>Ws+sj>x5l^9{6~CODm5
ztWu&l-+<yHA73?WUy<9#L|+r5OpIm~6a7snCWe?8U}B)S#9$MACd}sux8@8o!3az%
z)t!*VEW;gN<qb9CXX|h?ekPI(V;6jWOZJQ~G182`zKB1$HIKi8^pc4&CR7uCE@h^d
zhdV9cGx5T^aZjd8@UbmmB51~s!m;Uj@Al8-!%xJ7W@4U+`6hG|hKY$LCP}BJ3CrZA
z3W&1VcBT1#NQ`dT+<UCBXDnBfLozYJMC5ShyzldAL;s6;e0uj!QzlPSxV0ynm||jv
ziJ6?2i4&J<OsB7I$(d$i-<pnZOjB+b@o*%q%jV27G26r(6E9QYQQD2kS)He3aYlSg
zYA!vti|Z8=3sz;)Hzw^%Klno40uu{Ote}6ISY%?ciKQl%nRu1%$Gu?Ub$WG5+IF~U
z2a<UQGPh5QN7v)iltq1Vmz#Lg#9Job5I^UNFU-$<+eD#4o(2>1mu9B%6-u`Y`R|%o
z$<1hDy@^#OR-0I3;yp9|vX}0}cDO+A(~(lrxE$#VGS<@74`+TL&c<y{oed^7a)(Y=
zxLLlr(DT|f<wFxm)0JH*X@hThH=Ec(kDY|pld#pqHhRKX>>G>iCU(%y7E&ziG_i|2
zE{4<?J~r_Q-7<>2D0Z9p)WlO!RFC2_6MJYS6Th4I+{70qE||O>0()s^6JMLiDqH+Z
zF6%R{111h~yJ;Qwn{Z86NcdH^?TeBQnV9=T+F@>-wr-{)LXMg^mXI9h@(KScAvq~z
z%3oDa(Ja?ePn+>CqJJZJM)0g4h2PTO68yZ0?}UG!khD2l>jx8;O#I3n#8UnjB*R5l
z*H0$OTu;3s_@m%ok2?Nr;;M;X*tLo4T#-YrDTCVEzc`42oxLX>cAX9Mx+w#DX=?A2
z*HTA5a<pll^oNN*8KR>o5yf97ZZS$nksQU}CZ21WcH6{1?DtIDv)fAFG2`F3Yf{&F
zkG}Mz>#m92`!fn8_j%OTb^dGOKOy7~Ogv2RM?#XKC=`vWF|F<zzZj%Q6vd)(%a9l4
zs&$QjN$lUjt|MP(J{HB}QIuSiR3#cW;Fjh|zHjT6jG|ODK8Dg!l!;>X!L+hbR1!&w
zU^&6^f>f&@q@rN#sHgJ($#y)IRW*t~&ZRsN#jR4_Ck3ksW=~gYL{T$}bdENPT2Ua1
zXQOy7il?Kf9Yr1b*ped8MEMu7Z8@qcm0fAe9JD7VGN_yD`6%i}c_#^4cTc93Qlnr|
zrL0U|2g+}DIinafU8xs^i`9Qmb@fel3#lLFpU^oeX%Iz2ku(ydq_L0}qDV_fJW=p=
zCKhEx;f<nQ6z!vE8bvd98bwwV&1uYrF50a{6u)M<GNb>yiKQhC{&Cw@f+TN6y{qTA
zJiSv#Z*aAVB6W?ctzb4M+ttPFXO)u|t*F%@ikxWN_c}(AUDm^C?*1~PQxv(;_&5E`
z=?bw+6kVhElP(lRw<x+taV3f$qv#Pu&nWswF(8UwQS_!gUyd*3ia{<q@QYE9_lY9#
za^tbbGx|o+k2)>fOwAWH9vDS_ly|LQ6^$0f;3y_WF)0cqiXl-%qliT@G>TzSgrW#X
zF+3Xok@9Hqs1Z?&jAE2XcykfuFQmlrr6}f2SH`ek+C(_B!6^K~0|^PgQvSK>WDzGD
ziQ=CbW%VdDX?bal_{~C0hGfkst}ZHHAmQ()tSD?QgxqO1Hi}=$ImSgXUPzy6jtN5U
zs7}f!M=>ReMNuq{Vrmp4-1X)}@p2T?qL?1V43W$feEIKGmd>i{m=(orkuW>0f@5wJ
zugDk{aF57P=Sh}>nNJf%;x}u3#QW2t@o)Z5RFYqf;<YH=h~mvCI#qToiDIb`^4ICx
zVF$@Fkt|Qh3-{^xRupeX<G;LnH;NU~e%We{cMAHAl;tmRm}N%=w_UA{VrLY)IG!lp
zi{gDz+YrUZDAp#%_CXZugs&I;<;D0NO-vt3cB|k=f|~?43vP*GkIa#p+oISm!X1Lk
z<-WL&qxd9>FQeEm!Z~B(7fJ0F{wYrZA$tTV|2&E>gzpvHC)jjgyvhOL-$ZdHii1%c
zlI-Cqjtil}5g|tfj|pCUE?)73@UH|<MtM_8JhGh<JT1uVnV92jg8x9P3O^@!o?A@F
z_fcF(=$xLeTog{i>X(FHPL!@ulYWZg=O`G0ey1OD<2P_!lPt+Ek}WYm={kcz6gQ%{
zDMh~tUYo8^XaAg}Pv<1DI@2E_XZ99@e-ux}P(6m*bbf~77)r))CyKjKB*joDhI>)m
zkK#cT52N@uifRLT_A1%pzbKY{-i>@&&rUb$HY)wK=Mnp@+o;OQPD9$K-=D4&jv+aQ
zVlfntp=VBBkr;}`(BkEe6=o=lzVi6Cd6pmd%suJZ(<!e+43EWdt7*D>hEnWMdNsvW
zDu&WARF0ua3}s>n*Kn1Kp?nNwV@Qd?>ecP7lkH#WkWRv)3NciS;mjNEx3_0pY3RyW
z+O1LydwX^}cgn-k>$`KR#_)tR@?;E$4yRX(L2H-yZ~OG_y}MmH?x_(&O(}gohFUQo
zh7E_)pN;V<FnoR}y><-GkaS4r@WLlO)NeOKsl(xY?cq3|i^ZqR#EDGYmBa2FF*su|
zV~EC3F9uf(XWg#8F}P!>A4BUHvSMfuiyw2|7@Ee=FoqBQa5ajdaSSiS;^$p@3{7H4
zi@_7aYF;l^)H$ua^W?m|j2KEy>wVyxKGz>}RvOxy$fA91)0)N5JcdlR-@(~Rutf}G
zQ+hMoGKN7j;t{*lvLZdRGuy<_mTSSWJ(H3hL%SHd#n7Fjy_eQLhMX8WvI~B7gbFj1
z4<_{L6hm$dU1AvWW%{BSO6M4Fr*n_JoRMGAofiWo%+{&w?i%CGmU+~vY*gaFs&#Po
zh{c~7_zmY?F|_L9?#&kFrM(z~v1<^=--oMnBWGQCH!agIhW;@Oh+$w1`BaGE`I*X~
z7((@3F9{BgK@l>9*4SHmSPVlYyK#m>o#8Qzh+(8iMhPAe`Do!(_+f@JCI(*&Y7G7u
zA|emO5EQ}&Lqfs{{mX6_Yu%lpXd=-Q@|2m%e+!a0;8+a5S8_3ZN<S2C)7mkNi(z~W
z8)Nt|h6yxO46np6FNR5U<B{&^G0dQqVi<nE*c6dW6`UscbW;y?m}bT>JBB$ToF$Df
zotRAd%Q4Iq;ox4$>^fg?ehdp@cq4{4rD$Ocuf?#0>k{K7MOfwayejfTON;dFmCWqx
zl3gaaRB(E)c;m|xGh*X!#qhQit%+fUkX3^32vYf7Au9zRuIas+JNkV$)3E!+-V-6o
z`!NvLO3?>`>jc*eZeVOVUYb=tieXa>yZA6K6*miRi(!ip_O(^W(WOPmx5uzUvOA>_
znvpGhlF-~u^NOLq7G;{~vl#Yp+s5z(osF9`hMO_$i{VS|#~8kiVSfw<VmKbd30V|&
zagf158aym`EQTXunWKUQHoq|;Zn3Wt{eC0lqzvin7*0v{v|zyq&j{yG|2yqD7sL4&
zF2`^shVMkqrY^+rz3?wSjknBnF@_&vxFl`TjAu`KSp7%Qxf;VSG5jR_XTcpciWk(n
zCfQ$OxGtmp|9&!kV)Ad4#E@j6kQH~uKN!zN`Og^s5^{?xBIIu#0o;b-UH?cs1<rO?
z2E$=+JojVxH-`U2zvWEjVGIxckLIKQqghzGD{Y~Sg=7mwBwJMQaSO$)|LvpVLP`ie
zW}#r@B}J{2;9p{M$_r-7;gz#c-oh>mA6uwkp`r!df?=T&^)0ls(B6W|W6r|!vy=EJ
zTh+o77M`?FjS>rWEj(qRx`kR6V4>4YrG|y&@{^OA7TmAJtE8`WK5e14g*q0Vwc@`O
zdWJ3JyPh5J6#0!h^`5hE`0a|+?7J_C*|og<(}Kf7a|@XkoEGX?$gtqG;9{E=>RV{Q
zIcCRiGhi*=@<G%lx;l1qHMG#@p`($7#zI~YOcV47vNYX76XCVbzsRh<BkAtr<(gV(
zW`Qq5I_+z=>9mKB*)1%zv{15ny*3tFS!m7FqhglDyMNu|-ghRAbo1J3Wu_8d>1t~s
z+X6?<d$EYGDM=kH<XGrop{Iq87WhgbV3*G0jAo^GvXDz7&s0huOzmueIDe+{{ND5~
zwCCRRu7ceJy9>@g=&koeg<c%6g}xU4yzT03;YA^Zdb^qJ$5qI5GL5p(U-*E8WT23I
z&Wp|<ToD{;VTgsH7KSA>htsL{Bo(wXf}SA!|4T+&c*(*T3%-PYNQi2|pO6GB1QYzn
zHu0vyl8p#z7A|GQg(erSife|2nHHiJVisO|te$0IoQ0+hl5Gy`tIRh)_l&hb+_b&x
zcn<7(>IA`w7QQUum?Ye>#5vi*6#B^$=TyOIg3|>lq$V$E?9$9N%ff66b1b}UVfEp(
zofhU=c*Vj-3m;mTXJNjDH!Q3_nYqBiLXL+^Y+;dw#oTLE(_a<*aHc~3-n0y+b93`v
z7vWM1%Ph2=l5uRNvT=F(AKBfgvs{XPovFMj<SmY;vg>UND}+$t9U<>pSZQIEa4M`7
zvf9ELA@3#R?{nR!cPdpO=Yxb~9fz9W8@TspDXjhxH{gtnO%^s=xb;Rl`4;-*yu2MW
z@~?SYg>SR4U5GU|gNdb7J3T9->26QOKD|G&u$u<4@sW)`uBCoz;kJc;EPQ5RkA=@I
zd|~07h4U8nTG(gdsD)!(4h#D&9I$YZzTK{A|D#UNF=yY_P0P1#dWf6a!j8;zZkB@|
zCm-QnXxFr9``jMuGLBm~Vd1oeZ@3Y@ZT}Tl|9$7z7EW5IdCbYQuzAWUZnrZ|rX#B|
z&Tu;)kIScg>m)gA;adwO-pgS6cZ2gg3*TG#(ZWv_E?Br|;R=V^!_~G;Q{T((ALw`%
zE;Igo=k(6+bTTuY<j^Nh_87@*`m=?r7Oq?P)xuZjoWJdK{$e3~)cIUi*=rWEjyjbc
z&KnkP(rGRHVc|EDZ=L_1b-r=VN%G|n&ObS}7U{PvUNnclgfIDe5G9RwIU7~XWiP}#
z7VcW;Zli~ddlv39wA!d*<6jH^S$NFG<2D{xcxa)pjbs~(-*>j&>iK)K=aGdZ8!I<t
z6tdB-Qrmf_+UI?pUc^Rj>C9p_irXk^V{of<rf8eqC2ZW>=X~<G^U;T%F?DheZSa(|
zQOZV&jdC_h+bFTtxvfol!(?|E8}DV7eP)(Y)&`Mno@kR^-bN)Gt^dm@amZPL%7>g4
z1-HHEdg9-z13vUrwef_FG#efpPui$vqppoq8&BD&&US3nu`zn1vxbdYHozX=ch<Dg
zCgk??@;)t-sx8Rbm0s$~`NHYg=e&5>`K*l#r8A$iQSlS!XGfjSOSbpRZVDYXoHpv)
zXh2(i?5xLTKg@L7aIuTF>HBB7i8RZ|U(*}fXk??YjTgiSCBJf(50>EoV#l3S7*{{{
z@IX(xjV3gsjrKM&Y<O*C+Gt^;sg3!Sx(&}tZ^i}s&N;Ds+vYYtIGs-6xlT=6+Gs_y
z*vPUG%5u}rJ^yJ>d9j)9Ha6PY$hJY@r>D{>Id>|)5LD=3BgaN(8+kT1Z1imD*tDaK
zPBtQ^)1Nu){Ar6bmy0+{;RrdfF0$jgip7R*^>nkbahAKp9_NWY&Ym`U*_dc!l8xRr
zUbOL&jWIU**yw9Ru`$F(KO6mR478C?D{b)1nb&cE5cd1Vo1F*Q;J|nU54O>zTJA?%
zoS$8AvS_G{VK#=_7$GB^l%Bh8my>EExnvidqiihs!f9P>pZl@%@&?an8$&;K(#}2`
zstuD<w&AxCu%Xi|7o0(&jW8!joTcpeF!S7I&xTv=OC)#HSY?x^PSI{Z8J+vz%P~ZM
zzy&93#cWt?>bo*yW$rd7{)LlueH%P9(Ks99>62|!Xr&3FKob18!ekp$Y`kt`sg0>N
zrg8afEU+=%#tfT(LWj9FjOsZvZOpc@DO83YIEzl(%X{W^*Bl#T2Y71L&mDinncg=2
z715k$gPabwu~ge$bKMJVETW^@cxzdC&u3-!jwteBt8`BPRU5C_*t#}j)BBZ{*s!;H
zn3A?Sm)Tg(4Q1nf8*kXSv)=QTjkj&QX`|ui&P{F8rxfY1!p1u`R@qo><6RrGW+@*X
zs6<VYm6Dx5%e{PylM`GcGp&E7J^5Ptp^f!iARCvI<a_7Zud{LEv~zN+ru4LjE!`V!
z4EnA;+o`<SbLEJ0la0-E$gyZQ7F#$}HZ>My#$ua|?QFruWg9ze?6h&%#t|F4Y<z5E
zpN%hVd}8yOHGFR4=o#my^t$Y(4F@IdvGJMk5|z49(rlYEd7JYKI@?Fiz1&2vxDTIo
z9ysD`-MZ<18wYKyEtPqIonC8SIzM|wjU08G^AJ~mo3r}2&Z9Pt+4$DRIUC1qoUrkY
zjWagBvT>4Txzhf$EvJBuQ(VW(U1x2NM`LzJ&PW^k(#eRrVwN&{S@KyMWsVk$A1hxt
z&)fK(5ra#x+4-H#?^>53sX4oA$C8;BZT!H{S0rutm9F2+aFblI@uQ7GV^Mf4ezNhi
zjlXQ%va#%2=T#fO(zZ5!v2l$~^_er+q3QhIuIo0m@0}z!ZT!YX|GxbnwB#4@!{~SJ
zyQ9vhGMi34>-kfPe!T3wJ*3CqHg0nR+W3zfcB}Irx`d6p3_c~>GJB8hugVyFyZwC|
zzwdUEkNCt{WViEyjfY|Z@A`~K(nZo(@U+TYRi53kqyL)zKbo!s+KJ+OQ>8z8SKy<U
z-GurQk_VyWJtPl!^d{9HARr2gO3UtM`!2l~rHV-J9i@Y)DA)iIL`4DV2r3Bp|FZw{
zJ7>?FJF`=6`R?7>na!m0_H#ns1fENv0C#iTc)kQqRLshsKu*UDGR%is!2}8?P$U7;
zg%Y^3S!lT@r6uaBC}Hq0yZr`%kHz8%lt`dS0!<SrnLw!oY9~-9fzk<-N#KP9sw7Z0
zfpQ5{OrTN%<r5%R|DF{pcm$vCk4Bbcw$4<4<piEjq@LQGGweAdj9b~a*kNJwqxMx3
zKmr8J!ZkuQ_TR_H3e^*+kwDD^2A&I0tF=6$N_GbMpOuwSH-UNyhza--xUeozKY=dQ
zI(@Y(#e9QA3LAo#&gvQTC-Cjhv4#l{B&Xf@m`x#05*j7&#=Y#u3B2;T(0x|NW(lMx
z&?<q}2?P=dCeSj0^ZQFTPvGL1P&k2%1VRZ=IY0FF4U9&5hB~!K;Q9vPZjs1!H(qW+
zP9%XZ*9m&HPW8_P+9c36fvf~i9uT4lEUne4$9bVtZf=nZnF&xvdPnD$or<mxv`-+G
zz^nvMY(sVe9TNOuK3+?pV*;HL=$Al$+AD$133N}OM}ptHWwq0NT@vU@LwL_DM*eOI
z)c;->xlX7vvqR4WdMD5)fnKy)+u{t)$37SOQm!upFD0;GoxqsSc;4gN;Fh!b22iC5
z3{7BI0)rA5Ol{EanZcJ6smJjUFBP{3;>7<Bp`_Q4kL<!ngn9c)5BKgiS<}8+o8YSn
zj7VUl*FVGlx<kT{Qdt~pbONs@FfoBi)OG@65*VAnn+d#qAr-sYnf^1;;M5DkTP#W7
zodo!F8<$AU0mxyUwZgjzj8EX)mQa;-Lcwjq1aHKr+X9UFlM_fJU?gBt-f4a*0VRPX
z)%7S_PT;$&APGi1H32Qba}RL(sIY%qh++KOwVVV7IIfj|oxrpNrYGQdJtuw=+yru+
z78o9<BvR9isa_g8DUhB)OPv&E(pcLAn|B8G-^;FYAO+(&3CvAkRRSL-FfW1m2_9mA
z_o)h+Y*Sz{)w?70@LHI_BI0VDaG_R~dcEcS145&$$P!{Bffa=DAz@hp)LXfAf#seW
zmqmk|)bUx|>&w8(1U^WlrZl`L$m#?>qDLpNCxJBytW97`0$bTUf%OS&qR4GBHqaj@
z<(;)Tu#w)eRv7(L?1znkIz>Bdrk8ovH@*#i{)@0Jft|E?0^8{$`%*^PkpQ3U)cLkw
zgx)2)je4%b>Qlnr1okEHNdgBr+)>|ty8OBn9zOQ;##W&M-3}&j$m_iHw!mRe(j$xp
zUkMzAQXkkV<e3sb&JdJ9g(NB_@hQD2foBr_lkgc$pTH0auSobJfm4hU5?+w-WddI%
z@RZeP!354E@J9kS80ZrChK@<=(0nU`-x4JBR@yy*?-Mx7Cd0b(;+eoq!%kOTKM>nf
z;-C103km#47i%EAFeUz=fzW13{HFviGx`za3H+Q$9jg2b16KnfCJ1&z;a7&ZW&*GA
z-Mjzp-MyN?HIGP4iH{P6g;V0gn+w<J^2>uHZYFRmfj<*?;B|7FOiqd4P2djwF)XZ{
z6g@B{&I6zCC2*gndC~uPN}TD#1pZ3kQ38(>_&bq05n7y@s`d{--dO0R=ailr|2Kgr
zL_$Dl{clUAX@XF>g^)Eh{vSarp{Rsn5^_t(BjGs-1tcD$fqWA3OVFprM@)^c7E`Am
zPw}UEE3!OTP)f;ISON<vav=%prp8%PL_&H__v2IJOz%#Or%5Oyp{#`B5>Bh7N=PUv
zA=pePC80ElrUL2Q%><r`%%hmgNhmL&lEgp4NOeB4L4;QY2}~=J!)YmrYEMg9fl@#5
z2~{Lil@O88N<uXWkWvb1DxtcB8WNB4fKNhA3AH5DlW=5M@7faTaL{yNqMTM&LhEVq
zULk=guL0BI^(8cru&bFcX<A(Hs?`?-R$eqMzI$5SFQK8=e<KNvB{Y#B1qBYrqpB}W
zOPS!&w0JYhE+N3S5}cMo3kl_>$D2!deR@1BAta&E^mvcyai$rpFg?zTw^~xkjRn@{
zq0_A;w2{zFLU##mB}653l8_@IQ$m)67bUc3!$9h&>Vpl1b`nbY1fuj_OCcs9TS5m3
zA54!wnBI{_S=v}w+)U^wfufP<EP;Te5&s{VUA$~pFQo~3Na)F$5(Y}>C80M>FeCnw
zghSKgeLVL1QugU_W}i)uQ}BLXh5la3nq+>Eguznk0Pvg{akBI>^)Mr4uefJQ8k*w{
zl`xDNmatpGa0#zUm@Q$Bgb_5cgalP8VU&c|B#f2tri9T{os>G7`@PK4ly`P!>2WjS
zZ+QHS@zR+y;%`Y9Ct-rb<52Lngm)yo>*4Bpe;@sYgMN~Tj+gjXp#rbnGveQPTuoxE
z5Cp<_vV@y6;v{4OIIFZN!IGdzNJ>y8Xc7$i!pxLJI`z{`pyN{(W-0PRIylWCVVZ>L
z)O<j2B^+B3oGM`onQto8ni=1{G)UvpL1svpDS?KY<#Eo?!SdlxTC%GN!@AFvFi*mV
z5>`u?FJXa%WfE%N>P6-kN_bzw5($eWES4BWqpfGgnZ74s$NPQ~oic=_^sf_@scq6U
z!Ey;JJOr*JR}xmy1Ws3mGLAlcW?Y*YuN@FRlCVa?CJCD*tR?>|g6lcx%s9DP=h>0O
zmF(^tJpFH!u*Xxv7KVss!VXrDuvNk~3182QZ})_)Gb?^`X1v&}c&l0Q2E+RIo)xG2
z?2)in!jBRzO4ui1KV!9o&#4CrBH^Tmja(hNAE0|mI4a>FAt$9m=-65D4SwOUgsHRQ
z=R0&i#zF}v7^9jC43g_+r4G+$O8b85by7Z<3QZ?wrOvDWLc%u^zLju_j{pf*X2rjf
zQo-{K!^KMjPcy{Lj<fJ<34etIUR7qtzmxF2g!2-9kZ_hLY9chB9Y04mY#{7yEcBe6
z3eh*42t+=0a={ys#3czoNw`4>d13Ifgx@6mF5zbhzexDit5&CBDoR`-EN7<_GNf{s
zs}in}z1i_UXUDI5b(Ss-{^6P6;?m&4+3|g|<F_Q-mheErLt1uD{EmdX67ET;KPOI8
z-k0zv%{M20bWXh8oH)%oa!y>I6aP!X-xB_n@I=Bt5*|r-%#t}No$%@N)0{XXK&iQL
zLlmBR@Syg-iI-(cTj!FITShGfwH4%%kypmMGRDiuCnLYiQ-Bba@tlkTGOEj{A)}y-
zLNdz8C@Z6|j3RPs;#XWoQ91QGQ%pvhM_l_Z_I=dPM?7beoK%;PQBp=JIW^biRoWvs
zVdG?v*>W<<%cv~lc^MUC#G@G%<<wNX$=vwutKFEbBqMunoWu(<_;OKA#xF1D`o2X*
z6&XyclB<rLNbm&*q}Qe1q-s(q8R;?tGHT1HBf}@dFQcx^!;4ajZw+K{I#*vto{a+6
zQph~Bg4e$&r(V^CsGn&=8I5EN-XJuUQ!n+6<<v_G-)@?C*^e#?1y+Tcc@^pp$;E0x
z8O_;qk!~$zgjiX|j?F>~8GQ91!B^T0IrXkruWj+8>jDikGa@otdBV1q(MHCbt3rGW
z%i0_w(SE&<DI<%W%lw%D+R1oPMsFE?$fS&zj4m>|QZq6-$mlHN;ufJJt@Eh;-%{sJ
ztZ-7upFrfLXpUzQ5<S{vJRI1L_Ub01hm4*winYt=?u|ZsVKFLv%X@iy$yoP!N`ahx
z^`+`|3H@aBm+=xs=<R#IX327wgaI;!&W(T9Dr1n0fpY3qh;2Cw-ScuT(s3C>WV|M0
zG;gt{j8WwC3t^ZHzRkTVgUf(@wh6;!Ox`4L4Q+&1!orb6#TkJFD}Q?_R_w>L*QpR1
zOU4^A#>g1!v0CA5dk)7%NT!qL#>Y{gGTxD)9!_P+FyHlNoDleuH9^Kic20B1n8e{I
znvC@{9Q%<mlM>00Whhi~X2vubNp>Q`l3~lxys>l{hK$+om*xb!$?6c_KusAV+}^kP
zM7dVr$Y}CkS69Xq8Gp12zSchDSubDbRvA-ee6&}fjB5@Eb3YfR%a|d91TQX2&XzGp
z#tIoLStw(kjD<25$>2gn8-+jj#sV3yZw-{Vm|8>Q)P1p>dbxOC#u6E8e-z%6QR!gc
z0~ds)GM35sVVkg=9L|kz>KRVt>NeT&^W`G%pRo^QtRfpS*2t+B=MQD9_6X910lOv9
z{J5}|n%OJRrlika5H`sCBN!Z(aYV)@8JlJ7m9bC87MZ_(0_XO7n9?I689QX`BpL?=
zw#zt|JDq4@C%a@Y-R-6A*R+4_!_fM<@h|44Rv`Dw_*lj#G7b=R=K|%2<f^z^==N3`
zL3NM=UG92_>=h3(8qll-M+E6CM`e5}<D`rmdxT>$jx!?V$~qyZR_PCJ7j94Ye<tH|
z8M!lqUwOs~wGMtE<CItJ%`GA7;Y%66&W-P0-H~;^{!aK>#y70bK&Rka8Q;mcD&rbs
zh>Wu`F3b3tvdB0u<ARJIsap!3-icSY4?|3gY!~t#6D|_Q`-PumJenK7<fU)7@y&1J
zW8p6xj^X8U``=|;k@4+Lp-(&CZ?yF;q4U=Qmy8l^{QYfz)s3O+1dNP_GXA1;GH%Ma
z&*;=9gD<eRWZaQ)mri{^xJ|6K@ee&B-1CA4iB&y){f`MHJ_?ckQ^o_Y8tFX8e1FUM
zN5(T5|9O=k$$0D$#?$OM*W3T=(NEa(_4-e}l*BJv1FOcTF&yn|70jiif=}gE!MqCc
zDJZR=jDq|Mo>NdvL7IXB3JRrV@hYsK;Q#1C3K|?0%FK%w@k)yRubdk$#TAs=oQh^8
z6tLT(jZ2hNQfpbIl+@DJp&q`seiq6qD5u~B1yvLjnda}GC%wFa3JNMJsKizZo@e=X
z;mej8-1m9dGpy_vm=2UXGp(wingS@OuAtVR?J32CHSPI|T|<GIH%LI19vd2VR;a0f
zX{%?MbrjT9uwB6p1@#ovSD-1-$-e?YK{o~66^IIa3fd@WtH7_Ip@N`-<_a1qXsn=_
zf^;_DEHqKjR7pLdczw7{kj@Du_onD&FXzI8_5n62lEqiukb<y+R+Ol2rwj!x6trZw
z^Wryt5cuHu{9NG9c_E^t_IhXwF7LEfFtlSv&mUudmgy8#kg1@(f|!CVYH3}dou`Vk
zdD2Ur6RNZhzDT9D4*s|)l&zqHf-VXek+^5%yCif}cwhx`Xuf@d@0`$?hG6+QA%0xQ
zo)_<`ARaC)XJ>S(kkvy$PX!|tj8f1`L2m_v6}+sVkAhFjW%Z-I6!cZ_l9GZASA^)u
ze`G~AUKR!@7^q;7f+6$b%u?IZyf}p#5$F_WA$6|sKn!GV3{VfeULm*ZgrQz49T66+
z6Vf*duPV5GCOE=NNwDxW1)~*AQZQM;>k8f=CKbG;V2pyXgykm!=M27$0Wx#yYI{D2
z$0>MQ!FUA|6ud*&l+Bv9DfBMwB}X_PAlMH67F*gjW1@mvxw2Y^OJ6xFFq@$56etRk
zN^0$htL`WE3$g;Hr7C985EMl9MCKyi=|UY01*U>k3O-a|DX<kD+<^rO90jg|Ssb@U
zrzr}iDwv_*l^rFx4m?f4bOluMnhIG=3%wfrAQH@TrTt6=D_f-2QD-ZdqhPLQ#Ce2M
z8{gAT8SWW@#DaP8g$foaSfXI5g2lA^8KKaI(EAGBBbGJ^yrx8gETO|LQ?Q)2E0e`X
z-U=nPK>dN|Wh7R5S#Do)yC+XpaJ7Pu6l_$miJWf;tx>Q+LBGGU*D6@2q$UsR=?f<W
z&abFvW<Q+Sfp=-~%?h?E*rs3$iFtA2pUZl$Z46c0DDa{zI~DArQ!6}I1iKaNA$Sy=
zRIpb;&C9|k3JxgP=lKig9{Ux1{6F7GTow*0_-uZ$BMOcx_~)g8hZG$4h<&Xxn59o0
z^D3WEaGY^_W6H~3S{E2stOJS9Xg)@A1>Y(7LcuA<r4hle=yVrStNIKAUlNBmo}(&G
zD>$RzYY#%47k#6Eel&{lyj8Gm{@C}-D!8EFM_TZ>a8AK_1wRmkI|EBL1>UUKjVUkA
z%Ay+r7Zv=Zpzv0K^d$vM838UU;2Ltv^8zO)zbd$*AXgH(llV=+?+WfK_*21E1=ol}
zqMh!1GWGnuuHX*^A8ZcYP;f49`WN%!H@)nbo<0^zdHi<>LWReYpg`%Y!)pTXeVkgN
zZ@N>U2_7hTsNi1(PYBCx!Y}jUe<}Ezs-umj`yY9xB*9yc6+D_3|NF=GY|BlArwX1?
zx}Up}Ub{*7k7|ho@3akal@DJFd6FoWL|PJglgO7u{v@7DqF@q*l8_&z=3Vsk0?E{Z
zHi^PX%>GU&lElpK1rl>EwlA7YG4tm??U@!&rb1<jBuXYzp>pS?PNkAq^INQR5@nM3
z`;<VsY!cJg1j;3G(D9StlfAr0Gs_B<lBk?S!z3Cd@q7|5BvW6x3rSQ-qG}R#lc<+O
zwIu(67d4Zp<=s6V3S3**w0aUXILiFEH8ZnG%Z|0ZTXmAiUJ`ksdB9&U`_*|(*_E|C
z57XZ=^VUzIfmes0wLhMoDJJ1d!ta%^!ZV}9r+=lBXq-e7ijc(GB$_7CEQvu$3{E0F
zi9iyalE_ISm_+j=+9mN~5}_o*NwiL)O%fSNv`FH?hd%z?pk)#rW`|oP8Go`!M7(U%
zjKGoXbf2$#^`9dA)`GwHX`4heiOeLjlDHiAk%7H|6dPwRq_<CEY1!wplNiw}Un~j!
zDC6Dgx&D4woDDlrV=<v)GWB69KTYYJM3*GGC($E`BIWaTrCJ)5>6T3WMDEsw^yuTP
z-{uNEll-@rYQ2)^O{wR{`K2rG_DP~Yms_vb@0-L+Nf`gtAMsl1-);IOG5M7SJO4}l
zDr7(s11aqM_`vz8Z&qJUB2HTqDoG6C5J|k7#P}qJCNV6Du^vmqlX#ewItzN=gYc{5
zKZ%h^jAH+f^S_bA{U(9el6c)CMkiB0bNDu^4AWZe%Iv+~VoVZ0UvI%W9Y=P3lREER
z|E(m(CGmC=1zKjjlZ2Ad=?AeBX%eqa?tJoSwF%@li9`|;36&3h#^9_;9BXjaJC7s$
zfx~NK^D!MU*sstQNi0ZWVG=5(crV|SB&H^zB~w2S(b*)4Z;G@c+l5D_nMqilEX>*-
z;UwYyujK1rpPN4?b>8(fVmpZ$9Jf+~nMus@i0A*TKRbydOFPd^VxC9LNn+Ccc+DbN
zyM7GJPom|cK}zAQ8S~?f3TG`!VsR3y=u=6&m&E(t5Z`|q;9?a2t#1i2ki@bimJ^3(
zvR4vmFUMDSX}{mISI&<!%kmEh*E889R@0-q^3&^1{GAJlkG$-qA9AfrVto>S(Iu1E
zki^C$zD(k)BsL|nnH(l@l&&{B*OnyqC9yw=tx0T4VmrM%i6@1{+HYnZA76ZD61$Sv
zO$a@#A1~5iPZF2V;OWo?*<Bm#_2`XH>$BwJBtA*vP%<^0C_OR#06ToK0e||jXMX%(
zk_W3sS$H^!@8-vUpC4y>EQx7d%Y4d!lf?DYf#c-)kNPLPl>a1NWqns>3D?h(_&f>y
zhVP3cuD&Rq^3vQ3;^h~_PbYDP?nC6zlr*BJ!&kD)e9KWh;~uRqeD8I5Hi>f{5zJru
zd=ft-agm(UqbGN`z)(QPkvs6OFjrpAV#-3MJx&+<i6&_7fA?)a(_fPKmGCAY|9I|?
z#@SaqPki{b@LLkU6U=t-Dt$`panFP9HA>_We<X3kBW`->Eic`B`nlU4L6F~}y8cK1
zvAOvDB<7Ay|I<q!cqy~5Z0bY@oYk(|KS?}dY*bNC#bZVWdcBIGD!#d&_JmPgMLsnJ
z>8D9NOX5HJ+UZaueoCk!w~Eq})8DxkYV%W89u-XanPPqw&#9@X+iqjDfQmlF1^$Uo
zA&)4iB348=z9CpxP5qY;uTRmSn2HN(-m)snsX#ejnu_8oN~pM!)4rsNrF$EcR#8gD
zgnaGWEr?H>79>%IcmGT$QC>v_H3f_pyb&v^czHp*vWiMxw!xqv*?69Vt_<#++;h#&
zP!$!cD&!sC%~w@LH8u798@!Z6brm)KN7wX-T3%Y)OY5k({82|%tIw>8#wwbq5LBMB
zUS`;=e2r9y-iU;jPlaDaLlujAr+!2uElB;!qv`UdZ^neCDw?TirJ}WpbQJ*=5s&%h
zbyGh!>C&)4P(^bUAr({j-wG-+Jc4xdybW6Xk8b(DyZcx9ettb4gDpSoBw(n7sESM#
zBc@~IbY!V$r$V!#+jvn$dlj!47;PY?B3s3I4L@k;prRwyuA#h!PAYO#%vZ5MMQ2)v
z^;L{k(N#s^-y#E53{ufeMRyfFRP<Ewl8PsHB40L5@1>$QjjQ5~=CO~`#DRAsRTic7
z^;)qc<94K<ivB9(m0bs@D0n*(=otO*UZ`jD*kBd8M#moa5=YQ#D&i`JsCY%ia22nr
z7}qU(D3yG&*Dw`x7sQW#l=;zuc!gm(@2|*NeI@vLfzE7Ov5q)W#VAVDFrC*IP10W{
z8!8kPNfl!#MXhe{sCZY!SQT%ocuU2uKx`awel@bVV)$@ol*HTA^X<s#4$=NO(eWxK
zshCW#shD*uGEv38FLOQ;)8BYSOsJ4lSY^X9McWl<)X%rY^)>k{Jo8MM=-r4lG^VOB
zRG8E`s|}6mDtZ+SGtiN?RM;w}tC&IE{$9eN1yxK{;i~+WDbQ4lT<;JaCHNcs87d2L
znu`2o!=KejpGh86%vLc+MfG;EJ*CAC12S0u$J*(0Rm@XCZ8v!mYSJcJq+2!(u~5Y#
z6=&$G#GZ=xRBTqUMaBCnmZ(^*;`zmy_uk7~s$!Xn<tk3s@^6}+#*!5(R;u_wMUkbM
z`92D;WR;2!RgmCS??hmn8r!@%_K}J;)b=oOt%~(3HmF$V^|@z7rf@B5Bf+yGbCZhC
z-)~Cd%A!mXyL|qwDz>ROrsBAY?J9Oqr7HIG_rJ7-iajd!5+1LXo>V=3akcc_Dn>R=
z5pU&0J5@{XSy-G=JN;u7pQt#b;xHjsSY-JD6$e%P+az77E<UWEUa_zET($Hg6t+S7
zQ56SzrLw#(HA+9B;!`@QiZ4~1q?o5ld`1qb(qyDX-ryI6TryHD9L?w)yey{gKN|Ro
zv8!wJ>f@HDRp`M8>BCP;PlNc4if=i(%G0j!or>>O+)!~-#aR{S==drwa&)uUc@;mf
zuy~o-!(!+5_PW5{s)qah6zSK{e@VqpDz2%x&Pbx7O11Q#8R&fJB$|~Ge_@F0E&l4I
zSG@E$Fa6z1dF!f2IB(|r?|f)PAMp<rzxENSA2z?G;<k#1D*jS&hw((kpDG^E<(sA7
zQ*qxTNVlslGR<=+&@d-Tk3OhnRVy3*n^373e#Ee^;vWW|!ku|FYL=ewN$6kdd_i2e
z8~Ga|+dfnApNh}=iX}AU(vVw2Aq|B!<k65<!*d!6XvnAGLiP0gTIzRCBtH8w=Xg(X
zWUcgqUdikp(H}YoTl^bZ*&$d&Ls1QB8bSyc)39?;xXnxAf!-qP|1G9d|HZvq{ZDu0
zh$S_Y(okAMtyjb{8a^%|mi1`L&b#@xXI9WqQNwE*Mr){~p|XY+8d_?2o+0j8sDTDS
z!wVY!6C71FRAXBWwKYIPbqzH%)YPyz7XEitW`R4Ab01{xs1&~ON4Kv#_1g9<R7XQy
z4gTAq`Wotaz1=J%o?j5(emtjUyXb?;Vxtmb>tIyW&`d+R1|KVHJS7Z`G&IrBR6}D9
zF(_7baK@CynYSAHH<t*%awx_oovViz3H}dEUqC~13ajBS$sg4C_cLJ@7ONwMHEjB=
z1d4~JXGJqK?2ScNR`*3Tw9-;u&`(2a4Q(`Z*3d;mTMbbSF%8)oGBsprcu_-p4adLD
zX{X_{;^OKJX-i_UweRH^`*H$zgeS$tsujayS4BH8@@v?7TcBJWHIO&5n!PKS!yXO?
z4%G2?)zD2t4-Gvv6#F1nY+|IlhSP@wX$8VBH}dz=&|5=a4KL9yPdoLl?(3tWU%r+f
zOpV=L5dUFJZ1y{`hqe9BpD)p0!vGBfH4M@)T*Ipx25Wd(!%z*wG{iLw(ID0fzoLO$
z#eM$HgEFq~47OjKSz=-QrGnv{_EEWfcuMo=2+DP=%qWTpv0LNxk>tNh`pEMk>IC`2
zuWNWi!v`8xX&A$<G^iRh4R2DM36Y5!CTVy}!#E9ZYj{V)cnuRY%y}bLeMQc@ULC5a
z%%0%CyMk{l@?AX~V5`Xl_O76!;cDMVLW4xR+zOpP9=O}YFKhVeM4(dJXi~$Gvf`s~
zB)ySe*I;Ovt6`o7Q-h^px`r7VYz>Zvsno;PnCn6Aiygr!Wc7_~H|~4#um?dnO#@?Q
z?O>EC*_f$e$s*ruj#x;XMME=U7ZT@aJpCrJzOKL7!uWg*3s^_PQVj&yLUya+Jq?Sz
zY=JX_S;*jAeR<~l8rE#=%0BzX#h29BG7ZZ$tkAHqQh4&Utm`?w&Wz4x=PRk$rJ2<H
zhZ<IEIH2JmotJGj>>${xhu3OYM}9PH_E=r7VS|Q^8j8oFRciac9+*KOO)D-QuI)dt
zJ-CHUq<q^5Fb!u0iFs;-<w0Wo=f&+rT8|XccCr%<yEW|5uusE&;@rc}{2j5+b_E|v
zG4lVhCvVXogP&+v8;m}#pHc!JRfjYj)^JM0msGySzjwz;LS4f#!k*0A;ZHSmY!hWH
zI-w!3E{9jn!uSo*Ut~qjp<HF^^v(WULvmk?tbW0+YWqhG&iIPh*6^){@3hq8uhQeR
zGaA0ukT?`ux+RB^;TsKnw2}B;!{im2XEo&968L)%N_~!+sqN?0YiHLB8h#`Ibj;Ur
zQNtxVxQ?)npEO*i|7v)u;b*F)pSaKT-P7=khF{sUhTk;&q2Y#x--$O3;XRqxylM{y
zhz<H>ch4IvHc-4yMExh+Dk<L7a7)8&4R>hGB~97esD*K+Q;UY{bcnFzu2=KlNc29{
zYx@4w@Ib>uh8hizG(7eS_fO9HTf;weaMxF$ZTbhzBW-(S)H@k&{b_ihl=ZKM|EBn?
zeVNZlFwE+xq$8J(+&Z3K4VToBM@L>Ag>)3wkxxf{9jnTgE}&z^&e(H0R^RT?*o_@K
z8UAvAte}ntt1_qT?A5ZOSVYIwt-)eC(sUHnA?}Q^+ST&nr|=cmQ;&}lI@*i~9lRB=
z7RFcI50uhTT1OcjWp$L-Q9(z6TY*zsgXMILsuHZb$hV`ixOiF9?8l*krA0DUS;zA_
z1oo`s1szp%)Yef)M^zowbU;US9sC0y{;X;Hoj_sNS3^fl9YgAut>u-c6&6=4jPq8d
zBf&23W!|=Zb#?4r7_YCRo(^Vtu}%XWuT~Y`Jsg}kGUU_Y*U>~rQymR;G}581OlwSC
z%`S6sVXE@M5ur-=0)DG|*;-;V9RVFd9qE*av-i=Vqg8#2>x$HKa~-e8ON}lZ=Hnnk
zM++T;bPU$fQb$BbcO5-+JP1cy>HHr(vAvGgRFsakI-)vip<6qa(>g1=p4yw4rDNHH
z5GyD4X7U~3MX%u)J7WJEis{JK(LqN?9XUEW>*(ZlczQ|Z_G^(NU7~9zWOZT5;UJ$!
zUA<eRyXjb%FWj}5$dvZ&siUusbC39ySIXSIb@ZWrvi+nFj}AS|>wif{KOF^sFVSDe
z038E$6tCmI<?}BcCN_MoXYPx=4(=`XvW~cp2|6ZH|2kfw{&l>iW2lZ{RE3T=bPT7S
zX=oj<=@>!CJqwN0k$g9w?`n8QgC-Pkv=ST5YW2jSX0eLTLc_JliDYDqj_=!t$Lf%-
zhADpLv<U0Bs49-r@wSdG^~CWy-qEpVcjmh~SnY?sq45P<vA4nhh05&6e6%lTl8(tb
zTpd$%B-oD*UFU&Ckac`jT}<jwbtpP+TnoROw{trqqUl)FPaNQclPhCy3=of&3jh6L
z*wkU`a6D97v|!%g*Vn=m`ipH(g?XjCRmU_PvvkbXF`b&!F;nM}P5JUXNvqgjR7#4o
zUJ#Ew6<B$Wj@|>sF$2XF>1F5A%KgPvQzIN`0qvsWk&ee?K*wSopXvBq$9p>7*RfT{
zHXTd!R0Q~d?x|xbfuUo$SF%FKN{{F{#n%G9{CzVfTnZDYAJTbsY|ychoU_AoCD!R!
zuVamlwe0*#PUq|4#{I=9HzV{`x?Z!#q4%$aH|ae15ufbKWSF98TiE1@z-p|_>~<YH
zbUYjvIih2yj$JzT>-d=Z86fVaA?RW{{%IfWUQ=YB`#g<Rx><ts%ts;i{|Q~Mgm_5D
z0UZZ*e3u?wF+gN_R#ji4KC#18;N1u-9My45$8m3<6JC0KL&xg30-x$QspH+MzRfXz
z`jMc&vdHNA1>>`hOFB;J_>yMTaazY&qFTop9ba=4DzKmU4V`PC*teAUtqzLDp{uR#
z`h1bj-|M(`FT!ZNv{;zEohOQPTp(Ppg&B*sJq#6pBK)Z1=IEIJslb%Z^^=a@8U1uz
z*6}m(P*eOx#}ysC^{baQ`Z0%vztKY<hgev(w0KR&bshJ0{Hfy);!Ve03i4m*rjA?G
ziH<uA4s&9sItFgHh!Wu+$HH9;g>S705b!Jh4c+sw&B6!N2JyTt_BUCoCC2^>{iS1E
zMl?|>{Bwcqe{?+Q7Gpo``CrmH>KkZa;HeG<*a8L$8Y$wLj{g|e4CFSD$AC6We9iz>
zn%6)+1Nja7o9(|^Q{=ULc&Ndhz)Kgyz9C|*xLC+QVFMKnR5DP+Kv4sw43sud%s^VU
zzqo-CBsj#;VCB!k9ZcWDi{X-K;=U`9k_JxR3K_Y@G6u>Tc%@~mf`MS+a5;k~eq@y=
z4|fA>#qz4Jg}S^NYI`zV+28@usAZtGffo!^F;LY&HP-JEJuy@q6BnPm(G3Qw8>nHR
zCTqsUfd_)od@X0eXV>ld{QUrHvXHT^4yBvot7oJFU0nko#l@mWa~chgF^&laL<5}-
zbTQyF;5X39Kx+dH4Ky+kAd?0f8)#ynnSpczKP-$l&XZFezNQAc4G;Z(IJl&SxcKeJ
z(qLpl%-`HV$UqANEvbjXV%Wg5Lpd1+avcj!dmxY|hI!qyQcshJfsTiQ)JYoyZ4I>N
z!j6HcflLGK47_M?ni^R-wsIEBS9a~liDeP7#?H(FEuu4a=KL}&m~EhgfldZ;jMUTQ
z?EYSVE{u0H@O`h0{ChHAUe+`;Fq=(YdLVQqs|E%b7-*oofgT3>80c%Dr-5DudK>%%
zD~pP{ityzF!S;6prN(572ZApd=x2bB@BRkzT0TDUdwv|tTRnVod8U4)#~=fP4Gc3d
z+`!8Q;s%D$tOiQXj=A>(?BrlIk&h25|MP9VhZ^|hg%o~XH88@!NCTq`{xB!&b_KC;
zMR5f+&?lqe-9X6lvH#Z%ykVf6#Usct#=ux=#zf4-n+D!8@F{_0V4Q)s4XiM*(!e_g
z-lYZ__-7gzZ(xFfUDZX$z(fO+3?vPx1|}OwP@e{5YT)^B=c9o^&HT%Dl;Uzhx7z}v
zlR_2U7OK81Y6g!dh2>=p0^?}l@_oVdh`kdd*A50MH1peDCmY*D*_CTxih-%b#*x4@
z1Jk|H+nxxlZ{(jrz10=@{v}lkAF1n~Wni{}IR@q$SZv@u1M>{LIWe-pz(ND_J-Tj%
zFiR-Q_|2J%$a4)JOPIdz(Mt?0W#zv^yqo_>V3~pCp5Ua{X^~F%dvqL|^?`v^1`d#u
ztmuaZRvXyHl7Zq!2G$tZU|^$xwZs_2bq2T|mCuUwgSei4T|8W>RJef}+eBwEu*JYu
zDm-t`-p!*&JI2x$#TReN<eT`=X!KA6|8@gA4D6(^2KE}*XJEI1LNAM-3>NnoKokG`
zdSZ`3sqB7FlOG%Sgf(l3u`#jqCjPtIgS_y3>b>}&fkOrk)2|I2HE`U(2?NIrtZ(4w
z-BHuZjLnKlwf(1BM*lq!BQtdt#XmFfIb)ZJJSM&{aLT~12Cf+R(!f^+E)!aM)@cK0
z=&c4WFl*o&1K-g#=*4ZLLu!j-tA@WdFzs@L#95CxXW%>|L)9<~mraZuZ{%mXX;(0D
zOZd^iMFW=%Fk3(>#S*ou_!HSa9w7a&j-SK*><#)0F_|4aRYm;G!0$ATfrkdJ8n|ZQ
zrh!`qt{eD+QRUry*-ia7sIkJ~U;1a9-5y-gC$MRJ<ThjJ?%-Vm_dI3Z@hYfC0{1-&
z{z(BB_<H#L!`Ek$_<CLDUk3hWtTyn(z&{@F9x*t#i7vkzV*1#lSJVj8%1;?#ME^4b
z|9RDZeK(TJOt}g1`A$PW;lYK(ye9IQsAHn8iToy>Gg00|1rr5K6f}`$qPU4dCJHls
zSuARzTb^*G8=)d5@^;KV^gxIWj}<e~y1H+CJ^#Sn!4f7)nka3ejEM&WMY270R@qV}
zwyw|QUA{<CuCgY|nW&i&d82KVXyMCdMH7`wR5JmSC&)!An|Q%Q6%)^!;QHIWqk+%Y
zXFjPWcBv(bMpji5FFp<ZTq{uBL=6+?tnM{U2J@`v%~*w=+1JwjwM^7Dk)dU+EEDG4
zr%nC!Ow>0KG7&b>z=U9;v56*ZWx{8op~)XE1<jp7zX`71oRa-?tG>B9H}cAPtKo;4
zO-(d2k?U|E=oO}$2$)D#5`Vice0?+2`pvA#P5r#voGgvaB9URD1=V7rjfs{f7#3Pl
ztIhlo6LbV-cm6II3w?|pZB0Z?d~;QJ(W{VYBFjWOlV`U^7=m^d78^G6bCKt>%Hdw&
zC=0VqbTF~T#99*_O>{Cb(ZnPZIVL(&#=#k*O>{BQ)x=;EFVkKox|`@@qOXY_CVHCa
zO+D-ga*4ZH4Y9<rKrdQqTkyT=A{Wrg9SyuhotyZ1Ox7S1{n^Q;oB<{Vvd=_}j`?K`
zKUK7`slVZ~P}`lsv40406GKeAYGQ<mS4<2wG0enpVqkZWiz-}xnVRnZwVb%_SYTug
zvDMYcxH-|0CPtZf%>*k<%7~fe#kbS_tWV-~6K|LpV`8j{cTG$wD!ysrEfa5>c!$WG
z({-GQXD^837x?IdAN0sLd8`*jKKN(O2Svr=xjK(GF~P+CPO)-JVn03*CYwl@pz0Qy
zkW9!XT=r=~q3ukVCM*-G3C)CIraXn~`ML=P0WwK`nEk9xv_KPor6aj)I!HagL$oyW
zb0xn@HQ%Z2nNv+nGcni1JQLGR%rG(A#2gbdX^R@-nOfp3dQf@s-|D_OWmDO<_e1pe
zv_WF70U4YL%r~*X#MyW9HN2gg1@U>*YEgWViNz+~Gx5HORVF?(vBbnu6Dv)8U}Bkx
z<tA28#v0+<&7%~J+?E&=WR^>RzxT+d6!a;UuQu_Knc68h)HeF|bK!i|d>;)KYY!6F
z5sfBJQY|JnnApg!Onhu&6LnR?x81}J6PrygiDSe!y|$Xz_W$L5M244242(5=J55y0
zjP5qEhrxudYISGUsqWiLj1?D$=&{Z9M4DiqiC&B14T_6|@h2X(51BY%g4qb)sp&y_
z7U{z#j+i)V;utk=;)KbQQ6uz}v4>O7+;^M#=_VvT_4Ln2>gNppCT^LyZQ_)PFHKx9
z@uP{aC@lTR#J47{)a`bLY~K>TrW9_3t9<XP5ib3GXX1NC3=`)WaN0)Cns~j6c;dPc
z{X<}MB36GeQL3!?Nd=Mg(G!7-CN8lzy1a>tjr>26dAbHM_FKynFN?nrGj7(e<fL=e
zXRBk>?TA4lA0@w=xN73Mi9g75S+PNNU(U7S*G#PA3s=?f4I*S$@Fq=gB#@^>n4?!N
z5oW_XChqdlW^vMmdnWGFJ4`$_@h9EW1nc~5;-QJJ>xi6?{6%<_7uor+`hNDt1<Ze_
z!|@Tu(tk}nG4UURm4%@LGM>_3yjv|dXHwYl+kzZ%SY7emW-+F@Eif%w*PqWqehX<9
zid%TjLIDfH?qCrM1+A1C3t1>^flcUo%+mY#xSTOqENY>cS94|C=!}~Jo0PCn(gGij
zWi6DlP})Kn3(2}7!O4NBL$;!>7!W#E67T*Ms$ij_g^w+KVxf|S$`-m?=wab`i?~9>
zLMsbZEL647)Iu{0)hxh59Se0WRJU;Mk8mvuMKXLfEY$R})w^b&aw9{I2Wne92qj;s
zHJM|&m8@r>z6HO9h87x-VTzd(^RegQA<@E53?n%iO*&@3u_!*{iO~D?oJLejvtSbo
zZ5H_&TgdKOvU7%y&r@d4EX<p3Az&fHO3kBq1wEp<g$jp@{oK4POF~{r*h`P!jI^-O
z(gK$mC%hc1Ik)VJ^l)nnCz}Lg7CLwJwXx9F0w-fp3z-(OsJBvKX4_eK(L#G>Yp0Lg
zU5fQ@$HD{dgp%Q6q_Zt_u+Y&$Ckr|3#{#>px;*V<`{;*t)87df>tdnX>!rF{ApQS*
zcC&D~YX<3_7J6AwEoc^cTj*oqEeqo;o(Y4Oh#AUGek}C2csMFvwlIJeoRanBir7Gp
zw@{0eDh642y?Im$r|7tag;TPIu>R;l3}U=qv9P(eSZ8T$xP@0Oyum5Gg%K7;T6oRE
zXbYog)8%Q^n*|@03{QSue5YgVb;>?3?O2BI(ubLBJ3PZTmf~+p>$AxBrZ?7`1;e##
zq<7jL;w1KM3ln*FS<`n2OAF&^(_^JCzM5--g`;D$S%DMUAy0)#7A6zG79<O@1;uOf
zedmn9SAwI|2%As;ERggHna%huqFXR5EU~cEf@#6Bcswa)S+Fhi{70B#VX6hkf=eIy
zDm<!72IoKWvaZvJhufv6TbN;`)<6F!D6*@3pJ$)Q+xeY2X|pZNu`u7l0*mLa#O7M~
zVt?0+1!?#1h38q|Lu&Nx$U+N?EG)M0o`=SVA7-|EEIj&4;NABvd^$MBI;2O8AGFNE
zatrG%Y@o$0tR%=SthVrhH?)&kc9n(yM&@u<M&2fI=iR~@3u`T`v+%5Cbjp7{i1vrU
zDEnj`a(i${WTS;m7Is+JNvm1dVqrU->#?xa0!2vsOW5X#zvWhEUTpr&qGC^`WbLxB
z+rnN8`z(-E&Iv!h9ofSe@|VE=Cmo3GxA0_eHWf8(QJno8uyBxmZQ})-XNTgjg<BSG
zTR1|KS@_Pv_ZE&>IBwxH3!f7$ZsY{r!~(Y-NPp^;F!(Ss2iIqQVd0d8(-zKH_>yp~
zCVoW>%f-x+Wk~zFWpwOblF0m;e%dtnt%YwqXDo0tRPn`V?zv@~Hw&I+xUdku6Zy@;
zc?&;K^K=l#-mPgD7<O)zxJc`GT76m~y!`bX>gtk(S}mjB+z2f@68qW0FBX2K*Ay2i
z`xTFPUMWRrv4o2H-NIE1*DPGO@P~yP7Wg95Y)DG&R20YMOU+G>0X84eI(o;#UE<0{
z0UP%$+^66+Kahz0Y2kr|$865fS5JIs;V%n+GoHK{rGWoX`5u#6qq07Tj1^<s#nPGv
zi*&F0gcc_lEIg%q))6bkQf~xn7sYeg$Zcb8vmohzs)~tbK}MmxHu8DH<+t&b9r1e(
zLQg4ZqmYeKHcHzlY@>*c;x<ayC~BvoUoo2}w&mM;C>3GSY#d7quW24-TGEDXM@vq~
z#ft>*ma$RRMg<!cZIrW7-p0qLyRsqgl5Jk})=D;}yqIcL+3S4ukzx%$&7sMv*r;kF
z$3|zH2T}nxGHkT4QQbxj8;xu<wh{S9sA=<m4N%WUEgQ9MP=vmBOT522vyPqevZqrc
z^=&k;A=+Fg!s&ux!N#WYVfr=iGRq01-^MRbgoZXhQ_snt9V6X#Ro5mqn%Zb?BV?nQ
zjdUA9j{9qgz6Hc-SAw)%z{ZK%;-D3Qo$*oxN#prx;r}1;T)w?q(%3^wvS%aHMwX3M
zHvcIVZ9M@QKRZ_JNqO7YV9K^sRMfk5St@oh!`IG6dmAx+1w_+qNn_|^g=`xgY;?4t
z-Y@;*p<=Y-)|z5=yJ#mn6?}S6?Zn{O#YR^f18fYm(alD8ug_jKdf4dc(HxFfM&4Gp
zC+Cx22=}(p$1Cq^<E3!1el}iP()A^>+C5sNg|9!=-agvS!`mR62bN+KE7*A1M%>1$
zHb&SOV&fGX!);KjLsJZAWxSVfm<_6(9?_(Al)-k~y%6<0(oQ+u(#HZPisRddcejp?
zw(+_R$%bs>4I5)@OtNugOWIf)jL&b{c+19uk21fpqvKd@SBxfO`nE^E<E8I<DGSGY
z!~`1?|5wuIN@QDhWU`Hf4UYBm($t8GjV8^DC8<MCX+uwx*<MiWQYDLFwopCMuwfD#
zQ@D5tD}`j9s)QUDjt$qwyAH-Xm||n9jXO5(+L%T@ZS1qL-^L6Z+{XIA#wr^#ZOpPU
z+r}Il3vDc-)7hA3<I_TA7T6f;X3ZxmrbTW%4eeRh^ovFDnJ<R*TH(bu-m|gH#&R2V
ziiY2}vBbtwVy0I{a9DQV8sXQMHVtfxvGNKVE7`dcc~mR4NXTX3V2v=Fd}wnE6%+0X
z+bNxmH8wU<92;wGth2G+#s*L783kK$jhZXfEpn$;ypQ!4&;Op27Km=PvBkz#8;`4q
z%u<|Zi!!&d;S-_iBVklDw!_9w8@s4a8+++}D>HXB@rSE~_t^O4y-bcf_d?KF+LQ!Y
z`q;*osgQzCY#gw0kinn+LM7NZOe@<s%D9nIVC0wV@JBC(xgW$;&AYEgj@zk)Zmw#U
ze=T~_#%I)acI=dm&#A^zVQ%z%L7VQ){2(J*#@i%1{wT!t^V2rY(EDs$^qPNd<69fw
z(K<_-enW2mNo!p!{Jo8{Hh!>i!Nxfo=e?TjB>Y-7H<Et+J+<)O?s&BL-pm7!gr9bW
zF4_3W#uXdC*|^NW6$}5&KtZ(c&U~kcsKvtE+GYJ;8CZ5_au4fw8&_@IV7E4|G3I1M
zuiN;8Bkm1x|Lf|aIL*EPT+Z2W^p*|duh4D!6n6w_i65N_bI^>PnfGkmXPj}++`*qV
z9x!-1DCgjz&BM=;&q00%f7|$n{$=BtjYl+=jem)mV&dcu{vJ02mx_tp^?O2qE%cqJ
z8Se0Y=6@VzVl0<~+)ir$u}jr%{g#DE<Z+PK!StrF5lb?8)%-O4oPz=miaAJgP|!gk
z2ZbFJNnyV1!6}_K-Rpc|bcpNfMI8*h66RJcm*1NW6N@`2;ozTQVrd66f5|E7pp=74
zhk{)$_c(MU$lb#{^}Cg?*R71h{hHXhiCN_xRB%wwL45}m9aM5q-Qj=gp|XSL9aMEt
z&B3rqSue28$#4}1lkWsbeEUX-DOlmPP{j6)y%OPjG)wBwNUP~!QlIQP4r)25P38-W
zdM$C%h|q##zPb*$v%ptu-(-IS2ZDn}4jMZUz0Um(8afz$DCl!iTNrPRi`}>sW-In^
z;Pp@w2TdKMI|w)olD=lN!o@I|DOp*}ofTsVcY&#DHVirZ0X|-G(9c1JgBA|59dvNe
z(m{kecaY_vm4hSWO0^+B4mQBono5|M_1{qOc(#As#c<R?oe`k|(O9m<@pcZj-OYK?
zL3<|^*moH*yHZcyy){IPIbgbQWyg*VIyva>pofDTC$%r%#X(mGogEC?8DsPF4?^v}
zDZwGSIs8wnQY3PH7w+kxmxI0(`9`QWg>v{oZ#ORZ^Q%bqzxvZ~(@9yRf8!Q_g8>dk
zIe3k>W}gm*IC#YYH!lV|c-cYR)7zVqN~MPWDrfT!hGpMS8qPszUFNHVP5snzZlN8)
z;RMo-Aiske;b0`OR8-_Ni7Bg%cJR7`Hyym?;0*_39E|nM#}5N?eb<W`KK@CJws`cg
z!Z`A?(D$}?cj?W5Hazr5kG$icWaTg`OmHyK!DR<O6A1*2gQX6ZIY>B=9CSPwobNz(
zpb(!9W;sYYP#w5r#)0NQr-~d{9wZi577eQ9NRT`G+<Uc&?JvtX#K~h{@=);4YChtM
zs2f=E`Kb=3(R~~Y9TiHG{U>g9F1a{9!{L0=H?csNb@(beo0u;r&T}xw!CVL5R}?2V
z@<;y(@fIz+sA1U!9(xNNEb@j}?BG2I?-Oa`A_Xq>;06<!U*d3D=wnH0d(OcMhd-jh
zAqOiReBfZ6gY^zpIrxy+^ZVC0Snc5O^|DmUM-=m3Ksg$u@6cb?dKG5W^Uv5F+~8oN
zgFO!RI@si3Ga=_-yMrx6dyCkRA>vjqR$!<&b4WI`I~?qEu*<=2`p)8bx1q6RW`vt-
zuNM=u7RQ;k9U0o^V84Tpsg?)Atyi;&tCOQbgBQm?ad3cGttn32k$L}iP8lO|n7-iP
zO9x*$IO^b-gHIitba0#)7$~0bQf?EEUmWLN`K&@=ZYY1|;0r2~hTf6+xr2QJQd{bI
zm!!6^xqZ*A+tUutI5_9vyo0YDd_!$JIP0W7_W0JpcMg8iBgcm2@SBbOzi~e|vTatH
zGdfhRd4$~l;NSwCsDuBK2e1t<h(9{G=s}L(ne09h=2t7cexjM~1gO|w9Q?}I=%R>=
zD-M2h@WjDW2fwou2i%K);NY5r>kjTXxa;5#2R9ttr1LtdFLT&KnZrTinMAqUsSa;@
zJ*U?cxet5K!F>jQMxL7DnMz@zi-1oCit#(2hYtQ?{O52}vi@=K$idWJ*@OP<LA*Wo
z#{JjxP-Yp^$i_2@6NvJq@;Mj(ImqQAw~IV(sxZGxK!)?WsgEM^c_rNVo^U0&Ie&Ou
z?l3D9aKVOuJroMMn6)@w$V+FA%`WPqn2V+^nz5CO;x1~ssO6%Bi;^y0a8boYDHo+(
zly_0VMHv@mU6gY{H7@Muqr!I%58VyK_|d}fO5utwD!Hia;(0d}hbzAtqBfYa!smyB
zpF2M8CRgR%iTSFzfQvcna#j}&^MirvE~ZxT)o@c^7jT=NTlQqWwu?G01Q()<x-R;R
z%&F(1z6)-Te(+}Y`?bUo)x(v4?$N*nvvfe83%_@_iHn9V8o6lfWn+&*=?8P_T#lUG
z*7fH8UV{s@>e3>*aCc_9i-3zP@{=nZbkW>J#6>F?As1m6lfEy}(nW@gMJ2=*WUpxW
zv#Vj!3!ir4=Lgfbq>;ncF50-Mudt#n_=#6rHx=Pq1){vAT?=Qj=Q82GXHuWOv~%&I
zi}o&JF0x&8aKYJHyuZkyIWg<#;#Mh<CH&4Lva~4+JG<!O;%^uKxajJln~P;Gmb>Wg
zqK6B~h3xWcG4yhIq9&dd4ELsfTnwYyUG#PFl8eDEUUt!sb`M7TyBOdRgU@sw=%V*e
zB~nOpk)B&Tb|=Jl{IoHH;x2}`c*Vt%2Web1D0n~26#%Yp40XXJj!Tzw_>%Ri%h!3l
z=3=yq%{9A?q`GdE80Dtk%lINN(9Yr-I4%CVi#J@1p_r9L+I_5xb&KO~5@3ZzdS#bk
zBA+|2g`&)kbMdx|cU-*dV!VqFZv`f~m_SzZ`X^GQ{EVT4pPew>KQc7gMZ(2_YCe9P
zaBOj$%@r3(7p4o#h3eu#(;!#24Hp`Hxmi&67~{_48@*yICzCcO|3tov*>38!*L5+4
zmZcxfN$b%i!jfq&rn{Ko-F<FRUY5+Hi`7qGTskio{g|CYM{}`|sBkgQ#e5eFTs-<a
zwW@IQvocJ%t{80^Ti-0W*u{IqM)5LBT)a=D-4Tieqx@!)GwM}RY;G<8Qkt)x|JOmW
z6)sk~IPBsGk?dlXiyba@x>%h%{X-Y)U2O2^)kK$zH7?fD(7ii0+!0&nm9OX(TTw8)
zR*7wNvB^yZlWnvP@%C4RtuFunD5uVrQd>Ob|GGFn_F%9}mEd+lsGi80Tg&zw@Ltzl
zF7~@9)ILgjH)VIR*Tp{Cx^?u65@8k+BpsG_{n*7PUbO?nz>=<kL&XldIOJmEff&~x
z{(s5hC`WYhlZ(qPj=MPF;u{y=y7<(^Nf)PFeCgsd@;Ny6xr;COI`%Y&cKPuyfkgj2
zo%xRWm5bBFa3uOQwKp}wm%%eG_`1hx<cFI?&-ASCTzv212NxGyeq>ehtc&y1+sIPq
zT>RcL%2)WmdSuWR*~`;@^jtD`->MhM!{8W4;dRLcE3}P7e|GVUi$7f4aPcdHKbyO_
z%94Gt-xwL@r>(D6fGc=h2Fw{9yXN9L1Hx~SUs^@WR>>m4C8nG7Tsnx0KN-7R+#zF~
zGwyjkaQWq~H~NojGr3gA7iUhB9x(2ucX>z#ygKZJ3yl9q({(^cRebM2LYGb`O8e;W
zworFN7FbFWAb}(#l+dIs0wRclAc81OM0j<}D@*T1L8&4rDuO?yi3ljDC`}L)q*wsO
z|F`3xbKbe<n>%-A?%cUE*}QjWhLj&+1Fx39w+Q#yu8i(79&jkR?#XB_;~&m(uDvo+
zW&FDcNir4}c*@BrCZjm<7kQ;+B+E#V;ce_LDdWUtSJILY-&B{7QK7b*zE?`dr(W+%
z_d9jjmR&|hSsB0F^b8u7!?OQ2az7@cJSAmRlu=1WWf@hk2G|74l2&0-#=H?7CN%Rh
zWWD*%uJ5iF5>%H_L&m`dp2jk2%BUryz6{8CT*ebJ>dL4m^C<i5+A@CYlTk-b#5r>(
z%O9}<f<B*Qv$o<B@)*b7Kt@A0x+`t^=qiom#1blRPK2CYK_R1sS$`9%_ib8J(bl-`
z87*W;R5d%JgAA99>m9RO$!IOZEyF_#$Y?2J;hl7blrw;wVdRXsW>sxuw3U%2qrI?6
zI~hJ1ei<(>&1BbxH1+;|(<Q|V7@V9gCqkFgn|TAm4#U1pe9`;koxF}RI?3p;BP}SS
zvy3i6E7y)7HR&oN_I!4RjBY|7hE-Fmp@VWVg(it0b{Rco%#`tpjBFV>GKR?*E~A%>
z-ZBPp?A}ewm60c-Kt`dAd>MVH=cMeS<!$ZDuAUxmjU}PhOG5iL7xb0UPey-MH7dyD
z0CuE7ph(6*_I*|&TANSbB?-IH?2L^cEMtg_p)#IikzZY9+j?tk&Sa1STO1){q>Sff
zOrimAxk55V%NQeLlt?~Bx>^KUxAcyc@wAKyGM<$YJ?I}N;~5#_nOqX$7L4fabZ!>l
z-T`{WL>W6=iM<2Q$@rmR5kudJr>13etLUCge~>Xv#tSm0&{h@Q+)yx8#$h?@nZ}8?
znlH(iE@OtA_~Xde6zit-o;xP5q=<5SnI3pGaJpp9t1@QEuw>XWX3PAdfmvHJBQoYv
zK!zeimBD=$ukoFaj5lP=m+`t#DW_XD75lD<ccF|$GCn`wNtUtlkG$8HgkD`)K!^P0
zmvlywYcg~hh73mRb05Ua<(ZR~7Np)xr&Ysr>8;r(ZltrtC`Vj0ZE`rOyUCeY!|lk3
z%UC62HD{%aB{EhBe_l#gnGtM$veI$^mI+$vHy3wuaR<jr7FiPNRV#3-U+*<C*0P9<
zjWX8Bcr!Io^LiQWKJ$M&J;<+w4Xe91kuN9y``9ewEg5@@1-#|lt1>g37T!Cb`uo>#
zZ=rkCaQFJuzg5OI8Lz6CrD8jcAY+Y!wF-91*u}wB&_=<#GInz{knyXG_hjsmaf+3*
zS{d)lI4a|qj1Oe&<Lu)aBI83DAIXXRFQ3Txm^L5i9y-{)UvR26_Z@2I<My!wB1su;
z3H+ao&tx1*j568{a(~Vmirg)v#8$y8XVO{Z2$zng?g5iiC|}*@<A>=lWE_|ACEc~5
zr*Y;J%W~6B$T-Ovv@P>`LB>}c{m=3U;^%$bJovSYZ)99%6NB7mWSphf$@r1p70mcn
z#&<HlXGb1Oe8@g0Cw>Fh>(imu2L+5PFn1T6XUES4FUYtkBfYV2OKV@Xbp@A%@>`nv
z?l$n<ALRZ?#uXV?Wn6p8eT}nQ#?Jzez3RHKD9B%Zj7?=0BZ_axxGAHgf>H{8lW~jd
zwv2}|Zp*kM<1ZQaWZb0=GX9Vg+c3Xg<^L)tWATmjJxfA=((=6$o5E(c@$Ed5cAx7%
zSLw?^ZV)^1Af4cEkyLJ_|0_JRxPoK_NlL;?iwT-Oyu-ZyIVlQ`)e89P`${N@G5WZf
z@2Xy{W;0)D1!WY}R8UJnSq0@3R8mk`NsPr~3d$>}pun|1JGpUTW&_{CD#_gaS5d*8
zhKX%}RTNZJP+bA{kyTTWs-WAcN?+G>bNd^2jkRdv8!Y*1DDX5$0B(qTT)`6xS}2ed
z)K(HZ%jzkpub_^Cx(d{q?)3xQ)NoxnHx&H1B*Z;~4HW$TO*%K1HB=H?2>CP;ps}D$
z1Z}FInE=fNW$!3PZCz|yfmeZB0qdkz>_|)c`CxY|1$!F#76db>B(p|0^|e*dPQh3O
zPb=^#@GI!2pud7N1??4ND9BWht{|YGvw|)PIw<I<;BFINCt9gbM%6h%ZeQhgJnjGu
zD!9@$V`>F=R|Q8~1iLACrF1p!9_9YNsukVL%2Lo>L5_l63VJ9|2D^JI$mS5V^Zo2g
z?2cU6(AS``k7LwZL9T*41^Ei@OFmj`W2*$ekAeaPg$nvA_^2?46OCEio5{Wt@ZlsH
zprDl!9HL;T81W(n0~HKXFjxWmd$&sR*!qd)xK;B>1;Z4KR1i`yT)_y1JEY2U2Osxv
z{Uqmd3n%}~jj84yMXwm_9!*m;@IA#r9N>PTo^K3Ibg>c#u0tc=IC_GD*A*;Kz)id3
z6--p{oPr4=NzSueSh{9#KkV}gCMkGT!7RGyK=)(?Qxr^9(8%q3K>;^WCcLZ2oz&9z
zqELQLW8X9dFDW3HF6azFUlx?inKZJ%aw{K`vxybVQ+VbrSQYmna%<{b1$54at$i;^
zSxn9sHPd2GxAncDV4;E~3YIEZq(D{>r4cwZbV~(>g0O;Z?R=UjqSI9dxpxFJ2DkDN
z@cB)z#(E+Ows?Fqn)*xymI6mXT*2Yt0p{8q?v_6G^uIw|Eb2)zs&S#C2QE{voRS0G
zJEkSAP_R<LDuugs$`{o4Jl53r#zo)Fyfj*GwE}L>Bv_|lJ*TS5qja%B!A1pV6r5GC
zN#WtW_*}su1#c<Xtl)hGA5bd=Z!6fr<z2x$blUA{TiG22-2KWxyVU)D2G{Yg$##*|
zYfI)XF8&I3D|n9+XL}kq(=oa!5&y$EzTdxB!CzYn7^+7m!M^Qj`{)=7K2`8PdZU7m
z6&z4-P{Do$pAgh`|G6kgI<Q;D`72qBEg?Yv4#X#~x`??*ex~4;H!}$s+Hsh@JK%5e
z{O~Uo91-{^*DktH?Z6jYto}?tt|Y=jC{v?xfXNdIzEW^f!6}X}mzU><r`7kIR*+TB
z%@7&}Oy+*#|3>f`8_ZavZxwu};D&;m3chEN9ch;p{G{NVf*-i-D7ZG<eO|!@4q4ko
zsMSTfdP=8DTsMZfuQUieTRT9|dV3m!>#or3SsB+9TvhP10`4e(FC(LUYwydc?(6K4
zf?v6MwD9(*<E9ux>Ds>({7u0v1^;r1R&kpPse)-c2mDRTbD^VQ72KmI|LXcf!Jp(b
z^%5_w?j|^TH4(phpK8=}KcKZ+c^PX&W6t}?&v2%H6g=bv5m9s8$5%|nghuWZ6(v*@
z7nsRp0q%9nD5-)Gyroo>7T|+l`;}4ggx_0M1q0Z=AL%Z|FrM9MwYR60S5ZMlM-`n^
zR8&z(MH3ZG`J17-yRwSMSxQ9}72JkhO+~7j*j!&j#k8hg4!7@v?CL7kXJzbzyQYd-
zDv$E>p0DO6he3(8Rn$=d6%ACBukJ4UcgebHBEYGh$}4NZz#+Y*mz11_DjKO^KoNtT
z2LI2$c2{y^6?dC?858yO2zN6T%~kl-L|k+W6_ScpDq5>>ac8&+uZor`R<`k;9p?6^
zV3-`k5%&#C{KVZ*GQi4vHF395(N+bk@`+a3sfm4~TFJn{`T;iDxrY0@@!4rA+N($x
ztprqbP%%gHPJAVsx$oE>ZY*WMTTtcQni!&DsLCU$(N#rn6}dF2iVPJ!RP+>@unU<g
zvQ!Xsr+xUJes%ZI{r+M;Z?=jYHSvSLmkI`qvHP5Q)P%v4jIqp9k*}h^iUBJ6s3=fT
zsG_e523#>dkUN4I#LfWn0|)*6)Wi>@rIWJ0@_CC?FjSZ!*@ILJR1qoipAq4yl{aS(
zR^e>PJmvO2sbZLli7K8`F<iw66=PLAtzx8#kcv?%p5hP``RRC!yKC1shkiJkVzy_D
z3I?0eMQH>^O^;LYjGFMzXH|?>vAnf+f|>{pXJ8l|nDM}r?72OSaoW$Tn51I5iWw><
zt9XG!qvAzcucdbi{p$TH1L`GyyE2NK!M)Q|yrg1lJvXBe8Sz_jM;c@4uQznROgDHt
z^A!~{sbNz$!&b?h*~HEDZ8ispHrEpWGtN~pPsJ@xHx;j`n6Khp6}wfuPIslAIf2zG
z-cYenMVu>YGw&i5vWlpRm<mOOsv=Cgap-Ak6$Y1Fw~z6PtM9n}dMlIhy$snUXY0PS
zHNO-dcs`rJWEVVM?vJ)rY<3DPdU#WJ_<-M`W1x`#GA!zou~@|t6-!ktQ?Y`Mq2lz0
z?B(>mZW$bU#vf7>zM<kblvP42zLsHB$r_qh#X7o;inmp~LuFKKRPh!YqNfe$ut~+6
zbmN}_+&aV^a|C4agXR|2-!s7NMa0}=vQ@=46+2Yy6c*Udx!K#_y{H2}P|_fLExAkZ
zALIo1JkiYk9>-C|cPhSDu~)_WDvqo8QpE>cKvW!5@u`XrReYr4^FPxMsQ6gLeihuN
z_X&-BH+@Kl41RKLv%28K&P;w7T{$M_Vc(4ZsrXFAVHHPMibIf|!RL?)ei9;R@nr!i
zhwrG0V=BI&<+)$4W5$>&iBG8fj!acgsQ8K#ynQfpXWmH_r&N5S;tYFA!!~w*P4B%D
zXrAKrmg!8&@8)OeW98i6(r6-vZK9Q3c17ET!`$a+b`?LXxTfMq73Wp_q~eN-3$&z)
zt5x0q1qZr68ZfqV_9YdUMGgG7G(0Hrdil8u{Xb~#yQ(JM9PaCteO<*bDsIs0hIiP0
zD_CNF`KE7G_?7EqMg|XHxheSVKKB2n;@jP6l(|DU=0d8Wwuaxi-j;Qj(okB%A1eM-
z@fXdg;-QLv)x`FP`zroc@sElJD!5xAINZ&^`vwp5_<f(7j`_klNkcIWDH=*>iK>cg
zNY+rPQR4I2$+RFpG5iNgid=5YIlMIU?8Njk8p@L6&#0;;HeHq@)=*KyV;ah9cwTJD
z<OnXiUa69X${MO@c<uX2_w@>u_LV;{FSvI=2Y&3PYgN;bs`0dZ)X-2%RLFmSSS_EL
zT4Ea=KMy_5I)^0!5BR@)9Sz)x)?7mi4Rtlt(@<XnG&IrBR6_#|4K*}oh3$ilv_uTp
zhjNf_BN;iv5K3-CW7%aB(wk{`;#7d2H4DGV3$M(SG`KYQHKb`sLcp!TtD&X99u1eh
zKAzw5-sQYj8ro=RtD$(8?A98t?at&od46ALr@^N&_%L|+LchzeCH4m1UlMAsAzedf
z4P7(@G<49=Q9~yU+!jrHwys}DH)#C8#dp#C+!NG5F!n%NR}I}XWN63~3laAkKRz>y
z-wk&+c4ukmu3>@`;2|XZmz>Mmr+4#uYRJ}*qoJ3E!R)Vw-WqZ>4A2rErt>r$ui@^a
zp@3@l&&a2F|L14m9A8NlYB;eV*k40mjTbBT?x!W*Q}JyKDR+)DYxTiEkp|L%f)3Jn
z19IY**!7x$p&CYN2x)jyL(f%yKEpH&*D!((ur$<SX^1=eNk?gTip+`GW9X<|GRD_(
zkJb|ZNOH*~9V@b)7PR*0Y>JI%?=*a2;JATjHC~;74|MF)@f_Vr!#^4xYM7*9vWBG^
zmT7oF!xRmg2A#SUc&2g)G`y_gMGfEo*n65_mb=jVB@NRBrcB1t&`b@lXn0-20u8Tf
zn5AK^hItxhYnY?qf2};OIYmG258fG9k9gS9&}$mzYq-(b_wLQCwX=&jMW@`z8eS*s
zrKO=aG{_nhjTbs33NF$>89u~EZ)B+&VoO7he-ivJ$#ee<4G|4d4Pgzz)`6t1<;jd`
zFf}aJu!K&sFU_JQ+xj15R<=cw97ljS`PnWe{oRuY>ecm<F4wR^!w(vM<fPEBit|Oo
zPL7wx%OLQkhPO1V)v%7fM6o_DKJ|~(+_E&Zo^Cm7$bX!T8a6%3J-9TqnG@<r&9^nY
zqhSlZLS*$t+ExL!iCh-^ulV*y$zAL_TR$@B3k|!uAZYkR!vPI@H0;&zk;dyJ@IDuo
zQ?3s+hTHY}K;V6XlG&-CXy=;Vr<R5~n!WdHAV|61>DOBM%;IxU!{-_fX*fD1{ZpD+
z!;v+;Khsdn?#<^vnZwK#wH3P&IHK`7^>l(`9Jr;SQp-YZu6H`F;Y<3whOabyqv4E(
zlWd5ydrfa^M9OJ)WLc=w!QrG2idX)cjx;l!HM60!w3V;$dyThX;5*SoFE+8JH<`N*
z4nHT9q2zfD7c^|_R<+?R&qWQF*tCY5tY5?J6-B=Y`jennG+Y(nXF<O#lS6@P?ANTm
z*XiLaikM7W7W$Rz#tqNlWuf0R+~PXV<(={zlrlMYsLT(kt5+1U2+w@GE6Uz2mc!(q
z0zc63mxg-+Q|y&xq5B%%-ZFsTZ!UdT@`>5*zg*&U%+)bZM=>46b$E1mbtLOZ(eb#>
zt3XgfM@b!(byU$&N=IoOWp$L(VJ!=-FYm3F>nfw;-DRQU%R-OoD6b>wyYz}WeqI(T
zxje+&3ObsU_a4u85m(ajR>X7g+jQcpI;!iap@X=Zj#L56jy@(&hdl%}b+A+|9Za&6
z{B3$|9d&dx)6rZ<UCQf#js`lmd|$V|jy|>Xt6WXv94DAN+S^b^V>Yehjf?(9Iwscg
zGmB4C9V;wP)8(OS>v|Ei&>`tq)mh@z!>y}$?$4E6dg7>3V)rA^Qb#Ktv-HGCn5}iR
z(J@@d2pw&8wA0Z`M{gZIotK`VtB!6u(sZ=f(NRYyombakSDn;=jt=bOgo5X0xhBi5
z2XkENoCF;?xN=ZOXB}O19@FO<Fw2G0e$svOUHw#7hK@`fJ#}R3c(z8VEFIl-^w2S5
zs%v-5)n-Pb2G&M-R{M(P%F+35$E7ZE{W9H^t0PaxKplg0<kL7h`s)~=qd-R?#dP%3
z@#LIDLoEB2>N?fM!%{g@bDmXP+m(8^jPga4pXGW&c4fcNeJ~f{S+1chqGJe$TdBt+
zH7wsZX?va2WyQ0GvG21I?T*wD(($~GNjgU9cuL1O9na_(EoxizLie#c#?a-IgxYNM
zvw;Ji<`7IM=(apGUdIHE6x*Vos0qcM6`duZ8l$>+*aUk`wI}O%fmu3U)-grLR2|cF
zyrg5<go0wS>qVjMq+)5>z}yPOv)IrpMY+?3aj4-;9j|a?h0NPG%QKfoAfFwlVQ14~
zC0ui;WW>X#|MJjlI_B%xrenK~*L5t=v6KzbuXHTb5z!IVu}Fuk<Il(Zh7LtX;^a@A
z;mh4W?_Y^n6Ilehj>p;+9Z&aCGEDa#)t%sjc11BEVCx_@=_fmbmX3Re3z>A7Os*Q&
zu~^5$WvN=bq9vk!*0#P<&T=}lj!in=)UlFotRtM#ek~RI-LqQ98Y=unF7buZy_sB8
zy7xLAzfJb8*Rer|>jm%A6;eqz3Y@vjGx>MVTRPsRCl|HYtYgUwUUIhR_}>o!f+k;P
zzoTPl&x%`Vy5%9($&0Xe=y;zazS*;re$IiI<9S!mJ#2b;Xt%)capF|-?8)<Oz7g1~
z<M&a+nEY&OGE04^<0H-;1AYS^>)22AbllSMiH-w0e$;VZ$3Y#R>Nv%9fSRx>PR0Vy
z2_2v7I7AzY<YCUoLeCK$M>#ahLnq1&rpz%NU+5rB$d?=ZAM;C*{Etccm5!5wLrIE#
zt>YUV-_aqfd#*1{JEP-U9Rz0u-L*V4FSqc-^3dYz{*#99d%--X<A+D`EOkN0MIBc;
ze5s!4ZT-J44;{Raeo4n=t^oVe`1~Zm6+tQRvyN-5N9R>UxG74p;Df4__pbK*%5``}
z=mytbEu(Cwv_EspGwZgFJ36WwsAk|Ue;u{<q!=h+;CHq=BKZ%l6<vdW>iCNjq^{?l
zj(_Mj0^jEfBS81Eo&VNh9!{gczk)+h%s`TnDDq9|O20I3bM~aaxPfE?1bxo>Nn<@+
zB@I+EK)|Pz0HqC-5uofNemMai6STab6%15-l>1FqQe}bHbazz|pp%u9YM{CS$$-m1
z4Ffd|G&0cGKrI808>nx<^HIhVMq+eUKIc7sr?9rbOx7__SKxYr{yQ(3Oc-cjprL_(
ztN2<^^0Mr$iC*GO4f-}Q(A+@V6(QoL21uJ3s4bE$1pl?KdNbF}77gUC2(=cJC*|_-
z8fa;Npp~Evy1IzlJmR!9(2gxO5AJFZBuz8W-hg8uZXn$NZwBvYpud5Dfer>b8t7yo
z$3QOwK?9u)bTg2_WZPa{4D|MUx*AY@p33pG={`^3t6-*qECW3aWE<c~#kX$v>Tcla
zl(ZfOtacuPKBxVsV`=Y9Ol|A;jNUQ4H`O*!XrQlwJOlYuz`%Fu-a#uu|CC6(R3fd^
z{$PQDK|`|mY;EUZolUotzpf+?E0H$9K#>8>fNo$QWemJ%V48u!28I}T#=v+3Lk&D>
z;3)&64Gc3d+(5{{DB80yV}yZ`bj5jDA0E$Rl1DNQ?3-~VH=|BLM$<sXzh6`uV_+<m
zH!#jfyb|Hzfo-17Z}??iZtskVyV5B6(l4$F{PAz#c>|L;zGHI8oM_-V1IIRJ-WnF{
z@pdK;a-2+GWjAxGk~zh|+=2{ue)d!YY=v)bFAeUSsLH@}1FsucU|@!UmkrFJq=A_R
zUNJD+K<g&%R}CD_&6p*WS>Mu2Z1+lN!U}o3;XDJc8JN!@dyw9BZZ<o`9#Mu}TV9ay
zhJl3~DFdlP`i|_EvB-dIKrz5`B+d+Wvv;(^wd`#6oxP*X{Eh*`K$LE8Ak1nz2KYqS
z%@rX6lYQ(Mum!aQeW`4aoTKL|kS?Z8&NSa<V7q}O29_FFW?(sOZs1M&RhnmofmH_n
zxm})kCFjwr-3eA3SVIr2;ko~ecddbStafqR^#*=;+OvTka;fn3F&^TLG{QJ9!COLj
zi-ETdY!-M}Mly@Ds&_;yTLqopt%#gkX`UShZr1R8#HCw+od$LZK<2vw>^69JSVCsc
zBmQ36=MnzEz`jTLLwb>%M9KXIJ~8mQk+_STH}V`X@Tr0SaSCL1I7n}7mb?A*i1M3U
zpBag3MjyPC$GZ{;cqPgq_QJps14mi5zvq~s1U#dj*Rl|NY4E}_+zR7%7+)DU$+;Fr
zZWyNwoaUMnM&mHPHt>yspA1|vaE7a&feZB25#Db(gA9C6pYP@Bb*ymRuUVuESA@>d
zm<E2Nt=f9p2NS0gpXZFbpUvm6k$KU;*Hc`V3|ux4IX1NQ(F*2@(8p6;R}K8k)isQi
zFs>Q6Zr~0Va|0!lT%Tx3zZm$HbL3y?hTz<$iKs@B>o>u?C76_S^-JrU<Qmc`>30Kv
zaP<zOSQziD2>of`fq_$h=Kp2j9v3JM^p{y%&Iab+>BQ&IiV(B@rmF~<hl2hqX!%Mm
zW*w;My1XJ(tG26n7^nC4x;f5WB8-w@)Cwnl7nKU5bQqPxs1in*Fv^BeA&iP)Oj?#!
zE{w+nD6ulsbY+ONd>EzNh0Ll%BWvmW<M_(&S=)D{KfQWD)iA1sQC-NVhS76n$Y|wR
zurWx`=*^xr!l)Te{0XjhI+suL{N9g?)~Ub~0@N0?j-YkJsP`zhei#tA!6Qz?Fuq(@
zj|H2A(KL)MVRQ|nSvYZ=^_XyOdKk^aXu-C^aE0Ly<Ltr$H_r?Tqg@!$l_75!BUgs{
z6wjTpGSpJwR)V$`w2h!`1*O=bsAu!akS~l+1>T>Nl@<n>?ZfzCWoSjyCj()02t$9@
z(=m*o06d?FNj@X9t9BNcfXP)ST;0Nn!|HRw$Ot1dj4bx3ch&4L`Wy><_kREGVf3Kg
zI2;F4`Fdf_C&9l~hK7Ar{>P%;y+rTU>`h`H^TNmvV@DV}Sul(OHW7vqMqwCz!+0$W
zHq<YS{$UIWV`vxy!dP>EK#NtOfgI&kp(3Hb_wROt!im4XgGF+GqpIxGlVJ=CV`><+
z)1~2Ij0j_V7!zoUFhXIB4ddxBM$xLJq!M>pJVnF)m^c%AbQnyI2_qu8%{xKj#%aCD
z9~Z`!ViKQc!sx!icj|VFXTxw`D49}8dLfL7VLV4qD=9r6#$*8|2}(}4RiW9r5&<Qr
zgt4f30=yW;v@l)@V|o~KgoZQ1csYz$!<Z$KGsC!4S9<PP#W6FbSJ?De7kkmZs7h*2
zX*P?bNIa&V96ocym?w%5Pj`It!+1T61;WCLpfvIu0xV?f0?3c}LvoUttA?RH;*3}o
z3JcF%62?**fj$;SEDSRYC!F~2(yZmO!mtG%ZF#4y3WX}TjEb&%8wSP0iKEvS3p%^5
zYgrh}!`Mva!&ni9wZXrdt>pL!R&rQ5I>BIx93Sbw^V8Rau{Ml#VXWsWakpU0iQvXC
zHiYrf$iB=a-NbrM1m6_&EkVgA=WVW#LxWqx*v7RbjFvY`-V0RR-PcuVbN==)PwJ>R
zwb1n+XIB{ShH-`i9mei3-V0+-7<<EsAE>caq0-Ox{kWv-{V+ZV<BKqklOM*1>}D9B
zQ;je_=Bx?he_`wo<C8EBgmI89ewewedyfat6mDJ>`npTMD_>=Nx+-)qCG-1Lp<|)`
zlp*sFB~vnwgu&dy?A^(X$8Pk!vaRrF7{_QIA<wMylUh`nSLI8t{9&97<3yPMX!PHB
zBJgrqe_OBLnczLe<t~i7Y$%Lx1R&<jBIWV&oQXWj{##l&jPJuZ7sgMtMz-sRFn**j
zg~6Yie9nha=W^Obk-Q*imDQm#&wHiSq05{jg&xX~UJ+$k{Hg#y3wkY#>jL~D=&xbi
zptf}?Q|zYT{6>?m?_c*&Pjc>1!!R!pLGK8D591FmZV@z#;LkAr;<_3^jR@|Aai6m|
zf}Zu$9)$6C808}1srCPa@sNLdA}A5Tzg%8wc#<M07Qu|!6^M&R5}cIx(~<?qSREoJ
zhfm1}N=Hye@JmH7;;96mVie$0Hj?-qLO}H%izNP7l&3z^eH9|8C;)LK0q%?nR*9f$
zgl}&OszvbJ>d>@4<%>=PQdw$sh@fT!yUX>h6G7bwYDI8kj&CvYACKUP2<nXTym+Hy
z?FiQ2>quNLg8GrfKr~`)5xl-S)F6V_{_qqF`QxiY1Pw)U`?m6pg-T5XJ-saO(CObi
zf)){Uji6fu`wBf$1fB@I<ecm6ieSs?kUN6USBD7p^e(^kndFucw2Gj01Z^Vd9N~dZ
zQrigHMbJKi^hn}9h1Df0`y%j1@bVE)8qKmrI<ac#z1{uim&}>h(H#&n9V6%v0h8lS
zdOltvb&6o`w?RHZ0m>frG+QZkiJ;~Ki6DbD*YGr79q69unm;pwECGmXPRQ!Pk)=un
zp6m#61R#F*n*!1Um;JdB<VCPNf)x?uN6?2_MKCjhMV&nb5x(5O*a!+E=o>-52>M4b
zB!Zz4bbl*#Km-FhIx~Dl5&YVXcZK+PD+lSI2nGxO#nmAupNwEw1WySLlfxqz^$3p;
zU}OZLN1V6b&EV}G941PRrjhF<6L7hEngcpLb9w~hB6uc(@ewT9p7l~Bu@X**B(9ct
zHiC)t5P@G5^m#!i2}*&<0=yvT6hWubt5=7Z#b;UsBmd4OP@k;LI%kOH22agoqq!;W
zS0V_DwqA{3Rs^#nm=nQ5nka&~9HR&pMDWHH*J~W&7Tyb!vR)TpzMyTE7Lr5yhDbJS
z;iaS;fkK5}NgSb|MxaHoW^}f}A)Az?N5F^4qw}*!`H&fjAR57rKEYT7P6Y7?OnUyX
zJU*5Hb_Cak<#jlm|6Qr<#T=#=gG(YH-uYs1DW`yyPP|Njhs$$TMzAWv_p8_(!D`{>
z?zx_gY&3$k5v+?KVt8Z8eb;l;UavsBA%fJ|-o(>5yV{eUO%c2q0l~?m750@Gyd{FS
zBRC}Lc_)Ic5q!XD62Z0zwntEDa9|HL7l3$I1Um)Z`F>3%-=*?ge^lS&YeJ;&iLC02
ze0v3WUr@?;)`UKc;G+l*M(}9_A4jl1f&-ENzf+IbEPf*Jxub~-zj##^?>i&-UnFst
z<>#CWnH@fh;JvLug3sSiCi8FvM>vk-vyMjaMFhv`qJ#P$iy(PZ3SVM;8NsBz$sLCJ
z`IaMjc>fa-@I?o~sR&Nf^6Ox&!`Bgf6G5jqf^nRQ;A{k=EsU}7EzKUm{U{zp@qGm6
zI9Z~2GKwD}_>oIc6o}%yn1g>axz2MTf{PJcViP$ou7tlwa5;jXBDlgCm+!jG$@0K+
zRbVE67T}to*9HAW&|kUq2|$^f5&ZTD-{KmzCPd~PF*<hzWh=#cy8hq-8^K?Kb6+fs
z<lo~$+QG|vpokyP+Pgh>w)Oibf`^<b5hO+NSQO=>+_!=)Ba(|pku1RC5y|%oJt<L?
zjG|N&#3iCAciLwZdP+xm5|^)>paf+EC>sT{nB=p!N@|5DFE2)|C>|GOD@9Q?ifU0*
z7D?7tMacJk-IppjH6HP+NAX<MR900}a9mYVDa_}IC~8MhCyF=gClupTH;Q^fhAn38
zsLDpkY!F4mC<aAw^;~nl#%vUY6oo5_#!*a};%O4a(3!bSqi7aI^C%h&@Wm#!Am!6S
zB!^D*xTEkykrPEP)>FdejiN&o9iwO&MXM<IGv@pqf9ojTX^|M&Hstdnm?(<YgxW>n
z6TmMhIcWm4k0M=wiEBau0eU~~=@jJ=ujnC~=p03tC^DkR6v?iFb`x~rnh;z0udS>o
zx<~Pe;H+O0sy5w6y!-Y3J);QRE6k2!fm`DJt(5N_MV}}NqR5RRPt<c(l*$*Fo=_M?
z-zdJ!tlU3}?T>l8MpBmK6!jCich`glP)UJPD%E0b0|kC;ZD?>5$2)t52wMB2<n5>Y
z!=e}-#Y<64k77g=Bcs?<%`-8IaCcWIiqTPw5qOlKPYL=<RuccHjipU$c%F{pzc&oT
z<Dz&bit$lQh~n8O+WIPz`5z@{?W_1)6wlMsqL>^-`+i;y#0wl#_Tq8RG!D&2$sCCG
zQ-f2Zc##5AgAIq~y_ey+mY2*f%!uOUC_ang^C)IU@k$gr-7kt)Mb{QYVLk4d6~*i*
z=0q_!iur;wFN%GW>M`pzk!(LLi}=EqNw13}am%%#H=<Y=#UjB`9`R)Xy6#L>A8|AR
z3f6|gQADD6oBk6;G>TXhtD;yPg-L-ZmPD~M3Ofpix^3w9+s<G-ip5b>-#Xx{clw>a
z?w?dI%e8gD%Ud#*MX@}JsmIe+(8H^H2>3K>R%)e4_UP^-b4?U$IU<6yE{gS0Y!LX_
zwV?%TLq&~KDYG%kZ6<*#A6H%ddd{0sycLBu)4Q1~fRLmBldIN-lD-OVjbd9AAJ8WB
z8ESPrZD$m_qSzrMQ_lL=ScUIKv0EhfM)95i$FuVGu*>zbSQU#f`MxOoKP8`>52N^q
zE*(XqyIFfhD<5-GbocFl)cVomX$PV>7{#YTvHuA^RXVjc#NsQ~4nGt{jq0BBQCx`P
za1=+PI2uK#R-ThloQg8UH0hW~ej(^_dP@{1q6|7ss@=oGf?o+tz~^)nUq|tcsE`6@
z1o%-DJR8NgQG6#bEB}Fi1q43#i1Ty4mu;~U=H6Hvx){Z!C~ijaTNIb0_$i9(^ea!=
zziUHR=z&+IpQ9kY8pSXDdJ<g!!E=p^OilrRM)tks`GwQ-mgm<fZV0fic^Z?qqPQJ}
zdtK<yD6+jBX1yofiQ;Y)f4?)d#SQ8ADE^?ItP3T7S@hl4J)%pbzv%FWbWar7@>EY2
z{5y(&=&LcvF+8LKbp9Bs{a8OKhGH>vjU~QW6ptY}hSssfdx?}7O2p7ChP!0~C1WTR
zL&X>>#jtp0O6eFLi(z+NcbQn?h}W{QMDSrbK?!)SBZDW)$50^#o}tGuMTYQIj-g5n
zkH_#t3{}}~3^ih?83V&*Q)8$-!d+cZ9&7o>NH<SJB&`(#Dfz68XN1;{p-v19VrVEN
z>&8%@t;bL=mWXSblp3hh%Dd*ZEQ0oXvRPrH82-#iZ4yJ%7#a&b*%sAfE@ftoOdLzw
zJeG*;Y7v7JgDVDi3@u~u#<=M<%OfZ;&l{Y{IMPK~JfM}dRSX2=w27f@4DDj@#n3T^
zPB9qkJpLHcV+aTXrp3@+02;G<2{&nn82HPR;6HxwQEnFjIt$85C_vmThKv|`tP5qv
zkRL;z7_wsMPEHIxSx*c@pYx7e7s`&IR}8&l$f5n$g~&WOv2XhG-hDaMCdB&BTNla`
zlH{*m7b=LMFoqA;g^FT0-#WW*4E<vmz)=uMa+;RUWm)y?2+|W(`~zc&e=!oZ^{h5H
zCf0w}7Q>Sq*%-#hFd>$>%yD=OPYEz0hLJIZ1Rf>m$A6Zjz<+eK;4nExfUz+={fIM8
zfM*09^iX<Mfa!ux6qKc&6X1D4C&e)N5&s1Nro=E+fEOR}rwQ<qpvQ`}nDL1Jatt#c
z;a6gKHHKLtIa|>Ag3h5+2{2Dkw*Hy`|L#mCeqG=NF}xwb!bdWLW>r&SP-6(1=xjpc
zfX1*ZhIi>3F@$4SMYpf+iNp|%!HFRrLo9|*JNS4Tqa}bTXpYBabN01%eX}k^x;Ta<
zF)WK=IVa#UFNK%J5;r-{Yu{_U+qEKwv43|8NG{*{(85lxm7F!}LY3BsR>!a=hP5%Q
zi{Y&pHpj4@L$4%l6gq4Wm`OgH1m{gbzxXhptKXIw-i~3X;Jg#V))=<Oup^dOIl08K
z3)@6i-}ND4GWq-mn7ccM_hR@vhJRw%6T{vZeu&}67~YTJgBT9Sa3qF(Y@I!2g)w|Y
z9~+*sKZZ|Y_?WKVKe>bCpU^kCSE1)X3<v4ng`Tm`df#m0uP{7?_};!m)@Lz%9>bvz
zTOSevm$Rz9vMuHJ0?*MHj>YhG4By1?1wA%~6ES=xWWMBDA!<lHUyU_%9G-Gg)NqOu
zE#UQ4u0`hQ7})wa$$y5+j>!E!hHpjj??jR^6E>H>QYj&vKRNvzhrYlwW^mSdE(<Z-
zjN!K!Z=A=a7=Di7S`3$C_$h{~TwV7i^WIW+gaxmNQcHz0wafa*xgNu>q7~v_L@v8V
ze1p?7;0+v1BECgF2RDY>G29Wt#fPWNoSc4F=se<lg+F8XD~1P;>bV!geXg;?Q~v$C
z1S{$FLONAlD;j+m!@n`qGV!>HBooC<lrmA;L~#?!GrkfgPbx@DHt|%|0W()*q?p*b
zB;$pt9x_Xs_+s&}PnTwtF;Uh;MH7|CiDy){hLtn%n2GG=8Rbn>5H+yu(s<%|YJI4(
zi7F<lny4nSoN+!j^zO2ZR1?)r)G+bh@r-TbeA_Ceog3$4ZqLOTHBGRgr_X0TVWPGP
zmkGCtIwtCxXkwzNiF#CfegRB0Fj3!xu`FY6zaCo)sx&mw$OK!j_nhbUm$}ruv59fx
z2Cx^QlNrrSq#VlS)51jaM|jrKj91r(Boj5i={|NzhR1~0L|YT>Ot3ptqos*fCR&?l
zV<NmhMD_Up#q&FIsWv;}GvPN8FwsG%!H%SvXm4V5>F((!Sb64}?xfVG#0#EJ7iV-d
z(aFTLlZmpl9u@0iqN|CIOnhu6K2LNr(Z@uAz!@eo1;`SVx!ncmVWOu1*^l@+CVC0n
zThLrV^B(2qn<x|O#o~n~`cf+svrY6f(ci=v6Jt#bFi~V;n2F&g2AUXTVyKBHO@2d3
z8%zto<TXwW8e$^7wTGNxU4r*J^$p~C_#~gHFhYopG!ZiK`4sP<;pIn}iI)Hr9!*Cw
zv0_2~*7YGK!>QFspXP{|c)`RJ6Ww}vo-r}e#B(NYx&q@(6rQax!NjwyGd8@W>LaDh
z^Cl*lxbSSf_l#t(IeapG#z_7w$5ZP??^F{nnwV~42CXV8e2E^i(8p3UMs~lL<5@7@
z`!ZcZ6d`lSg{)VI*QLG6?o91{W^G!(`Q9M|f^$sFHL>2r1{3p4yvDIM5iv2}#Os_I
zqUHrA{`{uGA``NSH|Rf0(-zW!Q*-#R=32G0*t>463t6GcKLIBGw?3rPD};TRrL0Y>
z>&`pXIxlJ>X2Rig5Y?I-j(Zg?+P_Akp1wr^TbO#-rL4s!me7DER+?C9@`^VvpXH*|
zG85zX^rZZl)EqKb(dA66HL=db8n)iYb34zo_e7#XV$!nt2~I)2XQPQtCU$UYn|M=H
zwZ+8SCf+i!*+k`9IUVPFscnyAY44cWN+tUai{2>M7q3k9E(Y_rnIPRRD68FN;$0Iz
zw94CKVz;PmR=(%cc;$Cq?e!jqbzRy|s&B7}_f33YVxJg=o67$W>xZ0H&GPuLp8Y01
zq5D}FVc~#@gEXv#nif8#8BJU_@r#Mi=wK$!m^f?Vkcq=4zA|yrM2Q^F5w1lhj+;1Y
z;+U}Bg8e<a4GeJfzy7iOmnKdK-Ewn1J5$rnUdp19r-T@rJ}tn~QkB0p@r}R_ivr`S
z<Zyhy<qR@$p1x<|dlTnOyfm}dk0$Si@KWXn6CKZ1U=3sQJ$-{!2`-wrWa5g6t0pds
z7K=Aa{fT<^_B2@)Ot{CufHuebvx#dQzQ-yLe8cySJ3yc04Z^>gxWT?yC~4uQiQh~-
zH1V&ATPAMP@l5<>;*N>CCVn^Z2P+>KSkc?VS-_g9?T`h&R|W^z>w6~doA}$rKcX+q
zI_F<{BI^OYqGcWd2Uj<TcdwDdWRitq7GCb-NwHAeLb8>Zee4AvDyH=B&I*}Z@LQmi
zh0+!(Sg2^BjD@lm%3F!aOJkN3;4zC~=e}C~yVL)v3H!)Wl`K@YcojQREnaDqQpG}5
zA$)dyXopxI(tCT7`gea&t}?5tZY8YB9@Vn&xP{IZx>$I^LTwAJEVQ;z$3k5TO)NBJ
zZ9i12XQ6?Gh8F5ufQ7%Mgf(ai8ibWM5)C!Bz~qyQ68elC9B5{txdpcckA)UOK(gSn
zP<?+-%8=44w&Z)N&GAwnuZ5OE=GC7I7WVMiAwRR)SZHgZy@hm<g-%u5S@2nSK3<+h
z{1(!f)!K7oZlWVI=6Kn=fQ1egI$GFsrb3%+PbX0@$RerLSYgq+G!~@VUCFo5$3lUH
z3=5e;EZ5@sA-rQ9JuPHg*tI0l3VYYXN?bh6E;E^9VetN*y{v?fG1*%vKudBs@<b*1
z7T7Op6><d%E%c?lg&`t~X6$F7zl8xJImm*<S<}N)#L=|C!6oM6#<EAA$QmkS$azvU
zQ8?E-OmO~K87!OU$&IA&#mGntAuI7xWt4@d1R&1NDI)zkt=d=%Z=G<xN_{LmZQ)+f
zJI=y07RFncU}1)p_>b&a3ll9&u`t!bbAm(W3pCdwJV}7b7A~A9$t*sy051yuG>-4X
zl9@^c@?R31>5n8|wlLGeE05}7ssGMdoo!)`g~#G3AIDq^^DNYI@VJB5EX=ns)W(xG
zUZ-<f_}4;`jW;YTv~ZA1lZ8bVWOmBJW($f1)xuH>%PeRXbPF*HriDohB!eD1SBhAu
zw@nILXtzx|?d=fdK$y~u*7=v_N|puNf@2}hMh)rAE@|u#?@~otY+(tVe4$iXmmc1i
zCciKBz3mCDla|u~EUdAx*1}2)=RcE%b*r$76Qpy6v6@t8wzQfvdXe<pNok$M?*-Uo
z;Y|x~e=cpXu+hSfT=&d+y^GJ0DqoX^eJWM&pOl>EF4NWhw;^qzn1%P~t`^?0u$5kC
z;av;cEF96K?JUdnnK$FA5?@*Dw9w-x&(bvaq$ASObJBwErE`C$?zZsy+tN-gk=$$H
zeGB_7d}84P3;Qg5WZ`2AA6i(qMf&VCgJ&ub3}Nv!ckBy^xMsPY2RLm{dw!^qoYB6*
z3nkqnYNh^<91A~K_|d}W77kgwCLX6P9Hv$lzGT+jYMTaoS9Ps@)WWeum!&T_@7_r|
zPW$hZeqA5xrc2}BkWO%#aEuh`Bu8PL)V5?+rFqh&qn@uVe8ac>7QVCaAmBb@;VdV`
zNoiWZ{d!tbtwmC=Q_}asr03|^-+E}_TC()cA&EvlPY1K`n}u5zE?T%`;fjT;7A{-(
ziH<Ex!>0}yu|{G;r8b1<20vT4X5kkLzX}KF+sR#QophZ`@jA(^OE>6di=`RC+Bb#g
zTsqw2gx^gMxozPNrwkp*!tQoScP;#3;ZF;{b1C~t;<F|q9a<-4ob2(JaG`;gG$7mk
zfD5CAe}wx@tl#tTq21|7&jpe=b`J&f^#;9**(h$Ki;b=}l5M2eXk??YjS@CW+Nf%C
zw*^YsC~f008|CdpkIL96YbRWqc+VSBWQ|mgk|lZ`Na|U^MyrkGE8D1IqoR#UHfC>^
zl3S$>Ss)Sg9hzFyI<4M@5POtrqq>bcHtO1_VWXyvCv4QVv0#r>%f{n2`fia<uab@}
zm-tfaqs(3vcO_h|ZG)cjF;6|}Y)G)tzy@E4)wlU|UTVJ~RJbA3p~!n@iPTVVO0Soi
z*l22_oeiIjW;UAJ@Y-l;qlFEL3OtkQvEiZ`vn98n>EDaNT_in!LE00MHe~v`dTO__
z(b`5E8}D>*Q?mU+Y1J{$%CDrhHqIQ7wtXu3ZKT=gV56gr_BPUOT>8%Q%bdh42-rBA
z=O)Ndr7_+PootN#UJBY^Zc?H9=ATk$8z(PGMVvBo5;M1(jqWyj*vPPvDO4)AB#oxd
zvQh6sVxK}!8`(6Djea(AZ1l3x$3}sT-Zp}#J)cCSJR7;J<d}yxA?@f&%eVQiRjMDB
z3T<p!F5yFoZwSv$96;uVuRQ&246-rU#sC{dHpqFyO7I8T_@T3#VBAnI+s$1l4WW!I
zy?;X*W@EUG4{dy8b8jz3+R$wnHbOQ=*_du)hK;9ejHb8Pc-F=k_F6d1Gd7;44yLr%
z+hH8DTBm)wUb=YE^V%+HJRKk=O_?hN9BHDB=WI-|G1bQNHYV9TB}SS|hm1*57x&5C
z(qF$xFNg}?TqDiB?Rk-!?2@M0+||ynrAedC_MlrHPOq@=YQ^UFq?c{Xq+fCAw(*LM
zS8dF(F_)f0GrpFv`D`2C`rJppl8(M5U6?1$v+)|&d>j7L(tJT{yd}NyrZnr2L=K<n
z_oan47THj2s5WGq7r#p5H-tFE9MG>Kl4he!iwdJ#S8Mv3wDN6<V;!~;vGJCT%{HPo
zVm4OTSZTwwVcA$}W0?)x#?berxQ)d&9D#@Y(u15^7o{aOZ()$0YTe<=?^6Fg(zi>b
zda0?)ZQNcim360OUy)YXSZ!mSjrBIxu>NbFwKfj?AQ3dH(v$ATu5GZfk;b?2rp?V_
z(v%@R3pFXzbhZAgN7JD_8!t&CXN!%unQLPgz1_xE8{2K{pqrhNw$aU|Ced7JVd>n5
zMeN%6O_DbznG2<NZS1zO$HrdHl)rksM+bP)%gWcC^_)4D=>GdQK43S`CDdS2%Xjay
z@%|Scf{$(NXGd(@p_fu;j)jfyY#g-lsf{me9H$T5lKyAoa~p>^lzp;3<7n!M<?gVJ
zBQ~$Z!kT@_p+fg$Gx;rDIw~B4;G!ul|4sVR#t9pzY@D|7mGCjAO%nb2!`sqHt_+6s
z<a{Y<w-k#?U)%VGGg`<j%jtQRPQF&6Px9eJ_}<1j8`o@H=e)4-Bj>n{%dFh*K2Ha*
zanVM(eG;9Mi`&`OX~%8pY=-+M8&_;xrOnq!Y;^o>spK}P+hS?p2I*(|^Cqd~X6Y9j
zc^^tQZTv>B+ampH<A#lidlE}u{okbV$vtWFOCL+O#G1yLd)LPAT#X%+ckqXeKW#j;
z@vn`)Y}~W)z{cNnzpn0Dp0rgRlJ1K&<h2c<R%bl_aQ3z9Y3FA({agBaKvt52Vh&Oq
zlyFeo0b5CSkXY_obs*+icV=Vxk`78aDC3~4gO|M>-n!-~?cn)0rPZfA!+(~ReC8?V
zfU|@0_e#1sxD^~!bWoj42iv>4D><m*U^#zju>R}Pp(D~qN2RI`syXQ8>KXk(N_BV)
zg2d<YVX1^B$$9RY4qQj1(q9MZnNK*V?O>dPXIR`pT?aWV=%Aj1`VP_^1RTIY0|#v#
zv~$qVK_drl2ObAk%J~~RXzrkegByK3O&l~8pqYavtAl*H|Lc<kXMaVX%faHHugB2*
zUG=?pV(I%H`n(QW(JcM*^NM?0vbMv)vyt@H4%#?)|1ZzQWdD*4q1$HqnxVNq2g&C<
z`9)Qmhg7X{ad?`8_71A1_-8%sJyhA(!9hm{Jsf<|CD6%1kjhu`Wjc_O{hb|*iKTaS
zc<8sUi%{%;$^LE*G6cVDCExB1A<`@dJBs_e3rg_OKfYtd{XHEV>>SAExXjA<=T%>C
z2e}T0vnmI94)Prga8N|^b_w)x&`*E@2ZdB)L#VGv^3V(7;gh|QXLI|rj~hZ?4$B?r
zV35P3l`;KDa4<b&V`$X0zC#?$-<tDXIDM#t(O(2V_}brOb?;&Hjf#vs>~(#0aHNBf
zgRu@SX9a4o2*n(HSJMBKgX^~gg$=Su$57^Mf9gMc>aeFBwB8sRd?x3OE1kwW+}(@~
z4mLV?*1<&n_GWVqo};HZc*Vi14kkI6?BGQQ(}bO0a4^NeR0kJ_2F_RZP1&8%b7P3l
zw_p2TqUH`}I#^rDH-iq7<li$ozwDU&c58w!(>NPL1n;N#k8}#maxmLL-zENnaQfVe
z$#Wdcb)X%1VrOMv%lW)M*f-AsF~RE&7B~nyh&Xt|!9oYR1B0z6`xiNo9Vo&Sw9L_G
zD{V{mPu&<&soutrCMd-wbq(CA;CtCjUsTK=br5r~jPrty5luH8#OZzxEC)SjW!MfJ
zcD9&*)X4n2lQ~bB>8m#cmpEAJ;E8L2*v1eYX6Eo*;uQ{7I#}&sjqt!#R4m26Wn<{x
zslfCk|L^O9YaOg}u-?HprTowN^FQ4fVqaG6%%LWm9K7k^jKj-J@s`7*C$QhaCl0na
zc-z5VI=O>)9Bg&4%fY)2wsAVs{b&$+*U6k<ivO_}`|kLm)A0+#Z{_u;0iUYw+3nyx
znx&F&j{_!em#R!!esR6rQvO%F`aW>5&%s9y%$$n9&&gQ5I{2Z38J`Df;k%s!AJYNW
z2G4B_ajG7mV>>wF;HZO79sJM1XAVB68+7&Ml`h5U@aM)5Yd+-Qu!B9N6RkWS^pV!u
zk#mgh?ck(?Qw|Pg1&%xT(!mM3VmST5?BVCe=2Gk{t{Wx%Jvs+SPje`D=6ua2N|hqu
zM5e$u4(}t&;7EPTf(~vwxZ~h^2j?7Ib?~!;9~}JX;1a#v!FdN4=-9`D7dd=)0u?tU
zbbFW)Ak8eDsI6=%|4*D;TmdozBP#m#y;!g5rqDIc3kNqH{N~^nu@wAD$L2(Mu`i3v
zFYnuy5nyc(GXuATF~cSOhfDbP9|^LjcOCrB5sxD!jz1jy>ELe%|2X)|!954}9X#MX
z+7M(t&Xc(`7afwT3PJPP84n%&>mVtPVsTirGEPR*FKy3ZoyFrA+pywOrTuiCX15B8
zN4zECC>clDIEEbwmWrcv9H~75W#W7pmHt`B0FCoT*T7%VbTZ4u6N_#2Bf&14LKWhP
z7a;yP(&DHXN2NF_$5ADYc5%FSrb5*?s>Ks8j#{y{II71{FOK?g)QIDsa+RNmqjo&;
z^0sCib-x-?D~`vR`;wRMprq<)gEocgP@g={x4k^Xb>rYW76Qc4AkG_&(L4^<9B;!o
zrb~gQ0ym1Iu>j;ZiKA-EJOUP{K#Mr0#4Gc4s5=gcGI6Z>DJSJ%5_RJXLr)yc@(N1O
zQh){Ry?oQyTIk<K(6(_Do=z0;iC(kgnAxj6`?x7-+=i46adhrbF+GmaDei!vz4N^t
z<B2cq4NABl+Y{&<N0&G{u0*Gmyj%?3*!N{<whS3@WX2I)jM(BtTuoLS{o?2!NB1~-
z#L+X3Y?@b2%8TP#BTr5odn;7x6~~W_Jm!{^-f`r{F>jcMSxZJGlk&-rV@p?0ANE2N
zA*WD)zJk`a>ko*dh-O@jhKn&UjzMuOj$=t2gX0(y$E)O&a1D*)_XnPFaXcfylY$Nt
zba)&i1famkI6`rZ63M3oeOl1bWIphWp_|3g>mSeLO(6=8`rAV~K8^`-OpAl@QEwKw
zo=pr5hL0XLF^=cre76QN@AUODcap$NP8Q$=K{pn<rpEDN9LW>vu~g-w>H4P7OLT)c
zX2kJw9IwQ2GS|C#Q)p%!7pC@l`}v~JHiaHT8UyEc%p5W+j@fa{;me;moH+KRc;|6y
zJnqprQgOT{@O(jEk7Gd`ZwM?4O0k7;EP8~0*c4J8VKt7n^}Q4@;<&dd6pmwICI2%c
zJd9t8aB$;@3C`>iE?WRoP)pD%Z-&UfY6q^Bam9s7<BPkN#<47pZy2B$$MQHL1Jm}#
z@jhpPz)Y^B4-33n&^2+ajbmLL>*LrK$M!fj#IZ4sO*9&3aXD}L%H&<w3tlVs#9Jas
z&O32z7Wn77{w;C5{itRpTf7<CDw34n5y#FrcE>?JYuFXXyK(#<P1gY(Rndh5p@<Ml
z=pyA)LCQ;l2uaulLP;nI5D2}Om8MkbMSAaD$d*_3)und?1O-G;>53?#h)5G@A|3p{
zH~cwg&OP7UxpU{vojdc&zMVNzF^P$0{Fd37GM@?IJ=vfD#mN6W8~d|yJR2vnaUdIC
zWV;`we=VB(QsA!yKA4R|IrbbDpwT+t5g|bNvcGtaX5&~kzRAY0Hd4vu(Vf@%#>OOk
z%K(T;_)bvnBychtr#R@@_<?~`JLz;b&SYcJI-fi-@#A&Av)QO}K2dI;F!O%zbJ_Tj
z_N?<slX_PSbbg~lg1*l8MXBVUMQA<C#`A1k$i^?(xR{M!X-_u($;NM-ZrS)d8@Gkn
z?_{p?T_bIua9MEvpxSl5E7|yy?SAOJDvDV8QChL<^c&}0HvY=SEn0FV=C$=c#x_&$
zMNvop>`ibd8+W;K9`~&8n>uuO;fm{h4D5SiQt<oF2b@sZc$AIDT>t6P<`Sd2;PT!K
z>ALHEPgrqc$EOr17taW9v);F;Zz}PNY`n}yVLyua5zD^-b6KtsU(k;zzq{Q;E<X;|
zP9i6_A7=|TjP@gsA9?-A=SO}&UiV{u_hgp7Ch8XOW7pLzW|=-*?;{;Jq)j0|V*FTt
zB(YtQB<tJ6+-p*c`cce}N`5?Zl4JcS?nhZa;<Kc~zj#XcQOb|m>wP8tc(^P6T;2rI
z6K6c7{U9wP==~9SDEx*W<wUJF1ugG~v))(1kFPo=R1_R$DF#1I#uQ~k2iN=F@uM;g
z_G5t`Rs49@k1Rjh`BBx6YJRlz<F69&)%~d9M~WW}{Rotdm;89ok6M17WPy0WN${hl
zA3v`5<((hJ|E&`o`99-)KWh8o@gp^NVjVyD|Ab^AObu&R=OIlJ*>*2V5Z4vhd6MoG
z^7RB|#rl3U$iZLMX!`o$_(p!D`;p;CV?Ua($d9%q<D2`@LVz?uoBGjA0Bw3aOPOfZ
zmyeSo{)EFP5*r^)J+v(Tv!ki4MDJSrk;(r~P~Oj_CLxlYuybjA%Zr|4?<ALbmek&l
z4t`7#k{$i%<i{{S|00UcT>Sm$?ne(le*HIzUh3+{oqZmrZhrL3PT=4Cd-~DKkN$oP
z@T0dMeMt2@{RE{wef{wH5uTbbqh$QKwFw{4U22K<m&G$x$xayP#~?qRuE{gRj}IAj
z50lJesdY=nf8+-R1`A5?`mw~Jez1t3Oru^S{P@_9PyC4fI&q{Qqx=}_$2dQJz7Ta~
zdP%;(8|??_7(eJ4f+K74jQ3-bpKlNHFgwAIiGHk^75`?37*cZDU8*oyXrsdL+Jvco
zOry<f6Q(mD{g@-P&G2I;W9CwY+v|O^1c!hQnJb(&k4{rdFk5+bG$}j2P>l6*KNbn$
zauX63`>}+fJ0W4IP)@Kc2doe>Ym&Vqi<VvO$ESY$6vWR#tnp*5AAk69#gA-1{C<4l
z$CuPhHxACjzsnu)Bj`uS57`feGxTQl?S822IA>_BxNX!gnB=eXL-%9rjq1dPV48kx
z&Z=wqVRJ@sJCv+=M}P?1S{K7CCD#kd4T5eIbQ5a{utiYHY!#s2{HR9xYp_vrb_mW+
zt_gnZ7Wgwi_6e}ZkMG*n-RsAt+tp(>_=?wv`&{t%3tD<&3sz@J(xMOgambJ3ocMkm
z=IrLO5K216_2+0Gf+LKp4e?8xB!11Qy}@^sGk1fJ*>8jx1-@lNeq0D8b=ly{Xp(r+
zk5inyew_E?F3(f&yEiZg`xQRp$JHCv&k9QLy&pdad`{4J)1t`y$?tA!cFFI4jPWyd
z`f*>1`-L-t@mV|WqR5Wg;QOyujo<vJFs{bfNj0+i*SJzN>37blmGPJTSQeE?@F#UL
z+5>nNz%@UvbMXnFdH^^4xXD#CfZ_pnApY{>U-rU}TYh){4W_^SxXpP-%l)|L$3MbX
z<lh$p<yJ)zk6jt{Kv>v$ubX|u<tr;bDu7%87d#f(CxSlZ@+-h|L0<^^QqcbdrF_|1
zC2|LFJ|UjzbpfIS$Rj}B9DY6l@(1u*4yQl>&sRjTN<qOXBxsDFg>z(z1W+^w7ZZR6
zmk9j7rxgS!89=EVPH6$k1W-1I^M(NB1bs7r@;UrkdGfL26-BmE00`i%0NxJZ9l?1w
z;0|A9fvd3AiYPbCI#(~bBC2YR2I3k4NCA8rz?uN!0*DWwX8^qdNC=>208Ii&r9T6x
z6+i<~>-_*~2T)hwIyrhez8#eqK-vm-Ad&<#Ie<4s)+4g~*}^LX>IG0=aM(13Q*tyk
z44{#~jRmE(EKLibsmOK_v{?YH0%#pT^8i`|kS>_)6ooScZYd}$j(gj!o*6(p!D%CC
zTS2n~Ex%Hj+PQlB06GNFQ7}6R+F8(7=Dng_1*cm8-390&=&RoK4xmo}GXt0vK;Hm-
z0elp|-~c`lGPGfk0Q~~!pTij-z(7HR!i*1dd`0;o0SpUZIAd>K^`U|$*wG^b_*lqK
z7j$F*;{%uwz$lR&Ehy`b5nyZp7qjBW1+ZvDJOTL=bM#LVVem-+lLMF%K#hHgQv;Y5
z04XsgUvUVSW>8p|H#>kiLi1ul=L)(&(0KvO7gLz>ucqNb!Cxfkt3g~6z|sJg3C{8W
zRtiA*6#;y)rxL*`!C9TdXRR6ws;>>eA3%VHEvTLyz~PMM1i=780elm{w*kljC;_Yw
zU_$_^sH^8_&;khO;63xAjR4F5tQ?LLfSrS14PqpKbvYc4_{IP>1^Cq;KQ_ST9R5}T
zwlD@P*Jh?|g0o%Fj~7Jm3ShUuUj^`)0Q&;?Jb*m{?-i7_*y8>G4v6d_dLW1Yr2wzu
z_8?~p;$F3KIKcmOxUqU9NAl|cjs|cnXG~c{k9`-w@c{k|;A#LT0yxQaCV-y;IF(cD
zhX76se1<_KqT*}--{+L(v6IdT{G*_+-14))zXtG|02c)PMbL{mtzQyZ+VDpJzvtk~
zIi*(w=an|fTnpe%0Cxkp&P#wOx+&-_LI29BMajPdxGk8kdPjOMfJcIJU(kO7cp$*P
z0X)o+thvv1)T`zm2k<0^e{Mz8^8j81@MRDOgLoOhe_R=YXdgsW5V?XV8APd|dzH)`
zM4_Pj$L(m5%_AuJd4tH8gYyURS`ID{#Opb@pa7p|#j|=$5QT*v;vxbR4WgI;u{r$W
zL6i{q_dU@RD;-3cAnF8>7)05idv&NBM3o@k2%?<Gz8OS?ASw!6{uM_ol9hsZOJpJF
z(C=L*ye;rMf-*ZSSH5?Hs2W6#AfzCw34ZmUdw0a8n*!4WC5RJ6?*$PrKthg&ngTpK
z6IDxq_XVvj=&Na-Bygi38V8XqFtybU!V`p7Wa|adAcz!!>kD7KT3s6k`6ooz1}3U%
z5=3ecEps%a3D8W?rh>9o^PJKaL8Ry43;}p=&?<=50%r!%Hi%!v^l2kFjEyV-UfJ9s
zh>k%l2x4Inor35b#F!w)2GJ#mu0ebl#79AN6Y{--=o3VDfqMwrQ_x<5{w?h9EASve
zeL;L6KtDkT2-;szHa$>)SAqI}?{%&|IEdkbKSWS^W2gYba)d_&@o^9%b4o`CF=|!R
zD3N8aUo9Quf*2pf^c<N9K}->NVh(4L0G|XgS%6npPqsBRh-rfJYEa0T5yZ?OW{Dt~
zO-G3cVZh7@Vy<A$6O^3!0t|>LxhROmK{!D~f>;v7(jXL}bD5yjxjKmDL97tjm4dDk
zl&*N?hfnzk5X9ObvV#bUqE|P2tm_xqfS^CEhzbcnzAON%t3hZ%gmd^-5PA?s5ckgh
zKf27Idl$qiwvhQ!+(xboVto+1g4i9zhMc-vgV>mZHwCddh%G@}I~S!*&$I7IxxxLT
zsbrgo+wDSZM-V%6<d=#jJ`>r!g6<LY)o||%;&aY=!QmD2fB@9?MezUkONVkeCxSRE
z@K=H!$>Dz;#8H8d<#4_c;M*X+6X3X@?Zsk9%_l|nl%S^tJrl%P0lpXX2SF)$E{Gom
zKA*!`xhJaN>e?5AxDv#lLHrWLMNX(7ehcDq5cvb~mx5^Vt~YyNIpV;;a=(l0#k=u;
zh|)6!^SwVH&sDlEi2u0QhHyQI8$tXV#KRzN2D!f+?s9;FxD~|TLEH)A!n%~(L3c;l
z1M_;5F5KYmM8Q32Yb=kybGzyNApQ}hn+~QhyWn2a2efKmN6I`3;&Bkqf_N?jSh_4J
z<q22&Gv22`1iEJy{h`m{eBCIyd57l(1GQ<JmqF}pm`F~p5ORl5JcJS<M2C<k<Qh;o
zguEfNKa}!X2n9mO7jkVQKYxgO=EM`cF2rbCObCD7Zc{LXLISWYX1_Y)y>L9Sh>)Rh
zQ2~kx8XLkU(XWyrlnS9-2ycc^It1>>Q8t9hC)$+}VzidKbG#7(>EX_;NXzGFs}utD
zR}k5XLZI6HrpPIMOMtgScqfNbS%4}baFZMwQ!Rw*A+(XvRz{7G`>*ZAAuI_&3L!3p
z_z)68=oLcm5Nd|-9-R<EhY)Io@IK$nhmaOR?GWmOP&Wim$bB`P7;^uMsvK;QB(lkZ
z9^c?2#~VVu5Pt2L&?JQVAq?J^^v#8+J9!fb8ibG{I1L4DBxqwnS^DP&A8TzzwAx<c
zJLIMzGz+0Q-NhY%TT59Xv<RV9ODSD&G6ZcYXe&V})>?o}LED7TR)7Yj5?*O&7jpMs
zy?!LIV+fr>=oZ3@4ZhCw|78!~-E|G2i@@AhmYkP8lI_CLd@b2M1ZwCZXiq`QZ1nXB
zp>GJ|LKq){FN6<57!l&eQ0Nyz{}4W6k3twgrxj0N8Wh679L(0q`7nfQza&4I)@eux
zLqizOu5I-3B{{p_>hq*w9EFWOf=)`pW<;Mal{_+pF(Hf%VN?jCIkHpRb4y!pic8ve
zqp#anEokkM<l+-Tm>9y$5N0v7Lii+vsUb{br$U$#!o7dvrze$|w9&V6QX<parQ`XB
z{f-S1r-vYK^fAq#2TCOn%npGsQBQC5%?n{p2y;W&v(XoKxWx^<H*MbDBYA!Z3qrWN
zsN+IGC!g=Qh%FvTob*P*(h&cdg4bmfl(9U76(Jl9;Sf`HH2;geGK5tjtPZ)qHEalB
zqX3_VuttEjA!G~S4?zndEN~!%pa3D-8G<74hm}fDgDUXNjXq)~U1TjmjSx%$$lvo#
zlpTUYtJLU-V6GFiMZIDyT^~Zmk6j5ig|In<-64Dy!j_Qx@?={G+e6sO*gjL3*#=K}
z8fx^85O#*R2{8J%NO(~+VPKJjW<`?9wU<6vmbfRxW7e@hgaaY$W32;GJ2Rs{XBZbr
zqHxpc@o%(}z6jw<&JKU2%1`s{Eb7+1(;|^{X_2JEoZ}%JVcmO0*xc7491Y<$*|p?Y
z2;Xo;l96A=w;_BN;{K@kFNEVEoZuV};r9@d8YG?!;THjjPjQBZa3+MaA$-r}Zj<kP
z2tVYMe)M-c%A6C~A4Bf0#msVc{3JL(bLq>G%pa3*QQ%+c|A~p*p!heDt+2^=S%7<j
z{t?2J5dI9|YRLVK<Az|Od-62_t_#X0?k%i%lWV5PQjDBiA^aV}?GWw==G`30x|@8D
zUrT7YpyT}z{t+|xK?qMmcpAdLA-*Vc`%8l#3Gg_lR^JSFtzgl!5T1wJUwnv}UI>Av
zg%hG=<dTtB#;!G<+%nQHd!l8G*yLL_GNIEZ->Qox^T@9K?CFs92?Pa4drwqI+EqS*
z|F|z8#)8A~PiAx>88I^6mr+|rVHrhaye+#A6h&nelTltq1sSn2ip$u)$@hkg5;97%
zxdUy=$S5V___Y=bH~C7-h|klmWUbcQPD$1#Us;hQpQS~c*DELEO&J7sN<Gqv2ih#}
z98XYDMkT?AjJE`M{<7}+?y--iwRuNIWf@gukQ2v-((An|qpHYO<H|1pi>k|@w!i*p
zAqmdWa;^dKLOwx8O#$AMQA>ch;!UkTTEwNhX3XB|sUyQHqn?c6TRn*~k^~@57ND*S
zPY$PR-t_u18pueK(Nso?jD|9r$hdt<Vrt|%Grh5l6Q{Y2Lpmv$sWR9L0&<$kXfC6b
zjMiL9I>)!5{o`6^(1$W;4>_b(bYe>xAE(!2QLt@FHQSRZ!~ZmcrSC<x%#zVg#swL_
z$Y?L4gN(y6zLHVh=3d8`Cu6>hPBJ>n=t5&;Oe*LeN8U|FcNv3a43W`8Mo$_2Wb~KO
zOGa-QAIRuiBDs%@cV>EiDUs}x@nVLjuZ**se8zN7sS?RYOC&d&;b}k9GeG86z{wx6
zXoiPipvVrA@ySfjhqPy=%d9)yl^iN#7+Yr%UB_r-j~Il)PPs%ftFN8r86{)1j2p$1
zC&*x}F@lce00|}Jj1!#kLNl}TOC(PerV>n+F+~_WTgFrw(*(crbkB4FX38+THDjk{
zFm$JT2$-G4xSio4U^nN8x^o33bAjx>gkLKoTXx^&E|jrI#$p*uWGt1jigTe{jf`<M
z_?WPa11DpJjFmF3KFZhlS#>h+mvW0XNzoKrErdT6bd8|7YexHJ1Y~TIu~|k?<`&1$
zWf(GK8Hx-|Mp%X_BWh3rx1|l2%U`#eL|pCbveydcCP+UNZ8Ab+I5NNc#f<iE*fL(G
z6sWtp=G|M>%IB@VPR4o}8)R(c=zoy3xozE1YicNk<7ehd_~ZLHOHKIqjI>3@RvDkk
z*dv3dy=;@QL&i=S+u6Zk)f)uj+4L?MyJdHq+`3;xlTvK!mmYq}LmT$edom8l*eBz2
zR*d#^9^qEuR+eAL_)^9}8HYq&o`FdI?85OkYP`>;*OZRu|G|&Q_*%v(8K)UDGLBKn
znV1tYzTx7}=^X5uceC$1@)s4k#<fCrHy!;nU*gnFEttJhBmN|(aE<uvz1}m7JsIa@
z{K#=XU-)|&Ed7B?U%td$8(I-lChv|G=Vkmvv3=ep>BXN`iT_zBjLnxwofl>NN+&4T
ztKc^ompDxnbW?b&FfPl0g0~d>LA5e>Z$=&ke{!H@Jmf5vaZSc`PIhWz+{(BqBkr;1
zZ*uCV{zcywkGsW{VR6c;-!jSR9OESo?@GHX<DSe<eDM#{XK8=8@V?$DW5KSpI!!x0
zkii3b{uLv#{*M&m$+6zYGM;b|<1`fdFO(|&RK_z=m*=gld#xdlWeHyQzGT2CpdP0G
zWOREV#T4@9B4=AVQ*HsCN5|z=kWWEz1tk>ZSMZvG!U~EgD4^hV1yc*>FQmAqsLy-m
zIld>YpaRn0s>H=8IP%29V}pp9iqcnA;)*HYSv))&D3;oGq^;eX&JLDTP)gxG%qXv*
zw1P4U$|`t60lSm?rRT2~9-gj#ZEz~p@^GSZ3dmVepiKp#u#$pj$1<t8qJkSc(wf~&
zq1fVrac?VlM?s>3Bn6cfR8g>_#`_5zvQX`J6;xADUEr#Mwy7FdLxCi4yn;9Z%5V1Z
z?4fg=>al5RKDRTirh@kr)Kc)i5U8zyrBuk&qPdr}j^M8tke;lduEHIpk*UC=z^fod
zK|=-g6x3JHKtb<<arx(UBAv4{jUE^}Ej@qz)J6&#E67mLQb7|1r#7@=_qq0_D(-YE
zcB);Pf~E=xn3@UDTtSN*PCDD#>|;?)JL`G7^i~Q8=zpE(zbj~~pre9L!h2Z?+SA*c
zee`5Ij%oc=n$bZ4kAG^n*+<%0!B6#4sj7>D5u1ID9(YPU_6!YYc303t!5js174%fl
zOX1$d7|HG^=%b)(Y}_yfeHHjP$_fT5_<#=S8P{JF^;58+V*I1#-d_)8^6XuP`XB`#
zDj2L_hytx=9IKOlB!mfGEAD28GQf&@nY^E+4W}`*_FvENo^d~K%)?WGM$u*klNA2Z
z8=Mql6pT|ap0n?&cPxXpRPk~Dc_t{hlaW4A(3$DpwSzJTR*P$SJae*wDGZ@qo*8U{
z)>ez_^Pgv$;{NrF)j0>JD_HWMr{KOc%FI+SOTlaflNsB)JPSAbNarb-uV5Vml`}=b
zLInW@K?RExELN~W!AfdSusN^ytsCBD3b?E-<>GL|`}xka<qAldt}RPnrC_y!H44@$
z=-exA+!If~4(Xq=F9KvM@GJPnb`OQ8-`2ip{nOP<RtzbS6_^Sv1&RVyL0ExKhj*$+
z&y=|4)r1BDCdwNM-o2DUCl|Y!X)ACz%eKZw6inz5N44ZrbLC!cMK-iS!6sU+V56vY
z>x_GX_Raf!NSU^<FTzpV6l@n@hl1S#>=cwTy9Ag%F3)EI7$>60+{a!kJPZZ@DA=#y
z0Q;rjTRMN9=L<o<Qt+h!<Qx>>kb=Vkn45iMG96Lywcs2T^w=vbO26acqu??FK*0$G
zCl&m_Ny@3D;Ix7>3eHksk*kC>{ri}gi#*>8&f555#AN=c;Jkug6kOygH@8)lQO$l*
z@H3es+F#&Gu6kyl@erqGB>u|a;hHb1Q|!0J9;Qod=vJHeG|wNKebjb^RTSLhq*HK}
zQ(N;~Q*d2Wp&n|x!Js<hIhNMu@Elj|Ed@_^dTujT8P5vHFS*Q9dv&Vaq}b2%Ja-w}
z+ya90y-h17XO8EAf`4hJiXti=DtN?oSVcY+j}<)O5TEtFU|0?+`IL*KFw8YFf63<z
zl?U<c0{3Koso*~aQ7Uq&$gT1%gX^DmPRg2NvGfv;Imn}8_~s7WYU%lA_tb;z=}q&i
zD4_DO5erh<zNUhD*xxc+d<9iZpWd{P;FB36vaG@m7FAJ9MVyLw6|pLct0=Fcf{GF<
zN~$QMqO6Jsx7w6aQCj7xn(j`~-F|FMFn3PI8?<eKr<{tLtrN3C$!F$!2;NkYu*H|Q
z#aB^9B^B?gsHy@g&o9P1Dk=-%T^myitn2W$zywuPY_MB(^0hxTxz(koO{t`sD5{}C
zQc+!C@}I5fN--Kh0fGb-HB}@Dx4fsKmH>5Bo}1};U*$I~7#K{Z$NFvYP2J+|6PqXm
z$f4!QD(b56s9=j;;V8O=xSr~cGG(@(Yn`H^p^7R7-ZjvOAAhnJVZ0Sa6UwXbYN)3n
zO+`}`=T!WtqM3^3D*P$}DmTqWx{8r1Mybe9(Ne__6+>0DQqfvP4;4LCWU6SR@*5R&
zR?${PmWqxlb}o|Isc27a<D?FP_8lh?t6O}|OeuD;<QXp&n;~^k(N)EmPo(bDFjeAC
z=G{~jog~c~BaIj<Nn@qtF;XuTy;TgLA5`>FxmPwmP|;5XH#t9@66+Hc7mk*OOp^Kw
zCi#&i?!hjjM>QLy;zOZuu*&nNq>;;GK2o`zqmPHMG-@BkS{27+M9r6msXW;;zFXdg
z^=3)KRgjKQ@v({~^QEj=66t6f$*5DYP{mjp)2-NK6;o7<Q!!q}1Qioie4?V%SgGP%
z$!Qo%I!WbGt*J}Kw9dDv;+rLt+2T|cvsKJdF^zGnVulKyurpJ|ERNt3_p}{SWtG%$
zku*8I{am4KKC2{`m?!YSB~o^e6t_x`ltmoziPB0Ht5hsju|&mE70U#($P#I}ij@sx
zS8&`HNfbM~#Ye;HluTYN1jtz<6n?7W@S)<=wpQ@7Rc=U~oY*M7$`UE4BBbIA`cs9h
zLQ%0%#U>T13QdKn!ctLfsuX6&$4G_>o!M1V`zcc6vC`!g(vB&TO_P>O4&BZvGq&}R
zDbhODS}s*wA#G5xUSKjQUu253GP=lS6<g>Kj*g10>`STq+f;lzMXEeSIxtS!u40FZ
zUq)r@6m*x0-zQ7VvMo~Dut&vS75g~ZS4j<~NQK6=`JB#KAx&N(?N@O?1v#{e>EH_K
zpo&9OuHrjk|6xXW-XdSC_)27ts5}Wvy4*IZ-VEueiepx%V=BH;-LsRvULrBexMhpS
zRh*>XM3oaFy5>xk(uZfAR&kd8Pl+Wy!{HXp?^PZs<{qE)gUW;9q`$WK&a3!I#eXWI
zH2kdMf{GhlAJ{t;7gbzSab3l)oc{Oo@j2^H70<W$ep7Kt%q((#XLO0C{}A+wptLHg
zeH2Tta#^S*wd>{Ld1KvFs8`fqDsHLxm&-Vpsa{ckvzsdJtGKP=4&z_N(L*Uy>a^`R
zL0U9VTGu}6AFjZYrGjImr){D*A0JS7ygM-;sUY*QiYEe$ALq*SohLn|i#RTerRReG
zQpF3AC5Hk``aCI@hTIw|XsD<mT0<TUF&YYM$g5%DY$?Bn*EHnQ+@PvHNm@M4J$b5t
z$QIJ@x(2&ZJX1jp>&Lr8&_64RpooT|8cJ&@qj5iZ#A+xhs*Ic{71!`f!&s)=6QvSt
zZnpI2M5$7v_);349ZIo2k;-b=HQ7~FPJlNw)E(P8G%Djw4K$!Ujcix+!g$x1N*bU+
z(hx^$Per|@p^AogHM}j_dPhTL4NrQM;3CEpdpL#TUX@C+qH1XFu~yXtt*-IX<1S4s
z<>^%MqVCSAQf<v${Sq|P)bO5$9Svh^X?R})kBegBxlx?6q;)hTYG~1=brS8=+|c@Z
zv6QTVbTwC0%{}p|^mJEqeGLsX=o$<SDH<ATn83C)G}6#mLk|r-H8jzXs-eAx4qX2=
zG}X{XLt72agjFpxq-!WKPHL{<liBfq?)7A7XsIDnL$$*xhX-f1q7N5Itpz<kG=YiP
zYZFTLsF%!I;R+?`)htokP6MldJ5}naVe^~>^1HIXq7_PZrajZ7E`n-%J>4{P*YIMh
zM0wVFJ0-T4hTa+mY4}h>9}Rs)#r_(60-XOu`apnhCrk4uNc}XNm?V)oKrjbtI50<I
zI@c)nBMpN!jL`70C>p{M$tfMGVVJ<YcJT6aYDF}wjMOknL%;GR$7vX?VT^{cIr6-I
zF;RxXY;?Q^Qa0LotTc)4((tK<H5w*sn8Lu;ut>vH4bwPe8s=)4o@4M#4jElEQ3{Tc
zPK=diX_(ETIg)RTo7f|>L(v|SrFk0me<ID-us{G7F=$B_YgnQo)H7<8hNVI$uc|9G
zEYq-D!wR}+jH{W#^XI!@S%)a<UoBeUHIAigHDqg0HE0_A8Uh-ERH&iUR$pY6#Ebag
z8IsJf-0D*p3>8Z90!<FRM8I*p);21vVPO5(ij~~qHZ@p`a1GZuRW&#oj&nFPL^Q0^
zut&pQ&RmTf=JUi8X_qi~qlQh43XP|+NL9v5TQqEC{Id(YqDEFMxlO}%)}13wST5yz
z9N%Q7OHa?2cCwY+O^aF*_3UOyjFUdoAkTNR`!sy6;TxfRKgWv(jFpaP_(H>%8V+hW
zBskrdOH3@9vrIb7VQLinm4*UyB`P6@^lJ@AMHM#6bc|uS+y&nX&9wGA+PTba@uY@R
z8qRC@NyBMI!VGEO4C$-}(lZ)v&5*ul((r?Zb2+6yic(5)=t+NOkbENjAxbZB$<lC9
zw6btT^m4J#{VKA*33^Gx?*d#Fly3jxqpT|;iUu`^{Zm86Jc*57*Kk8a!7vJiag!mp
zE9#zx`x^ezaAm1<OT*s+JX<Q=)^JC|U20e=o#4{(D4yWtQt2O!M-||OhL`O7C(^%+
z)yBo1YIvyOk%q^DIrLHd6VBXaQln*VU1pzYcrJ=Mt#Tton=P^Ke_Tkz$P-3X7`ejO
zu%!)|Ou55gErPrPycR}*F!F_wKaBLPzGBN<4X>=CJ#6Cjuxm-Lt-hEr3Ww3Qaj|k?
z6bYkf7}MJoEfL17Nm8*eV#6pNcJC_d^ortbB%NG#j;pF<7^T99o+FhGqih&&gi$7p
zZYw2ip+qKS299?rtGpRT`7kO7B^3qDp5%&sFh{Bs25&V9-VWoPFj94->8Kp$|9rWV
zKfVd$-7u<#u{4ZjVN?sFdKmS>s2@g+Fr+Z*gpn9VTp00TydQS2bWGJ}OPv;{CWKKl
zjQ7}=xl;bpMF!86YVj_8wnX5WE7fL~7pD>=iCQi*j1F_9<S-7+mFk9ZXPiXg0}~{#
z;D`4mHwYtz#)mOBjD}$}qQ}C>3Zrq@jkj8Jq}J3Q#^|l?{cvg+X<;-CqnXg(Qqbmt
zwh%O3&<sH-f3RItD}k%^jAAx33@U6RD8cNlzII`>52JS&eP|EIXp+0&bPc0p*u6Pn
zl}=%F&e7K86=)FKE$m*A7fzJAhtVUaw5I^Q!f2W0w$)c;KW5B~m8i-W#s^{a6U_c$
z49=-FAdG<m56a<uD8NUwYNBhv5Rn}k#;_dC!v$wVj(qc8QC#RohA~QTMhm*WK`iTz
z3u8RvxqZ~!FeV889C~%OG%<`xVSFMu(*&jP<S?cPJXKKEB6E69>5MRD=HOXj%+A3L
zBMH04N-1~p&CB7;4`Tsa31gAq@LJDDn8i7zOBiorES86{B8<&pYzbp!7^}kYhY<+7
zXK}6$<N88rtuXb|FxF7vH1{!zG+XGoJ<H7o!w8A29fll+5{40m8HO5$CN$__goQ#@
ztTkO~Hr+ijll0o1j04joi?z1;$R9mjV%7;G62{wOq;+Ae=kyQbtCUz~DX>u}*(7wn
zGdhDxjA_!=Ft&xUCyc$qhV5bO7U1&*(vC1b<b{brBEaGW60@I)((e~YB^G3yPcOPJ
zj4#6YG7O$``njO{InCcoIv_Bs^jRPs4C64(;M@^KEgQvOs8Etc{zEB8!uUFjqg*yC
zlq5A4NYu<$z769$t}Qx>>p0HX3**l)u7+_kj8kF!5XQMM3QmwthjEqxw%2ne3~Pe)
z^XQBh3#IRA@K}jVX36|9j0<7>62|#3ehTAf(lM=@+nr9di#p8b;xWxw<zg7WhVdKi
z951cz+?tv%h4FhBmxU^3{|JL(RC|R!%-xiD&t4Dt*XYbJ&!<3?jvMSn82^OvAdJ7l
zxWy%FvUDfx-WdGN#cHK=n-jBfEVI1RAh;XGy)f=GDke*Lc16W3m*mOrqx!#LJPhMm
z7|%IVel77RjK^U-3A;y+#f_78ZuLD4qjimPd|DsA)SX!`#C*@)E9xazzgg}R8J~zb
zRdeacts}3Fd^-5tm)0RFT1Ot;eNxMwBHddq5#-nLnvNJ9g?0BSuYit}acv3;{JN+`
zCOL%!pS6BmE)~%+XoXZ%2Qi=ciV0yppORTZM@b#;>Zq!_i)|@EE9xk%ql}KSI^NLX
z+tQ|jj&eHQ)WO?M-jx2yBXp-p<#kLSoxxJlW?99_ucTwl;4J8POUK(f-qBG-2j3f1
z7HSE`RLy_kY9AL2%_6O)qq>en9Z5o<hRy>ikf1}--G>6+x5trhcjBFVO(C#jRI~SV
z@K&G4_}0?#zQ8=twziHsIzGP8h9Sz*ft_0?>!_=vzK#YuJi7ZVz}{JnV|h-lS4TY^
zujeiDyh|q@P|E{tQ*``$sbpgv4R!YjU8Y95`>?=Pn&{vOxsNKAByFmrnGQ!sL`QQS
zEohRCNjlPXWY9}GKG4xpM=Kp2baWI3x7N{C01ir~jyAj$PLYTYjA`9!g_NbEosRab
zvci2izz2DbPA8oQ8KAq49y+?{=qjp@s+Zi2ZW-&=<=cSuE8N)Vse^oSdh6K5^M3`U
zl0G{6vV$TRMzoEhO!eh4{dDx#F+j)SQu*nMfeZ;9BdI~hhdNGe^$pQ6RLA!dq>pqA
z*4=k6d@DjajNvgu`dG*EkFtjA7{MMbal@4_VfaFZOp1-x-IqCIbc_|k<c#C6Hj3wq
zoe4U=u26Ek$nyQka>4vW$7CIAbgb1eMaNVfD;eZErZJ*)%+s-=XVeVQ@maci6`QGp
zx3!!gjdC}g&Cz7_iY1BXGNk87Q-@`d&eyR($3h*8bS%}eOh>Mn(qbJ;bj+IKj{ctc
zE?qW9TCQW<Y-xp#P3@xyc(Y1@s?(&^qD9^<e<~U+J5yq#RFbX3uS3<L=?Kugu~JBf
ztRqOvhh<${7ITUB|ANnZ%V4{r-(^Le86$;ttZNsg>o925M2Va?=1C?e)I7=3!R&*o
z`H5{&O0Z7HdL5TIH+5{#u~ElS9mi;-j?Fs0(D9{?EjqU9*f&qwr(>Ir?E>%7u|vmB
zMm3ju#(?g=tlKTJ1W%VqUFW;+=va#adqowNGW)sCqY0%KTYdX=kRITaspe)6>OA2B
zU+FkPJ3AERHFU$He1~=S28K^P<Qy(v;%j<<PcD4>*C3Yf9KK-)ag4Y==sXu5$93@S
z0n-Ui(uooU%1x9`at)a%@pZu&9cMXkI?glRI8!D_d~<S+6OC~@PZ~E*q8rKKo0HuO
zrJr>CqT`~DpLJZ&!6lThN?6L*Cam}?hf)Z0rTvXVKhJ&gx-2^KQpbNf{?Ktn=lSxu
zs^h+ne{@{a-FvOSxOC{a&P#xp@|=~t;NH~1mscYfWc;n;Hr=S>9_RHKx9ARsX|}{`
z6DhBcj20%|oIl{wq2oCnsN<oIM>?L+t2!Q^jN%Jb8uOS-&;<ACl6MZz#GvpNnm%Dv
zvo9U;6xrOZSkYO<q739RP|`pt1Gx=E8;CJb*gzfwc@6i@<aGo24CFW5`-Im7{cgG&
z&%8+>r+|U@casQs`%%z9Ap?;`6`%D;nLQ*+8kSYWK&*k{hI>sZYPhc%iy0`r&BxWo
zy#yHGYev4GWGS<y4U{q5Ye6LgWexYq`b`7n4ZLCCQTr&)nsNr%ck=lFUcqp0M|-x7
z>i&DaiiZ1e$0EL~fq}PZqya9)?-=;uPE2LPUAO;j7_W_L#-+9E?Cw<!s0K6x)eKZO
zP{V*^V6=fT2IANq1Dy<XHjrSTrhyg)(ha<4pq7F91{xT6-#~2xUIVR4#n&;AXrQiv
zI;G;7O)`*d;9<#xd<&wOC4I&B&=2#YR&DB4Pt<x<nqr`#fhGo04Kxx0H;ZI6&Jmyt
zvuOsJilXL%Hlu~xeAGFjSOV!QJsAdC8fed9VxtCH8)$1F%Rr`qHU`)z`An3j!dIA-
zxSeQ=hIJ73cQlYDl#|oNKvx4k10NU|S2VhtknCZgyMgf8!u)KHdlB?B&`a=p8|Wjz
zt1kByrn0#n+kE{D^f&O4fx!kkq$dvGxEL5j-v;wA%YU_#GJR-(nBQ#<Au#Z<!Pxea
zKg_@gfrpFg?Pr%DlSLFB$u5iRC?P=3Sej~JiGigC#v7PmV4>lDS2@wZBm*-H%rx+c
z;E*{*fXR%6vF^bxQw>a`{Fa#A;+&W127c5!4~i=>%fM_QIbYB@2Il5ykg^iy3H;9P
z7;0D`@Px}fi5Jl`O2@^5LosreF^qkwYYk)@SZ-j2;chX}qIS|=U+PK&q^ks7E$F8P
z)(AlU@V=>j0|5?4UMVP;+zx^p6fheSOj%H772zU+umRmbiiw6M3<IWty9VxY_8Ht=
z2S0Fj->mL%o*FnzFD1sWGqB#kHUrxYY%s9Vz!n2rh1ezon+0H%(c64eo0K463d&KW
zU-qfE!@y1h`wV<8#C93@j9n9Wx1hDO=xb$)>=l@``fZ7RrD4B;FARKX-~flacT+OI
zT9R>4h#fL;zi`_-4^zneVpXzRWZ;N_uSMy1296szYT%fGZv^M7MgQ0Nt;j|%cC#l0
zK4ajdfl~%fv#n1O$Zxf=NY6862$;?q_+E$+zt_LzIS#sk^9Fu0aKpe&13w$MVBnI0
z--XyO1}+--m21UH*D6=T%a&C8n^3;LchSoR{xEROz;z*i#lW8iu2OB;{5-8Y@kP;B
zwdjWh+kC{`7Q1d_`pdxI25yU5w*=L;`I5J~9m%&b<_=ezvnf2k`@VsH3{)}Q5q!X~
z=ejNML#~iq#!cil@z}r<11}98F@vW<)pG+c7>ae`pE1buwJP;#^4-dvso`Ml_-keJ
z@BAXA<eZ98CSpG=8UJZA$1B=I9uoyk6f%+5L_QPwO}u8}UYjDU#ng06RsqrOwz(A#
zUv5Co>mqxmcheXG6UC^_bZw6Hxg%Rdlol2A)qoZ^-M}j$IJXu>8&BP_E@h&$i83b2
zn*1Q&?c*CJ$_Y@x#Ov?3oOw3oO%n?qxo#{k`1i`@uP6XHTQ(Mfz;Bs&TYz^=R2Cp<
zKucHur|zh|Yoe-&Y9^|ic+W&F6FfY<hKYC+RRZyn$wPKPC(s+6tK=_txj}-7nkF7D
z%Gj1S`P!4BlzHDoZT8MYJ(K&#BGE*$iMp>E67+|}cy@|yG3Dvi)MKJ!71!ZE&T$<`
zJ4x#c$p$9B=yPMBk%`78d?r3H(Zob5tC;9yBF#io6KzcQ1n_1ikAp#L)7`nEg^6?%
ztxR`MgIKi$DN}}tmVy)Wrkg#~)ZOcV!kMB<t-dkbBciQ|EEDZa5Py}O&|ZKJCO+Hd
z+dVO{)TK_HspO)ko9S+d(eUebT}*tx&DYh$-EBT*yPN1g%-h36Pa)7tWP6+F{V0k2
zJ|audSAdrB9s3cO7|-E0F~Gz?6CaxxX=0Gc(`wueABLIu$VBFv)WH;35udy!^-fj{
z!4P&?aENJ1^6BK^^z-TD5sZZGK7vmsbsWX@Z9vo3+kK-=j4@#yOB`!roB+?JMpxVJ
z+h<l>a4d16iAg3FnOJP%6BCn7Of@mh#1wk_wFVW(cjDKZ!-o|nozBR~m*8oWFm1bU
zhKZRbW|{87yFgHa*(T-)JXg?x+kNv)%r|l9UKT&*k90|<%t8}SE4pBbiKQk_1;TP6
zeECJI<=cH<mTIr2#;-7;c1z}GiYr<7-=tN7uG{Y8_8n_XtTiEj2IVtkoA5IjwjgZ_
z0t^)@j9^&=Aqto%9^oESP^ij8Hyhn;XePq!tc6c3=yVPzuZ8>;O!~ycc@saGuuV87
zzA*8niHM1HCU%(EX=1&J4JNjj*h(e4(l(mdWa3F>@9hVkGiAJ=J@jlgQDaBik?p>1
z9PZ}cpZ9pSn;<2AmEC1x#od%WCia@x&4?1EB@TA%SUhg(?zDX-J~#2zr4D~<N&8J6
zLWG)1?T1qmW<T^4eVkcrb^4Fq)PwYci4!JHGAt=<;#-bXvA829zBcg<qi(+UsEHQE
zy~pVGUU7f^n5mD<_;ovv7fFA)-FJqcmOb=*XW}>~bzUzUV(BT92UsAcSKK)hXH1-B
zJe%Oxl@EHxwXGIMdw%LzkJ%qgWM`xh{KzFpO{e^l|D>NyT;RHA;=YMrOk6Z^&BS#R
zznb{X#1#{Nnz$s~b(s;~BaUBJ{%(TZnOr034~}~QFMCIm_;uw~)>@ZddPwS!JADXl
zm}nH^{maBH6a2jJris7#HDHwYZ!SuEJKZ*M$3#l6IDVAHF7xXte!g{=X7`F?EB}~y
zVB)!n7pD7J*S{Plh8))@6BX*GKH?>S;qlPJrr+A(BV|JkcKDu|Xm%v^<rB|7HS?v3
z|9G*m5N)B;4qv~0X;BtP<9Da!vT!he2Jz&VnRzS>@1K#^LhJk9KQ3fG57p+kg0ER9
zV4<!BkA>GQ6tqy$LM01@EW}tSWudf%TSL<eTPSLwn1v!1_GwAvOgoyy&qQM_l(10J
zLU9Xq>ZdXQYSc^R$D)O&CS2W<#t;0;SSV}Z$I~h0Ev)nV-mvhd1%CX=(sC9^DQx}H
zVahcxWhw|sx)&DSvJht>-oo1!-my^KLJbR*EmW~k)xwE);@-7fw=lN(c_H0GP|ZS<
zTPe(L>6wwyBW}ikOvwVnY0AtLT9RO)riE?)dXg=?XQ7sb_bt@6uwzFWBXGs>Onw^r
z@q(sxEF@Y;vfQr_KT~SoOH7@5-%F1XuvCumdM(tm(9Pl>=TYB60}HL_QVS^-8d_*>
zp@oG;78Wi_Z(<?ULSupBuX)Kyv(VH+Gs_)We%i-R^?oQC*J5Yp+4`yc&NJOYhJ}_E
z+T8F~jgG6jFO7*zVtzlFNxp^77UnV3Eo52fV4<T0ei+&8nzx;W_7=|N%NV}Hw<M4`
zV0KDuo;IB<P(O|Tsz)5NT`Y99a5=-9P@o|{L*)mMJuLLJFv!A(7J6CeZQ%n(j)guJ
zx@^ztYr$t>!v4&KJA5<pwK@LW6W-yYs{R%RSQu#GOuvk=`8zgxDDB_jyW2IrZm9O5
z7t%)-23z>p!bsZldxs$whFTbAVaT>D4$W{2V++PHji8^;b|T<c)3GzsM_CxnB6i2Z
z7~0S+orzy>o|&7%uU^MnSk~Oj3CP(uLEwpkvJ2!-wlKxQ9~Q1ym}+5~g{>TD3)3yk
zu;8~4urQNmJeC$(SY%<Ah1nM7SeVN$7mQm#mx_p*&yN4+8NR4>=Leo=DXILbx%}su
z6j*FwiG@`bR$Exgb}jIu>y;Ky4#Elxmx_5OrX{RcmA)>2N2YT-e4NFh;&Go^xVOW%
z#==?)BYMUC9UGTzf&O8t92-Z<(x8Qq1<QiXV78!G2y>~opjyb)BaZV|v)u2oj}`Hb
zE9K?FQfQ~I>Q0}*OMsX}TUVuXDkU9GcPvCKY_hPKdSblmXzhIO26nbW{CY-dE^p>e
zA2}NZKTkgI_UkE~9v0_nu!YS<c{y9Rb0S#y*1~rdc3Rj)Q!N~}u-n3C7WQ)1Tj1>8
zW8uF!O^4P`<&0w=Kew>o!k3)duQlYC+Xv|6`l(-V`V{Ke{<E|XclrpLb*^`iG2gi!
zKU3%8{FQ~TEga<#7xW$xI_YZ8EMAqU@E9FZJnkDo+0b#0i-n&pT(EG`!YM`+mk0}|
z8G9DaTKL`qKayt{6r7V%=c(rhj_gh!mwH}Js;x>VI4_pF(U&rR;sSLulXKy(GOjas
zUQ7AK!bPqR47pNXHB_5Z@;8pAh2O<0F>q$eAJ@Ee8jCJlVCW8x^8U#si%XD=cWqp=
zaGh(Wje<6ASh#87k%h+={^EjZ;l71`xQ1A`ZQ(8>!2<hUcvgyDFZGUvr&qmOu6ems
zvX#JNi7V#=PMKY4=URCGWglC3`5`yI{(UI$qyi0}u!@B!8@X&ev+&%)OAdsE7o2Mu
z-ZNYBnB!V;d6^yKebOQQQnQkQoxW2_?c6q^ZRE3&-$ouAd2M%e>h4P8(C}O69gihu
zIR{^}f&3i{*!&AXZ4O!9ap{b`LN;P-ykVo9jlwpH*eGG6q>Z9BirI+e&54>xxBu5A
zy;XMBl6fh`ZSZ2m$e(f}rId}*Hp<wb>)1iYEh)c7E^EU+?d4j>p-+)(ziFeQjY>BE
zIaRy7?XJuf1U~p*2iSPa#yd7D+t}N&UdOfRZ`&Yc;;@oq?CfMbk@zKfRU6f8G_=vk
z=Kr2h!^ZnIYTJlE*-j$0kznKd$+2-XyJI?+AYO2JX{c%AJsS@SdU+k`=})g^gY-qm
z)H*g2ZFp_evysGJ?@4RYsa{>%{e(W*b{8&vdOA5C8>H_(mg?JRV54uv_!JxLBbD5q
z><UzP+biX1)0kp5+Sq7oBh^NljTSc2Z8Wvf%tmu|ZC*<2f^A-{hX>`_1QV_#XV_?I
zBa>s@!?mrIjn?$!`A)n0Wn7=rlz`M};bnwp*=T2@la0<c+S}+r7qPj8>38d;W)<*~
zjxXTl>?Yv2bYYJUr*D{;=iNfyuC{xzzAM-6!H&~`4yrroWuv!^LpBcE=)+FgSY>0i
z4WEq<*moP_Z1l6y-^OqoBiQ0QaRY38WMeS<Zex((aH0E9fH$MOyz`;WLu`-^6LhG}
zzh-!uB_RFSb}vSw8DmxBMm&>7+8AYn9@xIq$Ltt}NAWn`?J%~-lW${=jkz{|$H62U
z(`-z)@rjMeHm2Ih-6;LZ-pn4+Uf!Kfq1XctS8uzycU*Lv8O-+2m}$HB47@B7&$2Pw
z#-H8e>YmITdL^?G|L|gCzKx|emf2WfV<9KYxb!797TMtRTx^5B;s6md4P2Pc8&UqP
z=J#9eIOCSvSixDDl1ghwpZ2a4W-l)v_o<CFHnuXbZLGDCZ9}(V*zi-Q4cUfbBWUB7
z9&sTC@W&axp_yC*TX#)gRLHAR=YVw0M%Z@mPdJ(<v(qbooKd;3m!ogmuxzZi`4u#5
z(Rbd0uCw9Th}igTSOy1rm|VN-Y47M<UYea<G;X7fO*S@*kmmaT*LCj}dhhQ{UK4rE
z;>Bw_8?teLGiY_zP8+)zoHq7xm_*k;v$2Q$y4ry{nHb?rgZZxq8yubeoJu|8*h;bc
znN51eReU0SVdG0$_*|-FWgWC}W~Yyqu*z39j@Wo;<B^T8Z5*|6$;R(Cj@kTM1irWN
zgN>UD@vV(hHcs34&c<;L9D7<Z{v<0_iEFVtZQ-pH1`O{QS58X_94^6i@(d&Mzs$2X
zcpc%5%{j*8iOipD{A}Y#2F#AM^Bjoo?(H}Kh;e~FxA7~dWS%w`Z7>FSd&~!ft^<;(
zkTdr;5rmx7mqjFB=kjjj4;xn)Gd4J~S8bGSkWPh_CgoxFnpjErBz4oqUknu+_iWr^
zFn3S?+s19KJohshoOjr@-D$iHAm&o}>FE?-kGT6b{$X`aw=U_-cDtU!XNrG$eQBA(
zD?4NCv5hA-N;xR);3>y~mm3F#96Y!2f~&fNybfO4_>W6Hr|_!uD93%O%H<%p0DQ!|
zv(v}P$fu7F8m2O|tU}&=4)QxF;NW!!uQ}k|7bBT#9aj}nUg>BFZ#X&7F%Akl{DW=n
zSO-NMkYCh6F$V>A`R24v=URFz)%}xN;iS~!4oWz#lQ|JeI^YxH%fYF<;+Jv2X;{%g
zB?o04yy2jngEt+_>Y84`L3xLN6|B9#qL=gQtsxm)kQv_LT*+|omV>t)yyIYE7k6rB
zcaJOIHNCQfDh`;f>bL{JM?C&3>RkuT_oNZL9i7Y=tKmR$knO<lAkIO&gWe9eh)05h
znv`_V!r^f?+^HT79HcmS-$88$bscyd)S*L)$0a#Pc91CgTWOb%z2?%vg^S)}fDzYR
zmFjg+&v6$A_OZS&i6OeHbG?QR8aeKNpwb+Sx|Pz{0S#;7fR`%XBc(d-%@|Xsk?Bnx
z{E(PBetV~84)Wdb#($NW?jXZKTL)PVS~_UuAk#q`j@0!O-h{Vy-0Q`%dmXse@$Qk6
zi+}dv&0#wS?HzP-(Afbeat8+;9pu`OsXXv7yS_&pF;f=@-5vCB(A7aV#!Pk^nVlx|
zCgt$;<Ul8-_7e2FtL}gvo|)2@9&j+;!2|~%IOykKxPuW6`a2ll;3Efv9Sn5bhw(uU
zK6G%iUj{Kpiq8lm4rcL@p<z<$5RPMX@-TMlYKNf??(fMYv!Rw=t4G|&4n{f{?Qm0l
zjAAQSk{91Ap0vwHCF!?1Oq`oCtFm{jgHve<13I@F$3{E1VlYf}Fp2TwV77x#986}g
zIhf{vVe@f^PVIL2rZ^zocRq8vgBcEZqczh3@8$TU$tTv|o_IKFgBZXL<~msI;8O<&
zntSItSm0oxgZU2lltB(3tZo;LTf|=Xj9cuWX~lSEmoT(4QkIJBGC`LMx<b&Eg02#j
z@|<z(>>9_t4`1tmS6(*FF7PjD0S7?`#~qw-5ON?p*x_KO1I2;rV55Ugj3Rc5)5n41
zKxf4Eh%+3RjHnDR7kp}_qe2-OmY7YPK@kV*9ISV+!2u^G*FCQDM!Sri+39z0bYQ5&
z)Jx^P)@BFWXi_0BXV4bTSuvG3ZTbJu?GFCD++o%(AL%X!yB&PV8A^vZ*yG@H2m2X>
zoLRekd=}eBtD?LN^<fV@T>KAkfMUJ8Y<=N?w}rgxV|c%umCjjk$iY_*jyO0>`^U9n
z;=Rq+4vsqb#=*Cok9#|9-Q_#R30Oas&sLb<^g9QON2h<s;qH>oJNB)A$Dd>*FvcAG
z<>0h~GY&2~_|?H#2j4sR$-&Q@P!7&H_|d_6$GyAb%w=L-(sIAM7q8=kGAoTqzu=%r
zw3qSr3msKCj$4EF7@Yc>gG&ysI=JTGcRJa@6?%h_!-cCyT>GT-Efw2w3KKKZYVOaZ
zD)xep)&Gr)y3W2&$U{?a2w`_&bnrKq*$7^X;L|;6d^Wl5;Esd44(>U~6G7exs#lEP
zS<-vo0psc)K_58ySAd5OH(17V2aiOS0*|@K2>evgZ+H2M?#_H6aIT1}f$1eZFE~+x
zL+`!f=Z+v+a9;5lJePO*y1wnr7Xg*<Ek}Wf`(Cb41Thi39znqfs@(UmcU-kf4^Ax{
zK@mzuP%Ps9#hCXw9A)0D#zy$R{@N8n?yV6YtcXiSP%46s5p;^6bOdGC#|UafP&R@$
zB0vOhMNlq+HzTMRL8S<4@9$VXf(j9Qlq+FL*+gdLu9*bScKPam@A<Jyrhitew<CCm
z_C)Y*1hKn)-+0<mxN-yuYUdkG6DUwMg8I9C)gq|6+c&CVe6iSQ@}&skB4`#tb0HZ|
z8bQqnD1Wk9%6k#4FPHc}4T#`DV%u5~e9<Ly?GW!pPg`oJ6Tzc56PXetND??%(7F+L
zBJc{_NYHwM))$oW4I)SpxS^mw4EDa#(>Q`AIWnmcq~+kIv{^LNB7*b?-Yb{bE`p2*
zT1L=T_@q??>`SwwT{9zSEja9ZudFt01b@sMiS2j$y1$v2C9+GpWVVms)KqVW2uAMq
zz1}C4MV%w)62XKBCPvUTf^HEEj9^d%-6QA`LB9z4N6<5ZUJ>+(pl<}db6Qz>JBDoq
zv%OZAOafm7dwxm&Kv4RSxSF@^r&GMd0~j-XQYrQ!>qd~-xcJxz21hW2;Ss@bp>U`$
zEMtGi6H~l*=5!hn!N(Dt+3mZz+c#1On7e(WBN&y_`kdW9a>hikPXHP)PK@1nA>a#j
zm?XM9C4#9Dd?N5<K~FY{p~t30Fg=2~5zM128W*2XK5<3_Gb6}VE^$@_zAl-wg&s!2
z9ENDwMD}92r!50-egq36SR_gph!)2k?fNLS{bIpc!huU||EOFd?Rh%IyF7vw9L<er
zx)CcQSVj5u2&~6yPWcEfuH!3WtchSP$8;T9u0u8jA~;D`L=cD|7{P`JHuC*{#NF7|
z5R^a`K#4%j;b;;3kEpKzkLvi|UI<nk5-5})FIsjs!9#GD;O-vWy)6X_r8vcDao4P0
zzjuQ}ako<1qJ^R@?&Ul8<ahty^UU);@0>YfXU?3N-A(S@!h9=Z$yb?3ZF>rKq+lmY
z-p4j4$u37fg^8D(oJrlrQB)dCK_~@>Q;_-hgm4NZF4~g<*{NkRQ5aQ5jZsg5!Q_ud
zb~_gH2xBVaZpO3R%U<UD7)g153Jy5@Ad^G1r#{u8qF+*QBn3xlnoC<8=OQA<QgA)F
z5s?!tImvj6k*b^~Pvc(Bk@HYQ@*<BH7gBJM)+GgRQgA5+ms9YR^{=Gh*A(1L!L1Zr
zWyv2-JHIixmX;-#o*P4r|H;|wj?N7xb2g>Foq{{eAEn?gr}Tab?mGNl3jSvPc4K;K
z=K=GFjJXSCCdp&wPZ<AUB;mibraYHtEP3w8Uod%@f>(}Y?&1t@Q}B*l{jY>fUc6_y
z%WM102S?{)3jSmMiLuss+e6Z^4w3XsqP)o9NHTgcp2wEik!11WGcU4oHk%hYm}F<X
z+B^p}l9PEZ#&RoNB+2VVv=@miX>cJS#*3m}6yt0@#{7(*dr`oPf?j;#MIn~NG8Ska
z)oiitQIra^qzGgE=sNJCxECHT;=CxqLelxti;~PsF_w1ZWtgOP%1t_Dy>N3@FixEE
zzxLxfTZyq8V|m63UQ}eV(-}!+&Q@VeV65sWRP&-b^BP{%WkNmH^rDu-YkN_L`SxbE
z#p-!c--`xLX%i+5y=de}8Z#jyG<76NX%a8eT4?D-D=#*AvDu5(UbOMzdoO0NPFpW}
zd(p>>c3!miqJz^yS1&p`yc3hoUUYFJzc-HR=J4)JdU(;(k@RBHWS+gaeZ3g$#SoVC
z^CH>N>F>n=<^vtcATPat)2>2ks23BwnCQhYFNS+Df^|kSj&$@#G1<xnAH#gC7vq?W
zcXam6Zb+?t<;4_7^0gP=FrVZ|zGX7mi=ow9ru9D6i|?G$X<kfcUSX6SZGP}#rWeat
zGRuoGc@s&vfU~n1=Xf!f$vnpSjHJ_TnC(|Ta(1B?i<m5SN|$)Cl==6~ZBJY7#R@Mz
zyp8{fg=@U{naN7VRg9|{PdWa!){Av4q3Y|s*uZ=vW7_W6;>A`kWG@siUX5u*YTL*?
zSYd}3ey8qECcC^yVd8b<KJtg!d8ihp01Ja&gq+ea6UmDN9>3~^=EZR@POw~O+|6h(
znv51>gfW$o9AJ-^Ub$iirF~u;W<q>FlLKBHWO9fxrnha<Uzi_ZJjzJIV@zn8Cz)Jf
zJmtk{CTA$xGa=2hOwKW$_hKsB^P*FF$&1Slr?C7h^Q(^JHzwE8vJ{<o?$^Dz;YAf6
z5`4Jn#Vs!$dGVNaZZqET;?w91)HS8QSaO%~9^>DP_q}+)<RK$zW}KYki5LHP5$i)?
zAO7{?DHmn+*|vJ-#edYSm)<pl7hb&NqPI@nS6;k!_!}lOaz?##B=5=79R88^IG@hc
zrpt$n+;}?1^o&uA85l|DRkNr}4$tgE7KeYvgd#vTAF}(9gR}Xa(wsiza(HeZ@-WZK
z7|j^tl;-ncT0&Loh|=dQEWlWh@e3acF=_j&eNGi&PJ|qzs1L<_fDgre$Tzr=$A=PJ
zTE@{S$)prxX&;t2`{+v_%CgYSDAG8$AID8mYw=9V`B2`GRA5rkhe}K;JMuC!I#=}}
z(T71k4ECX#57m9>=0kTMYWPr-8*k}DEhaSbCQNEG*72dP5A}Sg&)G(d4SZ<Ggm%iz
zjrM(mQe&2kXr7}flO#rxH)GP=hZam$@co43tvK7-hc-;w`q0jY_RKr_(1}S0#;u*A
zIy33Qm=@Bzrb+nLL9O-RY-F<?9(ywH<wI{D`Y`Y7Lw_dy7)d9Y$)QCV1~3`u$m!@D
z;=@oM=J+tzhhaVp_o2yv8dF$dgb!ainj?J}<?zu=#xRccVVol$@52P<6CFvX#DuRM
z{*4cl9R4kn$>c50jHa^WJMujrrZfNEhnbH43?@JL{&!l<;_Ph3ExdQ;F<;`tQYQ0#
zSipql{v(rxjEj6&%w)CG?=l}&v1B>p3P!5+lMg>LU+G9XzRGlKW~0@d{miPf&WH6r
z%=TlB9~*qw=tFKl^7ygIhs{15^WnG;TYT8+gW-ee!!{qb`w-^pI~Wg*YD9O`%!@1U
z^wCR{?2wYe=w+m=kBQ%h0F$625Bbpdbu&_+B(YFtR2Wr8%?F*y&l~LfjO9bbhXX93
zZ294JQkm~|Bzt_=>+pR(>}URecY}jI9P(k|suooDFc<y8c*KXJPAyVC;loKE-uUp=
zhf_YB_Tg_I?)z}YhqJ79%ZGD5oM--r4;P%eSADq1{1W43#w$+gujGfnB~aIte)Hj)
zBmdp;hd)_zo$-cKdXvfJMRwS~?ZX|;{^gY3_2C}#E{ko22h5-P@Qler#z#IpW<m;2
znEXShfFnsW&U4PX%w*De!TcrTD<57vnsJSz-udvJv!D6#fk~9#UU5nvIr|^uCm&pn
zJROttjA;i%2Id+4$mHl`_9KhK$IZ4wQ&!GqW6aK&gE6NcxtNen-R4nw{fPFXp&yO>
zi18zzAHolhANl?GoYhMBQNYoU^`jv3FBl6kQs|?m3NtUlSd@{3#r%N7i~EtLS<;WD
zckM+i#YLqV%P@ZFM_EVT?Z=Ei?UN<Wk9a?7`ccb|a!zT2ALSih!H<f}D=}7Ptit$z
zep}U#M3zv4)tFTGqlP0nv^c}AP4?$LO11s;4kLR->N3`2tk2khk-{>SHuj^59|Qat
zNYn8n$&b!{bn&AZ>ySblCe0aJ_|cL{E2p$I6WaA{nY3eU&)9*HTIlFUCx=h_GgIe3
z3w7meZ$G*@^6q~0aClE9y%^IDi$2WzGWPS+tD5Y2^=BkPy$|wZupi%(saZJ0kBLl%
z`cXKh&M-fQb9MydI6p@EG0Kn8evDzsSU-Brw(o&yQS>Os((znG!U;_1<J(t$eC@|K
zj(iG}NsQkzPG(FS^Hk>F`7w>jbVh28K5P8Id=}$O#$%qUyB9X1(mJJ@&-G)TA7}jZ
zq(02|V}T#KABG=4vgT$#w)nBok41hg_G5`3YgtZpmooX8aT()sKUO%UKQSrB*UOcD
zta9Y5nXI8^`P^CO$k#L3z_^idlb@be_rKf1RzJKf+{Q?~Z}($|!*?>-#h5}CVE-o_
zA4~jx1pM@nc6$*+e#lJ1j3kkmylQ1Tr@~zILvu<iG|OT7VfpckA4mL%_>t<zA*Xb=
zAG43=q>6hS$zDJ9Iefn#2mCn5*)ENv+VLtMc1jz65B!~Ql(W(O5|1%C?v$SJ<D|n+
z`ElCebay@H$9Xy^1IQb|1wStO@sA(>(lNRz{UtyCV9m>nR~UbF>Rx5?8{;)XN1pca
z|4%=z`*FjMn||E#<AGCp+mCz9?>Lgb{J6_J&2Rs9<o9V$aZDqFJY?Y`#>b3L7$5SY
zKlS5{A8-A5#zNA6?#By<zx3mk!(S6&yS?+{J;jY-jj{#ob^PE*x&YD#=rQkhmePNI
zd~&#pb!cBiF`?4T0c2pFkueh^9V=9n#nJgJfUFL0c{Wpa<~bZm&H!>bJa+(7c_PsP
z#IUej0QmyQ&%6jDeGT=wqhBC^g3P~QEW{YgSeTK9L7&u$22hN%U@Xg6Jb)68PRRgD
zF)z(n#*u%?guc{rGZBv56F?mEct_G|afb2%R0yCVOR5D>J%CEgD>GJcG!p`-$~=)V
zH=pt~nAdf5YBH(CSevm9<Ax|ZxYc7`pRqvz4VjRfHhz-;nsRnoh#rrRW&zX*qHYk)
z185O|9Dou)%K%yhFg<|p185yUn*as{FgRdG&bC~)PXO%#Xdgfar{!(|bY$Mik#uI#
zg|TY@Y2Qh9=WGv0rzf@P@ZJGP{CzTwvu^<X9C>m8{h1G79O%evoA#GKLpVE*acBU;
zoYLU|j0j+40HYkqm;gpIFU()9jAfp-0mlb0A%KaF=42*cF@DYX4dbK$zGZT6e<$jC
z3UeY;1NhG2(*j646lSnwQvjO-_#uFq0n7?uHhp8y@;Q$F!T{z5KyUh>cIL5gegF%c
z(jS>@THA7wBU#L33FA`6WdR)L9kC*Sp91*V(Ok=9WdN&~tajvUm{7=C=SbEE=v4*(
z+shjRIN9Gmp0)(AH2@#W-@i=Q7C`C51TSZ|2e8A@-^pZG04a`y;%$8C=GW^a%$wZW
zA3%WRLB<ec*wK_|?(ExY09pVq0(cpK9)J<R2^t2gnT+NCNU#EkFi#EO_OLqpneS%Y
z!?>4mAFVq_!UF*uWXU1MBLN&{LR0&NNykP}M;*yACdU~mPM!+jG;vy&0M0l%mjXEJ
z@N)s2XMTb4B4gUk?K1N#jMUe!Os+Ei7Qi(oX__D78~;h|)NT1Jfa?L=2;e4{K4iQ_
z(`0go@qPe*F}cflkMVEDM&JK$?H<q`WKVb$z+*0Y62QMqXe9px@HJlvh(BfFqh>j%
z_vaK4hSwqTDuCAk6bYhe5N`r_8^C8lWDVMlzhnKVAl@_i!1ytM|CoGYOvjq8ApJ}G
z|85THSu*UTeI?EiL`KdM&lE&v=2;vGeMZO@MD`#)528R2IaofjLww#Kax%}wnA_3M
z!(?x>sAwiJjQJSzGp2p$*tDYZ)%ZFEgJ@dD{-NrNAPRA5EF(z@2mkk}{Hr#(iv@uo
ziqjZgG^3&tL6i)lVi1*Bxl|Cssa2Xu8OARe%QCvD1wPk2oTWzMf{3Rsf++7uDlnnp
zrL7d{R1RX&!-Q%quM$LpqggeGM2C}db>=l3NzEW?F|X}Nrp|9vFNpd<Tn*y4AQ}YG
zFo=yoYzm@L5RHQv8N{d{nvgYu=omyNu9y@=YbMQ{cA5v#f_Y0v(u(xiui7}0wn4OG
z-rkXPpqBXy{LVpi2_o5%cV*Ixv0D(`9eEEXJ%dOae{atAaZ39J(a+&@X7y)2Ac%oX
z1~Co|Vz8q#gh|>UhcO?{ID(OWNE*%LhahGK>9rIX8^k!4Ol2G&#DpLwGXIwGE5@&b
z_=e`y!oI6en#98IpEsM#WC|n6)3()joShcLbVvR@lNpRP-z3apvLJ{bnamDi4ijo&
zE|YnT^Brq13}O*W)&#Mb$xn==zl6!sAeJ#%&bY!U{egez{5gn~ELp|4+9@snB=1^>
zuVb=4hz(5s&nGtrVFY0Yu_cJDL2TnvZxFs9wmWrqFxeTzE+#3Abga<u{LG~w_Q>|P
zd;!h|g9tGpNtnqI4o7kjiX&H<XhG<Xq)hW1RuGXOjt6mqg{h1O8Fy0`O!hMFW8BYp
zfHCbiYwGb3XAcMQ3lowY3F0X8V~*s%SurV3o1F~eydycq<TT?M#<Ps)$TGYmjG>J#
z1aXmt)aE57mnjA^`PGrrk#voC5bh8}2!F8r-yog_@n;a%IeR0BS1oJY3*shcZ!uDv
zw}ZIj@V}VcW&Fltf6@JS5cfIzAc%)SJYxQYkxCykp=k4uLrC~6i045>hw%6CIxm8F
zNs&2Z2l-d5^FD|VLA-WacoW21hreS&PV$jSI<7?({|n-iqvHzwFIJE|J-ud$buu`b
zG?GjqWDX&VBgqxQXCY+eY&OOmA!KLrf8Vd><Sf<A&4gOc!z8cMS4;@`LdYM&=PWN3
zLIEa)LnsnLLFQjD7GjKLq;}FiMimXAI7^B-a)kc>?;0gSDCx*)3{<Oh2xT0}mm!p8
zo>t@uAufcmA&d(lJ_LHvRL>B4g-||(3L!KKp)o60453B{HAAQrLS>dzVN47mfeH0e
zHH5U=X*EYuoym0mk+&A}dW^Lh>x593Nm?yxp?(MrSkjO&ZFe_e-jcB?V-jOC#^#JI
z7^wyNWYj8z)|_n<Li-RpgwU3=?HnDNc*hVrh0u*9oyl||bY-4qleB)*c=r%`a8a5t
z4SR<$AcTP-^l{qk8$v(k$&CFSIUO;Bm=AX(gP9BoVJMSfjA?z1U_O$O<}xZo&mp({
ze2gQZ{XRZ~2_Z}iVLI)~gsKxm_$~yWtK3(P&etJ)6T&3UejCCRCX*S{22Tx64cXrS
z5TT0c#@G?>dy<53ZA_yXtoZ{Y$!CTzi}`HEH20eu!n_dXJ35P)EC}I8CJPz=udl@+
zEO9iKG9jBR4`D?JKZWpf2ucVl%U6c5ErjhMq~1+f6~byJYZytgmdUyh);p37A#8N`
zrVuted`k#hnU5>joGR|%#(g39$v;Eb#o4}%qf(gA9KGZ)KUF3|DZs*Dh+dyz-w8t@
zghTMOsPXj{dml+5$WE<kQ(J2x=pnof;avzu2xbU3Lbw@%6+$G0Ga;O1<<t;%hp>kf
zR{pP-y&)V9;g=BhvBG|*%>zshG9IGM==`<75tf_?;i#i|EQI3@C+9io@KYh2X8wQn
zKgZdtA)IG&!O^@J!le){bM{IIzdCYijZ#|m-^e8#`R`2r2;omha-9i%dLql*3gLDL
zcS6w0*%#Npxad&`k3+cY=-;CN?(q8|JYfFNk)-|j{v?Fwj^v*Z{$>8ukvt3G;DUVA
zKBX5de98EV@ipTcM*0HneFz^yC=o`<Fg}LxUkEwE$Qiab)F;--#M~7|IwmAf&m@X5
zLl_wydD>>l97YyL@)?t?VPs>H-H}tjxg4H9jND-uOYPrr@~|*3V{{lXj!wQXdN#5D
z>frM*3b3#sW05evaC8bWiDfJt{{N>{QI-@717Q?*<Y|$lR2ZehsKp9p7~{kA`T%?G
zUow^r!_9;wA`Fki<Cu`+m1mN`Sb?!3V<pDQj8wM@lQeIs$~-ZQYD}s-IyJ(m>2PC2
zo!ZRnFxGYC^_bLWY!Lq6S=Km=CSmlJ(MLwpFp|RfM#3Zs&BACN#+)$bhS4I7mLv~j
zQW&kmXdTATFouQECXBXWY(DSl6Gpo*+K17NvSV`QNb$t%_H-a~h0!UD1NB;U3EMAD
zqSTqm{3G#Q$@pgSjcEyl-NWd?@}6Pz3fpgXqsLb4c<1iTeC_lMB<UMQzc4+u5B<ZK
zxHiw(y7BU*ssq9x91_OBFb0J&<l7$9#b9oV-anPKMaAv8qZa4LGn@xGj&TIz$S_8+
z+GxfxVGJK!hw4&CW5Y<uSef49JwA*H)K?hSa^!1UEB-6)E8E&UUx)2?a#d&-pQW$s
z+b|}FF)fVgWQtnx)3-)V31cercZ<Z~ta-i*<4v%b{rm^+cP4pJq39<W;%0F6hcNaZ
zbCCfl%?e|77&Nbx7~4?u!k8aMcL_ZtdUg<g<ThJLc(SG0LRu!t?ru>Si^EtF#!_l6
zj4fd-3)>2-!dT5@IpYe(pBR5;T*(-{u}0ZziFY#h`gFbZnlRReu`X=Cr)GT^o0x21
zB*{iv#ML>7#Kzc94A>gRwlI8QdZ;hTo5|b5*g=|MG&7T_!ChgbgmJE2GcT?FoEjZ`
z?MS$)e;i2$n#qAMg0yEP<dF~xBOJ!fFm8n*k$J;7Lly`_2}32zP^V#NVd!C4VMJ(-
zYZ|5YscA4V$$>XiCQ18N&1^Xf_lB{X2}$-a`N2#kzAsEqy|Br_Fb;)rB#fhB9A<@I
z!nnjmsf_<J9^;}DVH{_Y&9duKI?35nVVq|2*Tv2xJQv1!Hq_NHE`)J0j4O`a+I*LR
z%yo&gml<It|4J4Z)~tq=OhvzuchP?2qCaUQ@1y@<t_{yirPpa&vDyvVZcJ{6aVL!T
zVR|(H{tDwRts^;b827^XJB){6JPPAJw@+O>2;*741R_6J$%HoptqCbTW(8Uc;{S&6
zB8-<Tc}n_WJZHX+t5l!ckaS+L<XsrAnY>|q%jlhKH`uIGbHa~d{Kvx2Bzy|PB_V@^
zj1tmGc$7Vk6w*sLGpY{}N>P$+gbn4ZXOfUv!UOJ(7Ap(O&vI6`lCw(4CLz0oOp)Xq
zTtu~sN9>X3lu#p*oJ+#zpY@__UJ20>zLZc_LX3ob5{gNHWG`-h356uYlBR?LEGa0V
zLnN7sP7G`Ig#_xCcwq@eBrJ|37o|q7C6a{F7*?Zk5-%=+HcLqfCAblie0bThl!Vd}
z%1H3D=26DNIpW+B1dUKaO$i<eaS}aH9Tm7@JR`k)_h8$G)X0>HT?mO+lu%hh6$zD`
z_G=WWK}87?s!B+tIMBN}WvfZ3&I;uJl>IWb9pUs@&1y-gEup@I1`_J9LS1fZ63?X`
zOHO9$M9K{%G~%p(S2M~sme7>5O&Cd%CEScQ8WD<1%{bIFm+S!ELPAT)4iWSWB088_
zOK2n6@xQHvjuJXaXeXh)1Zi4A2MJv@4+Y689imPbj$T<HzO!Tpx31h;7jA8RyBt$r
zw(rKAqI6F#8YE$`gkH?4<=ztdNa!nJdQ6vo5|SnKXMR1BOye2Ab<>5D1~QrSv@C`F
zZW-c+@TkT}7|QJolQ3Mu2no;MwI9vH7%5>CdE@X()CeVd3Xsw=2OT<NC5)3WUZUq?
z<0$>jr-XZ%66jDMor&DV<v)vkEkPe2w|II6!fz!^mhiiTKO{_%FjYc|1h0heButaA
zTEZF{t%UE%hpifmCCngaqjlur&E%2HW~5VWmV_14GgQbBH%G!;8g0SGZzIX`B+RFN
z*Ti>i5>KP0mpT5(`U`n5i)f2IaMwt*kF6yVmQt;)QOl?u2|r0#PIFwFXY-XP8t2cF
z{miSC5?0Yh*cV0JWnG(x>gG<h&A66_w@t!!3F{=Rm*`2(aHl5I5wn>)+Q_(xam=B(
zEfThpTDu%ncV?032C2ypi$r%%O{TPir?!(dcS&fxJSurhl#h0Ygu@bkkr1F=Ea89z
zQVvN7OHd_f<TK>qjT2>Z^)9xxm+kQ=+{m`vQOOHjx&%YQUdg^2n38?yTM{A?XcnYA
zEHyb*!fpwBB)s{ldCQt{_&i~0YI290O?Rax?_+&Z+s_To$e%!dbx^_~TCbPwsX@Xc
zwA>O-N;oCqn1tRL<6J)Rmsx{q9hY!|N40BH%*i!*PLtb6xFX?Kp6OW$=OtX=md{Dp
zSTvffN_L}*$3^b<l7!1#x<55}*U-<Y!Cv<hu1ffg*Y1zy#b_?qShG*N9P4vO{VCx(
z#VZ-HGHyt?Dd962S!LXka9hHA2_Gm5N%%{`GxBE%cgaP${eL9<O+l|y+sAZCkZ_-Z
zs)UCWdnp3PCA}Ej?&;yaCp<}0n#5(<Ax3eP7Dc0p{43!p#UeQujV*0W|4dCLpLrqS
zrG!@!UQ2k#BP3hB;U#!WL3^$3b?;^fLaIp1cQhvcqlEM_qGbF>M}UORd}*OlmyC3>
z?W@FZma3XTMn)OCAGFCN+t(Ocaav+3+7%m}S+?U$78!%oq>7<7*<?(~7?(#zUK!bC
z<dE@exp=z%QOYSJ7b}x~ZW)z5_C}7DF|~W1{4zZV6fv?La7dVs)w*wuDj;LA9{&Yr
z3(B?^b?a7@6r#2iBP=YVh>SKgBpF3z6q8X;MtvEOQCvp6jB+wc$S5hJtPHn|Qru2y
zMp`&(p^S_#WmJ2ZnCSJqPE97#Z*2y_bBvQQ|A@=O%DHwYlPSL28dY9K1(qbps3@Zn
zEp*0&^YrDvj4Cq7CbV}lc4`|pBYu5KJYiMpba!$hV>QO=j3lhVq$Xo68MPgG9VT_t
z<hzp_$Y>~|nT+N#J&+TPWqU(4mC=NUK~77vARm|z$Uy6oB!i4b8_<2TSPL2Lb|*()
ztL~Z9x+U4CNqj3At(g#ao%OVn(O$-=-N_wz$*3J#xa=9@I?CuIqq7VO6y2yn?y-xE
zBRz_CrG78Ql&#~TzIw>$$t#jJfL=TvGDVB_@qK0VlM$yOUPH2s{<Q8Ya;q31W1x%{
z3R)@{BxA6Q-(*~qF+|2t8Czv+lQB%ja2a!D%#-PvKNu<FTN#sSoH9ns7$;-Aj4?9K
z>tf6*F@J_gw_S{tF=2-2P&;mdjEOS7kuga|*PY@?o}{m2d@bY73{h3@lDt+t8I|<U
zuXVDQZAp^4nwUbqC*yk=Gh}=xgSN&r8PjE$ikP)ToVnv^>Fd;afjD0^?gz4lj9D^f
z(=cX>`-;duTl8EbmhKQ#YvD67M@FyvP2G3Jd>IR5tdg->#*Z=<%2+OAg^Wey$ugGF
zG*^iwGL}+<cRX_y(RGP<+@oFU6G5h%Fw33}HTaW^pDCEAV)|7(yKJjiNp-i1R`bLf
z8Ea*1lCfFFIvMME*c%ytY81DD?6yp_TarlFtV3Mo4sl7ImQiyBb-IOhULTF$E@OvG
zU+H77jGZ!e$<SozGE!uCWk|H9GJG=pG6FJ!HWAggiTuw+`)48~BTUoTF6L_u$%c_~
zH3#_Z5iXscKst&Hm3GYxK|<1>KT8;7Oc@awsT4gbRJFLY{fC$=^Th3+#BLdx%g4@c
z7B_0AI6XrYS}XR+*e~O_j1w{r@PH4>IK*UW$aPr8FEWmDmU<7?i=%Xe23aqz)_HMz
zr#L1f&tgHXos@A(#s!%kSBTRx&QM^HagNsdZhUmcq;)?E8ca+zSEd#ADxa6}WV@hA
z-PeV-Q(Tg9S;iF#Tr#dwU@Vyw)hX%iS@B5eIemBXXFrQxv&8Q*{-6-2AX>qnGOo*b
zB;zqHnT(q<{+4l{;=hdBGX9d0rAq9oEu!x4qLU}_4s9+^;<dGc(p?$%$p6=hs&_=v
z7ICUdoc|v&dA)c*jV~1s84GUe_Jnp84MWB!+KDor%6KE=t&C?fp38VC;}vbOEh1`N
zo(<JqFDNMWEl1hY39i><s6~P}rSF#{zLW8u95^68&^9#1{8X`OcXFMG_{d|J(zP6Q
z>QazS!Dk9RRuSnHL@CIqAd`ZCDPGJH85DYZrWmqLbpBmrR?uR($ig`0VpCB+Dg7o<
z^I3d01=$tkQjl8#spU|RQ^C~wNk^lSC`+V7@1${;aux4gE{_6gbH#c=?Zha^r@*5i
zPC<SJpDQS)0165yD5#)T?{Y;HdoEv)<aB(jLT};hTu6a`sR->(F06p|4oOb+YU1_f
zEvlgSIzdIn6_il$rGl~wN-8L&;HRac4Drg%ODni`Iaj!167gae<7r0JtXn~+4dVBE
zLU7B}9r2S95wD<}f*J~HDk!g@f`SAERTZ4rom^2tWd)nBiAp?%p|#^CuNBlw6>935
z7<N!3D(F%%v6_PFG^uNL(Y2(U9Ri~DX0d9MsHLE`g2oD(D5#^LF3ozgXr!Rt1Xn!;
z^%XRrIN3N(+bf>m6SsFKH&j4K$(u2bG%GhsXsY1v4>3s!nkl$bx#hISwJ#s&*<1lN
zzI?5yQ#!HrUeQWHYnl-)qJlOG+A8=;!Pg4fDQK^tzk&e@Iw<I<;6Qa(FB&;5oPur&
zy3^oEt)i>&bkSA8_VS5D($5!t?u#A@dMfZ95~DAQnMcLTD<ZLeT!sarw}L(j_WjoM
zc=4Ql74%b(tRQ$yjBOc5b!(=GJ}0^iq)90lreL^&Cn;jEf{oSVI$sf_Fhs#nh5nIB
zOzB&WaD;-93dSfHt6*`FoTC(w&aqZ;b!Lju3T|E!;))ojV7!6}3MTS+Zsf|<;-M&5
zCg*0a7~>U`EjZEjje<!EmMB=N;9CWg70gmFTfr3aOa;>we6Qd;1v_fQO``!H7k%c7
zGt<S4W1`GVvFU=Cq2LDvnakCj?z4M;w>x>Jf^o~l`ucHmXtWA`RIpINvLj-if(5i?
z5Idj!fo`Ndmx%_AlHS*dE7c-y5xGiD*J3UzIA46b!k+Rn1<T0-3N|TNK`yFbwSqM~
z(+3rE{;XgnnY3eE)9&q7(Hd2cqglVbDAp=atH-TZuz{_&j;!PrCy$C?O?$B@RlX6w
zS-}=sHJX=#tqQhro1Iri{UZNQ=XvY6oeGpzak~_xP)BVV_X)YE3$Fqnd1Kh-qb@Yt
zD)$_HK?D_q6x<>YR1j7mDfmUf5d|`}pkOa8It@vIrXZpqRe`R+Q0OFuMe;?WeC4F$
zC&jZL1@Qvel6ssJWrJe3g82oL_9*!8g!t=(XmYh_%0e;rq=;`2w_m|Q1&7Ed6;PH^
z?=#}hnz4r!e0m#G@lDg^OL{z>=sK$4n1TxmE-E-qTT;O(1*a8!ydidHPC7a)=_GCZ
zkK*SO;-|CmXB3>J2u23KF4p-3;f3n1^9rczckSy0&NaQH;Ie|>75t&#3I!S3fG5Q@
z1vKod3VtISmTF1kr|jN0_JFB0_e}Apg6rgs3M!SWNu@W)4=d%2{}7XUN35zDM^o$H
zq0SxZMZs$YZxq~Ba8JQwa(>#p3hpa-sNfNWg6`!W(D;3VjL=|)pe$Lb@^Z1WLC)G|
z#6JrDrGTm6B`s^_q^Am=(+E$AXSA%3;)(R=UXG?&>7gjrJ}L7X@rs+G*53Xa|CWL$
z1#=Y{RJ>R4fo!P2rQ#zm&3|N*Wr>t76-pw!^LzY~4V}}eNUtJW<JcSb>@3-e8qcUA
zlZvb)S3%B`Sw$8VpQ-3Lq+Q7_NiPPqBO#?6ZR4`5$f1IkGN+0OJ(4=S5ii@s^=lWG
zIwa}L8IeatUKLRqGH8fa>HY6msA7?dd@Ay*Xse=~iqBOPP*F`qbrl6we4(PO3b%?v
zDq>X>S5ZPmVHHJG6jf17MW1bA%{KAt<y<Fs3aIv7j*?Z`Mfi57D5>JVccQe4GAc@`
z5TldayKDvGGc}uhsbWysmiM*^p~9o0yow4c;<%lpJyGRU)Ojo7X)de9K23x!#k5`(
zRZ&GH6$vV;(jd=Pf3QqcR#Anklv^!QDkf%15pT~nO(fw{K?*Uu1P!u=ikd1Kt7xL4
zmWtXc>Z@o#?W^eilc=ZSRAMaMFzc$IE9m8NH9xEpg>T0<RI&MD(@^`kMk?q=x^<;}
zK@HxDZ>l0mMJpApRWwu4oQ7SnWlI$;RQtL(uX6L5rDOB%NsbPQJZtQ0VYPW;W5~X*
zwjrB86IxKTSJ6Sm2o)n~9aVHv(Nje)>O}>eAl+5;P|-z2R~6k<EQoYbmL$??ON8z%
zajD|<wj6Xsj(*s#H!T6#P{m*seO2^R(Vs5-Dt4ailJS*zdRruu@vk%`GLX7nm^kc!
zp!>#x-S$Oj`2lfoxfr5isET1KhO0QdRNUEQD;z%+PlqO*p`%ocR`H#RX)4B$YpM83
z#n&pvsq_XSF`kx&JZGJK!v48L(1|&bd!Z?OaV0+e67h|SNh&?d3;FWpdw03Uwsm5%
ziYY3llIix^XEEterx*9w*PH1ozE?3@#T@E%wwR&f2l5lr?^^EVQoD=O&jqzJi;R5F
zzPHa+F^`O+;zu?bDfBuWKcDQ-rw)-~OU2}q@jFE#O=q!+B`Qv+IH_VORafCx5ujQs
zR;buStE}QD6+f$3tzr#1`8;8k$x9del`2+|hb$H}o(GG?S{3V5Y*4XL#hnjL=@PqM
z1zlgsh3K|FbElvyE?sU*mrmTGVylW>DpFKzQ?Xse=}In_A$HKxP)DPhkn;~#?JbbJ
zT~yB0c+O(srIE}KKH6nf<H*Mn<_a1{P(?_^ZWVh}gvlU1^QkH{6_N^B#nFEf=pz{I
z5rwvD*~HCr1v$U2!c<|=s`-V%`+~+#7wm|NRI=@2F;cU$g;t1%VX;@mK3aDbzo_s&
ziP`b9*stOMPwF5!h9V9zr>p*o<zo0;L7$kY$0O7=?dX-_7&-q_aa;v`xTCpD+|apY
zy|_~}SrzwG{H@}QinA(yQ*lkjIThzsTvl;K#RU}?Ra{a*p1I?Ad^EZDM?n`b!a-A;
z|EkhsopM}NfjfeHo>q_uIoR(i{!npC#cdUT(gwdKuB-HU&A!mmrHj1oCUw2RzB4yY
z6?9c2_r9Zoy!5V$zi2792;1wnh;#{Ym*Nudt9YQ|EtyEgLluuyJfi@s;<1V+D*jRN
zuZoHPH6>5plMqMuQW{3*O0iGLA2tcGC%Nq%@q)X4rQ$Wk?Iq$RnJ!g$tHjZ#08e$-
z8x=GF8r7az;=PIwDqI@UY4}J{v1#0YDn3!fSZ;4px|fo>(q))-MB)7Ts8-KZkzNDs
z@p>;rMh%%X6w(l@A+v@o8nSE1q2V(Pv?yfutePFQ8t)L~KiM>FdnOvM6gjEZevy|#
zy@p&GzT6}z<z|vcvv2j39UhfLyCz0MJ`JvqBEN>|>qJ53pKB<fp=9l(7DwZ$h~!^r
zcx2gxZk~lT6w?3=bX6;&A^rEFDD&T&Bo(K|DZ*<g&7_2e+&_qt8Y+)-5h+6hpl>IZ
z3ks*CR#t;Y!<?#d#N8T%2LIjotDZ!{>9V+3*;P(Mc@39zT-H%RLq(dnj+{CwQG*(`
zXxOTuiiQLYBQ=cDP*p>shSnO|XsD*4x`sv?8q>&MyK88urJ=Tlni}$E5tM2)ch%8Q
zS3~o5qJf5b8iuqLqN1ozgRCJ=RJZx^GUD4ZqM?TQkKLswiY6MG($pr378;T?G}EyB
zbl%&Kax~ZQO;WyXf9LqSiQV$&l|)O8Uee@hrD1=5v9Os~R#UXq&`v{t4Ffc^*U&*j
zZw-Akbks2Rsk@hkPEXyPm{Yd1hAzyzI+AW0x-;+LNP23xSV@p_)eiY`brXFxw8|m+
zX*gX$lsgeUr*71$ZX%h65hK#|5(701(lA`Zj|pP1Mt=*MFlB%ks^L^GF+`(hp(K2l
zPy8@V4AVgJs?XgcG~CZE#+{BP9Iast`Iv^;)U}3j<R==w*Dzkg1P$M6n5<!<hOaby
zO?J@G;+1>u*}Rnx7dg>Nr2pVPx;pnHa*_}3%`Q7TMZ;7c)pr`bGS5XzGcCzA{I#3L
zIZea+6$wN}WEQ`_aL>@N_o@2_4TGP!XKFb6xu74rlM0AA8s=(PM#k4LkCsNm5)DTO
zi3Kz}4GT3a(&*vRF6xWY_^qx>2a43HD=00dqLE_ex8lz%VyOngo;~xdpf&2~S*>A>
zhMzS2tYIa&Xg0A*!;6{uO0*IKN{L_Y)mk#tvsS}84I6nbRzI;`L!Gs`H_-li>^_~E
zaP%Md$Gr)gG;G$eT2DwFCi0{c1;&bP8n$b=q2Z>69U69OIH2L6hFuy`H0T-(4PFgC
z4HB7!wt$8JtwJdg)(|8MBna)3J49>OM)-sn`N^HPidgc<U1FE3>A!A8L)4$qD!K8S
zjFi<hgm<~-78dpT3R45wa1XVh!O{?+X?BiH)v%ia$hqjy2ywTBXkJQuY)F?YG{`0P
z(~h2#ONuG_a*U_wNEZ#@kcPt=E|8mP_=SAnz5AGk<Lom>$lz=T@}K2d#R&>lv_Klp
zQ7L(#hBGwN;et}R7w-6}BDr^qdN1AE2e$3g*(EB8^BPKJ6_mDS7nd}8{60`s{HEcG
zhF>*Yr7a9`x~q$PmC}RzIVgK}m+KnMNW&kr#4p@`YPhapeX?il2lpST@tZ5g?Jp@d
ze{kQ@a9hJ$3O*X{X!uLRGY!u*+|_VT!xIhvkhha>YxJ~#y1u%o<p&xbQi#w%?%HUy
zcv(iIWEB-6Roe{|y|=l#eQ@7@@BWuU%GWXfbo4x>y6@dRvx~dg#0w4D7SAiT40+m1
z+81qe68UY2c&&l(4ej^FVs~Bfo?M**vX0EU?ZzKzBvnLu9sg<gMDbRK7BAB2^u%n}
zjjf)BD-+5T5(||0C><GeR4Xqs>R8fUoa-DrZIUSW!JS3NXS%%{r(?vp!Xm3qufY=8
zbo?`3B<*r#*XhB(u4fQGXA`+}<km4x$9NribmY}hUq=HS(K=#u#Oo-hBcG1^I*RFl
zj?Z-z(4o9>7uHcw#}_(csa6(orCrWKy1lPI>+YF3q3y-KLK)^FInA+%ZqKnOh2=~l
z?;!ChP88QM_zUr+juJXb>bUgGT}nr39c6T^C?I~!C91x4kIW+mQRHbQ%Ia{_s179v
z9UdKV)LkR-#YZ<`I9AO5O8B3<%Tw^zQA<Z{9Th3~>!_+Dkp}<5U0FwhZf|7rt|~f8
zO%o3`BsA=qha{A$>7Y$fLq~PiX}KqPz=;|psmbz1bDG!DVGi_A2qOQltD~Nd$*o+~
z%GyD7YByIy9gTGK)X_^vV;xO&wAIm$>e2w7yPK0ibR_9$ro;HxJ-1a(vfJJrE^?2S
zI$G1D$ZcwgRyxR4NSLLwrwt2fY1U*A?R9k0(OE|aHeg2`pK=O10@{2by6E;v)Ky0}
z9p`I{{B7-)OZSNFuA_&JY~|vl|J)?`qoU}oqYo+T7^<VMZtwR2ItJ?Krz4q~rO{Rs
zl*W#7^{F93)x;njS--SrH<&DWB$`G=d_gxCt>7>nqj)02b&Md}_V$d_=~bRCBCe8R
z!3Xzfayhcb;UZs}-DnGsC2MCDgZ3m(&@oZRb{#v&@pOExW06k3AK@DvlXQCaAQtHO
zmJF-Yi?%UC#}pk?N%@_78oAtq9CseODae0EokrQ`&U9L=E@DVl@v^g^MfpL;EFH6T
z%+zt<p?h|;P;!VlI_A=1y>!o`>A!GOkXbxjd`c4LS7MlzNc$q=bN7$BeXN)Ch=pX>
zI5F;L&k`L=b&AaNBup$LXUi;B==e#;a@{@?DLuNMgCfAsI#%j9GRD)cme~GlbnJ8Y
zDji+7d0tGQyO~(4W225uI=u7-E*<N2Y|!a-B#D%L(m@bzCMPK`wz7lWDI&J$=s3ZX
zF_5rLN5fyEtFB5YSy$}Tv5QPizNaIFn$i)}5h7t;;nV4h1$RJ)pSCS+?Y8-};(`wM
zPhZ+@8K%9dL*>RL9Ws-yMh#IVPNROuh~n|$&~TT|Jo98xH56~@i0C+}<CKn69lLcL
z*71vuJv#RCDjd+UPp20$x)%5L?AP(=TXCX~SoPdpIX>>7jzc=$el6C0E^3Yt1@nm$
zYdlAE9H(WiB#!DhMv>=@n}oI7+C?XH3>f60qWSARr*)j+HEPhh#o{XBtd4W!%(Rud
z#4f)SO$&X2Ecrg;MIBcw#7*Cmd^JHV8|k^C<5wNq3~V=WRmX3%(F`OSxJJIMBfWtr
z1Aow7*6~2cLmk(3+|cnCZ82Kz>Vl&2O&zz$uvemQ>voL2qvOMsXgYK1CyK`Xqsi+&
zixqUixJRp|<KG_i>jPd568VzEfAz#89giui<2BW#aH=C$Awhofua2iWp6hr)aqM7`
zs;}I1YCI!vuP6?$_PnH(sw!S=chSPhMa7yu$#2ML)US?@I^L0!k957K&HmKAs6bIV
zVTsU<@ju<Zt$otrGC)_gS)bhL4D{OO8a_A%<;Cs;@dZA(GZ@Hd;0ptV3}iBp*+3qH
z9;b;c20k<FPQQBR&T1f=ft&_%8MXzo8_2=r(#izNPXAim`clx@n%ltO)6wKnT`R;L
z=_DuycC9L+4a69@-Bsi>kl(=P%++d9f%v!rhP}TE8mLo3WFKiq*Dj?+tbxJ?N*X9-
zpooE@hJEf7H|z;gYsH9Ewfh2-%a!6v7^pi;tmu;St6dpN8z^I-oPqKNJ@XS3j>;Nv
zGnsfYS{U#ch%*pxU{@#4og89%tSDL5#`>S!2m9EP3I-|~sBEB$0qTw{IkTs$l7Tk2
zYt4(dXEg6rG+}}PZBH`ovT6pZ8yH|<pn)0&Y8pr~(9EFcj-ocr&Om*doq;CZ?Nf|`
zMqR_cb)?+~8W<pdZfw{QwV{D!Q$-^K@3*;9N{N`#q6u60^e|6T1JOM_lRvtf8)#vm
zyMZ2L69cUbbTH778Z_)%boQ*GEsc}r-q|&9rHAh4?F_Ux(C%})DDPU&#<dBZ40JZo
zh1z-LrtausOjqLWU&VAa(9Hl{NXXL&=}yv<{KP;%15}q%Z`v$1L?2p_^U;*00r%x$
zQ?N>Qbov|i$@^apF^Js2zybq58W>_=sDbGQzBe$;z;FX&42(4}f@arFj56$Nz(@nX
zJaJzg<f#@VMjN;|+C!<vQ};Ln;|)wPFx9}P;jSIU1f>ZE2qzl&ipkfEB>Bd`B!_=%
zU^4TXUF|C08KB)Xjq&MAH_eXhPZpSA;0HGHTmv)NhNL{(z%1s|iim8j#2nf<1_B@5
zk4g%P((??=C&$?4+1^YLE;O*nz|RI&8dz*#iDBPERv1`n*jIvOv~UOFGwrmm(C#6g
z<+RHx#1Wwn8b2BK4J~7ve5(wsHn73KMp_z|SYu$Ff%W7<!^K*1W|tt6cb9!Xr1W>o
zd=w-%8Q5ZAD^2j7d$WPN@7#2dmD}|{`*iB++F@WPZ8Q@FOzfg%HSjmh$bi>?&%hxA
zhYk2?QU-SOW(*n#8BockN$tHmY(O#~Gau5!rO=KTZbu#p1qn4pkIq7;fpy4f8nCE(
zdSOsxh!PFdgjp^T;a!<Zaig#u3@HxK4&7s5uYr9A_S4cobswZ9&R>)w_5s@ILL?3p
z!QpM`Mnpxw7&v0!ih*AZ95ryvz-a?#3>>GOV&D|-mv-ZY|7!H3DdkR5uqq%95ArN9
zqv%gK&KmZO{k(w-2F{U5AG@D+^OQ_UxJZjalO622Oxv@l*pbstbQNiwPweR^t{V8w
zz%7~x#eZ^X1J@1QAa|{u=MNf2NAV}QXbxfa7b|jzx821}1J6IYyLWSuODrjAdly|b
z?~tn}h`R><A|HF}UOTrrZG?LU=&awg-eZ5bFz}GVtcgq}9vOH{+uXnhib8qC69Z2T
zJTvf*feZ<P(!aEPV@0LPanB9BF!0*I8v`$?^nraMyfP3eCg=+BL&Z4q>J6XVZw<Vo
zCA;rdhl;tmMX-p7edhki;ft;c=}r7c+sA;*M9=bZiG4ijOgk{9A0Qeu?L-G+l!*)`
zYI#J~?Jl}76Ul5Mi;3(ea+tP{QPiU7{h5hx>HUu;vN1UyB`BNIL@pE2ru{J?w`u!4
z>E~sV$3*SN?iZB>)eUsW8DrXap?oIto7hxboXsQlb@HS<au+n|FVE4{L^l(KOvIX~
zY9i4@VG~76#G5E*qNs^trtLXpO#I!;0~5tflwe*XU(u2#N|`84nla*w$|9<=7?xYC
z%p_iq^3W=LX`-wNw+TT5FcD|s9Yxo@@f~XmBFjpNYo)}{H*O*n)5@EuXxjID`ZA${
zi61IPy{FHSCMuh#VuGSm0?oaQ*fvqzs4f=t^$@9MqB_mjM3PBQ@<&Y*4NNpNkv^lS
zWulIWx?~3v?Wc&wg+<5AqMnKR58d?1y1og*h7ANAD|FB_GSS$??90*QS2qWVCZ>HT
z$j73WjPej^W}>-?cGQlE7A9I!X&}ChX@4Sky2I7VL~GOj&Vg?1<<pC<?zq67__ih*
zEl;S`p#?>)4kkL9=w#Zli?W?fgiDAnCiWhW9yCCt1vd&W-A(i`G2O)X<SHh5nHWtg
zYoa$fjESKphMDMVqMwNYCjFU#9lDcE^f&E@o#9{i{EZ1^<HX13?iPbQgG>xIF~mff
zDWYyti)v#;`7H@_XWR3weFq-S9x~Fz2=jlp;<alM$azN5>aViNSQF#O)FvjI7;j>N
ziEpT*0%D?xuS|SRc5arlP(!i3Z|lF>ioP{P`?g}rcrnSu%}?(4--xk2?M*ku#8eaC
znfSc9h%4`+TkEN-(bG)OrwmGadwFKi5}R0NV!4T#CT5X+sFYTL`pPHfn)a7kzhn_}
zXk}Z7DL1OmV+jf8wiQ2`SZHD~Eh71UPtPJU!k&cWtI;0^3eS5tU6nikWKU$NiIR0i
zzl{kiO#EbGEzkF76DxUrSJOl)L=9i<S<uC^%7oTV&_|x6K{0DgTzc(pNtb_Gj#grf
zN318e`Q&c7Dq)j}%_ffQ#?jr_Vq&X_NfCS-!8Q}y$we(xx3I&+P7^OpyrTGTVntKW
zZzispNHO6x;WObkafM9X#T_saG;zShK@%bJ3KN!zhzW^iO5Q~;rYzM|AMI9XY$kL{
zqur{BQKQ{Ns{Y($!>xubF1V-t?lxI7^_;u!2zTvq?o<<d$h*k%$GLY?#5?Ey?rn!M
zW8M2q?5CyN@4oh{yIvRfnrjVD?nypm;;@Nx<XR)#ztGf7oHTLD#8DH+Oq?+B<=m$2
zZn%$|c)p_P-Xrd;!S)kJxQTSV-{iE3GbXx>b)O}7?dGPI<F317jyECwiAK}&CN9vr
zkTFeMrYLvNeX6rviyBN*BgwC92QtM~+8`zK68YW4A0}>;jQ^KHfr;xT?wI(CBow1E
zdg$$+x5>>+lyBy_MZ11*4Syuxz(F;(#>Z3XT@&|AJTQ^xRQ11EpM;C=_PI|h6(3K^
zMkL=uGKh)C)a;(*e<*6T>ivW{Wq-NTr{x#%t43#_-k<Uqo-saWe8IT3f7H{L@$@v3
z*CyVWcuN6|BBzB|3-3*QplMpjXyGG;eG|9NxzbzsWWr_H{QaI}8c#Y4S!Q;kcU4oG
z&>|+v!oZ|*(R-6gCzFND7IIt2Lpl~dvoPXE7gfw^*>k6q&9Yy#O~NXBle1gMVSz|a
z#$1e)C55~eqAldJkl#WK*L`v&A+5*P|K<MNLIDe3Sm@K%eq}cGTacS2o_$==g{f_b
z6t+;rg0SGRP?Sjicsl-ySx^f^5r<`;hQ%36FqUK_VJQoxnU`@SUot6c!R<(9J<J<t
zVL{3Gau&*4_A7VeE&D&kRxhnw!9t*Zd_@bJ`^HzV7;i3#s$`+Eg(a`tr3Q;C77{E}
zrNMu6Cwz2McZnAIbr9#Dx(RDoI1(Fu!oo=lH7(S#P}@Qs3knU}LR|~>EKIO4(L#L-
z4ah7Ox?5;yp^=5Q7X5b#8e3>$p{0dZ7O>dU)IySlW)^OL@2T0r)!ahoy~!;sd^^!o
zbB2e68>e{=%=EOjkZqEOQX30bBe7|G_B2m>3mq(UvC!25sdZ%R%-D%B@1Z)Qxdm#6
zDpEQSiS1#br-i{5hFIujp|^zr<RP?Jw5Erm`&potDfP85D>jixvW5OEJhI5sgC*@}
z*u$eV$O7@P=@N%p^e;0QWnnb=RhL%7Gv*pju4RGxrRr31q=miHJv6T|WIC$Cn6k)j
zgoNWPjJI$zHj!E*{K~@D7M5CAX5kwPlPvsTVJ4Zy!ek5I^VFtTn9A+vULHm1I}6h+
zOeYJ+CQ^gcZ(7T_7TE@zLB7$>MPwFD#KL^?4L0%|3v+oSq<pKb>)4LY^JqCnx1)jm
zXknp+#pD>|R7LWU9TxGDktV6pj7UhhzG%MX7FLiuS=eIXC-QR(>nyCdu+qXR8ss9+
zj{135bF*tKtR?#__D~mpEb_cBlt|;GMyR_D7B)E}*=S*GY+{;mNO`M;Z5DhM{1&#e
zC+xJai^&c~Y9xhLvsrGMxR+Oi2#u4*9Iz0y5Vjy$DAznU^%b(PI}%GpWDQERE;5^u
zc%B&^&4O+rm2@l^7EJPiOwA)?_O)W<-eij$wRIgz(|Wce`H_R-$GypWXn*ZZK5l{d
zUJLt}5Z}+_0OLW%LyU(l{KDi2<59+Aj8yB@?WVPcHSX{<{*;B&v^yeb7Qq<{XDz(2
z@Y2FL3+HJsTlmAm1q&A~{7RdGVqoJ=mn_h0moJkOF784vq`pFP*_)hnCXqP32z%&v
z3BS?K-J5*PvR_wC>E_<#KP_Ch@VABg7H*ISlCyR1a+eiuS-8UuzS^67+p_=Oo|^j0
zLXB5dsV?F2)#dJ4Abj(x>H`Z8E&M~fAfMgxBMXnYE{!MKzT_tsnyxOFvbr2)|F!Ux
zi=J6{ZsE&)$&}I>B=X9_YYL1J6pi4Gg|`-RMUXp!cNF|BxFSdw!3PWUx(Z64=oGN<
zA9b3pT;r^{msnM6?@R8GH;RhVM{J!85oBZ%6|r9?LN6J~#MzyBqGn{tN3}AuJWB+h
zF(I9-5oB|C_6Tw~JZA)*_a&1;o(S?r@OcCUxT)v}@-d-zuf(J^UbAif2;4DwsQrGU
zn-q-Ti-`SFmBJAeiojn#nqEy38v*H4I@Y%#y>+E@-q_Pa+7ycb5tNV6D}hivf)Wvw
zrFJ4H$<<3oP$pu(ZKM<<)uME2W=pF3WdsxE<e{vHz!O1y1he-g_ifUF3=$W?td!g|
z>@oY2%SC7}SG_f)4P`4vP$`0j5j2XRas*W(s24%~2ofTw8bMtiXClv?s*rv)=G7f*
z)QF%a^ID9x9eJGymd7TLKBcw$l1FxH-TzL$2HbDQi`D71H6&~tL6ZoYMlh*nTWXx-
zsaDm0>qlQ$U88vfEg~2e!SD$F$rs-;f_4$KkDwK2TQjy{q|&xD&XjUQD0PTna0Elh
zL^TsSvO*_XuL!zC&^3Z?EbkvdcP{D~vCq~X%yZ6jQT1LC^p2oU#J)-P<I)S>VtqMF
zrKFP_!JSdnsMY{39msVDF^<Y_4`7|<qSB!(AyRl-u@MoBj9@%1O$61>^%xbwr&&>>
zBbc`+YJQ%?F%k4!S%dx&Y-|MMBK8~VX=@OYPS!*56C?O4g7CiNuOs*-g3CF(lW^DD
zW`qOQWSAVm6bcKeXr79x5quZH^9Wu<FfD@V5nLku2)>VCMg+SeNQvNw2>u^a-vK2>
z@qG>Kg5)4c*oEdInPCY6y9^*mQbZ)@nN5u%2u93eMi4|r6h$Ow6~%yr?U|m=(>-Lw
zfFwmwFpD{Uw;#Vf-~XIC@7#Lzs_NCNSJl;3H9d37u&fNP&>83(Wq7^}OUf|63{RC|
zQ5l}$uo@a!AoOXW3z=(Vr0LKI`QN^n^{g<T6WZ?lrEW?kf3ZZ{tjQvNLGVjuIFV9c
z6ueX@^D_12GQ9Qc5Q63O<dnLy46E4WGOQ@W$x)FvpAG5wyR%o9VGX;!Qe>0RwPjdW
zhV_CQ8|ntOu~LMow}07?U}G5;3fL?HJ&yE#ru)R#%kV}S%raPX;4-{fhWE>`gSD4o
zTN$>CBujX^4DShkhYDAUyeqhqp)!eKLca>6ai>1%&N7shK`X<qGW>OJ*zPja{%9EM
zVp6Yd6BCkAFGI4t<Q7?xlwgBa{ic{=q;?scGVCqGzA_9fuf;8cSB7*Me39QHG!U8*
zI`G@en0=C=4wLHkm*KGR50rsw929&==!)T?+8+pB^F<ZnkIL|I8P1mB%QCK)u=kqC
z$ugW0aI_4cmf@J-h81&|bX@QWp|=_;IiCssLg?pZI4xj-q4rMqWa=4-K7Nz(6-Rv;
zzAeLd!Z|N=gQ0#cfRf*oL7fvLXgMnK&9KP#W%z+}VAruJF~X0c@J~WNIbG$KGW=SG
zTn)`M{Km<jQ@4gH8vpSSd}a8T!$-iMLjU4Zfd12M{67+<z$b=ULBoQNdsfs?Ndw;?
zXovsmb<Wa|t%Ym*^pyn{nRK>GG*s14Ps61es%faMp{9mfTKF!|ba<qO$TQ1@v7NW>
z$YYtcHLwYFw9ru*>I!&b#Kig<8c1DDG&Iz}>Q)978f$1&j>)-91e8n#*4~uZP-}J>
zlOxQhW)EtvLD7(>p|ge-8lYj-*v_q3oraRp5r(>^N_x458!F~pJv!1_LmQE4tD&QY
z1Ihe$5^XQEgHV>hEF5kT4V|=bXftpmcG1vPLw^ldY3Qcm3JnDsdTHohF4I#$4-G#r
z`CqPl;dC(7sD@E33;Ig5x6t~(4e6s{ps8}AxKcQ*rJn%K3FoUt252B1LKy+XgEYiU
zbuew-ze20(k^4;bY7L~<2puYvV%KRHuHjh?&uO?`!w3!YG|bm9k~(O(mtq=5YZ#+p
znueP+jMXqsL!pKu4dXRTVE1YKy(cDWn52czk<tlSH~v|LU{o0zP467j5HIH!Psk#l
z%x@pfDyGdfOr@zclrl`nB45=&8RCoOj48)A3ZKmB8fIv?UBew3Zq_hU!>y8+xn^ky
zmS?jNX1_(4lxMiD95d-o4YM`eRbJZN8ty5_l)R`O>HT!7>7D0r!WZy>h6kkyWIpv+
z*2BVlOvB>>9?|fq0H(6xPY8Ze=-hJt6lvZ330Y5Z)X<Uo=PlCsOQIGFH9RfRCu%h$
zlVPc;J|mo7vx^yBtl@bL?<cS$fh8JVpz9{kC4m<;EY)yO!yyeXX?R(~yBglp@K&Z^
znTD10ObxGSSgvuAnf0oM6&j8Y8#%jqUe;^b18e1fxI1gLhSS~hwrF@w!x{~1HLTO{
zrm1ey@X^Z7>jg8qLBK{0=CuWkZkE*FG6j^GKYGmTbd}L#wh4Vh=vJX`3VloH-vtdQ
z^R|X}BuaelK>l_%N<&J6p<#!Hof?uFbPc-*y5$Z3Ab+=p95wHo_E!*>Y0&7UALJ*5
z60mlPRa!m#`b@!v9y#sz6qp)5JvlPaU}>;5I8u(MA+5m`oVQ~bvmATBpD$5k_{epm
z$1uuV84Y_R`(B~@G+a4x4Eg)n5yBy+=?-i7KttsOsw8kk!-sSU4L{Hz8a~!=j^j?l
zCmN1wIHTb#GfG9DYhWvm(f%4v2<MbgDsxgpyF>W|pOtfZUpMl!;4jKKZ<l3#Dflb8
zZu2~9LV1EqdN*LPU$bxx-*T!M(C_1V_1K}`iSXd+4YwW)Oa4*APa6Kw@UMmooN6TX
zPYu6l@J;o1p#;D3DIj?0#PN*&A^3;eM-tc6D*UD4Z^=kySmuACNme54sR{}H;bS&I
z#RLx3t5+$(U8B&>)Fe9*HvI4Tqc2IIY68s@P!gz?K=lMJO`v`PH4^BYJ%YlurI4CZ
zV66nM5oVnPdIkjybp_N*;FPH{I_hYCg9I8T&`9K|Qe&y8Ndiq1xJ>Y#`J-7iOU_B4
zZfrb3t_U|1+Avc>PKyMP;7@MRCV}5fwPga%fPQQX@#P7$5+*T6P1^+8QMmn(P6@P^
z@;k8hE_GPQ{^ze}u8xv7lE9U%>oA%}u{{M$tr8S;O`ux>vl6%^fh!W|p1`mKu1lZ?
z8<jv`W=U|dl$D=AuLPnA6o`f#v&_yxS{f9vz}~{_lfcWp`;p%-f&K{$NMK+BS4k56
z;bIojLBhEvfoJv>3{GH30`!Edg<029yMNI8qGJpd&b0}gm=cybJb~*IC`zC>ff3To
zu?dVzU}OTLxH&AnPahkdz?eknYz*<e1>+N#kie7#Vp7_~1SSh$fs@#}VWAPI+j(=$
z`Vk}J35=~?j~wDcn)FaUK}iDi+nW-Yo<L~=Y64SfoJ;}34FV1x$iK0iGflvulAIZd
za9X=L5&H17Ou@zvE@iPZsoSn$EB5E#n!s&rege-XaC-uGB=B$ok0fws0<#miFM<0L
zxJ&fBw_Mx16IhxlxF><%M~z`o4D)Jd(SQ#m@E}#SRC2nty@X&+0uKp?lNh6qN(pll
zcrt;<5_mj;AD2Zhmhglm4ca+uUIOzISR_#z|EUC?7Q8^ZW}#5>{~8*aYhAq7#X<30
z0*ez^pTLF$p6BGBz^e(YNZ<ud{s}CT5;!)QWvSqoguX14lN<T32qsvb!0<mqcU_sl
zssvUiutt(-Lxz{D^;|2_b>;HxFA6ssI&!0MUQghS1U4nGS<KF)EeX6Pqmr2Y>!pTW
zWvN>ec#F=Qz?+hb{le6@%SZ9M0^SjtJ9+$j32Ya9?f5Yq)ED{`>`b6uI%+1c<-XCo
z64;$U8JpZNFGVNZ*HcR%A<;E|<ufD`&=Z{S`-ON}X9^hX<#%ckaOcFL$2Q2bg*rlA
zp$msK@Dm6U=%=H<&R=DQo6q+oac>fP64;x-z6AF3@tQ=}Bn~8SFoEw9_?|Oc0*4d$
zJQ051=>tywtU7^X34EBqM+qEF@CV&JKc=L7Z{(8%_~nO-n4f(plrL!<=Rgwye#&6Q
zC+$ztlI+>KS*JKTH10XkQc3w)269d(@I?Y=5;&W{`2@a}Twf+|E)jkv<*P*afh-oz
zAMTy2Q}2A8df$k^w+Y;8g`fN2&;0qjeu5w9iU~AJqInWOvHAS#mIVGy-~vlH9%1-7
zfnUn;ubl1#|1R_op?{XA{*}Prf{(PT$Bh3aP$7wGNmNgwViJ{-=-ja5B?Lcp$V#G0
z5)W7Gm@QFqDhuFQDsQ#%$_gc`iaf8})JTGd-Sv}bkVMTSY9&!Si8{&f&H!&A@&LMS
z67`ZOyRtJ68F^|+aA^`VCS?&cOk&B$!#<hWv55#YN}{oV%Y-s7Wtt{Ift)0A1q|uY
zkx?FDD@n9SqC*lLlRy$JlW3Jh>ty(~gv+V?`mDp_M)6xK^DVVa5^a-Vw_fbTc1g6C
zC^?m;H0GDS2qH;zO5)|ldHm1;qj_vy5={?8HdXGKTu@<^rQZH(y>3Zdk;LRArX=}K
z#ORU4wMh(1qGuBMNeoV6ND>7}^h%<45`Cl!dIC#}Cc)1{5cEyrkIFs!CDA{LTSnKq
zQe<{m>QzY$NMc|TgOd2QY5rkL{ijOd<@NGczm#_mLOS{P;a4Za(|i`f54K#B#8An5
zLA-@u=DALyW0Dw~#PB4pPhvz8Ba;}-9<fz^5{DT_iOjV%BK*F}y&u;mr_10z<C2&l
ze7fBDBz6h^p})sWOkz?J1PnAwEQvUKEs2|xC`_U#8M@+)NfakhBH5=V@pN|2Qo*Xw
z)#FF?iG<(oxIv=)X2nHoOiSXX<o`ZRGo8Ni=NQV&Ok$RZ-AT(N@!`|g-7e8vlemq-
zV#ap1+BI5mhwz!@;-@fXCvjI2moJ)dx0Kn>4u{Wu$?%g$8BPdE+@Hh)Nj#XuoFty7
zzp+ttk0hQ+;`b)?9^n+xKaa<Dk0<dcn{2Df?IRx(@W>s5o=9SD5>F;EFNx{vCOn<Q
z{3M=A;-$^`Q@0G_k<$XY!SJ37ll*(`LH7?HdAqGLX%R<+ty11wGWl6L+oXQa(JR_V
z77M*=_SGNV6?q|v7n67+iLFU2O=7*Ru1{hEOQsW&za(#2604H%9vS-z$A0h5%Z0uw
zbOptl=8?HlqLn8WtWILzp(w)|0c(Y>V``tyKi!_akxpAVvPGDiXo@#g-Bvdzk@Mw9
zmj4<%u|en8Ibhcp^VR#I&!cZ9@m3P;9Mwu<TM}<4d8-XO=zdAOo5Y&2k?lg?`#<!C
zCY^KNYk1_;gq?JuB#b1?BzAKY(=tw27c0_|ND4>@{oGc`{Pbi)U7{)0_48<Q_(nW-
zWcc>oYE71%gu~8loaa)8W5iJp-`|<hv|wLoAashOGIcN8n8epfe3Qg}_G}Vok~o{h
z!6XhP@o5srk~o~?p**^;>HaYv8QmK4OIb&f;rFsWOyZ*?o;@EKeOvZLN|{eY@~F_+
zj(R+a6G@!noYN@pWD-Y9^XLAW*Wg6SrD{I$XDs=`kk7?EP7D4*D4B~K^~+><I?R2}
zb9^w3&ihK}oSDk`B%bIHo}#{Aoc(PQ-*FPt(MCu3jlm@TOyV!jY0`r~@)025g3uDT
z=g$Iu5&Emp--P}y^bet%o$z?~?<D@AKj=_&{L6`YY91QpHPG>25*2h*)bY-d3YBzZ
z=^($?%N4Q()DlWgWdT)$ULv%r&}urW>!=~PW;x{!GqW(%7ET?Zb%oZ`ajAg%LMg*s
ztgfMsMxsMwJ=E<op-qG`+EhnQInLG5tQ>1=DzsoZI$G)BQlX`euN&lDu7hid%I{1d
zUec$|4X<=&(x|ty+v;ei<M8H4FCFc5bkNaLN8aWLr;Cm{y6WhrBch`dnL2*h9A)St
zptFw4HbyN+J$brh<*E@^==jW0yX!pT#($35*j0PDYT0Lz?yE*nfTiW@C}75O9r)!;
z(kPqUuU>B*eRPza>epAtm3sIv+9E3o0zO}^(lJ0s;}kASVW5sdI*N6a=oqYHh>poR
zrs%j@$2B^hzdG{GkP1U}T&rWej>oTwkTXojNFAeeT&H8Wj_XBigwPk4R-gdI2u2Hs
z(Q!J)2p%hxsVsBOkWg}hj)^qsHIZo&og@Owhg4v8?(@fV#HG?g9XpqeBZqm5sN0mh
zSC>{O)uHMzbyzy4>bOD25*;t-xKYP69gpaERL4y^rt7#<$7~%lblj}-91yqan5kp5
ztGfA-Spwc0G4}e=V;Qa9C32gNfolrx(D8oP$n8Sg%o{O7gzwUEw~hyNJgDOy9rx<E
zPsbWpo$IP?yF?~UZOH8R>v*$gB<ZTebJ#WABM%9uM!yL859>JNs{gtw`H!(_Iu__y
zsN)G8b9KzqF<(a$Pd(Bt(!5gLCv|+;J<`onI}EA+l#WEl$jnY*A@Rdip4NGkiRW}I
z*71yvp`J=Ug`XA7=u}Ug>#5J{SnH{pr?M>zc8q*c$5I`ebZpk~l8%?DJOy+t)A5Rq
z6*^YxSk3|$4}X;^Emn_v>ffHqN*`O>yI+^cDjlnJG)${yeIjg5ep;>ABXYykhU@6w
zog(Y$6=`)=THT;yBS%e-2(wII(YbE#$QDj7IuAOrQ^)H%-r&&F@ve@ow2Y2zluxT{
z-CH_-+ck1wT5Z@lvZ!z5Z3=XbFtD!obZlo|=$JLN;fAuhwIh*x2UQ?H(>YSuBeF}!
zZVp2ox{g#@)qa>zrbFW>?i)$y_&YE1Yg+vztumUTd42WMYdSA`Zg}sG5km**>Ru6B
zhr>an<3}B?4o}BX9iMWT>+p3P&~Z>lz{S6gy*l>kJfa14nB=Qp3>(`fKhoD%=|B7F
z9=`gFuTp3F(jg9i9UtlVSjPvnxvw74@u3d7%GmCa8fyyH=SMCSMA-08bbdH1>pMR*
z^**7;bR5@lPRDs2Cv=>o+vqr};}mBDI^J``ztHhH_30crEk4HHuN$b5K)oRnVT%R@
z>X$mclDg=J@jxx;5xFl=XO0`o=+`>F<D8)5#X$W=$G1A(3RH%}6zd*p&ak;}<R={$
zbW}<qD}|qR{G#J88dJxw>?R$5==hU)1NGNvWbND$zw7w@;n0|uX4G*#LmeJ2i2S3Y
zV@CZ?M}-vr)$wGv$kDvW`_Tv+UNIF4pY0i;pWJgrBs+!5DO69PMhfRE)~%AlB`H)*
zfoga9U^Go#ErsbBb!^AT$c)O2HB+dSLcJ6&O@X~xJB7vtkvb{RfQvKgRinn%O@YE3
z5%p7OkU~S2JT1PVOXy2)O9_oq2r}y91!G%3G^j}mO;flrg=s0|r1&{Rj7;INR(Z`*
zXr4m<6s}4^NufmwJyXa}0V%XhAuol_DO{ey8_$n#lS11RTBWe)OhM}uzR0L=U0y%C
zde3$#kakF+V+!q4c>KoB4OjH8c6?-`-26xiH&^S~iLIzJmeId6Dx-W-cS+%j6yBd#
zr)w&FaCehj%vkfb-i&rnp@)>&c#q1G3j{}L%oKWw<QKDYDa@oklGIOV-xRJCu;I%B
zCNV_+7(RfLe+t*7Fg%4n#^eo3VQ>mV1b5z}l5=$mcg*WKG=*z~Ij>SdjSqWXOPM|D
zFyY+&dN#$bPvMs*d!DRRe?$s<UaUa8Yf#qlBRxl@Fgk@X?1&Vmq!3GCTngh;n3Tfg
z6i@2IHS_RCv%g<aVWQw4>(?P?Oyy2|Ct@IoGkfJuWO~yo5EM$ZD1~AHB|=MuGF44s
zYB|0k1#@X<GH;^Wq_81{jVa8a!BcoSg=O@U6lSF`KZTmFX5W$uS4#J%@PL3@Q@Bk4
znYYsdg6}Nn%ueC1a(s6R_mty%1>BcHzf4bN<Pzw<`Raoy%wc0IM_!yc@u70bhf{c@
z96u`HF`<tOeM0D5p--lGNg&jXfhSW>rLaIs`!M&~g(*BulkQO$34KZEGbubPfc)oD
zSS<MYa?TO~F9>}xg{1;mGKER!PAqsOh2<%%PGL<7uX5Bsp0}`n-l`N<q_8pt)f(FW
zk?8C_s=9WNzdCDi-7KcAO@VZsP;$OM)_Xm>^2^cuGU28aHm8tCA(_G!X~ml<yp_Uh
z<t=)h1E(BsWnYLI+fqDI$1dT&BlLZt@0LrxCty3(o8Fsh?_h_%H(@7T;+|r5B{{oA
zU}U%PWhrQ!78Z}5@M6f<Q%I#?rC`$&N;(@t%@o$}QLC-#zH^UCrjvrpX@R4D%}_6e
zw8%JXx-%)WN9Fq5PvM0FwZo_+5$qB0-;6=~Q#g>qfR8coV;oH35Z!4H9^8Y&DSW_L
z!b2+$M^gAO1>Hi*!bd55oWgzs2Mm0Y!ck5>25vI&X$r?UoDK9ba6HAsdQ>*}eFL0K
z;ZzELrSNx(hilzFOW|w^U#9SR3fJf6o#vdA!WqGg{(hCRd{<7NX*pk|a4v;ATb2AO
zN#|4eK7}7r_&SAeQusE7$XBrzQ=;EVYO;mWsZ;UjbnHh?gGuFrFn^+_&CFf-QDKF?
z(VsceQ@FQze9nc~v`W!`P8YGR-%|LUvw;ZznL?dexn$lg^pfL6RP`SY_Nn>*rtn`1
z6%72|DyQ*+SS14$jZpJtT27N>jGQb3*#-z0u5Dg&iGivHniyeYs~M<npb=9I)G$y}
zn6(Tnm>(P3O__3~@>s=aZ3A@-)HP7gz}bfJ`a&O=-0V^T<Q&_hk~T1~Y+0<Kfyo<V
z1T35uxJ)#8u8l%{ni|M4@XVH2u7OqtS{rC)pt%9XKnnw}nMExP?syc!z$mxdP07N3
zH<!kHm0oUO&%1@|OG>*QFKT0;t$|(!woHn)Gtk~ZCj)s>#ose?I~eFF_&=#G!ZNiS
z*4x=Y>B)E(1KO?_L;p%q(ykKiX5fl)es=>s%5hHt`34FEun=a6O1+yejkET?2Cg(P
z!N5cV{S5RsaIJx12CgzNz`)f8t}%GqA?yW)AqEDO<G})Y&kVcrsVY&@p~C6kCrU9!
zucHwRjFyhLUN|ERj5P4w9(BaoSTw8nixsg^1}cn;e=6C>7#M3{oPnE{#m0*~L2WNI
z_^mCKN$d^-g$9bK?bQ7L`bMWn$zOjHi?In=(YS#pFNqQq8z?bwBb{fjT55p(-gSO#
zssYtN&#KYI-^R$f!2p>I4>XFiv`-J_PB$>az-j|)sDOc)2A-nx7<fM`I?KSF24)+$
z#lWpJQJ?5-LOn&fT>v?E7<k!=Rq9%Nmw~$tJj!-`9>2%Hy#^jKkeFP^aG!w(1>Z09
z0Rt_!#>h9?D076fxTV7A!{zdi7`VuJ%)sLYo{-+3Cv>h*I>VC&nzETE<MYco*|TyN
z8hF~kOH|3gB08#pB?j6=qt6<6=kxe;LQ{u|h!+bcc%Dw!Mj@cs3nKiYfu#b-`8`Kj
zCiqnYKlX}}^NNAx|0k8q6$VyHD)A}-4XYKemEPP!2R5)yx``dMo{II%-XPJ91~v)U
zEOdIVLV?!}ykQ_|KsT_}z?<v^13L`7QlPwL;5`G|IYlgsZ8PvTE8QAnc*nrI<+#bb
zLe5vY3uAkx=6Bp#w9~*Y1BVnO416>?esp7Ow}CRwB>k0@C*vA(os2Wk53d>@t^8&z
zWxz1t8t@F51}p=%0f+dR!b_SJ*Lgd3wrc#guVUYG=xvPcc(5>S;KTiezJY+_rCNMl
zC#BWPg&DfRi8ysQ|8vnE1A7e+FzgdR$394v4BTPjP7{X>d|=>f1K$`pB3^x7=!aC;
zz{le7#|@m|Q^3Gc&i@9E8E7c;=lqu80QoDbaLVOOb<)5WbktAUpEB?nov=$KrhabV
zw1Hn_sQx=MmriwtGoFDj4a`{+V>l<^D+7PTqtEXsBBx=ca45y|v%lql<zO+<&BXTx
ze&Ez<qL#@EF!+f>%tR#<7YzJt;7<d8u@(cr8t7Xo{=0$SXy^Bf`n6U_8R#~DND@<f
zwJiRdZP^&>KQ8{Cfd-!!{lhNKRsI!b%UJ1$9SbX%Ano;XVU`(sZxs`ln8-HKLs7oo
zrc^fZ19%0lsHzzb|7s?xo2YP44hyLvoRYRV<g*LNscoW;37BYUqOOU0CUQ)$uP-%`
zHMMkA3#F0CpFpC4iH0UhTjRhtG4@gSy(&{1o4CwG6B7lyix`>;==4jB-ohvg$u-f;
zL~|30i54b*(HSxs9xaKVkCqPozUXojtxV*Zc&t*KZqwRCI}`0`&t0)LCfW+1JTrEx
zUEIM$M-vefUrma>{Zy<IHGexcCmvm!Q%sc>H81Hb<#Z8Be@iSayuw6x6T?khPve;A
zY2qpq15D&oRhq&?KPK_9MYEfTn&@qY(^?;sKb<aGHoh4HllrpKd4=}mIFpu-Z`NN@
ziLc+Qe)>ynpozgIhL{*6dC4!-imo<sjfrbbj4F(m4pNx6R@3-U6Kk`g9G+wjlcej+
zaI`*Bzhs1oku<Lfm3$MUO-wQ|*~AzVV@-@V@$b^YpHqdm?opP$6&q)Qv~;gJ!3?L|
zn5|3{4h86??<?^sCa)nOZlcgc`rBBsiPO7_{@4&Zw<A`>eyqf$NFnFs5)=3DRSBk=
zxWUBDCT5B|-Du*oN%0vbrkS|O3_W%_N8*kcJ&mE$`a(MAEpNqsX|BvNahrJ5EhcU?
zu{S$fbyJM4HFiRjK6bk#IfInhChjsZ)WWqE?ly6ci4!JHnz+~G<tSc&!CTbC!~-T?
zGVwC~#KasE&zN}D#6u<?Hu1QLCrms-cd8cc`%mmq6G<yZ{FsTZ{gj`+i~aLOY_5qX
zP0Tm(6w4f<FqL7Ri6wj07QV8;#6lBKo4Eb!7&)YKzm7foY$3rSVG=)QVlf+HDKAPz
z&r?0E+Y*{(a9CQ)ZpsTLKHnXyeIovCc6=#a+E*TKgJmXOF|pdj8WZF%H_>QI>{S!X
zFDthGD_UV<rEpf!1GmJO^mNBU(zPbmnb=}-QH1p-HkhD3n}m)#Quz1fB^yoXe-)9r
znWL{(lz}?1nXl9BKP=j6;tdmw-grEIXj|;f{-vi&<J(NUZ6Yv{G4YOxcWEUSV&Xj$
z+fD2;v70Vxf`zlFohIKm3wJR3W{fpvSz#Ngf0?u*AylKy+ZB^J+g8?Xils~#CTtUq
z*k_KdbbB>sasqrcX3+zW#|d0X8lfm@6P{oeJFQ9lQA6=1x~6sU9=eK&k4$`QVxNiq
z?D2K64@?}Ov;7l0L}wFlP;?{b#7{9Q`R;&H;v*)$n340LiK|z|2uNA}Cnk=WIBw#o
z7@4N{RIEf`4=kks!<k6&DLS@^OD)v5@Hq#CiHa5~S@^=l8P3}#ell^^#Fr+%Ve>i9
zh{ESgoaYSbhxYkeIR71s6W2Q*o8K%1-*LVb{`Z`Dd?m6yREeSUe&vFRpH2K>;!hL5
zh@1UpqFSTSjenKs9OTygx#)MvPVg6-EN%afoy&QqMs(4?VcY+up%R7nzZWB=9V%F1
z3ERGnWm)`99BNpoDV)j{F0oKma1{&FyijLmsb-<N6_#)`Pa$Qv)Xce}ceIujdR<)$
zwJp@Kz~(GXD-TZ#lUnUp>RJ5%wHQGI3k@xFvC!2*BMXf!TyCM2h0827vC!OtVxg&p
z7YCF!ld5wp<XYIcS7m=OoU2#d;O1OvQZS*kg@p_AVz5Bm=y<%P6%GomAWGWW;zu)h
z@dNEG+%j0<pli#v)QB?B136ARScq8YWP$G5Q8cG|c@{cb(D$k=zgOq5z4SfOZWgYv
z(8oew3pf89>u#Z^g?zz1ES#%TOeV`Lu+Ymw)WU<vWt1b1CL--^g%btAl@|J07+_%_
z{p8J9e+zfLTu5-0L`%mO96eGv$iiT0IETp)3vE9wx?0-BmJ(k>AKMc9Xs=2-%))gR
zW>5_a!!2BIg)__)3nQ#>wKmQ|%PH9eBQ1=wFj|<)x+-G?kUy6E!Z-nQji+&{M<-aA
zXkn7z$pjsg=SIidt%xxxW+852Q7l?$p~yn9g<toow`j2v3#AsGQIu&G_a!jZLWjP}
zjWo{8(%SpfR{PW&Ed0@=c)&iDVW(d->uAwU7D%UC;PZ}PCZjCD!n5otixVd9vv9wK
z+h{ZkcUqWDpDd2^A$14c#w}V_JEV76SXVV3->2Ry%)2ezW8qZQVkXVcExBi(y0BXG
z0d|CiC)l|b=2&=$8dfiU)WX9SS9c0!7_FKef5ZykbO>Tg3m>!axQH=3Q*YTEdy<}P
z;VBFAXqN0aL(6sw=>iK+3uk&(bRjk09Q&`kvWQx3iZS)i?#go(7F&4D!s`~Ex3I**
zs}@#Rc!9oc;T6fdROm7qc7XDd#aElKioz3xq|sy{0|CQw;Xk)eC0=P^jfJ(sStWF}
zg|`NTDy_4yo+Cw=jBc<%l?d9*$|2pv5f>@mEOd)dMrnsPENr##zJ(o<@l6ZcEWFJ!
zB}yYxt9Q!Fd{<OuY3~VVdpW;utKyx4%gQ;sEbK1F>=eyH!b1O(MM>!|_S9xOHoz@1
zESNNljg>Ym3pV@R#_cv73$BI37Cx}xSxAd-@3-Jv2n6r5kfG1Z`!d(hdxS|(-Yekx
z$=SpYA@@Kz{~+fdc1P7>26p!m3m<YY+URfNBMTpMuCr0q#wYX*3qM%+k^X7nn1!<z
zzO-=M!U@jv7EVj0CoOzdUi&El+~J`zd=dDfoPUOsNvH6w!DtrJuQ*Xy_{PGw7S3B3
zdn!)m*A{-+8hia}WvRS1d?$JNX7{}SzCl!aJ@)C%r9W|^v+$>dzbyRBEF4oEl;1f9
z%j^2`DrNr6+}|uL{Vm2~{}4W3=ZXKe@Q;OxHY(Zpmy_OCp}>DMg_gtMUJ|Wf^P_p;
z_Cl78Y&$e*6`_@F9IqZNIbXyL1nx(Lxw<ITY*e?=#ztEkHEh(h(bPtc&8sG;ZKI)$
zMm8v4$3|Tn^`x8$GjcAq(PLt~fkf*IeZNBdpOf(iN5}at%$M=THkt@ONX9O+LArUL
zN_tjImn%uI(ac73o41{F6gzxDZegQOZ)NT1IPo?ur=^X{MY5HR);3u0hwVyO2-~=F
zW^Owh?QL9Pqq~g`HagnqBEk_HueC4kWFt?qu$ebji&CYMnYo?IIbCgZvvF~osGr!X
zhmD>#dQ$-#`8En{^pet;odT1Z#~Y6;joRS+nf+sol+Elb0#{OjlkvGNmA3|lyAW5|
z{0tqgvoYMp{ZGXXwowM!7-Zx177Fb%*v1eWSKGM8#<h01%{A19wom=HS$soFg&_51
z5t+kmEYxxcuD3D5#!MTtY>cG5jba-mHb&bRWAlm&CfgWmV;tLMW1@{SGjqq=Sa4@E
zcJzpo@tR$gL@(tc{$ghC6dN%cg*J+8{tJBUnG3N;GD_SAw;#7%h+TZor8{kJrj*)H
zrFGMVPPK7^jT;3&(ObE;rILC_nP%fA8suCNdxXxwy_6XuKo7rJz?4qPEdnl<Of_zm
zCKKFY<4zmT+gM^_wvD@NJZNK%jk`sjBmF+{x_fNg%ih#-F21vKU-W)Ed?r31bZ+55
zP74p&c-Y1x!r8R0kg1Q_ytEUFJ!a!^8&6ym7D{<`=#zpeFi*gIp-%~2K+6kwTIh?<
zg#|J^W8+!j5I-kiv5kZKR7PL0@uH38!dz<OB^ye9I9c)K>t$iSVq=*d?#`Xvr;^56
zhq}FLqclI8uR_GDY^=7?&P96{Yiz8g4i27nu+HXfA~bZ+$iW618*O}L<D8969N;!G
zHul)qLi^a*Wn(ve%*Gow-nQ|MjjcA`q^GTly=CK}Va*EjlxyNq-sadwSDBhm{=}Pe
z3Es8wzKtC=-m|fty|6B}GNo{@uhyjKPRV|%?*HUjLK%IPGr0}dM#4tYhGD}LG2KRr
zj^xC~O^kAbmtby%xFvPj!msbdYBh*g=vMshvY2Owo4{!sKAraFT;hNuA|AbeORS_p
z{I{kd-fLr@jZ?JD^4NYG2W%X%@gZ$4S*YG&8;3X+8pIj6+f2>}wDXJ{zRZ4P<6|42
z+BnAf-v%`~YNJKNaL3Z{m6N~5Ivp)KZsUZFlcFI7xMfWmof&3lX`k8n+{S4R;T-(7
zPd#Jf%Vn`Igi^_}G4ZoDNWZi(cyg5Byp6BJW}>2lZ)|*P<2M_>+xX7L_cngAalyt9
zoZ{?o`}9XG)Pb+4G{}7oihq{2{~|VF!`JSN{VFD%^;#~w=?@!!ijx1?_{+xMobx$3
zHwfGEeyfsyB#FJo0@=$A_p2<NNtGOAIjHHNmJ@bgwu4I?R25uVXcY%-_p3}|sOF%$
zgBlLL>!{o_A)1-fjP)|`1**1#IwD`+L0t#+1Yhc4?}%o9?})7z7dks5=a1GoET@43
zItf8z2bVb*<zTdfCJvf9xWYkq2RROM9o|Mmdk4*&uwO2B(8@t`2a1Ch!XXn5j_gwi
zS_-G$WyQqo<<?H<Hf<b4J1gv|wod3LO!~WV@tB!89UOFV(A7al2NBV;lgQ^eXt`Hm
z#?DM#Sa>lDmF(t(ql4~O&{JXO_HfYC!9WLt9OOGFaM0Jml@5A2`~+WYQJ-j30Eb3z
zDX>p@l&P;DDeOm6H;7;5pudBk|BErOOx7~ML50(yF$X&s;$WzQYel!K9nfgkP=`B1
z(=E>ll^N#XItRlYTraxaKcjTWuF#$%9E_AeFQxt*L<Eyp7LIW+*1;?Xw>TK*V7!AH
z9NftA9ZYmk<e*z?Ws-x*4!^gFLI+bEeA-U2ZqK3rQ@xlIdNqq;uU&LDrWQLWaZu_&
zmENRQQ>7O;zG!L&T40)ko1_&pDBK|a>Xax4>2%R~<m_fN>CFyiI^kqO<*#g$bE|{f
z96UgdgWDb4;ovR@cT4x(>ENmYWwu~CFuRolin;D_aIb^=F81S9%Khy0nK=|-(uwxr
zdT)+{ha5cW;4wCEW9(s}G&=|5BM!D)871>^$v)S?lMbE`%#3teip_KIl!FBh<~vBn
z!r@=FXECd$&YZhw;YD;F2VXci<KS5b&pCM4!FvuCJ9yr~Y6okaa5Hd;gO?n<EcgWn
zFFIJtVp}Opx?c(DGD%wQ;8g*y2(8&ySs{P|s~oHpT)prA&$X75zk{s~wpEF)=j88T
zlY`9;K5P<h32t;kIzWr{+z{L1-~~lt^bH5EIe49ZSQwrAO6(V}kg4Rq*-ClS!CNfK
zf!9@e+rc}macivUE`^lukB_wq!*=T6;Gly;4t6-$>A-g2IN0T2w}X@e!$BF{yH7Mh
ziwV$}+EpRv+_o6cbaV#<jFLGwC)|oO9a!}94Y7w?DJS|U+*))+^T0ud$~Z`K&~1p_
zQ!VNXpW3o5dpNx?S3G*a!9E9z3Y7gE6l-GSMC)K-fpQVN=P8FBe89P-cX&{BgvOzJ
zJ2>Wm`w1U8_{70c&NJ1bAJgmlD%@(|b_zE%NXb0z;Dp2Le_;~e<xkQ%k$cJs_vpB9
zMghK_lmEGc)0Fu-w!3vGc9uiN!M_f#3*sxb*THYp+`)MVUvuC);eI=JIKSas>fn1$
zAX(9GIpehmPiKB`@S|{k;;4~5_F|zIgxPDqdU1F37YDxz=VIy~Y{kZKbM<cle+vCe
z=)>ci{UbFp)hkdcxTxr&k&DJID!IsV!zD*u7uhZ<yQtx!rf{mbs4CzRp_F-ScMfSa
ziB`Xuq{eFrs8cReTL3rwFUr?*ajA>?!fa43!_<c5nCCl}xo9HMmM*xZ-_%8O7mAA<
z7r8FhJF#XiR~-uX>M!rB+|WX4;Q}rgeW``Q)Hezg2I9+Iv~tnfMH?xttx(o=QElqO
zv(64KI=Xnk#e*&)E;_jw?_z?BJU3ixb#c+vMQ1nkUY=`k1=!8S6)yU^xKaeVyD-ni
zdb#M~q9-%fEWWK`c(9dE4Nt}k-0-lK2S8Egsu=Apw2x4(7Rc$xl3fgPG1v`<z*Q~=
z2-x0LVU%H@M2mM74RLX`i|bvCaB+=`p)Rg-G3``*Xv^YjU9@ZwALioA$)$`E|2&|S
zbhwL0jujD%bosu3v-Nnp5*L%G)rQkWV_b}7nYnr6M3Nlh52lw+bTP@r44TWuWEX1h
zXrYTD`o`<ADK28HsC9_r!r^Iqv5OKHH@TSZ;#Av`Qf6^6)x~!$mEtwAXS*mjxF8s}
zTOsF0sx47+xS_<w{~h}jQoat%bTP}t-7aqZBX*0+Z??qlbTOOl-5R^q#cjg5UFaP`
z`5HnQz7+6n^e#7iMP+!ogTnWhdtC7S<zDs?Ep{?~zfiu&@H)X97Z17k*u^I<9%jQ`
zyy0RiJ<Y{qE}nL=$i?F>w&W`FT+Dazgt*OI7f%Wpm>YWXxh};Y4pMj~^^}VRF6gui
zCH4CK>I35H&$xKj#Yz{eTs-Guv5TcHUUKog_|n1MMK91|PZutc=+z@jN0yYn=pvpd
zd~|#4Wf#j_yy{{FbG;RN#l>=$pRXw*-r1m-fZoWHP-ZXPuM(_wdEXTqU2Jmk<EGeJ
z7wg1r9+1@aE;hIr{YW9*iH9<i`b0mwP_%SSY%|;F;x!l7{uc6IcQNxqcnW!o%6*>L
zn=am>Z@aKuY~$c^vD3vaD)vt79lBFt{CyYiO7uM!+g<P|ib)JSklG;v*CvZ7wyGs|
z(+*o>nu{`ueO$;V*G)T$5-yUQPj(jRE>bQGT7JLEr_b9<3TF&0-QBTpS=D0Oh2vt6
zi@h@HT^GI#bI(QE#gs0E2g-_g*vIY&Tx95SIpLh}Yggsb7Ro*s`&}GzaoEKH7d$$Q
z4{LT%z-zfm`zpn|D@5H+_`t=7E<SQ`L<(eStM{u7=^p1}-;atjdep_IoDw}`dpJfP
zbMd{4A6%Spani+Cv@?C)#b++QaCwUu@9$SXcX65npX-5jF}|j85+>+bvG_hOcGktQ
z*J7>Si+$;0;jb|sex2v+6peoE;u{xyoN>1Q`fTi57vFkCd7EPt{!X&+O!h|?Ke_nB
z#h>h&-9;B%{OaO2j%bbrH+;-_`&CXU^bO7)zl-M_->=^AQh0cGWkmVQ#Xm0orEa^6
z{&vH=6YTE)M67~`ieAX4gHgC)o1A~P#VUE>l(qf8SY;1YJk;_~+ruRus(PsD;rIP&
zHR4U-^QDG|F1bo|5BH~w*hX>~9hE3z!|Qmc>!GQK91rz8T<V1@pUb@Pyt2NB1|Ax+
z<iaS|Dz%KFMjje_VAu0$UafYVo^TO2VMRNOrsOIu|0~M%(9A<~FFg0>5i0qLhZY{-
zg`UYQbU7|>NLzZLmmV7vZ|$LthaY|X<fE;Jb{-m~(KwCv9y)kf=V85vjvgW&CVH6U
zp_7L^4}CoJ_0XA3^U%XXPtm-q$3M&pH_5wsc&ux<=(<Aq-Gy@TmQQ7-M7hJ$%L|`e
z1s-l_9fGJA-UI0^lz<mMuJq8)!x%4|e*1g4%EPrDhIts^VIW&4d?pR@Fjz3NFv>8*
z!?+G1zNTDer~vK)k$IhmkrEw#F;(b@i#Rur`yr#s@n{d+db(KVSe7aL@j@q*%dFp(
zGuguw5086z!b8kM+{3LNZu7ziVxhG9W)DRkianHgC>8!q9#jug1>fj}&ow&a4HA7(
zQRsNn1ha(d2UODO9%httxEh@4VHSN!*1)vzEmR;kH1+LXc&q0g5BGYwL-3s*W_!3x
zFt7A5mEmqLyu-r>!F?=5k{%NJfY3QY9~7C3@-u2gANKHw@Glnfs2A>AK1Ta=Q3&RG
zc+$fw9+rEU=V3ncdU)Q$Qyvz0SmfauFPz^NO4svR%hO)C1Z7~ud2xkT4xaVGYcS8z
zm)xSvsW|Bp4=;Fl*#iZ5*?`w(c%kJ*FP!a{dU#0yo9xK?e3=I)FD&6z4=X&ZlG0e?
z#Va=}rC8Rx+QS;DdaaBOdL2vKrYIXcZ1k{;Bg?}k51Tz~XUBQi;)N@m*F3!LVOn2>
z_zgC>Li|k+Z_&>`X}^{AHYwIt$F_;&yTV-4qu1MXW7gH97en&{>U$o(8XX_lQ6b$S
zk}PVcfUXDB$G;D68<u&{IK$Aew6lk#hm81`?jhx2YXkTm4Ax#a(3Om)2g`#^1vqsy
zD(Sr<)@W61_qLE8&MWpfNY@vpg?_**9P0}M$u;nRdU{9E9uIpx?DMdnGq#809u9ao
zNTYf9SSmf_;e&DyKkVV|P2noyh=&ioa6dD$AV$tME!L@%vi*F~CmxP+Y_?QBrJ=44
zuVQk@{C2G9gp_c~!)F3casp`_pSV}~+zU5#DZ{PQ9$RC?XV}Xg{`Bydhc9U>58r$E
zf#X7)@Egg__1Jj<Uvt{|C&pRyTNzyRf$uy}83LC1qlXI~e)jN_bb7r?;UU*AUU+==
ztB2n>#|~C_j>hYDzta;qM^%h6tTmLj4>qeZA^Nvi>5??6rtuFOJ0||GhyOUf4yYB<
zsFX%l8n+!#E2i=20d@HSH9L(r52*gbg_VWFek87v##19p396-0JsrAG{WNN%QByF_
zUuvaMJB>@z;qmC+18N-s_0p&-px@pi@)^z?P)T2FSJEII?vpeWO3;T}Kxs5#luD-2
zG>x1zeo5okG;*bi&1q~&qgfiw(@@fAkw(un^3y;XEz{_nMwc`$PoouQ_%u4C(K;RO
zC$veUZ5n)q=QapwyL7m>nVONqr1o}E$8@+O#1Ij{org|o<fXx@s$^1fOTTcc?3xaz
z>nntIOJmZE@SvxA8a>kBc0KVwH;1Pu1!?q3V^JC#Cq|=b^iE@H8aJfF{j@%53`^s>
zH2S7-Wg7j`=%2=rbof}jO6WkL1BCKYP|ecPL4pShrP#O%;eDa2sb@K7sDNvQ@|Afw
z)k`CuMqwHw(){@k#<ObCd6dv`LPw`DCXKP_@VQByFWzb+;ML!WB0xMvz@#)L3;0CZ
z7!%A9L4hK+A}d-dl%QBZiBR4dQ_J~W58Rl>v^4Hz4~iXbqBEp1GmYtKbkEPGWoEEj
z`-OW}v(mUFjXTqr&0ek+y;bOKX>8EK^Y`#PJ&ilk;hQz1e1#{yOJwd5dbiM@CN-lZ
zlkR6H(qq%%_UVJ=?RreW9Qr^S4-0-I4ZcKhwtrNj>2?ZlTtA-16KTvX&owU%o})b}
z(WAYU`84mzaFs%fvG4_HER<TF7D~>iH{?8%#<S^gs(dbuSExpn=;Ab<Pvh9lxg3~F
zB<Y1TUQA<YIvlMp2_<+^1YTzElyg|f@-$veV?`P(X$^W;8mrRaRbGZQX{;99O;Ij#
z)~2y8jl2GiF}hxot~njzO@dd9Zbq!<DX*pRdK!KjK^kwQv6Z>1#tja9&Jx-2chY!Q
zz*}i-OXHjB#mzUx-lo%5EB^F+5hdSCV|N;5X>6zarSZoBbq7b>^4Lx(hhUdP3HDVl
z*3w9%@p!djog<=Jagr0oL3MexVx}@mno8rP1|<Y6*-XPq!%jmVpg3t%t6uD-;ifUM
zK?y_u1|{UAh0oLZOd5OAIG)CdG<e3nH;n@vl4<M{<yqi<QG-<<O5?CJ<Y*cnq;W(9
zK2GC90UrtFS^1va5;_kp@QHAErhl+s>8I)NUICA)kEO9>Qt9)_!jt5raXyW&)A%fn
z&(k=Y#+TwDtd!5b(`kIcCVyYVa3+oSUMVDC>%L0koT${#EM)Y1lu);C()c!wdfewv
z<2y<HL274F-?O6b3ISE3Za<}QA&s9o(H#u0F7UbnL-e5fTN=No@t4e#e^8Cd*_@F7
z<lML>T(w?*Fg$g-&{|>mmk!U_(nl8`6?|0mQP)R3Kb+4i`Ka!rhL0>C*?zbds_dhx
zkLR0~RFUW<emD*CA$ZIzntHmZnvZF-a(OKHNYfJXYf36Fiq!H^+YfKf*AWhr4n19X
zsUHr9CO(?_sPChJAI^%r&C*b+X6=o9H1@;I9EQt$jIB~kkmDoQM>8MIMV@=kT>Nl}
zqDZdRLR<K}Oof+kDsAcGazETW<Qi<)6-p~%GRmYjd<F2)&PRJ69eqT6y!d&%gC8!=
z2^eNpDemN>)3nk&DxY0U4)<8dB<Sj+n~&u_UiEQ>kM3->kDGk-@X^!92p=PT<ohV_
zG04YYAH94;ef0Cu-$!pBeSGv~E3Q=P@!v#O#CWDmgD_m_hd<>YxT@Sr1APqe!>Ojz
zsW=bE-)a%gMMEU@S|7uFT<zl;A48=tcr%B2dA`ZDJx@!o^TYMba0<(L<@G+ewq(d}
zi%~vC`-u67`xxVcmjovIm_!Tv80TX=4J*vInko6sOQxFPW%bGR;**8RWy}<|Ww*kU
z<>$YNah=BJU7?RsAF7WcAH_a83=C7*FC~l~R0*bv&O6T)-5`MbU^n{V8lK0#q|<%O
z@bRe6yKT7H$4qMO;~pQgeB9#W4j*?)u3LrP=7)#5cMMccoGZGWYHyDbu;H^M^)8`{
zqoFBy`{G{ugO3N<HI4bX)bPFFe)h{=<pB}9cn4#SkB59b?Bjuh>VY=OBLbd1sIr9D
z52}y*c*4hXJ{J3!>*Glu3w$i}|91m?9&JM9H^l1jHDPA%Q&KGNT`=#{J{I|S#)or7
z7=6|ccd?d8{}OyYGxvEPOGJJdlV;|=;A5$em*|HCGjlIq9bv|o%j^2($JoqcVM|{T
z3s7c-kCi??_VJ02RX$d8h|#JXRzBAHc-_YvKGykI@AJp4*ur7^O>BdYk`wWbbjTlz
zX1`Fli9^0`lp#4XT&eQ;Mf#eL>7wUWA8-2D?&EzQZ;7gJbAb5R#vU<>PGp4(;CI>l
z4#k(9E_&x^(R+d!{Z4vhhmT!8c1y;cLYr<cj5iE(@oq*LNB8#d%_ZqW_mQE0`bhaO
zeAqOaAKrXmDyiwiVi+A~;5Me~!}F2$;nVozqx7@~J19@6abBJY=)<StyjgL3QX$yu
zW1o+MJ`RcNvR?Moe(A3Rbl2WdMi2Y=z{iI^KBBX2j~$Uzf`bQDzGuDkO6=T0m15qR
z*ij#!`Z(s}ILCXXD2E#t_S}$Uu_t_d?&GwNlRi#~&$EG_Nt5|&DGs_Xe4O!d-pAKI
z&ic5}O!?BsSJIE)nMKAfh3^{YICY$ivt+h~KUuoHnevT~Z+(2{<L`s&56oCKe*9GY
zdq3P*sQ6jfUwdm8U-0oWT{MHa8T{hoS07z7=$656K7MEO1MCm*hmSuwjsn~n;4hZO
z`6s}Y0sisvFQ?xCIRXBoCj_V&pjLp20V)N^4p2EjRuC?|1|5%oG&6_$IlNI>CBP*?
zI9FE-(A16b*zVBHIaPyj>3;FFu6lrL>Xy_HO0n7j>I7&IpkaWz0qO;)FWGUm!h_~Z
zga4iJElVja_lB#!MnSlu<7sT;0KC{qd|7}d0eGPH!(N3aYrF=KORWM#0(1({Jb)6Q
zU4ZrhS_D9V)&bfCXc?f-p0L2ngYa~ZtM^txc=&6`;UHIK^$)3S1KeFZ-s4dCG`y(=
zj7!63eFtfB$AEW2!gXd|fX)GW1pIPc_(s+xK(_!_1mSJuu0eRam4K8lq@>-2!yCv8
z|BmGcC<xFi05O+Xn`5QX0KKVIfNKw_t%~CX#c?u;N&5xpPdx)n32;?_0Rct@7#(0>
zfI$I<1-LH2-~dAc3=QDd2oF-P7BgNWmggBO4^_#$t7rV$0Hlo{FC0#5pO1|QFp{?F
zg6jj^Kd`j-eI;CcviWQpFZzxNFg6I6qmu%R3&N-Qcos_q8W;1ps^!RLT!Kyv@MBrw
z=BnW<Bu~0&(pZ3afT;m)2v8W{$;#1^0Hpzn0u%=v$O=1)N6(a0Macs>p~GBU)!)c0
zdCK$vGsK?Lgx(~o(!4hZm>J+U`apnL(&@JZxHSMT6)YH{?DNCh1=CxX+~2C0i-)dx
z#cS)95X@$i1FR0PCJ5IpcL#Wa9l=}y?j?r}r<(<s6NLAT9|*#wGJVx*r7+MG4+VH6
zz@zNqs?mo7sNxTg1$bPP=S$+e?0AR2Vs{-<`9pvw1I%OZ2Y4yKd=Ypiz_YYrfCcR9
z0E-W)<BrD{1$bI8qip+6mz9wD9614A2>8?f@b?AJ2lyycxFiT)N!riMT`%==g_h2W
zle435^yL7{0<54ZUdw%j11cVUH9(bq(dG1w899Udg%@&WP6_*Er8H`lI2)Jxbh)(w
z)&<xZU{`?k0X779GvJp5LLc53U`v44MEOktHVe2j7WUWcqRblswu*+Y)x}QHf6pP6
zm(sTdcss!M0PhEQhX!9Bdsha_9dim(zVe>vK--=@r0$S1*+!Om@14#53Y6Ue$^zH{
z9FBq`g<8PB7D7tI5&?J%J;`ZjOKe`3LPK=0*qiL)`7x8`Y8aYmVGEpzM_qAOKR_UU
z?gdB(7%ms)d5=9q_mcrad0y1n%T5^*dMpE9-VX#g7~tmszt9r`91d_Yz^MQq1UNzm
z&d>fNz=z^O9|ib0z-60b3kNHl_x29Y=EZ5QGmmm^iAFySa4f)anxc70?ZfJc0KXqn
zS2T(9N2WXl`z*lc0e%R;OM|Bad?5vXAK*-YvjM*1v=-n?`u~O)gElFA3>`XLc%H+j
zRmp}Eh2IAFIzY+x!f%9raAlPEJHZ6Qhn8lw%i&7q#~|FA`$-JQ)?E;=tsQ<1@EhmD
z4BBV#dw}Sa@FH1-4E_l4C+B||<ClFE`&Yo<d<qEQz<+9g;eTxMSFsvriaH-wD`rqB
zgRBg)GpLurr5RMtph^ap|5;QggHeaoOETeDtDV90!)jHb)iS6qpoY+zLYZ1izypW*
z8J6%aTwTdX&~;Z~{R|pp&^m)Q8Qk2qq+te)Gq_9y8f8%Pwo-~Uk!Z8>TulY!2+b8r
z9VpgZs3Nq5PzY^Fodr;)mFQ2v&^7}`FRHZqu-YNRuVJ7QpPmu4YL7@JG%wA<RTHCm
z8FbEoTcBU`j&{l5>$Ne4)9sWiGU%Q`eg*{@e&RAzgQ2GY{?KxH$8a~bR|e4x)C{I(
z&^v=Z8H~wbYzBQZxH5xlGZ>cPcL~rxgMk?g%7n+4S7k6j0P!{X*=;fkR~mye;Zf!_
z<@_NTT+N66?ikNcNrz^_*_-lbb}QFq!lP0$M`SR(T>g48^Rp>1lGV-39VPtHLYa}9
z9+V%K!T1a&2$Pjg%wSRmMH!UsQ6^_FMfh={^uU+^E@dCQq_|Kp3t{=i8SsuS*Y+iu
z@YZf=1{t~Gc|!&_W^iW)von~M!A%+5CIS!D<HtjAa|Sarn2`y8m;L@>l{a{2u?sTz
zz9X(^8ydXxM}>FS!>t)Gi3)R>bbAJOWWt3aQ%QMtd>5k`JdnZN8Sstio=kY$d~YT^
zfWA*Kqv47%gE<*IoWUa*Jj71#q_hwVU(}z=usdhvKAOQ}8IVu2(3p>lNqKqu$qeRY
zkh2H5doVwPr!rWT!RibaWUw%U7czJ;gQqiCl)<wZJjWq(Pq?UlCKJBvv1)2{|H$y?
zqKm~zo*Wy0J_FJvLO(dHF3sSj3|3~sE1+ERZKxl<O1~@}y)1)QGB|fwWmulUtAbYu
z)pLr;WU>6|>l&JfcFW+04Ay0^J_Db2&R|0Z8)=s8cq)TU8Enqry$rU~;2FG@!J8R=
zXgb_}<jtbjGk8Pr`--wvz?nYb$;-A3-p=4%;k=Uxk9sfOQ@RNFJH+s?CW9Sx7!DSe
z*-F`&!EQRU7USvOF3w22W?2~J8DH>EERjJ{l63Z?RzyB;@?4bU0jQCI$%?Y$7As=C
zOA2|4@&B0m4k#&#=YJ6-hyf%R?r`}aNkj<(%7LH+5ez69+1)#Kzyv6mzakg_6-*dV
zNg^gh%!&dM1SII~q}`d>*_k2d41yq_^8a+5_j~{M=GCjNuCA`GuI`!XsqW#P;x(mM
zTZ(lYI49!k=^<KzpEd}YJ3baGEk&9$)mQOdrO-=Zl)^7Xz7(eDoGC@NRDDCVN?{9y
zAMY+1q&{@MIw$Uw!Yzd-O6CO8o(zKG$7mu!DZ)~05#bTNy%d{7t92b?WZuXp@EP&N
z6BIL5-7JHV2zQTeEyXtWekpd8VrGZf&QkRadTwcP-_^wnY9}_YPVQz8mSQhwmD2w<
zoRVRGDGtzYg}G7p*!cP}G7~cENGbj(#XqI^w-iT9ag3^#stBL;1u919PfjdnCyom|
z!I9o5#*37b!gHz=7dRTP)1~;E-SlHIal$jDI4g}>X*GvbNaO4@&QIflG%BW1DUGUW
zR7>NWG%BanVt$ph+L6a6^RksyK1nug9plBYsB_b(o>s36YTub4#JP=;@WM1|mQ!j7
z!r~VRQWjEGJB>PN)J@~!w7T6>6PCIpjmyeQU7E)Bh6N-t$cnID8keV0lE%<9VrkS*
zqf;84(?A*x(kM!+XU;3qXqZMz3QVI>8jaIvF7ze>$<Qo~rh;E7aK1b(TqQUc|H;7X
zYDr!rutoa6)#=ufWNy1Ot}Vyg2+}r<_nWEOuPditpGNy~oSzapl;a)KxIu7hrFu$X
z_uZIAuQYB=<EAvaq|ud);v&DmZUUL?F38OS52aP7-y(QVfxPeBmd5RA^h=|^nC^}=
z?h>T8z&iz&?K!0x`$)2H8fE+129SAe>%nQ<O~nLfa*!b0$ugvzk`N>=u;s-_3Q}C2
zdqr2Z=#iqqi;6~yQ)y`o6J&TA_oQ*J;N-bKjr#;=Ob(L|l+#C~@pBU;WK<dtrtwf3
zqtkdit+seD%wtR%kI)sT#~&8RFb@tiCLfjLV*<J3o6Jv0ktfsmpCF_>CCIj-*tj&t
zr*TUbJ+pWwjc3ysYvE}N&!zEv8aEoa$-sm(CZ_QjJ3Wm_X}ple%rs`D@ggVxG~P(#
z%`_&bF(r)^BMV<k<7HMPhnBpWRuNyX2%WbouELT2dKy!ufg_}`+=22|8gHjDJ&hSs
za9SGgrPXo}ncqp{wt{-^rqx0j@2aG5376-_&?dwwa5mj6jZf3+yUCn1K1lPl9DI_-
z+_YLE<5riC()h64p6t7_Qe}3gkdqAyNST)g=WQaNr?G%K=-jf6FVgsugHcCa9bcvK
zbsGE9*q_EXX?&Z8m4=<hcWHc|#xH5COyh?%7P7z6SenL<Y5bJNVySl#`)*;J&j2l!
z#Lli*G9jK=Qm)TSg(b_xIMif0t-82?_t~#T7Or4(HYK>uxhjp-Y5bPP?`iy+#+o!p
zTrauvM;7v{)7muF(UHzB;@z1i-f;1Xkn1g_X{6K8IgLz-x80I3(zvrQVM?cS<%BqW
zfLR$H{*%V$G`6JSq~WF!q!Fg!m22n=lB4fgNh--J&-rJzdKehCG8v_@F^x@WOsJ9A
zkXDN`MEZ^_<Rb)w2c|qwuy<tP)--l7tIXe6mi!EY`nQ;B>`G&I8eGQNo5miR_rrK<
zWpQS)dXjNh6jMDac_7ULTX>WT&em}#jl*<|G>)fvT6^q>=ysHo-jJd{1i!RP?3f^B
ztC}a$_$v*bP4RacC(}5U293k7(x=lHb5pF*h}7|VYSHP^<?(;g_&1F+oJB8JlmA(|
zGU>c;;|!l;vZ9VkIxf^vL&rHfD(k4G<6K?Y_KB9UDmtp_xNl@3Pc$NP*@m_1I?mIT
zsP(c@>wLj45J)0J^=g*mwFJ3HS4-S<5-vE`*45%C*)G;`iH<Hhy6U)8=RqsDR!18h
z1v(0KKxaTc>Xpm6Tvy-h_}CT`N_~N4BjpMm4RtivakY*{x?0$5qNAy<*7+Oj7_g;y
z^j5VG>q=csdd+m67*Ncv<bb`3wXagSblq!owBkS*n&`^?UpiXqsPAZe+H|7g)<U-m
zN|@WWT%V3Q+UdAX=Tfs8ydPeMA|35@9yuOscdpt;#;b#5aozX^9i4P^)^Vebo604;
zII@t@lC%Ra;@xy~*HNsaM90lKdQe*(eRSNSqo<DEQmU7ZTXo!CF5xyEbV6mxx(Pn?
z-XV0>+s08V+jmNmM(eAipN=6q;yU`%AVMFcW1tRhk>mFWE<`u$pW>FT!8-1i+*=%t
z>)3pbEnCf|w1kdt>&23~`jo)rP#r1usgBV)G#$g}A+)@d9WL-*9rx&Jj^Y;zdf=*S
zV?-X%F+#_K^sy^r^wp6%Mu{uZ8)v_lq_6V35`_o#Vq<hXtm82qk8^1BP*!?G$D`8T
z(OqNY=O+p72Yf>RZ<YQ@F*Qeuximgj$J09UIszTzbd0AOIu_`7M#r-{-qtZq$8$QK
z*YUEBS9DC!F;U0JN<}Y{SfOZ=j?xEHFHm3;G#^kz$Y_d}bWGN9)zkIJHbuu9ljA+A
z6#aZf>{XrrYvAb+>Pg^r9aD9@DMH@R@q5*x7S~mxKq8dmh&1k<;X>RyI^NaszK%IM
z-jlL3bj)PuuC6$pgW|JzrB1R0*EKeao-ilQrJ>n^aMKN+qdw5_iO#L@n5*MM9UtlV
zm_6&Nt^I9}6%*k#v*FNrIzE$j%@;^zs663|z0``|7dpPA1L#;s_tx>Xj>S5b==g>m
ztz)5%A31__e6QmNX%S(^De*E$gc5#YKMqt2Q;US*vih+y$v^8@s^b?OD``W?BF}Oi
z?%<++ZzXBZ6&%Zqy%|unv<d%yn_Q)1wT@po0bZO~BetEqL&<-xC`CK3*YTSUn<I-R
zW!H#6Lr0p88lv`q=t7zHd3^9sY9-3l)mo(`@aADD;#oS<IYk$2FLniSXu1}$=Jny}
z$m#Go37jl`t%=$#Lbf*F#zP$u=RgDJ8rYy?qmE-b{?xHa$7UUSb?nozMaNcBj>mTp
zuTr#4$96%8-{)xGElm>HsbiNAck9?A`fTi=^x3;ANw{Cf0Ubwl{GlV;I(CrF*KxR<
z^P(GL<l)t<bBv-MucMaGkBSd)SI%)ACv==;pn`$Fbez=jkB)!YUrUpxbext-xopTS
zMSpW(I$Ep!#a~WTDxDEEi10emA$7KaiiR>*Wr39ho@3zU%N3DVI5a_6Md(!x%obvG
z1LqlNXrPgS^9@{J;1UCu8o1Cv4Fk0d)HYC)MXD6>y2wDik%eV=`?X0Tbqv&%+%AXX
zOkP~h`S8Q_E;CSI;Bo^oA!e#33d?ir3G$qyu}FOb4Gdf%6d2f4W9Uz7iYqlOVAlHf
zF(Qo(G%?W1Kx+d{4P0s9Y6I68XjU%mDg#vJZIRYoh^J$*1&+3$PrVif*3XW&6u50;
zg7~!t+88J@&_Ouc8fa(WIs;UgHC`{oxt&$L?G1ciO|_bkYp@*+wF-TMFmTDYlY!2(
zMzta?6mwagNEZWL4LoFGw25v8x*OPKV7Gyr4fHTD&A>YbZZXi)z(@n54D>Q^tAV=>
z3^8z<f!hr%JzhM}z#Rs98|Y)8ufd;g;4TC4pNn}+)*q<^W7ql2Or)QIZ+}h_?{6^P
zqnH8Dw-v?)7+ASioyEk@?t=`Tm{dI2P;b_x#0?}2^<n)U14#ojmL!K7NEs+LP-1|A
zN#lMhKDbQ9kn_ts13NVX!-Ri0Jz-ff-`p9EykKtpUIX_TDlYVX0}mJ~l$00a*hjEA
zC*qW&Kc9S%MlkTKf#(d2HZaD(lLr20sMn&04LrtNIR)qu1M3{^QTE+M>YOo#TR(27
zw~r?bymWVh%ulftxBVJ;njX?B$*ge($Tr@<Gln|MitorIezK@|gQJoDJRklIyk_8a
zku#A!W#C0AGD#?pPEbN#;)pQtih;=nrWopldS%O!#dG3BnER@5(qf;PD#`HgsRrH>
z<%z$+dJT}d>t`x5{B5B(8k(ZE?;3cI_BXJ~z;s&Jz?bYA12YZGGVqy!`5bWu-Z$`x
zflm#!$!m^*4-I_85jUvl1Ns0Lf(-uly_oAZjGN_|QCyDr*ifq<MCKW4X$32b$vnS%
zib14g``o|+Daep}Ccj{BwkV+-t049@t6=NsRCE;s-x>JHP$!suZ{XMWk_*|2R<R!p
z{NZTqH9E$R(%thK#n_>Xn9C8z!{6v6y2f1Mbc|(e&XVHIesYBYcJy*i7ZRgRhF{p-
z3*$URYBl8>@D1b*tTC|GK$^_#YmPw!zZ=M{FMgwbj0bkn$iEqQRrXwPk))KbZv%=Z
z*DEm$^`4k9kTqZ$u;|HmC2Rv#T<ui<1aTfX<`~>AikxurU@@NS<rye^D8-BKmE-rR
zodp30Eawvgo25@9&i{s5X({TEy2RCpY-Ae+*<xU;WbHJt&4AH6G5XK=b`CvPV<bP_
zV27b1{7L7<)2sFv*lXZ=6YWjxGq9gy#6%5Kx$6M~e;fG6z(J~Q;IM%s296pyCOW)a
z82dwfhDW;5XDInk&iS-F2m7Mp;|BK~D})#Q`4o%yOz}Ex;6Pu6@S@uP8aTsoZKAS?
zXIB@WW#WTR;%A$vAW2f_S`|%HGS%839fK=)WS~b?F;U%A3wl*0tD3-b1=458e4dH(
zP34*IY*a_eTwto`Xu4lb6Bn6iVB!iBwM;dT>zJr(V&cJgZGog*Y~t#+vCB*pn7G8m
zN6VGnE;TX2)rb_DsAuAntCICiTrLt=Bxd5o3&~LjRnRQk%UqZ^?`Jg<8=7cjs(x={
zqOr+s%edOaH71&xxYEQ`CYqaQW~x{tZY1FpH?d=i(;#<{arXy_oG@ERF5RHDiIyf>
znK-*|icg-0>XlSju4c|_P5xC}ZGvk{;Wwxl-F7Cf6a1ytYML!F(ZR%>ChjuP(ZmfV
zdYQPD%A4qHqKBzA-P~xZi198ax|+C&KCq&A^7!Q6-BR65bT@IcsisPf4h|Cz9B%X|
zc{9l*iMN>ODY@il?rq{cG!zd^qZi$7;`e%qJ1F*Oyf<w)Jx-*LiM}R=o0wm}q@RiY
zCgLWzlVX7MV9%q)gG~%HF^Gm*9%r|*PdhYFJ$SbXy1@_{<gFxolkyWLl2Rk_VnIp-
z4i%U(p_S(jGx40OmZ|SCaWA#{Cw?FGks9xpB;Do#`iZMi_(&6@DEZI$gTlaN3NEfP
zImX1pCcZN9wTVYeJZfUDi4RRYX5w)ZFPeDC#1kf-G%-o)rOy8|@eKXh#8W25iXT2L
zaJ-3eg8bG>ZDr*}<T;^C5cvH6mpf7LvQ4jS!V4yjKphQt+qim@O-wcMhEzAj#LFf(
zF@f8cUKRMdiPxyioMd-1NyzJKS9{aMTP9{xrir&rOfxaV#70+p$HcoPZsbC@tGy?s
zrc?7;LzyhuUrc1%o5`6b&hj)e&*H%GG;TQMS#Z0iCFjs>1{85g`2&hQ93QhpEnI(O
z;&T%pXA3{(kP!_(HSt+_kIXYwgc#Z83#ANSVB!n&zcVP9^`-D|_30aSI!BF#D=mCy
z;(HT2P3$u9gNcPE(k68Fl!>2AEH|;j#3B|fyk?1spG_<_asQ~o7NZIo5V%z6%LI~v
z@0g6VA@Yk*el@Yi#7YyZXo?weu0^~wxM(%ya~r!v)UP$M&cu3C9U$|4{n&5xoaOP~
zO_U14bJ%z>i*M_s8zxK>k%<i^EEBc~-$dR-MwpFdG1o+v^IHrTHY#!GmS-0c8Cx3j
zOyo>H>K9+-DUU7NBNLbiP4J*#vN3Mz_r(PpMdwW>HVd7t*kWQUeNuv{wwZWyacsMZ
z9VVPj>YNiEJj*~h7UwJNZjM<K=US+4VJ|0t4u2D;Ozbytz{H;>j*IYv^fVKHa0WAR
zm{Z5kF;>mfn;AQF)I^^p>J|7HoqwY``I(S!%G@b%f|E0SvO$bNdb9>B<=3mzRFaLg
zaE^t4O#I7v%u?SFxgGM1)OD7nzCYFxJ6EvO883W8C#9mLJ}Kr$7FM=U#X?nKdwse3
z-pAUlUt-lP^&O2#eh@s*!ub{tT0%Vw7g)H^LTw9mEVX*Zwapq9YD)2ogi^~=+gF?S
zPSH3wdRkoz7hC+<778p}Vk!S&R34+tF16J6^ueCSrKew(sWVr3F$C*!3o#1~Ei|IE
zk%jd|CM<P=4Fz&dsey$@JnagBl*X&Eg(f1II2m|Rt7aCive1Lgw9uSwvC!5+I}6uX
zXd%p8m|C#3prwUt%geU1&{}X7r>Hi9(^r|i&cgK;ZW2m+3q=+>mzU}wNGA&&E!<$K
zLBX;?<DrCHvn9N-oRj-xyIANd$!-E~w$NP~Sf@km%#>s!DcjRRFWS(;eHL!DaGQm}
z7VZ}Q+b!H_;V$A9dJE<IW-%_ju$Dd+`da8`p}){Cd!&FXsNASRs}8U*NQeUkPV&^@
zLL9lw8e$=Cq1Zx+g@grbY?8w>X{j|^uA6ZUt#9Gbp%zjWhFKUc#WjojRtngOi~cTV
zy^IoMeBeD6ejAZu*x|ds7vFE;0gL-hFvh|NOKm6~B?XC$lw_5c;~(!Seo#4B$wL-c
zW4GnX=O4E4sD;Pavuxwq)?7O!eB8nl7XD|c@4|HcCq)$F_c$kTAUtJ(t3ZrOZQCk2
z&cb*LwKAxk!7~<~weX3JPi^jb!Sfb2TG(V^f`y3|-m@^>!XyhXP%@9}vGAfGFAF5)
zB|#?B>&hujt0!Ku@T!H^EWB>v&2oCJ5rtDNykUXCZ!9=R<`yDv2?LJ}oL0{Hjv(){
zb#e7RIK#qB3*U0$wJ^)VYzv>#6c*m6yH+gv&;s8v=TO5cMMOTZFjw%?wTF`Ok%f;f
zwHC41(+EGYuxMS93j%xt{mjCbmWr#HZ{c$b3#|Y45qv?z{vGG;fHFwVuO#bhcGmdh
zH-dlgcl>(`Kd>t;{BB{Pg&!@fw(zTkpQQF>7M8Ov3yUo*vG6m$tvK41{9m`^mP*@;
zY7YH)R&oVLcZ*olHSv`eezADKOPtptLs3@oqs&JtxrY5xp=g~zM!2oDR5Uw36q2}J
zh+LX06=KFh)<W8XZoy!W(@`z83fH-wdc|g#(2fo2ybhb)I$a&K;#hDk1Z<QA&%$m`
z%ZtFA1)uggKfx-vrbjxFuRf1Q95sW~E};#aE)qrid2~!i6^pf*Mz+w&MrRvaEo|fL
zXX8Q}+i77=vlfn9*lA&xg~N0JR%Bt1h5Z%|h&}fT+$Zpir_ts$$0ce1gF-n(w^<&4
zsK!uU%;NQjg`<*1I+Mqw%gE1uIbq>1jvX5nZPkw_E&R<1pKh=or!1Vdz_Q#1GN@|F
zzZ{+x&azR#R$YIF({D~y&8uv0$boj1D%m*4MpYZtY~0%^wj-uiAS>IbLgDQattTY8
zPoEU7UY={Cx{dQ}oNr@c+ZYdrWEP*1xNf<sVXTIYnl>8QXl&ym8?|f{*eJA7+eRH5
zmx=<c_p>SSy0%j9VjI+u*Cm25>oRE$k+LS&vjHh}xs8~O<~gmtjV4t~*kp#lG1<W8
z&IoXO3yU-?mp^<)vWbnRHm<eN#>SO4n%QVAxmQt$jcaVQkYrCW#nplj5u71*th%L*
zRzhS&{1*U)(`apl(%wdqjdr3Zv#zsoy$xEDokBKVblMI!I@-8F_+QOwAByCsbJ~qI
zZnE*9jfZS>vC-8=e;WgAbhFXj#_cxlu$2SfOydaB!^WgfRU~JRSgfawUXr}k#%)A+
z{;*^b;c>pbZQRKk|B3%LqVO&oeQfl#!F6Dk<x$2wf|W==kx71@UNVpdw=vwtJvIj0
zxZ6g;M$*O*;fV|6IkY^oxNJ-n+YI%`P#Y;)a#p<e{P<|2m<Y$3W@A~lco_X5r<GB7
zTJOC!?z8cLjS=iGR~?dkzv#^90^)p{Ejy8Tq>WK@kMoOof-BET9c^Qbjmb8q*m&5+
zBQ~BFO&+DSZ9HvboQ=nAJYnN0oALbUFru(`lc7&irSnU8{ZA0C9I~<bFVxAg-QQ30
zOx^W4ZM=<VL=?|*VeYe1>2s{EiaHp1f{lq(PZ(aX@uDC*a~iYOhl!VjdCtdiCSSJk
zij8+|yl3N88?V`TQ_N18uT$C${~g{t)y5klgmjwmEgNs!m}a9BN~qO4Qe@b!V&bGs
zw=u)UM>f`vC?sVj-O0xLHf9MMDOG)Kj*Sm&d?*xl-@McDxg1%(#&AkP^0e{Q0k$98
z>U0_&eml>`XEx5xpkfB|ZG29;je|B8*!aT6I@V?LAJh2C#@9B!v9WklF$Xv!;<%mv
zTU!Nw6JKQGI~(8Ic=V;@KwtZTT};>YwMoAAqm7?vF<)cWZM92?EVi-4#?LmE+W5uB
zN}C6s#Fp8Z+OE<Hx}vWwr=L5;-}~D0OOwC(+A2;p*OaWb@vDtWC*zkn#S@mq*VrIj
zEAalVDdLBFr+%~XyN#R;-&S|$QX7U1(?;5cPMMvGxWAQG$HEeezA>;UYs0Z&+sN41
z=4*^RXVZoh#aziHgU6X6O5A@Sesvv?p0^Q*<Xs%FHjew+MjM+rQ7nu{Ha2kX%4@`%
zK9JgMV+&_{8#`#pA<6NrW3}qXwz3vmeYoK@wLuBjjT?<l?c@ZK*IJxkM7Z0=9$Vds
z_Hq(iAKPzZpCoyQV!V2{yms`~)FB&(ZJZD_j&Oz<Qi;*3>;ks;4;x2q9JBE!{r@Mm
z+;^PS4Jsl&IIl7JmyMHB@Dy#{vFKkLr|Cam#{Xt><hb2`B>ChE$ul<2%Ai6<tuyfA
zVgfhm6IRM7!}7WygL5*dEXgVvRL@{kUaOi>FHO9vWpJ+GJaLrAEt3Dd49*wkg%_1D
zd7<Dn1o9UlH8Z#<qhj)j6V}O~ZU&1pSRxD;XV52uz8PGS!KE2omO()V*Jsc^gF<0w
zC9qxwmuC>mp!l4k1{qu-Nc{{T2(==;VFrydXqf?bD?gvt8fVZX!=IJo)P}^8#wAw@
z@*TS)gZJ`UGl5qLY%cI>f!7Fp;o~Grk(r_zG%RVI!L`)0U!qM0Z8K<>Q7<fiY)t0=
zC|-0tPIz4ggz3CiltG6KZYM(q9W%Hg!(9Lv)IZTFgUxxZO9ov9>72ohg4~qBiM%#^
zc9Ksx-7@H&Q87_H1>P+17J)r7s1|6<;&tus#S9}Sa;r$bBG7Kj;GrpTB77h0ol*C9
z-jeRjpyq%CBmD2ms5t*#fz~gB{u#W>24*lIgMk^0%V0c(WH2~`k?dt@*WDQ;Y1IsR
zT$~ufjt;bV2E$Lq6B&#RwECYWOEMTr{W}&tkU>i9uL)!q)NYDlWX|B8jJmUvLReI%
z<lYPj?-O`GogvVe93et@1O!Drn890@m5k0{4BL`Xe#-;L2p`Vi5jp^MTb+C~gU2#>
zB7-M0cszsC9g4mPG)A5fsYMA3<7Kc%vy!K%Y6j~AZCju{ox!0$iunnZ@R<yr&0tCf
zFVj!f7C)C!!RIe#@O%anGN`gLxv77G*Tf7q&4^DD_yS@71W*3qR*si4n4AF-UMB<X
z6&75Y<nVkegIC$83|`NmQj?N51oECZHKR_&=PXU)n?fZ1b_Ubf5pMFGj5-ONhvyIb
zH-1;U*z^o$P@fF{$fg3_XR?EaT{l~te^y5Q$cF1D99-{bFh__V2;@GOK9AP>D1(nP
zSdhUN85OzriDb<e_-O{5f947NEQ9kxH648}iXqe<zI^DHY(<5lZ!`EVgEcLaUkUs=
zgKsk6sX+s;97@QD_wO@Un8A-3{E$(9S(>{v)+JP%rx*|aQwD^*7G=N#sfhfX!BP(M
zEH2JsSq95FKV)%1R!uJ}M5}y8z2E(k!O9F)Ww2Tt&l316706(%;J;<?dj{(SUoQn2
zLrWnXeWe-x{#Xsev_K+yhDX+@7e-SkWpCMb2AK@9<vgAsP6n<Z<K&H=MRFPV<va}R
z2{?!{h%(ra!9N-No54o9K?X-M_=CeXgDuiKjNRRu!L|(cOLDtFs<$VD9fI%7U>C>H
zocR4i6T5}-XC?K)datx)pFr~Sh}Q#x9~5{fgTomW?!~OK6JlB9C?^U|fU<Y~SO$NJ
zwBrJq%iSx4e`Rn|D5nITF3<g&{v-Q7&SY>_7L~K8l2zVSA**URNBZULEGi08Nnlyk
zWz|&`X7X1PgohLnKR1i&S)7+ejmApU)i<fzD=m3p7B#at-K^l7D^P>-Hzg{^a8VYu
zvZyV^DY=dyd`jdvVyR2AxHOAvvS^XTWmyztaYeZfbB0$e%%WZvmkXtS7CaR;CivFw
zszzSOs*ei|vg)5lOg7A-Q5KDbr@2(rMDV5pugt0mmO3=c;wqsK=bGo$S!LT>rzL5S
zmO?LEBW)#k>nyHiTe4`I#Z6gs$)a5r*JaU}6%`d-U*4{cS+p1aBB4;34p|Hd)y^Q+
zas%}&r_ZcW|Hg8h5}3<+yGq$^Lhmm4%>sJ}Bo8(0mBp=DRP|8J!);mIp2f~Ac4cu#
z7QM50IEzQJxHHR*8yK2JDvLf@^v$Aw7HlJX=Y>%!)Tdt-BPIBdG6%3aw&-wtP!@wJ
zr|_D)vxt+Q^al!tWYu2FA08-3W>K64V}VM9hs!LCwBb4oqc<5fq-8NIiw8u{;ZheR
z?;W9@4ek;Cd$YJt5X!$l`(MoG2&$0<qp(J0@sN~d;MRkJaChfu;U6QACxx=$qggzb
z#oR1D%;NDZp2*^bEM63bC$ktQ$o~YA`6)rh3Vb^I-(J`83;`9&vsp|K<T-)Q3uGxS
zClXG~Vp2JUPdG1SF*%EOvUoR(DfGr_MQ>)+XEGu$XYooFuV(R@(5DI{{dGag0;k^)
zobPULNvXF5PGcu7DxMUJ5x$pIfoij|n4QIR!Dk4ZDUc^YF_*W<_sMW+LhGQup3lkR
zgY17_(s{_zM_I1?V`UbrviKy6PqSDg`p?Vavn+lPe7?Xhv-m2D&&yl4K#(uWd*o|L
zekbsoa-MGmDcivQz2NL7T4^C0QqJ>J_P;2s#aS#7;?DwC2wcj$fFR2SK2)eyL4Ogv
zEPiiw7QbeZ&BDoIO%`jjD$w1^VqI4KJ50~Q$YOm~g(du!#qWZYW|0=;p->}z?qc;t
z&&;YXl{{gI|AynQ#P|u!&LTszyq4q_6CRPogZtbpyeu|kv5~^RjORFlswM)#{Vei=
zkWM+FWJLmxT^l1CV|_Peu{EoLem4u;B9PITq-+y>yFhM!-ysO2@^)vrn*;4!T<2nM
z7W+6B9Nh0<e-;PG<Di10?u?uP4rXyEi^EwQ$>MkxC$jh>i!GgE$FksQ(mX!*C_VEm
z^<w*{%o5z^$Oj3ooBfr=DbBiCoXmo3ych|_Y3J`O&WQUF|3`}aEAY8cy(jX<bhd+v
z4mvpK=%A8=a~#AR#yz64gDMU#bWp=VRR`4^oad;Slh?U|RCh4wVEob#lV#7Mq@OSJ
z3mnW0)st#X2NyZG#KENwYDrdY2X!3m+aKr3%-a=;>I(5<2mGW(;x|(2G6w|?>Nzma
zF6w+BPFTo_`X_$vSVa7Cp%Wnm4jMSP#z6}QS2$?sps9l^g}ISPZtU>5o7l9fMNK40
zmDWlX%^Y0ipt*xNMlp%JxI4I09bE0GZNl7-*;4r1I%r44L2F4~>)=4BB?I-K-bN@v
zs9opadchlxEaZ0G_OxN76*+3_Zl^j!3Au1|gM&^EZg+5pgU$|abkLIxtfn3VZgSAW
zQA>+m9CUT~UX1PzZg$lD^oot@2y||Mts7~ZYN;31TZEIhKl1l-aH|NJW5jsf=BULJ
zo~qH?!JQ6<IEXvA%RwJn!@*$IGAG{GL4OAW1n);%tx<2CtZ1O4PV=S<5$9%Y!go5y
z?snACNo5Zeq$C_@4u&~MIw*Ef;$WzQXXX5G=B7kpYD?X^tchQ<E;d|ja*rcnRFQIq
zdxgRco)0(};UMimcQDeyC<pJeBOE;F;2{T79K7scw1Y7Y#yWV~!NU$7VZS(dLNtHW
z!DE7OH#+ra@F89ONuhAV#Zw$df~!_6R)>v~ZJdMg4kkF5=-?T#;d8WJq&@4Xp~MB=
zV>hPS%uPP;fMIn^_FNa6<lqGdFFI-{aToJT!fAgOo9w8wyIG1=ud9Ps9K7n_T?g+u
zc+J7<4&HR|mIHE<VXA{S9K6y*?Vs)Vu=>N)+hm&`=MMU5Y}!X^ANM<s+EC9m0iHKL
z-2r1eXNobY{|pCZ-7(9-Y#O|_s&xA0F{<=|gSieCJ6Pi2LkAx@nD5|ocA1F%)WJLl
zpNJi}8J6|(Dl^w-4v4I3Qn0|m7Y@F6@PmUdMXRqId`%A-RK$b6zYz+n`_93)j`BU_
zeu<()q~71FazCttA07O}Nn?##&{#C4fUV%Qh+}!W+M-VVe|E6S!D<If9V`=NmOEJC
z;1?0ja8^c6zEu}19ZW?D<#)eZoxAm`!}u<&cd*7$+xgcz*nB2Vzv6PuZ*=Ang}>8E
zB8^7`WWW3G2{8X%%;3zx(dXhE7Z$sK^9(0gw%0+{!A1w095@bK2Z4joL1B-W=fG#r
z?u+xMQ8`EcswTVp^A7mKFVe$biX#Ub989}7@$1?ohZu(~H-~O^utkV_9Bd`CgB=cb
zI@s>0Hz|hpad$15$IVLaqWp$KcXJxt9j6fDL>}9i<VxLM&IxtZQtbf_KnJHBoOW=?
z!C?n~aiBHE5r=VB_|w604%@K!C>^q8@|dG`PczANNN%P+!C5*=kX{CvbyB8<(+x^^
zQo-MjlK-!RGjx)9@qZ*qp0iw3aB;S)w&K>>RQyty;Gfahw2Cg@uhr)FljD<>U4~8p
zE*iL~>Y|#9i(J%lajuK%uA07TxOgbi+SV>P&&Bz!de6PU#f5@&Y&?{UlVt}c)O119
z@ll@!sqLbUivkygF6z3t*i}o@m$|q^5UP5qi-VntNIWpSfD(8MdpXhy`R}cN;`Lly
z?y9F#;xQNXU6d{DGFg9C@(LFXU0mg&xr;_F8oOL=MpLPp0x74@A4(eWE8YKAUz@o~
z?CeOZb$#q=7cE_eb>SKpEnKzK@Z;<_FCwj7T<c=OpYb*>7DgHusQG^V-0i8hVg#;u
zv*FjfXzyZ>i@`36TyA?uZx?sE=*TKu-0I>s7u*fnN%YqvtuytU66bZJAU6r@BCxB#
zZZ5hDa<f2k_7LP27d^`<z1V%zl@QwGc9Fa}((YhIlNIHzCb7F*^r1CI74XTwulwK1
zUO(aF24Q~X@9(N_{R3PK6oe0WOy2Ech>PVeR=9|}NVs^@#ak|tE{a`Da`A$T5*I^V
zJmTU}7bzE-iwCHTi(xK?ySUF)0UO*majIqP9vAnzDr{rikW|SLr5N%1T^#)&K4D8@
zBuz~(axvNk_n|PTfS+z3WG%_ARx@=>$`}_9v&Mc23jA|ZF{2cSKjz|b7tgqO*2NPp
zo^<iFi*anAt6nx)#Z%Ho9>_D6u6rWBPWBmbLrSkU>R_euF4ioGUB0^bITz2fXI)IB
z*R3jMR-e)s|F&HA2br&0s@)1Nx_HUOt1e!1F<HdEB5;bUA}(Hb@zYgm9b=vxl*bpV
z*CltVz_Lh^Hw33v+~4uGi)k(vxcI`wJ1*XJ@sW#<*>)GxUCeSZTbQ|rYX(OI`$gge
z)-s6t3dTy|o@KGQ!Z1f518hFvAgY@n@*#`MGx<O{JLnS^pShUt;#1*dyu>^~82(YF
z)#t9-m%${jFI{}ahPYVd;%gV*xcJ`14|Iv^Dt+sM3{?KR^5Vo73Qkl1C<eD0$D-vi
zCKn5x3_rVABJ#OKoeQ%|T`c2>*p%R-K0{Er8|4=lD_#8Q;<$@dE>^qP=3+ZXE4#*p
z;lgyW*2Ov(ztMSIoQ|~h^sbdj9-;8`zv?)JQWt4g1p`b>7c<FaDBV?i(3neTxv*XM
zoFZIgXw|(cAi)zPD@r=7v`@knI537BU3#ZFz^7*QlE6jiGC&KPT<|!oh-MsIG-XL_
zgN!WVJSl6li!HRw(t@q*xb5*avy*&5;~Oi_%ObMF#ZDK8rJ`LfcGJ6D9CERT5C3dw
zQEWe5PD|{gsh7k)=$&|9eg}4dT`7NE=Z6fwS@(nry7=~)<PjHtxNs|%9CdL_WL~gA
z<E}Bbh&{+Z!k=()iY9XL7a6Wq3Y_E|yCY6j|90^Y=XnnmJvHL~b#X={aBT9Jsk1ya
zomTL`-AUZ9M9Aa`*^yMq!#N%*3quuwW!udrJYDZx57j+fn?su%&hv0Si|0@yhYN^!
zc-UhQ4r+L)>7loWJ3U<Fp_Yg1JY4Ugwud?%8hU8tF`f+<dx&{z664+E5)YSpxXe>4
zIZVF2EneUuu|XqJ=%Jp6%gMY!1!$2%q-cZ2c+2`8;HmxTyc!5{g+SiB8+&Ntp{)pP
zN(t493Kqwk338>UzMGJ8l?M`=3nX&2AlG<kAxO(|dMgjD1;18cn{ql=0NQ!#n+O+h
zhK(v{@1e*;7Y|*<VjTqD=%J&B8>B{tOm`Bbv!~u4dGYVJ>z2lDk|gJCeiH5G;T8`)
zJ#_bQW>=io%^rFP&RUr4<>6MY{CN1Qx%yE>Jy(gM4R2?4VoYxSDvOT3%R?UzBR!1r
z(APsh4{@5*Q#S&R5yJi+21s(Chd~|&dl<4RImE*|JnU#+{B93VZ_r42C0}fAizhu4
zv$3qAYEg-Yp&o{NxQ9qx^-rag2mVErm*!!Z2mWV=IG=B)ZP1pkiJuvqBD~MT{VZ}{
z>H!Z=d>bF(;jWM3M0k<NmtP*eLSsJY;UQ`}G{L_NkM=Oe0})<4$No_dkFkF}tnu(T
zg?M<`!z&)1WGkqxhjAXBk{+k67;!yT@Qtn1*6Hyco)P=J<l$Kl&v}?c{)GAg^z$Aj
zkTNvEU|=RE(n`11<8lGF;lJSFMYgnltSpN>ye4~?BK*X=w2!^&;WZDRd6@6vbq`ZL
zyzAjT4{rz$%TDv~riZsY^(TvIt7F`-{5E;&^S6&`oBunW3g%>8(>=`a@PUW99%g!&
z<zcpm_u0|Y<K1qE@%#Y>lh0wR`6-`2YH1i_r|>5)AA0!6Q;Sib2u#ZX4j)rP`Lhh^
zpL&=lSsWwo^5V}uEby?@!!i$Fc=*!84;~iM$o%=Qhp*X>o?2GoN11O0A^yFG@1z&b
zZdIbb82+SwAMhhND;NF5b;wWRL{@*4T;yS~B$s&jSr7&}GnZGB73zECau2_FSm|Mf
z=)*u?64?+oaFwSHk>DW=t2w2tEM@@kS`X_y9P{v}hxHzQ^RUUoW)Hu6DD~ib$a_e8
z&^=^5I35fSrU#oA`!a3`<gaRozryoT|5Opb848gvO03l73|65i=fM+AHeOP~RXCn3
z@p`LR;HeXPLJtuY5Pqt+q1-0KH%gE2jEgNEwt8xv>Y#^h9=6j&9`<_J;bEu8;3Cy2
zyM&oNRkjgeK&K)GJb&0Kwoh^ocq+J>!Pxsfygjnu{fg>z3+iyl!(k6c#KN4W{-7fj
z#&{i->5HKbBp&y0!b6pu8qR-tYGvkc5C3>LDLkhHo)$=E9;d(;lYfQn>>SQ;!pZS}
zXE73aRmkDUc?H~>S22f5Ih>PI(kcrqTibc{q*^DbnnSgm`oMiIXZ{?{7rc57{QS-6
zpbI2PWNPc!zJ`iYGlz?EXp}?a9BSoIJBNBXT%JRn9O~v!ki)J;v5Rx+9(1X|O9Xz^
zNj+~|CV1IFg=}D9PHmQFSZOSW`Z+YDsF8(b%ga;@IW!P{7Q8|b5?P82O>$_O!&Nzk
z45>wxD|2YZJJ)rU_=R+Da}}7!PX<@#a7|8~$=NceCiAj;YYUOXjjpZACAX&C<lLLK
zIkd}RZVn&ja9s}9=P)vdQ8~2Fp(uyJIozE?ha5WQa9a+yOYs|W=$1qG96IIDIfom|
zWp)wdrX0#nW9}-+vO@#dmYZ|9MJPQ4@_CHJo`Uxh$mFeplpUdPM-KhU>AiEfGl#n*
z*+*bsfn~oH;3{{2Ne&Q5IRkSTRE|^HkR0MU+$WTTz@a&$a!3kZT+UgNLz%W(IprQf
zhUG9^5FW@$;r9y8&uYYZ-Jin)LLojvkanXAAI#yQ9A3-e^&Cb^XR*J==P)LRhjVx&
zhew4tHiyRqc~aox0-q2VhU#0={{$!UR8F1dO@!CeLL4WMYY5Ne@N5pxNpeySFXZsN
z;1dLrf1)7sH)t=iYXpBehsou+ToK~=AyXt-_EWZ3a(FeTR&r*KC?uT90o7hT70k}z
zjU3+0;Vm|8e*E1W-V@~Q9Ht5KjzFr!Tz*!Yo>RXInVG{3LB1YPkI7kr6JhfGoSId5
z%@O1Sa>{=bKFZ-^`ezPj`S>J<Pjm2c$mK9EhtF~he8O)z%%?*Z)cZ1ruX1?5LgMor
z7Ua~)flD`NU*r&O(1?GX!#6Uetj^)v9KOq8Q4Wi9_@2JBw)H|*no~bE{UL|nSH$?l
z!oRp)^J~FRIrY}bXIjD~IsBZ%@*Gy=aF}=h9FE_TTE-sdjbNj8#YT;PmHj1$l{pZh
z8l=+=R!Nc+4#{70Si@RcmT;%c+MJrG*9qi(hxqSwfOCqB985t<b4Uw9qMpN(En-Bh
z9PAvjLMNr`vVx3cF@A$dCkHnN5_vJnoxeUO!yNYIus?@@rpRGO4m)Y~95&>zO<Z)N
zbT=O?Hw&^U$3tAz>J$HLvL&Y$k+yPlZ`6ovFZb<JZDYI2@x3|h&S4L=`YFz*5jL5h
zP5E(?$blRV(s^?DCx=5cniM%Hy>LYEKR6iWPoPI7$=*N4$!AggPvJS9!-=xHfIu3M
zYl)|XlXsKTY{I!kM9Mz@{hI@~jgaTgjamgCXZyI)M>8K4eN^&M!$(aY=lH1X<6K`J
z6!TYB@zoZ>sy=w+9X~%+^KoO168?&4=Ims3Umc!yo{#f=q&8|7NRbPDeA}^zN!G&1
zF2aj^T<#<0qn3}_KF*7$>iD?S$7Q}ctG2F>iv_vF$JmV;FA@uUyuK_sG*(jRqs_wP
z4|9|Cd@#uuJ;M6Ln-p9j)xlRY4BwF(`088&A`N{s@-d+x(bz{*AJyv(<<*2$Y}B{}
zF}!br$*X)c7v($nxZ1}xBC5zo3tv44w(`;1M@wHVT<|wl_wwJtKIU!I+W2TINUJ+j
z{BK}8AJ_S~-d9VY9QA!p#($q4Z||#L3KA#e12E|weca%4p*6`jtT6*qoqTi_^=|aB
zc%w#TZW1M_UN;}z*&`>=>;!K1(SwqAV#ZF~;-jaJPMgqq6MFf$)yD%NMufP{$L&6L
z=dmY`JACx!mB*dDeB9;ZJr?)T$46fuZ~5q7rF}m_AJ4OP9|L?0^fAK6NFRfI45mrh
zi9YUTzw|0e_(=K~;v-Hu(-PIzrU)sa*oQ$g3UT*FZQoOhPX3<L5}J>D=_Ede`55k_
zXl&}7P1-#^$denJdi<%>{Zh*PU+MuG`H581_Y*8zX>4i~JA(H2@s!V~LX7tDh>u5o
zjPZf7DPFNn+QaP1_Y);gr5dkIJ?7(a$$CQIr>ztlbs&6FC=@%^$J1=oChb`t9XDy?
zd^{t_c!8v_6}R>(A@ZD$I*+SXQ2s=pp^SLL$2(7@UhwfEozTbrHK~_;O!o1Lk5?sY
zionlX;blR{Onh1^WvJJrX^(Hxh)<QW_jXbe-V{y}$Ba$AEf%K2(*$|P$Gdd4CsMrL
z+N90!86=6ne4O+#%g1aVX&<_e_kGOaNc8cOnDGPpp^wje%=Pi1kB@}-F(-d|*UUI8
z`cx=;rQ^QXq_MjBK0f#HwU2LnETBhCOMJzV`;_XMFMNE-5xPm^RpSL^4bndxoBGzr
zcRs$S9oD5Nio_p$EM(V=RrqhxOcq~6Po}_b_|3->A3yt8<zuyvr9PJV_{GOcI&H6#
z9h<b}K34D=n_}%WJK>p48vTmWUV1a}tB*B4){FeL(vWpN|K*ori>Ls3STC=J>r#cA
zwcmaIg;6UN*nYES_%MBJ_OZo><-_)o_YwHW_{jRmv0FE5jt|#|N6+7>s=I5mHhQzR
z<bSELTFIE*DW8qqtP#&{)<WvAI~DoZAV|e-Apb@mn>fk5nV_iqCW(YesjWVPOR?X_
z0Uz6a?C`P2$6jIE>7#u&>|)ktt?m|Ww;(Kj-4^Y+ZrCS0WO%Ye2`zBY#~~lbeEjL-
zuyFn%3`Yc~gnnDJ{<~90*>{stM2?GMC+L$~G&X1C7VUZwb;`$SPU(4EmB-&c{-Jy4
zQ8$l&eVpN}o=5dO&dQ@g9+mPqCy%Fhrq0e|=^(9Q9&FUSE!ujih+0+7qe>oC^Pq{S
z0M)K0_*q-EJzF$3<h(qvRjZLl%{<P}<AS_04w)~^gUrOcY}GEx<DOe$BX*@~=TR$<
zUniwTZPf_b1TtKl$0Zb!M}s^r&Ev8>VtLh~0#S@Smy688JnH2!ajP;rA$4X}eaWJb
zueWMf<k2vXrb20y$LT>DuO^~xW6Ip6>LP`buN0nRsS>(t^E|H3qjMfN=5b9PE%GSJ
zqeC7o^NiZXwRyDR)Vf7$O^a>SuIi@j!(`h$+KG_%Y^EUB3uGJ1yn?o3b=0t9UU|_C
zl1r<ycG5fLF+kkuraZdj(KC-;d34RATOQq|)ifZDd7`T_JFlB*qMfN80&fvWA#BmD
zdEA!A?Rn6z7Vb=S>xMg|B9<k?`mNesdGyKSgFNQu(KnBNc?R+FevSTAfPJl+S#e+<
zjd-w69?3ig<uN#qH|w;&JC856r{aPS5!j<hBOCdP^C-z<SRTXk7@Ef;n^UPgG~v0V
zO5wJxTJtJ}r?x8Qn%lH{MEJdVd{U*b={7}V?)}32fI!wYLXeSEY)zcWhw>Pm$BS%&
zlpT}D|MGY$kB3=T9*?rKM9$-RJjTvCnY!dmieh;^k;ju#g!q7M+E`jLkMVgt!!GWl
z+BhzcH}2G^B=Kj3^Z7g`2=bgj>h{okiHUh^=z<sWn3M;TWF}<6+?LejJf`FsIgIIf
zyevhgQf3~n&|`)9HQM>_)a&fWo3)3wX;Vd2N_bP4-^t^xJl<vxN=2kkleYgLZ0|~U
zkT@fcnR&b~MQCtRW{Ku(>}=sLv%nl-7<UUk%;TdxR^;(Z9v{=xd3=?}*OL2b9-rs2
zK=642KNC1#V6R@WF9fl+rr7o`1!r|^={I?No5x}fpFF<H<NG{*%;Tp#emJ*~D*ceh
zLa|ciuF6|Vw`u#X*N802gQ6PGPIT{~k@IKHDtRo+gSiyWthQaToJM#<S(Qduna8R;
z+&sKIR&!>^!^p$TV@)1w^C-<DEoIl`u|ALA@}Ojjtuj0DJLjd@iA~#6UEf!tNM!B0
z=uhQ`-d$oz!Hk&87MzuSaXYT-70c$~<Z<40${PuDdF1cZHsrA}51+Uc3GxW@*t$*o
zp_gi4B*e2?sy1%QGm2Ze(@ud~^4ONgb~5L2a+~%^%|u!2rnbXdt+gF&Y-?3&7pJf7
zDwlTNOMUpX7NB>4{dpYVR2<;!00;9p#IaeWee-TOoW~K)-je(ykE40~CDk1hO(^hq
z9)AjclXO9w?b?YvD4dF&%;S{!7}==IX)!oW#H@dK7bur-rmRtcYRg}BwTb~M1weoX
z0nQ0fIlx5$Y6YkgplW~%0}S7qda6%JwE*V@$|l6m4NyG*kz2QGtmymz7YG~Syu+zz
zdZI>vq1&~ZLR{2UqlDT4>IAqfK!Ma-H^3#re6c_Zd2+jUsbrD4M^_XEs2AY!05K6l
z%Hze#o|Ai))DJjEse0eot|VU(pkaXa0g6~WK;r-{0<;X!BtTQvvO~K%z?CBTssMYp
zYs~`XhxT@jsx~KcO|8NXCFdGpCc+}E0<;d$E<j?3s;I>d?b-ls0^GbqYby$qjm>0|
z4A%+U^+IQ|Lx7HDItREx>bfz&O@ed^&{+^x{pb#@OMtEcx(9fDht{iS37f{NTY$fd
zG$J<#_*4`lyd^--0KG))tpQfl)mZy?%TiS1wgBsPXtxWb*gFH<6~GK&1?Ur?FRKgi
zc7T2X`Uki#!2JOR1Q-~ggncAtsT#+i0D}YEEy;wyApzn6j~GqfGcB=khZ-`w;z$N4
zmfQ+EH4;++G)WGp>2_*gcfqg#ocefiCcG!$_5qBo)qeNX1Uv4Y>4^sdj0iA3z%v0x
z1{f9K(EyJHc#yrYQ+p`DXf|`F_Ckk(F#$fjP<uGQBb3loW7%8}?Mw}=WT)0*Rs8V)
zPwv$IM-OCMZo?BSzAFA?09N$+PNnMD0Gx!!1$dgRuF^iaD&BWS;?tel?!hI`26!&O
zD*;{&@O*#?0bU63qSP{x%=eT`3Q!o=$j_@zE$yWMlLHL;XYk7bmhDt@_S6)y3?(}|
zHSJpMHTGbDb9*P>5YDNBQ)jk%<%Qat0lsaJJl(T|a9V(O0{j@@rvUE;crU=m0X_*Z
zJ;00rvje=(erb<$2Vf?rg`L_gfj`VleD-c)j+lBbEfe4a8Hu;lR*gO03+L=oX8DMk
zpGuMWQ@Ub+uLFD&;IjbpIbH&M8Q^m=?9#5?r7Z}sy|VUXwFGf0`4wHOXGyPJ>K3`I
zhDLLJ8{j+PStyl$AK-@oD{E;(cWG?V_+6@AN_ee376n)wU`>Fv0hR>#nWg?ntq!o1
z<_ho&O9fa?op)&~$hk|Sdc>*i(WctIGpX}GPpt|-Um`+He&x(lwUe_;*?AqkcShp(
z0HpzUbKtiCbVX8V*h~LRrA0AAVB=W{odbVXqTid!<|lS(c7P1CLNpGM4d4VgD@275
zZU8U9F1iXQqTO09Ko}sROAOTf0Qmp`2mWpihf}0nbttugx&_!8U|WDqbk5z{W{#%a
z8j;bvHS%ncvS01i*6ddN+XL*N!wgVaJ0+_^hmz6N6MH!G1UMStSb%+;`~w_ey}Pvo
z?B4)~1CZ?yhwU##L>j)E{9~X-oE1^jA1t_AyKs-zWRLb|fa9DW0{j!;M1a2noD6VE
zic@Eny>g(|X^(cAL#cX#Wk=Ola{gtz254tQpP_p+Hjr85KRZOl5Eq506@oQZ3Q;vg
zwGjW?qn#6?a)>G+D3E?mX${^?oExHgi1R~S5Q2?8FT_`Slql9aZI5<gh#Eq#DW&EW
zm;AOz+qy@&3Uh0Rs1u?fL}7@!AublqOW7$MO3vD=QN2q-rDU1eFC)WVt;*q4y%3j&
zXdvpvLVQ0^s~-ZP>aSLNRTJi(r}65)SGyuaLuMULQ8CISY!aerh(S`tl_8pixG6*z
z)*GUEi0ebN4{>#fYeHNbqD_bvAzFrL6@rGMglCVY9+xUwi(-^a_1cDL7vefv=5T82
zUR5t^|9r3Z>t5B&q7WTI+z_IZsLGD$7^24jZO>kf&FLKCMk!ckG@A4S>4mN#x`ntS
zMDGyYL);wVmJmHzFa*W2A@3&e-ayq@R@W=Utz7&G!Aj5Crxol|7UOk$2<8&GGsImX
z`Y{>8>QK@rRDRM|to?t+Vc7v828L+6?>|>(W7*`vA?^;jX94jLB_W22wk)0qk)(S2
zR7c;tPb(HXkKd=ILTDlG4RK$HVbUqXL);?<Co`2{8(G)A1GH)TG#0#Hcu1s&j|?%2
zox6cw_VHkdhv*d%E{-rd#F!A@(SRWy4)I8cX(8ST@o0$0LQDuTF~s8`rdKbb!N-Mo
zBE*xSdXo8Hh^In~rQN!!cN1P;@6*;d(w+`M$eZ~15YL2oR+#xz|C}IvI=XXv>iJMT
z*btc%;sv3<65>Vrd3SBO%u6qYm>gp5K5YtXuUwCuFH4g3lK5(f*FwA=Vrq!DLcASf
z!#?ee5cl^~iXGdhy~%;IUwKFafqWWdb?=6FFT|%*X}>l-#0<J+mBJMlXfs313Ncqy
znoTd=ugwYZ0i82n@%=JA_p4Vewul1j^DQ96N38da#K$2%VWs=E*4x!w%7SE=7vi%J
z^XV`lzLBQAyI)%ns^|GHLh!+uJYRAkOV-WXQeW-YzGia2w&G6B{VVlth&B7Q5oc*X
zgjg72dx#w&ehl$b2t9-mVo`|2<dNb_M7^aUmWB9PaNba;$?^~@LaYq2D#R~Br?%04
zb?Z5M5RUHGR@2pmPGy)p_kh;9E7pcsCt}x!_$|cm<=U3g{SK(6(I7<9lDz(aX42t9
z_#yHk(wkB?XZ{e5;F%DIx+tP60{Kev)Sa3qI5o)$())lGaH`poir9T2!VsfpB<?++
z@l9u=&^L$J5@M6!<3$1LuvOIF#v)ymC22ImogsFGI342e5W7R{VeKIf^X~IkYHx`B
zQXTPqLZJ~32<0GM{eW`RFAr!(IOB!*>;G&*|CyfpGsH1*q$68WbI+uz%t#y$LHvZU
znWECk5U1EXw`1o4W!`^6{2SuD2<JyQ6XL80=R~L+p+cmzr4Lk!lwX}4VO=||Vx+u?
zNZH#&l?ZedvYi{DYJ}25sp<!{Y7q!&rRovZG}Q{Wt9S4VL>iT^DaeHaYY3#Miz3vD
z&}&nwc7!^SdIhFptA>@ZV1t9&B@r%-@LGh|BU~1tAi~fHsR)G;>P6@t;pPaJM~Fpe
z8=+l<`VkPJ1=WtwAi@<9nnk!OLPJ&;p=pFGBQ%cCB*LkSG(PR{F_I4(y!iC;ab=AU
zX`hyqOgNcp9^vXpjrto7YM0MQBzvQ0P3@WpeE4B*s|d4dYu8GWNNd)(Do&)0P#WA*
zLQ%Y~i_ktoQ3T@GN9cD@5j#Za7@>278zbBhp_7!QN`0269ukJv4r(_==n~=UgIYJK
zsH;ezd_KSsu05!9?h)aZ2z@CwLQfhn!W|KM3+Js7ZWFQb4Jke?-!3?--g8j(*PW8Q
zi=BQ*;}dKjNm3vg`bQWLAraxeL)t*Lr8fpgxSMu6qz#g$ZLh4Y7+x}j-cm!0N0?Mu
zyX}yA@FqPOp*X@DcVO5*sR@U)l5z#K2*V<bjqr4Y;SuhMFebvo5$<Iz5k^E98DYU4
zxL^1m5cvKfjc<jt#>9Rlqar*Q;UQY%CT&0$r9Y9;5xRC)4osd$B0S38?5aHx;jsua
z`<3u|T#zM)G~&@A?a2uL6P~ANsBTIQ`6*{ygz*t3vLO*~+1fJ^o?}Jb6~nXitHTO;
zK0@nm+61!oE1_0hyJ{~)crn5&BJ-sPli9_GwU>oq3JusrRZ2F({)e^44{NVdnZp|W
zhsCGTL=m<{*iP@_fQqmz!tw}jN0=62UWCsgyu*<dVQz#EBfJ-3dW6{#-e=aki5UWC
z%Glu}@hnM_PB;Gcur?>c2Qo;H{ge8!ZhJmU-_amRi+vQ~=kv6Wr4(P6K8f&Yq~3<e
zFn@l^oSK*);qwUJNBDt#5#b9OA;LEiDCElsUqv{4SSy*8a1Lu69aWBK-$wY3_L-4b
zu~5n91NpKADZ0=?7KyNg)zJ>O;im|TA~2Vah#VA)DSu|7*%9rgBWj>6mE_(ylw>~t
zNBAXz8NrIMGQuj(IT6-JSk0UMUGQfm)^M=*#;;O})v=9h#V0BAw+O#SpeUUa5eIvJ
zrB6CS{D}6*5sfY7n}{LJ;R^!!?Fg9&QG^W<veYnwA0f}tG$Y{(%ti3}z!Qs2Iiih`
zca0zdjXd{=7Dno|k!llX^C@s+gw5q9-Nf<OJi$u0MA*uaI6Fb*$@c3JZAXNi5&ntr
zZ-iask8m`?u?SD~*7ijIkEySKx}tdhr(e387hXPes&pzP-62Z6c->tC5mD?wF%T4x
zE&&S^#YAjG6dM&$6j9l_+i{id_<d&h@<0D`_RM+anWyKO*_qk9dyyVMj$Rx<B1ZxD
zT;%1L{r3R=JAgw6aF`u&K!l6#Fxs4p2($OOCkhUUt<$jsI4+Gm%L#C^a^e6^G3}{n
zLgwTFP!w<doYl{8l0U36=42=Dd!vPs7Y?9^j!HTz>nN(Dn2s_!%IYYtqlAu9I`VXs
z)WN$CS$M)w|F8%w8B6Q9dkAjoCJdvej9WP!<#klh!PKHv^nK0<(e)K|p@>{nbX3(*
zTSpxo)pS(XQDac1rj9?xAh%iwsX_L`3V~WWHmxf>^jzWkLrPs8^>mT9oYT4;R`Ye#
z*Fk_6W5tq+8tQ<KA_j^YXr!aDj<0omqoawAraFJMh*>(C>1eKFjE=E7TIgu0<0>7!
zbhOgZT1Q76opiL((N;%09qn~-%5fRl^Dn!cR&7>j>J>Uh9ae8XtbV9unB;8gpyLr~
zK(3|QSw|NdrlY$K;)&@hOU_pZ*BAECvGTCmQ^%E3CgJxFtK3#|Z_eX|-a7i|7_4K6
zj=nnj=@_Vsvko#|t)st=0XhipJ}kE3q~|zdNz5R2*2pOwk3$(`Ni&L;>-@ffIzq=t
zUEIqEb9c;=@nkt#7fHg49*xs+jgDJ%Ow}=7$F(}H*OAe2osJ1QCh3^0W6ft`j8pGK
z=}y%nYN0OjkPc4KVGql2LLf}c4LTGZnvNT#C93q4iO1W`^lrFG#~bSldEG35?Vl@z
z$#tuaX*%xJai5OcbWGQAr;eFi|Ld5c;|?ZCH8s;CbCH<knq@)={klsRr$BeJLwSso
z$q>Fr!UXQ8g-6r}Nuc8aY3;?;3#+`?M7@vbcvQz~I;dl|j>mM&*Repy<2s(u@sy6a
z(*7rP%#pyrBkJ`>RF+I>`pe#*r{if_enfqS-8UBd*B2iAPwYJx>UdViG9AlxEYh)9
z$Lo@@W?#{vyq3uLEG5|yf%)Qyx<dBUN?N;4R4IIwRJ#9&`kaon9Dq9B*0D~<dL0{d
zY?Q6f>v%!OiwqivVUG;Q<6FxMdA%g#@G^%$3zcd7itM=8XoikgIkK4fdlkCCi({>K
zc>!!@r%0=Kg#M-kXc!kB@920}$2J|G>DZ#<JsltF_=x#=MBU2C;i&pPiKQ2WKad!9
zM}wp4$2vZddS@>y<QVx>$Iu-LVd~nh<8vKf==f5{4vw0m!e5qbJuyaP^-djMF|kjI
z4a-Q``qlcvZ*_dfbj|Dbw~p^6@QV(fKm0&v4|m<A<3}AoNqDy`f0kv76@~Zq%uGG1
zl4g&NUv>PZW3Mh&bbsmios*A_Kbd#~Gy7yofX1-o%5cBLaB#7jyD>v!{?TzjhpxlW
zk<vRIrVdL-zzK?DK}S}{tt%CmQ`Sml&)@=wli?TLd6mk`_jLFi+Qr4$ONR-WDb>5J
z>7R*o#5xl8=18!5rd0kfUBU8$37LO6igg^(aa0O9D9b}seNcJgs5*4Ha#&*ST2**V
z$8jBJbez?3LdQuRr*wYe29I?W#!%g+p_vi{mMN{J_O(aVb2=_uv~8JkUdkkL_lm+&
zBT>viaRYA}c*{Tu10@X<8kl0Blz}`0%?-3LP})El1Jw*vH&E6PxmUqJMFZswbf~0q
zgqD}UXS>=~lC4z@5Lwwk6$0hDU;e8ye7myXaxtz6*Dz4iK)!+c2DTklYZ<6(VDC}2
zwt-{KgtR&aZmyv6fnah}t!Ic;0T~-eBsk$qpg@)l4KXc~xUrP*`6;EDfhI&s11N#_
zXi6qK;g$wk85n3_kb%|)+8DUf;7_*D*1%;3IveO>;Bo_37-&y-q$BMZlVfV~<zz~@
zrit3oK*2G!lL7idfJg$I*}59&W}t_Go(4p<g4$iOcRnU=qhzO%G=Sr)mvs4R1N{y3
zHqggFUjrkKsr?M`0F(k}9uw;*A^DivZH+QO>LRe=m^#?N5CfwOj5aV-${%ik!iO0+
z{h6|AyTUk(FvJn)NZuKTXLcM@i63KNtbuC{TxZ~u&y;Znt}!rP#^>*2Vy{7)Nw(p0
zWrBf;jKeYY-rksG;O!j>eVNRNy{QnUNi46YUIX)KmBD`)=a0Vdput~lK{cQmm}%fH
z12-DD$-u1!rm>F<++tv=fvU%aF{h8IOaKCuEXJLI=>}#PxP$IX^LY1Zw_RZl&{S%?
zliB#2LL~Et+V3`SkAeFQu%l@wXNh~IzxT0ckE>7puCRQ-K)>TEgFyC&4a_p|jEvzU
z1|Bu=xPd1O%%+jY)yE9*86xLKikf#^{jjn6q=7jG<{Fr1;3+AYW?%EG!meRQvt-0*
z+tbXGUlpd-YsXdM7aDlhzy<>w4J<OS*uZlJ)*4u1@F!;?o~sQkGqBviN*VSQhFBnR
z^UIm@Ybl}2<?1S?-{oRrTw}ne(!6doV;v>b==Oqv7Y(d8@VrbCPMeiZsBd1bzGR5y
z*2}W2`l|>REu>+u7<kpdW&>{+puxn`=1m4(Gw?cvoD!78P*<xH>eVL%0hf7i8+gaS
z2?Hk$ylY^Kfqe%4H1M8*tp>g_@HG_~_<$MC_%ngqsUI5nn7wA;BZhQYAuq=8Q)ak<
z&q&`>AesNonuw{M&#GARzRdEQp4egF3j<%0?6|s9vh&Wx2#8h#-x~PIz|Ru@oq-<=
z?2_>JhFBRgZZjrg@(GpKk8%beu$#GeLfvEFR|CJW$4`g{87zO}%piGxr#rujTM}*H
zlJyUXeE*QZ>^Jb20gsWF$iEHf1`GrL7&t&PwhJ0wx9?B}dWvblHjtH+mMrOxW58t&
zoDlZ&EQP(s8!O9z1{?U#z(GkF8HhP%F9jzxkTdYFY$7A~aa2KRgkShuIb`6lfuo!i
zWg2wtojGFQ(-Z1}6Jk?*+`w_Ej=6NhwSwgo2eN@WChD3vW8f_3Y7^y5oHKBq^SLQ#
zE*L0cqPU3?ChDA2i<&4V0m7VSd2#7TGWK0bQ%tRHIpGnnJQJm*1j1z`kbhPwZ=!;U
z>LzNKsA!^+i7F<ln&^D;e_WL%C0Cy08h%o(c1eOJ32K_CbqT{2T5S`LoK#81Ak;IF
zZ=$V<%S_Za(ZEC_6OE-w1(KzqDHa%;q<JvKK%j~yBrws!L`zA-#BOGayH#^p65wbh
zSt}EJ`m3!a4I|mc6t@^UOXTGyuAu!Ux|nEZqW5qlJ^5BCUOcI`ml`{mA_Fh3Z8{O=
z!$cXMt|q#h=wYIp$@gIuj$cNyr&MvJDMm3>kdk(iy|;-zCdxag;GnOGekN+$sAJ=5
z6a7tGXJLYc0VW2TFilt{2ALRaVzr4i{QW1*V4zGqYGRm);U;c2af^u&CSS4SFCH<`
z#3*|4SMl*Ct~D{*#26EwoK(k}7-xce3R=SI6V26YOwdRIH1FIsB8JzQXw^dPFeEd{
z#AFjUm{3d<nt1aXOfhl2Db5D}Xd)iW?K!DtOr$4OUSuqBN>!Our_>vzOijX@_bSBP
zBw;F@YT{NCGfmuOVw#EDOx$i_hKZNHP#6=+nJxuV>>YHc(G>n-<W3VbhU&P}FS<{;
z+r&L49x(BsDbC67HF2SodY|k*b_C)3O|cs#Kxq$|;63zVQ>-D~{+K1Jd^k?zY!i=}
zm}_F5iN~d`IVPTxN%Dk=CuN#3CVbRLY2J2)7t`Zu6VI4fZeoRr`IKg2k%`47?yIRT
zH1Vu7gM+cwAaLhJpx!BU3A>)wj#OtX6$wV<GE;1RJDySrS8buLG_gvmn|Mm)(~4_K
zsn3~M%l<O)sfl$a)|+_M#3qxU!NFap)E5~p3A{j!r_^^&sV|$@bxPg9(4A7*>GKaN
z8%?|-v$V`<l|kbX%4;TGH}Rf{ttJ|tRyUh?+r&F2-eAv~VtzZ-T<jU&Vn(em<e@RQ
z;qNjmr^ViX3&+A~(Z!-P@qrv`A2I7rs~<{wrUWOeM^39Bo8q}GVFqoRiO)<Pw&Q0L
z+f96K;#(8nnb=|C3lm?N_?q^26C0v0P3$Di8wz`wyCL#^V}e5H%f{jSda#hj(0y-W
z<7sslMGeOfGGgQ<{zoc0Ee_0gv+GTMdmn#rbes593JE6THxn#*<2c+!oiRw=%aj`=
z826d@)5Jd}4zS}G)$;0JCjMr?4=L2nYwe&6OP)C}b#)U5PpflBtA>far&V4Ih;1Uv
zdCx*63yulbL=g)`EqEq;6Q@j^rfPPCiGNM}XCg8Ya}3T`awZZ^yw55r$JDc8t|)s(
zB_OPNMwvDg2RRJSsE3yEop&5EahUEbD?DQ2D2M+U_1>M6S>;9eI0?9olI2NRj(bKS
zhD-4?jLfdK=S-Y6@$M3($RdT+^BjX`)KO*fFGv;5#$+}P$rQ6-A63d&C~l#Ig~!jR
zB`xGxLTM=r`<E2*`XN?WEp4G>PC5RJvg(Xl)<QW8<t<dOgraQ=lr3k}#XGxiNtDVK
zs#xf5p@)U47OGijX`z*c>K1BPsBfWxg_@G9j)l4wHXl=JS*UH{$1^HLefW=3k71N>
zz6DxK;Y|nN_6dar78+V;YN45hVP*1R;oav78(U~(@sX%Pf(vI<TH8dLUFWQTn_Hmo
zYdfNag&jjPxBR5+{ZVOcp^b$O7CKsJYvD2rS6FCgVb!35H~MBSx6uBqI^?XXomHQ@
zDnm?rVs<MJNn|G}r;CNI7M|R#bhh|!m7){7Sy+8mWt6DvBLZjDo))gOFxbKn3s+g_
zWucFSz7~?RYO!<bw)skLV%8PrpHur;xLO8$poRVxx}8%m^u~8XG6N*cYWpRHgCxP)
z`Jy9u4P|63jAk4x45t?zvHn?QgoTk7CZAKU=#Pz8W$x*l8Dn9r#c#Ob8Ve6gITW@0
zoZ6^l_wg3i{H$DS;p1~EUGRQVSe<BLl7;Ur{6IMt3N6gD@U(>~7OuB2)xxb7G8XU7
zB3%^=H&|%iPYj=5&#9^f%|djAdZWevdO&zi478gp{M<?0Vs2r_<zGf5mqybp+-Bhc
ziJ30TJ1xwV!0i@hNPw%UJ1lYQyl{?lqu{;U!aWk;(vIurdoA2=q0V`+(z}m6=qdj`
zA<hsulRRkQA^K}!7W3J{6BZt^@Ti4r4=az6^1M3R5+})&NqScKd%{I0m4WBgCoRm8
zN^h87c>0L)l!WKXl9W{RjD`6YUbe8o!U78mEv#hPNUNT;_#<;HwXjH57t4|=jLsqs
z%PcIHatQPJ+KNjur;f*JN%?{-*I0PY!deNhxA43K*2(gsK-xeFw|B#f7G7fK%A?mM
zqlGUUExcmk0}CHoc-6ut$@Q*<*DSnl;cZ#nd`a({7T%CB132Zp%ILjiiQhQ!=Jk%G
zq`!kZsaq`mDqbunD4(jgvJ1|u?@Iy#A4%Xd3)`7R7Cw>HPc6*lB9>eJ^XfK<F*>TB
zbJR%qYlcpC83le};Y$lUEf~$zuW0aQWqVhZFjaqJ;adyeF>mv_i9Y(Pc;*e|hBuX6
zoFy!rv~bG8PfRVQ8B@-}ZVSIy_{YKl&IY!!$HMOx{@{?2N`K=xO4Yrx<jsQcJ_~=!
zroUvlUxwn-^FlQrQ~oWHj;YN1ThVErg)Ap|3#J8&G8wK*0kI|J#ZGZKYjK$OR%>2R
z!}F@oejJHF4v-7yMGmZPrpA(<aB88;1vQa+-)>Ntv+%El|12D|aM;2T3vcD+Q|zHj
z^n@!nnsU^_aoNN>^)cBr;)0NTg67HJU7wZ_D{Z5UjWZU`S~zFnJSTP=C2d^bWN7pM
zh*8YOO&5f-Jg{ZS)f9!yxu6!e!5=md!)hs8Bvqb`cbW<nL~bvlmbFpNMl~DNZIrjM
z?t)s;MkQN3Caz#(O=p$A38`#zMpdfVD7CVXn2WqsrL?UV)EW|~Wy@9Z1-==9{n8S%
zsj#Q6je0hwWO02K`8Mj?_{_$38x3p}*to;Soi-ZUfQ@TxjJMg>Xl$dGjovnzP_m87
zZCqjF^`(W)Y_zt~#zu1+Eo`*3aq@!NN;VOwT10DEL?c;S8~r43nQVH$n|K|gu!z>q
zMthqtGN7xC4mLX4=uDf7Xq{}_UqmArd0AeB>(5cT(b_pm4;wwDobIwDhS!xguA+oU
z*({ZQT||qEXnkz-wK2@baLL%u#y}f`xC^k+U-FhLstusCMYZllHJU{B!BWUj**e6=
zxT3;-;%_gijj%D&#uyu8rL<8tM%$QMRHJrULUp7ZCz}RtRtUc&WnOFJIvY3GP$cmL
z8xw6zlJd6|)h0`TLaw(_cuDCLX#;Je<cx&>D5|M8G#gWG+$u3Q+PGQjx=C^|&KE7Y
zMTU-ye8Xs(joWNYw{cin!uNv)KB$y0rrmC121D_n!Z*mKe5=f~ahHwFHr}vtw~c#j
z%(3y5jeBj}XX6nYk5Z;B-o1KAmJir?klig`F5^p2l*6WnWz#HK@_n?~5_nvek8z}Y
ztF(Gh+`*r)@uV$YSR>4rwz?M6=GvHNW4(>%Z9Hw`85>KO12*Q{SYYE>8;ck>`R3QS
zhm?iP$zmE`Qlmf$;rmL9ZOkmD@pY$VQr8L_D<x(*8H;H&Y?UqE@>tD*L*Be@H267*
zaR+DC*;s3Xz?;Q1mb@5^7i_#}W222%F6n*A#>+M~aA=z<4d&Ze6ib+IrM+rnla1G;
z5H|htjY2$IU$@2kceL|O8$=TL(8gOf-sVWR@ve>cY;3i$h5kOIFb)UTikEsQ`F-id
z2ePE8<fWSw_>pw{V;i5?;)SwLCBZfdy!3t<jrrWh4jZ+ysGY?ZHomlx+Q`}1Y2zy!
z`)vGa<7*q=*!a=LPd2`_@tut#eLC#2F{CHHm+%iZ7G5a=Mf~<D;^`QHpKa{6@vDvB
z=#C`YV`H{_U2*eV<%eQo?Ch2J-);OM<IGlGXLc$}zY=}D-^O1yY#Uh{f7|%ShAAaj
z#k2!93|i7bDAgsh%V!FezA{Cn1WRHz-l;eYvW?K@>q7rCZ(j#^?5R5ypHt90C6MLu
zS-s;+25j6WR41}ZtNyj|pN-;Kl*ppUT;-sRBQ}oO{B4h@@;WSmxgBuK#&H|x+2b}&
za8BbqZ{w_uQ^e2eeOh{Yx|l{Ic@-NBx=H+`dCED??L$DIUU97mwe;ywGz*$R8bK*B
ztGc5kk#{N;vZ$CvsVwp&P3bHc%yL<jk=3%Yq-3&}m-J+5UtFt{MP(_cW)@YlsG3D}
zNm=tVrCJu$dtV0>JgtzphUB_K2A0}Ow5?Ysi@I6#$f74HIr(SNB8!$;)X$=UByK7t
z7i7^Wi^f?rl-0psDaeBTNFhxmhQb-xi%t=4CV897k}kB$qIDLXv*?mVn=IO9aYYvG
zvY_LXaG4|{*X3Ce%rBl++RG+lI%d%!D>`>jagkBPbRzLK;Y-&nx=GdajzYR;MaB|O
z3Cxfyv$!gYky(t&qE{BZNjX;;o<*N5`erdKiwBBp{jy*R_0M8}G~j9}jV@5az$}#F
z+K?;;Nt1{fECKq$-ObP}n56`$nsP?4o0b&%qcYS!TADXDi*Z?uxoGM(h2gp;i}6`Z
z%3^XB*Jg2Jqbb*AF+l?44dyD-Mr9^SPw6H*Yxz}puDDj1#g^jQqW2WiWU{y+i=VRi
znYLx2W-%{|r?b!~B#XI{_oggv&f?xI?#tqqET(30XBIQFxHXGuS<H}jQq*l(+%Dni
z7oA#CNC#;=U0^`&Aj>?_v!uK$i@US9CyVckYaGsRbr->3y+xTZwBUZmFpDR$d_xcq
zX7NxKk4l+z<Y5WSlBHQ(dqe`1cK;8`>?|IW)yHKSJ*71JUU<iAP8LsHqO4ImpZ!IX
zXd#=P$zpyMZ)WjU77Main8ov1ypToo-sESqSdqobEEZ+4IEy7r%Pf{<u{?{@%$cW^
z@*}3OBxSQ+g5JLptC-<ul;^Too5kuZ)-cC<f@Eul7Lb6Bzuy7tvSQX+&)9yZ@Zz-d
zVis49%52KwwJcuB;^izhuz$07MaHmN39WSrZRbwq%4b9dzACekz_y_U(?(`qrx)yk
zQJFG>@rDF?(4?o7x3hRBi|tu_p2fTD>nuLV;zQ~3ds%GF;_rE)Q^@$fMDl*Lc2wr0
zEI!U+TNa;X@kthUe5xehE1zbC3xt`Ij2jJR+~^A@r5&97v-l>9Z)JuP|78|Cv-pZ*
zp@c@_uO&d=DW4j@V|Qn<OA>$e>Hm7?2WHV0g)#gwizy{Er-!&p?#|+uERrnJEZ;T5
zuUTX{rn2}gi@jO=lf?lht*ic?#h+R1XSxo~{E@{zk+I?p8g2^yVt>`>_IFk+dhacv
z@hzTHa#y8iVaO(nH!rzPHW|0>VzJ8CuWU(AfLyMG16g{qB+|b`5K17*B9?N<zN&=A
zGMB}_Srl_n+`)fY9L(ZG7ALbfl*M65d5rNdp}jO5yGm$BvN+0sl+f%F8q4EMuqEQ9
zGcMy#G0n0#o5i^-&X>?=>eTJZ8L5=}IIJl=pTz}6(m{=q8aKT3?#uRSQAd=tlO^Sp
za8Sk(GD|urC4oE#`y8dTBTih&MVKWC%F5Pqj))1X6&+M^01u5kRCZ8>co%hCRCQ3z
z!A1wKIH*q54yHM{%|T5EwH%CaFp`uG>Nx1=pp%2T4(d5*;-IO6d<XR%G;+lGQUeDC
z4jNJgr7aa_SzSwNQx+<7TZ$tiUOWzJ>|p=U4B;^)wPp^Q(`E;49kg(eEK*uJXeCA6
zR#Iy%f#!cI#S$Tk<z<dIU%J9UI|*DaOX7L@)ZW3|B}xaHT~Z@4;p?|f?(Cq8gWeAM
zIOyu2n-qAZgYFLINU|Q%n9+Nu^mO1XQC=>oT{Wf4RStNT)r-U>wSAJTuY-OL20Iwy
z;A#i`9Sn5Dq1JyTwE=YDPvyuyajwNG%Rwa2g~3A|R4k<pbNJ?n(xQ|`nLIih?%>Te
zg~W_<FxtUH2a_C(aWGcecCCYP?6R$s$IB|EUE?6?h`yzSQ<F;x^RAOk6C4n}x0E*7
zL7{^i9o*z#ii7JN+~7c=ocRim4YLcCj3W*S?^s`Wyh}!Pph@<{QsALKh1oYt7kJ_{
z)xj+eHkZ=+%D#K}XXRE$99Z!<aXLfo;3)=Kvd?gEmxH?<+~MF(iJ9q$Ge8>owUm61
zgL@r3>|mCI`(!t<(;skfzk?FRL^2qqv<GGIACe_~A;BXK9+iQ8+`()IKmDYfE2Z_{
zI$7DJJSK$@c*4PxWLZ*3%b8bmXi`g+@H_`kJ6Pgise@-6%$M}fO4}AVSSSH@0Ykww
zqXCN?z5$2vdHL7m<?}=|KTlicU^)GD@Vq2m;b4t}=Nznbu*$(|iKLzEYqFQyuh8JN
z61h&6SN_Gf$d%4{+6xRtp7xT1mmR!F#<S`jc^YH5ZLzXAPut*tXPdlk>4jGvY;thG
zf$rcn2d_K$+`$fZ0pUFD9frce8%!7nZ#noXPvpScoPyfaBfu=0RwjRogZCVK;^0#U
zTOGXb;6n!=F+O=3)$#hk!QniudTFgqX^kucN^2iGQ1^+^v5g5+TKmkwb|(B{Wq(I8
zgbA}G{tM1I65i`zC$&5Hkv-zzYX{#r_|C!i?9I~J@s9XbrgWWs3WM`fY3&D@nY%a&
zwoaxfN@l=+cJM_<{NiAbl(}1$Wcig{^N%3-O-duZFs!upyMsT(oQ6Lg{4I%}S*q-J
z@Rx*1&nhKz=>2n16c<#jRKtPkpqPu|E-VMOgF|%R;cLRe7~es_VeY`?EGI4ZB=6N3
z<S$l24m1a;gB%G;YcWU40VN?zd6gy+E>TANSIYTMju)D`f2nd%N?=od8SRK9KIP!F
zgQE_PIXLd%goBeZAf!K1vs>pfqF+c)d(JpG>)^4n>Uj>^G8%tm#h<I4W8WQ730!bc
z#1*YYU2)qY@WF~gmL*)2bWy=YMHi)9<hdy0qO6ONt<=)4_(dXJW65ecS4<J*Wl0AK
zPw$Iuhm}gM@VBaq?~W>!U4E-jtKx!9v~bkw!fGz6yQtxcYE75_Q8I;O%$!;-c;?TC
z6fEnysORDd7f(`@%lD?Cy3kxSa8cl5po>8+8oGdsb}rhxXyl@?i&idLyJ$jpTztM%
zY3ZVwD<(r;EnGBr#mvKtc1~NQR9>Qd(@{))41OCIZCzZ(ZtWzhi_2)2ySU;KFRMgu
zE~9mD(a}Xu7gxII<f5~S9xmE+LKhmdNa^aLn`9x}T>|9doKNl3mnf7>;3^kmmngkl
z^mc_J4zxZl`nnh(t2@hR{ajq_qQ9(~WwcXev}$FA_KPK}gIx@9F~P+|7eiePb1_a5
z4|g$wedO}s4)m*9t!{tS>_$&VOO0b>v?*sU-)5Ecgxi+Yu5mHm#kDRt=iDvl<m+5<
zpW<}Ka*~V5lJN%F#f2`Wke4d@h_OZq85uDq+rYA7>?_ji$})yGy12>3LoOb6akGnC
zT-@nmri-aAZgnxk#T_oDN&4xsB>Qbr3jtoYOC-gzn;71Ut#`S&+r_-H+Ji2(bi_R_
z?qzn-215jy&ff3h0ZNt;YyOu=NN!$8&w%j$ILig+;YVFOA|t>a*|<oV%^~38aSAM}
zvC79Kq~TMWIWC@Z@rR3jF6L6Hi}ze?b@8-|XI#AC;zbwpT`X|1!o^A#3tc=*`7V~Y
z__eG?A&XqZWwrV%3kffks+YScQBK=&Mp?#yA6E#li9quc$|@JDU4BLw4a#Zx{jqdJ
z<~diC>twlBmTMA)nDs86msK*d`jU&686OvKx!B-hql-;0UUNa=BzVQet1h;W7f#)9
zT<nNn=O~ccX&aGU%Zc(0Y2N5^+S{^ei;KI?DDOz*E#<U#F98%t{QE9GaIw?HR~)b|
zK4OMYg{1k|#V0O4Wy-A;Uh^T~Hi=(bP9ywyIqh><{X&*IWHg8*@t2$j%4r`+W4>kr
zyZG6~ZWrIm^!wh$51dRS{7X4;liKCtN5*+s;ZLquu(9`v<io6;3l;rY<rmHgOA7ap
zz(rI}Bm8P1esi(c#qYAIM5+`muW`9TfUSSJ*ze+kiy|KWa`Cr|oQr>5{Nv()3)h9`
zLU&=fuw7(b{$LEdepW2$McwjRyYd=U^V!+Z@|weGN>&LI>AMJAB$A#137IP8wa5h@
z$vskDqx~^sD1lVcP%OFr<238ygo~3d4!Jn&;y9DMg6OFuQt2^S9(D0cd5y{QTdG9m
zwOOU}Suz@@T%2}s#>J!sO8pAjSx#9MM9|K0I=xJt@t1O*L%2--1c@x_p_qp%9;$jM
z?xBQ-G9Jo$BB~{2nJ3Fqo|vxhs-SU!U0TA`mMRYyRm*v(;Gv=?Mpk)QF0P<e;^N=K
zYZbJbLkqa<VcM{D-uO&457j+>hXHk{^qgA5Lrn>AP>_I_TCz&`rFLpv5A{7X@UXLj
zR?kDeCmv<;IqZg1DWHXC)P{0}(@?@S=PQ3#&>DMa;^CNw;~tuNXy)Nb4|6;;_t3(_
zjUI0D(9%OI4<kK{^3d8t8xL1`=;fiUhs!*4@zB-7<sKg+qN9gSo>&LA^U%S==?db2
zrM-u4KZ+w4uCIvc?4f@zw5g~q?}cg=1wl6t-97a1(9^^6T}t0xLPEb@;-T}E6y6Ji
zD{6$h_d;(EeLM{IFvLS&5B)q0^f1W7)gIdSM}H4ozbR5C6%CNmsFcz+=R`>fLp=<W
z7LM>RKq?yU;nN=#T1XY7>GP*DS`tk3Fv-Ih4`V%y^Kgxa>pV>GFkZHj@>&nyTrEuf
zwQ?aPQ20d&k5$wrd;InVZt$RZV9rnRkn!+bMU64Po*TWA-I=t1TrKVh<W)UUY96-i
zQbzO=FvZ?XUpzeSA*`rP^>C|)yFJ|FVVZ~AJTUX`@GzZe=80j&akRCf7(33-$_!6D
zRVRF>hnXHmC(53R8n3%Nuq5%l9`5t-u!mV5?)UJ3hX*~Z?<KgXix+{1n3j1OdHG!X
z5f6_tH~0qxQf!e*+H4PxF>NXdX(Yb7lJ;gVJRwcxZ26RjxgI`YR6We|@U(}QJ#6ss
zjEDIimU>v`iRI-256^o1b_W)Em|RJ$jtVna%slLfB^(Q##Mt4zo@0mQat|v!tfQSC
zR(e?FVYP=fjF?;=b2-6#_j3%z60r;5Mv1^$X6ckJ1o#V$TeyAj@PdaIJ+WTmZTcnV
z&r)ShCGCN&let0I=;0NPJ`b;Z{A`F&y}FgUNdmN_NFQ)vu-U^K9^Uh?)x(<}-eMBg
zDSX$%?`74~!|=9;cc`M0IN{{f%95>HBn^M1@IC`lN&A4>B|!OH3GAt)edOU|N?TLN
z-(ch<?=~uBf^kyyu-(Jw9)6%-o>)2TV7_@`ckqRWFFlm3tnDP_`oga~vBKnw24Bl6
zF%|DoIBR|D@!KY-Us*eIRQaA0$P!`Ij~;$vzIph~6F+YG*~2e%xuv?BqjKxyPL;Kf
zE2w*<<3zr@PuWWcWpy9N_z{(o|B&<}%Bggm%jQ2ll$Hd4d-%tL>%sGIz=Q6=Wb$*A
zmDUVe-Vt0X53ej13<PW%HWpbAMY-S{lW}OwK80Se^gRU3a1S|Vl!r)qmw1RJaC2qt
z(aIWE<0R(Aw<P}c@Slgn()WYRjmp|Pm9;~XnD0t3EF?Q}DKbYnW5|{K2@fYZu6<nN
z;}mBqPHR5e`Z(j^EazJvb$p!jaNa{XALV^q@KD4@Ngt(r6!r04Wv#d`JSs*BdEKna
zqTefw$&~O>q>4r$&llT-(mu*afIj{^OwbcqRx&oMqV*=FkIFu(_^9Zkl8@XlaZRYA
zk*unZYShJLzb`^Gvx>&6y5uE5OidrPeDNLu#j>pHqn?k(zSu|1ucGDqsPChJk4;rH
z5-=YMd~B<tHS*EW2e()7#jTAO>3Qv~qBZf+l)8L0_t8qqY2hQOqP6tFu}PrgVzC^$
zNZ(o#5YOsmK6?A;<MTr_xWY#}AMJf~^U<B=`ItNooqTlm(a{I9i+M<;U3{^Lt6x>?
z>SK2+wM12o_)b-|9zJ?XJFj9FED>`8$*z=)RMgAI*s2-<?kidL<rhAEe)I<Y=#h{9
zK7QyZ>>1#LECi;E#XujlpYRY_4)ZZw0z+lVIE?Ty(#IGdOu|t<rd1Vl5%XuXgjr=y
z@*2xNx<_I1jQ9B!L_ERh`MA!<1RwYL{Gtvf`k3V779UgTvJ{^2aRWo=V~USCRmI3!
zUsb!_2TQ_=4^@)g#K<gGE*hyx%#E@nl4jq`9+xiPN_%|V?qi0Od7F>vl8iJzSJnE;
zj=00eoj&gJakmezs&=-jHdCr5P4#NpJwDo0(|Fx00U|G|pmz`Wc*qxH@IhI&8!P67
zhkeYF)khfNYT9gBJ}OI6KIY?b+4|>xg;POcHEoU@3(xqN@8c;Sk5<#>GNoIp^BCb)
z>eIfMrg(8%P1Os0EcUU)$3p4Fs%qM^J{C!s`M?k@^|8#y3Lh(dEceB*B`@az0vAX3
zDj%yEoN8jQ6Iswoyq~q!$2tb~Ahd&6@8fwNUnlq`!3#cK<N%3~AK@h*FZ<XN;MV{f
zd~D<Z4^Sb%D?VQJ@wbnEIBI;n=Hqi8JAAzEV>3PVvBk$5Oz*LH)5lxVcZP-Y?b|-y
zVbU&EIK8mS*Y1Xl#d|)sGH-o+;^TeV>ElDm!re5Z$NL&rgTGYMKJvx<&tt1y`;<>9
z#20rT-nkf}&*)$)b-OGHeAr6;!pE0Be)93NkDWfg^6@=$-UkmczV^l1{u|~}Uoo+N
z%Q=ceteP16EJsyPDU;LYqpj3kzPK~~C=KSEzguej)yHqX_$lBojEw9B(s1bQ_3^up
zeLnv5@dthXN8Dj~L*xNPUUhB1FK$eK`6#Ha@fO)<zw-DZaf)@ohwkGnr%)e;57X!8
znDCzu%ZJU(^x^x+a>Q|#s4mVHXof4zsL@9ZRi1hY?LI;uk&n^UweuZ8$uXxRsgVwn
zAZ2zj2^Wc-?6m3{k-S+SWHfvn^>IjAOM?$f$rO9c$8jGgIpK4nJEENMLCbksMG16@
z7lG5f1<?I6V)4%tE%xboPX0cM2PhGU0a7GDu|SwdH;V@1+>gL*a)VzoK&b#_1C$HI
zM3)z!jASVtfVW^8z{!*M){8e*u041MWbafAP$|HZ0p<j#9H2^ou>r;fs2ZSJfGYyD
z3s5~kjQ|MHC_v2swE}*M3iSij4p1jRy+FJy#$QS=tgaEL8{iEId|O@PPxl+h)`9>H
z1Mm}nb;_vO>KcKU$Ek!H2WS$YRe;t3&Q{l&2526jg`{jo18N9?Edz0nYb{~Y5bj$;
zYZKtI00elomB54=+U1up<Z2(F1FHf01?U){Q-JOPdIab!?dcMrYk+?ah_4RLl9HQF
z%yg4Y1bPOzGC*%xy^0ZNQ`mJ)VXpuyBqfEvS3}!XL+cZOrCme2IzaybBLa*JFd)Fd
z07C){4KOIcg&NvmDW_&ljbWiWvJaD(9yPV$61a$DbyUE&>DAE^Ii{xYeT;;s*3^XK
z0mcWoF~CjI&1(Zp3@|AG&Au+cgaBk=R2iSil50wU>uJm}rBGHk^~z)dbXirX1W*}a
z2~!1wK;+oc>SHxEjk8cqVdTvLZV7OAfO`T=4RC9K+XKu9FpcUai@4n;Ws-4vfG=ul
z=Sr*oZpE#s-4S4BfV%?R8Guz@G$5~*cA!^At58UF_XfBxz^nj|1h_xI0|6ci@UWEj
zptP1t{U)`vt7>V74~UE%UrR{f^=N?E0UncLFGlQfnQ2c*UdEQ!UA45Q0?ZBY5r;s4
zc>$gdus*=^0iFpkKfrQ!Vt@rw(V_s011t>itgP}qoztrdQCeLRV5yY3j5%Lg#FHld
zR9a;Yuv{5nZ7ppz2?DH=WOSS~zjd7QoUE>s<yt9|NP2N=@5~DUUJUSdfOi7C6!42`
zcqPEA0p6>nZIJXErLLcAiQtbbqHYTC8odkfrfhvZz-9?}wM16%Vti;V4SOpPZw~Te
z7rZNJwgz}Vz!nOZ1Ba2nP)p-jBi9E3K9n>J9c^Y#)~v0465!JS-v#(Sz_tLN1=uNR
zF0ZX^53qy%%dD=geIB5&_Wu(2OG&^EW%5((R{_2b@QoZ$-^wN`C7vpnAwL9Q_2&S)
zIbI~p>W=|_k}!LgF29_o{=%@x^6uI~=5GP^(#R0wLw=+JfAAI=qGE`B0sai|Z-D;-
z><{o)fRGc#io(CCJwP^q!@jPq9SC3qFlCcYvNH;4mJBbj7@XP~;TLLawuA||k}QxV
zo4f%2C6<efdvDG}vNaBn1o*MGmP&%0gvr9|RBQF1q&XJgcz{Cz4hOKLt|I}C1~^t*
zD_cjXCU7FaNzUFON`yES;B<iVoGUnG)zQubI49+ty=2b>$u*;nRwTro*Jp}`c)pHC
z;OROVfnp)H*3pLW$!~~KA<Bd(8-msE>u4j|sCgkuhax__8n;pPIvRseE=2hdhox8|
z*;FY+<q&N{To$5Ah^is#hWyALs)Z<5SE~`CrW8^=1j9x8T2gGcHfn8&e_<@@NTqD*
zIxv$TqJD^`A)19~5TYPNlS?)<41o}hLNu%^<aDa5HI_|nb<shrF1S9!@HP+8A_RM+
zwQOw}q7_YQuMUx11W4Q_#GDE0nEn~Umxs6_#ML4ChiDh_Gl1wGqDP1hlD%_?E)wV%
zqLT#3!Z*!Xb`8<(5{B;$Wo{ADdWN_%MDGxNLR=+VzZ)xJ*h|7{8}(w)ex8`=D>3~-
zu#XnDQCSWMF)+l?5W_<37>hw6KRk#bl5E3RF#e1cB~aRMi5wYXREQB0X4eouTK4al
z5MyOXH@8-qJjCBvR~r|CCE;sBTo>Z)5bscRh>0O)hj=W+q!5!s+!f;P5QQP8gt#Td
z)DYK)$b`_y9^!^jyzS0c-PI6Eh==QHyollTk$my|CMHr|{>_rC$8%!a&R5QF4KYn(
z?g(*Pi0L6_$m;DO>QpFnuM=;|6QGcPCaQ!9+$jlWh9C{A_k_4N#6#35tM`R?AjF1O
z#hdT<OU&xJ+Jh1xChrx6LS}_{B*eQz>Kjvq{CX2IkA~<tJ@Y~T%;O=R2(d22`Vdbt
z6X<O9ZYx4O6=H6PXG1IsF)zf^Qs9CR_r0Q=Kd9VWz1uS(<}+N4rtl)mLdi&t@7L89
zhgcF~S;((MLOUu9;I&k0B=Gf`!qp=RmYoy$l_6GzSRLZe!3AqVJV!Hz3Io<kX(gs-
z<{T1alU`At=a32Uy2QU2;-wIqB>Xac5AiC6j40U1d0=|xl@N53*Wks4)bdkZjgC_Y
zF|WxUd9Q}LIm8<w-ee>t{w;~8u8WlKhS(Cq3SozMkJCbkZ$o?+;{6aGg!nAPcB%Tq
z5Fds3Si<aRvVRidQ>oppt35faV4DmYzp+_!h4MMmIK<Z>z6o)*uJ%QUFGK9SNH8Ju
z6=#VFnd7o|9_cTDA6FG#G^WCN<@*pnaP|)IM~Gb^ek50jJt2PLOnzMXSsL*Bh$(cI
zX6%+SYuD2#<kt{;Lp(SIzlFFcoO#GTIywUT81oSSg!}@hXxh(7=GM&LA^wum)=$Wg
zjM5l4e#SwkQz1;*#N4j;s<>0H8&N=M*$_^M3n7X`a6@<@4u&`s!e;`UQ=$+t=bsRv
zj4)+V*Ma^>LZl)7l^K$gVyWo-2wd#$|D+3UTlHe~aEN0xGUO*faWn+!DS_XVpbaNN
zoD6Y>A!X_wQdW*AI2GcwWWS=GM)L;N)0hC~q>A&5SY3^Z_<;zTQ8Yra2vs6fjZi#7
zi3nvPl#Ng_!iy`FQjy3*Ui_v+UWC#SrqvU?`~U?5RW3sL2o)n#io^nd(kev4Bwpmb
zYx@-T-P;q@%0g7(it94fB2<r1J3^fZHKPCZMJ=hKW`xX_3NzfPt};GUL0%5$y0VpB
zP(MP02=~W$AVxuih7mrD@KFRrXcR$<aASnV5t>BkA7Ma*rV*M&{INYcMQ9$OMTFK7
z+C=<E7_lB`NgK+jts-oyr*W@A%$|B$+X$COxFP~q$d^SpTu-Z+uaUl8g!U1-OZby9
zY6l6kO0Lckx<t4tLazv2BXpBZJtA=B+&vPj<<a?Ku|y#~BU~AQRW2;K#v^a<2z?^4
z+381X^DpZwP2%c>iyW3$%cco?1?9j9gUB0UjFd1q!mtR#Be63YBFmu>Zpqgk&DWmG
z*G5Db8DW%U|14iK^2IX#SiV-FzBV?(IL0%=_3W<*<0DLrFew7buBGGkwd*7o4W1x@
zc(mA6?aNaqM_@@K3niX#E>F!waQHd0aq0~c7+7CZ7_<Z8jWCrxQePv@O%ZO6Fh9Zq
zTFAggxF^EB5pHE7MVKDpb{Xwi^);~zh`_#BUSH!9cSeMn5&XB6JEZV8>T7pOPq~=C
zE5h9ozO63;%Wa5JU%QWq5n*<O$0B~Q77t1zXUUR&Jrv>L2sDP_qHU+^YmY>DG(tfG
zt$PC@gzh}f#E39A!n_DiMwk=fsR-9K(726aXWc(mEO*JyeG`eFmXf(yqs(U_xzn7O
zSs3Bj2pb}7jIb!e;s|Ratc$QD!qNz<BCMvf7nEfYmPc3-iQVW!4YZY);z{}I8;FeJ
zzF-Z_3-FxGA5ksWox7y<5x#7oy}+Rq;rR&r8;GqdjbZCc%r_2%-eQr=KoQA}#w!tC
zjqqlKx0vJ+UW>3<>SceuE|tz6hO)ggRQiUjlJ~y`+S?J{iLfQYdlE_Q?=rF16mpob
z+$xbDL}KgxzJ$5aV_0}G)jy8#3CDGenlV0&u#MdpAz*ez*dF1x2zw)Z9$`m>?<4#W
z;R|{c;j0K=lXADho$}5ItvG~h2^YR$lFMDpw;UIP#rJtQF20kLe6x?%?vkVI=LkPu
zvj3+DgXMl<cZ6SL^!CW6UnR^z%}ou5?e7u(h+syrnAH*fjPQ4ae;CpTO!&WK5|%2^
z7;QR5Mci~BkaCO&dL;JXtqL@j^qSdzq*umfsEepxge-G4Lf-<-l^TiUc%<bF*SY}+
zBSd76P$WhiA&GE|b6|v&$tknwP=tRYa3l6#goDh1d~IrhVCQh)cVZV7Xon*lVOJJt
zG;c?Nc2sr*`}#zLlM&8Ph_v&REKk$5g8#X|ae7XUrt=(ny~QnqLe3V5fmSp|u^8oJ
zRESYLMu`}uW0Z+eGR8f_z~NIW24^8!l^2W2ieA$%mXujGM!8tb3>>zM6{ArxMx_{4
zV^oX9ZnSdDzm^kuTf3pKWNUSiuGM4oZYZL+prJOUp>|J0tyYZMG5W_C5Tj0vx-l+~
zaYc-JG4f+HkI^DV{TK~mG>*}P^M8znWND~Dn#56AR_0+NiKJdOHI2pW!EA39V?#qR
zvY0<CTgGS=qjiinF+QXAVZx~^IY(V1ChffqwYD)Xi@|Ipo@X`fVziIZEk<`*#mPTL
z=NMgLbd*(MI>q3<gTTKHwXU&<7#aBiNtQig^o-FbM&B4$GNjP1iqR_;HyyU}>P>&k
zsAMP1&2K;H&eamh8T%p)$MwJ%gJLK#)EI+f42dx==0~0}G{&$PBV&w;F+3LbGt?tu
zF%?|2pH-&8=on)dNeF?|HCAe26RYECaE!tjQ({~vJ(?I}5_?=qW8P8@XJ#5ncycTT
zeg}x5K_S=2$VjIy8h=A9Qj4$_<Hi`b$Cx1%-9&thX)$h&aZ4<YznIcfWfP_G&Ul;b
zP>$T`oH}ZXt|Wdav^!$lDar1UDKs<2T`}%v9Hb*m$cx7X4??>)#(goCOZ-Ll2V*?M
zlul4F!NW0T#rQqOA2A+@@o0<}W4sh&c8sIHPnjQML5#;@JT9wG#CR&k+!#;Bcmvwg
zS7+wL&^IaE-_4T*PscbrATzsPX88u?8Rpw-%JjkvKRC89#<R2`#tKQcNR~@uESA6$
zS$+wPa+Xp4;jVqU3hgUt$>FZ6>1K>ovG}GL$0qU5#aJ8jFUvv6>tdYRp#1il(!VR3
zRuiqy$9O?D85<OSZ<|~%Gs$Co!ihJ=#u%@}cr(UZF<zx>%au(rUSsAgF1&sUUXL+)
zg7`4n8!^8eF5pd@6qd)J)o7%>9pfF2+!$M9yc=VSG^zb-O52S}%T)?(rnTgKKgPgD
z+D9=yV0w4Ohs>Nt!VH$bpHM#LBJI`;tJ^rlV*DIqcZ}^ZK9BKL%rBV>cXq`1g54^^
zLQ$LK=^R;hO34JiiSccWA7bo^abZyAJ88-HvM&a1ROmQE@neji*pL0hgtqN)*O~(}
zTL*~`Y5pRKe~tND#IAd!F&EALEyi9B?flC!T?LogNSo70+sD~BMiS%C82e-V731$1
z*%(fYe_|Yn#b(ot(QKpu^cV&QOLeh_o!M6GOsyCMY<5;7jTbSlWbtDJlG5YgZ7}8H
zn*Z}gS}0p1*~FFkAC0s$MlMEPf|XM<|Hk+)#_1SmVjPTdD8{iE$739hL1He0k4SZt
zc9bJ}dS=6b47VXCVsN8$Qqs^uww{vmi!>JYoQ-iVMv(+X6P%A>u28tHzHrg66=J{4
zYOw^x6O>F)DiQ3ITp|I5^I~<R+y@b${iPF>Nl-QsK`57?yaf0)_-2j8uD`d`SSdl}
z1Tz!dm7q$3stNig=$D{cg6av{Bxsx9+QwRq1oaa%NKi9Dtpv3b%xJ9DNl-TteZ+gp
zGmSMaYwIN-kS|Me5iUs3FhR2f%@ZI&qXdl;G)cg-K5{V`UT&;4P4HP`QT@BInCLFT
zEvRB?VXFi!B|w;zttEV<u}0ySCAd66mjqoCTtV-eXdM!Cq&-cvb_v=`vq?6hiIChW
z!Mr9~=L9!45sR_!o2&1aR=XwWp5Q7elaxIYTq(JF%94H&xv`1%O%ttGg5FYs-b5o~
zp9Cz~dUb;S39d;nKEZ$l0~3spyn_-9PB4t|X)1y+B*9SWNU^3Gy&xk^8ZPzHJjQKg
zf>E@&DS!Hcu?cQ!s*RCyNH(~sHcnz_zu--9T>_1cB$$w3VuDP98xl-PFq!?E;CjhO
z9}5$Zp7)pPx>y=fDUEr&siq|Od|jcMV0BY*XQv8EW_eSBn-fe=aC?GV5=>1nEy0$i
z+O4uT|6jMhQboP(QjhFvs?A8?HP!A&aHot9wa}xBrc&nJ3GPX-KEd+|?oDuCg1ID1
zaDRda63kBUSb_%=Je1&3c49N_VJUf5f=8JD6uz|ZqItEOX_vQG849khA5ZW^f~Oea
zX4;bp|Hu_g8)~OhBxVdRa?z5fX?cPr36>_9pI||Pg$bUODwJj#B``9)$Vhk*Eor7L
zmL)TAS%T#ZQGzv;&`et)yI>_FlP~12l2vvSwLF(#ZGv?PvduL1@8)LOSIq>?#Wa2)
z!HWsDGGP+D#2!hoIl&tourmIyCfJl<V}e%_aa7Jhai*DAM!qJ8)$7t!%3(iNYp(H&
zTW=<KE5SPn-c9hfY;E0KV?VOHsc}mJZXu^O*WRPdCfdN}!i?F?wGR?}$oM4KA(eiV
z;FAQOCiqxZ=>jEeyQnL{b_uL$t~Dqs){3LMsO-%z5`0Ms%{9h~S;TPdlw>sZD+x>*
zr+%B@y99a;Mh@R6_#r`(B2BR?!H-Pu6r)r8l;CGhGAXL1*v;uH!NCNF66{IvYXX}w
zOz>NRy$Swew<h>K!5<0!Ot7EvX@~Ah3-_@L9u|i=gttGe)ObX>i2sKK3Csi*Z6H^3
z?Z4)l!2!Os@P+P~$+HxeZ_ZL!E!#q4>2MZmp@j*e1TJ$}R!PGqpHJ<(XMzMhA67^c
z(~$(rhO7S)^Qe+0$Z^t;LTJWY<+~I9kNr}<`zN<%?i{KfPH-eaUW(EwjwU#k;2e`V
z!SMtq5}ak`j8IP|IF;aZf-?#J9jcO-*R?IQZ|kcxfF99D+Cbn!f+8u3r6`^vJ4v`!
zG)3pa%*+;Avsp@sROl_4qLc*Qn<%P>Z_N}GW>}U<Q8q>86m!eumrJ3yLq$neK1GET
zRi<S&Pr{^;>Vg(prBqnOtN#~Ms-*aSB95O{tVyVzqDG1?DY~YpnW9#T<|$gFsGXut
ziUuhPQq)ZmuPDq<QC|Y}QoPYZ++TR2$omeDhS<u}yoM<nrD&W2sW=VmQ=sw|xu<%!
zCaJiKHBH6ACaZ*-Nz9%WTFVrzQt<4Ha$2WolcIf!4k_BExGcrxDXvHnv4d6=@*i_Z
z!;{{2l9w356xA`s!(S?$QWR||j3J(7=M+3GB+xBI_Y?zC3{24@6~|&%rRbHSC*#Tg
zMtnuNl5VyXgR6InJ}Iu2!k=HE^i9#JrPfbYc|dnvOYOq9z3*tL^-smEc0o(w{-6{?
zQw&QnIK_|@Jh<lhD#hmI<qwyPBc+xRsW_nK0UcRhZK?4rZcK`?DPBnNVv2FJD#gMS
z&!!lk;@T8<rMNrAbtxvKP*SKVCZ?D~mcw1Aq?jy$!vC-2qLfY7r^uwZAr))FGTj6*
zms>9tX0#MHrkIxEHraGjid$0t7l|OaIR#f}^nKwb<<?Xzq`B-Q%qFhWrl+_)#f%h$
zDf14=K2tK@DPb;Ci6<B7?_uYrcs#`ubT-BPDQ2a3B*g<M9!&8N`$#fUK3QlyOTuI<
z^}6zCir#toB{nIKrTohkVHlAtue&wFrRkF?=A?K!#WN|MVxFhi-%^_=$<o&p5`5lL
z$RY9JmfHLj6uy8Hkz7=hpnNNBQHsSW)^KW?tt_FN%L|vLSawO*@)Rp1auox}Cq$1a
z8=p{CreOK;W6J6jc6*e2LTS-TdoIOVW>IIXV|T1lo@b7w@H=6_6AER%H(Ln@WnN10
za*8ig>`bwNLS(kQpW>Aiucmk}1)oH0O7U8XH#tsIyq;n+N0TIDk_>Gn@~XsN#hGJs
zU*&(ki032ku#_p(d<wQmO19qAO5@=?iTUJWYYLX_M&g4MAIil0D8<JqK9O*dkp-Wo
z*p}k+6g$`{tuzk9&r)np!P9Jt@@t4QUS7>73g8RL#Z~lI6w7F*_$%dq&EQ+&nG7ku
z<Lr^*N5)f9{=oU4$iW4Cgh9z%8&e2J0n49x3rP7xBjFSkebGvc&|g#RP4Rn*j+4~i
zQn75N8GoeMm*UTqe}G$@WVD%-#P4e*j>`W|@lOhe26JNJESJJeVWr|T%RKrfr6K1Q
zMvpewsn{Jf3@3;O0n)-xmMb26Dn*zIe85h8PV5&5^CEkcf?nrZX|aq6fn17znZr3e
zlEZ%~4ssgFp+^pfQXJ-lnM2JS{~rfOc?-y)Ob*9V9H;R)eu@nzXjqDKDbA-T*;+fr
zL9|CXo8okeGZM3ZX(2B*HEgYY^ow#KMUk9nEk+fswehXBJ6mf-b6~lkwN^ZbX1#?3
zQkKdgk1BeDG*{&WhA>5y&7oWlm2#+@L-`ywwbm-;@FoBMF^3(kwSBF%KlUi6df~H`
zg+!hnQcxv_syS54VZ`0aCtWkd6R4g8-;N<rD~H-Sw9KJZ4s~*<o8#a5pivI>a>&o2
zK@J6^%z=!gr*`ccJhMk>C^b_4@4YiDFAOPYoWtSPT9X`_%BG5Kv}RI8iyXSQ(V9!R
zaT|@q{Du-St#fFT!(};Kp2L_nTH73^w$Wy{(Fl{~iX7VI&?$$`G6L;$=$OOmHd+T+
zG9a{MYa3BACS7vqmcyP4O4l41sNHQuxXSj=u(f9nSLQG!hwDWXdgU-GhtWCo&Y@2Z
zgL4>?L*E?w<uD+JfjL~ALy6w#&$6u$615RG3ziK2pqvOkJF%dx&^uICN8~V)4z|^X
z$#S?X*~;r0NmgX0GA4(yIZVu9l4M~R$K`NM4&!C@x*R4*;96O(|5#D;^2vUOWS^YF
zYm+mDIed48=;HZpHCAWMR5Cf-ki%^`OwU2dLCyUiPu~G8MbWekA`%o46ck1AL0?eG
znM=+&=Ws79vyC8#0Sus^q8Lz-97Iu3M8q5j21HTJ0RtdG%-Nlsc6WC9pDsTBbLP~k
zuBooBuBxs{-91nlOck~#n<(0xt+2|K8BEJyx)kZ7t1_6u*c(ufqGr-fO;pR-##_Bo
zCy;A0xHf~?8O+JxI&tDX>$H&T1?R$$Lrv5T8Qhq`ybNy1z;2>$%3#GD<7SQy{_<~*
zK{!|FL~fN@HJd8Bn{YmZu&KJDsk%LbJ2Lo$-mg@5VFq_*urY%tGq@{*MHwu~;Gqoe
z&fp$~cl}9=>6)hMUeS5*5be<WGAQ?chpA1~{TV!v(JNo>ZK@v3fRJ4#TuNewzi`5u
z43>)yD@Dl_C*T}|I+u>dDk;)dYZ*})Y@k?v|IJ{11_zs}M+Di}R6F|ZrizqDh0dnK
zrs}Z_9?#&342ZL*gnb*OpUPlU2CrrCdInEtusOqDc;H2`{4;c72G3?ttC_aORt9r3
zE&2Hjo)f1t(pcodNO+0kw3%wDQm<z4GGnq)`W1n+_Um(up9j~Q+DvWBV0#AdvUeHG
zZ>Dx+@Ky$IOJ{d-sAlk{(CHCsPKI4HY%_JqKI0wHhd7Vj(ln7h8N8pt-V8pZp3T&|
z&D00tP<E~SKI0>%!NDmWA9JV<taq@PBF^P(pJwn`2A^l}1ua8SbYhS6ml=Fb3p`Tx
z6~`k}LEWZiGgYm*y0p3aCWCJo13mQ?2j69|KZ8!q6>-7?f^#2+Lm9oR0|Vno28T1;
zJ0d-@x!#|FTPqypsdDLtJ@I1(KhcsFYFqd@gI_YZ#>BNIe$C)F29=2>CVtQG$6Kgm
zqOyrUGx&?1VxrFA?+pIQAd`Wa!M_>&xZU_K1DcvgLw7vkjONN>0F!Nw;j`mRP^-$k
z3@+}Pa@n22_z_)Gge2a-!#HbVDiBVlh&Y362FDpiCUP0%rD7q2ghIOODqZ&(e{3^|
z7c;1q!NTT>Ldu)?tT`%}IMu`{=Kp2vRYt0!soUjonu!NfsrAiu7V5jItcr=MCeAZa
z$K?ONaE6JqO`K!uE>tsdmWlE=7-yQOE|lm7gY**}tYKot!$wV0_lv|@BL7?yEp9Z}
zN^KLbiavi;s>|Z}CN411z(hk6bxmAoqP~esOk8B5o{5W1RO*@{8!g5Np)?5Pv*zlz
z=IZ0^#-$?me<nD%D8Kp+9ov_gxZFe|6HKJ6(r3GIg(yiIvPh!UE!EUSGZRBi3^UQ3
zLQHfv(S>X#TA65PqP+=kN~*O9w$etr@Y%#vTR~`EUNqTUiHVLTlIE%d4I;vqY&S;j
zG&-5+FODWpR}(!=^fJ-SM0Zhx0?%%tdWh!Kr?-hdCI*@qWTLMy^cUDq3`ntzoB=|)
zqJ^SKySGq-<<t-%vZ!yfw;RJvj4(09gkfT&$sdzpyom`Wp5AASHZhjM8>Q*)F+$-L
zcAQX{C75R>nkc35*OW~*QD*8(&xuPw)$XZD(&Y(xZP=8Ulo!FY31wosiK|RZHNmWY
zrKwXTQ#~Q`<TO)f%i@4~l=)9{%rG(2)Y<!L6SD*%KCXo#WS+Us#PufLF|pgkY!h=#
ztTM6M#0@5HG;z0ydraJ9;${;IOx$K-u8Daj=8K-Uw9v_o$1NO~`;1$Kc;aHs+n(D^
z+;KAS7Mi$I@ViWXpTjD21Rca<k@S(sy(aE6@c;*ciNzv{7w8l6?`I^`pTsNX5)%)}
zsTC%cGD@4MWhP2?8mmQ<<$^QDNLeXttj<7MV`8m|ttOr`vChQ9CY~^{(ZqV;dBnt{
zjCQ%xxVduO4JIBl@wlA&t3{d;*tM5is1ujzC+R^Gn@v1rVw0(FMaXcXN6$#>&vK-<
zP+P=VJWCD#XrU<Kc@r;~*k)q8i5E@eTc}q!7)}0@4z*jVmjyD55`RsaX5U*gIZsKw
zE@OeM>@cyDsl&uBVR%E}o3v_6?S;2!*hY#sPQ(WZg-!S4wZp`FCNd^W6MIa&Z{o0t
zBPKpDv6uRr_}avWCO)FtCO)T~O?+bFQ(B;-Zk?8-z-cYjoh{V~{0kFba_BWuv=UE!
zWnzOgx3i`C#>BT&vZXp`;yV-jO{7+p9gvYi|1y)%P=riA-<vpOqPWfAmG`bUj4f{%
zM@{^|+-~AG6UQVZelqbh1-4W_(mP#s-ez;W<@-h2B~J7HZsHF*V!QD#^S=bxUnYOc
zg&xxAe=T+H{m0br2XyPL)PE*;F!or*GGQ|tTc}{^1mc*8OvEN!8r+0$B48$LrAk_<
zP+DZ-Vxv45Y*{9M6CC*EE##SnOca=Sn``5<r|k8bJ*7nx$4!0dA)QA#OEd87FU@s2
zI@Ll&3ujpTX&_Fsbf&Fhp(+szl`V{FrK}wWuO`>DQtbHY7VZ(`@RSsD@0k{=Tc~N_
zY-(<4lhzQ(Mz86fVnSHT+kOk*?9}6nrXT|o<GB{jv#{5~hZgEsINw6rg0gUdg}N5H
zTj*ioLJJpJXl|i}g?g604%WADiG_<Tz`|p#6r0%5N?Y|(p0#kfg)1!Nnxlcme;R_G
zCEn1|e!pS6v9FaPb0Z6lEq!rpYH5#OP`N`BDZa%^<Tm5)R;roM83QdX?A&Rvza<u0
zS!gY6Z7j64(9S~n);d(CzhShe&Xqg7FF1F#>R_Rxg-#Ya3x78YUD%P<ioyxI3QmMo
zsKeNf=xL#sg^3nQE%dg~$HEicQ)4Xjwb0MPFbl&i^tUj;!XOKSEgd}U!a!-1LfW@h
zV>)UDhFBOXL{=Z!S`m)0Fp|Dw6>%v0LbuXiykZhz8fVwWTDYOL8fRg=g$dGe>iK$W
zwNx}L6F+{{TBR&Z;+@ZSW3oUZgWoWwSfJ4iQJALqtF@YH;Ytf@Ev&OJ&Ej7safgM4
z7OrBjS-8o<%@$@_xZ1+C7OoTFG{r3O>@|%1Hi{#QUcTM}b(?Krj_@#y>EatK+$ePI
zyH#amBhOq5^DHc|aGQl&EZl18B*4tTvt%aQe1=mS6-s))oxW?MqlJ;rL3gKxyDU6t
zVF^vwMlE7gTe#Q4-Qqa5GNX-R7~E%Jv4#7^@-z<Z&l{=-EWFcE#}C8cAqz__thV$`
z*D{O0#>NT@E5#Sf1ya;1`tA+mL>0!&ooy6_tdVw!JZxdTh1V@?v+#(8M=d;UVY7t|
z3~~z_Ej%fGd7P%U@Oc}xzKwdVjrzTf;{6P}^OPkygi*9ztH)8sTaITeY_ag7g_kTm
zE7hN~@Vtes7U<BT*nxG=ZL1CPf(4q02y@iS7GAONss#=fj+)mv0EOp7`l2z(w%x+p
z7Iu+`V}#D_h&L>}$#@V4^>3?;wu-grAO_nz()xQA_E=!@+)ew;G2XTGO#+ekIl6B&
zJ`f(>D>6~@#)g!S*eRw68+B}aV&PK@mId45k7)5Z@4zkmV&Mx5Us^awr?XQQ_F4GW
z!gm(FW>maZ%Iyxm;Rurbqqs*Fk^NNfpmBiSd98F&cih@macdebWIJTxu!W-*ez0(a
zUE}KMUttfK#GSji#;yNAO*uy8EpUS-F0J~>(yPW+x78aj{A%Gh3mK`!J^X*S@Fz2m
z1>%3u_-)lEZPniv{;}|{h5saqxckK4ZS@WnJm@dNd#0qQiAinOm0f$xa4fh?$Tm*1
z;aTuGFfAOn5Lo(FDzXr>%iJ%~(!0=;lC^M3JC$byGW!V+x9q6fP89^_Rt&@1skZGD
zIoXkNHp<&L#ReCtv3C`0y%y|LTlbOc#YiDCqn)Z`qq2>vHcq#})opuP>s8WKgl$nf
zb%u><Hfq?YY2!>A)opMQI*r5q{LixWMrZ67<*-Qe5;@z(Ia0Tl4Q}0buHdx=_F7_)
z(%d)Bw{Zd6veCyzT^kqLXknwJ&HuEbo{h_GTw&v4n?HHSr8fR2b-Bw{eH)hu&XsOl
z5ziHH4XE??MnfBy3H=3jyo&Y|5t_G=jm9>bN%v_1a&mW(CN`Sd;CgmSAZ%`H|8mm|
zYTn95Ya5-|K^tvsw6%2zbzt9pqn(ZRHcD*mH8w%hvDXwxyrW3tqDU6I*yt*?df3?8
zPIVLYx(g)#Mpw7k)7JaBQORDS^DpgGUmN{wjI%M`Mt>UvY>com(#Aj=gKP|Cqc)Ou
zx?gN=u#F*7k(!)X40yuq!)@*2y6x2{TQ9C0YlAzajix2@Y0}5oddCkUB-Y?=Ha$`k
zY?RSKHYVCAwXwRj-tg^LZbiPbY_bgwnJKp3p^mjuHn@u#?ZcuWa=3hQs*Njc)bdf=
z$21$$*}98!TwG;ihK)H6Zg4Qu#?>|g8=;L^tZ3sk8?W2A*2Z-<9<cGCjq7d9wz1I0
zovdZ!1{-s2%(HQ$tzXXEWaDNVFZ8dMpKY{luitF&7}8$dV&hgDx7)bG#(WzKD5|}>
zjh&ri%xbTAAF_A0K~CbNpQuG4ciGs~UM;e5w~cq3Yn%^9_t?1C#(lPamZXms)3)u^
z{Q{4)SHyYnab}5)hip7%<8d2HZ7j3-BVasgW4VnLHrCnTL)J=)<<-H)8WwHj+AAJ>
zfTbKlwzbyQnUDzK!-B83^#dA<bxL$AyrOMj{J7&MPfR^wW224DHlCqwHky~Hr)(VV
zm7*#5z_m$mcI{~noY}^o_fOhl<5?Ro+IY#vRvXVT?D_u3#<mIii_C@zDZZ}kTcTcI
zizSN0mu>tws2+*0a0rwrBCiVb&2n~|jqMB}^4Qp6W2cSJZG2(l4I6K=n>OC#*k{t{
zoqF5GE)lh~M6ne<1id42*u-u@o+(j#Y`kydW2Sc-ABdIq+W3&ZYo;y3?(Z&9ABn|U
zsuYdJ=hIJZd}ixgAmVh*&n5a5*_SrHvhkgb{mho~xLU4*+Q)#m@r_W}Wm3MSZ9Awl
z3gZvhILM=^IznqO+iW-LbWn!`VTL>`UZxxhrx%Xe_`wD>VWWgU+4!0LZJ+v!gL<Fw
zi;X{Q{AuG?8^4LWckMGec2K|DAS4^#q7Ww>-a-9s;~yLU+W61r50~MHvoZorny!hC
zNz2Ah5~YNsxHdZUPWcj|9z%MzK{_LuoRN)~dCWm`2U%Ll#(56vILI?CFt<23!$HAD
zk*VH61xNo)^0@Y$QQpB-9aK4i<DN1arZn+X2NfMu6*dx2b3j;0;EGhbvV$rP*7Z%D
z;3vF0r>A_gVl@Y6IjG^_Ob2&%P&`##gs_R44xa3w&JiIWbWmqI_^pE?rIv%*4$h@|
zQe>42JF1Qy)%gxCaB!J}%N?1I<e;8|iyd4js$L{=SY={I1qbyVG;qLLmk9k*2h@}L
z+}u(9Pw2$gc2rcOp`4=ou5b`cPB#(Q=wweDi`ryv>fq&$ipai>s)d7=4u(4z;h>d+
z)((0(=<T45gSHMjIq2-5owVEDL5TyqqdKjV>L4;3bkdD>baa$b8e8lloa|<I2VJFg
z(z`kOSENLG$l0DJc}VHwpsy4Mi@<&kD14BE{!%2v00#pFKhb4U=)@rohB_GLfUcpn
zsRI?DFGe~T<-l-|mMWtu*}-@*=@_AmrG=&A6Qo$`pv(b{FwsGuPKx%N<Y2O#n&KcO
z`j6|RuIr?2#U_?@QtYF0FqJ)WFw4P}4yG~Bix=4I>C%_09I%h9Ldp!GY!>09T;t$c
z2iJ>1c$Shsr2LakoGo<P>W@z9Mh7=J*yZ3I2RA#I>tKu6d7gt?96an`y@OjF%y+QZ
z!Tk;vIJnKhBHF~k?KI%BvO63sq&;PI4?h>)>EJF2wsw6|{HjQXGsmUSS%=>}4(@eu
zpM&#O8AIgfsw8r1+yf3Cbg<IFDyg`{!9xy~I{3POJyu`l=ox)0I1;Os5m_#c5;-A!
zHDheRg=-wFb@car&dlT=V0mhth$3RF)a#ho&?62W72*a5k2`om@W%vxG^pN2jw}b8
z96aq{a2q_uVe;4bC2e#EDe#qXsm<*8pn8<^i~|;5Td9|=Ju9}_>fkvC&pUX*!FC5b
z9K7h@B?qrMc#Y~gDBoGV;^;4}ti?`U*jay9eVv17LVBAhFmtm(a~)n&##x9v9lYV-
zO`(&xP;^+<25&idn*vuFZ93}@!DQa;;9UnlFa{jFCz^cVV6THc9B7@@`vQqvSB4MS
zx`Qt%)4|6MnzqAd48=XAJU(&osiS|>K%DS%p?`7m?5Az9kB)F~$iZO;-#GZz(c5<%
zU_&GDo#6Wg^8LTwe);nBK?mQnYqj*>-uX8)Qure?{^8{a!}#H{qmKTRKxY2G??(qe
zImj`=I{4YaFAiJ>o`YYR)*SpptvJ@!m)$Tx!`~hJ;owi9{3Y;jhg)-`=X6#)+rLKo
zKL+Y$dOr}8f!bMRq{vn*CKCq-e>V76Vuu!3R>t2V^G7N^#~n@DSsm=GLI)9ZK0|1a
z{=ICgxfk-^J+TA+u#7XiHg#43KLj(oI;iZTii@Iy;|};&qf=d!bCK(;8h25rxG3-H
z-qq-$=ZTS0!380EP0ot0=08nfC0G9;oyDpyPIpnmMY^V57IcP-GhI{{A=O;{LpKt8
zc2Q@!+H@1TDB|qt{4T1d3qtBy%SCM$-8^*naITB<T>RwXXBTx`obO_xi#uIh;G(XJ
zzApN?xX{H#E}FV%=Axd9i(NEuc_ReQ+<>dMp16b(HXHQ?vUn+#aj~+CdZCNre3kc(
z8kf0x5=dhgjY@F2iz{64C($P+ax`*r&zdq$32x$oQ;~TPZ|<Uni}o)6I}c7dZt0?x
zi`K55?=h`C+PG*d0^7NIk~aA%>dP)_KutY2rh|))E_%4=>7tX1&g`kH=b3bI!CBV-
zbx~afA%%6j%+NPr-Kp@|CA*JI>gDR`(|v^h_z|PG3r_R+qGyV$usPMdzl#Abrt?PH
z#XuK>T#R=yfqro@#Kj0*OZR%HXf<5$VFK9@TcLVqZ!$)?80}&VnM?KDbxtWCOJjCb
z<6KnhsyL^e3a~iQMJfI6!eH=}pv=W27n5B*Z-@HOdMOv|K6^p_7l+hKyHNDF3r+%O
zL!1&r;Zt2b-JSNC=IV(wB=Xzb3>Pz9+~DFy>i>*!wTo+9T<c<%NTZ(g7bn<UCue87
zAb!2{h{zll!+PjOsm4t%Zgz1igGwsSb<w@6nkSZIi?_I#$l{C?Ioaz4E^Zg6-^NaD
zG9KHay?lp=Wq0_y@Vi_ra`8ID$;I6a2^Sk&Jf`)>eJ)nHSnXo5i~C(Hb+Jq;KH%a(
z7fZwr)cGM76vb$vdMt8k({fR4C4*;hy%kc0r|4*|ETBo(xLE7rVHfM^)|zGO7`=UU
z*N8LBh&&?I9~H4IGD-;_ckzUatuCI^5vbWVGj3fx>EbCDn;5P#o#|;gMVzzuIW>z@
zp0;r8l;GJD^i4X>S@(Gf{+C_6;^GAtFS5U7sh0#&PvYd^!378m`&St`l}cW7_2LEo
zj(NL_9n{U`A4Rd##Tzc(ckzM9f78V~E_S<k%f;KG(xNTKur0<eIm<A3*Ts8u9A_?x
zQz(|LFc{7$0gt^dK6LS^i_ctqBvn3k@ri`iZdrIs&KtX`rCs%0tj{GrDg1+{bWgu>
zvCqX1E@<$tU3}wWzl#GdzID;0MBDj07ZuhT%mx&~>Wq+sE)Kak%n+q>yDEBc%Cp9^
zUDXj6M_mx%K~5e-j)^`$va{rT)?kqT;^J2qH9ef|;Wrn*yNF$6UHrkWom29ki;Rmu
zIgmMmIQd85Kdzp7#Cw2yRvZ5^GHdCXQ9Mi+t}s|GY!{qg<VcY>1H{ST(fF=j!y8b3
zS2bA{$cM}ZD~(7XTg<u0GdFsu<RNiUV8Z-sd<73h5mnAZc@M{FgrT}!Ueh_1k!#N>
z{1i`X$Qgqqp6cP0ZmOcEr(%*=*+Uf%)rElz%&U4h-NP9k_PuA=L+Vu%I@!)-ixc&{
zENb}UYNOK7dS`j4{hm?71J`tufyX%>F7QxSs?-u#n^yr3=Xu!O26a4~PloZScSNOs
zSL(&@7kaqJLkkZrJ=F7XvBzDH(7*#c<j+Z8;^EUl^*AT3zK6RiXe(VRVvoJ6>o)Xo
znTIPpH1hDGtS-OY(|2FBYyY3k3#Zj>?4gN=rXDv2M02S-WVNpQaPJfmT7xSrT6t*g
zp`(XR9@=<l>!HL$2M_H$eH%%J_MToeeZq#U=#Krr_2X2av$WXN)Ay4+x`^7;fwj0Y
zy@!XM9-i~?yoX*MdV5&m>4DbA<8EM>?%^s?sh@{o9)^49?_q$a7x)kKFv!DT5B?DC
zxE}vu2<iPXR2t%>St{0`n;PL^q=!-uWgbRRvWIaV#<MRnA8(AOqjao5BAipo<t-DW
zQxiRKG8=CuDV%a9d6?`W?Lm1+iAqyEa5^7rotSH9c<4g5b4sRqxYE<Nj?<`*tW}{O
z*(2U4QqBwyGd<ky;SLX1dzj^6wud<$t`V8E&-EUz^>CdO`7b%$h0dTOXt5hS-00yJ
z54U=H9`8*aZuT&jJ?i#<TO7>u^fm|#2G*je`JUdDf-2qSVS)6KL@Glo5n1TrP7jMc
z+|S7Iu*k!`9`5sSw}%_Lse42L_Ku>?u9fBhJTd8)J5<mt4|sUc!%{Idd6r0jso`%I
zr5~b%`u{fzahZqZB8NI~k^4#yt30gsu*So)jPuRLS}N?}aR!fvhdr$K@Ti9kqU|Fb
z!j<Zt7&x>onc2<9=!HpovkOib-ss^;QQ#R*&nJA!!_yu%d)OqzS&qTFRGveak5}yP
z{e$XlIbqc+)K(FA;wj?=4h_1}!=D~rVyt@j!o!yyUh(j%hYvjL_3)a9*FC)LVHZ2z
zO>OhAli}fEJDcmKb_nE-{lvM6*_*WF`m(n?{ra8n2Kh>sZzK77`5jMhF#bMAx`%fe
zEtA^u9WwVKd(Xoj4vOUl5595bo@0C^`yoy0;S&$<bW_|;jY4>Q>}iDir+w<-Gpc&P
z_*@u>=$DWOjIWrKJRJ4#gNLs@9O$OL^RVB;H_{w$?7#J3c2h*ISYjOTxF0?aF+VIZ
z4svK*n&!>_VTO0d6ptf<@NTvv|JeRs=`m(b?*HuJCr|GcU#+|P*~2d$EI0ido$^{K
zca8g1R3gqj+<w=>)7&Q1t)%|)@VAGGK2G!TkB5If1Rg>U|Iu;OheFsdS8p7;=77PC
zMr{v{r|)b%CWIffO<Yli(%4O(3a`+c#SumxVh;tTcMn+)Iq7CXV|sdbdTujFnMapt
z39Lwcj(aHQqk@l9eU$fciVtpU$t~RoY4(QQ^^T66W#2q*_0L*trIL@TK2G=br-918
zws{r7xmV#CKC1bsDaA8=RQI({Yxp?J*PE=eX+j?4?A%=k1|^&=%;yNChD;0R`j`-4
zVu15})bVk?j|<p}k5_!u^>Lw(nLe)eagmRDKKl6R>*Hb{@KNHUgOB<?F7eTnE&90B
z$Nzj>=Hqf74M^lPAs?JTb!B(`x$5@r`U~I{LT}`wv9G@fpZJp1#K$_}AsfFYH}}!P
z*B?yV`e^B+m5(-3>(*-e6C{t;K3?svD3)K)h~%21ok(l%<H|;95<B|n<fEsL-@B{M
zG>cU4;iIdMZi08Ge3<}1<`W1ZgYC2Ks+ZL2Es$+dLO&n<eT?ui(#HUrD{l<-!LM=y
zeGKwJ<p=v1BJ`s4f((;np2IL7e1SRK2U{UBijC6aKFVmQ!uT;h#<P~Mzo?EC$~YhU
zyXbGP6QxM{i4UwqCi$4`BkglT8}N&N%7@`|{+OEL>zC5}piCm`5}!&V_?YhFDmlfk
z%p^_|oIEr5U7&~JTmsf5o%k#t*Z5fDW37*CeO%|`9v}DmxZcNXAGi9L?_&=8>tmje
zTd1wCKj7XhkP>bZ$)mcY<_d+Us58GXp3uBm54FI@Z9W$IxYNh&!hDCgfOYv!m=@-z
z#=Cqh@^QD&`}I)Q?=XxWI%aru>YlpK$6_BVe5~|wzmEreJmh1kj|Y7$@o`{>!HVN{
z7&JTKiCXh|s1-fbG9SxXQSj$_D8|w%AFIVvbPzdNk;pn95Bu2U<7pr3eLTY8>7IJh
z$D=+r_;^Cx_n42zh0a=xu@kNEt@TDZ%OYL;l;}UJG{t!un|<($^A;b^`gq32m)i^;
z{HDLv$8$bj@b$ci=fxVVn;NZWchHG1`e^-z!Q&-4MdVc<uldOO$oY8P$2K1aeSGg@
zyN?|{KJc;E$4<f?>MagxA8*hyYs=mwf0Z;5zBJh7;~gJ+gudHH<v}=lYWiI%GUmzi
zo{t&RQfn6)#NQYC%Eb84$45TC^07}SAN%;+#}__6@$soN_ZdT!FQ0oTE|*~IU(y{F
z)8%@qIz1Jinu&ky;~S3Op6URV8HjHg+dj@4gzrQk+q%OuxLsJ~6=lTtPEQdY^6`U@
zW5RG);1M4Kd#a;8Z&x(uk3N3#@vo2nII?{F;^Pk=f70yJQ@{H7jboNctf!(V9#eZN
z)*@t=|6+!zKj|MIf1hmq+X~t~teEj(`Urf4J}e)$50_bs?(>mMOK}@Cve6*7^;GM6
zs#kg{pPBH~G!GJaDq>g)5}%a(Wl!#vjfD0I&>%p85#r<Q0Otfa?xS3Q$^ohbC?DXI
z0H+417-*MKNgAO-fQ%@{woZsWEkLCJ{;68qKYOaG0ZtEamQ*<-KsDy=L6}o9O-TFD
z5oZQE7^(-_CPZoo=j9dCH3Mx!3aJ&Kc7S>TE)H-ms|UCsK-~azJ&!s8&JRF-a`GtG
zOI;`u*m0h{h{~@hi>9Zz3I+k{2e?Gel9T!q^3<iG5{=1X!vL2B=oz3FWd^t+K<fZ)
z0yGNHI6$)i%_*dpYC>%(d632_pPEyC3z6I^&>m?i?b0AT`)X(Hk+uQa1?U{0OMs5O
z6qguvAR>5)z)`(ar$C1&jYB8$AkK<i19T72BS1GAYI=$?3EAJ9dg%)R<@XNIC&1tU
zLjvw2gnj`A1Q<wVdT9&v53sqH4lufjF+iOuVUSpxb%zER7GP9>(E)}BdPIx}uu*)+
zfiN<_ZmIiyFEu8>*Z|`LxV;n?&QsvHla^$WL{drvlm#dkqI`%+l*whG0j>)$S@2YV
zDbhhBz>GluGfr<M5MZhhuM9Aaq0(EeI>PDD>FEKk3h;D|GUBuYnd|pfGo{wm0cHib
zMruv$seh}-Us{*+R@VoZ9pK{tp9Gi_;D!KCurC2_3~&=G23Qr~<^Xd8+!bI^fO!FK
z2{1pvf&jPD4!!k@$M=5JE+BqefI$Q5-4S4+G<17_#a*=~qgIsh4JzTCLcgxJx;wx<
zG+lrt0qzZOUx51qJP=@Qr!?Qz5-tv~>p6o6<v-9{ZI*@}qV)nS3$Q#uSUtUc2>2Ry
zS8p}v2V-~5H07@d^gH3qy0T9?q*n)6AK;MyYbchE&Kc_hJRIP*A^3Sv>iTyK^7CHw
zQI6k7%Qggfj6PjacKd#VuY$Sw`f+W^G~M)VZ}nt=rvkhZ;MD+|0z5kaTLU~t2F6K%
zX9AeLRmDDP3rE3YWz?Bnel`HNDEx@Cr~0Vp1H2gEr2sE5%=)Kj6E?)R$6pS>ZMpQz
zqH|n3{aS$61H2XB?Eu>XY!C3Jn5*j0Njn1l=6q)W;(Xcr1_Qf~y7w&Y$9+c(ZG-^t
z1o(i_&hQKHZh$?EoCzt_N56A^kHc_J=^cIadgK>YmAx;z5&4j=^o_N`L$;5Ym!_sj
z`82?10e%YbbAZnSd=cP4fP+j#Ta7OR><jR9fUhXz;j$Mh)%8c<n*iTR*XZR1%gVl!
zklP>NuVrOjT%*)Uv)A7TV1IuIa4f)~0EYt{VYKkhnT@V1o7px^-L|YPqtWham_Bu+
zUSjZL0B3#K&!zY!z^}wPjspA^;CD(6@OOYeXw^RIPqEU6ebn9&I{es?e**l==o+Do
z_8-l@s>}@VLm!n9PDThvnZ=wFAnK#&GQQPkyR7Iju1I7m7EV$ELH;b&5grG~1;`5}
z%k1&_q#AuyBJL|P!1`+Q7MKkCD%yd?<HAYgln@m{Yz^^Th*LvU3^6*ym=LFhs1)Mz
z5Lbk#9HL5y+9A#jF}1I%8sdx))j}+qkUBlY{Jx6BGecAl^#(XK1)e3aMyMUl9dWtE
z>+AcCvqPK{g4_O(_;6oUOC%6EFGQUXmxQ=9#Q7mE2ysz}dLdetYJqh_Tqw1i#%Uf8
zl;YwLFZWdlQD0gi{!w4O)dLrpa}${V39&(_w}hf%KlN1&LtGYu8_PUCJe}>U{u-ZZ
z6ryp6t|7XGXcD4nh;|{`hiDd}d5BgaT8C&s1!#ofy2X0^w0!orZ9mmUjL<g3U?Fm|
z*(XP&*=|XQ4k0>)=p15i*A(}&BJ3zQcR=bQT9LS_Qe7n#yNBozqHl<PA$rPLw$(dC
zFTtriTkI3U9;UZWTF_7R4>2Ibun@!97vUKkVu&DvLcM_%IT;DFN2P~S`Nm}z4cF!x
z5n^PBQ6Z=#<&cM*V_r0#k)3tNh8P#(o)Gtj7$0Inh-*Sz8)9OJ(h!P075Qb%{~;!`
zFWmaLQeDbPg)l;-<?IxJv@_|48>eX{#`cvVriGXp;_497Llh4g?9q%6SBcYUE^f+1
z^;m_Q7ZK8lvqHWD*FvrfaeateLfjf+c8ED4ZVoXw#0?CC5MT9E+;Hip5F7icowQ_S
z-6OWhij1*&AwQZZ>cGv4=Z9Dj;?59vg}5!`W-{syhFO1gyC_T^R$M3)5?Oswh`Z&~
zOff#giCdqsNB4zT9AZO=$3om6;(-t=L#zt%V2C9lmWNouAtSN+P>7`=mPxp>UkrOj
z`}dEQT_ytA1h-{a9b!$0M?yRr>V1>eGHlp-h;^YJ$UN96IoFFOJT<((n%-ZXHzG~-
z9uM(Eh^J}8P;ZyLk!}?>*5Xc9?9NjmHqqey^$=tDZ4U8_Fl;%gAtgU66x!$c5HE!I
zJ;Wa&UJUUP{Tt##4z3WdgxC>cXNXrBb^TMXbG%flOXM~7eR&y?Z6S_MPBV*c=Xj~E
z1MiIxZ-#g;#GVjug?Kx}t`P5p=-o#zs+u-fSL82icZVp9)+zMeQ0LfQ-xxmk9c`O_
zKhzoZ17@MDUZq9+p&#*4h>t@Y2yrmPCm}wi_e1Opv9Q1TEW{U7ufO`7#_X?+{P4=M
zFGVI(=y#6sb%<|5JXC`HA%>RV+YsN;eVz41XYL<qzhF>#;-9c?h(jTMWcY=AFPA<X
z;s|>uI2nH6slkZ)>x#T6A0u0T{dM){5Wj@@jpKbNHlCs19cAmMe+@xMPG)jmgZ^YR
zhNuytW`w^vNO?9yF2uhf&K#he5N?S7LS#aO17L=*INllRf9QCo5h#I%;{SHN5I*hv
zXF3cKkYNN+rW@s1c039ZGk6B*@3u^Cte6jxFo#E|6rsS;$6L4vr$jg&qHL^gi#+8b
zbQ+*|P)LOcr$*Wxr6s858k9`26(b#x^mXM3RU(`jp?ZX>5&kK~>5=}4Ft3SZI3q$e
zDN-iYCY^>oE7Es6ZDXxrgG<wAM>r?K1rh3!Gr|u&bX(^|cycUiM>v;yZqT9_9(6>G
z^CN9@evT*c!Uz{dxRlC7*jbXU7vbUvh(Hg1J^~*&>G}~aky;Hllu<0(r7s#pXf+^p
zS)_Z)V#7#ZaJPPI&_2AXHj2<V!iMtoA1hzKNra{my64d&k7f~?N3depF<L}u8R4uL
zHDa`i&^p4}2<sxWiO@E}^$})AXcwV<gc0m)gpvpyB6N+=EyA*{DW(^WwT_Wa<DDYC
zBWULcUC22=ry9PG?H-{A)uvO<RXrp0iqJp8fC#-KaIaBjhQ1N{M0yWBGBaEDi@=0Q
zu`KfJK#}~@h_tFz!mbUDFeJiIA<h_}?i!$mMHns~WFlhgtTiga=m=Lvm=<A7gs~CI
zB20=fPPF1>dP0Qt1Jw9PzaD>u@!2>%G157?R47a-9F>zrjVTen7@$%@r%FbocLYsK
z>q>~nYpJPHBr-k1RrKIMJ-2N}gqgG|_e|bZ_v#3<1iywR<xI!{n&EU|yH@De(aSR1
zb54XCBHSI}o(L^UabtwJ5$1{fn*`n*fq!;5Ve?xeETn7Jmfad*ex$F$3nJVeVd_A=
z#oTQXdJfbsxFgaVcycFCTJKKj)LrBss1_0S)mIkc_eQvn-jpU5N4P)2k_Zp6*jGKk
z=&h7~kRdTpu?gC0+d#!z1xjAZNRUnTJ|C!-Gw`JP$_T3?{mTO~tP%>nyhf1U2dacB
z(fAR*r1c^^65-JZ+ahddlty?g!m|;!GT8d29*?k*O$+{nz_SObry@O(Y;%NXB5aEA
zv=qPYn`$vgk-mlDH%QSS$NTE#LS6S6S9MN37vaSSFEPeiPJUkC3yk5;DNY%^Z$%kb
z(7znvl?bmgNCv5a=cQkd@S2ES*EdDU6gy{-+QA_i;q3^!7_^aoHs|pc!^v&`CWl@Z
zZD&%h8eH$42)iSE7~!J`??#AKipK|nyeDu^g!fO<)B6pc-7Ce_yAAGU|8a!RBJi<-
z_$LuQ<>;=XcyJH%#e>x6V#Y5d@Yv$M2wz9|izzq4Hxa&Na7Oqo;^YMEk8nsj%ZhB`
zr9tWdowcIupuq1Vc(O0hVS0*=n`0b}z-<9O9Hdt!{t)4q5PuZ-lfa(^{vwb(oT2(V
z$JCxujv!vUdDs0%gg+zwj6)*fKN0?APL5EF@Lz;XgoxdYU`G1x$fW`d#pPudBfn1C
zCN5p$RyO<y<<sxg(?NvEX}!HXajxVFnNA1k6p^LQ?Ny#pO(BC+F48kjN$2}La-KO@
zzt21#p<Im0F{;EUALEo56=T$2QO2V}46}2p`(SnINlL@P>a-XW2dg=QRizk91}m~v
zjdAAW)afzKh%s<d>e987stM)H7@G$xp8B^eRb5W;EL*P`<Lnr-W6X(hPK;VHy2t1d
zqjrpQV_Y8NiWuj`sKZ8MToU8_7+eceH^zlA-WjYei1qp!A{PmQ7}j9DimG0Wi(?!Z
ztaysB(hyC&G)BE4>arNKhN%C=C>f$g4N(nZJ-N4`K<dK_%DqEWqZo~2w29F+Mw1v#
zneAhp^fnGr%_z1{>L_pgj!bGEWAYtFpM?fjuean?Al6IgTE}|HGshA6+r?-f>mlEn
z&Bf>-IEVj7LsUn>j}1|MMx;B%U~rO+N0%5~V|0u4KVRIVdh1jYd&cM$BNbyxjNVi=
z#+VpmWAu&DFUGJK!(;T1F(Ag`M~uNSew~;aC~y#&_mr~8gUApm4i!k(v|4YBply4l
zM#VY;M+(kjG(>Ihlo}nQ`cQSrP&F>rYbPhhD2?^Z@bR&Jbvz*kKSmIVo1=`a57pZ>
za1q}mc7L`pS<FR*mN8<?h%qxpI);jMBAOawT8v}uQd5SiD`VU-RA-^OsnqlsSH-9#
zAIDj=uS{JX<JuTsw@>kyCCD`bIa8Vwr>~3kEbHrItQo3{H^jIx#z!$ej&W0rn`1l?
zV`GfDG3Ld1D8|wlx5T(L#$7QM#o(;e`D{JL!Wau;+!o{Z7%vW09}HC|5+iYDw!=eJ
zaj3deG$(R*jC*1|&v|jI6Dc|Gl~eaIfQRXU#sqtRj0a*o7^7in>dwBYB{7~?I@)WL
z>fFdG%VMmIu`0%LM%pmNvnxahCkd}+cVave<IxyvIa1C`lmB71C=4_d)gxRl7ACSm
z=+x)&7>}LgVUfKv``3Fi##0<AF?Pq;M1^B)kFkS;k)uqseI>>-w8n%K4Y(!7vtrV%
z0-qE3yucS28`a9l^J0vbghKq~lSFpy)flhQ+S~$E6eDF@tmohn*%{-gO1&wN$Qv>8
zgX<A_ODJ#0nBFh7i$f``P4xU@#=9}zi?KJxhYYy|#>8Q2kH~zVAvZC_;{!ovrSvZh
z<_uF@K*7~~pK!>;_$kKEJR9Tl82cD199c2G<Pcs}wy&d>&$0QHw96Ut4-8Y^#Q2s`
z9pg}p@0fOKs|Ax%2L;(L@IZ_W!xZ~YI&&9n<1nko_#wuTnCpy;>rOALWE;(Q8^<_8
zA1yoO;xuRV|Hx4+ll*sfO#Kq$w-~=mg8G%=Jw&}ZOx;~Gy?fiFKVtkD<1ZPuf5-So
z1}3xUzcKz}zLj2An3Bpc|Mb%1mvH|u#UvA(h7-eOcFLh?4qgnOsWOX3Sp+dcI=V(#
z#Vn#2ag5_J%4Ly_k)sZ=zG=@3d}csuWNajYlUQJ_N_F{g#6>{s<ed^%^pwx)-Qjrl
zl&r2;A<O44jgXV@v@9xRQ8|k$S)7watt_g_*=kvwnZ@aX?-+qIvik9m{AVpUs%KF%
zi?g#hD+_a&;!z`u(}t@CPnB{O1aAz;#%<+lXK`*8$fAB0=VdYP?Ur?jY$@f6Hsa@J
zaX}VKN;~8xbf}xfg;_i|aneOuT%5&4!xiy*SqwTaMWnE;l#~|3)g@Up$f98ur2~vh
z1^!RqugA(R%ktfI-D?hA&O3jqad{T~hbv>aYMe!rEdI>muPmBo(JYI1ve=zP^DJ6q
zu{eu6R+qKRqE!~dvlx*@Yg%J$s$CZC1!*I&t-!g%6_@>%WYHmuj#=FIrm?CEI%Uy0
zivd|Y+AZBBi>`w7$?A8x-LmK@#qLt<k;Usj=pPvIRIe<)`@!ffXNj;bkG@jum&Kfc
zss4f!8Au}t^I)M5&0>fY=XFc7;;<~gwCcKd*GP|KD_LBh#cY})i!oVDqu;X_o5i>+
zCS@@>i&gx&d{!?loS4M~K~@gde-AIsqD+eaCg}~s_4>h77E`iFXQ62D$S|__TIf8r
zW4K~1{&sw7R{!YyN`XZF9<HtuAv3a=DagGU<LWGCWpPaw*Je?Egt}mauFDlnCw?1!
zov=}6%Mof$7B^%uKZ^xf+?d5pS<KDC7@=;?V&Dk<-DKcbdWzBh0rlo(aSOv~gjzO2
z-Kzaw!h?UKzAdY_Fj|<!omt#Y&t~z=2))-6_akaMM9;!y-Mg|_l*Qe`$y4_Vau1_I
zIPW`2=W@&Yvv?qj2N|MSyvV?Ns`Q~OmS*up78|K{7W+r2RavZ-Q_HhB8W=0GSSbjZ
zSzMFFS}AVGVx1rlXR)3FC#89o$0PKz&{-=pLXlE&q=t_P@o|AWj~h>B@l+PiX7yIX
zo3ePCgJq;5zFClG1d@S79$SQs$W{)hES}Heg)G|2DOQ;>IJKQS4PG?qB~kn3EMCdt
z)hu4iVrLd_2=VnSwq>!MhU$x;G(B{r9@qaX8ao(Kg0uK$7H?;<rhNJ>sq%YSnnWJE
zX!((fbXxn}EWXU*D;i;>dM}GTS-da!2U&cS#m9p0&Ei8r$itjT_(>L@NzVB+i;9a3
zQjRr9e=a;<Fir94L%u@pV?bu{Ll(!f_$G^Qv-;WpFvI4YlJDr6EDmJB*-$K=cicFb
z#UYM}K_LD;qwA1HsNprPaYQPz?omNFedR}K{nsph%i<@&e-`+Qz~_I{iIiFH_bmR9
zD!c}<xMz=X$1daVEdHU|Ih>Zmzghg3MY)_#;~D13EJBgMZd!u40&Rf~1Fw4e@v$i{
z3tuSbNwN(Xdm~k=l>V?72|eajKoC-LS>#XRNf!JTQ;=dYi{paSI;^!VFFH_-Q*x+~
z)Ay)+20S&VrxcP{DTm5A)XJfD4pnlfn!{N+)R42M=Ws?2)pGo=bSvIla-5!-L-m|C
zHTSwC<a{bZ3aOdH**SepVcI7=M_T!Kr2e|WZ#w7Z&>)9~qQ-eS)Dh(T94-)~ZVneo
z-OaIaVGidG<c*D1yIu|#3j=bfpTi|NO}{jUtNQDP&g~~`!a)489Qdh@FJmvK=6g!#
zJz7TmiW~?V32dCx@1yu2+$@LYIsBf(A33zhp=Ay)<nUq+t#W9cLz>Jvw8^1u4#RR7
zo<qAF+UL+Chn}qXyHS$El><_pbLf!MD{b%WknWg6rySSBrTM~;uuBeIbGU6oX}27@
zlX<oNzC(pc`EjHo?3F{G9Qx+aJI9NW@pWI#+%E@Sudmr#Iv}U_o$fEi-}<Kp=0M^g
zfkX!9_$5(OcnlTf{cnvCV!d%WjL%`D;G=RFEjo-5IF`<>lx8bj^FlZwhlx3q<v@gr
z@jG~_`0LF12H*Ql%IRe(ljW3N1(4G#DW>FL2*SD3EKX&=a(IlbR4SR4!}J{H=dggT
z$zetg*X3}14l{GOT0-U8oW2^)qPBwYts{%ngz&K`sbA|)nw>-W!KoW5KZiMj-yo1g
zs&{ive_*;r^qHH(yc`~Cq1z2c>UW`JxHX3pgXOjyZqH#EgH3YL9XT$M!#z1H6v~|f
z?;@ovz33#*`J>dmG<Z&@)+ISC7UTheq}(q^%TYQ3J}CIWQR<-_mI|&$scR?eip$x}
z99HJADu?wVd9}c`0@s{uYyK#;PVgHir5|RPiP%R@o_#cj4LN;jU|Y=IkLU0Njr``M
zjbg*CIXs!e->;TFC2*6#r*q&9$!5Wy5x7O*vjS%hOZ_n{^;{0m)9eozx299P)mb%4
zy_CbtIee7E$2q)`!>c*$&f(o0UXzA)=J19fujjChomyVDo!MY!YKK4~9PhL_=Rd#6
z0B(`y@m3CR3%*O>I|9kWQ}2n_KFDEj4tsKXThaG(XxvAyMt`L>IDeaK(s_Ky?6E=*
z`A>5AG>7kU*e?}7qeptBzRH2i%0AEGiyXcrJ|)F_TB^bHwU1*^hT#QkjBj%K>7M-G
z=D-ohnXv~L$vOOx!!Zu<QR;iv&EZH6huF2=`Z<DARrx{TsK_VO{o?vB8fTQAQT$6z
z&vpDMho1%6+gkrq_*Y6BrG67ggfaYQ4u3JZ9n|{&ox?vloS(-9dHkEhe>t3*N5woc
zIhZ-_kc=n?D~EWLa(Tm_!`zN3I|qkJb+rEUKsuo>J)(&M4w><KH%r1ehkd=%#T<_3
zkj){-pgnBlIo`RsZtrv=MN$gV3nJz6I^9v)DS4F7<Ao}9d3B(i3VFQ{iSMonPs^iH
z9%tuqP9Bx>sFKGSc~r~mM!BgPVO7CT&!cTg2NwDKb!Hyb^EfN7|9H+Kj~aQ@%<ESQ
z#5Z-(?@Y*9E05ZFG#;(@4d8KZ9_Qut<kI8aG^`_HId_zJ-8?SLqjer_^0+9EdU<YH
zfJS-r8m%tQ>)FMZ<pJtkw`u)6E|H3}MypGOq91VbI&C%(*zo@o>o&bya8_@eM-yqf
zWgboW@}CDE!SYx%S~bt()=kC}qt&rhdd@9<O)Iq$W^N%uhqle5T^<!$rn?BSeI6xw
zbjahx(!Y*E?3CBnQ&z9H*yx<cj?s#HL9qDsXw@~3Zh8DQT5&ZE$5BsqioGkMQ4ziK
z=#$6x1UnM+&7)r)#XOGZ(Lav?c|4xS6L}1z2lJT2=JFVv$B;Z!9#iw2plA%uV@w`n
z^B9)L@VpND5qXTtV{{%PrAP{As&j?_HQ_$MwBES9{)@!KJW56F@d790!M&-;Q<ldh
zvDgKDu&aG~GW}bvES*OxuZujU2x182(BoG~GF+L*G<qbDYo+e=yq+UHgRwLMSBd<1
zg)vj~xti^sre+D`&K1OI?d$TGod<W@zFw+R$zA2r9LS8H8}qm+j|cL2Fprz_n48C4
zbQ$9zk6ZFsKy793?ptZ4TIu;xWPjNaeki#ukK1XAW5yk#&z+*lLi%xxjz(&D%_C)Z
z=W&lXj(-QZ_oT%Z=W(BCLbf%jvis?dWjaK4qIlX^lE?BqR^;(e9!rI783VP4-iw=m
ztD!zCg}9Dl^H@dBS|v-LHdg2Luw5f?t-#5()9dqigqCN}dd8!9bnKsA8W<b$xPPL?
zx9-uK8}n4-HrSZQlX-kf-{tXC9-H!bHILWwcsh^GdF-!T_oY0Z$zzK&{X!nkQtW^<
zb$%|7t%B=|tWcg8J5XWT`9&tEF?!!iHuQ2HuZRKp5s<~#^VpWh8#Hns-G%M+?;~aW
ztvT@>(y5&S^~?V}-lELB{_Hh#jQWtV!SOOiXRvpqt=$6O&Eq{m_6U4mAT|6TkG&`H
zA!GFRCLb}RUE||CJ`sdCMSY&f7kT`c$4_~DNfV7x`|~(Jmx<S?@V-30&f^=#$<xMD
z{D)56rr(M+zRT;M6|#7c*(s01c^qLTIYs|X^^h>|t0mQ7D_pgGG>;$hdiGS<J9Ug1
zsk7qpaN6o;v5b|6oyRYE{7MUtQNM9e=ka$Qze|yKynp2Jr{Fxx|EK>WCOWY(3;Xr2
zWUc=MW(1l78C{N8z|SKP#1-h}@lt>7L>^%tIi{>0I&DUI#3wD56@+OjpGT5Mfj#o{
zK<0i&gv84wD4(ETg8m6kNl+m{^8_stoSL9wg4zkrP4pl-EkV@;r;|P_RVhK`L?;s-
zRT4ZtP~&`nDvi=-B&e3)%mmdFoRi=q@z+@iuG(ePNbpEMy-!z7DUxz_q9cb0*=h+h
zms*^cpiY7d64XsFxJrlrwi?_|=KO@eC(!>gxG=#*2`)~61oaXOJYsOEY`CBs`%<wD
z>L<7)!DR{Vu3Gol7<Fla|0QUU=!bnW@ZjDl!5Gz07*0?wPjE$oMhO}x`f|pjX@Vw#
z_Z;|tlx7L;`c>mC6SPXuDM9B1ttp&;qf5{}K^u1DS%Z0?EiG0%U3IMD3Qe9}Fd8Lf
zs8qK@f{uy)-|nSj)!?zJOM<QmdM4<Vpj!fCtm>X%{#gA1Yf_c69*K4$j|z=1=*?C<
zgUPm!*oxPwz6n;2Rd-j^18o2;kl>aCw<Z`wb5T@+bb=v?eswb{!RQ1-rQKl(h9@{}
zjs8wCLMU6us*!^5f5%jnD>B9;7@J`CSiRPR$GAji>G26B2ts_KAf*Y)PEsZj5j>S(
ziXdN)M^L#gnN@<R32sbqQ-UiKOiOT`SZuo3miHJl7zWZ)8kW8zWoCk_6OGIwk05&3
z9x<*>u<>1k2=%-^!EBK;N8k+tNuR%5&y(TB;^qW%h1jE(nn&aFCunt>axT#P1Pf?G
zS}(zE32slYh+&Z64k~%Ex>JIjCS91|tTx)$cM0XtSbc*>U)+=6{sa#scrZ%eo8Z0#
zixWMofh+Wx;`pMHbsr=TbH22`M7s8nKzpoOCJ0vrE>HBsAeTa~O0YV?vkA5)Sd(CF
zf+rI^m0+Dzr?gwD=$EJuCs=>7kB<oQXo3wVDUS*Ac!DPc*?5v(b)357f9XvLp5{my
zr+@IrOFWUy37!$k7J+>JC6S$dF2OeO%kzo;1pGpR7nA?nC+#K5^b8&^CwN8hR|UQ%
z@b!~tDWpV1?M(0n!@GcP1-zNytpsNjv_0QWuq(lD34TxT4#O<LrwKkw@Ggg^80US8
zs@rr^|J0sD-zm}TT#NKUg1rgGj8h*b_&CA5ar!IjN5W716QS@rNSq<}d4g{fe3#&h
z1Ye4s84q7EkYwz9&D1m~{f%^!34!=W6R<zQfdoHO&TFLy6MWA+li*l_LmcKq(?_MD
z!-BJTB+>ssA;NLGW}Ips7(YsG`H2d1gCn^CpyXeq)~^X(9;ZewH})Pg{z&j=f^33Z
zg1-{{oxn<9Cwe`?KZ)K;?LWc)m844I8!gfqnz2RN6j4NI87G08z+-+sRDnfb%*Fre
z1_}O|ssFS)q&30>(MgZQf>5h`f`qxffC>d|;eu2wU%<VWr;D`4BW1@Elq=|6ym(Lu
zdAJ<r)B-9NP_=-OoAtOmt$@l>oqexV08=iBRSMvY4my|Dm-h}Dr<2}V=dNl6oLNBi
z0?sO+egT&hP?JxE1)Ntv9pVL?UBEd7eb-crXP-7`RpJy_yMS}0l@EL9YsxXtIKP0p
z1zcFb1qCgct9to@;-Z4SB-Jb6;sW?O?u&7%YOF76lmKCCFe7!T$Z1kQQz8X4D4=0M
z$5o{PXk5T$!gjetCiTBUkVXRew8hs56xFPN=3<s|OAY?Gp+x~LMJBJIO!8!CRY2<k
z+7!_CM1+6Zq<sPHPRg7q+uW5D&_UYjD3D5aDxmX8ybHBDs5S3iK#v0MEa0vJdKS>D
zfSU`LTR`sut{#<|UC?h2`V`QYNI}13yRLw-<5m9x1{5%`fI$V6(Iy29mb1eP7$H6y
zQqT|nLj?{K3X3BJ8AAyLj3T_p_-&jT&5HLLbSs6AD`0}i8DGHbt+4wS-6D^P1(X)B
zcW8=2Se#rys(@L-Ii&!Ds&dqiSLp&&0ar<*`EhD$0ff^Exbh^0txRVaj8{Z>YDNJw
zh3E3|ip8z>8bm0ctz09*uNC<BJqEjcy>y(fEant&Ljg}uO7q(X;f;ddByiWH^t=LY
zDS&?(y`!LC0r92utp!XOo0?z1{PAi*0k=u<cIr8(9_f6cy0J-m`H0lQ0*0Tih%74L
z?gCz70EmQp3V6JLCpc;fxUay?)(pOWSu8!ezkmk{c(8ya1*|Dxtq>n7V1*#;#Zp0*
z6|j1|S}ypD<JC$*R<ZBHQmYGC_liMIzK2=IC@o-voc&^0YP}$ja5UX-u=w+0<Iw^Z
zsMNIs>yiJl0{Cf(2rap>fX!5_fF}!hijEkJO$G4sbTl-c7G&>u#p0F%o-N?H0)IQD
zKj<v&%Q@u6R?4hgmqikvFW?0^`=UU8e<AUe0$wfP&jS9URT&jD#XRFzj)+leTLC)@
zc%y*r5~Vvh9OR?Jn6mVn1-!+8Dd0l}JcDh8exbL!fL(&WbCP0@#k(i*_X^lkz_IcA
zg~|Iu{6HXG`B4EM7w~lf-xTmk0iPDIPfmR%@Js0<Ykgk87X@TRLY)cfD`v3c2A6US
z+-<P?T<P$w@E<PVNCDp!u%GY;<3IriIeaGQc3TSkUf2#5(0z#3{HU<~EW{tEp%i~C
z;3q+t4Jd@iSJl$Lh$d`nPL%#l4E4LfKLk#npseAkzYF-M07s<#OVeGVWADELG6U=F
zX`Rj#U>0C8Axuz52iD^$TkunsmyzNY;1xLI5dkx55p{|P3y2D+Qbg4vV)k9cRwyFJ
zVI_FEA`(Fs_fH*XfK5<^0%(dN-71|Op4H1tc$8<Yn(0%Dy3134F-{ePc*P=4E25GV
zx#>{lq8?nNFPWS^U5M2Mo*}TBK%PBQ5WZwPOOP5x)GXrcBF>RwZGk&`rfU_krK6U1
z%Lx6^^IV}n{I+p^5f>DJBI*}Wx2Qwz!XhpzBDzs)Td%11eIoJIxyHps(69~X8ibb=
z@xc?urA7QtkS`{v1|sk>DY9b2B6`l#63BMB5b2S|MKmd5PPzIwl&jygh-O7BIgW>p
zqj?c6ia6sqsvSqmB3c!(qKK76v@W7e5j`lXsAn*?71*(;pIO=!(Vh|pr%I$qN{1r+
z(W$>C=x5$eMRcZab(?k(NTh2K-A>}&i~o0hC%sn@lZu$kw?IYoDe4adeFY8?*sqBG
zf{;F-$o)o)fkg}|>Qy9zh5qqjeS<o*h+#zxFJeRy<BOOer$!brMvzfO@MFa2lXA*W
zRAbq}S|#I(s5en{ny4szqMR)gSXxB+-7UF#g>+UVOo`@K7cr}dDS{hCq>E4|do*2;
zsjM!@w4#1f#Cs=B61YkzGX%~Q*uRawuwEnhB7xTyah)L77csAhTLhmiaE`zminy_e
zn~JzuimX0YkdYJBO~30~7aq43F~5ifMVvTA%5B24P~h!F+#yK(#Q$UJJAkbynsCqN
zycZM{6@>i^U_wN)NR%i+f{4Ps9L^bX&N*icfQkZ&0W(I-2~iP61%E|F2`Wf1fLRG5
z_q=bLcVE4#t*)M)o}TWWp4r{mnc0+?*KA47DNVlZR)xuVrOEu#WPuQwysb1@Seh&<
zO%|6?ZWZKafwwS_&P=Ts+$(MFB|=;(aGAiTcciU<XKAv$G}*_7D^2byP3|sDo-0k(
z3B!ug<i676e!*7?TveLfBgnl1R|}*Ne$JTHOFbaT#|1tpaE-u+1U_7vJW`rGD)_T4
zlE(yL+1-azC7+Pw+S24nL7rm#lqS!Vrfc$FKBM8YrAhntRoDHVaxOkUg$(uQ+4qI{
zMTz;3N|TpLlb40^N@?<rAg`7tuL<(Hz&A^iHw2-CQ=eegmnLtOCL4rE%6Av!-#&#m
z%)eWjY-F#L<Oc#b31r##Im8`H+jMhjviX8kpASou=)x4?^>Jykr8L=EntW24{7;H}
zSDJh(N>c5erO9Wd$+ptubD?}yM*l*PF9mKF$oT)dEO&>r3ybd(%I-4yH-daymdo1r
zlqP%2^!%QYQ!mx(Kxwj~SGtnfD<lU?lOLqikEO}8y;P=<hQUu#<Yx|LrODya<d@Rq
zSK&D!@Hc@+OOxMAlRrw6KPCB(z`q3kEs*m0C64fjB)OWJ_%Xqcb38BOVSxQ7_(_4K
z0t^3NF16AMiC#$6<7E^QQ<Ss{iCswE@1>kV;uey>CHEVFe0}f>>C|N)oUFIn_qn)`
z6cv)Og=AbIDOX6!7m_xGq-`NNt&p5vNQalEq#VdqC?r)1$+?B3q9o5KBxe@*!9C47
zM<9{23Q5pgon1(WDJFSUE+jizraV;($#s9`>j|t@NRmQ=LUJBQ>_T!yAvs^@mlTpq
zsaPSou#i+2%0&WMuttIBC+CP<Tt=Z{mx+3p7m}vE6|-s<k{W`rrI_SZyO7isellNK
zNa~c8UA{m4%*}%2sV}fWA!%4h8WqxG{jMq`O~gOUZCpsME-Q74zejJ?OmdqSk`{%e
zrQodvvfgV1X(e!2Z}oHUG;G=xlJ<q9Pa)mhcWoi*Ah|a&DM%NAWa}hIXI3XjwYF*5
zt_403rAYTe(zA^7dO>;=k{bj$wJP97!TG+)uM*_%CCT0biv^YlT-aM>3rXKXl9ObA
zf#lB%q6$gBG73cvC?o?5$snN&FC-%b8C*z)6q2EAeOb)Fvcn3=Pqoq>G*TGG2xRe5
z49-LO(S>Bi-gF%3BWDbbFC-J#?mLV{g=AtOnN&z-7Lr*E+PjJ;7m}%kWExvRl9b6_
zz=G2Y$qbRnh$R~bllGlTW((z-GxKu=nNyaWS4c>lFK~fCCKpPm5Lqm2Hy6?|lag;K
zB=`4LtYt|dSz1Wq42m*XM&?4YzL30CNbV>kcNUT-3&~T3WO*UEtB^ciNZ)Pmrcs4t
zWg%HrNM7!pPG~gzILCPjX5CXre(bFtDJ1t6lGTOeK2}jk9xNnl3h5a*e8G93kZia%
z+wnjO8#GNGDx{~u^TXN0?3=w6iH({jkFv&<#k?L9#HgD*A@!~mxS@Hf!_$T2nL_e>
zA$fs*E+lGq?yT*(=L$)yrb(mixpfTbkJHyx9zOG8A$h5gyiNtEZ6SF@guKdL_Embq
z3~S*hywCUKUn`_=&TYAeZ<mAL*%3<W^H>|2v!Rf@T}XZ|B!>#gJB8%kLb9chY%L@k
z3(0$h<RejX6NjBb@<AclTu6Rsm%sC)w05mHwTR~k@%pfk3|p2W#||bROA+Fq6q5fH
zk}nF$mo&eSkV0>4D<q$l;iP;n3RBvF6L}`7A$hhJlCS7G%3PY`kvlsI$<9Kui@~`h
zx3`ddUr2Zi{_aBZO(FS~Ixj2!u8{2EQ{q=SGMrPKE+HebuaN9#-+ZC>k8JTJxdR;e
zsk{gwLOOX!C;Ul>q_E)OLh=j8+YGD>ek~-w6_UR=(u$J57m`29w53=76r4W=pz=IU
z|DQr~tdJZpaIbgnh`^&9!w;oL-~U@kP85=pWo7>pq+PM9U91Wx@}-5OAe2l76s2dN
z2}1nqI*E}1XV;1I9C$keCj&o&AOm{I&4BZP{LJlTkS|vB9^t%V6=o2L1oG5qo}P?E
z)5>K~K7)1{w9nwQ3{KDBd=}53LIxExI5&g)i`5w!oS8x83>YLl`o2;IXNw#jm48+S
z3>Y>yH91F!JWq*Yt7OorX&UXst7cFwgCqlFz~n2%|91xaJW2AG4HsrmJ%idAT$w?Q
z3@#Emmt}A<6}vXMGz0dsON7W;c=$gdDK#@Vg<qaQtqiVUSv#HVBIKvZ&x%zYDN-+k
zx*053mY!<G{!*XJf9D!x&@h8W8SsdtCK)u%;3~nHY@ET>W%$>ti<?nxs}Z|us|=b8
zy+sBsh4>_QL}tK4pJtq{$iu6((Ax-XE06-O&7eaDB{VjJj&w@~H)PN=gU%UTmqE7-
z_*V<+)+K{BzUnG1c&JzrpK&PHJ%j5rFiX_ib&?*EmHwWfr2dT=+>}9anNK*a*Q*Tg
zEl4EOR%4qc*$fzy12PzxLEj8=42cZ*V+fT&KMHpm(pUAiq(@Zsm*g4E(+QbD84S)~
z1OuRXIv@<mU^rtVR{Z2KG=pJfb#ctuvL)@9BQqE!tvQ-(x2F^~^k?OY$7L`+gHPB}
z8BEAvVg}1IxQh*%!Q>3)vt4L@22(SbE45F{V0s3ey1Ae@KO=)@yJd;b%3vnLuY_Jw
zJxkQ=3^;eeYtAXo(%d`-Pj|&dK7<Q1SR|sBWUx2`_FS%dy;UeT3%n%*E+3_hw=wFD
z=7yE1g(Ye!Zvh$Hp1~a%yj`NWa+vS(chb^o`G-o>s2<tI-LrRRup)!EGT0z;R%XE0
z(pNKB#dw&MyC;KtGgzI$eHlDM&Dn7>cp!tvGk79{2Qyg1?lUU)2rK<Qc}Vbw>8tOP
z_Kg$LM=#6~KAOQ}r?N)nzABMPwhW#Y3a0^|6yzy^T%~Zvn>o(HJ(s~cp>USzc|l$j
zNNFz!a(AOt{!1CWTt<I|oxO2Vdt>gk433qk*9E@8HqD^k%{fxm3+21+S>kVtvF~QE
zF#}Fjy(2=1yqCeI3_hmcx@ISJ%f6q%2N`f`jyPvaHuJ99N708LX7CX^U?0VcNiuKA
zV5^kk%oUTLX7E`Cbu`q~uq}hnIf!WpHGIKl%HS6cwi#^C;HwPwWU!ZAAcGwle8aBf
zHR82XkX`Izebm18RY}>M!RS7U$hT!Y-$|Ub?U?;OgMAtNkim}`?9bo;P3WV(73PD&
z{EXl?_fec2_$h-!85|b+&jOG3QRT9!<a*f@`7MLrGx#@y6B+!G!Jio%$>3-Pe+e^{
zVU1+|n>{_N{t@E9tU8v#ysR40qYATl9cRE~(+xiVWpI)syaruM`AgYtscrkJw1ra>
z87;M!0?BD;Ff}+DKFzB0I;19B8eYjNUbY~lxEeeSWTqj$2HM4|XOC>8A=Xes!$lg3
zG?deDmWH!6l-Ix+>@x(Orr~rAKV?+~E$xY1DaUSAQ3ID8ljlqgm4t1CESb~$s&h0{
z)&LFXQTe{AisYUvIM>=$)lf~tIepW0&WVOEd!#*@kj2lZd=1rw{{ju1mSh&$>hx8-
z$aArVOEg@rp_YbAg^g--6j7H+vZg>5B%KAX&`?{$m4Z`~Q_{#&PeXkT12qiN&_F{&
z4c#?duc48Kt2DINaIJ>M8m`vRLQHNVu&IV-g51z2X)Xu_F7K=Q_f^ySs+JnA(a=gm
zYYlB!qlTxYMy?6u!fbMG>Z{t7mEuap4uW^qaGeG&3+$+2cAun^5Wf-5E*iRO_(z1?
z(<fc}*iCYyoa!M+Uky18H)!ao;YJNNX(-XqM?){kC4X;0F372?bE;SaH6ii(T<V9c
zhG97_q0JNKHOv!Yf8kdG`w6UAk{=)lTW57n4c0J3!y*lfH4LQ$4U;uY5r*L!Mr#<O
zVT6W}8b;9-CHbu)_GN(wa%wDf&@f*3Pv+DFK_+ULq=8E)sTHq^d39Mn#iweRreQ91
z(=c7b3=OmBB04#*W=g@{c}1L@b0j%d@ZqvveZGbT8n{?}lKAab$y%s^^x~5I%^Gge
za3@vmliaG|HVKd0H7pTi8DplqVvsM@@URqQlCg9LqoQnG=<-xJ?iT)gG~BCUg@%<9
z;pAK;bRz5XiUH5SJ9Q_zU&8|$cDUH-;z12-G_1C8pM{555d+dd0|Sp}cvQoidU_*%
zOvB^sDLN|actXQk4PUdkh9@;VrD2PPt&B1DWeu-uctgXp8lKbef`%70tkcrRu;;1s
zt{iX5hnD2tt&_aEBli*q0R}eDiexPxUG|CwKJ_t|3n2NV^qLS^kS{53YFMvfqlWj`
z*Xky3Y1p8F5+Fa5dRxOgjB`JI^h*CN#R!ZPkxd%j*YJB@eW-ztD0MkF=hX)qHj6%d
z5+FZwKhp5Au(2*CN&G~^cB%b;9LF?##=)OWU#z~=F!rn5t^3lKozHm}-~gr6N859R
zd_>`M&Q}@;X#$fwHSE%GRKqb1yES~H;gE*I8ot%=orVJ%4r<t=VXuaL8u;~uMZRaR
zaZ^#$#P~M%(bn94Hs#h_mqWQ9H2lbMPs7jjr@UM7B+pxS<+#X={5)fm2L7VqR}FuO
zEx)miZ1pEcq;iVL?;8FPi>_3ufjnWAdj8EGO@%e^WYHc@WgcGIO)28XHT=slT!*Wt
z4R=C=rbE~9pN5kfO4+_ka|I0<$$g_v`V6+wNyXk@r1&w{&|&JZbT}1KA}?D9&kiLr
zTB(IgbDj=gM@1cH=m>O#I$|9~I(qY_wj@2BHPTarF~B0_beyK+gTK?TDX*t-vPh}Z
zg+gKlp%5YcOdV(GI9ms!s}gl6Nq?b5`WmHJmQ`2LajuR&I<h*d>ZqpU8Xc{4Bs!qu
zN*#4{oTuY_9hd63OveQ}F4S?6j*E40J$ZE<HFRuI>BKD02|0yu-iC*eT%u#u?(`L&
zCtPvHrlyX|b=1;9{D<Dj6*_p_7Uy1S3-a$@>FHZM+@r3JdODiwXr`mSjs`le($QGQ
z?|<bRvi8a~8&SfQc{1;lO5fd?R&k<T_G*#bL<ejCSE=SYTIje{=BxQ(qNNVPE81nx
zU6p>ZYOSM<j-EPh)X`Q)I~`qgbk)&b$F({-=;)}UdD}c!xsT|OPB(SZ(OJiJIynE&
zi*rQf`=!5`AU&l}xQ-q=hBr)47pc)tHSMRa*TKnrmc2m-S0a&(?z%|_PmU_qaiTQ0
zwPwB-+gFTYMdU2e!6P7eC>D==>8m5B<8B=*bmVm?9kX@J(b11$b&S<9PR9Tp16iq#
z5jqCx7_4Jm*JPNEA)*!6q70?a-|gL_U%JMFn?dL?A|oYtl#bCX+fT7xmLh$Oj<?q4
zcs-iUj@L1PYU`M$V|&+RqK?UQuZ~GNc;p&Ik)IZ^3c`tA@pK(Cbj+0MNJ$s@yxW^|
zT(oPJj=tsdOwQFYPseRKmgtyI4@bp|bS&1fK*vHU$V0|BsIvIY(v-LA;MV?IB#TO(
zs&rmIwNwYc$lRghP960BGV$~60(mqF{{V7dKgI7U%XQo(mNI5u>ZevR8g)FW<0&2Y
z=(tzM8XXU@)XL)3I_}ePKijumda~J;e(Jx*$pcc$gX|Qqmauj%P<)s@bY=159O^~v
zBMkd~>QNn!3Bp>KT&she>Gr^O>GwWH=F>W!(ebK|*K|Cq<2fBK>3EqfrQ>-WJZ0rY
z9sBwzo}tH}dV#InD9?jmxJQF~YD)X5S0p^{X_!>(pLVhFEfUo#|GJJh7?2H<i=`{k
zW9!*=IyUHdn=*C$qvIWRc^#jybLrSrBfnAPyr<*SW9h!3O*-D!!L#x{(D9Luk9BNj
zl5Nco&^M)9hpy<aZtSnNuxa|MtvW_Z?e`1(RL5sJ4zhK0Y}4_%j-5Jo>G(p&mmCvl
zU4OM*x*;q2O2?Tk)13=!*>p!kf3-u$*8Yly@7D2+j=eg**YT~6??l5r?0u_?f9S7R
ziuMxr?3wJ-v0rj44^RiBBa?^zDfCx#%a1yKlIs3q<Y)3f>o~0A7mgkS)FB=Gn#2D7
ztB&8;xkL!v)oFnGT?bDW95^6d^~Z|-q`OpFBU`O`%jAfTqdKY>IM={29mjQe27Ckm
zN=2nQ3hcrh{2BHG)JgFw%hI<i2B?ey&46jZGN2n^OtK2<K=Ta)X{T6TY#VS4yxuc$
z4ZJu&F<{bY`6iw5rd@%7(7+i6&NL7ihz*=(;B+G${fY#ZH&9NHj|Zet!GjG6DY=3H
zHe5x?`um1-T7Y6J892)Tqw5?4XB)WXpFA(}^O{&YPY+i%Kn2dJm#=D|nt@9UTxuXO
zz+gL{qC{sHxPNEvJR^;tN6HspXrQ`*8U`*h!1EPp1?3+ZprV25Vgo!}h)Lq-4^)>K
zsA-^%sC2o3S_WzxxY9_w@D(DNBOV>Hs(Svt#;FzG^h_bIx(1%=nADSk-0arSKqCVS
zO)N5Tm4U_vJ~pt$z|{tt7+7Rrv4N%rni&{mV6cJa23i=n-aronEe%{l4XLVuRt8!d
zXlJ0kfi^~Z4{B@R<(m0^9TOg2#Ebh-t~K!CcS#32e{GJD#^u>mlCZOZ>kM=?(2deM
z@YgE2E(UmJ7mrtBhrPH$ep#2KyOEBNJQL~m9?1;`dK$<X$Q!uPz)c2<4U`z@Wq=I5
z4Y)lLA{-?+>`+J_16c!o2^*$cNDiz|kBZ9FN>6!W5oMqs!|7yxfT+!m*><4nPv(2m
z0OKunAT7PGxX(Z}#K2Gk(+$ipFwDSkHl=|H21XbdN%ahjH89FZZ%?-kRHMbi69%Sd
ze6je6#tBUuM;puTZW9emGBA~GcOchseU5Y<Fg4l06uR-rRC&T_Mmm&H;I{7hnFeMV
z>0Nl9f!PMwtaJF-JWw6&n%&em{Z=*C08jX&tLGb7U|`~&l(<le(CR%clbac(j1U9Q
z7`WBIZ3gZ&u-d>914|7oH*lAMW#ni4NGV1OYvHiT;@nw(r^M=;1J&IIRv5TP41DOV
z+)4w-tEY#m{rhHa6+Q4)j>xH~yN^Yvq=82bJYe8K0}mOn2dOpe@>i>$2d1M04-5T#
zV0s^an4x$<+9;11c-+8~2AK7Pfwc_CuH1r}`h?c82*0U4#V|XNt1?ItK5O7P+HT-2
z1M3VtZ{Sq}uNmMunJ*Z4iE+r$fSqMf+NlZGcS$~|m)?3_F~Eg(6ifQ+2HrHl#V{kg
zByUI)FnH3S-H>DM1_K-Ea|3T1c*nrI(#06tjPuohqzs!3{5mK1fq~5i3<K{=kn;xj
zA)B~i@<y2d$iOFm=4lbzh<iD=GD($8)HU%xc7Fr93B$x^2DTYEWZ<xY&pCh?_?8{t
zz?TNL8`y2&8v|b%_}ainL$f>C83$!|u<umPKe;A%?I6{EklMvK8KhPYQq1a5CBJTv
z`lNF*X=rwjfxQL}8u)=7xpMw{1N-UNL8{!K>^=iGuPmmJ0}PL_QH`N#!6TLOKXM=%
zl>Lc;AxWO_^Rt1AAIh=FFSOUdQ4Zq<elzg9fxj556h27(Vc<^#EKW8uQ(EaDRWdYt
z#$ZJW|1itIxGH(p$l8xH5)Axj;3UW1LD>@qruE7%c`#R7m`e?GzAh;k$e3W+x^1g!
zCaxQ-Xe^nDP*2l@WumHyY9?$Gj)@8;Dw=RjcqYo3C~v|y5txWf#Af<}NtLKiXyV$l
z@<gafi3lt*L4owuX=dtPF6?A2rwbdMLzT`jai)oLOjI^gKU6YtmWdgI)d11<Y%_Hu
z^;~pLzE*>Tcoh@dJ13NRt_kYQ(_<17FmVx!n>f$J`6ezfaiNL32CGJu^E8%_-mXqc
zm3$2|ZQuXa<fvZDq1j7JTx#OPV0DEFnsAwk%S}*!T2a#k_lD4Q>jtY@CN>XNdj_l8
zCg}Mq#dS2~j3KI?iTWn`n;2lCfr*B+*F;AXjX3z5Xe;_RHgUCyW+s}OXkwzN5Luj7
z+(AvmT~`iKElgZvq7}<l&bJh=b{e9nYHJg1Ob|JxHuWSzf$i89gR<@EOfjn85Jf{e
zndoeyw~1mltBEcqdYHIDjOuEln~CnyBJ||-LZpFv*W{)RQ54(kJk`_0jV5lAtb_Tq
zL9I18HeW9jj|@@$dgV(@^f8e)p-f~=^ku_U$<v~oiFbyi(a07dWRZT-;`Bf3I%VuY
z6NA{eqV`}DLrjb}F~P)86T?i5F)`M}a1$d;j50CW#7GkZjWnvcLYTffC7ekr%v#2Y
zO6-X{hN$-Eq%k(p#3U0_OiU#*G&@<WXnb8leloE5H1Yg&wz#NDtte-viCHFQGsuUk
zc_!wYm}6qDaMIpW1s9m8IaIZ8knKNIwHun6xtI*>2o_GWaEpmsO?+kIYZJGbSYqNC
z6VIAhYGRp*H6|W1al45-Osq0-kBK`?EEuYmGawl`%hSiLyG^Vx!P9{68>;y9!jXTa
ziBorZKA+rcVl~5lsCvKzcUj&i@P2{(`yMGT4OPDkRS&X#R~7Sp=V255zRx{jVl7={
z;!zWinfRb(LgM43lrJX2N_n;wktf;HhpDGbn8VcA1No<^YQ=`j_UB1_&cr$s@0!?X
z;&~G<n0Uj)n{4ru`4>&RY~mFYFG-TaHHkCo=U=5(!_;eZ#l6K;>~#~|z0T!)gzJf$
zcw5wFmgZF^+#pHr{h@?+*mHSc<}mf1iA^RxHnGLT`_!C$vs2ZNgp*ZlHu0h0{6Qfl
zP+M9}WUGl!OnlDpUY(vN@IQ|HCWw4$f+z40;hP=dHWTX)rtfH9nD~;y?@XC_ZI{}K
z>@cyD9o)p9CU!9(hpBH&d@IOq6MJq*NcoP4i67WTCiaRl`vrb)Vjp|!+8p)al|CAo
zILMF~rg&fDt%}5-O#Dp6O#Eu%kcq=4xO(BCVTv!a*@NlpCn4E>V^Hl*<?v^Vze}UM
zH%$Fy;%^Q?CJHA0VW3veA2;!@i6bVC(p_EU>H72BF)GF`v$~j+6C65BoD}PBYnW);
z)28onUiw^}v7lLSEqE4m3x<UY?7U^+MZYq6c(XQ1sa&&S+pKM+&w(_-vC;=op6%&d
z2rNVvVhcYGQ(=!J6r?ark+Vo}(pkJ*8P3Op(=Al6P;8;ZLPZN_Sg2#6u7xu#RI+fP
zh3Xd0vT(MQPN~7dITk8g7=ApdYM~18`s!RN5T=LEY&el4yuDMlnuWx|JwZz3#qVzC
zSvcRqr2pkE5IM{x&a4_1F0ycih0p%WUu@wL3zrK6vn~~+CN&wZE))EU;p*Dqs@pxq
z%&jGqe#2F5DSIXLJes4B8N*dQ3-v9uw{We61{NAxXlkLEg+>;xve4MV)fVd2SCsbZ
z{&Z(nld>9D4o?;S*;maiw6M_1LTkz588s~}Tq8IkD<T_<6K`XoEuG+~b^>WTaprcg
z(9uFS3*9YrlB=_Y>nyx5Jgt`uT|`<}@^GJKhpPNKM*8&@dRXXb;YJHLlxcO!_Ur1W
zrEa3HhO1r{cxca-;fketTbLavo_o{BLe|1m3)3w0wUDzg)WR?ec?(Kv8DgQIAOkH7
zvcR(aEex>mY(2$`NnS))%U}yMgl6&}ASQ=f7-3<8g^3nMTHs+sV=RodFv`Mc3kSs<
zvc2+OejJ1LWIi)OjThzF7Nj#diJ_IxPO-pq=OznYds#6l-S#A3>`$g!m|@{&4%!xG
zT9{>FVUH~RIorav!?}4D=3AI!VXnv=b0SCG7;+0N43q#{ME){gtvr-lEI1{w>RT<`
zW?{L7yBI|Wk|h?F(KLE#Wp1gkRU4rijYyTGrFYOYAyPgmcUxG&7`9*rYNdr$lEtuR
z7Ck`NT?*bSbn@J9;Q>0<!C(guT3AER+fX(hvhXl_kd3o#JYwNd3*TGVXW=mmk6ZZI
z!WIipSXgV}4GV8tc+$dCj1zWw3r|~khSrTx>)1?m_=xlk;yFS1fX7FACb_Qoc^MOa
z+LpdUy=37P3$I$~UF>E0^N#cd`85l?*zsRySZ*mHkrySbx4<{1w=8V1!1o1?+izQV
z$HE5|Hd}bt!bU1HLTzGy>6$Lzde1_^&hui`?@JbQDfUAV{t>H_p8|~EmLo!GTP=KI
zVY`K|I7C?ZlnrX(b9Pt@oStIU)Sp8T-~PzV^Pj2e7Yxx=#b1h^92md0u*1SPj2u!<
z=5|`xEp>5bb(aPHvX-lt`TG3+2=yIpv9Q-lhi*!sD6YZgz{p{fhbr&4aKOR|3;!`<
zE&O2NcME@T7-UznaLB@83qRA$hK;^xoqRJQy^A%!xA+$e|Bg_<TKJ7w!~QRkS&!*?
z=C(hp_)iOeTlj~)i384A>8*s!M=Ts=K`UKJa?Aoleb4^nxRpMWAE}>Z!E?6en6+<f
z?j-%dq27jXqhKLp!?0o6ICG@Z>{Q^XT6Dpg%TksN+lFJ~@cx9!*AC|nY{|Kj#qSzF
z#wt^!0vqLRoMt1m5!r}s6xran59ZbznKJMyXM>PsPq$HlHQKnjbyCsBbt4rOKEqDc
z?$I~P?n#7KC86-(mvd}Xwo%PSVy71IPYr}sY@BQ3r`G8$tSZepmg5ZzHqNur#70va
z=i9uI;R*_|aiNXsHZHMoDT$S9*09mFNq+1|)$qIIBB5MtgX>FqYvuvqm)WRk<8m8g
z_M{UdwS<8Y$by{o*lVgQZPc;xM6;xkozBPBwNc+j1HtPF<TmG<DclCba#_b@%eGYV
zRW=&aIo0!zj#Rv^wn50_wVT;!Zljxx?lxN3XldhG8y#$1W22Rgb~gCd&ztzhk*c+g
zHsoBDZgl;2q-smM?oDUu$<W>gI|z}EHagLzHoCCM`2UFW^Gny}I@{ocRoAz2)Ryx?
zT}4Sw#<CZ*xg>wRjovnjZS=5lgN-*EsGc@%v~iP-HJ2$e^kTzpY($?EGWi#Ol47F|
zUHa#ZeQj_{H7Qv-?at!kBhzzbb2fOm2gfVIeyoeWwQ<D802>2sJZs}Q8-r{Nwz1I0
zA{#?&47D-S#w;7dYz((C!Nx=zBW#RhE7%xogNJjTHcE}MF`8jEDm~<_&?Z}Jl$uZ}
zKaPH;kWq@qZ?+w!YE{bfoXkl!Cfgvxbc!9Nrr4OuTH0iZ^H|QiN2zHxo*$(sgv1#(
z`2Tt`&$cng2H#H?*qF->(k44kN|EOj=X^;nt(5*Om1lA;W(?c7$Hu)jZn1Hzjpa7(
zvhn38b(@W)HkJwh5{X+1u^X$~g>t8jJJ_untKUZ{LYlL-QvPnqS}8CbtyVDLN2{ww
zrwXsK!NWo+VYQ9>7&$f`vvI$T2W&jd<Y@IE8;c{ql%*j(MyrvdQ~m`~{1F>GiIm5L
zt{<%)XXx5^+6K=cU2Ee>De{y+s?F+H>hsa*QK+o+85=*2P7g#~M|auSX=9g-7Z_|d
zHraUJ#!EI{w(*vY4K`k}@v4nC7($|qF-E;+<8|>fg`7P`@vPMK;@(zc6cwXNwZ^Eo
zZM<WHHO?B7R{gGx_e7bE3`pT2B)$I_^?{AeEN<gd8y~W3cTgYO*urr}_}M+#pj&NF
z@+U&MdrVpdlPvz3jcqoz+xUugN$wW{S?SYb)R)p^<fP26g}y`JHc^RjMG3oYd}HHh
z8;5LsYvVf``)wQ$wmml7vFdvpdnNh1Sa<GNwNKieI<WXb4puhk{~zd5_Hl_)(%Hm}
z?K)%CVJZ8EjX!PtV&hjEzX^przf1EG;l()lfAqh^nSTo#Hy|Iiag0NsgJuqnbKGG3
zIDmr_HvZ#y>!6Z@lQv2@N;`-g-dK@w5I7jyGtr#%jn8-R?DdH*xFL{4(}5+pEzl9@
z3iJe$=f<&$pH4V?&#iofv4bK9r#U#?K{*H9ZpMvxJbALb;A|;U_|8?qK}9Dm#nG7X
zj53@8M~+ozIjHL3jq>@k9h~Fvi5FEIaO)Y1lbN3Y&UMmZoY%sl{K|UyY7W{q&U5qH
zc@EBZaG8UeQk*JX;NU_B)g9DuaIu3+98ehwSu|E%<fLzZO!7m<tO|MV^}Eyog)n)!
zgIW&iIjHa83J0|vG-{HsBTACtN<rov&#_W!Ro6-1iHI~{y{G4|cF@E@Ll$vxl?a^I
zB;Q!--Ewt)%~-`Gt7v^B{gOi1+(8SP<Di>^mJY6Q@W)uy*#YIZa?pmRIcV*q6VV&S
zs@_-U>A-dlIymU)puK}@o%EXsMeQ7$ZeXN(ogB~>e(Yc^d;sHSz3Uthc5x7nQ|Ygr
zDDX(GkAtkkyDEA(xWPeB;VE`-ql23q^mef8^n5RIEM3G8a5R?kN#sLLiMWmwR?*i%
z&cQ$j#Pbf6gZ>T%IJmD|zMrrW;l=wYXCC+whnf&lCN&x2V5oz{1zZesFx<hX4nA`*
z!of%fPdRwn!6*l#9o*|+wSzH?SO@bREO0Q+!FUJL987o8JNpC&Qv@MC(ZQrLe6j<6
zrzUZ#P$qUx-;rmqqFuS!4qj`KpUIZGAT??h>yon&tB+H29L!~tNfGjJ<2fG^7CKnu
z;7$k29V~Wmvx8-9uQT(vIJnipQu?rM{x$~NIJLyVx+~Mqm)s7<4Klp>w&8x3(ma`O
zmm+rvq|CdV^zmZ_dxwL&MISzG@~Lta`{{3KrT5Sq9nvi@nVrdsGxPU3xZlB}4jyyx
zfT;J7zy}>1Y{@?nq^_vmGPUtx2e<9XJtF;ddz>osxa6)CNQNiUp&&hI;;H?)C#lc4
z^eOrojsp%hIC$H^bF@O3Uw81lATK$1S&$bTyjUiO+l46P6$g*EN}uXqEu+6CRhQqF
ze}kQu9rMCGUq4ybdSQ4=a=+S}d&j}MLfPtIql5PxY<BRWgH1wwX<P1nc1Ah(fcOVx
z#E+zSuW{;Q2i#7`4N6-aFv*KLd?IYr>VJZ8YsoeTpR+S^NMwI;@TG$v9Q^2DyMwPB
z>~-+HgRdRzaPS@b+LGK(M%}n{G5NRb2o84B=NIL9Dg}w(IN-W>ZauimtIXvtRk|g6
z=&S9yJIASg4xSmO?%$C+;9$QHxx9y2q#R_!?Z|B&r+#wqvxC1J{O#b7gToFEj8nfe
zN*(;_;5QC;OLISj`OOE?U-1&Db1+5zaKMG)e^N>LqwdLZil?jn<KPH~iw^1UeJhSv
zM;#m!HcB{7d&{RhmycKfaqwr~cM-WL75SYn&buxO4l*t@7rG16h2`Sqi}T$3V7RDO
zK7BH|uxr+KK^^Ex$3;oE<P=_qtAJd%`xD>AZLO0)c<8J5F3QI)id>xOqLPbpF3P*8
z;9`3-RoWpr%?0(Ls$ckgjY>WCZ-=C!3u;IM&v3#26!Ra!XSrxIUR8FnxqH%QygJ(j
z;W+|nR}~lkou<xpQB^7>&a0Z6I*rJAF3xvxuZz_#E^u+7i|bwVa8cbw4Hr#ZG<9*2
zi;G><by3g7B`z*?QOm^@F8KO$nTwj#htf`_?_9k2^2IkbBDKliuu&ahyHaoxE9@>I
zang8I-$er#4P7*HK^_t*ib9B7<>G2LeW$x?ylO1P`KrYt%xcD@i)&qUaM8j=OBbza
zyNhdFdA}Q`T8R*rA~V%!>!KaA%4+9J;;FYtYC@!=o4!<bb@BIj)yYL?7uN}A7Z+bi
zbuS1cPPT3$xjPwTj_w8*JzY$5G2O+DE^cx$$i-k6y<GHm(bq-JMX{T{ruA`=b<@|k
z5=oYypv=R$x)aj(I1=+h?B}Ati;A3)aKV?*juX_V32K0gXM}Ch1T|3DhzxNt)WujA
z<2e4i817<}i_tDdxasT-%Z?PzTYBb+a}I~KjA5HP4Jq*b3F@cclJPDkxR~f-5;<EX
zJoS-h>@2U7Om^}81U1FQR2O`2<?AZflAV~4ZsMpoQO$5M)5TI3%UnEKoYbADX1SQ{
zVvdWsw9dsXF6OzI?}9r@7P(m9f=Bl8TIi;G5V)_Qp{$N;dN{Y3L3KEtx#~Dk-Rfe%
zM0J~s@weu#Y@VL>v&01<iMPAB!^PbcHBsFu#JdD8ryB1z;^Y!1f~Y*-vRAlR>EhNF
z*~ccTRW9yv;h)GKS)5xxQH@+(e4mT^T|DICVK;qjdqCi~b@C4~Fglg25!k9tx})t8
zn&#qN7aLtX=HhV|&%1cR#S`orJcF0bA;?;RPYQfW;GT)<??d@#U997M`EdR@cIUQ9
zXZc?zYqVP?FS>Zi#d;TSam1jDT)Zx7yeh?CW8Zfwb6{sJ-0RK725->zW$6^qo5IGI
z(+w`(cGI`)Q7x0B6IDD(y(48Wn51}`(|ay9x%kAz|6IJ!cs`Wh?BYW~K438KN=W%g
z__v-a#r?m6Y!S$<j;BtcXQiLI_`=1PbhV3ZF0PuSNNn&+{&UgfS=mRtoibf?os{0i
zxRB#($>Nj(|BkWC#cl>tfPDeJVNBAcJ|6S&or^sTEf3Q?>?H$-Ru8d<eJ=J(eCi$!
zxH#zI7Z<;Bq+*Afq<&`9O;SG!{*yq~NM9WiwV&OaJIu!It@siAHy6KipcDEZ0^dKB
z|5FgQ1@XV=nM3)%UHl{3a=Pq@3&NuUkGVK5$iD(l2xKlN)=u&kz>(iY#sgPJPysqb
z^U^tg;%V~5oZ-RrV0mdrdv$4X;KBCbc;N2>T@Rj@ZZ=`tF-gSt&~9Vy>vcJDh8`|$
zmk=rPP|iae4{be^_i&nri#%NH;dBobJS1Kkx)nW~;h~C$b3L5tp^}HQS?}@uS#+tX
z#&$`UN$_J3RXT^F{>kyG?4^&vT<2EROBa<@^RTp6mMb&)KQAJg7709@=iz)07kH@Q
z;h9P5LJ!qF+%1jEc@ox337k10&fH6=u!n{o8hN<PLro8LJk<4Yxd*OiVAWT6s3kb(
zVMwX%;Yu%E`bZ)CXvL@NdSXj`4@^?{#or|jyz~oHs{E?rt2}%*Nj3M-!b4*ZS9@qe
zC%8?Tdg%w6^>3v@SW7cHr$%}(0^cK^_%><j;To~D71<`K)@+FL)5R6U)8%#^+I#5d
zp}&V~S(k?!JoNOqi36QHbSJY2@9g0^4_!R)Z+EP#t7ygb65W`4W404YNMw@Jl|4Mr
zhrDRl-j>OY9&VyJ9{PGHOj5l(?qEkB54}Bn*)=I<OHEFH6-P}tr%DfSeH8u4D9U-r
zdr%(uXF3}7;2-%x-P8Z>k$HfJfgXl?7~$cn$!ZX_-BL2t!(b0XymavrtL`>g(W|Ut
znB;PXYNUrz9>#l^;DNtz9qnO^hp}F|YKxrX#6@48pUw}Ts%|2~_@3fP9wrMyRarZ;
z7~4~XnKGw)n87gfVfmQpVU~wa*+w2_dzj<lNe@qXnCoGlhgBZ#@i5=R0yeRSJ3K7(
zu!u4}Eb*||!_6KZn5=GPTYR5RDUX<}ZlUC1YW`%!Ppdp8h+k2cdRXS6^?`hwmI;&O
zWG+9m-s#~kh9%88kY6s4dam%mQY%Fu{YhpL`5pFN53AYfJUl|vx@PYahBY4Urvi+|
zy*XC;%4GGRhvEZyA`b}zi*v!%qm)U759HT+c-+GijP3II&n7G865+)fsqK%G)zj=R
z9^Ue>!Nap2p7ZdshgUqT6KT(Tc)<e~98$3tMNjJX65YZlOuovs%TnO09$xeC2EEiS
z%fCGqCM(waI(;}<v6eU41X4RWStAR+?cp5{AA0!6!@C|fdf4RQeJM_Tc)ceToiRmy
z;GzDMRLEwLc1n5v=I>+C?Gq3G6J(2rtx^SjLakUM-9=`eRI|;)=N|s_@E3aoBbkGY
zhwnXX7oHs+b_(*9hpz=;gR(4Z+{JOy!?zxGi!!8esT<*U9wzQjkv$x3cw$)j{My#}
zeIE9+H+eY3@!!Ki4?nQGvFyrXHg2Cj`FLmYlO#FwK>4Ra<*-Qp)x&Rs{32eZWQG<!
z`Cp^_?`-9=HYMe6b}{x%4;ddvJRJ3K!oz<aj(Ipvi@s0(B}1Jw*g8#7L<Ub$bEc@1
zBDR#Ajq>+RQItcqiEBPyo07(Z;X@akNro$X4T-i7$47S`*ZXjNcs^?SxZH>DBk)nh
z$GJX2ACZsKe4Oqh_Q4-cmGe>FN0E;`9g-hfX8C6y{?XvmDeA{53Qe*Vd{p#tmXEW2
zoZ;h4AI#lzeV)JF`K(d4k`F>&(^vQ2*&#Vc1XlK;O;u}u&Qti=Q&m+T)qGsw<3b+^
zi<8I4ryY{>MAW6f<{C~--(UQO+3TjJRaf^>!^g!wF7eU1W7UCE)y%2tA{ym1q}WS+
zthzdTnUrOb6Tjr{k>a&{T;ZdIkCr}a`?%6aBOh1!sN<uqkNQ3uh;H@hv_{!?rl$W#
zV{ukD>$e>BY$yWx2cO11uJ+MXl1+RVCD~JuHWF_pLTGz)TEru)`R5lOt$cLw(NT)D
z_PIL-ZN-_)-8)qso2uIRXfL^qnq;qKb4a~?y?iGh{C!&&A6;pwkL!eozhGlQ3NJTJ
zu|>MkkS5s+8fPc8tJ=fI4L+v%nC_#ej~jiA@-f=SO+I@0$oo(}diy9AIawbi^yIYE
zrG11#{F+~L&8DfoK5}9Roj?ViF3I-u(ci}qA47c%p!Z6$RE9PV6r9OHJ_eWJ6gbSs
za33S7hRFZ!?i`&nLfpk%`jd5y@iErN6dzN4j1vVWFp8$CansazA8!<AmrYX>eN6H(
znT;|{Q3&-RLLL@x(<=FFnqt*6IQaWm?&B^WvwY0<ahs1NKIZtC>tlhBg`(Izsbaps
zx9`p|TByk)AB%n5;^S5yH%pc_UD3loirQqL8f=d85(7(x;SL|meBAEi)eZ^Uhzbzi
z<>l{`-0!{o-9A?Mc*w`YK2|asecb2ce$n9`AFF+QUYxzx2V;!#87dd{Nu!iM+Izsq
z8WHlKK-x<NHY<A>5ytr=LMOuH<365{nEy1uS|3j`wga>b@RX0IeH`_1%*Qi6o@EF0
zvCYSGKGyko)5m&0eMx!V=TjnH^3(MUF9?Om%RXMA=h^f{>Qx_=rmK3>Rrl#?)ZyG~
zK3@011Kyu(ktO8Ebn?9AV}p;)K0fqO%fj0}-u1DOrqS@>ipu~9-xJ~Q`}n}eCLdgP
z!HFY6eu(E+{!@z+KJxLgkF7pF5#}u%Mh>JO%CC`6<V3hu<bNE{PNtJipE9JUE8?H~
z_`=5l9|wJW>0`T(-9EnY@s*FSeeCqH%f}9y|6iVq0r>r$$n5>eDaq8on7@+Y!@rNc
zKE7vvWEf0WD-WfddVR&k3HwAD;-f^3{ft#T-}gxF2OmHB_=SDb$4@>eiVGMH`S@A*
zsV&(Kvm3gVStFCb`S{((Uq1e(s>9VE!uF>~<I5%&V3a$M{NsbC^U=CTr>i5hw7%lS
zvd4Y=>*JgNl>?mc@gGO#0H+5y>7$fmcmOXz!AB+lmx9;<v;ca*g$J;Lw3Uq@UE{$}
z=Z0%0Sr?Zp6s}3=kf~bU39x>8+8lm>AV3_TC`i|taB)i*APUkICSOfg>kg$0JZRM8
z`;&4a_SfmEe1LYcaHT?kic-tj0nP~U2t6F25*4nm*r4`|wBEA<oGS<+jpY)HDx?Is
zB0%i`RRdHDa8ZDZ10(?u;Jg6m2Y5VETv5Z~4QHs=Kh9kcpn3rQae#+KTo|P1S9F`9
zhR#qm0ub^H0a7jrP%{9}`MgvZE)z)lycvqeXj~qEEmcb(#a<bpPJjjh8V2C!?79JN
zJe=bTe!T$QZ%&c=f^1)$YZTzB08Ill3&81%#sRJlaNmq{o@996ERiN<Ns47;4mzGR
z57NM+1Fs3tD!}{z3j(wb&?dm(07C+_r2_-p5TIv(_5rS?%!5hS038B!4A42ibpblj
zjZ4#Y-Gp2m=yxvR;skCwBkU5S>ojirHBZ=$dIq?jW!qQf1AGt3;w&5=%Wn*DQ-ExM
zz5#j#=pCRBYn0#9oSKF$4)}N8^j5{|i-YN;C}A$Z(blRT<p`1wpafxEqz?$Veg=Qd
zP<-8(+9Z9a;{wP*0bZV=wz5S63=1$Rz~lhKgLIN`RDjU|M$ndj`QN=%$x1WRQmkuC
zfUyC_1?g80zQ}NDeSCn4taoMcgaBLXrk^ATnItkLz|;UU1I!Wwr-|A#0!$Z#&v;za
zarsQuYiBY$z?>kRlbk1TE(22L#!310K#q`{3j-_)@JxVb11t`3bAZ)sM7D2$TLY{J
zxbz*j1y~ZK%MR~i*auh^;En)y(qr%T<^(dY+k<o_naSlsWCJ~Xwc?`9ft^b3mV!g|
zl$m~86@c`61FmgLS1?{)$Z<;`Un=<>|Na0EFxmq=5#Yf9YuJgz1FdJOhZqCgh4g1G
zJ5xOzqzKz|!c6sOkiK+3CKMv~%v5VR@&|Z2z>{J!ZKQ{P?w%^St~7VV&p#JnU4Zuj
zYzpvv0IpGdHNb0vyb$2U051vtvcOkFTk_C$!q)@5!LcI1Thz^|%yxV;NH<hc|F>qU
z4IC&|6~7(e9YLrM?R}Rm+dkPSP4lHRHzV`?03QU{!j=uNIlzYjJ__)$@bF!gdr7D>
z7br3^sXuo$(w0vG9^R5RB`>~LlES(^W3)RBw*~l|krUv{0N)1qF2MExUj^6|U^hEH
zonz;B1UNoZz4k+%_)am3oBL|~mhZVcVRL*VRkP9xv(z4GLH4!l`=^Ub_Xc2(yKI))
z&%q(Uy%APNI2hoE0PlzRAjFRWeqtvL(Iv#s0S*PI65`wthuQ7{+z?)fUjzI`1p@pV
zptwc$_W*yg;{^CalI>?H5;>s#9pE3K5U>47?g;xD2gXlw$2j60P9Icw<z}e~v($+I
zr5x}B{1<>pUMB@vGD~GbXd#RcW(Yk@$H~WLsdr|n_W$MQH_2Kdy46YS5Kf4P4(CYO
zF-wt$*U?$Z4-teoCj{3og(0F4r-e8@M8(-E4pCl^%Vw)0LCOi_(8oDgGE@k$<xuX-
z5S2n~+n-bnaYjhbq+=r?@z%4|Ss~62adF$KoCoH`tjb}!tcYrGy1QzKY9Z=}Xb>U^
zfe@F5xGcnZA<hre+476%VXoZ@Q9VSB5ElxuWOh31PC6wJ8869;CF_z9oXjVEV~cD}
zsp!fOmxrhog05aZTU`;Nwz%lnHOU3761u2Ph`J%3YMOL8l&dF2IM3W+Yp!94Mj_gT
zXdmLL5RF5$2+=ac)ghXMXijadMo-UHO+z#bG3P)+oNJ{>B)q0bMO^<AqLm126Q;Ar
zt;2NvB%d)j?M&y>32o_cS!8u>hz^VySxeS2L?^L@Q~I4l@XH0Snw%$`t%!7GYlgTj
z#F7x*LtGzXc!&`pdW5)vE}ElMh@K&C43Q1dH^fb0`f6W(jw%V!D@5-wT{pgOw)%Ir
zDh@%&F3=}ThZKGkCTC7?67yktYdAHv$X?kmM1RQ|5JJsSLqiM<F(|}fA+q=o`l@{T
zb&{o;&PhMs4GS^(y7YtW$PlAK%nUIr#OM%XNDnb3#MltyLQDuTQR<p9M~xSR5;&bg
zc;_57DFn|6=dYkBhm@(pFeAjYFx`4NozW{3)Njm54WXX1*%l!dgjgt?b3>eYMSi~E
z^FrJ$2WFCulc<YAEDmvNh!q#+x6M)90ev$gAx`mI7|(MQYyWAE;$fRhLo5sNa)?)G
zEd3ec{typ{%sWHeMX@24OOiTJs}&(uhPXGx>JY0K+rQ*9b5$}|-NQKCVRVtnYI5Gk
z$gGv$urJqOZmRr)A=ZT4WQ1qfPZ^>i9uM(^xcAVm<dG1MN)?Yu3$h@KoO<_PEA*#A
zJQ<?%+|=`<MIh&+7R^=9hFBNk`4G>AX_C2wod03*7o^~eWtzW4qom-gAzlmdPKb9U
z>ve%|G8B0PD4j4@ang8wh_^y)kYM;^u6kQ|7#I|LV6NII$uE!PHVN_`hX}a~oAVTj
zn?roaeiWfegpWde%z-O{6=6$=ts(Y=*c;-Lkn6+od5AAUd`kYV**#seZj<CQ!I|8~
zQDUAV!UKZ74DnTnuQ~eh{5OHSuC2O5kewlRh4}K?s?6HWQBLr08LRWs6T(TXxGDFY
za9+A8w|ism`w;s=91U?S#QqQmII4&ECB(sy-%s(gaQ+yAXE?L$Pa$sJl*`Uj6XvDK
zLy}89iT@hnw-Emb<@XSOh_-))JWVLiBCPaJ236NA@xKMRO>9{=PaP4NlyIEglLLE{
z8g(KBbt7^z#D8TtDWxF_Qbk7CmR_5^zIL95=uzr1Lx?<gnkv~5oCuX8REgk5@FG+c
z9-dp}M+hTCQL0Z6fts))dMu7mE<*VTo9C&b2;T|)G`7@yb$Wyf(f?J6r7F))i(ENh
zoe|+o5nD;%IRej$aJFdj$9p+y#f$BDZiK24E{Skygr4(NwFu`$I6p!XVd{L<;Kn>6
zw5guHzfk!LB3u}udIaJR&Q~=eTomDn)wzpB?5p$D4Xbm@R_6#wyevY^2z4UVjc_@Y
zRM}b)u82UHyXLFf5k{`gT^XTuKFf+oVRA*oY`qBeBQ%O|m2ftQ@QcV~sfI%Nd%k+U
zYnIH^wlRIRI=wqLjnFK@un5B=G>_0C!u1h)L}(e|ng|^to;iRuMfq0L<lWxwSSgJX
z3fF<Ojnbz<_7|RJ(4te)J^~*duZ=MOs&m>_$ajjsjU?Aa=t5gMRqf1LI;GDoKmD5L
zwwJCEy0N7?C47?X9-;R)IX<_vt)9Pu&WzAELN4OzE4V2_39om1vtXfIz85)#naN^N
zsYRVU@qR6nJ`u81-f8%-oj+@V%12NU21od$efo#Zei8ad7$Bk+c1rkkG%&)T2z+AX
z;}a#YRGkHCNQ9wc)WF};2V)8!L2pM`5Mg12Q4vP7aU)ENFebv-2oobria-<igf=e1
z_y`l|!%hhmVDa7yQpuAe(5`n*PlvlH^yilJ_iBXGBg}{}E5dBiY9`q#<g>dIief2V
zbLhzkwZ&<3Bg_+fsU))~pT1obVR3{zBP@?_bA($WEM>Eb+iw-PMBr_w99T#XsbG8Y
z$FjFaxI@fD|LnL0>W&3!!)f`uME=SMt0LSj_zHnfNsaeNqtkDcz{X-o+!x{g2yeux
z&mV~JV1zSboEc+Hgoh&Rk8mKu!x0`~?_(#TCJ`Qs@M?tDBEB8ti3ra}cp<{t2v0_M
zmR%JkPeph-!ZYk93(}553jbHTd4Z}uI(K4pZs#@G=OV0&aBP9%#oQNZbvFBQgjXWG
zBsi1&IXf5q_UV-+Wz|*5>r|4)MtD2I_DfW`h3d@+>m!h1{inI}KFz%qfqzbC!FM9O
z8(~v~_al5&Q*Df}tATotEq-~b3@@%RCO&dZ?gRFMOY(agD*oI3qX-{UGK+BhkFYhu
z=MlcFm3$JV=kjr7@~07gu9f^xk{{GcK8w<o%-aMKq0BEL)L5u^eJKcwd>vs&gl{5z
z8(}9+yD7U%Ad%HKWp`8Ih3bZdYQ#eI9eovHZ-nm|TAi{>_9v`@FY^0Xyi@jg(}dE9
zka94>4-rZu6e9c>;im|HMfjV#MK~1U500yM72nc89p>P3XYp?wJtF){hTqeJ<=F~9
zEH3$7vbf@!3}pVZEcc%XM>r;T%ASaDl&uqiF8w#cakh1XEQ`}jB6K+YPe1by*Z&Fs
z$tYdvefyXkrDbCHF@hLc3_XSs!;Im^sqKENtR;ve(2haFFU)0`#fJ7`eAl6BpN5K_
z31dVtiei+D(enxw$EgBr%I0Ho+NZhlF;0s?hgXbw%p=TZ3EQ_qoElE2QH}AxB-D+`
zN-@rgF)qgV7-z>gC&slgI>e|<<`}hOTp8os7*%6j664Ys)nX(uE{Jhq48&NnF#U_x
zc`=rCtV)E}`7w?T%o3>{<Ks%|A}ZD`sS)F0;Uv766v6*C(?9!M7Nb^-E2!u4;+ioo
z7laYG^``8oKG}!5B}6`1sOrRg-ow=~ng~O^7>#0F6{CKP1~K+6RL2&oTl!=h#%Rx-
z%V(+kyQTmCYAnp8M2l3@7|mj|j?pGY^B65+ToYr%CHa=pudzsxZC9sMrB*RmHIe#@
zRNFGVy@+Z@=Ljb?Btyp-onjQnD2dTI#&t1z2wRsJU1M~Q@npB;R6#O#ldKQACAmfF
z`WXLIN?msYn=i(VF>aFF-l9M2WmYd*w@A_ahL@&V^@)*<F(k&&7=2^pV)TpAKL&kE
zh4aF!1d@5eA~hh!z!-yRU5tA~=jRrwK~l>l1G1YIDVjVi#_$-UV~mkz8X>u(q_IZE
z*ttlp&t~bC^F)EMlKY$J*8az2LX3$qmdCg&#-tdNW6X{*C&m<EqYl#qnHqydD1Um4
z88K-74?iR`V-V8Gvnb@!{MkJJC&s)Ox5l_lO3jb4Fvg-7v}i$Dbg}GW63<dM$6#Qv
zIPqJAvg1T<NsOgZ_6`w#Dgc(nxLt@VP(qdN6j8iA5x+aeiWtwvcrM1u7^`AD8sjng
zD#pDr9*FT^jMeNri`C}?viFIQYG<qa1>vumDS_7-`YOgFQsYCCRdumyD@Eu!GCUsR
zi5O4Ccv^DTG9&~kUYs^Dugs0vXV?Ub6|G}M3xvKd#`7^=Wuu6tFG!J>V!S8_+0w4D
zSiQ{L#p;z9q_D+lGQIkGjJ21f0du5r_RSdUW4y&UkMX}4pT>AQ#yc@K#dx3n_xfbZ
zV)ZVSU#xg-jPah}^beCC#Mm6;BlhALAF|6=uE|%4(#7h!mg&(kysdAEu{FjgaeAZY
z!iI`Br!N$Q8?MWL7GqnCuVd_>ZZS9o@s+?YIELJ;czsEqZ_RBN$mDDF(gWglvST(#
zcE|W82LH{vi(TWP+!sf4wB_3vdpSTg%6=DP51m<(`j#Jk2ub8=5Bp;rU=S8#N-+-7
z3buP)+))=l#`uYCn&939KgT%4A?|EcJ{yN){KC#s5e+KhSB5CN@M-9C8h(%QM~w32
za9TP1$sv>>QG~~f@HabbjJZXaSA-)R;y7*>!7M^QyU{Vav_rF=o0}bv@o$V1?3i{V
zU9$cYoXL}dl*T9sl961}wIbw>RVC8iu107T!7k#ayhgo?;1t0vLeC;hvHE&N@QYBl
z2=$5(6d^3)rypEUgs2E{5h@kotRfT@p<EFv7V(QiBVOf;P(kq1ig3Ch{M`mGW|2a8
zMiI^|V<6=e@$4d07UDSqPZg|Egma5f_5Y((6P!X4K_KwF|BvCqB3x92i;GabjI)Ly
ztmTp-Tv~)$MYuvJmldIA5iT!N@{}5^mq_g*Tq!(t%G6_x%sQo2{US6dLhB;5DMCYG
zYg~k@i_l2$s|23nY*K`#l58okSrM8Sp+y<P|ErP0uPH*S|3lSxKub|X+bTIv?4HnZ
zHV6_G5YQ_Kh>~*-cP`8@f@DEJl%NCw$r%G#RDvK$qDU4|i4w(3R1hR*_`A=%e$T&F
zt-W^bI(53jshXai?jF~Fx^8U`>Uhw=gN9;X*MoXO(zWWlPFS~*2aP>w?m-I=nt0Gu
zikkiZEl;<<r4*63a$Tjpweg_+x~#Syy!TmVJ3(g2;~r#rFmZO7_8xTbply#t&9SLJ
z>Ln5k9uGQtkn*6H2d{Z>W<=I29&`~x-bqMj4_<YZ5)U(}ca>~654yX04<S80F!Cg5
zz|`A={vNy`dLIv7cP;x0>E}Vw;z^nfknCU&hIsI%2XA@sX(NOBK-Yed2Z`sZQF+^g
zcSIcK!B8RH?pW!>(&3_@fn!-U5FhEmSP#Z|FpWQ3crcoy!N?g^?e2*zrZFBY?vfbT
zt-^Q@CU`K<!$$%$CUW-6XMN<sEH2DD)+7%m%PO1VuC=N3=JM%6W_U1D$osDTfshY9
zxLPiY>v6VZ>9%T#>T`tGZ=RUz0kQMg)O-)WFydo5`a%yr;Y!REV@rPRq7#`ul_K?y
zwb+9t9vt!Ds0T|u_}qi<J@~<cWgaZ|;A;=Ic<_Y>D?Ip$W3HE3DfrBy+?#}~@?f=)
zHG(wwQpj4tb%N_X*x;6KWCV87X~q$wlg+Na`>M6ogKZw{_TXC&dY&l$=I+ex3?aSD
z4i6YnJ6+3NLcZbfp39`4JsuqHQK8i%Yfz60B;QFk(Mjh`4SPM<@4*2N_HmCwM#*K>
ztL2Jy?@;ET2ZzK-rPG-V-F>sF{YaZx)eZ|bxMCmk;5f(GgKHj~5X-Y3ob%u(4^B$<
zXAge!;CByxk?gO6Y)qlfPS^gB>?y%NJy`2YQaml$nu~Iu@nCO`7?txL{3ZOd2Y<UB
z{_)^~%P$IfXKaebmxMocD%-z8uDCW;PG!69!3_z3$Gy1e!7UFSaPfL@+k-nEY<wo`
z9(UvX@w>twWVcK1&q`de?n|~{&k8i)Xg`vnF4#S>|JP?9^McrNYxZnjWcNBB89BUI
zbH~ahJg4Byu_@}gy~rckyn<Bn3CZt80U-rly^t3k;a<Tnq<X-Mpcha0P}B#-3)PDQ
zUL5oy<VD!)OxcZH<sx20y;$MJN-s1o_<uGHy=dfx;f3i%rFgum7nYEcUX=2}_JUuQ
z_&t_IOeKUA_M(W8CtSU#kYa*Q3KsX`hq0-2tu1rPl=gyual~)GY2_&)&v@~)kg~2`
zPDpvd@Uzt_2&tGZO=CR%EW7h;wX~lMFP?Yx%3f4)`3qjqENxTGi|WE(^rD84m%OO$
zMIGTUdr{N1tR;kftm`WEy{PAMwyME@cw;Y`crn?FDPA=7qL~*xz3Amdb1zzW!LNu3
zuk-odQZUntRzj$>_M(l;+j`MXID5n*rZ~S_iqc*%T}nOaMJF#hd(lyJUMZmX%71KL
z6;836kS<<y6~e)%$kbi3JzV`YFM50Nju%6{=;OufQaVVGjp-|-pJ0D4-f(LT5amrl
z`h3fafoUb1a|ouvUJP+d-*#(JA12}$FNV9NBfNN5_(;J~u0C4GdlEmaI98^6oQUIH
zn+aY_6h29?w%1M{eX189dhwAL(_G8xLS_ig6nx){4}_%0XO<VUz4*k7Peq&~GcsTJ
zT)}yQ9L5Dgc%YBHSm^Tf1bybkQrB#eki~*a+!6R(vdaYNVY!em1UdMtyjabd)ywST
z&cM^rof%6WSbMzq(u=iTtn*^Mh~Ij#LC7{inr#%aN$@Md&4OQhu|>#ML0YcsTY9_j
z9j>y|i(M}NM#yf#H9d3Ceto0(cV2w&#hGduKX|cM2zjp7M(#HZlKo!%n8$A0GGj|m
z;}E$Qd40&|!(lIuc#+G8<=eEQUL5n{H0!bpt1^#!al(tAy!dTwirJH1{7mk}?_T^O
z2EPivRx80$rWRct@`o3HdU49NdAUGFx|F2<hRm~GocH1{FUZev(RECa{4Lp>K1aMD
z{G#ALUR?6xvKRkyZ};Msh*!Lb+_tX?zsi+cEXi6-*S)wQVxx`;@3PF>Ufl8GF&`fH
z;jZWp1n&vn_oCwHYOHm8Z0eyXj|49kb-ZQsIg{IVg_XmHPqbuqA1b!WN*{$})>Dp6
zZW%F#Ssouc4M>oz<xML-1bhhkP{4<RJ{0o7<HPB-S$-e9J{->(|KO2DEHEzR^MPMX
z_|Y~rPm%_Aui1(ZAs?zVGE^U$UdZ(3OYqY<>_fzdsL%O;h7Xf7GDtKZbm7bzKA6HS
zAD>gh_%#;Am|ObfxD>O6eJCPIhGdKR@T3nLeAwtiaUV+fFxrRrd?@KdDIco(P|b(Z
zK9upHk`K@Nc#kxm_Tl6CWmcZG%lgnR5HIILc^_(yOOZ1@Bc&C6sNh3<T#AXtOe4?R
z&-u{xyj|G`@;?SAGJGIDFZT1#+pJqf9KIk5ZL0h5q7QHT@Qx2Pe0bxhcpD$u`tXwQ
zmw8YjwR~vcLqi{GOSX<+T_5U^bk$j_z9?mbHhCi-8cVjNU=tsj31LxF9~>L0(%gp@
zuHJWCilwbMM`=Y2+WB}7{0k``UhyH5J@p~WhxQ_N5M-5cKgDUol<*-bB6&yGjJ%T%
zJ$>lqLua@2RUf)=lziwWN_RnePW$O04M_9XeCX>#KPl=h*vE(0|6|#o#y$)ZWq_-{
z<-?mUr`v%pr)Rny?86Wt=_3wh2#w<->iFwnhhaWUJrW<zsTr3V;p6+&GuDqw5t&B%
zFp4obF2%&vJ;sNzJ}l&7@nIZ2_%PRpc|J_=VWQ9Z4nEC?pGL=Dd8F-WTYVBkQAFxf
zgiICe`bZl+FFxG|+RPA~>BIX%J`kk-A)6|EmaEM6VUEj3l}z&7em>)t-|NSv7O>?$
zoEeu&pYtCrm-VR+pZV~)56gU5<OA0%SK<;Oiv`a;$XqH5mP?Y$bGZ*+`0ypya{l;;
z{)rVntYUUv8FhSWB}cx0LVY8#+J`m5YZR~-29ht7%UUb;>jc*eviivbS(|+LimS<w
zr~TOM!`IxGe7MKs`mmMl^x>=z|F+E7=EF`OcJV-`Gq(%w@Zq;t63l+%!)_mr`fyAv
zzm?KHqpI!kf%u&d-wXM{heJXr?iI36aK8@+T>YT<qyf{9{1kBYBhp}s$GIFHWS-!}
z3AylI=1Do+@2=&~LVoe#S0TR%(k$)s56S*1cuMfJYrue^8S$JC=NV}}{O!X9AFgwC
zFUrm87uh>8CjUpsCBe&Vv#Ve6;i}88`S8SO=eRdSx#{Y+gxnUqBgiql@52M1^X;|M
zqTCOCc*JvWKUBY?JmyDkKl1qTxMZnh6O!GJ9Ilenk6bSQt7LiF<n_ZNN<LT5??(Zb
z7Zg&+k11;{8ha({b4&ex1Y8~zk~RzZq5EO@5f(Ax+C=@({$oamrXPj<DB_3Z+Sq=?
zTn-_%7v+A!RZ93#)aAwec+%y?{mw@o9hMZOlwfJMw2Y8EZ)j!xDCfruepL0Nyx;k9
z#8Zp%f3|-{cm+X<75%8>@@M^c&gB_?JTJVmU=>%NzbJP#KdSrD*pDWDyy!;_KVJ5u
zrXMf)oeL~W*H}cRdWDQyek8kV|0~uOgF1qB{ir9TzF-4ES~m2fk?=SEwV7?|M>9X#
z`q9ph=6<yB<Kk1v)`BhlXeERn%@mo6k59GnJKy~ejmi2bZz9tzt)43p7o7$)>)=Pi
zkCp+n3LweB^kbVJ+x<wfkA5unV~HP~WRQpXG2D;Ne!MExyZF(~j~ffKy84|j{!F}n
z(%p|9^iaQAPd|G3@tPmSb7Y)+C(&C(>Tmhc#}6v6i_%xHpJ0E%Hv|U=z9~p!RvajN
zkRY>z{TSl%w}rgp$52;UIX?FYKi>7@Lq9(9g8@I1k?hA*;iCjc3%(~fMsTd)I6uY<
zVXX;5CJIgxoa{%j4hd%k`7zy(8Gg)^?ib6S<XOQxIh?CB$17*N@5jd7nM#+$2QHcA
zN0kR17Wnb8AG7_KBOx@dcVey|^XTF6#DY=P=8L%fc)Z&9)VSN$LLRYK;!{69;rQoE
z)VyaAKNGRmPw_>5{Msvv21^;VxiZ%JvCfar{aD5^?@?j7ACp>Ttn}jx$x>P2=L?f#
zB&+;b?RWkzs`dEP8al6%@ulD=7i{uVnHi^Mms#(}25HPjKeh<r>e%GRSM=5>v03nI
z!EQNiDlFY9W?$X5cKET=k3s=>0@&rpH-21aocOWZk8k}r&-VMV$B*wMu>bVqdp~~g
z<Cq`E{n+crK0glnamep{BiJu^fO}VK=eqzCzZCrF$6-H?_;FN9S(GkKlk~TS6Mp>U
z$1fZru{kODvujTqrr-Sdojd0n#viW#|MkNIo$})}?cJ4lR!Gis_BkQF$EUa+|Mueo
zuked<(Y3tf$3MdB6m-_?Wmo48!0Z*tUiIUekYDpUXUhzjn|?g<<FNoZ__zGH?Z+Lz
z!|(d>(2si^<M;f0X96CidB^y7k7qDZr$~G}fNWAXM*#cRSge>m0J=TgCI>NR0J#Fl
z9Y8vpM=WnP$dNbTILsFSUF8=nAjoXNfO9w!Zvegk$_7v_0Dl010G<q>(&bDZA{aoC
z0G<dy2|yK}Awfeh96&?}Eu#TwF4qHCzbH3FCR0Q!0NX8%1pwiN1t*SA(TrzqMFV)h
zV1kz)iwU8^Z1Dg}1W+=7Bik~|2$GZvptQ?36?*QE))`Mp_G!Tp+3oTHJQKi60lXXl
zul-gC;Q0V52T+my5+(D=<g)=h7XUZ3^!4Ekj%q>Y`fwF7s1`tVAuj~bqEn)(AT4R|
zqSUGp0IM*Y#+m_Vha8?Qqiz7T0;nB8ok+4y0H2IcoynF#zPwbjp3E0JTR(sX()Wh$
zm^2EYvCEqT&{TLc!RD^sB7hgVC0M<60Br(j7DV$P+6MTo2fG6JCV<QU;sLDV;0O52
zCE5otD1gBMbO<0JPF@#G2JmVCU4(ZGAm#dhMMx*X&VnCjvw66#0rUu<K-}3hx&_eP
zwf|g7dj`<URbCU)JAgi}!Z7G7oDthEfc^oz@t@cjAVqHm@RpE)|EV=3;B4vqXseMe
z_I3d81TZv!VF64GU{V0X0~is&c<MPa9(C5<4d6ZDBLyjr5;8h~dmA)nnZ}4RHh^)i
z4T~nYoK7YOFop9Kz^5Wk4d9~yW(6=Ufa#*l2;c)DGZ~)&unOI#{eS5CVRp9gg@SWj
zeXfvs0n8V&KzhdxejLEp<5MJbb!2?%Ggn_0z@h*a2e8ETuvCiZ|8rMi1C|Hyg=AL*
zu*%g}(sFz%-Rso>tP%Z7w{)%B@(lrO<V=mKwlx5raBd1<Ge;n2{3~`@PPcgG^EFq!
zKgqNufPOjSB-^CQcEKHjI|b>7GqpQ_Zv*%}fIkA*!+j=zV~qI#z7ODs01gIlD1f~I
z>|>SPFCGwF+C|?lgvyQaDI%30xsL^K)YYj_Kf+nQ>-_FXekPxNB7mQ`U)|Pz4LIkA
zC%LpwXYzv2&yuC`ixBP)zXhC2*1-v>P`j)@8Dm_zK|CKsyMl?++#UmX7{D24;l$4d
za4vxJ0py>Rc{6}pLjDTi?*J|Ya8a^X1^*GG*`)w3bHkjF`qx#iaJQL|ViD7|0Immc
zBfxve6KRE(*$X6Y2T*@Piq~o=-jRxT8LL9>yM8tnNIVMQu^>W0go93#9uFcPiSTTK
z*@MU-Bxex0g8VNq$1IN^2@gcfE7^h{Wfl<Pb4v>fDHMdqRlGvdPW(XxTs<g65mW`^
z6H<{NqQajFLK9LXh$n>Tf`*_eXa!*li3viGZ7UpfuCtLa6%C?<=*8U9Cxa+1{O>QV
zv`tCLmJ%!-L>VFF3pyU24)THt%861@kYafu&jeAyRn)asCE?EsJ|~#&GQ+-d5Oss7
z7etjHUI;p;)>VV36?A?^B(Ek)b-@>ds3GJf!IuSTQ#0tCv6I~HlBgX-oghe9omfAJ
zJ`++6gJ={)1L6GY%`e~?d2Q<Cje}?sbiUCy72MGzPTnGjmO=a!#K|C91;G!ytRUJ4
z(K?7WbTX=1vPXrsL1ziH;~<CPnL+1T-1rHpco4*#*)uwDkb@W;#E>A8v<#v@TN^|w
zh*x;TyouL?=oCa}R)0F#Cx};r=n};1bIR<VkZRN~(Ur5{wVCb4miJ3Abr;e@uxAjx
zT>Z5mdb@n-gw&Y{DLU*M#L|Wdo`dxZ;@$-3oN54%n>{foh+W$=-xU6q;6OnZQLmbr
z(coYfuPDA9#5+L@4T4t)nH?6y@E|q>u`!4dLA*=nL3|#>$RI`q@nH}j1u;5^_kx%a
z#M`+t#t4oNVnPsOg;N|C#J(;%3DZOorwUFIoE*dy*YeD$YP6Xq+3A8G-nFUB4B~y)
z=7axuo5e2V%2*&pvxAru#M~er>#n7bHBa>UK?EnJ(#pp{EDYk4AU<`yEeYZ?moE~s
zSTNmS{@A_DEnO{Sc@ST?%8DRX3SZ?aZ&b>$#^qlIu~zsxS6MHFKecZP;;SIO3*!4A
zHnT}(s<V0DNa@!>Yzbm(5Zl~ZJA>Hn@*V#ft6d_VI;8Iw@~vyLM~FQ!^+OPQgE%Tf
zw9hR)BxJwffglbFNjL0A;fDp;o+CkA3pj(%bS#MDqMvX}zkMwBa}d7-Q9waK1-}OI
z8{;jA`$7E9Rl`*o#6LmjqwUWi&IEBbh*LqF4uappnC=DaMU9MeL7WfbuOR*w%a5+w
zwCCsGg&>%oy60Rc;m`WSOF>)?qR_sMcY^pgh$}(dqOzy`)gX-T+B01jaxI94`#Umw
z!_{vJnYg(<jc+rs6LAt6+zn!nkOy3D_cI?cY!p1?;Lj;Dzj{WIQsp04kWE2u1$h*d
znwTn;JtMn<913zOXfQFAOTp_CQ=hlZARqR426<kZWzWbbSa5Iq`3GY86@G|kP#l>v
zqmTlRf}#qFDex-rDR@G0E~NVv1Qh4uwxJ-XKv57;5LKWm;J1mef>5_aNco@d9sKUV
z^mD(2ra)IP;i7Z8=zO6#WAmE@xhbyb%~D{yJSGGR3cE@X1?kJ$tim=tsi3%miVEf)
zj=yw2vxMTDmOP`NqylD336hjnP)7JuuJW{yvI@!xDKE&nG_K&<?D#5+ZfE6-Kc^r=
zff<4o!t)9$v;8V2s;Hvi1qBxrTvSk1K{W;MEBHV`bp<afcvHb!3Tn`sg1CY#1urY8
zsh}<UqL-<qptgeM3R-YT?`3}POV&|PS8={3JXo7mPY8K^Aq@l@3N{jKte}aIrh?4`
z2lsHkm1NXPEbU&QrGi#$cCAEf1#J{G8=l}z0?hIwfXD{4Q;;bwDLXxj+4c%LDCnV}
zr{Y|{O(^K3ptFLcf{qGOigOkH6?QW-gM^qS<gY5|Dt_psi-J#kRJi+NyqhT91$k%|
z^-}N}1CP@u;?QeWZy`A^TYZH5(;(4L$N<6qL?H)GXEM>lDPOW^_X-0Q3{o&w!8iqj
z6%0`@Ou=vkZ!3650dJ+4aL&Hnt-?^L%buD!6JPhJ!0ICuj27`-1tS&bS~SH`jN}{E
zn#XL8`Fjcq9g2@(3;QORcxiV$Cz>5sFgs{Zl)6(mvzM$%46|+(CM$U5R5ridF7od~
zi)otJOjj^N$U6QgqnDW}#_ZjP3O-V>R>3+2v*=U75(P^Y%whB@_=H2JV4ln)Yb{Wm
zE9diR+#rF*aVj4xSg7FLiO!uQvmUc~8_8#!-_F`1slo;?W*i=lGgZlv@wtL!3I?3Y
zwpzh*1*^JMSfOC0f-e*tc-0A#G=A69SS8hI(Ef0IjqooO^zqmnYT|kY8x$N=a7e*M
z1)CInqhPm!uM})nuuZ{s1z#)R=xtH3mC@3p0$Y3SP<-~p)b}?m>N^zYuCtvAb}{&~
z$H<vZ<VuV=94CIOV2^^m3ic`ZPQmvISe*txh%0)l+pPj`3L?pK+4?(sY`^Ff4=6a*
ztwPF*|ES<F_i#?Af+Gr!DmbCwCmH`^^x4zka2=Oyw<FG4KB-{+#MCc>BtP>bAb;H3
zqXPLer?UO7;13076rAOHKX3oky#gotPnp3}f~Ps=*DQ+X6r2~g%(7vB3ICe|B@=W>
z@E_j%$=yjsB^8&sthiyS2&%ZE;HrXLDsrp1rr^4Qy9(|pxFJq%D!3(NuQdKPr=wD`
z_~G~+i9L3wdXCtAjyX4Z71>ohRPac_W2&>O@OCUBQ`6)6<0=^W$D905{O3@SQ*|bY
zrS(@^+#*QwsK~3rtHP%upNjk{3aQS$Sf15Z0dZJRFdfP4sZ*pnr?`_}O7K|B(urSn
z?uOztDJoPIF%?h|Qk|_JszOr{R-J3qk+j2}6{xe8uEJDdsW4P$(<?YBMYL7C*1bZ_
z9u<hZI7uw5qKJx8DoU$(LPb#(PpT-cqL_;Qhn;m%>$J^VSjmqajF;e^oFjwRT1%>+
zlYytQ5zDA}N=12<uitSZ|7jIv<%r}A!g4B>3`;Q46_saHRFF3C&{UpP@tlfRRCH32
zq2hTJ4OKK!QJDu)@iLF1;sq59t?DXX6jD`1H6avzopoXj>G<Ny_Dd?ba)*q{s{Jst
zmWcJlvbKsklBIoJAslKRy}pz-5KOyjtfGmExQZ+lO;t1#<F+cAt7xI3m5SCXTK>nL
zwdjY)HAT`!#f>HjHmRLdq>{<Wn&fOL?NxM8k#cp;c!JTQqN8}@M#m-*IiB2IIl`S)
zysBb|inmpCQPGuy!+oB{D!Qxat)h>L9x8gO=*96=5xC{_h;`ea%4Bv+_5?pW$X{2{
zH(ggR(@&1xp8?j_D8pM-TV}8d8$UqBn=0ON+cucfCy_izuw{2=f8gBF=Q}Efs(4Su
z7!|`*3|BEyB4Gr_YIx#Z6@!n&nTF+a?jgxpJ26TkVKh7bQi7i{bi%HURWVM*c-6UR
zPtQM`bGGrZ`D|{;lT=Jraa6@I6;o79RdG<oAr;e9Ojog7#TP1OaM1XN)SPP}GX>vQ
z@qv&J1uN#UX){~J92K8%rHD9J#e5YDgwGSa&{h9f2#psC*<Vb{D|J7U>=G4ARV)&|
zSg>@ttlwu<yO`VY|G6k6%ed7n$z<IXDpso4reeDktx~aG#Re6tRjd)^OKu2x>~$*E
zN;cij^bt3z*rZ}JcNMqjD<SkxgDo!K%JJ!}QyknR@o{H;hl-sl_Ne$y40Z|bR`HFH
zwEu72y7cqCiXT+$6Xl10ZH@q4?N#||U#Ca=UCRU9%@l*mkFKJZ)clHZSh7dBDkr5*
zgyP3loKTT1gzO>wq~fHM-cj+hieFS*RPm3BUse33;=C07uHp|N=T!VDgLYcQ85O65
z|5P-|VLVHpp?K}Lvv~AolTyS24?BD{CX?hZ6@N?h3xZ2LPMeu7asOBGuZSNV(yyqv
zD*Pt*e<8HF&gRLu-EbA&y?M*!w}r3)cU9a|abL2J1Rn@KlrE>6L2r+R@OTJaC#B9@
zaN3X~gq$JRjjV78xkBi*yn24Y+=9&J5t3IhUkFO$1jTUA4h2LhC|D>2j}R7lL-2)A
zu5p6NA40(8K_QBu8bT<Y6*GE^NcCt4nh@RfW(XNFDP@Nc3!!=hFGhe63Wrc8jHkjV
z62cQ9d>Fz<AruXvSO`r+XcoegArudxY6#UrC=o)*5GsaHDTGoXln&wg@py%h^DVnf
z$hmI$RLJ>_j9K!hL(W(JvTU9Z^70`(Bb;A^nSJXoo7MUCt#DWU*$|!!AtU5`C9E7m
z74i1GWZ&$S^{9(Z{q44i7g)V*g1mYNFNRPjgt{Tr2=RULPD^Tq@Nx(fC#71fvY4$I
zLhr76n%5Qsiu+E)>xEE1gtaH)O+wC<hXx@u3OSc98%mZocjR!5rKtm3B&a<9quxA(
z79mWR&bADpRS1(pm>fdu5ZZ(=ID{b~v<;yh$2o-8LdXmuE(h%zLY6xM$q?EL?;w~E
zOpiv#5K?sRTE5B=aCzsD^K&Fetcxh=D;V9}((WPj5Z+TT?X9=8^UE&!fDrn)mam7<
zH-vtY?H|G$LMBx<=y`i?=ezuyuH{=o1_}-mblisUP6%TpJJc0NhEU|0tYIMxca;$#
zyem9?kz|x`Iv*|Mz0m(%ff*aZIJb1XkO`bVA^GyeScQQ!g)tyuFje$|U7agM)Hw*e
z6fh%%nIXK-BgPXQ?m3sEKaj{FnH9q95VnM{HH0}K%nf0A2w#LSFNFCaEDYh35Eh7M
zhSSF(Fw9tsJ~`c=hVWSkOGEfsg5hQ^dr=6BCA%cVzvi)<-m@4aEd4x$Wg(nB!9VWF
zpr2D+^cCWBZ3yc^SQ)~q5LSn<hNE36$Cpx+o*=fL_8g-15+q-<Rf}?O2w`IgjMYtI
zxmoZlhUJMkTSWsB*5cyY7Q*%r&hXG7><D3J2!}%WF@#+*@85*5I|Md{E&Ns#*4iT@
zL-Jh+--qynjORYVy@Kh6?U%K1K$L@m9B>vL4&exQ_z+Hpa8%lSOq$1r9m*X$E=M^b
z%4d^OwR>f;*3TjQ!VN)0diYJq?;+ej5oc+K;|~5Ihxn7Nb&qvg2*>AK2<JK4A>5LR
ze~JFD@V`U2AlZx3l7EC>61*&!xMR^dJ9|a4S3|fagyMDaaKnwm+acWHZW)Fi#@!I^
zai<L<7{-0E&lyIpFdl^PFoZ{<WD7gn8q;G!9uNOtJZBdrhalUZTS)#e3JA#~m^X}k
zLg*nq;043*ic(0>Bgpm0QlD$-4?FS0DvGOw!%$rwa!VtkL|vV2FoYKqG{dlj*xc=1
zo0t%UQP@>jiwAlljH3Tho)li(RZ0jcDOf6u(n8V|pAMsJ82iIG5JtH$%7^h%7%zwM
zOc)iys1`=`u(MZJ3?n0q=Y>}a<JmAaHcvb!+4LH$97dHeUI;s%2voR}w=17T!fe$r
zhUbi>R|J<K(~Du$2xH5n6ccaNs2N7BFuH}&J&f96)CnUM#w%ge4fBtL&>@Tjv$-<r
zhtV>OR$(*<V@&fzL%~LZjRh$-38Sg-W`fNHTL@me-i8LPrG;F`Y#37;$+iunosdjH
z>hUnLgtr$g@t1QklWj<{n_YGGg^RkQw2Gut*x7k#&?St{VRZ2($zKg4_g&|jXIJsS
zMa1eo!sr>s9;w(XjMu`L9>$C?dWX>`j6q=x4&!y&Jf0XRbJSO`Ul{!vGs52#93YsE
zvA2Y$<1?)cp%TWZFh)z!J7J8FnHnnDVS>X2St}g|?}jnbRnku03u96kykI*fjImNQ
zE{qAT&3HG4>0zRX=~|P+nBv+@6*A4WoEgUZVXO{gO&A}9@nIOtWgI>VW0qKcA~;)c
zei(Cv%nf6n>*0S}yFiLQ7F;OEUVIwHXJIS~V{sUti%9z=LYBHV=|)mt<|<zZSs_S$
zrI1zbF7ag;Yem@+#=0=php{P)ufo{i+HVw+9z#0c?CM*?_}b-Lgz(z_Hdom$WLp<~
zr;uH){*92`VSFnj?e@DcpX+y))em9p6~d1*W|{U$_KUWOgJB#B<5C!x!}u|b!(sdx
z#;GulgmIL?8OASR924W?VVnp%A6{t>KZS8J?3`9HIGg>b*X^p0EuY1rUnO9ElPb?%
zbAtc(F#eD%gP$K6R8EI+HjH!9)HCjgoe$%$FfN2~QH<+!)&CZfKH`e2_CJ!Phi$T^
z{te>__t*&XM{qTaYhmPwAZG;E!+c=hS@n0q{8M=6BbDiP7`LSQu}LXr3;yLi!+Y2D
ze~+I6uH^$E55ssQ<gtk3;c>xig4qSP7fMji6>$#4lqZ7R!nvrK%^PusorI?=1tKUI
z!IKdbkDyQl>{lp)aK!m=@kHQ_z!!mEvQz>>c#ax$6(s^y`2R*=M6$&qh(@3Z*CVin
z7=orCy;+g}`OJ#(D?kK=MSsFAEfV>k&l*}5{SW7ymWZGvNAh_5xd=*$eYptAM^M_W
zTPA|1T>i9>vVsge_L@`nOav7oDAvw7ho}FF5ma*RpLH!Wggh@;S+Gh3FGR4&{gtq4
z1l2^RhqUJ!5u`ZI5xf+^%MsL!pjHH#5yT^?E#u!puug>k5#vnFCV6DLUIg_e+d#0P
zU?aiCf=vWz-!y_|E^jX6k85_z2wFwZTC!~;XeXqN;J=fc=l*g{PR*BvkR@VA!S)e!
zh#(=HHhk1H>2iCrQ;Vb2DT2-s{1Cz32wsh#O9Ue#csGKs5p;{7KPM%EwU4as5%i3p
zR|NAOvwK9GOMG$O6#dY8ErLD~ydH6$&FRgGsY(?lr#hBN(x9)H)t#K`7XdFPZhIxc
ztK0)9G8;jT$Lu#F{41-Bw<0L}$YS-u5e$i77>~&LieU4>_`w>9cZ9T`oZ|Jsp%D;y
zFV^q~MjnjwS8_fzIWmG#5zL5SW(1=neBlEoMldOY$}cCzL@++WS3uii8B3$8jT4bN
zuXD0_6BzkICPy$unmR3l7LP2wSz@X*j8~+09*R$wB39X(O1vMz2N8S{!KV>?7{Nyo
z%!**P7|{PKk1Q{L(dbrTP6XR-XU>hF@8r~&JN7*3(R>-41%e+7a;z2#S#inwj3F1n
z*AZ+HWwGG82$rxrJ&mOid>+BF2$n~%#;yBB1S?&>LI^EaxyowpNcH#vvr0@~inum{
z-Ipz9*GI4+f{mQGQPqzA>nNMtT3-p-%*L#C^sVej1bZU*E`sgSk{uE3jNr3NPHDw9
z@m<_H#3!@gNZs8Ld@H1%=)CG%O33#j4$hvjFM|CM{2RfQ2o6MWFoK^W_$7iv5&Rf&
zE>{0UjNl08I)dXgsF66zmQQmocn)itm@zwZPafwA-U%6YmQI+QIw=(wPfqbUre7oY
zErRnA{1w6P5&RLsSsDL7#r{+Tr^T3;E6<3+`QnwpJfS$r*@xCS+CQ}Tl)>K-T!`RO
z1eYVY7(v@oNgnGThRUHh8|hz{b*W||9ikKD>FKKxTw_#6ku!?x5!{I2ZUpxt`1PT6
zGlJW07j8wIpWgVB91nMg(>>X_PJTav2RzCnD|-~BN+lmg@OTv2gg@f`DTF$E{bbvW
z^lvU@FIlYk^W;>nC~`;PiNYI2o+$E0Q6P$fQSfnwhbiX@dA=y}N1X-xekUi(R49rT
z|7NCF!JWw|Uljf*)G4V*)LAA0@+d;WgMv!b`SprLVIHM>1vZ|ml|Kn_0hUT7qES40
zWN{%IQJAb~B5cBn!j7VwhVB|-Q6P#oQM8Ssa1=$Ncs7dXqIe?eJV91AigHmDjiQ)j
zpNyik5Ed1Wq68Zt*;0a$ky(5gtxQAb{*W@FJQc;$QIwtH+#)hyP@=qB_n9b^0yf18
zu2M0IN>R)_nZ-msBZ}vvXdFcoF{m6x)u{8N+nR!Ql_;jnE%Sn4jsA&hQB;rO#VBe-
zQ74MJQM?qz%gpvqe4jtYTW)GnUvJflI=A1D5NivsF(p+`NJBY9ec?QG10iJ}bf9G;
z;Z&MN(JYE9>vA(S7yC%wL~9OXrDTgJT1IhrVB*riM5`!>ZKc2LPP-^Fqxdt5Q&GgD
z$ckcg6z@gRK8g-e^oyc@6p1L3QM?+(&o}LkQQWMU{4|z)C5lv(Z$(Zrwelo8MM1H1
z)VULYx4RR&MA4Nq7)AFedPLDPiWyHNdrnF1$(MX*N~%{BuSM~C6yJ!_o3n7k?i1xp
z<C7mvN%21Ol~YoE-BQ}T5ygNgMn&<{AcObP|1u@@W)yERETb3{#dkODVQi`=IXH?T
zQM@g@a{lByQH(3%G_U6^d#G^QP#GS@2(furP<<kKsY84uN2WuZ21{6RN@`3LW24v>
z#dcO?PotO>#cb)|1dcf;SNKH1NrHU(Z)z0N7$i}=&lw+_n9jvDH8ms3w_`b-x@9LR
z*84T<gD5_X;v>dq-2}U{)=HXFQ?wajCFevjH;Uy^d=bUGDCTouqxg(dP$an^icg}>
z!-gMoNE;>I8Jt)c1(C|)!pW;Uvld0Mm=(`Dk0mlKiDGFKpGy_a4jWKlh@&qPh1nHR
ztc>F8D7HkgDvH%ySyNM+qgWFK8(Gsz62BC_R&bpl#q~lqM6prGCc&@V(z14v!?>to
za%&XpZrbcJ-7-$tyB!Rhtyw(uZ&B=wVi%`4irrBhjpA4o-!cHA_&$msIHwHGK)lJ+
zlr_W|qLw$ECo892xA%&^PjJ5=^#f5H6n;qXM^`@_#SxcJHj~GrIKg<nVgJHFisB?g
znn88lZhpgYPW>;_86_U^SJwJ2Yr=K=j+y-3?bjbd+BQm@j^a!dWi&jc;cOJ=xL0UU
zHJp#)uPCx>$f4nHZlO_Jj^ba54SKs6#XsWq5|=|P$>Z{%uS`u{iQ;M$_oH~gIN|0W
z#jPlAM{y&H1-aul8J0I}wkkc*1BxUsUC6u>#l0wM*~z<HxtST9Q_d`7faIY}E{z}4
zK=F~7QK#|ano}j423iiBn#!pmm*z}IP(yAFc{F%6_%!6zkdJjW6x5JkjHeY&(jk!*
z$4_-4xsV2r1}e-hn3`gf{F>8}x9ns<0~;A0oM3k2)D-={6HA6Pgf%>=p}2;KhNuRc
z8@mQggRY_1b(=c|lcB-V`0RO>sX2j7g&P9X{3{kYG!)VBgyw8Ag$1uXk>o-ss-c)<
zX~}HH4aeIY%ZaxV8cJ#?C8ZQgvyXDDpYtV~HI6^6p{$118ro<mr=h%tsv4?^@iQ7K
zX?Rw61;L6MHsp@e$#a^s2AMK6@bO`i=QUK;P(}3g;(Ecg`8Z#)x`r1u)Ys5Jb3(d?
zhL<(e6#f#&P{M!_SWA?;8fpvS=+)8i!_*WbhqdZy{A-CMBeS7~MjD!HXrZC8h9(-C
zGAjW*<+`1Y*k-PWbPTuD&`J)(2&V@=l1ztfX(RpWtRYiFTtg?xW@%`zA*n%`mTH_o
z*+D~shrW<`W~%c9^n<A>4qZovjfR|c6R!xCnC9&2EKSejs~Q$ux48p!(VRWGtA_bS
zoDHFehMpSw>gcDVmxk9g%+WAcLvIazG|bkV`}SX_0pmx*o7(@~f!~jQ7!Nrz-Vh|o
zNIH*My`^EChVdE(Y8a$pu!bQT#)zM{1;2RMVKl1<A1XLZkadS^7~%4Fg^Uy&rGbxe
z(cnD|tloQTCUGnm$c9XcRi~vo-nU35Xqc#Bl2plY-<l$1vS9yhSuLlfrV5`XI9+gt
z;7q~y1wYX6p%6O!NW(1Q%@R)6c#A%99*2%gQios10?v+xZ#3-Iuu$V8{8+7Fja2zm
z!{-{7$>4mZVG-9XPn@QuawHPJcStPJuv7yH)5xsEa`sDVt&|Q9USV-OS4iFS6|%@z
zkxz4;0$>Ba)UZjzR~pu8Sf^pVn6YSsco^3{!NJ+c8QhvlakGZ6HSEx^Q^WqbWwvP8
zreV8=tx}5$ZDzH1dPmL&<#ve^ip)-xQT<lK9u2>-wHm(D@V$n^8jf%kXxOWv^8@Rk
zxSBC7wU39;a6khpYN7UtIvo;3dOqZ~@JAubrlpPw`ANe`4aYPb*Feh?A~v}1^qs@<
zvxZ+Z{L1!EOVL$EhXnNj9TN4#;13OdYIvyO5w|!Er#0Ny@Ib>EZvNuuiiUG+stnqB
zAsqR?WOz9~e+#)Fcv0{l!ApXdHT)}tmK>9-8m=*QNGwVuu8VWF<c5Zu!f(0CZ4GyX
z-*uIH+ykZA3_=FaKhl`TbUdyjmyX=J)9Y+Ha_Gn@Ji8!!%5Y6TibBExB+sMcxJ*Z0
z9r;+7&l>2?iYOpRQcy=B;T~7<>Zta>Sr-8vK^;|@)uHH6b=W#$JeF8SbVPN8-CCSG
zO@}U7Q_vD8hK_90|L55ji)~IM@^wf+42tV0p`)<yB0Ap_h@!%I=wdoJ-6T)C%7+g-
zl+;m5$MZTWi&$F6(>lruFC+MrpguiSdV1=BEWL6%%8U4nARSf^Qc<vyj%S5DCzv5f
zn~5C~9QG<YUY?$MLByF^P83Zol&G%bMcvuHvUJqY@sf@PIvUbaM@=2Ib<`32T7re|
zTMP5sbjVa!M|~aiSx<@>5)?UT#6~(Ai<qgSi4cnIgf!LB%vGA}Xd%3%tF+S5+U0G8
zv=v-%y-lW!dE71SK0Vc5M+Y4V9Z4OXb-b$cRu-hhpp%Z$$8=5;H;q?BAxQ^P7s+;Y
z{q%oebrarQu!pPn<fnkkU(?as<$ZL#?s9I1{dHc?L3IN!8W^DCO&z;+e5>Ov9RqbN
z*0Ds#ARU8s%+N7Y#}FNF>v&Jc7>>D)p*n`^7@>o&PZ_48!02jU<gtl-=Sktw)!x;e
zn>R-37|Ea-U5)9<qj5f0GFk^;RK@IA9piLN)-grLcpVdTOmqgJ%!oy~(;kSEM48($
zL4AV9UR^L_swmTROlMzC#_4C+^b`;JzK#!cEY$Id7<{N>mX6uds*gk&vMBc)9ivlO
z^K{JDF;|LMk&S1=7U=j`=ewOVoJPvcA-toeZmX<M+2zjqXYA&p-05B{5^tRfB$n#<
zT*r3l&N3a#b*$B~PD;O^D<LZcSL#@$gWj@^#@P|xV6#SdUK&RJr5FtCtgqLxLC0nt
zU+dT?#$QPhYi(kjbWD&8=Wj#&k-D?KMaMQBd{T*x->M@$u<6nrQfsG<U1IQ!j=T@8
zrYkJIpo6#Z?9uU^j{F7+82Dbt4?6zVaY4sk9s9U7amv^*9S3y$sN=9S@-9Cb#OER1
zd94i-dvU~V+fgCBf99C9nGZLyoj>U~spFiE^E!Uk@r#aAI!^2ORmX2Se%JAb4q9>q
zdL51XJ0?~hjo)}+{mIYbj*0ds9c4@JM41AKGdj-lpm}WGXT@x~@5FYkvi{QfC+5!m
zHWzjLqvO7g2Rbh4xXkI$aZ^U@Ume$UT-Wjb^wbrGag)SVX>Iy;DIR@_O!O@sw{_gr
zaZhS7%<ga;j>cJw0etd-#ldGgi4S!=;+}6Hw}HnDJZ?C1n!~`Q2Ua!%*$rn-S*30s
zn{$+&-<$?GTqg!OeWY<719=VPGn_c5C2ymebIkEv&_E#r#SN4&;4$Depc&8&_zd_B
zC<asmX`cZD(-!4^p-CcWpw{SWbi$^F41^6t4DeZUdggTS=uA-q><bmcfN9_f14Rv3
z25bW`P}l%1V}|qc76uQOM!Ho+q<MTr6`iy3^i#~hlVVJJHiPzy&)Fpnlrr$Ff#(dA
zHc-Yuc>~W#-KPvZZJ@01xt(=}H(l{Qu5t!O=du4xCMp=t=1@rtDjMJ*bUYU4O<Cza
zW*B(hKve_P3{<A&(RdXDF9_j?O&;XjjmDNRGU=S0wTLwgykuaVf%OJnHc->Ra04Sa
zN(O2hc-24`19doM23i?tZJ?fk`UaXAXl{Uh8W?D7poxKo1{z88cn2CA$;HJH;1rWL
zHJn&twgpGSaPEuaq1h51y^2I*8v|_(B-t+m?F?iZXm6l{fw+Nt$pl9@OM-+O7kS$}
zHV2u3kuaQ<#i8DtOt2*>1Fsn9WMK6<XEv8icOFh;@N_mnPSVvtHv|0*ykVfbfgT24
zGtgTGv!{VxLf9&fl`41ck@qq1x`Dn@#4hk~{UoB;sr21_0}Q-rV6cH92Hq00L5w}c
z7$^<iG~K!Tj*0zcdfUKI1H)uS-eDk(uEsIpCga2mSF~chYhWZt)xbOhqd4gdS_9J!
zyk}sHfe8jCiu17s#<3$CGFhENwD*BEo?DZ=Xls&z$p)rMa88l-&_69%N@H#awqndM
zFw?+C24-<yq@8TxhwSOe_y^*ago(9giwBm@F|et#UjMAk;9+*YfdvMZ8CcHIFtE_T
zA_I#JK3rpbV&GG8#g{YC!)L-d_;k3$z*2D-e&{&iAb-wTmbZ$rZC^;yY6HLLwpU1Z
zRvK8vO=C$W>k{d0je##EBxpkqYhAv<z(#i2z~5}Afv*f4FmTYoW&>Xv*lu8lfh`6m
zt+2L=e~vbNZj&SOw#;Q0?41U78Q5*$TM@sJabWCmSa_g42EG%rR|fWbDg8mZmLB#~
zy%YO5lA<#p(*u6Uz>fxgHSn8(!v>BR_}RcO29Ao^F$2fNC+~XAuP3=)P8j$}I?lK~
zDMi%x6iwdFZPOvU%n142z#ohRk9~$ar|j(v#Xk+4GH}{JgJW?{F^x&su(JlvaY41p
zIxpVX<wMg`7YtnFsG7)Q;va6p2JUhg4O}+xuYv0ZZWy>?;Hm-64*PyhkluJEKy>yT
zz06Gmx4B6gxW&kqk5|qkH$%=N?`vgW?i+Z(t=>d7({b{UVSK@6DfuIQ3W!L4PEJCy
zo5*P*mx&yv6UI#3>*$SyF--q?P2@8XG@+QtPa6|n6Fw6KO%yWW5pOi+I^rSt2rZGz
zjf!820;aQL^Kkq;s^LqLu$2B)IUIS!M3g>l_-tq<bQAkc957*+Fii|KF^t#$P1q)~
zOtd!<GXWDXny6u-u!$lj%9<!=;t3N)O_VZG+C(uEPnzhrB(tQ6$7ZAkp33}oW>#?%
zB}|ZPs-LLZy~4XgvuIGp#8YC)Ebsd6&>+DV(>-m1Sw5*$-o!H|GE6*gqJoL1>nAFi
z&Qnem*}Qgfrb1WSJZs`P4#m|r%&y+1v2^eK%wYXQWfN6QykLUas#41#@@!N!6V*jw
zEh;aWc-cff6ZK8hG;#E*Rma3{N8<dotCs1!p`|u^-Nwn*HJx8GYs-E64NNpN(Z)nu
z6OBwH>Lr?*XlA0ZaAuoGEt2LYT8P++b0NfYI8L3eh^<|F9-^I8;X7k9P4F$UG>FR)
z`KSn=CG0>;6Mam)ZX#(qH^6r?(V4R>JZ0h)6NgJDsWZ(Oo_N(n7Zbfqyk?@SiEbu(
zn$DAV-8rHBDL+@n*((-P4^H%q6tgTkaoMJFFuUDbY$}T0mlI^-EfWJxyjdo>`$)V$
zTV-N^>AXeoP1AX7fjuJU^zrG5K_=2<uo$q2;t&(Ww*}wfP|rv)JKV$w6H85e&KWl`
z(!>-KQ%#IAG1|lg6BA9mCnGSHp)OC9jA3Zyk8xy}9Vg;=!6Rjoba;agbmWXrGBMf2
z!ukn5O<?9sOfxav#0Mrmr2m}p875{5DU>78d{^fC!gt=vWYI?^W|^30V!nylZV=89
z!gpGhYM7WSjd|~ywZO#3CO+dr7*&n2y3oX@V)luNT}=~d@r|=Kix!z!%vxt{ic7?v
z!OzAoGqK#nZmtLuUzk|odR}Q_m5HxRY&Nml#2OP{npkUsp8wYayT8uFdJ`KMa>Em`
z6Im?UXkwGtY`A7I>)340{F?LLG_lphHWOQ<g)Ay@&Dw5ahly`QVIz0CMO>b{WRX&2
zBWIUR-pCi*!$o8w_j&s}hDy!^2ljgtKgbA^bJ=p__c0XfJ0X40#39DHg;o}RWI%FH
zuu$5<5w0u~S4~_qojX;InfTMhDHF#{oG|f6&Wz-Y)K4Z(n)unoFYMi_%->D?%9ZHi
zg~u~i?Qjyw0lo#4u`Rz{^0hh7HFhoqpEhyE#90&POq}PA#Qjz--2G+Zl8M%}JN|7t
zU;LRan7HWje}vGO`ehUUy80C%yxZhDBb?qW=LLf|dC=w6vsuV);g;~*f)wwVxa;zJ
zLhcJb5PT^3NboVsaq_r@fjv5q<gk!al&FP2dvsWm!_H+Pw}m_+(!eJquV6mG{DK86
z6cj?6LKZy2y{<C7P?EaeLcmpm78K#CtAvDvEkuOu=;=IJz@%BwT^qxKDclmY1!IB`
zq<vuvMO<D#882#~n1v@Tv_9kfxL?A;TQgF{84ua)u6YwBIg<4gZTcpNWh^{pp_+y2
z7Wj74r!7>pP{~4B3*{_SnOmm3g=Z}1_0A5@kx@bTsBIdRXD#Qc>dG{;@SN}r!RG~k
zf7^Lu>I>qQo~!gQh*d4T+0G#^TBu>6k%h(<UJ{#H7HSK5S+J&s%8Rphe41HDvh^)A
zuuxZcJ(7nVSW3KlCJ((e6rE(;j8qfLdCx6d*i4$*RFDcA)7(M}X&d?68L8G5+HhT1
zIBKD-g?1M9TG(eH(?Z<B9t+=D$g<Gh!f*>CEOfAtu+YguXA4OS9WCdo$SaJQ5*i6p
zinCVI;c4V&{i~c53$Iz|BE~H0YN4C(?t(o8d%C4d1I`&vZwrH6rH_!;E%dd}Pk4XE
zty}trkO3T3S9wbaPeORCLBe?|LO#U8+pf(!7KXZfm=K<)y=!5lg?Sd{TNq_ww1sIF
zrdxPV3?>SWVXyhLm+*0d;|1w|g5{h(kxX)x$wH=BnCdDVsPxFpurSlY`=Zx98lPq1
z1J~w53m>_h_Opf05u7WS9_<AdKITMQ_`<?M*M6~(PXs>|{7i6>V7lTG3ri)-rhaZ=
znakNQ8mzFe-ogeES6WzQVYP)dl3gqKrC{0>J*;Cq6iAS46n&TACc&>PY!>ph;10np
zf?EZ*S=cUw4=&LI(@x3We$e3?A-e^sf9u8-2Y<l|>wB4nAGik=NU$Xo_lv;+3kSLI
zJ38&*J6rgMmP1_f7I+=zFefyX#Y+(UM$a?kV-}9nxrLh+PH;D{@Rx<ZEu6IQvxPqx
z(w6fIlwU0TCgfMap*JmxzY8a6f6hMT^7BGYTR3CktmS-Ap0k{D$m7`)wQ?sm>v7sw
z$sW64;i83WV*HPVOG2(#&S}hLF3ju+ni2oCz;jgctCsWhG`*2CU1yt{B<j>l+_G@n
zLN*)OZRZj7I~MNK(!yN}p%1g}G1PM>v<3;D1#$O#XyGv%kK1@;IcJaQ$8|~g?;bO5
zSUk1MVI!xF{5A^M$Ymq9jl4GU+28}PJZK)<8H(WaEFwRA>617+cY-I+1*OPiJ7?O3
z1o`YU&G=lT-$ua3T^sjo1Z^lbR@qo>L$wjI(ZWVc8(|v}8_(FNU?a+te;ZHQC~iZy
zVb~~aqlgXDhGhdbZ_~}<t7B{%F&k@Uq>fa~K_x9xUz;oTgcL2y6=Sxj*cTIwyq%yK
zYn8B3%0_7$Ri93lw6W~zWZmp`85>&{WtC$C1|*)c@w8Ma%cFbkw12)Dy}a1uyViy;
zqN!-3lI^_H<^>zi+W2us>UrCF@BMRv8G>vZmCC}ah%w)F!zxv6RI^cC^d>f%+IZ1M
z4I3|s!YcKIyewGLMlB(=ZPa0#vpesTuPX{)r$f$EU$PAZ8`@|jgnDBkY(IH3;mrlv
zFm{<@D;uqCbhh!TjW#y^o{?&Aql1l`Gg57Bw6l>ZBC~NDS;8sOjF=F!PLfU9=x8G)
zN|zND?Ozd2!Ve=Nt8}r^)yCU4-m%fmcHZXk29KLB*4@Vaf_4wvc?U>O8@+72CZ(?n
z(yX_TJ~lSE?*Qz}7!$F-U|Jtw<4wuFWn+j9zC~o9Wa(j$jlsfsIA)pnuDPK$hS_+}
zc24lP3WnRxKWL1yF+#|@wzEb?+TfR<BefEI{C~9Q{96s0jj=J-#yA_}ZA`Z@!^Q;h
z!&@IG*_db}+sqX2luP4e8&hoOuE?o^B-3o?<;Em4ZM@Ieo|*c@#s^aRk@)%0wXC@)
z_beN;B|C>}T*zF(d4lr=7YNc}+U-Kg@;$(x+W5@IBHMXc#}^_lb}g6KSnBf6xe8pq
zTnO#yZH4fag7mz`#+NoObLCdgSZiY)r_9C)Hkeam<9i!FaENSdV)x%jd@E*Ov8O^d
z+xS`t-zm-NTZC`5u}#Q!LFzkf>=eFB@Ecd(chP3)vHpoYoXR&6-*GkdPcZR76=$aQ
z+Bj(Akd1v(N`w7eEEh8mNS3dv9yl-aM;pg%yz*J*VH-zm9A#hTm1#0F#Uc_SUuVtI
zpKP3zgZ|DClB28-B!9K>3pcKXnJ)&CMB4wxap<2&JNd%~+wdm?%*JUOXKd^bBrk~*
zzDfJ6jdKjD{)zK~e+m9ANb!P=i^BhLl|UfLPO-E9iiazLS8ZIgaoxrZ8@Fv7ej{;{
zn`)<Ow*+6EnIh*4y1SLjBDrH@kSO<UJm5NwAsNF%Zu{I|W2hLzV=+7)!>W!6#E>n9
z>@j#^@Wz}Q`*XyQKZXJ^<cuL#47o+j8$-Sr@(AbG6PhvQlJ_L@9nSj$&V4n!ORZqc
zxu30&U|B2ai@`5dtQZ0@1cgUqP-4#Q>%2vrNfnXaLNSD09*H@3@}!TViKq)2F_=QO
z%d;M~@R%T<kfnX$7>dN4=Qy5-p==E0Vkj!5EGovn+_j#J;a1y3alsNXloUdxR1BqE
zUPj1MF+45g$WL(^lz06+6LX#srbBjtq*4se#!xecS}{E5+DxA5JPDE!!}Fq47Odiy
zz96KkV6_;k3wcqnhTuzr^zd@b*(6DrYRAwxh9)u8iJ@)`^~9#3V12;`f-huu9vEb5
z6hn=%kC8Nup_vqA2{w<RZ4B*V{M$Xpprwed1X~Mo(`)0_O?$|UAudJtr$^EX-L{XR
zgNWo5JI0WT;msJ{;^fAhFHqfM=pm$244s9%8bg;Dnl7*2RkHlTLf(z>7PLuv#?UK<
zzA^NR;WaU!lRiRv3)1X$w<3#}`p58wD5L(inH?aUWEmHA41;2LFNQHO430UUEKKjj
zFhqv*ZNc>GMmfSmV;C00a1locjuw1ZaHQZU!SqXLiTuPF8^fd+CX4fNF^rG#KUi%Z
zWkL)S-6PIDV^0yzqfC!sDn~2^iZpv(kopYqJX7%f7(Ng}{X-!<(CirIaD|qJw>0L)
zFfWE<#c{ki=EtxghCapcdNF()!@?NO7RI^4_$0=AZgDY&e`5G72L9dNvKW>NSro%!
zAxi|83ew<n+E+11zKCH(3_r$jIEIxm=kmzL7&Zx6CAeB}O$=WOp}|@q>ta|hWP_`x
zAJi()RsSl6%`to}`Zt1GV%REV8}}mjU3S}J*x}aQDP$MtSDqN<QFe>+Z47&2_%4R;
zUCRS8{1C%l$?l6`zpJO+rmG)};n08d^mDaGV*ih->wuD?_?wb*PAcK<YIB<1o!upz
zL`6}_lHu-T&lMz^5F{!nK|qX1&OsE+L`6k{BvFDOpn^(NP{|qmYHFST^LuYzz3S>;
z|2j_3?95I#_DTF93kU4j{UZEI=wKFp%)(C!9vA*BJd}mQS@=bqr8*+=tME4=b37_?
z%ns7*g!oC}@4`QXj5;O4RDWgRZ#ES01#l({XR|OA7zUi<bjn@^o(3*t;UZ@hpgwSk
zvr`soSnon{B@0(MT?55{lKXS7u~mTr!1XNLkbkzuO*_Y1S@_2mSpc5D1%bk_`nr&i
zg!U{_5d}$#10{e8Kt(Affl_u9jd_#?%2+$`>dP-7H|C<wv^+?-LNl?Nu(FUrF5|>?
zWzuFu9=BWHa#;%h+Ry)RrPHRnk`MbcfG`lTegq&3@XHcHx6mPU3hBg!e@B<cR=grU
z+jBs{pfDsfgy|fkGD|mw3B-W7V(GcANP_<|1L}zXucnNx2V~opOx^%!2=s*Y-Do4A
zG0+XjkwFvSL7+KsH*k-Xra&`0?Y+Q#;_33x^Zg1wV3)szg6)9zKue$%&{|4cVH+V+
zrJL~~I~A1<Kxf5vv~4<xFrzNE(p4m#HW$cOFwc&C80c>Eq}|Ss*h)&|QDF}uJwKLi
z0e_QTBE5k=B7KGZg#CqVsK<dP#Ge#qKbfS+6O)A>06YT>WOaaNfx*C2zi0B|-lVm)
zc)}1i;6dxN;wo3F^CQrbqjQG?BY>BINi2y9GX~a&c+UePfl<H<z-U!rWWnTxSl)}W
z;m6C&YyQ~A{8Vr(Fb;T0`UGGiFkXD-;N*~+`79W}YFydTTHWFmu9H+Ha}Dq*3Gf>5
zI`9TCA6TFyZwhAtlYzH@DGE*(GWk@IY5(b|8B%82Ej-({oCC}ipC@EDr3cAEU@5Rn
z;v!(N$lI*1$UDM!g|tt1F7tg4_*mlmLMk5s9|9lQB}qH~1XvENux(a}tdtF1tyVB?
z`59Mazn;N^t{R@qS*xf~2Xemz){#5#yaQhW>p71Bmw^qyMp(Cne*l|AnDBexYbD$a
zY!TTC>=fAsY!~@P_^oh<UE1#yqz4vem-ues9$RN=_X7KXAEf*Q{4BCxctCg%_)#QX
zBYHce;BUZTkza(r{>SDBa1=Nu<pgjNIR2m5-^J;Nxu;v6dwQNyWlzJ}HuO*7U%=lY
zXM|^kj6ElEUU)%xQOM7AuK-s$D>{(nz%@?$oQ)kQ>#!!$8_Kkp12=(Nz&{EWQk2y`
zA_W{MXe%sOVVf5bDJo1iLUHjD4wSTQN;y#4=Cmp2usV^Rt4J*GKm|Ltq63v|URi|p
zRUN1%e!BxTMD7sYDWsq3BI)L;DPGHg3|piJIN)%gqXV5Ba5~^}puPhQWZ)LocEIC+
zSKQ}-;Xv2{zXJg&L19Rk&V?9pASxy9fGH9arW=8!N?RuERCPqC*A=PfK(+&S*|BN+
zh7L4x;C=@laG<em-_(I7;&<E1JtFCh?iIh!fo67WT7S@iRt~h5*j(7cftDiaf-%Q7
z3bu2gt;j<{>h#cFyu*K#&JJ{OAjQ6OpsTGvEYeMwBg}OmPvn2?&|Sf#1NkEK|A^z?
zYi<t*dP*GNz+)m$3VS)w+krj~^mX8IDgA^@+uvbb@zc)J_=LQrEA^Djo)$9p83zW6
z4-yV@;8_O-v%gwr43RQaICy_<I{9z~M+li0#gPt-a$uJOyB&DJffpT^?7&+x8129~
z2VQbuj00n(<kzn`vw(FCV%qTzOpv(gW_MmkCW<%elziENN$llLNgl5_@T&N0!q<gw
z*s*Vl@XVd!z*Gk|I<U!sX%0+x;5`T4m%|wj%ynR%_)Os}2WE?~40F_0Bs}Ij_~nju
zvM+F8p~xZ!-nK0l+dV>qC3dQJ?bxLv%Y<x`4;=W=fiD&O$bpYVJ`;Z8z)BJNSuV0d
z$W*HwSna?XJN8psPq#en*Gl=^fiG;EbksUt1*ELE^$jX5`}b?s#b~nAVXbOKve|(x
zQpmT8Y;$0{$Tz|rcI>wz-#NhMrSYIW);&XsSl%874mfbof$tsI>i`GIK4rRJ_yebi
zLe>?0<CGLr{pi3?4*cT4uMYg|z##_?Yi3I?`@?(Y!&9v9+~0XT?>C3_*o68~hxKIO
zh=NnPCXb0MESCAInRn8G-yLY@(FM+dQx2?i;VTzTJMbsxPZ!F#@RtLB^Q3U1pA%;s
zIO{-lCu%rx&Vlm|+~KtP_ksf#9VqTZ2?Z}XaNU6$4qR3ht_ZIRX?#tD?R?W#3OjMj
zfqxXd&543?Qb0(1ws|3&r+cS}6Gf#I`;T7IiBe8fmQq?+URXw0R!DE<MChl2NJU{K
zTTGwbRh+0QrJ9hbZg>8B&wr<_jOm!H=|nB3wH!wWCo-JKbfT^k^_<9Z0!~D1ONSFd
zai<e55w{awCwxwLY@2kw{0at~|ISotF(lCthW}$96*rxTIT07HElk)p>AKWWkgl?w
zxXX#APTVV{zOb>dffEfySkp#!O`Ax$+t%+9q0jrAXy!yKTfg6l<~Dyo<UwJ&@GZn!
z+CE!5(Z-3kwtYL1hwS<?_x5($j!txPqO%iSocxj$k4W$8M4m`DVU93Yn64~6JnTew
zDdfrjcuqO-n5{o5(nHwOE*tH8N$D-@BV;Z5JMp*^>zw$?i6@+R(#fyGFyD!%oOs%a
z2~K{oYn=iEoEYrH5GS5da9}#Qkg?B-u#iKY80N%STOaPkNGC=qID+WJ^R^{Z(f$Pm
zM+>RED8f>Wv6Xbi$2swml=1)3Uv^@W6H}a+D)AL3-mqg|6?x5x*G1BuMgMOqIN6D}
zMAFWuiO&+!X1d4>CuWNLFYRn6=17?<Os8ES{+<)>JF!rFkrRtW-WI+qT;jw#BI#61
z#g_@w?Lhp%iO-~b=)^}(d@R1giIq-#Vp}f%Pmiy1VvVh@7NPS`Z9<1@#XlE*A*A@F
zJs#FOvB8NGPMlQKMkls8vE7MHw&m9%n}u7P*ea4P|2IzTaN=ht4oUphiQP`@5&urO
zQ@Bf*PV&7IKRB^p%3k3<A)EJr$d5vn@Sv@e|74f;upN6u<QL(uPW&d4&f=(Tb4=v8
zkp6#n;twY-J8?zIDd8F6Y2ly3znu76<bOSWmRA8O=bgCV#6@wI>XKb5^0e_)&hSqB
zBZF&BTo<`v+uyW%?KT$*xU93OxC;eEiU<n{3k%Z@i;B~-m@SqNDQWAaT>sA4WnC!e
zLc)dGF3c@xT}jKkP(fxDU4RP?@k%aKcA<(3Rb8m&LM_|R?IP8McL?tkvKTc)YT7}1
z&JZWb6v?v7kbXYkbiw6<+XateBQAJFf_5sOh~I^PNV=vWJJt{h|0gOcZn_W?i3^!K
z6V`E|t_%HLc-)10F7T04eHR+I@KDF(T`qiZ#rplrgU<vSy3ojl4lZ<5^2RPSbK!m$
zn%Lg%cHtfun!0eWl>2O*xui?@fC~>wY%6RoY$a^rLQ9dfWoz*^!gM)_54q4zN_$~?
ztafstvx2=`=;A_G7m^Bg6XpqXg!GVWxAVic(p`kE@?CgDJSFVm!lQN+6ZUlBF$Gz?
zbiTb6>?5Q>Uy**c%@Zy>>B2iMyz9bKE<EkRD=xh1!T=YZabctjqhvWyI3%4)_^b<q
z(?K=bP#1<NI9&Lg3nT1UX3FDv*T44wFSzic3lq|2T-!=yoC{+_#{U0QFDW=)$m&cK
zd099~NYB(?bK!Lt=J0fo_=XEJMBa2^vdCL5OttN&*ljz_h3Pg=_a?o~bYYflIa`EL
z^F$U2=i9LhTv#ZcZs*0~Z`-j;Y|l$wSmwei7gj6kJr_O}d0+T}@IxVU|44*6eqt-j
zMOL`5(vG6p8asCJIcp)-PZj*kg|#kx?!p%eeremJi$`4V!Undy8x!5w=)xu!&bn~U
zg|A)MEaTHIY;j?$3x^flCfx4AH|jfj*x|yrE*!Kye<!lfg`F<!a$&cE-`lZ!MA8kr
zS3F&kAH?^&aKN^t{-ewK^})LQB=Kh#4vD0b|Kh^03jQWMAv_{HDm*4UZnybK1%DUP
z=N}@c?ASl~6MzHzK<?iz>j%Xd7x?IsL0Z1iA$i_~3ohL4wxTY&aLI)XH!|J0?7|fn
zin&qTZO!Lb<+Gq0*Ic;n!VLxgv2(mBa!Z)5!fkF8P(r3nw?iQX3%gN7q^K}$T*8f#
z3f?I!<wiL-%8QqFql`#dVcMQPE4WeFjVcl=x=~3aoe^WJDtNoFn)}}~@eT$5=b^eA
zHKfqKrbsOzon(o`gmA;*hEqJ?M$iqH8*T+XZumsJ!vA^p+d0y6NKp}?;YL^_UCyXD
zZA=j+kGqj@qqc(CZrtTY9owd^8})3SPF~-QMp7CG8w&qdhQ@9*k&-sP$Bm|L-0Q}D
zZuD`ZuN%$WxZjODHy(E50XH6WqpcecDM@o-D`5*aT8gloX;-ZkY-884og3}l=q9m)
z8y!Wu2s;To3)5-S*wt2YL~?~`|J`k#5=jd4g^#%Zy&rhgjUI0Fl-Ntiw2#^4A@6PT
zes1)a!6-K#cjF0qaN}7iPYMUP@s!BZ!gLv)vH3vT&tNIT+!!u0L^xEKZtxLqJg*=<
zJZI}8ZG|>3xbdQbqlM$#7$Y+FKQ>JJl7i!fY^#^un8ZQuK~)c4apP4tHgGC)<24yf
zcVmXg>%up93X4n@zU9UgH>QeD6Q&zKUB{Vj%yQ!+H$HY_wi|QYSSFjfZp;%|;>LUt
z+Anfrfz20+uttkT-nMlr@7VlZH<sFFR)g>@fP(M4@qumgq20EhxUt-gFKm5<$Qt$a
zO7T^~)k0R`Q<2ZySZj}m&!wb0f_Z)E#yTnFUx}=@EjPLGwHw#nxFLPB8@t`u<Hi;@
zwz{!R;<v)>LVEZ{WQSea?-blA+$Bu6>i2H!b>oy9r`_1+#t&{BapR~A_Pg<;8$Y>m
zK*57TdS-!t7C-F9FCvHRTz<7}ezTRd{V`iV>Be!JpAca&ez%oB>{Nfc@s}GHZ2fPM
zvu>QR6_(+g_<3QvE*IUn#Q9&!Ron84-G(g5wf`9N#`vZix7_%LnR=`%MR^Yjcu>%T
z(h5>3<UvsniYZuFSVYL&i`zCOMM?<M#VBRl&_fvy%G#FYY?}(UQqhA-Hm_{QRujqa
zAk%}}#qZElvO8_d>LN9SHHEc2|IRR33c>@22YvMR&FO(lViOPC9(X*+R?zE#&x6|H
zeh&g3M8tzaLl_dKE5*8m6=dC`9+)1)JcxUckjPl-Jko?%M|xdhz5m$UW%K$TH1MFI
zf{i?AZ0pP}?dNU}?(v|h2lpzfwFmc!JmA5D9yGJ<?-yaJ<{~X^y@lN-EKDnjX}4`W
zXsh5uwk7rU9(3@aqX(Tlc*KL02c12*(K(sp!I~UvSMDzAg03EP^Wf5y6pzzIGIKr1
zlRooW#={<T_aNy(`Q9~nFiF0mNE%+vI8iwBQ4jd$w2ucpr1$jTF_B&#^yV<o-rvMD
z>FYs15BhuXxCc*o@T3RK;?<&=86A_%mj^qSo~ND59N@t-^z6j~F9x#8>`E_!UOel;
zU=P0V;7bpNcret18Fb>oFb{_FzcKTSH#``@7VzLDkF`eA^B#=!;6)EcbJPt_j`CP*
zqj4>x7d(h&=JPmuF*9^IbBqU9YvqsgfJ;J+^;oN84av->!WF2-doaO+iSjmy)4m5U
zi*s2mF3|L<2d^o(qGbN-BFwZ|X8xO6iR(=dCVTLf2V5~}st40VrpSy6OUsq+rmNWG
zRAzZF+k;O$Snk0b59WHXOtJIW6do-0;B5wN`$ZxPJvjV8(ps8H4!I)J5|6cp-n+tg
zm@3O!K5MCh6{e<!yYk=j;C;3O`}9KQhaP++KgPw(k3}lFt%C6wS~7oylCSaLQ=WQL
zQ!72->QAeLt9i!N$)j^R`OJgQIRGwMe-2zLC)rc2rJ@+M&V#Qw<e0>R^&V{S;J61T
zJlN>LCJ**_@Vy6Ld$8GqZ$0?VgDpzF&4cYMusE0VqN{JjSxE97;#?w(C1mi|to)rG
z?DAl@$67b+ky2R{N!TNMJ=n)Sotpa1gC96@O6Bk8>41D5ToUl9i<t*JI4I>u;ZMS!
zZJR@ETk&6nzY5D|SjmrgaFm02YHG~pJmN8N`me1Ov`%{Py9a-GaEe9p;5^T-O1Y;!
zI3x0>2Y-pYdE8ot>u(maRzAsD4MMK*#c_4PgNq(q_TY*vJ3I0jdx_`x8z~M;8ef%u
z-D3^HYaVdnFOuICbxZBTMsRxZj|aDTtwkCOcu~-cLSBC5WUWA0SYmlEDu@*EqNo?e
z#EW}TLWHaQrB`<>=|w3i43_qyjLpl6l;cS{&tOzVuT_|m!5F-#<V9u0R`H^`ZC_QS
zn(%hv9bVii@=%GabY3+StSPJ|%n)V@vxGy>b#aJX&a@Vvba~<S!sCTkqF=@EdH-F&
zkVT>mt4s`eVR+HUi@sijy@+^mw-@)YO}sF@sN?0zI*6${T<0yllv!NCgx4DFwY}E*
zZzOfSs7J+%yS!-NMME#@vjAE&GB`ZRfyYUpkr!OSlH;(67mdYvZc^cjYCLOLs-|8f
z<@{bR?o-K|dC|^`_AJ%#<o#Ye;KhSpjGSt%w%6Q?H>aj}v=C`2Y~@93TW=%M){BR1
z<=4#o4qkNhS}Qts_o9>6T56I<r{T%YHt*s^SDSYe$?+oBR`R@f*yc;7rZ{q#Jl~5)
zyhwTRs29Dw=<P)h)#5Q>PgbE#E>BFh5=RA_f_#zI?&FG@{k-V!#fx5yRv$g?#b7Un
zc=3c6PkQl`7f*XZKLfqii9A3KpYdAr8(WOaezJw>a1gHoYR?_RlWV7@hI%nfmLrA3
zy?EXWF5o%Bi|16BttIo%y7IY}9p^3<snNyEQL=o&i}M#UopthF%*Y?Z_V;3v7h}EF
zs*mHmc*%?LUR)TSoanWd-J3wYQZARyqtg9iCY4vbc-4!!a`l=QuX{1mi&<X0!S?rJ
znitc(nC!({UQF>~s_M&$g0m}UiFp?@dzH-R)G-SAGrS<_doh!<O3#e^*Dq$y=Fq*I
zIfs46-T7omLYsNYi^GzGaG@8Aytu=MJAGIz=kI&*ffsLkvBZma*aBWGRhenLIMW*c
z97W4y$-()a*Sa`9=F0z&Ey)Uc@wXQrd+~`E+q~GWDlhk9oflt;ukd1}$SUD#;Tj>E
z;!`g^6JKj9pNo9q#h13Sa-Ol?iw$0ERV_ApvB`@q;$I85mdxMm#V%bqIA*L9XMPTm
zU3P40>KiY1c=59rhrIaKi|@SH>%~4Vb~1?<d%V`=n;n#%26wXyG__Lv-fOL($d04(
zgBL%lP4;_nz>9-Q#W|Bzph0@_{7D9{l*~Wu#V=l*QbXOCn%Z|U(^~1#i{GTMR7box
zs*+nJ6glq236Yb+-|g5xMA*5fmG)1swW?=@Y1U{w<HcDo3iwdahjSc|UR?L$1_z!O
z7rnUb#T73$JM%B`=4W`4O~eLaka#uiyk!10oh&>NC>|@9$<ce$i(6`TD_AM_A1`k6
zS)-Q+l|nug_MxN?rF>YaGrEWmMSUpdvsP*?E^%aQYqT`a$}i!wt{1!zl=h*F4;6f<
z=mVE^<#6Ir)`xOFYqBaYB;iuGw6Ekt6(6elP}ygFCQv|gNHrfg^W5&k9h!oOS<@`z
z>OR!);V~b2`B2k`S~T;avkw_QWctv+hlW06`2ZhcKE!=+_~7&*=tIb7jbWD$ZXY~8
z>(av@S0eRF4@mI|{X*W7Rk>`f)oJ(;X1y}=O&=mYYY9^x?2D+)d4I@zMb3B$A8PxM
z?ZaI@)M3HO<=6G0o(M<ChFaE|mTc7qE{kv-*ZTacwllwfmbI90BOe<3aK8@^_|Syy
z<3m#)?)8BQ6Vp<3b&vd%tdq~BGVc>_rr30H8a(Jja~~e^p`8ycd}v8;(^75KBdyfn
zZG32*?x3uEwj|r1t(r3}#SUt(cJAmyABi1&n4OW&SgyrN%Pu~2^;uW#WO`uukn2O9
zc#e>Zh_X!{_My8Plf(6z!@3{l2+a545e<@*eD?I=Q3ZPlIil#c)WuAa-pt*Hr9Le4
zp|219e3<IPG#~o=@Hm^=hsi!X;j^wv!+jXx!;?Nd<-^nJtYNAb2hRWvp=W#;C_-hB
z56{|su*eV}hKew28nA-A<k9VOKD^|^cxCataHJ2TL|zcSD5T|RAI8{xtjIVYc&EoG
zj;jf3Ot$1i7I<2U$IBv<*k2;A3SSexE__2sOP=+-WW43W>sr2;e2UMytnfUY?!ycp
z=5oxik+ZBz+e{y3sb6OMFh_(nO5gPI^q)_~hqrkGDr%t*yc1sJ`*%jA<zk*1b@F(D
zBY%f&!e0SCq?2<^S~`5shxeJvhi`rOz=scg_{N9P(^4P#@UahD=*ovr*fke3m;11S
zdD+*gm298Qd0%ph;K19Lw_3PH_^FWMXFja8`R6`-A<kPhMy>N%3u}KRTrb=pq_|OJ
zlMi2uY_@fteavy258IVBISa$fWv`O?yzaBi->DIH`LJ7Lr_k@NzDJF)kK;kh{C@AV
zmJ!}7w1$VS_y>GA$nh4yQvv+w!%sf+@S~?6Kl`jzF3b2)){jFz9QNTCc8w30eYoPo
zZycFEoMl(eHjesmOyo}=j*I;6!yh6id^joc*0dBYc`TWhIwghtG*5>%Ns_;8<!_NQ
zK71wnb1XSWh#eccm_g%<obE1WT=HR$Y_9sSYi{mWEgBc_<C+iGIfPc+eZz;_{1`Vk
z_offGq|kuJKjO!xrFP6R#&>N(rJx^${3z^45kD9#B_t{8M=_fh_oIY(N#T?!#c5F5
zkDJp{JpL?|Ea$hri|>EHSH+J7)AGtISV36Pk4hpmsO(32CA6x3RP*C@Kko1&+mE~a
zxYLj7egymo`ccD=ntnL_aQRWoZ+)+q=|`3y8Gh?qJO=r(8$WsDmjDha6dB|};`YPi
z2R|6}`%z_j%Imj281#v+8)SVs$WQiYR`}Uu$PdGh+J4mWBkV`SkC-2EKll}1lr7n#
zu_^SH&J0eszOzgC!7Q3iPu(>r$snE7RoUuEXQ{eOw>&d>eLoub(aMk3el+y+|Npqp
zk7j-}_M?d(_xP<(6lwY4pd>#$yjxC4n%Z@_SLE^Osrwbx!jG0r;>Ux^sJTkT?-tXI
zFnW55jleRn0B!te>qjR)I{WdEAMI54j%?mR$@cO&ONH+sh4%b@kY(=TM^`^memv^8
zzHRI#|EvWoo8z}WIn4DVPvl`CmF|8d#q(|D5fN63c`;$Sf{*#pi|rXep#XZb@P2&Y
z$A^CO^`oC36a9GEkN$o<?#B>6hWhb@A5Z!*z>jDAc*<}6t!~Kq%%?^8Ac(KPlJy!7
z^jq)31`8<;VzK%EAKQlC05a7uj_0cx!~GZ`Gm5l%&X1S;7%%(h{TL}ieUu+B*!)F5
zM%#RhA7gDkj-}GJJ9N(6i4*+XkK5XDX_6nW__4^3#eTfX;qAv{Ki=}=b!AQCH$>72
z-?TYDE|}uSbOopSt!;^>2}zE<Xze*Q!;hJ^hgp8i7M~-WE1YM?&KFrAT*zTC-TDae
zZ9kUy@t(wY)HqB1SjMxUeEz$BaMwAOoZB|hl85_(^%3R!e(MWL>K}2a`0*D9gCC#x
zvD}X@{P>cd{aES8XKIsGerpdYrutOD)qbq8%fp(|$#xZEtskGu;P`awZ<FgddoZCN
z-$`8W#}1JVJUjI5#zsFjNulxABAbO<gj<E%{Mar+n{WJB+Rl1Nn9g*kAG`eciBq=>
zcKh+8$R6SMcB;L8>=XaNR`!b=5FX^TpuXnzM)Z70;z`@`uphtJ{8v9$KCy=15#do=
zKPGZqc*2i=RQKQQ*gr&0`Egq0Phq;{&-ihcld2!L{5a>wc|R`uafJheC+r?;ufU7!
zf-6>MahzQ8gMT+AxhfBQz<YyduK0B!yR{DgJF3k$|B=Fkw*@R$Bn1N2c~onLHChS>
zP$Yod0P+GT8bGlCDh5y~fZ_p^2%t;=WdkS~z=c@`k5VFmlF8DxvUW{%etk(S7eM)d
z^$}>|R`&`4YmFKn58vuuIe;nwm;uBBs2V_>8L4Uk+#W#787VrX{T%^h1puYJQ&?SC
zLs&C_S|S-j+Ghsv=nQLx0f((b18|DF0&oZ55f25dk4(J*_yX`t2?_&3CQs+i1$hi9
zVPQnbLehX0A;tqpNbC?mZI(ZPdjq&nO5Fe&iqsR*IGZgjUSHV2*3+%jD1gSc(nREL
z;XMH~6{%h!pH7<DHmyYN7d{|-Fo5PFErczFOv3MKTid*iNZSA&5@{!FFMLt;DzqY_
zV*s6`Fm2}my4bv{NH<|l0O|FG9uA<pl>PxE1IQ1cmx7N7>7j>6O8BUdBcx{l>FPYD
zzMecI)jNPbitQV~GL?jB`$^$ocwF83go4yRpOLESuKsiY89`(QF(80v0vH&;pa3cd
zt^18<0~j2@t^jriFeHGX0jyx!0EPuHJb*a?%ne{f0MBu#(=-3}BOEVeaAW|Z#9y$L
z7XuhAK1Mj!*2jsw6u?)SZ6+u<(T;sNfJx%71i;z*RpDzw244^04e@hk9)rwxvW(vf
zU`hZ}1DK{DZ#8F%Ob=j&2rXZ_mN83wwyki9uz3N@4`4|E??_z00q@IyJAj1&ERu3L
zkzb=&{$gHpOIULwV~PBV;a$Zp3t(vg?`g+jes0W}=RN7~2k?OijXxCmNceF8pNK5C
zW7!U?0$3furU1SUU`+s@2Jl4yUk3150BZxdcqHfZ0Ol3T>{h?#we!|hk_vNNClBib
z*dX$iaQBSVMv>>QS>N%oNc?bYvy^QCY!}%gpIZagck#3dU(fg^fE@vR8?bH?sC*Xy
zE4b6HSG_%X3^LO_0em08$pG)<u{VHy@^&<U9|G7Pz%L3O2;d;^`~zUSu?#gXWU$yw
z{*&$PXXSfHcv#3X|Ek#E7?cw>DG!!}$FTs8+x&zGOa4ayrvmsVfZKvN9l)OfTw;y^
z{1w38vN<2XnE=kJBJ7lNc0xM*tZY5vg#hS><f5=(pX3#h8v)!5;Hn*aP2%<clxOL+
zj9cuQvh_;mTCNHNQ80+2K@<yuy;CTN!a)=XVqcLgI!|Xo!lo!5v^ud=5T%1CA<kwg
z8MMkkSHv>nm4YZ6M7bc!D@eVfNQEFc4jJT8v$!=BS#qAXRf4Fh^S4?Mw+C@Y5O*qA
zQ&?SCL)c=HwS@00)$?lw(c!qY>g@Y9^0R_K5UYY%9fTtYXAo0@m>PsD2zL-K1~EDa
zPY~W9?hB$>5WXP%LDUVRUJyrTqyj<2f`|vXGn%z}TPO%4h_E=<OgnKihhij%s1$Nj
zgzKlJmr$dU2!fWigSb8;RY%CR)Ut!PD~Nk+KlOuXVtZ&H(lCfdw$eC=wMR4QipSkS
zRGgV2X{y+Jg&nj?+x<a25JblyItB5dowi*N&4WmnvxUT#LA0`CTZ^;_qOGkwB;sD5
z$1K{5cM!T}rjAs|uRAl<IfyPnZb*l2K|IZAHi(=c@+u(3P7Gp3iH5lh2JvtZ-4)Ci
zCWSPk!6V`%{VJeG5Iuu<T*_m@KEhtMP46IRMq?g*$))$VV<#TWrT&D1PX_Untuv!%
zf*2UYb5aJ``cRQ)gBUC_#MYU`F!ABGGD4N2^XF}4q{t}Y3qqzE6XbLD#LGcUV(w!b
zj}?v!;-w(Q2Qh)8D^+KrkYr3*gZNaz7?Zpb#OpF9e^pLi6Vk~WLA)tGIf%Dxv2$h6
zfH*CP=|Q|5#1fVvh?zmm<+&EbEXK}E%_eSXOwxO1YEBUQdspYLY(4~-9|V6t@@HU&
zO8NX*w}AH3QwxJwB(hjYg}?IN3F2Ljy`1djK`aeo850KaQP6r*&;N(K7sUI_Zb`8Z
zbj}VdlGVs(owF0O@;(mYlOUMgr;EZ2Ug(xh&U0`@5G#XtWtPE%%9<cP4dP@FzX$Od
z2X+v<g4i9z=RtfC#5Y0fslt~*tP|Nv3}Sr{Un{slxG89@Y)P|?3XYtaB5z+Jf3t$*
zTX;5I>_XD~pX%F!*dD|~<8r6WOnpBmcZY1Yc5U))5XA3<J6WljDF&}UlDj8}pMy9Q
z#P>n$<t!J(4?!FVTB|(GE}OeQi2tFrS!57DD(bG@O@5;1nJJoW{VU^e5WfVi7xzbL
zpOK$mD(hEH5qiA&ThMxTdPMlcOlv!&V?i93@d+XADgF_}sUU6yag+0Z5Pt@7IfyGk
z{1wFC9N24e&IfUZb8=-gE}i5S31>N-zL#@ONV2GO@<I?tW~MF*F9k8Ybdo{h)gY>u
zPIA4w>mt`U21+NnG9DFn78fnK6-0p$3Wo3x$B$M-xh-T7MiC2zP%MPvQVI);giut3
zv0R6QSVF<FA(Rv;B`j^*lnGfYbkU4Qfmx{vAyf?EWE8(gQ7MGVA$Y>@hEXMisv%S{
zP}M-S5N;3Q$q=3j;f@gQ453vBtwX3DLX8lzL%1u1njzE*As9j^WL-5fLU4*?hL9zK
z5F8?>dRuGha~Fow#WGzXxFvdoKA~60r2_pS1Z<vOInYpWLBY)0A%w*vLOP6wV2a0V
zB_2XTyz7V7BI<QQNWGL(H)QRGSx-nZ=(f!IAv6f#o)DUb&@hBXtmfvs?-n)=p-BkG
zN@h~2GAl(~+N%a{^GNOu;l2>=58;6j(h8%RDHX|sA~b7mE95OgXsICWdCoSfl-nkR
zP9by-p=}5cg}@(x?LyYFT^&PcuV4pZn^^unGcP_X_37fgE+KRcAsIq`2;D;1TQ~dR
z5MC&lO_CF`uJySg<c09ytP~H5uXf7ru12tC1GYd2BW9)g%I%{e^a!D6h|iYuZ%#}-
z7D6w&ot5en!k1<q3&W##2#g}3PSP)g{vo_RE5*mZkB9I?$a*+DxRmuKh2-fF283`Z
zgu@{`6T-j{meF|#6XzO(*h(Rc58>Gm28S?2;^+{@up`8W328Z8WQ6cJ;q$_g!coE(
zgf9wTz0ifJ#)dFXLGqFNs}T>B%$h(&;*t<v4q;LVixqq&gjYkD9>NTYGJZ|^>%upL
zZwe<1-xAX2ln|zhPZRc1*3@T)ut>@*+j6$Z9N}Eyyb$Kwu?s{NhOl&2iphDnYv;c$
zF<qW_#NV~;mx|E%{SZC~VS5PQgz#YqABC_!gbg8l9Kt8;wGh^YusmeVmR$dKbqFg$
zSgGKidbKI85^q(*SQEmh;-7KkPq>ZxS_MBBejyzE;~oD?@|6?@n+~hFF@#MaYzbkj
z#IM<*vZUM1Qn&&YEw^#74M~nKoK2m$BZO~5*r%cRT?jiv*c0ON<JMeJLK|D`65lOM
zZ=JB0Q%#kcT>q2H&eQA%MUm_e;ehx-Tlq1BpKSiKNKLN)AHuI8+~PzU!fzoQ3E}S$
z&ajpE3V<_S2*2~xX8U9{p>jNg6N*|l%euScQdfV3a5{uPLpT)ze+%>B1I52MVsCZd
zIm>$5Ktenl!Z}VLPvu==lWxx8dWO8CIIl8XVA=xN7wLIcisUk9)PYGZ+kPd4tL(KR
z+1G?5*F(4=ep7g3mbGH!Z3YS$C}yCzfr5rLITR5VGT=Or`*F$K!Uk`CtnJQ=O6L<W
z+LSO*(m+`Q<s_CeQ2IZyG$><$X{*jol{ZkqKt;u-pFYt8NhK+jg;lRwPo=6ExZS`s
z1Je!MVc<>!j~VF29UTqSFmSJd`wY}HP|JW}AZ#GRK&AnoVQp!|Rd%yjU;{1#FszM)
z96~PnOFn5yF}DGaVQuh{-W17efZHOh9iPM98T<wUhBZQh!jNHId0kgB)0PnfQ3Kfq
z?lNE+h_S#1>KfJ-IdKCC1GUFBW?E~rC+--f;E=PK%!u1<)RV(^G_I)BXQl=kNo*kG
z#yyP<G%;|G%9h^8hu-d{AMF;@RE6PI4qM&%%?#Xcpo4*q1|CrIRt8!dc+fy|1zWI=
z8ssfiJnlom{TJF8Xsg)v!iNlSbCz{Ctu08}$$7IYnH<L45TuiV&IXd~ZUbEmbd~+X
z2D*vlvWv$x&Jkw`xfKpEkA=}5J>8{q2M3DQVW5YUZ_Z?<3_L2%8u4=6Q#^e#_BPPR
zz+}T(GP<vUeg<A(ZyM-t;Bf;Z3_NGx2?I|W7-C?kfu{^S%`zJpBqsw5JR`!5hv<RG
zta&a!D{-)pcR_4<Zpt&vu<o5`z@3<g!|k>rr<3OmjFkN-16A~+^0)jXH<uZ0V2pv6
z4NNjH*1$N~OyuoKm6|V!Phg+6O^#O;j&!otsV-clCfk9{`-*{A4ZI<<R@$?Jv9B3e
zTsHr8)<WBMyvYVvOL8>6B_~r1OjQyNT5IE;eYrCX%rx+Wf&B(%8JKNgy@3sEx((TL
z46HV=#=z0i*>gD>XQ$>Fm~UW#!37hr$gnn>Ud0>@ylvnEmZwwp62sa;+S)~WcIq7i
z?@CN7OARbj?0drZh1@Edu^)<mBxLYo1E1J@xyT9wD@D4_PSJp#iJuy{eyqz{1O8#*
z>So?&3ih9!`rN=52ELTesC5R;3=Ic&gujwPPI04QJ&Wdln70|$E7wg1z7`?hY+#G{
zR^gx8)p5IlZ#15F2)`44%b8?E9?zYf3bIpniR?D8N923qUORRlM}CcbnjJ83kW*q9
zCBpcT?K#glWZ*CdUJc_XHvYVvpAC$fZS86Mi-BJa95Zm7q;vMt*{R<+FICIsEPcel
zfK7Qv4ScmChlEq;2?H0{%LY!e<f`Bw2L2XdWltG6E&ivi{3YV6h%>fw*1$RO^TOhT
zsx$VIfy<n|!&Zx3k$%&*ziQx`&957{VRI&=@ht`a5#AO?0ePT)|B_;bY+hKTNEk&$
zirG5X{45zpsW8fgQ9f+749~B@Yt7POlnJA3*t!9pFfMo1fDi{~g)q*}&$~U0JHn_K
zMx`(+hw<6$R9>C@Dq$QMk>qV^)iA1sv3GXr&TV=81wE)|^*h6;9!7?oUzwe%5k@WX
z4@zX#WEOL*A7VVBb5fbo$+N=N!f;de<~eM|8HUT|?l9{7Z7uNY3&S7A{s<045C|g}
zM#%_DMGy+Z2;-A5mWL4zBNE1aVKfUP8ivWVVbl#Hw{#|tSQwXX<#3JexSS`1wS^;k
z)TkFmHl1YVHVosgFzSb~dwd?VzVLLiK^Uh?WRmb`xht<x7>&bd62{$OYX#}1Vcf%v
za&vhwSn`=9$-Rmq;r06dFdhiwu`qgt@nG26vY}NNt;1+8-a<&RWjbn3s*OljTW>4!
zkg%PweHb0=*p6XzvUz8bF2b6vGrEc7u=-)-i6@23>tT`Z!kL9L^F<!9V^d)~YV#f<
zJ%x`J&g>mVpD<nz<Bc%-hS4vKVPOmpqdyH;<uC?>t>-OI2siG|C4Z7!LGpVFT3fC>
zqc$JNarnJuz+;dMo(*HLZ8=0_Xc+G{OVVJ3k~|;A$S|H`7cVJB(QKI<6~+r;j1OZ%
z7%zq~I*c*42ks|A8(Q)h8^$>4FA3AhCx*d2XkH6r_O9HQ!<ZDtD|T8My!s!@g9r0y
z^QOu$BaE4fnjFSk?D~RP%w>v{sbNeLnJ!F6%~GoQVJu)q;%tFAVa$~c)6TQ2LwzCZ
zYwL@`SS<cvpTyf?ED?W4cxqe@6Y^LZ#xg1Ih4H?~2X>Jd`(YR#N&Hwyg+*Es#>y~$
z3FFr=R)w)TjBR0T4`WRjpN6p^jE$^d$=uJvSR2OY;ye+!jP@5{tPA6-Fuvq;(Lcdu
zw6k7FlC=6eV|^HHxvA%zRE_4zO-iy^HeYjom~L%9#HcM{Yz<??*u36llN;LRvUk4W
zNjf=iPZ-~au_KIc!}v}L#hsjOCg+jtlCs;@f81$_dpQq;aUhI+Vf>)%`rn^?wQr*R
z*$i%PbTEvc!uUB1@*fpTawu$Vy>wWmB4M%VibLx+PGw<S4dWW?#ryv-j)!qV-E@qD
zZI1PCpOazy9>y8Yhhel@WX(l?gsrRODVBL=<I~}Pug-sp{3ZOGJ_lCk^|Vi^%yVH}
z2;*WH=Q%!8b$GlnCv_=|%VBgcm3bwMMRQUV-|CwrelC7Jj2mIx7O^g)H<`9T_N_2V
z@5wERZ07!t_`W$QDg`1a7(t;33P(^hf?^RAFO|ikNW@CTZH)MSzc~5cT#6+k)|_wY
z1+vdGc?4x5=n+BB2+BrKE`ps$b6gQ?x0Lb`RF0rZ1Qisl7{TX-tvv`T$wP;NSydyb
z7O}1uH6yq^f`8_u?wgz1om=OQ2=0uax)h2vM0yv^C9gg=Rf|RKS;JR2J0k*OW&~Lx
zTosf-htMhHLq96+2s{yZsYI*?n0vp<;f(5!pj`y*c@>Bt$oW5F&AkmGXc&PJK{#T~
z$&m<Zi$sM~%m`xQaa&15Fk8C})UlPi5!4gUww1dgsBiP7lTys6k+Qp2*jU&^cy|Q%
zh%^<_a`KYA`yyx-!Tq+<Hi8Etcrb$Iw$eI+7B+7w(kg<Hx`MP(kc<D*6_1A^NPF%O
zK}Y&2m3cR3{s=lp@Nfj(Bj^&bc0i!z`+cknP*)}I7D0|ku8?}3NVSo9^uQV=70eet
zB1{P%71F-mv&qLI=oP^S5quay?+Dln??mu!1brgt8$myI4Vx%}0TDbN!4nZY8NpN3
zEByO{fMn3YTp}O-lROi_zzD`iFo9z!f@dRmo>h)muUrR5tlObs;zKyPM5y<<nn4^M
z!3bM<P9!-uMSYa`XyFSHyePt#kBk~4PBJ!vapErt`OKW+M2?x0Id3pi*5zu(%Zi#5
z!7CBGD*jpouZz$aEgLUsU6W)o8(~y(76*@_-ilyK1XClJrr-?QemYOOBUTw^+6q%K
zI7h+75zG~tXUEQuV1f8TTUo@j@~Gv3$J-K@2+tMD<ona5?D{Q@mqo01spU&1$={2h
z#+ID-g-2KBeH6jR5p0cMTLhm(uv}-*=Mig`TM@zFg4t^$SgGJDA@$V}tg-p0BA-R9
zO^6u9gGs(%-_1>Zsd<S%-_}L&6|1?)Trb=p+$h{6WYpIYY!=@l<d1iX6X&M3NAMjd
zoCv;&U`GU}`Auuz1ZS9UIrB`i?h^USYZpiLfaKl?c1N%$g70~BDNNi}Ae#r@-k#f-
zy^rlSH}!*%!GjU}7{R?!+!w`95&X;<EQ*Rz9E#wu3Q#zTUn2N5g7XnvV09W=>t_GP
zW{lt{n>T_}EKCH)BRIioM(_vQWNzwY#G1M}T@!cCwWjMwOJ!C$lfmQ92>y!TYy{^b
z_&b6#I;eLYn>V~~k_U~`X{k`Z7{R3oZi}MAA35y1%WBLk5$h2UYkgJ0Yr^Y7UIK1J
za8vx2@E_sT^C3nRh@xN=kMykW*_&5LKFR61NEAh*C>BNWD5}m&m5!oB)cTJrkCIXA
zEfPtosP!ZC#N5<v^HOD^C>uq&C_?j6v@b6k@|8vNX<R9a%2CveqE^&;l3XQ<+oRU0
zYW)O=qFNNZy(gbAIq!}r?&SM|W*OC^_-=JZjVPMUOSS#lJbyi>-HhCfC^DmnM6I7)
zSy3PgcNCr|9CGUtZZDGQ6uGU0^&&f~Xr@=e!bPlqAn@=h=obcrK^9wtu|^bOn}^Eh
zN24&Kh(*zRp7r>yp-5bqh@!Sg9U%?siqsQkM{$>}*N>usIA6A={WOYN=TT!}6XD&$
zdxTAe&gb%)MR9)=BcgaNiU*>2Fp8Wga-(P-wce(&0Xsy|LcFE0RTQnGXd|BfcWzs8
z8b2h`E{gWHLW7P`bc&)g2LPA-7xGaCA8M@#<#&zp8E<~KD25hKlF%S8iXKt)jN;)a
zx<`>DuE}|XO?N0SKgzG0^S>-(J&j34v8ZtJQ4R)f+gB_}{#X>fq8JuMU~FTK*xpe*
z8O2jkYv$<_Mc*jK%}bH@i=w|o^2bG<h+;}9YqH{+`A<hNFpBG+SYv*GVxJN6mD3=R
zXN7}>v>75Yl%r^Q27^2`hO_C4<gyIUM=_Fl9q`SJVpJ3_a41GGIcnVoycosHQA`pa
zEgTcYSP{mK6M0EEUN}KGk;!%GJRQ#Gu1t$><-8Kbt5LkhQznYP$6L32Z$zzoCvraM
zAmKZ*w^WAdQR^MtlqjZ(u&C2S_*Ra0M>C?}0|%Z&v!a+C#hfVSMzJx9P4YG`ij`5U
ziei2g3z*mL+=Wprj^b^00b5vi_~{=JOB7rtd`I|h6iY?Yzh&Nw;(eZmQG6K1a_LO|
zk;o^)kE8$oR7u;fkeGH(%hgeQVW(OX#ivnl%S-B?MX@#tZiU0+^C%8iu=tlM{5sqI
zE0Oh4Y!FHN=bl+#NAWGYFN)1kY@z>tiLFuWh~neHx!dft+eN-%-5;=i<?-M?Sv%$b
zU=%+pc2^X;IiD{nwkL}3qu48PzwKe4$PYq}jRPX-GSJ&koNA)@P2$hOL&C$n3W(5#
zjc`Q#j%Yr6mdep6j!8K#JYie%w)qdXMikX!s1d{IDE^FMt7+Y(|HW~_6VOD;#F;40
zMp4E@Srg|pe*TH#HWTNgxDds~C@%3th~h>Rm!r56#nmXz@6P2mUJtLz<3_GSizKh{
zBwc0wZkpJm#?dm_H>0@4T0Eb}CsaiWW#7Ej{Z>iqC4K=D1x@fr0eOCrWFZrUO%yRv
z)U+Nllr-V~E>z4!aTC#TIec)z#}`yem|$`eHdiSVrOki;128O}U(Q5%6Azep(6pYG
z^M^nM6BSKsvZ`dFiixTwDx1jcS~yWQziNTpY9?+skuXu)#2qG%HO{VOBE!U;CaRmL
zA%$X16ULAv36G+kYZ5a}I7~QYkYxgP8D`8&HJ2qXOfHt+ghw`B6A{~+&xBt*U?M0I
zG7+|84Uu$q#Rk=k+PWzc6UNy@Dn=a>bxkyqSkFYZiH5fQT`E!o1?vktmdWSA!n16|
z#wMDWxLZ;83hxm%6*6nu@VHOGX2Sc~fCH^|Xl|l~hE1-CmZr6rZYvY5O{_ngLEgqh
zTN7PObT#piiFPJB$%awwO>A19(?LNFn2xso(Y#b=6D#{Axfku$d3o7|ljPk@<VdX3
zEthGDc_tp_V3?fO-9*yF;d!a8^HLlY`KEOR;cu?h$1)!^(Zj@a6EjToH1U{;=S_?>
z(aS_{)4JyzZ1MvN>$&u^CV0u{Yoect{v2{921;kt6DFQEF~G!=CZ3YWFReH?o_{j$
z83j4EX?A&Dia5wl#Xq9(lEf>~5EDa93^VaTv1}eAOly;`;X<CC&(Y`D#?*<UOuS&?
zWfPN3yl7(2shn{pUNSM7<B<QgdpbGB#8?v~JT5NG8*gF)dpsw5qVT@H$!{xVGRRmq
z>?<sZi76(gnt08`>n0|f*0leIi8oEWWuj)i?6g9WoCgV`h|BsXC!NUQW9Mn=S-wk}
zX=0X%wI)6{G26r(w$cILXC~&Fn8&)9SYu+oi3KM3!}&cE{86^h#9|X~v-M^hi=>cH
zUm}I%9f>6GnpkS{Wpw^rk|O=Q&qkBO4~5I#Fg`Nzu?dn-gv*5tt`J#iVwJ5_pP#B)
zG5=H3dUA65duz-v$kEPD|AKw3YJP2EooPM&*dY8$$l!Vt>6ZoM8#zi%Y@L)#PUP>P
z&8GEhXp4~lAl+tSyNPd1>|k4&_`}4vYP27P-w8RX?liH>=DXRs;@=DR3ik<r5bhT;
z)d3R+ZT?zCYjXa{#Lu>JNaV2a7vZlaeiJz&JSsdUJT5#Tq@R=QuM1sBc$_kE#l%$;
zr%n86;x7|_%j_cOe-mfL&kOIlnL+z=;<5QD@(Y}5x+l|qE=j*^qS%_8fnViaV|#MS
zjiFKuH%#2*^d3X0m{p5gviyg$pWdF_CXsr97z&CPvX#OjMTA9TC}!)$MM}hQzly=M
zrDG^($CeQ(E8LiuEH6?)$TbvbTv@!DkijZ3RE^<Y)sBU~-PZ3Axif~m`6(8)W(>7r
zsGLBR1TtdCjG=QJUE;`!S(~zqj$up;ju@OV^opT(46Yd5G4LN>kHz5OvJ)}utl@Kb
zUkv^jnli^20x@t!iiR=k9X*dw46zvEF&MTIjv*o*6`DeB!ke~F#E@-U){dc$&FjWc
z&*tfUe(zGSevJD&{F@hDalfiYF>5ER#xXRJezzTaPYmh2n9+SPw53@L&Dh{FctF@9
zh6hEO3j^uD&5O4ZwidP#ayQ0wncKyX%O;JXeGDC9=&0DP!cIb(br$Ku(rS}pD&3^y
z2q`{nTc%>@E}pcN{1_gwIjiufcn@3YY1eDO{M6+6sXj6Ejp6Yao`_kiQL%UWu~WD&
zJbN%Zo5!k3xlhLMa+B;qF+3aN%|PB$F+3f^fEb>U&ZvRx<zrn)cu?fS(!nvj$WAYn
zPd-G-&=`h^3>Q)#A@W=d&x?$-^-&@(2>C*jmlE#DJ~oDNF?<`tcQL#a!}u7!j$v~Q
z6JnSc!v+qR(#e-&m=wdj80N?D3eUBfIWuC`duNhY=`DuWCB6~E6cOrgicA*1#eSKT
zqBvE-X~OA3iu6BIe3o#waE={2m*-|>E5`*fER11Q469>Uq*A>b!_pWQi@z=VC3dQJ
zV#r#V!Boqnd?<WR_`YrPfk@lRnIFaQvG^y#6)`LqN$0!rKb#KND9BWw#_(ATYZava
zWelI&{0oli%9#|`N%=~+UdWfQ)OVClZj5154E*mRn{oP;%q^^x{>Qj2hOOcZ@_vJ{
z+hh1f$_^n#M(vDY7thc*?uuh~40~eWe^z;o{yv7iF;t7=_Bi&%@B{T2F2=Awh66F{
z`QcwN9E{;d&OZwN6vNLk92Gw#{6$F1!y^65;a6MvP2@-n>4%EeW49QN+p#BNI4Qnf
zU-tcB>!<iDK>W`%7RqG8zwOvFF`Tvexfsri^S}4BxfH|Y7)r!ZGL9?KuXDl|xf;VY
zkzwVmO5Kd%mV!m%_(!B*+|qg67DoY_FV@4!LJAg+W6KrmktvU&Qi=(S3qSJbmlCNU
zq)q8K%EXcOP&STo(#zYiE9a*widTxGvPhLUs@k#7>6s+|Pk2WhcgEq1!yiX=#d5<f
zM;tZ8Yufg;;>Zxs6lU2vZx7PNb4qau-9nGhE9Ac=S>S*;i4jLoJY*|;v>O(W*h*By
z6vpC+$B~Gmwt{tSn>uk!i00EFk9u*epKm=_zW3SWjg8s$*+<B35J$tf^{0YHakLO2
zZyZOHIPQ+)9x2Uiy=ffx+WbC|{qwDbLGF*^fjAzFV|0nE$4_Q9w`~>;Pqq|q6-Vnh
z+K9KeW822@ka#;=IXXYp!R8&~=wx#))6_MNZgK30<J&lL;>e9-RvfeA$cy9QIC{qM
zSRCEs7}h!WyE4gC97*wfA;m}HIM^bYj(s$a9&yl&M|LG#nxE<wN544w$I&~EK5^@&
zx34hkko8-YZ~q^U<B2$4jpMaAo{ZzEIL5{CQXEgmF(7XJiX0xd{@wjd9D_y32Z{_5
zK1<L4RHw*eh?Jo$m~F|Z5#rCq@w~{$I9?DL^&guT#Yfx97?H8I=kW@@qTmGai7MF3
z;**5wGVt*l$?I{v5yzA`rpEDR9PO58OpfENI65!S;QJ{CS*bLi7RU5BX2da*XF=g?
zivNoxNgL0JV{RN9;@B9+yf|K-lv)_aqB!Qq!Qb^f7KoHtkXjta+bkG|VjN52cqfj}
z*s9st?+Ta4u|i~N9Lq%Bi{t$`J`n#%_@S`nomQ%k#Xk`;m_0GIlIQ7y)GAxas$iL|
zj$@6KPlfld&Y;L+t%9G&@r7;wrN}zA|8mQQcN)Cfa!+dVO>un9_Sw>yKiM|N@$1Em
zt#NGQjKpDCHn;8S4B~ci{v`ZHgoCH{f)s<_#j%s8WE{ui*u}{|jze)Aj$2O}_r&pi
z+`27X-oG#(z3z>Jwb&QO4{_{|<A8!c3!UYYj5;X(V;nz;@Q=_G>vLb%i7EcS=$AN3
z82Lxy)=Sl2g}(_~FGx{88n@nT_F0fR5y#0mPQ`JW1Ey&1?>w(BWbj1(gTsD7YFqOp
z@y|H^;^{WCam57wj^j)mXX7}>L9)R5SJlZf-Ip&&osZ)}+<IbMDuIh}Tw*ULtl(vd
z*W<V$awU$daa<E0I<C=@-~F_?sbB%wGkA+v0V(9SNnF{#c|kk2Py&U;&nRut1TL%&
z7ZVm2GFU>SByY%@He!%|N+(c8smj`Z%88U0RuDeb+|2EjtdzjVr8939NmfmuS^~Wj
z=##+h3EYvuV+r(1;LZf9C(t;7CJEF?pk@Mz1ZpQxi#PuX1QG})keNVM0`3Gn2^?II
zLIN%ka)*dBVg2`pK^`0%-h}m?6z>iAXL6r7gMPL)JLqN(A5w)9*6*W80tOT2)(H#w
zoR&PAfSEunfjC=cq4na12MLb_{QG*snw0KJpnd{%#p?+vW{cEVm`eYLpVyrR2{cSt
zuRq8eF^k8OBzGrpPXgT&NG8xUfqN5ZnLw+AHU9ZB?!E+?iQk{V0|`9HHrbNHC?3rd
zC_OR7U<(;g;XAw5tir-nP6D|Jv`L_C!g^2lPy!uA+9lAQtzEY<MIIg4ZjV)`_`t$c
zCpt->i_E$v&`pG~X-mH8+nd=vFM)>>SbZ~R+s&K}3-Wl7^Q}!jyQXM%Dgp9G*r6M&
zcSDaR&_g<Jq<bc;pJ04!#fMtF+fOgD%9YjoCeSZo-Tyx)?4Q8U1coK>xPnipt=L>o
zCh(N_)3!1|<Qd^W;UM9&EVjrHA=CbPK6ALdjYuH96;ygfcYg8od;%jA7^T>83A~iR
z3*s!#iz1^F7$Y)P$Rs?*i@z$IAf)}o1YQ=OWGk<Tr1N?$fd;*;U8vqnU^35|dr|dX
zyp_O|1llz~`v#brz_bLm*TXmUFg<}89GSIorZ#3KFpHz8HrCh1>;&d;5Y|SbHs&TU
zkK?~KJhd@DfdvVyOkh<43lmtBz=sKZl)&Ny-cDet+F^<CorHB$m%guK%e*TwccHZ)
z!?Fb4vs>)_1U^Xodw)pdj}!PLf#r(jJ8l}Mv0S(03XYTdHL0vlU`+y-68v%&pC<5G
z0*4YfoWR-yK2PA=1p0P2cznSE*!)Y8b*!DOtQXlJ+$h|Xz}I%{W}b#^l611wR<?<3
z7k-n#4qG3%Fh#TP64;r*E{VH^2NKvL^1W@jH-UZPKM42RI`g83g9-d7@{{mqVcPla
z{k#7{=l!~$O5j%!^4}6TB7RhOOnBUmJ(0jk@!xIbj|5ue=Q1IW(-Qv_{w4fdcqW0f
zBIks(JkPn;<`+4Z+9WAnN#JS%x79|0+PFr8ZrL{yxTykPPhd&m%ux$dP1_{-NdMOV
zG4&nLPE_C5^j@V2JV@TAC`DA1Oftz#GLxB1=p6)J9wbJ3RX|Y?6%|k^iin7ch2EPe
z_J#$;LKDG`0*ZptQOdXP$uIx)tu<?}ea}7j+;;Ar$z<jXH<@l}9#@1=tyBP|1FF9@
z1L~fCnE)yUP&t6IBBZ>Wkn#ak5K>X_+-V=PXqiQ-h@`4uH9=-o51>Y#Q|+n%YDu!T
zU?agg0o2Xw)Dv=b0QK{d20|JN76cF+t!BTmBz<`uzmUR!`VcR3n+P_|=QayqfjGmp
z0kjC9WdN-Lc&N0W{~hyqu(ZE*K>d&0MzH^=^mRgJm-b&DzzwwdT$>vMxJiU<1u6Mr
zc@c{c0|96ObPS*q+ZI4505^a{0D3@euw3ln09Gzhe;G#tYKt=hFoi?~ZNXRomJn_%
z)QJms{yz!-8T0~32GBmB{v|wB)!!kYE@pV-UbV|%=K#6{&{cFOVQ#kodIr!dfbOE-
zL-3EP>c7<90rUyr@c^C(pl<-T1TZ#$aRK#re7^t&3+XR7Ab_F(Qo@;gtB~RV1_~LJ
zm#2kf0+_i~#U#l}@;1RmC;gQ07$V7`0SpsD$?yP1<oQS;qXHP6my8Ku@ui|%+1mrS
zJAiv6>y7}%2QVRkiFwVtgxo2(dVgwCUe2%hO%7m601pH(Er4USRR?+8%i$HB`|_Ii
z2as#$gLIF8Izc}oSq}@&6r3(NLvX-3UrwKzkBa_d0n8FY$?O2;2%npmF!swl77XB(
z0Ja7&U*s<Y@S<3Iie4JP(*Z1$<g<d$2rd#_F0qE#^5=LK5XoXeb~e|emjYNV5++|3
zvLt||LY4_G7hEAoos~jX(O1W%nOqaVT9K?1<ZspWdCd(0Y|Qgb0c_6mEdfj#qrwvn
zmZ%FPuS%z03t*e*yq?#5BY-#a{4F7G2k=f_@~)7*2T~sd@L>Qy1n^@(eXxFe0J{R%
zE&QVZJ{Iyx0G|f1BY@8&`Bea)3;804R|f42;EOARHr2_{!j}PDsIAD?lDqt?)SFAP
zOzx57e){~l;=RK634SB^b6r*B+W-y(a8M-Q1@OI?rMynP3`?<!pST+Y@VhAdBFNm|
zgd7t5HGuN+T+m@j9tq&6kXuD~U`h55I%EKUijZZSiu|ttj*F!A_~Ji~`~L~xWB~UE
z@jwu#0yrJOdm7%?a3+AWT(BB$*Km&d0T>!g4Hvli2hdu>bsGK);9>x^HPq2?DS*pt
zkA?~wt^`m*Lun0VG?dhE{h?C4nk}W_wt^H%#Qop1MrAdW)3EA<@7$6sf5`aC>BNc}
zDru;x;VKQwkNYZXsG^~&rhe(vU7EeKoGM#QQ-8FPRM*t=PBn5kvK>v;KcSv|szoDT
zsvrAxHPqA4Oha=GS8J#*)iu%3K#DXH<P*6Kg%k+3KH+ODgm!!y{K5+b`4x5we=e&N
zn`&6R+1GBVYWX!9u9X(@se`|d`&wvdsiBo98)a0d_zxftUOBhnXlMv%&@|kjsizdm
z4=K1w!;Qk*3U*zZrTk_Md_$Z^J0biVF{mM=F%~q!(*2S{3SQfjI&s;@KTLaHDvC%0
z*yVc;m5OSJY3QM$rv^)dt)a7qE*jz*91Wg^qy|?*>#Ta1f&INOIGxb&bv#WndTF-3
zhUrVQ9W`{&z$E{FCw3w)=_lc{C0#Xi)9~@qY<G6#gm3xMZ2f~N+WCHImXGH4($HJO
zKn;U5^wH2)Ly?A*hFdhe@@r9l4Kt7X`e``7H0$@$!~xRsRQogss#wF{ee@Amd_9tB
zc92!4HDp+|hA|p$6-~NRR)cR@mJPm5B!dNq2-3(<4a4$$xP}pVK2pP|Jm;W|l?h_A
zd2mAMY<FlFui+^T3p7m7Fj2$9914wJg1}uG?$dC;hDjRkW|K<#r_z*$$r|nzn^Oc=
z?M<-()rP0FWm%3!)=`~mu_v|lim%hM>;oF6X?T!}XmFYnx^r?d$wQK4UuJM*G|bcR
zq=rW{JgQ-?hQ~ELrePLW(~tt1;xSvp9I0z+N&iew*&nwo%iJe4^$5_v-xhPwIEM2@
zhYzukvo2;mtzn^t4H`CTct*n_t}hKM$m`=-4KHYTQNwc@p6AS-@J*00Su92#S(bfC
z!^;|$Xjm$~J=RmpkRwLCZ?kWij3nKgt8yiWi@UvswOnf&R!i1P%hV5Ky`q2Qr6M+O
zorc$!W!GysTsF-lag&D46l!=w!xs99hF8VyX>co-65rG);eYS8G?V17Y1qbr+MD7*
ze|wXSFX87nyrqFUTjS}sHM}Fm-_@{pSvI$h+SkSh8a~ue7zBdYuHhpMCpDa6e>Hrf
z;edvN8a~yqL&Gi&yES~K;d2dNX!ugY*pcnn*_|5x>YP5dO#MQqGk+zW{aRW$qdIOr
zREpi)!%8)LqhY^>0lQQCG@Om6_j>84o-6udaDg`@O@H`S3i3_chvsCz)9^iqLc<Xa
zKWO+-!_OLi5d|&*8vIGa13i?5GRw29{g8%VHL#nU*5A0$vgyXlv%L9vRKxG$Cnsdq
z{*V#)Q<nKL!Q4>%rQx_VI5+rzYgjg_-9LhSmx25=H-8NkgQyh5S#JIsN(E6mi1Tz*
z?(-Th%bfnpWj;84QTTs?8;<)Zxp_tT{;e}txbp|q#FYp#*h^+$sX`+A(upU9pn8D6
zd=S(u8&td8(yxlkiIBcpA*dWOvRpY#<shmAQ74GHK~xQ*S`b$S`A%Y{x>%lg!Cxb&
z!l&?w+?qjf6?0K@UTOtV^MtQ<Q0>(RWY+2h)#;-_5DkO8Y)1Vc{_@g?MyTDDH5LTX
zD2T>E_=5j?_AIw6vbaA8-Y(X?bl>G_#+wAuG>9QV3=N`L5Y2-ygNO!kO%T@x(JqKU
z5G{ge8N>}i+{i`-)srD@XoOG94o<fY;yU5Y9Q6$C^+B}{kQ3VmaZ?cc%ch>1macZP
z-_1dFf}^YKyjaAf7DO<Ja1ascNGOP%*|Z+S+zbB6quR~5;v*VC98aWa;oAOs*$Zkp
z#DcJbXdgrej@zrnb`VYwt~4o5Q&)V)F8dNRb+O1}`}?a$L}m{zAW2H{;jdF2gXk2*
zpdivgbPl3R5PgHVC5Wyvwj7WiL39h^-`#51yUP@i^pxCQd7a)u`UuV$-Kd|Clwf~B
z78wvkk?`DBTr7NGK9@qaEfYjGh}(j=Rl0EUFCWL29UmOTu9AN4pIrMRmS=|r)l)a)
zh(QbwVnk4#bVdd-CWx^?jFRMNW>rh0TZ&m6sG9#3vDf5x1Tj8{yE({WWI_;k1z{ie
z(cnap+{wYLtvWj?s2&uYU&7B(nj8erzf*%4+%r8Th<k(h`?6{<54zcrThsT+tQ|k)
zn-;`_G#ElWgolE7IEWKe4q|!`GlKXyh);r;8N?$&ED2(1P~EM4G>CaYJSqIKpt}1#
zOK^4&bA-$lr2KIqPXzIQ_rvE0@thQVO0pIRKAqQJ$b}|+k>Im=`LyNP=Y=npvM=Q2
zFA8}nh?j-5m%HxEf><8JnjqE&u|o7$3$7F$wttl*`LeLO^IXMGvW^R|VtT>B;`Kpn
z2x4Opn>d(3ydy<6)ANOF5qw2(t04RMst`VlMZPVF*MoRNByS47CCC?q7cE!!wBMB^
z$p=E-6MSEge=&S0WV_%;g4Cq^(;#+mB?j@WwEQ#fOF?`c#OGWol!)+4LG~!uFTTjU
zODyaOGM<T=qurvgX?d19`+{I+zY)A^aynP)KoAE-=hq;<3*vj>zi_L3BKt!SKLzoA
zRsWA7q&3?ASvbp*6Awu;SNm_m4+|a<JQ~FBLa6yi5XXf7nV0;<jY2r9PzHlI$rEA-
zO+q*o#A$A}A=C@ujOdgLp?nBugE%M2^IYsf{Kt(e2)2X=n|D#N%7&D?UJ9a3m*UHU
zBv*nc5mFK!B||8c=cR>|5&T3ZE7z|IAyf*XvY4tEQdQ9A%hJv&AvLg7C5xn52-QQV
zA;Ov=)D}YdRUy<8o?8WVgg2GHjjj%%eh3XiC=eqJ1nX4s=W1a^jY9B+;18j(WKqHq
zj!#s+N-PYiNujW52+cxh8^TQ?G!NmL5U$JXUmHS;5L!yIRRi^oe5(*z)25bT!5^1r
zDS2XXn>Ha_AHoeGoLio~QIz@r6c+_`*qEC`;7ZX#2ufDF5CVDo%nb>TgkT8KNxC))
zhfrmO@_CN4De_ndQ6c^n$_XvuEKVIK1ee1S!V@7RLhwQ;4q;#j$q?FyRIK%$A#@0#
zV+fr>=p0f{hW9_}=dr!Ize@;RL+Bntj}Z8cjI)6ZbGwDWkED?B0|fk!nBnF5-&3y;
zdWX;_guWpR2%$(Ue_P#u3!8dxx*z4$GyOxLJ_{-w#Fx0#$0_*lNhM8vb7W8m=@7<+
zaC-=u5N-`&cnBjxm{>iN4PkHyLqfQXI%oWhX}_|GDl$}R85UCU=b2;({kc=pBSRP!
z!srmjNTstXtE^e`R0trFvFu=_48Oy|??>Db!uSxTh45eq6If9QlS7yi!kz4(KQl>;
z^HUdh$(WF^sdtO;9`>=8vUV?B=-xCxLvvpU-706MhSWC~C}#`rmsUNH)320yD5O3i
zp_&~6Kkz|5UAi`drgjw16nsSRQNhOqnKetuY{5Ap%+1Rg?SEbfPlm8Qgbg9g58){e
zFIyhMf)Jh#;kgi=4`Cs1{)g}^H5v9fB#%W&*xtEqiy73H4@f+@Keaf77eZLV;Vq}{
z@135sUp*W7B4>x&!l5D_FAIsbw0QK|<XbM9>%<z1tPrv?gjGUT3-ZR}8X;>1b6<|*
zKNlNA>LF4dn?l$*K25S&BwIpwMab3=-V^d_2(Jlgw<5bu$m^WY6<Ho{2zgWREy1@1
z-w}M5t8zk`YVS*_4+MW)QT$;D#O)z`B!v89A)g3-8p4jeoNplR<O&L5c^E6g_%ejA
zI6gX->i9Z@T_J>ZM0D&9VGrF~M^znrIjtf58Ny#7d=tWc8KR>hd>g_6;YUI^DC9dq
zjvIq5e;>jRGBwN2`+m&Je-iSu;4dK@67p+4_qPxZ=Xu}q>gA)=<rMxN!XF_V<4Tdc
zXStZq<i|s}7{a9xPK5Bc6#OTIlR`L0D<ll{sSr-*ZJy!&FZ`U~dBF>U{|d6M|F|KX
zQ~%oVxE#Wj5K8F(tGA?%YX+!joSboDDIKLnQbv$jWrdW}QC>&|!HW6ZN<u2@c)wbj
z%GGpK*U?r-`hu^9j+#24qlu2Iq`F!<YU}^|x2TS;KK1L@m7mwul_%HJ@!kFukE?am
z7v3N*X(*&XM<XGP^KzdM`hTIWR?4A`K0X%JR7Z=h>FY&8v(0og*TL}S<k#r9R_baY
z*ix{SU~56@T&JT=o*yis-W|I^k~fM$-lD%r$IUw0i7+S_$m?r5#;s6)rG-SI=jBzt
zO&K~&9b<Hi)e+SZ({YQAemX22wvMhky6K4PaM;?@z77<YEp&BwI+9`}p{ua)y*K$d
zKJ9fC(4Ms%8dkt0Nk<)>baWQYE~1$W=T3K`Uv<~fQ%5fyJw$;6&MktadW)UDx{CMM
zN3!_T(;YVz(|CVQla4HfI*N3pIH5W+I*N601O|yREew=tWy5Im(5`}wrBi$pwsHUT
ztun17gLMqiF-pg19Yb{t)A?X0Mo4jXlg-NopC74X)_^p_LzQoop;;cU|L4oCh;ce@
z*YS{!hjrYcW4w+jI_}jmL05t6@6s_zN1d|%iQ)-&O1(t`(s%2)M{1cYvvx&RO>Q*U
z)Tz?t2L$gEwfl2D`Zkp+tNyB(CUzc_-Z42{#|#~Fbzb3MrquhWj>mL7LivhpxyQ5I
zW@qV`tz(Xk%H{kGdZiiFirryHh%=|hp3pIm)#-RiD&oTcPYRi@<0%~rbUdwN<(T4A
zrP2#U{%ld2{><Xf=vb7K2tFrB`SU^+3%($j3$DvP^1GQY=Y4gVj^&*CFnV)iWEDDU
zgi$k$RXSGd_(#V{9cy%~<=&`ckB)UZ*6Vm(#~V5}=-8-Zi;h=xY|^oFMB0BtX0r}H
zpTo024!7!fRmW?bn&;avw?+;BhzaTS-2XYt6VhELq$zn*$6G8uKK-?hw{^TD%3slu
zR%H2FIt#w5t6*jCaStKU@u4Jl2vWXX$47bov5rrKe=7Lf3KhrfGvS{L?iBn&kXc{q
z_;Y-kgtbg7SGY@>!Im(%%3dA&bo`;?n2v9B?ALKv#}OUh>L|HVnf*@30pUy@ls1!G
zy)yf~jvw;&e-!eQj-T_AUxXae@oQf4n-DftTbVs7c7E4U=>OkYm7&=F6yfNV+2cC?
z5}sO_WrI&})vV0^El5JiDK2g9!(mhi<BX28Ixg$ru%FX$UdMkrF48&00{h4lH}PK?
zXA%zeC2qwv{Igc7mN0pRJ8&2!!zdM2u>#75Q97(zwOr~dBb;(dIQ8Wu`Tojm#jrA4
zDU8Y@`FUlwN*Gncs2)}=q1kF;jk8bAZn7*bTop#GFoI!(!l)faoiLh*aZMO?!=Sg+
z52HaC^~4|t=jyQX4VL23FpS0`FA$`pQCPVajr&-m2n)k#5=PT7Ksz=33|~OCW|Fo0
zsVtq4NeZtGqeU1uhS4^RmSMCCqx>pW3p>?13}PF>>jXJOlw2?T20?1x6voYAteKDw
zgq6p(qrn<}#z|mfxEwU8k)`+&jUGlgj80*67GXp%7KRaqnI9<jBFdK6P^-xbgFeZ_
z77`D`$xGZY62d*fq+t7eZig^B3a5jyc$Y8=S7q6x?qPHdBep8rEv%LRs~ET{+e4bs
zGYl&5ps-IEeZ#mbj7eeK5=Or;MussejQ(K^2;<f;vSAd3|M$*9T1YC4;xGmZpSeoK
zEgU4A?*;H(hD;cdmBsvq!fjy;7WwcnhJ-PcMJ^B8yej+Lsw@dLhlSO<4~**1r~XEW
z<|nJNqr(^z#&}7N6}&yHzBIviF2;qy?=P?j_3x0ZpI2okgfTIUJ0(eZ?u7-`es>u6
zgz-!mi^7;3#*{E-gfTOWd&8I-#zSE|9LC%YzWc(M#%>n0xnJ;su!`yTZ1W89L6I=4
zs|1%DF{EJQzSQ(Ep8qCwc1Xb^VLTeflVQvc<FPPiiSj(b*|Z$S<6+E^<kRz2(DEVO
z(=15xgjkqW-M{vj3Sj<JzLteyEMV<@iz$3sgbZg#zGX<kvtc|J#>-)Kjr4pNyqo%x
z^mlO>C01u&U`34E&*_%^mJZ3gremx7mxQrYiYyc4<2tz~c2;up=Uhk7FM`!{<}j{{
zpiKm8=@oRO2r5UgK8y`qgS?OqV`CVb!q^_hM`3IZV@p^)c<_NBU&?+($ks4k4dXT8
z%zZ12ZF&B>kT(S14C60(_TX(vz9aaqAWOZ+RhH-VS7$#AtEV(qmGTom7Wrp_pX7Bu
z4P!^1-*9#D=Xt(U2p@9zDvYnWPfBuE7`wwb9LA9_7(#PT7<)xN@V@kQtJPcQ`@;Ap
zjQt|~R`BOA4hUiHK_TA>ejmmULVnEW{uIW+@)@fAl9wD3@~hx)g4>3tkB0Gk7=Pz=
z{s`k8=^YCm6XBm6pM37|Fizz8`BMIW^8BQbQ-Y@jkCal6bDRz1To~uWxDdv_A}<|L
zGxc8>mnBJlQOG53L94SpS7)!}<s~90Daxe;shRt(L7523ilkg#UOs{fd0sJsnp@Os
z_*EjP8bPB78b?qqg6a{}iJ)#oJ>_15Izq_#3F)gMs1;FPpnl}Azjg$-HALfvDp@b0
zZerArV8>a1rfKHt2>6qngryop&@h662nHSXQ^?2NDfC6)kEmtaGJ--O<ktv61Wh7n
z8bLEjHWy_4Nh+KyP(`j42}uhfjKSDSNNd6VqIrD;H$>1Wg3b}#7(v?zj0nsKZi?V$
z={}#XX%|5tf>1<xDWA#tx2j)@;B4nI<iUt~N{2B<^a#RvAte!!Qzt4U9>MHC{W0N|
zpdA72@Sw62fg3?00xyD&QfX4KeFPnZ)TyTCy+$=ZW0;VWFv+7!1ieI|YXsfIZ1)Iy
z2%%Z7l+%Cvdq%)m3QYEnppRtr6`Whyzv6Et?;qjMG<>6kD2gBz!Q2QQkDxe$ff3vj
z!DP-z1nCHdM=&CS3`dU>8o^*5E6Qid<ugpYL}!veMutQ%EP}1yriMn;4;kk23V+CI
z^}V5y5sZppTm-jA)Q`c@5sVch<YOW#EN!M=I&zEpe#adVjE~^12qr}^flcBq5vgdR
z6r}#07ksQMXa8;yvN-Fy{dfPA2=1j{MKC>rsgm_T1k)n8Px$>26||NXrre}{fIJvc
zzloS6e@GfbG9!YS5%79`Hr=>u`Vo;Ap7K8$!DG@4BbA;N!FG8hCOM{f>gwzquAr29
zy5@-p=0&hMf-S5rg830V&nbxDsR$NC@Js}YWLWq+;^_$3*@Y2xCx?|T`_K1m1kXjV
zttic3Of>apSwFAvFW#cez7WAnTwiRh^kVtA^lKM<OCner!SV=Jh>+v2>~MMZRzLHj
z1Jb{g^{<Rz759H>Hh)6$2h<u-UMon;>v$H(^9@2aa)^Yq{9XM-dWEyewahge!K)Fx
zChdQd?UZ48J%TsH_``ivJ99tfKD#CTRs?TH@Q%zK<)1|GuGoA}@O{A#1V0p{&UPUm
z34Y8ekf+P)N*g|l;PVJ}MX+0PcSi7~)XrdKUqsZ+1d^|$8B<RAzm8zx>MTE!wMQg-
zBiJXUYRHGrI7+OG_-zCSBB*EJY6AypgbO@^ixGU!sgK}~2#!gqAGyRL_%(u`BKVp6
zKn>+KzldcL3W>i(a8$@)!6SnFv>830xxaJ#hZSu2*Y{@xe?@RIf>YcEMTfcnL~w$8
z>45a#A{ii0&{00RWcoCHgBt~Rh6Aay(wK8H__;37`OimiK_uiK_gCZ3tV<DG=E>ba
z6$4iyC}E(qfii|#tyC*%pp>Cj-xo4pELGM(IYafLf`Rgq#oUitWc<a-AmtS$w~}C;
z8kwpFsu`$dptgbP28Q%cUu9q`?*bY4u?cD#YSrh~6z?$PEO2SmF;LgQ?<ERz60Vo}
z1{xR$8VDI^XrREr4F+zM1~f9z!az&mjScvu>PBPJeglODNFdlmkjbV7n&o+O1J~sF
zwL*Bqs+ED(2HF^)mp;`f^JewTbz+mfV{zj326pvIU-?(vi)d@$CIdGc*tlBV;o;Fv
zlmmjfAN!gCt}kZk2Eqms20Q~1Lv1Ee12Jj2VZanZwKvcEEJHmO9yj0^unq9ug?cxz
zoS)0T(nD%Tat*cTP&sL!y@9R<y2-3{FwogR7Xux|8Z|o!**`YDzi;|&S?qV0_jk|d
z_Ar#cJy^%jZG`>pZJ>{Vl@?Z6=xg8>1N~zd5JNu_1K*qY!NdTzhvR1AS`#S)#RlFr
z@ScHz1_l|JZ{R5dX#*Jp6Aj#H;8p`!1EUO#rt-ejZ3c!?NcS_axI!Vx5JLsx<~8jw
z1H%n4iq{C1-BvVGIJ3yVYtwLyfw2beFfb!qJWedI?Cl2rFUs`GLkh;zlV`*x2vUvV
zrtdN^$-sjK9x`yZfqM+xZ(w$H|7033uPy+l8kl0>-WBEVmFB(DJi|s(exHF{{Ot$W
z{vid^40PC+;=#r|Y+$;9IR@skF$QKDc+|jS^qDH@M+|(jI?MPB<W(1`S9E7_O;t(H
z=7e7MG3*J23`0Ttk4qPxWGx2f87d+QqhZrHBRoI9!FR{O)B-;IZ(xmqwFVX%c*ejB
z^ce$-3_NS#c`43V;<<~H=Oo!<gKx1A7U!=O*7A~pWd@eZ2*1pExi!7Sz)~S>29qmt
zb_}c%9ZLAyB=@n5)dmhU&(O#^1M3aEZr}|A8|dl=Ug0V>u*tw?DZa%(t_Y)lbG|rS
zEcL2nk-TPrAKf6C)d<_@B-@HOM{gQ<%fQ>5l=CWUu@qs9>vyD7Zcg7f@PUCd2F@Dz
z(7<*B-_Z#Td}QEb17C9)a<mP6YG9{<FAVi!^$r7{8Ted`s5zBT@U;KK>g<=|RA1#=
zMIU1>vvwQUV_=_wZ={`jMS=0#=|61eegoff&lit6K+joGo}tm1#cooEIHLeRa5v+A
zW#A7wl@$Ngz;6bAHt>ri59NJ{)p4K>i|~knqf}_wkV3jH>moT-z0ol?!@x-crwsgM
z;J7HC$on}frP|*H{-I6*7}TA=Ksnu~MUCT@TT_LNaL&Ma1655_GjYMdzw|>BWlYtD
z{|sC*aM{2`DP<k@)9bDnC}E<ciBhIop1cMo(z_TipKYU8Fg$))6Xi@)G*QXqQ><#h
zHy`nH7%P}+8PesbS=q!>_0+nqLY-Abyv$~FbpD2|PJI(T6MhplO<ZN-Y7_NM)H2mX
z)G<-lL~W^>Wm$?Yk^6*7JyZPzW@z*VCK`%DV-p3Y3Y^|ZlAHx{mdZIHu`nk$(bNQl
z(;(flnegU<jAq6nIc#B~rHT7Y+;5_liPk21nCNNZIumV77$!^;*PFP(L_0Rd#EoKs
z#cwjvR`{5GDXw2iZk8lRLo*RH5td{qudn9^hnnnlB(Kb5)I`ig2NNAdXqkwcaD>}}
zT-~mTgb7cQEW#dfh>QyUq>1(-JTxwy`(4w?L}wFSMfk3KiKdHiM%w@KnugtkcQ;jV
zdrld*++HSnn;2$dxQRX{`kE*<G0?;<Ci-!o7ybT%MJ8As=X8LHe^#se806fzNZ9K^
zCekKuGcj0{Gei?vQ|)h0G*W)W8gCau&!PVHmwiJ-bEv6ye){tW6C+LBY2q#uqfCr8
zF<unLm>6r~cH!d$X_K2OZ^F>*9U>v&Cl4l=m}uhrAq70>*txxBl8GtwG!u85xW~jJ
z-=vsD{mD`=Ikk9d-U9VYG{%wn*$3#=Cf1l(YvMr@51CkC;%O5Po0x85j)}P@W|){M
z1!vJ_-oj%h9u;0zeC*llGwdnrnr(t(o?GdUn|RX1d=pQYm}lb54t0}<$5nM2<xUX0
z$EBYVBb?%eCY~|zqKTJGEHc3^KQCF_H=Z>?h39BT#$mCE7bJ@{a#H9sFPm7x#bRQ)
zXtIi>qCmoe9K#hR>TUI{l7_8hOSZRFr=fbO)m-LlvK*y#Cf1wy*u*C$HkjCG;x!Z7
zOl%T6ub9|sVzclqg4`kLhq*4ZmRC*WJn(fBZ<u)B#0MtcH1QVY`Ifv*hpCc&N46AJ
z&DHc@Ce4%4dnVWb5)R9UCbpaSNZQG@!$zLC<l_x7ZVsQC*kNLiiM=L1Gx52JuTAVS
zvD3sC^gXF%=`lag%d|uLEc+D~@{AZOVheYh*e9cRW_SVjw0$PNkqzyjY)$*w1``KN
zbULgo@SM)#EJZ*0PAqd6nf#FsOy`dx6UEOae&IrnqEi%yO#I57Es8o({AS{?i4swi
zjN*uiqb5$7IBnv06MvXEZsG)8cU#dh6Mu>2KV`~tU&mk-Z2aH!z+?V@#ChmQ{G!J@
z<I*Q(l)MW5GbYY*w>R;xiF0D=yjb8`V{u+Y@tYL?nYd`;l8MWl%6%z**do_{*88dt
zSEOEgAXh}GC`w0BHHvCcl!>Bj6cwYW6h*nHTF9->`^!ghs?q=axdP=3!_`-vEPlT{
zsB#olqM&h_r4y1=mr^|YTopx)C~8L4l>q00xg^}fYehj$%XOou7sbs{w2R{EDC$Si
zB#Nd{oNI&zQ8bRi7ezy{Rv_3&uyBpqi~La(MuDgr#wp#?O=YX$0OnRlvnZNJ(K3ow
zqHs+VEreVv$Rcbfjc|u-9mRD~+z`c$QM3{Jyuo{Y6g&x1jXGS~ZKc#r(rgM7m(^EP
zC=W!TMG=d_iXs?ANQy_I&^abEV&SM-u)Oih1;QTDlo5p)Rp&~cWO?x!jjHQpE=)U$
zcoa?)E{n)LC@OQ$PekE~&Gv%HD7X($pI4`wtLhy@NKIaLc8;naYkdT}MA0>hZc%iP
zqPIwTMDgsTbT4{ouXN9-`j3)?`c;JR58t7sRI+arw?xs8ZHQt(6a%Gfkzh)YKbEOh
zEWGU+^*d;gaFP;b{kKMujbd#S>nMz3a1^tnm=nd2D27IHR}_<?>P6{cQ4Eh_gz!r(
z&|!`Gz~9IyM$rR@$3{mnMzSb8@|%CG@Nt5-M{$Rc@q!bhm>`6jtI8A*@1*4`4Rgu6
zCF^0qdjuy(F-6F|QA`zbUlh}Xu*m&UJRm$5G4(;=59M=nW~WCnBQKd5#UsKW%}XAO
zVwUjfuc&wqbE9}XiWj1IF^VUmm?v3_qj)lk`B6M0$)^OL7G#kHLW*QS778~irx$VV
zgg?jD&Q3kHCi}c3M~m8y-~24dPapoaF#8hSL$a0#t`=Mx#WEpOTP|cp6f5(RRYLA4
zSIFEo!dI=yu8(3v6#Jw2Hj0f=Y@$4h_oLVx#g-^u5w*7#rx;#?r8t9IMe?d3C9g%X
zEsD?9WM3D2Ly*Zgqj)RN-xl(Y;JZ2Du-FGtd?-eCN3lJMkD@Bd$F3+o7U3sREZ<*D
z`ztGE=rf;2mFMgb{7mrkD0T{={EH~Q6#kXq*Mfhn$ujHlS*fXI3igQ2y@LA$FRjUb
z69th~9Ejpz6sMy&6UBE?e9wKJTU-=Bh$a<&lD7TGP3DCZzjac5ttxdWii;I8|3q;z
zieGsOkmTVgPDJsy@FRjp1%DU(BZ^}}{uE^KzoIxUe0r-4lRWOW_z!)SgjJl9HPUT%
ziU*Ttxm89Hjv*4m`6w<#acvAsW~Kg(;=d@aiK*qr<07~87|O+PN!ou|@JhZfB}A>H
zU@5`Uf@NaRq+jJ@s34L?F;tA9lJL4QR2EWGu!>++LDpDJNc9+M<Rv*%S4py#VC@*{
z2>CyqdXl_4hWbKir-6`$f(0>jkoGi=!54#Hgw67rg+dTRlf0y<5cZ<Ekcp?&s^l?f
zZMH=WEk)Q$@Fv05g4YSQ5xhQz8-&~_$g*u?U^7T=&P&<}32?0PlAw@K40>L|B8KqJ
zF?5N+j3Fw?SPZTZOVAdK3p#?Vh%-)1#Ng#6$r#!T?~s>tjG<GWFIiBbYo6aCq?=&(
z7<vflDcDP}w;=8J5z<$1ddb3mLdMBx7sZf@VO<RCV<?WPzjX%1kdCP@GY*WQW1;$+
z=Ap`knHX-1VQ>t$icVH=RM+&KuN4i6VJPMN@f*XinEJnxcdN$5FkJYE7)Hi0N;tE|
z#4tL~+gJ6Ejp65tg(S?nJ%&4C7$3ug7-qyUGp0htPK@E<7;=G9?~LIt5l)KX?ilV7
ze!n0!C&w@)&+ip7HHQ20l3X~}2P8Qyh6jZ_l+UHwbZM0eyUNcF#_(ti&&BY343CMC
zSuxCx;fIPUF6$gAwMg{m3V%F?Ct{eFx3(aLC-Z#1kf#K5y?8o?g_3+mFc)L?*%&^r
zqED{sC$ce%CF`XaUZANe86Gdj@K=3B*Z}G*iK$oDc`OyOEQaMmRtT;XTqU?#aE&1K
z*T&SR8Avw7urY?#7Ou0fDTd84{HiL&mKa`%;p-T7#jrJoS7Z1nhL2--Erx9|yi3nv
zlh$Tmr<2!8y&c0FF}xX5AywZJ?Da+wKM2Ke#P9HCW4Sbw{Oa`kF?<li_86FCsg4g9
z6F(FSRHhn}pGfX!90#%UsU&ygjnpcmvx=P}{DN-za4}7N8N*j1A*YeuG3<%qyBNNY
zfgg_98^it>zNI^@D%uyrH$n<JrkUh%K$4Zu`VI=AK7~IB|0RY)G5jc;!k_4(d7e{a
zlBLKG$8aQuk`_u?I2yz6oFgur82*Ui#2Me8F%_}-SWJB=hhfsABik{_Z_u2G;qMqO
za=VV<pBPSZZ;#<Z415vhgR-epF`O2DCWaQXvgd@Kjln9HrUDNVs{I?oe;n1aspccw
z5qT`CsN|PpxI*ReX{xPRn<Xh>DLW*kEtIj~w@_%Itc7wGs#~aGp}d6(7OGjOYN4W~
z-j>?FHe1<3CE<z9>TQ}T!l{sZvu5zF6i0^1nij6I(7-}N3$-lNwoupNCus58+H4&Q
zRAZp9SKlfs@1`fU$y{w=cV`tVzQy=-eKEyc+Apxs$U<WaEl>GagjM(?muggC5*C_R
zxV$!dt%as+<XPV}qR>pRxuwF9QH>v9V(jZ=n@kIuqVRxv2f3B#Z10g~vW<o7E%diA
zz`_j{ZnV(RLMIDtE%otD!-8qyCJQ%PXlEhY7(ojm3-1gr2w2cKVrA1jsL4Z@B4PG-
zU6#qUyHgQSAc<OtSx8v$ELaw73yvtq1*yEZOqw=xc3csDze{~rE-Ab{hvKA<$qsq_
zrMrteTj*jzFH^{GQFXP@%|ajE*tgK#LJtc)E%nVZ&OYCb;=#`kg}SABS^V&Nx;MMf
zEk(Dvxnuek3;iri{i3*1jr7kQmACMFOhpz_79O$isD)w+11*fTFwVjt3uz0(EDX0)
zB;*VS#KNAL#pJh&q|LhQZJc6GdZ%=Q`k5hggZddBLnW7F1iRlDBQ1<#<JV<bkjH2d
zGC4-nDEX7$#<FmSg?rgH3*#+JurSHO-7;|#1@EMDj&4`tgwHFVzKagrFSWmPy1`~2
zh4)yPY^j$hDV!q86mrGgXW@Pe4_SCv%06IW8hg|+o%_ZUbsiLX?lVu*EzGo36tWp&
zfuEz|Ffxlek6DaRif1i6XJNL5IToI<FweqVE~`=P9=DJjQo!TKy{X~rvXp3l`-x9l
zm``_-tfwq2VA&6gpOzxeSXd}Ys!{mBy6hqgL|S;>!eR?c*&QkSf`u0?ykw!(Ngv;2
zr^3q?mWUDZ+NBF=fd%=N<#G|OkWy7d&c>{^u*Sm2Ha@Yj*1|dqt!-RqW4(n97Jjhs
zqlJy!{4IQ8;Y$k~-pv-aT6mRHu&QW_g;y+`>7FjvIsHbb^lKKjS$NOF`*ceSZ&-MX
zOT)sO7B-hD<XFAUQL2=pkeq}|Z)*88$-C4nQ1TBrzva^(TlmDnhZeTWbWnl9kEATg
zr&4@}h0iz?>$1%KTqLx)(}GX-A_`YMkp9ZT*B16!_{PF6ZY&n|a=NqHCku-0>9IX@
z-7;w&{KNnwRR8>sZ@-0aEqo_BbmIf!eg_5l4krDOlJ7aWTtpqy)c=Y8VBrdf#l|ld
z4p}(O(Xj9<H#aHukA=e=u65bpE&O5Ohy{KX;;0}AH++6W@R)_;T%pH`l9!AA<bJy+
z^_MK_C7seIME<uR6*%B*!$}LLWU+8@@g>u<+^#DZUgFlrKk~|@&sjKc;exp6zZNc9
zSiiOSKbkGCcE38q($pd6S%#nF;6bw`ZIrT6-9`-?rEQe4QNcz<8)fMRTZ_vJZm)xK
zw%XW-bW+7hD%q%Pql%5HqQEvhvL`jDe449o*Sc)DdZwBUzQD`XRMW;)HaN(wY}B$*
z+lJ4E-$or9b!}X2qrQ!LHrV|$l?sO?(j=p<&NQ&m&_*L0^s53vlFyRqQ|q#9bK|^(
z(^qH%Hm<eN!bTGtcQwX4qZ>7|)ycQ1n0=>ox;Z<zCq)a_*y>Y#BrR<`P{~i7x@Ua@
z52+7xu!Z(1UmF|O+vsDXuZ<gQ+-M_gBVwbijhk!)Y<0_&mqs_U(&yT=6TJPJhHWKG
zkj6@v6_x0j3fc(SYJu>*RNcl$KM$P$^FYIfX@gPbdfJHEh}rPiJR6n`+lFJqwN)4*
zeqS;!gn@~eoKxCQk`M`#<n3*Au+hmzXB!=Db^TDUwx7<w=!`lG)Bn5J=w_q4t+ukR
zwpwdk3q5QM>YQHvtDoP+Afb>UiF$GTgR$O%r$#iq#YR6HciXs!9kDUM#xNVhZ4|ND
zHx*}W+-f7m#<#T8Eg-g`S9&1L3L#H(QvUOiWJPC)jlI05WUISUg9X28m0?*PLv8S-
zB$5#}M%tJtt~JWWXd469XUE$Z!}(gD9cQbT`q`<moZt0XMu)y#G%2}*Beq@zzL+4S
z#kCoJ_Kxy9=>VcL$;Qi7{5&X}Y-5UzCvD8PRq%>?ZOpbY$HxAem@1O{Y}`+OurbZX
zgUlV4euN%ttLPt`!H0!RUY{kOZmXA<XV{o2WSw6nAC(&UKKNrcX4&e+a2|YHnZ<KB
z*T%1W!_meQwt5qpZI~y;7q8DgWn+Pj#Wr5B)qBuS+gN1dS>X$9Ji{SfpQW7moLDBO
zh3AF0zb#GvqK%hqY+(_0S?n*hvCPI2=^E=|3wbP;<SH90Y&=}qUq6VIbe@{3{i|)P
z;r=g8Vsc}yYh2fP$p#^b73DVx*(|uDs<OP*#;aVv4e+Ln602jAUbC@HT1bW0*#*((
zhjE#F%f{Q%5)RHgHr}=I#ro`fHr}`KfpA)2%c;rZLmS(Lf0UPeToa$#*kR+_I1a?|
znT^kF+#E-{xLR2|Z5*}nJMGx`(#BUdzUC}b*~Ttf_}J#LN62n*$Rq2sdnLIqpZkpv
zKEiRp#z8KG3h5&@zO(T?n_Vw;SSI=h&L-WdpbdX#{b;LSpg(bW+Iapw>laBL63qQ-
zQ);5jS7X#;b<>M^uDt7%kKvX6u+caUUmVA5{AuGa8^>*&<fPEMHWZz(@sE(d1u6Nb
zWkbePBstAp$i^ibm)Vjk>XM00e%1zqG@cVYZ{vaxO8yn{pN)$`7*n0XE3)J($5ADY
z5^<D_qf{JM)@REND6SMo>A2b!c$A5wtnhMz<pnF`b1Mp|z9CD^78|lvC0R3{TP>Fx
zM-3s<-)oq&d6gt<#Zf!2StpLVanxf{Bn|WO`a&8A@`G6{UJyqkNq+vQO8Vm{jH5*y
zE#vCkggBbS(KN0+pU%@Pj>}oKCp3?%CE0F6w#$a>HE|Wx;#$!!;YX`DS_{8P@VYo|
z5W-Sz;<#Qo<9Kwhn7%QNVH;G)i?(s~iDwcX+>`=wXmNZISAj!=afIR+702i}^f<zC
z*m1<;>P!(4H0h;6c*>xV`*}2um`Iqk;<$H1mc)s}jUy}aL>wMHq@><Ul1ahNakLj9
z<sIVanCG1&m%=V0>6({!6VhF<hhR@Z*3~<XK5_Jo<CZuEiLjsGfH;cc=r5cGX*ngl
z`2UkoJ}?euk?=^zkr94tUcxN)^fpNjmbMLvW2hvD#W6gN5yD3b{+}JTZA=_v<5(BR
z`Z&hXNE~zHcs!0f;us&teWK5EE-RfNd?IH`$X$Yy<Cr9b3U|kGkMLZVrwG3{pF1_5
zb$=WW#F5jP7RQ4ke@Jj<91rL9r^hiP&#C-K9FI!!u{dVu<+Fq^cTQfyu00XQJV`QU
z;FEF8kK<)Jsz{!S<N3Vif;gUzW1%FUiQ`!zi}Ja&^PKQpI~NOoA)otV94`sajpS0{
ztMa+age;F^MP9NpKX<G1k~MLx6`r%dL8j~-!HscjieqyeTjI!F?a+B%k*wDRw+g;0
z_*xv>gv=Fxena@1f-Loxkhk*+@5b?-@b?9G#PNZU4+W{eJ&up!_&APFMDnR%u6VAN
z&qVUM;7&o7qQaMPd=+QZEbNlyxmR$v;2v%o1JkAEXV=R&P`G&aiTs;5_H)=bWO-0{
zFplrynCRe62j9o>LmUkpG<5J|96!bJUmO?X_&JVW;y4k<-*Hsil{ys1kvNXV@oOBv
z#c`P9IkPA{O+`lPxi`fhWxvPqM;w20arM!+o$?)vt7~JP_4t#7H$eW1gI8$0mOd^d
zQ#Sn%9e6~$({Y@M<D_u@@IS?UZ&W*yPMdva<2WD31=+05u^D~z<a-V8I#g=no)oM8
zmwV;_MJ{najH9B1N{%Xfh1<S^QVvQ;k~$QYcJSJqY#9e-9ToPc>2V(~w#zxF;HcJ?
zcfemI-1qJ|RKz5|>{i)PcSYESYGR~{gQ^bN4^8t5oC?())NoK!ba<&&r-4$w%0VrT
zXF(hC+LBdAu&!V|2UiQJFW6n~ffP7s<e-Ctjt&|-@Hq%N2s!XOD0I-$K`RGv(8NJ=
z2iG`g>fndnsb&t&SMc+)ze$<GUrzZrhSxf3E?PKPyCKVvI1I(ZBrl>`JGjoljSkv6
zV0fQ4tZsnX;jedag9C<j;`gbE)W1nu)lS+^g_|7}5r{?t4m1aD6@3$f)ksJv-9gwv
z!hz=?;=phab6`2(Pnd?C)nPj5IV~NfJ9Sn=%7V6oxC6%l`TX4};)uPf8Lmk9QNJX|
z)&W0;&PsW;PX*?-JXETagU$}p4l)k9IOyu2uY+4;M!GrZ<*46KynWi;K@Sn~Hfhg1
z=`Fc^q%oa(s9*8@IM)t}9dzH78sMn-X+;iF4mJ!<Gk6+9=&--MFGNlc8R%e;qx`c@
zML(zbRtH%JBOQ!#aGQg{4*271go7athB_GLV7P;Udr}uG_!+c^r5GD(?}jY#<j8h(
zzkfDlM>`nf;0_1l9reR`tb=h5Zl@P*_A&W~ljcXvsn2lhY$`|K=0l|>urIuKS}S#z
zgGmlPaqy{wyV)uSOC2m@7aUA+Fw4Pg2lqOd>fiwf)5N70jc)YuN#A`A?w2{`wHb%>
zK?e^xc#Q4unSR*8bO(<}vpEGbL~W*w9>3(yPwXw;lX_Hg*)O^oi|}jUa~#Zdu*ku)
z4jy;#gtYK!2lJ%(Q{rY%I+!osm5c1eQal!LJo)QvnhHU-P)a>RHy+V0&TnWsc-~Q)
z!;5Usp44J`%TYhc3nC=pFTs}_yiB#PQ{P|qEup`4Nf&-w%q6hg!3qbP9c*#1(!nY&
z^G!u-9k9Wx9jtM%dvF2UPb|7NL$c1ndd@gk*7O*UO%68Zd5eQ8e%;W)1+Q>|9K7Y=
zZ3nN?po2FZR4nOdM7wR$&DZI-lTvK_;1TWK;9!nu#~T7{o7x{7yzAftI<tfK9B^8>
zS-mgBI_@Lq?!irlgRor&;UfnhOTRev6wV#lZU>i=gTEd8<KS}#JGtb!Ej#$a!Iuuc
z;lgzAm4mNk!R{3!yM*r%zFUwZPp_jdaWC4(9e!7eH*deC**^L~2j4lUTc+@UB<pO<
zQpj+Q-^<>@o7LQ5esb`$gCh=(awHub68nc8{OaI0838Wv+-}T*xqXuOyXq$X66Is;
z*It$Nr>vANr_@bdZl}kk_zBUWWPkVcNe8F6UArjl;<SS^4lX$OR}|XS@t<{YPKvPX
zd9Ga9Hg}G0^q+%^4z6&Mch%l|N%SuZw%(|2O7qmi87b*1pW#rjwIpR+lyy<rMHLt2
zh`Uo2TvT*X-c@c>iD4}_6;ViiE|yBJ+RVA(S9MX%Rd-ph5=nIzHH1*2pHjCbYPxu~
zgr7<BS}tn4YB&Bu?poAyakYzHUD3NM>bq#*Vr+YiYmbI53S2bx(9A<47mZ!~;^L4C
zp9{Z>2V6{ZQRo6L`nl-uq6w8<gk0z@nz?B1qK%8|U0fqA;eOT1#kDS4RZ8(_;i9F;
z$=RgV?*HO>Ugsh`xPZzxxVX{9%`V!xXzSu87u=Bf^OkFnedm!&2E<6vRrlXCS2+&}
z4RSq(T|``Tb<xd*;lgy0bkW{L)J0-cJI96VBId#p3$_dHCvjKZqP*=;se5>oO($GD
zQ_=6aYRS_k=aga1$Voc5=;)%8lx4Crjc?3$an%-4;f~yCx)h7>5~90{-Y)vM=)uuA
zREn_*dvf%8q<gt|>+2K=cfY<azAcx&#l<cOiTT8ccJ!hFE{a@?;dHo2$@tvrBI}~q
z#Xz=pM7u#8D;mF4#Pg%t&!ziJ@~fk_xftwXr1%UaLpXZkghO2n<EZj;y$t@$zK>5c
z2q$+2-rD7=p=*tDF`Dz<GkxpEER*A0+|IgOOqQPBL3DAK@bNAt2%)KoF8(N8$TI?w
zNlxD+Y4F`Hh9CDaIfe5+z7bn;zl(eGb3K(pehApb(^b>dVJ`7OPJxRJE;hP&*u``g
zFS>Zi#S9lS8L{8R0#1jEM_oMOVxBbMF&A@O%ylu##cYu<#9X4bS{hGwNk8s_$njwu
zND_AHn&Up=ldif@nNP<qt8$-qv5+g##bP>hAN?7w7Z=aDSj5rjn0~8_x?4-Hn|NEA
ztB**Yi(mSJtFGu6YLC^u>|%wBmC}YKE|zjhx>%kcrNp69yp=??RU%pAVy%nS`CKl~
zb$Q;XOyPRrEJFQFE;hUP*u^I<wzzo3#hY{<QP?W@x{FtZye7C!u&AyY0UmEil4p&#
zg}mqDeHZTte^-z?ytVs*Y!U3phvKLdZg=q!r(TvDlSWDZr!IETS6v)%@tKRyU3}@{
zD;GPt>W4J^LacETxrC`dzJ&j4y0okQ2K~mxZqB=leVp!%*}XEzcXm!s-I(Pmk^@d5
zllw)P`gDwgV(kYPKf3tN1sg+~--`kXYx&8=&(b`0jS{w#*C)Ta_>HSRfo=&Lc5%eT
zbqQ7QsEgmZJY8IN)w2+PxH!eloZFy_KSlDFi<3f_d)&nd;eQJrXrB3pU2dK^Ul)9R
zh6+5+NY(|xvo6jFq5QlMzSHrqkpBcP=5ud6tR4`(;-YE-)e<O?P>m^>K&b>u3um%Q
z0%h{NtdMeo<rAnNq@rLY!ODUxm3#Gr&*bxaeAN@^H$L4mff@<aOyH^nY9-)Hz@I?v
z1nNkUf`q!AUN?dI3Gmf}dXl8%Y9R%!8aBvF8VcbH6pe&5&MQ#4FafZ50xfbjTQy|C
zCJ8jnmu)7bc>>q`f2CNEYPq9TLOrPPa9O=|LcO;;C#APZ;Q9n^NZ`f<yabX7v`yfq
z1WalsaB~9f63`O}C-6#zbRYpu2tN~Z?%6iMg!*<2k5B^4$_XDC*RbY@hLHr;Zp<2@
z{NBcFECK5Chzqeq*%o9$M})2zp-v)C+Oxk~d>s<#D1=#c4)^OM%3Tt8zCyY)r}aWV
zlKmUA%<Y~)j|5&#;I#yLCeSN^dlQ(NK<@<lByf8IcO=j^fm;$7o50X((Jz7i2@Fag
zoxp$uiV`XeS}K9Nnr2RH%vRWxJyfI@C$Rpo3W+u_ftTiGNirP#1a3=UZ~{*@$z&7w
z_l*DFCK)OdS#}8R6e_}Fs8|~&I6Q$7LPiRX5*#f!M({?zDl#sio;zamh~pEOkigvu
z+(VCTfr$w)WZazz@L8k!9n!4vt^_6}u+^t(Pxvwn_%@k+sg-KDNqs$S3bQH~Qg~ki
z_b0G8ffo{ZAc1KK%wyxl+Jgx^oWOM94<*ogQ<hcC;Akw&J|V)H9BN;N$wx%^sNiGF
z5;9wGj^JEDYCbMqAUWsHF!0^{1fELZX|YD*jr|#WN_s&840A`aFo9<hSd;+ya|t}?
z%RDQb$&No1KQE>3E6lLqi=2W4Rwb~S_7hl=!14rEB*5@@OB3ql`eg~UY~HY`rh@*p
zIpfbE$7*E)_f1JtvW9M%z@`K?C$Nq_@5^jVfXDg-HY9NBiEQ@W;^Xbpl(X6QcU5Ey
zeVD^2%Ipp$g$uLH<@j$);PnK~CvYJFj{h48e3-!Y1m5Hn>?nRKfwvQQCxLhAV`u#D
ziIBnfhBi~v^nL;#G|qe=$oV4wD1na?IGVuk34FrtB=8LvX#zVE_>B8ThcqkwJb|4F
zEGx|HlN#9=j?xzie3>7yuY`OpxJz(%0(<hgd+A6g`>_Zuu$$i|a3F#268N4z7Rc~h
zcn7)gH)XrFP~G_<fgd@Z9nvE=Wq*?Hvmk5yS@<u4Odd+$SK+@29u_<z*n3l!3V$SU
zjANU?=>-1d2GRm268JlTzvzmavOJC_R2)T;e}s^q6tZAb_Q3|I+bl!L8Bsnfa{4xv
z&xyonmiae<{}QO;p{j?A30&ez@leLY<pi$KVNUx?dCGnXPsKkh>48O<<P&`r{h98~
zGmQOM)<ZcD6+N}$%6s_qsK0`T?<%P^l|xFHRmnqT(ILMyFI&w+bq@_ZH1trzLrqTw
zcDUNZRUT>yujAovf2OvFQk7Li$}Ok;OxBewChK_^<X7_gB3Ua7wtyG^9w3s&c}<^?
zW&VucL!qa_KQj6yk!73YbtrG{;TjLEl4za8wH{h{SW0CNEh+Rc+`|YDtvy`l!S)dM
z(8j~{o|@>e;FQz;8$8_Tp{<9TSgJ!hMC0w#H+u+p&^)yBaBy;?j)iJig0#lvS(u?)
zk`Ou3x(B)tS4V_{?7{TZzQL_2D&(p&{+I`gV|d0-A(KSMgDbTU@R0D}dFbV#w}+&M
z_8z)==;o>T7#%!x64FtSAv!7S?4gS!xwIL~lM)`?J@gPEIpb|o-cyoqpHT{Zgx}(!
zuaN&M)z3qJk>u<bd1^;Zc_{WUP&kvrgbWf)3uZjrDkLj-o8VwU>JRZSG|#!{a{V3Y
zVU&ltGLoY`jPWqd!-F2idKl+nil<IMw|lt5!(ARGc^J=$xK?dbcXDccnF%r@69qZu
zJUAD3dunsIM--SO=PXS2)YGb*#CvI~X=bX2`-I%@;Q=8pl~1uQW)ZpnOgrs=h$G-(
zx`!Da9`i7Ze!@thUDGo?Ji_8r(o8-oLXy6coGtouL`XMaz07*t!xJ9n$x3<J!$J>F
zdYJFwDb8l)%mNR;&C8N-5%C~@#={~Hi#@#H;aPFK=jbqO{}08q#$JEvS8hh~qV#cz
zr#5Q#^d(jy&J&!c_8B6D%RQ{{aMZ)^9#(o-<zc&rk36jQu*SoC`SrWj!y6vnq^B*+
zuJf>7<QqI}^sp(f^SX!4dA`NNE5f%5zAE@yK6jgkcV+#uNA!6%<1I?0ZIrz2;T_?W
z^W2o%OelZf!v|u4Q}Cfo{fkHaj28Q`$2+mu=iw9XMILs@8vnw>mmWUz@VN(`KzE9e
z>ycXu&3+}xT^@FGF7_3FElH9+9<G+Cw%mMj<QotBJ^bk5C#m{dx+3>F;Roo?l?&rd
z)YN=0k{<+fXVM!O7}mot9)9HvdSE+wiNfogL!LVS9+=!{(=}@UJnSKQ#?NjZ5jn{p
z9*%jakVM5K{`45`9_Kw=U<*B*;8aS3|CWkQ3jX8an@w4sp@`ecr~cTKJuTfiBY2kX
zgv>eFS__)0J@8)-|8c`lqHGcu=^_5i6%QqnVAds`1w@lV4qC}1Jbz}JKT}#rDbb;P
zE-y&-74MvqE|<jMvudj+FQ3FS(xXaA)vu~aR7>L7)BegyR7rvgJb3xXtm;YBNTOyE
z4=v1IIPJeGiCWx&lWO_YPNGf{*9d2_t`MJKy(F&A%j*kiAlNX8g1o#@5{-qk{VeVm
zUMPsXPLm{>3U8K|G*5yjdg^m|5_z;pqNU_gLT|Y)i8e_*oy5W<u215IB!(w3B8eN5
zXiK#u;z`_;#LY>BlZYhIE{Q-AdJ?>PVSwW4r~O(IKXSzhh6K5XP{J&dEoc2k644}L
zNtj9Ss)+};Uv5XdisJ>Il~h|6xs!yOM4u%3CXwKzB+)*J4oM^_tX%l;QU6EP)pVRX
z?Z3P!d)4M_$0Rx>!HYER0G(xCx(Id^q-HlE-IM5%m-H0UOR%@#f)`5Ml2oUveo6FC
zs(prhKoUhs+)Cp~q{J}>CNU_9;v~3sIQ|?rdQ>`z=9{ybBtE&=k4YXpiQh)I;Y|56
z!;%;x`c!_sNoJ_nNuBdkjk(kuNhhgXczY6eBr%GmT3~b%W0LrPOkD@G)WqLas`Mg=
zG~eTbbWuS>pQs=p+c%rtWa|U=xqwtfiWL<s2ndQOC{jcb!2(F{HtdRuq9As$E1(qV
zd^b1d|8Y*vJ$LT><~Mzk%_fugi<~8nmAcV~5k9AnxSSG4`7qjtyL}kv!x$fK_Tg3^
zZew>mQ@BOQreOIQWZiF9?Z*0WhX|)6XWyOTcL^C}OOE&99v>d^;b9-{WqEv<?8AdT
z+)vNNWfOgv<iiB^NUgF5ge*Kckyoue$~5WNCR2QvswD1(4V#EI(|nkrT0i2$bRQlS
ze@y5mbecjFd8Wj52a0F;@T3pr{ixu_Y#-+M@EHfN4|9E(=ffr+Hv90D5A%I^*@xvm
zJk7fJu-J#^<zayj&-$>C)lnaDEoBEir-CgKc3DwiXT9LVi#{yzVX4nK$-bnh6$gsl
z6_V4R1!MJ>aXhRjkaO0o@S*RD!p$q3A1Ny}eO3uq3)cwO3fBqO3pWTia%fd+#)Pl<
z@Tw0VsHm@Tmg%aAzl>fNXYdV?Ey6d2Z~5@H7yFLLyFR?<DesH$isC~bw)*gqJhQ-`
zs74<v$SQB+=q)b$RQSM(0{Q1YeBr~dKK$mx4j*>19ent~hcA8D<-^xLe8VNWxNLZ{
zvX2fGf8_(OjUTG&1i$rx$m{m`Ey})QN3?LRnR)&EBgbT|vY({v)=**8&m3A+%SQZL
z{EN@I(kB1ihd)&2LtOuT_{)dAKJ4RMtJaKzc8^9TNvmpQfBWzcE7b}Ixn@=?<JRT-
zIZdMZ140sBb@PIOtM0!(99F`qzZSC%kN9xZYoB903wZp54<|i-%7-)jPWzuJEGJ|$
zQmN=iB|kd*aj74b{W!~y7Ji)XM-@M+`cd1DI)3Ljbu~X~`ccb|>Izb+Az~jY-gn5^
z_?;I~{M}dAkF)(~;K#Xs)bl%+ZT0=m&vqWXHa^GitjXlm8~UBgY#z-eHWD`WqlpO3
znu?s~N0Fx#`_atf5aET#wFipnq@^FNn4RCbz-HRkezfzWy&r9uiyzOocJk##KJfx2
z>>%VK!)v??)fyxh`9Y)&FJn6T(aG;z3G=u_Zb`cMahV@UKT>{N?nj9qK|ex%T;WGo
zI`pH5A6NQul^@;w=<dg$s%4wuEdE#fVWVtbYowZ&k=$CXjATcPvYvkQ_QU5#FF&rO
zTWy|Cq=DZL;>H8T0j1^jJiW1<!+u2ki1}gqonHsmzr}426i59qWX~iti~EuA!;%4&
zFt06F6gY03+$C0PUY7PF<43`d{_ICTa(?vnqn~0+{piDHztj1lv2;a&*!n>6k@L#(
z60h^4%nt@x5#krEoYiuG9|PHpehk&9xZaO>KNk;@H^$a&SvFX$!6d`{81BaniejmF
zo%4Y({&?ZJgT*)bG18A8g7`6rQGSf}<FNo{1Te;roBb#kK=}Y}VNLz`+K+GixXq8-
z{rJ?6&-}Q<kFkDdx6cp!&i%$axuW_p$B(=GxSKue$9O*``Y}nd_XzJ7-s{JGB22}5
zj}ycnI8B)>KGlzhL>}ajJ}vfP@kd!yKc;#5BYsR5=e<X|o#E+Eh|Cl|&YHG$VtLH+
z<4K9GGM5d=aqGtmemv#Jd_NX@9-ihLY1epxAJ0f}{XZ+d(6f0?WD!$o^9Q$HFDkp`
zeys50CBJhwc!_7f)Q@H2FALo=tn_1*A6xv+jx?)1%UAta<HuS**7>pCkIkOG!H<o8
zZ1QU4mdeFfWaIMJJp0%Ec;htvO;3NzkGK7J$B%dYc+ZdbPqX=7ThY~rer)yQBh@0C
z?6b}9?1S{N@Dm~TAD~X$?#Jgc`%3tQA3Inh*>H~??rZTSgP)h~@;kd#aLWR6?gGJ4
z#P<2tkMI20>&HGnzGv0^_{EQ3{rFL?b_?rXmp}Jp5w}P9Nx`3Kw!+!9;5R>h_u~&g
z{*>-+m(i(4p0Dt;sDEjolI-CMaJZP84E*iKKYkqZ<G3ID{W##qAwT}*Y&u*_vx9yd
zUQysd&xbktJe?a9FqXL=^@GS<PN-_9{LTipG(O3R8FO-E7H4oCt;?Mma4bnG1W+-6
zXaGh4l>(?7z{LS{4B)H)sswOe07U`k?~JMe)D7V50ICI0T}q7rYKhbo@<|o`A6;9V
z_H_c7_?+{keZ2tc2XJnHm%BJev3wMt|F$#`-%#^%+B6bx5^(;WYaDR?80D)0)SCvl
z>8SJIH~+gY4xm{89b}0Bng@8|a0<p3#Q1MoivZ47uw?)}$~pfD^38=-0koFLU>gxe
z(YT#>d*KBE@KI+P@VGF5izH6eU)Y@jxFmq?0bC=oa{!kGaJl%U!Y(Z8kj^s(G$~Q=
zssOGI;EDjcDoD3isz&t8N7K7WByS(dyE*m<pl1L<PrvVs;$AF_g1v=)p)Y_XDi8n6
z4FsIOt@&Rq{e%=74j>}JKg%e_0x$!(D}cKLhzF1epkDy_0IUG)0J2;;tLKveq}Y<x
z{~LrHTIm2X8Wk6;ES!J1m}4dvKxqJd0^qi0oDqwfIHa$VlavK;T>!%axFLW-0R00P
z62Q;^1_W^AXs-Lp!k_>KieE3JxTJmAV2=-6Ss13_!4cA=W*PC5K>o%6Mg*Lfg&Wq)
z-&>>XCa&-S+$v?Ha8v-JMQAfd<YpmX7QW5XnecXx-yt$KfIB@iCL9;Qcy<&201Dt9
z4)Tkf1+YQ2{M{=H_i~h8*6lvFUZs+}-ld%ozymC20FwfEa%JJe>iOxc@{;b819(t`
ze2U0aW+C#haGDqUh)C52c$CwvTDd*34vqSCm>Iz10bCWt)j>QFz^ni^2C#`)1TZ^*
zX9HLmaGr0U6Tp0txdF@*c`AT6R~8txQuwsQX9D;kQ@TLNDDvk5SQNmr0A3DYaRASA
z=B_Gy+o+7OF9h&n055R>{9Vl8k^sI~Sy(DRzpX5gACu?h0jvmMbpUGuSjkDWs&JrD
z88c<>s{-h@${}l&s(0hE^;{?_m#qsRw!4^QLjcUn&2Do5uW)$@qEZmA2Jl({KL)Tn
zfY$?fBY;mim;>0tN(JzK03QVKbuspi$-l+f-4<^LFs^2P`GVX#0lXUk36J+gI=97#
z0c;K6qX0hUsxqaJnq8=Hi(^beoOX8EC$iiYKysC%Y!Be`0KQ@t0o>8C&ldsg3SjKb
z`5gi5l;x_YI(*40%q;LAcWlPwzhPYh_&xwCJnoxSp#GighpsC8zy<TK;=APkrvQEq
z;6MNe1NbF?Ujx`1z&>_*03*jZ1^YuzeiypRpYrpUa8CeqPBR{V2T<<j{Qdy`Q52Pn
zs~5AJM+bB}6u`d$oCx4#0EfBM+?+oWfE(4OEsh3oEP&(6B0a0H;OsJ{CEm8W=u`k_
z1aW52X~vT3#jH!Ypp&q?6jq9Qg`iVZ*1B>KX9ZCdL~#&Rf~Xoq?I7v|QB4N4tPw=@
zpwo=>eEU;QnQI1dQT5_lL9`m@RJLvqX9sa^5DkM))71;2eh}vbF{EQ323hQ@I`(N0
z#9ue(d9bLBf@mDXd9+cmNf1p{Fk1z)&MtEc%p98qfgmnqc0n``qD2sGf@mAW`9ZV{
zqO~f;hH4eWr8AxO<WOO-#$UxOYC9TKFTOxg99r#z{|&GXL2Mb5r^2y!aS$DY=n}+b
zL39e@k|5Y1mj=-}2o5T?553VXowLhmPkwn2R|L^Dh!T~VLxSR!;*Z_z82nt$Y2I!@
zbPr;25YGp3O%OeTcr=K|g6J7UuOJ={;<;6YYlG+=L^_BJFMa29@Cjo=e-Hr?>cJpF
z9uJE|gi)a(+*P^E4B}R8R2~l^A<+`rLi$OHq=IliA5SIABocE$lm^i!h`vD#58?)i
z{e%OB`5?-IxK6wv93bo;#Pn4Ky5cdYYP0Jl4hmv0dtZF0@P9cD3*z3EWv=~=iW)5(
z5yVX*BZV{=CGwtXG)Da9AZ`&^yQne^ZVTde4ofNHf*2pfSaC+(DRP(aZsCkSoei|_
z5ud;^h)}st<bKcQfgmOZF-gHG!pTBfJ}5HtvTo#4#UB#RADriI+tY&BxT^37TO-Kr
zg-dp>DiCLgKh9;}O)Grwui{xjJQ)OwG*1SzIloFv=18IQxeD$sS4@$?r-GQTgyc_)
zJR@8nd{(%S!%2iTi-O4CktcZ}h!=x+H;DJxaZNhB#C{KAeGp3&q_R|GSr9LaEElfu
zVpoc+3Sza$8sS<mmYWl9V3mV-OUfqUt6uEpAYSn}uajR3;&lbz;M5D^%^<kB7WeXU
zchz$@dt`aumd!hyu-YT*eb2+EL3|+oVGvt`_$Y{vgV^T9eiHm|&o_GbV^x7clFx$J
zPMy;^h_8b9TH+4jmqG0G(sJWX8t+nY+`*!6M7|S#D|8LM7pEm{b_elO5J$o|8ph8-
z{1W6dy~v00YY@K$@k0ndhVXk3e{c$fFeHROx$bdc388ZcdxF@@MK6Q~A?yp{?;t9K
zP%(smg4oaHI)ri|9N=>IW4VJt911#@yL_kY-yl-&bR$11<*@Kb@c*x4k4ZTm#0e2v
zo($rY_!%L`2@iWu5j~ez@B%%aePUIiQpkBNv2qA!Nv~7KF|HCqjSy-|sVb}{tR4al
z=!X~8wL+*Xk@mGk>V)7vB}L`z5cdT5FW>qh?pokn+n*ak!w}ksaDk#4h0r8~rXlp$
zQ`9(w`m3Gi*3Jt#b?4!hq$q^q5SoPmC28sTY%bD5cz%fgBs%_iv<jiM#5SH~Tak7l
zTqOS;6zu55UMO;r@M0nJ?IgmFZqwnVA#@4B7t;G*AzU6pFU2ydB!sKQuMl<(!LKZ?
z4B;xzhL1sZ6YuUR*NF58p{J*?`t){f2)(6Tvdeijz#l>&gkT7v5c-DDkArGXhj0iP
zkw^$p5kqJRV?r~8xJW|CR9p(|5RxIJq@;yhA{fPk3u#tLPFO0W-baM7`H*w6C=1~_
zDef{}5FaS)FB}lU|9oCAWss2eLqixA;!6tH7{c%nZV2JQ5T>x#Le5*3BSN?-^xtm$
zoL?hD7!|_k5cqf-gJakxA>19pI2qp}92>%|BDV=|7t+-oA_KTru&3N5a%)$N7r8%#
z2_f9$#ojA&pYXxMMLg)_0WWr92$MWMS%iM3hVW1b&$D<M5)X$kBZQeDOjD4r6g?8c
zbn!<$<uMUl+W7Gho(SRT5S|HPR>*k_n8&;jo)n)goFkkoq&L^*DFx?yQ42iJ3qyET
zoMue&oD9epg|OJ;)L#tYr4ZK0@~^)6B_c0}K)zJCEQAxsix^~%%N4sKgq0#xR)w%y
z{Ga1R46YSl=f$oUc{EnGN!|Tc2ych5IfPf#V%!(~Rj+ej3*mK%Z+NY`MdVE(+m`pk
z-w9zS+h=}<cSCqDg!e=EK*3LhABOO;$W|fEKH`kfV=CnQs_8cApL(&MiEI~s9>NzQ
zJG@vX{4#`HA$%3W*CBi_oj1nmipMt!ek=S=I9M6cV0Q>Vg%AlN%Jn~lUo>rtx&C`I
z`X9E5IRD7|J%m4${7)f0|HZR_$M^Cq;PJmj%2pTl^Aw;qIT%9KFsg-dD1?7QIPA6C
zagie-92Gg{=^Xhd#7_!O3C{>Sv+T?;%7sxrj0$0#C52+eFe-&nIgBQi%NXSGT0DPh
zmh;UH9#v#E*xg1ljQR@J2%}~gwZf>aU>zZQnOVE3>V|Q)L<Z}Hov#m&oD)U^iRTKN
z3LA#e$g^zBGI)IOc;^EI=Y>(^DV&(i!ax|!!)Osk&oFw0alRMZIgFNJv<jnj*g500
z3!{A)ZNwRD8%B@GXOLXrDHn-!2;)Lep~1x-?-)iWCAq{?5bkzq7+u1+OiDN5<wBOT
zB#bM>y9%!qUKPgGazcaSk2PfOJi3Q*jbeKUZ);jcv45qKYZVL$dxzl@VU%AaAPfrm
zofPU}@w$~78)3x4NQaRL!(@-Vl(WM~hOu>gJ|0FQjK<aTR+t}TEMXLp_kU7MQm>eI
zgve)gLN<(C7=4wN+nG|VHak}uMjwv4*|}z`i$YTiOnbxO;<7NV3u9gwPlZtkqkkB;
zgmEkTH;jQ{+!)3P<~zIF^<fMNV`vz!)F>XrtR*)3+xcoUk6~d9m%=Y5yUGm;^0Ur2
ziBKFPGEz7yjL{;r=XaBDW|NM|^J~<^+rqd#jA>y!B7-}^m>kA~VT=vq&M@whNN*Fv
zxLbUjaJ=vy;k`oI+$VCsaDwmwVP<Y&k_c^vuXaA-JSB{&Qux_u2KhDThZKA`jIioB
zontbL$HRC+`eVYGD)tQF`_-Cl&^N4SDQb2Yb6ACW9iCK>4(YZ_Bg|EhwPr^1!+1K3
z&%)Rq#xr3o2;-eF-VNi~FcyaKdKhnn@to{8v)RK~6vkq<Oi9V}VZ0E=i(%(0-VE}1
zDU4NNtPW#I7)!%gCbQ*2#=b1lLZ9khA-*yUevsWwyC#hF64wgX2^q!Dd~Xon=qZ~-
z#;q>A8g@Q3|C-9idbyqM;+8Ppl<t0*n||I3<838$8{xe$-VfuWFg_0B16h7Z41=F^
zcfak<W@IXQW0TT3k59tbCd*HSRQPT2&%^j4j6bF92xDg$Ux)FHf^28nd?~&wjIY8t
zGNv&V7U0`3z6;|gF7Jx{K8zp3*d4|XYD{Lztl4X{bW8h-%zh8!51s|W_)QgY&4@hc
zw(c`Ie#e}n_b(am5$+Z4qg#=Gg!_d|av+R@9zPVuzaBr#DL=;fSoyIqjx)P<ogz`3
z2;(HjUIb4>aLQdeA_zusMg(U@P%eV<5%i3pR|FLzs2D-Z2wFu@DdMb|XGc&^q;dpj
zMNmb&s<3th)gq`aUL%59A~l6f$c>eV{5eoZN?lLCmR|vgfG>fbC*_<78i<@LY#c#D
z5#CF06v11y{`;lSL}F7ReHMunN6<_J5ws9#E@Zy$P5bi|+&Z91>j>IJaA^cxq_h=w
z5VjMxkKh6kre)bKj9}*WJ{L*3ID(E5bQ13@yu`B{Ti)4!qgVan%Obd(m5QK81SN{S
zitSmy_zKUmYXnz{v+zv9<LZdBF<rL^U)6N#$YvojYd4m`YrV9+=~k(HQv9AhZ9)-*
z6?`OuNCeRc9*kg01V#k02yTer#t6&^;t>ppU|<A^2&@RQ5#*H0jvyn#Op_6$#M44|
z{~WgyOQn=~mVF}V>+yaO<i#KH|MxrVx(EtV`g=Ak=k*ci2jHLx21mf|V0L4x=1VJ<
z4)JV;Mlei#xX^8l5fR+PU<9{BFfxJ{%QqY2*^i1~w8yXfu^fNB(&w#G_!8Xs2ySEA
z3Eggw;Eo8!O20FLyF^^)cSkTzLH?q2+k9ue;(H>vSK@sUOcc4FEjggcga{ruEv@?s
z+oT94OJs8ToEpKpdd}Z2(;|2%f}%<#4@aCg@~H6DU?Mj#Bu<a;jW9f>gp2nU&)`TC
zXBWG@JS&1HIW{8L6~XKX=0xzB4CY2KFM>@GY>wcm2<Aud0^3B@d^&<>)jq89GcsNf
zabBZic03kJc`kxQB8!F8pJ!j3<&4Icq`Vx#@(7khuvEc{<x7@%mTtlLdgF=+R<aDA
zl&)fB6}#HAStGJm=-RK3V1t4ih5UPkdA$<Bs|vmq!D}3l8*)5ekDz@azqGP5o8E|E
z3zs9U9&bkeyN~g91n)%fZUpZ|@R17nzMOCyG$#2#oa951tr~0$eyrdpUhK9AKJ~a;
z!tD`!9>EuE*g#SL{Y7W(E!q*m&IoV0^t*9no-ajy6~WgmOccGM_$GpHBRI}Jjevj8
zeHX#sw2a{U2!4oQe}!g0MzA-6eG%-A;HL<FR$jkF@Vm$_!e52%2>e6*FX5kFP4_71
z7LRj;wcx=f+AsZ31ph{GAcBJma$5<;azlW_5gbutGWVm3qQ0$W8Sz*IHKm;7;vYeW
zC@zfRj3~~GqEQr$qbL_e`6%i|Q9p_bQKyg2ilRys6~!wFDOQf+&r{9-t{O$PDC&56
z^(bnI*AUk9^e2Zog|8jO6y5qDuN&pJ^Bn)&euv28;DSCp&XL$ac&@Oakge1til$Mt
zh~j)H=S7`q1)_q*Li%aO^62(db1C%c`fnLUThFGINNZu6=zl9}J1@4q$OXcV+zTj*
zi)C|76dlz#ouarzu|q25JBySEnbD<DbP>PIQ!bC<wgyh)UlB!DiC0F^P2?)!)t;q$
z@2-0kU)Fb)4$j{mQSi-uzTL^-wNV6Q**glKh(C&F+}++P{r9eMP<kkeu;=qs)n?JC
zbLuyQB(W&WDB=p{`#Hbmm!9lrN0E%;Z~{jXNJWv3Vz7xJCNfcEqxjjtF9vc^ltyup
zfr}0FiK1^5Tch|Wihfb#qnIDX(@~T~aa|O5MsZgZg(&(*aYGb0Mlm3Yfl&;N@`*KE
zAH^X0k77vFS(e-HE#kr35q0(!@o+hJ6}x*tp5pK*s8An4<0x)rV@5GDicwLFVI8B+
zo5J<V6_1WOTX688!y)o^OVqh@a%RDCa(fhaM4f-+BYTU!_@s2f>cUu#@Im>X3VGt)
zQ9jm%iBU|7Vtf?$MDaireDV3-sPojp$Gda)(^V8R=H$3R0g=jtD2Vm0&-0z)@&lVp
zj^e>6o{WOdr$jL|>b(6uOIbXmVmuthyQ>Q<$utEYiDG&bkBZNTVy4Jr!nalU$D?>c
z!O;pbVS~Lz4R<-uGt7=+P84%J<EPXD^AucoGDpj=R~Md%VnGz^qF5irvr#OJVp$X~
zNAX+~cb{4Od=xK4ou>sBDeYq6IfeX-8Z&(Nd1(|cMX^M|{i~g)ELbn<4ZiHNJc<=j
ztcqfF6b}t=%GO>P#gAQ_SNLhLMjd*nM}95mpn8q`lOFjEQEZIj?I_-fVp9~Gqj)2V
zEwXtfidUm}P33=XPtkp<@9R-Kzqe@5wNBqn-cv*mmG%_98O2*{+i3+JD|_YNjpDs1
zK8!k9zpvypW;y=~=Rb&oIIX9XHDf=H;u9`$2Fe-O7R9Ggd>6&{Y=J1YYgBv{#ph~}
zcBhJVvJ=I32s7==*id^<7JV7TE)MCQ&Rgm=2j{=$DL}ovdv%|0Wm#*Dvo*vIY>g;>
zXQ`sjYskAfccS<uil3t3l}Tq^UHlq#&MCiXjJ4b5Y@brRr-(!APZm3hV^JKBVowx%
zRjDIUXCocHP0ZTui{fvlmA+qiD2f9j2Zgj@v;XVy!>r4mB95r1_7)wLxNJ{R$2El$
zT=NZ-^v<7*;uNRn8O1!|avm{?B5PFMKm`Lu28s<-G*HPv9Rqa@XF60iP~AWc17{hi
zVxX!4yLY~tkmTx%%aUsfx2-8~x3u|d3N;PXGMpU-Y72QqM9#XOZJ?fk#s-=gsBhpL
z1LqoOXrO@s4tRIW^Q1rYM2<N&GWc3VzQdY6FAVL>U{k}H*XQ~3=NZn*;4F-bDsvn*
zGXMkU8)#`bCzR#}S}@o%&%Z6+h;bJn=gs<723j+ffeQ?@F`PNh%Z#=L9@kRCx3=3E
zn5H-Ax%Em10~fO58ju{BBpmP^4RkUv$G}_zml)`5;3fkj4P0uVi-CRy@&+z5xRElt
z8R*VNHoz>p8n{yA3WNJl<wq<mtle95m4OwfiVhFT^A-N94X}0`3D+3tVIXF}G|<yP
zF9W>|_}CY`|D%d?ty{OoSxNi~hJ*oOP{=4YOISSODNzH4IFr*L?&*CEBn(&z+6FS7
zo-~jWPYYk*#4L2lda*f?Qeht^KjADpY+laUG6UBc7-V3ufr8;Yo;1+F^#=O$402t*
z_OQ+a3>@5E$}M!bF#@}Z2RE7+VqmEJj4+&4dYA$3lrmi7ZR#(%8w}iN;Nvv~?ny=D
z&LlstDKOJf94!X!F>tSeG3;~$<J9%H7`WBIT?X!!x7!Tdp~nBdV#)2~!#YoX%-OqU
ztjd2UYu&z#UC^~xo`aU<VFz(Ijo0X6z3ww`zk#U+9x^b&zymDRwo>jL!F{188klV0
zK?9Qv=if1&u!u~;_UBNUBLAn>6dvZFGBA_Fj6=@AbOVp67>~+;qn%T){#vI`XQ;q$
zjC98869#4(c+$XZR%Audg)*48qKMqhf`yzX51S3VV&EwQ^9?+0;28reSsnum3_Qy&
zVBHNYH1M2(MFtid&Q&x^$b%l9=fE@YqJftT{P|faOTu#~8{y9j%a{v`;WXNi&dUtE
zY+$*H{d2|q3X$mA!mVoyL^kPa18WRyFtAZwu-3qO!#Ty!)jH0Xhn)Y&-2FEy>R0V1
z)pV+U{k>}7H5wb(uIjvQ;2i_+8hFFN7AbEUc+0?@8iZ}Sz}lC4TLs`2K<^oNpJRj5
z%D@K(K9s(d)jZP~=acsp{qaEVBRS#xWf``ymG(Ie_^HHi>K9L2TL{!E{oKG82EH}$
zoq-*k)DyaWX<(Ouo#Jj=eWfAsjS_yXm0^a8<i>t);0FV{*;xae@k8-P*)U%Qf07@U
z|7zejo{3`kG=|>|{9#~93{zwHlM5Z^T@2|M_88d9<uQh)G3+z&H`n19D#h@Rf&B(f
z7&vL*0H>0HV+M{JIHXc>_{}KSjJ5mMz+ovzghz#(o{Zv!1pi57NAt?zlz}s1=vS_|
zTuc{BG4Kyxw#mUWOWdlJk2y_IA?7U0Oj|jIvtp<nL!B6^#K5sZvAWV$6;_KmW0hi!
z7-~vk+tw19P_7v#b=?@wR<Lml^<t<W!#Oc<b>)0v@9?0{2C@H^lyha-P}oSwbJ@)U
z8}m3XhN2ic$8c#3#W6ICp=AuMVn7VdW!XYV&+Y})`3j!1C&z2-)-kk+IqS?tF|>`L
zT?};i{7p?6>z1Ltj4z0xgUE$KR*G$Mam=|g>BvlNr|z8;b%}7&-l8rsToyym7<$EU
zc?=~nToFUpn6u{+OTvW2D`U7y?Rj+!Ji*Zk*ApU-ZZUNC^14Q(hw$@#Mc2mAJBFke
z>r(;D82nNKF$7}>d9l$L!ZAb?tocuxo>@Vn5kpMkVl5_d&pyEh7q>lSUAbl)Cmh3>
z7_u?k#cquu7ei?bH?p~!bm$X9-xvnPFqq>fhI|Zc=j%0E%G5;H#lQ<uX8PLNLP2i(
z$1p%-pwJzSY!G(DkQg{ThDjeP<a3zrWEmdA4N~ZegJcA=h+$+5qgad>Zc$Y8RMXKM
zPUVWns9D^hd#j>u^V0H`6g}Lo;2pxT!aIc=-s55zAHxGNOjHH$iQ)bj+7E0}=Q7-@
z5prJ){hK&z<LqAf2{G=;<D4wG^i7I6JF`uW;mfs!y_0eeYG|=iyaatHhKFNV62sCM
zrp53`3{S`Kj0~p7Fe8SUF+3W>W1Rb+m2&dZ8?P1~kKu_J_+axqCahdCi+RPI%LZ<a
z^kfW2TbGe=Lz_7<%vDiYjHLtfPbtZKA=A=^%kP317PC8Ics7QGoM<uZUt6fUuE6W$
zMdBQRR9=YT#TZ_aH|B_S1r8ft6D~fZnDcR23@^v<dJJ#GusntpF|6Z|j$tK>-Ow2f
zt7BLd1J9w2>lYK(aLKYuc&rr}H7dVBo;Sv@Ddt?RGxsjp(#@*WYl?b>-g@R=6(^xj
z_Vtz+-c$>G7{go4Vt4NC7~bI=H%fUm_%3Jegl_MtG5eo#ejKrh-jCq}x#jN;I@ub-
zM=|F##AU6NKjj#uwS^ZC<9p>li(z{VEliwm;`123h@pasiY9i%urr3=xHz*<W7rkL
z?ihZOpRZ#0CWdd7_1El|s?OCrm$mO=_#uWLxg@exx0Uu@S0M7#|Mjy4j)Z>e3O}pj
ztOC!rzr>u2kYBZak_4s|{$NYS@Gl2a41aO)r;`{CaHSpEd2bAVt55f-aq{yD6#tRJ
z%h&DPDKwlPy{<52UEyF1y!<{SJpbadBOEF*oQ&a=n&=ou!WqTKW6u7KEE4C!35|R%
zK4+L%xURr?T2ACl;ZMEt++?r3$ro}um#<Y;$wXxn=a^_<;w%%~?z@JGnkK54sA{5`
ziRz|vHO`X-o1MS1nQCy&d@U2TP1H4Uw&@ID{wgHaF`Y59WnF<CUC%^)1^ELf`)Mhw
z_WQcRxh5K#C^AuOI(^s3bbf0$F`a&IY&xBOYF&Zt(A30v3X*d-Irb@=x0y0x1!1DO
zI9r&RwlvYogwKTEL~9dmOk8B*VrAXd#04fg&=sp-I_CwJoUVxcY0vRoe|_OX(;41<
z`{z5F=w#vw6J2F_iHXi8E;XIsn@regy>p$@#l&SME?3i)Fvshinac)=tarA!ywb!~
zCVH6YY2s>?znd&=T?=(LagFJGF@a6NUp;IVy5*0ZUM5(cYfbbvofUwb2He;`U?OND
z%^Ni)LMFl{;_?|W!Dfk?FuVq7-@feNfF`_K8#7_5@bt_}se}p3ge@g$I=53;ca8_P
ze2STB&$O(G91CgUIunKUg;LX5m-?x9`Y2&vR<mIl9dh2~70Vy&_pUD#O!PM~fNno4
zWnOHYfok(XCaxD@Em)l=)NVsf3^Vaq95dn=ZsG=xv^c87aifV5CRUnQW#T3iBTYPF
zV!DY@CPteWXYvOo#?Tu}V&V?dx!HA#@HP{-imY1i?BdJAD0A+2jWuzXbn-h*?CRr)
zcYDf#j=0Cfy(aFiQ1YO}`%FAwVxsu{!U-n6>zC)<vk|Z6YUy#8Nzx~C)G0W{#8eXx
znRr<GG!v5>I}YDpUm!BOX^rtHD{JCu6VI5KVPd8%=bCuj#1rDPO;pI|XPM3(#Xqbs
zJgH3ibPY3|!x4DAh^`K;FU&LXl!^IDGP6(q*t*6wJ2{Q8z{ImAUNG?@XS8A|E;8|)
zi7kEdx9HX%T`e~8ycgR*&-T2;9yGDc#1iREPdLx>yzJSm5LwQ-zrktMcoe*UxZ1=T
z6F-~yg?(*e9am8kJ58)NvBAV!Cf+u&(ZnVbubX(oMAHq0%_d$k@hTUVbvagq2kY2*
zL*X^fsSO2+TTHxZg25M$7cq(jrpPEJe8<H5CO$Cnu8H^9`>*vGlFtV=6mC}eKU9)0
zOl*~Nruv9$h{rz>*=FKXk<UDRJI?|hkLUCB$s&Ep;i3BeVB#wiUz_+=1B0>b!Ecmx
zc0++d9^aYxUdrZ2onHRY#BLMp4z|)ya&o1{#;@d@#f&oXyNN$c{B7bN6Mu3Uk=b71
z9^r%yg&Wn*bh6LHtPO=9^7;LWI%MKskpn8yK_PpVSsylW#KftAjd?IQ_ju9E8w$r|
ze9FWbac6j(FmX}}`CH23%s472ileBUNclKeJ9?l^#W*TSB(E&OeY2~^Q7w*C9O*c!
z$5A7W9&z-Hqh=hn;%FX6i#Te>Q74XuaWqn@x^bK%a<;IZu)dI<^O~Uz6g*eBeM+Hm
zoPS`UIF4p<a2PbDhvP-(DVBq?DDKRxEt+5S0O>n66x^HJRL+m%;y60S(Na;Zgw$J$
zv=O!ywu_^^7kfb*9Xx)a$VGAdt%e%Atf*5Qm&VaW`XzC67GdH0X|h}vM|UZg3rmDo
z2)hce6ka7{Nv@8go5yE2c6#TUxbxf{7nxphTpLF;4kM1<vI)cyjKdelAPpzK#I^nM
zA(4pZCmct8H730kohXXMVJgZJ#)XMEIGoseJB}B*1J#Zr>3KMHtSG|)z|}a88{){t
zQL3ncZ2wN^6GuLdvN-z2(T{m4iY?=gmh0l&Hrc5Nk3t;%z3RA&3H$MSmOqZcaSVxL
zm@J11xdd^-G8N0i-PhRyH^wnSQTN7iQye4XxIK<Lq>PH=W)2DQ(ZVr8E||B9+$L<=
z#3>2OOdK1>opFqdV|*NU#hvNN<?C*lxh+6+8{{61t124{oJ9AD-yg?>I39>&VjPpD
z&|#B}g-Pt4vOK346Y_X4jwy;IpDOZD91n|36FwrGE~L$)B3yH3#_@O@7bMUjfhXda
z702#4ev0GCIA+K3Y8<b{F(;0>D(%a{d2u`!$D%l%ier8peV%sK<fr3!MzITo&kDI-
zEfg7}A-Xt@=i^us$I>`nkj{iJ#qpvFbHT;}XAsNAx-U~KIa}tcjgGin%8EEvimZxb
zwdaBTyT;>d<5(xY-cvTjvC-q3;@B+yim)i}oP}SH<Bd3W#IZAuEpfaV$A@ujjpMC2
z-j3rvS-zuQqcO|Ij(%5-&r)&KdOwbj=5_dhl{(qa*jV@|j*pe(vp7Ccy|%^iY1~;D
z-Rcb7ShypfXUkC89>?c#eBs493+YCuF~5xCn>fCWV^<ts#qqTqQs<+vJUdU{SYYz+
z;?9-E4~qIe4tJgZ(X)JhW8vpGeu?9(1ga$PEA=>zvKDdt?%Dhq#~<RHbaeh#9D5Yp
z8^=BsiQ=mp3xCJa>#@Q=S_Zii?vLYu#}A4eisN5TIV^HS*h;7S<8&3r83||DpHPFG
zjH9Av$C(L~OQ2!`l@iW0DKBKRR7g0hD-T|Hux%?V$RWft_!-mtR862-0!0ZFCr~|s
z8VQ`8Ks}|MalEKz0<{vToj@Hab%p!;IStM%{3=rY1kOpIQ38z<Xdr`gy&PG{h92ih
zpJiy0KvUXx!gh_r^AcF3VN=pC&!RR<pk)HB5<mjY6KJ8dymB}{0gh*SWBD0uoj{ue
z%1$^d9+#T73A9U~y^J{+m<wHT72*)OFoBB_cqD=830#~&#{>!q^iQBu0+%HC-7AC>
z=$yc%33N^1%7inD4s=A91TK@e%T=8#5-1U&XEqvJn-^VIC2(~DLFwHRV4Li0jDSdY
z;WY{L5a}uGC8XK4BE1vvd5T};S2c(`@K~=%0?`Dr3FMT8kw83wgm_G73QNlJRswbc
z=>#$fBop9CljWp`R03SkoXdud1zt)~bX%r0fj$~P*Qt(u<>zB{Xg?`=VVP{0WVOyg
z0}>dRz-<ZKp1}193`$@`0yiZvIDsJv+^D9b@z4Z@B``eUT=%kURBn)eHY^VYd9A*_
zF-9gZDuJ65xFvznG8iM|pyKoM#OcS2ZcTtAu=b|Hz!OCrFkGMSNMLLNQxce}?Cwlp
zTms`0xGUjY%-=0!zmwmi!gJix)xE0DeZu>N6NC>4CkiJCCkr1GvZ(Blhm;W=PD|in
z=^yjLQuR81tmx4M9!p>u+c|;z`{ZXNFh7B(6PTI6<6Qp}n3cfX1m-E>lfv0@$ljUb
zmRTomwhWaSj~1Td$lv6Qa~AuV1fEae1yx~z@Yw_wdad-F$f5)mdkRn7FDCGkf=kqN
zbi#xBQi(jxF}OT|6$yNn!1e@ICa@}jcM^D42CEZTm%#djb3MOCxHjQjy0a-ZB(O1o
zx4gVIB~V_ME_Ap#fmb~JRgu>cc->RpNMMWjo1U^!^ZjiF+1KwS!14KE0$US!U*ZRx
zeVYnA==`GuK9=~Y@Dt%SA=d$}2K4YuS)OzD^8~)&JWAj|0z1_EyAt?HZN4*sFFDxy
zI-`;JbpqeW!`}&fEB#mDcS0I`FY-eIKZ@)Y{v`Za_=_;Q$@#Uy<2MC=7ycpqQ}|Z`
zdqnmM_X%mwmHZzSjOF3<Jea^C6}a4qqF@teVW<AD#t8?;QAQ=O+{OwU#}hb_z@ru(
zvv86IT(T@&W#J49XIf}!p_PSl7Rp<wZ{ZvZ6)aS=P}M>;%lUX;B@1VXkXNS7oB~M|
zPnmeMsJew37V1c;X`z<LRy$wY!rqF-qbnA#uh{ITO2tf7S5aqsY3o^V^#&HswQ!z=
zA`1;IG_ue{HvYj)4(upxY+=OUCVW)hT3$paO)bp1q|fISn~@h=fQ5<t7ufSTw8RNE
zx6nfR`9dmP4;S%e|JD{Ru+YJBb`@wNY-^#N2$l90%7!*3xzNHz7P?5k*o(bHq@#sS
zA{l*=oW`9Mywt)AE1fJZ^XxCTP~!0`EOZqwY%0*^Y75;gJZxc_h3*!vu`t?l-oof%
zp{IpX3w<o~vT&`1s0G79ZyF~{0v3W6e6nQS{UX$vFl2$>a|}!2n=%oR2IKlLDkg4Q
zNLtQr)ux5G+KN#LMOhY@gu(hl8>cK}EMzT=oZBI-SiW2FMnxx!oPs3W38Am}bruR1
z`iZj`dCPfTx=clFQ9Iw?!T?3xM6#&zKz5>n*IO7QGT3syYfpzfhFBOXk$jki;U2%i
z!i^rExVp$K=SVrE<tRm&OS+G-aI=M5SP=_TB;ID>b_@4gm|)=!3u7(ZW8q#!-6>=*
z(8FC8?pBa|oQ3h?3;!u*@WxHfdoK4$VeQ<acB)YFfCV?-i6WEKt&=T0==F7@VU4G{
zSqNR@M=WO(i7N*;nJ)5r<zfc64r(&P!c2}R8<*I4+`<!_G8Xn(m}TKf3vXE1VqrE1
zyoDtemRgu=VV;GB7M`>4l!f^g7Ff=$^`|*!<N0SS=VMZQa*W82iM!-k3yh`BBH{BK
zs1_EB^C=PP{B{8MS9#HL?qI(pB)Pw8@iGf9TUcXZEgQ39ez}E}96}aW$cD-?GtWm`
z`Gw-umh<ro9(1+N!g`KI3$JoKoYicDg^d<Au?z=`7)#Ham7JXR&i_OTzHT|6Fkmd-
zZFIf8Y2hsk-&^>>!rK<!vG9e39TwiT@ScT_EPTwu?9RP!;X@1j95eX`QnpR%vsH>K
zeqv#ph3y;$!#Y#>)WT<q<%g{q<iTPv>T?<JPUcPvUt0La!nYQ7S<bC^-o5-<<SWh&
zyTrKxJI}e_%a5q`&?DL3S<d6ZRDQIu+rsZ`Tdr(ux6ev{vGA*f8Jh|}Th8}2_(ffQ
z3yj|lS--IG8yjk2fp>cUwD6aOo4S;dzqTs3N1e!A$Se2G|83zPuDUkPv9aI60ShO%
zjB~*A$w>=`EgZ3MNI`yi>R$`f^?h5$9_38GCx6_+F)k^QJioNUuXpjk1OCN!ii^LE
znl@_LIMYTs8)w<5Vxzo`3N|X+;73L(+D;a{ab3xFzDUKty4HmA)Jgd5lB%}z=T{9`
zRugBix`@-o!#XobZ5wsuq@InsHqIsvY{I%TmN)b1eBAybDkKeToNJ?%jn+0A+Gu2>
znGNoY#_wD-wsD?~BJn0Rnu_pS7>p{GbADWgm0F{RuAAGaR;?KwwzSd0#`(7MnH7Ez
zga<!^!v7Iy*2YF#8y#$1XgmKhw6mQ%|JQXWo7E8QZCqeGe>Cu(|5*)6FS2p5?M$eS
zw)0&ZengvJ_~JiMRQL($&NeQ!G2F%tHoDlj%!X+rZsT$rB{l*!f;O(O(bdK^HhS2&
z(gr^?e6@{kG}~Wvm4d^4&i9Ua!=EFtyN#DN6=u{c?P;TzO66nuRRE3z7Lxh)wozkL
zo`l~o^RtO6mXd^Qgl$BbMTL?!Rf_p9Tf}z8-j+>;Z#NYv8a84!ep{5|7a52N8x}WQ
zvvHjb+eXqx&PJ(nOxehCU~DT*+Z^h6?k4Bo4IXv$ckQYDMSaw0ePzss;uPp-JD<hj
zkr&~&X$m&_liL`o4jN!%pzUn1)3%HAPyttr>uvBGWP>CQwsBxnfw5(07PlPQng93<
zvz_O@*l{=77-3_EjhQxXvN6)eWE&6K7-eI$jeFTLHpVau8)I$UY2y|fx7xUkW#eGm
zTp;1-z5kO^PAd`~ci3Q%<SrX`D|S2^>Y+kOmEv*iGJQ|Y+|lG74I37~Np53;YB5pB
z`Tl?iTb@H=lDPXKz!V!(ZRa2V={6o>3!lj0pQ1->=PS$)+nA;(KEgzUrd6G%d>^&(
z7|T#Gzi4EhPsg!e9=GuXM;e>m#w;68+IZT=Gi;??$!r^QY|P~fu&tCsh2PSeXFLBE
z&1c;QG<iy#PZIKLX!Oi17N}s)+TaFU3{rF-L0n|xMGi9?i)}nFn-|mzoEo%QTE+Py
zHV4cS+xcAAQn_7b^CeK{3-2#$fRU`UvC2lLBrZu}wT(4gG?J*8#9ABcY<z9w8&=lF
z1{?3%c#ngjQprXeuh@81d=nQ95xy46C?2ob*dm4eb&)ri{IGMe_ojkx*?5~{wSF<b
zqD%1|8xh66@1^4P;RiN8w6RsnCpNZ;d?fr>X_@es3eHvNryRpJwtHzmXzP^la|OS!
zvBT4M+W1m@m+&i3uhSmi+W5}KA2$A!_`UEat}4U({UH9MaJO)yiu$woFE)PVOcei}
z!?>bT9v-|5{>#Q58z&V-Wv`8Y#P@m1-y*E|eztQi&*Ol|LE#}A|9bjikt4#RHjarL
z_hL_o@HO63a(G4(XC|E%C?_m0T&*(K9^9mof;Ez;nM7srvy!NiL{;(XLZ+>j#Gk6m
z?Ujm)?0l^xYA4YmiSuPpCy540oSQ`5B+gEv<$<DlNpz`HQeUy(3~F+Yf>apQFo{M<
zG)n?WG)|&P62)FFO_R9lh%+i!yz?X$C2`?q=l96$ip5u+=+``n%~pQ73SVC3aeKUF
z60MSGtt9P|XfM(xiMB~>JzV6L{DLGpBylm#%I7bX!9_xjI<~nx-a0Cl2F$T@5|<{?
zI|E+^U6QygiNz^ApTgxylq7LR3TLKpMG{?;n3lvNNnFXoC!LExUiDoql1?I%M7Jcm
zCvi;@J(36|5mr>sBzz*Y@0G;09`8-hLmN}%;g=XlA}HeO5zo>Ti3*J*Vj?$pslbHs
zBoawjQj$W7_Gtzw@o#4qvPtBUxFd<NNt7nhCy60R3{`C3B(6)MkVHQP^FsP5OTx{C
zynhncd-{MR28#c${DYDh?8Q<Xmc(!cZ%N{YByJQREgT^nDZI&Rfl&%F7p5KK@tZ~5
z0^BNoTN1a6xcS~mp2P!EnD%awdy^RFDdUs4NBn=~yf2CSz1Rs!_%|1raAFdZl9=r2
zQ$-#WP7%6gcqqvqZceAW!Rbjns^GUtJeI_aBsOuxCNVRK$CG$DiRDQ=k;JSdUX<CB
zNz4{ml*F7Q<|gs1g7cDiO5_>geBskVHzOApoYof$75m(2Hj9&ZUO^V`1rfK(FNrS^
zE=^*YXXE-@q2SsiR(kp>o(06$cnU4oiLV!K@brx$%;l9NUKRf=iPw^NJ&BJzn>Uhp
zJBfD`+#-B4iMPC1w+!zl@qv{0JpFxdRIn}|O5A#y^0AapgxiFl3h8Zo5}%8Ik;E<$
zde|YdGl?%fg_d7={OcsX@i_JGlK4J}FPdXz#o`~5_%VsyN&J+={v-}0@pBTt$arrO
zzl!`J{7v|~kPYJ2>(3<qN@9;!a<@D7$>wk2KSI~|p!jj&p(OrI;;{Hp;Sr&0c}$%3
zqQes&KbgcSkJGGN3guI%okE=yDx{nddsYfnQqEkim_nr#DyJ~EQyFz0+zz5@3e{4m
zo<a>7b4}ywUH5Qf>sWEk6l$fM6ADEdU;b&I7CTGprf{~zktx(mp?(S-Q|Oe!IVm)d
zhxRF)E7CND^F$h^&`6}Q(8*WCZI+@GkV11Q#lmJn7Py5-E8+RVmO?jS>lE53*jCss
z<*cY~L%Dc?^bRRpD8hU%O5tL0*Wi*AI;RjxA)3OaDRfDpw_-2j;-5kf@e<*cDO|;~
zfOuCSy)nD1J>ETqZXT!eYsB4h_7v|WyjJMuP7l5m{89ob1XBo!hlOrhHy0y?SPK18
z$fsZ`)=nWQ5*H>?utZ$XsT9%*mZp#q$qBPU`gG0QEc&F-*VA34Ou<1ZT$e&YynhM<
zMFt4}SN`iYuIO-Z3PTh%G=<?J!-THG8^mdLqsWMqbCc?(6nG<uWK;^HQy4>6DLj<I
z!ztX7!mTOXFXP)%xIKmOo`*X~#K#Kn6uP<GEzVrVX(W)`BjsLCzt1b}1St=&04Yoo
ze^5Btvt$LQq%c)Mx3a`(DLj(GycC{FVY;GbrtmoHBL0|{cE)L`o)DicoRz|po(&5;
zM|`gEf9*M6!Dod}3!f1#@M^?LEtK+H3X4Rj(Ax_syqLn?H1?(OQVL5_=#a*RX)H})
zSqf`XSewGjDJ)N6WeTfOSbC)Bz7x48yEa|Hf&FWa!PT7C$BOnO^K`hWZ5e0%x)j!@
z@Mj8trLZA|jVXMb!Y3(gQogUJ@P^3d6kZW|Rrs3le>K{Y!aFIvo5GvY>HMt}-u5`n
z-V^^&_`auqAmVoGR`HL7uG?)Xe3`<o6h4*sSqj@lK2KqX2y^+u>ud6z9{)<QKcw)Z
z$k!=+lft(te5c^|LN`+vnRa&yzep$lN#tkG?AH{26aQWKho{q$<=n&W;G&vF&9t)!
z?@Qr$3MW$dJB5Ez*q_1y*&h)e6#kpSArZHlhs9lQM?HSbGdP*TDX!;oeuj{i<<mIR
z<K;wLR~5u7rvJO5tDMGJQmUj;&9kqX{{Jh|>K?C^M(s3;(`c4PoiysE(M0xV3(pbO
z^E}iSVU7*bI5&-kX*5csu@_6-EsWc?O+EcQks>cgq|sbT+ca8uHm%Y)-{UR4TCl#Y
z(`e)Abl%S6?bEnG+|Bf&G%il#ku;{K(J_rqX%y1vpT;F=bWX#UhChu<Wq(x~SBrE>
z<FYg^7cWVps|a(v!pr?iDQ;c5d9gi3x(lyKqlc%{te5z;!rnqRZ6J-Hf~hn@X@tcS
zX+%VrV=RrRxZx?Rlqnt;x_)SBDQKsWJk2tlMn=JG8hz5}n?_E-QlXo+pJ!htlK1L(
zou@O$0ci|OV{96Crg425gA{d38iUgqlEx^{a%dVihz}DE_jG1-V;UnAyh%9H%Y`Lp
z>}bz&jL6O2c(_%;+l04!Hg|~pSMfCNP2;{a?)GBGiHuL<p3}_kPh*0DQ`30Bvz#n4
zF^x&5Sw1K}MaYV?csw3T<6$Y}(>&ux(|9b6O=)aSV@4V?rN5BI<7qr0zA%khB6HK2
zC-S6lws4MDNBVp!jb|jz7d|bd&N?m-fA%!xIgc+&W3l-2o<jQ<c?w8l2^W8f>(W@3
z#>?WX(^xLD(z9P7!fLMa6t`8^D7e<^qxA}I5N`A=nd+4^UQJ_L8lR@|S{kpX@u6bh
z@NC`|*&=*1jkiSp*Q)QN@opOLrSZOJ|G{YnEXh_+|0s=*#Xs>BI{7S(?P+|U#t#xd
zPvc83_6w06Y3vknE43?)uN3?`jc+~6Z%*rl?>yrlMSe-+SCQSqpVIhQ<bUP=EsZ~=
z{4V@M==K`%uQc{}3X}Yu#y@G)%Aj@z`_nj(M)?dXWSk4^gIta(l^hWs68@XU;WR2u
zEAU{{QHjTd3?5J8g!oC}DNjE`-p<URoX9BMKVeBKW>7hUvog+^sFIL>yjIDeY6jIa
zsF6Xn40vt-Pscv_BSo|sc1a&%%?y6r=3Mzt(N#g64C-c3qU2|1P%nc98Jw$(>PtK)
zgXL9AY0v8i{)lLpL8A=L&!A-njb*^7;tZOIHx-^IEE4{&RhuaYVRK=N(+pZ=&_06;
zq_h^c$)K%BJE7ax9WuBugG;3_--|NnB!025qo=!>UXnp)Phs*d;+F|87rJIwcs5-#
zxH5yQGPqhw4`DZ9chBaU%>SQHduGr}`n6sx9r`l}u!(YLoI@~!PzF{Ob{63bA{k82
z;L!}C85kLi&R|Riu?)-%N;Bw_K|F(mT0SX<^u}Ua;<l%-)~O8AUXGazvL4T6{<{+B
zn?XNj#Eqej73CE>AcKJ!lzEodi4>TZr?^dVeFj6N3=$6ZVuyIO9+tsyi8o|0B7>X6
zZ}jqI*+xnkC8ST+E%lqF+>^mABDZF6o5=0LyE3>#WUTN`SJV~P-Qwef<Av@>xHp6Q
zGPvKfoSMM|@dq-PC^9L72ff(IUiqg;aXqk94=MPtaGLND&+@ShW@K<UgCiNt%;511
zUeDl-44#nL3mLqa!K@6P%wTo~b0j{O!Q2eyi7ya7mBG^@%xk{qnfw`#KkLOV6mgqt
zQ3i`W{drG+No2KfNd`+ZSmxQR5P4a+T<H2)DZa{6)?~0YgLMjS%wUtq`V2ORIDOQm
z!e;STg|B!zo9ngH_?8Ub<QkH}?hM|_;Oz`PQ|vp!4>I^LgLlQ>6TUBW+kC6|Cqm}<
zk;unhYf#yi!KV`4Ds0c-^9;VoU`GaDXYh@pb_#c8@TCY-xz4{*(B<EXe=qz_NQXao
zgh_tN;AgJbQhpKsk-?uLzh>~82+e*MVcNe$_6he0_X^$I|MvJlUR@4&%E1f{dHi25
z_GkvjGU%8^r!0<Va3X_qvS^TXR`Qb>l+U6<7N@*aXJm1vqRI)~94lr~DT}&NDra$)
zNUbcYWKlJX8lGh}k?Pt1RtC3mYD#olxVCs5&z|Dh9<L`-U+5a2n?=(s&dZ{qXVXZe
zaTZNPT>nK`6lc*ki*^#5Wziyw^Rs}0&4sLm>$7DRtv#ici0h<{$J>is=-FH#(n08Y
zxJdkBua1{w(K(AAS@g`}QZLn2B3-h$EQ`ytDDm{JB3B5R@0FfTezkZvPw6glP4>U_
zzgHI5N{MIDI}2YHQP0w!MabiUEP~>0rNW*b@kGN@Vp*7;$j0H3@bXG#k;>x3EVgEm
z&LWe=Ls>k`;GibiEEaU=J|c@;7NuGAk%#NDC}h#s^W0A)FDw(fh3TKgpezPwF+k!#
zA@jZdG@Bt=4EOY*Squ|*o1K<7WO3tZ%1v2}%wm+3yR#UV#po=?uwSycMdH{jZWXy*
zc$?7mc8559y1_f$ppc~<FEUwpPZsxPabFhqD>yNW2_j7UfY)NKpGltX*7rdLrwFGC
zsZYz|kt|-$VtE$Rvv@R%7Zmka7BfWV31<qQ6h5BC6C%uImI(dK7MUZQD|9RJR2K8I
zcv{M{SuD)r8Sw?D**qssZ;M41omPwIPvb9U@sek`L}Y0e%RGf;SRuYCi_Ib{vsjhI
zYVkE$tQT1;Tqk6XOtnFL<7vt(;_nDw&EhqY*Ry!jvw0(nE#ht+-x7aYNQZRG<J~OY
zlk&ds1EHJaM_GKF#ko0Wx%))=Z(01F#kMRy&Em5xwrBCZXa9K?UyFZ{#SW33!d=2I
zz4rM^LDxU=n=HPS@}2O1rTQU@AG6q<#ZS_I5&nFd&9CCFpFgtrlS^w3RdV<%i#=Sc
zz1Y239LVCJg8PJjXYo%K`^DKT|I6`E7DpuhD?BW8V~>h6uVY><PGoVCD?fudR8;$%
zDWpyL9LjmzO<qAk=2c0g@@cVE#cO#=HIeGV8p4`FrmdYr9r3z3)E8l1XN%Mmx_O<G
zLjwif9&afA-cjdgMUxzw=I~Aq@8)n`4n;YP&*7dNie=L}hc-Dh%i;5meITW|u!WGx
z&(EQy$6Mw8J5ROEp<NDrbLf{t`y4LF!OkI>Lx&tL%;DM`dMn9AIb4xL*Bma+p<@o6
zBz6{F;`wyTe`yX~q+BMv+>0&A@#P)o?&y^{T$Mu)Prq8Edk)=1TqoCvyDiXDyqA#4
zDf)8Gf*i^rEYU9v@K=CmLnjgOn5RTV46oK^4)Gik5-p*dmy4+!(k$(uCJbg2n-#jb
z6LSid=FsOfJ)c8a4tGeoPB=V=8*(V*&_9O(Qiccz=5T!ugTx05-F)epB_Aq<e3)0-
z8*>;T@fP7tIgAz==~<5QEdP(G?*Nmcc-|%)S(1|U?%2CmayW82L4pb@U?51E9Cmhh
zX2F~g1qB2Z6%`SQisYzB&N-O?kswNxB#MA2DB$-_?Qg$7&ofUwZ&z1WS65fp^v>?~
zu+_7~X+G7ykj5`67?{TFWl$QwoB|343m76aWzSFr!xYR`Fh{{~1+Oc}xEh%y0wWZR
zQShOHkqX{W@McO0pX~^EOTj1wZ!35w&3`v-VQPM9=X(m?PuG5+{NHE2vBI39;3Ea&
z1b-}aqJr@PCJ0UGnIw4fO`J~@e5zooaM;Uq1)m9?CiMUNd4?2crkN972qSZ@f_VzI
zDA=lCzErIf%Blql7Ap8$!50b^DOjfPmnZmAYL^IIoR*|vOVc>j-3kS(6s#8JN}(y^
z*C<$flVpmyKF!%6V55RfY0hQ=)VUy@Wv+3u9}jKbp<t(iEEU-*zEbeD$Q<PYQShyT
z@1^*if?W#sDB&+US`-Rf?N005G&cMapZvYd8^YWt^pMc~3J#<t4=VUEjZ@?LNx{!)
z&S3#Z((`ys;ajS4LcuT0r78-m;SJ~{e+Z`Fl7dqTPAfR0;H-l4((qTIzooUE6F`Uj
zp60N}KhpR@I+p%aa9Nl)g#M-AUjctBxT4@{TK*pa)R6M<wKV^FTF-xJP64sApis(Z
z2q>YVq<|tqi>fFlfFmld{$JddQgN$_+f=@v2&Gk&Nz0T|QC4uuY2^i{ETM)9Dk`TX
zE2^k;lVlYYx2w1#U7MM%O0})3BBG*go%YYD$Wf82qO*!FDxl&{70p$&P*F{q)E8P^
zMGX}-)7t6?s3o+v`oDWYT`ATRn(8G_MFS}|6xu{+BNdGW(Eik*nyP3foK%rd*jlP+
zucCvBRx0vU+?AHUTSaTZZPJ`nM{T9pPH0NWJt{h-W$smRpWu!{*@QCp3w}W8gF;gc
zyQ+A4jq{j_UTXMM@F5is3wT86qe8n0?JkruJp}X=dh}9GZxwx1_$mSweO2@$U-T<N
zbrpsRRWLoErM*XN3ey&9rTI=;l4eI$cv6h1h^P4}vlCKGc_XRf2`TnZ%M1|k_)YQl
zq;Q_%VAC?x^DH}6!M}<;uj13!+db7p<1g)BP;snC&XNP_ODYDb7@5QyNxaNfDoVMy
z#l>J1LsT3$aKgZ=Dqf?<bUdPCsET1KrfHb2VYrIdReY>syowPjURc$5w2JqrO)!gZ
zsCZNGTPj8gcw5DfJoZ_|J5r4BX0)nt*F);aqWJ{xs~D@|BNZP=?HHkrMkpWBs*1S;
zwSz2*5sYK}^vxicpkktmQz}l2@FW$JRZJ25a!%wE4q3%o73)+?Rq>gM87gKnib|;J
z=gMofa;K?yv4b^TMQn|xw#eW$OT`x|7O9x6VvdTrD(0zJsKV;evSlx8zKWq+BMUgp
zHBP0U)Vy;_3z$9kYM(O$JYkXZrHaKWR`1YPs#v08DLpVpSsu!3%ZU4^bJsY;^VjPu
zr0Tb=`ldC`DmGz$=xW`_R@bPwyi6fDu*O-hVuOlrReYynql!(;=PDXaS2nBob&a!4
z#dZN(RBUC^Sgc%Vl}|cgl2UZ7Q){iWL&bl6tev#ERQ}y-o$f#6ey!rczm;!<_P5ob
zU;Zu?Kd9KJVz-JtD$KRc_smY8D_QIGy;3CShg;Q$vhq&#$=I*rfQo~hL>0f4$UmXt
zkcyuKA6N0SfX+u%Rvi|6L@0|#8E<J^xsu8zq`xph9aVeXVw_|Q_f(0`s5r|^rJ;p}
zUsarAy3=rnhTl~DuA-oZLK@Di_(R1N6<1YUQ1MB#R)5lCDlV$Hq~g^U#waC>rO|yd
z{!+1Oy*6*H^EU%{t@Ghp=a#|RS8JVrR9s)I+)(jXE9+l2G%a4&$P~;f7H1aE|BqH_
z82^hxd~&T*SVM+}5*kWsD57DAsb+nm71K~u@b$G$vAy>Ds#;t_&jKnzDGj%1D665I
zhBX_N=-)bNX$=HrG|VoSo8pw0+6o$O6>wWx__lQp<ts|Dl7`9x$f+Wr+BzpwLzWgU
zx~3YkHB{A5Q$sBc5e+%Qudea*B<r<uYOWNa;Z6+&S1X@o<X6*hWTQrW(Nb$@XtU0V
zS5!%BYpA24k%sx}oVpt7Y4~WJQ|%+IJ_ohVX`rE@hCIQ~u5-xg<+SKiJ3^}EMfeGW
zt#~yNP`{(qO#0ojKw&tw)X++UuEEfdui-8Y-86L9(3-t#xJSdi8opiUd~jU(vSRMt
z(y*<Db{fvEbJ`2-AhgJOhn)K~bkxGBe@H_o4fkt!K*NL5Ds#QlaJ@sfbf)rSYFBDr
z?+|p6BExuERxXPVYj{M%qZ$UkqP1S9=S)-l^$u|lj*cIdG^iRL)6h#p*DYFK4HtLo
z8*Wucu6KHC=%Zo6dS_TQ^LRw<Cjw*RnTystJEdQCt!dbhW0Y0$O%0ZY=fp5ugQLOM
z5J<7#HN|BxXz(=bJfp`MDif8MhWFmo2uOJ)ggNMva!Umxso~UmXMl$O8YZ6AdmK@@
zWTyAde_X?ramo`Ko)qwu(5HnyBlKCJmm3=td!Aiucu~VZ4R30AOT$YV25ERz!)qE|
z*6<3ac!P8QapiC)YcK;_L;I>KFAnO)dZ)?;CI_p-24|>-Va)%G@WI;a8b%1<LhHT3
z2{t$*IYt3*a5w@+X?R=1#~P|{bl%bMF5`+Ft#_tva7Jsmw80rmNe!zvIK1B1@Ie}n
z(ePm!AKc(j^45*cIGOs@$CaU$HJ)=phlu8>jIlGyBn^|LI7R3u8h(me-Ph`$YH&Z+
zc+m!meWu~eS%qMRhM8QXI?C&q#f8abuA_*KIU43N;pix=V;)0V!yg*%E}XwW!$J*v
zG<>h&a}8f`J!)91VUdO}H7wDvl(Ux1TC9P=_UYbSFPTNKOv7>wt2o_-^6Q;etivkl
z3XxgKINZ|s>_7Ty4LjB-U-3xEpY(Ma)@#^K4r58fMvcc4;lxDc_6`v?^!Dab=VlFC
zH1u1bY}K%hmJ~MLX&+&+Xzd7l*{R{L?8rA<RvNz2@U@1fht=EHC=?+0PQxzgeYb`J
z$JEOg6kb<$+f>_TqqA4T4;qeYI3_atG@b{ALmKvLIH2L6Fh>SiTZ-i?8=cE5l%F&#
z?iBf1!(pka_prr_gL-kKazsW~sEl!(_G>szw`=%?vle8X65*3VDg5jVg}wJmWS(X6
zXU^B~yHvHlD{_uu5M;eBp8RTcgktA4j7A7n){I=>@?;cg_*26_8vf-%Td!Sa*mL>{
z8-FnkY8bH5nY2$MRld`%iU4KajTqN7T$f({({Op7a)We*GSpUgp4Mme$*2ATItuFH
zRQ^;l|FbiCYR8hIMRgR@!wg(jM{yk`ba4N`Vo4pPbUeR7zZ_((?yKFRgKf*`{L)7&
zt%s9H@a)ejnH2u0dB&|eZqw05$K9f>f{w~MstB&Aqmlq_kcwYYZr5>#j)poK>B!WP
zrK7gagRqdTqpBELQ%6Kcj*jY5q}jPT?o49{*j~pVznWl1T7iazYUo%SWYHdmWi1_(
zS4RjaQ&&el9rbl^AS~udlLl#RlMbt|3%{|BCOTROzp0L9Tsx~Wo9ozchk5R3sAm`=
z{1k1pkF?a$N=Lp(-X-+A8sQ|i*6~qIbH?Y&FzueUI@;-YP)BDS?R9j}(TV=?v+fZ;
zWS7XF{7r;@yH|?$>F6k+MP@FU_tO<6@*mJKx=QZr4Yh0Yl`eEhi;VI)k%x42)xld;
zwH>*nyq0y0JgTFcj&}`=Hqc#14;}X!xX(aO9gpeQp<^eT=;*CO*J0@BqvJk5+=4c3
zk-@94jsaJdenJ(_z5q=q^|Q*<Vd)sB<6|AR4oAm89WUu{bwqVMuHy+Eo{pG~gbrUE
z(%Q?UL*hD^_TP9aJCLbiT1e{nWK~$jtG|xdj;aH6-2T1BB4_YP9nb3gKR%w)@wARD
zK~_$`{AU;mM^#>wd7fU<@uGCWEx`a;I|RpSL>@k@4$|?mjyH9@rQ;PHgLMqkF<i$G
z9j~%4Zu`X^t~K_RvY||)NX2AU_hi=VI!5S7&ErTN*AJ_2NH5GYw1L7)#DGyc-qZ2E
zj<<EZL!awm(pz2B7@Z#Vl!rq*KhQCT!JuPOko6%0uVWY<V>wOR6yt)De?dQ)9r><K
znEl4<n4sfx9bf2}NO>L8bWCUT>X@SAGf}&6mGX&zIXPiU{8aQz)v=XBz7%Ggcrt5-
zj+xBxI_8VyEFJ&mM`r7|!B;0`<;~GCSI5_7jF-BpTojk4C=2KfTg@+QEToqT8{Bd;
zol@H(9bf8Lr(?a2#X6SgSgB)`j-@*8=WqU{6%{U%UYafrCvFAhPw8PoV5{uN8qT%U
zo{(kLAeq(ds5*Xm<^~-bX|q(Z)h5ob=-ezECKKAgF1UWT31>U~wnC|QSLnL0WOaPY
z3F0UOe<Lz<KBsb*j@>$n8YpI9kB;wkoYnEGj=eg5(DAd5!#eiq*e^|fWc(+>2%L7C
zc|gZO4qv+m83yC$5L2A^HYL#3w~pvIs^b?OCv_ataa@O4HTP64<FTXq2_0PN^cXQG
zoo1ZUaYhesPp3JL`?R{n3`P#!d$nQYoX#V^aD`aM?>f%wxS-=Am(^kQ4;{@*h5>dW
zJ5p$|c1eu9tm7|cyz|PROhk>eHIIauoHBn);$=$zvyb`@r<hsYKp_Ly7_ppd9sh|=
z3UE-Qt6PQM<5hs4e>Xb(I9Ax;Sg~+bW)TAwi-jrl0T^F?qSczHRNbf-H&DVrbptgF
zlr&JvKxG3}4BTR%w1L|UR4`D+2=62143sxeR`B3MI%A3V-v%opw;KHYl1k3W;%ant
zq@sZ<)iPPEWPrC(Uek{2w;Q;_K#qZ21DOW0L`lTp;el$l5l*_=%Bm`Wocre~{E&4c
z$a=RMA5Y*;1J#Vs$rrOD1&^v9F4xxW%Vkwf1GNmaG|<XGZ3A@-G%(Q6Kwav&5bj3m
z8>naC9??VF@{I6P+v#rV(697H1{xb^W}vxPLd{Lsh2XhC)~uhx?L>y$wObfiaYN^{
zlI9z@%RpNL?F_Uw(8j>s(qz5d3sw}!HzNi!UMfemH_*Yrk>Um&_3bK!;2tS*W;+__
z#Jp{whk^SIJYb-Ufv!e)N4``&!h7+9G}Q<{T7G$0rR5J9c-TNU5t!aAyonr~t~_FZ
z^iiSzWrm++c)#dr;4uSz4D_YW%xvbOUeb!Irni{-VADuH0}5{zeioak1~dcD8hFlt
zZon`QH;^!Ra1bm5jse#IcW(5CZG_30n;b6NsHiH?CO>9?sotaTVKoS{9xteVuu=03
z1O^^A@PvV+f&K<K7Xyqi)3QmSMv+2u!r4jPnx8cAl!2#3A?JmzV;Dcfr#BN7dU9f>
z`aJD7@S1_43?~Bv4Gc2yvVoVR38RHuM=nXGkynH>*uW40oD|-^Y5A*CWOuVS=)(*Q
zH}IB$Q3hT&Fv7q{4#5EL^4vW1tN*{X(>=&~Q$mhW$K_1r)blnYEt&NWgX(mcf!`0Z
z-ZSvNfi(u!8u-A#7z6VR%s23%fw2ZYH89n{M_gI?`Qr^tFfh)*sfCe`88(IUt9_|(
z`Z$#n8HbSwr*)En$ue0}7#`IlS#K(zNRcvQH#(mgm}X#>f!Rj58JKQhrU2p@T%?)d
z-r((7%2S_da}3Ots>U@!X6GG|hjYwR<CFzV0tS{DST1Vwcn>o0g@Hvz_*8*Leo6Dj
zDfJKP#Y^QcHn7A9_asY&63j1Qyqp_uA&%XWxx&Co1FOWbshq!B!j&Iv*BMxE;Clmm
z4Q${7H?YINP6L|^Y&Nh>n&c(3wotxdA!^$yoQw+!Z+VRT?Na3D%C8K3ZQxsm4LN-?
z-aDs!!&q7z<`cH!waW-^#JkyDjYzmgvhwyw+djpN9}Mg>@Uwx#vI_PaIKX8hwKbAi
zKg#eae@Hmt4M+ev2Y*qH82EK>?oo33W_<m<wyjne62}beUJ>4ie=%^9X4n{D<CKBZ
zOnnwETR3CjET`2%TMNG$ILGNWG10_t27c#CH_^kyc>{kKxYfjMCN3DbXy6|M{~A0l
z41XH<+kih#xy;~Mpj_Un{Uso)O@u}3-UzF%h`?25{zj4WkE+)=YrOrLC~o40f&ZA~
zP4GB`0w$Ie&M#=9kckg}R)<9*g-!m}-C7cfkWWyhcmDF7xkXK|7k;vK>gSS{Fj11t
z=PPAR%&DN3GEv$@854g#$=At-lm-k^^GD@G#%_#!K2j-XhSu`&NO_LyQ8j3lU%^C0
z6U|ICH&Mw%WfL_`)G|@U#O)>`CUQ*NLA4dsEECx#KJ&9OO>~;9wEimc(p06YiQbZt
z2KLP+GuOoZYCbvDOu)p+MCP3)7~Z_dtZt%)2+V35nb0qv%-Uv{G3uG9Z=w!|#!q%7
z^Xr;ngfO4vnP_05p@~K&UTz$Drn%aGm2z87q_K%6CRjXID`YlJ*AjC@v@p?<7P2D~
ztxV*bXm6r+jmTXlTAR4rL|ZewEuP7X%&4E+M)1{1+N_)~zmc}%6wFcFDn<tr_n5fX
z#C;~d3bMG*T$mG~wG5|@X85t%{8@d##PHj4yHbgX2TgS5U^5JwF?Um>i&#a2ALdyX
zX1Mmd34K&Nc6W_Taw=~M^FLkM)5K#YUNJG4G88cJgo!6j^fA%bMBGHeL_ZUX3Co0S
zLN)PRuYBEvAwV;6l&|XRm49E~d{a2%wntJ-avTn!Z@y<@Zp3s2M}@KpK}_VUUr<=|
zP4pL4flzXi0^V93)($Z7xG0&u(V?oR7{FiWK4XTD#hx}%uW<hGV);)#nf)vknt0yC
z3!JzS${-Uj3K(eOB>_X9%s%61v1(7H@EJR=mramKFvP^GCO$AR#>8u6ns|?^z{D{6
znR8b-|7|Xu8OrM>-Z1f|i4jsHf24^+vy~UO>2H}BWx}kP$&37jk7ZMyIr$wE?=sGF
zBBP}V0WVgyDWqP`$iJEuq40-X_*s#0W_W`hEA%5qEMHt(JwjUGxy+BHIGzFauRh}5
z$Rrb!O`J9HtBEP}gNYp`cAEIq#8eY2O|0U2F)_`=LKB~xm~LVQQ_A|tJd;NzVise5
zV`Pp*`)n?{jgcmeBl*$74F0*oq$F>+^Gz&}V&29uVNzy&^~e_{zBIAe#3B=ea<jU$
zinO_|FqW2>SZZRK39d)RSaNpOauX{|?A;jQa+^_EC6mi`wTU${z%3@$%DP)`VuOHn
zLSt<r8=3A}<!=&7zz>6@o2A%ri@w#wHWM`IO5@P%?Og1|)uxRjUzzxtnoay@;u{m+
zn%KvM;AeejVwV{{m!J|3YPX3!CcfuFZX6CuuWFKV;CoH{APbN(T!z~wD*H_wU|$oJ
zXtN0EAu2KPZ=1*&6F-|cY~mMo&0e~xM@$?uahwq=?jnauws6hLh!*8U*n7^-$SD(F
z98*urKyGOqA*M-P2ZrIdw@>~##(;^c79tjYXOc8g*g}SdKPYeFnu+TsAK>GXi7O_q
zGRMlI{>#MQ>_u>DX)_Hn`!OXx-8jO#@ISPfi~3jP$mU!Y``;JN7r!{TA<RM+{^Kpc
zLO~0^RpSvlS-jr7FT(5rX<o!aQ46<PxXlVzdNHA8EEKm;!a_+4r7YZHfeVwhOm4gg
zN{bl5#<f~m3*{`7@0Y=1c?*Mcv%c7?6IZZM(ZU@TGA&dR`N~2Y-)*tB3ib1M!W*62
ztuTAMS};E=tutFV^M-1}i{wXh%p4237V2Bbv#`BXJ}lI*P}2%0?oJEU1Q1uZaB!nT
zKqu6)P}>UkDvc*7kL5+`Sg30uXM3bt<H(6>ne{9@T+=N3gWkYGLkle|w6wyTS0f8e
zEi|*xSc*-Al0V@W-O7wKw=g*;yzTNDk`rlVA-`<yT^3qfXxBPF-@->5mF11XyYrHb
zkv3L%*Ip=h*mf4$Tlmt#Vk_Lwcd%eva4g(o;a&^(S?FltQ48HHbh5DfH~j$%4_dgN
zgWVW@vc7k*_WMSsvxR}1av!pIH&?q@=qiBN%~l__c=~0ix#T9N`X;C4Ca1fF9u`!N
zx~JOH!ebVCTj*n9$wZ}>g&Wru0y0Vaa*V}|DbtjG0{$+at5|qwlS2-vW<j_3y_IE%
ze#?SsVZu7y*yLQCqVaJbJ9RBYExc}Fgayw+%)$^0uUd#(NLYBz!nsY(FKWJTA+V4X
zJ+E$Z`db)a;Tb7DZsFri4zH&yJYnJUP0o|7+HLzaP122<oTr8P!zSlh`s5Yuw+xl^
zdC~lWP<HX6fPofXqVP95IfI1rvd~wA4i?JV*BC0(m7<%SVHSom_#d*ktN*l|NzQO9
z+*I88vpUkk8x|&7m}KEi3vXF?-@*sn+HKWFvB@UwZ7$@^PK(XXBb%LfEWFEE5Iow#
zdxEPODml!YV;Bq;##(rKvr~A4Hhi=55#7j1`CTC%$KhKb7%#MB6_uD((@!gtElja6
z-NFnDpIDf-**Uz~`P9PN&CZexbwdMVss(;y`x&b&bYG^QU80lD<dWa)%;K80@a#0L
z!WL%^7Zlwh-kv9cI^>`}pL^7W%I~X{1)Q>j`a+=uZF{I+aJg-976~PIV2iWF!cq&X
zL<64|a^9C&SkC2>$Ry?%S6EnSg<BC`-rbSa7S_;C3+pT#lUD03Y_M>E(Z$#PTG(Xa
zYYX34*eslFoLLK71aB3ZdL&Na9Ts*9hmVg~{EF*nTet)Fw>aNg_|C%j7WP`$B{Jmi
z7QoM9#Ctf=$5d{ph<_0NKA{!mfzp1#)%g5Jz>gLVS@_Aq&lZjdhpl?ni5wQp=MUUN
z-W6mW<x<_I@VUxy3nwi6V&S9={CA<Jgr2o<n(k%H%MO+sRDK-$RjSSj{Y~h|En#?^
z=Pkg(1q&A~ToOK+{1%d1*_1zd!~M&`-xgZg$hUDt{7JXpV&iHW|6}1_3)iH0U1%{I
zHy8;_6gCRlC~PCcMj^R|{i<}?6+UF<Q{}UMR_-TC5t~m`)S@;Yo~Q)Vw}f9i7PnEt
zMoAl`Z1A2!&ed&UtGjcJ(sr0|%GfAtqnwTMHmcj;gZ*1=+-4)oMz)O#HY(b<!$zi!
zN;WFnxLx#Av9WTCv+YOqyDd)XKKZ<z@oL%Fm@;1B4=T92IqIr5A~x=%Ra8|XKSyY;
z9ez64IVf8%k`EiCd@#%0Liy#NY22&Suu;=SEgQ9MG_ldtMjab<Z8WgaP&CvNv+LWq
zej*%>|EH2?quDHlfW<~O8ryu`bNCfu>3-oi8n<m$n%S6FF1H0eW8>oQN^={pZ3~~b
zY}*mKf@^`j-({n<4b_Im0ZJD=Z1l8ox8Sxm+SzDtql1n6Z9HJ(9=fPg<USi6ZE(wU
zuh`bRr^=gnCp%n3EoBq?R5g?MK^u?Qc+^H`8(nO46#?=e62PZJ58HThkjAUSW~G}j
z>9Ott_`N{>_DF%_3dJ5H$3|~4X<%uCTkAe{xWVRh_qEZ_hGK_5XnA6*&U-Pz;AP=3
zbsL5aQ(7@pc#&z@ux&UtTpPZP6YV2W8y;PUNZdw@!>pOf^}D2iTB>IF<T+u7tDYA>
zD+R2brzF!HK7@JP#uGMPcQC@ilQy2RG0Mi<HlDWejEzAyUbgY9jpt~CjTfci^YnxK
zeug^v&>;0))j&E^?Br828p*GoU$HTmnr)1*F~r8JoTC;QLpg&Y#<qM?O-X*PA7+Ek
zeu;<M;3Fx5kv872@urQp=(j}XroQ1GGWCS&7g-(e)`+}g<6Rq@ZEO*RqiuX-W1Nlm
zY`ia=t6LoO%lN<sziu95<3o-;NA27sGM17ttL9q$V;kdbtl)~UF~P<}8*>?NHYVAa
zY-5^@={ESFeu|Akvy@K-e?t3@s`1|xUQ=y+W`nDkzdItG!Ikc3&b0CKMTN2YV@~cY
z8}$||vxO4OvBM{C1oLeyu(8C(QX8YUMixqJFS7BuX!t^kw@=ongx8l+Tr8BHS;o1(
zJ&aX8;#+Rx>lI3c()pxgDyyr+o;5aBbAk@3{N5`1le*T%IveY4Y+%6DGd4;U)xM~y
zO?PRVgh_rWL)~g)8<(wvW)8O7*uezippt`~G~31>HZHI`8{gRYiDR_!t&Q(&d~ai~
zja@d1XQ;b{HmYaTS{La*Q`sZMU2Ux&Z0uurb0wBA_6zfXje`P8ZgtqOs?e!3!l$x_
zID>06g2OhB@TrcC(@Y>+^rJS8**MPltQzUCMW?D0cK8FQlT!N&BjI*~Vly`>q-SiL
zwQ<hIZ}i5-TylP;w&I}xpSlqIZsWW(Z?e@Hk!6xkRTnwMoB{`h9Q?^z8~<{CZTw~9
zZyWz`(UmZ+NV>SnlsjH|t%R|9WrSe)w%qf%Cc$;#6Z|LO29w5ChY6v813s^Fw>oT6
z*g=Ma(hkZvcz&x>#6d9!#T~r4)hQ~J%}Y2a>7bN@Tbyw0TbqU-XJ{cYhxv4e2tio~
zhsxxZ7XcQ_Iapo7n7`GzRXDdfs33rkWPd!XZ>n!pcCfB)B*#IngDMVgcW{S;Oa~G6
zo}p$r;KWsR@K4hSi`fo1i3GehRWJ{(4>26v>7bs2`VOi&sP15DakaJswyNP^ZHGur
zQH5HOS`J=2uV=2+o-b+Cq2zdlS6v6KV1&+T8p)$=?9suttxf}JMJ9V`>|jBMNE6|t
zIwfuHpoIh7f#IMfl{k3V!6Odx9o*%hlY{#mw06+O!9CLOZU=20v={T(oa1UIqf24h
z+(D}7&wCx*C+4N*v7>|WB|-}y5Ivn8bP@2N1Dcoe#@LOyT^&5+;NP_&hdMtVuRZFZ
z8<UL##X)xmJshat*nJ%IbnuvH=<R@$m<q*S4vubhI4LQem$v2hb@1}W+@p>~Q&nlJ
zIiTiLkF(3<nhq@HX9rI?upKxK0tZP4E^!GXE?q<gdqT;K3E)@~G8Z2m(R~M}CTRpz
z+h3YIE_6V8bWcbVMl72@?cf;)gJ_t8XT?P?i15X&&U1`g;e1mv^wo<F1~T?!AuyA?
zM62o<jPqASeu#rt9Sj!Cei>b_2_EY3rKtZK<8a}8wlW+qgN>0h(!m=JzIU*fE5gBB
z4rVx*>0p$Dw;fD$Fo{#ZAFecsyyM_q2csRl=U|*L-*@l<?dhw1<X{X<t*U;R$mH|A
z4+W1EN+vn{o`PZ@ODk?u$2;NEzX?K1HV(h{ne5<G2XkuWa`QRG!6zcgehYPqOm*;?
zgK189!y;$86F%EaVcr~PIhgHWnZuVoVvd8k4i-B2+`&B2@JHS7qb2vW^PTYLiwlIZ
z?H6hNUpiPMxXh98K|0g^Vh2l{aM!o&n!c2pujw>(g@cuhD=s1jt2kr_8y#$Nu!f6~
zYvi!XZ2+IfuM_$8qVT_l5q^)efzH?NA=vDM&uO>Nyj7tqm}HJ#2)|6(?qG+5?;Px6
z{&#rW!Z++isyKEEe9cLbP5!syE>_W*yVLgXabQYq-$tSE4-WP@_{G6V2m2iyaBzf6
zfV1!5M<y``P1lFdoY!yv-!A~W2bn)P_}K|JV~2(E5h$N=9iyat{5kG``&B+_roagY
zSF48)T~9eU?cfH3*})kHXC3_E;DUo+9h`IUn}gpS;OhuCy?n&YUHy3ni+hC{)I;|0
zo)+;%2bUaNp+e?=2mBO3hyU&1ve-b$znGS{g`XO-h0*|ixM1-gW&<Xo$;vfpbzL-5
zAvpzH6m*f{qKF#~hY#*Z3%MxlhVngohcZQ_s<?|1E?yg_6mxN{vax8KQuAAzZs7*9
zq#KU6e)~vi7iC<mh+<_FWnGk`yo;eO%DcFg3SHdq;x-o*T-0z;(?vxWm0Uzz<hZEp
zqKb<wN?yt2#h;Y(Y=PTd+~FeA4gW(y=Gh+MKRB{oRCUo>4w~Q(zbTgM0xqh#sP2Y;
zkD}zA(u7CCQvThF;X&)X_zUw|E^51I?xKZ@IxgzEsP7^#-HI~xq~Xkmvm3Z*=%TUv
zzrQ&&62mCK?mGS(X(D1xg_7CKMgBI2UAJ`6N|^V!;V<y>X{U=eZul>QyWH@!gnk!8
zWA1j*F5R}RiwUi>$!sr8*s6nojtA6xUEJrQqe$|kT*?&f8G7IW7Z1AdT?8&VyXfLV
zb)mWF>f#|6y<PNi@vw_WT=Y!$@~DgMg1fnxH9%u8^DpM~kdAmVKMi|Ka8K3j#a60G
z_x6>sD>Qyj=*E81yxf)W?|Ag2?!sUb7f~0cNK%RAB4wv7!VZ69e?aBMDmsS^d3i2k
zQX3bV5c<OI`m9R2=<ni17Xw`kaPhc{CtW<{;t7#SX&9!O)JEZ_UA~tS&$)O;YRTce
zKkwoN+A}<S>jB3|V_vLn@pRdjTnwTZfABAJ&FOeKt&?IbazsO1yqcb6YTK}19p+-V
zi>IS_CW_Zxj9`pKQ9X*0F5Yl)*u@bSZ@PHP#YPvK-0(fxqv!z_pSpP4#XBzEburq-
zI2Rwgc+bWAF2=g}h>_r848!<z&W9WVe=Lz~HmH60TKPK`MTiLsoR35nMYi|P{^C+(
zyo<?PVvG|P6J5-H)#MS)lU)2RuU02jDu!)exDaVHMw{y5GZ%|oeCcAEi|H=rxtQ-_
zhKrdl=DH|b%$&u=Sj?Owlwh_Cp2$tWYuX--czT)e6}k&tEOhZX_3Y7%V&OUe_uo)>
zeEk<LNMFk^7rR*EVzrAkqTyO+bE%7EE|$BfHCS6IlwgG$o>@(>D$SwtwJz4VSnpy3
z7jF@jUGTcAthKW#cz$@t!nu96Ih$Q<ak1CM4=%R4*ye`Er_;&XUF={oxuJX~bf=52
zIjwGZGXGb?@w%Abx_F?o`D)3Wc!tU1lKIXq7rR~Tq1%g?AARn8FW}%ojjgD5pNsvR
z)4eM7A8>Kd#UU3z(P`~5x_$U!f*+YWlFf*J7C_woj~vP;<~v7S9Al=6A~TBPE>5`k
z%f;U=esOWq#aS1>x;P~h&G|j!;<R9%rO&g|=?YHtITydtOH77~BEP#h@8S;^7r3m>
zM`~YFE|&}swC8nE8vfiMjG0RrxqnJ95MOqA%$mBUJ+8R8>Y{iQC8GGp#lOt$QQUh?
zxyA{iwkQflaf7iMWbP`Q^Ij2^*MBaKSF!YAW+571#o{%jaBkr=ex`_8B#NR@6catq
zY;z(-^Qo{&MU;%96!Ux(<)XMHinZr+PF{$NoS_WsY?h9qOcVsvPg*{TTcfBHMP*TP
zTND+!jxx*&Q8ZW-p*G6oXP9L&Lis9Eb$b--h_!ERb10b=MRpXqQ6L(gug*EDN`WYH
zq)5*6Z4TeRK+scG!JX02MLb%+Q{mhiQPhkg8if}{tte_o(ItwmQPhc|ZWL{!XctAj
zDC$SiGKyAF<k6}qnn%MRpIFRn7)9eKnnXd|Na$^UNA#uP8evp7jiOl;#JsphigiGX
zXt=mol}~GnsI8-D6UAMkZ9~zJf2nA=(70Ic7D=wh_E9{vDAJL|C^|%Oj~L(B%j)*4
za&I(@>id|2W-A3gbhhqQ?~mevDAsHXUqA6ep7mffe8mH0I!CdmczAgGLs2{&g%X7t
z#UoL^mLkkc<aeW_Xzm+Dk0^RZ(OZg-3GF46Yn-cwnzvqz^brnmo8yK0rSTs(B3cxB
z6fS3^pK7G}Rurb-5`RVLH@32+=tME0KzP<Y)n;}zV^PGTcsz<HqDaul>bZUt0f)~=
zKwsN@($3Gn+|?w7(?1$M4jLddwPAabgOV*4WuBr-v%~${v(a#Sz-uOZjN<tyUWnqw
zD8@$dQ4|BCcqxiEqIfgPbMo<W6hr9{HsKI>;Aa#(n|-k0J=?<bvUqg)t5Lkh=z7fL
zso<o;qv7!vyy|`t;eSY9kAidr?*amdQ-4Q&OU!sTicwL#9sS=~=<h^%c%yk%2~~}b
z;ysS*N`xoazc0ccL@_4H^XkKU`iJRJEE-^ri{j%b#?y7eywE2+Y<$3(oQY9beay*G
zOcDMhwvA`4{3quVDY9xt6rV;hHHs&<cK9rch5tmR37!+rnl501VzR1-yhMqe&Wd7o
z6mz1O`~Q27VxHjnLKg^KDD-ooZ1sioOTg<(VJ;TV62VKOSSEnC;N{V9&r_@oRz<No
zif4U1=VJ|Xg$NYzu`Y`BG%SXvV%QMHM$UDNZ_UQ0C^j>l#*h`mmMFF|W;{IMVOtd2
zxpF<!^{^v~oy;U2DtY)Sim&POD1M_Q5<I)2*d4{UQG7=m;ti@x{v2K=Z%-88M{zWY
zV<NUU3Og(BKombnai7rrQTUf5*+c5~Yp5OM91W=RqtHW9{>cJ=oU6?yKa1pH@?#B-
zh>|atM#$%NoY`Yc{nJsLkXFA4JsHI*CZD$TC@@bX&xnSzQv0jmNwf3V<L^<NkD{=L
z3=e-qae<jUihpGk7p1$uqPQgTe@ffSg70dX*Wt|qe~TqogkBX|V?wC&nl%59#t&?8
zUF2^FoprPsS5N_uzqiaQ=!MI$kQX|n;e++qs)&c89?E(s=b@Mvy0MgpyLQzt?xEn+
z>=GX8ywsqiw4$%r_7>rk7ET$V50(n`l=sl3d|vNPjp>$Kg@2pS3ewl$cmwuWne+Hp
zgB%aJ9;$e_ohEt66oGd$@~+?6I?KbT=5;BV?SZbYDpe7oLl4wuFYvH@OoJE3G^pm`
zP7iE#Y<2x&6Y{=mmsj0`Hl{%h4>hIVT0(0JUHD(vww{Oj9v=4ah=)864Lr2>(7{7P
z4~;xD^U&NwV-HO{G?i9V%f77B9am&DU@sikM`Iea@X*e~zxxZEnbf4EhgOuIo|iB5
zE}<;8_RuDc?-tP3Lx~}+SVhZe^F1E!^>Ckujvj98FK}^xflK=f{JFnCClB{~c)-Jh
z;!Ji&mvSyr!{oGfCSPppD)b@oOqcHA>_6(En+L;#>7l!a9v&1As)wE)9`n%GLqA5^
zzy=KqHl?3?dFU-|`-mRSBYn<`<Lz8HoGHzN?%|*P1$vavq0Qvb7*dOp9y|{*4~~Zc
zzZG;nL_JI?6HWnxhX!l6G~q<VJtQdLg=>d=YW{s@W8Xs{Jtl?rmwve-sF^bK@RJ^%
z^6;I9T^^qH@QjB^9wvKu*28li-e-Jzc;3Sc9)^2(-NTC>26}kO!yr+$cuzP@vu@OW
zSt7Yxy{4~vct!deEOdxaQ#|&XG#M(KVL~tO4kLMlhmjsedw9<Sef5US#V8MNip*O=
zxgu!u+d|(F`mRvMIoAk1#^~imW5#&+(8I?b#(Nm+;Uf>@Jk&m4n6)F`Q&VD`Vh*3z
z1P>EET;5-RGtMICYvt{Yrg-?o!zvG}J$&k6s)rdKW_tL{!!!@mJ-pGOG2NSTU`h{{
z>MRelJuKon;#_xXJVzX|z{6azf1c3!Vl%S}$Ffj3p9}p$_*`+Rd08xNmw8wswM%c3
zSuS{m(3R4PxrnXScv#Df?cr+=>pZOYu))Jd@n?@hP3RxmNk?sxHM`BjX3?-k=vL7)
ztW+K9*)Dj8@OKJkcI6y>!__*b{zGPoZ>5UEr!&df?O~6HGak-*_};@_4@W#4_3(p-
zeI5>Z_{qb54+lIP^zfsHT6!lMlU2F>^0}eI8RVp#4z9<aJ^a1?p2N}+r-O4r{l`2U
z_wegB=ah#p&eS>K;TI1lB@s~r1t`X-BR=hcb4Nhszj`?5;ZM%2hu=K>?%{%miyqF)
z@HxysnAYazrR2E)XAQ}sDrT5V!l#9Q(HIW}Vkj636Cmxp;^C?!YRc24|1c?exF#;T
z&a5JUn(55{1ald(SSS|W1#Tyep>PZtF%*fRXbij;+!{l%Sa^51MQCxMC4`m~T1qJO
zP=;6O7|IBTxNHpN(zv{UiZ_(oL~RA36@{{wN-<OxTt(>H2U?OzlTz*-QlxQq3{_)j
z5kt!uA~EE|P$!1E<eX4)W2g}e-`R>7?u?;YEPPucx1EKzJ5xW&tIl0S*&KqJG1Q8o
zb_{bKGOKTQNGo(PN$bT>KZXYEH-@}e_@=x`#ZA8N?_XQJZ@bedhQ={8i^19MP`*hF
zO{rv5_&RJ3uv$aZ&d6^r95N?=ueORIKNh~|>YiBmso|~|+Q-5TJaOw7+Qe{o3~hyT
zv6x9dKjO7x^J~hF-)Sqmm>pu6P*NqI8txT6_r)+}bfb<!I|*gggE4fDA&4OvLzfu3
z#?UVYg&vOK;aIr2?IH9Lq1|KHd?oT|4Be#2+UswH+uia1M0&>XSPZ>lDBI8M6XU-r
zE%JMd*o)gknZCmOWvE8?sxibkgvohY40;TP_?&!KfGN}xYSUc;_KphQ$I2@zMNjAt
zjjebLi5UD?m@Vn*$=e;iagwi(+}}EX`OISdV<0#_F>gQ&q>l@IB8Ic2b27@RPt$ub
z+>$`)1fGrYi!k-Y7zW1hoZ#n$z95uUZ=cI~DTYBYtcqiG952W4N(`UJ@I?%RV;B;{
zCoy~)3vWhUjl5T5crAvZF$|00gOG{gF}zNnm&toShEDG{b!Xl;B8HJMydl9nTIie7
z{H+*933ywW?+7j>_+5_la)e#HCq)8oy$=0ZXUc0WnW#UEVQh?F`-ZOIntkH!rd;FW
zVz@rK>9Xz4$1#wO7dk=cM4^*}P8K>v+EQ$444=g?J%$-EOyjbZjS92GrxUXE8F@2f
zm=(jk80N<?o2wv(x%9)CI?QZW`3m@v4VgVy{AOv3{RQi|6S5b?uuznwa&q~04Hm`l
zCH)Y`{c$XgVF|ND97W?;N;5b|F`Qr)ieW_zJ7U-w!^+hBa(hqz(;)-utd3z#3~PnI
zPAHc-2R`s@9r|`-4ChMJ-x|Zxr7bowXt`LHM#$MB{5c}CO<HXi%7$$9RSaLp@O=z>
zWB5k$*lv;kHiqwF*d;inp+LL=we1nk{3W60A4Jc=7=DalAEPdY1Hz#^mD3xfhXm(L
z&-*EcRKGtn|4h$2EcA#_7LUeoOz`eLI*Y%=aFS~$hQDJt6~pNm&d2Zv<6nCJP3T!>
z8v?;83%Tc^Rlf@-W#I)G(Vt?&MWL63(wQ9lWx*+{uEcOPhW}zH5XV2F;kwX&g<ccN
z9S&RF5S-FqFdq86u+Tz6hltNJ1gB(*#Zf$tnsL;MqeL7f<ERqH?QxWf<CZwe$8l>M
zrQ_kQyR5V-BXpN|xZF*8ZWCNdXa%7ag>r8|t11gl^>{}dnQ`RCfjF{+9}$`@w5rfn
zwd=7}j^I?QJH>|T!l@=SHI^DT$<&UcP8==bXc<S{IO@gGD2~Q))EAisLi28F+wi8g
zO$0X++EnOR@m2GiWLm|MA4j`5+Q)GhuU+-;mfF@r+X&^(ik7#%sZ|HT_X)j6=)FRp
zt{O^q6r394193bU$EY~oj-zuNUE)Z_(Lau^aXb`<5{DYc!*M(k$76ByisMmf+e2tK
zq1}aY-BEK-!70tX#oE5Y=_52XJN<5w(c;kKaN~%^VF=$AY6`W4Zfz9W><CV2_5>${
z#)QU&j+SWj1yeHMh%VG-G!BU4@i<<IV{jZ##PMVtFU0X;98VF9Y4DuLKOM(2aXc&d
zl0@1IqV4&#HtHEDc#zPSgr@p^`6ihmal9JG>v4>T<2B(A6FO9ADu##OBtKGYcvCoU
z2u;P<TQ|wP!#Ip%MjSKa7#+uZaZHF~VjS<s`8gVN&bT<ni2PWgAKs+rqnq@6EO`7)
zoJny^rbFh}|16Fv@i2RTDz%>o-L^f4oT)d-Pm70nY`V}?mY5aC>^MGWThTKo9&Y^R
z$1zuA=G`Q@K=8twIFwuz#}X#|IKGr#7T?s@GO=fcaFz>w;ZQl+v+^dHHF2zs<9r-{
z#IY{U!v^tP9J}J!5XZ(icF--caGSj;jxBNQ-tKVgyEz_yPT?rF#<4Aq?KfQ%;2vye
z9ACxpwe-%9%)Ezw6UVpGoWhg|X&igvI2OloE}8Oq-^cMo9Q$PKdxgVWe3O}#_s4M{
z4t~I)3?KCz6ufa!gCFBKL<<)+_(|x`LRmZ<#}UCth4#y7Nal$+eu?939KXhKGLBPm
zoQ~s6JbVgqaB&+Bq}YV;&hk{l@MATL=i=dKmfzy|T>w46Ag3f(D4Se}<04l#AJHUm
zDULtmxE9CtI4;NW7xR1^ylek0EB8tqSEWd`^cyvB)60(l{|fV)8Ok5q9e#SEdvC<?
zUmW}_Qy>vOvf!fzrf%vfltAGGG7>0~K&eEye<(_tK=A}hB*0BLZ=ht>w_27=gu~%y
zE~YYW3^)otz!}-LL74=~CU8B0CwDmI5-3lQz*7m_n!s%d<R*XwDkM-bfhq~yo(OlU
zl@j4QQcLY{Dks7RhI~MZuI=tfATtqeH6w{IfGZVLvl7ToU{V=%e?9Q3nh4+C%VJI<
ze3fMG4(F|0?al<MCD1j2heTEN1ZpKvTX2m8Y6=+II@=ha)k&ak0(T3Coz@f3EP?uI
zPM&}U3I38fw2D_F0gV%AlIAo`U{3e&8%bWxh1o)AOQEfV<|lBMfYw4O*(MR52ujd4
zfvQa`UhNWSFSvuydlI-ef&0?64+!X(K&Le4{sa;|Og4Nl&FL(li)beQ;RGI$?sTD#
za<bCBcN5TEXb+)16L?HOuLOE0`2Y9+jaNyaui$=Z&W2ANRq%UP!#8m8%HI*bB;DW)
zCSXaGE!0oINw;znhzj=7oLB<!G)^!c4u;<m^9qES6xu(50RkQu`h-x*3}}w06L?07
zm%0B>;JE}ACGcee&nNIg0`Idbffo}Pn7~^Je7CScwO6#47#Oc;!xI>kz{`SPN#Ioh
z<PT<Sr}2%F`Q*GN#i0od6Odw(|9S!=gflWN|3(6D3f|kK5d}sGemh<JP6F?y@n`|>
z2`$pKQJb0d$0RTzfr*Usne{(RV5|V*j}jP{#vcn9FEqNl<)j2AGwRYhrwEuP^pgZW
zP4lM;_>2qfpFCPMU5Yajn3=#V!Lw7GznZi5`KzG}uek}#OJKfKElA*V0SkrBAOBEF
z=8FUtPHIcMIDsVz>`q`$0!tHE#x-s<+L6HW1Xd)lDS^%6{FMo;6R=9?YN4EzH3_Uu
z<6U`8)(hSsbYq&|b!}rxZjoY}aqYJX*p{x{P6G<(Q-Ie_VSbgs*Xi1C1bj=Hz%Icj
zZpr5#mMHwajOa)LM+NLn;0FQw64)=`Kmvyn_$h&dQsiKN6magkN&IsHhtvFZv+|eU
z8+zkd0>=~hBh``6jy;?Fn!qoDPbP3GfzyJ|2&EakbDd3N{zCp-8vmBS?`eEqK#v{H
zg*4|P?*eK3X9DF)npDMg@mB(WCvb%spi8^)CCsY{{KMRyz^G3(UVK$I>9quMDyszN
z-%xJQ|C93mOJG5<e5TogJ_`BaS80WPbo9~5M~06gK8pG%<|Ee!d=&Rl!p9vxGJTZv
zQOZYYA7!K!zlyp=K$|8S56dm<qnwXheV%C(>f~=T%KQ96D*W}!lE+M*-dVv%MIV)X
z?3Hs_$*(N<b{|zzO$LOolHo;dq*=nO>Lc3^Zy8jW`awv<M~+lc=0tDvP9N2LH22ZM
zM|B@HeAM$%-$zY9%xSfK)bUZv4-bmmEx#t>Z$H?uuFrg%RkNQ-4G$#v2NE>!(a;Bf
z8*{q5*~mv@Kl~w3GvQF41~d^fnhKq$n%(zgQGZJxt$eie(cVYCkGp)d_R)sUJgB~S
zCWkh&-@C<<L;KaXKF()ZJgl-;Q;o_y__#*~axeXMC6isSqu2kA+~=d)zo7?;sNold
z_lwM9J{}P8ppVWzy7=fyF(2K1JmmBJq2?n}+clB(umHZZ?@<BNz#l~Qpbh`#9PY36
z6ec<ST4(c3F1@7K+eaTCeSP%vk@V5uhvGx^5%-bsp{4ccKDIs-nq-I*2uvSVy4LpL
z2zJw)s1HwYOz2xX!UK4D`922rF#}POdTkKjB{aat<3679@wAU8e30{`w7NFbOm)il
zM6>NPobCha{);(e@+Cyi`*^{}fdB^syhyb^#s>H(z)L;`F;D}P4fwZEyy9b#k1u@;
z_QS2khZOTM#K)^XUh^^3$6G!|N!2i+BYX@OK;hQ~ys=Lu9+|>E-V|{6yAGLe`*=r+
z@B4Vy$7sRt3H=}s-~QZks+aYXmqp1Be2fu(i5roW!jF86^D)cEY#$#>)g&L2eT)}8
zK`0we<V3vd6q~I~@$rezf5&5*k5ALJQ++J1VNq=KOWCBUzSzZdA2WQ+6tP=w7>i2h
zr^M#?nCD}@kGWFyUS8;v1!-*yef;uk4mqFu_#!RvZOu$_7W-J@<CxFa&||5OWj?<1
zvCGGDA1i!p^0C>+N*}9ytmfCgKIXIuHS?mvwfyqe#|BZjKHb;svN?T==g^HCg>$fm
z#U@)AW>Wmx$2I{weC+hGT`)&Mg|}7=NBR{l>7~~CK_&f0YQN<~m(Hi2E0wU@#~vRC
zef;R-d#U}w$3Es9!EDY}`_uRUGr*1T`&??Hz^=|X<m0f9BR+m&G|Ke-%xT);uvNz!
zk?u0}N2NLCPta*T{`PUj$4MWjxFosQeVq1j#z*;+Ip=(w6=532UVatK!LE8kVevPy
ziue!VU-WUw#|6RTcZZSlr(jz6mw?MYIHBb8I#~%<ef-1J9iV7{e|=mFa~BE*xGuu~
z`Jg-{Z!nq57>`V7cdSn4)*Viv0EGi&1o)*=7((~IqA`Rxz?_QN#e%R&$pEDS6c=0~
z2)#`ix|dbA2(z@%)YKfk9w`@~e1Jy-bPI56fZGBz56~h&g#Z-;)Cf>BK&1ec15^zV
z2~Z`#?E$hx33c8PAXD&<JHnOacv+kdg6x3b+Jt_{k=on<2ylLfGqI<3saVdP0a9MA
zmex~U00n9Vs4cirfI0!{2569$VM8jcC&l_g^8&m&#yL<q?6G0+zct=CK$8GX)2-;A
zW`Y^CUH7Ri1GEazA>cVe$PaLrRJ9e_IzSr%|H~DEX)ql~{p|v@7fx2)aAn;qxKn`p
z1KcN=%#HyVX>9U9fCmHq%Lxw!$Zm_y0lJ9HaNDF9lMLyNN}<6I3;&U{23puXKo91|
z00RT`4DeV0FF-6nuK>LR=mCrXeMDXfpa$q0pq~_(Mi>UE<)#H;CSfm)PKHi1)B2qN
zRvO#sRupgpM5V|nU@;yb5#Xr+PY3V=1OfU77$5@40PKY_yg1m$gD_z}DOFDdcviA*
z#s9)k&z<YsQ8Ak{`waO3o)ekph0;jI375|cQsgAQ6kt$*5dlU9pf_F)FgU;v#`&)~
zuZRpgeO16Pq169c5T=fy0ruS%#{Y2Pzb=%T+4~y|i2(1X<=+bMPJnl%)u;e(2jCP?
zPbw5g2Y62;IfRrCndm+c8Mk=Om;eQKIv<JvBWhe)=h6Tl2N)ml7)eYN=Hh@y#)WEU
z2ACCKa)2oTJ_+z?fa&R0Qw2;D`dNTZBid2^Yb%TmUNeMWai=poz?=XJ1AHD}t}qt}
zohOu%^SL~2Q<D`(SCjJvN0+YcwlGYOU#8au@e)?a1T71&Jiv+oD@Ax;fK>rj2ly_)
zt^jKS9>a*O0k$y}>{HhT{5fJcqV)kb1mJSpD8-D5*>n+$n**LD6$<daY1-z$mbpE^
zjsQCY9*}}Xr@{z)Y+Yf}uSJaD8v(p2u=%$EQpS_NJHXzw%$@+>r!hPFL2!+oVSMgS
z^Dif|ehhGknUgaW;HLmT2RIwx*8qnD9AW$fI2qt*fMWqp1UvvF!hibn$7#od@ZS(E
z*XTSDfPeNU<sS*T+dsuM+c)EMfU#eNe-S+s;KQH7zZRYg@LPbt0{k7|zZ#L>1N;%-
z0&`jzU|BrNnr$z#Ei*qOSq)EbyA*`~lBoAaSaq51?W^&e!z%%<2Ka|*Kfp9O&uUkV
z@NWXwq%HreNSykk;^oba{|j(;5^a+xkVL^G3MD~iL}=k8GLk5gMA0NFBvCPmVo4NF
zhO<y63EnJ9BvDF=C57fa8AjJFf=df!@nRNFh($RmGOd*ta4Q>@v{-vvl0WDQb2zU`
zNmNPVb`hwY#1%=!<lm7*W)fM#pP3c*o-MsIEQzZo!8;f8XHF8iNg#<klW3Gg<0Psj
zQ9X&eNz{|JHH6kqqGl3L{TSx+TEb}~(_Ke!H^KFjXeh<JBpM{)i-n9LdWNHZcVVPS
z5>1oHPvR~SYbLa163xXhE|wPJz%74-VcAM*i;HvEytNd`ZzD4FNxLN4Cox=#9g?^w
z36JBgn|W^%_X$%^qGJ-BlIWg9k0kC-;(;W(Ch?G{db@1SgGqEw{%;S{MVQS;wEJLY
zG4}Fs65WLJh|ouclApTMrEWAmljxH~U#WU5iCzMF3uWTvs43qs2_*?tn3W_CXo6q5
z8|CIH1^20j6iuO)P`0uKI6~bdqG>)CV=Rey5(&CDiGfMHlthq3GKr^?cqWPdNemF-
zr;>PFyg_YGCNbzy^9iBNdui;KwsCnf&p(^Qb4k3A#Ea7Ed7=MYj|})BoVC<2>3k{~
z#KZrScr}UFl6Xbti_9TO43;LmO@wB1c8cc=6%O$*I;Z&mWti8K7?H%(aT+x{I~~$D
zlXxqM8INP;;~161+qAzw2K2`}NxaKd(;vnAV{{VlC9x`r)k(ac#0Qj5VrCL!lK7C8
zuWCFkiLpt1l*A`Ve450#BtA}JQWBGs;Sq2=BWQdwJch`2tO-d>q-~DHqk%|yaF8WG
zh@Fx|-hT#}Jb7bk5}%3M@RXsdk)_qcR5M*TOg_Z3l9-*u7fCD<=A0zvB{4sVxl*iH
zD1TDnFe&}<Wafe-77DZYGW~OAfMq)W?98e!lUSU@iX>Jhu_TG5$uRYiU#Naa7Z%N5
zmc-}pYs-Z)0j6pnmlNUEB>x{%-vK2>@qG<T4uU92c462{4$CIu0+Izq1r&)hy9*2|
zVP`r_hneXfP$ZcnDj<pkL4pw#L{M_hL4qP6N>W4+1W~@*Z+?5e|2cKux%KK*diCmc
zs;<J?A{;Hku_An1gzt*5sR)~C(!)xxE5e2%Y%IchM&-{k{z=UO`SW;k-S3tnY%RjR
zBJ3~1wjyjV!p<V>D#8wyHrjJ;D|39@agHFjWL{!>kh|;bF2WwVg=v2NM88)+#Siii
zaLP!(juhcg5e^sOdr3<E!%pER+xRlx&2L*ikL9qm<3;$P2!9sgN)di6!igfBDZ(%G
zKSemnsnM?V&orkZoMw-@dTWxCn>sS%*h=0Kk&~IeU!}SWMYvdmvz$<k(z)9C9G%ID
z!1*Gug9McStq6Ze-<j+8BA(HlcS)k$IFSOEMLzY6|0<nB5&kK{ts-yJ;A`}mMYvIf
z>zrA#f;#rO|7MZ5J%W>-Mq0PGr^bJa@E`qr2&F=(cHVzmnzX)=msBF;*<necvuYQX
z4taSQ%7##;7$4q}&R-z8Nlt|jDu&QHgf<~m3ZZfc^+NE4_!A1MgitGl+96a8;m#25
z3gPaM_vVDJS*nG+<;r}cl6<pKJ%pN}|E=7vAt3oaXWc)(dqSuaLTU(Uk|oJczVN9V
z`rnByyN(1-f8whjLb~K_5duPJAh@~6Gz_6}2u)bRkwBvmcp3;_7qIH4Av6;)wkrAl
zf&W9XD3;$cgp82)&WE^F2$>?56+(`HY@y7;_T(00?wHm#gmxhe4PjUa?L+7g!u=sU
z5JFxE9Yg36Le~&Fi4vIiiCX9!!o3n@V><s^NM^SXx`)t9%IpzBPXTNLTgZ1x1eCci
z<h}J`=q;d62qWI}7U%R0;lU6FhVYo=dMJbeAv_}Z;Sl<TytV87h4Muc@w#&LljS@r
zJ>_>0c4vhA;WbD~9xQZ7$XlsS$>AaRLwGWTF(Cv($PZyu2tjFofz(nM!prji+6alV
zsUrm>f2tZC!V@xxwQAOXoRT@-pINMtqdYc*aUqNkp-AMD-AoP>JDwaJB?L8ugCQIW
zK?^|-VPOa#gb)eA2;qegUJSwHaEI_r2$MswX}}>oEoK}GAs)g+TA*x9;ZWd$e}W{r
zLK8x{4HWI1JA^!yOp^IBiH1GSn>hKhp~sXEriCy)#ACSYP8G4<J|Bza#DA6(p<U^|
z>q|Ws!t){TCrSqXoB0wu8^Svw%n|ulLU=WV*FyMBc1C(Vgf}GPn{52Oz8TauzaLf1
z<9?OiufZX_Ek(@~K6gQ!#mQAYFk2|g=V=u0hVWhpb3=HaQ%`mpA)hUo$FU9})Wt{U
z@(;ax(FIZz0sq!q6vE;Vz6)Vp2p@*9B!n+R_$q{@AuJ2w3#o2-2p>tCSA_7fa85Q$
z|4cZagz%{Vmd3t+E~#h7j%4G>;a+OoQ+k?gzOgcdRUv#$D{bNnZ1b%au+isRE7`wc
zU8VBY2o0px{kFJFUU$}qupxw<v>9P;3}IUc+e6qSQQk;zmRwteZWYQMCV8pq+Sa#2
zWM+QnyZUYZ?hy8bus4K#A@G{WP`Jr+bZpOl5jzmVq*bYlxS6WYH>Q8!a0uU1IbnPl
z#*q+?hR`;Qc46<bdn|<WAzTRIcnCj)@M8!kq~2eI{uII~0qoI90k4lwJuTp8p=X57
zl>NSb4dF~D-&x^M{v6GtRDekrX&4;bFsg*{dkB|8xXmdR26wO-w$R&G;g1k5)BHlX
z62jGxcR9Nm!e1d=3*m-DdHEZ&GXHuAf3xM~^LVkN44KJ25B~|_RtW!!<bOh$%A{m!
z$uLsFC?5uQWhoW*c6wnb9mYG4)J@_tVU!JHZ7W~7FbpnJESpDMA&iP)R0@0lXum0c
zY7<nJC?7QTHB7G>M(r@}345DH-Wf)<FzyP28_3)(v_=@!1zfJ2I=*yXO~Fj9CE#p*
zU!5>g!)Ovl(=gJ);LQxen6u1ZH;j4`^@Z`q_F%f;`a-)j@_qe90V%~Ah;YL&8VMk$
zaTpJ*DIjPT2KU^{346yOH4mdj80W7Rv<xFN>}~ay5eBc{3x)=WNhg2l&k7@3l2&dn
zSh_t(eycV9T#Bvnw-(wa4DKb(X!|fagu#91^TWssqhlBkhVf7sox<J(?<Taf(0he;
z5z3^lVI=pk>K;aqFnWg3OOhT4<30iR7fbdQ(1$h3-|O6UirE?ZhP~~HJX|a}B#eGx
z^bcb|7>|T8xS0Q_fI&hB3Vlo{|HuEkn|Jq;*51b*vxf?En9$)unZ)g?KU|%9eSJDN
zUoH$|Y8cbP7!k(EFw`)#u(z4&s4&KaF*b}~7^B0qWN&w@$HRCc?Cr$(q{y5apH_XR
zw>9FpFvf=wN+xyoQL;#Ia@WLgF;)a{A4NTkNEl8SZrJ-f%m~8{BN~P&0+tlc=i;mk
zAB9;+O!)EQa=61}B8&-PObX)}>C{Bpn-s;~Jtfv_7NxO-Gvm`HOKEIU<LzF<ri8uy
zs|ltPaCXqH!gwx>=fij{jMv%0l)M+hcqxpR!+7zE|3!+)PV)P6y}hit1;Hy}yvmmI
zq?=~mHq>u~F++0kh=Di5cuVkXp>KyVQvma_VY7-ct6+40^VD~R^IjNp1@NT-lim;G
zqaMBw!k8Dv{4gKe(-wrmHvr7CP{g<;1;v<skwpF5eM`bv8b)^oJrpbpV>!nwj1mey
z3gcsHgDxnHPr~>#jQwF82;;LbJ`ZD67+;66f*vF6ZNW-6^(80!B0u-bUEk36mEe^e
z*46&x-npy8-X3D>!`KkUH({)yVf^j?Da*GujBjNWz6)cW0Pe}g-5!p$@bMOUV;Gyl
z*cryIFs5(wZ4P5=7~8_w!pT^M8^i~u4a(Cp)3<Xj)DP?k<K*dr;JShg9>-Nbuv?gW
z*!?hm?dBtAp9nDTzo!c*$-D={I287_`#To)P8Z_#M~B1sKJ1;Fc7$%>s{-Y$pZI7P
z+qVY^j?;?hi=OkZdolmVFiwQQ!`FTa<5U>k2IZX;O3=8M@3deZKE>!SVeel0&oHjA
zC1ISE=(#X1hVh%=^I=>N(9h>>+R5;{L@x`y6viK%Vnaug|4k#`(i-X9aGUrl+bjaa
ze+jr2#&rR|jZP)=hTxlF{1e74!T$;US7_i?0c9AL-{&i-csKu*72Kg9MQ|wvr4{dH
zri_9Linq~sS)t{GGFo252pB3VsHEWSxBUz=DyLUbP*p)q1+^6Kj*I)J-Kn6Og1Z#(
zVTzk_AATfow}Phc_^T@@oa<+(A>fHk>9rNyLoo%d71U9Xs-TgA#tPCD)KySlLAv5y
zL3qiiCxF<e;D_x&0w`#pprP>V*7qgFcx7qg)Fp1h8YL-PK{Ex-6=X`ZMR7S93R()D
z^m#tzTPa}PvPZog&j_*<Jo3~Cf*g@aUbEULXse*Jf_oLTQ^2#*_-ZasL3_cBc2My9
z_F$6VQ9&ogdw0jcJwm%E=&FE*M8oT*c*oT-v}x`mow+K%r-EJz9#`;$g8LNoRxnJ#
za0Pu7+^^s<QT_vpcTHjFr=V{!eo(<fNi4LjoJv5M{t5;N=Me>u3P?Vp4pcB-_D&p>
z%*B(56bunOw3y>G_xTk(yE(m3!3f3M$}gZ`RL8u01qA|#Z}s!`1{|sIxH``pj8ece
zFM>ix3uUxjlk_JQj8X8qf;SY5RWMG$MCyvFR#2pPJI*-@LJGnPOa+z#MS-e#yKY8=
zYC^d?ie3zu#9$~Ww<E~CN^IfBghqujmAjzC735|5D6nr_Dr<2SB&50tLK97WWInB6
zk^=4~{j%a6eew*kf~mA&1@Au+-~}<9HiC4Tg69-GPdzADz0&_|Qg~G0!u#IQKQAbt
z%#0S^)^;x{cu90P|9AnTyyJRB!K;dQ^Y)t1qsK-O&rt9tjXW=Ju7bBXk7yX3@@6aG
zhOsjh%#!G4pN|`IzTxvR=^fz^%n|S|)mzNrj-Br-n8!K$SHXO0a)qD!Yw>N&0tKWC
z6)frCBUr59Lj|Ac_*BOd1xpoVXlSKjnS$jC92KsLkC;V4e-#5%e4^k}1>IE7OMIr_
zb9P+8H=LyHO0Q7x6`Lx);tMg$FNIIZReT}l_ja)PS^;;7;m)7jCY{kW3f3z4Pr+>k
z-zxY{!EsJu&IJYQ73@;5Tfqhe8x?F(uvNjPVmsW-avt+e`bd#YeztLTq~!5(yj{V-
z?cV#79SU|T;E@^0bH1hw4D3;`SHTelM`^m_)AlJipx~esxL?7oy`v7UEjYwtvr-NV
zlRFpjc&y{CeBUcLD~ChzTn|=vM*)tB0L}PE1t&PK6<kvAlY)~9exX-Xa7w{x+DuW}
z8Ie3PKJ8}#9D430$gPbC&MG)3%!|xbK5$;a1<vk%BiRztiFHP7mo1fkQ@rcr@pT1%
zD7dWPx`MwI{HfrIf~yMtk`g94br;_7UjAQWy?n-!Bh{{Dd3PE&6x^gE-4Wz@F%<ZR
zJyq~8omIs=9!W#Bj6YsLO4XH6QBp;H73nHcRFqP2mx{YplvYtjMI{xLRg_i1WBAIe
zsG#!nPj3i#Fp63+(7SmdPfsu#q*qiyHFnw&yhBA56;)N-sd}!-zbBs^C*aLVHR14w
zeV&c-Nz20ODr%@mQ&Cq%O%=6N@I_x8)q9kvt$M?HkLsOk!@lqqZgQ4)_m!&t@9yiN
zJq7ht_@uxY*Zt4QaZx;}1S%S+Xw8f&8mefdqPdC|B1ZK#R?$R7=i>!URWxH!V^ev5
z$YNPOZ^l}x$WW1~B1;7wV=EQQM+C-KOK(=nJEA39#g@9hjca^4DtJH=_vFu|9y;go
zTq<g#t%`OkI<asS?NxM;8aq;-Vx@T!Wg)SK-XThbJA(JB=%S+6v3y<!cYNm2uBx|@
zI798z1>IHjP|=eDD*C9nU-fRQD&_k0mcIK`^j5(WI=0kEk1h5;K&*P#XimciRXjf|
z?_t$*l>`s5o%1}<PdF@r{6|zgDpOeJfU0;*#b_0es~E&WR18%yOvMmsEzeZq{N<$J
z*bP_VS20q>C`k&a-j}9))jJ`GsRa@xr%=EMp?q!5>{;zf2PMm%cs@5DdqTyNs<%(I
zqGF7SvDCBb9i+mef5xdO63OwZce<apBS^|JLn`Q030TpMhN-HG&rbw2F%sGdRmxf-
zDhw5-3QJ0es)z}&Rqr{48RHU7e)CG6*pg5&LB%^N=BSvc;wcp`P)jPFRxwG%WEE3X
zEX(%ZAwMHv@(ypq+o>w1sotC3e)2YHx@fZW4ga&MciDPQD8cgrj*m-wi6*V$EfsI8
zctyplDrRs_jZfpni>1A$;&s)#J?8MeA%pnJZ~k7x^4=7Dd9}CI*i03(XwPy4+icof
zPT@P_(wK!MaF?)mRlG+9YG|Ngu8Q|n%vZ5M#XQwJQ0c5}gZ%Qjg12@A7pnL`#Yq*X
zR4h`lSj7ev8>t@^OH_QJ;!9D{QrbM-zTjm-d3NE)bp9$nqvloozOI1d_}cM;PdP*7
z9(#p|O=*x$uQI-DA@^tdO2tarfQmI@39D3mtztD*m*$-$MW3@|M{rKvbdD**S{2`^
zSf}D!HcxhMqsJqEJ%?am;L8^2G>>n)`8KK8tl|Kj45y)rttxh?*r{S0`}K*RpGUW=
z|8vf)f@g;A;x%hi&K?ze1?;BqfqcG5{|&x<D)w{Gj~5I~$>WugfLRW4_OS#N$5nh!
z`<d=PqT;CJU36DKITav>A=)7Q2Ngf6IHBSv5u*h%J5K@{Q~V6h^I}fZKIuO-l+kcT
z#V;!UQgKbiuPV+`hbk_qIH%$~ZCk}f`rhGr^du~YCQ4_*=x?0(a)c0{K>tv2S;bXR
z=AZOz%lutcToJ&BUp3E1MKN#hZ&I&w+*SOi;<kz#DsHOyN5%B!zCGfBsdGx+QoS=+
z{}oC=otMzO>0DAnisoG%ep#71ZhRWG%1}!4j%wXqFTJdWavG{@sG*^}h6)-gX{fA$
z$3${iD{5E;AD`M-{vDb(a8)(jDWHlJ&ZKG@?h?-3LO1LPvM%x&c%`nXp_YdFn)fNB
zwuXB&q-m(Dp^k=$Lr10xWm9PkWAl9E)YH6iXWM*I8VmV;N07Zp*TAz;4zBXH5NxP<
z_bQDwG|{{(Q6tTpxpehSh2KK+UI|j5ndUuBG}pL9Dvh9}=DqGCpWoCnHDqb{Si>h8
zvNhyrcvi!68gkiA4K~Zs(1uE577blAwA0XDLnjTLHFVIBr-2Vv9W`XG^^Nc4xl_I_
zX5a%C@r4~h?rU9VlfSEmZW<H~s)p_wdT1D?VYr5#8hU9Mpy3e>_i5;@;Xw@#Y3Re+
zSLE~B^neB)%630F%lvPi4D{9T0DQd6v9k|Lm-`8&Bssj(=uZs~&m(wL!$1v#Gz=C2
zo}~7eB=KrX$!e7fhiDi|d)OJwsFO~OaT{%x?56@XJfY!94fz@hG>p;^loAT5b^*!5
zk46gSg_VcXjn=?534E7AW8=Ne;~KwWdvB}8Xc((uyoMqT<1}nu?W?`h`-_Kx+ct(Y
z@QP1NyCMxsfh~3hH4VB9pP?bb_RE|0vV4zphj)|7U}~_0|LlF9|BPvfYe;CAAh{e3
zE~DvQ131?>3fC&9Pt@=f8>#Ui81EtdX^nqPj%3o-b>4Xy43jlXm82;eu1xh$*x(~2
zf0{6-Yu<Ls+&lMqsp2&auWNWg!;2DqiN-Uu^c1;Xyv&gb<h`QdRn2=+zV)T|u>6LI
zE!Xgoh8cq2q-9b-!%PkDYnZ2DmWJ6H-qrA)hS(2*cQnkQ-qz<6^Go08#s1%0_`1%|
zPoBdvmqSy=)5d%a3p6a&@S!MVA+yi&FVe94hrkCyw>R_glx;qJETPf{=Pje9Md~iq
z!2RCIBxNCox93w8Jb<2*2jzUK;WN&C9hG%_u3?3SKdBQ9UugJJ!!`}uHGHLErG~W{
zzSZ#juJlzJzLtLN9-hbZZn9GXtLYOotdTM0T;r>IKKOj6VI9pt!xjzeHEhtZi8$5w
zbV`87>ui)+N#QYf7S7-3$!DecwrV&f(~5i^h_*w+P7QxZUAx#p4L@l(sbP<Xy&8^a
zII3ZvhW#22YxrKn!8G3iQqJGng}p`v1`f_UB$!d2&coBz_>w1C(J>9jr2!@8`S*Y6
z@3J%a0|#Bhkexy1Iw63VX8@hja9YE84Hq>0Oy^GrlIA-r^cM}ka>~e8`)Ee`xK62|
zoxz=@^Ukr^rSo3f8JxGqKW$jxqK4nt$S=L)fqvI;iH5N=$PVri%2BvX<^b<A@l_3f
zagypNrQ@20>l*&m@Sldi=`B~K&Tg3ckLEp5-q3J%XYeMy+#c^NA?p8@@Ofz0ZP8T;
z-Sd;=^J9HU-Fy2@wUd_CQAS5u9p!ZI)dbbvptI-17`}A!%j>8h8Cgz6-FsZ+cYo45
zbX3t%Uq`x*sygn}k*1@rj%qsY(osvwzgq_fy@rk(3%vWc>JlYjr8RY&9h%3wYK!DO
zl0@M;I#LC*3P$Tm)y$%#c}?=^7%<N(3OX9-7_P&wqoIyQIy&pPS4U$VO(aWO9ZhvK
z(~+$sM@R6kKyw`#I$G)AP`1#~QU^aDENGF>XvtkcYD_Jcm#HI52LVIhH}Z3JwAOJs
z&Bvt|9GXKd@`>B%pn1@2+UaPoql1n-9i4Q1zsI+EbwS1+Uq>CUeq9h;Q@}DAs(12r
zq28!l9es6l)6rc=PaVD3S~2e)I@-?lGcekBclv!gdP^gDCRD$_J!T(~ykDwd^g$gD
z>3B@XAmKl(qd(OmxS!BqQ7XkA5j;@nqe8jmHSLYo&Mpt8mNxr`NJV@pTA@T>sE%Qr
z?_c}byFSzM13L0`Ow%!4M}dw)9fl55#|RxGIb=G<>lj7F>UcuOlTv<4s&BN8&_{lT
z$ElORNCKMoZ<`C~6UOLZrDH|yY(Nnub?<tuv9zqhu#`X#piuw1H{-~xvCE^>ysjg{
z@hz3dAtMd1OSg15I$Rw#J0f{wI^sH55d(X)W45QdgpLV1p3yN`8ur0T|3n>6>3Et0
z_f|fq;Usn~vyglWv;9+O#?Seu>YxW>@V@@+3KBf4<2fDkbj;WByp9)i%+T?sju)j>
zFY9<k2fO(aZR~{C!dHd=x=^}{*Ermx0xX$HZwPZ&zrb5M-q!K1j`wuT)OiG3;2j-b
zruhhF>6k4XVrJp!%%L5Y46vOXow+*RmoB$j<nOX8NZV%P7wA|hB`?wO0R>Whi*+3M
z$}_@6BHZjQuc!}2rm#usQXR_#FW2$02z(^HrsJa6V=^N?qx08shk+^vR_ORb#~B^J
zu#q~xqN;W5(Xmp;Djn-}Y~aZ1Sgm7?j<q`Y=)~}ij)M=C=Ccy%w>rMlQPi$9F%OSh
zr+W`m{5HoZXY@uLn{;f`v0e8b*f;Cgs$&XIeE2c2MgQOPHLZoW-xS^<mXkbma;M;3
zZ2T(!w4r%>b?nn|M8{Db`>6pPhl+j3LH&O_3bLHXcX>A<huQbl{_k}zfK21v>@gk3
zb)3-glVstw<_8^one(IWeX!%33Vvkay(KfA)NzV#Es%Fw$KNfzH~BwPKc(^*-X2u<
zS2{NiYXoy6IH%)0r)PxMTwKs`QAchBtt0qN$L~6-M^GbzOBC3YQ#OKf5&R)lUl#hO
zjw_OMRmZ<<Tieoq@e-ipI^As7%$M7i{)e@TzzvbVDU|xTy)oyO@OjcJqyGv2woq17
zB7%|;?^?i+5<#hATsnd>f?wa0kxVTg!Ck_sAhe>;N)c3!;10nQs~SNS!GrpG1v1<j
zK{er&o9(?ExLYvm<#5-Gcs)&vpl$@Uic6>+!95YwiGc0rCT6L^X9t;=s;(D7%ZTSF
z7<>`bk03n)M9?6DrV;OLUc=(lCJ{7}@+sL^lDy7lrI3=-EQ02e+M-y7Ng0y2m2fhJ
zW(g--aE{Pq32h?YwlEzc$cvzD1Y<8XYZpO#5op{svwhzj*3vP8PLlnh2s%e_Z^YY1
z@4*PVh}eA+?HWP1h<5@n<+}^NhtQrvdkJNY4827UeT1@{`y+Tja9^P;mii&z(~?x$
zPiX(*5?KDD5e#Id5xfz>V-XCBU_t~FBN)t<_suDcU_=B%I9OdXhe~O~gbo*uKY~hC
zQvy;NtH_U_KvI*VGg7cCbW{Yv2u2GYCzSG!NAQH;Cxwm?I<`2KqdY!>q6k6}gvk`X
z5`h|lEm)(4^vz*lQ4D$n5#bv`$uT3aiZRWV87UkSPF$!XltV`0gka8G;-{oXlZErN
zP%<Y)@JunTE{D%fiD0U5rbRGaz_UW1i||k_uSw5K^aY_W3MKQU2woQaiqKb!`L9JV
zX;+W}Go*HQ|Lq9g6#Q1P47EKof>{yFrg=Qtio^E~hv|}cRwKh45qnoC)%bn{^CI{m
zf*&LJ`eMoX5quWG=MgLrJuDPU`#|U-p|q355qwyTmqf5s@G_yxg?=RTW1*i2{Z#1N
zb+ed#Me&Gii{Oh0zLe-!5o{>tuZ&<-G5%V>>Il9Outw<G;?!>=_)hS;V$OO29LJ5t
zoJ|5YN3cb}R<T&?VoBQV_6T-Fuv4_OFM|CM>=I4xj$n^4skFVKD5{Y<=Xf26;IPQh
z9u7uuC<2->r!Z5$mjOK@@<(a;cjO+UF&t?|a6AGU1M!Inexg4yP}0E32u?-tUj$cw
zFLhel_Lo%pv*0rk{377j2rdd>o6qtpAo#rWf`)p5)+>GaP59*eF5r^TKO(qX%>Prs
z6`@xnNGj@D1lJ?@n{M;l4EEv{r*_%0H|RejpfCC-f;D|}s%51xiQ!-ADLJ<zc=C&E
zHk*`UDF*&IR=TtS?h#SS@U%fQD`Vh`UrUuWJPRym;Q4c<c64f9-arMz^ET9EMFW)t
zR~GuL=&h=OI}Hpp@tBEf2JVui{wD4=P~E^s20k`W!$3^~0R#C4Y8j|)AlpEWfqM+p
zG0@OJBLfFc6r>vP8K`d{%|KlP^$hQ@EuMMAq}jWIg_r&5hIi7?(p7#KxYphG-XZUB
zq6Q+y573PbG%?V^KuZHn4ScmL$R&Tx1vD#;_FL>HGsD2#MunLMvJAA6>^vxhXAccJ
zR&Z!nko4-$1-S-V8@SIvZv$-%v^CJlKxejmp}(Dh_69l_=)Sq2w?B|)cvmPcCg~`E
zr>ir{mjL$~=t3C-J!m=Q@{SG9>uPvk#=8k^J8<OqEB>A=zg!+eF9E9_8hK?`kkLK{
z?l&;lzz_ou80c%@mudMA8JIEGdjfjUK-t|v-|isK_<PtuKLh;@4B#jjc<lZBw+lwT
z_2kG$3_NOJ)~W)YFh!<E4Gc1H?7E-Phvxc?zY2!3*cyT125#)~5e$=P`SEFf0pyTh
zV4%>z6a!NYj4&{g<10fv%0SS-7#fd((T4Xa=U9`}tldF^#~C$Xe&Byn_~h^u_;KvT
z?qI}#VPL$0A_H5;d!J}S2Eqmu13Ya_6-s8S9wRl5QJW6B(4A%Saz~9^S+USGU`g$v
z-N8w_gGQM=n+2B1Yw~+R%s||LW56}=w1G(m5(Z}O4%V*`INa37V=N{Zm}uZBcBf$>
zb+~M|cY?+<2KJQ?9NO(Y15OsaX?KvEX$Gbn;4-i|2A(zWoPk#iyvj*o;Eb92qJftT
zT-qIcfeqdhY_KQTaD3Y79|JEN$lDWqU{8?vHN*RweDX;C+Xh}Y@CL`uz?+<L3;l1=
z@HQ0?kp6Vfh*5ij<t`M=<X{>2a$`Z(tNEm}slYwKcMQzg6a0Kn@LdD%Q57uHz+wX*
z8klEbKHI~$xSSLR@)yubhXfWH==D?J+Be=o(p-1Mu!st|;=eUMZHa-U29_J%!RWNl
zWgL$6r3eyD(mD4DzHZ|C#K5QQk%=lMJ~QySf$t3*;r%~7gMp0(HnD}AN(R1VIn<AV
zRR&V_2EQ@zwSnDxg6H-GkACD|EtpZ_H3rslMnC6YeouOmzs~S(*S&AnG}=u$EzkNl
z(7HDIXJr)L_nv>Vfh`;e1I_>O54>5h)xZvRkPc*TaGT-1Guck#A2_nz?ED5d3wCkP
z_XhWJ7Vi!2Hn7J)&%MFndxNBd8;y8<Z*V^y3)QvPyZ#<DaLB-6POD%$9w11{uxV`S
zQBDdv0RvZPifJRx?H_gAzz+s~G;o3wfkW_G{!bLxR`4@BzBhPMFr%jooEF?@djX@Q
zXV{)rg)2Ase>HH{z&UngZ?M9?;AI2nY2+z^3sTxeTG8I%Z-RdpnM(%#kmwz)($BXl
zytX&UN}2I0b!DK0iIOIFl1#nEscPV+f$QQ@IJ5qiDVDx3_>X~G25!^)mCE~<-gRHF
z&%Pkf!ud}yPb?*8$?$xBnoluN%0xL6<xTKYPO0EXenTv6dS4RDm?$fN*xVPaV4~}J
z@29p(CU$+}t7v-DoPRoyQ`z)hBK@#?R8<pqn#eWLn*QI!T_zfuXhi={&L{p<6KN)@
zo2X%;rs=)FxySUbCU5`luVtdPiPIwkclH@cTF3Mb&t>S{e`H+~^-TCo)E8m*%YsoI
z^KxF!&;QH+>I#3l37BYL;{L<=cQ!1XwlA0jjZHK$y=AK{P0Sb)s3jlGo0@25df$4Q
zo5=bh(89#LZTUal_LF9qXk{YP^cF2-n;20&ka4si%LFNLj_`?@+Qvj%6ZdimOtdqR
z-pJR{L?;vNO>~eJ=9!qk&$F>P74xR$6mnGw7l(8<v1VV80k;dfn&@WYJ`=r7bT`q%
zL{AeRjZO{98?BK&eSCQ2MCfILXJ2N_%J0M8ndoPFUqBw9@EZR^LJ9hscu+7uWH7pa
zU+`fQ=l2B(+6@?4VZYam0VW=ih7mt%dIx0Fmku&9*u*y$)>s%~VkigBLNyD+Obq9I
zH}Sa%zlnf}sV1hG$Tv}7B5Xo2y{{*QCPtYEQc)5eDfGw&-?P*FqfI<+VvLEgv=9#K
zBL9;dh_-<m9eh3EW0a>(k2Afi<aiTB0{CYB(eY{Y1D-1|J%_+`6sif$gv$n-&`m^4
z*z5(1GQF4frim}Brt{1}uHm<YLnd*|{NK~JBOq?#;2Q6Iy`)yT3}ynGYGRU!i6)*h
zy(jmHn|$gMsRYlMm~47$0+%=Rk?ub2pF-=}AG9jukxn=9tclqs-ZAl<iRVqcZsH9S
zFPM1I#49FVr9Ow{za;c!6Gs~R7^Q<HWq8f>K9lj|9T(g(%2fd~OuR`uH^Jl1sg1Wy
z%rw1Y&}Rw#zh|Hm&oS{XjYRbP9<!KOWMZ+2_i4i>7IHNC{@?UIHxMi^@%5tt9tCy(
zW;u#oQn?O_hx2}DVu^`m!ZC8Z#ZgNIC;HZ9UPhP8lxN<LO?+Z{%i*{<iX;B1RDGeo
zZv_==;#U)AIRqxYGO@$NP7^CltTM6Q#0J)GVl@rk#9GrkC^oXer*`&zV|ri5I85J~
z_|C*S(>tS_2XH3`j)#vY|61B;Vv~ujCbo$H51`*{VvAr3P@V-c%XS%bmVEMFuY_GD
zcAGeE;s+CZOzbsr*u?iTzWYq<H*r94jmD`5=@35hAL3Z2datkfMw-z(*B0=N_Yo6E
zC3Q|iA5-~H+%Xd`$r0W^nmEDKh5lbm{AA)Jot257O`M{+a-m>-A7Ab<B;V|vp?@fq
zcYI9hvGzW`VdL$@w4T0moR}tV)00@ZVB#VzjZNYlH}SiPKTTYb9$hl=hjf;|Xi-0x
zg_*Q-cJ?Z(GjUA>Xzd;M2dR_m#j4<aFIB-~&2O6cN0_%v{A=Pr6Fl^sNi2u*9E(+r
zd?hWUSg2&-w+eZsEYE(*S}13swBRxpXdX0)oJPL#mUlU*V4<Rg<caf)9$fExJjb)H
z$`<ahP{s00x2n*MBfMK0M!8(%E(>>CFfCXXs#~bR5-fDFP}4#!3r#FEwNTr_Jr?R&
z-fM7%Iu_C_Zx*Kthi|{h<ULGX3-pRyhvTzQ-|~J9NVm|yLPHC%@OK>_e*qwqns3Bf
zO64^c+O)op1H@5iW_gY)!$K<y%`I;|UJIcug+AWKM^2`NEDP-|bRg40jx?i<&|IOd
z+1ep_bSd<u2U?}J6=pl3Z1C+X{yYmEEp!r2<<6cbPkNrt!g+XqkiUL(wb0Fi-$KAb
zcMCl%46yKsg`O6AS-9WA1D59l@3YX`LLUqCjr502*ZWeI_#f=$<84x33lCc8FXQr%
zg@-NllTqU!CQoylFK57U(Fi$_9N(iB2GY-47;1sPy*y^&b)V<r1~Hd~qNCpb5y$@W
zGijJ`*zDn!_uIwuKA+cqpD*7+frYUa##!EK$wCXGECel#kSIALX*o?($L<e~7JWWp
z;YkaRTl~gamx|>tDoH>*#^QDyX}9aAk7v~ubPEv+Aq!y(ss+u0Vj+2s9{;GK1rqb}
z@oZ<`(~W!tt=4-QpdJj%`?KJ)`aau2l&!V!u7#L|xP@0Nyh`O*aM=J0lPx5~GM}=%
zYsUo3bJX<16WREI0Xk|<oTn{Jl2lJ%e{hP0sTQ8I@Vtd-7N%R^MPWdGfY*X;ccxQy
z&syLGf`H)#Nqxz}i?qYH{deShpZi~C8}<hoCFbGmuUUA@!rRn5EunPa4GS|Y{MgAy
z|HJSmyWG%6M@0FVmiHI!Yzwp4c-|qb_HRn_lHOrQQhgH|`rflJmxWmP(!%=|=2=*3
zVVQ;bVm1pbETl=KwJLvS`UjS`xNfn94=pURz`3(<e~_Fd7AoZUIGgy$ko=c~vvs+J
zPc3|A;UfzlvkjKFSdro4df(#uK7!9JtlS?YULk;0aPj;=9%eet{}r3mro%s-eJd@j
z5(D^J=xU+-BPluhRK;2gnKrU)d~4x53+pVbr`xen-o^$C8!a5OaGc|^HGh+ZZ5Fm$
z*i3<q`Fv{LVqq)o<c6PSV7;He!@^Drhb??>VHbzP!afW8E$p#yt7_q#!})t@6^HZn
z?+O^mIY4*8B?_zjhXfq7aBWQiqdWEo|NYp1#KNX>d4tD$*W#ms`BNJ?KX8~VoU(A*
z!U;BDYr*C33r<@2iL+^xxBmI`{@|_s!72xWKU+9s;gW?vs5%S3($8DC$Z=d%aMptF
zK=2$r-r53!^SsgetANklq<K}-34XKiJ1ykNkrZx!AV_f8!k-pyTPR`UiiN8d`W^`W
z!y#s~1>dy1yB9LA)9R?D-J^(aND{%){sB@x*WVJ(ze4|$D##yoAXw5yitV+hjP2F?
zCQpR7QQC%`S=hd6I$sMcS>i8id+!ja5DHYVQPIZTHmcjGWP48FF5CORqq2=VY*ev5
zms?FZRc-K#$(_QX`z4>k{5Ory=KOZd)$cWI)U{F1Mok;FY}B@KkBu}NGY)u<;dN{{
z2ZE_KHvU<#;L*UAqoXeUS->PxpN;yg!bT$-={8{F$7<;fZ2UTGWW)4yu1~vFK5#$J
zJozcmm|e5c+(ru<<cup{*wpqGurV|faJBnL;+8ftZ12+&Ww<cxqXWTK5+%sCkz?ay
z8=u(7wb9y!Mdh$-Hrm=4NX^)2XQRE1UN-Kt(ZNQZjZQW?bG%9wcC@`YcqO%vnEQ3y
zYom*By4&EVtKF;pU2Sx;@y<QopD&dBuxw!u8$B8B^%jOLeLkPRSoXHjhq-L@V=rtx
zVB<j>582+jS<3WfM^f^-j2lVHbw20Er#-gHw_s&ze;d4`9$@1U8_#s~@g3BoHs;8}
z=8`SaIn#*;*%)kNw2jAY46!lPhTlfO#xNVhZSNx&rwprT+|jFuE7S6A6xb-VF~atq
z6X`cNJIG%<K5e9pQ8t3oyMS*5Ju2ODiBkbCQhLJ1lQzOO6!zN2SQ|xbKi~h@o(JZV
zt?@QDQAy(;h{Q=fgsAh?-U40KhGxT%V)^M!w-I5#xO%yB-lqEA5;!goGbNSX_YQxz
z5u*v&c+*ClCPWjpG1Z1^BVl6_RbhL#C~VaP8xw6jMS+2Vr-jKA)#(hmsE?iHP0M5{
zc59(Gf>n#srrDTo<0Y!y#<Mn_v+;tB7o{;RMtI*SpSQh*!Bt8Z@;G~DNv`^SMGAS%
z#_Kj-wQ;aTI#0i4uip?p&uZtAW4f1%Cj)QUc-zJYHWt~KN#)y^YvX+zv#C1x-nH=_
z?Svy}d%w?6GdyNJQk0ggh4u1XC@+ZfY%HJ*eA?&v^KB&8U@x@2mnv-1=(>T$Ha?^|
zE%Se5V~Mn3sf}f<dUYztaXGDJi+}aqBPdM3Vh^qLP3q|T)W&BvuG{$A#^*Lx*f?b4
zu#GQle90MVW0Q@qY^=1gnqw-(t|F5!E!&mmcb2c&s?(k!t+BDz#yT78*`0oYZ$<Ju
z&ZZ#&zNF&v`|{WQoEKaTNZ}2Vx~XR2W*b{<?6I-e##S5KZ0xYH)5dmMZ?N5ebpu?O
z%~{N0-DRWBiu}s{k-OQd13@m^D7bed$8?`)-~h*Kd-}8!f&Df}$DIruq_uY#$p>oE
z?`<5h@eAFEjiWY>**GZ;IBw$y8z*f1BsTfYSH7Y30zXO;0T<*C{3*bvdtPEr**GnH
z{sYVQ|19{7?Ol8aA1^p-;~dS*#-BFM+qfXp^Ac6s&3DnpZ#H-<!d#u6@bdo7o;LT^
z&HiD7Z{emErIoLkcg4n4nKIX;<iF^YWQFIk1K!7L+5_js4I4LY_@byE#XmM~(NRZH
zBZ_}*{6`lZMU|*GeQwiMqbL~#b5-f)ONpXX6s4oy=<`m1Q;&g@k;73Yin79IQn@I~
z3$7rvVllr`6qSqdmywLBQLis|MR9i&cScby%H23e?#M@S%_<l7vb9G~1y~@fs2RmQ
zQPhc|Rur|P+^Q>$t35d{1~l=dM!l(*7De5tHwBW;AtS?APxzd+ujKjCqd*i{QDjHa
zAc}@jG>f7+YmB0C)KguPD7Ruu<LcJrcUu<NRI+p8a8k60qGc2rQE!5D>ga0~MP?LF
zuJdv2A~~#)^8DF0CyLxC+C|Ymiq=uIiK1;3<~h%#JFW3XEk4R?Djjl%DDtA{9QAy1
z$0#~Qy}MH`edOzImPT!JJtRx!tFtaqbd9206y2lPy}I$9)s1^Z(UYy+*09sIhP|S=
zFN*XX4X~p@?<o4PUv(NZuhZcEC?1Gn=J%NOJ^DuRU=-Kp<NAC&#7;%=`*d8Ij($<}
zkK)QiT%Cvk9G58OxOmsaqfrcu;wuL$9XuArpeXjlu{VyvQ4EQqOblgX7#hW}D1M3J
z*C>WZ;pb3B@oE%-DDtCtCW^^X6h!fSnXIBHLQxb(F@jbU#VB@}Ls=_3bfnqBD`kUG
zjE>^*C?bt>87?0PG7vl&#h56XT+A68#rP<kTiN5N$q~5(oxaT>z3X^JU|HrDvopd`
zC{avmnWGAgMWG2GM`y8u4WVW+-x6R8jS4-fRE!s=I<zjq3852;`4a^^CG_beGf6jP
zOri1D%i8d6<_l3wjUp{ScUlzFqnNfo^Vuk#qaK9G&u7)$3~rClL-DxCfvGQw%u7+c
zOq<-8@xfg00IAoacs+{GqWC<DH=>vk#k?r~YnA(^&{<K;j^Zt9<7DpJQJgB1%P=#F
zTVG{l-_hZnC{7>9c%K#$Y&|E6ccbWWKBv>0_1@#4oX=sHOVA^i;Kynm{+pLOKZ*rW
zER5oVC_3cjE{S4Mln2YUW)k;XCRi-d4>{{6wPAE=6w9Jm9>qsd?0ve;$JFrr?yRv}
z>D+LzH94OM|5Kr4u886b+AU2eiZ5wYQG6H0I%(v}C{{=DO%$s*0Xdrvv>ttby=IlW
zb?IAajr6N`sob?}TiM**4Qm}*)cRYR<sa>DmdRZo#fB)h)7l?zy)laGw>xZ(VoMa8
zqBwDHo9dalJxX=kD&5%@MXv>|-(1|<D4To!={ECyc{`%m8O8pSxx1pg8|?7!TlI+R
zmC4;3#Xe?_;wPp?aUhCgQ5=urU=)X<I1<H+ujd|);`=Dh&B!fNK6l7H9nO@>ot=|=
z$LQ8fI?CbB%srIRW>c_rn+@IBq#rmFS7!W3Z?K?y&)XeNvPV(;%-Xx>p6Z@^ngevZ
zgOZ&$G&8qJX6~6NZfE3Hol&pP$=tJ1T%4bAC5o%8D~j_`To4YKmk0#^CiHizE;Wn%
zHg~r^zNzycQCu#T{8PXmDXp0Lm*A8bt`(<VkK%8^H-z3S=Kmw$me7BN{wMUd&=N7P
zVI^Z|@N5SHhEl>QE%b-_*>vgUVyF^B)fhkYXOtIOA%=<q$f*=VWx;nO1r7$uyfcPs
zF`SFxd<=KRaCZz-W0)30^%!czFe-*%3^ik@6+`D3?v0^#4EMy)EQaPWl&F+jM`*(s
zQe#Mqp>7QIVn~mnN2?TH43jfbC{tf#$RYkRGX)ZDAoQpRG>V~d3{8YHN;pjgQ=Yk6
z#L!Zrc`;<f&`NM_44K6;IWc6#kS)={52iHjSet=)|H?>d9YdQK+Q!f>hW0UZ5E-^1
z*_b5lB(-#uq)tMcNmIMT&^3mKVt81XiHwwP0=f(B5kt=ydI|0m!~Fv8i=npwReHfw
z;U0*gZwwDINSR5#BB}ji=pV!27>2~KA=6XNfEXT$;ZZ4JU<{ANFidi>BTQu&BuQ-l
zPyyr=P$q`qG5BK$2=lv)6bi6YOwEtsxnDB~3S$@{sY!*8j3KF_(J?$8gBwF4h9^Wo
zk0BDnlQE2u=-3#-0>;HKUO-U{AptBlscqJ!6m!%VG{MPnG-wZB)HQ{}^H7+@iouQ{
zDx6qxF19%ygCkKkELrS?7$(w$KFXX#Rm{(PN>ZN|OeTwpWTre5!-p9uJl}J&q)v%p
zspx8Y49~_eKZXU=Kn%~v@Nx{Vh|CK@UyNa=NWLUdP4KINUyI@O7#cq0>HLitX2dWn
zhS@Q^DXC<>B_NWK^0t7PLX#u=j^KBN&Jjv^4&Qq*%$4Z-G0YRdaY=TQ0t;jKAcjLR
z9FAd842xq}9m6;5S`15KSP{b)>{oGVpTw{%hUGDQRLuD}1|FNc?TflBkl@o8K8qn~
zGoOnL`K;y3V)<1ud{vBB(gGh$Nfm4PItCgHCD+8THijKkkwm|ZVPg!N=nXPbz7x*6
zn0L&|dZ}eY46K^DHpj3<Qn$yjRREbu1KuW4Hp%y=H*mX(Q}@NNJLVmpNamgx_6na-
zDsz7f2lr$hD3&}JLvq$o^7|N$#&ArMjtDi4jN>u<5W~+goQdJb7*51+nqBxV@240#
zew2BNW?3nh7x$Af;9!u2FmMD(udM6*OAIs5XZ%`R*UgNSvx1W~UZ8{Jq=>_a<F^=o
zr!$G8eH@o!_(Q~+#c?@?KVv8vM@k%5Vz?T^zcKvBVlz_y5}8{<uL->_^lzazVz?>b
zAEB%|**2=0ol4@{Op1Hsl2m4?I7-J+CyvxO%EVDNj%sn-6-T)^%EwVLj!JP<5c%X}
zPtNqp!l@ER)i~}Dob+-@+aSF&j(j_V2h80aNA)=FiG$f|#JxeUCGu=Q&Ekx;1-vq~
zb+UzQc3K>D<7guMdU5#TXc$MMIO@ldE=&kzW0LJ*#s<RS+$T<sMdM-_a+(Te?akw8
zA-H86nF2C|wi253oLO<t;IoC3BQ#fNYoRQyO&o2DG5tn|IP&6nIF5dCbc~}@9NpvS
zAp)J_xHpb2adbWy<ZRkGuT|GLy2bJ1UpXvi<+-6r57RS_UU57a_pJ23IC@K7_N7m8
zE%(R&zr{WfM_=J5EsFG^|C8E3jsTS($ACB<iQ~~Y2F5WYj-hcpR$SVkxOa`PTcr$+
z|L>|w2a;4BTQy9?h70uzy}qJuK^%o~JQ2r}!WqGSZOmGhkus8F8b?r=%sW~@(hMFK
zOr4JrP$YD$&~ZX3KVDQ#5Q-x#Ohu?BRE>k`Wh#R%9M6*Du;N%0$Kp8bIHGaPieq*h
zF%g&)$1?)raX4|ff)jB(C4l8j5HL|pk<q7%`E0YVTgv1(o{!^&IHtrgHI8YL`kc_|
z#gfkopt_P8dohle;&@Y-FURpp9IwamM%=qrzADVugtGi(V5KvJlXR+Nz9mue-xe@4
zj<inREyp`?%n{D~INpte(}Y)+_l5JG(78f6k>?3umgRnL5-pJELZKhf7{nWV7{`)0
zK96IC@R!E%v4CZ9EEhdf)gK9mN7b;9PvZDgqMy+}<hLVd{;>@D_Alc2GLEfrY>VTo
zI9A57Dvqy3lBSrva;=VoV1qE3@tZi-#IZJxZ{zqbj&*UYFSb~UF&DiwDFcNWHpa0@
z1U9pL@#kBlC|@XbdmKCB*cHcaj`*fp@zt3-<Jg{&!YfFJ60I1BSpw<4IQGZ!tb^fY
zS{>lbisN`3Kg4k;4t9j$`#25@o@-|(IY%UVG>&5eUiq~I`9H>Sg7eqGy$*hg<76Cn
zJE-p9R2-+{_&bgpar_*|8T#`$evjjqIDU=eTpZ`As7S_Hq1B%%b8Bq7gI31$!6h%m
zagjDWsNAAvov-%EUOqC{nVfwo&Lg>TmD7R#KaM}?`QxZJH*@2rZUY>D{I{&NQ~keg
z%^-*28lCp}=GR%yicF>wj~mzeW*q;}Z#yXO;8q;}#!=Eiii7{+xJ~Uj`1y|#Y|k6P
zY?hPzK-QLX&F89Fr5u!YP{u)72a9uhvNV>Te<Z8lp3Dz_9J;(l8*(Z*sOX@IgQ^ZH
zIjHR54hJKTm7qKe<a$~h?ABma*2)9j?sO2IUALNpyBr*-nf1)%EDC%&wLQZZX<0QK
z)O66;K@$hH9MpE;b5P&GJr3$PsOw<frp~Dj(#Y?eb>F1g(P#Y3&S#UNS2F5JYPqu+
zi??N_J9uhJRs#nOg$akZ;$5AOGt2ZU)5yUW7fQ71*tPx54s2di2hALGa=d|P?x2N(
zb`IJ*Xz3usK^q5c9qbw2nO$flGMPdtoaG=}a85BN*Fo!I+~;Dc79Fx!K10^YtPT$H
z9CUOrYJOISK3#WxmeKu8&f`}y8OXU*yCe(j;-IU8VYEgE-5hjx@CY@3IID+)o(}GJ
z@PHKFi>h0e-P^&}PnW#ULHeQ$Mj84zSTeEIPuny5I(X1QKL`CCJmlbEYO-=kt4sOe
zb6YJs*E~KX_w4zME#d5%H*y9zc;;Frt0sNa!9c$MaWKfiP^p*9!48Hv_@;e19`VMC
zC^;z5^`mDp*ebt+fCJ5eF2ecjnuDN&0tbb{89@W!bhwoB{H%=4omvk*7|hw7Gupx9
z4#qeb%TeB6`3VP4I(T7b$r6r#^LySC<*irz;~b24pg2%D5H~wK{6Kb*gPhmBfez7l
ziZwj`U~u(-Ze-q^mhsbxoQMO%LEM4kz;y8P2N?{u150qKlg((<K}@2j(UqF-+_i=4
zAmQM>c3r1&!j>*Yz%aqVL}3y?<=|<-lY~A~%%3b^iqNT?9jkMad8a#Iv24|I4xVS%
z9K7h@U5Yt)skr4c*#-x%IC#~;YYyHL{_8?#IC#^+8xEFVEWtU;M&_L@!LX}$8J5ZL
zHVx^lH%Vs|mp0qMI}YYJsMf`^B8FY(O3ZcezJt$1W}buj4wkV@i7s%kh!fetLI)qv
z+7tgPIa$$%4wj185(<3g6<EGXb5e?ZB>Yc=ek?S}|FjsdtdjD1F<!x0mc+%Jrw;~K
z(P$m~MTG?GuBKf%*i|Rzw1YJc);c&&4-?P$*1>lUb~1@RWOCLz2b&yhcCcQe8yswO
zaN%ULbA5Bvlg%iwd4A>=N!spUE6wTUjBP>*ws+3nAxRYb`OjuA%+1*C;Gly;G_8}(
z_BhxpV4s8iQtSZ-|5Qm~`IM)?VLGTACBJuY#6i~OW*u&nG_Ex}Dp}$un;mm-{zl23
zH%d~H&Hh0e|D(_oG<yLjg`N^R=Uj7&{p{cjjlX`@FAmPJ1P8xLl$^7iN&~Y97%m9&
z51|)@{^sC!0hfeQh6P?0{HM?>La!F5(jc#i=C3>W+rbS7Hyu3cVxWtE==?eRTr_d<
zFP%UAiHo~k+;&jHMMW2tT$FT?;-a*RGA>HFc(8v-I&%*9-;HwDU1(m`ML8GcT~u(r
z3s8yKS+TV_@9xNG(4%wt>DdgEXZS0-xWh$N7k9dzzpdhW4tDdD6#s(EqR+b%S99^h
zfO2z(l>2%|Hm?iSUDRM{E_^O(y0~y6qn3->F6JJsOni@Iuj3+Bl739<I&ekCz({Ty
z3wgCgT^BQQdhG3*z2foK^<AX9fQtq$cy&m1kU2JG*uD}CUC?ncG;+b~DFOYV=l@+a
zb8)YWE-sq8XyKx@i#9G=y2x;m<s#cfE9qvYw1J+AU1s}_O!dF>MTs02xh~!uQr>Ev
z#o0=K#rCvyF}Pb+2N!uR+PP@&V$w6M>3ez6B)_AJPA)o2X+19Gyk~S{=&>!6q5rgu
zt}eQ{c)&$p7u{X-;4qcS>g}SZi(W3u8s+YDaq!=E)Hd5s7r{R67}}<fi~C*NY?Z^;
z><kZtI+Q#ac+kbeF8aB6$VHOh-t5rd#Q^EfBhmm~78zIwJH?C0V=e}{P+e&3f{P(8
zo^bJ`i=i%txftPMq>JG${4NSy6uJnw$ak^mif0=POM|WBXL9;&^z=g}+Ls(&v0#*o
zpo_;{G@Xz!+C}7>jMc|-Ja3$lmGsgVtCeKZ7~0#UHbpMRx)>+I<6ZER0hvr?^Fl7d
zE)>_hrZDjGalLD20-a^Lc+SQ1E({l@iwQ0!y0Bc>F5)g67yHgNkGhDl<kDHha}NeN
ze8dc{iv;stu1U<h2!;nYWjy8LX%~}SOc5<jaxvz0|1+Yu&97!m8Iw)rPjxZP#dH_X
zax@oZOdONRpq9z92lu#eJBJz|c)`VsF5Y%A)5S|JUUu=ii#J@nLc_@F{HlxB*vP>>
zh#5|;_jLGv*A_EqQ7+zcF=uV((vP&_xNM61``^{_#f@2?jA}>bEEn&%-faN!Y!T!A
zNwtqNsIK=oWjNdkgcEq*#XOpH0xc7mPd!Y|zU`t!0t={E7awroT<mhO+r?rRAG%oQ
zV!ewcE|$7j<>G4>%Q#tFeC}cer;m$|+1YsZXF@-5y&s@H<*1!#Lngm*kTTqy)PnR2
z>dnPhBFW>$$yw=o2NM(UI}Ry(y4uAW7i(R7!<q7PiTYJid{t7ub+NifJ>EWjCz|KY
zaMJT^aPj`2EQYO|abIO@bg@Y|n_X<-$ga)VbUd3hDYMPRb{9KDU?*GHt;7SBS~7_@
zw0m6ab@8W*E3^t1`(2!%MY%Y@Y31Umi(@VhvCMPLzjtwjj%9w;!))ilAUQ9Ns?zJd
z(x+$ML3~_fe&D>A;%E8fF#IS?a!$H9<>EY@l?a@6amK|jf`1mu?*B^vIke<i7w5#T
zco)qZZ`%2?x3Zr0XJ2&jn~TdXj-PA(yNmxyHoxTJ56+I9p8XGIzID7ANB``MZX>U^
z&3vl_NB=4(=G;~c!Msj?xwz)yx{JT*?Ooh*al`fgOJz|v1uz#wlJhSMm%L1+b-g?{
zi-nX-ASD61quL3SN_f|0hAIh^7F>ojfpQ6yPoPq9YJ~(U3Qk_{lC-jL?kJYwRjFzM
zcP3D+m{TKxy9D1|%&9JbZL2Aume6ErY|lLj)JY&UfwTnbCeW14IGa%~f!?V(^%F=>
zz$bY4$Ts94fd&bT%g=3`KtoE-Zq-Pl<j{1-mCdd-zUP{P+$IUAi!*B-%4#NEe(_3H
zbGE85yGcr`j09RGaAHT+fCMrV$V%XW1pfZVduGW_cvrM8LUR(xO`vrGZ4zjkKqq0g
z6H1vp0quo$5IXk3&g6GY;E;S1>0B&%uYe@8YXaR8=q{Wd3G_<fKEXYOUI}~mX1x=*
zU!uf)65d@X0YggJl)lo=2ZcT)l+AuPfquofe*#<2Wsvzu0*@vzFoADB%6L-fV+jmO
zVENA(gA)h}XNW|}87g2{0>g_regT05@;R)PTNNZwn85gJ?I}D$l13IwjuNnSZ^mdT
z^Kqf9^a%lMJn@(W#uoF(u^hog|3^UKU?nhh0;WxXmVlnX9TQM^CMP0#m`~@HfRTWi
zfR(`2gTYt=@dWGy-Yx8YY-&a{fyPI&I-bdN5^xiEF@cw;lbR(H2~0}hnFJ;zFfoA@
zYqQ_^E&C~!(<Y1IX#rIa1t%vkC4uJ?I8wRw)CAt^(0W{l*3WfnJuQJnom)>A`m9h!
zpA)d9PtFSo9B!JoeOA_y4y|8K;FSdCuoo|7y_&#l3Ct#ESLUzvvU<Fk{dxj#Brqd^
zY0Wy9d^_u{1l~-b*`XjqhXYyUyq&<z1PFd<)_InID>bu}+^lyJ+;298<-E&QB``OE
z|2nmPKY@?yWf4@#Yduf!YGkvVg$aDXE+lZ2Elgl>0&A(^1TeqMhY5U=z^4f;NnmLL
z|BtJ;j*{YdzlT?V#oY;Z@nvUcW@i@*3%hu*;4T3c4}pXrLAHCkr)PSmy9d`mg1g%%
zNN^331cJK<37#Mc@ZPTd?(dKHoI3a1dip7Us-~;Ds%9;lEFJ3^R#flNtWmTs&IRcB
zwp0K6QoF9ZHm74tI<}`{2kT9!Z6l`J^Ax$1ZKbqK;!o)~6=~0CcBUg=T{p?k>DVP6
zvFYjEoem-=r^J2f*q@GH(s4W;2hwpc9Y@)MS?qpyC>@8>aU>mQr@AuYf4kmJh5VS%
z;nazmC(>~;9jDWAMhH)(<JWZj#(0XAqVn(QcwH%SZG0rtqPNklhJP?Z7WQ$(1(Bt5
zY%)Puz&leNM;E$C7%f9xPREsWyrgxd<7zstrQ=aL9&?mP$BlH{OUHc?@Mb!0rQ^2X
zOq2=TVR^5+?h47YWp;!V^3k8^c#w{VBA<LE{(l*p5@BcWuXH?3$Fp=i5doRoj0xa#
z;e8?Sk2W!sGxL9^<DYc=n~wijz)bzOg1iyPBEJ*$Ono-ud)f&{c*(B$kLiez5GC1-
z6)7YcI()RHw5vfYyOOhrr&$GN6G&l<AlU`x5SUY7E(y5>p-#CQ+4D-sCn3Lt0unx#
z&_+T*356uYN~kWOu!JHKAfbYUq7sTpC@rCkgyIrPNGK_RzmHsq$asgBUPP3V@QH}L
zRGoxo^BsK3RLV*yFJa(}I^`tr9dAlh0x|!|$aO=qQ&>?#70F&1Ag?5$vV{Ic<H<Q;
zuPWr#1U9(j;EM#+;w03PP+NjSLc9d01eb&a2_B*5X2xzuaJ_|^GkSUwB_v6xA)%&(
zu{TnfnT?%YoDPr>>G*qHN5ZEP8cJv+p{|5v3H2qUNT`=tOKg4q&@;kR2@NDPK9{z#
zYLTPqi6oD!d5DcAG?CC;LJJ8^B{Y-pnS?<80=pC9`Lw4{qh_|VHCsw(#SwC6bZZGl
zvs%CZR+I9_d)s7?wi4P&7$jk^g!U3Tuqq_ncoEl8LMI8mB=nZhSwa^HJs3|(Pgjw{
zZW6jnU_6(yxP~lpGEuszy*l-jc%{6@JKqtt+VO>iJ`&Q{plNo`T7Ea8uY`V*y`ah(
z7*@k=jB{weNAfA%0HHQeAX6VAVJK@)!gmtBl<>4%?XM)vzgTS;?POmMDiDWD7$Ll0
zvvd;9)`?oR%-QTv!;z9bJ~X_T@-1ulV#+89qXi)!BiXxUNXAJRPorAs^oeLENJy6;
z2|iKa;B#rR1g``|g320bm!O_YTX-(byC#wE;nzynfA=8v)9P`W1iy&q$r0z68_rEF
zB7>6sj<im~dI=#`xCB#zC1It6i-!`z5-;IQ{9eL536m)QGG(&BDFUYooF;I(z!?H(
z3Y;Zyw!k?8=L%#bjB~z-d7*?w5`GZ;M}Z3jQh}=ki&^>XEH7i12_f@Cw^U?|gKf_x
z3Cks{kZ@>l^&?-$5m!n0xWu_y;2H^QX<$7%P?L@UH%Qn>GnP?T#wH1yCHy7fi7<~X
z5{^qaAz`b8ZInp(Nx}gM2PJHmutUNx7hU@#?3D0a%n<iV*d;i<KMS&3;2wcxYZo7x
zC4TJf#QhT9zI1GD?<O9SaG2d^o%5Iw9+7ZVB<;u-kHYaUN+&-0;QU2M){l2_m9OLP
zj*}A3Nccm-lmo6)5`LBN8_ktAwk`(;z|-t~^Wx=Fi5%rZlIyI5a}sV#xFg}bgbNbF
zhT{_JO2X0;2`|p({Bcn{HC=Z-m)S?o*mZJ6BzIN9H9@Wmq~+fb<fgz|8N#NKcO~2t
z{1LlJY~+0je@b{DVPb^@bBQx;Sj~rQsmCdK7B)EHPNDZPo2F%LV_rNHdMe==$4nW8
zWIUJff&rU)^2m58;gy8<5<W=yTSB?>32#_A60T2i{3GGDknB2_cJ5r-I|-+K_HStV
z!RUVl|4-nnSP$hNB}B-GmXSpU*Ki_beE(~)C>ebQc%Hm+=IQIMJl>I2Mm8BaWaN|)
zBctlzB)aS}9)75M-RmZXKh}+&nvzS#v+nNNH5zpdx^l}Pez@8-uZ(;$UeAla|IxYl
zhAY1ex8*7z<I&0Ffo&5D%P1nFw2U$`9JN!6$|xyg#uZmF8O3Fkkik6jjh*$tX8rbF
zLMa)pt*%dG``2pSJ9|1=Rz^7)HDuJ3QC`N@GmZ)}DpGRG4H*&BJpMthN-`?TNR-jV
zn^Z+coHxnIcm$~`u$qimLHMY81`+6x5iiKIb7_3!7ThB+K_G=|>h&aED3X}O-myA`
zj$UPvqn3<1GPi{|K0BRIo67HPv*C~U<h`zB8TDjXGQu+I%Se$iSjG?;sWKYK=p>`F
zjD|8A$!IB~m5jzRn#gD_qlJv7GMdp{kN!-yzsqnjJn@2i+m2Lj!{g4w)Ip^<(9sRN
zXD`mQmeGdWK1FqXE@Oike<ZDCI~na|bdb?e2D8-JaB<qj4>4RD;aK`8DuLcEY(5$N
zWTeUV1fiRZo-%sL=q{s&knm!V7SkPEQtK`Am<0OB=*vo;7tcgHFLZFNk3YdN=hOU$
zoLqzIFJpiV?#vm;f?u^WR`Gn=upAzeL9)GaerlIvsEjXVjF&M%2ED^%e9a&-zLGJV
z^^-M{zmm0{MvRc{b%0OLr;U{Ht&Gt!#>n9JofXd_M#<nC(anX<CmUR2X{9%#zLPOd
zMlIFd>xNzV6C1mB)NpZ8Wg_iLMnHxxLy{rOP-LhwUhImLbC&YTxOYFAD}Jvvmrq8~
zJyDtrKTF-#!?0b(rEp1sIp;JyNGr-3%}J#xBgD35YyRqJq}b)^aXyW!86=ZrOqTJp
zjNLM($e1egdkxmem_`$w>HI;)kAh4WI77xvHtUY$S;9M8;2eQ-1%5AZp1}D6Y4D6^
zfsBPRmdRKyW08!-GM30#%H;MYEbQePU9~RXlt!OVW7YMm=5{_ySiw|etdcS7aTFD%
zo=;1dk;1o{rE5L!hcs9#V;#GajBPU3(`;n>XMMAbjU4=CbZeb8<5!-w!Bs@g_}Hdf
zXl4_7@LS&hWc(!K{Uzs48QX>7?GRYId{>t<X-3vWF178VNmtCyoE*H7u!j{Z;|$wQ
z#y%PQWgL_7i;M#@4$Afd$PpQbWE_@(cJ^!1{x!*6eob!vKTnOPPI`|D9j;&;mvKVI
zuQGn)xbauQNf}J&lo-=){Mwog@%!zbzq2@EHTX0`bxtLx+`7=?tc-IqZpyeN<GhRu
zGOo(FCgY-vOENCYxI#O;Sd9gwRUG|2`9aY{2IMz2_LS=~Zg6bjkJ^Y*!xhKj9-jIk
zNBQ^e+cNIRcp~GejJvcbQ3?CYMNx<AuJ?sE+cw9a99p+I9&jub<dML~0{@ah$ESsw
zyQ`dye#Y^iCd#z-I(C$;Gh=ux+iPse<cg85zh(Tx9_>d*KVHjtBjbpQqblCYc*lBE
zQ9;GOGXA5rdm(%Ap2g>Q?nO>7KFXjy&}H!=!fW$Lfl&gZ1v1+iI$4D`o4^=>*#*k|
zistenw-+_NsO3c-FY<a3>qT`h@_CWpiwa(RciK_Fi-KO1@S>y_g}f;2MG-HGdhNm7
z=#iZrJY(!C=0$NY{u-L)?*Hr;>D7jZ@=`*rv=?Q(_{57hWwLV_{NNpTSue_YQQix9
z!M)ksT+JC4chqn&B;ht}Vnva9B`+#_QN@eS>!PX&NmZ|HBp=?mM+NOMkU6A_^TOqY
z+Y5&mPukkTc%keRNC{nn7l~e8_4YZrN2u)@kR^!{FZda5&jWji<I~z+)bV1V7lXX`
z)Qh@aeC|aXFOt2e=S34QntD;+ixe*!c+t>{&Eq3eMKNjWN|x$enrr06SC8!28hbIh
zw0r$Q`vU}<zL^)FdC|&?)?PFhiMH^fC8NC;TRA<x(tsM&DX_U|89BDV?7{;$!`qOr
zW|!EuUjBIvdU(;(i}qf0@S-a-zrxYci%zT-FMl7=s(Z~XW8#O5j-|n8d)qkcy!wpF
z+U)G+MRzaGA8|DOsTF@LPOXUT<wb8V`g+mNi!Z#$F)xCeeZ1h)lbvIk96L)qzXEvC
z--`ikxP?xBw!8I@^V6kHj_|WOBy$!v*o!aO3SRC`FF%Bq(>{Kv7c*PrBcc1sixFOY
z?Zt2}&dqCm?s5d{<QuR3*8Qy)qr4a?_~@S#DWU7zG;*{TW4sva1&6Y3U)EvOeJ84P
zoWSt{CkUJ<FkN7kQc=|OdZ92{1)~+HUiiGoq9CgR%?rO5Ct1(5_OY&j7nT=cFLW=0
zUW8a_U&NbU>~CeS?-{J&k%=@;PUN|!I*ASE#WD7dJ&uw6iXXV`nc~G%FQ$1h-HS$B
zoIAak!I*bB7J9LWWf#I(0%r@H<HcM-z8Cm|7xM&R*!irnsxFcrGbIbW{8tNGve=6y
zUaa$Cy?C_Li<Ox=%LG~O#R@?-?Q&3mmEfzrSR=?<f%|^W&PS^Y#S=FO$u@x-1#S|!
zS>P5gwhBT`zSI6s@Sidz+XdMnu<Y^}>g@93XW`xL#U3yA3eNl-6l5POQ;-7!sefZx
z%pt)K3p|o3KkCK1y-q6p;>ARV=eQRqXcF68o%6e`8r9PpH2l?z-)Q7sJoVytFHU=L
z!;712<>^Uhyf{m{Vxuo|{NaTfZ#N&^(`L!%z4lp*3j!~CafyxS_FVSjs*qd}-deL=
z6jJS)5MF2Zd6+=&`txbGym-u!a7#n-+g{vZE1XZeEAXDc`vNKaQ;-K<Jj|3l5@d7p
zB<AEVjzx<d$Ihp{=<9jr#Y-<<dGXwf7s6;CZ;#+Mr=|s>{`TS@7Hx9!N9tGdyk>q_
zfnT}F-+1v>2+7~E)G6+Nz4%W^-V6MCTnryozFdRJMJR|=@U%~_pZfHQQV^|RdaG_t
z2PZqfOMdaRYc>Tj3LFaJ6=YYCLqQP*MHS>!kV`=U1t+s-%dM~lU3B>s<WZ1Uc<)_G
z%qIvXe3Yj`E@D9ig%lK4&@N|ulLd~XQYqEvHn?*>t(b!13aTk+@`Y>Sc}EEapC~A;
zpwW{CB^8uXP;y7IZ$Y1$Ba+J~_76u{1?3b>j&OaICu!7Y2}SGGF0UZ9Kmrs@o#Cz^
zI7vkXm4u|Sz$yYMud2YmHkBk+L3IW1cO|ZF5fvv==P4fM!KuKdptXX}6}T1f9Wqft
zl2Awxk$6~3iLQUNlo|?ZQm&w>f?5h{GtUYdE2yL3Qw0qbURdNPpFRHfEbh7rp4ClB
z7D!T0LH$ggB1o!&2APr}W$W&4;AX(3BRykQJ4au1)Ew&S{=w5sL30IHw<MB(rohI!
zo)!vPDrm*FJD$)qI<f781d`5CiER|LrH+Cg3WnxPY^R{Jf-VZ$E9ju0qY!ptwdYEt
zqr&RG4VE?PS!!4$XWv~FbW`lfI6vgk#Wzdp(lnu`g5C<gP{2?5y%gLpWY1OmDEO_f
zr=Nl}LHa8A(r_&N*U{=|a(@K_Xb&6R@n@X_|8)!$e2{{{3WhLs1z!sZ6}}W?gur16
zzRHvjSMYNi4;2P{?IzNFqhO?X`faApe`9itQ7~4)F$KRU_)ft%1wSbGQNapsf>K~8
zFcnN-J1R(5ASuul1Qp0afvcS?1vR}26d_Rs`UG-OMWeMa!UwSdf%(G`<RJx9!aX?k
zATl`7QV>=!L%~e(XcCd8LMs(sDqJw##A&n~1*;C&L1@XdlM?s8bj(sPTftlf-?Qv~
zTRw+XRL<3NmosCR$UFt}S@4Sy4;R^+*|;U(RKCOoYzPHA73@+ltD0kxf|ZO}!D0nV
z6f9NjAKzsPmW!wPa@ZdnJ8p2VU@8R@DyxYT_Vrk;U=2Hzf}a#{$$G8mT-y|^V`W}<
zt{2`70-2?af^1T-S&%K6@~yVb+tZ(3-Q1<-d0fui+nF(L0aEZdhoe&;H-8rSuKu%v
z-5d(eIFBgUqhPOs1N16*^_%N)mB@Vx_A40v$n}fiXgbD`W2xg@ddwjOheeQAlO0tC
zyHbW$XK=csLRkJz#Bl{DICinua3E4}O2I7!w-x+KQ&ezK!6k)f*>GCH9}3PYIHTC#
zSn0Sv*&)6G^GtG1!FdH26nhtCDAoQs_+ya0$Z*5xahduGt}D2~PN(1+Yq(J<nhJm7
zbB*`>d8s<9l-`@{=Gh~;_)ITnLw6M1Rq#l$zr)^B@N%E)PX!OyUj*mNCna<tL_QRC
zNHwmvFvZ6T{!;Kn0XH6S)^_B+y`A#8f)^ZwRb*H3lGUZ)qk;$(e=GP$!5el`#h$wU
zmMd5I$B5UW6yYbXcFBqFII=1Dpx|Ex|8amCoct)C?S850;(R1ymk4k5j8yF%EOc2^
zM5%~YxjVE6y|sNdW>t}mNq^Cee3q{VNe&e`RTNNBP(>~kxmDy>QGb^wkBBF)ihP1(
z1ix3onJcO`pK|?;$i0PyRFqLsRz+bIMVQuLCpVxLRk5c;i(;x>W5orQ5Li-RDS>?S
ziHg#h{PW0O<y3oNf$IR}RXi^k%SrK)54DE0^;A?*NyRc1%T-iXQH4QNY%Nfus)}kV
z2B{dVB34Cp6-`w%QxT`ap`xyeWEJr$oGKDkB&l$zaH~9g@u^3}^n2NkK8Q^agm%J9
zQ>=dZxnZD&ikd2FtEi)L&B5MFP%BS#*L-n%>N=0@P55v=%`raWQ^r5u-Zt=hb**}=
zD;23K8mP#VKW@>qaw#HIh5~gOs%WI5u@F8#owrHmQ?p1MSEPUP#DAuuIcr!&7Zoj3
zv{cbXMOziEgl21jRE~NP`*|iGzOfNwZl|KXiViHo(Fi8jQ9SL$sym%`RsJ{@io+Ur
zo^(~wO+_CSeN}W<(L+Tq6}^RWx98b<s(7+3n)_;!E5|V&MoagFitFFTPbeMNPeq!F
z0V)Qncsj(faa=_I%sjlT6nF7PHm1Uw<PMD?Du$}?s!&vXsbZLlZ&i#^@s*0<D!vh+
zMhIm5UyDRZ3O>t|(GVlWqm0cMqg8yTVw{RGD#og~q37$rJ`0s69*r2UVuFfv6_SdB
z{qj#_8|8^U+A|Mx%bdt6cBJKHJKlfQnl;A!t15gdrl^>zLQ~;aVW==w1Vp<tY)FN!
zA}CTXdLiwf+zCu5qaG|3VHK0bqYTL;6|@A#>?#qLp*D^2sF<tbdlfTO%v3R3#T;g`
zblk%I(bSnm^V{EqWKO^Q@AAix#QvCNo{IS@eo*nFid)0-7q1Xe?MJ(S|F8Z@777br
zByh37B?6ZUlnTYr{#U42sbV(`tbXz;6{}VJPsL9v)~Hyk;%vcE=SRh@Q!##Y+!oek
zsamE#ZoP^PLQ-^0+(s3fR9@H>N4Hs!IIRG6wz7)+aogCVjTWE3thrt2Gm@WKy<CMD
z9k-Jmq*~lA!Rg&MHST75+{&UcdsOUIu}|cOS$bEg`u<FQfbFH?knkR+ZM4Zw1v(Cr
z$5i~H;-rRC8jh<tLEG@*sShVroKn%>hXFqPs^T|}Q9cy(;dd3MRoqwcr;0Nw{!npA
z#buV4#TRe>=T%&o<T)q2yAGGWpyHy66^ra|pl9<GC058<`wHz!#Z47gRa|4)r@1+x
zU1u+D6?ylubDPg~OT}#!cU9bD5^Z7<n#J(Z9VYtF@obxu`<l*fDR$^g?wX?<4^%u<
z@mj?j6_3~)3Gq)=JX7&l#a}E7h1op()HS7jJb$t$esDflk#~OlOBJs;7Ku!be;Av#
zC*g0J{XjR}KP*cV=ZGfG8&i`K|ERfTcfwl^(LUtz;T@NNIEWo}{Kw`#79Hh7y=?LC
zslU(pfrDqZ_>UZceTWqDiZ@azY5guC+Gp2H7J*p>W)m1AkdLzakRy{Xj*8?lrQAN`
z@gc7d4SjaKjXLJQg*0M5AM*P^LU+AzgF-&!8<67mA;E{jJ{0kxs1L<_IQPy`-iP8o
zbeZff;X_G5igZaT<-;c;p>jTy_Tj6j#HU*li6y>iP=<NFkXBY8z5U}n{8$4YD)>;*
zXSa*Xhi&nZm3)|x+e24bkSab@6{MQLSRbkj66Zs_Ak=gSQtVw<ryw`Zx+!F#T3<->
z_>kyB8z0*GkmN%RA2ttgxAI}@hh8;(NM*W$*AiIUhdP3MDzL7=WP#ML=R<wLQ!*u7
z7o|}(^zj>XYD*s)`EYzn5?y0Knh0zvu$d2^3DR6(3xV8~_j|<#|1|71=t5d+AC@gj
z{M?5N*X=IT@{`1NKD76tmk+&t_BoLbK6LV-vkx6b_3}IKgmgz2AG-R`Qc6-Uq;>Pz
zw+&Qs*NKZsB<U`^Jp}gj*^_QgdwC-M3m^LW(2sReC#Da(-b-h2ND?cbi5B1ONMo-&
zYVT7T=))i%*7~r{hrvD!@nNbD(|j1}!<Rl7KA1iXWBd9L^kMu?=WriJ`0$MnBYn8&
zEKSMRLQZmHZ!+;);hiXOl)%vf#|Rwj<9=W}9=dTEgiR?(?tY#OdAbjh53&$?eeemQ
z2vh~W-s8y7)O_#@NkE`3kdJO$$Q}|rL*JsEr`Yq9Nj`fmI?Q6W_0;I=;cRHK58+v^
zDFSn^bWInbX8CY9d-WMUeCT6mX(k7;*c>FYg?x?=bA9;Uhj~JIjSuq$VXjvD@PiLO
z`mn%<g+jQ>hebXt_F<{;G7@HKiQsh(xaeIb`0~uBD|}cfc&}XXe0ub8_Wu`zjm2E8
z_hEw%M}0Wv!$u!A`S7z3yJ_t{Z1LeI*4tnw)wmG4mA#B6#LoLo;>}{&xXXgVdGj6H
zec0i%H(l)XVVBV7KF0rYIzIa~fnoRfu$RSTwO_2ZkEUKf`G5}xeb~>c{vsz8>dtde
zc*uuqH?#k#yE*0IEAbJbUq7-mL;XUV_u-}ww|qE3GvgTI!+9T0aq#Du@8j3c|NBfs
z<=<$Zx_#E^j1PbK@T6PJSr&h;=jQubT;Aud1IEvSU!bx1aK(qKK3wwQvJZbY&$_2=
z3_omfrEczpw1!VpulaCYbeS8h|Ge>W?^B4(8-wTWmVDcXJ3c({;h_(AeYocnFaJK=
z_rbd$;_$GnFZa0`-gom`014m!=ctK~eE2J)4{~U#RO-kK$MeOG=<&rF;WHne`!HI=
z7!5BN6$cy*H8s5Q;ct$&8uDuRho*ko5vd_c!)qVj`0$p)z7HRT{9hmb^Wi;h%!jd#
zI(!>vv>E4Xrr!0?@%u=GX2)>$nUhEtts$F+7!6r8w9H>4t3b+GQ8f)mcFo=$ol8Rw
z4LLRY`$!j0bzauNZS8E|+!}~09>nI;kY7V34V5(%&`?lADGi@!D5RmVhT<AZXc*Et
zOA!r4H5AjpxmfMD37l1x_4Q!o6wmG&oHel|Lrt(Z_SZa}Of0RTjE3?Wpot|Qk$O2+
z&J8DPj5+z}s9r%sMGYHX+gqeK7c1d%oi3WV@j_Y^4OKO`H6&=LrXg0dzcIyY;9^>J
z4RIPABF<$}&w|x^1=qW|&`kxW2A75(9;fo7&-oLH+~nh7i7wYj(ophJjYQ3!OOCna
zAX2!bQ*<p2wKa6p&|O0v4WDXg&!TClt07rK6Aev8@Om0jG^A>%ukqb4kzt7qG&I!E
zNJC>G?A_JPH9)SZvgSD*i<sc1nKje!nTA#xT5I4AoaP!@uyr(hGt7U(5<5I^u&ZmY
z?Z;fS=g&2?(a=^yI}Mzb?+UoIM|M=4?Q+Naq-pMPuRQ$@IXY_SqS<?>$UAB1tl0}b
zm;dLm*MEeZ<oS{49vXUT7(j^-_R`Q#*i3H?UkJ&wQwe=E^wmIew~2?ywCK`=T7L~E
zFQjEi25I<G!!RKqOdHTJRB+Zdn`~p6>njbzHH_5ot%eaAzSi&!ZD~*xpZ<9vjdN$N
zOB7mYe{mkg>fM}`Z%Wo#`%D=RWsGH18qzgL8pdhZa>`Y-P#xlU!6yium?5tcNx95w
z)G&)iD};)MpoWkJRfA7RGz|f^<5DM;{X(+FaOpzA6e%|}m@Li|$5aiLhBvdD&`s75
z)-Xw^(JU!R%o|tvZ1faiu~eR>VY-GHOhs}q|1(7lY_%Ja9;|WA(J)uTdYZ9@?={TR
zutdXB&7Q!{*RVjtLfRx7T}YS>25j|t$|4PmSs^8}53N&bO)FQ%?Ec%E&Se^wYgnUU
ztp@&c#|jNAHLMb*`*DVoMz#8?g9jN_Yxdh<D}Um;JW==hN4L_W)@itNIB_Rj8#Qdw
za8Sb`4VzgB>?s<4V(J>UY4(<_RXIJ!?>aa_lHXG5vT3$!*r8!3dsdQtK8}ynXO3N(
zeZ+6h9M{jZ@HwvC0{3XxE66^9`vvmp0UG%o7s+7_M>PDxSA7jfH5?QD)Gyn^0ypm!
zewL7N!f4~)5tB<ro?uBY*sEv1a;RzUj`kyqAHQk%UBhV&XISd<4gS^ehlaE4`@-As
zasAbYYM#?@Ub9yVFHorAs)maiE@`;TvWxSoGsDq*N`6hlbq%*!IT~(gxT)b5dw1!4
zd^BoQysp-Y84*9GXKa@F_P5%WhhmS;&vI8pa*r)OJodhZKLsIwpy8q5j|3K56HVb?
z8lGr)%C4m0Zw~Joo^$Z$n9q^FODq-Y6e-98zT{}HxgNEz!E`TvoBuV(nTn3LqC{^5
zrzRzI?}V2H|4+kvq3}V};YYz46({2netY2}(vK*=J+!uUH6&*BBby(!{ix$dj33$k
zDCb9cKXUky(~shQl<*^$AG!S~=tm(x^7!q6D8Ju+3Ct^aK7ngncB7oGfbeGQk1gy+
zQK4BxAcJs|46&HV0AGVk3Q|TqEtRSBi6Eu@__mC_HH)sSkWe3fRPZB-xfStL^rM;|
zvEpeZKPvlCMLc4;stO?qHy2g+BhHTmA#n(F`r#5J-fu7PW~9RS%WrVI{b=a1H#2)g
z-V*)bUMYIVeAlyv2vSqXYYAlhlyg}7)Q<)X=to_@{i8#dEJ!^+>idx*c+)xc=5<d<
z_4B&p1S&KV!p43y5oGz`5>5SRCU{GMpZU>T5Gp@Ek<=oSf7vael^?DB_?#}v*~X8y
zemD<gV`k`OR@?c}USze^o&*j=6G|p_@}sjK5kW)-(Z!Fhete`iz@skc?#DGhuKUr$
zkDh*<^y8Etz5M9y$8<kt`0<4wef${7=J2DhAN~AXyS5j2?UCP)L4FMOqrcyNyBOfd
zKtJ}Dk0n34t!~C|!4UE2OMyfE__uFdhJ2Wiu)7Us3_Bbn{P>zxeI?=>KgJHp%J{kT
z$`Xz8W3(UXen=wGF?`B^f^%hf94+<-$G(xC@eJ;<=OYvRnCQoeGOkWFYje;W*e^-;
z^W-=}ei(izeyDzEe)vW6<)0Ag^W)F^_A#-YIo$z2bU%WA`{3}Jjm|6=?O&qDmF)dR
z9P~^-ELw{nQ~d~w;FJ8A%s7ubiWI2r`p<LYT|$MA_U7Ry?cI*Dk=({Gjcxsvi$A+F
z{g}JLwZxC5e$4V?wjXmS@nfMMd?ovyYJU8{j>GCb<e<IH_v2+Q7s>G#32hq19LZH?
zfk^T5GPU^{wutF2cPtjz{U7%a6&zD%I+ppd&X4teEcauDA1j6aYCqNpwN-v3pLg8b
z=Xig`-g2<kk7B<@zCY}_S+LFqKQ{WY+mAhdZ1Q8XAKU%d;l~y~w)(NFg?sqvQrinT
zw)wI4g4?y#{XY>iBl(FV#=Q8Ud7^ewO$dLc#r98WH6)Smc)8cxJE^{o^z8LxA4eWP
zj`^|Qj{|<>d*wRf$C=;V2mSWPi@P)2hlH1s!_>U!Bze5V@v3~UU;H@E*5t7BCW1e9
z+?GaH{ZlvHhIX}o<*+YCiK~A6F34Fw&Ixi_;2D8`_;GVbGzXLO!h1;|y%+qrn8|bR
zinuKJ6@jjuwm#j2&h6RzZuoJ}kNctn-t^;EW>35=$Q^-qX;%xgQTflzr*Hgt;KxHh
z{yrV|$dBiKyzt|(AAix#X@|ACJrnrU4>|^<gpT~B@cxr2e8m_tdHIWJuLaN8G4<Au
zckEMsdxrHv$o~`gULbGqV6=28`ASCy5Ea1B0qhPSI)E$zcmq%Z$QnSl0ICL1Er9!*
zYQ+SQFM#}lXAdAp067E56~K;{PP#loo?9Tjc>~z^rJICUAb{!HQ%eR=Du99k6bhhl
z07U{Q7C>>KRx|+pu5Ei%{`#Q3h5k&=RQ|q~2-rVHB%cIOI)DlRd%963VE^=&4WOJL
z)S>su!N~FfAYdPhEArOixR}QGqKW}j3ZQZT6RPB_60moVQ+RB(V_xAznpSK8)dOf7
zKsym_TmUr#s1<-CfOsKs2H*}LL2#EqzF>O-NDLq;fEoe&<)25%F0V=6_{>em(UrO7
z=9Ah1)Cr(j0G|c$X#jNtXcDkrlhPh$OD3P%qh7%Nv`1236fi{~!=?(-Ab^IMl173w
z7C5b7<lM%trUATL;bv^j185OI>ww)US_*|$0Zbem$w%kMdD^e_)Gh4#Jb*R<@W?jn
zt=4JB<B^H&1LzPy&j5M_&{0$!Yp+WHodW1As)+STWeU6UCqO8451>Z?V=mR`os`&q
zNzdn}?D<ab0KN!dL;zn0&?kVt0SpLWV8Gtc(l3Ct0Qw8gsoD6+N!&`x@qyQ>3=;Vq
zaW&$_s_cVD*B;Dz5E7Pss32bkFieoI1P;%9y6x-8Zvq&}26`Hi9>BK&jACH}sCPet
z)i^qUrayUjXT_KR4qZ<eEATsk;{=Wu_{&hwgaGE{^3;8ilRF8Yo=BDgkeTzBPHr0E
z%T@Q{wbcN80W1n&aR6EX{s3kKFf)JvO*DY1LOB>fD1b>UW6^j+<j{^G0F&)5-aVGb
z)S@ITl;0P1PZnfKrk9VV3C>ba7ldyYvjq8G;B0|Zn-jp?On!Tia~`cIfFA<*F@Oa^
z&g2*g-Az4Wp^!|NS%(3a1h6!KEdgu|U|9gm#iO+XR|s4kz)C@=yh@Nu3HAY{HJL?N
z7r=T^v<(5i0An-zDaVH+_Rr{N7wxMZyS1{flBixba$9CRI|TV(06zt=U2tY^oX8<#
z-YF!zGUa;$*vr<}F;vIC0QS>Lbwuho5Wqq9tN^ak_D(wv1#m2YUj#oa@QA>p0!Ihq
zj|Xsqb{oLC08Y~60{A_E(*gV%uwUkTEzA2`094!5!@*t9mv+>-bvhg6X9D;`C=^@U
z*!;fn$ePv92XH}H{$(M*7{DdrZT6&Q`yLK{TW4XHh4L31Rq$E>*8_MIz~caJ1aLEe
zdmQuvxFrJK4&Y7z7pE3xDs*>6B-@5$;j6-L@jd_KfUwm0kVds3`vbulbL^W0r`R3+
zR{&1}_$PqZtbq-VrvW?*;5obDhXi_G1n@F|R{{LZq;ve=IisfCJ%g(y54@Om`=FD3
z_6@6LY}~&A{1?Dm4iusV^X7B}LP?ar58y)pAK5yE9Q4XDwQ0beo7%s{ltk%>){&&6
zhK?*cvg)XyqoR&%I%0Gb(otAPb{#o%<kgW+M@}8NbmZ2NN4FznB!^li+&t~{=dt$`
zb$)Cw*>T9tucLsDf;y)DYfm;gdT_#$Wo~^guoTfzR7V*dWpxzO?RnNGI!f#IEUCC|
zPj*V^C@DxOfs}AhBh{*E_6<VZ<ycOHDz5`N)Qf2hNICcY((&4aN;)d*h}YrNQAI~p
z9kDv9i>RvU`1fu>Dl-W8J(9%faOhaQvjgLy_mpG{T{{0A2DAF+_vlE_AuW&os#FBC
zK{sqnw?rMB+;NI`szZ&MI%?@?uA_yH+B)j!NY&9mr1hzedOGUssH-DcM_(zPW#>*y
z#?N?Cble`4CnL`15uF?AXr!a5j%FfkV;xO&Jp4Of#zc=nc2A6_GSmHxmFCE?;9^>7
zx3i^=RysQB=%k~yj?Y;wO<nDEu6d%Zj&{P!%M<v`x=+~AI9I~VioMuI)ak%xU6<VY
ztfRAzE;@SX=*eu~i|DGOn~v_feU@rL5&J&p>YnPe2iT;Sj@~-H(9ws@_n{VN-+#^b
z@JFXFlV0oQ&mVOP<csgecFz}|Ca}N20RjgK93*fs)7s;v+Lt<p=~%C0gO0Cs4A)`k
zFm;U3@wJZcbd1ySjSjBxjMD8MG*a+yX|6py-F|RTKAIA`+)-n7%&D6|oragIQ9fSB
z1RY)-%a7P^BNKJ|bw$#VE(ke4c@t$OeWe-+)fAzu>hKAo3G@r((|`_L$Ie&IV5TIb
zW7IdE*JquUj<Al|%z%zbBL2xbrU<nK<zuJnn5JVo&09PgohzDqHrz!bXX^G#&MX~k
z3P&bBak49Ie`K#<%+>L|j-@)5>6oWuzK#Vt7V7vx$B#7WD-m(eBfNuZ@)vgI4+-pR
zi*$T8EpoArC3J0EXKLHs@TZGuYz}UoS*~LR&6}y{SgB(b`vos~7+Q=0xx{yAvWLIv
z<-0^aFXURQW1S8Xt*`AmK6GuQ{pdKR;};#9b!?$=zI5)_u~o-5!S}ETI)2jeGrP&Z
zuI(%!t4PN#4jqT=9V`{<cn*roF1UuwSFfe-6LyP$yc&y9(e350fRK>0MTiG<9Mo}0
z2oLKx!oDW>*;n>KmD3l~XmY$O=D3a%I{yU~_jR1qaZ1N!9anVxs^d2uXLX#@@w<-G
zI?m|$Lr4GT_BtxB8DZt{77lX8!;$m6jte?2>bRuiRUUWGO^(_FQVth!(dM}i_DEw7
zJI+-d*L3bKz)cPdb))#IbDiySGKL!oIJn(nN7ivi$6e-jsv~ETi+5phF`Vz%Twdeq
zE2k%a>Uf~zZyo=zQ|ox7<Ef5kIv(rzOUDx$VfPrm!A>9RV9g}8?>V_g;`?5n=Q>{K
zc*%^>x`dTZ`_jE=o1<b}Do>-ZeFq#(ey!sT$28W4JLRpgsCNQc;r|^;K3}`h@`CaI
z>3A=MJF>-p;7A+mqWdUFrPHpcAfkiV7sUP`vIOmyqUJ%g2qJ3`*@B1(@|YN^1W`4J
z96{s^qD&BFgUA&`?jQ;VQAh;IBQU?fyaMwD?HxXhtw7MW^Ncr^!s1b}Ac_lNksyi+
z2^VCjSt5v%!dqHksUSWPgpZo#O8l**eS9zD{CGJbuaNn)d=SXwjH+TLuM|XO!TFVw
zVXFlZ8^otU)D5C~5OG1&2%=^Xjv(TL@CZ$3W>|L+F2VVko?#O*<(&A_n<%_VLENus
zdxw9pk*=1I*A`eu;P*avvLJk#8bm$8>t{+*f~Zx|o<TGSqM;Br3Zh96Ct5XVERbhU
z__WkePtzcp1wlghSrEQ{i6kw9Xcfesp#2@KH820CJP0j_HbJxvqF)ecL9`2^eGol^
zNC~&(nTrlVbmoFj5FLZ|1hbPs_D%AxL3>I?*Ifv^38c425SxCj`8s#ap&$5-1ie{f
zYWx>L^a<L_aaG<%us`+{oFrq8+&_q~gZM@W2Lv(tVf4Tt1_k-S%QaXa$&et1X7Vou
z85YD>nUdi_j1WA>w~169$*6*u5X8hFMlr%5#xl1-jA0OQ8`7NVjxjUsk3l5kf*8*N
z=1C>z7aY$1$m!C9kc04wN0P9>3;W$l5S?B}t3k{TMDXlb&XtLSM|+l)P4EX12x5K^
zKLnu%5e(WpI%WqE3c?6tN)S_nFoUpym=wfh>bN4Sl#L8C$i-?cZ#jv*dKa6nySF{e
zQLtL#v>>JjF-t^pt*mPX8+T*m**uZtGlOWn%(XCIe2qJi`MVdN6SQ|=GOf8md>_O-
z+TmjR8{EB(PRf4_VgZ{Yh|NJP3}R6b%Y#@E#Nr^9@DCs^rmb%h!#VZRAeM;&azq+_
zE}?fL`&OKlL97a5T@dSqrL7KPO%Q8^8mE@*r1gt+eYV^2o!hm63i+aV{%a%0gx?+e
z#Xay{Zg$<mL=zIWF-Q<Row1c=|1yjHa}&h&Aa(|^ODL3I8?%F1x@J#OPV7$jIf&gN
zm2v~J^A?Cz&0TperR^@@q0#OYrprSO2ZA^l#Kj;k1#u{d!$JHi9vundC@Un0UxGZ*
z;9?NEC2c&vO}9T2(;cUNVb_TuP6~2L;H9ex6#f>(?;?`Z0?!LPBk&J_XITnC7!Q}r
zI`r^d2qJM|GRfs2t^{#6h<ia?4dR+myF>4RL@IY1<GLQi4I#Xl8N;n0ZVS%e1?t?t
zYv=HO=F`8}^n$nF?Rda0x!dtj;3FY?%r1E*q5PSIhqs*!^(=_zG_cv2HXAR3co{^c
zDX2UJuY&kHh=E}Y3ge$3UI$UyL>Uurf_NK5Z3A@-ybI!AR(=ReLijI;_w1)3^bO%d
z5Fa_ngwQC22!4SM!4X1y2vH#%`pH>3gfbyShma+NtRZ9zp;QQ;gwRfLgh$wmt}!8G
z4<SbgIYah%o-c&_g5(mIJA^!f<P}JTQ!}FqgitVqVnR|#U{QgEGj)mx;?AFAWvvtj
zp(`#VB?OifxL{V){M0NLJpYGfL-=yNr(6i-L-xqYE7uU>pBEr5gcaX=Du(dwP#5MT
z_4%K(QV2ZUT3KKffmH=o6BsM7y1=3*?PIXqW7+YA(-{Ik&+n}qSu2F6OC9bIJRv-r
z5y8LSNC@Gj%l^cf7(!AAE7zpf2%%;O1Ggkrxs+DzUf0@}(#UIvP$z_CmAif#Lj4d@
zLZ}-;atKYD^sE;`%S&m!FQt(mYTPq5gl-iRU6s2w2x0uCG~-g*pB1}yT%OpN${}<P
zp-Tu&$-i)oIOk{{LbDJ)3*p>o$D{h50k!REcnd}t!t3O$9QRs<&^lz_=kwu|^Yak@
zB(5%b8zE^cuw4l41?eD=PdkRtN$}KY7rk9WnE1?@8WZ1x84H1{8Qnz_6b~mZKj`ck
zLaz`O&WrCI!WTkLzBRSZ_Jj6)bp1j|3&9(L5<>qF281vsgt4rg5C(<dU*{Sc!r+ko
zM;k-fc5ctX{)rP~JeOyAxEW)ME9J`&hK2AI4J@~P){<^`2qQ!)Ukm(3;7Ead`fUiK
zGWlp`b)nPB<@t_DOOBLHiRmGXW0i(5A%sHP9TSD-`b%l#bi6KrIue^^Q=%-e-hHPU
zf-i(=AxsZJV}?VR9Kw_k0wL%jSRsT%2!;>}!3?3zfSAwIlKE#JXV_{X+-q3p(UQb!
z9?w&^hkws;;bxIZBE<`lu{<1o>4{@%2yJuK-c&B}%^pvoMV=WU%w)7@oC`yk#oE~5
zrfW0HHCu4$xNA-b#JK{$7dTJge1SiN@S`9L1inphQF#&j^%keUbS~mjnqLSfLpa5n
zVZR7r8}mbp4PjLXBeN!N3So7K3t2tZ30xy^t-wzgyC`2T_=XTR3X&t)O-K1=HtVGt
zTLkis<*gh*%Gagjrx3P>a5Q8u-RuZqX9x#EI4IP1g|It>J%ax%kZT&esCI7%`$E_+
zD(c0;<jI>H?X@0sY}`X3`!|&CNC<}oPwVSCbHl+^i>t~f$3!Z>2s|FbiIBZ9gA<vo
zm0V2y*ARXS;UkAQ1HXrGI)oSOwjrDe;g1lmhj1f=v+P76TngcG2<Jn%5W+=vB4;Fn
z^KcwzM%Z1Q6NG+_)GHxer4=2^eT}x=&c#*VAOGj%B21}XuBv^y-3;LtTR(*R95x@u
z-VWhT2zLeN3zho9k@vZildNY2YyZiv*UR&O&3)5(yGI==KNS3tz{djr68J>mQ-RL}
zJ{QP<{G);3rzx*OcpKum>>7WE@Q<jy*Ywtkdc(qQvhVwK7pToi#Jdpw<@nE$KPl^b
z4*q=lz#hi?x3H0A<o$J#2BHiUG*HMuw1F%JvKz=@*q7a9HIU6f-V$zdz5&J<&|1WB
z%K2!sBd38}2J%t=VJsDL8^}XVq0BE(RDO0TtzCKhbt1ok0(`33`%?CL?ZY624HPlp
zHjp5K7d24KKykw!V5wiiKuH5t40|!Zl!1OR9ti%4KnhC>Qbu4|1LXuMpZPSeFM9>S
zD`rY68K^9H<Hb=7Ue!R2ktx-LB-TK6195^oGWGY?%Nd`^od#T){JYk<-k)`O3?v#z
zGVn)FdzVoS!@jt(rh!_9SUGpQ+BS1fEtxc@w5!Kv$EODB8klGx-9WN|dItKkL<Z^`
zNHNgPKzjqJ1{xS>X`q#Xh6WlLXlkIDfyRct6PvDyfoi=XB05A6xsUoY1I-PzFzh|m
z6#oCPwFuSLz_oS}pBrdnAVY^?GaU6h80g4C8R%i4lZc1HE(SUa&J@k8`6%fsyxjzr
z9NjwldbWe##q~7M%iy0h#q~DOM?Ct%K>lfY>=?$_`FY+hf0}{*21Xe8+Q0w<0}Tu{
zcqj~mg#HkbL+TIC%o{la4$CYr^ZAv5;X;{mI%eq`10xN5Cxq1h*1%}NM`cPDw9ilZ
z7~vf&u)DkFxXh>H1({%A(at(llMKiP?isjmz-vG;@RNb<22=w+12YZGqNyA38<@->
zom>F}x&hOGWguuEWWX@+zI%3lljW}-&0x~K<h+;dh4HEDvLE+Hg$+zH?Adz8&Ojc9
znqpw8foTS&8}^R183ulN<GR1q!7tIH|4C^0vwdU6Yy)!)tTM3Lz@a$LTm$nA%s1>8
zt?$`i#&~!T?*{`v8dzaqrGW)BjNe>z>{AQbg^PI>8TjGf#KnUDecZjoz*52aXqkcK
zf`50?L+_Pu?0Zdb#@Oc|))-i8V3UE(2G$u^Z(xIgjUrvs)06uixt?Yp1Kj0!w$;sL
z?JWkj8rVh!p)=>Py~x8&M-4YQ$7Z#+W=*)9vctem1Lq8!H?YgV&n%IF!v=O6*kfR?
zfqf$ES0y5g9JX)F*e|>XXj<$hYwXkF6)vYuE}rmB50A7e?udb-tT6+}4SSPh34Xxp
zUF=v!3?E}p7~m~oe;7E+cGNs41)dW4tH9p`{?2YYyzXfOXAGcu3N@22r|}1c6T{=*
z+j|c#7`SNQhJl*~F0n!$#9pPz`FdP7aK*se!Jd>O4f$tq+(K~8z;&U(_NAi^-7N!m
z4BRzvTZE#7!~QpO-SJ!O4WHb~_@{vf9PvzKHSy5EBLjaM_{YFwb`!B~@WQ}f2A&vr
z%E6F>gVy7@VV|VqW&>vO^%}cwua&P(<(CZpIN}vYp+Ro`9=$g3hMEZpAH^v2mhb-t
z{-qgP*}3oZKiaB+4?=-v*7LoS-y>+8^&?#kes)Eeh%^ypg0&iL+TTqYM8!9ooHTQp
zo8JzynTRn_$V6ci*-ad*)hMTlT&DdEB8Q14|7PPh&fKPbWGt_Vd?xZ_@SJvr^P4DO
z;%LA4f<nlo>wHo7!FKnm(+ya+MNCYq7{%HvW}>KR8~Lw`iV=%5CnidoC}rYomB>#_
zd)wGO9)wA>f3tY@d1<_-tch|ahFch6p}Yy0*k$5p6BSHUG||ySCli%SR5sDTL_-r*
zOjI?or+IW;6V*(_nn*C=F;U$_oC&81mkEc7&#e0K0!g?Mo4Za6)&_ZjaS?74Qe`Lk
z#<C7&Y?ee5HJLFJNhWHT=z2Mg8=QElFK^7QZK4h(e?@$1BL8PeE6(=dwnpA{zx1qw
zH>f0=_U~Ff6ZKi8Y0eZAsX{`Y8vc}a!l#W)tT`Rm+(Zi#jakVinwsEVon}H#g-shu
z)BBkavQDVn(nM<$p9_UnroF1b+HPZ_Eh}NXql1ZdCfb{rVtD8s`ttwYt_uuJq?cCO
z*+dr;vrWul&P{YPG1A1h%$SKDCI*=pY@(-$UMBjQ=x5s7M0=a~!bBgzd1o5UDfxY^
z595-C^>d|}=x<_xiGe0wRjV7B)ARg5ZRRKatD2Du-9NT-aS!Sc6GPd8CPs*+|I)-T
z6JMFoO1ODrBo{hz>~-<xDB8)&{4rmf__1>KZ-f<bOt{;}^Zblsl!?(M3=^h_F($^E
z@S6yj_|C*Q6XQ)hS=`)SM_p+ztPS0qI6+8QT@yu$=>jDavI(yVMR<JzRe{vJwYHch
z_`l`tPoIoXHxV=uVv3jTC1^Ts?>UpV`kR3s%S713R9dx(NhT)K#_C2+F|l=0b#6YN
zk~5h#(Be^zLs6bhb)u%5m|<cjv!wQr{&Tf=c(_+{mPl*rtkfA*U2{!*&(<`t*2Fv$
z^Gz%=vDm~9qM!a~Vu2v+v)+aA34`rdk%gu`R{Xx*vxG*T#krh)*~C&4%S`-x)VZ!k
z9Pja<e5FWbm5J4C+=9(7bxY|x*vTvJc(H1U9P#T+tT*i?!EGjQj>1M0TZDI$2({U?
zkD5}sQEu0XkIpW|x~4CP*lOZ@Oe%x?&%{qc*_)%rb`v{Tu{mnY2-?36J55Z#oVNCI
z+HQ73jwBXxSlDY~pNWemE}7VG;(&?YO#IG4#>62Lr%Z01cON$K#|zI<6UR&(F>#oY
zwCu(Sc%vIBzi^aDNIhX<?n&oycH8RiG*9YD=Fpv*_nnIhoCf}C;#{-Rudh09zHy)C
z3dsxCITL3XCrej6@lWxSebxjwpZ`<9b)KszYn&H^+D0Rl%9l-Cp@o}xXX2`fYbO3;
zANjlPbrUyCJYt1ka@=GyZFJr;vGR_GcVT5+;UKv!ymw68737}4`vU(I_&^{vAF>p+
zdXlgOADiIyq_(A*cuK==75U7x=k;8Te9p>T7*F>?ke32q3H)2&KhzZDjljao-BkXU
zmXkB}JsX9CRYmuICLXM_P30rIl7%P>(H1rzj{Gs&6KUBaFn8z?JIqPR{ZC333t25h
zTuIAjA;toQC9kAiX`Y;?u>CZrg<O_>1xh^&xh>?eP}V{@3wbT%vryPV5exY(6tGbL
zOhQ2mzuk!97PZq$Q}(yX&2kl@+G5A660V{aido<+vW$h|7D`yST_TEW9VIQ4vhaz8
z(iX42Oto@0TB4<#jIBf0Xj2MLIT5Lr=UjAo3$Wm_c*Pu69(Pu-P}M>;3l%L?vM~RF
zv$BOM7QQ^;tZ^mHf5KVlvWq;{LUjxA7Ct}WEO63ENt^|Tg~UId1Iv0Steq{vDW2Y_
zlR)qO((VMyK1GtufMwhsYFbFL@OW`Dy>vA!)U<H6PcQznLoJrbvj5_tjzE%61*t1A
zX|-#(C*ekiob@fFSV*<dz(NxXO<AQET@5WXvh3f8v(<{z)Vq$Z+t@<5xPyo6npymX
z!cdmQLURi(M3W7%(2@;dVbkBv{uWv@&y1&@=Xpn08w+hM^cIi!w4ETG1hyC0!9vH(
zryU)x&K9~@=$a|%VWC?l?{1;OHU}f2>uI4^raW?&E&0MiA0g>0uwUlWG=_?BQDJ#e
z_W%piwmJq{7-WIo!2;9kdB|yUZx^Htv+%BV@vkhbZWz@e%EJ{rI{uN<*A~99@Q78-
z+OzPjg_#y#Y%t2gXbXM|0SjZ8VxZP|3ljtxEATrD;{@R&O^Tl=xNN~INV)|{5Pnjp
zf+Dz2pek_oT>Bfn9aeZf^J8@jK?_qXOcj!l1<SI(&Qr$_5>w#Ak2S*<CJ8=SAS2B0
zvtyekyfZ|@O&6S>@+oH|{H#CQ!W;_+EF82j*TVM})>v3;VIIwx)n#FYg&!>ZXkn3s
z#g_eQ%D2h|78X+2(o-ifo{k6MmsnWJt~V}XnS~QOtFNe&a`2;lzKL%yRc_Q@X<-#B
z*|w$nd^yaMo+bPt8y&qz%Ezp;u-?K>3%e|Au&~j>RtwvhRSWA5L~pjRg`>ekhdQWd
z?)?c%-a7vH#KUpse-?hSu-(EA3wMgze=|YH`}Y#!J$!fN`&+Tzo}U@>&|-Ty>|5B)
zKHDyai>RTciQJvL&%%BS1Fn}Ic*n`C^83r<C5}TD4qG^H;eut)tdCeY&f-`&YT+0=
zTAip5!y<pN@aC=k??2X!gp(FdSvYOsjD=r0;8-YnKl|@O;W01FspVdFr3<$c&(4+b
z2ZLKU$3#!$=9PvYW8(LT)rqp_J^W5|(ZVGQH!a+<aM{8Y3-@Nau35M$h|P0Fw_9ev
zL0z|S!?O3Oa>r@PM<@5?-e&QsX5qetyKI;KpRj?bIo0Kw`O5XDg$Fbk(fTZ4)G_-z
z@0#x&vrLC8%JY|nCmim=C=<q03(we#!^j=Ra|<slM1~O+#!CyY*i9__YvFGT|FCox
z-g3AT=fU}L=QZnx=kf2_$I^LDoXCUZ{|Vtof$uGRU@FDp8kcv_Q6VA>E_#z(D-$0b
z#)rPn>|x{xBTE=r!^jp!OxV6LfC{azq!IH^un)7-@jyK>XV^}0`+&GSVdM>?r10ho
zBflWU!YB|%-z#Z_!zdEAr&I;QC?q7`T}fj$7`A8__fjL)=eGH@D`~tHp?DZ2!brMV
zhLUFYY7k3>@rj5qqflkTC>KVpFlvWUJ`9B62qRu7R0yMT7*)ck7)B)_;e`N<fma6*
ztA-I9Ms*>tCNM{V`f*|KY64y?z@)R}io0|m-Wi4~j2c3Lq1<64gyG4ohm6`tWDZ$%
zYW0j#@V|j-3jK_yb;9^GjL*Vo9!A|TlEX+1qd^$;giig;m?y8wlEO&x$MBW_9^h>l
zMx!vAgwa$eG!CQcDZA$Bv^DX>_WQ~an=#I$UL-BTXc<PkFxrRFDvZ`)w8@P5>wR{>
z&%^j_gOg-`zL>UQOxl-9PS+ufPC~O|7`%hxK@;bWVD-*a{v@tT7+u5Y7Dn$pad{uc
z_6eiA;5`IV*fWe?nY_0kUkK#RjlQ%2t_MDh?H5Lx;Qa*-$do56iXI%skT4ET!l6kR
z8pfAlyr<QLF)WO)!k7@o#4v`3aVs*GZd4c}1piv#Hv&frWViY@Y<I2<&Cx<QM&MY1
z--R(QjPZhZy6I^8g@^wspB{!3wx_E*!jQx8hOtt3l`zyWW`!|33||;p7*-hJF#KTz
z!U%<7grSG+1BpR)$s^Hy*V!BAxGjW#7{|-l&9Hqmpz4}Pen5<C<Czr3WLirYGr~MY
zf~&V8riL+1<o3raY3v2uEXTRSjw@-c9@ORlLN_yPAD@Z2=$I46+%OihUBdXD?VG;_
z-49{R3uAs5yk3TxU-2N8!XLv}AQYIB&SjF8{#9#n7)!!f9>$6=mhw^6Nd6zwvM|0~
z+mk;QWpgBPU4`o>)c^mOx(?{5il|KzAoMClIv)s9HrdT?fB=CIigX1;YCs_>ih_zF
zQWU|4VD`1GuOJH8s8U3VfFc6Yq>9o}dKW=N;Q!vuzyJBqnRCxKckc8%^WK{`bBAtq
z<K!<3@Kpg86kuTiR!KW7D!^in(*i7$(k@{!juctStPeHm@U&OEmA<lL=JEopU`Z%Y
z0CN5t>%H@D#`oLZ2HE(sj|RhkT9@&yq{croEbW>CtS!L00(?i6E5KF>T3>+g3-E*B
z4F%XJ*-@AaVw(!^V*xf7;HLtNuj_t!(b3Z8kOp;Fi%MI{(7UYwKNsMa0_-Wk_5$o+
zr~H_{y8!q9D6*4EwZGP`0#s|+lNa;-JKM`0P&6@3fxQLTSAg3baRu04fCK!0T7X+r
zlC|l4jvOpNiACwZayBTyZw2_BYEUQRd;t!#2Mh40c*!{`;H1!FLXQhQA(R*0Qs$K4
zKN9@Y0?r6!=-C3C6I>{Kp#T>PaH#;7h4~lfe*xDL@>dh`*M(D<(Tzmt-wEbF1@6<3
zZumwvm-pmy&mH0XCv@XUFN0_ylk`5DJ&2k?)C#&IC@F~IL8J;!7MdcosL*0U^WI7-
z5p>m{LeRZ3yQJV!L6i=Hm(-LAqMUGu%Leh*#f)36UCRUIgGif@$yjt1gQyfl<scpi
zqDl}C2J!R5-l{=V3!-|ESA4oB8EHt0fDuXO=XkmIphghm@2AsSJBT_#j0)npAnFED
zFNjV-bPl3^5D21W5Uqk}5JW@f7({vy4+YUEh^9d_3!-rl4+qhN@~Hu{iJy;ex-r!P
ze6MJpA7~zghoQyF@~t~*Wq>Bs2(~=n_Xgn$A~Oh{tjP$%AH?=z{y-2sQ%nI`nJzxb
zL(Zbt(&o+!v<PBW13x9{vVv$EM0OCZB`!H_1kjK|I|1#3$O+=~Cp8(=A&A@{Hhv!H
zC_z`Bc3&;%z44}}b2z6<5RU{gB#5C54We5ReS+v4ME4+i1kpQ)M}vq=P3;*(ujG=w
z*d|SUTN(z&pYYQ*UE}hl3d{3Y5UkglaBjaK9uHzb5ChqXK}<INPXyhoxF&AQB|hxS
zCFaqvL2SLttp*2ial~MPo%aSc`6`eX#IPWq4&s?0h6nLv5F@0(3}S0M#Wbr88rdv!
zNyEU%AoAG}&*YR?;nt<F49_y_tE~z#EB-tu{~)44#DaJsh!=yH8pPW{j0s{adpwBO
zCGnSncqNE&f?pQ8y119`ey;}c8ug(@fVuM}^WwG);=xmV6M~q;dIj-D5EF@4JjIvH
zS9)Y{&2S2nsuOsV${D1^R96RB;Ih*)S){*fx1JWnboO8n9|iGF5bp-@eh?o})5-+a
ze^-Jn`5yIrgNND82;##aW=eh8s?3_b&z@rEGQol%f<fp(7(pmOsMM>k0veU4n4fK%
zx<7|KOAaNMZ!H-LBFyfiUZwbHFrQmu>~PNd+5wh19)uah>LAtxVR2*yv7FT}9dLq}
z9mJ9#mIm>05OZW~E)L=o@~3;|2l1JJPle76Vx9m7@ojTO^{mf>SQrEW-4_DB6#A9W
z1wvoC>tDq3@Amxor;lP@r2{*$SX=+sqAJURAU=Q4U#nJteZ3-xl`KOLtAhAeO31dQ
z{Jjy`Cq7H>^kv|1bN|{P)&-%}2&@-@@1*HYuJW)tImv+yRDSk;DOZcW58?-E`<%4F
z_nNV}-rnHZ9K=sSoKwJE%3Ffi8bnV8y%cQY>=8s+1?3cM4`N3Ur-Jw+h@BiDb(<Xx
z;#d&71n&;wmms?Q?A;T@Vd3lzVxMsK2XROMLk|cz7^E#ASD0@1F5hp0e;3N@dOaiS
zT=*gV2sNZe*0VLTj!Wa85XwwhYr2!-9W=SfpB&(VQxu#La4v}RL0p;OIV+Sh7dXTO
zCo8xV#AU&~Cl|TG?yl{<CElxo>Afc2>p}b_oEt*_7J5_YxV#*S{X?~xmri#(h<_9K
zP7wbEaaX+ef+(W6GWUbHu%W}KSAE1u3O1ki5DYq)&VsQbMHLiN+^0iv1tk=eRFJB;
zTU#5;>B~|IN-LN<vQilZpDlF%fbc7i#~EJywlisY1r-!`8$fFX6%|xc@Q{K=3Mwmj
zKtXK<bre)lP*uT$3TjZepj<Tt)fM;e1DDx9;~(x<dNAvn3Tg?n@6ICS>$hMiU)O2H
zqOLIODX6dD?BufKLqP)t6l<us=MgxuH!JUH=xK458>%aN8Y_5MLAnC3L~Np<se)#T
zYaEYp>6$C>C`eOKwy_(RhDw+_&u?<=(Wf9oK})HQUqL`Yrh*odPK#;o&Cv%B=NE0|
z<zC#J3Av2bN<o$aen{Rw;kjDinn7rzpsj*z1??2%D(EOlwU@TdQQVg_#v<(?oY5)6
zJ1OX_;1LB~6?9P$-cv7rs0a(mPesyh3c4%q7jX|M1797_sG02z_mJ25iJsmH9#!y>
zf&vAPDd?l%Wd*OWWfb&N@U((w6g;k=zk)mk!xYy($rB3AE@6=10YbTnVz7cC3Wh3Z
zxZ3@duw{38&Jl0QZ%^=N)4u-x;R>EqFj5Nq6xHB!-@t3$5ehoI=%?_B+pYLxG+#pb
zQaZJZyTbFVg69-GFU(OwySA)3TEPpfi-NICWOvHofd54n;8JQ2!_TW;UJ@p~#7}2r
zl8&SD?8}~{V6uW&6}-kKYFTr<g4Y#H5aA|X{~HP@IgyS0&QN+8aY#Kc@e~DbDtJf1
zy9(Y?@LglqYQ)<Lrm`@*T>;W*3Z^UW*TIfzS=<U$u*vhDg7+z$k@lg2KlasT`+uNd
z2ANedUTiQd^QQl~X8xH9W+~9JhILuy8~cTCUagFv0)<0N!5RfBgA{zq;wjJ-7z*MF
zOa&pu-8&Ic5LIwLoE&B&Z1Ie$>Hf@(DX6=%`J{)FiI;rmu@u+}K2|V?-P9$OFYu0n
z*_3bS<91LQilpU3y1;X_NIy~B>oBg>_svr<U%^)j7I1_L^9!~Nbw)5{cnFd7nFC2r
zS9Ue<i^=|l3Kl6?%<{Bz_mwSCuv7sLV^-@^^Zqo?*Bn7t-F=%3TBcyRbRzKz0V@l=
zLRWDN3dmUOJ`2_=Sf}7;PSk8k1?v_3pkR{-Y*4UK!S{mi&UcHk>~K=mKJFUzkDQSd
zY*Db4(~bh}s@;+1^66ge=5FBs^twAuZR5<@?SJ<T?oe<{!Ev^8S?^8-yIA*$9=hEM
zeo<&D+4b&Ka6rL91^X227tWT?JRkO}$sb|AiuZS+hxo*q$deK7GBsoMR6U0|gH3Yr
z5fM1bQq4`L_k@Cz3Qlv9S8$3-qJUo<T)O=3$8`P+_><#tcRF3*$+WZXoZ|_nc%QD}
zJ&o3V2M5k8xS-%7tH1}Dit;KhE4V@pRFS0Os)B2rqc~>&O25u=q2M+XS8zkY-_l~Y
z6x<ZB{~NdIxI|3J;(c@eQ9w$3N8<h`v~chJUBL|cZ=(BO?7l?j3B+X8&83)%;sR2H
z7FAtac1$@{MG4`QQBhKL9|{yMEu2z9lP|cOcka2z56g<c{O^-0sHmu-u8Ml9d-rrD
zk*ubovWf>(cjB$0qN*?p%f@8eTu7;|;z3EFhKiahY6)JyIH|Vk?nSI4UP=<L-ub`w
z8S1NOAn7o72w--^4F#W`mDX6r!zxA^$T!eLMN<{mHT<QanTqBrprL^VkBT%EvsHYo
zB3*@7#Vabtsqm@DQ1OI{0V@0|0xCMH=%k{<zVu8LtyE;GXu()je4lqH-BNXrLGd6@
zYZYx&v{#X%x)05^Dza6yV{6oJef@C$N?-Fcf#x0Wr9bw&r-O>8db-0cmnE!~w((R3
zpB;sk@H?yMp`xdXE-D^TT|4<*RdiF)T`(^N;O9K&C>~#3ciq#AS*z%yqAy!xY|^7D
z9-D&4RN8*=RD!#uZQ+{ie$sl6tLV>~ZufAv#?8{c22TWX{`5TB*f&tcAQdmE?h&fN
zDu%H2R6MI<sERxlBUn5Y!&D4c@g&Qv;+>~+_HN1u_ICeR(apHmD(Sp;PNP7>=Zmcv
zotm%WX%*Y^yfilZ_YWD|rZP&!b1J^jJY!TmuVS={7gQS0aZj1CBy>!w;t_WjP4<|~
zvc26U>#-^-?eMUuFS7upGx~Y6d9&@SDqd5eb1(EH&v+HDtC-HhsF<MQ4b}Z8HC4q#
z6_ZrFDc;FKrwBdqe9OAm)AI{5DMt5}FrVh1H38&Iqi%fUDGYsAm>;TmPsRI!KTuJ<
zdGZXwM_zTszM1ElsbZE28ln0~MX~0|i`G^vQ1MTaKPZ$y5umEj5**sYF;s+9oT!)<
zW`j#zR&Vn~RJ>Y0C#oVf;=WVGRhTN86i>EP*eV=WYM`H!@FB&s<BT`0dq=jw92K9a
zxW$xJe5ztD+g!yC74uZgSFudRat<60Hx&z2EK>2qYX281zEW}Tw4eA(=6*ioZnA$t
zp>7QIuX)h7m>QlRSgN8<e)bZ<(~J7axxLTxH8m&KPq0G8N)_u>Y*4ui!uySi)hgDg
zSf%1y;lv&<lQhfAAiA|GzGGp!XRT9F<h;+`<|Qoz8&!O-Vl#&c%f=qu<JqL*M-DWe
zhC3SIja^S~&Y&aMqGGFxZ7S^|x|`Mc>D{cGkMqFTKQegb8C|A7W2cH;Dh{hSqGGp-
zUsN1WaZtq`6?;|eXW<vSy1I{3P*q=>F9LI#XXjSS<etgXLz6y!x$Unieq&K{eTUed
zOG~G3_Vc^)cWD{UsCUj~994PQ7S5<RtKztdOWEF&Do(K<Mds%w?yb##s93jW;A!Eo
zH~-`qte>;Behw|h)8NB773Wp_Euj}w#6L(XvDR~u`3}$N@<z@j71c)g$+@iJ3TNH5
z9^PetmD(lvy3oIbGUx`iu~HhrO?GIH<dJLAdoJjHTgAUB%4sOC;STj`o9CX2`&7|l
z+=YVaJM-_#Y+U(-r-+7E=jN8sP*OvZhGY#X8de|l7uC?PZ85&{@J5yO&9aMWcrYnY
zTtlh=;ttz0Uh9y{97|~^t)YzOZU`x>fu~Lwi<m2%q!lz&)KFDJH4T+CcULyA!>FR6
zGVxF8hxeyGpn=whK6>0s{*kL`)tSBqT2!mAp@xQ<8tQ4tn(cWt#a~NvA3Ake;1qvt
z4Rr*po|Z{(`L^xHzvlKSx9=)N)5f$)YN+8M4R2_esJRPbjWpzF=peYUhKDsY(a@BW
zzlMN@OyM`zkgmbYr+|hu;c!bpiEpy0U_Q-#A<WR=XW2A=$qxhJiWwhG3%o@ws^xE?
zp{0h_8ro=RC56mlUi;kR*nBe|w$}4*uD`8@Yz^%+v}YqX^`{@n=f^A!m25fJbY(m<
zr+&vyNAhzubks0R!*C6qG<4Q5SaWT;bkXpLhF%(aYwkh~TeYi(Zqnf0HT2NXQ*hpq
zeD1)Z!6N>O;xgK!8XnW|xQ6~3p8dt!M?+r?{WLTh<f~UA_p=8w{<@K|*5l`i*C#X#
z&@fQLAkAGs;8u+}OFaCFTo?4zUD<|b_qf4qh?Hcg&^)0J-FEN0WbvNVFiOL78lKWH
zLaINKT6eU`GaB;Q%Nl-I=-c#ZIxkYJy57BQ=UKMWzgay$@;<L&w1(F-6g%d5LBoq0
zUePd4!x#-?HN2$ZWu|t?W0c9@_UQ>n^8YI13njaoh-h1KTZ=mE?sVP-ueq1P@IgP`
z?HWvw0?hTMKEKr66vyl)X_&0R)L?1uJNy)(Z&PE}7I{;{TjJ$WwW(C6I%zZoGfl&E
z4ew}pS3_7sL<HW`plZ-GyszN{;czK~KfGpW_)x=Fx6)?{oh9@mp=1_l2ntpboNvpe
z=^6|TAt@*8!jC4O;o+9@=#l(J^Sn{by;L;DMmW?&U*h9?eq6(^qpGDG^&e^9+ScG`
ze3!r$_LPQ?HEhsuBdICZ>*i>ft6?7Xgtww=SefDflw)LRhmX_!^EG@X*{##?xyFYt
z)-vL1&zI74%QP%!@r1KL!$J)|HuRN)Z;@~)wphRt4NC=lo#0dXR|x)=GX`@M{7oWs
zl>k1Z)+9J1CwcxUk--Fa2fU=;X;{zpFYTTgx%Hiw+PG2b@;wzs!zLC(!)D<OIoFi-
z<!DB!UY`3YvGhp(Rt?)U9M*6|!_OMFYrGv82Sj*>hFuzVYuKr|zhl@qcfRrbqG6AQ
zy&Cpu?*B&~;(q01Hpk}h**?Cj&@L0paFAO4eAcTkS3AT8*T6wU_spEE-!%Nrf#2QB
z74@-yx*By<!!Zr#G@RFPT*C<se`xqq!%3ETR^}<`K@Px~t9^?qx_f0$YdE9fEDK4~
z!6UuYUS7Dl^+<lLs_s1wtkDGxmo!}FBz&mUMHZ67P0Sl!(QsA6HCE(p&zucIc}pW#
z2C7{5T)m%jL&M)17U)>0<EDmN8e+Qp_Wlp20u6aOhUxg1!%%}yM~067G~DHks-vck
zdm8R@TGmlX=RJu?(os}LG2NYA_f$+y*1_|DDY|<--__p(<qijm>$o!@HC0Cm-Tk0u
zTXn57Y+bYFlrO0xy}(;aM`;0NgpyNMKsll1g;vn<=aGB{y|&6zS;qr9s_5>v`7ho~
zt*WD%j_Nud)Lpgj`<Z9_m2^%!e6!^$1dpY2H()It{L$7-M{^yub##R9$7|*5=%}mX
z$<(xZLJ8{YfQ|;@ZK&g60S_fY8|i4QyE8N2x+&a5_)Qa`G<xaLk*2%1!>8+bd%fqw
z{poK$=<TyDl^icysc+hE?K1p20xW=zPC7Dmw9wI7M;mFqmO5Io_0BiFUcLkus9BdR
z9izv3$)RhjqrHwCHmr_zBF2w>wqd1p%{u5@$*e_l-?=)jeeTYy#G{kaJL~A8<53-t
z>3Bp(R~_AT^w2>ux^7H7$+b8{+EYg_VfGg0cm2}n$p8H#-?&r0K05m97_4K6j($2G
z*D+AXAl*Gr%F`>nM76(;<RTeQ2pzz>Z}8CD<C?GU(ro^bocD*DOW{w$p^Ui3yNC9F
z*luhq9k1v-QPT7&9r-$*7CeG_bu@n@6|#IXBR-?!SsgFwc>madQ97Q}@q&&QrNy3S
zX>|;LCS}vzjM~T3`M~AMQvD-E#^@NU<E>IjovY{Y!WS+jaT$csQ|zAObiAr#x{h~r
zENavKH60VEmO93Zmz>uHEMMPaqK-*A-efvD2I$F?bxdK!GfVL6j5pgd!Oi<!!_-q*
zUmeqQET81ATwT19#=Q{SkjbrO@9KC@hoVDe;dOkV<3k-Yb<EJQ^|kblUDG(C!*|nf
ztn<&(@sW-K9YMB9F)xi_RzK=~#T>fg=R=u}H(Y2sbRA(G5gi7HK+%+tjunSmT{+j5
z`Es@)=7EAJ8^>F;?1dsJXIyhwaUG@(ONT83{Bxm>jyXF2+GDnOKNcFR(S|bs-KXN6
zFLbVsc>>6<(cL{l{+W(K`7aXuF9m!hw0O&!i*zj3QPDsp150!))p1eBB^_VO7~HC3
zn~r5{E*4(LN*(KUY+!HdSfyjNjx{>I)zN=Ti9x@o(supb25mPj%q3W>W1WugbX>pX
zN$%d9RgNw2_>bl{N$$8&$M-sZ)Ulc4w^0&}D*T{hlaAN#Wz_#D=iTFhQ~NW1(y@gD
zVNeOq1FfGP_T2qu{P;RLs`<}4w(B^e<EV}uI(AY6b?nu#OB9S<uv?1F>x%gM_!k}8
zQSXES9rx+juj7!8-*g<HeD$P*I)3FWbT}h^-b2dChjDux&Hr7;VW!_Fm5zGIe7QfF
zc7TuRIIfF@Ivpo;T(vx>#CuXl)0Me=xRBEQk?@|@aYn~k9p`kM*Kt9Fxpuc}ddY(a
zJ#?Jt=(v&ivW_cK_)-S0azfx}GTh1ex{kj%6>~DzaYM)7I{x8I(!_gHN5j_c3hgbH
zbD8@r>yX-|%oD!bd;~E1EKj|AO}X`#E7cUftGn+@_aq_#-F@MFTi=&tAlX2QfuaUV
zNRHerQOrPb1E~f$6>t@O&`H<YA?<r}Yg|c@`E+wOhf-++Wek)x+y<d5XSgj^h|3GJ
zf`NCxYQt?#l?^;#ptFH42C5jSY9Paa-#|43)eST@@UVdg4cD|<EurPww5TDVrh!ij
z0=^H@8B|+1bqp}Hu7P?6Zgx*0zrOHcpn-sfLdk!~KqJ8|;%(?{A~-z}+EhR@q0J3=
znBeZ>6iYKOeQ|vPufgxl&ICRKFNFfkG+-dpKsy8N4YZJmSq54gXeqdr(4TLoaZ7(2
z!EJ>yg=RO4XD9G6BakDwgMnNwOlg5N&vfpX2<>FRiuYuc%eUH*K4PG&fguKl8t5i6
zj~aMPKz9Q@4D>Y6%Rp}fEAOYZ=#jGcv>S^jBG>e6(}&$>;0e~^c3MA)^0<Ni0^Zgu
zQn+4fg&Jepw_H?rfPsOmQIC|E8W?0?u)%eSz;hMbZ?xOf-gTaVVFpG>#Nk4pWU;5X
zEr0vt<QeVLpE5ur*sRy+?QR1;ZQvOL(GX%GJZoT-0ZxMtg=jw<&l|XJphyU#4ZL7r
zse!Kzyl7yIfuI4!z*sglb;iJZ23|Jsih;=nrWhD!;8g<?47_3RE<fZR@{Tv~I-`8&
z;aSL`OFMI<P(>TRmNC)5Bm)!IXLPBb#8J;TH@ezYTEA)FEdy^Gm}YQhOXb&by<clj
zr2@|k3_Q_3?-}<j(sTpw7~qS?-|N$P*oUt@?;H5Qz(=C<GYovl0=zSHme861k5ZUk
zx&o1;OvS<O@~LXTHsBc04Cn?710e%(1Eztnfe2fPP0i|aRvhSEe%>{4L&rTr{AS^|
z=iC?ECn=p}VEab*cFWlYJ~r^VfiDcqk-X*_m}lS<4if`Bhf<gV6QnRN6q|40Ge#+w
z7X8>WIh?s?o%c%vUl~|rV6lM(lEUoKNed0snC9uYEuF_$7<cyNB1;UMXkLQvD%_^a
z70YD?mK)e-V84MCR5k;f4gAFD238sP-oOtAzBRDgz*+<AID>_Xtf5vcOZB#H%ZY+Z
zf8QBcZ(xIgjgl#kIF-olxM#7y5ad<L;-~Q@31Z1VZkh9=f%AQnxKDD#8=fsxzc)NT
zvk|BsXFOZQyNwNdt|<*l>@cwVb?+`x13M*!EzO7XbK@7Phf-~ifxVm=PI<QPc8!57
z&hxw9p_@Gi3>-9Y*}xS8zZy8i`Wmj`Uk3d~CFfLT;CF`hNt!*Z8(-az8W>%!%rOJU
z+4zdLOKq>OZyH}+_?i?BdrulTW#A73e;PP#VB70?e2OtUI;MF>I8XlPJ1gLv(DOns
zP#Xm>$|bh#R6oI01J^jY8Mq}yx-RsF(7z0@%1pCT&E&s1X`gSJS3m6^1Gf$QXW*`Z
ze+_iMR^*O>OFg|)>-f|P-UV0EiP@@r9MIik@3&}vV1XwogyaxvhEOZyej}%ZP%4Dd
zAruXvSO^2g^(r0$E$5Vw&{Ux(22?01fZx&la4r)<*$^HGp-Ra8vOduIfpQYc)XIlY
zL2yN(l@k2Q0{F#UHH2z{YlLtrBdvM}4~n;A)&s>xrqMBxs+B5|HVO7*UbRE0BLa1W
z)(@ec0Om^v!4z%~LPNnf&pt(OqYxU0@NfuCLU<&Et|9l4+BAgB5LyUsCbYRwPY7uO
z(uI13`h;c(^$TSRfe^M7bH`@O5GP?zXQ8b^$O@sg;5I^ENlv0G(kiKK2$P%nvO{Pm
zpuNx>q2zZEkSnxf2%R`{8XoewzDLj{kyN)3x`!}6gxARlp=StBu$w~Y6+-V2`h{Er
zH7pDlXC4jVu@L%%zzgC#Wu)~DxeH2sF4LCFd)2&;i)4SHwD#cL=gu$#Ll_alNU7kU
z5C$h|IwXXlg7XrbVId3`{G`yQ68x_1Qu9N2n)7@J&xh~~Cx5C|qf(=oa_J1tA@z2;
zC&3M#9*TLn+%Y<Y7eaV3<jzhnx5%dBaW)$B923G=*7Sb6mxR77l-^eaj1&552(Kmh
ztt&U15W*WFd>F#a5GIB&DTH^}LFbxI4q-|NZ-p?GS~{o%Un5E1Wb-a?zbxJkVOj{e
zV`@zgxifG)wHc4|Y~7VN=4gJ^TE2HfcrS$aL--(s8IoEwl+HCPZqeal0?pMj3bU9M
zLXgcH!bfbh_lA;FAPus##vppt5cCiX3DShF+tNN1Lfv<h!XZRLnBF|Y*C6v`_dvxO
z?tlD68#3Y{m?1>Nh=pN=V6!X3=o5w$!t4-Ea<H()LYNc6iV#+Y@JR@tQUUgRmWD7l
zgn1z>67T#FJ`3Ti5Eg{+IS2I^?-wDYe4C#AiMP)ib-rXFmw9QtZe$5x@7qN_NlIE6
za<|rpMx`%X>|HD=ED?HeN8X=DJzoo6CUm(_=2)|||C<n2g|IDzpN07?hh7NlLs%Wc
z8sV%BVO>JL?B14)#qQn^!p0DO3}LebeILRPA#4(?%<*!|!IU$+CZHA7@+WD`Eg@_T
zVOWz4p6Mg=&>c_XzG*z$wLOF#Ash_h*ARAwuq%W;A?#%%G)&$d!Y}N>@x^?7-K}VL
z2cPv_;E(Ce_OY5F90-A!_iyr5jhet;RPX(mekg?BLO2@2u@HU_;cy5?s5T`!gwObR
z_?L-9>kQ+R^6ol6na4vo!Hzgt?^-bXR!;V?sUEIf{1L*RA*6;;B8<}^oC)Dx2=_VA
zLO2(~Um@HG;d}@eLbwv*BN7+c*RzXU3gI%l=C>zkR*U7~Na0Hq7fwm9g>aqvv$r@u
zPNzPXK60_=sYiPJ9m35J{t4kWC+f?UxIjU7iyC;;{k`~a2zNsGFNC{n<e5DgM7`oE
zTDtG{`QEyh$BNJu2_q?t<gk1Am#-@+VH6Fcc-Y0ogc2}_ryB?;Ph2vLQekurqgxoI
z!zdF*hcI%(C>ut(Fe-*oDU9+Gw?ZNX?rnQscT=bw#sgsl!pNlXQeTxYY73|;w3^WB
zLLUsHhJc!3)Dqw>1*}P@Bd8NbU18P><DoDb39c^`LK_HeD71P1+Kt0_IE-}hHWA81
znuXCcfw^I|xnNI%lNLs+KJLx4Ug7wJW+X!W0<4P}EfSn|VYE!(Rsynwwien(Xj`G#
zVV-37Fy;1PJU+soBb3Wc#4Wa_cMPL**j>$=SI*lh4E})lZ%%rbFdhkG^T$0p|Ll3R
zf@_Jcdl)^!pi$_4Ju`ZWeDAP3ef1JN<Mrm0p?g%k4WIP(4Wl0g!Whf!!syS^4s1Fq
zj3>ev5XMtsj0j_37=ywX7Ix244Hh~ijG-d=#r(>7!eJ1PEWP)FduD2Q7@k4y4HQp?
z@%hVXk4|beQe>WHrULSXPM3pD&kE*2r@{kM%>B7Ao)2TRr2j$~FNRU_&2E1tEUYq@
zm%?~CjOk&#6UHlHj0<B@7?Z<zHH_D&T4C4zDsvw%DNG3Cbphm*e90{&!NdfInNA7g
z%`m1(G2RNptkH}DZ-?>Ex4otclj_Z)(mE?0gXrE3qaci681IGgzQ}wK#*8pN6zrj$
z(lBNT{-}_?>^2Lp{~&F&u&E+Ujol<b6<Sz*BaCnu{EiNVv135f`vcu55fNZB631CW
zc6tO|Be24-!?+g4b<Y1`%nsw{Ft&&BaTs&LSQN(MFg^*puQYSRm>0&Ug8y$%#r!b7
z2;<8zK4UjY(7gd2=*IN+eig=oFcz{UizRcaVG57<GKQ#`oM&Q3^OuCNG>i>lY-GX0
zSQf_GFxE*5%fo2bKk3@c4yCR&SrNucVSXcYmC$d6t`@pRC==&hf!~F(>T1S%;qZ22
zzJ$};ZBNGcVf;W1596mWHc4ow2a<nenXCG~UKrrBpnchlEn#fs*kQXJZt_9#EY7qu
zS~cTYC#L-8H(5Kv*cryLFph_@D~#P?{1(RVVf+%to-huCaWIU%VeAWIKWQy@Y3}d`
znKLJP3TMU8#euJHDbe|*s=tPDD2$r>+i*0|HOloK=CHk%PIoknBZ6uCvyj90x)WiX
z4C71~XE`Jd&#5r-PYnGd48HFX{K-dvaK=0qIC)ddXq;<$E{qFdTnyv9)RYH*_%3lN
zjLTtM3F9ieen~pN!XB&Z+UccR`f>-pZ}9)=Ut!$f>>5FZ2#&vz^LH3`sTf5D+zjIu
zEB;2#KVjVA(3sHtb{PMLvHWO$ht9q|NAoYIWc0gU<UbC#?=rTY^V|z_%NdG9kQ70w
z2uerXD9I6YsFR!``0BZ)MI-q0!Hi-NSFef-O%+-~Xi1?As{KZ4nFx&EQp!e9E&`fR
zW1r@gZ#Ji*`-R1_Rg9og1kEC79&w9WIf8l-)Q{kS2&zO-HG*mpcVE_ygEiUO{Q1Z<
zt1~Iv^PtcgLTd`G6#?%=t{p)g@eW(ysVkt>MIRz)5J95|8b{DDf`=mD-O8_wE5<Ug
zqp2Pn>jxf=pb7K+s%X;)CUob2SkI(OUM_-hp_MPjo(R$+XcIx(2+||)MvxgniwJxX
zWJKVPAP|wuHOl95beycvlpAImT=Gm!_HjpC%LrOUkQG5|*70cm+jrd0_K~HV&3n?%
zrylD?UCoZ5T?Dxibc~=qQ+^9MY;Z>DKa9)2Ea%P|8H<YyZdNd?Qv{tO=n}!_9RpR4
z<v;wr|CL1^8quY<%yLh+2)ak`a|GKX=n+BB2v$Y#Z3Mj{=pDiP5quEAqY*q7!K4T#
zN6;sNz7aed!KeuOMeuk8`4M-AWd8`B5HK`?e?BZh4&8tV1`3mSkbuELheW_K6w2fY
zXIKQo6OvB~cq#%`VT90;LJQ@ej^LSuBr|$0g6El91mhwYE&P{+zL1c4F@iCI#|kYh
z+sld2nV-~rRq*%(=QRQ3zn<VspbiV3nBXvxDG^YHMS3%W&|xn*ZzV#f3V1t$X$j7B
z0q+QXH-h&PeAa751Rq9Va#|MVOe(*CS&}T%|46(ALW9&90pzO!v<UPBhh+#Qa5#cU
z0!Jf=363W?l(ZvoBKSJNnH|Br2<D6TW664s;7=m>G$AurKt^tD=Kh)B1wucM;EROJ
zmjb>L%Jx~9;4g|`aRM(9uvBP^WBJPx{N(~xM6go8Hwiw|SxpTOd3dyTYXoZ|SR28*
z2)>J8Lj)UT>X`PEe?9p%+jh;*$vc++eFQ&5usH&rQ<(CTXH&$r=c$}1Mf_s~oE8Xv
zieO6wG($Sm&gT3;tII#F4Q%6_u-1LI-$9k5=11{Z6uTnW&1o%)GEw{z!5+>AoSGuo
z8^OK^4o7f=W1+Qwe*}jj_)YME2o4JPRp^SnITW~gd{Fnjxjeh^djz{G4(ivW)6ocy
zMQ|#DKR5$Z4Tg3+5y6gJ|B4iU(>DH-5p2zEO-%Y{1g9f-eM8`jxq&kR&IvtBwf`dU
zVV4dJ;^q+2ixFIk;C2N6MsPWTD-l%A8gw&)tDH<E!Go>+D{@<3kAU=s(7!lF+PF-*
zzo|JQzyjZjV8EW-e}uk$EdNdf|3y$VisT_3?nZEr!+(5kQWW<iU}@=!M6qE=F2M&Q
zhLI*m(L2?jB9!1IU+ZE~6ptcRQeYw_1(b+lY2O@r=}HNw*cTnkMo}(`rcpGDqI?t;
zqNou?%_u5HQ7MWCquB2qR5^;svHYr0REy$)sM`fqgc7ik7aYrHv(QzKg0xOCf5!!Z
zSsMbiqNp9k!%-|~?XMF>U5U~#ih5DELD)DAqNpzzLf0M3CqMI-Tn0T9MI({#wI)Ds
zW5L%J2bfe7NpSzM{N_=3qG%mOn<&zvNRJ{QVwCqrkr4%fPpI0s6EU4%yzzFKnNhTe
zqGc4+lmAluSy8kSTz_+*kke{&pluY{QFM%=Qxxr@ICm_+Llnn)1=>fEBN+|;yyJ-E
z4y3tJnk~wvE4wVvIf^b(kpD;&ms|ViEqRLcOrH+Q+(6eTx<x_IT_{11D0&L+mEiPd
zQUy5->JvrZC?-ZRiFrlwcofe^F*=I=Q9KdFQ_LcY0a0xAW)6&EP!!{O<Ysiw8yv+D
zw(91<uqfX1`iDmG)5Sqll|1pXcgP&h1RHmvdr|<;QnAfPM)6D(&qhI<FZ5}ls+}{6
zZMCaI@veR|sRO}t;{D<7pckTeF^bos7$3!$D8@<^UX7yj7XM44pRYvmvUtf^azASv
z%Qh#i;Q{x=&<~Sy7wyY=J&LJS0_mT3oIrIwo<Dd=;EgDjMEqm#4ys<Y)8r_oMDals
zGopAiinpS8CyI9&h1KudVH&&aT!*)#sB=93V5>n_26vdw38YsZ-R0hS@3G@f`rnTt
zX=q1w%Ft1{zT^4q!4IRD8AU-9!6;@$u_-@$QnTS7vCEF<|GTThPuZDA_U0&2Y~CMG
zS*hdsRJkF?^9k5oMiika%FaQ#IS6w^aNyV|ZzCE-EQ(?#ikpZ>VNxMuXd8nSh0Pw{
z;|;{%L@_&xD^XmH;^QdhM6sJwToj)~@o5y_MzK1IxlzoEVli7FiuqA|7R8rQd=<s#
zQMA2N?F;Hd^V%KHXDk^s?9n%~rXSB=5XHhM7O~d1QuwCCw~>cl%*tBjx~_e*mPYY)
z6y&drVp$Z+1+QS@eY55c^>H=(%Sq`Bo%*Ern<!QZpRX}=6j&3*S~dceCyI4Zd>6%f
zb|}Z4h;0cMC)gOp_fh=7HWX&+Sx=RTUMBdXcnK~J&dQ(R%RT7bLM@GAdlWmO*d}h=
z?UbLRpaAotV}XZ0Sac^V5``9WF9PEZs}`f(_p3co?2Y1d6cpIUxhRU`QJje400(ju
zzejO6ieIBR6h+pjS-(-il#ZwNW~lcva*Jj;$MYNXA9jQT>cy<19JvDaUvSgEou3t`
z6}Zwb>tqzCq-Fk)VzY%8S1!uD{uCx_!B#pG#aZ#5i{b){E%?09^o5>FQP5qM=uG*W
z<N0)qc#X!NIfcehIflQYxDiE43`JvZkNh3wm7};F#Z5`%meg+d@%-wWTK^lx9nSMn
z6p7)#DDFmaPf{KbaW~Nwb{RXD870Md4>3Y(J;^b*Pg#A^4Ha7#i=lW7<%G${YibOm
zH|CUzp+pQNg~=~yO4j-`t8@%yB(&SFsbyn$xO<svk7PeIBB#8FRfwTt4Ev{gD9qeR
zABdrBtL#QGG>)N43{_*O7DM$IE=>#6h~Yu%{H1E&-bz{0Cu`hk_sg!P1TnN$47CN<
zNpR}MP%no1F(8Hm>q|FG@EZsif5^jF55-XEeK>|DF?eD~i=k-@xAU@^Ni!0BaK2je
z1ZHKKX?hI47&2n;#$25t^Xrg1E*M0m^(UHzqcSsw7BP2t(zO)ODu%2Cr*#b60>Pl{
znEQKWR1D9>&@P7dG33P1A%?sdhQ*K@L&q2%jp4BvI>pdAhVC)+h@ndikHpYb;_?Rv
zQ=nVACZ(Hjitlg9Uo+(N6mRbs7}P6<nO$4)UkUk)(kF(#F+35&fS7yR9hv=NwC039
zCyNu)^^dvszWA$UU<`vKouM%d7QoOU0zP@lz4LBp*_QuThT$=cj3GaUCu8nb9J;4s
z7?Hq?_;d`t?Vbeu_3%s#&q_K2P8KiB_jxKz4Ci7vAHxeVyck0;1|{Zxn2d>Gq5$Ht
z0$vjOatyBs7$@{qp|1%YFZ6Yx6NJ7YbZUF|)YzmLCdV)(hBsp<5I&i23HYE;EQYrQ
zOcOd?C}rLe@NNw6B{=WLu;Q5jgJvW+9}1Wm!>k17BW7p1=hq59HwaXYuNcBHXd<Hv
zH4^eiD%Og`5M|%R@O6xL<GPIykHKU=eo~Xpioq7<S3;c_K8?9w<rJG8!^eqq=EU$x
z0#83uWNr-e#5+HRFB1IE1bi-(GECvi82%T`PhTMXh3rHDi-j%`svLKPm&LF=hOIGd
zV><|cO$=*eX#H~fO7VUpbd}I=V^}SqF#UBgtW0TLEWPChVSX3GdI5zgZ;au4@%|9Q
zW&zA@lYk%ppV&_^Y)OO`M*Nv`3&(y8+l9X)hMh6&61*oNxm&<5LRpx-3I0B+oYaeX
z9gN{{3`ZpBSD}Yu_$?v%y8y;L8pE*|PAB-s1)So@5^yrXr{o_A{HK7zjLrx?E0i)9
zVz|gb7suc@F2!(}vsoPV<G2#TRZfy|l#An94A(hAW4O=xKZY9;_f`yl$1rN>px(98
z+)kXIelt;*e?)+s+XDWL;f{d+gx*br4!t<ANZi%5VnPX$;z$;plHe2-P+0Qff>Yxt
z5l6{5N{P2jLbCM#liZWnlBty!&VzAONXS$aP$`be3C;rostBzrv|1e16QMkPz;tTF
zQ8U4*6-Vs^t`kRH!G*;`91Y^gilenK8^+N}z(a8~63|$vH|~D>KO9FB0mMz?XePLM
z9G*DzDVb?;q$fh@rK1>2;*%6I;_wR~Cm<j*jur_{%Q&V~aOVd)ezTLdiKA;A-Qs8)
zN4AKylf-l5XfNIzp&f)4HeE--orE%l&T({!<B|CP>MGTS%<hTM$K&V`N6$EVB{+}8
z(OdANLjSLi`oz&UA=598|Ks-;<`Y5(2pt%QF+Y#F42ffC93RIqCyu;0hQ;x29Ph<3
zJdP*hcr}jKME<Ebo{eLa;1O|*6p%0UX`xK&83Bcbe=d$O3I6kOj28TYP`1O13BXum
z<9JEDFURqU02X`P{}Z6hc=5g^t@?T#69l}G=)s8sCdDy1!I>i9O*ZN49`@{1iT<`w
zrZz2(>4M)$aHwGK3!W9nM*=>GV}^hah0YXOsD}k{1jQQ?TKFJP;!wq_31u!iTUc;m
ztZ*C=@kZm^_vMaCx>y|X1U3Z}c9|{MiGyu5TPTG;iR05a*2l3Sj=70g-^4L5j`?wX
z7RTptd@cMh5}^wVK^$KtI15;J(XK^tEKca#l0@jzL@2XcCd}nRSH!VWKw(^lt`hIJ
zajX`wMkx7f*@=rh>*DxM08QD`yD^UM<2WD3g*bkQW0MG<h~vjNHpj6uj$Lv5lt|%c
z0bAnOn&52vf2G<U#}45awkmVn9mjz<4hr*^IQGP`SMWZe`^m{`$!28377o2%g@07&
zA)&v;@w<S-LXQY#%3L8oCiu9}|I6{DcuxuaBaS}>Q2w-lGjW_1a878&O76sRk&}NM
z_l0v==wET%;8Q^GRiPBSCg8fz!lwRP@V`QD3cVG_KLTzGrR^_9yc5TN2`2e><G3eY
zR-B<lOqV7JB}g`rlE6g;P%PC%2@_csT3aY-qLhgxCYG8gZK8~c0VW2TC~Kmei54bW
znka9gf{BMrG%``qL?si|OjI{f*~9~;`>(mG34Z-mG2KHMe3J=ZY_esnk9^_>P1G<^
z*F-%NHBHnqQQJfv6E7~$edz1-MsKDSL_C#mw&M0wu9<UPy}k*UXkenD>E1Oq@~2Kr
zBy>E-x7u_6#|&=a<8RQ$ru#>=sflI+9yZZL!0J!j(B>vQCVVC`gqda{-Go>02Vds#
zC<HU=^<~a4jr@LA`9hI^iA)oNz3$$4o?+RrD6Q-?KTr0xViTF@WxCt3TAOHNqLYcv
zCfb_FHo?bP2NUf~v^SAsf_sw7IezZOsi=BB{xO4_fr)cXbTr*YsC9A}6Y-w#b}{jY
ziS8zPnCQx7fy^>}2l~31?kOtkUOF+mj5fabyMeB!=^i#G=uKeaF%x~HFpsmpW~KEt
z(NDa@=PJ17O8$8}v%hed*Apg6)^#tl8^o%ac*n%MCWe?8YGSO3mrUfD7-r&WHj9bj
zCZ1#uUTHc)qCelD2qQklC>PSn9BCq7LT~K$(#XL1N4(Fn2j`?eZ(_8GQ6`=<-IF-n
zPRzZI<g+PWVE>vJV}fUyAF7qsKQ-%hzSw-<`d2mYWfQNMe51w`6XQ(0YGQ(kH%z={
zV!VmhS*mrlN@#f*`A@#^$dl*39?G~o){U5GVv>nx&(~*a{NN>%ZoQNCrir&qylr9{
z^=e2_G8d-Snrb3wr%}?)`mUS8bn0p-j}hN9@xF<WiLi+eOw2H$m{6(Syava_EEd?r
zpfmMnvPf$)Ms6HhU}9m(TGLO}51OF2csMWm!%!xxNp`vk!$kkoTFk=DE49`WskP>%
z){2;jny^hcCSvSm6Q&8vmCT|5Qx@SYN;2^=gYssZ_}Ii(CKiYcIde>W!Ui0a$0&54
znwTp^nkRI=(9eW^F7ykbO!-R_e;&^#SZHFAFc-6_^I9{JT^m}H|89Ou?ic#n#4-~%
zP24iE+{6kKhfMrtVkOnp#4eM+q`j+5d~0Hpi62d@HnGOU1```itTnOD#CImvn>e22
z=gyy$v))x#)4ko@KhE!t_a4_Wzc)cEdCxX;?HJJD{|_cErR8Yd{F_buWMZp{ZPX}M
z@V%jtY3=~w=2-r-``N^H6FW@olu?sae-O=U^WM*HS6lK1Kpu^!ag5z2elfAf#9k8z
zOdJ%+eN@7fwEd#J1hmFE=waW+ifPqo|A)C8YO>%nPpMs=-%T7galynzVIDDY(!?nf
zM@<}KT}<8uS!6g5|4QiejlLEAeEUnJ{lO+RamK`16Q`L1_iy(rN?K~Dk96OTBIit;
zXQkSuPMk567nNQ(;$8ky;F5{UCa!bLP9A!Nl|AR>b!=DJEPYb9?=3-mjgw*PW=!EP
z6E`H;zfJtRB>Rs$<;f)Y$HZ+D4_jzr;a?MXIQLqpWZ^#(cUe;l#Vj}Rdz>dNBniGx
ztvl4@)aXF6<+dvGO0iJlmU~Of`}5NNYM5EvLaK$*7Rp%IR<}+G&i@ulS?+M=pG`U%
z|KX{__SbXDS}13syoCxDcJIrMW%(W%>N~j6SK*fq_m1cD!pZ~d(kokdz(Q?Cw@}3b
zJGz>M>K3Y6;Pdp?1!<%YTBu>6riEI<<ldn_{_45yo{!Vo>B-(2Z@8vE>RPC0p`nF`
zEO*0meG9PAzyc5SUC!=A*M5Pgf#YrkZ)9Oq<K)H`8t-?vc2_%*|J6+Y;lt@oEv)#|
zOP67xnc(IYJQmU{q+9S>@LBG1&Esjgm7~7QalY;~y`PJvARbF+EWd?-g-nUq!a_?6
ztt@<A$}Jn!`{x!J+uJsMtE8`ug|-&vTlmaEwuN>UUbXO=h4vP5EIebmKa@LI$h9!Y
z!e9#>Ep)Q*xP|@}I$P*s;ZX~ZS$M>9cVzXpU{y)$YPpZOZWg**cxs5RP3dgX9u|6v
zm$;XJqNTGLrR3b~s~4;FvC!8-KMU)|`#TQIVWzaQNTZ13kEK5$)f^~vfY2E)1ZqFr
z{(!6$4H3>T3&Sl86`UuOEz{ye{*%ne!bl7G!sOD>h(zeoQaN0SO8K&=yAZ@iD4jz<
z_bj`^!gCg$w=mkm7z<-1$_o}=6b-!ct9t_OTr+=}k^Yw~ylmkW3*#i{)R{Jm4|})h
zzLS;Ov7Pzg=2cMRExc~wZ41++F(+8A^`}W}E_TPcrW1v-zQmI)_qNt47Ty%*TNb8T
z=ykRTE#|ct=C8ES$MY%EExcnvwV+ve*TQ=i-na09h%v6)x%HdQu<)UUnHFYAg050|
zO42I+M-~b!1X&CVu^oAw(}wr+aWBoffP13>Pi}TTk*`}YEX=m>v4xO@umzKSY9V4F
zYT;B?`8eZJ_xh&sNDd#7d1KQK4Q_GD?+thL+APT<NvYF{I2NWX@bLZT$F|<1Lx#+;
zTmvI>EzGm<35SD)FCX_ll-iD&l0T}Oy9MH8FZW{E&n<jm;gW^Rl(Fy?$Ek&1EG)3F
z(8Bi?ez35}!eX|eh1C|8SXfF8x3JQ}*A|vhjeDgom%e!VL_Ti<&90TR`lF#Vp#6=7
z^*gIw99Uu%yQ53sRo<9)uNlYe8VhR~#8y3#-}i8ljzyBzvAa2PJ2yZ3mFMWE>Er5q
zHdxrmsp*)f-)v8>N8M3I;Z2-vEc|TYM+=)-K@Oakt8KBc)xw$HokkxU#AY|2$>l`d
zzI57lDbh|Bb+2cKVBViNYNd|`op#Z?+ck5v$HHC<$1EHdv3(W}SU4znzfjsi`qjcA
z3r8#*weXvT-z^-rXvVn$=Q?iqnRvs`bMYgtrU&=5q$X!HP9<RI2@5AJoMyq;gQCoT
zFqVZv0aD5o;<Facu>k*OT##g$$a(QH9Wv=Iir0R{cZE}*g=8BkHm+H?&ZZdSPqOis
zg&P*`iuZ2|H!a-eRL@?!ScE4EZ&~<<W9m?o@5}lp_6ltJ%6o^?PEIr4FaIB>%CFOj
zw_o%Ik9hA<2VV5w=S*T_+J&60hrKx~y%n5v=CZtb&7!uOT}d0IY!tIm+(xQ!$Sfh?
z#&{2LtI>Ya(!wbtlwxIVOsVE?{#Me}mFX31RJ5_o!Ey(cY*gk?E(aAHJYb`Wjo)ni
zZlkJ=YBt`n@ve>PHXgL`h>fl`YS^f0!)wE5qn3@@HXgFk$VMF-=PM-Dw*eb<ZPc^f
z$JR)nkA_2ON~M8~i3c-IzgeWA4Q`br9@*E&kBi1O9=6fkhQ~$|8_9QzG_}#pM)z<0
zd|}}Ad^~-h^<XBa?lc?eHgX4-`=v?Jo4;qA{npFd&9+u)kzvDcqm7NWHUc&>ZDiSK
zZKH*amNt(5R-~1UA~k)rCVShS_Hq9$dm(Znf8-Mtc=m*kAs$-Hw$aW;M;o1Nw6~FC
zqXRRt-IK-N9rL-*_v@|F;2uqFR5p#L%sSf`^GwRsohe;x#45Mq_r<+E>4$$y@5W-=
zc#)wtdf4b`<5>d3)63?1JD##J!p4v)$&cC?ZsSRtS8)X%v(d*!UmN{w?D#vKZjgY-
zh4#1cM1nuS#=rzVxy~~<frkhfDl|{%Fjk>qCX<?UJDvB<@yKNV-+Uu&<TFPb&)7Kh
zTHX^!d^}~m@<cwbBjmW|ed426`A6A!&c^dLM%%8jmls%(Lrtc?6L`B;Ga5r6hjpPF
zYh#>^S8cpx<7KJfD>nFsK(iqXC3wxocpH;!Otx|Q*$%JUn7{;W>^+fx?L>aRwt>}I
zfr&Ph{(&+l^Xrw)o?_!oYP*f;RGZS-Z`qh?<82!hW0VW!vnMsm8PzI_amgX}oXqca
zGXFgr@7q{q<69da*qCACa~ogS_|V2o8<q{*#w;5j*@*B5u8jhlpAyhG94coIDU&_!
zk3otJl|51>+bHdFo;#VZb6l6rHf)&3azjGHLK#X<%trPHrQ+nUsQ;#ayvBWLZ27I1
zr}=n6r(<KbjZbaNwec}4Qohz48=u(N^qFf_U}lQ%n=LsvcX@xllRnSJd>fz10HKk(
zIm0?|xBR;&^D9sAj47M>rH!v_tYjm1$ys1yp^c?Bz82v{HWu4hVk7Tj#`dLNIxbV(
z9OLEXCc~#<nT_Q(R&XFp$s94y!#_vJ9JXkDTMk3l+3rmrOmnr3H8!@f9c-+%vChW#
zHh!Sy%+LAG#(EnY1phoZQ2o01w-#PT*(imXb-_!w$;M_IKe25ucz+a1fh}yAi{9~R
z8C%%`2YifJ#PXK-zBPlkGhZ9OFijgfZTElHE-DZ0u2iV?WxoL5<o8f9Z0xsjz{Wm;
z*2z216`>fvPp@6_9i(beW2O3^%xeC|CC`byxjg7f&1{nFJ#6EMjlXT&<Vd%1%*I6<
zmuwuTp8u8phfsnOHckp=JDjrJFLW~hq;lFgW8*9*E(tv+xfB{G+p)`ijk&-%XKWq;
z>1C0*o=E44jjIWKO(Gt7tUV?FVrr>@8=OL?x)UHdw`|<8@t=)<M4p`6HvW|;#I@hU
zT{a76at9?G+~;KFpqS&9KS^k^gA~V2s<2>19qgRyhSHfQ^NULmLyuM|QPM#viBd)=
zjZ&7DP)g1|m_%CEK{*H9e$25<Z$-y75m3oNWe0uzMTj48P{qMO2ZJ0`bx_Sg8wYJ2
zRCn;8gC-7|I;i2Grh|tZG;&bOL2U>19l${y2X!6Pb6oQgPZi5#2l1iCFTTwsn%(Hp
ztbv1n9<0bIw4vh~l;+OQM@RX2t!iTjBX)Wo7E0i`RkM&bbI{yDODUnpL7D@fgA5T%
zcd)2zvR5!~oBF%8?~%qCeg^>unGRYwcx9t&;ChznY2Vw=1C{4?d**icJwL(MN>a;W
z3pn_?dIy$}79?2fYzOTe<T&Wy;L-KX?r&+vo1xmXFSa!M?4M@24mvvM<)F7j@8sYS
z2VEU>cF;vQ1NvsLM$NCKcXQC)K@SH#9c0gTH=6#wz%7aIly}qd432SrF+J+wF$et}
zJmH`Zo83V_2ah}MOnc{V_c3?ohKDmYtqHji4-fmguYZ7pX1Ck%os$nQ&eek*3~?~a
z!AA~;I>>V{-ofh*hB+9{es}P!gC`w4#jcs@d73q)@qY&+9pp2Y2Qz68x$EVY+#1n-
zmuKTJfAxAkE9M#H;5i2`FsWUh=S62m3*D!=rd>)@^uE=~cdC^CMF*r~9E=t4lF*lh
zz9Mv-P|CdO;57$I%Pi++o6ao)6CAwZV7h~MB-x1$rZ{-h!6XNh9k6ToBFBtYoy>pB
z!BhutJDBFU=gzq2q)fW|-9eY3yVk1?pUi*P!Fvuqa4^H+&B8_AXOHi9*XXESb8csR
z=wK$*^?mn702+1Sfhq20&u-Mbz;QntH3zzbpkRK5DGpS&*gFAYQo}*WLEM4qAS^Nw
z2T=#_S8&fc^5ZV%xYukQ@OXQ!c0VUA2e#DcYX?7`b&X!G+?M1xm@UkY9b9eXpX1;Y
z2cHW5+`$(D<~o=sV7}1LgtmA;oAO^$-`1ora<JIJSJbo=-vS2<MWFP~bP8P0^)7L+
zwP@N>VUlyHihosiKLHD{q<yg!4puriJ{u=y;~NL79JHT}oZ0x+!D<KhsMrqHI9Ti8
zu!AEG*0H7zwmaD2U_I4x^3d-c{NP}N;Eh7L#hot+n^;W;TbMgXF-LmeBxh{uPxRjK
zbbZ6a(ZmHzx<UWe+~(kC&NihyH1^9=!1I^2+Ua1IgZ&N;IM^*g4BhMC7Y-uFJt@3v
zMtf2+_c`D)5drBz2fsSF;7R}8!665~Ik?ftwKn|C*RA-~$@<bd2SfYRNImM{n1k~a
zX5Af}U?Ly2KjXL`n<uH3j{Euf?UCa2{vkns3MKP2=aU&-2q=Hn!8r&1k|l|0R^p<A
zOU%*1-wrN2xWWc^aLvK(YDwHB&f}1CPZZ%A>2(KxIq)3H=ixY-O`~f$({t0o(XmZ$
zJNVbZEzW)-z+uiq4K>F!y(1d(pM$%OyD0rmQu^#q(qb>BztJykT}xk)*+`m=I<rxC
zHj-x}Wi~3!M&;QkIvd4iqtyQ}^&L=B6wm*6+`*ASBxgQ=z}@X_x&!Xu;EtSgmLRYS
zh~y|iauyH~F`zrMJ3Db_0YSciC@M*UBqa+-PD)l$(*HBfkN5uX^{ZD?U7f0{Yi2rB
z2T>@9d_g1ykw1t%-ZZ8veIXx{ZyTIgKv1}vPkP}XiUd(Kh+_XATcm6PqlyRdN)TjV
zT0TCXpG8<Qh*H!Ux_1tuv`A7Wh_XSDnXwGz1X5nW&%UTn3ddc=AjTE(P!5%X+|TCH
zC!|*mqFNBiL8JtMpmWl*W)QChQC;AC`_y2$N1Z!v7-|uxLtqhATfk4}q)#edfqIx4
zge!>pLHe3QS`h9a{6VA#aU~<KCkSs4z99ID;it&+Rc=nybIOiZHzSC;LDUO^K1=lr
zuKVk}oQ_~Ud9*fenm3E|AQ}ZR#LUn8j2Z@MtDPnj=X3<w3PfD=b@SIBak)V>3F7@A
zmIl!@h-N{&8N^#bG!LRh5M6`l7Id_$We{zGXd47C+-w!Z!0Jh@S?7d7?CW+xv=5?F
z5S>MA2g-a(Tu0{ldGqV{8dt9Be8w<Ummror$#<wj!rp(fHm16}2hk&lenIpPg7<;;
z45D`seMAnug3g<Qx=J|gS-#hU=o<vxdaoMRgad)Z0isHSf*2gc8>|dR{i`lI?q*n}
zcVTS<K|~J5F)-&z9`}$Sh6XVuh^avgV-Z1&Wp4&CJcxH#mdK5q<Y(FuqCPBTR1l*D
z{=zBum>|Z7UD=f~#|JSXh>7eJk<gkPN9Kuj-ILkHLdZiG7w2Ox_j#3fPVr0&VtNpB
zf|wh`dqK<yVwOlqnam7=0vU4E$>HCNf!RUua?cruoLPu@LCg<gk>KRxf*=-B%|5{6
z|JA3PAO<E`Op%Hb+vl_ybH5%b%Ys-Q#AXU4h!28T5yaXc)&=ol5G#WSz0B>SAXWwO
zv5@oQ%f(j<<P#=Y>C~jb*Y!W8YV}H9H7fbDAP<Lv2(8u{fqW6fmq7#tE(IYAgbde=
zgr?mRh=hYsDE}Z-_S&H0tUR;Qs7q~<IpM5}3L64aA<ZDHmv}S?Ti`JPhv#$r|Fiqn
z2eC1TuPJbk`>P-}h|Xm_*=3tV2eF9%iKf+fmX88t*c!w)lx+})gV+|tw?X_E#Eu}o
z6Kvaq_+BJrk29Yif~dII>3XUwABpS?VpkBm*~^uaNMTRy;g}6#Zx92{J4d7$R{Wb4
zORKw2h;Dxn2LwX;&p{j%`1G5O0v`$DXb@+D_$`QEg7`Iv6G5C5495gKE_8d)=B&YK
zj{h8nQye=-^POf53phD&KAG^WP?d9{{(SteLgINL3gX)uHoF+aCF+=jxe_kZbkLGW
za7(xv#FPE*cnNtVTnplQ5I2Ij8N}Z~{1e1277@hVAns8Dm*V~m;&u>sSiO_(GM56J
ziTz@^hsm35blnf)K@bmv_$!E=rssn>p2N+&j7s~Td*6C@kF8#BLx=NG5RX}65dQ}0
zh8k6}Jy$+=_5UZGQBQ+-7R2));w0S7llHiRH+I{@na{a-JakFTf|6$V$(A7D6$vFI
zBudCDA)kaK356vTk&s_P0SN^q6k;2@W;Z?TI;y(v`@D43`)S$qYj@ncraM(CDxsK!
z;*zsTyZS$_f+L-5k4<#y@T!E85~@jngi;bpOQ;~BqJ%OM%1S6Fp}a(Ao8IefGoFt2
zmW=qT6!R+I_<4n8p7&gpBvh7AMM6~xgU1N5#5s8~j9TSdx860mLT+^lH6+xQP)9;d
z39m_x@N2Qebxy??M%?nzClZll2`Lg%CAcIE$m9L_Z9f;F@4f125%6Ey=|1s626;RZ
zyb{_-Xe+@d!7rhu<oIMrmyjW$iG-#S>Po05p`nCq3H2ppO30GXK*GX#&K2+@f}R1t
zIK`RnEUryF`ODWxLSqRz5^^P|Ssu?>_vk#?yLWp3e#`&%zpf+Ay{&8e+D*!7CZRdy
z^SWn!wRm1J(1J2w6u+*rr^r&*(Yc;h5?ZtLo4)F0<IO$pb`si4cw5473IDe7c96h(
z>W4_^D4~;t&JwyvIONNEOF~x(-6*2AnS&&Bm$14*ZZ8SFCG-$@_O9HX5`IqclHP~i
z$FAR%TQ@hSuLQ2d^<(o}W%FN~c=qnx{*)VAy*u{}0f`KhFuHv<k-?&f0Q>a5hh@FV
zYSioB`?;sjDL=*1>}1YR32WPXhe^28ESti4N5TjRQzT54FjB%O3F9S9U~Uq|NEj<&
zoP=<ZjP8Z9V`n|hmN{KHFVWNBQeeeX&qN86Butj@u7p!PJS}_s_q^&O!_q&~vr0Ib
zJ8p0HyQfK*Az`M3=@Q<PP<=;w&1>#_Z)O}UnLA6uYzcenIxCOltiI3T=i<mb3G*c!
zmGFy%1?*4>ngm_KA_<EnESK<sge6qPT`q>D65bd1LQnh)$};gtuk|Y^J=R|W{aCJ)
z@DY2Yl~<CmO2Wq!yX34P@<%mmS{A<wIE{IHpXU>*8D+T5`<Z~B3&_Vc0{KF~FC_#8
zLa*<Pk|l(w(xuZ{&PhMqE}ef3ii8O5&$WcfHS(*H^X<X>c@Lw(nn>6t;adrogs6l~
zjFn(Zh)Gx{VLjU$EU<iT*=P&@S}ISLZ)6Mq@eSUuBy5ndQNq#|eiCE<dB3J6@AclQ
zR`FhsbhTBJBTpJ`matWFrnq^$eTy@e`|{G^Zv>_D?PT5s`JIIA5>K*Yk05?8VTXjB
z5`K{Iql8bMxcU3ZwcXXT2JaGep8lq1L1H{lT=LiKCkcD0pArsA*e78>B{{9{0S>p@
zP3N}A<kub7TzEq(|K<)!I4prvrbpOowrkv3&%_bls%JgzC;IuJ@~ebn67EU3FX6a^
z6B2II=sotFqzX}DG}LT$!L-u?{wCp!K>jSBPU6k`70*gICn)D73=6p!erG4X#4ifu
z5-p@auDqmgt>xn%>vhTbx1Hau-wkT}-!9@eCEOCkKLq?!K+?x0R=Oi<#g4nnZu&8v
zHDq`o;hBWz5+1UF68@I(kA(juJQmE4XaOj<^KloF(hh8OX7wE>=UGWlsQ+0>Pid*v
zxOOy6=M3}Mxvn_b(F%sVGU8?AkwGtc6lsEtL>XF%G_L+LkRhLpB*C0tMj;u61zteL
zt-@&q1>EEEvX7?TN?$wI^?7YyF&V{WxWY&a;}sbtWZWd1j8|oplo6Jp$S5VFw2YN9
zK9W&JMp+qe$QUT2oQ(1^n#yP<qk@czGE$k9j7l;Wol#vz4H;Er=VP9snvAKf<Es+Z
zcKmcf(0M$Nc-ls9O&PUh)E30o1oTcwuOlN_Mv4q-+R5dfZhieTQ+&p^E*>Q3RZwX%
z+%oFR$duuc;g!+rQXoTyPljK#I$b2>$^ruy^(Y)N)Rj?B#^BS=-};lP-Z=|ASuz^P
zXe=W~Mnf6dG8)OSd*!cDD;sm$U7F{j6CU=(h1uR?MM~$&Xd)xMXZ%-RdS5T#_!!|N
zKyw)_Wb~G?@q)Xhj8-x_%IGAcwTw2*YEWDU8Es{>lhIyA5i|AfRQHxIT>Pn_{oyys
zlpj2m+cxAiBAsP)k<m>?cM5!ey!*|<U1f~F6j;|XhaQQ0$ml8B)r(Co<{7iknMz8z
z=tTXp-P=c${<@65GF}-T-%mz=83SZzwrAg+PBliRl)CMn;Lhf1@*p-}#snD?Wdvlr
zDT98?N6UCi#t<39#UmRsRL0vfodM=2K8%u?o{@J)KL#$oydz_TjFF-;qu9ohjzK1!
z{#t*FOB*9&v+f=%W1Prpyo{M`<J+E#V=11mJ(FZi7X3S4u)Ql|x{UV(K83m=W18%o
ziO7@e|LI1ud?_%4$z{wHNoL7d)Gz;R8FOUkKZ}*24lgX#fDYwobLLUDA0?G8*oY3O
z7syyhW*Li}I$#;qSobcG@&1v7_XYl7iF5lQ_b@D%@qvsLGCq`XZKrGZbQk@2H0|Tz
zzL&XwJ8pz~{OGuRTqWZ(8K3hMnC$ElSuNlv0)8ssjG{@TGprGhK^f7pjlYobr9eik
zY|cks+bYSBWe^DoxV2tgZE0FWhALyfi~}6YY?_Q6GU&n5kYUPL&rXzKF&|21c^v7s
zh+QinA7j+mMsY8q)(K+YMsXXc4>G<Nk6*v!toVVGe3N+mpMaZXY!S#-0lyJ&n}Fo}
zRv_QW*#45j4@J^{kn!V7N>0I7cFNc#9(T*wBjYDF;aWbj?G?l&&r^oXE6OVE6OTlG
zmT^$VNg1bP9FlQZ#xWVkMeGq7M+I{4c}kPGRA%yvj9&$XIMWiI5bgcAN*lI1UtH>G
z8E0f%l5v@mr~WsJ`(4Hb8D}YB8Q)zBoEOPYUJ8)8f1@;3hM8Ox#EWsMtN*NfMaEU}
zcwNAfyNX|vF+-I8v~e0sxgjH~QC#Ufsej1$lfy8CULo9;afg;C1aAm;W!$6sg-|qv
z`!XKTEQgRcgoiXrE8_l^@sG&)F9CnA;mGh2&3MS^<$ne7KLH;L_(VWPJ(cn7CH`DS
zoZyca@P#PK&Mle{LbtfoLW7HtKVJw1LnstNQV97&C=kLQmjdyZ10^m8h-{8e9k@KM
zut+{>dE9S{JC1vvQY?hxAyf>ZQV6evz|JZeLa7i+gz)q8lvhKT9^af{^YfI_Ay9xU
zrMy7Oh<wV1P);DO%K@hXaj6wVEX%4KLX{9wL;okqsv)EZ&T0Ze!0G}rVGV)Q6!0|x
zYYA9ez&ar$3xu2xE4OKuC$(~Xsw;%F5OPGh?hv+DZqrGqhc5(w2n|AL7(#jo3mQ4n
zt`|Z^2%pBKGSm&BbmO!+jnnFfuqQjM`^<#Q5V9z`1&IY4I~tW8LL*UJ*AN=Bh!C2G
z&?1D~5Wa2{w|imY*aeAA1Vd8+n+Z6eLjnt8Xi3ia)YgL7Duh+5J2Fp(HiFVNgmwZU
zXZsL32)v_!onF#AhtTCEUUYuZZXrjj$=_WNdxWsAN)jJ?htMa45h08W;dSza@U~#+
z7efCK0wKH^!hjIo2w_kNgGChU&x8X*XjY&e`<FP?n}Nt%f?=qD)#er*B1G3UK6RL&
zP{)W57x+5@zNpfukaH!g7J?qa=n%$)FgAp7AuJDJ$p5_KL*PHr<PhEsVL}KKL(XE*
zh32_umgP(e;mG_ZN6zJNbz@2h^I06TV#h_?)2MYJyhqImVRi^}1aYQ-vqC(Y>UENA
zcNVf4<_h{eD#Ppb_~<K<M%XXjvoM6k)aMY0FA|W;Krit3#p6-|Nm&+hypIz3AcPem
zd>F#Y5abX-A$-K{3*i%L4ppLY&c`9F7Rb-_nlwDum$1j>z-J+R9>SM`KJId04GX;-
zI5n*Q7aT$Lnvk;8a5HT%1Sy1XhxJ!42lyBcfoUTGlBk40wii*V$ZGrLfDwWj!u}8r
zgkXgbrMiX?oawSD$vf_KA*^SrC7u{7xy`kf?LFuCFgbY8^Hm6h+e6qO5Pl4Ar0NQM
zlYor<UkIB+*b>6l5Dp(o-zMna2%NE`d@CqKzI#br)HC<{5Pk@O2*Zy8*&*Og0e1<w
zTkw<N_WAUmLfA`Fc|LugfLo$z#D8YaAtZ#67{(zohwxVje^VbqI2ywF5PlEgmk@rX
z34O20S&qSio_349$2f32K8E80IT6B1ft-3tKOMrEm-ufXoW2|&^SKcIy&T|g^2Sct
z7ecrg!i^AahR~@?_N5R${>pnjgtOI~Tn^!iK&}c%$~Edh0Ur_a_)Gh4g|Kf(?gN^1
z8ddho^M-#4cw4|b0^Swyo`7VyA9DWRi8Q^HoBtK>d)>16hyG6pk3x7B!gE$Egy9oC
zk3)D8!kUqu|7f^=$kEPtpN8;$%^XrT9`tN$m%VUe|CM#~#Dx(bMxHQw{OVcUHv6OG
ztgl;TR~VPWrsWMIUl<6ZdKgJz<PW1bKjy<I5Jo}4UnGn|VYK)$w|blG!eOWT_`lC8
z-AVEl4I}%xr&t(s=Xn^mcFryl#;aje38QKloAPIt45LgKHOu>mmkOh_AWpcN!^g5=
z6ltAPPCz2%!>AzeiUL-8Nv|B{G4Nb6R11T>@NUP<cmDCQX~%U>4dxt1?J(+u!REXc
z#!a(ntuXqecuvF(sMamp?3$Atc5c8-2_rR(V_vWRxYv@iu1JUMrgy!yJUQ+#-Q%N^
zg3b!OVfey$9(GRn`ol;Ma~2vC!pI1tZWw*T=od!4FzS;bj5cAOA9vQxx%}NUjI1yk
zgwc@F2%~WrIbk$<8Ox7bUM)n<+%OKr=UJ}!nusVO+&fCxER5!1=LfAt7_CGU@s@%z
zxRJ94_hO~KZ5Z9z9bvQ!qkR}1!sr-A=P<g6B%N3Xv0})Ac(W&AS3&P4U|Gpe*R|F6
zXOrGjQ2K<?OCZd@w?MkKNPk@v`XZnHf;c#gfItQa_(m851u{rLZM>fuzDZm>jtpZ+
z7(>H&M?4M_@NEJ4??cYv0w-b~b$&KSP@dxYwoze>4r5FhW5XzQB|wI8q9)|wBcWM5
zbz&Hk*vr(PFeZobZWv#L@nslO!k8My`(Z2%V_Mi*8+tE{8DUHp_(xasy}33qVQbt>
z>TMW{1#wmwv%}6Wz#IYR3dqNKVa$JtF9>6yzzwlfv3Xx9=FG4}<S=$;>asAFzbGP%
z55ia>@Uqq8$nzmh)6L|Sg5tdrXnQ4a=5UKuVGORB`f(Vm1^tsS`e*i<dL=OEO5oEl
zKI3rP(C+gvK405*jeta^7fua^A%$UvVTB=w5eh>U$-`kNEZ0n|UnGHLJt<tNLD7VW
zh#Gq`O=Hbjhuk<rP!3m2rR984|7aMoFxH0g(NA%<h-D6x5@Xkev0hNV3S$Gu8VBG2
zcdwnP3`dWqup#96Ul^OixDdw0Ft%`Hkw1*RVSE$DwlKaA<A*T56`7EEyFk7ZFza;N
z>WA{(pVHvRFm{BoOURZyI|movDHzU=Ps=D=e|H#r!XVBl2L9db3uAv6C&M_!vAHGg
z0Ifk72St+Ei7AJ|ILu*NCADsoxQ|sYt9m5t>_Ryj1{diVei6v89Qy(}{*rz|Alu$b
zJRQcFFn$Z;tmw7h7ZxjVw+M?q$7+O~|KH!KmOE2hU9Ee1M;b-Vs1o~9E`@P9j5}f6
z4dY4}SHrkL<3m^|^;#I$X*3=TT=HXGGUusMf$)~7@U-t+{29g(Z{t5`V<W|=0JmvL
z3Z=5k2=9e)Ka9V__$Q19VLYS;<}b#yITim;_x_?SEu2cql9ojth4DCyCt>^>#(y*g
z$6N4PYC340SIDX1(=eV11z@%h)9aJ6>PjF^LA-)I3KA5QR8UGmq5?W_V<@B`ufX#u
zNK%mhCB2}60s>FJ?5lOCWs_UUWG<|rh=QVm{>qC~l|9826c>1dweA;rmQe7jpzx9V
zDoZOUqrgKmtDvlcatf*|sG*>|f(i<%D2}KrDmWOQ%urb*tR!I4nzRjpGK{UNpqgNV
zg0E*gr$|WTJSt&L1<8tY#qDbfY6+g&3fBCTP)FeWyMHamz4Liyih@)HE(K`{+=8F;
zv5VGv^@bkKCHhY`WDY(Beg!!Sas@-Wf-D6M6l5r<tDv3&PE+(;<f<=Xi;PImWc>^I
z=@u!rHoc*OYz2)JG*+;xXnuaI(st1``ugF{AY};8N+fKeprwLV%t}Es_QK8N<_cO6
zp=Z~d$-mC&%dq!EptXWF3fd`XFQVGAk960D!?|Q5<ozQZ6m(RaPhx6*%QR2mnupgk
zbWzY%!7mDaRnSdAcLhfk^!2!VDCnsms6bNCOF?f1(-cfs&_}`R3Wh6qhinwMf<X!f
zE9kE{uOx12eM7+jfxrGnE-BpOI#6-WlF*56K*5`A$nAPV6}-jX=@tLgwYVV)7{%Ak
zwSU~t*La61cw6u=Z7sLIq~;x=V5EY{3f@&PO2KFa6BJBTFh;>x1>+RnRfn%%sT-Qw
zl-I=E$>TY`-!*ScI(^+2y_w8R%sd6poJg3&h7?WXl}S?+X9E}mHvmi(IM<GQ?eO#Q
zJq5EA%w|DHT{9HSRCuAPv+uOY?6^4!<|<gMV2Ofx3O0?-%Z>L770g$#K(H-YlOtaV
z&}@>vNC6>ln0jBqQUxC>SgBx{g5?TbGhv0|yh>&T{r7gcxx?havkWQ~Z*ltcsp})E
z0n;j2t>FF}{v=*3vdfpAH@iT#myYh|lo;@df=`8P*{;tNd@k@cFDYLL<VyjEU5}F$
zgcNL7@V$bt0)=!cMv;UFbwEK(!CD0xE2F?t5LI9(FhyFgukgg@F7DBNxY^B_^N)+<
zVR50eakhf>S6rLsde#w9utC8_4v?aGx@>V~Ccjd^3vN~)^?ptHD3~%OZ;5{S*|ZkR
zGS>Z8=Uk7*n-y$PuvNh~3cjNv<xO4GGVeA8-zu2&yPJz^Ja)~yNO;8(|1TIz-Tpzr
z4h1^}^N#}Z*J&4fO~C;LKP$Xx*ZG;+t6-mkp9FsJ$6Qhv_Oo|FRVixXytezGf<p=p
zD>x$L|MX-cqn<CokgLx6^6=G(TuP?d;nCw`3XUtd#^R=XPbfI4;Htu1ovu@?wlD3h
zf^!N^3;c|LzX`}o4;g!&v48m<Ecb6N;rpG2t62I41s4@uQgB(p6{=7Z=kA8j_q#q?
zm_BSw`iUw25>H*se1`63an}{x5aoXPRrXB<gtr9zL%=^3+!n|k0q+WUPe5|sr-gZm
zKUDCSz`ttcVbmi9|FV+Xv3)!KQ}CE$b^``)z!L>eX}c`sT6m`5Iqj8>`a0qwh>svu
zg-b=A2ofUb5kb!g5+lePL5Ya-51ucA3eP+Yg(FB3czyv32w3oCY$1WLE6G_z;6(*2
zCSY*^Ux_&TugLIf1SKOV6+!6;+!1&pC=)^12oOQ_2+BoJK7uL{RAs6NDn_t;ebLGh
zREl8lx)R?$%a?n*_}E-$heo#=t~^hQ5~&u!wByB>9w~m`D!ODqLX8M&Mv%g$Mete#
zwIZk!L2|?ykF^C<ALl#naYiL~YEdOxJkIwbxFR5u76CWCkonHhd^`~6jldT{b4Eqr
zk03pQtO(~5oD*;v5!8*Kp1^yYkK_F&^(nyg_{<1+@|s5oIS>El<cx+9WJi!2L6Zm?
zMbJ2c31{PSBF-@`Zm#C#w!FRl`z3vwl}T$V5;ASG2=|$|m;+~wIY?VZ&?<tC5p;^6
zbp&l9&M!v$2+p64ZyP~7@yN{>%HKId4mf*m89E3eJ)?GxV6@-UO~Co_O}j+UH3A|e
zzJT4?*F|#q*einG5ttEJ5%h`R^#~S3urPwY5%h~-Yy^X{8~2Z3Km<b~7#eZzdZ0t0
z+dYfF5pjmhKr*n)2B!@ckE8@5c=ILxmO#F_5*WtLYSQ=}@%Z-3*x>>>@ucwxfs7Pz
z)XUh>5sVRduy8qMJ1&CpRFylOCPXk(&?gEwDT2unyeshc1e_uulT2ly0-yepa`Z}I
zhQL`RGBC`FV78#l5pb@6^8}nPAbHq|MG-6(kDo-aB!c$^zDmHQ0xlD<LEj$B1@eJ_
zOuIrLA4afJARh^M<ZwOuMEW>_T`lXcj^NytzzZKumG;&DR4{xd;O7yn5y%$;ekov(
zau8mgqzL2)LJ@=`P^jVTpj91KuV@evY?^>-1kHY~&uX|6JF*Bv5XnPIGy*$<=Tt})
zu?W^iaEN*s!MX_6N3fH1i{PsWHbk&3f^Q?(7{S*OY>r?{1e+pQdcj#U`d`HPFlhOP
zpXUn-JaBJiml^JFBF_D`bhgY_#_0);LtyfJ7s2)jzGvkR#{D`c{)Y&Dj5uEoJ0i}i
zYgX-KzQOs((EYe?cLaMPxRIE)Kf*1YX+K5Ky-oUFfj_(w*cZVJ)z#&WpYT8gKhuo7
zQK8ju>0ib94zkX1zTavOI1<6p2yRAjOECWu!HEb?3jEgyjxj5N(@LLR=&awJir{nv
zS0cC?!5NOVcjGtr^86NYb{B9spJl^)dCm!VUclc4ydWT>E=F+aC4QM26>^byErPc9
z>Re|-gp~M)!q)X@>uYtv&td*Y1b;^GD1v_@xE;Zr2p&f8R|Iz>xEI0w2p&Z6_tARC
zz5Z~zb4qbl$oY=qrvg8y{-z1tng5>%R(FY~A7fskUGG8iANzd&iGm(S@PsnyUod}t
z-|+0Dr?erh@;?(%<IDNV<jWp+p?AFM+;{V;ijsT_s7O$es3Nb5A}Wfi$fqJn#l9VJ
zg;f0hV|;!U1ymGN@!oA$vzF;o<~2y0oN?n}?~)B2;S^S#eS^u5e8p5p8H$UX`Q<?T
z6%{1}@uWW|rM&0WV!14|l!|gH%Bv_XILin~dRc+IxZtLOifSsLqN0jQDk`g}qJpji
zs;cO5)G@G$K0hBBcoLzyiW(|vsi>`DaLiv*#cL|=mCj3?cSSKAyX!U^=B=Y5Sw)J9
z`Axj{N+h!{lCB2guKKubCQXG~MRyH7G<Z~aRqR)BK!s0*Uv-Y_sw&b|WT;r8;(Zl$
zRn$|_NkwNB^;Kl5XrZE|iYyfkROG5?qN1USY!!`EG^T7_8EL!H)&G1v;K`qh92LAa
zqVd(ht|pl^t_GT_Xr}Tl8Q+{@Px0^<X7sNq+{VD}=GbYaqP2>4D%!KSX?@$M;L>MX
zf%nXl&KqMJe&gxD6062{q{O;7=T%7|Jip1+MMYN?{Z#Z<(TxpM(Nje)(IeBwgA2Gl
zR0kqoT5lD7RJ^XDFEh#Kj6{B|tqW&wKIzJH$NOjNoYh0T15~`B;!PEAsTinY5T&gm
zK;@a?SzvkS7Q5GV*Rv@ZJ+B6)=S%zApE^VoG?YcWnl|QYfM=*%6-pnb;%ybfRlK8O
z1T{+KSjI>dqf|^(F-gT}k!qZPV+0&4AY1fsNBnq!Pk2dbzcPOEOMI$|cVFUDD6xro
znPi%vOn*tAHO(Q;6pss3%o50K6?0U~75My@obyyXALUHAF|<CEuu#w!y^LL~;#zYj
ztEDQIsaPYFWH}*qRd%nYCad^Rb+(PIQn6A6*Mb>7qA337?Q_+)D&VD$%KDRBA5(uO
zIa_o-A+w6lRD8}%J}9&Mzc>>2=H_t20RL0Ipn9kXs*qGfL|L+mkczMhMaAN)ffr{w
z-W-zJ>w6zB*5m-$Sum}@p?IpUrb1U?sPy-OjVitt$t@LYRjd<uRE5n~fWVVZdAVPU
zcL}Y3+0w66M2p5RI9G9lpd9Pghppa3T*db)eo(Pl#TFIYRD7#qtBMy4-w1^3HDo4*
z;X4(3_qw*LcrwLHWW^GH@XzEQRqRmV_<>QeQ^hU{O2r-yrAaQX4sYp`!{l5p<WhL6
z2X3<MrBPDRwwSX<Kjf~j$DW*@RUG8F)6hV}Ar*(IjT#a)98qyp#Vr+osQ5+2uPV-|
zIL}(CIIiNPic_LFQ%dC7I4kai3i+gSNaVDNGb(;laaP2(9O$Jac}P64EaR^Nj#RmO
z<aZSpR9vM3sJN)&l8VbJt_c3K8=Y>wc+b<StDhrCU*Y0anAcT&GCb*qikq})>%1vV
zovTz2f8;v$nd8dlPZhUSJW}zmiaRRqs(7g4FPbl!$L|Z=SMh+4M^is+<)<9pm)+b>
z)?=sZZ<@Pt@&BmU{$Bz9@3SnPs@|RG|4+qZ70;-;G(OXko~U@LqIiSU`bS;cI_J`d
zHZSap(-5yAkA_AI3v#sbcAIv8IQOD*3k3g3^J>Va;WZ7lG$d)ruc3m5iW&-ND5#-`
zhN2n@X{gz;WMK`vzbTyE*8grbZ=(f$xo4OHET)N9fQIBpP5AhVh7uZH)lgDHX$@sG
z(56jURJfD|?h4z%oo}^0Wi^!3P+mjAL>B`u(;?*i6`e%!ENUeUl{Hk;03x;gRWwu;
zMKJRcKfAaD(7KDaI&&VARD-qBF!@UtFJI$bu6q>s+`QfiS3I>f)Y0J6;AgEgq-aRf
z;MSbuR3%FkNY&udpk58Ib7?jSJsPTy^msMr<F?RA-@A>nc}E7fIbG|Uo~|K7LtV`|
zZp`EM^)%GiFnSs?*}Cc(pRR9_^G43L^PV=_J&nHiG}Mr-;UAx`HASsC-$e{9G&H7Q
zce!#j<Z5W5p{a&u8k(~X3E6ZSaG;oD|M{Ewna?vQf71`j`k1PvNZv|7X2{S+Lt72)
zME>nHbkfjSLkA5VHD@N|n%$4V?&z)K^>)$FRYNz;@$$N3r*i<I!{^T1A<y^eJvH>w
z5Z0h*=&hlThFKbBYj|BlUzVj|tcHFX`fC`fVVLG@O&_3PkcPnme?!B=YH<VEFEjt|
z=9GYjw=@jVoU3Hs6p*J;zH`6IM}~bZUVU2-M`#!+kl`YqcLcuba`GsFjMh-NyK|!o
z`3Z@S(=cAcyA->I34&*mNXXcU8eUwjLVU7_;^R~iJ43@v4bwDC7mtI!NM!xr6ZrR6
z1H@VRw-85Uj)u7!R%!TH!#oZ1H7wS!M8oiHB^kRw!@W^y3q`_3l-QWGjg!*Gj7xi8
z!%__^G<>LGnTTDk@lydM5|fx}GMvl{PAdLW*|?P=_9GTCD)~i;BgK6;t2KP0VU30_
zG<?dUXQX{DI6o6OnU7bf<St*7xqYc2s39a`B@J^<1!RE_iX||%<u0ccyilf4mAD8M
zNyB9gS2SoEbPeBY_(6lA(X&BHOv73Yrsm9wTN<JoYz^M${iqMKB<F}3@pT&3bBJl!
zOnGY9Kz`NzwMeqRhjWl~qXz!K@;DN&u-~NNkLg)lCEuc9tA=kmYBYSKVH?x(WY(f=
zn(-6)(wOt__ftP9nS1fJ|8cv_?W{&WXRQ6GVTXp}8ct|D%Zyzb4$_R%uxQw$A*a4?
zKP|?ToS!u8)v%9-{bq8Mo9GDdxEaWBK*P_%AXI7G|M=AaFFia=<FDaY4aX?(ZH13&
z_(d>mFV}WSldOUzbNRW#gTT$Yr*X1$?eH=uHJsA0X>0BU4W}t34QDl+V-1IwVGZek
z;y0@6sX9}uC42HF%;hzsx0B9m_?>$4*jsmlKYZAC(dl;=bGXE@AiI~Y^k3C*O+zsq
z#dTcQa6`kt8vdiMYPhB0Z;ssJb^p-tCsj+seGRuY+@Up)aaVIrR&oe)s_Nm@K+z4J
zHl3Yo4jyo<Y50pnZ<lN82N~5HG%0#5(D}G~<$GEGh}<3tNQV{7`LTv4l$FjYVyB>|
z8sc=s>v*Q&xnScFRGt)THr<^^$EMmoh6EjaB*L;ruV|c4N0N?0ItuH^uY-3k6wpyn
zN7Qyyg?BV?-fz@w*RWH*B07rdj?Gsp<geAud0i%73-F4`S9FxnQA0;f9k1#rsiVA(
z3OY*ZC@uKQ=+3@VesA>sJwKC|)lp8z>(9OKto6sL`uIkxsH2jOsyeFasH{6P+jD$L
zRdnZ{F|}aB_ZPbO=4x0f9y+S)V5cyXX4e8dkV}L48Y#MCa(y~#>!_n6O@~`YvW^rT
zsXAP2)QI$UUDG}+<4y0B6Tasy)zu>vN~h8?cyxGmXUTv#ol)~`vTJv)Uq?C<R*BEh
zQCD}iSfAMB4iwLDeVN1l%G8miW2A{uCK~8ysH3}q9tN^?G}5tC$1WX>b>y&I9V>O@
z>S&^4l#bClno{^W`s(PXqq&Y2Iy&m;q@$&dRyx|U6LqxKot=;jZFKZ@H6g;O)MP!a
zy^an#ZcK>3(j;$SkcaOq-feXFkhimrE;@SX=&7Ttj`s%_?ZztUuvU8M9qWnac3<@T
ze#e)6rfx50sG|>suVe3X*Mas;ZvCA7es%wu-L9)?DKsp6{q@%|Ku18wo1*XD&@o7N
zjv?pvh##oq&$-Usj)Mi|i!v!|`Zst>#}FOEb-cqShvSCo7^dTGk(QSZ^OC#e2Yk#q
zYf>h|2+B>zmrL{VJ+kPt-kj&Bi?A`e^ZtET#}pl7b&S(7UdIGMoJ?izowVdc;fXpX
zF+B5eHx9SBlmFHy#R#YBn5JW{j(LKAx{mjB%y^OE4^?OCn5AQmj)(6g<<UH|b!Ss?
z(sTEdd*1bxn^v)0Z+z>XuVaCZ6{5m}t|hI?n_gj>ccG3&92eJJi*<Z<$g@Pi_XS)k
z;4%T13rL0!bo9R#Ai~p&RL+ldtkSVg$9f$f>sYNr({a9R<|jHn)gkxye9445KBwYQ
z$#usASnAKt(PJjxHMlf$pw;5|3hIyqe`cK&Sw~0*T^969^oCj69@z|vjy65BBOEf6
z-nD>R&m~dUVdyZa06GrV$+cO5Yk??rqed1Vi4%$G*my0lRzwk58u5QcDV6j5&(S?>
z(6PL#f1{wZnw;^qKsHfDCufjni+KD&z^yvI;pi4PqqYm=Tgv|>rB!*)_X0n7EkK4J
z1-^q>mG^9{RfLq?I`*)a4dgNK6V+13Im$|R=0Er8IIQD{j{Q0g2+Gf*n+~yE0wGV0
zUCw_8w-X%I@r&R&q2pJ992fAIfIJRQX6|s<?nyeS<CKomI?m|$jlvfUiz|3}0(5wP
z|CE(Yqep!F4XKBQzw5Z5<BpEI?1-Xi7j;~tk=Joa$7MmeLgS!=j*^}paF#jxH0VT}
z;f9V|I{pw*H)+<o`sfMmPb$^pWQN<K#Ns!*5@*7DI_~RutmBD}2b7PFM>>jyU4PNe
zT#x&knJ}wsft8js>&s)0gx_^+`mc`v92E_alYzviB3nx1xk&y@JaWeuDRG7)&x78S
z1Otf%Tn5q%<Ta4bKzRcd3?v!IZ=kq=R}2&|P|(1FL++vm3X!KvPGJK@h-c>zXQ*~P
zz~4P)NS<PXlXwXOuNo+App1c%2By|ZDP<t1PDW;(RN|D(l_GWdIAe~htbuX{D&<Y)
z_-cIJ`8=!0M*}qVbqrKCP{lxX12qg(HJnxQY6f69U!=qt4*kz_<7&f+2i-Ldyk?-5
zf!YSH6{^QNtp3MCI70WahD4ZQvVj!lY`{0M8kL0Ch;wfMJs-LacnmZ((9D3Bu?89#
zXlTH1Af06ysBbuTj%OJ7V^elr13!#&cDxX;ST;4&z|1;+c1@N6J~lt+T*cVFa9Xy3
zMh0?4L-^R(z^84C=NP!V%qbKrvj)v<)<ndXdb=U(*4#h~18ohoGtg3WP;0{(;H+mW
z_DI{z(;qm6wh=<$747W}bTH7_Ko`N*(Eyv-N#NNh+{F0-#?aM3H^X^N<A<z0e>e_!
z%XvIK4fHZ_$iQI(y$$p+Fv-AV1FswCYhbW}fPsDn{`)Py*YyCWDf$~2VBihI`Lr8o
zU~%EJ7t8L0DD$a~|AfK`X~rzin+C5s!aJ<IfguL|+3Fu^;B8Sl4?YiL-RAV=MAp&<
zd3#Tb8)0CifoYXeCkTd72H)BkYhW}LZ&Nl`7+L3W2DUuP9xvEPB+kGjG=>wI{8XK9
zD)oQYz!U>v0}9oQoCcN|SZ-jtf%go|Gce!44EB+MIR@_Z%x0=tRH0jOvqcUqm!_x3
zvN<m1idbW_mmeWyTVP-jTWVmT!393Ib|i;ziGlZp5S9`S@$%rn&hf5<W2uxt$-BM}
z46HEl2|L=rhXz&}SY_a2_UV;4P77Zt9{-U6b5X|3w*Ecy^Q<-y8W>;ydfb52Twag+
znSsv@1Pw?+8fy%EVc<&xT&OL*-NPB+gljI|;aF)_ifmwSW<h=wg$$e<?`fHkUVEG8
zt8K1`0oA~F2DTf}4Cn?n8u;3P!9oqh46HR^8HkeYdYnxyTGrwBC4Cu6|Lq<)!%LSM
z>kO=Cy9{h#Klb<2p&Y%m@oMI8Q&K6D>CHX-@Y}@d8Q5yz8ybz;`8ON5^={rR26k+4
z_m?uxpLTIZdYfp%w+6^RuYA+s|J+lr_=tbcfn%V1k=(roeq<5@yA156YW?CI{n%;X
z?};7xyL~Qy${vx!PlB1mB3=4V&+p~8%{~MB4ID7=vw?#KPDM%&Y?JcAS1$fmkGdYH
zv9t*f^&By9lm^5^WfQ*`_|?EO1J4Z{GjQC%pHxBvCk&jVYz<ssCI(JZk{ku;{xb%C
zGjNszL3aLJ;y0x;5GmNe@pmLYDtw*;<buD#>YR%PF44{yxNhJwHH3O1#a%UUakGn;
ze5ngvc}u6iy2ZsqWH$`lq?BknXh<70ELtv|)Ajid`IcV~5ZSjlz2^bn9hwCW|2Y|t
z4cs$upQ7OKG4Q~^Lj!*??LMD+J+Pg#zR&%?J@fB+=1*;$MdBj^|8krfV74O@{j6;?
zklyf!n^`eD5qUl}Kv%|e+8Jje-oy=7%tRg&2_}k($3zo(O%yOu&_q5H>ryh3OyoCF
zByT2h21;YWU-f(4^c6Bum~<0GP2}WBPn?rcHqB4pFAU`2f9sRwxy41Eub3!dqI%xU
znz!q}RWqF@txB3GWuml+GA7>t$yZ*ml{FnvmtzG=JGVO>nd@Z^6--n#Va~~AqZo##
zW>+y$)kL<5MkcD6fJjx3`J1R=BGrV;L`@T~nW$}|j)__(X3S2S_$;o&leom<o|JJ-
zi6`^>yiK7L6Eh2@_bA=;H6#6K>GU)cZWDeJ=_WiTyr!cDJ`=+lW$?Uh^N7>?q^v2~
zJHtd>69>NYv7X<4=-;uyiL#RXe5`LG(?pi2RRa?ZP3*4j@9OeDKjEi*5^8!IQ(Pvx
zo9JO8*F+N&txdEs(bPmU6D>`&GSS>bNss?WIe!aQJ~7j*klyEcW|b5Ef{iP)h@bQ4
zqqN(aXlJ66iOwe4i{d(%=xAc$EvFg`ESG_ohvxsZKo=8TO?0C`tn_6k{0zgQ>Ats|
zzUXP9mx;k90w#L1$tL=n7{Clo^rbv2rS~&2+D?Db`wtptk&<@N|AvVl^z?xy2AP=j
zq5sKd*V#(xQ+B5(9m|QN`QJ40mWj7b3^(Zn14m|O45b)Ne0M!SoR!~Pz@Opu6W>y?
z%sVDVn2s~6i5L8AW*v{8N;}%b7!y}bTr)A&#5fZhOl&kU-oykGD@=T7Vj_z+G26r(
z6O&E6YvMhM%fu8DQ`w3>i9EnK&2-*(J>RZCe7fnpCb-y5IMc+xKUE`f787psT`KX$
zU%PyH6SC%-m`9y7vDCzT6ALI$6N_j)t_QAP53I_c71u9ov56(rt1|=k#b=$#m$f~u
z3UjEvtM4+ARcb=katgCVzk#LuJ!v=S16C<t*06esD>>p$W_)g9jfsy;tTJ)^T%C{E
zqJjyl$$z3zyQ3MO2;}mEI-jz2don&VL44P6A347;VQ?UbR9}jQ1gSRv)sd*`HL_#@
zLjs0PC;}lpVnTh1YXZ?t==U=jWtoVY_{xOjO0+5M3w5|raLa`{71yN2OsqBWeYIqU
zbtcvee8i_dZ^K3fc4l0@U*~HRn@k)sahT#Yv6&3i2NPRNY&G#MJKDrICR)@>+-9QR
zzAAD?=DT^a^!!<LDBZ9_;?gcfwhLKN=DoW2`_aS>6MIeUGjX(c;!YELO#EbGm*CmW
z5z#NJXP}<ZxQcgS-^*Y0rL?Q$%j(c4F<;ND{TzlS7(1tUzn?j*k}?mPh`SM3@~|)A
z5oT!Ol!?>qK@-24IBw#EiT{Ld+$mi3n2A?zI3BP|c1UE=tlmjc=!!r4o-y&8iQi3J
zFmcwzITPniJWh5LDgAsu)+BgvK&eduHsPX)OYA8VS4_11sxLE{8{e<t;=U8|X3=*y
z5hl4#6KCR%iMuo`B@#Ied(*@%8rUwGf6zn>aPG!B&^hx@Hm7suZ4-s&S0r-J#C;Q=
z-3ZjR@W8}F8d3|dTKLPv-?Wn!@>%%D#3MG@LcE29*E9cRB~3hG8#!>EmpL)bxyOyy
zX{}qI`IJg~Bk+tu=#u$dKqAfsYMnFlFs<bj{mGLu?k<^$7Jhl0P}<03hDjFkTWHul
zvxo(97O+rAAO!{7n=g^X!WItylQ1Wo+4x4FsD)x8s<?&XLo<8c2$10wLAhEav807k
z7GR;eh0+$vSg2&7vW2o1%83e8uu$G|YItyH=JEtbP^aVjRJ8CzG_y{BM@mD&nN=)Q
zwNTCC-tx?~*PZ*qGGEUedLz)fUuF#pH7&R;ctnY>S*UH%=s7j7#Wwy|hDfr7dmm<|
zTJQ%lQv^<g6qkiGA;Y+$iQ88=-O>K-Os@qWIV}VpC(OJNNVkw-;j6xxza%A6uzf~k
zdMfl`ZR=U6Zy{3@)JVWA3k@hY3)$jv(5*6G_Q|A3XQL1AjH6&1ThLcH!f#@ssRcC#
zErw<mnp+4)Aw|)`LQ4z7Exco)mF1WV8m=CeW5ilpXk($Rg?1L&Tj*+`n}rS*I$F3^
zrfL`RtaY@mlZDQLpRQo|m&Do5Zk>ET?Q7JXtsaZZy&VfVJ3h<koy9zRTIgk=w}n0y
zUboQS!T<|>Eyp}E^t13}$RHvoei|@fL*F;pkGI`}DHf6cKmi8{_;$MYO$%?aA+CNy
zE!_UjedIg$5DVik#1-7`&fV_*^bglC3vXNa;(0m)A4f2ug}<rH7DibZZQ(-;D=mz%
zoH<p72^Pi*e4K#e1^lO<v$8qS!XyimSx*b|Ei4dGQ!E}db}au?3)2K;x&=C7?fHlI
zJ!;pq^ce!q6p)Xz1Tx#g9D&Rgu=HQ`8TIW2XG(mbg+&&YSy*miv4tfT-nX!nwVl*(
z@f2q@pI%I#9du8fnEK6h59dxlu&}~%oSY}#h<jz7<GV~ZJ=V?Sk1VXRu*<@33m;op
zP2I4t-ohsqKBW#=&@6mr;d2WSi~AlEf_oCySWqa9Hfdj2n4alj_);K20VM%t3n77o
z1tia<OL^$>i|!N#PAJ9B)h!qnq84lm-&~6`*@PQ;EQ@~s-2COdo7|T!b7K~6J#(++
z@N80nn~OTw-oksFuK&uy2BxyG&B8`zay0dS7B*Y>+QKH*^MQ-201TuvY_YJ_!r2c~
zi1)tk<$-A84BuMVZsB_o^__**`MMwe$n}GTA1&;#u#>wJ<CE#K>Cq(*g~nZ}tTPv{
z`?m7zvG9|H-z{9Qu-C#q3%^=8W??_gg@r@3JQjYoaL~f@(a!uBlh}XM?=#I)H_La#
z!cm$sR`PN@CntZBJ?mzB=-P<B%Xl9AxP=oIPE&J^x=vb{c{%PB$JFhF4L1UJ>t@nf
z-?eXiXV_Woe7{jMkGapXs(Bkd{;A?Q3oT0Ko~Kww)Fb7hg-aIxq^euEY~c!rs)ZXO
z+p8Rp7EYE*_f*bY^=oQUzZA;zCgp754<Si5bLpu1{95M!Bf}#p?T&@J79LulSLb^c
z?$h$qhCHo*qlT~1Q}=~^DdWp}_T31O!tfWReXuW^_Q=A&)bJ=8MDd@6$Lz!?sz>p}
z!c*GeC|-%;8AU{69z}sD;-ZL;A|Z;zs54BOw2#jdMUA0Jb$)Tyi1S8~FN#~66O*Di
z@w1By@m%X+RR=C}{kG2aTyYnSqEHltqbPSaZb*@e%%MmWMWZMd1-+bQP4f)f>bhGu
z_iS_LMurkmyc$L2sB-~O$tX%ORTSl;=rB9JbQEQxC>zDK_Vt*_$`n`KPcla5c$OY_
zRwpY&Q89{2Q4H+r{DRTH2iJOzZ1K~9XO$?bMjgkV)uN6^qhRrZ#G?f>YeZ2q3SSid
zC|--ARupa~U*@VEMV%;8qDU2~lB4)bul(U1Z~s#sZgEMe67OOiZUoYzxL3`)d!L)Q
zH8ag4(t4xVRmWML$SvzlkD^oW{23I^GdHs(UN?$*Y<1LGn>gxC$`nZ|nr=ECuURpp
zVHDX>bc>>U6pf;297Ve*+Kc2lQ8bOBnZR?SXd*g-+0p}ia~l6BT1C-X5L=4O&&)|!
zmE>Ff-06rmQO9LO+o&^Z&6#=LUNN-2<MO>j6kVg>&W(<&XB3^I=n}=WEjf&Owk(~S
zkhz7P4dEksdPLDPia-=^M$t>8dOeE1QS=r#8Tv$>)e|E9qUcY#QEhGp_&6YnH`q*;
zzRkz&8B=d2XE%1PKj3|ogQM71wImVkzvQ=~7!t+!C?-TPG>TzSjEZ7(6mLf{Jc@Us
z7$GvO`#6`Ir6(+QT_4(_&K?&xM~!6Vr8L(+Ib*0ZLIUHW*qb+-n#see+%LfuuFB*5
z6Qh_E#mXo?iej>0TM@;FQE(pS-6*CA%2YN#N}u_7PdqM(Vn!4*1wKEDSpu0WAnQL{
zAaew4UNv)`KrV@{U+|J=VHAs^Sj=uUoaxh73OFYq-WRb;qgWQj@|T<+2;|gVhvDF`
zr1R_Cbn(rhT5?&+swh5=;!F1O$oSP!=ddkzL~w)jCnCwG0)8go=K?Z^HBo%=5})^5
z+_8twMie=UP!ylq_{>H)3MGoC9Oh9(s4!9Nj$)6{MlFhH6m}GP)R{Fk1T+P-1f(Xv
zm_dz2@l_NX1aYl^>!MgM$|VD<u`!CTqu9a9oT_6j!lo!TN3n%ANB90uKx*UcJqcT*
z&hDKbqxdGu>qnamnv=eb`ZFi}TLHflaC;Qr3xxC^IBXy05Minh%ct)Y`FHkZ?4l0)
zG9LS!jWj<+aXN}K)PyMZMX^7M15q4_;;3N$If_S*J%<E-FbXanY0p}>TNHm-RK9(I
ztY6r)8_CC_I3C5X0-rF}IVi+%B1-S#I3<YVclzmulsD1yHi~vjJ-<b9Hi|nmGEtn1
z;yjzbF7<j8zejN)imOy7GxcH=m!h~F#TA;hk&TbuNN$@arTcyNFWH`v9Xz>zCDTpu
zHRf<5nSQ(pZ$xpEqdtm1qWCk4+fnetfIsXs8cVC?Qaz~Q@BQH%tGO4&eOip&uE(^u
z-#2;?#lPb5AvJJ~?=J!W7VsYdNqiLLjVeAOKR$5%7lo@yI+HUz5pw8vw)b-mIva1<
z7-A#dMjjh}8|gL@Y$V#KV56dqyf*ULC~o5w8%Z|u+bCqCu#G_(c?;MmXgkiGxZjMH
zD&KA|ovReFp)`vxYNMEq4=Q=7C%yK%t~AJgoY9PHA0=$OYNND`GPbk8SJHM~ZKZ5*
z{~M*p%Y**;)nC>|IUD6|aDo24Uww;1&WuW>o6bp3QYzV~Y@?2iWE)j%RJBpvMh(GS
z&30yqVPnmA>Ez^>!zZ0`YT9_sMlBn)ZT!>6GoWAH^qYZt?|B)z%<$aPJ^kG|DK=7V
zcx-rWxNM}^aEpq4xxpK|<fc#cho8CVA-vHVXMURw!+o|hJw<Klb~BJ+qppoMHrm>#
zXQRH2#x`<nWZK{cp$0Y@3g#>UzuV=iu`X}6jYbsmvDA_cvgx~(?aDJYE!Rd98!c?K
zw9(W?GaIYN$2Yf~c{z^mQeS&Gvp4=`fG@r&+3|P0{#G_x+u#9{f4BKQ6vAm|qrHvZ
zHu~7;V56grt~R>a$SRkola0<cy0BYsCO_WgOij-zmrKa=Q{8R!u+h^-FB@lf`?$Ao
z(gA0eBi|;kAI=%}MGBkwx{baz-mo#yMn4;W7mM$2V}Q-0{a*9^4Els;wp<INZW9?~
zW3Y{Y4ekahp6LI3zvoRG>u(0Q!<k<-E%Rg!r8;fO9%o~`jbS$4ww*WEa2ulp{T=Z*
z!p2B}wDWoCaF`6EZHy6=v9{y3om&M+Y^`QburblbJR9>x@<}$P*_du)GMNQsijCZ%
z6{b?2C2|J!cACbmQ1988VLM+tvu(_@QTA5cEb-W7eKtQnPmgitb?4ZaYvar`7x%01
z{(_oGjTYEgXk&$q4{a=>@NF!$u}maf!tNVc@qHnaPqOMVIgjKo7f~NDlQ{`I<*~Ae
zr_fk`@r_MZ+W5%E)_va9BGoDz9}7<U2)h5k*>S-uBtD_ie&pfq!AIx)pHro&5-~K7
z;R_BN8#is-vJtc)+4zpiZ$q{bvhkIT4YdCpgEmYXmW_ywp)SA9B3gM=rh4YqL|GSP
zcilvf!RBmsd?uIs)A!-6xTuYojkPvx%4fVoC;vKjABW@ur<?dlQSi-6ob}vjW3!Dd
zHoms8iP?&rxg&y6WT4Nnt+Xe%-P>&E<n{QgzHd1EC%Z`bR#1pgx4*aXgN+k5P730W
zHV)YM*~Si=S7u|Ejomi(izsHYhpju}xK7#`cK>8!uZ?|V3%l!G@)62g3Nh-nIq3&&
z9I|oL#xEk_$306PwsAz@{Yp6d5_yNhuhg6i{$n<d+qgcW-hnq$nU>DGsL8yh>XePs
zHqP7louVj|cE-kU9N<e_#N&&^pS5w0!=bC=cl~T{XW{9Bjf*y}*tjZ$aLLAH+wnJ|
z&T{=?d*s^Ao+#eHa*btiP&4f^SGA|!Z^k#^?%W-Dv*>E_4;z2d?!{0chTAso(AdUM
zAcng(?s3r3eA&2f|KD8PLmLkS&K-{n@+bc#3gzhI_<dyKUmH(tJhSnijmI4O?<76p
zfI3x&eL7}E%I=#1E-doqpy#ySF|JrO$tz%d40!}XO0g0H5?<no0(oyplY9b6dP%=<
zGf*&wLNUA&Lx~s)$D9?hA~6(=;bN&g#3|=7{`g`s6p!KHP1i@0UDMukd5zpxW6o=?
zR1BqKC@F9fNhuR^PHUEpp`0KV{x$t-q&*KbG0>q|#TY8Z;EBN-L**E%#85kiIx$p@
zp;`<zVyGDdKRIGY(-1@T7>LX-)aKuXJ!p3LLH=3{wPMbq64wwp825}x<%dCX3@I_V
zVn~ajNWN03Y>xQHAJf74HeNlqFaP+M)*W+RbKG|8i@_g577L0YJ%&}DlzK7Lk0B$5
zx-rL|>>tw4yVOHE1K-*VnK3kN<(vU*7(;dpIWgqM(1<;ollSXg35{c*bF)}6$L;*N
zd)_8wK2wJmzBG-2n{9}*&?h$oEn;XH!-N<n#?UH;)-m*op?3^zVrUyfmzd)!p`EBe
zCjr~X&>@D7vH$Zy!HWIwk+T-xnU&{~^z}I6U1R7LLwCW`BZi(L6Ve$=er8D6Cx+K!
z2*mJa41Gn;{VBs3`U(66=NmB$jPabs|GAi8!a*_K((7eb-KKif_IaJ+Vi*#`7}8@H
z8pAM=e7Go)rMxX3%iVI8<KKy4gm~nRqmiO+N1JDkih*#nfQuRw`hQG)2Xs`$`*sp~
zFH)q#BZwr~>~3}g1PCOdNbf~@TaYSJqzeMlK?J1;NRc8I_U_)Y<(44Qy9h{8x=8O$
zMB#hx<e%^S&YAO^XWn^d?v!_C@6MgVC}aH?C)Bd@nVsPYeoXY^3qQW}W0D_}{g~&6
zbjmx$kEwoq;>U$f_J2w4k{G?)@iFtW+c8bxbUy|ZNg7zG-VC8LQ{XItp9*Be*@Daw
zIM)vz<VfLsKNk40&=1aBE%D=XKNbnTSm0*@8MLT;gQb3KIaqL+ACH>Eaqeqzil@$P
zA7{gsvq67r_>~{4{aE1#kMUe7aFsxMxyX5qA8Y;C;KxRe|9+giSCR5{><)S2N!AO^
z8_jG^NvAP&zVTy|ADjKi7H;_;g~-FyZGL>m4iZH5Aiifu^W$F$|4I1KkL`X8moP$t
zpY_HbEun~nfFD6W{_x{GJH8)^AN&0{;D_pm=EqJye)c28w(!IB!}25IN0jyBhanp1
zULg;c(s5F#W6>lc?V0l}S<KRum>qun<Oko=q}`65FW%$odX8Y+_P9$#+{4kpkKKZA
ztzrjlJm<K)zWzQxc$3RdCF=3i7m|a19P{HBKMwhESOgv6n7KUWD6NajZg0BU)2=>f
zcAUoJ$8Ua|_Tz*fmj))CWFFWh(-X*fiE58aPJU(n<g)9GA7@#~e*DgI9rK3oHkkci
z`iTbVpZ}5k+L5qjaz~CH7yP*B$3wOzlk(%TA2<ED#c|J%tD;2L{oo7#pBxg|ky(M=
zT<ayr&j;)B?P6`&bQYQJ25bAak6#RLGbi=p?)Y)nkHwb?azosa(-rRdai0ZYCw*jp
z1Lb0XYHy1@+NGL2<|F)g%|S`RQ$L>h@xqUP{CMui-wY~J@baY?epufVv9HG4^-0Q0
zHnAW7`SFSa^>+8+%62c9b=$|4a+5}S2b9VfysK5Lgg6O#CFGNkOG0i5c_e$|319z8
z6w08hHNn9Knz1n{zk~u33Q8y>;j7!eA4j<_zxm$qtmGQG>+*<Z{%afc%28B8F$wh~
z)R$0PLJ0|POQ<QKq=YvlRFF_nLMaKQC6tx$ri3yQo}YL2-kZK~Mr^U=y?FF`ISJ(@
zoS0SdWcz&F<95npf9Nka&|OJFWeHU!RFhCevS(UY7Oqw1uUqHTK9KO1gz6G%NN6@G
zePUmC6PLS0dHV(R+>2y>kA6Nc<sAvNBzPovCB#cekl>Wyl8`82<tMQY2}zPYlGi!f
zi&v<;TIJ!NxW%KB+<fjvd-Ywi1m(7mWN#h&UvT?V&J<SHt@t_;Mh^AVmiY4ToLAFT
zS3)ZL)MWeaQC<s@@t&uFgft1ABy^V0P(mXKEhMz0zJv@3O_^a<+CE37gvJt@NZ=U`
zSGmZvpnbayFU{m^SgX6<cO`t-pipxOzudO}5b;%ZTgcr?LTd?kZu>e&Xd|Jmgmx0z
zOW*_@XE=FDR?u+r_a%F|0@WC?BNZ+ra}`Gy30)=hme5B+H&O8J5_(8@k7+)#Yjwaj
z+gf@`=*3#vWY55-4s+3w_m$93!XOEQCG?jtK*B%?KB0E!d3<75mocag`xobG^4{@r
z1<3mnhDaDHVVGq9*SMdV65itAtvZVpXUY5ti4__x*y<c9@q+~d5`q#&v9J=pknkmI
zL&6vdpGuf5VXTC45<ZqNO~OYK#!HweVUmOi%*=wAQ|^3aW|VPs^X^>Y=6v#G2~#9Y
zmF!!1I2Fti@g;#JYJA;2UBV|4W=e?O_Rb$0%b#gxb%q3D?fcGItbx7u*1|1CT_kfP
zER?WF!dwaSvV(XEsDuTQ{o2FzPOlSP+&{Qj!e<heN_dj1;S!qnG5clsa|s+_Saqy4
zz6mT7p<KC5o#hf%NcN2PCLvrYVYS3_e(dP0*uPlziMAS%ZmooM64ndh*8<H^-fydx
z+8|-0gl`x(*>zsAt(48p5rfHYmav80M8dZcexN~$XKj=4orLcN=l&EHd}gBE%KU=4
zorAxG?dka?R;ii%e71|Lo%vS7Wchk5)A%Kvk#JUmDnXNANyw5AVpshogU^l9ghWrN
z{!VO!1v%v4tgkM?kZ>+v+`Jj~tA#1qQ%29;cJGkzlY~PO4olc6;b#eZCG3;nn3ivs
zgxwPMNVs^|)#6{*b<I)flAQrw(7a#50SO0bkazPg`l%5U<X%xW)4xl5aR5Ie;V65D
zgyU5Et0>26x?_^P%f94<bk_N=5`L3#ni=LO^u2RgMej)o#8VPKq^6T_AsIK%wrQ8n
zl+Q`{UBYd4F7_sNiW`p060XpCC0t<U&lR{R%5q7vSAMd6x%ZYA1yb#*guf(Qm+&Xe
zL$Y`Avm?A(U{CJdkZ@DNE!z3nTD)e6fAIg?;{1D&tLhzl&(Xm-xXawujeRcJ*ZJL(
za9@xI0w1yk?>ip}d@PXOC;Sx<{Fy+mdZO@e2`@xX{D)8H2s5ODG{(cX*}8Xpqkc<%
zCE>M%{Q;h(fS3Sc0~i^=2LZ$dkSoAlX+QwE1IQCVi2zClkT-yQ0Td0OSOED0C=fvN
zimt)|6bztHz<y~jy9DYj2Uo?Xia&-$0_ff*l{$$9J;fP!Z4wvccfI2a*2+u%MgXM(
zC?7zD07?f?CV)2sD92~bD9k#iD;vPKo4g-%_R1G*gW(|Gag(=V0F?sv$Xr<<4%s*P
zmg=6rN&r;@X#K)l?wZq@>)3G8{gzNDni!W5K=lA>1n{<y)C%D9F$HS|@J;|X!ft9Z
zg;R?i@gkJG`VMzu0FD5X0&oT}NXT6QxC3YtKwD;DlP5U<PXGt!x&PhhJhm&@8$e0`
zwF9UlgiQjd8$fCR>B3u2AeGYusUJXt97%4iY~yR*h5<Cnkvvk%QZplfOd)BUBOiap
z)l~3i0^eoj2hc+BRyjH?S(E3Tj84}&fXTIzN!kVM?<^!~UwhgI&_O774B$PsP5_;R
zx3j=5Iq7r_pj!?vKhuueBY-|RlAZzd61;bgB+tbBeFNwxy!`_hD9C`E(93i3F$G@$
ze;=$sGB|+u14t}Ya7X|n0(e%!HB=zUumFY&{=pp|y>vZmxJL!>VF2F+@O=QIS(X4+
z1h6uIu>p(=U{(O12Jle;i>G-e1Tc~Ixz00QAe(Yh07F}+PZmfo`4qvY3jA2$G=U77
zF32YWX9%1b!1+^N2F(s&lG`&sfCYlg31F@u6wVVmBnw%k%RP$&IP3H*5}eEGjGdXE
z3CR+Hp9@?naG5|Ve<8@10W259lgC5hDthNT)(5abkgoz*9l)9Z)(S6!)(P@;0RP2#
zCVrWpIPZ>cV*uX-uqA-4v^~?YiAGZ1wK;${Dto@U;~U<`#kmX0zok`AOxebsThL8m
zcw!2kd4CAt#{eP$L<9EWJlg}115g6+2OtFy5W=9qySd}3K*#?YM3o&x$h81Mf^fkn
zr+u<@7)1}@<4}ebK$akeK$HDzM>5rR1n^S;y8_r9z)lgJ5q}nh3fYg?!;C%3zc+w=
z?8~M*JLL^?9VF%*-@yP51yCf2qCp(yps~*LTL7m6I3oDb0FDKC1`Cb{a8gKq4cMD!
z=}rW2Wq)!u=UnJ15z5_>OyLaMB7lbhJPP1k0KW&o%Of5H_%?;}0bB~;GOaPzb0L6>
z0W3S~;7b&}jQC|f&lLupa$ODJ&j2>hb=O$n=sC@CEr9DBa02)%0D9>{S>Cv1E}k=R
zGl2G!+<n)(ZwYcc03M!yCxE-cdru%0?$gvCx=A)Hb#o8w;{cv;5Dwad;ZwGF#F;B-
z<Ff#s3-8~w4M8Y;5#a6cb|~FTLH-TczrWd%R{^}{Pe2ftuNBCa#0C*3QlmFpEw}LI
z2_kQfJf9%>1v0gQA}57{C>+FH-I=FLpZSC9yt?Qt7PMbT$^<c|XcGUa6%X2f+)4;6
zDe#RTN(E6mh~Mt`E`~gR$ZqbTqjK3G-VB1rveA_jq`bfiK~xl^Qch^)AgTynRbaIo
zIf8g{$H(Y3C<$V+j43i|2Juc1n}XOJM6Dp=gJ>5-`ydj6NUzqoUJ&(})z4gsRO9WC
zK_ms?48kQsQ&}y`TvT%hkt`%0fs}ZIND;iYz&bhdx<M=rq*EcdFe5u|gCH6)G>9}&
zV+{pbA68&HW(1KLM2jF=2GKZ(CPDigfOmuF&@xZcAese1q?%Mcla7R;&8b${HOrsT
zDhLYO1kpB#)<TmT8?!YTi;lcQ5FLY<62#OXIt9@=h=D=)g6I-N*P#9W**A!8LA)14
z&mek<DBXitwLYeY;G;h8^`db)k96Rpdkg(OL5w?*T&j}&_oU~WefkB_KWM+waGNB5
zuLm&yo$b>q1_d!Vh_O@-;{70o1Tm6oK@1IISP;X57{M$BoFi-7fAGiVNqalP&9@Y;
z8Q>q!Q9*nd#ONT#1aY*xYjN#_Hx{Hs9whT0BBO8<MEW(yoz0Gqf*2pfgdp-X%|q|R
zAc&LL=xpn68_T<r`Bp{=bIvX89|til$g`yIc@Wcs_#}vVw1MvVkIe5qBZyCfm>tB-
zAZ7*a!;tx=^zkca(XW%{(9|F2<+6~uq7}aS(b2S!{Q-A=5DS7>7{sC=76<W}sDVA#
z-298dO>?~ThkqX5X`ETBh<9la%Ys-F#M&Uf2;xiDZ4h4tu{?+sL1=ekRtE9bYx}*O
zU*wmiwC;Dn)v~kwelnv{fqPBdtJy9alR8vMSh+a=*Fmgf_JVjIIhRkZydj8{_hU8&
z@lDX)WW*+@aJ)A+&GD>>PI}rF=A8B{qn3<sgV@F%8pORIzT@Oi5c`7IAH)wq{20Wp
zAO@X{-5!KLh(HiQwtLVXEywN3$3q6HR&7GgLq}ysxf!nqL9PU$3PP?45@P)b63LNA
zgQzy9I29Pn2*MQ6ErD4AcL@ARAa!;I@pBI6*)OAa#_VS6zni)zh`mANpPNZeJitn8
z>N><>KZuR*WE>R8>N-MYjweB!W?!h~ITpk(K^X1h7_=?k{`zw~h+jF3WW+J_gwQz|
zL`)&iDfY@%9+ERboTUkgSm%QHJ%}5k(f<hIywLwMhzmhn6#PmMmpFI|Uaqm7CR47G
z5tp6*RgO;LL6lz$;xC~_eqE64pqql<3gUK7Xm;Ex4{P0L69@565HEvx7{sF>UIcM!
zp=}k9*_%4#dlCd^is*eBMC7^SnLv`~g8WV6obKYrSVpOl?)f)}|AHtf;|&>VR`RPL
za>>Xo_-nRfR&tEsu>#{{Oy8GGVICQIWfYS!Z9rN+8AtMZ3(6=YNPZaw1fh^i_X`VN
zL?Hi0QP_N^qo|Bhm26&IMhO{tDtMV}kpsy)DtSxEC@rI^jA}B<$o5~bH)WKgH$JVb
zY_F&vQ`uWy#>ab;E6donH@WrnlnOGo97wJxqmqnSiD?XKFf*=-jE$ANEh~7b02x+!
zZw(orRPeqf<MF;^y6S@L*_-^fkk^#)-S$j6Mv0e^Amcq5-DM=oaLCA%(O5>345y5G
zGV054$#Bc?%1DusEQ5cmd8DUD#_fv^E^H%T`P@-kMjaV-Wu(gB8l>fy(z!95C(F@s
z9E;wwPcLa8BTYs_8I5GSFY~+$CPlS$8NAt$E<*;rJj}%Q=1FZLqp6H`GTO^%CgWWh
zEoCk$wlmONMhijM*?FNYKMhkDn=fx`8Eq(MJwJ{=QoDA^yT06qdvRRlkv<({d;Mf5
z8J%Tx6uj15A0=I6bd}Lf25++K{M?y&C4v7snP+Z&;^biuW>v=fGKR?LC8M{D{xSy0
z=)(u~OQP#1NMC`=x2C_97?&*{C}U8Lj!zJt@iI6^lBbo2YC~mwC}T8RKQV5YjNvqu
zj~($-og)MpDdPh{MhRq)Gc#_CjIlBvZgNbbsfcI&9qSn<<0Fys_?+}72r^N|*570J
zAVwrkr7g+WFXI4>ndU8H$=qHWX%aGK(7-Mv(>s%P#mbSflx-p7%S$oyWXzW_Teg3E
z=g62Va{|QPKS=j@r)z<Xg)$b?PPW)zyB5iyBdPkMBmJ&#MMnP5_!JtCvoDXvdeJm_
znT#)Ftd;RK6PK}E<|*-5DdVp+H>a!_abaejZ(6ul$yg)O`AP(>7QFd1J7sF}cZax6
z1Z@zwUdAtF6BycRXD{ub=NlQDWNc<<ks&j~qNH0n{<D~ZuTore-^uu1#t$;cXC<Xo
zKA-%f48IJC#hH<|U104$k^?dr6qJ$cs?&GZr!DG5QuOx>RfZ<xXBoR>gqTAah740i
zL`GDG&MsW6J73iKCci$;&0|>3zp6`4XUWKtu|vkFYtC#5$xrNbJCb+G$c{qXEv!`H
zy*V=W2u^e5?7==6Cr*~7oO5mmWgKGHQ&3mIVU9esd<A(G9F=iQ#vd}yvu0!*m+hm2
z&&l|eab=v6@tdg9lQNzxuE-^Syv~(VL#KuCjEu7~hR$|<_SnT)J1%=8atRPq_+6w^
zs$;$jGA_z^#DPV|^*53($+#lps*KC5&+na-3@YHhV><toag7ZmgS_r5*L4{;*e~`u
zZ_yOtzA1B?gOlW_Y2$67c1Pe{f%gR7&z76c2ekYg-r*zn6B$osyp-`TM;=}sDC2J#
zFJwHIk#CTTZcCE4<VE*CH1E5<HFtgerg-T6PsS@5F$!W8P!hW9J9*dln!T@FJ$mC5
zJdo3KDaftZvB>FWm8(ZgneNS}Aisjj3aThPkQ@aSyrH0!f|G`;kb)u#iYh#|&QVwa
zzjSc7Q85L@6_ij=QUT9*;tswKAG=EV?Q;TGEK6W(>W`hJ6_im>PC<DEWfkzIJYHh;
zrUEW-<^03XYg6Q>PDg6t3JNMJsHC8RuNmhwxO2AEBo{wn@Y8Tr1=SQJC`eQQ1vQ?=
z*HG}bg0~b@SHREfZD+dKh?Lh<@Q#973gQ)n9w$FKS37raSNN{u{$1YzM~B6KxM%yk
z4h2aH+zKZC=X5G?DfTRAxuS7g&GP1FUfy7Stf}kn@Z8CYeHNcbvG?hF6{IlPI9F}q
zJ$S)EVXA_93i`5=71USIK*4(ox+_Ry(G)aR(1a;}+N+U*bOjlT-L<oqSY%@+bLe-r
zlpIYJG*i$;!Rc?3-c`_CL3;%q6tqw<%Hu8WY}}IRZ}$wUQLhzsUVB?Bcsa@4M)0-*
zDQu@;{#MVbnkn11c((rI>8NnsNO~uModwccv5BWbV&kqX3vYo}u%xYvq=$l@Y@jP1
zUR>2nL65&&eH8Asck~v#{qGJ+I(-n!lQ#nHdi@n_+2MVd+e6OtntTcdDg5J!ZzCA2
z;C%((hOjM!Aqs}Fbu?7hFigR41>dRoUd0FnBiVu~-cs=aOQ+zNf?pJTs9>~$9~Ep@
zFh;>x1q&4{QZP=zM+&AXn66;Ff(fio1(Ov_DIPmf!5OpC#NTs0?d#@>?kNhUD!6?o
z=3@m1cm>Qe*O-U#1E)9~p)^k0enL}MFh{{$1v3@QQt+vQ*$TK$Aa%WigFMIEom-uQ
zh9)&hPU1W8JXR(fqIKZ~3gmZPm0Bc^%t(8<CxMISc_8g#1)njlg0EPI3O-lxg@P~1
zi^cID#8L&z6y&??oV6m6$GuJur!8kes>H2Ouu{QetxvdCAFeQ=$(=s!7`MImY6WW)
ztY;f3SgYV`1?z;V&|2Q<--Bu+YkGOY3A@rp1>Y$6UcnCvHYrHX=jMI%Mpt_hd$WkL
zMc`I}-wNEuninMeuKkgM`QQ7Ulixmg>%Curq`**MDhMbD3R{h^yb2Tr8jVwds-Sl9
zN^=jDtvwyJZ#!F8aD>^B#WEq{&R!YbqDi#ysEDi6Ecx3}qPC?VOFZ;|f*lHeVh>fY
zN5M{Zy6-Z6R=8!@KHr<1j=A!bv6ug~zT(`gV4s5hihV^Iz5IK{7aOj?;VaNV1&2hM
zhZP**;IG){X{U}$ioat|U~&=2&yxGNf?pN9Qt(>A2@Y8bZqXzZoKo<cf{O|+v9r)@
zn7)GZ3eM8b-}anS@H_L*=Gf=B=W*Aq?k@JkbtWO1?gD%C<?hWp=c4hGTvl*J!8HYc
zDHt{`&s7C~a`f2bD09!}9N{71@5^-sHx%4t|DD>4hWEolPm!JW+Fh>X=Kys_!CeJU
zIj|_W$AOfkph<8*7Da0~4G&o}OY9Y)oN?kG{3o;rE-#6x$j_8}_t;kYT*2Q8{$W)s
zc)>CJRy+qKH<!qswLgIVOG7&B_)kIAVX-$4r<1c>+^Z6!B34CV6-89UsmP_GfQsaM
zzT7JEsK}=xzluArD%MKQb*DsZUKKoWiG7NWuWIGQ2^(ynf~q}&6;k0_W-kmYs-l>R
zvMSzGQCvj{6{UniN!9)z&Ckkjs5tOjZT2Sj3&+~ajY_L1qvFGMjd&9H=5i^6S3An7
zD6gWDipnb5L}DwbsHoa!;P-I3R`WRYaSr=D{EkUgR8&<_O~tskJ*-l?uQKf~Su=n2
zR98_$MSB$;RJ^UCrV6i$6cz8N_AZZj)n02+OK|Et7FSA8ktn<l6;2iLGwf61lT>`W
z&%Hj6+oi&-VsY=xWECC}N<R0kG$J)?tEi(QQ$=GHbycLQ_@}8ST}3?=^;I-f@zWof
zJ#W|NgBqw9Um`tCV6Hpq)2xg}D%$<sr}dv6VulK?-(XxW<Y=Ozsft!AW)<*EDClXX
z;;#apmMY#=L2q+`Ed<g_o!bxUzDP+48Q#{cF%@l9?0KgUz3o(vZ{Ficp5cnOBh%;T
zs$!Ii&MLa7=&Pciimq(^wyFGD{ho?$D)g%^PQt|e;H0EGTYR#khrpgHdI{27U>|`D
z<<TOn%>HbB6@x^@4iGp{#h<6kGH9^yk_-{#ebt`3ep=5xRK+kA!#Vh?_E`ZVRoris
zn}m)en}4Wcw2IGFELAZ^#aI=es+i3dSMiaGsVY8ZWvckHP}&3)6KQEYSF=#sBo)Vx
zxF@TaB7(@<-t#5Y^O6v!shF-}rV8>;gu)Dgj7SMxHkl<9n8F+tb5$%<u}G-RQ*rd~
z!t(`Z=mPO9#$w`co^by0S;k@&pQ+e3I_+3}?-DBbd(%Cd>sqGb3l(cse9gEjmaAB$
z;wu#^gig!au9a+GM`3Du9fcWXwTfw<r?qI7yha6aMP`A04ZP(S#;sGaUd0ynCKYE3
zdyf`yZBVgM#WyN8sn{%1V<O|LCo>TydpTnBZ)uq)U89${wtpLUy|QbY3bU|x+Lx{$
z*p4dR&`?Ulb`^dVH&onIA*l$c_)W!W6+sm;OReIV3PpvgLQ@e^QM;g%|AL3y^KmtM
zSVcsIK^rKOw6%4qC=E%qPyXM3KYo9yq`MoslA9_l8f2IHSt|AlvP0lc0x93A;^!Q`
zOU3RSzK1>QheRsu%aQEo7$W$=9LXU;4y!nlBVm+Z*g7gss5q(O!izes{e6FBU+$PR
z<DPHbJ>U4n^@sI$GGnJyjO<iDe9w1=RZ2}27gd~7@w<vY_<mBW*u$qu1zy*g)jV-{
z>7?^)TwYIew6?2W{Yxq?tGKS>*Q<H2i1NN1kaUeEy|ms{+CPWZLyZS6s!#k&#qCl_
zbjR=czL}YHu2bDxl&E;7;yK4y6?auUQt?>DJ$3{Y4^%u9SzY1l%U``sUpaeTYttpA
z+3kD2PvaAxa768wYvzDlPgVTT<Gq>}o82#))S|reZxt_8{L3!JQHX<2^HMMQPE|7B
znVI%i^2pq-b+ksWR5TggH%3FOhP9=WUW?)+^e7pp+3i(Q!@UD7NOEb&ts#$wyh2V%
z2@Ux)<kwIjM^Z$Pf&vQ(EX-I%a#6Wxj!rQ_iVMsR8nrNnIj2r(%|6!)#8vJxf|u3s
zriOAF%4?{qVMWwYK|@6il{Hk+P)V~ti}U+9@y8v>#Q*Q*Y~h%=*lHTG|0y$BetoE+
z;cX4^AtZ!QQ^PwNzSHo%hFTPA7^mSQ4G9_&HFVSPo(6}8Bn=rFGBr3g9<7YJ8d5d5
zH6&}O&7$2d>Y;vxMqUj&FSbp8t5vT1z6$q!DH?A5(y#7)Uz_{BIvR|Wu3U{!PeXkT
z4K*|pQI6JY)IdX;hWGFLs!i!O{l2ewy{_-?Zc^lOqjZf|&b2O--gU}|fsHjZ(a>5$
z8x2gPsfK16-WB|pXp!a`=X-rEG_=$p-}kkx-l&y^Cw02sxbLI#vHQM5tLwJa&`v`~
z4V^SxT<^^Dz}H?wjM}J!KoaV7*6`uwMqLDwFfOsH@K$)>>(0i~Fqm1@&{N~DbEB<)
zC-v9ROG9rBeKh=aq+dS`-Uq(dwHo!+K%}Jo10N*=Gz`>m?pDzmPx|j3HPEMF5OdhN
zYutwe=^dhBsD_amKH&SmhT+W8Q0EAN{Vo*keJ=0AQg!Jr?k#Q|>pw~Z`55L(!)Qi)
z;M+O8eOVsV@v`Mu5j3bzCn}8BFhRot4GT3))G$fIT#?{p4O2AC&@fZOR8fH$&SKLA
z`B>mI4T~Pw^|tka?-L=}`M@_z!>5AJ5jb1m#RtCBpK?)?Zs(fz>3f>Y(?FcBA?0>a
z5|&~S&6TaAVX=nKG%V5ZxrU`0ma(O7wDMGIH0^FHZpHnArc$QSml~FflyjADl>edc
zt%tr7<r=Lk*Jzc7uQY7Xuu;Qm4Qn)ftzn&p1`q9gt`$+-@pgOdXx3`IhFz=Mt+-M2
z<9)@qr?&b=!zK;q3pCoQVY7xU?5ZdFJsvTz@34Wn>$KYOcC+peecuWN>TDC_@>`95
z(D0*%OByb7{MX>uuusE&4HA)~x`v2`fQBGTp+V803Aw7_%E;nWID08?;eXq6zcYDA
z!;5uJlBfoq-C4s9_5}^RM9kD+k?fD*yJ+^EVoTL#f39@?#D1h<k4W=p7KdHzR{U<J
zQ@Rn;v4+{ld(v?O&R(Ij)nA|T0~!u$_*KIR4TpsMsD@)24hv3&BZB-hD}nqMrkP=1
zzIL2r$dMv7J0|f`t&<u~X*f$mr7;&t{7u7Y_CZQ6<;{1wJ@d&--V5botlvda=LP<e
zlm6(3z6<PJ!u!ckyU4s>?23k~8vfPrpN2m*T+?t{!yTdXmxh};ajy$<gWaTP;+ST2
zZV7K}zbZvfcDc*3SHp7+e`~le<WDs`V<v|tJfOjAc*Ksc6nV@JC4?icmY|o83d}=x
zws}t(`3stghL;@c*5}R+Vl{H_9;@ONJ1l?hLns|WObD?d6bRW(6Bk0R5b}hOH)J<`
z?hse^*>N`(ZFRg>Vm=|fsWqFkI#>RXeP(R#iA`GnXx|`KFoZ%O6c!3an1Y#1Aze`+
zDJHOZ2qgreyrdv+gwW%meY;$l5Xy#7A%uz{yct3{5n5hgV4!Vd-9$D{sZ}e5P&tHJ
zB8bId8&wIRs_=f`t~1A3r&<UIf#fZL)dkiN__n~B0^boxHEwcY`m6WHB!=J!VQ2`$
zLP!e18A8Jl8in8r;aJ;To)EktxH*GyGk${0nH;jeb^g$=HN7bz)D0mugxVo6s7?rX
z9w+jGAu1>>OC7k}uwDrDLue4fvJ%d;5FQnB^0k4Xd<p4UzgW6Rvq=a|L&yjrlMj7V
zY~ounjfH$f^HQVaI?Y0OH-v#9_=K>zz|O;Rw-DKA8A7WNR&8t7I)pwU^bMg+2yKO=
zT?kzSX)myYz>Wet3G6J8aX<VqscQ(`g!jD=dgjQx3(_NmY|UOd^4>X;er%B?_34yX
zo%-kS0U^wP=%bLu93(P1n6>&z*SlrxKkV;|Djgz9vGJjAcnBjxSQNtI5Jpltgqb1C
z3Sm?TAI?pf9>OOiA&d@TjIcWX3!X6}VXWXZ!f_#dB=~rN69i5aI4Ok5AxsH@mr~Jv
z9Kuw=8H?U&LWhLjZsI8886k99k}%|aLg&WKJ`G`Z2y;VNvoL}8FZ7ycyE*JHRohVi
zpMweWLLkl;xIo}SfrT16J_}(<2x~*&$!wp8@bq-T>JWHZa=$$ZOG6+o3*ievz7)7z
z;QSvFR)nxp@KqufHNOf$f9NB5xieu+$UaVCeg76;hp>*7Ha}r~2%AHwvM-5Q+7QA<
z8sV|`z7e=dAido3vqk7^706?st8D7_T?pTYupx|%VPVN3Tn^z%2tU#Vo!dk3haj=8
zLO4U~-Qo;}Acyc<2+b<Fln_+*xDZ}`<kCV2g|IJ#?`EWjL*S`#ecp-P5ke$nPY6T>
z>H-acra((zmcTyq?GGP62~M&zgr9Txt`K(T@I4{y&EfOA#m1aYKDg6yAcTXonWc_H
zAsi0jh~T#tr5~k%aaddBnw{JAO9;n9+!gNPWXrE1dmkJfPq8~8_{ki}DM8lfw&(dz
zhhR_gZ_hj%!nqKBXNS7z{w*%)VhDdQ8_hjqS31r!S^fmDvp@8aF!U1ZCoZXFmBLp;
z_>)6u82Q4u7Q$a4JP%>U9M|;_ZiMh4goh#A4B2~gZiR3=^nV*??u2kx2=58}-)%Ve
zL;rUd>Z6<*cpAcE!I{XD9Q|j4a7PS<e~0jb*2p#rA$J&srg;7hfoJ1i>FtgS<G&DI
ziRTuX*x)ryI*h4D+^>3P5@W*%3X&^~l^4r$+Ny-=%o9e_x*2=oJP#*(@`q6%jDcbJ
z!YIg;!}bjhy}~FQMv*WQ!*GOAG>l?llnSGC7{$XV5w@qiN`|pNPaMZvx=MBPzY)g8
zNo6RHJDXl6jIv=g^LuIuP5y;{GmLU!lxH4ZyN2&{z7s};Fe-*oiI3jwLKxi8R9PTN
zl`yL2@M?nG=~wx!97%OSYJ~B2j-)2Dx7Ednj?Hc+9v?<R7@y5{a6=F;N#rMtq%fRe
zbPS_Y7_KnfVWfwV5k_(to-pb&sX<<E7%5@A;z@S}J)gc#tsO?4FzSZUH;?V5OAVu5
z7$h0F|4(vD@iqt}EsQz!Jq=m3<C&F<r#1?M=eeci^AIz`XdFh%Fj|GtB#b@<J&fCo
zm0!@)RABsa&%0qX4`WZFXSTau3s!!_L7n2YQ+N<x>oADz1hx^_HjMRoJQTJU-VOo>
z=CdW8!{|b97~R9@%63dkFETUb!pZc*xjfy%c>X%I&)CL1tFT8HJ;Nwd&_kZ@w1*^;
z>0yiaX7<9!|H#)jjDErf8a+z?dat8@7{mbrR~>Q>3S)2>6T+An=B4cz!qFy-QDF=X
z+pl@U!Whm(4prvX_z_|I<XZ}BwoV`!DZI*>#95mYKMZ4R7~@2g(E`VWF}|;Tn(jv=
zVa%@ne|Knh9hAG>7qu(qPM8$NWY%*SbHljPJE3}g?-Uw&7$1kR?IZ6jwo4e(!k8Y$
zCt=JWX_q!LjDHSgcBq{iyzFgPBmLi985BO7&}TMvM!R=6N$%4*ZQtC?dCXWCOT$<e
z#)2>w(sIIB62_u17Be%e9P__*b63c?;V$n$*V)e<Jr6n?9dmph#+E(KN{@Wreo0@1
z@nsn6*fe1*XD_Jb{?&5*G{VcPnOD#%!Z=z!d6mGg1g;jiM&Me3UkmKD%0bP!zq{H$
zcJXTO19_6Z31d?jH6nOBg3Wwl82i}i!q`g77b~lO4C7nDxmJH$7~cv0eVEtK*xOrp
z#B}!A)Z4@Giy$csB@9*YfWRON+aQk|1~+qY5?%`<6owIo$<Q$Vs1P3wLk}Yo7IzOV
zZOnygobu%Yv;B9<w>jS33L`6wonibO#twF$*m!Pz`YDWeD>WeJy8#EBU198|g@>^>
zjNkw9aENI5o0n7Q+{(lSPNxUj9}o|OaWIU(!*~(Kp)d}I@qokHIp-193}Z1TVH^wN
z7aHEvlrv!*598M`PNu~E7RCwI$^H0~VVvSv_d)uLdI@w)^UKr89jg{N%~*|7xbwPv
zOYhk*xRm!?7&q5>I3xPzUf20BE`-thmHUpsi(y<A<Wd+LTDdP(>t1+)<4PD;!}wFk
zC$#88Wx8v^`<KA$0&fVsDe#uS+pM>=WGdec<DQUAJmI>}s#uh=qjx&-p(x`cfsey@
z62@E4-A~yBN8K#@Gmby=9sF$loHqH`HGY8SpD?!`pj-qa8@T>utT1v#kUN5(Z^ySj
z?0OZ(py`g+VZ=lb8$nzIX{K`?GKl;kV-QK62uhFe6o{apAbBIm7lAa&^VKj<enBRT
z^c0Gqa0I2O5J8a$dKAbk8bR?V$#jEurxhcQ;7I<=+I7-O2zkkz&^H9xSTwVYh*&lP
z^7+T}Fe1}=GXh4Zq<jP^k9-vbRuouCU}b>}suDrf2tMxNt`@=k-#m!mcBQnpBG^45
zouSp4&r&HQH6ymYHI1NI1n)#pD}wk45+cZmz>&|DNQ_{4Z%^E9M^XgN2rf-ZuN%Ry
zGh$p3)Q+G|1nvluBk)Afbzs`q!^yReCVK^^Hzk7hk9;JIMOz{=N@@i4BB&ohg9u!^
zoX5I0e)qTZAM!LzV}hg8=^6^sC<5OjU%KE^ANevPxLhKsaRl7;##x0X5%eBxZ+3V$
zg60u?!DK7ATSU+@f)Q-l2wFwZI)c6t^o#IY3ED=`GlE_bv}2Yc=oZ0y5p;;)Nv#HS
zecvk7QSeR?{Pezuu5$!ka(Gukv`%gwh18u*8L`(hkhiRqOxI#}GWW9WIv>+Jf@32*
zbbSQjuJis842a<U2!=#3kj05$N1w#O5j0LMm1khmAU0*0Boc1PEVmpaLnC;-+&PRR
zRS9>@m9o4SX?O%HFFWZbH+6Hj^#>7r6v6liMn&*p#NK~BI)bqgZ0VJ@`jKx;1i!uE
zqHtUUtLvsz%Izgih+tv_Gb5N4LCH#~lOmWB!PE#Q3oj*a^i0p@#E&DOcUlC~1^Gna
z41w)a3o?lA(+CzuuqcArLOw?z<#QvLm&4}^vOr*~Vo8g0<jVy4EP^G1d@gWlPUzL?
zZ_c=x%&+8M(&QpoA=>mSmW7od_|+D!RS^(Vjyc)fYa;OHDMUiIHiEB(4*5Dk)<>{G
zkc|Sr$qC&g$Yz0CB53hzGNWvZ;5!<>j(8p4(>S*{3q?^liXUhOo1H&Ku$|9hm!T0x
zcyKWS5d<SRNo$NijzEdnGXsYsPz5318-W%<D1vZ~gi{%mM<R%_zf?)2(<3l)xEX;J
zK^859#>TNIf?X{5mAX5HLi+;6yBD*g?52emvdJEf9{cN&tf_2!_wgwa9Ejjx1cxHX
zQz@~PxP89uA3ok@PDja+2#(S+nWaa*Un4jX!7nt+qKU^Tf8_gORWtItc?NJkfyk`>
zmXq@{5u6sh>N$J9=xhY%g!lIdE<|uKf*X%~e?)LT!sC_d(oMS7ifX+|w<BH>nJGRs
z@oEHrM(`klhY?&8(QgQxoF4O61lI-sY+zAFxf#JN;k_Nfoe1s<&MW5c2||VY5wJEm
zVZ~(m7w?gfzh-xc+O6=I9XW!h5j=~a(7kwVSi-9ao^yo175}%u7Xtqg_)_4%0{;{E
zb;zEJV<q$3O>7i#BF+3!<ccD<;CTi9nGy5-`eJzmk9q9NCkV4tq<CV&fD#3wC@3U$
zerhBZiK1u}^P-p^MX@M~M=>{Qzk8I3qGS{uqv#aH8$yy2MeQg`MNvA6GEtO`B0<Qh
z{H7p?qFj!od=wP~ub3mLBuM2bs^mzjMo~@h!jJ7Ou5@ojQ9UQLMig%gUQ^&ZIr3Uj
z#OLr|%Gie<Bu3%Lkt9Xo6x@{~aSM_hg(pYijUqc@oha%?(K3owQKUvuFN%yPGNZWn
zg{yuP4Wr1n%0b>BiZtP-l=e{4D2ntb$p62vaTHBNtaqcR+O067Ftn+VG!sZKh0UXA
zA-uKUP0rS79Ys5lR2zX*Ybyw2k+&DvAxF|ViY`%%jN*eRx<=70ivGIO7sam|T<=BE
zTM+W@QS`{+Jq76{uxQCbeWK_qc)utH<mmJl<WST_H!zABjT<wOK~W5jV)sMu`{F6X
z1P&26RLFbhN**q}BLp%hKYZ?PI?pvKijSfgAGHta{4k2qf{YPJ$=E2y<!~O+IU$OP
zQB05GlPD$$dA~ufDN*cbmO42K^7Tc_5T{1*aTL?o9IaCK^-JSZrt8ibLVtEnYBQsl
zCHSW~l3o`aa|GvurXFw?OO2zcEQn%Z6i=df8pWb07IPGh;zwZ^pGC1OiZ7zL{8`!(
zfuBdQRFJkOocl7;Dvn8ew~PDBD3(Y0kqaxMXj-Ac)+km*@l_P-qu3C|>L}Jk@in{2
zx$bMDU=$)b9r?N(PT@wuzlma#Ae$GbZ5Cup6eRR!M<Mw(ifvJR$0*~ybl*qu`{J~0
zKIw>OdlY_3qWB{UDT+W8S`?uuf>CrH=TS#^WI^^^Oje>uYUNg=ppb6YP)|6D2y1n!
z=WrC!DD)_Hv2mj?qA;WOaYjEyVX>P(_GPhA*yZEBW&i2kzG&K`B58~@Hp#m)il3R_
zt?si9IudSrOU(1^iDGXQ2csC9SZ`kxFFy7jV8#;aQGb6Fk3R9d{ihedCpV6`nbaXR
zP=n;OF&RgqI2y$<cFZVFQ5eN>nq?FxDPQD0!8USusmVt$59G}r`)(%IV+yCEI2*;e
zD9%Lj<(FxE9EH8UOdHWO`GcZ%CeKGvWMW$Ji=G=%T!`Xg6jxd%Pw*yRV#|u4D^dIz
z#Whw=xwNZM9QnKMf8oZ#zw7=L#dT(QtEcD9K7$_nrY%jI_SnaCZbos7<K#up?I@mI
z@Dwkce1{GFspqc1djjuA@j#G=0v`#a&SMdg<XIHYIj-s`rQ>g5e*Z@CUlc>;cwa>E
zk02Xj(q7W2V$%A~_P&bZbrkt^6wpzzNLq}J+&Z47dSi9O=@?TmZTD)|>38bo(m{MS
z*t4W$Y91YVb=;F(`E>XWIx3e;BNo*0>1<bF9Yu5$5`1v8G)ju<;JKZ}bQBk)OQE!(
zLwYB+_Yh0ym{2^mq>dJo(?~8na+KClO}Bp|%IGMo<4q=Y%#(T5TT#bbxzoxCEHAKv
zz_pKkm2^}VY7?sEsiNcDTu)UU6{dSr;?jtq8jF_Z=F*+&I?9|)rmG>y+d69Mc)Zj7
zPLBN51W$sFL>=2qd}qQzc}4g8I)>;-(xD7?J9W5pxOMyx=c%ouj*es<9vxmC^G-ND
zE7N(KgMA8wj)lGQFWlkbeOq;PG}h5XN2-p8dz|$IlGNAHK=3qy4Rhp;1WDJCkt4~}
zQ6=?FMro>}nT`%RI_h{=$DB9nwb0R0M{^zJ+Gf(Nh;>a)Pi>{6t&Vm&TI*=TpcWaA
zcDUzNby2^)j^95^=bh1uXSpe?IIeLg9nY(Ic`a#g9i4Uit@~w5R~Ke@o2#q9ZUW!a
z(Vd2I+C_N}9X*ARyq6$-dbs<DxP5hOS?%g4cz=Nd1Txuyg7^du(lIzk&Mi(ubqv$d
z&_pBC-Xu6&hpxlWF+#^k9UtfzrDM5{6*@lDF`5O}F_)I9W2}y;IzHAhPRB>IB^?uW
zT)yq$We1$O8m}X^pl5#@?<5_QbxhGwIHul`y!HaBak)Hx#aq0ohpVBc>6or#rjA)U
zKG89Qjb6~R@<*?h%hRV<<M{fXpL%9~s$(`Qs!V=v*s0&x!@0PJ`8{0SI#0)Z9ZPh4
zu44fkojvZh=QACPXzDt81iYNA+dVsj_ZrM`d7QOVxa^8qTB>82jxTh4$tKS4dC%qH
zvq}!mY<1d`uXrk#X$||!vr@+@+M$l`bbO^_wT_KCzR|Hp$66ihb!^b_wGJ(hoox8A
zZ=H^GmnYc9ODuZF!%B#_3ydt_*`#AL8%4)fn(pAZ*<(|ff$b3o7m0nVqtouPc^=pk
zhFqrmJ*`?tP=`!ozU}!@$95flI>pP&EF>KP9n2dG#e8mEW>@Ul`yNGyN;&&1Gs7Bg
zmHFO}aYYm_E3IY6jEIgXt9N4N^$r;x)qBz9;kvcAb9+o37W<KDe_zPbv4iz*V3vWO
zbnIk@HBjBa&pLMLc&X!G9lLexq3P=QgH~P3vscGK9fx%66JAR83vz%XnAl@=SjQ0^
zzv?)l<EV~fI)2e{T!d2La5H;zmT8nFW^<C0I)392C(=13Fndqd84fAJdser%hSA-r
z<zdj8TAuSdF6el`M$~ap$0Z#%b=(rlmvvm#@u%Qd1oFAp1mUx;>-Z~&^R1hb8?@dl
z4idWC99nZi@95k`YZsa8d2Gy)Gqpz?yJ&Ah@`NL{j%PWcEEKOftKK;7IfssnxIW9B
z9Gzb1_=h=c_ka7*n8JTLUg;=iptyn8IdStCc9a+cu?FG{<TC81=N4$^t*Kpg%zR!0
z`3&SYP{2T814RrJG*C#Wm2P9}_%h;>OD3_FiW-oc=k{mBP0O?&O-TuZul<hF2Fe&H
zY2eWJjyDXuZtt{?D<!-n^3C|N1}Ye+D1zQ(B0QPUKzZRMr+y^^l?^~Vw2FbMf>dL+
z<2^hvn0esiSQaiXq;k#7xEcoDHqg#MdjmBMykj8UK!#!e+|)AQHjr!}-avwZL<0_y
zn$y7DjJTN@afcrJlEkBV;gO5E5-IZ$9s^zj^$j#IkYb>=fm8$an1=(72JxOcA__lY
z)D;qDgYx}N<FdVJ1{#XmZe(CYv$%63D==B6`E9#6YGxW}Y@nsc9&^}4<fplTrUsfB
zcvpC-#sW@n>|(4ILP9TjEAiac0{K_5jbVSFZ!3^dIvD6^U^pLYpp${l26`IkC8BpR
z(A7XU!MRhCNxf&FyMZ1esWT$+CZhY0_cqW+Xbv^d*FZl5J_Cac^fxd-$OjtOAPk1-
zuxQz(8!Up}H!wtyY~lanF!3x}???k57#MG0g3uggV2pvWf`2G*^#3%(I8l>)&_@Q2
zIN~DWi4zS>GVrm1X$B@6m?Bc1D&n%DzIWIKq^qB^TXVXBPYiq2D6Qq2-^<Q0!0oQo
z{M5i~1J4XRH!#P*Tm$<J9567?z<dKg8rW`Nfq{hvRvGxpz#;>S4J<XVOg!<))}+r2
zEHUu8fuwU~X-MBSjpJ@X+R_(7VTFN}2EG)0xnVEEqbpX=GrE~=2{f3~mkO*lu*Se9
z1DmN}fG2vbGqB#k*Mif_F26yf@Qpx9Hi{soKu7Nu16x_5oX~F#Y-3J@&O1Y$vmQ8D
zX^czF9|RVe>Lm9YkPMi@4g&^89dShrL=6PlB@HM-q8a>YfGRi@_&8$6f=TR#Vez<Z
zp)P9PFu(^L5>~XQS)64c%fJo}{swj#*ll2^Q2SXlZnj~t3795ZYLCH-#j!7Yj4I@L
zayS>|eZ_!tkVA)oO9n0*I7}O0mDWi<XW*!TV+Kwb+?s@6Xv~>$$Jr4KbZHznCnIiA
zyNXQV<j4xF;Zp{FGjLWs{Y>k)$L-=y8#u#(VyKgSIlE`s){+tTyMaFpoEJr78(lPT
zLGXp?No<8OZQ{<hi{sO;7`S2Jrh%&l{xon+==^2iI)@-pB2KcoGvZ#FWm(Ky;<@(?
zJTP$Ez#X=AX53u^_t*>0m1VLV!^{2TSa{v>(7+=DkA;4piH>?La%b1l69Z3$kXdDG
zQvYuQFF5F#sA=LK11~wAo5*c~@1_58Y-#A~y2AONfma;=MMRb^&P0rfSkwL$VDo({
zx@~u}tZl9)@|t+lL^%`rOyoCF%tUb$1xyq)!D=bWxP?50OcXXz!~|1gBLCa9DWUO~
zFj3M(DHElI{u?HK&WJmy+m%3tGA7EJ_5jP4%FYARBq?vAf(eLZV@6e|Xrhvd%BJ1f
zgUxf7KI5ojqN<5%CO&AMdt~$6L<)&?Z<#zW#LiERoLrIf5!plBJ0@zG_{`y^Fy2JF
zUz`ah68ZjbBFTg^`-z3@c4rjk#3iyF{V|C@aLM8w#v_m~GhP!ZIlQ(YbxhP1BsE7~
zPmua18stdQOeif=7(LxYhKX4wJ~fePqOpmYrhQUn6BA8MUZ&&eWTKggcZqUhD^}nm
zM{^TA5VZv(4zYKCleZL-Q#UgG!*aJa(Z<BKGEL~(3erwsdlMZ5=_ru<vZ=uIJBz1u
z5!ls4Hxuuf=x(BiiD@RLo9Jnxmx<9P#+c}BqK}EeCf+yg-_X7$1`0ynPmum51_<)2
z*ZvMd=QA-VN9X8@xFIHn3hxIdh6yr4;P4zB-moz8e>hVZW#YpeNtp%qbH@tr1QX+O
z<R1w#o;BRZzFl{s$!$BBoD(|L#FQM)6h6-3O>$RaK3Bb;N%x5f;tUf$;hnI;?oG2z
z%rUXq#1<2CP0TZ~Uc{YmVu8uy`musN%fuoRpPN|9zmR8gEv8+WSYp~|zVRfkVg=k>
zZ9>j3n@`RcTxQ}66JMJ4K5l-bt9sPM-CI1?+yBZ<x03&cOsru}*q|o(Va2`>A>zn8
z#j)1J*Cy79WT*b?JU`aHijfCPo_b(!P~9MMMY7SvHzqcj;0{^N?eE)chi=U&@3$uI
ziCYX<MKkK=|K7w8wDv5xvhbsc?QD7r-7WYTojuw@5eoqmK@%rUoH8NPXie-kvB!jJ
zLNl?$w2%J^F?|!d34_DVi<pRsD7^`>TOZUt{<7}*$G)H5Pv_mrrU}bL7Kfvb_8zz5
zd(v*lB}XrKd9CD6CU%-gI}!V{iCrR1o^8krP5PVmA?<v`UK0mR95S)b#D1Z0fKS<$
z@8!VWm;OoS$JxUi7HGpJj+;1Y;+P1%`gIboW?MR}KOIT&qE#c?^8IS!gb4<*65Nj+
z{22P1iPNkZ6ZcK-9K=}@mrYzTan8i=CN7%xcf&tSoTq$V%mt2Jx8q$O)ctn5<JwIZ
zzZmlAmspKI*teg2ayaFxi9b!;G;xdL61QmOiN7YuUjqMo?7ME_hKcs~JVOt8K7J$P
zw#f~`xNBlai#)!S9!8<tbKSXlK=OlMy$?)0WCl#UHu1>BV-tUyctP7R@zlgK6VF+n
zx8h%{O<VD@!RWtyV~e<M2a}K9b`0p^`Nzad6aSj{PZ$9ATXD}OcaZffk<3$($1itZ
zDea1}5Njc?g?tv`Eab9~+d>}8z7L4Io@t!i2+5<8d673$W&!hCC}5$Wg+dm$TiSQi
z(*=0<`dWLXZnw+M3f?+JEfllR$U?e>;ucC+a9BvPP}0I17OGmPW}%dY(iX~Fs9>Rt
zg|Zgjv{25nYwTFwW?vt4y;@?Q3Bzyhndcm@PNY?|P{~4N3so%pw7q+hXHA*Z!DpPK
z<cy7HoR#intXq@;3vXF?$3iU&)h*Pp@V14Tmc0?LT^(n?$H|RM&#b-n1@2}mcj<4F
z<5^70Zqq~ySDx9M3c1mhXY?`sZfnw=jA)^@g*q1KE&IghwvcSuFH0T^UJEIfJr+HQ
zjpsql?4kXy^yHO!buFY?sAr+Rg)w984+`1Xz(SgZh89ND$yZ{jW8j&dtXSX6B=%xH
zE`vqe=xlDGg@sHDjV+uyQ=o~3W<pNWZORIK;#)J`QK@q5y9|Bkp?*sXtt_;+(7{6U
zDxTIB+E{37VU^`NyxGyt!k;Y~(S=jI^pbS6?AxO{Tj*k;li&=Z^>($ex^2F{zR1^2
z)PI?XqvioumkzET7JBko7JjqP%R+Ap8!dcep^t^W7RFncV4<Id{uYL_Towjc7-->r
z3qvgUEDW;n@rl^M97b+?dHx}*!XssTkzSeKe7o04X#FgHsD)un<f1)Nu@dI&Ngl}z
zSQu+zoP|*qKD02J)yUF4wojht*Joa$O4smdgSS@LcXsexK_>ghR_8|+9zRLWb=@)1
z!XyhTEUct`TA0FOTKJNNecdsY`LQsKEyyCrr8TJRoo->FWnVlxwY>Ke3o|Utv@pv8
zz4HW;d}?8K4xeLTuHeloc^Ncc@C5>S87L)mi-dQvh0g?8B9QXWEiBF9%Pb5&Xg~D)
zm6*Qs;+9+BH3~fXn7GQqR~FV;SkFeWu*Sk#3ttNbF3F%{MbT|H(%6xgtbFg6*51Z(
zu>&i{ZLsX$3vSQcWMQ)f%R-igEf%&~P%NkxzO}H;!gdbt7QVCay@ekv{Al4-H#a+7
zvr$RBI+iYX?S!GP6CQ+|5(j?^K?}05^Yps4d7wA%-Mjuz!zQY8{6~)OTe>t0Aq!Cp
zI(01Yi2De8jpky|%P;I7uWDVq^cogS=HzkS7mpo7_S$a2W5*5)KUvss;Q-D4YV1x6
zyDaSHATSp{v#vsYxL9!y3pKgVUJLsyw0z>@A;9$RT<4;DmYR0Z!XXRCEc{~OFbgsT
zM=Tt*@N&O%%6lH(D#A1F=sLI(j$8QE!U+o}Eq;Y`@kA8<9B*##9sW_Df^A&9l&#N=
z2B$5Yp`BzQcNWfCIA`IGg}WAhx9|tY2Mbp%97%AWw{XG2MVj~h7#{Y^8%!>73=vhd
zq-|r45_Gi5KP_CdaNWWU5mc&VfxpC1!&ZB^$Pv2hx@qB-h1(Y9EKLaQa4l$M??&f>
zF1E!z3-?)Y3r{UPu<+2rBbIJ>{=cs08uW*Qj(vyju>~Ukx;|se*68!Mg%{#k&p9Bp
zxA#puovwe_FSI^!Ss;ID;a|3q(?$26Ag?UE7Nlr})R-&;N4jIP5WgXf3K_*+JaaWq
z7V>7HLKZ4!Azv2qXW2KlyqSdpStyu=B3US!g(FX$E;+7H77AyfQ#1Ry#B1|C#j;R5
z3uUt)w~9URsiQ;|{&*69ba-OPEYM5$h9IS~P+E{O0?)6vgEE{R|DO(TH&?kV#Ej2Z
zKFhvs<c&P>m9kJd3)QnwBMVisP&EtHvVbg{iisUOE+2Omv-aq=*UQ)YT)wxmu=WGj
zkSD&kvrsb&30X+Y0=@5Kp%#lNIPc(|{lw>b-y8S6lWY8#c}EtKvM^#wOzRR!BiA;i
zr2htoI}6EK_%#bBvf#;rHw*K!Fh2_^S*V?bzFFv(g*sWNn}s%6Xq$!9tpCT<cR)!|
zd|$ImSdv7^LA{s=vlDt2SYTn790V1R926FjBsmC3kRV1RCsA?+34#hTJ=4=Yse1-N
zBnXIP0TEEi2;c3;Z@%+Cr_MdMUcJh%s#A3p>iN*zhZa86_o0Cg**@g>kmW-|AGjHE
zBOfj=RC4>cxX<%Tsp*5)*_%@}_MwRnO?_zQv#%_r*C@eF*(+c4Qr~&Q)4=7@fA_TX
zp_LD3+orwZLu((}i01xsDT&q@RD0%Wdn_~VyIp&}>ceY3bn>CI53l>s-iMApyun_W
znm==Vb_X9eFHa#^@I^+GJSi_8aBvHn=_x5)eCX;!cOQEA(9H)96S_MW>_ysEar*|K
z&9vG*edxtBC-&&v-qRx8Rd0IFw|wZsdin4kqxg{P!-J-UhWgOYhqrwg=))i%`m@1(
z7{I&Dhsua_`*Ogsz;hp-N+>+`ZqgSigMAp{!@F$Hu5K=HeYw4Rclk`>oD!~KJ`DF^
zgbyQmr`pyv)`w9(oNAcap;6`-9~QUC98KeS+=Ya~pW0+{{{bFwGv0>@K1}uD10N>(
zz#E=PK1}xEec`<8&aLlW|6R%y+Rt=c<?rnwd+E_MAEx^-QyRAZRmZwscGt{cf2FuN
zyM8G0mnS>8;qb>keB#3jA6EMCsSmsno#Vq?A3hWQxev2_;DJG0_4I{ENT@?M&xb`U
zwg~6@u)v3f!dL&B%X?!!H7xOAsSjVV{KZq3(Tsgq?&JM-2?nj)>)@$pED6@xJM3|n
z@2@!u-tdyF@?kZL=fn3ttnpzjV;!%)$A@)3toLDq4;z{6hJ5alncVhy?Rn=W+5pG(
zm+8BxeBQ~E+O{yqF3MKUfmdp56Z}Sy-t9tm2<{XN*UkGaOGTS6nRB{L&g~|>juq;~
zv#z*P$`3y5^&#Mc=EFW8e)M6#4?d2;XHv>8YC_B5#?C5-OqUvdmhD0wddcbL*RB`z
zLH8l#L)ZuInV??IbEs&FA<fPkZ@LKk+J_ix^ty{1bPOufn8$AZ)gsgMao;fXyyl3r
z*?l<RLy^G^4l<X~4hnygps`sBdD(gH!|ZgHTtzz-M|?QyLrE2-R2<{v@53!0Zu{`7
z4<~&1gI&*2Lwn=6^WmHizxi;Q{pG_MA0C>{Z~o04kl)*5t&_Y~+{yhG#s^&IeYoJm
zMOHy{x_au(c}I!!9<qTeWvq*uj!Uj9K3w(Th7UJ=_|u1LKAw?^>#W*w7xzN^wW`-@
zk-dAgo66jSl)}G#_{WETB|%=ZI+k~x`!~0XyB-x*4|m`3;jRyPRpe7~&xiXyJo4c&
zM<Vq(Fo$^m<DA(%d+SQqQSKaAR(beuF4N4TB1N@pk*eA{tzK+e=#r~er(Uy<dzG}T
z{3;5lD59dMiZm4kRTNTDSoB%2Ifb)oRq`-y-`jSLPK?WXN<}dh#Z{D0QAKxi3&bg_
z(z#(*zqs>Yuf{!YIk|~zX%$baaI5gBD5IjRifSsJS5ZzydB##vRYe6A6;)JHQJI-u
zcRgI0&h(eu^)jh>XC2&7aYo6e&!~7-#d9j4f(sI;z*A-}U2v>_+LN0n<8Fg2o*(yu
ziWgPXR8dRCODbMgQC&q1DgUMX=?9zHZ5!O<{=A2aD_Seu%5|vRhYC&=E)@e`$>L7|
zE1KtU(~rKxUEHIxTmFXBS5$aa<fv$@B11)O74=m#P*F!kT@{%s>ZusC-cI?r<-Bsm
z#bU6X%is6@@}?_GMMD*hRAj5rEZ3AZuDZ8!skviBPUV5Fhj(1#*E*Z1XsV*6idHI`
zsc5dEg%tSP6|TYGC=Itb8xGE5l#};+wN}wa#VZm@iQ3W5bmU5h{~HIt9lxsLH5H$z
z_*BK~D%z_Us$!Um4k|jTcuPee6>q5Mq@ufu9x6Jk=%S*lif$@O*Uk$6Z1-utE$&ej
zGwj4iWh^V@>8YZZiry;TR53QkGrw7;qn)??t=yMf+0=Pzh&Qs;+gC-diUDju75!Aa
zt)jn*cU0Ug?K)rDJ51_ZVOUm%;yJz5!Il}MVz7!KD&AEwsexSu-XJ~iXizIV>&!ey
zj~86c499R4BN(b;vWk%^MyVJ_b5$`~#Tb@ETEK4P0^VQNy3B=+&ka}G?%we#Ca9RG
z;{Bw;;kyo|pZ90?mLJ@Q>*ah{+dW0aR24H-e5m3B71LBqS208Mhorf4($eeKa!>o)
zj&<##>y32pEEONA_*fKp0wy#4YpKG}J^Acj{!GQ^DmJUwqGGm+FH|g7@s)}>D(0$K
zq++p(c`D|sSfFAd?e>(S@?QhfIatePbdm=jG@i5By+p-Q70Xn7$u6F+yy$f;3)^LA
zzs<pwNI6BDHay|^TEz;LdoE#}ij^u>saUOI4TnQPyAA11b<AGnXwbfni+7tXe{!u?
zu|dT~6`NFizt7HV)-!g=Kfaaw%o#7&NWAmFvsJ}5soFjj->BHGVz-JtDt4&YsbZIk
zZ)x^xvbIdNO=5Og@2aAiQ)^}4*zKl~f5&81{Gej5q;T?)@}Q5aNL4R~50%-L#2+Py
zWWS2OH|;|DRRlQknka2TQxRmhhA=(^osFa7bP&G>5mFIW(Kdi~0q}7<!XfNOO+TV4
zVk%4(mWtn1oKX?ycwFG1`&C6k_yNJ61V1QI<DiN|?C26Teil3|_>15X!J~pyIHuxw
zl5gDZVVWmYoJ^*FO2u!&PYd!<R2h=@tcr7-A^j-q$9a+eq2jWN3&~g)Ra_FzKV+HU
z6%|*-TfmP$Ra{f?mx}92ohO=9yTSQ9nZivWf2;UM$iGSXEfu#_+!61jQE7KMw9_(c
z|67^S?<aL0u<?cer{WRKrk?AuiadVoUF%Hk>ZWFjAE|!30SB&fj&1JE>qkC6^7|1x
zWrxz0FYZkf1@eM^%q^4oL|(*?Vty2tprU>}^+ZQ<FCqMeWUP`xN(q+s<7q$2_|b87
zR#`tPCw0pCQ9j8l_)#&*EBP_uQ@a>+Rs5*x$1{E$x>NUAKOj1Mlkl7nKD|~G^1NV^
zkG+iYq8~4b_hmn-3!$*;lG;T6l2*$Phadg@c*l=)Kb(HF@S~+4E<fCUH1wm9A09sx
zKkEDKJuAF^WcZOOoZi}g)Dd3v$2_imdFu*4_*0$Phw9W5&U3WS?9EHf2I9?1DpQi}
zM-xAq`uPndPmUjJZ{;=?Y~8rglUU6}xw#<qxrDxzABUYCUh$)?AFcgpBXOzx|8r^Q
z#~Xfh^5a#B^_t-8$rRfA(ILq@3h8+ymnnA^-dnJXU{^o73F$6KogPAZ`q3*XIrMyS
z%HQ<kt)!%nAAN=A3bNw;guE?y`@1#+{21uR6+f=}G02a>e$4jc3qOYV@va|J{rJF-
zp?(bWW1=7L`!U>)5q^yIW1Jr&{TSuPXg|hK`FQovl$u2T)RwW)%~S0LP4$ks?Rn3S
z@qYU~&jddzb*#mAdbZ{-_KRZPJkw2L-{nc4;^(_!$7I2`8|56yXYYhI&5!AR{MNnu
zr+&=vW2PS;`|TU)4{5IX^3L+(BR_VeHszjORQ};=w*OY{!au8jLhEXuPExK@#%F$f
zE@dkmb<vf2A!QB+iyue)IO@kdKj!<fjve$=&H_Ic`mxfFRet+`=0$!y`(K_Fek^9K
zt9h3A5$cq))Q<)=T+4)iDY#tlD?h##GWyMoGKZYhWO;bZ&1yf^(0=^(BP3rbAa5q$
zpYvp^+KXH~a&f&M8~ot6#f^UaB4r@o<i}<|w)nBtk8OVJXE*urji`O=$8I6p1$X$d
zQwU@2;;4t4WKUAEmzfIxJ}LRZ5B>y4oqZztF)2S^y^!jM-w(@=xE}$L>+CWinjgWW
z=2r*HGI~h7QNgfaM3CE0#e|rGJd20Q3E?CMg&gqXCm}!VNTKkM@Sl@9hyCF3E0n+1
zs47>c9b<w0xWIz#aQ*7X2|s@K<BT6C{WwLd@Z&VQ@`3Z^?XC^nW8ojiiCei`&GK9a
z&wy2qvwobDW<SqsQwi6TH+7XB+uMNeJng;c$0a}h@MB7<o7aoWVpLB!^ZL_|Yn=B2
zs1U$keq3j%{J7`G4G!=kwf^?wA1TsJK}zWU_2af=w}Xe6vzxjoEn-dXu=nrTM+Ot`
z`|*IYaR9{vwlO^P<B=baCCYysYjYfx>($H?KuQ1?C*?^Epk^m~b7?+Q^5E>e0epML
zKBp`nueskl^9vRbOcN{^K%oE%2T&w{uS{1_5q^Bq$*nu7AB(t(2T&q_(g8djK*<2O
zQ662X0G`ubJj^Ix2^SARc6@;{0hA4(T)-a7d=ETzxuaC7!spZXzRs!`K&1dY0Vn}f
z4xmZ^F9%RPfT{sJ6959JCiTi*o#$C58vx&sRNU#|-7nwpKOevg0UVfL=%oOnBb5E~
z9Q9JNUJPLE=Ir~o>=$$;Z|Bxvl>=}DkRAZ{oUg?MpH5vq!cER244eVD*d3?xxC5Y&
zhf06C%)tp{yz1d;8r}dh0>};^CxF@k)Cr(o0QCc?8^EZl8FZNed^pwdg!4N~g8;Gu
zXc$1F0MEy?526}Xqw$C{_BMw67FP9Ams8KW8wb!NfEEF?44^5|QLb44&83d@`t{;W
z#Us(%uC}*BWZYH(v<{#Rv#Zf~)1k)SK6bql08gK6cRSZ{JNJVT-d6*7jiu61U&HGG
zv=89p06qzz154YbMwbA(2GCLX8-kq#I}1K}Ytb!$?g6~R#tEQD06hcf8$hlo^b+hN
z*jw<;0NxVv?{oGW54wRx)B6SN<ur6}3*qME<o$*3_|Mt@JNLi<h6XS!fY1C{g8~>F
zz!0hLyMnV;<jH7hzmyvuz=!~51aRy{_s9T7c67ZLz<42}0vIi1j39%?1~5+erlzU%
z(oG0pN-}g}0PhQ*Bsf{{oM=u>>U<z%n&5Q7?M+i>O70&D&I;g0dp8U7k$7)cbbZPy
z1aK*UKLYmWgU<t47QmOnX9w^_0CNJE8^F8(76!0L<n!6QE7KPQ@HpzJ;Z=sY>kYb{
zyEuThe>s-~urz?}&)a9v>~>_;U+?8Q((>uba*nkCz7ODs0KN`jMF8JWEr68)tO{Ur
z09yiB9l#peIY&)?rRO$pdDTNlPPZ<A^&C*?$_BxWg7j_@!r#)jN|Cln+_l^6lLr}V
zZMq$IM*zDxCrHpvLGBN~JAgd_@Q|<X0yxpnd(`Eb@5p-9@10WEUNyQmfPDd|0r&&>
zk)2-2yI=6$_hrfHeB$K_>OcS=gq0vGa#+!%3{7+Gldtsv3<=t_&KU|I96*G_Ie=dR
zI3gAj6FeYj24D$^3({;7oTEnD*L1p{0yvnI9}@Dj;NbvLGyk_%;b;J-M0hNK;{l!&
zX~+FF8S6v<CzG5(zXfnwyuS;c7d#_)R`6T^gPyZr9@1S9$;G7nasXEXD5~Kp4OavB
zGk`oAQZ!uS<R8G@0PY2Foi@fvHGo?I+zjAQS?}Kgu3fj!DI=%j9?Nfd6t)cA?Evm@
zzN**2bHKAUvnTtD{8owd`vLqHz@q>j1n`g}Xk<pqB6hd3cjz8-%5vIY(8xOu&q>v6
zgJj%-8uDt$ry;+F@O-6!hBVE-f{@cyt>|sBRN)F|Di_jFSVIvF6PGF6i{Ns?%g|yP
zifedY!wVWpXeg<niiWBhN@*yqp`3>D8lKj$IZY{}p{#~3<+?H!Yc#H`clzzz>_$oj
z4HY$1(ok6gy)+djPJI6DY;Lg7uA-N_G(4l>S>{{O%W6KS0U8$M_g2&Jk4s@4d#5Y)
z8!I%?ZjUox)bNr9rv{gXmo-$^;Lz;zp=xNTsiBqze)i&zmKlY-bXq0v>mxHLNf(_e
zriYqt4IT}(HPjKIqQR>nLpU3OE^*Vd<aRDU4cFDs@@;RXh7(iJs9aZNaz=}Ed%<=C
z4OtpG2hk;nh8h~Nf<aUYB3na_hCvzzYiO*YiH6)WJ=$q#s$u)>+|plVx6#l{!-g`h
z<{DaP7=GT(&s!}u`y*E?!PXiIwa%iqOWTZBG_++Sf0g~-%`TVo6q!4#FjIR~!#i!=
zuQC08S+8sO?;m%24IMOe)bNIeP8#0S@RsOwrU3|{eitEK1-r57);TGp>mib!8hRx)
zdkfL3*r9zi^iRtBvM$2=B_(fbIJh9|NjmR{aDd=ILFO_<L)TxuBQ%WEz~vwB3Jw(<
zCOBNfUCsH!u<TJ9Mr-(q32GRlVJw?S!$u9`G`y!_K8-=cc+Fk__JM|J8Ya+GG<${H
z`x>T*e3FLALMWu;g^9{jlalEgW@z|C!>1Z%YWPsYM;boXFiQh>zO5|l)~L^jM6Mm(
z+dP#^`##g~xuo!ghS@?k{h!sab2QAQN#~@#E3xK@LZSEU`C*}kl^QPgvlpZ-(y&;=
z5)Df=EEAot1;5m=T*FtwnQv+nJ8QZpg;^mfQ@%>WY7K5#y0%8cTFqV}xK6`*PA?*4
z6s{_K+}g8=V^D*t!LMP9hOLtFw;Hx-_(u3n+R_h>?UM2i>ik&lsaE+Iow+RATW*(z
zH94st|5|RhhCQ4gG<+|yeiZzH{iR`_aIPU|lqcmR*{{JTeZi!rOXIg#>IiVE(Gby~
zX$VRzT`;6!L=DAA>N}^FU)?TWR6|VT?y|KGh>octF2oXi(k2P%DP~7UO)e=sq~T|_
zhKAc34r};D!(|OuG#ueP@P*@;hT{_bsMME<(EY06w1(d~oHd-(&}Lt`QyP9_zf@Pa
zqILcNCqKV3{WBWQYPi52)NoG2lV1$ZOFFDI6`s`nSWfCC4S#6hLRkt~q+AJQMprot
zX}B@Lc}>H065)SwrmAV%)lCh5b7qs`rTtoNd!6!KWvMnJ{wqSJcE=tXc&s5$5Q*El
zhxR(}ab|eWalq}muYveL!$S^#;anmAh!boPh4O>dm6RY-gZ3KHl0oDRB3}?if+!k9
z{-8aA(t;>Re%et$yv(am5QT&IaY!Y$03V%L3l1Ohr-Jr!(BeUq5Y1vi`=@fQDV=}Z
z{_|q}k2aPHqI3{X2T>-7@<AN?wOrXCxE8crkk7da+mk;pJXy<KA&3#OB9te2RSu#`
z5YGqkLJ&MSpsL_=K|CX5(YxKB6*6fS5X9HnO0^&ce_|goFr!A37lU{y2yYM>LGZNM
zmxFkmmaYh|E?6UonnG#`QpXWQx^QPw;tIl@<enf_ZnqDvWje1uaMTW>P7p1FXca`=
zATon!97K~K>IG4sGkg%fPA<9zLb3#xU28x|!yp=o_svD_XZN~a8Rg1hyNz-^zuDb1
zh-N`VHCKxuMnCI`-OV0(H@kTd;WpXZ?q<_FdRKPqAld}cA&8EQ6-3)0UJc^4p#7-T
zE{H?p9Cv&!Zsk$3sO$A0ey!?h9|Ye6@a(@EO<Z5q^!ztbS$@OuMi8BX*t5h@ZocD_
zBTl|O=J~~4gLw0TXG;)UgXk7S_aJ)ED%z*>xpI6EJ%i{KL~rT@G52bozCpYd1dqzP
z`pDTQX#b!T8R{nIR$941^b6wcAo{ZwL3rNwz7xa%A;Sd+3cee}AR&VVhY0dAO8ue2
zNrnmGbTmT9$fSH!5Kn@rGbV_!A|EICo*<(zXhIMZS;!zJ1@Tc39|tj+Rk)J#VGy&}
zEI~}=tLEFe9|SR72>G-iZr#o$p_?JXnSzDy<W{|td!uP%M&Fh2d=kWi%O1MVgZPvd
zB3|m8?V6v$*+F~}#GItgMz&ZG^Tazph&4hM1hG)aq9DEuVtEjYgIFSxrL^!DdM=~w
z-N|KY<YoG1&7PL?RS+v^gfw+2B!j++dmi=4S|uf1EpZuz<z&!W@vakGFStRFh3{;6
zHVJQYCwH@uW2s)AZL}?jKoDBcKIiD0AhrjwBZ!@xB2GDcL8v0%6}0aOzh#fpeuRI=
zIYG$xPrQ6TCS-3A`;w9=xkdL2-~Nxis9?);*^N&Z8ueVZpTl#c`@$R)sO${}@v}@g
zdJqP0lk&SlK^zQX_8*RL5D|`xAYws#bCRDp;p}#<+~YKZsC~$31rZmL5TpWy2ZFfy
zj*DcB<~TdheMr(d_Ku5F&EX(^3F1f)M}s&SM7y-CV?k8k-s?EWOAyTqX00ud)p&ca
zmB`;eE$al$I4x^xTGpu`ehcFI2=CZ7*%J$9G1i$N&IWNp$4MRMf;cY~d`8EGAT9>+
zl#bm$J1zzB2TQ9XMaShJt_1OjWA@GTt3mu3#GP)g`$1d_;;$fXu)vZ6C)Mk$X~bT4
z@uJ7YO{M-0;$QZ75aj;|HahRP&FDeg4dNaL<^tzu={?KVROWu2{-~I8^rr??pfb~c
zAh|pg{Et=kx+&xfjmPZ4)vho1I#YF+CEQ&0Tv$h59r<)z@ifh^<BQHNmZX4=G#yR5
z<`mRXNXO1*?pbN>io+Yf+%<>1h;IMuT2#lQNnR43Q&~)EU0kq)ARD2ij#4^G>v&ou
z6_fHZLdxnWmz0#(Q6b5fy_;Dn$tw$~B3L!4^Q_L-N`Q`PI{NC!)$zQJ7j!hxk)`8B
z9qqQdYwEVSzNF)29o2PvOFiCUQeH#kiJkV7S}h$8QBK$4(&5(O)a@5jR9o)O@#s)=
z)Mplkqss<|R|nrY^CMt}4*nWYTd<B`UBOJjdV*#Ca#DxN^S!QyIvVL{t)q>OY#li|
zT1qaBbu`iO&ec54+0Ht6ga?b%Oh?Z<_6w_1qa1T9W?4H@TCke$y7)S%mBcE$+1_jP
z6&-DLbl1^?<=6454!%6;rsFjoztl^8UB{+pGPr1DN3N^A4!#Gb>!71!lD{FOla9_p
zx+LXYb&R@_OJ#mpNOX1e)X__~e;IyDx6fqkt>aDcl4t!_mySVneRRwi<BD8&_0#dT
zj>S5b=;+U?>6oBnqK*MN2I?59W0;OXItH^MI{5OO*XyzCvWMtg5SWLAE$~d1>t^XZ
z!*z_%F-FH&Q5(rp=@>2iY|v5mo`?GbuR8DIkuKwOyeG{vUdOGoo@y~ytG4zVBpz<Q
zqO$va9g}p-rb+9VtYeCfPj!5zW2%l1bbKQDPLt;4=WphoJ<&0peKgTALvW_xhiqFR
z9|?XeNSz6Ha-An!h2HA+xo#hmLC0lUcT}6q(J@!I7eFr5F;B;Q9Sfvics(t_jr2y@
z8xJ-)VZVh~L^D2>!WW@DF>R@iWjgli*hgc~v0TRn9UFCgrQ>TIt97i=u|h{^NdA>N
zR_XTb94(<rZRJZb7`~cb%S?5wX9bI=(EHmhPoa-o^Bybwu1)*dq+_#=Z90Dzu#J3+
zj;$OE0~(CnVE-4!{}%ZwcsrZDe##DxcOCRLukZflU(cIq>AQ5q%6sU(6|!4!52FkD
zUhoIO=RYk<wI6lt*AdYX)#1~j>Imx4b@+7zbZ9JzlESq^Jg8_u^{lxqYH{T`kB>1}
zJ2uGGJYmT_caLMo1$#w$*5d{hr)9)AU(pVA9H36!6pLeXtuxLhGF&7lZ#lUz`zIX-
zbsW<1Gwtw{J&qzFFZZ(G(z3(sh;fejKiS*p{lauAdXDHgDun!)kmG{Cvig5}C_E)|
z#Z?`D>iA8^X&wAz@H^*uA>?OtoK5m`I?gBgcAw*7l3&vChw#fu$rT+`VDxJ`{$l?c
z_}ajA9XB|Z4ZLdLrjEaLR5kF7fq!)TtD~@iA_i{hxXme7$73CLI4$R9-P3Vj$6cAD
z#<q3;^;mhJV^`IThdTa~!jqTU>h6BE%bH6~cHYU&V<5#qegg#zq#E`Nnb$x*1K~xE
zw#D4nzsQ)XI(X-Q=DH)zz`GSv3K}S6pl(g?)RpNsQggnW<apn-cjPN-;3)$o4U{r4
zse(%{Q?QtU;s#0>d~clcxTO6i?fcT1P2KL&2A(!h-arKdWek)xP|mP#8dImZ?rEOk
z-MrSF+{ipP&!(wpppt>g2C5hsmhEE4@v!FpEi;d;?8$vWc}e2YW6v6R&VbiIh5;C;
zW}ub<hrusgc)>t*12qi1Xy7FSFB^C`E`!C`I>qHH<Eiv)4jq@@m++=?TCQo>`%jV(
z(+xNcxD2>OIP?RD?MhaDzmdW-fIJ2iw%BRM(=LUM3D!1H$3SBPP1rI9G7V%IXlU4b
z$JH}X-#`NcTnqi_8s|@al#6$AIo8&ka5OTwfjn}g&AGSgmwnv(k2!hJ7(<6t>($gi
zGXpIRv@#GwYI6fEm`jWD6?!P0+IU<$>~)^44YV=vih;HUtg5c~WQ9`=S1`Wea7`)W
z4p(#6evtE;f!7U;H89RVdjlN|^f7q-LPrB{81`<ZZyM-iptFG<>?s3X40JWn%|Lep
zjDAjc($Qe(c<wD7>)Xq)Pm}B|B_EoTLr$T;WW6=z8@^@OUtLFC^yC`oXJD{_AqL(y
z(BHs21_l`TGdGQn`VCLzIrVPJKm&seJSuIQN6Ot?HgCD!%DV=J8W>?<q-4?kje^4r
z3^$NIJY!?cES{Xjx{oq2+Q1mv(m-#;ySbeC`GWwDui|G}O5QUt-oPgYJ~c4Gz(fNx
z49qm}z9cx=z!Zr%Nsw9ZbEQl*Fx|k<9o!!nn8sq4=$&yl_w`3zez=l7bF@PFhcvS)
z?pf@$?rHRTta2Y2_*fF`TqBE)>3nA3a|4SEEH*Hktz=-Hf%&ZX<C=2}%r%g^D23ep
zi>Li_?k$(y3uxXi7G7v@4>W}n^4EVmLN{HPxc<|yzjQ1!@TGyJ22XNKxs`DLbInow
zzbf3Cazd+=<+QZt-9;xlRv1`GYYd@42&)XNrX?7N8(70wESrJv4XiV;-oQ2k-x%0n
z;8(*zx7px4iB0UL$qw#&OxJLeV~c^UwBGXeDsDD1N5^&pI}GeH@U4NJQdtJQ<4pP2
z@-BbhwVPvMP#TSP4{d3;v;8kFavoOlgMq!QlmXqqJ_A1*P!0GE>^JNW?mk-VtJ(g&
z_Ge1Ew<f#!XI8*~Ch7CfEDkqcs=M9YT*E-fK*T`QK+#$$VFQ!*JI}OF>2}dWGOkp1
zjAPuTm^ANF**&hgc*an%@0<w(2MpZcv}xcc0|yP9GjN{ck^O7nw1M9Z95(Qaf!{cL
z)O7K>#$Rmcju<$~mTyqcc0!KZ&1FkYB;_ZCoD%GRH<zV-TrmBNfmJn9&e9&BFu^tf
zH($S#Uodddz*U;PflCJdFmTzx6;YdZH<v$?o*%04d}_yd$G#@6J(XS84E)80x|MsK
zLo&z3NoKXui>E<RGXJsjZ%+OO?i+Yu;9pMu2JX_xZ+2xH-ewDY<+x+m3l&J{_zT#d
z9~Qo6V8vL+S9fzC8u*V>eF&)`JTmZ@!(nsLJRv(eucus*d$qZjV<+F(hD;%E2>C*|
zHZx`Wm>ds}Sl!xlT*a<wAruTDBZS%^6bhkm2vtLPCWIm(6b+$F2xUWfDuiMolnkL%
z2*pF_q&rH4xc)6`$W#Y89XVa;5S|WU@qDgu_WV}3LCzKX^saItln<d-?{bwxs1QQM
z5SI6MRSJQn;%|C=E2q<IyW`ba;3|yHP2I=jJR8DuA=C_^RtN~8S_m(O@KOlRhwL@{
zFNEy(7;BqmGZx=;jSPBT4xxGoH5jF;o8PVW-*waSd1x;$H@rb|gpeMBI|Pp?I79ex
zSS6QmHWBsvPku`Y!5hMz(kVP3tWrHsMzd@>noyk(>W1)22yH{i453~K%|d7%Lj4dL
zgzQt~vO~xc(lCTZB!?WKySY3ooE4$t_xhX=8i&v%gvTZNevnd+IdU0)(-4TW3RPxF
zT7=Llgw`Rn4B?}1+*BY|Ka+=tl@r^9>{H7rY!||-A#@F)TL`a(@OlUxLwF;E_91kj
zcVZ7F#s5#aI(J-adw<<dA#@Ibr^0m!f&UXtAMU#Ovz-nluEUP*A@m5LH(N4f-yZa2
zABFJp3zc|tRq#j0v|z85w>)pLnroeXLg>pzxSz=@LT(7IlUbZYdX{kY3*l{v+dqUM
ztd8(^1P6pLP{<%brazd89JcS+>4t_dDk&dEOAtOHDH+Kgci1ZyMkgg>LKvIm<3jvj
zz)oaB2oq_pQ51>tIB84@@u&+dh+uLEQ$ko9#=0=3hVTL9Vf%H*v=F9K9>Tg1W`r;^
zgzKHNR)p|j2(ws`f1I<~_#qs$Jg2uiKMmny;hzX5DrP*9e-^^$v^2MyI?h8~z6fEC
z#GM<$k`R`LFpt@Vuz!qeK?ufi@1hXS-_2df)Dn$JxV_S1wsSZ4@#iy^h43XUu(IoG
z8n&Y=cgI>zvpk@D6~eItN=o~l#I!2PU&R%cb7cstqy<)outrMG7N~KkNv}Ju^&y_4
zZT}a1kU4(QV`B(gLf9&Nli+4S{!_e-Y9Yiz;DY4sA?yfYZwUK1oKHJ<(!76jejmcF
z5WWpzcL;k#^5JjJ??U+NH)qPdTw<ZqP9imbV2}UiWay8qYzRS7_DNEK5VR0fj`VxE
zOxe#%Sg)*A7o6mb`y?q{^bNsK2;mSS!e76aJLq06(~ojS5@Lp6g%A(%_-02!O5Xkj
zh2=jWoaCpZ@K6Xphj2KAUpUyqaE5Utgrl4o!^j)Pu@H`j@J|T;hVW|$C)h6`TnK@`
zyqy$06T&GWl>8>-wBYZ8iw?QZCPU8&DL<&_#iZn#kV_%_k(68x;YyNU74j#0Fz#UD
zbbql2lc6_++!Xv<aQ~NSw}jje;en9bf_DV(3f|+C@@3kS)E;tXF6~;k+4Y|UJraB@
zNQFFMq=fBi(tW)wEngV<!>ANS<uD3_krqbrFxqW&G@aroC~6H7u0kYJ9EAmo2o@E5
zN{~Ut!dTSQO;RF^k`#XHEEPr>A*BVM7SuPpp5$9LjB+BOw|p2ClDuLV8$Yqzq)Jj!
zGmNTXo_v94Me>5+bAk}8CiuJ{BgU4cy(s)8!IuTACqrw5G1;`sP)j6^F#7j*_1NOt
zzQf@P!yQJ?FnWdI2}22^Ll_;y@P>IVn4@_Z6*D{;Vbqq0b;8IIQkS7&)Jvw{FpT=b
z8zd!JVa#miVUCSNlAV+{99WdX#$hyhA`xts3>`Eptwk6u!)PUvc7m-1+az^f38QV2
zw<=bUsl6J;Ya)4FuzfQ0P}|fugm(&~a~PK%JIii#bDO*433nHfcNOfG)bAcf58=<Y
zwA-q87;lC#I*c)4ye0BJVT{}1`1Go)cVk!IFml5@?HX@~F*uANqR?M(Kp5``VImK|
zvW;_~cn3*zdg<N`V`NfiXc)tU4^K))gi)fVn`)zylCJC1#xi;sABHhYgzpJX6&x=(
zA&iMa81eluCb84SJB7U?%}#l4bN2@#oF+IujIMvUXC!0I45RNHyGcJvN@ffBSn!iD
zJ{9tr;OBx=ZqY84_=R}qgfTZMpT|0$vRiV2Tz3|7u!ONVj3r@MZ5yu)V=3GAfMYr9
zwT0{dZT_WTg>r84uULgY9bbp-i!!|{*zc#^_ipuK+*OjoYQZ&O@L@CWS<m_~HiXeF
zg6<J)WIAV*@5A^Zj7?!|4r2>VdWCBjd8)ECjBR0j6Smhy>|iI>b#E8WCof9qc8Ztz
z@?Y$4!`L0h_Dwe5!@_jR`i?nv_m<g^vp0-=VHAv@Py|1Qu|JGI!nhoUFAOz|pTqXI
zLVp;6Fk)et;?=?khM^13-RGr(5k^S7zdGy>reWbEkuai3-q(>@KHUzr!ia~F5c$Dm
z=z%bP5<bdl>l_lElU1Jla2UUE{tsh(gYqZBI2p##WUOOh98dCJ!?-26pAyNLFwU~+
zwxs_S#_2GAX9uOH(#r&gi`qF+yAZ~CNtyD_6YR=f6#1nvp48<E`#p>YVLW7ehH*_o
zZwvkv#`Q362<Hpfn_>Jd{8kvu;-4`774I;Io$r%OnLdkgCycvcjF4j7W9JsOcY?Yf
z#(k0e7sjJ7QX|M4vCC69J@v7qL!L(@DT1%0r{)tvd76;?f(0UAj&ze8sq3Fo3P(^R
zg1Ql8Mo=_@ry_VR0z^<Og5nWWj-ZOfDiJ~T^wg(?myFo$Rw{zh;$`|Qd>P?oBPbU^
z`J}vJ1Qn8;(WzM}^1pVgO0{&m7!*De`CrwZji6F`>Q+Z;wFsV%;ALhi(VsNV3lX~q
zUlhqpf}<R%H6o}PfinV^NNNc>B6bTiWxDhvcS{f@wIlEdR|LIDd4`bb_j2n92}la{
zBB&oh#|Yktpg{y#5xf#XTTy5jL6ZoYM({<x^hP4d7R-sDv5+TKZWclF2wF$5^&?k{
z2wFzaN<yzm7qCy+5yTNo3b1T#s3!TglcsnwA}D_~g4ZH=J%aWTaHKr3<PMS!y;Pv<
z6hY?*x<v3~j1Wg`b99Z^TP^W4-Y<(NJtFAI6ehc7M9?dO-b|2>ClS0EL5C$-Z$;22
zVoyZNJt=)7$fX(hJ?})&FM_vur`^QWKY|(++$40yMw>j-sMi2dqvpT}1_>V=!4M%v
zcB+=0${^-4RPq`oI6Q(85sYLxIghPOpCmXsf-yqI3Qmk*oDeF!7s2=>pFp!OUYNr7
zMRM$BWpcX75lmqpU9{J;O_iVz1gAwXJsJ1=d{51c;KK-JMeq@OO`76kLAJ?f5qu*2
z)1;);i=NMg&lcogOH1$N&Pj&OjbL7qvu77Zuqc9+5v+<}aRdX4r!N&;BA9c{LCG@V
zUkWZ4{7Ud^!4-l_4=L1K9l;t7iU?PT*-5R9U{?g+3SSq&`Uo~~{*Pc&1f%a{?~Gt`
z1Y08bCW7s>A9mI#$2N{%M-j&5Pxm!zWi86%<$9GJ5p>HaY`$BbyWK9^?tJ=AHly#3
zU{3_02*T|B2)>WNA3=a)Jc7Lu?Blf0_78bq-R13fLHT;0mwU19k3eO8ciG$*0g+pw
zb}D3V6RJfJjDVZ08WA+SsGM%=ZM)B_i-a4u4jh?Lu18KJf@p-FL}5nkU0b6rWzuzp
z%NH%$Y6O2pa6N)V1P3BG7s2@mev05=1V<t`8o{9m9?esJW|b>tlH8t=eK>;rixs+G
zA}H*($*~BIM{p{F-y%3%K>3xE!v*D|S{bv)G(Hi*NfA<>Sx-65^gYV&5uAyjWIHeU
z*$Axs$_l44W=aNk@*%$v!NmwJM{tE@*x;oa-K7ZrkSI)t-mAjz<jedsf@<|_$u*IX
zEX$|dNb*~3hY0?T;2)9H9NB~lbpMKX-BRT?Ei=DDcPE0o!tW&|T>tPeg8yj$QRIu-
z<Mfe?)|4n73!x;B$Zz$wAE;BKXy4j?C7WM_Bn5;Nc{3$V$OlK$3Pw>V89E?;O3^5u
zieg$6)1xRBMe!(_M$s&a5>b?lA}eZtC@B?1=_qPMQ8S9CqbL(a)hM2cqO7D-K8gxL
z$_f5*Jx|4C`jw-oBz*PC^se0svOHCoczc^X8^v=H^imWM^1NU*K`NZToby5yFN(Ko
zwG<wfw62?7wU?u)F2XxmvhBZcPZUZNjwsT_J0c^MZ)u#uT~WA&tU2vwn%*cfqNpd5
z&-&Rfv}+5m6GdGinNh49XQ#X~Q19EnyO7iud4ni^KWG<#4bm`*M$$6m*-_*qdE+RW
z2ygbMt=2q>7VMEIIz;WQs9HwRI*K;JTM25x0<T2TR`}~tv=dUbY(py3y(-?<k_wb0
zQuB6<;*BV{KK9)xIz{pGvt|26ksC$lD7r+^HEOS7?GZ)KD7p#nF1V|lm-1dwj9;wK
zy%|Ms;S|#QRup~2o3h92&zHGot+!tkZ%6S?6a%6-@v_oC3hvvp>p%`U$-pQEv9uMv
zECz+8M>ZKO-XVgys)s>CqZlUT93I7}C`LyyLYk3LMvDBsd1-8-F;R?-Vw^M@mkPhf
zV(@KG6qBNu5XJtrUb=}<`?xf&4JPMLyOX1s62;UgK42ZUdpV%kDT6k9x8BPQZ14_N
zl-ccEOnF8Wktm{3%#7kg$$C~43xrVrqbNQW{)ynHf}aU~E;w883&A;pa|Ic9UKI0%
zxANNdurP{6Q7n#PNfd!7G+NjBJWHck9>rHtEQ{hx+Q7*?TxGX&R-T!~(!Y*kMHK!h
z)~|F9Kc0tfWfZHTSS@L8irP0?YlN>ATqn3*aD(7R!9FMKbvT=&*b>E7k$f+>P4FAR
z?NRKAVrLY)qSzh99(MGJJmtHjd>aLktKimMa*z<2)OVa!($cGKbp9Z5_X_Td;zxEw
z6uu}_kx-wG`otqY*nINIJaj<`4GHQ|7*WhPnTIO?{j>7$TWwh6AD*<!9E-waL&Xq`
z!HOat#f>O#Mv;i(V!$rR`6v!V@lzBBqc{}BktmMR)T8#D!(nRv?BE&+@?WADTr7j6
z@}JpjPURenf_N&5<5B#|;e0CRL=-1QNX{TSlHZ~@&9N+UhMp76GvYm)j72pDU5H}o
zDDTB6E=l44h~hGb<Xp#pC-Y=DvaSfH_i7Y>3cn`!m*DkeXx^U6-%<P%MgJJyiQ(TU
zZbeZm21g9Hqqq}AsTfMfa5sv3Q51}!Pz?8@co0PjKOe^IgUlYXUuZK<h1aJ4m~0eZ
zxRr;_3|<QJ#B6zJXe#-a=ajrL4CXH*G0Z8b<P)sCSjqKf6cBk@3^zvSP@!<lzMdA1
z;i(vk#O%~k4|w03uM~@+;6kNj4DS_GiVH6x_?}y#ytAVC-OAH3l!@Wl7@muvYz*Zj
zsmd|TPgBarP$7njF^pKCY*?l|@F;cM85xU}N-+@gIqU*g5&fz$JQG8KmP$9T!o2vQ
zv>F>>sZukB=Ow8ZV|Xcs7lboqUgBR)^6ElfE2vOjL-;gB>DstnNmoXC49*yu$Iv1M
zR}AhL8pMzlgC_<h2ECuRP7GcaCI;>XT|0)Q=^3p1hv)2aIzvh#J)>?6nK9I(T1$mN
zg=%Hg7tR)-q+tvnI5VnxGjd{RBs^P?LjDEQIEE%MG?m1MIx@N}P?`y6UMy|P7+S^9
zBZi(aw2q-o3>{;5BZgPl#WB1V!|O4$lfGc7UKP^UZTB6266v*6+2c{#Q{SV|b&wX`
z;>f6|WORz53zO=V(K%-SgG0%CN4;IyEd9K6-6TqP@pfCH@EFQoF}xK+pBQ?_z#e&%
z<qs=tKvuSIj3-2(pL9^fow0YZ5?G?_s$Z48_I3=vdKHoZF$|1hSqxvsFo;IQ=rK&A
z!MK$nF^q~~bPVstFf@i?F&tW`jHHFUn?o{Oydz@h@NE-%@10c+wNS>yFgAwwW0(}f
zI3^OqhqvoajA48XtTpXt0wq~hN!a)_Z<1i9ZAg=2m=eR(7~&qKTS)n2fl_suGQ*=V
z`t%rP#4wu;7{g3PkKvOTK8<0P)axUs@^K6w31@ZKFSVE1aX*WJwtXy3`J7cdr*JH=
z*XAs<TWn4Y3u9Om!`v9=NyPav&{SI1%2<$0hkecK&SLQ{5oCKVO@^*&S7~_+U&Zik
z47+3anqxMG%`t3Ym&LFuhBYy)jiE|QWi?ILD5s?<v?yL`*NOdXOj^<U81ffXHpFmw
zo?Se;O);?WBoh`XTVvQ3!#6Rol@>o$cDp3FBZdtN?Up&QNZBbtyJBE9%N+BvDLAb5
zuq7L1?2F;M7`~6;2eIe9G5e-^^*rU_61x#tmmg!;FLRME235+_%#rbT%?!WrKn%B>
z%B972N%R<u7=Dl8ObnqIxG)3D(|?O09780AXbiC!cd>K)5`)RfKZXM_{KS6b5SZ!;
z+{;a{p)zww=+2kTZuY>wUNnw)4#xO=?Kvd)v*2NtS%QwlaFjW=NiEnS^%&=?7O8yd
zIZm^@;rLbXgy6{-P6?rWkfZ477+5emPi>ryVey$BbPr=V7sGk+UWnnQkc%-~Vnt$T
zI9s944Yt4VD}q-A{}j9?_!mvZ<)ZR+8sTAAwKf@y#f>BWmel^?C4kK(yi2JX47x4+
zj^JHE3h(hMApAj6!hCrU@P9Na=3=-W3+6GAV%pwR6NOEjzL%R<y!iz43o^8TiL@jy
zD5Q{y{x>`fDq`ZwpRS^UPYKdn%tY}dFJYo&lHa?R`?QHNCWalt@IxqTqMV772XN{D
z%A2TQ;#3^J#Zl2jB@>@pm~El5i7MPA#KO}Ss+xGl#1a!rO+0JjITJlh^fUnz)mSPM
zjZ8dm;sp~f6K)ePns~`XO%t_Dd#9t9O;k5g!^HlNUA*XbT<G|*QiIG_>@7_kCelqf
zP0V^hIlIU)ZG2XxkCpEgdxw@<Q!_j!6ccq#WSa1r$S_gcL><#!s&TAXX6gI6Jie#y
zOn2I!-k-mAFO25YGg03}0~1-2?`K7nCNu1x?}l#t-wrKzJ7#2?$T88*#H%J6n`mO9
zrHNK1nwn^4qPd9{Y^An2Q>VKgzvkkvdB3c7w0h`zaL83@wY#;6HYQ#%(Ut`sW$)$k
z-!S)~o$kR$vi@r0rFZxAoYzdeZlaTk&L-NM=wPCwi8oACeMNb<bH<MHu0HEr+={mS
zCg<GB-f_3QT}*T}(al76Df6FyJ4csLhDDtFO@$lOTs`HQ|ENJP6TMALH1WQPH%+`{
z;$0I%P4qF**Tg#}2AIe-(a*%&G!GL$Z*@8D=gwH=Trspki>mHo)3SEgcXPABfhGo-
z7;IvQ33kEK{B{=<8<>?_(DU+RyZl|>&lqN6xQQ_)#+n#mVx);tCPp)2$BY4C4>xb*
zu6^6aG-z=@w{xnu{0Q$j6YrTAZ(@Q8e%WVhb5o#BH*zWz@=m+&q&K+LJ;~(f9(-!z
zGZRxxOf@mn#D^w6Ffq-<bQ3d7zC?9Z+hcFJ^Z2xfUuyo*vO27E8~xm~OnhYGV-ug4
zu*TVi>~TML_uF3X<~?J&Z72Oc@qTV%wu$*B7MS?L#2gcIP0XXsbnrgiz%|pd_r3X{
zn7yUd`{nCZYhv%_w9v#N6N_nGha9$r+|T94M_h`(<rCL36JOHCOdL0{+~mLZ*vIB#
z?M$pNvDL&j6Dv)uGO^yo1{14ItTD0H#5#8RDwlrQ+xog=-}^3>|FcQTR=;b^KG#MQ
zn@nsrvBgBGbFO#xxNDZl;J##|qjv86IjGfh-fv87H?iBq9uqrE>@=~<#J6G<N6)!B
z&TtIV-9P_e*JageXU+?*?@WAe;s+CZO%(mz%T1iP%<02c8SR$2maKKQ-0JPR&$Zu#
z&xFaQGohOBn=nj-Oax45CW0n(NuLjcOx9Z`d+e0PB<bJTxr9wbOhiq@OvFq5Zv-Lg
zN#ygc$hBRMGv2s~1ntelVG{>T{AA*wi9@v2irz6(xR@l1n|;N5cxN<L_zOR4@r#Kg
zPin;BHq{<MTmW!(cougsAph0G2@`i{44j=fDVey;8O+3QoFPq|GjZO;?<USj3TJ8d
zUA<-RdoaU2^L}pM0p1GLTo+7SG;ztqA10Q~cNKoC2?r5_xOYT_Lg{0U^Eir(t0w+5
zanr=#Ca#(I%fxjPH%x9xXPeVkEwb1ndmeaa49q53P&?-z6aSjHW#TriVz#S=+td0x
zyX2Q=+1Ab-0H%GCanIyo*2r(6fQ1Kk@sP(tiiQ77JTmcE3Vf}RhpQ-i`P__kvyI)J
zsTT5D!222bEF37B-g9u)S39%LeeeBmgtDxYJIz8t3r|@nW}%RU!WN2HC~Dce)$vTU
zzqt0eoR_P<nGO@&xFxH&g%TD@S}0}lC=Ivyhl6fSEibRyr^{z{f26RH%UCFDp}U11
z7Rp&DZ-I+`8(OGfp(3aH6s5X_N|ycFd1WtGRbB;zR}swmwK3(-Sa{aLa~3|l?x<#A
z)I>KdB!)DgTYJR$yoIwXvR)ARi-J^m$->J?uH0zATxwXTX`z+{2P^f8JKcg)a$lae
z@rgNE!wxxJ7DnuHx-EDtD8lOsdIcGjVWD=C*AdbU`6<t|P*1$|1sf!FvMdze(u4|)
zEM!~AvC!B;YYS~GG_lasLURi(EHooo;&}L0RU+?3h%H6ZN`ih*QJPQ7Ao3R{PSmeh
z*tEvk*+N?j?JQ98s$hEyuL+^#bs?+n=aP4@(9yyhA}K$|&E=_`ED#ygMUtYhtA%dt
zmpN{xOzdf)mxYfkd~D&|AFkdO`dY{p{-%YunA#d=ADUUJ!q8VfbM>?Ao2vm91`2uG
zLVqFe2$q;=KmHH0FxbLW3m>peO7$LMVWNfiEu6Vm_gxD^Eex|T+`{K&vd0RNjIb~=
z$wvtpEjY%)+#y~nj1%vBNuBW)CL}p^CRsR|mP5_SNiszu?(E-~!fC>%3%<GEN#P6&
zGihKVnI%Xy7M0k%dDR6UIX<z#m509jxu3Ek{D`nJ{WHrxqk-fL3v(<ywvZ=|xfaq}
zH(6%kOAGTX%(t+>Lcehtd=b6SLYWfjPxvAWlq_Zn7M5C=Qprm%|03^NKv{0#D+>_|
zQ43#NSYcrgThhWx3#%+_wXn^?Y71*Dthcbi!V$N!)&d^{)=^%@+hUP2?U<KBKBR19
z7hBlOq>A)**39TW-rMJxcMC0WnZifEg9jUbV`006T}jCf3p=0ig36O83nG*HR?^?i
zk$cq3$G7h-{J_C`)El(0*TOyvehUE!{n5gH3qA{7DrBxGlDWaHs0?*0d}O9%u`A=5
z;)NMe<LC=1d?+C577PpARUl;H`jK+p`O5LI61MQ!LZ$4bt}zRyh4U6JSg<U_SzmT2
zhrb0zXYme7Ne)=}NhEwp&bI`IEc|TYFuRN`99E758s`n!HEOa%q4$`D;}%X>ILRp@
zkxI$07JdvV+roA^Pg(fQ!f6Y?TgWV^yq{(Z-*~F*8CH<Tx}8(bal#SK=Rr#N$TRDR
z_o9VMEP#c7Ed0UhP{FNSw{V4gq4KANYZk6rpeCQfIC=8@46FH<g-%UV3oldn<VF1(
z66+>Mx9XwyUkkS^+_P|>*22bdD+3y3+_iAW0?C{uwwDk7EC5q`z#(bj5r^s`<)LIs
z!YD@<*oEXnUrHQ%wmH+{C>Td-9Nd^OZ`>Za`QqTN%lQQh2==!eloX1ia2y}RF)fZF
zaTJZCNgPe%cq)!!ak%5~#8Ets5^+2m$8&L%jDsH;%f?YoNGT>Igu<tVl!^cE3w!xE
zDu|>i@BfoJRpO{5ymC^)&!YiHsxBY&pNWGXteF(zs1`?hQs?<NUWntxIQRu~l6>fV
zDGt6keL0Tro2T**HAbl}$~EGsDWsO5Bbh?0%<|48cg67}J0%XTQpkv-wgh?O|NGir
zCyu&tG)(Ge#?c_j>j|kZ$dv$DLY|blk??FmmM15U#=`IHu0n6KIGV>XB#w9EXc0%t
zI9`k6^*CC^(OT5n3ATx&ZQTAe|4Q7Ri1^}{oQ^5HnoOCy7POC}Lma*1cvFNO<LDGe
z=Q!R->fCpvc8Q~F96jRb8AmsfcNcuJfPo428gH+5AhCHe=&d;V2!AJzzCsw<KaO1C
z{gRTm<EY%gUUxyq9vP674-_&;aIheEgdWNo37;6pa5i!rW5hdBkSUB3^2=-8Mhju#
zDI6QeIPtz0$0$eYc;Pe^22Bvo^1mO)B;ow7P5I<FrigcH(g<1E>2b`6V{IJkBxq(F
zpTzO0@DJmd6~{-yn+$M%ETpew@mU<7$MK~|`iODPj^m3s=5X?lV__VNBxs)Ce8DG;
zxquxp0W8~M5iS#4693-^{iQ5MdMeL>VrhSMq%M!+t2n-nV?`XR{;sh)j+JqHX~Zgt
zMM5>YCrb#{B!%na*bs*iM<|YsacqiXR~+BQu~`&$#xZ+MQO4TBOyk%V$2TIUWV;X+
zZ-)@J>XY;rHYmTF^9Cmh4k%j7o+_+MxAatQF7ZPgdqp`A$3C%4M)8T{$2j&2p=7uu
zrN-g^KN3xNFm8Xp(3A2f#vG30P#izU5s4!jM=TCAj-N!wiX)!Ph{--lIUzv@1SvTv
z<VjM8Ia1;{A(O+AIF3qCXKA-%aU5rRisY6f^-0h2-#ShmCq?*VGC3W`?{RETU`GOH
z;y4?}fCL66a4wGXR7)TwfeUe5jN_j;{*B{O9Dl@tMULxnTxR>PbN<PpcTu?_{HkEd
z!F4F7yB5b^5=u@T#<~&5O^Htaw~*iO=iZ9rb{r3B59zKp^Bs5CYr5lJoO{MP?h59q
zn?lL`I395Nn(887T*CWb90TV$9|>|1<6|K=;7v^+ZvyoasGmT-1o9_PErI6~D3Cx}
z0u>XudZv281PUckDuL1oWL&CVIDw~x6cH>cNHqr06%%i9!4iTc1y{~$_;dmT^3*7k
zK-mPkU8w$ko!;dVxc*=DxsR%kJX^iI@aeM}R!D$e$}1&MSqe}kfoFwO6=Yt|hz<$e
zb0UP`m{XZAB=BMao&=NxnCVM`=?T1?K=lM_h_{wtO~Hqks#DD&yv=2sJB7Oh>2*t9
zBrKIzcwN>gf!Yb&xlp~1)TP&Jo~Gj~&`X_6Hr+Y9U=0$;O5pVb+9%LZBDPGRRRWC?
z$W9<fB-C%3Kx5%e1TW>OL1D9GX!8VGBzdXDb{SeH&@L%yBjgpqwh6HHsPJks^tA+@
zG*pKKI*PDY0&gVHi3Ph*y}L*{C(tE<uF@%tduEQOTLR-A*_{%*WMdCe?kUJvEMD&f
z-b~=F1o|Y<KY=gKR%gC_6QFWGDMPMc*|}Zc79m@MLGOqrmB|Ms>?43@Brr39!3lda
zu^|b(o50WnP9AMMf(1)pnDF6(&L(ckM<p<t$}C<2V?_RFhJDAvAnxW`uAKM11STgi
zC4un?Oh{m20`Dg<iH+Z;sMV<Fo&U$wcR)!|d|z)OXIL^4E|Pb4XLoj4U|HBDOU^k7
zi-4dYSwON%Py~q*B#ROR0TDrxfGEm#&vZ{uPv}8KGKe6862IGTzxkd2Id$&2_3Bl6
z^{S?)L)GJ)bG2N=y?^w(biUBsT+FYSIxiRH=cbi-l2fbsp!vDDxF>soAjz@k{oc>T
z!d!fsi%q#$l*<?O@o_Fz<YGxKKFGz=TztgT#F!5`cW&5soB5Qs($K_Ho>=l_xmccS
zH?Ql>*b@Il6)GOHG8e0Iu{IZ<h<vr+8VbkN|D|btYR-Qay)GB)bFncOKaGezG_E{_
z{DOW%u6-^l$(CRg4{o4vb1t^!Vmn<_3ZY~xvox@)+mVaUa<MlT{QP`pE<Vr2ZsCl6
zA!L`7#wZIUGVIB<7hV!3eVL1WqBgI2G9?FcaWEH9P*cI7Tzs92zjARe7l&DIE-Wq-
zGaN@acHFlu7w2;Aw^+XwJerGRLMZu8$njj95OPxRR3!CuF20ZOGr8z<DTP^n$i?|w
zxO3sj#gFV72PGG|xp?D4T*$@G)Tf7hY=89h)ybp>^<5175>3gqH%VYnIq3=~lF+u?
z5<$y_o(nS<{#<@sob1hokqe(FH#zH^wlmT7Sz^8B35_-;a%bQ`E`s!~Tnt#A#uA7$
z{^fTa+|)Fji%Yrqm5YBa{*=D|E_hpzrnsDoKZIWqyefE2@Vej)!JC4&1o;!gj0|^j
z!3$K9yCNs)->Aa<T>Q;tP{B(I9&oMxJtd!luXZ~B$;CsiKe_lf7teF?A{YPV;&CpX
zQrIi&ZmY~ExhR;Fbtu=lrgHY+q^#OQ`#;M?e5Xv3C<W09Vig>mS+LEt!Ck6mmu-<9
zqoCywXN{hjaSCcY$@!|>kew~F^D8KzprC?63Q8&{rJ%6Fv)VD~NltMEMI{tdP;Gq{
zL)McVV!tOjB}CzaCpn)z$tkU%4DawOs3>aj3d$-dryx(c(d{fge=o1#`tWSZyWh?_
z_avv1g33|?Q&~d$N?9aT72Ig+;)!EFv~jg-oLNmlbp@Bpw5TCC@le*t!&xsYsHI@8
zf_VyRE2yKOuY!IG>ME$GAX7mz1@#p)P>`x1O+kVJhk|4UDGCzV({s^D3Y-ddUrXYa
z^4#r*d%N-T(raU#{l6;2;M$VqQb6SAt_>BWD`>2siGoIoecQQ2?Py|=W-cN_hJvOF
z-g4Q(O92PN;a1M(?6`ss3OXvtR?tF0TLtZCc?GQ$v{ulDgL}onBis1#nxjtBmlIqY
z`HuFvlyg^-Us2FrLI2UwJY0!)VvFCi_agr7NlqsPooPA+Jrs0N?1N^yD(I%zJ0_7c
z)cerE@ZxV*PX)ac^j6SE!PT#v6~0YoUGEmD&+48($(eH|v&z$){t5;tcvHbR1p^ff
zQZPcnYYGM{_Sa`a6}(CdjLbJg0iO(pdp94ZV7P)D4(pX1D)0;o27U{6YN7ox=|}~m
z6pU5u8-}A5ysp>_)EH5|(Jbp}VaL7cuD9<vctq(N3U;oG{;^CV@6(Q_-4sk$FoO=3
z5IsS`WQA|SV<Npm!Pef+)<4^CdhmPFsqC+UCkvzArVHJ4v^wvY`m23v7{46kNm4WE
z2Hy;vrC_##cNF_`Jib}VBkiVENlZ*nWthWd?TUkI?|cOd6zoy3m;F-ko`RJMRw;O2
z!9oSg=>J*y7AaV)-~$C8Dp<nS9<e`|<?%zrGiElwVO*-<Bk5rL6xWoyNo>QZ8uiC5
z8@OD-#|l=^A&(>#Rvd#Sw_ujl3f3sttYC|RwF*8_utC8_1?yPFddGTlf4wD-Qn;lO
zqdcfZtseg=?R+w2lLBtCL|-CjkG3k<rr>i0UntnFU<VyockGnTenw|I-*QXcCd;-s
zca%z`7jZ;*WK7xW(Yxs63Pv|e<4xw~n*HV7mkRbN_))=63ii_p6&zFe#TgE8l~8b)
z{o?ws;A@84Q77V@{63T|q<3+j?IQ}lm5v|fba<Lm?3JuCTV4DlaMm2hmj{xLD>$Lx
zdj)3{oK$d1!D&(Ejp(c8TY6rz_x$9ykWmYg&nh^l;0Fcg>4E-wn+DihTTH&<{CVUc
zo>0S27awJ1UQqC}0!@L=Ni;V77g|GsqHv$I%!^#3PPmjaE>(eBfrle_D{589+2npw
zt9h=$PjeVppjUw*4e%@Q(f)y=#~T$e74THeawnZz4>{L-ks44CR1mOI_=)J1ZyKLz
z;tVUeMEkoj!i`@Q{Ki#9MLiY2bN%6}sG^99KNMV1@GsZ5D#=%+3xCm7CS_maI<r0b
zI#)0SH#rxcC*M+VTfvvNqsSQ^)r!8O;7@v>*IA`*@?8bLdz}v}w;J}Y>z<TwpB)tP
zK=7f0e}u4bJ{=}Lk|?i&{!{Q+0bRPpu9PPVo+@~z;5pZD6@^s1P!Oe};oYPHDxy`y
zsK}=xzlvBDe4rMm;;m3}kFQ#iFFWNVpH#tVUP@-*If;&jPCnU5y6E_(moxajgGohI
z6jM=AMI{x*Rg_RsR<$R1Nx{;Br35K-eIHXM!sCVHYi++OSx$I)!3u%}=Gm80l~q(%
zQ9~qE1YZ)YDp*ZL&EBbB{gn)f))Hi{nkt_{I$l<Bbgo@UZIRaz<Ok+MwCMUO8mOq?
zMnyLgR5(;@RPm{bL={QQt73!-r;2119aVHvk)pz-B3nfZ6{#xHR5Vl3T*WWG$_?4^
z*9y9hIMP+<erF>=lEx~UM0kdfrYbTclFd0WS<;^A&y&CNCvPf}+_Sy2rHWQ6+NpR&
zMQar$54C8cqOA%lkTY->Xa?^7+FnHm6?G~{NB4~8_iIJ_I*)&3Uo&)8d7?4;sOYPr
ztBP(adaCF#*)em!vpb23v(HkdKg}84z!k2XTqoAqOGR%Lm-02El}0pAre;4C{Z$NB
zF@*M6nmRzmKox^j^tzwKy&V`H)EvyPdbM+?idR((Q!!k{8?U4lT5M0@M)Q-8ZcSRT
zKe<Bn<TGOizoufOiWw?qsu-nWw2Db8CaZW|#TdGoiU}&lGP{a5Rg6=y^|0f@80YE-
z&d;x<%)XF3o(5^28T!jX-gT+7)4x#@S?Oj+`q|jB9r~Z$<y`eNhj+K8sF*6ooTlP!
z71LGJn(0U>(67dEM~&La+_H(U^1h>DmWm}RK2R}R#T*q2RJ^NVu8Mgy=98%TDsIek
z9_pIOM=F)(Iga0V@Vsmu7x<ov{ZDh=S5Y)JaeG%M`9c+oM7UUxlI0!JK2)((#d2xJ
zN1RP^Ew@Ysv+zg%;?tb1Q|t{xK31`U9Y4#>XKY+0xLT0WHA2>^_(a7z;p+uAsAzoF
zL50h^l8BpBY*yh@VXD|dqp3Kq;)IHAtWL!jDt4*Zq2e<YJEc97=0>+4ZNJ?;t!ci`
zReaPm-`PXijP6#kN5v5p->UfDSD>*KwU;Y^ihU}^H)zTOiM~AKAlWa`uLKVW9#nBi
z$k&30S&NXgn6#q}oy@ZChuEVkj?s15nD)-APjkL5YIpymGFjDXG&!l_l!^-~epYds
zRjW9s;s+J0nq{4#i>fF+HkxXC);k#Zr5iJzSMj5YpH$2rVL!Eud6pAs=)AJt8C^8(
z7Zn#(cvNUAa#biQR26O&Jcw{c6&^;Jocp(PLUk7}<XFz41A}>Rn6C0>DGd6<qm;9n
zJ<6Zlc5wR<62FRoin}WQQV~=U;@Ym_vI>i{>3qs16~Br}!yJMt$;(bSM$E8Z9{!C(
z*4N25lZk(@YWk9jn<}oVxF-77MS<s>GVq1ZX7!vrhxe9>+bZs;_)~OVdY0pFk-Vr-
z;`@(NHrGq$sY84l`JRgVDhj(%#BIOB{I`mKR6JB|{($4VGl`S#k&1u0994=b<i_dG
zlIkvX@Lv6YDjus?^U%TYg!(F;N%T1veE0vCzYs~38_^P|+4j}sSU2KCA)jCY!Tf@J
z3%6i|P`UB599|?Bb)%RYrQ9g(MsYVvxKYxLhaIAOKFb;PQS!KFIo^_~1zsfaN?`P;
z=rV4^yHVE7Qyo)z1|LH?H_o@VeWSb^@03hsDCtS5<VIyT>bOzYjVf-u<VFp*{Y6`;
zC(f!Q=abU1n|wXTRm}~3j;p%hH)*MGqo%06ELdBxmKzP{*_+QF9iB$4=SF=u65U90
z+XI^LQfdP?@8G2*xN&uN)}K+S4mXHz49|4Bk?cluH?rJFal_?CBR3kmaWW<~m1Vl^
zk5JOwIOudSyiv%-Xu2EMx@D6zaU;WxGlq*hw?BH(xTzbNZjdxwnN4J9=EhsCnv99f
z&Za2}xmvl=+Km=&v~*+c!PJGfTysA!Pk9?R+PcxpjoxmwbK?~^y13ERji?o__JSP*
z_a`^$D1`D(Zgh_D+Fzu06W*Pc$;UGj)9w{?^$^}ukV2lH(ud>qZq^_-2D{PMjeZjC
z@5X2OT?5?syLl6)4s_$P?qDDvB4xhH_ROll8i%^^`c)UnFgNDMxfq5EN%Og0b7Le&
z+=H?njB<m&J6qh?O2RB|jB#Vxz|@b3Zj5!~4L9C&V;u9kvA~V-Ztzr>32yK_skhu%
zOh-DFN}TA%B#A!SlQ`LJUujHnW2zg|gwJqerjWPYm@cIEbNd?L9pSSDX9-f+UXtcW
zbgmooSkABZ|Ec69(eHBfYo;xAgI_zoC!Epu-B>7mQAD!XjU{drs-DTz58U`r<W0J?
zV3c8UR`PN;K6Ych8ynnM;l@fgK5=868>`s72d+>cX^k7Jg)@4-eF`OO>0^I5Nv;=5
z=^9SyAD{fu9Op(icmejQ8=KtNH^KFCuS^CeZKfw*ba>jk#vE~Nb7MP)$&Ekg()nDK
zRwnP@AhHW?eD20MH-2#A3r-3*4!QBQ8@t`u!_wT?PoMER_Hv@-tN*1NJs&0UIP4*H
zGdSE|xp9C_?zaDrFnYU?gPMGWhMbbalJQ$Nj?#v19Fb^3fd&kpKg&7h#&>QUcjJV}
zc`!tW5)BW%<YZtWC*7F6E8!HEEH}Ovg|mW8I>SM~QJ;i?<h&a{y5V;t;KomGTyR6<
zly~E2H-2%$Be_@<l`p!HD^bM_w-8mZ_)WXCRw;?ZdT-gad)+YH@X@NG@OXX$2Fe-u
zcP22zal3!xAe-Sv*o{kWSZ;8qdZuO`ux(XuPNQGBPTs8l8%<41TJ{;}3{3jHQR?i^
zldf<sk4}p6AliegTo&B8E|PnKHw3A0(~VogZ$~6|g#78oT_Jx(<nQWL?sGD_@gO33
z;>JJ1A4VjPg#0V`pWtJzqFrKG(Nl>&6J+$ckQZ(Yc#_0ujK^+m5y4nNM&pF!^B{jj
zQb0&S!9pGs7P8A(h{{DHI>kIF9^oZ~l=PsKkkS!(86n)9r<}*W1N^cFwLB>AL9=T~
z6+HGvD-}Jc<UwT*s(4VtWA7aGk_RKoC06sG_3Esu!YeE<KnX*2iMkVAeWH@#K}`=x
z7;ctpSlfd-9(4AgiwAW*sOLdr51M#T-(#;ENgg<bH1Ht71BVBR9=v$1;NV{N%~hYz
zG4**$vIi+1q>Gx%gH#XFJoxf)a<lgbQiq{NOyP!XxkSf5O>M-&??j#cHR^+V<uW{I
zDjC~(kVzd6TCn3DG#6pEV3r5f21mE~*e*>w*@Agnv5%6}R&Zh4Xr4OMhRyrMu5MJ<
z{=`>2XzxJ>4<^nW)QPn`Pw6O}Nt7HPUXYTm9(41dp9lRt=<Y!enneoi=|L|KdP|$n
zOiF(9^=Q)-&Gs{#d6q-$>j8Vpq8J8v@Tv#HJQ(P~AP)w6Foe<XZ2JUmlp_umP1<Ty
zzLvv1$nju|2V*%R97nGC9*p*2``8$xLeY^PFmRdTOKZ${eQXTL>mFFoaww$a4G;d@
zHt<a;u<nq;+zM};2Sg@KVDDI_7q59S$%Dx(R>$i)rg$*bgQ7Z$>6qr>#!65<aC<P_
zgBc#I@L;6}Gd+06!`oSoxgPsGBi^r=#Q|O7;5M7HJ^Z}OF-MU9Oy_wp--87n%o&CE
zJy__$yB@sf0Y8Z5DaqW-oX60UEb?Hn$KJn}fzc%%eBi-{9{c$_ceCd$bdseK{YY?`
z2g^P9SUB$mE#S=u)w#-p)gEl4aiqU%I1xPH*%oU(;Mr2_@+Tgg-=0)<TJn04ZxE!y
zMh`v}zDaO%M83s?tr7m@S<Vg*KJ(z12j6+H(}T}F*zdtt9(>`!E)Vw7hdtQs0UNx>
zV{huno7-K~q%YT`@z(eHDUJ!pQ}%gqc3aX*_j4|LQx14=(1Wi%ILtXxJLSi_Nr&iE
zUT1y9$qk3U@!*ID-+FMAQ>>U>)Z~?E&qFOL4oc?gZQnL`XCC+91bgJcj~<-#;FJev
zSiT3RJ@_rX!uNu_%^t4rqCWAQ2R~3by~5qb6(~8L?xHYtXyQ*ET=3u*4=#G}vxIZ*
z^7qp#@IF89)8;ZYy@KMg@Bi~o5s`so<nch`I;Nw54xIzRHA+JX4KFu|HazfoV0v(K
zQx-S(`!g}w??H%eNpDO{4hRMXqi^*cRwO0t!LMvBCzLbu5+_BalnI411J?`w?!j|T
zjUp+RCFu_ju1NH%2iH8fF1&vKsyA4X@c%rx<-u+Gq(tus-WU9n<0#}W5AJzDWU(6y
z+JS`O?}+dp4<35(NE9gl_y6Q#^l?P~#Dk|1{)~%Q;Y_B!5J{AVXbmx%T}45`Siv~K
ze1c5Muc1JM?`mjgFC@{z8j1)h8c8jt**2j<Ne!hme6HaO4W%`d(J)oRG!5|@%4%q<
zp`C_u8p>-((%{rkK|@6iwKe<Xf=U`HYpAZFhK7DEVybBNVFcAQyriM3W*@=8PcV2G
z0r#q<{83s3XsF52)KE(UkGJr;lFM|o&&c4O*gKDxpLDc5_tUGRp{|B{QdELqeZdBT
zROU$y4h@MKc&I^Ml$iXZ!$u7$8eAGuH8j)ETtk|Mh8h}cXrkfw?3i>7jiem5ip^t|
zg)L$-MAB44rUuF>jES7xkQdF;&{9Jy4cQu6XvjM%f@;UQ#<bSZM#HQY|Gy=9NyJw)
zwAb*OhLIZR@EtUC)6kt2Y3Rhpyb{-0LsXlXE*jD$FRjs4!{BN5KcF5OdTJP=VW@^)
z8hX>V8v1MKBkk-f$l6&8o5wIf!$6KEvrAH5o0*!|m^{r_Iqn*U(`XtdNR6*&$7E#3
zj9@d0xW1HLvuYj{F-pT|*1p0uMZ@bF#?XcjUE?*3)$oRtKTgA&8u+eDofa`YJI2%<
zZSR{sJ6N6$@D>Z#Fj2G5iI^lM^BEblvx>=54hfsbhP|y}x`t0QtkW<<!%PheH7wHb
zj+l48R5VM&Yz=dS&($z5Vk>S7&jwd)X}@o?K*PKArBz8Rnc+PR??<8(E|$E@G%RO>
zH5gMIA87bcv)?h}5G>X35iPtuiRCcF)VE9cSi=epD<h-4N=jI*VU5_0KC@ONp$;+a
zI@+(<a5MJxn*A&MnTDN0HfY$W;ZqHpG;G$eRl_#PvgQBy33G8=HnoY_u3?9G9nC`H
z6FIGz#0Q;eB^vJ1uv^1j4S#9aqhYTGj|NS{mm2nIIIrPH4f{2GrQxWCV;T-<_Bkoc
zeo(`zHnvY5(zvrd4zpnzj%fH+TJnE=gEi)b?=&3Oa9YFnqH{vSNg;Xuc}h47jB62d
zCc@7NIUAWZO#LCkX^@}T+67LU=z@lyMe`R8xf&D=7b7L)O<`4oTO@^A+HGcF3v~@%
z4VN|iL83Yh4VSo5J<suJFlBW78iE=^EUk4+Km$KBxpTC<C6nmRF@$Agx$^LA8g}qk
z4Zmr))jH<)$jDASTApoV;L>qL!&ME}G+d{Sbm4}yr(egIo3gTT9XlW^)ol%TH2g_#
zY!l<pjyY4kF#VsNb5Fy4Iv#yq$KR6ok%oUY`$g*q68%T;p@y3sVs^ET;rwDZX{G-(
zJl60;!&54A1aH)TF8E<?6a%B<(<^XQWILmEd#c9h_SWTV(o;s(bH(cR=|6Eg_NK(-
z(~%k|&n2bkNk>85J`uod8&^oTFNz8ak`&P~<6<mHvk9)^Ix6a@q@#omMoS8kloC=}
zu#Ap)A!Q?}<#d#f@CrhHDcYp6jw(6^=oqNuB^_0DG}6&nM>QSQbtLNc*$OpuTzqd}
zO&u@mfbc?vD^tS%g9VG%ucf25jygK(>S&-NK}S6unfF`Pr*L@|$)EdN`}?#=o{-9@
zYiOoJ$Ld%oqZB6Tc=C<IsUulOif+%uz5NUKDqvswx@Z%Tkf#Z0D3~tT^g&b;9T_@u
z8l`mA(UdjnXrsgZUlzZYIn^b*nU3Z<vP3ysM+-LcxxGL6t(vKs@5Z#$(Mm^a9c^2u
zm95pU#q%5@d0QRrTBfxVd_|Cl?zPv^Ay3{it)q}mIyy%rU4%G?WOdW=bWT!t-JUo-
z1bYhh66`J5N3gG8Kf(Tj%+lpyl|ef0?;AXfgL@}su#TT@I2eWq8LHz|A#cu0rI2dF
z*>@cyB+F|$M)5*@vSTENbweUk*;7WjTjLlVV|7&aqKX%9=y;QAI;QIOP8Z{JOw=(+
z_;?*}37Me7QKi0lw_cYkvCe$4RGTbvk_Fe(rs;TF$Im)`(J`G4sq=GYY}GMS$2&Tf
z>i9^<EFH6TysP6q9dmTd)xo{X7U-C#V?IaZioKN?zhC%vRZ_p_IgB=(4etWH&oMgF
za<PsjIu`0!#L>)19`r1!%RL9>AF!x~sSF?Lh?}2A!UwX4larU}SgvD@j<q^I*0Dmz
zN*$}{`E8<k&vsTDdk+%^-08Pk$Ae{#af6c2v`_v-$2uJwb$lwq^*T1__JOT@4#NB1
zrysk>58sO7!{1FhHtXQ?<)IC;D)?HksBJp7>o}t0TOB*tHO^>GVI4ble6C|RE$pxN
z1wCQ;K!#m9M!)0ORxFvEdA&_ynEIuTeL4>4IH+SkC;LtZ!&j1#n@&&clRW#I%tM@a
zIu6r&b-w!LSh~u=2XNdK=USP>B^&L1UkjXb9My45#~B@Gb$qAexQ^58l)v5y9lM(5
zJE`LoFU4=#yHE2W>9w<tQiqcG;PrdaA))3u9Y5&!k$y#s#l>!TyTExJk9tP)qzSHC
z7j$qNZH84_oqU#kE4s-=9l1LG)A3k`qC?eryApqJ($R-?_;mzm{H;z+hgXNee*x?i
zp9^nws;N$&4wIej5?yIy^ykm*4Vk$T(#}C0Asv@={K`RZn~&R}TROtD+myzMCsW>h
zZ(zB?&3@DIJEv-*y${TWvWY}?iblAi<EoB7b==i)O~-W|H+0<Ove3d_oSXD5z=zbg
zbQGLX^tO&Wy8X=B70$`qii8$;#gp=vj(hY09skHe(Pw?uef|XKAmQh$HDA~tTRoJd
zM>_tc1OMQd_&kTk<O3Im-ybGD;aKY^>_rhTo^htoKfTE3#S1R@UV9g>STCZzShOfA
zMxr$P!#C|cv6;k>J*skkuf5rFK`+|&Z&5%vQzv9QDJ<m0#kO`&i+WMai}GGn@S?aE
zCA=u(MZ6a!y(r~HX)mtN$;a&c#hG*}h4)wal!VU*Cl-q?>qYLw=yG19o^njz;pFzS
zWlJ^Y9f{1{Nfo`Q#ARV<{?)hZ-F{w$;UzDsdeOp*mR?lzqPo{!kdp*!cu_|P1Z#Tn
zvXEL{jH(k;Tlj>2(bwDC51Q+GQO}F|UNrC`QIZk_9fHaaF?=^8?{$t(dltNR-hPG8
z=|!@nrg-6EYrPl~J0x8sX<jt+Lb;tfx{Do18hO!J6i(MjZ6Zk&W(a92m?_vyu(=mm
zLa381geAA~qP3TA#yW?1(T0}yVr5(B)zyx6UcBN(Z!h|I(cX&=UfgW!?BPX6ul?iR
z*^4e-bP~>&XDDIdo+@2AvR?bElkQ%7yM}2$xK@1Mg2=o*rG#Eyc<wqF?dwH9FFsi4
z7|1HNILaMy^q1%WFL<~%<+TpjILM2^BF~GmokP8NRT@k_%!}c|a|EM{G^TJQ2f~XV
z4g6$av=^^?VS3@GmAn|s`#D}r=KAkNqr|xF&vPbv@unB!ym*>CU_4V7r7U@#^Oi&>
z2>zHnfJxNc6PrB6i>Y25_2QTp)7VWfwtKO|i|JnbOqqAQn8n^5cFy2f|Kpq~$m`hI
zUd-`go7X<K=*KP2xn3+`kJ!R3&Uu3Ky;vaRUBUMR-xpjcxJZ!ti-quwix0h6zoa}R
zt3|TZi;sjX6I?F%u@?n4B(4x#Dahz5A*Y|`j5m|lctKq2#fn#xKk;InMAv(<LC8ig
z=8j6=;>D+4Y!b<nQL&qauwG_tdU5bpFY+Yx+fQz%@<Zkt`;$NO%3GjbeD1{;UhMMX
zOE313Z%=*qTFh=QUpT>DFM@kg$Fy***^|nkKF`_j#aCV&rk~TPyf`TO^RLAm62iRX
zUq?7!Lt-wLaKwvmIpt@kk#ldQKc44&=f!c3f)^>>vrl+&(rZ6B%k|=v7pJ}Wh2*a5
zdoRwAY)`%5#aS=T(Oh2Cj&uDW$a2oJUsqx%ArFj9Bl$^^DEyi0&%xA#S7L}4z2J$f
z+;@&hO@&UlKUMX@O|P41=c0}#8FeqbUKsS2lc|)mYM;o-wMN+iT7#>Zff5EnURYkl
z7>G3x_TrKkzurx`CDZ>`u3%SEu6psCm+$J}vKN1_@d>UgUi|kwXF`XRKkxUgTBz~R
zWd(Su_%)iviyM-qV~<2;yeXW7Z|~gp;*J-8vV?pM{$(%zO1UeX(ZA@Z!tV?I9g#oq
z;-3hA=*6Q5x8MJfk{`4CPUjOrlBYtRdGTDxi-<hRK(t|NGO#i8O4g4vP}D#%1NjW(
zH{eT7DPW+m5b}Zs3JITnuO6dCBJx_FrSWF|rhLh~?j<Q{pp=2v42(2T+CUit%?)H3
zh&NEyKz#!Z43sla-as`2)eTfI>?OUDfyxFd8sPgdzyFv*tYYAUaLP*ts&XuzI>{N*
z+$r6y7Syj{00wFqsBPfLy6Bp$^hM6g1|FAcLUQP{?2)IF>lmnOfQL=jlPV}|@FIs%
zB6osHFyJtdZlIBYL<30%Tn17N?A-~cfn)<I239UiZge}j<z@SV?MTReu`ta*Lj#9D
zcJ9#n^1P(g&yxOLlE!FbgRe%XWEf~_poxKV*X@UoIWw~|4IF3`(~Mc#CKT)LeEF>X
zg5s)n3E2i(80cl7w}F-hS{dkQpp${t2HF^CYoMKE;W-6n;n;2avR+|NXE@p$=wN_R
zay~90NeE=}6~4{}x)|tYpu2&t2DDN3(IllOMISq!{HR`P4_cM>`6ud7r~p@n)A{Vv
z<)V_(`WWbIV6cH92KpITl+vodfdK{vePI9DDd5d)aW!fnqx1^@KpqvUK256jb<)HF
z&4wCy)xa<V<TW?Bh8xH+aQ{Qc2m_4%{Z>mJBjTOvpoAGmaq%~>)4=BjUN<ntz+40K
z42(7KhJncjrWknBK=I?Qw+u`$FwVeuY8Fkrv%tw)(3kIL_bMGT(ZHTT1t!rs6SI#t
zO}Vqkaiy?xs)1<+-Z3!Cz}p6<8<=5WreVKL#Cx{Y-*f!7#=fe#66TpHDbE)>7-k!o
zBhEnnm$xrZMfsO6-Wyn8V6}lY2HrLBo`EIwJp=C>{6Z6p3@qj>=%4)RvNXO^ROWm8
ztNc*0L_QY0si)>1bbM%Fm6S=NEj93w@MVI_1wW3YuAoN=Ps+5f8=04Hp{zCViGhs<
zKIPzEiCSl1y@3s!nC~RFe3A3V{=rSVBy%tHffG|V8Q5%K3p+?>*x`)I&K|iSwcTUa
zcRQThSn`XcZbs5}n)gsL!w&k@QpaZ;rqM}^eqmsjfujbF8Q4u@8aQa+5WU^Nmj?E;
z0seYrev9HI&^`kNd@i2NoqR3jD|#=D^R9ipx9;`E!|Nq~O}FHX%j*&6Y!O%8dr>K?
zvi`i3N>1`EC(f#@f}c9RGjN<U`cmo{11Aieq_<pkoHn?7Pwcjp_Fs}y9Cv@cDwR{e
zH?a0WU#9-t(nbBVlIxs-9}Ju~pkGU-kb&d^vvZP~NHg(^fr|#xd}!!Ht^visO#`<K
zsO-_K<Pd%1ZnB%x>c3PEr^eeZjSUMY>w;c(p|6v{5aKgn3h_te0Rutd^S+Fsn#E$n
zPKL07OA-F7klzgaF66S{AA(l|uL@o>a9v219Z4+VhH$p+HkT%@iawO};ZMUpwIs%8
zKV7=ZmBhe3PACKa8u-t^-v%BS_{YFQ10zz>K6kr5Tk9fW7`D>&NQB&QDLcdUm~NBm
zit-`ahbIP}a=l&Udd3Ozs3pmBiM|lzH^r3jBpv2rU{SF?#QE@in=79WC44C9Lw+A-
zp?m=!3i|AqKnnR#ObB^lABseHQ6b%%H=(?^kN=5WB(;*8@O$J^K9u$$t$?d!e%H3P
zt};Fz7Lz)a2M0fITF!@hKJaWKKEWyPv%lA<AXrhbk`I-AsN%!ut&W!jYx+=C2qo2g
zs4l#QAR=<!hGpu@KGcdxYWq+p!t45Qv`z{Y>ifWx<s0~r;DbYWiXerFLXvzu@gc=2
zJX!G77dftoPO1;>PTObGr~B+*E{04W8VPSK*hDZxu&LnBrv18jGas7!kmW<R550Wo
zElDkCF&5}UOCMVK(AtMK9EFr72{nf>i+(J7zt5>$DF2EN?S1ItLsuU<_|VbEQ)RO{
z`@k(Yre_W6<bzo@b^mWIYyH*eQH9hz-i?;@p@$DsU*u5jkFhO&tB~5$2kL+DB8SR-
zXn$JOL^TureCY4PNgq!6Fu;d_J}hSyJ`D0<FiY@Znh!&K80y1VAKvicRUh_;>b>T}
zNFRpzFx-b62_r;KH)bjW$tc?2hu3`=<3nC5k%9VoNS!x*80W)8A13)Q-iNn*m=Gy2
zubezhauVWXAEt;xUPTnX&3^gtt`G0|FvEwLKFsl9t`G0fhkckWxtKApk$F`!I#1;D
zeOMsmf2kx)ecy+LK78QAhdwOwVX+TOM9%6M@(LlL=29O%60%G%ubezJ;tC&D`moc7
z&wW_s!)hNk`tYe}uJK{551&LVv(AV0BHs{^u<*Qc*waluY?jpRK5P-P)rW1O`9C}4
zwP%M9pNX8&yuN%v@Acu34`2JR+lM{O?!#9;?DgSGDQcf!UZ+@TUcCo=I2dUOtN35)
zVY)77lMlxv*Ac;QBbs?NvV`w^IPSxVNE_G~7Lr%aX&+xb#a$o%^5KjRXX(H`_<cC%
z!w)_vKBzvN_u)q$e)jQoYy1=`<bo8!qVifuyvX%G()c_(umNr#JU)0uP94n$Ju+l@
z8CinigD+BAUYi3x1bw*T!&M(YMTF(UZ$A7kg@k>$<ioF#da2J6h<O<=i~NsBG_QHr
ze7NqzEgx=6>J1-m3Sk5CauM%{<j;tl8S{$0=fi!jz$OZq_}hmEK0M}<?!!MmJQSV(
zB+Dbge<Stg**33(PkngC9|99GCZ3Dh3m>A)|KH~SRm3c@CgM!np7~6BfY_@4HIKrA
zCJLD-V<O%}VG~76lrT}!L{SsPOcak4$Slm8S1fZel#((_n|6;F%}Xk4qMV6}CMuaI
zZ=ymZH81b~)GC{(V&Ww!Aul`2&nuz2i5ezqnW$|7CTg0<x9z2uO<e9B$FG@|Jg?Ze
zUc#4uIQDmnsbiw9iDVNgCYV&u#6njh|9XG=BB#EIVU_AP5KItsm`D^td6EgI@b@a#
zXS95_Yi;>N7lrK;cm@`?c5ldDR7vh@+HW?dn`mUBF|AS8*~CPKi3?*~{9S8mBGW{7
zHt&+-a$#396CG(@wzIISxrr<j*(O>@l#+HPS_*F!k+e3^Cc@ha=@&?)<}1S63wAIu
zG43S_r>=H(HqpgIR}<tD8dV^6Gr>T@U`E&PVWOvr2fZuzV%`g`J|=pb;33Gf4!dqC
zDFepF@GC9H+zS0n^fxiU#6S~+Ow2Jc*Ti5GLrhFybtZ<Ic$I_Bfuo5`@DrQoTIO&Q
z`bG!eA(=Wp``~QXYbHjrk9(8Gn;2!{+ZQ=qvt4h{T&Df@`|E;Z1jh<e$ag&66h7|%
z%1!$o7d}a2>Le4BO-wg2!^9N!%fvJjZ=2xzA-uJCqk)T`%Z>XoyIh&9k3UV!+>|)e
z#5*QtnV8LPR!ZSR^A9#BvNY=R-Iap%?ANyEnV4_lBNNL^ETEH^SY%?ciT6zK)s*+?
zFecb3YBG>8Tt$;5CO$Cnp^2qZJ0+B}3Kq*}VMOxfCO$T?+Qb?YD@?4Uq39Ut6`1-z
zWvcPz!?mXUCd?-$cDIb-Q#P7{-?6gH4JJ04So;W{Ji@0YHksIV9ow&CvxzMxj$FdG
zm#~#W`d$c4LfCF%2Yn`hwgG%*Vkd3o#|%F{H}M5~;YYe3yI6~fzf9aSv4`W>Bk^k!
zhfVA?@ui7&R~zo*u$D{QFWgzOHThQ@0uu*m_9+R6O#Ig=e%XqsR^MbY`VE_5LNTFo
zh)o<dan{5+6UR(^XX2EJ(<YA7o$@6-8J2j0?)Q3JhO6gE6F<f$HcZXXU*vqx+HZBg
zJ1OG~SCuo>`FEhs-s*gv@(0Ov!Nkud&QssSPaL572~@cAB8M**?VH@8LNJQW`^CgX
zj;{%BuvVyZ{AVR&sZ+Uqg4=}0M973?LZfq<@R=~V8gx(eni#hv%C|nrFj0MJRHX??
zW>mw?YZCn?cqcz#qF3*dY%?1fq?J5237fcN;;M;jCVu63(MlcS|DeNki2vP0vv%>9
zO*BbKWYr9BwdwI$_4q3$cteKK>n3iPxMSi^6E{uVGU09?f19S8(eP4s(+evTvt}l+
z@lV(FE>b@BF4YdlcB>inenp3wlz5+uzlnl=6!PPNiGR45_>td_hbA7Gi1s7Kk2>8G
z|K-}!Bk{3m^Z)2_sb#)Bmj1-VQxi=aq%VA$@0p3Rzr|DMx#+wQjFP-mj`gGIYi;BF
zxbI452{$G-A+BBAXXWt91^nQ3?(1_)oxGk&!V(JmQOu9xe!IpZeiW^jUeu38yNfYP
z2|r5uQP+=pew6Z~v>(;{sP0D@si?eQykJ>DW+}&_`V?bP6(W*~epC`(S*oZa{3XGv
zf^1j?N6#95z>k`Kl!zKJrf2NKy6L-J=_D-bWj|_(Cd;qw$Gb!0>iDtvalUr5V(W`M
zA(Glas#rEO&JmF$`jI5uDVQvn5=nIlNfk^J?AklFkspoy=;lXvKbrWF;YWKvI?$wk
zWco2CI;piE&HQNYM=L*;R%%E|mLDzrxX~slTNL(GZm6_v&S*<N5~4;l`lSNZ>Xwde
z<40RR+KJ99ek`BVvn4wlowWV^KI9$!=;TKi4p6I}6keH~!4f)CIKC|jLsvhJh8mId
z;Gn!;D#woze)ROCmmj_T=;Ox#KL+~Im#f5-1cv^8^b_80NK~Grz>XS&L^9NmSA`7b
z;0}%&BD~4MgkciBJw0JKheNe<{X8dO?~th1M1j$_{21xSC_hH~@wy1#@MFl~3S;~j
zms0BE*b-w!crUum;`yB27)MKXFOygMct09uCqDTwVS*nMMQxHFQ~a3f$JKHLCi|h!
zx0^l9kGCbYOuYhZL+qveY$4?{{dkA&5kScRX8AGOk6-+_=*JvC=KAraAN%|`;!2!H
z5AowY;qwI-_)%j^6DBdd@5i-H>5KhXC`pS16Khmv(h@&D@Z&>{sR;M_@sS_P{MbQd
z$-7+SpZf8!A1nM=DN$zpM93;XRts4pxHghH>A(EcS?9-kk!%p$C|G7_DJC&&lIUhX
zwg{nQtB`Gi+x;jzB$h%p<1;^YitzJ@<`?`G5WZV*kKjvEa-Y3%%(CB)ujn~`9P{IV
zq<$^P0uKr~<OdtM*_C+Mk8ea$o7MU8t?)7NC8;^Ab2{-mKTi5_%8%ob5>5zV_R~Us
z@Z-FY@BKI<<gDO1KOU#p?I*IFAN~A<96yU;e-Z`vZy78kFHj-Z55<pv{rJxh)epBH
zm;Ly|504+3AAUaq^cFw7ehlwj(&vZa$B6?Se*dHfe?j_fsZOkVysAm}__SKB>amOl
z{RsPU$&U~hlj^Y+=Z?H{esx;UH@<29s~^Al@w+6&M5R|4oKb9QH7b1lTHF;nrzqd2
z=ZM0b(Mi|+*gB*b6&l2*-|*w6A0!O7{J1Urj^LjW`CTD@`EgH3|4r4X{5O9Bq~xki
z8~wwd06!i{G_S!mT4k{O$9_EVBVPdd1NhII@zjr~0HOnU=ErkC{_K`Gxk3SU;e{XH
zy%v|(BW8~YplPd&*Z{QW4JnKZAo=6YBy4$s0EmSJ3kFa~$jJjGDNJ~ybCCdw22d=3
zk*k^%57;IutQRM;F{J`19k73tTLe%hVE;H)51>W>@d1<#pj-gu1E?B6=gx^00+`t?
zu~Gn)1E?tc$)$KoTDD8962ME6_uJ*MEP;U}^Sz{M0USxlU=#t=3?My#MghcaZ1i#f
z^#f=SK&=332T+Ht?V4COfc=h)%N-KQ>xqPf5@JFCDFL_wa0HMTK$2+ojT%wUU)(7?
zS+My>CGzy|d{beLBO^6{G-(wZ&`?MZBdRfp@aBRU0b~kkDtK^e5_Q<4W)fvDvV>#@
z5WB3z*r*Y-L(2eKiN#t6?E9i=@eW>`tep|pE`V187!t(LAle7eA%N=v+z6m!0G$HZ
z$t*Nu09}|XfN=qI4WL^9Lj!m<fbKFVy#weIK#u@=2GC0i|GHE|R`JT^(!{<2^b@s#
z0sMHQzGGU#Z^OIx4`4t5??;Uw=Oxpi00sx}eY<!L?hq-VU1M85EP&x`Ly3lC0=7rx
z1n?T2fup=TZiJM%aMw^)F)9E~lhKlK#=<6)ye_<BNxK<ig})*A>Ae!;19&Td#Q`h{
zU_t;BIb;FMmC_~!Fh$5@K{jUbuT_at1DF<(ydA)F;WHwVnE|{be3szsh<w=J8S?^|
z&u#{=P=t3<yDkXeU1<p~@YuHZXxo@{lIN{57Kwb+tFg`&8SMK90el$1CjqPrU}*p!
z1+Y4RH32LOV0i#50$54o^e)M~A4h83bgkK{JmW~=Z26RV_C@1bDVfSj=UCReK7b7Y
zZcTu#BHtLmrvYsGKdssv(Pv&xYT~v4c1SHOWP1R-bfl0)eHH*8Hc{t`0CokS2H*~0
zw`Av7{}RBS0QLs(WdQpEI3B<WI(z_M1;8(-js<v<PJUjEAK>J=S^uEmp#Wc#Zt%6>
zVZm<%DLfLuw*ln)yFU3*5%S;GcL4<F$MPbC7sDq5I2FKYIuiY)OMKN1@#nk5Kj|4e
zrDritr8Cm1vx4Vn+xDppKL|N5_@m%Yf)@mT7Uahr?8`;Tm>Ym1GplQdcoyqn7v$Q;
z$H|qFs0E-0;1zyVF3t_f^{`k0GXQ@80nxuzE%px~LBUV}mXL4&ytlw`Nyx7O{3hi0
zi2O1~A*BQrt^{y3fNPvk@rjRb)Tae#zy{+oZU%6R>s1hqg18;P9j=W*#0T+b0Cxi@
z97K^I{tDn;0RM6U58!?Pf73-vB|HqE?!fd10sJGAl>Lp%j%r^dfk^&{KD?>K*$N4d
zB{eFD=pdd1@RTdRNM5kOwQZgYFW)}>{`3syq9i70Px(g0Vu>s*Hi$SbGDQ*?@(IZ=
zSU|9#U?IVZn>#T}(I85&uA$Y6Nja1h7jn;2e8#h`C4(pxMCl+Vv`OEPWCxP6L6i$3
zAqYnh<%6gYM71EQ2T?JIN<mbS?3E*>74DVJGB2+y_L4}d(r(3K3)V}ZutpFF;*+-N
z^@FGx#LGd{3S#*dTffZa62zCvC)5riy;wJfIziMGUQcjv>vRem1o2MsgioVJP?;n#
z2xkz<LC}mzf(hjk7*c{r4I(WFPq6|n$&y!oL)uD=&#GBh;~<&@(J6?|L1YBcG>A4q
zv<)INh-N`tj2bbvT0-+64oh{}(w!`+<-2MLErMt%UCXn4E3t5EK~~W&h*yI4_zo|g
z&_0M$!%KD$<#&oEup?}IM@eO~y9CiShyhY~w;;L)(I<$$LG%dXYSf5cG<&&(o<T%K
zk6=-^$|v*|NnS7dMQq-m0}*Z8WK1R7&I2RzK|u@_UQv4eYLEv)!54%X#PA?;g7_+k
z13`=k;<X??3SwChBZC+v#+e<&=pbGXVwRM^K^zmr*htAK;~g^(b$la;H-i`##Q2DO
zs*tznKM~19A(I3r3r-Q7kR3Hm2pjyikm-Um1ZQ&8BB_-=u0|c&a83|&gLt)E!n`0B
zh^bSeN6Z(py>!CWeHrfxe~-4MmFD(fSSVys5Q`&{B|<(B{7`VI^q0!ZgZMazFN4?@
z#EKwR2C+GaEkT^<k+@14vq^Au5NjfBTT6eA@O43~7rsGoV?_R`ker<2?8V*-ZHQZg
z*dtB7R3TwokSG6wWQQQhXF_%gejdaZLUu(`cL(vfdkL!Tl@boDi{(JD%#4yH_eW}^
z<X{koB&r7SHGMdUpE%;ZhfuTN_>$iQaU_UugLv8@-JO~ALl8%UI2OcrlBGlRh~q+b
z7wU3??h!qL;UwKS!cPbBz3?*;$=M*z38#ls`8>Vii#9(>A#rDVvC<1c{2T<=lV5_!
z4Wi@pjEmBKCT;k!7*Po#sYJqvoZ@ay+aR<c^dQ(&YI>y{L-2#|8uedWd0)|lqS;aY
zAOb<W;Oqz?7(^(DUxWBf)T|)FLg+1=p)CIrHNUkN-Un~D`kfsQ;#m-vrHVg9^NQfr
zAg%>*UHI)F?gVi|_)WoEf-I!bZ>9eXVs`WhhJS?I<*z_QaxaMc!vBs)9!O{N^dAQC
zNaX(t{wMf2qWOetSNQ~LvX<wv+WhxcN%AS{`b38i6GF8Rs)rC8LR<)yL-ub$z7X<<
zkf+9Ife_Y3kC>PhRWO7?AruxJ8liLuMT8d>EGAf7u!LYq!BT=Or+W1Q%vC02|G315
zP*w<eIU(gks1T7<6jCXKj(ZwWfuV{N@{(Xx!Np|~YJ`9g>V!}?gqqUemn9?Tms%y^
z>*x`+LU3#;Q9A^6w1W+(7eZzWd&nFi)DM9rFf<U75CVS?8BGk~YIamo2!GZ{*i|yY
z8A5UhzZXwnND<-+Ayr6PMBY$HdI*go64ss(Lemf~TFAAK8A3C*#6qHl<{@N-@K*@;
zLdXuGMF<~<up)$(A+!o%a0o*}XdObEko~`@M+j|0Fq}ypB-$=y|0#HdO-gInJ_KGU
zGP-k72C-uZokHj=3SC0z8bUYWf8D6h3%_n<6T8!B@rmn}^{zNIsb>hq>Nt9Z&^v@a
zA@mJlKnMeA|HV=LLO9qyzJJL6ANO<g2*>=y!^sJEwc@<&=XKg3Df6H=eP{@;hA=gR
zX(6oM(Rx@2V?ro3J!*IeIm{cvYaxsZVRQ)pRxA}%t1s^mKa%#D@CuunwYmDVUh%xY
z`g#bLqepOOfUzNbTgLH52tBJg7~T{zPH=pP8&cWw36a!^Axw(!$wH=ta5s7cb@~*|
zcsqo7A<Pe9dI&Q@m>I%5A<Pb8PRPCmJu8IQ`^4R@<*3uM5j$8SrNmsewnIE6H(Mw1
zYH&e_#|~m~2usA^?}e~1ghe5|9|Cn4c+KBvZS_;-Vt4e3zt<uDgAhKHq-7!Se(%x{
zKB7T}6{~hQgO)$!Oy?jn*K*Ox7c*jIh|fxJB7~Dv3t>$Ndqem##22mc3Gd#Au!D0g
zg!Lh8mZokHgP(2G>eCQ5iX^UkVqj~hVH@H$g|K|5{jX$82wSDKL-lyN#5T5nlf4}i
z!)GCU5yGwzc2Xf^|91;_j<3-reo2RT?!32K3NK#Rv4>`SJ&q5yYLrXd7vgg|e6z!G
zJcO@8I1s|Iyg?7)5al5pkum)`gu_xGyZK4^gwZb=(7V1BVYS6kM?-kAI*B7oR~dDo
z16%T)*oVZ^xeuSd@k;nq2)}TGgm9YWaPhfW{|sF;gr7n<8^Sq}%-tOILkQ>T@ZA$T
zXEj{bqz(TgT#)wsEXV>mpq{^qRaqRB%NfDR8^Sft_YmA6_(Cv4@Pwd+;N?7`!H1Qs
zc%ix;LakL%2VQT;(c!4A?h{XP?TwQD5CS2DLa;)((J?;AQD_%W%dl;!#S`)^jta}9
z%W~M)mY2llzlQLeklzI_3v$-{5yF)S@7KHJbrxGZgHC>%C5Lb`gj?)a7nucp;@AuR
zOS;1~hn^flzW18+=@id?-B_1Fem{i2xlmh(wQMJRAikuOD*KNRp0o3i6Mwz)k>I~v
z28BEpr2I(;Pb2(U2+xJT5R9_yj118hRzGP<vLiPt&O$j0<t^m1kl#W93k59{w@|`D
zAq#~q6tPg$LR6P{PN=FK<7vra7GAs;+u+Ci_q)Z@GIXSp7D`ztZJ~^1uK<e<#nO!Q
zka!DaE!z+04U6S}vHTs|vyg&o6DwG#XrZQsmn~GXP}xE?3)L<A9>VhZaaAmQ*Dd}f
z%U=DqdJ?Ky;8g*QT*Cq^jNK3ySW}uKc;n-w$}uCBWF^+JP}@RX3-v7IJq)U2p+@I;
zI%M@%+WfwzbbSjAEL?0Ce`0syiKvVO%U&C|-yV7^K9S`lah0}^W!WpRQ!rUDMbIUf
zY9Y<Sg|vnY4K1Wccq0pqBfN=)4B<@$GX<MPQd<mgWLs!qVUdN!7Ft?pWnm1vW1+Q$
z{skPJEp)Na#zI>Q?JRrYYHy)~)c%TvZ-&O6+Z3Bq+umc7p`!)Pf=(9dG;PSAKeoK9
zg`pN+wb0E%cMCl%^t3S0!XUAKFAKe8X!gIH$jQ~m!uZULzG4TOq8}R&;R7tb23efK
z!EAZ&_`UN>3}I@%ggyxkD#muXTRw4^h2a)PTj=$m3tN(7VT6U(q@7c{+4oOITJ}%X
z!NN8lWntcgMt9z7w6<!)*F~pC&8RmxvKFRWm|<a@jPe8v6NQWye9N+*ujPCYJITUi
z3%jR975ZZk`#8nIR14GCyP8p%)8pt@y!G+680V=soo$<GVM1B^_i>JpcLZlym@R}!
zydyD}O|mfG!U7BLTUaPHzH8w<AvsU%#fl}AF4$nth3bw{1!!k3aZ6|x3p?mwGBh7@
zm~J*-XJM&@k7S-Mv#`R#N(;*^ys^oixgU$1?|ZM}bhEI=!deT_9pc$+{$y~1{JOA2
zr4I3*(4OsWTgAWAlYLxoVS|N@7CyDG$-)*3TP<w1@OHCOE3f9KVfiGqVa$kamc3+c
zmo~@0s83fPm9GH{*-0Z?IBMaTg)c1ZvT)GCAsLa~7QVEw&%z!Hdo2v;5YN?>Q;BzD
zn6c*J){SZ<?YHoig##9vlutaH+i?8y=6o2+R((w))A&Uk1D#2S*|vKnxKuLN5ewha
z2m|AJ$B8~e&F?Inv~bG8aT#t(P6!!!HR`m5SzSAvv+x6b(!v=FXX%zTqY5vLqMS=2
zAH|-hA6oc{zGs2IS?n(-0xSAix<LMmg<B4LC$!nMlki`A#e&M}!Z;m<o0Ec`6Grne
zGz&UctuUg)@LDjW4G%2%ESM}oqJE1Te&RZZ>26}sLP&(aTd*vI#jw8$<~87w@L?Y&
zGWr`QT93qYg_>Ws@P~yf7LKfnx@zH?1?Q7A+ToY~>U;Qax~zRi?uKM!Uv5elD7kIn
zj)gy^I{rr7vvAkKUlt}+O{{(^_Q1`ueTrnoebeZ^g}*J3&>@NcSa@jR5ofVvd}850
z&Y<^;vptVF2l>>#qdiiE&n7;#@XP`i%#7tp&pB9ZNp#W+F8=?tA&ChiHjJ0Ts2WCG
z82Q5Xx>q=i{9$Yu>L?IKd`=RdjKB3p&w^phFX%Y_XY)c~JpG_e=s`k}Fp7pzEDX-I
z5@D1KgV#mHrG)1LI?o*zTPlpwVU%IXH|tmGk{%zn*KqpMk2mVmEM>ze7q-{l@`4ov
z8LcR!QW%wmR1xeMGlEHMTeUE1hfybt>S5Ff15#bhFkTL$UC;PMart$ldaW?tu2+IT
zAIx(9R`a@H)C=RQO|3J+s2>JhB|VHrVKfLMAq)pgXdlmz7{)t?)43idg~3~P&aiE(
zWI>XYFkBIyDkM#?VHgwc)u%$^u)Rv#9Sozu=&mH5-uCsw@WiC1((z0|>STqHO&-R$
zFj|DsGK@iC3=X4}^o6$S8%FCe+Jw=ToeHCC7~R5nC5-lAbO@s(t=b`;zh88-aT`i?
z3S(&ZVx7bGGFzAbFyyXgmoS!n6wB^+52HsIJ;Ue~#=Um&>dnerOZlVBUyxSq<9mnE
zM=Cus!5$Q@01wVI>L=~&FY*C`1H)K2qd9vtM53>SQDtuFp<%ol#xRlOb$oajIrM>&
zu_MCxwQGE4%UC`nqCH#GNg5f(s4zy;L}82xV{902gzcYTmdQ|VcO35qGt1$x;&`WY
zd>C)huj)9~)3#wuWM8C~NnuRp@P#oaj45GE4P&M>bsC2|jOoG;bt=aDz2TKn)h1W#
z!hZoG<Yn_aVayWFrZTi!VZUlJH;nhB<azY%FcyUItayQUX|bA7wga?JxbT_%!pZwI
z;IY;W3&U6>d~rmwB+O4#@L?EBBa-8XZOxC^o<R<h<zajr#)>djhVe-l>%v$S#%d0I
zTuHjz8mYa(4=J2MYsH<$)r_JqrR9|Tv}EkneQ^nUt8WNnBa_0|L>~_0Kp30D*g`vp
z@fnA2U)<I(wsQ_%s=h63Un+CZM{=@oE1vlcc7{=SLu|3a6+fo~%x=ikFT(cE_b#cI
zvuU@GJ%W1$zZBdjxL>eD&8UN12X@CD3ghdr{X~QOFstqq-?nEwf3{fQH&W~o!EXhR
zhH*^DcY@S8F62ZQCnJ)$VST?3<4hR6FLB#{oDJh#7-cV^+$H=F#`!RAhH;D2Ka8LL
zA5-4}9aZuDA4o`ONhqQB4}CWzf|!H^SddUd2`zM_ErOtcQl%;&9YH_=X@ZCdiYP@8
zQKShd7QhB(-+TMEzqd=1A`1V{yZP?_{LXpjb3SwD&di-VGxyDFyM<5-p%vmHr_hxF
zR|;{p5SI$^J!erNE*J9UeEiHMAVbWBz!~*juC*cgr4YZ|N*-N5hQduRrt`#ftq{K!
z;?F`{FN7b~4(hi;{4PD^#o!->;2H4Lq$Dmw`sYR=3Jc+q+`pu9hVG)-u1J!_7j?^V
z7eZ$+oD;_)<E!NSkdfgjgtrhz*=9brQiuRYtxL+YeN#T(TuJ*S{-ZnbS%>Nxg)j>d
z<3cf)6?MbxoiFD;hq4eixmpWxyAXdD;+`z+JB7Gwjb?d1Nr^16re*f5R9=cU++nTg
zdEHVT6yhNR7wzXXF2v(Pv?)kAc`JVU=D2^wRGz*^^h<fdwbL)r@=r?Ig5u8NF2uS}
z%7xM{jM~vM&V>XQO1k*UBH~@v#(Qs*O6xz1V?$hzbI)WRD`{=0%D7NgY%cFYq6<kb
zB)d?~h1q#2HyBHKVWribSwDt*)K@#F(0~dqR1|$)4Y7C%-&-4LoeitFP}PNJT*z?o
zI}ucO;b|9Ix=_P~nl3bPp{WbCT&V3reHR+IP{)P3F2H4-N4TwGL-m9+`Pu4j9Ac7&
zE-Ml?5;;A?xyoc?NzOao(dL5Pg|uj?R2P~>`Ml#+OrUbQ3s1SgE;M(c1@#A4;I!e|
z;kJrzpiR%p<!>QUQ@@{`=|YwZ&$`gTg;vr*n$+5bS^2ryF68hHy^75!nb#+_jSFpE
za7bJ2Txjq5-^qgYa7>G4RIUphUFhLLPZzke>g2*ZO`COdp|cBJT;L<BuJqNIa;~Mx
z)xNOySIo_Gp}Px}*2OT%2X?*01~%Hqg?tx!OLL<Rb$flLbz<u4LO+qPxq;)-`wMUL
ze&#?I2604O*yX}t7lyd7z=hXngA2o4nC`+17lym=oD1VzIQ&P}2r0;Zjdfupr;Q7v
zT^QqnQ{;dDVogpSJkN5mkZ>tI&k9Fbo7M5`xTsBVVVVouT4qdS6Px3zJ<fiSbKr6I
zOD;?jGFgz4DMDTre8q*SQ8_o&ypCpHXvs_$=0^QL%Y|1t6<wGk4HeA_ni1aBjW|!#
z=DVzik{L<yue-3&h4fPG*0``pvX%=jcHs>dmIz0^w53uN2W6Sdy7Ak~Oyy))A-OAE
zSjAb?H-(#@)pSKcxi>|5N2~Pj>K3eZ;VsU$OLf<=vo36RVLhE(B6Wky+7!Jl_>K$j
z!M;&&li+5-cLlcyZWW{&&kj3W)~@N!3%TzJIkzQ|SGBC|eHV7S@Y{^I&p3Ns*dq&p
zUH;I8y<*Zq7d~=fp9`N#a=!~7yYPt%2e_<O$Iy*brn?5c(5r|u!vBBok$mpLAx;1n
z7Vl3px%21R?~<{xxRc69r9#Hf<1T#Z!b~@2xpBgUuUvRn#TFGOUHF<oMnxGF-?(s!
zqpV=Ef^S_o%>bexS-}|>&PqLH6`XV7ybGoaVfN953of`_&|SFb!X+1eWj9^;-euih
zxaPvf#a1x+LCRicuf?l$$WJc(9Ob{ba7FmlsD!6l7H7fVUHC(Uf4T4{L(RsR>n_}o
z+PWJyUIYHRDSce}|E{$QU2uuA;=)g5?L1T$G~pZ?COwktbHOjf>#|PD8Ksj0E(BdL
zWb~UvZ0EYAgc$h;r|`{KZi#u9wNr(JhzmCvcol1I+;ZVI<FH~))H^QRb>Tl39<w&h
zdLsX~n0HU`zTgAFhl2kIvTKio{OiKMU9G*=*PU8FVWSF)D<F?ikeZu5W=?<dSdqjj
zcyuC_Ngi+gn0mWrMV3lXP*Sl%ZYjlbcxlDDuR=mI%82}7yS~g#6i#_L1?3eu6tq)N
zK|w_Yb~dCSML{J6P*7h%Wd&6f)KpMQK~=@N16f1CjP)_q6zjKP_ZN3oXTiA{B(>^g
za=p}6P)9*s1@#p0ek0$S{<~9}y>c2iPKEzuaEy4#(?CH(1&tLnVI@P#+s0b=1R5#U
zJH1@3JQp-otb2eq#d^1aLWZN?D`z!RkftC*L8gLq1y3nxq2Or+&FPAMvAoyH6IrXD
zhq8k$6+EM0T))J|9b#$Hneyr7ldNmcECsC;<S1yZU}{oAwqo6{;O1@poQw&N?QIlm
zS4sW0;-5vu(wFthnbkL~y@F>I3{)^kK?eo73VJH&rJ$pNP71mz=%!eAr#p+!yC?|u
zvf?M38}@8Yo`UWQdMKD4jNjKMb>|rS$~RKEW#yABIwW5~Zw37o6wuH6;`-3->tgyz
z>wVdU%9b~lKek^e?i`?C^p?2%O>q@&CUTbYqI<A{A#7K{SOr5B3{x;t!6*g86+EY)
zeb1B;3Xabj!0!AqHTP2gMA}noOZsR9i$<i3Q7~&=42^tx-hlqYtOwK2(_IQCD457m
zW7n?KeL=y2x+#^%r?ZB!UuAMAU!-9)W0y6f){W}U3a{NLe>6RFih`FF{G#BBf>-ER
zj-!ID3Z}8w3YIEZ#tEZfrh<7KZZ@spRRwbuYgfR&JQtI`e^RH}3g#$q7kBdDShM52
z%eO$mYcyEFV)nFh+R(3uzRs~O?p(-$NX+CaCh{)R8yt>yX-~yEmnh)-;XEqGI+rV0
zp<uOwHx=w_T!{m{Qo$+(d9hBua>IF5qgT!v1#3Ce6l_%RmV$M(?S~wW%X$TDo!e<z
z$mzF1!P_D!b;7#$NSil_@$WJ)cF)?ZpxmI$^Qjqh)aj1~Y*VmZ!6}IhI~2Uf))nkm
zuv5V<mQt`+!TSn!b8RZvqgW@1+6!#iEv;API=9d9mCyTdN$j-dX&-U*ZH)2vPvHVN
zzs$P3^|69a6r51-6^BN_rwR@#_>6;9+cIfpIcwIjHqMRD73)f$!SIj*;$guf3XTe)
z<O?Ck1dj`T$!QboWR@c@g=J4FXtq6OV)4|kX>&jOH=O*oW()J}-zqrG_^;rsf*1NF
z{>=EV;Jkt#6kKLs6kJenQNbkzyxd@{;3VPtBKc!o%=Zj6&64@>g4X`1;3s<TKwWP5
zxvAiTCr(0cndt4AvCgXst|_>u;680r@Ect*wn~VDtKbjTtUy)pC*!TGltKkJg#5*6
zKhn;s*y#0_?Bp(y7hSz-oLvfh3j7@LV`;hqj{+|P!lpP5T+0E8L_Q@U39t)q=h5Lo
z1-08|{Q6cJ?aw(8YbY=kgy~xu+&c<xD!9ct(>Lw5Vr>-|#JGxg-Ax;klgt~2tl_SL
zzeRaPpCL>>Q1Fl;T}7;FojCqc5F_M~f`1u&#9A8vM8RVz_1Z%#jBvSin`kd4nx|dK
zEXWg0oQeb$B~>fhmrxO}qD?zHHJRj*dB;{twZ6xpGF-`JRV1o-PQ?fnNh*?6w5Gm_
zaw^KJfQtGmDyXQaqMlTkqVgLAR25!X+U<~RKW(>HQL!h<enqWB1FEU0uA+vDnkwq3
zsH>uuirT96okfR!DSXS6YiHsC2i@{qUdn~uDP^{l=SLGm9w)PG0~HNbYl>#7Xrx-F
zs-`MzDjIXwan!nf(L{tKb`_~A(p03Y*6FpVcg<Am!h!rL70p$&Q1P^iG0T&A2}2=o
zDYR5^D7*MGDl$~$WLaB|eoL*FyLfwn_eHZ*Y&{awN_v+~1tHu)@m>v^Xj{}@6}dtj
zD%y!cd%<T_D{8Sq+T2k^ClL-((OE?o(Z6;tzN?CEDtfEvqasg5cNM)<<Wr$-S`XFQ
z2KQ90GvnxC&3<ra_sX(n3)eWWIur6!`l{%sVt|T)D*CG^VE2#2@+%%1U+PKbH><3(
z=TA2i&ux!w(;>Ecuh_vVhDf_ZRb<L+p>4xd45u?krtq0EC%{Nin4;ok6{A!*8pn*L
zyHq$;>n#H6zo=rY@aI*G6Ea@K=I^XW@GnS`WP*x`!o8<0`AaIkY@0qw#bnjGgU3pW
zM&}h3Q&lWcu~fx0X?K>2S5-`>pJ&@=L<eyu4XA3}_ns{h8o5x#92Ij_%u_L6#R3(t
zNpWsq61t{vOfTlAysqMdSm%nvR#;ve>s%!EELQOb=fK98iCt27#;4jc70XquRq>XJ
z6)Mh^w7;q1)=(?LtW>c|T3pQ`>z8u5wq*m4H8PGLe3Hg_wNBc7Tg7@2a-cUzadz+>
z6&ppkiT)A7vQ*$CCvH`-O~vOL4r$n~Vh5+6hD;6bso1IFhKj#b>{9W*iqk62sMyW!
zs5qhGD=sU}D;0-T98s}X#YZX*a{a2<r((Z~k5zoaN=BxoJWS?6^7Gle11gFYWHo)5
z{HY2i$%&tH=Bp^uAyP=B4#`m!$5b3w!Q>bJM~4buN>x6)rFK#p`bO|;K{nU^Y~HCT
z|5k`si9bu<s`x?0WfkW+7An41;oFo*{R=8CMfER6^(kj59wa}i_({dDDt@E!Dt=LM
zP1LRkURA*s|F1szznPAnhx@bs-&OoUzwJ)@lS3(lbu!5;VxbBb1FVKP4T=htW2fS_
z3Qa}JUMXH$sKTv6=gO)Q%ZKcoOCFjr%?kd06#>q`ekn}{qy$y|qb|Y>Qz{G&+3s>?
zbi{cfz<WDa($a6LI8Zru;Ii^P^HR8};3B=F;;xFvDxRqLTZO+M<vv51YTebpC&hU$
z@u7-;R6J7gFGFaabwisE9eCpSk4rMox(&kHI78Q1p9uM<cIE5eF&c_#*2cTIW<?L)
zg`mx@<kS)x;x$y(P(?$6hLRe}Yp9^1l!nq85;Y`gD5GI*L9+$P3A{&IR<kx6JerK^
zo~)sqW<}H=eobO+{JA`SgTOZ{=3Ysvs3Ao|B@K6P$MZ~0+Xif_n{zLdU8t&|nubOi
z8f&Pop@xR~8X9P*siBsJIvVO~)@5~V4ZKBD?_gq$32F4zm&pnBG=S@3M=ays)|~}h
zHJ$d@v+`03yQFZZ+EBAjRZSLWHPO&i!_yjCYOrarYe?7dl!jCdyhYqhLmKN(O665p
zg}vQr?Psx0TG(7e3k__pfA5rsl^kcZw*P*bO0#)+@{EQ{2fDI@JlBj~8Iz@<6@92-
zf`)7jIU1hT&_P3M%{q-H->{-V8{us=IH>uWb(UdO?KHHPCYYSE)}E_@!rmJCXy~Y+
zlW2C<&{ab>;ax=Ge65ms8oF!fp`j-SWsCLtG&iD`(v!I<>ZMs%ANiW~Op5m_68l;=
z_E~LT4MQ~y<A`hMuc1K001X2*43avz$KckTej6-Pg11bEaH^lkqG8-XMk=KZ7d0lI
zla72B>zs8XV+32#Kr%{jwBQ&)r{Gw@=LM-YPQ!TN++#C2QNxQG-qNs+bxQqnG|bg7
zNyB6fQ#8D+VJ7u8yb^7FhK8xarwLBitcz>z>XRnKk<hUZTE@`GS2fJ0=7t!x`v2}=
z%+oMm!%_{)#Qp^uF5j^))bN^y*P|oC2i#mQi!?0OtbZYSL&FlydPwn870VBlDBS;R
zSRqZXmVsNT;nvT|tE7gMeQC!#CDDenTe9EOu!d_y136DaEZ+UUwDlS`X!uaWUJY++
zct^wfE%x0SHcEw?G;HP?*_XyC_pXL58vd9zY@3FyVldZfaB1>`SSPEZe7lAnB99rL
z{+<TnPQhIo-WRg`dOU?6XgKv-+W4*ZJsLi0n#?P&k2LJla6rSSoT%5*W{2(jHGHh$
z6B_eb+_-&pd0OOor(B$K_@{Lbas_c2_D|%MEQc&Lxo6w9F^4rA(QseG0}V$te4*i2
z4ZmqPrr|h40pGpU@TG<m8orn0SAyROp49NQhHr$Q6FjA%cbUAUC;ES@;j~E32%Z&O
zdD(i~lgD{3+c@i?#s!g+ToiJNOGD&8MCF%-c=y%)Nl4~}PCwJVJY!zy#N&#FtHQ5o
z7!&7gR4$eHJ6$cxVGVyWd};iFlo*q9K*E9=t@$qvg&JIvR0P+57qfbF5{=QKI&LAl
zphtsOh%cJ!*ANgMj7mZp4B_8Yv|cNnnwnp!c4|b!P0lL~w>4}!XuaZlM|AE+OLZIQ
zpzv=E_o9-l#;FfA{G;I+H!|FKq~Tu%Qa5V4@t=mrj1q2?apMW+h8uBilyIY%+j`2$
z4Jv0;apAFUY?F63><`;g7%#$-Zm10$32t2QCh<y&H#tkW!8-<DUMpADjYK!9i&~N!
z$!=6~qp}<2+$irx1ve_X!B@^0j`&dE)vhTiZtHx<c*V-?$#(8JtGH3sjcQT@-#lb^
zKeZu-FCl!=JB2p{vdnl|$fK4U4curbYPH>{<3?S#6<X`L0TFWL@+zRd+lmGsa+25w
zHgcn}8!g<{BWY?jaU<1@W^Ocf!{)XYHQ$%u=F08{qsOt_v@|!;rOxJVEO|ZYDL43%
z61Q!gA6WZ*Y7%M5(^6qedLS>Q@q*Y)H?rL5=SF`wT1oNtZanKowi`Ud=D5+?jW)s^
zf^7xW|1z1|PB>o(A@ATut{c7F@RiBz=td_u^4!*~2{zi<jjnEVlghgYUTdGmd+FSV
z(*Opg?r!vOqbJ9=N^HmHlX#+Mk4`L1&6nDGyU|Cg;#(^`#rJhvUjwn`0yhSTe6kw@
z-55mf##kvb*p27h7~#ecH-^%%ZYjgu;OjTT-T0$*4lB=^p2}!2(v4A+yTLc&I<1c#
z&HKIktQ&5O9`FCn$NjN%<MVF(9hb@GCb}`sjqz^0;I?kf<>jSJkinYI#ha3rzPZzj
z?3x?Du8W!Ew%$SA(aidYhC|7+Q`~sjjaQ`aQ{9;E#th-p+<4g6y6XRIPzwFVgPVj`
z-I(o0aW7)MnB&G=H_qxfr(+)5b)$ohTpbJCc+Cx$8wy9+jfI@{ZftjBksFKM*yP4$
zH{RehaAUa}E8JM>#*V=m?D#S_+7Gmmf0&rrYe|=tZme=cThi6O!g}RqwHt4`v4&+Q
zrsW*7jYSNFYh{AHCCKDDA?pP<xbe1-ccQr)-3We~Otp8TlC5rR;gIQ8{deod9Ga2V
z=wsUsH{Rn?a^s8}J4N%j8(+Gy%Z>Nlpu%o9_PB9mx~2SqD3E+8WUt^yZtQbozi`%k
z*o}{cf8xdgH$IKZKXc=t@L9bqt3Hp)4{?nbSPtQFM1)5LzYsho*!gVC2~Llfth4he
zH@<S?q#Iwm@r@gfxfNGTPTQ~`t?`eYc~Ie7DZ&ntza8g1>&Ew7q?~V4%bk;~^KN`6
zgbEkjxG4ORAa8S>+!}Y;jUV0kokiUE$&H^SYfY_~r?=XEabu>8#T7T0yedd?jq^?T
zZ-Vc}Rip4v@%9ZVew|D5WDmATQ~wePd7&He#S%7dwy7L?H)`mpsl)At&RM4;R)@z8
zuN#INCRY>J6k_~t1UOeKTfGZL>j?>2+dq~<+8K5u!np0mznt4OVs5%|`9s^|lrFd2
zxJ{EL+3tuwy?U2xN_f!(yC?j<8xMrAwucOfQBIxz+@Q5j+=$WfSU8jH0yWuCF&%}g
zt#LF~bcxeZLPr@LWp%{sXf!X4M@bzCx)mhvZO`NYmC{jKM|PzOMY$x2I+Aph*HJ-7
zvJP6v5h<tRn<w!rkX1A~6?LTOs3i4tt`Wl)>&GR;ZFaEQ$|9^HSXD<gA=L$^&hJl!
zS~_a$u<5Xiu#S#;I-sMjBxek>WskJg*U><djdV2B!OH2enyDQZe^fElH^cW?a$_A|
z2Rb*=(NqYnVlq`nGnUekr6Wy8y3~-NqvI;uQ#xAccv?qu9iPQH=_p##QnE;%5lyPG
zBdnj2_H|-fiLi~1w)BsV938Fc%sMd)1+f(?{4l^)6eS!w+UeHd+Ur_F-(L8$g1h(I
z8pJs|>gc3nqmE5<rj9N;UexiDj;=bo=_t@KKu4aAC)3LH)X_^vcWIYZ_0X-!Mv||i
zw~l^Mc^@Ht1*vdjepZ#Ej{cG)`E_#AKplg0jMFh*$E0m>gC)yJw=b{_5k6GM**NDg
z;ll-=6C5EpQgD>uXdR4EV+3!+IS&rZ7%TGUIeaT@jd$B#(DA}_8zbZdA)Cfp-kYc+
z@=eS;TjM6_n5<)wj>S5r=y+Mj9369YyrN?&h4a&9>6oTtx{jHWWZ6+$;~ceOX6PtY
zvMtAg3yNy5>X@ygSltR#;4yV(xp_2TPnQKcUZYp5m7C9@e-h8E*TuYrf;4Z-Qfp8=
zHDcb-u|&s89jkOK)v-*+;8|%Up36wuXj?AID>&^p+Ugy&0^{PT<yPx>Q^#96)=BOf
z9czU!xBZ(HiR|Edwq7OXZQWYV8|b3zHXdt!@BNNQs?X_3`DPvO>iAU0K^<FkY}N6;
zj@>%1CTb_%OWvkqyN>6EW$e(giwkN}+I!LpB|Aml=Rt4!neq>G?9uVD<j$%Q!_(G>
zI`&FKAL-bqV}EqEa8X<KOtMZ`kG{$IM8^RsMS~}8jr&Z;=Q@Vm&pkndbsW}lOviB@
zM?`1c?zp2uxIn&;3Byp#Y4fEBXAiPHGb8KoYB3+jI=<3zl1q<aLC3c`&Ln1jQp<8R
zk5f9RLvmV5k(`mL9>+P)>-bK`d=D0Qa6!jK9ZfuF>cJ%)-!oWw5bwbcTsu1M>v*8!
zM;$-u2<iyw_*us<I<D#XRfm7G?ZL~oD>|-969cQpaADSX$;RV19lvumF)~-R{P2g4
zKXqK!QErjVD`wo#5n%imEY#uBq3BQ<^F^Ww?&+3H9Tq3ic?u9elT&i6QaL)r$L?>9
z^HVw6M<xv&rj9#0?&=703Fu%nqe<Q~wwpQ_Qs|0XI&Mo5j?VQ5{T5!z`<orCYGvJH
zWS(T3UOVPN7i$te)bS4^Jo_SHhfP1y@vn~mSk*w=-pVoh6dR`>Igc2RB`hvjOppq(
z9>jS-!rG`wOz@zj2Pqy@@}Lxt$yv!Bl=Gmp2W31cE6Rx;Bzde81PijKMH7Hn-h-EC
zTW9|YQjjP8ilSy!dq26d2UR>UHpDdWpsL3THOsczs(Gy7uw-jobq|=V;jvaqO%Lu*
z>dd1S)r8j(tSeYg5Q5aH@4?5frja!Cpn0)`Ml`a2T4O;HMqQf+b`NHFFw=un51M(<
z(SuGNq<N6;L5>HmaowL{Sr4*2*2QcK51#hm84of%))hxf59;@|?&p&a3FUmV!MZb0
zFt}o-2PX>i7WM8tDL$(e9TK!<)0utJQa<b0+JiP8wDrIt6+SE2PITIPkX*vLqJLpg
z_fcayb?_ipau@dLT%&|@qbI*dW?E+t26`~agDxI)^`M)FKM{-`9`y8BFW`0efRAoz
z5-WLnt@U$NB)!;l&_)~bJ?QPh>E5}01p5m16YMX@tOC{}{Le|*Ob+&7hzC<Rb{-7%
zU>JMt!6fPXa1X{x_u0gA9{yad^?vL~!BK*v1;+?F1&iKhd|o;`P9)<6Ul5!iI8pFL
z!6JRuKbfvbPT>BZk1W}dS3GE$nZ{$92UCSJi^=IlgOX`I%5StK?aPf>vpjg!gRR?R
zSnAZ=^x4w%91rGtFfVF6>*saKYaYDr!Ff8|gM}U}@?f_IA9%3XgEu@_&$;Kp5)YPo
zu+oE79&0bk^UE?1mdiA*|9Q#^A)Kz9(yN89iO%phg$zsRyw-!a*skn$)`_ra+w-;u
z?|86<rh2f^gH1Bk-}Ru;Ve3Pc&9Wp(den^J!rxZRvCV_+9_)(NzeDuj^I-GVxOb|@
z?Bqx#bmsBQk)H1}Ye5?KuEaeaeCWXe4?g9bU(su?2m3wfKRn|jNm8=UgQsTOtgC}5
z86Q)5O2#LGQ%m<a=)q?m{8_u>84o`9;E)H$JUH$_<J%n%iy2>daKwY7%uVn3bP4B#
zh5fm{XfvB8eknRNtH*G+c|!PCf+q#P<}$1s`;G8Z9(*h0v>?ke>#PUoB*|FKkjRL4
z!Gnt)gcvj!|2_ELgR34~WBm8v<lMBMJos7kFMIH#NcMhEk#ZitNL1+)YwdWiaA|CG
z%oP4B$CMrP;Ov65-?)CK*?#9rFPlZeuyfsmLiTz_+6@o>lA4Q7lsqrEJWxD%+hbEb
zxZE!z=z%6lx1cWQ5%dcB1gY=$ARzpHsg6vtEYESK2VoEX@!*jM5f5&9a8H_J)3-dh
zBm6d_&{i9dS8K%F6$$(DH|O^7j8df>l;8K@fd}6_)&HU7wtLIkTJsyXe`Vel^Md?8
z4<2(&U&!F`#Df?SR{gy*lSSv^I4??g0Uzr75bs5T7vFpFgBK;eDCNa)FP`(Fv=?Q(
zc*=|BUX=AB(Tmz%)bS$8Yek+4UTf%+y(lM1UL#OgUO1meRP-Xni%MQp_M)a2wY=7T
z_07AvRiso^!D?RXYNfhh4Z%<ERG@_K?d(se@XC7Yti(F&deP8}MqbpT!Cut&T03eU
z4ZP^G&mugyb{c!p#0$F@siM%-3!Ai3l*@Yf=?V?wPdbvP3#JJ+^I0$aFsp^=XM2(3
z#nWE2^x_#FWv#HE=|zSp(>5k~WO>m_B;?yCX0`UBjTfD~=<G#XFC1Px>qQ4I+KEnk
zK{ioTwtlyiT#<B)$`@>n<L5B!Zx^v4Pvl+Mow~8zgtMShw{v$dR!vD`Jw3eW=|wLu
z^4Z)gwgDn%R&Ou*2=5z}^b^wGivl5YKkPy^9s|7?B$B~V%^^aDdNC|2;U0K|7bCsc
z<;DA6jPhc%m%r<dsa}ln!s+Ed!efHh`lMp47teb!&I`J<$VKD5C~_>HH_`Zs(u+x6
zO!nf%q8^E6rDHvqJ4GZf3vQTZdAO*OX<khCVu2U0c`-v8dew{BUd$9PQD>GH!6%vY
zKZ|hY%<*EbR5H(t`9-b#(UeVajZoorFBVGI-t=NoQCpL2Z+Nj-_=3mQH@u7nOT1X>
zwRR)R1eXgkxx$N;!dD5dj>=Q^#jcTR*9yKRxK40Ab%eYvxSd_*JojRgBsmIOglzWW
z-Kd0@OIxFSn-@o>W)zLr4iUa5xKq%WnYP=D54`xwi<4gL5uY67O80_Z`cOKx*Ncy$
ze%L1l@Au+kA)iF;Kj6iuQC?<d#^+uf^5P3Gj!D78UW6aCJu3VNhi|Rr$)eFon4EUp
zi!Z&{_hrA%u?bW=A)Lv)b$!3~;u|sPI}x6e8qRw0trw@oLe_Iegw*F<uXCb&UMykO
zf%(=OTo=5!$Tbz4a7l70X8^zK#gB|sK9us|Cog{X!tI6b#V=l5@xmo_US*gH+WxZ4
z%fIHeb}zqr@tYUFd;hm#cz1iuAENW8*ZP$5x**97AurUA;YO>F(WY<8(2`k-7pfN;
z*JI_h{1QF53FM~h{q=P{UU<E@<;88O%IAeCt^2(Q2nl)-@}kAK?xok{(Rdz)$oW`@
zHHU>qytpZZyBaFo@#3x*kG%NTi@&|N=fwlB^>;Jpo2T99um)_mCpiXQ>$5Ltd+4?9
z>i;81A#b0u%l~;1<3lkY9((b`3%)dU_+VYW>`}FTOmQD#eJH_z??W|D4Zdc>+TwiH
zBVA5!HqB3cyPd6@;Iks6wkxf)4`qC)?n4b9%KDJ#LlqyY`jF&9vJVw~Nb%uxPI@^X
zD)_9s@#TFu9M`XP<xFC~64rCoN<Ji9>pP)@v$7A<_gLRs^;&P;#ZCJ!naHD>6x?wv
zhQEwj(}%i}tmVTe<@yDdB-Qp|Q3+=qpY?q6y<;);Bv-9pjs+X|(9nmyK78auBOe<3
z(8Y(YJ~Z*6sSjyBr2Am=Vg5@ob{|rG`0$AJ3M=1l;X6*veAb?MP^NukH~UjQbZZvV
z+-E&Lo*lGpnp>xZ4^R8h(uXhFbf;Q2J8RmW5zO!*Q_Aw?s4O9^*jx+i=bmzWXzjzP
z3idYCIhoehhutsPS;N|UHiu}o^P#;D&-&28hg=^z`Ow*ij*@lxU)!C#)_Yc?PG)TQ
z&vvSTo&4$qdp95Q=m8%V`_SEo9zKlrVT=zwedy)G5Fdv6(0^KLW_f$Q550Zp<3sV=
zwn1DMHSK+cGucl_f58I50fGYsd!)yfO0^GW?`qhWm9yXbwdyb*MzE@CcK)>2a37xI
zgt=pzlV~L=9O=U-$=&^GpVw;Ioj#29;YCguAD$N<PLLjr^I^OXF9>%ok70Kj$Jn1V
zv!D9gHqnP=6Ra28CiyVghnIbLg~bP@mI>Q#+_g=SBA!8(OQ-rU&4*PPR?|nGSpJzV
zxifs2DP)!pulg`sICJOvFel2lmT*!sj}t&73w(IZhu3|$vNLvFndF5c{H3Gi=VN2+
zZ}_mphYdcw?ZZ-<$3}fv?Zds2_T@hQRWauMTw!ks=fKyKSNibYmQ)@)@7vz=VGUcq
zT5<l<&DQ$x&aRAJ>CN8qp<N9-71sGMu9QXA3t{d%K5V4r5!*H&Hi@rh&a-b7OE&xP
zu8=K0a9Y;PwqNUJXD;W@b{}@IQLc#pZ12U|_Xyc3xXXw4h3poj!UsZLxsXiF4_PYK
ze&;{iJ|FgT{rZvU$H!Fg!So^Q!vP;Y^}*wV*N2Bq><4`~;lo!n%!kj#yhB{hJ{<Ak
zj5zZsM{0S@mmKc4_Ag|0921-A!{b6Yto4p%oD17l4(xuCX8)D!_Tg*J-UhMf7TCYx
z>hR%PMhsTSfsi6+eK_aC55mt!Yr7=mJHZP+ekWzERvtA6TOVqDFUf~X3ob|HKMMIt
z@Mj->5mI}mEFvGS`S5F0^STee3IAR24<G*I8XREF&k75yIeEi}zkDc+>MKHAJ}h5i
zy)&swQj6xUnP}IA_mdgU0OIq(U_4pf)9*vThoIzg5JTbw*1&`B4KhkxtYweT8zI}j
zT!#PJZu)S`huflGBg1}2$Ui0QcYXMq^N?ODX<yLLS`_ys>w(}yAO7*7<do#(!S+WY
zp@Pp>{yzqPAD;O5G{SOSX+Mhjt#><lloV3jkJzXrPDlyCc)<ieR)}(`sLsy8$z}L!
z<TdQAo5yBPvM2eG?8ibs7Wu8PS<a6FKL+?w-j51?Jj}LN^rL|v4gE;*W8<Xcvai@H
z`BB-ADt=V;qnh7(bFaQ1)%~d9M{O~(rXZ~y^;~i-;l|u_uHrgTd0ip(1o<uBy>Zrv
z3~d-o0~-0!*pH|DXzs^q38c(w;zv_aw)s)Kw-w3lexycgYvxCq@N~hZe_7vI@MxyR
zxA5a>KYG`(xAddC<UZp^h98;2+xgMnk1Ri0`H?LWmTKcij_}q|N$b~=+X{F5A4%Ym
zjUnY(KRWo4>xcSQ?=F(tQ8<&Ggme~U9Ox>!-J&(*`7!6D^)@Dt9)9%nqnBjm3-%Z6
zE!an}uOIz{Ox&DWR7x$CFwl=de!T9tPE~{b7~;nZeoXLVs2{`pcuw?(3l5%?%pVr`
z`j(AzZ-gH`#wU*y`6xd|a|DGu1>;-At{Q25t3Fne&-*b>$aq1@yI+i-=*NqGEb!ws
z&WfybPoLzM{Fvm2RsRC}WV*M&KE;oh{dh%6%@&+0IL(jge#{U~{aJp@6waDII1=-!
za0VGB=LnxGI8SiC;LwZK_|8r!PK=Y2OZBrE<XoGJ{aEA2T0h?KV~HPw|FtdU{P$y}
z6kJBb9@>`s;qPq4lT{-8qlB~L?{$;9+gD5SO+SvvFK52x$2vc@^GEyrSntOMKi>6Y
ziyv?MQS**%v)|fLaLe%y7ljlg-{c2z`tq0;npsh3tLX4o9o{=+4fHn7lXUydo7RZG
z=f@P-chazd-8ng_vu8r`Za+TYy1Ru6x3I^L5B-=G!mA<d_2VOsY!DNI*yqQ72LAw(
z0{GaEPy8_b2>Wrsk5B#h%a1}o4ss#;aomqD{rKFELw<Nxl{@0cVLw_lPI&uLR?DlI
zM$@Oqjw-Mn&pS#Z{UA9e`0|&r<R|?2%8wuXxa>#kVVNf->syYmA17O+edEXZL48m8
z!Af}4d?|@VPK(YN!Lxpx6GHiUKfa6d3qmdmUK0FXa8Jo{Kl<^LAJ_c&mGkOS*3W(<
zZSQf_k6)yfE3Bk+J080R7i=t*F}Ppf-#E`(=l{-=;DKC!&z#Ps+x_9kpLD|7oa=)8
z5r!K=C|P?k%jJh6#)r5b{m}gIaT@sH_G9Uw0uN(gpT4?q_K1?o^ZIzLC7H)$jnQcV
z`us{}#rY2MAOqd#w5>m8(iH|L#<PwdS2H7i-1OtNA9wt4Ua7#WThbg!rK5Rw{rKCD
zG6C!5w0nNs_v4Se#DD#GzyRyVKYmMo{<V(8{MRjfBodNsUCRIG$74U9L?y+fk{H2l
z6XU2;TzITtTmU76#0w?}mJ}={SXz*!s@1o?_bD4d=j9ej4xn5B69SkRK=}YF1n^V<
z%>$?yKuQ3O1J(<xl>(?70AJv27{J{U&iw^hRRX9QK(zp>2hbp3{Ze#|0Iv3_SdXO!
zSwHezQ-rkws4b+9U|m7}s4^9JAb>uL`qU4gOuX~C>FNA|W!toLHrFVCHRWPScr+0M
znhM$k?SiQR%%+0yG{N)$u8)jkkrn|w9YBu&dIoUzpEfN6=oGO265^QvG6Kj9AS-}&
z0kjXG73~SY5dc4c?UC9kCxCN1@>;Vj`QtWi0vNL>g9Y0Lu>HASBpa@#zSMHqvjJRw
z)F$>?YHk28UCHYp$xlAdrKDp3#LAy$-8`M&Ie;z!bPeFts9xOyprpI-Ji+~&@+jGN
zHNRH?`2h?U8&;jp?;XG(v9?bDeFNwhK!3>^5I~c7XX|+9rX6_&%o0Mg2TE?69|jMW
zQbPoX1~7k99t|EQ$#O|Uo)fhZf-E&MfKgFCn%xZGVS{`g&H%;=e_n80R6btF3!EqM
zPO81gjt5XL2m~=HfXM;W3|jBOP6^=U06q#}AN@Sg_KM)T0Hy{oEr96(%n0C(0G0$W
zQ?gzUU||5W0(e!DvjdnTq}I9^E+5t~H-LHUO8^T*{+b}={5Xy{shIURxW<MU>MxS4
z#Q_Zb(#l#Iz%r4%8NhNOD*{*<u-;Z;E{|0rTrJ3N7%92Y!n%#WMkH$m--_0@K7b7Y
zydA(h0qmBnjR9;DvP*C?XNZt@1K1*Dt02Et*d~M)vhp3m`4Pu^LUu;8-WNh;`tXAQ
z_5|?0^x{L2v*2DKWj4g@XYdc;=K#HpPXag)!1(~5dEwIl4hHZIr&fS_IeZ?#R{`r2
zLY6%gz!w1=3*c}7N2H#k0p#>aqZ!P#orpPZ)n@xrvgit4m7fsKk0_~dQaH)i96oW>
zw<0+mz!|R7s6VZr4iNb{o}qY!KG4=tvMz|Qty<$^w4O@=d>`dMaP0{HF)H~<$eGvU
zt}vc(H3hl##WfCG0Kou40sJNkzX$M#5OZD3pIrC>_$5gn-VmY*{uMxBH14^CD1xdW
z10Y}ZcL$(zdGh6dK@x8Oz9{drAtn&8Zr89!eBIgzz~sUS;9daX0RECUnTs41v5Hup
z<Z&y2+rsY%-W6O|wHCAP%iul|^BxF36lDGX2;o%uSIB<>JQh+kC{F^230n7OcoY*-
zT=1#itzjw=l-u}0#0#M$A&8PelnSDB5M@M|C|EX#&TDJ1lA<}8B*L2OtZ^?FMEM{p
z1g#r2m4c`oM8#-rDM8S;td>U=5mpUaccqFX)q<!V1V_1sWRb9jS`ri3<=R2i5neYc
zsaOzGKZpjjB#16SGz_9q&<euMgZQdWeq%QMX_ifR6TzmO2EXJpi*kDqsX;UgB2CoN
zgP0%hr2O>8yr+aSnUv72MG#L*oh^fC9YpaFy`BjoBZ%4avNMCo3gYM1neN%yY_yfA
zWiy%$@5LiW2<2_qBPr+zqJ0n#F66fh;`Ei&NoBjWt&#t15dVhTbPy!T4WeU|cM@{$
zh*f#lAch7pEQoGF<OR_^h#e2wP+ky3k05#m(JP4jAo>Q;FNoej*duLfjY;bh#G&4f
z6{WhdxrrldQqpsBzPEmU{~(B^8|Slz0YMB5Vo(r+gBT)RxbvjkfgTQKz0jsFad;4q
z7iN4gI)*2LZx&`e7sLpTY!IV@7#)N&h_OLXPKS&M^6!1~c+iLEH{?A}lQ#Ds7lbMW
zXZ+J<d=SKnZ)8ji;>92?2k~PNFERKBu{Maef|wk{6jl<%>p{F6#4AC}WE1l58}-Ka
zoGN@8v1I0SL6RA)<h5LqSwXxi3bO_01g-zwm|ro0#pebwPlWS>SP;azcqfG~zuc>+
z=7mA52x4Uri-K4j#2Z2DFD;e?v6OB}${^>_7oDiQEQsY&&&BfApJmKlG`gsURU%v+
z1V0maGl(^kWETGxVO<dGgZMCry+LdUS}~2st{~nP{!Ub~F^Ek;_^Ku|ce4oJ72FcU
zRw3I2w+m8dM-cBt`A#8xo#6ebWOooBMEM>ed@TMEH~&F=&A|#<+nD`992W9%5b29E
zJ`p?+#HTU`5_&og2Ju-C?V3CGy_5GjCz7?^`%sg+m+kS+BcgUB-gz_#;uk?26GDDG
zh%beo5d11CKN&=;J`O6J5|b_l5jimUTj8gp)}9e^Hi&ak$$25)30@F%uZpDyE(P&@
zRObgFEq2B-O8mt69KxUwerA*i;z|%#gD4R~d<fTq_%(=N5TPJ`3*z@6ZUpfcgH;9V
zPYQVa5yYQC>%W<1emD3!=iYaN$qR#U1>p`t7fmGyjRRUfR%JZAntkv^>$@rvqKC_h
zez;vVz)P)S=@;XjFAeVH3&PJyKDgJL)iQ{Ao%<cxG{OkN<mwLMzaYZW;y;3sAZ|+8
zTU;IUb5ck3x-EqKj*z=_dsK2y$bG>FK|B;Pyha9<AJNq#bJ;IjwT#C>JYoC^AvT1V
z5Q>FxF}pWyU@nbhM=E?Vn#R*GS{N4s|4fP`A%v14q=k?kLa7i+htN2LCL#3h*sn|o
zl|!f!LfH_!9r}G#Gb1sCq!37w1<MICSw4gc!Yf84DMBiR@UU726{?0%ErjYJ)CgH_
zx22RXGcku&)eNCl$ns&M5NZpFWcOyWP6)J(M_nQH1Q9}gAq}Fr4MX@Yr#IDDq{&pP
zUs}AgX$UrH#U4T`&8U^Z7U_g$Atbi$U05rF_*4kZL&y#xCxjLuJRL%22wCEj6UQ@K
zO7Ukx$PjX@V?Q3Oq<M{ucNh0~81HN)1|%goTZiygcJJ;X^a!DiD7Ot^Tc>^w;q3(5
z3qC8@A%t8Z9Yg3Ugw=Kmp>qgbBzbaT&W*{|Oykilggg<JjUUKl&k*=0Vr!3QzBr^}
zuaGruc;s`WqP$NCeTDanO8SRT5ak0n1Ttp^hpeke9-~7T62eeP4ig+HI6Q>sqB<jl
z9RDMJR8+!U(3lXMA&d>-c@a((JiMsmxDfw4!_Jz=i{u3ksE~<*FABaSNS#SSCWkOZ
z$jedrD<L#Ya8h9!=SHi{>4Gx^nVcDdy?6%6>=5RJP&I;T5zGx?UI_C|EHE)Ygasjd
zX5e!JuZ8e>2nhyC8dw;@q7W{H@O=o2LwF;E?IG+4VMz!}L)gM4Gd_J;2+KoQAHs$Z
zR)nBDTd*pG)gkL~+sY8yCOApn4B<fAytN$n5Z2JW3C<}A&Qe=@E>Cc-qu+X^-!9Cj
z+UWDSZ*%%pa%^T>ZF1fTVIzm~rO}&0sCYK_{Z4sfv+_PmaK6hWcF4iwSYyXlv0<Cw
z@Ey-spM8a}GlY{Nd>z8B5Z({rAiEaA?hrl*;X~f=3E@J5^O`+{KRL2T>>RPT`$r+{
z3*i&m$q6IEk3-PT<<hEA*?A{l9^EB7uiT{3>sJ)G6P%xlLh+K$&qFvA!m$vJhj2K=
ze{952hSnyIWlbGV*K>5;)wA@rWRfqqSn4@ymUMm@!if-G=}_?K*#frSyrlE5@uR=u
zB5LHwE9v|ugj2LFgiR%#--d8HgmWRFzJqQ#69VxpeO1y)!eeep=c5jJ=SAT=sh^q`
zX?#|)THisldHfK9&gIF;9Kw$w{6yPA_&tO_#QtAG_?5;tc3cVJY6z2iIUckuxE8|W
zDvl#?5SjH`h(E=aMDk|{*EzVX|K0o>oDWOV3u`$F=`nU8gwGo}%0>E6;tFBz-~l8m
zy%&O8%)VaIxv_2D8No+O(!C)>Lbw@%F9biwm-FX(d@zKN3?jL~M!C8#k2vq{IdgNb
za0rh|I)_~zL2OXUc`Jn5A^aP{e<9qVS}Et<5dP+>Z<9B&bKboW?lXR}gW{71A&e|#
z%|QD9%%)x>jk59<m2y6kT+XG(Av}@ER>HuNoPrnw#SO$7=-I$g%s`6<j!m^4RkQPU
zlyb&N@^~pH-AjkW8`dP`hd-qZlr}KLz)%Ba43stSjDZXT``+l0XrPLLs=|{DBpWDa
zpuB+!26ksutYn~~fgejbQw(bz9ZT;=&QkA0#`sD(D;vmqsvk);1Jw;QHDEJP!$3^~
zFi_t>Ed#X;)G<)kzz=6~=b3rmw$5qZ#8J<HH8iyx-+nfNSgN$Mfq{mGwH_M_HeyHG
z<PA0BsZU`O>K8b6*0Sb|-9V~==2S4y%s`rfbjgib+?}~4ZjO0;F83*sbZ%9^QcoM`
z*dT@Lw<XOe?IbbZ>yc5~nQ7pi6C<BB(1E=$(8@qI`*_IF+CUovIqY>~NAPn8KcIWH
zuA{91hk<rdB%zU`XKClB^&RaED=fTS-@yuV*@}VQ2KpH2WT3MFuAO`XT?}+J(A_`}
z1KkX`wx|EmE-z2U?j1dQd}${oJ;k@Z3~P?PQQCQFa~6dga`RZjsdwt6)^PMSFwg*F
zOFsks#XkjfLJh|N13p(zlIb-Z#6boIORnBJZ+mIy*QK4q3=B80)W9;DYG4E-r-9cE
zj5ILHz+?kc42(7~#=r{(CKzxU7%L5pH}Je+1%z>uB<VPD^x`@W&H)~@WTJr=4NNku
zwVAAEzpo^{WZ+~&2X$yaad#cZ%LZOC@T!5?2BsRI$Bd1=rqS|B4)W;+W*Gd#_X->}
z9y1Nh6649Qmv+uEFxS9*0}Bk?DeatRV0sfrmD9PzIc@R=Ir3=I8=jt2UPxCPsMpA`
zSc<o3n)3eiILb?xalRq)C7fDioS&V^U2b57fgJ|k6Uj;gZy8u;V3mQ@2HrHVM)cQ8
zZo4whA!VGz>aFuw`FaBz3~Vv5)xg`F1_m}6*i0{-$(>rpxzRv)OV27T3s#qLzAM6G
z*G6P!^e)?@fb!lMy|;<Nb^||W^d3;jn#Q}!ICmP@Wniy?kLYBXd-Z-Av4`u<zy}6y
zrDWwMCL~w3miE~)&JPWkWt>#lCz>A{_(VLpU$9Y+0(y1*#L*?oIuFp*1`dk+(4y{K
zU(7mW;IILMl^8f;;HZHchV?M<3&HaSzT;3DI4;RA1-~_LLdaKwR6Z%>Yr$^>PjONW
zw4T(QHgHBHX9c??mZR_-XOuikCBGo@pAB3Ta!K%eLFWD-<g(z8f<GB(e_}AReu?T_
zF>p1?uL=3pz;8l+7yLu;PeB&E&gmUjiR3Rv11>$02Lu%ZssSyk={Mkxa@~MOxL438
z_|R_kk&k+bJc1$&2^KVr2^)wo5Sd6fagzfl^RR)5+nl-#wk8ry+~rhnlk>>HzXtv`
zaL>Sf0}l+G9qstXK>W+2`J-Fu3(7rYylv_rCvrvqXW+4c1QR7qJmI*Th&2&sqL^ug
zO8b*m#Z3^u`g0_4ZmYZot@28k_~w@p@w8-fFG~723L1v`pscf$iPEMObvx$fJxa=B
z@iHd5-RrdLnSvyfuf(9Ti7F<_nfS9+9?vNiO_Ud2!9=BGtLD~aohhbuy5UhtNI_X=
zRTI@r)HYGaM0FE2Ow=-Q{)Z7YO-w86<iBYQZ(_yy)SQCzjT|e>I_sKNRC(umJWOz>
zR8Nw-WGhnN<V&GF7psnjBqsPD9F0vhGp(51#6(jQHW5;uN^1`}?1GF-l<X|)tY^ko
zFq57#(cHvf6GLdB3C5xhCUV(|iIygwF_B@Sjfu7<GEHQe$T6)CV||;GTbal<(eZpP
ziySZOJaV`PBR_d-6K^7qA<ki<or(6Q6~m{`9>6eIr;39=!vCy^UPp5HD-&1CI&YPA
zb~Mr5L=O|4OmsHU#Y9&VDVIl-Uz#3nUC@n9Cpz;u7KzS=iB1apB|3Yu1{3{F6qv|2
z(c45{6Z|>ob3^-%yOh_*wDzTw5}ibUJx4!|_`|j>S{4j2v3GFafhGoVtaI{~v)Yo*
zSAQA7vj#VBLrn}bF~P({6T?kBXJU+rdyO0;Olux)OLUGDa&%-OWAZ4DT1LTW6D<DL
zXor(SW8!(yA7^5`3GTHP%p1Vsy&F4TFwtOVck&~N&KFI*WMaCB873x~m~3KGM(<Zl
zOfjv~6OWfU89vSD^saR~es<fum96upnz)?koMwW&@3j##P0TW_4clC{Zd&JD2HV*t
z=ug@?hdyV}Yvky>xBEQS`NHUyKaSwkea*z{9Oy7wgt5@XBG$>WCKj_(CO+ppF|owN
zQWINEY%{UU#Bw&&H*KSd6>QqXS`%-XSY={0$JfN>*E<z`7{WK@cFErwt`U7E*O^#v
z;%yV}nAW%Fd{we|&y)=u!3!CD(awE6=0KB5{EV94Zf}wzn@zk+xBStR-@<QU_dlsi
zgW2?U6FW?N!qGJGo{60tJ`*3A*k$5<6Caq^L$i0p^7m$Uo7Nv~un2#mgrB<empwid
z$$?!X*dpco=rI!?o7UTmWyV-PMqTvdSN!EPn*FJXgJQs{($*hzerAHgqTdQQ%%L>l
z?vZiM#8I(!Q*QnV6JMA(X2Som^=2=R<5K)f+Ih(OI^!!7Cry0Kz+&RGWbp?0DLTAo
z?6-7I$oj2j{#yP|?b6PeIBQzZ2Wk2GmHCu2TAnxYorw!l@FJI_iSOC#Ue@ocQ{mAD
ztKA<YckhwxpG^F0!Z2Z)_{GE(6B-RRan-~%6N=dETAfWN{A%Jiu7%2JzjFx-saAT(
zg^u}@{AuF4Xp-NMtiKrggizuVvcFCzRdiTYzn^RB42F|(gPad{MpEK2;bridlIs&B
z@tX(;_a-`-3`J{;-0B-P5n+%FqjK1qV>eCwXX3GmTRa7rxWnKt%J2W0Q!L5ZYEAav
zlDuc4Zj$r9@CVV_9t!zK@R5msqw>R5W1k3*38PpT`@gOD)Pf$x!-x%|d>9qNmLKB6
zC=o`y@D6)>j6a;85Jp)^GPh(HrG%G`O3H+>a$09*C5j|TFgcoAt|)mkaon=(iec=o
z8cWTTFqq^~wR_(xVN?ynMm5o_7Dgi)ke*pRj2a@T8OFSaZ5xJBD~#GAsS`$4lCx38
zJXTd#B=rOlMtva-1eweJF4&qyXEu&XnuO6b%KIicsgoMUQ(?USO~qzmq)Aq-(fy_*
zIn%>fmgMvl8%Ud14(Rc87%jut6vpN-o(Ur(jOk&_2qRO9^bezeR)x_jjBJv<j*ek;
z3WEmZgwa}b+C<xJ8-_!8JHhsX&kA-Bq*b|LyeH<7cMhX#7~LeROBi1yIpZANyEq(q
zVRR3phsayLoy%^1ye+GzBzr~c$rsXFuum9$qw;>yu^14>z%V9;@nRT*!WbOJ*f5?C
zV~A+J*E7Qz#!%_VuxQ!gVLTV*Bf=Ode3anmsC-NqKfl(A#`B;9$4PT9gfStE@nQVA
zEc;55b4Gp-=9a(aXudO><R#IW62{A6ObTOi7^V03XQ!?YtjOF~!boV=_u!iBX<>N#
z<xCCZ?$;Gb=was0<dO+vDTgeKSHqaicpk>0Fy?T&ep_)~81uuJE6ZxvlDz*`W-kci
zwJ-un&ULZr>lbH#kXHV6$z^ld`}=oUnY~z&OTu^~jNV(bc*G_<x2Kn<!g9%aGmJGt
zR!EmuhOsJ))gm$0W{?v-d+V+Z<E^Mqt_`fXj<e#!Od7nN`b)Amgz>hJcLX;Io~u@o
zS?`9iC5&5P+zw-F7~8_Q7{;YAwuix2zK?`)G>jdbBw_3fV^<iThH;S7m{at{^bf+=
zLuYcyBs-Z5mrNjjC|Uc%*ef-BBuUEm30a%zApbawPb7Ij@U9f3{If8wA4@ze!p{W{
z2^y6W=9JE)!WUs23*#JX4&yjI^GgneXT$h1j1$t_SE7F^jFUpX7Gy`h38Tn7>VGT3
z(}HINTc&3=zmmwT1K&Dm=XYUT5P6Z!EcksGKZJ2pnz$Usk71}`Xkx%mVO$O48t0)T
zY0@uYT#@2M<{iG0_-hz9!uTtU-@^Dk47S1^b@wFxA!>iJ*CM0=loJa%>!Ln!iH^c0
zzo-JU+>&Gso-lOb13TqY?hV5ihChrEwL0w;w*<lnh7l5*!=h=`ABGvNoc)T3yvQ^3
zJR7C2?u3yNvBvkV<o+GTy)f>F@qpnvf`kYjhVf4raia4mTJvKe{|f#m$l9Jnb7LYX
z7C~_-vf@^!SRqA|fen?2AWeE#GJ;YO&|^GGi%wz$NfDG0PR+6r6uBrlf^rd*7kQDd
z{{Q$^5Mf2Z4pMEU2r5gmiXiKuGpk2XBLdt+{hO#6L9GZ@M6fb~+7Z-=AU}fM5!8*K
zUIbYYw4!Fj`hVvJ5j2dTzHla2mPl?CLE{J?fFd=5CJ{8Ha?{lR7NnjU*mLrN)VXh@
z*&^_+vi{1s8M_(5QxP<eAUy&{BtF!(!q0tUhLmV`bVh2sWM_*Ao{1nMf~O;By*Ra{
zV1vb}<acY=sP}7T@^nXL1c}q~uC7RB>)8>swd%19%MolH!R=Y8ZG^}4i)j}@d)}H}
zlA0I6vk`O<+q!Zr7NzD=z9_X*1RW#T+P(rMueYzznWipJCGR4n(JagCZc=JxY>n;_
zymUW}M~?`UiG6xT&`Tsk=cev_BehQieIpnj!3)xQKf$4b{UaDXJ+(mifCvT(86-GZ
zkoFIu>xRdW42xiR1kXh<B7z6QVqEPjjEvyKveeO{Nir&eThn@yj1h@5TEo}~o{#cz
zLhAn%Ga-VB5iG2duqc8Tr6ZFgm?GpQ(U~OevYRhQ%TA5p72$Ls?cp&kf|QpkO^=}6
zs?-^hH8X-)5xiPdB!c<TvU7yY6`Uv7y-y4)Ul74-l6+lop&)B6BlRz4f0LbW2rh|W
zX#~q6ST4y6dj=exm&)9MGg4PYusVVp5&RXwn-Q#u;9vxwMX)x4w<7o;f;|zei&!rt
z{6DI`13HQ-Y<ndk)HD)$3(sPKED2JQkN}~Ek`Q`VKwuFBMFa#?R6sh?1VpN$pnz17
z-V_8>K#(d;0YwBQyEC)1b!Pu(-hBI=?>}eGbDsO&_xAVRot?RJ-<7oUA}kZWT#&*Q
zMfg~_V{-PJGc$a#1NmBZRS{MfVGV7d2%i;UgD9+H(amGm7h(D^8x!*Sv<T7fS{nmC
zkL30R=gY_0^G-x<WL0Opz$m_m|Efq{^$Ko|Xl@a*Rgf8ey*z(g5w;g$M-g^Xb9p{5
z&zD(K;+@<!@J$i+6ycX5T;MuTguO*L8p&rLXYtI8{WN2(#hEkR4iw>F5f0Hdig2U|
z@xc~}9&3w2373WcPR*v|SP_mF;kzPyUxYJ7_))StA$Usgq~H(i&v++O@j5LMHlO?_
zc1XPQToHa2Ath&v@b14YNzRLeO^z9ocCiR6huJO_;W8^6@BEd6`)>B<7rUL0cU~#N
zjUwdl%DP$v{c#p0*NSkx2qeD=l5p$YP0^`*yn_CA_MIa9UIeoUVa~E5+~rIx!rw)>
z$91De+MhH4Id%NL1ozI4AMjS;Uqv9+eXH<c5&mI8Tr>IDrwEU^8WiE;rmTO9@Lv&%
zicrv}Puq@Z(;Qu&6yg5)EM5${IH8z-yfYl{q@?#txz!tYQ;VQ+g>2l7mxpUbg0o42
z(<?dq1pR_6C{To;@Q|Ppkzbn~Z*$=(7s|R&&SjZp3Bi&so(h{C<-*ccy`u%We<Q|)
zQZCDQx_y~NEbT%W30Auh%l;|vLaYmwU8v$hoD1<TB)WJU0lFkO6I^IlWR3XI54tdz
z<ibxscB|+@>q*(k!WrCNt6L?JP{<vRRbAG0$J#Dvr@K{ip}Gqb*LSPo!sEBHYq?NU
zVyW=xX6CF`>92p$Wmwg2DK69z{c!^ZGgVy|o_67?3)ftD#)W5Hc+Z9RU3kugdM<Qx
zp}Pz9T}X8y$A#uD@TgCR3yoZ8>_P(<(p*^5&X(>%Ll>SGP6bMcycV^yHIXD4E@ZmU
zRCsZ0mhfgSWJiPp-irF)R4rU+=|V>rI=PVRLMze9W5Zo&!(MWsy$j5o`fVj@z22An
z|CZZ9<i&L$c6K4(g@Q;8yGU%I3tc1m{I4dn?cqXC7hZN@qzk=V=<UKl7haGgeO&14
zLO<awu789KU_IMg^<i?#Uvy!R3qxHP=E7hXhPd!jM6<Y(#g!)?E>&{6Fd|YD3X3o1
zHp+!pIHoSV>B49i#<=jh3*%gP)rHq2!?BT6#pN;ytHI=Nh<v>06jyA53sYJ-Zsa*8
ziExSwZ%NUUdE1a@)%<N2-jS$x1)1SgA&gqv&cPs`j81c5x(l0J_|k<LE_~p^G8dM+
zFw=!uE-YlBtZ?7x*)Gg?VF3r78$n%|>%!du{pJbsRQaI^*7<dBB{)B1D}Jk|ZD`lx
z^LC3_8O|UVX7{i@AlhY5<!P}bAF*e~=J2ThkDtj|;ljr*eConyF06Fn6PI;d`8t=i
z&1sbjYh9Mpiq$Tx{v~6LV8v<a<i&SWC41(qcVWw~U6v#`H@NV*3tzaf(Pe$mI&gLL
zfu)vD3f7i6oa~!*wN>M<T-fZwH!kd9Do%43cDk^O6WN7r?8$o8v9X-p+$Gz3e3$K1
zPH^rJTv<77H=DdOWzj(!eY`S5cHp-z?Bx`8;b#~2xv<}bqb?kC;eZPVY1JOf`NAQ#
zuA1dC;IPa38i@Rekg=<*Z*zElIQ=LcmzCr@7ruAljz9B+3#VN;BmATbKM0}xl#p*`
zM>U+$=fsk<zr2}0x<KS<CzH0NoTWLfil)m*Hu;<j=Uvu;`MiD+azXH-;ID$0T(~TR
zI#-0`oT_r&h2LCopJ;ZIZE2KNwQNP=4dGc0<8Qfen{{yEcNa_-!kl_N)BfQ2j?ey+
zW+1@}2eR(5Lmsra??TLtERw%yZ!Y}p!b6TM7oR>+|G4mo{qwNJ+BdQvb9L&G<`(?d
zh5v*+5iAlcyDQcuglcDp#t{`4RFP;AxkrlDUGR#8MNrKzJRlg1XoiFsf*syVw7Kz=
z+uFQT+Km!!9A0H@^@$b|<+k?QP*T$UKYMIqgp_jQJK1tm#*MOWlyjrJ8}V)=xUC&K
zv2F|)(vAsv#Yqm__tLdZ5`)~7@}z&)BsY@X=;c9g4=TD*$xWZ3Snoz<H>$WX)Qw?o
zRCS}88;#s(>_&ArYPc;QSZQw5bfcCVb=`Q{joPgCKbBv%6gO6VY8^3MM<fuWzTJ%m
z)k=}<nQR^B{*1_<6?{&xo*S>XZC9U_7dITKZa75VK#;E4m?~X3Nkcc!PDyy)jp#YK
z2@B(zxY5*&JU2SHk>N(B8*N21%Z+Akgf1jBcO%=4nD*^*B012dGV`Ht^cHTk6k)C#
zts}9mBGve@Yx6d45PP?5*Dey<-VO6g0+V-iqmvtb-015@=SXa!8~MTu+?G$SE`s-t
zMv)&{(YdQcb#tS;kRF0P1({(lH+l;nWyZ`8#q@KdzZ-+xxL?ikRyKeGQO7!aXQ1f3
zAoyY=ZRuaEZXfK%kci|ZH&UcChr8i)<9#=#xiP|xm)-P?iScfXWVJ_C812RwH%75D
z_hr2zX^Xa6uDf21<TF;tYi`SxJms&uG0tsyvm)me+be#8C`@u=vKteHzv;%6kx7gl
z9gLac##?Sob>m$(-ge_1H?-fZ-pjggVP4Q0+4tNS8*8<(^^=5xDOS$Y-IyU+t#so9
zH)gsqSArcSc9!tjf>fU4M%av@d$oBYneWB|Avtps?$pot(2a%6q-qZNA~%SO-B==I
zsURgExv?z5m%Fhd!ao*rGQs%?4cm>?lI_|^xod>bI6sU}Wi>u^<1-GoioGf}xbZn_
zrNE}*3pX~p(N95t1)KQsmm4+(Pbv7yjm>UccjGrVwz#p?jUU`N<;K@;Y;)rfC%zlo
zY3gnqaO0pG4L?euo8z5s%iF~+x8+dd%lfIi-S~!i)=%9d_^sex!F_`J1*tIkSQ^i6
zqI-^^os)S`@DVqTa`kZIdpE!AvpoDBccbI3l!ig;QCP~Rw3SuTPPlQBYe-2)kDk`~
zvFBkmlg`CXyK%;i^KSgY+2O`dZk%=FoSP?nru@uRXt{0eG8^CA@$=HgcWUv>Sf2e(
zm+lwbxah`J8jqXKA90CB!W_CMk2unS+4AS<GS`z6j#^tCJfVx94$)Cmi?&g8WuE?2
z(hWCmvdM0^+_>e&Z8sjc@i#}ujo;n4$2sE0A8zZ$;4V9}Ui^r18GJRvQ>qqj81kny
z;V-Uczs2xS9rhc~j^NSs54lLX@z{-j-PW)CBR5*CO8I$NJQFUM>iEx%CoFVE6kml{
zKb>nV$MpP;-tC6shTn~V8!C<24c!ed)3%M`n;nnaI)wQQ?`OuQ(*2F)kc(gZ<tLA?
zpUQLWgItc>Ft~uw-p<%=UPx(`pPch~N}0lBdW;Qo4PO&QHNJl=p&&{@V+BnVL@Ow%
zpsIpu3StzLQV^#gUO{OEWfYWG5UW@&vC1kar{L@W>)@KRv8hett#?>otxmL$j%F+P
z4l6-HqJks^$%<7F%dMbbU5{Aa+dOWUR#8DE1(g+4QE)xpIvYQ~XV!y*?T;7aap-w?
zW251D)fLoGkgC9;pr(Ra3Z7F?PeE-3S8F7t(7aQUZzWi#Nz_rSZ_2>3!u5ICh13;%
zTJRZ#CszGWY`25f%XbV+PO6$zpY!6M`YU5n8z@Lq&``niRNER&mzU{^b^HZ~Pfc)I
z1@RO(1%0N)@veaKrV26?<SFQ&AX7n>f?Nfy6f{$itsqB1bH#G1^>Ay7L);3tP|#9A
zg_|i?$|vyliH>9FzLWX1R?tR4I|c0(w53kR<oVr`8@z3M^RV@Xj((2#83n!c@;v#D
z3OXt1rl31}BgWBLL4krU3i1`u!{*#c4mv+7R4i-ks#wlFX;&w!r1E!}uD*IG=&7KW
zg5C-^C22f7*E(lS;+$hqeH8Rnu%Nf)C*qUK12_=8D;uC-pn@F=b}D#5!HWuJDVVKb
z5R)r-L&10jLlnHEV3dMa6bxl!6^u~uGP}rb+qf=exB{nQ{kP(9Z}`<gx7Q<C`98^c
z3vBjI$x*V6f3$)z3dSmUU9mjZ^TVH46}-l5d!`-u+VX-yFZSaU%g+T(ojp@A(c1Gl
zLBT`??<kncW-6GZ;4KAjD_GSjd9s2j6t0Tq7dNkc*N*>xGh1e`jg5LFpQ4kX%2Dqs
zcu&C$1s^DQU%@m5(-q54H$Ri7iw$PZPkKj;$+j#|#+t80dD=N09~4aQGe^N(1#4-;
z3g#)8uV9&i<?K2IA1YX)V5x$I3Kl6?%+W8j99?y(W_?+6dvm|!zjLyaQrYm2Xm6FG
zI18!`v7%Ne_?R_Uu$sf#GkK+gPuP=oTVbmVz60f0yxPIBM!~ij@f@;F_bX7sgS*!&
z_>}o5*sS0)1sfE6p<p9}&sAKsEdIpDw$Is(zt!7XE{9Fq#MosiUn;oR)p8=nLf3tk
zy+y%R1z$5~1yA-yxw~6#m%I0|jx@YDFKW92N;qUx-lbqSr<;On3cgXWN5M(jn}Tl@
z>{W0?!BGYK*oO-Dy5pc?ebKYwqZGE3&czO~Lx#m2rjZOv-u=F{pz*H+D|Sr5aRuKg
z_?{VdiA}5)-{GSa7Ck&a`GkT?Ir02Opjz$5Ij0nyR`8303!ID!epK)?*Bk{uaVgkk
zdAr~N?3|DMD`5@#a@#ot=M}tr!Wv38wn3uvB27!dWd&C_M)}F{CsOEg@sfgF?Hf~P
zN2g?d7DvCCG>_{Feq(PaC{l1k!A%8!D)>vmEd{p~{Gs43Tc_Z6&WP(NX2)dL!@ji7
z7vobo(e82m>6v_=Q>lx!P;{@D);`hNhxtIk-wOUw@JO-Nd~{8I$lqnVt%l#K9{vA5
zR`9Qa|G4Tts!!L<jiy@z#HeE_X)cZeQz`H(P!y;NbOl}ont~O5lRaF1D@XB{g@5q|
zC0c7B8^X2sY(fI9CBP+GfuX?UEy3#vA+d)~W?SC<CL}uP4T=+rpSjVfo>Eal#fvHi
zsfbb$ts+B3rplvT5ThbNMWTvQDoU#;r=q+HwQE!vRXoM0n44%FrLr#3`tuvBB2GoT
zit2N$Q!#mJ(1AoJr@-0|(_(Cn3M!IRK!sgJvWki-DyyiXg6Ha2Qo)~t@`ZWBN9A0<
zZfmw8YTY=?Enrm@)l}<dpt@iUK?ZB8s3p9%U`j+@M@V#RR9zKMtKbK8&$HUMvz}3{
zM|01r*jldeQlj%Y7MJL($Cg%b))yp672*(Vpdu|IPZ!cquto)EBNa_6I8RP-G*;0>
zwI1yAYO11V59?WUmWpO7I;!ZTB3ng{iZ&|Rs%Wl)-lJNnXsx1!ii6SVEmi!Pkg2}i
zCs)P5Dw%X}Ne?&^J7%P2=CP{nRJ2!-$Ig)!@d5S2l{suU*R)SQOReBedsN2JSw+5z
z?kaky=z2J%Kt&f7g{tKOmCg#gvWs>MV^-Z%{5Ce7Gm-L!%cFa$=%u2civBA0rKR_;
z;OwoUj|#f)>8oNw1t&kgYn2eiAiYTrU~{fzZ~-5vBFol`*9$7Xtdm4CSj7;IzKVG&
zUQ#hs#XBmdsu-qXxQZz%-csRIE!PPnRJ^QO4*_0zDSf0ghffdqkYN-p!JWqI6&0h|
zKg_Cv^Hmk&g}f#>R`7K}#*P#6hTx-0851J%i7MWV@JT`@OXf_{u~+ijDsH_R$6LF;
zbNbL$-&OIRiWw?CP_boMh4)oVV?Eg%Zzhd)*?SrL8(WKBhnk&ds+gr>4*SP$J8~s6
zrJJLJH*>a%brqa%uCBx3c*R$LzKR7ZK2fns#fK{QdtkYW6)F~~Sgc~1YPpbDqGBn_
zT9rQh;E?ZUMIHSlz2$;FAF0-Z9TNTxVOAfj*fzc5N=}Wf(c@=jvjTjqQN6QcHPuvn
z&RcpFYgKR;&^i_CWxPIKX04EWD_F<Ie#(N5=6=S10Yb=6ugTn~ViObcfscxv)BAiW
zoxfSdKV2MOv7j>PBrJN1$hWHaS_mcERBRW%BO=);WS5HFLgrn!en&2DD%iuZ?wQtm
z*?@g2_OoaWb2J>Fg>$BBuxmJ^;xJ28@kqrH6-PN1DsHPdrsBAYt17Ok_>R>c)Zna&
zb1E9uc6_hmgpiYhl>DILl<?DnX9RzY#Qvn>XW{2LJ!?D8tN2C5uPQF7_`7lpfBr70
zxTspchDXL*F0@v?(u^)Mc!zvh#T5?RE6upYh<-@9ieBerQE^iR{dV0@!5@VO4U;c-
zPoCe(G6{|sAK%?k!NY0qGM1J=KUrK7$Hf1^(UJX}_c^awfx@VVs&y0omx>3hhH7oF
z<P$$$?5>?_v$ju6dm$me^}?LTD*ok4t06|ie=44+&{cR<6sd5j@Th3~YLr`r!c~`<
zbWHxMf|EVZH>AAN(<Iy7QJLFD7EWkwomk>i;a6d(Fc~Fw8&nZu{;jP0Oe)X_`4h~q
zkHac#8lKWnLIdwDSz+FK(dW^j+bK~R+BHgx)~t_?U)`6>Wv%Df)KVHsYpAB7x`r|u
z%4$f|P(edE4dpe&YKYUUn<)MQ_T3T9pSh#^qvACrXjZqg>-by1k8_z}l7?grl{Hk+
zto?5lHB{2jd0^$I##tu^8Wo%`&*{LL@J^trX1VxGOmgzbqZ%4&YL@Y*Xz+Kj_IlOQ
zP+Nl|$ufR6E$X1HU6QkohJ)d#DifO3)$p{2z8d;zct*ps8k%Xy*6^H$dK%I-G}KUE
zv+lH0S?$KwnE(UVw|59<uz`>?4TF-L6O)|JYiOjQsfG*<BP&<@b4KbrYf>9)Xu=FX
zv-tF!PUU~FP3oSUsUb_VeiW|#lgYJZX=YlEhUOabH56!Q!4fsJ*3d@7n1PjZHMC;$
zw_0azEJ||nPL*36+p_aDbkNXILwgN*(t&i9_*IgVcYXW|$@}?E>@k*d$8v@CeUfDl
zHK(Prle=h^ld?h$T{XNp*IFF9Y3Qz@mxkUN7Ilm2p`j-`<PX$8l(nvEFaArSA<^+!
z+J%(EU6cE0I6b_8`SjN?K*MkiP7MP!yr5yIhG80BWQS;YNwbW3u!bR;W#{x2#RZK9
zL%XWzOk1`pow1vuD>B=zT{76H5gK0BFiFE?_MRBkYZ}IC*4@r14X+3pEx5;5e~gA#
zHIVQ+Fv9V=hH)AuvN;;w&@i5Dc_n&+*yovl>hniL+hmo?n{y5&|M=5v7@VTvEe+E&
zOlL1?ct^uj4ex5!Hb{CMqC-7a+mTr6J=*8Oxc51ZnQ6T9UstxljU*?3re|pQK*LN8
ze--B0lAW_OJe-*|p;ay`OiO#AS<YMy^E7B0JR0U}SfJr&4QDlcsPTX)Y|*fly{%!f
zhP4{jX;`9RsfOhmR>)|w^p7+w)2yA1?5m~ya``vsV+|`cT<zPOl24e)>U8=7UZY{#
zADOEJR|`_U;tw!ty=MJs-Js!f&3aP(sfN#ltQwQYVA;`*FEsGg;U-Si(T<I*20vjK
z?V#jKCe*N5Vyh%Oc~ST^GuLoT!*LDUHI$rZ+o55nhV>UR->%tUmxkRMjxc}57AAkg
z0n+fTv}I5G0$TfC&H9(eyOe#jnM!H<1xXHYK1TQ<A&0F#w=s%O?0LJ+9j8k7<nK5%
z8cu28O)1UqgocwEe$cGn$4*nDD@<xe!c&9l_3C+A!@p%3oZ%u+H*09e3O{Q2iTyS+
zjTeLGG@Pdb7gAcLh6@_*Yxq;cMOqzK4-GdpT+(n^!*vb6X}H2)sGiCF`&cK+^3Lk2
zhHIL&9eQ`GK15mz7c_3rrODmWaGT4KhPxW>aC*+O{jOOKzF9Gj9g_#{x8PHwd$gP(
z$-Vm|Ft_?&rTxWj(eRIkN1Ekz{cjqQW<5`!(Xy`^B|GU>kM{PM>*0{(0`U>g-Rw^^
z6lrj4P&Bw?irvWV$3toQ%*b0X(XnJkw8}NaQ$KoS!HENw_gh_qm#divsUG;)GtA9{
zDjo!AU>c%4i1r|)!O#%aVDnf{jkxfdOmf)9%Cz|?jsJ<B@}Pvrdi3=4N^2#dsb?)q
zE9pUu2XP+6dr-<_-9ne~pe#$NnpoOnnIF#~EayRakM&<5mZg+!V5JquTU_e7vwgD1
zx~HOMf(MBn#MVfwAebbWELc&nl3=+xQPipGK{XHRdhoOd)jg=;K`jqzdr;GZhezs+
z{l$94LnBYS<4EzKjtB6-?y-Jtla8hEC!2o0I0V#bJ3N7pU#fRce#V1mJ$TN827g$m
z_|mamJ=Qs~Hv55UL&~;tFp53nK}!$PJV^JTu?I~&Xz0P+r!#2))a35d=RIiTv9_UF
z{BUej4>CN~0#0Mj^dQTF91og%z<-p@JjnJ~4>aialO-+@-;131ERH^{NOC=B<v}M8
zI(s;pXyd`rYNgtH(AHxus&o_I&SSk#;S(*65j*zpHtq5}xbS{X2M;<5Az!;HC*Okt
z4|;ge(}OM^6nfCjgYF)DUYOj~V?DOzP_j^-0$S|1npI-+xr}h}p*&cla~}`-da%rc
z<sS6&puY!idGI#7`cAz89t`o|B@YIA@PY>~(v}|8A1p{Rhyye-m4}Fqj!rGm>ksu{
zm_&{BV7LcP;bR0xcrY@O>SZCFY5ZLOg})*=+QUWOI*0953BD%C1NSI--Ggx+yy3xk
z5l#`Dz=0TSo$@zPf+TMWnIt&b^FQ}vQ!869Uf=Oxs>tUsl?U&6@V*2~jIwgr`?`hG
zJecmmfLk#$JeV!99|+DAoFzDIhLzj@euXqwg!4SmI;PI|V1Wdw@S%`}9xM{FI3i!-
z!BXKLMI_8>g$Eyd&`d|Rj+GvKLT*codAq?X4_32>b!)H48aBs+s~%kQV4Vl+J@|%$
z>w(Lj|4seOPd)gI7TzOmg9p1k7~L!Ca}U0tVf0MfDDv%sn>_eZ2sOX*V6*Tof?Ff<
zuZ3*$U{3ErRNEoJosrmGLil=-IWHU<_pJweX}2C66Zt+VvH0cVeh&^rQXLd>Nbs=W
z5kc1TI6LI)SQd0zB;R@Py^s@vl%EvxgWxH?G?X`+l%Mh7M-P7T;OB_uFG9`=o)bLJ
zxe(F6;K9X+=C2-H5`J0mN<_XgRPwq9zj=_PBU#4{u7?~Z9VK<#^5C`y|3)<Lc<`qO
ze@XCn5B?BxSMXj$=e`iOk+pr`!QT=boa|(f*Fy>Z<G~{#kN=PIe;z#XpooL(L73fm
zDAVnM;(=dum{t{{)9NA;kC3@rt)BD>_X)B^0U<#y&O(g;(<kQt884fTr*zANc$Lr*
z72&LZjE++J|MX<>(3h6jGCIoYC>PO;7gAnFY(x?#q<9DtbR<f!!v7Ig)KN)CRUOrI
z9Gqu$6z!_AZrN=W!8ekf)kU8Y=%^vQrXZDT>8KsyDMIQ9vP64CURMY|{o^EhhFr&U
zGNJ0}cwPwQ^>w5QcL+9!$kT+R3pNz|_rs`0LK+J;5o8Wcg=7e33T6owEVSk5XwEiz
zQO%1MI$G+Oq2mJ`xjI_u7^CA=9j$e=(J@5FOFG)>Xs4sMjy^it>&Vm5T}KZc9dvZm
zQK+M<4!Zs2?|vs8(*|U97R(o9us}!`-FlwG;ON+lEy-!Ty6M=S-I=L)mHex8PaVA^
zpW;|%*jGnC9WUs3QAd9r19S`|mUMhLERIM8Y8I10Iv!j}As;LXj4F;Ds$-ZAs*Tby
zT*v3TQ=Fne&8POKjL`9Nq{NY;#`^F!iLtNf7_Fn?<LWGn$zRhkR>xa9-q!KDj&Y(q
zS;reXT)*c|&@oZ69j}A>Ec#6yQyW{&WUVF%KlR8#$;@Qu6n5bBG!jNp;T^_GLFDi1
zcu&W^2@Rh7o%=pJO~)T~)22&V%yZSbYzAlQn5E-4E(JPf>zJcsmyX>!=IWTIW1Wum
zI_B$GpksxOk2yM3@;=nDNXKFw3)z8fn}0hYu5H`qOPKt)<0Bo*bo6bUxKx6PW~b#k
zjKb!NHfQ$ToVl!DJMy<rIacaeqhqa(Pjsx(v06v7Q;uCHbG8m__h0{ZWkzNFurqgG
z`>Y>NIF|k7_*BPdI=<BLm5vSUa~)r>jXNBjwmHUc%>KH4?w!+)jXE~z&`vqt|JE^X
zNA@%O9GltpEsm`^zSi;M;ixUN)!o@mf5_fOBax_`Z0YXo1HE&1u)<QkQ-3&^B<5)H
zH#+v{IIiP69pCEMtK$GCua5Iu9s6|XcRH0k<T(3c_5C_JeeJj#=oC1Yc}T|*9Y=M%
zdE0SV$MvX;*5@;WZJO6=*PM7vN6z-_k3#w1>o_5$pVe_v#}DjzU;K|cPI1JqMxUW&
zmdH4N(Q#VGbZ+mw=wR@*30;2TB5>aEvyQawnN_cJCZ1zuB%fb&{CUrDUHApTi-N!E
zxFm!vx-8_1;8h*hBJz#Pda#Gve3*Wdi$B*!FG_fETgM$8ZXJq_-)S&9{?YMB$6XyW
zQws01I34$x$*Q!gbJK}UF53R$WYO`rj-h)pJDyB?$oalKn^CLVG$-co$$YHiUn$hZ
zv2N4+KOIF}3ThQz7&7>Y4&t>E8DAZAT#YU8ERJ2<Jy+#W>Il%-K27pSmo_Vx=Vg;G
zI&>XN`=t$jznkryD4&jmj?Mi#>V1_>64Vi*vC)<i^TIl8UYNA)-PyxBB@#Ieha7kC
zih4gc%8O{PWgf|1l=LFTi&!t>yeQ>GX)nrpQO=8xt~hAVG{`bubjWMowM+AN4m!$v
zQT<vpZI$^@67R)p(VY{$sNe-HJi&`v`OR5Sk{2}cVYbd^Hbt|x<n6X)R`eq0tfP__
zmAxo9=BVPurnrJ>_Z*+a=T-Nj2D9>FtQR$zi5Gpn=;uXkFH*c{?ZxJf>2<t-7yFZ)
zIjIi27j?bZ`@F;9#S0ZWKh5U!NP9-O*`?RB5`2zr$#&EeUSBX((00>C<py4)Nif}u
zEFly&^x}EpjUtl9LYfFR^&%r8&-5a1T{@FA6G^sUj$m`a7J@AWa|K%oGRfLxXB#it
zdT}w?*^c?Jd%b8cK}sI~oY~QfBdLzw(m;|<671|nKKsp!E)t}?Y(qz(7hNUT&5NEw
zx(oJ*=zMW0o0`3(D@fR5eI(n_b-MTWVt`a>w3q(=@PZdZy%^@ji(U-!@;NzPB5CS)
zwxMHNx?`{xL|?MASE?haqO-6^uLc#J!@Y2N@v;{qz35ocIl_zj4IFQu%^X(I=^Iw@
zor=y;UcBN339m_w9YkirI*jq+RVn(?4cqh$Ij?&$&WovDyz9jqUh5$SuQ$CIFP!Ey
z!D}6{IMIu4cI(i^Ng|)@#S|~zqNTBjNUG^}Td@uaGkMR8_q|x`#S$;3NhVDGffv)g
zc>H?<D$MZmJC_D=?(~^59cBs67Ub-h<HcOz^91J$E)e`saG@YI7fEwScrE4J@nV@5
zo;N#vyVJ4Ui`h4xPi!0gu@@^M_59yTuJU5F7yZlF2b8g|@nWqPJ8kw|Hv2j+)^jd|
zP%DH_z4*+F?LO@AVS^W+bI$q@<HHwTZ1i$(Bpz@odGVzeXT3P*#aEm!UL5!0JJyO%
zgT2`0#cnUQdhs>KQG}H5V4lKXoMQdo;kA<$kmuXqc(KQe16~{yg>MD-a=7JWhJBG7
z_EW!ybtX2iLtY&9;+PkQCH4r%<=IqTyZ@<wwzqZk`k%E@nf!Z+{ohj&PIz(BiyuUI
zO7LgF(}HKb_)*ADg2kx@$T{2Rz4*n8KfJi>#RZAI?8Ox!7rpq^i%Y_<Jc%i;^HmAn
z_Tr8g*MwiEn!EmQ!fyz&k~h7$CA>J*@51SR;>MK34Z~AED2k`cm3v;?7kNRNb;1K1
z_$RxU`yb}n{`TS_S6zwy$BRc^_`L|w*hEr93-sb&;Y|3SkSBsXy4)>9quF?&M08YI
zc)8SYT&f<C_`L86=j#b(^5mq2K`%m52ZKw5Gnx|bE(`a_iRC0=Nn-QiDIZGs5aq)H
zIbA&3XITiJ4H6%HlTpft(mrJRkmW-eAIkbr-G>@Jl=Gpy4;6e!68%^o;(bUE9_QnM
z-c~;(N|1#8aN|)dNwN<Y=XR~+LuHAo=)(v(vA+t<xT3RKM89e=X%<zlx0O##2|nY)
zvp&=kUfYKhpJjV>B>1!-e6S0tD>(2!%LsY3xE1r9NYZ_1=tDi>^?gY7!Qn%T8mSF@
zxV1g)qjT0NAH33h7&Ot^tz9GCD*buUCut<4v0xLyraojuVy|3|Y34(=4{!J|-iI6?
zn)}ejhe8(NLrWjp`;g~DE~{NBt+fx_x6q2g=*&<5$qD@4vW*XIeP}1KPme5Q?1pdi
zUm4zwuHifQ&{^a>+_IyPPCmS_Fq-+~OOWSM7WjC&L`K&!g<XB<=EF!IM)}a)XZfJ-
z?L!|QdI;|+*h`R6F=ul7`q0mZHBp&PANotJ1`4tQ1AKV>Y6B8pFZl4H$Oj1yj_3^W
z;U(ci1&2lC!-a4;9U+-B|Cfcl6wY|XhtWQCXr1$#NPhkyiwzm$!>hdZ<?=f4Q8x9*
zvUDHDNdrf|6vg)P6wL`fO!Q%~4@-P_(}zjKA!&1bnC!z8AKqV^Jky7_e0bZ3_Zaly
z9Urz=bS@c^_O1^<3@DuH!zwwk^I%2i(<xCbmw8U}VY&}9s6Q&5E&ae}9s7CU#T+_g
zq5^wqmJhR~8YMnTue&aJuJqnKALfg2fe#=0urM+rqt;|D5_zbKb>gURS@u#NKJsCU
z2$%V=+=nlHpsV^7K71^~jXtdO;S(P|=K?O0RX&`mXq`>ET7qi?*9ua&&WH68{;3b2
zMfe6EXaH0wwhixZ|8rvMCRTWaWi7nE66MW;p5#PUW2+Be`>;(UM@p5V=F3a7clxl)
zhamyH6u@pDzVRXG$A3oV9%jW6_hYCZdwtmFLz*Aye(d+*fDbkOsO85&9}f9Y&5!DS
z9QNUe4^{l&9okVJj`>i@kIH@==d9_GcE^X`g?#73_dcBP;UtHNON0-<vIiuJYUhNU
z_Th{VKl<>K1b_D7tdPKR$?Ar63rBulgue)05VQ)C*h@a#5Xog9t_Zp6!}W;HH6g{C
zzeV^>A-5trw}oW#S4K#@-zxg95BGey@57%WjPc_yA0GJN^})x1_TixqMLxKE_{WDw
zqVu2NW3H1zm`U+1XvrrPo<t;<qhs7YC_Z>164eJS!i)8bQ5Rt`_xlj`!RAMRLniW&
z561tW%9J4Q{aEf(Y=X3cyo8V_KW<laGFUPqpOTkUN_c5M$_OdzN34)?5uNgWcqLWb
z|B)m_c%qOBf=PZPN8}ZSus-$1CM>%Y(|>qH-ob9qa8&hM64rrc!}<_w2u4+M*7hUC
zkEi{3#*aFFz>mM1IP6k7)rvcT3G0fSZG6^`=lp!RWBoO#CrDCXNby(`9ey+r32#0b
zq(VbKp7+zo2eSNV<VRyaS}Z|R(OJE`4t1IcXGc*v!;cNUD%7atZ01L{A9;RsU~T<q
z?gyJjn`|M<tPIDur8GHLuvMfVTKmyPcw51Cg6##F15<VMqmv(3XZ7vk$BB;Vo&6~A
zTk?ECO4#IY8(RZf=toyc*v*fALb?kws)vxCe)JO3J0kDnM_=KsKDQ=Oe?JCDaG)Q9
zg}mU$i+<1y2KnLc5X-B0(hZSV2AOJ@AH)5)?8g;9oPLb(W0xPh{dn1rk$x=lW3eBj
zM1Q6X<tu)S_G64lZgx!1sAQSktA4!Z$5=mJ_hXzNZ%OPMf{cAr$ap^{2$>j>7mwp4
z2~K7`|Bw7_Ki=_UYD6;4&zCsXoP94Md0%>!lIbFu5s`l&gk4H&oaM)C2_~#dpX0||
zKUm^CK_;B<#{!A{P;jAOag}J0<!;)DOZ-?W@{jyjCS<uEpZKv#_zJ;~{a7i4d2(b|
z`?1E4Fa7w+kF|cRqmB9TxgYCA=TkpE6A~4v22-)nFGRS}k4=8CY32Q(g%n2-H~X>0
zkL`Z!@MEhVU;D95VmY#m<y9cT;=wH*)}12Z-2BFmJzUTIIO4~*BILX~NW=EyNxJpN
zb02>N{2<|VfJRu!Sv;2yvB{TWPL->8)Q@9+ob%&6*MC30lT3c}<9nL4aJHHgYFs7f
zNeTYo$0<Kf`*B8s{BzB@#x`>KEw1fPe*7#^X9bJ<{1;gY_Kr-v5b2qVGW&iNWDb{v
zQ2DAK*SJdf@z9U!Vw3m$xbMere%uh9n||D!+4XnH{FdPD;(`R(KYxhYT?rP~Z9yd`
zyXCw21%L8az>f!#ZMbVv@w&vh{13ZJ^dI^0n4OvG_?KNVzu-Ta$i-_i>sI84i*wBn
z#ShgFO_CIkPOm1`H0Mg?5uq+fiPsOGAASiI7Z;G(%BYYZ2G=4#!hUoPAU^<G08a&w
z5I|x8B?5>FAU0sVc8m_7WWajETP}c@07?Z=MuMfOS;2aV$*mXMtU}GQ0rZQ_+3->t
zzwn}d`GB=4g}Zs<0yuapYw*CN_yFn*OyUv56#_^K;Q0U=1&|y-#Q>fS;JE-Q1yDHv
zdjNF<s1iWc0ICI0JpgWz;@jj|jjeZ}%(+IudK~>~%k-M8Pkcr#!P<fY#&=B-QYQci
z8M-i<I;_dl0X)N|wU4UP$~wJ@uig3Hvt9u814s)XJ%H2zcBCXb0%*XZn_BymXTMZH
zP2T5+zG&AlfUD<idvD?Qn0Q9%zvMIyph*BZ0W=SwX#g1kWCoBG;MWa_-08~K&HSpO
zSpeAqYx5Fc95WR^OW|f_`pIe$K+6C+1kh1BGdF-scPsLRY^wlVQ?1v;tpjKyQEde&
zX(yz80C_@+zpi5S_>Q|%0B`S4;qHqw`Dq0Kbm2e*&_95}0J;XyD}desbYqA2Nb4Rz
z4|ZuU2RG;Rlx`feFq@fkcXzwKQGEi|9<7vxw!Q&yAJMMb4Y;d;TNDNaFff1@0(g;Q
zy1<s+H<n*Ogb&yT1@K#^WNy{q%Vq9d8XT}bc;}9Yp;Qatqac<AF+2cg0N)32B7hMA
zyd1#l0M-OBGJsJ5%ne{(0IvivI)HHjyb-{d0A8g@IMW7uV_#$UW~Ge{;Pn6ow~HeG
zY+(m}qQa}$iB97K7+byH!~ot5;PNN&69S;HeSFe`|1u^8(5`aY<N(jw%20OaObOsE
zb`i&-a@zZX?+8v6{JN6!-2mPbzQ2-_I@1D}9>9zMJ_umy=%iV+`P|HztV}4AMX(yI
z57lM|Fh|HYy$TtePu?VLQ2>hrSP;O65_NW=ZK05plJk-PmIkmQfREWf0qjXmU=5eC
z^i9#sVL1nPd=9T>@ktCmx!#l4$^eL;1h7i-xn0_dS{uN+01gFkIDqv5d>X(m-j)aO
zSpXXX*c8B*(ubc*4}2jB+j(NgEREV2fcML8HA}VnO1g->v?G9xBeFJ&&KAL~0el_6
zwg6_Ax60zRUF0oF4B9D#`V@Y{`UkL23i_4{NXel$DmghK?1a5kYm!FE{s0b0lA_ht
zw?zk8F=txC#+f;lvwr%u26c`Ea5R8p0kj^I{_Uu=R)6$79>6kZ+IO4?CvuqNWPmP~
z@O%)Bf;bhxX-?rFqJlURz>i#@0(ca_PXYW)Qw-on0A~X@$Jr#NNW(r}DT+3EK7e0D
zazT)iivj!^;k4Mx5q^c!Ji@ODxgJ3G>oH7nQ|8^>0PayPQMU!}2vXs9&UE2*bxWV6
z@2*yg<bD8uiu|vL<^v&r3qBNFG&JjR0RIMH1Yid6p9q<QD&&b^5&J|4^K=VQ0+^g{
zHISN`NIU`PLc9@8UjTmL0l{EI9ul%noPvd=X-@@V3tCG(Gu%)*=lOfq*OAddlneqv
z*n@}(S`$1zh=d?Y1yPzK^2qv*lEN}Ul$F?Wg5?D%j};OZL|*eQ3?@pjau8L5s31H^
zFj<fa6@#cGyyX&WGi22uID$O7ki446t4B0z1W_}>YYC|xL`p<bCy0z+a+s=a5Kjm3
zY!J@{QT+WcEBs6l1FMxP&bD3<>C$j2*AF69a&ScQX&@vmh`Ecc`ZSEl|9!ea;~<&@
z;S6F#5KUQJ5WRxv9YkgjS)$e<h-N}s1<_hab`Uv{9GVMhA=pwdH;4~P<*}4D(rVVT
z*m~PaY`Y-Z3&|6tn*Y-h9ffxi>>NbCkOIMOL39y9&B7qMM)>&YT`B1vM30E1r;w=E
zU+g2~r67h1=_}YzuzwH(gfQ*EAYO>@7ljN8Vz7`Q5jkFK&-xD&a~jUHW3o4os!-hF
z)1y;g4q|)|6M`Tg8N?_d<gW-B9mE(RuSVpr1u<6m>k-MgAl?wp2TDvhF^D%Al+q{3
zXigSBeX=!bQ-r@2soUE@yc6M5g}fWYdqUoi$fpI-a76*r&Jf85LCg$dRuHp;SQycn
z6U2Psb0d;@K|F46+3Et3d?=W{((;10NcdvGC4x%@dr!2y@+}WyMG*f4@hFIogIF2F
z_d%Qp;*%g&v7>6G?F?dd5Nm?g5A^0B)&|k%m&^@8d>+KQAl3)*DSv8vCG(rF&$v9!
zNaLnBYU;mcei6jRAim^41TCkEn~HOIt|DWHZA)X$OhtZjaqTTZYz<mpjeX5IxHWov
z(7J!yCi?4-ciTZz&$l$csNmQY#O@%z;e-m}U=W9b_%?{WwEwyd4g^s!Hm>e+><eOl
z&^jeXfA|tBbAP&n{K(mq!$BMgTKiPLBL;CSh>M+*j|XwSRxjS4@CzW~?nBn2<{`bT
z-Ek*__<=e>{3>-j6-4K9)~OVy`4bStk3swt#5pDp;%BKUxAmSCGN)NO)woT1lvJBp
z{ldA~ul|J~PM*(DDmgC&aXE<chi!j|{*@rE1#w;YRq0GN_O~EzaF~L)9mGwN&dJ<W
zSoOyg-r(^Y;X6V69<)9U;C|x@rBnIZh&%LRD?9H}7{vV`{tV*pARY$s7YDRs@`E6_
z5s{<7oX`AIpC6rZCtly$NyS6(m;)3<TnO<Y{1?QNAi}id5Q>6u1>p_C7lb>AMZacx
zq>@Sys*DtK(?r7d20LZx!YSlX`nm4?ni&!d2nGc?YbZB_n}UBG$fx9~5WNgr_EtKC
zs1Tw<)=0&K#Oj{2PQWM`vKqpi$xDT-=8%*Lp{%4T7ecHgVGiX*QedRLH!zW#LK8&3
zGAB1Fgv5wW1<|>CFe*8OiXl`A;pxgwHn4gKl|!f!Le&uHl0IrnbTz5N@J?Cx#jtBg
z4*U$3&8!_lN(ko+oHtM>1cVR>AsB)^gt{RN3Sls_4dIy(T85At!m}Yf7eccTvO}mB
zLj4e))GurjLTU((5E_MWBENZq5Yj?eyxV$JmmacSEWZ7VqoI%`f5kk{y3Mcf=1uD(
zEWZA390K2TXXQ6<8iLU#D<g!gt&U7KvtPR`O1{ZtCgfDkVI6Kbnv25Fv3V^dL+*u0
z+3si+LhBGZt%&U&LK~6u(~S1)Vc|^ME`(qGJxN|W<H%!goN;sz?8sE2(^-P~f{ZN?
z(nYW^gsu^JHz7M#SLhK!&k%Zr@b{+ZJ|XlCVZ?y6-h#oyj(#EZ57Eml2C{#K+d5B+
zqL8KYdLaaEMR-vP-7+TOUw3}~cE^wqUJBuQ2)~6eG=yOxYzpDa5Qc}~4B?Fs#xv&-
zUJh9={a*`VWC)`|c(G;t=n!7v7?nuKUYuT>f9aQOV?uZ}1QK=~`+@SYA-o<!lS5W;
zoD@y{2Y<y(2w`Ff2QE5hhVW(xlS26Jn4_YR?^)VqatKpGc#FmvWo^TLo8*So1o!Pi
z;yWQsm3-b6d@qFeg-i?K10mFzE@Xz(lfgEdt>m*pm>t3#iCP-MM?&Tb&J&y;!U7>5
z%8)G-TqMX5Tr6Zs2)hPn77ysM5Iz%=VCKsu;R?ZzLs%KYC&E{SuvQ3lRts4ZLUGTm
zli>PD?5C`MpB$?3+7QC$BL6~gqaY2KQD23yIfS1>I2*#25VlGmo($pZ5Vnch_k!C)
z*b%}`84IRjud*|Dg|J&<zX{=x5Jv3@;oA`QN{|D$PssjA>;WMM1qaK39uDD1B=%?s
z$3oUt6XtVVgx?7c63r9rgv}1_2KgbPe=3BA=NzXc$r%y;DELzdYp&V2N#-0IH74PF
z2)~4IcUTm&y%56wlUDv$Lb%8w5dHcaqu7U+Lbx2sx%#_xu5y)_R)?C`B1vw9a5IFz
zLU<6uE$NCsm~9BRL%0*d?@|p;qDqtEIG}6=FP2Wc7sA7OiT6YJQ}R!!Qi|FBO(9ox
zO1MlNcKj2vwk`b|!Xwe4<grXWCjYTqssA|pM1i}rsOAnq2|*1(3*qBft6gV|_T%q3
zJR#^I_*l=anN7cmrJR?SHQeP$Tbo4g7prR*LWnC8=aGS?2Fwt`A;cMoH()c+^%i0c
zYpr|AKnVj;A}M27i+{9%k_KW7l#*a+!}@xfnuYn6OH(TFTg9>l%1QDryRBupykXr%
z%s*7+$wBLZMuLGv!}=a7%|HbMNd{85TpLK13@cJu(()XY%7*nHq?TY6!K#83Rx?mt
zc#VjprV!rd)fU3ra-ObJF22Orf1iSZx|1`u&C0Tq7$A9CkmMNy&kBD|u%2Lj!Bj!&
zID|A1<j-Zgfrf^)?c{mEM6H0lk%7h%JfB#K!3+bL1~wV^(m<AhW^9^)u?DgY<QV8-
zpr?W623i<sZy?V=O9MmKM7K83#;^`*$dx9vGElKu4j;V4u1;%fpq*iTC&F0XKJnP(
zexCXr40JS5V4#bEP6j#~$T#q+d?n4?UR~aYCxIufO`)XF!14BpT@7?Iu)VwWK@IPG
zx*OnUYp&<Jknf%y-OE64123^A2KpH2Yv4r#gADXD(BHs713!ej3^4d^I+k^?mA4*?
zy)h~01-7EHlULu$PJRqKm~H8v{C#J~5Cf;GXPuwqAPzGy+`!8QMl!ZzG9NlQX(3C8
zR82`9VOUS_Dn6Av%D^iIMjIGo;M{3zE9o0=L=#K#k=pPC>nWcBem=vyxYrGgGcd)#
zTZVNe`5Okt8<-&c*X2zn8hFz{cf0NB)Og-bPckr>)^)d5=}yV4Fwe24LB4I^9Rmvu
zEHW_Fz`F)!8JKM#V`97a47_jP-ljbACMWWy8JKQhhJg<ZJd@y<$syqBE7N<7KbRSt
z;JEr)0}AID*iqiWYrcWG!siL*?<tsA*||XYhX(d<%UMv_$>fVUWelt^@UelV20k+2
zzmT`wz%m2-(la+!c5c4Z`@<9mHK)coj#hTAH1G*c%fNaAs|-{w?^t8t8hiU@!D`N(
zn+3<O7kam6tu^pQUgo<>;im>ZGce~u!518?%FYc^=aH>#<e!U#HQ&g_wy`~~>>&Tj
zz-F4|;i%KJJp)?}d~0B@fv;)sth|Ap?2~&b+hyqI_qL3Oht%ydu-mX6Bz_~d>d#HT
z_qp{*mgc(0z{LTbuRhm(A6sqUuz@3@$sssk@LZJmgPa|78e7GA$Ux01PLiVrjv4sQ
z!1pv%j#rPIYpbn~{R?}?o(nW(DJKk^G_1`hJ@eC!J<j=ohT1vx+6$?tXqGe6&JT2)
zG4LbTvAFb~4BU7p<E-$X1y{V&XY~ymzi|1*zy+FF7^B0uXy8`^S4><ramm1CTBb>N
zU$|o6ssY`AS5~2G2L3ki(7<&G{>ID=+%&9TC|-XWxMkqBfjc7kU9f-a_~O_<4BQpT
zJ6~12XW)J$6?a1ZCH#TlhPKuZ1eef%q=^3n9~pQoWM-Lye}&|=Z~i2bLlGsy-GYh%
zRmkE~4lSbNF;IGQHgopTz}TfGU?N~3$f;+dyorzj!@yG}N|-47v%@s3?XnN{Il{Do
z?;JK0Wmd$V+m_98qfA6IXd*GLXGznFjWJQmMB^&X9t{eQ)=TU%KCV|4XK53ot2ozp
zZeG^J^eWDCl{2UxYa)&bO;j)uZ(7@W-yM{hU}9um7Wu|1P6m@qB%7#aqPmHrRh$(~
zR5nq?w0?jpiG*8cV|rvxnVWvQinFSTZ+2w9(x!P06SlpMS|)0ns42YTvL5>`Wu-{M
zn^zs<cV+kK)SOA|ChD4a-b5o4Pn&qgM5>9|yEC6P!JGNi(~jp%bi0)0cqgjpsH2{V
zc7JxNZ{q7KStJe<4NRn&NN1fh5}M3QZ)jrjF6&O7+f$$2;uyR$v$2UMfA`EVk!hld
z@TSFhvIgZ@Ca9CmwzIfXj%FtBDm!UaoOz$bHaF42#E$Kb*e#AcEuYs+qf;vrtxbGl
zVwH(DCfb@9W#Sdq%0zn;{Y>;Xk!PX<>ujRCiH;^Z*$O(F$R{!JZJXu;!tLX#I%7^b
z3QYX>gQKg7E+z_14F9w9??(IfcO2dBIT(BA`?ww^dYaaKavu}DO!PJ}w_Vo8%UKQf
zWD@7!%G$UiyRX#n+CfMEZyW<m3^Xys#7ib#Fu_c`=NyAfyvT+;)p^~HOiBi`pQ}1~
zac}uh6T?i5Fu@JU!%c8FoF??E(L)||;^@3zt+2}DPA{7{-6v<HV5h21^3f*7n3zT@
zGV!X3*G#;{t}`*##Oo#|nt0R1<-3k?CdQM{2DUohFrgfCIQM2AXqPp?gtMxXWD-+V
zbxvj-zRKqA_mk~&r|!+1VuJW^SLQn;Cf+x#t;?uiU@O`4T@&x|+T!S)TsZ%tBdcmp
z^`~sc&ft)lm}g?XiJ2xIbZWk|s&lr9Stb^=i%)vP+APhT;d9t~CP@4VJ&6lUd}v}R
z^Ea`O@<7bWNpXu!EHc629=+A7_7dTBe|Dsn?YYdva(2RD$Hyj?<P@$jajL4b;a{D$
zRCO}A(!|Xz4w^R=R-0JEfi|(%#99;UOnhnLD--KYe9EbvQMl2>XRPOf^v*vzJ~y$!
z#Lg3ref`sF-0Ad%l&Bncm@h|fqG4~(th6WdPF3e-6I-ZeVwZ_KvAJ7m|0cG{WZyJC
zu5X9tT2<%pEt%VC3^ek+j{6(4iMu%&O|0DNn0F<*?hVHtPP7}2lJ^|Ma@CysOzdYX
z*eDYROdO=8nfTtsArps9ES{Tw%mhDMIKnwDD+Bqt@8a?+<gr%AMS)Ar*dduGxcJ27
zJyXs3gNc(SJSTG=-|xh)11PDvJM#?tmP2zZ>!OLDxSGvRKgWr)#ql%8J*TkG?M`P!
zxbS|D^Co`bgu3Rqz<II7S{qlKb>viY{>q;K8j?wuPnkojIlrrt$J{#K?R?F|brXHV
z=oiLsCT^H$7{>Eq+%$2ERSKhQ7`NG7CR7ueY57z8o!xHYZxer*xNG8`iTf<{+1x+5
zMqP=e0-f2>71UoMq}<)I&qEXcnE01fGV#d7W3Ggc;^@JUF0S6L=A>sUqV)+dmo*l_
zHJsnJ3wF6UWNKEv!udF`Cxz5`l$Gz{{NgAy%P$dz*M!f6VZ!9>?wadoDic8yE2=rK
z_wTS(kO@On7&Yu<HD{QsXc%<y`BWIUsyXQ(iS94Qy)jI$<}6>`85Kr!7$w7)dOD$0
z7^TCA31eHc{9}3ft6Jr!RClsaa$>nK%7^ji*&$Dd5gSHa7?r}P97cQ?31PHZYaMNu
z7)EYJpQJF)Uc-Xc`4z%E6n!`ey*)md)umz>pS0?;A-$LTkK8I@R1KqM7`4Kv7PcIK
z@~SQ*v%0fJ*y<4aQKhhU7%5>O40{-L!suBuclx(oc#0i8c|E_lPu(!+8I!_S>g124
zkIwb!&xG-87|(?*&yV%PbaRG!Qf($-<sD%ZR(CcCBP|Sir)t|VpThJoMpk!DtL`j6
zdKev{Hj>g=fvhkZhta5PF0UqGGz}vojFr`$+p9Z&tnSQ|sJqpj&BDkIBPWdJVRT?u
zhtVR8mSMCFqa8aWY<d1_&Bn%-VjWtAG4YE6k~U$>2O?d7(O=c>KDi%O$!#A-UKsxB
z&fO35H+RVYwpwndFgl0PgRKrDKa7Gfy0HFX@GJ=Dpq`H0{0cRk(QWg)hS4pI?i|Xt
z`6W-ayS=OrE6?UPsNrngBB%WC-Fk)5JB-#foc!9oPuTJcM%RAC{$cCC7_S$?7$AIL
z826f{7oR~&`HNu;3S+QD4Pn%2>wOTfm%<n-!eNmdhKJ!4K0@$i!I6Ta1euC2XvT!`
zY8W4eu`rC+!WbLIjIebe`Rief3*)^o=x+XvFvf@RRv2%GF+pM{hcSiy7PcNZzbO)u
zNnz{o@Bt_C$$9EKk!eYIQ29HO&(ts$&B%CHQWdMcFKMTVWV#@WW~vXum>I?_k?@H4
z`C-fs<N9UC9KpGQ^8{H6<qINpU~!AWSR6)OoBe5<eMuNg!zc>F6~;$lEDQ7R6;6e*
zJd72rQW#%`@i9#(j16IY&gmdMvnq_$Lc&JO8X;@Ld>UrGp1Uxn>$*tqtq<c<;hzcq
z?<uKYNN^)@YHac7l>Z~)t1vc)@hy!!j4h(Dm91mD9{kS;ZsW{->wnH!-A<Db9VXuy
z#;yq8E#w=)Jz+RLiKD_k3GS!$3Ry3&5yyw)4odKlAk_|saU_hRVH^|5alr+0)-KQD
z_>MLl(L5pKq~N9vnWw`z!xfnGH;f;{_$iF@Vf-SoKZkKPjB~<od92E~SH>Ow-D=SV
z5nc`B8vg|d|5cDtmxNpvydv2AaeUdS|I_yCBKb}527d*F+!8ddTROjo@kbc{iR3P)
zKo}3g_*;Va!_Z%?P~=YdQ-W0fO9)SGT{J2Bq42WrR-pW!Fdj+pvEaXglrJ=`QGP<x
za#SSY<qo5a&0f}KSHe)k&}eC41j7iiEH3_BAHvwVH!87x^^JPmp^b6AFy@Tt+`EP|
zz*URAJ)-l9Ch0~PCTEAu9&NLS!?4-xPuc7xZ1(A?>6n>EeRs_qs-=9J#UQby%^qX3
zm$KPQ+w7E#tKp==7b7}TbH|JMRA7*2ESIy{E7|OoZT9jud#ugQ+Q!-J@iu#c@Hy8L
zh8i(RD3vI|3W7<3)J(S7D@M3pyHpjMy{gS#%Vw`_vsbg(t4mZ(o4tn3UToNn|4dl3
zyZz1mSxkFvYHXE^^c0)D4yz}c{u|NTCR-hAkL0<ahVvPl{aKrRyv;trW`E9RuV=G&
zvDpi4_WCw^s?DBbvp2Wd9X5Ldo4v8k-o$24v)R*a_V)X;p10Z89*HGs$b`N)lFs8g
zH?rCHkFtvB;Ye?4vuD`s&207u3#`AxnKpZt@aGGxtxyz_{JbYFo4xUDI)g22_Leq#
zJ7#XP=i2O@{n@Q-_SQ@_CHh>K%r-VVk;1kTb*OLi;$WW5-ht<3QYek;$l(aa@oMl-
z?@wa7<=gB9Hv7x7aw%!?R1Sr_SbA5Ry_?NG)Mg)Mvv;@Id;CA9z5_~%;`@4Ldb)dN
zdO9pDIW1fSVRvVVyUQ-HNLa!WmJE_a7)634$w3Jc6#>an1w=tXP*4eq1QC!NB#2}K
zNJa$#`EEac^FQA?b?&+K>Q#CbdZw$o%7f=U=-@$14_bN9)`NB)w3Y<xpZ2$*iK;a^
znp5|u)^!=TJ+1MPMIm{y4vmN%J?P{?7Y|<Wz;iEeXAf2v)<4}HU-Pqi=XR%cyy%X#
zt{(h&*vU4M^W;nJ?m^UpS3T(K!AmTj2R(T(p$9!YcttS%j(b*f7c2S9s~PpSr+-v5
z+S`LZw9NK&3csVbc>3QxGy28avA+jDpY-qSl4k%b(#^I1-a+jKc`(?6_dIytgCU|h
z(t}YR4E3OWuV%wM81BIcR=-BwuYPujj71#n!RsEp<H2+f-jG<61;@nl8Y^U+;CK(-
z6fz+eI?;nk!hib6ooeW&h<B<7ZwYx@aGD@P3;66A9?ax-TOKSG;kzEpV>hd>%!=vE
z7Ba_!xk75sb!V9Q9xRljR2GPEp$ChEEEc4~v4!qx`}=p?Vhq3P?oa!`gB7vRWgaY#
z@o1ksA9}FzsaJ5V2OoQ|itQNF=`kwLC&E7!TqAf>W@gUMJEvLeJ^0*%coq3neBr?c
z503kA!iS9>d`V?5KK9}(55D%Gq8F9C*yO=x4<38)p9fn!*y_PK56*k=jR)VdZ=5Q3
z(t~XteCNSY5BLDx?!gWZzV~3a2Rl9BBX}1l79I@VJ|9E*Zje#veh}q7Y~1?p`@OxA
z)IJgZ=)s<b&Gri(kQ5FIKO}fqkP1hb(YzdzV-oAQ2PZuE@UAv?V&f6}GJoQHII%H}
zdCG&+9-NVMSb$&H13fs)LE0dmzoVEnUof`(ye@+-cyQ5!KRvka!6gqavmGDRp!|vy
z@^=sZ;It4c@NZJ!p~G4+h5ol|5U)xxu2CT=o8B9uaGO)TWPMXYZ+Xz$=e{Sr>%l!y
zc*szWsp4|_kOzNzz&FPKa72ua+!uTxNN?4JuFfw!{OV}ZBPj;o+dttz_M*5KCA{!@
zF|4{-*oz`w_`FcO@Oz<p-A2*9(7bMA(UmTp{`3r)fEPg#ZW`*o^ACA(Y+RDzMc50|
z3roE5f|T1{IKtxu^TgzNg)j^1<ntoGcnb&?6fES$Q=L8|lP(vH7WJaxwVLb(#k@FM
zF!%U!x%SbEl3tYYqO2FCynq+Qx<_awx3pe#JLmo~d?r@@mv-bl>qR*)DoEAJdy(ix
z#ETR!l43f^UcA&S{(kqmOo4g*Thu*YuH?cTB9p3-X;=25iWi-|=;B3HFH*he=tbj@
zljcRb7cIPK=|wd!GQ4Q!#grDFOfRZ?QOk?xyr|(tO)q##a~6vscWG_Q%5!I<hxb^~
z)%K!}7ujBLxg`IY<howe^J3@M)yXH!s7Ru2sl?@m`d&2ff~28nHWJJcY%JJBu&H2+
zJUUaO%k`qU7qsNfp-C${ds<0oTS11l_M(j!Pj=)b|Dm71ofqvT=y@+Xc(G-in*!@N
zcvRB8mYz-$!~#?Jf)`!AnBc`kFJ7d<y%^xdKrgy`G3ZpOo?i6wB1)5b@iNU)&Q0eP
zFM7oI>u<V+VY0m?&AzPfu%td-#Ena0`mc)G-kZ6M)z1r({(|(rCi=sP%*czu;vFJ5
zRIt<`&oCiWE<CvDNH0ctG1iN5bOrR$5;Vq(*S&aybyRCD80nUcx5D+<Z;^a?#T@U&
zo3RvDckys_gKwlKvH84M;Kf2Vt`}3inB~Q6FW&OvZ7*hu{xreq?2r!{F{yW0oiRzv
zCnwDi2^;RI{9RG&a6zNa953c^#N{}1MMy(EHSc`sCr|B$N^uyRv`7>dvjYfOD)^q@
z`_d~u5L_n6yp{`DA^4%-N-uaO6@ylJvD%BCKJ@b86E8mXqOcD|d|2bfS}%U^VviS}
zk^E8qD=)tGVx5eU^<I4L#TUXidhw+f8-#OvImd|V=sX-O-@BfUFDZ<;$%}8i_|}Wt
z$Fny}Qd_*>xu#pa-~}!uH0d@kw$sZw=W6-yyjb(N{Pe{cJH6QD#cmF$LheVzVa@(H
zPvZA{#N<f~jw%r<7Crk-k-c8*^Ws1DTQ7d}V!s#Xy}01T0WS`Eae~$K;t(s?)_=r{
zqh9c8o5P&(ibX%-qtlCb3Z-)UI(J_m7fx^Lh>j<{;A+KbFU~Nj0@^7rcrG#D_;IS|
z#>k(&;B^LPz2G9nFD&Yy2;Dg$6Fa9~6!YF<Wxcp0oF%_3<O*~5;x{jT_u>yP{`BIy
z7gwdq{8sl`j8LCmHq8w$Zi=v{e922W$sI55N^187?|JdJ5bFOWggXBSd72Kr55)Vg
z;6uSjf{z8M;PJuhgW*Hi2cHj$52_EE50&P5{&W-`Dew1zOEcg7RenZZo#*xGJ_LLS
zQnO$>PvBvTS1uL}`9S<-ZWYr9%ZGR$^7(LXRl?i-BeoB7zOU;D#`(Yx4{6>!KIHX*
z2kS9953kPeLjj-rh$$#)EIie&S4bf#<U`|PQP1xgMSUpdLp>j|eJJij2_KStNcJJY
zhmt;&_aV^-9;{l*htfVg;{$xC(6{b@CF#TydaW`(l=b0RADWcRrrPq!8NASzuAC3+
z>csIf*$?Z)^*NH!FIb475g$@~Nb@0`)f}5$!H2bV;wrK5#iA8`Sg<&KO0j5VAFBAk
z6sj_X=^3f9bW*$fpQc=6Po8Q%Wca{kSt_I*$;kAfI+Hz;QA4n%AiY^W)Dr%jU~R!V
zvCz6c?0!&_YW00+;6qm*Ui6`%4~=|i=|d~FPSeyJADa5mjJEQD`BKuvhd*b!C(XWJ
zESl@XH+roWJ~a1XQ!)3ZV;Y1PD^u9ohc-TR@S&p*ZKXPl^1Ki2gtH>;g&Zvw<qgsF
zUMm*u<ipAStvdVQDITRVc^4mE5Ft5rDD39L%WQ~4ncdl)CS*hfUy=r*_s}=b_YkAe
zEU&Osi_;maw-0@MnC`<2_5>gLQrU;$KJ@dUzYjxvnA#wHc#W(9KD_3`znheSG^`WH
zO=z2!HX#o3VKA#%DRSXp8gcKw^r7OdR8}A1!$`&|9+}|7C?BZsx({#oFxrPJZ#$H8
z<5}~I8p#+R#`-XhV_}PDybo`(3vE`Il$-1(<ta||VUiD%eVF3ITRyzaf=NjZA4+3h
z+%QQsCOAzB{EiRgo%W|QLCR<P@Gkq351;uk%ZJ%MEc9U!`@9r&fe&@6#dDY7Tp#B7
zuzjza?|dJQ9Lgl2doZo>Vjq_Hu+oQ*d|1jpFd+8>ADH!ff(465-)B>rt_7AcwM{w8
z1xZ#2`H&sEc$8k6?qkmRK77i-emrfJ6ks)b*Wt7^nOP?`xwTGikiLc`86U^Guk&HO
z5Bq&M;KS!We8G<7!)6~g(4LzVrtmfY1^Do#c-tDaSb(o2&Bb5mP=Rf?#fPmve8+lG
zE~Wi8R!172`rAaGwca6Qryv`eLA#_yz8A@E!5;+o2<{c!C-|cvqfDz9chHAJwABE&
zMGn)95_F7XZCYctHHAl|?gxf9C7<ZT{lq@(!&L>>6rA$mG%cy1lY%ocHQn^#mJdJs
zaMp)kIJt3r`B1k~<h<aajFii)I}^X&;-U}Sbo%34&Ls)rw06aZUw!z^hu@jL57#8Y
zKLq)G(18B#EK0}Jsu$}_ye<(*Zus!r<)$RJeYnFJPeHPRyFT3G1gjvwg1>zD+lMC{
zj0*no;Xa3k4-eVL65=2DFy=+2U)T8luhr$Y)ki+8=p4^KQ;#_*Rf=TDzLEbpzCLkp
zweTwNDbN)J6etS(3V4r<s^Ei#ZO&CmTe-(Q>swRYCu7a_?vY|a1tA4IhcmANK117W
zOE47oT|roJ|D;gaRNSYArN9>A2vQO!BoAxxhC=Uuchlk(?5*2obEmci6ckjDprE9J
zLJA5iD5jveWLiW)Q3YSV;BK*=9!&EubAMJfY!qKY!GosmZeg|{k9IGm01C<|D662f
z0$#atJ171b1r3Y4PkhEL+$8B)1?3bZDws7<>0UgVbhkx$DN>i;GsyYG8C^UYQIMjb
zu7Y|BDk!L^AX7ng1(g(3R*=dfDX5~Ls)8ks(ruY?bz&QyKg_eK`Tr}O`4-JvO+khN
znw@{X_$=e^H}XT>>(@|FQ$Z~S&ndXv%*;~UA1AK49QUg<k`+DuwH4G6W9F^zZU>rK
zKPg*5eFZHQv{KN3)ltw?K{Ex7Sdr)R@UL7G1vv_sLSy#WlX+kHETR`o?D#k@tHaAy
zauqaJ&_aO~azE_a)YZLbC%7by*|k={qw?A+XvYR!<Ua0sT>qJIN_*NwK?lWsD6>*C
zs^)olRu%5XDbX~ElFkacDELIdrwU$B&{e@$1>+RFsGysIfeKzz&|N`^jhQbi=%FCW
zqV7;$Qow)B)wU^IGm1QHG`D#46;@wCFZLM)T=*EEppR(w6Yr~{-&gSR9~R^G7tW-}
zsb4T7XOM!y3Pvk<UBM8EHA2Bi1w$1K<B0gh+P5HmxB}wJ>N$);H;TPl)`Q5I)Sh3h
zH)w%htjCLOu8fR{6>_|SHx(>Z@ScJR3MML;qhPLrNeU(_c$fW00axo-ktqtMO0nNk
z@Qy@(Taf8bQ}D%gx8&1f$<9zPQ~3YYqVq4-Y})@q)>F-S61qsiVg>UREKpFpMAkx9
zszwe!w`4^;Uu2P#ysk0*C6X_T{XQ$jKBM4c1^sGdE>rNKq{FP2E0~rqYlR@abSo9G
z6&Rf>kMyn*&DAk|=MQU*g0%_`DmbLzGX?7ue5YW$g7peMSFn*Ikv6}c!$i1j^o4>A
z5|>^saXM$TuM~W(V3UIM>l)3=EH<-L&9b&UZQN#ATNQjG5|)9X-%9jt95_<19SU|T
z_(8!Q4!4q7yQCw1&w+E!diI?4=e%aSrJ-p+M&HZEmFVP@{HS2Rf&;O-Jk?3cY;#z_
z5w@3ta|(_sI3_8aQE*%|Pbm0_-MD%V3qyC3^S^@AQrePbvM6EIo+5MkS>m4MaGRLI
z9)4cI1u5Ha3NCUyKB&3ta^__Pmqd*UPwRL^ddsg0cD<POU-g{a%Nf6O=A?N`M?Nba
zWfT9Y;5z%5A9MY<!Ks7um>*^RxTSy-m)8%UAGa0U;moPv9*fNaaQ^2+bTH!|j=OR7
z<_)R$w<y<KTk<|9M&V0(`<2wRV`G~=V&{CV-eU#-aVncvWpuUFC!*l-yXiYc+z;01
zwmy@i_~G}XkROHpQ2o&Su>D9_*i;uyQ;?bgAwj{ApdlC*Y$u;hS;7m!<M<KhM;<@E
zIGVa>ew7Qo-H%`L`VsF(K0oq{T0ud|3;6LgI(e~PP7#q8^P{*QMTL(pn!_Nv65{n&
zOHB|`Qjqdeen5EXnB*BhLfP))<5@q-`7y$ek$#l-Bhimn{OIXNk{`)_H1?y3M2YxO
z&5sN}Qv9eOl8Sy*6;dgdW@RB&1oJ$pmKu|%2}$>(PmcM&a`tvI{iyCo4GF5}N4Aif
zOn;syOL#58=lrNGq>dn?*A?>7bftbw($J3vG0tzn8pU{yA2nyVb!_TKGe16>oaaS9
zE_Tn%^<(ARk$wL~n)}g$2d?{(Gu5?!2R~W~Z!OqHkU?!}f8p(8lIMlIXGJ<nUY%k&
zcJ`x7jK3hHs~^YqyWc(0brVT<!KmO%e!MJ%p*@78{9Ch^AHDtP>qkFYOoXorGP@-W
z;;6azXlnmyRr>oeNaO<qDIe&^Yr^><C%vx~(Fgl6Bo;c<k6|%BoEB^7CN;{B(SA(z
z<1Igy_sV+Rk8z?y{)QhFlXJ%S@p+GWV<mLc>?-49DZD9Ug5X5KNrIF8m?GrYwI!MU
z+rp>$@s1zEuccBlon5PLF3C&@nj!e?4(DAVl+O|}TaaCJo*(o5_|}hYek|}~A%~0~
z8~j-0$6`NL`|*h%OZ-^s$EMP$U-!v)&yV;0Smno;>(f7=TEn^@v+4gRzf7=rLS(s+
z6@nkKCkUa!M}GX@YJR0lPLJyD0@kN~tnuUglf3KwSnJ1Ue*Ds_?m9mrC6m8=CS}tC
zv+f9g+swMxl2blsAAYEn^QYW<Hf1Ao_hXuoyv2{E`?Rn8_?i~TuFKqcedi{6^Cr7j
zk@~@-`x$GiAK&=V`EEwF=GB*bGKt^$vE7e<{J8JO4nKDKaoLY6e(dt&dq2*y7=G-g
zn{J)<<BT6a__4>2+!m3&e)O2)9PwixTlRX=k0RVJctDUk2mLrC{IFoPs_7IS6+0aB
z<G3FuI51bZYbZa7kXMnOj9KZFkha-vdsRwZ|4F@{nO&2*=d5HGIU^-R&iirgaYm_s
zleRCda)HCmk4vn@zt;H{)mirwg_1{AN%_@}-~71i$2~uO=S(=<bDfjCAAk69m31i|
zz2=8G+W&f)lt0Bw$<X|nEYD3pD7?+5fFHf)`kyNm>A&5i<c`Q^G|2pmQ*^$}ziIq}
z$;IBvp8G*P>NG8$`oNEWIgP7ORXp_Lksn?a$*t>h3H7lbPyFzx_>aBieo})QY4h^s
z{S_%ZVg7M}OfKq~Ws`lX+l3TCmR3`ttFTo#Dgr9zjqq2i9to=ms_<5F7dk^K3{fV(
zy~<s>GF8wfmLSVU7pEeR=+s^i;oY)%RcxE@cDX!*^5j=hKt&lHWpxx(QHaTE@M$Ql
zqKJxKDtfCZs-l>Rqt#N|s3@+Ygo=oY6cq_7N~-S9)MVx*<XIKvR6s?1_mt8qo?*%=
z_)fB{NOB_XFIc+D6PlJelgcXtI0nnB?z_iC#+v6zl0<5yr+!k;UD~LiqN0l0D(a}H
zq@uDUQd31070bJ2rm09*QB}pRq4lVos=~@l{r5_0HPwBpW~!*pSo1s?D){vx6~4&u
z5$S43E-Yb|idvH9Q~7f$3ZHdLRaZql6*(#zOH$b?8mMR}ygsXZBhQGxQyWPlPoI^;
z-gWOpXriL2ismX>sQB?6w@A$-O0J6Ajg*Z~{`XI_B@H_~rIkc??@D0P$j6eLa@(qC
zr=q>ezi)`DcuD2EadcGCMa2uE-$_MhNs|@4UaJWmNmmt<vr@XL=q^Doissp{-l@O)
zpyAieEXm6v?4jZn73Kd<9p5PDR3xh>>)XE*b#{lc#=Mr*hdL_OtN2_+UlsjSj8QRG
zMcEdS{xn6)$Z!<{R18${nu<XxhN|GI)?i6FAb+U&=Vgcr{>`a##LaY=iapKURYJxc
zp<<+Hj#4pN$m^_ZZu}c6jt_R%cLuji;$P!&D#oi=qGG9vH&skfF<r$B6%$oVQt`Hm
zX{@Y@DXRN-c&ZeDpEmHqMBXp<mI{6*ncdgDFqHqB-l6GECL}NQyizuc=V{DT@vaJz
z`6_0qn5|-tin;6n$u=(mnO;0^mA2-^lcnZKcdakq=koXA0u>8Ybc1IR+r3l#VzF?8
zd6^rhyIH)a;(ZmLsQ6UH2P&4aTdG(gxv)mObMxPEi65$1sp4Z5t2h9q*ev9#iwXQq
zTV_#&|KeARHGbQhz$hU-b&ZO(D%LT(X7OWQR6bLYIkx1w^QDS3%cKHdeNWw3_X`yp
zRGd_CO2tMMU#j4H#p5czQt`El?^Wzpu}Q^dk_R<+sMsP3)cI>_F5eJtRq+kS>Dab(
z-wN5L;=7n+yAZw=+$qs_2{N4`KQ%2Em-B-pwT~@JwYZ$Uf+S3q?nepTPa_mm4yZUN
z-b1n64+}XWcvSEhD^gHl!T7rJgo>X;Sb9u0uP!>R;*5$5DlXFIw8_2fvutkFeb1~X
zw<Mn9%uu5_$$1I=wN>VY;?YYgE=wXTz!eq0s`yQ!93GSXb53gLlh${ar2nqs4;5EM
zjaffnH#?GXO~s!ouB*5q@_Vt+n?i00-d1r($X%%*-)7(Yu=QUe`CE{w{UhW)ZQjjK
zFWtX<3dBMm33<%<U&s?dkLETX-3QfeMT1|%2n{1Os2Vg4jWpzF&@}`!6xC2nLr`;9
zg+_&w@@fcaFf@cUm>L|BGsx0lYv2Jm(@$lt8}6axSC9KSOq?j>5llGP_{lUUUPC?&
z`85>KP*6i5PWuwd`$IostP1h7e$|R-Xm&80(RrtgGcxJU@XX>GDrl&vp@fD64J9>{
z(oi;*JA^!=p|lWQ=eqS?O-3)H;lj&_!Fx5I)xbMR%V{Xjy4<VDfsiPgNg5XOQ6fkZ
z(U2m%ea8;;R?<*eLp2Q<qFhBVRYO&p$VlSd%FH57b7%f^4gcnCMmOMmZl;Fn8ft5(
zBl<NoJSUc^sUb_l)}G0=L>^ZndcSyd#(-pg2UL2gzpjRQ8tQ9kAfefs`$VqNEIz4(
zdrjC=-jG>eD9**H?ETq|H8j!iqK0l7no5+;g3UDKYG|&Zg@!g7+G=Pir9E6Osg;KG
zvTm_ki!~^rZCUts8lKnCK|_0%xkQw1$C~ueG*3rKu#<+K2^F{$&L^f?EUAkKUl8;^
z=jke>Zg;D@hN$qqf-h-!SwoMfp~o{`VIms(Xn0jaFZMShiLSSX<PWm>SrhrG^V(OP
zin><)Rcn@N_tVf{;ttU8nub9d28x#o+O$%Gh12*$H4M=}E3vWY9j0Np1U+9Ox*?}i
z)1SMK(lA=Xb`3i;ysqI54RbWi)i6fGSkauSVVs8X!l!6>lca@rl6WU*m?-3>64BE;
zBHdSKPu4KMo1^{EbxesU>&_hC((pF>a8Y-k#xxD@Xqc{HhK6?~B8A3)<eAcxB=pYG
zFq@{hl}=8}?<|-!k7-H+ZImbrsI1{*4GT3aVpr7MhYq{$hZ>e>pmCOJ;Cs3E1m73@
zK#;;^LY8Y-A>{i>ehM$1*H*F*mrLS1@KqXCYgnt{GYy|epZrwA8VwiwxVyPnB;Ki4
zr)9k7ZufN>)@%4e!v>o4Qsd7xtQ^>wxig66NjH_F`x{a}?|b%_8otu-wT4X^Hfz|T
z;aqkagJ#z9T&rkr)$ommZ5qDQ@U2vkEy!G+G^t3PkGMJ6(n*-|P7S*>+}H3x!}l6?
zYdEFhG^1$Pqv5cIBO3P7+QXY1h}m|Zh95QT=O`$ibnmMaro+&K5_(9(dnKYg!h)Ta
z@}nX=E_jS)l#zQvyxVR4CwATZk&_xYzwv{+GaS(x?r6BH;jD&VG+ftkLmKg%hN~K`
zNqe0ayg=&-xg>a5kafHw<W~*93He>aA3}<aOMP)@5*6x|O#YK&vwB*qHJK;#x`$@m
zl-_kq!)+<p&9B`K_Oz(9&pjEle{-I3^uMH6Z0qK{KQ8efQKsg^rS`uX9&&cokzdCn
z4Uaid>j>-kPs0-qIvuKxk;RfcI=ni3x;v%kx#eyZR&>-ms3q2RH+XDXk)r9CyP|1O
z6m%T{M%+?~#_ZK1ZBDw|bwd)g|F0BNho!^T;fREtC%V=@z$r$ZI30O(<P|wDh-9%T
zq>C3xufj<M_~Tzkf{v0p3W>0&j$%3r3+IQBMRZ(Sl}W;xidbCaB?Oxmjqv-9a!dWC
z#0#kx=aAAmp3$-B2a_2^H@F)Tp4CxK#||Akb(GhUsAH6l(K?cJB<tv`ql=D+juahr
zb$30nf{uzhYU;?+QAtN-9o2MX=%}Kjs*ZFWKeui9U6b5Y9cen|1yg73jL<u9V-Dk9
zT2}YV646W@)g`G*lUmde^73qV$!XnYciDojmI$BIF}97nlsRK>dTkwbL`d(OjpFL*
z$ktI`M*|%#b+pp4_+VN?QOMEJNOu<*xs*wyeq)h05p1fXSuCAg9nFRFV3rm-cvK6O
z>00Y(6VvHl)V(^et&VmvNqZg73-2J<F(&UMgh{=iW8(O@?mD76y6SjQN4J<xquN<a
zt<|<tFX?z$$7?zU>F6P$ujp`(L;2KQ740dKUV^=2ar@|aRXET6=qse3j{ZUh2o4lv
zbS^Ir7CuaHNK8I7W|rYG$q4oe;S(*_@~`W7L&q{5%XN&Q@pa77F<Zwt9piPptGlZe
zZ|eAKezR%9C$OeECh3^0V~UQcI(W@@slxFs8pZR+`CB@;HSTTQ-5kiPPLGsumz;*>
zNqmQW>_N@x4An7HN2w0(|4shR=N}DTgZ|D9Yqu<I%+axs9hC!(y-3G=b}e~%&aZM7
zNbdZb#tYo}^Lw$5GTpM?)3HS4O9lNq+?&%`;P=J*fs~DZD^}?Ekd{1E?rR+@b$p~_
zt$05cHR^w&W0mmLf>%zu-=2KR+TG4(=o)tZ7LkHqC48o1o$&QKzLXR`*YSn!t{H96
zv5_Uu7a8zl;>8xp{7b@1?Y|P8_gf{c`>W+99h*6>3ukT7!4F=xvI(wPtk*X>zLiY3
ziHW}Bi0f*y)->04k#K!#myYk*a{?F?z-|t0P7VQ-3Sf_py*lo(b#(00@uQC8I!@5|
zlJ6Js>AcMMfR2MY4(T{7!ecs)2;n2(sE%77x1m{j{g;?NxLT-YI{8l=+Veaob)3?%
z{<w#?>z>weM#t|u{@^gz@gQI17gj;YSwTkJyex8_v%w;Tp>!8Seo@CIA(sUyzoO&U
z82?R(9v?^fRULOF`ZW>$8PmD0<3^0%6mm=Ow%{GXf0~+Ai|Q=E-<;uJNpS**3*a9e
z_ZdpV>foZJ9e{sj<e?5dfB-qqwAArfhmt??pN=QGEAa&23qT3DKP|ige9$$*r?5W&
zH2^K(cAoRO?r9Hk7ZSKvr*MM%Z#pP)UJbx3LIIE%Od)?HENBYSYXy+|t44C+hlCEN
zJb41h8*rbkMFNNqAYT9l1Mco1j)nXI1QVhUt0(eRWPt!~mWY-~&t_1e01Ar^IUhQV
zTQq=T0Td5_4-qb&mIxq03bQ*ieNETKEa%OSA_$;b02u+44&a#p$^=k0fRq3#1n_JC
z<pM|yASr<I0rY5P4l8GK57_da)%c3Qy}vksNB}dh+N@@Bg~&@=^N>^wpi%%;0;n3m
z-rV@g0q}-m4sbqDxT%cy>ZUTg0!kXOzq{4e{ZYg$&KCb*Y$P*)>H%~Q;O*1?8UfS{
zASZyv0b~VGD}d~P`@{aZ0BX~W0n`oP;3fBd1UeoiIw>dqVJn5a9^0szyLGC501X0I
ze!5h{02)bLj?+$qBkZo6SegX5-!erX9p5tGuFE$KpjiMF%Vv`22GCrDEd(jyIj*e&
zXdM6&qHO}`5I~cD^(k)~K)aYudm+yY78|W}6w)ac+F3{!!50L(2Jm7mv|9iLvRg61
zs5JUZ0lZ9u3-2k&)_g@sm4s-on54ImK5WyNq_2>Eg8c&+5R(rKAa!gq6B!)95O&uf
zv>=8CFpOpi;Nt*>2QVUlDFI9kU}OON-$eI%0HfI1szyc&PW{Irr~D1^juEx7g5w0o
z2k@ql34#*^Ckaj#JTTs7^taf)0lXK$`vFV~;2l~uHL`^LM09?t+<0aHGXi)tBZqF#
ztn_ySm=(ZJe`n1OV6o^hkvRd(6+TaJzTg7Eg@TLNsg4w+rth;RkJa>bRU=CSoJG@b
z7t$$wyHA@B*h|wQ%UPH{ZI%Ua{Bk<UiU2;8+Wj!+`IP}sd2YqV9j;}r3Se~rCj&SY
zz$XEG$~iWG9|Bktz}f)52w+11p9QckfX^lO0}mUgK6cg%UpYU$qtb+#u3KYo4B*QE
zz7qN3r5+0DS~j<LuCc!kV3Wu<3vLNuYXIK}-!4eaZv)sC<KGG4Eqj#j5WX{jT|&MW
zoYN(nL3=n11K7`kr8V9c01NXYn>*EQ$KU2;hNkCGLOc)v@n8Ul*uAf1GW4({awLGG
zLXHU@7d#>OlOQ!u%t}8Uz?lI43gGVmeh%Pl02c$eB-#BEzy)@>`&raHCsEFGP#<uc
zh8Z<Vh_V2eMSg|dHNpMQ{;PO@6a1ZHB!H{J8FVv%Yr_8&ye@b{ko}Viw}jsor1wq$
zcZJ^*eBn`J3jYb<egKaH_%DD50sI@lmOGgb1sPiLyMk4R<dQs+C{5BLPdGQOwtYb;
zL3o1rZd8glh&nTJj>P2>D}A6`OV08K-BH6D(TsW!fgs|8$QMLV<P5Tc2nBIscDfNn
zIEYs+)-;1iv~xQK(ka}~F}tOcYX?Def`}86M=-A-<z{Lme-H(N$PJ=-5CwxM6huZ4
znL!i|qDT;BgLpQGqLO2A!8&u(iv{uHHrMziVkJosQc|!~5D-#27W#~kGC>?zYr4h0
zTE3j{>ZuWSoANBPC?o}u97H4*t4a_l!Yjli6@^p^qH;{aDpwVrDwr0Nrw36@c;#8?
zPjjp;-daJ_2%@I&tRQaRaoet!w_V*)DbI<p(46$zLh1xjH;8&cWQ&(-IYHDH-axRS
zU?ag6ee+SFvG68>^fnEmnee9ribZV^#ES*(HZ*<^Bd3;V6-4VGj=im{>E5{2eYYfS
zr6;r#JlHv#y`n=99fKI_V4Q<aL3C!CCUQ-53F3tyR0EoUu1q$Fk3#r3gl<7}590eE
zb_Wp+;-w%y3}R&vF9*>hi19(Z$$k<<&!GF;V?+?WsFpv{KZpTA^bVp=5U&QoL)7W|
z2Jv*oq#yO$`tx!F;a}wk2Ju=DgM%0%DGXu{l#{pl%ad1-8{M7GEzF@o3}aJ{i@bH;
zU1J&^M1M=E@UZI0AV#rw6^M)uVvLa2+0)V^bZ?0F!J;Z-gBTY?m%8r3#dJK$c|s5q
zgIE&8QeMTSCQS-rY7lP;pB%)LAb8a#<$b4m-VUNGFUAexouK>6`NDqB^dM&N_O2in
z2Qf2<Hxi-?MTg|wAZCe#e0C6XVtlTUd4ltUSRiD1LX>Kc`E7d(_o&P|NzS(kQRekt
z5NUVIzaPX096mS7_kUQvs-3zlh!tYh<$}Cdh!&>%;^n3v1@UnZUk3425UYY%9mMA}
zauA;c!I!I_v6@^37QRNX@uI}FK@b_bE{LZWORX0|%?&{;jJo@@HwN*?qIN9Uwwvxv
z%2)NcuY>OANaM>VZ3<#@5L<%S8pQS>b_DTF5Z|(c(Mq|>(}kyP>^$<#4wujPdyJ=t
z(YrH<U7Qf6c)0Pe=NP42mTTl6g4n~^AcSHe><waH5cio8?-2`vzvNE@@lz1{IkbZ~
zC}|#(PI4%S!>o?z92GhLd{O^&LX^m=9jC<{_lMTWAWj8wBZ!+poDSj)`|99ozX$O%
zr<5tx&Ia*I5LIs$AU~q|8ANwZbj}N22;!m;$}b7I9K@BF<X0iT1yN?Q8<FmhAg+q=
zn&6*;*9EIhausfIiU?xzX9<4?k*9q2ogn@Sf+sSu%iRs)9%tPqZRl1Q(G`v2ZzV+k
z;i&v4jX%07o-6erh<}547{nvay&){<S?zHU{{>-$5Dwu9r~MFuA%sHkhTPxzz7RU~
zja2?H!j@G+P)kPrBB4+XK@+aWB!Li)9o7cI!-2`JHMN$zwrGajacYHNhuj9`A7n0y
zanotpuJKODeU$L0K8uk@3X?a4cp;SJ3*o1&)$$7#5G)u%Aqg!kSVWLIR4yJui4Z!3
z&@qIB5K4wnH-vg2lnMbMR0yGB$emkChY%4${)~_^#MX&rLwHua<pj$MQYSHlq!>>Q
z;g70re@KZ*ZY+zVw~}~khEO?#D#ELV(EW(EJT);jrkN%rJ%nmPG6XYYq18jE5#s|c
z)?k`h;;kk4TnM#=)De7ot6etRVxW5^S(^~*htNQR8itT7gz`p0azgwJ&8;|HlMtE;
zZzfp1qFa~dvCtMFv=rV-u(e=^M=EvNhVa~9<=cs*z2NhL4B{ngokHjw!W$us3870&
z-Xnw;LMUA;v1<rr7P+rjU*uCD7TP_8sPLBrUlu%c-JK;~VQ&#{uMm2N&`0?Ge9Egr
zs4zrGU%`GM^bcWx@PUGZLU>KcqaWNm;s=L7bG=zwVL9m?8p1FM9Uj7n5Jn28e6)~J
zA*`<8+Jx@)5C%$=D@7B>hA<<hIWC0pA-pNx2_d{CWMV9Il90)QQv|09GWWNIOcQ)3
zgz2<^q|dybl9?gA8^SD6m@W98;G7WVhA=OL`QoMiA|VR|7YbG@tuKy+E(u|2jF&7K
zeP8$oG08F^%R^Wp<inVJrI1>clvOlB2$w_dd(KZn_%wuVA$%9Ynh@58@Kp%Etxx|f
zgmoc&pOez?R@!>@y&Gv8IFLihbe{|Pf(4#Ygx-xIP>1eI&J0URk$fG(rVuuVkp6wX
zZ$)`aEbdlj8p5>x8FbUrOh#|~ckAsT><Hlmhkpn=L)aC<;Si26cZszpgsW3ZQggR>
ze-KRD<JlX+z7T#4VSfk*Ijy}FIS|X`_giVyAK5<VkVu|-DLE?MR{s{sm=rlC{CEhn
zr4}bcI3<!xA)FTSO9<yeI1|Fp;-yXK&WdrE6y14|UzF-!2%-6B7KN<-Q?hDX`jrrV
zrG5y%hwwOr|2Vg>E+PEQDeFY)wGjRc;jam)cS5)x!h@C(x|<=~2;su{bUJ!(g>XBB
zXXdqiwoCnQT1HxZr`#3Idm$v3j8gI!?b$Li`+WL8oX@*N?u++<;J<<leJJFS;L5HF
zB?Bg=J`u0SfY*S}aC7$?Zc_J_nTmm@YIRFSDc21I4D1YJR~SJ9Ap=hgc)~CYgbhqL
zFvEapz%r0!pq2sKfMX!ZK(c{219=RTFpyv%uYq_2g$xunkk3GV0|gAUZsUFn#;5!<
zvpwCK#cMh71q~dl<9^9o#6VF4#S9cT+=mq3*o=LVo8aTQrH5YbuQ<Cgp`?LQ2Fe<E
z)&LBYHt>vrGKRa$#r@3?AGsPz<EtvZKjDf-hmz59ECatQZxoM~?(3}b1}c_slxSdJ
z$tX$0K#GAh1L+1TFvvg^162)FGBExHSHH3WZk6G$9lrMDvoF=afvWL*wd-jXf2?1U
zxuR_~0~rRY8>nHpTaPjg_l44_cRicyxqI(x8u(?FhtU(Zx_dBqh3InzY8&WfptpfK
z2I?AUZ{T?Y^$cViXlkIDf%*m-7+h#Zjsbp%_veLD4Gpw;J}+PU^ogc4CWog98)8qw
z<s#X9_*VF*5qF{F8feZS18ohoFtDIud`knZ4EHDZlt|*kuI^L&YW~#LOml2xTFEGX
zkF{gdG;_ZKU?O)ar*$yU(ZGuax*6zXptFH423|10BNq9rU*ou%e8exYbV|A!?(#R^
zdUa<O23|JMgO&Z-^LeBADi=z<M60%Quh%hVd$<MV6$3qKr~;9r{p-?_J@1$A!zMQH
zhJi5#`WonGV2FXC2KpNqz}7MFngPC};};){&W%-rSZsFMCh^5{;#t`el{2}N#@;*3
zz;FYj42(ALd+YcShP#zzq~ZQ1`6elQJwKhE8{wxnEb!~>DziNa?K{&BV-1WmFvY-B
zHnf2^4NNjH*}wz?6AfHy5Kjwp_YS)d+wN#)I<a}v_#w^X*_Ylj@V3D{ka$OO$)2UK
z-51>{#f?3DeaZqq*ED{nfp-mTH?YINECaI*tTyn8fjI`|8hGEp2L|Rz^d$zC8ko=a
zGO*CVBC*?ILG@g6-VU{B#?;x#t(T|FX&e8ZH2uC=HZ8y($;%8ZH^3_-9yN?#Vc<h1
zXy9XJ)Ha?~UdfKsD*g-_vAz{;oozR~Vf-o?SsR~}|J1-51D_lC!oXSspBY$hAa}lh
zoq<$K<LB^0W_iYyN#vI%<GQ7>3vDp4(ZILN&cK&!8UvdRY%$y)<X;=u#A>ehFPrba
z5he0RDZ9Z|PA{Bl>ba{GyaAcJ7bvGfjXKJA23Q_G^?3Q_P6N9P+%#~@!1o4r8@OQL
zB2zZ7$G~0#`#9dKr?M&En;YRDy&nziH*lIMa4;G;$l1fdaRY~^C_HBW({c78asx-C
zY}_n&R0bwz1}1XCz)uEF8aTy)HYgv50DBkzY(9G`fv>yi*nB@5ILn@F;2e9!w{9W%
z;m_0!9v*N?1zP^R*s#8xcFDkH7QR#R4FgvU{A%Eufj<rW#;$1K4+B>XF#7Y6$iziy
zBp;WI(gJKacBjgZtm~Y$TE(-ov9EgPCJnBdSUM^3wt+kB=LY^YaM!>+1OKr6lH*@u
zw7=QaZ@AYG@D5@k?aBARBs@c-al`nBv{l#mN3>^w$cSDU41H|iKg0d6S8u9&q<}XJ
zUl{3OR0~51!yiUU7!|@$!_dOW7e@Xt^e_Tp#D$TE^MBZ#ij6S7{;FPx`d7=ddl186
zm|-lrrCDLvVK`y;&o#$O*R{=980J2CUKP#{dBg7f6EBJIvI+9=E>8i*y<4hK7=^>`
zKZSx}aB^lpzg8u!NEl_qcs7ipVH67^`z;SAfmYp};$f5syHg6YNC=~3*gZL+lpqPh
zC>`U^2q`1@9q0cr%7>90MkMUc&+OQVVI+m!`Qc2-=&FV8rdCd9LtDE;p0D~3c*|Fm
zYE}-TZ8)=17;hA>s4t3)DVkU%jKn&Ts)DJ4X@azB2CE;&dttmEM)fdigwZ&RCSlYJ
zBP)#hVKfM%mKdQ<7<I#VE{xh?_fsj_mZf3}&#p7;vEu7YN@(6}Q9k@}g#W4<QZtO4
zu=_^hZpkP=f1{51#tZZ|4Wn5YZ-w!87`b6I4`WCeL&Inh2FJ@Fwq~WomQtNoVYCjT
zjaw<V5xa+R*-UH~MrSG)N^CD)N}dm+gYb?qNvANDCMPn8u1nbMdoP61RYG5k>2wR@
zo7S#EG>n%d{g=b&9Y!DFJp^9~qo)w&-YblOYup0?UKL4y!M=k1VmiY-&H&*9W0Kcc
z&DL_yxRW?Ij6qgn`zDFQq^2Xo+`@sP8HvN$?(8RViF58|?M_P>Epew%r)gsA5s9yh
z_YJ`@VT=u9To~iUJ5lgW!3lya9{*)b5<WR5S=rg1N;5v6l#w@)*-Z=M9gYH;D2(Z0
z%m`y)7>mM~8FpU^nWdt$My9?i{gz#KmXO(ka|GuK&I@CH7z>0C<?pPHnN;RTDV?{`
zV(A9Yl!}HXH{{Qu`T3O+Q#@?<55ia$#+oqJhOs=16=8fVUHU_Iyp|E}p;bG!T`8R2
zkHVPxpEGw|zExqY7PU{p_*4kD>rd_Np0IRzl=)d0>p0A%rt8D_Jd7{H_$rJq!q^bT
z#xQuzN0HP-PUc%yxbrZ#VX!28hr_S?If?NU=uKg44r2>@+Ku?F>=K+na^m^3;oC5{
zH<i=Ejxe?f|4wkb;MfcgL$_{uKKLZ<`!IHMaxh_;_#uovVf-1!^)U8^u`i6%VVnu$
z$1wJXaX5@4VH^nKU>F@IC1xZR&ELiocs}J2<$si4@l2E2dD@+vmUuLbpEw4&&wpCt
zu`rHHC>2i7=9dz~#}ZF+ybSi7;%qY}(HWmObcpBYFwTbYTNuBG@k<!z!nhDd%Xbpb
z)8I!U%;o-~3=$@CF^o$b0uuL%)P+JS{K}baP+Pj8=OTZ^a=aGC)iC-UOC0`f9;)>?
zo48|Z;*BtFhVdwj$6?$G<8~N#!?+j5oiMJ<PNG`bM~S-^D2(-27=MTHknMgv@(-sn
zW*0`QI@u2-{W(+Iw{|l>^AP*bNbKG;`C)5Mty0ndm|(MH-9*5|lQ29cye51m`mXo*
zO{_VVc%ykk#dPbw;hjX5oY7U&HK1nVeihgI<L1PmiI53~lILyXF-&f=NxZ!)F>In;
z^K9zaCL9xuBx0P2JSNJTc-BN-6Y(Yrm?$Vg`ApZ0`AvLP)pKEYV%+pZe@aodT_G00
zL~#>^MeS(swna>^3PlB(ehCu^CQ6xr>2{>OKPHwmao4gLRQY6s(k7lUv9YyM#>BS|
z6Yc$p+4B;AnUkc=Q>akRM0pc+Ow=`z$O4p#8#ks?=Lv~PCXyw)h=~d&Dw;?U?}l#i
zj73+;M5ajGTuf9EUNt63HIXJfU9ehAo?)WNt{RL|T_iOGYsNyeOw<zoTuf413`_lb
zCVu}rG229a+O3V}+i8iDS0_4MQ=0eA*T6(W6QBJSp=0%PByMBDCW1``&(2KT*T&P_
zL<<vfHuBhLX`+=0(}HE8wTU(+)-oLvZP{=p#+VpuqP>adP4qL--$Vz~Jz=1uiB2Z2
zev?Dat%IFS_ocy0Tm>-kf{Cu;eNk{yi<a|q+>h?Nv86;p9%cISng7co>0#m(6Fp7z
zGBG(W+E;|V1?lY*i}k9B*H^gvlqe+94KOjp#849hMdvjWgM{#ag~39&9f)efObj<M
zDwYmIS>_R@dkVxzL8^^r;=<oB-9ro*i=osUXJWjGcT7w-@us9O!Nf!pjo-5MhPjhi
zU=hA$f;+gVKP8sSRMR~;g6X_167p%WlxLWjX=0g)<tE-0wFM>?nwVu`wuw0==9-wt
z-oD-4F~x{1$<rduH{F9TD5P6tVyTJuOf06s52x*H*>Z_wM9$FnO?(h53FQ=W=hzAp
zABu3b;7Su8nfO@v|DVe$^M8kFFr7~%^i#n#f^ADh*O^$)u4v*96Q7&-!o-gz_M6yX
z;`ZM3Z%u6DSTpe@N3n^oO>8l-)kNhsEjMwP56o4&MK+6<lAr6l)#0wNZzS<fC%V)7
z)NbFI*luEniJd0)NQc>F;(KYM-7(ufE%py$D_V&bquXm@AG>tBd`}H{KvHJ1znC~^
z;t)HqNPZGL5(_<Q;#iCyH*rEZ5Ak3`x|8BPW#V*9=Zuh_1<%IHbI!zhwz3E>nf&>L
zi=5w{<cTkox_?^ZD;$GYy3_s2-ngRFQ~sL>nZ;ET*Ej>4@L2fM#B~!7O*}Gj!^BM!
zcQ~7wxFsn+wGZoin+6&0?k&70a+1G={1sFCCnmoy<N@c#nB*lHN{>zaCz8|obZ#2t
z9a~J~sa3s}JE(mY6d`^KiH*`5OYc%GXd<M7E+ilr6buO(f?*4DH@hXYEjSiFxA299
zI170!bhFUiLS75;7OGjuu#nF}ehXzRl(kU6LP5(tac=tfCWS2b^gr^FA}MU4h!9GO
zS|}Fd#f6j*Ob{%6Ah(ndJoQ?5yG+_M!WsADZk}f?l(UdzA=$$AV@c&DsBft#LlZ5`
z{-$^^*eD`G9^uO}q*yrrZ;cAE6e?P%B)qa<6~U^4se);OOfB6)tKN-CGA&fM(8xlL
zh5Zv7*ARsU7HV3^vQW#ya~A4Z$hJ`NPVV?6Ikhd+v9P;fZe5n=SknAbQR28#(aPEJ
zB=644sc&Ijsc2lqtcJ0?3U_JN*g_Kv9W8XS(9}XR33}c_u7&0n+FEF5;o-v?E!aj@
zqgKLOT3B8tjl$Lzwv5VX!zlA}NV@--&eIXwTbOn@mll}zW-4nz*MX0W_j4*#Y1vs4
z?;^OnRCM3n8ZQW^PFEo>TF{$jF>chtOBUu?m~Y`_3q7P+XIOZ}LQe~$Exc}_mxbOI
zhQ(UEkA;C2UbFD3g}#znKMQ;3w;o_|4Hx#X47M8auX1TEIyW0+VX%cMJCqKOYN$2c
z9EUK$r8#s%g|IHeCFKzoMp~G;L!l1cDCVLyTK#I{H!O^?Fy6wO7RIuzOGU?7xV|=>
zb*WG~mqutbI%9%`i58|>c+0{h3rhzzW(rd*1o>cM1()Z1d$Y!ho9=1V_e(|Jw(wP#
zX49qQ(^&U9UEUGwUpja6pEa56%$Tj-wNRsM?ku*lg*g_U49r}S+;T3B44N$pL>E|C
zXyJVeA4rr%QjsMVE*wc(%;AG*6{`^wTx#)cB=R=NqMP_i_A)lBg_N#w>n*IX@S%l|
zNzSCLwD1wF+Bi#lAu@ArPE$m?!|htDEUbQNd<&mSMs@DFXIHKfzE<!vK?>KgcfD$n
zjDS02Hdxqb;i`pe7QSS~E&OcZtc9;FY~uK`u*1UUSllf%;{^9UqpdN?Hx}wvZuzZ+
zZ9>SuV=I@=CD|!Dhb<ftvdhBv92CNTV1KZ%&%z$@{y8cm{#eqF99$L-N=4??HrW;j
zgs=I$E)Rs9cc;c7w!)nnR6c6q7|kLFgHO3#<G85(a?Ne=6O!Oh7ETJG<dl%p7S6;Z
zBVNh=#lku9{wjFh!j)L)1q&C2Ut-57oJ)6E(r+o9lbQY|p}z|@>D%}Z2_1GO?N9bP
z&apOh8#gT6wD3rRZdtf(;l6NI>W;;qxbED@KE_(#lXU*FuyRPo--7=L4zH6+$pZ^7
zB;@`pIu8Y}^mJ#W$HM>PJbygtiEs)%HoUew{nGhtD8l`MYE0g5LMMi%U9YisPi{bj
zK^q|<hG5vn(IFYsF>P3}Shfu(#yP3xwGnUQqK!*7^4Z95<2f6(Z4|Ik&_;Qi+lNrd
zMqwMpZIrN4#75;^W>MRHskm~d$vv6Hg!8kJKtCtJcGoOQ+jvGuNgJhXcm0A6HcqBQ
zdiQe{ypc*mSH?zJ8_(JpSRqo*27|_mV^EUBVp7#?JbKrYY$GDMqzG0JtSHC}&@0*Q
zTkgs>s)(ejV5(r6V7een$TDZx$h1*iipNrA*{C6$dDXP>4&1esS~gZp&t@nKR>$TU
zgP3GvvW<E+vTgLR@rsT5HX7Jy!5{E88rtCbcuj3^$4es{IW`)z;<eoi*VYa#-$Xe7
zj8oD~bogp0*G6;OeQUR<mir}gD;uqCbhOb)6x!HmZ{v9zZN=M8knbd!VDpyoBy=5Y
z5J$f3?`)%sjczu&+jzmo!KB7rMW2P)-!T3~;bpSiZ$+a_uu1&OHnMW!tDjDI$;KO{
z8}l8=@1OdaY)>1#Yz&fQd)w$^yYHX|u#h(T+UReCSIo07ElkV)7}0(<<`$0pHlPHH
z^gW^jZM<gV9HM;N@cZO8#KAU(*j#{)47J_&c;jshvoTz%%yo(pHbx2`B~A0Xjjr1h
zMzcRuPhF8~zCjB=NgQKitc~P2ozcfh5Z{?lf!;T5Ot3ML{q`G$URLcNF6!EtYGa3u
zoi^UG@wSb{HkR0!#%5({ZOpSV-Np>teJwd#dfiOHSvKCa!Oiw;ZocIUmX5|1ws|z`
z92;A%=A-g_4y#$&bPHLY3XuhDtXCa6N*38@^{PX+l=iW)-p1!P-na3AL|HANjIzwe
za&{{5_PL(<q2$ZxD<#2?MEPUERf10w|3vtwHr5DPYh#^|J5}w^Y!IK8iphRqV}p&&
zEU=A@Homm+wT(?S?(#UKmhrsX_bVH_Hze|PP{K4%w?^>;nkj7DtsG@Gw%Pd3#<y&s
zayDNC@kRO%ys0oNg)jfNb9B^E7B!Bi^26NvyKH=K<CKllQjFa;_S)Dd{0AF*q%JHH
z3;&~y{hWMk9J6tNebUAe38kT)midsxIxP5aN~Fum2<6Ac`;%Ddgy^rol}Y(Yk(1DL
zXKeQk^I5^4ZESDt_DLdzzpw||I4?n8e&oL(q}Hkwp4fJo?Q5fwgUSwmweg#cfP<ie
z-);P1^FSPU9bC0>O`<%I>G4k+_r=SUuhXQjCEpP5O&hm_+!nkO)46Nop76f}|BlK3
zu`y<uyVm)%kpJ3vC_#^G{1?-C%(3uA0(G9mBvY0v^!glV&i|eQiV(k`D#!#m@9B<P
zwgZ27LJkZEi4Kw+gdLa;3OFd}xNq;d3}-p89XO8rZERi#@j~JR^9b@IO$Oz2kYBvy
z=iBBbRxO|va!}Yo$<onM5>&)NF$cvR6pd-F`=r#UqVD--B^)F;81irVl8(E0#DU4r
z1Sp4t(hi<+P{u(y2jv}<Wnoq&JnOh$O>%LBI((bTPjz^%Dc8k%tWMxp06dU^g-@0$
zFsX>+PM9eUDhMI3Nc;4yMpDH=RR=FR=;k2RK^hC@AjfgnHPRhC=b*OmY7R0SWICws
zxZB}sIH>8kZ|tX>FV0<yJf<(pK`lwVN&dvwUu?xCk^!|d>o~}E@Ohgibsf-KPmrX^
zxNgk4J~M6OG;q++!IIlHTa8E5Hg?d&!QQykjt-hi)-TV_Xy>4rgIovA9kg)J+CdwK
zdvS4YlHH_Ld@B~aU3t!X#Cm&E+cH*8JlC_BMbBgI*95Ffdr9hfDPadD@?O@2$B|d9
z)J_gMJLuxz1yP`8R|n`>f`rlSN_Kb39Sn6a%)v{d)6+pO2QLfnA^3{mhY9hF)!PAA
z{rYo&R7>f@>?Fs&g8kS-R{NRk(F^V-r~wWJI(W^&APF5T$Q!x?-zTvAL&Qtv4jH*j
zYPcjj+QA6Pi;|HJM#XraPI;N>>*9SwB90L>TSmq^c+)|ZcvOwY1P2poy*y}>2a_C3
zc5prp7veC*!Bn<;9CG6DmV>t)oOSSvgJ}-laj=?0#=&$4GaSr!uz)>*M}Rtbmpzbu
z@|4x`gol#Z4t#S<lFShWlDQ7%3IBSALhnKcr-r61cep_jiySOwqdQpY;C%-lh}xLT
z=6gc;8P3xv%N!hewFG(DDXANVrF`gMrGr%t(o07_63st~$A9dg--qdsjW}kpK#!|8
zHie;|I#}c2M+f^Itab32gIx~3cd*XEdIv=sMZR<JC^7SM2VXeYAW1Qorxn>K-Y*5e
za`3f~O@dn-Y!<@2sJ}JFzj5$wjBgXdH#OARE_{cBZ>pv2WKuI+JM4~W?&VN&ut&TM
zqFa*Oj0*c497~L&5e_&w=-{}66AliE8ihw492U;f9&y}HmU7zGXRKo!5hpyE%_5ZC
zo|^g-r;(A3DL?68Wb?==iE>)-jNs3rPla>r2ArniP=uYq!9@oT9Da@Kw(=zh*Bt!m
z;Ie}&9FI*SzdHC$f?AJK=>1(dHUAKDRgmSmF65?zTkN;OTa=FWEFGohZ7I(kDf!K$
zOqT7gNbWiKOUU1X{|Md}q|VJIk%w$DiKWHiv7||hJrVMspgF<siGw%JExAuni9`Fz
zsch&ygHrq=QRC3^v_%CvJr0351mh5jgAs=Uq7W8z1WiFpkoq>`N>`5)NuHQIZye%<
z=M&5?_~|QdE(L`b5_}rBXdH^gp+X!g#-Vte+k7SBkPzqgjeZkS7^P$!O2^@uIFyP5
zViE5&i#&~9CXNffX=P(2q5iXRJUqm$GF|yNj4mBbj6+gPk{pMK@RXQ@8S(t}%5kV3
zhZ=FH5{IgBTv9}f+{nxMa#G{ax@*>y($UrrY$li<hiXzbH+@MVQ;>yW$!o^p-%leP
zwsqq0UbU30IQ&1h-UCXC;)@zz*o7tUPIu4rbWffuX~Qfa>@F;@fWQJv&N&Z~6eS0d
zoFquj2ofbn34$O>R1lD?ARwRuA_xK^DBtb3&Ub$Q^Z(ANbI+|;uU_TqR8?I?LaPc^
z6MWaMF>ZC?H3aFcX+xIqS`kTYA<SD{8|vAxz=nl3)VHC54Q*{`XT!&@g}KzZp$(0g
zRTiHuYqORCG-ZZ`w6LMM4X3Mw=CrX9FEuMnq(Vy@_J0udd}>^4QKO`d5K7wH(7}fO
zHVm+#qYa&Gc+-aNHgvY(?Yj->!a};(&^01q9=Zw7k@T>krwx5`4C*0ssjXKemEJ<$
zqH;vi$A)(z{9PdrZ)Gq){UnDZ18o>&!vq^9+A!FLAvTP(VU!I+ZCJ6R!*HphVZ!Ns
zk3D2yJ(Bl1f!7L+u;J#n>2xXf?9n!iv0+x7(2Y#~04_8yA!Do!<0Sfc=3#aEC+D;G
zzZSk*GGh|s+A!UQ88%GjaA=X$p=#z-AyWjI1lxL=4IfJM+y3TkzL_*`!+aY`T*#hn
z!-dzvb8VO>WRBn)RhrK4lGZua)?Ip0)8}!G$2MMM!(tnD*|3}CT_0M)g4nRqhL3Dm
zO5+9FQ%JXrZ7mAR1u5y-IdhfG`fRt_hBZRU%}D&jhP5_qvSG6g>ugwW!v-5R+N_%s
z-l+3h%&moAH`n;ZnGbHO<D<9Ou+@g`HtewBNF9y4o448ULo@9WFC}*p_<!e5*_16}
zcCx)Lm&{i*%zqirsg<<HhR@ikY&c`XUYm97+d&(?v|*nO$-lJyoH?}NfX!M3_l3>6
zxKCJR-8OJ7(C2MZzp~*FFR4H0J!QjTo3(wF8%Vj0^oVeJj|w>^c-+Q&9!rPr8yijt
zKN*pHE2Qng<`d%VRQS$@vo>6^;j#_qY&dVjq(&O|P_Q7~YKJb^aFI2WE0JE_;SYY2
z_B~5#!&T;!-GB#$al)AvHSEXWsF4Z$i8iy%yOC=m^o~sM7Y+Z!zQox{flt9L8*bZR
zSKv_avkkx4@YIH9HvG!5&x74;cxb~N;dgDg$139F<I4P9s*(S*zRzYF(wKEZA@L8<
zd}PDeTq*rCth1^f+wi9iPei`wd`C;uo|#!R{Fe>S*#i~iSMawDFKoy|B2TO@ZTQ!Q
zSCYg(Hf!Ar&(4ZckV`>s1<{Jtj$H0?s(v(A(~Vde9m9z6vAkL3v92sBlgO)p`_N+*
ztF3v@TtMNT=*)P<dfYCkppb&Xigg2AL_wTlJ@`|NN%Qnnk_z*JHU)|TRibNxl+z&p
zML7L_aDwd0*A+Mw>obI*SVshSgqwmc1#ShU<x~NF9pl%KRwvRq{QU~j6r?K%C<rQm
zg4Yyq!bwrAiLR(%l7eCiiVH8HAVEQ*f|BB;PV=H+&UGZEJt~ndS%N|e{;X`Hm)1%#
zX$55zye>iI6r?IBtKg_aTsp7%K-q;f?YqL%FR!42f;SXYSJ1g=I76aTQ&3SdR!Ko+
z1(^z}D5xqyOnvaBB8*sYQ_RNh78zbNOst`xrh-Na8Y{?BP)k8W(XXwbj)Ho^sg|vv
zZiGKYZ28;PQo#BO8i=sVl&Bm@P8nI2`C`0@gf@-nv{2Ae!AKRORJ2miTEXY6b_Hz|
zv{kT3!D0pN6tq_`TEQ3v9Tap_@D|%qK_?bd!J7)YE9k<wd8|bsVFg_yJf?6oCEdhJ
z-h-V@L2vPLCrd8{2d`vMVOvsMPTcK9!+jLIqhN@Fp$gs=&Hf4oDCnzzJFWUfEH@ir
z9Zo(_u{L215@CxS(SsFC+7Z2MmvzQ9-7p33OVE1?h6_1UG)#Tk8Nnhe_@SvnHA+S)
z-~$fHSOw!mb2cRkCMcLL-ifp<WSW8x6iikyMZr{&<dpHj&AhvB=B2e}WvsG%C_yxM
zw?Xs_;WHJ?;&a3->#z5eue_C)*_fkXu7Y`@Fkb=xuD(FQcVefW8Cs~|UjLfZU!ve6
z1zSaJse)w+HVXe(!EzyM6|7LOl6h;J{)qx+X_bQ262w$!VU6&F1=V|XvWiLJzZZ(E
z6XANn4T6ais%#QMoy`ii2+t|tHU-<oyF<YqN$67rI~6=`nlf}x^IZ}&`h4EqoECao
zZTcBUy*IR1<og8k+cGIXpx_GyMO4J8IH=%D1(y_DR`8XALki9-*8ASW3XUi^so+}<
zG)hGHje_Is7*pcQov!^gTegly%{xV{<Hb&h!lrlP$@wOs*p=WZ1*a866$_t{ptFMC
z368y7@*HO^Ik@R|?X(LbyeP=%t@GHwXU9<RP{AJxt|++5nOwmyqVS`F>k4iNzb4qQ
zYZ1o!N%&26vqDKv&o;ZIpw*r9+nhJ%r5tx88O6fCvZEFY-xswz3huIH6`V-T{EhP-
ztk=clbldm~7!FKP<I!6=L62C;3SKC9$$3e^6A67T_*CZVXPgOJCh%Ycrv8`6i+^92
zHvbm>#nGsL6#UCxp(2lpSF9Elxm84~;K4yu%cb&5bW*Ki;jYEPJhUh0lpfcdsJtp-
zRTNUK7Rjd~ziQo7BoB)!pd!7n_3o~q1mzrom4k&v=igij@hWU8>Z@p=LQ$crD5oM-
zg{H!;0xDip;h^!VQ9Q0Eph8#SRR3#JS~kS8slp|M61NbKpjXf*=vUGDkGxa}s%ZLy
zbvPAyQ5D5hB&kSNQCzjwyHc2-qJ)Z)Dh@48VJAr+lzd`MO_D@*MOzZ9E~FwwY?cu$
zC0JUu-cHBmFTHASU7pkRx{9(Qr<WTrEo5z|sH&oxit-Y~v?{5npyIt^;f#oKMHM_$
zYV@adE3@Wjq|jvwsiGo#Udp=oq&KMVNy<`DOGR}RHB{>uJ(^-=)>OfJB!<>jQAb5x
z74;ZPwf0d`foDVUJT4NR-$h5lpExvB(c72QK}AOujZ`#N(S-G*q9rGJ$x<^F%~h~-
z(hj3cFq2xaftJRQv=&KQ741~(PN0p7Cx^@My%5zFovzJp*<Q6?75){~sFRA$Du#%D
z7ZqJq^j9%JMOZ~Q6>qBOE<wNVjAka;Og&We6iGi7y@b#vo1?ezw*=o7>?8P&;Jbo-
z1*<G7n-hg?YWF4$6yacYDsR#t!Fk2P<QzCdRSaX5su(UU$YbSx+Y|LZhrp(c5h~^t
zvesRXSyZb2qEe$pVX=xOD#oZ7t74pr@hav}-Z(@zfmJPhqKZi>j-(}hpyF0`)5$6}
zr6&EImNZ4hRMpzNJSJECG!;9Fh3V*>u40CYqRTUiBqhycLo97FOT}!_Y+^QYRZ2Qp
zEIgN)QSnQ$@O(*Pfp8|eP`rx-r~cTLl8;m@RdGqhWfjXfcvT!w@r8=zDpsi2qGGFx
zl`2-TbyRFrv0B9%6`!bBt6Fz%PpV};E*55~2UJeyZT~td_bk7j3U?AH+_t3bwh1wt
zRBYy*K<DUkCpt08TUXN$Y)jgvV!MjZRP1HZRD7yhZ(R4V6e@P9_;GS`_lsJm=QgL2
z-OS<rgnz0hdT&>vSx+EspNh{_>{qRSqs(5I!U=@u48J+c+OWVp98~e8ijyk7Rq+)E
zri!C%P!)$+$tv8lqPk{lU0;NLTGITZ1BtxDJg!<RX}?zS4X2LcVGc}QP>L20^V7)*
z_R`8x-vsKMQgK?vc@-BV(KDQpRGd}O#+g>Bc$lv}xs~IbY8}UVrc6d=nGEjKU~#zL
z{Gw`o-Qzz@zh?neyioCy5*1ff+*9!zORD0Uil0>6<k(cf^|xk&=o_48##LZpyY;b-
zZoZ}Bwu(C{?n<5i%qUA!Hn>B-sQ8t`ws@G^7U;so!}}&#OFF-v9hzZpd0)lvDjqXe
zoJs0y4_FD?gMV<;tJcJx^(>9sWSF-{>}FjumUOA{M8#9iqVuEvBA$-=d0NIZ)%ucE
z<F}+AI#y(q=N!2z)~`;ZD{;NvKPvuJVQ4Tlyy9%Hp@@b!4Y@Sr){s|2tY)2W6Rm-#
z(dN+*qgl7mO!4SQ>(z94VM;y?JfgOMW^KC9uUXw`c=7O1HMOAdLK-}yo6{B6tRtaF
z;x*VbXd3Jq6b-6o?bhLQB_r+%rEEW+M#2p;4h_0yJu<K}Q0UaGCRkkDdd75VaBC=`
zp(KrK@M?HXLs1Pr4b}!O&FTq$$!CC}BNOO?LK@VKV^=9Sx9q0+TC86!rlGiI{d?}X
zGn5#eM*9gG5*b}X84XEN@Q?=XnxVmD4Lgd5`S6mWp_FD#jAzUc`)!_WEq-mTZLV!?
z(0E-EZ5yARsv%9oARU8sq-!Xz;j9Da9H^inLqj_U+B;BDLnX1(#(~NjGBw;_O=_s3
zp{j=Y8Ww1%rr`|@-8J;kP+da}jl0~yBG%L}<2UPc#4P4kemzWHi^ac_ko!?WwveV8
znrWyjyq;iv!3KiVY^b48gg3VKy;;%exRau}@OBYN3k@wJycK)Gtf<x++GuF2S%(|&
ze-@0z*CXvUbkNW-qWPwfP8vE3=^{9!NvNxaFgsG;=5*aO>&p=dEx133BKFiURKqY0
zy)^XJ@Rr2N33^+29}VwlcvnMT@eUB|C)i)GYBB49J>PumDSn_x1_=(<Fhod>wf8g(
z*YKf8sQJEzi5ez}cZ7zK8b)atE#5H^owXf9V}*|s94|OQaMUs@^Sv7;exPBhNG1zT
z5lr0WXXrHHHA-0j@1D*U6z@#Ic^YOhGYzdzqO&#3(J)u~#<(B-j~Z!p`xIf6HGf;J
zvrxmIJu{DLSi}LPVTnZlLhvIEOEoOh@Ue!i8n$UzF7j0xRts4nxKfa(D6ApTut~gY
z1vdz;)39DcLEXv>k%?{;IXedVX5l1TM2CcKyM~=2-w_G@R0yN*(y&|j9u0dn?2}lZ
zu@U{&C*98_XupO7>=JjazL%43PFe>e*1pv6mGDD?ha>VMLKx+khT|Nt8otqRLBmCn
zpU`kp$oz#?Ch5Kv?<ozZg`ClF>tfP(f+S}(oD+UNBH>*(V_nj~6IOF9T;@bnJp8?e
zAH>2H4Ocb%D4YuXVg0oTzs_k&y7Wz2({R*|V|Luu@Uw<icC@zR7Y)C%)OMcOZw<XW
z8h+;lqT#MsxF^Uf-ESK1Yu2Vn&O$r^?4igXvl|HcL&GB>w7~yL5T9sx5s^F<@{IF9
zlh9v+&jtS$Y_~M!rG|glZF0pi;=iK&N-#>YluM97x$TG+&P_n{=Cvc%j-qxHvm>7!
z`R&jmng#4ogcr1<kdVT5l&o!SUZX1_k~ll!Bl<QWtG>0mmTJdayIPajMd+|Y7vi+T
zYlly`A!yp+65<wQ6pxS%<<k8T$!kIab_9hWB43x=D(voq(Z%g3VMkRvs!32uJIdLS
zDm=lCL?KCbB-;@ZURp3ku#_O}a2%Bp{(3}G){eFbRxQz`iLkO@x?p)bD%h<vOc<JB
zM@11<666A&)Sz{%kZDI1yVYcLzh+sc-ms&N9ocqN7tI=WG<w&P*R&%`B;>X1s2$;p
zW)!I_ys;fk?5Jl)m-iCuM?xFe(NK6J!JJ;&)Q)C$w2bK7uU@@*gtrhfI>t(o1G5ba
zXvZ8o=GxItg1Xz$!;bcLbg-jiBo=#DCp$Vb>4+q3N7o3?Nwk|CZ$>14pUv)RM=v`D
z*)iCT-VymbLf#U5Td<EHe|r9|kiK^G6T-apw_||tfjN?c(VIu4GuuP#7%Gx!b_}!Q
zJ>gUA7%qegV}!hK$B2kzq#dIoe6$_hlub3dv388JW4s*`B(!qn<Vki+jA-(Q8XrXX
zWIKM$_g}23cI<s%oud4q9n<ZYAv!Z7nmIwU#5<c4!p<~m&a-2_9Xmz1KybAkYlJKm
zTx91xl{IxNvEw5<mI_}kNZ~R&K92C5+FoJD%7|nYM`etaiskG${(Aa)30iBnZY<Z?
z!F{6)+F-{<J2u&|S#-7wZV}ujxK)r**nBjyL%bxP3TgF8;x0ROi{(9bd|}5y&U<>^
z&+OKkkiB;7v!m4h%+Ez(zu*BuCe1N&=S9Mob{rB3`B$P$a#$os>=^x#bvp6+TGfx+
z@wFYQ1DXTh*m1&+yLQ~O<D?zm+VQ;|KS-2Qc3coruwv-69mF$sd?$qbtR3g<I4@q#
z{M_|M;YHEEB*?Tb3+Z@HyJE*x;kVh!k<goVToZm>@P^<|f-T>*Zb;~EiI;y-A^(}R
zAzt!d?YJX6r?Gw${;wUc?6_~o?{=QvX|?q;!B@e=heG}kd}POCA%6-|?TH;vh38BZ
ze+hpc3H{rS7s6jgB>zP8bEc*!2XZ;A<Z=tz96ZbuF~ajWP|$%w!t)Bo3g&YlzYxYM
z;K019)-pM|!Xo4dA}``VoOt5}S;<UJ5l%v9cfjF5x&!4!s5{_wz?Y*SXb75uE<v{g
z9wD@!Q&_(PNg@eE<Ut4Ez-!_yDp*{wnBZEu`jl{>q<9kq69s9rXE-U@fslAp97q*X
zDiT^+NEyM`9Vi=-mvdm}3Tw3_U77<cA6fSg6(qE&V1{5t2P*OY-+@dA>Nt??Kotk7
zI#9!bnxat6fj5LOdQQivE?)Aih`g5LzY7X=YCBMTWHd?LNN7DF?6DNqcc6g-4MoyO
zFy}_Au~=y001Hbsx@HbE7ljsrEd?oW<v{BQx9+>{B(!DD3no1(9`4{kM|P6C37Z_~
z<UnT!-g98M16>@}l(KSf)SC`;6&@Ds=D_Gd>HM(B(C!ZOVCoL^a-g3B{T=A-z*`RV
zao`=c-TbKf+#*_Edt2;(cDgQ)R({uEodws|VLftI_|Q6KsO$Q|0~{FWz+eZ4u$Su5
zgCuS%MDer%D)9BiPzRn|_YPwRE@7<{{r1Zy#P=N-!5-_td<RB4Fv@|c4oqYA92n!k
z1P3OvMBA#5by$y<<5>fFlEyi#Uo`Go-8>~*D_J5uiP^4`G}(bE4tyYL%T`(YulZ5z
zL~CvSxRAS9;SU{{?!YVuW;@WfUxyjA-#L1w1F;8^xWtj1^+3yW9AK@^byz>(;L_sa
zQ>_zA7C5lbfprdReeWU%7CW%afsY+n;;^2_mr9mCa$xy)N#zQqQ=e|j^ybSQSmCh#
z{mM503|i^HDhF1xU52KNeA;P^1An`laycst^@;Gcf)rLQ5nk^=z1W%?1UCw{i%X<r
zvjbZk*y_MG2M#-M#DVQ>2nRlQV7~*OvfDeb$AQn-N%}<Xa$x4N=-m!$IRR^f#~P&F
zOWW%Jt7V@9E!t@;Y5A)S<JL64lefwN2M?*hSJJx<I`E|f14@V7ms9x_GUt0GzcsTF
z4@n>3m&&6K>o9?D#e0ko*K#`FaR<H@{!K)3!hw^*GhU`qhZasrl+%J|9QaNM<=n@8
z-hm4aTyfy40~a0EMe4F3$t58N=B9t|zz@RtFq?hTI(_s<2d;6>(UGj<x&t>Hh|-Zu
z$4?I2bl{N#j~%$>z-<TaIB=JZ=)n8uU3?cYyi<MRFAn_bu)dSd8`Xt)&w=0AtRlJZ
z!1^oAXB^8U(*4e!!=|~?{2@DPkCZ>?ofgx-M0jdk>Yom@xt#sPfu~Gmk*`2}>N5xa
zVuL#Hf-fJA<}K=vrt#-uc2wo`mqPw=;9m#!b+b-vqst+$9QfzoI`rn&5v{|}Vd@xp
zEjva>JV}Xg9vyjg#OlbWqp*%5I`Zo%pmW5bkj`^0()gsz?2WReerikQf;viQjgmMW
ze^$vz$!~l8OeTp<hoVE(q3O_dICZYkwb_|Oj}(V)E&rn(s?i7uy)?oqa_LrG(d*N(
z@2`+s2aD#>@x`<lua5d_EH%H5fT#s^yha5bJb@4*;bO&NLa3Igqj-du5K>YwLC4%|
z>t)fcDk;Q}juah@bTroS{j3V5bd=MPs-v`IwTzC}g$#>NEi2LcTqw*~X?*#kBTGju
z9p!cQPgK!SRY!*CR2HnLqmqz?CBlsI$*Rmu9jk?}JDpig#~V6o=%}fKHrYDWMVXrW
z(;7anZAr+9wRO~C9<F8Am-^4vQCBqkX2(0*snn?_-VWQcS+@;@H`Kw(Tso^l6CF);
zbfr*7Gab!!w9wH~M_j(xZ6i||_eAB4RuZM1j`ljbcZzPUqm7QXI=H5E`rkE)Ijz${
zM`s;fbad3wNuqpa5C1&4DUEy?m&#^hRx>ZAbz?*weRcGsH61;4yv+jY=*gNKS-rQ8
z1=;bvB>MC7|D9C%mX0r1W$u|(fu`Qk@vek&dFQ|z-keIHyg%DIHEy5;4WLb)4TZSn
z9jvw(qGPCz=T7|X#4z2u9&OdJO~-pWhU<7=#|RyB*yyZ79iw#25}naH#^{*Npgsv>
zb&S(7i3dIE7_Vc3C`{B*s((7SFf2J*o;K;O>?tx?#}pmYbbP2|s*ZNG<0zy8UH*KP
z8Ij(c=+<Im9W%u~`PZwhOTcVVAepCg(E?VnKd?e{ER+<N>sTb@BOOb1EY`7vb-pBq
z`lIv27Rj%WEE9!~1@q;NoxDJ$aD{kR3ewwDQ`YGCM8~FxWUY|(g6jnT3|N=u4Z=5a
zbT_S$=c`(jY}T<wgncC4?K*boXyrs}CqC7&lT)7)xt-XhW4Dg0I)2o#N5^M6j_Nq3
zV=srTj)QDa9iOugtVlS(sq)v>`*l1kRo5658hEz(7gYEri$Qx!gumjnP$GPo9df2h
za!AMDCBh9BCB&5sAJK7ZQNo?YwU6ugTE_()7j=B2<AjbgjHTnGj&F6G(s5cxiIU;|
zE3GzK*sw-Ze~pjlX6Amc1HCkLR>wIV=Q)9|t5qhPIwM%41!_chOT9KE#L!C|^*Vmg
zL4H|BVyR|%i)S(7ZI@L)S2&{gB>X$B)-_K4I_~NCO*C&XZ#r(XXyU!e&N(3T`J#kY
z;nbf+@{5jNIpR*#Py8g|j?Ulv)}WocI?gt)!Gy@KFHN}5X^_>T<1d{TdOXzeNXKIx
ze@OkO@3J->G+x}4_@|C1ENrauRDxdoT%-RlH7I|hWSB^U&vm@e@shR2#(Gq}rO5x$
z@vn|oI`~ET_kUZvt7W}YGMs01!pwqJ0cVL$v=cE-q&QK^i9Al^b;9F>*NIps@;RY6
zp*oS@i2_a(aU#x%>OJZebfS<Gg`Mc#tLd{vwdmHD44*6+ZrQy_yc27OhqlDlvN=Kd
z%Vh}^>SJqZPS~ArI$=2BaN^{O1l?&>ID-~XX>jgk)|od`O(*sa3%Q(dJ8?Fgx^Q}f
z^;fdqG#isV4c72E;dkOSCyF`|aANaOs~Uq$u5s$tmZ`G_hxkD~_v5UVD-()2QQV0H
zClZ|~A*qyf;^BbMjYUm+w$5a%y{GH&OJTCpnkYg}j9z5b2HlgA;UWoEeU^5jj1x7S
zsOiM(PLy?`vJ;t3lyf50iSkZVpyh;c%VxFGoJeQg{#fHkN;CG@5|6VooT%tTB`3bQ
zRe5ttvm5tnlwOoTELg8rt%PtD$<G^3lyoUoov7wSj|8i?(~WyGwK^-=rOc_;n0d%@
zq862%Xy`<3C+av+&x!g@WV2#(#j?nCCI3?s!U^x!&fJ_88XAg;ulM1f)h8BI8adI}
zi55-_Y*C|$6HT3H=0tNz+V@UqYqwO|$I|LmK1t}=v&H;yYD*`sO>VL_A>6%SRvRbU
zIx*OZAx^Y&qP-JuOF|t4yE*Zu6CIuC<mAcH=pw?f6WxMQU7c9fCw<AVcp5*D5bn9j
zn(pYjJJE|>g(VebN_q+z*5BH+@)mQoG5XOHYhMG6^l{=H34Paz{!R=K-q(qFOJe#t
z@uGi6s?iN}g45R^31zHnukunjl#{;`zlrcYCx$z*+lf6+yzj&aCzd$zkrN}G80Ewi
zC#H&p(US9t5@n1NV};PvI3eQ&CkS#I$Rr^j2u>F4I>jpEG$+pglQv%@A38DJiTy`9
z&2VCtNIEU^&lEzTF}VC}4uQet=LpUfoF_;-bPJqVD9YrEge(@U@^<;9PAqd`hj>4B
zV!0FBh4awh73`2p%3n<guVfQAvD%3>PHc5zlM|na4nsE!S?k0)C)Nw!;KW8Jh)jzL
zMC#{|Eh1;oZ)-x^#17@;yo%*LRN+%6cCs}G{&!8><wUM`EdCkCuM@vG@v9U2ocP>{
zpT+ooCk{Aq)rlXS_(CMd`lp<A;-C{>vPE92`<0XX-*L=|LlSye@Q5Ho7mQJlJMpz>
zp5m|)`HBAtrOrtwzWpD`Y2jxCzxyBgIVV1N5;`wPazV&NCoVa0S@`!X%a*vEr|SRU
z#1+na`6?I8Uyqt3k7Z_HF|RpsU2NWP;wL9=3coFQOK{H4|7wQbYPGG7eMjVXb8wDz
zS)scp-dAGwzVP1#9|%4a{KJVyLa6^($e&I;5%M%5f9Awr5k7xa=!Fw6o%qnebOZl5
z@h@j=12qi1;@SuUeggpmxeVkstaf)8h!&y<#u&&WB(H&dLZ}lfWR;ec-#`Haug|Sb
zAzeWOg(5nI4HSv+I3e+ZHo<Z2tT{myt_j)=jGAEC(G567Vi<56@E9<~>k@P)TC*{o
z*MLtX<Q(`M@+3h6Fpy**S%O|OP(n!2h-NVZ#UngbOqCRGf`LRKCA(V2Lk3a|q#G!2
zpp?j8H&E6<X#-^p6rQS<{v`U+7ONf0MXaR>Ni{H`pEZdM-(+2>D;UTSc{Ra`2C53F
zBuItI2H(n7$TUzzB;*uc-T2=;`G$eJ&25y_G>~PWtAVhn)e>xMptgZJ2C@y*HPFC7
zLy^}LtZ$&@9P2)i?!uCooLjp_67>CACxuN6G&Ru7Kyw3a4YV`Rf>8`qyq34MfmSSd
z|8zQUq4>9_g%S>wZ)1QrwEK?KVchlxIvD6=ptFIF1{nI+o+8Arr-gE2b&=@QZ;%+K
zq?>^^4ZLfhuVkRRfnElB8|Wck8tiG{>snTQ(!FJ%PelH<kO%Rx??fc?%&2|_`ipnG
zfdK{v8W?S0jDbNS92L<V%skXj8De0lNQOn^?+F<$_`ZP=5&1|1w}x76N9TQ89V_y2
zjJ{HBu+7TbYO@G&f`N$!CK>p^z+?kc41DE@r97txPK{Wb#wv>R)g6P=XBe1i;E;jC
z24)%7I<&P0))|;>V2**g2Id)9YFIDR<{Q?7%mM=o4UAkLdeAeO3uYD>){46&hV@Q$
zvEasqb{?7g5qtZuH5qG}fsdK=H}T62tTM3LzzPE^4SYVM?zT^puAfThva#`1Dz0H%
z!&*Xi@dxYR%`tZ>$6vKx0IoN%(ZD9Lyn!7F$%mAT%?7p@*kj-`16vJjGw`W_od&iW
z*g@r`ex82G_c=UOZ*`M&mWaoMzTY@{mx0}!69%<lDMluS`TlCJfqe!J82Ey@I$Pv(
z1Kc&R-+-PTda%#>{&oCxy@Lk6WK9}8i!3^7Ln7aCF?z;~lz)q)@DBn<3>-D^#K2Pn
z#|#`d@PmOX>@x<wF>uPjX#*!X*5p49Ct35=qjUJTBJ4dg`V1@3z<C1~M6z{8fC^{X
zZRSUvGw@+Jz3a<P7Y!&&%3d;XnPcr`C(5bwJ<DD({oI1MRo$(hL0mQPqk%gdm<FyH
zxNhJl12+xa|0w0gX8#R|LgkzFJKSQk{vEt+;AaE&u=N*-nDo#u27YBKqqAtL*ouap
z*ec}r4E!b$|D+uQzZ?8P4;~qKK$0G!dni#xyq<P*ZuNY9Gw2xoF?&v8xVj!9GM{6|
zXFW5xq#wEor-|nV{^sNvTg7JLg@Km_Vol^Tv9otdmxXbR{*Qrw4eK4+E6#G6=~1SI
zxdd|y(i?3eMtB~<yn=sj&tOn~69r5ZG*QU>ueNE5)n3>{5fgDH;!X59pGxIYv$Kd+
zO+IfiI4zy1m{3h<l9@5vG90FrPrD$qN6GJ(nmpQ;VVDS*2%0cWxJ>j|-q3BrYr<!u
z##gmHf=rZd!l*32i3(*cLZpL<q9%%o@HN5YuWA=J|Etg0VXIb4m~bquOOj|J$;8oK
zIMxfvCPF6m*1^6yNHI~0QIhZ|38hVxG4Y@%9u~#xCd!&98AL)5<xHfSIO4-mAJR;u
zn^^0`IxosIQ4@t-yn9E6iHar`yp?jwL?siIO^h-z+C-*_Dkl1w=x?H`iE1XAm}qL^
z4HMN(WSgkVGMcDqqLzu;tZh9y%f#+R8s9*2$a8ag9n<<PINuvTzV7FdyqtyVnW%4~
zk!h`-niv;LodzZvvax2@<T&E$IPOg6%hkrFYzfI%xtWRPCc2skn`mL8rHM`^I-5A%
z-p2WXr!==R@$cz!txdEsp`R(&R<NC5d%+HZ9R;ay;8pG}ChRMHO*Z(M9OI^*Dc8-!
zn<m~h(U-lkbEw`7S9exaVz`H3Pr+V-y#?PAd|R-O;5&le2N{e-9Ca*eQ7etxkp`F;
zXySbnBTNi3G1$a=CWf0BVq$626qa--8`oz2U-jz)Wrmp`)?U$?yGv#?32}qZ!?Zel
z8Q$Via3p(U#~3d0;<Piy#8?w6O{_98&ct{VvrWt~F~P({6Vpt5XkwCy4@^ukG1atI
z%1t)GHEdio!rsUQY}}pADK4<JFgGkuH!;J+OcS$A>pMb`UNL{Hi{Vm3HWv3R|1?kG
zn!~v!kG8-^%(IF4>?$S}n^<CEp=oV6T4Y-Lq<BOL>yw+vc5O@NakV^GlRJ|5f_<5Z
zk4-E$vBCsTIp&Huo?XmIHFte$uNI5L<DFNVSi_!UVvmVWSd%8Un%HJyor(1(HksIL
zVgoB}R@Cx(g*Tcoq8l(GUr4fYnAN5??caISEhf0Kk@D>(cCflk>|*6FjN$+9_|)?$
z>m)vry^d>@`E`RY{JECzGY%ya$64(r_L=zH#9<B=6Z=gZF!6<ngPf_FgckS6;K~PD
zru&j3PP6{T_?3x6OelAnF|s=Gw^ynB3(Qdy$2cj;|C@NciM5<t3w>kago%?TzGV`%
zw6fV&sjUS(+!9_}<KYtA({$Rz857@`IBVh|laTRv&cs#Lt%>s{E||Dz;*yEWCcZb3
z+(hHq6qV2Vnbx|JaX)ZCnbrZ|TpZ52WjmI9RP!1e-Ner(elc;w#7`z}iCG@ReN!^Y
zq}?5@7yh?7a~@Bn<JOyBP24eY-^A}G?y_%WYxhk2W+JVwbt3oMA7s;hwO7^;s(1!I
zB^=!kI6NI8P9Tp=JT{TXg}g5OY2t~Ae>gl%JT>u*HOWD3;xFc8p29s5%r>JRN(>)q
zq`lxou{h=>CzA!u8w^Y5CNie-%0!e4xm}2MVP<{nH|x1vDD=WwHh(oS9OJUi3Ew>|
zmFcpu><M3wZW-%BJ{R)4u<K*%oME~GF4TCtLm?Lmx~xU}OtIxJm8pEHp%&*tybDeb
z3=eEBC@%DKqrV$FM}<@uj=S)+3z`dd7aT6=F1+bNcj~)fxRB`LZaA1O>yd;m=z=T4
z-9kKqUO}G=ejx$DHz!;7y%7GI3q^$#6D;XMaUmrH-KO=_kRUwg4w>F$7s|R&PJ|)B
z6v0w1ly;$v3$Kf}VU%^(_i(B8MlqEV7n+GY-G%Zl)N-M=3l%u|yHL%AHzcT{3zb}`
zEc}^7&txniG*ZQdsuGlQCrL?l@n*4xU8pJi;%V!(M#s5LTkwU?#OOLAtmi^~A=xg}
z6{0Q3q*?>vBn{bH<kc>DBM~+hY~n)Gh|b-v^_siT!iAPDv~nRV^42c2aiLvAhsN7R
zcprO>_AYb~Z%4r{f}I3A3yzO((N&0R`+xWL-CTHYoz*%$T<Gb-4i`Rkp_k}PaABeg
zy<K?Ag|}Vk<H8UZhPv>Mg!XfxzmRub=<CA16_%0VA?r2W0Fe)JVW1F7?#PYzVD_j&
zE$F2i=E7JBeb0sA?5M&=Mf67q87au;3+j({VN4{nTR-brb)0y|3&tdcC%N!}3#(mN
z<HBSYrns=!g(WUb6@}?8%y40v3m>{r=lFk5_fukGXSy)Ug*h(FjTB+s1a-DVaVCZ5
zxiDY&wEkA<7I65S`tLpDLXj_G*E(B+K_9uWR3s~1SmwgV!dJMkTnH6%`bmRi>vyO>
z+zb*|Nzk*x3i&54Y>H^E6|zonz2F8HHbz4CFNxXg!WQvv72GD+dxg3^qLXK_)!BB6
z_n_b|7k0a_$A!-#ItN_X8{zweeD1>jh=d*fiwJMEM*C9uR}sk}A%|T!BIKyxu}J9K
z6QjQoe&2=PT{z*wNf*8q$&W5v6LQLh(=MD5{+-|tE}V7YoD1j0%luyuQu%J&MIo02
zFGoVZcj4ZJhE$`wBEqXKyp$K4*Ts8V@P^<|f;R=Jf6IkKGRA)v3E!Cg;=-@&27MCf
z?znI_!tc58TZErn;%D3kE<APNnF|jk?jI4GkAyttxQ<Ak2w`pf<-&8$JZ@yT@wW)`
zxRKY57s6k<@Q(}s3XgJIv+FD2^>SMsBbP`>atn!eBPJplBHun@-SD{Kbt9h}`Q0es
zMnN}pH=J%1ifG#1DC|ZNH{wL12*yW3Z9;y0zm^)2XhJ6S%ybA@Fx~1-h8w0EE|C;|
zYRw+g3@e9jH~8XZWYJnbPD}8);ddkCMv5B&H-c^yccX+Gh*&P_#%pfmOw^&IaIuIy
zt5>LGgeSNWB}0Bv9wpI@q=-B@60wvUrQIm!MyeZS+<09S%DVCX*8k?TtZ3^(uy=@>
zCPC?Lly_r-e5s*)(2)4GTdkYDiV|8cV!x6bmEFj6qlz0<-Kgb8Z8xg9@rD~U-N<sI
zx@dm+DsK%T&NOS_kGNp<z?>4XLh3}U)paA=jdKm+>K1KAg{sou>buc^rEsH>8{OP^
z(~ZV%G;yP)8?7W_Q#YEs(ZY>p;=Q~mGiFl4NSU8$r0iz3wHs~R=;%f#QE2N%JC@F&
zJU`Hc3Uuw==paEkb=cXBL!)E5h$MT6rO=gSNeYK^?BB79&|P>h!5(h(6!I`v>|m+J
z-fp}llDAnuQL%l6_i^JLA&ma6kh{M%{&-+0>tOu>ZVYrI+VkIi!XP&`xv|-e!EOw3
zW2hU$+}J2l-g9HP8_V5T!M1Z_gd1~2KGKa*ZcK^TAI-Ll@G)+T6+SK^883t#a$-a>
z$&C*pe6o<7uY^<Gm?qv2-Iy+9h8wel%oO~;SLE4j9eH~>*Nu5@%y(mfC@c|N=*D6p
ziv(E%gQ8-q<gvOO-A5u^>c%o59}5=T@n6qeDc-eitP-+XaE%+E2-yi`*-EQtt`qNi
z!3}~GPU&WSV%{Y$Ik&j+lN&eP*y_eMH?~J~_PVh{_@@!cP9eJlcMI-u<1-;S?Yqy7
z&)wMX#sN1@y78?WUr6X7Hx3Iq=*E|BeC5XZT~;4cXIRBN;>J-ozINjq(K#k~oC9aF
z6-rl1MhAN=`3W~hUa3xU%8k=*{NTnFH_o{6of{Y2xah`NjubcA=Z-z^M((KClM~V}
z^iHJ(62`jZ#$`9Ymn7(|IVT}B(Hc{9Z_m%X>c)?5T#tlaV~3C2ztPAI@pehF-cjEY
zox5(_6LMSdXE%O{#QoKcI}x5^<TuXPBDpX4yBiPOc<9C-Zaj74nFt>V{^`bJAxtQ?
za;=o8*eC4mGZPXgC;TPy=YllLGEyhU{tGu=iuWHk{&nLOr#=}txda0;q4`!>T_U$g
zqW-E8<3S$bc|FjC#0uu~Se-V%aOxKjQqY4!9u)SVNJMTE5+@k%!8<Y5t&|c8RfXh@
z$!qt(A-vsycs&w&Z(yqFfy;vf9(*A}w+AU6loIaoz#Gx@dEoaTAl{${#f2ae`kDtt
zBfOXgY$oQRga;)(NQlUjJV=c2oO($1AQX{szAf!R84up~V1x&+dr;PcCLT2Ppq%Jr
zcu>)U)Es@mbiwk16$Br|SYx)5@R}ZEc~Dt6g_%OC2v+r=T15Va2i1kw5Iq0Qf4#ky
zc<T$+_Mnaj*&fstZ#_ZUbU$(OW`=~Wfd>sm-Y62<*aJ=@_y0+2CX)6ZbnsZu2+cic
zA(ECJv=Y+VgSL@aZ9F`N!nz96wG&}&!@9Zc=s}-|PA3mKd(g#$t{#Lv=<Y!e3F_v-
zn?iEtfdMkx_Y_I5NZc2>EaSb!`<4f9N962j?+Aa_gT5a0i^vBG=`T3IgOUHHwYXP(
zkOzZBGQ@-7?4_}m&7mF)i^O_Q$cUtH`y-7QG}41n9(*do(H@KuvfYER9*px~z6UQ>
zTAg;h$ftNPLC8c8CJFh#gULd8t4uXICQ6*@!88v(^kBLNGd!3p!o0cuo403*cb4F6
z!8uHBpS9R#o_O2D*X1Ur1s*K)V37xlJy`C+3J;b@DAksE@R9JPg7NZ@^0Dw*azC@u
zgH;}E@L;0|S9`F=gHNR08GWq?*Lkp>Ej}}Iosz{%>Q@e{uJ}N@$%D-vZ1G^LsC}2m
zl8>IQKK|SKazwYygFUM(vO^Sh=C@|fogVD+V7Ex<&AGts5$|Un?2X9xdGL9J?-vrc
zv(Z5hzT^<|;&m^-r{ItWQC_PW4|{NgW7dO<qIp#CwBRwp<APrce&fLjAtwdD6+9)F
zBHwOk@QirB6Fe(;&V%zpCP)ij5>CzA9$Xgwy$3&da7Fkv!K)FSAB9X^5_4V14Z)ux
zp*Mxx63jYmjg+4~_{D=?J-8#nrye}>;I0SvJorr{4+W`t--F+UKZr<pZ~un}kHq_!
zJ+p-MaQ9~<^ofUOuvq=)FAtuJ@L$2d1z)lovnS+J+C8%F!RY=G`JANiD<SowW7#=#
zd6C<TXsP*9f-zp?5t7#nuNOWqV!g=cMSc<5ygb<h1-vLI-a=j!77{<-x`!_!JWi0_
zcrVr`g^jkUsu!9F-Cnd`5@Ywm>4oEIoWqMN3#`2963UxcL&&?UYMEZRB6f<GwhHd?
z!l<7TlRMTQkr(qK;6>02h@`0CYmv~gGn?#~Z`~dg_o9RsB}E<*Ob|>IOcG4a!C%@^
zpDx9Vg&#H`DJ^oYRUj|xMLF?y^dgl+cq=c``SM?QOD`&Tk>N#s@iIz9FRFS`O}v!^
zD|?X{39aJAjzJ*~{5M2WGa|3<MGfIO11iglTH>wkMZJhl9U<9X)D`l!JghOrWFZZ_
zXy`>F32N*`b0JN<XexwF-<FR6Uhr9iQRrHTobM~he_9vQTD)xp+X}W5WN3RYIz)KR
zi>yvwboQc)7hOd@&WrJ0guUqI#hYGq_hPsg?|ae1i=JNe@!}m(>*d8;LV62+GRNva
zZwn{k6U4h-^!1{jmp^c^rUg#6IiUk0Izzk|=*7yYtU)3f9FeyTx1;`0@ecFiJt3d>
zw7!*$i0F*=@^5aI*-_sA9^Af=TevYI9P0&Njxm&Of){f|IMItqLO$^F{Xb@SG1-eL
zUQG33mb~n;8_MzNnbSn)L&1ge&T1wVyqGN#-dD^K(sZ9SIdEuPC|_fq7xTSXz%J*-
z3YN%=MP4lSVyPF)M0tr9#n!1Gv8yk&u3yzpWL2Hn;A1bAvv<k8C~pGCRjM`lugbSG
zYps$fRQtq>)n2R-Z-G44M8VKe@|3#Xiw$1fVKKef=*1>4j(Bm@i_Kna@nV-3yS>=z
z#WpWm#$@hb_7*0Lem}I`Ykj9CA$}@mcM4L6l09B)Z~o_A>=)r@qP*9OeM0!4N*(6m
z0F6J3`^t+iyf`SDUwUy#DxXNnArT%Hq<+_JamTzk&WXZ{tCGamUYwKAZ@f6+#YwS$
z%8S!pd@FJ$^lrb<885z*ptCs&^`j|g4vGA{e%^}<BEQJgy|~PthA5uS&0m;(@5K)i
zM9uMyG%o8R`B5x0^p+RbytwYg4KG*~KSeaN3#Z?d?B&!F6S^%yKMVfi#jg>~pQnWG
zdGQ-t+=qoe-1p*l4j&)7`tZPuhhCKRp_~tYc=3o6mk%X<c<jZWoQ-|(`S8Sxr<`?t
z);E#+N#SQ+{L4|6lKhv~l05g~Z!cbW@lw41aL~c}HFh6F@zY5Te<k`+KIHNtw-3=i
z<ntjv4f>GBhrB+-`au2v8|8m36!4*-&sxk-NOW>+Qh|=Vhy=y?5buM{2gL`w4-TJ|
z2h|5nLUWXJ^mQMcKDb0~NQq1_%TT7yY?HWs@cd6&l>2=M`0$z!Ma6Q^hwCj9Av&xF
z@|xumi}_Go3@$$sb*@ul(e8;?{!ECwpO7HJBp;G}NEH5Lj>1?WA5wfM<HPGdG`W)Z
z*X}h-`B2&i5^iBTk}r|x8Rk?-z1x+jkjjt0J~Z>8xew_+l=q>M50!nWAT~36sOZDQ
zQSmu7&r;-&OdqQF&{TA)`cTb>hQ9xPO8$n=YQzRURQI8V4>f(r@*&%Yx<1qreOjm;
zsR!nyjtJ|HZcbj$hx!p6dYN2K1(G)svyCMpEi{Rc=$1w3rE4J(+xgH^NGrkC5o>LH
zXe<2u@7BLQ+Y9dy3GL`ZrwH#Xg#S9{m<{_d%!l`U=;p(l%zzI)e0a-;x7l7kj4zzp
zw{1pmpY^4$m(Tjnl{-0HAU2Ic@;*KcWfd*9wv)W$!@Hu;*N1*W`ui|I$cSnG?PnS2
z!yu7Rf3OcjBK+IV@t))`w=E3!;e8)Q`Y_6e5p->AJjUdmS+17_l8enr8STRuA7=V6
z%ZIT(jPqfd4<9m<K5G-}>4$|Uuzd%Xzy6waLf}Ln$|i>=34S0rS#XLEQ+<2|8e%As
zjt4DH_hAN`FWLIjD^E-c<;$4u!yF&x`Y_LDecs)<)%uXi&!*g<$1kT1t_0_^iY}K-
zUK?8E!(w&}A2#@~grkF*$yM(YpS4+ODSK(xnyY;<=B6+6;bR{T4z~_4UoN351Xl{K
z;^<rHW6&D$7MPwrbYSzfKCJU$e%^G-mn@AUZuDW351)(9W*^$+tG7+~7QwB8WtK-j
z?_=LCe23ttf{eaX$Sxmt3)vHqf9Atp;rk+zzx2G+-|xc#k$mB^e%x>{68fc(uY5Qp
z<Zwj(W4HKYJ{;$W2p}tfuYLH2we80=KTh~?(uV{;68-qrhf_ZM?ZXQnPWy1ihu_#C
zccp*l!&x7$vci2h=fin6%F(DFe7NAlMISEv@VyV0eAbCT$!Dzv72)JCImv<2)`xE%
zj!J%o(Q9d&@5PZ{^Wl~cx0z7q&~=XAZ0!aoipHUze7MO8VM!WY#gEc{W|MLD@Zk<q
zRAZYp()b~}z~bn;KHTGs*Hp`Dq&?VYogFkke=-xg@5Aq$|9yDq!y``kyaaTO=RXnt
z;Dpdjt2ruzqmMoCPamFf<w*nWiFB3slEY7ZSdbhh;Re9JICTV5p9@~xk^a($e|(7Z
zBi@gHeR$=wRwEShW5mqpC_i%fv9O+2F1rI$e=w_gZa<>^)*GG}Kle1%$Rn6nFjkPl
ze17DQ@B%^#3U<DfP}na^9R!)mPiLZrA4;?N;q$}qhvJ9ohvtXfkI^UNbwAqeD*RcU
z>JC3XEs@Mqp>CSVPCtl-AEqB8=QsX7F~#M#7QfNCg?Rk%3i;`~yc7of2>MaXkK%s7
zkJtR%BZlikqj`Ga&g5{l9@Uu*y6fTUPYcI3Y_65?qog0)r#WC_bZA-y)@PC*$$qr(
zqop4qKT`at?nezjO8HURj|@L5`ccM@*ZoLiG5sj(M>)TBm{qFZ8mC=%wyah%g=-SJ
z=Bs=<In04v-VZie1!k#YDjSQ<#1%M|{HW|l6+f!_@lTQ1Oy+ie)WD{NJ3g~cs;uV6
z8-DAA)q;y{TuM<rck10_Ynxb2KeGJRF3|>l)bgXYA9ekx=SLksvRTZDahy7)_bktj
z$6ci@UQ6%YMxVIXS>KQLjSDxcQJtwb^rMkjXzWK*KbrZ`L~4&Vx$V8VABFztbhUG`
z8Hgp}wVPGi%8$-|bYUa<(Z-LqY$iWC`K@DP8QR{D4u1Y!$Z8Z$p~O@<?v;O~XKip*
z5+z;zc+-#Weoz>eTI%Mv)-iH{N)JDJ`gtY{-u0uGAH5mMs;-l?_o9pVmLKD5gy_EL
zp4o>%^_o-IwzSsQkA8mZ#%8!+e?JBY@$9#@c@7jlNN}(qg+u%pDtwsWdlC7duk*ey
zd;~j~kWqpY1V;;w@nfuzaf0Ioc^Rcyx{2bQ<i`g>CJRpaADs{VnC?gJ0HOn!;m1r?
zogdHrnB})_nVt&H7M$b9TtDWqLyGsI9}74hIj8w?(vL;#NPg_{W49kmsK7e+V=bf1
zi&^T&$9^pLTl3E{KlWbs)A9;GR{F8pk2QXbYot-KO3ZTY5Y^sjW=XhaiMY;>^?q!X
z(A}?xHu$m8k4@~K@v#iuEb=XaypB_Wf5YMWv27yRF38TgLyG*VA3KGxX81FXJ$`)V
z$CrM5#a#KZ&yO!epGH3SW4|8<{$Hsa6dnEwoT;;Phx|C=$5AQW;YjI@`ElHjul@Mu
z|698ME!VdknCx|8?X(|fI7a-q!M^9mSwAlO@x31jpM=i&ao&#$Y{7+Ay<HUjOM)D;
zTqMTDtL&~n_;JOLYa+iY_@f{#@KVm>_;^hZZ;qjbpEzsz@rxh7iv3%D-1g(=|Cjwc
ze%$rr-v7^Lj-C4=|6TBb;6a<!B7X>fB=}hHPr)aGRG`{3;e39f_it7m=NV4;BIJD_
zg)fE2A?lSMQ2}c-<qF{3nY;{IDyfhZUzHFOK%M|x0k{Lm8vys@7719lXLPXv<O?9b
z#4Qj&!2k*ctT}LMY;MkbA8v~&ESgPoTRZOK0*IIBwg8%bAH30}Ax$YFQ3bUC>;Y>;
z&^ZFog*zh>Lx>pwGfV|f0Nwx+0!R$N7l1#2q5&*AoF0%AYd_9-Er8hS8NmP$0RQ5_
zTzzsaoBKv%Lg8Wo6c1Q?jY|YjQeuremANI>y0_dL7n>A7asXulcwNd83ZQ#>!%|{4
zMKC)qwX_hf?rYGye%S!Z1&|&<`2bQW&(`SD0^p)M&XCozGU%-kK!#YWBoTSWHS<$3
zVC`aN&F~?jasZj4z}d1&096ClbXraD4Z-Sy6xNU$AgL8V?EqE>uqJ>y0b~a-A%KYi
z)D56s0NlVkGJyI4GzefAgF4l17(gS=Kc%e{8wb!NfPMj#zMkDQfMx;oV8%A2@~E-q
zjC&`cLjWxTXc<5&+W$M@(ZIyE0kjt0Mvy{pC`@c8-u8m6UnX=6pp)><0d!$j?<ZV}
zORU%`k)$h=5D9s=0NxbdJtE1xpQ~p8y#nYRz*_;l6R;lN-X{4fm9CGFRznhb!YaM*
zN@!n6h-!R@>mR^?00ssyD1adW3=QDGwd@`ZQU|kt_RAt6ria2ry01Dmd@lgou?oWj
zcwfi}_P{<d%SVUy_KA5|SL0K_DArYc^ymP_1TdCeVoYe9;EE9y$j7tAm(`wJB{V63
z4+2=oUKGIOfVJ9oW&pDSm?C^?0Mi2aFn}W8rxwXbogT1GuIN0n2KfvMGg1dX56uo(
zzd@f9z+4G!cqWxb<^|BVZpMNDCS|6~myYpbPH@Yl8tgWU19)J@o-LocJb)zu6zE;!
zqX3pla?3>X;{Zzaj^_;tm3O`ht&kwvTq&We1dIKU`bhw51IQIb?jY6$us(pR0sI)i
zh5$AOa5R8p0c;9ja{#*n*d4%@0Jc(iC*f0erz+Nh|7`(mXPpeQ_znr;s>r@I)9Bq9
zz_tFNW9<s>3E;B;z6{{20QR!Oi`szzPOZ(Dur!Xx=YAgG-mawm0X*B3PSPM0{(_x0
z6h0WhPpfN^917rY07oPuj})fk+{h&8K3HA<IB)&~I1|8kqVNsJ9n-3tc7k0xWE}*(
zt$GHde9IIAI4wH$uUJRpjtGU%a=HuPexA;kMSebj3jtgdzII_8buO{TN?LXOrAB=m
z`d*ZOV0{WnawJiQ(XX*L2JlA!j{>+M(QgHCoB0=hQ;?cG@b+inzXot8fM0|&`q|yV
zy8+yz%>aHE;cpxrKU=j*_t_-tK;{Q*h(bvZ*(++M&6aYNua@>Wz)y8}8Nfdh>q!7l
zS&f`sH)Sx&Un2ZlklyFCAQ4|gB;CKxzJ9kZgXsPh;i~|mg4UCxanF)R2N4s58iW?a
zSHV<vr#wOA4Wh!8W|eYT&q1+4<O?Ey(E4XYfgt?*Gi*T=45CmFg@gQ`V;Wst5JiL^
z>{FyvzozjK`TmbGl%Vx=z*sb8r<@jo2n3-A;S5?6pjXfc!WD#DxEZvbxh_8{;t?++
z{)3cpuiH7<Qr{QE%Lke4`Q*VMiUm<T2#6*nuLV(*!VijY5jg)w$Jv|0PcNsJ2wK;y
zc_ot*gGdUZ6VMq*4kE;ygO?km1X0SW0UQdVbP#2N7#hT|AYKomY!F?7=*so~L8J!J
ziX{pnEr|3WvV*7_M0r+M5S4<c97IMCi&N4TWThPrg*|#wMaqjMQF4qYzXh$snQtGq
zR|%pj>ywjz5H*FoAxKGeAvFXaRgKCLQcJM5U>!kfUXg~b7evD#8i}yJU<1Kkiq&r$
z2d&e48r`tEN|PX(N>DSw=7N;B5Ykf6e#%-8+=gAEYE;J{+6K`si1tAY{-y4@joB~n
z)}7Tk)Pc28B#ESxMA@>oe&-;DAN#K-hlA)DL@x>I7Q~xEx(m{B52*p>r|H^^-Xa_r
z#9M5dAkOtnra~Xd@H>L<3icK3C&;q&4`M)sKMjQkiIKq(`$L2<^Y00n7Q~0lTM+LD
zF+wC$1V;ujDu~fRj1lhyHv09tV}lqU#MCF1$;XLgYR$A+>$5rCO%%0Bg3ROxLM98|
zTv&Lj5L=2h5ls(bMi484SQ$i#l<>?TW(6@ji0^Bq(K|;pmkG`dVxExsK|D!p_)!o)
z7v|reu~3AI1Zi+_5KAKb#EP0rgZR8>GLHl&ejJf6m-eFasvuSeu_K62*)xr#HJtNB
z=M(W#vQ`ND#(I%&U`sVl+Zd_OO+q#Yu_YqeDrB4BcJ_ZgFPne~?Ud-d1cz3M+AW0g
zJwbdXd~Xo@gnTaeh2Va{1A@CZSbg$f5MPRyd|=<?!$BMg;)fuv1aXw|AifRaR1n8S
z=VV0l>ma@nenPNL%S`u)!q*E~`#xyrbPyMUxERElAifiYvw~Gq!smpX7rdle%Et~z
zovD;^DTvE#BUV>@(s&uF9SSFrU*$v;#JwPX3*s85g5NXvE8g2d{x%vng7}GZ0>YHs
z6p}Tg@hvvxcS)&*>-4Ue_Hz)waQLKze-+^!*51PqL+S2{WKYk!_k;L7h!>pDf_M<b
z!yx`-P!LnbC;dSjkW}Vmkw@Zv97JYx-0TN=CyY#bDw2x>lKu|j8HeZS|HIUGKxa|B
zUk4HhEeRzQse!w1+xpf72vvITy$S@74g%7piBbd+5Tr;IeuzkuqN0F^fY?ApK)RxW
zC>^AKcb>Ta^Sx)zJ$LRrGdnx&-7-64>f^W-H6HLArEw<X7N2Z(Zxcs@Cmg{>nmM3u
z7@rD%CP*<380x46v~vRSKmycruv}uvr(|@wg(nI!dLAKpfqX*p3l<Pe5~K}daaTa@
z#}x!ZYGW2~nQGor89*vf6ey>j)_|*a6&Jk}P(lc8N~&*pp<iw{xNY37Slom6lFCdn
zIJ=WUWd!-Amz=Ih+c;kDbIA7sKB!-|?h&F1w!D@?aZ_ISfdKGgxbUdF1*xP~EUk;d
z>cj^0n!+tXdTk+&pns(i1|mRHpcxPa{@D><6{rTpfOH@OY5@Nqmwf{&LR}M90$!Iv
z;Ggnlri4}jKHXlIX4zOBXe@dSpeFFVaE3MzQVXc<Ds_Om!t1$8eIeQ7b3>pJu+qt*
zTb*V$VFr@oN6W4O&4Cs`CpT70A?*cQ3APq&1GHt{*dv^*c0ie3jr}X@c95Wsg3J|n
z+#q%qZx^7et9KL9UGQ%wt0&kC@T!Jsn%c#@H;`9DJ`H_<zQ9xlvHZEaId_T#UoG){
zkmCIX2M7*?x_6`4v``|y;Ti&URWOF_6Bq`*o5OJ6WndKJwoBl5IwOFQP#-h$hMkud
zPd=*71-iL+@Uc1ZquG-ASUb}h3ycHC0~3IWz$D-mz_TEZmVCI%xVdVWlYuF~$3+sC
z7tOst(mLnsnaM^&UgS&zUIUH*->^b~>A+%O2`~eg3Cxr1%>v#4<_e!J$UMI(WDYx2
zP_1M>vTWiD_te6GZvkh|lufLVI3HL5ye(!6`7DsNTtV$VO!p2O>Tz|gLbvWqwRGoF
zU<<GnSO&ZcESFgC0c(L3z}<(*Ii59J39J%*wcr}T?8PV7@j%CNe;~^LfaH7@(_Am!
z_XRfyj((&bsBRSgq2MN9vk>Y@6B4!oAF-}Q*$(UwvQKa)uv=X_si%LtSdt=sB1q*^
zA+w+6{tPg8sbyL}2llw3dzrmkMJRp&><1=m|E(war5GF#{7Ud3$DD<#7!Qm0Yr)`s
z^HGb6-vZwOe*k|1--}MOU%50saFo4RlplfPz>UZ1SU-t!8u$e`A^c}I)=43!1hdQJ
zjPUcUJJ;r1cIY#enG3*0SHC1AsddV4z-6F&>xMM=omG~U+3|v^(<{JL4wArQ)!wYX
z#Qr{T%}wEN4llrU@!k-;1KbpHOYpW}(@Uz9?g}Tl$BxrFh2&r0frt+UBcH2vQ~!y}
zd;&ZLa%jk@;h6-*X>!S(W<UC^;ECo{Xcn*Gnn$&b1Pw{+)v3|t(vVv$$rCl?5x)0<
z3eB&ffQG1s80|GAYtS@!G^A*FyIPYH8lKZoP(vXNg*9-4-Bb-lH5Ad*<u~t(iFCZr
zEvBKk1};p`Cnwo@NllHSWi*u4P)h816J1(UchihgPD7f83K};4FXR0DC>1BpDKBQB
z33cES>Rt^#4P$;!4-5J=*cu!S0S&r_cjiV74R6IcmIhN|y*E+aaZ};Th@dF+hBSm;
zcSuH`QTIelEu!Jn>2%(?r)$X2&_hE{ja#gul7`kA+Gwb(AyY$b4RthB(NI+bzYVXc
z;c{}3Y8q;2c=B7T>VhQvM4DeNlMtV0+^AiPSls4E-*q+A)6jyc6|Y!dLjw(sG&I)G
zP?EZkRq<her$=Qwc;|&C8k%ZorlGlpYRjU3RL@w}r!o^s?^TgVN1K++QgNH#v$xVv
zv#-sMpxbI_r=gpMAw9aa*U&-3uPciVd02sm>!_i#<nUo%yOXBAm}VkfG<0QURaCj<
z_u6OkrgxXTRodU+1rmOSU%X;34*nX3Y8WO;Zw>u54B)?jhQ1nJ)X<M5R@okx(4L=-
zml#to`<s0xK2XD8=7hyA`J_@ZnALDb+@bxMSufiBcKam_!!@oF1M(3XMzT&djFqyY
z^0J0eY^!UU^Ylk+;E9uXgIVJ=Z2c*HyvB__l}Mg{b<tPEl82yUlt~(g9ZX@Khh`2g
z)qW~#EtoZPb{siVeoe#c8k%^})Pw07X0Vhr{H9^1hFKamY1pjc4Gpt3EZ49?!yFB7
zvI}Tfs9`P}n1*c!;}&RYZ@W^>GUsVn@_qVCY0i8N{NA%!L4%iGyU&$f#KzMv;T;W&
z+1^^(ErMA~G%VHduBL9cvw~UNf?=74_m?<hgIUC+`sstNHCm}*m4^2;tYySQrB^cp
z^;6eq=(wUOm*V6$E02pf>)2;CtY=(l(i87xF#T>Vo3BW=|6N-75LbcF@PVclg5D_j
zp&-3a6OAn_J?31)9-aj|poWh%e4=5yh8-GqYS^Wz)jOHP>M)3-FQ`AP3!kdlGM{SL
zt>N&QvY%;~7gT$-a4!<ttX<TZ8Q7~~AN!Gp)5Hd;UuZa@;Tt*k{Tja1a3bFPGnaWl
z!&e$e=ne`w#57&yYuAkb{xkDB-)i`d=gy4_HJs#Gtj+jAyhjC(3H~T}T#%MOF$I_Z
zEM#LaixKC{v47zxq~W}V3mVQ!#yWIr)_Y0jISn`O+Tj;_&N!KVM9%9X+u=y_5*x<u
z%9R2p@v?^B*~>h5-h)4wTMa=ELLOYvaFuN@&a^%Fi{mYesCPnH5B}EhkA_?x<o4h?
zdr&d^U%?xK^xo8POZaWUJA!uw?+Mc8zJ}hf)FyeL;h}~{qCe$;ui>%qCxTo`ls0s6
z9^~|>W91OM+d!?L7%x1*gZ;A;ehsR(kaUS26!xHq1mzLTE11uN{2mnWAW6K*g8i4N
zeZ5nJlN1zE$b*t^HO)>f)q@fu7Ikfk2`Mf(rFX&SXe_*x2c=z`gN;(k2q$4W<veQP
z&@>PBy<4ul2Nfg;f_@J)As!FBLVO+=vRot|=5wjffQU>)r|xpo1Iy*-W+$|0mFjrZ
zU*wEA@nMg8Pf^K(%3KA)gQ$389;ADaA-u%=!WBIjFw{`5GX|(vLa)5;WJ(ZuH4mzI
z)C7R49<J}FUby7ymR?;#YX~M~)~3h~Udw~}9(7?rUfY8@9@J&CX=%@i)UD@HyQ$7D
zrXKS)@SvebjVFyfYSf+dK<B+=V-LPPm{#m$S~Cxtd$7%ek34AMK}!!NdN9d@RvxtW
z;6)GmdC<m#wjOlxpsNS%Jg`5^;3Kk*9<=wM0~fpC7AG}}tb5v^-~C3NJYW!AXCXJw
zHtps?cMq?MoBr<;wV2Ec9`y8}m&EGf0b^0@RI5ss2gJS}^cF(iM@X}FndH}lS^ZgJ
z9*px~Rh#PV)@KZ4tEgRZhzEn%EI%{{Gh^#B=ysfI`uYKLs0YJ5c*%o&=bADzj56GV
z5fXQ#AeEPejPhW#kTHT|1({nKjQ3!IcyooaUJ=3*Z+ENFWDllzu$GzkV5$eNdN9X>
zH$9l<!D}9V{vSWvgV#Okh5qpO?3?xDNv3-+LzJ0<RAvcz!-LCWP&SlBajpk%d9cuf
zMIOxaV7><nJb0T`Q#og1gVgM4KYUq#dSPL%x4>0&-tl0u2WvcdkL7SGu*8F<V$2&H
zHVL-IWzt07^<cT%R#$ki(&ei>SnYD&Lvc>gv!!WuXT`lXIhiT^&x7?IyzfzqOILrr
z9CzT_;K4?oZ0$HIAFzqmj@voK{!k1y3DRb>kS!i;6+#;tZ}(t_<nTKWD$PsY>A^t{
z4tcPPt=EH3Jowauz3iLpETOF3Y^xr8`9<@_p{&n5AoBfbov+jPu=PG@#peBmB(<M5
zY`4SI3f>1i_{xJHTBUM^!>SkT>qYIJRn?oU!_p;LGT(aewMR|EIO4%KLMYPx@vvIw
zG&Pgtdq(%*sMw$M;FJf)JowRr;~xAZ;?L{|?GmzMo!}t0P0e4W<Cb2hJ^00giymC^
z;EV^mU$1`7gYzDobq~}xly$+)$-w0mm@)3?@v8^FaU|!s#5UlDUSpwo_;siChv1)r
zR|KyLGUzWMvvZ^mXi<e3cs4D5YA9=Rk9b}W-}K-X`)>e~0=VtL9S_1jM0~jG!96x4
zFBW=npQ8#dPP}O5#RCr>dQjYp5?(y=;IRj}yvR*`jrpn;|3u39sRz$I+!+(UOo`9w
zRn07iSKTageq)tTd_1{`4CU3)+0GRcy~yK5l87|Un;r47p3hbC3n}15zZV={P9%Gg
zA_*20EFxG)Yzhlb@V7|yqNo?eB#5s~ne3cm#;W$*C=(^Us3m$SFG_o1dSQ7{#*4CE
z_`L8-P&u!9=%aa&=0$l)lZjODs;$%bQhqD<e-x1?<@Kt8mmP<v!@K){=!PVsyAgSG
zMt`%7X?x*#k>N!}FE{H%$cva4sT&eFktXcL7ms35FCt#NRZneo&1n@Vl+mCd(!FX;
z_~+8p${UrusO&`z=ERFkuUfOcV}e!Hiz;3`Ip1A>L+#~S&5P<@tgF(9*`v3)ui^7N
zR!jTa?(tl_oi{#Q`=z!Qb$E6q4Q88Wb-k$PMSaP311}nR(b$XRMyU<u6jDkV4I8C4
z@u~|&W`qB0D^B%l?nMhPUSy?s(b9`nUUcxHqZh3uk!5nqZG;=|m~Fji=S6$*a`tBa
zUTV&2CoejCk>!?B7cX95n&phHqR^n5*mw8h#tk(wriT|jC1_XG#w^la!kPcxV%Ep2
zW)M;DD>{e1{$335a*Iri_hO)k!vvYsATI`cF~kcl)lTnFNr8mkm%JD*-Vt7m@?x|X
zBfWT8+9cOh$*#)m1CfvMVyqW8J1afofy(3rFJANFbxGkBFD801Ne(*Miz!}A6`mda
zRpHZEbbf=;8Moa^YnW|J7yT_S$Y%)76r3gahTv?$IbOUegqCx?SQ^U8+>t&{%3;1_
zV1eLE4UGCX^hI90<Hb*2obY0?7fZZ2$O>gF7J?Vsyxda~?@HYNd9mJ$<zB4tVx<((
z8p+ZsNo}=PUCFD*xsUbtyjaUh&t-C;<0?|?*tXm2sn1k7yf0BU)7Xm-yx1sSp5})_
zSZkYv&~ikwYJ^+7*eVLklV;n!*x|)~_RT&8cY3kQi`}BvK41A`ArF_Bp9uL>aKsEX
zzwt9KKKEje7kk;8ME_$}x!-rB?c+GsqaeE#djT5;E$P0L(>cHvIL7!&>X+hSFTVC7
z?nUQ&uUg6Kh!@|8m%P&6_;0=V&Wnco<EvC`oBcwZmOrrXTueGD_Q$;V(Tn3$ZmBO3
zLMe$f``L?=UOe^UnPlmd7k~1ga@~8H$Mxcj7iYbg&?)nh7r(N18=2?4IPb*;mcZKu
zOTAt2x|w;Ao!!h_T(shEUR?HaH&3*h;{49S@6j{oYtE$w1rLvKJ`ZFv?nj}lD_&gn
z;xC?HOZ$-*7r(21&5OU;2P>QZcyU*B23;3&L-3{-w}jkwL+=RrCX{uLgW<}|`>y`4
zkOzVf+4$=vF)1G6u^i|L$AqOB^v3y+!-qmX6!u}s)TEp~#QTuoQ<Zz;Ugcaq<n|%I
zPh9|0N%SGFaC-CjaBD*{MK-E@K5$MH#R5Jg`H<{GiVwXetAEl3o9h(x{r3+$psZTi
zsfZ7$K2-3jf9;|^6!W3159K7;;y#r0p_K3vK0N1BW5uOLnY=1yMB113p^Q&Gp5hK-
zJT9MMX6tDZrMwTm3+hEMMZO8p+~azD@X8taeDI4U4YL3A13u`Y7|eD)%M`Q(Z9$5T
z4?!P7;yw0mh1)q(YaYss`VjNsst<qpknTf<4_#SqS9La+iaylyp}r55e5mZhqe<O4
z;V09FDn3;8p_)(Ku+;RaruAy0)av4`AsBkD30LcS-iKO}+uA<V5yE%Y%y3=djC(Sa
z)xd{_K6Lh>iw})_Xe_Dm(ODB8n)=YjhqgX6^P#y9tt3}1SZ<SymOizCBTxJgzy6q{
zN{Jb6?L*>HHGi_5q))MfkoJNs%#J>E^5N_`HF=3<7mMfSJS%2C<xF>CHy^q)Ss!}%
zFyDs-KJePOrw_w?c!_O*8DphXN$>5$i#~O$(#NNEmF?@p#?@);<|kGe{e0-}!vLSU
z9Hkp5MZtlKe2@==eHh|HxJ4=x8OmC?l$(V4AMV2lA7=V6%ZEeP^^rczV9KS9mwgx|
zr#xD4lHeF0#`-YMhw(m45C!S>D?)fi6PdAH@tlsHo~*uWpquQ&6gPCL53jm>nvmB7
zU-x0U4}5q+x1*}VLvw_D!-v^E%=O_dwvC+Xe}9e-Z%RqF_(46Y<(9AWcoy8%SC%H@
z8gvxj_F<t9>(~x`SmeVyKCG5DxtLwjhvhtq4@-Sm=EJ*Em@MJ^4dS!!FG4F5nqNyN
zu4F%L5Wh;we<BjeX|{$@_!d}@+d8cEfk@@VJI;C^KJ;Oe5AXZ1!G|N~a(}=|@u?@S
zCy;o1M*MeI)E5Dpeb~ZKM)YB;58LG25Bs<~Dz*#X$1dy`JAC+|knyn(JH@-p2R;a*
z-n)qLi3EKrNSob4K4Y1?${ru~y1aja@r5M2U+_!81A<=(9u#C99rEF{e24P2DAOw%
zyx#lPhwqq_4@Z4iU)cEGhdUz-8kfGUGbcaY(vLBg55KU*HZ*?p;kQuMaf$wu;0Ygo
z7IISXlpv!|^u(X>;bL=@)UWIdu71vk^TIC(UUc<Ktgi%h?ev={mtFmLAO3LppFUi1
zdC#sX*L?WfhYkUB4B#IhuCt-~@roZee7MOG(vNa}-16ZzhgLrd`f-OB|2{nS;R$a9
z=GymsxX;njhskdzT)v;dooYF`{ece;IY6b_kC>mL_Mda&X?Y`*_0)%FJhUIV{D|`-
zhaWlpU=)U)AK8v(t0vp=e(axX=M85O>2mwg@0IjCes!!wKOQbhAj#{ODL^9T7c3x{
zB$zB%Hk?JvLVgtXqo^On{1~t@p@;-Mf2elmy^K`hQ;OQ;#r-JlM;Sj#`0<<{CH*Mn
z2iq!Bc;mCSysTv=>(8~fms2M~SND2Snjhu;sOiV^epK*-?{`Cfg#FO`@c3c+Vfo?p
z!zV}4{qW0~?s(G<_`xq7m`FxAi(bR8iilpGn(fD^$weKBl6|H@InzF;(%1f*5%DAH
zM@2s>`LXtJ?U*0TdD|mJpG}KTXEqMi&Jd+>IIFT>eFs#<kE#+qQxe>>#Hr>-)1#ev
z&^E86R~KHxkC$t9V@+{~<ywB!_M^2QZTzU?M_oUf`O(~udVbXRqapQI(#vKPxwxk%
zkJ~`f3_i+e<VW{42`rz+a)M2mtPtiuyJlPX(Nc_~D^q!zt^64Dev{P`ogU$=wtlqp
zqo*Ie{Alk-2RW~<eq8>fJP*-PVs-L!D<XAvT?Cmz!5&HUvIM$`eRn@z@S}$xBPZJw
zjqRC4nq~Ph#E+qV^!B5VAAMQ2;Vf3=i$d76$oon8^k>@;LS>+kL4FK&m1)z<O{thU
z%#Y!cAM%%k@F=t&A!Z|4j6y~Uj&|dY@nftX<HS4O54Inc6=Tg0XHE2Dk{>_#anz5=
zeoXP>Z9f+JG1ZS({g~m$Oh2ai)u{NIAFun>Mb6%0@$^pjbNebqsPKu+EI;1xW3C@>
z`7zs%ITGbfvEeH@Zgovd+8^m%a31T$j|F1Dh@5mfwQ21~`!mRCv&fHk{P>8O^kcCf
zOT=s=8>b)3{8;11gyxOj6)`)(<t|?#WThXggsc|K8rqa*bnmf_L|MmE@MFDj>Kpuc
zU-<Ml6S6Ho5bwRFDl;GYv5DT(37bXSB1nC!kZpp_BK5X+haX>X#PDOMAG@TKcsd`u
z_MZs(RB*Q+pSk+ye(Vvx*N=V7NjQs%lM}!6<3M&$vG}iq91%PyNP|N{4*T)7t7whm
zzj67uethTh?}ap;RrHu2KXT;s<E|ga{rJg`OMd*y5yp?7{osDA7sT?UAE*2{Ej+u5
ze-R#cpyC-JX9dp*o)<*pBxdQN@a*>R8@rDmfBJDn#NYk+LkJV3LDTr$w7=@dUw+&c
zo!)C4;a&c>AOE=gI{yWP-xU0KcpVzk9d1@7yUpD5<35Mh0E!3juOAPj{EGy*Zw>~G
zPs$rm<@v~u#}fUC9|@v774I|t1&B9?V9o#vN=t|rFC*4%)hw6Ga|=lfAdjm&d#w)h
zkWak%11R9?NkWnXND)#{u#g*CSjhGfby9^C6=bnI-Pf!{0M7-G89<c)N(N9Wpn4n+
zQ97WyTUad11W-1Basi|T;D}N_fC@s)fSTWvT|Pb`nxIF}D|ll_f?r5LP#0trLr9rz
zO)Md{t4|$KCn!ARDxdfgBQB2y5OaCDkPN|!0aSAJ%FJG&>e;!f8bIR!ngmcSfa+pU
zL$FQ&HC_AXh13$P9YFa7ja5YiP*0Tlf(->51Tep@>Z){&M5#9;uBnh#g3SaO+B|?3
zE^isY$nh#xYgcI#KwFo$6VhJr-h?`x0_YsT@Bl^x&?SJb0rU=_Pe9%5bPJ%TknREW
z`&WM<fO~lix*kH7_A`2^LNI=_jI4lq_V|21v#;2DjEw#Pycj?r9N#a19m7pJMjQ~p
zzyJmX)I!Ze0vH;=-~h&UsN1J)JeLR_7QlCt3cVD-oZqX`;IP$VUpTADjYcB_I2tg=
z1u#B<mjf6TP%|e-2e^xtIYv0ip)2~>fSRC{kl*ZI(kxomoDje(0gzBxRa)WX0Hy@6
z-M|h5Qv-N4fOG>H2Brn@S^$><_%(pn1DGDbt^hs`U`7Bl16afZ1u!dsvv=#h8Nl2C
z-eA|`{_lcw1b+{v@~hsr0+`483Sa??^zYo~+E(v-A(=XFtlkbFzCojfJoi%p5;{Jz
zSRBBT09FLBGN7JyES02|i48vzq~*H-7?rCp7lrAp3Se~rTLah@z?uNw3t%0)Pe9#h
zGe2}|dGz0Nb8+wW0lXi;W{J2Vpq>D43V?TZTy6M+0DcN*Z4~@4fNS9_dih^@xEPBx
zWlI2m70TlM3y;n`e8l2n^+`HZb_UcpXxVvVem<c$0RQ-ep90t&z-Iv*X3Ylhc>sHu
zz3<|_VyBk4Uj*=YR$ZpBPrS_V{s6udet>OE=4><6NU;ve>2TfYLlVlH*&{MUd>_CM
z0emBz;<pm|T>wKmbY(=kqZ0I^=*Qf+d?t20fMYk3&_CgX7%VoOp93JC6g(BcX(3d8
zVUG}gR`8tQdBF>U7X`chmPzB^0=Uf9t7C|c-vjuAO<jks<Ie!D1dv-tqK>O9%mD7P
zv#^{4_*-&ylh^+NTo2%ec$xD*H>yWr#Wp1H5p>_yNw@e4Ab>jo*i*aA-<rVZnemY<
z8r<jLAHdT9p0Tg7sRZzdr5aFs#s2<%+RpCreCYRt-GP(9Tcxsu2TW0$sK)8Yp(9>L
zf{vWJdUDRsGpRE{J}bzjt4BBdKE2szX}60v;azzi9eH&W(@|VUJ{|dWr06K9qps7n
zfQ}>`$+{Y`GgqfE1t!(`WE#JBE~KNdj#M2*brjJ-eJ0n0-<X!w)@0M-%N^c;GfP}3
zqlAv<bfoDhucIVaan?~rM_FC1U(Geux2{a%e9gkoDzW0uwNTrMmebXI3G10^-W7CC
z7=>4dPgj2ynjFZZV{YZj4E^X|wOaV#ZAsB~Nq!x{)kS!F%j<1JhpD5Dj<z~19kz~4
z9aVHVw9ygMk*?!-Et_pVq$8|@Zx$jtq6}?ll9!5P-5QhmeVw+ENLGf9iaILk>RBt_
zwN+--Z%Rl%*<?v?wW(|ATY6O;)pRt~(M(5m9W`_`)X|8=u7m$^d^TIVVe0d`x~r;1
zJ(5*hu#R9|L5lTs)OUFUmQr_{Vq;wm9TQU$oA9j9H)jfb_`uJ=o9k$yqZLa@$48sf
z2DVA%mlQ2^{M_E^|5QEDX5%Na@Z0I&ve~_KWJyvTbac_tmFJ?PlPFXB7V0d7_A{R~
z?53l;ju&+F(ADbq96G2E8Jyfx$LeNkbjohG+%>hgjy`NiI{NGAtE-J}UzBucneRaL
z?9bu`h@ztC7|3q2F@X_z7OdR2x%sb-VLE=*@tcm9bPU(=nvU0XjL_Ai?9qZGBXzv&
z@=-#*>86j-F;>SoS069LyIrkwI6?R;f)fQN>6k2JiXd&K3VBs<nvOSms>O4r>zJYA
za~*qh%+xVU$3`6=GE~e~>sTXXwvIVE-ee0D?_xnle@n<b9rJZ8(DAl-7rCJeg>c2)
zcZ4{y@-1U65${qR%XGZU?b^h<Qjno5gfP}BA^#WaJ@In=v9&_h3I0!zvDWK&-{l*G
ze4yj+acarCO*%H~*sbF;9b0sq7+$f!7pl<cw(8jC#`;Leb{#u(?9{PKyq~zC9}8iw
zJ{9tRxoY}xYR*||JubSvI=<F%M8`fIcUKqr!i~FM$d`f#1iunI$POapupm=7nj`TW
z9pCCWEz0o<ao-6!A^5%E4}wPpkLmbP$Z^4+1es2`W+^3yr~j<uq$sCcohu>yBK(Z2
zoE36T$9Y$|AmpOpC60;{)OdTDBY=*FIv(lxgRNRZ?{f^{;LnqF<NhV&njqI){oB?5
z5prF}4IwuLZwcNO<RR_|ncGGk?w*e9h35WsLm%+a1y#^v9Zz(440w4-(_Vk7BaeZ+
z!k>w8oPiwT%_$f!m>`%-Ft;G%CK}j$|G%{*^BKr*pn!qTWJ@oGCK*T;%ktl<RkKnI
z6cleE10@VRC%mv=5d*10XjW86F~Q;nvX^!*>4ugQQcAG2fikXMR>=C(NlYQlKzZ?2
z5QJ-^8MvRSR=xANO2~j;ctDU}BQTWCFkrge5@H*0TqP)k>*9tDL<~g58#B~qg;^Z=
zC53`*(<>UNWT2OUEJIywRyI)0Ky?F|2C9fsRWRS|I64~CFi_J#8v|_(Ja3?ufd&Q|
z8mMjHqaV{-<#6hfRL)t)z)PdmeILiwdWO2esn7G>qV75y8E7mv%?$Myz+F6=82E8?
z9nMf~DmumH23i<sDc;s%)=H2;oYcw>QAyev;L1te4b-TZ-a$e;3U>3WFZDVZ=xpHD
zmGpP(tF<Y*80czniz~GXO|1qkLW8S+^^aUL80aC{<EN%QnT<+nu551ueGDu#u*g7P
z11}nwY@pbSPCo<v4NNf5b5i^O0|O1bY+#h3t{(;&7{*gJFxXIkrhK$J#K2Gk(@lf!
zw_L_>Lp?>O8);yKfw7S+y0?F5GB?E>Te9J317B-h#~K)CV2p5jx!2F)iuQOz?Z-4f
zlEqmKoCN!dfr$nt8R|M`%7rvezu6GUN<D5);VpoHS9$So;B_9?z-v66DJkJaar{?0
zvZ(=cHN(J618*B@c@{qPVr}vdcb0)S81Vypw%{DWHwEVkz9mS5c|ztJ+{j7UFFx6e
z$cu`bYumnKV6lPa238nYVqmG1$-bM(%M9#~ReV>x%rMKg*2ab;D-En-*?v&xLj$WN
zbRE&a8UybcSZk<T06N;!-MN*q-oX1}w$Z=_spSt0zPYnFiG`{0n~3bhw=J)*iJe^x
zwiwuIV4D<Fb~@P!eq^ZkakSrQV3&d3Ci<B8*uW<SN|`8a;!^{=4g6`~3P%Y8pBp&H
zE?}s)V0#SgHL%Y>VoLg3%aXp31M#KOehKAK$iHM)DrO&Gr#o8xE5RD)s~u*Y8aQg;
zm{=Y$@U4OG416PA?g`Gg_d8{NZ{P<vO*P%IhHA+_8aQs?oPqNa^pk-T27YF5s-1cN
zRE3iUP8s-xZCH*wwXy0Nr=_fl%BJ>bxw_blxa_=f$MXvYE{f%4N$rw>U)>|FI9=g4
z21(}%4ywqr_+5hjFkqKgGs&+S_{+e*1|F~s4g783hJl*~f|KokSWx5b>ju`ZEkg4C
z+W-D5ZyC64;EoJFGo~x?u7P{vt(T*4jT!oV;Urw9@1cQ5tX31rCLSAj!V%s?PE)Pm
z_f*W{Ogt09bQa6<r(9$*-b8|lL=$<;|5hf?Wg@r9eYDkbUhf<ANb;J<XCl9;M$R9G
z*(qBS{+go~?p%=Tc@{9SvW!|WJH<pn6D3SMXQGhF?c3stm`If<g-u-Ft5Pd!qL_)|
zBIc2GYbjdKa(m(uxt#T&ReG#I#gZn7bg3KS%a|x@qPB@TCd!#eGZEzGTqeq!s9+*s
zs<GnzR2wF|CVu}Zja)OabGYR()ojK$dM5kC#xF?YgJtsYqc6jRX~Ht$h@R_m9tLrl
zFWcm#Up3#15g9#fB4VP7iK-@;a@0gRb1pn)g2oiT`lj-t#%AxvW<?W~OjI_pqnSyO
zF4F{&UJex1#JGlFb;%*4*A(ybCTdA)JT#qmURqsK4T((!N$Q!XZ=!*Th9(-3&r74o
z&Nya=`pl%Um^Crgf5C@#dNUKvO|&r4(nJTIovA(oY9%&p#HO_%qqjBD&P01tjfC0V
zzfneYCP?1NL{}5tOmsHU#Z-d{6VLw4r@M(4O!PF-%Ty~DEj|_3!^F5g317-R>CG0Y
z4Sp@0C5PKl-C=5dO}uF0GZUZlKqmULHJW(G!~hcmO-wNH3Y#BqKTQlaF~r2Arbe+|
z8ADABGjV>P!JwB+3}<U({XSIx+9OQ7Y+{s&k<43?n&NdPlC`j0k<mQp`Lbh7b-$Ln
ztv2<Wk*skh#+&#eC2?)R_$3MI_Gh9TZnB9fJeF`i3~3i<Of~VUiJ2y5nd<S#G%2O&
zCSEh~x^T`+V9D^c=?sa*)ts2OH%!bnG1tUfCgzynJT5N!^roriFPW2*xxZN6Xx2Ov
z^H~d~y31ovT)@$?wrXR^X&Jn~CRxaay;l9TEjF>l#6}Yz$`O~cXE9CT%S^m$VmX`r
z4~-aQ1@-yeIq_`Pz@n>7tYIGs+Z$LTCf17m`zF@0K!mS1)%61>7M6=<Rf?)d2bmda
zM%MO)YFPWg{BMHRCKH=Y?75coiNxAs;v+dzp5|6jwh6v_Gi5s)Ioq&_2bB%FT|)Nd
zG(L6}zMyBypGx%ICLaE%-m~v9vDd_9)}x7itP~SJnK)r$zlkqRe8*;H;sCphiEm7N
zYvQ0p|61^niNhQ^HvBh7D0`;X5eee#g7F@M3TurA{XxXztd|*aM};2~{82LBv_?8F
zEwZB%e`Z~?a7?a2Dvj_|;FOr1mKvl1vwfChf{5n?&r9>5er|}GN_5f0B@@4z_{~Jo
zd2w7=hCvDG|IHkWtc&}@#Gh=FJZqWlaNWdJ6Mvbw#=*8(>OUMIHzW)k>ilhD(|o&?
z)D9QS;r!bh5`|YLw@ut()n{TwChnTJ$00of@fo<!isOLbps|AoEM)c|3qveC;^5D*
z+Cl*fPfR>D5pN;ELY1jW&!l7SoRAb}A%~>~nVc3r8l_(7WMeK1J3?k&+PAcG3oq)J
zi57@?EPR-5YDF66lh7uW%(GLQC0R(eP|ZSh3n>-~T6oSvNehK6aJ80Hi_<WS!WN2H
zn3v%M+Qj$VsOI$zyQvqoFspszVit;9C}Dw<57}k*ew|7}gHjgCTc}{6w1qMjtSw1}
z^QfVqtOZV)D`#Q$9X-v$sdS@2J_8ms3zaQoTJTu#TIyYY1~Yk8_fZ^cL?wN{g@6T}
zu{t(x95oCJCR4Uxi)Dy$f2q8$jp>M&af3XUdIldNg?Ww>jW2qoL?kHH-y&vlzC{Xc
z(k<*OY;Ypq?K^r!3zaOyX@=*nno^SUmfoVhQS+`|#X^f*MpX;z&!m+P#@Db=(?Tyx
z{c}BUp_YY478i;{ZA(30s>c(QpgMwe1rw6uY1}~g;oBK2Tbm78(JdX4CKj4n=xm{j
zg=Q9-TWD*cog~%5LQ4y+EDW9*$LMseC51K?el4ONPth@muDyj$V%9+nRM7u-TpDz>
z(2b>Pp@-<*-O!^?3uY&homx-PX`f}Gw}n2Ejp@T{_Z8CmpH?qgptql3e+vVI474za
zO=yAhVl?a3Xx7qb7Wq&M!z@g)G1<mT7KU56X5nuOBP@)xu#Jt@!pjy$S$NmNatos^
zjIl7y!fR}Dmbwvp#ll1j<1CD~@NZ$I&`q$^1&r@>WAZMgnys3bHpx;~3zIEO5i(Wq
zRSU14iKD*sQ2gu6q=h#v%(XDX!b}S*rx>%@dgUlg=MCoJ3a6^7fBA3^XO5*FxpU(`
zdf#FX;`mR+!rp`G?r(vGw<RK%(^+V#r8(%1MY9$Of5%l8TUa7|so*kK=kg0Hm;np#
zTiC!>)GL{3uClP&!Ws+jv4?K1eI=T;*23-@asOlMYNZ~TuCu_0`TQomMDb?p*>WnF
z+e?`ru(E!su*t$^3mX}cO?q|(8t3R<uJDbdEt1KtEbW)9JJE{N>G-AjcAk-i;}(8m
zL0Q;k;WG=LTliS))6x<@weX4X#fRcfT~KR@>}Kzi)pho;5SSASUt8*P^?eq;v~Ylh
zb13c$3-N``{ZvYrkE3cCjjxyp?N2o=7Rx$lftbCv!@W<#M<o3pEF6`}`o;pQ>01lm
zS@_<qIMy9&@R(TsD9AJq7ftWmBt&w;!p{~iu_IVGY2l4AO@85c#gW0nX~_?5vKz@+
z3+E*I1;PFCJ<bccIwk$$`I<DlXmR20X63S){bu2^g{v0+vhcfwKUhZv%|F?*K1oYE
zt*V}<oKncV!UEr?c5tpzDE?BiNk{UJh3o8GHhS8)Vc{mna0`zu++r90x9L3#_buF}
zO+V|7g}W9yv?<J+3py(QT6iEWkl%f<9deDghvFq4-^zF*Lso4Yb!<Gf@QeeLjT|<r
z*=l&qX(Qf7X&YtewUJB2LN;;>$!jB@kVG4Kgp7h3oayr0NV1V^qk!n0d&g5u5nfR6
z(2#^-&Em7|3)?7SgBR&VZIrO_oDBvQvr$|u8IkRcf1UrOTs*#{jZ$tR6#1s0tc`Lu
zf+D8bC~qSmyn+qb@Cw%iJvQ!N%FQUFk0uit-DkruL0o2#xuU{V9t=@TLEDBUge!Aq
z=fPoCB|jk>oa`U5!5xM(Y*e%n6U%f#8q;h=F?AHWN;WcWRFR;{%$THB)wRqnB4(+&
ztJJVjQ~2|OwFI+|Th~TC@piOP-$nx)t;Nd;hkPsA&_*L0<QYGfXe@-hiH)W%ZziO<
zU<<*Pf~^FN2B9{RT3Z|KZ0vr|=1lDNqI9r9&U2wi>?C4m!7ets+UO>H^`wOELS7K0
z<(B^Oy=-LJ7-(aVt*$G2+bB3Y?nN7YY_*(tUt0~5B*cEUx*Y9qV}Pxe4xkyEF5O@o
zL)c1BW{k5jl#PVBwK3Ah@C9)%G1*gr;XFh!yYC=}?|S$~Y3SB=FWVTy8gEg3l#Ng<
zYx9BTqitL~X8yFWa-CS#SR32!RK4JB&Re<hHYTuhsRh9>?{jmaAjzYX<`f%KZQQkS
z&&I1Zrr9`R;~N{V*?8T?b~#60G)}iM-^K#*&ag4l#w_7)*qH5>!@Y2PVi#kMjW<P^
zEBKZhI!{QM%JFXt=`uf^MYqt#BJsXsW4(>{Z7jC2#Kuw)*9b0S>DgE=e3jq|8!Opu
zE63leteRgou9hHPLA@trt>8LV2hU4WW^FzHweSr#HcKeQ4}@&A@u84S+4>muPH>Cx
zt%BPGKgtfhs*kG`zr)5(8@p_LY~xclBpdc9bx}n33A5MR?2=-9X5(`kU)dP18CM?Z
zdu$NDw6WL5KH*>3;4Dpwbo<%S5|r5i1{E|o!<Ibxa?^u04%xVNU#B~4<7?r|-ZSa_
z*2Z^|rB3bD%gyg?{9xm#jj<)v<s#iN8^76Ht;_gP%#QPLHtLo!PT1fT+Ibs4+xX%y
zo$jQKQ#MYE_ZPu)f@cKJ3T~fNik7AOt7Bb|1TP9+68u%L*RkA}*^h+(!NMOL_qUBd
zc}CToD<U%PRUv=zL|kR_#gu=9Ul+U~c+(BNCFHh^JFZgwwUqld{^hvp@ZuZ~*t|D4
zj(3pY;GvC2EHSS9Y2%rVI0sMIT<ax06_GkGU~)Lf>45+BYr9pa(jmp<e>7Lj<DYCU
z2l*W2caYmbqNCEuBbe9uZw){y*+~^}P|!gk2T2Z+9qw^yra0=Kod%s_>Q9`mu!ABF
zcqK6Gin@y6x>X}%S;ZU_cVIF>2PGUl=OE2Nc?TusKxG`1bx_JtS4W(rQQASL`Zjqv
z2VX9CUfv!b_^ERF!!Kl~U%`RbfzRRcZO|MPsHy&HJ(3Q|+*sD#YmNO50uFQsdv?|4
ze+_kB7a5X1`RyImZ3hl>?x2!``FBbM9fTZ&9n4&<u88O&4q^_{CE2Kh_3qhaI4HbD
z&90~GKG3S{Ak#rL2h|-^5#uj+R_0%PRpxwg{F@g8oI2j92x`coYdZYaEUVx+bp`mm
zgIXfi7OW#!SFoO7eL-3_$R>_jwu{~-4w^bx8pE;}nmK6BoQDw(qlJT(Jl`Pp2GPnv
zYt~T^$w9Pn(AL2e2U8uiV{75pTMl{(X)oBp!GXk-jt<&XGdhXV+2I;i%Cf5<NjC@G
zg}>k`qx>no9Ar6oNtE6W`Z!$sB7KN>`#SjLjCum_qHEtzNPh<dTxFn;K@JAH%9E}s
zO+HQ^>R=cPIghcatieg$!zHx+Gkt`Ekq%yVFiMm&->6&l(GJFlcdXzmg5w0oJD4DZ
zW{uXX%YcdEo#bG$kWYrGvFlX_(;R%};ByDBIb6*N3mq&HgXwG=Y^6nv87yZrai)l~
z1m6&3^w|#P2!B&>u7kIP%yV$Cq8fqemc;S?My2z%APN6m-f^&4EVnpV!U}cpKk<H9
z!dNC`je~cEEEi-tD;zEWrRrsstE_hZ`)-cndm^rN)NS}W;aUwfB(8VxzH7fh$OjHK
z3i(iQlY@P+EV|7OcK0$#wu-*Z!AC;2J6twO9e0P|PQhJ*9}9jWNQ0e;DZ7RD9;C{4
zkAuAq{@_5tLpb<?EyTf34)(Kmh}kzhary3##s@_CO7NiIAqR(rF!XB&M_fK>O6s>R
z|4zvF4t{WzqYjR_{73eJeCqkk30FDi;AfYg6mrVJX;=A$r6>HXtDG@a^z-7qAb8Qi
zB_Y4MHorNzEc|!DjziR+#TDVV9NZRi)xlpvt_l7v_>bUq!5e}%1sR?H>31C5Wf$Y)
zks$6lxX<C`x?Zb}@vm$1l>Y)Qf9T+m@W-z5g#Qcj6z-WQaY0psbUA{^>GJp>c73d_
z5S}F)xq`?odSVcHg2?OIWIy-FC*J&m1q3$_PDu%(pzujS6bhnn5KV(<7DSOCQiG@z
zMCBlg22m^sUl9Hvii>fs<z_h{C4zWPNJ+s`g3L^5A!P*12LEdzX+dc1ReLTUL<QH9
ztIko;g7CPCHwZp-qPV44d>{x%^s3_xU5F8cDZ~=A1!>%<MRQ^>h>$4ZAR<DdLBxcd
zIsV^wL+Rqp5UeOz?Q&A4keWd}ALM#6Doa(fg9PcVE~JLwy@!Qr327WelOU%wB-Re1
zPEdWzS(oQH$fzesQa^|W!W+6uBNlQVgF#HQWmTikbH=Fadh?*Vx*i(Dupn9l(URkT
z5Uqpg97LBOx(+kuRZ;eBf@mwpZ70}Xu!CSn!A^p-tlKrEYY^Rn7${2jAYKR}*v3fG
zRXROH>?_zah+b~2EFryv=;JCy`YZbv#oI54{z3-0q4&2W408EkAwz-~9jCsjp?gV`
z5kU-hZTRW&NZ~IBF-pkjAYO4p#{@A}_&CAwu0BD?bQy{#29f<Va&iz;f|x2n+k*H=
z$g6_Wf_N>6*MpcI#Ec-`4Pto^GbLz&;H)6t2x7MIw*;BnIYGSX^0`6O=%!A5o+$HO
zo&DwQAQp;uQ4mX9{hc5dyL__TS}qM@nX6=f7QG^f_kvg};!43)L97<C#<k=ZMm*@c
zAU+i3e?hDd;(g&CxHcPtSnyc=Z_;h#*^N+9Hc9Aa!7V{-&5m+CrNBgWM?kkdh;x4z
z*%4HCptr7-s8HP4$#KI?^Wz{sarvi0b_em9kk4Jc5g+~p@kJ2ZLwwqd{Xu*gL|h0t
zLO2k_S3w*O;%hO^T%B;xjdh5+e2~RF91-!aAiiOj5&m5ezq3hasektGgZLqcqd^>#
zpkLS{g7`6r<3ao+%1OZ!f<Fr~7R&aO@YAkx`AqHtgUz!+Ty&LlLe2+q!BzGSOt~cd
zSHa(0{c;c^bE<m(!&Uwa;)=_!2Jz3=Y7DvNDt`<4Cy47o+z@_K@SfnUAZ`n}BY0Pk
z(X%&Zx*x>9K|B!gVGvJ*JPP8m5Pr)>OWyiD74I`aD$frxa)uBeLY)xmhL8|Kt`N$H
zP=Wlao;!r1LdX+^<Ov~f2>C+DFW!QJ1q71>X_+h}MewtOafO5w7Azu|DoD#m9aXN1
ziMMzNB|>;EgpzJ(nvhZ<lonD(u&f(eE`&EyRN2y%ovs=!7aOf2p;`!@5WFGy#2XC3
zFT@cH2<n1{pebkxG96n;LERc|#`CHyB;Ifckr3B2QN>cxwTy+3?(z(h+$tNDM5!#8
z>4qK|l2BE6g$@O)g;3qqYY3?s!t+9E3D$N)*&6GGP(Or0Aq)<oK?n^)=nz835E_NJ
zlnR=M&}Fphl1)Nr>c%R5FBg?&;;pf}P>T>+hR{m9EruF-O{2B&HiB&hY2Qvrd%-vA
z7ffz!jOD{0@pfjVJkh&^&^3f^qGSnn7i8QQLg*p9r>pc5vN(^?JA^*M`-ae8$cuvg
z1R0m-IKbrtg$(MDJS2pntlto3hp_%wp<yAs!phwl|56CULtJxA)dJmUAtMD}4q=q5
z@7>aNjPS97;{?aMp%a7@yQ{k1#1JNhFj<r-g0Bls4dGQG(*$1=q&;toh||S8LvW_x
zEWxf-;^&0$W(dneSP|m>3o4(B1WDc!GB1SrLKe9C+aW9zzV~yLINduTEOtYe2w57!
zG9mA}dTA$qWeBT6*euFw!S~(JH6gqw{M%U8+7Q--K=MDq^@8*+DXF^81~K~}gpF?8
z4@21G^7a4Z-s1ADLbiqQk*oY3%i0;jt`Kg8a65#LL*T2f{ULlA!Y3ho8p3YZ^0N>+
zJ<i1^IXvR$BJK%cuaJF$U$~YX&*VN3!dD?24dGY_2Sq=z-25(tLm?dIA4DPJYZ1Q*
z;fQ$O*^|zPIZXN65H3_wLkivZA^hN`*?LCYk0Bfn!Avy%4B@8`PS7%h<Whxx78~Eo
z4H)HQ2&cq*TJXH!FCm-}a#rx1AdLeL)So6V#V?9-$<==q@>>X(h5YX7f3Qw}DZwao
zS3<Zd`d@<A1pgNNNAS8JEpLQyQ}~#w>ICnEaF=6m7zM(rY26Fq-w+;%!F|Cl@@n;A
z2=#u=oi~g}B0d&;BKS0fXCcH%bf%Cij2yyq3dXy7f{-a*b<o_x6T`^khUT7JFrUkl
z_S#8dbxVRUv@nvxNC~507=^^3R2YFJ35CNb8OHs*Dzze_r-o5fNU<<h{#vcLU<pBb
zp9`aSBZGt&zz16-GgfIaE)zysA>{<ArwJ(^Mg>>N{yf|hhEEi);D`701y6LpYZC}V
z7tY0<nTYA?Rv5N$$5n!1OpB{Vn@AYZFn)~Scm%O9(!)3x#`!QZ!l)R=lrW}-Q7Med
z5^+!%nPF6+JDj_F7*)fl7DkgWno4N(FjpYa`Om^+YlKlVjOW9sB|-Jw<JJzNj_|sI
z^;~^%hvWvr8wxfOZ0v?k`>SxXFq(^(9ifG*cM#H2uvHkXg|u-)+lJ9jczeO>FR5zk
z=!SL@(m9MSLb?ieb3<2uoYX<LUI=5)O}$4LJ;Uh5#vq~n!)Vk}CDl8OKCXS=FjwJL
zW!}$K3JfYwvjJi}FpM?>)u&{G!x$0<7pvim^`T)56XTZzCxtOw$OyraVZ1D4R2buh
zF!9l0jB)wcFvbbbSfHM?(@hBD6*qKZ7)kPmi2CF(W;ZnIBpa`W!CjMfh|RPxUJK*(
zFs6sGEsTqOj2U6fWbKzXJ`7`)*eniXNf>VkpB=`WFy3_2Ul7Jz;cvOhyfEgw{8mgY
zjQO^B7lyIO)!zwY<6`y1U}+f3!uX%)@4BI@g)9$ag{!O#W0lJneP3ve%ijxQt?+fO
zQnF+6dY8X1WP{)bf*S>SL$pZ<Gq736mN2#osnNJF#gC*MSQOjCIK0^=*%?-Ec6NpF
zaTuS3@o5;}hVfk(yWMp53i&L|#XwZ;?{W33wUX%F7seN1><{BhS3e}=Kp0;MIq2%|
z<WD>-{A<A@uKo>c<U>`zyioZ*j32@{$}#7OUb?bzOl(dH{^;5t7xI(fi7<Y4^;K))
zPr3Yb7{3TVBY4);SFVY_z!G5XNAN}jm%{j!&srmB8NqL1T;|{$K~e<2hw(=kH^aCU
z#-CxV>z^{TL-L=6jJ<=5E0WYz!M_Br3H}|%KSHhx@^o&nw|=Hx!`%+!4jaRcxO@@Z
z4dY%I@ew3Ma9=E+2>$EFdJx7#mp=;QvCC`LPI@Z*nP41KkRFjEf}AerA#%AqQAln<
z{(a{Wk~hM=Z;S(d%r}Ra`6FtXvdIZXi=dGlK}rM}5mbzzAWJ6Q&?4|eP$+`J5fqWQ
zWd&0sC>lXA;i}3aDDLtS5j^MeqrFl}2`?>J#?`a$@5=GeqLde`;D&Os{@jh!U-P`3
zZM-5zBk&3FM-YfW7w$yV)>nob%Z$KsxgEjJP1L{@bd^v9VV6gQbgbDbCL~>O=3dqI
zDn(FPybU7A6!N@a6+s$Qji8##s|%?iSW|GJ9$!mHZ9&@C5mHyMo?v}JmP|t-jRYGD
z(!Pn1rV%s~(%jYay{)=!s|bchFf4-B5wwY*Z3OMa;Kc~qyOy0;FNKT_5&YW0=*Wu8
zW6;|<f-Vtsb!~bH=@vnEAukB_a6@}CR=OJ2=&~Z{EqWg}w6Bo0vMq8y;r#^%2o4k+
z6v1F2Lj;-5{a*^b6u~cpj0q9E62b5YMo7>|!SNBi>{^ZzGCG1WLdFV?b3>2RE;6Hm
z;pt>dj9^j(lOvcCQPaA32>yQ!YL+}zEMH|K9BQ7(E3^2n>eC{4%}wF;2&TJyMg%im
zUT|lj*%8c%U{wUGBX~1{xe+XlU>OU%r}0(<^CFlZL9e=o7BCh>u;Qf#TR*iIM(}n7
z`~#)q-PR&EwReOpj$nxp^}P40{w`1Id1JY2b0rqP!sRO?*zrvNW4y5@g7+f$B!W*P
zSR27QG5ApMe-UgHQopdVK7#j!ZxH-IkcW6-d0gTO^}n+zqORmQ5pJ^tZDD7LV4Lud
z1b0QSUC0i>oq~+GwL<*I!mZC#kJuf-XX5=Tg3pC)Xz<_L=RFbZbz|*|;0u@U7xJax
z0l_w1Qw~OOD1yV{<s0E2BKTVP5kVg4n+U#j`FBFT7d-cI9PN*?x=S0!Sa-cllAj_t
z!Td)#FAG0Ma591>Q8bO>R0O9ZNR6Us6u(4pCV~eMJdEIM1m`07D}rkgoR8o_1eZCy
zM{tpYKYI#?efApDsx;AP?=|KQHWw!vp5_kUxoljP{zn9VMsOv9s}XpYn7j(*#&!el
z>j&E!d_6tuvCjA7e@F071h*r&6T$TeZbWdCV=TwyT*l2F#{GNxrwxo&eq&5S<IiL@
z@ZOE!9!LHNc&+khJ>zrTc$#G%j~M@oLUBYJ<52{UBgh*?z9^nV@HB$>C=#N07C~GT
zIikoJ#kw!-3u{ca9N&1O)nKF4nRcUBn0gm8R}{IUNQ@#+6vu~{XZM6_bTwDk=Ia3U
zma1d2!C@hP6a}Iv7)7BdlA=hCV%2>;C5j<^49`SkOn&35b_Q2CuV2q-<S~AIsuzx;
zNEGD<8>xv#j(SGr!A7wtibs(~F^UdNj1p0lj-pHy&qYx(s%BJD{Mj)|MbTt`dX<+|
zCoLOAIi3ZlD;P%hqex?Ee1)jmmnA)lj3_i3463I`v8|1|uJA<R6?>l`6~B-`6w7<p
zqt}SSjH=lPRun-Avc*fqiDFA`b-pwUMG<yWh(r+;9&?qmTMF?$rD7D7qPR6E<%i-1
zi?MPPnPN~yu$o|1p7J2`P#>du6g8r#8O8HaG;q_YC8TZ?wT0Ai^&Hoe>bbl=>u#KS
zO3=_%8b#6A<&*UIW>GYcVto`<YZxt}Xc@))C>BJ~DvH)obc&*L6m6nt8^t|&Xx1)@
zS?g+dbW>>0x)9FG03L-d(Vx*Jimp-gi=uxN-6XVk6o)odXK42*UU1{~h@z*<dkM)B
zWUgr0CyKsq=!-(q@+A(4Vqg@nMlmglK~W5j;uY6sNE9QZcv-wdqZlUSCBfmY%?L*9
zsTu~|s3=B@-lLl;pE1J6Mlmjm@xmv#v9jO%R+X306GfaPI5~<bLZ-TwyxM$C_*}u)
z1*b<bBZ`^AXAAOhv!Zyz<<B-G%n|;kt8{O#O5m+1=DEs0xr@FX#lk37M6oi8MNzyH
z#nLF2MX@-FF_n!ati&qDluE|T8pgEZ#w)#zccU0S*jye}cUAe?8hrS<;krJpudynM
z)lsZvcV^3Rj5Sfb7e%|54bF~!A<Y<Bz;GVxht`;F*O=X}>;H>_7);N4-_6N}C_WIr
zF^UhP*yQS4g=`kw5=FC-Db8^9Tzy*<AGtPcBs-(n#SR-osTe+v;*%&IbHIt>(<pXF
zaW#s+#Q3u)4oC5IRNXgyF3O%L_OhEt@r9e(!6^2-{7WGR1iupOxv$V6H<Yj5jzsZ|
zc&|k9Z4}={aY?-2NAZJ@Gf^BBazc<fKNiK0!jB97<m!CJ#n7LlI4R00S3fP}mng;#
zQ%{HJ&NBZZo)^5}T3%$6I9`MXzq-nAQCxQU??V0%{4<KvSJlvTt$AZ&hf9U7iT)^x
zzoYmkitFM%R?WCA<c8o)4lF_#rG9$W9hcu_FBX1Z@L$0PZs<cH@78I?SXy^u$0GA7
zhy57hV|W%tTucq5nf;6$LOxyk-`#OS3?)QiXs#G?3r~z8kC41EB*%~vLq7557c3x{
zB*<8c2B#Esd1?%WgclYp;_7>^r4$ujOt84CuiUL(_B|Iv^qT%{KcjREWn$<SL-!cU
z#!xPX1~D{@AuWdTG3YTEF(7}z&)XPp+wm1*;MmK3ximL5PYhm{`-J#o2)GKbx6K%=
z7&2n07*n?cb__uYb;R3pP|APfe+*$aR)l$Tc`Sx>;VECLhg6kf7`R4VK4pqnIR;LU
zqqj;7RYj>5LmeU21#1Y_jN$nhY6-6`$SB_yRT24Km{?cDdNI^@Lu)wkja=S2re?A=
zj-g2mO+{=LLmM}=c?>Otw{(?OF|>C1%J)@|ZW}{8S7{$Z2jLxErBe(S3^m4b80iuN
z|GvA%xWcWmF3or$h8{7zC6+y7=oQ157{<ns6+>@gk})ENJ~1v2VhoC5&0W2(SpGk@
z-UCXCqI(}+SlA`*5|*469!a~)lAP|I?&<02G=wE*L6Ecv2qK^)5fnra$w35Bl%N7C
zNl^qbVip8MKyomED1wRtD*vbNIPdv==X~e%x#y`{w{G3Kb*nm84HG&%ssEl3MhG66
z<hc1k+ed|PpKwMe`C~#DEBO8-r;a?*94E=~LMMbUF_}BDbEnCIXD2xig)k+AsUbX^
z<je@+ktCiL!gRrpCOMb81%vuANzM#mmVn2Txx9;cLhzg<XKo1d1kV?`Ajw}C!i+JQ
z>#yYOZJxV0geAgX%Ar)b{gX+VWdfcGVR@3XB7~;}cTZgZhp;Mye?s^-gy%wdK7?Z-
z91mf22x~&v9KselIfQi~G&&tDI{HEgFNT7za9<`BuwLlC4yjz;c7tGkPrES`d{sN=
zY5x`BQ2x~rHVGa-DOk&QYY5vy`~evshVWVluZOTRgk4gKs<wylMhI_m@(<xHDV6w(
z@aU>~%>CnqU{9sDL)a}@?}o6aZ<D$EgAI${5e?i~>^%V#dtZQ2+t?GrM;yx`><{5%
zVSX0E=OKI&3jR|3lr?S*mK1I{TK^)1qSy2<L)aTa_{EGtNb%=p?2{tzuLxE+QL>c-
zAsh_ha0o|)|8)p+!rnI_6!dL!NNDd7IwkoVBdt0rGT(-RMO-hvl1&b?PK0ohoDhBu
z;S`5M2p2>6DTFggk6j4iELHVxaxTd^FW@_&-wXXAgdYVQ9$$=3&b?8Ol*gqI#=Nio
z62i}tOU|4FY1{;)o!$0I2v<Y+GlaiF_)T)J3H?1O`3Ku_AlSI=_}xu*%!m_Q58>|+
zM%4~>^12bi&7@?<e*&?C8#8W&kfLCNf{hA_C@89+tAcI{QWX?a&{RP)1;rJlDJZ9)
zyn=KEB^2zLn_5;um1|Z>1*H{~Q7}o#FQwqAG>y;wsxK~Rurhz!tU6l`T3i_*LqVnz
zED?|$%75{uRY5^T1$7nFQ;?;gl7jQawK@vV`}vhcY;&4MTtzrlg;rBgT|f<?HHFp^
zO3B&+SZ}rzXGPzqx947rw<&0%AU|kMA(?$LJJlC~1_~M`B^xPdtRP2{xeD@<{1&T&
zrGTGVl~Pcz2hGd6)^6PmtGR*}3QPr21uYfat{|*HR}fO5C{Pt>;s=^ENzHFQq}^>d
z+ffORo(l`kPi|@`Sa^GWgay_7QVR;mKT;W%f|!E#3Odjsqw3g7umy90f|Tm%jsjP~
zzH99~p#;8ycoMe~&{{#8B&V%{VM-yz?wwcAP66qSiSdpKIw|O^VEB!84X?JNZM&`-
zeSR{!(DUO9hNiYZe9h{vpofBo6+EJ#r-EJz#wxg9!5s>ED;T2SZUuc5R9>d_760_?
zAHP$<U4w(x^;6JpsYY;@g8q^_K<L1vCkH7QEVwYqp;swCRKYz5tuYE1D#K`=<lZB6
zL{f63fP00G5_+G4(aBt{-uz0}R+%GvJfL8lf(I2$Rxn<{?j_m;1rrr)N^SrBTk6y;
zsgo2OdQy9=uw9F@QC972$Sl>e-9t2NOX?Kqjxm2(Q^oW5Ht01?!E^;rDp;oAQ3W#;
z%u_I5!D9+$DwwU{2?evn?3DYvJg(rEP&-<}UQ6xT>Yu-?ISL<j(wT*9*UEwMef{E#
zLhTl?3%*eoDOk)HP_VK{d&<vPSU|c&!BPc>XJ&Hjta;ZOb~ZY!nD&%{<qDot@VtT*
z3Z7Q*jDmO4wUhUEq5V8oD)@I$yNSQG`(<>GXW2VH8LI-D3kmcttthZs!5YTuwV;pI
zCOx)JzzafORPd63^+Icw2s-g)1+OUhLBWp-|Lepi1s~I&8}m0S*rMQVVg*|jY*X;M
zg6-76e?_128h@m`7RVQtcv$D+-n*AK-FAGy8=OEc=Dew3hk&<)lCx95E(O_JgNu!K
z6ue8%a|kQA+$LBjggc1+T_@Nw>;uj-48KuEna|x1*`ZzYKT-<I-PP(NPDe{~-yYrO
z69u0t_>2m><nLE-K*8sNzff@S+mtT_?-jaFD8;_w$U2rna7rmWsNjU~zh+yS=N%II
zjZh{J3pgV5sL*eP9us<8!F8pOVkeWDPboN^#AgJYRd7zgd7<A4{a&cLvMFu2px~l{
z8wzeJ_({Pf1-~k|!gv^!^Rv*)92etqeo^qi1Nj8xzp){8{lxsM3Vv7c2j`zD`M)tN
zM{0Yg=D#;F{~8CWTKFgZIWd3m%c*}!lAP-TSp07#SONa?>-o17{3G~Z1#fK3eaTm<
zjZ5JUK`AP@s$LN__%WHwwiHuQTt&W)raID8q^npO#*<-`P*GAvFAaBSD5avbid8C}
zQ&C1mSrsi*v{aFyB2z^p6^+$kqmXhc>Z|DYYfgC;rFy4UP*G6@A97}?xQznxF1V6P
z`%y&=BB!d*+A69Es4kTJ8Y*fgaV-^BAL~XYk2)%{ll-~@>IvnJymJR=fk4^Zc;DQb
z#c~^{!L@xu72Fi#*-&PV8hp~6M;n^u@*m_}DK)B8CfBQM!nUhus-l^S=4$XACcm57
zvMHa%sgv|}6(JSFRotUOk%IkI3{as8)>MR5=qd~~cz)GU>W!$dRB%@mnq;boie%zr
z?3fB$l8(?;LS3PrP+w@AdgP1T){<-^w5^H)73~DK7fSv7o}q(aez(tLC$>?NT~yqm
zqPL2!lI*6UyNVtv8mPg8`j>wX?tgo-f0KGPZ%FB*;!bv7lB4g)=qvaIc`kI9;I^0l
z`(9<Bioq%hNvq}#QqkJW{k<TUO&+2Kzwq!&%ezH>sL*NQ)M09{iaUSG9-(5SiUlg(
z;m`6aMybK`f%z)#Q!!e+H&w;h*(qaGOj5z;W@AMIt-W8x1A@n?xY8(dyx<8!Cnjb1
z^oB(ql!B90Jfva@)#l}rIju`TA6D^*ifJOx&W)&r(^WjGVn$NKYypp{n3?3vQt@~a
z^I117c|ygUBxkOQd4ea)!zC_`%H}Lou}I~g@4@G4FW$&0RxWpm$Sf85q>5!Ko=R$X
zR>g7^^$rxQ5YE#{{z?_kBrzYK@=YSEeqP0D6-6`@)v!jzS{3J1oL8|<#S08M6+2YC
zD5YLe@v4fKk{Z?v*q~x#lJl|vzMI%2fd9^K=YZ{<v023yc7!mu34NWh{YTDgw0Ts}
z`}f|J`S{Hoj;uG>clG-byrp8NiceL1#_;|lXP3%ldo$nWL{Tc8Yn-j^o4cFcEvi`j
zU203>_f>o#_(P$4RD2}hWA<QD=C9}T%C8P?u|HSwg^JTE&TyQn*sBKX100oswok==
zkvH1qe#Mxqlsh`7$pPUU<f!Rm@%UQ6A)((0JuLKy3VuFKfiBf@zg2Ne#c>rUlC_@_
za8f+L=T0=^x{RH(v_Wpz$@%Ev-0wJ@ip)=RU9sFBRQ$-cl*r}dvXSYzeA9G6^ju{3
zUCm)YUQ+S1ieFS*W-xP#Q}HW{SIA9#W>1~knLA0<YdOEE_+85Wp<?0iyyJXCz$GA5
z{3XomDsFHX&Q9S!aW{p-Qhy8J!Ug{b_*dvHp($F>1Rl9LO<p~omZ~9BLpd@v6xWcZ
zAzedR4MWm0ONeAC4W%`d)B@YucF${fEvJmeodi?Z>CfFP&Lq1#LkoU3S<o@}XsLAm
zC0Aa9t_5wcprN9MEDe=3RMxnSY*017QArQy_P7#!43qc_yQ+q28meokp`oURM${%h
z_0-Z(Uy9V$P)9(vhPnc{6a!V&6U;5x6D_(;`|lLfAjxT{p^Hp+jWy(G$kmXiL6O`h
z8uA6S)X+33-&{j8!HMT}Et34iv)tPy84~)~>GG-oO=wss&A4<j)6fvnU~+{1ozqrB
zfrhAt#P_<E#wFKaYj89)Kc=^qQf{)Wr@<E-7uqVxzuZ5sjbKjE^uXN0Vyj1Iw$spF
zLkHpKecO{~y^b0>(F4NiDzuAGF7`shx(V*izSGcC@QxvQzl3u6btpk^4Sh7cpy5Rg
zcWUUXVWft8HT2VPmxe;dgNFXn%L6nFWD^GD>b+A2X&9_w<M0$t``iR%K!x1en-#u;
zV0CwE7^-2IhOx`?n*N?MTnkRe<lm!#%h-CuG8wTWwEzBE8l~Yr4Kp>&(lA=X7!8lI
zvs&hk)o{NC)Xbf(;Q<X-dgP7MFrG4bxkWz-p3?9$vk4kb?5+{JCwHPWYLbQrHB1)#
zkcO!OMvcy#qM=sh+&6~?FMuA_@QCn<rwP!%4$g*0N~SYtXK3I|_?U+5-obqPxQ5vp
z=4)7>1@FhXRLBz==CBtu%+v5)m&}fJb2$sK2uFIul-$N|1ds37*o7JvX;`dbiBxf0
zpS-2wgb$0$_dgnzX?RMqmTOo^R|sAq^l1%W-xG`xs(My9tA(x-`kc_`h2AfJ0k09f
zR>L|0{H1~gU(&E%L*p=V!q~uW(r{G6w;Ep7@QQ{vHSEyvs)kJ(CT8bum(Ja+;dO?=
ztNEOxwuq{&LbqvnO#szKZ=`*2dy{AGOyzT}H-s5!p86IGmd<@!!)^^b*#&$HtbvmQ
z<@XHB&A1#m<Q;bXwVZe9%zJa+)9}8O{XoNK8a~(Xp@uyyBA@Ypl&tGx0iOu{ROp3J
z>K6hI3;j~VUJd&M9~AnP(EUOW2&E1EWD@vVl81zTqv89`!Q~l`BMdnaI7TOMA_@op
z1)pHNsi+!8wQw-?oz!qj!)Xm?G@RA&uZCNU2My;n{G{QM==@ITMJ@Qc;Cl@}u#G<j
z`hV1LL9*<E;FAoVIyvb0dh}-vziaqI!!H^xQ`^5ezp_%1B&Ot5!M_P*@|jaXXkF8A
zBgy$wz+XbI3)PyZ-W2e+(0_!o6t8Jh!YC3BrpmHm6cs>RB8=1o7Ft|rS~53Xz!te~
zFDbZG7^MZ25o+e8Qb|S_nPHR*qkI^AO{0I3_FCCo&TkdMs2E0;NLCg~;Y#7)qi%vK
zNzQk7q)wQUiw?PbT+CRiA^e&`YY8oH<kk+OP8iu?)D=#>Fd$%aAL}*&4Z>&`Mt#8p
zcL(n^8VM%QOQoL<2Q}t~kr&38Fvf<_B#itpZVw|AM$>RGJGBU-Wf;xEXf6dmJ(by|
zMDB;br_~>xTfRteWy>&7!cfB)8OFU~XknB(k;b>iMi}8R^l<P!Bro<nH+My++(;P2
zW*E^htT19>3<zUj7<L#=7(K)26^0vz7e>1<+K1sMt!*7fJc(O{(Yi%oc^l!hP4WxE
zIMy|oW;=w@QJCGr=p>*^Ql@hPG*0a*;9T=SPj}>Y52J^07MA|+TbDb+xHDO*w}3uE
zd*7bgH;jH^%)B$W|GG<<{gaY4mS+!2;-LZt3oR5nMCjc@wFarf1Pm8?k5DQcL8mnc
ztQr-@ePN8I$N27YcFKlQx&7|3z?-bLLGpf)9~Z{>Fdm?DLP5j%Js7)eLKqK*F*%Hh
z;o#l(q@?DP6WTl!#uWDNrJN<goXS>&gUdXYdN_<nl9JQHn4ZLshA~6%V?w*l{O?X@
zmLwk!V|Ex%g!v>HbA_`&=)5rI3pleVxF&h$d^G)h@bU1%Fct}au~2gMY$?yP9t~I)
z##3RW>nNdPc^E4=!*I?C<LNL~hJ)pywukXd7|({WF^rcPlWp@>h4GSPJr~CF0#<WG
zbjW*A@EW0OMRHvjFG%vub7@q?vJ_h{Sxjz_EUwh_ihx;aAq8F)yh$i!HixlA@K&MQ
zguW*9b)hUyF&=M(@uqNg2qot&0Xv263gc}7yOX)^gz;_?Kc^Oc5XOgLd>6*|VeARx
zqcFY+<8T-shw(`m`@;Atj8DV(OpO0BjL*aPA{?x0l~@;xbkXa9C3}-PN6t;zAI1Sm
zCS(qVaY&Ms{5p)mH}fmh4wm4fB=sB#<691;Fpi4Ml!Bm9$HO=g=062EBg~UwoD#sS
zW9y5NKJjJB*)Yz9v8;OjdCBrcXTmLyzn1z#7(a%QqN9k83t?Og<Bu?|h4E7umpCOp
zs9X-?XDRqgICvmNowSx9ePy8kSIN2(#?@rKzlHI85>xWeF#ZbTdKfpv2DXLAiVC<H
z#@}Jw5=rk+SxWvB#=l{-%2fLd?8dg!VCtux8B3cM)dTyB>qymukSiuM(S-KZ^V9So
z>iR6KQ&LAM9a%am=_svZW=3i`J=opvl}%n59c2YyYTPnIK&B3LP9}59OOl|1fQmZK
zyp_siWgS&?<Vamrh1S%$m<g&SYp<?@X4laFTf3~bjygK(OK!G~x;h}32G<h{DI6GI
zHuW|g(|>J}NH);XP)DPrWMdthva=|bpt(BoB&&(kMSh~y&2%)^@sEywb+pjYQpejm
z9zELlb{!!dGju$rLtz7Tbk)&Kho&P;4g4%ehpxlW(Tbo&enf|<qsc42t0Stz(&5m7
z8;f!K@0bo-4_>{ET<mkz$A(?<htAKt+BsN**VExkskn~kUuetaZm5BC#mad~Yn^Ml
z8f|oRc(f@&fsS^1uy)zp7qi=wsiUKgPC7d4=%Qow;Z$b*U&>_XgQ?wh^q^OD+^2Kb
zQS{Pr_sskOI_{t=boA44mySL<2CYdw*&*vrx}r;dsZROyOkX|N>gB+NoV&lx9<{Y@
ze;wQ;V#U%P3w~`skn(!)e0Z>qk?fAJmF_Bq!Wkm;ZXH7f3=>Mp;X3X~;t>LRU#>|0
zy@IJ>w2m=4Cg_-`W2}z*bv&SBoQ})YgT;7vmP<X_Cg{p>-O7&V;A)rk^`u~5iAg#h
z)bWUpX*wpecLtaHgbV)Ycu2hcrdl|KQD-zgpcX#N+~UgNE*<~*Q<={GrR(Zc<VFea
z7OTXryrc%}d(YG{OUH{eNyp<lX6sm^W37%Sbj;DQG8x-*8UF{><vQl+n6G0&lD|~I
zLLG~eoW(kpB=HYrgW>ZeN1t$>O7f?!tG7ZFJ}s1*_bux1jE-k@tkUs|qnIP&t93jl
z_<5nu_5$*sDyh_Yr+_+pj&09losJho=QBG3=6W3)bZlq9(3!RKH|p4|V~dWLb-W^C
zuX1!GZD`-O2M?Cos$(0?=vC=;9e0*h_kX2cd!yhr4&HU`NAuH*7WuEeQ}Cva9XfU;
z%f6+f%&rt>@z|N12Wr1>%|D>-*71&xcXhm{<B*PTbiA+Q10A30_>9k-Q}RC4@sSQL
zsm)^#2T?SI;Nv9c69K8&Z9muXg^mMK<VziUg}-0NzNF+=0%|S@ig${p{1HuATT(r!
z<I1hvuahzZre_@1afA+JQ0X|T<6DNbj#E00i45&Iq2suYc(Fb#xPN-aozaxi3sO$&
zc=J~7MIAqJHWSHJ-L$hh&LuUU7x10X?{)kj;76esgwiUi8WYW5_Oo({Q_YU5U#rH?
z(i{Tj{;K1uj^A{QpPzC?$Co1S70vsdW002$DS3a0o~ZcePaS`WOi`_nWv_FR(F$+q
zxGCUoq2#bR9Lu-ZcLu5&NHI{v2&SN-2F@<4P~JeQfno-V8%Q%y!azyM<pPOZ#V*~z
z<tx#$8}dpS!J6S`26f6XP})ElBUq2Ctbu3CrM_D^_4*-$Lo(9{CJpk-NiJWbS1?e~
z0H==ZChbYH1XnUpSpYdrkEc{KP~AW;19upxVW6e~-GE`BmVw#^ni^<kppJoT1C0$1
zVbnEH&p<;1jSRrRZ3g(>yn%uGMlcZ(7kRm(_h9h0op{-awA$JET*mN+8`0y}@^TH_
zJ*8|D1OMKL<{7xwJ#u%i_Sav@$Tu*po!7a1@B+QLfffcr1{4FktEaa#aJy6it?;k<
z%B7M`zFpf^HDLczZu6Y{umR1$)CNt*q&GQKj*AsGd2(Qrh=F@rD4qe|fN3CVz%mds
z;22m{)?gJ&L)z*JO>6_CO!9EW`0=wd;s$pEY*JvLoq<*cS{o>6<+Y*Nz1km~QJ#`*
zMRG+AqyFNI_69mivV(zTM*a(p6w(DHVx0_h7Jf#}CS3${l_qo(+TB18VfGYSeo_k6
z_BPPRz-$9g7`W3wUjw5I+-IPlfx8S0H89LTe**&y452Xw1{xSd^FmDv4V=E3H`u^e
z^@BB^r{^_ga_H=Gt4kR5Zsc8?+SFT_alUiG!j&1}Nd9no#sI<fTJaGEMj8k}fpIT8
zy??~g3MZY{MjIGoV1|Lm42(5!zXAGunt=yvH92ref56~kWy--H^2Qk$->m6)0}~8P
zl!i<a`Vb`zblICSS(5CCQa7Vh1Wy(Eu+T?@(qR2mx#<QTm0G&q+2qi`tfD!}&;O>)
zG%(8mzY<}W<y}pC{iyah`>TYp?7?Dl49pE2j;9RFGce!4VgpMIEHJRp05`5WyE~O#
z+~IN_^)E8;OIw4?rQ-aX=gX1Fq4Xq2-+{Dg6N)W2utJPkDfDRrtggt-42o?k(TVgK
z;XlhTGxB?G^Pi^~1{%cBForb-)^cb>Q8$Wp23|0*If5+_yvQQ#rU-^cu-?E11Mvu2
zMX=Gp%LXzc$c*3>deXotcAtSwENI{(10NgMVqhyH-@rQtwi$TMz?-z31M}y4%^O*-
z8`w?@tpe_7R(3_lH#jY<=vcS5_1@VI+;{0M13L}uGH|k%)lVyYo3qMC9{F{)8{?dU
zcMUvU*?Ql=2L|3_&uWDWw8B@tf)5RhK9;t};4WHLxeFPTukm{O4O-zR20k^gpL2zQ
z&p2@nYnoTX`qIFW54_I}d|?DTuPr+t?Dw?Sz&=`4!}@8EMfw$+;1>`aH1M^7;|5L`
zIAq`(mNjrxBsYGWMuEdL<KqDp*0-B}rUU7>298PYxEdCdTi3K_LzZ67IB8(IRep6X
ztCZd23_FgiF?0411I`(^Xy7LU=V`xz?}hn;fgc$a?|UC|LcWm0W|Cfzta{5kUNZ2r
zfnN<=VQg?7t7kFyw^)zM1|Jy(k|n~0R}K8e=z6H<@0|C-0dx15LA&c%&2y}?A9;Ur
zY?{U``XqwCIEbj(z)f+{KSKXz9C`)2>sxNPkbe7@{d-&fsZ~w=kG&!h6pbJ~f)Wv=
zMo=umO`xpek-(Y#!iATf>bShNHSJLUv<PMzJ%~$2P%47bB6-)kb}eqR9t;=8_IPC?
zC>z1bGggP&tjA1)v|I$`MNe)76(Xn@L5&D%Mv%pLt8DFSXjP5iN|shBg31xpI#ia-
zDiNHy%_5+w)gq`K!NqNXByFx00oB%v00L@9P$z=y2<k?#qoMWL$qdq?5rYbEi=ci4
z%ff|?B1pSbuR(;nkOwlAU$dV6sUGRQCxf7BEVkuDuqj;lR>{J=2%1EYA3@UyXC&wm
z#7Y-7i=br$w@1)ik}V>5`{%B88(7Q=MW94*;Gv!xv(~nIsb0Ys;X*aSS2I1PJk@bu
z$-+5yff3=IY@tPg2qF=fl8g$a0JEAu*4~c5iNKHW6OkUSn6&Y+_Fe>3NKjHQB-NUA
zyK>rU9YLE2`Y?;D=S?csRzS}P3L<D1LHh_gM9?{cF2e5^K_>we?(|DquU~>szq$&i
zN0Q%7KzE^cf1lELO)$yylH?sidkamJy)%No5%i-6+8X^M7!bi-f@?HtvU6+Ojk0q1
zzz7CKFjz_zMld8<yh=0WL?l0PW*HX2@CX)1uq1+eA{Y_DG<xz>*^v?48^P2Fa-YZ<
z6$ut+9uo;Zir{gdBu7W^_5L*S2S1WOHiG*jsMK9~AcAp`;I~ua@e$0p7@i>fi9#m{
zW!8fcOcwl5k~2jB3qCBhJi>T>JZDT#<?z8))1|scg+GJACSaz}*+OSU@VEeda(>6h
z0}G#!<Q$=Mh0cp$zJLWn7Ye21A_0%y%3K=3lM%eiQPVKkLS<P5>mqo8&gog~sR))w
zup)w|Bf$nMYw4MzjaLd~2R*~~iepy^eNO1}LRSl2Bb3YkQkdFU_C?_^xq(11`RgOR
z?JeX7kQ;^bGEV`K|Mqv_ZUPkEL}U6l;gwSDm;J2~Y>U7);h1<Wg4ZMXm4i2e?Ge1e
zc#hzQ2;Sr<i{Oh0zKr0l2zEyBP6Y2pg1ehtLf;m8hBy8K$ltOv^}Pt*XEX2W@mT~P
z2%mQijd+jHBL724?h*Qt(2pbdM8Ky)DKoLD_4lkUpL15JrVx;`H-e)Pd@BO`BKRsP
zxu2s|@WCYKYXOIZek1g-&?7=qHxxTY!y32zPLjNBIUd0Y!K~$E1g8X_7J5eLS)u2I
zQs#UFpO-675Hz_({*MgW+W8kb#l4k!L1eB;Gk;<&5&SHin{BjtUuwTZaG8P8s}f6*
zE-#C#5&Xva(?m@Zzen&#1SL(BGI1?}KO-n&qNs_#BDfyGKN0-PX@v1C?=o%*xbZ;w
zzXh~Uk0<!IIPK_#DP|x>z=I%_NfYU2@btU539dv+=JnjvF$XK9nZeUnKEYOh%PC=k
zG%cK3+C&)>l}uDNQPxC;iE<{&o0#=L@Fs;zi)5N0Jvl71f*HI6Dzm0oMHBoL=wmH4
zORBy@4c=;1F;P`2ZG0kl?^aE+s+;_$Dfbx!4}^P<%B*FgwuyWbO-<A>k!_-(iAE;s
zl5@R0Ox$Loo)qLy%B-ut;1_>SYhdzGM$kHbYQkRw`fI6;&0xj6JQFzrn3ZdyRq0%Q
zr$l}e6Mv4%^RsfBnP|?In$S$NFwxRP$PAw0GwZzy!K3oqrHT<fD)7C4BAAbJ!zOeS
z5fi3xPK^y-y%~b}B|jY-6>JF|@Ia-Q8Ej0jwR$c$C2>u7CU%<GWx_WRH!;t|eA;HB
zwTba2CYWerqI&V%4kkJZXe+cpXgd?_1yCTfcWx&Wo!NF1{mtM@<}N0>n&@U?_w1C7
zb2Gb}xIQ<N{5wqaFwxV*s3RFna=rRqCP)X(N$G8(kBK|!hguc;n&?MuP4bIvZbPvF
zRr5;~S1#`|2ACLV;sF!mObjwH*u+Q^_nIg)F~r0$6T?l+ey;r8CWe}L_DIHn2FC4q
z`4|1BQ>x|PV`7AfKdg!stny>@LaH6xIKTGW#waoPJ`<zqfdgg9A7f(siR`f^?l-x`
zN&fZXO0(SjA^WsyKNQTBf;SrEe_A!4H+~aMOfoUu#G?#3(KFS=!vZFoc!<L%T7HTo
zsrHqjL6aYm<g{d66d-ek$?FZwk*t|QXPJ0hyvN+x?BDM*pD@u~G`ye}vN_wT<j+lN
zeqvb00uu`vFeY9yvB<<?6RS)-Cjv|8VH3+uEH&|@aCS*6mYFy#U<HdD$yg~_PYYf2
zU<cOwjNomD)MrhQj$2ti?~|10=@a3vHnB!JYkil%Y1FXJ#0!#jaBk+m(%tJ#Y~Wa9
zap7+?@v4bUf?uXdM>1Y9(K|obLUgk*w+Ll0@F0`)H50F!*dhGwCf*S6rcl;MnM7P|
z7dO5oeERuqy3WMkCjK$;j)`|ooH23M#Cs;*H?iNu0TUmX_|U{>CO$W@$HYe_KIRBD
zamU__b9&(?7jn2k0C!I~aW>^s@-O84Tznwc0sg|omy#T}F22{qKEYp^d~6#OIs0}K
z(rPvHc&<Na;%gH}O?+$OkW4tt`i91QoKmX0TGc2#Y~l##BBPK;#TVnpOdL0H(!?nf
zCqymfdtXWW48ax;+_-_1$7#vB-3Y2XXX1MkKM3c%(C>sEUzPcziLZt=`I8g1i3=t!
z3jZh0;Q}sk1U(d}{n^AX!nrJzoL@~`F>zIrzcGM0WCYi`Bdc?VtVI_yN8A@Y-sC*9
z;C1u5i5rr8lM~UZ|5hYkmfev8wQA)3YvPuPtSBl)krG9bC`w0BCW@j_q()IJisDh^
zI{&pR`&hfQDAJ=S5k<*p;Bf8}ajj}#<dbVNNvk5IR1{BY8do+h8^y9Rd6`j^iy}iX
zlh41OT0V*jQB;g#lOz*NmaR0cD{18@szgycitd9uR+UoKqNpAX){f?y#uTU##hf&7
zrRays<kgI#RulwP%H)yO5tAtPeXYEDQ6P#j7RFk*EsFY4{1L^qC>li3Fp73jw2z`u
z6pf>>qKHM26Ad;fY!*dxwl|8rD4Ilrt1KQ(qsSM`y%(9R5mL=#O4i_}EusiTp+v!@
zn_EV4JKI%|#jk29ql&y9g+a@s!S0P=$>ny6%#BFy_FMU;Fv*!Y)Q<|2n<v^)IMHCC
zPNg7~`!>3QTSwtV;fqXSi^jN=Z6%!9nnL+DQM8q0K@{AFksQ(vQFM&ro+w5{(J6|~
z>{Gs|jiO5wUD@iF@_R*tb3wN#dQj3R?9PTaFc!)rMt;vI-iekUQmf(}QS^?YPZVG5
z<ReP-jpFh5de3|{x1ZEF{E<|);^x47KC<f{#eisVnab_128!{6q|(7Opn5KkLIFdB
z-Ys;f&|y&w7r=o@v60jq#hX#=h+<R}_p!z(W=Aoa-5SLMQH+a%J1~xo;(lqu2qQSB
zPxwP+!^cN4A&ObiU|Xn((cu1Qnpm>3QvReU9*ly3$7BW%og;XPFsBNASm+~BK4mJT
z7$03ukK$1#qv)_TpS3(DEh3m1MPzF5y1B|57T2JDg25TZGf_Mn#oQ?7MX@4^lO=NJ
zi~Lfd3xqC=VvztYzrR=jl`NsQ=BfO|=*cKPsFb@b$$u(}<$@Q<yZ)t>a-SBpE2CJl
zJ^zD(+*R~ReqhG)!hbG`$(>SI@9HSlM6p)NZcJ)hC*XxBUQBXciekOs4M`3^Z+ltr
zD^a{EU=zbwz-FOagtEr1QEW@%<6{CFUYF!{p>ITSWqa^Z%3D$FjN-j0-j8AzW2t!F
zZJ#TAz4*3ZCU*ys7VvqzE8y(@ln)pHE%Q%DaVCms9n}w`*drV=KZ@dGj`t`&jpDN?
z4l#H-s!sp%pEE?G_@TYJymdv=FQeEi$$e2A;24kMt0?wI@z>={=JJU4FMqmY0KVox
zZkbOouao*s6o;kM5uqodI2y&bf{!tf1gwx!H(CTmPDXJ`n16LtcbqZEIm-#5qxzFj
zf^!1SNAaD2?}h%5%>7Zo1)&!?O|`DbB9|ojv(R6JUKYx%Uj<x=;;Mk(lKkK4-j?|k
z_>&Ec!n6>za6O6}oP;fuw{SCxzh%^yw1N#U{^3k+1rx%*(I9zCXo_ULce+gx0Y!zT
z3N0qIxX?5U=>k}=%hD7s_;YAdU2YCi%0g)iWh~Uvtg;rGkBndYqW0<m`56{6Ef9Qv
zI*qh~#RVJl>sZLPP|-q`g-RAGTc}}yFFo(+mRg0$?Os(2oqD7$8mm{6WObqBmuak0
ztfmOpvQXOscRyh%GV5BXXW@1WZLh__$=^aVnqi^7g$5S#EpS)3RYu`XBiQY(p@l{k
zxEp(8@k5SKIwaTPGt9s<JepYl?by=P!oQ8$^0-;IZ3_!i`;>1fGJL&QtFB6V#3&3|
zQ21qvg=0&5X%@m3j`wO+qgglIf*~eFEOZ?`=%P{BU+Ho7-5y0Fh5a9EZ&`?0=w;y!
z3$_KvLK_Ox>_(Pr1y9~uTktFtoV0ukaSNqZrna*1=*fDxr&znm%9EEG^C!n+1IqSn
zpH*OSnPRmQ9b%!qg$`1j8ai6wHuQWd$X^;M+}T1GT4JG_h3*!5u+(#@+uCML=#a%d
zs#dhgI#8=(PYd5HPRT9ShmPuPp^t@u76w_k(?VYhcUjPv)#Ec#D(si6WxLa(zhD*_
zU<D`8^A|D(3ulN0nn(FU3vV6l&n#MXw}qh$%b87i46`s?FhA{Kazv6pQoy|yMhUnt
z$sbKl9gC9pGnOnoYhjgzaTdl~SZra5g$WiWT6n_391D{yJjgFlE9ZZ=qS#~$4_SDa
zkziq6)l@R4NY+%LOj-*%O|!7<C3TWtmPvx?l6+L?455$Fp8}XWOTgn6W(%ktDI{~Q
zXnVecvdF?b3-c{3pgmplsc@ly;spw^9w{WH8A~lZX<^#CHF*A7#<01NvqC7rQx=vd
zamLf_o=)PG7M>B@^r;kzJ!j#03%4w!#IV}J8Vm1R_`t$iD|qCx)xtKm*TM@HUX-rc
zXyIiGFIiYm?_CMDEab7l!ap~HAFp1q@T!GP7B-7;n{yS&T;HhD7RJo*;2{z*A78Ag
z-Q+b9;C0t73$I()Zs83JZ(7*Fj%EyZ$-mhxwe-sJyg0nMv>ta(+-c!l>n#2@#jLk!
zn-qUX=(|bf)c>9pY>U}1Quv{TJr>SbIBVe}3m;qf+QK2`TKLq$J_}!2_{_rR7QV3X
zCC%;}Y}A|hOLwoRWpZ%0tk~o{0v`J<9JGSxY{Ul`##Qq96YDs31h-FZ8<hRV!eI+X
zEF2Zr-JLp+4*b@_X-OUvdR!>^CoG&y;!_q9!s|B%uer}zIB(&1i?_7+&cgQ=E?M~5
z!VeaHv~bbFPYjrW<t}i}tde@NM;71bzI-6B<MDc(mKXb_bJ^KzQ-85=nbWL=E1V%0
zr|{a3`<ce)q^$TL`>KWCI1CH2_?H&9oF3aOpE1B5xn|)nPWx8yaOqFhwW%2We1oHg
zJ<A!)!rxZ#I{<g!VoL{f4X$UNcs+$vO1m~${0gN=3`Jw85JSZnQe!9<Lq-glF%*v>
zEr#?MO2qI>&vN{XhY#!6#;<=jNO_cu1z}c7XlbEkVkj$spDr+~Tnt0rtyiA<dvx7$
zx21fhl{=u)$gCJzhqEfhP&vkxu>&PlVyGHJofzuY&rCckBePlz)nh@UYKTs9YQ|7Y
zaP1@~@qt0MB<sddPXLm+w+W~p!@E*TqZk^;@O&$*ZiSo}a%1=`hR<Wji=jyjug9=G
zhWr?s#_(ValVfNWL-QCW#exaBMGP%taAI&{xIGqJVbYDZ=nuu92vB3tVhAT|j|tFY
zFk*-ZHe;{^M1?YV*eKq_ktT5BYd|jsKZedRbcrDz3s#|Q9YdQ~@RYk1yGC}-YD-sd
z$Sa7UT?~BEOXjW`!KQEfYE*0=LkAJ=D72GM8ceaSF?5TeUkrD}&^?A8G29tLUlCw#
z&luM2P3a}cJB0R*p--~LM7<PaEs47N$1os<5iyL6VPFh{#1iJRuE8-36%B>rt06+E
z;cfv`GAtH6;U6xP;2tSUaBmEwq{auN_<c0;ui(y|I!DJaCWf&L2~k2O^(5>e9w+kS
zg-(cJq5$$)>Get$PmvGBFeQd1F)WqhQ)75MhS@PZ9K$0qOp9T<@E?oe(O7UIn;|qY
zs|>gmEDkU;hFLN2Eylu%>51p+PsA`MhQ%>l-Iy^qhIyi4ffSrCbZE(7&Pga)7{elA
zl2hcY^~8u^f_*ZEWpsNCFU0Uv49jC!B}&-d6)~)g;TcIj9m9!}!CDF|!m6K5>fsso
zIfir$_ubKNHQ)cnur>zn;hqrV?2#z)B9)LI!{!*)$ME-@_=XrZGPLCFz{{fTl^9-4
za#;I<>gi{92i0wn+^sQeOXgnvw%BX2;7tKPsGx>zg%#e2;msJ{kKuzDej8O`M+|Sp
zf<2qwC>f)woq~78@HWFf27X)hj&QD)ZpsP&U5>IY`R_3@Q}Vuw<ueA}98=-L7(R;O
z;~4fx^Q}@%TBHPn?h{FFte*a<fZ_uxkoiRnU(!EuoQz{H4ddKpBhAKFG3<}wSPaKw
zIKbmV&e!ba)4BJ3o^nu<pY=#N6hqFI+;3tyKRx$w3`f|Bk;0>rv^Ewa{#G!-30fY*
zuQ6PS;ZzK#WB4J4A7eNZ!`T?lQ7ncx`lqrjyinY;Ds}D7l=@3kzKh}e7%F+e8XBK)
z|IJ9jg%~cz@G~dX80Igj@KX$zV!^h{n4LSZab~1uMf#-jk?hNSq5p7d)~R}-OockH
z(y{Eg82*Xj_Za?Qkr=MW@LcPxYccR_`zJ?Gx!@~z?s<LSl3KlE>J7T6ZPrarN)3ba
zAWs&1=jQzz!>t&K*eGfv#Rg9VBU)#D**a@oB=}?~)egS*qi``hxIy5%)E$eOQfIo2
z5;k6o<MlX7+9+iQH*OW};0Nkk9V_y;>(Vy&+rlV*0%RjY_?b4!*(h%ZA3EOiZ*Bz}
z={M@}tjFMN7*V*}b(W1vHY(ewVq?0CM_p94QO(A)4pup+Zli{c88#lXQPV~(8=Y-*
zu~FMb9UCDVij8a=b#3I@$g@$;25dC6(Z~+s<Te}iZ8Wg4U~$TX?pfsU8klr`r&Q9$
zB9mj|hbr<`6e;{>iToxun%QV>Bi}|-8)VYpiHn0@q+8f%Y2$V&*aHD4QG|WuWu~h(
zG#joB&qmmWZo{+@wPA=nHAe)nQ~1dula`H`4cmre!+$7P10=zp(j_pX`PslK-$vX<
zfsJ-HTG?oA<B{i5+S+Ji2cLRUfZF;zpU-m>G0h-tZ=-{ajy7l>lRP>}z0EVz|Jc)l
zrMlYa#%{84pN;M|de|7q9=FlcMlTzEZS=EohcvvmjXqMACedm11GU{L99DXljsAiM
z*x-v}9zpJqRGLIE*hZm^;WqBEF@yp(hT0fL$DU2&rr7sqq`z|^h1WK8V?yBwQ8m)W
zy*4O74fHKleK9BaHfFSqF*YXKc*w?B8~59oU}K_<2W*V9F<#0hN+l@OvJ{U=lJ%f?
zgIR0>?VKXaM{G>9G1bPy(%6JNeK=imnS7KLWu%{}l13&K&a^Sh#&sJvY&>pbwvDwm
z)^YgQm}BE98_R9XwK31eA{&cE$$T3N8GbhYEs{e@o&N(%Y%I0$q>W`Zp5K+tEK=r@
zCX$q2VdH5V&r!g}N*m8`T-aD8@(G=kOsHjXf<(d9Hr6C@g871t7i}D|ag;XLSkLy_
zc+bWL8yh)J8A~=^w(*LM%{I1(ov+&1B!KZo<vi%Otv0rC2C(tEWRb%okwr>L9&g&%
zAyN9ajkiQ>r;T00NeED~+TdEGyKTH9e8yy=miKLZU}LY1eKtO{vB$=zHa@fQk?8r@
z#wSTViFz41Ecm(PeqrNFi9>Rjn@~vbm5u#24%+xy#105e$j}BJhirUf<FKeoa9Ap#
z|63c!Y+RNi$8DUj@ja&t8z*g?vT@eNImtS0<4jU5H6*G&FB~SnOJ*f>{%GTZjY~Fu
zwsA2j^HWmhe}?_?e>i0RYU7HHt2TbK@w<&b{?CYG?ll{Kiu_-~XQc_3wx1l#DmQKX
z&56`OO$YyoSUCsf9sFzK7UzElMI4lLP|8732dPdFrD;N`xtN3EPB6O3<Ux?`poDM|
zOw!UKTvjM$$|TEXILJ(5icwny2NfMuc2LDZR#Lu_6LcaACTLaRSL5U_;D5CwKrIKg
z9o*@luY)=cvK>SnSPtqssOO-mgJurk;5G-19ppHu@1TK$h7KBuwq-TSZyQuaT~dSe
z_aZsPhg3P#redyxJO@o2<kJ=Hi;+XRw@3~JC`oYs=OWD=v~Zv}P#v^%K<4cZLJkHG
zukz~jK;g(k)ySk;%|Y0K;UMCGS&2h;aG{_D6_T0`cu<&4CXG3;9kg@M-ht!5br5&Z
z%7N#=7cpvH@@y4KCQ7w-(8fVq2L%p#j;cZfc+lW;T>_g~-G@iBJ2>d*pqqp44mvsL
z?4XN-uE}~622hg5u*i(E#d}bdgI*5qkQ$lA7E$f`-Pyg_*UgIc5&JhEZ_Fa@vBv!z
z+~r`3gQ*VsI~d?#w1Y7Y209qzV5oy(^o)Z-2SZrg!T!Q3G>`3Vc_au(YNj4?hC8^&
z!MzSfIT+!f>g|EdNa-mGusWJYOYU=^-BpE3m`mnZ2lqRe;9#Oy`+$RS4#o?nX3A5H
zZKQ@t4jyzc*}+4ileyO)s>1d%3@FBfY9D6!IauIep@V4-raPGJ;0XthI+)>LmV?I~
zJmz3#vNx%g`q`DVgta94mp0FFFxSC62lE*u;=Q0PhpJJAl58v+xX8g`2TwUz?qG?7
zr4F8SuuSABOjUGvqAWX+MOHX?+QCW(&qzfygSk}5c%ZgK@;L|3b5OXb<6^agH4a{(
zu(Wrr(Dg#s34OuAivn2PO9H-#<ZKYIQRvIbT)t1-M9Uq#=iq$@TZI3bgVzOYb+C<2
zlgWg1yMs3z>~ye8a^G~Y!@*l3kT{+3yp}lez3pJPgLfRfOS9#C$Kna_Kl*`#4;@@{
z@TY@44nA^l#KBPqA3OL&^dEHase{iPe92B1&gVkE5XxyJF<0z!@RfrD!rY(CV#BAV
z=|S^lHv8JaA<6ni=;7pCM-4o_b#TnVMF&4QIPTztgYyo)b8ynZDF<gAoO5v6!I|U?
zMx7IPwcwG^Pd)+d`QE_~4t``zCOL^xtRi78=_Ln0JGkQDs>9zpaM{7HBAjST!di-P
zV*gEy{N2GHbo>2H5=s&k5&z}jx`PUCQ1uN5Hyxz8NO$o!Cx6awE{eMN*TF3ZDenJI
zaVku8QA~;#cmF>#bHauaE=sy6<D#s{lyXtp{qORR<|U2{7nv@~N%8+#$R?MUBHh!&
zWL9*M<)V^{$}VaMzX~t@T~u>XT?$g32V0cz05#Kqnl5Td?*I7NF6z4I>Y|&AdM@B1
z;=*)sn~VA`nz?B1qJfKsQbiLNja)Q#k>es)I72dvCa$-6XO!m#cM7b9$Be;hzKf<V
zc-@;2paCshv~;1l2)nr5MaYHXLUnNm{=44b1$<Yeun5gdsM1{+QW16XzXo2=^0GGS
z!gA5tMH?3}7q$z}h3~=<PqHF6=~9-Ws(7*^S|$0EA-}DQ0v8=!baK&7WZJvvAb=ib
zSvoM`x6a9eU6S4-pGS8WJ(%TUsEeL1db#NDVgOs@qPL6U<<k4Q=;MO-Zg;xDD`V>9
zosOHG&ervFahHqFPo}-vA?t^>!42K3tFi~W80?~uZt0aXNCNESj+(i>D{$gs*&!}!
z$~FHm7sFlL@8SU}cQL}ny)H(Hqv}-;?$kyK9=b96J{O~1jBznmEKl65C45UvhYzik
zHqOO(7Z16Z;$nh}i7qC&c+dsy;RS!ghf{gqM|bgtXtEea{k#>L>f&MQbTQ4v=~<Z+
zXtX!Dp-Xs-*OqMQ3>S~FnI8IknCW5`$Bv6zE*^I=+r`H&K5_Aci#aYfx_H^eTo?0P
ztaR}VBZuMS;z<|FTr704$i)&DOI?i2NM9_iOSGkNF`aiAte25P!=7@n+{M!(utJ)g
z=qUyybBTEu^Q?<iF4nqO=i)gR&vWK?u||r#I=mQf^eD+AaSQoniL@77yvSS^>;F%^
ziJQ$0jL$XMRLdKD4$N2RG#78V*y&=Ei_I=xbMd;1EmCl+i*0Pk#mxJc2L7C%S(Gm2
z=-AGVcJZc*9U_((FNxZD-^5U4FYI#hwu|>&eBffYi+5bS>*77SYf#47%=E<l8g<fa
zDkuF=RPAx`kqchOzP33#k;?(g4*k@{XD-gUIL`=l@r8?TTpV`srHj2T_PaPB#rFyQ
zN@(Inl4Ys<po_0v9AfZ`&l5D^kRvXRx;WwDq>FD|9Fwxgg(jXJu%{RpRC0=8<Km2q
zvy9}7|9nm*)W%0Qi75Kc#rGUIE`D|KgNq+U&m|WZTwHYVlOz*gL{lOCmI#TTUHrnq
zxF!fiR>!O>F0Q)x)5Tvdesl4=i$7dklkoU{Q!(~J;<i`G2p$@+$FIA%;o>Hzea?+Y
zq5rA;n`41(|0J#5Xb0!P6c0r_C>~S~MLnc?sOh1WhhiRzdno6jyoWRo=^n~>DC?nw
zhmsyjc_{6H&SdA#t(?jZN_em5>8!mMQZl^Y?2{?9?~qiE)`T}Ic&O;1iifHmvOGQz
zLuHX+s~PGn!dB2inp(|6b;+vXfe+AF{C^&%aBUBDJT&%@<00EaUCMZ9;Gv!eNU7Vr
zU|t$qF3|RmbPbhIe?t$AM1Yv#lyGmZhdd8WJv8&sL~`?~e|F&cQTtNZ>9nW0hZY`g
z_Ym^X(gP<4x|B+IoV!!!TNO_1iMuV$Ls*n_@}PS#Jj6Y;@(}T0dayk>9-<yB4>1w@
zb!l+QU=Q-3wt3Rst_RP9PbYNzZ#ts2tds(+J+$%AUdpx=THv9b_uoAlO-)$Eb5I8l
z9i<`UuoY}hXAfOGboJ29!yO)ad+6?=hlidXdU;^k8|BgyX0Xd<Nsx0&Wbr<1vWLD>
z9j)yrfc)QPr*bjF@r^nR@Gy|7eDw4&NOJG<Fxtal4~3E(BJ>{GnJhch!!W_alN@#y
zb&l{bQaJY}`J>p&^Mb4~9>#h&<Ke7_`#n71VWWqaJ&f}(-oqjfi#<&6Fww&d50816
z<l#XNQ$0K^swR7Qh|Ns;<np=fAqa*oqwWz8(>zS~@Tf?Z*^|Oqh)$qS5~H4UriWP`
z=6IOv;c*e0?coUlJkjvAUE-`n$$1{;dsyIMA&ps_!jlWV${rzLbv$-0udu|!QV-91
zSmohK56eW)(;l7@u-wB6DN6$qLpx!~N)OM_rIqvfHZU;}J?G(h59>U<AO%-@SmR+W
z4UmVNtcza#>esTIW?!U$hxHydNM9!`p<0e&PH1m`kxe6C@$jmLk34+rVUvf=9(H(m
zOEhos@S2C$J#6)`&BLu7!MSyH`?A!(-NPFm-V`xD@lI&wlfcAq-sxeNhxa_Z@8N9^
zyFI+);awh;Q+d%v0~q8Lel1Ib*)EQ|4?KJ*s`e!9B(vG#Y-;1F=MxW~didJIArGH%
zn0wgg;VTbcNRcl+>}7;hNn>|Ve`4OFJ^Lm1fQN&exT*v_#e+5SYJ|=I#=~I`$2=St
zu_GRidia)OFf*OePV=T_q|*i#IpN`?hf^L-%h)7`al%t4mC$>Xq|S35&U>ilqq>jp
zJbX`Id0dSeKX~}j!|xvc@NmJyMGwDtxa{F450|9gpM_EtLx^W9s$yLI>fwrqs~&!n
zT-M0*_5b>gSDuu==HX8dH$2=FnZG<-m&rNdfwJ<r^>4}g$HTwkd3F;!jt6a~+l%-p
z>Z7cW3?HdJiuowvqoj}GelX{x`AGMJa~z$(Bs+qdd44bDqqL7QBEwu-!gChiu<*Gq
z#WH=A^O5DFl8^EtQ^7|?A7=)ZV=L%b%5aKKOzf3?RPj;O52Av69t;e2H$e>_HGOD4
z!ai#GsO=-yN1l&5KC*q(_tC&dT_5#)z{hP;QDPEf>sXvEr6&m*`e@{%v5y>)p_5q!
zE#Vafb9u0JO?>40XzAm2A5DEU^U>T#3wCA4K$5o6Bx-BFH8`KL2_aFX_)z`eS|ZVw
z#N`3ybsvV0Rz6z$i1;vlI6hn-Q6H9%m=D|kZ=5E)L6d044<myo-kuL%l*dJL!b18y
zA=$=9TOS>Lbn;Q)qn(fTK0449Gs|<rY1}P~rq+__i;bd_JNxM3qnnTJ;^D4-@FI*2
z;VT$^dyw$Y;5mVpdil7+58g7narE}lhmt-H`nc0aUms8TSni{rkGp(4=wq^v{yqly
zxYx%h9|Jl0`xxqDn2*6?e4&pa0?PbR?{0<)=hcjKx{kl!@&;kJk9&NK@G+7O>=nGr
zSh6*E1jJ+3&Z?xe^FAM=eT?%l-p3dpV;P4&9uS@E*@VLrF;iE@AWKc~G112)kzw-_
zQN-Zn9QcrrDL!WVc*4h29}oMO;o~tMkNBA8W4ez=r4-c$uOQ`&oNx~5Ov#$%<8dEf
z4J^00U&X{V0L^Blb9~J8vB<|_AM@C)J{I^`nCxE)P$%t7=w!hqK9>4;(#JB1F2>C6
zH-p)OlB9`9SmEPoAKQJr;bWzbXMC*pv4OqgW0jA!KGyko&d2jUR{K~Z<|Q;FE+ZK#
ziC(787ks=(0k(Q+Hj_LU9;9oRWN-BGvX9L^w)l9($E!Xzi7MtM#yk6qmeazmKDPOI
z&ByD0@OFtUO0<1qv^;0~L|?q=V~3ADK0fmCmXDo`Hy`i$*yZDGAG>|L!$GkoI9*ad
zPlz;?s`&XCC++v8-Vc0y=%Y#b;MB}u=Iv5K^T$3u@$rR^FMWLK<1-(hi#%=PJV_ba
znV8e|`q;-l^08n1PyMVYablW$cd@D~gNA?Y;}9pPILgQIjgP}V{_t_l#}OY#eSFX9
z+Q+v(j`=vvDa*%kA18dA^l?fm?eS%Bx@7Yc+G-bMaaud;<D8H4oc3wwoO0~t<(2<C
zeN#Bm`#<`);N!B7UwvHk@sp2BK7LNNmxeJ=*^pm2*DVRoIN5*dJWF2jan;9fK7Qwn
zByR?J)0A*a;v~g6`A;8zarTa*SRB`V-0<<Qk6S)&iot*T_(!}^?npNE^Fo~m`!^+y
zB5|<ZqVZsO(o4+cFzj14@PF|*(&8u;N9j1y<0!#5zaq@$Fhmn!#;Pe<CXTXkWW<pf
z56+vJErNNH{$UjyEY!)iREVQu96531#*r0Ar8u(Vs2fM+II6@^GmctuRE?ur9M$8f
zAr<lJoqd`Z4z!I*SQn4lanun3auQKWZ`6weaWoSCZE@6(qd^=E<6wN!`79NTyRF42
zPhlR7*)F+^=iNbG98KcT<1pgLkE3ZEx5p8Rqgfoy<7g2_%lLnHi`3JndO9!E*(e_K
zM-)@yP~*_z2*-nQ!R9B%1qUFV!@!_3BVv^mM=TCAj;LsxxIg&WHgRWa$Ki+!r)z3p
zs~NOj9DW?}I9kOqHI9elXdOqJI0nVJfgsw(Q9wO$^o*lj9PQ)i97h*X(jktHadZ;Q
zi-d&V=F9BbHI8n=?=F;npv?(C5ci7XjyU?p(U0?g9DPLQPN5u<w2B5N8h%$C{o@!A
z$3V$tcPFNlgiP5|)hJmQ$B;P2#4$FGyW<!d$H+MDjbm6G!{fLojuBEeQ9G|`S%k)r
zCi-+#9QVaBI_Y`dY0{;GRtD#Y`{Q^Zj!AJm7{|Cc#>X*%9WB~;BA@_g`~O{U)8NT*
zJQT+i5n%3u2ZJz3G=%h#IHtw%R2<9Wm>$QYam<Zlo(Ru~V^$oG$MIMkGm`<sBJASX
zaXb;n91-JLhGE9ROXWP+qWN(wh+}aaOGIE{9E<)}`{I<u{I*m$PsXt<9$X19&N<^T
zR*Cr-XGI)O$MGU%;#e8SGjXhrV@({-#<41n=i+#tIxhw{7m2Hapk0fDNr|<ujbmLL
zFNl6x%PjH}QwNjl<Jb_#t8r|KV`CgIi`Xk1cT$$c6aJ??o8#CL$JRKu{XeF@13HT8
zeLE1ENGE{w@=&wMhMGVEEG5b8&g|^$?##{tQiY{TQ&ChvdbQA{BT^LUDj<l0h#(+U
zL5eg1MHJ~EqWC@Y=C}XzopaA~p8MYS_A>3xd)dNB;1eH*bl#%JC&U-z+Q%E<Ex9<F
zi(|Ri$|;bGZMoQ<i=DaHm5a|e=YF1xFF1yCGFk#Va`EkN$@8zZru#A%J6bwFOfl%I
zT<p%p*P_-UREEMmx!5Plf3Nj_lMCYBT>RKFM)Ix5$@h!ofZ##F?*tDC9?r!PA=JFv
z(lO$6JQqLY;sj^Y#**K25WbxJ-nix`sgsM-xj2*SY{Hpdt?a2>%+Qi}cl3S__gT*F
z4#{W7CH};vAnY#LDptEyjO}?L7Z=$<3Kl82l#8D^e-*S>a5)!Ocv(?UM#0rw{KD0k
zh0n#Wxww{#Te-NMi{El_Jr_4}@h3MdRrUOyi$8Mti)GBy%CYKjH`6BG$@F~F$-J41
zSXa~as5SYWT-?pY{aifAb?jOczftHOd*@7{X&n?Arnv1&>RH?KkX7LFb-eqKRx#r1
zJw1<e@lP%i6%<hLZ!Vs2S-6s!py0n;(24~!B2H)(V=?k6D0f<`+tZU@LDl-6Nk_XE
zR8UAkQ3X#cPL72Y6jAUL@pKt_cU1O7x@0f~=3Y!eyXu~j3hJ-$7gwC!k_+m3N+?(&
zH7X^NkA;_2kffj<HJP1)^2|#?HN~;CP(eW@1(g*%Bi>Gjx>poZ=jm7#YCcx!-riES
z!zIsmtzy*`)KCBgwH4G<oDJ~5wu;pf^39d3BE@2LT4mKyaQFG1brqg3X&+mr&mG(|
zf9qJEJ=qPo`BOnN1?dW0teS#`3K}WgKyIfha4R@jH+TMcf0fp;KNkhk6cAgsjx|>J
zKU9oCO%*V-iNe2-V#m@$Xa9E3XdTN?&|E>5f|gR*778*IeAL?M(Ec^GVGSI^6s@Eg
zTPyGgsd=MN8wC&QI`&E03hCKO%kyR{$Wbsz!C(cs3KRw16m(bMRp3()QD7@j6&eCU
zP(et6pN&x0qbmp~*wZ?8zIAMMC)1!e(=jAcYra8mn7dw!#i(W~c+xt?<|Vh-+8#$3
zRnS4fvkE#Z*w9*Q<cS?F9_z^VdDOa-f}Z=b%@f_dp4baF3UyJ?Rlz_{EHzhS;;k=~
z=%L^_1$`Ctqo#u4A9s%_=&jJAyWLB{1dr1QGb=eIq3c6Q8=KZV`m@T*{m(NgX|Vwc
zXv~BP+;T?iAKAqV6Ne}ms$iOeHx;~~;6(*v6^vucD;TC=go2R@URLmmg4YzRzgc31
zCpKKcZcpr01^oy1q<3>Q&*Ku>>k1NTdw$H-Hf+fnrQi((qZRD`r34MF{MAPLsAX2W
zMoF|GGe&Bfk?9%FLMoV~V6uW0FBfp^z1W_K3W)paI)$u%p+u9Ko+%2ZDj?ZW-!pe_
z_FD?x<|tAyN5MN%sTtDI(;3kdThrQ^*E1E&Qg{G?wr^wbFHekJPvKkz@3MrSdOF`I
zMDIKfFix}!B^Gcvz3+dagF>4&;|BHQLe#sK^TJ^<XO`lethAKF^{DGT1)ImZ=yqLo
zFK2-jEbw8W4=WX{;_BqZ&t80>;6wJN7b#w>=EziVUBT}P)+ku3;9Ita;{1THjx&g<
zu`xLe6l_$SNAiy)Xp<nH4f_qr{6shp3u6?zEedvuWUGSD6l@bt`F4fp#yWSfbf1fG
zhk`HSp<fE&j|{swRD|yq+^67cA$tTF_ZtO!g`dlD-Wt)BZ4*17;Glwwte}GL6dY1;
zmO2U!D>x#`Cj@!DJ1T^+jtMy~_`To{oLt+SKPgU%_eVi`PboMp{ET4U-xh<5r=C-A
zfwQuB>Ulx7#{Y3%6n^HKuizJ61r%ISoZk(Y6dQ14OeOhMlKM@-HTK1C$=0?UBIPXM
z9|~@8>GPtB7k?_asUV*h`MtQM;5KJ#yi|9%pb2N1jCfDMeNLiy=-)yf3jQVdNYL|j
zDJnl!@Q--^6{Muk^u+%->bzh9=%ph`^rC<lCA}!+ML{nLc~Q)Z;$CNL6pm{a5${ui
zlou89v=;-l;(6&@{?+*sQNoM+iD{IS_M(gz&v;SMi?Z=pN2Yifl;lM@k(3v#AgD}r
zdZdzY)|5%*DRZ-NRWE9IQPYcRUdPBAU3DSX($i{r0f|yqu(lU<gfJ=JE$8zYYgbPs
z^#vPvonA<e>oB8KFWg?t@?y3ZX<jt+qN5j`ylCV_V=w$(=w3AOqNzkty=dk|x)-gy
zXe~+QHDiVs%|)SwV5VS}U`xULWt+1|9xvL6H%G9o;P&EK?S!-!%ocp~Uj8w&N;68X
z7m7&8y+V9~Y%VP>XBh%s7+%;?q+nd0H()|ughgTsT7nV5;hHlBqQdV!Dbc};w`-)*
ziruqbboOG17el@1;zd_c80bYeA>F;`@&DERIWPK(yr*C<!I&Tu?=7T{7uQDqZ{6r8
zlKz4Nym&sYxhN-bP@E6ulGP^0=r4Hjq8Agqm?%LndGUsjVP3o}<P|So7cyM%Rl(N;
zr%W%v6zE2HF;XPtqr9lMEPtMSv<Sxtj`d<(TxYxxPX9@9$y;7bj`Jx(rV38;;!PpH
z%Nq5z@OK2K3o@e_LS}lA*V=QunCr#YUhMJWT?tz1<#uk&6Fy&Xfgs~9^kPw*FBY=I
zi`sst*Oqzlz89a0aJd&NgtYcIU+Kjv;Tr@$@M4V+M)^?4YQc{<u4KlojfbxDVtt%*
z_-z!vDK7cgi%;U55jT6WMZ8-DzZCpTaGT(EFFqHt!;3Gx(6%`fpRUp%hwSuXmxO*L
zNXc%_KKZ-t8!z^X@JGRYf=9jh){FhZ4+tI<%v)-{^Wu<rna*J$N8+g+6Yp`s@8dc@
zcyU7b$++aJoWxUJoEGmH!Ha@ti9(q2IU(l-FL<$iN)m;1oPC$QxWWa>hgv>d_2L(<
zcs?Zg@GFPC=oj_jH!rSx@wXR`Me@7gT`&F+!gOv3`O}M=amg(qx4pO{WTMQVd&2L>
zbsh+LDEOD)BSH4jKSG#tqR&~$|MlWYT=Jig1RwHA5JU3|8F#)Ac>&=CeJB(UEi9yn
z4^PD<57fk`<Gh#;#pAq$4<&_{ic3oSP)7KN)17f!E-tU;LwVs9;*w{CRP>=zTvAy`
z6(6d`B}{~NAglWvYmhYrQ-+p+54C;h?L!|Q>WF5#4;enx^`V}4>kFm{Ht-=?2n*v9
zk|LNY=oZWyiVb~eBwlJZ7ScqpsbDi7%*VAD)ZB*_J{Ud(eaMucwm!7;Axn5m!B&E;
z1wDdo1R4FIEK}{p>l4ft%<&;th$83}q(1FMsKT|l#4kkmArO~PC*(uehi)P<1v?5_
zah-?|+lOde(m_aGH+2&JtYBxsE<SV>lDBSj7v4jVrFu?CPak^4B{ARsW^`X4`iXFg
zV1L2ad>G)v^TG!TzUadsA%g{n2r}iNKD-d;x7Ea#gb#~LUiRUYI3F(LRUd{f)EV)0
zA4Z5|qz~hSj1qi9aJ1kUK`M{+{ck-SAD2uJGEs1n50i!D$`x~}57Wf^rr<2Ww*=o7
ze8-3BLYVRlA7;k+%*VB63!fu6H!gqIhk0>6UkDp{kq?V~xZ%T}J}mKJsSjWH@FiCj
z7e@C>d(VeuKD_V4avwhQVYLq{e9mX$RX%*+!|sylD}9dIxx$4h9F;$VSnZ2yANjDx
zhfO|w%+@~Lz&cZFtq<!MQA=9y!$uKq5NxMpQK6?@iuj2SpGxA}ec0^77SaDq)EIHA
z1W}DslDN%>Gqark<~|qs4pF1`jdtlfec0v0_dfjK!&fY%4+nkt&WEpk*yF=KAAZg(
z%OCu|;j|6Ar~X}#d@qBZ%{|}>ee1)1k+1)|;J6u`4zN#WbjnT*9TMRYACCHPU}xjQ
zKK?`*W5i=@sBO(hzL<I32mO|ox+R+y2AJ##A5Qvk!H0_+fmUL#HN`3XQ4%@j!)YOu
zoDp)CeG!+O6LOx@T++ED(SKnsEH)?mi<v8bX?59$D|`g|rPWoz%1txKuW|AB;kpmM
z``~xmY>Iz88T^r|D{W1@>--G(htD~IarTJxn?Bs~;W-sORowRB4p%A_E){ouxW`pg
zMOhX1eR$wQ5fwMfxeI*Ye(1v!A4ur_67tB0zlA)G%l{GbFXwNYSf1v8J|w7E@_Bc9
z^Qp+MIw>Ry77#2bSSU~OfxEDZj~552^OTCBDxOwROhqXv1B=l;npj+T2^AX_XHim8
zy!<b$bX+H~ygNxnITdwO)KyVlMFkZ#RMcb^JpWNeRUs8stf=g&B)qa9L#wFZiB}}m
z;*#nrw!PsPsjH;|DmKA&aJXZWq_&DJ&z9wp=;Zls7O$s*rYaf;lGIm`@{N|yZXT%{
zqBliFstS*aHY(gI(o{54k*@N*1E)0_t7xL4k?KqnK7-RJ&;%`syMyR$s^a<}=auhn
zZ&HSe=4{DQiDMo+|7A0@g^ElSU(ax7smQ%qyrt^=-cHv_NNd5|@*Uc$Xs05mBBY|d
zifk1=6{?CH#!{iE@T%ZuNd9igFHN7HtHJrpU+NA7leTtG)KvIY=qds#s!UCwF{qu#
zYMc!wot~Az`Dm#4Nll_9w}C^`!YWJ^&#LIG!cq}Y(LqH=6|F-_S5MWlRYY0$JsEt-
z$-m=gDk=QspPBNNawp2GTC8Ii6<t+yQ_-DGJujir=mLCA%GbqRdM92CCVk&IsfUXF
zt_~c)y;Q_hEKspfMQ_!4&YGs;O%;7u5f%MZ(8BYpDqa)PU&R0+&kGI|93(hc#SkGw
zRSXlth%X3vQSc?flWm$%{<4Z!#5-J&5}sn#E4|_CDn_dKZF9~D74*_g`!$u`Q7Yb0
zF<QkK37sTJ`B)X>gpZF)CJ33R;@9W1sX#Yb#S{@v6)ZQ{P2pQo)9ET^2zgt@J3{ya
zGFxD#idiy*=Bb#iVvdS;#XDD!ox8GsnWwHfe~Hr3J72}6rH*azmWv83Qn6UYIu+|V
zz}SXUORZK><cRbAXsL?#Sn-Bw?6_qr-dCNsugfLh6@n`TskutU2YFnuXo9o9;v?Z}
zqzr2XnR~s9o(-I6Dz?YtZc_27ip`w+Dn5x9c+TP+mh;ztGPkJM%Ca?0%PTp_XPlKH
zsl7FW-rUE|3xO|Ge5qn`Crs&toho*55eTDv7+<N_t>QmF5_Ej6VvmYHG~Ceejf%Z0
z9;^6A#Xe3Jw!eyNGV%AT_(8}46$e$Uy;J%-6^B$DR{8UIY<*wnXviZfj&s;VoE6}x
zievE=qu0wNzZagp)3JnbLd8k({>a%{)^$pFdw1e#A!k&a6_WaMp`TQoQ~!5t-+2)-
z`UMpi*;8yTF_rmqTz*-|6%|*7{31B2+yBlF`i+aBid$Sg;`+Y}`9sAG_Vt#8KiSk`
zVE|1MZ%fc!757x!iR+JV6T2_`VO;V+$g_K$1I7Ll{z&j|!H4w<|EuB&2cCwx8vav}
zpkbtjQ5y1T$gjbzAx%S~h5{ODYN(~5poT&kN^7)o=6tm&tl=pQMKu%=@9sIdM{43}
z4aGDR*HA)3kMb$!&enRjO+tG!iTWiq{>&aLCCViH8T^G)?y?$^G*r=0RpjL~Jigt!
zf`;-MXrPa=h|h?yqF^OK>Qtt}lnx}Hb*VzNY8t9b3N<u*R}(ok9TR_Rt|vo7m%}CM
zYN)4SSI<(lHPB#S9Ss|MI`;AC>T5{W;L^}QqK|sB3cnSm2u~G^ZYV%wfOJ%DsG*UD
zXEk)z&{#tg4ed0v7qzAu(lumgXeQobM+#BDx$qVmGTDavd(cQ-mgfBJm0B&Ot%jBw
zT4`u4k~V@2@(8KhCM}P!g8Q0yvLzi=gQg)zI1|s+pa}O0`r>jL%JXZ`HFVU_v_eWi
zgP|cRq5SVAs3EMu)SSOiLxOLdsA6e|2)E;ep&V~ShIWv+E8E1rY!mCm`kF~JwYT_m
zgDx7nY8b5HM7~frY1qCR`iXLPNv(&5=Y;gs&`aZ;BzkM;6VH^1(=p$?tZ78CzlH%C
zuLU^PAcezY_>$a#8U|@dD3S8vj@%P%oR5RO>c)m>7^>j~4KHeZbAnejyhMCI_hk*;
zf}Uh8V;F~SWn<NVRC-?#;ebjh?A6ya5MS5$qkYWyw8IDv-L|oD)t#U>G>q1q3)B8`
z>0>mE)i6cFR1W^@$>RhkX&A3zf`)g-ICFNQ2ub+8l{i_v+;Kfk2-A5-!<)k2((ty1
zyHgXXMiVQ<=^DQ$I(g01FiXg=_>S?}Y{3347{nWfcQq{0uvEi5&3Q<luVI0Pg{<1V
zghd(_i;&L(dCy!FlDwy38Cy@oaSiWlSgv84hV2?wXjsWHuVIshRhn~b(?=TCX!wBh
zx^3)34XZWh@BTis+;k*sHLTOHUc(0V*DN<fc~e@(m$dhX8hph~g?&|ve5~OU4WDT^
z(=q8&4Vxv|Euv2~#-cuPtHfQOsd95T^Zi`I4h{P_NH{6j_|GPtN^^gqf%v81PQhIo
zz7n!qkfC2|*dzR#xMVM9-{mq4+OOdNXT63)T)1A!KB%GG@0Ayo46%@J^(?_m4{JE0
z;i!g>lH9=uwb~!cT)icep{&UF8h+4lNyE<^#u`p)ILn6B@FR24P}xd(v$p%z1<z?#
zlgr(9H>=MyNy=?=pW`^8&3r+sofoqHc)~>?466TT!etFtH2kXJnue<yCYQ@Pos{$o
z=V03yb63`u8_+iPn})u<yZ$c4yDpq%rsS)^PT~L5a8rZd58aPj8g6q5@}sdIcQ~jt
zl=UOYk9!*Kb8+^gupbXJ$A-*58vYgXP{Usu9%=ZSE2oBwvq~O%+fNhLvs!t6T#~l(
zc*YYh{+yn^=81kMVuBy}{jfTO@`-ns*vX-nhYc0*LwniZsH0hsnO00EDdNXdew6fM
zVTVvrKh|y4iu=JciCT8ac-jwQF~OG)H7_A@=F8Aheq84HUw(wnWR#Iy@+|z6^P{{U
zb^WO4$DE<T3Vu}dqmm!bhz`rPu7z`OSY`3n60G7!Rlj2qi1KP8sV-PUu%;h<cAE^M
zQ6TvFb`*8|&Iv@+r(>q|{a8@Ebg~~V(Qn}A#l1Q8Q~XHvBTa<Oc4~Pxh1}wu)!RAS
zsG;z2ZDURRXzE9fAGv-s^E*Z_={!Qx{m2l~JT7k`BvUYpEhD5=JhZit1#M$Yp^fmi
zezX(PKCY83gqI1$@0?&#U~6+)KJogU#l+_amV{M75>3d|TJC@!h94XK*yKl$ZBAuB
zR&y-TYM&on{OIb3$sYG3BEqPoW(#+8WCu<M5q9*WlaOZxnQ3RgWBrDtn;+f%nBd1m
zKYIA_oF6Z;U;H>ZC9S6)FZl7sM=1@j`g%#SF}6&5t2cYckG_8N6XElM{RIaIGI#z>
zFi`lQxMZ*&L*jg>pC$;LdGyy+AJZS^$EBW$WBfd+$1#QUvY*>fJ+JsN+>efHGGCQg
zuf^lO?#GBYAL+*^mQcK-<5>Kf$&~5F`7z#)=V$8VKU_*_y)A`&lHWPUZK@yB{Fp3!
zis0y=+dNa^O+Vi9W2qnS`SG?N@AxsxkJ)}C8%fjsnBm7vKiZdc@xf|cmUEMQ{ki4^
z_3Sx*JUy#0ADx!?G1rgdWirmRjlJs!ah~9O!3BZ~1s4e}X3D84RO9~_e4Je7$NPS)
z@M9&@i6$*)J1lZ`0y868++F3z2Y%<e)+V*&sj*J(j~MZK@<)EG;jka)o>3}sE$6cE
z4T7%}E4*IF*&YR`Q0H<X;>T=!Ke%D|kRPAQbok1T-F|HLV~ZbK{rJp}FF3R6I&*fL
zAKU#rH8p9Px4EZao6kj`@*P4Pv-W=MWcP_xe9CvpJSF+sk3FKZ-;ZzNvG)0~S2$NK
z>U=AlGdj<B{sBJ@`thBlz@R+4`iHsx_;J*aV}8f>&Sf^QAK&{?;c@bLKYsAzgdeB;
zIL#632On~O<SMkT2CWbA%1hH~y!@Tv;^4<mew_1T-<s}hX9}m4$hf!4d1~nCPvia4
z1;2BbevuXNWBtF$_QwVC-%0+NE9#x(GyPmw{J84JFEUOzc>eL@S3j<?gd+LVkDGp6
z_hag+=D){v{_x{QoNt?vcuV*_7IJd>?YR7oA9v&2JehDm&L8;kFwXxH^2m?B<C4c5
zw-eJ?jDP*S7Q3GalKA}Yd^+;$c-O!@1Bp5c=m-W73ZS5lLOQnS*s7zjjv_jS>v&bi
zQ#y+3@apjCcv?p>9Sw9O>nN_HgpMjYs_H1Iqm+&$9p!YC)=@?W?WU%zD^OMkk!DwW
ztSiv5Pl2M#GRy0Z71m0+W5JcAf_R_NQBepbj96KsPo`m5Bcqy*>N=pKwvHO2Q%eVf
zs996TfbOM9=)SB_wvLXvx?}g1p>*|h)ECV%?PB!Ox-8Mf^61Fak)<P5hg(Mz9Zhw|
zs%n~!M)6WL)N$-mR`uIKnp$lvi8Q{VH4{S33?1phYc9)Vn$2~`GA&69Hq^3AMr^60
zm5v;yY&dmnt)q>OwmLlVI*#mK`larr8HJ(kMA%+Oc0Bae?xk}jO+`mu7XRrPst!#@
z2OS-C_;u(yB05;AfDVIo31(PQ_@MBx@Q{wfT@#s0!$5|~X1pCFp_j^RSX-(P)p@{W
zEt=b<>!hQHj^}hdtE01yE>fOux?`c2<?O2C&-a}Ac9)3kzAfELvw}T!^w!ZWsZ=kK
zGv$~LB1=x4K05m9=qHKv*D+Mc06`}EypDmw2gN0Wbqo<+wr1tLQoW$#MUlJ|*BK_{
zWx-eSf*uumO~>mx-q!IBhxGO25xR5H9Ird~JR^0C((#7y(K^QH7^`FP>;%5t<M}LS
zj}_t-d7SQC+^4m1_b}ZPbWGGSiPh0DMaNVf({$%$AWhHFa2CJ%t@0=FP`NjCaHHT`
z67*BI<_TR}PS-JmjizInj+r`U=~%>!bmyJ+Y#nns=|p*sj*%OkH$U@O_&Es+bS&i9
zUR`Uxjtb9bv+(sd6{pciWmAp5R`C;OYAn&QlrynGNt#psR(4F$py>NLmg`unW1Wr_
zI##m2I#zS$b}GX|{Z{F?V>_QIKVa@H)47^`r1Mj05^aC2(Q&+sWB;>GJLkHvUdIL<
zo7r?dOKjA!NyjHTKIJ0NJ(0(i@-5TH(vnrjxJndF{rsZyBiNYdoX4CA57R%>v5gBw
z08a(5UB~A-&gnR>V~36}bnMgdt<?8R9bf6rzRIzq+&gvb5+MuV{-xG#z5){O9>H()
z|D8v}(7n2I7!b*R9S1lcS!^8#C7mNWj_UZ1HIi8E#srx7Vc~N|yV-P%MMtZB<lpN!
zq2nYA!|OXsJET;Tr}3kXQ|vw+KXIzIPvra6(>l&b3VitO+%RoXzbyXh&SP<CzKmA&
zE^tWec*x~N$0Z#<>$s-lHyxLCT+wk=$1hwx!tUOKvpnr$Y;BIc8LMbG+8H){0UrFN
z5Y4Mz*YP`t8GFB23JXk~j_sVyayK}$7?k9`sl&Wj?Us&t6Wq52N$%*lEBszua$m>;
zuFv-~sPKrZrH&^${?qYT$3JYtvZeo(tQpFW3r=gabBrM;1duO)0$l0?PIv6D-8_E)
zou0TRwTmSNX!azwq+N_xz5B;g3I&i}$$2?kI6!kBF;0r20X!W*odD_vP%MDr0hA3O
zDd1Faw+kf#C@H*D0A++wUOIq3eyPRx(&YJPrIizT<p8P#P(FYP0X!2x#Q-V=oR3h{
zA@)6>5r@9*n4hg0K(zpBORVYv)Cizf00^LFJpHT>yKnP2->UMW=NYZd<MjflA3$aR
zSphT%AUS}h0lYgp+Z8}c0FB})qzXw3z|EBNW%MYS&Q9T%uZAMe`w-SxcoV^2pU!B;
zmSOcxIRzkq=E7+qxrHdOFjv~7wG5zD0PO;3A3*B>JOQ*}9cgEHboN)p(hs+b73&ae
zE0SWJvtH_4Hamcv0Mr095#|Qq4S=o6k|>gFpE;Sn0R9ZQpXr*#GWY|~0|*3Q#G8(q
z?6|SdC9(i{4Z`fg0elp|ngGlItN<bb*a5sAz=!~%0dxqUZ@@8_+}`W%7(nL$y0FC>
zyE_H&tPsk*r%QAVpj!aX1<;eF8lIMal5<nhT@-o*uz0VBYi2JNLnM6ySadV1cK}0Q
z_pcmh`loebDD}^`i}eeje*gmlcs_uB*VA7KU?8g&aGq26&2Df2Ljul=i<bhlixL|e
zz>6H2Vk`ayk>qg((G3&LmjnMhA$oWKuLiLERxO?d(At~ynv88Ol_Q0W31DmhqXPK7
zjr$EjlF^LYzW~X&0LBOKUI5Dim=M534w3-oNvS3UFhj^>L6&ohkf{Moi%Z@N;4R^A
z3%(PVPY>YK-V{ce8JEloV7Bl%f^*~YUsn~FFMKHnYJv0xarr_aiv$-7E)k?YlO0_#
z(8^4DKY$eh=Q4M2cFE-d=S$+;@!HA&Rt4|@<pHb?V0ts>OM$m)DjV>Xzdcs_T<Wh4
zU>zr*foBY?4`4$8_XBtkz{UVJv57cs1Nb<APXag*z{!BK4u2ZJ7Xf@Je6!#dt_(sL
z`k9bzg4+c@4`7FoQ-gA-urq*NTzRf1{~-7khj##92XJ?obG_RmLX!PLz6oHjkbQCa
zw?g>K(t!XD3jZ#E!$J-T^4B3oKO&suXaL8A9~b;y@ahn&*M5(aU5~^cMe<Vs=h#yL
zoEGmHHdiF&tZ@FI*C5$NFZIu}ZAExNkdli5T#ECbg<KBcijb>ud9n7fUxi;2{7vw>
z;L(kajm;aJ(E;3HBLr}h3xzl77Kb|9ZKboebnKc+8!WBMJ5O-z!CKEI-3vJP8~I;P
z;nNv=^I-u01(0CiuK*qe@OJ=@1NbL^e>wX~7Uq>J?+X4T@W0<2*zbI1VZ?j}@*5~_
zpak##4HPi&l!2lKHeIY$&_EFb{J2@jaMr8B25PjAl`b12epSZBxZGIyv;jTYxo8$M
zoW+0O%b9#gENP&Wfzk%b7|tJI%(|tX#8bk{8sItI<qVWJoPnBTVBG_g^<v_Kk7lwF
zCR!;K4gQLPsDTa!DjTR`pqYVm162)FGf>|^0|Qe$Y1LU612qljWohY!O=}5Rn~?V8
zd~+V`0t2;0Qb(|^U_C+VKTs2s4P0&E939e7gf0Uq@z7KuZUbp?$#f%B;rH}L;%#i8
zNnGAk$nu=T3<J##7zTo@*ML$jSZf3Ru#stC>f24T-)Wjf$vaJ33bqn#ZNMX>jbK~B
zc7oJwZ#e(qlCXq11}<Mu&o!V3@d{GnGoT9B1pRTjZXginOe7R9ttBLEz!WlBc0V>B
zk`pmti-hgguSI%C1Dy<v5y`U#IvW^j-~|I+MAA!;rRplAn_zbXJ%l_b*i(=?rL@GD
zf!+rC#3j!g=o{z#3_d71-8Vq+|8`>z6z?DdgX5Y*gaoD+c+tR1!rw43%)n~{b4J8<
zUN-QG@Zknt74n+k>w=8SjPiDKjTFf!!G9(v75=OBXakR)&mkFWV4Q*R1|}GI(?Gu@
z&qTIBJ&kcE3E|ee$r5pj;8ekBg4F4jRG9ddfwx8Sj)CbyW*C?q*O@6~mchSz6RAu$
z$H3gY&|F6{-@pO`_ky?|#6qeWcrl2Vf>_KUVc@2LTLzXIc+bGM2KF0RX5f8J+v~|M
zW!cLOtT3?Iz!n254Xon);*w6yZDl_&u-d@a?aC%sO#jdTu}((lBLiy;tTnK3g1&u8
zB(r_&U`A-%1bu^njS}l)0|WA<Z8Gr3#L|rN@dTZklzd{~Q-hWVtXe&?iCYbPX5cHX
z6$Z8$*lyr+13L`xgrHNW5~@X<pUqi9ZbhIusV@wCY2cS@&3AIxnC@MIB%$`PuMO-m
zoZ|*~>++4^+(M5!T!RZmzxJ`c2KKQ>+Q;Z-UvM2TaFA1&=@|IVz##)a7&u|zuz@26
zjv3Ca%ki`<zVxV;Y8(~smlM;D8@Qg9^}TqfHOQjQNdrF`xM1)R6+C72l!3GC3j?PO
zoM9u>c8_l#<4LRx+Fv==xTt4g``9_QaQoPK7T^<o=Q95#HgXH?ih*gjO8m@u$98KU
zyU;#XuB7&`eXN*ne|s_TD+ieA{*AdCxW?+6?x(Y3L<)ar+e&C^c8p%S8{+*_ux2;+
zZ3A~$wjf#rahC&wm+2rXa(EbcU|{EG**E*AKIF1*;6DQiL6q$8e6f0D;BOffj}81I
zM9+0Th5vLf`CnG>Uh)(6`{o3ad_m+7qIeJ`f=CRaKoEt4C=x_xpKJH;$pwQb6vSIG
z=Mcl_mQKW{sB=B}=^%;;DJuA&Z^^sgJ4ZLteK<HFT+vlh<mH1X6$HI>rGqFVylh;O
z6ht}UpXWFV6(q_dm-9GTDTvBJ)DNOT5LJSx8bpmCY6dantd_bjw^|U@gU;oK|BVt;
z-%qR+1cIm=M7<z*>O}1zd|PVN2|9N{1Dbo<HB93u;xi7d-0)9WJ`^Me;R>Q@5d66&
zCCC>hXc$DJAl$5bexym_+%?B2{D`x!mGcDGIOsejHDN|oTpXFV2RpWxn+1{1*4yz6
zuW@`8kin$JxpT8)nL%U)@q7>igJ>B<t03$kqCvElI%Wrv6ND#-HbG}oP}?Bd1<^j}
zToY-BJj><S>t+_5KDj|CtV<ATkT?9rsX%>i5dE$>n?tl9{6PeQFoMqS%z6;(<~bY5
z==dBL3?dYC>~BZd$ZVOG&ZD0h1Scc8B@$kF`H*#Ns`I44Hy#~==oG}WL39i{W+K=T
ze_X27IfyPn^a$d)Aa)e*&^3teLb?f3(knYwv{X7tPp(uY3U|LASX3*um$V^Mhy~GG
zYE9lJh`z%63HBEpAUG=9dH=vn2L<76Q<irHgW26u3>sP)8gzEHybyHWkg#RgYr}$g
zIfw&691P->AchAqC5Wj(yeg@U7JQAB4f1R(v>D*KZKsS1Vx-8Kk$SV_8*$!qUBVc4
zL{)oi5aT!!)RggThk_}Sg--}#q7cd_1!-s~M#9j0Gqa}!@n#V7f|$=a!WrS?-@BO3
zMp)^7JIJlziEFZBLmwy4U@XaNW)SrH|481|(3y<0gP0@oxq|Ns{w?!p0T=%uwg>S!
zhkat%ML{eHVkxfzK|DHWuDo11yRrMdAeIHOF$nVgcBv0;gh}2P@A4p41hF!RRpMPE
z_<`Vug4A3c#7A+?1lPv-Iw9)?Hw3|ysk|wOkAwImuJd_z?9({k9K@D5-^vaOqG10Z
zqimCslguBOwj+qI*-8V`=)Ms0rQlA%T|s;m58W-~barfykZ<Dhy+P~~{;lBtxcqK*
z?7JWiNz+{k;&2d0f;cDMqd^=C;)ftkuvD%5$AkEuRfv^k%TMZT(RFEolcGt<DIq^{
zm`VGe4&qD@M{kroEApR$wB+NA&x;*g2X7>w58?u6T#iVBxD>?CLGX~=%Ry&p<r%we
zd$_ob=W<8aRW3n6{2IhH&fg$zN@~BcBqdyb1aUo{`|n&R+PIFlcHIz(E$i*AApRJc
zb|;APnTfYKg^M_2h9~FV6&(geqNN@L@sKM(2u28hacpp@453;Gf6MGE972&09tZJH
z5dQ}8L{^vrA^azyobvfYJQ@o5Le5%xB#`JVFH=h-ikF{7C@dJl-p^_j3OP$t-cGis
zLMR$S1(7@*La`7^hn&}R#U+-b7Q&OiTbGEZSxN}MT{5*YA(RavDTHzoy}U%E{5d&=
zhi6Gp`I!(ZhEOSl$|2``igCLPDv<CjgDR2~dG!!#gwQmEW+BuJp;icKAw1mO6Cu<N
z!4*RL;?6-cbwa2YLj92Q$+&I^IV-X&v`lIca?W(7%eOY0m>hDxT$7aBs--ZIgUwSz
zc;UO|?hvvMH7BXrAh%%%-!^tP3V|Qc8;6j!O=}WzzM<F7iKT~-!R)9U!n`a`bA~cO
z;VnYQl&pW+;$Z<8x0QI?hEVlD^VX7@CxkX^;SM(4pY77A)=qSC$7?xExr^-$!Iviq
z@f58LC4>j*NqnwXL(Z#gJ%o-+^{kwj7J{FW5#jUWH6p7|c`$@f2)~AKErf6gCY6zJ
zDg-NpNC>-`eurc`geXfA!m1EDP$7hoA&d&4Q^<MZ>k~rX5S|rIZ|4xYgwQpFZX)Rs
z!gC>X7tY^N+xGKQr)LPSr8^IFz2dQAA@q*(%V!f9)Gvg=Aq){=f58DEJTGKmTyqe0
z3Y4NU-OvzTWFxR&;-Nf(lk#EWeJzBSg}fp-T<}%F{pX$S?yn0c8S($6@J0wzLzouA
z=y>Ru5XOcuE`;$SnHa*P5GI7cGUpY0atKq{dO0yBMMt}oAIxu_$KMQLRy>`zLU>#F
zJ8{W$Au~dlDTFV$7;AP2b3&LK*I63EyBszl%nv#DSA2u9FoXpXO7G*r&fH%V!eR+s
zB1j1r87B2!2+KtC{dj82g{)wKi#u)j0jFCCTSNFPgw-K@6vFr8GB<><hRr@Eb8QIg
zgtQo&xpHhKgUTm0UmpVTgK?P~L)a9;#}Z|`gnlCYQ^C!GTLjB~=w@7=F}f{;9U<qi
z(d{98E@VJXjNY+1F{b|o2dW5na_JbGNw-VLS0S(f^nM+}o)Es_ykISsyMGK}A17c4
z2SfNSggfsA_lIzR)p;*?@x9>iBCSunZj&EkBFlo*KP-f5M?zreQNd$^^d4tX<NSvZ
zPQ>|1A&gG<bVlhwoAlEmoC)EqwB%1ATn*tD;pYU;3tkA}qL531KMS(KFNbhN`1*3r
zXqnu*)St65kF?F2pA-8ngzH=(xd?~wJJ+JT?hfHbyia+2`JZuqGlW|q+-9vs@+dC9
z8^XOfzc1v0;6q*o;&P4+j*!2_`&jTFj+4u+DWv;qcqk!^d|_v>l?Wq$7>UA*htY9m
zN`Wv6hfySqf?-rC;G!!OMrf!*o)R_2Di%i3IDa~fs+oy&l;6`_EgLzcWIVK#kkW!>
z!YC^wNpN%>N3%j0&x8@SVcMt|MkVeFwy@hmW#%5nqcHwv`e9TH<6s!yg;70>8ezN<
z#^^9=hEXdFD~w1O2%~lwt-@#>Mx8L~hB2aOM)NSgxS@X7x&3G&*dUCQFkCa;$>QDD
z$n6T_&mx8M?oU!h=nf+-jD}%8ggOx$3*L+CP?@oshS4mHv)hVOAzc(Q1Zxd1*CLF~
zf7W8|nNo%<!IpxQd%|cFMs65N7)-Nm812K@@;IZN6oZ6mW=m2zg8r*c7Tz#?%<fQn
zP=sn2nvi?r$}rR~oJ0>JAl!&cSlZRcvqE9~`e&`M2+c4mPpeL4JB(-;L&6vuMh6LE
z`dv8&!srynvte`&qf0!UBN<7I!iZJJJ2`d>qk9-V!g%k1)+>yds68j%o?+xE_h!e9
zFEb#F=fmhD)$bcmt)Gzog8K$#F~Nbt2Zd4MMlQXB#k=@qn4F#ULKv@0ue}(?OVV7!
zMB!!OdA;z8NQMi(8pdlv82#kHQX|4(Ban{_^PhKzZ`kc&!;T4KY#1Mfu_lahVT=!B
zZW!-|oo(0?!k8Aun_)~0V^SECWyDSq+#`RTOcg$9ma`k=tuWpWV|LiNQ{s?*CyZGV
z%IC7_Y#g2f8OF@8bIs+0%+k`1<t3`k3FB4S9zXYZp?NGVTQ7`dVJr~MMJz@b^A;p8
z6fBg_u}!x`vRE2M@(yP&7Tx}TGu{tlc^Dsradl1#uf;3E&Wp8GVXS1QS13dYbrvp7
z;K|e<N~u;$k+?ds3~R$!7sf75x-iy<u_26~N0s@UYr^`JjcnU6wuZ4OjE}?kgmZIB
z%H}X=wDZ%j^NwX0x9f6|p=te(Quti?Ss2@;c-z<-JxfqhC?TaqgB0F6?g-<HFus)B
z>kkX;WRsq&!Q8i>uFR+S-C=w!LEj4Q3FDhE_A<4{&S}C^hC6nj_Jy67qD!7HK(}Ai
z4hZJGoj4@<Qte(ChdKPjdo+xTLXHU@7yMrE2SMte2;*cJKZ^Gh=T}^QTF4o}{G|&2
zB;=gndBF>U-jPn(E(!lRjLTtM5q?APsvs495%Oyo*W!}j!niK{caE{+&My*wi1%mV
ze}-|B%|6X}^KdJS+Y)pq9`|k-dHFK*ei#qJcql;w4;K1M2!|7c9*6Ny7;{X_HSup4
zPuOuL%9{8u%(DPd)Wp-Kv;OB3EMg+R37Xj|AYPiAWDs3JAy2uTg_=fD>t3rx@>D#O
zM-~<{`2o~XE@fi)z2p+YOPbE1lN8c%DwQ^Q@8R6Tbgzpf6Xi?<O@vI8H&MZK#%g;L
z&zPuaqM?aKCMubzY$DZ!+e8)9*{i^}f+-ADQ>vP%W}>=@8m9A*URRK$rjS}D5SP?8
zQ76t9k4~&7yuM(AxI9^iOYnh_*rADwQ!Guq{D4@pLz4QTyVs2L#wMDWXlbIAiKZr+
znP_gJg^6?%{3C4F_8J)`MpRAVH0RTbe!h7on*s@`OB1q8oRr^lPR>u`*VWc0JSN(j
zXlJ4gi|R{SsV4C+t$&`F%y+rr?BC<Q@yR<AvrXif$Te}PN49E0GohI9n$G)JpWuh3
z6X|%|8=c>TZXzJ^i`}y+F--7n?e-$&3J%JmH*7lFPT2l@TWFfFOhioBCSEcz%tX{g
z2NN~Ry9Y4Vi3F04YylI`im;oB?j|}5XHXXtU4^S&gWet{o-@%`Bt7Fgy-oDu0EnkX
zH74699(sMfPDwxU_K)j4FW!NIgG>xIF(j`4f{>wtE#^7Jdr|o9OGz)Ac*Vp76B9);
zT<{H(2k$!7dCkP@LPnSvC1j*vULEsFHCiNN1SuJ7VqBb$k1J0yQLLByO%rdKm>dtC
zB4n!IG{L;Gy)DW!MDmV_=|Y$?n`@@<S#inic-`MMG0((E3!^N|H?e>-lxE#5EHtsm
z#2yphm{@FLiHS{&VmkJ?mYP^$Vx@`qOw?|nEi>`HkamZ<*Qgv@PGz4)`6?41m{@OO
zgNYAKtTypw9nU%wADLKVI`6mFnxLtrHs55^CG<<{p=cCd|HL!Cs)y%hmMC8MwHviI
ziYDK=eZtXhV!MgYIdkV$-%M}AjIHdfdDXX=&I>vw{uz~XVi%UCZDSSsrIGJ2@r8-q
zCcfrE@p1PrP3$u9mFVweTlMr*ui!Z`toxFRo;NBw29ZYH(DvrUXb!9IL2a*zeI_oL
zxM<>A6Z=gZGjZI+0TTyJe8-i+M3Mh$#cF9I_myIO51Z(H-gCsnQ7$j_oYd~Matu{%
zs+~mq-oy_kPMbJm;shtAi62e;oD+L@M~{pFJ-H*Vn~_HEDG`#N<<ey0JS&?U+fvK3
zeN^<HoY*;zOvCe2rPyCh?J<>Om#A#wmWkUYE}OVw;<}07O<Xnci-~I{e&Z5X)blHA
zu{3S!*+LC-V{GA4!^>^GSR!X%_NCgMKTO=<f_9?#O%vOimE;N6f3oR5_0Ta?Ia`R5
zJ0|X$cxd7;3A!gevU5Pq`z9W6S;&pCcUE5xRDYr8BQ`7xlhpiQ6OT>Me$+pbHG7i^
z#+Iy}xv?iAY51wmUe0GBzl9tNxfT*F6tGa&LOlxwEflg)!NM~Z3R@^*p@fB!7M`+D
z)Iu>1)Z7>w{AtS>ezz7F?1E9bvEr69@TMH;&Tk^6ER?oT)<TknwHE?ga${vIxGn|g
zXtu7Lg#*iVc1n2**N=8D^g>VauPy{CTBu~9mId(s-$E4&eXDwESg2~DnuY2XcGS{_
zKggv;HP(o@dcHw}Z#6Ba$_#q*Sa*`@Te514WQ13%V>vd*j_1beTWDY*!$NZl$t;P5
zh87xGNU_jtOP1S0nuVFIv{d4iEEeXkjoq*1#?D+0ygDM<*g_MkSxC2NQZGi+VNES0
zc$}ei^(U>45^Jf%Xe}+O#9CO$w9v{zYs;AtSr*#Q%5KT%H9g0hYeN)gi<iej8w>3i
zWT7pebe8+aFY|M<u!C45&c1AmHo;>2x^#a;lzpmL@LGsj=xxDgLAB7?LKh2~1;2%e
z1>1sdAz&e7A#B005VSzkXB=twHg$hl(H?)IGZ)ix1|c)DEKDpKBiW$DILx9JI#}pv
zp%W9y^z2m}qj2Yy*qK@y$+H$-tL@pGr4hSY=w_j(g<clATR3u~L=OwkapZVoH1Su>
z8!I-TXNEV%3G(ya?65c1>+9^-vb8?!L<@s046)G9;;T;Wd7_2>!s#7gf#1tW)U$;K
zv23lfhMzA{_hJc_ZK#D8EWFAxSa^}$SG@2ri@ONGR(eUWk2m%To9jyEa7#YeEpu$9
zt@=8fHGSQpnV?v+X7&gnDdjv%yfFs7VPUj|6&6-n7-M0qg&FL03*#(|XYLjzv6?TI
z+S;S+1Wt!h&Y`rw4$_H}Exc*rEelgDOttXGaQ8G8sYCLsl@rMCzvOPRIQeZ0?^u}5
z9$%dNT4iTj>6i)$tIIoNmWA0|)h#TtFvr53yP<b2%(F0861iE*xxJ^GZ(#vvU%tX4
z)+W+>X0UtC6-U0<!h52*#KKYw`PL_XRJP2A1<KSrR%jVJePQzT|1#cZf&a}|ZlUYA
zWRg`DKCrOK!p9aqw6NO3dP(6U3v1ZvL)~k|TcuJ$sqx82E0tQurmmb&tg4gm1_>hB
zXyLE&37)D6pIG?R!Zr)rEo_$1&jhzv*eYbeGYNBsrZWoN0%^C;Eqr0&OHSK(YG*Ik
z+G%0fF!wHz6qx53o>=(uz_N_;wS_%gG;EZy@r{MO?3V~;MzGJqw-&4jA`$H8y1^wV
zf~O-mXyH2xH!S>V;gE&H9Nrc#T3ELr<%osvE&O2NsCX$kCgeD$Mp+lVeV=ljuyESK
z84k{;TqiC3DCCrd^EF*t+%5`vzjT%jTfp_A&-D}6#_P%F1TzP_&I|dvqU(}{pV^q5
zUDqvK=Bic2<-L`B&B7I~6?I%!Iju5W$8RV9BIH-5R?|fZllslVXWrPu!70CUyp?s$
zznlCA=W=To`ArMAIDfg+u%?YuZ(Gi1qX*2Wo9m8+yX?e9sg&Qda9<SOzL!kzLoT*m
zQvR~=$ij(|Z5ZWmhCWDck?5*g-u15(IHj4ZKm<=L{AZy@8COCC`6Euf$n!-UN#C^8
z#0dKIO?lyVa{eS&!3Y?Iu8@$z5fl;f{s7lgLX!SVE*3%Y2%1HZ9zlr+N=8sKf?5%j
zir}l-u4f{s7(unalS@ZXCW5jNy!u{BQp9<iR9><!C-_dVT<;C(6(YRuxJW+uJGoK>
zRU&BjUvlLL=*@1FO03GHA{al~Rb7H=2**Gd)!No|A%fZw)Q_M+1a%^4)y7pX;`GQ#
zZ>(+vuU}6lp_dJk9Dyr>CLCHrQ}}T(CE|P{Y$TW}=oU;9Y$$lRnu|J(BlzP^G6|o9
znnu8uf4!b7BZB4;7!hRLP3B+ZEh1>i+#^W!q-92s6+!z#u226;UOF$Obp)OWaw5oO
znh~^(IKPmzX9a6G-<8@iac?YA+EryhN;VTL<&2X(w@R{*ifH;H@Je&}BKYlPjiG7;
znn=jYmoLfGbkPh%u%>?ky}=0Pz2;gRc7;S9j=+?1vZ(K*q}mZgBj_1HuZZ);qeBE;
zBIqg!c8s7?#Q8AvYy_Q!aK9NpzEG0i=j<P5j@?AFyM*?L;5kOGSBi4}nna96@O%UV
zCA2pORRn#7_Y>?d$j>@VYJl(+DegfL431z_1aCwzB!Zz4yd1$R5xfw=ixIpO;UE3Z
zS0N@&YrU0>#GXbHjZPPwn!wNE!#T7fc#Rz$!TM5(+}utJ6(?sUtUjDDg4MiOYowHx
zpQ``(H^59sM=&OWDG^MKU~B~ABA6J#B#x+vv-4yER~x$&AKAX;#-4^MCFe^e_FSGg
znU(S;)xOuADNKvtO^$&G-id(Q+jz1$o9L~GbKRf#ubV$%O^@K(x&l1ro6o0}eX&^)
z%;uzsV0Q#_BA6S&iU?Ll@Gk51#I-nrCG4yS=8Jbh#5sIz5qsf@YoTzhRRYzT2ri9a
zSp@Hk=6md*RtZy|xR#6B|LIV36^B*?TO!yR!H1%}j*Sz+>IgpK2#M>j6;dUhK6Bg<
z!6ptEk#A%ZJ#kfNmB8|RB9c!d$n$QFM`RS{`<ZyZh+ta;+avfqf*qV?5;4710(Iyb
zv`Y9gf}K*YXIdxhk|=pPUq`Sfg1Zsii{P6G_C|1y4a-Ry!M70{i{Lod{|F95a3tcq
zG@v^e!J!BgF@^UX+p}jDzYV2TE_^tGx@Xf{{*`_-uGw^n=lckLh~QKNrz1Ea@($Ar
zaN8TxIT^u^BANLhou^Hl5q_4)aeKBhH>bV5yBsyIi<Qd@5nSX{jo?NEmm>H%f?p!|
zHG<2m%klIp5nSc;KVIn0V9%AgO<5jp5o8wE*yC#P-y*oq#u2M=zeiBHd(Nq~H7lJ<
zUpOQu<B6Nfe@1YdLnt@#W(2pmmgXj|n4Y-8c2c+_rAimuQ}-iy!0~LOppCEJEccL6
zB6u9ZUlBYKwY52k*XwC)gnuIVH-i5n&Y>?)nE0Ta7PFgnFW!da;}>)C**N&fo!<se
zP$==PzjsD@phTOG^{ii}Cl<|3EM$Y0-+9tc2^&RhJY_otV@ZnIxY*PEwCyzV=3$OS
z$J1KzV&c6pyXjcJK?$3yq>WNG{xlr#<#!5{wZZAy$VOw^c}-f*MkO1SZIl;p1si+s
z8P5o3Xhk8-e6cDvs@ibbNU>2(gtg*2)os*>^O`pDzECqR?e!CD+o&U?Zd|9HkotlR
zZ1996s*OG5oVr4nD&B@R+(IZx6EfIaj$G|mriqQFHrm-}Z=;!wbQ^7Kw6&2TYRzr5
z5JH0|nL-K{dX5pZY_zn|%0_D&9^0{8%3p^lr{nLm^cuccqZ=uW>!%)Q;bcUYEz$jg
zIeBT?@X<Q84X=2q<Fla(*93?CmXa4&7jM9ZVdI~osX;-KkPyB>wQR0znB4($I>5FO
zC68iG6di1Iw9!0@7EyGv@vMzsZCta_*+v%|Q*BJ+NT`?E#~15rqnnL|8{OS)^tI8?
zmRkrL&)FFEoU{F`r$~C)hzX&jw~ao+`)zbC4gGBlurbcYcpJ~#7-(aVjlnif`<%-`
zf2%mRBn`2hrGBi9?>};^9u2jz^uOd6Y`iGsCFW)0WgD;97%h_FHeMAnO7JxsBbZ|;
z7h}CH5?+Ew3TgUBGKF++*m%E<i}w|Y-7?0oEAJ=2nCzn6DrPsq#zbk!DK;kAn9RCp
zNi-wCmuZjNq`1Q=yjtDfQkr{{-n8+Sjjc95vz-^zZ`)XH<0BjI*qCl(hK-pv=CLkF
zn8j<=0MBe2b3~JzZmw|NbFx|9l_naDg!wiW*v^gULKZmQhKp=07G-KK5kk%PY%F6f
zY%CYaDjO?=up}$lq)4D6|F&TM4_F<Muq1R8uCcM!#wHsd+gQg!KI8tRf_sCF^|o{3
z=ctPAn>(^b9523+6L72VW&`&pHa@knMMBrSRdTbCo^K}9OLc!<KAnWIw%OQj<Cu-(
zHa?G+e4mXSY~CKOF9g37q<5!{UBbVzv776d@I8X7%ebiUjSbp$A=zu=kD;YWSod#j
zyfG+Yzl{U&^bZR8PVkW6VH-!{p+|*u?~wStjUU*mHZIsWVdJEYA8nlCl$?=xe^}av
z9yR$z<Ft)4HqP4k$wq~?o;RnZFC3O;v`m}-ji<=Cv~!&DuB<nFF(TbX8&_;xwQ<SD
z&zupy*kyjf9OvKUixG=AFn(e4`eMH~%qlanK%Ve78`o_-9YwJyerKgPB%;U{#SN~L
zHtyQE$5yp*%f@Y+f9;{k3^(sRCV!#u)%T(QoL%=ve6hFB^tjJaG&uPI*PNH!dln>-
zlRUKXmq^GTajmxTn6q9a|HbA1@+uJLbLNDo`PuOF{89WH3KoevyZ#cRC=kWmnJ!8S
zioC|LtU^%~j)H`)%MRC5qFGdMu<aZ+R6L3jQB;WHnW$rqp05i^Mp24MT~96@MN$;y
zq9_wZ*{E}$N#Xx}9Vj2gwIL<FTRkP~J4;8!C@Mu!oq0u3IqGcSoROVSHHs>6PD!;W
z8hBC?dln$pjG|T)t|(HXKoqs37`3ZM-6-lr(d^w!x+}g|bd|fv)vS6^)Q{qkFGeA~
z4Wb|>3sRD@zCdaejiYE1g*z@xlSCQ{HWGa3G8wC>C}c=p&7w#bFH>d^lVSlfqsWTF
zAB7%8%P3k!!7HE=MQb7C?Syy)+X%K5q+OS<A}Q^KXA9;;kt<|Cp+=18748#M1vNn@
z{iz9oC=BV8nNjCos$dkaMe%wRp(w&pm{C|!^o^ol)G^Tz5uIohwvaJ9oPU%$2=6G^
zDT-&K=p03tC}JY%DoC~NLb?flcrK-fkmur|J)`I)Jn}<xD%16jqE9?jF$4Xh7!buP
zQJ%)tGW%oC^HF@ZC#B}`l!2l%NN{izL!uZOkM&{{FT{D1wJ9&f`7j|bvx0LHm=O~k
zF3G+sxNln82vHap#rP;jvdhH#MigU(jE-UqyRU~6xBWjF@$Q<8f48Pgh+<+CZ%ac_
zIC5c`Nuoblkdi4vrZN{HZwkI8SWI>7R4jeU|4tN}H>OM%oFSNfD20<{RusE_E>1Ex
zig%+(=zx43FfWSv?7Jwwk77X-3!~T=#il40amqw-;PnD)qF55e(x~%L_5p*Yx!;T8
z{V0};WLebNhS%a@i4{@ju4WY*q<HGesB;aa{(qO7=aCQNlGURBQ55&b=Td=D)<&@|
ziswGdTrUYyvLTA>ZYo1Rj^dLjzKUWu$3w%kPowxeiXD>CX2C6z>{f~Rncz0T?Sgz*
zYjC#t7s7W&@nv2K7Z+#Bbh|{(;(aahZ=={B#hxg>iDIuv_$hf`6!|A-wR*R}*x^of
z4v4&JINLL`%t47x;dfCSiu1#)o$#Y^$uS{3)#ZmMPDF8*vnJ|1=$(w>y=@7nqWCe2
zzeZW^4~kQGI*M_<(+U(#Kf@KQX!-_}Jr~9KDE^G%W)v5qxERGiHFhJ4OHuqB#Z^wR
zQwakK#-PS7bMC7#x+_uqT}QpNyT>n4{3;5T8apuCeT}_2+x=S<*M<Bp_=jNCtIZk2
zlqY?aeM^ehvV6whQQVH=PSp8b;;smPn^fYSko$rx@B<+a1^*I!B&eCqA9LlL>;8u;
zIah$H8Baw1Ulfzn*#BedJHVr;-me1*2`z*YdgoA+C81~%5+L*zNJ8Jfv$H$fKm?=<
zNbkK@=|~Zzh)7Yofb=ec2q-EbB2q*}_})3|{J#J5+~+*!p8MYSmbr6hcjnHWl^wLD
zZQ4loyk<n20W+$b_4VOVW)v`^pjm$*G@lvKX1rZEO@1)Mm~lEKJwI(CK29uT))zL&
zIH_PpVKZXQC}KvOgqiwcfTCs;Gvn_j#U~FoHJE5BZbrNrj>c&cN|4;!m;Pj+siYZ#
zrHG}?C_^GjS(0*QlsA++-HTQ<qmo&67t|`7QO%5L6HHaiINw35YR0d_OrAj|;UZ4U
z7gxiKnq~|zW1tze%&2WfJu~W?QOAq~Gm?aNNm9DkO*CWZvBbJ&n9Pu<gc_F<Zw-zR
zQ4EsJdY=!@NNZq5Lo-^L(b|l+%*d*jnqrn4zj)h>6SEV4?4SvznbF9sUqD-$k#}lh
zI=N?06;U$GXw0baCL~RXnZ#yhG&fRPm~qCEEM^sdEhE^*tY1KTn9<XWwq~?5qrDj&
z%;-v8lCsR`Lf+A=PxzgP*+hxvkmQ=tnIt^R9o?KN86|WxqdW6fD5S5lFq>g9!)ti9
zk~qw;8H$~xkhiFl#6?tyZlX9*&G3*P?Z;a{X80KO6W=8U%m|W%h`r2k&g<BlDC8Y8
z`jE?iVTsCht*;sV%=!gXLVq*fBM<L{Hpq;@`hiH8YsL_>{wB_FGe*cUHDj2JQnTzH
zsYNf%c_vS4QnOZ%=sD7i56qY;#?MpbmeDBb(nT2)<sil<jV6vEjx}Q($#|lqP9S+R
zA##!#a=U4=8B?fCHRIFjX*0;D5vLQyM)Y<IBBh{NEN(V&jv1?0MTscOX0p4sU0}vS
zGj>?8(}G22ES7V`f|3?2G0QGn_|1&RW-K#fxfw^zIA+F&W~?w{rxa?&N;&D0I;|3i
zB=Y8n445@$Y%*iB8EcIZwT@&x@gp-fkZd$kCv7V(xjtre3o-9H{lc`>j86=kZDwpI
z-$Bei9W4gC$Uie<H%aH-B|n!F(=4A2D}IQ|UNa6##q8}re>-BI8T%<p#xF>|G~)nC
z`AtzGmb;cDmWK_SBhrMUi5=%9er3jSGrlq7y7a0UCuwlijIT+qm~nq%;wdB7X_7N$
zoFzF&JWsqpyckBgHDShO@^k0(PTRUCQT$w^5}&1s@~s&+%=p=iUnt%r{%FQ`Bw}!j
z<a^?6;vM2$;t#}sTg2WY`H6UOonF@cFqhRnW;`(XLo?<r(^DlpGGq9^C58Mh^PU+o
z7UZ|+v&tW4{AtEZGoCWn<!y=2%y=#h*_QZ%cxYOp@W0HM`eoujwE5eNstXen?)8-H
zugv(@jMqkqZ_JpqRzJ`Ybe@MO(YzK!S`cNC+X4}?mMotI(H4DC+5Gj1x7H^1otP*-
z3o!NXv55sOC}hFAdlL&=P=p?086A5vQAF_;N3kfem<7cxC}F_^mMf{HdPJ16ptJ>U
z3seirSWwo2h8DbKK{*S`TlCdFH7uxLK}GUv7Q8LHmrD^-BdS<X#gSIoA|Jj?5~8pF
zvEZHQ5fWsXyJW0xfhkM7dm+Nz#Z=RRS{Br{V9u_HI!qONNlK8)6fh-P{@Yu?L{is+
zB$8xeJz{;L<Z3|jASd!|3sR&XEHGP;YC)O>t+M!L(4N%3T}m{vAl-rt3mRL{U9#*+
zZ9;5gL0gih7G#o0QZoyh8@z=DEe+m^q;<H$ds4-+odr2YYI~9n7GxPpN0Ls&Y@+1N
zHBviU(1pA!v74cvyqeO(;L>jutR)34qF7+Fz;1zyy|hw|by(oEplfUWee)8#O4_qD
z;c_e#*04#dB##AN3r1To#sbX(p9Q_;pjh;M!~7NmEC^a;byG1}%@vX<u6=wj3*_^!
zQ`;rVk2n1WewNlp4z307Sunr?+3dQn1^q1OZ^529`nQB`S5FGQNtB-)@?2Y9`WtA$
zAPWYIlO@Tsva}%<{hBVWdQMA}*>$K4rv+)lEO=iAr)&X496=mO{D3%$_>zkx$67GX
zf*BUfv|zji6D*i!!E_5I%8L_O@sli=Y{ArGY4VDn6y%?qG)0<ODrqV!Fl}THsm8|>
zV;}F2kj>UQd{=Fj1+y)fZ@~f?cor<{7(Z7mWwe+RemvnGF}#Po!IAMI_43lz-8;uG
zv>>@`<RS~cy{vDvvRKO6oVdh-rE)UL%6|*iS+L%M<raKs!3v3HX{(4UiM3axiy}7x
zR$H)!%37i*qL)*WKC)o51vQuHcbGQ_e~_?|xQV!MMa0JzY_VV~ZMG4`_!A56dQ*jL
zry{w8e`>)l3kq8iYsF_4?6$}+7M!)<b2&^F9JlCirtBrkYc+@EI9jmZf-k5@(m^2>
z9AH#7oc!C^1?~_Pi5?+2N<3!4S0pP6mtD9ot8fvVVDzL#e~ag93r;cGpjOOjl6%wj
z4I9r{aNdHSE%?QP3o`l07<iEIg9Vo?xGX(v!3_(pSa6kn`wj6LF?>@(`AWYLaovLF
zJri4`Yd2*iTZ`PX;Cl-~btAr$d8|yN7~Hntj`WWO_lqX(j8B|1T+cP_al+GQ357#(
zQsR#+_a5;l3%YSV<b64tEO=_cGYcL{D=c_y!S5D4k}fTnSfpb|aq=6vkk`i|=JwRL
zbbeyN9~Q`yW!ZQ^Udxpyn9nVEVZj?2nO6KMZ6DnJFAM&b`H&5fEJweK`^SP;jJ}o=
zvrJ;kUrH=5o%k=0xZDC2o8G?^&tpYiEAm+pZAGM2FJeTE#3-x2quqMmsFB+>F;?Wa
zqM&Tt{Uo7)@P2Wg>3R=HH1Im1$m4`URvdbsApKCpia4u&Qdq1gYDF<Cnpn})isDw3
zumV<8w<6w(l2(+rqJkBrtomGC#)`65l(wQ=C(~w`u5IRhS^CyP<*fS5d?`zNlBLN!
zQ_+gbR#dT~5_L%`+EJ@&m5<lx?_*Z8qVKHYU0NoI!#^8j*07?c6>nRSV#U?vskN-A
zZN-O+il-Dz7K1wUP`9I&V3o~3wL~jSBz1{N#AK<P74@z1bV+Mqm5na7vt3+b+>ohn
z5x<NviIQqXniU!J`D$K9BQ`3X_-t-fsasTR<bskZjcM>s|ENqWnpyR$SgsY#t!QCI
zCo8Hw$!KXsD=XSt(ZPz=%-&Xxh!t(D5D(I{+Yhrg^o|mT5`<(K{m_x5$Hgk*Gn|@j
zMGkXG^mTl4XDhl`(bWpMaoydD9#(W?7P$zDK~HkCbeFt%7#k@{@g>D~FG`o=Xywtg
zSz))rVTIEQmleaTc;5;|`oxNNtolwwsugnz7rlP1h}Q}av*c@*A=x#noICn>@Dn?o
z%oH9V4-!MfURLxbk<{!fMfynR$kDW-pA|!?ukhqX-f1eS{jJy$nfjg;14srEMHxgg
z*oq;Baw{&$8<8rTEDg6}gcalHXC(0hD@Iwd-xnngM;qmiB^e`@9shg7D=Rhg`TET9
z)F%)p5~W2`te7gNgGaU*$22RZTT$4BSQlnkG1H3MHr%mcmKC$5bF6qQonysZE6!VS
z!HRiS%$GwWYx1pFV8uc!wo9F@SY*}z&#tv%opkRY(_$-@kO*H&vdoI*Bp(u27^y3*
zSVg{?xQ5uRc#LFRPrlWPkB6E*BHuuiq>Ut-tk`TQA6v17Ja9%|x-VHiv0|GQ3Bygr
zvx+VmZrW+Zr&jEfuCrp7O#W8vG4k%V;&UrxslQ~5=oZoFX=?gV(_Xfyjx(a}5MBR*
z#$Q_Tpm}kL9x(DABsoMpY{e0hqekj6lCP{dPIAJ~rIfGPjnb2+tT=7(GbCq;=ZGsh
zY8S1zWW{}}erN2m6<4hIUJjGY3|3sT;<^>z%H$wlew2a7CnLh;5y=fJZd&o36}POo
zd?8wbJh_u32|~jBjum&U_=(wnu;NE6?vab}*<vw*Vk}quF!`BDzp$f3f57@w8Q0;V
zbkx$;zY-r2caMzy-HInxeV@9KHvD15Q#l81aM<w7isx1&+F-Kbg-rf3o!U^!hL=|S
zC9|uIZ%N4KR^<Xs{*M)}toWBj#~7)vt$1Ta1fzLuh%)rNHbfdcPF7YJJlgjEdnUgP
z1q{6)Ng*2w+w>nc(x`Ati-=Eo1&mmfSd3VlSc2F;Co=pTN^+H^pGw3sHk38|mm?`}
zLj^;r_<w3rnPL@URbn+8U_*8C8pJv_)U=@%d2JiYT`3~PwJ9DWK}doPLgcwsT^o{Y
zXkkN3S|;0&X+tv`>M>g1h6Xk?wBaoqGN`;w6c6b(q)6KtO|zj9NiOvJ$zzPs()w<6
zW9m(aO^K3s%bDo#cxz5&TbD-B9Xp8L%7z|>O>2@iHng>&oek|7%^`LmW)VBu(1}F)
zUk*gJ4eudBc&-hdsdurVD~b4*B*AVrbT_hy($h#alUQu9lGqHrbV8idrvJJN+0e@d
zmko*yZkxV;xW|T7pJk~`6@w{llD)S7cIwt_@EN+_hJe9?B=Wniw+-*u&|fM{rH{1z
zT<W{z+xJBt>Xh5phJHq_&Ud2+82o*bfi?`X;nPLRU`B@!hZ;7+Z2Ef{QY8t)Z5Tnl
z=iO+Deqh5W8%EnO#)d;S9JXPs4dZNBWW!<`#@ldqL&6jrrrI#UhKV*zvguFUCUcxi
z4?n9KAyN4z?=%~x+b~a3ZJ1%hOdICP$eEHb%ZAx<A^0d^j*O+`)|+3YCT>U=Fi2lb
zTK8vr-AdSG(U(ffI?n|*EVQ9d`G}Zz6C{-18MnlSr8aE0VTTRNY*=o?W*a`117X7o
z8#dUm(S`@x;w1Y@)@PMbtJNfHY*<UO&d}G}@R7m)+FL|2Zn9yWr(H+2o$z)ux^9v7
zevq`)hEHf#++I|o&gD_tj9jCtcibucY{Nbq_S>+_CZAZsZW}(Qfunugr-PF++Qfan
zGfr@i4SU6SaMIBD*0bYV3;9BN-i8D0L$MKM*1)9U{SppRInz_$eD#P;KJtb0He9gb
zm<?aqaLR_$HXOHMPtTOE#lwiC6E>V=7U}us<^)+-EAPiiA4<|08_uyZ!q3W#RJpb2
z(yP+Ii#A-c;i?VSY#25y>9S2<UVDXHHgXYz4a=jxvEjN6H*NUNhHq`CG%Dc+y~!%s
z=Vc=#`sMPdTQZr9Op>Lx-wPR@BwVT?+3(u$gAG0HFx&B?4fkv)Xh$KtJ_r6}!y_Ah
zv*BkOezBp5qCdixaG!JF0~;Qai1I5*R&3;Bk|#3l+weR2qqxMKQzD+q<Zr`2HoUUo
zxsmH{xe6HkPm-6!ziha%R9}qOz*;0+;=j~i%W&ckdlBDIiLfINt13!fJ0io}Q1X#P
z6Jv<^i3RLf%iXXgS7AF!+fl}jSUZX^HO`Krb`&F@Q&-=PuecrYjP8&xINR~)=70MI
zm84k8t}l=fv$A%Svm?!pMs}39qk<i<qq-dxX;zI`i73XENvhaUmE_2?|9mcwiK}5p
zO*@k9sAoqlrb@YW?Wk?!twWMvM<R*I&>QcLOfq=Jnke~*SbauQ?Py>}^YqAujJ{>q
zylqE{!NdO_SFepsw<E)j4u;;Cq@^8ANSYdYCP_1KOVWZktBF2Bv|Dkl7;Q~#Lu^ZI
zXGeRIF~drVrGzXyI#Lnd$&TqMiP^*)VlJ^Wu?w*)u^X{Fv4>s%*&rD$c3ABw;Y7R>
zHaqO1+p)q9haFBk=GZaU4woH@9ewP0*ABNGsvSN%{C3F0HIH52vGAwc(ZaoUXcQ}^
zWlA)_q>vrGC<g5iGcoRMWDzdm9Y%L`)cQ(x*}cJz;db;Rmp>Z)?fT!1_v{!zGLSfk
zIG8wuIFvYyDE8i$)kfGc(ynhxa3VhK1Cq(aQAE*4+cAcGtf7n}8E?k~l8J^s$&Rs~
zWJ(qZQz%ZgW15jV-HsUspGh*yj@gEC_;L}sy)#e7(x^s@?fMO?`NRcwEF@V(6#aNd
zZHb%+gBmR*3Ry<7oS5&!Ml0=DWrxK9s{^a;SYyX!JFduCX~#P0Lp#2(W4#?8*|E)z
z?RIRiV<V69R^lc(e8%sS&31fj#}=N0avFwzm3=}p85MG0Vh8zdL)l64DRGw_pBZ}C
z;pcYj;b`1z$3B)K!!n%or5y+CI79n`b{r!4%8tW^hhugeA(t#i=_Fj4{D;$z+i`+P
zC+#>z@--_gH5BKkjqxx1EK|?fah~LY9T!O?NxWS$xMaL)$2FN`9H{8PH+EdN<4-$Y
z+VQO&H|%&~#~*gwwBtJ&t9JZs$1OX)x8oi?+_vKm$&W@)-erA$U`@n%xaNXk@{1k!
zjiMje@z9Rn8U2;`*l_ZQ*?%*l;ns-<=@8*h?Rajq`WbD)&R-bfUv~U09vsN$z(01p
zvLmlUKegqL&z+9izjnN4ac_tbj{j!eJhTayB^c?@$40osXa@>0HHMg<D5(V;DENPJ
z6?P!jfg%pXIZ(=h(hd}5YH^3Wm4ISKL6R}vp<fnD62t8hlu(9>B$Xp6Yh;o7ly~TB
z^Mq7#pt1v54s>+L{eM(-ppgUV4pegh4%Bv_jsw*VKQ&o_8btA5%OK(>!GS~vQmB}S
z^@w#HNMhT?MnbZ|>pReZ1`Qo}%YnDa!^24`EY8I^m7<U|)?CC4DlHsn>5yH9{`+6n
z#DS&`WIE8yP@2<TGD;Tl*~)>|EVqLLZ48@m5p5l4M@0&4&t{6fWDH{`2f8}Y&4Fwq
zSB?X@<ed$ri&3|5<+~f+dXV%anvGW59I!j^l>^5ea5&&};C%;%JK%Caq2)UcxD5{)
ziAwaaZeDUJNNVeI!0$kSdXU&lYC<BZd-=hv-VXimx$NuPM=HR)eH|D?B5myFKz|3`
zW0nC93^bfeQn&{O8<s;H7;5lghS>-QMmn(GfsY*cz=2T?EOKD61EXm$)q!aaj3FQE
zz&Mie4oq}l5_@a{%ayiFX6H;Xx+r{HM4#@!3<qX0W4Jyu$t6jGD6<`y<G@@8<~cB*
zJ{LN$Kn4a=|K~?~W7zMpV!wphml2n;IPtSwqEuE8*AQ1auu3igv=KiN!X>U{>N-Q;
z!02`dcF6hIGHRm(n;h8ez{d`3abPP`!?hI;QjJfjNKLjGjos<Mrw)ASzySw#8L6K;
z@EQ4TLy_!z9N5d~KH`3&=;G}Q!<+Df)DJswh(r{rz!8HVB{^o;pWq?*$$_68IO)LG
z4xDn}v;$WhxJt`24xBggo^{|HdALyVe1Xx6#7hobHd3WTY3wydZxX*DUMGG_yusro
zPQG*CmIL2AaGUxM4%~6zF1ZvGE-UQtM~af=9*Ky*IB?&AJWk|w;(-GX9eC=%Gp7DZ
zeB!_(7WA8u_pt-N8$9g%4@QMQH}ro=UO4cl11}x;%Yna*9{b0zk<z6muNV#U*ABd4
zG{ULROJV1cPDD9T#ECd3@;MRBBpE7V5aUE4Ckj)^??eG73X+SrutTwlb?R3WAz`H`
z4Z_Zg8N9fWtE3a9#HUNY7L<0Pj1xng80th>C(1dI=0qbW$~#fPiE2*3iHc7B{*r_$
zPE>NDvJ-bVMM>0mB_jM6tf~`l@7Mp>N~rEc9VZf;sNqCSCrWIO6PsF2)OKR=q_nWj
zx}g5gH&Jpqk>bRXX(dc7qOKE3B+0~jPSkgzfl>P2^ZMPDhK#;NtiLr<6w8pJsf<o^
zrc|4hmhMD`6K*F|CmK7^#ED#{HgzIXepfGvXy-&TDsmekT%YDnw4l<G*or7gtx4KA
z(UxRe<bQ98ws)cfl`O-uqZ6ITvxzx|t}c)2>_itvyAq|)ZlX*`>+VDkDm{sIC(I;z
zi%6_Q8*%2dIERtyByl;RkTfb)JlqP8i~%QlIpH-dH79)Jeqw+aB(5C$-?8ZJL?0*K
zrTC5<k-q=ELz+9RXkRBbuGe1<?dL>)8oWmoWq=a{4L*ouF!Axk62qK$--$;~{N}`P
zCq_8&wG*eD80o|Za;%+L>cl7~MmsUiiSf)e#)+|pw>Rxlyem70TQq^<3@0WUsgp=1
zJ2AyjraCdr;M1L0_(mTj5@tFvi~4LMb&eBrotWpud_!4CvViE!8?%UHG4ay5R^ntC
z`9>!;Ik8+$A4XRY*E+G1WEF8WaSbs%P}h;KCw@fSK&-VqT|93l-|57sPJB$hg}9X{
z2A?>w&EVUe*g?K3N5AhRVV4v8o%q6u&kUR0PJC|gJx=U3_&$>GdHN;!Q6~-<sRx}n
zM1I&%j*y7`F_N!{$B8G1Qu;{}SA~evPMjgX<CHHP;hYoSJ8|2I^G-~Cu2=Qa)3^&x
zT%^q<;&tL>;uYdm;x*zoPK3|OZyCKoyh#*q-#Ky1;8Me|Wd{~?*NGpT_>rmih=0n%
zLH5;8jQ;GzFC_PglJvldhvdH+iX6DdPW<k~D<}SS;tBPCh<^~D5}y&p!*h}sPW(yo
z($N1R`CH}$W5yV^w!~{E-Z+uprO%}iF65Ev*M)p8<fRhn!rzNZ+#jXi5IZ?o$2O70
zqnQ-r!lZF&*RA@A8P`cG;6gzc<ffTK&+XJZS*GzZjUtP<5a&XDHyXH6)P-U$)KE}U
zL2(yKxbWJAH!j4xP|}4DTo~m-DHlq+WZw-mbD@k2WnD;dA-jE6ITy;iP+hXSFrrab
z1s9eylW)7~%lRt0P>Do%Wf!WDS9PJ93$;3FBFcUgf{AY$b?T(mbm7C}MQgcG+l3~1
zvSgErc};uNaUszKlM4ybUim@tty{3JOW&d)*@b#8BvBVpj3rlnmfnCU(S}CpZ;`z1
zk}qEA<)*rjMx_zUT39Du>YVOEh7|Xvk<_g*YuJR?lqgkg?m`O}dbrTjg_bT^Zmk>V
zxG=nFkJc`<ccFs|Z78;-*p7T;&(2~dA<KnME=WB)QkT9GQFu0uh3C4^*@Z4lm1uVt
zx{`M@6e&pbypO7xU9d=7T=2VKb;0I>SB_Mi?$GXn%LRp9<Z!`BGNxIUq`F;DT^L#|
zYvJ*t9v8k{k|T|h%~-x|r0+kYF-ewXie<nBS%>+K3w>M&x)5@qmmK0oS(3LmNtx=I
z1^Ri!M*8ht7y7!;k9{s1+VpqfJsAlujAXS35Qn=kkYo^XFi~ndL<%JzW+?BIbZ@4&
z#cS^>jTIt&C1kV<V_di{HFsgG3*%ha<-%t!jCWyz3+r51@4`eG{8AGambx(6g()sf
zbzzSqqe{_~b;mO=ozNd@OPJ=ubeDe5Y6fwp3$sXOyD*<blIFND*WmMHq~$Lr;sPoQ
ziHnTX#V)LI=+DrXxzOF0{h<phTv$&2JSsINE@dSx<r#O!?|Q5<a;+v=<HA~!BQx}8
z+#iu|k<&av-w<_!3maWnwmoYT_07bOiIRG_LEKjIe@|t8BBRuoyUm5|M(Pe1c9MTe
zd}p`b_T4Ug?!qA#4okPV;C5y2b78*=m78Vkb)oH>loD$47qma%!a<TRiJiu@nmxFi
zd|4?YkS$*|I^sfBT*`45PPlN?g<~@QH+sGj%lxUL3m+7nn)gl0Nf!oxnswEMuVus{
z`4nB9cHxW*XUU~Xmt8nVex7*2&@Z}hiG1~&6fu)<Mdl**(lzP@ec9j0<R*AN^M(sI
zUHI9BUtIXkg<CG%bKxf!zBjzB-j#Kmyl-Uc9hdCSpdbA|Z5cnf@S|ZPuF~eF+tPFI
zUCF5HC~@C~2QK{K!c!L>y6`K_9=mWnGWC%QzsXe4E4yZ9#=fE{GP)|Qs4NbDci{=m
zMs)gbWx_K?U%2qxg#l6eF}2T#`jg^Iq9}in{7w9a_{xQUNz!xlwnr$)qoA6iKhcvH
z_VX$zprD|FNCi;}KC5raryyFmy!rlZ#Ft5?7zOziY$;Sy6p0EJQczgtb_FFA#47S=
z179SXiYd7CZA6@cq9ixQ=ZNLnRMW<G$>K-c#w#ePppt^h3Q8%s(Jr~Pf-)qMD!bp8
zRWPrUHsWoams22Ep4F&8tVkU9S2Z!NqM)iGU#!!FZ%r{txq96iB!P{puIQg09^SKS
zEd{j|98hpjK^+AN3LFZY3KA8V6tq*&UO`<2Nm7=A#tM=psZ>%UVm$@*Ng5DS6*MGy
zi}*G%g&0$}tK>=}-;&f#xP){@A1{m&-b6tQMw=?gBxy!$PTW-{Qf$_hiEPQJ@Ky?1
z8@!Ezw&Y?UNgWidZXDNDK{o|i3OXw2q##>Cu7b{n+0d>@ISRsVf8UiUxw;tMdL1qy
z(e4V&hCvS|^(5w>mLaJYa;pNHk;_gZ4qXZqMPJpqOo3a0s_3f}rYi6#@G9u1puYl5
zflrYya-z2azk+~*pn{O1e@U=V>Bws3;=6Q>myZj`x6)*vy;HZM-%-#<!Mh6jD)Pbf
z_{F94&+z3s;{`AN9xFG9WJB`z6bw)>Ou_qNwlQ;{f*}fqD)MbXZIFV&3cl~8NvkC~
zx?i_^$*Izcqs_YxS1^J#AEltttaPdWNXgYTDQ#os2MPqgpOHRV!59VkCZvy5FpkD&
zJ9L%kc=8FviA3=^Nx@|DDTWgFFm9TH=?Z2jn5kf~f+Y&7%!rsJZBcM5JHB$m3|Un*
zN5RpvDRULbW`Gjrk<3@HfMg+Y5wY2(PGaC$7WJfE{89yL_eH$yq!rE9mMi#B!3qT{
z73^o}t7If7_*}sr1+OP$t&!s*Cn=NGDp+UKaJ_<$48B3ZMuTrsu-V`Tc1LbC_$M+%
zXXQ#`C2XU(UBM2Loy1QK%Uv>8knbke9MD#>1RtjERj^MgP$u%s)of8(Oi35q8QJU$
zntdtf(LAdthZG!E5GOwu-8drsqu^%+zbH7S;41~+%CsQISJ9umpH*;9Mw)_?3cglQ
zZ%oo@>ZiyHjcqrecDplFPDZp7`}2zaEBB(zLKH8^fUFjgn5~)1=>NDcE4U(EEnQJc
z-<@g9=%j0kyoQtT4ReXXbrQ*PQ^9u%?#g5$hf>Cvg4;%tm`PZ&JnD{28s&<}e}N7C
zl73|B!>%d!6g)l{A^*O`<|hSj1{M`^U%>+fe=GP$!9xYVDtJcwM+$yZ@CU2<Si$cU
zpAcpJKzPA`Jcce1mHCvSY@;-JWQperUMToe=C1QyUs4Z0s{V_-;TZk@^(zJc%B=22
zl>5K`HLscaM!|bOc9sy~Mjp4$^Aax(PY|BZjcB*NCZVt!rN$=2xKYrJLge|~C_u6z
zlqB0s^-XUl`#$X-m>>`0rMOr(in#Tjm#R))Vkzd<uP+tcsOUy<@)AVZbw8e@q_`px
zv(j#qF?d;$a&DA26j|I`$&Jcxz>Vr|RB@xK8^;f3)xMZo&8@FCxwAJ?oJf#wxL4nk
zRl^OF8+F~NNe{J%vTV4v8+8ny2_%VbyyD7X$(tngZ<1EejbtV*j@9cg4#jyxH{Noi
zvx+V%-gYC!4VN2=G}etYH!|I5=0+pw=LZQ*i0N)*kYw5PFU>V}W8E!%k#JLrLXM|J
zHg}^1qZT(>y3xvw4sQ8)Tw-gAJC~Yv#w4~OZ|g=oH`<fm%AYu=L1f;F|E(p+qS%qx
z$&G9h@t@;HE_r7+y13ER(7Tb0uO2Bj-QDP6=sn#qlQ+-ScLuh)VPo{(&1k!r@v{^T
zH=Krj&i**J8>$=MxpB)4j~iY$)=D$o(A@C3_3Of1H~ek{+!)Ph(5-*)G~`AvM&H|;
z+M8q`@g28(cT$sFecX7LN?)QV{oLqJ{vL6Fp+_~3805xaH-=CdVdz8M7-sPINrt;I
z_oi1|Nf_zI2S(~Bk_k&9$G9<8#{A;qVld8)@or3D(o{F5xiOJ^5^*wd3Q>$por#?u
z*3Whf`=8;)Oe1v`$!y{rH{L8r7MppD&L=J)in!2?MQ$u+bcq|QNR|?p5tkD`B(5Mz
zu9Y&(UNjAtyPDz}Vz;l_tasy`rpde9_{@!u+}I!kH8ygi8=Gj*p^!;>Z?l|7RZWup
zV>h-KKDUy5BBxchw#|+0Bs+*ZiJuZBwPI=0ZZ|%6<B}Vf-Pq&CUO9*x;!e=RJ~s}z
zahQC+8()xoNjyM2NR-mWRb+9~=t`y|ZoDX|*XO7k$Bfjk<V-jCxS^3J-T0aV$v-Fi
z6!p`@GltDsH_o|n-i-@}a#03t^9XT!>{zVe6*sQBah<9CHODoQpPEN}Bg0H{NRUzb
zEk$=J(+xKSZxXZ0n!b1AwoF7Ss;II(FYd~Wp(0Mj4|3*8<=yzxjeBnV<i>qB9tgRg
z@H6oj;>=bN;cX2by74QO=WfU@2ckb>R8oH<dF;mTBu|Kc7^zQXCMTC%VjTAN(v80;
z7E<xI8~@0h=ElD=4(VBJgpB+oDs2CnmT!m=D)Okvt0Gd>s~SU$BIYAT6T=?zlNTTs
zG<2y(VHL5eUY781t%|BBrlPcpGBhhrEUBV|ig@z>RjicZN0hQE$}w6|MR_``pz56y
z_9=A;lS+n%sw%3fNLP`e0xGJjNK%okqK1l^DiTyAs;H%+Htp*exppo4|NSODP1Nfe
zso^5(G5VHF^(yMCXuxPg760qQjm=FdDpFOXF-iO^IUX%d5YmWs79xAa2sT#HQbj8j
zO;j{hk*T7YismX>FeBRNhhFxw_`hvzt)h*J4l1%#v{liLmhFum7N22b!Hz0AsmM{0
zOPlyMvEnUT#g0~b(f`-7tBP)_etFvDL3b5BRP0jmnTnn&%qo_tSgyjN!m8qZ6~k57
zRM=JYR`HGshYF_(j|#7f0>Lzw3RT6c*NqgZ+tDPq44z{qA)`*4>UL;6?1%Ox`lo9u
zd@B4ZitI=)7L^iE5meDjTun}nZQD4cV(8T5c2}Yfm+ZQBTlzoyO``Wv@ve&ZR18pY
zcC)FkbkvOGekyh@h;^JX^=H(1q=<+ErIKHnhN}4JhxUV13|28j#l(ZAUTw@5E=R5U
zroF@3YM3~=V3P2Ckv1dbz^PcIVzE@<jOhavV^xe(F^bXA(#hkK#t?-_mBy=>pyKM}
z<b`s`+BKd?yyj{<NyTLHDa6?-rjkq}PA7`}43e2DW|1V_GKn~ce6C?Lk7T}z1tdGB
z78jcVH;X6-P4DhDbv$5dzs0mf#ZnbQvZo{qeyC!Fimj^tuJ=k6t5j^3^Ul_)ZizOl
zRkY4b+o)oVinS`%saVf0+8|w|LJYb&%iB9N{wOkKjyWmc$f`M=8cPRmVlE*+ZZmzX
zVvFS3Y5J>IF^PV{p4p~iJG1Xl@u{kB8zQcDs(5iVN{ICB$ZHY1ReY}EEf3!IV2_Hu
zD!x~7Tg5(Af3|p3#W5B8ReZtdmnsgbIHckLqhcT%N*tEsj)*u!%#TeJ<p`4``jv{~
zDlVzGOyz`%i>kgz;G{S#AM>?}Qz}kVIj8Dxh@YX^Sz>s7{(0(H6mfwgUrLcLFNlXL
za`fNCT~%>SrfxpO{6>Ym94DoJtKvF&nHv$JjL<S}(BVxL-;s#TEt2eFF?Uqll{3PF
zf*$;!;zt#aRQ#smo}7#-9;*12<^C*PG(SRCS^vWN+$TODj_eXCHJ3Wf+p9l3m3BRr
z<EtXlqxaqu7W7O-p$E}_(A85aVlS!B<v_?3WKQ@~=6qE?xT*7(D*j@h2$vFH$(auQ
zFVDZ?q;#aT{k4iWG?4Y-5gvU)$V1Falr9oQoJV<(k9CM9O2!xu@{@=Awvb1*??w%e
ze(YkYm+&B-q=*M`9>^yJ#ZOTx#fZg;;p`<nsNg|G4@yxi?LirmvL5{qm-9f(gouao
z|0kFDtmHxLCR63G$T~}ft9nq43Jj&X2Zc)LOHXThP|Jfn6-tP!+8)&LAi;w~8aMF3
z<Uw5z>M<$?QfLy3PBxTqSJ$T~1`Vl;C?UmzR1Y){d>*8E&`3T(=0O(^(mlwaSw{~V
zvwzw!+JxAYnCU??lIFx##1<a3Bnj6<ur;GntG0&Tj-)-Y12Ic_o8zIA2ia6|Jjf*x
z5B6Hg@A7q(t{!xwXeV}Oi)<eBV2AglXeL^SR$};Ih0j)p2Tl)M9w;7ond&CC|2<U-
zlAto`G5SgrshHn`fCp1NnCd~$gOCS9JQzyLUc~+$^!DH#^4nb+_aTu(|E>pp$@>w-
zn^fjK@&Uww#6iTt#BgoJa+n9BJQ(f4`!WnlM-FEjM{sP6G)Bk=9&GQW{|OqyR4Gxi
z3y$?*oCo76PVit7yLTd^VgHkjvc!0r2h$l{;L&$;o#DYeMx_ojc?!&8bhZa`41KQQ
zYCe@`N77_eFJz}J@?fzCOAO0(9xU}>nFq^7@nE$FYdlzCq^|rw{k+QXxt6t+ZkM`+
zdrWY>2Oo)nF-}C;NGD>p*@KTg*y6!f5BACgUN`a+_Rmh@HsW^T4x)5d-R-fTda#Sp
z&xoIUu-izzS3p1M_IS|bq`n?|ANBo4>K7zm$|=)F|1W&VgTpeY{BZek#Dk+AboHT|
z563+CO3ot<85)jzaKeL~UVQ4sNe{l39`ItN7pFWpEt7^9WxY7#!C4Ppc<`qO=R7#?
z!9(eM4=#9c?3C%I2j6-0i`PYue(AjA!DSNRS3J0C@M|7?WAN)F-x6=g6mdx39ZSM3
z4}O$Ebxx0d@4;=u{tn4qxeAc{ygo_{?ir~+g+<~o9^5zd2Qo^t_1&VRZjYpmcTK-D
z={MqIVyVrkPYnA%NS+d(5uX!fYnPWE{N+JjFCxA8+k=1P+=*=y-W2PV2Ws;;DMiA+
zw14fv8<GgG-XVF2LUK<PjUq4Q)w?U77tvmfRNBUPF?5Tms2BOE7obf+BUd4>d>}*j
z6H6>&=y4=F-ZYh@VqO$C^b#cTUeqfcS<;KjXHDmtrIq$##3%ai95F8EMR_mY^`fsA
z6}+hEMSU+Ccu`4=y{P5|=%EU+Dlu_L5y=?tvFcvb@S-O5ZAbJYRm+Roj0zvOt7sjA
zCxr8QVe+Cbc@k0jGnu5G5tWP$y?DzDE0wpsNb#bR7ujB<dQq}fW{Z2#nO>xM(Y;0E
zMzl#MO2!N?8k096HYJ*_M@v#OFPbyj!i)AKEs2uU%8S+pZ{tN<gSV4Iz($Ep2Z~w5
zj$Rb_+bv>_7sZz33hC^{qqXU|jLH?Wix<;4*t*ib8?n0=JxIj9rx#{}TfFFSQtvvO
z7j`ckhVCSJw$tSDLLqm15g<_w8;=)Wa*gOSbiW+I&AQK^p@c|!5qo>_j-mJQqGQ8s
zvFztXe=lZwG0Thhyr_P}G=??<yckF_$cy1duEAamG5Am~h8g^QFXTtBcpG6TBc%_?
zM-fL8ZCa+-NEplLI4{PNh%&*8iC#=%bTV;<7gM~LO5Sr?@-&j^M6v(=Y>}+<`hc7*
zMSC&Ni}~WAy56F>auT^C*786|bb%KyFQ&=4_SQMmLS|p&#bU$H5-*mLFEf<oBp-TZ
zrizs8tGrn4#TG9ju12i!VyzeJz4*wB&P|dIos3vVB1sFQ>TVFrizW%1yx3@PvDr-i
zF+E7CC|kYw#EWgzw-X;PkC3DtMlNx<%Ztyvcr2CiVz(EcdvU{yn_lekVy~RJQzK4!
zvCoVBUL5t}7?m%)IOxS8FTRwMD4$7Q!$07aTm6|r4pR~Fh*y8rU6k;f>|e<g(ZO`w
zixc!9NhfJ3<ZCZVB*saW<ZV?1Ps=61i?d#wqvdrk&NHthU0{|*<<c&Caf!TgwrPL1
zcG-(7Qp0Rb!c{M>k$+<-QtsU~N#A-QxS@8*@4UDrwPp72iFdvDL5j1*-}d4Tm5SSA
zrMMr-h1_FJgh=?wi=U~7KK4lTz84R?SXeIUp`4-Af0e;MU4I#0UdjLM|L`YX{2|ke
zhEf`ydhty9M}zD$_uPvYUi{<5D=%bMhd)J^&%Vo8B9Xl&B>YXDJV4(s{a-I$%OTc~
zN0a9)rYo1D-+1*;bV-mOEwbC{;m?xtYKYWO_pW}`?$Ri6+#PSUh8PV+H5Aj3Uqb;6
zv6@~`K@Ej86xJYn>IO}b>oXF=n?*>{{8z<_Xi#dz4E{PgPJ?(BSH+ntqejfx_{0(#
z;u*bAH!^3C{u`jQhB6weYN)26tcG$LDr^6JKCHZK*iYlwg8Gk&e4`>OYWla5D`^Pd
zR8KCMSVcpRDG^FqBs5glP)|dB4K*~>)R3sb#O$>+)Yec(lf9MV`utrifuekgTiPzW
z>&wRo{@fl_S3|Ofv-J~Y-`yll|8zp)Lp?~j4Ky^=kg6d~gM9trNtwjAG}$dd?+WQ>
z>4X#wOXWKesrokl2af1}pc-j-F<Eb2V+~EDA2e*z&{RXFrvFi0uc4WS<{Bnxn5?0N
zhL##eXc(!Xm4?<DywU?2+GuF2!L4C&WQpt9+KX)c`KEltpuMI)!R#QNprIpq7Y$uW
zI%&uz5rZ5Jx#XRRb*~i>v73=<A?Z%+p<&GUtezUojFzg}Ml7uwY#Qtu926CzQ^U)B
zv63pmC1W7j9OnD?$Eq4U(&wd;_Isj4ERv)77=2H}01bW(0S!SaV$)wkhz`ZF7fEk9
zvKso3-|JiQT@8IT^ka0{)vUKq6o0{T`&Vuw+2z5acVnx88V1qfU}C;m`a{Mc<U=(K
zGs=3OWVj5E98C;9&@f8FcnuRYjFyH=S5Gb`)fg*hR&we%8rK`uNh~GIuAekfM$z`3
zrt#_NIhv3$UE-%`n5to+hD92tX_&5Ij)pZ8vu3ciV`rt$(lArQyi*zSOjbP4mY$iG
z(KSaqzM<1x(KYn$*!ANHS@W4|0kL<ECLR`RSRzpkYsGDjwp7DP85Msum6|Nm(Enx9
zat$A9*p;KLU_Han_r>ih4XZW$qqUJx`0L{9Sd;f#<yM@TE)^K{Nh=w3A93t$(D29f
zr1ZU+n>Bo_p^H!dyS+ujRt?W&V$tx4hHV<Y)Nnw<cIli_NuO)jL$X7YPpIQlsep8E
zMCxZ6c5Aqhqt$DXk&!P|UbVY6-jR1_mSowhVL!7RT~T?ToQ!KSL-}LApc3W>H5}4#
zL#m|VuuMuCWW~$38jfl>Mzix8z9JECr$~-#IAJI!HGFMw*~;Uz!OzGkOn%N#YE+55
zVDO6?E@@ctbJNSjE5xhBYeY%<hU7Z&VMMC5t8H}ZcN%VK_(8*uboIT4+a$8INt$y<
z!(BPwn{dw)E&;ly;U^7`H2kLFXAQq-c%b2-OigpL2fs<V&%8h7=<9i2m5KRP%sMAc
zFHo#pbZXaxj*m6`uHlIsCYcOdWF$tWx=!ostVRWs_w34gD#s`)bxB%oz39{z8vc|^
zgAb*BcqubdoW8K9pbvj(_*)+gcqLQ14^ck(baL*$8s2D#@ZmL!J8&|yb=73C&zCnf
zj}Li$xKk`eJU<!j(M2Du`D3Dei1DFMk(3sWjQl=i=S?j@)Nc0J(>!B+|F&(L>rF1?
zLt!6ceJJ8XoDao)DB*+eTxQE^$whrA=F?jzJ^4CE^V)LbeaP1@r=$=6evq>CSlXF^
zF7Y5AM=s+-Ss&7TXyijVALKh7HGHV)LwO%6_)yV@N<LKap{ftRo8l_wPp#}jMoR9A
zx#?>*WPUlgay1{|Lv?BUl?+)VCLL90bSrUUpV+FF54C+r@*&xWIzA-$VDh1^5AHW9
zQ}d)I`cUe0=A)R@;*N|D+GK1AWbayBRaT?b^P#>EZ~KtqLjxbA^Bel`mJf@a+0vYL
zU!}=HuPV8k6enx9g3D4<eUQa?*2vUrm6Ow@Za%d2p`8zneQ4rC3m;ng(A0-aADa2l
z+=rb5bEM%T({f|GCcQf-M|@6R7C#|2rIin@edsbLy^T*kQj`0-RYq#Ac9=)DeR^_x
zA3FGu<3p|wSw3|1p_3dDA6Df_l{$+<*$ijM?WR(_>1Q&<=ZTmYSvc3(2iuv<7lU#H
zALfad^S!$dJ$xA9!$==`at84E;P=7ogT<#Wi?#aTBC!$WQ*?G89OO<P<U3`Za`i8W
zDOB8Y+}Cwfi5{Yts1fB$ZIXH_qC~)l!9EP}A?QQMhh9GY4(9-3Zy(-~k><m@KD<Yz
zuMhoX5EhT=PYgfVKU+FRg5(li$Us_3bdV48T>2KZ5{6P7P8{aL`y}#Hxhx_i$k$^(
zkfSMM%#ZSZjP_xS58Hj%;gc<YaYCNV`Y_*zaXyUqVS*16eV8Lhq;$?CA12F4u4<Ys
zT@+`U;=@$hOP2X7+XzncVY;ErAel*=MJ)R?`b8O&Y(^oLbA3=t>tuls3w>BCBfNWL
zhaN6b7Rdmk{SqIRk%+idj(AF(e7jTla*7}Nu!3YIag|}Ynq&>J<hkf|KCCDI$cK$S
zY$D%4Y<ebkvk!%8nzqWhP|5VM4~OTsX;aCxg`~jqrk}|0C}P@1+<UI0@SQ$<D(9CR
zaUXX1@R<)6eYoVqZXZ7P;UwMe@nNqF(L$!<KJ4@1ZV}TV>idaO|1W&_(%=V34ibko
zi#Y6qbjT4S^{CthBLB)z<YBRRJ|PoY^N8)P$gd6kl+17BXNYHs=Zw_zK3p((ll#$^
zeYoPoO&`AV;i~liiS%z|Jd<3LNvx<zly80bqKZkvjj*fc5xbL9rSi9Y_+G|<508Dg
z&1U}0LwU#Wf7gc}4F01J_sD-D{;))U?kwRKM(-0J`0$WK^j}FH5&!+WgDAhtgj2*c
z+?M);;vYUd_2C)$3zq(zT_KjzA@XGZPexx7rKA4w;guX>KMMQtuT1+sMEVisM}@Cb
z6I(<`t~YcQ;YS`nv|KH(ALlEWJY&0#&DHYxAtc6+{C-6H@yVt(B`fJk1^oIsl5cB9
zK|c;(=q~(rOTA}e{V3u`Nk2-_AkL502lbPpD5FA(`B9v_grUTf$S7TQLhqT<hF*rG
zEOAw?Rzd3gAfb*Q34T=cqY|T){is4BNmqW0u1a3bP(V`Mj~XO3iM5EeiIVHw%Y;Nf
zOnx->qlq7N{rc`zZ~KwrN0J}Oe$?~p+i*4X<1Ihx`_V#nv8M9QaD9iXgL&FukiM&x
zY;Tq7$FH*@(wQn-c%_Le@{V01#2~{DmHS_{yc6Bjk4!(>`q9p>Z}!#9k5<xAel(Yw
z3^uhO3TY{QRXR>c<FO{$JzFf>i2VrDy-}w2e*DojqLUxl($#}a9q1>^kB%fUEsBe=
zG$hB5&VCddtMgnot^E6XZM(2yU5VZN=<Y`k@}7R!Nz6pCwD@5qw;9UQ*|83TKkFKy
z_~Dke1ko-CRYr>+zJPo=4qh2cethJ|22uR*`!Uat`F;fa2>LPHj}d-^{OILJUqAZ!
z_2pH){dku|*6Y6GM;~%obM?P9UH$!d&yQh#SXOiz;Kx833?UBkV=zg0nb!ZZ3^km*
zPx8ODVI%#R<i}(`KJa6d%>RCj@nf7H<NX**OLbYbTLqg*>Edt#m5Ibbuj0a@;1oZm
z`Z3Fo*-V;7oI#vUl(lLzNyLfp$jhlhB+Q{W*N^Z{l?(h>=*Mb`i{v!ir<*PDW3eCm
zay4~vHHj|uV;K#W`>~SbLqArKy!tWvd5g^2UAl_dDk|Y-uJL275nboUdh$+}Qzdny
zADjG$2_Sy}oBjA$PI*5r__4*0t$xV$@r0c0er)sOb3gX@vE7dyethP~Za;R)kjQ8H
z)Q??$tm>OATdhiTkw<^fAh$APD@xhJUlzNbc~ot$)L-TYKaTjZ-;Xb(0)8Cu1HGa~
z#l^(s#OF=GK|iLfjXWgdq(i)nH~GmSJMD;1PmiKU{W#{wSJK{g@iuuM{Cb_^epJng
zUtc9&wsMuNVo&<<wI8SaIPJ$dKW;6pa>kD<xmsjrt!7cvSs7g=lO#OK)fV(k5&MgN
zT=L^DKmPXPvRKNT7GaV{qF4R6#tGq9Kfdwfx*xawxI^Vz;w?XJklZAGM||GTBol~)
z?`8JjGmg8|e<A)r{E>K%_!Cj=f0kiZJyOVhDi4Scjnwe&F^~NC&5y@2MAH&~XVM?!
zPl!v)=}Z2eQh(-0%echn<S+dAljJ2)Z0dT7p5B-Ej~{RR`u5SUWbz!H_^<TXzQoru
zd9F?rayf7NhyY~AdkJ|0*t;n)Zvc@bQN(;i(W7O+)JzjnAb^4aG!LLf0EGf596;>=
z>I4uQK#>4S22d)1xPV@wgkmH`1GxIIjO_MYJb)4b#8a$!DN_t&tKM6`wG&c0fXdX%
z7<tQ*lnbCdNd;m>VkM&F+Pt-R6@ynLsTKeXrMfiD;57rNW$>z<wS)i?1IREGQvme?
zXb?c%0FnYoHuQP{%>1qC#Z8GPeom6&8XEfBBySOyr`1g%NhPKc8xhlqxnCBMyp02B
z!f4X~nvrA%(6eURH_h5hs)RG$BU=X0Du8YQbPu34ZE^z04WJEq+W^{;v=1PgqysUF
zC>}Zn(24xB?vWCmcv-J==K#7;yjofpy9O|KPMQ!2PcFpukU9k5qJcR83yD1dD~XLL
zmd*WLelOqk_^Ct(6(=$OzH~`a0&oYQ2H>IS4dBp?IMMU`sc!(T86Fl|k^?eGYSkST
zz~}&i0fYkR6~L_;6-EZ+%U=<_Y57h7eIyz{Uq(j|`vowZq<;W48|(YkzZbv&Dgy%;
z6u@9|(cceX2>DP$85V%-KQBoV?#9K`3#A=Aljw7Hnbp3oC?C*FM&_7+zE)vd0NVo?
z8^E{##s@GVfE59(3}9jalLDB}`cDqX_8mRvGUF7Zl&K`s0+>!RgE-SjofW`r@;Qd`
zsA0rBa@qVrs<9w|h0^frbrunq6BiSg1h6!KW#ot3>3`gcXT?i5ei+dIItf`7!0G_j
z2k=oqzm2mdpnnBMT&)dY9hJ7Rk$-iHA2hn?h5$AOur+{B0@x&ze*jzLs9lf#qjS7W
zvoZ;PET?vkJ_D~Fqi=96b9=)=`o}I!6-w*~U}pe725>KcPXpK$z~z8`8}qXOcFPeD
z;IQ;_0DA)1AHWwfX#}t@0GaBWw2W-jSrczkH+_+6eA1Tz90=fpA~E8>^2_Lh(y{L*
zye^X5f1YwAfTIDN4&Y1x#{&2&fRh1yEi=aEsN*u>bd5iuPd@s5E=9k!>a9(6;u?3-
zKNxpP&fhLc@&WF%()<9<2XH}-UCHR~m#WO~8ZQN14B%1#FJfb4*Kz6aGj%d0S4LXW
z6`7g>xE8=S0sIiqe`nt9m>97=<$3_$%2ZY=F0r9L-`-%-P2zVlXh}r>K7iZgcZhcl
zUDjrY=XojmrvRP=@J9eY2k=V(_XBt!gDrqZ0Xz)g$dxL&i=*C5h?MKvfM&8eRnkJW
z=x+f$4xnpi{VS_-W&B-A+|)D9*Q)=PsHXw^6Tqtgo&_+le$sQ|3!+5-BzYOYUxxCx
z)bMe%B>fw}>i{YSQ7MQw0Yn5*EQsPky~%lk`uBwk1d*4~NMckN<(4~1bPzEl`3=3>
zsJMa#FGNz97)vY?L>x&`Vxv~EQc#H?Mwf~#NkyXZLEPw**r&5rib`o>86&l95akSB
zo}>bC!av0-2T>)6mO-=%BKcWD)gTgsDBI6eEeHg0|DS~Fw5&y5BZ!(LqRZCVwGE$j
zND`z<3HlY;6hz%1lEfkPbYi_A-Zt#(2hqUb4N2Z2R%sQRLXsLpS`dv4o4eeM?(;y~
z3@VL-Xc9!zATon!LFIpz&4Or7rHe_giG=M(i?<G<O%M}0Yx0HVVm%XOJMlin5|iT-
z+XvA>j#mi%L&yrEV-WL$SP(>~AhLrP8N>%c<OGo$L?EcYqScw`Bz6hn`9)J#VmD%U
zVh^Gu^$fyna0`i*Xd~K*jv!Wa*2LHqghIFS3(!rX5~Wa25MFYP=p*`xVk`#1AVQ4x
z3StmRZ{j;dG3Z0`ZV-J*`VspR-y@360Fr@0gnf!KIEWz>hZ;7+f_R^NxS@<7d0eR3
zC>a%Pk|m5M8BH7$#8^Wg7euc-$s3AAP6%RR5R<5jGB1e9LCk90S;CYcrjk!1PAASV
zQfG!q5VJ|<82Vh2VC!!6Y$c=u3#AD%HbTe@VQ~;kg7`Ox*Fh`|Vp$L;gZMg#<w1NH
z)K~W%k^T>2We{5!T@}RYAU2b)A&Sk@d@*YczAlLM2LFg;Ll7HDHW3e3`fu-!kAt|<
zqP5J%TZ8z7Nu8d>Z6n!E+!4giAU-AE6U1JUT|s<CvYRNSe;!1aa{7Y9eN+w*_Zz8S
zkbEiCuB_V}Wb}}cdYB|`WaLqjV?lgHay*C=;iQVKC6|Q3{S!_FaXN?}gSZ#OnIO*6
z;5zXf@tYvdlZgEVl8eMk#LL7hL0l!dM(o4=SmZ4#$?`3g8$sM8`HuM8%~rQaz9)*=
zZIV00yTl*lXg<()MffR*pQ-#4#4jWwK9PYW<DdJ+JP6_;^<RmPh`$+@k4b(H>Tj+|
zMtPO&4=PWI&*XeGEMJiP8N^FN`74OO|Hlt>eP!@`l_TB+A$t`ihfptsJR#%_K{oEG
z9ztYDA7Dj@QN(;i5u-_BLdb6@1wtrj@IoYoLx?q$U7fYK5Q;Jyu6(f&iic2wN_+^F
zNlJ!LDumMH<%wm8Qes(>av^M*SVCT`t6=CAL#Sl%0{LR97`!S;HR6zJ5j8@n8G>wV
zlo&!SinR^P@Rl8QLQsFx$C8P9T_aUC3rZqC{j<LNO8pQTNHm1B5E>dbZ<D+g!tyWl
z9fwj3y_mgdBZFszkZy1(u`ziQ;%_7Ly)~MJ&^!ct2#ye1gwQgC4l<>O^!p*LLTF3U
zI)oj2vf7ZJ>8wdoJM#9#@a>3>A#@6%YY5#!$fo{qQJh%jkPFEr=^R2Al8e>#)NtPJ
zA@m4g>4B`CM7en)+)QpET8Xxh{<#fFa)#gv!54x*1jX?03BfI$(=t<~65d@|itvV@
z88%W}AOyi5*a}GvGATst6+&;4cR~o?!RW*2yCL)q{r@-n-V+`|#a^h?3j;$K6vE07
zR)sJ)gdri!3So8#LqixA!X##wn?>)3@IeTpLKq&x2#QjNk^jf%Xo_QrQmZknq>ynT
z{pIoThCU&LiAHuw6(^HJm_kK5Z7RvM5T=vNAd1;c5;2|=!rTyEP3p2dgn1#%4`Fk`
zX3IiYU|22+K{mTyDCgj&D9N}uge6QWdNEbPQaP0_>bHjK|39YQ13ZfA{T>e_B(#t~
zLXi#!1hUBn1VX3*=^YXv^u7Yw**3c~Tj@=Dm5zv10VzrmMLMXc2x0+L5J3<WM5;9T
zoq6+_@BjZi^PD~R-1pwO<-K>O-WlA73E$4ctPYuLq^-(~%Vq)I&BHntI1ktIus#nP
z^6*6-PUT@^9yaA+UmiZn!{$7^mxmAYu$yBl4-ZSmZOt<d|G0f$+c@ypCc*dfusshu
zgzu#L<rz!g@5%!Yn`zS%QJ2daU+j7>F>X&D_KF#wZ07^^`Ij$fvp)}q^Kc{&ALro{
zF*v}wd=!0%JI%I!ng_0PelQPOi8$V_3V&g&vvf2M$MW!^MBMQ_9A6O~K-7)0u{>qq
zQSpg9oXj(BNPWgCNEtrQLxs1D`S8m;e8uAB;rl#%Ej#)q4`=dFZdKIjJmaH34Z0_v
z%|r9Jq;K<Zj&s+Ms^t*1duLS^lE@<ckcS^7+h6l=J`Wd!U(UltAse3=W%x<>&w0lA
z4uiks;ZmOQtRo*PW<FGc&tk9S;WsfzD;ZZz%JzF6uIHgghBeWS8+rJHRmj7$JlxE~
ztvuYx!{2%Mlfz0H_O?`T;jM&>60yvd&0BkNrMr3fM{4ne<EV`Fo)m*+zMqE&Y{@)4
zl0E(_Q_5qOzqIk(4$}q~MIA0<WWpAxGBfHq8#WI`>?mqCE@=P9HQMYbV8_cmaF5lW
zbP80+ENI8%OR=nAVY^YyXuHuzF?JNPBi4@m<r(AbM*CBz0|cH}3%qDl%#PxAl&~Yg
zj=GDg#@jLQjcE2%<Bu9IP3rtfLfo2c>?jlM`o`$2l6I7`Bgu|rJKlaXx{MuV?Z)3t
zX+i73lyY{%8|(dMwD~I{mbZhRK${A7RJ0o|#D1@pZLMNQRXaR(sCHDdqq-eE?Z~$C
z>LO~`(bkT3cGR@vRhG(*dUn*ZqqZHFU&f|Nwsq|MhDa%k9VxUKXFb?EgBbTXfp3(j
z(cs-7Ry)#JwJL3`A?wNUnIl&8dd-gdlD4TG4UA^7HnJmANJGI4!H4CeS=wNQsK$0Q
zVUpD;d@Y*F8lUm%cQZShi%8zWZk+aJ+0jz6C2wWN>%v<Lwh_$#tD=2-J386XS;P)@
zbd=<bWx_6YbhV=g3*6h<O$=z?-TuF0hQ1%Q&wnMn{eqMnJ9^nM%#Pu9^tN-Q5eyRh
zToz+y%ELOg0YduP(N74){&qa;X(M5t1MT>)a`Z))b+8>n>=-I#U;*xZkj&WfRTD<o
zG13mZ9f}<`7Ql`%V#C-`c8s<ozcskzd;TE-^*mOpUQ)q<84j_$Hqh#}<FE7%PC=I-
z>qSd0*zUE%XU85p_HzEWL$_nC9q-!Vr=Qrd(2hlR1nmgfG0BeYf5$%KEf4Yev22_n
zQ4u>T%ueNZOgIY0i9X(r2|}n$6f$^q)MO!3Ons^y)9l8*q3L$KDMMg};9NUq3Zc8s
zvSYT%=h#st+eVSwJQ3&HvA~R_doN~9?N}rE^PWy>r^F@ZzLwgt%#Nnnw&kL%F!hyo
ztTOp(4j<t;a(C$+;dxV2r&Y}4t*CW&Y~sG`SZ~Mmh4CL8%i3VaMt0n$+<2`sFB!dO
z#}=v1ZVp>LYpW#RZpStWQh8s9H=J6ibK(xxOH17;HoF8r5d6>%-U4Hzv03U2iP~q!
zM|PaB<0S2;rS7-mh#f~cZ%FVH_PZUQa{StHn1e2oI(Jg);7O^6>?jyE?rr5xFwi~0
z=$B)5{HUeQ+LZdo?9}6SjGt<dOFg5u<V39*62*IAU)XVquDc$&>+z)>U(o@kVcj%*
zZO3Wa2QVRkZ|pc@#~ly;_Ta1?-`dg2iPxPtXUBJTY*4UK!S{Cjz(J~@sbc(7{AkAu
zwvrv^?YLmaMLT}7<8M3eaz3=<7dw7ud)je{(}*2c?D)-&U+p+{E_K(RnUkh>;koCM
z7lp3cQ9do<8V6UljpF-%Wxo1X3!W)+yJ0s@y>Hv`haERLK&E%OWyhhNnSTlYQ?SLE
z9=2>7MOxkw`$glL{A0&GJD#wEzD*5g+wQYGh1)%3OU~%>fWvTE=eBy2M|N~y-kIBD
zJO1V5=50E+PLJBDSx+Ss=Jrg;b35ip{x8{m3d$-dr=Wm>f(nW#D5@Y@!HfINqrXp$
zQ7|mf_0)zodru54q##y7oC1An2BQiq7<aA*H)dN*L2(786eKAadn}qtJR4I%f`ZN2
zwnPO7r*tI=G>b1OyhC;_mBT%AlNF;nr4^%1V!ll-BSE(0fo$6=3d$?U5QVW76jW7E
zO+iI5uB4!{f{{})hHuJTy`pm!1;pT#4CYo{lGGFg3;9=z8p5x=+xb-?w5g?_w(vTF
zDGDq?QU&V?rU_aVqzhrHx(a^CwvljqO~m?w4Fnr1Sof?sqZ&yG*+iKN8VmpAUN)=H
zOhI!6egy#qEfiepncPW1X9ZabS}JIz;C01#fiC~qmDUQ{DQK@4S9jY8wp9?*_jUd=
zQt6<eqlo1Eb`1Z?nXn66n=fuC=&7Kq!ow=#Vo^5*-Gwvw^MjOZ1vv@^C>W@qmxA63
zauxJdjN5qwnkMvN30oU~-289tM^VA(Uh({hA+M?S?v%lckdG@^2Pqh=z^*`1Fnm?a
zsy$Id6bz-GC_t;!JjrUf0;kq)go2r?hmI5^u?cxYaFpO^1!IKV&bHBDRcUKnj*Y7T
zIav4EQBDO9-0k>99+&dJ?>V}e?S(oX1*#CQAQc}gC|nopc(oKo{!;{*xq?{=LJGo)
zap)LPFhj^#!Ep-4E0`dBq9ARa6}Ay4DVS_3Qxr@UKFw67D|pl7y>G|Teoy7B*$U<;
zSgBx@g1HLjDOjjrk%IYjo1w{Tsw6L9RB3DbaK`w>)(MXqEmrWBf)xtN?5fIJay*n;
z!Y;m*vQ$CC@3WUFSWchMv5|9YoMStCy2;V2O;@wu6}+QhEeB)A<TV^+h~fos_R-+Y
zZQf;6hvan%*0Yy$Y{v>`bvV$2U#O&GT<)2=i5|ky?LdqJ?<v@#V2^^m3bxXL6?`E6
z^FICIPV5c^J0-YX!R~-@W0xDrE)ky>O(XwM_-+N+Wt&nV?o;p)E34o~1^X3ztQd#K
zrxbjm;DCao3XUn*FsdCJ;Zx273J!4;T+C$f2vaRjKP<?gZAE%~MeA_|K7Z~>1)nK6
z!NIjW{XwV-kxM6i&K{o?^93_mo?fYUypm&UQ!wL81z#!nTES@r=M;RW7<WLvQE*1V
zSvr88`fRv$^r_Cgw9f5YHm}22e`D0es<s_5JlOtTF~0sx|39zbf`Y#k+*WW={P`yZ
zKP&%xEdLjlS;2J$Hxyh}@T-EW3a%-*qTn~hxR6*cJ9%o3amD`m7UNM{e)66-vVT{M
z+YlU9(PgZE&`iNC1%J~2J12jYn5g%P@7XQ6{k;TbRZOr>0zY$qhrQsj{-fZYg1<Qs
zszvehG<R959vLL}sVI0N`m@7LA1ZjHfP`DE8JUmSr@D1qDDz*=exb}af*DU0;{cmS
zXwMWpr`Nd*{zAcjCVwd;%7Fro|HT$`U~iQKniX;&)`349xamNg1BD$3I1qH8hyz6(
zsO|t9DCUssMGho5P+WMtVE$2SqVTGMEJjHON;xpIdZ{E)k{u{5q>Nw%2g;h3<s5iL
zczMBaf&Z;|Tv39R9H=a$iXd}-FPvCSc>Ymk4F_sE(B6R#BEITCV+WczP|JbZ4%Bhr
zNOj|aXTEWY0~QBT#WKx-`a-ON>4LPZ>p(q|zb2$b!43_CG&J=L5|d{-usr8~>%KO1
zpsnc59Ju;nLUZ9QOv@|>S_*F^_`0dLcA$;PGY@uaXY%rqZXF%y<bc-!p97sm@9)3>
z2f8@W>QG`=2fB&a-GLl4RSzLO1+xXY#%wPKdOOg^wCU?Wu5ey@WtID}Ple>;K#8(D
zFi6N?!66O|bzqqAHyjw{z;NMAK0?Sy2W+Oo#h|E<cHnrF(VJsL&og7W7e%;3&}r%}
zA#MjeLR3@#Ofu0N&_&rNU&3OxehGe%V+%PDcHkWc);bVzV5|d+Bx;<Q!<$0JJ1{}W
zMDhPgX6$4KrU;)ZI8AW6AW!bNqZz_UW(t`lINO0arasq!dBW$L$^r)#3ZFSYhY1&R
zj}9ymWvOX1MV8TCM*k6Ih2Tmvc9jFGP5!o!HG*94`dtUsIq-=C2OL=Mzy=3)O4LTd
z9fF$#x$DhB-V@v+xYdDeX6*Y8Y!}}Cgi+IZdkx&>zy}U|DEfev#&X=;c1v&%XACp#
zJ|Q1DuwTf>rk;N>{8I<Mao~&t2Sq>Rz+oXr9QfR{JSyZE{lrvGIB-(<XQsl%#=kK6
zDIs4v@Rg~2?Z9c_`L26b_zw>JDCAoQ&I$QWkhS>U@xN8k&YQ}wLM}LP(NunN;Ai2#
z2wpPv%jPg)K35$0&D5_7xhD9#;B^OX2x%d%d&_}89jM_%O(*_x;5G+!vDC6o<2dJz
z1NR)b@4(-jxay?dr6=pD|2VL6mL+i5QgKlx|4kk^5amPxCwlaWe#n_E+xp0X#}51}
z{E6Um!KV&96VhgUNt$tcA;JFyUkWmlf=)y`vFv%Fl1{`pQOJpSr;#nUSSJdbJWdGh
ziwG%d>cyNWZgP9C=n}#cOeHZtc%ykKAxWm5ETptx87Dt@9namB<F135uQ>5Vj*VM+
zCn}h{qL4~XR2EXj)T;`qCRkk%PUHBQ$zNsWtPx+ra^i7DquNfq=0trb>Nt(dTq%Mi
z7AI1jNOK}lZ_A+7iFApo>qI@%X5@nC-+Lr7wt*83oyc^evC}wy&TyiUkpKJkZa!%u
zVpFH_E+oyk#l%N9cVfWvLM^07S%NHEOXvSqA!zMH8z;VY<Fp%XooMI8CMPyK(cXy;
zPRw><juRc7=;Vargu{u>PIPgiuM_>4RkpRO6W!?&!n--qWOZYTJ)OvQqL&lBorvn5
z?CO%tqn#Wleos#4G4{r1)%!T{bZOPpPRY4W<JJR@CvW7~`b*gcI5CipF{II^rzwM+
z80_Rb`xxcK5GRH@G13W}6T_Ss?!*Wuc)+vGVqx-Q(Zh+X*TJW`{MtLYqqp&R$!I5j
znjAgGi9Fi(N#x?66A}}7cxmTe-iXe~F_O^O>BM*^Ca~R{a692KTPfg#D%@)-J|{Gj
z>q7iaL|PkHWw`~N2#FXLjF^^Vofwy|h~-2lCeg>Xw=GdNZL$+noOqM2=)_c~aXEUL
z6VC@FSG=FXwwf-f7TvA>XR`H5+1Qy*%woUvO0Heq_-l*nWh=V4-CQT;(f6EK<HUR?
z7H~{CvD}G;PJE?jEplS96IFWI&TcKu*Gu1W8ZWm#i!HrG2>DVWje6NuIB{l1pH-&5
zQb>n|G1<LrtJ#3PY&7QfjuY=Xu})&w3eH>*MSVRzs$D$E1`#(3GFZ5L+<Q)JVXwI`
z+=Z=9Y@<iH(8-1Oo!CzId(GOyg&j`pbfSa{2`=n%;sYoC<TT~PhfeHv;;a+jN>l7{
z;*b-EIbgS>?iJkU#79o-cj99wJ`v?0jk%_c6Q9zbXB+QD(wKvYSgTnE^&>LA82r+S
zqfQ(X`{PcWbmB87PS82$M14Fnntt**hqlC?VhbxVd~_=R(>cta<SPywDb;BwzLDXd
zf9d#)(|BGz|AVLOrgKhw=fw9?HWq`|)qil}S0}DG@uL&xow(q{MakzE*$bzUpPU#J
zANMo8y^NJtin!*_B_}RR!B{F@+-3=B_8Z5P6W5)%Dto^sNS$|2cr~7BZ%E<)aN?#D
zw>W9^P2nrmG%(&txtVg?i91fjxlq`Jzn!>C_mg7q9RD9D9tpqa#C;(ToOmetb5UHT
zWvlW!z+;X<iG9MpyOr{cB@~-~%NpMxe$L4xyEqHX8!P`g@shKF%a|k!xKPlA#JNU3
z(Jtdk0?*y};o2A%3b~B)IDVnF_UZq9&6Z7F#AWm&_xti$p`tEhN5x#m1Y6u?EY}k+
zc^3M;Fmp?Ep`;5nU3k@nQZ6L9P(dtdoGh8JFW3d8T__`|%DPa_g;!iC??PJGC{NM3
zQ6%g>Vnr7!N%G1rBUN=5sz|D;g3Pm;%eaa{!XKusA$am-!ubLzwO9ogxCl;Nv8m$%
z+l%f0bh7bqmqmE0%W%{**@acoGRU4C-W&C3;6kPguZd-S7aF)Qca5>HhGva2gs=c?
zF|J+A%p1G-rZ8MFiA`O``b*6ue-^B{3-o-hE0yI!OBZJDZ`8_#HZHVvq4hTF>!P$4
zJheHdoroO-+Y8cuYA@Tx{f$UCU3Ye&s|zFEkLuzwX75jyHyv5AT{joHyU@dho-Xuv
zVSo$SF66KnF66q<%LOjK+?xi=WB3Kbw8>Upyjs{kwXX|w)P63U8J;-pWlEt>j1y-*
z*FDgMK`sn-VTcQSz?-M5bO2ti8S3J~Xvt5yC3EJdC9@jg!blh1bzz+gHffMN7wj&)
zA$*kJks6lKE)d5EF7IViMAux<U2q6@3c3W{f^2G!3#xFhsrZCM_buUfA>hJd7tdi0
zR}8u^*@Y>>LoS4cL|hmvWSrnc7sd;r{R9`{_8I>glm1Vs89i0_40eQ&X)a6`@}_Cy
z>6|o6_<U2DEo6@1T)}y4hna?-a9beCLKhYZ8C%SFH=NrN7p|up#pbrug=H=*cVUGK
zD_wX;ELRCK_H7}nUH{+rTi1w^|ES?w;Su?)>UuhW8$I0E;KD{1HgR0LaM6XITzJog
zEiRmQ;R5G>N%El!yM=5Md|z<8;10o^{1*`NfgnrLY)8x<;hzcabzz?iAGxsKg`=W;
zY+4?4;S-Y|aN$$oH=>O1(jF3iSn!BxlN)bz#4!mTcj1JPlV<GZnNgp+@P!0V37&J|
zOBcR!;cE$=F)dFE`9|>UNTaFG3jbE{ug1~e3He^|2f-f&X*r>0^p#PTx6{+c4lxq`
z?7}ZDSlmc;<B|)PIa|6>(v7VHEx)?(z=ek{Tyfzy7p_VUf4Fedg=@lpH}kwM<c44{
zD)E+(zXksk{7aC#yY0dq;fIzQZyDSb{*M`Z&xQNKi@ssZU5|wS>%tQk9-B55mREi1
z!ZS|bZp6Cr+|&!W4L5t?!hfQ?6pRw_j~FAjg2G9nNlgAxtkDQ@5-cWI*o`7WikdcU
ze=}@~yAdx+2~$sSqfKig=TfHfijX8Xl1-(wkTQa0-6&`3oYTs?Q9*(g-Kge9bvG(W
zu(Dtk!K#AX#bJk02Dnj6lp3a9(~Vb6e)>cy+SHa{9l;dAp?#y%gxnsI+QJR18|f0P
zE7(Y|o*S>ZQQwVD-jd9ufrumx-N-OGJ%>uB8;#v)!qOf$#(q<YZD!gu7qami<D<-3
zZnSixl^d^%*j});U>m`<g6#xppFf#&aHFFro!sc`Mi=2-O`F8OjYn;}xzT*A(egdr
z$aX_<!{J7b8@<GAxEsCQ=p%fH8(c?vY)#AN8gaR9^cAt6V1K~@f&&Ey2@V$QQ`4y3
zP~jxQglw&Aw7>{AMw+@!$Qy2q5;9tFj2W9J#O}tOVMg~k-Eg__fg2yX;daC0#sW7M
zijC^VI5U;k4WDq$RCG7|ZUo#2iV_hFnXzFvF7!4=(^yfOHZpo}yzmKbOmt(C8<QnC
z+l?t^syBs9bz_>4>8Ad;Ux^tepXtUdljpw*G{=p(qRbPVFPPtPi`-c3HvX))xbc?g
zY{PfmSmMS~2`+PEwUFh4D+F28m2Rvu`Dz#~{I(lwM0rPWtr@#7E@7SU^`^2x$VN9d
z3E3?8o*CP5xZxyQ-Pk6|`=-8K$PPDl3fU#N?VizYyWQ9$!7ts|>&8Ae4!LpI4OFxY
zO0az725&#@7Xuo9?8Ya;4+wrLc+iaPUo`HB@MCV{kMgMSezBGumr<(Y5<KC?Ng<yJ
zelGZhAZ<>$`KYR4%<U@?4-HQJ#*H&<QV*8#{;wO~x{>8UOApSu@tvCwile*--@EaH
z8wnmHdhnwg=iMmkK`{?5xN*^qzumYix&7qEpKkmm{Aa;m_%GnbWjB76Aou&b8&`z?
zW-3>OT$4)Wm+iVJHw6E1<ECkOi{-Cul;06+xy|96ZHdXSkl$gk|1reP-7WvPc}ENn
z-5|dwc;Ah6iI%_vWBHm#%*w+xpo~l&yYa6ZPuzHF=KoU2GyV$*d131R2`L_%5aluc
z6u1@eprG(*!FEH8X{3<HSk{IlR>U~L!X8w~u@n*BYgH<5JQepK-h&xCtG>8A)HqAx
zo%gcV&8{f_w8WAgl=5IoN@`gTk~~QE7}re7crfehsDB<>OG|J?apPr>e5ITiS8W}|
zBo#cU=s`^nUiF}o2bDd52j|nRg-?{O;=voIbE<i;pix#;4?e4B-Pz0Lk4dU7dN?Mj
zh6g+!w=Qh=Suf+hUM&w&Jg|6-yMeU@>v%BmcI>4-S*aeRdB9azd2nv^Al-we9^>qw
zuE#i!Xy`$Pka`}x<}pq^>U+?5x$#ZR1|Gz%G8T+&BnC|c8O)@C@cgqFDm*V}CQ5U`
z7Lw2KZbsTx9=z_sP!EQAjFYL>9`x{_rw463XzM{c588Xs#e=R=qz)eJtdrKsgN`2K
z-slf4>u+mhyoTAC8Fn&Wgz4sit#fk9fvE1%1w6vv8i?XeI`&|;2Lq(bay;neL2u#I
z`+CsF<hdSvvEBGo0k?ka8dK*R)&o5lB*DQR3^8^7@9&lOA9?&g+ym7EuLmPM7|CLI
zxEihX!A7fxJ>tPA4@P^C^;%OZ4iA2)-*k)zd16B|yAVb2*f&wMaeCk~W8Fd)d=_=S
zUQ-(TJkUIt<iTVQXiS~<x(9v_0v-g}tsSzcjPrmPlC)tDB0|QRc{1U6;S)?{q7de`
z|9b2cI<p5eJ(w!uG|6hZa3*|{UiVp4e(h!nU*N%PA#=oLuHZaDn$0&8k}vdNk>p0c
zSoF69mk2W3<sPi?;3gZejCG|4t33GFgHJqI?J+JEz3;(xx{wEJJb1^0wH|EpU^9om
z2kSgo@4*J*C&qo@3yY%o8J&XNlKIvc@8)mxfG>~p4Dme=ws^4BgKZxCwzSl$d)0Y<
zUGuG|OC1dV;cHpjyCv`N7z>&1A`02b-Q7;%^!}j-yFJ+F!ABl^^H$Uz8N7Q1J72c)
zI_KY|t$bH&zXw-4B-bxyxahW%83#Q0ls)CaagTB4JK?L?gB~2>psQ;=?7>kF>Ys@B
z*0mn-pwMxHaEm?>f5L;4oQ*xW$kFY==bXts_?9CpnDvDRUwZJB@Kf}J@@ezhwfWkE
z)2viN(!TO(yp;Ei2WOb1X4=oA(l)hgQ#qKm@OUG>F1HWq=REk1^FN)Ce+2t7&wDWT
zc%xl=;x`>{^dnujLHY}%Uu@Ur^}6XlaaeiKd0*x=4}S6B66=oiBbM~bER`kwR}ZcT
zVRDw?H~z)Ents)T+EvoVHb^J0inQN7xbDFXI<wmDYWcJdmD2w3U{CF|+$v3px1^W<
z6l8b*<-u)}FX^0c*Moo9?_Rv^#XS%1(+yM{Q1O7R!Rs3;YN~kX!6OeId+;ykA{B*I
zV-9)3nOrrz<*E1#$ul9(rKeta@ShM)xi3A4QjH0@fFOyhXnM4Y7}dCkUPwi(YCIW2
z{Yo!epMQ-DcSTebRZ&jGD=LbqD6S%&_PpHG%UH$KGqD=6geVDuj7n5d(&VLtB&kR?
zmC{1Ws3>bHRX>O+uNqe~s;H={qJnS+E2^ku^2#b+s})C)^ZA4GrK+jM#Llg{5C{(G
zp8l$eS}MXSA}VUD#_ZidMMD*JRHUe|s7O_jPU9+>yoiw|jbK$V=A~uXRO9`}WA+$E
z)m2fCyOY>~fu{9^d^#YL1{o?EsTiPQpo&Ztja9T&(N0AZ6-`xSsc5O987te{c4JNF
z7DAc}&fb|xg--{yQn6-9*VgRHZ&P1a!N-T@|I}#nxF!s?5wTeRtoH2L_)eWvbXL(p
zMMviFUFy9JT`AV?ZR?_<tBRgt+_GNQE600uQ_)>T4_e;qu^}_3b#EI9b>^8ZW;rUZ
ze4E-!MQ;iA5oBzxioU}83HBG<w%jP^AQgkzGAi;^6l#&xV3+Zf+7K}qDmYBVa3R!3
z2pOruCgcslQD*FDAsLlQ+EpkjmRIVbs&Gi%U4l-*)Ibxq#)wyXxY?L5ntN2__O=~g
z+1V>ed@3{*?)6=D3HpT}8Qz__1w;u7h6Gupu`0%?Sgqo172{=e%u+F1#RL@-RZLPb
zS;aIJ(^X7SjaxQTrI$H&$a&+2ef_2=GnwShPzGm6aMPC=<g}TiVy=pXDi(=8PsIWu
z^92ugH*#P;%y6-aw^Xc9u~NnPGMP(MEMp<XY^f-;r2cxX(%i_ok*rdAbuN<z4D!Hf
zjf$PBv4G?|D%Pqf-!=7J6<btnRk2RRdKDYQ^1VaRn^bHR&V;`ljM|*93o=M?n~L`(
zxI+c)w+m9|HvQj>F_RNXcB%M4#fK_(tN2L8eieHp2^Xu}r(&;)7G=^u8f+zU5lf06
zOAF_>8<VdeoAD_}u8K4-tX>>qT~s_$@mR$X6-QNktKyuBV=_WF^HF~l$5otA@mFp#
zpJpG~EBT~~8*jB?R-dc*Ld7W+U#d9GX^OSJAN!Sx9UYUuR*i|V&tBsIX8*!;=JVRU
z>St7(RgKHq{2z4pw(*eQJGQnX{Vx%}SMh_2AKC0GuBrH4#RU}?IXYDQMrW8*;wKd&
z5H)Fd^v|3GvaP>x7s=L3f|mt<6+C%4i+W^8^2tugSGmVd#!JV=^wjGtwu(Pg+*GkW
z(YOnc&?$M#Z&h!p_)`Txfyc~?hq@fhvGVb!xIvcND(<NGTg6=!_f*_h@ekW!P4xWA
zNzorijV#<k>yYt41s@hloEiO)<ExA{Z&ns-SKVs)SLV+uUSl?X!Z}UFGY-kuEis}z
z7tY`dA^!=!RJokGVN*b`pdf?MUbOCDeY0_TAunRRi1VVb7iGOj=x-_F#kvY{@m`eh
zqNwCtOt82hcg_0(!~_W@2__1b^rDoI8n<HePluBwSlWv+rp|=rWG~#&D_)crUcpo<
zdQnMuWx<jy(`i=Ki+#SdYF@mT9!FB$3wTk(i<+V*MhZ}TRd_AI+JY48c){C3B-|`s
zqzYeG(6CSUqOKP{FElUedGQ*X#fuSM)c2x+7cIQV@}i*^8D7*W*}2z(CXKwv^dfqG
zm1bTv_8OngY~n>zFRC^yNzSiQ61nm7m%Jg{oV92ZHLbU;r5CNd=;}o`ui>|^6Hgd7
zJ6d~jx^j1JZM<kJyq#csQ}5tKN0WCF(%FkHLe4f%XTt7Y^zfpO7r9>a^cw$q^u`=7
zve~Vn5jm9_omy;tr?;(_7rnh8*|H*?Sbu?aUvFDqR+&$MdX1Ov>0SN37~n<!3YLL_
zg9HZ)QXJyNP?HbifeLq2!7|cooTKsXiPH<47jJkm%8SunC|)?c7~@5r7j_0aB(uAD
zFIAsp-1(&se>Sp<_Gf}|H{q@7M3)z5T3X#+c!Ye@+s2?O+{<Eb=)<7yh2M+0Ud;0%
z;6>1jsa{O;^6^5WsY70br8^>C{5GcKI4{O}jZc&^YDV4E@m}m-l}<i^?w4(y=*1)<
zlLe;;QvauYeA&#@=@M+&F6m7nGX!UvHnW7x_F|5Z#phy~aK0J)mKTTXrY;a%=tbhX
zri;8-EJ5mY3>q&H<E4VjyjU(|g_*-jFIN2@Pr@2j--|td?Db=<7w>xUg@#ia)_Jks
zi|bz8@M41(8|hJu@?w)0o4q(m<n#Yt@G1I_*k}`)Z1G|%n@CUH##RzS{=OI6h41iU
zNAXl{JH6Ot@(;ZDQ21_B+2h5Z?>D8{J~M~adg^{JKK6pQmOk-fR!i$)!2_avDtM6p
z0z!To7DKZm!jB3b6Qp=t$O*v(iP4=qCVxi%(HoCA*71}VUwZL_7e9LOl^0)o@x2V9
z7ZYMmdvVr_Z@u`2uHwb-FOn;S(&=U-=e!7A%>2%aWuNxH)!R06UUU-LFp7gNYg^L-
z?#Ac6_=V2n1^ERpE_(5k@So{F6B_@hH>OT<*^6Jjxa!3<&S`h!d6s>}Yh3Z58~;Yf
zUK{g#eVbO@lDWDOFBJUFf+bsDAJgU!FK%*v@S%whx7cW$qkMSPXIyId%ZsO8JoDnV
z*9hKWZeHB=;vWg_%r)*O_PA`kta{Ij`$l0h9|%4ad?ff-kWv47@kF>$o(Y-Hy?Eh8
zF&~Qi@Shhiy(lO<Wo}VE6cAo=Zg&Q`_3Y9%+GjiqN**Iog?xxL?c;nXEWC(dQByw}
zNs9NOgb&qxsP0384~afhG-FHpP}+yny)sIPl4R=1KI8k6`TH#+Vp+j*g0Bdc7px$d
z|DpLxK2(+<6IKyYl_ivCL?OW%W^7s2cyDO-z^=7?s4ZfBAL<B6^TFyviVqea7VS((
z^`X;4<9+R5-wwodAL{y0&xhB1DF4XN|L=XJ;oGD0-@0nxLqi`jn44sn$!;xeJXU%}
z&)D}kq0IZy4G)xP>O(UhYG|mbp}7w&eCX*zwhvi8wDh5?By8ow>q6T2&|1iZu<^1O
zw|N_yw)J63Afuh=RNDK{L3l?~=_I7H4_$<GooGCp*Ug9S?C$N+CFdBy9zOgzFoPt=
zhh9Du)lf`BZy)+Fb04PqkSl3jKDd48>q9>u`inBmhv7a9@L`|?2l+7Ahao<+H+${#
z0&znnYU*O+8JH11jPyYf#pc5sK8*1pPlBU-80~{UD(;_mhS0LZa>L#|(5R_h491-@
z+}lBy;7;E(9DZd5V=Q<imP8k#3VMC;`Jk~i<WXM6eq27v??b?cpcq7a80$mGhp+_4
ztdM5eV&FI*CipPXhjM$9$NO+Q&u|iMlYE#g#+GQKY-@Gv>|$M~`7qswuj#!$yy?RX
zA9nb#(}$Tp%<|zKAJ+OX+lM(EGCnNvVXhDJd|2SaLdj~DGig5ieQ@H!F725oU&LD^
z`eMO^gY6GQ8TwKQF7sizkV89@SNO0}_!=MD&PlP%N?FAMtTI05x?1$N1*a6v9I!Tr
z;=4Yq6J?tZ>wVbZ!)71e^MRkHW$Z>DHc4#tH9d=+>`aB*79Z|EFSk|n`Lk2@H!|A)
zeF<(CtW~ee7xS}r`S5`c$9*{A!-qcX_Tgh6KJj6X4|{$1$cO#x@t8Q4bMxw$eLgTr
z(Q*BmRgLz>!0Ecnzym%U^x=?X`>Ehcr_t=a4j9A#uqa1-I4Xq7G4@fl!6YX|`P|e$
z^Pxgz!z;cJCGKeQDIXm3Q@-@!E7OM0Hh<&88Tz~rfBA6Mhi`rO&4;T#ob%y3AAa`X
z7azVC`yb6zKltETW;DxrA1;VE=3S#}E(-ri@WjrfOQ!u5A1?dws{|A07zr0AW)Jiy
zvhS|>@VgH;P0Q;-{_x?3kaeFM+0tE~%t^W>iu+|OmD@ht@!_ct&wTjXhr1H>$cKM?
zxW}II;Q`%DdUJxfF_Sd7R=uh>=^^XYu>(Eiu_XD|hbKZVtTf#C;>-5WeR$zRAq}yb
z(RBZD&eu>-!%H8cM46^!T+e9hUXZnROH#CkR#9;=8m@(`-xupTb8gC{pfPpCX(%kl
z^r&BUCa~~DG!*G$V|N$V5U-({hUywhhz;#INhSzS)KF4GDGf;)Dr%^tAz4Fd4dpbv
zqM?k2vSP-aGF8<+wxbQ&-dvL6d^5Vdh6)mOX|mz}^xJuJQYxGIR}sR!R26dTWuxvh
zxI#_|X#ab+w0WgWzDe<_hFTi-YS^ctwuU+yc52wAAw`2l!wyNCsv%9oU=2ew<B!j(
zp@oJl4e1){YN)5-H4P0lWQcKn!3G-dQI=qV%UUq|jhIFnGBq^T(1iKCQYt8(&n|AN
zp&4g>N%CaA;Uug=rZn1!g()rB)Ecri<Y;(ZLu(D4G<4R`MnhXk(owLThV~jdXqX>w
zcn%w!nOwNpmW08JGQ)S#&`m>k4P7P4v+2DVwX}Rx4-Gv<39ra1Fx4nPuRgY3ocu)`
zprMb3T;csS1S+GihJF&HrDt#ZKb{+Vq`w`X6f;otL4pU$8pC#|hG80}YM7>BxP}oL
zR1IDYBQ@AGjM0!M#&2jCZRR<O<yo9nV7T!o%Xh%-8WfGMjKQVBAvU&(d|e{xJ%{0P
z+}s*G><;mbZtjc{%TgM@+rg(n(=b-UI1Rc6zlNZOkOmHi{8Rxp;GC4iDMk)q4H3yX
zX^GKpF{_){`q;*6n4n>zhDjRkL>rEmKTncO7Grwj_DLyIgeRBGp043d4XZS))-XfE
zObrV(EYvVd<Lj}Q$F9*ZN5fqD)ehq?hTGm=8Ot+_8I@a;=u(E0^i5f$VX=l~8kS4W
zZ)sSfVX5#cnTBz#=k4<?n^cHeA^J)U91auyYvd7ww>7NMuwKIk4eyA-S`F_C2}H+n
zeqcq`Y54I>?2_VL*<2enY|^kr!&VKOHRI)r_r$p5)XaglLEPiSokm}<zWi(6CQ<JT
zZWp{AOyZG`wlm=a34W+yH|stoW8Ilpj+8z0w~B@*sN;-3rjIo2*Kmw`5#x_FzV3}r
zHRA*8pK#Fi&0rFrFLB!T=z|=ja=3L!!(lOI@*_fy3Lab?b3({T4W9{FHqpw#PP5M?
z`06ghGr!dE6=xD1uju$%!)eYlI+ApJqv4E(;yTh^rkvIAt%jd8{H)=ehVL}|!1mGb
zy@sm=!Mh&3V#DX(iZ$$#J1F_Qh6|j{eyPs8Gl4#~i<)sQg{Q-j?QM8N<QEM$H2k6A
zl7`C~w*MSEv!mr#4OcY$#tC6<D!1Q-T;=>Jq+d!J#p`A)Gr6hZmWC%9o@)40!(W^M
z8W>MLaJ#MH0moyi<&Nz4Z^65QjQvN$J(J%T!Y9cevM~2kxINPF*yR6ec$jOU_)Nod
z4RJaO>v*BzKQ_XHlt{c~R!d9Xla!YlqICQiwiFP2S;9hIPzRrOj@A()Vj)55u{t{3
zO(ALVG?q84i|8n-qZrL@rF40e^7#PEp^3&<X5w{}(D`0DAEZY~-MGQTvwPlGVjIrw
zW8({nJQZqosA;l}FIQxi(NUWDOv&ZtQ(mAbt7Bs)3%9gNmhw6(=qThztREG1RMK%t
z$7LOrbyU$YPse;6RdrO;;n3mKQC$agWa?<FqlS)}x^XR{k>IOz107c3wRF_hQAbCL
zZk!9Jif9o|dp^IK|8+k`rR#W2M}5`>QFX<vo^Tp8kYGa{ysOJpPs+w+=*GJe`9Ug7
z!lr1Vqdgl<M^hcmbTrq|LPskduj|N?c55m5(2~oiFcp)x7M)649c_g3>0cIxvF*&=
zb=1*GM_(QN#Gtc|t~$C2?_wrl4&8<K7VM#;r;uzx#^wm=rDHKK4~p;g5hYiUCFw6U
z8meQMjsZFb>KLSBuoRf@9rFQZB1<(yl>CYh*D+d>kI*qvN^3K7dqd1dNszni+b3y^
z@H|1gsVhRx7m0J}aO;?^<4qkNNvrGd>)7&FiYhi<L7$)|$T9?U1a(Z%F;PcI=Vgum
zeeE=&W2}zxV#d9Xld{pCZJS?r@<|dqjZTHA$-<}Tm@1aE$+u*E89PJDLq1E$Oz{c^
z*-f*>k>==_D<t2S7U)>0W4n$WIu^0P>Et>#aaff|d`riA$z+L+rLxmyI#yHBv0TRr
z9V;bvl@#Ou%0R;1t<mwW#J;0rtr$?uk6I@>gRIvEld~|Jh4<`(_jSA{e2bKGtMCLw
zZPSf!)aLseZ}#ofu}jBs9Vc|-TfK$iGd>W@52dKPb?njk!YTGi@F3Ib*smkMoF7Zh
z#mYv1DzTsFI3Q%zUZc%fFybLG?lP&*VI4;#=c8i7sAD=8GBP}qe;FrrzB++P0pkz!
zGaaAn_(I1i-8huxqxD2S+yA8`XYgwsr#b)YIHThy5!nuBbzIPKQOCEUoYV20j_-y4
zXxjWBq-5)u^QJ=1ax!^-!~QJ#FVb=L|19jjUv*s3@j%BzPINl1>i9#)O*&gm%QYRp
z>$onBzy`0El8~Rz4IO29pSNb(EggUA_)Eua$(GHY?=5#E__yHnIc;_nNxLhY$^X%D
zPse?6Q3mtvADOW%>SG=M>Ug5#sfba2V{(3`<3AmI0_3@fO!dO_SZ4Cl6btxK&~MC{
z(M%<ToG!tQB+ie*emMPb`BB7=qJA{+qoE(g{3!0ntA5n-BVJOK_H$8sBcBp}BnV0L
zqog0DgeUotOkMIM($n&5QPz)gVo=qOSNte1HkAY`h+a{UNodbhl_ki%RPh@FmV{e1
zKdMU*5?e#CrfEqtwnl9~Qlwexh-H3BEPnh|BrVmCG(W6<<7#<5zu{f!!uhOwT|c<I
z74_F7xB7xE*>46d{b=JyTR$@WXzWJ|KeGI2;)lPO@$KWYZ&z<B_RR#F3+9)(rSO{1
z4c}m;TKV~j0i)?!3+DTFJ3rb>fd}}}L3Ea+j~^ZV=;TLdKf3sl?MIG8b@ij0AKm@N
zUt50F@^{q3kDg-ie{IFsUSif;^!$!s`{er3S9aG=+N8fAb+*qyKL+_R*pDHS&>?0+
zCHW{nhWRnvj}d;1^us1%{#?ZBu%Vd48+0DCr$+lRCf`QTE~p6R+vJzi?T5#YnSRXj
zL-oTe1{3^T9KdL$u%PCLE?sFXiF`A~??*uNpkPRlI_nz|cbfhzb*vxbL?17hU-yZ^
zmnLJ9ACvu<;>T1!ruliP+}Iawrc15gluQ`R&ojTAv;COk$2+_f@5fv}=1GzzVmaTB
z1%52_gJ1Y%lKn|(i~JximRKrp{r~)MsUOSySkBJn$CM?L6@IMrW0i0kuNK0(aAR<d
z86<yK`1^ir_hX$O>;2eZrrIckMcpK1vmfvIu|=x0)sJmb0M;l!Pa->Ohgj|w-08<I
zKRyutq2Q?N#u&`E&nNr*_=tWOKu!Sr{rK3A+kV{f;}bs)`0>3TKlt&f-*_VBq~CZ{
z@1P%t{5b5#5kHRkaoi8y-{jLu+>T1Y*7vbddDbg>V`B6PKR)O8eI{8yBk|)4KTi2^
z&X4c>_>#@#NUs_w%{;#n&fwQVPW$nVkTZg3&Dd}0(xu~e9L=KTfj+i+=i-0pWBbvM
z^M2f9%XCe=+sAgnk6-<`;>Sfle&QtH2gS>RzX&pT$&UiZvPifU&b9sK$5lUm_v5-B
ztv{`L%@5vg=2~!k8ix;)uwFO(m^eK84|@Jf3)i^d%>u<^x#dTmp7JM)<VS6%b?L`l
z7mUs*5wZTwy>KE8plksD_;JsVmwq1K;65G6k7t~C+t{AuSReX9{MV01LLLiJ`Mp&;
z;u8rz6}05qc#HYDAH)}a{3m2k%XSRXvOoYu11J_SVhaXv>eoyzz!ww1hwHl)5|MhW
zkT}7@0TeOymXdRE2_^(Et5oUu07{s#eR6GyCNCL4DU&A&Nfs<EIHXz0asj*&K;r<K
z1W-PJ3ISLGNDZK30F}h1W&o7~Sde3_DnXJe64bZGu!PkDs4hA=myN3-eABRK246Mx
zT0&|I))7n*oU|^U?T{wCQ2<sU>4J3y>j}Ol$PDWT&_H-Y!3<OHu`WI{09US!8#8Pw
zdh-BU1klX1`TDIW=8zS@LTS2|0kjI>b&2g@+O!U!jmg^v&`x-JQ@ORRM@QkE0_ZHH
zi(vNvx|%lK0+=TGb6-6I=qbAIKqiB|0_YvU$N+2s^a&t0fPn$yFQfLF27LqQA3*W3
zrTPU>b3uP@>yn!e2;jiJ?tPNd;)^$>*`NRh2QWmE3=QzpHbz=*!-O;sml`4Dhumft
zCd9lEz^DK`0jL3t4j^l5j1qt&fH47dc$AzMfIVQmc9&DVBsb%hu>@U$3^s0)L3B%S
z&IPMC0AB!OC8z~(^iZj33oJo4c%LXefP%9ue!+lXTza!m0CRt|hS?MgERg`dZkWbx
z(G3gV`x_^j+;5XMF~DO>Oc;lW<1jhEyDc~$#)UAZGF1S95P~6058zGqcn}SPn2}$*
z0DcT$CLKP2*#XQ6-~)~q?k<3N0W1w*ndCn|0PUG&F}+lR3j;V-#>#DxkZonGZw0WT
zS^AOy-p{plm}Ma@rxL)105%4&GJsV9yc57$j))bO)d9RM<by%kXLD_9gwHF~kx}o`
z;nORw3t)W!<B#;MQLgKNC6@cSwwlW<rTf}8vCIK%<6Z)IFMurpY-Pd9MlXG(>$S<2
zwJR-I*HW1YgWChx5kS4Zwp{`23}9bOM_2W(<65RMtI>Nb2ky3@{q6wv1n_wPUj(q1
zHUWGbz$fg`zBYE&NBj#20AF<2T(sk&A{|L69$;s&$^m@J7Q5ErptQ#6?5>9bI2^!(
zz8#MQz#z9kz0BhQoCx3~hs+ks8+~mZJ9muqwKX_A=rd6$_HNbjQ~+NF@Ld2$`r5u?
z&oaXR){V((wZn2cfHMJ{<tlIiB(&-H^)}0h;Rc?q*mdQ|jw_{*=h!2iy3+pp0512n
zJ?U#Bo)6#xr=TFp2XQfgp903!;FutO4&avn9tFV9#a;>+$A{ehU_#-)3SJTX&5XSo
zz%}8&o62<|H<&++BS~&I1GpvPpMrk{a9hY7&htWO^Eb!-?5Ml^7vLbRn|_a-yCs#6
z-w+=J@KDS;*rGeyqWAB%Jf?ea-627yeG<S^F?hzwT+Z>I2k=7pe*wG{5*0+j;QwL^
z2yr1QT1ftRT%jOhgGR;Uf+#AauppHpL1T9$+=>NJJjit$P(or$2Dz-IB|&(iAm3%6
zSt-#Ol_VrNh|;D~CWx}a%L&q$W)*^{7(~q=UJasB5PWC0I=h3%|3Op<qN*qqs|E3>
zLK3&uDG3ZhY-m<P2phas5KYQj(}VbGZdC0c>PRpp2ul#D!dursvsDec{u`eb#NA^}
zt%6M&Sjp=KQBQ1M3!;7ypEtHLE7~{6NFd1wqEQg@f|wsfW{?jjqh}D=v=183=`|0c
zg^;E}G!ydo)mZ9TtYZ+}g5bjst%7(xh;~7=4;pXRwhp3A5N(6t3%R^*#wT!U5AVXG
z1)e5<dpEvA5S`hcL3E_qYt~LdB=oZtdC(%eYO3+6$7E|)mN41+KsC;tyG#B(g2rPQ
z+}2NMk`qL)ASMMdIf&jt^a<jND=ikgJMp>M+#p5=F(!z<LG%k657YJ+91+BTAO;38
zNP<HJ89O+LAtvv1EP9ym;ew41N7I1Y$RKQ{%^N|C629b*5{$|V!XCs}Q54fA5QHNL
zXArI++(GQGm8DCRCkUSqH3+W|?t(jIKAHrF-Y7wZ_I^pVZ&-X#bQ*+$2%9`2gbBw9
z8E@(nf|w{gzvNSbn96xRh&8>^rv))R2tKgKtHfQ^HgB?c7wWWs+-OLdzTb4T&1Ann
zwa${BWw*`_VveMmYbxUpMK54i25}^aqd_bRVlhVzZGw0!h$TU+3>yEQO9e@mv;0YE
z%YrBwisD9Pg+wLJEkV9Y_-esxW8>cmVr>vRgV+_syFsj@9>jY=te3rS;9xA8#?NN$
zDS(Z_8Qdh~hs4rbg4i0wjv%hzOxZ@C;c|jOY!4!*La(%u?ddJQ*0A!D=EGXXQ<S+*
z%LhSx7{sSR91LQ25PO2y7sN*-1&}u}dT-EpT%4Jt^t0^`BKS_#xTn<*1o5%t|4GpJ
zi{FrIe0YT~H(e`~$#Yn~KYl2P!$D(_jarGu6tsO!)nh>%4<adq<Pc5-aWaVCWC$<o
z6a5)?5yTk@elGY$5T}Cpl7m`;Ukk2l7tMixT6jz044w_*0;hBqLv$+VgnSpo_d)z1
z{Kp{9o3VZ8$NbaD$mb_IxvlBXK`cGqWbMK(R7ida;*uzr1*!Zh<ceUoq|B>9TnplN
z$?cyY?g_ab#El^S5Pnnew%{$nKL!5^;+Nua+zYomqWmp*H^>X)@f7b%@TDMw4}y5e
zsZWBB>A<G`ZxBy}Z=P?|g4;6*K4)tS`7g-VrW$b@XHSd@p+Lx(R11a>8$z7$=n!Ir
z6cVf&XRLd}t#Am%MIkRDq-Y4-OR*4M&CDoqF(W>N5+NjnkQky58`)B)K|Yoeh5Myt
z=@80<&@6=JA(RcFTnM#8s1t&|s_QEuR1IPGxs385T)3FQt%8t>Ayg7lS+I&3`$nUT
zYG$db3qc4qgwzy#)r_qbLbQ7jOO+CWC4~ARGzfvK`lPbrf9Ir$S)&<T_Sq<Tx?o*1
zZM_g)Gx_?tZCSjAAvBe8=6Ks?2x%mk8A4+rO$2Gl>d(pTPSPTTtPuK!&@Y6RW^R30
z@r7+$h46Za&u1FDZWBU>5ITm?*0gCSq<sh}<Bb)HI)%_#lpY~;5z<YttDsRqG3zeD
zhEv-16q0Sm=7i8ocyGbE5hKss5ZIFUk6DTRLm0qd2%|z6C^o~)w1YwzEPROIP*YFr
z9L-FIhcLoaMuuQBd7yLjXyMKfTp>PqnK?#+c_G+M8zlsX@O!Q-X2nKxOVAgBM~Euu
z6{JDFdutNZ1^pqM>0=Zl6hb(}RYYJ7BND>c5Z(@9O~{yt#)U8`gvlX{58>F*)CqLp
zn<*0ox9n^?JI%QDJSBt~A<PV6Y6$(8b>ucJgozVUrc3b65VjY~+;XFBpk~`yAuI@C
zVF<I?Vu@YmgfKV6OQV_dLYN;yr|0EL=$Q<*uGx0R>XbzxEDm9L2rEK(i;Xim^XKR)
zOG8+_u;UWJ+Wj+@(REw3JsYqRSB9{PdI)=#Wi?1B)zzC33R!Ojj0YRKt?BSi2x~()
z6~dPxyc@#05I$nVhOj<_4N{%GA#4m`QwY04__#*KW)XJ^MmDy6FN7^2kZcv)CiuSK
zc0oq%5K{0_lcLXB#GH%$AY^>O?L)!clFuGNHejnqi8F4b?hD~gr>2jWTR#rrlMs%w
zg+n+H!lz<(ID~^CoPUyfh~-R5Yjww1{fS$<Hl>e<!HK_{%o-B?w13+15Ke~hSqL|t
zwm88So*GZH&qK(2HQiq~{fiLXxt+!fA3Zbis}R0sk-{hu#%amtEIT@cZ#X>58fUC$
zLg@A&v2*)2=R)`{#3x(uyO@0+LaXZ5pM?Jq!jD2|e_qH1!Ha@B-Y)TT2)_uwB={SB
z^~>1HA^a*qrn(a1>Yz<Xu9}K#Rm^o(A%vSD+>*L1`8M_siFLFnP0K$+_=_`b7=^;P
zE&78H9<mM19R3dBuF3xi;hymOrn3Kj33qw|^LZ4);}HH8{Y41>h493*c`D>t2+vKW
z>5atPcDXMl7!@|0KYyXu0%0!4{l9bh=rD%G7$2L96{T<(MTEqKvEj6FSW;Ai#Y}s>
za$IrY3yvG9_FTwJ2%}0ERl`UWy<`}v_hKvNb}AJ{QW$IEn<k51I*c+x%7#%v2$Po!
z;}w&a7gF3;s-loef|UjPtTPUZs)bQqf~jFtu4+XXHNt4pwoS!WZRR&Lj$Uep@oE@z
z%ca!{qjuQ16;dY*OBkd2r=>`civLCek@vg`%q-DkaOd<e>V`2sj0s`X3*)sg#)XY(
zxqcW8!e|pl+b|l2kr75#7%jubF=4?JGzud#jK<u%l&5*vI23OhHje6>g^d+!d62`G
zn*VHLJSW^D3@(_%+v0qer&ZWES>P)|k#90y52H1wtZy=kj%!M67e@Oq!W27LJA~0O
zjFDm3!srx6=P-JQ(I<>9VRQ`}M^HV(=q6;wvy=rpGAcev=^h5Lhv4QimTcx6Z^;qt
zCHVO$3zgh3F7?8oFb0RwH;f^@E&T*Z`iC*V<O9PP`)d=5L&C;~+lI-$NQO$V<g}jM
zt67GJF(M2SZr@h0yuo%3!yAT=Wk`=6&9;(M{WheIVatSJ4}-i%l0^|h?qE|lu#mXI
z7+uKX79{ZqQNu{Mox-3NhAv-N3y?^jenGaw+V#=IU>G4&X{%Zy(uQLNKYJ^Y?MdHQ
zJ;ypRj7ed97{=}}CWkR4j8$Q*=JlU2riHN}jD=xL597@+=7bTKmSZVnoe{=tx=<PG
zOu<=ni4S{Zzny8|j3%x6*#`Er%?*P%PjG%1gQn)r_@c?8Fb?gDZab&PTVX7gw9Mq)
zW(iB!KK~8lwls`oCSM-L3gIgSn@np$gSR<$!q`(TdTSW(gt0aZmHXA(zZ*s{$I4w4
zJ(0Cea%OP7kPU(x1vk+%g}f)YMUZ7+hTDX{FSuQBhu}`ZU4kD7rkyWgBne}07>C0+
z62`tTKBAxGMwc0r&TW4f2g3L?489KhvEV0y8=E#_>_IjHNBx-eQBPy@?MaS?aV(5)
z!Z;Jg@i0z=aVm^2!#EknXJLF1Hr_`0Tn5_P8{6>o<h?$|Y94%sghTJEFlr4;{+g3N
z_fpoX^|NtU@ihTPJ&aC28^*U`{1E1YE;z>-X>QbaVSFD3KmK^7W~2H2Y#%ht;7QQB
z?#YE_Mj<DeOIq;@n-}TQVcd-1Rs=tX@k<zuBFK#3QW%%{M-xFp1iyxHC5-5ZG4y^D
zPrD^}Rq$FEzYDn@#tj)D=XP7?*kao5%J_pha}L>+!EIxG!&m<d<1aBLza7RMRz!k#
z!?+*DgE0OvWAE|LVuF!mPKIUg%an&<JPPBn#6Az>g^+&*pM>$$O!bT&e#v;s=s!^k
zN||4pu~88e5QPTS?i)*d@O^(`Oaz5YJyuAZU}3=`f<+@JCWQ9Ig~Ug&m#bLtwciLz
zMo>KhL{KV%qzDd7POTb2as;I#s2D+|h_S$FnFz{9&|-XQSqYXCd?kX1b5pO3OPv`?
ztq?I@QK?rpuIBjE%3{f&w^QP4UzeyN#{3k;5iPY^1e^QW7*!*Jnh{tdNRQxENt+UZ
zC1QL(y;cOZg^<^YU~=y$5`M~@sZt|6_e`BTD>W^GJAJ#cU=-^{&@g}R5xf?`yR%d4
z%O3CTjUsO#3g4#5h=4^MG|@=XID#e-Oo?D>1WhAo7D3wx+C|VeCTr(7<DKH>tU?4?
z5wwh;RRpagXcOUzj`8ENqhF^}y_s-mb5mZp;MJa(RVDQmF}-^xw~wGh1fB@g2s%d4
zDS}=R^p2o&1YIKN9zl-?x<=3~f_@#6nUJHP_xOyLUF$trlhZST><Drq;2AfsXR-ji
z<-~GwjEuANWw1{Kqawy1P%aC}9LOa&BJ%&3x(ethuJ;=V5Q-#7aOa}gB|(#v0Kwhe
zJvc2b4!g5H>l@rDR-i?S6?ZT0Ufhb57AS4;|2KC#zw<w5&OP_t_r34wyqz6+4?RdE
zsxL`T6MB*KCiWqQ-`(m*-k<otuRaHwkVZv34Ele@L&%2`hnX;3w;5r=NS%L0@-=ak
zj4OVDJKCh(sW6+MNOfi>jFG0uZX8Q-9C18xf(a8zCJ`mcWD`s}U$?!p#iXrPD)WO)
z&h961R^r7$x$H88p2Rs!+S7lDwJb|kO>mpA#)P#dcueq`FwKPNCiqO)vpPOtLQo8r
z$NNo~`YuwGkPPy6u~Q^yLOOFi&@C-PGvh{Cjka2{td7#*blVvw%#=>A8o$bfStiUj
zVYvw_OqgTBToaa=@I4D~wOg9B+dLEI%joKuwt%>h_#JT(QKA-;EFms6;Z?UZ5v6|z
ztc{n6ddf7TEVU}PuvSX#Siy|4GC;TFAKA8Xt@=nwR!e(E<`wdj3F}zw2PUjHVS@?B
zOgL`BMiVxfu)~C%Cj4x|W)rrVuwBk{6Sm5%*g3Y+B5jv;c{(6BU}Z7<7p-C^bc&VD
zrv}F5+GWCSX)Y7?nlPe?Ho*>T5&JGz)IJmTOHWmd`MGAs0>x6ZcTbbPIAFp-6CO5>
zJ!I0}sXI(OLOe?Rh3M*=Nn%f!aMFYeCR~)UI>m6x1nYLgdGgc5GsLsRb0%EdVi2=-
za}Ao=lekMJ+>ov};j&5lV|aylm3WOP;&qbuUt|$}ll&HOmQV9=oBR&(t_k-@M89uB
z7QeO&_CtNtJtBE*!fzzs?2nLP`OJjpCOk3YsTse^v}3|KGtQgwhY5em++xNuGhRxE
znlR9eG&5eC@R!WhW@I#L_uk)_@X>@%Cj4!}Kb(92HQ}8}i<09l6}gT7p2`P3C^NIf
zhHvkGW>kb3LlU&tCnC+rWJVP;s+y76j4WmpGNZ7Fd}S-jjI6Z$!i)keKsGb7o8@sK
za?&Q27;Q$38M*XS;f%yXZYp_*dCj=6L;Io0XGVUr_Rg3*cMy~^h*;39y(=O?IXe8B
zrHC0tnW~r>ab_6IC~igxGfJ9K%8asRlw)jZGhjv;dJ`vdh!erE^YUg?Fry+phodAm
zd>GBBL=O^-HzUD}%6b99$)!}`7OQ4Pbu${7(U|r%Xx5Nzl4wSf8OdgRX+}*mQq8Dq
zMv57=%(4y}>gW!oFyb>@0O8_RGOcGueKQ)+r-<PKiyqEhu!$K>&FEr=$CgWas+k!b
z&FExCb2D0)(b9}oX0$V-J#%SoMjJEQlK;<1INuI>HAN3+6t0)>&U(9v|E^|qGo!m1
zJ<RB7Mjtc!GGQ+>djCHU;zW*qRQj7SK=%-?RJibi%ouFO7&FF7E15CWjIX3%V#!ou
zGu({J-zN$gL1m=wUz~_I%8YN!_*VCP{b|lySq*ZGrkNCb97(zvQ%J^}F~N+9W=t|;
zG8NSflNn}ms~L(J7Pd^-|Nq*@W`><M4l|q_+u`!NC<+%#x3s?*UR?>8;nTUFB<w9{
zMo9M{%2YF^nX$l(g|wM&#%%VZ_?$syCUKVTVGfDJ&NX8m{mdtdD=G7L<U*vI7IEM$
z)~mCGQPL*zmhAUt{Ak81GtLyryPWz8;!5HVL@`@!#u_sYm~qgIwaj-Peg0&|Iy2T&
z*+@ll+@SZuCNq9EV>4s7nz7A{E#%?qOUbvJvCE9zX6!Iyr=Ci5DVyLP8t<hZP7=ob
zX2{7d^*TfYu{>hNVR8{=<R3NT7rnAlo?~VlXGKmB#r~ujr)Yngc!qeE7|vQI<O^o}
zCUdMT%WTFa8GB|dS!cLzhHS(m<cb+r&G_rI#;?ij*PxO;-EhN<U(L8_M(g8-N3?u*
z+;Gc`+cH-iGYG$9#$7Xn+#}v6J|K$tkVO1HHe>X3gB;@L%`xrg<Cz)HWztaarGnqh
zcwt6f1+fbLFyl|N_G(kKf|q8zlG#{676q@(nA$Kxj*n7Ev-a%f4e@W8*;0)X{D;AR
ziEoMT%y>`ofhabT{F51<=_*3e9ByoA%%EuAG7^PEl4K%2NXQ+fAgh8L3dSBS`GtaP
zinc^Rb_Ly5WXg6(TP|Lf<NhmOrAq(S%&A~lzl8P$3}uXl7zMc$#J4v#>5@>Yds=P<
zc^DKWYH4gf1^E?J=$cqwK>-B?6%<oYTtOj4dsbV7DF4w4E80J`)b43TsYq0xhLI%{
zEa|ANe_lpGNd=`89J`!YS^*U7?_m7Y!6?D_IVr-+D%x9Ta+D*fpS48=1r-&<DKJPa
z6jYV8opTu#wC|o4PhLsEHxF~lwU8(Y)GHH*cTYQ8GohM->I!NoFy>4Wn?wak3Pca|
zX(5LUOToS;I@FY6E85?dmWph;nyHp#mp{IRg4zn|D0tdBF;zi*igguaPDrXp6ml?-
zNh}*EXvkRMjTAK2c@qUq$(!j)bCN-C8p~gJ`ODu*L2CtV6tq<^T)_wh?WFJu`YGtI
zpo4;r3VJK(qhQsHJn}+XCk34qbP?kW2^-~42Um*dDm|-c{|LH=QT7N^&{OBVNMwzd
zovG+6<Fje(YhR>%M6X?NDj29>u!129X3Qv=rr_Z6T!R$t{@9qh@f|ZK%Ik3Q9B`<D
z2W@f=qyF%RF49W2qK1(YR4`t_1O;C!7^Psef-zE;7O~$bFb&T1t%4tFwUb=L+sQg9
zV-<{(Gr|}7-OCuc?36((Pt2vcCMuXD_6p463K5eP?FnOealEk&J1PpE{aSj<uca-D
zc6TmVypmjo$xS)Cy!@kJmkqmZa4K*q_|1YR7N`o`3N9(QtiYqdt6-Ue?-lqI_!VvS
zmAMK63W5r5tVon#h~hK_kFzI9FrC3E;(1V}sR}H4wH<G#OXDb*Nt@Y{SNF78<Qonr
zODYM@kx`v1QOG<6^XXxMf<+_?Wwb|Wp1)(TVF4^A*^|_Ei2}i;L@`*dV1<I6lC^@B
z(sT;8(o&*+l=2@<UCrPs;;++c%KHOrWSqn#t|k7YU>%7l>lJJu->55_NPbqZSy#3w
zNN?X(jJGM+u0Xtr&mDAb9h&f|QOa&9n1a&^&M4TcV4s2`3XaMND<cpQH#)^0=6E<D
zV@9&;nkdI18B6n0gvg(=h27JBk<(Mb2?Zx*Udm}4o=^KXeO!^}Un$awvh3I?1+v-M
z&bo<Fty)%3G~{U(dse{(1s4@<{mF9*&T}%6`J~Lo6yrAS-qG@M#!BT<t|+)FlaB=@
zEV!oNx`KZc{41wY-9#CjHx&G;;HH9GGTIfqQV{v1`E3RF6x>&k{YBgzMgIP4M2=P+
z4G$DNR3Lj{{3hj;aq^(H>=2PL*6^5I&N5LX_6cpC%77#h<+=O{==_EJ3XuP)D+{_s
zzLsHA%J7$>t<I+oF$^{v+7~jsQ6Nv%|CZCdkO3$1zE$u}W?Bn&EsuY%;DdrF3$j}9
zQNbrExdoXlD4v@9SwRL1roXEb!JsIo*EY&%!HEOOBFfryS)Qak*^-=D8f0>FIkH$}
zuS|`6VL>(vqAiHAAiD*#Q{r=4klLqG4h!VFhJM8=J($;MSM7$C-^FiwQ!|$Zxh>eU
zqK)v3pK4a^kes_nrMwozvUvF{C}crl3-Vh~z=F)Dic6UbGU~n|MtBhmP8wp0QYrsd
zQ;Lyq?VcvQqy?oc7-7Lk3rbr63mRF_*n%<^?O%Mn1ql|EwV<2@<*8I4O4Pmc+7`nV
z8H^(uEHGNM|4o&Ma{Fab?x@NZRI#9j1&Oq&Dpf{AHS+4`b5$n^zjmHvK{A64E%;Iz
z%7S_f%58)c3u;@m`w6uykWCZhLl5C~EZQQCsnn$;buFkgSX&99K9vR*?Kb9^XzjaH
z$x$A-G_jzm1^q1;U_mnrnoIl3`kWTDu%M*{9WCf&(e7ikvY<7I@O}BU$DnO2Xlp?`
zit-|vTqCu&po2xbiz53t=Qtc8ekRt*-PwZQM#ad?(8Z$7X<do3&qa3&ddQHNQ@W=G
z{Vb533MEx93wm3yIXX&sAB(n6bYGU|+cuHXfMPR{wHR#CuCmfB7$mL14|t_IDUD->
zSTNLrVHRy`3HioB3Ls=SgR+jwR~CFN!_tBo7L2ms8w>m_{I?d2w!mzGV!;?0!~735
zfn=-&OYYYh#|9rS!>LW=#^@+9n8?^k7EC6QDw|kwx!SZ)ak22SO0Crbn?*aP?9?4Z
z@!+)J{tfMax+<AQN4aSub@W)^<v0-=pEL_EYXhuxkj0Qb4Ox(`^C=cgC6^wVW`S&0
zA_g-pm}S8l3)V^r#~Ei^uuy!G&mqnw&a+@XTe8c#Obg^x+7>C9YU5LekOj*v+M8O7
zr3EbL#up2hTChyY-#%XQlFh`!+h<4>R<Kelr5G0c$o^WzB0V0NYc;FTq@DKU?k5Y@
zS#ZpP<I*@5Y_MRj1^X<p#zehp7rT+!ZL;8J82}b+ku$4({4NW&vNg67w-K{WE+P%J
z!-Aa_$o?bJ_0rK&c(LCtwO~T|a8iQ%E&qMObCk{x5D!{#NNlW;hb=h5>dT(vat$vZ
zl>I`3b@?M@yq%Ew!GfzYM^QXw!9@!$S#a8dGZvh+;GB%)JW)~-8P$s`#hmBBzCaX3
zHa)o<9s`F`uh4_+ZZ8)Sn>UoaZov(i-)2TUkm1LM68k%B!<)og#M`Whyv}r&Hu6Ju
zPsR)jER~fmkXk>a<s%ColUQb!6#c0M&&14%3syY0;CBnET2al47jo{?)n{qOeQh%I
zswAEACzY2Lydrr`{EPU;g1;^Jhg>Y*ll*JJTatIg0H-^N{UE;ry5%Q5D#D5kR%Emy
z(u(|66tHTOXC`8_Rh~6yK{>Km(XMPl6oXl<_`-^8<k^Wit;k_TLvtpv6qHv5gv97+
zb6Js_JddvAwIY^0AJKkFdlR4_c}d--kQIe>Uc`!`Ixl8Laq<$na%Fs`QaUef1*|Az
zMOiD#Sy4&X%aa(16|AU85=S%;r2s45X9-s!o=O6-GO>zobG&<6bt`IE;j%)tBGHN@
zD>_)w(TZd%zO*9Min>-TSy8j5ReM>tjuk0Z)Uu-e%!n-eqH9~Vd9T|hqu}z1(PH54
z)=+po>h-N?K+@2P<|Go;$co0~O?0KH70t+J-_iWEu%ab{t*mHE(ptA{W5wM8kz&)1
zO8YR*)HbQ<WJPByhFCF_VizlVlXSIW-_M%cZVYy}q6dj6J+0_PzTk@Hp^p`P8SH1p
zAl;@v$pGR&Vwx4-cF}4r$6zW?FC_~fX2p0m(Qt~QjId%P`BzqaO)`r3E%6)TimJIr
zlZgEoE5?$KBZg}_!HS8}V)JTFvcj%gP9`x~Vb&EzvL?6cip`3w{j_@Z_}Jbdwf@-N
zNtDvMt?*be&x-jhu-A%!6+tVmS8DAe`iX~6XzdoVVwUbRon(p?Q*~vU71MP-gJh-^
zbAQwl-aTlXE&X-SIEOfwxW8-s0xK3;vD%6?R(!`KORQK*vdD_XBxPSW6Avv~w_aw&
z_bg=1DG3r>Zp8{KR#IuX*H~k(@dw(A@sC!lBLDhCE(xx+;wLM1Sh3TJb<|~WuD4?O
z2CZxxtk_6VhVdpVKCIWopQ&uNVhhPu;x^)TqSzeE9<@v7C#~2`zQ>BaB>RX*tk|#H
z9I)ab`61$AVz_6;+ffF8vEmqsD95chL4K9vyv%juDJxD>IiuU0B{?S(-P;&Ra?y%Q
zGE3M{#)ivQT(RPv74NOMYQ;4xo?5l5qw7}f|L=V(9$0b1ieDMLX~o~~5=+0+Ug5q)
z<+c@fNJP17m1WtqRAp)K(27S^{AR@ytM<@&!nDZ8R#fkjv+tljvJAql84<_Z#>yqx
zn3)mJ<R`$YT?70s<s^Aw#UEB&JR5P*VH|s{v_#4A(u!A%eNFs}_=fm5@gJgC{!8+f
z*gj9x2P-~WQP74$Hhg03ve}T`hCAKUK3fq%B0K|0MjIkYG7&Qqvk=85%7&~u|H6it
z+(r>|*pSnP+&1K~A=;+B?vl%fF0HiX#A9seS~o%dX#47DZ?osMA=ZX`HsrVAZk^PU
zE8^t^3~B9;-O~!#w0lbO%~bv#Y4JU@?d{~jVqqJK*ih6acjr*jhEg^xeHB;ShJ;wd
zk)nnYHrzhY;+ywz!b{t*b7H$cj>O2D9&#b~=gf$*Hk7krq79R5C~rdr8&YhjWkW?9
z;%umF(`KaGCyWLgDv=wBB2McXA5WfO!;w2iIj%QK6}^fLRc)wdLv<T!*svp8p_(?V
zIuxI1L(?AG+ShU<F=4U|U+Ugu&VP}fu)K48Z5!&?(A$PSHl#{3_KWC1o4Um46G`=K
zsBc391{;b`8=8?fvY|0a6XJ<8+Nmc;a~s-H5#EBNr46lgrL_%hbY8-jAU5q7Y)|ah
zBdw#f9#5H0Hgu-gMYr!t(#?kMy3)gjo;vSE(xz3d$pg{XhB2whL#gz$p}!3SY#3<6
zZyS<i29`|I7&S;wJD6mM4dW}cme^r33<g9Fw_$`0BN;VDxBQCaYvL&4H#U5$$BrhE
zxo9lOI9(r4GQoz)(JjUQWE)I2cx~|6V76&L$1WNOQ5duktv1+5>_kU6YL(GRGO|b7
zPj`%}4Q{5by*|lfgJ7+jM!yXK8$vduGfK)MnFh&w&y1L2!&Dn)*f7(E4%eDbld)H@
zu^7lPT@p6b=Ay4Ur_7@LS{r8DFvo_uHssxv_d6TL-PAgIo(=P9AbbJILK_@s{~H5~
zY*=i=5;-pz^#gGk@p~JV+pvOM(yk;4m$2K1(!nnHQARJt)w<0Z8>U~<JpW|FIytFj
z{%6$BHf$i-NZdsH-<-Ue!7aqC#BIdw#2s>ClE}Fxp7+?WS8{P-h70>_*l)uLJ5Jhh
zz=nf1bhD$o9fxc<ER(YxW$id(!%-W~+i<~#U*zm)8h^}&<2GbeGYPL*HU5MRf~T)V
z|LJIdlKhknr%BEb&l1lO#j?ZYh>JE{vf+0dUda4!!xbBD+8}Ek4`{AAylTTW8?Mv-
zO)x@~8|1$dCAlcK<lJHKjtq5@yEfb-xlepR3>!bR;Sqz9@Ue^pdU&EMPf4B;pA)xF
zjTFm2WQwrk3%gdkKW%tv!z;$Vw&9~p<2L+d!y77p6W`nL56QnoN%hu-cRCOI{J@|T
z;4?`^I*%Y`AWD=Rk>uhblO37Kvk;?n{pp>Y+3d(}M+rMhQp`cjZAVVsCfbe|a_OdA
zB;hjTu_Lb?v3BIsEeqR`U*`qvC`evNSEPfA=)9;M#mI{j!!21#kL^A-LCRd(4(N*H
zSk8{}c5T?yx1$2}Dt1&Qsc47nb7>$q+EJNil^BdCinjz3@gsjB#mRyB@zw08L$SIY
zHS9=aDzS9*NE1x5BUw-Tr4XH`*innTwyuO*Bh`+&RO;z^xKa)5Xs9cV>}YI96FZvP
z(aesHdXCNQXib|I#FlonA_;pIY@>T<Yezesx3{AMc?LCB3fzgjvmV=pq^liaCq3-w
zX~#l4zO$p39lh-sW5-xK`q<Iej$wA~H#Fw~V?Vn#wGObOzZCLmGr3?E9B4-x4dj|r
z%m&#p*p955jB*Si8A@E!wc&6(M%Xcu#$vgUKc-(X__ZCQNWRfyza<$hV`hA`7>~1K
zyd42Mg48G2;UbwRt+b)$Bs)&rGfuX{MA1yN6BQ}59ai#k*NRWu9ci;;*2(|oRfio;
zMoAV!IDM%Mx``e;yn3vU#7~q-bt?-WvLoG&DRxYyKF^NfEit%Dig=sGwwi9o3`Wf)
ziayJZ**c#?GFJv_Bkjt3K7$L0Rn};~s*CJc%-~Twme{eBe2*Q=?D*b}H4KW`ayy>g
zXf9-h9V;pNm$m*ukNuHkl^v@|!tJ@1{3kos*&)}`-iFER?btwZBXOG@n@Gg%&vtCq
z`4*C`_W%BGZrAl4cI?#oE<1MX{OW*688dqs+-Jw>hPC#~uK<GwiHC@XiARW%W6Do8
ze<43cJT4Q?D&x|Ise-4(i5*c6WOd+-9cS%$D%H2+ocyL_HeRvgsvYO;xM0UcJI?e-
zyI(I+HY^ZwiNVWu$eY*_yk^(#E<U#NUjX?HJANg(X~#VhF}P*NZJpndT9bEK%Ui5j
z4fpMMK;<Fv(f^D6&91$)_JsZyEo&^7(C6zIp3~r^9lzVP8+tE@LjI6y>b&{E$X9l}
zw&O25-q?}Bfs79A8P?x+{3G6C<Jb1fE%-0_TjD$7d!j^rAo*y=CtdkW65){Bt%+hF
zo1R2Ekja7Hp7pIfGm``}lS?oQ$)K-OzHlI$17n;R>qK@3ayYQTfsGF2bRgOR#Q}>0
zF%IN%V3Y&jIFQ?cJPx#Qprr$O9f)<Hq62Xb<dck^#uaj)umkzY3pljbehNCY`|v^p
zi#Sk}QE;FbNeKr^k`$-0*vL_eNlNPpC9QZa<3L#l%F(#I0~H+qtxOeu6CiA3aKPw5
zJqPML<Re+cJ5beuYD|*gKxGnfB}uB#xe&>&x&t*Bl}t<|Cb2wX9Jc?GVoe899H>Pu
zda47pbzX-gV;^H(T^VYKX~0|>5gQW2-WroP(X(jkKr=nIIg`taF|8bE?LZd?x;ij!
zM`9c59UN%uz?RemIodhUo;*{xXbE<tK_>?~>n#(`Yi+8b8>5Cg(A|L^4)k=O7nQ*d
z^md?+0|OZBOANQCr0wTGe=1R1wR_Y9$%UjjFi7VTHAGJ(Eji4A;SP+TGLjhXm#@NH
zSH$vL)^~zl>(Md-89SEBIJV4qy?vxe;%A}*lV~H!C)3R2kj>c*W}1m;b-?DpGzX?T
zVAnl+nZ!YK5?v0cdaRpm<<UL(Xdrd;I}p%$(18$nI&lhdsto&1TC?;m8#RN<Ob2F>
zgd1=+`9cTgFt51`&U0Ws$pXEPv__Lb=)fWe7CW%SfuCp~o|iiCBl$81zNftyFV|yN
zIIxoZ2VMEKh4zy6Dh5|Ou!dwUF}#+e#IAE-Jrym}Cvlq`_}PKa4n#PyS;mqBZyfmB
zfvpZ~bKt52*Jy0d7PZ}h9dZVBGVF9<uLJuW^6ocwJFtfa;a(2=lw9^ZaG3f5q9_L)
zI7BX)it!N#j>=r;z%hy!9XL*MTDL#pz)78-l1XNs_H}?9XB;@|z&S~t9C_Y>3%X4x
zMXURO#hTeAikBU@LXvz|n?2;X?!X-f?mBRTJ@PB@CQ(Xt%YobEQalOXW7=0#?mO_n
zfrkz}qWIE*$1-`6|4w|O4^+wJDV1kT_}qcjd^z(4#XpFD62)@i7Hw1uc}?XnJ$Grw
za2fugA_o6D@YaEM4!o!3N9rHQ!)^YF1rRRA8Jx)IM4}T(PHjStbfTOS<%K(u*@-Mp
zL^)B|i6Ty9b>a)!#5iTqPHj5P;Y3cSHfd+4E=0s=^04!K(<5>@k(){$Vtyy`lEf18
z5hdSOHMO&&0D}dIg^0Ge$f8aZbD|7`#hobO)P5jJGg#7zQVfR2Nw^&#HTt0SpaccW
z(lT703Qibw`-)D)>0DxE)jp#Wm7IuoBEgBuPE=!T*hv*9s<O(GQP^{J#@6_MHpxzW
zDK<_FXO1<UXyHUlCsLfK<wR{K>QHY=OeHpPqAoqubD}<#22M00X-FJa>A%s~*ol?=
z+(~i|*QJ>g&1v($nznMHixXWbwsxY86K$Pn$6$LF{(osZQ0(YLCnq|S%Q-8tZ8m1=
z=0tZV`a03ii5^b$bfUKteVph;vv6MF0tkj1M@WATgMm(@(QE)Q94jaWgPa&laR_lJ
z(K}q*0!EGzlF%11isDEoz9RXWEfda5Y`&rRtrMfevFzM&PK<ZrwG)3iF~Nz6PONic
zy%Uq1nCyh=gxd*|6J{smX`_V+CtcL`hf>J1eHSkanOdE&Nl$gqzRR;a;c&u9d+BSJ
z-oL^<OyYII=R}SYT66iG2uQzBm*CLWhM*H6C(^0Rabm6$Q=FLU#5A`5bSGvo>VHi)
zll~>`EGK5`exxbHV4g%dvB-(}PAp*airGTigd0|Zi=9|bWeIU9ahVg}lk7jPHLq+p
zEVx4V@bkZMKREFt4Mbn%#A-Parbn!yvX=N0@eIe?1}8Q;vEPXUPHYk`tJpcQ!->nc
zviwZ5&BQHEY$e%76wf0@mP+F{N5Xef+~ve>C-#u<CGI2c@I^`i<XP}RCk{Dr+lf0)
z9CqS}6IYm{csNSSGfw<Ma?FY2QVgFqX~=Pc;z{Bu;%Q=&J~3xW&Jo4(yb~A5FA^{5
z`ei4)M(s!8s;*pf;yU>a;;+P;#9Kr$&Ym^quFjv3+#}v6K5*ip9{b3N$2$LwB->5x
z8>^>IJagi?6Tj=RFGy<k!yhDn>iSD3UXdS}sC~)x#)-dWs&Qe23;#IrublfXbamma
z6Yr!$T`;)t-iZ%R<Z>am3zFm`ljm^ZlM|mg@FHBu;6g^%f7iy5V&+128fPZTu+Qp3
z7IN_r<-)A^|JwWu7qaR4<~zA%#D-7RoD`#pF)r=bK@#R+u!svqN%Fc7>q0)4Hk0Rf
zp#a5j@`B`rh=qxgTsfYlm<t16$CYuREJ<+}N|1<HlBARirAeUcJDVBG=^o0HNMS0t
zP*E?H<Sv;SU8v+jOBY(X5br_)EgQH{nIzGLBp0f<P}PNMy0_}OhZ<DEC6{t0yO82S
zEf>CI)kLYO8-(+!?Lr-<O{E@goVqU5W3WC^QaMH#8@kYl!Nx8$qqin5G-X=JPP|E4
zIhwoBg0W#y(zbS?jSFq{J{8M$H0b0)dlx#m(DDCeE%xF>Y&z3koOE-cI}L`o(8GnE
zdQE$|(A$N<jOyb;Up>=)F7$UHjrsth_#8+QE};bF7^IgcoZUZpau0Q3Pn=<xOWQa6
zMUS+RE_~&}I2XoCjxLO1zGIn6iuaA~`CAu8>wJt}hOo~GE=+VGAZ}k~ndHJ`7ji5y
z`du*5-a%ut3yKRC-Ghz9s^=mZ*{Os}?sUQBg8Khr-E`t{!As&JhI6l+-7xj<xFD4f
zF`YPtIF&d}&PsW8Q<lBW9W_%<B^R=)_(H{O7v{L|!i7IvnCrqk7mm1a)P?yj?d^;2
zi3?m<C{A2hBnE8_i(U9Uv03crxTv0K#h%A4acS$o?|&1w)CIw1a#FvFdso)5+=Ue`
ztP~F}taf3I3qQKBN-`=CKOhiMD}R#w>(7+kSnz$)S{HtjrgLGh3+r51@4_w@cDt~_
zg^ez3abc?qn_T$Wg$5mB^JdiE>6IleH%sq#k{#`}w|}>}w8hG{yRgHh?ejZub<U2%
zGVOGs!nKm}hKwjn`^6V78GFN_O(2i*MedWLx^TdSgHpWau`6arj5?V`zQ8@?!eJSu
z!!kt=&$M)UN!eapQg!bX`-=<5T)6APJ(-cNB_DU;v<qikIN?IEo@pnEr-*x!D~WQ}
zg>x=kbm5W<=Us9cA9;Oto(pm!uQ1B36)FFf`3bUX<Yk#co5tRD;fhPU=W~^<eT^uM
zf1Tup3%`=w)b(4^m^ZbzT;$cJJK|ryTss<n--QP*Ja*wX7aq!)-ZWM|>U<<;NB;Pg
z@8XhrY9I7Hap9>8&t3RkvWtz+wxaVh>5<s@GZDs*bs~D^P8#?={(b-WV#kyJ<e2%#
zg?~w2y6}qRHSsT^jHNd&{7o(|>`Cygu1BhPNB-W04=#Mv^^B@E>waSJvkMUnijsju
zUe;RKK8FM|F_@W{MYo9}X;?Krn~LlzJSw~@a;V6uqOOX1Dxy`ysHm!<nu=U1a;qq%
zqO_{rg3F^KRz*Hl`z6Y&YEOGBe%mC!sy#0*prW9Pu9w<>TPMDd6r0!Bqdyy@eG02u
zD-|IYRZ)yYl;R{MRFu>e*}efP%BU!>qJoODDrz@~lwGjJzvNy{#fXeX`Fx<}1})el
zC8i=v6{o_W;?(CZau`V}5#xyoDk{s-+$gbCs0gpFqK1l3#VXZSk*Fd`#g{5-s!*E8
zPFox);~`m!B)4s^c9z~xQE|Rl-dZZIc55O-E_ZZ-oO*SntxCtI5)-Q=2$yY1>#G=`
zVxWo!DjKS2q@uC3iHdG2ny6^1qN9pVDw?TiuA<j;LkATtR21@SACk0J(NZ#!S3rqE
zT9dRPwk5Vx@%etVM9DgtTZSc<dSEE;GVDpLbfR-a#;JzRD*8vqbWw40nxXF-Lw6ND
zRP<KSX0M^A)GlCnmu^UUU?{n>YcJ`bbdB^;(N{%36>X;(QZB{!ms;OyD*VO*L%&N+
z(^L#nF<!+46?w862CGPgVYG@NDuz-SredUuugHfJM-X?6F?>z(Er-e|@^4gJ9BmLk
zvMhXaQ#&EYuH+rVsIe->k%;(izOmE(?h{p*r8`tiQZZS@ysIfD73+=}l(YfDfBh}q
zqQa`etwQ*o++A%doGM%@>?$PaAV#b)2>*J$;q<$vf~pF^Ha*j9S5qoSHj@+Ir)rb)
z3>DiBB>Bk$DuN`Uhe*<iQ;1VlOe2|26q}~zOf$)6$*HkFdA5o<D&|V=r7F#*E@U2q
zvQmNAFQB-P_??PHB%&`SSwfU|;l5X~T*c`bI5Pt)RIHR!H61z9@q>yVRqXO&w->8a
ztX46~gKs=oqhhVp-3^BuKS@KWxUb@YiuEcsh`oy4DmF@6J&D`GEH?2B{h7F#C@)LP
zIlGlM+XNkL_AgA`u40D@OlY)|DCF-sjrOS6tKyOjMKyAtiv2QXR2)-rK*d27hg2LE
z-ZWM=#_iiN*0VSAh>D|f-ZhO~RWU}kn3P-w_tZXZKCa?~inA)tsW>SHQePEkRBfrl
zV`Y*nj?nIA%e|DbRpL=k`_w(#g52j-T#!-3D*ThLs~E@w2ss_()0N9AuE<#ylXO+Z
zJ(-KXh`OfYx{4bVqxaSPRobv)tBG$DZ^{(6ucjQgNNyAFsJN@5R>xM~S`#E{TvA?f
z^-#qlnf=@-?Z#sjzeyLnk<X1MDxRwNC=-Z^XDXhn_)|`e$8~;JwV#PU<fKkYeL*h4
zi#IzLZIB|$OBJsuzLtVbulb(*FBNZ8{H@|22Hz6@C1xtCd6VNEgA?*bNvaPjmMu#a
z@>!Ly8IjeEFWhKUKP7`(GtTHnpIe<J7|Eb0ncT=so<&!p+~^t7wuQ~+h9NTP$G-7`
z+1(hrASnkG3Fah;b|Xeta=DS4JP$Fit`9txn%|8AZWMQ;Txv@F;<4hnpc|bAwSITI
zP9Zm1=1MF~EaFB{xAwDDj3~s~Gp&Rhqe~}9!jf*}>6Ib`Zj^DOwHs~RC@VhQNOB|D
zjq+|(U=^yn;jN!i(TzB_yw8@{yHW?q@p$e;gByZIH!6|D6BCG)iB*VIiDFsJjj`Jr
z3aLT2iNvTF?F*nU-KgnC6Dmg|lTzF$cDGJFH)>H4gW4o@+(;#<OZ>UdfBjY8jRv}9
zLy|_s#%@^H@=e{qjGE0THYc_qwj_%GR&Ip7wRNMN8w1=J=tg@tI?$l68y($vdnu(i
zgF-qn*x8LPBwdN!h~0@jh+^5(jb1w6oLj4GA2(V=XrCj=_dfmTu)iA%B9mmqrnxc5
zjWN<tZVYDBFyauRBpIsLNceC!M(FxTH@+hOnmCI14e?u|*pGJO;iVKIa*T6hvKuBw
zjVDfUV<O2U-9GwyX|XiBao5_g<@c$=70F$XwYp)`dFHH9PB&a`Ty^7`8>$;_H`chZ
z)(wwa`&sw7;g?Y)SyYV45uGC6bq3rBO0C^k=tjtmbT?+YG0Tl9ZcKG!x*IdxnC8~5
zMl!UBl?6TI>TYh&G?~y!StBKw+%|T$8*|*4=f-?D=1RL|$+xa#>@S;2yDYpV)jv|!
zQn=qVR&xK&jYV!OcVmSci``h_#xgg)cSG!D-H)YiZ0#F4v#C)mWzOu<A+~gnSh=`e
z>BbLk{OHCisfZ({bN9UV{*m{G<dj7_SG&=+L|!F6W^1(sX_lYFl^Yk_xah`uH#WGj
z-;D!uvbeFyjoohSk<sPGW;b@au}f;&)VM`5b!)#4<#HKU^-S9)!7-J#6NT&`nKQ{C
z`<v%^8GpEEnq2?LCH-Evwq)o&w{|tSakcS!&op`Q{-7I&q><hDP&P@9!)_eWxy<B8
z$%TYtkIBjC#tDiiiD%t7rQ4q-IpfCbVGYIpoUWfId7ha2k{g%ZxFS`PAJ%;FB^E>k
zE=S8Q0}`AbQ}ntUH{3|@pt1+Qx^dHu_ma?!TW;KT<E0y~+_)pd$&LGNJaFS4$41dk
zk*<D`()h`D^E`CpksE(fuUf+Ru#EAs8?$p5<@im01<0QgpAnxEe<zB~3z9#G)uXjt
zm=lV$dF{quZv5lMziylzkXtgk1LGSv{$?(-3K@sz(YpREgS)GAedm_j@y0_1je;ND
z_#`u}2PHiCEV>5;JSgZv1`jfNkllkE9#lG$MUu-A>CuLICSqn{7GjhKSxLSiW+RH_
zlwOhYP&=mwxv50!dJIV};=X>G&phOLiLu0d#Qembbt4LSP}qZ_9u)InsJ~+o59Sop
zsxMr!h?<@#P7)3@t}v-#Ne@a%nVGP(2k;=y0|SF)Jh-~2aar=WKejB#peW@%sG#$T
zB*Tw1j$4#Te9B?;z*NlmXl=`QCVbU1O~fi5RP~^#2hBXF=0SB2>U+?@gBl(rdQjJc
zFQL`z`pTFj502+FCNr%lUwTlJJcU?G*K3p1@gP-K3THt*4;n4bl(Sdbf`lYVJ8)q1
z$EY?9Y0$`{y=U9lgC-vI%WsU#V?4R6adQt^c+giA4_bQA%7ZQ*boHRM2W>p)=)vpt
z4cmIq&Vx6lwBnWRmDb*adcD#*co1=_Q<b$XixxEAU)Ffw>c*WUVXw5#Vw}B&kZvAy
z_n?;taym<F59VI+MvCyBGG?x|v~6hIo3W#MrS&1{4P$?gwpaKd4+eYS@0B*dgMlPz
z#1;2iF6osvL^{-i?Y+`QcrZ+w?uQn`J$R6uEF_T6C?suQ^hgiB^5AO^#*{Zc@0E6Q
zZL*LHz0$t*V6+DVycp=k7!SsJP|=GxFUEN=-h;oSnjTE>V4??mJ=o{LBo8Kgu+)QP
z(x)EC28Gi-nBjrh1I44wITk6H2LTVP9@wbZi7pQuBx2+AKptQTQK`6z9-`NyebeV7
z3d!-Wc1t$s!88vSjei;!qFK5JQ%EFsss~Zqv|C}a3e!4E@=Tdq#>WevM}t`&%+@XE
zkj#}D@!sit4+e1$)&(9cWYl*aEb?G6`RDhU#itxgJlf8TLcaH4xd$)5j{k{;Ss|@G
zE^Z}x-9X+S^jv=QV3p2S%fA5fwYnm^!LIXQy$2gS*yzD7nFc2&&zTpu$%CD=`PqZb
zBwL8viCc-=h_cnD6lRCshQhHUNpLq~_Ye(Ahy5NL5a%A;^x&Wehp1oi;IIcrJUAP6
zCHMb5IKe9XqASPbbR!S<k$67I;3?v1;u)ee<2e$sIq$&*@{781iR3ad*PPU=B-ixV
z>m)abMTW=U^5C`yKaGul?vWS!<L^*^<iTB%d&K)h$?E~hLz$XbaZw&q`AyR5Hcv^O
z>3#jXuD>ApgZL-$r3bG_UK88Q*E;=g5B~As3oo*H@vjGOWq$Vlx8lJ&4?fDdoZ0wZ
zMp|>DkPkAoew9mz9G~P@K>Xy4jPPnUa%Au#BYC8*Wbz`j&a;q2d9f^uW-JaRZFVnm
zcu~TOl3wKWBHD{0UKI5r=C9H*UKH}8uorWZQ*wEc+lxzQ+vFkUCB_o-5hW_W7X@@)
zkR)%HO7d?`ewt61w4Ei3c~RV}-BOc1C1r8)o>R0%(!`*Y7p1)@>qR-Qc2Dy2f|Br}
zj90tAv|ygL9P6Wc2KoM?yjQ!&Siy^`b0S2Pj|;@u;DynPrd~AjqLLT!UZi?a*NX%%
zqI##5>YbKCQdzu_R3%DOH7}}@*B~b9dJ;*p7hjUp)b$tk#9Cg|_TtTXV;wI(?I|wg
zFHdg4dS2A`qLCMkz1pe>_g<B5;6+20|Hkc9xmK+ACawwVE=$A7_am}UgOt3v7cIQ#
z<V9yMT6)pSi?&|0^P)8yVfn{gZKTa@+Bfpjbf24be9<mvdoMb8(b0<@Ny*Z5^8fc(
zQVT)6jPK$_S1<Z_(btP^($QY+;<kqrtVF69$V*>x>umk@_?|M%4#oE(_9iCvPLsvE
z`gze`M&13=auL`lF<F{-#=L|yF9vzB+=~@n4EAD(7mK`D?8Q(ohIuhorfx5WdojYR
zy`7usaK!dLtw(w>%8PGgEOm(g$_sbzwqJX-zeRtKYxAua=Dw|W|B^b|i&-sVgpXmA
z#J)I|I^K&3UO2sQNy)t!xjJ#O7bY(zkw5<@?n(KWb|nmEX`&Ja#f$v84YK=^a0?Zy
z7d8?*QFMnFlgn!c#v-Yz7c*s?6iIaxJzjW8d|phIX78QmXHX0RBtc?`nC`_Ck{*Tg
ziorB;A=61_c;%bHToRn6>$By2A)l)&^Sqc(zJR!p_#JUyl~_qD4-}SoF}ra5_Z(eI
z<qRdc^(<LNmvr=&4p=FJ-;2#&to|JRqi}h{->a>_Joa45DiNhS&ZWq)#*4M&-Or`u
z?4x~ox{k){i5rL;z1T$ZGf`}&)G!Ec@nWkN+r%yPo%BDcY03^SZkMZ+@I_tmDLL-(
zVy_ntKb(H-^J2djb{`x*9Pr|x7tg);-HStB9QNXx7uUVo8aPM1IO)YHFOGU4I}yn7
zi}dW=#A99@ClP+ai=Q$Wgq-%mlQsGG$_W>|I3qLC)3~$5b3_TACox^`d{HJDFD`p=
zMe=H)t*)PaU@kdXWPh%!UdR%5E0?yq;l;0B+?Ny6i<@5D^5ULXyLh-Q6H$-YJ6_yn
zP_3P^%$iX1n*_NMkas4RtkUMIhh9AL;u)vSA%mJduh{#s7r%*TITw1T#g<K$TTeos
z$_NP<vib~JdgPON^@SIIcu~uT+CKd0#Y>soe1K2;d-ckT3_fJ^;k6fkNx|gKKk+^B
zZ!i8K`Iq>XC^qj%uC6Kdf#jpEe<JxzjPRknzNUJl579ovFvm>9%syoCA<BoW3}z>a
z=P!K7rt|iVBXf}F)D`cPOu2l>?L$#2d58swd5N(^@sp1vKk-6rR6$)YL{gYogqXlh
z7>oH(oWT-A@leu-QslpI$A>cHMjtBqP?o%$ZdsnBf)5o*;)n)4R`z`mZ}AM)@F9Vu
zGO-G=DzO@|I#KLLyJHi{lXNAS<VzoF>Pm`uW8v%gkm^G(AA0*x*N1vOwDO^~5A}Vh
z(N|l9zY$3TVnZJ;e3>YEWBO@AY^wWgM$+7e7P``s<XU`c8(rz_LtCA<^PxR?2VzHE
z??ke)My%xC#fPrC-i@TY4?ReF5}Ww6-HZC@HX}*;68rhk--iJ{3}kQ!F^wom2Kg|U
zyxr9-5*(`Q!$^kvFoNW(&)UlWU-|I052Jke#s?GiZ*}|eK8)7+7?QEXaXy60Hi5y3
zy3HgXCX?@XYZWx>y5fU{+^Q=!l1hyuoj$mHIOxM6A5<UQKCJR#wGVr$#(R92>ccc2
zygvAR@cR((A>D^5!fo1LZ<z^$KCCN{67nJccg=;k%W4<ByagRO-G>=IEcaoB4>Nt3
z<-;N$7W**UhdDmX_hEq#^P0uZ6_k@}f%XT#v%RxyGA_v%`n1afXOGzLq-;~Q#jE8;
zin({%5+9cOu*`?=eJC<B;_FR0Wo0LM@FW)rawA=S$K@8&N*QSlbH?xJ^rH_y__P^J
zR;sCaDa(=phUsMuYkXKMXZ_Q-T|WFIh4*2bPrKK;-iHl7{OrSKCfVpi<6eeMQVdx_
zyn;bCaTY&Ye0aFF;n!XBZ1tha!o+S345tt05&c=EgzY{E?jY_YiqGBBj6Ur3X{(Lx
zm(wuSxQ|?dvJlw;D!aMF*<l}!_|U+QhJGCN;TIon`*6pHV?G>b@oo`M_;8uzBvG<B
z<-=+6GsLq#oFh5!!$sZZ0?E5z#3fykML8tx6$Y>Ra81{*`*4H&S6#VDA`e@`Z(Q8<
z;hqmU{K)Co8tuLhAAI;Itt2fYRip8rKD_kdG5K%AC&Z^jN%f56xevel@WQ9<W+kE=
zfA|nFG(qlE3xDOqJKg>@$zMLa5n~_z@j(jnuMcmjhu>ZZdl3CSMcK|ctbFnzGm9$0
z&*ER_8T_(?o>qlOVkTV|4<csqBT84Y`tgO%v-!2Gv-`C{CHY4C5#vWyJvNsg1^g)J
zM{X*4bUiOgtRMME^6Pr|Rf<A>l%-PGk0O2)^`n>{&~1v7lp>ZOmh?lmHw|ybTAEx6
zTt>HlJfdMa^74LEAgSnw(T_^xaYO@AJj9b!CMFQYRgAp<uN#O>HS+4j8pK3Dl1P&M
zNb#c<`Ip3+(jeThwYDF1{HRA!lvI+sdQcQOqw6ym&asgnjs58AM>jv3=z3d{ro?8%
z=EN4nmVUG%5f82X+M8Ex*gHbnQE#uub|C3U>_qHL?BYkB&tFP%IlB8XkfQJ&e)QCN
zFF$&d_tBNUe)RLBzaImbsbnWf1Z7~P`7y|k!L<BVw;w_>RLbVZaPkq7P>&r+@|9n^
z!jW|aM=|(~AK{JjL=oqsDUR`DtRLgZ$NOO>k=O}-OeCMAE0ak~#L>+R3W<eiCEAE~
z;&XF?IC1%*`jIz?*dW|~c%+L1NDjd3hfiiCKYsDU??=FoO@93BN6?RuA9MVe>(@Su
zODE3qV~WfStF+I`rus3BqVVZ{%+UEvKW68Q6md3{y8|>n&yV?jZ17_v#RYz>Bv~jW
z^rOUSW8_xjA}WiCl4J?VQa_gI%J(G8{aB$Zbyp?)K>nkytny>E&exEvCH~~cI$d8c
zb?3)xt%4;aBl&boaI+t+bEa-#?ZWG3Z1rQCAKRH~RqwQ&e(dmLX74nqzThrDb~9>^
zABIE5gMRE~aG##bev$)3`5a8LIONA+29M}A@*&tUKaR_66F}wwPWW+>QP=%AMRLZE
zvwoZ=um3QMI5|fyWjNG3?Ytis{J2O(tB4<$bbguS3NieZ^fmHSTd5l)zxr|0k6V7+
z_T!}=ul%?pW8kFmxgWp#ao3M~G`mmy&5s8plFLIs9+5vLhTH0iA5R&4MhrKpZI{vg
zNc&z-ju(FX!KgpODEqF~iJ5Vy{c8sQmKpL<^S}IfLn6HSG2=ge{OiYC8hj$Y)6>59
z;{*9eT?yy-nZbyFHexdbkdZ`qB#E<rtt=#!0*DVFDuAp3d=Wr4ie&=G9zc!&iZhrq
zfM}BZ0mP8xCFUaLCgvfE|6513Ga@#Cd{n~U_Z84%3kFb#yfCqdt``lUn9gtZPAfrP
zQddfmlqQ0>|A(6Lh`($A<#e0!Bo&Ai1BfFr5RF7B)$KakhxrKsRHITkfGPo04Pfs^
z<J^G};!qYpnX=JXUAM0hKq9#e21)p3K;D+Yv;d|DkP<+x07eHOy(3Yz1E>=~Y5;~!
zIVD&(fO-K83Se*m^#f=?Cw&5F7(k-{y6FBJle8c<AvO)58A)@ZxEkLzz9o6909pso
zM%Oz8(3ZR%vAwR#2=7SViP-u7>Ef+x0Nr$@J4p{>Phu}(?*O*d(7sNUqi+EHC<^aS
zGJrUcm=?f@X|2MRLjw3FfNujBs@o3>V7Sglkc<rAD_!}TWK;l;S7Z_o4L_6)`;n7q
zOaNm87)OKg0Za%WJabN@5(*$afJp&NX3#{m5zPT8Bo?BT*k!r)U9CL;M*vPL67-U|
zh$_(?fJcw*Q&X$HF91K405M3cH$YnmLXIf`Obwu58*Mi0w#Aq~O9xpPYDNGv1Gp8y
z?SS^(^sE3j2CylB*#XR9^0@)b4`4w61GXFI5oZk494-uCMF8hgI(|p9MMTjT2e5>E
zDRCL`dp&k}0LyA?1y~ut4-|h4V4WVjDuC7GYlv%!Kk2d3r0aFQA%HyOKL@ZmfKvgS
zW^hXYy93xmzLmI*xIKU!B$D;c0CwrzFhTopdv5^y0@xpbOhn<1I}pGz+8iY2-eEix
zz~KOd93dVh{zCkraxT%2)AEGw`J}XAPVKkpOaNyCxE#P0X)eY_$Fv;yp!s<=xENfZ
zc#(LCIHF!&(F<MBR;Id2<r?vN05?cP|22S{<V`wgtC!p%zaPK@lDh%i3*evLX>%Mc
zCH7$ej{^8BfH#bN9KZ{b--u6$V)itEXXMXy<#(}c&_$yD2;lREq(7;@)MH<fyq2k$
zYgPR%Ia0|S)aLMi19;1z{N9bq+4!A|y=Tqd2k;?)kJLXCKM}?Lz?tF^Oej1<5E;oM
zbtO{}A33LGp%N8D)*!wh&!yXBBgsz85kyXsXgxM2sC`8)&gIA*L>^t2g_!aMkv|Am
z5NZ$wf+!e7s~}njQ7DMQK~xGNK8PYg6b%C6B#41o>l6#3R1nR7h%X*Qi6Bm0i54z;
zNs2;B(@cVLlntU>5EX-n3u^n?mk;7<v)Bqj$lK0xPrJsY_Ht{~5QH&^56xob0fGEq
zF1H|F{%r|K2%>TjUj|V#h$=x;4WdR6i9uL;<gOOPvF@?egW6lEV~T5k!w+WFz9&iw
zA~^_o!C0<Z<zKD*H!q%&kP<{KDO(UNq+l&#YX>2VKArEMw@y%d<{}<agQy!sJ$kE8
zY!XBRl7>XFX++XEi1X=@5^O40q<zwaG@~wDUM!KlUE&%=whU_Tb)R>1ZWGk*@%9O#
zZxC&RXeXBPj%W~FNQ8F?qNC0`k#r_ryOX7B5Z$DBdTd2L9Phzk&mel~dT)}&rHm!E
zc9red`vuWIhyhZ~ASMP;dtS-3AO?v|Y<xnWG+S}w;2?$uF)WD9MT|qFO}eHEkx?<6
zL*m;YMv#ouN61$}d`&(|SH6+q$1y)zSH_TxC5{VXysl3mk>5Dk(`}Np$*!7{gD?eQ
zCRc)Rl89~z!Wx8)K|9eQ!}9A)5+%pp;TjQi2jP+OhcGMzZxFs9qC&_Tf<K5r5NCrp
z7ep|KP!QXK*d9cB5L1F!5X8bDrUo%Bh<QQnt!6o<lgtTXMi4WDm?e#dh}n{4W2UqH
zbBTfc^^mvah0LX;tm-LzK6zXDV->`rAXW#lCWysBERj+1ByN?o)tQK;K`aa6dl}*U
zC%!z06+vxPu^(u&e3*7`b7c^6Ye+<SZt^27WtqzKw%VMzHi(~s*g|m~$EVnDVA}Ok
zyta`tVmAh{DTtqGvpJ~UG7=kElT()BluWl$pUagwcLcFhdOs*n^CNc!u{)?e$2myc
z6U07}y+Q46gDk=+xSxvH90)=bA%}w66ZXT@Wue+5K^&#Mte`8I9t&bLB97DML=Y!Q
zPDugU$DbxI+dlRT&jPuVFAovU2XR40MG!B8xERExAnpWlH;BtYTnXYP>vA=SYs{ir
zsnqLo?pKYMmj9JaaU+QL9V6u?m2_62V<m6ty?L8tOH9=I-g)l@@id5MLEI1GK@bmR
z>bRFhn))$&;ZYDnR+p6EZwv}~Leeph_95Z(Abw}-N$sRVUyzIb2g!+BS)@Uv5ncuH
zI*7l5coW3uAR<EeJBWW|mS*{-wEs#uS?jklv&l=jdO2lX(+@%I54G4xyM3a4!<eXW
z4`v7<b4VLD8ADo|i&>-uLt6jJ2OXkhVXPR)pZYIC$QDAK5K=?P9zu=~N{4_Da?++i
z2n8h}c}z&UQgfR-guEfdlILL-GQvgA7lJ%(ks{>}X(M6ABkk>@LNqHuEF3}+lA^@o
zAruQCJlGcH)4rbjv@4<{qe>CaMQZmX%Y;xigc?-Jg-||(_z)68s6a&w3?WnuX)|P8
zNb6-$q}h!j?FUqNrI6e=(LS84972^4sxwtpVl~~vfCbtk9$At%oHkJ^6+$v&r6MUL
zUy5_qE25uPs#<#5+97n18zcGS>xNJ-g!U2)p+3vgB!s3U4MJ#0B86-eLSwBZBjn7L
zV6zaKOKW$GX&pif-KHf;d26JcjIBcOeXo6nASG!NLR;OY9h+{=d1FT^Ql!2ibPAz!
z2wg(xO0g$V9yCiv-9qTjGRuJM5z@|I8UMXlBZ=)DLZ6T}`N&8PFG}2x#{EMWz%Cvr
zNkSMD!e9o6gtQY@N|pa=Nf}r2&V~%L;USC&VN(b{hcGgPuR_`oT^7REA&d&a9fBu>
zZ=~2EOblUCNLy=qbO^Gv^|%nm(AcxH;8+rwKgWmg>0O-(>{IE=%F|0u4#C83b%kIK
z;l?VXH3VA-3PlSON~1~D#NHl)Q!<^AN7~I1(xz)qOqA$H3l)=zR}H}q?IPSO%^Sk>
z5N62yA3`96kbb5};pGU@t-P_BPF*THg=A_7({x3?vXOS18N&P!7KAV>gxMi&uAW1j
z7s9qHCFh19lY@K}E2|1iXDtkAKjMo+SVHn$2#eS$Gk($T97@#Z?Gb`Y+1k^d#(W>b
za+YKTGhI!-Qu;T9A46CrCod<`iR=i$HSEo`A^b%9b;J$q?)4#zpP|)V2Eaz?i*wO=
zZk5~|!j=$ThVUwcty16+&W3O<gzX{h2;p!DM?#S0zITSOD}>$B#pAUP-;RAuk`XAC
z+7rTF>B<oH%dlx5f3<wRgCqw++M|ITzQ{u?Psw(%@__rOWRW}ScnBw??(7<wH;zf!
zMrbGCNh+sVaXFn&v3=$=&n-Q8Mn<FDl$OW7AzTRIRtUF4xEMmMsd+Dla3zFGOeG^z
z%63(3#@D<q<3uKn_VL$3+FfPoP<ifix<J&gw3GpSGlZhkBML5vxD&$N5T1naltsPA
zR8oNZAw1v!dnk1Y;W4?a_bw;PZ*ndNwB8iAF^G7^Q|1M+VW;@#A^aYKB|1vD82`b>
z|C1<9Bqe+u!e6Xx#&m67eG|e*cGKS>{KMk?OMFX*(uPvncOkr|_(5i~_VH4TxLpyS
zm`WUe=BS8BM}~Cm=Sj{i5#@*!|LMq_uHD<ulCGUrUyw(oLk4!%bnWbr2UXe9wG&oq
zRBU=g&U8el<HJ;ZoQjxq<Vr`2sc1PBxzmv+9ebx>-xTCcM{GKJrlVIn@}(nxI^xn{
zNJjxyM`~0o9R<@-h{3|?D5~p4NNg<)>)&a+h80goiFA}q*Y-Floerc!J}oRoTz9xd
znRJv*M}>4ex|2opa_Ja1B6s<8bSl@b-r*Ka`lN{{N5ynF`nC~bOh=`3)JaEbI^xrj
zkdDN3B&DNrI;x~Y-qV(5?Aj--YC5W?qeeRZD3Mkz9i#fBdHSTu?k93x6x+13TzD_-
zla`#0n(0W9lJrUYl34x!n7R%qDT=PUu)va+obv^hon?svl5@^E=Ot$l5l}$|Nis7%
z-80j<0mVQTP(egQf)O#GAc!KOL<J-%DF5v@%y<5C`rLEt)vH(ORdsc$9@ev25Y3tJ
zc%N{imLGl5kgE|M8?JU}6-4VG`UYi@#+&~^bmm7o7c<%lwi9Hqy^sz;bWBP*2}%65
zxeMDlh;Ab3F4!}O9{*3FmvGwY9Yml1C-27w31UDH1A`bG#E>8cksPbS`tk~h?{{(G
z#BXr;X%F3IC_9%AF|THh2x4Rqc|*t-!l)od2eC7VT|tZqVr&r41o3PT<ATTzVpb4e
zzZn=G#02TPiQ+08uv|j02PcVevfva!3a1L07Q}QRGX!S_(Y;X?kMF-MLxZz}m=nZY
zF@A7nKORp8v43RtJi(^~=L<e9xPZ+oWRV~>fBhosxgZvcaXW}5K|CKsD2OoqA&3`)
zSS?XYgZ_G8x$tFzFA1`ox!=oNk>o3dtP=cTWcJHR`5GZX`tvEjzKR6n$=HYxRZtU*
z3dRIE!7_;+gdssw&=TZAj!{k!t^_^7*Me9pWS!u8L8`qH#H&fZK?wh9`g#y=(5sX3
ztwC%QzDaPi;Fe_U!C6_`gl|tu-U?zzlHVMe{dN%V1n~z4MG)@>u{((GgE$eyo*>=}
z;+Sae4dQ*y0Brvt_HpWXAu#r1f6>Jw|ETN_Mdy<sJ{58xh>wIE6g(t&SdjWhgnS&t
zxv0Na1CP&wpb?VKlR94rIV$)i%W(an=2!HYq|P@&z767d5Z?*E`(qy-v~yB|>&6AH
z1o1-<rzChfh+mj#5I;(gYG;D@Dan5pa#pZa)rP+&<(Gt<7yM1|cfkumTogh((SgM;
z%cxWz6z3qlDso=UG3r_n*Ar?X+z8_D^m=!RLHs5Brr<3>M%@nLj_^D6>M{6F5cec)
zY6$m}d8LH>v&O%i&x3ft>32X1zg|h?MR|@8a*D$Ju-{_6#&;(2$Q?o+k&~wh;d(EB
z2n9lTCWL20C>TPa5L$%LGK9h*q=(QbgvKEh38ARyBZOj{{DoH#EFoAfgpwhY5?)%c
zj39s5#JtLeu<n8XJ~NN<BIgwldBqSaNszp<kSc;zL#QSsPp1FIMfDJBgz$(+vO=gW
z<Wa%L1Z#$nA%w~SA(?`;LjLD$6!NGel7@nH1?vgc7i=K-xZpV1&4VR>B7`O(<klJ%
zUedj(L^TtnwW_1Cn+yLdEq!^%maRf)9m4PsMugBt<XuDPCZw%kyAaw7VcHHMbQInx
zDd{YvOG4N$wY!i3f;|M8s;7`%A@oj4`UvS8LO&t>1#73&rZSI#Aq*19V8J1RLj@T-
zEQCvA8k3CV<R8M5BHz6;Fgk?EAxsHjOb86}7#qSk;n_*a_z)%tpO}<P3c)<rn95Vd
z&Ww<M6JuI3ujwIlKh&Ig%?x3d2xo^dSIC^CPR$v<KXX2rCz7WG=ZElg2n&)ri-ar;
z@$I#T^T6z$sn3P5ID}V1cvWJTgz$0*YeINlf-i*dqL8J6%LSJSz9iVTUn=umA$+Ca
zst{HSq5Sfg;z8jZ2i9^z2!#-qpb~;EBqFE^YJyA^4I!4~aUr~vGuTAJEkQek>X-b>
zUQQH@Emfno%i&X_wim)$A>`|XtQTxHDtki+uZ6IWomDvSddUAa;mr^>hVX{)0`nVE
zLW7$^;CBS?N-mp2*b>54;oAh?4q>~Hw*+?x?i6I&T_GG=?9b=#Bqe;`es_}Z5%OLL
zdy|s)g;1wlg8)nQVF(98xJcIu;iC`^hVUKNiWB@lb{z`g;}AXx;cy69$U4G)>C&{w
z-z|urhWwS%=OKI%!e_!CtL(q9dNhPDLufj9z_)DeQmMy6_$q|2L-_oa;hl?g82&}(
zH&j@aGNWh(a+aB=_~Ri^Nb-FMCqg(G!Ve+*8p8PyPK9tfgr7qAIfS<cm*79>e+=PF
z$iI2}cgd{8pRdo-Z{MnVF63|W|BFP$*Oi!fegGH79s6X~n_c_25Qx8rQ1N_Y5*`;s
zGGJ8p<q)ofP$G<yVO$O2j}ZQ2M}+Vv%M-%g5dIF~Iw$`S?r>5alo42!@mC19Lbx5m
zP1b#2#>lCSiIk6<o;7V$_DgoId#4Kd%YM<nFL+OIN$C`-@r%NLLm=7<i=>2+BaGZ(
z<Ow5Z*tcJ4aYkww_3exaUc2fI`s5N}q1)+cVdM>?Ko|wX$QMTbF!&|N(0%QnpWXP+
z(G8bO@02G;nzcN&P#8tH;18oPF99U&i=(pXU?X1ecgZLgM)5F?zMgT!%P2qHKgdgk
zQ96u_Falwe38QQnmBXkaY0HICA&iP)l$T)Z$|(gZ`!^6e<|y{(wBnU$s$at?Wm2k!
zQ7w!bVLTEB!l)j`8>LcM5o*?YkmuO!toa*8J}MR-3u7SK@3V6;iln9lOXaVe8Ah!z
z+Jw<IjI1zfhw*qA4a2AtMqRc>7!AT$HzTVa8!CtYPp)b&XE1n0ODWhttFA~IiG4=3
z=H*Ydl*VCP?%VJQ!6soe71B(wxnK*ymV(r56~?r8x-XlWRcu%hXH<4OUN_kp9mD7p
zMtiZ`LGb8vS!aJ}$6Pvx(It!@W@HU2lfq`C<mvJ$-NWb+#_wTV2%~2hy~6%wg%?Ke
zF#3e?bQlZ5=o?1AFeZdCF^v9U3<zUX7^B1fjfH_>3=3np@Iiuu1&4$&R7kGY{_O=G
zBf=ON#+yYlziE}SuSDjSf<-7C6UJ9HGslIIEy`mBx6CX;;rK8frX5}=VPR4jPl>|h
zFs2BZ8pb>!RG1dVbas82%o)t6S4$o<h0GG1EjUMTZWvDrq0WXaO_@X;o=OYz#nh^6
zJr;(sC=4|WEsSSG_+l7K!+18C*K=VkPVyyTJfGw*gweQ=Z)zD67R+28#tI=XF}p&U
zlrU;#7@;u2l4MmFtA)HQxF%^QDCF+u#!6Chv8bOmB0**m4dd^^zQh(uOfVjXp42zO
zFoj!!3tBzw1t$zQ*|4;;mM$8``mldJ{y`Y~g}f5Rt6^*i<24B~YO|2n1>ayNCgmH$
z*d%;?`&6oJ31e#*+rro$#(PPfx5C&J#@iCy5ysA>{B{>V$va{08Sdx)u3*9rgL_yi
zvAI{|?<Z63OR9Ys#(^-t4dZy2@3rD!7@vgkX&8sXI2^_i)|&p@)&H3YcLZ8BphS<Z
zC4MjMZxh64UY~{Wc^Jp&dmOXlihRL2A&f7>;9vQ8J^ttg{|AwL0=24D)|Wj}zYgP@
zu)o_3O|5=*!0Y^Gp>F1PVSFFPnJ|6|<3t!IIjq7s#Rk+1@$K1QuT*|0&5eU-=X4l9
zhW(j;PobvW%Vp92&taSm<6IcOhW*d3d8_Jf*`mL2_T!p)N*0sfE|hjYjNfQ&R5l0W
zTNg7nHunF^b}@`g9Q)D&^VX+c3HyJ%z010+Nx2%vA7T8-Biimdr;f&1B-g_D;ACHt
z8|;EfSycW@lH3gAmJmvAhjAy#Y3Fa@?@rA6Ck)~}!AI8j`Y((JZ0ZQUiy%co4h4fF
z7!pBF1*r;NR<K4vE(N(2Zt8;G3i2pOQ}C#Q#}wpMkWWEb1?3dvS5QDf2?Zq;6jV@1
zL16{y3Qmm5zA!&E&&Q*~<J%Qc{M$rdy^+QL-LURO6%<qaudR6$7xMPdlBE=sR{STh
zWfW+6YqN1qHVm+l{}`3MTd7@MK?Ma>6jW9G`%X=*q7@Zvo>jS$!f83{op_VVEaB*E
zl4=U3cPaq|)g{x>{DA0W%^HfoNO-$Q?SogkKB8dUq^4CyXV+Aap`d|+#}xz=WGbkm
zpss>i3bGW`R{Ten?A&Raedh^Z$#`OPHor1k(76O}S=VE}Vzc+?>~h^RA9=HQLj{c#
zv{%qU@t?gmR?toX@1H-R_^#4KK~n|I6u4J2TCia+Wi(g7z1`Zp-;k1)BB8LAg4Rji
zMnPNQiS2?}i;Cm2Ix6U-ptFK5Vz&8L-AgU>?|i1tZg;s=R##S`OJ+AIISb!iNDl=)
zlajB4seKgmRWM7zYz6%k^j9!a!6*d-6bw`_RKYOC-@k}u9z>T=up-{zO`|p|K7_4Q
zDr<J%^x+CP^j;oYcm&ga*_{PTnTf-vDvee!hHa}LTfy}`RmRdQHs)eeeBGlVdw;xw
z35tIYt?Ay>W>*?cRKNi>Q^6z!TjK2|3r-PaaH@i7!lx^kIy#$@84_F&Z?|-`zi+@C
z1#=ZFQt*s|Cl$=2S15Q|!Bf&Kd_u=ku_=BXmeu)Ou>}f0aY|dL_)q`&jT@_WWl8F@
z3Z7%_6s%Oh31l%_V{)!#3YO4+PSz}#Kkz&|h%TK!@S@;SK?cv=%=41C7B})*PH&mi
zk>BO5Qt-A}WwnCJ{Yu=a=YK25Tu$Aq7E}<TV?@w6g0KRG9TY*`2qFqp1+OaDKyOzN
zRj^jUIt8(0@5dGYjw^ds=U~jvWhCXM0!z3p=p^N?5KoYMx2~rvPW9dF6$M)>1tt&i
z?;~;F;MYXqfP#<cy$ar7kBH<g!Ht5O1gXE7ZJy*?g=|x>UC7kQ{*$a73U*3xm*8GD
zf)GZ%BjjDSypTOf`FjdZ)$p&s-cL&QDfl4C_Y3(@uvcc<K?R2tAcE=<99D2dLGcJm
zMDVeKPdGJ2{0e@m;4=kR6kJvCxq>eg{J<;}998h8g6|Z6x9wv|``-xpO2OAcxV<VZ
z@c352aghwD;Y+?x>Yq?>Qg~4IFFmbrQ!M<d;JgUWC^(zc{E35I_`UJ|2jDz@QE*Nq
zLr(iwYQH5lFADix!381Q20WpENx@~2oX_@0^dFo?6x>ztw}NXTzbSZKkP0^x{3ZPF
zfPWFn<CX+(E4U-1ne4v)Pg4IsA@>CDEBIGPqP`Clq(uA+pB&PpsXPlvF!4H8E)gc$
zDo+Gy5#)^^Uj)TO&V2JnP*`|@q@-X3g@iAy?w2h+DK8R1QQ^&p`t3aQzW>E~$p}hC
zP*vomBPbK$Qx(5wxtc8-LAeOZNBpnv8RU^5yk@KzL8XX)sZu$DDoOo1McVVd9XC*)
zb*UEd{|Qbz{9$X22sgI%Z9WpgqY)%-A3Y|Lnu0vt@Zm)ug3JhNiKMn5*JD``@W~p}
z@<N+fPvi|Ec>96h=Jh4GE0$8}pNz*N{z<JNn`n68OkUr~pNODa1l=QO5<yeZY!*Sw
z2wFwZJc5d{({&4x|Ij?pT1Xo~rag8wy{+(eg6#!62zC^tPNxVu3-2P>H7S20=a?Qz
z-djk|2zm)gWZEYg+c$!KN!~w#0ZBek$e;+eK30+$4UJ$JXRrvA2zQ*rhzRCI@KgjN
zS+A}BEu+a1T*+5!R0N}ikdKLAY?6<QAY1r&!3jzE#0Vw{UvR!flNt@DL@+giX%S41
zU`_;cBmP#6hkKWp5y4E3dT#z1@gFqDOJ~jIEZQfl{x6M)Pg4J6O=|L`tbczRMLs`*
zrz8Fue=(Odxic3;{L`X0I(wl6DOn`s8Np{GcrGdDh5V8To{!*#2woHmFGc*%W0yv-
zOoFt@ebp!_x*%nFQnDg~l}Wxz$ZEltBUmFOC>Rn<JgkY(sUp}J!LA6j2%-_Z5y6`g
z#3G1CupxriBG4l^Qa8&LG$Jq~*tV-l=<BAINNhnzkZNzP8086H8^ODyv)2h<FZc>G
z`lA<hUX>s%@Tt@55&V%ijfC<uqq8?MyJ@wz3R1Eug3WC611-t7NGkn>LE9vDy9D17
z+#yJvarqm)9l<*hydS|nY3+9-*dt`OAlrY`-d^t|`CcK@ju-kMg8dPE8o_5G`B3m+
z1m{M!I}pL$(b*r-AO7fjxn0&Fi8?HJMDSxlTK*)0&vy+X`CKGl34S4XRPakdDjeg`
zQ*x1fos@hN!MDQuZ>~c5_Ys`n%%-Baijy(~evIHuggdSIvj>k;5u8r)B4e_Dis0u6
z&PVW@2+v9v|0?_!!E>BQwG_GyXR6x;>-`?Vg$VwO;6VfzBe)d74Ng-LT;?c<;3_+X
zv)P)ILA^?}?oopN{L=G<|BT=|`&3Jz-(HJgRn9Sco@uzehyMoP%?NHqa6f{7Be)&G
z9ky5mf6H*#F}wCpy)&8bKQfb3`CbI+<Hz2J1*){@%JmqpN|+H>Xxw!wMMVx3c~#_7
zkyAygirgylsQ%5jjh9O1QZc5J|4ZoM_aE<hx*9iLNK?_ORytRMJB~NXucCm8bQMKZ
z|A}@%6@^q3R&g=S-))bN_>VNtdR+4_c9>mJ)n5UYLCUDkP1)KdRFtGL--}RDN=0cE
z{Z#Z<5xACBMnx|by;bm+j%8JpQ&C<;1r-%lG*!_|MI{xLRb;9D>nJ>`2zg9J)ug1F
z5U8l0l++ONh~T5F;QLLOu%-kv1OtMZg0%$m4fbD<<562h9Tjy|)DwAQLCWi^s5vIP
zfr`gP(l9A+BxJ_iu1~0FBE0fS|5cxIJyV+}bvg@ap`s<*Q+R6??S-^av7%5B>bI3(
zJJtUm1cMzU*io>PAcZw+1-c0DD%dS4@2;YU@ScLT?)vp*Kk_%weN^9{`94Em)&H7x
z)STJ_R18!xO2udun3pn$O}!*AT*Y8!eK0UY#o|u`Lj@@xreY#@0sSs8LPe*n#v@f6
zIhoENC+9IL#<K7#R;n1sd{xY6yY<N$ui{?SE)$qg#f<93$tj$qV!FhVPgXG{$)~EA
zmgH-9r_2yOQ^hPHvjv|NoFh0_keakJPvtu*evUl6-6?IyWIwH9fr^DH7O8kf<%>NJ
zW1m&=yzu7)7boRQRPNTE%H%Jocu|B)1s{lTnaVBG{n+IqWESLf=2a?QR<VYD(j{{>
z-Pmq4dQ<0rA8i^G35RXBKSnVstU^%{QK71MSH*4>nu@53*HpZ&BBmm)!d2m^&{Y^J
zEETru?}TZp{<?)*m+%DF`jLRcB;9c!J&n&wID+<V?6OwHIu);|cvVHHQt|a{!~P|9
zbSW{va#n{@gF2|G8|YmV3b*T0;_sIJyUlNKFsj(5VmrH7#U>S7RBTnTS@o~hxicHD
zvv@y&PyhLkS_bd+^uL>aOT`WqyHvc*;&m<&t6cn6rxH7*DX!(nbgrlKLt`qxqxx^o
z9KFzWkBawLeia|7*sJ>2)bG>fRR1+UzRmc7>Yt$ZtN2j-@ct|97#ua+pKWIL&pxQ)
zkc!V#e9rOSuf$;{SMiDJUtb?lF?39Jf!3Y(_ig+sow-le#9-zN<7+p%+=ztb<ZdKi
zaN@ezhswuPe5Im`fvyI=R`HFBIdRO5<69NSS%4UZ#_*kr?^QI{&_crrPX4s1@!=hQ
z;O?nf%Fim!syM|yk~b$$OB4ObVT-P3RQ#kOWoJts%8_=zFs~Zf=T-cs`fHVQDt;A0
zKBH9D@4_Fb;05&sPLe9_Ukoh$IB-eDWffOcT&08-YIp6oH1LOtzf|00eI?a3!RtwD
zH#l1^^+((-k^G&M-xhL5@UGaW4v&9Ca!&;lGWf5G|5Qx=veP4GR`pk!Fvk?lFBOj*
z8geFis*rGz)I1u}G}O@Wh=#lx@@Xikp_GRF8s8s7x`rZ}|GrkRT}nX>g@hN@aKC*D
zCH$Zptuu>?u()6`4HPEyONfM=lF}N=XsD#2vIxs+{F2?*tll=WoQAXQQus!Fg=E@_
zqC@*Us%U_Q>YD!{c~!w`8WxQ4_YzE4?y$Tv$)g$`W2}Y@4Xc-B)_W;)>AXymfQC#B
z4KzHi`4eL;4KF<6FW|#tva>`|Td<B`UBP-9>TCGBiLZ8JO-e%%Hqy{o!>sPb-fJJ=
zMZpsqnrLXMA#ge4Xstjq>d)~XHhobtmE>sMKuZm+G%VDxNJDE4Z8VJ6FhN6G4ed1a
z*7&n{wAcJ~U`JMeTdp_8WOvZ`JJ&%6#$<QW&{@N0m1}p={6W-9u&ZD<!R{J*2<a(E
zo%@y364+NmKMmtF{{pJNh5;JJXc*lmvrXQv1KGv3`i^E{@^&30IGD+WP%>1*up}QY
zWQ2y1LPiNDjQltzo1|~SL1Q({99x7uTk;xT&A*Q0Qgfn)DH^6~n55y(nC$ei*^}u-
zW3%i3Txpu-kFwbs=4hBMoWU8iljO66G?`Fru7)Qy%-8VtyeyjSyd!;{<nj~~mQSfO
z*Wad$QBRA)0>OiY8a<=oSq*<_xT)be4U09L*6^c-CDMbhuz58+PY2NOqDa<g2x?d=
ze3^z$*D_ubzFd&KxkAWF4XcE#PRd`_u*3AbJ4BDwplZ-GJUTX8(J(Q0Afn;RK7k!`
zGS|-ulpLQK)ezI*YVb6CKP(W}kUb%@f2~@XzqZgd81&CyTbP2Dpe;zDBV_*2z*-IK
z*mrX}f4?xWdPr*D8G-d0u6>Y2l72N~gND~Me5m07TTjCq8g^>frQuBt8#QdxuwBC@
z4VyJ=(Xf?8trIvtJTP@gU`>@k>3bR1=LERh!#7m|`3qKfi}ljLpA`<v2z*#9(5YCU
zdZobI8s5?HzJ`4o7pvIKY2mY?do{dNJg`SY;ncuryWx8r8tXG#jm^#<&zyWW<CAS!
zx&O*IQ7rI*hW#3bkIh~?E^~jKK#47*KGJYd!!ZqCX*i_eu!c|R>Ke-KY<NV&#~MCi
z57w$R@*n>$agB+A%(MV+&3&%n3k^rvuo^nv$mmcqpp^+6t`S&qFC%Z+z=7F;Zwd##
z*6<Bycnv2te5>KOhVR(mEa9lYv^jyHS2G4@1^(Kbb#iK;dxyZHvDrUpa8BnrrGdYN
zI(;)^Nrk|wUz^*d176{*Ga9aH_(Qt;Ck;PyglhOj!#NEXG+fm1tA_KOqcr@^d8}Aq
zVe3Ht+ZjrO0RMJTzFpvj?B1(d1ukj0tl<i0)M<f5g#v~11dhiWZnhg%nicqVX6B_S
zfj`Cmbq)N9$u+?a1!d0B&~m+hN8*--+w{*UmPK(#!(GnUQDjB&w}yW-l#8N#)SuJt
zajuS{KomdLPra|<Ukzgy7x_=a1F@eHMQ%~cA(&GzRWMfqFJ*MiOwA)aEh)(xMZP3I
zmXX#qXP{sdg+$WydIq=KV!nl=NEb<wD2hf=On9kes^U?U5MDAV>2y3#Y2jrA%O>UV
z8R;D=1}a2RF^Wnetm8JUEF?3EwNLwPQYDJ2QB)HlqNpjPI!Q*LhTtQD3_cpgW5WOK
z5nwPwGy{UK4D~<bTG2Q_o3*2;6UEa}EQq3R6!oI$7e)Ul>POKaisn(Yh~n`m?#=LX
zZy3e7bIlXHk(g>6#S=oB2vVnM6wQ*HCy16&w2Go@6bt3*vb98YilR+Yr)?DNlDvHs
z9g@6b6q8!|neylyMVF-f=d|>0!n;S&Lr71-UQz7dK7h)-CD=!>uONk`N~I5oVqg>#
zL^4QlR5EsO6ho4HXcWVee0UTiq8KSb-dm=f1dfhkj0ndjHOEDfEqr`Z(yCjriL62t
zr?+HHj$%p_Q-wGB%dgS2D5gg-LzELXXGSqMnRZqbvxUz|O4u4q^<)(Dgglj$&li$9
zveCk%WRZ|!eG5Mm#p<GgXC?TY;9|igg0%L06fY$Ci&5;G<=@wRDT?KEzZfdVup)|;
zQJje4WE87tEsA%dcsGidqgWF~G>RB&y)tEA|3FaegapG$n@SWB;c8N%Me%!zzw=l;
z3O$N9MQ$WxJt1ZkR#IXMaRl9juz1>9A?pO!NAXG&uO_1SvXGDsg0Bgl7?=4*GPcgA
zc{WC|DT>V^*(JC|aBCFXqS!8chu~X+EGjFwGs)KtDExMk-|r0@sk@{2IEqh1xJU54
zDE3D2KHD>?`H_$h1oubrVN!k|iU+a=V=f0pcqod)$=D-NOdjm}KmX^*Q^}_y|165n
zg?u6Swcybxz7%py@GC(k9J{mVH^RRaJTCZMGWL6#D&*V$A&OI+wPGk9!)Z>QQKZKF
z+q`F@_$kVVv$!TnerDfAaUqJcNejPlHW2=6QgU9%Z?rby;mExh#UCQPBzQTgc_oUg
zNxr0%Kgqv7BjtJ&H$?bv6n`aS??!P`_$^NOO#-)t-$}+ko|*P{lK&&*UKIC}lKpkl
z|4Z@*LQ-P>ILaZIQ?PdRv|KUdjv<c(3ks$Q<`txVz8LZ+c>y7}<Xg5v!VAZcE~JQH
zQ9-8SxGoVxmAn3UFD1f~F_hWTjzJ!!MN&qvtYEnq$_uF=NS%r?BqoO{F;tDAQ4Eb^
zs1^fa2*i*XL-iPH#PC=QHDmr?kRFNQ#+Ix{W4N3e_;y0aJNW`PI|a(+4rIi@rFet>
znZG<1z}n1OF=WM1H->sNRUuG2hW(ER>ckM9oLReM;QE+A{U(9>F*Jzb@faF1)0Tm>
z-<q%8-;g(pHvg4zE7FkvUE+%Ci5Qy1&?knzF*Hq<xpNH7gg1|&g^-ppv=h=wu(cp-
z*CvLx!arW<cS`%Dyn~RAF?32wp8q6I7vWt6yCvn_W9X6OJ!9yV<h_NwK0ENt$n?CQ
zRq7|f{_LidzyRR`1qTTZ7GwbqoNF;GhT$>%8pHV*M#TIZ@{?ki9K%TAqXa1&Eo6+~
z*ciqo<=H~U3r>h(qL8+I{oU-R#4t66wK1%VVOk8+V^|Wy^D)d|w+_mf8^e<^%oIK=
zhS@R95uUi3phDKMzQlPkJRQS=7@mq@ehjaFScF0z`P^I!MgN%?o)xl)*ZWWPXVk>`
zMV4+T{#*=;MZUjSM+((${a=XT#TZt`uu9}h1(yphi{T|9)ckm5W8w-4ZZBMne02;V
z3BDY|8dmE4!W8ldijc2al81#WF+_x@F=#PFg)`QQA(rIv7<A!AQewt1D%vk$(~iMO
z%3UFz;MJb#>tlE&hIe9kS0t~-@Ma7fW7rVGYit=2z9G0}eF<8NRPf(t+Z4m*7`AhM
zi(yL)TSb98T5l6le7pbs3y+zCJ7U-w!!BB0o|=#+y5nt8KH8|`?ilvO_#r$_#qeGX
zdt>+{hEHR7UlcwNWWs$h{-f4!Mjrb`_+bnOgnT4;FsXSchQmpIgwB)X&#vh7Sqz`Y
z@O=y?MEHf^cY;S__%f+^EQYU={A(fK2!1PgTyWLz8H+#i-GIl*7z}w!kUVs_<7rX&
zDTbe8_)$2kd`5`A+^@pf7=Dr9t|xuJ<#A4e%Gm7RV)#9V+cDgU;X(`-WAJ3Z?n^Sh
zuEy|(kjpV#NshR#gNpqr{D$B)!RvxN9dJnU_)CH}1#hvmY5tkzE}JxlI&svE<DVGr
z#ZWPhN^#te;olh2;>a8K_ZsD0p#Nfc5JO7bzax}GaN~t^avnJ)m@1enj@&}>2nIG3
zqC!65MdK(INB%ep#QpCG5@`!cRG~Nu3!yMwNRc?+?w`tF@i>YPNGTCVNs-rGA1Eax
zSN<Xi3#BDkCXTW~$_X;6d>j>$+`8MTavW9S$P!7_II0N=!~r20g4G3?wuX>L;&?PE
zc`S~aN&cD?erPkl`k8UmO3E)q{D!J6!O1OZ)r+Hk9NpvSA(94hw2q@q9Ajp5d_0bZ
zaWsm9e~fAz$GSX4nUKd5aWoO-rh?4`n+r0wMI0@Yyj2_>Hu>4LO-i~7X(!lTu!CSn
z!A^pm<LDw}gS2fo;r}cR{QYX7p28=^F*%N2arBO(k4Q$vF<MC9IQqrWU-*DHh6))d
zI7o1?;1EF;?6sI*ykT(+PfA7z85zfpEB?2NW0LZTLdM21PDplAK3>R#IR0mIZr{#R
z;+QJ(*@DyJsJy8qt?`&Hk{NN#6hg_YIFxO^r<H%E7xBqB=EbpI$16IXieo<gK}T&J
zPsgz!j_>0*5y!$f7R9laof5}0aXcGGkV7Dj=i<0}I?s!7ERADv982Q3Ik7|fkiheC
zybuS;_&n(+@};Fz4=ju0r8wV)!b<k$@jT0E<PU#U*5FD;$8-J*9;@P56Zg;5tK)c?
zUU4gf>(aL_X7G}~PuIdEVHP`%cpQ2hkvP;iv^b)1@b<-tCAr=x7T_<QnTjvN^VUi%
zj>cosZ}$oqahP$qaevKeu_Bi;D&z_{tlG$QTe90eHk-vLFg@LqAPX>aRr>lkUWwzq
zIQGWzY8)HbJ8|rc<Fz<mk7IM3?_42YR_YsZ+?kQNNfN#(xH0~4O-1=f3wvyhV_O{C
zCHMI^G8W0JEP3Tp=q=IzbZj=)V7oZ3<9H{I3q=DJngrgBW49z>7AaF&?umm7!vC(6
zIeI^XvG2#RFODzbI2y+XaqN%dNE{!>@nIa7&!!)Y<4_z2;`k_z+BY+rl@0JXTV@cq
z;GT6e&tb__<vt0$x_uJIr*V8Hk`2Yuc(<h4JE^x<q<=0FHrEdedwdzkG2Z8oBeh$~
zS0ev9j&C^X`}>P(-ZkQynJ-!pk4x-#g7g2(I5#%?WE?-lkyA&ij#F`*j^lb9H{$p)
zjx%xm7RT>#{1nH}lH`0GXN8=L<JUO;cs%e++<y;*kL?EbF2s9BFWW`W%uKI3Ho!Lt
zFT`;%jw^Bh@{l^0B;lk?zetzk{*%6L6Ed&TNF0C0F(p^vnkXDA9k@F-n{S=<X_WmJ
z9W{>sM1Cud+nnd)xF^9oaoiR6qqTQO`WLN#a~@6&&~w-(_o*{3d%C>4@-Hh`D$qTx
z19cv7*3ywf$H5=dD~!wD@~^L)OGj=U<#d$Skw-_Gj^a8>=*X-4eqK;VAsvGo1@h_0
zucLsD%ccEXSiysrGCr&xD6FH1XqveK={ml?p266nI*RH3=qQ~YI8)WvFR6o-Dy5^e
zj^76P*S}?Syl}BlSsll3=b;nM>``d@(ex(80~K^s)BzpUbyU((SqI<Cs;YxGnyTnH
zGd#0fcCJ%qkrHWv@AovUreoXL^!6nJHFP|pqo$4w9emr0qmo%Xs^c*!+f)B!u!Rra
z%oAV<TLdz7aJ*B2M=jmIF6i?_ppK5ZI_BzlQb#=<^>qx@F-%7T9gpkirlY%#hB_MQ
zXsM%>j>bBk(9ulCyp<`5_q&?tXsYALtjvBZQ|Q&KOLHA9qySVXEANc8*3m{sJ00zH
zw3Vod<pS@#-=x~?OzL;g(NRYi9bI*F($QH*zYE11m-cUIw%$ABVv)d!^Z;8paY6Ln
z<d!{j^wcpx$3PvubpDt%rMK8*y*OR;(b1O{bkt~$!$Vv4XQ$*1&<OdoR{j!V5a-hB
zX@hl)X%k@XLnJNlweq@VxQ-Dzrif%Dn^Z@(@X>72>S^PIk716SgtPJSpBb&{)uJ!)
z*R;IrGG507QJ5$=Ne6qD4$tCE*716&K+fLXrb^T_9n*Ep5I$4KEFIilo>#21bsSzC
zm?QG)tpeN<xypYToE+w{z&cbNnvVIL{B^vnV~x)J;jvK1^Ykbki*!7rW3i4UI>wa=
zJS#??W2#FT9Sa0n{NqpK&Bv$Ts2Zp{F1tseK)_0UQO8R<mW$?6-JgV)u_FouNa(sN
zbga^`TE|LJc=7BwT1dPpSGvFd$|aAWj<Cd%hd7g%MY=W#C`n0#p1k7W8-r0Dh7MDr
zVuEo&oh`gFWkbn4%+b<e>u}h2^6sKbPpcE~=#ckwf3&7IIdfSnsn+S>7-aBO9UJJ$
zI=<vUV<S_p<A9DgbiB#-XQgy()crU1d2H3ON%&^LErR@5I}y80f=l!UJ9O;S@xBCi
z3GNYmTgN*(-WARyyZxqaK(cFH5#oDE`Cj^l?1E0=J{=#3e7|6e-TqDsJU)`(C!CRl
z91^7bu#h8y9}CuB*5gwlp9xaub0J>{GNWTUzG6ceXu{{eI=-Q!8c^TL^(|)@&RU#6
zbbP1ddmZO={K^?X$4MPOa!R2So~-!;dyS@a|G6{YU}uy5mKnG;*MF6Q+iUPUf}eE!
z%;ksH?yQau<NR-sf8jLcH2G$C7vgzNYdS9IxTxcIP7(Ra&T*^!H=x9ac{1}o@Lym<
z=Mvm5?2?Y#{hRUe+*KWaa1xl-`D^a{pyQg3f(8m1XjC+CUB^9fLh>6r{^FcdG;mY!
zmLP+-b==W$SAz89zmxKRgfQy9j(>FwdXSO5sUb)Ae>xuMNHP2=J%?bLft&_X$tB2J
z%8be_oFtEs%5{DHyaw_~Fn=<(fbnqsP}o4a0cKIrKoP?qI6TUWT2TYV3=}s|LV~3P
zOC~LxOG_`E<Yf$$6<#hW;rv#?z>sm-L&^t;Bd%pslBmiCsw8!)8mJ~52C5sVA^eeK
zEG;}LoVQI_g_;I33<L~h8mMQWK0SnglM$?AAj|MygQ29hfl6bmez7S~SE3SEI<v-Q
zHxN^e4Lok(iJF0i1`5u|Y$Tk)>+^eeE##lpn;K|lpff$NURHC#mIhiGXd!%eIF<6&
z!rKY9G0>J>5K5<faP6kV_69mgR7V4yg!KI`g+EM5q@7T*D|NaV=x(6tdNf;)9tL_E
z=(rA@)}fby-Uj|#iwA4b$3S0p%~}*$i+%?B8<=EZvVj2x1{xS;V6=fjY~lME!wd`;
zGFWhkfuTZXU(aAHD>cHvNCSP!2KIIe%>N*(d8+_<=7R2H3{-89HJ-g+Dr>BPaR&HP
z$ZVFmMbqa_4IqE1bLIpC6Ge^u#X}|ep2-xJ(8B`{Qw>ZrFx|imHlu|m7G@fl#VVNS
zV`8>}IR?%d_|?E%15X;*WMH#_c?O;`pcsf4m~Y@|1J4_H!SEj?FEH?ofoBaYG_Xh{
ze4CED{XE+z^*IBJ4S!FwB?h=73YEE?3*Xe@PCGnaG_cgbDg&zxEHm(uffWW;8dz@l
zo5}E1F6vDDv@6|%X(^#iZs_!~fi<*gAY`CGX<sK4@h#IVch?~avn2EU??zPvngQ2<
zXCP`IX239DGNGu&4d{{)6Y|X;+Oaser2LK`i_L>u(9mXZYOb{g)*0Af;57s5Sseqf
zirW5CsZ`*>+-nt0^SOaH47_PzBl}(U8>f(8taF<(5^gldZKJjr*lOTY1D_e#W?;L4
zeFi?@KsK<$z`F)^8`x=Jmw~qpyd!1i>wl~-EwE+S!U@ZJ47_JxuYvcaFpnL5*c#k8
zE4^NNLTA5$4-FhPaKyj?10NYUXyA|mR-AUY8yLUT-YT`=yWDg<X7RCD`-DCqZ&$Jl
z*qfgl_`<*m11Aj}HSi^es)26|95ehE$eHRZ&Z2`d*iAIc;I{^j8~Dz^_u>PIX6I&T
zY$)y`#UP#G2Lq=J{Al2efzy&{qRjl60xkSx;AaD84g6w&wPx|QoT$Q18Mpdjo3m8s
z4gAL0!$f5hzZ<w<Acu*ZCN3JdWZ;H@zYJV9aD~k{x7IZSS2<pU|0%e9MB0|gxfsRc
z&8^jl*F|14PtKbLZW*|5;9mo`4csyCw}F4?wBs64?Jga4MA~zCnk3TRli+eMg~9%5
zPyA=#f!IkgK~rDk%|m&vwbjT;QcdJCQN%=16S+;~F_GUy0TXE^@|ymb$|uMwlk@MT
ztTIVK6NO9^Hj!@nTi*42vgDQ?{*UkJf$T~ukQXyi+(c;;WlWSXQBv%bGI6YA9yT}|
zpK2UL)GTYFoWxc%QQq{oD`c-#F#Y+tUA-)hpcQt;$20w2sA8h3iH0T`nW$z0CNfL}
zOjMWTRCv@x4HJ);4@Xv_w2!gkCf`*^+2U47bbY3YS}eJVdM2_=)RyFR1QP|Ld%s-D
zAJMc~-$VlwkF!}y`_=FMmfr#cA}J(|O*~<uy@?JcnwV&6qLqo(CYqUOZlZ;WmL?|D
z@k`!FEx%)I>1A!uybXv`+n|k!wycO+{%DSjcFFQHcr!=F#jf=_n&@PrhsZmd=whO)
ziEbvSoJcb5c-ig}%ixw5N^d(|lL>p8=*6ttfD$5=`<m!y;!8HWiT)-An24BAO$;<K
z$i$N-=9w65VhGD=VxozmCWe_9ZDNdx;U-3y7-?b@J4oh0P91E7#F%2G*xh4Ij5CpK
zVm#e`Wy+xSe&g_`By2{GJ}M6{ls3u4WD_$?%rr5@#8ea0OiVZZUELBLMC7!VFvujc
zIQg5HV`8p21IHQ%bwxF0XZJ$vK6VQApE5Du#8MN>OgwF3fr;l#EH<&w#3B>VFrhRK
zi<CGLWoB~DqDxFXZ{h_LFS78f{SM_kz?qPBWcgWa;!7r$n|Rs88WSr_tTeI8#A>lg
zQ!GOb&9}_5aZ@$FNOU<9VG{~ZUaIdl0|%t+dpC7fdRoGZn6+jiYVu7X>@*QG5jXLw
zi47)n6NU-bglEDuVVST^IFc8~Lh2sh8b=D7l!d3YwI<e?Sa0GL4y%ZNGU8mv#!S?a
zXAtt&nB2r>6I)EYVd6~_8%=DI(MoHHW@q8aSqtW})x<Uv+fBS>`fr~yijBY=nH@i|
zp<2OP)pnWu_6-M2d}QJs4k#1vo7iV!w~0L_-ZQaR`iq5Rd#+E*NjG3Z9^BvT1F6n_
z6CWl>sZ`GA%!T$@{(~kCnfTPiXC@AtIAY>s6Q9V4<9UP@=oLh^A!i#__H+71;j}L}
z9K;&mFHLM<IBdLc_A5>uoW3mNv+#|HZ%zDZ;+l!$CcZOq*2FI+zBh5g#Ay>hnmEbo
z%&ql<$xAk$aBk#5!b5Fb@r($6GV!yJqHXbR!-umpC*E@=e&q~r;*yE;CVu10Z{mVz
za;8npv7E6J))I5_WfNCSTos+UT`DqaiI?(+1aBRxw>Vdm>%#vw@sEicCjK&U)5I+k
zcTC(h{rR6sZi`NAL~HUyF8;LdrQ9=d-{b-UIV@l8Ur~Etf?510oc0r^fSeXmE#$V4
zM>PFfTmA`xsm=}ab<#vmvkX$0-$DTk<t<dOP|!jl3&kyz5S_w;MJ=RTC?cH66S**9
zF_G|$R#HeQ3#EndoK?m`S>fd@zwlJ%!4@X6Z7W)+WFf;sz(QpURV-AuP{Tr13)L*Z
z0$qY1h$Utu4iNehccpv8!lM=*V_hu&EWmL(?nX8G7?p{1W(qSc)Ur_DLIVp~7HV6l
zW1+4EerC>tFE(>fP>t?H<Mk~6W#(7LHhtVeLko>8G`9S+3A3XUQj>(nd2j-0YN45h
z?k;+`Xl|i}g#k7O+GuH^m4)#ZCRk`~p^b$u7P?w!E45(S4i?%8Z!Z`tUo>H}qlHdM
zoz6lIb*tBnSy&isVTgqu7J6FfXQ97^UKV;==wqR;g>jQh(*n;9=$nhDo1ty|bIrk%
zRR&lXXkn0;Vla`*z!{~fQ>H<#p%#W&7-eC!h2fTeDj8v6qy?5INB3N`$ukR+P<f1n
zvCPFnwy4oK52_KVKsBCyCR*HB31=+)WMQ&}DHdL}u))Gq3)9%+7FJl8ZefOng%%cZ
z{cmBGg?Sd9vM}4i91C+TJSjzGgR?I<aqZkzC2?}0WWI%`C3b;@#GJ;ZDLsJ&;5_h*
zg=a0iVBtjz&skV(VTpz3=}RkpQ#`o9peA>wrIVbDq%5_t%)(1zkekgiiU&^+)a251
zrG-@%;udrZt1Y~2L9r0Au!dRF(=3E7<m^#m(FFfQ#&Zfs90_0Ar<14_Gz(ESqxdA{
zEN#c${@d?dc@kM9!-8qSv#{2JWx=-KSa2=>_62V~Bx=Wr`jG3Nq3CJrEUcHJz9Mz!
z$MUqpxi{hJuQAHPAq$5sykX%@daQ-r7B*VgWMR97w=8V7u*Jew3){rbno|BnP2wcN
z>=ItR!@^DrZ*!1Z{#TZ~<-%NcvC~Usy<0zvRb!C9q35)`$HIFSKCrOg!d@}>zJ+~4
z{LdL=^buKw4@G#u!bg_BuAt3>B4O4v$Zs6@LBSCYIt$-gIBww+3!hpzYT-)@pNZz@
z7QPU|c1ze~ACVlh@RfzHIqgd<jq~b*Ir4-^O&TZv&cgQ=PFXl@;e>^gqWJ@hT`HAh
zpBHzDN>QK6wE3ebuzA_1KU+A<InYK08^2gMXW@Z`6dS)<IB(&)g&P)r<1}L7iiN8d
zE?Br|;gW^RVuVea=ts6Q-I&E=E`LbWpBAohf-UV!m?@)(oPz$caMQxy7XGnt%ff97
zcP!kM9%q3!#C&gOr!y4|*4voto`w4s{<ZL*cp5#2mr?XFnxbZ+PjlGFX`_&h!hCbf
zMlKt9ZRE3&+eRK6X*QTO%Xu%`zcM0csTj;J@&Yyr+J3JkN|^8#IzYOOA~s6eC}pFl
zjbb*6+bAJPSUlRH!*JOCuT@LiC}X26P1%0Sv&|EJ%PwG!YsMCSvT#~O8<lJ{vC-5<
zWgAs&)UuIfqpFQ+HXgO{m<_&sR^3Jo8;?j{%!sQF?xsj1$F3D3av4_BMuv@mjZ7Qw
zrKj<faqg7g5iC5jV-k8`Z5wrLJZ__*&A-~Ap3Oax(7^W3AS^Z;kY^TJqf1aiY$Vw=
zw(*1z7MP7sg~V#DnT_T)I@{=CqXj2_8*Od0v;AxERyJDOXk+_#A=o24A0=9nJ4?5>
z(ZNPX8=Y+bOvGkMG%wAvv|LE<+Fqrr&7FeK+eRN7-EH)+(bGmR>5(%s7}=6En@GY`
zeQor!`Hhm_r-^<fNjNr_j)QCrW~m$ubTGumP#fRb_}<1a8^dkHZRj>e*cfSJfsKVW
zM%fr`W15ZWHpbW(Yh!|qiDG=5jcgm^IW(l9Sa=qLZACK4#$+2)Y)rL5A=hs#7(Fww
zKBR=p#Thnc+L&wONgK0l%(gK{%(AqJ+ck-C!P?EU@sy4EHlDWqzaJ)QN=%SM9T(Yn
z#>Ofet8F}M<2f5kZ7j2~*v1kYFW7jIt@l>y^R|B;XF`5e#LLWgUiW*D2fOkm8_R91
zu(48#!H#2H7)57bX-Qa;mu;-E5wW4#2+~z-gl#C~y;6&;^v5snE$|dWKjaM%1~thp
zY9l5j(Kv|(3BAj(VcOV37qwy8ux-3)W1|hnhD&d;@v05a##$TeY^>*qSov@=NepUQ
z8_FH3)hZioyv8!yc!Ps+uRqCf-e!4NDz<!Ld~LF^*~VKocG%crW2=pAHn!W?P^AQ$
zlwHQs(jYyA?a3)|r;S}U-nQ|Mv^g)<*lzs9>|J_Dsnp%<xWZ{%ATbqZZ+<kr*T(xc
zKC$tsjeRygu<?<NgB<BLK9u%6z=3l)4+kR?a?fr03>WZ+Y#g?6#Ky;BFwx+wCduOT
zw8U`!%*N+7zOwPPjW28*weh8mW46DMV4}=KdK3>jIotLd8{gVEE}63L7|SD3K{m(<
z8z*g)c2LH_4>nHOxNGBY8>emjXycNN%Qnu~_=z*Tjq^5swsDp-zm0QAg9*1xcu}Gw
ze&gV^alyt#(c$TvKEP`7LWTukk!toUamB_}8#iqHW#bPUf7-Za<2naaPyZy&p9>`F
z&X#9WxA?HyO&hmt+_rItnqrN!C2dmqZ0S5f)%UJ{Y~15C?jXN|`!@dN-0mQkga2$i
zu({hcayb4ZK+8O6IZ;|laytH(xl{fN<aUt9L7IcS&cm}|qF!`(x(&ODO<KS~K?g-0
z6mw9B2_2+6C?b{<m+;i#&Pa4Q-fW@q;tonUDCzLmsDAETWwGSUoye;;N@%vMgK`cU
zIcV&lyn_l3YC6bpP|-mphmTiK-9cpsRUA}xP|fk@kVHbRIuf-YvQjl1JmTO{2ah@a
znUw9rt8ex)l{tqbrk#L;Ob2xx)N@eFL6(Es4(dqRSS0oo_sVARSPS0N;;^mnpn-$O
z9W-?Omgl5FYqXgt13C4daL~j-M+co8G<DF-L2CzX95i>(!a*xB&O0Y`;Fhdu&(!&O
zTQDK>VvcPcv~$qjK?ld5i@0i~tMfBVDlnGFT6A{M#X(O8y&QCP(9J=22R)KyPN*gP
zkos)=-VXXW=;xrn=y3aeo_zZXXV!_5voO`ll^En;u!ExxzU2JxV5ozbgSdlX4u(5e
z;9#MH5e`N=nCf7fgHaAfI~ea^f`c(^YIdcAablSTV2@`z{yC1V$CBtzJu%V2BnOin
zOc5P6DOcLO!OLHhu)h)xJl(+z2Xh@f>0qXVSq^49n3J^mzjGFqS#sh$2TwVe@8D^A
zi<ZLMbd>YX<mao4P?;{lQY~`ujDuAURy%ms!E+9lI#}jlv4bTJo_Fv9bJS9}TxVBO
zpGyMHMK4OGEcx`jEnaf4+`$S5E9rYH{a88!Z_jcFC+<tLBriKy<3Mo`k%U19AqQdM
z>`Gdu%QY<Qmxnf02bzN@b>#HHB?>2m{d=l#aOn;V2fG}+?Z9+kIe3jm9M}#V2kRWH
zci@Uy&%s(Dt-AUX1$`;ehOdb5RR<d!f91fD$orF=5}7scsK4RhO$S>YY;&;D!6pZr
z9c+=FVj=kl4Hk*sNY7#4aVp;K;4KF`9PCV%mPJj};(wn14&BwkhYk)n*zI7CgMCs4
zmg+qRdmX&bmbsM9WixO74E)(IEj#D~PAsCv9NAeEe&pbwgHIfM>fn%r!w!x(_*h(v
zXJKZ?i+A=ZyO>SNGJNLXbFuIRd$x~1U@0U?ETWD%_=?k!i=r;RcJK|ytb^+gzIAZi
z!7mQZIrz@O_YO`w_|d@$2PZl6J2)ja@5o~jTH~a|a|H9v`++}+opJD!gP-X$h5ebC
zd9k6+ChI%N4*criyn{;)E<5;*UEtt?gNve2uTP1i7yaR!=y$pVFHx^Jxa!~!2Y<4E
zpU=fE<F8w&!-F;DltOaD!C#!TUF39e)4?qV|2Vkk;I@N14(>YmTl}BRl2~l;M8gS+
zt;*xRgMS@7aFF8SKhB5JeTlOk->G1$^5AHtSEstj<s!d}0xoj9$m1ffi+nCvfHXl?
z`D6ZBqkx}^6C;bqsDdsExhU)+-Sy8Dw9ko=$S4lU#J#v;E{eOT<D#yM5-v)*sOADL
zO1UWQqN0mRF3Pwl>!Q4i3NFgI{?yU7Kv}jw*JC^-(HaLPZ~U^3m0eVk@>F&G&DI#j
zem_6ocOiC1br&^U1YBggc*Mn{E^4~Sa378}mi#dnyG}Nyw{R?TG7RqVZPs#;<)XHj
z?dVmZDGnA^FmXv<&qaL~EnT#7(ZI#yE}n4F#6?3Fja)RAR4g!)Fk#*FG?t3LeQD~V
z8SnhKXu+23T!Jmeey7gEajN>cw06<PMMoE%T(ou3&P96{9bDg^`M>W(jp!syOHQ+$
zU378L)kQb9m5c&^XiUxJyQpjnz`FEw(aS}54?R5ecF~7z?xCcIzApN?SnFb)i~ek3
z7tgs^>|&scK`v&xnB`)yiy<zuU5s}z)Wt9tqg{+~G2F!n7b9JalFBA-XiWGm<$r|5
z8!J)c1c$Zu-R5Dei-{tf?qZUQ$u6e4nC61X6FO6v*V?QlYyFoiDC8YK;tbcn^_K{e
z%y#jli+LiP<6^E5%6aFI_>_wUE*83&@8W6Ke*{J$58gjqB%05#NnIrFLryQ7gHZ{~
zOI$qfLYLyb;NnFWLAr{Ir7o7aSmk21i<f9njI0!7Lf)TTL7j1pSnPz&my_jL!$GvR
z8ik2_m|>A?E}||J7ZC}n?43paUFF~3tH&zGl4;|ve{YuZM7tR-Oc$05+lBl8T9rwh
zWb2W862(%jckzmg?_7NE;#C(LT<ml4fs5Cu;NmS8J6ycs;!PJ@Tx=B!8(nO2u~`a`
zs27XP+q1-NBHS*Rs0$0m8_qj9d|bTiVz-O8lO=zLO(Z4n)!Og1JucpJvDd}>u78i3
zt&wOYMll!Gj>mo%AG-L|#b+)KxcEp+9dU8c#UbH`1*u63tR@MQf9&ED)^X^={-yA9
zcB_l8ILW&>>f%cm$0Q*$N@Pd;Y?*&6`x}ve>*9FQ^8XZQ=Y)%sE^e{FE`D%v%Ebj2
z7hRlo@uQ2gE`D)wMiTzSX-8Tw@nkkpFuEMedCtXo7r(jqRXT+pLa!$NF71%epS!F1
zB^Q@nTz7H9#T6G<UHs|dnu|ZgEK9}aVwHJ+ev0Hs&g%Rn?r~Ej%!_J?HoxQIE~je`
zX&(M|@sEoX4>>&Cb8+9rznu1y^)1jo@1nMdHb{RU88JDZ8qkMxdcL((54pUD{g~*c
z+}=Zn+`YVQUJv;^6!K8mLw*khJb(Na^d3HgNceN2J<~lD@le!5G0{mpB4H~P_xyfL
z^d`xF`J0sTP})O%4-Gt&@le)7bq_T>l=D#DLuC(DJXDaf(Q+jZ6@}N#<v)X9gC`!%
zRP|8J1Ck}@kWX|ypBg;k;ZYBn9%^}b%tK8N86E;+B$1XnG)2ybJ0w}2KM~dTP)Dq>
z7wU>~JwZnC!8#B2%i|szdT8aLwTDI$+r&dt4~>OCA^7y(diM`DY38B1hn6B?MtrK$
zA{m>g$fQQO+IVQ|p_7Ns9@=?mFS&R0&_Og4vl(-z!36K(p{wT)t8NJeFC{U)7)u}P
z>7kd06&_Y{{`b(w!%PpeIRAU-=V7#mF&_GR7~o-;hv6OudKlzk2<t93*$(Wi!5&ys
zX3C&4up;gA7~x^0<T#41BG1J>sN;`B=F4Uu>tURSNggJ9$o4Rvz3*Y7hs1nKXG<I6
zKP+Pl@IeyE6u$Q3VHy?0=GTLBC2TS~wh8rTc;H}R8_xDH$HPJoizxB%r075GVV;nu
zJj_q}VWKbxPUIuuu|O19yk|T->)}NYOIa@ui#<H=;RWBlA9_n7Yx-oOh3O9ovdqIv
zes>`8D2gSg&m<n7trCAe?BR%q)gE5<u*O5s!<!y9dI)(4dvH9s9uyA|54s1#gX%%^
z5cLp~<Xo|E$;THVc*gHsH=XOuI6XgKOAZiI6f6%m2f`ZvzAjJhl=EOJ&%;^|uXuP>
z)Yf@eFNA9h-oxa=k2=)c;NdmO+532C;SG+jp8l;%sy*9v;3f~7J?!!Do`)?SwtCp<
zVV8$(9=3aU%fk+q|57>)a=pRpH7>Nc)ZsftT*kc3=JoKdhuy4iB!#O!-t#13jS}Ug
z&R!4id-%}90T25;eBfcfl#?ql7K7JNywSl$5tncuc{nIhhXk1;Gh(yQ6qP^r@QH^j
z9<F-$)Wc^Ue)90MhtKJ>9=`W*!oyJyUwZi3!#C2c$E5eaO89`6vRuiNm>ItHa9o6m
zApPV!3G#G&(!&qJe-u0=cse-^{!jl5``Y!-FFekA_|?OC(fmd5oFE6$Z$d73xG3az
z4|zYyok(@b!(|aNNX`Gr|L|~^)3}E}JzVo}-NOy~wlv6J9&QS`CFM!9Fw>F{??{zd
zLI!E`AI|?C?n@RF{+o=YX8l}EIP;{eMUJ&dTMPS>t~u8twNzGaL6X$9$n{!QuC-Xf
z_gYC_`#+|>0y>K8|2`!_3PgZVTrZjpn_@{wfZ!I~DK3k<7m8bfVr|i4JG(RM8myF-
zVl5OY4i&u6;!r3q|2v<2=Xd_+ymQZe_kEtsvz?uJ^PV}E1kG91jZ0PYSn;7%-+YEH
zuaJCJ<TsRPD`JF?A0I`7Pdk|lSkc~!4ptPjqL3BwRus0Pkrj=t_{fSPR#dX0vK6!}
zYDGmM<i)HgZq+v*E+I%#(uz`6looFpE6NKgD_G93*<Lh~mJn|R!OsRpm6_X&dKD|G
zT9IKz11l03B%yVzNR%9_i<fb$2{8*MS@E%u>||?LQPYZAh9$+?!jlD41XGRB&Yfe^
z44!U9U4z#XQr`--Xe2K)8%Y{UF_>l(E39pkn_1D^inY#^rdG`SuNjpVRx}(G)yj%Y
zD_UCd)0JqYZY=fhi{)-@MT;-e+DXc7B&e+w)Ok77=Pys|XhkP0c3bfs*MC~k#frIB
z%(J4a72T{DY{d{Ox?9o1$}b;Ndr4{?Hl@B_nD&XJ*^~Oxw0SGjI&MzwZABmUnL!pN
z-q(tLV$ffZg&$zWK;aA>B*bFH4ly2T#V}DOT9I>P3=M``c_d2Oh+&0CSTWLyQC5r=
zgE4~U`Mqf~){1dfj2DGoW--AEB5Q0(`{q<8Sut5cr&uwSb!b?AX2mq&tl{ZK6xz>V
zeTqIyaJFGT$BHIL(r7T>iUn4DVZ|~l7Fw~0qri%t<`m!N)bn>!K4(wfl$tXsh4oKy
zi3Ba>6(yz6yWENuRs<x?l~Rps*ofj?Wrb@|+Lu;*CEl+ER|`^SzUx>U>=g^snq($#
zu;LqXD>O0K$SxsdlOT;ZTd_s>RzqQ(P*<$5iNgA^OCO_1=Md2)=wx%xFF?^PUXLKX
zUMqaU{emZ@)q+-p<dU<yQ`m|uE4GQjcEO#3JF*oi!!F_93Ld%=y@y@Vid$CvZN(2(
z?6u+-D~__puGjxj>g{JM_6a$DFk`<J2P7iPbI^)I!haIX9x1;&x*WEGcto)8!pvh<
z9Jk^REB>_NgcZMv@t%QEOyQ&z=f!(U@U$THGgh3n;+z!^*Xm~3<LH8fUKIRI@OQ!N
zie>xm-5Ghw%I7etm#t{kKKY6jSH<9(6*q)j7i2k^Cf#3F+!TfUb~y4MD{foyN*d*k
zp}&-RxNF5dEACtIz|fzvY*sw7;;|@C4E<l}$xQJ7a{14SXI4D7Vu?q;mKS0f^?M3A
zyD0Is6>lWdw^r=>u@DC}#d>p^MJV_{K@|m6735G5si3HWVhW-ZJk|7_wW1Z|RFF$S
zZUuQ1e5fF=qVM0%?L&E<0=L@Bry#$gudU75KAwxx^~YIr<h_rASOswk3MhzIP*_1h
z1%(uJ=&EmHcypU>!+Vbk{Y)Pz`ll8}6n!&xI;OB=rMY=*N^u1x6g0Y-tFnTU3Q8&9
zmj0C#J|8oeR!~vF#=_<@;w>v!PO!WnZ6KtA;O;R|O>!jPTNrtJkR^x3;{Uo<=`N88
z3QP*p6r?Nqp-71eYAL9#pc*eZPjj;%Ns@w(g;zI}8VYI}ymtQ7WVw76JC(%X-j%U+
z4E}O=OkLp_3K}SAvoF1#V12<i#k#EO63OFu8uDTlG*-|=K{K&$*gb&<*$khY&{P4j
z`Jo6N5Hq|(a!UoR6xbE03NjV6R`9uk#Y|1n_qQCZV2FaY3fgh~KPy~8U(q`%=%k>B
zf=|TTSwS};hY!beQP5R5qi1hx*<HLlH%Ii8YVR#x)_*Sr#fx_)>0{VO7tCa=el!!M
zn8h+c$Up^y3>%A(Bc|>{g-lj3MZqv$l!6foMk*MiV5|g<QlRfqsUUPXhJ<eCnOsbN
zoPr4oCW_5?_Ro6VDNc)tqyfn!ww=X7GF8E+3KodjG(n0pg-loQnSvRtC9$Ob_2y2*
zSrR&1!5krTjac)9%vX@TxhO3cin56P;iA6t=Mn`=6?|jZf1%(@;mZ^(7qUXZN+A*Z
z^<6_(8A-8*zf$nE1g%!EPQice(`m3q!CDc?he{#WOFe8*kgrt+MY@d&HYwOFW?KXm
z!L3YO$UNifYzpdBh+`B@fkQzB8!Fo1RNzwZK*2)=ZUr6%2NfJr;8oyLuuH+W3jB)x
zMOcto3kfLvre6P>5LS?-V7r1HG(Mh-+jneJ^y8TMY?epy@=^0n1&0~2V;yqhZbkp6
zPxrlo?-cA2uPV=k=T43K!3f>U%i$YX1^X22S8zad-u5#Q9*@g+D?cgtS-}|vXJt?v
zR&Z3oG2ur9e-YehvG9yqCUu<ML!K3%Q1Gjyc2e+^;Az3K@+kG3g7XUgQgBnj1qBxs
z{HEY{MPJLr#WVc>!so+ue<--3;HsjpKmSvrUlM+q9Wo|2YsOMd|MKgaRM&L{HxzE^
zslQ$%?uyOLEme=K%;0i@TZ;bm$KMM6QE*$q9ZBjw8@EX0UExgXo}!;}!qmw5IQNl)
z#|k2Ch@#_elL}rbcr6$Bgi|zoj__xKF9n|~cp-!<<Qat(a&LR`8wGDU)!R_NS8Iyz
z#NfRG2GL6wA?b5{GI<W+w9IKkE*s))C~QM+8}ir?YeSq(Un%jS4f$-yZ$n<2UM&-3
z6$d*;G|k4w#n>>vMv8lS61R|LPvE2b0yh2Yu!1(!P$Jn$3fXw3o4(l^@gp0G*ihVt
z5;hd&!*=#k9szID7ZUK59RK~%tfUR4Y<lfMkmW2bq>L1`tWEDi<pj$MGK*@{BUtl%
zb<UtlHdGhAvJF*is4AR#H5(FaFp2ln$&^GPpA^i^jgifUO_Gq01$hEHw-T)(yrvDc
zY^W_f*@hGwQiXSl%l*USTy<<nvw@uVU}X#FWgymL{o8Qgh6gre*z{4h#D=9dG_awe
z4UKGQY{O_9#@NurhNd?3wxN#=&7_7uJ!EQcLv!IRY-lN@mEf-0`rEop8(NE(ybZqs
zGk7~8-jRhn*wB$hGW1?HbQa#lP`cXC&EVZ_=pp<QL+NSLH|}8KblkeOuMPcd7-59=
z7c$U>0YawVYC*F>MyN%|V8J0a3>7j=aJb;xM*6-YBZZTUvY~WteGiSXHtrjVDK<=%
zpz-Vmb4-(kPq1O4VLwU8oMLTu$vzmL+Axhh(1r!<BsP3z!yFst+Au@RX0h*8Nu6oL
z{b_+|whcT%lG&}zGR-se3K6;59@A%lg`zC7;d3GU0Pv#`g{dz#EZ?O>d||^f8!p>$
z#fIfJtgyjngWragHmtJ2%g(<g;!7L8;<co-aoX^;4XbVV#)geHge?}{Ypt<itqrdS
zm{<KAu}%oZ^+GlX9{4qap_|ypjL>5i%NCn{pGLRU2CKmpAvQs~4XUAQHaHB<hXXDd
zJ8nUbAj`(FX1!2$b&JG+4M7`@+i=2$5DRI;9vi;5A<KqsHte)vmqgia!ww;gI3hKp
zW#`C0p6ef1ek<a4Hax5wyPHG1N;Qgnaz*^XhP{j~{73fo=yZz5Y}hA!zYPa$ILMB)
zwHAYpig-xyC&8Zu53>=4(B>B#?p3TtLPx^cgEQ){Hk`EKch>O5h*NAS8!p)Ne{H<)
zJ!8XpoBpVQ&jile&}DR!b2famAZ^|DG>Y}kMqjkyH!(O?rWyb7QRG96KR94*`V)^!
zf(L%ox8=WT)0cwN-L~PH4cEnc!-iXi{+A6mh38xnL9@Sw|MUMTcWk&T-iWbr_k{4M
zvTv3ad1%8U8_L@OJ09EcFH2}g5j&o+1v$ss^-1zSnJP(gi}#rg&uw^N!%G{?2UD(9
zOnxoomCQ@o${UumV)9$TcY^P2h_LG--3LN)*b!+*l<=H(<T66d<&&2etwuBE7+)^;
zhj!$(BcC1l?TE3X)|htGxx;+46z2Nr|2_SS6>pp!1%wn7q-7x?@pcq86y6&YwWF9F
zCG99B;`yhAiVG<r_^gcnPQ0{XU)GK?!jGMbqki;eTsb>V$La5aE7(!djyiUvi9sbh
zlI-|ccx5}P2&pPa;{-cQ22Zr3nsBq=(<udMP+fRU!={EEshji#rF6CIs4aT35t<?-
z)sCfa^cqOFqplro>}YF8Jv-`4Xr>(*hJ7<34FnqsHnO9!5!%F#rUqw%&FyF*-j;T>
z5|W(@GvX~xYf*L#|KF;`cH-?~M|&Z(=^&(|9i4=97UY2@3>x?*jo96e9(KIiiPt;v
zi5)%dQ2em@(aVnBb_{W1s1tqc=xawq4UIJPv!lNqaViR^7+}XhJA8Kd?HFW-#SWKU
z|6Lx;h;~f3<1;&k+A)j`(JFD09mDMyVaJ(kh3Oq>$0$2Swut9;_dT~XJ<KIHcKu%=
ze<H`&G1jjCR*n-S882jl9TSDT*qT9cvK><-%C?lusdjywerm^Ei=~=9b(-F$sW}H*
zX4o;)&J)nmH`+1Fj@fp6X~$P~%&}vx9ZT3`cFeP5z8wqgSY*cnJ07%;AKWg!R<~&0
z$xIv7^m98F+wnnWJlCy-d55++iE|hKT7F^2GCNk-vC@uoTiNAyo*@$PVOxEJwN^Eo
zui_<)iQ#vn*~i6h9T5Gs9jonFXUBRw_$PXe9cy_lt>Ss-Inbw{J$JrJhsT-m8|?VT
z4lPdq`;hmbew2niE@KmG)s8K8Y_-F|7UUQl6lY~i*<oXE`6XHZIK{4SMaBCi%?{O$
z!7a^iJ9kaGmwuvWBKJOJC9{6G^8ioua7!DpnLI+gZ2e^s^akt*+Hup4TXybDRW@YD
z_jdeXN7#-mmf4Q&c74b7-Ms215j*Ud+Bk8S9XnZ>8})l6dmt*#8uhIm)1G&GG$5*I
zlf>`r*kecQMv3G!*vnaEL6f6)9?Pq*HvCa=pWuEw4hW%s(2hgGe-ixJ&<_haBKV8o
zCvW49+i`+3!0m+VcKm9`Nw$I=zuR$&q8;b$xWN8q$KRf^XYDvAy@lT_u+ERas?B@F
z#al9X-V;Brzjv+tMG0Lt&in`4#f~d>T(#?`+Fi2avR!{tQF=%s<FZ})@y2X@l)r<%
za_pL2e-dID-t>kPgC+S(NS$N3{<h;EJKovxUOMM(JMOc03BSXRD&+d9h<h9e%k*EC
zhobyv$1^(~34bj3uiz8Gr-C$Ql;?K5u;aBTFWH@nn_n5BOg1~sH+H<WgI<PaD~ubV
zBDboKmk(6rP!Xx>adQgNGD--IDdtlDSGGJVK2(ucMLrcV5;wnKv>0b6{(rf|8YvW1
zQAouJ6~C&8S5a8S*D6-4_((+&Mpw~OMNt*SRG3vHsVJ_Zgo^Sipd#lKb7eK5B*iJ_
zQYuQT_-=KJGAhccNc+rOR^<mo&8a-d-MsM4CKbO(sGy>viYpV%iHzGfxsr;?DylHM
zF$t5rkz<+{DqN>&RTT+LYOuwm;?II@Y7Mp!>1C{H5{o&0tfIP#Rw^=8)KF1VMN<{c
zRMb*YTSYw;^;IORnD%8ts){-)Qds!U(x>EVI(T||nu>H4byZwU?Kq)$mo@vE+vfEu
z(ldpwr=@F#iUukgsc5XCp^6H1bOQ$QInUktO<9;GDrOdIefCh>_0@DNwLGD@id|#P
zEm$oh%;!2Kw^YH?oax3cPiU>8jfyTRx~gcaqMeG4DmtlXFPHqXbu1q`@!C6ZqJGny
zq_gC%JSw<qSTeI?@tATqNuQzQ-Bt7uZ>5=LdV8tpt>RN&sfs=-`l=YgI#<z;tywbC
zqGGU${`?8h>p7v@V9Vn%=7FrPW32`WP91C+qGBkkqIl%Tqf>{m^~acps~8yB)Lt-d
z&x(YiDNR|zQ7T5On4n^!3Yv|P!jD%mRt3vRWt`~yCYl+g_WAac#9%6mG$(bkiYY30
z@7F7Y1(^1EYROv(_dabgUBzcAK3B0=#SFQkIW%M4s+gr>Q}5*2D%Pn{yhdI)z4Igs
z_L+q$=1a>iP%$XE>8cs#e-@;&p%<yh(<YX=EK#vk#Y&n@Oyyy(U#M8Fg6*<Q#qDYZ
znsiGhuHcYash21JgjAMol^B1iqU>bzSL{p65=ho?fT(b*@aQGMdKESqO&d5O=EQJd
zZc_1$DC8SeL~&n{=*Z0~wy4;u!YV<EAa(wjW+Q)V>?%~zH5E=H1&5IWQ*-fRTP4!c
ztHQ_1QSq$`zlwm0?P4D^k`1c}87a^{OT{)LZg!44#JltV6L)ivvWw2>bx6e?72m7a
z&(YdB{s$F%S+RTdCp<s$+AU4?Ny_U6TbNXMu%+9m&IeQ+RAp60bmWHR-Cw<H`je6S
z&ngZZ{D_KQgdY_=X6VO-upUmTIHlqP4LLOKeOHh_Sf^E-QS~Q0XH~r9z<<%_oQm@*
zF0gZ|c&cJvi^Shl{LY};30chwa6bQo<GOpoO~F3}FR8f9=|#m=@iO!;71s=YUC0fl
zR!)BkMCU%0>z0bYRs17Cj|Fe5xTE5(@P~r;1n&zz5M<n;-^V->zWb#9rSrdr{zOH#
z@*fAtA`{&+70*??5O3ny7CoH0_=?RfPk3Idcw_LlD&7fyZzvHO{^+4U3+l1T6saMP
zh7UFUmo!R4P9eDja|_m7SCT=zUCgT?pN9Mz>dx1fDMo9E(NI{!M;c-^tZh{wPD23=
zi(Yo(JqZ&psBx>D#Bi@_g)~?@C(^}hxLz!Yq=<$uw?`D!P)yVR+7z!4cWz8N?*NNy
z`h8#t4J9>{(okB{SKZgtP)0*p4T&1&_b}6y(@??S<%K{)p{x`JRn$;PLuC=G8a7pg
z92;z*L4t6Th8dSyW~Ww7gIUBR!~SC-)dgz^`Wx1*rJ=TzCs{+9hI9>kzD-QgkSbyw
zL6&xJII*tq48eMW^#z#-4d@!M(zd0LG}h3B7wbSN2byYVreTMMof?{JXu+z`Fh)a5
z4Xrfv*3d^oriRuUx@zdA=@0+gXlSRQy@s|LhE#~VJ6L}zexOCO4ief?!?&K6R61$s
ztRe3Z3x-&_Fsa)q=|e2UPD3o+HS`o?n)T4|37hO;df_=qBZpWzT#V?Y;h)^e4C*U3
zLo^KKzW@#W#XCUIqG6zrfsZ>4B7fXz!4S(}QJ56t4%0AP!>mO8=``I43Hok`Ueu8q
zY(p%g1lv4mGgiYm4YM`O(J)@a1PxO)e5zrhruXW}n!c0&B<9}ARCkJrIE5G0z*M(~
z>65XE(=<$Hn`-FrAR)gs@iR@|iYjKd>76B!-kBQW-zUt{&|^<BHwK(h&NNrUJa$VB
zil!gKG+)C~rmtavcozyT((t*4#S{;luAOYLM1#9=a=*sS+&29jrDYnHYgogcuVICT
zl^VX%@U@0j95s*lo+SQDwo3!O_IQW?c6K@y{wXkL#;?|}Iz5Gx(mD<6HEhwaRl^1i
z-)PvVVUq?PwsN^?6W-77QO!(Y&Ddl<$Jnf4@1n%XGZMRWi0?WlhIjSX4wtoQuyd}{
z;MbsP&{#qZ9t{o-D-FN3j6dE&e*wo~=#qiPmuTLSW)_cYY;w1Z_p)ieO1d<}63`IT
zkfmXph7hYx)Bm0ESU`@=^Xrqi4GXu1+s<76EzjK742b3c=cl#1*ugj_IFR3g-5S2r
z@TZ1L92XkC*RWs1$p+>h*mfPwYpYgM`&MgwEM>0-;*Wy+1Q~ij!$A#)H2lOUta%NS
z=bC?Jg?yWOT*G1U9ufS7UU>p@RKqdh!4;8IXn8`zuM#CQ98E7%IIZE~p0u+P@eDh_
zs<tD?#+=h|Ui1qZeiuTUi$Z=A+&dzQ${)g;H}A@GvMy`5qT#Bf^K6La8YeLgk2U<O
z;f994G~Cf}SHn#Ww>Vxj+}6NT9sgz}@DR5a`eAByW}Emgk{`cZx>s~~=jeMH?lXPP
z2^`B`MLghK*CW1Tr}&wf`dNznbHOXR+#-I?fXF8tk~tHfX?V`rZ(iC{4gYCKaGEE_
zrxIUic*&{Tp*Pbj4X-uicJSUf>W!waqM^&-z*`OPG`!ak;lKxCdALth!A<)2DV){0
zPL=D-BOP4)gPacJ5`#8Bl%>v>9W*#pBrg-sBRZA5La1E0U6*G*MmrGeK%4{QF@mmv
z5e0-4aUgoArJ#emQ)U(toLQ`WyaR<D_{f1L<=g*vI`Q6&G>SzXX#2=q%z<AjwJ+{K
zvzPTs2&cEoP)lhC$~f?i0~;ME>p(dNx;xOrf$|Q(fkqBAmLgRUOmd*21MYL}=qd@R
z>_8PERSiAC0h91VL#Zaj>_G9Isf<`iY5K8)FRz<ccc6w4@|r?wIZ)eyWCv0Vy{-eP
z2CpL|&4F|wE2<<hB3(TP>Wh+LST=B=p}{{XSgi>se+SyI9(ef<G<Tq-1Fc9p$Mdre
z9tGHfB^jSI%bl3%z=_)N^%_UEcHm^C^fwh#*cSDNTG~0#-hs{zba9}A1NPs_c66YV
zLqGE|t(LyV{$xvii^z)+$z54*H_G$4z-|uxr?%@*OUH?I*i}Appr-?0IIzrtUJmqj
zV6p@KW0U(h(AR<S4oq;Mp97U_8N(d<4OM?Zk^wAdu9Sfe49ZpveXs*V3_etd^GYV|
zhdVGryd#a!Q9?#LFvd{EIxtT7)EeCxWul?SN9xn&B(`$dNRlZIOm*N>2c|i&SZt;{
z@R<V(4Ex!6Qf3IBDLCu@bRlyD=Q=RY(B}&|vpi~{1KSHEGmAx{d@eY&f8-Lwa;Xrd
zZ}f5pRygpb17A6?QpBeX(pT|X&POvk`Gqn`BwstQPC{2ZutvyQ2Zra#U3uZa@a*It
za_6SadeJwq)pF-%J#TVgvjg`WxbMIg2evw}&w>38SRGIt@H-H2z{a*_&v(G(fXWMR
z5;<<DMRS1r?Cr9oIUIPLYNkt1HM`j#)<t+YHXYn!r`Cp4vyT_PE@Eo^lqP?6THGYE
zNUAyLK*)g|4(xOw%q&(n-|oPF{Zq22*G=6f3Pna4GT1y~Ve?&*(YKuZNotvyJ2U!@
z{Xf;bS8$I5-wXLca6zyygXn$~?}1@S2OK!)z@H9Wa^MgP=D=wO&N%S11Bcnw9r)FO
zBa+K82QL2BiP!au14l*qq>{d!;PGs|mYJbUd1h8R@uUN%9Eds4l8yyiG{oHbS@c;4
z&N*;ivX0u5%D9$c<_nC@Y9D6)&A}x`NJ=Y^UBW+Dh9%8EeGz@xfh!LD<G^hPt~zkd
zfg29|#R+pyYVj6*uS;svmULz;Cdlk=igHWvZ_azE=4tC97@DJDcjCiuBJVhGSIXa{
zh`GnZ<OdEsbfBXXot${Y_TqfyL{%sL<s``|)QK1;_9mO2asn)0?G2m5p?m3`Iq=-z
zFNC~w;FSZJnWoo<{=<QYw-WK4;CsOcCq8f@hf_~5rxUrHh!jq5loQ4KnMraxk;jRA
zhW??DyiWba8ACY{5$W<f^=B+3oLgd@DC+#*zmGT}1)L~oD20T?3l<jq$cZ9G=$r=0
z#hA4dB}A!U=p~&fW$@BYlo4LmiE={9I{_m!dQ2J}i&0UON`_up2w#qK^Wg+1Qk|&d
z)OX%C2_`yGO^DfvBqu%=&d}OUR2N=Du%@Bc62dRsX_M?kilNu-r!NUebE1(Gjh#rB
zOzRqDsOLm|;TeX~KuANuYb*3hYa+ar6HN`9W<r_^ws4}QknHzpnNEE(mez)48z<Tt
zyqy#64c@_tB}4Usbrz*JALcvJMR-@krkjxNf<2u0L`Y8~w3iURUt=PDg%1+!C)nSK
z0YU}}(k8llA&bEWJHZti6o)x6oL$<B1TRK7F_NzpJQ(J|C?`fc@vRHHT^QrUSoT8~
zqFfl~#CRw6IPtv`6P%dngwLtJznkR5WG5ClvCxSrPE2)TrW3Om<is>5raSSO6Dz(h
z$aNHat{W&De=88huWM&8#}@JP1}9aDOPuY*94F>EG2aPprjhb8VJ^$oE$Y$SBt8)4
zo$aYs`fn>&-7j+Db0;=AvDvBr*e!Nqr4y@IpW<EWL}qOA7s463OvrM<6)a?*bc#iX
zw*OL;b%I|x@wJfEf@=h6wpNIBsAavOY;fWm;Tr|_43451-4-V_Cmc@9=-+m0b}T0p
zBbH5w-3irD7KZd+Tc;Bn3MA+6mF^PVE$9*S8kYPq^*a&ZRC6aG=)^8IiW4F6QVBb8
zs$FuH;5NbSPV5k}Q;?yRHkwDgjN9$RcWmh1&FIzNfTx)AuFU*Fa=GNhWzJ*LH-2<t
zpA-9?IKb-V8XG4LI&sK}i%$IJ#7`oga^kcTKRa>Qi6c(@;>0m0jyrKwLdS4FgWCzi
z1+)1HCw?`8PO?oU$T!q-#)-2|(B^^@=bSh%oL+WI+GJyPQol=d@;}6egpQWkX4ek(
zyW+$HCmynWJ0)Iq;+hlJowy<1Lqje1ocK%lO~G4&e+$z7A17`LAL}*WVORH>?+P-A
z?!E-oYTNyh6OWyE%YnoBpJUvK=Nyu<>V8I%q^Ab|&xvOS=Yw||yb$k8!B>K>1>ZRT
z_YD8NcxgE^N4u*-EfFq!;L=mhA()*=P8V{ykm*8e7jnCh$AwfE>bUTs3wd3r=t3nI
z^0|=Tg%U25bRpWM|L-W|Lc9wx!s(3_66ZnzAq5S6|Ay$ps{R(WuqYo1vWAPeaQAY0
zQ5TB2^v+ORkP3Mzv4IN}TqrHPj35&!>q0q$mv`aq#s9qnRi6}MXx<?OE4#3EdX(9P
zBp2#dNUkErRb5ChVwr>_3RYvL{2h>ITpzno-Gv%1z6OmMJ+5F)F(`Oaf8$)sg#{J$
zg{-w*NESUsFnZ?ya!(U)bHQ}x>q0%@x8e)ccOgS~1Hm<aw`(Y*kziv%rrbnGQx}>U
zO6M~%Erho;lvWHKok`<1F0^%FEGJAC+PTo)g%K`{bfJR_9mRN%3!Pl(?7~3tc5$Jr
z3w?xlGg3Rcr74r@?m`byJ`wCG*h{dtV1sY|_XfPL3;jgtFUYt9gd{E2t7t(W#v<Oq
zM(7Y1h8ldB3&Vvsd;P!F0;9w`TJZLNdJ1ENb0xrd7bdu{+=Ue`OmtzA3$t99EuoWL
z_{@bF!l$?}Rmi7;OktXk=`QGt6J|zz`y?j$ZOlv&TQ6*N<5v0{7v{R~rfjv(MVu#?
zc_D7T5dA7#SZMG?EW^A1m3Fa+O9Yn+ej&Jw{c4)Na$uzkt6cE9;B(<i7rv5E&4sUB
zSS|eb0R`6xp|Qd)>cTn~){F9u3mb)OaN(h`nqrd+R>OX?kS#83H5A_nJ=5&&XA{xx
zf@*|PcVu%zaS3q?de|YK=xyqEA>hJx7k0Q1l%V4C^ryQaBUV^QmJ8d2{Qg)UVstxQ
z*k#z19HI}OKZ<w#&V@ZLymR5b3*Wo&g9}$&xaz`Q7k+f%xC<v-*vB0AXB=|jCl~e$
zr}u!6gM$36S57DX?7|Tjexd!5h{NpF^~}TDCs9A@!Z8;}=t@6|UZt6T+!g(+3nyJT
z?ZO!szd(#T#XE|n`ozdr42v_{aRL0>FVdPVNIUD&AB>z6JTG{`g^NO{|K`H)!v7Hb
zQ}B`zdfA0nL-kK!uJJDAj{cngl?&HhxZ%QIF5GnKhj%}5;T9WoRMOS`8TVcIo8G(4
z=>5lq+oF@-;fyEzp5T)v7K*t)@Ap8w4+S3yK6c?>A*JRQqz%)5D&GHGcqZhzAcJ1G
z@KSio5e4XdRjcW1_HY*tu1k39LfWWgz9gN#AtS<#58QCO;c+8}8<B1_bECN%QEudP
zqpTa{+{oodZa1Rch;bv28y_<CPC{Nc;)hwbwlQ6*VXByJ=1E5R+{iCM42^pj9qUG%
z8%5kG>PD}YrWuoB3%F6xjY4kyB%^pYx;{=Y=g~K#D=eJekA&oSlTge^r=%Ojg_jU)
z>Ck_m=}Ng#+OR1jWXvzQ%DVwKYPwO&jgm=`72K%mMuHm^4a-VyR2E*vP!?W`HMx=b
zHsSYSCbL^Vbtut|Y7)BfslJRY$&HWQsO|=j#i=1WNmR1_<YZW0Q*Aer-AHw#js$uC
zEs)~I`xw)}t@_#DX>O#u(a^}Nt{e3YUXNwFq^F-D3J+Im;D)t|UK@?vXe?qAH<}9R
z!Yu(0M)0g6hPH5{r5lsnnCwO?2_58yg_qz)Yd6}s(bkRLZuDVlk*0QTG#Fv(?nZkz
zI*4&cH#!O7jV=$kVS=6A=pss2!ES;)Oou@|gp+(Cq$k_aP}t&qS-coie>VmQ=_lwP
znmABw>W<V?pkp--W}itkjdEkO8$;X}Dh9*c7%n9H%oJLVaATw>{VM4lY>e=6Zk!+A
za;)&_a%uy;<3*g{#zZ040%nR++?eXdMmILO@u?fr-1yv$#q4Zul=!*9Y&Yh(@tLH<
z#AmoM)8Mm&JpNBF?OZn&ig%t7I^T^2!gtD97_?a=-jBQJwYS8L6>h9_W2qZoxUu2)
zve(+1=$5&$+zpa?GjuO4SGlp;jWuq3Dbc?&(*Ih>=vM`3vsU;9H`WPRZ`dR~DEf`T
zf6S+MgUxOzZrGUb{e&$Nw3RJx*d*tTwX;`LG&w|31vMjdX-yMP&~S>^CAgtSjMohx
z$C?KvJn*{_aO1HX|GE)$Bjm<!Zv5^>*o`bV_PX&SEpwW-aRzvwu)~e*lE{*O%ClfQ
z-Pk4iw{Cpr#vV6zi<g!>(Tw;#yTR3161pGU(9(5rpBww#IO4`H9K81u4oHHB+&Cy+
zDxSLuKZ(dJes<%q!B=)R9d+ZF8|PTC#|g(pKP7lV@K?c;f-g;xj81pjjWeQ<pB3`@
zlSoECFNs`m<Dw9rPfhU;H~w_vh8usmamkGx?-Q;HUKXVH3a>HIL_&8>#OsXmRQK}m
zubXb%cH@rZa?6dsNnR!V!}+#mHIk@;rn?-Qa(2%HH|~kqeZj!hw3?2Hhr(ITM=a7D
zeM~)Z<0%J}2YEgC&y8npymjN98`<YVK6m4V8!si+Yr$7W3XJ|n`0}R-d1RgcdwM;{
z=|O}?A8{WD<`9e&%s$>Om+(A-xjp(zG`bO+qZ#GA5}7q2F`ox<9u)8(zX$ueB>E4S
zquGlNm}5MM6~Y6*=q)HI6!IWGJHbMx!a|C8P}IXEReBlh6ABZH2`4G1>J$E>m-S0}
zP|Aa34^liR?Liq2Odce9P}YNT9#rz6-jQ78jaUWSwT1^3Ja}<MA669&{r=_H${tkl
zV9);lef3aPf)ZHHu^nhx%>%OsoW`q*&RO@b(xxO2J~mP)gvc5OuPLOKU~R#HcMGO^
zP{)JL9(3^_&4Y9gntIU8gSujn;Xwly)r0yTd{Dr|pOSv*ra)<ZerPBLjXh{2gvu5<
zaj%JZYYo#M+BEl|wFhlH$ci_$@Svp!t%P567RVIBQ?VFC%eEf0_n?CZ?Tpm!7Si>O
z;_W2(a;aXo=@oN#^?)Z#_4c5T2i-jA?m-VR=xN0LL`Zm>UTM9Ae;N@tY+CQW9`yHM
zfCv4u?Z=v4Z_<DG28wsE;2;kyLa1*ZuUGOA@#=@adoaR-;~t#wU?d;@c<_}6Uwbgx
zgE1b=@nEh8V?7w>!Bh`E^<Yt4f$<(p@?f$@e~U4}gNZ_N4m9_QPNB;m1AfFYg;#Ms
z7Y(L)Fr7A~&9goDOe|-Lmq9bcyKa5~hRzc4+U`ikWyE<N%x7L6eC`3$T;Rb%5307-
z)9ISoo>;SS#$pdYw8SzGmV3}-YQ|CzR-8`Rdb;HolB{)k>)xkRR(P<|gD*W;`&}k;
zT;%}`TAxbEzbAr;(6t_BS?$3Z5B7TSBRfec(^?NUc<_w}953snmevav{~&Io2b(yQ
zJP3HO*@G<}I6QDNO%JRd*gUXvP)sVbc0ios!5_ur`B~i2`w6N?-`;j-zevr4Pt0b%
z+!;7Ik+<b858UkM9{4=?ogJJ*iMyJwiy&uF`Mm38hmyK+tN5S?ArE$WxNHDn_Aw8(
zd$5D;)gpeI2Qyp6^GV>4VHT#zTkHA#;&(EmoQVfdB+uNCw41qm@IC8<9lk?+zs~V{
zI5dVw)yYWZ+e|)1;Z9cV`{>^~?epj#jveseppg9>q`gw89P;2NkG`tmm<K;g%Jp_8
z{^G%t;Y|*Ea72P;53?}GqpXCg85=8R9Ei&_y{ykA^uKy=(u0>Cyz=0b2d6#w%Y&O9
zoblkS2iGO;IYFj>#e>VoBhGtpL6nPvzZs#wvr0YqQ@oc1FEe+O{sm%F`4aHi{We!U
zxaI-L#$lFi!}OI5H$3Q_-i(CqmIwcMaGSXgv-~Y7Fyb8{cMUJi?s;&ZZMxR{z=KDk
zQ+((_#Tfmtu*af&bTj2&)`0M*g8vCV6QtR5&U*%DF0Va!<3S!TKJ?-(N0$5v`oN2K
zQlI=c^j=7WS8upnn+oI*66wXU?cJjUNpgCTOL%TU#-d2f>qUMqqP_YmvV2~2O)bPk
zV!VhIrIcWt7k7tQN(e6?SkQ|?LgEDr3w|WXbczTm>P0aj#SOhgO-o5hs(Kqe>(Yi^
zMo3w~a$a~kCYBct!3u&Ey{IIlvS1ZKCX&@A(d0!U3+zLj57oRddokXN30@@8#*2nt
zH1eXlSO0CIOZB3L@S0xz5ZGE?RH$mIEl83qBt?+_0_u2?CdTQ4^}VQTq*G7GKV$WK
zxeVbAycm~H-$}Bu7fnPN<V902mtLc*7u~#QE@E537J@Ck`fqV7;hBQ11=|QRDV~~2
zY$x9KUUV?@jzT&Kb{6a+xNV4jgVEiK{^BL?!OkH3*H6$>NH4+OUi2|+`g-x+liW{`
zQ3kN;;`KYsf!_a}2WK%X2YWF@_)x)Ng2M$z2r~LeFGhJ$?Yds_(O!%ZeXJ2W&Wl}g
z0NF$@CV6q&i#uLS_Ug;?_ImN7S6}Np#fzz4eCowCFWQ`HwZMyoUQ8GMncxgT2F>(h
zmhjnzGRKR#!siLj7v%da8ZYwVb1!UO*u7Zn#S$+zc=3%FOO3c+3Hic{WkQw<t`J-)
zxJr;oeJO;=ew|GO*BGH|g{<>py`f~=Z)6{yX=Ze~O%k+OaEljPg;))HMF?Z5LUsyj
zf(|d7LR{=TLfjlOLcCrCgfM-d5Wg4MH9#dOO2`W)n=NK}vCXjGE@X!hMEhM{d@JH^
z!S4k32!1a}n;#7OeO~PM;*=Msy*R)DI8NV2;E<4mg5AfNf09<F{<9Z{4Sqz(FJ2rq
zlw)2TH~0x5zj|>}2nwVy`WfMu4V$w<&Iz6uydZedi{FGW%I`w{@ZwKHxg;d})cY&K
zuX=IK2)*vb4X^$h^e;h@n?i1R@wbqF1jnC=VGv&s-}T~&7f(4|6fxiP;=UITym;uv
zBQG8^&E?Jc;-0UD`LcLklSq31_3H1_D=lrF=1lp|i#MFuy?ExubJ4#Xoc6-YbBZHg
zdU0udI$!I*^5V4wjdHYKG${2QhpHEmK1BHt;R937;X~wb%LhK3I-5*4d~S2T{?3@w
z92;xp^x;Dv^7@d=hul82+}xU?va)#|ACEPu#bWSfdOjbbeb~RCIeC5`Ivwae{931J
zi<-yyK%9P{cL5&?`r!4!=R+YM;(ciALpvV|`|uHGT_4Oo6!D>`4;6f<=tD6diu+LB
zr{Ct45G>_GX&*}ZaHx4I@11zJR>p_2K9uu;H&pay-&2v$%UF<DE8_}~R}!A!L#sv^
zm4#ERBBZL|ko}#gn0!byLLYRCOA?;qL#huS`%vA78lu!TY-$RrCHPO<_DmsJc;*ZJ
z=Ch6uO?_zQLz-cq&Kfg#Jt6gd$S{-!LK^ze$WR)yX@r~F=!w%c_o1~9yhidC64a6x
zW!Ps58LXB!Rf=un!<%JsG;8le2On1X@Fkm@_y24iA36*F;9+bRA&Y(Zw4kZ0@NR<L
zedyuCCqDG_VX6;2z<2o6*j_&L_Ms0;cu@Z%(AS54K8*HZj1T>N7~sQji91kmh~OYW
z8e4oAEIg^8{x@W(p%3%n)fs)NA0f&}Lm%bCqAHQp>BfpU(T8zD#v3*hm~~$L2XvAs
zlMQ`}4|5XqxSxtL&4=keeCERp9~Ou*Q*f@}EI}I2W-Q_F*LSCPo}th8=?5rNSt!aP
zL;u`|=g)IeUn0s<L;u2uWx|&Wt`J-)*j3K${mO^0ec0l|RuNbGu*QeAKIG}9|8>ef
z#F=EB59>Lm2I&{L!G~|ec%z_hCS)_4=Ad3Ss}G6~9ueR5i?s={3zjIVSA{BE6Lk3C
z6yg$e3)03RcMJ0$#`=8-u=o1W%#WZCAr1jQ>iB`j=0Bfw3Hy-c!!{qb`|yl~oRhZ0
zhn<`{d^pV!6rZ|_#rENV@NWfo`|zC*hVJp<d*MF_?ltruh3petAILb!k<LyPpBkMn
zH<va3<ilYfj`;91d++=-W=j0Uhm+T$Y14F0+EFnkKjy=6gP-u>SK%iGclT^ggKhDt
zXMFhGhd+Ec>%%!8&U3;UZn?-T;!`gOpD{m;%5OfLnU_ZQ@o>wZK3wwQrVqD#xGa{}
ze7NpIow;dO1g{EiUfJY^<n<SuI6igv+%)Dma!wlg?Lw)4`*6nx61sn~i4R|0jn7u@
zO2m7j-}m8x4-bVu^5Kb)$AbR~&I@EP)>GmC3C^FBM&-E=FMN2(Va1u&k9fbH-D@A-
z`S6}|f>=^{%L!qgZqMR5=A}jW@qr&X{D|};&X14cQ=|NPJ?9c6$>~R%xq6-F_9Kso
zANmn(gyt2JPcXk9Y(84j#fTDX=mjL@f`Y6W=EAlp>_=%o%J>lqWPIdD5kHFhQB0z|
zou?;KTzCn=l7bXV`N51x%KA~xkB|LeQso7!3epQ975u1ZD3yd%_M?grb{m?}CHP@7
zY!dybCfsZ&NkUk?)rHg$tZ9VS@}su!WJ5{ugT_oY&9A==FZYo--H)H1w!71>T3tWt
z`BC4G3_lwB(Z~;X)mW}eY2eq_oU|Bj;j(aU&d-J1js0li*Z+}4WcH2Esei56+>aK1
z^q}ZROFvrq(aw+dew^<d&2_U!pVZ6rgQT@!8^N};T#!tWu7e*_>qd9>qoW_ELaAJx
z+sUu5(bWb<bn&CB*gu<^R&r)qH$S@jQ7e?%e_k&}?8%RR{g~s&Tt9mI(Z`PwevI^^
zL?1ohzJB!cqrV@m3zrx!i7?Fpehiev$p;Cs_%YZ}hWIg5_%K6Z8NBN=`wh2@k`zAm
z<Hq!~(SD5aV=O!Hx-_P9`)xgvaej;!g?xe^6AeDekIBNP7|K*hie}UNnC{1C;$58B
zXSN?R{79RhJX3O?Wt3rQu2u}))*xvfo6nCGeysFkfgcO~Sn9_Yk}R)xksqJ?v6y9h
zQ*VhMv#zC4-2bNDL$%401Ch%lH7YgwN3qPy{aD9KJDs@7k1wSFTm5LhF7qotw)n9<
zt<%?jtmah=w=l{YF<2`ptm7c^V}nt)Z-flGm%35NCPUwBq|YpdpJ{KE6jJV#XKHpo
zR6p)#;XxKOKOBDK3nG6IPCs0Jj1FK-0B%1#e!TGO&tAAL$m_>(KTi1J^TW^a)hj*V
z$G3j$=C1&UrypTIvRG_CcKDHZV}Wgce0QlVA1=+Boy<i+Yr4hn^kWx?+iHDtq!)X-
zE*@^-L!|Hg*yG2Ke(YnnX%YXuA63U-uMCYJI6<vS|8HH?-8#v2PW7sMxa@w8l!`du
zhjye1f0FKfSnZ%6hy40F5W1iI_*wX2!6Smd2p$!r%`qVZJD2*^kCT4<?Z-bdj!yY;
z*^euJoc804C}-I#Hn%<R$2svvMMrX!UGU?gAHRu0Z}!uY-~ISQls^S88KGBZM_x7f
zUqY@4UKhL}c>mX!n?i00W~X^u_+3Bl3Aw|u*(RDn_r?3KVfnz1hkiT~@AvH@9~=7g
zEh$g@c*^D$<+&f`j)~8Nw`itsRgq&$8{$hpUitCbk2eeopl1MY{dmVYHh`i5y!Rs_
zfDZ%68^8wv<Om=tfSdvFt8mUmyzs~XejII@pODD!5po5PC!lZHkvo88rIR{UG1;b@
z*vejKV!nVrO%)K#FBmOIF(!amgU1Q^?M5!@1p_E#=<xv*7XFdoli7MJ6bqnu0M!C8
z2T&q_k^z(t00EQ=pmYFb0w^0m&6*bOI>j$3xLI7efc^~#%QOGabUymC4!2YYpke@3
z14sy<QUC{5nJWiSMM$-AecR0{@XOvBm47NqGzIj1<k(RYC6Qy>`jYqPY)%T`;{cij
z&@_PR0n`W}l~r^np(YD6-Bc@p+Ct96n34l%_fEf4O%cLf_sI7Sx6}zBEr9d@>ITp-
zfRq9zx_SZB4<Li3+L)NFY-_IT4a6X9)x|~uG#2m5F1ojw<lB~s2hco#76G&rB{QHu
zG;S5ZXFr(l$C~mzNN6nz#Wn$4m~J9zA3%oyItS1tfQ|wEc~K`8roSmRwj?>*m!Cd$
zWp=qt^mdnIy9MyZrr+UH=^;`2%#P#y&?|sJ0sR-PcL03?=o>)SE1CTT8QL#^*|M0Q
z;s6l`8bOwTzKn3N;1EH2hXycA_;5oRA!MZBD8ci?_2;N#1NbU{uLBqt!1w?r1TZmx
zc>&B1U{U~+1DMVl2<U$mr?81nr+g}WY5;$JuRnOFn<h%Db^25HyX#_S1TZszSxl$2
z9y&)tX9uv(ltS-Z@n-+YS`fg(0G0;uMF5LL|2%-j0sSv0EtiP0ez=}B-I#n0mIbgp
zfG>@dR|K$1Y#6#SfcRp`qt2xKJKU0O&qP)SuqJ@Z0bB`SEepUQ7QnaC3hM=}f*S((
zhP_nyrT{hzX>><_w?(%lfUTnJT%)(zxd*wF0Bix+MO38)0|96Otd2H0M5LKhh)d8N
zfXC3iLVN-E4JCSnB^coCncn#?tv6rJV+ym(c}!UWY!k9wkjjn#b{d=?tnCiqyMVs3
zkppT^0N)4jhm7$b0@xeC!2k}ibB;6p$WbYY?-TFIBBuSU^QtBWO|EU?%7LE(_?i7V
zfQuZV0Tj$*IugJy97Hh1R5u-!3p^gci2z3BG96<gWlSV2?XLlhexGnYfRo0xoDy<c
z@Js+_4gDOaixK)Ow*IoTqth5uxVVYSRDR=p$PRWVfv(x;*gvKGmjwCrn3Lqy0Imga
zJAgX@To3Rh(1^bRxEa8W0Jz5m8YULn7r~E?Zw2r-r=yI-!9TYo()}ae9kXKY25>Kc
z{{nc%9#To4ROeq$x*xy;DceJ%gpUGvZ18`DJPF{bknI1A&jWZ7z?n(<XSOc`c*Pk$
zfQTS&&o;m2z!_(L%W)mhcPf~iD}xWU-igQuYYgI`{ve3lLF5S{2X7K?CqxGEM~Sp3
z;q>MVBA4*&?fX6q;_>I^yrOW=rCa+`xw5WW@!Zit#00T3j9p>G1`!v;r64W`Q6Pwd
zL3|O!vLFft5g){mAch7}IEase=oCcfAc_Q0G>D`iJ`UnRp4`QP*m9>?xuCvus<>bY
z!IFZdf+#J7p=E@W70ei6DIWxcR|p~@h=mXJ)m9aQsASkz4x);|s|N8jPi`8R3?)%W
zwIIxf@{=X1dJr{&Xe~<3AZi6sKZp$R)()bMVVNu>MKD#af+^FbiIN^fUBj|o5ZP<J
z8U*!4Voif+7DPiMv{4X^g*P!2RtU|S2hl>5&+?|sJkhD8@K%DEh9xhDmTiJ)Ybfo6
zv=5?#kdA^(kOk`!#MSO?Xx}}EuA-B76OuW?(j$mZg6J9Ko1ip0i;!M|y@Tju=zWFs
z6YL+v03ibf2MIFnq0{Na!R!N%nvo0(Vt5c!f|we_h#*D=F*=AbL5vE5mu4AZVKGR4
zYho#}v<x|mIyQ)LQn2xYR3-?S7{nw)nQXM?r$J0(YUevHl<J+%WP_N&hD%DR)5$V3
zh}!2m&JrY<H^MU8;B$n`4Pu^<`G&qg$mLQQi-P!^L&KA?Skhk-#P{n8t8=<Duce}J
z;o|ZjRs^ww10jf&L97bG7KA;BFN63hh>byP3gYV^R<n?|k~ajgt5C+8Al3%4PWYn^
z9e7vco!XSRKB(_Pa6>jY`X-37Nf~#WMs5zG`I3k&L2PBR1Jjk8=~gjQg77wte6%8p
zQRvE^%%ujQ1>p}O5QKxHHHhMulD%T=V)PiZN4T4P^?7}I%QcJ4j_VVB!rG?6AVR{o
z1rZJ+iyd`uhIMQ7<5rQ~S4M3aVR^YV2cv8c;<wCbl3hW38^qyT^-l+}JBaVt0fIO#
zDeMViZxBDS#>7kGA6PR@^&IyFQEYv!{Zc%8*U0g$(~CW6bwJDx260HpPeC-0;{7b%
z!-7Wye+lBK5GHkJSH=msv|ocb$@*Ct$x5bvisNggdCt_Pm-6R!WJaF};;fYOTo4z6
zxEREFxdc`<ujscRerH2lb7WuLA1rw*sTs~)gOZrqnpV+QICeP2g-{@bYe8HO;t^*>
z&Tso7ZUn)PNA3pkR}eRYxD~|T?A}Ww$~Q6p!|AT6`3`5fR*ARSH&zzBekXP6s)&w_
z&5=#b_ky_3wvc%>dsnW9!ufd-z5fRBghMiCVsr>kgZf>^s~}zr`7elPLY@oq#^!~P
zm%;x%E`Afl+aMxChzj9d5buMC2;qYe7G%a>-B6ax1}gWD=fM->HWtVc0-s3mC%em}
z#GE1I3L$R@`9jDY0>ARk6T*ifRIZ!M?Xb8>;Kd~Uu6t5-GY{S4Vu1W1@Yw~GJtHhJ
zA^nnLLwbSf$P0#0D1^u`qQZy|p>PPJLKq#wM<EmmVGzs4gNZ{Z7D7S@rV#h`i6|aI
zDbY)W^oP17L$ELGT)Lu(s60<7EkR{MC@X}~%LyqT0z#-DyrN)b!AgR|t3^~1QdRJR
z{O%`)P%VV^A#@1A976Z^3H3r;7F!@GgpWh0E|yF`C4?HnYYNs9tSy)<NE`kfry9IY
z2x-F81?w7m?Zn*mL&ylBK?n^)Xl3Y)LTF;}#zNk7(5t1X@MeO|1zQNVWTQOMw^60b
z4577%<ZVJ|E4-bdl+ByFV+fr>=o`Y7%CVhA=N*2Z5V{EOD%ef1dk8()aKd{D_7r5w
ze5c&o;3bnHbFNM<IU=#2q4XCrKyaX7H(!J$gp1`O2Zt~ugrOk}3t?mk(I1*>Wk%pb
z)9?^Rh<D^rQ>!kCwW3V?7thc!A&d>-yAbw-FfN4gA$$?SvJfVO&^y+&IE2L4`c+R1
zVUlDtIfN-8Oby{v@y-ijnh@H|3}L$P&kSV-6R8`?pjn18n;p#HbD7RlJ@NUXED&61
zgf0^Dx!~gwmL)=#3Qk(mj<J>tUlGE}5Du;BRA{7Sl_*<7u!itu2w#QpwJ0>+5W;HV
zYXsK{t`l4@NSm2|>bLseh<9TMn}lo@++x_=7#*dAU=!~)4ih16BUBZlh2Rk46m%J(
zul|bm2=@y5Lhy4EFhWBi1P#tH7&drT2p2xnZ?oyPhp@xYcM91h_-zQg4gK=i*zZI5
zA%y=zcqZcB5dI8dU1`&gA?ypG=J444A)E=}YzPNJI4CxU1b-3yN$}?o4huOV$lT|Q
zi8>m>u@H`na#HYw;ID>FlaW!U41SsuT2vuMJQu==^7<v5=eV0}BEKLu7X^P4%>7sW
z--Z0a5g~6|_}Ac42$w~?62eu^{~=rt;hrc=?M4Xy2>(m)rr<3j^lwfzBlZ6pw?(;Q
z=y#c>tZ=>`!h;YVivF+QBg5t~TYrcC#)s|+e+3M^+{b!nejdV$5MGMd^G(iIA-op;
zK^QsyO?V^xExTVuQ`>0MJMq33jNqKirF}o?DJS>L$Pq@d!X}cOVdM&9a2P|v$Q?$W
zFlvQSJB$y*$Qwp^iNz@SXdg!JuaonK5gkU1=!K2YSRrv?6cAESu#gcNFQidl{XN%5
zVH6Q>Q6u#Fro`f5EGlFwVJIbqlnUcqY=hEalo4-P!E%O8tv_=ij0)nd7)C-ECgGI?
zD+^W$qpFbXHcb@HGSm#CnsBpVlHkXJ)dgu&BaFW)>T7lA)+R(IhmjISW*Du*NDZTo
znAHno;roO=gA&ui==&;x-$$f}QCGOLory~QFfzhuAjVC?SQcw)D7=x8OXD!IU&%3-
zreQQQ^yXo-5Z+R-m0+s$%r;@P4WmaGpM=p)^w!T3ItytZMh77s1v?22nOug6cM0Ry
zr#ZWd(oL|tAcLw;jOr=8cNl%b=q3Dgn%>#I9h{h2L?1hS!{}$&_YY%$@PURhC=83i
zPaG;ZG>l=qt}vWo3=d;O7@vhPgRS`>7gr693}ciSj~1LJI3|p-VT=<#K8#61nC}E3
z6T@gMqlwDoFs2xxQ^WXFc!?T%*E(6iG(C*8LZ;TWOf$nc{4ilr7@v#5EWz1=bHbP_
zgi+>&F<<xsLs=Nctt5S<EEZ+Gp)Uzzsqin@j$tehV?`LNMOi8MrQj+-M&~CFUkU%(
zP@;E5t}*!9FxDA-*=jwz4PksE%EmA@g|Rt|En(OUo2o}kZxwD8R1E!UM4Vl?YABkJ
z>`yaXVPqM)TZl){8-`DaUoarZG6cg289W@u^N_w&Y+D#hrgdx_YuX;h4&hw)&NcJj
zhOwJ1n}r!!_%4h+>^WKJorUki_#uqDVcZL2Zx}y@@n;y9!q^wa{xHrM=^qH=guxFA
zIVAW~7(W~O;V_OE{1+id1&@Vs+|b`OG$rp%{xyt~qMS1H)9jP-E}oZgR>X6H=LIi>
zaZ$)`Vf-$H>%eLGhw#JQ<1P!i$<7eQ72#I}uL;ufx{w=!e}yr1joyfKe~WTEjDHNv
z>_z)`!g$@SAPw$^@j!waWa&{Jh7n1Ug-0Sj4&&c2o(O-%C_<iw@n0Cv*dpS6A;@L<
z**U&shcSLH-h}a9LK*ZnjCTglHi*c=2a+j6b7Y}zbv=cgS;&=zMA35#7RW-uEab_;
zhvLmE7%iAD3;BgK`Xq*NV}!>F#tD8T^G2a8#Ag9nsE~!iS@<XmC9+Ub42oo-n2@4^
z*##>u{NOBo6w{RwZ&|_8f@K7=7ip9eUY=#nZOV>bF$+~htRz@j@cY4fYE^|N2-0iH
z!tqvmD^$yZISWZy_*jDKW}&)}I)-J9EY!?GE%DYCOc<nBSF-SwETkHiFQ4X0GkAIy
z(hlouUFwNa-_SFJoIIPWVHO%?p|N<|W}%&sCRu2jg=Sg!e@tBmbX3LP4QwEQgd`Ap
z=TfuFhMELIZvjH@O`0qnLhrpu?;sr!0R=_D-F<J%+rBglD1wLxB2_v_RoZvoFYb5#
z=e%>zojbpoH~qDFGa2G+E7)3)QMIw^^_$(8GevAC*j}(<->6Oz%N{~H3w9CgD%ef1
zyC9?LDWsQRZ!7u;=^OFo8F{Y$Rtykj9CIq|WS|v;L>X*_MaTz&Lj*Z9c7fd347FmI
zD8mIA+Xx{etr#U_wBQ)Qv4UBGv>ZJ>alG&eR!kH!$%-jLCJScYLeO%m71Kl^pDtvE
z6*Gn8nx|LO94qEp;j_YT#XKwKTd~KAPpw#B#X>7KS@98bF~YpaiWOF@v|_PUUo+=J
zE0$PsqMmuF70ZO!R!7mvW4RTJmS@~wnz70X$8hsnE7n=DTKF2lJd5>NaO<tuV8upe
zc36EL<1J=l@9lN6&ZUrSwqlDFyR3L>P2Xz8)T>>$Td~86ZC22dM~UI)omOmZ){8;v
zUm8TE(at)n+892z;^(y)yRG=diU+@T?Ks-f_<Gm9R_wFlYby@(`>z$BS#i*cFRb|7
zil)QO-|cS4nR`4ASaI@*zB~?>`uWnTPX(;9v(Dvu=0jF|WkvAs*y4|4IjQf672jB)
zSfN^B6*HR^fh8F!_05*i781KS*EULZSmCrnv!d<tD8}jHaM5vq+lp&>3(XvDnX@UQ
z_HSK1R(P$5<5EH+%<D#5hyk99y`!l4rj&fhitnuW-iojlN3FQ<P5K~9+A%ARGZ`b3
zPq3TRGoNJbv@om~VP;W$%dnRQ)jF5*gB7Q&_)VfZZN-mPoVDVd6+f|xx7XqEvlVBA
zGpBTZHrhh`#ftMh3v2(IbRJAksom{<wSo%-v1F*QF)(cxt+;--=kHcrlK3wRQvbt>
zD-r&u6<38{izwHH+_0j_!DJfWvf?i*Zd>&UoUB1ABzLU1YsEcga8D;Xv(NjG!#?ZO
zjy-lfw&HIqZrE_sh9`Op!6+L>+wjba=T<bbp|K4wtaxdK(FT(Z|5))a$2}V!bT+@T
z;<XiJY{<JN`i&KDtw^w;pbhU>)J4oOAJt#kG(F0O95&>%=?ahhHW+M(wjq}&c^KA)
z+`?mQ;0jmSD_L>zt9&BT`JNDZF?g)-0)laZ@q)CcZy_5J#aY;f?w>ZM@>Q)krgL%Q
zlp>-RwZS*qQcSS8U<tvJf~5pY+i-rgg=S@0Ceyl=6D%)SL69PBs3^QrM5!#KieSZ*
zPCNRiSF<6>rY{}V;WKlYqNr{|a(SfKkSZxL(<!8eU`@eVg0%&i_&PS!jqqKG2~^T-
zXlTO@L+ZWJmU=eCb~V=*gLJ_LHuPKl-})_c3+dY#G_mO)Tsqm%)P`m@G`FFJ4Xtfx
zV?#?D4nE1<$_B34_{q3rj$Qn6n!%bHW1+LH4VmKA&Zf`gDSadD^+tWgRIb0>-i8iL
zLt!(Ijy9AUV<G8mLl+ym+R)904{R91^0%Rf4ZUpWZNtTdhGT6LC&tJ0wCS(x#tt*r
z9TMM%De0Eja#(@BHvL6(Keh_F3coL;zu*8H1_~J@I9M=yK^2P)Lv0vt!w4JtrpNVc
zpLn`Z!Y~_pF74snn#|vYxQ|cCZiypp*!xUhKwyjwV{N!D1(IdMI2*Rvu-%67HcYT#
zi499_m}tW!8)n-u$A-x^OtE3Q4Kr+*YQr>}{))0f-^4GM_hJ^Re3Fx|lD4%^oM}Uy
zUWv0LU$w?q&hV#+F_yUuUei3!hWR#Jd6;{`q38voP+Vxkg1J3Ocq|feu?-(ad^c?^
zyv&B>HmtQ_oeeA4TDqsNv>|;{CvG^%Edp2BK(g9~HS9sjspQ-=kYv3L8*JEO!&VzM
z+OUbKWi4MT$X#8yq~z*y)j9i1uRfc;NM_$LmdhKX3J%gYM4-s&4LfZ3%7(A=n|9i;
z%Z86_X#1XNzYU++u-k@DSi;>?CpL+qxW|T1Su$fRdu<43Mek#miR<`RNz={Jrq69S
zV8a(|Fg$hh0S6_LP6bU2Mdu;rXpAK`-c+EwfrR4MHXOF$hz;McrP**w%Ft?q(*~Cf
zHgVbo6+u<dVf$}cY1V?9?IG6Sw;>>2nhhQyUZ%>Xzar+5{eC!m22Rk1kQjt*_)Z9Y
zkJ@ldjE~!J!iJL(ongQIpL2cxKM|g0F^bu5V(^pjUu-xd<Y&RNf{g#15XN?1$ghGI
zBEC%6MYew%E=g2>MD)vYItITY%AYn|jVRYd$<Er5e2Ir&6}V-?UmO|iXk^E28}4u<
zx8bP`ccrzn@jtTRp78sE4<h<Q4&zJO(tyWf5&ssnO^bSF!*h=IHvDVTSHpN=L+RmB
zFF8bWzTAZ<;^tvduWWd2Lj^lv#~T~o+EB=@FYNrzhA2Do+3}toH+E*`up_4(20OkO
zWATl#MB9<eju<=g*s=Tf)U_8=e;H%RZO7d)7V;&TE%MsoyO_Fep@G~m){@_j<Ut7u
zcI>;D8f!-ZJL1G3-i}&h^&rK@TIlt3TPCrf9YudnB}ufSupLF{w4<aQrR@6fvhHLl
zVlg{xah;3XQ9?v28@#5JP1Q@=VH}uN#*TSOsT9i!DJMv!JnaXXNh;b=$quekThES+
zv6jkqm>IB$xr!ZC?WktQz_Avi9a}eaND@xxtg#l89o0qLJk~<5rtLd1NU{X1Ay`we
zmSAl=>IkVTNXrx<se);&<qUn1UVb8}&p5{<r`y3SG_WJ;k-pAzV>_DIvDl6e?PzL8
zGdpJ3G1HFbOtu|k?Z~pDr5&y8=x4|K%!M7T?dW1hS3BC+(bkUkc66|VqiCib?d-VL
zI*~2pm-8vxIvG#gPU>jK=?;eXV`KQoC7Wm`J36yS$67A!>`LrrM|V4V+0omM9(H~9
z=~ADeryZOakl<*~=~DcN)5i{u*xc%(FVl0Ony*_2CYv99`r9$Uj$w8TXVKX)$c`a)
zSnL>V*MHT#(kbx+W@L&fUk(#PonK<&6(lOw(7Q+cP&>R`%^dDV@QikhwquMPoIuE9
zlpVbK{4mzS3+Q#lz`sh%WF}tSTyUHn<L&zOF%D4^>|kL|wquHriFWP_uPZ!mjI~US
z@M%JdtZ6l!kq_v~V`2^So3Z*E*ICl?XWKEyj=5|zb}VE8+A&{BV1Zr#dQ~>dQgTKz
zQ+{xJ@~$qiy9Xp5>#VQDyTp#Ac5Jija}k%>vD}W2?AUC_3Q;!Nu}R2EJ5~u<Ex1N-
zt>8Mr^@1A&8C8SG!e!YDlx-26ncXUcmr-u(L$mF6?66~}h}l7Q3IAAdx8Uo}^=SF2
z9ede46l5ycXUBe4O%ZcF1)s4P*)bKwDL7!qK|AiSJF~w_W!dde?D*1-Lw0;+$JZ>|
zVkK>CcxzJ*+i`^LWLe6#n1uSZ%-`5Sv<lYGvXEC^(Pv{PvucNf1!zae4yPS1J3Opz
zHsF;}Znm-c1vI-p(R5T{eS*q?*C{@`{x2{OuC2$bo1YCb%MxId$g*&E(Xbsy?YL;i
z?~=S@cAOK!Wvh=1Ibp|1JH8eEo#2mx-wXa=$0;GF1=$*-x<&mY{EXnwf@lB7xA+p%
zFLuPwGM#7p5&eSTZ-UkOM=_F1cHCQNBDu*1u+VhbuCHeQhZtND{L_xBLTGbM$aTRR
z?DgIB7<k+g<u8s85ledAv*W%U&lv5B&JS2kT=amq{dPPQ&f6p^f77?MdFj#=miZGq
zp0YI-PHVk5Ik{xp%N@+m?Ra6wOFRCtW6NT5PDP&*`7g^n(fnHQmFSDJEL7gu@m9ol
zf>ff!K8N6;K?w#0(F$@Y_;hP>J`r;Zj}fGpM@U`;yR$5Gz9%+}C%=%`NIdZh5)_nG
zP)<QXMeoQwN-HQNJTama7E(k(Q6a@5dT|9MgqKuMN=Uw+bDRGDZ}qJ*qBPvBFSb@*
zL6SHt2vUK9iV<E(NM*q)3aUo*Y6|{;pE9EYljzkIRGuAeR*?8j%VY&L6x58^*A-Gr
zLG6fA=YL{I5iwOTO_0lW)mM<t7`m7nDEP8sd>aJ~6*N-NSj1L>O%ya0(o8`M1uca)
z7v$!%|G)oiHpx)XTD%x%w&KdNv{TStL6nLdDmp0Ws9>Ff^$I#E=&Zn^V5ovF3c4zI
zUqOEbXR<8a6!cWkOF?%<UyY=P;KF*wC&i7$GmO0z^kb@?CG}B2XJ5g@7~Sh`mL)XM
zw6myjfPz5^1}hk-;K5WQm0q=ty;F_+Uo81`(gzBLFz@Y*<=!R{hbb7YV48yI3Pvax
zsbH*vEEe*+r2a1RC<Xq8#?cDC>unsPpm|GU*B43Gdh2nHQ!rV<u{=5-uV8|Li5%Rz
z7;pZYG)ckVfs}>4bgzB0j8nvHsvy56%up~>!G{W#D43;Swt{&I<|~+^pi(~LTvmtC
zIIL4UF7a`opppD~2jc<-i`fk78eiN`TBu-=0*c``NyII=jSHfUOBEC_7+EZ<6f9G)
zT)_$jD|?w%a!@U3jM;5UE^K77$yZD18EYHYC|IlDcD!*+O+DZS1sfFv6@(OQQt*+2
zLkhl9uvx(t1-le{tYE8xZ3?z4*rDh*EoUn=jvl99zm^PY$EUEJEQBOe&Z7EF`)&oF
zF!<jUzGP3_Y*vozn+xob-uJ13y+Za0vTyDe@|oc0f(HZ-3VtCtX`h)B7ZXm@|60Le
z1vUkC1xFNoqkx;BSrz>bVRe#zW$*RO?C6?aafSJQ%LGNiJ7<(bfn#QhN}C1!X0<ao
z75$l!_Z}_<ZsosuAesV?aBoEM3GoXCIPAzg{IG(f3Vu~^fwigNxPns(PBVoHPAd48
z?L@)XRSR>e3U|DrMvg+?v*I!ne_-u!t^T6seDNtvVb+d>9~Jzh;H-jkZ1cPz_DuX)
z(I0hB+)iRPX=AIA`ip||jIB-LuE%lv;|-sWH@DA9r@?QuWW!eQkQq^MNx`4&><TU`
z_(Q=J_Nlgsg`4PGIdB8GsudcugxjZ@ud&T2xS{YD34Mc`I~C3AGfebiQQTB;OS1V_
zB=5Hs+!1~^qTEw(Kf;&U4388%R`6QE8#a}}v3w-|Tfq|rV`iD|ChGGxpDK7J_Rj@h
z2)>NO@Q;FjBm5Oxtj)mcc&mULJ-ky88yCZbt*c+Z`BuHqa;h+>n5<%oif9$NRP<H#
zYR#?cb6Jb4TnryED)Okvt0JF@cohjM-cylZMXZVf^lFpH?Rtl-G_2ha#k93OT8?*>
zaokBTm&x}@yMihTsVJ<Xh>AoN7k@108faLvF|P7BeVTVs6<pcAn5y48a&yvJOH3>=
z&xyt*Rg_ZET}2NSrB#$sQC~&Ipqf0&s;Hu(s)}-=lozZZ2*HYiw5%kgvdSr8$#mAb
zSiPDkbyOs&Fsd-^tZovlDOg?5tRgwvYiIQuLdJjFu$GY8f=?6c>@KCJq^^n-i7-_~
znhKtXB9D4P_}Jod*GyN@Kt)3pjZ`#N(OJBjsA#GpQ+P8K%~iA(-a?Quv{KPh#l21`
z<hi3vdbBE5Zf{A_CSuc8Nc4NAb}HHn@1UYn#J8gmjui~@Lm5*Sads8#7O{Ccz|vFI
z_kHWbw2ia$k}B&hxUQuBM+pxu3ENM_`zrdY7@%UDs^3@+R53`!NEM@03|8@hilHio
zsTiW_ea)g`apy!<=%^gYjG_6(YQt&VGkS!ouS>&c0S+b{-?*pAXcc2rj8&1P>W?i3
zR}{^PBkFl<3^zOA{IuUY>U$%OS201wL^*YMYPU%dLa(VRrm1kKaH^QDVg{R&icM@z
zDrTuzs$!Xn*(&C!Sj1GRn9C~Yk+@*6VWEn7s(xp}_BLPDhpYvH^XsQH_{dOedrK~i
z!^C{3Vu`BXO+9O6uEIZG&X|^~SfOH#inXi}6|2||S4VLe88ptq_c_e(Y8AEDnd45h
zSf_%UIj&c+fsL(*Id>&}$Jq1RlWCT<w!=p(c@>|i*rQ^LimfVksrXpMHWk}d>`<|j
z*{PGtzd2@y^=DpJ#}q!=a{}S)ah6;+@?@Qk+RbSD6#RE}9}Z}rs@SW-s=~%9P_bXd
zXUv_7NuQKsFXrZwd`93-C<j!0q3Y8V53-2vBn`~ar@OPJzU0|&Cmj;}O7LqHhlLyw
z{6>&AT?)qdix})G6cwtfzk%et>o2496@>H`SqIy@Sj#G|skp8}Q{iFnQ}L4uuL_@v
zu!^H9{3-&h9iJg6Rq(2M4_4(jce^noAr-s3#&dU@V=B50i9f}L!ScVIbet${^`zjp
zg5R;AOs&2b&Sv~WHW_DOZ8FO&wAO7+XH@*G;);qtRh(6EPDM{UE~{W_Z?8}OMaAtH
zeatzp;#X+^7X*J3yeRm4Hr`IU#F1f36ph({|4{XpU5z#+^Cc~t(^VDKKaS!f49|Om
zBd3Z-tbG-?RQ#plj*7b~(#smyqHeS0+^<mPVS0}>^|^!OJr(y=Jdix*-I4r|gYccC
zit)+y+nd+_)1B?}Zxv5eJXi68<8YhArz)PwsrfiCByS@Qq1(@td&!})v!0B9ICLM^
zf3}*N)R?vWTE!a`T|(#@!drT&2ze0pAj*Lp4%~3#rW-jOFgVcJg)S~cJCMtPJ`VJC
zAh!cC4x~De=0F|?@;da+QqF;V4wy<d=5c16<vro~1!Em3ASBL#!VVM>9`8Vc5ZV`X
zppfuHLFYJ2c05HLC>gOS=0NcXFCnCFi9)3!N@)kmM0i;tjHJ8+6&!#A6&<MLKxGG7
zZfg6FyCWmd-Lgd$2dXmhoXp9yH%PDMKn-T9S5lG#{Ev)>k?{zxE@&1^j`%jomk_N+
z@o}$~1GOFcbKj1(o$5GH*MSr%keo}?dAZ*fPUGvHdJfcgpsfR$4x~HuA*HbcO&n+-
zyrEztL3(i?C1O)?HWLi&Y}`EJ+d@c7!B!4rMD*4|+6ZzsIAdt%Kzj!|h{EaF9cesF
zpF`e7luoQ!AyoKC-c@)v!R~@R1bYh7rk4Y~g>%9=o&6km-+>RESmH!~2L?D$&50x@
z20Advf%6Xh>cC(JK5$@<1D`rD!~u%~TO8Qxz)%N<IWW<INe&EWAxA#VUq~^IaOjPE
zqywWI8129qaZ(xYz*yl~g5x53?s^9LPH^C+*~s5~COa_2fjJJ$b#Qmrl+2vQsbV=z
zaC#)v3?VZGX9><0T(wF6A#NV?m1X?Uf%zgX5L_s@NN};><5WGVOB`70z%o(R3oaL2
z;lN4<RtaA#NaNKGtcmb*FZ9_9>mteq(KiZiir9Q4WV2vtqj8%9+a37C0sh&?usa;s
z>A;sybH9x-@~=ZGyTtNi2X+g|o?XBk-RKgx*P%Z#?RVfa2fEZV?sK5*>x2a-qds@w
zfCF|16bBAEaQM%-zsno1=Q4gFF?{L3AqTz^&JX=oAzup~cHoGRZv=Vv7r`<_n*-;1
z#gnL_&o5;><$%Khrvolg0uBU8su|o4Xrg!oy@EbL2KPJAOYK7vav&_?Ne7NH7Y-bE
z-~`X|AUCg2OjTuBX!KsEb~G-RrdP_hV*j1s_kuq-u<Pey^g8XpkD~nKz|TV7yh=F3
zl9X97XC3;rk7noCe#Do&N2RC>4*cdoc_%73F``D!iyZ5mc+ZL79k}Gsm$$mi5vF5-
zyiWY#z!eAnbl|E3FCF;Dfol$2ci^4__c^XgoVOw|-xShzwDB(?w*~JA-WBB8r~RGu
zz=4Mjyx{OFOI<y3;Hd-rPxG+@H80lZ@wWp{g!7q{&Sw(#c_ap|&FC1O@!j&w`{OMC
zI`GPY*OK4<kCNVqO-?5aPP}C&EoOWdi8IQnN1nrp{8=WFW1lBPJCWO|7cY-oPOKSg
z%%9H~BTAl#o^~j~TH07N(a18%??gG#xv*rc69t_5LwcMO@lGT-QP7FPP81P?LQZ6j
z)Mwx%ij$AqrHdGsRyP)PqNEe0oG9kRKk~p^TntJGa(T4uPz+dFlrm0~6+-3n<x#g^
zC0WZF&ki!eiMfr9m7V&oE)@kU30^F0WT&X&L{$m(qDQ-R6^%wGOim2oQ07E+C(KTy
zI+5nYDob>-6SbVE?bQEvtRX>aI&r**{;O;qC+a%&MWIui++NK@Wo8xQG3lpms~GD!
zQQwK?PPA|$-H8THG?Cy9omlxgiBmlrJGpI8N+ZVH(?rs}l-`}2I?>Fj|HJq^kA76E
zWmxtqsihMgoapF8D~TaPu(jZ&-i9_#v=yEy*iNv$AS0|D&_~No%vwJaSJmcsfzD2J
zaiXge-JIy|M4yP|_}&Eu+%4F{iJqeL66`IQy%bwt;r#^P7i7%+ofs<<cNzI0Cq_Ck
z%89{FeBcC?A?!O&+{hba5hs<QP7I5L9qz<OveqlhHhb>YXeVYmF^jFvZXP2zmhD9B
z#|e&iVuFx8TlHo+(TPb;JRKP|*@-ElPjzCN6VrtcI~_Yi(niY}6hGJhjh*ep948iw
zLH3lSxlVBD?|Fjr1s4b|6r|T8C;mz>lC-L8<R39homl3?DJM=lvD}FjPJH8pmDS1y
z<HTo9-WV8Hv$Hs{$B9qbo>Po#dBuE`wA+bwPONu=@5eSc!GCqfjq1G7iA^jANe`2^
z-HFY@w+L<(+$MOho?ewZgzprjbC-~h1?M+298WWR;^cp<jrnG5uM>PHHugZ&J}3A`
z?bR{m_cM81aF}!dUL}0)!~rJ`I`w~QzHovU;up`8==-G;ha`mw<Mr1~U(qZn=4*-n
zu;3BqmtP@^>0Q9aQz%gZC+torqN`50od`Tj+Bn$YaKh<?%c(DJ+^LZ9bsqzF=hP$;
z#_Vyz8{s}7ekTt1ZOjF1gHD8;`dh)U=s!4dl)Wj-c#LC0edBRC5zl@?$Vn%@74ls~
z|DNSsEs6%K2BmRq|Ivw`oOr@^;=~yzes<y(E7XazPMnh<H=X#!3BI-amF3{Xc{wTn
zEIvBI_?r`Nh8izA!AaCK;9v8<i|-}D%N+cjxFY-p$GX0a{}j&LT@`Z8iR%%?`GN8H
zcoQ#VUGf-NKDV8?<AkSxk+bygI&qKXT+q0ue%yU09!NC}sBhs(A3E`OB!)*q9t&<S
zqc57uHLIUF@tmWp3k6+x;lxWP^11My3;#G#WxVBICtk5nakRXb#5J^e>AYRX@S2%&
z>hE>mN>uNhh;ktZZ}?@L&+Wqgw#J+;7_ya!p38;3jr92^F`{sp_dG7-6@KfM{&Pxx
z7h+u~;6j`W11rV+@qFN=gJn4$#)}P;`s-f_rJ{`;2kVPm6>_1r3w2ybbfK^dMO-NA
zLU9*Lh_Rz#yJA9UIeS1{Nf&~5lXz5ep_B`y#jA`9<svp^U3eQ^=*;7!@}g7_gkVL%
za^3W$su@FN7pk~W)rD%z&Y1E^E*K?pwr3icTzn<lr-lTnE@*ZkSxAf+)O4Yi*ks#Z
zuA}d9R@a4&OgS$EE~L7U=0ZIe+K-59=R$oK(p{igrV9;RXy`&4aW-<Hu?zQRCud0H
zO<ZX1LJJp~ij#3RqrJ?lY$?iv&av59XeG{$Q{qPTH??-5#w7h3+LkBE7n45IXnU#m
z?gQ~L?OoWO%Q)>}QU{U}M)FQBEU0JT)$mlJv8xN+m<t!eE_8RHhYMp|80$h$m;P}5
zz6<?@^m3uM3riaJ>Lbp+F7y+!>~gyyo-(u?z>0QZs0+hf7{n7Lclv-yGWDR>U>EX#
z-;QL63-2~3TO=R}mEpoi365}Kq>$R<Ep5kJ=sQ}Rb8i>^abtXz3*#8A3p-pG@4^HZ
zK4f}anCQYJ7r4mYBA5OP<YX77x-d=n6wymhYdl??GhCP{q{YkJvs{=hzT^xwhXo>D
z<a3406P)jYKUQBekjFw7Zpa#X<clRN$x;`Vxv<8CwJt1oVFfGhW$slHwzDicy;2lf
zt`;%-bn9GL@4{vmwz#mtg^ez3a^a(hWwy=#;#LXENVY|6$eHDxF6?sQOBW8g@UaWK
z*^FJ-C&r(+uqSdxmcXaNv)8HEABpXA7d~STn%0<65gF$J@j58@g<$H+xUXFJTDVj2
zu;4dL|GM-ete|{NNEp`Yf=#^0?LrhmRnQ^GWi(taxP@zi9@l?=q<Y24us)V~ga_Ck
zh1aSQL$9MQ9Am|~F~^PLJhclMZnSpeqzm7=5amV=H@<V>dl&Az@W6#1TsY;z*^$-n
zxo}$A(vL3u#NL#kzwkff!p|;T5&f(nCq7+t;hb<9{37JM;IA%R5b~Sg%#Y(}z~grp
zE{Q^Z*@ZtMeD;YbDu23g)rD&!UU%WPkQ))3n?i26@K;31PS_oB-W6O@%`~P0>im)V
z(1k}FC-0;^bK!`q)nga_cHxQGB*&SavajVgZTvy+Wt<Wg=hw+|UIoP9rQkm<{OiIi
z;co<K^IAw|A-%J|75<L#pVx!ubi?2V+^FbAv>UnHx=ks;+-|(*#_as27;#e1<3`>H
z&*#SCL3#=2cjI+tYOLr5+=z1{K4McuNP=KN!9s2%Mtlnkd2_NABPr@eF>w|bEFoA@
zkiJd-?PQ$azO)-<L@685%LyqjSV7QvC$5qkmEEY}Mom$wxKYiGBsaW?rmBMd$5&^Z
zM)Bp0YI2kC>Vjs$WH&y!qt|{dH)^}l#Eq@}4Rwea`V!^!-KZ;ODT1kjX@d0xV@~I$
zS-S8Bf^;?%(#Va*LO!TuqG(DmHFcwz8zjvITL`ukY$cd}HIcq;+-U1YKR4cIfgkIh
z=|(3vI=j)%jrQy;<1HQB*fid<vaqS68x^!xixWB%ySUNSjUI0FbfcS`H@az5cQ=MN
z)thegv=&n{Q*Zp+wij!^X;dFKdb=@jOm!;6zHZbhYT_|{O4<Hy3~*z*8#8F&#vnJw
zx{>9^U^foNn}%fP$c;}^dtEw|mUexR#f_nE40Gd5uK^>(cewCwJ6lm1DGC!X%8k*&
z$3&D<;dbLBG2`8s;Kq%LCQeP9D8AF&aF*>jN%-W5{S-H*MtI@VxoObw>+~H#y=BgH
z>oX^3x$$Eu)0%_PPY$=3>&84L(v7`t%y(mfn+x@0iyI5wSmeffH#WHSi7t!XSR#b{
zLpQ!0ug`elu~fumg3H}lA!KF5a+Mpag|87@E4VJ=dvv^I&kB7O$3{1<jkoaF<i<yC
z?5>wQeN_r^s~g+g*x|-b39{Xd=B>@EwH8qmEFBvp-!7B5%Z-eA?RK;Fjp-k|QG9}B
zV+ZpmB2wQYWI@lu``p;?hR+SZ8=txHxf?Dw+-@+218#i5?68O0dmiNIdM};i5KHfm
zMAZ$48(+z(zmBB&up38&e-lxxLTrL|L50OzBc1tjMr;Q6EPUOV-l2o}TH{VjdluH*
zD7c_qzK&)Od!HNK3uacGl3e{|tAHCpH-2;Dq8lMM!fu>qRBjw~;}~B}uTD9^^wjF~
z>W{?Z?aasBV1zr29Z$OPsI9rfqU3Mobl(YnFZhGtDL3rXlbN2M*xuau)r||H|Ln%d
zhJ|ikC_t~XqMQ@_#f|eqs244pIJkpe(KRMmYI@rI?nb!_1+I$kB{wd+(Q1O_55X&L
z44GgV(6sTN;-ud2!{lpjTz6yp!sJagJI<V-x0zdR{KXt;IHut?>*97&GY!o(+;QWs
z8~5C}??#k{9GZSB{=kiA>@^jl9x{*Y(FM~VyYaUhPuytpC^fEa3&)lCsWp<HN<1XP
zm&ZSM<Aob9-S~&C!i_g>ob8<WuN!mc;1x@omEvewG}Fj8-gCMbxP0GRH{Nkz>|!px
ztjFGw_0Dko*I>|4T0<G8K|?ML1vJEI$gLrTn_lteU(+8U`Ao#EZSrXPRycVD^9jDE
zaa}B3j1?pq|0*e7LxP548j5QusG*RCA{vsAmZ;(KoYp)FQ{2!x=ZrLRe&ys*lnL0B
zIPO+b2@NGR?C7kErC3m%Q|@QPG5xt_x4!bSWLXX6G^A;$r=h&YQ4TdV)Y1SA6*W}W
zP(?$|4)Q%ZGqI9})F(+>-nOr*;k%7-H8h-g6w4(nsxdLlCV&1CBr$2I9^qyU$--Y2
z%}p<UKI3PC+8XL;sLL{8*rCxcizn=8m&j>sM?W^CvH*MOa~(Ux$fZF;x`sv?8f$2v
zq40(%PA_aI5pJGf;Wr~j*z-za6HWjA)l@_1S?b*;=IAcwq35DnXlSYFjU=q0m4*xr
zqcx1t&{{(q4SV;SyK896){@n|gNBY8GKIGjY%e%yND6&BX_$V`)K$Y*=9H~fs(04V
zMFYu%!s*0rJn7t4_0rAs?I8`1wcJxfFX6o-N*@h<HT2W)z9^#v`wI>b9H?QChQS&>
z&@fz-AsQ?ihH4m=?R;x4J>Qs~D^;0b`So?XyDiK=POyy7FjC`6Ao|1C-BD@zt@^^t
z*b+5XLzae}8g^+Ir(wK?4H`CT`p3!%8YXF&tYM-C_qI4H^};QtXgJ$CewK#WVl!34
zG$Hhzu3<)m&lKVuS$>X&xf+~R8m|&%o`!`Q7HOC-&IJ*B&RAd!i#05dC?9HA!paio
zGQqcZ3h1fom9ZjXvr-5nSshW<2wAIPT|`+g<kkesCJi64IyC%KxbeFQmdzTrXec_-
z5;Y>Z*tyu$iI!jYv>RDIbDM_kVzWb##zmTDeym})hC{4b4WDS(qhVgxP6su7s-b^I
z`aTW&*-nI4UD)F5J{>+|bJB2trRQjoD`)BwgMLhkPNkFhg@zS5Qd4uLe#tg`C!OSL
z4Tm)ZGz2vq(eRCiy!|_<8mt<^8R>TRaUnMLg}4+dJbK+~6xS&I2YaSNjA`%GP^nS6
zi<KpWTod9E^lI=4@e7&?q|hLwp^qVT<-3$Jw)i|7>yxi~Q-B@exP}vK3?5AI;G~9c
zIZ}C0#)I!Pe9tk;gBTBf&~S<ag@(HtPHXs4!+8zAYWPWmX<GfCHGSPzk~8AuDye5h
zIVbpwAjLzaJ5{x`xS-)T4Hwy@Ct4ETHXKo`)9)OzG?Zx4mHd(hV(B5~KQvqs@lV0q
zf>$+M6GG$b8g2-`DR@ipuZZu|iI&w9Ej;Nx4fok9G`!OAK*K{`BNnB+V6{%PJks#D
zh9??0i~g|&b)tphQw`5pxgC0NIoX1o2%4F|8THRO%3Vw)c`3pF5#%iW?<ZOYFHCu@
z!T+XVln3N*G`wYpU6{h-osf+=5^{Ku)1yz|H+YasNVG?vsLvVx6oWquBIfbvANt=;
zw8VRm*MplAE%`in&x8CP{nvm39(}g|naZiLjNwQc37v5s{SN|?1P?0j$}H$XArBHg
zDD1(Vi>W0%`0;L|B0P}?#XRV+J)Jgh_hjbikX+n@FE(e^pH-h&QjBR|O31*_pt2s6
z^B~=W1|F36pn?ZAd3Fy#(#4$Qfl)|B4=M?vSXoFF52{9#YC@Wu;!Q%5J;<I>S=|G(
zC>K@?WWX98sJrx4ZCe`RYkN?~gS1Etbv;Op@DvY@oG7q6GGnt|M6b`5d7=P=H}s&9
z2VFeq>Oo@<nt0G&Y?^w|Oh~3+a}QbyX(1RVy9l-NAj5;!qA;qzmiK5QyshBq&toaJ
z6aN46MLUSIqX(Tl=<Goa*{g_VMJ8FgdC=X1As$%7riTZ;J?JC6r(iD+s!!7AW%U*3
z`+{`#^PvB`t|a|M86Y@NaFF0&K^lC(To~d>hI%l}gHaxg7O&xgBLzozP&?zlJ(5^-
zV?5x*2_9KO#(L0dl0F-p$2boL3ZLk~Bo6`}{i;3LgDD>DWn1-Nst40NSn9zt52kxC
z!-KgV%=2LVx5Z|%#v50k?Lpng##tUD{AB!hp^?fQ(a(2jHLz#$d=Eb4DS9UJSRiDf
z;35weNAxGp(l7T&UgE(w<qaguJy_w<f06jugOwhv@?e8U|JJ`+aE&0HyrL1;dh~fU
z>zE$Vzq_29;zkcPdGL`a+dbIf!DiuGJlHCPU+T9B`Tux0<%WExh`T(<cJ5}o^<a+_
z>8FCzr0$-z)>jVa;JM!es|Pj@KJ)0em!AtB@Zg}3F9g35{L+I%LTGlis(xwy+JnOp
z<p}d0;e7dTXUETHba>$OKw%%@*izR}q?R#PC*!>rNiGlE9(X+Pdh|WVe`=ekvDI}>
zv~1IVuNdAfmcN$xm<5mio`Fk>wK>=`bg*YoYL=Dz<D?!(Jvin;K0n^`<2cPYR(SD~
z7biXV)&r9l)xG%6gYP|f>A^qjWgeXJ;0DJf4^GpVO*)t94-bCw;EV?sJortNe%}uK
z*@Lqlob%up4}KN#ya%sJwXN_tok0qgG4u9}ME~=PMeWi5Q@g~W?^sIN4yI{CThZ&X
zgrWhxu6XdL2Uk6~=D~H*pXSKi)Ta=AuV?DNB69BBEf4<k;IRjPdvKdw@0Ixu$4nv5
zKTo^oK}tS-j@%;;?sJICYkJou^??TuJs{!Xiq?HUADR9{5<~u!JzCZvea3`sFhBR;
zg`B#3tvLE}LFs>)BaXvf<o4?2@S4ME7t<RL)=koHKHoBC&j0ZuhZi}$FnBRxg8rjW
z`}TT*>y|J_OQ==_l9M{?r;hO=k5@lq1uyb?k<W|5UKH`-JuxdFNVEK2#0q~{|G#;I
zapH{kBEbtzU@j=mLV}5c48?+4@k3NmaTfQYn2^WM%-izEl!(}r^kQOLQz<VFOtO>~
zEF)Ofi*iCjlPu-ESlK#-2JoVy7nQuI>_s&%k|Yw=LKUyx6gfkzs#l-x_(z@8x*Za;
zI+=`OaCcIx7bVSRFOt1j=*1%D*Nd87wDls>i&|dP_9DZp_n<mn)b*mV7frlK@gmiW
zdS2A`BF&5WgAJSqI4(<ny5uR+y=dS?Loe=jP5dx6g;VTKB(!A=jlBBp{q;$fZ#SBo
zdeO{_=3cb$>N^5#JQ4NYj)afO>f36!^y+=Ql^0z;ZN*TP_USL!Z)`HP_JY_(aN`bR
zJ1^RMk>$lW$w&t;dXsq3QJkHa=2*k?jme$G*~N>lLb?gE{JVS6LwHZYUJ*U}2gbhQ
zw0P0ai}!{1_u>ODwC3gk5zB#I42tl<aymvkL>dgux;^MRR5-<9UJQ>|j__in@KJ)J
z1;+@E6{J1WFrJOmi#c9!9w`rh?~Z(So9M+PFIIijW3m@?uCL#DiWgJ8AekmOU69Th
zLS_oi@?v&G-!(dYt{3xIWnR3QWNGj&j*&0$;>oCVMmQ*=+hQ+1^x_jQ_OR)CvDAw-
zUaa+EnHS4>YA;rM!MS!T*y_As10KD<#k>*v1W0z1eQgu#7d0fcG&Jv=xQ=J^Vv`pi
zdGWS&;s!4^dci4w9LZTJ%p;e(=T!EkKEr0VvF!;|ws^5sN^G0pc0oqF!;785cL{zh
zxI5z8eOK(KUhMV4=7rsheO~PM;!7_MdGQ%5C?V~j7hg!he(uFr<y#$KY2-JN%rjc1
z)=THC)Ra2uUwQGh7vFec_2RI!b`IAY=cF8wfQ2UO`z^8=b32$j`BM2mm*R!$#W63A
zd*SfH>4nD&uNN*J(a9B>nKUolkrZ~yh~m&!Yx6+<knZy$C~^API}*(S!7HcBkaw@t
zD&z$*?8Q+bKb_2^^8^QfFMjailoy<Z%ij%HCg1WZz-~U-(rmKjdm;S4?BKTKZ5>Ug
zz535k=l1o;x5IG8i=Vw1>qC|gXT3PbcIeal@-JSTXYzcg>BFyHT<{{%hr&Mm=EX%X
z9(wV}i{HJt<khd>_r196#UEb$B~B_=gk1OH&xmqW$Tjvy`FHO|M87HI7Tdh&40~Jn
z9cG-P^t~h=_k{5KHGLoakL6<yzdq#k;ctoLi5E|WJQIB9#d9xSc=1x4uLT*yKVH6&
zG5_nuD^Z%HrBLMYMx1Z6%|=H@`Sh&i@FAxV&bv0SWPJL~OfDaC`w-&;MLn!cRwSV_
zpBR%D@Zmk-`6EiK4{ukAJ^$PkF<vmihk`y763)rbJoGqkCl&Fbj1OgfC>n{O7|$rY
zgkVV@_)|bB!P0_s7BSW?=R<iP%wogm;tE2l2tu%;50!*e7X0tu$=gX)#aT@-Nzf>0
z@}atrvp?m|PFu1#<5x%3@}ag5Eqz=97j=B7>qB$#qFIU$jfAHPrU}*)tS^`@*g&wM
zU?3re0UHY^X(FVlU^7A95m9d;{O;V+8A8}{-uI!kaQe3Kp{);@;%q0_Rj|De9en8M
zgT0uclMh`)<jnKVJ`BE8j-;HNy_*l+edyuSS0mxkOGr;auD(vCw-0@M=<7p2pFVM&
z%KsCdy}v{|KyaWBgBZCFABc09;1EHJ4?}(WFC=+pmaHVLh%^5goLz5(bik2<qkI@G
zWK6aQebKFPK8*L_Yab5#Fu{k3J}mcPg%6W_nC!zMv7F-5ucSPt`!F@ar}?m8n*L)T
zj~PD9^kJ3{v&DD5;2goZKFsrB{_d#kga5585Pe~`<?bj3Uo8AXAC?GND!9yt?6uH&
z7Lt`dtfJz>ejir*u*QdveAw*6+DO@M^kJP3>&3Z&DQ{t5VRAb^;--kr#QBL^eAw!P
zr&Fn2K5X-0yAK0e7!Ey1*})*^y3%;34_uIE()5fk(#+o*dU5rkkA3>8M7w?XL<spF
zA3pVAuMb?IsQk)|Gs`k4e#T_`aL|V@e8{z2-<5`={Q=3#`;#s0mbEF6nfN6e|3dR2
zpT2it${_PsEab^%k|RER<HIjLocF=XXni>4!)YH@&NSJ5IO@YO9~AaVAO4(UTHY<*
z;e*qM8}m#q2AOQqgu8wC$z7i!6^{>I@gnyL@%s>nC_x`W!oz}GIfrJv;vDzkJ0B7j
zn)WR)onSMVZ#wD2w?fD#aqt&k8vNkHr8Op!A9+$A&apZk=03w_FvWD1<IGai&%!6J
z)T3QpGL4G1(A0H6)UQ5V@ZkzG!tq~hF7mpt(lo1dVOo;>&X`5H%mHeN=?~%5IU)S2
z57&J7$A^D?xXvtdtd{iOlz1LW;oK7bm*8z5?g+W-!+jw<#XTX}zZ*aBA)ByNANlZD
zVj%A^!}NrOKil+_O4q1oKCbCej$xlm*cU#$jKs#^uY7pzLk>TRF3>ake5&aU2WKDN
zH7s~)mFb-i8@ohB`EhWuiO1(n&CEznKMa0E`}N{_JIj<y2zhQlVua`MBd?Gd%?f7!
z*PP#vSU#f#a3X*Le#H4P-;V`;#QTxp$2dR6`%%!3LVl$C(ZG*HKMMPCb+W~|KDh|f
z=0{~es`ycLa_4gO^ry~ZOaM26_oIX#CH*KRPAcX7C>`Ntgp~E8TtsO*QJ;)dL7ecT
zVnnYbB!9)2s(w`SBiWA{ehl2#A&CjAY%(!bi6*1q6Hi)o5zT@dCtGMx(~nwyq%nh&
zEw%j^dZbldKT`atBb-i#x_Pr*svlpAJ-OvQQ$4Y-FUUw3miJK&{pjdNCqEkb(b$hB
zel+zX!w;^C&`gk|m5}Csv=GuVqOUt1#e)W|MQP(lTR$>|xA)`eetl_$c7B9T>oy(!
zCsb!Yy7=+FAN~F4>PI&}`uNe;kM4ebPai&p_wb|4JpEVA%Ts&y^rM#_B)tU>zeyy2
z)gHIoCHC{{8$Z!(U1s6{7N8%){21=XAU_8CF~koGV?GnboxVTdxw^#8TxjO&@g}i_
z`AgSO7EYT)CT!;_^9Vmi`Z3y%F@EH1X&B`P(_pKglOK1Y5-mK@SU<A-`ZpTB`Qc*}
zKfCaTd_tr)XA7C=*XJKj@?)|%r}!~d$Zt6^rwN%ZI75)FVy2K;f($rE$XvmBf{T|H
zrrAP27Wwg=AK&}2*pCnW*z3nWKbDBiM{K2C%uD@P=ErhBR`{{XkJWy(9+FYm-k8Tq
zKVD9@O!%wA8b8+hv4QQ}-k9r<OuiAj&X4u1aYLb@H)5$|+i&z^lLSwi-oX^BZ$Puz
zk1c-vgWXm?wh7tJocgg#_zpkT?9yi_eJsx1f>#oB<rCo~dxU%{_@~RT-;dAy@cH5Q
z<8wa_u+sf-vZivG4*Fs9!!G;_KfV-lNRYl?3HjQO!$OV-eiQMv3gOe4BE*=LuChn}
zq%Y=^zf&xqviUxNA9`HuYw|9|?blyxXo4O=FUN-|mhthK0Y94M$qf5()Q=#0#MXi#
ziF4Vc7QbCfKjxP|6LXnPF#RLbkIPy3WX%(u^yAw|da6&c{NTqawub<w1aR7qAN?p6
zK=A;6Vq5a#kspu!_}P!MY}kJM;m0|a>g}Xo1xbDpa-Q8&?ouvDjsGTiQSf)cOM;wE
z$<}hkk3ao*AOWumCNz&`RM-5t?#B(Wq}d%mZu)Uc4E_@Fw(z74QExRpp1b0_C&;IU
z`_jxfHTqOS%tH~IPO<#WF}8?)<Mgi|PegpmZi1+165(@EUa<N3@lWKu^ksS&|0_RU
zi@_T|-U)dtxIl6m6+n&vat2@saQ_0mOritG6+qqq@`*Ed05JjmE{k4S9rbl)@&r&b
zE@n!%*!M(_<**+>e&JI$>TMt{08=Ub4Msu$@d3TDk*~iK#~2DqoZSk>BnqKYIDjGn
z6cuNOgc#mzQ!Eic$pE?q&^>@s0hA7)mKc-~L;w|qlntPqkn#ak2!O#EmIoJ3sU*5l
zkV@qMszi8IA=Lzv0^q0W>`<lvs*7kAOcrFyYcRjU3(7rG?EvbCv#ww}!IS_}14s*?
zUI6t2$O!0{FdpdvG!CGNI2#1eP)H-e4dMTGacUYs3sIU0HWy^r?7v-F2GB~BJus}V
z9@AQQ8^N}MnS!+c<Y07rNlXX9jsbKEpmP9SSV~gYanSE+R~IpKmC8DBDyl~SJp=e4
zfFTm3R{*_*ut4~@(MNb+!G4182hcx&0nBVK{r|^70q|LAU;q;lMdx6#`RTF#^kfNO
zXaM6_ydn-094$CpaD?DUN&KjQ-k5oe5pirlpK6{ZoKaCHP6!~o#ZDA`lHkAcq&YQ!
zX#pHzr~sx1Fe8AE0@xhDOtD!Mz+xe@1ZM~IpO@zZFjt)O1m_Db5L_sj-3~t#&a<x)
zvP5uc0Lz3d7hDm*%7Fg7%m-xsU<n7nhs`wstQCWGf|~+ZFN6jg0@x@#yTxXYIa>nQ
z8o+0)8u8keZ5+UMAv?02eE-jCl>+%Vfb#|7cT3UfwI9Hq06q<1uM}x^q3sjC|9_MN
zk$4UVa8URcf?tZwA;GT%zZRUlP~Vq|X)eV3{{U<O{SC%331XLa<q@s~pbDX-BLJsx
zm!Mlv6J$D>FmC|90Q{_`Q&HJ1GawC;jWZZPD1dMPM@4xi^-CLiG3KR<(oP2OZ2-fA
z7!kyG0esI9CWwR}ehA=H0QUm8&+$Ki9|O1$z;7J?sehhyE`VR8(Vhw5XCY@JZTQZ<
zuIB^TvMq_nuOjBo5ko$<WYk4gYXDaRxE26+%eoZ69|2qm;FEpbE(c&-k+iu)RJ}Ro
zKRNn!H=6@3*#({zkGdYfjR0;1@R!7PGl0S6^|>pLv&>J+NAX_kc0hl~x)T7MBzFTi
z`6iWw_#l9X0Yn9nBZx-<JPzRB0A2;S)CuyAOM4!`z(Iy53@AaKv45>=ylZFl-8D%h
zF9LWOz(0|EmB}B^AUyADQQiu^VcJUSU3JG&!@G#(vN?sQ<P0KD5P5?z1Q8uXuArXC
z+(FddnUtN*7~vGD<O|}xpkA<XL47F5AH?>t<^sZFgZlj>lf<H+*ScNN#DYN-3ZiZh
zDM2I#Q8<W-K~xH&NDxJXC>cblAXvG@f+#MLFbGdtLO7>F(OEi(d2drwSGO)FVj01*
zLBvisQ!gJx1u>YJBL+dV`5<ZEh}K^YPO2P4l_07IVGg3I<j5G*>$+MHNkKH}leGV`
zUTZv;DRM5JE;$I>#n>NuCe;d}Mi4cF81R0|=R5U`4Bi=CTP&-WK^+#<w#L<O^-B#R
zEr^ambPA$g5cPv-5k$)%(t~Iq#!Z6wW>3=Mx#osJ9LbRpJt3`85RDmpLK=^CQ&XA-
z(JY9J90fC<WHe{N&NVk#o<wX#F^IN7WCqb%qRK8+dbJTV&hu%<)J`?G52C=9Boc=;
z?nR(OhaiYlItS4uh`sGvzaK=`Ai4$7Cy2g5bPuA3MA$osUz*f*OiSq*M6aMe@r>Ez
zQE6z(f>SLX`lFcTY^9&rv;FjEfdny-StuPfBnXS>gMt_w#JgTe9|RG<D5?L#q&y|`
zsD=h3O|ECkF!tFADcz=6Mg}n|i2Xr)7R2Zv#su*(b1^MyY!F#NEMa2^Vq6e6ujEeb
zZ=NY+yx@c&_6#yl3}TWH^2tF=iSVgHrUfxw$c%`7YisPRAZ7<Kht03Qna6@4<_ez|
zQRWA+c5@WH7DkjsLKX{t$clJSjJ{VtH7^Tdc@QgtAg?#ukh5Rn${@C}3k3D`1XcyH
zI*2ulEr@k&Y(WhFtKs?}Hn8~x@lg;PMd>jw;qTh1JciBcLEJ3j(2T?u)jQ|D-*9UX
zf8K8By4{e*T-#?y5W9l<0u(!g`h|u^vL$`e6wCg~op%TENf0I4oA$7O6*2D%V&xRe
zr-FMqNVYT3SzuE#@2fu#;s85%2>C)d7{nJr+zaA<5MKsyD2R)UIf$=<_?mST#P>lQ
z4(e+~YC(9|XxV^+u!=%a6=D;#2cbmti9@3u!krPt6@)v&CwdDotXG`jAbb(sFC-8|
zP)I1ESG7kS6@DzD9A_a2KPmXFVAjuV8SM|kPX%#WNVj6`e-v^qh{s2bKMAMV86iIl
zo)v8HDDIbt?|C7=25}*x{KkQ+M-&5I3gR+rJcw)J^+ym_g!on&^=LW&Urw~Vdv)^b
zLEPa8^L=je8)9}dh+C03{|e%^@H&rDvcukGL!F{8PWymOh&?xmmtycJh^Ik3W6VMP
z9mEq6i%5D_TyLEn_PL}mv{6q+w%0#mmLsHB-@n3N3BDG5BlwnGRY;VWvEpc)GXzIn
zJ+p=oqD9Xom|Ku~jF3Db%#bv^7ef9JDujR#Vnf(-DtD0(iiS`iggCLhHMGm?+s611
z62w_B5>KHJ5+l5@kR_!P7=N)4N<{SHLVmAYpkzcT6+-C<FC(OE2<0M5`4F-jSj7-3
zg^(6Py$~9I5nVZi<cLj`5UPeyO`J)Br%xM=5nq##>VoDFc1s>>giw<~D(X#_M=kNK
z9YUQ*sJbDfM0jclmId(}k4DuGAw7h)qBjt18bUK64Fwx9Z9*7l6CvFl2J+@1v=FC5
z+C$5TO{)+xgtr!KBlvP}Y<8+LLuePVY#%}g;T<DNCn22$NA8R57DD$BJ~)9PC(t8=
zo*~pehC0X4D}>%5YzpI}F#3ehH-v{FJPM&-2=9lWh2ROHe+UCY*hsSw28J*wgbzbl
z62f3c7{d4vCWNq{i*ZN@r)nB49BTR)xJAg&5Qc>?JcJP;j13_xgpq7u+=U^@_-$$9
zDB+_8DUK1sw=|EhHst@3#Bm`I8_qUP4C&7W*QQvehw#G`%OtU!9Kw`H*r_2*iv(v>
zGeVdt&RHQW4k6Ip#6{|6i!w)WZV2;2m>>FYO@IX=E)-lO$VfVV6U|?MIfZy>2+KlP
z8^XE}mWObmn9=blX_b%_f-6IKm1W%gkG^~IYIdbZNoyE+DI*tQSRcYK^P`)LGH#&F
z_1KmLjOE6d==>;z%^`dp!eKexmJmK+KMG-M2-{e&g^b%n*dbp0?~+cYXJ-i3MB}ay
zK8~btcO?CvvIdi??-PBma4v91g`xI~_?h76f(LjN5JKNCgnTJ@D1@(s3^}9kSaBqT
z2E~m$yOo76oK8o6qb(BF&OV#VsDz-3;)v+Z5M09Df{lOF-*tFH@UbXDI3I$aH4?)2
ztjdr+u`n1yD1>kb`#;dXP#g{6SO_OVI2pom7DBs3UR#@FCUV9pFMr>L^u=#EkLWvk
z6*f12R$*&OCq5vY3gI-{c?ds;@M8#nERAz_#7}H>7pi&Y^x*sL!ylP*w@x_A*4r)d
zTnJpyiEk(PfWxiBe`O_xa4m%EA^aA?#SkuqaG7oR{lv9p3jH3^7v9;kKwo(6j}Wee
z@Mj2D*_BEqbHY;8mquQlxttnLbmDeW=Um1cA>0h%ZV2~6;4-JTLb$^?7aINw={L-`
zLwNJHEmxi=GQxF*d);SsFDURJq%XSO?@;4kwkA{mH7ezC2!FE`g|Q%vCm}oyp?MfB
z!gv<KbC!G<CBt|T!b`606T-U?{t4mV5MFa2lJ)#wg)k&4HGjYKoKyAnb>D>aeE~=+
zl`}+z^*)$03_}<>!g$rkP;9EjHOUwqMy@dOhLJCfKZh9yR*D%FZ_FJ=jMxu+nv^Gu
z>QgNw?}d>+jD#>+O*F-ZG2yZP#v_igjWrbzY*I^ad+`$R+}YfDOBoA>QHYV3GA4#m
zIE*5~=`0>bQQ^e|zuRu2Sng#Ku~b-p`&2QEN@0`^BROxUGNQDJuU<Bca$$78SHHX{
zG^-#4Va(dA&m87aIgEN?)DNRd7*)ggv~`PWVVD_@SSAS?!!Si+s2;|a!urcA?z~we
zjGAH83WNN^lZmy(CPlDL#J;YO><@yeVWj<!Gd+x_b<!G9`Jg&UgD@J3g7qcoY#c_D
zFq$$Ym8#RA^RVj8gl840UMbwMB}+AoQDKY@BO{E~VRQ_mlayo|!FFM^6_P1<pq0MV
zReRwb1aHTsQRy5;moR#S(KC#$VRU0`x6-?Z@x?U#nL2h+ERo7DnT>me(L0O}!WhEw
zUve>6GERfOVe}K_eL*Vy!x#|Z1H%{;;oPgVaJys{mqnDJ5#3rYrT3_g!^AmUaD?DU
z!OyPd9uvmcFdh~*&j}+djB#O14P#mu<Jqplm>9;SFv@pK<l1q^J~sT`Hu1fphRJNS
z-3(L0`U~^aYxOxkWK6Y84`T*vKaAO7Ea{RMXo8tx@S6pFhfKBnoF3P<1O~TFyxuXk
z$cW^*a>jXr1A7`4hOsD&wP9SF9lcl*#+=%Y6!<X0mxQr2!j}nIF1R9$l@Wba7^{V^
z5!|~`Z-?uIuaDSl2xFu0?44dWv&n^V@hE;jimhR63!}zS)I5sqVeAOwd>Frmu``Ta
zVf-Ic-vK2>@qN9pOU`l0AQwc~VVAgUFJS@6d6&H8Fp`y=qbNxvNJf%?NEDPD6p@{t
zp6;3MiDX3-m0$vuEPS`${^xwZbL!l4>(#6Ls=BMXy8C<<zRAM&EbPd_=UF(Mg-^1u
zGYk8&u%EV_g*&yoewu|nS=i0KTOG>>DE+!Onm*0>85?t&bFU!hx=jm<?A()bfXU`6
z#rMk&ae&lIJSf=xQVb<4r#aUwE_NgfC$n%W3twd6%Pbtt!m%uz$g*EaJ5Kv-o|d>I
znW@oxbXro!4v9zmHa<<wK8??0;VegV<&u1X>s%JTl9a!eh!bXYVqQO#=ooV*bw)<7
z3t9L!3uYFqEL_Y&mgpE+a7h$33vMA}&$QP#UX~^^M~@I@s&gPONgmcAkyv(NCvO&f
zY#Al#+2b||OOyEtWq%feSqNnzAc-7XVZV777S3u$Xw|(-QF2KnBqO^eUd_U_EEIO3
zhzr-Va3c%<W#MHOzRSY*oN2T0B+GvF>}D2z;PjYfzlC=pJ&|vv{g{PcvhXX%#qBmf
zW#P6E@}H$fBz!f@yCCTf2UpV`ce8LW3-_b>KFGpv!haY1L-5aN=wBTEW(te<P$Yi~
z{u2%TSI8s5Tr)a774lp%Wt3;){daS*L$w;e$O5s}l%!W#h;bpe3wd0~;X-oVuCXrU
z8eRBux5S(-%;{Z<WKev^I2X38NX|uEnp~`G$Gk4vNb<RmU&z-#v?<_1LE(j5xbkjN
z#g2(ndbOp_o@JTrouV!jbK!Lt>UT&i?m`I{%DYg(h2N)lD(OOL7vfzg<--1H&R6Xc
ziDg_^_i<u5rr#~GtnlCSccf%jvl5h4bfJ<9aG{zDG`Y$y)Qay|MH2t>!(?Xnn#(rJ
zs)GMcv0we8{cm2}t-1@JcTGIyXk5dEH(aR6h%VF?wRUfGO>n^>iCmxEiH7w34~1r@
zCnmCNEz-VLl9E{3dR<pO?NE<8F1+W$`z|zap`i<1T<FTCb79QOgeERDb)k_9DdJUJ
zXe@+5sX{o_(9zq>g)|r1Gh)-2<`UG#h0K=;3~C|XmMmB_ZYvjB3#W30rZH`Ww-bzS
z8p9|ZqM99D=oIChC2@v!b0OV@aW1^=LWYE9y3o&s?k@Cjp{GddH;pOLG^Upey`!=E
zh`et!HRe0zWkP=!hPW`)1@Zxc14Utw3xoehbC~dvQOR&2PQkY%{SnbzM!7JW@~CEO
zsm|DF=sPZqm!O$0Ob{|9syR`}Bo`(}B`o1o;cUifLZ%DO5M<L)K1=v)+O`lj&Rik$
zT$mq~EO6o7C|^iJl_D*2VX+GbTsY{$5*L=bu+oK9E-Vwx4_sI-gysKGnq>upUM8@2
z*idX+qWLmmHD_`TA{Rb#VT}uGqq$IRoeS&5yFqZ13mb*7*eoR7X7OhC!dBrsC8KS^
zw+rqN{6t!h5qG(;TO^;lu*ZeZq%M^26(Q5yCxnvyLb7Xmh{MDMLlQsi!VwqTE@&=%
z;lh`qcF~2SE*ukn-i6~r&Iz7y;iL<vgr5;)E~kYs@v~8qU8%3c`*pO1srijaE(m@r
zn5~&5+~tBQB)go{_xz8J9u4xkz@}!XkHiJb1-}G^1p|T%4Z0ADawZsY;gSoNMRGMN
zzY?{>Ya+=m%y%w)?*i}hc^KxV3qSAzq1qcPoQrO`aNmXBT=>z2pC~V#cH4ztTzF72
z<!AA>DwL;Zp*+93aECf-tGh1yea3r&7pFNJ{5723-(C2_g%>XT$6R`K`IFIIc*x0t
z?*$0*6!+gQ{KHr-JQvBoE<ACe@(la6g-0$tj;hg1;Zx3Ct9oaLGH&*9?w2mS;>@oi
zkIJVw$e|*qidYrR+LeqHEXt3U*6dvp-An#>rD~jtT&jKJU2t)qgkg>O96zs$d@2g6
zD5N64iUKOib&chJI+$H-%s^^h`6{z8gSN!-Yp7f+aaFatVscRx#Z(kmQ9?y^6|bu(
zsiKsMDk@%6QCh{FrM>7XtB6<arCb@2l#R;EsVFbJf?!3#O3~1@o0GE4<m?oxs(=bg
z=w&)|)l|&=rxCq1RJ@_0!=pAyg1=95)>KhTg;gUhL4`v_ZIO39(KwN<G2MB$Y+9kV
z9r>0hc^wsXRn${)U{PnL;7{s7QaL`Yp^9V`+uYdhMk5s|DyFHJu0m0fs$!gqw^cM&
z(L}`<X~w2(WEJgHv{#X)qPdFJDt^mXyM=16!nkAbrizxrE6C{rN?NJ*b_aJt+K9ZZ
zV8sgd--r1Wrh|$BDh8_PsG^gK&MLa7=&K@=U2`vYS4xu7daCFqBwgY%Vup(DDtfS}
za>kMp-bnY7(B6y~A4^Fe@%~ph4^!wTyuWHMCx5G6n-VGvQZZP?TPjAV7@}gRis4jH
zK{bXBBVT4e*eX<`HifJLBhouk#VGNP7Pah(q$4J~j$@^jXhlWeOL!;BC#x7A<r9QV
zR52+kSuoE&<T*vWQ&s#tJ(k`XDrTy<O|ObsDrT$Lr((Z~IWz_pTiInQ=Bb#k;sX`S
zRV+~Pu8Kt}7OPlDh4pbWY8H7<#Yny5&2&fann~}gs4(66aAsrvq-KeVr7D)GxE}1x
zgRD~!!}UHhZ8+Wep^6nM)~Q&pVx@{zDn3%NM#X9s{4RR+buk59F@Jt+?;fn>Kv)-Z
zqDY=gYhp5{JIlXaYlDi7DmJV5Sj8q4|Mo1|E3*U_Ec{d#kIp`5S8@w?=XS+1FHRJ}
zr`@-!*rDQ66?@o~zAB%n*sX#e%HFBk&j|S4>0PS*_36>mo!oF3f4}i(s{Q5dYa5C)
zh26Jv@8#GZl~k`<+5wfXH6g%xOvND;pR2f_;#(DmRUA=qO2ugvU$Dzm99MBd#fzcE
zf4f!nsET8f(YrNj^Nn?W5$GfhuUApN;Xb@a$&-Jj^1Rj=6=zkPSMiOCb1J@4F}7XF
zuT}e?8h1-R>XXKjyk6A7>d@p$U#Y?mhVv`g7gc1b&{Y^JTq;x*Zf2x{{}uY_dd&F4
zRrr-%kBS*JN^L6|%j$f6!2W5PSA|c7$>FTpKLTJ)ogGUq7#izmI^XB!(vJtsm?@P*
zD#9u*tGJ>fqJoRTkKQPCNroYpkfl;m*m_r0T%$>Na{t6$=Gec}c)*$jo{Xja-%#<L
z3<Un*?|T(DIbX##qWeL`E#W^3?tGO@AvbxL<1Z?H<=o;%M>p=MxT~U)8<pL-r{cbf
zmnvQ{cNM?WCNDZ(s9**EQ1OfgeA)4*c>l^qnt_UkD*hJlKQxl4+_@Z&qWrOnC&Hgb
zC8tk1o=17<X@xbf<3Bd3*HP`7gL%cc5$i^r8#&zg?Uo~_VC+c;c`i3{yHU`MLT<ZM
zdEB@%%>JnXU0#vob0fbHN(u-Wxd4UTC?dR!VC@b~ibi#c2`MgE!i|zbO1W{eLuaN?
z+Ku?AX5kL@-=@mCQBEY~qw)$uD!TDbflgGY;>K%kINYc$@~UneI_rS&A%`4GBe|=&
zQQeKK1C3r6tReV@AcZyEs3klhDw((6k?01osT<AQNOGf&8+F~N=SHf?Zw-sBFX=ZD
zY#`WBFxd@;vQ#P5yy#E_j~{W6H<q|f1dHxXW%_9nrM+NtK}KxhMoZyu3bt~iwHs}O
z-;B0=TQ}N?WWWNuQ|KzBHR<F=XE$cJF;jxNxY5;(Zo-S4tC#LZh8z9e7~n>CH+nG5
zBdM7Z+S84G2kifm(e)BZZ#Vh~=_}Y_fnB41!ZQN4!E7CsGEltZ-5BJ?VBtdq#|jR0
zW0)Jm-Eg|`mPkgp@g%8ab}nq9ks_pblpCX?e2kE0?V3<N&W*Rl`;H)uioyxP-(Qh5
zQOG1WCJUJ&I8~5p(}YZSBkzzHdS|&Y+l>`&tQ7eiH<k#Q%f1jY-;L|i0t>{;DDS$l
zFv{N(^1k3A!Nt*DUh2j&H};-!eBee((D5OM$$rOjcG>s*MWcg~%X;c6H&(l`*^Q4S
z?ni>T&N|l6fKNKs3a%4eFStQ)qu?e%s!f_)n5Ej{##V_=<H=YTLr1d1jZfUr-7wtP
z>BcTMj=6E%joog1>c#;#4!W_fW!fIMy+5{J@H3WK$UZ?H5M|J~Zr#d98XXb|y@%cS
z{C`4^xbcN}zhvD-zhRy{M|sb)ya<)~mAMmceB;Ii4rDh@iRNj+uiQ8z<g6R#geXOe
z<&HF3T(sEN;yup+SfF3obyb-T9h3dmjf)bLCFmA(xuFWl&W@;w*TZ~s;#)n%>xPfh
zj)tNdOgAhyes|*!Hy*y~<agscH@<fx;6~7G|A#l^#$`@rZiL;4xH0CR+?U*-V-SCD
zN4)CBHClxmH$<2nH1t}PY&GNKqSU$R#t&}%?8Yx_6E}Wz<0m(6Gv8ZPcoF2DB>yJE
z%QydA@bbeV{EO?aocuYp(y*`A<aME9Ui%+9cX<`yaNeABp9ADkqj#q}Yqjmw_DSNC
znU#5y@TVJ3-FU`McjE!;;>O=@JaXePdys$8`Z?tv&fE8DZJzG@mo_%td1|_|o0-h(
z*AqARiwB;azA@d&wtDVHjD{Q<UPz<;C-^ejp07B=pNpYdP7Sdd@@dGgAx=Xs4S6)=
z)xe)v<<@X@jeSs@C7*RY!#*^At_tswrf!ZaprN3KLK+Hd;Ky)SDgFh9n&htSvBP>5
z)$HF1p}2-x8WJ>=&`?rCWers{l+sXIvyTT?)DSOZZqYvFG?WouR<L{z`&Sp`g_Bee
z@(=IHJ2)z7;Omn-3H+Ldsv>_~12q23WpH)PUNlwH@OO_SYWBQQiC(UNYG`;v!<_h}
zni~J1T#7*n-5vBgG}PA6TSFfWi5ikLwAAn>)6`H`Qf{JwFC#ONdK&6$XrS3=lCw`c
zH`H*)>X<CpNRZwXA&SO-zT2U6jfD)XQ>3YsjY&1rkQU|5g|yJ{?@#t$8(L{-E&2A+
z&_+YC8P0B^&{jCT?S!<~&><@6sG(DocNWq`u&boQC`>k8Lq;^m?izYTc~1>bPZpxW
zgY&7UUfLfG=&NCXhJjSj&`+~pnx?QnpBF#3AC}QONaC^qhiDiq{NY~v`1erB?&~~u
zuQ@fmrQuy23w4apFj9l%f!~8s8b)jIYWyq)#%LI;;ZqHJn2UzDsjp$7hIcfK*D#x%
zrD1}Gi5iTKou_N~{d)2w4O2AmS0j@(tht|D?ppG;Pg199xIVx2!<eLL8Y-MmBbh<d
zt==(iTiQ$wvuM)W(zf47CdN2h&($zb!+d5vtP#D%K5V@}gZ4|a24~aAcTaBpo`&}|
zY}2q^!y*lfHLTX~k%lE2mTLHrru$3sG7VGbbX_*D>jyNd8P4_2#ybipF4sW3`eEV<
z4J(;N=f;0uOdRBFyh=lp4V_5VXjrRZqlQhaX=>+n8rIX6=uK?1%hBWT+pRC(NZ#=(
zF=kwvxxV%M5-FQCd`yKW9nLgLo>RE_7WQeQMq4?Q9&{kt!ItUN_!A8~HQXDTGH^|U
zcRO|6MdO*_wC1$l%^|EbYOpQs`R(M-H0;%IOv7;v`#5kWrR~>nfOEq9q}*FNjb7CH
zpoYU5j%c{DxYZ#Ip9>)`{&VA-ozlNx^&cgF$r{yZld-PTxs*mnHH61^=`tzpgocwE
zvNX6foYHVw!&e%<)^J9{(P6F6YM8sW!Tik)lBTsjr{N1Tr9@)K-@B&wo8dgK;TsJX
zIM#X(_+oO}*6nHEYPhIj#Jr@`Nv-K^yP-k+{p1NN8mJm{8h{2jyGcXm#jPtT$sP^F
ztJji=!#`^9$CB1;0pn?+Ni)+>-h&D>HVpv{KWq3!Of<+cYltwByR|}saV=slX}GN6
z2MxDaWlnS&ZfN*U!!=qITP!u_{B|YB%}VB!J2B9i^X>N<Zqk1G72DCSB!7L#;lOpl
z$Z`qP{87VC8g8?9GK=$@VEp3`aYmpppXdI{;ZGy<AeRSs*;yL?;b7NrU&C)29%y(-
z+t%<0jh1uK_LzDTleo*oa?VU|%;nx+8d|JqJavYXE5W}xC-ASDUF}QB7vBtfq~WoK
z|1`Yh49tP7;hBc#Z2S%-xjFMR(s&qRUTFC8T9sBs^2{%ihYPMbTN=I65aU4(4|00!
zLUOyN{5tysWve_@=#BN*E7l?Z4PgOtdyvP2!X6ayAg{+>#1-(Mpa=Op;IGa2JUze1
z{vXPjW%d=VkjMU-nY{zhqavTh7xnOCk|^szIS-0??8{c~f{lxNKrG=wNg<^KOAAsS
z??D;iJv$VqmuVV@+c$dAfm=xxJ*ectFb{@%P}zej9(4AgiwCcHP*oCd-~l|S=0Ob)
z-teHh2$|{YLfSmCAHxNo=dLN<`hvBhItd;)gx8Kr5<N%~UPrKQR9=sDe~`+g=yqK$
z+R%e!4;p!pA_^@96~R;w{{ql8TeGnTO+08S@@5`17s8-452iJ<pTN?!@Yv5}>E869
zl?Sb(I_*7Z6Xk6^Xcy&$dK6)-4jyzANhiUtUjE<zF}r%u$Ai8ebQ5{H2N@o8kH$ST
zD=vJ;(L=mF1$znh_TYC(A=86?9t`wgkjVRcFhB@%ykiwza4}})9J|<qJs1*|=bl?=
zXq2yc*39X_TONGi!Ez5qcren#H8mD;{`X+C2h%;6;lUVMlth{6!8joUUi@GA-xlvX
zg5w1zcrd$NDP}rJyd;x7m?C^?R5DFSlP&hX&`b|zF^Wj0FSmPtPB!0b^SK_(i^iHS
zWP#`Z{s;P=co%uFSjhW=Te9poUzT{V)PrRnbX{#HlJ#%l8CUJRD%~pjp$98G_{4*q
z9<20Wl?Piq*y_P*iT;sbCh|~ujqtTJ<^i?W312U`L2#oW)iw#)Ech`KpW&o%TQqbB
z2kFq_+dX*Dvoq!M9~M?-+9lcL!5$Aj6SdufpL$@dvk#fr&V$cAI4tsg9_$x#K=7d8
zA;CwL?Q$OR;0q7FrrlmHO7E8vbVBf`;4#7D(RQQGNe@nWaN2`25_HakuRJ&_oT2qS
zy@?%072osR?&b3yeB;4|XlRy@Z#}puq+C(E!Ck^t58OgDLBj)&5M7XJH4YW_3ik<`
zQTd`yDFF|H9`x7k`6uK-*n?*tJog~t!6gswd2ru@%N|_e$ZDGQPu1kB9$fR_XAgey
z;JODlJh<t>4<3ByLEDE#zV~4FwW?*_uzxYh`G0%8B<`@?^57>AZnGU|@UIenpOA83
zdg6&ujX7&^GF*3~&aWP%#wXI<5prN@+q+Ro<a*46loG$OA3b=;)|iv@yWk%l{3+yi
zu9UwxQhsVS>c?h(doccB;!}2g{@VWt|JQ>~@Ajg5B;>K+6AxbIwB@Wa=aUy6{Kq*{
zM-?3}J$S_#Oh<klF*-lo(IHkxoRA!XId$ZDGr9Z7)TfP7a_PveqmGhBM=vptj=VZ9
zPDrJz`dVTE9R+oi))B9xkdDGSit8w$qlk{8I=*jLvY3v!u>U7M@kA>BTQ@&7g+D{r
zyOk`d!;@aJl#Zuq_Aw`8a|(6J=qRhByp9UGeRV6RBS*)QKVPX@sapcQ6?Ih7?L%L@
zvW!^UfE#*2`I+5oI;!euprauxl931<Z|FEt*HKNpGmJ*nbr4?{tRdJq!BJB}YY8$|
zf)0o9+EGcOj-)8BBc!fiJ;C}q_RVlIVzQ1#Iy&m;q$5R#qNBNv7CKUOG}h5fN1Bc%
zEMCWwzg~)IDn__;n!_2J<nPpg8<-uA+24@iim9cJH+8ht(N0Gz9j$e=(d~=r%Ch!<
z<asmTYiDo2a9KC3L&^3!I<O)&i*S#cEyI;2mwugfbkWgMM=u>+b#&8_p`*KwbRFC{
z<&G#n{TeLZ=t#B19y;3BEpjV9H{<d~ojuZ9M;{%1b!6(`(v@%Q@+(GM#GNRJemeMw
z=g@@8{daa|Mgw#V)G<iMVBLOw_-)<({LT>FemXEz$G`D$-18i!V>l%`-qJBf$5<W9
zdzKubW0a23I``EveScz8XIs7o%N6&+<(WKM$&!rI!JjRbtx}R7L1O1N|G2?BEV+&e
zIwrERI%evaB!*GqNWxUze)Kk3$7^2{nxfn9s`GLGG!gQ~Y&skN4|`{LmX6sv=INNv
z=Iw?#Qf79<T=rU@TKON@k6jk9s2xl4^<?fFKQZh>MDOW%U&l!UrwlC8u~<if0f&Jl
zI+p7AS;sFrmg)FF$9Wy!NK(sn?9uU=jt_OL(6LgtAMmXcBw3|nb(DXkV@;H=6>|Mm
zk@Y$@=-8-(f27^4<6|M41V5^hwk4|niH@zpw+U{K%6Bm9yY|OO>2~VaCGy>Zp9*%k
z7|Wo&G+G^BHBUIJW513AI=<9#RL4Obhjbj)aYV=GoF!Jo4C+{toy)y?wg#Vid_k)y
z8av`zl@Y}ob3!|&<2c)gjmd$=h*e5*_dcn2A-)`)RVLxI4n8^JQ;9P=Tyo92Im7-2
zGV?vh+@%2IUkf?oNZ|1QZ+_ebojW<Ws3S|q6&+U@m(!6BLx)#~TZhIOgT>%$r1fI?
z0$TRlZ9E*P>-J$n%6$?_VhJ%h|Kzphe(?qbgE~Sw!a5=x#rJAmra{V6uuBq}ohIcJ
zUej@1$4wnS=(wTdI~k1Mvlx6p@J<q&rP&_?9?!6UF-bGKrQ;_Zx5YSr<lt4i*UOvC
z@2&Bf7i-sWUE;4g?&!#6Ah!X1t>dnahdTb&aZks69lz=Jhcf=8sZVqK&gpcT;}1cS
z?W<$|5_!s0#{(TT=Q|kv9}YAfFWAmHN=|n?((zcw6ZXhl$Ii2<PdWFVOEu;@{&?TP
zZ*)A<@tnitQX{${A2_bealGWbYJmUPeWl~UN=J-g<MKrgVy)SZoCYrR=@M%o&al54
zG38wcF^_?~2Fe?#U?87?{07PxC_3AbHN#QBKw$$#3=}j_$N(iwnMrY$<GP@zVUNw?
z29_;z6cbFH;V2<O%1a6<WuSCa5-$Y)n6eyk(;Vd_7p690rlX>PN(O2ec*8(tDgSE*
zsv4-m=yM$X=QxNkFl?%$x`9_Y+wfZ%)eQTaBtNcpV5;MF5zd+6Xg=FflO<W`sAYhB
z<;4=uXE}<@bk;VIXkd<kxdxI9)G?4@pu1tuGj$ELGti!y8mMoefq{kw(iq)9vVleh
z8XIV0;H&Mgr5I2Qq#E`)0d_sD<;=ZCytLJr>1@gg<a{jW$!3hwrxw4L`*cyO_A{L=
z474=R%0O$we*DT^wKolDN2|V{s}aqNgOPu~ZDXLV0X~HKb9C*g#ZqW;9Sn3d@ZXj~
zQ|c!6eXn;X16>SsHPG1rz2gqqLb`4S(nXRj95ynAq=$i?21XhfWuTXV-UbF37-*mm
zH4XlrHMXB&fAEK&56Wcpttksvr5@Ur(qDw1mWgH1AOnL93}tH@;17I*`-%=R?ANmB
z_@>ox15S}wyOldfuavh8ba>HWgy6{;-N+e*SB=pI#u^xBV2pwHA0^UJ$S*~|ZD68-
zNe13A@NK<DbmN6g5bU3o;MEc)8<=Kbx`8PMw~`X33X(AT3|GPo@iy+=W~KppX9<$b
zHu!0a7?ODg<{LO@;E;g@2HrJ*7LLsZ78-cZz()qwut+q;$*HRhtZo&v$iQO5{)$oT
zu(%~cmI^Ktr2GRR%ME-eWQE{L!L-&fR9G#XNs+HLuui-i4b)6?tT(VhybKz-zS~OC
z`Fw2QO%h7)#|E|-*lJ*#flpX+tI+nS{*M1iwo^;TP7V;sZkK`G68%$A*dxfVv3+J>
zZ#3>c1N)==fPtpX?QfEQE|S9rjxc(2$1=737aV0R9mfnD=csSx_|kxTOUzMe7V5Lz
zPDrM#2;J!&<xd+pW8j8??+lz}c6Vz<1kZ7RaNM;?`r1I)z~~`K=M8+r*@oT9S<!%D
z;36jw11hsH@O)jHx{*$gJ2i3{AZC?eMulGA&}QP@6pf?rU}KMg17*4%7+2eCz-PeE
zLDahufAL^)j*3)zTG%oBP$$d4Z&s%~Ymx&T$gI?bHXDyL4si$<cF?UZ>frF<Ai8AW
zvVkj7&TE1t78bh7(rQJUB-uBp*Eua@#FEf`Z=jSHrM<Xm;0Mky27WY<!;73={AA#^
zfj<rWW#DJFq=9<|?i={kz#Rj3*=QY0@}7;u{}J+Vbkq5o^!d%e?-KL}hv7^oL#NGj
za_UIhVE-fgfq{n{=>}eMt~*d=*sj>W4g5nZo$2IZX?{NXUjvT}`@6@F1)m5$6?`W6
zT=0b;)ynU)ckf>r_Rdd?7j5b#uo&FP8l2oK)(a+>%ZuDz#CdUHXjgrG=Zhgn9xw8G
zQPgWshWWh6@5QE15(;~9V5YNxm;Zah#hK1EAEz+1kQd6%gsU^1vtrs8@nU`T_W#aw
zw)(AIF)xaHk@!yg5?=J}(7vP>6fzM;`R{(a>?b?%UX<~otQY0HsCA|zg>>b;sN}UD
zU{w&TD9AqqtqeA*ESy1AgcRQ18D3OlF3*tk4As4O-HUH-<HBv!@Zt?GHeSW1tEkDu
zz4-Mq?p#KK7Y;8P1ko^v+KlMMKnsH`BzaNC3(W_Q4|Tn$=S4*yD)~^K%3kdD;!`gg
zvb2+xrd~AjB3XDNFH%^2FMivf$e>gao_Q79SV$8=%1^(FP4l9;7qh&W?L`YOT6!^n
zS$pv&o5hPG=}M*-t=TogyL!>qi*~|0d(qyD4qkNhqLUYsCMXkb)zq)nInma!YP7=r
zd2Y&4$P~JWeuuY}ZeFAdr$UAo$M+_77wjR}Q?Qp{Z$T>b5z^NS<8(Z|{k-TeDcl{S
zpr=ycN$emm2758ai?Ln|@nWbKBfJ>t1&cAvi?>91xED?@SUg%O&%PeXP?F!Refn`M
z%Qni3;dwHhGwpJY&Q{KoInIl>y_oF96ffTKV!Rg<B|6oX<cym@wG73Ml3`bQk_5f^
zXWyw_O!H#J)s)p0;--5s!wXh(rWYUQYqsiEO*-n=-(#-@=6EsJi`(xg+r60Q#e5nk
zyK=O$z>9aiST5-=^x{1)7JIQoyzhI_#jLPMIFn_*Om->lf0lEZ7awpEDABy~EN7u|
z_1OjdCLz~8A9`^qLs=n6vQo$@!PSBvd9g;wT0!cp<3M{HOR|9`%8}*8W-qpJ#629|
zZAaqALbiIbMaY!L%_*lNskS5W?7e(Dq*AQcCtmD~@?Ape&T{VY;xjMKcyZQ?y<Y5N
z&$64m*zd)jSFy*u&^J~+AQe35#UU>~r}Z|kf0z=f9b2!!OyvtNzVzZK?QoXUoNi0{
z%yJS(&vFhpkeD)6IqAhIj==+o)MuZb_Tta(%JV+Tq^Gfzob%!<PLDps`tY?E=e_vO
zi|;u$nc&Kn8K>)9l)NsmFjwn*E6Aj>yl{D;dg1osnitnuyIeUnFZ^BvyzqGWGt)Zb
z8+FrZDvi1sf?h$N7bY8!3jskAeq<vk`aStXq)#nI42d@^7!kbW#bqH^1gUdX2&3N+
zqoN7*kBNJ5q#kQ@(~BRxc;dxVFK&79Bj*z@?r{G1+Gn|cW`}laew!2Kh4P!lY<>|*
ztDcFkwMb>qUAB)Ge|d3F<dobO@|)oAf`14u-H`Wz7Z2GT>B?g-{`R6~T<YQ7iRn!f
zN&ew<EfVraLaNoN$^lEW>^)U^=0%JTIed8T#S1U~^Wvo!ucWW3P$ENNtnB`3us5;#
zIA!U`fpq(4CB^xW%ZH_nn;+>rFt-nRd?@KdDIfCskk5xAJ{0wVYWaOA;6p(lzTDkE
zzC|j%g~S#1@$h^qg~xX!W(O7Xp}0gbHdb{#k1gQ?aqm{UoTaHumm^MZo3D(|9^>VF
zDDOjA;q3?5<Gq3p-gISWcV+f0C&`O+rLqrIe0bZ3cYJuwhpM7H(g*lZ&4*4tboQaT
z53l>s+=muE)bQaA&fY$3S=g|q55Hw9btFnH;R%8c!P-81{3Z$}31*MYx}slCbQqn5
zY2ZUc5w6;!&?WmoY~(|V<e~_s3N{vOBFF+X^`V*Yw5WtP6)k;u(}#{y(^fuM8>_bU
zp`9qSW-jSU8{x@g2DX<>e?4cnOb6i{gPXolIzEkM<8<+%s}KEs7~n%UNiE%n3?T{q
z<GcHKT+nXhem?Z{p_dPR#Y;(VsahZLvVxT0WLhQ%><pV{BfD>)4}*Ld;=@oMlvB!I
zgO$NPFn1Cn-7rbPDX9$?<P5_U-V*r;!M7&cX^!$?w0OzK_%K%ZIKiBwY=!YYOrWWV
z<vbs&O!Q%e4=ZWUW0grhO!i@l4^w@Z=EFQ6=8Jr~53_u@dq|n#!%UGd9c7ood49IY
z88k=8T)`uYDlG8fT^~M_d>8ugo)1SiD9e1<Fw6Nqvv?j)?;;=nPoXUK;lwQG65&e)
zt4vY6vz$N9a(*DOma{N{3e@BT%Y0Y)u$sN*!&V<YlJwUzSs&K;z}8;t!#W?j4;{#B
zV)i`AC>wpaFkIOz%9{j#>aBe2v#(QiE5;GG`LLZMj@kLJ!-r3N*yF=zK0HmRzmsY{
ze9C%_QFckA@lJpx;g#$8EGOgc^<ke6hnXxx#kQFvuW<*29~3+!__-hl0*#*$IrV)Z
zg<(=w#mr+q9QWb858tpsd^qXDDIZSzaHmqm_{9~x72}xf86UdzQofd0XNA*yPRLiB
zOlCXnP+l+6l?xoI<CJfGxG2gQT<CACI%-J;CXyxg!+RLcHmVP9snpW}_UO}nFgW~8
zj5pzxh?Wn2AACM=jL?}vn0~;AAZINTMNNc!2>bAt4-b5Zu#S@cZ67ZCaK(o?J(TYl
z>s2fX-Blm1iSWAM4Z&vJm81;idmnE4@Pp*b_W4oBEkTy{CrOsQz;X1m55M^Es|4Mr
zoUOzT;$0<MDP6fI@*LxBP1g5!AO6fPc82l?8}^6cyj^4u=6*+c$g5{R<)sg=eE8dk
ze;6@c`Ir4J@<%>A_TdR_a<a0&x59zRP+oeTaR|sbec{7@qRAi@j8_L{7h@uai99Cq
zns(wjP2@7Meu5Hf+KICl;!Jz0Wbe?MTZC<2#O5=R-$X$Zg(%_e0kQ8u$82ZhRjd^s
zM^f0tH-qgFM@~}AL~#>oCYqZlVWOmo8YbQ_QOZPVNuj)ncoQ6?bY)BodK{n4%Zjj^
zATy$?VA{7U6(v?B6Qianl}-HHL#bloH504%Ds5&vtD1las|i*Yq|WOmuJ=($YMQ8J
zqP~d+rfn(-CK62~nQ)k3(@|1e<fEo4b!c7VmAa-q;S_ioPtJdD)nnW}iCyO^4XI|L
zv56)o8ktC8IZdRBa;R_|Ew*pJ_>>&>Sje`hrc!Kro0+zyt&EMku+BE}7A9Jn=w>3_
z#G58sndo4mqlwm{-_FG0K1#a`rHy#o64RB8$@X;JUV6uR8B0kg6GKiZT}*H$=`5Nf
zXiIw&yPBX`a@b~==uRCILrwHB(bGgf6a7WAmx<mc`k1))I5zMkwy%k)>y=Csv>#dv
zIUUP6z{Ehwaa!THK_*zF!Qy2QIUP-9n2F&gMw=KT<#d`DVPd54w*+YwSGy~tBwx;Z
z94wsb8F8$MaVFlD1lh&tIgrV+Uj2BVZ(^c}KTQ0|+L@SaVws5#OiVFRcx&P;_G4V!
zR1>%Vt~pJz;63DY6Ej%fu?qQ2lV7H?r<&PpcGKSVooix&iFZxRGcn&p<w*+X$&vdK
zi3@39SL@I%Hu0W`_r<%&#DF&WvgJpw)>&fW#+aN-*@lN3Og>)U`@HUQ6Cav5Wa4uZ
zE2L`cO>8i+(!?s7B`2tKg>J2hkA$xgWK(3z*NK;n&nj<ZX-#Y~u}NBZvtV{>Z#A*a
z#2yo$iEz7#PfUJs1v^ap>cIBrpx!09?>6~)YP<Rz>AX2-BNv}$kH@{HJ=5-^ozq;!
zGP`l|H*t`|Ge;b!4)!?9z;-yybXa#2hRH)a_|n8V6JMD)YT}rQ(_+BXJZ|EoiBl#{
zNWM>p+d0zMXx>eF+IYsq*{HR%7L4+>iSs5@6K>8DCN7xx*2F~<oH`gv_ttD@7E3rQ
z$t4!Jb4McQTY8ynr6;jDp2ljlhuO}0l`=i1eWfG!n(&$U&cyc;#WWEyafxY~@S6yj
z2y*5(5jJsoww(o&VrAJZc6kmYrcP5Xo4CS3_cZpJiK{}`9n3UshOK;^JuZcRKT}cq
z*~_1sCVnvStBE@tUnYK}`I-3H#7nu=`N_oGVYXF|S!KuN>_PX7kUFE4yBuh=a}&Qy
zcX%R&@3TfvVp$UQ5sSooV<RSx*X6%VJmB1Dp^SxxCjK^&(?YC;e>kU^cx7Ty(YQw@
z9&<$V(jX;#V&WM|y7E-K_HtXs(Q^|oME;-P#$NU{^wB@@?6UTKlo$)d9D-c9#aYN@
z*@+akklR8Y3;!OpyCAQH=CPUiE$r)|<P(LZvz-@5DfAW)VL=Opgix76W>LgKQ47T^
zlwYe9x4^4sDGMdUOG!x!mDedG)GTd*IBvwivX(u!RJKsXLOILcQYdfX;GTx1_bC-D
zRAjyxN+k=Wt0mEqzh<GTg~k?|Sb&9U7HU~Yu;9&WUtz0TcwM5@u<!<j>GrI`m2XYq
zEN7q6nGOrJr8+4V5-of>+u6th`;LZ}BysCls4Ilo)w57P${Sc{C_FhT;q=QZDcex7
zkZRfYa?88hIkJPAvicUfTIgmWjV)=RjfJ)r!bg=B7Ft{OMWLmIH!ZZXaBjA<QxAp9
zpLTgNS?14I^sh_K4zkdNd8I2IEPUBtiOhDgkR%<&+sQ&_%O2ygI~Crw^4786K_%Tn
zhK1f1`dCO=rF3Uq1}MEO{4v|v!$MCB!%Ah+@zVL>g1!ve{aR*U3;itgw~#qb$+S?)
zX<s*)(E!Q1@)5;1OySMpU<*Sm-1g&VKZY_L_O&0y{1|S*$+}zk*1}sBMp#&HVS|N{
z7Dic^WMQ&}n)k}D9hEei?QCJJg>e?fTbN+sZE^2dpnJbSttE$Qf5}rfhiX%KqQpAd
zE$;8iv8N9vPO&hRjb>r41u9IlFvG%3;nUf|GZY@hq<oeIy4e;Oh28`A?9}F2+(pL{
z3rj65u<)+LdY@KwIEiWtEqwM#(tDB!b7xX4$s%@H{@ja2^QUm_WkOb2SZ(103(GBh
zXkmqgmEve8%!RH~cRN!)WG8-PVXeekBg*9l+d=DuU!0XhzR|)aW^G}wh0Rjnk1cGG
zC@j@h3)?L0vas92)f}<gE$p!HiG==dL+!M%XGB%&gBZ5hrxw^;ov-KI!>mUo@$Gn4
zYM+Ju>_-b<NZbP!4q5nI_(4Io+hJ+3>|V%j#xI$ag)^eS7CR>7goWe((^f3TNeib~
za*opl32ZtRo7Frk%I7S6CH4B+!g&kdSorI=nyfe#NZ82a7cFF2+_A^+7F-ro3w{d$
z3vLeT*-7k2-GU~Z?c<ST8QtJmmJ0eTm=-KfAcJ$WzU*rvOGOM?2wAvp;fBNtTexK5
zvXmzx5-PJjuUKHi(y=?PT40f`ab)p5sZmMaS@_<<uM)%-xJk<w6aB%$EemW|R)J>o
zBir^>&7UN0{!aCn&d(C`OVph1ND6l?+_OM)VlD2Agqp>gC;egJPYX{hJZ1Yx+fx3w
zg$KePTA=Z;Iu!oHX<7Iq3y;P9doMOSi1^IHa|^F5#Q1GndST%|$%UM8UrNPq-E2Xg
z!;hSP<nkl8-yRFGep`WciSz&eQIN-vynf{OqktbrZq&@Sw|st-%qU0;FX%@hKZ;1i
zDY3DI{q`tk3h(g@&)~$b2FCL_cyT{U`0=41D;Ud<Qhv1dqm3V>{djAMQq7O*etT;=
z-j6bVl=Y*WALae_j$&0mD)>>+kILd*{VaCtfA+Pq61}JF%Xbw&UX!4{L(}LTpEncY
zC9nH3_H{pM_)*`F27bKZM@>I!`;kcR-o%at;^=A#PY`qn=9}ZBJV|&RKdQ}fQn{`l
z-8U-<o0WQgd@xxVyIE=IN3tJH{AlV&&jN9c{Pu2qiXV(ieZ`MdKb|bAKw+89N@Lb*
zv(jLWvzZ@hl5$Hwn)}g0I8$Q^*{(U&_9njRM=L-6+hpfRZ0komKSud6+K={rbYPBt
z^kQCqEbOOr_M?lCPJVmFri7REuIwqU6#VGM{vD-M{Vz7%Z{JpR+ht##y897%65E5J
z;_dB6A3uh1>h@#9NTsjHhcY!k`uWk{kGXy9wZH%gB^f9Rg9HZ)GMynpc(o#DMo#uD
zJGzfD(vJ~-d$XwH9Othq`m=0QpqDttkFkEtVfucIquKZ|)sJa@ydx1O_%Tt^952Z7
zPZBxfP7%puKL*cnG94~knCx^vX81A7kJ)~E|Cu`##F>=LaTeee`IOx(EF`aS^Zc04
z7W3mh8s0c%fu#1XAL}GFCRi;l^L;-Sv9BeF=`8kRspP)IkD?nCI@WZVgi?RcyaCIF
zlWZ@YxzdkSeq8nAnjfpB**E&J$&ZgXf{Y4lSkv9gT4u*S%23wRd$pz`U$YH<^e7g`
zdqtY=W<Ne=L_ZGru|-U4haaE#u~njM6Ws2{t<rI!UG`1mPTIy$`!-|yK;^4V$}T^M
zyZ!i7$R5GZ1S#JuWFK2^q^*3=k3)W(^y8Ey`?(*-I2ir*dik&)-|bP3`0<4h@-O{3
zDx7UXFB|g&t9CD*H*dUU;*I5Lj*D0EUvUijaYpKXR`8r44I@-G^Sp4cA3i_6@#BIY
z-}-S;gf2g_gj9VJPi4B-p2VurxNbi*YK~GoQHkz{5#{9y$9>yFG5zqfBI$}n`*{-I
zy{F<`Q6b<*P=pPO$AyH11tWq~z9i(bA6JCXqA0xXw|DA(q$ESR;kWO5Dg4fl@5K^m
z+c$;$z>bJY&UROR5>CygIpTit<5y040jvz*jvse9&;sZiz&$_ib4m=LWB|YU@jGYN
z015=~2Thmrh96J;_)F4x=*QoFJP_+TBKG;|$btX(@kk{93a0z*JKM)mPJ?{r$8$eo
z1BeUY1!odJas=$ber}HQr5`cE>3t;wlSSnypf_h!K9pAk;dupf2arcdw!t&Id;z<K
z=@_eE0EGf58UW?&uep7c!T~Hfq7(_(^F~5}I3m@GNeaaS(1+OGQUR0>pm_i-0*DWw
zOaKi6Xeh~+4WL2*6$AF{Q7(Y>6*J2Ru%W1ZKVOLo8A{y%>IG0afGPpJ7C_Yi-Uwj+
z-Qk0|YaIZwS^(`1+xMu|18}WZ=w1(?MwI6)n@Q!G0o0OM34#v6+JX#C6p|!ZCt$Bl
zD6AjA`!uI?MVsT?&_^Lp4xmv0sR4UdIlo#l3)#!q6qaqBqDWo1B4`{y6DfAn0GbKm
z0)%R5!b!M|+%kYS185&W2e#w}rBwiJ0?1n~)10fcmeiPdThZs5u3f<1=V8Q-0dxwW
zhsZm#B{wNuSeV?IU8-l^p5vrKSGGC(MHDgwy9bbCt{wE&m-f8TGk~#0<I2u;_6neP
z03_U;CuRoFkGTYpG}qZbfB^xF3*hYl1_n@nxH2?=VF3(cQwPBP*dfwWY?ko@6?)n1
z!vpxfuQECSX8><Wz9Rw{6~Me+w#|%W|4y?>&(G{D1vSU87y*0I-toj<K)oYT#tZh!
zmDzTWy^NX=um|8o!81?dCkHSkfT;nD{wrlJQx-B!aC!hUgv=DA!Ym=P1DGRZ(l50s
zoFBk~0G6>}qwQ<%yX@Qm7SRs(CN30wPmnhNyeKaYfY;)s0sC6NMC805p#1VC<pW89
zi7XfLVE};_vGlGAU^Uw(fM)@G6u_DQE(VYlz}f)TN!8BMwrSYHPX@3tfKBA-$|nJA
z4&Y<9(k^9tz}`UE62LZ5W0!3e9lHTD6mGWfh{|aaI|JAi!0rG(4dAl?_6Fb|lQW;c
z-ktz%p0FQM_jq1+UjR>z)!)xyc(smu$eX!O)ISiwK_+sn{vpA`0emimk|9^>9})gV
zRPtp2M};2?;JA<z0nkyIx9G%E0s9Hs>43dHJtIiMV*@PhIojA%<*NX`4&Xcub(-=`
z0N)BBzYsv<xlR(ggJt4e0jMlL8#4f2%H5nLTBLdd&;l5rBhJI}(<~1p8f^2a_U;xN
zJbkW{TUfpTOg7+XdppYtV1J*u%onl2073zLN3#s@j}?dna5Z2b2Dn6%klp^r&toqO
z=c4<H5dIPOn&?pNx{w=!&biK;91B-#GX2K^{1Cvc0AGH@PaM2&D}PXjcC{;!{C6Qg
z2k=V(`6eiIzY4h%z+EBt1n);fe+yvdcw3Ee$Go(6NB@*G{|exNkcWbQ3o`Vd0R9#J
zC@LxUPyCaBeJyx4bRh9LCx2Q|5EX;?FMyYvTY@MS#H#>ef+!HQr)zdijv!X>No%^2
zGYEQl2N)YfT+qH1q{|gVZsB>NlDt9W6P{o2X3tcr6%2w~1Y1`sg@Py?1W6G=CP>cd
zv3L;WCC3s$lnkO&5Yy*6%LQSMR7wly92+0BXWBABlodkG=hT(^DT8_|Ifp8o*eeB5
zIf#TH96|d+P$h_(LS74kn#<=ptFj6~kW>?_F8I1&4M7IIA!N^7XDx}#Jr*WKSDRG`
zqK;G~F^FG=+M6DAMTct>D%1<&-9buyLDrf)IfzC<Tn*z|nBM__5=6%kI)#uLMB^a7
z3F1N!O@e3|#JnKp2hl8uv>=8D;S8dA5G{ge9YmWTS_W<Np18Pqt03MC+9rKzo1Npi
zxz1~!CAJOP_SP|oPC<LvwhLm>^SbSW=n%w+WA?a?8Jn|n5Pag$hZsbcAi6S?hkt^|
z2%@|2bipHEDLsPd8APujdIxc3uJi6(=kvMFg7ch}=Q-=lbG|vx*<+qFGl+gcdw+FM
z5S(QC(`NF<4G7vRGJ7niD+7Z#<*0auyFft<31Vmv+@KrAwvxMo;m>1F7K`K4pSM^-
z7Cwk~*f=8wj+Dk6%?h#~*D2ig<O7#6A{-mU{RMp)eOwS#7xrb{#|JSXh#5i53}T|B
zJSCd`q#$<WiJL6mx8^w+YibbF#5-M(1+Yt!q0C~3_EP2qF`M!X<=axS&z!Ez4Pt>r
zT)^H8;)@`@3}Rsr?*;J*Z7+!T*~md`l33d^mBm4<3!?roWl0cAgILB^?Ws`y0o#W+
zial(;JP6{4f-8bpDP)x(<*S4ENcftlWUY`5^PKBBj)K@IN$u-jk)x7n@;ZBDo^x{$
zAF~WB>OAKb4yY*K7R2@_-ywCR!Y&#%_Zu^m13~QO$eQP*`!t9>QT~~by@LA$_uE5$
zAk|t|i8~myC&NQQd@h9iFtZTOB_zFUQoM*g8pN?6jtA{WZ>NJeLwnYg6Ku2r15eT_
zgs}Y?dX~}Cm9J<vL7Wp#FN4e~ak)RUQ#&uh15abW4dP-DF(LcLCMyURjUkBNXe6)V
z)gS^v1gV*!xP#Dw@Ng6a?S-39q8mYQWk=@~!YiXGa!b%Jm~9Un&Y>V~1^J>M!a+oW
zxD*7J440{sp}g#=aAk2tW}d5p*95N%-Vppw@O#0Vf<Fjyrm9pp?x!Gb2k|Qh{$Qnf
z=}gX7?8l!ulSt39L+QOEeZ+3M8^k@~yzRMNCiC|o{$P^^@hHfzF5oZ5n&<pGhzCKe
z9&SI?y);81c_?0H$JN<C9D1kh+pWhzJPG1?5I3I1KMmS9z|80w+jFwQClTaa&a})Q
z_kve}AYKOT=O7mj+U}K1n<P0x$QeRx2yr3Q388KXxkAVtLb(vihma>^_hY^g@`sR@
zp#v1<i1Kotvp@(1Lns=;*yr(uLiWBr^O`wIDJ;B*AcfqHE*3)P(Ms_Uy7Z4{QY9q8
zk|C55Qd%%xu#8|?L2B0dtvr{R6+%b|!4X2m5GsXGIfN=9du3WRgijADuZ8ReC!yor
zBju3LY9Uk?LdokwYJ~7cR8mt&t<e9iXF2F<hmaVuhw#z+_S!QkWZ%iqajU#u2=zl~
z5<=6EeTi%kvWI`e5Z>-@kBemSQqo9BN(hRO)Tq2MOEONOLbH%Pxuu2BTq;P;^jn0`
zCWN*jY<wEqGQ{8E#l0Cqs}Q~zrnDC1G+TDQvq2A~T?idQAZZ`Mu#fBq1iU!X%Ny^`
zY}*hThLIdb*ATjea3O?mLr4!HBZR3TOk-g}=n=vg_UU+~X9&GQaE9<!2rIWH_7)rv
zLLVW01v3Tv2~wwj2ptPoB%vD^!XS|kj)o2iVQ7>O6Ea-zz_H5I9}xl%wD8IG$f(XJ
zA)^JG7OJxJRqWW1{U~!BTQ!7t*gm`ja6$;dUCf@eC(zRJ#!U=iNDqZ$mTqzgQ$pZE
zEc@}q^blsSxkC6dgqb1C3gLqgmWMDqggGJmTDDBmoEyTDkUeS73t@f;3#6BM^YAX!
zdf45)Fl66L(7h+*eZfT`EEdAc9D}}o9J`d`Vu;eYZ`|_ziGPn#J`7<+2)kGX)+mHk
ztZxXLLs%WcM<J{YVO<DZyZPhec&2oXl!Q0BJO{F#RbbbLP<*PwlO8N5FWjte!}-pS
zL)b!t3}Jf+TUn7Y75UuuN*Vhg5R1Aagik`)TQP2D$X>$mN#&%eHZt_VMdi~F_Jr&i
zfQ!w~s20KjsVP(D6GlFn+84t9kbS$guV*UppzuS2^nM<~Vc|!jl3yn&M?>Jjvy&m5
z3gMVkfvFu2;e_z)Rc+OS%IOfk4x#;g=a~@BhH!O+vio`LIkDv1yc~qUBYY(1MTctN
z2+26DT$FTfhwyU<Su7r(0*9c6WT_HDID|+DS_qyH#yzjAvlBz`g<y!6k{)_}Q<S&f
zt?v)P63)A$iT-+l5P~86b-aGNEA>O1G>+G&yAj*$QV5qr_#uR1$LsT+>PiUThwPiH
zt07zya-Fk;kQ;&v@7ik2h<H;ZJO&VSw74ZH{3!U7;K`%)nI_xkmk@pn;deHjbkiL%
z#k+#{1n&#F8>F)9{|MnvwoeHEv9uvP2-!z^o`mpF$RokOL-<DsPm=ea@BB9eBF~&Z
z79k0}PlZ1V;kgi=LZ>p5dKtp25MB$TY8WwL<Om~Q82Q7<8AfavdBVsWMqC(2*Hy?B
zM((hEbc6>9xYD6b^4^bTMvHw<9#2zPAdG@xR1Bk1*dDEg!eCH^FbYe=B4HE_qgdEp
z4aEx<7c3!2VM!sS1WSied4fV=nP_O)Fv>-Fc_DZHj&J_9ZQc!Y#8nQXU)i`Sk`W8W
za<YU7qgoh_FlvWUJ&f1Gcq5FOVZ@iO*r8v1jj+9Pq~@k+%B<M9T45xF?VDSBQkw7N
zNeQNt7)DYU^}?thMjdGfo|mf|#+*s^sT;=Sm~9ZYk1KE_vcD+dhDjsd{D(0sjM-r*
zVWfu9Cyc&fG!COl7@foD!uH{QU>I$}_R6$b*uI}n3!`}$oZDLnwhp6Z7;lEbJ)fh!
zlvZKf>S;e)r^2l#@x->$$nC;tA4Uh^9R=C)zpYd{h3)GybKw~Yu2#B+(JhShus!dw
z*D^%2CoA$QwtE<SaQw;VEqa7OWRzZEXocf?hjDM0a`<lil7UJln>UOx603h0!I(Hs
zI3uLk1Hu>>#-K0;hr!*>p<xUQ+Z%mD!uEjuxtB6L3}@KBKJsZk&w-rFAIB;BEjD$!
zGI_pzuRb!2QDKY@<L8qKuS9nFWeOb|#yDmX#yeqqFNk*zGudTfJe;CTV3priCJIgx
zoGds+kU>+!m=@*J!<Zrb!}(4IadHk#Qs%IbVSF9N`7q{%F+Ys$VeFt?h4C&sC5(^5
z_T_0|*nW<)o|YWO`(Z2!V{sU(!}y5y$x4k?mW1u|^EASxlEtzxJ`l1zJ4Zogx+08~
z!dFElTgTgH`PPK7HjH&F$$>=Hojpaun-(_02Fbe2W@Tg8ep<9Cj8~iOheun)X4sEg
zrG=SzyNYq!q-R;4Pr}$qc^C)6*cHZZ>9T!cu-3ej`813@6pmItW8o(%qb4YPS7LA2
zeq&;{^aY2rHcmMh#^+%i4&x9lVVpwOQ4VMJ=Sf}m@_hUF=oevp8ODGL_SNU8q<Jii
z<3dgdo($tu7^j7w6Feh$R&d1`d*sr66%~FH#)U9KQYl)_w_&&>=py^#Z6%AhF>@6<
z2B~4VS+FoX9332eQb%3TD`*HZmXC80pTK4)JRIVebSMmjK?OSUpdb~(Y@)Z7h~Oo`
z%Ys(~85ElDydK64PLh|9^Af%b<NGiQMNl|`^K+D&G*QX)2kEt2f<FrW6vl1Zw(xsl
z+z;cIFn$&99rl_K+8ECfEuC$jw)!n9`CUlK_}mo!!D(co9r{-o4>$xQFWTpSEFOo?
z1m&MF{te?%7>~nv&I#v5?2|B_a_G%e?#tn>XDs2~#H0dwm<a33gPkwJ;LQW=?Ilf%
z^M3>!o_Qno)RaSbPQloSeK;g8f?N^%j_9ZP&fFrWavmXEbTCRjiI_iv0z&FIm4XrM
z9-)vFiJ)i%yXcLeScEH%r1S_fA}Ag~i3mzYP%46E5u`;>I)eBJYDJI`L7523M(~E{
zmlLcW!Rrx}kD!8hD@N=`(oC&V1lq*Z$`L%un@~mYHNmQa5UeIhed;hu4M~Amy+R_r
zH6tj}K8~Sfzp3qrpmqceBS?-QF@mHB>PAp6f;ti89#)C&+P&Ck3lpfE>s5Wmtsg;y
zh<z$x)9yq*<EErh1St_TX5+AS83mOHQX?Q9I^C3^d|XbX<c*zqno@IT9&Zy{(ma9|
z5p<D)(c3bDwh^?8;LQkHMbJ7bZxaFadFF&UlC+PYg9LSoprfS51R0&~)qH2&(^Wc)
zK1<tG)Vc{WUn+EuphpDTh4+l0R|E?pcsGLH5%h^*QUsGD=qsW9BIqAMrf^0~99oGu
zAcBz*jEZ1j1cM?NETJq_qdKWWBKY9f+Cv402@V%@3ce*cLXd|OsL3*q7B9&dNoTC!
zIKj6C-w_-yI6-itAWx*QFjFF!8o{gxW{Yr|;B;wozLh^Cf|(*Ar=va{C37N}D?0Nc
zm@f+KBfgZ)S1_osFoO3Y*cid42;PriQ3PuuSR29O2$n>!I)aa+-<OI(cKDznqby@B
zB%S4g9}2DzTq(FpkcLNPHsi`hWwIM{ok(ax>xIy?SdtCQdUqnp<_JEHV4DQ}JfuF)
zQFJKa*b=e-L$p;e+q7tYJ4ELb!Am9T?2Ld|q+-2KBiKV8!DWt`2=+!06rFt$?2o_|
zfhyhu5gd!)cmxO8ED?Mj!QlwLU^OMQ<<Lq;gs||%7C4Ei5gZi>3&7(&l$?m*Tm)Z5
za592ZEL#L;A~+k3)%kqAw$p0&{C`Yc2b2^=6Gm=9a>fJ6e1M2@WMohgQ85522nt6~
z(IqKCR1`sS4ko}r1{DNBRLohT5iu~cVP+@p?g5G-IsaeRxV-<pdG)@ouCA`GuI{;;
zt?60RkCRT}uef>c!?*jeO#~?X%|47?suH?b%WL~S?2sxp2|3Ij+0FI74||3Gz0e;S
z<N|&W%9ZuA05<t$ANB}l*DTU?q`&5BY4-1e{}8%Q=)tT;nb<zWSrkq}D4D1BA-NCc
zK3JjTKK!{4seQ2b!Py6QANKFVfqn3#w%cK~8}Ra_7zj-Z%?QozLy>@R&7N5P->5nK
zzhrCrTWYD{&_4C~U4nmP-#ARiZYub9AC7*~;)u|rLXQbOF7$-ZlR_y>$<w0k%s!kI
zaBd&+4yuvzqFXKqvzV?Tv#sDf9T6S74D2>gLPtp*f9W`+<5C@^bUdSDf{xNU%ILUB
z$IUv*>L{n<DjiqrD6gY}jygK(>Zqurl8%}>F4s|6M-?6UI%?>ss-v2Y>N+md!Fc8$
zA-v{wY0V=ALO{wYUKAr`RV|^lb4BvWtf!;Cj>bBg=sem24Rt_ABdH1-hDs>Oi<~QT
zG}UpXj%GRKWQIKwgiV_3DA3VCho+;2j+Q#w=xD2>l?b#J<y0G5$R_QC(_Y6l!X$@%
zh5ZtD)N!qj>vePz{&mtX+wx-V4LUmOxKT%!9G}dvmKs8vZ_&|J#{)VZ)N!kh+jR8N
zaj%Zs={g;E>9|`*Hyzz|^w4qV|M};lB?Q#gQ%5fy_vq*?1G!lH|JL58qpywuItJ?K
zCk7Pi=r8i27-?wvAgR4yXlN=abq?0?kdDzh#^`uhM^wjf9V2uM5y_!ChKU%JP(Exz
z{D_W6b&S+8>i_z>s5X>*OvhLqPwE&asvg(zgn)~x2%Zw1PwN<;>xE2OMGXWKbv&zM
ztBwzJOwut~$1)wubxhGQl>$1R*D+1UbRBba%+)bN$4niwbj+r0ttwIpBR2FvsE~A?
zj`=zk=vXMdki&~ThE|321syNycv;6QI$qMTNXKFwOLA5zB@&z=W!qPU^O}yOB18Vg
zD%P&hu~Nr+9dGGarDL^@*LA!hP1fjGo6{CrLi(nTbvY)RU+iv!j*U9D=y+Gh+d4Ms
z*sSB7oaK}ZJLM2U@ScwMg-H#e9#UQ(>i9^<ULC*c_*lm$I(F#TspC@}pXvBo$2U4Y
z*YSmpFLit+22jJrD^$hex6<`C9ous@gx+Hn!7d%Ub^N5`XC2?^_+G~kI)2RALz(|~
z5p}Y-N5?M$F6yD!Z#sV0k<wx7_(R7&9dR8A9l8!fM=Ym@O{gSnNSf4P@-P3K_o(Nh
z*#wRbS4T!iR)?p<*AeJQiww;O4P%o~CyPZo_UkyH<6w@-T3(?f#r_oj3ZCet;~y?|
z1NRv?tm9v9aRy-Eh>oM&W(`y{a7@Q>{$pYw&%g;CCv}|TPOjsWj?+5M=r}9UOSRRd
z3wA`Cd9k|-I*J*}uuBZZA-HG;ixF=A2Fe&HYoMfoOAVAVP}=y<)Qge?p-wh0XP~^H
zG>1%5GAkLVY@mjLng*&EsA`}(l}L}OVNO0YiJW}lgvMNMpq7C;2I}VIDNs9S13Ri`
zpuT|yx!SO6s-jpU1C0%IG;pnfCI+rB(854V15FKFX`mU8eGonD=%T?_8)$BzKzu?a
zyh1Z5(8@q-1MLl5W1x+Jwg%csr(s{A1`4y-!GM;tFw_vrTxakEMci)S4g;MG++g5l
z1GgCHY~V%%T@2hL3aKjWG;9@WAhWB1TMgVMwsCa4SVcZ*Hv`=b+-;zzxUPqRI}O~G
z(?)?%3283__ZaAHppRG>R*_y*$k^*^pr3*H1{N47G|=C`V+O_=7+_$afguKl8W?2Y
zegh9ncMlkNQ2Khvz~J26g+21<r%*ZVjOKbAW?;C1kp@N?7$FTGG4QB>u+>FlMjIF-
z{Lrzi4afVqfhP=1F)-D@lLp2am|$R{fu{^SZD72CXT*$)@}WPemf%?flMGDGO?@a6
z_DJQ^3`{pL+rS*rFvGx11G93LQ;agCY&BN|=1J8>K5G|pf(&dhu+hNt23|0*%)oL3
zFB*8sz{>_+F|f$MVgpO0ZKyERK()MH75-}mmP!{Fm4{%3ft3bcH}HmmRR&fYSYu%A
z|EUUnMYW-}Hw~;au-?F1Ic?N)QHGdeZyVTT;9~=y7}#v!9Rphpd|+UUfp-nOXW;$Z
zFe%I?p(P;=RefmSqyN*--aj?)nSrkjd}H8q178^U(!f_aJ1^>C^H9&X2DTa4ZeT}l
z^<5l7D7=$H;P;f{9lkU0Jtw7t%8U5HP><>M8u-<~kAi;^`m<10?J@9+U_Pl}@izm%
zi+<0*9|raru(%%cBZKQibUJ*5mM~x#>JcTC#|*@|Y4lRRukis0U&TrqFu8*IXngsF
zG{sq-(1Jfz+Xfu!8Ko_)6>+)CJ*73B8ubl+y+ye?Z6IT){1!gI<by9-!iUWJ4IJR%
zGcoLs;h=#(4g3(pk1_mZ;1CyJ423cLZQvj77%|)t!(jvea{r0pni!54IBMYX7;43E
z%)oK(%rTUX;e>&c?DTkkB!<>gv{MGo8aQX*H21D4+8LpP%14OL8@OQL5)rFEMJpD=
z2P?Jp1%rs^H;5FE;jYzMUJPr>MaVz2Oe+z?+DRI(k}+H=xPSQwi)CUc8$;z7s>Dz(
zh8<J13NdhW<zskdiguzwgp|dKF|@zBO(mh9my0xBrB#igS`4EaME+f=u~<EZ5-T-c
zm&K4DLyZ_}N-yMeni?ftJ4ve@L!B6!#&Bf}bz`8ZcOA~BayGBWVhjypXec8>42@z)
ztWs5tW0*cgYa-gnA?9^O45b7-DH@u^a8(Rf$Iv{6R@5NE1wvcK&_cj1<suI+)4G;Z
zqi!Rd+oovkVrVOv%$a*@_i7L!vqKD83^&JcOAH-jxHg6xV(2V}T_?iRs}#~3*NZng
z3GKL2dFjR&Zi;~p=_10MrXA%Xr~9h;`m$`K@8SHeG0^R|#&BB<G=`ndX{c(u#n3&5
zUNPJgLys8llqtAdXySPOT`{mZ4P#*NCE1>$d`<ZXne4Q841GlM-Wcwq+2Rn+V_&K&
z7a2K4t6a6Pe+&aeW?Kvc1w0tT;1~wQaK9+09$pW`KqH^6TKEvni(yO*kHrub`BCK~
zLnOv1HdKrs7Q=7>BZNLGo_T~$6F-j><|v_~g>t;b`bEaZ@Hi!7cs+(EVt6u!88OU^
zVO$JP#V{#`$uT@FswPOQ?nm;+OYs?@pY5$ZF{kZWHr!jAYNrTiYK~7CGN&<YghPAi
z@L4g;j^X(jUWj3isG`h*80N+>FNXQT3AK@OUKR?6;5km&l>fr!#TXXFusDX7q&8eZ
zOJaCAhSkD(C8viCdA%CLYdJkjV_25M%VSuP!z%@>ieYn=LN-~G<J0ChVt6x#Ph$8q
zhIKKlkKvsdw#4w3jO*<fHpQ?(FfH6D4MXR@{BJ&0ZI-G|M-+ZHhOL}F;k+mG{oG8k
z_QM!H5++v%-NNhR7(QO1z-Kvoz7+5|ZJ45cA)aT$uVVOG__X#L0Sx$WMHSu1P}$Bc
zC5D|b?2;&A^zNo55~AM;=X=?67ME51{uIN{F}T9t6T>e85;5$J;nx`ch+$t0zX|hq
zq1@=GkiC%V!Xb{wV8jrUB3C74LIF}<$r#KStQb-;*zCHTs^vz+jfKFG(Q#>eG59eA
zq9h|Uozu_0va)2hO4|e6{JGHLxHFDFx%qSBilcEHhq(F2P$`beas0#0KZZygCF1y(
zn|};vVmQlC9HAYJ;W)Q_-UXz1=4>9Bw+JOT8N(^zpB73^C~!`Sm&9>Ch6{|7bp^%Z
zN?X`4q{W4k7f0BnWE_{qQ7(@1!Y?JX^#8Rg6Gz#&Qbj%g7FWNnR*0jb2!xtLJyqhU
z8b?jxSBs;%fEv=vWx2lc|4(h$>hd^h3A1(_b>gTS$Hg($6Mp?%+Xitoj03_9+lIY2
ziQ|emZi?gPIGXbCw>Ykg<9ZQm7DuZ%TE}r!99PHDJdOexNQ*eOO;$hb@}jDiA{=UK
z6Gz)PI>e#H(JsetpX>A*0kn|b=qUKwoJ?pEt2)JTLmW5eB*R`hOEHw`lEb&e(KU|S
zrFg4Q3g0GxdM=LfjySsIYP$<y)m?Gi9mmsgjE|#d9KGUrFpj}-+!IIdIPT{V#%X=x
zxHpb|aTLaJAN?Tr>+8!$`bzEew+ikk7wI2I=fnAf;&|k6{s7?*UabujVFGT;)Whom
zsp4IO_@Ov|+E)4>jw2e!khoebBRPGC@`uJTOsa-cp@0!WDa?Bx>7!B%*CrR>=s3p2
z@mL&Vg+DHi$K!Y+u5M~~PmP9mu_whC8qZDjDG{TpRjagT;+P=Cm*SWh$Fp(Fi(`Hq
zlj4{h$CNmxve-b~3g2xIA($4&^f*d2j8M;vxcZxiI%mf*lhLwT?a8x*Ic#clj;Nh0
zls4023j{wG$MbP4%<+G!TKEE^B@!u>^U{l)_iBY~!fR0+i{n@l$IEfN!ikVwg4-{v
z#+QqXpBh~n$FexqC-GJi%i~xP$KeG2O<-jltEeY|E(xrTV@(|U;?QYZ9IwamSsb4;
zhU0iMj`!o(8pk>+iR0}!HpTH)92?@8{bs?!(|M#D>D#r%_-i0>>+_1UIga;4;2oh`
zgi_#L&SO3GyCJWR=kq>@<HI;Um0Gs?h{1L`?_(*h?H~C>0K1?t^;6&rPFWng;@BO>
zS8;sJ^%ckVT<_n+@ogM^hiH`C8P&ojY<}nIyd81uWRtfQf7I!`@8bAAjvwRrNtmJJ
z58Oge=Y1H}evV_0@c)S8mz?Fl$FY~zMzvq1imHC&z8cl|8tJb?G&T&C7;(hnD4D>e
z3B=<_a8HiouQ-x%m~r@V1ftN2BNd0u?P83|6=7RP_%3&k4a$w46z}HG`cW+{hLKqm
zM<$L&t7~U-Hn1U^@0a2Mp$CNySy}r~9Dm1gGLBQUlan6Du{e%%|BvH{DC{K@aa81~
zC-n0P>9>yzhrXf#r@1l4agJL(V^ZdVJ)Y%EjZtI25a$Wk%CV6IIH8v$ke7gaX<_k%
z^3{<+9Z6|9Ig}}p_%CKkB~Utns}i_6fiek{O`uK!brUF;K=}l!B~U$q3JFvc`N~2o
z3BBud-n^+%Dx|h52^Do!6aUTHWnxBt0yTtx>kzG`G^r)@a;ar24xzT-&~;Q*FM);$
zAc6WKNlt?VICcs*N}zE9S0vChfhGwxeAfQbKN7aZkpJfH$^@E;&P#@9|K>-UCs2?;
zy9C-N&?14B3A9R}wJ7I%#G6G4^|TRA+XUL=IMjbl0v!^#Ui#8RfPHmLVBpHyY(kT+
zP2f7=bAgc4N$?H1(RG$0Bjlz8ZcboJ0`DepO9EXJcqM^X6Sy^j+Y)#*fsqN^p1>Um
z43;L{66l^lp9JnrpoehoPM{}!E1EfpcL@kR&?|v^q(}o8`LwFH6lv;x(zbsB0|fL<
zpr3$3p_E@L(>E}I2Zb{zfv2Jxulo~tKrs7ak&BeV4<+z$0?`D9Brr_mr*rccz(@#<
z87{>ULfPaI0q1sUqY@aMz_bLWCoqN~k-#$vOpw~K35*j!%O6kRi3FY$`x(;IN#;`t
zJS_qo5d&#F{We6aaXxRNFxkr_0ngH7V&~)prX(;mR~v34teTO)%mfy2HWQe|S`nBh
zea%T=t`xs2H)!wb+MynfeSS{oa|t}3z>5jIB=RqCYNW4s#DR-sebJJarFL-wOL9X{
z_D9u@^jZQ-6a2^s-b`Rw0?WDQC$LJyILs9S!bo17W3nx;H3_U04)N;=j2)t8WL*O5
z6L>p;O;Yt%0vi(8m{YQCYLvp=EC08*hiW&=N_>ZFK~~Cp34T2a$pp*<wkGgF0^cR@
zJqMD&M+tnLz&8neoWLj2>dOQ^P2e+G2wYZF{yA&&+kZiy$Q-rgog%+I`Co|}>A-Ij
z*p|TN(|NlS*e*(TarJTY7bACy*ckC48|qV|q_p#g1b$55j|BFK@J|WsP2krAeokOd
zZgkmQ+Aq0v${r707WplK-$g#OfqInA1dIe?32=@m#=V`)cmfI0L&HW6RRiH=B@iT#
z7Jf>oEz}X}3iX8gLb-2b638Y{l)!%RNf@Z?_kfIx;4c9OWgq@i@IZ0YA<^)+(0_z(
z*`*yx;3&7*BrZ$hSOUirxFo3_Uh$dL32qv_v@;2u6mUxDX`$rr?4zB{;d2R`PvAlV
z#gZz$hxyDD;Daxo4_Q2kyd)w?;AxFl`6NmtQ8I~3bDSTFMM~vx=_JbJaM>iv<?u%v
z3)r?o5*3r6JaMHY$gC{1iqNV;t0l4I3yoFzNz_PUVG_?JQ8S6lleja9yOOAtMC~N5
zO5*Ay>LgK@T_n*ciF!%YPohB*%yS;HLnA#rHLB=#tzi=H?bJH#@7FkqCP`c=GFK$g
zltY`QWZtM7A?^N4ZPI2*ut@$hJGACW6o~L`Nwi3!rQjQrXq80kBsx-+G;fnc`y{SO
zqHPjv#j9Ns)kVV%JG7oVv<}ixOCl`Nyla!VPMFsV?VLm>)+W(YETI`)rbQ`CRb51Y
zoSTxkIf+}6_>hLl0J}=ntwQ@uiw>O@y`2V3i{2reZbG{!(L(?=jH?^Dn_VO^B8f+m
zD%Gu568(}WOyV9XlG8hhK7#Mfaqbh)S7^I0wEhAfOk!{n0|XBg%C>`&xL@!CIZlVs
z8u<@NacB|`=lD?pLxf&2zxFUj)M%CHK3u@w54A^=7@5R)4o750CGmI?ThHZ<mf{$p
z)cjZyV+Ajq7G;sw6H<IKiE%lZr;>P@u`ycXwMxV$Br!FKX(BL@0iTncBw%t9G+>HQ
z=KD=gVuo1Nw?>5eXNt^Rp|gZPTj(62TTTq5%si=`pTq(I)JEp>NxYE6$|Uw}@AzU8
zFD0=oiK3m_q9hh4@fz2K#L|)^UQMEF-N?&HydvRLX-dEDJ0+gCYadLDGD4QhgwC%U
zS)QBO6&!Ef$g-W<D$&1M=o+DGg}yG7UB4mV%_P<dNKK29xgm*-NmTGq(ZkzGY)ay@
z6h2R3a}w_)@x6r~ENn^QT?V{~W+vVv=DSfzTu9=5&Px&>Ff5b!QTQJv@i8?d@p%%T
zB=PTft?DRsUML^Af67Q(s-C@nk;Iote9dWnOcj~P`W3@tN<Y3>P0imV@of^@xC1QJ
zzM}z2Y)@iG5<7)MCSSYWmBYIQu$KHE{*UsN?VpnPIf*?<eEOO8TN1w~Rf_d5LiZ-|
zYZA?P-Zf8-eN6j<-biA95(kpdlQ5F-lL(TCabMk_B{-a3T3j#>(;$b%WD=(EEukr)
zwoukO0$ib95`RyNl9^_wC-buO_JkIE@}Hr*nE8Anzlibq_8?y5A57xUBu*r8l1|v9
zP7nAii9<=`pUvlcD3t#@iGQTwVUFl^?O(x1gdR<*w^S%|EQ#a7A!hF7DdC?<;w<;5
z-r8x|<oQ<qrxhanMdKVd)yfenKe|CHwxOVyiAzirH$lv~$TJZ!QSb1T<xIT0C_iMD
zAnv7=G;yhkQi4khEh98MxUVd6KXqm!o0K<E!9+z9l}uDNQPo5>Q)Qwu$GeKD&c^3O
z$(aYV>LxBTk#B-{b(;w3%49v#8YXI*xZFf7scI;+w$M64DN~nr3a+2yG%%6c)sIyW
zP9vd>g*Fj-g^8vD*jL!yRVJ=BvB<<?6U|K&nCNSwpNSSGTAH}SL^l(yOtdy}lZl&6
zv@y}v#5E>5m}qCBSD6B>nEJ$9dsC$Zm!2LaE%8V}baxBQ1atE`n&`B=;98;A3B6uu
zC!se8?JV?0p<RUjb6*Lz+Fkpyw_6v##Y9&Vx0*QAvtar^%}<^#xUN@^+f3YUf`B<x
zq}@&QpfM)yF>$AfyG-0|qNj<&uQxAYH(&JC)z6>4p|R1S$?}2&)7#VL-X{8(xYxve
zCU|_)9bInNx3?v~$#P}OHUypfT*H*kLKFQ>JZ0i(69Y^PG%>=&BPIr!xZlLXCZZ-D
zF!7*?!6qIuQKCmHrkwFNuYb;T4go3g5EDa93^Os@RKJMTEL{*?Q}Fh8ohg4^vo_?g
z_^64ICdQh0+{7poqfLx4@tBEUzwS(dM@qIjUas|>%Uagfy0AEUTJtANJSp17nP@OQ
z+P!|u0;eUb?)*S09B<+o&a#PFCMKAeXkw~~X(paEG0DVa6H`q5e5^$%-#mF!=SJ;_
zH@4_VIvUldbK*of9nNp8^Fwm{=Gtr%b4)BG-^5%K^GwV)v4A1bS`E2Q3H9qFj|k%j
z$N9~y@%I!wZ{h_LFPeCXV$Z5Px0#a*DDcc-^})4Emls?=J-Woi%O+r<k%d=GylTQ?
z0GoKt#8MMqF``T?GqK#nCKH=YtT3_C#G5A8iO*M=SYu+XiPd85pQW3#7hbPR@eNbu
z42K+k(PO=dw@hr5Dl#`v|L+wDIKWWmZK<LI-!ZYp#3v>`<%;I!Z{kC#dSB>P6Cao=
z2b-<v_OLCd@*@);n+PX}lSTe#CO$Xug|sRxtQAT!R0zHl%JBHc#J8Mf6Tb;(n~B{f
zzB94i#10cXg-Q8c0zx;^)!&==fiq}gkBJ{SOsVCFZn{m)#bbeb!GWXuMfiJ#a&kG*
z9Nq6G{xD&fh?&?YRk~0b&sO2+2;x#q3Qd^&P_l|cUZ!w(NT6-P;Z|v(gay}x$F*kS
zUlYEGfJ;@x(k3z{4wyJ-A}gFC6Z;vBYYONwYGW`kBp4VR>7OS45*Y>$s~AXOkADmE
zAE6A$BPNcTIB(*DiDM>?n>c0Sw22cUa8fA!ABK1DD(%jgI4jI^T<P^&a<Opvgqpdm
z2#Q&_#6odPO)HBJn#i*h;7GZ62})YH)WT&J@-39IP})Kz3zbEtjD@lm$_eJU%3G*l
zp`sKSjhruzh08(pGQ33<3st46x=_YvH36*U5+h{<*0501LLCcrEnJ?fttB9g&)OC^
zI$B=OLVe*kw9r5R?H|r<e7K5C1{kl#7MfUi%EHqYuCUP5!d({bws56|W)`lqaJ_}A
zEL?4&m4((8np<iQ=T%^-R9k`;7Fu$Od$c0vUPRi)LR$+RENB+mS!$<hZ{ZpXZA!FZ
z(gOD=Qp%I^>S*CwOXZCyoh>?spp%6gEZk<{b_<;?+-Tuu3%6M4BE8>~vmq3ozN{rR
zbhU76jvwwwti8iRH&NchLU-wi8Ys*iiM4m;`sHrZ(?Tx`gDpH{;T{XUMb$tHeJtE-
zq0mBq3-^fueJ%8ph73{K%mCm;ZB#ozhDmRb&*d=4!u=K=km7^6VKTrNauj&jLe#=Y
z3!^Lyu`txa2n&x`7$%a`He7n)R8slkz0LQREzU8L|EQ%tKg1<G+QJwMPl*1<EQ}TN
z9+%N^nX?r)H&O=JlNQEVYL8{VTuP+lEj(jkwS_enCRmtgVLk;cJZoW+g&7uRT9|BM
ziiN2brdi-DvuidaWejkn)I8l%cOQaTQk-L9u7%k$<D6>>Kf${|m)0EnJPX`dIOz)+
zhZbJ7@S26^Excf1k%h$;UKHgoi5@OYw&ER!8kSginLEGmS>#I%T;K$}c*j{PtyWlA
zX<?a#<s!zha|5IRm8@dFVmU|6;#v!@TlmPr#}?kO@TP^$7T&S2&cb>N8!fzT;Vlar
za)V`)Fvv+a$*4K}kjZ=W77Oo+&$o*FdxGB=lQ?S}EVq#lEPN;&-VW#iTJ;GRj)iY6
zY_ss0h0j@Q;T!S57Z$#>@Rj(Az0d=UZEnk)efoj3PtVhm?G|=e*lpoE3p+(Q4c;a5
zPW=>MTh2HE<$3*R;U`9K3Vl=f*}@*K#1z`5@Qa1L7LHgr%6YW#n}t6u{AJ;H3x8Pf
zEd(4OpO&1>+h;+yU~s-hs5hiy0&Y2*M;zw_J*FirBn1$g0xY2^3$_3!SL+J!Ebzb<
z3iFjx(ln=IgqE?8rJfr*7FjqTfOtPQf$7n{)1wE4Gkkh<;`HbtZZG^f%tDW68~$zK
zA8t7EQ}tnPL@PD^D%W(4I?cP@8wJO>8Cs~G!euF(u+&qa3l@r{aMHpl3#Todv2dO~
z=VO0Mz0do>)9U}Sb97p<2m#*-<;DMoE=i$y3YVr(Dy9B0&r7Li1tkPW=-3*O@W1tv
z!dZS|ApdtLokFD)DyL8;g|aE|V2W}nluxODaCmhq7O5b(qR<zot5-gGRY|FTg*pt(
z=dlJ=Q|Ng*zgh~dE-hs9{FM4<tw9P6Q>c+b%@i(AsTrvwl%N**i_6!RBH!$*n?k)5
z>Zep<82J?7MT`_0rO+&e?{}eb3QIoHno1LbCQ`g2#qZa2Vv+J!rqplT{H^w?6s}I8
zc}o3%T985u;ZuPBF7XVgmNb(89Z!#z=&iM;g=h0Pme>PYyA;}|&^3iyQ_9KLq|hM+
zErsx>G@cpNQM&G&!nFdfOX2zyItji(D7#>!(E!pLQ|OXXXQ_=Y7Ww^S?Ix=FM7ueK
zTT<%nX<ofYsmB7hrPL#@dxYLD^bVojgmxF&BZWH!+$EIqcMIs5LN5V)rbH&M-csx%
z^xl+u6h>yh6be%qm%>vi^iN?x3Xi2QHidyQ%twR{5_-Q-j{N}v4+<Te!b3U!!vdm0
zhomr6z%Zf1g^mzP4c|?VKAOWL84Ni*I)yPgY)_9qPG_E1kNWxG^a<fVDRiMcAAUN8
z@hQBR!b>SUlfr})W~VSGg^8S+aoV#fOiJOo@+$FcatduC5vF-ePhm<5Tvk(4D*tMl
z&`^f8Gg2U(DRfo}=4y?_xt!uD+H<0Fp5XaH7YJq5LIKxQEhK)P6P;2Sam1vHQdm8r
z^{Xkomcn8NWJ>*CtacmjT5lD+!rn_o_$2n0GLfYzEK6Y%122W;DXd6gT?*?{SjlNx
zSFk#TH7Tr;Kn-JfZ3?eT@lD2z1l1cN8Aca5YJmu6V+wDlutD(uM<8W*y^~TekRHDz
z^38?<f-O>fSLk~wyf1+KtpYv}`k~N|QusJm`-y;0g%15%`yz!eQ~1uo_YS^F;p-Ik
z+W6JRHz|Be52Wx<3fofH&h4U?_M6ZhLiY&WnZhoDp4x6INvRag@1^(?+wwy&LVrxD
zGi`X##LrSytb#f#a!r2Zmy|lKWp4_<rqt;)Ja>YWz5JfSA1UmU9Z65YO~Dgvq!3FX
zo<bspWD2PiY|gt>S)#fB$-J8esokvjV$Df`N38R#jJNX($t1^5AxPm*kxZx1`Apsc
z&VFAl!!RDCWm9<iJ@vt$B93B0biYuZ)6OG$4yG_`z1DHC()?Enhqxy%R!5PLbC^-V
zjn2jf8%I(&n!-pMqih^Y;dlx++qlKX32yr-)U{F1#;Fueb7!_u*2b9>&ZbbpMoAmz
zQaDewHu7v-5H}XHafyx7)1y3Rpwf&e&kd$Oc|s$1X>NTSQN%{$8BrE_U23b{yR?l`
z0*I@e%;OnEbY?jl<!w~6QQbxb8$AD~l8wqXD%xs7IU?^Zb*g+78&%2asa-35abEb^
z`(>i7rj5&O<lCrWqt}cm4@#;uOydcnw5OJhI<`7Zw6+bNEx?PI0yLn$jRrQF+bFQn
z&<1QYwQ;4bjzOp%)f&-w8{a*r9^W;wafPi8^J#LQO6aB9W;U*(g#+{X42?1yPv&23
zW8stP4BLrQ`n9mp(#AD5I#8R9);8MOXlG-`nY;^wv^F+RQON%-QpjUx=m7=*jcLzG
znGvOJnvIS&I@!3v#<e!CBfdvtt9dh`+G4G9m2TJD;9;JRZ_+y3xY5Q<wmP$`i;e61
zY5kZdJX9mtK3qFgtB~h;cC~S<jiEM%*|^Qd?KTF95AU$i&Bi@8dfVu3qlb;VZS=Hp
zr;WR8d~kdqBlEq*8hhmM>8@Vl=fZ>e^!e%;(Jy91``EbGMxl-VHtw_0SJd_sCvcAF
z=ic|IQ#Wb$02>2sta(@Cxv88-4x#>oTBiZp{Wc!3@t}>tHip>hB<hFg(sOxHTP@Ou
z>Hm=$4|yY{8CMQcm@>m{jIi;jt@5im%tvgnmXl&Vp^960MA86lw2d(~=GmBU<1rg!
zZH#AJ*?3$ukE5@O@}Cg=q)>LZd4u+pjo)TOpB75MGoL5em}p~$jhUP>8<T8IwK2^G
zk7(w^O|~(`#>@Rw%+nYy!09p<{ELM#%mZrpG?hnb&0_d*_4U>sS*y*q)e?U3W#!Vj
zHon?0hzFxBpwnzDv$5R9b2gs0vB<_^iMJOR^S!i}xX@1KzbI31;tjPT_=TV)?Apd_
zoYR3SeqOQhs*Ht)2D8ZXG>*KfEoJ=l(e_VLep_K<rH$8Zydh$%Y#c0E$WUL+sbTQ<
z(f*wgU2Dr3s%upj$4=+JDI;CSRXJ06gLAi@`#{4w6y9j#ZQ9RJw6V#?X2y(-4{f|-
zV~ed$ejZh<kX^qk2GASt33y-VR-ruVnF1ftu{;IN#%DG@7W|0}Gdwl!bHN<W7hH)I
zBK#!Em%?FO@xy1|*!Whw^n<NFx3SH}P8k~UcCIxWf1b)C=2&)#z;2=62_^q~TODk!
z1bS&dvZ0NiZI#l`;vU&~ei7PDPRjkw#_wFk4%#{R!^S?gb&%&kw_(`$%f=xaF&l9%
zt5bP_n31qy+i>U&8>S6Q76^?=$&?Y)Ev@b{oEmN{9HVQ4f7yCMeH*jS<Z)+6+sN3+
z@@6+w<DBm2pbE7j*`o-^Il!>&s~sfY#`{aOrcDY-srGN~%r?$0(f+Y<*v7xMy4R3@
zOu!KvM+Ho1UWfeSV%rHDC#CmO;?-|Y<TaTY<^ArAIO?p(oD+Ip=mnwFS<JyDj@p^W
zo>70?MjVuIP|rbq2PGX`>Y$>7N{))LQVz;G>Lx;5S~z8dR{T@_U{TINdAhWhRzc`>
z4=T@8c2LE^<&HXOs;Z-IBGnzWKU5RU+afu<E|X%u&>BK(vageQtYX7j4r-HmpH@fg
zB(pBfIG|2x<8(K0(2V?ET0<J+fG1Eja?sd86R~Y&p>~CXm+KWab<_lLMRT!V>8M|M
zIvrH!>RjdEYEj$VK`RHX9TYfd;owBE!j_H-Z_X4A=8$>tMH>f8dTIQ|A2AJU@8B8-
zg%0{V=-@zeaHm*8V>&vxN$|A}u5)m`qYhcU!9iznPA9RAn(6Qx#UWiB>^hPEeaQ%K
z`t0sz2e&xr>flxfw>!9lw(%1%j#}VNORHaSN?j7^=Ab)0^SZK)`wWlVB<<m#WnXPZ
z$-=uF-0h&JgI*5qljdx7kE4zUyjN`K?Vyj$3kSj~o|DNcy0ov@*3VHv+ht~SfP;Y!
z-gdCb!5|0sJDBfa0rfa|(81FV#yc47;2{T(IC#{-!w#YjMmXw@FvP)7N8P@M(MvO<
z90HFF8aFe_+uU&RIjeZD;SM~~!6*lhJ9xsuXa{4Y_puHh6X(!NGX|(z691awng5)}
zCnZS6$pmqO;_c}v2mH7g?I(T4!2}xMV1|Q<42F@~BnOiz?4ah^{Pp<}4ta{B&M%tg
zfVZBh>~W9^4AS!X>O9z)4rV!ceTz2N!E8sZKK`T1jyR|}()DvQqw}cqUUl;1`kB#%
zoL>hk9ISNkyn`1UyyD<h2QNB!i7_KC<uomFuvoB(LKd|~>LUdNFVk-W)z18ygQX58
zH7Z;#V*H>3cjIM_+LKv(^L@&Js~oI$uwKmga%OZ5Cy}N)>Msoz-(cVk(oW2bzDbA7
zj22Ao$3d-QJfF=cc*{|@@(pb3;I=Q7yDH6!p1n`o?BE>-J0)VbkUH4rU^|zLgZCYN
zix8hkcUy&i=->m1sG8^U=z)(Ia{PySmik-qQ%Bt^xij+y`k7!BKX>qj;4g)KmE(WS
zSr+_lj<aDv9nSR*2Ezbt#<6^!$+;k}aF>G{XGM2&Q#zerQC9sA4u0h1x|r$WCkH<>
z0$n`hVvmDg9JF_Fjf=ewesyrh!C42tIr!bdNe8F6|I_k15uUshbFh!|K1S0W^_0et
zvGYHsAxB!o9VF;;NB#Gmc93yk3bur%gtE$Z;0ShwdP4nNZ6Kg(^}?)xe;oCR6SgXH
zuwOU_a*_uf{F%dl2{<J5Z${J@bt>9nY0KvS3OM56XpVEt!EwPSgz{xHiq*f6$EO*m
zWkh57Ed&1Y>)<?t-^JxFE;uOWqO6N@E-rCV+*QLb<Km{tT9*ced9He(5phw%MM+oP
z7fQJ(?c!3pTAt+aKytOu$RULM<OG%Txj}hK^59v1u&h>{3a%PyMHiJ^)O=d2?5b19
z_!3+dSNXH5&}u?itnT8n9L{%9LvZ1&D649@sO_Suiz{8!aZ%SrLl=;a>bc+<ZuKcI
zpK|;3L|y|in@2oxER9?=adCx<#xBP8&*v95=?y+NqZvH>jsNyGb8(f67A{)4xY|W?
zSDhwT;Hq;J`Mj&mI`s=Rug6d2wQ|wgMOzo`T$KmQwvYDDZzFwC8@<h6!1)C?ejB=j
z3(dv7u1Zkv=;B%zH@fKJs$}x(T=jV21{c>$k(^Ef_?ptkE40q8dTZvza*>-{-0b3R
z7d>6v;-agIZZ5jJxYfmNG-HZ(hl|@?^}J&J3hm{?`8^8;5%A5Li47t>T%2nVxzklo
z8~7>~9~<7~!dj_~t5!&UFS=rt#$N6b(6W4lxHkn>XnmyjM`uOvbJ5pDKj~<oi$N|5
z1+(A&E(Qn=-y$UEeiskqYGdUh5B^{6!!DvO9(6I&Rmr!!hPW6i-Ww)#1pO?4{_G>!
zZjXpR8(dZ}%Ef5G;}}9wZH&t=$YZPskCBHwkGpt6s!9*l`kc>uQZSWJnA)DA+t24c
z?P9zOYI{a%Sv5hxM4`_Log{R!&?!Qvx|k+_^3z>(-q?a*7Q1$_$;D<Db6m`I@j4fa
zi+L{QyIAdFjf({wri)3lqKjO0X4i8rUUc!2i|3_C&I>M%6^jsXd*o;0c@Zp@U|S;e
zWfvPa40=WIt3qEBx>P7*a+!eTLRSb~>0*_D=VwJJux6He%DUFYZ|C!dRxae8_GZq*
z>jdzL*?Jdmx!Azz&Ts#Au6Cn<j*|aRH@@Ryi;EBF2N#ozcYD{xR@ofh6Z-zF==;Ja
zU@aHgN7Uxxh>N2xK5_A>i@-(N#b+))cVW2dTQFa6MY!1IVmD{j#n&#jx!BIt(J%6i
zi*Fe%bs{{-j_09q>2XbQ-R*F(Q<gbbD>o&6qjUBs?K>CWyZGJ3A7b+l9IVK2$^Xc$
z$yM*+{w#ElP_;IB7s%mXU6enXPbQzuaux4$q0{DK>i-2E;mB=-kD%$dn2WfJgo~sL
z+l9j|f~UZ7rMO6O6+EG_yYT2XK1Sv_Y_1E>h3}%+%-TF*j|Wulm=)!(kdO1M$Q5cV
z85e)^daEGoqKKa9rR`_5RE_+}NuSW-fQy5!`W_JZUp=Y)<*HL34+$k8^B)(7xqHY+
zsjbziyw}z!wZ~i>XQv)6@o>V$Nmo5E=X1_eE>3fY=R}NFe-xc@ah6f~u4+Ps=Uki@
z8)lb@kh%VRK1X!!n~udjwR@NJaH)qp!4aV)gz{sxtmRe8Q{PK1>!CFHaxW<3!JHN4
zUnZ<A=b^l(%-|D3(n=mGd$_?vXAf08RQ1rxLu(J!JXEJ15A{7<<{{rht-6ug9%^_h
zb(6P}W3!?)J@ugba-p>-;HmUEa_Z2++0nWl>daQjoULa^8+d5wfr*z*MHn6$3uq+t
z4iRf2nDSS67&1G`^tmfNG!y1{5x7e5)k2#KE%4An09&>6F!I<yf;McvL)$nz+TO#=
zU0PcY?dYy)%92-SN6Ej&LkAB8yfgtFJzOi`I-%DK?Ie^kpUsZm=%EYy3eYmZO&)Ic
z(9K78AGdhwhxlKGcJ*+phub{d?qMN09`2wRt@1F+Lw657JoNE!uL$4ip_hQWJlsu#
z<(K_o%n0(pL*$rmbC1;a7Rp~U*~@(%`g(ZK!(b2nJQR8u=wXnja%RSv=<i{G2=g~P
z3WvYg-tXZ7VUiR6DoyZ^hlf23^Dx}Q7i;T8*}I3KoU9V+<T?t388QUVGoi@CBOV^5
zCnu{U0j5Kc@?vhxXb)pNO!6?<!($%CdKl;7Dd~<W3XgkuLhw)~0<ka2K4QbCJ&gA-
z!NWuk&*W_5ua>L|69b-P7Lcb>9r!ynnNvJW^)SoBY!RO3VY-JIg2VB0j1-&csb8fD
z=6IMZoCO4u1vJmYd=E@-U@b5H9$jNtLxShI3Ou~;VXKE1J-p=Mbq{ZNSma@`hu1tT
z^{_-#z2f0j0WUL7wkSQ}d~sY%n_1>zxrbFAR(s%lt?;l?gek_~VVQ40u*Sn$&XkOc
z#V{?0`37%#SjP-c51XXPdJk`T*g%&uq00k*bEoh|I$vt}i}Pj=?+AWZ=$72vQ7oLh
z_qg<ytC{-1!-pQWdD!mZBM%>Y_?*)%tv>PasfW)PNRp&PO8GGMzVz^whi^Q5E0SLe
z<?MusC>KY;c-!G&r-vUs{N!Pmh<)ebdl~+2DKeQSw4cg<5Ds$&e)h1(!!J@KpZ0Th
z2=;m^(wHH@q?F%0{O;io5Br$@>Z6hm-GkxbUk^t-#5}}31Rl~J64KW4kn)h^7U!vy
z5-JR{t!xjD2zYehr^VQdo9makbH1m-l1%>GpYf3O@Rx@}+`)u-z{5cS`#o@)DE6lm
z8L^CH7CEhdOLzZp|B)~t^Z)&MlmY3XxQ{#^$GQ1S^9vqMdN}3btcP<RP79L_&&aGX
z4}>_(H9F6+%c3BM`8maWT;k)R{mit9_$c9{l#kLrO8UwqUYGhR#Vf=FWqg$NQQk)d
z5h&;XmqEnsg);P2NNILuA60y`^wG*kRUg%Sz(*q=)qPy%qn3}_q9NZ$O&^#0sNsV)
zhX$9=*~zT7IzH<9sPChJ|6kr$H4F88aPwi}1V4D%Q1sA#Zct1uXzZhjkE?uK?c)lm
zYU<<4oD9utCb%|}I;J&eN&`8~eH8d;A!7;WBF|DOj;w0!qm7Rne028F)<-)Znvag6
zp}mi5d~^^@%fko>v$?MIah;FreRPsqW<62W1{1WFfEV-AZuHTGyS<ODK5h~*@^2Op
zM$tLue@gN8T<vW>=x1)`cL;|G8*I|U$DO{qi68cHmyf%BeDC82A3c5aqL`28eca=t
zw~xnsjP=pS$GtutrYaxz`RMCokdOO)^z%{ZqrZ;<zKVHj4oAe8VJ6-{>5+*jOf-7H
z$AeOQ$j4v-6lUHXHxmM`0?x${A47dS>SLsjVLpcYcqAvu_#ctO%uHhwj&xLxGseg0
z9A>6yXvyO~p71fv$8;Z0`WWY9f{%$lp7QaukMTa9@xg71s+eoXxnTS-+F7LK&-$1o
z3a2n;a+*08tmRmy`rurIH@F!-X8M@xW1fi3@-f@T93RZDqs^4(9fWI^kwZM+#{wS<
zMUuIK<j_=xJu~QD@bMyNgeLiT$;ToeYkj=#W3i7VK9>1d?&D=2ulQIh&0qELn#4c%
z8Kz)S6>o*4VJ74XA1g&{wa`^UnHk8fkGH2azVbHhXKKwGKHl`PksKfEe607eL4?CB
zL1uEkCB-mlmSfrEW3zC!2rcL19nKUJj3q&rOMo`K?_(?D!N*rz9X>u3$xnrT#GS#%
zCxSztU(9Cw%*W@sz2yrLpemLA<l`G3JALf(@vV<-KDPVV;e#=w`Vu!X8?%`-3Adfy
zg1-|=Khw#)e)RE^kCYGF$Im|Y_}IrS-N!G!$`RV@<5!7c;@^Dy&Y0om@2kwlaLF)}
zjagn?N`{Y^kA#n;k2nKQGLR|EzmE8q1Mf|y4@<hH)3|B#?+0c*IUJggA|LyGcr@Ne
z#z)piz(_NZ_W#Q?=AD{D{^`Sxyl36dKQK&{=XSuyK_7q97)BbispW3<r;ooF#?1bD
zwCf@6a<iiZ{7dPDTrTmyK92Y}>f;#q(g4*09QSd8yL5m{1Dy16%Ex&h7kr%NF6!f~
zk8@ntOIlo5(xTDM<}a*o-s6D+f_?v}zch*kxFkUF0C@pgFKT|YX`9`Dwm3YjB~!#B
z0d{`U!k-;25vVXYSG)~rsQ{$|R0vQpK$!q#1C$F;K2Vu*Of`SyM9bnYwVeKJ+swq4
z*7*((q+9Qr)38#2$^ohbe4^g6QDLjjH?(QLq<OzY+ph<9t{&jB01X2mKz@K40qO*(
z8=z)@%LCL3P&>f--L1~dj(*&yWvw|;X1_l=zxjv1H@|Xs^8<sc)(cQSKm!iEV*9|j
z`t`0Yy5HEMV#hY)d$ev8pmBg^0j>(rB)}B`ng+O%HecGl|7``D{4M(F6*qL46Xor%
zZ`T%A2WU<Usjx!vyXQowG`nWXjcq9K$pP)$71y?+a{{~*sI8TczuE-2F+i69Z3DPJ
zs|RB30<;fsO@I!8dd$@^z=%0fP4E|I^T@eY@O1&M56~&V4FNg}XUR5gQoD`?{6<eZ
z_34LH+m1H{xH-Us0R{)SB~S;p_aY6@HNdR_ZVT}2oM;cR<n}=Q&T@y)ZbDh?9zg4_
z@!9yDl<BG6CG>8gEcOi4QB)Lb`ij;&K%W5j2I`+R{-b(dfWD&k{s8>~Job~~4+v1m
zPPb^h`Um)9vjY5yc3^-(0fsd$ys|+dDIZ@y5U78>`GoDE01pRP8{qW-(EvjNj0^Bo
zfT5h_KH9JV!vl<8r=DZ;mz@y-Mg<rh;E@221{fKre}`Y56J?4;h4-|P>$NeoB*54J
zj|VtfDZ*B~CRU9+!GWC0e^TTr%vQYk|LoIL9^j<_ivm0oU_yXt0j39-NWTS`9AJvL
zViK7jX`?SwKi=^{U*Xw2=FYJ=RrvfreMW$p0iLIG0`*+<m-BhE1Q5>-)Iaib0?ZXK
zPw0H13xqBdN}1;ZY?%`!cv19lxrP5P6D$s}B*3x&%LBX|;FSQc1z0M!y~;_sJi?S7
zCErW^6V03)7711aSQ%h-fHeVD1!|w<!%52UL)+9G;*h=}Q^~6J0^Vd`U&vc0;lzx@
zw*qVk@X@#0#sHfGY}$jjMQoE$K5u8k8sk+K{T6Zpycghosro9w)&L&__>j$o({hBy
zi}D`__$0uW!esH&0H1Mn)K)*EblRj5d>-Hn;SjUQH*=z-U+3ic%z0aY?Oe8hp~+v^
z!ObVY?OEKB#jXIm`G0W+H)rr&fbRo*o5r>@ehBa*Lo1D^)A%XC&jALeF({2a0e;~&
zl19BW_Ht|Dt{C7{fZqcA9>5O}Fp>l83t$GYxNrjXoFNvd#|wsF{$I~GF5`k(l?af`
z;Xmd?Qvqx)(j+{_*bdDJaBba4uey-~bE2+rF3gdaNq1=J0GR;)u&p%DvJ0+y!ILD>
z?m&P)1N;@>pfLH$>Q@5?9TNPvQ1)JJu6nl6bZ)d4vw#8|%khtJMQ|tCq49x9=ef}?
zb7~)#suKZvNt4q7&IG8MMzu7~1~|ukGL2GcHQ4jq_R}by#sz6oOqk>kog2+d<IHxg
zL>eX2hzNhOXnRR0yQ5g?G|Hq=F^x(hP*!O9G|J`lY?vFZkXE*FM3kp0(#k@s2&IR~
zsh-AVQmmauzJOY3(DO9}Q=n!Vm*?>3bEB+c!#X(*lNjr#(IAbx(zrW~hG`&;>(aPB
zjYerSPNPK{Ez@X{#uaH?mB!U+G|jbbCg94ndffEKPHm5jZbIEibKw`H;Rz?qhisKb
z>ol%OtJihgq|r7FPG38btXDU}M@cl5wzU_|@ww3sX=rJ5q<iP6xw}^QOOB|=M+LjI
zPV|g$?nt9^8aJkKa~ij#!KtS}mo#pYT1FI$e66^v_~h2KdgZhBE{*Sp-X;R9y`4Uv
zr@H8tM)x#&2)~|i$h<R+JLaf&oO`A*YM0h4jeA6(?YwAj0e#ZAH~nAE=Y47PO{0Gr
z1JdZ1(_bjyR#C{YH`=KUm>0cW40~)|^!_xWX$(o@fixaWV{jVNMe>z-(TAkr!#O<+
zfT3v&OJi&rkEhjo8J@-?X*?<dBhqReg&{FAjXUSm9!-PA+gs+TrNn;6q}3bNkBKC~
z6VmWW`Xr4h;#dX)CBGE|#xnqRYESIcUZQ*&6GV6-XDyA%X*`>=iYsMG8dKAlm&W`w
zrU`#~8Z**J%!_h2n3=|(^P;nb&xd}qIM^LpIQ%)noGbKJzWFQb<wYqjl-_B;b7?#;
z_ywW#7@3?7j&xBPi_=(=#>;8EnZ~*_UP<Fs&P5vW9olPYEKOszXj>+ft(FVmEUd_J
zR;IB^Fkc3z0IxMtTr2c-p%kbk&oI}g@m3lirtwi48`9XA#ugEHTPWLZ7O*LeF!0{V
z@wu_Q%Vm<r`;2FC?*~$~HI1tC|LZqgCQar?KThKlsr@vKFB#G@U!Mu*bD>|P)x%qM
z_q7x?(eO=LJwfI4k#0|82e%+@S!wJ{V^<n37h@W`)A%lpKhoHj#`oO(rTN}8e&kw{
zfZQXTpM?G_w1+7Fg~6G#^Vc+fld9i^h7EPWi8PXF7=mL$<BULgou7u$U{eCpPQywg
zl~%88llfFmvy%oLMUJ0FkjCF>{F6pHjf|)|ltwm<qBQoW!7Y&rxsa)WJMF^x(E}oL
zkijP4FQHTwPVP!}k;cDi98KexR2@l!11!lMX{SaFl;naUJ<d6uA3Y&5C(}43;IvSN
zC<V@?aXyVY8Pv_-LK?*~YKzXx;M@7pOEOA;(?MSq&mbY=ieykCgOV9snnBGBF3+G;
z2BkBol0nrB%4GgKzMw(|Wkppvq2+}#Cc~RWMbTVIXypv*h%>86v3drV<&@-0s~W-&
zcU0OFE~rksv|7TiEtD($#QbQz4C-glE`#<NG{~S~1_c?k$N(8M60xf?Xe^+q&?cgv
zI<Ls6jg;U@;Wx{u&74K9tgD67Tqrs9cmzZSt)xgxT66dd)IF%~f@m92(l+zo*%7>n
zTq9!FXVjAHAXpRHQ7E-to56L0ITv(J`vuWXG)Xv}h2EHx>>{AYg6J(7bj=`=RlmjG
zn!#-u{E)$q8Qh-19T_ahU||N`GU%Sc6B#_2L5~dX%;3Qc24`?r26tz0Uj}{Y;S73Z
z)K7kWGPoy$-Wg2hH+tl^RMNo<qGiwI-J8MK1?qq%R`nC%K^gU9ccIY!!l8x%0tO1D
z{QVg`Alg_(VIGt6PzDcY@JI%aW)RI_NCv|)7%npGWoQQBZ@3-H4q}rLQY4?4{f^9F
zR7MSUtaLh>wE`$W<vjN4F%G0&gqYXkIaT8_c#4zAE;4vJ1L}Mx0~$t|@fmfD3^fx^
z$Y5dy&x++dFNi(Tk|`NX&0rRVMSfZaGX-2dMw_0&jEp+wtKI6_q}0$_-aD9+!Q2ey
zWz-pBWX{iE`hqAi$IjxS1<~g+cs_$g87$7=1sTqZLc@0!UdrJ&7DSh1@Nx#9X7E`C
zuVnCQ2AeY2oWW}uEX`nb25UH?t=cj%X=Mh>rAW>S4s-Agy|$_zR|zIqo5AZDyqUo|
zdTFZ`3cMkhRTNk+bfd_>mB9unQtYb*(YHDKLo~J`eJ6u08N8nXTfLjXZwsR2zb9P>
z3!*Gi)z%C?$lycK@UbZTNHD8Tiu@;1WW&!h_#%Vt8SKd5OOBnpO$OUC_&S4cMCY5Q
z^Fra@szojiZO@>NG;C)EyE6D*=<b|;@*D2fzLRlLp7xYp82u@OpE)C3IO5(t8SKkI
zmnOdm-J8L$0)ETs`CY&t8JsLTh-MoZ#4>O)a5IQ=1C&}jgQNg61B;7GmP{DHY?6{H
zGQ->hPm1XbG8y=S1ECByCM0AtD9Yf^4F1YsKNoLQ+gNVUK`zoU+JOu@ozEknPBKXk
zW$<@Kr7@7tupwveR_)&mj%08ygYy|2&EQxD$1^y=HJ&@dj-gKBlhWyF?u|pVQ<?wH
zxjG}vvqGtj24BdaSQeLLReA<F%njhx_H<rx*=?Bike5~27nCfKMae8K&7xEmO{KPU
z7G<)ilSSPu%4Sh6tD>uB7Ucz05n3UOidj?=Tv;epQH&SYQPnJ}3A1_@`2sEz%GwpH
zYS$3VqpOH7&!UzT=k?ELZS5?$9z#9#vS^qEvZ$X`M@uyj+uE#BwM=Gcltp6^CZ=1O
zNG(_W6<Kv~8NroVG|S?uEUwPt7O8EXML`xFve2?<A)U4p+A@n)0$K}gE3}Q!FeI3T
z(q4+}`kL&2=fZW&;#y&L$>O>!uFv8|DR#<9cFy7k!T#wyrn0bY=%P^PO;UAp_P?m>
zD#crKZEwq}lkVt~Zdr8CV(vlAJBS_>&f?W9Ud!UHEbh+Y-Yo9RqGuMpXh4}r@2pC}
zy(g<44OOWYVd6B4oy$b}2*2jSXx}XQWl@+#|E$U~W#%w1el~hQ76Y?*ISUG~)u1e%
z&SHEP_h<1y77u1IIEzQK7@1X1!yd|FXcof+KP)sVbVwF_aexB6hG#KCn8Y0$L>>`L
zz~ZPZMrZL@7Gtycwtqf3V{(!;<lU&p+4}?9xGbK?@t@?t*JwKiD$P%2@xdbXwd-f3
zc0v{tv(R5qRlJ_f;yK|@%3^XBQ?i(v#T+^?s}e`QIhi*ti|K+X%pCO@S<K90R#v^B
zF<a>HC5nHhuSWTK<j~bTXZv{meDN54wNUg^4>de5s$O7xX7N%Mi=?<js+g!r4U4lX
zW0Qav+p@_kjK(q%I)7;v%edn9<I4S5p2dnR8Wo{&5msigDvKQqfGk#Lu_lXmve?2o
z?WL{F;`J=v5Zq#6^i2Vr>kV0~6TCj;^wQqSsxJ|<$wo%|V(slLHVL2sn+32H`R``&
zUKXEc@dX?9)ZV9Wxh+VvY|VmibCCH_7UTM9pHN{IA7@pvG%vm)amT{wXVQv*NzSBS
zO7C9_bHjM;t1L*F+sT~UZ#dUkY|COhmmWXzUMj+5SANl(cvlv?>Dw&+$>KZFK(l`q
z@O>6Pa1)yp{ZZ&oVi=2z>OCUxOBQ>x_%(~)vPfoOO4lRL<^P_=A6e{UU}O>Fq-0@m
zWu3`uHBfy@n{OWR8EGPmW1F-O52&<u<~kBvS){TEvPfrPXW?Yw(FqswA6gjYB)Xz}
zS4s6y(a);<+v#ts_ntCYWV1M!#h+Oe$><JnnzpD^oc&pq>cjWErrodJ^WuZDza%ye
zkzc!z@5_+i;4AI0jD@2<nZ>_?k1%du)s6~1CX~hFS)9n>`<o9smBr~S&SY_x`*0B|
z7vWqM=d&nLgpx(LkVUZ~6fZ(vk&3`eiqug>oPA<WU!(|pTZF0Lm5ZsE<cGE|Ekdax
zR478lB9txyZ7WxV@e8A6C|RV2!^gt3kPn2(EH71eHZI(@PQ66dqG{o;TeK=gs9J>D
zMW|Dx9`jZ!LVgiy6rp+%E-O;sa1Y;Z;2R$`MSyQ%TwbJdo|$FJPsZ0OQV)>%<%RFh
z=hrPl{US6d0$;zXM{rVQAoIm8W`;MUSdmIQXY#PJykudMB3w~~E=9Ph2u*4E|G4@N
zU@404YhYI-2`JzrqZ||yPf<|^QN)A@29m%79&yN7f`CX65R{yAj*?VV#E1%r2{Q^R
zCe)po4YRwGc1hpqyY8?4^;J#XI(_?gzI~^=r@JSDn<Ka-qWVkSAap|nq&JH5CZUal
z(zh^zZ5LG^X-rOAt(nkUh29oH<>eZm+aqWq_zt0W3cV}ut3}W>kMEZJGYHFmk1+3z
zVDVhNxzPKBwh&5z2P1eWg0<}I5j-sUX&J#IQZDAFRRoVlFirTaBWM#rp9uO!@K^+o
zN6;~Xry_VFf_}A%+D6bWf+r&gY8LU~-BVQN_7QZ5s15m4c%F=?>K3rkJ4Mhrf*uj{
zjG#*dMG<tDl6H+?_gr0__G+(nlXjUQ>%&xuVx}m+wCLd%@W@iH2xdnM*!6lxz<-PL
zNS)3+L@+vnF%k5SU_b=JBN!3EKq<)J2!=#3NHG6*%&ln0=ITRf;)ZI&A|R%jJv~?F
zNr90f!<a`gGiAfxT(!ykX{zEp1;$1&PO|!31kX_MBACdwE>^F$S1yD;Kc-Efo)1(z
z>z<8Zl4#Tw%T!;Z4o{9?3bkUMJ~g5~rqJqgYkie!;pZcm9>I(VW=60uf<+O$z#5Av
zlm1df9T}J%!Het&JXThu8Z_<}FzlQN=0-42GBZDd1rgPYpB}2sFDUwLpc3O9jEf`S
z!Lbz)tc+ku1WVbi8maB>%OY4V0eQrrWtA{nXH^8NBkE7k^yRZAg7+^|_jhG?DChbJ
zHbihTf>RM}j9^m)hgj|Gi4kmxU{3^lBkDZtR-xOe$<lVr!-Mnm9TDuLQ@nOZkX)oX
z&Mrxd0(3^Ig!eHs5xfz>n-RRq_}go*MX*1jPC*j;a!RP0uD#B9cmTF!(SZowir_tF
zGJ=CrQS5`PE*_V7JE9JRz7xT_0*Lwcq|syhGPw_=MF>8M;Nu9sis0)A4o7f=kwkFG
zSL(fdG=k3}_&kD7s2F0eJ|&o^bdnFhcJasb?U$-J?Vjqa#FrB1aj_3{eiOmBlBFMM
zH^yk+Mbs<r`v~}@g9hXWaguW)f=;h!(f!&_B1}F1ccb=m1iwU3&OmtszeaGHaYo=p
z@LL4GM-Yo3&Q^}#&j=zB7!h@@^Dn8BzXhKWT5*^5PXzx;et5K#h3!#R9r2^hHzTmv
z=|q#G(ndUTIDM0rh^Qe)e_r?&fh~%W6a&H@$6Tc&a3X3SDHZ#=m8$uC_HkNx7Ak^F
zM4c$ivhOd^YAw;mO5|syQ0LemLq%+tixHGCP{zQ%dHRBRdPxJN41^4P8>kT%Ep6Dq
zr3QGS@Dc;14J?pvc09*HFEZJ|%NpSEQnt?PZb1bDml?RyK!JgZ1{U_!su=1tO(g@B
z4O}i9YVs8V?yVf=85TOLicB>FOKTPJ;UCYd8>nI6Dg##=sA(vx%UY^q;D=CAEd#X;
zb#zYMRx13uhI)_GGmz=3)U3V%7`WCzLrH~RJXO@dP&eRRBb2s|8p0a8*HdM@!N83M
zuCs8xg_{gCVsh=Y$`%R@+-$&NS_W=0(AdCx;&rQm+YF2|@C;)!(8NGH1MLmmVc<>!
zEezamaB&Zsfx8Vflgu|Y)LV6V4~<$;!z<WQRlQ8_F>tSe<^~SW)9+)Y$?bx)e!tIC
z!=wicJZRui1Fa2Z2_G`h(!e8zQig{O@TfR%O=QKkGSs`TT)8m6=a#8n)W*PL2A(kR
zq=CnotB&f3G{val?5%AL@N^GNA`JqMP%)|w209wh4fHeclz~nLiVgHI(Ahv21KkXC
zH^3Kqk%6vK5Dr3E1XlZ13pA$482G3Wf}xB|Zv%Y{^fJ_xfzO$4st<DT)>kqa>Z(y6
z`WqNvV2FXCY^ILt;N(C9gA8?eYA}_M$5AKV%mDy<-!KEi4U97Iw4p5R2m@QohDVAF
z8;E(}AL>UN>ixx2^J5Ivi*tCa0di<v#~YYnV7-A21|}MK*1(GfUNSI=0tTiTc%JDR
zm||cmTY0}$wR;_Qe`a9S*@DNPQqfK~FoQ{m+RT(vyuj|zOJ$Gxb8enqs<$><_$=ny
z`Pv)<a}6vru-w2r1M>|mGO*adww~IAS+y5XA*C$*breg)QqXEGq1qc*5(*QqJfyYZ
zu(@8*3Ii(*tmc4Uberd=K3=4)GQi75W-Zp%QX9J~$#sT$7nC^{Vm-6AHyYSvV7Gxi
z1~wbmV&MA`+D_J+0miV+z;*+CU$e<}NQr1Js?JxhSN58hSpy5SU4}Z{#)rk<%c?eT
zz`$E<ddbGC27h%8mXzAdTH0@@_u%WS&x-{t%Nw+frHbAZ%G(u)+3yZYE59S9e%nyT
z_WM*TVjkXQ<#$zQ{oXh50pm3AAxmfABy&iWGw?OL47-MbBL+S-@R^}b;NCo6KT4VQ
zTB%EmJ~42N#)>!94^+<2rE<P7@Fly|*#cG+tCW*Ljs}m@8g$aW68h5BMc>k1ZPb1+
za6%OIJJym|u!Ws8Ru?-dyW6dm!#^5$XukeHPwkX}pII%eLj%9i_%kO4erKce_gp=d
z89dD*2O$CmpH@X}PWZ#XpR@o=lyC8T{cq|U5B!R*{$t=@smv2Wh%FwGPD*uReVX)|
z*Nr+HGZ3fRn;2~(VZb(UgNYkWBx#3fNKIUBB5lB7@lAwG)jM1R=h+1ecm{j}0Xt4m
zaF+d@R#DPrv{?ZhR8$BR9bc?ol(ovKNy-;i!9@clOq4X$6o99*$>jTmRw!)Z5)<W3
zR4|nhE^UHyqDxJsMfIxIA}wR0tT@XFCFjssb(Z-uQ|VqMQ%&M3n%Fv^n1EVJ<`pKY
zn5bvsDic*rR5MZ2L@iSd)u<0wnkX=pj#W2N!&HWydP2&Rn52Aao2X-|UeDMVCpmQ`
z72eozwTb#Bt}$_~<Q685EYlj0BeqK!sLraBHZ*aaiR(?QGz(a$VSWLZGI*H}mH8$U
zjZCyR(ZNI^qcw4#i54bqG11tBW}>NyTTR?1@i$>kdKWW>3G?;aO_0*&++pHQQw_8E
z`o4>$>#XrvHebKnL^D&_>eF4cdra(`uitB;xvA{=;raUU$vUUNzs}cbbM9wVn0VAg
zYvzQ<JWV`oqNU)6Of|*+b(_XBp^uno#Y6|H2_vV6Gzd4(*V>qP%tTv>_Hh$Wn8?i6
zpEQ-i^8#C@P76%RSIlR<w00&)IW+BP;wcloO!PL<$wX%pT}^aj>5Kx#-^E0ci3VHM
z=z<YarMsJ|<FnvB#91s_L2Y3r^fXn!=3A_fiM}QVn;2q3H_^|;022eHLD~2Fn|S(c
z!Nqr#A?2HbtvN{Al;^cs14Bh@go%+RhEY|zYQx31^ink>9wnt_yR)_{Oj5^S$FN#V
z95wNYiE$>LF|pai78BzsX=1*K1tun%c-F*B6EB#UWa2sI)5LTWlT9@~nPOrpt8S3?
zZLOkdY@MwtSD%embxX_=%`ibz&sQFIOfl(MCT5$MYhs>>7frmx3OChzA=Fh>Z?y&b
zEemu42I;U@nG{Y!RppylWMZ|6H6|9DSYl$CiRGe8trqCKQe!DQ#RB!lTw$uQ&?-|6
z?RXQ^N)!9fh8P3SJJWuyHL=db1``|EarSBJr5$PE^}gz*z!yDVH=C%j-8Bx+I4a(1
zVw;IKOuT7gyNMkvAQLsQll5$3w~0Mcy`1>$GQoSUcsQM#$Jn{{nrhz7;%^<JUA{+q
z)x>MeiHX-m0d6=OI$SPHGs2M-XE#iX7Vm(Gw@kce;(aC|vx9>y1#6EZf6<M1*$UgW
z?PFCnat6mb|G>nDv>sHy1^OZB`(%D>;xM~m5A6uEw^N%{tZ~N2Mwz%k=W^3A6Q7!}
zX%bm>6Q7&-&BX7_m5DD+{AA*!iQ^`|GVvV^5p&W``&ufKhPt3`(Kj?Qb&I~0?zwV-
z{)35K3-lABbw_(>pDa)p;QT1g?>1?tSP8Vl?X_Pd|1^NbGT~(x_|?Q|T7x=8Y&+6F
zO#Er$UlS1%ed-m}bqoG7aYodY1LnWQLUPdl4}<j8sMUrE(?pz+o3LnGdTYFlC2HcY
z1^Tcp8p|G&8Ytgh^=>t?l?%sGH2x+^SSV@1p-C}uPWroN!e@Usku|}4OK8ctgc6vD
zjZoKplp3Qt>{$~-%PRAJZh?N@#0Akk4xFf>7paN^)ab61#b3jtf`!X0ge_cRp^SyH
z7D`*74zO}AwSciow|QU66Ag;WStxI*Q6fz=jRP$_*RrZE)GJz`Zt#s?$x`NGY`O5H
zx70~+w#DTZuCP$WQty<ir0uj?f~#4$(n5iy>{4|LHHBG2D5t|@QvTx0^~2rk)V5H^
zLR|~>EL>%&%N(w;)a`RuGjAf#mAd*&qMg!z-Z0R>0xdr^{MuY>?X-rLnncj+1`9Wm
z*-o1v^d_N=gjOscF0^p7g<C8%wlGAPw_3Q(LMIEIE!=LQiG`LH9<gwTg*z>@uyDVH
zyDVrHnpwEVLQ@NOTWGXU?_MU%`&($GIT!o618<xF?;2`u;XX?p%In2fXHV7HmzNDw
z{T{IJpoNDmrFhTJ(;kvKWF@mE`KI8lKCEg!t+?86;c*L(T4-&d4U6AV4F#!?97_{F
zVc|&&?JTrfs1`}uiU616INISQMeQwguv8!Ku~6@5sYS@AgqEpUMBIfroOp9@3w<mU
zS?Fq^n}zNcdRXXbVa!6E!>VEn^A_st(X`|@l~<G5UKX}XTIBS#ptE&0Y6C6wv(VpC
zH+4|>&_bQ}AXV+D4X{vgv9hs)EDW~P@PmT~QmV~ROAXtGSr~3%1na!7Hp;@&7Die)
zSFMO|bCzy2vtePJ)Dq1jn|Q29(g0Ha84Ker^@^OlR1GayBDV5GX~btOOcL;%g~=AC
zSeR;ICN;LBHqBCF;2Ba;&kLqSoo=b+4%)Ze?o*1rAi}dOOe+zl^Cb&&C=<ozDCV+G
zs3B2wj$*!r1=Q83Qm};<7O@{iacLBbEiAF{orUi$EVZ!A!d460m?f_KTUcjdy@eIx
zWaKL?tjgonlI|Mnvw-0xizu)`d`~XaH&d6`A35D)cW9?903+ODfnKX$(@3{l*kR#a
z3-4Lj$@aCd*TOyvyCeoG+pdAyZozwms^whvSvI1Dx7ZijX|J)#c4^}(hF=%3-%@si
zYsGI+Lkf!cyeZ&-Xe^x!a!>-kEfKyWW`xZ5S?v*gNoG6k0}F=)d}!fwOO5Wx{D@XX
zn1_Y>3-u!wNRJBr#KJKFp9&@aGf@Kq2LHlRYmWrSEqrC+YpD$?=eGjB5v^doah^i^
z@B^6^TnnCsADLEL?Kca*Q&(#g{Uq_6l(L*+PqFZer3Q6>e64(c6`9jQ89B#te^@wU
z;cp9nN<4oF<@Gx>P5)SGpdMqk=c(z{zv7HoFa*%c6kyRVS)hra@{>s#mvSYfJJ=SI
z0#ZWho90^}kJ)^_g@CUH(YK6+tkisos9HlfYk|v;7ukI*<>YhT!i7AhO`sj%i-u~$
z)+rT5D2g!Sk+~jUTbD$YIpzD8X0uEbWhIGPQIw0Kd=xdsSwSe<t{{rbqNo@}r6?*>
zprg`|%cIH&SB<J$L9P&7MJSCP`OHtXD6WiR-sJ9l-l(hg3|Eh$OOaMXqUD>q(jxVr
z2tKui!%kf{ih5C8CC(e7xG{>W1=kmfD3<TlZdjx@U=0YqR%k<^*9pB|sP>9R$(y2R
z6y?+@#BTwGQQREGgHb#b#Vw4DA1I@^JBr3p+#1DgQQRKIox-PA69HT1)h50}Ft0Nu
zzDuwc1urCI#WsuLo+w%f^IoCNqpF{Bw>IBy_eIf=dbnGo!q9nt6c32Zma`$sJRFse
zwozrBT1N3m6s@9oG>W!SjQ7=gd+Vq&*N;WjWV1~awYnEj!yk|02?_WlV_T#KHsAXp
z3iD|v{MseM9VE_<QFL3RGxDdz$?K%LL{SvQOHs^;qAPu)7!$?VD7r^c9L2yW21U^$
zik?yQk77U+{P4<~QF}$vJBmJ0w42tYUlh}NYXp78sYjIt(n%)AKjRIxZouU@jy4BJ
zF+^&9R1`y_7#79IDEgia)r_h&y5Ul^5klE#S<Ls(E6c_=%hOSej-vkaUHH%tjf>)$
zC?-cSh1C*OA8sZ@F)^xUluV1IBYl>&+D@A!l#x6aRjYFZQ=_Q;C8kF)L%gO%)wtz(
zHu`{Kf|<g6F^W?qi(bfuZKur=Fgpsh8c*Bk6tM5ir49>!9qoS<3!+#m&V{5h{#g_S
z2eg!5992_7f+ga$`C@1pwK0knQLK!DpSk(zZB-Pj*-cpai*y>^HBqp}2v{Ogc6svG
zN3kJ_jZ$95cI0g6eVzqqr)`O1D_=J;l!;+m6x*XX7R9HG?Vz?Jigy@irJ|jz)hKpF
zu{(<WQM?|-9ya<SeQy-|*vezI@GOn=l_<WdSoB&HuL`rz9Buzst+y=F@uK!d6mLfH
zRul)LI3T{1Kk<V0-Xfjg?K~$T&J&CDccXYOiua@VfI1V!5w=bgABxz=QG66d>BTCb
zwphP<v98V1N>?bNlh4s8KB3l$Z+oFL7wexz@p%;gMDZ`%D~d0p_&JJSqBzbBGnGWa
zk5PQhCYJb5M6qMB{;l92gnlRVd!Y+v*FGZAGOfQB>p!vEvbn{pV2R4o*~R)b2en_L
zI32~G>?Sl3OZ4AF;CEK$T<yad+8?wSBHUHznJE6IJ|9&1AHPIrg)dp6N1`yINJWvB
zux1o-0ag@IHirZ}GDnLs|AG@y*ij@!hVi7A=syeJq5ecsB8HMNcv1LKoMi!LXf>AV
z0gb~_Jwto7ROOscR)Y6hs-Me)^HE$7d@;|VSg9C7F@$5dB&J$_yaZpcR4*;go#L!C
zTSZtlhH^0!#85qk@-bA1fg5bDh~csrD#p}aph`k>dy44Ar?SXgE`085sv=JEtH#tW
zqiQi+DP9cA-7hu7w{{G5VyGEIEph%Ywz@I3XX)w~>I=V~(5qtq?Q~+C$jdhnz}+>B
zwqXp{#qeel2a>oxh8x&5Y?QTeV+=RN@J$Tg#?UB+!WeeNa96{kn`5{ohT<4{#Lzf~
zTVr@IhKFLfEr#1E5Q7#|m;5w|;Z8coYI~9ecf`Oyt@C0W{z84wNi>b&?ik!JYTp+F
z|LfX}QC%HwxK3NQLAxi0dt)GI&X}ht4*y}@LgLx<oOXW<55(}{Qk@TP?_uN*$Iv>4
zHZinh5;3$AN&cUmUXRAq<wCanoBlE3KOVyqG5q+M%E^<$p;-5r`fGe!q3!6qRBs<c
z2LT<0J|&d=PBC=O<1PY<gmx9$jU`&DQ;fe#=dZ(A+dZX{m&ed6hTbvsVG=P+h+$$3
zdJO$y7!||QG4zjNKnz1;7)EuHAcKW6hCx(g`BNeB5MfdWh6`XrkC5i37oU-NJX(Cm
z3mp@~SOMc=ct!vv88AoP0`+IZXJeQY!;3Mz6vJ~dOpakD^-YAQ#PEC!(_@$#!?b+-
zDlPd#>kQ%K@c%S$mIRzF8k>`xL$MeZ3x8e=^J7>j0T;yn`@t^vr{%J=NMv#mGVGEV
zmQp<^FBztyQfx&GD`Qv{!|E8e(tyXXCZ@LUu8(0u3_(9_Eo*g-zAlFDvTIjMmfk1=
z-21wTdYcVxj^V^njn5VV49jPG3_B#x#Cx)#of3p8z8w2+Pu=dAI`p?EhP^TDi{X_R
zK8fL246nx2jnnUmF9lwUVSfy-v*)ry#qds^e;|gpVmKI6cdAp2&)e)Wf=_;^obTo(
zDe%7F4`Mh(RTq3X@B5K}k7Kx4wTPjP<oQQqc)X0_e46Kc5yNMKKhJZR+?Rrn3;jyy
z*Et$ezb5}KhVNq-9><8d>b5_`@Qbtv@d;|U^p~H6p3L{1Q!)IU$NW3euQ8mC;kOum
zXWwTear_a(pE2;-pF86CD~2;MTpq_2ar{lC+FY1rg~afWU^@SeArgZjPBVrSZRs-I
z5@%FsOlVvv<r6X3f|GfUb*O3Cky<(iCk6sOt^h9vUqB!<llP_kxqR45<2Wz)LY{Lm
zh7xfVPf4K!rQ!$)4(B<S2q+y#E@|ef3^{RCIzHtDl#io=fXnjyiUKOdQ8~|H5vs&d
zHIAF(xFwEiaa<Y4RpQH~zk)dG#?|#o)#GYOmQM`<HRGrypmv^LC$6T76rgZD2~u;J
zesvu6<3L;;*yMA)fCh0~Bj8%04fDR&#s9n2ijp_Paij2W652>;VP2BQBpb(ZD`S2}
zYa;ZvIBpkE;b+Cn{opc(d3#mob0IB`rg3zLqhlO*$I&c~)^W6nBQjLGCyo|z+#koi
zaWs!Bow+X#yINR*VcMUwYd;XjgTj9_j)&sluk>2R@d#r(A9`4v(?)5rynHK>B!^)e
zFH=WNACqi98OP&sbxf7d69NXD3$=}_>+)FMb|TYW=&Ey}r{d@o$ACDV9;<bZqe~pU
z;^-YmQ5;>V+h3w5YgmMP#KCK?y2nu*$JtV?A6}++TBZ+LrnlW$IO%C^#0bqBt**lB
z6G#6zwjM{{IC!C!9!I}8c%F21!=mxabb|C?jrRu*jAKw7gC$)iJv5FXdEBaGn4Dp8
zJh!coU}PMl;y4<|ClrWdbQ~|mF(-~Oag1f5;&?WWadCC>dc07AX9UbyrccOo)-BT~
zF~T@rkd8k&jwu3WQ2nTcQ?%z<&r`H%Y-_&3D}+huoX#33EGC#Kd@}c@3T8<_-nlnB
zju+z~;B|cT;;$9w#<3)hrE&G!$9Zwg7eKrqj)j6330*Ao)n)2$jLYI!9>?o(yb)K+
zP%GkC7svWIR>rX^t|lz2<5&|{Gn%QD!@1+VYpF#m)x2^;92?n>I%|8`K-&s8#j%HF
zxft3^C!2uPHBzfC_dpVCi(`9SS$IA>;@FwTFALZubhps!DugLdv3<-y92+*Nk6EwA
z@mgF>%{V9Gvp=q8NjGH*-i)iCq`Vi$`*9qI<E=Oj#_@I>m(8wC{yTB?Gn98lCdc9L
zQON&5bmK6);nLc?d+ksh{O84oaePE=8LfS^O#fIo#7E-z=3Iym@3=b_$ER^jO5nK!
zK8xe?I37-*WddKs@nsyhC2)H}EwixFj>qv;9A7hR9M>msLqfI4x9o$|2dVt;;`m+w
z`9H*QB90%a`4_tU6vt@+Cxw!8O2E%?{377j|M8dUzs2!8H6+hD6UU!<{MY{x{#)=r
zar`SFwoGTVOxKhQl#skxaYV%#izCiHOS2%(Y#d1ep3sy~hD{4_;&26A6kQ_Uk0TIH
zCND{Wvw3`u_FwP?p%?S~T=0^TlTrzU5(p=7Ndl!4sF^@5;a{3S<peHIpiBZ~g;P%G
zWeJoQz|<=wz|s*^%yTLwP-VH|@VP>m)yNT0H7~<Z^u02Hf&{83z#w$i$on=}uGdbW
zjySJLpss-WdEa^oT$RUHCqQ9_g>V|=`Hbq?JZ_l4b%JxLupw?t;1=QBlt3c^g$bnz
zHw$he5z^UMoQ(Wd0d1D+O%kd%(V}Vz+#&c*p?3+*jeKZ<n<j8~LRsTxLhlhu=e+`&
z3%yThiv;e^`#zAsgMuFt%7sJ*c_e{W33N)Ja{>o1h8|7e@dTbopmjq1RkICiZ?yK9
zP=dEFhPe9lWCCpyXqUi4XVq8l_6hL106rZOcr+9y=$Pj`C7}Cqy-NZ`3G_*zZvtHt
z=$1gwgu3*PPxl0h1y8ydqO-^U!M*Y_y%XFSqI~rP`Xw+df#C`CPhda-gA*8%z(6KF
zOx?K19zBT4GeH}*TqhkWF|a<lOggGWcvY?Nhy+F^FgAg435=3j9nA>&Z`lNRE#!>l
zI_VuX!ebIxC72!mnFM&t>jb7UP8%<D_i}w=0?#IJc)8B^)Cr-J6PS{~vILeVFg1Z`
zlpLhJn85Q1n9KE<RMBDD^aN(G>PBmw#%iRvz3B@Hd1VjNW+gCNWO|+t@%8;u0&^1T
zLWa4_WC9C`^R+rZff{={@!wU8M1V4j1yn8>CUc44r3pkPsrwdIuv`gzPX%L%5?GzU
zaW+AX@R|g8f$cj9yqmz<1lA?6UN~g#OkjiHjd{){0h<%plILtqU|Sw<PhdwLpIxrM
z%<gkZ>s`XxEp$%;dj;%E;Pt%ZD+#=s$FB+4p8$h118*eorf?2WC-X9I2{>OpOo6xa
z_&sVeH*+TNiGcSL_#lBp3AJJ7!vsF28J9x`A0^bDE;0{`*b$-J>c+6g5^AYaeGW_D
zQ@#Qc_*^)bc2oCeS6HEUdRhCDQ4Lhv(Yf>Cs|3DI;2TzjTvEXg<?KY?Ch#3?+6Zl1
zi7@Gj1b(E&vz1=`l)y>0MFIx9*tyWD1b#{2*93lMa}3h>@Tw4wwN5ASZ(b9A6YzTi
ze+c+f=wEr?GYR}H_@6w73d4tym<d=3#96uocJC~V3T?hZCypg>jQ~4=WCG~~9Pv#_
z5DHMN)e7BBz)Rp_0wrva<BLq!6?#D3TcPvGB#_PHvk9CNd|v2<JikZ%ri`$pt@1!z
zN&v&s8Mfs|V7B}MOz@>b$F9(4t<cNaC~xCU8wYGuuyL7<X*Qm>QPD;v8_jIoW23T-
z%WX8Yah;7TY*evP+eRH5Rc*Co#HWUhYK)=ajw^-oY+ZqX>NYm5(8;GvO&hiH@|$`U
z*0t3VQ+*o{P|wCywp#q*I?~m7&_KK>cCC$T1m_M_kwb93jT>yWh;%pCe{9@j;|?2l
z+Gr$_O!Q^}h4z1EuWqr?*v75Gyxm3<8$70Wn~gt;o8}@UWvGqZ`IFCQQyU*%TBO-(
zb&Dyo6#G}`xmo|cY%Cl7Z1lHrpN$q0q@B?FZM3%0#>N9S9u&?)HXgCjN|Jt9XiHnI
zmZS>QF<8<^#YxU5D|Dvvn2oklw8usG387Esv%w&gVK&;^=)k(N@sy2jHoDvB#8$S!
z)sn6@SP-rubg{uzf+8Dz_G{ntQzzyamYiZ6J#6%{)j9(o^7-_%(SAd12J9`(*GDq{
z?@_I<4N_ew#Rk|IXk)DSGPXfBhTDi=86Iq7h>fAPIvq?gQf76S4W>&l!p2A`$S515
z*<Nx|@@X5I9G0YW47IDD_GC6Rj*^>7JY!?LjR`g;N~kF|p0zPaaPEZNbAl(^YLSEi
znZ#c!^r^xm=7GxTHfGq^XX6zcGs(BH*2X#;vuw<^vDn5E8!y^;iB)Z5o{c%IlSai3
zdu4aEGS4q%^BGn?SS+-$KrjsycXuqZ)%Jsy%aqJg8_R60va#C6a>~f=)|J$*i8rqh
zI(VzvS;SplxnchrR$Uiu*VHadWxb6JHg?$9$@XGrv9XQonZIGPjV;6%L);0^3~aT*
zj{=N2_oZXI4MsJjt9IE+{bed!Cd5-<yCr+OY;X?@E$|-6$zB`pgw>a<cS?s}70&)#
z4*9V|z#Vcl=5?x8p5Nwp?YC?kv=Omk*m#>U*!arE*EZg@@t%#t%nX~}#s@Y&X0^!G
zMx=ZWiSt9DAKCw{8s$b%M{Rs!<8vEd*f=Hvl>byfZlUQj`@a>ZFNMi@&~aA6wnF;m
zV)(|!w>EyW@w<)hY<zFyCmSbi{2=l_3Oyl|G3VlBz*9DUmY7f5I1~#1A_BkW^Oh5%
zd@hMUY@D(2w~aqV>@T4?FUtJ$f1Lm3b8FhLY>Z3dnIxh%Vzfd@+?hn&M#9GJNwqWF
zwvnW<5}cy#wNW?8pR>bZS7mc2Q7#G3R$u4O**I^*w-K;8+G-i0XKiE!kaPHah?`y*
zCpGGVFvCe)v{537l1Y%M9s#9<QnG8YVqTI&>7@FF89yCfn#2#!>U_!wpth7xqCyf^
zBvB=a%aZC3Ruz*fKm6>=zsy%ks*hHcg@1WcWsK2s6MoesswGh)iJCcP5(POR=ZUHd
zrtqFwwQD8SsGxQdb&~&`P~$&kxMPaU9WT_rDv7I;;D1=IOQL=f5aDZ+Xdp50=S0^e
zRc{LKs$VNw@Nco!Fc%y5z4HR?w%YYc<W92On8ZyIq)`&LN?{8b+e-cBByLHnosBF$
z<r_;wuxNDNCSv?_-b9$}&MewpNoYwlV|kNu5nK{?3*aqqT=d|&#I;SD-kU`8BpyrR
z@g(j`g8UXq+@HkTxtrov>JKFGa1t#g;DbUR68g#QO&<}!cpeqd>i_t*7TiYYXHA+u
zk;Id%nIw8A(N>t9lIWa7yCm9+vqKV33Fw#)!e|+s&Mrw53A0BMU6bgRM6oz2&^-x0
z1ViM)y8k(Q3bXOL+I^DfD|l2AdJ_GT7?Q-$B>E>YK=^}`7?^(sC2>mPVT20=kTWca
z;UYOw=!hi9{GR~9(TgF{r;`|+#2E1!n*<*+`S2#a@kvZbVrvrHl9-spv(!)i@gWIb
z+x|yEcv2G2B{4aPDM`#0X5$0e)Fh^{p_3qfe5Fo0J*j?R@j?<ak~ng0(W+~UW+p*O
zJWIUjtFP2wOyZ>^<|Hv!qB?oLVBAXmrIq@|mHNCSNau?%!NMdKC9yb(CDb%7-6XLz
zsTMs}GTJ1TQJs=lA)F&sYmxuvN}ZI?>LiW{UX#RH5nh+XdXfAkFJm)BiIy>MN@8<T
zZKdP0MHHT3dlEYsc98aZ5<A%`lGvNXKH=;Vx|`}D_u%be>z@np;T3tWB=Kqz`$d3Z
zUlTyFQmgdbc$oMNVN#x)w~{!R#I+6@I(R#Ycc|DYJdnb>NxYZD-%0$F#QRBnK<kmj
zi6jms@gcLC#OFzTl*GqL98KbrBo4FAsi+%jbG*S9I$!ZsR;ha@awDi?NqkC!vq}wk
zet%1iOuk5}F(IFC1bmsq@g#bbDf&vB4E{Ac_z3OCQ}~u&0A<ATT@v5tF^3sHCh=1e
zza;T1bGWPUq|l#}Y6x_SO<bXvOn#%G^R#&7zAODE_;(Rww0}s1e+vCe=oz65{xAE{
zRISw8+T|%ksH;hsNmxlvzQUmtqDjPPHx6p&Y5$W*Byo<_xJv&rUhwv8EfFuUX@tub
zC55JFGz2(8U7_^#1o%P&p_wGIdEc`F_!XOy%~$E(9PI+_e-b6wIxlD?Q{adDZmaZC
zDNLNBk<)#y7EWQpD*ciamaWoDr_@K`OH+7wx>iPTS)pW>OQC!oR}gTS(26Nk5>Q!a
zE4zTgSENuSh2rU2)fA9IgA}TzaAgW_J+Bp{P){VQr%)q>nkm$hT-8aTpmdn^P&<W@
z@&TH8V^nohIIv26<Gw0|t5f(X946lIyjDL2(jQmp*Q9W53QbeEJB5ZRT$e(-gIc2$
zt`~5FP;$CeDk8lxg`0#ETcy*<r%;?Xr*Mma#zJouO5fWA+%B|93U>&&Q|MhnHKCLY
zt=5|fZXxu!gW5d;?oFY2UgkalUmnyRs2=7fjR#YBD23<Kn4VTYad<d|b19rpp=An>
zq|hpbM^jkOVy4hKrRKITq%bRmHYq%o!s97Ck-{^n|JMJX6woDwwgTD-ZJ+n;kU~en
zPYLZLw6oAktJMdEq7=HO&`mhQg?4B23FskoPzpT-^h%+33Vj6k6UyLy1?VZ*-&CZt
ze+mPH)4g_>&Vho<4_34C!Gebf9V&E~&{gL`BiQbON2M@Ez|%rU3uV|xFNVen9w#&x
zIr-zoIe{vj!n1-Wr7%Unb3!KzrDXU*h;(WS(}eT9(CK;K83JaeP+#g~b_y@DQ>3sw
zg_ly8lfvAT`s)gR@6zm$)<k3&+q@KN57y?Vupl4L!W0$>9(69XIE5v7{?Zi6eASvk
zR-~{ph1DsXov3qZ;)gf2&kkv;M2ujKwDnq{6kf;9xLWVNTHlz$rW8y+^kWK}>6=pT
zm+w>9n!>gecBQa8h3(9SjI?(O*g*x8e*}~HvS5NelF&W|PhoEgFNa#QI82B+c{PQ%
zQ+OwZ*F<K23a_W|hTwxj-xPX)9hrK2PE{r!#*oABO8t;?IED8_l5xJD!Uyc*BeX+8
zKNR|rP%=Lj5V{a*cT78y!chtJNeahO_%wyj#QBxb&r|q90OM!HewoL|Q|g~Pxtx5R
z!Z*xA3g3zEh<qFU)~NW0l=}Y{pA+<bTHARs^iv8aQ#h5v&ncu*NYf|{(tb(dpA`NT
z{A&uQ1(5%nfZtR2L%^ST{$B#lr0{p1vz|YH$>U@S2D2m|HB4bzLZd0f1jO@_2?4fH
z#=sO$oeMcES_(l58R2_Eedbvrq)aa6tnkm~6Uu!?xsbv|TI@6`q){S`l4<bIJ7v=-
zCE!w_p)|q*E)jZcs79I6f<HYMDkFfLUp~;v37)=Mr}MHjDyGqnoHQz>Q8|qkY22U2
z<!QV=POF(ltu(F>TqTXFX;c&Z>yE<e0<IKVkOn!FuOVRhYMsv7Y1B#Mnl!FWqi$M#
zOuRacA=?V;3BF1wncG(D^@Wc#8l>^gYW?_Xy-EG1r&sF@)5=cXnpPEfT^jM#`g?Bo
z>(d~;A&naa+$6M-Q1T1YxH*q+Nu#mgd2eg<x-E^{)2f#>N#l+*ctC0J0xh&gzcY=y
z($LaqnpX3U`_k$=HTT2wIM3Z_G)t><J$&v-<6gnd^PCMq!NA%@JWu^V8eF4(B#l;S
zJSg}fp$`jfDYV8KwT{i_QE@&dv~?P71oYqsGVy&pjVIE0GL5#vC$pLGZ(O5yNUQbp
zr_$(@Mn}O%>V(PZoJJQ`Q5u8NxPDJzQ5wZ*^bp)Njcx+S?=GPE8og&4z0w#URna?*
zK56uq67@~1J*)g~$X~<~=xOv54%c<L@01rivl1?zLi;uPV78Y8pP0tzHTqD&&!jO-
zoWq5ZKO&8hc|1zM)1(5%2pubwlH&xd-(EPL%Ek`?Y4CPyJ`2|9&$1rUcrLAG3RBaV
zmd0e}R;FE3gvn`I&Y7b#(wLdX$7vi+<At>PX0a}f^=wnYvxUAW^rbZBq%k**d1<Vo
z;;qrSFJiuUtxRJ<`oEnL3)5I6c(KqWdH&KgmgVvCG*;xXK1|!TMrXRKCC)WztWD#~
zH9F(}ke>tA=o`}5$Re=Qjn+1$v01<yRCNJ6gwktk8ruYK&vW=`V<%NqoV(K4oyH!)
zXV&O@1-vG7f89F!*dl^o70OQ`WbPNtm|xF}k^iRP18KY^;9%a1V(+B!F1wF#==>m!
z_XRT>bRH7S7(Nv6Q5sBw{3B@`rR1){1`a++<5(KWG*W4Nn#N~o{GP@iX?#vqIeGn$
zY5bJN7p$B#TJI`6p2jz6e4EBsEcj6EYoXp6o%lNu_(3R5*7st*E?uk4*NHT02;i5a
zlQceQ^@=>j?l4Z{^K%-%2!2|ed|jSS<2N>LehG*(wLjB{P?6I3i)t`PJCnxWY5XJj
zU!i0c$=r&-l%$#4SQ?gK<{`=woeL4fC5QA)q+tubVZTNvZBCkY+d)YOP8v(UR|&ak
zcoM&#2JbTugc4-Z$ma1`0q2CCPve4si+SIht_t&uVJQdY9F%tuau9ZKiG$LPvT|jF
zUh42yZXr5r%0*iQWrg2pt<DZr!9g_#S33N|8Y()d<e;*HD;!jDz-#R<chEc>rWmn5
zMdMSoNz<y1>WKuT1&*@J)g9Du{(CLfbWlr}bsf|ekb9|7td4_+*Q$Ts)e}C!RSvEe
zTwf@J{@b+<y{JFeIR9<KyUxM&4to0N<>LkiH#)f2Lvs%|IcVhIgo7U)6gs%s!P5>#
zJGjL`V+W5rc*4Q04sPF3cn^a(xQ*CB>+<3IR%uOGE#h^j13H^JxQoF@YMRg+SE*a^
zN$(b!W=wRIMln9k9X#ORL56bBLc-FE0{1)U$e0~G#9}&V<KQs|Egd`}F|>BjX|3K$
z@S_e!tkvl(N_J=7rhlU%f2w?#cnFhl@T4TyO@!MDZs(xA<h+A}rx=xZb#$<-rrPq+
z*+Cb{Ns;gw6(44mCG9F4;_eQL9rR!|IvC<$sDoY(dOPUvV1R=@4*ELK9rTk@usAHs
z|3?Q(%?xrdIPZH8^FK*v2Ij3*beIT?5IUTxtkUl4TEIe$lst?Qx_p&3#=%$zOPP5G
z;~YFAIiK!eya+JE%<TjR6CFJ3V3IJWIC#!M^;Ozr*2608?*rP_wfe=GwTY)XnC9Sl
zhiiA;cdXKw+&j{CGbEmw4qk9D%fW01^Bl~ls;tyrbTCJ<cXX}(l5iLy`E!MNa;?6=
z!9oX%94wZy(3ho)uhp6POV{a39Imr<Cx^)`cd)|20SCj&hgXX5dIuXM&Q;QIs~xNn
zuvX|gp%+&v)!OJ_lY?Cjc01VYV2gv7#doWebi0Ec0=7w!S@t^X^qo}l)haA8%igDa
zn0Sway$)V;u;1Y#bN77?UX@CF#liQI;as)cwoYf|yv}-9tH0@h1$iS^x2rT~W^H=C
z<=`OKe;mBy;FyC?={repFiC&c!FwXffPCJU7(Nhs$iasK$p1*d$3hP~IFjcd74V7B
zw(IoI9DMHJYnlrOUpV;E!B<jUtbdk~&v9u5mX0MQ{no*E4t{WunOXaL@jCdkYQ(YY
zRC7><_$LP^9sJ_rR~M%o{7fZx(aXgz4t}LIb5X^`X$QYK@ErsWes}PPgP4Q3gFhYo
z<sd?v=HLvwcCq#kgDg|`uKew&vvLIg3ZLMGb^4i#VUzLmu$}{p26LOno9jrqvi-ya
zE#bg+;5zUeBpsw!MxNfSs4kF6)ABp&CV_S9be>@+hj>P%Fi%zz^RRHnLDoS97niv>
z>);%Xxr<9&oOf`+K?xTnS&(+xXO+}H#4pmC_0{&TQ$G*AvU2$Ib$TfmZhtN0f}fBm
zKz?Z#Wn7eXaj6SlaK|G&Jh@ZORqOfXU7T5`Uv-K4R8+UOS{SeBs;~UaNoALZ{X>;p
zb<XtfYU<LV%UwL12@zCvQO(6YF79=4rHcX=4P9L4qPmM3F6z3d=c1;oc7fJ%QQK7?
z6c8z>BPsGYEz_#O1KNwUt6W^|qJfKRT#RV1)px<`IaG$Xs4o{>lP4{)Uca+WovHJ+
zYej}PAzbg`1{b%xXyW2V7dN@M#YJNmja(E;@S9!mY}$hZ)cs3rktI{QFwR?D>{zJY
zeYY`_>s56T^ZeQ!F79-pxo9e(Dwhf0wqC!>#iJr~v1`HIE}BWS{2sxo?koJ}F79*j
zxQi!Tv~Y31i<T}Paq)nQ2VFcQ@;v{=R1Q`Qr!EUW>|%o)R?2<3Xyu}{i#D!myGLE{
zf{P)30c(aAwLRvlk2MVV;@QxXF50^2>Y|&Ab}rhxc*;d57rB@z)4@eYNsG9;TrAdE
zoLyY}A-81kgHDl)V_Vd@t?pDI$x^Wky|QWr-u%|XRaZW?@2&NA(T7R9SmB~C1zb#X
z@w|(EF8aF|=i(U`16&MrG0eqq7lT|3cEOK9+*`;EKSNwKV;ag9JRjnbKu!=yN4OYC
zEpjp1#VA*uqvSF3if0QbN!%_7@nF{&7h}bXN1KOK4l_1>X&p~ZW5!%ea52%vyXC?>
zXU&I`kwg8p=Uhy7F~wDr6dso@{fahKa>596&gm{@xR~c+zKfYIUT`r-vNwwjy+k|O
zNqf=7Y-UxiSK_4RCD!V4b=wl>J3N~?S7Li(fI6_Yz{MgLi<#n6+CpY&z3z7{SmNS~
zr_`ymWiFOV%*-20#Qc!1bg|0i%oOjtSnXnsi#;y(x>)OCor}$EKIswbU2J3#sJh*?
z4Z_J?W^yJ7rQ}CNTU~6U(z@8`^184B9-w2_+fE%T)+oSBY+iP;OPZS(xbd6vz8>0c
zwoZv6o(0}VzKb_q9AMdb$C``RUA*DqH5dD(M{`5Yf`RH|H+_2q1)08D<MLsi&VGx%
zAl>~PS6vKsQ0Uv_^i_9Hy-Rb{S)DfJ{Qw`hIOO7U)`N==U3^5t;^Gq*AG<g#@gH%q
zY`sq5ePzSE0BY}g{pE7uV=g|GNSNqnuDT5H@OqtjxVOD_Ly`8Si{mc7cku(G^$WgY
z)p-Tqh&lRNLQ(8n7vE8=oA%3kohJtwKZBoe@so>_!vB$FT&kF-m<`GQ>~01AdYv1J
zn0ej-d)mcsE@Cd?E`Db>p(P22d3@kcR~;z$*G0s|`1RUfLeIGPTfjd;&wB;*GDOl6
z%5B4@i#y~TP*gZPRm6A_G{3aB9?Ez~x=6VQdl<-V|7=S3snJ>q53UQ3U6Ph(t@_ch
z&w6%|brIcO7|{4{&<W0p^PJFOZ)kOeS-3&J;Nl`>t_(9^j+XRPw55cGgwlEM2K^FA
zx3p0G@-XvI)<ZcD^*z8tc@Gsl)bUW)!(}2<*~8@?Dtc-sKc7khI&9Fd@KD85lkr*}
zs(PsAp@xT=p1R58N>9Bqs(UC9Cof<j)7Yb0Vc-VUz5`~~p1MJ=Ex{SX>J92Ra6J!K
zlQU8sTfWK@E#08=OFd^~4Ln@qp^1k(JY4Icp@+sEZuM}ThwDAuAX!R{(TXpqEs-TE
zhHvB)z{95-bT!f2pf~bR$g;>p?`99T<gv9u=O#VQDL6U3&BN`IpNkvxf{pr}9`5p>
zd1%U_J*{z(gfSm}M*UHmv$?xHH1lu|t80Sx=JZ>*E<tePM*ThyEj(Brq8{$|@BmBU
zffL~eJv`)LtcP(P9`^oQxgF-ArH4m6wDRz%hpsGzht}fzn1{zbwDHtN2=08~y!8nW
zPkQL$p~yp9;pcWNwDZ)~i1tD|2<<48%%=o&653hlk1y2D?P17;?e3x2!(b0XJoNC;
z)5D;A%naU3g7nVkwvT|mLUpQBp5NcYfIJ?^I@zeRy>juB4izsZ%7<~%Yq)Smco^wn
z6f4}rXh~>{P>L~BPM*Tgco^?tqK9Wa_4Rgw(AUlv@Ut(SlRP}<VY-JI9wvME<VwYS
z-oq3TBcAGES{}FCsFOpPnZlXnfswo*xSx3O8}V%F)dB5Ap)Uy?@VYkF!#of3nQi9K
z!&VOqJuLFn*XQM&Y|8oE#q=7aE%C6FO?fdy%x4+<MY4ckg$PrArH55HEObqtzgECH
z59{-s4FWcL*p%mN_Ap_i&PcX-*zVyo51)J3;bEtTw>%v5@Uo|-_Pago@vw_Mg;V>s
z>IC{;5Bogq_rM_&M~Sbn+j7s3&{sWl=&J5cnZHque<<)eD?}vU^l(4`uW}-v<3_&S
z-u7^qsc;jKhj%@^C&54Pa7e)WLOCe<kiCO<bnv!bc7bAzH)s)m%&>CS`-q35Y%FTN
zj75*JvlMCE4*jWQiFxbg7kuI2OAlu}{O#emhp#-G^l-|<*OK}V9)``+z7forzxD84
z9)B-@mph#h85;Q?1^mQnd`)AhoR#?5LuPX!pI-$0>fv;r^P7j?^Y{-Bf9COD9#Z2q
z2KmRszaAnU3_gQZL$liNoUF=d(j4t6q>12WX>OS&KgQHgUVp!jI8CAlo5r73(MNS3
zDGzB6VIP<HaA^EJobzyAI-utvV7eZB+KqFeg*C$LJ6Y*CXN5!O|N6)U;g|GL%Ev|N
zL?wI`irr_{wMDs}NN33ZZ)vNvk4t@2@=@7G8Ifdc<$aX(l_e=BVhqb56?|OgqoVM0
z$>n0Z+{YC@stKP#sz@YN^YQ0o$iGtf3|PZQO&_=VxXni`AGLj4&*d5)b$rzIakY>7
z5>-84nY*ieo<J{Pa6WXxM*|<%`e-Qe=OVu*pQY>ai88}EuN!^b<l`0*Xyl{N$IW?R
z%H+z$Eah<Hd=78-(Zt8yB6)|8JAE`2FUEP74^8;n#j@pMVBQ!>GavW(xYtK>A1x#&
z4@}nX6Tl|pn~P2Y26@28gN)F}!@e377yD@G;}IVnnb0_`74?Dp{DnR$w6%{mzB&<*
zd+7VP@SpJUqz@hhAiu2udbJa;_Ch-drNC1@I{D}<@plv2MQD+at^(fLs2|&?58YDO
zU7WkChnW)|HR|E314n!d_x91pN0kh!X3*D%?!)$x^p!sM^D*1Ui$41M7~o@|kEL&F
zBYm}^K1lFjp=1v6F_b}AQ9BEV`xqg7;?o;-QVMWgeUt=z+Q(=gV|<Ji=M<rgaGZ~4
z@_4+D34$jIeKyaZB;YxrlZEowBg0PhF)c6iypQR5Jj2J#JbuB)EWz<~0fW5cV~&qM
zef;HPu8(;>Uia|^%Q#Y-?_;%(HEdrW3w>p57YSYBW3hngCBkGb6}(L7a-l1Pt`xdT
zXik#CYklnSu~V4qe5@Bh{stc#^LUew&3U}V$JRXFCSW`D#8;-~Wgol9VHX>r?e?+9
zR~rWQ`6v#lZ>D>FWNy4|m3+y~eMNm$1nBjefc-h=M*U462Yh_$<1_X|6}cL~d`xBY
z@s6bUp^tZcH5xpBsObkj-t+OkI7@HR3pVNG9};In!OYl4zM3n|x~a}#ALriFj`%q0
z;}ah>p3(Rmqi$@{37*)b_t>O=?sKS*Q<524*DrmX@bROM<37Hk*$F~lOCG+Le)Nrx
zZw0VVeJ5bVCjAFrO#{D|+fi80KlwN*U2=x}0+k$s(!;f%ef;9%S0AT+{O03#AAk6Y
zKYNqDdXv6ulm7lDeV^a`+fBN;Nk8M`Z>qtLLX%?U!~Y1Sksq+L@LwMhU!A5ggyt;2
zCBl@C3W(AE3rOVo=Qru>M=2kEfFMAcuK*ve56{P&0S*N4eFSW~06hX^d}MuG6X4na
zXIY0nDg?MJ;C=E1=lS{w)KU^}?7u+!@1sP(Q`KR<(@O>@6(AIVI2?eh2fUD(dm8;M
z>WyDoLR}i5On|b2%L(OayWi^-l^0xjvl^>c3{WXR)d1B3R1SDQi5g>{aSARE*c_-5
zsO2Eu%FZ|mIMuo`KtX_d0j>&AJ-}1hf?5G;2dELCW`Ne+RB+C4xrgnQF2!{u__`v6
z>jvsxSptq3u4d+I6d}Ooa8Z5Yfod||K$zrnqSr9Mbpcuhcr?KE0d5G;G{D^fZVYf!
zfI9*;mv0oHFaRTLOxjkvIZ)T<-XcZ&w0aTwTw%C1P!o;Y0yRk_xLur0gz^?&j!f<h
za903L;^CqnLoqYW0^Aee{s0dIxHrHPTeTIu_9sAd5u?n#?X?z?2mZ~L4;$#g01pRf
zDXBjsltZ0I0{rtWs=uf1f@7(9hfM1LZCGgmIt6%)O(~KcnFL$E6IV#kKERU!+6Les
zby-Gge&N(E9VFe}1>xL&b!LF~*f7z~0lEa}D#hpWMG>)FB7J!mbwgdZ03W_w%u;t}
zWo}j%2=@%oE5OPCs{-^6&?msu0Mi2W4WI`Y9$-X(egXOi7#v_ofB^vp1}Gk=4GO@^
zNI6PuxmjoGT#I0Pal|+@z_37Fcg(Evay%}l5RVLaH50}Mm=NIU0HXtS&-1td-8bvJ
zPG?Mju~HnW6N|>!o)H1cutXCBJR7JB$)5|<b>))+wOT^StyTe@6rLPlO1>3%U*hut
zrU#fCU|xV30cHl66<~IN7o=iYdzGYh+VJN)fx3~2Nz4)Ol2C3HCa2VIm>*z4fW-lp
zFm*|Ec{Qa%i}Gnv!IlPC7GOo7Uh!(lu1oQ9@nu_3F?a(K`Ktr039u)?UiRMr>jLZu
zurt7V_N)NgStr*OZIn=(sQdx`lnn4b-Yo&P24Hf;vv(D53ovH0&I_oS3a=t$sFwp}
zW_JZ@>dk@=s##~Z<b(oT-QCAH#rZl7LZpDJUayMtHPO=jLV42^n~AgUH(1ztIstzH
z@K%7s0gePX7~t&y?=YUW+Is=s7w|6owT$XN5GOnJM*+?s$03RQL#nIXUih)JV3%$M
zTyH!Y;1g;~fIk8?@;?^vj(U6-;L`w~1^ArRE3NPi8z{h+0gelYosN7yUj_JDIK;(O
z!h?FNf%o@;x_#?MY8tIUvG#*x=0t#v1z}EJPKxssO$`I~RSn8q{Sx3;$zH7p_?#B}
zn^5|4t@2MQK!8X9gDo{*J0m6fTcY|q2>m0@e}%GH|2SJ<2C!(!12`;KfEXJhfE^$%
zL1KPr(jry2j4H`&Jg=uD&zxRSfmsi<1}^Q`l|}4^{L0|57j#kUVASnQfGmw|My*Gk
z4RDT?zpL=ljM^f5o+dG)oWvIbT%=;lzS$BPl+2)IKaCInMHR}ZU9#Z}F3J3NB&W1+
zc$A3;n#yEQHiL2*e4h<fkl1+ss61onr||^PWf@e=pprN*7vIVmb)<;TV}5u3ZH?!N
z)B@L{O4TyBGK2LQY{;M>gX$S{%;2dEYGhC|gBBUwpFyn*YG-hL1~+6-Cxf~f)XxAJ
zH8-i3!BqlsBl)W{|IK3P<kKL7Ycpsl0@n!54dbuNs98g9JWp_A1~+AJTL!mh)O4m%
z1~+GLO9qAc*ye238IY2VGq^P$HWyWs4DQH4`#+I0+B;e8B9=>~X$E&^&`ctyZ}SZ9
z$>836<hgjrzb}I;CadYj0~tJ+L5B>uHR7QR9?qbBM(vSknZY9&HL`j#gI2<MOl0Ww
zXod%QlnkFXIhos=J}!XrPh|evO+nmNnC&viiSeK-gRI-EXr~N1XD}+m^Fip6K~V;J
z2K_Q>#@aQ5<n2wnW$@}|^`XDJFpGuu$e?Eiy;$TXO?zk1hlBqnO^NvwHEDWuv))(4
zxUYu$^IJ7(+CPH<!uff#K2X3Qp@TCR!dhBao1ung)R~B3!XHlc6EHFZM#9u{J99>7
zFeZcNSpylhKXz;e69tSD`ixNW#|xN{0T<%v<nwF>lQMWNgUNZBsToWWoQ`y%z%;>k
zy<A8<BZHY4wZCE|`;LGG87$0TRtB>(crk;QggKx3BR`R!!+JXxnk!Cn<_U;x)_*>)
z_QsR5D1#*#EEWD@q0Rf(UnXF=Q2v9SVk-m_l-Q!L%3yT{Ya}5?vQ|KDqyD-KmUUM0
z8#CCH!RZWs%V4wQe{Tl+sB(h03f(4jdj>l)*eQ6o(3dmVmBHm(^afjW7P*PgJ>u1B
zi~b55UChX*8N5bC%HR{p!0Q>jk-^6qHD!2{2@TRdWa^EI={z9Lw=y^=zT~_u;GGPL
zx9IO?@SXtT_XT_)^pMbzTXaVC5i@x%#Qn5~CEyXEM}-cN`N*++C9v$DW$<|hUu5uQ
z2H(*lWpJGRbc*&h>*P7@E5XyY=rlMbx`e+G=C?xI78d`I!HEn`W^hWxeq^b=0*3ub
zoYxl?bFKbo5hn9j_S_2LUov=ooyM5I?W}GH`8|U_GB}sP`3(Nd;4k(Rsk$>6{GCCZ
zdCuS;>H87s^0YAj=KH>pfti6N)`J~Cnl~eqiAj*3<@%#n(*^Xk^TD|$pJE5ez{$YP
zz+<ToXc?itP@W|rClI`Ri=JgK9<5H1oD~jl)nJQU$RLzOIIDE~qEu!H!6k*35=u?J
zB#Y8nRLP=h7MEsmTM(*{1uuIklT}OHe9C4~E{pP6?A@Xt-lG4yMbB)}FUz80R;5xY
zi_5d%j$Go(!r?76#8(JjQ7g=;U$ra>vZ$U_+o!M0;)JY^)ySe|7FTCcKZ})bX|=Mb
zE1-53b>z8Xt9~bsvL5YKFN>?PAfOoO4O?|&l{Rwr-6)F&S#=Wp8ll$;rL&=c>$13B
zzzsrg6w0quH{}6WWtr7mvS^&erojz14{mTPYaoj~EgI}?(ctzhnq-k`)F9oc!5vxL
znMI3g4eqbj;I1sRES@gcV05_#O|!T=i+Je<iP8<4WpPgyUtQAR>q{Ekn?>_1Pb)My
z8E$YN17`6_sKK#NgZs01Ad7w%(EkD+%;F)|?KzY`hljIhnMKL7D0LQ(WYH>%X<0m<
z#iLoY&SGp9<FaUz#ba3%WzjW@1EU)~F0`G{CxkvJw5`yG2bHY)bhGwZbYROq-HcDi
zET>)n;Z9j}7ThJz2{mldO#%)O+FfXI7Co})DY&oDUP76A?=1S{@w(zN<mfDyaQX|a
zVU#0tU>1Y27%ZF-dHEq(49(+VSq#tPT#%9C9K{;W^G9bfCXcsY+W46)>eXm5K8w?%
znlXvNS2dj=n9hj;o)tPNi|6wE$pWTiF*VO=GrIBgEM`!vv)Gr#%q(8WVqF&NvzYY%
zs5%cQDT?;%PwGkCgOWiqbpZ*pJG-+>UUE`0iUbiPDguHcAd)00NhFFWN>HMxfWS*m
zl0ihtIfG;n0oh6ar|)jR-}{}@=bqnl>#6Fh>gt-Fz%t7&&5p}d<1^I+o_9*7{OLAx
z&L>hQWy-%RH$yol6F#RddCNX6Q%#p;%y5R4Gc!{yWSf%zMW&iX|4ZtWUgp%v@l~e!
zn$8^RH`HYVG%1=#UP7HuT|kwh?+D*h7iOwOgvC~A#=`DPGu5(8^@HX7n5mXqoYkfA
z6^#{{YGtN6o2kxas#TflmrQj?mNC;-XQ~aEYGbBaW7S$KKwd{(Z~6D1+BT85XQ~~U
zYP02U$y8g(+bpNBW=`*~nQA|sotbJ^rrK?l?j`KWRGmwiY5N#fdfDUyR?b1fZ?bEh
zHpG|Xu<R;U=^wJskdIK0Qjb}swFep}$R{o5RHiyjK11#Df<qcSpQ$d$y`QNbWvYwx
z?@%vgs>_5c)W0&-Rl+sub?ObOG%|m7is(&-w=&gjLXHOJSniVVQSVd5e2}RgT0FR-
z@sGt3!sAT!gz(hz|IJj-$eEVYuSBY}6J;2q#;J)+Ws795*rzYqoe|}Vs81sDzhNpZ
zqTCTxFCu?BMtLI28&Rbqs&qv8n4c%2@<x=OtW%AM3J`Kob4Jv2gy*SG8ks9rj$90L
zM^x?R9trbBRDL=oBdP$Q2vv#-5?-Jdq85&*w&~gTMNvA%sKu!zBC1l7*`^$d4ydQM
z6e$x?FGf^SL?zQHORYdHM=einI^DbkLGtxi{h^3TiOByels!MGgvt>WCZti*t<s8e
zc8eE(5SDhTFsvF;)hxd{AtR!qOpu(KbZSv+M^qg`UFy<(<{EAgQ4J%ib3}EK{hxl5
zh-ylBiTX0NF;ym~8R6B4Y8_F{$<j!Rh-yi0MSX>uHIuKAU#GUo@~Kj*T|~9F_{VBm
z2aDezbfk8Qs5dP?dNQ?ZME*pWIbB1j-6N`JM7=}qL4Aw*HuXvAdXm{IqWVSDdvtnJ
z`%vGFsJ?`D1I%msK3QNOp+EJ5h#Ejx^iKBb8pQC!h#DMGi}$2_L>1UIC_I!!!>Gd}
zY6Riqh#E~8NgYL%vt&)qn1~unrzF?axQH4bQFkNiUPL}1RTCrXTtuCZs7Vp^Sw#ID
zk^lNcO^&F~BWiv`Er_To5j8cUzKEz<Y-Aes$M*i|gc(#h*UX6e@7?ibM9qn)Z&);&
z`c*`IZDkhPSL9oZBU_5hCC{@QS-szpmqgUki2TYcd)+Q1ERv}pT(j=PWek6cs2>Q+
zsXtPsS9!LZ)4r;`e`Q3iim0s-wJjq5AB|eggw517)b$ay)~fZNh+0Q3s5_<l2Fu?_
z*hFoxwTKjLA%FgwXM05Lh^XHq>TpE;8c{nV>VQ>i7h!Ki?I!G@9_?>l>wV<?)Sq~#
z93=lnJw(mX$Gn~8_#>i@Mbz<#`jh?<>QSncmU~G%5m6@@%3Uwcsfapbm7bPOgB?Cg
zXYNq*>=z<xea)0YJA&6E>Y|l-DWWcuuUO92h`L6O{c6^d{2LJ^`WN*k^%nJZMBO3$
zXQ(a-_ao|o?6gs}WkC3$+(84v&mt<5@OMN#BK$*rOnpL?w5NoBBPy3KRl*2EN7QUV
zj%Y-F!e?@vnxNXOQahn)e>2k=RW8fd2=1uz5WJS(^i=9cWiq}!m1;y)AgXf2)N?VF
zBdVT@s##I>WmG*MRXL-oSyVNTs$5Z(JF2QgRn@4<6IFSms&G^liJD6^AGIJgKeYgL
zdy0AaULY5u&Z})N8db%}$<*ReRVu1VM^y=iC8<(N5kT$O!d}Mm%SY9V<g%7iE~@Nf
zvUiUPQ5B4;RZUWoSh}%ywjYYBl&DIj8Kzc@sx(46)%#xdN~^@Ma#Yn|o7EULq)M-<
zM^%OtF{~L?buGVERMob)4x!+1dp$yZ%Wn`>`%7e>r4h}SqUvQrV=Jc#p=nfY9A@6U
zEuyNWT&$?-6;-WR)GjKYQJ8c7N>sgS)oLA8uUXtCDt`ySOeo9|y&hE^7<P-QH>{j4
zQPq*$$#UL|s?Ov&?Xr8=m7(*Xd8c=esvcJ6TT%5kxhM5pZZp4kRP~9fQBnD)qvomK
zjjF*>^-)yyW!NvO-XpvpRRai;(?6;{uy{#c`#|y_>W7wpvtsHHi$5j|jjCamGd!wB
zknQseNP}{WWcYhwvrA*5YGPDPqBAzCJ|TQcmC|uhHJ&`-zfQ<}zWOYxrqP*f`JWS}
zMAcM+QPq5goNkrQh^m?7FQ~m*nCoqJRDBgyzeUxdsQNmp=CEjERDBaw-$vDsQS}p@
zxzt6}dDQvT1=R1N>U*x_g;ZJ69~N#WjW3SMrz_?p%ds@7mXUw3oaIq<y=;aQ{Tx**
zXs)BKq^_l|qW%(9s|k|4CaQkrg*Ka|d7+p&%=P3A)V(e2o1$v7Y-mxnHLCW|+(wnm
zT~W2&;vLc&d8g$xX<=TG-3&W5vG29~eR4;T4_MB@sJgu0d}{hVst!lh?WnpFm48oU
zj`w0zU5ctdqv{C5qfvD#D*s?s9kc2lC!C0?lZ3}dol;AVGYl_K&qmcb!g*@zN#=`%
z9Q8Jv7w$66Yt$>$tJL;=wCe=Pxe--=S$valOZJ@S%mLnws(Vr8j44;l?C^b-W>OzS
z)x)UzJE|Trd_w()`j{&D@!a;O<bSEpEdTcDj7U^P8OErNn2Hk;R2xrcr%F3DH=85M
z+7dOIUaFhwp>8g!OO7w5{0w!fK@Cu|cE9IiDrZc68&h**DpyS9j;SUw)ikE^#8lpx
zDj!o7Vk%!u<!6;LF;#$2G^UEh<a?s*Rr&&<P)rpj6tVoqMa(r;Jf=!oPKlUWu*bam
z%5p#`6;q`N?GI+}=PxoWOD#v8`5z+~Q%NyZEvBl|Nv5X9R4Ar?N%y2Ml*UtIDojqZ
z93!<rMT;xNRAq7%%c)AZa?d7pGsrK+RE?ObNv;)B^$E49l2a$9>XPeO&OklAfyE7D
zsu6k6sO+)4%&;+acOR`;Of`?G4`XU@OtpxqmNC^YrrwLGRx$NTOm&N??lJjm(&pU0
z5mOxrtz+u7m}(PKZ5c{Y`<QA+-d5UNnR2`yQyr|*9iDV?Ix*}TQ*T;+=a}kZ@nV;G
zYvgHazR&FuQ@!ZFMSYvvlll&IeM(VD>rL)MmGIq|>Pvp9RQ6r=KEnaj{?re$_`Yo*
zL23<(sZV#Aef}t>hQ!qLn3@q&Lt|=KOihTXi7_>tnIFg0NWusiIB(ujRtulR)M$&x
z#MD@eGs_nEG^V~P7aB)ryyZ{G&?Z?tHKslzPqv)TV`>Wd!ka$nl^oL;I#SFR=$Yg%
zsb5fMQ76UC)iPU7$58m|n3`kpH-r?}=f%|gnEETGZpzA!sqbQHYfNp6sqbTIVNCrP
zQ$NMjBCFPN!eZ)@m|AN2%LqTn3aM}2)N=Ieqx~FHE9h^cuB5J|u9Dk<AepNPYhtP~
zub^3-&N}M)nA#9iZ-0`ukt$GkY?|b3X6Y8{wKMkZF|{M6PRG<4I={x$ftWfNliz=;
zU37L+vljdw^4^%*N7zr5HuJ6t{T5S)7@nm5PCXh^hpn7H2!F=Z5zDDQF(h@5F+5H^
zA(M7Fzc~<j7eHsh8uLawOTHFU=VI!7OkH3o{uRPS>ZO>vOc<DKUR*h@GVEKnj_`Hz
z4eHDc?N&_Pjwuyah^sp>bvLGbapjMzdoguCrXn#Fjj0Drmb%Yk>S0X%&F~TR3H2Z9
z<CyXm&%RHe#?-$wvlf`t&15J$gK#XS9C780t2oUB)fP8*13Oiq>}+!jbusi(wYYK<
zJXBd8k|2jnz8+Tw%@Wi=T;+<Z+~ge8=cv!eRZc=?9kXs8a^bit5?6WSDqmdXrz1rL
z<Ej9;Q%3e#UWltgR%sD;sHnwR`+u>xDo$tay6ibG$?#eyd#Si89amN2sw$l_aTScK
zB=U>YvT;?8Am=Sls6f5)o;^9PLgb3nl(<SI*qdk1bC_XTT%{A{g|hdkN(?Jg_xzqw
zEv~A^RlB%qA6FT1RfB%>xT+afwc@HV!`jq(aaBLA>X4;Bb>r&Wy4f?(Ag*4b-;mnK
z$~juWTvsnMJkr7JK$Ey?%CMQ0BQJ<8;;Lm_wTi1(X!fdWKJLCsZbNMySFc(5&wrBE
zmV9rWwevIV7FQkO>W#SSXk~ULbfUgVEp)-$wYreIQulW<8|hB&)7AcVT=k5rm+fe5
z$2)P=E3UjY_-yDMSAFCvCsg5tdN;26#?`L4+8tN@;_AJ)njBZ3vxWEL>f^W?8CU(|
z>Vvo%KvUZPD6R&Q2U*UCaW$Acx3u|b;Slmrt8`dg4JVJVoWW1Sqbwd5SEI>esAH+0
zP(P(!us&-VA6FCTOr%btenyp(b~<985?52>YIR(#iK}UGHJwEZsWasI#?{=oni*GL
z(3wU3I<CGX%%*-tmDZN+F?Y^648Nh?oaLEkm3|*r^DSNwSKnEjXS?~LGklh3QCuyK
zt0nYTSfxwjYFS+U5Le6T{6ziHD&3f)%Fh;`t!D0%D;ch${t{O|Z8zWCt(B0@4(htN
z+8kF~$m`>317Ra|6SY8L^RZ2itqiwQx5@Q-Xug4x<IDx~M*fxlPHOL-_C0a6H?D5Q
z)onWa;_5_Pos6sfadjZB4#w4Q^p8^y#pV0N?5D@y<LWT^4{F|<<`O+ZK1w}C74zr8
z=IvIkrT0`^ou+x6dM2(eSvhA3=i=%-;R5xdRazrvKJ8qNt1EP_Qm;|pFO)s%8w~%V
z-lVRsly)bs?#5M2wq-i^;_5L$TDwnpKz$fjf5%lBN75szz&~+S>2j*Tlel^sSN}5Y
z8FgM6bHQYiBh)BW%r%p>L|oYt%9~KWgt8~H=gLiRP@M_ovV1L}o)pjSzlUarYKA|d
z^n}WjP<a!|uri-dr~o+!^*L&nk>;G|v~qGKRBrOCJ<T@rS^f(NmEYn53006>vPbs5
zx~h%6NJ14&sE-qBWI`27$j{DI>x6nOp-LoF$%LxQe3ej0sFZ|CO{h|I$|Y2JLTPFl
z>Wc|gme4O?zSvbD3xpCXXmJuDSz6{gmr_@f5vEx=p{gWQnw6POsF+Zd2$y-St0q)6
zhIJCEI-w>tgIa^?>Yh)Um7`Wd)uxkl%$eoLc<Uup{e)_ePz_nsg4&4Mg!&To<%DWX
zcu>t8iyTcEHcP1H1aUg-G>cj?Y?V;2B-Et&$*(fpP{4flZj(@L6Y8CW>P53%LUm54
zE(z5>p<bucf%;}by+P<mm5QARr;eEI+fF;WT7FMLH)?lkkA!-Q@HSQQ&+Ijq=(xAE
z-U-!*=0~#sTc!OIs;|ZU66!sR-%qG}*88{*5^6v~4P?<EYObD@q|Fb>gA*z`KUu;d
zR^6cq`M(LWSNm|nh=jVx>oqE&Mkmz4g!+yCn1uQ|q2?si*o68dp*~HhaS1gep=Ku3
zc&mje2{j?1CNi8vot#jg5yn0<*Ss8`C)AB*+22@AWzjV1bn4W4X3-bquc)&U>Py0G
zs+8_#_il{UzDcNW6KZ8btxBl52{n%iKPS}ugj$eL%NTw~U2N6;p0F?>e-S!+)D<q6
zAMY$lsHK)uql9@I{*X}1E$2tVPqM;Knj4xNE9i8*Y5OIiRwvYMhHDaPZ9;8HsI3yx
z*+^YST~C#|8wk(6RcjMrGxe3F<_ps{E9Y0jcIplp%a7SJwlkr2SvhyNm}_hg!@bmf
z3ANuUJwUiLF?=YYeov^!vSlUI;e`5w{=<a&Gog+o)CIZRbdDy}8N#uII!-u2J(W-=
z339F;&9u`N%OW{z@wtRLZ*f{@|D}YwoKUyuT(SHcgsTa4&2p|2_I9l+E&r8JH!c5Q
zVaM%+y2J2pLft3avr2DQ_dKxpC79FlH^WENf2jGNnBO)&O(=&A0&@JDP|p%7lckY_
ziW9_-CRB`Ev{?4Onn)-cYuT;3A5Jt|b24<<pb^|ukCh{jKz<u^8@Ai9!v@2KfDN5&
zc+-X)HaurTO&e<2@VpH<ZAh~r-G*E?<hG%V4KLb|$A-K%6t<xV8_Y*7M9ptQ0YX8l
z^yCGp@{V~^*P3EJOcu3#MJPrsZbJz|Nvm|>fm$G!vYgU3OnPRny0Vs2o>0z)tl6kw
zL(qmKt2Bj>ObyxK`7L{APPHLSGiy_o1}iempjM(*rdE+rSFBr=TFr*)1aYQbt}V4{
zFh^bjY7<)6(9(uFHq^DD9-WtLc$rY2+JM^7hDHQwp<jD@V~d*;noyhC(2P*Vdg{>X
zo6k0_XttxiV#BL8w6@_jhEjTau-1m$mO7h{L+x#N-G&ZU&Kra(Z<!aOBe_Afl+HGE
zvEfS_X4}x!hHf^Dv|*GD-EHV$!-qBuX69S+oNq%P^4rv&)OT#?MaWvr?~>oQp+BK7
zwVw^|5#+op+t@#_*t@~p69zCGXu}}OAN+UfM;4E;VTi>;Z5U?pa9OB1&FXS|OmoZ;
zW3&xpZ1~)UDK?CyIl;>R#D-7F<1A;q4Ous}v@lUt7yZwulc{Ygn6Ir<t^6+t(`=Y-
zIWugSNq+Qac28z8EHdBrl?`9pu*`-Z=*+R<d%`z1d~3s8vNZl3VV({12@9zIeSI8u
z#Jo}qZCFHqF?9)bDK+aVFSp@Gh8t}7i6FJs5`MN}g$*motEj7~zu0i(iTN70hGD*z
zeD`g`I)+Z(EbFr}+of!@VH0^XRUU@75TyE68@7?NuEno5?38=W4zC@%Y}jqXWgD*8
zu*ZhIHk`2GB$M}1f45=3)y@IJLF#Wd93q^*Vh&%9!#4b3!=KV;EC09+N6E*i1IK2+
z*Y5nex%-{6;R5~B)H77^&l1kraGsF$<Z#g{y+n}7ziPuZ8~(N78J+9YJ2u=P{6)P<
zl{RnLaGU%>9`kANt_}BWxKHPi4gc8ifc%j9H}$_y7mpbZJ7PQ`NcE?L(O;Uw$s}ub
zL~MxK5VLaZcJpN-ZbQOyY<A?b_6i3}om7_{vJ@p*4mX{S@`l|Gza7QwC~k*the1C-
zH9*Zt%|U&R`aHFJW;ho?TFY%m9&%o4KI)($*{@0k7#5_yU`HW43QJEIO5Le-GK!LS
z^SxvVJ4)J7)sAX36}6llu<}dUQJP%Fa$Y2qm6o5Hm%F?j73>Jwkwm|u9m!T^m=L0-
z*pW&IG^--D(#Yx5#+<!MWGSj_M-_6@`sRI6-SX=YGN?7|sA>7N?5IsnJ7d15u4_j<
zJL+4dFA*Bp(U8!Hy3=|e{pJ*{i5*St=;lCo2b$T@+>VQOT(YBu9WCvcX~!3Kw6fzB
zJG$G^!;V+&Xw61CP+z0Aqqd>8rJfvMep1w){5rLCBl{bKj#Me_WXGH2&USPmbd{bE
z8gw?te&LL%Z`tv-9b@bmYe!G{@W+lJRtvrC=x4`!cJ!vx$MWB`qp!uE=QMBR_Zbef
zqd(yT>HzA@+u5sh5W^4cXj3~h*p80~!Z}K&3}unDGt7?Rc8p;7u^po<e<We~Q`>0E
zX*9yTk3O+uk{zGX{FFM*j`4&E)QQxuUoty6nJh5fj?XQgLYQjDG|S2HtC>85;kM`O
zv+VfNj=gs5vtza$U)izJj#YMiZO0rtme{eBncq+sP`|ZfE@2*3TAOdjp?}SJ_|A^+
z?O15}Z(O!5A}_X_v=!#rmofaA`hy+I2|rpnKM@{sVpot)MDqP&$7=E}JJt|3*s;-$
zwdDU~=?B4ecC5EJSj@i3;%$V@)Gc;wCEVu4mHupJxWkTLW#H|@JE;QABj)?W-7MWh
zUGtoMza0n2XQ>D6I7X1n-w227_}z}f<UgoK?D&&VDWCb4=co+%ezF`_{Ep-FPf(@k
zB;geGv>j(Gf7&+lL#lHO&r>f@$KSGDw&RK&WgK|Xfva|0v%}_q-C^#u*X_7x$9-nr
zp#EjYO*?Mcahsv!?8`JS+#Nga(&@?`it~WsQ#&3K{<iWT5&p5`G2w~j?_X)Y;r-W+
zXLK@U^Cv{@h!bMewGGXMogn8ZY(5n`9B?|2+krgnv&#X$13FoAz)kQ_y;P~<BYeXZ
zVvut>5Fq5Ra-MVGdGc3zvp+$~#c)x2p}Y>{BNuZZzXJuxMX3cHC_?z@j_m~p3Xuy_
zzftDWmE&nCdyaQaF77}H2THP3!qNmqg#)Ds`MBVvv}aL!SqI8FP|tz-EGq9n*nu>1
z1!~ZNBnOhoA!@xt=800ssSf-#!VJ?Ls7R-_1C<D3)^wmUxrzf-9jIpc84gq@r&rB>
z(x~CU=t0?Isl}qiRdWs0A=jmD9<DWTprHeAFl^+&ON7=AyzD?@2VP|;wVF84g4~qa
zjM|*K;+*-a+LGLg`U*AcbXoVpYYw!b*_PVDfp&!U)YqwXu4nJD4;tD#(vfC6Iq;^%
zogL^x?n;gDiuZ8fEeCQq@thNHJJ8dCRSx{(z&j4~a$tf36CLR7KpzK&vDUi|^d$^(
zpdUfbGJx<N^?e8WTmA<QtkJXQa3IZhzcs@T9T;roeB{6o@=$8GkolrEoIJvTj|n3k
z_=GTuI+`kJV;mT3agFEAM}<!v7-u=-311emPjcWh2WC6)6`jcrOmSc;`E#m!ulce*
zEi2!F=?=^w&!m2rZua>L@+=2p4YI$775{4o<~Z=Z0}CDah6!`2-%`tz&mQ|c2j<g}
zb`}u6qqhIbOjzW=4-PD+vzWTXfu)3HRLKdB_5Nt_N(X+j_-6-JSiHQIxsbYbv9FeC
zci@@>*Bw|Zr4Af&;CH62qwaBFy#pJ_8y(o{z&7$G2R0L=oh=Sb?qzmwyXEX8>~P>$
z!tZAbOX)81ZtCP%_UEO09oXl<eg_WFm$ae>%%%=H@SElI+hZJd;17nEsed|f(t%Ut
zBMuxT9HSnmN((0l2d^ZbCY-09u}aT6aL!`s%mwmA%eh2&*3+D&E99%x9YyRnWYdr<
z>p+~&O$Y8f@PK@adfS0JguB#x)CK$vt+e*gfhP_;b>MIMkEs7pA5-@iHFwv4$pTTr
zGY2vW5vp`UisX=Wm2kl3G+&#%PS^>;Zi2%Jr{%Z^niF}eX4m!5k*0ivFRt4BPUu#?
z;Y7gVRiE0QcOs_~1DqJ>L@p<CJJG<2hEC*>2AxQ8BGrj}PULq2PLy(@fK|7s69t`k
z!HEO0>^-LtiwZkYgb<vW-JfC%i&INDQPPPf(?g0Xu<2AvX%>}tq5`1|^+jq~C(03?
za!(GDWgc3ld6LM<)DX2zf$TGe8CG{9&53j;Dmt-$uUS;piApT0Oszs4P%V46ug38C
z)fpLt8cx)7q87O>wKla5wOiP%RgYYs`q}H|DH=KPk`r&qM(V`NPBeDnbtgK=V3}j~
zoY2&XW`yRJ-@=JPbIlf7Iq`}UuhMU8m9}=`HF6uvS=&9_&f@lRnW|@x{S7C&Sbj%B
zCnw&toX&*LI2&Eb-KgEEJ*drj3-=`Vb>ba@bgY*Xy~%y3?@}jhFz2D4mGd6qeJA=8
zKA`6BZT4-D6CXOU%!wbI80^GHPJHIXWG9ALb;lBhIx)<N;p7ocjIv5Uc4DN(9j4kx
zlgCga1<m$9apF@a##uR&2;->}s1s$DN@ag)-6`Gixf4^InD4{_C#E_vjX7UCF`Y1r
zD$ULy%yi-lLe@GI|4S!k)A@>;j}M1)ocP9xZ|O)*){>a(#5_8maix7{l`bKC@5GMw
z_JvL?vi!w_)@kO%E+yyRYhUifk4~&{VyzQDIq@_7U#KgnE2%$}GpAw|d2LaXS37ZW
zhY9B4#0DoevUDAFJ@w53_DuxI*-qF@-9p{!#5TfnP0TLsaN<`dcG8h>$^`!|@@}e3
zteE?p*z#pc*o8C~_RALG#6c&1b0X+Mk_(5NxP2kGuWz`#3%@&Y*oi-!_|plm3qBW)
zIC0d8hfe(M#4#t1J8{K{t4^%1Smgxu9QC9VrwFI1QhLUTvlh1vht6AkfpC#}$%)IB
zUt@6HYZl*j;yU>T^)Ji6>BKFITir{$WAR<WJ?eex11J7+*N|?=@yLlxCnEI!apE!I
z3H2#ea{iUSe_*j|V4bMNP8VY2I5pvf%>}#59KM74-&z7LI#Q&$;I`P~%5M3SD(M?H
zrTAUYT`*h-xB%wlpyqKQFX1^Co+sp_=A!1NO3POlr-|lsp^yuOY36sKfK^)1g%>Pd
z>8K}}MHrTFp{V5-BNTU`?ZWPoAV*0$%7vzX*O9Ok!_w3;)EB8`spY7WHlbgg3ND;>
zg=FQdSQSckA^50zstXN@q%|ua4!Mxxf`A-5^VSl5oEc1ap`r_WT-fVEB^N5YFxrJN
zE>v-$stcW5c+-VyE>w5n6&GH0Va3_987|awp}q?>T&OAk{+DKL>Z(kSB*;;RVcq{R
z8@SM%VM7-hx$qLXDfML+8e5r72$Qr>Ry)mH$ZE3%{g%{LR<h)@CJS_M;Wcs_YFiiD
zv2J@8UjLu`|Mu_=7dl#X#q8`t7Z*OH)76D;F7$Sxj|<(coSuXpF1$r}o0`?yJ629F
ztGDmc`GDG&+RugeTzKEg?9WUYrnHbX<N+=WWa%I)M~Vi!@R18cEN6rZL&?La!>LkT
zGCwAdq>iFy^=+&RpSZBdg~cv>>cTh{edEG-7bdtc-Gv!0Or-gl3zJ=#M3(u?s{XkP
zQ~t-9N}gspSv{ZW!fZNUP-juUq-G^ZYhN+^nmUIn?SJdSTo>jsTtJ;q{qNbobK!eB
z3oTz7TtZ&!!hc*?>cTP?esE#A3qOm`q90xOiI6pfEL}-QT3(%1<iaoile5MumE?7D
zH@UEl&Ialht8^n_lM9<ICu@LPt?MrBZ+Bsb3%|Os)5_WH!Y*=Fa+dCM;q!ILzq@c)
z_J0>z*9jkR;h+n@(LdxuxtU=-qn6~Xc-&6-4;TJ)VYdn&m;K*`caMaR%I&FzXI&3J
zJsOs@W2{)}US+#Kd_pet?QkDo__PaWT=+`E*BZ{caL$GEkAnF%oOj`Z?4mBjUAX8%
z*TPAcUAW@HB^OQ<s4B;Rh25{ZaLtALE<AAIUcHp-GR958doJ8?;V&0%x^T;d?YEQf
zx^P>TkTa#h>|pLPA%Qy#j|~b2FDLt7O_5qtx`iIP@V5*9%Es%$BNzU0;js%(T&R6F
z*nM`e<?9)epYwR~Q@M`kgUyZw-MdpV#|68O2xhtvabb8r@3ze3aYvG)F7&??{PJ#a
z|G%{oF4#1@5)9|oVAtT#@O+(cP7O{CE)9l;fCf#2TZ3PNuA%xL$z_e&$CspeG)z7b
z_G+kmE7hkVM=&g*_|nwnI^h*5RdZ-KR6G2fG^j!Rr->?m{ghTaIXu@H9yluf<nP{G
z8VV$Z$J|PlDtR>IWjFFsCok+SW&sTaHN2pqkcLk+jMGq9LlF(_HN38&sD@%1(ln%N
zD6XM|h9nKi8cJ$V8eY^;Rs%G1vz4QahEf)nCKwY6$RS1L7zU}f^aABIRM61+`{b-r
zNf1*s#Dp+4MMJ8UFGX@lazzc5G&IoAP(x)6Rb;L-WN4`R|7TW{S)EWo+OMIZriR)Y
z>S(CNoUC*G_q=sA)YFi4b}{Q)6~$?!;U$?U4X<i=SwmwDEi|-bBa+!fLsJdS7&hlv
zvRcmSXDcgB`jF+frqh<^dW|eaZLBnDupL>>+d;z{8U|WL9W`{-(2Zdy4R31btf33T
ztaD|JrMre68v1JJ$D+41^wjW<hPOGQtju04>aC%VHRLS+UHZ~aR&U?a@V<urRz=DA
zz)Bdvk!DTTAPpaC7_8wV4P%)wM8i-Gqcn_W+As|xG<>XKxHUgnT^(tiUBWD9j5Y09
z;V0JV<kaIeOwce@!!()`<&Gdo(ImoW|C9W=hACF5G&SAgnS>eEh`!J;i_VuCW)mb?
z#-62fG<>7sXYn<Bt6{E&ox7b&HO$k@xA5Ol=TjF@JGM37iF~hNA;U!)7He2vBBjD4
z-#Pj54^0WD%r}44xlF?k8kTGLk-j)T5k@yOAMATPvaMveQNtz;t2F$gVYP<sSIkes
z*J)UzVXY)EXF@0Mu513=j?`(9WOvcfdJP-sx9A`08Lzxq!xjyDH0-6hRl_!EN5(ZK
zIDbWOhcvz^cw=91Crf|Tu%v1&ImIpwyXoZK-r<dF!SCah_i5O#A>Y=}ZyFBBeV3AY
z=$GI@SzV`6-{DUU+ub!kG&rOocGfnof%b=nKjltwqoo^1G#r(^#f?I49Fq-7ax}y>
zoX~Jm!wn68X*k8xeZR2#1r4V)oRR&Xj<k7>&||FqJYi5Ix$UyxMGcoUT$c4v!hS`=
zRTkwMWWPqZE}K~OjE1Ar>fH;D7@fZJNb*e$w=_J_@KnQX4R<s=(C|>hUFP4X-jj`Y
zw{zy%kn2`CId8$B{cjC&?H+0PhYA1o(;REe3nbq`KbBqeS@6+z{!NM9&VMyLV@{@q
z2%%C2znz!Qh2-w|)0{)8n2=Mrp}S#o!|sN|ZLTG^8y+{DZnzj~)C&IUla%?hr4gfp
zUOGOR%po2bi<q19ryFj}`Nn(?nA44b8#&x~>#fjpZhTg;{PWBoaN7LwOs)||E;n+!
zk;jd^Zsd2PfE(||Y%{y1<YU?cM^YU}Qc9}%TZr$9+Y3r-+f$ot2o`3kaszG@aYI`Y
zEJ~*swYVE42ua1g@?~gA8Oy$4%Ib_#Zj^STfg26oDC5S9Zd7rjsvBk9DCb5xtH_DU
zyOB)JyU3{EM$qz;2(@1Kga|3rRI4=XMw*o%jmS~ajY?K&Wx{V>cQrx{H)_gX0U~F(
z;VWKLZ3so0)RtPc+^FkDJvVB*QOAw(^UXEiMNjQAICvnD{n=N2H{=G{oZGxx8?lk5
zZoK5i%We#dC)Ylj{9sP7u^UZT)N?_w&s4KN%@{VPw)WUtx$%k{pSba<8?U<2ntm@g
zUUQ?38*jML(T%old}yRL9uS`VD0D8bx1Ag9-FTgugK`=j+&J6DeyE$-jZSV%8gJ|7
zMt3*fbfYtKy13ERjfMQku6kbkj_Kwu)WeOQyHa~f;}1h`x$(B!yeq}e+Fk_Saihnh
z<dfC3-fr}f_25QdH-^g4-00`Vdv3TFga*6uz8n4B7|0WS;Kl$qZZy!Iv@&mj!3Asm
zFflxNW^j=7p9!NYq{<pNeJ=GQH-@kUS!2)s@Xj8cHk=6`yD`#@5puaNCr_T6J<p@u
z812RwH&z53vX4p2W10NoJLXw7FYG=}E|41=+}P;G1UDwS;eR*0R;EIhx?H}^p)cI{
zYEE#n8&lkv>c;18{B<jMW_gC_gDLiDZp?6FrW<lQPj}-vUrL@~!LL^&H@f3oI^4WN
z%TMbt%Z)GHm@VzN@wFRk+_*a`Z4UJpnSqVLZ^++L=ejXZ)`lAk+*s<yGMeAXYOh{#
z5&3)SLaLaHEm*=FY5514$&{p@-1ymz<zz8`WSaOZWFNRyZlx6-K3rVFRWv1SHT@+w
z%L!LY1P7i9{zulsh~PTvdN<_A*pw{JCO0;_(V|txpKfe%W2+lEbA^6)W1Ab>-Pr5K
zJ~}(x*y+YDH-2UKV%0j5wwo-vhtL-(FLnvlI+?NGjRS5RqIuAb-`o&WKvZgp<~<pF
z$4C-(HcmV2#vjZS7Uzf?M`iza<G34F+{m08Iw7atlTvU_$|*Nax^Zz@dbi2xlUHUO
zn3{gtjWbfcR?1oCoTEzec{eUte9?_d<jYw(e}*JMn!U=#uTihdiY5F-mC~DpTh!Zb
z+_C(-ZluP-lJLNdhi-K7psNReyD@l72RX`m@W_pS+<5H96E~Cx#qy*)b>m;zQ9Y19
z6aCDMn@HVTF(a1;nKI!y!x1;4a^Jaesz)g9M#7C|Ux(VZ&9Hf3_h9+@6!9G%Jg8Vj
z_n0{XPKGY3Ms<7O@xV*=dEh5V=3l*2L`QyE$6#Hl9`GQC#m{;0yu~>^*grH>_CfNI
zxhc6l$m2m?5Au1i_{ZSJVIg_i5kK=;dI1j#dhi0rQrLqc9xO#lArBTlN^=hh7M1aO
z(8`}w!h@r$^9vMbC@}1&<dPQ8=$S0j0uM@Yeo9lzP+z3}T(rC-l=Gmx2NgUBdhoDB
zN@ov}JV^GKFNJS-5c1&Ltr@*{)OyW>6c188Slh6|H#d{R9;A7Y?m<Nl8hX&kgGwG;
zyq}uqUTRejDtl0c;nay?F+bFjs>#5|rBwGIgHVH7$Ag*#DXQf`ZHv!;;;BonXF2r=
z4dhDw6O?2*Uh<%|2get7f7xSx+9^(B51M$;)PrVBZbfZQZ9$csmV`wM(q6HgR|(_q
zd(I?>22|7Acp!t7qb;EwwY>+g6FN}uFAPe8%uh!TI(cv*UL|h>{Y?)}q@>DtOV>&c
zjx5m4gYF*u;>Bt&dPuidCYSc2j2CZt@U{m%Js3N(<8Ti~c<_z~y*!v62=$iyIkks+
z&_}L2oxUFQ^WZ%Xep;2BaxArIneh7_eCUBdf9eO+0n~vW3?j^IR6!2O8O-n_>JTeO
z{2YUV!{ll{4DS3Y^sxscJ-F_{4G%_nFxrES9&GYpjP%fhALY~@eB!~U9?bAyrU&E1
z93PtEfp2hdyay9JnCQXqpyM+SCVMc+1DhU}qu9HJJ||BOI<lP8LB~{?#`#Ip=uf9g
znv{Ow!7N$ZbiVXpwk$ca6n*8v9P-ze)BCrQ;(sFxn04oRFwcYeR_S+y1=Rg(i+peS
zS;>p!Mx(PtZYU21Z%SR}!4GnEJoxpOWC;)1%VqWU>6#)xd$2-QyW9vKtd#DR3a?__
zLVCEPVUF<^4^~_4uOY}_*KvL}*G`|8BS~`B)89Z{7IbX(V2j+d9vt&vs|VZY@AqIk
zLGpJJcF3IPNcxp5J=x{KZt@-v_F0*GJy?|FkXe;lWs@8S=pXdpHxCY3Ie&Way9bA5
zg|96lX@6M$dzZ={A<MK#`^RPJ%H2xmB=xkFd5R!8XFNDd?wKfmj&R<C>b%w$cv<h~
zH^+O4MVF~pJh)1@CijR3^;(+=e|d0|rq_#Ga_4&RuLsXOxZ}ZH58e+t{$}YtxvV*o
zWToAgJywc>j)$_7bFh`#n%C&aKjB9n{Nur6d1(kb9tRyySW$|e$~}@~PD`c-5!v3o
zaCi~*Am))zT^u$q;>?sqn_ykZltYT%*TZr~rx%5i94;?3FM3xiAZczd9xUv>a%~Zh
z*IeF%nb|(c;q$`ph3<vn#S2o)i?Kf^2fWDTMQ$&0c+JmJWQv|6JnuzLLY66+dAvAw
zI8@M!yk6w<LMB-*dVZe5><>XqVY$AAy(mJbq!&f4oZ?;-vsiLUc+IKES`vyrtkP0m
zWZj7`dQsMkeqOxiML93F6sj8XBE^eAX`%97RPf?NC^hIsk{8J`oO{Wuil-g^J*Cb3
z;H)RXR4>9_)bOIF7a4_XrFl`!iy5QB>0VT%V|*X1<V9sKs>snKy{gQ7lXQJi_be5s
zy6l0Ww7}$G20`l9@}jm^ewz_~*NZw{)b-*`FFJcs&x`tAyyC^HUNm4rb815`8WCQi
zHl@DoMPo0TkY#PlAq~pW?0@_gEN$sUD}t0ters|&%Xy8^#*4O=BRTE8c-@N*mebLT
zH!RLNV<(1L+(mYK+2rYT^`e`V+1<){+j4pldQ#u9N~Kr5z35}*$e_gO>&1ndE`j&G
z=<mfqxmdF58rJ^6i_{)zSB?hLJ>db;$?xk3eCWksFFupYEtjuO_#-byc=53pL%bO3
z#V{G#t<>R?oRmIcMcPNd)+)28`;J6-q!**S_|%IhV{5(opz>&GVS0Fs7t(msv~=OI
zUVK7R*z<gqabApP@&xK6>O?OxwXn1x$FjLaKKEjZ7Yn@j&WovDO!H!v7hlSp=cqDW
zW@c;Z7vvdU%p{0!n;zck4UgBtv)Ru%UVKCNiu$z|6EB6O|KEDibZhF*$I|9`v0+sD
zTxy==@O&@CltVtJ{oad(GJ9Su_rljLW04n2q|aJ-a>MXq$v+X6k8_vOSw@wSO6iYY
z{KQeOl%}M5p(--`6J0Y_kR_C}uVRAae^M>H#*4LHT=e3S7ypq(yE-}Xee!xQ*2#T0
zw1eDJCmW@2@M5DEn`GOu)!pO8UczR%^}N{X#WpXtd$ChysY%8T7X2y<ta+6W8-xn=
zuO(G77Ioj{#cr8_McqGcR;BTo+5-E$*zd(rxx~j)DmF|#;KlD=;C}6cUi{|8A-NwL
zrdB%}Dlo68K&RFjhrRg2i(Srkf67X(T4jj4-4QPid|OwJuCLWO=EZTj@x9pdX2vNm
zP7_X2FTHA<kvnl*=z{dNK^1|s49|ISo*>TKTHSn)EC1V|%4L}uFFN_~rVm%;+MOzU
z-HRJuT=SaG<oy?QpSY;|UtZjlZN!H(A8vVZ+lxFt<n`f>7k9mI`|#N>$#UG2wd6&_
zi~F+odht-!9{tCJzp0O?|HxK$sccs16FN`5_}7bPawBX?6<<D+%qoq_cEt8$GSAFB
zX)l)`*y!7-AG@kbzSHW7i=bIW9)i~gAHh$3-Ur<WgB<Y5yV~sD=E!pLC1rs$o0Cp1
zA97noV&?N9zYjq=1$-z-fDbPaB%v6gkPn3|rwE~_4@Z}n(^Z^d32I57IdElV3YYSs
zG{Z8~az4Chm6r9Hb0sa5r&EC{QzuT6m6Pm4$l?@2DpjUE-G_?g7Cuz+p|THkt;{Nf
z8a`CDoN7K)w>ZOxtU0Mkrxvv~wGQ>WmU*NP^?az$uz?RR6U1!jLnHD_mXkHu#y&Lh
zp{Wnee2^>KoTYNDrHU*P(Ux>t`S1$iRcad_S`%KQN}7zWtq<)Owx_<~!|PUQ2cP+Y
zfTVTwL0Asq&OUVUA>o6~kFGv+^I@qE%Y5kWLk}OO`Y_Fhw|scphe1Ak=rg~X>FGl+
zA9|DD@nwHcEq)(5{e5`XhrZ-~)c0g`@&&6FdY@s|_mUrw2T-N%K!T(V_TeKRKJnpG
zABNEU*oTom3?&cqVYm+?tXk5PRFUeV=!~}fEOQLQu~f+%=fij(CR;fZe3)eM#Qzz^
zXEddS&#lraR_SyfX816d{!HrE)GvIPMfj4MHNe^Auc%r5nM3}D`Yq=~dOnZgd><D0
z@Ev)f4~q!jTjyQOFsqRz|HD7{u-u2!KAiF4M<0IjVXF_@eE69;|Dmq%VWqU=!!JIp
z&T{x2cUC9Y&{<2B_T^YdUhl&OA2yOVQ#VonJK<Yo_Oy`XZ}(w`4~KmC-G^U&*vYg5
zKI|gwwT8Ldhdp#;$Wm(`c|SF)CkM&DSvgteVTMP2_=E7LReHo~_LvXHeK=wHC#@Mf
zWjWH$Ss%{%a9cKNAI{UiVwGO-;Uf7G^)gkuC!M_N!!;kS)A@^fgDOSR=1uY~YF57Z
zcYS#5!xJCw`EcKd2Q2;Dhetj<Buhm}{)e5+s+Bd&r!18gBC@BEpHVY8$ysNNS~)R7
zoGR7remMLH`H|v>(+`*5?0gYFG(X(r+*FSr&l9|U`26sbB{M+KsRmU#mcuH2&T?{E
zPA<Q>NTgyOKl1vKkA5L)em@HMQP9eK!T<ku2B}h*e%5%4`cce};&e*+QQD6ZR;`kL
zC^D=QN!>Djyy!=eepzaHmX@<>Wi?yjf6kcXNAmxaruq@~qorRydP15X>3-DmqqZLv
zt(<CvO4Q1JRI&W3gsk?flQXC_s5Pxl)?wJtk4A*L)OytVel#FtUB{QmO{p(ieq%zD
zEamhzBRBV>#s8SEkl*m5qaUx5Tl?{vA8p9(scorpu66|J`RjxZ)U0dQ$&WYv*!`NT
z56#YgboZl&A6*!BrFNrc^;z^SKi;vNxBcj8v9#aI;@;M5NdCKi^rhd=kN5m|pPY4e
zsUlm)06zx$u{{TN<iH@m`INOz$9f$f`Z3s#kNg<o#}z-W`Z3gxVScRlV}l>V{TSiL
zG(V>M@v$ExWx|iwnBvDMKSulUOZ(6`KgReG%bl9>L-Hqn%o&|NmfCPo@KZm;ltbH;
zI^K^7eoXY^*tF0jKWhF{EB~c#Q<kL&eCEewI-mPd|FG$ZPW9uhyQ%9QR*}=q@MESQ
z%l!DkZ@$z2g1Xp`Sp;#u^kcRkU-|Jhow?LG)NiQYQfJ<*F3I!!n9p#59}5ZJ`SCp=
zP$MJ{D!0p5TEwv0!3r%}B}tVfek@+peJNEMS?<S=eysLmjUPYxvA>|U!jF~G$(z-G
zmOJ8RxzZ~th)TFhrilKKo7D#n2udSs<thva%JCmR#x}1nu#V>vkP~h6W0N0$`0=OA
zbC0yme(d#QpC4QN*y_hNDGi2ym4)OA%MV4i`*C?)aEG*0C+zTq#oQ?~-z{U8A4R)m
z?Dm^K_1Qxnn^JYZ9|!zsm=r$jN6As?c|zg3r)nMaV^C7~H|ink?^JnrBR@)!AFCYk
z<ES5}{5UNaPFBK_wENvU9`~ESV-fDTJne)Z|Bg&QN$uFb?ioMM`f<sRziXtQ^Fz)e
z#|624`qw>A&2lcXNZx8)mYFYBwO>lrcvAS9AJ_e8uA_yH8-DyHJDZLdblmjgmLCbf
ze4K*Ye%z6B`SHw;yMEmB<B=c#_;KHl2Yx)1^U9^Un<{I&%Cl7ai?!P}Og%O+W!ob2
zzk_`2#}hxEN>iSsE5}mh+hIA9FQnvLog8mdJ5zSWI_6h(F+U=HL}kstkg;}3`ng5j
zH&-&hDUM5@f67>Ltb<*LLq`rB&*^aLaOv>r@axcYxOI4Rcy;8T5tPi=E(MEROg^+J
zDBsjqTbSHzREn;{&=JtFYj^DxTY{Yq2S;|QHF-vO{mkUQ>x7=ykyA$=9eH)+(ow~h
zlv_7HT9>i3ADVJ|Wi1&+K51M^d!-j((a8d}>U+|bEe<a^pE~e<av>dsb)@U4sH2FE
zqB>sGQC3GW9mRD(M=2fg7aS#Yl+>YgOuLhO;-jz}&Qd9IlV*KmQd&nD9X(3fOU{zN
z%4L2Z_j~E`<#d$S5z>*Oqk@j0jwBt)I_7LK|FNMQdYig3>b|3bMdv3Udyt%}Bdo)=
zuVk8z9S1}6b_L&Cn%ptkO}<hbQaDseM`ay#b<~q#>Zq!trjA-Vs_F7MAu@E-(DBE?
z)I+y|W#0?++z{-0J0vsq$JII)2iKCLwvIZoamA9eF0>5Xc{@~JM*|%%>u9W_p>FPP
zjdZ-E<JuiFt?96|KW~;3s1OUzPp{HMM^hcmWCmuW$TjkQ8+<pZ`m0^SeFs%<siT#S
zkvc}{ctyvnI{HX!I$G;^O-C0UU3Ik4(N@PBIy&lTr=z`&*L8G|E4w}Q$i?96zEDgH
z?JtlzWNg}<0->iR(iUd=JLz~+M`s!Dv(!Qe{kAu?P}S5un^R?myXokzqo<B{WZHGS
zrQ>b6g0*Xf9N|G1li%2s+;?v<tz*jV-!gjX=q(qqmVL_NpmD0h`lQgtu^nXc`|9YY
zW3Y~obiAkIeH{aI43r)Yu`Ow?_1E!%%x8K?{;+@9J;AagQid(_blDReBy%X&Xiaj)
zlHk_a83#Luhv*o}b@j21VLFCOuX5HLq2qML(EcrTCX5IjH&VsPy5gJq6&kH$jI042
z-{=^t;}acIbWGLpsg7|vChC~P*4m^y#_O0MjgL)vxWv4a(#~hH0u#xTb$qVl*`nlm
zm1;@2?~U;0n{}GxOq!-+x{fb&%+fJK$4t2#Lyf$<ozETxHyr99Uu?<GV7}BbTgO*A
zzLv{mOS(Ed^yEOOVztz*Ez<HlNWC&9IC4zrTOD(C{GemGj(Ixf>sX{?v5o~gzSHr&
zj)ihZ9LZR^E@klCj6KtWvO<R43f9^bl=s3*bS!26m&x32N{ue+e)R2>qT_?376iNQ
z3jV0$CmpMF{KCcdvyK%yR_bUuw1c!G$K7Qqtv8!@<!W92*&WtOQ*w5vc^3Hv&XGo;
zKfcY#y5k0Yk+DI?Mja;%oHVdW$7VSUq|WHDMaNbhG3lg^Z92B=xTNE<+*7jo{1rN(
z<D`yXb?jt6cj-8$<G7C9I`-&jw6xZ5byN1TXrGS#Iu4KzQx8&qqaLFEPL+$h?4bE4
zJ^x_%C-n&RD0OZXhkPRE?vW;kobHs|Cc*F-9cN{okZ;y?h;vTI&q?jh>*fz2<=2my
zb;1|O5?<8t@NgX|y&`MuPVnr_a{ubMO1`G!I^l+n2ZX<<H>tO%Qsp+`4)v~%dzOD+
zrs!<4B*^iQ=HJvu)PHn5wlbgScxtiK+IPOvGaZ=(;Rqp0J<&WlA-9Qvbq4YkPO%$U
zn>Xw-pc!x&a0*-qiX(@B+knTw`v&?O@EY(LsA8b10lxv=Kpq2m4f$ne1^FdIld@sM
zK)^r_1FKr*dCovi1Gx-5Z<rq%$oI3d%yJu$Gzm}Ec5G~6{%ekW2J#zNv>_$MKmh{<
z4U{!d&cF)>3K=M2prnDq28ys^aRcM#+KL*uUEfiRPPrvXRr4oFo8sK6SU?$ofzk#R
zbWW1?OG(}81&Y-+zYviHU&g?T()s*Jxi#}^6nV&$iscO?v8f7Fae@S?m25d7%Skm5
zHjri@-7vomscfL4f$l9Fm8?w9q~OepK51lMbI1DSN!1KgH}HyqR}EwsFop)}8mMQW
zhJl&}Y8j}_iggTh`82=O8eYeo7C8b#lj|F3V3==|S{Z0)ppj%6Xv+MT47_ZhF}ZMU
zhg2*#-6ksB%s_JkEey0|52Y!Y8JTA(l@ZAyp>XNij@AZVGtkvQHv?@9v^DUCfsO{+
z$ptmg!GP3#ou_Er!mJ|WeYHjEg-!Xp=eBpE--Y_7fzEPk=Q1Z;+Lz4qN(Fp%9Ni7{
zFz}9nUQBz-z}viVKfGJ0dbw~<>Hm4#y0Yd!s_ku{4|Dn%=HtP;<i2w4*qSsb@ScHw
zTr<-D4-5=2u*ASp0|N~VGBDY|=Z5@v$*eNmzzDW5*uX~yh8P%XU>KbpY*2Efw>#^l
zer#Z*fiVWga-EDa<c}}eM;nm7O?_lr)zth=&a*m>PYg^jFwwxLvixK?wLKN`JIAxZ
zUh(p>oMb&ul0`c-`7@ed&b7(+s<Ke0NIM4R%Bt>GWSW8L2EH=zwSgH1W*YcXPJN{0
zm?zGcH|GDsz$`=leW<yNu`4J|&6c&=GdVFc*-<XMtARPIbJ+Md2EOGqiX%UAkkWYu
z=F5UN@STD04J?$Kx~W5ESb9GCL2wakEjG;W<D|;FwH@+`DW_Ow;0LadRdVV|ssDTx
zyxu)!xq%-I{KP6h^IEKs<<0-2VI?oIOq%rY7bdJWutt_mIdfsGCH#jCN+?Bz62bM<
z4F=@5pc~~?K<4mvs`&Csx5dC#1KSMDIn?2hY$@Zz+YRjC&Qo|<@~;M3tq;ku)4(o^
zcN^G4-b>wQ`TGqVu=t>X-z;8}v!XQqyMe<7{xI+-yK%(8QJ!?zjnFaa-tq8)<Kg3S
zIeKRZ%TZ);_frN=%OnKwa{y-yoHg)L051n{&cJyC&js*&02d5gH1Np4KL#!txNP92
zfm;Ty7`STShRnvp&@}@m_5`oXsGp{O@^kR)xb)uV>Ilp6mx1I8sgiTsz#Rh*3_LV&
z*T6jk_hnBg75ctW%298sJS^q0hkJDlM+&7(nGnn@WB=QLJdw(>lxK#=2A;@_1>g=K
zHmc-P1J4X(8hD)H_}74Xn$lm(h!}{<mL7mBfO`MQh{<-nG+6L%YFsAs?c@a27BE>3
zJHZh^TK!ZB+h0$uytw<X>%#I~h9>}T0R8~<fcYT0>}*M201K}s%P;ptjQ|1x<OtyW
z!xRZ`{A2d8aK2iT#s#Hr&H!=+P%;1&K<)tY1n@!tg#ySMK)wK~^r%&U74ypsxAaK3
z=Is<|r(gif`=;bs6kaf-?xgdng##!WK(PRXi%<t9g2$(Miw965fFiBxeGyCUdOCRV
zYO*i_C>20b0LcNA4xmf`WdkV3H0L${ivd($RZ@K$+!@L!ACMpHg(?IP3_yN1DMQ=#
zRybGAwBpNyZ5D(=0i?)m1dtxUgF~q`%7#({2uo{MllR<7PP>;p<8ZKI0F?r07(k-{
zR`yQ$=0UJ>05AR&lA}rhRms)ljD(B;Y6eh?T!R{HS!DUdP;I$745d~bLS5?o$EhRB
zrqmCh0mB>jlO;i%4|}J4c0APZ&2ZxYngsB103!ov8bGrEx(CoBfaU?T2%vocuLsaF
zfK~yt3E=Ak!B+x!HGtLuycWPWi-I35%NVjMSzhJk2ix_FSCIzOi&t+OK)V12*T~qC
zH+AgoWWOWSA%Hgmcr$>`0dx$Y_S=Qr+lzDx;9}wQR*Sn2*;Dt?&30V^=o-M&_MvV8
z$QvAaAgnnfB;mdKp$~6{-U{ID0Qv{;fs_XDj;x{p`UcP|fZj6mvUmzrX>vJP{witb
zd%;@^YN@+Hary;td7%Bh0NxMaKZiqYXNOd)_VUnPV_^D<?=l7iFff3R0{B0st^-Pn
zqU*wv!{pFmrh5^t<k_9snI$hSNdW;7Q2|LJD~f_jmLMRK1w;@85hdr0BuOGsq6i|A
zQF2Bl3;*pm_J6)}>fCed)~i>!W~QgQyN?4s9q7e6O9k>?jq*oUwJDL|tzt{gMw+&a
z_jRD310Oli-+}g(GJ^j2*;cU&TO%EBR^o5x_vhq%ygTx-1A`p+!hs16eB!`h2k+iW
z`^<qM4h-ddb6}JM!yFjyzz7FMI>0O=*TqISGI@G!JP&tGiF7{M{@9C&(GJ{hC-)yY
zuxMIzL5GU_^bGz~9P7a64xV%Z4^cCWci_s2Xp%qdADQUDmt0T|%ywWB=cEJQIPfip
z%z-H!DF>!f84%%@D79ED)Hhb=YQ&>Q8H!(uO><zn12Y_$=|F{tH4ZdLbbCHgbzSVY
zX|4V-s+7~CT#s`cxcWtOo&)n8m@Awjl?5ENaN0svRmAD%tP|a@&&~R~bbL&sT1z>l
z9r(?GqYf;0V1)zwxuyoHD;@aGVV&(<*Eh0?L&H=04r~{)+JQAm!uP*8u#R&noc+B6
z>mAs@<**>~gD4x>(!&`{+T_4yQOM8#7~Nv?A05~#oWFLNv_pLEbYPbQ?M~#$+u!<V
z{)z3K5#KF4Qs8!Ek3^~LbzmQt?Mu<A&ceh4+yt`I8GaUWQ1BPQLk=8v;8)>CILh0V
zq$NMlf9K}U#p2{&_BhV1iMy5)Atz39^LOBy1J^nK9XR8_MF%c9tZ##d_ZC0vz#k6$
z$pyH#_yrNq37!|E%~z3>268@!d~YP>GN*wgT@{=&EuBYMm~?|1jsy9e$nV50&L{^S
zh{0bD{LRfXE#=VnHU1Iho&)!V+~MS>StO;e?f?Bq3eN&jdFa3+enyB{pY`dFISuTS
zX-`DV<+SRb+ldq*<avbTb>iCB5k?sbIN@=^>qJ4PRZ1Zz3Oi9m%-n)S1s#G;LFRIa
zanb`T<Fj?e3BT}wU{EmGcGU?I&9)>DJ7G9c-HB(MFr7$sBF%|(CyI$pY1%vSl<?w$
zCG5Nq^0Z({CrSxnx3E5Ch4X+@c_+#VPo5o$2xkLn6LliyMBIsl6B$k%Zrmb?B)l4&
zDV7zTsN_Ti;fo|!WhZzdi`lD)$b)KCg;W!yp5?TDm5^lHN^K`<*u16_wS@DTOoJmS
zb)0xsqR%<;yb}$asB2r+bE3Y@S^0*-8$0o$kVb+p2+qD)iN!S${*n`|dlzRkiLW^E
zsuL5P_|l1HPBeF-n-krgXyL?bPQ2+v2g%jaiMCF>?nEnzTG@rPVfF@AV~;1w5gFP!
z@rG^FUPz80PiMU)#8oZ!j*zznJIZh~<GW6Da-y>n?>RAcXrhbg?>q5<ZIGNEN$e_l
z+3Fs=`0vCpCx(mC%ZZPj=rSq)hfef%qK^}Oo#-z~{RDY*^X!JmM^5XIA<w6cybu{6
zIx8?xMEW1(#3yWp3?lWxVlc#sp+cxL;|M24I+2`9wE0w$#yc^}iP27sapE(!!impC
zU!87sQ7u`R<3vev&XX@BI>Bk3DNTx#oS5vy0w)$a@s$%(oS5dsbSJ)cVyaV4@fC@G
zBe_^Q!?(iug`eJLI5CskR9ebh5ob9uM+i^%%@&fJ*yA^4%yWXjPx%XCzVp8mgNvM4
z?8F-CPAqX^sg$+SiDldXWpG*6a&fYP^Dr&t1G|5|b7GYftEKnYIb2h0>^djD7Z01A
zSnsrc9Bq)iOiFgzMu~3vpFZqeP5se{txmk+$E$v9qffaKyWNBBPV8`ErxUxJc)^9n
zF8t)gZYOfPkmAA~C-ypVh%3~IeNOCmA{(`T;aE(I9B|?wyKz+HXQy=$n+mT35D!j|
z(5Azl$gfTuapESoStovT;;0ihocwDh{<|Q_A5I(-eq8W`;7L36loO|gpRtv*PTV<@
z&Wu;TOaIe}b55Lh;)2t<26EYnD^6S#%S(b3X_@3!77?#Gaa{;cdnWx58E!jq*NJ;h
z{3WUM|F@8T1n&s)@1FbIaye@Mrau(r%h3@AW*;#p=aCctI`LTaCxT;36k$>>7baXS
zLz2gZye^b>p^OXpT*&W&;)3cz0T&irinv^GyHL=DLM{|`p+={u!v&|1B7#L-cz0)%
zda+%RIcpNxbD}p#M^-J3d0bd$CVVb_UMIXR#Qutm+mi6R(A^s=)~!asg`f*042#~0
zYA)z5q*8Gq<U-hmmoG(37YrAMxY7=fiu@8as(lox_)hdsU*but=u<8fcL6Ru?LwW|
z(Go87FOzxWeEO1B(LdfwKT#)M(uGbxMoMw2_!Bhv>7@jtWnC!eLPZxU(SCKbybDoQ
z%!P;xj!}_a*Q04Jq`Po#cw8%#M$B*_?n1(aGuPthUD3s^C{KSqT%E`ig<=I4CVm=e
z=gp|>!sA<s?jxhmxKPD~s%*%cv1%@4xzKfItoG>GbH^hEFIB6~p1f4;%IauVv}QJY
z&xM*U)M9UMkIvf`tuLguU>(6{1)meFD_GCP|2NZU|GWzgTxjUR`dL=qMlSS=$4D3|
zrzKu=p$XgWMjkg_a-pdUgIxH8z3Rd%F6#i#hc3M8LNgcMa^Y<kn!C_K^fv@wbD@n8
zTDBC@O0cycCvaOk^>rcbI3?s<5bfK$kYlI5=|TsaCl4ldbm4s$K5*e3(ciUGJGszV
z_<Mpp&O}#Tg!d5aD%eesN!^9`q|lzidkK~hrMC-xY|Fkv`nm8C2i=7M68+dt9mqbp
z5TQc`7CqRSZ`jT4#f70R40B<!3tzb~T<pIP9O1%9A)g9<E;!1C(JqW};j?6PMfzA5
zX3xn<dgf8^akf65V==a1QlG&2W9whKFv;e;Yha2CU%Rl(h2<_x6@9u3GhFya__wy@
zwEyuo(}j61%y(fHi*{j-%evq{S1gm=!a`Z}0v8sFxI}P~;9|jK#aQ#D5>48#u=!RO
zR=V(=3#(jM?ZQUU*9dN~ZPp4|C-^-lr;x4RSlyfSM%*OgW*2@CvPF>kkN;!5&4ukQ
z>~LYHh(8JL5@cs4y>T|~bzz?iH(a>s!hRR%;iL<vTsYvu&n_Gk`@=5$>cTI=neov7
z^z#uHj@tTfLR#`<l&u^Sa@>Uzw!-F|7JlA^3)}>RpXHJi@~7ar{}~bX=S2~(xNud-
zB^NFW`Twz|%{5V2x9hI|&exIO67gRbZoBZ8@V{NS>%u+Z|G02R$p8Df@4`b-9thGy
zax@>=^?5A%6Tw_=YZJ&Vn6%96Mm{$ly79=3{B9I*V~QJJyHU`MLT)s2;{`VgyHUiA
zbT^`I>*#M$H~ek{gge}D3ULWC)$N8yxYrGzkaTB3>cu}VObm+hlpBf=)eX%JUAQ4g
zn~)n}oB#EhmDiMLs$elUR-Q?>9J*0L6u9xU8ztR%W@-WI45dUbCs^8zGD4`Ab))U(
z8YJaKiP(CY8^<QasK?yMaHEDBHQk6yYDG6Hxsec_Y1>y2k}R%rk_%Q5tm;NJA#|7}
zq&j=)gD9if68(LORnJ<sO+6Cfbp)Rkd`_^gAdT~UU7)_rpLe5y8x7s)G1>AnK(MhJ
zFS^mkjlN>m#El#`-sGo%8%^DK*^O63Z|laZwx5=6G_!egH(J>IH6e?yM_buSYd6~1
ze4teRb&0kUe8Y|QcIvO6T2<=cMrTpp5`0^*qu@J&w0YN!PB#Diq}4g^x$(XmAGp!Q
z*1HSoD%j19svV2ctcM#t-RLFahqmQ=jZ&D@n=RU%An7Oi7lI$T(cg^$ZVYteGf_Sk
z9L|Y7wZI@ZK9T5PH--vf_8~%^F$xc}mE|(EMz}H3jZe9JY<;wl-eGHQk8$Jqm02VV
zW8L^%lEw*+x9#7T-kadYL{Yx9^+|3_7XFp3?3i3&svF<9@q-&%MEur`C2lNrW12*#
zyD`I!nYR6WA+rQ$yD>+|Tsw818+`IivTh69SSb1;J9V*;W1kjS=EjHDEVH$uEEinC
z6=z$1=f*1Gt8HbCkj-;)m}{Nz?*-QjZV=q)#wH=O+3d#g`qo<e(T%NcoO0u|8{6#E
zU)<R4#tt`j+R9!xcG>(VH+Bo(V=Du{vgX@9iS8FX;Kt8(>OnUgrK`~3kSK@U_*KXe
zu6H57*_KCz{O-oM9mQ$Sa9orVZk)7jIynlSvH3+e&f5GBH~tiUPVl^~UvQ(kRPT}-
zm)*GH##KrB$Bk=3ZrPUCh1_uCrmeJ-jJMtROO(HDy+fmvJHqeU$~`yk+x&qWQ`4-a
z^sgI_x#T@~)q^K)<nkcuLCk~P9;A3+c&u$aj|X`@@Cwf-SX3~-U;z&b3MnL5Sg@M2
zU=bnAZkD$O(cyv9R$M~d9(Zh}SI4405Bw4h2<jdL?Nr4BRk&s=AAfDqXGo%9!91Rz
zDJ0c{VjetYTbA>nxCbRXfGDK|pB5}>+i<5UExe4al=a}WOjMRqUc`t8X+qL%o2s&w
zGd!s3K{XHJq9+711uNK=6@^stpt7x0@!(*A3_8#9pt=Vyi2jUVO%G}b$rh|3SWI@U
z+QRF3P)7)}KkLDB!t2_~*>K_d!k@R51|BrDc_R-pA6Uz_u_!OvdJ`cpdC*kI%eKy)
zs+kAPJ@~?d2_CfY;584rd(cA+T6*w?2knKo5^OElMzF2m>mIZd!a_Ogay)obqVIXo
z!PejP;4R^A3w9KI$4+G~=ItcW&VoFh^1hG{Y@03~bhUXmA^SttPTSLik3AUVK`#$J
z^q{wG)8B(W!u#4vKMy{#`IY3yr9=k`7Lz)BB7BSogFP7H!BB~g6l7V$JQyx~gss$c
z6#P{9D8bRTzB*L+GvQ+eKezR99*np74-V`5%tQ|sc(BleU9-}^^k9+)lRfy#gDD=&
zwk^LFGTnozw(^Y!-`aed2dibHrnea)&h%iGof>YGGDrAaTbU<hzTosJ1s2)*8V?o=
zUn02FgJm8p7yg~#3PF~#QplSfi>?x~+SZRXOj+x}IuE|LmCZudd$7S)HVWC~!I=z&
zt{8ssV2g-9+BRD~*e0Ae0McNG2Rqq69{l7%$d9leyFJ+B!6`0b5B7Sn&x2n*IO4&6
z4-R;&hi@GA;Ad_rH?&_oxRp14(1U=d@{?-`;vo;-uM*wXAfxyXRcQJ2^7IEwvwrg+
z=V9yLJvi#Y*1~Cb2S+I$^WeA#Cp=iBXP)$6jw8-vPD>9Z_HWJGBQ4{M2WLHK>&5F{
z%%7e9hX;kdC?fn%56*dT-ec((xU!B%AF@^+T=L+u2Ul1n4{l59RZiU#xvqO~O`^2_
z>~yXh+>LpGXm<Kd5AXM{O!AjCZSw!)!5uOC+rwv=RH4mX5AKO_U;NPWkCs*F@Bya;
zk3UKDkq7^J@R*ywSmu)&<`T>!m|HN#YyDJYRhcWVDECGbB+u_f0f`p$qL3G3t5mTJ
znxqjKih7ahMFlS$UO2sQiDl3WMTpzWCw{=|g-@b>?|-%8)hgx<h{)QiUT9vF^rDp4
z>MPxgVnRZKVL|GK7pCx3!SCKoP<+ZxEiR;lAOxTGV*9*w+Ax&%B5GTf5mMHRaze^`
z5fPFmm@b&vHO9b<F^Ogf#sw3CNi%j)MQO#$UR3g;vKLjnsOrV@UNrEcnipAK)bgUX
z-O}n_JR>|?u!a}o{>+u^$(mm9U?+#Wju+2*QP+!lUOXpeJZ+M+;Q(<OBzb)=E<I}v
zK|?PZdC}O57roY9fiFmwg$K)X0<dqBUEM^)m%M1oT+e4P7iUP)&nsTM>P0gzIPsc`
zSqs5ZP10WTqNNO3D=%7$NQcbTMmWjf%az-C@rD=meR$r7_Fm+8@v9d{ym-@#4qi<4
z;u|mC^5ShT2758Yi;iBr!<ptqZ!g{zKV7`&>P06nI!p9D!4IS@@3X><t=clMdfmLd
za%kOR$!HHRdWvN)!I9HL6qQMVoS-!``-u3F7yVi8owU9Z?PvGr0EyD<V<7{*D1F0P
zWrHO8iQqrmta68XG0clEy%>N7!@U^6@$zE47>xAdQ!hq&!Cs~1Xu;3C)^cWajI1V-
zv0i*GNgP~0Gl$9-5}hE(sPS6fiPFhij}~K;VUi?G_Tnoqrm(%X<-N%zcx9M#;9D=I
zdGVbWtGt-*#SAf6;KfWSeU2A%y_m&5e^PF?otM*Qo^amjnJi_#7kqpH`9d!id9m1w
zC0?u$o26bX6Jm_Z#Vv?7%O#rJlvWDoe51bFi#1;C@M5PIYrR<K#TGAql%(&y*yzP3
zFV;(RgCMgcH?+-O{2;C7u=>1wHdhMk%+#$i4@tIh@p_Rgmr?fWE-~2S#a=Id629B^
zNhkZf*zd*9Ttr?Ruyt;d$$I`G%3)hSB&2!GDx;b>==nD<j(Snphax`w?!_@L{_*0D
z7stIg;l(*G&U<mvi&I|wDH%_DaYjgu$;DZ>vux>0R!`E^AEFO#Uy)Jv@C7d}dU4r{
zE21Ym;gU4`h3EZOy|~6v@ZzSVUYEAVnxrLH?k$-@e@W79&gA@6p1Nt3^0#C^*s3Cz
z_FXUTi9sG8?hAP=_`r*YLO6VnZ1OMHf>i8@7rA^^ZzngC+&-j8v{7~iig|s==R<xU
z3iwdaXU*s5!~+Q{#)(}>j5(Q$`rz=Pyblo{oIbdGFnvh%!7T=w54sN?AG|*JeDM1a
z^g)p%x(fLI`z+w|spwx7od;-H0iNw7hD0%Z2n!k3x&TE6_F*v}p7Noz4`qBP?n4PN
zDCGk;JqUl=XYFP*E-6vY`Gd=2j22PyuxJvlqq07f6SL$DN%JAyhYCJa^dTy_XqF))
z=KF6Sj{A`CAydSr?W|XOaQEhVtmH#wAF_R@;X@Tktu9#AhiaTubqZ!ll=D1U^fMAA
zXJu;oP|JsBS%eSl+uA<Vu~R#=$V(eGq^>CS1e5JzMy{g<J~Z@Uiw{5g(8z}ueE8Id
zQ9d;G;YA-h`tXhqO?-IChjx;;sShvv(A<X>KI^kS`O)x-53kB7v#e%5aQcxjyyin&
z$<<Ous+C}CQJC7sXC1B}d0iBGE5r{1egtq(@~5zRIX=AULkAz;5(8HIZ98wW36nad
zzw1LMAG-O_-G|PS`hnnkg6|6!l_l0iIE(A*11ov+QrR9p^z>n%4<AcXFCY5)(2wo%
zp|=bxN2iaSiyxpL2_N9IK5P05rxQ9%PPRcleB#3pABOrc*v|EEatRuQYZ|=TJj{pT
zK8%ntV!yGyY~x7Vk{=(VndHL^A7-+2AIADH$%n~4^co%dT+F@@949#52To(Iz6m}|
zv^)PxN#a_d^RIlE;=@!QzVYE}_F;M^=SD%9KU~Gh4*b>!uEA-Ni}jq&l`_Q|yIDTW
z7V&!@=FrB66+W!=VV;N!eON@|!vcxYEd%?C85jGo)Q4q0ERiHCKjp5%?~^3UC5eO|
zi{DA=Y9H1JStXd9;cI<ZCsD2`eh{;Zm}Na1>%&ITe-PZ{!)76D2){`tKWaZrsj}6F
zZ9e4o^A9_0_hE+*fBJCFhn+s`^5KvVhkf|ThuxBQpS{Le#2z2^`oJDYew$*s``K`Q
z5cu%37}MsU55EX!XEOS$4@bD$`*2Le-)wJ3CHl~rLYw10obcha4`+NhDFz&!Q$GCv
zcPD;!)9kEd`9u1R2FX^R_u+yMw|)4_hl@U3lI3&5hs!=(@!^_X+*QfT3CWCfbzLR{
zw|a7ho059VhrH9Q51PMy_=lzY@X&`ll9ViqNq2p?Ckpv}A)XE?k9@qJ5xM-9=f^%g
z5uL-$sI?`^{7-tw<40b<_1)X&M?OFD`{DG%<wpTO3i`oX74};X3}i-TFC-4RD2n(|
zRCv;f!*5Nb<m7bQg))mrxYrLZL#DD6zmyda4Emu6Q3W+YU9ijI2#pOtOh2mo@r<93
zyhAZR5`JX*@suCM{V3~4IX_DH0Y6InacW(pWS_{>ejNQQQqqqVZ^o#Qm-3_c`Y1^m
zKSuVp6y8b7)bf5r{fPMy@gvQTAG=v%q<19UZ{6U@laoDbWR&h7$&jS+3El^Y;IIhE
zpdT`JT!>WgqoN;`*jJvks;tAdNM%1R&52YI{KK2}Rq2dsqGt*EMnxO-j%52$!;k0v
zXy8XpKj`OKKc4erLNHp(kJ^4L>>Y8<h}5CM*vS2%5gOF>gC(+*dg7<PALo~)zx-m9
z4jW48FZ$7hqgFiDh;8W|c|q#mSbWlwoj~Wz{*oU}#h(0SsU(e?`O(~uC4MaRqlF)@
z`O(vlUVgOnqm>_TvGeCgTKn<&<@O!?*1_F2ezf)D#k#TA{oq|}?b)}p(%bp*25WUT
zMm}t8lzI-G+>N{`*nWKEoxJ64KUMB+KlXNybo67&{rEeA?+SJj>@3Kn_xyNY_y@Mq
z#gDFjbdzXzKYG~u->nPKzEn!uhpdJlU;8oDk3N3%_2WxFcz;<xPQN^9cY4GJ`tgw;
z1Dize_Q>wfnNue^K(Oqpnjf=!{rJR>!G7z+!bCrYaGvZaFw~D>evIEy;CC}I+>cS$
z67LL3NuQTJf~kJ|GB^8Ec8d`5QGSdTK1T2}TOTW=ej+x`R>pIB+kAqMR~8rSwxhtJ
zYl%rx=gER!2~H7QeyMExdkH?p_Zz?UEZ_NDO}(Pu3QiN8E;vJQrr<2W+4P?kog;j%
zAM=Dvt)9W`^s_*`EficNxR^8ZRGh0|nIFsj_}h<vxQ_f->Bm93^5Z){R{62nj~}?+
z{aEA222RxNkuMiT*ZQ%Z2Y8;Y!RR_az8C%6h&ZGB7KYuY;v4;Z(o0&cHL*<`%I*gF
z7OpHm?-k0}FG*Yd*yYDhbi$7SE)BnRxPph$ce3cEvFq{Jxsg%k+AW^<`cZ0pbdPWr
zQMXp6RgfRqi_%FL4oK3^f`!*d4{=fW@uwf>{P@+6Bch+=5RZud=Ev`Tu#(Jm)F#LL
zIPS-QnNj9FVV6?s?dT~^dx@Um0;wJQgB!@H_*r_6B$%DXJnTVoUTm)Valwy^Tx))8
z%p0YCnQIU=#{627{0iHC%IcqM+-Ak#h97?kx#`C(KW_UmCSUd010%1kiSj<y!qcL3
z^3B5ncl@~PM<{@B0Qda3Pd@>80(juZLvH2)<O|@DY{*ai$Q8i9emwT$$&UpuF3R2h
zW$VGVBZlP89Y9I|c><^;Z~f+NO4Y)-U0Y)L78J-IK!E@X2T&w{VBG=*11J=*ws(f)
z)3&`Qa}^CB<8m%%0GGB~&v|wP@cz#9A&aA~0G7n9A`W@27v_5DLGt<n@Cyk9aL|4$
z+4cvy6cN<`v;cIwl%4l;aeh9SlVb#622e79QURn&YViO{1W-))Q-U;RL9p|dzmx0f
z0KSY^_d)OQ=Pn&U8MZNi$^n!Opj-eI#nSwsT6rNA0*DAnqucW_>gfSQS?&kb7-B*)
z1ml7U!OQ?|4o}d4rSzR%AYFbRRSBSK029xoKO+vS304mvt!j3bAdMNqb91sKDLZU+
zRILDNvyCQ7nWz)Mv+PL)A1HV(fVu(rg761XFM#?1#Ph|!4&eC!8VDZ~K*InU1<)pd
zwgJ2lz+2lRF9y&gfX2eB&&{F2@KOM;1n{beO$A>Tq*=27cq8g-0kjODxp3OI2;jGp
zG3u?vjFqh2J2&;#5~con0PO<k6F}bp-Uy&Q>m0xb0ptYmW&rPs8SOg==|~LV?SOT}
zj(HiF#PE)!vXY&IbPnJ>_WYp;i+;4Q8L>+MT?6P5K+gcWi4Ajg=iFY{Ea`#uB<U5v
zhe8-l`s^)b(L+DcKM7!P03QkOAHaYB1_tnP0E0wfeQ3$>O+G7-3<+Rb>*y#+9V&d7
z;Bdhaf+Gb#6)bz9J?%$}eX>fQ$pDQN<fwfvWSro5!7l_S2u>9IQgD*sWWlcjm?DH8
za#sjV<z)Dw<u?I*%R&Q~9>A$RQCAR8p3k1aWf;Ka0A>a-D}dPn>n*pZ12_}FoB-wq
zFfRb!$@_f(>)A5_ETDlX6u%R)D1gO6mISagfMvp0*fz@p=sv=_7norsEr0%xui`Wo
zn>B)KZTocr>q0t>Hw3UTfZuI>QvkaH_$h$R0sJ81mH@WfsXsE8&9?=Rds37hcG$|!
z0B#K~n5@I@01gE3vn1^aV6TvUw&nf+wroozEe{6ptLVQ79<pr?2k>}bI&F@K@|&$6
z<xJb~U+azqaNO2U2sz0<w-xrutGQw&`$WzL@J9fDaw)aVJQu)uA%}OxUay<gdRFuT
z=iB?yi-K+Y<tCs1MdS*d1aLiotK1Afv6Q81;s&=A?#V&q30f=VmdxRY0o)cs<*xw#
z7XD8FcLKO8d~%5*yhG%kZF6791Hn<g1amzS{x91r<cVM|DT1lFh0N?&Id2g8f^bSS
zznyw(Mx=o7f`Wwv3)`thf+%WpM-US(#;j`3u+E)wX1as$1hH#g+#5uh15qls$43G|
z1cRugpt1rb2sMZYK|BmX3qlW~M-V-O2n7)iqDl}|gD`?HgD4RMg4UlnsX^@QnNo~Z
zJrybHjrIOJ{!|dWyi+`gvS)L3+M3R1H9s9hEQpMt_1xx?L6i!jbP$XGj4;YjhL%D6
zm8WJo!SaHPMuemZrUwxfGRdgMq<9dCAS$xjL5%t+zIk=ZG9{K7M1>$OU5$NsK0#bl
zrRK3wvC2X4ezbXg<HTw~WCby1ZB{M8>Os^H@{C}%AfHx21BRLsoqDNk?I7v|@oW&!
z1yPsVzUZ_5isY1!mz<ZVAH?%Pv=8$4HQ4+HLA(;gt3fmjqEQep1hKS9<tCEE)W$))
zD4aK|GWwG6ra`<MwEiie!b67q0p2W#=0UWT)D}VON@FYGuL-skq%kl5wie#TR(4)0
z`+5-V*yNyf)q>u5ah{fR{$>yzf_OKGPC>k7+jkW5wiwgw9f{WISDd_a5bv>8L39b?
zecO!xFEB8bp=%JleLKm!i9z?IS;xw~=rD+*K^%X*Cch)~4x(=m{etKd1f$;eapFg8
z7w2aX6N4BK#K0g11@TD`9|!;YR$~my)g{HcE16-ih@%CE2o4n-COBMhL=Yo|(Ed{)
zqk@>(*m{b{-Gymmg80l%9V_H>!Eu7)gZRQuz1KD0mqAPlVtEiNf_S~Jb&J#FAifG>
zN)TUjaoLtrh0GNECWvo^OtVv`2QkCu_39LvC49Ev9KpGQ^8{JM@+G+!*nFXoMO-7c
zvV;@K=F5UOA}<+PysIcPt_<QkuDGKatAaR?v<YHO5Nm~R3}TazbwPYDWPQ?xZ&F~l
z_qE>kxH*U)xQe+m1hK_V-4?`;!nfKA%cb%5Aa>ZwRNZ=s^G_1p8^mrQd+gMt^L;_=
zx0SJ<7yFr24dNGD`Blgv!NWlmx@Hacksy8(rNqMAZ*<Q6bejUd2XTzkDTot6oDJfS
zAWjB(JtysS5NCoo#Z91i3UA5$d_rVPaqBL7hC|Qf`!k4hGz;P)JLE#>JeO6UT;8rJ
zf1J+X{k)fgxGbe`mR=EWw<UU2@S5Ot!5e}%1#bzKi&?XR;jbY67KQwuAnpjiD|pY=
z?+1}~*LqFQqagm}{;9xJ@R(l`f^aBsD#)cEw}Si%{{1~YMZrghGPq;sQ_w#e%cEGo
z=<^DmIMtH+-80bw3JNMHr10HyQHCN43QOQ4?vqMUg)d-AyYWw@zt^O@6!;Yc6p*_W
zcocXQ_!#{x!thL_CUue^H-81+4vpx7s)8Su7iUycuyJ|uv`raJQ{u#s0%BOO<GA!x
z1;rFZ6~q)grC1*UWfhcDP+UO?1$>wZ6fE3VtE7Ub6&``8OogZVODQO=;9`rKOe!M=
zByH#BO#3BXo}LwiGU6qEiANMr`S3_0U6k>C64Wyk?7JLIDB!IDaRp6+83nr6Bqzy~
zXaxlog=D2CW)DrNqF4`3X{umwh1OLSR8x?ppt^$k(%a9l=AO!Vc)>?Owt^ZQ8a+`{
z!Otb*wH3VZLZX%+pY&Tt!JY#V>TJSu3Ldn{VyLU29{aXTO@=023q8-@2=me#C}^ml
z5i=@yNkQ`ovBnB-^{w$DYo%aJ=L9)J|G7ED3gw#<c`y0P3SLq0s?@Wkf>sLN&J%0K
z?4q;~WD{N!vb|ur2F0SS6?9baj)FD{7-eXy;C12c1m6&BFPI}pn>Q775dN0n+qPcn
zK;&J8&-g9(o?TWa1)W7%@l|>146HyG1zq`7K|>V{-4t|ZXR3HcMGpl%6`W9Tl5>w!
zw^@{7rGgI?^j6SE0dEZNuV8?Jz6utlCz|w+_G5?ikA5WBqf>11+?;_51}XSN0pCOM
zv4WZ}v^v#0Hdw(B1z#(es$i&sVG2gG8x@qCoB42c<jJ7w!xii493vEr6hi)~f>8>X
zN>2Pt^zjP5P%u{b=eFfIv83??1rtS_tl&#KmHH%`kDOKDE8$aYg{j|gv9LJ`7IUsD
zn66-+0#<2;f|+7Qn_0H~90jw5(-kYmFxQUG7qY;%Txi#72^9tLHIdgFmtCe{xfsyr
z3L$J7T`@|+-u_O(Dg~<*tWmI*(^bJ<1?$+E3brWtQNelz8@R3&;N`513N|U=b0jt^
z(8tHHF;?P>tSc8|D;sAmO3NPcd{&`T(X9%$aRMmVp`dY()~%anjdsN@E3uvItHxQo
z6#S%s_C5Y;wm+lFZUxJZW*>cAGhQ`|(R~W`EBHmhA&!3T*a5C71qa#B9kV>~?CMWq
zpA3#pD;~{y5<RToR|UT-NSPQsqM+%&t$$N+RKf7nDs=9smwn~S8t&Ycm0js8_eGC!
z`zq1=xM1!gl}~YF<eF8Hs^W}-v)tAc{G;Fx1%E2Iq~NlGa|+ILCLb+xQ30RwRCsO{
zx8e)zsBV!?h100>ryOs-zQP@NNY-`kTH&;-g4YD|{+mwyhJu?4Zn3>{b8aj6ON^Tg
z&APm|HB<M^%^6iVdWZX}3crfG3huEi?h*=$s&J@ysNfN|XcbqNNB(8gdPO((isn=C
zSSJ4y!Cb1f9C8b$2r`;SMP8eiT^-G@f*BbK2q`F7NDL?zQ8DOrEISe_GcG#!#i&z-
zOT~@PitOB%-YqNI`EtUo!lUBS+#Ijq{Z$e2fQq0BT}4QRqC!=nsl0<Ajc*6o_Omj)
zUJ7s0ulq%qN?1k9MlH6S;esm6Btr$08n#U<rdrqV*^`+no>Ea<MF~;Ls3@xfDxQ{T
z*RA>ZyqA)y^^BTQDoTq;PQ9Fp@+xX)q|r}Abdn4eX~NT0M1}A<V+=7BL>k0JObD_d
zDiu^zRMEUcsFI4RDqeg#Qdvd4h8aD>X;s+v?DTKP##%<xt8v2IDwD-57b3LDR#8Jm
zTtjSpq^62mD%Pr4$NH$Kqv9hK{Z%}x;yD%VRph9sOP?xUQSqvZ`YN7R(U@haXrQ8@
zibg74Q1NJY`j%ob?zber6^Ku`AI%qx&p8%rqT(eLO;x-sHoUSygUa7U_{^EcCo?`x
zOL&UZXvQX}Xsx1+iWVwfW4EhlCH6btiyhq&--LLZ`{@G)C78Fa9&M}QbrtPYyrF{M
znUCIx`$kx9Ydub{)goHtm&o`!mETm+LB;zjJ`g`|sdz`lyDHvR(NRUdC-JA6W^EV|
zO@CxnxRZ*`D&A9ZplQt+WvaZeELMMS7WE4G5?xeuRnbeuhbp?M=+2#AMNiJdw(-H<
zDzsUjk+mWgZL=a;ubfqf-YWX2=&Pciii8oXJ|)d~ucqI~EPg2CsUwjAPqOb!iw#gQ
zP{kA#U#s|-b6CX~6`!g2M8#kg!&QusIuB7XRK+kR<xLA8$>I&J^v}>gU*<>^pQ;$8
zVzgNDhmTewN@QyNk(or^#V}UI=PD+sn5bf$it%Fk1xK@T)_XfM_~?x9_hh_$FZ$RW
z|5C*y6_ZtbrGjl4cQ(Q;Vs7`u#tm`08vH}{k&@A=D!x&%K*d58->R6VVwQ^8Dhhm9
zaJq^aDrTz4GcSks(Gi)uR>wXlVO3*}in%K0shF?g&e`aJ?$$59K~uBWy&2~>QX0I!
zHMU5_VwS67rHUmgma15$VmVjV(%AY2Sx@JVafrJ`V#Vg=@M)9G@|}uRDpspl!`Y~3
zAFLdk-!!_XSAtD0xWyWgX4|6Qt5~n%o{IY_HgK?198+;z#U>S-RqR!<PsI-^wy4;l
zVyB89RcuwUO~rN<l^e!g(OMJETUE{3o-sNSV+gH{?^5xTirp&qNKe+9mosm720u!=
z8<k(3mvg3d;zY6Neoi43hgJNl;%5~HRs5pjkk~iB7#n&xqd|YGTh8vxU}*k*^oWYz
zR2)_DJEz1S|Bde(qavI(|Kw!XipRRn%Q>Oqq>3xtOI4gwaazSW73aDCb30P;hl)Qr
z3K<F3mQQrqzSWw9TdybBy-mHD7gSv2)~DjKib8*-?~g|5xkdR{{nhc>GZUq1Wvux=
zdQHW36@RJto13SKn<{RpxXpn;;@fb1+`OEn^KuS_qZe8xwv4qF%Rd}S?)lOvMt_=@
z^HsQ7&7#)ObZXW50XKhcuo@H%k5v52ay1mz@L0tY?(G`#X~?A^w}uoAc{FT%6e+$d
zBTsg8=)*|fg|U~qNBAtQNgd<)H5AZLkWN@)ORLlLl?nC<pV7LmT1F8KMK!oJcr?^F
zp2wlVsllaT_eHA@zkl4ExFuiW-j%plgHMBBLqJ1fdz9G^^o%y|XF2?BP-Iy~qR#J8
zRfDFXq=r%&bPXX5#WXynA*{jBU}{L!&{t2K-<7fYUi#x1@x<b+p2us^L&1O2i)$#M
z0UDl`s$Q6vQ(%4$zdtjT_-~i^!{=+1)=)-6L_?Z}vKq>1m|e;!&nBEs)J=^So1Zgg
zK&|_=vIjqkr)!9ETh@?4<6fD+tc`GLO;~Sr`?a>&HFsKWxoIb4>(10rK}bbG>XkHH
z?{AP))lf}C+Ynw4fluDZ(r`n^O&!%WJfk6-ou=V89Y=N4)KE*qG#%4*)Yec(gI9-7
z$Fmxq)38XxVhwdQ)YH(1ouHw<hUYcBrQvN24Ky^=@S28}8X9SMK|@mwFKgDfQyy+<
ztl>osU7JRm2)-o9D>GC$S6|Was#rGH&`gq;>$esr-v&hkh8B`a(n>>X4ed4LXlTPm
zX=o=&G@$+Kwi!#L@f(absmyCZ^J}Lt`lbe&k#x|kcOj8<)bI|!$!qAYffajK!}}UO
z(9lWDI%{~3U-gwVdZ2L<yD&*oc|43Fqx447L!9?wiM3ODYG5jxVC9n3-kNnDjM07?
zKGHBj!$b}JH4M-&TEiF(12ufCVVH*D8U|_jM8gofEuCtX7%Wbhou?=pepO<qMCovZ
zhLIXZNi^BCPo*D{RZVv9XOcQjaI7?w75khcHO=aQ@uGjB;bB{YQFhCh8YXF&p<$-D
znyle#4O7{=eC5B=z@D5US$6u<zR~b4XN!jEv^iRa1IK34j03@<Syeh@n5AK^hIyRl
z8s=#DtAi(55GycWTrCi{%t(EqhCgbj@N5S8683<GQyNZdSf*jQhMgLAX;`6QCHD#q
zn>2i<VU>op8rEr8E#B4$vLEPyfg?!#Uc&|<>$U$5o1M$9a=)L#uGp;M2T9s4N$kcg
z8h+HURl_z;2032Ev#E}t)m_O!-yu4S_=%g0hMzSY)UZdxUh#84Fge5b3EwaM!$F}p
zcFr#v4r%yZ!!ZqqHT<gK2)o+OMH@~zIzK83mq4;;R_wSaCj^^FZ=V#-Nq$DdSq%?3
zj_g1Ue{zj$xT)cshVvS(aVyYpLBmB2mo;3GiJk19OX7hgGRiuzL#{HfM5+9pyDSSL
zxuxN@hJQ5Nk?3DCWPb~PU65vXh1?gsCzEGl>l)0vt#%4W;gN=aH5AfOSjS@xPc-D!
zkxxf19l3Sn(f^x}JW0rjks?u^WMg;HbAJ85(JUyWfTXf#I6%pzT||dNhf_yU+p<rO
z@?0P;9c~>S5jn4TPIW;fFLSZZejNcF9VIEKL(x%1M^zoF4oydC9c6UrIzl>%>nNck
zti#Zes-u{0O^k}u^O#Z%b{8AVI&;XL5{2hlx&J`N(>hA&IJYD(JAtK_)U7=#xix(*
zy;N35IUO+_89K`Ai0DYuk*<RaoYR2)#*7^IsBW$C<V<EXt|Os?6ReVsOsPNXQ$cLl
z;T7#3;KgcYuPjlPTTMrnj>bA(<j$|-86D5*sH-DeM-3gdxZ$&U_I_Jaa<S*@=+>0D
z{kHO~4%V4<;9kKx)YJKO3k`HMq{9yt7R2zp<l^Mv`eprjiN2AJ7j$qI(Fvz<6INSC
zTOF_KXsY979nE#L(D90nS9LU#?8$}0vYN>hqTAPWw3MVa{9w}1N_cDC>LSj3_B^|k
z4P+7RbiASCEgf&`Xs;tj$D2Ajh<)z&D{~0wE$N?iV=I`2*@=w4qvKs2opf|&|LYj0
z<2@bk>*%BN;~pRA=%S;$jvlNq$4*B#-P%by9oFbGIW#?W^wPmStv9iD3U6&-(ubT&
zH>}Sfa*F+Qe57NLj!$&-mx>M0F;GZyN_?zadnu<bYn5D;gC%u{4(?Y6zEReV$U|4d
zb&Sw4LB~WLBXxYLV~mc^#B!A2Xx-XK*;qD^12mSyC)01dj&WkZ-s6_bvba&RbH32Q
z1;y3(rH)BDrmz~)Qtl6vb$lgRl6ysOnYvSTe52!AnI4>+Tu}V$gcW0ntoaNbYjmvD
zF;fg?>6oo!j*ht!U8!RpyGX}_I`L&X76>6<tYe{YdRQcu6qh6wJIbWxqOABI{X0oz
z(kdORZN5~;Ivw9jbid$w9X|=#pkt$sO*%H~*r8*mjvvI^k2<#M*dm-2VCf9obZloX
z2}y-X$<$qT9jNaX&wB*-3hon3w&j3W{w#P<$1ge#3IA2c5gmtxCw;OYk|h4F<Cu=i
zI<DwAuH%G`vpW8H5IM=791^M5BzB75%_c?WhZ3iCoZ-~E(ERM3bOt8<A(nq~{}FOt
z@S=_jLZZvk>F1L0;Jg_5RUOwj(6v*pbL_ksU)N6If0X>$MNaXSj@vq(3ZZxie{n_Y
z;A1DlA^fA`j*fOO$9eVsu8w;;@`jKvg!|k-dq$eg&&eIK$ODN!)bU6Nm4Agi*73wv
za*1Wu{G688qA4Nd34w&6`P%gSAruHf58>;6QNCikU<gES2!%o@96}L^x&^O16E7Nq
zLpW`mLR^B$ydL3Qu3LV5A^0U45DW@ZSA?h`XhQg}C`D!ug}}c=N!WHH1T$nE?n(`z
zSjg%P{`0<Ie)|2JkrE*wgqk7L3gPJxN`{abLWK}Yg-|+#bUvq^Ee)Y;2<1bFgwSDr
z&YG-@a&)*bo#Aq^%vH5AkG0H93t_<C^oB=k5sj(QSP1bDD)o%;N%!v@s^uvf-SAy3
zAqvG&o3kpChfqC)XF{kPLX{Azg)r%AWdHnH9bA>GvLILGp~qsxIb&*Mg+QFqv-KbA
zv$8{IlE3o0Yq1(3Fgp8g>!Isv)()Xg2n|AL7{aq5JQqT}5bCoIJ8RYr!B;mnWPZ-Z
zIvG`$q(2|R#BDMC{rK*4k!P1i`NvJ=j?qRTv<Ts~5MBtOG3(PY`eKL=X~`mCXd=o>
zAv6{8vLN+WLU`5Y%|d7{e8fG=Av(lbhR`|$<5r?o2qzF{Xt6flCWPVdMK`6l;m^i)
zA-oa78Ut$$v=1RCgkQrr62_Zsdk6zV_&9{OLU^0KR3^&*GCI}E>=?rPA$-6t4dLAo
zsPM#Wrw}^ROwVp}GW+j;qVI*^a>mMgGrEM}d=Tv!Laz|IhR`j9?jcN@pVK3R!>6)u
zoXTcu`Bz$Rn4j}u2)#q7eLA}@e{)GLCXvvLq@N^xB-o!->J}Zq?kyL4DmBV1%NxW7
zg)lUPVIh1HLg0G(U_p{0A>197NisZy5g}xR5f5Wz2%m;<ErjbKjN*(9VOI!05$DCn
zgfKmX86kYe&hHi(8^Y%yjN^2b=v2WkLYORM0>?3gFNIGMWR}?ayu|OWSqH<u3So+^
ze=Vftzm>ib@~z-BJGH^JLNh~{#jyxsZ3wePUmU^`&N|_9LzpLIeh3TgTnjk9id7K9
zq7WW@V)3PR>PjKY1eb@f!q#UcYZ$_+q+;t+YZX~1d{YRUL-^j-*N3n{_(oglP%ifm
zHs2P)7MuSlWNQdxS{7zaw%huS5O&(U`|o*p$Z)qrkB6`)guNl`3t@i<zl(T4@K?c~
zLpUhp7tRDBbbBa-taq)yk{PyaPdQ@izlCtr=2zC_J!bR01q+@C;iN=Q3H}+vX(49>
z&kFt_NT2;mS??V<7sB}vE{J$h@Ja}mY@5s6e6-dyyJ{;hzm;+$gqtBgoF7UUx40ax
zrxyuh=k~;HeguT@H#dK7^<isX-H}`mLU_peX?wWGPXU`3Kbh-M2>(hnC5*?mo-2$e
zHqSkwXm0UFher9_d4%V+l^t)T<QHB*u%KWeJGF2a_ZHS*#-gG)1f5~H!f@L*zA!w(
zy|z;6YKmWYz*cr2w*J~y!_dOe!?^Tu)HmHah7k&*WEiEw2!~;WVTyfm!BoLwf=>z3
z{)3Cw5zrD6MHo-p`cE&J)Jsb=5=I#zWd+L#mKUVW;epnaNRw!K7*QcH!7Ycab&&`o
zGmQ7c_#li5qE`>&nJ^AFZBbF8mBOejq>3Q3R25P!%y$P{qsFk{xK+>WFkT7c)i7#=
zQ8SEMVbm6bhJtkj>xJ>Gkmm&J3Nr87b=Lk+KaA%^X<+MT+7xUQ#tUIIww0HJyck9k
zTUl|sKvUr_+sfFtQksSNv|h9iBS*v*VYCtQnqW)8R)VbsS^B(pgT%HHeO<6!nEzz`
z*Tz+A^S&wk9l;KQZwbCF*in!kPV}*Q<J~Yi*-Gay-n04j^?AF5(KU=YVayGqTNvHL
z7!}6Mxz?MEdW6w8jDBL=Q?Qrdhl0Js=p)3k+?e~LF#3lv%vJ^n`6P^iLOvE8Bsi*Z
zL1q~&e2C!CB;Rixavm<6WQ35BVSH*U@A^_khcPCM&%zih;$*?k!<ZmsoZxuDF9hl5
zjjPrHl8Iq_Das^UAH6>BS7A(%=+|L<8^*LSrb_f1+ve?)xu)BEW*9SUzPm%pESt{`
z^VKlc5oLyXVf+xrmN4dru^^0vVJxCq7;C~<EcVL<m)LoihOx}%UuIeBbcIA$hVh-P
zui_lewifJKTiFoCI^o|7uDA6q%dD1el<1}~Hrx8Z?I}One3y`|g4@E_E@X$`PC<J3
z=}fMl!q^?g9#IYo?hRv~ko{r&Y+D`(^QE8GXcmwUERtWsI3%fuZ5z(O-@-V`HDcf;
z1HXrHjN6WZ(gu!)aUzT&28tRu8OEtF?u2nS%;%ruOc<BLxDvLWpL{lqKf?Gk3_cu~
z(Q_j5Nw(+1*5gvCToC1=;3Yxc)lQv(uXHC~4dYrE*Tc9G#?3JP7Mojwx4C7B6TVQM
zmVb#@aB({MKf?K(Ve)%n{L4)~jQb)!5TyQ4$Rlo9@^scGj2hTbBQsfUZUcD@<TH?B
zSa*x(;kUSj)(h)XJBRWcR&fjk4C}eUul6Zk&_E#(3kxP|#TTqQ3^)y_1~daM18zwT
z8t~X20z$k7d_w%To~%+57305WQ}dPdx)_u+5Hb)pU~o_(Da8ytWx$lA)FgHev3kV~
zl#nO{Sx<_|$1FcBO7fY^e5i6617!_7V<21fat5LXVg||^h#1!EY0}uh4<qS@b!RIH
zpOH(<Fc3FT*+3P8|0g2TKm`L8#lzYkv-rB1H*YtqWbogIHpCIn#aKGUss^eV$TCpf
zuwF^?<I*gqUcb<c{LGmMarpR_H4M}=@VvOHWuUf!dIstnsAJ$+19c7Xso=DHBbM=;
zfrB@!TuJBat7TRAID!_jn|;#xk6Qx+4GlCh@PdKH240jBd%aqV_FJ}RG0VuyR;`NW
zs?pTI%LYC+Fv!3w23|GL)j&4`%?vc>w|4_M23i<+%|IIiZ4I=Py0sEyH}X9`t%cJw
zyNEttr^A`)?F{RA$Q;Kv46v$9)iy`oG|<67M+5H|cuR7<F){OP+mdFSY3~~7WZ*rD
z2G~Di%Vu{r@Xc+jrCcB%7}n2Nmhw^Oid4E7*3~CQyBp|Xpr3({4D=Mwy$pOPWNyD$
zZv%aV_Z6SCXIVrB7SZ3p00RRJjG0-KO4B@*o1Bgwou8BMT9naG3=C%d4a_hw#K2Gk
zqiJbin1SI2MhZzToDt$Pxdc8nFv>ueRYtdTtBcqVpRp|lzA`Yyz~=_W8JJ*L&j#ny
zm|M>%Hr~J&27X+T&Zm6;|FfnivP8cBQQS^q-bl)1;arJd8<=Wfnq>LLz_)h0cwwA%
z4#|8=wr-|@Sq7FGSY}{0=MTraVagH%bH&x+15s9fp70iFDf101FtE_TB2g9#(ht{8
za`|w8XusUR3Ilv}_9}y~KuzO{NWGoDQjEV7g+sI204<aKyw1S)+yqQ`OswZtW8k!b
zGX^#q*koXbft?068~A}Ue|%&sJIWp9i{$uyehV9DVDH|nacwfEkBTyNo7ij@tg|_G
z>ty>~2KE`)Z{Q~byA4p;V_@aRjJ?9I&WQ3~T}BTW_}Rb_1HW<Mux<tpbAf-7*jT#e
zuN^aqhuA+|v&ernz`!KO-30Ndfn(hEx#4i~Kd!cIh?Rvu-cN|lDNbou<&)e8%2;Bt
z$JJ<4U|6lQ2F@F}V1WD&1AiJw?H4`AS#&Z^<;$zFiv}*S$4ullaoNBXhLnu!2CfRZ
z#=YfWAu7L(i4*g$irf&LuhO{5b{V*B;4e`g3ex6pA^!;8F>u$wJp=b8`oOl?w=cSL
zT#Uw#Y~^1Ak8S=$$o}UFrkKcMBCm;jCQ|nndb?hMck30fs$p7{WN?`%V8SeA)vch3
zLbhI5ND;xJCLFfzG*K*H?PT61TO)kaQ|D-v9TPLXCVVFRCITjYDO@9DB5WckToF`F
zXeRgG%J~*XbraL~Mrig~->AXTO_VSJ*3iTk)w7=>d8!IYF^Sfnm|5J!;)$6gCB2mw
ztgO*@V&>B({{AzYdk(R*i83axmBIBgC~Kmei2<cCur$h>h?wY`ihij`Gm&oMI}@u+
zL`}p@JZs`P6B#DrCI)^TsbL~v@(4=w8P;TdEYq~U>sBzWGqLFnGb);>L=O!!7%B^?
zB3M<hnqZb-b(8Or)M&>4!Lv;eef}ynP1Ir~50|LT`@c-g3C6e^<ZBq?iX*RUqMnK2
zCPtX3Z{m3qZ=2|7qJfEqCR&<kWulRZ7fduY@v@2Rltg2;B6p&Ri5J<5+==?TGupMx
zVtC2qGe8nr?!+r5UNzC&L<^Q%E^B7ltY&n+JHuNpi}-3v;x(}(Kbt$jXloN~Otd$V
zLx*`1ZB4vxqMh)0`!h20B;GKQmMf9iopGaT{Q8sln<fsI%j#ev|Ne|k<+55miN9rH
zQ%YhSi`bL#j)`|o^fuAQL?;uSO=NCP^fd9Fi5hz{x|rx{;(Zezu;I*}lIUM9Yh1Z3
zy6R@4yNMnq=!Z#T_GGBJ60`PXu&lvdGkclXULyV>eHMzJJe1wnL_dz5iH}Wu#F70z
zF~CHV8}a@o3Koj*Y?wHHF7B?7$x{l0OnkzgT%IzFGq7jMVD@35c(Z7Hh>0^-;zLdB
zz7i)P4qTDoL5PtiJ~gqB{>#TlnHX*2YZFsVj4|;U=cI`VCcJGj$C~(@RpsI;82>O9
zFC2^4*%=?tm6AU`=15}0bMc8LzBFOfjeo^8m=T|3;@kB2WH#`OWy}|<9vT;K_C<V(
ziH8~SrHRaMXkcPCX9(x*SMg~kW|)}C#ln8B8!!7sJkOEDjB#-mH%khwTRwAgTISZA
z#9R~eIa~Pre@?JSCN0%l%^6)FV)b7Wi@1WM+$AQKnpkF{ZoYW!Czanilvr+JZ~YXu
zbcKnPCXVGK=0xHH3RG@XAimnf8ZL)aJe`WQCU2d_uO^O|_@0|T=eCK8BO@D3Y&5aM
z#7<5C6PrzJHL=aa4;=TSWwx03kprYAD!&-zeSAC}&G%kyJ)MDS`Gz*hz1_49bzhxn
zy{EFp>GWM32orlaX-}vBWa9DsoC;q=_L|toiPSZ*-$d<?<6n1)F|^wep)z`~bxQDO
z69>7&m^j2a$>FG;`)PL~IwP|Ea7K>}iTU-TznM779V`{jRQ%2cnz(P`fr;bH^-_%C
z4<RSmu7a_X!cUnvE#!>gSwa5&N8>+DoRjEz?)DsO;TKF?6mm(BX8hmhs?Glqa?Qkb
zAva9i6mrYNU$)I{6U@t8e~UswCwJ`ByC&}0d||z^4^2GcUY&}<srZ*2W#Wm6T&cKm
zsoK3JQ3l>f#lY^$oobCjN~-mKu{?q#c~g<k=J``mz~%+1UyIT}ACy@n6?`Lb(Nvfx
zGL8(770!w;I*{&4g*z4DR2Zr7q{5pDB^7Eae5vrKB9Mw;D#q=POe>jS=x{TG!`eDf
zV@X!5X`iT;3OyA~9_9+AqQvg330YCTlb5gD4OEKf{W)T$A~n_8a*L;;*0D0hQt?4q
zUcAN9Q0A@LQS#uXXo*x*uU9bp+l&`~O)r^>QmJ?;6-`r7Iu&J@l!|9kQ8pFjQV~x@
zA{FDqY2~@|ry@NS8(OrEq=IiZPJA1UrlQl8j94l%QmyAm@EHQfQ>@cyd^6hkC+V4~
zsE~>(G)_gH_i9#5MWs|!PDS)l{MPMClig`NVp{cFw23o~FT4w!YhNuDS^vk>cR))~
zJYN$fBRL4TGdp)?XLfeN?mogp!XqORlps0t$Owu85+$f4Q4k~uB7z7K1Q85G0Y!2W
z1(l?NB0(?!io$oN*8P3|J#*^ZuCA``uCDG0J5$ZRU+A^s3x{zUpUmrLg-|DirZn9W
zuP(b2LgNq~4xxSs4MJ!bLZeWymn&Z$zPHTdzPfyIB3v-@^HH51o$2#MXufyaB!ovo
zc;n_nyiDRYtQ9L{Gz+152rWW*G=#@!#!wIivF5+kS}m!$dr$n^={{fTUZclZW1A2j
z4`DzE14C#VLc0*UgwQpF_91i#p_3SSNxOV?cIE3B!jw{3+rEsid*AOI!h+p7=_<{x
zdEG+j9zyRB`h?IUgq|Vv3L!g${jWLQuhw9D1|!ZLX7ha(G$7xyPLa_$`i9Uig#IDy
zKAzxi={Kf3M-Inx<#7M(8XrUt<Y<QQ6y1!CAKht)(4VxN#5}m~*w7H34&m7lMuzZA
z2*W}c9>NF_Grn<t|J3J}yA`_l1zIF`9}o65i;T}VDujz;bDS=npR31*e>-DC7{{(f
z@KFTMg)lyZ4JtlRF(HKMuRB|RbEbtbF@#AWJRib^8vbPVJ%krRxV7DRk)F9Kn;UGA
z=04GR$iT|~-14V}Kzi+L#`F+g3SmYFFNbhc!7&A|gfNpnrXWMXEIND$KZNij{Vjw!
zA#4j_dkC+EFgJv?A-osDyb$Jxur$Oy#IYcR*EzBwEDm8ICr-z#MM7_m$>Kle{Ck==
zL2n9YNeFMz8gZ90JQ&V}l>d6a9m4Vu-VI?@2=9cjB7~J8teKdPAM0_^;NRR7W8fgt
z)%2Fkf>g35RnaMn?@{oDgmodT=XxH(Cn3B~Lxr$0giWk&$$c#K0Y_nbZZ?KnhkPh)
zu&WjLC<KP_VJ<%&yl-$O!R8RQa9Xh!g)}C49GauFW+<?ZSvx}bG=wihI1$3m5O#%d
zAcTYTjSxNyVQ&cgLijv{Jt2G{fSqEg+-2N3jf4N_Q`+`Rn^`rJ4CZ+#gu@{m;SflZ
z*e~+mYF31C!;Xb;T$r>TnfCR7eig#kA)F53Ob91A%|+X{VkjEqn-D&#5<F$)J1vWQ
zRr-!CDHW7D8^XB|&WG?lz3XaDa%fmKm9%`d0+eTiFEA^F!U~Eg_=(dngug?$6T+ns
zehJ}v2sc8w9Kw|lu1Td-a+RJbV?j&<{u&BGK@xK~ehcAuI$;R6=|Y3b{y{s3a8n8{
z=pWdb?~hTe->?AxCH%S*%U+b?|8Vi=iml*21$RTZ7eY=2xfJA3f(EnMzb$>R=Nfmy
zp5zbX%H>v&NBGp1Y6fXO1^E>eP*6|_;(C$8QtT!>%SIMbg3)B4NYbJT?pL5GfP!KQ
ziYq9u-~k0CD5IdXf-(xGeiU{(<twEGe#_8OELB!&WMj(FTx9}1RL&k%P*71pNP(iD
zlE^$Lb@khopfjY5qYCHWapl5F@bHRH3|N*S@^l4;0!M+XAfmt&u^8L0AgaJtP<52T
z*D!)74Ce!fXM`)(%j43xa-ITTL0pOijS+j&EZ4`CODMs~_i~n7SwR&AFDQ7CsuWaH
z&`m*i1(^z}D`>8ug@T6^)KJh+K_dk<71UBtPeFYJwH0J3sH32+61=mK3g=io5xnl0
za!W?dN;!4|C2(5y==B1%8Y_5M!6OR4x(W>5L@15MQtWs$C78vt%iKrGGX;x0s^BpN
z?G&_E&{9Dw1+Ce5DOIa}e$IL-;Sg}pA6L*;_-qVkH2EDAbX3quL1*D}&}lC6<H<ZM
z(nUd6;WJbqD;oM_W)B5D6%11_TtP1d*$M_JctSyM1${U!3i^vY+tydcosRm&DwoLt
zG8O|BFccN_^Wf(ggB1)>@RWj~(kZs>Nh!`T;^Pj=Jgwjv1+(8M%lDnwcXGItjZp9`
z^(YvxV5EXk3dSlJCk00<K{v+;<~vK2=Zt3UYy0ORWpaXKO;Yf@f{B7T%AAAD;@UzP
zc7L*hDGJ_Iu!=scV48x33Kl7tuHYpFud+P~W+-@>E5Cx7N-%28%LhiDJnO#HteHg*
zsZxkO&(_XS@S1{o3g#=AD>XhnvDjLr6y<504ps9k;CPk9>ypK<^2z7WyrE#Rf@KQc
zR`8~RC6c>TOv)+wmL%y9d;^N|sje+o@Q#8NGJV*Wl_J9trvMjH($&mTuwB6p1#1<&
zr{H4+pU^WEtXJ@Xf{hB^mx0)zfYC=&gU*RV%Wq;g6@0`l_o~E|ncDcKA1NmwDUZzx
zwkX&t)wy0Cu3BVnQ;=IYR-WpgD%h!DpMw1gb}87cV2^??6nrKEpVN{2JS@T!7OUfF
zj-8^<@0Hvm=e<-d2NWDsa7es@W+#)O+YT!@B4T{Kii-(-`?!KH>C!5?s5qhEE3Pdn
z6ct}9IH}-{f`1g8Qt*v}OA3Bb@U4RH=s600RB&3s83pGQoEKA^Rluc>72VAlxDzYo
zykOhDSAzIvwEqRE`XU#9B{+)>s8Z->;ZQ8qW-dOL6<ks9hk`#9Tvc#Q!3_n!DZ!cg
zSAvQquPfNLDmd4(2%Z0Tv43h<E7z$`7rm+AmZ<%kSyItoTw6K@|Iz$f+NA)e6}7R_
zf4TT8D5~Oq75BLKtGG`^J{37t<WiAaMIJS1KP#GDtr9Iv%!7LJszHzL^auttzlwq?
z3aKcd{@07t$+WPFBEn&(Qmy5QvY3kEDoU#;qoM?JMWB>WYUYaFwRdjnWZTNBD5s)=
zii#@At9U>~zp8m?F)o7?pkGmEB`Nrz8W@vT{&aFiTjdN@RfJVEP|;9@rUELesHmz!
zS7E4dRJbZ4Dohno6}I%zQiEyLDYM|Ny#K8^Y)?#OD1iG?i-V`aSCLSWluF0Hsl`>S
zAEh*%@HkuY?;7RxX=O81R92x%3%O*GUrj}(irOl&R8&{-kct{AYN~<pueZ;`*nKIJ
zvg5Uc$*!eNe|1#UQ&C?HPQ-P^+B~(Tyk#_fvO)evDjKVJTt!<I536XxUZ{9X#Um=3
zs%WO7xf-0xsgPTZlXBErsHoN<kKQ@o-GV_MTdHWKqP2=PDvA!s!`Vj*kk4ME95Pj1
zI~5(I%gk!825TlKT}R<`63ThRtgb4$u|^eZRdiR;L&ftdUQp3fMK2XYRXnXCTSadb
z162%C(MLsJ75&*Yu|F-)Pddx@GpUVcX)BF+hNlb_gH=4K;wfnu-E2szJ$a+43z9PP
zOS1?!VSh%&Fco7}j8idO#RwH6Rg4ll&|ROEQVc4a(ochoRxyT}IZVScxt!8}o>MWN
zgRWwd$_<YKho7JZQ;$U$LUVBOinJk(b8~_AqKe5X7O8kc#S|4&RlKTVwu)&grmJ{a
z#VaaaQZYj;#^OAjiSG6~f#qk?8WW4nl8*ngyE^OTR3e?D;x!cu=!z;B$bGJgc`D{h
zvw4Y5$Ka|(_kQbGEHyy1*g`r<o51H6t9Vnz+bWi;Si(lCSgK+ft=%{{eXt{>G%{yO
z!>V~Wi0`Oap<<Pa)$E{D@vaK4kgS4|Jgx9ro&HIe_^M;zMen6--Z87k?BqJZ>xI5A
zG<A8oQN<<|&jI6s4^@1mVt*J1!uVLlCu$H|azhxKRczrT3L_(ottz&0sR<)@7~56s
zQ1O$BpH+OSVyB8jDh{jIrDC^~-KXL+&U6)DNOF(RRuZx@6?~F(FPE={L1@<fDh_ZQ
zCCVt{(jQcVD4I+jQE^noX%%Nw98+;z#Yq*XMAesE|5bb?n6a7}c$0d*mL!LUr?zhd
zf2Rf~@oxolA*J(Bj5Fe_igPM{RB?e5T*{tT@jXXhBq_tNu9trbf}RmyRD;mpDa=+~
zQt^w5n<{RpxUAxe6uF_|s)}p$&+jT<SMh6FPtjkZT;);$U0L=w6~EJ4=x^t8{3$Z2
zFq>4)F5ec;KPvte@Ry3e(|YbmN4VUvJ$F^)2qR}W=<+=gpypIKP;$5?=LsWk80Eq!
zAI5!Q<O}2eFp7ndUy2kAqmY0C;r}Ag7M5gDp+$tIqL@-G6&4pxsW3{1Q9^J@q5rF~
zOgJzOlVydUigEft7!|@W!ia=XF^o!*6&Ctn7@;tfa1iUB`qeNPbC_2h?@N+ZYhggz
zriVcTQifLI5OY|~Frs1DVOZh7L--Oqb7NsRVZ=qb8xCSqdtvzDAaX2oQ{zj(>JlPD
zuVAur7*)b}GK{Cfs2WDKFxrRFA&ks0s)x}ijK(7TP#Cqt$O@x|Bx{CID~wd|-qhID
z38QWp4J4Op>j|h&Yp1>abkkA{8QqXNh4XM2O~QCAjFuw#NEpq+XfC*^&><q$g7yjj
z7dV|2v9qK+T7`p1_-(^z9Y!0Ge_ZHc?pYvl;CTjYCma^(7)GZs`b)BN7+u2X8AdNj
zb`{!PXtyv@@tN8F9%5L6>@a$V(N_eRObu(Fw9jzF`^mVoYXia<C}M+z4i4i90jd5D
z5zMCwjMzLhjHknRJ&c86JQK#SFeZmFC5+)=j0j_F7~{ftHjI%{WVFyxX+KGMBU>^?
z_)I<*#`rKM(ICQ^km5_LQm)0ANH2u(qVQk7KL}_2zgavrjA>!K%IdZxri;LgFkTJ^
zF>+rD2Ui8G=oL{lQ*xPP@mYd-)y?GWFy@5uS{QSMIX{ef0{+)dyG}4$7f2Nxltp2@
z5ytW`-U(xI7;lF0Rv1ge|E)iiToMifVzYRuF~PF4OtiiIe{`-0W2Ge53Vm1T>M&Lb
z;6Sj{8o}4+1T*(N!Rx|UPe&3=CdC+kiGU$_KM>}|FgCHLVSL2JUpSu${e<hhfXzZ#
zWQ%~UVQfotYTaLk{2h|~G>n~L><VLdI+wAFQv#n0XHS~{g@C<6_i-R((}#m$913Hj
zhD{m{hjD}_9SxN=91Y_bmk137H5?D)%P@Wm<M%L5gz;4vKZWsg7+;5RGK?QY;VDwa
z{14-F7~h2PZ8+FafQ{r)?w9}8$uk_g@BFirSr9%arOt=(eK`1fi+`r@Aox*6pAK_D
zM(|=dcrwN_`=u~`3F9hVMP|xnjvBWay6IkF`!D54h2sBJbh1W{=Jhacg#U~DOb$;6
ze^6BzIW*+da5IcsBK&U{w>hKpW!~Y`el+n{7=O!(!FiWj7+LlokxV(*U6~j6(zBJh
zxis9TA)kia8uDmCm-7mxe5y$Pbdp)TyeBQBfm@%H(@<VRVGTtz6cw4`8pCDaehtMW
z$%)KZ;t4ldQj#oKMnEYIrPCZ<LUVO0tNpiRJ)i~av!($WDrl&v;fDgXDv7Wn^g*E^
zEr>5fg{p?Ia8io~y;Rp=XmB*R8X_7@4Ymld7Rp;%@E}VcQ6MTzUN(>)(=h3+3aL5n
z2|uC1*APz?>{ThXEF}Mro+=uuY8a_ul!j^=GBrG|p{<7M8XnTnSi{32Tth>ahB_K*
zO0t&F+Cq7M$M*23s|DxN1{&%KpPc#vY*|bi3T~7x(nP}}8Xnc~n1-fl`Q{p$3Fa!4
z(%C`_;<~4BOD#Chw${)pEuS()8%fgI?KHI4&|5<v4IMOe)X+miPYs<!po<o48_`)X
zFPXSlbrsxALwC{4Q!o!+Ocr4Le;GdN%oZ6ofVi)Qej0{qcv_hKH4M`5goXi9e4rGe
zByai#YZ#*8DG~dh_dY2}Ub<6;0sNnl<ZulmGz=5WDkw}!foFxo{xUgQ!x#;3YFMIS
ztcGzKrf8U|;W-WC*(s4^kqKh|No<A&HijIY5VJ=H)kSzB(7;vkMGceF^1LdWreV5<
zIT~Km@REiZ8fI#kB?2!CeMKneBbB5sBwp1pTl%~GQqWEYtLG@p)i6)PA`zaiVS#|x
zsfv4o$i^$|1s@VF)Pn1Oo^e?44GoJ$j7c^xP^IA=4J(AXRKqe2Z);dCN#^o-J}I4H
zB{>?_X;`mel?JXzYtk~S=~3b>Yc;$lnDc_0zp&u@BC{baxuI;Z{m=(#@A^=~M;bU;
z`TJPIC$yD@8yYri*rMUAhI1OWYS^aX7#Cp;+coUau!ps4_*BDA4WEfkc4^qH1=l&L
zK5{+e^2Om`U7yS7@CtmdhJ9S&H5}2fU&8?nhv-6g?SooS>VMlJ@FYb&bbyrq9~J#6
zhyPN;3DNnDhOY#CEtCrsD>|tKH;DwNL?Lfczt!-a7A&f#HJp)VP*3W@l2x47@V$mB
zqTvS(KWexn_<~UC`ANXVv~7Qu<o~WJf6;JRIH|T>6?{!7%l@hbduH(j_nU^_xjqB=
z5S)7c(D1j0JJOgxc^1%cOFDR4!(S|00^GfbPt2%+p2OoG4R<x%<G5Uk{wt-J#Ulrh
z8_0ve33DQ_b1nqe(y29&1<A?F`@5$d`eA;c08larv5$fxTr}8s9fg3xKoQ~4{ybZ;
z6t|}-CLCgJ$(XvjATA-y)TMQ4;DO+SEikAjqeC&*YF&zvdk7fIft2^}q!ocm!OI2U
zzX~be;JXIov(3}1<l!S9VqWr-GMAJ`?hT#}7(gp9$TlK?2~-8D0hUPmKpcnywj^Uh
zU7-$S2aOW&B$+Zo0!RXtg_9wawQ%n6E{}kZD60sQP09qS19gFVz(Z-t+CUAUCJiVn
zbFDN#r94ZLb;Qo()CU>>&4A`WLv~qmn*fakJe)3@y3Xe&6px4T2+&mc9A7$W3*b@U
zF`%Vbo|8IN5hYU~R|&KM9tZjY{eZSowj<C9XeYRRx|R+I?pD~x&OjHS8_*rW<qA3U
zimuY;QT#hkWO@KSfnGp1&_^`%7T4mqaM|R87nb6|HuMJu08azY00TvGFfc^GAfZnn
zcovb8e-d~~n5o7O72HlNISd#Mi~>d@*wST$WQ_!#6%b9&qf|jIr(=Mzz&Od}VDTf|
zRC^`>6Y1CnN*kEO4$^u$TIzTKcoFy&xDHGPrT|-kZNOAu8n6^t222-ivpF$=mw*|-
z%fgun%t}=xMqov(k@Qtz@(~u-tJi?J!0W(5V4m>j3#C}<mTCe1+puGi@D~Gb3U~v-
zGDVpsl6;Hpm)Xh?xV(ns1}JX>%faX|SP#4dtPru)Lgy{cv628-B@-%DknLfmJk|hf
zf%nn_#~nk+d>`1ru?9W@J`g2jZj|DwQk#UCnt&e*-YoPJk>Mh|m0N(N<+lSnfYZPk
z;8S2HZ~!<6>;iTJdw?&vhlUiVk9|&OmhEX+5%rU^7r~<vdj39OKf87*%I~as;lbQP
zz+ny+H*f@w07ronbR>=%9}xh@MJM%8fI7eAK=-Q33$U;0FmhHsN#BqyT2eOo2KZKr
z@ScvPz7x#8oCVGSKLI}r=R9x$xCnd?{J_<tZY2u;C{u%g*CZ*kq;{pbly1Wn;FmPM
zjNn3=!dHcJO=zkOH-O)$Q%5BozXN{&_vy%|<4@qGh~?CAi^UN<G5A+Fe*t#{{GIL>
zuhyviA7TDh0(S-619Is9xlO8Vxpd^#!4YTGdGuhKb0?s@dT@3iC%=vYI*RKkp`)OV
zLVBRHn2y2%h>Hp+B9zx2<lHZqCp%uEq@2H`jxuTaQUXfr-~vM7vO3D?C@;(hbX3rT
zyJ_-yq0X|Y;t%Qw>B!VkU5BDW)#2*kS|8Sf3te4@A;mQv5Wr#OrbQ7QrVd+2OqiC?
zs2-eH`7||UXGfUyE+$iTv1(srD(i^rNQgjEM@HHpoM;?eidB)UszRBpCLpzi)<ZfP
z=xC^;hK`y#YU!x0qmGWcB9mHLv!wB<O6%#UpVmW1N<B7dq@%Hp<~myFcvwdh5ojvS
zV0Dk^frGL8#Le{JodE)Bdo-<ws~qpY*tJ$VTI={g$3`7(bUd!(IUVEmAo^%q9X)jP
z)X`2#wb#)>M@PY3b#&9wNk?Z%cG3Ua`G~gVr2^~fp7tVQ-ud>@k*(uN9Z!jTZyo(~
z^w-fxl9cJIgZ{>09iU^Nj={noq~i$z^iO8-M9D62EQZh^ZGzJc`#4m`(>jLh7@=dv
z;vkp&XQb4yv^B_iR>w#>mGCJxTE`e2V<nk-s>c6BC^k+w++BzxHGy5wu|UV`IwsNc
z*+Lz&x&G^TQO9&0FX_0kD|51rsZ!AtDVwr64LeN_%$sWP3<^jtt9V%e+c{ImEIn9c
z*fpM~xLD0e%god9n&7!<4kzGz!Ktgng*q1LSgzw89d8JKiH^4fEY^c~M{f#FoiCP3
z^OlK6u>o(Vv)Hy3I#x<Du$zumg5Q^xuhy|n$9mzc5xQ2#djckW)SY^Gq!uw!_H;wq
z2R5;|jte?2>i9^<$2z{yu~)|@IyURrrDL~_EjqU9*dg5yc1mp*_~$kq+eJVB=}77S
zRFXS&aKfex`<af<g-N4PW{+S3Mm5=|W515Cb(|FD0Ubwl9My49l81C0)`RD_sYgR>
zGauz0)A6N_6C!Y2a;b`A!R`=zr3ZtOy4yOX<Ft-5BKeJuZ)s$)D)n##`M=3o9p`lX
zAOb9VUdQ)>Y1nD9cv9@gbT0o1`bo#nI_~KBN5>^G_;tFIj$d?K)^SD0RS_O2Yvwf_
zze<urmil9Yr>fu5+HMK>UB@3h1^l0RcT@POts8F({!8fJobrz*_$-my{?&1xfqVw;
z>bNJlIgDVb&ut*55v(3Oav6a^cv+jrKwjg&O-tD+{vDRzKmh|q4cu>_pn*aLO6AGT
zCr*W>EUi~W08h35>w7T+CDNLU3t)961*F`yjDfNSZW*|3pqzp72BsT$$-n~!Dj4Wy
zpu2&J1}Yh-WuUf!2MvS_Bn@O3Pz<OBq6TbH7&f3AFbrr$aOux;3P&NeM_WV$_*~8s
zU>ZSS9CntC;Sn?77{O{oj%&a(;2Ve=!5@F*q^^Gm5=JoBQvRQ^b7cdW2C5sVVxX!K
zI4x_WWHlpL-w1d-Bo?kIw1yE}C)3B;%UYdfppJp&23i=XYoMNi#s(fXP~SiUX=ft?
z4F#}~R7FbL68wEBn!4q0V&D-2O${_NaJWD%W~E$|pg!+64LoL`t$}u;q@~a{23i?t
zomQJV0a5;OX(2&-105u{i-C>;IvYV?oKAvMj}bVtIPP7I|8L<QlKX^#!3KI7=w%?=
zKyL&6g-^A81oRc}qN)2C!Gk{bh^P1gk~Pr4AOn0VlG;R-d#VmG@Fd64z-R+c85k;J
z!wftvN~rT0<G-ih>@}0a4UAxuL~NuHoJ7dv+~Jx-HyC4Jtbqyari?W`e4K&jIB@Nv
z<Bebw#?+AU?sbxZ=M79YFhwe&&0k2@_@WWKV@9<+rb<QAgwENNIZL*wok2G+u;0J|
z)?#3$fi(u!ip(qn3k<wY-(YnH<`{TQ`11_>@7jBA+7GFJetJX}(*6dP8F*Xdc@y`B
zfyD;iG_b_LQejg5t#sMc>5`A8$y_eED-5g@@QzU0<Xr(A%~eKlB}_M1Ee_1Jg46#!
z1M3WYY~T|E>qT;-flVAT!5a*GAb<-st4OVx9Mcbl`H@iaY4*(qwiwuL;4=eT4Qw;8
zQ*yVbWm1!FhnV+Mt}3#D6z9k;5lFfH=LYr~C|*z7W8e$nm*y3nY!|!FKsBzGe9P;;
z>IV%RGH{)S{mwsZ;D~|q2EI2KQys@Ra}As}aNNL`2EI19rBTrG69&FA(1~pm{~>3Q
zfKvv(G4QR(a8mQ0ny0GN{U&A37&t3g#PpeSg6V<m%MS*Al;kfm7Idl$1}+--$-vJB
zE=d;8>2#G~2*isBE(`yPfvX0t85qyKfYbiQTjrBqaPf0PWC(r}@H<y90e=d;DKvGm
z`^&)JTv8%<G=e(@{^1H4fgQoWT=sc;8$p=}?it7tLB0s`M}kYooROe0c_Kj<az&6^
zl6=NXPsp3f;u``2IA;q)P%wh~BPb?iS+Gz9g(D~;0!$W-{C7`5+#4t^{F0<4P(m;r
zHA8NWN=cGiW0w`c$22TbE`stAJP<*J2$Tra2!1PpiV;+b@ar>hS)+@lE)PNx@Zybk
z!LRhs3`YW&&?3PiO#h)C9z4b95g5!8&E%K@*iB17>gqZs9nXlMas*BUZUkN==zBbZ
zgoyc)9NRE|!?fn46rsW@5maTXB4{9z)gpK(f*KKIO0v38o_wjTrr@jy>O@d0g4$vw
zwj|Y;x{^zU^&<bBJD9~}LmD}PM<Qq%L1Ssg!y-wy=fE{dm!cOn6P(i4TySZ*oOmpP
zmTYYVGb3mfLF)*fj^LRH+C=bp1YINO7D3wx+KKYc5wuV1>=Z$V2s%oVe`wOqsrg9r
zc8LW4Ri#$l?h*8epnn7dBIp@GFOlyfG+R8RciL7xUM$NV^_8rCLYd?XV*?`?6v2=P
zo)qR2(vrbaHg!H_y-$e}uGK?DhW-8gYlX#!MKGL}j9^j(BO-V<f-w<{jbLO1qawlC
zf#)fTrKZN{NO1B^^<tdp887s?2)Lw_2PVj%q@Ef*FIkf#m=eJY(xexKLv0+IsS!+*
z<ctWWNAObQKd(zErwm*8vb33xrpcVeVU6IO2v$TeJAye8ycxlg2wsa|uIO15!Mq6O
zNAS8N=`bv{K)OI}sg-u2WO4eC^M>HXk^i0>kn>gq%OZGN_)CSRT!?hJB>9>y)vhF#
z<a(j2B3R2N6%U^0uNKZ4p{eQrp5S#tIo$6@upxpEI4k8psf}W;)b;!(k>NS_;|M;9
zAY?)@u{nY*5nPJkmk72-uq}dP5gd<TdjvZo*cZY62tJJjUmop_;IjyJMzD*6c+B}}
zxAWEUnl)Bse;&b}2)>A5FFkXL|5f1xW2f_Llv#~p_wHoX`q#4`@aIfS9-u=;aF~Xj
zm^>I^RJShtH0%f$!1Zw+N140DNn!3e@+Ac#I2*ya2)>Ho>j=J$;JZk$HOa{cPDSvI
z;5NJC-7X}!B^(caHIu)%f0}(Pm^{OUXo;6>9OrjE@8pZ0kKp?VevIHk1V6BwCp{i>
z`g+Vtfr}CR6v5AITVHR-@p|_@OXRy5UvZ)nL$_Uy;0hOE69r6Mjo?}Yceyx6@GBja
zZHVB{2ySpe9$(<M2!5yKze$|_$2naj$?xe(D}Mh8-ET&4i#|XnY>=_=?cf8JwPWLX
z%Vhi|oWEIog?~rrKSKW%O6K=DE9WqSy=-!s$ZaC0U|NZK@|ehL;yx4kOk7{+{5a2<
zz9g`7hgI2K|Hz^>_^n()6NOBaH}Qap!X}ECxZgxE6Gcs&sGf@h`tCc)AEr9bS4tK)
zQNl!76Xi^lH1SE9`omXcmoZUFaA~1r+OeACZ#b0rc#$(`rnBX&Ps;e`6--n#QOOK;
zJal#^j_$AddE?}RCZ^Cg8Yh<}6RL@@iN{Q|G@+TngZ}C!9x|buFibcmToV!EQ4X*F
zqb5ufmI?1{yt$n$xihOy#mY860XD%61(vLH>LvUuSxL`?Zz97)WfM%sO(fU=!4KTc
zx>hLp&Z_M3eXCZ^m#ku<s)=eQGR+_|-kwVBc~Ic`p~SMk9De@XtA}61L`@ToOf)u8
z%S3Gx^-VM|k!7NeiMl50vB7V9AGPyedEar`#JRQT_c#0<eUe9uRezzZf3`=LW1n~p
zO)OaGQ|H5G5Hz4E8*HM9iAPLOSXu4xI9o2Wxrr7gzrgYzrCG*Qo>;{XzSS!1lJol?
ziB=|Bo9Jhvzlk;`9yig&L{}4SO|+u}>~%Vspjdko9ZYmIaj$=p-_%gU)~fOI#oeOi
z<CN(vl7qA^-Ar^hk!_;4i5^tdwQNrly-YlP-rKOkVQh+FQ-UMMLcfoRKNdJV`kG+!
zhvSJdH@%71odG5WQr^TfCI*>!!o-s%o-#3*qj|#TF~o%ZaJ=46@i~M1XUfzc%B&+E
zk0m=got;pZ+ffZOG2Fx`6QfOxF!8L3kpyk)O${fncZ^?H<t@BF!Q;-aPM6nnjxjOT
z#5np!&UoVA<eS4C&PNIte5l3*6BA9;uu#*&Booh@_{zlBCSEY{qKPj|>@_i&UT5M1
z6B|uTH8IV^JQMRxOgHfovwBy3&BWT92|CgY6EB;1#l%cbiXU^$rcds5u3oD#%S4q0
zaUQRlh#$-#m_rL3%y@5b<rCKvb4?6e=u%IvRn7tvubX(=#Bvi0O)N68#Kc=B-Y~J)
z#G5qQ0Do|=3{qA{%AF}jx39jG{=X&Iplunw>z=o1lK<JN>}uyby<=j9i8XAViIpba
zrOVAvuHvYj%-A}p&h=;NteT%(P3wJ~arf2a{5{F{DF1qLy@~ftL>DC2aU#r1_Suu%
zz)8_KS@>w(Z|5eT_#sKk6UrtNA9EI)!6nm&CO$H8u(02=Vy?l-#D~TG&EyyNcbV8C
zV5?Aawh7p7Vn>?usfnFw%r5LU@tGt)7rIC2^q&LsvN$7b>@#uH1i^lx2UxF(LxK;R
zI6{!eW-gC#-CT!$%ujGkatV%`_%e-8aFmO>WS%r}%0xj6g)Dqy;#(7co48}*I}@i(
zT;}vQamK`16BkTeG;z+vc@sZUpkcwT-xdDe#1C|dS`X%k)x2!i<cFfG?<Pr`x_N(M
z72o8)Wa1YS{4V}yp-o#>&eNbS1#TD1MS9i5HLkZNZZOxx_I-(cQ!}2=m66BI%i}jr
zOjf!o>lUXH&#m7U{?o)w6DRK_4;)OK<OlWllKkkt!oB2e6MxZ>4kwZ|g4&xOO8mpQ
zyu{6AA-9EpP2A<Y77o9iKd~>7!$M9g5ZHMy$?C=&N>EQ83;8VMw*vinEey+<ai7H~
zwHXAIWat34t$>s|+FvPbp@@YCErcu-6=o@myHnwQ3&kuH7fwkF8xJNJF`$HnpAIDW
z2|tsA9w}JH3IY^-e=t$eLRkytER?tKfQ2h7!xb!K*)@-@%C1-=Nw7H@n3R&0EO5(=
z2ixUUET|R|7Lpdi7Bma41<wlp;?)`9!GdkUun@6eTCk)UjBoJ%2N~CLWZYn6gC*{j
zQ*~)Nf|vzH4{$7Qa}dNOsMRy5i!JmmFl0g80vp2yF!;b9Jt|~asBGcLw)_uSs3K}J
zEzG)`tZJc}B=eu|#Nv!dz)`4fVaW1&OfsSZ?N-Y|Z3}xX>|^gN)UoiSg{LgkwNTGO
zCst>nzJ&%B9<$KWLPHCUEHt-}`B7$LD+sFJ#KI#M9u~|`k`FwVNoG?z?Qy4>F#puE
zx-O328JO8ZN-_6Qj$r#hj7nNrXk+1V$!aa~%x!C-orU%mI#^)xsoS}$+$;NQtDs0n
zk?H+p{I6b_e|666Vxg;rC)o0QZZ`|vEo58h&4KQl*+V3IS?DQ%Wm|U*G_;IW>SLj=
zg@G2{y5RM*(BHxUk?GblGyjJ*Z+zy>-;r5mK$p_(GXLC_7(|5&95!{Z73|(M#KM8x
zNzQtz8fxKb3rncS!ZYlYg$WiWT0w~N;TA?(7{&JN@kUs9mj1TF<u}MIHQK@$3(r|N
zJTE-f!Z-`tp3PixMPn9aDlW}ra^j?n@nREwQ062H&s%uK!b}S<Sa{LGGz-%$Otvt^
z!c;od;Xo}LOv;uIhfn&Fg&7uJrc2x_%k9`^{O&Wi*iQfRGl@g5X3nzks)a=s-Vg!G
zFn6|vIrP;*nXhqBe)HxEohNj@&;>$Y7fOMJwA+1gg2iIJH!Uo`m%FBnEVU6VwXn>>
zCJP_ZpP6f6m4($7-m$R4!n;z6&88hzrZN3zNOk|u)|qQ8thKP-!uyi-9xX7g@;Vx=
zQiq!7z18C?Gx_LbXM=?gXj{7RY=1|$O#0R8=Yu`gi@lKjk%f;f?6k1U!Y7<B7Ped9
zm)%<|Y!&NmvrubEU^?3T!*jiMZ*_8a%-mt&Q>n4}2`5*-%(hFM5x1P(bpBYS&pFF-
z`kz^NXnsAG+GF7h3qP;QzS1GkFuhBBKYharc7r-=;UE_%3#YhrvkeCdAGUDJ!f{Tt
zQ~nVPM`;s=j63Bsie~TMy)P}azFzGs3nwhhz3GrMXr^EI%Z#rrke=ic^g#vzzdHYx
zGDrL~oR6bBeJAv^&<}4r6DyYC!P?JRIB$Vly?k%s2Wiib7A|t3vv9#ej@8*bdX206
zvxSnYvlr*CbBQa`?c~a1S-)6d^0H8ZD;%}MSp>gYxK10|*lgp5h2OZmMDc1Azgzf&
zmnczen-~An!c8vGQ51;cmWA6E@<hSu^OuFcS@oLEIitA41&y=yly#3oa6A651@3~h
z=w1f#UE%Eiu4axXmTF1LJasmaD~jCFplpvqiE4}7DGz1k6`l79%_o#qFeFjIC<;aK
zU=*QfaOGS$isDg}h@waoMWeW1nB*4|FzCZd#QUEpS5lH?q9_|hDZ!<MGJF{Y%0*E=
zii*N{Kq#3N1oX7x@zvQ(R+3~^UYA&jLXE<U!jB>xg(g|CXz*GOb9qFg(9_ru5Q)M}
zb1VVNzs+F_;8i7yID%cFquK?_4v)Abt45KCA}Kf{ipm14Jq`teEx@8dD6>t!C#pq}
z8AbId9*Uxd$WUPJbZ2p)V9zpM(~{PTqIMKnQPhc|UljeLs2fGSDB4BQK8pHLG>8W7
z+BAxWQ8bFu=bcBQXdK1EQItMWw~5eGxhi$NohWoNp>D{xzgQ+^I)7idSrpBsY_5F4
zn6`-G(P-cRj|pulw3X1-LfZ(Xz~fQ06+EGKoJnq#*ddC}QFMt0+a`95V&{droua{3
zo7@MgYZTq0=oLkF6zexT-G%myqKAMgzg8oY2b09Th4zi2PZTXyX9vdtFOb<?k3qTy
zMDa3x=EbamQ4C@Oq8J>-#3&|3F@$DmlpG($geaqY;HfBv3TLEHW<4FnGlGYuIl~2v
zh~ilRs~aXM#$%KuM++SzbZivk1TgnG_Ef7*khM3?d#INhCi_>YK5?@0JjW<Ukr&vi
zhRLm&bzY<cG)(fCEMQ6$Qw2;*^QTAglHeIaS%ku`L>bX8=wOQmi3Zi`9QipuJBm3`
zl(bRG#%oc`jpA|?SE85~#r!CCNAXz{3!->EiWO0;jACIFi#SQ6SQf<_Q7op<tj=B%
zMVXRWJi+mJGYZl>Q|i7&qty#OZCiEP@xOHLpI`TSF8A#ymb2`m84YT6c}KwNB6Z%S
zo7JwlCW^IDj9%xh61tl9oZxSGJpNu3>!R31N8*4+@qQE^FslMicFB5ff7#)GRNKJf
z=dyCH?Y=Pz(ow6kNk8Hgh+=yb2d9TWiSl|0+eC~(wztp%fBUmnXK#&S%u4^-Y`<5s
z4mB|BHu*c)--F(#LU#(?#Tr*<lleKPKqdcdG`K`Rv((!Y#TQZRjbdLE`=j_W$|w18
z9))wc2LvBXa}EhOEc8eeN7MXcQ5;X>Q3d=HQG6xIuTxB+40A`Fr=s{qlHUsbE+t^Z
zPe*Y^aB$0D1QEK<N%PJ}@x1_Yeu(17G`<kU#Wenjb2*JK3HT+-$7Kl?xf;c_DBdcN
zd?lXzHHzyrtc_eY7S~PQh~j1xyfu6A&uYK%ED#03A42~Ws#OoNC~!-}Zb$K#0CN5o
za7XArQT&_c-xY9AXbu}UJJq9bZW~rIS=7e;0`dsWEA&1a`2^$_T0m$)p@oF9U||78
zgtn=hEM{X0lErO2ojb|%>BhXtl^2pFY_!;rK~8BKWo!(#F~mk$8|7@&wNcMTc^ePd
zaBR3XD%hxK!>|#tQOU-GHo`VE8zCEt4L?^>wSyIDdx1JbH`Za2#~a&gW`CKRuXU2I
z3mx{W$Iyb)W;*1UY@3a!@JCK5Yzw%ZRVHSGGGDw|^JMKTig{FS;~^V0Y{YFOY*e*T
z%|_BjhK<TLsz|}h2WwI|D|anY>Zb+<+sU+1U2-p+aVEVQOwU}GoqszgYuczK{5m$6
zRomv>4cJ<iB~5_^Tl3kCvg+GtV55tTt~MIlXk??cjW#wK+l*8X3NRKBX%icd*k~#o
zDrqL#sE1ihHm9AXx<`dRCbXr{RzfLLYHQ)gZM3z~!A3_L?L<R+$z>H(wXbY~Vx5H3
zS!ncjz~K>FS+kps?l$__=x?Kkjh;4o+vsDXmyKIlHM43bv)RYm$rL_o#fe8WN%j>c
z!NO|(0Kw!BvN6!cn->cc^C2YZ6E=!&@VycKlQy2R@s^FHHipudY|OCnvW;hK46`xD
z##kG}ZHy3Aqij6O@tTvxW2BAce<!Gln3Tt8k?B*t&Nz{oVq>a}=L9o%yp0KhCkmY;
z^m(B#2z^oLWT7dw(`-z)@sg-zEwyTAg&Jl}s2|k+%Vp;k8#8Upx3NG3X4#m-1>eT2
zHf9S)s~1>l_WRyk8&o?_n3c|XEMC8SpyYKM3%LT&GLp531C*8-{zz7iuY=xgy6ThC
zo=a$iCdp&(C70QF+r|bPqcgIW+jz&uY8z{8tYBl3Sv=mgu~IOH*zDe6mEgx8Nib`z
zjrVN4FJ;%UY}xu$vOX<9oYFw>fsKuvBa!4L&Z&&7kLUxX>U_vi8&;2MKNbzlUDl@Z
z78_e_)OUiD)HWO2>9jF4i(!Y2Pq_%hP&S60Hg?(g)y8!jyKQ`C<2xItZG3KHkBuWX
zj@tOb#$FqT$gJFDpN;)C4%j#-PW$KyuVc45KMcs|x!Jq5+O4<Q`@U4xVVh^Y<c03Z
zf$t@c**I?FYa1tRd}%W#A->`|^KwP1>T}0oOsAsj<D^fW@J`wI#>Tfc*7isi?wKT$
z$8{rFZbwamoAcslZ2ZV6Y~!qrb2iS~_}<13(u`-a;uTk9^PmN?PWxuh<V71l*|==u
zijAK|=8}zH1oYlehho&ZXqn&VX4X}y_nM81O|sYpX0cM@8#aF9i6DmDG5l`h4;z2k
z_*=yOq_x+_ZwbCBl*t0O^WU~{w|lS>-m&qIjZQ-|a>Vd2nKtf8l9ke8Ypx~^bWaXz
zoz*QPi!wQ5f#g4fGV;WbH-@4y+#kbzG31M(Knw+A$R7hGNmo|O;z3*}hQcvWTM;Qc
z^+aI&lycHyF%*xXR18}ltHat$#85I8G_23n1jTp|mzG=t%9M+td<+>eRF2_+7%Ieo
z81xt_iVOupF;o)#pimAsnMw?54B@nl7Q^EkJo0(0|DuZ#LnH<_1}_GawO>iTw867u
zuwsbDK!KEG$5Jk{Vlgz_;yW?inp3&`?8^I|FX)TfL=1ca9~WAifBmHEqJ^u(P&J0E
z80y4OErxPWWn4+*uMtCL4AU?B)nj-lhU{b(`8;L~%BUGbtr-4z;=#A;XB}9bT{{MX
z$$GMG4E17YlFWKIhWarK7?9C`jfsI-9F#^eG>+ldME*XX#`Dk3m49wsf^ikAlQxOr
z5viA$RWy&G1;-+W&M`b1!(%b<_T0(mw~XPJ)!F?=#M{NtDi+)kw2q+-Z6)~b$jWVF
zX!~05X9016Vo6H2kD&ui)Yk79LzgWMIUD=NyRe=8yayaqaL|?h5JUGEdc<%lhHql%
z8AGoaX2tL-do7aVVt6iw-ZAuvp>GWRVt6`+XJY8jKF08*$WY-x0fS>0B;biy@Wv7O
z?LI6+I)wIYk&ED|wEWN*Qdz@d7%t4wLPx|fGA;8ghh9pJ63+8qR-^_VV<b6NC~FxX
z!vqeNBqzo&Nx)>G&&TkB0G2A(wi4-!)Y;M{n3CpCjbU00&+3K9<d<tN34ca9_vIK~
z5j;~UKT4w5>=@?6uq}q|F}xPTT#iu;Yhsue!~7VQi{t{KZ^W=ThSy_Q7{i8{`B-+5
z@Cja<6C~e^;Vt1T5xOlAw2jA7NiGxmb}V>3CdGe8I4d}X1(5k}46Epbl1z!MWnD3R
z5W{<EnRNoz$MAld!;Wke{E5&_LO+b*qZmF;%S?&prGEbZzB$d=62n%(yhCBuju<|b
z<UXN0WB5ERxhsa<f<H@h_%Aby?1|xvG-q$RuKh6_h~Z!ihhjJ$!<R7}PRktS>LfU2
zy<=&9%@(;%#DW(-sq^a?zDi^APl`-xK);RQyBPkA;bsh{V>lDTWyw7&^n4883pmFS
zJQky>A0+vcP$qvAa3O|^X%2%BlK-<LFL6o=NY!;EhO04LOH2O7`7Zdn&>KQigZ{hV
zKZK@c!7af#9OQJsc=fkq_$!9LW4I&ydqP?7KLY;cGMMJ@-@RcnM{+sH?VyB%aQ-+Y
z^Ek-wpnwxh_Pj#x6PnNYZ{8J@By)=hC?vG7^WW$fP3PY4pqSv|X%63AESbio1eA7A
zMnG8y<(&W8R$e%K=*KE}RFtGCw35&V9fSlhS8<>U4hz+ULZ~j3GKPSNP~L4>4x$e1
zbZ&-&m;=XwE1bB)Xmv@J@*MbSna$C>3BgIB><9%aJHbE8RfJR3K{WxH4r(~4DY&}O
zhthUqky;Mw2$Q(BfGnZ>nv9&f#OYkVc-Fu{LkEo<G<NWkgBcDUcF@E@8wZa&c*F_*
z7H`)m(b7Rv2hAL`^{O{_@Te2KMA1T$<eZ;TbLBMWF$dZvhkVMnVtX1TS_>^+!f#99
z;Asck_PIT`6mZbnK_3Sl9dvTg%|Ul3c>dYhK^HFjg1;K(%x)iV+A3>$&6+)jJ3Soq
zbkNH|wu3jD)msqt^X_vBo$`xT$jrMYds5!`hD|m5I_T%%2?v86^mj18!9WLt985ox
z;C4USn(Q-wCR*?Ge|8e>Zum2%IYS(7SAnM-40W)7v-3oLpD%U1^?_e0hs(dbxhHtO
zpPgY2hC7((V3LCo?6re24#qkd>0p$D(GK42TBdx1#KoHNJ54iN9PwHy?ITk&#yNP-
z!FUG~92|Nek!M)l#^vK<O4g~EsNT7l&)A_2_xsN~c)`Im2YEL8FFKg)V2XpO9GX*E
z<~pB;f8L+4-}zUo!Glq19~_#TPLFyxPWhJ|yyD<f2Rj|ibTG@o+YXjHc$L%B!5a=1
zJK!rWa~#ZbFyFyz4(5`=zw@EPgMYy<a2Wg_3mq(SxZ6mAQO$X@9Ov`6dCiO6i1SYK
zO*&_;<PryOIYE@ysT0CW9V~M&r*pE#QLpd4&Y!&H@t=qecN6b8Sm9u!gG~-r(k2ex
zbFj|ADhI0_tZ}fG!+P8~)-vzQKRYK^yIEy3SW(uRZ2p<D-og70HaPfzr6xHqw~hZX
zvP<iqGkUJc=F2eN^#uRF`_REh4z@Vh$`yd)J38Md4mQ(hm$GhI8DrOE4{YYY&@Y~N
z)!F9Y!j$B82Rk^jyZnU{D_2{Xe7Ruq<2fGV-0pI)+rhUEzH{)IgU=ltc5s9@4i3Jc
z4>&j=ZP-gMI%Vw>%zFy{W$^1s{~+6`WE^tP{A`XslQOc$IY%=5Keu~F9UOD;m4mMx
z9Cz@ggA;U*LHXDI;zvto^637d*Wilt=(qk!2d$g<ryTAxf`5m^y@m<iihf)>&Jmfn
zCi}F5GqkgVOAgLDIOpI82R}ME&sp}C|2_E={8@Lr)2*|ZT(q_B1&5J`b6(^?OV-9U
z*$0}{4gMnMn_XKHzc{$;;F^P99b93<w#Tn>;QD$aPda;!`%Gs1m|*g{jO-2eeYMXa
z=Fw%2_lLt>ByhC~u2sQJ2e&wn5*U=gZ3lnRqdd&_@VA3IT!LKGa`6wlBR5|KUECEw
zqvdmPPjC)5xG&2oG?xp$o5W;p7kPw}SLl60*Zvqh&ES#WMFHW=9uXu9xhU+Sh>M~w
z3^#aieZPxhE<%EfyLc~OW(C0|T$FTC%0+1xWnGkWF>H6e56|W(<6>Q%AZFc>HQD7w
z@&Tdba8E<VH)dSuiY{W;%T#jlpky6g6Rz}7up5^mN!3Nzh34YgnrvM-5KIAbco0Nf
zm@c=`K~x0dE^O*_;YpIUI4)el2fq%YKvYxeyfD%y^<BKuC_j&c<R*n?2&GtM0aaX7
z6;LhB&va2ejURGRLvYKdgLm+1yU23!y^9}Q)NxVQ#Vi-Ex~L~Iom_NwQQt)a7Y$uB
za#8!R)5b+(7Z1C5)Wu^inz$I-D1QqVtv6;pBBh#AU{T;*%_P}eXsKs1$e~P2NwP>Q
z7i%)|l38G4Mr#*y@+Afhtopc%wl3O<OnVm{T;#o$Bb1S|aqpZ>F9tzxI<nGdlefNe
zy13}ds$Gn8(T(H2HoJ$5o-Vpe*`2>T&f4r=F0x(pbJ1Uzy<PMb&_^h>@t(rvH|a`z
zfN-92G1SFC7lT~<>Sa7ZJ9O_rvB8o%MCg-359Ys*{HI+!J0a($Zuy>Z(c`tsGjk<|
zxlrDS4;L8<jG%zvkwQla9i7e{!-_PYV$Zo4FU*-PCb-CTHQ)0tUT`r{@N->qPLf;(
zqJPoFWWiHi9JmpD_&kMU@k5S#`P^5k`qNxYcTxNU@4F)Lm&jk6JtJM$%k&(<g=2xQ
zGSc`vo$Ab{*<EaNvE9XMF6O#e;^HkA^IXg)(+?)X0vE4K!No4Pj4yPt$i*A<nS)uY
zUWt!fo&VTQ=hU|9m)=OeDPrdy4fHQ{vCPH$E;hJ$+r@Ght6Z#h@s7x>bn*O9zexL>
zD<rw3XeN{I3UlfGb=SC9>ta0%>dE(9T-=g(9T$NE8BA7u*K1ZQGlicVmj4468%4ur
z7n=wKf6S_n6=oYga?xyf@Lo`Z3c+?`pK!7(KBKa4aj{h-yYA0@+sHp7UT%krPhA{w
zaa8y_U3|_}Mer^cy9InEl&^X7?YJ*o>~(R_#p34zKi}tKzvS}Y+k5SE9-vRw%*$EK
ztPU6bLoN=xnEG|@<;j}l9CLBp#VHrxa3<z=zjX1Hi?3ar5Doo)44hmm*q-#HaF*N)
zIN!SX&czuQXI=15&(ku>J@y70!0mW2m-0f;jH7p|opaGCSK>T7a;I9OPVpaIT%hxN
zSiRo6=;9|AzK6JnpIuy{H9VB@@QaJfE^>It>EVitt1j+vq2`h$wcm7ci*v!nbr&}{
zAIHT1q>_z+)BYv`zq|ND069y(QHGz-VD4?<eBHco-Cwi*O6UH~g{5lXQU40(uF$Jv
z^1k5KA@d#`-VDx4xjf|dkl#ZA4|%*`4ZqJrJ`dEE*Tb1sewWJ`*{1>@o0h}vcsYmn
zeU5@2w_xy#c_<|E%qlFPh=-yA?iX6(%b-+`MmdXnC?TAZLdh)UVe*@Soy&SC=Yati
zbPwe{Jm8^%hl(DwPC?7RDw$b-YhGd=l{`G?ft-*B#e?dBFE=tbB@kv2QO;zll;MHz
zk(wSX4=1jB5%%tA@P27jfFsoQ5aU41^O@Di^+!~w<9hHUi>^iH>-(LAhopzr9@==w
z@KD)9Ef2LlRPj(%YJAAUd#~iI<{{HVb>TRnoE@@*UFY6^ve348&Kkn3DRf0NIjwqD
zmWMhX9`Vprm~}lg_VBQWdLGVI&spEYvA4Vi9(T(2c{CKzNa%~LD>rGI|6}=Briq7Q
zAJokLHLID2<{ny!sums|_3)U7mL7O{&ne8K*&m5di@PbjyK}sFr(j$j_jt>I?jCx0
zXy>85hpwWbgNKeDI(z8CQF}V)BRArmgx_mzHusxYCnp77bbVq6O1gPi+B^U~J@gW>
zJ|40KklCBVdML={QRsXy+<hghpBHT6!#6Vrco@iG^6-R*aUP!YFxbNo4`XQRYu=L{
zp7MgNct?0x@@HbG$3J2+h6#S!!{P(ZGeQfls5#uj=(X9*CFQ6+>*4)%T}FBsMLxad
z=OmME)i~+=)y`O6CarcpR^#J6Oz<$p!&DC=^12f}yg;Yw<`Pfhp#PKcya&FaMDU{U
zZ!C2tle5&hoijPj!*ma`Jj`p9)p~gRB@Zuqc!hp4JU&C{CEX{UDR}RIoT=oi9%j>#
z=H{B?;WZC)#Tw`Ts<!uu;ADNfd{=5);Nf+)FpdRrEcCF5(=(1dalFCKdg$Y$ug^VV
zu!N54!}swPhrq*6Tx2{f^YFHZ4?Jx2u-wBt^qD@%)pV+}i4`6?>`uPxfq#mv<n)>7
z49(-NqN(>d<k#Qh<l2$3#sleE`m+Gybsj=rC)Z2zeW4qK7JD}rpDu3lf`2W)_b^~=
zg%3S^<l$ov*Y<dyc=*D@UJsi+Z1K=wowwD)P7k|0Y?I`6p*w_rDwHzs-6-(;L5E;>
zn)8`}&pqr(bB5-tw9mtSNuCvYK<Eh%2R$4Te3;Wm0976Fa5RnIY+9I{;~u_Db6De7
zT<9cuQs{R=PYL}-=(n657lT%vmgE_sOrC3zC!mr%FLc+CN<Vn`(ZdA~+)?PF7>D+8
zUJcHP`~&oohkc(qS3F#03%B~e2)!({-4XgbFM(kBK@i&ObTbcO!M}O<-3yo@AAflG
zlk?igukj=~H$B|*ki*9<*686cUi^Fb$HTuO&xqf5JWM+fY`zd(5d`nO%k})@irl+_
zA0{)I(?>2J`F#}dk=sWeKZqoJpH!OH54JyeWqck!uVc_c^7Hv%3}lun=%bL2qCW2T
zQP@Wjk*5IT!ZD-<1sFMs8!j*uZ81OiN|c}ZkXeFaK1%s0?W4Sp2Yi(AQPxK}DNcdc
z=a=Q@)r?rnFSEG0Km{KaeN^)CAU!-3MC@l4#fbSqH^bYWY?xn>vT9nxvy1{Qm^&pw
zfG*VV5%FOPW_Wxa)Wahx9NR}sfFslu%G|o#1;9tbM{6H#d?bCGs+Oqfqn3{hAC-Mn
z@ln;s);@l9AJtgujK?FB_8eQ7%oHVf$VZKIE|ax=Wchg5M-v})d^9+nr=E}cKE7)b
zuj?akp#q;TFWbOJLm!QNH1<(_y>qHjF6J_e2XVpHaneV8+@4XmxsMhc7az^o!N$2t
zMtl}u)+pDbJ|6SYlJ!P>mSXW#)~!B%D<Aq_K9lbp_8#X5uJk+kAZ{zPozV6|I|%K_
zzBi6jptFxIv{gyJtB>wJdidxjNpdn8<RR_pqnD4ab^V(~itxx5%w%sLN0(J1=;wo5
z%J1;;sgD6Z2Kt!oV~)=-?|8z;6dzN44EAwzzt5|<r+p0Z@uZKZeB4_YA1eHUjmr?P
zZst?w86U%Z4EHg@$E&OT$v!5Q^q=+dBCD90Bp&Hwl#kKEA0u>vkFf%nJ5IoJLdOgB
z{_)A5D0q^O=LL}Sf`I2|CJ!&mT0S%RO|8V%w=<^s*!)`ESA5L$G2O>YK4u7q%$NP(
z)klK8B?HQ1mLI%j{i=`MiGmj|CFZWpX7V*3bA2qKd;6Ft0<Zg6=wrU%1wMFCjKYh8
ziIZHjHhZyf-eAGC*(uJOoU?1QFW>dtTZyGUR`^)yW0{Y)eJuC?A5&ifZd3KYZ@%WS
zka>6!Iqn|M-us-r&)Mf9Dyf9b6|R(0D1-_TLYb8@^N^Vondi)vA!QC_Dnp2h|GPi;
zyMNFBdDinj?|Ro~t-bbIpSA9}d+)UtGIG?J$L@3W-Agjb8ORqZ_>#F4EKzV~NhTGB
zMPfGNkj}7F!7@7J(`NNdgLg`@T)_$jD@9x-xK{8h1*?U8ElA666s!^cmt>^!twh&x
zq=YsbglrV-@};pw!Bzzq6<lKbDA=yx2L(SW*r8yjf_)11Gw&Q@mx4WP*z&RO6zmpd
z>q>)x?XZ^~H9sIk8XTZg%{RUm<AW@1j^BEA21AWM-9rivEBJ+%R&YeYQ3XG9>iaG7
zlY&-;eoUH|X5<Vv9y8hgHFFm_q2Q!~Ulp8Fa7w{xwwr>p3a0JT)cP3=H<K|Q?)GZJ
zWCh-D@10k0LBVedey6{+_ZrmEYbtt{CuE-2=U%hlyw{O^ahWxwS1Y)p;HrW@IKy1E
zuPeC0>0QCK;IF*SC(K-(_k2We^}xBw`JY*e*5MN{W1P;@2e^659Zp2!Bli^i!wEt7
zT{h$T2+elSRsL1L|5ERB1S$AWcxG*#3PUy(*;V9F0|S<(9nkpOn743aNoH;pc~lHh
zF;qpGio7bCs%WMnpNjk{(p4xb3aBWk;!zbfRTNTDSOpi#l~7Sc#dlvuxO%RbilQq1
zsITN%s}hT=pvZ7?okq)tR6MMrq>551N~?H8#rMs<Sv6ywYsN<AuUB|!W*HS_MJy*+
zMMZfb6$EKqQAMSYR~B;RdPnM2g>#EH@@j(BRn!ndh2_^$@fdF;lH-ffYHikbPI?^`
z<0hLC;qUj4P+{OhQB{SeBBmm)V!(7=S5beilCd<?P+^MF^;sjT!ct+YsB+eGRE!v;
zKe{w?);zWFIb-O@imL`oVCpfW5Kk~6m{j2lp+QPThVZ(Ad^tst;c*p>R6H$W0~HNJ
z`zM4vDfpCN*7BLg!k=L^eh(JlJS$O>=TtNa`SU_}p~G#w=7L>Re3{dEK}8E8Ed^T%
zwpP(bMO)z=1!>t%$cyYyAuoq|dlemocmG478AGN-JE?d@NaxV<RTZxZFJ9QC+3PCa
zP|=kIF3s$#qMy|2O%-pc=%%8(ifs2ah8`-`u1?S5Z;SYjU{AqbDtZffSCD3XRG#<e
zki4hjeLC~b^Z_b9kkDVEM^CF1KOYw%4pi}>ia{!lZciU9`1%pA<6jvc38(njr}>Ae
z=(9AF;ZqeK3m+~xLU3f5`U!ozn3H8WO2uduV^oX{Qzy{bRE$?avn-n|GEt(R2{QX+
z{`gl>OT%Ltrt-(XiW4eMs+g|g3l;lS98fVs#Y`0|Rjg7mOT}yzi&@*F5iXINqhh{_
z1uEvMm`BS^ZN90lX4>lQCc(dB3)%Q87SR*lj(j;a`?)c}yP-yp21!d)ELAZzN1bIV
zR!C`s+bhde5V_E7{Ia|(|0@-%RcuzVg(XNK->R6fH1iu3Yb1-_*;^|*N$U}jbt=}Y
z*q~ygicMn43$0q38O<F$*7&wfJLcW0VjBmbirr$cUBwO+J5{(-A{*aHG3>e<{QtO1
zifvR-CEufBuZn%59NV9>fc!(+<(1$rSjmGbepc}d2fm6QRQyP1Q1O$BWArY`azt?Q
z6M_A(V`)d}0Bzcl2Vr<n{+f$<YYfTOZ+p(;Vp;okP=Qk_PSe3OWY=&;#aWd<#c@r=
zuVO=k%PP*PI4{u)Dt=S(yBe$=o-tGJbvANQ#U&N(Uuf0lPJ|)@*GpbeaaBe1N$tlw
z5r#il+dDxuuB*7Af_L<fikm9_QgK(sp7W7gQuyD3w^iI>S2hg(#b6k9u;s8}*@*X4
zBu-@eb7*!xwE0)Xf1IH5JNG5a1HtYsvmag>JR8rUA*Y6t8cJzAffTtl<kOH}Lmn+~
z4~D!#(lqc|jN0w8*XxkCfQUsk6w^>pLm`P47AzvTP6@UX;d*UiaZw)DP(s5)S=?>+
z=BPGIYF00JPEuOKBO1zUs356j1j}hCtKp(N>&Pm3-tgQNHB{12Q$xRV*(+<PqTx}#
z0ZHag@2ytV01eeNJW<?m5-Pu4udbnnhAwZreAF=H&&b}fbq{8*vzgnK(2?$D8-7`<
zts$bJnOv@phI9?ShLi?HgDPT|3)wUcx`vpBxCVnYoF1`gc`uu(A<8TM96YBgQ91A;
z23vz88Oc``4K{ypH6%mD6Oy2EJs3?5>I8W+G}IOS84dM>G~_L4fzQ;}@VJHsyxHx+
zgU4=qcD|M(`S9OtPilBdLn94OYxv`Mw#JgNM`qbVg@Qiv?gaP9@T`XCG&Iq82$%A_
z*fbS>$jm<YXbu`Q*YJYqEi`n{&{0E64Xre^*3d@7OOn)9kj5_xX{TZ3$HDUo2KK_s
z8rrkwXS4sCJNtx}g5J#3V85ID6%C!mzLSO}JB(Xbvc1Yni_%4K>*;KJ8~F53X6g1?
z_O2S<)bN3U{s!LC(2a%YaCCIn&_lzv2hJr8Z)<o*!*UHPH1yQaOT%0Z^EC9<@UDhQ
z8YXM#qoJ>c(Hh3E-88(XVTgvI8s2B&8U|<>sNt(0BmG%sC70yqBk9BsH4M@)Si?se
z_-=~|10R*toUgR}Qz7RH=wTW@)-Y1TCz5x#h7nQ}%h~d!mwkqQ`BaeWQw^g;ul%Ey
zRnE#=Eyl7~4WDWFT*G(`6EsW|8-A<LRXKbCnq}GZLHe%?)35B-Smrl9BU3o}YnZ8F
zmWF8>rb`z7!TLf-?rqA7uKEn&6~7HC$=5(x<;>PFNAxNCtK8q7ZN7#D8kTBU#+Dhb
zFVyg*5b_H7oJGPH3oZ%u-0QSQ%4s_%2XhoFvr@w<4Qn*4Ww9D&&sTXNt~FRKSNU4Q
zHyZehlp_D-CsvJTOxfS&TMg?ptk<wX!yyfaHEh(dNy8oudo^s<utmd84ZAdKWs_>y
zu3-nKplu4j>SrO%Er-Yj<HU|}^*g!NZZSB1E4^ijz=reZKG6?oIH+O2aO%l*`u7@M
zY3Tf*;YYUigP?u*Mu5n0CsOx_hNBuza~jw1lZIm&PG~r(;b*qMtL1*ta9qPPc2EI^
zXFIm4{h!aXzfVc|tE-i#$VZ41i~DCa{HozM4ZmwRr{TPYDP@%l?C5d90%Y=HWt5#y
z25oXNtlRNTr5HWFEOJ@H6%AK8ggFE2D5djDKU~w0S4Tb_*EQVG@IXU09XB=nrSS}C
z{40gr;yYg<w>8|+z|SH0&G0^Pzq=alNz&mt%9$KGFO*f)|1^{t7`ZP=Y~h>3ReD`^
z9l7*iI56Z8l2Zqpj?vr_&7&ht5B|lV(&l!AOWsKGOA<>fp#SfS>w-E82`?;IM8~Mo
zT2aAbg2e?(2tFkEupp~V%hEa?;WHb_TSf}6q@%Kqvck*hD6iwUYf1$j6-Bv!HK<{W
z?LnVb(NR@LEgg^P!A{N9bUZ3H)dgz^(riKHpbOsil$xR(Iu_*BvIphV))CQBNAz^L
z{bd`1`~BgLO;lMcNz&O4VQGdAQ+O^rD8~|>rNnf^*=Ppx8gO-ZIu__ys3W1H@4ECS
zbbjiIqz+$4N)O(@)3G1dk)flm4t}%I;6vkPLA9Qa`Z_-s_sCaI3Tztacym{zq2P}E
z`cpa@>3CbmJ35}$(O5?Z9UXN%qvKf}?R31T<2fBobTrrTf{y2PbpBJno>y<C<E1fr
zQymxb>2t>f%3L*H3mq+WwARr^M=Mr%evYE`^;XM_g4tp`GyP~x-*jHTYnpA@%PS3%
zmvl@@=I0sfFY8E;nr0*ik4kT^qx}b^NiubG($SSw)$t0itK)SYZ|JB{)OnSKKU}Jd
zj@KCN=nYn5vl{4ibEft_T&itOeNbIJ5z+6@()Z@pdC2%%Y!Dr1bL(^S=-qYDvWE^P
z{dy>J=0Cfqj$S%Gr5EYwt>axCAL$sPqYv9z$F)r3LmmBeevGOY&Cmzvcu&XsI{y78
z@_~-~XY}K>_5KoN`4k7zcv6MBm$a%8eGrW!`e5GdK(lj1AGSfuzrYx(V+0%Lfiq0U
z$86GE`fwee9Mx;iFUu3s*A6th=F&$}p|{l0c`*9&T>5AoV{}Z_F-@vHR>uS#6Lk#E
z(8sYdoeGZE!Fyq|w78^w#wOK+qt)wmG(OjZqv|P6)-gpY!^76o4*RUnbRA#N+sEs3
zb<EJguYG2-m+R^?h0hYq*U_UsM+Xn-c2*i(;L}Xg=jr^Nqt6eVAvh-fOC5`JoYQe$
z$6_5zbZpVFRmV~t%XECJW1WuWI$r)H@)awiV}<aQI#vn!B%(4f^=lp9=x8`9a`I1O
zjgH^HR@VwLi99;X$gy7`U$0{m$N2g54U&DMAa$m07S1F_x9Qlf<A{!<I(Be$==ecW
zcj@>}$37kVb?oM7EnRO9n^ec~hc#a1yHi2l$L^+2JQ_Km<Dic3C6_Zj!eR$B2`cbh
z!=Sc5vg8-b9nx`_Jrz-3Tdv+MqEY`z$1xoz!&?2UWAl$Kevv52aUCawKQvE`HZ?|;
zFiz<>t>X-xlRe1MSJUU&)4beAMd}3CYHCcXX<p!zrQ?c@tCE-h{4nWv;TLsW5^`C`
z_^pOhEk*o;lRq6&$A9!*PX0P>>$t;lI?G6w)Nk-lfMoeg$1Nc&ZB_%7fn?$H#@`&m
zKO6US+|@C1TEYHX(uWr||IzW!zziPAO`H2V9&qw$uH-V1%|LboIgKEi!@$VnYF4*y
z+2PUhYy+)!b0xQdFE2*&7=aJ8oox{F8OU#-r-5Du3K%G8po@Xm4HPm^*g#tY?F<w#
zP}G2Kz%WqEKyd@54Lo9?gn=?$l!pvFYy?h1UeZ7*Bj^rRUf-pBaY)TpRp(X87$|F?
zj)8Oo<qVWJKqrY9`1EnLf)Vsu-DP@31C<O^mbx)Z4IxzwR29NK<|r~$6H?v4o(n<!
zAC+iL!CHck2{Ng+kntCcskiLQIW)z9YCtn^=y6lK611K=%*#=urO{43c_U&Ph#K$=
zBn))h7O@Q21{~qEWQZAvbMiO9kH;9ju{1#TBQa^fmus~#kP?z%pss=a52cvOP|rYX
zwp-k<Z{Tq;Xkg%31J4;~DA6YbpA>w`KqCWB8)$6c8Btim@G3!t*}`>y39i^g^yY%k
z3pN#OCP;&IFP3{jcniUnq29{C^D_hQVrA&PU7H&H7N@@`sjnF5Y;Z{kUN&(0A*H>6
zjs^zqZA;@02G$P=ZY0w{Cj+B4DfGZQnnrw;w{X+_tCl%$mhqaDLt|QU)VyKfP5$hc
zXjj4P&#0*yUN-|h47|;@s^N7Pj9rW{INKuc7|0^T-bV13^j!megmk{AFxuC^dlDt@
zC#2%D!541t8z}jlLo$GMHqbAM_oDdFz#s#scsm9Li}4TxLxp@KxTmf@%)rM6zBRDU
zz;FX23@kISoWqB1X<)K}DfCj_vH^ZCH{QVNa>{4}T}v5b4LmeQA0x<57O9LAebI1b
zf`N%*&&{<yGw`{ANd`vOZ8s`U`H~asGCbVCVbW9s(+o^EK+fHhzA!Muz(S5t12YZG
z;-FiWInTgsdRIGdF1@0Ct2qW<n3Q6;+}2|lax$GZ^9?L8aJzX1dCyDfiwqnqr7vY6
z=hGLn8V2qR&PPiID$P%&Z`x5suVJj<y%_k~z)D_mVS2sZkyQr1qH!yQ{Po**v)Sq2
z7$9=R?iwL$1*t6R6IpLy14rx8$UXxb4Qvv=%fMy>TZHd0uvN%*!EJ)?+)8Jb7GD$~
zGVByFEBc**-5k`S9Nc5@ef?eoYxC4$mi-0}7&vI){YRAV4g4TB&lIimBge9V;|BK%
z%Q$S{2xlGxKN+Z9QKyn9kwH90gIDwYY~UA`pW!iSz>7W!L&v<@2?Hl3`>h&*agJgc
zXN+Kpjc&p)an``E2F@9HXPo(ufqxC0H*mqgZ=CMf;A|`D<%<R`8@OWN5~qj^oqkdz
zpE{|mdzF*G*Z%5BCh-pge@gV4;B`UjH-y|Y@RyKVp<bu5TQ;}CkGlUhaM!>+12@Vz
z48>nmp8B&c$$tj!a~?MFh=~WB{7vLDk>5mi6OHZ~xlH6Xk;6nziSqxxSzYT<&tt;$
zjWiQ^MbDQ_Y1mNzDNW~IYHv@_3z#TqqPU3?CJM2r)kgN1Tf{`oFO9;2*Pd!ylzPl%
zC?=%lvP|-agqJk&u$a+)%vV9)QYJhxC}X0miE1XQn<!_Zya|4G!t+-unCMteuVSLA
ziHgE22~w;qgx^73zN&QjSdIRfo+F>xy?pKu)~DAn!F}`i>8xtvQ8U<}tfpWs!N&w^
z3o<Dpq>hR7P*H?5U6%RV>xyQA>n`~vvuPq~;-M%Wj>0lwn|Q*+lO`M!F%yrQxU(@5
zH{qJ7%Pgfd&qTt6Zz5#|-&%9S8HS_@;*4T?h8fIV4BxL)m`XA|mr~C}eG~6r3HZVG
z`uzKm1|}Ms!N<?!gU+TuWrACWy<nn+iDy1D8<}|8L}N4fR=?M>%r_3J&zN|YQ4{1%
zOf(Zh{=AT;CVH+`7;P@miFcF=i_%+~Xk}u*i328Dn`mQVf{BSH+L~y`b};ddiF&Kj
zUli<Q;w2$33$_<zY6td3$TNkU?wa=%6P-=G8tPq5ycY5<LSAPzLS^Q|`B~1JCf*XI
zTc~#z(t|#nR)+>XO$?c%_A$}dM6b}Mw~2Q{{%Xnm{e%x>Qww>IO)BJr(5AnT0fPC*
z<R4^Wu!&I;{YY@Q;1EGxbf}48A^+IK?&awe8Ag~GDf%a2>Zf#uB5GFZXc5N<jx{kZ
zv>DIKwO45KnTgL$d}CsbiAg3Vo0u&&Q$oubCZ>jbnvm&&Uzqr|xz7@2N_18zQki37
zu0-dVSY~3miTM&;U}B+(FNM==iHSuaUu<H^{or<%hRW2EL0_zp=xV{0CRPdgDzw=-
zCb0S1<bMzv$y(7jnb^#_3126;KD6IpVq?g2%nNRRi$wRB*lJ>%iS1$PZXr7acM9$j
z{EnWvERz}Ytj|Z>E8;%Ep;DQHCcZcEmx)^<{$S#~i3^-bOdK+CSVU(0#l(@2A2sol
z@MD5Mhx&=0`Hl-eA$ZcnDIuo?e>HJN2unLlKQw~dITtDiy5?o{H;G;m{9W*(iAzE*
z3yzaqw7e?OKTP~7<eDJ$>n3i5{HBQ_vmz83ZgYBxB6}2fB=v8>yC&|L_$Rb~VB+79
z|7YTU$l0@5S7$jnqQSUcAx)Yy3Z7_{Ta-Le<d3326loI8E0|A^_RU7;FDSgIV4+Yi
zETo8FwG}}<iwQ3-SRx8_WY9__qbL<cU5ZhZj^dFh>O}c40cD~n8%5P95JkBt%12Q#
zib}Mpqo>mK3Q>NksK1%6H!D}FaunQaBHz_i6&CWq89vZ7w`FwPs8x%iI!lP@wWFvJ
zMdiBsqfva$|B>_Q_3OoIr0X@Ks1?Qf|H_g-7Uk*{orDh-B2j$N!yH*hS6Im?oG9)d
ziliOYwJ4s=G^{A}D2yoh)WVE{PX-p0DMcO?h5yADOqzBSe24z^89f$7JPJ1oFN#zY
z9ny5#C!$D3gXaSa4(FJjQ}=~4dRS?h5e=R#{CGw$(#fwM#pAq9Dp53uqG1$6FYC`o
z@kA6)M)7nMjibRHR!>FIccRXcxh|<ulqV7Bg(Lbi(cp>4vr#-JWc`@nx+jY{O`@25
z*tnic=Tjh-)>O)D7DaO*F9@Ewtha~;U-Z$Sbrfx)cq@u-QM8Ss9ZQR%Qxq>o@lq5o
zN6|itK0Az6r(1G=kACNMZtKw@io)NQ>KFx|3;Bw^^@#raM&lJWR1{sJc%3c7ykm4e
zcX};~od+|>>y6bD7xX17jXfXuZ$#1WVro<CjIL3<83oDH-x|d3QS^wSXB54nnCF*%
zI|@FtdMAp*dG&Ad>E<Sb(cb)9{C%l+StWLTE<JdD6*c>^kn=kC9^u1~lKJ)bqxc|-
ztx;@?qJI<vqL>oJRNDLL1EUzi7N9$QnfJpe21SE+D1&*S?dcyy(RxF=xjlXN33Zt0
zpGGk%ijSihF3}NDd=d@bwK2;`QQUIbZK%)xRB&_@V?_D0YueZ-#ziqPiqGg&HzT`0
z$~#_?m}`O%eyGWpu%AaUiNjgb_~kj1CJW!aEO<{hEsE(;tc+q6y)=p$Q7n**GX-Zw
zF<S^fx1JNl+$iQpaj-{Pu+!Sf$UI4Ua4sAF+~ltkyp~!R#g|bm5}nZ%Qme&+O9Yoj
zu}lbSyF3b3m}Kz7!8@a`qF5cpMm8_ANBN;(P*q-TO<3BxDAtDjTOsF`Wv=Ilm=i3Z
z*bqg*<(b`bE1M;0_2vJ)tJ)I9$^OB6wCz#sh~iijKhsad=3o>T-p{rxitktx4#u0o
zi{pJ!?2**H9KxrR#dU(b`$gf~t^-l*TN5bXNAW`xKSpsVilX}hh2gN69Thwx_{OB5
z%%7ro^n*y7v)O)$;<)JNqBy}GpBLmh%^LFRLnEgoiOR47*|`w!Of*=IcQ%S&MW56-
zc(2EBp4E=xw<zYE$o9J=U5etOkRq;H_06C%mnC{d@QGFGpHW=njOU}0kLyv~prd*i
z=;3A*e{p7ZklVp6F8<;jSvX|jP85H0JX&aP;cgW7qNrw}x`ltD_?LsiLP-n%MRA{F
z(?Sso52DCsA<aTw3)wB?u#jAy$vHEpg<KYLTgYSKR>R=aFD@_T=S)|=O6StQn#(h}
zVOKs2`7Mwaw7@KU_}O}SW&sPWAE^9Ls*r{CTQZp1VWXFAtX|YYi8YbpR`C5*F+oOy
zVBvnBw1=$VleWQsq?fW#+5$&<ISUOt8IM>fW1*~Yj&42>=96CT!pGhA%3G*lp`wLK
z7Wl<iRST6ZEIn*gvAC0--hFxIb3IHxLnddndEz6HPi|{ic+^5;3(v6T7HV0rEjSh)
zvryZDW<j?Qu~5f?!W%Ci>$|=j!}f2|)203^F4j^lFiJu+ESMH73q8;1Q45PY8Vuys
z{;<EVqmv9dltv}SF32<*SlIcW9k<{L@dOhVmQ9Ex1%1Jkg$yfLyIohJk6WlGq`n|u
zJJOz;VG<i!c*4Sy7M`-uh>d39<K>y1ld%C8bY6(hhxv6GYr?0#&sunn4O>TVEmdVx
zG_ml!g{Bso(Fcy|Eu?*#TbR2%^95-@-d)o+`oD`>w6xI5!r4_3E<5e@hQiO)+DKEh
zwb0JOixyt8@WI@mD~a!pPj7xlZ_q2!fi7WTwuLzsGA(qnFv7w}3$Iw{Y~d{n-7LIn
z;Wc{fc(W_7{+YLHUWEU-cd_ugg*U9=3;g=`lxHU@Y--xPDVE$cue*gFyrPBv7T&h-
zj)guJ`trUk^kOax?^;;rd!vggFI@`OYj8|;E+6b%os2pCI1n}&?^$@CejankuY8bt
zs++-evimzK11t=*FvP-83m;k-WMQy{k2pHEM^?5BW`o0Z74Gcx$*R<@H`P`bv|&~-
z(do&wk1h0Trto>-a8c&Juh*TZeq!NM3sXcHWnr|1&n$dyVT{FPIGA8zB751wcnh0~
z1OtENRQ0b%6#gsM;*y%`9IQIz_UXU9S7j3Wu3wwUQqH=!%93ZLPPH(NJ!Rnw3o|8^
zS!U3^tCgL5Gf%tIkv1oTd!HpqcV>EXEzGm9*21?I=37``;VTQPEiAO~C0)zHa<N=w
zVX=iJ90KoEVRnYB%PqB#tzR4Nk@8l*Dl06kw6MwolUSv!T0Qo)%%vP1=hZbFn=^vB
z{hP4b6sfG^oM2%GJzoqqSlG&@eoEQMMxYPSMQ5h-&*c^=r0+^)L$_ez*fvf?C4&zP
zwo7T;P<@w$?<^dY=x$Cp???7p*k@r6M?}AT{5N^1qV1P<J79s&Z~6E4P9c*`m$6Ix
zo|BIiY)yZxe{h4W{9y}6I2>#=wQ<zKPZp}$!2z+yEc|TY9(~5bFBXo|<#MQ3ES#`#
z(!x0l=Q+pTjGW>OuqASa^)Zywf?S7q*21rxj=JmdekxBZ_<Bxc;9uz%Ec|BSce>eM
z={skq*WQ<Y(ZbQ?nU^hWSe|)_6Hy+GQHJFoDpxsC6wv>$@TY}q!mkT9$zO;14dEm=
zh5W_IDpYQBqzM08@NTGc=^VS@UryRK3fTD1LiFR*eGY#MyJi{LY~-`i?0`Ye-z&r%
zf;k0q*~l$~dLA2T!t;j8_2rq&*z;JhNoGMCMQjwcQON$^-kXJO@ToYHirFY`qr8m@
zHcHrd$i~AqdfbXIa1jjyNy$(tC8V^CM{Ja_QC6bm1m`UdEcquUD{n=cJ4fX(xF_VT
zNF^JU#ioiN6&``aUan^2Q5!YwV8B+lQNu>Tom$JQ+4!!umW{`3)VJ}tjoLOMHf$S?
zjXE|8=P_rU)O8!_HWVA#dnq5E)KwewClaRqQZrU}zi!wtS>TGys13`;x#v?@ky-LJ
zGd|SF)-)Bfaq5_nu#vP8x8d5@QX%!qEv?cR-?KqvM&HJQ8-9k33l%(;nUZUD*ss^M
zQO^bmFUO>JA2u7<XlUb|?;_9HTv^~hVWSb-*~XI+U2)2I%Eq9*8Sgjs8r%F_0nhTL
zmiS#;rI?gjk@-@>znMQp<-yZx6R8+UGaJoqOtCT5#tSTGnA*WcM;k3{w6xKRl`LI1
z(bH^WqqQAuR&am2^8DjQTN~|cQ0EyCd<OU;tFcjgN$_PG?S=3SBgIS`oow{6(bvW+
zHagpQi!Nc~-~shj8(nO?ZsRpO*tp=Yw;m_H!FDKNcD3=Qh<ugC<q5t2OaE(&T5-F|
zzZBis0ycWGi*3AZ2hY%|uZ(aG=bXQHcBGe$-ZtK~LB8gs!9d^Rh5#c9xczLrXJfRD
zF*e?}@qvvG*<3dI+ZaImr!xlH;Qj;SPy5QO$hwb|)c*8B1NFf+KC<ztjZrpk?N>K%
z_IX&w5E~7iQ-=x;6Z}|kxZnsIBZbiB6C3=rn56RjNXc&^9k!(3yPQ7O#yA@jZG2|q
z`|r}m+n8X3TXcSM!{Dw6YZ@BKGa93x+n8iyvLszh_{`pDY=m`tqKP`q#&jEpY#e6!
zHfGrPhLyK5)5a_tOKdE)G26x*8}sR1HvS#mX08q1+B^>b;ywv~B+s0yFSPNcjYT#V
zb0Ex(<ZEv9{>gi2uD<A^y5Vp-za-)QV9RVQxA7HwYN^iX3L7hJtg^XFx$;y)gPR>S
zizqy*p!t@_Y7Q|Q{2t@_kCAgF{WqbmwehWu9X58_SZ8CsjZHQ-b3|84ZLqP?#__Wq
zkA2$qQ%8UAetPSOy2Zv;8{2Gbr@uv1-sy;{I=7^o+e_skWki0Az01aTHul>%U}Lw9
zJ?uLh`)vN)RrqPd&v!L$Yh0+Y6aOdOT%az@S?3@d*~Skxezb!#G8RpaaQ~30*V0Fo
ztGhj4o$V)E@+s>PPX0FjWK-MtiIYDEvW@dLezx(8jguTKtg4M^lQT}(!2vPxlv1&3
zj1Sw%Pun=dl5PAdN!%`&lPz_I4%-7{V_x9cv2oeP6?(Oei#9IN!}(lce1!WVI@#)s
zdyro7M!NNgcGV94WoGz;^T21yOaH2DVQ$`X-Np?Y|FA1<+~kF9+_CXDebPpLU%$;k
zF*ZfQ71r_h)NuzRjB=0JyKENTMJ|OuFc^;Pj{L_CvXR3<P6rQc@SO7O4z7)8({@EB
zcN^=wBD2uk$QPDBaaM$4*6AAu%4N^vAk9HP7w@^q>mZ+lHym_zkl#T82k8zJ2L&Az
za`2cF%>0EN6md|(!9xy;I^e49Vh-N=E%Ik2XZ_g7!wVwC9T3?O8;a=<J1FI#w1bik
zHn&Mp8C^|z#6cMc)g9DuP}V^?2NfJtWL4{W(^h1bchGo2-A=E1YgS}da!}bp6$e!v
zEU)M3u1A~kTqxq8)17vVP8sEqRCCa=UO<@osDqjgo-gT5-jq6drzMqI4i2x#toe7#
zh2tZ&9S|debp+$b71e>}a3LF>bD%pgoZt=D)4azu5z~R~z;O_DkhKqt<zRkUl|07m
zJj}~MJqK~&jJiTR2MHlbK|f4QImi&6b$)bx;XKT)*ef}Rk4v<HU_-$t96TxHDZxg9
zS*J*|hK(I?C+BAz@Vq4cmTtnkcF=)M;h-sR!NH3T{@EUB?%)LntsJy=aC1h17PLQ>
zvn6}vb~=wzy3!-q2d0gKw!G87m39thu8we9k`28TZkh6Uf8#p;xJWrKJ7`avkJN^B
z&4GVMHf)b%I$&Og&SKC>@D-Nuiax5X@~VT^#Gs1<evb9JgO}H)m;PFv_D4|uoAen6
zzr=&>r@A@l?qHgO=?;3(m|oGy8|mO32R)tOXWnop*u$rngWe8SFA08sPApX5T?c(6
z+SkE{LYUM~$a{kC3w|Kj-@yPOv>8aJnjaxy7$o9g!H*ma32lZ787BBK>u@TtAK_r<
z%oOXx&nZ7~@Tr4Q4n{ke<Y2OcF%HH$7|%g*O8=_AF>`bNr>lA69DKV&A(`NS;zU7`
z&m4R%y#4_Ft>b>VK|z)&qD*zLxQfRp@e2ntc+nVk#W2&sEC+53UJSDx%;9)(aNWUN
z2lE_kbFiJRxGH_VgJm2n4i-q1%0eMuI#?uRai}kGuvGZ0tHHxth7}IJ=7<(?rQj;T
zuh<SkXv2kyYlLqQTr2pk;5xzeg0x)Tu>x_UgH57r7Tgl1ZsjC%Gk9;ZgE#2l5C^G)
zU192e2j2<b9V&Z->~*j&R1&WhWcC9N4vO-<;17a7hBoV_r_tt!gG-_ub?}peV-9|n
z=mmP9gX0c<mFNk<(}E`jnfDZXYIE=$`%I{ub+BY>pfH?sa6Z&;+{pWz@ZSY5hWbZ^
z@?H-46$e*C{)do11)rFnc7wx{(_jphV)%;>e?%`G3;Oi7gFG>$#c;>L-wy6d(mxLV
z6>?9oXbJ5<A+*mK!+rh<aF9*1=MbcxosRUz|7!l;^t4=}=MGaFObgm7uS5&SkWWZ{
z!2+R8K_P_%Up%N5iJ@o=#U%QWU~$0`f-J4Y)W8QGmS{=AQZbY<gZD>|NVJS#S;2CG
zOe!Bkg^+JAhRQKiiJ@kwR25QxY8pbNS`5{N*9etIh1@HOS}{BpL+uzMF+@eIBdCRz
z=|Yqk)KIB8GEEn52%4cDf32V;+!k~MWB->LL)*hCRz4BqBM1zP;lmjG7*a937DJa9
zGGeG3LmQegOAPg6XeN0d7kny)MnW3I&`=1AdP2yPG33-sG0O0?D9^>vIJ9{thG#?0
z`=w2j7@ilUX{cY8QP5nXFT~J7NXsy_m5|n)VP^er9%v^@#~5A|@=|E|vXJ&MbO@D!
z(!ZH8bPAPMV(2XV)lfNCHvj9w-xho$)Vs#;rtr4}y9ss=Q+velNBF+%ofvw?&?|=C
zVd{G^yc_a9G4u_2zZgbk`=5uuAHxTt_YYGCusf~>@6-l~GCGDaLIw+d6vGf9Lt_{g
z!^gr$3Jw<>A;|2NM(6!R_@|*VDuySz|L?kEW0)JmycovCFg}I}F-(l%i_r2jAyWiD
z7n~Hs<S?~rv653mJ}rjnAwM%BZAQpv#xP6x>`<8#gMB5KOXtV1Ack*aSSLvfV^|f#
zS227U!y-`@3oeUciIAm&%t#Me9`Y4JR?-jq=uBc*Ey|i0z83P0VD(7wK6<TilCH%9
z-&-HUmQdLc!$#qo1UHBJewk;s#;{G4?SebPRQAz#G3<`vg*aNou_uPToH61k8^^vF
z_Q&vh3>RZK5W_*qazgO?7><S|{1C&BAwLx36QQ7DM?&R`R}20W@?%1Nj^P&}$3s0a
zIhYAgO7v8WTeSowoQdIV48ID$Ab3uYN#}*E>gWF!D$^&YT@rpjh6gcRj^RoSSLxCs
z{w???=XoL51g{I;5M-G*Ij@!oJnEJxw*~Knsaq$f-4%XM@E^f{!_@y`IJQ6Vhivhn
z=6T{sizB=69D)>c#*r%yZZbfgJB}V<-n?-Xj-yB%`9jP5aTE|<FjNY~alKhkx1yo)
za2&-#UObKxA%7^2@yq}B7Q18|r9>|sramI%uU<;IILgP7jKdeDLLAlNs2)c}iB=M<
zEXa#i5mGe{gvx-)X*J?_RHC+EO~E>XwFDoFqqdNUAj{b~DJ?w?B@R^-Lr@dcLz~y9
zq?y8_p<>1Hao?cP7#tB}am0nVf?jBuh@)x6x-?6P@?@N+vzd%$NVG0dNc}h-7qa`O
zpx6d+G?Xa$6LI`_I%vJ8;%F4d)1lrZj>aK>M#!^qJQpgzJe}kDkT;E^negVJ!oOlI
z<7gGf@Hj@q(K?Pcal8{pPcdjKm>EaA(Ei0ZUJCikLfXgCAyhgFIdU)3DUMf!caGx?
zA+HL)CfG&rbwS=vq;Za}A%8QDx8mp)NB2<aA!N+7w6{a0a5tq_$UhvS^p4}*IQoRj
z2SWM^_KV{^A@7H&izcP@k7Ga_1LOEGj-jFt68uPTaA=ucIPZ{<uN)D~0K?eVp>kwI
z+Q>LQiDN??8%6vyj;V1>6Fw@A(Q%9sJ~ocegp3npIpgD)Abet|D9h775BVe^lLe>5
zF{)!QvZlxJMI7_um><UsNtzwn&x~W1@Q#gh(2`+}MCS^Qosza7j)lTk#qp((WrB+Y
zX}>s*B_UrL=jLqx`^&Xl#1(O@3{!hI&hb?ot0nq%9BV`Un>f~le9)w{Z-uW5mGzuY
zz6$(yQyiP)*f07P!Ci5D7suAna$6kRh3^QJokBW{4!)?_Eqt%wo;doJ3qC;F7h3X8
z55#eh^%vzxsQ<uG6Y@iG91c0h^3jn06vwfU|16}y<h0{)oQUJ3{7;(GMJ^Yo;yBHD
zsa9@=GjW`a<JUOO#qmd+hdkoESn?m(i$X5M@mr|;&K{TTyDx>xWg%DMxGIECewdNr
zS{(nx@h@l8IBvvoGmgLF_&dyXD~{W7+zCtLKGIp+Tt8bY_g%5!UflPD+|M8TFU*zQ
z4gRgZAIAexvPqN*v*!po?<lv6JQ8i-B8?A!ToiLr+zsxR#`!|a{6Y%2C@7?mi^497
zgsDY^@Mi1CM(!nCJmf-kp}Bb2MM)PmUDR?>%0+1x6<kyl`$q)JxhUhJtoy&s)p=1C
zQeKj>cFeBiqOyx>qEr#ADo9Ii8xG+$a|Jt}R~KHx#iK%Iqyq73zQkjpeY%U<A&&^D
zBbe14ii@o6$C*oakzgZ8s^P+P5fyF;#sqB_j*zVGV6M0eR}@c>%Ch4%{gBrcl5&wD
zB+EBwQ_n^H(B|>59U8iL!o`y=o|2@tE*c5p8DuS7Jnf>fi)UOs>!PWPW|H)r;PWn;
zu$^Te`>ajuvpS`@q`nZA&+D?<Ek$f4NTs!lHX&#A+PQeq#Y-+;cJZ2vE-u<j>MMdB
zTy%7iDZEpdE9+WWx7OLktD^tk?(VO<=<cG2i#J?!b@8T)w_J1+8*aJJ3jE)$@>xy#
zwu@dadW*q3E_w>#cG<LiS9l*6eZxEYUoXh6+V8vgz(pYsg+26lF~G$Z7h7Enbn&5!
zDK4hE802EGi%(pvb+wONY<^VdQ=JhmhPW8&Vi+5Lk^ZrZ;V$mYSIK+66M1KM`Y&Hc
zxWO7NN3u=EroUH8|J21O7o%N_aWO$k8|z}6i}Au)_=)<uQMe8Xk0$?RNQ7jfBz@-M
zb0L#L%gI7`-tjaS(_O4~@wJODT+DE>(8ZT7X1bW=VjjDAWNNmHIWFe9xYAtZK6pHV
zx^s1d54D`G2BY&`ETDh(@lO@i>YP@VzpgHFvDn2j7t39&zveG-vD6I?Oy>@Ye3Q;V
zzQV;y7pq)+#omERg@+&U6$}?gKYv!`y9s`t{f!$uA#dMY-RNRXP+@%QVjatLv4QpZ
zEz)9>R%m4=H%g5^h%~CC4C!K&7^%>H6aA;Tx>=APA#ZcBowKWp(=IyQQg*ob-o+0t
zcDmT*;yV|+IUdJE_A@#!vd6_<7yDc=<E+!c3EKbmQ41vWjhosWaB<K@+jZ&uZfAOi
zvADnTql-hFXL{%-TpVVVMk_zLIOgJri=%9lyV}Q3dHTIz(`+XF?BW*}$LWU)(ht0@
zyNa^?A!U6TqwJQ*NjG?FGpC16Jmcc5i+^1F>*7}z=h*Bnu8P5V7Z+UoCY&Yw?&6}0
zOD-<6gU+S%pmPRxJ&(8M>wq~wwlJ=w|KZ|KHlvGM%;n;`iyJO(x?s|wN4=g!TCy7F
zXQy-9!{bhhFFS6#xZ~n3U6Eeh*eQKO*>PC=n{}@J*b8@y6~3NcG1-otMTh*4W;Y|*
zJY@HR^@jIdJm6Ru7rD7vA?EOq(?ebl`8?$EklRBZ4{090xtq=-t@)nf-lkwDOm=j$
zZ7L5>=X$#Q9twCU=pksdYmr0i)!Uyd&-PHbn|BcpMLpOa91q1j6!-9mhcX^&tjsLo
zfo;goiXQUtu!oW!N_oLoK&5%<cv+`rS#n|)FYBS4hw5Ii%YAtd6+Be&P}M_4$x_Kf
zWg%I{#QzKMP>olYa#$d<GpUA$M?KW^P|FKGzpUfou`oMRYYUHfXm&wo;76G0Vx|bv
zUL_H(3mSr^U{sJcmQ<A_<{|E(i-*@exE?$YEj+aJknoW7P}f5}vGhHpJY)#(eIiHJ
z?fb`b-mYA#zKG9wc-8}>k9%k!3h$+%hbM$TDfpCNqcHVp4~;|q_W<*`|L-1~c-$6P
ze_pVuAfwHMH23gAsPI$RRvub=$n?<3LmLlmJ#_HU(L*~AFG_(~Rej0B_j@(A@XK<=
z_ThC8wM)_9|Jwf*51l3HH4lpuCU4<YiFP#1tnQ}rhKH^m`ilOhhqpYu<DsXAZXUYJ
z6?;h1+jETEd4mppTl$xTPSwjpZx4MuJYBUE3w$?BBByayRr`5(&%^s3cL_#+aW-~(
zR#Fx+`k{wG9_l2Jo(Ps>4E6%7kibVChIkn2VVH-nJglbAdl>Fvs)uPFMtB%W2gt6k
znCE@s;ZqM2JWTX3%EM?6ug;8&^DxH4(i{%oeUBBw_1)wxUQoxg*-vS-;n?}i!{;8R
za9p%bO`@-M%3zr61@CaPI0*wYPWSMIhc7)WVs{)+W_Xz8VYcv@9K7o^igVc1&!`N1
z2R+xrJP)_lr_c9-ojDf@Um*D4HI<wEPnfH&DV$^4#afF!Eb(ykne?R|mU~#?VVQ?}
zA3nyUe8rM0d0+FbRUS4~uJy#z+LHxp^NnX29>~s#!oyu!dcphjH6GS+m<wMk_^lvM
zLEYeCqle!-{LVr=Z1!-5mpEQ?i-)Zqe(><4M7Md^<>5OI+a<a~aHn9ST!H;=*6m)}
zK2aFm!}5hwWOToW10HC3kp3CkFlj_?CClKDho3$C;^DA|BfQ_x<|iRpmpJzS@#7v&
zhBhaJu$)t&a{B+XJS+TH59frO7rY>tb?J-3S;?CoE_t{t(JO*~dbk><{vjkQ%QX+z
zC3+)FrT$mQZ*hJQen;?c!K{q`(0S-iiD0|enSJY)eMI}u!+j51daDmS<WHbL0@)Hl
zlp(v29D+F$$QA0j6UdW5nnd#^g44e8CGd%tkAz`o``pZ1FoA~>@TXNMBxZ%fyhRcy
z8uDU7iVK#Ia<cNKO{r5dfl>*SPT-M5aDql`W#*QAW|;(j%U!2j0%a5EyeS9y*n4jI
z1iC+Pe{ZM}IW{XMP)UYrWx*;5{Pj&bLscP2pjxO@7g8gEM}^cBtR?uEAam7DAR?UK
zKQO8!pt9+b=#_+)fS$ljrY2w{U?$Kefwl=m6R;9!n7|VW*a<ka*{sw}AeIOgb|n%>
ziV{!2O~B*5?^S5Pz*I*41Tw@RB}jd2XO%ihy#(qf@OY>n|20@L)<BBo7cWmH@KgfN
zN@}A7o=zb95QDiIi}H*h4X6+k*OccHXp+G52{e@wS|-qp^)IS47aP8OXW=ghZz0H^
zj?CLCfnG(G)(P<H+~<Tg?Gkt~fj$ZJP2i;jUQVD#0wXSH?Gxyb;Hn3_mO#e@GNq7L
z68N)LP)?@=+TAf)=TnF)3n`r?we{K{+9iRm3A~xW>j}J(0BvZ0iWj<Lyp=$=1emvb
z0=r9V)O!>PQa?DL?0H6gJArqk9Ji3tll2tNT)h)`H>>=7O2@y0HtCnZdu;gxwkGg?
z0v{wWErIC?^iSa1Qp)fl=F|iRNS1@8m4R%Z1O`cTZ~~(f7{mErqC*lGn!qsOBN7;y
zz{kRQiQx&XujZ0`BFd;x|1^OwDh4_O`B>3E3sc7>xC3_3M-xJ2qEv~>=b}s!oE)Z3
z;Q$$GGBwAqInY`CB7qqREJ$D>M^kBKW&*Pkm@OroXs^r>LNjvS=3I%+6P%yG|6S-y
zDSTR8ZBYWWT%5p?1ePYSEP>Std@Yu|;&L%t5!Pg70;@v)RRS$mX42*xQPvBt5nL<y
ztso87C2+lSQ2!00Y!uuSrf!xBFm+o3+Y{K6z}^IQBv3J*xif)XV#XRW`W^j2j0cz3
z8Rd{6?n_{Q0^cX_LjnibAYF1Elq?l|)4b8~$nbn)?`Hfc%Ao`fCouDf&TBCo5%F$)
z?Pvl&C2%Z(pE>g+@OuKk(DNnrEH5X7_9um~Sn^ZCPbY9j$fqLyD*T+_c|lrUNFXcA
zMN$3`yd-#8@QNTUuL@yNe+s!Kcs)$L!TC^Xek+07oK=$WlDLz=-wEVQB3BZR&QQv4
z%zHP1dkOp_xgH4qEBIdm_c>-KM(R}87#9Deepgh<mPGa>awIWxM=<}S{~i2OkUNPy
zNmNLpViIXd<V~Vb5`~k<mkd01&jh7_ko-w3D6Uld#VeS^4}*<dMKoqFl0?xYiYHMb
ziDJyyL|IZ)Io>5F3vXD<eJF{XV|*4;K8bFH>ph%ANhyj-sU%7Ze?+j1VA(LWoDlDU
z%ZZ4_l_XjviK<EL7-Ccwqz=*TB%CCwB~e|XoOo*pc{GWdNz@WvTkx?Y>J|$;fyNP0
z>Lih#gp!1sgeeMBwImGTy5O`j!OZsC$$UhHXcCs_cc*xa#**m1GBc5<PF%zq#T2$S
zZ$FVlGKpqMG*9wu+@K{JCh<fPsU$L34N>YR@pzKQa|fv`gxEm%TQZAo?%}Z<icco-
zbP|n|cuI`Nu2mW(L1YrcGf6y`L=(yQtRScK=Y=q}Y1jn=r6XQQqD2yKCh=AhEt42G
zRDCUpE=jaXqP1jclSJDj+9kpNGnt+3|Du>>UF#*Wd0DW15*?E0m_(*T=~1-ll*B6%
z?VQA`LcYirv=Rd={JJP_NacA8o;Ye(`s5IUHR+bbmC{Pnaq2s4(j<C_ajDYE+euL5
zgipNfYa>@?_D<qm`alvpljxH~-z26d@kJ8-l6WtPVM%<P#QRBnki>u_KaRqZN?Ly@
zjg_QG{7|CD-ZqCMF(`?_EM#!tX&;HsYcblWoHLa7*x4i>p2P@AnwG@HE;)}B)J7)p
zNfMtXF)9g0r%LMRB*yUWgj3{SoN;W-J4UHW?s)2*)d`X`QSh@QK9{__?j%tr3o<$-
ziQdw`DQO}qE0-!WSo0)SCGk}fvyzyd#KI)LOk$4YnkP6{a9yjwZRQJKAjl7HsVqw3
zkq!#OiX;}ZS&~?q#Ihuo%T2L^SVK;{oNO7ghTh7o0z2n>$W>M+u_cMENqn8e=Da2+
z-fuW>_~x1<ANDG1#q!%M`y|#2*&w)4aFZabv6=mw$RK%lXi!f!>9!=cODZ{)T}gaL
zXGr2|61$Vwlf=m+P9?E72@bl0NqnEgKC#>{ctDUDIa&P>^215|n8crRB8Q~q`HO;g
zcO;3UG70=7W+x=+SQ0-=^cTV7g5AQF=gfIplyga(7w0)6cvkRNNjfzkxRDFOFDCI@
z62A+7Hi;_30_VS!#DllJ%OY}uYBwYG2kXYk(?>BM*OIu-xjl)$lei%^%<>nB@bZGA
z3z)Z(Xj8zvokY)wPjWYjdz`L)<n!@Q68~~y_mR^F8{xksviWGfR=v;bN+WPiV955X
zy1%)a-ACSH3jciM@{!v|9v^8w*3=2=$sdaBcm7KJ{XuX?6!ZHi;0K*j*bjc_@>gO(
zABB7@mHCQ)jwu%L!JQ3glj9$^xQ`M(y&}lM@Q{y(eU$X^bN3AXX(;8Rv?P`F@raKy
zSv;>ve|tlI@T_UAmh(~GM^=<2@b3s)pw3REvX3f0%BD~*g{nT_<FJn-KC1a#)QJH;
z2KuPs<53?ie6;jY(?=~I6AI;c%Ex0qYWv{EHm;9|k2*dqKUge~?nCim2xnCFq504y
z+VD!wC53|ZkISA6R=${_O;kwn2_{9`ha=IL;FZ}CKAQ7<Bz$D}sLP_Z<VgBRg?W7;
z#xLa?Hx5qbswdIMeKZhKpZ)l*dhzw_4ShTz%9B3)#c8L<n3+rSGL-2P<Z9&OX&;S!
zJi{&)vuAxgC#0!h6L#pnoX`9CtX}Spdm__LWb3^(Z!<|^_KP0}g}lHnt8Vl^m#vlP
zZwa>c(Z)wxAMJd+;-j;V7k#Xqt+)5l!N*I&UlwEu)EPSZ=p=bFMW@0f+A#X6kJo&3
zmDDbROnO}i4c-uPYgo{XZwk*+y7}ntqlb^Tef0IwPm<p8(Mw2AL1y{6T#nwt-}TYQ
z$MP~Q3%}!!t`V$teNXfc1mE{je6f1<qwGW`_4hGej-UI`#~>fen9;{zA0PSn)W;~v
zGQ`JlAwva+34SbCS(g2d5I$1ylmAa2?PH9OFW9gmj`cCg$7CPlcu`R%2!19wQE=d8
zpFZ=s58^X5)F~oP6Pzl@D`s7EI{V_szz=8onB`-EkA>nbvwh4F%dffwt5E0qTr?dx
zc83Ak8tjhDr)%wwOm7mbZu?U7#Xc4ZNgMdTb+}77mPM)ARA)769#mE^>f;+9D@EVC
zGIN!WuY9cb@#Hm)QI=MDaoQU8xELJp@vYBAdD!k_hbZfPZ1S<$#|CaC<p*p1_!yaC
z&x34R#DFDi^RZPpx4&kTV~vhVveU<IPGUZGg_hs>c=^-7ulBNeuW5AJ{XX^yr$~h@
z!|Vse{(B!k`1sMsq0q;=G^#*1qjwRH`uK^XBZa&v9OI<q<K01R{`T>UkK;b>Nc4n{
zlRp0N@u!bdK2H0%B>EX2XNCOc<5wY#H1(X2?wh^yJ}w9!KGoyC5bG_KCI2qUMIRq5
ztj*|UiIQCLan%POuwURK%~neHN$NF8x=H7sq+a)NLr9x`DMtU2q+4O$+djT~5Md$J
zKQxGUMZZU9@bRyY|2XZ;QF5oS=d60)NA?tQ2!G%sTM8%3s%P^mQ#`FnRrO9eHD?OF
zmnyjgSJu?XnKw@ggH9N?7v;;BLjDwrr%)mlv{Hc-3Z}4dQaSRqyVXJ>7Upa`NG~E-
zR4`{JwO9&Q8!6Nu5}QX-D3e0=RhbW`aN@pQQm|ACrG@mXn?do_o!<Oi!A(8+wO&4j
z3MsTsVMpIK6{UnmDLkD*r4%ZsP(_qFDWvnSfN%&_OQE`u8Y$FFp;iiyN|a@8E2%w}
zLT!mgQebCsWjgi7eInJ;5+q6rY6|fb+!Qpas+B^cwGjqA1tW!3mozg49`Mog4K<p=
z3+pl_tV_33n6NnAN#VwBwb3OvmO`=o+SMMamqH?i`YAk~LNbN7ayuC*Z2M31Q|NVH
zJGwKHO5x0ZTFyOQ-4u=&s`F2wI`vYpq8``OR9KbSAcZGV=>MV7Foi=O8h55Bw0u&O
zrv!PGA~n6B{wXw*o2s9`>@z7mEBv_>rfpH12y&$wIYUz+^Bt{u*d{Nez*jsiQfMiJ
zyp@pZr*pSSp=}E7Qg|_ii79-R!b>T<EZxy3h4v|QNTEjxZ;R3~g*Sy{3U(5FMez99
zj-69@RrqUyT?E;!ucz=v$h)!;&UU2uRti(QtKCHJF32eLcZByA>?ugG7rlBygk=94
z8Skc$>!?EBH-&yFyqCiJDSQ-Ke!xacVE}z{SYSUe)CZ;Tq41w8I@AXXA3UKA`H&Qb
zrZ6mpkJ-hd4;LIINP`h6j1>Nf;HRO^8yPKpjNn+oaf0Io`8to;vo7~}3cUBJ?3xrN
zN$O<5DS}z`nV!NIDa=b@ehM>0XF0P|m??agVA(we3!IY*j!0veo5C;YO4fyVI}5~S
zVG5&WC=6ewuqfoQo{^;~p2vz-Ez!CqmUCTW3Tcgyw-Hv-=Q&auphp9ImBQ*2p09_d
z_3*WnmMsI>Gw@9cYf@O7!neF4J28cIDXbTR9fBKD!FzMoZDR_XQuuXSI{D@lwxqB%
z%dBsk?LxMtz%%BuEQveCco#=p3cK0SDg4N>kiy;+_Hh!Jr~Ht@{uB<d2RCa6Q~3I}
zviCtcUpg22M|roh`aPYzvbwL4N=xTC<!}l|Quv7zz7#v$SNMMODCdU{A~(7zKZ|jb
zB1)r?3MT|+Ji&QVYW}Cx?NkcCr*JWa(;T)boE7nWSpQ$?$)h9ZSf6!4&t3@i-&nU%
z|Lf~ZDO^tB3NI9<UX@(5|AVu~=?KpcB3?`3x)|I@;jWOIDg2eftrTvjaEFcjb);({
zlew%_nZ&`ll)qCT@)h$vvHvG5|6d{h3I0E(z5_~%;`^GMK|myDE=ua1p0Ff$VYkD~
zbWcyu43Z@YjDP_|5s)OwfJjgf1S3%iA|g2}ISVF0{UJ#t3Mz;o@ZElVd(QuyI``aq
z^(u!>)vxXf-ploF$Qi4EhJqUH-C>`GLK=APVMz_8G!zz2ZxIbe^LQ~0#q)RxAv`^~
zw1zSo9@o%C!vh-1YG|sVnTB#2%4=w-p^*j}1AkCMeGT(B1S@EGNJB*pl{D1R(7AtR
zWewZv=2X*AT}TxTRW(|k=|o344V~4{U>){IO${Bc);LnXWi1W0HO~gx)3tMnbtRp8
z8eZ(535^Fn1~$~rC4X4MBa-Rt@dcQ51K~W(rLl%4n*7eMLD7&Q+^@mM(!LW^#Y;kS
z3N(yBV;8)y2#B!5O7CtbBs^2FU6~fmHMGzW))3LWFWN0N<Z93~n)pMOhHMS3G_=-`
zBcVT~Lf5wiic}A^f5Km*Y4G^eAdQ(%xZOzCp#Gd~Y9Kcl{kV4?^z`j@=k3gnvicfa
z4G9glWXdu)8W<E4q_@p)#o`)9w+r%heNsb8qj4m(*FbL@4UcJPE1Y(}|DLU!oshGA
zvHH;WS_cgsHFRR@vFSpgPCxpL2I`ydDfvrg1ji@?rLtW$bkp#rhDjQa_d*X1gQ%?G
z2@O3pJgwmw4ZYZ~QGc34g2h{?^wu!sSMOZ!J{tOJ=%?W+Q8;wNPje#cb}8KF#;=*Y
z%B*h@dR9Y!cDIJ-sW~ZgfCg@Nc~0|YP|JcXysa;Cv?~oSyr6lXWx3OayL|>T3k~Bn
znp4J54KHaJrQu}_!!!)nFhavf4PTuOgbHWVFcfVB(Y-QQWs7~&EHqlf7!6}JjMH#x
zoA=+@Pp_&=&iQ7n@JIXsnuF%|%2zedhWTq6UT5OtyO2-N@P>veYm|wacVS}j+MQGU
zS?Xs))Fut|$r`3;SfSxdM%3^Ybu@ga;cX4mG`y=}mWJsX-qA2a!%Pi#AIfF*c{k3{
zxOHK=QA_{0oyzL*>TC_~alUAnomH~*mh4|&${8ICa)V0w9{zgk)sHlMtYN8!&os=@
zFjqs@70Nsf-?a;Fc%{qTW&RdVsq;DMrl|`A7YcqN_^BX+7HL?V$Cun!nB!Z<*`#5)
zhA%iz^ZO@HRHn_&rE#REGrdz$DpvRJY1U$;hE*E2XxOS@H9K0vdJP-c{vGtSY^eId
zb!>t2jY#OY)nudQebn2eVY7yMdUm33u>B0*%AO%MUH9qgR~o+7u#<htS+8L`$LBk~
z9rW4(nvYnqQBm6YDVe-7y;}pV<<srqh30~KpNGE+?ALIB{itJ{j)NKwapBTYTE{mU
z4r{ok;ZF@mG<>V!xgV6D*-Bg)xboca9n(<yQpX=O@Ac79jyDb5M8^R+^B=`~p>)Vk
zo#ULm(QZF!_+@8+<QGZge;Q5*`BlStAx!xsN0IQ;d6F|4&gSvoG@KLuyI}Jn3Zq;Q
zelbtyl7`E|ujEPo&~R1w{aE*Q1pd-+OT%pq<bP|pF64&bKZ2Cs6!I^J*;fj^|7n=q
zMLqm*u&9nZ8Vcmgpu0;Q;rVn=l3&mZ5>ik{At8nH<VAE;*{V>Xn2zEUcJi-&Un!xZ
zqz<OcKY!_tv<;Tg@qi9fM_5N$9p!X9qN9P1@;V;WQC&w3-TQ61f{uzhD(T*wdPv8t
zBK{pab1O3o9aVKy)4@X}=KZIf?&asr39XupOM9Kt=CoE*M=c%DQC~-GomSmYSLdKY
z%k3&{%r4Kb9xt9X@fU@5U-@782R-}`>xh@}f6+EbY`?-!Y^bA=j%GTV>u9W_i4MPx
zfDT1Rh7O+&RR@0|pHWd=MN35Ga_v^?6NNJip7xzwk{#3$(vhj7sSci{yL4r`|1kf?
zoxu^8b7;Q!r8@eB3u+4%Mn`KMIZQ`KmX2&4tvDK+g@(M;^}x#X{G?jzLa@dF?MO6d
z>SBMc4o!!y!_d*`cmI_MDxU)0%gX6h+Rw+Ob1T!wGFwD+M0KQfJgLLdVe9Ciqoa<P
z4o62yr|oydb+|ebI+8l_uS$>Hr0)H#W0h6u%N^D5jjR^Sb7&IbF&%AnwA0aE_pW-|
z)&{GXfpgW3!aYK@PKL_=taPT`5*?j&bl1^C$KyJ>=;*4W8>_HYozYokI$aHaut9Fy
zSCoylvj=ujpU}}$M=u?{b@b_#*?d*{rHQ%cD~4{2)|<}ol^K`4cvGN{j=nlx)G=5`
zKOIl$7@*@h9Z&0cM#r-{`s<i~F>BDhK=s?c$5y4w1#@~W$eyq^*xd;Z)bYHI7jz6_
z<Ja(i_GOn@7Xn{5>o)2;Wohl8{|EK^NN9+Tp*lwB7|9W(W0;QNY}MU0R&DVgouclE
z`|pm@N?SSYUR6fvcv;729b=>gE(W^u<9PEz8P5gPQT>~3`_f0t%;R;uqT>J;6CJPW
zcumJN9n*EZu496Zi8|iYvG;ZVoaNqH@dkVLkbm_2Z0?hsq+_a%6+Z^ZC+i?i5o}dc
zeM<+o?Y%8XGI_i5j*b~RzSOZ&$4njX>R6y-A?JdQ**ZSb@iF7-cwff{IzHrx`Zhp&
zGITeO`3H^g^AJ70U2io<nWJN_j(KcA9Xv8-{@vz>eW7%d05_)6K1TgZp{}I^pXm5h
z$7ed0=~$#=G3S?#r5y7OgXQ-5X|HDBs`Qn~{tFkChOPBpla$YOEZ6Y`>!Rbr2BoL!
zFIvdBWM>}yOU(=hD%Q>XY@NDF$7&thbZlo!>R78|la9?g*6CQUV}p*3T#!eGjIP<O
z6>Vj+z-mLimsDw0jAu`8(Xo{?NXOT#+PvHq5tZ9zd4F}NdREU)LEd;&iUxM**r{U=
zn_9;%9lO~D=}@A6j{UKJ;;Qs}4TJMmrT1~{71L=oYrpQDZp@uj{1d$6HT4iXMMqHs
z#S9$QaYV--It>WmTOHr&IH}{5j_-B+pyMYUKkN8W$59=}bR5_5`ySu+Ujv(e3A{ci
zi;v!13g}$h|BH_Q={UiRIMHm+I0N08Ho0?O(P*V%@TSm#lzLjn86D@@XzXYmzv(!~
z1lihQwHnm#4hQD0^lUwq{8p*_qc**}|026g$7LN?IBt(9%|`ioTln4k3U6=v>{n<U
z?^d0xYdZeaaZg7+1ApoGTgSgTZt1wL<A#oZbllXz%k;9-z5yR8FRt@!cl<O$S+mKr
zpmkfve_Zo*+~q2FT4nmQ&Ox(yRc|S8l+L78x5dRX@*5~%pfDfe+NlK%6f!Vnn)gQW
z?+UWL=WVZ4MHnhpp~#CHC}E(Pf#wEE8YpET!+_5~X#-^plsE7oi4uIkKv@Ij49_Os
z-66p#9sCW?_~<s33so@ikbxQoYBKJx>WD`IXO;#l8mMG=Mtv&_RuQZ!NMSVt)rDvM
z=5JW9_ygBfT9%-zWuUf!ItErPSL+&RAcVZ00p#)e1|Amvh+wge3KbgWg*GzKIFC0G
zq8Qj-CX+ga%Bre?fPo;JrL5{VJVV($PCaD6I-+J8Xli(8vu<6LrhVo?o4n<ScW5mP
zv@{Sl5Hawmfh+^L1~dcN23i?tZ6L=$<%rt%jQY@HDt9K+S!;ZBeB9Fw7zRvs$98qV
zSmnuq{$d|0JcZ%-s`Shkv!cw`fNLOOz%~$Lc?`r2?BMx69fP!WmJ##Q-a?gC%B&jd
z^%H8+K+3?ClEF3xUh3l?zQXtKsx-Iq)*h65YpUALKzjr4nRwqs2Ll}qykUCx)twA<
zHjv*$0TYiK-Xq&o18*7VVxX&mZU(v==waXq!!zzdn<q55!At*xS%IDgo;L7|fnFRT
z{$Q)a{@w=C2A(v~$3R~LBL{{0E%I!DEd5&TXMmjUDbCR09(mS4e*<F-j5RR8z;g!b
z)+#yLz(B(@{Y^L6!1H<h1tEhByeQ=2xfWCyB77(-Yhal05zN%UaN#rwbw8a^;(b|=
z5$Wy+#jZ6RCqk-?7s7gxzhdB31AHc;d(FV>1}2F24Fi+&<P#0NY2f;f0CgsbkevS`
zOff*D@NEOr4D2+p%fNI4?-=;Zz%m0f49qm}v4J@Tzsq2j;Tc5w(7<eV4IAIU2L`I%
z4e$Y+*D?;34|XaSxA_k5%jPL0^;ak#aen<5<oY?+z&rz=82Hq{d;<&Ei3in%9EX#X
za?6!NXVohUl|BozTix+3GO*ad5(7&Od}H{>l+Ad#WX6i6z7JRV3vCWmTAiNSCHT34
z<p$Op*kI7I3RZAl7+7uK<|lqWkbY@kC5QBJW%)Ayo4>1kcv-{2VBpYW#ny4IP1DyN
z@Ev~B+biDfzuqj~MgyA+d~INxfz1ZC7}#pyD+3c71@8>>zg<|XcESJIH$I->MH^GJ
zowA)n+Q7cIGB4LHwz#dDI_qC^S*iP*vfIEO17{8VW?(NB4E$)|sDb?k4saA1IKmdl
zE_#q9@v4SxM{{?dSNV4aO^fiD>UNK+-x~PN!1o4zV1cg&I060BmHZbw(!F0PhwkRm
z++zlg8#rO$R|7v8_}RcO2L8voFU|epbZ*9i?ASGbEwjb@vlR8DTBcfylLk&1IBnpJ
z!Ee(oA{TQWX3JE|<aBFXRb|`uZXP(tZsqVWaKpfP0~ZYZ!GU4mBBL0%%t^`=v=);}
zsB8V%b?*2>7kalHp3Pl4T*j{%_>(KYfxiv(eBD#nH9&3rb{CrDV!gU7_0!hSKP;Ys
zI|l9=_}9QK1Gf$Q$4*@4pVc?B#1y6QQkCw}v+Cd1)d>rO!>4B6GtlT}AfJgE6TJ%!
zhiH=$!Gb0VnP_C9v5CT_XW+4@iDD*-n8+^c=hH-|Hl2%`C}E<iiE1WFnsC2Y%9<!=
zqLhi!CfeL|%b0jT<m3#c(^{s>n|RPfWfN6QR50;M$wn1TR1&p^1h*ZoOU=YPEvY>I
zSVOvp-_PJBjKb<Hr06_sqNa&jChCc|wuw4I>I(81^PK^nK3(TW<1kU5E7%+_5xV2u
zl}Ai8F!9CVx>Rc@QQH3FqjD1yiiyrtHj!b%XTmfQHldpEn`mj`Q4;|ZLAFVKwYiCq
ziA)nsO*At-Ti<+yq2tXSU%1tJz+Z5%^3V6atHbiQFmdHX=<?W57F*9mj)`0oZR-_l
zWrDAITAS!sI8>>9COMH#GohO>Omw>$q{%P3Zw`fc)EX`KModIaJjUoIEEBegILmJ$
zX5zI)3Y}x3&(*-$f*ItQNi|_2X(Gk$FwyfRWp%MY_WqnbSJba=1^dkPUNo&d>A7}X
z`Au{*(cbiI+p;N$$Cmku)-Tq{1Wy$V_wddZ>|&y;i5E=_X4y=1H}Q;#XHE1l@q~#d
znKg4U(aS_{6KT_1!Gf#P6AQQCixIlMI~5+X$v=bovdSi&GV!$O{U|i=zaX!h-&GGf
zJCzTns5}d`)j3~(69Y^<Z{h_L&#{69Gw24IpzSr<)zO1~dLOJ>;8Y@i<v;QbGWpk!
zvTLR~#Kce&V@-@R@sf#QCPs1eniy_^3(E)-BTY29<}ES{W~=+ZP+wc%=V+;vrT1H}
zj5aZb%7c_+QxyueN}1z1KH0FQchB?v@7jo~`Cc_KKN%cVJ=2+x`?`q<CW;RVC03_P
z98#WQO-;OMVv<}vc>#S}$Yc{!nC#Eqz1&n2Z;5dCBF{Tb_;eHR2$^AGmJkNb6!NYh
zZ`fw%5e9u=;zLf%Fq(w%k%^B@AdG8u{BumqHL=#jIur9)PPW^%PAg3;FtL!;H?hpb
zCnoMJ@Nu{H5)+@ASY%=`yKIW`bP@lRcngv{ncbE$%^&^L*}7h7Fj@JW1Ay~ova($8
z3qg8$-rtx1N5Z^TnOMzcKccKLadUTwlEOEA>rHH6FPpe-Vxx&oCXSjoW@596EhhGx
zIACI{iLXrTWF1X>ZDN~=?Iw1ZX#TF+V3|5$MK`|Ljs~*-S3QSkpno@6*==HviM=NF
znLOoFE&fJ`F8s28#=mOm3N3ck4vb%&K4{{QiEmAOXX5*L$~Ptsn>fPhQ##0Ju8&ry
zKd2ij{HfBdMDTkPSIf8f!NiYTh@yd--*hQf%-?#cck|3UsN*Jn;z%}ep0m}&FD6cz
zIBnv8CQg|6)x=2-gQ4moEA!{8N`+<Fr`7CwtCbe3l&a4K&zLxC;x`Uj6US=?MyAyR
zqx?O;^sk@mTQ%A59P)1+<G*0yqKQ9P1{0T<;2Ga#E*D(fwgva@R_W!VR?&OD^B)GU
znfTMhUmW45LcBz3$5guht~#==|Hwk+hKYZ;-iA>&jGHF@HBm5(LSfu8aofaQ6Za(I
ze;fcD38VblCbi8vwMWw&@_b=DQXnIL7zM)KNjHTrtMu~WwD<hri)YosVH63YWEiEw
zC>lnwFp7s!BJ5c=-LW>b?4eAWUaVE8<<E}?f1Kc7yG|(`#>7FnbY;SLZHda4d+jgz
znv4&X3!{7()x)R}#)Dy02%~ZsRl;~EjEW^%RSct27(8!_Z#YYoR(rgy);^Y-sM(@w
z*t@Nzs}@G|u=>$xg}h&<P|YxEg;6Jrx?y}(Sgjq#jKUdQ$_|<8xm60uS0%FO>M^uL
z7Vl*0%N%)F@DafVf(->53DSZq=g|kp8Y*G54kL%<;k~q=FAOz|OIup`!w3io3T6t1
z!U)X`6f4uHsd$?SHWy@+7D8Hv@u-k2!EC`+g48+u@Z-5*Xkk1Y!6OmqVHm7h^_+f<
zgJu}vFj8T(2_wQr2qO^&f48Bt!ia_8gkgt~ueMGJF)rK<W9b*Z`@&`uJ$X{(_Z1!s
zqiq;R!uU3fc44#+V__JdgwY|4j$ynM#;`Cth0!^TeqlTn#^W3V!<C+4Y}n-MBD||$
zH^J_LJp`W+<dZn{dx?H;!L;C$f_()03a(q4!8D(iSkDVSBls*^;A~d^Fn+A;A0U$F
z1P2Q8MRc1_lox~#5`0l`u;38Ep@O`@U`d9DF@nP~j5os=Df01xqXb_T94$CTaID}s
z!6NyZFojoyzbg2e;Ol}D1m6(c{*hPfNn!6~)sF-xhj~yPrm|tr`QG6W4dX50ZwpQn
zoG$pu93ORNhH>MR`kusnH;igWvS$gOEy!fKPl@<G$D~L;%#$zP9{gDN9KpGQ^91J$
zE)e7|HjMsh7>mMK&-M>vG06ho3c)3UO9ej@TqgLr;Bvt)1lcBx^`-EYf~y2q3$77d
zE4WUOcX8C;7{;bB_Ho44RyT`$yWkeVt%6?(el567@O}zAgzpsGCAeE~kKkTG?xJBX
z`@`NV@dJVf1rG^+BY0Tw&sLSG^IaI<b2W>gL<B!@q=j)VjNhdzj|%=8#xWts1%DF!
zS@0LZ{|TND<j-;J{gc8^37!@_BY0NuH^KYk>U<a%!uXd<bQl*!{-@w2!OMbI1pg4c
zDtJwBf0j3@{}TSU;B~<pg8vBK6fBqHjmg`>3q-tG{GaeUf_DY)3Fec~{DS<UkD3LA
z7ZNNiSVXX>U@^fb9?PI+$p}hCP(vi8Bj87khXl(AJ|I|Du$*9d!3PB^2)flX7^|Z2
zN`jRIs|Z#VtR`4p@Jh<luPHg!609v)N3gD7JwXW87vx7MmbO6z4I@ZKkcyyD1dSu$
zvtcxXCPK(t2~i@*h`=XY6>KKxk02l<C>RoCtjq|S=J8vvRHmeP1TFF;EhBhTc$Q#x
zo}8Mk^LUPs+z7Nhi7v#5z|50`BZ%bj`?**V*b&4;=tSTOiRbCi>}Mj6Q`jbg$0Fzv
z!4na*ji6lwk4MlY;@#r5kDy}&orHIY;Q6mZd@J}&AMYI?UFQfktxogs%B~S~i-1Ah
zS>J^<cpPWH@%ibUG{M835%h}SDN*PhK{|py5%d)=)t;2ZdCDp^`I@m`1f#bUIFjpS
zF?Fl@w5UB3@s9O;R*>@k5e$%6<j)BiD7a}~a8Lv<MzGpuu>*r67!pB03r|@X8o^5u
z^p9dd6vHAI&g*FuMie6=7#YF&2rfi0DuS0ISQf$OEJFliM=G-;crSu6<Pq#R78=I_
zL@*_S@e#ZdK`=L)Lb_Ka^tA|H7edK|2;LArQSi+?`6Nz?U%e=FQ$_feARl2Uc{_q>
zd79HBcqfm~5HeHnUBOuql(`;YlrH}4_apcyf{!EkfW79={!sAO_CfMF5zLKXNd(cl
zfq4<kkKoe?cgP2BuL&)PU||HGL_kh^!sY}&<u~@K-Opt$Vw*?s<&fN?tJCy$nUTFz
zQur)_@L#<fPWIngo&KV-x;%mvREyvXy2>hDVzGZEH~&O%GJ;d=1$IgV>m%3@!P*E8
zeyOYzB;k!Tam!Qs#t81LRCYwLQ^=+WHVdI}O9Wf<_*X){j$oUR?SdC7Hl^CG2wF|c
zeSBK(A&%Q=xw|9SBV?~2CHsWz7d#Nb`<DU-1sU{>2oFbaB!X{+|19`j1mAQ07k*5T
z%0CJ@8o@u$cBA)rp8Tf>%Jugozlh|2dGZrNe&vesy^o=%BRCVm*$94%;2Epv?zP2g
z9Vkxx=lzUt{n_Ut_+2VBXQ+SS+z>Y~T#VpS1T~|m6~&2HTV0Oe-w19+a3z92IR1Nw
zu14@D+jfRVcP-+bw?gt)p5*TcuIKR^EOQ>e89|{7ji}jgn0h;cd{N|&;y-2`!Cg+4
zVJh7{_F(yzB(%CrED%M(D5^xg(+3JgQ8<bRq9_|hktm8rQ6`FfC4-}s0-sG#i$zg9
zim#LcC88)5MdyqHC8IdCN!fkA5q0QFi}Ed{K%@qm*Fd=_%180hIOTrmW1A~I7)6CB
zt`)^YqFE`5ibAMxX@#d&S-ecSY82Ik?|G<cbs;qb9e%+s8LS;eohVu`@j`0dDC$KK
zh$0xp!^0I2qj)5W`caH5r}7T}-`A7|Q4sl<-zbWPQT+6#O2^GzjiaEDZzP&Tz4sD|
zU`7-^A(W_5`1AOszJ)`~v1mrKD4Iu+8O7wk)TU8yyVu^kesXRhII&)#WfC6H)-sAm
zqu#AuRurwGXe~TjkWcqHQRGIU<#~IKQ>a<ykHES*Dv23IIEr3T^o}ADMKp@GQM8MC
zyJD;;l2N=+INOdQCd3hRqlgP(85o)nPIBLyilR*vkBP9^pdjUyie$HsqC*rtMA$Kk
zPEi~^P_n|{U}uqZiK45J#|2Zv{N1AH&X%d3MNXvVS1$z9FXlcG<)%A7T~8tRDrTpd
z+VjDuB;u2T%(0J<zESkclYDX_z*0Re%FnPFg&cn|SanwRb5RWBNQ>g@D4wT&6mz1O
z8^xd~UX0?^C|-+VFeOu!5$xqCpOu0`q8J**OI-h>7|v-`uO&mPtVt6&$cdvwe@ql(
zqj*{PXu+M~AVbFqe?@S-;EW7E<=K}z5nqpDLKJUB@pcq%L{aD~brO3&iizx_h02?v
zPa!p@M0w6jV8=Fvd}^MYrt+snF+Ga+qIf@wcSJrjig%-!A-v}2KI+dBK3nj>rfkM)
zu-q%#2T`0JS@ZkR%12RrD52*Xdu97r_`bHe<nyB3e}&IQvLK3uQ7mIS{Oj|tS3Zei
zvB*CaTqH<2V=akdX%wG{gcYIWe2MNva>iXA#TQW=S*@;!VqFyLqxdq4l~JtX3@R5~
z8wD4T)lsa80%`Txk5mfheC~VTDgWbPbwd;zqu3%TZ{is45ZWxf%+DdFKXryz{$C0Q
zwnjlD-xkI8DDFgYH;Nrm?2O_s&bugfMX@`IKiK|5RepEa6UDwL_D8Xo)91MI=I;UG
zfhc%H)WIkYaS=PGywxz@H&Gmp;tbp5Cxz|^3mnDIQG6T4cOv{=@Msi22>DTP;K_ys
zD`p&vdR8VF>$nI{cWL=c6#o-G_lb-XLQV-%=hrAs=BeG!>ok|dVU_6UJsZVuQJfQn
z-vuv3aXt!ubz&%WE=F;Q3u&`LmpR~1HoPJ_Bn)Lqu1c+0@oPf<6pUUETxWMI&7k{_
z3rH0IL~%1ua!bg+g55?d)VVGEm5V;|Pa9_6<0@()WFgZ+ehURGRJBmeLO~0KER?cP
z+CpIqMJyDzP{Kk{3+qQKbj29dKqaZX&d-;_B`xplWA5c!@n@jbxe!11l(F!Dg$foP
zvQXASISb`2JZRzM93M}tzC1Qmc$4>Lo2%un`95wAtZ1Q<g~}GHSZF@ZKW31BM$gcH
zlhwWT{n1<AH_iOBGOJstVc`)A4J_2OP|E@=)VEOELLCcrE!4BTcH4Dbq4^^oZ=rst
z?E5?S#9tx4oNrPibbp`N!<M&sY}l7dLko>8_$;Uvx22(p1;s*!g?IXC_cc$J%h)!@
zSLCRAV{nk4drEfD{T2cif)-j-^S`<yaQJ~18NbnVU8Ykmqp5{v7E%`4u>4f8kZVD+
zaN~2OrG;z@tt>ohA&c3~Q~25FwQiopExOhgaxC0^BG{*AMVckyhvS0h6dH-rEtnR<
z77jieG%WO9kzH5uc1uPqM0tx_ID>oeczg3~y>6BT+wwO4#RN$l3vuDDU?NYRw7iqW
zsPLGDwidcu=wYFqh4vOYTX@_;2MZl7bh2m!J8-mh&isFsUc;632fNU*M=0#Vq%3q3
zg>pA~^N?kld7(SAM18_SPYY=aPg<b2mj!+Y=`EaO&ekq`wcf}2|N95}a!9Q740I?D
zWHeoqe%kWBJKVBx+v5Eap0&{5!T<~JTlm1jbC!3G_A3@%W&c`u-ogtO2C=DMR!3Xj
z{=F9|DcWkV@Zy&h@*yG_YT+dob*w@+OvrExBl098EsV<JFI(OzEmRw0VJsga>UQF0
zo^ck&TX_3D)%m!1;^X3TX8B*^bU2}`DW^{4Oev(kE;zx$8y4nkEhxG7U&l8sOtLW9
z!W71}FwKJN2ct}7-OH(O34Yzc<M-v$Ipi$N5cw=Y2F(=m?*CDqZQ;GVP)7gI!bcVk
zS@?z}w=jo67S>vrYhj*+C7h2el7)?G%TFwP%D%9$kgd1K_eepNF2mLrSy)!iPq$dq
z?(=__`#z)G!U_vtTA=rH3(GBh!MQm(^vC|}kE{EmFDZRj``LHgw6@a1DhsPE{P2D6
zSwk~Zhka!m`?<A%Z*<pjt+24o!glsciB=mdY__n4d0E)RcDw6+VlFv6ShTUam9;qJ
z|H{JGTw(rEXkCqm5XJL#Zx{@=KBMfgu+zd`3;QhWvas929?tZC{I|;n?(e-}rMRJv
z61x2s4sgndg1ObtFR)|FHsT}dfJOep7LHi>&B8eg-&**N>wtw{*z%VeesAGN3r8(3
zzpZ{?bxQep-?gBA@R)_;7Jg#u)ep{lSLc?boNu%Fv3PTj;QuU~uyC5g+rqD0)-0T2
zJ1+=weJ*fO;gMuH$Gkg9O6d5BneHq*=&HAO>vs$1*~p{(*DYMIaM8ja7Ot`f7bur3
zT()pUIQQq2X{vG?&%G0YO$$QTEc|KVFAINL$hSWy{&=Wr*UacQ>Xlfi*i3EkL0^^P
zp&J(dk(6&*-q*K(g_F?H?%#hF?r@>Aq1d=<;U1Sz8?|lZvytCMNgJhXJn*+#z(!FU
zAKVKSv{A^$?B!}<8%1pJlL6hhdm$b~b)Od#VR0KJBx1g5-e-l<Hp<wjAwdt=7_r=o
zRn<mWn?@Z~x^gzk3x80sg5X1f6$L8^QnRv<DmL~m^dd5yYBs9dc<}2Sa$-%%WlJ)2
zJsF~;jt$tTZ=<e_Wee4MHu(L5Zq+l{58K|UQjJCb5gW~(%AvP`jfNs8ZzN<*$-swS
zdbP-~vH3fHYa2N>d^S`Y86W0fJ0j$_5wH=o5wg+J#-lbeZM3~xyqS&WHoBiso7(vI
zxXKSS<SlI6Cy_@2^k&(}79A3PCZnX4jdOo1<XpsZSvD5f#$X$|4Z}uP8{KS}Ho`XA
z*m%rF#75Lc+~&qJST<}MF&mB~!u6T=2}NqE>zeoAuTS(g85m61NZQ~p*eM%Fo(okE
zwB(aGy>$G<)7C~i8|~MmI}>em;ENO+oow(3p>YR$*E_3l6Izq1!P7zYj^2WwL?5@&
zg*g_?;P+V`Daf6N-EH(>AKB<{;|Uu*ZS=9x*G4ZJy=|mzJW1gK<?;s#?e=iNe{Z_#
zyBgpP1Ggddv+<OTr)@mL67E#SysBP(I5<5NI&esN>CXVam>)bF7+~XK4fT1+^f?;?
zZSR@x$&sPS&9W(f!NwpPQwq1bf4x4pM;T&csEs)`=CXxt3}ebR#@iUqamZFZ8yYQ1
zjkGb!#>>KoeWUPL>fN=2Y`QOA%^723EQ2lu_%Y?nd0lvseZ|JBHr}u?ku6i*|C){0
zZA@UT$0)}G>I-YqS?hz_2Pr)D@=Y6)B+ZX)Otw*Ak3z@hnqp%r`)HN&mW^3L$ltax
z&Bk;a@7S1OW2TLFCFsg>_4BSlD)3w(zA56FG8`MTCFngH?{i|>_|V2jA{jeZS^QWI
zKP)b;r}986#$tBdRXESad>fx}7T8!|W1)>jHWsr17x_N1@hN9$6+gLh%J=&@Z~y#D
zr}HmiN#?3cIoIy`*X>cspUc+xGs5RKR&W^GSZ?DB8<g;OmE5$-Bci76&A-ydDjPpl
zD3GqI{<JikUCec6jg7T7*4bFkO2sfMh7C40+W5}K_ck_hX4&|b-89s{MR2F!R>7}q
zd@W>~;C8__WiqI|!}cuNk?a!TZb5qY2-$06pOF262Lula9uoXU@US3b9bq$`Z$v^j
zWv}lC8$WUa#-PV=)W$IzXSpEQIL_K}jIBxkk1c=IS9__#<EwtQ@eBLzo{z4?TbT?!
zVdGaDCq;8+!@w!Fe;5C0L6S2z_D|0yIcMW{8wF!1#Ej1Q&)c|e<A#k39OoRL=loy4
ztX$&631re;ws9qo|6${*?cF<F6Um=~f8~Y#ZR7lmAfx<a<ED-OY}{dwuSvI^mGiHS
zTU?-K<$S#+eVa@D&%J*y(yG*roVzyeQC>bXe+=~Ii{aFobls7eZ(Qm`QXu99-Q(CE
znOQi7A~95tp+*cvV<;9w`4}FIp?C}>Vki^C12L3jBINTjO2^QxZT8b{_9s92x&40L
zK>w#NhDe$ObIQh0j-kFBdTXvtuS{lFh~c3aD#lPLhSpUBGn3h?qS-VeS~-R)F)(7a
z7^=q5>7GirCe^vKo=w6uw?CF$Glp6*JQ_n*47FpZ6GO8Yn#T|x+O2L3qX+tZg7soR
z4E1ApSiFq|8Tv>J4TLw$lQfE9<KS)#YLX{Wgk;3HU%dw9YM$ILBoISTNJua<FSKb4
zL-cIww}_$T+Vlb~x22G*Dn>i;9xP&Hv%WEGdM(&Wuxh^S%fZ~77;?qy=F4VKrju>N
zV8-xd41HLy7$PxriJ@x@(HN{49%CQHV8;-P;mSfK8G{o;JO($0M9jOpXgyuM-Babo
z<$ATOA4e%wcdOiZkcy!VbDz}B9qZ?wqVHPfwu_;C44q@%C8<LU9ogV994MRrxwUED
zR`EDO?r*R1sCw_I;Nvmy->Bu09BOupp}XYLn}d0S+9QUZ;(a0pBNC#7*h?fNznoG}
zMFQy<{u~_Qo3Xwz^owC^jAy^%sTiJS3&$`x=Dk3BCWZkqJQu^WG4vP7*-O4w83FEz
z9T>y&F}x7Npcv*<^&ZN2E#M|nK8xw66>bXZT237j!_XK;#xRQ2iD6g_!($l1T&5|H
z{1xE8UC&+&+}`b@jm<5!g8UckW%e2iusJX$270-XkB&d0^4rJ7aA<rCuf#Bk#fafm
zX`k0)m=MEj!r2J3kJC^vCdTk4iw!^jG~vb=x~A`D@)?AZDKSiq;q4fviNZG(gLH2(
z&GkX|Gyin9XACo9n90>(ukXbAU~bWj`}@6llUew#!arGN$M9YZ>EZhA7~YTJgBZ?o
z%2fA%7{f;~ERA_<!pCe7AxmPI8}kn8T^PeBjA$307sLD*7D(vZYrTIJhkuasDd%tZ
zoW(3y_0S^WJR6r1x{-2j+Jz-WKV#oXtj}Xu5yO|lmkWL&*m;P$GKN(#9EsuE7*<ml
z!>$;1a~w7du8m<EOHwkpE{647|2es0*b>85j&M=f%tp{W^C|sv3-G1!odUt*8!LSk
z!`H0cnS2+`0@X?epKs(@bzo}SW7rYHPEPhlo{$pm*J|8C-NS(z!$A)F9vOQD_r<V3
zhJV)AEj_}A9SYCCI~2ncR}}JZV%~v$bcdy22b2O#=ernwh~Y;m()TfL#qop(A}Y6=
z?!4OYXbi_<I3B}KQe_tA*BE{l{)^!M1WyQVNP5+wJ1O2%f~N(~2r_ZD^KUWlK<9HY
z{2s&k7%s$6@KoSp43|XCcg2@EojIGPd+Ry(JN?1l=fWPtRUzcpIFIu9UoreG{Cb|`
zhLCQvgEu*stF)l|SI8~FvAcr*QDL}#Cx*L1?g<ujkk9et`2`CI(#s1jv5<HRJ1CMT
z_sqaLDB<9Z6egxn(m^Q);}RI3KxqeM9F%iW-o*nB$~rLP2****L3sz;9Bg;+po0ny
zIyva<;2{SU9T*OZo>3|}sO+GDgN6>OIH>Ai#DBhr9q?GvY7VZq^w)4u-2rW(P{MNw
zDXA&)S`KPE=vOeKjvz^0A@u|ySYPmf6?()$^e-P%Ze(kX95i;ozY=mBG;zFl1>~)S
zC=N0l_#CL>Z6-(szmR}~ppa0WJd;HD-6KA#H5cAOu%+Omf?0x8$d-IbS_@&m4<Ax;
z9cbb$d{)yPynC_>k3c1w4#Ey14tVyiD@YO*VmYvd#PZ~hgShZd&o`o4!ojnLd`ZES
zAiZs<AiQm!q@9rVf*l-m6jH5{PUXiPbYWjRnCPIZgKiE6Ie5`QcLzNj^ku_R|C;)Q
zgPsn032(C8*PElo!IKX9IJiAR8DBu%k@oj3tk3P9&F$8F4af(9ryM-(V1R??96ZAu
zskuYxPpswb9IN?&$}0{Xk1ieP;CTlxINst<FWc?o9m><e>_2<x+_XH{!4L<d9gJ}>
zlnpgR8P37u;3Wsc9DKeu{m0bI^veqOcQI(BgHaA%c5w7gsPz!F&FMhjCE4Y7=4}03
z8Ovep;8h2&IT-JNm%mpW{M{&%LF9Dgbgwg`NBk2UZ%H9Jur|$e$=`G^$-!q1mN}Tr
zPINHa!Fvv-I(W;$I}T<zm>2B!wu5O7rVAfhwbQXJ%GPo%Z?+0d9pInI9_QS-*L#+O
z*VicR{`B$jklyoa)4bTd&j~nO`NYAe4nA=3p@Rv%)Q=prYN+<*`+o<!{`Svtz%!la
z3eFRpFStN(p&%7@yqUSk!D0tX94wV&`SZoT4a&@WYR-yKZdsK(82PI3a|g>EtZ}f`
z!50ozuxe+N)wKWMU?t=3DY(i(!FA~Y6*BqfCSPAv9iK~u=Vle*zhmnhtaq@<!DbGL
zN#6B$gM*EfT+JD_z{hP!rx*LSIN0joD+gaY;172L+6T+#Z;>%Dvu(bN7q6)W3T5zV
zVuypB4z4=5#tJ&#uWiR2{N!M_gFO!RavUzK_Pv829PD$j-@yR~2OWIt;5#lR@2Owk
z3q}ft4mq?}43b5M0*8eh5gc<qP~=cxaQ;x>P=Gzi#D8?K@RyuI`9en>9CNT`Z{Ydn
znIjK+w#^y+X9wpT{O;fv2mf<$!ojZ&&TyPKIO*V&6z{Zyx-%7fpO@ehYkcm(z{D*<
zA`PVf#)?QTL^Xe?`-R-|4lX#@aW{C8>q%DdGSeJa`I4w@Xq0`$!5@ydcfHQKG)u+8
z{ORB?2Q}iT8OPsT`q=()6pG`9gMS?S=irWm8;f%)jP!nEzsXV8*Y~gBEzT(+qb_+t
zccrMTZ~izs<Wujld1L;3aXuz@t6MFL@&a+Mse^?=h2tm^NBKBPl`Bv*j$(0?WR(4Z
z;-XL@?tQYM8kOm|rS|z<TB$fn$8oY_%QA615J%ZK2LG;<6MVTyOY+f$JY*sd#?if8
z$qI3=jt|9AQAj00N-7Jf5=YfMNwqkt=kZC?g0<qP9Y-*ZP#ksQs2fM)IGV&!FAl`<
za2$`sQ9q79?gr`D=BM(9*oJ*>D-Ggk7)PVHcS;wFol_umzh7PvqQsFAhcAwgh83t#
zAf(3Ok0TIAgZ*BgT89Gr4+Q+C#&)JRGmfTlWXI7e?saanIGV@NA`T9`4h2Fj<2YI%
z#J>=-B$Rwh<LsP`N@l^(uIy0jICA31jYErrxfGjKoGH{T(L#@-^|~|%j6r#RuWVQD
z1^F*?B#vktAF^O^SaI0wuQ*1=5sTxS$FsY{(KQYyj(8ky90@j*v{f>WR2=QuYjL!R
z<FPo}#?da00aLrAcLttrlHF)`pmLEAKaspPJ~vc7)G>}uadeL3)b7B_&4G^V(j#{U
z_HPdGE6n`e0V<c;73ju}i{rOFfuV8qh~tSko{!^&IC{p>D~`)mLw(}t9Y>mjr+Vng
zICzRT2@_{Io9ziOufB2g6U{{>GM-|i4N;zsgZvr6X9fEU4iIF}b3z6Rc2t9d;&?Ic
z?L!_S=``;h>c1{MnE6%@T__ylTWAg;mhh!G-mV%NCS@2d$YP9&<K;MBk7Gg{wUq49
zag1lvRS%7*8X6PF*f_?qZL5Y@YgTsRy7Vg&`l{e-f~n#(0UCNkqECrqY8)%y$)3pc
zg^*9;6nI~s%yC$$6TNS-7;&)f@5M1Kj_GmCjN{!n-r>yJ<>fMiMOvtEclzhsm3iyZ
z%(PCU>{)Tl<}WNoLkF5<|C&F@^`9;IzSQCasn@c@%ExicVPC{?E{?fz%;VULV_O{a
z<5&>Kk~o&eu`mw)i@i9G{*^+X#PR6O>YuV1IcyI3msbuQsTj(s6r#fQ=SqDR$Fexq
z#_@io5dW_IJPwAgjDvi69AB`(Q>9jjmy$1qbg!4QO4O*iTF4qfyJComtczp4q(;6$
z$i_G}3E3>TB`<Vq9AD+}*%{f}<Jb|$fjADvu``ZcajaRF-Xkf0s21KWHDZ~o^a~cQ
z7}^`hzBmsZK(j3UnT%}8`Mr$gIYj+9zLi+tNR-2ZWvYa}i{tw^eq}d_<OePtV={jf
zWP(TID3jCm7}H#rJ}&r^AiY0x(G&i^Jjn?zbd^I4Iu*z1IL^dzmSkP}_PR97{LuQe
zvOYbfVyM;C=1lo_W*5ipIR1;{LL3(*_iJ2Eg^bI{zRX!arU0vOg=-hb$+k*A4hvq5
z<LNRjSR+1o{u#%WY3g6R1Tck&dY$Wk9RCPsy>7;NSX*#UTlK~v_20bJ@)j4v2TE{8
zFyfs!3cD!c;%=OG3t*A*xybLLfa`IthXq}*7=>J~LFkRIPt!|Y)I~9u=gXjsi{dVl
zV+wFMl@zrSf-GJs7c`PXLd56QSPQxbT%4>FD(hlH#n93%fd^ewaB;!KMHdgbsOVyv
zi|H;Zxv1=-i;J!<s<^1?;!zh_E~>ex&h%X<E^4@_>7u@ihh5Zip|;Gb<D#yM+QRAW
z)1qru^@{bx3l|6co%r>HjzM&fxM<*_p@inntlo%e2D2KwcyfJuqSo@h=Fs)&3{mjA
z2)OXMxYV=rm?a@qgycaNAs0<uG;_gNOg2-3=J9l(mRZeRFy9s~T1qI>r?5#X^Q)#F
z$#&7oMbw4mqP4`*T<9*Cb&iW%kyHp~(Q61dU4(_OQV|!-nn6sTNzHGOWxI&Ec+5px
zkvJ|A>=zet7p}|q3~8z@ZJL$UH0#|!R?0;iQDb2!XF3$NbJ5;KXOVYs(a}XG$z{&^
zG|yPMADwtR;1&LH7iWZYbJ5+!U>8FqVh<O+U8IFSA=p#u-b?t}_30;F^l|a5i~b_%
z>*6UFPrK+R)hS)R)BW^WJ67!(7c-=-nBxE!16@2Xv7QrTGrr(rkc$_^OC8pN$VMX$
zRk{y#@sf-2E?#jl%*AlF>dfk+MR|maQ9>vg>B37&V!bRvvqR1p7h^g2r3I+N1XnfB
zI<!9hs*Be|XR?deT})u@T)cTdDHm@DdHk1-;b2y?<<%H*l8l*hSy{|tiiEOiQ(e5}
z;%!C@W-ZR?8p_N%yFUF6E9+vni#;x8x_H;c7cN$~nB`)&i}@}VxOmU?Zje55@v)2d
zU3}o;Ll-3;&7z~6j%1GLkk6G+l6fLw(4F<^g)TmEvDC$9BK*|FA{UE=GpQwc2{L8s
z&tDK?^kptScd<NAhiZR1B`GKQ(#1-4oQusaR=HU1VlC(3_LhuJ1*Wh@2)*lEtmmv3
z??yo?Tx*%NFUu?W78hGxY;&<)g1&OmVMVpCUEao*WG-|}YKM!RE_R6mCHK=OVVTMI
zy4dI9M;AvKi<8~OcOqxdK^KQyd?N*;m+r8OBQC!EKS_0(SAcSs^Lr8gkf+S_kGVMR
z;*^WiE`G{O^M5XW7G7m?&M#b}Cg-r$OyPu!U-NWM3b|j@GcJB}aZV&>^ZJGQzl-F&
z;QeM{87{fF%w;WsM-sTg*|8)<S3ZG1TwHZ=jqUFuUjq3P_{+uLF8-6~*9C97_}9e^
z7ypR2;gV3r4e4q3g15wL{8Z|;i=q1h#$vB$GxCM*aPgO*dz@T9m!fdRN-wBD0tFK&
zo<NBN3MEiDfuaeoor@&!{a){xg~}`PhdSpA6%%>SF4-IQ2TBSroj{ocN(rB`KfqWI
zBv3YiMUAt|iO_#9$OkJTB@BHqfeHz)nhzyVErIF@R7{|fNR}g1Ie{t(RF#NS9(%6(
zssn+nnxPsA)Jy;g)R&;54N)tB+6mN2pe}_=a_S{;w`X?#)geAroo|%=W|!<&dWSAH
z&gO$&_d|hEcY_TQ81YFcm_R6jh6yxEps`4Nf=vV!!3@EDixujt!u^5)!G(iV$}<ya
znm{^%ClhFv0N-Rjnm|?p%@Y{D(bpn@S$C9{3GkO&Ds%g5b^@&ua1%%*&^m#f1h@w{
zl0a?(S^|0k2HW51>f4Zh_Y?28-|&WXzk9i60^tO@Y)Jo5B19ZkI}}Y|XsLjefSo{0
z5^)lkK2(`oCv>WKMqD^|kW!LNAjP&yV8vH0`CaCPP{}rYO?SBlKg2wiKwI|gh7eu5
z1ls5E4njH#b`tEI0OL}vOP)?wA>9(_E~JOx6M{VjsoX1p-okS}^U=HFhh}{ecqV~o
zS(qQ1^%d+V_>|z&2@Kefeq%$rf5Ni?GAMx;DM{eD1O_J1^+xFV1m<l>(+!-Wz94+F
zcn2piB!SThj7gwC@ywwK?<|s$3A`j;N`|pJgpUxsSX!lURKh#?h3@49elDI#!c%S!
zuBbMag=tw}^5dC5ZAib8z^e%iOJaBuuO;w$0xu*z`xp}vcq4%#Nfb?DVghd_a4Lb*
z2~0|0aspo_urh%u2~163egX>;cq@Uo6L>Fy_Y;`L-r>MVpmQkrP69I$n3=%430&Kd
zesE(tz9lekT97!XVDQkV`sC@svZsTyIa>bA;Y9c#!7~SQKTO~wj`_?WAJFLiIDt6{
z%#|Q+n;G3YbKB`)&EM5|3D6SGMw<O(_a*Q}0_WZhe#(p<&-q+(UzEV&1eS<oX@Vz(
z;p`l>>Nh!5Akr=4B>l*faD&!zw!^zY+9YAwRwPiqdnQw(Tb01t1lCF7s|D8xb}ipx
zJzF?|BME$)z{UhNC9suqA%V>a91jJzByh1vaL#wZ^V5QND|9Lp2!5TwwgmPk@WcvV
zKPQL#?zXc%-%;px2-%syE+M<~<a-j>D}0|IZBtPB04turAxVcx9ZujI4#mH<f{k+M
zC01KoiqEs(CGfulPH>2Fs1ytSz>0KKe-u0_cuerPAcKBNz!~WOIe}mDB(dqruL&@z
zNuz=%6X*~O-VOwZRn4st4W3DW4RtPo-`T3d>HRH%a(xProKIk^FY{Uge<pB&?U2AF
z4nn`i_WUD(%e(|6yywBi3w=EFt;xnT<yWOuj}{I7mB8P;5F}9`iR%ee-V*pndh<pC
z?f5b#5F}D~Gl73a&S7>-$n6CF%ahy@a#!%4V7{a`AiFlnB(fw0lPHw*io`Os-<U3(
z#KF6rXy39}62+6qOrmKLC6XwaM8hN+B~dDg(n*Xi5vrd=nIs;dcX8c1Nt8{ZToSdC
zFlXeHPvXHODkSkx5^v?IZq*RopT$EJlZciKRZ4o>MM#R53RO;mK~)4vstT!=M0FuG
z^5ivzd{!b<JBgzYg_8BVGJ4%4>Pdn~f{C+86f$>`hoyv%B+-BccrfGUom`HV#-iLL
z2_=bMqY6+tL)3gps7$|ckP-c&!=PXi0pXAL(zcWcF^f<Vznu@XzMk7GiRMYPOQL-e
zEs|)NM1-12JeovS5?T^^64^<#k}`Llk<&VfEAva_NXy(P72v~HE|s6I8QPx1(z4b@
z65%A)E%CT1YAgU9C3F_kNg|PiokUF3oFsl+?TZVi8lT;mPBMv95^a)rED6>(I5USy
zF|;jn|4-B2)9$wq*Om@RbWGyOB>E)LiGv}D?n(4W;_)Q9B+)I2kL!1TVPl&A5inv`
zsr4Hh(`*42?+Nx@61}NBC!^&EuV;HDy>|{I_n!gN62yG_Cebg6XOehUBu^#5x9d*}
z-~Ekmafu*Xrhi^*KbOP+;Y^2d2PW~nc&p9Kp<AA<aw#4p3-XIe3>Gp(aH!x*?1Hi_
zx!aa%Ba#@I#Ec|nCNWAvUrFLsAuqGLg-~rw5@Usr6C5viYqpodYr-cbF*%9Xg-;NC
zLy!s+g}f=q4;hq9;V={L)I6Q~|Eh22@o7m+7yeG3<j_6!-6UqQr;_+LiP=fKm&BeV
z_9pRu5+5W%d##(2_%Ml&l30?&Qg%ubbCOt)#KI)zCNWQR^cBAONnlv!xMdnmqE*Nr
zWW-OB$hq8m5hq~&;HSb#C|S&is}&M@KTBd+604F}E$Muo#1~1dNMZ{zmnV6^r8Z|{
z`pYC%CUHDp&@5Vw$&O29-_W~}tVv>R5*sBVz3Y-#pTq|7n)?(=IxW`D{o%W>d^6T<
zGm~ZSC-GGhJ4Nm5B(@1@+a<U?FP$ApnmFsm6lj(qt8$B7BHx`CN+DC;m&6Yo{7LLj
z;(!DlOyV%t1T*_kp5`|~GP?wih@3&+3i&RH?}f0@C_I|Pu_UgF^6?~oO5$`9XE+5;
zhJH@se@UE>pkI=nH4<k1YZ51uIF*+R8=S)SL$oa$(<Em(+Gl8&lDN$I!YEAPdVuoZ
zMgM$WtP4Ue3bGeSh*y&ML%JsGM&Q5efd#(=uW><3;xDSPO+=Z(>q&5r=z`fL$r<aP
zyhQdN&AFAt?Ih}^P%nl5lDLyZ<rJ!<aF=x~lUq22A}QQUB45he{_)esbp8|yq);%$
zquc#-g;KZ_&b`l-<NjDne^GwzO`%lE+qhUPh2klcNP+ts8J!aDX)K*WnG_yOp+d^r
z57}T#_5&%DO@XAGAT`Sip`_8retI8Dp<)V^qzv~H;g>JEj8BxRDXjm?S1pC=DP;cH
zaL_!ZMhZ1WSV!>VI*q7MOL%QT?`QMBe7yHY3iVTXJcTYPJe<NKDHti3Deot*1}QX2
zK}n%u3XMe4Ar_()i^go3jp=`W@nxjoOCiKeQ&3azrw~XXn8K9bl^1?fcGdHTy7~JJ
z4Bh%j{q^n4qklAPnnJUbw>MHxp?L~4sM5igO{8lf-j*pmDkLj~>=arF&lPMfNX?uS
zc!(;AmM7tN_Ew|){I?>^MouA_LMnx53RVhE3h@+d$&~rVQW$<&r3EMQO@AtMZVCxj
z=i6-ZWtY^xwx7IB3a4f&ZBu9`L5~SCO8XQ#q|hma&M9<Efi{+FJ(7Fpv=?PmbCqw2
zX|1=)ru5s-2fL=wEro$8JkS13p+^e+Qg|wbCsN?<xLzsrPNAo8{*Ff@>gg1oOrcK-
zeN)~Kde?6$+<C~)ro`1f)PYZ_@r3#`b^h}8Phmg`&!q5d3PpD)$=5yid1IA9yXJfD
zxfF=p68S<3gHm`oh0!Uzn8IMzJ%te|3`t=qM^OsHSk10}TAcQmYtd{|y6Vl2i*1!|
z$SGQl$QhZ!sFe4YF@L@@ZU)$cZy!^}uswTZj8EZ}6vn17P87B!)hf^X`6tM$DZG}#
z>nTiNmD_jbTEzcBUVA7&$DNRC@A~-T#+xZj;)H6CqU|x6Lxq#5Ey}jV)D+%IVRIX7
zX@j>@n8u;i25K8jPvM;uwx;k^3NuoenZjo&EKA|t6lSIHX^Ow=Dg_z^_bl+uPT{>2
z-sflx1{S99iI5KjKV++>F#crkj|EBQq%b#+&r4yx@CAY#PE=qbv<k=%wXc0rnEO>0
zrLZ`KB`I$!(Z;XyFXc#>qtIQOr+oQx@beUin^IUV<ckzmq;TN6@5>Z6iex3HPx~gT
z1Xl~vyC#LT!q*9|7u=8+nyS^9mMEC)X33OfizLMYe4WC!6#h=(dJ5Z9*pb37Df};m
zo$UG)j->Ey3cFL-lfuCi4yCX+g?%aPXOU8<Tg?B@X7!QxGil`f|55cFP*&95|5WK9
zARVNA5Gk{7-g~>i0uOdsniPfU?Uj{XY)A*C2?!`4prVK%N^c4xMMQdUq5@I`6r>mF
zNR{&YO#JRS|NlAn-1EtuB$G*QGBe4|&0p6-e1q^{`h#=jy&R5G^6%@68`}arWybgR
zHeDWDHRC{M9PEtWS*p%B)EP9sI^5ZJ@W^QN$;=?vRv0|m8OJ)~55_4P(k1y?wPbZ&
zHk~7JXZ?xJ_^UH6b;jSFagr*>QL!^FbjIn<IMW$tJL4Q1?&A#F@Gl)9KRZ-@X>XwS
zGvVU1llC`A|9wty?{5<6B9;GzAU}afmpkKHXI$@$E1hwbD*au6*0%dv1!)0$qcdpp
zcC#~Xb%rt9w|~3YQ|`4c`}&|j*M<%5bjIDzsHC8>f_t5DpAVuSzk&zUBKC0(@*Mx!
zxjv9O9Sl5TwWlQ0*2tZgw(NEwmxA01@+iowfKIw-BXR16{Dzu5ab5Ozvm?Jh7c5y(
zeo8?B1!WYJRZvhtAqCGUFlWhy6|f$P30_3-q6)qr8Kkgck7V-VLRdoZrv)!5cqs*?
z1z?;~6Do5r4|6N0puB<#3M%qO*$w%6J+v;cZEvJN=^$H;!E@u1swj9?K`jN(DPXXw
zf*K0g+|?9RS1^CE-(@a+FLRq!O$AW=U$bjw<n$<sacCM{TR|NKbrm#gm-f7ZZ`Wma
zY7?xdpuPf0L6QO<%~Pw9%=0bE{G0CYt}2!M_E)}%eo#S3fu+D!5LS?^aJ^6Nq##8>
z1BI^OLroPlRM7lazW_}XG*XbNps|A52a`$Ti-gH1zZvwe)(u8j0FkP>f>sJzD@aq2
zuAqeiwRviWf|d$xr&D|Vk^X11R7!}++bI5S#CC!cv=!h51s(GFa#DL@1sxT<C@#Gu
z_<v_W^C|&-Ep}F*@Gc581uHAdx&ng@QP<yOS0#U4?!_||-(5eC`Mz98aum1<#;~Xg
zJOxn&{drYEOhH`1>k8gbkWi4RpsRvc6uhjUi-If#*$O&MmItMUzE4f9za~5&C}(Yn
zkSHX*s^B#?T*2U(iBj*==_KNA3f@%EOF?h8nt~n*dMbGPuEa|-|CQ+Jo&Sb|&W8Bn
z=%b*of_@4XT@21?7v$c7UF)*X33~i#@NESH6bw@^T){w=^MpKD!4MI7km8?fM#(#h
zZzo9_s`v+I{D;{+N$)BcrQkgUBNU8OKuMshOn+!gBEk1XZcIL!MIA2HUmhf;Da!{6
z#wnPtV1|P63MMG{gu^@4nC4^(j&74aX5(%Sf25%4G^xZ-5+xIboZW4bg3lC8Rq%z7
zOlG?)m?Cib8R4Y;q5SK!rC!Ok)@M&s@Fg$ZZu*si<9+1^3xhOMr0Y3KcoOtX1+x?^
zrb;WAtzeFV1qv1_n5$r(f`^N&`3f@1rP1<##+o4QC)vk)Z;`*I8hj>w!^%;>!<C4+
zF{H)%Y<`$=)6fz&@!P>=3YJrm6f9NzT}9Lr+T6adKSZmf73>aD=z9gk1f-P;e&EP3
zQ(7hXkAklje2w611!shH0?_f%Mg^OwMJh5?Y*w&E!3_mB6>L?ojjeoEKBZv0f*lHe
zS8#;GnjYK9F8^iZpn_crb}RUaS0_q)SlXgV8>U2ve-`)`!G9Heui*Ox-!J%Yf-}hh
zj*}ZB1eXh>9#U|a4R@~cZ-vuy4NgBw_23;RHTX-x9}50dIQf=zLhvu&ta4lcPO(x*
zV(`z0(n$_bV<ZBW{Ir5IY_dnvSq@eT&U1h|7UaU{1@T<RyQQ`5ntV~gB|hn@0O@Z9
zmj%8e_|+WwHQp!(x5*p6rQjb9fGTRMxUJxhf|4pqskqC*UqL<<`BmKKLn(Ny;E95N
zsQ?Ndv0uF6@6K!bXXx8YGW~;P?UpFXr6RYAJSy_4m@+KgITzyKS@(Pvi92WcaY$S7
zr&JVBQB*}S6$MokQc+k%5w_PJ`NST7x5%EaBs!?1%^ttIxL2sSiV`XsWfpo`#U?X-
zP`$?I>!v^29uBXPuDz9BTE#Oes;a1_qKt~NDk`d|q@tXP@+uDHNvgnLk??E%!zZhz
zGnlnL`-h~)8#a2CRa8;&tP0{M(}Hu)1lo*9=GQ)VB7d}As;;7jikhnL3$E%Kxqk^8
zDtO*~E!FpYLNIVcXrUB*UPT=hZB@LWqOOX1Dw?Qhs-nK?A2QNFMMD*miX;^Q6*Mv|
zU!gJOvg$k22nrq&JS=#!;3<OlsF{m#8mUNC@#m^=V-@rq{wNxzCpQL3r7DLbDw?Ti
zp(2C#of~MbB27iQz`P5IuP{3GJ@`+krHWQ6TB~TIV$}NVq6=kyHO*b0{pBmNTRyc`
z?%=P1U^^A<RTwHv6&+M`RH3L)RlKO;B^8}ibXNVN+glV)z1t|2g<0D^`1|G{e-kRj
zWKG4?X_Bt`dx!5D{+Uq2E7v2oRM;v!%2m+2tfPV(2V8;Y_YJS;7M}Jv5MvXp&*s*l
zI3IkqOuTbO<YA}q%PP94_(H`r6<I2>Rg6$EQbku4udsDChK8$nRRzB*`l{%sV(d=o
zH5IR`ctb@u6``BboOlM$+4*CA_M0lmy9?e!MNbtEXD0O$!QO)R5u9-<AlRResba8-
zAu8ThF+jyY6@ygJ@SDf9)se&GW1dNi-px8yM*ii8$U7>Asu-r?;9Jtfe*-*~k3%B2
zYw>@99{}&Fc<p*qmUjM*;3yUEsrXdIBo*(gzJ>4@7F)$=_Lu(ty!7L>`94rFPQ`~R
zK4Li=%j2p1o5K?XzBEG`J1cq5Ug@n9(#I-3QF#Q9Oq!@7z94W|4t-cPg?YAboBWxI
zmhXnAsF<wc_|xg1tG@j_<%gBvRB>rmo1%>HrHZdq>{YQ(#dPYYigha1tC&euSMj}y
zl`3Ydn4@B$imz47RWVP+d=(3rbEgPh&}ZLj$~h>ylFOVR@kfS!HNR28?~~;!RtT_2
z@Wm>=6<~?r-wA$yb7-lGMIXq^*p7cC^BbGQzpDOEq|%=Ue^9ZC+M;5O>N|ya_)}ob
zu8bcU+?Bz7(_TG)_w-t7=I1E{<Qr6MRIy#f4vrEkXzjU0#a50gs(<i@QaFhp@Y_@z
zof+)6P3FMGZSTZ8RqRsnGkdFw-70=ku}1|@$Djk`B8EKWcZtTvg<q4o<(xwMO0Hiy
zPUe;Qna8~q`&D`o$1N5As5rpZS8+<kX^uH64ztg)=2iU8+;~$y0xM9Hm4mV)%Pki~
z_K%cLwF~`0y-Ew!+%0cjDV<R9mx_}r&U`L$EaisZmdpMBiyn{tO@(JvoK<m6#dQ_u
z*nL!7P;rrwtA$su35F)8^H27TSeTv!E-}tD>2K<flYCk5D}rAYoWicN(;4B0iklp$
zcS*!_0mPq_KGC$>D(+CIA+LtJD(<nHsCdNj-`BL@0}g#EXjJxl?z#&e#!eSb;+{1c
zLO)jVgbJo1w}$b{1M9z&I`)tYRt()=pFL+maPzbjjzak~<kwJGLlF&6X(*tfpoT&k
zLdT>s8?x`FMXp5TpZiICk8r?`cW+o!Lop5f3@ffdagv?<&FD(>zppaRg_hJ%N<&ab
zNJnW6&uCbtVY!Af8p>*Dt)Y#EavI8OfQDKcDriVQ5U8Y~vWAL`Rx-8uxh%RGsG|8l
zs?`O5Rzp<*wq3|oO@M*Ln(}H54K+3NT~v_xc0J#{*mD|c^X@FXhUYcZ(a^b9y(A5F
zHQ#e}HF|#5P)|dB5#$(7;h1Zkc!&l)1u<qo#Fqu<!-h2^YiOpSxrP)C4Ky^;kjflh
z2sYI4r&;g(vPR6I%J6!PH8j!CR6|4qh0BIDm{PIH-+#&^p1(}ur_?W5avC32LkniL
zAzNx7XJ}}tp_PWXoQLn?V);`^l^fTiH%t1gZmZ!14Z}1H*U(NwdkvWyUe?e-Lq`p!
z28&NYz9G9a8$!cN8alC||F$0d9ccKD{Lukf)u3t6H5i)jUUlZ}5NXws(EH=%XIiH$
zKayH&YPzk#(Gb<Rp$`nY8az?M#60ebyC7c~naqlfvoQPR1PgG=JCYV6?y*zqq9IE|
zA2xx8Yz<vC(7iLiG+xp0s)pAzysqI^gB0!s)+_k@4Gr}B%C{07M|9Ib$(w?A7rcky
zJq72bUK)DmU>Y;`)6ieTKn;U5|MTW84Q~?&%w1!F9#K9Toq=#JWw3@J8s5<`l=RR)
zewrs4ar4oI_9^pL2WQ?7acjW48b)ZCs^JR_BQ=cDFj2!N8s5|JzJ_t^EE+~@7^7jV
zh7UCGyw19_10;T3+%MgdFU0=W0<?9Xpy5N#{Al=C!>mHFtN#Sb9<chJ3k6z-Dpd&a
zAF%n_@TVFkY4}{jn_q>ccY~j?uCC>pOf7vY%y%&zoc0?dPhtIA1^L3|R^MqFzSKA(
z;TsKKX_&5Iu7-IUW@wnHVYY@j8a7u8&eFg$BX+$S&dijT7YJ?oN~W&>&Y_jN9GEZq
z(E<$%S%(|^?O^Oy$=^oGewTLfkhF*@T}NK5;ad$;EP1V3iNPfrzSFRj-6yZiFaMi~
zl*HNOuk$AHgrF4~zSpov!_OL4Qa3a_DjnLXVU-5yR@2eH1-5DUQNwBt9OzzNA+OP}
zmVNw?yiUVb0f^TNutCE{0X7M~Ip^vY_OAyLqYXJMaUSgJ9f9qv|K9>Tc(0>@2^+F`
z$6XqBYraw3PaHb7NtE#Q^oxdHHRRHfTgP4v`!t-<a8|>94ZmqPs^J*BK&9LVG#u1$
zNW-+>3XUli=AYnU4ZmwR!U#V|{P*NYo_-|Q=W1wS^-!e`(*DqJg1X8+uHm?bd{OyH
zk1!V?zUVKV)NqPgcO!I~6;f2@PZnuF*>H(@a`$V}Id*>yH>vg-E@-%@;fjW<8ZNPN
zG+fqDeXzfuaoxROk7)4j=#;NFWUG(D*EmA9OS!J$hK6pVC1TR*O`)9|vOg~p`bWcU
z4G%Q@tKkj@e+~CE+}FU5G%n(Yn?#;n6gWLnx^q1I!(REu%|;JdX&N4Dc%tFthV104
z0nTpmcmi%Pr^h5JKX>}%(UDh2IUVJ7<kR`9g<?92>v&2>0Ud>P6wy&o2j|&%oJ1kr
z-&jPve|5ktm)zrT`N9uDQc)cfkIOvMjZ{KMNgbth5I?Ph$1w31xU`OEbd=FiR`>si
zm8Fr|)l)gCHKm2zWVU}Ab%VEp6?9b8QA@{jIx6X?tfQKa>N<F-ijHS>R2BH6!Sd^;
zWcfR3)f&0u?M5|pe=ew|4(J%RB|^;qGHzkxPYS;PYwLJkM|~ZVjygK(>Zqq<NZ3Cd
z>TdO9`k#NaA)8-=l#r5i1a!zcjto!cdxtY-7lO&;)&(i7BU#5{9pCCm(a}09+)_s?
zmPbcJ9gTGVIJ1b3W;#-JG-lO32{gG~gr0nw@OgFLrH{Q)zE>o*x$e*Lw$O2_Nsu5-
zN4k&@bE=kq2N^nIYeNLBb+pmZS4Te`ZFRh$Bg#uU+UaPoL)T&G=%Aycj+b<F()|hi
z^Ven4i#o^|?5so4q3Y1Y)#}G33i+`476rLFFl~MEuUkT#6E<~zHpq?+ONY$|JR^Pk
zYIspFx$9KP)#2&BiP5@OWP0-F(m-5CLPs~MfsRZaFYD;4;}soUbmXd+oTVdM$Nv2i
zUBOp7?Eh49`z=pgeO1S6I$qcDh7S7D*E{pr*~T<=$U9V~+lsM|!j(2=^FOG&j-EPt
zvAWhuJ=ky)q=p-_dkaOPF7?q-qGS@^LBw>0*I&n5IwtA(Ovl@-e;ps_7^h>PjzK!!
z)A7FUd(0cGV-#EJevu(mgQJnTeZueP7^;JSG)%|v9Q>}15jl7yEA~i;5oR>csIxLK
zX{j_?#~2-BSsN>)qYsj|?g$RFWquQS%cb!;Ca~!jWKY!bp^l=1rH^!c%&J>15pz0s
zPYL;#^zfOd<xiMg2M6BMFZe4g)UnArKG!i@#~d9~bWCMS>6otL3mwyRe92<;4>KCq
z-+2rQe*+aONC|0%j+r`Ui3nUep?j;vZ^-J#?Al$!_Y`@qjs-dv>X@fvK5J=~JZ@&-
z?4)4zms7sh@r{l}I>Kc`d?j(EkK4W$2a-ucI)s<#z5|o*b*$9!9TjP-w3Kb#MP8=+
z-(btx2V13*R`4nEB@z6fW0j5*?1R)I9jn=PI)2r$M#owmn{;eukM5toPR9mzuIr)o
zLKSB;@K=SXjT=RfGgMo2Y}K(-$1WY)blhAL+pc4W4tJciY)d%xbbzld5|ixK@so}{
zI)2vubD}vDNM|F*^JjG5m>sJVBJqH>y*l=>7wb66uE7<hKEeGue$#nMCJyR2M8%-0
zpOUVb@};?HcWVTH7sVKwCy5S!-q%t-y_|7O$DN;K{*L`YCAY&o|L#v6$EoB+!oOT%
zkwQyN`J|3hI{wjdTgPb~XLMZEaZSfr9p`jh((yOj@h9oLjti_Vfv2wsR=AzTS1pN)
zp<EritmBIAPYV!pPakJXHog+RuKVApH#iJFmU)TzCPxe^Mt!+rj|i#4mCzlI$vPhC
zc&y_dYhz55^skQlIv#Mi7%F}8YiQ^QiHF}&{*dF+{m|iANl*9)2J#rlYaqAbuMCnt
zYf^x7KB1!-10M(T8Az`s=jW2vHtFg$nP(st=^ZX;a6>NkoA}K{VFN`BTsLsTKv4t5
z47_h(w1MIVGM;2rGEmt-2?I|XC~2USfx~|V%NzK1a!P3fE$al!8W?vx^o)TrhCfkH
z+_th@&Hzmld6lLhj9)>dswnu(noX-1c-DY!z%WqNKs5tR3^X-R-9QZkNd^K2Y8rrn
z=MB^`(0O-(S_YmoP}}f5+st`C$epVE`Q3b4THPwGu7P?6>Kl*@^t~)|JfTyUZyF`n
zSs*v85TXvm?VxNRXduNv0|OxgVFNr|GT8u^1^K$?dQjL1H)#=>_aM~JKqCXZMPuGN
zcgo#a>8T>fJ9hX^qI^XaIbxuhffo(DWT3f$G}eQGR;*_OEm&y=hu@&|NAiHRp=0BN
z{3iKsZ3{|T8)##oBO7a%#2~#ewPgWj23}zNRJq%sNIL=A8|WYaPgA0tqYC49V$%$k
z6azcIkUAUSmji|LI;$Gc3>@?#BW{O2dlWd@KsF6n26`LlW571x7|1e^ZNN3)8C>^7
zrhzC`B{g5nKwM<VW#wBFBb>VYtgXCvcI0KYb>1MUi{XET(lf)-o57(A0$mNfVxXIW
zHx0aM;57rU8+gM2HR?f`VDL$lA0eYRW>0DrW>;F4l+m5Z4fHh7%K(GYCTV}GRQlwh
zQ>?xx0~6oM;51`j1N{sPG4PIo{s!JMFo><3SAN^T0H!@84K%P~aN2W6{PjM1m89gu
z2hDf=BMmk{&Nu8(1H%lAFfh`<aMo?z@Vf@+;*6OPlR8b1863ryy3q7JafyIL_Znji
zj5RRHz-Lrfs<DAt<HN`F;CL?n8rXPKo@n4h1F@nq&)NCN05>}~m?V8{K#?MpEa@0z
zoKHl|PX*`MXOr1F1~wbmVql7asRou9_|Cu=2BsO9Z(xCeFAaRfdl{H*U^<IrU?#Qq
z^)Npjxsf?(hs;^NxvRo7S|iOdFxS9519y7FI7QQYy>xd{3TvA)<O`|N)6>5(u*ksI
z0<V2Ng_6Yv{yJTbUrpZ{*vkK!joB?%1X%K=YzPCZs9o&ud6JfMxQGT<vW5+O&rXyl
z_1&YK1qz%!B>!N5i;TQVzS_VV1M3W|7sAIM21#qF40|MgB5vS=Q;~KBH*o~`KKNu(
z;P~u7deN5Mj;2$%)xb6b#|->oV7q}G2KI5-q1Lha4D2!Rvq-y}{lZQDiGBYsxqCr*
z@8ZDF-N9cB{AysYfw#95<bf>5221uDx!26d^jS&N|KAK8;CN!-ceYV#_@IG9hQINg
zZjJSO^5e^4;v=kw2ce^^;Wa@9qj|%8?GpcK;JATv2F@Ee!8jb>+T=gO&d3TeaN6+S
zjEr{k`3Na<SUO)Te5Ib{Bg_gOY8K%be!;*+16K@OHE@YZz7G6t;IfFYvq9v~4&kxy
zN<8m=-pf91+?Y+eX5gE>5rUfrZn5@EylUbf1GhQ+nkZ`G4j*TSlvFhJg<Fm8a%}t|
z`<{XO1{QuGJur~ZM1B)TH)j89;31W2r1VJe$AUi*JeTRqa|=$8$3)&7%rzSOo8VI>
z3YsWnqT1@@0w(s23KNicsjvz1OTE&`i<u~HqM3>2CQ6ui+Qf4vYMUr&qLhisCaRby
zZQ>ad<xG?}QN{!htQ>YGS6LJE;u2$TJuTDoX9W|D>*uLxqLK*)X`8{f*fU4%b^XJ=
zm&wnXsA>YH|8ZE&M0FE2Ow=^NOXi(Wo81|FpOOmak?*Vt{d~ed+N_p|FR2)7rRPo5
zF%dEmHc{6^JrlBtpo#h>Boj#{0?c-~#4lbhB0Q`Xr1JB7iBz<O%o6g|e79EaP4}~s
zO{ADeWjReS*uX?X6O9B8x04Iq3f$P3J@IfBkN9k2qN$09i9~@Ud0wDhvj3IaVW&iM
z8Z%u^Gm&mWH({7)VIspsI}`0qv^3Gm^j&eb5eZwH=$|5AyPJ!d5VSS%f{88zn({C8
z{K-(t!e9pz9ZhsH(b>d{COCmWddbAVwK82b5?`y9s+dqsZj)@Gv2~iJ9cdA4lL)6=
z4E-@Lz-<nu3Cl#Bw==<@ZNfF-nQ$n7Hy0&^H~EtWQ4=u}Jh#2i0;%|yNjxF+%fjiI
zCSGQJp3ll+4i5ueOy4u-f2&9Y*(SP*s~t`SXh}X#j=W~#yJd1u6TM8lZu-6E4HMl=
zylH~(3woaKVWK;$qKbc<YqO5YACB?e<McMs$HY_<Uzq4?qMwN|CdRU6OuWT}CWe_j
ze;fl$3^p-@&u;pMtdRy$|L=zgXjAd=tKoN8$mzj#EsONcmzxvI=1gh0iFZwmGVz{?
z5mbi#c_-yb9clWDBb*DRUq`CY=v4*ZH!+$y4=ymis=s35pXF3E{DFyaCO$FosfqC>
zCYbn$%4}lN$<UAjNu&>%q(Bneh#NpAns|Ow_UKE=pU?1XZxU5#x<s06;xmDHBTle<
zZej{6f4Rh&rRbvo&tIEH1vatT#2OP{nV4?kTlP>BGfd1hG1tUA6SLUv2j$r&=9tL0
zPda!#z+(#OSc$}6x%nm*m{??Dv5AEy{mdj6e=4QHo59Sr^4BKFzhNd5QV6)ZO-FFt
zZp;DsI}=MytT6Gt2?m$3DSwuh3rs*_eXe8+npj1xU;*9;x7d_TC%`qI1gw)bPxL0y
zm(f}i>rCu0vD3tQ6B~H1ypgRYHnPi@*lc18%P>LeGcnS4X!5W+;X;?C#HMUk{)X16
z+e~a1@i|t|fOEji@GcX(P5jKRN?qmfay&%Z!*=f;{@}PrTb=&n!f`eDtBJiFtVECI
zA1hyc<XqOQb}e|o#6i}l<)0sM$i!i`i-kHCem8N1V~&YO)EN`UOx$HXAD8|xIkgKT
zn)WxJ-NXqK7ew$c6DLia<5>5$e9FXW6K71EWrggO8F|coi7%j=-vv2>@ubdAzL(Ck
zpC*!S9M2-ZC~~+YID?FT*~Aq#jYxjO#7z^|Ok5WcR+S2cPD;%7mbm(liQ57&;T`IK
zfl$%9AzuCCzErQbOmI(Jy)XC!!T%M!%Zk8b6Hi!a7D`#jWg)kPcnkSy3wbQ$wNThX
z5exY&<hSsKD;Km-;#hFR?7&kN3Rw8<FKPZlsbp!Hmq>*~9Nw;|g<=*aj`NCJ{sU4%
zVvtlq$R|9T!3W`uN?Ulw!u3e_Sqo(>zoIIMAVFCR<%FcX;1w*KJQ1iUI00Lsa!$-D
z;x5djs)cGoSY0HkDR2!IwVup#nfaLki>Ft}wJba*BGeZAzdEdIp`OJlR>UpTw;)+)
zXQ91?BntrxHGhh<v>;muT1d6f*h0ucm@#hz8(K&fAjLuhks*bo4+jT-F69G0OCt+B
zz`f#I!6p`(T1XceMl3Y5(A+|rMI%hViuhf@8!;7)I`&<WS6-1@SjezIP<p)lUskOw
zw6^F4S8ikB1q(EAYHOk3UH>k_j9`%?G9?{YnG+(q1%owX;YABCS?FXz6~){4Z==o@
z6y7)8SCa94T9Ak}arHl;$-W?ht_54fbOhIil=ou_?uiJ@A)1pgVIkAP7z<-9ylkP1
zg|{rcZ6V7-wuLt>bhpse!YdYDv+%lwcQ$47p<ZRqPXf#~@i;*6hUMF|bQ3~mPRvU^
zEcCR{+d>};y+m!ZT6l?d#W;P1gz|nu$UIqN{aJ6jGx}}}4X`lK!f*@kS{P(uu!YB~
z<aaEvfmq2yM38{Op%#XTAnTA+X^r2-MpzhS;XMl@#a)>B07-sdU^dohKIY~Cg~a3^
zSQy8)wlK}YcncFOOtSD9?`7drJ2+8P6r+7);bS48RxHa5e?lyR)DRMHI$6Y=VqvNP
zpHo%p_!{z`rZI;KHNsz7_{zcp3kxkww=l!PYzuSP^mJuuVU`8PVUh*K!z5zTTnqCo
z%%}bg^0kY^N=P2<KjzmKzOnGFg(Vgi<vi(Pad);0qcP5R7M5CgdPd|&3)R!*W$eqx
zWd@gv;0nPh|6YKVOq(NFCBVol`52k`tg*1x!a57<Eu67%*1`r08!hbTkYZtzh0PXr
zv5<V~M}aLIBIbp+Tj)G3yw$=sKG&5H@u>bX<vT1K+Z@;_;tZde^pgd1sYLqO!k!#_
z=Q){@Uo8A;VXuXK7E107?_5!oC!QBxoYua2(*qU`S~$wAEFRR7cF4jICwPQa@l48L
z_RwmP-vu9YD159_a<_4jKP>!d;e>_1EHF57T;$m<`Hx$eIW975Q#NxrDRMYv;Sa9`
zGdXSH$ifT~szuIOIB%h%jY>8yShz@iv+#r+*}~rzZd$ly;j)D*9J^TC^W`O5rK=XM
zS!lA)_Xo231Bq)`#H1TScxr|8kA>ST$)7FmTexH4u7!IR7Uyfp<n+Zv>YXP{qT~UK
zR4MnrY#QOA?x6sW1V7lQNG=<>Z4|Rn+(sT7d2JN5QOHI<8~JTKWut(N+slGUZzQKR
z4@ZlIXqi9dQ{SQVC*@KL+bCkAsEswVk_Ju>{xM$W;^0ROeYe$=&;aLY8_(D%W22;v
zQZ`1FOe!rRbD^r$FTUqSPGdGZ7Ak9_oQ?7}D%kjRbZ~OZAe}_L*gC>Pin&OU5t8e-
z30AgI#YRILjchz?qpFR%HtN}^W}~`|S~i}uQNu<}8?f=&;u_!2mY?1qDnBdG?U>a0
zS~AURYuk9<MjhLCn8`&Vo~d+hX@Kk3v^1ckz75Gn$VS*kl8t~3*+x)A-nc27UUq4G
zIP#2KBk0rSa46YEij4*~dN*mYyS{H-Fra#npIa*~`7VxAZ8Wy=qK%hqG_ldtMtj?L
z@g1?z%*G2g+VL*!GLCP`ZZ0Y$jaU0h>4LWqJi|sy8?6N9r8YKN=im{c0+h5B!MUw-
z=NcRwUpo2UP1zs6lia~ZN7iIPnIBG^QsW&v+30LTw_(^&Z1AU2wV|;s`pEg7gcziO
z<=<aL_%<<VF!g=5Wy7}dlap+n&SLOx$d8k8EZMUWrJf{EJb{>vxQ%U5Y>y&gBa@or
zAg{yOQU7a-)JK3WHnIfB7QCzAuL%CC;I9eJ_^;b|L*Q<LzbSZk!FveaQ}AAbGk$Ly
zucfE{cdx!S`q}7j<1HI++n8YELmLBZ47Bl{jrVN~va!5GGLQHfZey^GA+|pc`HqcQ
zg@eOve;#9~4VuBs-4mjOR%-9s7{Rt1=y$h*fwYnA5rMQ(g41tp(GAjQ8)IyYrRHyt
z4!6nofz1zonN((Cjd3}6ya1t6Ngvtx*v79m_S%?e;}aW;Y%Hdp+nB^M*qBXqwK3Vo
zG#g*q_}s=68&hq3Vf#mxTw0&p_fi)BiAW#!ZyG!pT3sRSD;v{o%&;+&t&k_o)vGam
z!n3zW`0r3|uW!yV?h9#-jkz`!*jUI$x53%e@=f#1xBb~yt}xPW{A^~J^fkN8S?L>U
z>48YMj`B~R$z7!MZ*450TH07^<2xHmZG3NIrHy6mak1RXZLF}tpKDGYo_;kzuW|Nd
z>2l?!KiF7h<3}5-ZSdHR7MaPk-=_cA<xAwVu`r#rGX6Rn>uqeYvDL-~8yjtGva#9r
z=OO<bE%6{rT12#-A>AAv?pZsXW<uL+Y`5{VjbErCWkNe_^!hx7KK6IozNr;ymjJt|
zu>$PLk<;Li(aN-!H-9XDusXQU#(o=r+qi7wHya0RoMhAUzBUfoIA-GyYK4v8Z5*+2
zl&w%CG_#kyXIWsgo6JLj(*{fTF9p+{PX3dsV&jC3zc`qDC-3TzKEG_R*tqm#uY|cW
z%gsSF?&WmrX&dKkoVRht##!D@4|5iXf68nZ(ghnAZCtWJ3C}?w(Hd&q9Qn%B^eY^2
zY}~VP-^Mi?*BOVyuZ<fvZrbQlBKIx6M8?T|)<{#Q$-i8Z&+U}TY|g$zW#i-?N3c3!
z28l@=S|8Z>*Ty3okHw|8ItIC-{gBGA)n9IYVk4L1&t~U#Kohm?t!1x7h(S`_&Dr@J
z<ah9oi`y=qa!|m*zYZQcDCnS&gWHZjUKMsw#KC9>V;mH9P|QI`2QNA(?x2K&vJT2Q
zD4oCV(+)a}mrFY+>7bO5bek6*u|j_BUS-OkaZtv=;E=rgu3WF8T;4$i2N{lU(_Ya*
zB>^H1DhrV0AmE^igJ&I7bx_SgEeFpzs4lM76ugE5?l5BVqGQXG!$Gc;@|4te@VtY%
z4(f?$yjmv*5ZBMa5}!pRWZG7nvt<WC2TjFQN<t1&95iqcc91M`rjW!W4IMNR(V7T3
zC8-V?3keJGU!MOjXR2o6YI6r^Ib}|F&_W3Ri`mjaD-mohczeOy2;SDg3nEoJ5&W+V
z<Q+ticYMh~CkH(p^m5SIp-~oM4&n|}2bu$iIDc4oa4{+T+`?oYj!9rRFonc&U_TYM
z9jt#UOgZh%T78`EI`EkGdLvR)fKkE52?v=DUU%>Y8zn39vV$xK*#dWQ(B-8{6n1sc
zq(yjZcJgZuUJ<zGsqm`~Mz!G5i7%hBBizlwn<CZSC#j!a3wL+$^|f#h2O|oF(+Y*j
zH(m?(b};fuYJUfBIVij^xsQXsthz$sehw}j4tJj&{<%f?Z3hD!e#_w<2Lq`pZNn80
zCl7W&rwW4{+??Iwkd!j`i|~em;nHr}PzMk47JJvhFbBig%KHM(><F_k(?a19ych2h
z^j$HG65u^n+UD%{1zzx3n3u*n_`tyy2U{JCb1>e)LKfS>1P32F_`<<7hemz)*uf+R
zpE;Pw9<-p~Ck{S!kb8KLt3ro+rf?mz#O*M*7)*BXxq~SVraJUjnM{BFT<_qtHdlO3
z-3biboXrKnFCBcvXK^sc!E^^R9L#hui`uwK;(S#9q!8UuuRYv?eqY@u{xR-z9n5nu
z-@yWQ=W`q`VxMjHC-ExGN}};<`}WR}uJShy7O^`!Smj``gKr%ycd)|25-O5|r4E)k
z;EZ&?RnjNl1gc+<c%XK>?6lA<iA!MLJ9srCjkMD7SH!+gmWitrZTh2w)l?n_8yu{0
zKogp^4%RvNWNQX7iB`K!p7@7JZFI27@fU73vnj7+v22|3s{1h1>s;0^YXjRHY<F<N
z!Cww`IN0gnfP;e$b~)JX;8#|Z!*3PraqzQ)Ur1{M?=SQZP*}Jt`P*fID`Wi0Mvg7}
z9PD@S8>{X~BYOPiC*}QXY4}TOvN%l1AqR&Y9CPr8gWnw-VG~S~j*7^9tCF~cM0!-S
zDd|rK#~uGT0A`-DFY@LKDa0oooO1BDgUb$1J2>Ouyn_oO+F1wZ95m~nGU2Mcv2!@j
z*8yT0Ghg)YB41+6r&@B(P11vZKMq`RaFtprM%Va~$TbJo9o*n>+BNOYiD2t*eS=%R
zqu)OpxW&QQ@%Nax)#RFO!oODu-4Uto3eIZ0=iq)0ejvd8LC-#N@Yun7F5Y+Xgu|4J
zaxTid$n7GJi;^xlS(n#EJ{QGYfA0)Un~Ei+=jSWHMFAHDT`b+4UBvZm9SgajwOV0;
z&ux<SJ#0$hdwC;8g@nsb#a)ze!T$y3LwcHdicP_##9c}Y{)~$<0&uFFRMrJK%TU2Z
zMHer)Xy>Ami^?v7E<!G<xOmpZ^DgSRsOtLrMytE1;bO$VNHrJ7SEbX|uBHpPsO|cD
z`eyBrYZ2#3>Uvv#&h_6}Po9sF@A}67v8v0Wx=13gD5sW?>$})`BbVf2%(B?lfx$XE
zr2VxT2VBT5+;0M1=E!GH1-PRy>>}Ak8uNFN;-Z0z#x9zOOd7gq<RVpIPP)?mkp6*x
zx)~bRFV@sW#6>d~&0TPdF-<`@llJg%aLS0}c=vGD%l<-P3l|wKTD#agwQ@`HenC<z
z*Pq0ug$#)c6K!0ybwM-BadQG==4ZUDh1<L6;G&z0H(joU;YAmw3(LhzE;_lG`nROH
zzPUwb7m5qj<$AZ=uy#6$%Ne9YlB~NhT&x@^b5k>aWVkohcHy{q#l@?9b{C$DsEe43
zE^7jXJIcSdl6e#ey{E=m$ODltz6&H={|hry@RtQ=u#1Z<fwKkgnj`07Tc=JIdCkS^
zE+-gKvv;`XEtwm;CXe&2@p<$^cRrwtK`sWn=;@-Di+(QpyXftr4;xXJ`%*>sMurwi
z;#w7h4gO8v^he+=7jL^5;9{VQ(r-)KE(W*$7TB}e-=g9h_Lobcx0WF;-f{6R6~^^<
zXAE^Q%*AjQ|D4O><L}#?UE<d?R!E^pa3s~TP|~Qzkx{Nc`Vn8<oc-qJ&}gcMi;rA<
z>|(5o!fD}x7n{=5`2!c@T;G2V{{iFA$>Uv2aPc8K(Q|TEjnI!zA+k0w(Zwe&cDdN?
z;!_usTr76+t&7iGOm;Eb#T*x(yO`qQD;Lw*b}qhfG0nx7#M9(&w<pu+ngbe7xT8O9
z8i(-zZib7Q%w%2mEEm<jiX_$ro@*iZs+zoHkj(Bm*Tp;+-|)W0<oPZZxLC+m5IuL=
zTxr)n>D4DuQqy8GY084gA{Hr<pQqsjj>$`0eCJ}7iyuW@Ep@TN#rH0jxmfNZ?**Ad
zH1|mM?b>uDJ5jrgA4LDUaW-Jo4u4lSoiC#;!%|keSnFb)3*t2{if_rTyCr))>-J)B
zgNuzWPCjW$i}Wr^P^li|$iK<OW_Iui(iXu9wlcE7+Xdf|Bj4%z2hK9WPcHVjIN{<i
z7eBlB#l-;^2VMM1<#hc8+}~X6V;5*I?-xNPVKWUM`9CYou44*u(d3YeBQB1*IPBtg
z_LPJ2g2&R1esZx1(lK^G7k_ei;Ye~TG%eFNC+28O+kkmhgWRC;<&SA6Sr`|WU0iW-
z+Qk_c=UrT&KDbzOy)6GG&bj_R8m1!VyvIcsmt6c!HCQ42RXK(4_t26s5B*trGK<UZ
z?W^axO09Eoon!Kmz<+0W)eA>RH#oM??YWCvqPCk)_NM~wa7baxdidJIJs0;`e$U@S
z@xaBu9GyHg@$k^aBNv4{6!!3#gFmb5MCd6GGz87%`Hpw;dZ>F@$}M;v!AG`Er97X9
z(nE9Q_xu+<=Si5Vfaj+zDEMC+BSkzE_3)gB+8&B|DDI)6he{qwczD`F84qPWl=M)F
z`FME7!=UHodRHaBRap-t?))X~J|dU%P~JmovtR`e401G}&eP(ZE*(xRmMVLw;^9eD
zuHoTX4^=%>^HAMGpiboF!cFrQPW}2$1{eBYm>1zIfc>JT2Y9IEfk)GFEGkth`NdOm
zY()5Z4|P0*`QUs;mT*N-@{r`Ao`?D#IODYF3kmtsj}8b2Jjfn`9zq`SJ_@d!DARsy
zb=Po<xl&U5;MF(7M-;h!X*tm#EyY6v4+IT8G~y!&?B-A6xmT^XWOJ>MgX(j|l7dyD
zO+D^0ks}_OvBrueHTTfMLxzVmmMR#eBwffmHcM^kp_PXY9y;=2x5%wMaFA@{1>1ON
z>){0tW{Ge+57w#3n>+IodwD|bMUYedFM4>%!^tF^SenjYCl8-5mpgmtH9m6Z-$snt
zY*A44pn1?e-&!n_3gE%;aCdpYWF{VL4~~bZhnNS~LwrlN=Ygwu{|t-~lXKQ6?)mP;
zNC^)Ij>!MvLzTibQS0I%+e25+H(kpTyv)_WD^wv5gFOrplGi*8V2f`Hyv}?|B)=he
zH^JZZ(A`51fqAJfpFIcn5}>z-J_1-D1sS2CRkxo9^8Oy)65wsYxv)#&KyjC9hXaFh
zz&jp>dYI+;WAZS;Kl1Rghv6RH6~Pf6-t+Ljhmj&UN^nM|ccalccmlO02aomefxzQ(
zB;!5YDwx3}ALdBDJW}V;G5P63(nJrRc=*)ABoAMRtDgxzMexaje=azaFbC39wx9<F
zr;&U9uQBmgBF=OVGd#@v|5LG?vxQ`ihq)f+3Cw)v=R{i|0P~^n8@8+mDT<^h7JI(A
z{(27^Jbde63Ge0M*yP~%9#&ErhDl33{}_U0f-m>5LI6tME1vX&hgBZdQO#zAfAp|g
zfHfWt&5<ejs7<Kkp$NfR594d56Oec~<3{#S4_7^0^RU^&7RL8**uz#2+t|b&e)X`O
z3bsbx>0y_L9UlIyE>FHIO&gK2+rv*D_E3kZv^QjK0ppUl{4m_{tuQ~CK0PjRZyJY!
zz3fNVrTy$UmF0bWuE{C<QvHp2vK3wna35cjjPOAZoidUqObq|-;fRMb9?p6=%4hd*
zf&-n$S$+J;-g++Aao+Uz<X<02MxF@2;(SLXljV~hPI)-(p+KM9w>AZ{ngq>ULE1di
zO8M)t(m4<3IV27a{_Wv{hl?IAv75J$`5VR01Dcfd7%0&ej*`nBu6X`he8I1zBS_i4
zFmT<&4Q3lf!6<H0sXRR50Pf)*54Szs_wc~O9rj#~{2p#@3>`X{HLGG8KZ<BdH~U8L
zzf&^*<@nEWY*HG7-1Sed>BLVw<ccCs6nUe_9mU{dX{7qa^YBvlPRaSA$REX1QGc`T
zkS*Cf)`S+qJROO_d1-Q?C<;eWI*MnaC=x}{C`v@}bQHy+C?55#-Dn*9#g=Rud$cVU
zZh6%|&z)WrN=8vC>iZgUrboCC-$6?$6Gho5Dn?N$${kE8<)SDbMFoM;KK0&BX>L-O
zdy9Ut<;qc1iK1Q<^`qby-Lp~ueOfb$ssa#K6QH`_H3a{#ZV&?068t&AYYWc!&qq-w
z2iJ{qH(WY}v@2dcH?TY?53<66DC8*GMA0^iU=*P!nnn?c;$Y)E;i&&Bk;;etGATKV
zxmOycMA1M1;)YQ)iuwl)b5AsbjM-SkZz6b?%6T{{HjAP~)E^$33!Wx;y5MaeHKsg6
z;Ff|j*h+xbg73dr_k}3hMe#`#pGMK1)fGkWDEdUvkrATMqcl{&OHqv46zCj<5=AG0
zc}SwuDpieQ!em*Cg0J9J*ZuRC`4>QJMqx$KJ&GPt*ikr9TyL6|EuxkCRC1%>TrSBI
zAR0w1M-t~MfWVniyevSMD6#~YKPuzDRK>rPx{3^65u7={D!^+|yq+U@BZ_VUznLSc
z+F$A!#jWyby`ug{IG2HlN&gNA_Kl)n6vLtz9!38s-il%nbvTN*sbEp?zjYu>RUnD~
zDg7q}X{615!42a>qIf5Y>BFR<jQlXbJZtZg86;)p55614h$!BVVssQES!1lae{;PT
z_5asqW;gtt>&tHjtE>q=-X@QUqTHBVA4f4!wCUI=J`jLyJx+k}tYiT`%#nW-MRpN?
zHzF;X>J&?6sc7pyDT>dc_%4d2QB02FbJlhgbE23M#ndRiVo~`lQA~^COBQ2Ml72}p
zSxTmr4$o8OhBCI@j3|FY<e5>-VinDmUj8Ncqm%Z-J&C?<YMl?vjbdIDUq|sx6!W84
z5XD0F-0ooxmE5^QbG!MalDLbLl0_W+qxd$8B_cwB_NlM;3tyfi$*&}H1L^#Vjp;yX
zSrp5oSQo|mC{{%AeH5#r_>ui+Wnd*AlgTHi@V-Z$rKcK)cy$zOqFBqq_YV4(riZz+
z<_{xnQQ=fdHbk+JNzO=HqSzG0X5xKPY^}sgw~EqnmV8?Ym${g0YZOl=1*E4^c0{o=
zifwUhk7HL9yQ6p%!{Zo!iegU`uf_0s3_nNl3wvS=4P*E<ioH=3h@oH%`=Zz%#hoZF
zJ&{SjMe#RlY`c7b-8qUwLjHRcN1`|^aKWFNGTO;|!J|>G5dAOJF?Q-4{AU!$1wJA8
zUpexVY_*GZnfA1hoDux2;O7KCFZcz)FA9E1@EJ8i|CQ~s2woBVY83aHMy|0t2ta&;
zZ-E?qD~f-j`1rDXTa078y6b8AZWOhSMM(FexG(Sn!T%Nfq2P}Me=PVD4t+7?j-glG
zV7?fhpDE{w`8ni`A)}=1gQ0T%7`S8QsThV=3JtFjqOed5g=455LyZ{ti(Mp!axuS_
zh>ONhObCgK$52Axr(<+bkW^CeQi7Kj{29T^2wqlj)&pavZk5W%P(kF$Y%2;-DTc~9
zk}3i`D|l7GtFgex>ik!SHHD;h3=p7};Li!p2s|eK`55ZNP*+Im3(khCCjgs|C6`38
zlVS)6APXK8oL56JgmZ9m3@I^u{C+a!EPSIFQe)6#Fk)yNLz5U@ih*YiHjN<?LtBBH
z#n3zku1dES!L%4!#;`LiS8OP!$IybQ7RwpT|Eu7(4lT%Av9_x=9ow_T;C3l(V(3^-
zW?EY8zYs$^-YzV+r;vA?Eq92~Z)Ez9Te4qCO?gpBc&;dMC*Cdwf`ePKe|{&Z#GuBY
z#r&1xo?)4idZ{U93|0*B7!oYQd*QOzlI<9r7~B}9b(do?EI$x14#=JeM%mp?rgaz_
zq_F&;U}g+2vm{gG>=?SlkQIYHBxU{u`SSyTmZQSZBNgWb&kqZBWf@|0&J*O-S7R9Y
zz7O7r`QMx$#4s*~ZZW(WL-!aqJs<8L!&@=*h~e2HNj<5bF^sq__2wi0lhrqdJ_2aX
zS};iJ7sJ@UWS*h+b__qf><o)x*4e-Sfd|Ggh}j+wP(D~l2!_P)j)*f<a9(A6((oAG
z<&A`JWDKJPpnQ}7@5S(bj%4HZ8e?+s*ccdOwDB=ah~euPzKP+(7(R;O%NV|*dhos_
z<tc&_OpM_Zfj<>|QjYwy7$)c7&-utF>oD?EA^Ae^X*pNB9h9cWFe8S!G0cl$CgsAq
zV>XMFgSS7(HHUqwaPCvB{8<97R?m-NVGMs>Pa<9r^VhGJ|5bpTE7yx+SRBLA7>>p8
zZ466d*g>6);ky`?^6A(jF)X7F#IQPsH8HG+q0;vBA7WS)!}o0NCo)evT^YmF+;M^*
zW8hJ(lYWuyj;Z}yr19|9wK1%VVFTMVBeJz+==ViQytJNG{iG46v+lHtTuDmX9K)6v
zwr!ENQ8%i~TVseF&R9_?L|pyb0Ds=MQ+_J2<i+5w7<R{SAm*PO^ivG~GztA2!!PVI
zEL#nE+mPU*H-f)kuzrnUZwv&RZ%JpHq!8?jVZV?N|0clhH{^pc9E#yEgB-^`m5#*F
zb5`)cFX6!a;KVyY`qb@ETK<FeCMxzp49D4FR|L+)a5jb$G5i(7$rw%vAtUqBY4-F1
z5<&4B0s3z|7sL4&=G2zUzg3pPI`sb;!$poZBFUNz`KADW$8cGID}rAY{F>m`1!vkD
zF|;2b6WkJ#e+0iR_#MIT3Vu&;M!O%wgMEIHr~v;`qZS4p#!#=S{~huqhFo!c6vxML
z<c=dx9R1^XD~`Nzd_75eI*yWY<clMJ98bkjAdadRrDAaujAO)Vsp~zdNF4J{hYAT^
zSn%Rf_>;}aMdN7GFn!9{NO8WV7lup3QK5|7cAreEo>Fn1J&H&i&Ej|_jxur7iKA{D
zW#cFpN3}Sr$5Ec~<JfaIt4bWok8;I0D#cMbj`g!5O_l`sSyJM*+^Rt`BRtC@iI_M4
z$Rg1jFx^emhy!udisRbbQq4Gc25!r@rQxTg=i;ax$MbOvYwbH7<-9I`AxVLsrFwDH
zk0TsMavV||NpZ-G#zTaEmZ;U|7e@oEoNuJ<2SdR)LUA1KDHqL?L{DPePnQx$gE)51
zlpDv<Fz%biHHsruBq!dMJIoadZs_2uT$4DOikLLlA#r~}^ElGt=n_X(9O-eih(nLV
zh$AD8mT`27qjMZ%=LL#dw5^p}@u8LlTC;BBXdB0eUk6@bk`Yon!D(1U+&+#DBG^%I
zN?sJ;r8sVV7-mq3Lybcdk5lreAno?enF0FA<c=Obpc#i1M>LKYOSMg+V<kI|Ii2J>
zy<{g2mxbIM_5>$5bvPK0BN0bt952Vg4P`YBggB+l9TucnThq7_M}IZhadeI2%{aQp
z@rqEA*W!3Rj#mYy!4g&IjX1i+aqoIrPDHc4J{h0JkJy*K4)%znXB>Uw{#Rwv{wlrV
z=p9ENKI6z_8piNvdDn*-1uLf=UJ_vW`^7OiEm-EJ^mZI{^fWe(q3Z$zh~pR($KW_d
z#xW|6A>t|{43Fa-frqlO1h|M0<$q3>-pz?KA`bd>r;u^T-;3k@I7SPcbzY`~G)4q#
zRZjXKC)GHn%E1%ZQaPD0tBG-Z634PQmdEjF9FyXh%^Hs5GZtPXnH9(90!)kJ%Q&V8
zJT>m`&EdVi5J8S7UkUK@itOoeFvv?Y;+Po+CI6L*5ejbfi$~(q&1G$iB=h6=hDqXB
zKrI>|Efk#KYXMGNth_i5re!|giTK~L@0-CT0`D3rEfs)=)L$>1z9NqA<Jcl3E93Yf
zj?IEr#qnbt8{#}%EP1uKx>oQtg0nn4$!?v%>jh_!mAO&iO(GTJunbK8U-`F+OAPLa
z`(FE=uT_b(lVeL9yW{vNj+1e0EReK^#g5}h97p5$MI`wxjstQ0DloI!8^=C@_Y3~;
z>;JXjK@t32@I!(h7QE=*AX9a_)99E8{t?HYaa`Tv*YI&6IUzVBQ1X|+1S3MhQ*oS*
z<4hb=L-Or7?!<96j&pIGr{qjJmjEuuaUqV2aa@X{$_LWlY@m5T0yZT%w+Ub2jW~kE
zah*Lkj(_5~!O`P(#!ZfdgVPIa%`X0P`o4Clzh29rZNTK(AyWMr(%m>Z&P+S;bSO^(
z_XNH#_yfWJ6`T<s#_>qt$AUi*JXgX`n_F-KI!Vr(K)wX>C-77Pg%c=}0CT39!Jpeh
z1ri`Hm_Q)`h<OeL4RnhpAlC|?s#TPjphN;sCvYbVce7A3fl>+VO<-RFr4x820VM%7
zfiemIy9Ei<5}<4X<pd}%I4@O5&@1x)zHKTAP+9OQf<K!;RRO9AUS04Sf-`MR0p3*$
zJ|{r41ezyMJLl^23Dgm|ZUXfLsGmTJ0FvNIf-|3h0CECB0YW+QumH(|w=Y_VF&iY%
zFz0Hc1X2ZVoFi!>KvTgZ3CwuCFq5Puke)z?oH#86Xd`%r;4KAjC3tJWIczdvTY+B?
zyj=qA1)#j+3n@NN;KdxtO9^z!!JXN}B7&BHp1{}yK1jewz!VX>3T_D=O~B4c<p|&=
z;N?i}O|8kh#1e?-ND=~MCh&5Oq)P%>0%r@}zkYcpA-$5os|ma&gs&&iCxN~Rypce+
z1l~-bdjh?4aww}rdL+;@fiCy#UI}1pcKX(AV(n4v;Ii!QyE6JE&_9895*R9yyp_P)
z2@DYU<HC`F3Am*rgA-t6(jeZYzf1}75P_NDumpxDFe-ufXxjRN{B8mx5*R6x@G5D<
zg8)<2xo0!g`w1}H(V`?25|2q>?)4Tk{|b&1H~lK%|I6?h$BW>E1U^jQBc>7=PEO$S
z1STf%NdliHz<W(%FDM(~Loqkz{~2}ip3UGCk^GAUrX?^nfu9RL#p4f{?dTb~h`$t9
z+dRmkWI7coftd;9JuhuZU~2-i5|~Y0Etxtef$tJnngCa{=O!>Of%ypxsa21`1qm!0
zle{qD?+yQ2@NWcPB=};%zZHCm;EXnSNrbM7mL;$}ffa12ufkkU|32aS#9N=hs`1iF
z;@Qch9|Tw>_>Y3GPGF4yYXx5?_~bevbyjdg0vq|%(TMaUW0S~-S#4%Hvt@#932f)%
zbI|CMu_J+<;=zAPU>CKwcxp-u>=u$v2lF;BXR|iQ_pqCnvlor2@k;`~=3M0^=CD73
z-#BVzp>P%sutivJT`;Q)4kd6nfgYLYnTg*MI6_UxM2SosP2gC<x0fi8iS}o6{lVcb
zf#a;wv;Oqji3I*i;A{ft65tN{lY*a4;FJI~FX6Wz<!3~&a7+1o0v8gv%^@*?iwRsx
z;GYBrUe3)Kuov3}{}$00|8fFXa`4pzt_gfSfg1_jOyHIX-Ve##mCVTc)S$aH`*JPG
zcd4C`?=DCF1n#qP9?Kl7<)r~`_U8uP2MPR}z{3O{5p0w4WTL=iiS#((gC~OL62jb>
zpl{g!uI9}|J|WDX6aT49|JW(c<rd7u%3p%5Ur8&JiNcvEl8MPp3k4RY70pE3g=xhy
zvHIEMSFR+JKb?t^nP`@Y=9ws!iPD*PJ`;5^@k}PlWTJW|YGk5pCdy@^QYI>AqI@RL
z(N3?BiHe!vCpR}5FvvX={^a4~K$T29n~AEKsFsO-Kl(e<Ne3^bRhk*(uAi5U;Lx;i
zO=ft<_iOZACXk6*nV=^(yL1wXn<6Q%ok{1wGXDbpkEyo+m#X@|hq-i0cL^>e=T2VY
z!i5`@v<lMT%$%Ay6SRPo(t@NIbR!|DASvBQDIwA-B_$#%_^$KeJHPk;Jo{PC+G~II
zKD+14Is5Eg%Zu7xxV`XrQO66L7fvt!UhYh0{ukQqUO2qC)y_H!f!@&--E<v?I9y)z
z&6T!mql5dXr+87<i-un7u%3EeZh49ZUZi@h`(Zwe<%Tw)Ojpet_NNQexB(G2z-i<~
zniordwef>cy3_NV>0V@b(bbD?USxWa#R~M|4KKJrx2f0Kl%Tm6&4iTT8lJihT6nE(
zOnB5XmtM4DxAdZ|7wtrB;{{*1@a+%R*Rd2N?Y-#Y#inMC4qmkII_cgN@|NJ+f*l1r
z3BDuPnbp$JGUitj+yS+_7d^aCyimR9=|wLud|oi|-Ym%Ely|-GvNa#L$T=01-)%b>
zb#gfk-wFD?*1N)YPT4dsbT2|)guRHAO)|U)coCFZ;$9rTCtIJ`57?_(djxr{WjPVn
z>NO|7;3lWzm-uln`miJUP|SzEUi9-~5u25Lz>5K1jPm00TKhnDPA`Uf@xB-DdBKHM
zgW0=g*&4lRJ^g5YImZwN-L^Jeq<0vb%!?6T>(=7TUj_OY<w@v9vLWW$wxy?i;Khet
zjP_!T7gN2MCYEEp7|#LHHV?m>9w*BFfw?BIO=ZrXD9T5IlLRLVe#~|e!u0nx&fD`+
zw&`BX@M0#LueW<*FZU;2a7(>&m(yC6%s0!6Pnr3I{ai0T7ygCd?1Vl?$iK~V%@Z<T
zaDm`LL0*gbT*5Z;;ykA^FP3?++>0&j+g_{?o0VRy^5RRj>3K(SdnTi-PQ+a&WQ`YJ
zC6u*78rrSOT<^sOFE+AkB|^Uu^0nacwwBFij`xEFNw#{ijbqu118kRtSyZ+sV(su^
zrx&}#`<>uk!QEc$5i)LnTGNfTeZm=W?xk$6%uKnTKgU5)4ta6dizA89qh7e$SeHKL
z#c?lAB=j?0d@uZ@;HiXu+KVgmtWuv9<p;qZ6QSq4IP0@+r7n8$lNY&s$nCRw%Ox*<
z_2M@#eiqBi3HvKvTor!Ji|eeMk=bZ`LzJ6>za%Utzmw-yf<N-&c7osW;;!&}3FUVo
z_q}+KP#$_wafgd3KNjT=FP;eb(~EzFJWW{sCFB_=w1n~xC$6Z~`Ja37!i)bzue89P
zUCNcsha@31D7PwC4&gZy%AN~3sORyah!5N-Bd_TB1oJ0s3iwb^cp<@81PdoZ=k2sQ
z!<?ttiu+K)hd+FH;zLOvO8F4;A?`zIAIkXfmJe@Bl(If#3MuD9c^@hWujNB+A1eA#
z$%o2`l&kshst;9ssG3l&mCXKHg2RVq{jAabx+v8JYY5g%*rdOnRL2LK4|RR0=R<Nr
z_xNB>aEB1553Ypb_JON_m~x6J$D3F?j?&c^Z<-Gcgro{K6l7>4AM&VHFKsMJlZ2k`
zLq>xC_PUi+mJdxuY34(7A6f`+BiJ%w`Gyazgtty8$wTwBP4IR;v=`nXp}grsQFl5M
z?<h(qAKnqNab5P#K6LRRDBi9<bo1fLvlK(T-F?u7^zfmlkY0j5A9@RUSI{fS#PMO0
zU$`QuCUnh*jisy+_v?q&=m?0;ds_04@NmM?6cQ1P`uG*RRbzcP`TMZVhwVP}^P#^F
z6MUHH!+=DrQ9=g#Fvy4Zd>HJ*5Fdv5Fx-csKD_S(I|kFax!7J{Y!V$gafA<4M*2Yh
zGKk2a4}ADg5*+Qr$Jd=y#)x;U;5fnYJ}gSH4pRBZhe<ws;lpenCQHx^!H<2IB4n!1
zx{ashG#{oX_{*|Woaw_SVn#ko$frJhCgk&kKEH3CIX=u4?@Ax$30d-gp*}1~@P$Ga
z`LH;l{1vkbyHvc(1eg1;Ldcg1n|<~?t2nyFyM`#_D<9VSur6V<QOJ59HY603vi|vQ
z^5N@*(y(gw%?ZB6hi`>%O(+%j<=NrGP9MJa;iM0{*n*|3ynW}x^Ro{Aj_>y2Oh3;a
zANKmNPhuTT#N99CfZ#zN4kh%Wlar1l_)#Ipd^ny^P6!#X(SFK@)9eF2To>hx;6=f+
zf<O51qY&ojoDb)PUq~o*Y)L-}za;px;AO!pf{b<5hr`3H;@n`T;tV$1`URo;#fN*G
zE`0b^EPoTcC3su#jvy`X3gIRgr`%Sbzc1bgiO`2a9{KP%p`0w2_fH?5`tZ6R)&2O(
zhi9BE{r`Jr^0$~3^z%tL{uTb*hrAN{!iWDv$>vAygng19*@fp2%$d-0`7z^1>vtzl
zLiw{?zI?*-CzJyI|Ml=fe!SvGVbMz^LW}rORCqDL;t9QkA0-pKgO;bXA7%U~D@u96
za)O=8SySTWKP{{%N+m&hEBo=P@G62;1z$^q!jEbRUhQ6~8h+IDqmv)+_)*J`+7i@J
zu#O*f{ix@M&5vY1?1@+&KOBBI#q09JEhJ~W6faG8E1Z-fN~2zR{*bA)z8}r~xRcCH
z$&o5S4gE-eX(N~>*jTWMAk*QURYrnm3d!=LX+mk{$GDw6Xx74ymVUe;db>nuD?eH%
zcpE?3CiufQt*+SKj}D@|Dfm_*^ld+m-?1(2<$iv``f2X$M;AY$e#FF}s~?(>Zhml+
z92#^NZx26u`q4{xZ$ZBw?+Wn>($dHL#I5HQbc!EpLcd-=@7nKdx*tYD3HT8dZd}e5
z@*^zVOoT@K;8w;=B<@EaKV~QNzJ9##$1p$o`O)8x0iq8P94I&_VfmgPgA@E{2WvnL
z6)#(je7GN@{TSoN2oXmnEJykAf$$F#O7gipW7!0LO!H&9h~ot(3r_H3qL7aSnerqd
zZL3+gyC3^8MZ8lJp_{r`SD)d>rwL`IAD;-Hl~BeEuzprP^W$?-zDVewr&>c`jvsRq
z$~-^jCpdq?7WuK*j}3lo^ka!1Tt~gekFWe#>c=vc>#%LPAFKT6d(gQ;yi~pvvQqH!
zl<d#`vaM$8|7CL&O<pT06q;n?2DwA(xz_nXvfhv1-A<;w$&Z_Tvd;1miXUGy4}NU+
zV~gK<7`4}rZ~fTHvhP*D^JAMIM+bR!a*D`wZ}(#dJ6lIbr%ZRb4^mDoN#{AUyZqK^
zvjx)9cl*J^fA<J3-K&!C^JBjs2mCnb$6-H?u&$Ckhy2#DDf8O6$+Jy&AN8Z#XYOO{
z(tiB+qnn&bo#1HA<$kM4D*5+*5Kju8^5e9SGlC8BTHhi5=*Kxf{`BLiALsqJz{#O+
z)&oB-GGl&R_2Zf!msr3DuFIS-HP6rNkat~I`Zju?dan4<B8TTu?G)m5KW?yoSeZH9
zG`r~s_ix{}SN%oEuWYy-uHOW23Et+6<Zx5GBi_4y+!I2jY?6l&?{fzGy*^KZe(1*|
zKOVCwbGx5#o=kTC;fM0IwMeq&IyG%sUMhe2@yw4T1=$t+&1v6n9m!g<ZGnINc+Q&f
zBb#DH<R_mm{CIs*8VNt8TzV<JQaR7yt`1&^B!_~td)3?u$a5;lC0>36%8I3)N4$9z
zbo#~JJ)fh1f`SSn3Ze=MDR@Oerh+U5g%uQ0;8Nh`^M3`!6jWq_3W_Tzp`ff{ooH54
z;prXjQo<`$clW*Sq*z+KWfVAe<fpfsf=hkf<rO@t+<Q{Kv<eEk_HmO}R`9BVItpwG
zswi04-~E~bD5$ES)Oi=Zv**~VDR^B$Ed^r+xIZ}Ws;;0WbCS<hLqW=5CmnTqZ&m8e
z)o!&F)c7Wiap{sJL5Cz|SHMu`c~`#0X-<}OuycM%Cv)pjP**`c7OJ{CMKE+BM|}mY
z{<Nnl_+ziyKzOPk#fAzRB{<7v_H#E@&_n?VUAmAAK`tR~s-T&IZVI|9++rFn6tq{+
zL9UXwQlpj%-e6J+R_%1P5wW#`HM?AN@$`)7O?z7f?L_DIiOk-c3f@xCSwR;CZ!74i
z;2i}gDl{s#Pwm8Xig(>szR^qX&@JiYOM7J!_l(czs$k2ROfy`shk~980;~!Jy(DFy
zf+@MuG7jeKt>9g@^&2T(1^rt%iiYd04b}52P{d48(p3eT0$stW^Da7rDO69h$SxbV
zRt_l$D>zxP5%XyZsa`b~y){a7r4myRSFl3CmkRnQ=&N8fTT`)ivFoQ`h=QTKsDc5a
z3{)^!2tx-ccrU@ZPdgPZynH{Qj8rg8_;A4yf-lWRDfr<3iTh!Kk5w>E!7K%zDp<Xt
z$9M&k6iikyLE=tS@R0(h!>jPRFE9PEg6Rrou%Z-9RWMB~nUka%>B%iqNPIoB6K6`q
zPbAdS#d#y@{!GE=3YLoUg@V}%7O+Dqm?O$O!MTE5x_Kz-p08lf@v2-j&eRquSgc@)
zgwBe%nWZ{$tN1U=NU}_VmJ2eUE7^-U#3T<4U9Didf*tHm3cgaXR?OBZSTC2L!3G5z
z6?~&$vw}?$`n6ygpS4qZ^SFE5x1KEuzE!YQ!8Qezk6Bm0ku!~$-*jK-Z+WXl+&dNQ
zVso=sDELmnZUqMw9O6|Jup#y;*e6+H4)-fKpx~cDRzy1P;X_AqSgw0a!Epsg$k`9S
zNvB?~x`lMdt2bJdE%}6)eb25EaWezdPxJXdCo$1;KP^w?2L(SWI48=a%dYbZE-1LD
z;3oyKzHV;BN1Hi*4_)waIvu?~E4ZxSih`>OZYj7eajz-3uHc4nR`^XJzbg1m$S;E2
z&5wm*3a?A+-%)T^!9&h(3hpWRT{_Q$M02nz?n{NRUok;?=^k@>QSd~(FU9}EzZ5)U
z&(X0=$KR|pR*s4jD*jdQoWoy5R~0W9k#n+&Vk)w!__|Jd4i%vy6_Zr!Uqg1)diXr*
zh%H~M^qeaA$v`d@MTR%Zt%9!-@~GguhV{2<<yDbS1rH76Q{Vh53aHkbAi9D=3aNNS
zNa2KDMCBnk9vT!^t%Kw`s_3Mmgo=_XPkXdp_m@>sP6f}MEUlsp`6wIt;|Gnp9e0#h
zQGwS|LC(d%l~hz#k*VS>;(PgDRWakXy`G9HDyph@O}tcU34vfW!Piw(PlVP`QB(MU
z+jbh)R#8X1HWjXfO|lTXphM89;@Mdz?cE6*kBSuGbrZ_@((d{y8mLHB(NINe(HkW~
zn+r)((O5+j73m2*OGQS4vuFb@Te)hQP@1VYSS*!F3sG7Mz9HBuVUxU1Z6my`U^~I~
zf*k}I{Y@2T3b;t#7KLT!g^K@S;|h~^RBIiD(bm~nn)tuP_HHV=t1wgqRP>O(k>{z+
zE2O82UP9PmdaHOh!5fuK@~QBPR}s|Ng@jz4<<L}2{M7odK{H~Iy-r2%)3!q@!YWJ^
zo7fvwL{vmoOrWufn2NZHK`P!;(MLsJ75!B7mjufVv+n1=Y?NyNJI3W~16A<RI^PG)
z?CE~K#NK+JI#|UJ72{NlS20xOD@E%Fsu6O<VZyl~<Zwxf>G1D1Lr02tl;8(~AF3EF
zWQ^cg!Dg_YBh`#s8DKU__jZ4zVv>qaReYvmvWkz{lT}O?<0&ep3VC|T&P&jJeAqri
z#Y_?Zs+5<x<q-)?>Jw3Bu?Na??9Wwvq2fywD^<)^F;dU7LdD*pdFC+v!}hsiJWs`Z
zAq!M25wcKlk>FxMrd;+NE2~R6ghg4N&_m~P+&PxUZm>$lY9{-0w(CpmuIaYRQ?37Q
zYsBm;!L=&Z30W_=L2#oWExXUk^^FSdhflXt#by;-RD7#qtBUQSGg-FIHmQ78SEC*d
zw)+n8GRiI$--+377Er}L6?-^kUCYLx&dJu}%Ka)1a0p1Ny?4jPxU2yl(?&vfSkgHn
zcvSG1AbZ94Do%1v&;cE%R5)kYYHO&Y;WP(=inA(yQ1Mj7Un+j2yW+f{;vy%OOPS|X
zoL9l~aLNCe;~FsD_LGXsDz0#B@`Ojhp9T4)?Nt@mRNPbXyNc^7Zm77U;;xEzTf5)n
zbh<p{mWp3E0dneNf4*9i*kF^5gm_yxkLV(&qw)EB^%-<u#RC<8sCXhNFzBI*M~M_3
ztJY_Lbku1~@1JbGk6iSU^ZVInD)MV6py6*7|FAMuJXeuJLrx8y$9i6<7G~4%pNinL
zbn=4h)g%qsH3asl^!6F+!Fn~9#(z4<t6^;@Esw?%?lNe0dusaVeQNyejC_)mQPFKh
z*HB19RSmCc*5iU#G?dU#Qg~qvMT8U;ET*Bj5F+<jpm8Y;r8QI%v5X+a3L44^FQ=ir
z5E_#cD~fmf=Dc*36ZWr4P!$cdVRUGyrXeL?at#fyYnW*|s*4vT9B<`IrtWx<S(6vt
zVy`7QmEXOY4x5H#4f{15&|uf#(9lprBMnXsxvDu*G}NU*Yo|*?<^`KugGaMYE+DTw
z!f~TidOZzaF14p>sITFRJ6Tj3Xy6+7uXlL7MYA&~jmdWHwo1cl4UIK4(U7hoL&FCe
zK4h92vNUwl&|O1Q4Q*<=-_X!XLo?yc1zTunsaa=FZ0(SJeuwObzpmJtx`vJ#I%#OD
zp`C^f8s5~<UhMnSa-VfO``NS8o(aAs;@cW3WMr?L@jvk$wxfown)T~n;(c54h0<L#
z@Qcn`L+y8(Wp7l=J-lVk9vXUT2x~Ak^pZsU8Wat^HN30AD@ygu>^>n(oR{NyOsWP=
zgTYQEx~}2Kw$dwx<zY@}<KJGIlVMOph#jxP|DT_ThNy-C8U{+NnB<mGSn9Zxy^mmD
z4gG}l7i8$s_T2_)cu&JH4Z}4I)-XiFPz~>Ecv<|H_4bm#%)<x`BjqZi5?5iZ(tz2c
z!D!Zlh6NfHY8b0woLp$OhVdFEa5!j~s$rsrk2L)9Q=Z8hHng{X7kUk{P14X>D!kWB
z`^S<#YjT=~=^8#0?+n3DG|ZB`&D1ao)<ZVF@&7cD6K0_PfCit7_X}20Ez3)Bj>Mg-
zVV;Kh8klm02^BWiw7LYFZ;^)OZ1nFP%cMaUYu1FbM8i@Jgmi1SLz*quutEbDyRt&Q
z6hgjIO2?oz8otu7Q^PI}d=2X~Y}T-aRq>B=y@rh%HnE#+bZ^jbc!j6qKhB@lJHM9D
zZ&($Z+*JPg+QPPrGQQQYjYZzz-m2m9MmLH1k8`^yI|PSqbPrpXz5J~7CdXXgah&G&
z?AEYH$X>yH?Eg)BQnx+NY*)^6P{Sb&e`<KjtFt>X^BR8Ea8$!F4QDm{z|aBi;~GwA
z_?{z|f3#ogbyCAA4QDiz+3z^bnW{vCqDjfto&$Z-$5nB+YnXOuj)Orzau9v)yrAKn
zhV$&(P29oh_GN|K6fbJ{NkVx@3b#r5WU2GAhASHGYPhH2s)lPCe%0`shU*$`Xt>EP
z!G6*(y>uBzuDuQ=uj@>QH14=a$1N{zF_T9ex7l_Yc=|ax9cL2TUf1xkw%;|}*YH@w
z9~#mwWIoXFP{Sk6DxW(3IcTT5)5J}8aKC4L&5S23^+4Ob@wxZ~G09&Vo@pqoqX_T+
zHT<I?kB+=L{?+iD?W-e6#|sT}^Sj1XcK^o-=emugOCiUadFk18<j|2*M=ssk$%K30
za5KO%lRY)L>2y3Rw~qMHUb^lmx6YPNM}8gL`tKDT1$5k-<1VP9kZ#?})&0aiW~y_B
z$I)>}S{_>}ZRYJ$i|Qz*qqL4PI*RMor<Zgkbug%eAibp+I^RvgE0)z!PDf=Ouj(kT
zqk@i#Ix6YliQ(K=hpW?f?o+wt2sfpt<7cg}RCRI_i7Gm(>ej*Z{C;ZpGbh`(nvU0X
z>v-q|I;!iap`)&jdOB+AsHG!CNBgRd+B)j!a8jRWyZ*kdh0|rzk*r%gNZWNdc<1ng
zhn(yAiR0rHdHjb<2hpv=Bd&`xwbV5?4=UoKyZSmB=m_gDb)@QOsH209H+3}9k)|U{
zM^hb*bu`gY*qt_@zb#!yhK})JPo{2dr@-xzk15WhcOBz5yU*`ao9Sq-qm_=<I$G#x
zspAb6@K4uF!_Fh{c;3O(Jr161LZyw4wmRCeL}JkJii=B<czzRirJynQ)SXo&>n$B`
z>*%VZn~sh;Rz2`^W{tg?)k()YI&SB4-0R}to;lRJh(5QH=kw)icO5-+cy;)6^wiOd
zt*ql+9siBAU1;ojE7Xg7sPc=9QWcylv%ANXcKBKFQ4U47eodb2Q#(Gj-leKKG^SI{
zI^Rv#VMr)>KuAzWD52~rk~g9ws$(3hMMsRiPR9`T86ACe^wlwlReI6UPe*?p19S}3
z!IL%K54*XmA-6&1)?S5p3QQpvPqKbb$6($1c&%d@%W-Ye`#Of{7^UL_9m92u(81k8
zM)J?{0q62J9cz|4=;g{io@?`=j?p^C=oqV82ZZs<KDv*$I5y67aNO}6f#XTFCg_-`
z;}Z@99UtkKq+_a%X*woz_$;=6tYZp0LwP4TUH_-)bUep!x{et-X6o3s(>m6WJ7uv~
zqnq<d%arwxT%YRrOvfA@b9H>K;|peEfMd28KmWZxUG>d&?l{!^MAkfZvp?(8&DX6(
zeI#5gS1?<~Lh11A^NVyWPVgl{M&@!Y*Rg_n080Y+QpZZE_G|&H(y^Kog@Jqq*68?3
z#{(S?IZ~X?wL11Qx{h@^*6Y}yW227kI(D$@u2(lP1s$7pv}x=7T1WR`HXb^*MaQ=~
zwldo~4<&aD+V5oO{0sI9KiTutbny?eqljy#j$JzT(xz0!@0gRz8GAVBYPxm{r?>Ea
zm8T|Aq1z`pAvvhykX+@Cj>9^R=s2O{dmTsFG4?x;NtSq(Q5WpI;&JgZ)=5dZ)dl-)
z{tM7?TE`h3XLbB4`VTsO)Nw`lIUVP9To!&oklFiL$3@{k30@LhS*jvaW?5JX*M(md
z{hHu)!5e}%1%DA_lv?}M--O>142|?qq-(Zcz00|jeNwj`GJN>Z$rs}HdFfIWFO|up
z!6O}yIX@d#E&ZY631@X3&vpE%qh$N^XHwNqCC$HBocsBhH$F7@Tl9a}BIO-4Bfj9^
z6>oL}*$gB}g1icoT_w1sRK*+yc8&Bf1&X=EAUDy#y;2pKH>NZ8XM27F1q_TaFxEgp
z1BDE<GSJ$<D+UT1sAIrppooE@1}Yh-Y@nEd;s(kXC~KgEfszJF87OUlM@3H=p0a<i
zbsFrHicY?;*m1@gdF(7_puB+!1}d^!F0s+9=YExEK9V>#Ig6IF$g2jb7<k=4bpurm
zyk-Cfsu?I3ax6dT=C+nu+wHk7dT9C43tN%HX*CSgG*HVxZAPimfGauI>&{<VrPJV0
zPj^c$*=^@cHeff<$UvF_hXJR7x(4bQa2aqL@EAxjFdlB^vurchn(OvL8$6se4li{)
zKH#cvpn-u@0}TyqOLa0?p3PM3va|2lOme#LE6I%wG%?WBKr;jB1~Lp}8ptwmwy<l?
zE&Gy5&O?3Nd~a1_sb|7)$F}p%<_20AXldXL1N<~Tui<Qaw-FDqs#r3$=NixGz9}gk
zJZ%iLH4rcmG|<jKdjmZT^fb`Hz?%l%G0@q-TL#`X(9u9AR{Qr>X6TsCxN6pE-E<>r
zySf<YYM`5e?gn^M#7ZmGIfY;Rood_QLM2bj!S2PQ9lZ?nHlP?#4ZLf>Yrto~Z(wFY
z_r;H_Mj5nUW#y36NON-et7c$g8R!NK1E=<7J!oXjb<eZAxk16`2aQ4o!UhHzc+Y@o
zAY!1efqn*}24V){2KpEn*T~J5;=yoDvbotYey`_Z;#D3bryi-=-@pI^0}b?g>fx)*
zBfr_2_DJUrEi?D4gAEKZFv7q{149kGZ(x{#;Rg6!{~T_<cf`JWze>!1!s1I8dPW)e
zz`%zFMzdGfO5r}1{6YM=aPoou>ZbnAw{|$r=5~x@(;L`lV84M0ESG_029_K6$iO56
zpBebvz+?j-8<=ijhJh*4y{8(OW?*Y65BJ;TSwj76PS*)nXr*VSflmy~GVrOGHQQ(N
zd}mL|p3>;J<DGg9zIHTa#=bBx+rR<?3k}RMFxS951M?ZNa0){=FSIgGH>84tw=N`$
z3@kRV#K2N^t(@+^fAw@d>HcZI%1>q4C?f{i*21&Gz?TNTF|gUdN&~A5tTV9Qz-mtZ
z2EH<|)<CZRtRBwoPoL~pKbqvsTHv^|(!-AsHyGGxV3UEbS?%xj<P|x}h`;Uh6uItB
zKV<d!Ee5_du#<BLOU;2`V7q}GQpP+7)U}H;SJY2u;%j<%9*%K#&hGinz-|M34D4k)
z&a_{gX%+3uScdb7vxMD!WUrg6iw_t$XyCem8|;||4jcH<z&Qg)3>-CZl3mNdF$2d9
zoG|b`r-EsY=NoO@i{`UNu8E^kUW+)m-)!Xr>S+UKIMxjO!0BbTb#(0S&8$w#3lZtK
zHO+Yg7YzJt;Ie^>27Zzreu?wdW?P<ep2oA2x2#Oxv%#K{?zzJ5WZ)WGuyLio?zkCr
zx0QQvJ16(~<k#po4g6x@5r?gTUk&_b;4Y_71Gfy^HgJdi?TrGJ?^#Fi@VYH`+D6t%
zSNFSqH*nv;0|O5^5R{Z)f5%^?9c<`pneIu+?uG}{#T`6<7<gjfZv+1r_|w2s1AiHK
z#`OE8^C&~kPDYc|;^`S_XWU)aIksJN{cGU4ffok;<A8lDgVRgi@zzY+?SOisZ~EY~
zY0N-U0NDe`5kSrWCIv7#fLsCO4!{wBGk`n+<PD%`0L22<hiv%*D4pzlC4l?^6bPVT
z03}~_(77IG8&c9;D1f>xT-z?$ZEYQe1K`b75y9OHJ-l&U^jTW*07?YV?u@5o09690
z8bB!~7(f{jD+EwcNZ9~R<tS7xfb!z4RHOl;R1*HGVC4W>B)gC1a8sxIBB%Sc01&{>
zipLf}wE$iZpk@HI0;nFq*IPX`0{HXG@=5uvErr={snibefriI%)AEwk3GfIi4@t5l
zVi#m;wB%lSt^kGw!0F2!fG2<y7Bhf;0Zhr6TrYt70dx(ZTL2A2=`5HUKtmyo0%#UM
zbKz+LG!CFi0O{go^sE3f5<FAL@>{j2Hx1yWw}psp0%#jR%Y@|{LRtmT`u~a2PWYPv
zyd|W)V26Ya(|lW$P62cj@-pr_!Wl|$7vVgHlHTsZ4Z$9QJq3FO&^v&4g)4$I_6Fcf
zaDRYXsCA@Brv{*jt_$8TZHa*Zg5nJY5KF`g3o!*F0Yrr~&Q|edI`IJdh|*Uu=WVNs
z`U}5t&^sW2fx;;c67pUEgA>Y-0EP;GKcO%i!&wQ%93uor1~5v<2LVhJ!k`a@j1FLo
zkg*AUTma*RPY|^4cF_1E;kkF0BLA3I3E(phmH?&(FirZ^%mAh{VlMZ*T<#Z(xGg-M
zov{sgP@nio0J8$<pWFRu0N*BCy|K$}7rkEuFrsnFoB&pqZ_rOko6Xk0>K-s6Wo`iT
z0(?a5`OoI=an(IP0OA6{g#j!Qvf)Gq#iao(3!ruob%IzPz={AW1yMPOFPUZldjr_V
z`~Lt|2e2W4jRC9)VBy!cuQ;NMBp*-e<>y}j;p+s~3+9{PVQ6z6Y1$-Z6Gv76-vqEZ
zfbRkrbU@w0A_TB4fb9Vc*=FZdxs{#jp@WWZ4|fE>$5T54*d^lpSCad$_0WcH!O4`n
zQRnUeh<gG&)7<jz58yxmPw5TdU;u|WBm=k{z~KOn1aLZlGyE^J)P6L8;{lvtVOQ9W
z335BQ?*ll=(hatqVqb!_6I6?2$Azobms9*k=4=2z1aKjMivj$|!TVc*a{-*^pf;WR
ziY3>*Z=dFHY+Uc;zPmrMDZ5y^0bB}TZTXZL2UL2w!`PJot_E;BfI9(P3*dSHzXb4W
z05{m~L)<r6tL0Moi(j-r2LJ7LKjeP*rt7x=cn;>R0RCv{Jl4j^-Nx3pbleT#UI32*
zcpSj*0o-TH2Jny*<1FhtGM?DWFS)og63@7Nx0&<qV%r~_g*cV5m~-7fzR`f+8S%LR
z4?X9z=uz9;&jR?HGjk9Hg7_zZe>t%Skt2xbtk^|qF9P^aBJxjSwjj2=lFZM1l7dk6
zIy@V~amL2OTXP1n=7ueI5P5>&CZD;2_%CQ3ib^qW5QTookuQkPho<o7^`}X09=KMJ
zVi2W+C=<jhK@<+6SP;d7U{DceBVWFv!Z)3^IW}46tCk3&WDuo-DAKaQrzM=+^_2f%
zpPse9ea)4bvq9M)$^}tAhzeqG|6}XW3g<x^Z$zCFocvE+F$nG!TP;u4t3gx=qFNBI
z2l3|69#w-#U1=kEjTar_rh|~rZo8@nQ6q?-#-%WHU>#@8AXZFDxiTxIRuJ^kU99Z1
z1(6&?*%1Fez#fDnh>wGq5`>e9pK~@0qEQg8AlyM~M+i?4k0#mb2~QEMD_C@`t$q*<
zSQR^LE5C832CcuwbQ?}Nc^F(;5SME@hX&C&h$ca#2ayp(ry$;8Z8Udh2GN@KLG*kr
zHA}E*5Y2=%7o^@Ih?c_NNGPp>P=59>Xl{dywoJcFgGh6CyCAkV$e?Q<L<iw-3ce-y
zwqQrW%oc8%bq=EMFQwmQ0h_zK1hJ~QJ7)`b*C4tDK|<F(h#m>vGl*UZ-aCk3`BWNs
zgJ1@HLHJokH8PYS%pfAdRY5HXJqSa1Krkd241#%J6uPinnj|VgBm;wp1rZOTk0|{G
z`wI3GWWis?9gq+Q38DC25QBve5o8Thd_Ra`K@1O~#X#GbAjSqULO8u6gBT_J1Hlgk
zM+@@l3JvJS1@Vz6<AazG#6;oL7f;F0GnZf5OcHUj;74s5ObudM5C?)d7{v4-W(2W5
zhz&u^4C0d@zXZpEAZ7*eDJw9@vs~5Bg50+=?W+Uo=ggk7_p%LHUj*^Ol{!0!JqJ{}
zIYO!&cg+jp$VLy1?;cPW2C;~>7sP5B^DZ%nr9muXQsSkes-7YT)#aS|gILM_AB63;
zYfn6dnA|k={Ic|iIo+#Qde#K-RS<U@_gojm+8{cw@@$BwR6D5B#?0rY&b!c!L2L?Q
zH?tAM*Fk*4juga>AU1P831S<syCLgaLH~=4YsXylZVjTuuq@u~pS;<{ajnbFAa(^&
z|DgJv6t?>dci?%ZSvPa%VONeLu55ME_6D&ph*k&Ho7pma-MTIOH*-Hn{lA$f8@Ue!
zaX5%ygZPcb58^1tbr6?=I2Oe5AWjBxDu@$7d@opcMn;M)jrY1ra@QPRc}@p$h9laY
zdOnD=%z)y_VM}}Wpi1%sD_<1yb3$GWPQSo8aJA>6;Iv^G<UezW1#u&Yn?Y-JW!Ze5
zD?wakFJ0{!bWpt(#H54P|KICDr0nvLWM7w+dv^Mp`8>Y_@ie6;$*mx6vr()`6?a(G
zLHwTTeiFpJAl^=OKM3L>72)><7avrqKMLY8Gv7OFSNF_6M5p+T1eN@>>YuF7RQJ;$
z{tDt*5PxU7|K{W`BKf~0i#^YSxPDM2IeJiCverwIErg^H3We}W2-!o(5#pII83jW4
zXh~+y5ORf(JB0fCJ@n=YA#VuzL);TME1w`qt%mLki!(`Doz6@-nORVxFInTEQaFU4
zEB7uQLWvM+4^J;5STuwu2i0OBls}(Nv80ePA*@PumkJ@@A+@w1iMro2`+3*PZ9U~f
zs1U-y5C(-%F@#DXyb(gH5Gsf8Y6y)&NDHA#2>&$CUOR+3Ayf@ncNcu<{aOeJS=)_P
z3t20dUKgw$LJc7`L#V}A7jrTwDYvIxh2&R%>uL)jnKOR~4vCn$*TKD``9F?{@L4^b
zGXz%%B<>JAA*2YeA3_5mbp`8%tXK0d?NdW&m=LKjh^}!6O+wsg(cL11bO~ipdRF!f
z;h6~~D}<)Pn+Y~g=uEt22+SK(Ahr&nO$cTPkr3L3&@P1bA#{)mVLi~X2y}0Tcs48E
z4p|%ZbH1cw+>Rl13gMj)I)|W!poP#Sgsvg<mh`&`_7v<c$S6I89GsulOUO&_yCHbR
z>kENF{zQ<HFlIzLJ%perh9H%I5SoRAgaw%<6Nw6sg%B6Q_N9HF5c-DDPn41^vbW62
z-k;SXEzT10#VZ{v^SuxThtRsEXL<-jLKqstWcI@)?)RBmb@%8H#)L2|gyG^H5yGet
z_E&e)jTDkxHtho;9||%GgT{t1E`*|k-4jC?pU@{r3XH`l8;c|}^dqsE#EyDMrT1gz
z?V)>02vbA&Y+&}!CpxEvaQ~6}lRw;xM(3Fk!psmp3E|tt?z!xlqueC3Lim)%B7Ppi
zY$0C=>NCp6m$>H$e`!pd7s7mrOTHikhLS7}VMz#!W@GVeEM<ph6OTZb5m+9=iV!*u
zM5lrHGK7`vFfp``VO0pLS-=R!N3e#SGlcVDTnKaF2iCEBhmjh_`VcmRP%w-_VQdUx
zQwWzh#zXizgl|GPz*Y-kGdVv!F6r1A!WQN;gsq}b+#bR<;dOdipD@hrn0E(Tr<wJA
z$F2~*lc3!p><wXG2zx?!?WXl%V6d0<!Qg&QP$ROZA5!@-{u@nQhe9|U!jBT=NC-zm
z$XK26eF(=wI3B_Y>JQzX$Jv6jk}8f)`o4HlEq~rkUs_AfPKIzQgwqo742StT=UL%Z
z<co|Sgs*6tbdJRj;X()(L-<KV#(lgXSKH~<_RbmYt;JNAL%71}juTo4S3|hQYM*R-
z5W@8kZiH|<ggYVJ<R#W;|5Z{LHZkcJR%ShG{o8M%+)AXpzJB(*!taIfdk9lnSoL%4
z$MVO2PP)(1CF7?;PVS=oFoZ`TJPv^e!K^yz%Gl#!wtIES`=`Xs6-Mqbo`&#O2+zd*
z%}F4H(dW9ZU6J`OC#4mcbk9ZUen_SMB830MOP(!^q_AZ?=#ZM7?Y<&2hj?=er=BNl
zwQPYfc-_2V<O{=>)2h<^VI0|N->}Cj7v0hMnXiOVIE>n1)Cr?V7)8T?#4Q#^@h~cf
z(P5sWL>MK*C{L{FC?%m~1xtrfM#%I-)<H$@4YidM?~NzcAE*jpR19Oz>q$4|qy9<~
zwC0fdY8X|R&+;kRvRPTGD*9_-Ym;qm(O-=u3?8&pJ&dc9(`tlqXm<Iu)a*6I?2X1r
zwZhg~h!3+nY@#^BXm-TLqmGipu!pV1R1VP{cd~V@nBfxc4#N{hitu`Zb?KF5Ma24H
z-nJ#N)jC|XH4LLs7$d?M8Ae(djl+013~v}s!bq2hU0J0<n)13~WD3s`y!zN00(8w;
zX<@t>MhnrYv=s7&U@O7aVYCs_R<NC5dqLXY?U(dc7~gvwoke+@7d>O|m<a6@#yi5<
z6=~chq32%g=@v%!FnWa1lT{&&LW5pn&^wHCC)@?DW-D_bJNNqYi5Ltc6oy~85{4Rv
z7KR>%kw{aUVztr09(e+yOxfk&e(Yi4+=qEk7-kreFruQw!{{R<7RHa?IaB+(`-U+p
zM}>ZD@k`n0Wm5cm-am{1VrHcr#_?NLy}cL4VCp-PhJ-ORjQ7Ln*SG-nVPOmpTf^#Z
zm%K;4?iJH)L&`UzJ}Qh4!dMi>;xImB=a&RO31bXfGmPnB4E)44F3gwpm>kB(VN4K%
ziD7)iekCn6i5Gg1t?Cz5H<n83cEvt<v~7ymOiko%d-tSiVdQw-s^lA2JToNCnSzD7
zCNce4VSFmapM^1-T|JD?!}vm!qZh3Wqk5(0nH$EuFcyTdP;}PAe0Ge1wpYj4dLMEQ
zS#K}l%|Cv;RRcAzW?K@*mtm|F%cWuPMb)w}mWy|V)FJO}xKYfiFjj~0T^PH=SVOZg
zHihvu$COyE<K!=7PR9ZpgfQ`qLMAVBH@j=&M>OAru{n&bVQdq9OBmmVk?rlg<EB|(
zJ#zvf()s@`wLOeyA0+Kaq_b1VF2TpXynDjf8^-A{&V;cqjQygY4C8>1LxKmxc-YjD
z`rH3T$6-!Eq8}AJCU{)%gdnf`eHb_XDNJ%IjDm-($%=J#RziPdHx}{(2lXW9X0C#m
zXLZqMmn^&(#!oDZiLE9sh4C{-u8DLLmzkw$wqL{eEsQH+Yx}{gVO$I2_Cr_i8IJ3`
zTo^Z5^OtONJy+X_zi?t)WO;AVj1!}YVkYi{ahF}fL{1a;!uXwYco=_$aX*X)Vf?|)
zJj(qrjDM&0cofECHu{jP)PI$GU7f=^rqR8>#{MLXKUt_}?oW!kc%d^N^mrD=-(kE6
z<G(QeVV)1E|Az5AY<;n1OLvwS;N}Uu7hZ4r*^@@uOtk;ro@64siJmuY<Sg=m<2@_d
zT!V5Y=Q6=9@$;J~U?R5(-yLTj6E%k0@|xfeaXu4MTc^;BNHcb%f+h-?c*Vs0!Fdat
zC}LW--&`s)Wp&T1r(B~BxHtMd#Z8njQOiVaCT^mXiC0ZjF;Ut?8Poc5u%d~wCd!#8
zZ=!+;ez(OHT-=LhXr{Hn@4(Bpt`*X0R>?$VvFG7poYfD%a8@<(nu%&AUN->~^<P+@
z=&tWnf$OffPq*>Jy6ViliJGRhBi4*Twm+|0r%jbu=HwylbxhbyxJ`IWB%83CaGKWd
zox?<<KV5X(?eoL9<LM!l#KmI1kv{4Vdy2_Ng{W_$0n4&KN8>MTboETMzUQes(vfOf
z3!)k_1=HF<vgbNC7c;l`+!_UGCK{Vqo!>+E*Ncn{(|VQG)kHTFnI^JKG&Rx8L|YT>
zOfaj>P3-Mwd&A^Cyt{>omL|TMSb+TUAa^TXPD0z5==7_t#KaUnW#wA3CNmuEO%UG^
z>>&82;9Dl%7Sd6$lOW&R(YUj4k}f8`IA9~`ZlZ^Y@g^p)hnVPPqK}EbESiaTO@vH@
zO?cTiOz0*I6Mhql3DtyV;&uy1fzDZU7r(JiJ~h9v@x<7){~Q6++JY%)V%rHfzpDFT
zfVFQt4?#0c+^>@vH4&4b2%B<<jc3R3V2k~Gont3C;wE_f^xpi*{Y>;XG2Fxm69ZU#
z%{}k2l1WSqGQmwjd3gHD3+{<K-9t<aHSxZQVJ7C;UA)2O9#F*(t8|&aq%&{r8uc1!
zVw8ywO^lXCA9^E+2Ooc6g80r}ThRqcV@!-SF^;9%XM23l#;uC#^|xJoy%E2gm}uf7
z6AMi&GBL@-WD}n<lO{ekF@<esa_upunwVx{I=yvM`2;fOw~iGz+$_k91zA)+F)_=;
z&6!TVVW;;}r<C;iu9~N9pR)-}%rP;Su9D}!k&f9Wiq5xnp6DR*dF(t6G!qL<>)Gt(
z3%2n)9MiAaxR&V?^jd6UiHSArCnlDfSZ3l&6Dv)ODUhA}Xe~Ffg1x1z>+0#urT=!}
zJ@zWo`p-qTntkcCoh0jpoo8OJHL=dbCKF$qSZ`v3iQiV*HnM<!_u{i(u3w^;jsx=>
zj)G0L%_g?6)lS&<F0+5!z|AM{-@KDncvaRm6WdKZH1Wv94ih^~+%>^dxp$fP&ctaG
zXH4v7=g*#ef>nLO&flp$%=}*4UK9IF>^E^hyi~Rq^&Cv_LnaOjKO%TEp&t`++_cUJ
zW0dbD&66xOoJ{<bi9^3M8t8GH<y62Dag?34{b=Hxi7O_qvb~~p&YQSs;wKXq*fGx6
zq(Z#JNvVMQXHNbmxB!ft5jS474=P`u?`!`4p!PKrH`tUWuAA1kQ9OQ#_zU|$v=(o2
ze&wjC(eNc_EXKXXF(OwdzatkSxhFOAyWo8jf0T9b70Cnfl02ru2`U0d1W!!-$(cEV
zJQ3?ybAAZ%)Wlzs;4>5dns_e!Z^3^AQ_G~hV29y^A3=@?-kY2^TLdTU*^?sHLlQ3e
z=AqTRO3nzH=FXif0`3pos(@AYvb${jNFi?o`68$oL8S-}l0bn7ibqf)Vx1mXFoIVi
zC@j2C#9A0%?%m`f5fqJ}n54s`_Rh029TGZ5DH%bj2+BrKE`rh#@W*TSa9bHMCZ~b@
zUOHX*2r5Wu>%;2t)*kBot5rFIT?=enVOuSNS0ktrLDdLeivSVa?(AN@z)|jxMzJyJ
z3kx>jHfvN~kDz)4H6o}PLG1|YM8Graxo3NNyYyNSwDEN#u|=$X<9i%dlZA}(b$jV`
zM&ODd5J4~kcLbgYd=dB~NQt0s1T7<YBZ7Jn)Q=!50{)sbh#)m$eVm&fLBj}|J<m(t
zM3hDmqzR$YSjaF}W>S-Mdg(GE$V`OZYMkDbaU*CRvA+0j5kamMS#(1VtHhc1uB?Yv
z5$x#g?ifMq2<H6iX(QNHu$^Fg!486N3ce*s<F_OHj7TNnOY=?<^sklnP6VBWbP=S|
zHG*ytbdR7%Lg_7}r(iEZu6dy4yTZK@y!0v&sO+CRtv&h%&9!L}=uD)ohdgkn0RK`M
z5!nB=mX3!a2uIM5(IYU~^kZ$Y2;yw4j?PE~Q6ZhPIq2=fn*ZHeZFQr(iz)PF?;Vgy
z!arF9A{ZM%hZfF(5e$l0uS(yGV0VXtgCpSf0^A>9h!FCj5xgJ4F!2r-93?m+f{{Y_
z>r6Ac4<h(bl+l7z#<0cnxJmY%a&hzU32bZDPZZsw_$Y!&5nPQ}_Y9L+u@UT#;6MaZ
zBA6P%m&{TG(;}G8eigx@2xgZ~pAo?)5zOLvIpLfs*rTQ6(+EC`;PVK+V0E>09LnMB
zY)^H6l`)&G7Qy@o9xQXrjbI)N``EG3mb&J!O0u_jCUJp;a&bFt7DupzBRXNmP`8n`
zG=ks0D!rjn%JK+SMDS0W2Gj>GbP!iXu$q~VU^AcpMDP{!BXJqDHiC5#tdD>Z>D?eY
zPgYfQ_r?e|aYUT9f9mZ;$IzGdTUf(+T{}5Kr4-*ruvN%5!R_p{5pHwWiv^@Re^~vF
z6;jx>M^fG`$mlOq+Z(|?QF!(xm4gu+l1jcD!QlvwMDUY%k4A7z$PW=5=Y$r)nFxOE
z<N97iHp=M;PO=>%)?32A539tTNLg4Q$CJNpXCvTQqT5#FyH?5i8~9@c=OQ>C!3CMb
zD(-b&ltgOh^^li-;=Cl@p9R0W^1uHeSH$~6wxnwjT#w*J1UEU!L}82K7v>~_>`~;1
z;<pHHaq?VX|Bus@WQIAp!+EJ%c^-&xH-dX2a`OB=g8LC`r{xC`TuE|2<Agjd&%+2F
ziT7~?e{g&WXK3g}ZQ`F1JWVKn3E^O5iT-9=i}&9Mo(p*q0oP723f<1^9_A-o)XG(o
zV1`jXXB4@}qo^E3?kMs^@k$hhqsSYTr$A8@j3QqY`J)(j+RiuBoTYi8LQ$kw$=V*X
z_FLnom*hpFC@N7Fbg>?q6`YV%EQ;b$ln{~1)Z_M&QIv|JbQG=1d+5ptDRo3G8^!i=
zo^s+XFIXXAQ!$Fv11=gfg;%5CtNm(GREeT$6!+drdM%L+Uzcvo!|PF0kD_K2wW6pY
z*UgMnV1=L0bpBDpdVtVrrS-tAb`-9v4mL+}6n3T%MMe}3E*g+14H+7RJBqqd)RXi*
zG%(7iFq1KBPjYf5Qa_3YQLB%oGE3=6B-9@*$$A;uD2g;mt#K4h#O#N*)_+X8ZL#v1
zQDjBYHi~vpG>xKJ6mPJ+Q8bV8N1;MXl6d(REJC&NOqP40Q)EARS=+6nXp<-!gOcB`
z+CGX7QFMyp9bPDkx1xAEijJ(S?f=W|s@+MyzF+nKuHHF{E|Nl5v7yc;W3Kq1j92Lq
zMNbJ;qv$1s2EHhI3x78XuMk_ArgSgU^oybhPWUm07KI*#5k(-1&!YG|iXcbCueN9u
zu_!`Ogrm6bww91ZU)anjB2n~t<Rs_S<K$7i7scSHwalz9ExBwaihfb-eeUW{<MTCZ
z9Z{b=YBVs4r$5;SiNZcP;T2bb#_l0ejEG`n6hotUKZ>N!99grR!&uw1oIf0O4rfk0
z&ObfY_Y0$#epLsLUH%}752F|z1x334@p@x~k7b9CVtf=6qL>!N^e84q|Mw;4Wc~^W
zpCrgwFTc?ISiDmNrzV1C2%*6zQQjO{DZGqDGE2Ol3ex_IC}y)m#^8uyP84&acoF43
z0GJoW{3t54ckb-$SrEm-D7x0^HM~&rq9_(e@n_U}OSL45rBNJ@;zSh7qF5fqrYOFS
zVugf$CHSS_O2Jivs|6W-4ZF>72g%xmvM!4C!Z#$8jm*Dcr_DD}Y>r}g6nmoBBB473
zzfD+f6|#-vMF{_eF&5p<D0YeRUBdF0in*xo74IRzeNpUBgdT|Epzz7Ftmub@A4!BB
zjpA5>^GuNMqd3VKSd>$O=b|_-<a88g5|(G9_#wf6WZiyXrF<cZiz42L;-^ID6(N@d
ze-^yVuC>duzbf8qg7jV&vTU^#bW=EwoBWkO0a4sa*xZZaw(vU%<*pDrUj#&PKZ*wl
z{jrdTf{!@&KK@_r{Sn2Jgw4w;eHz7IqC6A)I}!SikbecA3%*}ASGE|EVz9-K9K&bl
zY}sQd9YdKIa>S4`hFmdg6;R=rby@^T?ilijl2<UFV1B^@F%%S1D27*ry#1SlQP%!r
zCl(Q<s35(?Vkj=WgkZ^pUMhxz=PmoPF_eqp^%$x%=(@dp46g~PAV{U6kV-LB7V>IB
zuM$I5;T5)cXhw$^s)=&oW(K`ASe7Fy36IFEDS9oz+Je;U2svj@-n!ksrHH3^-863I
z?2N$`Ls|@tV{peX;GCm=3=LxN#E`-(-py2xsKmN4kkpIe!z1dZhgm%Hn!6~Z#;~k&
zuZDt+1i5Dml_oKy$H2qWTgQ;?1$Wg>&WM4>VPpzs2{sjMCfHn%1}#_w;cq0ARx#^@
zQwFt(;oGn6bZujpG|EHLA%-_&Xx$HO`r)k@-j3nlK6u^-9b@Pe!@4-u$MH@Konz4A
z(BtS5Ls!l-G0csjTMXS}7#qX57<$CeGlpOcp%{MMYy0=9qgM>QV=zWJ-;JTrQk!46
zHwK@Ox(!?mQdl7p%H6POqs4GNzgrhHVh9M?u`-!!B*HP6F$|62{TL$5*l<rghCVSw
zV~EA9!!-G4hsg5^Pkn3WbJxBxkn|JmFE~Ju;=mXNCHQ+W3>H4*r83?|gJCi76vfdo
z?mFTeE}Y&GLPiRX68u2$Lsr6qWEw1a)O8H2<%oJ<VFtHA=O5VdF-(YIR2|2}7(QZ!
z#}LouD0w8~W)643b?W38K8|5Z3{zv68N(+roH$^g7Q?HT9Cx?br;C@$j2ON=U?<s{
z*Ex&*AqEn<PdOfie=b-s)A3TDEnc3gIWLC!G2DsaZVU@zSQx_=wtftYV&IXoEBQ({
zhWuZ+7sv4T0^5=pmI_%WxIBiZ-5e`uf6vL#FB$ihWD;%~zdD9*7?)=~bFp6x#IFR`
zvQdPr7u+DYQE-zWEx(T8@I))(<{0`d&g`1oP2|@1_w!?G4BKM7Q-UMOb1sJSF*I9S
za7PR~W7rkLcQNc{LH0RM3GNX*6vJL2`ve)fKZXMdelUhEbDR_p$8aQuqoSV>JSKQN
zVYzj0-tUE<{C^ZiJT2ZcF`O0hgW!(|8)h#hfAWPGF0%V^nCDOC!o^EMZV6KPS;%F<
zD=}P+;TpTNcz+SRAxO)cY@;zAl3x?bZ!wfO;GjZxo7J+(;`d_sJqCXqN*woNco0Lc
zIC{se+na|mJc{8lXW)HS-}@tmC!8MRs1ZlOV$MHf$Qwt#IG)DvR}9bC%ADBa$S$G(
z#PA}9|2Xzzc+UAbzl~Ao*s+P(;^<h)N`(IiUg|mG$Q4KKIC4sKilYlyK|M+#k0_n;
zG@v(s90lSi7Dw@yW`afHC=|ylaTHF(<yqA<p4qYvv1lCKa#^HA93|tZ6i4MaO2tt+
zj&gC7mndZfnL=4sLg{2W+E);<Vj@j0O<#4&O6S!$s>JbH9FU;Pc~CWBlk=@)maBIu
zREy(vW=Tqy>atR+8Aq)+-iV`B9JS-zAPe>5Xdn@7aX8{|3QvxMm17sauZ_zUhdYjx
zIO@jX5s}4VYIK4BYS$C~vWBU!n5l6zj3Ygc3<+u!N8>n}#E~ZXd0F|aQnm=M!YG+>
zWW{-tj~3!>8b>oB3}Pkl*k6)i$%Tn6MIWuyBX1o?8`f$Z-Q#F0diyv!2x%7w6Jb{0
zjN>iN^Ko>J<83y#gmx0-4d=_IAz^A=;_yqBx=QHF>SA*<13lshNI#)jPYGr5pP#f{
zJ!LPZyWeF`(A{1^UmU9{b)~m`x@T6)ytykmRM!8T<UV^G1`~<%cr}cSBN#_0j=^yr
zmFo$|VaCxXj=t>eaYW-t8t90}5fehb;DYU9&D2*vN^gC|bNRfdUmWyOA0P((S;kQM
znZ79l#XBew>pdZ9S3N`G7#hd>as1QWJ)C*y?inVW-s>AP8Xe2b+0!#Bjt}CP700J>
zd>F^*IHqwFs3~LO7#qi=I6k{;qZ=2;!~`ENWP;$F|2!Wh^bJSU$#Hxv-YKlo<8DTr
z8pr99UFlw?GhISw#4$4t<BI1KK@ux8j?d#L^3=65jxXYv9mldb_(?c3GwF(pI7c!z
zH;#Ei<_j(mTqw9maIxSLLB?7d$E&MsB+Df=Cb%MwFNIHj+KAp&ajcGGO&njv@$(bc
z+5}F?EYA{AX)@5UA&!l49Esy-9Gl|!I*$Eu9EjtaI5x-eT^zgPSl1?l+k|e3<J&m4
z#<499+hQk`?Qu-~)Ui|W<Pmj;kP8c(6nDk(qF6FXm26y+igu%%`#7|-x%S4<v#FD0
z_edMR?>orezTejCqKlUMs%0FCgLs%7={q~gu{e&$F~1KM^udWZzUKrI$AdUd#&L>e
ziQ_UeoY!^xh??uDdYZG`QT0q5XPIVq#}9Gj=-~V@j?DZG&Iyv77ji-HVjMpu^h<H{
z8eyYBiraOCQ^dXW>v3G=<luJET@&(i^Rydr{C`Zn2b2^=`#ns~5(LR0;R=GxPF!Ju
zh215C1Q8`?1_S|NW_qS4&-9WcXHWr&0s@keBsu3SNLGU6oYVjI!`t8YJEzV)w{AUE
zU0rE<x+`3jP!8bN*szN@t_%Jrcth}};4Q)1f;79s##7jFcOaHsu0!vGfq2Ma)`dbY
zJYvV0V9xGB4i_E|#FK$|O0)ero(;rv*2r-a{}I0s@=ow2+qsa}f^P-i{2$)yfGLAZ
zk4Tr%g-pUT3uZC&tU|I0av>pCYVbwwuWQXYUDz-=Etg<!7xK99feRI!j=U}u5JH|$
zNPfYFJslsqKtAkTW(IxaLSYwryKs9#_98A6b>TA?s<=?hh2kzuA7d%+LJ1eRr^NSr
zOe6oZk(3l~DHlo$`B<=wAVbT#P)>N8z4}fRWw{%a3!k`9f2OH|U`4@C1u0f?p|ZhO
zC^=0o@SAv&3)Njn5N;N<xL|d`=F<PCR~3b3b|DTI5=H-9kUDMXsu|uIF4T0Pg%~Fb
z))%ZLSX(efFx7=L7wWk54O{5yiuj(_6OoBGaG{~-ja=Z5U^C&31)I3=g@`n3Dhdtg
znj7MmF0>T=D;L_k&_Q@B!LMETMo4QH+PJvGDykPrplc`Md(LD#y7bqEU0vuVdM6h;
zi_%4q1`O?P#O*0!4?(A3l_Hs$R4+03R*>oUap5}``nu51g`f)|7pC?~>(Bdj!6p2A
z7X}DPI^blGTR4edh{pxR1+Q?Q3#yP-V%c+lPMQUbAo4=F3Wr_LTu65z;^GG~N7RKb
zf0|>$$M<u@h19QKdXNi)*#eod1I{6W<6Ic;!caC{7k&_Bl;Ci|5rQ-x>B8j~)ksE*
zGRDxy%7v)YO%QRa3loJ*5}a&UPI2K?_SE;5Kf3Uf=sz2w(_G-<+4rF{T=?bx=(Amz
z<HBwi_P8+Dg?a3)F066kR~P2Hu+oK9?1S9@*@YD@)Y@TR$a?H;ru$9EA{Q1L$`T>J
zyRg(ymbtK8c>DSmM!9>!?EA;G)00|*8@uhUle)t6hYM?6*y_SI7uLD3-i0k}NZITg
zT-fNsj=`xVw>bWEVMftBn_Sq;I$h!zdcZmJfHS_>LHwy(r(f?^yNx2-Y3xGwl8O8h
z)a;Yas}DGLvNQHd+vNhiB<Dvb?sZ|G3;($AuM7KKIN-u*7tXkF(53%XJjB7D<3r9Q
z@*^%Bb>YYobM~LI9}_};Qpj<^6Vfs%o)Yh0hRx_R)&3?w;5_HTc^A&I7}uKXk1}!R
zp9?NrWG%Z;H(V!6y|hbgei<E&YTAkI4%+T@OC`DD;?CGud?~{X7rvfrzBS#Np@Zd`
z3&iVe>KEGn=R&8;HhOQmaEk+=3wK<2M*PismlbrQGDqVlEXGIXdxG~}cp&5<e*%Q?
zU*2OE_%)w4{8R9hrTv$A<~<WXc{7pcF1+BSui0M;lDrbaow47#@Q%ZXN8fikgIk|@
zQp1g!Ze(;LlN*`c$l^wIH*z<#XLTc+8ztN*=>}i&Z>(ioQ__;%jT~;|bmRH~XD&C|
zY<3o>u^SsMB<FGC12<@s*NsAMd?Y-d8~KG45d2V(HU-_Nd(cW!*if_yX+;cPR7f$w
zr2}-cI<S>;qck%-+4Q*^AG=Y;t<Q}q=SEo})ajjmU&r!pz>V+h$)8A&*^LTrRCME0
zy5B8y32sy}cx5;D`qp)2gr$lbCf;u+d)|SLIj>D8AKN}HVP}FCNyjQ^6SNCD+(;DC
zuT&z<*oLdRQO%7c5wEW{ZERwtKJKw8=N3z{8@1f{(T$(nsO?6I8x7rP<VGrs!fLJO
z#__MLJASgHxk0QWSXXdxF)M@Wi$Mc7?yoV^+t`gJZg|{K-1x!`9+A-8jTUY+b#udN
zOEbY9)oh%2@TD6qS+o7q`n&Zh79UK^&Oi8HxzUQT-1x?g)^7bTe-GBCkWPYB+6rms
zMtei)AfzMj&S9YeU1w3cxY1QeH^Z_!b2UykpmVbQh~CSMZ{6rE{5!+4kC2JZ(zNU=
zydPWF4n5-cZnTZ0JpIu!z>R@yrQt-Epj+^l{He$7sa`e-HzICa&Sby!)|~aAQ+31d
zM)o?%0XIT!Osi%IG6Sd0i7QgI)8;U1=U;QAnx*_fXVi_D8*w)@H>S8T)s1vF2DvfL
zjqz>_cI&4d4RhlMH}-##Wr%o(3a<Jw&u|t(Z!_H(H%15_DL6`Sv>?rBFjhFp9aAQ5
zxi*1bx4wzrOYu^l<i=!Co`}M&NRF<vU%F@`{>=QlvCfV4ZcKM$h8w@SG2e|}-0<d0
zoax3aH_m-%SsydSKC<#*Y&QGdLKF9@n!^(K%re)_{fl%m)v9k`wZM&qZY*_UnHz!A
zrr+2pT3HX&th|WD&Mq@EVTs`HEZ&38FAh38A9Mx}I+we#f_YX=Lyx4bbYm5Jr5k^+
zhz>eeyRq+}^TOad<jW2^PuUVrS?z1xm}^g5V70e%*f+Sb(T&4y9C71MH#WJ^V@2{I
zH#YOW^4YezvE7X=!nX=`?P-6zKDpGm>^t1p$?M+EQKXx_?^63NH;B6hN%pw0SNJ}`
z{f2(Pjf29+E=r@BtBEb~hV7^u{O|df8>ihk#!lqM2@Y9N>!RA0lgvQztR$!0Aojmi
zGxL9zGj9Ct#>vVyrHt(?i<cvq2L(Lbh#nW*c<sg;H!iwyi8(yuxX*?s<hmf0e}w!i
zc*TvYhJMYBLnTsa@Shtu+_-7zcigyT@Y`-AG$=uvyM}Vl%@qOqg&v6V(2YlKJQn`k
zuzBLfQ{m4H<=R0fqr4FBOE+E_dZ%{Qw{E->Z%&V%Yz7aq3CSo(C6kcM9%M0;tR65T
zgR+Z~!_bQiO{AF1gWQIaN5}^r<Q0<7(DOdAeds|!4=Q+2(St&w7xkc+2OkM9ELcRa
z_Q(__TU>Y<!4iTc1sPPzgVG*+?D^k)F?$rt8lmMpC@&m_@`(oza(1H4r~K6uG1Y_0
z9(?9Oq6eRQP(?(mph+-6&@9M^77sRmqUVav=7C*w$NvefD!itlRP!Lo;MF~-A-ugr
zX9~$4)Doq(VUyy)A_+|srH-N3_3->M{qE{}(7?FgH8ZnQX(YekjRpBrJ|rQL*wllG
zUQF_$nFq~1XyL(^9`sbuOF>HyzVhI)2Twd`<-yk;wD+Kc2j6%w%i1ZaSYm4r)Ww!k
z4;*bg`d5A`Z9Qn`(O*B3bH-XnHUkeHd5~wgsj~-NJUHUPQ4hK@wKRKo4|;geP3#kX
zPUI1;PF|W`55D(+Yv=1NGxze~Y{*3Ntp~k%Ys<`ZeT01HL0=*L4E_3poC7=<=)nRH
z7JA_F!0o{l3H5lOcre0)k>d4w5cVJ<+{e4{!0$moydgneCFsF{75e4qTn|eUqaLJt
zFvx?L*u)J>O-RM1rolpn2@Wwrhw`SJR!0B9P=<Sud5W%#GL-Qij5hcf55^jNoRC)`
z(*z+C1t$qk7GxqkQiM3wgC9Nk$%CIo|HXruLZ%5$7o6e2kl!sdo+VzAc^=I6V2*e@
zHqS$4F56yZJ#W7nHuF7jD7x|+n;cuU=!-pAqE|ZBdhoj_D+HGsv6gwT+~Dr)r5Jss
z2dfNawFheqzV@7HoxwMGuwM8EL)j?gPY=%B*PB64$t1}Z54L)+&4cY8PIbm!5B7=W
zPQl$C>@rfA@P&R~d&K+UjokZ%95O-=cyLhoH!Jjeq&qC$^e^)KaoK*1;{e;nG1GAm
zPZ<N>W1RHhKOv_)_)ExX4=xE|=ot_GW{VZ?IS(!fIq$)ZCN_o=FN*Tsds+BD9{elh
ziU-$(T=n4A^(5L8uZ!~DtEV8|o9{&rckjU+;ddp<JrCZ;rTu+T7@e7a=+VD8lW;;N
zr#e6N;28%21(g*%_uz#G`4r?=@RGv?Tc(063d&_mc<sSk58iq3hTZnC)pOiN%%C8n
zf=mk3t=ah%@?@)a^`BZEuQl^X(7U~?SrueckW)b}1=$tkQ1l~TPZzT<Z*BSEtm$GM
zN1H9S+zRq2_&`Bk1q}LNu;tNK%iX$G2JwKE%*U;n4mk@b_)tM91*H`fR8UAkQ3b^m
ze57FOD0^WAMVN;}PV%!SO`Oh0m#?R#xPlT2N-Fxc?euadv1+hhEoLiLF(vJc<zoe9
z6hOfz3d$;I__4j5g7S(!Sn*^cdU<HC<+8;Fdj$m*6%5{L<}3G46@7t5V`mDz!-v`@
zudsfmpo)Sz3hF8_DM(O|q@cP2vjU64o`OULRs}W%pQ<(O3O1cIx1MF9qnGZ=f2PkB
zR8>$-!TF*YC(X9-3uE2~W}Y=n_sbe*4Fxq7)K-w9AX(8@ThwBC9yWRJnGbC=@utXA
z6{JbdkMGY&@5u6&mQ^i_Z&>RosIQ=%g7yj;@E#R>t>7C4jTHS1g*=%P8Y}w8zRcV0
zO;`(=6Y|cpe8GyCXKAXSnGo{k3R(#Nl0N|~(zE8T6tohB{6rrIZJK0GVD#1s+9+tN
zU|jX;+;FeXGW(V%HagBL=%ApZg02d>Dd;3w?aZWRS^v9kn%z0Mi-If59dwCE<@wRw
z74%TxRB-T#`Pb>mJk*a9=J}d&`wsKB3VJJ;tYC`5KPjm2xJ_RL{S<u15-5_GP$NZ6
zvi4W-y#h@^x`F`;1}gf|5@7`{1#UJ}1%3q{1&RV6?_zp_SHZ`JoOH)?rP7fUyXN5h
zb5Elz0R=$?AvU%xCeCf<gk<i4%r(MnA)MI~Q4m!SV|5>LwlA0zE><V5fH=Hbok46c
zEC&VS6%0`@RKdI}=CKNfDfmIba0MgSLS9>|DVdtDw12(SF;c;tBepT@EJti4qZEv$
znebeW+<&dMbMxePCEFhEYoEYEZeZ*6$}~~I+=>=wamyr@c_ih;!c^i^1wXRGdXd$O
zpA`J8V7G!j3Z^Oer=xYTf+Y&3E11E0XC4Bk1%fjL>76BHw%{D5Z|L*bbA``0l$P^N
zGsjsMD)>#5MS`yRCMHs;z5RE#u}qzovbuBI_RKdeQ?OjY3I&^6SvL_CtW>Z{!D><d
zP_S0P8sX}lwzR<$GjW|L>jmlEAY`M0KMm#eZ<Z|_0Tk>olx+&O8~lADOnj%I>=M%U
zkaJaw<h=@>DtM+~pMw30zAb#$Kg?5urUPts3JxhatbkKEt|+*w;D~~w;ytF|Zv|(C
zA6IZf!AS+D#CuwhQU2msl)*+qcZSum)k1PkLN5uP7rbEDUu0`M<fP4IQT{RXf7yD=
z)uet+l>36$1^*Mg!LdleEd{s5dr$C=g1bT{EjKZ4kykoWBt8&)DELT_;$sC*4BqjL
z`8jVt&Hl@5b0#ld@FzgQD>iZ-b>}g?6Y^T{je@s^9-nT?;MHw1dU^ClrfXYu<IG<4
zDB1a!O!|H%*}TZ^MFB59^dg5BIlcJ6i@Y>$;mGBM>vvNgFJ^Cb<`x`=#L<&X2OhL(
zaltnHSM!a+j(lDa^9$}S>L}<%Auo!0QOt{vyx{!XB3{&3YUXE)!d`tkUx5@ee}Lwk
zvKIHE1T&T?p@$bGy(s0yCtg(W>JN?2vskL9R4*<3V=uZi&r?QtS;2B%lovuv2;s9(
zMIlLERQKXjFDi+*vY=V;Gr=l?CNC0%FopC1r7T`<B(7iA=0&0qyAkRTvMx2t=R&F)
zdNnUL4b&gxYKZcs7cIT0=|!@5YkASoi$-45_9DfLR4>v*uP<0fu%2LD-h06WrlaRX
zo_rdJu4XFLSV&XBCW2oG(vnYo&4f2Mlomp`Fy|{TS_$v$#n)c!tD-+9wG-tVFIo#}
zBS^h1GyIqSoYr2H4uTzx&`w@tUirT#>MmY%6}_8a_y5l(dnu<EJ-z59Rms{^y!h6O
z-d^-ElmT9RC%ms<Kf(S+==WY!++t-!x`AwOhVB;PVGfJsVvyGhpD3!A$Gu^wm#YI1
z@FM6%$O}z^!baSfkO)!8cdCUc#NUU$$4m+7UJMdGSdeez-sfSM7h^^F!HeNSMhK1)
z94W|TM++GvI5e*wcbxF?f)fNOGV@72Qzm=yhZk$TnBv7$FMg!gW18v3EdB}z|5<RF
z7t@8z@ZuLCG&?ZYG^DdWi+HvuE4*ki#WF|uTrcJc`PGYMLgouD5M1a*)$*3#1Q!V|
z7F;6uyC4mgdeMD}lVrKX;)Qni@3>O<D#6u)YXn=&*C$l3^J2Xh&3*b^Z17?ud%6#W
zefX1|!iytb9Q9(e7h6~e9@8N&w(`cGnYMYc-HS1Yoa8&a*y+VCFLry;_rJ`gn%KJD
z$ynZ!>D^A-9xo1fK|;4z$UZOj3;FhDW{L+nRy477kyytDSq^*Qd1v$FNj~PqaW7ta
z@yd%6UYzvewikE2IOWA(US!FcbkmE|EZD5pGhY1dMV`tw^0OT4mRsrm6>?7SycZXQ
zTr@&23Arrzj~CB2o8HH|;>A_N=9-Y}g8vEL5Pa>+dCQBD*V5>i4X!b~>%{{vxK(Dw
zaVht_xX*#Ynzqnav+|1U41MU;Ki57Id@T6H%To{j_YL=%kmrIg1fRAn^_r>iT0Z3S
z;VsL`i(Ed8T4~PU<3tN&^&y)NnS97nI8k>#WajoDWfQw*P24^|_2vB3oQvvY_aTQ5
zIR&XNIpoY?Ng<&lxpLf`+lM?peBcB5!Aor(47LaATE5<EKDE)B--j*5Ed_k|(1(J;
z3kjCU+;)F6OTRhR7tK?P_)ye`Bp<5#P|SzoK9u#LoDU^@DCxt;K9pfTFY2?wOZkxf
zrm08%#L^^9k`hju`FuDtXCnU){ZuKjybti<pRD$3K78WC`D2zuAAW6}Siy&iK2&*Q
zqC)qn50xaevfyV7^1&qBDwrT>7Not!hXbYch&EB|hVJm;*<f8Ca>xF;4^@32p=-{`
z$Dio?;n(n?rVn*|sOv+r54C)#?L&$Wrxu$y&6o!ab;+K<$I*Lc$C09zR2E=MOPb)L
zT#5CV=ggM+KFq&p<A*jr<TUW1p%0CCM{CW^1RD#|+r)=24Bk`-zs6GMF{v%2Cw?i|
zQt&ImQC0PY58wFEnimS=(=gij(AI~+0SpPCoe%AOIIQA`iVi+>WQnP$tfG^|?csyd
zht9&g2zC`@g57w7W$Scjf0vaYJ$>lq!v-HV`tU7VU`=a3ANu>y+lM}EY1d7=PTE*^
z-}%tjr~fl0XDxs4!vG&f_%PCkfj+o=i1-lo!R>>`2X5LB_CfLCXgQnLhu3c`+*@z=
z$__r^s-RzxK>;7?h06tfDAhho$ftidr`Y`?>&IbBjJNQMb*K-+e2Dw7?~qgTp~Wy$
zx(|EG*y#qbG=vW^lrA>Q53Iyomf>tOOC7xEgB*6^v1ipr`7qjtpV$#bC6Do8EL(D4
z$5bE2`LMWb%48p=_%Pmw2|ipq<ecckf_)B8*_6FyQzrR9q<D2)xrxa+6W!L7i#dOk
z=*fHSOyp-Drui`4hZ#Qnyx+8*&8b7mFFwrnVU7>8xc{f%EI}UdI@gDJyr>UL*b>Be
z!kFxgGGF)tL3$So`Au+<58OkE;_u>JCAd_O;xZqW3twR<D}CUNGl*`rh-=sYgse4e
z)(K(u;;&6C)jxgM#8^H&^kFkc03R;;aLI?QK5X;x921=KVY?4I*y`94eAwwjgLY|j
zhkV%O<GL!xZoxf*dj<CiGH5@0sKE~k;g?Xx?e?|(s1L_{IPSv<R?sAq@2xG<VSU{k
zw|tqoB&Ge`YMfF0mk+0XIP1eXAI@+j+?(rfANV=x$v?IWk4#)8&51+j*^&2|=`KhR
z2@eh71_+lq;P~*L4>x#S4uBl84m+>$z6M(u%5Ckh`aoQpF^N0IU*{-s*!kB0%S|TY
zLz9W7dp_Lu;f{2lyX@?{t>-&f7hJG$sORf~xW{_mhwJyuv?M<A;W0ariu@{``0$iH
zNJSPE&wP09!y69oKD_YZr4O&z{(ayI_i1m<g(q0K)AhchwnLg_)aB%M&Ft@d$e<#l
zicG3rCX>!t3b%8#I_%{34rB7AE?aJTeJnMrifk%!tH`4wyNVnta;nIsV#^Zyz>N0i
z^^^Fbrd`;|mDF^P$C^G+@vgt)`729a6$cumEGnq)EXwh@fQk=Qlu%JpML`vXR1{HB
zRMl6Sf25+Ys=u`1PAqKL$M4!E9M-!(XTug#QC!vkck}#TE+hSOQ*tR4rB#$y0Tmys
zD5IjRigGFj%y&AgS?TKcu)kT9(z2uVZAWWC)%1yq3Mwk9e076;d-PWj^YU7jcS*dV
zSuDLAH%^&&xW;EHs;Jnk>dz`B6$#9h$Fy37S%pQ_-w@VRVP#Qo)_2B8QejhJ7h{Kt
z&s9`aktkk<9=m6%#_X-Nw?5gUd0G3E#SZf7MraKo8}DaGR#8h*uB{?XMIGTODpHxU
zS%0rctgB+&2zxyh^+jZXG*Hn{MOZ~dMI#lBRdnP~%&OrOP!+9Ie68XO6-`BHCita_
z<|<kU=foRYMzd9Ksp2b9xHz42VyS<lqP2>)D%y!Y_-0ZYA&ko?bnQ9*8@yFvj4!V1
zomF&U#i{sSMOPKwRP<8ut%~kq*+Yd>{olOSo+_>_%~C+7j56Zvt_i(W^ik1QEIDKL
zJEm{UEd94b^?u@I_L$oNDh9H7->mFY;ZosNp{Vex_^3+}Cgm}5wWrYkKS`JuQdRg>
z1SB-5A|&M6jmn%7%vc=%`6e)`BBo-NirFgSDl`>iS>`IzRSZ%wOvMi>2CEpNVyHx)
ztz}_cI;Q{rUWTg}p<<+pQDRU`ZZHF<v#J;)O7Ft@Z0GkAYdKkWyow1bepK<3%5SNd
zq++s)DXKn2IhphQBns1?D&+koI92;+71LBqS206sla{;$%}9v9sF*4CMG7Zy!*D8d
zRLoVeM8)syI})@&#X=Ros+iA4l0Au~@n55Ydu~+zjit2Fwn%I^37Iv^i!N4CDNA*x
zL$_3dR;XB}V!4V^GB^1B)fu`{LRYEa<Y#)>Yu2!Zt5~aIor?7;HmJD2$wZy+lzuE#
zv-4KdMipmAr_lYW;^AiNCbl|H8ogUoY?a=zjlECBPT|{GBUO`pm&|m#RO}UTx8NQ@
z>MNRL+^1qcM;lSt2M-B3sG`kI3m+HfB<lZ+j;c6D-H%uk`*9T~R4nylnI9)roKn%i
z&-G3COT}pwSJ_rooKf+&iho#!5$jnM=Tux!aZ$zFKw_`0*7F=}hb5A;SFT-PZvV=B
zvU;XVY|m*)mjwqLb~56>Dy~Qh<b0iboyE?<(~sPK+)!~-#UmAuRor5f5vDsT?y5Yl
zH2F5Ow<0&mJ(iw|2P`NRJkn^xSbMV-_Cn+BjmFv^jkWI@Y$AW6;wi^)KN8B;96TuH
znToor%r8_tXTgROi$Be?+>!cHMCz}EyjJnXP~NgZ&d>gi{nW2Vq$@l>dnP|JOM*q#
z<zTW|glF|5n~>~+)N=^Q>BoDsJbuJm*gx<iuODewZG0)jV$bJCvLEG-+w=QTz>g38
z@YhQ5p0T&MWiIGPAwNFyqp%<JnwgFtMg90pyi|($QO1w5eiZkkgoq^tOZ!pEu&Mk!
z?PG)Q8I@X&*Anlien7}4Mkudd!H<gK-Lf>b(Km^_L?!W7Hf){_N~KuE50fYfhQ98C
z!{Uckyf!~R_oJ#GcJVp{6AjB17adHYnjbX`CCQKK1}~SdZcX9uQ?BL5lkGOT+J2-M
zJe8$q@H#^3`ccnN>I)gW$<)Y?#(qTEp8aUz#}|GC{0REd)Q@I<@E4hX7A_aGHD`hQ
zF>02ng&$w~(UL{C!%Fw9A7A;=%8#!_>EK64Kfdv!wRn$JceD}GR<NBQW3^`;J<+3g
z5~aJLclM);@UDi^&CjjWQ)t;k6sKTMBea(v;|@C++S`vletc)>1N`VKyq{oy!S9XG
zW8HHO6z=lF?T5$Ey?!VLpD-||&)}*b%jGJ({X;!0AwR-w0IjSMzy3xyG$rxiqO4^f
zShyEA*UiQK(EOO>$7HtBi`H~MhWIg*<vBZHkRPKvSO)v~$HaNRoMV_DKQRA(jQ3->
zA0zx2<HuM({>Ya+l11%Duk|T0r~S~)PNV%irqE88&zU--eliUh^q@y7U*k{kW1=66
z5{r`G>uT*i+w}Zp!m~)~6hD6PW2PTdnT>dz9|cK%67sVj(+p+0kQsu<9@+SqI?Io@
zUG4mbIGaP+fW$e1a|P!K{wg@%j|D;&`mva|mdQ@z-$YsD$Niw0UQRDx;>YhI(tCDm
z%Jg!M<$l=CnpXKizCv)N;FT8{sIQjLHG)*u`mxTB^?qz%4g)9{z(zm*^y88rm;Kn}
z$7Vlv`?1Hb@1uU;Sr6_Py2X#Jer)q&yI+4A+~LPgKd85!WW9gbnd69a7aM$r#B9yl
z;fQmuAFRRSew+}pPjJ5<2mCmdDdC{tA;H6fM+6yk)Q@8{wprc|$U!d?`EZH#q#u>*
zSx)hOg{-Y$y}7}3+K)4Sko+x3gR_2|6MkNhK^OeED14l^CcXdo@vk5Mad_ttF~W3(
z+1p^@wpUmE=y1n!O>p%(^L0N4F6~O?rXRQbc<#pwKW?+JZMHpS7r32rNBCVqiuZ)v
z_v3+(hlc*hkH-do!VxK}oyH?>r#$0`am3lUcna5+zU0qM0C@uXI@4Evy!Pwl4V#LP
zcYb7*Ac`4;WE9LKm{~B3AZMXx6OvsphhR>@T!J)UA|C{hH^4n|@!w=C*FofCy*EhC
zAJCUYJgc9)c5E`q7c+A{Je<8y03QWVCxE&E6b_(B0OkNJ0Td0OSOA{{@bs{ycmO2=
z_&9(v0hA1&Q~;#|=r+&9BjCpuu@;<d<zxKipRF0DS;_`bE`ag@Kn%Ef$kz|e``bBq
zTGsx{Hg<5nX{iuE#Q;7Hpi%&p1Nba}?TxMcJH~I>m&&%S65#Wmg|5Ll)1Wm@Qvk#S
z!E-k%TLZB1E&}*Gfa?VlmhLdwdAaqLafK2c0WAN=QG2U}@1Uv%P(6Se0aObhDS+oM
zO#IvO=Dd~b^=bz2_=zPsfLZ}`zL0X}d7Ijz^m$No<7EqjQUXW~VCsG=d0GH8z;Q>t
z0O|+uT>yOpXb?cd0NMs{wWj66N{&VWd=)^e02=eItJs?aK=BK~rh@b~6VhC;h2WQh
zEd%I!#7TpNBTS`#Fnt}sHvybSa_a!v1d#utJ=v1>FV7{oW8b(wrCk8+133D+W`_WJ
z2hb;gj^gda8xhhafSy9S3U(8uefI!*7~C1q-}F-KWhmbY;d3}ep3(N#L48BBegX6k
zVC-*JEr9O>7!ZIzfIt8P1Gr{QbqC-Hz{NImDTS_S`*uozGil3s1Msooy|mCq6-x$%
z7wX>Aol?fOwgg#mhiq}y=9x;N0BR3S3kMJp5*3UIGL%7`x}_>L?di<PnM!nn0{ZzE
zBtruj#!3$YLHrQFa8_0TKQf13C5#XpFE}!QQ9?!wGIWfPu>p(|mz9e$zDl5*5Wqyk
zW|EM}0Zb9nCs2k4Ke1;8usVP>Ea6AyX#va$V6O1#0n8BcOMrVV>Y=kpCX^$gn=Q(Z
z#cPny3*ff^7K!p}0P}@VUl71T;SKLsrgw1wOT@cU@b>_g30W#g0~#+k_=*5-=hV+7
zStZK*>;4hI+5pZ5a4vv#0jv+`Z}tuZuz`a>06PQN6~Lb&ZWr7Xz~%t91h6%LZLH#j
zX6{>fR7?EiZnZ)d`;(S-Dm%oI>14~6iMU(5`vms{u-6D3o3%1S_luX}!2k{kKODgE
z08R)$!uA%xu>gu^N@e<Vm)}%78NjIk{$?H)IR26vKh3Vk4%IV-Z%wb}PwKJRc5|g;
zz(2bE0SnFtaDm-6fF}W5WWxyHMgTVhxE#O-S(B~=kUKf$A9j!>W+wQrh}@{;D%+$4
zUFX0kgl4oKHNj3KzZC$_Cc7;`N;dnQ0PY5Gk0Z%E^CQ9gf_y%Iz{bDI{7{f*((y1{
z+B{`<9&IWV#799q<FFIJivV5*^hE?82K7W<$*sK(fc8Bci8XR3zX|Za4BiEhA&87Y
zeN}#L!AwD93nF_EnS;m@M9FChS%dm)kWcR=@vq`feUfsB8SQfhp&w4&Cn;A@{})NZ
zJ&5v1=m$aM4I-cL{6Q2D^6kDROpOugxZt#45WXW$a#nZYAc_Q0JctrO6b*u(!{~|y
z;m(!xo^!|4l0lRT;^QF71obUdO9%B;`Od-#<RoQ-IBv4jl?$TzO2>Q7SL>eyxq&2J
z1@StFia~rD#GD}J22m-9%0YY|#DE|^3!+L8Era+f2vZOVLDUJNZV=`mEI}j&@p({x
zHDnFK9)v@<Er>}+^zEr%&o@szRI>PPGpE4}uAW>qh~yw@v1Eeyv398>F|Hm2L+NS=
zsTssf*y*hu1fx`GTZZY-r38^0#3wiGX<|U~#UIvsLDUc8iy)c?(IAM1L9}g`qp>90
zh^28{|8L7gDn7E!9iO8K%W$`u(<~`AV>txTLN2l6%UslH_N7E5;n78{g7`WJXAnJu
z_$G+f%y1h^ry$z!5<#?M@yfMY$Ob_T8|UmGNil9mR!~6S>xrDVPtrMv5w){+38Jf!
zezzdHi+$vAS`Q(c^Xa>|_X?tS5Pih#TO)7Z1<^N%{vy(bH^|ibu}R$16X#V@GG-hY
zge!<KL5yXq5KAxHj}VVsU6I_<US(?xA{a!7HU7w!p?r=_#WMwhNGqd%>7WY-F<K%<
zg6Q(d7B#LL3nCtb7DT!z!wh{8^C^6Yp$ujF$yDckYCi-qoEeaykwJ_S;%l0NCDS(e
zznz_4_Rl^pi19%l2!)@6m=MH7G5e9ND2T~HObKGDv<==nlV#1a1W4X{a~w}jZJB*q
z5Yr{rtRQ9t@r#t+OlbowqW4kejn|{k7Bj|W9_9t{YY<0+I2OeGAQl9%F^E5dSQx}_
zK`a$ZzMNUa5*wSinAZ)M_;^FUB#7UGct5xQ?)A3I#B#ad3c;0vs{~gI^3rQags%-^
zosjiGY%oI2$@&gp&qw9hB+9NJb_cOJh%G^E4Pu*!I|K`ra%>l}xs<-a*G}Oi_ulFs
zm-hs*FNpm?aH`>6jx!Z9-a3`}KoAFmIBZz{y}IOu133-_u}b>s5e^zVGBa-79**Nd
zoM0_K@9`*zlR=zf$p>*Gh`)k39mK^TE(LKWh`)n47sPq7Jo|reMbT8oeXm>)or^Ut
z2k}o3*ThTl-yp68ag{ygg^k8^{9N^-P732*7n}6^CW<$O-wEQbkXwScSuErA(0k&2
zAb4MpA`|46!ViP`#=`VI4&sRf@p4Z&_y_UauzV2&lcEjXOCg+a_$G+A?0_MB7s9(B
zGKA19gytb+4B^aJ6Zfmh8bYR!zCH2{*fNKZC4|pkrP7UkV$Bvp_7HM}kTZmjLnsqM
zt`KsEP%MPvA@DnIo)A6=A#Vtty=Hp(JC!el^;>Nu`9u28R)G*c456TKdJBh8NccyF
z!o^BO3|=&(|2d^ui4aPEZp|~-QYwU!A-EE)^iB<>P$?b47Z>!PvLTcUp<zg0dR9IJ
zgkTTB5yB@SR0yF;2qxZXaYw}vJ`JH#2wQI0?#|8CadOJuBTnj-CG;~!*^xqTf_SZh
zlX5xCLM$QFev*3Oh|?BAwrg!@cJGKYu+o$m(l;OGTFB2ss2ak)Vb*GbwL(Y|LZ!Np
z8iF-LNEXsRp(cZBhmaCNswi~@(*)}X(x7hjob`m)H<Sh;tZbafphh9&F<a;w3u(gA
zFqEc3in<&;Z?4e0;w?hlk`66HptnZ|&Jez0&E7McW~8)Y-LZUTq<kYt(mI4T!rKbA
z3!%M`4k2_5p_A|`GfkbDS_r$3TNovIp}A`a-9qRtq0hV9>8R5^`^D5Vgx^ywymYS+
zs>4G5Evw+AnfpTYW-VW_ty`SXH-vs{Eg@_Op??V9hcG^b2_Xy!A;VFp5`s5`fvo)y
zdJS^$EIc0O;%57qXZHxMUS{@%pfa@(7F!cb9d-Ic2!#+1ArL|^1S&jSfRFLRvRh}Z
zF-Jle8UjgFkR&D~9)cz$U2u@#U_sgp388n`L^6!|*=G7d^x;P62q7aw7-cAh!lp4H
zaEscpA&g^F9F<)2sFUt^`MMKBm=wa?5axw2IRqZM$JxR^hA<_h|NWU7!rv(=bW`3~
ze+uE}5T=DNJ%rgI%wbg?b@JWC47T%~reD}wGbPZ?6f%pwvaW?*VvmU?5*}ImE2B?0
zEnzK$Fh7I^yzbj-3qx2Wg#5P<eoS|8Z>7bCvTbql(h!z~uquSrAuMMeZq;czFH?Mw
z<-4QK6>NbVLykJ>R<^UO;UG{1e}urNWy?To!e-lA;p;-UmCb(Rkb}4}gg<#xA+G+w
zrVuuVu#1g{%^-xWA#CT+G1#&#q(7`KUT$8WEn(|9Gc(UoZU^gezGG(ynJ?G6`(?t2
z_0~Nh>}6jF>E}Ug_gMFba3F*dU$y%ygoEs)PfahDnNJBhBzQQ4BSIK-G=yWqj~mK~
z5Kao;X1CFx++xds>Xy?S4?`Gs)H(NQ3SH@1InRY~p0^Xi?GP@6a504IA^aD@r4TNM
z@GtA-sPl6FqWrV@Pe}ip`O#Mv?t61ZbOv1w;hOLbN1gQY4I7VP;;-$E5N@)&HLzXQ
zti<WRn(l<~AcTh@+zo-t9`6Z~+-LnBb&@>d&^^gqE{yVFJPzRr4MHgVk3D}F1;Th1
z!t)Sbgzz$?Kec8F>p`#BiNd<~wOGCpr2dvk8JwY1GKzhsFfxlh6&hp>BU>2RMadOL
zZXr3uGN&MI@(5uf`6Tp%F!CA-6M4@+6ouZBLJEdaNXSR;^)QNrQ8cXo>7XkfMls>K
zy(lFNFO^afrL<h@W5F_lWd(V;f3K!Nu!7(xVQzqCrAS9oDU8ZgB4`@HXJHIDWoj7F
z%cn{hrZ5u1Fo%&8(RE80)-W!I@lP1GFzjKZhLIMABaGRNtVv;14<j**&%>C!+1h%x
zW!)rm)iA1s^|uG)%T`-zgs~}m>K_*~B!}_ZW3L&;+_E*Pd^b5)tuShbkrD<sC|<ob
zrG49!`NgZ(33FXJriC#*%vmd_AI8`)#)b7iI8D1GGzg<%7>&Yc9ELxPKp0KJ`X-G%
z!f^7A!e|;svoM;6`4s@|C8$LhUx)PtBVUTQrQlcZdDPM>49-qu3g3v*TCj}~+BU2&
zfMsY0QMw3r6zpW!bPn@llb(mJhSE()cR>dA6yg%>CHQTa11b6lXT<(td?&oGq4Wzw
zd17V|-S?~@Lmx<ehc3EB@dzqLs5cCs!BruD@6_k{2Zaw4422OE5(y(3Moc(u2C;~Q
zYle~@hW3M%L3D$|7-Hx{8S%{j^dCeV9>xeEBLznZjuvFxF>F*#^+d)qVoqzZar#`)
z31QSYYMLlWGKuZS;8TQ575p)bpA7wHA+7$cGb4;&!dT3z31em$v%>f-j2w}a*=!Pp
z?Q_@$HaJKg9(9t;74N(-eicGxzK{iBEEK|KPjL|w44C-FfXMUNi+^YNJ&feVmZfZ0
zD>5z%V|f@W!dMx`mN2%4_37xV!dNeae03OWg#RJ9*3j3n%QUpoV1uD-4C7DXn+#=h
z7@TcFn{8oi593G}M<r;7;C{iKVeATHcNlxbyH}7=-cNns7uNT#)UWcV`G5o+4C9bt
zb6Ci=#g=12{tDwXdy^4*B8-y;KNZ&B*)owcqMSGMzr#3d@N+^MX0~1sa?#K)2|4)E
z`fnIlI9f(nBe)vIwJ@G?SPtWQ7>6fV9)|HKjQ_&=uQsoBBaEAJ(OZJI1@8zl^sbP5
zVca*A2ORb*Ss3&<j0Xkvmp}O)TgvRJ^Mqs0F%!x2FkXa_|ClXn1TVvQ#gROMY@77&
zT(86W$+K@{xFex^8^${k$umTdF`^sLWfH;z4zfh_`A#MJb|hwt;MAYyTjwproDt-T
zpfU%~2y#b|CxS{5{b%}v2=YcyA%cX{MLMiB<%^&|1Rq9_KLUD#TTLDN*+~jUP$Gho
zA{G+-D1yR57+NHPq6RM(L2-lU+h%2GsR+s&N@*b<M^HvcSwk-u!GR8$XiSF)J~8yS
zty3#T@TqvYw=mtn9VVVI!c)DfM6mC?)f|B(f)yK0Cf-5>Jo1$*7x@3q8i6f>&m*WB
zfjt5Te;PIxNsNFqj`)6$Cnk_^6@Sm4Ow}S7mCM5IE<-&_pDAw}a5b&E{EpO!pk@Tg
z!uhjOH-cIb)Q%v<P|}2?M)bKZG@z>^3eU@~XV}yi(jWppTF{^oGf+68v4~9s7iCVO
z&K}(?g4<EtiK2M~Eh6|bf|e0fjPmRrd=){f2#!T?Jc6$y_$Gp`5p;{7bp&l9_`ajH
zO9T&}nc7BhV}`wR1dUo++eOemqW_|icZi^41f8?mr`hbCA{bIFk(`#{{0_#=`qtb%
zf*uj<h+t;~nLFB@5&ROt%m{i$(2J#-FX`I|dPmSFf?!X(^O&Vo5$ksmjEHc?NX@<x
z^y7t?jR@iqe4y5(8xVmSfj@$Q5x637i|!Tl2r7bkk2z`V6HXGXo0AxbAZ#c>Hc^9z
z>gJ3XJQ_hv_@|PB7D0LhgN)FjLIw*CVG5EgQyvz<4~ETfAw!#3N3!-K7#+cw2!1p|
z#|oJ!I8Jc9-~_>$b#qP<!ZasGFh%%OLpfQ;@{_@Tj$oSb>4q{x$i8ZJr!8?-1jE`o
z;@?)C9l@Lk=0<QwbNm{?{0QbTOJ}Ol%civ;f`t(*i(t8kze#&r6al9v(Ppv4qUDkZ
zr@rVS`BD+z^A!=SV+YBmC%!U*RS~R~&^4^ncb`%G!ys!#r?_4&u_1zu5&Rj!CNbC^
z!R83~Wo>H&?=828Jr%lb62#OPo$2q2V0Q$Eqy_GYU@y}dYEqw>_OYh6S`S2UP{{rW
zZnm||IAf!;RZBVey2qpK$%lC(OC7_{r5=f3_#@NN2()7Mgj?1V5uA)5Qxut_I2FNP
zym|z8BRCzwnFwyN`$T}dmcKa?MsO*Dv&>Qi=SfCcFR&?&v1EE>omU{~@i=RinDuf5
z|FF1@TCPU$FUN{b?dlzKcBz#@az(tHL&DH&5nLCu{{*Sr5OPzHvpwr-cFtMqUd_&d
z{ayt3BX}Lbn+P66^k;r&iCnMPv)<SqM({|;W5FkaPX!tJEQ064Ul_{E2)ys~ec@IQ
zO6^*>ZrjP$w;b)GxVy~qj@|#5lUpifh$3gRl;AOEOYTSduw<4fvPSW76lJ2w7De_b
z@<ow9iX2gFnrh7z<?b1%S=x~^iiyXZBzdCxPU#;+kypr{1ugW3{HDnbby6UT52F~-
z-8yZHsbCa^q9_$b>8QT3+ecAwZ?{H$tmK8GC?aA}K`O<fC~oi)QIs@z@AW1=2h!m1
z858$srYjo-qG%Q{m192twa=WJRz8ZQ$DAasGgv=~f>=RtW;tu6C@M#>IEp1vo=uD@
zQKUwZ7KJH_1m0H^$x)c2IKR?db(<+Es{b{xL}3*|Zi~V$oa<X1LK2xVBebfJYJxlm
z@NdOlJqo5%LooMg+n1-zwW3IgqW5R^+EH*nz5U0W99_9x75~!KiK1>4?kGG_oSbK>
z7e&t~dPPw`iUv`%IA?7bMW-k_N6{#X#!)nh;)^KSu!I{V(lzA>Z}4V9nhUlN{8F%G
z6g8??Y1~S@Bwt7Ijlo+Bsc@rCTSI9VMSI~L1Uni!)9DgLfo6_wQFM=@tMEqS?Nolr
zYVQ%{QX0FHH!?SkgznoD`s>_pqv#*ix8&*_MV}~K32EO&(Km{IQ9M0S=jJgdab!Xo
zUAE)StUqP{UW^9_4it0=^1F``g*S@HQA}ZZ7EJI(5sM-og&M^ihc){Zlb=oZiYX99
zP)JCSN?1rFim0KyS&*sHZj%<pkSKQLvU3$=dK81ANXn2fm`X!^YE6NGb_NZNVptSE
zh}m$#v4SI_7%60w;Ap`yf{ew3jfmr-7%$3%D3pnb6OGVGEdM9E!PF>zjAB*=2ah@U
zs&>*(QA~?sdK5oLF||q3)>=vP&ZP#&q|V?SjY*xw5*9L3(DX^-h})fJ3!fu6H;Q@e
zcegwJD&F4&=SQ(X2vb-nga+h`qWHaoo#c0R9Cq_4Hb=26%DuSpM-*$L_;a3PMHDNe
zSQQ0Nx8!L%tJ#SHCLSSl?3n4p0**Co7zG@BOT&dr>u4W^W54bCXV&#m5I01zku7#Z
zDtYtcZSu}Z;E1#(img%n9mUxwwnec$ibGN4X=CC0lO4>%G|SE?)(o-Ucw^ob#cuLE
z);)rb1qtMPqu3|j{elMssUM7jFBM4+vny?}9Esv+6vv|AYV;gGSWoV=9%pmCYdRr#
zQt*`EUxKFvX>cZrhSN<XW9OUBMR6gDiyRhM2<DVCeI49pjWg#jMez^aDie3xzRa>6
zm_YKcC|3lp3SJYuF8H6|4M9e{8O1H(oT)<Z-6-y{*t=J47{mQ29z;<urh6Yo@rc7_
z3?IkvIEp76NG<l9G0w+!Jmu(j+?g?kXHh(l;zblMqj(#|JGQstj#p8<j^d5*%6n{2
z@+Tx7Hq((%znR^UA%-fY9NZ}Ei;|8^F=UP*OAMjnj*;c<*<#2V13$#9+GKN-bYzbq
zM+}FuIG*p(CsE%k-#J$dxnsx^L!lgwg2Wg;i1Dyy<clGH3<YBNFa~orN2gMb9wi;j
z3<o+M81Y3k@taX8AH`5Oh7vI_@ggy7E8!>}<JXf+JWr}<48>ylp;S9}*@%O0nXB)%
zm5iZOOg~|&#TFA!t{I%gQYMD7F?<?BCCP9($?7LDe4f=&K8EDuPQ-AhxFfeID{rBK
zgjS59U1<lsyxGbzIATbQ;WL&%45k<oVz9<wi=p*#=jjp-a}1Uk!n<q-_vo(IUR$x8
z4&FGOJ%+h^YzH>kK98X)6EP*H#!xMWq!?=Q(lJz*tUkzMuMq>yh7L+);rHHcs})1X
zY>wJ7q_BKSTFB|F_Ub+N*~;y;rNvN3^4S(e%bv?qH-`Sloh1}&eQ5&?1lbra6iI9p
zL*p2li1MZ27lKU%n+Y}-Y$3>4oP5$!_*aI~O32rO-^BE-M`_lUMa1L6N2Bd%w2z@f
z3_lOUv|;EN<F>a@)8S7?=NP)g&|X6a4P9gCMw=L>#n3&59x+T^U>Y5RGlrg$vKB)x
zAs)eR1$ztfa(#q+7eimxqt8U8AMaYk?+u#)LI%d*65<vdmD^5Z#jx?l;1jOK;Ey37
ze8!E+Q6WLWkYHFaB1nT+3_SCWF3!TQoR1`3g18QS5c}F%^I*XtF$@(#WmpV92p?`J
zBVrgSe3W4GM*2P~EQc{MjFkc*AIIJ*e1f4&jA4@S$%0ef>w-TD{`6j1U}D`(k6{M;
zi-wXKeqo;3LE`YnF^g9mYnm6suQAMy>5nUO*f?XTSKE5zg5}ml6PhH==i%=$G>oHB
z91COkjjc3}<Tw_^u$T=#t{)({B!=JF;N$v4^rbN@i=m7&xl~+VgTI`~#;`Vq6*1kr
zQjla-466;kMo8Uaxz@$7K88$jWR7D)3>#xOAH#(h{)}N$3`b%($`&5OmKgTNurG$K
z?E5k7jA2&{+hf?lwpSpnRdIb;_pDzmu636AsmWA!$FPSDV4a2hrmgO0rL7gWSc&^%
zILJYXy(|XW`<hy}m9id=;rSWsn@3hEG&?#e`53!-Y3pAxoQ~mm3@2jxy7H4ToQmQ0
zq+}Y<a$j2V){kx0U8XZJoR!r6=D<=cm*rP8ZO+ADFP`gtvKM2x#IYrYyOO2LF<gz|
zS`7bi1d|J0VM+dKet-2Zzf8Iw!+&CVi{n-CTz}haH)6Oc%DJA&ye=)7=i4#Rm>Ijr
z!9Rwl9MWTW5W~Y5o=CF1g-5LJ7<g-RTPvrrKzJcr@mw{Tw-{b9D2BH&ykyy?CBKT{
zwcII<X~~pHc(d>1UNXdyF|HR2^T5&`eB8;~XKGob(sRa<D~_zfvk7Jwq-BmcexIyI
z$sI?YI10t_Q5+vgXude|$B|d~Vp*F{vjXBR80W-hBreilfew=wp$m%TDjY|VIEou7
z7Zp-0j^B#qVszS*ln}9`VUu&MwR9XG$5AGZvLb#aST2r=hE4f6Ap8@-3Wm<=<JCWn
zqmrRij)O%<k*<n}rZ^IWm<^lF#d7gIxizl8Eobkr$MrMf=^VTr;hzguHS}sik_4*@
z))3?->U_4T6$gJ8QdztoSZc?S5=YZMiJ5L#(r2V_3&*s${wb|a9Cg`!Ca2XCtRF`M
zA?)3B)EmdqgqCqQ<M@Ip#L+2^&T%x0qj_9EDzRl8E#ml6@bX$qtc!)1=Tr&_L%)in
zm6(x#E##XxS_^3tN832s8KE77v=`j!w$r|&aPFyC#+TY9j;?WZV@`Ud%{}hy9>>}b
zZCnDAc*M-Ve&&i6z9QRs+}SgZUU7UINAEbkk7Ga_ed72oj{Y2ZE|~jr5bKcGkHvez
zOmeGZva@LldD9DK9@ClLChNdBTyePL`T?D*IwljnH_aaLE?b!PZMSy5IMg_f#c@0i
ze;k20Cd4t3Ls=Z5ICg)W8jkBr>Mk93j;!a%F~byL&BpQdVMi>EcpMsU;gEHCznbZB
z%sXWs5y#e3W`+)mW3ZT!4`KF%4>Ob>;utQR$Jo(eq@j<BW3=!whBEfOnc#Rqo<24y
zj>&NxiQ{M-Q{tE!$I>{K#qncY|DHlOI}U!r_$iK`4P{y!(}m9v{6%o45ju;ldV(I2
zZcZF?4Sil5zY3op#{!Q3!WRqvX4ou>V{a=x;u2AQH}pPbEX(8QSI4?9j{R}05WX^w
zRdKA2V@(`8M4`bSas0{r|D3osju*)(>qKAAMjOXQQ5bY8LlP|+x+#v$V!TCg8w*?r
zLvv3{+%7zDDwW=yaWK{{QBwX&-7U%P5!`D;Ibh`BP#g!1AjUc@{OxT!(`no{rFl6E
zCpd9t>4`W_a=g-zSHr0|cuw@|<IZz&PFzp@D~{8w2$%f~3!jbojO~lQRrk8=XN8lT
zkK;ld7vs3Z!BayfjmzAum*aTOdyM0sIR1^}N*q`D+xnaNaU9p;xX%7A-v8pb5y$N~
z?uhrM;4QY>8<lBH#|4ALyK&r$<GzG4i0d>d^353Wp@<}pgz!Q1NgPk(cqU#(WDp(S
z-V<NO@miEuhR!R#iQ{b??+hh_rms?@F`xa2nYI6=z?;gVA**<^X~-=kyM`PZavC<d
zgmC_+wPgb1(&f?cJ`edc<kwJ8Lm>?XG;GP95XxfBm(%*827brn_bHANA89D8A+pzU
z>wdLIc^pMF6xYDF=tHU|7S%v3CfL7JO1Ped-clO3WVfbhNYzkU!^axRXxR6irHTfV
zhO(M|VDy`1DdjW}%L_uoCqgO+Qm?4tQ{j~aD+_*Rgx1<=Nzh={xaSzEYOrX?Udd+F
zVAJsHILpv!nTU1`4h@MKwoOZH{I|LI31`PVwr3X{w5+BfNkc6$uCAemhMF3ZHF(!p
zULCW1TPLMnb9<k=j%np>pEpZoQne+062?u_P)9>64PR@htKq<M3tbBh^@P_qlm<c?
z3O3TvSV$8i^a~+P1)FJTZs`B^=)u&!6mLtxuLQY5;TyxIosiZV+89b(A$&q++zfte
zM@@gWq&u&nlZMV3y71v&!w3x{HFVR^UBmYp259J^!AZqy`c^}+KTN};`srOgHT2SO
zZL-e!H?X&cK8(BC`JIOH#Z&uf=&R{p8K^9IQLVoQA1u^~12uhTY?lVNkX{86JQ@@Y
zss_I(k+p@3{E+Nr6b&SAE2Izu8iE=$4e1&}8j6-liD-yYyxA$Nq1>BlWp8z&7}F5f
z(5y@fd9}yZ&d%iVnd%PGu;h0q-Ea+qg%1%NDmcst{Xq)kz2&q*j!_y$Yxs?wLc<sh
zV>SG!;U^8_G>q49{$ib}8YXDi)G%?fhAA2*G8?bkPSP;9Z`H;nYyMoaX1R`*9rvm|
z+hjR6%e3*Lg^N>u*1$cuW^0(EVH(@Nh8dbZ8)v45Sweo{wKBA&!l^h!&dDLp)i95Z
zP{Vv?rbH6YET+N(kr!xKJ;&1PsAZv$O-JgGm$O<H^NuuZW<S;NJNuD_^%^#Cc$}WF
zOvAvG)IT&VXPK`xtq@!(Nbf49WAHUXI85>A>b07F{`EQyZBtSi{a^<Nx0XG=%(_v-
zpBnx<Yo^;I<kNR;w(>^2rac<=GLss%YuKS-rv^T*>=tYh2OnB?34i|>L*?8<%j5*>
zJ`MZXN;L$E+s?7GR7-uh&2&(_hXfC6IHKXGhGT3hqMQ*tA^4ZzN&X55nR7mw>Cl}P
zFU7xwoE4-_W&3)2^Ln-m8ZK(M#4KsZla3G4@sEao`CFjjfrcyWL`B*j;~6d*uCmQ*
zxXylIt$tI(E#9?;8#H)e;i9dtOm^$m4!1d=6?fc`SmUqSUz{*S?%A2bJq@`QI+)Io
zC60$09%*>1;hl!Znmz&kxrP@S>Zd0@(ePBmGY(lNoIF=0&k09^1pD)N;*_IlFEzYk
zV>_DmnnN5r=4Kmtg@uk5C!9PxyV7!JhIC{~N9J^7q|0URpGDt9Jxe;WrXy#%zMEXO
zbYxH0vzJ2*I%c+KNl(n0!|tr2uc645j@;>Zy;h$^u%uSv#vRVQ>ByH3OFFFS$e)e^
z=_r?u^65Ca!}(!4iu^ya-U7&qqx~Lc7YGhPg9kY{vsV{i*u~vl17UH8gan6cbMIWg
ziv$f82o@{}4nYD053a!_1PdDUf9BzxUwu_yRoAK0r=RZW>3+JeOi#B11s%xiKt2c7
zwXo-RpnyYPe#}}i`=%_m0gr5l?%N7EP}G594it8vhy%4wn0oKD^R0?r8EwTK_}qaK
z4wQ80JCGz?w^{qy2cJrvaw>IT?L=;V!greB(2t=h=RkP}%J7N_wz7h&`r7kuR*v1a
zRB)h@1C<@9=)k_pwq*<TgYS8^xZ*&9111N!GbeQ(ShF-ie@TI_gjgN0IZ(ranhw|<
z_@tk`sslSRm=lFp5v162biHa0{b@*b2X<{VbII|>V&+;7BsnnJfiVtDSZl8BKph8?
z9ncEY*wN9P;y_&oM%+<GIZ)4m`VREuA1n?uaIkaH+JQC>G;*M^1I^iP6O|@{O&w^)
zzhbsosW4>dn?7=|C`k(kS~~RS$W&U9^i5BZAMwPt4s>#$vjgoMXz#%9T{CoWAZvDX
zlyYdp?H9P0LKg>kiEa*bcc7~Sg-YaOUhWvsL#{irgkA?4-+R{O3kP~TFxY`14)k$=
z73k|gssmq&CCylPKL`3dFwlWP?61c821wG@%_UfK&J`c)OiS(yG1SO4+<{>RXH7;3
zA1V0HCpEY)#H5D`n`==P+tWHVYSy)V<-petjOA5oC(<PtO!<<>(XSlH?m-R@CO9zB
zfuU{;b7PVNlj#g@6mnyV15+Ki<HTJjra9oC+c;6q38w=t2X;HK$Dx1Zxg7{N5OlyJ
zQB}~(ybBY2!fB&9;5Yc}{&67(!VdgGh0WqX)PWWB3NeTYE_NWzf$73$I55|Nc@E5!
z=q$nS1X=QIA#(%^o~=7y$O0oZJSr<~zIR}uD2og|YfJqFge49v73BxPWk%|92Yxho
zLnZE|)w;@opA2QSkTrtya>cI|vd&0d@4yBJI=<9b)Ngd)XG0(8)UUWnqMHSu*3n;-
z*y6xeiEb0zF1SN*r{FF@TK?w1p?dlv|GgZQ4m@?>nI!%0z%@>=4(xZ}fCC3bJmbJw
z2mW9d2M%*!zD{>S^do{t1&;|H7i6(@PU?03Q=%swI3?t?kvj2<Eawb<#ewq%zu>?{
z;g<w28~V?a^!xqGfvbkHV}INY;r9h^I>1Mhw;Z@F(K`;@Gc4~4Idn7bZ$l~Oiu*_S
z14DV}z$4+01)muDzd~l*O!wS@7xZu^ayao)#J3K-bKsR>`Ja&2f^P(?HjSHpN`H5$
z`U2&>10Nhn=R}<If8XmqaUx!LdPB+JL`H*u8;Z*$JhNaH!K_AVHYcFeV#&2CnsbWy
znG?B$d@7h*FpnV3@;Z@Ecz#1E;KbDQ`invZNfss)a-y&#6>*}36D6G}D$!zs#RWeX
zWR}aBKPzQ$2q`VteR0+@hE87Ii3(24abm6$6`iQ$#6TwoIZ@dO#fhd)G!x?lCu%!U
z#|e|v#O#E{39Az}C#oBzjhdI`R%)Exi9|!G;zU)0R}(V&LTA>kh7&a<T1zm=uo>Gc
zYqG(cIFTZ}t`qf~sBh>Egj{bG*U(TJInmhQw&l79j#!t}T$FBtEu3g6q?HpL49nI|
zv=QFcP}(`s-ryT*=;d^DqLV0{4ZVvKT@7v<S)jY{9!~UhqL=W#M(P(%^cLPn@JmBK
z-aRhW;QgHFFMNQZEW4F%uoFX^80*A0A`W$8n2~z+m3=sycYN{)QAQg2C?TVr7-J}3
z3HjQI9ff-FM!t1ooG4Kz&K9muWxNv;oS5juB+>m&Ocvr4oFX_?kjB%5IGp%?rrs<J
zE+^bhctls7@Cor6_MGiCgJ(>L3kVMyN=Qi9iHM;zJCreI@H8i;8+?Y4nNG|yl<$Ph
zcH)Fre{??2iTO@!b7H#_3s^lTesp4m*!c46Rb422krRuBED@x>RLBobEEBTa&~1Y=
zuXN&|x%dWARvG$gC)No6$xzlhu}=7UL#gsZv5mricH$QjL*L@WCWCJllDVe-V%k>W
zs}Q%tiJeYdbmEc|y9~=CPW<M?ZYTB_%I{9>6~50<ww2dki`(zS0Yf?H#2>;B8OmWN
zKEI>4)lnyoiFn+JQ%33uA%8k?Qb^8P|Lfn=PMk4p&I&mvcwX>=6Uir&SSG_|CvF>-
zSA_iK#8n~J1g{I;5WFeKT(>yA9MfOS<gCkgb?-Uxw-c%hUKj2=@ejwl3k_U&;KV~G
zK69a<3yyP{9yyW8h0HEIcH)T>|2pwh3QXt1Go$3!LY@o05Pa#xD<S_0@}e~kWgxzB
z;;ks}1m6pOFl_3@$HlqyPl0&B^nw`#DQ0xx6NBe3kvWUObG!73I;#uWM9FUGIfUeN
zA(x?i>cZ8X|9b~Bj|+K4&u66OccFmrp7N!okPC%fu()7#p@<7bC8>f7#e|d+EH22p
zeJ-Sg3ndMOK2};d45f^avM!VpQr^%zO^mB3ypmvLK}9e@&?IOU<h9aG)E&m=LOoIJ
zE+o28MR+a4rmB!?g4JE9A*7~}T5eRfB;mCUrH%{9!cz>Tt_%A%=|0RbYjtWv7aB>@
zP{GD7v~{7K@Fs#yU1%nxxgc}3aG|BaTe;BM;B8#EHAgSDy$c;gOcm_tLJt?X=YJ=O
zb~fz0xX@L2H^J_PUPHe5^pt2X7rrp`-a`5ae(6GALyx|&^mF0)U*`UXGQfp_1|KA3
zunR*BrL0nLm<z*Q7~#T57p55cC>Oq^^XIdVHk2_gd}Z*jT^K9;8$(&SEN-0e@q!Zs
zCkjpyoGi!&sna3rR2M!}HcvAYhYL>OE<v}T$4FgJBhKf7=E7zdwz%MTA>hJt7k(6j
zpx`_gLN0`bM+9dHMg?OoqzU2Gr@Jsi_)Nje4YE;W_)em;1?RXhSIFy!>6kR%g#|8r
z?*eyE<rrKdNef+AB!mWwg*4f!&zVbI_`%SZxlqcUgW?JoR#J3flMAaP^%ud_F02vq
zlMCyGtQBOIbwaXDi`yV%qu|d*>Y4uf=-}c^B4-KW%`tIXUD)Qrzb-s=VY>@ETsZE+
z2^V&{u*-#GM&93CIN$=$_1JAFdt5v<@_*k;_whD`?>CgCS@mljbm0#}Ipo4&;YS3I
z8hX<;x+R<FPZv(QFsxAA14-(bq5dfsP76Qd!e5-ATsZ5(ITy~0c-bi7f(sXgUow;t
z>Ef;!{6oLY*M$EqcwO*@3pa(_61?leZ6U159lA=M1d@A(aw;+IzQO+yvhQxXhe941
z`ePwaT=@8v?-@sv3-9T%F1(PWj1}W@W%=x-@K=KW3Gza(g}f1b>%u!jNBYmwx%C##
z?nVwFaf0z~q!*IGjf`%5BAjMfgk*9fv!T=~s<&-cH?kQ@LUUcoDbc)c<P!3!k(%3$
zJO<x<Pxp{~ZsZrGfT4fpMuDC2Oe*X~5jO_7^`oPTx>3xH6gTR+QQVEs-Kg$H4L9ay
zvz2h;on|ZLMoBj++)qwuW?B8fTG|b`QO2zwl~~q|a&9Ppq;f05^0aZo?#A!?%nTLX
zNN~d>(Mp1q1r<TQcSaktaH|^@A<s6HqG%IN!hhisg;x=*YUtJ6`adu<;M?3a-KgzG
z9XD#Zk>u9j@6NY6g$sJQh%VU;o&uB5II%$9WGc>)=Eu3M_1tLcMl(0+yV1anhHe}<
zZsNM!#%?rn<G1;`&G?`~rHLD-UYkjpyV1gpo^JGVqoo_I+-UFCw{>mpMx;pfwrs{R
z<~bdEwvp)CQ>hf&38&cLxTS*|9eJ(emQI3a_nA7o(Z!9f6743~L$JFW-xo@uWo~D-
z-s??Yxb@u&`9SC822*c0`nVBoX8+QSzHX!n|Kn6Dm5aYB{oEjWmRkC=gc26=fzq?=
z+(AMHvnV0ok1IxTxEmwfIP1naH%7W~^^j?-8{fDw$_*~Y8%-y9VT!M48{>xUsr@U#
zuLXNLY~Q*u&W&YmEO%qP8x!0Jur=J6$UlGFaJ%7Qf!`)ic4Mj=)A%ot8;icSQ8_T&
z;&8+1#<nBrU2Y8AXDw>2!4~F&W4;yA;e?{P;dMiE!|w*8J>T~AxiPs$CX&P-Ep*za
zRrFmBT>0Zetfw2Z-1v^|%%*T-x?A6If*XRxSi(3Z&5a}FEhG%w8+nEsGu_x1Z=*k~
zaw&~wE3@60<HkHURxGp4b>qIZ7sH}ol+?)z-_<3V@5aIWRTi*4-6&i)aiQQM!Nr10
z1eXfZ;0HJOItj^-ER&Ap#%?!Oy0OZQO>S&<W3?M=+*t3%1~-0k<HKCbS~u271<3W2
z(@&*l*kOIL&$Q8vpWR%UiC>v_t2xu@)S(;eay#D~zgc+;s~(x=?l5g}W2+n7gKH<-
z(~X5yvu}4}ha2;)`fq$5VDxyd(zm8%+)~r<amp??US2ju&E`FB>~-T0Hx6-T$X$IO
z2NZ`42Wcb=SJ5BfExWm2O~R@cX6_99{@Y{*J~KMZ#&qL^8-Mb4T9}Wzam<b56#H5>
zglt?cUhy|8L(A2clN>T`oOa_3N6KmoFIpjo{mdaHI8))O`;i&VeE4$SjSFtPV3p{!
zZd`KXo*RG51a+BLcjKlTSKRoEmFyUI)s5?tbWM=&Q(JOZ=Z8YJO8QKAi!LqtZNW8n
z^grwF3io>T&++?i{KHlf<$)Uy-T0Tq-cp8_)ThTsoWbZ7w=C`LdTCGGu$D4EIjMib
z9zLr7m-S3CKBtGL(+w8x>i)`&_v|}2{*$EFZoF~ht#BH=6LR}NPx4Afvk=pH@QFwN
z6o~U6-h=eQGYC>V@P~etj1pbd*p|tI%pPQsXg0yDMpDrN`nE8<P)-kWdGOGKM;?6Y
zL2eHgd9c`nJRal~<2fGW^B}(m!#x<`K>-gw^PsK=^*ku(K_L$+d!Tqw*n=V-l=DE{
zpFDVUt)d<j_vr6r6{GQzq)ij-mCIQ_7o~&;;q}UgsY*#9r36cR0FVA%v5Z7%P}ZZr
zRZ3Fc1OD4zL6D@P2bDb7wLj_L9`g@(lpfnm2_Bd{FnhoQQ`!zlDg54Q@t~Fm$K%Xa
z4{UN5b`RRf--(GHR1u}B2i1h^_(cB?v%2saf;9yxK3*4}<l*8yr9~@qZ4dV%L%s9K
z$sRD8BKWd|nY_LS4Ls=SK`##)deF#&ZXR^^ps@#ujje4wXzM`}DYL0jax)K_8@z>(
zmL9b7ptbNVh2!=v);)xwod;b#7?^BnZ`gP6pri0kf}IV$i;zvT<92+Wnf9Mfh`YBg
zu7?L{?~5f|HP>%sKl57of>FCU)q~z1FxtlhcjL@ovIno5812jcJz}mm#@<hg>Q&d=
z--Fp!^8gPHo=^sQFvx>V#VvychX@W8%zMl-j1F_m!qkx-jPhWr2h%(l?ZFr+YBHN^
zvGSD%UrRLSBYiZD6;ASv2j2=GCpcbkg5X5KNrJR2RV{7`z36o6lgz~#b$H<PAmBmJ
z0~haw?&pEmgV>dH42$C8JRXdlY)f9v^W&gNA$||q|7UG7S!v(Y{HIy}6nOWqJw&hb
zV1@@XJ-AU#AIlLBd>8ajhbT+)AQG*YCOBP?QQx<=Ssr}H_K{-y%~O7~nQ8ysP93jZ
zQ|5|3PjEiH$b;`aC_1GSQx|%0<XPr5uPyaj=+|1}!BP)?@?fnP|KP!o9;^_)%!B1Z
z_8iguVWn{9C12&iYKgAl@ErcX-yq{xms%&{DZ%xE8$8(P!OtEH-D^4`$}dEZ{=|P1
z^PW@w@L;nCTUg1QDO)}GO>DMFbh{w+9YS^r?&2VNXr;K@gFRxr*Mt2+_6h#(L5Wog
zLu7E41EL%hWVNRhioY67JmdlKFk5f7LUNSualmwp1G%4>;kXAUJh<{y`O^bSEi=hU
z_G~5#`DrQVj0a~uIOoB65AMn6xFGrs57w_TUF5jiRJYdY)JvQPPN!aGQ9{W75^~jp
zYaYyhqVP%Lbq|Q-++_YHr;+~lTY|SexFh7QVD&-zF7$tU@OPQ`{g;*dyx+^pKY|Z9
z9v`PL`q+afoRd{#Q1Pz^Po+xl1)q8F(t}qXJeTMTL30MZPyZ86@<zyOPP1?I{}bLy
zln1lE6Vm;({vhCk2kBIq{{`a(srOhNpHampD)Okvt0I$%%qo6JPR_0BN5*GS^(9g{
zRPKdk&MKHqMRparzgHM~{A10jBA2RfZNa0Q%MZ1Gs-oJw1fGU4YJ`o2<WrGf#Q+rp
zRTNP1nTnb!YN;rwqL2zjMS_aLDvGEmp`xUUqAH51D6ZmjUU#qZ>R)BeE~_s`BEuZF
zWywW_hfbDKQCdZ1=Dlj>J7rLD=a~|3H-{Tp%cwj<*;-abIU(f*D+p4rD5R2#zjE3c
zy|*cqC74v0d6=1sDk>~0tSW3O>{2+ty8Lv-{HNRU%MSaLc*~-_$vk19DsNClbrm&O
zhwl}hKe(-VlJ9okG0p5;M9si0Nt0C6R?$&KClz&6B&(>eqJfG&<*X?x>Z+(G{MV(*
z?6u~Mt5X>!{A?aN-_}q?dlem2G*ZDRLt_<9R5X=nGZn3bG#6|k*i!J-GRsH%)+*YF
z!f0C+?Swbjr5Cl}u)@7ti|kf-!f$64U04SdU#jS;BIobcFI4na(M>p`-G%f}(bG_R
zsrnAyOxl062fsn_RD~74*X^q!RYgA){n=<4leiLo#4;N{c{6WQPR&)+a_0FjY7SB{
zScOA{Q^gS0N5wc5<5dh(F<iwM6<?_sp<<+pQ7T5WJ}qrG_L|BEl~&~}Z3o)U{Gr6%
z?>zo=>eqBg72l}%R>j64wyY%+c?QILpVBR3LV?$b^aL(xzJK02LB(VhQ&db;F^SGu
z%Q9?a;@>};>u*%1syMnqVVFjT+@iFuRF|!h{GhK(g<D04?xDh?LZz?1F!@z1t<ux0
z!ly!0F?+6Z(Qhub%lgT9g~56>IiMn_V&>`8KQmd)>r5>x*&-^UR8-7T5mS+-V!DbM
zDqiihapQuT*OeZnYcTLv9vkYw@AmKL2^W(YX0z8e)*Z9UO1?2>o~L5IiZ~7N8WyPd
zo~`7?S6(bsv537EQZA@itYV4qbF3!^tcv|A4yahBV!4W+Rs5pjM-?mBRwL}IRrLDH
zJn@GtcMd8mIbIGbt5lq-kurFhWeqEN$xNG{RQ>RawSwzZtXHvtc_mt|RuvvW%T#U=
z`71B9(y~j%Zz?va*sNlUimfVkh`vpb2HRCM%w2<I=#?%+hMg+9=d$j4s`K3{_KM{m
z!4ai(kzt>T-;EN~d&vh?aB&pFQ5B~joBm)^l&~C9aahO^L4K2`cud7{HuwkA3Er0&
z|Ec06oh_p1yC-EZza3}c;iRWkoKbOB4EQDm_XJ?!Y|ry5o@$BfhFUJFxTNB;iYuHC
zy~yjuUn;JuJO}`<R9sVWUBz7$_t?uX%{MqAW}0ttB3-K76x>?Rd|O5QE%O}}H=_zu
zAKW${{Gj};;vW?cRNPnfH|eOXn65lj@rbiM3xB8-FK2tK;t88&yUxeXFq5oZp*&Ub
zj9s8&&M5l}P7b~7B$;c~oi|D8cfs_Ziq|SKdhv-DZ&bX0V0*9XD^f__s(8mq^}d<B
zcR|ahbIJ!5>AZ;Z>N}*x3uf>ly^uBctP~mc>`%?)MP@H@czMv6jXyxLc#++!e`;j)
zBAXXU+f3=NTN$)FO2SC}o5S&A_MBei^5Ro3a(lsp%$km`N3@Kx&*)S)pBMSPuzF$h
zqJWoc_E6ai#fySo6!LNvs8WuVAFmYlqKFqoy=b~EeXb@Mim{%**vop+XhbcN;$D0%
z3V8`3CA}ymq_iLe%Lpd6Or#kzj=rsM*;RR7I-{+EU_~z~388YfhAo4V$ayTm3zJu0
zs(NLNnP;+?y|8%o<6szG6gJzvNc5tg7yZ4c;zd<2+Q-{!vQ1tkmrSWq&5JJgZPf)y
zYIw2nbn3Yc_Wh?*Yq71o`p#VpwY{k0MY0zuUexuXl^3nOx*OEv{R*k?MFTGy3U4CV
zNU*UWEqPcEasG({%|vN#=q=cN!sBL{Y0yS^2QNAbX)D-{br$lmgic;`mgtwPwijK!
z=;1|AQM!52U5Kw;5gKn3B<bZvZ=-}Sgxp?d>SHJiG9~mCo@yw}KER8CUW{bto=F|#
z#bB>&v+TtX_I~z+p<di9p&xg(IlYz9(}iuV7F&jU^$h?=cyar5D#<7>ACBmUnvM3N
zZJin<Uwbi@z2k$`hi|<2){DKg@nW18<Gl!b5%FSz7ZbfWw!B`U^tMS%nq_l%;q+p%
zh*P|n>g8@f_@uFIN}WWSacy3nUWthoo68H$3%?g`FFanTUU<Fmd2#f87pC5uVH<YC
zR^m+R`Te$EPT8jIw*^>^DKSVFoo&nBCTqwGZh%H5ZM;3|MT|qni%njnc`@CK<zD>g
z#SAZIdNI$7`Rwb2#93a<_F|3~v&@O#c|mXNV70v}W2?L^b*@~uSYzAJVJQo|_}+`f
zUM%7K@5Lf7O3$!W;LgUYQ>vUv<&ES>wJ-JJ2QQX+QTvQN?{r(AG#d%mf;KsmO0vR>
zm0ql;2ik0_yxiys1J0zb<^4{#t?}X~xz_lZ`b{y+>5;gOZFnY?HYw9>8|czr{OrXq
zyq8S2iqmauwD&Q+{PO+kvcSz=Z1rNB7hAk|I9uO8naHr+i=AHV@?wV<_Qp1bd1q4j
zC+crreL>@HLAEOEzlXEXS^JUZiNAZXpFU97p3jE^UL5q|3a4K${_x_EIKz1_4vQll
z_wqqGj<DvOH`;aOo#vR9c#Ks&lUgiY!k=E8^y0J^XS_(gWjiI;TF};f_)O~aVl~dn
zCC+hBj7;I;Nv;z7GLwy*4t7DVa#8S-;AJm1v`WgHnsn8RYhFC(tjG_A&B}G&tQU{G
zxIyR4Wxh#rO3}A~ruPcJBY0Qvo{{>u7x%sR$BPG|Os*WyEZ>`KO^etc^L`(i|E0Gq
zGC%R6*ZibshfS+`+MjyyjM0<IoW!KIr7hey;H4L@IN$p4sSp2o@tU6F(_avNm)H7+
zE$QQe%*3}|yxf#>aHaB&#jaG|3w{tx=hKxq!Fa(@-ECY=$Az64efY$u-(4mtgbqfY
zS(Ge-Sp~BRW*5vMnA3-s8LHEm)yOSM9-n@GJ&Voj(>J5urr7F+y5;wwfDfPfP|$}G
zK9uyKkPn4@`cVa+`%uIOF25}116QkZ6=+c(xF(ZIaUTY6uzR}MZ=Ffy2Kz5dq;P-5
zQa+UTp@I*kecaPB0X}`l%af(+m+_&j4<zLTN#31FooKUEq?r#1K2-9dveb<|&b98`
zmz%-FYB&<jK7A>EZN)|p?3Uha^WoWSrKu0ie6ahF=tC7Bs`^k*bS72vp^otCKGg7`
zrVr;DBqfPb%ZIhQGk<=~p75#`Eo<|BuUSb3j<hHHKui&=D@eV*4-I^1$bO8oHS%Ha
zRqKV<*{L%$_MwTCxx8F5qs@J2;lpYl*7(rUhgLplKKOlT?L!+M`ui}zhqgYn^Pzr7
zN%f&UFELT+=tCzTI{5g%pJLil_qW^$oqg!yLvJ50WHA4_!Q9mcVh_P?K1|GQ?k-5N
zr;uKPUl<|{-j=ZR@qzfI4>^le?<+X@xw#*0{#Jr6rGJ03J6FO$9|o}peIUR6-aN#I
zq3q%`%k`PcFdv5dFvf?kcvGF~jbNW1wvP0nQF?pVboRhT`zRkq`#`d+Onu_lK8&T4
z_!Ot$H$F@dLgiZ_;{?b1u&=q5;zS=Ni89%TsY0d*E*VsvsndLLNR-nNPs^gh;1b2{
zgGY!e=oNf?ucFTfBFzHyY9AK)u-FG~@EGzT?9)Hs$oVBR;zQJ@f4;}qM?9<Dhcq9i
z`!GX9J_X=c)|o!c^5HvC<_XRgoFmA*bA|L6jrl?r2!3y*Zj_JaDpxZu@!|Zbddq$I
z(TAlz{J_>5tL%TSlv$H`8Jq5bJ#Bv`e#u$k)3<Y3<-<yPX;}+jy&=9kZH{}I^(XqO
z52t)M?ZY}B*88y4hi!Dlv#A^8?tb-QBPWDCrk{N{*0CPLFG9>`Q#bkWd_;EcoweDg
zpZ&dsh3B`wENI`(%lWW}o=mS>V&ciCJAK&Y!*6twc?m~%r|f2#)6LZTzftB{Ec<-;
z-G`$r)`!fs?fW?|(Mk9z;KPEH>Qs`w=0m~{`*4JVWvY$h$<^k$xsoiWIy050f*$9P
z_knA|8BPfKQ;<6vy;hY>mCR>+IP1fGAO2xI*=|1E^x+l@%x=Em!(|_?_;8U!>5BD|
z54#_l#%xQv@?+9pK3w(Tx)1aEbZvGvm3YmEYOZ=D%a^5)-;gMiZu@Y@hkto`<Il=n
zpT050Js<w|p<`6xN_+17Id`dYba8T*w8RH=_%9NkalRd|@Lhw4ytRy$NAxZs<WE?R
z!Ji7@{v^+3YJI^m%NJ+Xq`vgw6+Z%ec+Cl6P3jv#5`HHqzV+dqDDMS77^&$r{iBKo
z={01~Fg1W_0c6zhi3YPD7C$m+$gDxt;MI^tLskvYP)0*G4cRpm(NI*wkFey>xM(w_
zkcONZa%uQfLv9WEH5Aa0N7MIb&Z{AxhCTyL<SQ@rJn+aoWrTV8UQ5DYI~9h{G>{h*
z<6p*PDXi%qb1ZX!FR7S@;u=aadq>OZsF}#{xrP#=?B8x3x6NEicxgfYuR?>e8p>%H
zpkbhf@){~=Xr`gLhKd?0X{e(iSwm$FiiR2*YVztDOd8&1i#KbS{+q)89Ju!j_bM3_
zQ!E;+8f+Ro|LIW%y9Q#SU=_it8mbAYF342Y-<>m|mWCt^wVA!6ZBSwTc_R04=5Dt;
zTia7K)YZ^XLn96KG}PCyshYU~Z~Qlf4~v_Pv<GLJnJf1-{lDeL8k%Tm%1Y+3oY-ue
z@WMR!Y$_|sqYzqXXsMxthK?FqX=tsXod)f`wT*_hB#p8&JIzMTw&clTz3{DV<L>P3
zHTY7Jcs@=i4V^Xg(9lyu7Y$uCbkoqC8P_FMS#1Bwsq`CZ306(Ie%Y2j&b+>_rI&^;
zH1uXW^D21~y!nzD`0TRuFmvHCw)O?hU$PCKSo#X4YUn4VzaaI~W0gS~25b06!?zkA
zB4engZwSW!qlRf1u3?OZuQZI%FjB)P4Wl(Y2_<E^%l+-^aYF+J?n7u-l?zt$*HX!`
z8W!!(J}<Mi)f0u^2l%HJiyEh4yoL#y{zH|IXeVlzq+yx{hla@-rqIt>v4+-dW-AX8
zV#qX8IknyLWPsVJ!KJ~?j%MKxZ259k=ho{y?KJllYnxk^j(Zh*lHI5A7)Rw-b{5-K
zgI_~H!~2s-r;6HwY}K==_1>F88p0aiJJug0#b~b~N*}&!rp=e%)|#$ihK8T%>KbNh
zn5AL$+0>01zSA(9uJYKtTEiS63wd`M<_f1iPsn`11sc8=vgnMBNsEOq7i4sakfj=a
zFqCB)694VXq#s3DA-K{=U8UjkjlG%5utvjAqOUbl*J)U9@C_Oc&$G~sb$0rbHlDVT
z43|1=*04pxJq>?r*s5WhhSM6(XxOe{hlYb1{?M>f!!8YbHSE*yn}*#So?DbX8fsOv
zH5p=S-Y&UW`UGx<=6P-9v9P~u*stLL$Id2&zlP=~n7=P-IlohxFemX4tD)h9hCekN
z(Qs75F%8ExeM5}snyimHB`wXJkSkMS(t|D|yPH!^nNHH9GMZ0m*l^pju5cG}27ZG&
ztKpo6D;oaNa9-1o8o#8W(8lZ+G+dOrO}JyZ)V(f0G%s_6c8a3`H_W-J;hKh98g6U2
z&M8#GO-=uopig^S{}svHKiGNQ#Hr)(asB_0I~wkCI$f-knyK{dW9CzS^7|V8;q>Uo
zXMQ};@Q|~sA6fl)q~S5AVm~ta@kGPF8eVDmkB$Gp{8R%cI(j4dGf|#vcp-$!OAeNr
zi6mpTE0a5$&xOpdHN4UE&mD%h8duBUy+l9ok3|3f^mKl-JgvkD(k#8`jFNxC$={F6
zez+T0>s+()<;_|-%>1Rl=BAQ;f|AXT?0$UeM{YlI_`zPw=|?U<3f=E}<ZLRVJa=I8
zsT6ic9zXK>k<X9(e%Y?%LACY2)z~;Ag-yETKc%bL%(uV_GNT`*{eT~Z{V3u`34Z#d
zDMkG#=0|ZqKKJ9z0sYc^`jE4bW$q69+BxQlYfPtqGnMqClpj@^TDNuS$-rG2%J@;%
zj|zTNltRk+@p`$Xyl@f*&LNfjsO(3AA0|J_WJ>6ynHdy6QqEgQ_T@=vk<-Fk2tQY>
ze%SoD@5euW*!@WK;}<`E<rV#?>c<p6rutFMkLrGO@uRCBE63EU;YTuy@}s67wfsmD
zv9=#|{D?nlrUAo>ED528makTs>iR)m&yV_sSpz>B8oZGojoCYXwDO~gh|JqmNac=t
zQO*2lF3}c7YMuF(*23EvN*h1g3NKnVg<0DB(ZP?7Mrvn2IvKoS|KyKX>E=gwKL+_R
z*pD85^b~^ug1w}|{e^$wM{nNg9(y0bF9rJw@>;2W^b<}4e&OeB^6Cr&C2vr%3=uNS
zkKuj{HN=lLBmDT<kFkE->S-A%Nu&H2ErbSR{P@a`IT^E(e>2TisHcTw&^pUEetau7
z;{?YGP7s_ZNV7?POcuUwt&P!XemMO2!H;ErIQ?+>G2M?DbbGN;{qPF$ur=1{S7Gq^
z5%VLBUcJns`QaCXfFM(YLPCOJKO%-6^<$*e^J+f5<L>^dmp0RnSz<8PkMD%c=6wm_
zjnkmUJ*BGMN-|Hx`F>DYApCp5g@TI&7YovOi62Xa-)U!Obh#ft`mx53pF~_CxQZx*
zT|=AI!b!M0?po=N^?q#dW1S!DDe9m7Q){DP^Rtl3|JhqsNM_O|&KQ22^y8EtTm0DS
z$38!P_hXwM+r@IXA3Kb^yM*i%T(`{pn~+(pl2{JI9zXVqvi^DU%gxGuKMweD#E+wX
z92EVK;2(mt&v;S4!NU^W?bQo8Cj5lpaX~F-;-5k+1@s#^?Z+8EuKRJrkF$Q9lcXzt
zocH5`@JoUhi9(o#O?250`uv2|rca91_{)#0l2n@mb76sNbkwyry7x`Gt6$$2;;tY6
z<+9%P<BlH-i`C#TXY|TL6I+sI_hbb9O&?xmV&M<`c*uD#fFc1rVs<~?`|*MEzhB?!
z_g_Dr`f+!q;^}FA=Erl+AqSN=e(-tjjIQPve!LXUhaG)#B)sy2_@CfwPPzPJHb=r+
zKl)y=zY`>htxHZ9KwJRX0>~b~ckh(=05S)VC4lq+WZ?Jz06qy|?M7Rs0Ql&EzfHKU
zMBy(IhW=rr_^75WYXHl?vJY!%Chrt)=M&x>0Tc|NPyjsRCT9S-0{Aq5=Is-62Qcj4
z<j(@g6F^>3@&%AzNREc}-ru#-ra%BZ#`oUYR9aTKZ~DEjeP+uZna-uwyJIODK(PP@
z1TZjw;sJafK*azm1yCY@k^!Eqfg0yhO9jxrk8R6R)45)j(gA=;=TgfA^dG1EmCBMC
zP5IPZE`ag@R0x27chre9_j#vqon++zlmOZW&@O<40G_wD^M{o+08;>F7JDw$5`gDe
zOTO{?HJVRBb6WuR01^YJ5<sH>8uMP-nX3j+Gk{vcs|8S9NDV=5u1kZY0BQ$NFM#?Y
z))7nzAXy04i_)g9a1x%(PW+hEAb^I3PO~NfG?i$p0GbJDVWc(>;QvZ!`Txn)I)FA}
zGjNZ-0a5#a{`0m&03BIpU-I@twoU<b4&dp7O#Ba-p-TW?2C(7>6M5GFx&_cZfF1$#
z44@ZVkH_czl|pP-(?a}0l-`1U1S#&?m!+@pR72?(K!4%f)8;{K%b)-T2QV^#Q2~7Q
zzS0o7$|tsRb*)3`Dr~(Lw&4LRv)lICZ7*{rj9>+lEWfs}jSgT8Q)k#FGgkm#)8BTP
z#?e0m_$GjF=^<a+{vBMEKb9G|A#mfq$%}I&jt`*0kXjQ0m^5CQC^#tqKKy00cxB6z
z<>o1D(pQ;}^7ZrpoB`Yo;9dZ(0Nerm$aV<mzaTsT_yY(CR|D`0q3#o+32t4HDHuQ~
zfbRoXC`vehSsYveL;{Eg5DOqJfSE?#=>g0TKIEMK3!UL3`T7D^&Uc?3z}x`l1u*Ah
z;jZpOvSGgP1p)lCL}}eXUr@B~mcFWxVUZ;L5Wr$~)5*9c0W4+Srur)Y%}T}(8K^G~
zS;jFdW+gAD`{9OlWdN%JI2*vZ09FUEhT|fD-2wc>fiGqo0$3-6d8gb=w_f;;%>P?U
zwlRR8jnrRAgl`huEVxB*YXIAXY!6_kkR5_7bK$*oyM&W4x+j3W0UQtDL;(8&_&tC_
zlDc1?9Po#ct8&ixgTlEOpj^DZoc?N&_`~#Sy1}$`*$<>Y%7M==C~NQ3Ob;|*_*1f+
z3gDy=HsG2Z@u!V4&j>l)J?VS^7ldCAaKmT4>#qo25@hsp0Od~W3nTv$<!S)e0$6le
zuRm82WSXXv8v)!5;FcKN7Q92V>HllDj14mW9l(7~AVE|O;-3H>1W-8$C5VTd`~%1x
z)UW$EfG5(?IfD3?!!v+PL1Yf%89OMxdd46=3F5hMMqdQ*GJsbB{3lAeO{Nb4ycT}-
zk@ZagZ-w)x@w))t3*VZvIy0sV>ZLKn1raYiy`f|f!YrS?wRtXB*kb%gofXRxMBLxz
ztU>TbvTszfNt8<VAd+t>Bsqh~6~w1<7XyBZW5y!0bYIOAMBbpjt9-s7J`18?5cwrq
zKv3Tcx~-*95QT#%5kyH5iv*D;X!~4v(IAQmDK6M~g>K(?pY?FTM3PcLloowSp~T}o
zdO~;^!Lowo1j`H3zCsWc4PHq|IA20S5atVUR;f8FY+}^l79rWCe{I6;K_m*HBhk28
z5Y>aI8$>-3YXnh82$O0GsU?^c#Ez-yY6sD4cp_US*|13w(%zb>eh>|Ww+o_S5RHVl
z5^Nkq(;%9$wi0E@m-A<CF1$q$Ersl?W*YUizM}8m@4A<^7ExW8u1yeaja;Rl=%c2+
zL^}l0QAnpCl7<uvRH<})t*I+F{|utYbQGPA?m_ejVoel3MbVSh4kC9LdBXT2$g@ZJ
z&kX(zp-&KB25~Ed+adG~A~lHZyv-o`1<^l<aY2j^Vn7fBgBTvfh#)){&4cL46>1F$
zVsH@a_t>du=Tg6&ZW<cIl8Q;gg0LR5l8g*uR1l+s`k&`KN^j-4RAS>3<}pEh6~xy;
zoEen(O%UG-85=~xSBce<lCIt8Jh5ai1}04iVqy^CAR<9b3Sx2)(}HjW^}n5~Up4V1
z{V75HRsE@g(esKk2p4M@gc^i9h_^4z49#Qahkw~gyg~Sa@COkHLgU?SwEuoC_3XJ+
zlFK)`EWXht7(^(D2j@~N-0m{zy^VUh^QqAwVr)YWs36jUm>$H!AQlBNgVlI#o*l%T
zAZ7+JOQPQear&?1xHY{?er{&!+#u!!F+Yd}Y}g|v9&pUljXS<d;cFe=vz!&FvyYg_
zsW0X&{G}`jVyWIo-N}#qZh1LH`5}lce^{0Yk}MD6M}w~jVx{m^f~y5<zA@2kZ4m2t
z#dtnERo;ART_40oR&SkULlBD}n5rx07sJdyvjyHLzli>;APqJN*(|svh^>acO~_|`
zY&(P46-4C_ln{OkVs{Y5L-;&|JwfaZ;*TH>u|ppy``8P|>mCT=_aOF*@_jiwzlbvF
zU{HU%XKUD&$zndt_8ee38pOUkrXR*yj?fj|W|Ct;91r3|5Pt^oB8ZpN1Io!D{t`ld
zitS9d3F53M7X{A=o;PeR1X0axq46a{xh&+0VBa0~t3g}~;(8D_IFqyAgSaV4cMbbn
zLEJX@9af`)oux6{6Y+1s`$5>-{ZD_$+1{{!B;+winGk-1WyYt%pBXmKnd;XId=<oh
zL1YUddkC*3HC;%*<u``q+aTTve{U!sgiQX`92Y{o7^fG^6ha0e%$`xmCm}eW>NU)4
z=vjnh4e@A58+C>pqU06K8A2{0p9<y{q)na>Ue!t>$rnO?5etM+*hu{>gn|Yy6oTcB
zm6k<BDQf7&LRj*p-VP-~C>cVj5K4#iHMe~Ckn5n>yow_QAyf!qdJkKf5X#cc94X}l
z%L_iPVx!WrzMTdYL-^^Exl#!8V+x}QA(%p_7viH*m_t~%RY?lzPh>11SVORdaPz3C
zRtSa8r;^wunkZOBu&Q7+!RmrF1Z#%${rs6F)GdjdNY@VOZ*|oPAvvT!<xB~ou8?l;
zZG5arg``0U4MS)jLWd9<g%CH^{L^Sln-Cg@(7c41p^1>DAv80T=0aKswiIj?LhF$J
z#sTe#Z9_O(IHg?(70;(KyeeC(V+fr>I2*#b5PG$<eEGuMIfO1DbPb_f2tS7Ob6C2E
z&?5u~9Uz3BGz;+v42%llix7H;FhFej2+}x}-DL2-LJBX?Ph;sPynhHh^n}rYAq)~_
zu;4JkAt4MEQt`NjHp7LF5afyuDx-yyj1OT<2w#QpwV`|)!dT(o7)t(e=5Yp}UO&qO
z;S)oc6vAXfpBlmx;Zs^Cv)E~d&Vy-OA-F@B8N#d(JRztdM2%E$2!7!{L(zn=@&O^i
z5JE!2f)PR9RGYkZUL__`k~F%g@EL-Khv-M%FnkxnJUV0uvkl8RA<Q-Siuzd=2w%*B
z!1grsg+dkymX~st3STDp1G_%C7z<x6Q8ozqiV#+YuquSrA?yfYrzEWj;TIt^_$h?7
z90d|xFSt=~LkQ)InQ6fAvnWrS)csY+rVus@*&?_tgsnnoIlP9IxSg)vN^k95ocu#L
z9Kw+hc8ksLA?)X;fMLHkgnh!tm(~5@fT8~p!a?C5`}&aZk9T)e_zA&dg3Ne4gpZbg
zhHz5EQ-WtWDh->N()gkJSuW&BKF_h=-+n0s@(Uqc6jDmDFnT$JpZnRbh{0ciR|T&L
zUKeEE8yxk*Tdy!X=IC#5+zIJl>HiVDD|k=v?-1?_S(8Qo&c^T{gomO$5~T8&vsO|4
zb*-l%JPYA%2=798ZlvZpko|?hUxsi!OTw!V{uA<A@J$GL7uk}QD?HsY(@W(&C$um!
zh4uP;2q9e<abd(uluCv$(hJXaP5&XokTDF){Qv!O$s9)ZFmi}N7Qw7xWHa*i-5ZzF
z;GGjQ=Mw&@AU8N-QF+727v^!pxFBNwFp7jxG>ifg{Y<c+U?D+fDICVf*Vv1NQ9O)p
zVRR4U^Ds)VR$*AfC>chnFv^5cHmsjr#nTmentACk5Z32y^8Y+a+D>b^Fe-#mF^uy3
z;#w+c>oXJAW^A2kzFfjmDU8ZtI11VKm9Z&dBrrNPad6J+rZ84bO*Dr=&d}g|sx1tA
z7<I#_7e-<jRl=wqMh)_o#sADwkE_M1hB0r6xmp;THY>-|l$v4GV#%*f$zddgQ9F#A
z*HieyFU8xdl1b`>ap0brBqa=<AKGn_LaZM~gD^UT(J_pMEMbzu15&%~Ff|IJu|%7M
z(MCv9!DfOqYc8Zk7%hdgGW6DAT;HzHpsk^_6VhIgNgtM&I)%|Cj2-!{ox@-_ecXIK
zu430PmM^l@99v*|inT`=J;T@*#`Z9Ju?@o*6UJ9z^bVs>7^A`%9mbbo^bKQZ7{kJ7
zu`oF`jDcZ&0XccUF#3lvK=i{ObVdDD86>HL1&0XIm<!8G)r}t>#)vRRhVk=Bg*(Ug
zoNj9Pg_&m*mKjiq>jbteGV#bHE+hFmjIm*S6UMh;{Q%iM=To`QWSI$y`+VxqO&Q09
zxw{}HgfWpfHO4eKL-k2vOlG%+u{w+?VN4BUb{KQQe5=$pEewAc0rpoI&M;hIxWiDx
z@P^?Dqke}3+VHJ#{slLCQ1uLL^{6ilP4ZG<5^Ej|BNRp~j5Ky=7!gU08rhkJD~p)x
zQ=b1G#*8p#g)viX?lrT1B;_Afr`dNRE;^q&_<g0hbSid)DD%TuAY^eE--ogAqnRKN
zhGXH(%fO<Rgt1igAHrBB_rmIZOy$xhk{=~?MHnlMR9<?Gh|In&jGw|-8%9$lp2njy
z6eF$=V}lrMWY=7)u$jFhQ6~K&<X6E>9K0RO6t_q;BM*Y7KWD1W3hW4DXBY>=_=C>2
zpzf|P_J#2~NA51`Z(-~XV-J1ri0#dY_`Ncek}D;1KxJI6><{DA0L$iz)&pVv#1IA!
zw?knZ=8#;Q#9f__gmIK}OEqhqZ8rYII3^RwIl<#$oDlM-;7P$#f}CMahjAtha~a!N
zLmAsP`Dr?R&!3B7T%xN-(L0LEVO*iZNAPt7e}!>1jCWzY591npGri?H@05Ph)65la
z-|tgyhH;ByoPD%U;o@+f`CCaf-wESx827^XJB-I+JPG4|82^OvFpNhWS?5!yAG6;)
zX?h@>q-4BhTzxacx$~+2hVe9vbBz<<hWY#yDMM{<Sg~J|p9_B>_)_qd;D3TNd(9p!
zT8pH_T^qBXZIsAdAHql%L1F||B8ZD1K7t|<6pbK#1Q{Y+0j{4SoiU;>?9Um&-y?ML
zi9|CAW{x0>kgS5)1Zk5!f*it+t9C|nMPUBfoR~G?Q(h};LT<r45#)^^Uj+FjO1+?v
z0)n4K(6)q)Vj+nZHf(bIpcIRscm$;)`YNf<Bba&3R3d_sLf$_yms_Gxnd&wZOGkhR
z%0&48lAS>jQZ~ZZ5Ok%yp;w5YqQNUgP+9nf^GP3bB}Dkvxo&S3v<O-SZGv_|8Wgc4
zRgIup1hpdg^@#1y8Mf*XD5sT1<*ej2BB&Vw30E}}lOm`cL7fPaBS?v$ZUjq$wmdh?
zN50Zm1dUpw)Qg}^L|?F1KcXKf-ynj9LK;QTTu5WVCW1``Y1S+PekhSJw1}Xkp|=v!
zTCmr0Q`-pI32z@k?+E%t&>@13qI8O&hmg*6fC#z@?=HwPyG1a@Z2nk&jTc3Gir&je
z{UU;%8}<5s8A0C&Mu?s&I52`i5%d$@->@Gb<lPO+U?D>deTa~@7qSd9l;IJ$uUkJ}
zcVq;k41KhaF%b+cXJ_iz2)>D6VFZgJ_%?!Z5%?m|A{ZaRgoyseu_J<s<Z}|IMX>s)
zX;K7}BbXAwv-7D_1<w@kMb53r(|7AigOb}7X9TVYx@AvtN8pX<Pd&&zqNovMx{%6f
z=^Fauk_mIoe)?eqvmyvY5RB;Wu!IC-?3V~45kw`*E?`p9J{vJj6q4yeW(f8?ufN&!
zT?F$Zuw1mwj$lp%b0audGMQms1ULV%e|VC@(7k-E1rZGEX=nIe$o^RTV!BfVKS%IO
z1WO~_v>fZ3*fvHmX`^jf1S=v~$u>N0T~3=fmLDTneB4U1ift0XPZ6w*;KQlTnVZ%d
zcgnUVg7zh9lzP~?*-`sC`kuA!20HCY+j=^%IgzAyVxnzo-BI~$TyXVk1e@psQS^#p
za|B!H*zpPNXDC}E*v2s%Md>KEN3bJ;HxayzU}proBDlhdlsCB6^jiccI7TAa9l;(^
z_VSk5#lrUq{vN^p2o4D6M=%33G8~HFsEFi;g&Yy&r{OV!9FORyrhc?P8Nt~I&PmcK
z!PA0g1i3EsypT(R7X&XFNi5;AaMt8wX;&k-!A^<bnkd%=KUVTq1h*r26v5*N?uh=6
z;N1xB3HdvM`$AY03*;R!;{#Dx+lLXb+Dv*9!M{RY3O<eCxez8jW3F-f2k{G0vX0a3
zUkU#&g4fbwR6f?{T?FqV_$-QoQGAFXT@?AEx_w*}@lj-tB8NoN3ucZYLlhZ>e-cF|
zAv9*&vTh$MmL-a;QDl=Oe(_+SK~BRmcNDpz_%y2b+Q(aCDnp(q@<#R7J;<3ozt|Tr
za#1NH{Byy=hF&C!qQZ+sQCzOe5<XtKgy<y=OWrJm+oMQ~qD&NJqbL_e`6$eWO@$~b
z8@!^BN`kz)A|xRSliV7Wk5{o6_EsUbDAr!mJ*r9+RikJcMYAZXNm6~m>QU4XQZtHV
zA+@4N5>h*gIzm3S!2jJyN)&aYs3%Emw2!?;n+8!dH0&Ei(Kw1G68+fq?DXbQw1}d!
zh%E)%MbTbJE5X)Lw27ka|F17PM7a(bos4_@zbp1BfG(1eSMMsMTNK@+=pmfT02r9W
z7k?hdCvYw6>tJG^D87thIWG}a`bLo&#keTON6{~e{!Gej85-p-UdjO0<d$V{RA22m
zFp5D@3@BnICk~0?%7DyF<?pg#Q4E({Bck{wiX*3#kx`6_;*0mD(Sl>5Jmt;IGvKIv
z6~)&gl8<F053NVSEZ;_vE}M;HLKG9D+;RcYC?-WQISO|a9=i9_ic_MP7KI~<sZnsJ
zZr&Hs8HFnftGNn)KQcObMdjM#S~99e;f*2?MKB6q6#OxwMd6QP_dYvqXv{P6Drc%R
zeR#!C6kHz|j-u2m^S&twyrZg}EB=#3iA9kX#r!B1L@_;z8Bu%}#q20%Msdueo6U-%
zYrZ7%=liVA^A)aitTQKyxlznxlNLzWoL5QuU@nr)#_)6QD&I%3Fp4EnERAAORR6Wh
zus8}P(O}vu<+Y<yy1S+y*vNA#F5{@*XB}51fnm~?2JEIEqgWyRMZPkMRR&*8KfGn7
zxHgJ)Y}hpPPQ&^rHqcdK=p4gFUV?2KLtG5MMDc5sueIV<6q`7=jI#g62H~eb6k8;^
zHHsZVwh3+*q*+s2GI6IwcL^R|mAWU2y-{3<;$js0=rC-SD30qD!+|Ic(-Y{}eQXD#
z_#=u#^vTio<IU~9(<b8K-nPPRZ1Z;}9p#9-Z2qxYGC9eKDE^G%OcZCMILX_wC!dPq
zwB#jcU|xp#|D-US;{a5$oac1$rS0WT<#Act_SUvb{PHgusa%QTUL{<M;(8Q+MY-t&
znD>2e8^hawtmKpb%6NlayfbOx8-;i~ifwID9!BvfiaSx<jp|2W+>7EL-c<gSzxl~n
zz6+K6QM4LvCx0M133EM;;z<;5qIfHX{2RsdC|(GED)>xr)CSYw2FWj@_)ns*IH;@D
zb52jB_*#^FT4J|+2@9$uvrL9}BEF|T2%&Ogu>OcVJ_f{4CWiDeWQZYS44=eMB!;$E
zGi8b)a}0T7$QMKNN^x0Y$QslCK4Q2$J{_NZXOn1l!5o4)1#=008bfX&c?6k@e=g;Z
zq0VyCXE79vA@#Gw0)h^w{qMf%3&r#W425I3-otYInC0y%eIw<fF%*lTcnqJ%P%?&6
zG2~fo8MVSxLdql=y4(8jaK`i#(v=qF-f<<ErFz*I%EgcrL+u#K$9O;ztTEWcpkfTB
z7|bzLilK50r*p(9F(kyWCbxxKe!X3o(6Xt8oR?<xEJn?_aKau#VoZO_yG9IEVyG%f
z)dj1uWzOmAF<5gx+a+07HG9n%YKi@v?HTyW;eZYW>%@>O_HAQGiJ@)`jbmsML!TOP
z^<ro!N%doBz+4yg|2lZ4eEDtWMlo#oGHa#(Ot(`lO=D;lL(3RiiE;B7GUbhL5yOcF
zmUTn)I<wLId*WKhaPXPZCdP9IOkC-7YnsB;b}_V%p@U?kWycsQE{ba<+Z{J}khMz;
zU1PY$#*d*}4BcZG7sL1%dc@E(h5<1QjKPvWt`}<?!<R99LHon$AMTCo9n%l0=34+P
zbEGY<FFQ1*Z*bS8SPDbG82a;OPnnp?=%5$|$1qk5hQu&5hUwdsF)<8_VYpOmbPOY6
z7#YJTiucoT2{AVo<D<;UZ_Px$_|NiL&Q~#f9mCAV|NDQEPs6{FGI`x^KVH3LjtMbL
zjA3sK`(l_B!{ivgk6~d9Q(~AJgFl8q4AWw8#Ndj-9mA{!nb-WO7wC+k<28kEB$0b!
z`UWyR=fvfFVp3!98m;GxK@%P<sb>ks5RzylhOaKC3&;3tF4Ot%;#eP^0vwGY7DF0u
zHio$|u&5a^Y${})6~lMD3*nd2B~Y2oHi?+8XEqb(2q!r@A#tAMnlHFOkcAA)UVTvv
zi(~jrF1>_BT{A6>;RlKCo)@<)h9#}dzq0%omJ9zeh7~cajNwIg>)IIB#jr~FYQZ&v
zKM79!B!M;z>tp(n79<<!6)o%}8^z#f!CyFg#F@ur>BS3i9oJ^L^p+U5#;{Fz+IW2>
z(ss7b4a*Ku7~RP-g&!@ex8Cj;_QcRBF+QPt=7AaG`VKAldkp(yI3L4>7!J^x*{5Rv
zM+}Ez$Wh*Wu}Y>*z2gqYaKvyhUtMcTZVNr_SPaM6o1SzhIJ)V#8RPzxyeEyTpQ3B^
z)7MCx5#_AlIV1H=&iIQlT$1S37%ofsG`=E^M<*G3UHOaC%LRSy76&HrMhrJOmebHA
z4Yy*r%?UFN`O|PGhP#|j(~v0*_hR@vhDR|xj^Ta`|HSZ3k(7f=O%FJD$14wG*x4pi
zhuM~?F>~%b=Jn&1Co%mm&<ttFn1+ApJja!%g3n@jF62cF?}aewrI1&G|Hbe+hBq<1
zjp>^*z2g+oRo~3ed`h9^wdu+SF-w=Gml-D*pQbM>Wi)*nE}qs2y=(rXbPE=lR$fY%
zISpCTkRuH_(~va{+0qc&5|=#<Lq^AKEgiS1T717VaaXEmWyqC=Pt%Y)4SCY=QDNhx
z=8faFcq>+BN{O@NP18R<lv>FJgw#w!tu%ZlykHs%rJ-;dilo7mh7ySx{~uFd0VT!p
zeZ9NL;_e=}IJ2XREDWq*!QFy~!3h@J9TFe`rl)7Rr@N<n26qh_EQACN?jC}>`}g|s
zoB#RFsdLY*Td%6id#1a(s+bqWIjB5i2}UrMWGv;yH%v-1Qp#n#7@P3Fb#Z0AC>PaF
zI^!!uc||6byr|5i3Zun~1STW1Wt~6P?6EfXW-J+N_rl?Ylf5o4sxwJstjb8n)tEfG
z6<Z^!BzcijH{YbVy{PR)iWjL~Wc<@kUo)k5#Mbd5*^5@IO4CCvdQ6e#MO`oId(nWS
z)8|h0ydaSlJP=>_Am(P-*#CH>H1eXc7q83NTYI7Ov7O0Ypotevy=dlzkip!_tfd#U
zNltUd7G4Au3wcRz#VMbzlc9|lZM|scMSCI^TNf`nc+t^|@4V>DHq;M0MN6^DXWmn&
z&sVAv``fh`vhT{Vx-rr`+|!Hiy=cAKnNC12FFedYd(qpAK3-h#;-VLQz3AsfzzfN1
z-WU2)|MB8iF9uK-@?ww|KX@_Qi#c8l_F{+^lf0NrV`qPtq15G`Sx0kbhA|Fj{E=}4
z<4DF))NQtyGYPpd)CX7`$4JU}CKDJZdU2zGX}SGw>J-ZS0n3EX=DlgE7t^Bl)0xch
zVrEpC<;Bx=|4aWTuep=wd=C2Ai@8kZMJ;QTh@}L{V1XA4saZE!MK2c7D5DY4J(j$}
zSNk@xKI)(2ER=y}kIcn&%Xen>a}c$uObzG7A6^`wR`x>mVucqgz0kbo3{Os{>ZRKm
z<z&5?d4nT{qj`uhS<JYE`o>txQZJUVcRAz3iDu7S<;7|*wt2DLi$hCe*Lbmoi<W7<
zZ7rLv^I|;{GTy*sqZgZ^%4RR7$8()<EGqI=z7`SsVrvJR?e}75)P9#2zeo9QFZM9s
z8&&psG2dan>ulG<e&S=TKfO4}L1(@A%ZtCgIOWA@?hlXd#2lgy+{1pD@klg<qfCx5
z9{1v(sD6UUNydLZxF}-1ym3!PTh35F+3le3jLvy+o`!#C^F6G(@_(&-$%_YGJoMtS
z7gwk)>N>7^@gH?dFRpoUor`>f@l@jiH={Lh%Zq=R-)0Q<Ek>0;qo?gI&HrB9r#XT5
zYNHD&j@TBx&9#w_ym(9_+KV?{JmE~fWPIwyGcNCQFJ5@D>sie43ugB&`_4v(t-PYy
z;~RS_FG_q%IqVVt-ir@B>fbR^D}40A)z?Y;G=Aa)3-eOd{jOLVtzW!|5zJv5%NWOa
zc!!mg^a3&n$S5FQKwbguPFgYv$Sk0_KQRw`voPimkd+A;WD}5`x%Zq~f9D`2r+{41
z(A)wZW=tiK+{I4G`2^$_P(XnHlC>b)e0bE05--HOFk_Ku+_a0H;sQzt=oUct07?od
zC18LL1AX{LFmEMg1b|6tx{6@-pRxkV3Fs-{djaJ+h(xP^3Y3m+t;k9x0hLK9TeOOR
zmg75HSiICAK0z?Q+$SY{;S`$yy8wp(r+_*FlG(;3psIjs0ulvSBKB1|V#&U`fI};+
zH*zP`5>P`xl7O0&&%4fJmM(V>q!ALQP`7~E0`3>6D$cc#H$_0IfHnf!3OJC@mPSn=
znD0#Iv`efjfUq88eZ~d?8VdMUKqCQ-S!p4l2@|qxCZK7QAAeS?`Txf$v?Y66F;b|d
znd_p<*-k)vs#O77cDOnS=t!$Q1*BW+nwpk*Z`j#Mz;{%iVJC5Nag!6f2<S?c6LuC@
z>stL=3X$#tdQc<Y=uC^T36B+V^b+6^@Qn|pedsNqkATSnrU>XOpr3$}`RwBbNdKnv
z7tG@b2U9x=7${(n0NOtH2Sy^B?psP+aS$0IU?^Ks4G$AAT)<g1;YR`V*qP=B;v-lY
zDPR<n(Trml$1;-5IKg~?PlT>MLBK=-R~EY`F|KUqym7=iRlqa>D+H{hK7ZUXT|h{H
zE?|aWe#k>-o6Zz4OTcWZJpn%nSR}wJ&~7=HD_{Y|T49|h(4O1)MZmA@{lC*)Dd_)B
zbX~|nq|o`Tf&d@Yg8-RDQ9vLX>K8yyqR5Qg*K~pc)M%(8nCHHI4b@nr16U32mWu@}
z5wI{_w=h+sfHmn;I#x~@yDW97fGYIDR{$M6O>P+zI!&+NDi`VWHEVU)R|!~6Q3R|N
z@Ls?N0qX>;7jRR+Edh_Fx;6;dFW?UW8wJ{^0h_7Muuh-1{KkZAeiyKn`8LMw0(J=4
z$$VGTCWm4n%j^j$yQ9h;0eho-ACre8k`D;@Q^1#uHLeRdDBv&FFAMmaMj7)n0uBo}
zBH$nP9;L?WRqZ(QW6bF)YbTl_krM(=a?mNkd>nn6`QnKt-;fb!1)O8$ynu^LD9Qx^
zUk%9Sk^nLzk=zwFxGLZplQMzQB;MexQf~EimVX7@7VuiY8#ee)z!Q#shrM?h@6imv
z<N+ZQO5`C`K4+Nn{8+%(vOJB3J`?bq`3nIrX^Qy&%KJ4I<?t;VyyMGJwkb^#8)fSD
zk!D&S3i|L#z`Q%w&y-sl*9Yt|K4kPE-iKJ9=_MD(B%KfGqe=!J9@n!`P$pKgNA=7;
zWQp>uOtSe<)9NP696sdqAy+gsuMfGSJdcmQM|P1-zNnJlXJ(0%rn?=5d?@Avk;05b
ziuh2J`D#yb@)l=aA{tuKhf>Vx`6`8$@c}+G^P#y9Wql~;gTn`>59NKZ-?An6VD+Jb
z4;6i=L|Lkx-1VY|u(A*Bm-VQ^3VAI|f=yFt(Nw$gPV1v&8%2DSY-jAc&g$|Z(P!Qu
z(tN1uLp2{>&$FlcFz2kZx(~H{$hOv2!-tWh(<YvACQ+UEK%~Z5XU7{ID9FtQwHfO$
zCNrimmQQD+t!u?bh3fiH&xiUxH1MI34~>0jNL4!DPVQSDS~s?5TiJt-EGKUh)|*B{
z=aqDjI4WC83m;ng(8-7Id}u{cd}!wbtu>-uUk-P2weex{P<vaSd5pr9eon&nK6LQG
zxMAz)!-i6>bo-seOTTt?rfw7G?BYXL9|qO31zy!M_kZ(&zSrpMLwBFKCcFn@Pe$^7
z??W%<9>(5`eWIZqr)TQt!<jU9e;+K)v|RUV^?y};5LKxUbl~_5KL-0S#D~Koj))lQ
z!!RGJh_Hwl?!%8hjP_xS4<mf$eLvk@+eqq%$1Q`q*hl%yeWFOA&%np}Fphe)h&U0y
zpRtao&gR1-A13(BquwX_Fo}xq!xSGj`>@4_sXk1js_;SaVY&}9eE7wOUwxSAGrv0^
z_p=YPqI@<bLVLma@DnSqXPW!$&5ef6^I<;oX}lrN0_FnaLdHdmUPg-e)y(IE=!4&f
z0P9jTl=k<NnP1y(ZX2jF5Bm^dqWKVFqBBxz29pBU(k=F3i4W`9yVQqeKCFq_EN8Nk
zaRn9p>z;n>T^+TV|A$%Xwd`Hz!&iMnG;|}AO;k}a#mVe9AGZ2%&WH0pY~!Hceb~)p
zyAL~}v34@q#hC9}x;;MZ_2Dlc{$^#L4+o-_`+fK$%4z4oKcoC0)j8+(5Ooh9PDk}4
zOiuW4)Q4ltk2C(mXyF#5AHbB=lRlhck@&`TcEU64J?q2Q4U{hUaFLZeK3wwQGV@!E
zR~WDRaFxk5MoJ;ry66q&H>1j5drFi3FMDtM=$ZfjdQq3*bjrNR??sjSK0JtWiuKrs
zCqDDojxRnu_2C(H!VQ+yXDy>IdY=1mA-C<oe#;ArlGFW?@fA%zKD=T6fsumV`tUBw
z-&0L~>`EfJk1T#-{7gk_Wr{JPdAYA=f(TU#q!U3$isTfLUPJ~F8AU9*=-H9Uo>@e^
zh)nFgkSXQdE!&#L$)slyL6}uUHYUWgi^vh>w9`v25xGU&9%suVBCm*i%nK~H=NFN+
zwzG@~h$z6kpol^u3Nxpm5+aI3c~K_C7>kQ&Q!<SV$dzQJ6yrA{N;4t7+duZKC2Lg4
zYb(o2xu{-VL<Qy*qe>+vl^N+lN`eTh2uXx2!Y0BlqPvJ5A{-)|B4`m;d(nKw>7rT^
zLCZB0MN}10O+<AOuE*BKB5E+H%b3JSdQB0vM7Y^oTSN+zI?>Q%5#L|8lNq^G7Sm|z
zQ!QVWdLrtx*nqJi<F|~B7|Cqi@0KRan?{vpBAPRA!PqjYCr`}UnseTUveemJaoU!>
z?HK9n;0_`>is&R_ZbE8j#_t$cUG%&@oz{hUS4J}EMzxWU`qxFzg<mZ_MF=7;jkkO+
zqL&Ddh~6UFPb@x(+H{YFcKjpkBciW}HUC=riRe$d?jArhyog~e4iqs+#1A3{vzN@S
z7IzMb@^f3P!$tfk(r+Z&1Q9c8J4T2YDPoj}Tm_TJc(jNyBF3>jt;8c`Y&7okJPz`X
zr$(G&A>zGinaDxprH8ANMNARRHCN=OikK#1I;Ah7_6o}!5kFBE9b=g(VwQ;6Y<5p|
zMjF|_+W#!#n&DhP6(V9Dht3!Ai-=$8*3<ESHaQ&btHqMZexZm;N%ln|ydvF(%*&BG
z`KEgQTnRoAq6oi;jcG{%Dp9-S-x8997IyLmMJOUxh*&8?rTV#0ak+@l2B$_S;?_lv
zE+Qggu?Ry%Sj3$Bsq=Fr5e}`;ZHb647d=ZwEE7Q@aYBl6X<AyrOP&E2os`-t5vxV)
z6tRoygsPWD{c*>F$M$t1){EFIVvC3kA}ZSL8%1mqk=)fyoZOZ9iL<U+*W9=EUz+lp
zh;1Uai`XjS^o5S(Y?nMcL|iE7BunGA^_k61{C5$%Mf^d1FUGz{M8mz7eIoXY*h?w@
z?#Nf%)nroQxAh$#OD0#&SHpSAdVnp-_)jJW8UGUTH<LrrQ2MQVRKzh6jr?fr$8iz=
z&}j9eiXSILoD>o3N1Pw0C~qPji+Cd9jEJ)$u86oQnm;7YiD=m=%ViPg*?WQUA|r)f
zViIT>-=MpBy2mvUU9QBesFk4};;xHmcFBANa6`mRY7P<qvhiKU+l>D)-eDxmHCJNp
zF~86FK*U2PGoIFZ#3aR=OlIVsig+&K1&hx_JbPaK8ZG+~@k+$Uo945-*Btao#H3~B
z1Hd;T-m*gcorw3$KSY&}O#0<BKUV$B{0n1@->iX}*7$UOr1zt!AI1F0;73M33i(mk
zkC;y8v-EgBGWn6&k1TAT+mA7)t^J;-W@T?SMl#FpM~*1Z=|`?8pIRqV9_D$YN<KgG
zGcUkcFsc_Rnt5{9*dl(6KaehegE-oEoxaQ}?nenf%KK5lkCJ}a3&#ywlIc)c^I=^n
zKfZ~^E$v4c=3p!v)yw(uB#Zg3huo8)@fBIG#Q5cTiaR0M!aUiJ6h9XI6Pw_NH5%7O
zm-EBnhm(~Wj4sB+s7+Nrsxhw~RVqv}A0a0BQ8TL4^25!%He(&e*%gw=EY*)R_BLd!
z>qk95F7GoR2-6#9BK7@fzzXdgNZxPRj6$g!H1VUUAH)0@&SEn^J)=Vl=GPXMYUxKS
zKL)b5wI6N#_?~%NzuAYsqt>iz?q}7`kM@*8{p1de9T__@&OBfxy|drk@vIBS?aJ7V
zu{&cA#-5CntEcIT^<rKWHjf{@nfGDr%h->xKjQ#KilxoSG{}!1*gL6J>|j66Uvty$
zb3<4e>Ic2PA+sO-7~uyEgsFav^kbAC<EX3nG1`x13oK*&w8OL6pMCk_;^$|gqERu)
zJHd~MeoXdb%GdP$$Qj8{p?dt^U7W}6o4tbi((R$~gp~3$PJcS%ch_QO`Z3Fo*?!FN
z<DMV){rHLM?YQMvKNk4$vmbN)m`5W;u}w8B^C|SYt>_5*FMiPX#iY<2yO27SA8Y(r
zOV#Ly;D_u-&<~#<BK4fY4#^L{9|1pJA56V`Fx7I$Mi039luujyn}t%Kzl{oY!bgt$
zqwQbf6B<9WtA1#HI)uv}@<XRd@0s18;xh>|Mi>_}E@32_rA+9iznsYm#+8h#7|CWe
z6WY;qogeG{xaG&cer%w;eX_ismv+{VjeczMV>8wHG20nGrscJ5p(<sv)sMY??DJzA
zd$;?sgUL=m?KNszlH27+%YE@gc1M*xejM(WNXmXzj`(rZk3al4;K!d)o4=VH^y4ok
zl`Sr^Kg9enqxGYiIJslgPgo&-+>d{lpNJ|27dTHv`Ds7)d*aCKQ~%UuFYM?1c)ZFQ
z+Uq#)2jK-jF8Xna`DH(@GP%M?Yxc<C8uROnHyBC0>Boz#HX^lxmfL=G^V*hdwf^S^
zdG9b1xl1#oVj=RtkB2m_185k)Bf2`xw*eFm;ECV-jyqETnFDz0$1^{kQ?h=1_T!5m
zFa3B$?Q+`kj(Q6d;+sAdeG}zx{pcF&BJq7x`QXRLDE~y|aycoKe)+@%F!!#5NNm7-
z%S<jVfOO2$GiG4S7!8dNpmGK~nPmweYXEQe*z*LCEr9F+<P0EJ0Q)O+`zxO_2NU`l
zm-w;@-M*6C0oZam>dZ@}Sa~^aKF0iv1p+9@ghHnr$y_9Wq5;$kn5Ur?3xHMu)eWF+
zO-JznO3?HF07?a52_PYWZvrSCFn0j17(f{&<rqo9SHeiY5J)K>K!s>1Eo804yfR}I
zMzL!OnOP~T0k~PQ2jB>xY5>*P>kPof<VBy{WSPjE$fS%(gw+E`3ZN#7H3H_+ToTFE
zVrA-2=E7I<)()T!E6D+*GD%_ln#nZgWJbFHQIX>>*y{%{E;eCOW_zBS)^7u76hQL;
zS_I4|Fm$p*;{ckF_gr$*04;KGt^LD7Z&#ZI%uRi@toD`xv<jeo039fioz~U?v<qP5
zT}vCP&j4<8NU}AmGVqe;SevR>d%5}=2^|CG*YsTipgr)3bPC`*R)}|IGH0}{YruTc
zLT+!hEIk6~8Ne+G|4R5ifL;MCldxQZCxG4oL?rXYN}mAw22fi<9SQvc=pVoks+<4@
z1aNAZdG_U?0IZj60~s$~aa@^g`GHCoFweWBP?|r71u#5-0|ERQz>fip2w+hFUMffc
zqXL*8z%K!e4j@O};$s3B8!#Vj&AQ|nM-A6Kjd<~@&hY_EV0|Lv^Z+I?nfw)p+NUs?
z8o;!u0&6nGoe{vy0A>X+oAsX==P>@n_(NIKY%X&m^O(>=&0ho9H$KyX02Z=xph@bA
z*2#@hQ^=<Nz7!z<UjW+z*dBlwfN{wa3P7h`_h*VffIu`gDF8XjgG>}gl~JPt7BCYu
z*t;Ttl>vmAM;I3~E@52CxQuZ*BSkD%&%NW4XV`(1RjjNIU=5SCjGGwO1+bn8*>4D7
zW0WUt^=yvvEdl%%<y!;j+Qv=BJE+xK$6x!9X=eZ{Ms%H8uq%nX*zETJb~D)%jkTA_
zKF0lwe^5WEYnJX{0DsYhBO#lFzp3v9aFq=X2XG{S%K=;oV0voG(Eu*d`@u#vD9W(_
zj?=smzzMb_<t&qvjHeh+2XKZ-{n2K|$ep86!^#ClQZ5Ftq_tU=vzI*X17>F8(o)`E
z@=V^BaxH-CY<44ndjZ^Mev|PQ<G%siW<s(4V{(V_E@S@79?~BK@H~JQ0X&RaJ__J5
z^Cyf?qx!P|K2J=gC@%we6~LDOVkEPlzYgF7+q_|X8?}EIz<cI{Q_O6CjOw2#ohT=R
zSWbitGD?VJo{lknRL{VK8X`WbWMYz8LKY^iI=Lu%b_qEoRFhC$LQV;}Bzz;Gw1nKz
zScRG7k&u^3KF0iv1sDr57Gk6XANW&>FfSTaib*IQ<t3Pulu#<F*e-h-UiOrc010I!
z^t|k$E>Z6PLYb78P$8;Rlu$`RW%gE)V3Cl(eDnBBRtY!lNraRQB7}D44n`*<i7qCI
zj8!F221u+SAxT0l32sV%RT>TFniBGl>RRcgtwIYo;maebH=DZ0U-l$RNRcp9!Y~P`
z64E5Jm(W2%T?zFhG?mayLVd|RNa$M$jU+l%1Pvw7ex!7g+W0o+KX(dhETM^n8ZB*f
zj4Vz2v?nU@<`P=a#4DkdgfF9M<&tITkIvtIwzrnhMnYQ&?IaX+y2R<72mGE)XNdP-
zZKsbbs~1hA?<hM;=p>;RP2du~lh9d0cL_Ztbdk_iLO03W2XfV5yV$~A{fRU8CM!AG
zex#>l9`!{}#=e)#Jqf>Z+6K0_ggz1mNEj$#{H5f+H2+KJ&%E6}^H=wsVs&YgYD#U8
zgdZdfmM}yD9q9J@kgd^Ehj7`G^QDcBjTo6|>od0Na0x$3_({Ug5=Kx}NSGpFs)SJz
zMpK$}X$f>L*cb_8C5&Ufsi$kndj}mHmj0aW-c-{~lrV{!j2fk}&1$tB-|xtG%0_=M
z>05?r5~fpgtgz0OFhjyj3A3nrZ(85)v97#h#bX<-Pi~Ue=6Go#n>i9_FXCqz6Xr^o
zC&4E{q{@--i-hZaYb}!StAqs-LObjWCCq7L&mEgUn<dU#ZXv~@Bzh$X5~l67{}Hx+
zx@f)fr^7EHKxs<QBs#|svV@=nMMA|b*4le)z4p0R*0;_0=%i0vX`AbGU7R5ax&%W)
zSi+qzmc^+lt&$x59d&np?oz3qx!ni#ki~reUBbAOap#btbVpu6{fZ8FWn3v?m4wxj
zxh{gl-zBV(uvWr44kcx~g!K|Ouy-Tly*1_^u}u;-OQ6jFw=n+3xRr4mBLz8{o4X(E
zkg!w2E-GCSJFP-|y42S2g>|=tJ)GKJ2?wY_w^@ym$@{28Ba`<__=CyLk;&x!Q$o2e
z)o736gA%p`&7Y}%OE@IqFh@Tt;hcmcT)LwYj!8JqI$ig)gh4G+|B-NlM)Y0BNeQR2
zq@4PSSyHxK_MD+!N8^ajh_CHBFX4iOs}inBxG3QgSIA{f>PpM_WA|;#t~#iSu1Fy7
z*Sfk+#bmRu%FSpUlJ~ZR|LE#6evom86L~A)orJp*?n$^W;emuV5@N=8ekkD)8@!b0
zxE!-xDDh_!o=7;8WIn5T%A)<8>pAtY@{SjrXR@g(m?P+wgx6Fp#cUt{jiIuP9&MpC
z-%I#FJx4|*86PEll8{kGyo}E@AxKCkBmX-~`kWnOWNhqcTe_NlJX>OA5XQ-%!xskM
zwzfBH>17aRka2l}n@A=ZnPn7~QA9=-8CfY28984$v&qOVBe#q^GIEe2BNywruk@;W
z(6V=lb>;yFVfdqyjPuIK$Dt&Wx9ta0EWk=Z8HHrf3VBj!bHYAP9YtjnlTnUCi_0h>
zqqK}NGD@;iO2#)#e){C3^QkEoxlaE%z#{RoGWOmwbqd}3*;=0U3XDzWq>x@&Mim*2
zWi*jtk&z%HMK<f-D#IotQASl6b{P&CP8lu^I&e3}IxNG{b4AH)!JU|CyoRuvjOsFK
z$#Bc4AtOmfO{(g|60}Zol*>j-0+hIf#gD50_p#TL*|D`{)RB=agZ2ie^(}M|Hf?@R
z<VmR-sWQ@J)Rj?BMnf6j%H|5&`Z5~urKjYmaj<qGrL(J={d8h%BWh4ycbE9yQslj*
zsf=bay2<D+qq&S0GQN}1yGDkVGFr)KM@=c?pDtNi%V;B`EfsvaE3+@9?qiF6lbdb<
z=MGvr$ml4e6UQpM-!kBL^Xb#I47KTs^e?Qlj4m>|a!y*$&N8n=T%RN6bqDr|?ZILn
z89iluFQb<X4=cT?FO_x;+vPCY*(iNV?ZjnIUm5*m^p`P!Z3a@k1ubhfyXjbSBGt;+
zdOWramN7)eP8qvo45fnT3DafFkTFcga2Y?!7$IY#j7c&^$`~bMtc-C~Z!xa(aV|0*
zEn^JFdV0)p;)r8$XZPl#j`6Haka6I%^UNU!nN5~4;h1BJjHxnc58FkR-P5S8k2{(s
zWLR|E;Y{yZ)+ozN8MCMqGE^C}Wz3PWK*mBDKgsx6#(ZiZ8FM-1d5l-46{3{Mb-SGH
zSJ`}!PAM-w;ux8bfy6~JyfP#ivWy;w9fAzMjNNfApA3<@L}mBWx~b&IGQg=3nGt6e
zs>>I1<A@-O<1c2?WQ1g_ma#^LF2j(qRK_wHVHpt_OJtn?;w&#^UMz#~U`O-P-yS!M
zoT*cW<uX=qI;&)?Wb%v+P98`jgCm!-5w4Z7PR15$AU0SpV-u&jfu;*qXun@F%X8F0
z7uw80RC`-x6m%wSmqC1+jK2Ldk<IeT?j5X<c&4)ZcPcLp+aO8@v4@7Ij59LM%Gf7k
zKecs#+d-MWady*(@I4n>{-7SU*m8jJPsW#(oPSa0S!DfN#vvJpWgMYiE#riYqtu9(
zJr%Baj!`p}uAB9W#}!CEPDA*KEA5KsB#RV!TE;2nWYgt}$ND~H%oWc$DuRrwGOo$E
zAfwTXxQj9_QD;72p%1$*%Q&9RPP>cTy<;JAg}wE%I<CvOA>*NpM>1~8xJCLv=L4Ed
zCMEvMc$+afZ^D0c3!q7|K*E#!3FN&?ZJjsa9^-u)ai1%b_siA-v<2>CDus-fGG57e
zD&v`qb3+oJ%jmPjz4D%|*e_|q52-I$w2yE-9PWB8;|<NaLF5eLt&De6OW!+b0mge7
zA7o?;nrk!2eUuR!L|hP`$auZ|GvgP=nE$gGm6?Llu{RTAdd3Wl8H0#tLN>JHU*;&!
z!Xzu>SA*=#|GJeeSJ2!Wkn9VwlAAG45P6x9o{vd>#sZ85gP2yx%y41$773y#lVU*>
zXW|%Ef<noa2%;n_#7i-mGd)w8AP~flL5v8ZY!KywXca{3Aj$_ZskysR5NjUWj?np!
zK~xN)QV^Acs1ii&AY3^TEJ5t;>a;UY2*S$57DTV=$)vZKpF-#e!pXWTh#E{1zj|{d
zR1Kn9lvfWTp=vUvnZ!y>##+%(cMx9coH-KeM3v+qQkbU(krqT<<_#F@MQ!Q_aWUCU
zvtd;EmP!5l=BX}?gJ=>2k*18z7@IS;U~I{Fs7E5%v<aeZ5QBqQP$Rh=HOK4f9fIh{
zq<s(rnpGl&J}T@)WuKJzLlEBuLEg?mbYapph<;4E1<^f-9?W|&_GJ8?k)pVdl=cMC
zo4P?%>C5CsAnt2ufA$Vw9LP9`@oVVVNr{w!Awlyi^`Su+dp*N~7#>8uQr#BiPo(pi
z|104h8N{d{<_Gah5Tk<_6U3EkX;Xrr9gPkeDPx16r(xrQ7#}o`UY!s`)vnG-LG#p}
zi9rmRnVc{)c`}P*&p9Y)Ds{ggrU!9%gk?_=+l(MaDmLP?+9b{l;^(B~S&Xw8=LGQ+
zlb;#qe&tEY^QhxZvyt(yRKr0i=N%#HTEm?SsVe9zjMFKLr~?F1Vz^UaRD$p^Aw>+r
z&pf~=G0M@<U=VG7bds4GRkR=ub&VrMr+QmsA!jh5R|boNSQ12wHE6j8OM_TO?Wm%&
ziseD92x6duK?+s|v5I<;f<y(YX><hfE{OM3X+f+D;-4T+1hGDd4K!C%5rWtl#HJwq
z0>^Jb&;riuihFYq^h)&JNqf${79v}NNb+?3J%|nkY}**O2eE_6PR4|*j$Jf5t~$uz
zdI$UNAYRULu1{~@7sUP`{tV(EC-?`WBi??16O5$Rpk)7I@fc&xwbs9>>_HGY9K?|z
zmfp1;W$)@8ZaR5n=o<HNGpiPITbE^}yqyf<GIft2PH_sS8P8B*uiDNAaW07SL7cSN
zFVZ}@&~}0O<0TeS=qc+ZHg;98Uk&0~5RZa*9K>}N?@(_E;zkfRX%OAC+@hWq#MX^=
z+Ie;Dn8e%6|6?RC=~X`_-wWbF5D#gN8ku;Xkyfvft2o^CW^)Q<^$Dl^G>B(GxPM68
z=uCSa#ET$a2l0mHfnS{^k`rGB@hXTsyX@^UC6agSKzFa0#DzCqZ-WSCOeELf7c;33
zRNIQ#MjvVN58^WojUb9BD5@YvL9Bv23i2w5Q;<$URt4D<9F4D$UO@&03qM#FHmK1m
zd$)`V;uXv-la`5+N}rbDvz2&e1zFe)YLG(S?9_!uSaR{Tw#{_sP>@pr5ppq~9h8CG
ziurGsNInJm6?$2Q4tpH-GKmEgobuSNe6$cRsGyJnBIIuOa2|SVBb#ChiYq9~DVI?2
z%Vb-nx2fMKD9OAO<H)kMuX<?(WfYJB6l}5ED`#*JFQ=fqf(jJ0-Byu872LjRX_4aG
z@xdb2vR776MS(@Z_=dJa>#c<JCyUUkz{VG~D{v@qD%iZvM)@a4z2Z&TR3cRsR8!DO
zL2HH1xJL~I%{fYvf|^X4DyXHvt)M=66(l{e*H-YLzAIHhL&Z`@!K2~!WacRfvj66q
z^^3jJ6MLG1x{A5@xgKNjn-=2KyBczuEl*g#RWSRMm0TkQjcF|Ja}aN$fHrO-(u~bU
zjxdKLxfTjqvXZZci@a?Vv}JEM1?`x0WNc3@qTtux%~-zGR>DpSzEjYdL&@tLmQ2`1
zLD#4<FrjXD<~<bjRLq5K-?O(5V=o0BCRE1WT+;cXrD$PCU+R8^9sLyaXEK116gtuP
z2L*!_TvBjZ!4L&Q6)ab<LcuTv!>OSudkTJ3FhapBssV-OXN*!XLBT`?qp1=1xyLHF
zFf4J5g7(#2w{_dMi`|sxaSCn}P8?6|e!L5L$@Q&fpQK<iHQZ|F6sos6?&+M>sZ@~N
zsneKWU7SMt3<WdUAX8sEdFOD@&omqq{G{ODJZUEmyWb|da|}(Jr(iyZ=9ubAcgy;?
zN?p3p0vbmOLJD*RixhYj`W6ogn}uds1O+|?qC%eoq^Koa0qQ4xlKqSs3OGrT6cEac
zJ(nk|l$o(MO+l}@DLo&Uqp8ZEYW6EGLqS-<Vg*ZRIM283pOY9-u=R?k@h#hmhUVy7
zs-Q*Qq%Kyw^`>o^0>T+rQdUxvDLAO$FB-fG)+pGe;CBUU6|7V68>K)>){e(-+tw@C
zz<J(Cqksvexrxb;nzk)We07{#%h|gfwQp1Ky1M&bb^CT2%Oh-E2HAEf*r|Ys(%beS
zpP8TC3ic}4#}W4^cwfhytoAGD*UCj(4jxeOhl1zX-RCE`2>+zEzL#9>k<&c?UBMxm
zF%+Cua9E*Z$Z$--aRo2NyV8BCJ}EBYD8=oUNUMCCudp|n?n)e#{14UMM*9f`Cz(9E
zZ6)s+YE!=Y1&Y4N*85G@a|+JW6p`C~>WW8d?xZLD7un$96;GRewkry*(g;<NL&Y@(
z*QtyO-cY|%a8tn@1$PzPqW(aAOu>Itb-&muo-`Y1ULg5bIs&v{H>JC6e51sBoaQ41
zkD1(OeDL)`3VIaoMp4K;Q7~qZ>jh27S3OS^JfqrBaOSFgcb8;x=es7Czv_9(v0f=i
zx$2=PZxy_wd0RzB74H>%Q1F>%4{EOriI*ChlhsEBpA>Yw>KT63GucQWW!_a!jEY#*
zyg|gN$abM~I_B%M+0wIjZ?43vuN?6zGO5U{B8!Sy16<#vCa=8eIe*@qA`V^kWL2@r
zmYj_vl0sW*<W!MMg+ql?MQ#;&R8&+^Nkv{2`BaopQBp;I6$MljQ&C)nrLDc7is5gQ
zi!d*wqA(NEOYXN7<)CR{D;aEgWX{0eZ7KOOrIb?fjf(Po-9~vkmR123Z&oFgQ9)ky
zf`hOuD<qa<LhF1edIc3lR+ywR$F-<PP*Fw2&jpf5EcCn<;k>jORuwiCy=FRl-LctK
z9L{C8Hnt6FZg;6jRFS5lu8OKEs;Q`{qLzy4l*mzQ5~o>%(LcycithV#W+D-{ie%Pn
zs|aj#)=|wrJ2h@u2~${4WjwjWoPq19sIQ`fijJyzG*|-_%~Uj3(NM*=R6rGtRnTdz
z1G+k!sK{Q#c_wUG_SupITT}L`<1KXWZlQwiCT&!dUf#8(idIaBw`THaj)e|%Ypa5=
z9b<bH<M(zZujiS)6WLcYYrFao+sx7(yQt`@;$j4sB6Jirx~r(5qoR%;Dtf9IrDC*d
zK05ne#b74ARCt*5X6!>YW4h1}v%c)@r=mZT0gMAx9N|Z5gV;;y{6NZ4^8pmOAuJAM
z97dgi$&XRX5llv^*jLot#$=3&u_^{=7^q<!6^F)xiVrF#sF<kYCu(IClT=Jrkv^BJ
z%N^Gg6;r7`i#z71I1uNgQy{0Qn66@miuSqevlwSGlGj<@H9N|W4zyFOMJugyRm`KS
ztJtq%zKUO{y;Q7J@vDjjDijr}iiIi`sSs88Rd`kG^(G4{d@5)OdavCM`WU?JTiflc
z9{Tztph8k1s|c!C)7M!p+4^=*=Y4MTk;v0=R&um0fTkj(BBElk3SEVvB24{rh2=<t
z<UMOGIeXhy^s}k2Ytl}bOH?dXv5bE9Q$3Wioz9!|sf&x=5v053q4NjH(d+e9Dppe+
zs@O_bRI!$FMI%~8IfreXiuEcssOD}bCmz|h{o$bZGR^-=wY;cR@gEy~@wZvU78QpE
zI0wT{3v22B={6PHRqRsnyNc66%MKds*E~C!6Ct<spgq^o*xf4jP(7&F+`&ojGX5E5
zGdJORT{E)G{s%P#&9N%3tN2sJK@}%eoKo?ZioaDHRdI~2Nadvwcg=Hz(y!B%4#s-f
z(?wo#|E{zhSMiUE6VwDtEzcL*GO3m&Q!T^eYm+18w2Ct-E>LHt0UoxTRdG(mdAiU-
zOZWShnW=Vq+DYd^K6cqI(V$RqMa5MW$3xZ)KRD@KRkrJNqp_0#xlCmpH&onI@kqsE
z6}MFUtKzPTdn#_L_)o<h6~ms}>A1$*XKnf0Iq7^NzhI^JaU|YX@j%5xvRrA++CFW<
zDogggj+47=bm;066;D;XQt?{FGZoKOyioB{#mu$lZX~}>wEy<VQs#|)`xYxXdf(S<
zwf&8Xw<_MLprqPg^L#PvFaNR84i&8}&W|eU-RvBvA)SU#R5OQNpQ%u@Eu~gjzNjFK
z(GaVly>20QW}YRzh71~NXh_nKQA50j(i+NW$fO~&h5{N2YRIA?tA<<}a%;$@A-jeg
z8ggp*<CK*)D<1QWy-~<M#IQf<<Q#g<(_~{x9u0Xl<kOH}!;5|Had9;cc6YzrYNc<Y
z>750=cBIdC3TY^;p}2+;8j5J<;+CQsifO2sVxyOy<W2d(NiPcPX0y?Gnk6-q((sK&
zOM}c&KO)Xi;GLt=mee~>tk6(aLlq4c4dpbH*KlsHy`qK+8io{e&~ocDi*1{GrqPkm
zl{8e=(BYZwb9+0T*GUUa6Es*gI5oI5*fiKRI5hlx%|qEc*~oe7v19Zn>)UzG0*ma4
z8meljrlC3;d>u^_O4|>Lwl{`*&W5hkpKEHUrJ<#URvO$IYHMhqp`nI48j>}nX{f6q
zMMJ8FqwTY<3%k!9v8-R?j$AXB6O*?drToBAUjy+%+w8QvSA!n*oVD!VYG|UNsfI=x
z8f$o4)=6(~_g(W``prT|BQ?{|Ttf?u{^;5BNVeM#t#q8(lk>Jqb8W3Pw9(L2LpKd=
zHMG;vQ9~zcdaC5bR&pIQ(EgKk-#Pt{Y-KlC>gJ34PD5u6T{L|7&2^!n{n;rCop4I-
zdH1yL8hU8xt)Y*Go*KT_&`X0y0|kw`ZY6hrtmQ^t$NJkA8i4f5m^L)%tD&EU{?uws
zT=bxl@WwUI-yx^vvTKlrAE+KQ9HXY!K#%T&8Wd_W4MQ~y(=c3vkM$oljL`5a_t=pd
zMp1J=u0CGFXbodDjHPLxnr5nn9zM^oC;ha<ns=Ke^)JWgYaV9?Cs|I=Fj2!Kjy0Ka
z7ULAgsf^P!OxG|&!%XUpMO=gwksNWt+3cO8;U^|PYnaPqo`zqT%;#8SnUdbT;^?KB
z7HC+gVG)(_LPf6zK|}q7#2y=xSM_ootmkZy&Xr}kOXSk|H3T$BRO%ZQ$;s4DzVvd}
zNxV`giRy%$s=?3@W@C*pq=6pq>lEdvxhrx+!(t6vH2kJviH4;b)@WF(VVQ>IG}5=Y
zR%#%#71YnKdnm!e*F8j5X;@7yxZ82?Q}xpsosI<OIt}YJY@)7`>ilt6u?-qFa>V1q
zlbc@mv`_C8SGrETOWv%3aFsoAtA=eF_R}PwVY`MM8un<|t06Joxl^Ovo^f(<@~l_Y
zcWD?<#a+F#dpBj?<DwTXwSx&1wDEY#K2D!@jX0X>q^drk;h=`UxYGWlo_5`1x$pR!
zvVAZ4u!bWV4l&QsC^g>drVKB&ILGc!UUt`VoH`g~CWP%FoS^H{G!jDb5Kd`0t>Fn>
zSHs2Hj#F;i84YJ?e$a4U!*vZeG+dw{;;~LT`1=x*s~WCpxJ;vUVLa(qsO^{#r}c7#
zq~FwVOT%Lg`);THt05uA^^kh(5eJq1wub+>67DeGWhDI`llzPhG-#<#5+7+uALF8k
z^ybLh&q}F1qX9)TZ3wwTc%k7X8HCIyqCI}IzM=v6n>AesuQj}3{+7lmlXr~oHS^sW
z*${qY{z=1U4*J5lASo#(WF|r`HiS6l`RgW;cTiP3VFtbyT`nV&_z*HhmCQ`Cgpid<
zwh*#2$q_=%s15BVM2@1<)Jk6fr5kC<6GGmQxim2!Ba!?}3WQKFsuT*LaFiEeQZ$4c
zB~!?_L<l8ANC?3iLaC5>k0=uYLdcV&);A%P4ne4AzXwOb3C^-1lnbG92=tn=d<Ydn
zs2D<}5JtSRwpd`Bvd2=Rzpd3I+uv<$%O9AeN(f^br;)QT8GYSj3&9?OF9b0JM+nXk
z#)dF11Xl=&aqe0nxQQ^Y8p81n$<-K%RA*8ngd`?4qk7`P;<ZEQaM$u}2#rFhx6WFJ
zF_|$XgwznyLa58$`i%9yBJI5TBN{|`!w}A`wNi9)jYH^7WelN72u(w1#x|`&XdOax
z<}DaoM&mY#FWx4Ewjp#0p=${3LTDdCCl2ipwdu&DPK)%Ee&k0ppWm_4IfTBs624xy
zTL?W_>`r}#$ydwj@x{Lnp%*KjsJ^?ejbins!Pq?gfDi_<-jA_AWBC^jG8h!Xun>la
z@B@p38HX@Z=+Lj^y_wXHA&iRZBbbb2q^pmP>SIFKmSPs6lgl|igb5)`q>PEqIaLy4
zPCF-sFq8U&;B462H8}*rDIw672veC)W1Jqs3?>w+4lXn+1dk(eb_jDq_=))f#-AA}
zXl@AeLYU9qUl@O-7KwLK5bc&sxRAv~QF||S*Z<=l7rprQ)4&NK7(#%m;(m%0!mb9+
z&FP#y<5H9m)DSj@uq9-kzNdw-_ZwFzgxbG29iN=E3AP@B5kfeGNXXndd==y35SB1m
z8o~-D%NWUEc?eHRBobK}RX+NPuMS~N2y0o{z_>0Nx;})m$>xQ~Z46;k2<1=MD219U
zoWF(4L;bc=%jQT3zH>Hw?<6wnnq@}_J45(4gxge*5PlEgatK#K*d4;25DtfMgh~;@
z$?3MgL-;Z<WnT#UL--?veod0eO|Ur09SGr1YCh%%L->n1{XilmV{g}?5C{kNavh~g
z`((KgLausFBFET!JcNIkoM0sVB;5s=pAO*+le09MqM?!gHO@09LdKNT#SkuWn#5_3
zl&c|Jqv3qPQtfBUb!wx=j$4$0ah4k)++^?hu8HxpQ%J9s%UvRm`@azGgzz$iS0UUD
z;a&(2L!jB_Kr`3br_TP_67GlaAcQRQTy;j-c8#<>3gI!eO9)RxcupgFzx^3aT-jYc
zvb&DklF1dHm-d3@oEEN;J8TsCI)pbNd<x++r4#3POLaBD@*#wGA-tz#%elSRJ(qj9
zh<v1Jt$>r<_PvfTA;jqB=R9L(+hcXa=_sh9kdFHm?CEsm*O7ajCB2ReIx_0m^uUr;
zM>ZYt%rh}&X3WA!22>k_+1Z<$F$ZH#9l4l%wamjjFC*FKiv|_YvG%%$+|Yt`C%tqO
z)=}lKok$TKMRgR@L7ZG^CdGAHsAei98B0Y&ztJ)AN$OY2GCII|S;lgV<)fCv+dC`i
zsH~%77@fkXqQjyiWI#8Npu?(Tl}sPqz^22lW4DeyIvhHjI=<D>NQX;Dq7Ju?+B!=A
zXQ`^=?JY}^j%qrplkr+}-Q9{T&KkP;N{&cP-Fz@oOE-V}&AaZf)VI@W#yUDub)@M?
zriv9UDI7}rnu+$hI{v!up?^IMbkx&PU&pD2?w^Od^Uw>OUs6V`v^JzR8f|~xu2W+j
zO?2$gu~Vn>R?tkxdL0`mw6*PEx*DZC?&dlOTj*#>Wsgf}rK7cuHagnsSfbORX=ta@
z|2|C8F<D0kst_FmbqvzcNvB^9=&9p-9i4S_q3SAO@1dhB6>6KUn~v@jJ;lARxSjMv
zsqRrt?I#2`aYvCXy>xhV^wH5*hpySIMY8nPvA3jyT=_lremeT=7{EcKP((sXlkmQy
z?hiT!>lmeDw2mP<hUyrhV<caFn2zB(ex&T3F|YMCifxJYYec#bky=HvjL|Vx$9NqR
zbd1w6w{RA+p;-1mEmQ+!<}8xs_+(7vf>1hBbWGK;P{$%2({xPN@iWEJF@y6wTgMz7
zGj+_;@#%$~^8Zk9(}gIVErqlE6fM_9hpEid@r#aMb<Ed6p=3{%3)qH28y3kz8K7)?
zbqG2X9jXqW4pB!yhs05+CeKcWUkBy6L+;ewg|qZ1l10`Lq}IuuN}-e{6<?$7s?$DK
z?g&+*4udN*%q1clx(c-mWtA?vn1d)5H4W*@xErj}v7E^YM$%U@sax30;cDh<7}x4p
z7quDEvc^Ulu+%3PCT^kLJI(gdmAILPLyiP;E#6fBO~+Op+jP*Y`R!Dk?wyFxTYJK`
zMQUAbZQG?|SxZ~V7WVV25`NcdRbfiC2`PJZ?9)-!Ksf{Zb^M{@u8w;;4p6ncs`aN?
zpEmmoThBJmgETIvpBo8(Q<f?w9@5RlhvdC{*?L&V5gkW$9Mf@J$4yH7vX$IFI?m`g
ztK$SKC!_i)9jBSoXR}`|&yiP$KX=FN$<FgSF6g+Z<C2aS7wu#~D=qIGNhWed$5kEI
zbX?c5GF^=uI_(2y`CkfSour$_Q!Tf2{HxP56DNh<*6|;8#n+ZQ)UoTk2A_41NP8^Y
z*O4$Z@d1s*t=0|=91nFo((zcw6Phy(<Tmh>27YThxeNxL>3B|=(eYBp2OS?d=oKYf
z7q4mFtNTC8H>|&9e5d2RIf@e~1;S6!)M5>MX8wgS#xUc4HH%}OjxoJq#{HT?Mpnoy
z-asY;nc17gK=!Dfl}R?k%*lg0HFB^wC*ugtTONbXATuvi%s@T^`3)3dZvjTq3o$8Z
z;ARQatT212bi|7?r-P7)7iV6=KuIR041fs*eZ!=*fii}9S`#URUsEV=pn`!8209w3
zXrORS^Sl+8VNS@E3{*By#Xye@R*M0vfsgbxFnfz`%|;@5Z3gVD6L%PJGI#89kT=ml
zRRh%wR5#Gvz|KFNH?MnY7)UXY%HAZ#ng(hyAp<v)+6L-Gm1M)*@`!@Sr5R|*dfjMf
zJp=WbH;5{9H~E%%BgV#2y$O@1jLoQ|PBTGrEey1b+O%TQnz0RITLbN)q3sPMbF5B=
z`4!k2F>$P6?jZf0fzAfH80c!C{c8ug-b}hNc4zEipl3AndnUaYJ&ZYqy80OC%e<d~
z!AvNf{ssmxAILZ;s{df%PTmAE7-C>3i^B|zWHOxb$Ef89s<BsQmPWBMI;xMM%UySo
zKF$EGhZ%2R0`*S=tJiqQ(a*U_%qK^cDF)_DHACs{Kh3~&!~7XAgOSKg1G5awCL06q
z)>#D_9i?nPF{jX<4a{Y}ICsK41M?01!rosEEM!9a?k+IQ8RNINmPM?18C~DoC^a9a
zR<))>G~j1G%4Z2MkqpR8f(8_B6xD!6Q)LcY%O|cal7;T|0k6d{5H|4Gz!L)z1B(qD
zHgLqi5(7&OY&NjPprhQdoI+`DJp(HYOwkio8(2fRGC-$R(YCIu3>Xi4?JH$pYhay$
z4F)zESZ|oWUJBGU_rkp)+9H=MbFVt+$?cg;2}CG0b5CyrTMg_ru+P9Y1KSPk=2-b3
zTXz`PW#D(}V60FgAJWz6oY7pDH9Rqv9vA1>6uXCmPR7OVH_-cq^?-ptDgU=Ee;DTK
zyYcH{mn9{ie;jkrz+coG4IE<o?6u8r|65;4p=Y!7E9<C%V>Ekk&~XF*7&vd>f`JnT
zP8v98AXF`xjxs-G;EaK@22Qgj{YlX;TK;Hh?r(7LdTgV^1&QqUmcGcLR}5Tba>>AD
zCiIAY)eOrD!E%kg*BR*x{Toc^nJ29<xn<yA1Gf$QXW)T>ht!wiY=7skddI+B1NYc+
zT^0L%s;*M@!_OVW+y7vH#NK%={&x!G*s&R&(zH*r6a7F9<GFzs26BdxD~y*0UKxlD
zBQA{B2HwzgWZ)Bxmp?3T4g8eie#e)n5}%3qdjlU>yz$9FUMk&Z12JJl0&!Dv#(rVT
z%df1of6IhA@#(@yA4ZlivWAf%jErGq3Y)D@E<TKfMclbN$Ci&vpxS=8J}z?@qgUBz
z%{GN*3nNDuEyu+_?i8P$qrB+WmG(cU_RSqeo-m4sQ6h}I98@5Tf??zfBR_kWBo>Wt
zT!SnNg;6+cK7TG6#x#G1B4Gq-n;9nevQlC(D(rPn&oP!VU#um=C>2JzFv^GV4JT42
z41`gdy#K}&)y>U{%d$>ynr^<f*4tzMw!ghX7`L9MP*5cfsu;$q;vH$DGs^apIGZJm
zgfNoBND0Fl1}%Dbg^?JhH$<?ry@L{8W^pnf`pVo=;Li5gs$o<M!yPuao30*4jWCkJ
zsL3|(%g0tcXnwvy=@ZiS<F#17ZzR_aqxWTZoiGX%v(wu9^@c4qjI=Pm4Wm&Qb;GC^
zMng8PABM9|eEu7rCKX~w<c(_(25o&$A0K7fX`v6V8i&y&j8<W^4x?!p&BACNMhlKO
zu5|{qb<Z0f-;%u#o0xeZg&w)L38QTo?ZRkJmDbjMY)%Fe3CXfU)R+_s`Yw#lVf+=w
z-(hqKqbrAQ4WnBa-KmYjm>x!tFnWeDK8y)re9s1h!n8psdWGSkVusNtjDBJC=b*k}
z(5Dl%ug1{c#S5%Sy@%Qdus$%1lNNIy3>qdI`q&4DF(iy1!x$09P&ODA#&BwsPchPL
zb61V)Elh0LI@8E7MzO(I>WyK1xF0iyy-$vqJ?CRx$HPLlajd*7Y@^{%;zagNrgEKd
zPYOf*^1l%`C5)*YRP^uSWHuv=nPDho5XLOl=Y}yaZ0<WcJB&GD{1nE<C8ci{a!hSg
z=;tuj4YE=9m><S3)NjL(!uU0e1z{}WxJMJr`d`SLNZb7uZx{l5eKevaGh-rmF#3t;
z51T(DDK(j@^ne)@WXrSjFpZ0^g%P6O8^-D|bQ*d}LWC-Zi4jJaiSkX|&QCfnVZJPk
z<zXyk-f&Iw`@b{WZ+KROv67YgH$30n@TjK?QaWo`*+4}LV=Wbmz3b^JDM=JM_J)Vz
zk|R!TQ<!#eHLt#fvKOYO+%d$z;<hlhhp{7!%$LngR}OIgcZRVmjNh5>4r6Z^`@-16
zUix%#*;xC2nq+QxvQ^9aN7#ItL96BI6*IkP{*!Gs+~|BT46&laVOS1@ahQfo1a%`g
zLY*p%+!5r7n3L79FwTW>o}(OR{D<)b<H;~iF*(gh_GiL48|Ab+{e>_tQnop%OVkiy
z+W!`h!nhK~RVriDGGkM-L9em*dKfpD+@u+X$-iOTj#{pI8I$`NPZzA*jq3N9+^3R8
zl_JeDJr3hZ7@wocQ|fQbpV2LV$qUBU)MuEyVjSc#hXc7cVZ3F9_|1<o@1y(!laFD1
zVsh)AnV&CV#BecVBgnvn#5gAD7}GQ6kBiM14ULZ=Q<R^Y9h-%DR>o|M*%@;%QffIP
z$i@6X4l{>&Bghv)5-a&5D8Qt01O=n^h@cSj!Vwf<QZ#~+(a>T{iZhmAJXkM7DJI`A
zmS!x&Nbh_X4s(`eUXHOmBW0sP1QnTAVr<a%f3;U7LYp}wfkkTsiBWqS6MF=XsN#&k
z73Kf7u~m)oY7tatUL&fc706IC%4;!kGuCFT!<fvN5<x1HrmxM`sTV>02tpC)5j2RP
zVFVeAxfVt6Z3K-XXcs~I2pUs;+MF#TXca+|2%1LFEQ01FW^%QNfL@~g^PRi>DG!}E
zPn&DKyqeNFf;JJ5w`~Nqe!=VUam2r3rU`L#%Q!nkFgSuC5p;~8Qv}~d&^dxG5p<2<
ze!S~`1{Yz>A}1}7?iN9xh`Ca_J7W*Vo{S`ZA3?7u_e9W}xiycSg8DM=$Jn270OLSL
zG8h!W56tNUVe$^8q^dhg=SvtC!L-IU;=?2OF@g~heB5f85W&O<Mn-U;ij&-^2u3p>
z6II4WFfPi+M{qNPX*P+KnT(Ser$lY0(p8vGk18`FNb8VHv1Uauo5eX1%xCgb)aGX<
zb0e6?WW+ib+5f`)SH=a5Brc2~e9p{+Hv%C7Uj!lrZMA9<_#+5JAV(17W{u70k|HSm
zw}aXx+a`+=!Oq$aH9`l&m7ZJNm6+KT`O85sA1UtX`4)qcjbL{Kdm@NLusDK^5p0TJ
zNd!wHSR28*2$n_gbG&P11gj!g9>EG~mqQNPfsGvLt0^?2YfS`C%5?kkw_^eQK`!PR
zU&KY;q651Su8&{?^@QT4vZAPKa|Bx=*cQQd>a-E_h3Wre>N}vMDB7-Baz-+e!$l;_
zPF!Jug$*De2q;KS3ag?b2#AV+2oja3<RIwwbWiA+>6u<6BRS_J2$FLKi4y+X5AXcv
zJEzV)w{AUEU3q%CyQ-?m+A;p8Ud|qy=nidlt;)iU@*eY2<2B4Yb2XqU`*4x%uC-ZQ
zbd#8OnT@zU3mdYqmE{s~BfEVi&z3B#Deu|Dn&CjJ=-Ir*#aLV-y{?jHdlq(N;ZPP1
zXJIEN|19jw!hZI4iM}Tbdsz>aJTuFCm^cT*=B=({ojnIw8*5!Bwz>{xfnN6H$eGMt
zYhCRBM<nxqW#On0Dl7}#G4XCalX)TwC$msTLtPF3WZ_g6zELn-!RaiVp{}5=g0opT
zmxTm{XFDdGmr;C$LnaFsgkKcAB*>wCS;(ONIj?2my6^|AsCej|EZh`+D+{-UG+pT^
zo^8!hcg1@z3;znK{m^rtzj|w|+udgck{*iqC<~9X@FWZWvAb4r=TIzsD*SmCo(VZN
zG>PI1;jO;3_<y6zFp->!^#htqL2d<k6y#M<PQj}R@+ru#ptyn(3JNGFsGzWdA_~4P
zo3oHadG|z)<i{?qBWCoX3W_OsMZtulPAc3k=JYqIkrc<4-<%~Clu}SuqLfxpMnRL4
zITG9DF^{_j<Z~9dZi|GRTNJCL<rP#=P*p)S1r-%kQczhz6$PGaIe4BC4Guoe;cA@l
z-)7ru>DE8f>I!NosHxyJ1sxhBKtZq96JF1euzI|s)d5G_ow;f$cwIql1^g<WSz?rv
zds3LOC12U<DX>YFK30&Zz^>p;1uaBzDAuy{Mja|R6}S|*nE?e26@D#)Bn59MXdq@x
zt-g>pSqZ$e)h9WU6)<nSI<c{W6a{Gt(pg>wO%<eyF+U~heys~@iKXT_(P_t=848;5
zLX8ueEBI=k)vTKvJNUwy^>gY>W=jRF6tq>)PNLh!INyqs)(YAvc$)<o<9vHi!l^z5
z8h)G5UcozJ&`ZI)tQG}b6?9Y3QNeo(x=7HG53I`Uq@Xh!)N32UuOEN#R4L|yS@_-N
zg&5RbK@SBz#kh5)oWqi>e>8L>b0qXu&_}`h3KwajpMp%W`TS0fXL%fb6%co}b8f7e
z@S%c_B#7T*C-hHeT;i4idHRd^iGoiRe5PQ4cn2x?Lc!<42Pz1aF0*sC<J2z4U<E_i
zcB~c!ldC5TWxI$CQ~PU2+9xHgT^Z?q%g*z)!lOBJ?7HsYp=sYL7@^=d)#}wF6^!DT
z_2P^d-zgZa;GBZ<3cgn`M!`Y_ixiAi@PmSr&l^mZ#K$QZ>2^+Jg>OqAFE~MvyHQP2
zkX0vzp`7l1RPd9;YQ4ZcMZr`B(-bUy%`=zPvOASzx`G*^%oL>ZvyfjD%n~v?uFp|$
z>bQ*t^CT{#&sVS@&MSLT7AyEwfug|6it<?p|1Du$1v^eUe^c-~+oFNv#KNT4pWCz8
zaH+kD_i@+uq^b%u1-lgNW<PPdeF|cwoZA)n6$BIn73d1qC|Ju1R}faPjKya)D#(#k
zE=pr|m@K;?ULJc&(NvHvB6WI+g(sI=F3L(y4wK8R5F}yfDg~=0E;$`jSf}7m1sfG?
z5;I0$A5U$ASW?+63XQia*b)zAf(+Ugx7i^DVOe%^R#}s={ib7&g1rj%?{=P4uurkx
zAnaH8-4SNIaFNsfH^DPtul=BcLlSyekopk?M-}{~;Fw|^3P5+9-Fxu=_}?O)5Tx-x
zY$o<41!p+(E0|t5<;j^$UX)~K$&_40Qb;Z+xX9k+#TYLxDY(pj?!{+bYY(m~3a%=+
z#tE&xlV9^*S8#*l+KYBx43Alh_--n=rQo)LJN$9+THoi~RdA1!rx&HY_*cPw=ERFU
zUN{fC9w>Oi*+#MWL%~Oaj}?4ZpdiJk;w8!9#j`knF60I0gh37lB}h^^1?kNt<YiD^
z;l;ej=S6-m3W&F`U_n9J7xLm^u|$$0q7?oAdRsTeSHxS~ixP3Yq!-JZrZA|CC{+c^
z3YPQYRWHg5uOwJOkj53gP%64eD#w*7Li*iuRr8{{@ETs!5(2@Rf{gN-moL$*%)Bm2
z?YLgYi-rLk^?F{|yh!xI?nM(XntJ&T&Z<(nWD+l2;&prRh7eCYG|7wBeUoTbKdv<J
z!rRJ<NY~JdMxr;4ho*S3^lK-BQoTs?;w{nB1>Y3R5Nsw$v*uo8wzhKKLX?(qy_MJc
za+rE+QQ8Q;9S=R%sa$(6c&u21>(1U@yyL~2^K9>W(ZP$3qIVU1PmpGvyy)yj7x8l6
zxsrM6P^9bTMRyT<#4USz(M!0I;-*0#FMjyW_P!S%c+od*^D>=&;?4BpLoXMwTbcRT
zi~ez&q<T52eBwpbJr0rqUVQGwNH0ctvErz0pch|wG1!YiY>3vC8^$vG+;I)zP}=1h
z&OzkGP~l&CF-*u;UVP(4-M%Sbi<f3q&t^K#b|K-{l_R`pc{X#9HzVn6=B3iTzhg=7
zIQY_SPd~@MSJOs&k#Q}JWGu_##h+fR_hOtE<Jpd0s9x}$`vfoMc`@IMEd|{Zy_n?1
zWH0zN{*PYF6p{QVQKkq^6`UqG-HRDQxL}`VKZ`xn`NfM_!e<N4iR*K{xcJ;b10M3S
zz>6hb>wFoyg+dkyF81QrxX#IHsTaSA_jf@>Fw1LAUoYd554`4R>~Qe;lIDev!{Lz2
zPctuqUg%z|5`|(&h$$HMBI1Q1JnH51E-Mz#+92}fATisEWnTOtI=w46u7z`NKziv`
zikIIRt`@Q;Zn@Trb#czmT)98?1}}DavD1r<UTpGWGi$?(ZC-Rco9S8LXnNkZl|j9_
zaWhFG-F68|Y?ZRhi``zF^x_{c_IR<^i@&`%;l(~L_Iq*MYi$mBz-z7ZJt%l*ypx>n
zka!P!aYV>b!M_9<dd$nuq%F&KhW*{ku8d30LLHoQ57`%tck=D+DKGc{_V7LjImuZs
z&T$G-QA5RfFCOf5Tx37w2=$`QrG8vj!q3z%dvV2!7hdF0an*}!UOe*Ru@~39xZ%ZJ
zFYbA9(~Dc|Dqh_2B6{D>hvBZU`^&SLJnNQURqe64TFkfo>&1Ouf>SO>+-BRtnT|34
z+B;TA3L189kwljfaX<0mKQ9(tu{W;ce(J^Ij`^Q?@tj2)?B*uh%{SZlaX9ZEI?r_^
zsK}|JjEb@<a;caxwMSkR`Bdaqkw*nL#oGD0gWr&3k9Ox*Q9wmO6@^rMbTFewPS?@n
z&Q3W~66QL%S4?3Q#3HJ-b17X>A;na@qFSp{i>oLhN=X%^RBK%}ZFnEf^h=9A<U?mU
z6|btOq@uDURbE8}6%~bdTbT4;clYKi&K5gtd@Wc-<>PK!RTb4#TzY7)`&KevL+~JS
zx>9{TP*IZ?Rq?rs*HqL}(N#q^6|bwPt-`IsqoR%qo~T$)g-u0W6;(S_;AZ$#5>?n$
zI90e*I8<!e?4Y}qp7ic%izIDyW$duqbsIOdNmB8Kibg6LtEjJ{fr?}m4Vj;kiD~%~
z3uoCb%}5HRIk*O=-V)o4vzaL>nyBCcSl*X*9qewZqJ@f<%-djhs){rf=_)eBOQpGx
zW`et0INlV(1q%$KYo(&Sig#4JC3<VYHiB;pwiTphI~9wb*h$_MrAu7zprWJj_XIn|
z_0B4muX4P+N_tjGcNINUe4wJQik>Rh0NQ%1);bZc%j?Ced(ZjwsI!lX_f@>v$H7s+
z!@qdaTt5|=Dn4PusrZmxMa9P|`m5OdPuCCHI6nE(k?2iXR50yiRqN)ti?iXBdDef5
z&r}Q?V>>#@$sH;Nsu-kVqKZi>zECk(#Yh#SR18ruRK?dSzEQ1Lx?idors6AxI-UPs
zbMi;zSx+~Qx!kbKHeAJsjupNos_@UXjjEblsExH7Do@gkElc@M#b^~js2Hc>dnTpw
ztwiQn)!IPg$CXa=s*B#9r_<}*vD1xLF+oM}x#M18Cl6}O8L*L0R`H{X*(&C!_({bS
z6*E=*%=T3=P35v9%#bKOpV@g3eC1m1l7G1E_ne!CJ0H4Sbib&WrJ~3l=l$MJ?jy}b
zJ$$D#SH(OPi&gxpV!nz6Di*T&nCxB~hpKTl^PR&zRxGkTUS>Nz(7_YsxJ<8MsRa9N
z*AjNx+peW-sW;PmcX0l$B1?s$!pm~0*u&5psj3QHMM$`&!pCY+QFwzZeAp9U$Lnve
zWOD@BSnuSS5pjoAL{zL%u~vnlBC29F6Tjw+sW4R>{5Yjmt@Lb;VihY{{EMzX*w8m~
zE?2QaMX~-#2OfC37jRIY^U!nZ2hS?8S@|M^3KK~ynY2#DpDMPh*rwuc-K3uu*w(Aq
zpkkwneY%}4&-{Fw;(W7^ErR?x+phAEN^nWb#9EI2b=^Bv>{6{SRdRAO>U|FH$yD;a
zG*<CM#eXXHt2m(IA_pdOuHq2qXZb&Pn0>No(h(I$d0qLY^e+|1RGd<ATE%e{f2%mD
z;vY8U8!5eKrJPXF%hu4jK7-$k-7S)yRn$p+_N<gMtnH%CvntN1))!f<9EMV-8Tkdd
z7Q1)Zy$Sg?+m=jD;xX2jS^2pVuc%nEG2<#{KOxsu+)!~-_`iY-y(Q$f;2qXgT))S%
zM4U9ByD#Dc6%U0xirYM9^YMxsGoGq=#%WN)>l&V`c%dS%hI|_4q&4jCv*pl`pdqJ*
zTpDs~$fH@m5hXTfuCCCSIJ$zT$5F@jS<W0sUCSTZ@@v*(w9*<1Xeg+`-_cP>LlGg*
zX4wjB;8u+!)QgH(Oz;)K;({eKloUdnQX2RjJ_#Q)meEjFLpcrPuWG0yguJ|l3c@Q2
zPF_=;Vr30gG*lI(x?nZIAN#u*T0=MlYYI|)O~X&yTqF-aay%XGtgZd;y|$Svp`HdC
zi{nQjKN2<AH6;7c&<BSGr-tnsc4%;EaBJwLp|=K)hTW5THlUe?B=Yav7iKx%(0J&Z
zv%X-pXZD5~8fj>!p}mI28d5Yg)6ksmOur@?QZ=M$XexQ2!tOzrt|3FiiKFS)Za8*l
zJIYq~@TJ(B8d_**t)UI$PIR=?&`QHwn)TlHm%=VOZd}R9feS@{-r#wgZTiB|R>Q#I
zHWIqfRmVFT-qp}WLst#-cF@pK!+XNDk<LyUxchx)&3fI&9hk}aBlyg;bw1_lrlDtf
zR}T&3-8JiJ!_0=sJvHkK4Zc#pt7P=i@V<r_8fI$vKto>*UupPSL%+=_{WN^SA{R-_
zq`ihu^E%((m`e8%>!*F5k2UmX+~z5C>(dH+s^K#Y12lZDVaYqWJ16BHs9Ap&=w_X;
z{u&Gt?-zoDH4KS|4%P5woDXB~y=whu`9{NV4L@iYr{P<+zQ&_5Fj_;7fPJKfTJ>{|
zVqs6&E^W8*^SmxW`}Z2gXc((umywWM!O1mlT!1;Pj+1V>-#K2x1Pwp3^Jti;VUmW)
zZ1;B@4L3Q8ed46!MAUhbjmi`aQ#DM}FkKATb`AK|SSLrub9?WDwgEG2;|Hhztl<}q
zFAWh5voy?Rc{MC$t7(|as!Mh*(lAfMd<_dUEM!unoL5@7dGE({!F0TN*i^>F4!l^y
zudIhTw$QM~CvrL`edhU1!|xgt4PNPES!|9fRuAX4dmj{XsTwp5K8`!q#!wr#Fy#l^
zTvM5R)$#ZpcR;iDR}acy)CD;zLmEnrw2>GZq8e6dSgj$(;m@9MvEK>}*&3Fy18Z2$
zIyr0~c0Qf!XGe8Rq2u@MTQ1r--SM33m6~<hb&DMtYc#CYuu;P%4eK=gsbRf_4I19`
z+Mds}rKP%04R_Lwd)4{yr2WDb$7T&%G;GzdjfLH1%lB)Fy_SP>%aW!U+}w#<Ao8I3
zooqD?H#FSjFx2qCpUREt{$`ifu$P6>uwTRV9j?DL9MHJaIF4vIs^Ji0?RFj3@M1t!
zvyx-?S!)p-<8mchfdvH$S1rQ@#f)`K!*LCZxuov7n+7K|oaFO=4X4<LHC)tiTEiL5
zTBvwl!&wdIIHu0q_6%rzcDL*6hc-uoXV_kAy<RVGg%$~(OB$|dxGD)=*1$deC_0;`
zUt?|L^jv5E@0((g9WL%kc#Fw$-t(cN4|n7ek2E~ia96`U4gYGm&%%n%>{UHuZF0!H
z^@tBOoIjhH_I_Pn_X$UY4|#m}Ps39U&otb6?xuTA@7YXd@`Yxt8K=wPLxK;7o;Y&)
zEG3tqGAbu|ULW%LP{xO{K5!eu{5}-$p&&E1*F|q3AExI{<l*wnc46T~1dIAm%!gNe
zDDFckA4>aB!iORKQPPJ7W>rSvP#st%acv-Rk|X!U?zwxGN0S_t`fhTS^Wjw=%KNNZ
zEqgAraE^vVx=K4;m3*k|Lv0`G_)vwDbAqS34>g2T^`V*&if`?7!H1eYv^bZ^T)js9
zTxKmFUiV>2)rRBxdAL$?-44r5+vTe3Lp>inJ|y{I^I4ll+G+1Yq7SrW^q*h2oj&}$
z)8+EPO|sX;oh0eyg&1l*0p8<!LvmYRkRo&5z=!>T%&(5R8~M=KhweV~@FB%#jmK6#
zyyZg^ADW6c)rSlpnh8(yA>D_*6%%j&nuFL}L`G@h!<)h>4!@qOWnABEOK9yw8y`B0
z^0p6cedrhuZRf+g!rKeJBRHbg|8`X9Kw~-Gp6S2mLnjF>I@)>{&_#Gx!ES;S2eru8
z(}!L@O!Q%r550Xn#@%N7#QmWUeSCPIcrNn;AHJ{U%=AG&oz~X}j;wxyTo6Hho+Fj^
zANlaH5B+`kgxOwd`_zZeSlg|g+?AI%fdhOP?!&h}eD1?Q9|rmOql2$}++fo-Sa7Hy
zy+eeI&fV}!A;aSOxCe<0{aU==_%H^Rcf?C$W>3gSA4bLPzl&SaY>e>nK8zLeL)>PZ
z)fwt<ZsVHpe~c&l@S_ig4^fKjT0Z>h!xA5+`Y_Fh#Xf62HTPwm?!$Z^7WlyJR%S5e
zcT#2w{>+l*PyfY-S>l~7I7g5+b6LH@YwWSN%A5301?NH^{_5yl#Pk<B>788NeWrwa
zG&^=j=TaYj^C64F(}&;L0ZKTE6>wg^ZW|EJSAArX*9X;Sy&d33>6#DEYBbJYx$(de
zWqiW@f&oDW1=)6S9ug83jQBA7)A}@su|a+K(}(pwWc#qpht)o7|G?a~q(6KZS}k=2
zyZQ~sav$2ys7$ibhgClG%v***!D^{@((|qHVXY7A*f|R(=AG@hHP};Ugq?hY4;y{R
z<wtJ6^;P!Pl%!2QZ1!P`4_keB!Y+|3d7BU0efWn1t#RrOL6ZGKcKWbO$nLnlN620u
z_QjPAf7ob$z=wmJ>wGvI*N+Q1;=@r^vJc0^`x0rtHr@HRC@13fCxwhG=04@aX&=sr
z_nHsag`D-_oDb)PU-03wkc)y$?Go$lODD;dxN?=P^R0sl-3=e^`fyKzZu)TRrH$Yn
zK|HXE@UQTPFGCxr-WT$Kv&Wd~FVlJC!($PdI2Bgie^P-@1)urwT*wQ-9IWtM$q9la
zIsF)S%}$cXkICt-e13jCYtJj(U(A^|!I|HW0)A9mo}W4$Nnt;V_>n_Lf{vno6!W8d
z06hYD#gF2C{Ordsew6T|B=4^Mu=`QUkJ5fr^rMm=W&9}Xx4vAh;KzU(y~_EKoNX)b
z$E$v82|pFCm7o&6>!J<MKdS6U6~EPaYWPvrk9tiTR`+8>?(}NHxn`US9lbnt4t~`1
zBmZpoYl0-TguE_TTd<BFb%oRuv<cGkmrRet52qjLeq{LJ^26;%BR?AZ;qfEMkBN31
z``+`0AHU{E4pd04&yu#!bFQzm0c%W2rAzjsVVrMhU)Z%dHN_8pA)M;R+TN*6{AenK
zdX91KGzsE{U^HmvM{_^M`!T_fXMxl={rJF-zJ9duqop6M{CLZcc7C*HofmSq_Jg}I
zye+(qAKR|f*<{bzRz&Koy?0n$e)ROCmmeL7h235K=q9A2AMXjF*hxrdKf1&fBVg|?
z$zG{wU8slfDxX)VP{`fek3Ql(Zp+D__x*TD_`x2%{rt%EW1t^{{P@t%x3RV9KK0`x
z;UD|a-*3Glr1*&_FW(7%CVW8L{&TV6%f2uC+>jr`{rFab7;%UnL;d(tykD^hS@vP^
zAg1}XC?wyoA1+NK8R5rBKSulUeLPKyqr~hxiO38vkuiS!AmUgSEvekg9F7zIGKUk{
zWQ7tRRA@Gdm4CONHn7}eKYsM%CpOS~ZhjX%ajU&Z*fzzFh37J-a!`bA(*&pcF+)i6
zea@MFoXT5}L9_gr?Z*~Bw)!#0kGX#Q;m2}6=J_$-kC-1ObL(?(h5G^~=*O|!X^Z@b
zGPGXmV)i;emiV#Mk5>|sdzDW6jp-b81O<QhBTI<lhbDwUUO&`0|ID4=C)_U>i0dW#
zxpm<o!LVQ?9%}e`4`XLicYaA?9@x7Mj!5O|gKR&R`Ej<Vv&J$TF;{|Pg&%9!w;Azc
z`$`tPLE}|^tY#;CCutizhZ^@>o6uw(yJ+>s6CO19(~tEuPH3{hk4-|zHwyV?Un==#
z;Z(NyvE7gI0aOTJhaY^(S}1_R0p7A=VD0o>e(d&xM<nm@<Deghgzxo(n+oppTRRi(
z_anQ5^ML4WdF-zrNBp?u$88Bc>c?q6&iL_{c#pA5`|-E%lY&g)1m{LM@A#j%a!Sa8
z*Ij3YT#W1I{5T)y7libggiC&0_T!2lS4Fwu$F;c4^|;Oa%*wpbP4T`w>G+Nxcl}5R
zAZGyg;`WdH_*eM-xbnb{hjISiJC4VGJn`edxbj@cQ_d%GWn_kn7kVMy907PQS;sxo
z<q9BQ;D4tT=N6JDfV@KXygVm*xGjGG1>!aZ1K^>?j94T9d)IEfS1ilamfMR4P)x`x
zg2e?(2$mEqB}mKC0hAG*JkL5Sty}=F26(=Jd)B}@#JO&F#Q-V=kQP8Xv7EDV05t+Y
z0969k{ts0JNva8{9>8z!C(>IpfY$=JTILNtDB~%swE~#l!j&4p>jBgbpiTgF18BsK
zG|^d4&>4U$0GsecK?d0aaKt&6@VJH7k1L)4lH&Xg7XP-3Q5wXRWFZX$Sow#YdSmgX
z2sROHD#)Ni=gM-Eoag6U838m4;JpAk1<*WzHv`r`$~FP4J(t-cfVWr=y*(|(JG_~r
zm5`oWoD^FJaDxAmdV6U9b^vW9B6&L@?E`p6$h(3a1Um}SMmcQbY4SWWzH<Ow0_e&C
zb>H*eUQf3GvPZfZL{97(Krgmw5U&K$JAgg`3=UvO0PhFzK>%-TNf{VG-vDO)=HLdT
zA2RbHcR#_*0LJHY^jhouD1eUx)`J~>ve@5BD&vy?9!zo4eJbR$00s#8Jb<hT?#Ka8
zz6TzrJV?_2B7jx}oqTmZG=MJycpkuu0EPwlau(lnPMDKAT(N&m%kB0N0Ss^N{Dvsx
zTfvb>yHFe%K=HPoQG(wIjuyP~brSVi`CMZH7#qM3(jmvOI04KSK3;G_022e46u@Nh
zP7PpM06z-<Nst|Q3R^H=GRgF~@^b()gwGV*n5Q8_>3$LK>ebcf1Ta_lO~H9=*#OoB
zFh76=0W1t)Q2>zui~tq~@GETsPy<*Jz*6@10DcdEt0P~g*}s17GZzYENjgdZ9oxI8
z^LP21)h;anUjPA)TnY6DK+DtVHE6(4o&6zzums)TY{jDEmjDdnO+_?-SO9+nusi^h
z9V38cVo4jO!?=TY=cgqTTp{|(09FM+g`u=rEx1NdyHbZb#XkdBAHabC4hFD6g0=;)
zJ%Eh?YzknrC|d&9Dun6q5{&if?)<#m4))Rj_5`pufL&s+TaYR9Dl~q1-F*T66Sp$J
zxXi;#@lXJV12`MNxd4s?aFk;wfRh3IC6<2+9t+^Oke3z63VB(Ce*!oq`k4Su3t@hk
zIR7EC3CMZNaX!EgGjKV8D*;>-8)o2AJpbe`vvE~|t_xlhoHxL#^BV!{zU4}5*DVom
z2XIHoT@H-^9tyt~z`sK73$mFQk?xUrp9nq<;AK_(7r;~DPb1Z7^Xz35S0axl$q_`M
zAPNVO5d7cs@SH*9iu2q;@(AV?%ojxdAcpU=6%ZsTD1^&}iUiT=zU}xEPtB<P!QHM!
zgIJf=kbAHf528d6J%Z>NM9CmZ1yLc0ib0ePTFa@*1i9h7=c6W$qBeKgAj$<{J8XM3
zh^}?h$_wYM{^1ps=&ck)<sfPW@p=$df*7&ZIcTQM`<7?z*N&<|5UUAR7px%&!J2}v
z1<~E+q*?7CkL5yo5E)EuxxH=>9_D<dvz~Zuf{B85L5HAI&?V>=WZarXlanMaqrVYE
zec=s)NDiW55RHOp8boRk*E=~IOHfLX`zNH)xJf+LlhY1*e=qAui!0%Bu4X|r58}-r
zS_HAYygRL?gN}s99<>Zw$8@$8Y$f<s5Up9XrHRzri1K#aOQl^9?Sptn^mhe22hl+Y
zLput2kCzrQq>^>AXP0<rS0UY)nvjWklNs8JlYbEZ25~=#K0&-6#P3^Dx;Y#l1kpE$
zVU;}QR9n9wGJ}{E#OxqG4C1>&i9ZIhEM)&Eh>wHlAH*j?t{lWSEM~<1X%K^g_#%kU
z#5+Lnb3uj<WCf0}kqj2)OTi(6L*q8)z)Hh}e-&4Fx+S9w4`LLr9>lkzj}ROgxB2L9
z#nHll2x43i-wPiT4;{-&`_joo#)~pZa6&wEBKzl2YxAYaaph{e+&{(n6d_Xurv))R
zh#A6X2Jv&;=EFgi82y(ZemHBTGklnBP7tetSRKUNAm#-zKZpfE=s|>nSQx}2iKqp!
zSjf^KeiQO*5KH1|j=xjj_c-?o$r4n8;K3!liW(1Hb*BKmKJog42*mYZ5dZY;#-MNz
z5svq`ZUkY*c~nS@eOtDNqH(q;%LIEY!Ezxh1Xl{u=D1vOO%R)c*v#=5*VhH{r||W0
zWkV1f<D4%bwgj;?h~q*09mKXEwg+)QLU+V%_5`t0_^!CJTL`xY;&t~1u`jOgCrPk&
zuR0jSArTJ?{uRWLxXn@NuCzH8S9%S@i6Bk}aW;r^B3{gw{*RDTf~Vt_XN2%1m-9ld
zao`7WA&84XTw)W5cvX<QRPhp5f^glnGD(-2uhNYmPann|F`#lw$Zf%9!>o})o4fJQ
zdz`oHSsP(J2y(|`JPKmyr;c({J!boq({qwI8$1r;Nf7@9QMFG6x)(t_4dO~#`m-RS
zIb6>Lzx&5SzOJ*U<q1zt9l3PO)bX>9+&bFsO0nrk)R9L=ULE;#>|eq6P$;S6+sF3&
zItmCOFDRstj>1BU#Py;&iV1&3u(;sJ+jd6b>giHC%IYYmgS@nkGIX&2l~9LR_1lzJ
zbyU|;Lq~ZX6?8QCHl?DDN;-zENPBcHlUP}J6~PkcGpp(#R@1?_49(du4LWM-m|w(G
z>P9NPuj#0zqwe|4ggVV$*KziyyS9#vb(+<osN>x_&8X1TlPDy19S$A+bY$vq>Tv03
zsiTz+w+@ev6dg@;B<XmAnSAJMs9SID>NB4@l65Q^>EN+n-1(NT!bg4L<}R9zbTrmc
zuZ5HE1Zz)C;@bJ9I#P9H=xC-RO}Dlkrc2kMoVTCZWpVDIP1jt<n>t$PAU|0neZ&LD
z$l}%_*0kmJw{*1D(Md;V9c^^Ht>YaQM8|4J!?rrw>1eNG+6QiW=~|5S5J$h~?x3UR
zbyr6n@98-9k%L>FZrY#vG@Md(v6DOccG1z5*V6I6ZmlxDyELVnj_x`)9!cRFOu8P7
zuH!{LM=wE=-a2MKvy*JwXa7LAZXx>WXgJ2fBMZm8$Y^su^FtjU>G)2^XdNHx=&xgl
zj-fg}(ebH{0Xja{@tKbGC+yvCHsB43a?f+~mSdofK{~$BF<1vhzDn4c;pXi<w=?DI
zPQI1qo6s-W`s`FXM$m>$pyL}I!*%?wI;U>3u_h}QbI^@^Zr?iBHp1oDTPWv99iwzy
z*k?ac+R1%@d2TPC*L|;JjE+e<ChHih;|CoRnCJ7E1r*yj9eq<%#_QO9-#*{v*jF-x
z@BJq-!(Uk+0F2#Y`%y>MW7`xRQzgnzf<1n8Ph$aH&8F*^AqM1hE4rn=x5?Q#&GCzl
zSyET6Lzt~&4m)`W6+@Uc*4?s-d#;Xo?1wrQ==hDrVN*`DE!6R=j;*mCi*zg&g}sYj
z;u0N8*_sVp&XuW|Me0(_Vn@=U>G0|BvRf`nRCRDA4vqPl7I9uBhhIlP$EzWf4<V>S
z*Ku0M866=VVIA9b?9dU>Vdz++W37&;ju`W-V>#!CcN0w=**cc#=vF`Xxq@yw?{sU^
z6$X*7(6Lg-Dz?aK7rl>1mR-$EPRC12-Y2iq@u!Y0x}~fa+^A!dkPU*2xS8WZ_+*J#
ztMMCK**X6#Td8~QZIUt-M&GIPlOgQav5U>5V~<4H%g%GAHbe7#Yh8jV9MEx4$6u@{
z9f#Px#q6ly5e|oZ$uI5s*X(5mj_dea$3J3lLdQuVFLPo&T3qeoyGy2giY@g?GRavQ
z=y=X?q2s(5-_&u7olVC@9hY=m)^SzGH3_;R$O?J=R&v+l9^SoQ*KtF{iVG8&Aa(vr
zx~=1mj)yuPaTqR5ysP719rtzI;~>giiCN`!XH2((9&pf={a?h#I-clwrlVS!#Q$_W
z<wTdKVfRMGm?q1}%kkao%fjXeAt8ifA-obo&Jc2ikUxY1A><BOm6kVzd_wYstbDSz
z*{m)8s?H!rFBn3h5Q>CQG-N&CW$QENg+tc=%~>t$&5<UfNaNxml#q1Fg-|ktQX!NP
zFN2uu#Vd76hphUix2)*A5R+;!ESW`MU%hw3Hf5Wgq*4f#Lue2}atKvIs2V~IX8WwO
zTF5%Gq<RP&K6mnSR&qLWNNCLvUK3JF(9W_5sV!JXu&!V|L7O0>Cx-CfE(g<hh~gA<
z3AzP6f=PmJgiv1yBN_voj78EggomROGD2t+LSt6-L03u$O+skO8oTP=_1u*jLK@Fz
zI_OGg<+t{5Gr&7HT&oVbW{*#5+bCsi%cN!@G!OAX3R;A~&#_vD@WrT%KUSoY_s*T(
zDulN}AfYS1&)p_uO}}powiRqA_?20e`nw@?2yyE+3|WDWtnd&Lm%+XaokHjwf<J~p
z3|&I#8p7Qu?nTipgzl_r0}T!I2%%>P84)y#pck*mjuAor2>P(|EOUOrWJ7qLWyzQL
zK?r?A=of-@d}jzBhma|p-VcR*)jH{i^O-dVCiQ1^1#F)Pl6)G%XK_9tgwKT!j4OkL
zBn~VvB!r<MED2+27+;1kEQB0kB!ux*2w#UVF@#AWd=s+X9921G8y><a?)i`}ac`%L
zZ$luC5FAN8gztop7W_f*d%-b+V_Av@sf;pCyyFGwoe;wDRhG_Y-IGK3g_Ab>;WFEg
zA^ap{ir~}`rU{uI!b~AE1Ud9*{IhTpdS{0)CxoLR{3YVt5W?&pA<PS5eh3RfSjZkC
zL5t$CmI_%c_^aTO5I9{h!QVpoU6d@=wh)Snj8Kx7TnoV`L4MBsLIVHCk~X?{Lm}`H
z1ieNG(Ga$Wup@+62&RN?4k25}>JZk1_~#CPh<AAiD}^xPiV*nOKMCC`cHJ|zN!Et2
zP7F2*{wcU#koly+2Dad8>$-HC{*S&TgstM;Cdg2hnz)lq6T&{>yF%C<58We#sqGhX
zD6Ss};b5G<yyD>yj{G0x7@IhRTOr&Q@$V4Mhj1Z;6Cs=w<)0AF#O+Uoa5~PJpR>Zx
z#g&)oUku@@D3{{;W!7z+)8<;7Uk~9%oZk#t@A6*O!<`VG#Pz!&+za8~5bnp7hao(O
zbLQbuoImCeUYf`h{uAYCTz?kA^AKK$_hlV24>`lg6~>}4xQHNk7<t0z9!8HaetBWf
z8%CWl>V}aojQn8~2%}&arNbx_Mj<hv%`0IPj`Jd66piy@VgCJb(15PEh$RF|3YH4v
zMH4rJ%7#%cjG7|8Dp)Cu%0kMAQ9%gJDu!_&+4(ZHDq&QQ>s5tR3u9-tjiEK-I>Oe0
zk5pb0rB+;jT}bUP=I*mX>xE$pBRz}^(G$aPhv5ms9=CUd;S}zQE6jP4@P>kK#P#|@
z8VDwbu~GkDZX1QsIE<7qnn+M;+`cKNvhx3{pR_QVKK>tX7Dl@;+K16Rj5o!&g<$J2
zS_)|uPvNbwbtnI_PTGX=c3f{8=0|Z>ZM-8&C&72)p&i2L80YVW`9Y3l**UIs5z<w#
zTNo$4vqF1@(JPFpVN467cNl%b7#zkBv3Wm?55xE<j1S@|^cB)CjLf*gk}{Ex!x$i>
zzu+f=p9(VcGa+?;w|dLxVGI=Spm^vPVJwN)=g=^Qhw-fheHq3uAz#HUzYgP@IOk~;
zBf=ON#<(z#&%mg-J|>Ls;(WA_@55ZJZ(Vw9T>nAHjjVhVg!~xSCx$U8&L<1`^?c?}
zLZ-y^-C6mj3!g1GLvUt1^yimEaF*bNeTC)-nfo&6g?*lo`C%-GD+~E!H`i+G#T<rX
zJ(t&behp*Q`Am|B>ukS;aU{%*!SOo>UG0>tFcgl;tuAjE%fna^hALhy3||<2;W5Dg
zM|~K&@Q7eYka5F8_@y7Y5k^$Jd0x2bHHBx#EtiGyN1UUwhXyOdSRcj)<}j|W7P2Oc
zwL;d#^*_VtIXjh6HpZ1*VQh-?&0%Z_V`~`O;>r#o+c}_)r!yAa&M<0ykV3Lsg7$>5
zSI9oWgJJ9!LW2WgRBUYJ|4>{xEM#zlB!05>R~To*IL9%?3d!L-&ivO*|6BM8!IOgj
z2%Zu=ElA@tVYEGyO7c@;`g!&xwgP+mclhUg=A|&64)9zF<7ya}!>F;bC!McB>NU1S
zgVgI`+z|5UeCB7nGH-_QAML}q6~^r_?u0?{U%|VA_XH^}9E|&6JP_|g!N*}d5;FIr
zbQ(MnzU${S@@K+xMy%AH3x6R<Z;l8OMDMuE%0MpRB)Ns;i6F0#ev)Q^2nt3}If5z?
z6pEm51f?P<9f5hqUL=BI5xf#X(Foe?vi4XgF*eQl*w*7ONAU>0KUJVa1O-kx=t>GX
zvf5cDf_YsW<sx{M5iewxjbPZULgn0!@)1;sfct)w%j?k=xHYGH)3GiUBUm>ysS>ZK
zIoDrwRgIup1nvkt5mb-h=|e}Y2wsn%Mg&G@N5Nr9U{;4E)f9X!g0wCf^wy4`4pY8l
zcSTS)g1K9q?fRwIBd8aFErRzKC5>E^lt`NknRG+SrOyd^91*m<km+O@8@WmNHu=rY
z1(G6oBZ5W|G>)Kt#5#(rK?KPWv|o}~qPFKfm;1^d&w<(Qh7pWznnaQk!R<2c=LhUP
zZ`gRkMUx1cMzCO~Embg0klu75yfbVb!J85M7Qyckv|t8!?;Sz!2wFw(Rs`=x&>@1>
ztmg>MjkL9kfX7w59kI5oY%831<K$fa&(QW_^Nt|*D(8ZujuCW@pbKkeukAg-P7zFS
zr_kFqV(q@(ouPLelNC?52!>{*lk|w7X9TCpC9mz|=y4%4N7b%<SX~kP6v31TvY+?b
z|C;-Q2>M3QFM`a7weic35qubd{giWJ1d}58NchK0KY~vp_*A^31wZ3egbaw_^9TkC
zA1pXXkcoT|LGce$Na%)$IIVi6FWF%t_$q?0BN!>-HxUev;M;gC+R*+bj)>sU-i((i
zj1q(IB7A^jB}n&u1Y;r?8^I6pxZ@)j7w7N4Rd_<2GqpR@QkPFlogCpYf2qSRWD;54
zJhnVjBi6sL*%8c%U|IyzBbX7vOjgmG?pYE1EUxV2v|l19(kgXvi<GXdQzunv*fV73
zp>K0J7M|I-?Dt_gYX|#z;+-$JKyYCMi-a(AaRk4{`4U#?SIJ8S8I%=)62YSg_bG)p
z0yTou5u9O3)04Fbd=dB~JSZoH`>F-lVItTY!7m<%9zlrXD}p~G__9=DID)kt_(q`!
zN0SsPD!4p?m=IGiTX2~m3;qWO@{#|2W4uDdl@Y8GvN~?FhP`@IDvhu2wLR&Wx;}z3
zPh0~#xrrMXeUf`)1e=6x<~(!KwL|!p2(}8L!8Re=S*t%f=-nCDcL~`oxF>=o(`*dg
z7s37r4n(+M%GwwG$hUUlp$N~s!^sE^M{p#9qY?Zip?^nkOvrITK2)JGA6OBK?JG-6
zpJF9K_m3EyVok1g(R-GID}p-_++}?pvz?FNQUsSHxWL-`+fH|pv&0E|&J*@45nPSn
zW(2n)xE8_n2vQHaZ?Mjjl0HA@Cf4z|pI>wjv?cY~<H^0lJv}MuHs`mST}Zfg@?HcF
z*yk_X{*B;%1kLlidOdV(9+EaO#Z$Vf;~{fZ)zRZ0+mi_X<2+!Xj)A9~ojBhbC}?1M
zeaG_%UU1@4toOx*J6Y%2=P;09{O<&)oI-L5<~EQ=NM6Bwg0#;s<h32PLIw&OC}E(a
z0q@^ATGh*0#Nhezc=T%TVg_C@F#AGgkpUih>57X^@58l@QU*#JC}W`G-?;{~bd@#G
z`!z>30}P@oXW&%><qcF2rK(^>!AgRa1!-Buz~1Io6gs9*J+9Xf0s}RLye3#H9{Re0
zktr@lscWE~fj11)H()amNNeb3P^HF+2J8kGjN7)AOmrAfuG#6F2CCFgb{W=Yx%7Gr
z+}oIvWT0igRC~Wv@=810TqNGWfa5?}e&zBg!QIF}V*}18Tv4PLXky?G1IrCGHIQoH
zTLU8uq!~yz(2F%-Aj3d21Me7k*FbXvZyIQAppAhRyo!NV2Hs+8?zH#J<$hMiNiuwk
z=iDJ19S;b2+dx|b?F_UxtQQ>o>-SS02W@Vdo^B%?_tsnX9a!N8x)|tc;5`GK4E$IQ
zoefMm;^0kPwSR1TD>go|#!ky_2D<afkAa>B4qS0l`Eg9r)BDz{{|}p{(M$V22HrRD
zxq*QOJ}}VNz{dvq8|Y^s)4+$UC>HZvDvfzmX!L@$4c+DonIBbgbA8Y!20k_LnSlXP
zqWK5hCog37DwIg$4T`hugrq#19fJ&fVc<&x!^CE=fguKl8sJ_@8RI;(?7i19^qGT}
zUm5t?z&8el8`d{|_1e3KopB%B@0=R4UE64<<M!Gk4U94{&%k^G-x(OqQX80R;ClmO
z3`{UE(ZE;(KNuKiV7!6jd8``a^6j4{+J2km4yQP~^|LNI$-rdRn}MH*=?%{uu(SRb
z{%Je!YRt;XQ`3=i*!$Bs&<y-yV3vUy24+hBe-_MjF_UJSnx-?>gjPwjS<g!o=NOnP
zq(@8l4_95hBE=dPT?-5>G~hGfH?YXSVgtV$$TILNE5X201HT!#Y)`rLuWi;J?=#BM
zN)5li;`*YS=TXNbg+tPSYCvOg$~vlD%v@f;y>*Fm60FvwTi3)LF!+BThJmO7-9U(a
z-ath1S>c7d-uFo~%PyDv>`!-eR7%V8j+g<HHEduR`{aE0?Pc~&scBAEvlcJh`<pv?
zj5qC97+A@nVc=f_s|>6*aEz5{V2y#b26h@;XNPqL{xq=Jz!n4R4Qw#5(ZD7SmW!FJ
zQm$HMSrWc-oLS&}?_ws`Y;HBM&A@g8I}BXeXUm!38KhfnF^GjK@9wd##}6IcyAA9y
zaL~XZ&Itzg8Q9OR%l2*JnRGF8@x{!IE3JYT`zZB(dn@i?14j%THSm{|m*>dy=wW`I
zy6j?R{hMj(Q1_~T?SC6M!5Zd84V*OakAZUr&Ko#o;Ix4=9B7<6Zn&4tw<_wb+pgVp
zo##8G47lc^m+pdriv})n*z(K3V-8>8!~+*I`yqwn=&FHh25uR+ZQ#0r8wPGlHaZ+h
z&p*jIvW=D18y7R%RZb?kW8f~!^|3Yfclhm{&)A=TkaFL^15UhAl#1dZr&i9@QRI!{
zv4JNBUKq#`#eYoGz%v8S*|&FEY5q3Fee)yds$EW=f%s^vW1G*G5Jk=?az&9liq&mW
zmb+8W{A}}l>D=8WX<TkcJ+EWRnUs7{<d33A6h)&b5JkZ#3Pn*kiXLY?ydh_@r5Za5
zZg=nn)`ae!1_x}#qIe~W;!%`{V#X^DR#BsR&QE=wjrTmPhwtBYw3_KI9YvWaYD9r3
z%0^Kxib_#bj^foQ%12Qlii%ONCJSE5obk+Y?%#gpKJX0gp2CjN;E|(B6jh_B7De?a
zHjnoh{T$p?>0u*BtM6=lHs1WYt=gr`no+zKMcpXsMNun?*Q2N%MV+Wsho9F<<qnOZ
z9-eQm*`615bI<mnHm5C$#3<}hIHLT#(8e#CW^b_i^Ursk>%VZ0DC{2EILRG_CyMSY
zcoa!dyb;B@R*u$D)Q_S8i!jxb5k+zo4WnopMZ21f7u~iuisEpOl$0nMN8#UUr;>Hk
z(<F)qg<aISlQzv#qev6`bU`Y~XxuD{=91={QM8DnWfU8_q-S+WZxzMG^=TPy=Ws3k
zttf(TI+HGC^2;3Nq)ilWN70svMA1HqccPeDI+c2DhkJdGH04f3df$zrgXrWPg}fI<
zCn22$y9jm_>?ZhNbOw!kM$s#Z`B5y0qIVR1qUayRCsCf8fDfYR8$~~Qf41{=1|J~~
zGs_-Y<;aX;)QD7W)WH2JKV%Ws+dhio<EXWS{4lqLT<iKYiqE3>K8i7H>nJ{t;;SgW
zj$&XGgQ6JwebTTfzF-S}pF}q_iowE%#FciJGQSjlVp|3cKDv}S;!@`2rwzX0b))z$
zis4aw8^wqyp4@e6uecYKNhTS|A_)2VEqARMsdS^Gn0_g9){NA#QTz}^$x;ou8hTt5
ztMWVPW=1hSiV0Cn6y?XbK1s-A!J>2UlaML#(5X>O6Fxnz%-}sh(7^<M7Uh??J}ZjZ
zQOptVT)}x!Yu}ZZSMSA*bfQ?qo)*RVC>BTYYZUvVI1t5>D3(UCHi|87_is`B9z}rt
zA<8FR_IwKyv!Wm>f?h#YkfJ8UC+Lr2duA?*MGdDOMRpX+q6kS)IBp*iVnh**D={Hv
z)H=tLajTBE{lWhEwR0s0=6Kt3!4-ln*Ep%KlF-#rtP!&NgFF=1Me%18>)C1hByNvl
z<0gB7sBMEa!`L=Pu}KK|W)@KR*0{1QYHeo4Ai5nQ?iAb=#cm;c1osNkW*>W9e+S9I
zC=PK57fmcvGWBp2N21m<$+H~JuQxs##a~ft37fXVvt~=iu_%tSW~!zBE#e7QY_(LH
z(cokh|A<I_O33Lb&Iq}5CygT0<X1o!IGNOPT;sqm<h~fi{Yni>PbqULipx<<K9M%&
zRreKk`&ZppIsHy4LvlTe8&TYh;uc#!3h!4=-s2TN<0Rp+iFZVqdMp>c|1vd>rWjhq
z@PLy)C)*f`$MA@irrHa{P%wta?DL%eqwrnId=W*C7@qQ%;_IZ|U7gROcpkO(Yb9U0
z#{I`Whv%j}A%>hW<cfjbJTc@IlKUlIt&>j(gYw5PGSfjqM{>5bqfpHH-lJH|dRJRG
zhR6a(5y7H@JlSgXZX3^rD-lD<7#hXUIEGR&n0p*GV|Xow(lL~Yp}|+SvN60GL$Fg?
zxfpi-XFpOhnZ1JE@-b8py`mtMN<u0NR*9i%T(2gidJHvUfN-8GP5Wnxy;cmb$B-C<
zJ%-vbq_1(%)roO!wWD~<SvQ7yG1x?(*E5CUh9d4_|2iBoIAeGthWatMtQvNDVmMpI
zxqP0(9YfX|MVLsE=zku!F;p$$ZV<!#h=VDRC$nZ^ASwL9LrjUG37f2YYBRy6F=Ply
zjp5&fI@Hs|n;yd+@$!ux#hxP_&0}~|f_ye-ix~1Oc9JAFbiWnDXE6+jp>+&xVt6}-
zdrcd*kKvsd+6w2nx9wQ%D{R#1-i@Jq3_W7#5JSfp-ix6V-}%PSRgASd?#?m%n%l9U
zk(-~krrF)y_)_?!_2**$m?R#INZwPFj|F=P_7?0Dvko?TU+@FLzJmP(Gh_Hr2yH$R
zQu)<h{bTq<;_~WD`BT9OPh6kJFffL(G5iq2pcuYj<;=H@jA3vLL)gc}J5=y1!7l}e
z30jAM&$oRod}(_t;&9>L3er15$nL@p@=-B-7sGGMY@<c|K87(dqz*}85Z%VnN#kM|
zAHzI0Xbcl#m>9#f7^cTCDW2MoF-#VoJ{e;}=|9CVC5ClKVst7~C8+-wo*6OBjA4#=
ze~#go7-kEfCHOMu&39TCrCZq^b452L{|jPR7{gNLGloU%x>G#1FFZ@cU~vo^FJ=D9
z*8jr8Y|ln7M*m%c6u~TZ+9#>~pQIAK?1wR&zLfd&Qf9m6X&MLJ<xHQT^Kxb|20eyv
zvoRtYp%}t3Y%;OgL?i}-qtZlq6VVuAoK=q7ikdKE$Yz_iOM4W<GR_PfzmFWZV^|);
z3Kp=xeO(OylucU649~Nzj$swYU21(Qxf?h>&PZJoLx}>ewKQ((9Fix6_J78(K86h}
z5icFX6|0xpHpj3fh66Di6z^8S-GbX<*e---JA~{M+{I4vv@u1xJu&PRai8FRLF(m4
z;ZO{RV>rbMiQ!0G|69mW!M|cS7T1r*P;7&f5l@J6GOqt4B=5*V3_26Tg}8oJ$hjEK
z$CdN53SAU_N$_%9e;M~`4A(@t9@lTga8vlLxH5ZVp-O+}x)Z})4pla84EH(n$M7%)
zF7)nj*YTumdR9|U@xqR&2Ry5fImhm>J&xf?4F7T3k0HTCP7|Nsvi1MX=BVj@7Q^!x
zUa-YGICGd5=3141=U<*sqoiCWa+@e@;+sgXJdAbHk=MlaZ*8qnXvk=1J`)+$opkw4
z6o~VJCJG5Z7P2#_h{WY%XQoih#49G8FM1XiEG<|<u%uuq6X!46)<$f!DI-c*6Xk?Z
zS?Y3CFj3J&Clj4bR5DT7L_HHW6ID!9HSxNMT$gOsOl(+~1QRt)R5vlGq2pOeR}B-y
zfd|uQ;JMoGHL)bAWr9eNuC|DEOw<)ZCC_SCq6xc+cTBu%!oi%Fc*{g<6D|{OW}uAY
zO{QQX$wV^~%}u;vqCQ8*l{$>uzy!B>;pd$xCX$6W6l^5eSda!Y`0$?*$Jm+*lBAkQ
z6P_-ZA;`ae?N2zDr?{TXOQmbuD7A%&2_2JKnrLO>m+KjCU(S5%X&RL_CWgM|Zf9EG
z2sNtde4E*8?`SLdNr{H-P3|RYZ92z=_KUI{9T@j(8&_cQ(AAEnb@b|cyn4Pwk}f8?
zGStK@6WvU7H!;e@cP4t6=xO2;6Q7#sWumu<ekL+a^fB?ii4RQlWiOhZRQn4DH<lUE
z%{}V6jXTnFSDa11+dnk%k%^B@^fy6ow+jyLBeZF3dd<(AU*>f2TqJG;_Ze%(#Be6U
zUTR{XiLcp<*aSw(AYQks!*Ry(g^9o=JKbOtLxc~FD_@!zCj6_oGN!5X*Ia4Hlf<>3
zyptbcV$onH-AL2g=IA94Pjrqp@x6(OCMKB}W8$3O{)35eCdQhWe?E;h7K+-(vjz@y
zp_^dh^b?md#Le$`c?i^G6F-`mYGN9D=2;t``~75MiityuY?p33%0G8)xM!PgVup#C
zCVn>gX}A5zFdH{**xl64W5;=KU-N+DgV{;5P0TS7=45MPu8DajvP>w<fQbbrmY7&-
zVj=TyVzG%|O(b@&&s8(OzU%N8NXgU3!!37sOxxwFwwVscZzg`{Xtg`ZliH-He>?S>
z&h=UEdrkOE_)VxLG!t#AI<_lz%uE`c(-|-kG@+XanP~Z{vuVR*y2TF~ap#H!Q*7L;
ze`JwlgWcQ2auX{|#5nnz*s;y=hly+x+=qv5nF($Vc4)s<ISlG^)!IdTrHNH0)|vQ|
z-O|Jww&vx6YfXH1IrH|rP9CcG=So|p({?@y?0wL-o<rEgMqX&Oji2VyT`!XS{jcuT
zgB)8-Y&B6P8)dVx&BS&SS4>=G;$=KLOzbtW&%{nP-&Xf7!QFy;1SxX;`+jzE6KC1J
zCJwTJOdK<D+{9rMcMf}wve(UV9}(WNrQ18#{g)`Yr>0Wpo4dbFoG@|HwBF)9o#+0?
z#3}X!6K71&yXSe=V_V&Px;XV0H!nx`<1F`ij?;7Qi>CD^s8UP!1!i(rW@S&(B~dP$
z;G?Y?v)xUOc&@R%IL&4wS2k|2lW^8D@m$PqnYe4>o{8J+qL(x8n4mq=C;n^VzKJI$
zF3oj6F!9jDBNLA~BjxaLtJ|P6>E?Vl-<k4J2^}x=AG2y&M_n(zoJq%6bT62VY>YmT
zo+BHyp+cmik~<rDvhhkbif1ElHu7boST-6pNY9^*0@)~>jUw4rg|pNJvr#A;(aV|4
z6(2IZxy4;H8ztQCvFr0QlsP##*X{S(bGzIR#-*0Xwko7#Hb#2>w}*TwQA%gyKnrXC
z_Hx;HH5+ZS(JmY1vr!=%?reCnQ862pvQaA=uV<rjHmYQ!|BJdcvr#o0)v^KcR%a=)
z@n~9(8`E+y^yMC;++l_ay|0N4N&B%yYiFZQHWIU87qM<OmcOWL%f{{(b?arLVbesK
zG1iaMau6NaaAw1mjak!jy#HJE0uyp)HObMViIrwjHr~iadNwk$Q9m0Evhn|z`VJ^5
zitlT34w7^9lIh)<omuk2?gA1-1W|&LWeEa;1c?$vBuUO7AX!8Zfyt?RX1Z6h1VOSS
z$w5Rh0pIPn^zZwhQ|F#rw_a6Oo|&HRSIu2$;iCTvG;yJs3n?zVu`nBpZA!g)w!F6#
za*}Zivprpyt#$KksV*G6mB9+9xsX-nlgjOB!_dlwwl1`Dp|w=<H5b}Q4e1-4JJ`mQ
zg!b%~McH0=p#x{m!feB(;jA0;z9E)udnXq<yYQh4BV2gPg)T1icj0{(-ge;~7kaqx
zt`y$Yg>Ei%7tU6*H&`+oNd6uxCVF2NddU^3_ZDTr@3uVI>i6Lc$yUE<$DGvriGJx;
z1~YbQo^60cGXw{U*&yMA1&3tei+Udj8S26?A;T@5br|WwM-m<5!YFCfXo<3oO=Jkz
z@Ubp@?82Q}8RJ|S@4^Ijz9g|e6J2<)utQeIe%L(QCocSX)y7cIjVUfn<>Yr^x(kO{
zGUu}kGhEokFTgH*=E6)DR=Tjth0k4><-!sdmb%QJ@HdAyo9#lNYwELeiE~_->jKF<
z!7l{o3oZ~`D7Z*)u^^4t->$oi)5&Fec&>ffw!(#eLEH3*l12C_yxN5|E~G7YeCxtm
z7ru01s|(v)Sm(le7dE=EiEFc6@&*?ez7jrG={0|JIz@)fE^KjOcC}^<Sqe%2C;5N9
zYTxcMH=?fvNp=YN#)X|ixBw~k$;|&>6Wez#>~X>8g5QPjrQsef6Rva@_POxyt&IIH
z)SS}N?Sjh%<Ly+2Y%O|4YC5izane_C=gy6<?N8$;V8DeSm&Q0H(}fTVtY#l{SXueh
zeC0gsLWE8GNl^tg7mBP=qJktbA#p)n&~V}5c!f#5UQheMg<Bnx4{(g0*$=w-)SpR8
zy_rfp>cTM>p1bgZjdJ0*3pd!+++kce$zIKAJJ03sbe!UZZ<ADVcMAVV{fSfPmU7yK
zGeUkAq;i&%Bu|rb66Is<{%OhuE}{*}MYd(3a><3uLVgjvB6wBsnjmeiyYTJt+$1+$
zI6WJGx$rmF<Jmg5T)54_-II97g}XxT3I4{lEaZXUL%~Oa&Wy6Oe=PiW!6$-$2>vNZ
zgQr~VbQrQH@gEKoSABtmW`%9j_m|--MgOr5^_{;>bUbrm^_`?QTPJ06BfA^b+^FtG
z4mWbT`8c=f$Tyc8x!uU)MqW2sweS6>D`kSxl43qL7N1Nn;6_0=^1DF~v<$^=XB<^}
z6>_8MEk_nF>_!ncC=P0yOkBCs`HCCFVuHopDB(s)H%dvAdIce+1<MGQ6)Y!Mo|Spw
zpjkzUl2j5>S+EMPYw0w5)os4*!sm;2B|5>3HEb2;I%>F4(+!eZg0%(f2vV%;#*T@p
zB-|P5yUi^^5!}8p(dLHTjWiF^JxFrH;YQSrn45nQA=zzymigUi;6_8?EqQ4nP26ZI
zq_G>dN|_$j7@DyhH{EIWNRcEe&4sjZBUK39R%cnJyOAKdTDj4h!y&0F-B=~0jT>!+
zv~y!jD5bp{e5L4h!47V`;YLR{-gINA8^he_<VI&V`b#R!-g2Y68$Bf2#f`T~gm-nL
zn`Lu6(b?yMjm8Y`irCAI_k{Fx<Myb$G+<J1H~NU!SFoSp=f#?INHR0N@5TU8G6V;^
zF;K`L!SzwohGB>sABaLe)aw}T#)oc9bz_={Bi#7djd5;_bmJp8M!7NCjj@t6#>&O|
z6b-$s?e{|~u$=L3OtMlZxG~Y<*UP6)7XAr0e>dC}U*<Zu-!|QiPdTyOSmMSEH$HP?
zwi|QYm?`$NtP(zV^GoB)Tv^>U*NypZEO29<8(+9lrb{nYfW0?rjoG?|ZY*+xxq41c
z+w>qkVZZ&&q*hC<(w4cA)oIH`S>eX%7x|`LG0VTw`{hhn?Zz56*1GYfRCvn-+g3N$
zxzRq+#<1Rv4Z^<?+-T{WglrbvBG|ckF6Q0l264OK*Md6)zj0%y8{fLI%Z=S`>~mwk
z8{bJ1?Y|eYN03dUvR61e&?Us173G|?DoGpL?F^#Njo&NVNjR|sZUklChTQ0T*lb`}
zq7gw=P~#}<G`|PN-O#z3xaf{08E#~{Ve`Q5!4Ga6a3hxoxji`O#vwO;bK|iahut{h
z#$`8t;kM((F*kl<f4cD_7t28BNPCkLZXD;z-RI;ZZ5?lCoOI(9mvCN3p;Jz}k@uBz
zo^j)6j;|Z%xric3JX4S1Eccds0}AJEe1XgAl=Gq+m)!JO>f~={W_&-dgJP~3$yeOC
z>c$;6?sBf$n_P3_h8w@Sab0rxt2Ck6O;&qG@-40)H_FdQrV~#77tg=2iH_WkA<dKT
zx$(e_hi=?w<>MKx1~`e~PK9_OW`E>1kGeA*buM-M&Kd@s|GDwRjX$_kx$)GEzuox9
zjidy}Uv9XRl)opHVadD@@s)Hl{LATm!?ARW^309rZoF_Kn+M~TIC6OK?jGl?KN>M)
z_uynXCwnZX$8^7$^O8b$YI!{74djv@l=2|22l+h6??C|%Uh$aEEzqo>2ZcN+ELoP<
zcWlV%C?ZKkJ!p13acmy*XGrO*j$$GfXK5b%H9eV6urOTtB$fSK+JlN7RPumbQO1L^
z9+dN-JngI6DtOTMhB+JqB1!3IZRAESM`aIQ^#C4J@t~>))uiO=tV8a`eU~_Re)quJ
z8PjfOsJR-~@Idh(!2|M|9@G+2Td<B`UBP;Sw5jhgy^)i!CaiNteMh1PbWnfJm662i
z$%JeuSiD|}QwaU9CVNaLu?-~3-(PeP%6Z$^gC?Rh6>R1aC!)ua=*Tq1gXYp*Ed<$z
zsY0BGl3IGu%7bJt8hFv#gV)&YUX=EtjR$Q#_{oFQ9<=kIy$AC=_(Dp4-GlxfyzfB=
z58m*gqX%z_-bb*L2XA@Mg`=F!+1Z2H%^a-T+miH-2VI5yd)ut==)+0fBuXEr-C5gX
zNj;cL$a@~pU20F^y#$%sTL_;FXWqUZ9#MpLJyXhNb22)>gA5PGdoaO+fl}rW4?Ykw
z$b-QiumS<eI8;Pt`PhSD9t`K43G@v1O!-js5gtTeI2c9>`N)IXhm%HmFj}Hxtkkg{
z(=#p2=B&*>PBM0VKV_l^lRTL2!KWTf_TUp<v|h?oN#%(!yy6t$bi+$N&4V*PXOPVB
z;4=?qv7<bgDF&Yl(p@l9Q|qM==ZHcwSICs-j(tbX)cGDPU`;&OCi+4TmU*yT_#(l@
zf=k$MLY_}d9sE}E3gK%#_|k)w9;}k+Y7f>3VX=GnJL}a?`SnoJI#IszU?b<72OB(i
z*wh?N(<ZxflLwnU*djJdp1;(0zi=Fox^4I1Yj&3hF%Ncl@Qnw1Jow&&ogREEy}H{2
zK2)>IgF4dE)spKwDUHvMnV0Zjp9db!gdEQO9=JSkTQ$5W#`I>Kb7GEOFC1PEd>;C|
zGI#G)x6NJ+c+k6lT2L?~7#55Os)Cvz%^Dm{ihH1YaL9wh9vB{EdT@ZlF~IqQl$kXm
z<LQ$3SkggGytVo1@|SbwhzCbKIPSp->7N~kl8$-sqlf1QwWMV?8FZ499-NYLc3tYu
zXnSeh84rH;pr{wTpLW)R&{E~H2fui5j!hn;ocEZny)JN58j*5QkmM2<T|XxYpQyaz
z!3__7^_WjrUKPCN!F3`0I&B&hOStL5Ee~$9k^^j~2HWp&o_G^?-Oex$I`4XLPonod
z_(KSj9&mhxKeCkHggh4f-Ge7WuJts1N&V@;Q;GiNK`t+Hd-1mi|A_Lh2QNIx=EZ*!
zedfV)A<ebw^bW+l4B5TN={0!{ulYDD2|W~LrREX6fFSj}Lh=db7tC^tRM3k;5-sdS
z5g{yrMX``qq*vLo#k?pkJgv38gpiV6tj=R+QW-DGdQHzZiWlX)DDOoFL#gRS1tH{B
zyr^jLN<u0NUMrAL)k|ljrhRoUnjGarh6%5F0WVJdrR2NatcI2A!2&yNYDu)V7j?WC
zQ!c5lMC*A`--{Gmy7McWtyluh5~MPTf;K_BV3MH23#S)pPnGu;wQPDSh1F(g=*4s|
zKJ}uJ7mZmHFPgG5y_o1lGZyYe4=>*JqPZ6>ym+10^&*vpNP({jrVF<6qNNv!4&;uT
z&%d$c*6fqJ1NgJ9jTddjrk!AWF9sXtrF%TI5#JE8vlnl9(b0=HCAx2&y^|0ca2|FM
z{*D)2y?EQwd724RyLr*wQkvedG0^M6dtUVPVxSj;yy)dcZ?E|ip2mH==<CJ%V&6}&
zzm>O%v)ALTW`P5|$PiIG*`0yPU@wMvG17~Vy!b$phIuhu$WX88pnx_XTIGxoqTV(i
zZAzZpYm`LCcrn(C(ZUZsPGS<n$6k!{V!Vj2<g}OmGm*=U`tbFRNnT7Aect7aPrRT9
zzmnVS<0kZ?>-#C9PxWG&kPb`DI?wRpGq%wSzZWyT_}q(~k~+(a*<P&m;!7{)crjPR
zRbI^V;tMa9da=xl`Ccp#eX-y|FBS>mW1Qo2C!}Te%Bt-WuX%11`Ep4mSt(?N7y0Kp
zvuu?0sU)ktSYz4nJcxBN7F#)QpWD`Zu|bl)@?w)0o4wd*Sswq}%)3RRx7RzeqT3|b
zb}zp6Vuxk<jgZj=Ot(&sjj7*yvCE4}zd4JQw-I-H@tqfYy!hUWy<T`Y2ii8?=f!^J
z^1?0A(M^*nUb>x;MYtFl^-3!Jcue|233w6o;(`|!y$E>`_Ts1)$Jkvj5+hz5V&O;9
zR4=yPZ**gxP4gn^1^+%{h<OpWxGu!tjv?d+OF!VnLE&ZF*qG(8l*R&&crk0bLh>W4
zEx*1`dU4$1Cs+-;`K$bt7eDbTrShHj;*1wRdvU&DS$feq>%~{4?6ay?KJUdjFX;5+
z@)!qkLvB0&#JR-f{H1cki(kFCEc_QQu6S`(`1A+q*SJX6DYRj@F5-_)8~IHyN@>+c
z`f$sO+nh_h`6F|FO}7;CyI$P$;=UITym-jv?}N>UM_&BKJ=4c;;CSrC?_NCj;)U5{
z{Ncr4+~lR4KfQSB1@Xe|x-2S-{Nu&HB0jThnEIdaEJDoYLv|nX`%u7#96qy3Iep0G
z<8KX<=k_6w4|#paCrK1pGLadx2(h3Kg?y%7RBQ_SP{cCMGGjTf_)tvB{9neBK9usI
zrVq7zDD6WTA1e4z(TB29RCzHj=llN`%F0;Dhsr)w_u*9^s`yY<460d|`(KrKMfgy|
z(wR4_=G1HZP{)V*RuZ$+^`V~CUYao|J|z5~+A^2jha?}``Ow}6hYwC4n)}egvPt%#
zfz+g-4~>0jB84}SRF>b=hi0OrSoZ(x7G5jWYGX?u(uAj53a{JBht@v4=0h71+y0+w
z|F1=_`_RFMzCQHx;SC=;`q0&fZa%yzSvvdhmRz@!m6uoVLjMmwyklJ`tEepO?n4hB
zdil`Xhj)E=&xf8?Mz)1jqFGk``$+bzzReQ*`|!RGLwxwahXFohNXEf3paaEtkl_DH
z$SQEC55s);P>hFLW&ZD4BmU3TdC1O3KJz#>1npydJd_#5G!)n95(?uuKq?$6#``dV
zl@Fs&7!!Tw+F$6yA|EDkh96TV`|ybmQ$(NP!{S5cpQlrOn8t~>z{xP(hfgh@ySsTK
z;xiv+`tZ3AvwWB>85j64M+j5r`!HAdJi#w4{qJVx_LA$c^I?g~Bn*pvSn0zmAC_1)
zOMO`810P9UE=aOM$eDch)jq6Y>q0!&8*6>|l2;F4b^z;qSkGL3EcauB4_|TU{dmKV
zjXrGh;j$0E_^{cBEk5k>VYd%|T()iXVen(+cUuy}HXn%F1-};DA^43CJB2XyTc7Df
zh2%RQ_K0}KhwpvZ>%##b4*Iaqhy9|*d~gZz_~7-yZI!?m*?bm{_}~{F@F6H9Bp4P<
zJfbl0TB<}fK}MrO-h3s2JT6@4xC_a&Y<^%rY%uG2NR;D(hXs!a9u+($NV6X~j+M<$
zI3dbO!Bc`iSvIGIv?ySs+0Q<lmFPLa^MV%yFACD;5~ov!X?(?pt6ckjH1Xq_57)V&
z`BB!78$SHX?a^;`JHt)x;mphZ--p{$$Q>UZ2)QeGPmq@Pec-(gl82V^$cNu7uIEp9
z!ol_7xeqTy{L_bjtkkDI{AKaKeHa;ZvYdZK`Ongy`H;NWK|Pxv+5O08)i8%2xrOJn
zlw5xFACgGRJeHEzj|Z*Iy5$$8fTb7oquVRyh%glPqlh0x{dh%EO9&PdEN<E7nx3zu
z@KTmi+K+!qnI)9-qr8YoepK+Iq93&+T1l|FU}eE7f>i~Xv6>$PW|=eURZ$>V!%D5`
zM?7Sv*7l>0h;{u)5K_;wsV_wFqt(Kft0vJ8o0V!8QhR~ouoR~s$-)~5Hnj9cejI9G
zc12S^n)xxrukZkl6hE5#k>*FbA1(ZNe~xp^Y-g(9JeP``>uyISv-vHhkanztkk*2)
z3APcWO<O<emNSjpi}Jc4U;L!f(T_L%_}GteesuC9b9%mh97Hkb?8jSvbP@ixU~fO(
z5z>{zC#1XJdw%o~!UEs*W5LXqz0uQ;UY1U=kHz~6nYps%`$ASE*ar(4;75jKGf>DN
z!J9p8L;Uza_)tGaS~kP{7%u!n!4a0uS@)6fQG%ld$5^Rj{rE$+i}8L;@MEqY^Zb}-
zrGDziB#TcL@`>OSKc)(qW~EN|W8hon+@4`6pZPIU_~(MNEPb|+Ieu)~Z`w0V-*5lI
zkCqF}j+)ONvn&_-vB=_!{a9l0rG9#_H&@mQKUVsYBY>O%tny>EA4mN-=EoX8*7~vE
z50@VoHY%qsI`?+4f9c0MKh|^q_v0%mYPaA<KXzCpZ}MZaA6q24)sO9#zRiyUtzOpl
zYtAmI`8SffQ}A2Ma+e>wkDCqoPLw^C{=FZ2Exyl>Z|0gdZolbdN%JG>heuMqmW@w{
z-;aPFK|ewgjaaE+u0D_10}Lt~RnH_bN%iGSD%UQJ(YQo)KMc-fKYoztA*+M~>_g%F
z^rZ1&;YS36`_0wyqaVlpc<RSrT*WyYC;T|)$9X?aip?oOn*Ai?wBQ-Rp9Rly7Ddcj
zUGU?gD3AQOB!uF1KQ0UZMevHHUlnqVi!NgJ_6<LN_2Z@=w?x0keh9xDh1-7Iv2xw@
zqfid>Bk#T_4=nwmA8J8U|IJb!lL&tz_=lzc$zAt1vp@glM#}AXpsk-j@n1>pyu|Kp
znEan*`Ao=j!57?r0xv(IvIp=hUlg?^<q9Bo0QLZq0>~3U-T<lwP%VIb0pt&$SO7fI
zlx772I5@NNx{=A`1p_E#l~Xu?A{H+iz$?PHmo~E$51>Q<B}FMOSjw_29Y7i3Wi6!~
zEytRlUll~DC|Jo#tt_NU!1R7Yo9Yt%?{)_Hs{ufwHCR<4H3e%4(x7$#b%fUy9Fo(l
z8$<m76w4+-NMZmsOSw2(aRlHDpj!al14s^F-bAHQ0F47^5I{qTjy#n2>`^;UL~0U1
z(*W89&_2L>+GY>85lji7xsVouEdxjuk|s#A^Z<6uGgnqCQCeI2YeM+&B$L_(z>gsk
zhSx>!EZ9Nt4Z)59yeWh>odWo?qG|k=rF044ZHvDnq-y|^+nPPuBY<}U7#_ffqQ4hF
zhGp4PNUs2T3+WR;Um^Vj-w&X_kQaMXSPsJgPMdmWnFB>986;$|;1IzN0vH;=FyTtW
zw2p>pKO%sUqD&0nBOw&W2^l3gI)E`k##*T#vt#R+dB<DI1R)C>J0`Jd0eoWVp9+~G
zI5mK2mOecIo@~Mr7-oq0SpYMw)XxLhHrwp;IRVV&tPY}B5c2}~g5wpyHv!BKU;)3S
z2e4kUEDYdFA&UZ7EM$q`YQd!eEEB>4mj|#y_)1Gz#Xiq`xi_u}V6EtFMmEc;+rGA`
zBpU+QY}tPmz((PlETvczvn#epbSrBvWV_(kmd!_pQ+5XMZ2*@7xE#Q)0Cop(DuAB?
z_>S|of-Mq&8o-_az7Jrp<njpavr5<>fJ?aBQVRNcezZB;eS&_$Kmb7@A;E9}x30gO
zy<2}bi6;6F0Yrtw1ml8C)dMgrp2=1xnoT<(%E15*2{|nIV*p2l92KP5G45b~b9EmV
z<%Ff53}8-vb6@4>!kLPu!RY|bNb1j)&Dj8b{h4h!FL=SyFLJyR%q+ifll0>er%eD?
zSjo8kY5>;)xNceA3E+nCUj=Vk`mF$NTRiJ)^W6aMiE`i49|(CEK!r(Wdml3z08bt-
z9K@3V{@_*|H0$<f08hm-XApl0c^1HPA%6@0Blxf2e*tvqVwT46LKMz4@@zq5m(s{{
z1mW#&+T;=?x25M1l2<Ta5If|%bODJL6f7jj<AIpBd*9?DK@<&w#CXm2uw6>=AW8(W
zFo;D#lnkO&5E(%X45D-pWrAoNM3W%O22n1E`avi`ln<gp5WRy+y&x(|$<+lb304-Y
zBFM{C6;dsTdWBxL?p09`M2#S73a=GJ9U-*^nd@v<)3|OB*FG~RVcz{VUXCO|43Y#B
z1#Lmtg_KxtE<FZE5Kd8&1se!bZz!Zu5I?puXGqf^nu*dah?F3j2hqv0Y$2p|5UE1a
z1k<h5mO@&wD?T?X`C1Tdf@mvZ2g{~i5bZ7gdJqSs6*PV$h>n*2W)PF|n<aD><t@Q3
zf^Q4HBS?d;K}>n@a#eN@qDK(#2JxPi+AD~j7JpjZY+COi`UKH8$j2AWDfGUT+CPZ<
z2VRcCfFK4}F!>;oAb*YGqacQeW$m8!4~2XX#84~mFd@SQ3*@kk2!dv>{njXGD5HWH
z9mLcirUfx3h_PZbDTt4Q^e|?hU&S^)h;c!XFqB%DJi+1<gSfTM6emlTPXt+|DM37*
zZ?<>3D6<7W6`UdXnIH{j3i(`cRuI}uvqf_xI@hw97sMCB=Ud8xAl_+eS}qP^Nf0}O
z_%?{8K`aYmbr5TUSS}sDO6*q%Un$7frF-s6;Ty{97TVTI>Q{na3a%4eFStRFmuRsp
zd85TQ3E3RPmLRqUu}z{o1h-o@Uk6bwn>mQzSW3s~`E~`dJBaf^TnOU3Aoc`tIEW)b
zd@nZPAR<9NpO1Y(?6-3Hgt&rm3-MUGH;4^(bD8)>30QhiNQfm=dO1VXAPf;T%O)x$
z7DU`q^q~3NCQHk-lpll~2;!in91?PTpxLOSL7bB4F)Q`QAdU+^A$Zc#`Sal?;ioO-
zjF6v$IBO~Af^?>5Uj1SamxA~^h<}2(9K<i2=VEh3@TTBZ!E1uo1#bv4`>#Q~FwE*P
z+zR5h=y$BtyF%`9lE`oE2SGdx;*pj5M-abR{4t5epKwJid%0%+6!9rP1*}wV2wXV-
z2JtM2=Ry1z1f#USHdlEeHn~H{6GFC-xqh<?<`B#&NHJH4UOrxypI5{}A><R1-?Awn
zq+kfsMwz`-SfWL&)S^OO34uN(m|7x)k|8__;kOV<g;1JzI79d{gfbzN4Pkx=3qmLt
zLirHh3!!HS6+);OLgNscgitAj%CubUP^8Q%A=DI7)w))-5ULA*)lwj&1~0MtWh-ih
zP+P=0f^`M!39@?iLx@#*IWrSNNEF>BXb&MN1c&ejf=)r^N)91cFEdv|OKB9MQ$F*G
zO+#oV;#-0#A+#3KJcJe@qzX?HtZ>Kt<-(92LQ7G|TZJ${M(Q;VL<ns~f5S>`7eagC
zuUkro5W3tlYtm7aH!Z!Bkj^2jdt}zCi$vcRd`GaWU^hV;bPu6N2=9iV)-<a$f1{bJ
zR|vgB_&9`dA@m8MuNaRAp`Vb!R^I+0yf1u!V20p8D|HYD+GDPQA(rxikf9+A6EfV=
zKMdigt>$${TFOU4MhT7%@$px4-j20W`AeD6@geXf$JrrF2w`FflR}s*2A>M@pH13)
zB78~+Q-w?uq&_`_db3}S{tOX63t^^}`nix<oD~yIn>iAlD>%=x`67hQ$Ib8U3qx2G
z!qO0yg}}{raR^J;E#E2KAG|D|e7WRWW93~TWMv4eEM;{FuN}_E(inKE&bkoRhj2B7
zYawh9o4q0I3*oB}Hp+E3g)rlh@=XYvtrE6`uvPdr!R>-yTd6xj<}>gte5a*+8^SJ&
z?-uf%;2y#6Lr{vE-<kJYHfjhi;qDMTLcAe_h4?HRzmR}nP%y-GYB&2KBGIS&%pTK1
zh;sFbax{cvLgFFlAs8WKN|a^?L-@hs2SVV-F~vio9Jcf$A-I>A<^LGM@enRp`UxRt
zLO3bpl;BTR>gf;$%3k-grJNOVPVjsP{WHzkcu}I41TPEzBFLmGA=plvZMiPWuOZwF
z;f8RfklAmyLbxr_hk|!PXeD>O?n;yf_d>XD@drXYW1N#}n{9c_Xb9E9s2;|X5dPrS
z9Y)?T{tV%12>*ugUkHDN@VDgphXxUuhm9RsH*XJSw?7Nvc?h|~W{<t#wjVa{>mHnJ
z%X?jEC^sCkhmk{4a|-4XEPvQ6CnacNzA*BKQ8<huVGOC~C?Ey}1p{(Bx=<Kwsk2>L
z(J)>Sy@Ft|FwRd_N((P8SVFL57}*0TCA_f5ywy`CjIt6fCrG7y7?1m!_xCDVN+ltc
z!>D2@RfVLsaJ(7@!bk`sF^n2kYOOG83eOcbXFEe}iPj0Du8?|y^#v6{yL_tJ!mx+&
zMi?E#ND9LdMyoJdhv5t(IgFNJyjs@W${K{xB#fq#v7uli!N!8qV&=_|W?`gBlsqMj
z=E7SDrdm3OkE!Wl<da#=JNz4_nNx1~bQ50_vo>M071GYi)jo{Zg?F%&T>J~b;@yRG
z66`GamS7jbx5IcxNLN8#rCS(l@|%t7VJYv1@t(zd3h5>I?6}f5jDBH!7sj422L7Jd
zpR*#255jm~qErS5$sh_DBsf@*sTG^l8yYrWMjjEyNFl?*`20oP;esEA(R<n}jMCtv
zFg^}roY;&K94$CTaBLV2i`AnU!}u_!hw*6`6ZjW!7?Z@{lQ5=)d0?D*E#H+o#Hqsd
z8jfjURLX5$g1q6Kj2U5k7RL54z7At1tHIIlo3JU2Sz*i$<I6DCu^LyEIbo~_V`Uh8
z&2VlQ^TPNdjM|Zu`CL<BEDYnT#dang8|GNV3yIlc!6kxBS}GODdP{M67|So%viK@7
zSR=Ta{rRF^b-vnT<>Emb>sguktr&R7`vzV}k~RuHnv}?Aty#|IFt)JwUT?fLj2+{e
zZDW;sr}*xq+DADV-4RCc$E2NM^W~s#*z*os(}F3)qN^%>8^$itcMHx8l_{qx--od`
zjDisqieO)uzMJqOjBF9O!f<m@c$Mp6c*5|8G3K7_P#C^2{9)7Q)qyYqyjB=Lupv1U
zLScl%pkJ5FFi-4NmK<#s2}70s*97B&QNdUk&4!m@dpSC~D2An6|GmzE_H|i~d4_M#
zl!J1uioMbfhs{ITScfBF91WX~D;x{s$1siy|2d4aVVn?tQt*@@&3<C7!Z;(*B6sRC
zP&{X){vzaj7#A$%Vi=dgxSVDG6^edkUW?&M7*|ESCdj8BDc%U<SLvmjVcg*`ac16E
zZiR7M$lcoxM(>4jpF4S&-Y+rfzU={bJT9>?9)|IVNu%vYjw!xO<+m{YIBF*u_dMwd
zc^L7NiR65^=-kC5_m|3FVf-D&zhV3r2A#?#4^RDvv$R4Q-OT>o-u_JZb8fKh(y7o1
zEp6J}$*6Wl$sR$T2uN}W<`m2&m^+K#sms*7!b$Q)kY9L*VhII=R9~qSj-Uu<MFj2$
zibn8C1g}NVCW2xSqz!IZGJ;YO6z3HBTKQqEQX&E(zgU)zpk7mZwFs_lO)Mk4tRTg5
zLdpwP5UdzMB`dYEkSc;zBN%WegITIa@M;8f!b1LVtD^8KhO>rX%?N4<sV!JXu&y9&
z>ItbY_^_WnA%b$75)vb@MNH=jcEQvLk|J<K;FM^i2pZGdi*VXBh@heHdfQBA3r#FN
zC4#0FZx+E{Wo%4kXf9%l2!7X0B~7B~f-MDG2{Ng51j?sobJ|AGF2et$Fe!re5xgG3
zM-hyQphJW&tzbmNJP5vH1aC(0K073WP7(8Ho<4$|1>cIGO9XrW$xEH#?Fin9plbx(
zB(+Bb??yncq1{<#E;H|Y5%i3pR|LH+g?Y2G6KO-^zLK|}V1GeoWNJnP10xt}DT9Q3
z5W!$e8S;N>l2zs~Ng6Krp&<2<5!5))@_I|hmTqaIBj6jd<Jr<CwyAeA#zZhS0+Npf
z#|hr=VW%>I&7WXzKg)ivtZi}xpF}V_f;ka9UZ&80!juT+ok*O@`8iIRCP*?}$ftrc
z1V4*lrjXACX)`Ng?)fBhSwaLmBlwm*7Qy@oj_pnTCV~Y*Rz$E;$ifH~30W*in<YY)
zMzG9MmPb%ws*_0!t3=!q!RiRs2wxk)1|eSxt`nr?dLbqKrOCgFV53AgMX*^2%cRcK
ztwPARMX=rCUklkGn7pJ?!F{QNbEeR1@h&dU2=-GytLzs1PH>Ol_kw!`AC^hrVRrNl
z#X#bTz#GAFj!p!=2>cOf5kw=%eOU=a5N4-EY~;ZRLL#oYlffuMM53x-rH!W7>sSQS
zuPGx>EAa^Q2#g2@{Z-&_1V=c@pCx5-g+_27f`bvHhcl=gieT936cUCSPg0LYkh5;;
z<EXM=o^nk1k6a5+(zC>q5uA#kpo&5&ev06<Suxy;;7kNRM{qlW)>nF*<xW-A_6wDo
z_H!Kf|CIBBBo~BSjNp=`T;?2DWM|S9vA-&KO_15IM{q;<ua<H%f?L8{Whyk-ncI0M
zf~U#7ymvD0NAMuR@9p@L3qOM2HY-oq<h}`yg#VU>o0Z2xe$T>sIcUIJG*7v)MCdQ8
zWquVrQkI@f{*K_$0_C5G`4rs05&Rdyvk0C`G`ETuLYS08MK;y6$u4-R+{^b>bE?QC
z3X^tDF~vM8@`{qr(ywSa66+-wP;s1JoNhV_t0<zPtcr3fimK+zk|kA?QccJBuc#;{
zq_`lJ5~}(77)farWmIHLRUD<0IxMy2yqd(2d@!lJiV7-zsOqq(sHmcniUbvjDk`g}
zqSA4k5}TY>RY)}z)m2O#qa69b@v3UN!LKa{K}KuP%;L3#WMt%^UPnb;iPjUWZ`mj+
z9!~0I8f2R1<!zplMw0iE&9377EM-AayHiE7YQ8E`SVIF94OQGzabHCv)%-`eg^E-a
zjfFGXL`YM?W-3yIG`CV?lRBoUNLR5?#Ud3gRkTvkMaA1HTB~?X<u@+-o2-A~gf=SL
zt9YF~yujI3u$_w8W6YB*I;fbbC3aLXEWI(w8?-;CkTBGE(1;HIJE`bwj+*l=74Pc`
zl}%l3@2KdiVzi1eD!QrY&QVY?P(=?F@2cpd@~l0)r=q8dUMhO4bY-mkekWtWawXK(
z-oIedKWa*?9~F8I?5CnXi&Zf|#m+|QxwF}CR%!KFlXQkN6CJG{DBdHz2B{dVVz`PA
zRSZ$_fr_E5tqR-4#5!w~bGq{F!^9lZY>hkHh)4G+BUFr3@sWyAEVjS-M(wh_iTx)i
zd@*Ol>7=Ro?VLPgReY>shKkQrjN`+fDn3y$Ma2Xa6ID!7F_~D}eED?V-K2f(lj&)S
z4g~0%ls?C%s+gu?x{6OZ|Ldoh*q2VPm1z}||M}WZ_Zq_rHcmR%a;A#UIZP_PP%(>L
ztzwRfxhmRqwSRrY#&D;NZA&M|ix2FD5^a3+;^39+^HnTR@!PN*6+f`$I<7o;l1S%H
zi&ZR9aZtq}6-!ktQ?X0MZuX~&6)HBV*sNluid8DssaUUKwTd+=)~fhY+TO*V^3B_}
z^M4GW-+(V}+30VFU9o{9{$}b|DmJo<E+^5oNb`+KzP|77UvA@{FI!Y>Rq?fo9V)h|
z@P4c?Y*(?pe3KEd^R-Gwzfn=UW%^DP---ce#TU<&ssru$Rr9FL?^Ntj5mFIW@x6+@
zoIEt+Y*evdg-eB-%{-}87~x0_DxDVCI=4@|KRNY8$hK&&;#1*Q5l|82dii6(=KG2C
z7|+*cXRNh#m~VShH+jn}dqjn*LRVp^&{RZK#8kvNi@sC%62z0X_CH7TzR}OIx{-Zm
zIXfLbWO6G|ae#gDJdv;8HodFd*qQj_o<u&K*uJ^#u!<upuBf=G;;4#aDt=aRR>hCp
znpB+PR<GiOijyk-n`ke1H-mrF+D<7K_9)}a_c+bnqd?;`Dqg*>@Y^+~$C>i2h7W6a
zj+Iw&Sw+Vu3X?9VxTxZiisJWj@TgNBMcV7Ro#F7c#9uh8A1bHY*lVUHUQ=;h#SIm|
zs-`=szy4M}iYq_;XuGMJzqW3x;GFs5R?;m_s#{5VN!uM2weDuT*xm0g_vGFE((YzF
zkd5U}6;FjcRPjj2Zz>+MkXmWnb{KwF@kDg;KRC(@&9|ujQt`KnoEi@2bo`^@U(Rje
z|8e~ma6IEm&*`XNz(IazpYu5@v(NcLaODnXc0NkI)R99oEvfUB<XjqZYsjM^uZDu6
zGbx{jR@-y1octPo&F?56IPQ#typU!Vm||~2WMztI<_=j@!z)5~|A)~M8cJ$dU|^xa
zw;@nkL)SRE#ZAjH8k{jC$52*7ISu7CRM0S9!vqZ#HB{0-&mkEaDr=~snLaf7v)Gfi
zsv1((IqGS6?`}pl!Ri`b<+l7VvBH-Qu#hhuH3Vx4))K5OSVu!$A++J-udhLo(poog
zCTK|1@SC1!)6iT)3*mMRNg5o&oq~-uBnxRENc)Bw8d?1IlO9ckH?@>zEMGX2Xq>7c
zO~cz7-qDb*p{0h7mSrm;?F3s3zNVp#mD*MaAHQcI?S;QC*g^0OLGF-m3h5-+S@11E
z=IX+}+L%DX&{f2q8oCMTF4)7ee3zCM=MjFrg!i_TK0^9x=qH3Hz_LJ&&igV(0|fbP
zc_4>R!(a`a&YNf7jM6Yf!v`9MY8a;R{MN*eGz=FqQjp4r8b(;$*lyaK8pZQT6L}{1
zXbodDjMebCVcCy0jAKzt6Zz&20}rF8%P-nY)G&!PkD_N3lQn#zVXlUG8m4HNs^N1D
zYPGu4G!$6t_*BCT4Fgs>rfa5;ul)6sS=whBKT^$N^G{HStN&<5<hPVroRD`jW^0(E
zVd>qB@9t(W+C_1Ep_!gxR%!?}NT1Icu3;hhU-m^bW8n{z$QO&UL~z$wW!W3fWg3=i
zAXy<uGWCM8O2cXmYc#CoDu|*&6klpsr{RKziyGEz*q|Y-A)?_c4I4G=(eS;7O&T_9
z*s0-L4O=v9)$p~39U2zN!K~XfY}cT7Fi+#<`Kml_^&1U5=$0qC(tvj=IB-nbrD3;*
z@7Ts~@cAP1_+6euM7;!$fYh*0gGYl`!+y;?*Ol4bGK*ZSj~s@(ZIPMFr@=1<A-P0=
z*X6O)8hG+7FFm_zBj#n`0k5hCjT@APBec{I<BHbsgXE2CFofuWtRW9!xtFI2PlnAp
z6!?IKgPa5Q1Rl=I(hf--Sol#5$26SL@G~cmhT|GeY50l7mP|OI;iP6BL&=%XnlP}~
z(;9M=H%rLs9G+i%mP@h(&S_@nWFOgh<szKtM15Yb<$3c!;Y%7WYxqOMpBjGAa7Dvi
z4fix$Wj!_A)No6~bqzP9+P`XGpJY||e|Vewq@?l`W1f%6YOq)ygL_}Y1C4hBuze98
zYIr1hA8UA09KVS@OJIc?b~i^P_ayVo+$T~oMxSc<i@S6bg`)Ud!#^5wMv*Iue>ME4
z;kkwvQo=LMJb^dsfa6IY*Js9TQBzrWwodja-pyT~mB|ssrn4C&xueJvMZPHVN6l8`
z6=a_<7ri0zH$LlAAZkW=PH1vklfqFHiK1i_rK0qhYU;(JC?3Tt!g;7M%PbK!d$rVV
z6sl$p1gAvls9B#fQIr+4#f!k{#11bP#YY#C=@^;iRE(lh6zNg4jG}TBRidy(VUMC}
z6xE`r6Gh!9sz>o^6g8u$#lQ>g2BN4Tt>f77qAZ!nSyx*w#0gKEdcx~Rp+wEYj(JLT
zf>n(~A-Q*(L(kSFMd65|Nfb?^a7K|FHHV3HV`vaXqbM4SeZ#1E9yB|L*WzF?mA%v~
zY8KKWiqt4l#Eg1#sVA$!1;}Wc=p}NS?QIoBYl(J_;x*~^c2Tq!rHx=)Uh!k|#N^kb
z=F;mB#Ty*%J9W9JJ4W$l6rIG314<hP&NtSF-SSoxU7~nfQs0T9YZSq%C25dV+ip>G
zkD>=>LiFWn-JBR%18461QS^@D`zZEC(I<+&wBb~Vq91$StxV!J8%6&p-j8BH6d6&B
z6@6e7gQ6G~#c+uZ7W^QJAwrlj>x|T)5@o+p`7nwRQH+ct>&)DbBxzI>qb-FtV??B*
zY;yMV$5D(EWxU|TC?*KWGRw06B#J5QOmAYxapuposZo48QTaTIX+p@S3;9%VMiie3
znJKvbcxf8Uieh#YbE23V#mXpFMKMoOnY2{M7g5ZQVuA35f{UYAWZ7JcCoU15R6K!M
z7?w$Nc@!%woBdrXtQNk`Qq~Ar%TEDIIk%`f^RAC#gQa{WWNw!Vo1@qg#Wztj$k}IW
z6iIq&xKHZWLbeHR=Y;8#+U;`Q@qO$&qBz&bG}y`PQJ!{W+eM6GPZYZ)%6*bz7SF<c
zQS6Vxh$1rzR}^lp$0@d86ug=2Vb4@)65s;g+RrQK<Dzbt?&suemrikeEAxhPvEsH6
z>ktJ=M36*{LK7Ypj0wiAR9y(4X8$3I1FYM1rBDn9qc{}Bu_%6w;&2p4qBt6bKFB=3
zul>11b-J^~{B$1V$MgH@p0gc~;(8P}qBs%7N!F)`{Ztf}g!~l6X(49>&qeXGkh6lc
zT=yg|@q82)Eajq*(isge3;9Lxir`g2+Fy$z=QBIWuTk8LB1a54W4I-$zeVvlird2P
z2;Pn2UKIC*KNMuf2V84P63HV`wtcFQGyERKU)<!Qcw$-p5yhVte;Vc4QnoD1f1-G9
z>HiA(Pw*M%c1>rN&5J0q#mo+2$R5MaK@GEbE)ny@kXy(d=>#U_m1sV}{4o>|LcL%N
zGt0LmDI7zQ7>dU5N(=?3+Uv(qEQaDS)QFh_S0aXzF;o%GXelA(V<;`8j9^(SwH!O`
zmW^f=ETv)$l`LL42HrYgYE?_ACZxLHtAdDOb}h36hMF<d60x>m9l^SSOsyBgywizU
zmWqf8F(eAHSvK|<k}U3s;Sa+swm}RHV>lbbxfmM7&^U&%F?<|DlNg%D@IeeiV`vsb
zN(^mcXd6TG7}Q}-x?*S%Gw&onsqILOAuVQl4mta;k{(0L7=E~$(JF@5Vu&?rOx{|Q
z$wO1fskDok_v;us$IxE*>z2}i!y&w*;G2S-1Opqhb?B17dj)UB&?SbqV|a&`=xggK
z*j13xZbG`p&_l?(g6~<WA#c83!h6TiCx*V3o*|^4VE-82xAXxqoSM{&#SXNTK`{)r
z_>dUtEjI744U1t;j`Wc+Twh}^^DuFE3?Ihu`w?XXJ2{ld+f8r$kob|LemFX9R1Bjz
zyN;(lyxnX}4C`M_Cm$EX_!z#5VPgyvVwf1i{1_I*Fe!$~G0fsLh~bkMro`}R3^QV&
zi{_~@Op9T<@RHdbyhp@$E8Y(z(gpEnyhL*LnK67G!>cb6la|_R<w)p$r3XC{^MKAd
zEJ3r+i{VnKd~<~l{7a$2@P$M<Gz&SPF|1`Tom3Xbuq1|+F|3MVX$;F^SRTWQ7<dbg
z=N5f()3)kyA_LuK^461YowAw+1MF*J2o1?`_AOi6PZUO1-M4)i!#cJ%h7B?7t?FdS
zch}i72R3Z^OLtyzQw*D9h;q)vuqB4AF}PxI$FPl)bFOVi4By1CJ%+D2EjQb)HgYc8
zZ=P_pGlrUvvVF^G^Rc6jJMoU)wkwA2du_Y9gqztJzKdax#lPouh3~VJ{mh=4NHb3i
z-WY<ca}2&1{4rd+n-P#=SDjDne#v%!orBIyX5LK<#}MHXh(Y6e%xPn9^Yn+W0(P$D
zMh_kQ<w#!{@fh?Nj>K>@1|x>d7!Jqq<1yzCF&yB|AHyNeF<p7*abo+sJ)S*wj$4y*
z{TI`>TjF?I)r&S-9-}?yUJO6Q%qJ?3$8aKslQDk9Z9ctv()Yt1OI9e;G901D%4zn@
zy=-S<_?eY|tepQgWxz7!4?Sbfcw4tkw(~Juh#`9%IpVlTaxddj43~ura3=o}!<Cr0
zL5tz45Po9bVB3XX7o=C@Ws{u03cqRD+!As-hC7yWH->w{?_0`)7#<3rb<%X97Au|a
zw-_FCUBvK&>mr7~BsDFUgZ|lgd+kq&KINWSCLis2)9mjU{t@wC!T$uG2|gEmAxPtF
zaV$NNPLeZ@Tya#0qhj1_S8l<gag5AaI8PjT<H#4s#-fdxlwXoa3dB)Rcp<^Uf<*+6
zA5OY=FzFTHv@8}!ap5HdOImuVI7$mIBUo0jTpZ<vXmiY(+|5zAQXG}zu*G4IqlzTe
z6l7{uA=TojZYi${fnbd|#`msFGlp7m)Q;o!Qb!%Zx|V&tIO+>m1QRShF^<&-@-t&n
z9F8~|$I&DXXB<z8HEs|`!#I-TSa>RLnR^*@Jx8%o9JThD2mFzfG>xNK937;z6syeF
z;%IL17ICBsPqUPCAuZ!*Wht$Nbg(<x2x%+W&Pr_`$Lkianc;jRjzu~0cjR@Cn@@wh
z8Am58wR0SAS-eXeZ(IDGIQ$9b9P1uOk2rqRaa_l{OpT+6j-onx#?dQ|FXLDjNAEcL
z#4$9EVR7`0qhH)Sa%gZI-uX)ZI0nR#5yz%Q%KL)6g<JfPE%9E)z&Hl6XO`J!4Rx0G
z<x8m6YzQx^C4CUb4^teS?qxK(XCEHNhjEOFV{9BFIOXE_D2`Ea(7!!zAoH9HI$H1d
zKp7ne?}y*pqFg*-d!Z+N9LKmgro=Hd4n8hb&ZCTvBOFhiAV@MXj!D8R7Hm0L$R~m?
z3bf??oM~}<8pjM)d#W;>jk=dXl981BSsXLt_?*Sw%b)}ES#f;P+kW73;zA*_<Cr6a
z;#?u~vZ8U!xAX;Z{<mVI!6H!>3ohY8i({GaRf5X}R|wL0rI2ZrnyePG#?sfu`6!5;
z2J6|(I1a{fD2}hV7~^oo;bw2gv6(#+$Idvm#IZGwujAN%vl)Hz=NO!0TO8ZtXcu<O
zZf9fgY*lt}9TjWb`l$W%n&fZe*cHe3aqNv_cO2ivu_ul;2{vXQw$1Uw7wNo%cW7}k
z6^4B*Hja;r_8{k<JG_Za?%@Q8BgV-PhmRv`_Anx17KkGlN62h=%MN}e*9!Z?Rw<k_
z&7UQ{Wox3wp~Vs9%(ON6a-G89t7c<(uA8CLY(<a5;Qe7viRa1>aU9@$o~;!6%z3?Z
zYUu*aj|LOx?@K%!$B{T5#PKkWqj4OI<JUNDve<^be~jaJ94Ca+;pE9UPQ`J9J+{R5
zQyisSc7_W=PRDU3j-TT=Yw72OoD*DeFN2m`BgBhwT#Dne=$luyr1DD~S0s8>@R}g?
z>ojZWBzaul$t&LCo)b6!o4Xgs9WJ!7_PcR9TuosTPh4U&`A-L*zPr!Ke_C;`Q69zd
zTO9w!@n0N|<M=&}KjV1H&4)xhng0>T^=0-fKD&nFuQ>jW;~x&?k+h=QY->MO8r(_b
z=`Hh1IB%@AJ&WUc965F5((xjWY&x>*$f0AYlJxz(j8Wet^0;t@$>}zR)#*G|6+E4g
zUoG<JxVYYyr?M@t4kDF&I`Zr0x6lHD1qBNU78d-ni0R?~6&=O6ljwL)M{yk`bkx*Q
zO9wr4@rHj%9i_;1Txe>0RmZp$wlX@(O0=Ag>O#s3RuHTxSV^$5ATw6cQPtwrgwVe_
zk78jG|3-w48ajA3M~mgQMY$4c>!_onm5$ar>guSc!=b~eqrMJBhh4{vnW+gnUxBnG
z>aelZvla4v1MPguh5r^U-I<sqHpO?@w_Z<7*3m#mnvQfG4Rtiq(OAdwO*Z8N2VI#l
zT&!wOe_(GS9nw@sGa)I0?40I0S_n_Ilt;(2^Xwj$(6n>DmaOC<rP8Y8*L1Ye(Md;V
z9c^{A)6qf48#>xk@9Stc%J#Yrnl1lE*>G6lSt=dbz#GjN-qev-SI*UJRpOp~#$)9z
z9bI(1qob>iNyU<Qyx`k9)+gBbpj2d~our$N?mBwt;CB5@d)vm|wz12S&n<HB8);7+
zy>u+nu~<iM9es3+*D*myUmg8)4An7AM}M7P$uLmIARUM9Wem`f!5(gBUsv79Z<TMp
z?>yTmX|RqVIzG_xbL$i)-MXqQ_}#|;*1Ki1@$|9bIzH4fTE`e2BXo?^@sW;EZ0v)?
zR~9J?;>w8=W;oJ;CzIM4UB5H?SREg8=CD}5Qm|V~{^`SR@7Uh{?eV0EY^IKxIzHDi
zS;r?jrs<fj<4i5v6i%~pO{VJLSyUtp-bYEFvS<FzHbci}I<9<brw{x;t|t9{U$Jdg
zoVinG>6oqK3mx-y%+WEnb>q1@=IICxvh~rFJNGiCy=MPaGancjf4{&29ShBi=H!EU
z{Kh-(m&Dr%jwM`ZI(F&Utz#MIiH=P=HtSfSW2KHSb*$5|O2=v)YjmvDvG;M(oNW$n
zyyb`5Iy_SH+|TH^%bvGR(s~^mbe@2WjU3-PNws&|hW2)hjoVg_Pj2N&;mRsGUD={z
ztBxI9zdAY=YP?Oyb{${qC{m$ur{8Tn+19Blm9iz!XWH~S_MJMu)p4VzgPfl)e-}+6
z|4zpq9Wfno9pAGuI$S#3I`(lyj+E)OSJ}_r=xu+skDdI(ZoNG^ygD=;Q4V6a-Uo-;
zd{mC~^6MaH2nY!ZhIE82Jt9OE<S6hwApXMI`=Pn*=sMj!;UK4zj!YdtaHZeRIG|(J
z<+RGH(z@nIS+reQ{j)OpeClBxM|2$3aZJZgj}ncalISn-y(!Al!nP{uDI1n2H#=%O
zq2nZHxPcx9PSK33#z18Qr#U5b{GsDdPD>qU*%dl|)p1V8dA9dh+7<39+zNF3BGF4a
z3hVj#mHRSxjMMhA3Fg;tI#1@%^N78xI<9f0mn(CfX1N<5&h2P)KZE3^PH*}AKM{|0
z+}3eN$2}eQ*{)}e?&{bkPLf&9hq)XNbUf7Y_D5-tbWHu)S^bn5Fff&e=jO=k_?`Q}
z{fs9%Sn>xSrO|(~87<cMsgA!mz6OdKX42oh%6dmZ1OMpwSI2)kp6MuHnBsG8{@jo^
zCbY@v$Yz)%uV8iqISk|!PVq>-Jj7fQ&21o$rQa@5h<ZMW<`?|oc3pbXX32#Nd^^Bd
zSdjnGlfPo1n1QkeKD(d6XmJB2`L{2XNKy%o!WjqsU=O*UQQANm!}Qd>udDs!702wm
z4q`b2<qcFYa4pSI(LnbyJ?L=z#Mabs9tWLrS20l4Kw|?<3{*2v-9UnYL<6rHfPwmk
z+4(gL)HG1XK$jg(R-j;;v|0vg8=#YFJ{7b6eg=EBu7P?6<}Y>dAMNdmgXd_|SdlC&
z!Dhg2pb<;^G&#w@`f!p{T1VnAOt;u1$)Xgm)vAGkhP-soG<vJvU~`yV@o92X1I-M)
zW}uA}!ah$i(A+=^1E~gD8EDO<oQ^aD=>}RFC}?kzal@QZ?9y(dTDB<Cm|el69vM21
zPHt<MF0$V+(9u9U1MLm-z{l4O`aU&vUYCdLuvdw1ibAooflk63opLhD@RotC363r-
zL3h4w;2k04T@7@zc(L@x?{aY2f%8-580cxBmw^EWG7R)K(8s_yr>(Dn^A(ybA5oWB
zzG9Pp26$j)e*@btrt*=b_YJrPI>`qb7-V2L7g`Bh`<AJL4Sc`}P}NR8gj3FGi}>>K
zNa&#kh8gCMdS-Fo&-jotxl+;y10#ieBsfuUl!4Jg#t71Etbvb(j}sg(I6*LPJsS-s
z37>4>6CqOsX9!LeoMvFU5E_4KAS>@@qRh1P&kf8HK3kAqK50DHz`U$p;<?^alfPgu
zO--IJxM*tfA_I#JT*$=5Oe`_5)WE(>^IOw0PD0L~Oq9&T3Ihe+ux)4W8CYpxm4Vd;
z))?k4y4k>5178}*Hrf6a^M0+Y<0ND&en}zcgMS-@4=iV=LYs|Zxk->mt+9kHQqESv
zZ3dn+ve9q<4g=p9_=zK8U?*p<fslc)fn5f68`#f*<NSZk`JI712EG?Q{WJ3?!(P^b
zv-Ejl$)+hgb2x4uP{`eE%LSX)fRFQGF+2wPwzhKzrsy{iF!;_X4&TqHG2HRRS|zQu
zox!y$BVs@`_-r-~7|;w{+?N<L5a*?LWkd!0EVJnb3<H^*12Yvq?a$r*bn}!O8*TLR
zLFJ%<Lk5l+_)!cF8#rR%sBk`?!>`1xa=yN7wmnZ<+i?RY44mYKW0=o!PkYC)c#5;9
zX1jAggFh#WKFG*C)9Z|ZpAFv8#h(Vw8aQX*rh!{*5r@yf6$4jUNduP*TsH8F!Ovgw
z`}se8QuwWM+qI-E&l~ZUT0;Al*9=@YaKpf_26#H#wV#ssQqrQ0wkLy}cg`w%Rw&Oe
zq~A7hhcz+q$iQ6#_YB-O@W2315F7q#@2?9a`!^+a|3=}1Rntn@d5`Wl1CP1VIec8m
z4>F#vx1DO>+@xmk7#;o;qL;r@|Ja@y_={J}M4n9i&28V{yT-_tiGL0JXW*HE=M4YZ
zuC`C&I8GR3e;QGaov`zpN#;!@dnR&ZB4;LYWn%J8d)-ov`E1p&+2*I`Hb=_aJskt|
zl)Rb9mx;oeD3Xc%nJAEnf|)3k3Hy|kA`NU0&zgt7r{_rcu6#;bhHX{Bq@tO4B@@Lm
zQ9KjjRrXxZ5}PL^mARMrOT}b<sm`BbPo8Kmm5I`ssFjJ@nJANqtG(=nwkTCIQ8p8)
z|BtEbfR3W-!jwShMXDwc5<Wyq8lgsk08*q^X-P;z0@6fj7DNRLpn`NnigW>`ND&c{
zrta*_&g{<a&h7>k3y3JaiG}iibJzKg=gj%e_wKu|-FM%cH*enTwr%mC3lF&v=R&*-
z7rS*zaM^uVPq4lV+6w#3Jh$?C+(>2YJM)qgT}Zu@#T=4YvCYX1U4RRXgmZWIVVC^}
z3coMOAU1KKsSCqh7~w)Q7n-v;7dp9+>_UnQEnR5kLeKceQrS8eS_n^L@^CsgDoeSO
z=g%)eSIlsMxVvLUYZuzM@Td!qxzN^S|A=ur7cyPwr*tOgn!M7{<n<l9tQwNm-h~b>
zJn2vF=mLY!tw_F6DV;&?I(AW0JG;=ug+4Cyb>VRry1MWLi*})#3*BAl;lhtvYUPE=
ztD9uBJCHp3*|fa7S(NbN3Bz74^p=Tbz~!QcR;FF8-lCri{aqO3!eAE|9N@xR;i7@U
zNqF&*a|kQr!cZ56x$N&TmxbGBUQg}*Rr@X%GeXH}8FyN49n^lL3)wC_>%tTla$LxD
zVY~|yTo~m-o(qL8{!9(>UHmlCw$Er6W>rtyuqQdJ=P-EZR*U(e7Gqo(>%vnmjC0}E
zsC4f4{{BdMmlkP!16wttecdT7xp3l?IMIctU6|}blb=dVa@m``JOs!O-=fc?&$vL+
zd0FSFE=;45UD)QrbQfm0@S+PdU3kug=UsTg1uL`E=ocOvJwAiW!mb7B=Zez#ZP!bz
zm<wB7P&>98aU}U=7nZy1Gv2Sb@Tv>5=?O=Y7YWXB;WZatci{~Qz9aai;CvV63Ze2m
zA-DFWlfNbWZDt<Ro<Uv<M6%F@cO8BH&>7{6CAh?er9zfDv0U`7aABoX={*-d5VFdJ
z_l5AEG*=7hGdXRI3u}e5^6P}qi`EO-;KD{Bn_SpTo0Lr95BN}x*A|!kYnddk=B4rT
zhwU!xaAB7VyIuH*hNV}$lfBbre;Ki5t8Fd@d4`JTOZT|Y;6mCbF6?D@*GnVk_4Cs7
z%6;3dsNQ0~3kO{Il#b_u;)2_S&s;d<g3HDK?@0dKg~Kkao6+TK_SB)&FI+h8!uem5
zk8nb8;i$`AJ{@!6&6G}uPPG56W7FqvC;wU_<%A2jhjeOuqs2)VzT&iSCH0fo&Z~x{
z4gI0TH}usXTJR6l9$T6G?BybrlK|U$In{E(!{K%#eg0p`rVF}o!v(JpAALy(kEKzE
zm*0hNvs(p37!)jDEo0KWtPlsnwY0Dc5f_R%eC8#ea)I)1UFbY9orJ&3!B0!*tEV|6
z74%T>14pF`KXLBjtf-)Zf-^3hb=mLr{&wLP7tXmb^{3=NXp>jdes$p*jZ7oB@EeEu
z^~Zka%;v%+I_;{A3moZYMpq@{GN(B92>a-A(Zb6`?Y4B{74DSFpx(RH4Hu5>PQJxa
zu%OGXv&lClNJ3$-W=ocJTc*K31^*J<{Z;Zm9G))RrEL>imQj<-DYz$`!TUl=D0Wmy
z!BT>y1!Dxu2$mI$Rlp6FXg*&wX<1Q0B?UDV)KXAcK@|m66;xCBdk8Igd#ZgjjSCh2
z0$BU_tm+C1jPyGjQXWuHLqX2YRC3m>wt_ke`1fQ93OsdN)m2bWf)6TqF_QcZCo~0d
z3P|DwD>X?cU(r6Tz5*f>Hc*hLAW1<(1)UXiQ2+&v6tq;(O0ueXzv;sY8Y_5&^{n15
zS;3UcX-$MT6>KKhT+lzG9(7VgCsokrO;1yhF1&?c260z1GvO{uk1nlREBLBzv-S$w
zDBQ(LZY$VMFjMeR!N(N)ud%5>>>y=z6wDIrBxp+Mk1H5*j?RE?3Oan9Mz>rtspa0W
zosF%Xh)*c!so-Zin}S{ndMg;GV7!7p3i>M8buT?z;oS%Q6<k--c~2amV4#9w3Wh5f
zq+l>Jr^U7<H{Fz)Y$ey;o=)<lf}tYhw>-QU%S8f@?2b_EyDG^@#r}eu{gtC2SHUO+
zdv9m)j|-ntkf$J@ovUE9f+7WDShwHO3kBm!c4>SyJsK=mJ$<YQ8Km%mGie(hZaG20
zL<L(EY*jEx!P5%nDVVSDKkV>~f|nG`Qt&LTO#>=;Ucpoa(-cfsFhjw2m%ALQlJerx
zE?m|4@><2+OXIhY16sFxLBZOFC0|r9lb(6Ch5tnIFI?k2m3rGst<*K`Wd*M&cum3U
z?2i4(uPT_WV2)z%l^s9Pg1>*rxAP}^rq4c@`i6ox75sg=<XpvmOrCWwweqnnI>YH(
zEqE7uOTpU;-cztj!8-~TC|IIkse*+H-c_(j!D71NndF=A=J5CbrzNK^?vxgqU+HJg
zFdI{rDOgVLRj^V)VO##_Wd=9>`0WE1NHZ5EFY42ZA4a{eV6}n|6s%XUhE|;xyOu+b
zL+o1W&*khroagVRmRys;h2jPU8x?F)uvxLUl*`;p&5KRpI=|PobPje-sywXzp@MDn
zQVs_N+ZF6ka8SW#3O-Wsv4T(7n+kT)c@*qcu!r7$Be~?2qSimB^QCS5D@9y&?;V?7
zdt}-^1^X2oQ1B@&^KvV$d%vpNjz5Fk$4YPXR&tG}(%N1rI;7xp1xFPeQ*c<p7YdFj
z_>%5=y^}I7?S=F-{$c%;FO&OQsRJ9PPbrmgoLxD)%n1c2X~rj7uus*xE&7I%we!h!
ztG4_`flEP9fu%rE;8tKL@GATdVrZN(6zKGyhV2WC_FS?CF1NVVqZK~|8g!*-<HbUs
z0#kusL4e);aLc><lll3>wU~^L$L7#b%UngdBho_(!mNOT?-fK86e~DISLg8gHklq3
zb2x3pxio%Ud~9sSp4DkH+I2b2X<xyQ3Vz~{8IyjfT1$Qr!`~!Nx-*>k+UqT|PbZ&M
z@C!ZJjrnezQ}8Q&+l{B)IIrM0`jQ*jZv3v`f`Ybgv~y$W*0ia&k}oQ_q~NlGD<rR{
zRXUk`Rlzj{)!lf&jq7wX?#|KdLT(7&RB%hkAA+|9srDx=vo4v0*FOqMx>3rFJ5KCf
z&i}&iJCYJ^3>e&!%B9_iaoYt|a-)op@`7arV+9#o&W$NoibyJmq@p8ld#nP5l_glk
zjjE2knj4)zvHyCbh8s2AfFrLZq`qKnH|hwf>&AmZ9&#gI2=k0{V|ASj5?=M(SQND1
ztR*<H4ctg{c#@EYZt!g#bsD+xup5m<m@4>)8%^A3>P9m+?jEtN)Li5#f($0Rk@?%d
z)?<s(+(>t$g&P@ev=*I~f~_3=xxFee)tp|H+Bg#0Khw=0s7Zd*jmOxW4ehflw`=c4
z2RAy=6mI?lZ*oUB^zLc(=O<^mLG-_6V;46bcZ2^!J;;r&Ldbgy>E=dvN76&c6K?c$
zB)#1B|JG5tk0a^pMnB>G1qV3tfo_D-GpIS(kqmL;Nrw*=GE8u|;0XFgi&oUnaU<7_
zLA%<IcO!pca@X5wd?Pu^jXVb3h`pa$;KtYEn%%t8WV8ee1&aj72#yt`=2LEr6W(%O
zGJ`zzF~Mygwx8&RYh~K~<*Ae1c*c#F-FU@~XX$Kiyy(VEH>T36ZoJ?|!_U*cdOK&j
z8_&7n&ulqEkdg&giWq!ef^WZ_^QpHbznACHovghr=f{nDi9<4O)GWcWb=$q_#wV51
zX1g(m*2_y_H4<i}z2*kLv6}0~cN0pz?#3G&JNq(ty(#3?eHr}i0{$iaTW-8f|8e6U
zJKc>1ZUo)1+*s(wyKZc7W1}0xE2J&r=w?gLCoh)Z62Xe+JD2E}w#<#?Zu{u(3O7D*
z<F6aZD<$}zn@0|8`TK6H6|&lmHMFgqDCRkK9>!kh#+3&4scfFhT`xL!cY@dKJINOh
zq*k4hw#kjnZftR5s~aCm=3j~0HaGUL)oyHeV}~0biEyXj$AT=E=dO1-d^h#Kv(LTn
zbz`3!U%GMBjr~sSAt46@KNURa#%Dr4`7n*CczrIx!)|;b<cJ{UR5<3waW_s#5j=g(
zA70>r_Gqe;Zu_3gpTGFpjc@1`ZYUftZWtWbZd=nM`KWGaZu@NWTXKjxw9`HX-LI#8
zq}l6+NjH#KACrsS>I{mBe$fzc+vn$L(vTZrH*UG{hZ~oJsS(b!?8+e-#crH(<6F7`
z=WsWE<v_01{(Com6heO5jUR+By_e1)ub<rbStMr!&pMjF2+2no>YQiCN$@u(_IEcf
z2*2n^F0m#K-*u(vs_<)q(Gpp`8&b)ef@L-&??2Vzwi|zPuA7<s?#|9<JEWC=t>s^C
z{O!i`Uvwt_hx5N1B)s+wZhzm65-J{0QA0&Z6{S>gX&0+v%-Uo+e`%FJy_FWDqKwLg
zO_wQ3m%s8mmsN3G>9XkMta2*KtEix&qKc|2s;Q`?V&>V5$||a;IM=lm`O>o)$IoVL
z7jkn;OG>J%FuS(Wxt6$6R8vJQ6>U|tQ_*;EdTkZ=s${fQQAb5x)jkR7&dGRC#X~CM
zRK%-D6=6LU^@TJMOb~>M20{`AnKnsCLlyTg*~cs!Ir4{vG*<D5kb!ON|7C0H#5NPs
zTrgQhiV(Avt-~u#MY^NeLP&;SOTktu_+FA~ZB+D|(~>g@F;fM%(LURj%D?&M_qH#O
z&uFirgUbJJZM5#wMjcgTsTkO%(V#YsI;rTa;+6Y&^**|&cwEKMn;3QzT~%~bG5Kda
z^E0}u=%M0R5XXafLPbv|@uG_ty;Ss8@q-6HdeBEjUlrpuOwiCzMSm5QHB`|sfCZ^I
zO*IvRR18+JLB&QDLsUGe;sq5ivP2cbRE$!Qry}xL=Jw&4!&Qt>F;Ydgisw${EFPbq
zqav66o|HM^WF{qV6t-E=DU+D5qCmwY6;G=etzy;Kf~Qo}ejuk%MG<@9O3@g4+K5a&
zCX;+Dd--Y+NvDyS<5*i26I4u8!61d-?Z`IY&n2I%;_SDhGOiXqtKu1zpKj%D{B{&^
zii)W!rZM6EZ2R+ywJFnu&k&^WITg<fUr;fF!I>&vVjrnktYVgmmsPx}VlJ(%;#C!M
zRJ^8QHd~#X^ym5%X2@H>rVS~t(?6>;VCHYoK3}w;LDZ6&&&8+AQ!!t~I~)|ua74Yg
zRJ={st&n-^>lU0$czs$rb0JGvo6YN8iDL3TSBo0Orz}yiRK@!$R;!@VmZ?~-Vuj>?
zv~>*Au2k_Jt;c?eZTDNVj4_gmguyj*8`?HL<pXx#lALw);ZP2vm^sOMT7GyA>p<M3
zVzY`PD!x>)Ma5PXdsXaH@u7-sDt2+0i}H3AJ5+o`PgtGAOg>hzQ}Vx5KZ)5!eV%sM
zBf?Kq{M<Bd#-Z%^W^vK0`ksXSDh{gnOvM2epQ`xhP#hETN*EDyNX6$WzM$L0r%YX!
za+u8=AJ=43tMt2h?<D5FFd!*uM9fh-vx*?+8O|yyPN?{X8BR++DXG3v!S0}y-hH~>
z*Q{`H6DD64pW;%Xh(hzie7A~bbF)~4szOuYQK5@r1A>O2SI{SD3NlYW%bnDUB$|In
zMOa0#ic>0BT<?7e#E6ta@~sHJQ}MkcVTqJ8?er@NKdSgi#SIlVX(CZzCC{li!wl=>
zoK-;^^7=&xed$*f=T%VWHx(CDT%-}6%l}=l_JYDoDlUt`uc^4A;wn3FQme@LI5wY!
z66pZfRg{<*#~j#ew^aP0qO4}y`8F*^f8%gd@fU|%t$Hl?9~FN~O-7V!K=-&q*Il1-
zS4ESUOnymMXLfE04J9?O*Qi`d`?t0+8cGZQs8c3Azl?_76{~S9yiztZRzo=rCn7nM
zcXeV`<uz2$P*FqQ_>>N(NAs$rfjHcsTUA3f4NWyP(@<T*0~!)FBx$Ij**#lJLv0N;
zHQS|mvGj7!#nsX9kcK!B*46N!5LVlEInB0b#WmUWM0jC;ZhZ|28X9Q0RWftK!NMt5
zi%6d7p5IUdG&B*lMjHP4W%$FI-D;BQ8A*+WKO*>Iqz>gVwd%0~%{3%z7^q>8h7=8{
z8aiso(vYShT|+Akt;HZMH1x>HY^fnbvq!!Ad;@mM`qkMl_o~-MLt71xX=tyZorX-!
z9^;Q{XnrMuS9L*3$UFQ;NcohxS)DX=rVTl1Yv`ikah9Ut361A}z}RjYy3>ZD$>9I9
z>Zzd@yGBDFiKU$RN7bS_^a?xqw%Gpcg}GS+#7~|Z8#jDx++YnuG~{T=)ogEkQo{%h
zBQ*>q-cA@M!lJU7!!?{NlgWP1*6>Su?%vJW5A92!{+MmCqcr4cIJz#SNJGA6f5u2N
z7HTNa?9tk$Z02YUFO;(H4sAx}aJY@puz6D6SjqV*4dW!1j<@?nHgzUym_%!PknX|L
z8YZ(i4d*mGqv2T%Yc#B-DKt#g@HYES!!!-kHN3Yx=XDJ;*e=QTMb@YPXxFlw=b5>N
zSv?ZB#KwQ2CZm7eOi_4AkoBLX;bn)vBIH#KvmMDCA+Krt3wXP+Z)kW^!|}yAb1Bg{
zttHQ+b0)_<yeZpzERz%aTXeSLb}JTWc=u}2yBZd0Sg65VnzQw4(UhO+EY`3@!wL;6
zHU0-QmeKgJ?Urj`^+<Nc#xs*BzNcZ8hW9nB)<7W@qERGNh+c1wNL;63mxkRMKG3jU
z!v+l-HEh$cT?6mPn>1{teKL|ZOOTQ+LXyA9CI67+N^tMhq8%D`3jfH_{Fnnl)TqfE
z_GtJ-!`B+V(Xdy;K3Z7At1+3p_G>t#;d2cKG<+(;gBm`Q$%L`@$HwuFKyp~3j%c9d
z3nwk3zH~U{$7o&&p5TC$R3}BB$-fdgg)R+>@Y5RH8dMFZG<>T;)8NtIqqQ~YPM%&3
zhLcq^!)Sf{q7aa%=-nzP5=%o!NLVl;SS-joFb7`WNs#$a^1YM!4;tUf*#`MZ!x;@{
zMgFs+$yC&jCizvvd6`41d+?iv-#Kw<_(Q`55nk1Bjb42q<D!O3^zc(Tmo;2rGmFzW
z&vPJ?To=uz<@0Z_N3IsN{c_YzPO#<kf4f>#@><bt&a0faJ&5t(FAaZlf}#ys9}Rct
zC;Jlaa&}d7E5#;ms?>nKI^jyfEi0#l2PHiy<+1M|w+7@>&RZKfufAKd%Xm=MgYq6!
zpu*U=SP#m1?1_kKsb@-+?PKd#^dO;ZW@Qhm@QTT=<Uvw@du3SFgA@Ids(I{bkh#6O
z&ra2<O#TBN)bOCD2ep{cg9aWfnb4}X2M>DikOy@<s4JCOye^wHVOC5V=RrLW>We(y
zgRf=A*df)R4zENO>ft|wqlpI%J%9&|Jb0LV*uQP*d^w@92OnLw>tHu<Y#d2b51M(<
zTxvLTLMvwYp(wD#WGO2}qEZEa8<^k1gA5PWc(B%kmL9b7;7JdLdeGW~HXaP{*!Qxw
z9<=kIy9Yfy$n@Y*4?22~<-ubfv}cp6H0U7sN1qs8(N*Q4ZLys^=<LDc9(48CYws=|
zRIAb;I6Q{;KHhf8yLrI%Ckc^%_xywhw<jg_VZS70_Vm~b)LtI+_JGPv!W^cz&gttx
zKbmD^3}@rT11tBJ>hY#OkQ1ydBnF9Ou;36u&f&v67*6g%p$8*880kU22fPtvd(dld
zcCH7DhGq`fl$|4maxFK?gFFvUCTA+ulA=iE0!h;2?}Q=`#&|H+gQq;`S-Jt2f)l3a
z>(lbbc`)9C`5wIG!32+ei<#-cOCC)0U=pk6!DJCW=fN{VrV3K+Ss_yd`%TZECS<zc
z3_<ENnVwI4o;4K7i-H|XH=uBq2QN$Tbq`)~^k4JfRpGN8$sG2Y=tq$W-|*l~iJdDr
zPq6Frc0pF_n71Xk!h?4_Sm41z_REdoj9TKsyAriXkdnnt&PyH1G7pvukLF38l@ff<
zgH=M_cQjW!Y1eu1fd@xDIOf568t`Q1Ru4Y(V1tK;7+Y-gV3P+{gFJd;-D^dgrKh&g
zq`NxN=eK#V-Gk3Om~pLW2S<blpLnp>gO5Gf>A@}!c8l-*-`VJ~ycS+;u*buX=5i@#
zaGwYJJviV&>a`-Sf_h#n`qYEmYeff{)#hw%b2hQ@?EFI>eD1+v55Aypmo0n5gJD^z
z{8_njmxl2t<LGQ(dhBIG^{mw6oGU!=dk|pVf;lHWxKJ|F=fPJT>>f;;mj8_hTkmCa
z4dbGb*QY2n^0gwja0XQmG~pgWUC?l1y+V99hMOLqqR%W-Iy3dbf*?)g!6^^E^?(DA
z11BWIha@Z{B3LX)h3}l$(;j>;oOYlxFOr`;_?aGVpqGI&9-Q@Hn~v=|e(~U(2aR<+
zqT^Q&&U;WoM@b#OdGNaje{!N`OF0YOY;cW($b*X>T=L+u2Uk3}>Os?<`MhRUDB$%&
zLcxrx1q^ncm4Cy7o9t`O+Z7AAa_031N9*|px0&`r_M5KUZP$uM*2w7`%Ke*7_Mqw`
zN&nDd=NoKIEO?`0;$07z;XOf;`}7>xMU>J}T1O2XHFd=3D5Il_4(7I?VnJCQ<#d$S
z(JQeaR<|D$SeXhsDvClS9dnWjhBYi0spb+Z>qvMxp9zm%E2^ranvUu^w-IvdHz;_f
zT@vLF=xAKAV0*)YS~_a$NYc?zM;#q?b=1>QU$<NFppG~l@xmV>Rw$q_c4;9ATS5F~
zX<-7ht&!6}Vp*j`DVIgF;S55@qFMPvs}?j8`NL9G#<HqSbTnmJ9oagX>1eK_t&Vm&
zl69o$XszSjwJE7O(sZ=c(Mm_UZV#Uf8fSS9C)*Y}vL3USyIhZP{q}HX=ERuHr*kun
zemQNJVXFcr-}YcZrjAE-^rX>rJf@?)j>mO$)zLw>XY4E;o!H*~^*Tzh$C>QTI=Tq|
zW<<>9lupcl`L<k+*={<z>-KX;58b}S@U+jo!wJlR*AqIpIOoGxZyks0l<lu$fQ~*o
z`s(N>%6x3EveF*5OgK>5HCV?GDP@puPZzaoWSw1I=pP>Qq>fX&vxf=}6J&6>kP$jw
zznty$73S#3Wnb%fO~)u5c{-1RW2%mP9R)fj=$Obt*&UM$igb*T))i8-YeI+8nSpCX
zV|9$vF<!@0IvBijt*F8EqS^U5tQ)WAhGtIE@ia}X;~8nrUc~h}S(=sP10e5N&+7Pc
zNInT|GEK*H9W!;jByE|Y<9QMt&*}JSSSEXi6Ud7?xJ2hgLovuyvvj<y<5l*>2Pv<J
zeYjb%V{s1en5+QFY{`vx$=7wfp<}s@6?7XNb9F4F^>obBF<-|59kke6I^Gr=zN3Rl
zm;+Z4tZnQLyF_;4gjLy#bS&1flzshV<`Nxm#n{zgPjQVwUZ+#$GJ1ZeOg^Tq)bXB<
z4|J^8u}a7LI@ah|tAqJ4$!eN+V=go2iil(#UFC8DOKd$ai?NTtRBr=ErH;+CKzzzZ
zK`L+I=-ZjSRmX?Ay*6O2*b&sH4)4V~bbO>E!$3;|AM4nu<1D8v9lLbw)}hb>g>Cle
z{E`R<b)MwMULE@+!%xL@n*yU)f&Ib{2y$(};yz96bV$eNI*#i&!G6^7>A7rP$Ao;L
z;|SfRRK}NrM+ND?lu)Pt%CwU@zLH+xo#ksbUq_4UMJ^qgxtXm0(aJfo{R$>l&FONz
z$gM-wq3Q6@OLcs!L)T$&c5RkX%wCSk^a|%9+^547iC-iE{okjIpaiLJ=?DoA3q~CI
znz*Fs>is)O{)3Jmb$l<er$rKtwb%a=Jfq`hA(TX;So%3m{yHidsBGXo)9Uz3$KN`B
z*Kt9|b)Db2<D!mB95_0zh}l^sZiHfgHdj-hwT`)};~E?2%bl2)a=dreQ`d`b>h?nM
z4;{DZfgGOPjm*saB`fn!9pQtq^ma}x9NK&U|3}9iPUZ&68n~<D9w&JNF$V7IC}E(a
zfl>xqEYF(%VK#H7g*l&8S)0P0pWKi=FkcxP|Kf^r9h-J4->Y7%fpP}Q8+d6_tNjNP
zSj4zCF%=9{r0|mM^K>~5fhq>78b~tG&_Fc<)eXcOsAu2-12qiPF;LgAC%~EpY8j|)
zz@O8G1<~2~sB1q*&(3|&z(WS&46yAK(p`D6fz;tZt8dtk#tjU6GAzF*A;GY>TUj)P
zi4yhrootX8XkwtLfrr`5r}G*cc*L-0JbUEIelL@gH#5-OK&pW>1IY$bSk;j+gI4Eo
zV&`IvIwTCHOK~j>+q)>_eWzqNr<H-$yyIuv8$oRhv^DU!fvyJH8OSuy#lVkw`5QmW
zepK4qQSdPXA0EnXZ=iz&X$J<0Sq3^8=qy4umJ<}m5zAtCu+H6RMlJpc1Cv8J-K7;h
znE9G4PVZFal-S!q9|KnnTr<$uKtBU}4eT?}-@pI^BMgi*Fwnr$+Y5&q_727%1A`3=
zF~EI(HfN}TCk@;_J}T=%HYLNP2+!39jB4I0k^0#NatzF5*Bi(+Fv`HQhW%WSXCU9e
zI0NGi9`3?u17i$~HBd-1_ODk&gWSoc0hte5LC)(bu_UK-ayEQ|flBkTCb4cJpJ;$i
zPRV2g&lvU=J-d~`=(Nu{VTysN(#z8f%rNjATM^rCx=85%&(nYgGGa1cG*Dcj1#f)Z
zz+usp(2}$0Dh56<u-?EcOdFq)`A*>+mSWhWX|`10v%T5u(ANySZr}|AZyI>dz$ycC
z4a_s}u7O3A7q*!%_>SOP2HqAzdGyh8fq{jNgwLClFE+5mz)}%XXPFbb!oYHeN7Js9
zVDu@K5?1nk1FJ>2#?f3WWSt;&HW=8*k<}@a_r6UAHq*xpY%?&cUD_4{TNyRA9^I*K
z+br(ak?`7X;1f1ytsUH9;3M7w4D2+p%fKE<xLc4p&~%g#$vGm3OtRm=0RtWbx`9s(
z95is!z*iiw;$2^GnC#8wz2K06&*==CvJVTAJU6)Dh=DH+9F>kcZlL?v{1;az9g`j$
zbiM5fX%t<Kt9^F;*9H`c`bN-2KPhg~bZWtpq4laI<+?e;B;~4tn&9RRd4>TmM~8u*
z4EPL~1_B0xoM$){m_7O4YQ&`c*RL1R8Wu-E<G51>zBLds5SC^}Shsa4#llIb#<qWF
z;Cln79R*65kUBKQ4}#SEnNxubipvJh8u-P)?*=XyIA`Ej&iu3qU9L?G9rFLko%|?|
zZs}h%aLKUuV=1JB9(zSH^ptJDv3A|S4Fm1H_D^Nr<OmgaeaMSHIC43?dlBokchva~
z=uZQG8TebWx+fO<$G{z#Te`K0xhodtD*(FIeFG)DDCx!O@*Q}U^5W^{NhGDci1A`n
zb(`}l<M47`l=tERFKT#E!HbGsRP);Na3!z3KhJeY6|X(VR+iw;1^IkARaGRsxl|WT
zzG&;>0f&E0FKV+m*^8*<MeB0*Y?D8=UL7y$dhwta4eHphv?w&zWW{+A??pW?>U+`L
zi)1ensNluJUNrV1QHr2)lGlDwMbgj<h_I2@etAJlMkmroyl5iwrp&OJt;vg|nUe#P
zr+AU-MH?^LiZIQK7G8U<qh`93XNDIoy=Wyt<{zD8T1$|;oe<XiQ7<y3)zMNO6FE6+
z)j|5PqhOX`Cqb@-*uRf^(bbEWOw2OT&5Q0{xV=!l=;6f^Uaa+Eofkd%^4E(uym*ss
z^rDX!W4(CFi@sh|f32{;7X!TL=LPS`ypQY|&~Bg?gS^P|BHxR_UJUVKxECY5c+zXT
z9My(0;gtl=3FN~hAzMu+8R<o~7dc-0Wd!&Aa%sbuOg>7F@`7g?slZpmoHGl&_KaF6
zI9iaw%jFVjhaxY=FuAKUXF}pQFUEWEEG1rhk8Xk&lh_cx1rXdRTYn5bEy2lNoVuRy
zjBt{vUQ81{$BXG+%%GJd_#8_d8~1`2FM9F3NSH%T8G9>|^7t`HGeyXGb(R+|d+|y%
z6?Z1R_FF%y&300C%(hn=uX*vhNSKy6%=Ka(4dumhuf2Mi@5KTy7JBiP7jJv<ju(|j
zW-d8AYL=1co*1{GRlELb;=5ifp}UsOT;#=xg}ICAQJ;_cWPUdJQZM+Xm{;#pxhuR_
z$pI*m_h^<2*-u;<Wf-}uym;S>z`^V}B{QwznTx}t);OtNNJ#j=i}hZ7?!{p*Hh8g-
zp5Ha$pww-X;D=t6*_FN7i!BnQUu~tU9Qyakahn(0z1ZQ!M_zpF#U3v{@uGBL!A>uB
zdvUy0-YyQq*vv)Oi`q;qIKLx%(ukbBUVaRVPrdM6FQR0>7xU}oojNq?fENd^7x7_-
z$Q&3&`+O#a9`fS*3YoEq314_|#EV6(V~&gbl_%>_=Swe+O7Ivv@m}_j5;=TuJK@Di
zFTV2fx0399_}oO{*Is<%wI8}&f{I|RQg)Q)g-3?iUq0xZ7TUxV(_y?YyzsKBlK)V?
z^Yy~yIQk&_W>x_)z@e0r8T2AIC4sS)7sQYkVIdL0Io<52Z@u`AW6g(NK78-RY0j2D
zl=9&RFMjmmZ!iAw;wKv4i{I%~Wi!tRlAIM1oyLC=eopXL!SjN@339f-;KfBRE_rcT
z2IFm!UlF|F#Z@8K1g{G+f2O+W@LNLu5M+seN+y3fvC%r*k>Gv7yPUxPNx0|eGq(~x
zyYkGlv=1>pwDO^~4`oCc=R>>?WqpX1U^ySE`tU_kQh6UL_)t-VRRozsB_WjsS#GrG
zYCcr=;Q<lW@}ag5HH6m`WT8x0M>xrYKGgk>{GtEwdcqs}03Yi6?Dyc*Pw=6ElQz+Z
zr2ptQ^5J0#Ml~Dz(9DPCB6-ATPkK#!XzHY8HIjv=Ig%71sXqIz&4SW>XyHSK2wMt9
z<xy<oLt7tuh`gN-nLcz7{-_|6KPDt=ZvuIH;kR2Abc_lGI|;H@oqgyc{Bgmqf=t!T
zhwj4f49jQm3E|PE_4c8U4{!PKwhw(pKE#J7eds5=(a`+<LI(ISPzaL`@?o&>2JaR!
z$ZMz%xju{%;V{ABK8z4DQjj{?KI90GwwjVWA13-RNrd@66!<XOhe8RCby5`x8RK->
zQ$CCn$#@?o2>E|*Bv1P=*@qW>m?=@u_%KZf%X(JG6v3&2Z2oj1GuTZ&JTIJ@FF3K$
zoL}-`mJhExu`l~DJIV!L75sl4=1A~0LFWI4kT-pp>%%<Z%zwTUOHQ44d|2Rv=7YzF
zg+9FN!zVuM^<j|@i+$MO!$u#LIBD1Tu$1oS!*WORo{$xSD+Qz7y2^+5eOT?-En3!E
zC)GM3ANa6dNVNW&eAq0(kHo{b`0$~lztvIOCS<$d4kwl+ek^>aBxG5;eAw;79uY?C
z!y@+iuwNu!`EbBV`?(LFI{csyp9w!C7_HS|;a~W0#D_0^IO@X*NB@`)$Aw3Wh_;b<
z@;}MH_Td{x-{pfM-0g$vSSFfQ_rdTX;zO}0czv*(R6Zf54}Kv5M;;WyN`{1loggc4
z%Ev7iob%yVA8tl+zLTh*coz^th0{WQ5d6`ZC4QFR8NsuH)ci#VD|z0LT=L;J;lDeQ
z3qD+QIO}uShbt1i>cb6Iz=vy2>~*Is=6uVC+amwNiDfB&3Xj_4Zy)~g;f@b?IXjtn
z!o)ov?)%Wl<kJvJm?&wYwuw3>N}1SMDYKl3@+L}~h%xPrf-)w`nus;ACsa^lNkMMS
zcB?98avMCdIA>7H#3y6pE10NgV(x&^l}yw$QOiVS304uLysD6DCaMd0z>(K5p&u!r
z0<m$pfMxM^U)RKgChD6=F!7LyI1}EAh4oDPq(r>bhxqgLB0lm{e_3pN0~3iRl1wx-
zF}g$&<yo=uwR<IyzyzyDHF6%_Xl&vU6KzbiHPOUGQxj<>(oHm@@N`bHi4+sfO?xwe
z7uUB;m?|Zfd^C^Gp?pqhVIspsD-*3vJX0~}xpMI>MW4?p(Ncy;ajYth)6V42uc5t(
zOw&GM_o#{NNaBtYne&$9bTHA;#N#Hqn#eNI$wX%pT}<?<JG$$S1uUJbZkmF5PA`+$
zFfgiTm85Pax|>)!GLe>NWtdNk#W_8h#Ka^MPn+m%qK}DO6QfM@HPMe1WAjb)ml_T*
zF_2wTE<S!yL0q@QK_>XbJ=nBQ5=Lv@A**nxiD4#2m>6kdxTG4<CWbBIAr|VeK2KC1
zooymVQt{jiFWMx}M81i!CZ00UqA;((M3IRx><bfxCVz$4J|45ARyz{5YjHXIbqPCY
zoQdDe(c?`_pv%R^vzsQG_Je%yNpUP|V)s1aWE$B-^5)#<O?wOISrao%JZEBxiK!x)
zW@0-1WJJu5%j_C*kB*gORxE-+*8BxF)5J_Ef^Px1trtB%^RkIoO#JG{c|Tq?G26tq
zCcZN<$HZ%<y(;+J#Oo&BFtOak3KMU#QDrk1(of1}&NVSlg7XF6Ht`l48=uneFZ&(G
zJ0hg=0wI0>OnBGCA`^=_&~6khqoa<DsqY@OgdKD)d#Q=jzl|cPb))E!8$~N=lV%xf
zO{_ERz54eASDC1klli{z)h5;mVXSw5!UrbS)50b`65$5H4+S@x_B+i@!Z!<UF|kz$
z(|)!scALYu3!&s=TFJzxtaj=A%XbrYnYeW~VULO39Dt|Wk`q5Mu~&loOzamz;f}ir
z2mZqk((P{)eI`h9NXW-K3lDQBnP5RjOq?)r(zG|+zLe6BnmA_SxbWx+2jW*IzBb{L
z?)XNOsqZo2a=0SIEvO1=f=dq+Qd2i!NRZqsWC-mapJJNuOP&EiN`gWx6Cp<uroQlE
zM{-KYj@C)vv&%SX_|d|TA58qnxzUf>56At)Ny)@z6IbY>@hNBMT|&sun)t=UITLwj
zN-@YM=q{xa&)fcw-%VUFanZyj4*yb#(O90=<29mh5+zi=YT_DaY$vztCjK<>mx&uD
zZi?`hi9ej!YaeCb7EZ$4{&wVdg#05&g}XwSkUID2nSPs;6f7-R%8zJ1F@BWsgPIHy
znQg2e<^1-OLU}gak86$MD)>>+k4hq}E?8NxieObi>Q`gVvWk8{BsCm)O+RW0&;QF_
z81ubt9Y5;&@t_|M`4Q(wLqFihu>A>~levi$@3%J}>Iv2tOz@+D5Xuw%NOJhdn|6{$
zek6<JVLuuRc|@>jR84Tu{)A>inma)zOc9<c$Y7cuR3pjoqop73`mxB5R(`bh<5@qZ
z_|e9Xwtftxnjh`_$n>LwA07SnF4LoaJmyDx;S6%R;4YK5v3-=9JWJ%=Xy>n6bQ0_=
z*hTPhKe`I(`KNt?x4S6!@Z$+TdWxLFK7RCacyA%hxvwAng!dO5Ajoo~`(rG3upjw;
z6!<a3&!42gP#W29Pi0gXF3LHABLrE>NFmvR)X5bxN-$55g;H&_ABBF57YTz!evFlD
z$2bzczI;mfI6=NGrP>7H6Gd~9qxrNSlO6ty5SLmw)sJa@%<<zjKc@RJ!;hEgKlCn9
zV8x<McwVx4!H*Y3K2z`|K^8YlNa;%XuZkKav&FE{v<$v3^0|J@^WzOi=S@HQgmYNo
z`F_0R$2)#3_)nj{&A}pPiTPgUd{6sO@k0N<yOE3iSmMWLejM`iS9Y<?kM(|R@MF0j
zEBtuhkJVD2m3}bu)<f<0yzhx*mE=Ift`V}<k9AI-(SH0uf)_*fPU%KJHu<s3kKKN3
z_S>(ADBSMH7RhR>ASECAvCZMkWQWtbk3{&f;7(~5m3i&)<A5KZiu@Bl_6pf2$k_ct
zSi^%3VV=Aw`P`4gew_5<D?h%FQjSS&kNEMW1dlp4r>&@e+>aAZ>xx4;lzi>SH-4P*
z<6A#mekgtzet7+GI|+3^R4G?;>f;d-bt>k-8v6XOoHm+%ey3v(w1A@@bV>|4lCU2U
z;l+-G&H2uc@BKI@<(?Kfg+K8w;OPA5SnOw!oDn=L_=}^%y0J=Z>~DVj&VC7CYXBGg
zxadcP04fG>$&br^lnS7909X9D>c`)H{3FS)`EkRKo6?Z$e)Q;&#C&e~@dt;%q3qj&
z&Hrpb{#{DkpMH#~l+Ww0D7jH|M-nngiGV%E?{e&q&cEl!eIew(R!b@wz)LrZqWkdE
zQ<7o=C@0Eg0w^0mYyex@+wTfT4$bXcp@6)6z~1xc#pMC5Q7M3w08#^}96*%-mTilr
za@7E;1yDVJ2LfmwKym;z0;m~4qW~TbpjN=Xm2l>NP)KdTIsw!b!l*O;c;Z6=#03y9
z!g>KfNc{j30%#z-p<tq5l3?_162)jfT)Z_7;Pkk7F3%`=B!DKON#0aQGeMR}&4+I$
z5UHFNKzaa+0$3bCivTicq5x(E&@zBl0ptew>+WbBKpU!^YcME)wgI#Yplbl#0>~8W
z(b=*Bw#z*lz+(Zl51@ktDd{MLrX!E~YNr4?2hc_2QOV<hf9H_y0rU`gKfxyidkgjy
z?B!_okzilJ|L5F4fB}wVprbiBfFS`qDe@75Lmi!A0Sp%&t;R@4o-HItkX@e_K)&#q
zf&~GL4d5v@T!MvyMS`r!7%7+S9T&j(0G<>1ga9TAnI<?XfXM+o6Ts8|PsKZ|@G1Y1
zOcfqI5;NVA&j?_Q43_5|$qNCzC_HLpIwZ-<?C1dI2k@3ey&Aylj{a=vvN-{~CX#4w
ztoa)fd^3Q#qA<^iWrlAD?3tG29lB^Ud+J*dz`VlTg`)GWV6^ll0W1w*V*r~tIs#Z8
zz^VY=7ljo8tPJ2i$$`aDpIPx@wyOhJ6Tn(2H(Gzj@>(Yesr-SE^@1A&8B5L00sA?E
z#~ta$bmk8O*hbe1;_)E12e2c6?>QU-_$Yvn1NH;XR{`t{U{?U21#l=}f6=o$fV~0i
zV}<!4SipWf`Gg&JwJm?~Z?cli6Y2W{I1s?69M19y&q4N`k{snEp9gR_fMWq1ms))h
zz?T6W4d6(?KJm*F4$NWxOYOJ_=hfP4AIdr*WwBAV4jt)aHjDl`fNui)r#~nGSTac6
z0jNT}fqyrFwE#Q;=pr-(qq`qb<QVq_V2a!?7ziNfsQq6j6hK&n5y4_XracwFw+{a<
zfZgNlN$CgnJ14XtQiAx2j?GyshzEl>6Tn&4Du|Ln{1U*q0REQt{u;n}A%AcZ_#oxC
z0Iml32b%buw}1dHO4MaR8s|~~BdaBmToFl>Uw2|}3ArJ7Q*xswFTRYvEy6zq{}Nm;
z`TQgN4lCI<>#lI>-xG3QaD26-QbD_4DhEMMQaXs3Aj*iatYF0;Vuh3wEH6mS3PJE(
zH%TRt^p~^KRf4D*L^VgJW)RgK{(z7gf^18zAf{AHsx84ff($aZhk}TcV3Q!?g(L;h
zP)I$&`hp2TG!VihiB9EdF$6JF@}adG1@Umuep%mGkmQjd`X(fiG!3GeRDj8OH4oy(
zgg9C$HHfqz+6K`si1Z*@1kpN(HbG<r?I&W6uU0}@2JJg3B|PoGPstvV6(G;6{8%q3
zGl)ln_T9Eq5RV1XK8TJI<ZJP<1M=zQ9fJ0Kfx|p2XixIIqGzr;v#g=Hyb*T|qFWF<
zgV+^B_aJ%%u_I^?!zY618N}N`yc0yPAbJOp9YjtLeb}fVMg+m{v-$<mKZwCW3<=`%
zEvbB=IUs01=#dNz+AmuN3A(N%JSl{81=WTMA0|kh;X*hD89P!qUzO$tF)D}|%q@sK
z5snSwDcZqFRlsICyfBC&)<=SiZxrz$8M7TH!6|~{={!Ov2Jv(dlZ8(T;_hzyV+~%<
zh~(KI{u0S2O$#WTD#B?&On2lIuAfrx`5;~h;*}s?<w#tc@*;ge2st+&h%ZTSRuC^c
z^62sJ*%Ew1a83}fIkB$`VcIu?m>a}A3BDyb-_eQYOk5De!XP#Vu_?&Egy2t<;Qb(0
z2eH`cXm<CKAeIKP%#o}NV!7}Yg7g9EyeFJwl{f~;8b|VhkhOyA1es*L_!ZSQh=d+R
zzB!1kL3|j*7Re+kq%s|Ho2XG|yO6283$RKu4}UDqL%utRJ?y)(nMc{24Jn@laYV+>
z-XQh`u|J3d^s68aQy9d-AkXdN5Dg+{;i%6OaZygf;Hj7Dkr2NKA}Zm~`;vE}8$~2^
z%UKojPjD0mQTQE-zQb2Rd>zDs2o^^0O%SdiR)z3>2nv(4bPES8s6l8Pq!!XGc!JP5
z#x2}llVWgS25}*Xi$VB;FgZWd0zvqL2n6w65Z{aQ1cQhOq32jZgk*Gt9ZB>^K(Pc*
z1@WzrsF3=nCHMoA$d^Pv{wLL$AkGGHE{I?01M)4^FOJ%8B^#XQ_!Z^fgZ6d`v*K0f
zN<!mn2{gi`Ab)@YwJg-Oa3zSVL6ovk+QPLUuG7zh_?xkEdgq2y;!Pp9g80Lc+z#ST
z;oSRT=Kln7M}j3S+!exK0FIV>PlERaOIZJ=;_aKUF&4^L_AF7uLRri9jf$2%dyvFh
zC?^u~@)jyM{Dam>RH$U3vS?NjtSVSdkg?S*Jm7GClT}lSh}y7@g}N3RNbG}-PJJN{
z3C3B77gEoO<wjY8!=oE$i58M9G_(Lm-iVg`EO*6`!lrHP>hWr9;Smc>EPL*4YN5G>
zWZ})Me^=TZBPrIuJ0aw$ELT=yEi7bMc-g`$7Ft?pWnq+sJPWNYw6W03LT?LgEwr=H
z*+Lf!nHC<k(7{4S%YLo!m}U1}dkcI!!1oc{qvnQrmIb~~>HTYBC(GVHC#U@x`?!U!
z7P?#LVWFD^?wL1xJdxYijN&T*z6eNKlJkUxo|b(khe_<?c1gK?EcCT7)WR?e{Vepi
zFv!AS%YOC1w-N&^45TkD&RKNAe!FpXZO#y>*pq@|yXH||YO#Irb-0BQ7IG})TK1cl
zkrvW=CuECSvkLjq!?E0HXMOU9B(n5;3k4P?TX=?cvruSZoQ3fgiY$z=FxJ9T7G`xz
zoV_}Uxlx}*M3eIq-3b;ZT6o%mKOwJ{37#mPWZ5sCsKb*;qcif3-6(pN&9pFseQIH<
zWv@1QO|$U+>LilsqR-8LzP)<h!V4B=T6oFAi<W(qm)AIXDZoR~G$ZRgi#lJ}r-gZ<
z_*DzD*#*qX!W;{)S(tC(Eeo&HGo`)ve$RfB<FUMLmbpUawa6o%$9^AF*rR^#+ZNuj
zu*AYrsn`Mw?^;;I+)8FHq<59cBUx<WWV!f2Py6f*o5r46W?{L7_beRA9lgTBN-2x)
zETWd-d1ew`tnF$GYb<QF@S%mZ7S>tVEbZknzYi>Iu&|NV8=kXXu=+B)o;({#+(b!n
z6Tafv;@Fcm?_EBAn}v@p?6k1m!VU``(MeY4@S<CuzdJfgc3IeMVUPGK4fP52W8-Pb
zy^>Y&jiP;$3i6)lQws;_+ac5r;WG<|EQFcR!siwabC$NCF%?@XZT!l@my*eG3nwfb
z6@E;R_Zn84_F+9)=t&xFu<c!6Tlj`mU7W)gSdk?;E(?kUH{GVY-4VR_YV!JxA`iQJ
zg*~iv3x)-+7{qTOV8JJxRx*XmD<4lDr2Wq%_AhV0BD6#v;<PX*k5R=IPFc8bfqnh0
zh3_o<ZsCH3?=76R@Qa0W7JjhsBWDZ?XV`Xmu|*U8WT8gI(b2EM*_&r&_^=mPc{b!%
z%YGxt3ZJ*|8~vx9-QGUsZM<mVl7)XP++mN@%(-mg58lf-cUic~-v6`Un&3?f*M-~=
ze0x<6qizW&S-LpqPs@Iv$PE7yZydERd-9T;zb)+lzJRacZv0VjmxJ-8g2opMIN0y8
zjZchbzn2K1WC*1~C>=tD5GsZc6GE8~VnZkwLfH^P7ZRB#hcI8{asHtfF<3r?wBpk3
zH2alhr4TBIP%VV&A$xdM5v&@rzl&#(3VcaA;G^sZLZ}f!%@7j)998~i5!=3{dJZot
z)Cr+(2opl~VuLG(2Sa!`gvKE}6hd4G@gdX;*{czRP+tgn{LO>}hc^fz(cwu#8Vd5^
zw~>%~H;b6$kr0|l5&0oB4WU^G?Lx>DN%Ig|gpeUTSuiDpR3WTVT8RJkVApMNw<O}W
z)&<e8%vy%fO608_%{C#lb@=%64IT~Qu@HuY@MH+>McyTZ$3y7g=yVJrOL!+o(pkvO
zS@~T<=oUiH5PFH^&GQYq3+W;Fgy3XZU$IKPLl`KMK7y3=71A$+{z3*gawZw%@WCNO
za~SGKvO^dqe7N8UM?NxyJg2N25#|bxqFl)39=2r)gpUrPP)Jb-<ApG4jF7Q{PYI3-
zfsJBRcyA$bVhEE&{&WaaLYNw|ziOEr;(sC8x8rB&65eE94^&NRlan(ogjYg%HH7IQ
zFgPQG=Y%{T!b~9)z98g9!42DTUvlKLLU`HXkKQbr9m1Rt-U{&#K=E40ehTI_FND{H
zzajXh;9SAG$@cRpulW+>1Liv+EC^wR1SwxAWU1i0AuMv_i-jx^JhHlQnULjz>*WcW
zX;(_{Jwcw^Ume04j>HJcMX)x6bs;ni17Um+!g`L`FiMB9A%u+~oDbnQS}%mnAryyj
zDugW|Yz^TAvkKwE5VnP|H-vp```Ya7g1bW45yD5pKMrB15XRnFW-k&*c8g?B2%k_>
zBovOe3igZqa0p+7a3F+FC3sNq5bpv)sL8QU{5*v1OL9nfmVkI9gfBxl8p5#<j*Di`
z#kQPRwQ+eAl6)1y*CANKzX`z=f)RpOf{LIPf?Eic)sVf2BJns9T}U)rUkCvSnog`g
z1hac0^?3zF$O?yqgk|E2IGP8R=X@K&cOje&;g=A;58-qOKZWo!Z7VbR4<Y-PKsbH<
z$T1$<?!(ylGn`M_B$|)ft2IiBl5)>U6#1`Cs_5e9_Yf|Ga5aQ$AzYNGD^mKU5H3rS
z>Ae%%W!w2gS54PLxDmqL5blL=GlW|q{28)u{eKAF7R-CpzJEm*cz=oHZ$Zx3{|LDw
z*!^bF{Sef%i6z1)8MZUweULhoxa8&-6GoXZYKKuLjIv?GhV5CsMi}M7C?7_ZFsg=8
zA&iP)R0^ZA#6}H5WQC(`C$APp^)Ma?+v^8fAQ~Ihq@<=KWX`q1=r%fU(9NQ{VLTW{
z{ft5$G<qnExG)mJXb?tx81*Q33Str_XFk!a5+(m6LCSeifl-aZcsPtXVZ0Vb<1iix
zV|W-N!e|mk(=a-QkrhU>u>GlEdKfLjXdbpd3``CqC2ViAkf(<6<-jB=q=_0O8DX>x
zBQuOg!)PVK)?u^}68++@t?+hXe0(Q?37I7NG2mlibdV_K+}_b=EQ6iG=p07hF#3hj
zC5*?z=ov<@u>F%MOxu;l38Q-$J)BxSA<3gTM~mnk=Br7&^31Ko(%k=-+dqr}qC8Y^
zU>JkL7$SU-Ad86R^P~i$35SI-W02iyMvV+3JB&$mk}z_@$PHtB7!$%66-Hhdqr)f+
zBVW?aJzN;Aa6uTS2HVMZ-^+_iiozHZ##m8%DvWXeDJxofL~O;%Pn4+IcM>Lt@k|&m
zgz;h+&q~8*h(V@=F;#S?Irf<@!Dv1#^f?JWAI9f#b{%F)+E>Gv9mY#h&QF=bcsYz$
zoP_^R%W`?KGOvg6Mi?i;I2p#9Va(+m8^*>k=7ljojAdag5A**NY|mL3#=An^4&xmm
z6fSUbUL<6xBVQcG5+{mk(Q;RWu`-M`VXO_~J&AokjMYL`2}W&5<)}Wbw9aWeGx;El
z_5aCpQy81WI1t9CVQdLwYZ$x2*d4})VQdTIBhjQ~wuiCfKdG1xOJU9*a}fPUz9)=N
z!q_jaMV-A8wa*DgQ<b}G`}x5zK9g8l?+~YsI|+v+$f(bSF#j(c`yb)365&xt=a`V=
zVMIOQt1!L}<M%Kwgz-%nt}p^&{#_K5Fx;Z)3quV<6Rr!=IG$)!em)B|gnR!p3{8>v
z9cAiRVT7bg=fViHXo)%_SWF)d<6B4hJBKh8ukR&zTJVQ3eiTCaPeOjCOXS&gI4i+l
zoLJWISK;TQL)DS9J1&NCDU3hDxE;o2M}9>J?RGVcYhhdu<3<=ao!F=|5O0Yj8vIlE
zoiOeS`AhKcsKS4Gjmq~#cwdlJEfKMuxujsJ2ucf~Bt}S?2+9h%cDRtj@)1;sU}S_F
z3#b@Dr3lg@NROa$1XUtv5<$}lszy*Pg189cBd8v+zr?Q{K^-9v2-b+8rjS~KRN&?Y
zv91Ikir_&ZcMA$Bocv@xV!a6JN6;_=M34|cg9s8MNQ&6M&BaI2=+h|qigNZo39%7#
zh@f!<k1&Zm7V#cLIWLl^q*=t?nrI$DGF#LmfzNI!k$-m>QiaT{(QatNLf%kXM8IdL
z&JlEpAR~g75wwb+bp($_@L0sY`?rapZ3OLve?H89V#<u*LRXta7YQWoBj^x8N0IXm
zl@+lc38OlU?L>=}v!4eakDzM=10xs|LAMCHOHKMp&OIbaPvK7pj){%$6+!O^_;frv
zHolJtNth3>ei8H+$$$tB=j72c+z(-M21}m980ED0Nmf2PacBgthexlBDI6~H5l(FG
ziR_#RawB*-f>$CK6+vFa-bi^Vg8T>yBA6V(GZBoApfG|l5sVdc&8XS#mGOl|5p-IU
zL+d>yxs8k9v&y5>2iR5}FPy;%5lj?5$&oxQggVbgFeQTLB6vQ6sS!+zV0r{Iq*1it
z|5pOh#XvOpLWF-Ffte9|oyHuZtAeNkpZ8})@bN19k(|%w?D1D4n9X*r&7Kp%8xg!I
z{58SX1-U-tf@Cg7!HS%DG(ydG6K)pGmmno?33*%a9lFH8L<--HU=i(k3Yn*{n5KxJ
zeK9%|+dqD|G=eo;%tx>+Vh5K;P`g9D6~b2vz9-12RYKkuTus|{s7K+t2tMHGD8@s@
zSRcWL2!4*>OavPv*u=3A;m<Q-GaF8e#i#6zU~2>)MzAY_-BjZ*lSHtSMaQS`_k6ZT
zutS8De?*%IkG{@$;jtv@?4dzqkNT6yzhB8k_rUi>us?zW5quiK7g7+*IvBx-xw#~t
ziR6$Y|D28&mGu925B5j|Uq*0Lg#5itCOIa2z?k@xLi7lX2)>HoYYBcM=n_;bXDULN
z${m$Npg9tc5a#KPz!$-{5quYc8G%1yzXdxb%^_ja0uclwutXAyAS`6KY=%dK7Yp*S
zlosGmk?;xhd&&H?U{v!5;Xg+3lMwDmckE}k@oWUYMC>(W`C?ez^Up=_M+CP;=hq0%
zGb)1LCI8DDO=UAL2xmbTg<OjK`?iacD<ZiX!L^9J0Yb_32yXDTNRxt_g0}=2oO842
zPbQ4uUIh0e_&b7sBDm}1d`CzW+1=}UC-Fxom|KZr8_Nim6f7lJx)?D+82gcuRo3CL
zLdq3`HepnSVpJ?frDA(;q<S$Pkl4z_s3N4Qld4*=?R(U(QEWR>&0^FlwtpLwlK;O|
zsV&NN1nY_#W8;buUyO`mv=n*0Vl*rUic#OmIYCH+Vk8zLsTk3ZH|d8L=4bzpsjC2&
zqI%zShqTCr8@{A;bLo;+I(KjEy$e#Jgh45wQW8oD0tS*IASorKfCv&&8?(JTv$IHd
z$p4*h8UMfMndg1p^PTT}r_b)3IZ@exDvZT}TB1|cf$9#_aG;tQmRma+1wTN%=D?tQ
zna=LUiFUOesN+C=(W&b&KJnCZa01-$ViY93W0uRejg-f~Tr?8R#tt-bpegm`D?_RS
z%^bMhErZUl@7k%{++iG)*CHPEw6xX^v~ggf1CtzRE5a-XvK?sWKzj!|IM7jqR>9XD
z=<Yxd2Rb>>*?}$+3vI^F;_K=_H&Odm%JU5e-V}v_l6b1|=_v}m9Ox~ik6>THeuDi4
z2MAI>UMYjbIaqLrphYlVacK^uJCGrgOo_|p;6g`Z%PpVM^Rw*^40Yf=dP#bQIWXG6
zNol<0;LN;rxC9&_I8u<IMw#`_PwHbFm?5jk*!A9V$P|zRV}*<p94|OQkUIJP#@t!f
z&4n|$PWS@{%FeQW=zw#UwdZ{6WCx}=pg7=hV5$QjIk3rrA07DEfoTpbcVLAB(;1xu
ziyc_vz$Z+P12Y|%B?<e?VeE`%Rq|^K4~Ss)c~szR2j)0HGM8zV3^M(nJ2218%X|m;
zc|Bel3my2vlz%B?k>Jh#sY@MLCOmGI`d^8YCmxf3?Z8To^A3FHz$%ficHkRRKi&YS
z#)!UWA9P@yc=2dr3V#s3mW4L6O}}TBw4Nzj^QW#C;RZImk&QMAujNVG?7&YB9CqM{
z16v%}>cCzH_BpW4fuGsa9oXSO`Rj@C6BOfTIWp><4y1O<+$BbK3o_C@LVgis;p`Xk
zs{@A|I3WBWoA*=8e<_c*CE7gdz%d8TJ8;2)-yHbefwK;rlTl)SyOiS+_C!1{H!UX}
z=y%idhu|r}KLt+<o^jwWA=H_>BrTrcsX2{vFaLJnq61eQaByUH;IbHGVpy%aM`vD<
zSg5wSXNuG0E~&?qCMj+QVzVsqUhj3l=Rk2MUUI_kK)``V4m{>4=RnATyAIrQAnZWI
z0nLG^1F8eHhh@&anRxSh;^mu0?dY_|7Puqvnxug<<VAZK!_hwy?{$u5O$_G^ao%*`
zmXO<Ks_r<jK@Qct@4y2QJ``kmvbu@JK*YCu2c9}m$ce&EJagb*2XZ-)+xcSbeeOUG
zrax~g8%9niLc5Iv$9M!EF^|*uT`1s0ULiD<&x!oPDX0B{!sGQ=MEK8l?ZuoZD#m&0
zFO$J$Ni5++Nhe-)0#1~2qO=n)J5k<=GET54$~sZbX$-T}WSfk)hq&2S#B2pY$`gcC
zbfS`wL?@DjFg?^y7M@~C*aa#(QN@Y6PSkUvsuR_msNuwGPE>aq-Ik#q<xGx;t?5MH
zn~AlYsBL<!E@l)$9kF&rl<Pauz=<YKG<Bk($Qdb9)yQe|FDf?{;nM5IY0q@hi=?>|
zEu0wb!rLyibfT3L%bfViiPlcEp}rHJInmaMc21-@k?sV)eYAI?gA*N{#!u>*yLL)m
zccPOMot=m~yExI+iT<M8&57<p`U&<B?B&E8LKyZ<CwdC!>I*)-O?e+7eN8WFUeB-&
zaAKfH20397GFWiP|EN*ZD$c!klQNvh6h6!en-f`1<3zq}C-~vxM%9%0ca!L}JMpNJ
zZKz=1dr9PPIWe3%e2Uv9NO0O5>BJ}&lsMmZ;$2fd#))@K?wVYYnq!?9CzA1|yyle5
z_t=D-_`rz|o%q<4Pjq66$tMY!EXb5kHRT@(Vad?)G~v?)X9#}cghQ%erc}oqC*}&7
zCBCzr#%dM@{M?CoB46Y*PA{DA#6lqp1SwhEIfeLzIKLF+fsL%+#S&@>n{<VgrNTEA
zwk>yJg%br`DCEM|PONm|BqMTSl@qI-*zd#vC%$pwTPJ>SVy!g4@0|Fa!OdpLQ#IHE
z<BgExz&a<kI<ZZB*E@~hvJFmbbYhc8estm|A=KY&TG(Pr*!X{TV!JqZJF!EeV}sx2
z#7<L(D_9sd-t6}{@rx<nD`cM&@!z9^PW<Y`F(-a=a-V|rkfh|WAj2MU;;0zER>xT4
zWlymF?!<8?PMFsCE6i@|En$p`)Ia6KpH5tJ;vXkYvuijJV5K<mmlJ25xah<su|~~v
z5(U$IUQAsO{9DExn&NZW38xb`?%J=2*Htq{hdEBVoN$X!5%f9XF?GCRJZ{G?LU#O+
z6JaMJ94Lahn1J|DKvYFRGs8xm&`lmQ!(L}foXFuqP8T>V^AFWcCvG`$+lf1(^VEsE
zPTUjz&<u57$OAzphH()eIq}$(JTWyXe<u82!RKZkbGeY)g#s>P*w5oK8VN~$7xIcE
zpJ4pdWy&{QGKNR$6n3EqM>ZE)xlq)FVlI?-;T0E(yYP|=rCcaYQxcZ?C0#FmcjCs&
zxKLKSUKXUVoDkO3>ho4QnTrZ8B)HJbg;baE*Sew$m0U=4fv;L@3`s5|yHMMOIubC&
zh3YQUa3Sq_;;T}65Uea%MX;)1H5Z;gPh|1FCIM>-#(&wF&RS+V$?Lk%P<-nNQc~ZA
z1|~0^E2)w2#-^l+3r&UJm}9K(;xF2u`-#oPU<;AQ%doWzZCvQ@!T=ZAy3o$W`{vNg
zh4wCVaG{3_Z-{cdpgJ<YE_8BXXU?R~E_5^F>f%CIlk?Aicaz8er@bkaNDJ8=jF*?*
zF7$DsugmyTN@1rw$$UuqF#*>TgCiU9vWbB%407Qu7lykq*o7ftaHtCw7p$%qKbmP~
zEEz)51^HJbQ;5xlEElqc+XWdl|9QrTh+!h>RWOsq!df2T!bnqxbv?@DHEtx1ap4^o
z;6`OP-gRND3rk&C=E67^#=9`Zg{dw~aDit-O%i;M&BKKcT*fD33MUHr(1krsQz+S3
zJB80=(WLX%p8OxV@UaV@nUZNPP&mVd>87ORn-y!nk@kt$`Bac=3un48%Z1r4%yD6f
z2<N)+xeH$kr{#G<7P>Islq?XkqhZPyLh|0TQ*Dt8i(O!n$h-WKNR0EZTv+bHMHeo)
zu!4iX3)@}TApuvqu-1ij!dJPl+67*x@{J4MisU;Neh@-a-@C9z_`IEl<<4TCxm)kT
zW*2^PVS}l;QOG92A6=Ls`b^IjDTJ*q#KY3aHWz;WADcT}*yY0SE*ux(ZWj&++2g`5
zOmM@Ly)Nu`;b7C0eIiE*Bd2`6UY~tXB)<wCa^bKGM_f4S!Z8<q6JfF_GwOJm#B;&0
zCtUc`h0`vaH0$UO(LW_vV@)=7&bV+voUHf1TsSM7@^eDY3tpd;`L`*j@yjk;apAEG
zPegdt1&<3};SNEkpvwif5L#1&FoixB{4T^?xF(W-3lSGo7lLLALn05GWviJM;>|KD
zPTlnV$A#-6xi5G_@Q&b3!CQj21zA~lh1?Tls%Z0p@Q0@4k&u!Flb^cqjH7`YCEfU!
zLm$U^x6xDh<ZvU8+vrC*1u4npMsD$qmwaB~`Aq%%Zp7sU-6$l&!h%KO3j7stqnI1T
z#raZPn3~EuidR!9H%hzliW?QgtBl~wZj^PSoN3wUERweJ;>(;S2uT#IC`g4$rZ0Jt
z8_A|T#f?{mGvoBC;zm_B-gKj<8`a#X?nVnYTDnogjn~|0;C?Y<Q&UJC!CG$Ab{l`i
z`HMrW>qb41*Ei*HuZC_ka-*>uP26baMyeZBXevkrK77xmog7Ii4L9U(?l#`I`Tp3-
zjn-~-bmMig*~X1_LKs(DA-wUYy^s!qoTlDg!q!Q655dl6GP=0Y)l6qMH@b`O_B-<G
z#~U2P$t3l1qqiGF+^~qGj~j!9Fvh+@`nl0xl0CrvVjcKEA%on;Rsv3zQnUTs99B2d
zL_f=obkjnn8yUh&bTwu^scaKd<a~a9GhwJ3!`xWr#aCXu<;HL~YAL9#V1yeZ-MHw+
zB{xR7G1`qqjMV+&EB4!NjB(=~4*qNvZp?RMtlOASo$AI%Zj2K?-i_n?vnL3WyvJmi
z`~x8$3QiQ9BskfPDMCgq&SsF0-Nt9H>2B~-^)#{he!B7Hj?Nh({6z3m!OsL|x-m-#
zb!NLUNBCS*^0^!3@7d`U|N6f`Y|`LDHb{w!S@_b8)$+Z2i5pAZIL77fEFU+%a^qJw
z4!N=1jTLTecH<{EzIJ1!8zWMUrnpMV`5QOB6|!28Gw|QJ@x2>Aij!(<+}LRHAB3zG
zTqn5RjSZ%6lN-iC0h`>$Y0@NIl1<#gytwg;8++Zn`O(-2w%v^#Zq(E)KlA4}HL=(6
z`n*11ryIN7*yD!UHgT8RxKJRp%JM-aYmS!2f#h`Vb7Q|72i!O)M!vD<rhL?>1R{fc
z*4KLGqVcidFl%;Zo1<<VF;m40N`AXwJzF&MclIo+^-niWyD?#t<+vLs+&Jkr{-FNh
z#wix#dE;Mb{BIj)ENSfwJ69>|IWhH@;8{1=`{;Gv4PM~RRq+?x#_1D(3%c^#F1vBX
zjY<j<6<l@0;YI-k1r<2maJdn18xxOiM(3#OrEfXwq^k`SH$3dlR~x+ltSON~pBsMh
z?NcC$&Y&A1H^Od2+<4%|Lza>onj6>MxWT+UXcHAYrWe%RnBBY$B{4UyiSQr6V4eaL
z{;C%w-gM)Z2=Q(0+d}RL((A4p_k`aU^i(rUJ#yo*ICCmSTu+2o&TANaD*Tz?zk<&N
zbBJcmd-hyHatl&FkC42A`4r?g<*o183n?h97;B6xDCl#~&QdC(ps0dk3W_TztDu}>
zTs!rWU>U&@f+Yn@DJU&u{O@U0<I}N7>actEmlc#(@QQfltZAc=VTn{oP*71ps7NY5
zB}~6(|FxVoNkOt=w1+B!FO6=LBE<8z^;L!28?6wmtl&`YOkP-1ReY-{SXV5QPjv+~
zO#YgXnu_srK(9Iq>MHOn2q>thpuU3770gr6KtV$VLlq2D&`3dJ1s#|?1yx35G*Qr8
zK??;<6<q0UZ6=s1Sazh15`GqJsi2L5whFd=VQZzJHIp|y<Ln|EmteJ1_<t#jA4%IQ
zn0(hbYH9U7JIU(`Iw?q3kf9hKraLR>%>ozRMX;-2H^J@-dI)(#kos>5>8YTXDLK<V
zxvzqL3I;0}qM*M5o(nWk!K;<Ceojdnpn$mVo_&z$Gd<_;*)77;*Z@{ot)`tLm5dL#
zr3$nnW-8c{Gb>xXYznf3e7Ms1#%gCH8D!lq>&o6zFkHb03O?lcuVAEt@hq{n8KV@8
zR*cPw?<m;$wKc7v^=$>++GmeZjL)(|ml*2<-&HVH!8k^Aqyir*^U?0v$IQx}px`~0
z(mflW_Z4HMBFRJrlN4iZ0Mjs80l)Kp^OJ41f+@7A;3HOR_w0{FUcRW6r9Dmfbio;d
z4DyMPPX#{{oGCa<F#mn~90gTx51Olh#`$EvoHbv;0tI^&>{GB%!50daDfmjkmkJgs
z;Q34Z0L@;rSiw?xmMG|(X;sc<5eJ<}o3_icT)_&(*aY!|g0B^<q;Un`N|CM-TrC*?
z(#_m`r{H@9YgnhU#Ez0UiGTZE%Z9CBy@Cx2c1d||RE#B>n-%;h&P{^k49If+Nt`5G
z6l`TfWqT0G4#DlFFZFi{j~m&oV2_w(KpOu=jMLzLW`yIa0tcJ7f?pM!Qt&7Hqk_W<
zephgub)?{^f@6~Y_?P-PG8ex|s<u?JGA}0-oK*0Kf;SFUpk+$p5BX^YXB1pe@VA1$
zSTzdHDLAhfU;p|1S5R?6vlkUyQgE4l)6|KV*nj25P)-FdX+LZRZUu@0AEV~CUEb{3
zG0`KOPOpM{@}oxKfDsjf9H10j^x%>QVFeKdnI70YP!(tja(j@+gQx;s!2<;k6~q)=
zQ*c|s9R>d=xUS%)f?FJRWTzen)f>XOS&0&EM2hc4y30rv+-FCVqci9mC)6Q-q~NiF
ze-%7e@I-W;DtKnv{Le_7<nSP;2e~{iVvO6TwK9>UydLE9pr;4DJjm}s0T19oWe*B^
zP{@PQ9+dH*u*cX)RZOsmAe}{p#1m88gO@xg@jsH19+VO%<Dzm|56X!%N$};kmj~sA
zP~jCJ6(ogp@~P-SCDS)Ct}mvNg{OG%s_Dx#RPmsyhqqFqwFlKasO~|156YIQSi@tK
z9<9|D%dbh0nu4_i<LR#>yslt9GYt(qXeg3Kg3Uc>?BO|bXe!QT9;BL@@jNn?IB6jY
zEd?oQ<3U>wx=Biyn06k#?m;K<Z7<kCu%jT;6HgMYbrwk%!LDXp-No5MkUDR8@TTy1
zsNNp*@nC=l13l>LK|c?s-AnB6!T8$7St5Lx9wL<oc`(?645A#$Jw)tVJjOx&aUH9e
zO%qHvqlm|n<w3RwJ3ZLtf!%|l9(?7&au0@i@RkQ7Js9P|f(o|b9wgqkbJH~W2$66b
z^=J>?_TV!QW=esKVcI;H;K4f*#k+!I1;+{gSE}!M@Sz72J$T=ge;|ZOnj~bZ2OkNU
z?7<XMhrS=P5Ip!)B-1^ZA><RYJmWcHEF^J0%WN|XJecjl91rH2);>2w%@fId!FZ^J
z9(*CrFFjZyWRV~(FBZa5U1~~}d5ryr^jaZteeJ<Y5B3jBh}Y374>pMAY7f5g;9KE8
zm|?#Y^1TOZObJb`6~4}ttT)riC^mYq$%7xoYqQ{14}LN=w+NwyZ65sW!FE%=L&$$+
zvfG0_9-Q>x4-bA3uOl8D^<b|D`^33lGICh>0l|YF{3_&-V7!!=o`(1B$2|DWgWo+k
zE?$iNzm|D|BTs=ODz{pg9UNdi<-wmGZpOzs4^De9X;{J;i74KN{}Rr>;=D5ByayLN
z_*)7#9v98VA386y0dT_Hi&|b>@!+Zl4iB7c?Oqi1!sUV6gMU4E?t#Jv#tz~^&;yTf
zub@xRFW6Y#H9{QxJ-Fk+T@gk+xFJOKK;!r?JSM0MayFZmuX*r~2iHYHXI#h`gPW%0
zmIt?mb0rBC_}ug0vFUr?g9j#mDC7~x6R}LqCn9<3!80MwGD#HX@FJ%d1-vNeMJ}(A
zyL^JV1@j2z6{Htm67vh^f&n`Bov;)VXJPM)^XuYyFXlyYFRFM^)r*(BDB(qA(?Urv
zN_kOQ^!eUe#*4CEB%8kFyr?AnWm8h#i&unKFeM3IR21H2cQ(_&C((-})3-ofV+tb0
zi&sqvm;jlV(1s?&^{aVNLwu{7I(+SYO?c75)@p-OYkN`0Yy31U@uIF5^}Mipk>*8x
zFB*8!#fz?9H1whogE+121se-C_o9gq%9{#lCYTx*j!2-qg%>ToXyrv~5w?wcIjwC>
zopz?=ebMjWMMqQex)+^H-kD@XLcP*S-9*ygly~={hZk>%^Gz@M2<a)<%ZuJ|HCh(q
zOiy2t^b@R6I%$9x1BDM_#!DwrfzMzshQtFpt(G_$k&y01h8NSlnBhgH7dDZ9AeiOF
z2roto&-TLZ#ZckHycjNoHs2zVG{j>W<;7?(#*6RUUW|#WiNZU=$9nPZ{|Lv$xzidC
zKEaFkOv(FZ%0KjCq8F1yK2>nCsWXLbKyvqyNIn*v7Wb7%Kk?#IFBX{kpLsFI<TJgP
zC4Bb(=+71Yxv4Wx$b2&;%<n>xeBs5Hrp_WEiv^jBCt22|<XjM2Fmt&VE4<Kri2Crg
z7c0GJ>q9#qR(Y}7i|1bC@ZlRTzV+gq7w5hB&WrE8*yhF0Uaaxr2llvx+I*K>>%}@R
ze)3|A*LeL|@5M$hHhHnZi`UvE=gXf!A)g-^_6yr)FD|~3#@E>9E36l^WWKU(^&0OW
zmO{-c-?4Fn)pjp;O4@$$Vy_oFyx8f*E{SNj7v1jLe^_8+q<g$bxt7JJRa%pMUhMbc
zq!)kCju!{LIKg2-Ze;t_i(|qM2_81(N4z*{@{_M8|7P;vy*Ms>OnP$MLe_mdQ+UdY
zzr4oV<)2<S3npCemUY?-;u*oxLz2&mFBQ0Y`GOaJd*SoK&zwriuX^EN3%PH<<i%wU
z{%ok0tZ_cuZd=Be_wAeS+ly|pIlZ{L((3ZU?S;Y$t(w(+mDMBVnX%GJ?)8GmSJZ$P
zK`&HR96Qk(+wt#hITqVOUW8d+i)|4>lFyddqEfIiFRlsE1<OCo`iIH(;*r;QkGtW;
zO)u^Vr;~3k#9Ln67Ren`ewXztUiT$O)Op~=L(})S`^HhpkHz^!@TnKiOy7UKFLtrz
z^dXlI&3$O$LvA1P_)x@$qCVvH84Za~K_49V?fHDj@52uRvkC~_yl>|z#N2UK$OmF!
zAKH78Ns9SU+=uEu)bQaYA4>S}st@p?qz|QhsN^%===qfPp}g2HV@k>jDd)q>ri3q&
zuL!T;LxS(c>nep6eJ}PHCi;*hMv_Isq^5{Ibr?luAFB9J)rV?6qm<}N{O^gs7{2C1
zO&=Qg(9nm{5A3yksOv*L;kA9JBV^_W+4QRK!~TUfKD0yRKIle1H1?sH52-#ZX`J1}
zho(L>S!QM9pIttieTNf1oeE{M`EeG7gaPSAY$<7O#bT+F)mnHP7PzFay$>CHnBl`G
zKI|D^tD_IE`_RdUOGk|RPr3ZNvkz04M<2TQ(A9@-K6LkCv=49l(8Gr}d>G<`#fLY2
z#wDsfedr~mPx}-)d;8GOhyHPiU|$9ouL0tu&LANJO*tilSw0W!Bvv2Ne8~2}?nAn$
zWtgF8BvZJ}hb%K}+%f|W^<jh$DXVG^Gxgu{VYu-BbVm9xN+j{5jxjYS`|yqr@A@#-
zhjAkOP;k5t?+ckA_?{r+qQMV@$L&ls<&#WdT>cSrkuR0cbRi!LPV-^+!$b<Xf|OG<
zpZf5b4<~*2!-ttZ%<|!&55M{_+lM)9Z$9kxVXhCK`>>OZwrQJrKFs&wdmq;Lu)v37
zy{rp;_(BLjuW$d*`lSzF`LNsv@<oD+*>Z#|6{LI_n|hy2k`*HPM(}IXcO`!Xgs(Ow
z<?GqL75<$mc}K0l;6Jd<i)5|fI>Gg(&ITVgntT&`mdQ5@iKljp4_i(7HXnXA`F0^Y
ze8%@IMzo8W<vn78djuypG_FA9Z`nT9Q9|tl>^MR?KCs9CgPnP5Ipo7(AAa-UcOQ<h
z7jrJRob{N`ScZL6oPGCOD4~;h+=mnYBaADY^5IV(oIbdGIPJq3A1?cFMI!pkhx0yM
z@Zqcv=h%bfKk%A+FTRWY&E6zxJT&GabCEZ*-OM&j*x(2Dt3L4TWpb`tbNH|+Unajz
zFu0rj%TYbxL(pe@Ur=Z{pUvZg*9V^ues=to*~=t%B;y{~xe7hRe)_jn^&!k4mQ+3w
zA!~;w{Pe(Hyk3gV2Fc+ufRX`R^Wh&K6hAzET=(GyOWSXJ?Yim1Ee=h7H1gxN4|jYh
z>qj|1?)q@gXMDQK?Z<r|9teLX_|S(ZLLLb|7L4x>qyAI+%8t~3eR%Fe4!>c9PcA=l
z3g>n+I^#Nd{K)G^K9LvnqmUo@P5lBws8-mIB7PM6pRf#G)c+!u;(oj&UL{QZl0r%e
zQnR!lWlT<MFZ)s6k7|BY7vU>{@S}ns34T=c8{g@;Ly*X)k{^kpkYrj&7Lww}t3u*?
z2`4^FtSrtdepEFzbIGQ~8j{ZXe!S*KO+RXhFSjn%6;j)eI;K81Io30Iyl@(r%8mVK
z;>Y`beBeh@KbrY5*pDH8r25g^kM4f-5X}~TwDqH%@RowD1Y7&jM#!RK#+S$T!e95J
zlaLO6bQBV=m(Iew3R1a?>DA4Y#MR#Lqqj)jH03>o^zy&hU)jfxzJByGeFyr{-;V)i
zt;I7)`-4P*HZ6Ww{TSiLNRg!ZVe=zPc)DPQV5Vt5Tb#oLX~*uzP?KMg{nT%XbGR8J
zbw-Kg9Y02!nr{mkBgjg5*N?Hn$N4eA)ERGDc+ZqD@gMpz(U0YRtdLGL$&VR+d?E^y
z{g~p%R6jlv=d^gJ{|U>KOcy6}{iz?H`SFDxU-~iAk6C`q7q8iV%n>qAaIPPp3t`xJ
z`7;f1vcQxt6hiqTQ?k^L#U@|E@{|Ti3(NfY%9QgX^4ET>^y3FV){1bIAKwaDZR&jE
zf3Z)TVZRgM_kOGq60gT~!hiH*vyk<EY!I?haFbv><v*Exn~*K+ZbIVyh&nX5-H#o9
z?DS)oAE*5I(~sSL>=Cu2g1`82Pzd$+`ms;=e!&B#Jl^1c73U$r!+snQ5^o;I{P<0r
zzYDT3j|({=c+!tQOnE$yR5<O&1wa1w<BWLyC3sfwoFLP4-v44d|3yD8`Qh}#<;P{y
zH*V?*+ptI+rku6lHaR2WuuM&_A3i_+W#Rkb_aorP0}cW*BN5~n?#B&3Ld3gvK4Bpd
zLDdh<lt=y0O&$|+&5wWl#!rl+bkf#>NjLqt<;NWk_#FSmeteFF5fzi)se2;4FUX&>
z|7Lq0isX?WkA*xDWT>ZpJQL2Vf$7W<K+b@X?1F;11oH=wTS%S&@&=Gk_@TEea-M|$
zKkwyCEf4_j0c5BGg_C(PdZ7Rc2T&w{qN4d;c4qMaiUoM?w{_`^OyWxc<3li4I~Phx
zEfqlN0GbETB7iahlntPA0967g7r@H_<789>P(FZH0!R!XDS!$A1V+@W7{Ka88%csV
z&z`7LNhB1~Eak}}KX)uCMF=IY3aK%<4sD)%V6Pf5eoy(-7E&#M>OyLm^4Ema44{@N
zx&1V;j_|sI^#tn&&_GDT0GbMEBuLAR188FMVb2mNX%;}LNKzVC$j@tk185b%n*sC;
zpmhLk0(d=uP64zH7)u~J2Ef%a?S#|WUPuQ)E|%`lD8>E2&OJe$1Lz(=j{rFT)<v*u
z0NsReGY*BExq2gDOldxxo5m02tMVI*KYImW3m_|i-U0NHYU(RG=>hZ;Xa4{O1TauI
zYnGc9iGu<dERrFn+#<vpK$<CO@=Icdn93B4FUH6Yz#hPefN>EC*IEn>fLE3b3mEGz
zo)%4dD}dnv<2I1^R?|C0lST$GDuB@eW0T<9qQ*-=$R8I?Vvu)P2mySj<9i+B0vI2_
z`Uo~eFd=~V0;n27wUF`3{63pp0KW(D0W+1q*@uD?1DF)R<N&4w@Cj2Gz|;Uf3Se3Q
zy9Q_EFP2h&tZhNF?2iMuRWpl{=>g0LfY-=+nq(y3w5=MP@mT;f16UNmVz$+U+Oq=q
zJb-z^X9qARfT7Q`9^bLe6$$x#Av_xE%K#P#Unuy6AT8W|U?*-53|bPv(f|$za3p|b
z0els}jsSKBuv|3PFc|@?U<>)$`gH&+MYu{bwOa6IkF;-ud@J~!AT$1b;Kh6WT9IrD
z;71|rSZ=1y1|b^-3qQ1P4&bK%wuy6#;8sDtBhz3Ue-_DhNk*Nc7Rq-C-xt9C0CoqA
z-SK?6-ou&|&Aoz~iyF5w9S~0PtB`|&akGbnTP`6-VrH!a=|=;&laz5xFs7tYay)<&
z0eFM(1#vQfKUkqbOb+5y0DrQ<1P}_~G~0GU?W+Me0yra_&cB454d9%R^MV&l-@k=i
z6ucC`Wg%Bg-@)4wodLKQue9^|YLYtuk8njWzNTnu9^>8?UjTj)mV0Oq2;opnd05J)
zQxKhlhy<Vppm8(^pnlLOD?NZ12fZN52XReGuV4^`g7_zZ>jB&d;HC(lv1JN*EXbB~
zn}s8m?*?#B$bG?w0Xz^w<I6YO*a9C(kaGds6OlhPeP7O>@UM714<JVnIVC;0f=2UZ
zC}Qp)@&u7Lh<rg5_#b)xAgUm%;X^y4pc?HI4x&g9<$}iH1Du*G8bm4Ttg#deqPUQk
z1WN=_)S5+kNpV)l&WO+Bl@6keNXiO!duXSerfM&?z7j-*AgTpXJ&1&$aR4CaDk}@A
z7(}HYa<pxbD9$9o<RDUnycz_AFo@+@a@t8-JZzPqF$-FinUa~$8bNS2re+YeguE7a
zHcGA?MAPL~PI&S#Op-d{tQ$l<AzPx!6mq#pgCI9|pivML(y|%{(UQT1HxX<aL^C1u
zO%>8Sh!#SaK?++-nYR~gBiL4u1=~)@pLMgzI|R|ul)ujA(KdrZHmxo}yb;8kL39nG
zTkypjZucO11YdlMp$;2i&mejQkr{+7X#67d4#E<IHHbbz^bMk45dB3yB!~e)3=|&U
z_%<kr!Qz~=E}H@Qc*+>tC&Rf?(?m`l-(!+4&Wxb3m5)Nkn-#?HAVvg{9W?%0*n=1<
zWLOYy3E`gyJ`K7XFWMu67!|~rAl_j`k8U(N2u8tIetNwf#QlGb1&Z$mF*e8(hOO@f
zF)oPlEJm>tU$010ablpz8RUZ?UOAQaVGt8VlJ(G-d6*K!)F5^Ru{(&5Xme(pSwYMW
z;$tbmY2@oI(}S21G<K=bm(M5h%nE)M#7r~qTy1C@-Dpk_^MaVq;vL;+uHfgQK<9!W
z76!3Chz*P@U+Nb@d=~_7m-sS>MIu=&xI%DA5KDtt7UYSP#`;_8FK6?X>rIJq^0jEL
z6kH{^TJRgeZw23PlIMFNYXpA~q_wp|)&()FTne3hHi~4c;3mNzgV-$OCqe3LVbRH*
zP1}OlCx_nu9K?3<-66PBFs`$Q6%@qjAkGA_m-;~*58^}+`=$JU4dPG`2h7?zC?x)8
z^|0{Yf;eLO9u;ydh{U!=3*qy-NO-CP{|uZA;tvk~L0lY^hyM`b{}cY?_|qbFVPWIn
z!e8v>L0kypZzkaOi#eZjV&S}?-XZg15SN5I*lvTk!j@@%AG|8^F%RvW6ym>DXArKS
z@%Pmogc8KI&Y9bWX3|OG5hs)9mr9QWp#~8UKJt<^7(^(DR9TE2W}1s<@}H6xL^Ozp
zK|CUUTU!qz#=)N*WJCTLEh_#K#Py&t(R3?_8$sM;bKRCbU$vA~tZWr?9vWAe-45bT
z(AXJzm%Ss12jma!_XN8hNI&q<e(s^&a=#Y;-ai&K{tgxn;Ykor#rZ6Ve}&Kjw=O<s
zGYc8ka)yvk2zjm$atqHRm{%~qT`|A#0)hnv3ke=CZfs^O5<<}siiJ=-gv1bjdDHq*
z2qi*B>2W1|$&fJwl@lZ>6+&r~mkFV)$+=bVW#Q#RcqN1i!Yc{B!Y#ldR22TiZv3q^
z4Bkj&)Jc+zWWkgWUKIkt%7WCX62it;jrWD>A=C)r>o8V^@mdHqL$HKk4WU*DwL|C-
zLdOv5gitqx)DW77P%nh~Av6jZE1epIFr`-}7Y~rLY#WA*KOXUQGL1uM5<<&AvzrPw
z6Qr}+=oH?D(;|dcA+!$R@w3F1A(W|VtMxERe_-6|MGI}jPTLUL3285wG9Zm!uZPen
zgf~KXQ-oaSKw;+)x`fa*gum8Xc!D}5-9pINYv~?B4<W0sSm{(B+Bt~z453#Dy+h~|
zLSOz>mIA5!a$2>^RyH<<?H|J65Qc;>AcTP-<3bbOjWtN3<CO%AajKld@XxM9DyM~z
z9>UQOjxnMTGDG+xgfBy|Q9p$DL--(s>=5iBydA=r5Qc^@EQC=Zj1GYde%=aUL<lQm
zN#w&t(se)@FH9N9R#zmGgt_KIBSyqETJMDLZpc`7G(ie~tR#sm)5eK#ya?lU@m|Qd
zm*K!1OVt8NABHe7giqK`LYO2$J`Q182$NZN%)1mIi+yScAN`MoFD6&ywF?WkB~F(D
zoFT~Dls*e#W(c2$FfW8zVvQE&gfLq;uR~%|=Z3IzSOOEkyO0X6w6Kcjhp<2t7D~eU
zAI?p+K?$}+AuJBz%#_T-AuI`DX$X5m#)6+^A$%3WrVxG%86*F4wojH)2rHOK8L>Ic
zt_oo_OIXHaex&$@c?sbMQTR55?@Z0_h0w@aQ?g#jI>Gp*NE?K2l(=Yra|l0$u*cNj
z62cDQTLrfX{%rbgH$ySt&JcEqe79iy!lqw@bFg9>_Jy!NgaaWQl+rjP1^#R3#f2BF
zg+uRVvShdphx?<Cgs^Zx>gUO6zlHESyIvSA!Z;qn3HHG->W6VMgg-*46h>m0$5-M{
zS_|QR2&Y-3AzTUJDtiPAJcPd`I@)L1o|7g`eqLg~U{?A?Nya5{UKWh&J3?@V5D7sI
z!4-l#grI3np()Yy2zmwMEs$aT;tWWI(#a<zlCUY!LWr7N7q5RpxGp3ncukO{aYG0#
z+!b;&gj+&x3*Iq(sTq&`K?n~+C>TbeFdlJ`k*wtp<4Fil*|WmN*v03W1k54Me}z9c
z(?j2!BF`mA%X!RDdBezO3aQ5WDiD5gT7Kd1i{tUjhfySqqG1#h%~FEJ!+0r-62eOg
zGWdUKCMhk#GJ<8pC@17)Q!}2mSHh?uk_1y;(TtrfFe&_^M<j=l5;i)^t6@|V0>R3H
zlvfc_HT>eARdsRJ5PVIrX4v@mRZDnnL58X$q;42bAKK|;zuRlcY!F7nFdBu?IE*G?
zGz}ZO{<lVwK0A?Cxq1pe9yJT&?PObO*f<X%^IlSkud@A9GWpZfGK}_NbO^&gFtt?}
zt;0C9x^|neagbVD!FFMMcQ2jKsVr;9FkTPi-7v<6(J741VWfqT9yT`atu30=C5*1Z
zyM@s`j2>ZQ2P?ha2;<E#`i0RyjGm%EVQ(S5;!fEW*e8s>;+(PG*f_~&fH;Q;4ip?D
zI5>=HyI<&7!mx^v`rOo6_K`h9oFfD?!>|d-3L{&HU2vG-(C~{LuWyNy+ZBhirapgR
zd87zOg)v&l+k#^R-w|Yt%Uo&W!p2@jZqEHIjPYSi2;)7GObTN%TY{<i0Si<3L{q}e
zq*H`XGbK}5v%)_X{BMuy^e|?G@rejOWwFct**MM&V^$cm#p_GKIbqBd@_85wgv=9U
zYUc}CFPnT9#)X31-nfV@P52VQufkXwS708)V1YCEa#OM*jCcvG3S%{g!3Y{e@J$%s
zvUjstvcZJ$eHe}~oMEg9<A*S|gt0Yjyw0x;V}lU#bwbvMF-1<{+Ze{CFn(k!`og-I
z&2^A<!7}5;_NOo=ZM2cs4cpe1ux<-uXBfM}_&JR2VdLPwd*^IBOq*}<2)Hozgz<M6
z7wH?u-Y|}aaV(5|bY8~6u(1+joMPJ_#sT4U?&lHECO;(Pa2Q8S2}AuR{0wV0jNkba
z5XK3SoEAJO_=n&rLE8LN2-o4n$$yfwVVo1M^QPv7FycCw!nhp9l`yU{wQY?%GWald
zo>OfUovg=jh2fUWUJpYF!^4p$j9?gEDKSn{%ySu=cYN&8B3XCSSeO(N9tlGg5@yjA
zOla^yMJ<dd%i&b5f5OniMnu=b#-v0{I18T=mOR&%&`8BX2{*#H88)U<ZiVrX1A7>^
z#d#-;yBrLK^N|1eT*`fMJ`jvAlzJRSmz*i|t^3HBS9uo3zhM-Q;H3zja~O<(*O3>F
zAZG-tU&;zSNX{2Qt_alT8Mz}U*WQ?F$P+={2wbJIx;(NI^G8r1g8MBp3P$ks^$e0i
z;v`|R&o|8|5<$@jhAgs9Yno9kVoVC{ZJJRcf|3!WMDS_^r6MRDLB$9vMNlRJEK4gF
z!OIbp6;5aU4q4?RctxCJyBIgQSBT(zYDPlDnAGJuu5mrGdHYG)!35r;kr+Y2ZHdRT
zZAlTV>upOGY;z@@nMK5C|J5QG{>WZguu23~<7AD6!s-#!h!~CYwFqhop*}aW)QT9h
zbClN>VI9G`g7pNc(=dWY5quQE#}PD+ph*OSnd=CeM$jyR9+K452v>vH+C<Pcg60vl
zh@fQzld5I4iWtY0$LHBvN5C9$8g1Gmd%FnQN6;aHjuGQ#_Hiw<iI<-xYlAXgkDzk|
zT_X7Ek-bv{2VcsfSJw#sNX_aV!9~SJ(oLMq!l7Mh>oPLli13ne^o($Ux~*RX{UhiV
zLGK9qM2uOln_1a?#f#gc$axs%fCvUgFerj&6SCJ;&#KoanTMZKlU|fqBCtmA7E6x_
zmhxdl=@IOGWdGq^W2;(*ly;_|ErKi|*@AXK>JN=zm~dkrj|&|m#&MeCA{ZaR$OuM7
zFgk*_BX~#Tx#SehG5^D<{B8teMZz;SJ-w1AMDSh&bH22_AHmro+3fr5SscwM`9S0!
zMlewbC6k0qj$n!@nacKX#YQi-t7+^D5zJ=!+-^EOf(wuAGa~pTf=?s(Oq{$XgTk4@
zk4(!ZpTh!_ivB)=&m))@!O{qpvC<=05W(UImPD{Hf-fRQ|6RmFqrpzb@<m-b<L<+$
z<g2V%iykHCdTex0-X_CV_f-U6N3fEOL>e0<D}<DvnY}6k&pX-QMDQ&;EEN`6UwLfj
ziaYK?8ZKLqzKdW)jST*mSi@d9rOgj)pG&N3*(oAmHSw;QPGMV{LD?H4*c8Ea4L3CW
z7{TTU9;kSz;-?6<u$8K4rDAIY+c*fQcv;2I5p0j(Oay;Lj0wFRtc96v4h!EI!7d@Y
z1@}bo3tL6RnB3q)<$c2Uo00=;y~2MLJY>pu+Y^pN_;WVssNgZd-voabJT7=b@TA}$
zf~N%k6g(|RBTXOM&qi=A0!IW+N!WS8%Yqjo_?x{Zf=l9LBIDEb@o$<}M0iz@a#sXy
zj*u#HsZdz{5&XlV6JM`jECOEy{s;mQ<Ev<d<7Wgx@d^pjeppBunefzv$775N*CYSG
zO8=U07Vi!5x)s6g2v)pZ@n!_^Nlse36Tv;!uPEF#<qyP3-zO|m;g19#3-*_t-A{!-
zi{M`&&m+j88WqZK&BXY0Ty7P4RFn~UUKRON6cnCc1?S%i2&Zy9G5c~S6;e@H#lZw?
z5f#P6x2Rxg`7%;m_)98Es3;ki3(`U<A?Leha=SO3e9DT%IjT{46|bmhBF+jb5`<J%
zQBeprp`wzCL~$mmc-53At4I;v^|9TNFY~Vg##b0laqwR~Nfi}URbw)$nu_WwYLKg_
zuNr6i@u?}KwqPwm2B{;Yu3$aE8$+yd{RS!;ilmVsg^gA8yFG}csfuQjj8qlbiPjdX
zG4Ih_#f3R(AN`fag>5`Rw6%&hD!x~-Mnzi{?Np3YF<wP`6&+OARAi~>sN!`MgH;Ss
z(Md&TR)LBhD!QoXs)BQ0-B_@4OcQyW5Z_Soriy_o2C3*NYX9l<Qqfx^)bAstuV6pH
z{wf9t`A%l?|1-$eXi;HRk*R{mB*x`wD$*s78LBZFP*|yp@yU2s$U>cL6?PRPRg6+G
zR5hm4hl}N5D&7)8N!$*Dj1UD%YSy%kRxw7!J1X9mnqp;fVs_|bI}=RJcU3IynKD-5
zo&MN9LB)G2=BoId5)~h)n5JU7iVsyxRPm7tzK%^&@gT`IRR!O_CacE5bnT{OPGQ=n
zWRhGjWaFuKd@uW0g*VYQptx;@iceI`R56R`WGxg<{!GRF)8J_y43d9QHf{389NL+!
z8ZUiwRIE$3B~H!cTi!es^HnTYu|mZH6$@1?VS-hBq2fywJalflmb8eWGOUXwZ9`6_
zy;t0}pty}uFH<q8S<0?Lwy#tanVQKH?QZ{;)<4DeVPV_XD!x(it%{W@R;gIcTo<=3
zzL&(rll)Q0)}vF(cWfl5(%OD+q2yR4+Yc(%syM0Q4<=8=dR810pkjlHjViWrNN3h~
z@&m_w6<bvNC{CWXx>*J9C*`Ey^n@3?0=J46=i;cpUBylnyHxC8B4@SXWZhS>Bwhu+
zn;o`H#XTG=3M4(Kn8G<UI`^sAui~(ZBVyrz;31Yw^OS?ae^tR5$lDSTCm4^aIHuyb
zisXt$)W50tUB%sJ#*`y(RwdH-2^E~9qcU|)srZw%royM<w2Ct-E~>bsf=QzCUn<T@
zBG0MFTc+X#73akn8(~bJ{w)dM4e7LbS;Z9<PLXhG@v0C9&8}>dJuD%9AG%A0TjYug
zj}ZE%yR0-t1wRW-h0bw6MUdlXnTin=s)~?weCmXm7*A71tw~r)qU`v?5?F>z0CRLr
z#Xs!S1Jdq_=5-Y}Roqf}caQakAm^MJ>bA<8eXMt+5Ezyv&n(<y`;@RQt~vQPgAqMa
z@tEyj!^aw)sCddBbPcUFJX7&6Yf3`}&FC7>IVNi;r6GrgoEmaz#)p8s8uDq#Ej*9l
z_NvCcPWd$yFrD@8B^4B2NJG!Uws>1Dtf7bqiwYJKEH234FKH-Y@?uxZmDW&3oaHs}
zF0F2!w6Yq?Y1o};W3S}%vW9tu4L+%mjnO4&sHmZ?hI$$*X-L#iT|*5GNt)3Ip`o&d
zWDO}AUgdK?i3df7UbT_1*HfX2#v6Z9s%fYy`YRvXDP(`le30~-6h&=8mPt(w3#Vk(
z(%>kb#HWraC$F!efo9C-G}q8jLn94MG&I%FSVONWwxf^jr|u_heQYOhrWrjnRggnU
z%gVMEg^jVLg@%?It~|E0tI|&Y`$=sywADB$VWft38rriwX^rKO+_r;;Q5m&63-2iS
zx?m?ke&6XL3S9-e33eCkA;_?AXn51)8}b+*XnJcHq+zgzJ{lfBw)fSH^)~$k`wI>b
z94JUHuHG4<!J@&gVPC^EK2{;G>_{X}6P_-Zp&?U)O#_#Q(JM=Y*@7Im<6(!2bC`y=
zgbWvCDEf}lFj_<N(n;eqV`l7a7SuPj#|j@KHs29^SC9*<xSG28{lxK_F<&=<<*ea-
z4c~3Z|A9zII88^d4>e2_$s|EaCTo~t@~NisG!4@=gfxUT%+T<OhV2@5X!w-1uVJ-@
zZ#2x*FiXP{4NEo5)-XrI7aG3QFjvFpY%`iM0J4Y9(=cDd0u3A-*c0Qz_!vT8Iv25<
z%xbe(GdepZCCgOgBq#YY4PS}ZD$N*~mupxlHdko)S|p{P*!gjRntV87#K-4vnQILj
zHEa@{?=`GrgB*~yM#B#p)@sH8+qtwc9&#w-!y#fldmMENB=O-OM&%zh{G?%vSlBFh
z`exEr4cj#Qtbw5>)J}<~_RBcAV%@1>7yFck3v7)V_Gmb&;TZd1#gtz(>}8!YJF%qq
z_FDF9IH2KI4Tm(OW@R4K&^?mGVQSIXOm5CSEYTg2(x8w(Jq*INH@|84UBgL@$E)JF
z=rElpgm5sYnxkdPDGh&W_)EiC&G^mYkI`w?QFhuHcHYZYJ}iGG`<xU=<5_JO9i4w`
zxTwLS!K>kthRYh98eC%e3Ihtc%Jj5OVGvqi(Xlj$ZVig0lhsE%`{ieg|Lc4bB&dNu
zntlxjZzTnUQ-|a8+E`LVgQ`K-5YwQs_l?f{BzF=UIZ2c)?U+I6yr$tFj$o^5lP}1f
zRKIZw`ArSC*!H5B6~%20cQm{nMW-n4vLjGAidUn!ui=4)(ot~J3ZI9XLGp_85xcoK
zp9oU^RLC>Ie+8d&{5Qkq6p~9YcNBR{`G@nY44W^C{30n3MZqWv2`?^K*wic%MN#3!
zOiABei46OaI7>uP(v+7HGU9oKGEtO`qVGIwIcD=)BO*R8i*I?sSE8sOBtekA6{DzR
z@<bs?g2{q;+N2<g%2CvdqJ9)xk6P9&Ppc9|)u_?4szp&QZ&KlWN!3NUMij3_(I8K1
z%_yoovDb~F_m;M`qNpvxI)Z(xR-gjM<knB@4WjsRWTR$Lq(;#&ibhf61&YfIxQnE5
z6iuSWc9N!oJh6(rdDQqM(IIN=Hfj+?%P3k!(K?EDQM6~;WLX6j+C<S-G|Bmak0TYo
zo&EQvucHL#u+}+>E>XM_#k*1CA8FSpdNILKbmQYm>mEgqDBg$~zlnT$3VBnoQl}Jt
z!Kbhfi#m#I8jPY}6#b(Z5``s-0a0UKebneouAmqgHRhiO2@V#dlZWZC^fpMdw@OK-
zMUgHfLoid2I<`0wWM8I)|A>Z0F)WI=q8J{<s3=B9jjz=sq8J%P`G-m6ry7GHCD*Fh
z-j0HUz!*W2$`6xjJ~T#>u~CeR;)AF$=2Lk*OFoKlo74%^jDn}FvbW~XXSEK`9Ffm@
zx=8AWQA}h-L@}8K8^y<>%x{bN23DLB#ndQBxJ@bl`xW_2i(*C;pD>XHY}2El8Z8q)
zjpDN?zHgI~Ju#Cumo>BzXGbw7iew!rI_6TDMHj`{DCR{mKZ+lt*c`=zC>BQXLlkRS
zfNV2SERSME6pNy8W@hlnpv6(F>72+_UQ41_8pX0Gnzhat_{9DdE2u#>`MXc-XAh@-
z&31cxP~~TXzKddI6ss8Z6FViVqxdEY+uh`KPwc&0XMD>B|7;Km@q6KG1Si}`rm1yo
zC&Mx}MsetgeSH)g*yGw|(+KTvl6a}Jg;y3vu_cOMsm7KW#kMH+MDa@$KeGw7GSa*=
zitSPCU}g`eQo>NgT~Rp3+ja|*Y_MePje@D#7sY-dSD)AqL~-kh{mOzg#zH(81+m~$
z`(gIMD1MLPc+^;QcQlHzeY1XJSrtw_#umQJ`U%(Hw#xWrn(YMp>9CAHqBs@BNl5_H
z!0GGh{j&ay;&c=jrrF53ns>k|+Znd!RW`2XJr~7!j*wA2ph6UXGu|k!N{_fm%&=aL
z;*vPoHIh3SU+%*E<HtH;i;CiA6s{=TQN*IS7KIXpCu+P%`lIm1$&^f=kQ?`s3T!vN
z@dZqIFp7}yuqlZ|p$gXoqo!OJa(H|8KSHhx{v0v>yYk_mSia)j;+QXT^4n1m?{EyP
zkV4X@r}ZAw)5UmUd>F+eX0SzS1s#v0c)~`m8{^MY89;LB$gSg96#qu?Jc=AT7PhFE
zQ#XdD_)t@2kEKbz)T8;67$lEwELS7RtK-Mv2`6(T(<{G@0%EYBj*>zO=_stDi13$m
zqi-@uQE?X2QCtXzG79;W(6LKKyiy`BEm%fJSsmqsmlvew%R-o{SA@hZB<QH9zgSXU
ziOE}4J5fgxQ&K#olsuerd{qZ@^wZH_M`ayVbTrk`Oh;ASnD?%s<2B0pE1;vg5c2Mw
zlWXeWoOxXx^>ow{o?bSqwvaly@i~CL{3ugjM*|6kr^Z*FhNgu^IvVT7wNOn&GPG+3
z&8F&TuA`HV&N^C%yseIQI$AO%I{JKJ<J>!E*IVmoqZ`*zt>0uLwrAq=H|wAqABlLM
zHF-xJuQNNwN^Ikyyo<!uT}KZgU3GL5Vw{{-y4jhB$#3X*Q%6tTxKp0pWb-~t$Jv%%
zI(qBqP}jITx7kyB9~R3~dta(OwUZ3cF;K^QI^NeYNXK9uZ%ays=&<M*rsFLgR>q<u
zOY)MgBSSZKzT0&CUM(wA$H*MU;dL2L?HBrHecn5nJey5R$Iy70EU}L1ZU}?f**$M(
z4c9SB<Rf%Ev?Pzzk@vB!{c3BE(`lobq}y3sVNM*Q;~gDqOJu#PW4vz6c#qX_^So`+
zQ~Nm9%Ts&5p&9r3WKYmRWSO(LKF~2+#~d9W>X;}|Ow#eGj?Z*V)-fR4*nd4m$5bg{
z7UoAnKGrc!$aJ=Fmu-fQPsGVfQGah}oY*!~$Hu329#X{F^;tB2pgx~tPwjJce9naF
zSfOK{j`{2YI+n0m`mGCeY<ea0OC6V=+864$@znkW<wH_)KC_cA((&_0X`H$rQ^LAb
zXMapzrX%h}$yYkcJhM|+EIs3E9jkP#)<M2f$01i5$v4~z(Ifj?{sw(%UG&s8?S_pX
z%gER0_(4bh8z^uCYuSKxjJbw)u3^274Q#zJG>l;*6DC=x7sHQidpg`Y6dgb5*rMaG
zjw3p@>e!}ZkB(oMP8}gvdb<ObT{^b2e11vaA-GepiN{LG?%b)nb-3<X+WOM>>e#2_
zS0+_Au2A34yzjLfU<+Ap*-<F<Ad5QFx|+AQRI+Y3Qh~x;`_iXaQ;+I6rsIN+zjge^
zMy2CV9jA31*TJj9|6nn`mUcq;Np@0iI)z*ESx<?)WiBgyTjfqYqvNbZ^cQ<s?o>WM
z&$cj%b0R!1SmT-fqK->Ca=c%`!59ZvFN^Y39alJF@WkNM)PE8ZiRF%`xi?vy4Ar87
zOGn=UspnUud31OgHin!r_;mPnJYXBv5#WfVL)D?NxXcz35fT>ssa}Ooc?ZP#<fsl^
z$8{D9d+16_OvgVuN+l(J*3Wj0WtcCOB%GMoL9yP{af@ktY`Lf7wvIbG?&>I7+8QZi
z?QBh5zT84iW$%5<eH|rq3m-<omidU|zqIy4)e`A^qT?w?evt%AW;_@2ui(<wi4_Z`
z7QdXHD~8-Ll#Aiz81lrBH-^G76p7)@kqPx?S@Ok@KZc5(5(~r-wx$-0q17{c%V(BZ
z6|IG0_^xus%bKNV48>w75ktwC(b0+vz9d-SYF4LjEPqa^$m}z^QZbZ{p^Q9bV@4tH
z`Q@){;;t)M<zsjy2E<S~h6*tx#84@Q#28QAw5};&ttbYW{r3l?GM1zmdbq7AG4vT#
zAz8dgvd<^K8biNJX-~IUs>Dz=hFUSyj-gr%)nlj;!)q~2e?5`G>&;DTc*Gz-j7+E*
z<H2!O@&o76W}Hmi(au&!jMo*s``j{dgpGw+KL%@)JS2@`XdJ`k7_P+7B!;Fjd>O-{
z7@Eb98bf9bwiuen&?1I6Sd1~WWTC~-HimXFe3E57G%8_2dP?gU+Qcv>CGny+{r<tk
z_AzvzKG$=`(2=3M)=n{Wj^TCTJT;dR`gVz-YYdHkvXHk($hciGk>~E7`qk1shCeb=
zdc+VZU~M$e+B1e;G4yA#h|S(H49k_;k7Xs!zJdn_r;QtJoXUHARKma*1~GRrq>0zy
z7>2~K`byfTY3(1Of`w^omAdIb1sb7#I*lK%&o7S|F)ZwD<<nwVg{&B|W0)Mnlo;%+
zvKU6k@U~bR7Q+Z34Et6L!%aTqSQ_n&l(dZ!EHgS`ObqYDFd>HbMD5)ew(UzCCwy!S
zxqdV<-qDpdo~7hUyVWf9eewD*hKVtJ5Q9=E^|kyN#7Rugku(xjOV5Z{-p!vnHHMF3
zm>a|AF?<}uv>0ZvIwbhPd>PE(bT<Cc39g&$N?2bxd1ef=V)!hEl%Fho#xG9m{F7xi
zTi4i>M)lIF%uAaiVM*r2Fkg6T?u>?B>jKHkLT15Z-5#*oD_XyZ;od$AOK))uOJdl{
zOvSJ?hGpzQF?`SFkvsLP7*@pabqtng_T@3`-<_Ua(z=qpV6J5~+uO?-8FeyNF;gY2
zzwJ-^MkL>|Ff*;qQZk5ZV)!A3O&r)`Sj*`0q@Ep;x;}<=F_2vRC7rnSO!kHt&g4nm
z7(<RV7Lv^|W87oxKS>(uCM1$?5#H=<*3U6)kKy+ij>oVghMh6|8pEL&cEzxpDJ14j
zt^KQIPYl1rus4R~1v1VCEfh|#m$;7sKThLQL4G3+uxsbC9*h}3A|!_;>@mS3f=6R0
zKQry;MQQz8rA|yt{4IvJ_N4zd*m@#{lT33Af3d{2TK<S(&1=c0n6JddOYf!p8N;YM
zmLA_(PP1P;ux#Czel~_@x6;qYaDmM)%X*H3z@hYF%hD=VPySmZGg{dwxyUwlFZ~jm
z#KZI-f3#eU!NIZO8fssIGX_@-|Hkk<_J2%$2Y6J)_ckP<gQ#?qxJi5gK?DJ5D<T$(
z0wPt)ZZ;c|MJXZ{RK$WH#foC3*lD74q<2LSL}`kMB8Uodx9@Gccj0^I#QlB$=b7g`
z@0>Z)&zw7V=FVK4qDEar_#z?~@%u%brVZo}qyB6z{^KJ4yomSqc&^;xJHx))TzvK-
zzAP;YZS!>R>OLnyEYd$0ah?&oxHXRVuI>v`i;EZWFGtD-A2}@BvyHq%DtUt<Ku+i)
zDiVoaMC>9G?9GdaUsR9Lx~n}SZz?93vA58;2=gNBi%7Cw>GGYQsOOzUvtxTcEO4bR
z!nueaxA@X5e}2it&7S4;y#qe=ki+M1B@LA|G}O>YLzaeY4RthJp&>^@6%92t)Y5R9
z-&<9~`Qh&B8mftRTo*T)<kS#;<?Y3bhI?<EP{e#|YlxM4nNeL0S8BLgLp=>wY1lBO
z_~afJpYoJ>VRP=|1+MxU{&kl&(D3X<_4I#Zlkc-{JdHIp(cschpy3(~xf=NR&eM1~
zhEJ7Q^SoH#=UgIR!?hY1g)Y3wSE%vUDKyj2T*C`ls$g{2N!g&GsfNbY-0QC{A-!Hh
z3r$(q@dte^HGEgo-Aco&*ZK)=(6C~kN{#f1)t)vQZqm?4LthPTHMG-ki-xWmo==yz
z*U*L8x!pI5mz)j)I%?=7pmT=L2?Ix*TSK(6_vB*Fts1&%=%JyfM88c_qp!OL$}qI|
ztm4}>+@ax44a9c|<=7;iw$d}Bio2JFIs1IQHSBIvLhs$;CFdRiH7a@gv1%HMHTX32
z*KnVP5gJBn7@%RGhGCi-rypc{2Wc3hfncyug3w;qP!0Esz*~EK9DN*m6do=d4qoeh
zkB6->v~=qaKCcFP>C)SLB^vx10vblM%W_?%8p<@3ORQ0vnhm~_E`RVo@49sP?9IN*
z|9BqIuxVQHgBr#N_$1psR>L^9!zJHC8lK+b8_yn}Tl|&ee#h&@<a78>)bNOgQ$hR|
z#G@J>({Pzlf_PlRB#u*Nq~Qq-Pik1ttTjBPVX}tzHOyn08m4HNt>GmN&rsPkOxN(D
zhUe%V;Gar`(bRJB^Fp~`%atW=%uQp;n>^J%_i%xiYuYmy+Q>Ug!%R(W<Z;=Yl%Mp^
zDl2|j!z&u*YIuu^q~SI81vOJsr#zS}Q+r+FGOsr^<jdMM)9120Q+Qj$I~v~Az@&P2
zD`K)dJ3#uLrWPu>UC7ss`5G2zSgK)}hK1}e4IgRvSi^@R^P!w&;MTx(v$}tx;ZqHZ
zG%S{&wf_`+CV<&7H7;T^<t4&-^j9zO=Ngu?wKc5K@P&piH5^F0R&o@G45Lis9>J{c
z6lO(MX=*=|OW$j$QL=NvP1rxG6|56J8)}1wjT*kyu#Y{fVY7yv8g^;eqG78fxINQ!
z+r-Q2ug)vlLCsv{s@NadtznObuQhxljo-Sq+VNa6wup_u<1@s2B_jXwxt}AKscHC8
zI0vKw4+`dXDh0mR)Q-R*p|@5qI4nWOG#uA(M8i?3!fg4ZpAGnvhM(C-B6C70%Ttjf
zQ{#>>v*s5Lr!=)QWo!6N!|xhSv*H^5((pI=)X$mS&j}?sE8tJI<Pr4`L{eg|CH_N;
zM@7wR-Q-vAc?}oXR_XG2{fp?ms6nHZW4$W7dp0gkXb5QtYlsMk%(#H4&=^hY6$NC{
z5$M7+GLj~Tr{D@1mN}`^vLL0w(bSqrTIeN?+$ny#rICWlL1YDSZxH>1$POYWh;BjL
z7DSaGss@o4M1By}f~X!u?I7v|!J9N{1W_x98-LEL8C3Twkn?G&pMdvcTp^r#LDUbT
zZV*?B_o^VS7VwHsiJeK8SHx-{sa+F9!yp<7=G_{Nga2J0)Fk-d-6p*LB{vg#Z4j;?
zZU~}P5CuULO0w4nQ53{=K_G~x!eKhhg0xu>XZ`->K^W<B0?0)x<hPInTZ%9xt6wU=
zF^JYd+$#Jw!oMkqwgMWqFKQP=`yg%>Z~mq7ytm8f7?G|+5FLfzNhmp;1#}VW4&s&!
zzpDWLB7`z5L-(LsF{8UPsLuV}9>g6%byDMlFFl-2-xWlUAbJMTD~P^9^_$KUhtNBS
zyMwqVs16SB8hq|boIa#*AK`GHf(q6zs4jnd_P(6^f*26Q%R#&n#K0g11@Tl6lY<x>
z#E>8+1eHDv4dVVFMhEdg5W|E+=7=DM3qCTxj8{{R6zmDYE1+0tnNVL4B?A0HONEXS
z%5?s?rHHg#yaA!F_feb&gBTmcxFE&^@m{cihtW<w?jJ7#ycFW0AcAB3cV1me$s4aO
zeK?4T67)zAzUTc<@+lx*hCarpfZ$0&pAcGnrMf$U#ilR^@6$o>*RIb6F(rudZ2vPs
zbu#hUpt`k;?Z!`x*z(Uy>rEB<LJ-q}m@fE5p|gURAz-FZ#+p8-m~^&yU#bY&mHTQC
zuLZF#i1kc7h&e$l3*z%2-Vlv?JBW9Jcr%E(>~!I9uyEkeRe*OzH{O?^_c$UP7u~!d
z<_EDLh=oBck|4@|5X8qpd=kWm!ud$(#uC38hJruKNK(hhBwZ|=B|?{GLaD~fgZLtd
zl|ifu;!7EBEX)cKAgIvN)j_P0vN0WU*2?fCs3`eYL2O`?2C*rqJ|N*4YPJlUw0>Xz
zW=7oO{w0VlL2M0TTM*l+fm!ZjLU#nQD~R1e>=bX)2XYy-Cy1|u*dN4qL3|^8GQSOC
zZw3$QP(;o?DzktCK^&Bz!$Ev6;0K|HgjS?U`5$Q(Bz@u|K^&D(VkScV@gRN@&d)+m
zWI`Flwe*uT3zy1&Wyh^Aqxbh9PE+SY@Q3gRM<uOg2)BiBmbw>2rw}@a(CBvexge5k
zs386d;_o2-3F3SZ365^+gWG)}h>!qoy8SEQVi1~upis*6Sy&tv9LaE^0%AeLGaMdE
z;i(@cVgz9d(-LY2)oGwRFO?6!R9<^&nG;mc9d_9@A*6%2#EuT4QV2Cds2Ng0l|!g1
zAS;Ay0Xagegus5J0A0l)`f4FmmmqSUAK|VQLhTT)2%&BWbu#>lPdb~8>u_ZVSB20(
z_*V<9FSMReMrR`b|NBq2oA4Wl__JxOkPD6)4EXO1cy0)JA>@a^PXVtD;rb9-gy0IH
zAcR6;UKauc6bWr`2u%f0zIh1E1al3aUOJxNZyCZ3A$)t>+g5^F32hz1jhR@LkE2Zp
zH-&Im{{LI?Pt|rIv=8Ctj7$gOZ~+tSD4Zi}+7e%`SxEioW<-||+#%c&QlCS2WlM$%
z2<UDV&JP`nx`)&@ZvPPO3-Kq6{KS`kV!~Y^+#SL_A+?R$LujuMdJ5nc6`8#S6L43z
zPe={AdxiE5p<}N4SgW6SAHGzsCkk%U3kHNRFa&Rizs1C$5C(^Ee+a`u7!tzJ5N2Fc
zlu8tEFKkS15kFGu)uL#4NPWNL38^D&1S3KiDI8*cyhIraPj{8F<UU5fR8Cjr9)D>F
zqeA#OgcBi@g-{;CQz1+asp&x=gvUa7JcQ99aEti?VLljAPx&!|#|j-Mbi7c;dPu;8
z5FQR;qTokDcvL`lxnAjwtBWYcAvuXf{iOwM{u9i-tNTfz1bmb{9m13l)`#$wsMa$q
za0oL)cs7LRDwHsUu6eCr3}LExsgN%Sm?m_((DyH?>myn|n?Ear*&(b7sZV)pv@Siy
zD<DF6IfPe2c$HPI>i#^0*Ftzbgbzdbh*?y1&k5nJ5Z(^q4e^rmrhvIZcQz<^Cxmwe
zFA(~k(0L)eFM#sr>#6;?`QokE2wND!2jcD2uRDY2J{Iq1A$%g>Q=#PlHNALI2#Z7f
zcc&^0-7*17sUZR?5?`JP{X)Q(LRSb~8Ny#PRW7STSQEn95Y~yR&#$4(0%?m^%XnYM
zh7dM}@IwechEQ*@hf|strxtGtVKb{QGn_3UYz<+Xc()7vM(7TqJ44tdfWo^4><Qs(
z0lp2zWbVy`ejCER5cY@gU54|02nPfo6#CUAbx#7_p$wDdq;4E$ugSPL8p3e_$At1J
zz#&8TlXy8R_$7psA)KeCg}@i9Uuow<I1|FD5Pl<G(EWFgi2I9A3+BrLF+We@Ok-AF
z(OHgY4urhc=h$un_#qJA@6P0w{w>~rXb+p0QsCbZE{1R^gv-L$LWqVC3n9qSEu65>
zFE18E1TYGZsK-M{gkT7VB{_1boNuOjNWGu(TQV~vX$i1HNM<-G0S@hdhGR7>suV`$
zuqthpFtP;jOfJ3IVdR8S`%($tzeu~u*QZrQfbUZ^!l)U>n^DY-q87!%=omq#2<n7!
zMHoxNSQbXzFs=+^a2P|v{6-yDhtVR8mSNNjqkb6IhT#gMK^P4s&8B}BG!oDxjBCPZ
z%mnW*{yMLeG*|d}VdRIg>21}>bbBt9D7wm35Jq7b&BOR}qQ5AN>%u@7O_|*#7hheU
zj;a^fW)v9Ze_!yT+)`o+UoTPkK6^u$U#FvU7+u1+F^tw>bYSjbv|-Cs@wN@4T^KhB
zKCskNwz;f*7@<q$Hw$NeKmVwXr4&oYT*RHi7<*Oei7MWk`ugdm2D-!O6-MtcZV97n
z7~DXwb-Dc3u(DCzgx)5!yU^Q(-XZi(p?3+TaE~y0W^l91<#&hGr*wV8=oeP~evi;T
ztaXEYdheC0^$+7dX*zzhHz2H5EgD=_jW#fhK`hVZa<&YcSFK}&alc584`Y}BiuuDB
zE_j5{kwQH}y+SEd9EMMDNruCvhSCfkC7>*fash!1e{>iRWblJwj1fFm=(r4jI$r_8
zm=MOpVN48TW*D==cqEKR!<ZVz3t_x^yZf;)riAfKnEw{XB;h;}MsB-e2GKnk##6#1
zo*c&0g7?4XrMK_p@@K<%KCDg~J(rPLbO7X6#GMw#i^88SGGuaFc}7?X&@tBRFkTAd
zlQ2FF<K-}33FG}R<}pebuSpqR4}*?{nIp9LayjuE95P|d70x?C$$U$|+d?Ob*t>$?
z6UvD5!&nf;!Z1DvV@*V*!vZkz4@KZ(p&tpIF3~F@QihVBaSJ$%#S&Uko+W}A#KM0b
z#_}+tVZ_4tB8)G?*cZnBFjlb3XziI@7%K(SyNYAE*xz-HYtH5JwP9=tV`~`e!dTCU
zN4;N#v5~_wj16Jz;Qhu&y}XBTbEY?GQYx&9tE#*7ow99V@HUw3lni4}757ed>j$mB
z31gRd$=O{2!uUGF>CvWWui$Spocpp1z6;|(7=MIuCX9n&e9uu3#>p@aaj=Z<a5#)3
zRC~en{z!8)uEVy&-lJh03*+aon)LEBX42z=+rC}=6YbL7etwNi<_R|4<#K-M_p5}G
zb2^Muj61%=Z(;mSvmie}CtWkP!&NB{|DAnSB>xHHJO^MH=fdh%sJ}$=Z`#1oc|003
zp;{p?&At%EzhP)$1jD$PN&oW~)bo@_y+XnXXZVpzu1FZ!IqHzqvW;c&FcRF{kDx{b
zdKd;<o~I^%X~9r4j7wo$4#Nt=4kH;>Q!j^=J?!NzovE<;SdQ0gEU*jGlK7U(<&`38
z1)xd<RkGDj6)Q)OC7f)bIYRjnI9*kdsV21cQ7`3dMo=rFF7CcAqCOq09YNy=nnZBt
zB!8U<t`JaHC^=U~a8(9h9YMVet}md0(1sB-60mPc8KYbiQI~<_MUWpsu3+Xu&b1M^
zA}C^Zox2xAP#94Y8xB%F#~Dhi>wN8AgIqQUB4{clY~iT8#G6IXT)fvu(1H<%ds{}(
zA)@{wdP4-QBDhhQ?ILI&LF)+GL~xUE7S!}oxUJwDekdlUyE&p%=#1_nPF`Qi^zZKD
z?;Jsw2zE!XCjxf_w?q(#U~~jsBe*q!z7h0`sKM2Z)r{b-2yTm@djz*LyN62dkRXOO
zOStR@^9Xtfr&k2M1@w&YXOW73w|EyMUH3$=M((TcBb>jg7O?vFM$kV3zi{po>W!c{
zf&qdDMldLX!GebfWrA9jf}t$-3Ge;F876eN&=EpM3iSx3{FrJ5KEWkIPuS|t{OE8$
zDP3s<qarvm!Cxk{TqwOiUoL+jf(Ij5$Tp8)Oax;im>t1O5sZsqd;~8>Fe8G8BA5`t
z3lV6?ybnh(k^Hhw&qeTvfJY;EC9AL`OTBYF7Qy4foFw!q_K1Kdg;IcbNllh+dRi#^
zYf1#q2!1xhnNh3Y`HcM32%Zo48F5-fU2b3bB&JJH@|R-gvWuLV5%3Q|1hXP|?TxaP
z)!Z+$JQ2)|;H?N=B~y}}BeB$pwy^8<41ObmHzS~(Iliili%u*07rh<9I}yx_V15Mm
zjP3Al1n<+^zvw;5z0=~dvb+3^YI^T3_b<qlkO|)UXBLmneHg(<BDN-ik0babg3lvZ
z9>J#(d=|k{kzYg;QP;mXqRu?h@g&_6!RadM2D4?EG?#>2T!Q{0f|XKuUO4t8EAo$L
zMFeYm`UzOyRS~SFKs7gA)sSm#1nVMLAHi1<Y>r?H%|dVgh6pxBut}0Fsa5ddS{GaL
zd7)b)*cQRg2zEuVT?BTpLuYoUK!c5CytkHsRU?O0qx(97Zz8xlih5D(jo{k|j0nsK
z_C>Hig5Nk0BKR(X1GGF5{2)sBuIV}$!S@j?n^64KFW#A^(#ap$FL|wh6#*l^^f1%O
zFFg{$Q31z<l5;%5+Y40?-OmC}2>nIqNuj&1@Sl>@YTWOi)2{e*1b;*j7tWao&PEW5
zAWVZP9A^4g1n0=PTuw(X-QN=QPXy-$ToC$iM*bodK7)f1w7j6ka)btCX|-5}AEhx_
zUY0nau7i8DeQ`qgdIZ<Sl(6rl*NVVqUqn$giev<-2r5NUIf~~-_?-yS5nPJk+97_L
z7s_9j=&wmeKaKQfMUfp<&6UGu@9#h0Rl}LNlS5i9it16+j-pOf6=`+0w?-5-qv$=M
zxR%IMtp5xCYLx<0ZPyi1)Rm;F4)ya5ltEWUag}h0s}AwkkD@_TJ^k-w*{Zr5Mv))I
zwNW&RqHz>WMDm&_a--@{52NH|;<Ds3hWgppjOB`=eH1rGQ4mF8RN2*{C|XE@*9k=w
zO{4$a4%AFIjMZGg^-=7SFHu{H_l781MR8+B=B6lG3vQF)RD2)XHi~w_;n%QCiaB<O
zg5A+om>q?7ilVcCE<!2hj^Y-<|N9R1)+o9~@#lkiw`F9yM{#=w-;oi%D~cXb^o*ic
z6tkmviLD*Q-BC=8;*lusiK0&w!=e}-Mc=4e@TVIbMZYNSjiP^sGeE$7LMwiKGBAok
z;;s1i$`HXrg))WvGm;~s7#YRrC?1Hy6NOj!ql6Ym;TPZ&%2*{#Q~o1UDx3;Tei{3P
z3L{KrSHXW!yyG%)$3!vq|HK*}#Y5tqAoO9O|BL%*6puymd=yiocwB-eNAa|PN$hI@
zPYPx3Pes*#a|r0B2=f`C6%~J0@N=1xQ|1NXOcM@^I$gXkMlnOc%qV6FsEA%smzSe>
zC5kyw^%8xuS?Q}$yq3X@FS%Y9%=a?BYri3wr@iRjisEf*U<|uscqfW?*{w0$6T^E^
zydOm*if9z`qL?4WZVr<u7DTZyid9jpj^cwTK8#{X6icJ{h~r{uwa=nh#E}xkCsBMF
zRquLQHMMK`dD=xxz=LCpCHD=k|4#KTi(+{cUvS9R_J1A)PyX^<nC{CcRz|_S-4z_{
zatq&Q{}j}?qz-YciDGROo1@qwNv(@wLlhgMSTEkMgi?%qraU~wxSKK@?(lAn@?aEp
zvdY3_cH5)aK_ei$s}<KLG8Us#nDpx?zKP=ZC{EM<NAYbGN1`~&1&3RU_C@hs6bGW%
zFE!;0FL&w>M)7?VhscSlH)5{0{5m?1;75@;OsjH9HO1ihY5{=<(~eOwC>h1cD1PEd
zyx;qC6eptp{qU6Q1EYTS7BtA`(hcQ*jpDZ`*qEo-0(IQXj+A{$`bQLJqWDMJ>a65-
zE{eaHU{vktGe^D=?;l(AcNAR4S<pr;`|w2A`6w<#@h^2LieMBWNtR+-rp1``%VUdp
zgmC97SD5Ae$;<YPMG=ppVGNC8NJODW`GFHIMPV?t8`>v1D019pRIRC6QP|?`mZug-
zfARTK(f>A59hT&+GPQ9NMWq<7jNz&nD#ujZ>M_)aVd73tRt(uO<it=#_zbEhpla;D
zZCP#%F_)S#m1eD&%6(F)pZmYHMXZj{D>8BG3g|9>;<!47`r>7jdJ>W8G>~M;A#NN)
zlNj2?&_0H1V#tl5MGP%t$P?lG7_N=s?h-%qb#dT0uIppq-x&%dlqnPnD2nlcs7i$l
zzo~#`LYoV%SU|4pxNeA{m2lb$y)lM10vNru0Ooa*l$n4oI8Zg|%`tR{;kFpM$Ivl`
zP9oVghR!i`iNPJiEo?(a{Q{t%Qh*Ie_oU+@tu(io)x0%^ZjxpP3B5grJ7VaOY2G^p
z_)GkEW%6Z2Ce>4N=@mn70S8O`3w-`QG4ze$)firjsd;k07)Hk6iQ(QD`p5VoJqE-u
zEQU$PyaQtx*xNri#!D)A%MEzFEq^nyr;69#$4@$x4cnyjexdmzy~(5A;W3Pesh>FT
zUjU50=xDJwruIw&F^rC(STMc57)oN`kt=_OQyRl4!DT|rg)U#`qVNMTJQ!0?>X+HG
z{rzL8Z{j6qtblPbj2G}whCe~T!!eANw~R-``)CZ0(RiNlJ}&7@VFiW%gwQ92J|&bX
zPmbZ~4DMd7;F%cCdHv4{eNO1}F-(o&g&3xZcb3rULT3nlk<B>K&scObV~DjYCYUWj
z1TRsmPkISnkz6WHAHN<`uZQzvSRkD>Cx$m-c#~Q&I*<2b%#Go#7~YPdU!}miH2X0%
zMSmxT2Py?B=IZZL{sYfE;S-R_&9a3td=SHm7*@vcVGJL|uqcMbF?=j}eag{sUab;*
z62p^!W^twBGvQZUYqKPVr5r3Vd>O+s;eRfaOB`IQSuU7y_a60fN9-Zqax8z#S{1|U
zm|9-g7Q>nt*2b`rI$0^OPUJUaVy%zis~EOip>8H8C8paH!{!(*{O~O?9PxJA8pF5M
z{RCgGE+ge_-rJelG4GBTTvgpWh0bbRx`!&q+Qsov9N)ySmu(WqgK^&EjD0aQkK_6{
z_Q&v@l&T<(12G(=t%$4V@AokriXj+7D25+m_%VjlG5it3Ve%Jr|0#x_SrRs^+;(_0
zhGQ9gTtLMIfG1)&mEr#q!^sT(mF*^1`TdsR{4Sv4e!nv@{GH*S74WCfb20oSpd#^q
z1fLgrLFm6RTokaaUy&xDBA0Lskr=ASQ6rA1@DnlU)IGs*p}awnbunTvsaNs;>Se`{
zmQY)0lEy@UlPQ0b8O4lsNtgte1yqWoawdhWIC#HeMJwgRQ6<B#Dxg{%BPRJ7S~HGX
zan-Q(<EWjHxiXGAg0IMM>IxVkml<9a$JH5rJpmQhDmI9tp?Dh!ZJd#55(lq*WOli6
z<VhFj$8oIyPNFJqB6W%P-AVykzrwhBZ7+)Bx;PL=(>R*N)f>$<hw#Ni>iW&)l>$`J
z7ICzUBM?`=Ah{uqR&k}_WpUgXN9#E5iK9;(ZQ{5oj@#q7BaXIlw2PxloVR(SeH>h0
zqU$W+<~TZJI345Yl)?Pd4Q1%PMK~2+a=Nl@<LDO0Z5he#0+=!#1@4UFE&&xu^$^@k
zXiuRPV!Z|5or%>~yo2Ky5=Xx{?iFu;q4)itQVob>pfCpstw?HU9QViJiNh<B!{Qho
z2MbKcGK>&O7Hp&da*E^diR7qE?hGx7!=I5X%}A0@d9I9=OTVy@N5|Dx`0|H~|9H4~
zOdMn5m=VWJVUCMqQXEeR9?u?$V?rDci}#T@9u+V#jzN|DyD9}9i{o)>Y*_85)B8)M
zKxu>0-9LJtl<c03<2eCO#W7jH(?X{RWqF=q)&td#1^EzsUYOJ4n99DM*`4kM0n_5(
zzn18IQ3S57;^%2@u941)V_qEd<Cq=COL4p`%EPL?5=Z$GPtEVIdo_;N;&?r-_T}Fa
zN-&2iE%?n0XRd%5=heL&Z^!XYhX1aB_k_M5$HBQ}6j%^fdq&KCA=R>Raid$^AH>zl
zZMaf^^y4@_iQ{L=FjgF&#j%09Em0Q5u_BI@aW&6h9LJJ4md3Fxu4YHe<M<+u&t>@V
zOG0iYl378&WJk#7BC9yY7kF03u_g}Q{#~hZV6AXyY}X0+cfD(U9A9zN&sX2dl3tbV
z-W12?IQG(L$FU`jt#Ry%V|N_e;@BQnOXxe|=pp|ffAfepyKX7-+9^3s-(2=;4fP1y
zBMNi$qUUQq1vn(fb|8}<QtqSikK@NU4vYMEY#-LHe!+n_9;;u#vCoIy_cTgz{J<_g
z?xkZ~QU+OLI~<AQxI{ckbsF2@n9#-JRgk+z!B6aWxhL(HI8L&~639v5*Emka5sM=p
z$8T}`9>>3NT#Vy%9Dl^|R~&y!f@k75%N}84t}f#$ee2rpbHeA$idob94@b>0@A)`5
zv*Ht$%nOn`_YSzCsIhtDh|ttCi=*C99ASz6(lM`o+<V}v(jD1;M#;}9Wa8XmOvItb
z@q%4&DGnnJlOryUbX@H+SS;RbPcjZWu70RN$8Ctud-+pwa7Ug&cQ+{F{bO`_ef*at
zmr4m#PN*IyCrbeFS1Zb@Bv3VhehJ*0P;<*_31waTCQv<r8VS@)pjHBH6KIz}?F8y1
zP?W%R30xt<jfB<}%D7i1a8&|VCs45}NKQQos-HlEj7&oTA0G2IPN0e4YlIdgkeiXo
z6Of<4wHb~pfgZKpOpvZnn7dD^(jtKy#oII^*(`zP30yDU774DJs`W{_mI>UDk!h6x
zKlZ5Lw@#pq@NW{jO1=VWpTNxt9B*BEdjcJV-$iIgp^Vr`KxfuhZf0|f_m)g(R{^)O
z(fawjC2(7Y-#wwOm0<KcgmY&Ccd=fX(0c^*6xu6+-WmSg0{F|VJ{iuFqjT9u-h2K1
z6SyydK?zjqQN#)7fCL6g&vGVT_n4QTuds`$?Sm5-l0dY3QN7B6p$U*u<%TCPB7x_V
zn3}}M1Uw16V&YX3-UNyhIH~i)e)tk7Nnl3;I}`9Hco6~SCh%4QqY@}fV0Hp8B~YF~
zAc2Pyn3%xm1Rh9WLPDLK<#ECX6BthwT2efQDm2S8R_HjP?J5Vzc}PMpY93;B=B`f3
zBMCg3z%vOvo4{l2z7AcUWNMP&;|WY+?Gor&IY41!nP=Odp2-QEspft<0bk|7xh7uX
zDT3)m@6r?36h6ngEcVP~O%s@!zzZyPRrhqZWCGI?*uKY8__2qa840vrssImW^1KEy
zPn*t4fRtx0-s`AN0=~>9O5oK5UX${?$wC(9z0S5hUd&J)lbn;l8;p|n93Njw+P0Ot
zrSt6s-bvug1Xd*QZUXNmupohj)Ib(#b1ntuCBTz11a$K=%nu}s#R)9oXiDHCHU$e`
z+5K4pGpe~i5&UTaUw3trNxDe*3>tgCd#S`-E_505J@5NmC;<g{3hxUEsx-*EQo!m2
z)+De>@Y6w0hc>RYf;S0$=VQ-0Hhbm3dZAw>ut5Mh8wJ>2H%q=bf%R=&TN3Kr)7AvG
z3D_=_d@^?>u$z6SqnD07EO`QdCGd9w-z2a%fg=eVP2k%E_DQCPh3-$_U;^I@{w{$7
z0+^SlX<?IN#fK93K{!rJ7Z3Z8|D$;O=H`EJ+DmWO7OrCnoJ!y~j%5k@DS@BaYwcVo
zs1<DXj^1B{?z*Amp{<@@1(R8)w+kiS-xD~OKvu5nbOQA9JnSC{yj(eOM(EiD{uDqy
znVnNUo)!8hf%6I6q@%5l3km#7_0~~K$HfG+1d<7)5(p*`N+6Mdp5Tuo5#hk3vEAs~
zFUMhcs%|(>R|$vAcmj=wx%>X^H4^GvkDWk^JeMih5=!Q=*10^V^Fif+lR%n}Gaaid
z2QDRWnFe1+mJS}ksidncc<P7p1B$)bx=QV%MV>mvZi2N<N~-9XKQzCpj%qqSI6ms1
z4~ogJuA_!XZX8}pZ*3iQbX=n&SH~4P>gu>k$JM$j;gyW_r8*4Ak{p_*P7>AA(NISt
z9rbmL`p(rr$2XM&bd+hVgC~Yqj3xq}Y*7+A>tiB$I`VZi)6rbVwYoac=h9Ii;P1+T
zLR}q{oBeF@bvoYM;49KGb-m}pDi3rt)j|G)eey}~KkB=ljlas%QpXKCtjd8FIubjJ
z8)Ug#>F^&aY^|dW)8FK~k+pcYn3~CCslx>84i&c3(O$<>U%T$qakGvNI@~&L(a}*?
z$GAE%XluKp8$8{!+?@q?5vrId>B{ogQ0>`W$E~_L9NkUFZ32dk&7&)Bt<GEBuHz1A
z)pvgP@(k2nl0pw1Yu{JLT}gZExLe029h-IBqoa?GXLLNPqpyyBI*MtQb==E_;${9i
zhUw_9<31e&bPUwhNzx%Yc%W>Mj={P*YD#>3hmUsbsc$_)S&@%Dl%Y+-I?r$&BUscd
zFU1;U1xD)dNV2W60$z4~B`>om+wLo2yXhFKW1NmskuT4rJW5BIWXD{(Wd#B{*f^tg
zJitnQ>*0ZVru?9!IYub$>Uegjj>mK!$yBGnCg|YZ0uu#4tb@wWlW62TqT~2>-=jjG
zo>VkR#}hhuM0ARdC#h`N>N<kS%tbK01G558i;`CaeU;;-Mm?wFc^&WRc%K?l)jd_m
zOdYdyydd6bI;QJ*QO67&m->~a&v}Nnb_H|1bUZ0PTgOY(G#ztwysYCD9k1({!=`Ac
zY|E?CYp+pB<dAr2mU<+;!EP$dBVY=oS9W&2MGe<M@7wIA=6;@hCw*5q%x>>JrSmxM
zbbO)XOC1YzEY$Itjzz4Ljt_Nwr1L)!pdG77jg)8eKhg22XxhWA6#uP1Jz1lQ7E5`S
z=vb<Qw*kB~%d<?!q^!W_I+p90aB38@<|Aor!t+dF-o%TZ6*^YxSVOJTu}b2u)?x1}
z49b(PQ*I$srduaL8+5Fv#&T$!^6uKNGOeifMjhHX^$6RdW2=tubR5vJO~-cjltkPi
zlmfeS>=d0jx6m_rpKrGe3J#Dx)aTYNf^T%}rB?HnEgh4WdG_gur#u`WlX-)Ljz>nR
zBl&0AxEhblq0B+5oQ^4<dJb_^e&hKelgp0+4(m7~;An<_j9Mi4C!s$JJ&_6hg`;4x
zntq(p@f)jP;Gluub)2RJGtkJuA3DzHFh%~Xjz4LLbcA(vKfpO*26g<U<8K}R=r}JN
zP3Q%o|FT{q)ck?&qHq|I52;E+ygUNWBm5B^QI7YWuDFE8IQ43t%fswH5A<IA#KXHp
z5;}BR(OcYfhK|C+J_3vVr6Z{$rNh-J=Sl;Pjx--P25K9)q~kJ&gMk_bDjBG3psE25
z3fiA613ARJ$|KvIZJ^>1XcghKudJBW1k;AEfXiOwSwQM_*EI09%SF3NfjS0w-t!6(
z8-LPA$-0I*9KH6ZLiWy82Cg<hdt1-I6;1v1g*FgMFHK5g15FIfH?Y9KH3o7G^fb`R
zK%Rko1N(;O+-~4n11<wM8E9*uz(ApaW(JxYC^C5SCzcI&H#IO^p8L!Z26pAUc;bFr
z7Z;D-UvHp=f!2mnr<Mk0o%Y^fpp}6ot3B_Y@xHt@m$xX~D51Nr@l&P^o9^(a!Mj{M
z^54!tdjnkzxDDJaG96jXO5W-<-5m^2d#_*U>13d@fq3IW_8@O#Xf{5N^cDl%4BTd*
ztASe$l%Dpk*zBS}NmN<&tX{6}lG>JoE*6!XI}C7^a;Jg23>>)N>mih2Z#8#s19uyE
z)WBl~?lI8Ezz72)4fW{hYhZwZfd=|9H3R*HNsDx!fOlo^a%>JVFxbFQ1NXBQVxSmz
zh{$|2U#a>qLrr2iaUCwqTE#^iO&$YY_N;+128s>%42&{R#ze|Gl^F16qSH3=8jw;p
z+6oWBr%OEL1|E>m0E;v>Z?u7}H<vtSdhQJRnAf@`p0NhTiNHj5;-13s23VL01|Bl-
zVkIxfJH;NB1Zfp{&&eYq%*p@gZm!1-OfoRrz)J?6Fz}>-DF&Vqfv1F4RB*E3r$x<}
z+Or0pGw_0eX$GFB7R~Zpvsb-kOr?(1a1$^iR+*Fk=`4eR83x|U3d|Hr&|`#qmf-kI
z54|rNc*Ve*2Id-gl}#sk%`x!L`<}C#J$<{lUN^u5X<grtAX@3=@<e!xqsG8H?5vCh
zc$Xu^!23d3PP(jRo_Pl93|FrnEZagVhJif>zBcfofsd$ulIF)kKQ-`~flmZiJZlyi
zSZrX0ftA#713R(;%MCRp<2YT)k-|dCT<&ujtv_W2zA)5dmjYiJh-3wRZ(Op990Ti^
zZ?>`zGze>GF0un0*J}+7`_^~!HZ>buZ{Wv9B^?*3&e~vLqk&BZHXGPtU?&IZ8ShpD
z+gJbt+u2!Ta;fA4_j!mZziO)jFLiWLY!@|ZOzv)p(&#0X+BYKe@7TP(2EG-%&%k#A
z_6ucuQmkQv694+*?+qL>02573{J<iKKphi@4ID9W*1(?zjv6>dyG?!WqzvzI1HXtG
z|7752cHc4&rzIz7b3XJO8JkP*NdvzcI3*+WcQ$5Kb^FS1Y>*<?!Lm-L4NN`fxo~(C
zDN{QmIW8XNK4;)B1LqA~pxXcKVO}&2f3v|Qopq<Zyz}8-0~ZaXsM`iK13?1`1G<3_
zpE6~g!t4U7^dBm_sKkm3-MYyWV=oW%ZghMr^IdE%gLZ7V+hPlkC^kiAPBUdjY~hfZ
z6fi5VBu(RQAj?FyiOV8c*+i4<KqXVzL%MzWu4z;9335zSF;UG#byM9WQ`H1*AWOw-
zOgi1-s$r@UQmnR#nkH(Q_^7{^1v_xwM}c$W@@Q|bFj3dUl_st-k#DMwzS=}RW;7xv
zSG>HrsJ@8?CK{S(l^x(a!r(oHjRZFqN@f#N-63#|cnO$Do~f>3snfjhS`#i41ttn5
zwIZQ>Yi6l<K@BCZlS;kX(bddEa}zf(5fj&&Xd#j<O=bPqzoZnVb9KtO(L`$#&zX4M
zL>m(~nHa>1n`mpIor!)-&_sJiG;zC$J4|#i(b2>$Cc2vFWa6_^KIY!VL}ycV5WQ>-
zT6?#tZ2kjZt0$nEZ=2|5;x<!VVsn0Nad!bU_<WkTJz0FGiMveRVWN7ZhtS?8m=3)?
zP4ueZWC!TIoB19rqYKn<_c77e#6vmi$-=9In9EnEeEm%f5P1sU$8Kt_3NX-AR}XP^
z!8>z?m>6new222q?0yp?OpG+au{lgQ!%fWJq?**j#UB%XR>VZH1eKT=-&CoY&ji(m
zfR6Y7kd87@ZX#f!j46Lzxa_x4d<g!X?;`zam!c1v7-Qmb6O&AgH8IY_qmt%$R>8zX
z6OWjvbk;k;1cmqiQ24NkVc7vXHsj%DE*cQtuEQ!Yug9ps+trOaPe?0GHu1EHC)vf4
zVAXw|N5<!kmO(T{IM15uYM^J>{^RlpUXb6WaClBNF^w%_;sxou^@Xaf_;mYupYKHz
zGfd2+4lM9|Se`xG#4Hx_qKA&RQBiYV5{-IUs8T8uud{YGCfS%{;tdl&S@_w)n<nN`
zVJvjA@Ro_UsoN$_nRv&<yCxQ!SYqNm6YrZ?BuV+3E6X;|M4x(v^Gz%;vCzZ^lxgn&
z#Keb`U+wu=Dphx(=OdFJqIk%GuZSi8l-ek*HzhkT{h;rS?7-ZC`Alu8iDf3fGO@wL
z=Ms07iPhATz3rBp_(H&!CQ_$Htq@AEQb4bkC7c4SF|k%+QJ&s)f|=cVQ`v1^aJ13H
zCKG#2d@DhlO>8r<-9(Q+yjx7XwWoNi&_#dxc9_^HGJ8xsw%N7I#BS-quD7_T?NsRs
zo&VazH&QC*IP{E<72HSLZsJFYyPtJ5ae(fE@1Qiu_a+)O^iqKjQH6%6xf$tU6Gu!O
zXGfSg$|8*@J|>jli|oJ~MJ@u~tW`bN|Fek`lJYM?PqMFzly0|r$#e7i;@?dCZo)KS
z(S9~ly>r^cA8dKrif;@5Ht~;%v(k5eO7wF=|B@n6*;<|VoHud7M94%~Y{I`H5EOjT
zgeKt5aca`Yi6zHr#6*+^=d?E=l0!DTVggvCxB!}K-NZb<*Dz7}jF;~B>=N5Vl9t&*
zEek0V4ol0{u#l$Z$#!2d|9h{G9V+At{&)G_$`-OLRI^asQtJcR7OGgvV&{mL7weI^
zEjv)vQtPDz>sq*i9dl}kOqXrS*w(gC$3lUHLJL<|sB59I#e02mrG=|3)VI*U0&fkv
z+QLWMeDy56THq?*<_iz-@=hM!>ci`dcrQ>x3qNHC8d<n~sGHy#3%M4qwbXq_bfN43
zX`Y4r45z`~!UZF}E=yem#Cw5?EL>-ym4zEEz(P|Ce4w<j(2P~f3G9rQH)k=fEP1@6
z>v{|Ha+QhnuWi1TOfx5NgQccJ@2~N+w$R2xdrLif+U5jqve1@^xZT8@>JYSJOK$UV
zo$6)_d~fO?l7GHgO!>|hx>)$m!T}3z3%6K!*uq2$T`k;dVT6T|7P?uu%|d?*_eleG
zx6s2vPr<iaxI;kc;LdkiAiaxrV|y9z^y?-3do1)3esA&KEwtK1^$OhA!oA`p?#C>?
z_c7KVVnYT9f3Sri0tN~lB(&bxJjxHXFigDn3ngbx$DHAUD^l=e_+u=1EfibuStzj(
zurS(!UqVN*rWZY>7EV8!&&etqlj)RMD7Vlu<)O1vK5`zg@L(o2UK_}XG3UwTkEMoK
z7%xGb20vt}1(OME>T_y!g7gs!k6Kt@VWEY`EIe*uriED+CRunwV!deLNp{vO&ohim
zj)ln<o)!+%pCU4=1EtG<S4R6e3(s5FvfuTBg{c;PksSxdCD?sIy$(#XFx^sX2$kBY
zwfY$noq)GElFqj9x`jCwUb67Ag;%K37GATkZ=vUhEce1+y~Bohnb+h_Ipn-SeH)(h
zmW8(^kvA>%D49!5XyEVJuk;-Y?^<|Y%1PngIf3^mP&qI%C%}@-6aIXmEY(9ffe$Qv
zNX4_TfuqU7#}+=fu-w8YlK7_<KBMq4)zoy0EG)LLM1nYrW(rF!ER%8)b9?2&*gR(X
zg@rFItg^6LB>5CuVX12sKbTv*lB%2b#2TxMPuEyjYhj&*cYgD7F?_uRu8lWd>R}25
z$r0|27B*S<+QK&$HnVvxY`3sO(%focn}y-BV6{_LiY7ED+-YH#h255#Z!>+qTM@Ks
z>e?fmf(BlC|7lRjqVBcuEsM>eT0^}G?HBOO*Dgoq{|9NQEF7_LRPs7xsdbMZES%}4
ztn`n<Jj@1{8$qdc$1FAdJ1$}rSY4}RYK~f_J3&pbaJP+nY@Fn{w$R8%V;iR|{AM9x
zLAUTbHQYkTLfFC|%)-LI7A{&i%K^xP#um;|X-|9ke5AquixF$O&s+GL=7rYjyl3vX
zym!Xs5s-hu!e5(R1e%nvEamC8-4&E{a-yDR;+}}`nJnKaNTU)Ivk<p1rCP~TZ3;;Z
z3#Nq{wtAznEZDU99HgCcl9syAj8*3CbNhbvPG0A6Bzl@=JmR}#;j$!N$wpOMS$n$5
z0<wf=+sMiAtJoNotL6`M)ofJH@X4%cqn3@@wz{45DjQb|s3Y_W8+8RR=t{QdVh=&j
zZ`75l^=#C);nvV0+uOj#J2b67jB043LxGF;95%6Wjg1yIT1rN_Hk#RJZX?e|zKv^z
z>9SEE;B4(&F6<QAxXuP_6xnKiOU_-p%9;x1e3(r~=9|~}A6lx^?0Q=*TvWO#i}(f`
zt!#9%(V6ufpLZk6V56gr);8MMxQWF+>uqm?>q4AMv}N6Ey4wk@cu~5UrRwZrch}zS
z<5PS2Ry6_c!m8QmX5%)tTU*yHHt*t7y1`E8G-Jrku3K$z)<F(m+&FjbZsT?vci7-1
zn`HL3ahHuAHhPi%;oa5D_1OjAo`K$;Hb}W<#aYnhgN4*0PG9>-BlKfL8+`>|H8Q8k
zi2VLG?z1u6#t0h&Yz(w9*v8o&u0izfZO2@wA*4NbspZ@uwz`scsEz%5ito2EjNn=?
z@5Cb=X~Sb<w2cRBtg7nvvPL#|Uth5epRF!}<7JFo11z!C?w((0sZeh1mD&G2yUT3^
zGWfb%T@SL6U9K_YuxH)wb)8+~Y>c<@h>b^WJY=gC$cIIKg5agH|HY^OL}Bv&Kx#GB
ziE$s36u!C3^@NQlZ6s}^q!FI7G0Vnm8<TB3ZDR_{Ec_R2JZs}Q8((Zxmf?A6Z~|6*
zs$jOspz-RNIL$`GtG&~0yvU}z-(7o)XNHZLRP`+$ItIOD<7FFB8!;QN*m%{(b{jiv
zyk_Hd8=u)&#Q8rv+U8$7@xF~WZOpZCVS^{V%JY_ux2e)QeD4USU9O9cORVqOAf-FJ
z**DL|d>bFx_}In*j**qBsXq{~&{m76tEZ|hst;|<tL^4i>?abm%B2=&nZ>8<?meD4
zH<j?d$Hg|**jQ_0iH)T;w1X}-<}w?f+gQ$~u(6VzYop2v&zCk<2*@rgrI+qT-NPFf
zIaT8=&8u0p+!Ef?xX#9U8(VDbey#W`CQ{$K(Z(`9uwE<Pz?!DijgItgvawnC72d5h
z2r|>#W~&=1S%#f9b`je+%%rH^HV)W0Xya??)_ojYFRNbu#>QUZe9NMKU-tbo#iaXf
ze7fE9ovo&<)Q8qf)%L;nHV)Z%qK12Tfx5!<2OIinA04k)JYwUhjdM2svT@ADaT~wc
z_}x}}n%i;$KiT-%#tGKt`Qno_BR7@&BA8xoC(-*Wp8|X?Z1-`cLeXsRX&YzQ$Tt3<
zlFU=9-}79qKW!Yz30%$ze0`#rk{5CUf7|#+)HrP8JiFUQP`v-zYN?#lNX^DY8sY2!
zy_`dmGfD#&&qKD_>1b3Xz(u);jh;6aa<&<_kq}Kb#Nbm=>2%@HIG6$~p*HKj*+ciz
zqxp`FG>t&=KRbVkRx}A$5|?S&lGuD*VdW&ov~X2PA}fjPByy6<5YbT3PFDO{w5o8b
zB~d+z8cEblqDd0hBvC7g+DX(;qCpaM_{E6dOIJ_86-m?;aAk&nm4K_0C~aCuu{Ko#
zqz#2hPGcr}+1E%Y`Lpv&_-c@w#HIs2UNM@VM4m_zk00Sp?<l*yN}wQ#!X$c2y^4~!
zE{UFkkwnuZZc3tU63wLKREFy%sJT!sL$yevWfC_e)vTbE(C7E~4&UIqF{z#ot&?~z
z-%r;@0Q;p~Qf)H2CAIcR+$^9&5}hP2?~(49RLiH7=`0*3+a;+?8NrxZ?pu=Rn#9U`
zOK)XU*HWBrN!*sf-IKUo@Et<$6na-Cv`11IQbu84_mX^>?A=M+lSCh>PX8qCOQLTQ
zzn16rW36YY8SK3*Mgu<qV+}~EZ(KQ>x^Z+V*Fy#+F_@g;-XTdmlEkA)3}vm87$&Jv
zeoPX>lNiD8f0FPdQJw^U2kcFvI0-+ykJ(iT_!vumNl?PBnNv!~Ur|@-P&g`yvLs&g
zmQ|Ufeyz(NWD^IdSFLhKC-Fd1{o0^ahr$O1%w6l*(Whi=662B>&mtx9a8f-==vLGz
znUGZb^>nul_D;<3xt0G|5|2w!`4pR!#1lz;b~KL*CKY>*PbRsEugv>XA~QLOcU!c3
zI*BRtW~p=H&m{4z;OB(irr%EH3rS2%qWvY@d<oN8{v>8NnCW0f5;K!{KZSWI%t~T5
z2TlqFDZG@#%SoJP36ppwiC2?Yl*D4m@wFu0VWvsEp2Qp}HVgAcQmwtenZ(>A-b&(%
z=Ki-un4t4^pVcxqGCb!!mSJ=5`$^1`Ag;19;`}5QCh<WM3xvr}K2+7Vw)-%NkAy>f
zj{l~a=lM8^Pm=hQdU(i3?`PDXDglDVfBKdru{4Qqlh~KUvLrrFVhh_piRDRrk;K|0
z)+O;}5-XBemBgJtj^aaPC5PL3^(djEcXbj3Yp4wG7SoZ#=h6BkHYBl;dd@1ZRFdAW
z)h9i?ig^<a3ma#Hho4xyTqVE<*0v<JC$Wd)C<#X2K`m-hvNMT`U#n-<iyJ(<k~IFF
z-I5W5_zlK4lI&jLFnuP=_sacAd`DGJ;#3mcbU2X2k4YS6D^&>`Oyc__4hiO9B<Ba#
zsH(f*YY!X$NRofw!-*u0CUGo@<FsZQeKh7j33!pa8)9tv^~*2R{5%(%`Xn29k!Mep
z0P$~0{GP<QB>qa`G!xn2IV&SQeWmx0B>EMXp5b_WyO?|q`9G6tHcRj~%ULDBP(H}$
z{U-_D)IGei_g_{#iD(ir8HrjF!Ax(CmqqDN5@9N2Wj8m%B2>sqUfygUPa=^-<&?7I
zdJ;wwsU#eUXtD?8<<t_dEi@_gjqS<^qy-aHO5u{=%NfpHMQXh8jXNua>=bfRsFFgX
z6dI>cHHB&^ygxL*VG1Rhx*WKA3N=!wnL@3UvTxxkf!Zl`tvB6ODb&f}D+JUPdZo~M
z?Mo<gbqe*wTVH5{{}aT4P`#>JW@(Z_t|Weq(BZ#~V!nAPtQcIHpHffTYX#F=ST#^6
zt#NY-9a1Pt;kp!%Lemu5r2gAnYbF9Wq|iL2Z2R>ov|u9q1*EKgv`nc*h9j#ytx~u#
zrIrm_r@)CizwF`#`@B&4CMMM>r!7;<Yuzq|_LADl&BcAzcqV@6>6k*N6b7U)Fon)3
z&<b@;;nozwy9>Ld;7<Mb#(E2l#(wpyg>DkPhtS(n|ILuQr*OOAJ2IR*1>BXwq$Y(l
z{?weFDfOu8CA7EDyHmJFKp&wD?VCbB!S@R7FZ8}l=mO*pN?~vc52Wy53PVyDD#aMZ
zW=UaK3L{hS2xoXo{`)YhXoPsF8+>2(3N8^^oI=N{0beGRzk%?l)QU}MhQn7*#wtsp
zTsVOYf3$$-+LnxA1yh(wqng6F6vn6UL<&!)@Q?^RlER}YOi1Bj7Ho)jVhT^o*ENqj
zYAuK<KPF<2r_`H1ztw!ZLE)qnxS&D&R0@+*cs_-xjFrNa6rRiE{)~WUS@%uF6;H;a
zzk3Pz7CEuG>ji2ByFP_!DNIjs3&Y1CQf`7XN3NA|359^Grn6IcErr+l6kuOxd0!U#
ziqKbu(k774A)i%G(K#vneQ4AhLf=ebu7J0MzAf|}q3;TPPiU{I0Y;gh!UB##2h|)b
zOyPqRwx+O6YVje5Kng1bf0V+<0zMJSLVlXUXMz_AU7X=B5wJ9cWdc6W@Rz6Xh2SrR
z{@bu46IqqQ>J&Dl)Ox}i;ja_AHU%ztmR413CUonC`Be%Z)l;vN8&lXMgXPEE!p$<`
zsF_;?a07(`+f(=^g}o`1cFNh2!p;<SNea7#?(eB=(Vi5(7BBIcA6(z2urCE81v7>H
zDSVg0nH0{Za3F<)Dg2zmi4?w1;ZO=kQaGBz4=Mb}V&s>^MtED^>U#LR=Wq(WYIu2{
z{PeD+xArYP#%APOfQ&LOO8>+GJHX3Z;<;w>3l*}9o2$^jr*JZbU#UVHeWz#=S9pFC
z+<bT8R>Mc{X*SN3Vy-{`A%M5X|Cz!$Ni&whU+hQ0p%nf};d}}jHM45qf+Y2?P_AHC
zyk}iZ;q!Nj?;2DZOyQNP0T%Vss)4XX=kSlD_yaX%E0`B)TyR3DPCfT~$>eLAm4cl@
zWd~Ufk}0H8aA@38>M=KMn46Q>!tK6Cw)!ryZAW-7r$EeC_)3oQ(%n5%?dI3n<;!;d
zv*$Su_~5JJ;Ky7SO?Pz%H5_zu(Ahyv2elkr@1TXF9!9kt)Nycy;EpxbOtr4VJ8aR&
z!IciKa&Wby>?d7)2lX<Td$r^=aMVs87i#n`J&hd{I+#4$(}ZPkz;&=(2l)=J6`Ut@
zeboS8c3ci9Kl#(*0!J;35R(=;xXu9_?5i5!4s0_AO&$DIHSmMKlxa2>Ns2AZ^|o|y
zgM$tZ_|0%D2RBNQ+6is#psk~J)!T^orc7yny+IajhPp3}%WLo8X5sVoidE<+6(?x7
z-`B-~+ra<_10CEVGPgPC?x3rKTgCg7uc(^<UG^VucW{S;9u9gk*4}n^I^f#WGbztq
z;;q;b>*b(gAM;)Zy&c?5nIYbL*gKL=A4e@S@&$pkpKw@`5pC6GYkvn$)xdoY|3#=)
zs0KM0>|l(8u?~hf80x_1pv1xFElTcpFlmWrq=R7&hD#zN$gf($*WY0+OWxEx4D~qh
zI%xe=QL&@``9cmC*8C3m6-Sw){#H{e5!u3{9Bh^~u5t$f7GC)LHsAq=^B>iWYYSWt
zN)#4*oP+TWo^|k?gNGbUaPT+_<EZsguA@FIaVI)>#KEJ29}~)5KW=?8sRx6e2eubK
zLA7C<@AEwAfL?yk^^^nBH~ghfJD4It{MXDgoYD_gTZB6f7CtZOOcly>W^zeQ@H7Y0
z9W3JYq_x~!VtvuUFYVPIc4j%4?ck(?Umd*U;AMx0(DAN=SETpfaQI6yyz1aJ2d@jK
zVm>xUFrQqUdvILLb?}yhw;h~mp{ylMD`^FIPb5EM)&kxaI!}r;U+@B<3x$5*;6ni)
z31tc&3;4vrrvj?gP{VMsgC!1sUWU&dEERsmixLa-s>i+D;R$+t@8FOFuH${_V26X9
z4pul=$!?{#_`Ta4Y<IBQ!5Rl^g+u062kQi{7y6aZ4MH~xrOYPkKn8E&5a{YAlWuLy
z$9X>A2>5oe{<50Y@1hBE@Qs7rj+*gOa*v~4{fL);?Ac5E;NXCRZyoi5K)27q{tV{V
z;B@mg7ayeZ2&Mol{)2<YBXf#I=KLtNKJ4I#gQL{0L8Uwy(V<%4n1kaE|IUWIYJs0=
zD9-t4NV5i&p2*-|9QB_a@=tMmIhdcuf;4`2aGD9GF*%Jt*olmuMt&M+9sJ3$<{<6h
z9Bqz+n1i^3za9MJKywh3Vw|Tgec}06@C64IGYXdWBCVp#E{H=8q9PDx*H;VhzgH0!
zew8QO(!~#nITK4rsOi9>4WuCw6*6eVp7?K--lqL`Fzx!n1F{2>5_zUf$x99{(;%mD
zbsCk@{N)^Krco=cY<N~0Rnn*`I6IBn`Gq-YwO7T@?W(0!YBeONx=_l`jrktTcC*;E
zg~LrlGV7#qMOu9@Oa-gUmZ{;sG7WyoR_&CRw4O*dOrud6^#wP`q*n3P(^$MsBw~GO
zkZaP&73Qm5)JEsEX}HoDl*ZsR3eqS{qidR5R47X0x-@P~qjee(`Q~X{pXPs2(JYPP
zYJsWM)O4k7YgY>i<ttCiG+r6u=B)Jw;czFbRT`T<D<)`@#!bTPltx=Ng5Zv6@V{g2
z1$Ri}X7Q5q$TMm(*>0NJ@#IXha~fUJs%PD4+#<pZ<?BX8Xty+OOXHq2`lQi4joZ`c
zAu<fTL%>~W+{sL5c|MW?lfR)_pl2GrB(!%L{801mH28Jp@oE91p`YHqY4l5@e;W6t
zk!qRS|GPrwey_*}C6NJw2d1&%R(FLJ;#$y<G=`=zHjQy<+@HoUwo)2CNnv=J|DS?4
zjS*>#tVpM0PN(mby^6KUWgXeS#3gC?(<l>xQlVsyV#|m^@{AR~qAX7%kj7{ZklMKq
zr14-HOB<>wHzl*G2ROGMlU9eV8deXCmlP(X@vwl0qzze-iQ;`UjmOe>MDTk&5+hkW
zp2nm!o?yRcH2=ea`A>=rv*2d#(`igeV|p4dvN{swnKYgif#=eAfm)sBKYf()PZjz<
zYy6%lGrtg<k;cq4-jdK+X|;?tJB^p9ZzFSvU#1GB@dkCw?dF94)ihpDV@_J_cD=?@
zRS%GVTlE0n_x~SJ*8wF(v9&u+#~Gra>@LGXeMCtrqDxRvM8$xJNSN8#U2sIeh=He=
zBN#9%Dk3U~qGEtYkRUlJ7%-s%iYTI(71PfAU)_Cs{&V`=^VRLD>guXn)m67{-Cnj_
zZ^qrvs`m2_2&LkhKOcNZa(=j0JyNUZ!z{_8!XcPms~)Szhd0m8s8vtas#j~(Yr>o<
z^aaX8t(sM<o~B6Ds%M4CsT7m*;%?*YS~Z8l)3*G%T5aF>JnO$!{kteb+geg`UTjuA
zPg1=o^rc!oPkUMDe4(!hC3C^JlGkh1f?8FmRmEDhuvY!IR;{m98z@(`YH_VvBRMRo
zRZDBtn}XjEI>FDcs8!2q)pB;;o(?7O)AniFwXS46$TyKp+T5;^;Obg+H2zoqwY6%U
z<iK}fOKq%Gn`+fA4!pH$b1i>Zqu#Go+iTTZ^>N;*Rd3g-trDaVZWD0d0WECr)~fd?
z20Z%eRDGrNCjJMt>O;0vt@>0(n~!SMC(`demQ*x0eqvMw&*o5&?jBb5nZ(&yt3GG`
zsAlr+8?=eVwc|^_plsKw1GVahTD7NEeO0TzrRdhGz5GTj$b2Jte$6_6IrGpR`j3Ph
z68A}4Y!Z#`chWV!=c{qD@k}P)BhCHvA8XZ5wd!E4`m<L3T&sSOBK=;geicw>o60i$
zCPQog=2d^NiD&AKc$zo-Rm<NGsefzLL{(k3GR@;H|41qh6pT|V<$1{0TkS?cnFUo^
zP-O)f{|m}5sGy+if^rJV6{c7C-_ezX1p9T<O~YOp7F1MFhZIz^0zE~mWI;75(DAa)
zCsj}l1rRq7(5-6~F9w@PkX71Lz?^-Vx{l0S%?otXqz)_SF^WMB7cB~^M4}Nhi5}BR
zyR<B*v@kmeZB<aM3#v^)mDk5)T2)YxAZL$l1+){&TUSmjYhRB!qwZKxoeJvkg6b^H
zZUz49LBB%X2-dYeCP$L)g0J=SM-&t(N46dXb#y`XD5|52s%JqRQ&3Y1YHC3pD=|kD
z)JOpp1=XvddKXlmg6dmPXB5<#1$A6~&L<Vr@deedplUYP^e?Cr3u-_?olsEkHq7>|
zEpPWx%_qN}cUQmiyZ!vf_hknb)X9vzRh`1O9_5@WnQ+r&kbtULnbQi2^mLZ+pUlNk
z)!>3UtDw#)C~i*-kvJTJxKup5poSLIkDGFQ)9JbFuzi_fY<efl>)e7G&Q!8T%;2bk
z$`t72U)^3%S;?WYpmGIu`ZZ-+dZeogs=A=Y7t{o~#Ti140A@S7pvDx`c?Fd(=%3z_
zGrW1#`2|J6<2AORbu||V9am6y{-$kFE-a{vn7p8_mP{@#DE=_?@`Adgpe`+_%NTh|
zW^Pm-ep*RaLK6$x84>mNR}|Eh1;rl@URBT*T$2QI#=>KdWKv+RDX1F@>ZXF4%xWp9
zxqkk-g1Vk{az|#^*7C_8=58pcCBL<r)<FN!;O2tf>*v6JYe5f9x3IlRyZp~o;P&JB
z7I#S5II%xtr1S9R^qmEDS3w;p&?~sQyP)ooyL(x-g1Wb$HWt*Tg1WDu?k}jv3+jo2
zdZ3^llsq3}tu9GFR8Wsd@SSTaAFc<Ne3^Z;z;oz|fY+V}D`|tBU!I;(P)`=r%LO&R
zpk@}-Qw8-xL99Rv>gj?$fikzCo++qj$)re6&CD+7-+j)JH{x5oW>@jm4qK6#E{kqj
zY(8I52gOR6cjw8|Uo5DXD4$<vxZ)#yrJ!Cds5c5~SwX#4P_Of48)uiY<U_Ly*iQ>;
zG3&g2)xv^azyG(O_~T3db##ej#bwvJvh)k9bIg3kVOd&`E-$DR1+|v7u_V1xH%Df5
zL9HRj&%aqvs|3*EltCV1;$J%_{;RmYTUSu)nQ(A+1K+nrHLHT+)N@sCGsUBz-eFIX
zI`6cl{4L6DrPeyWT~J#K>WX7)+I^baR#2qG?-kVh1+}A~J}s#21@(cX`h?>Ba3yz{
zNk0_)Q9*soe!6osi%n+Tocyzb`n;fabDRvc1>jBrw4mN4d~!PXNPi*BFAHi9+d?oS
ze~_qJj`V~9dd&QqbyZON<heX4^KC(q^4c%pyMp>&z$d?G=8pyS6UW1%I;^OEE~sBP
zCKr`c)I-x9K`H641;w4&-wNvYg8GB)SWtf!)ZYd5536fs`s~u`zY3~b^KvRZW;dz+
zx1eeZsz^yF>Sg<`mFWVj!q4+!PdAI&Uj5z+OMh6IW@M|VCJ)InA)n$FRZ!%%tV+nE
z$?=NHXGuDgFPNPfG`1$H=Ql5^xTumvl`5(iM^-c{s>Vgtph$tKZYY##4?VS}Nl{&y
z%FfBw98y$Gi|U9|YZ&=J?+S97Nx~Ut=t=%1<)tl(s-&pOi>kFeqO_>@8rU3VMSa@6
zWl^Pzs@>!=;#Ng9!O^GP%LkXWDJoS|kM__N4ptq9Yf0W#a66&xg?13yQD`TjhYRg2
zw2RQLLc0m=E|mL~%#-JFjx6dwH6O*1e{(rO&!Re}s74i4rl^iBs*0jIyQqd1>1ki}
zE~+!@YpG9Bol;b%O0cic<BIC|qUu*vhqkEdUsMB%>ZGFTzjgEpto9&(Vo@#Llp`1@
zOv)q`gC`f&jwO2N_BQ7R73r5=)mh=LQR&l*>WQ^_W`0Id>!o=eJeV0=RA&{{koq#b
zb!r){^*Adyr>KS%)rfljxdMh4)kVkY+G|4rYnL7=OpbNrWQ(ejRb5mU7FDjOs)}k%
zQJp6ds*9?os74q6|1{IXr<OGurBmf4!udrtwx~Bp$hn}X#ue3g;d4Dp4zFfn0k~jN
z^+iQ>vD}(eRF@RhrGhUj>b(zYhS#>!GdErni|TT@b%oF?g<d6;clBDbsIF%B8CiBs
z@qg<P@+VWCjqJ5Wg&=<&OIzB7;6_SRQFU*QBbwvpqPm6c7$Otm)}p$NVwOOw1a2>?
zJNSY&#@LurR8xsfj4^R1WxJ?eFfh-+-9>dzQFStKxPfWxXhpTHsNN~6`-<xRqFPy0
zZx+=9MfG4&JzJ!EdG%0HJzP|ev&o9uV(<|u&trlgEvo4Po|sU|TXiG09!OcwyRx&2
z>dB&-SyWH4ghR8}E=}_+Nvn7D-{d*`KFu<CRnHVvp)AW`b52n`S5&VQ)vHA{x2T>k
zs(I{aMfLB5Qd$_kz9szvi`Ox|<IC(zMS7LgU(ESMZ6yD4QQh28+s2b~<%OlM71irS
zwWO$)^6ru81?-PSwWz2T7WJox7qz~NT9$J>S<DQ-&+y{^l;>8Y-(Y--@$M`Oxs2U`
z!hB{8qpc7o?fh32)#{?!SX7&eT8+u?6rZ@JsMbn_tShSZ0yYSxbylwlrL9|KH_LN5
zOl@JY#ma^FEjId;%-cn^Rlu0lIR@V?s`rY@HsBa|zo@ns)q$e=p{PD6st=255A!Li
zkBaK!qWX*lkf(gYF2)XCRIH*)PDoP~d|mGnsyFM7R_!dRT}8E<-D>?2&$rUbOsW}4
zzu?#yR(vUxhrIR{)z?L}uc*G|fbg@{zJ4Q_(_)ZX)BS?KE2{5{>SQs-V=rSSbq8C1
zEUKT1>aU{uo5M~~{Zdqa6xG3^`n9NjW9v^S<>#9kZ^r*!@|n~!OJym8<dgo%wiey;
zKWyltG7QjMu$CfGR7H;7KWBJUr!M}EUTFratSZxhWnkfi8d@FjB<u^F)2@Mpfx`^2
z<9G&q1C0zcHV_yH4Ky^sqgb_ja*=_Q0Zuq$14#oVdo%oePy@WZZFvI&LxMa%E^K|4
zYFwZXE;TXG)W9JIs`{nxm{8ix0GZ7V9BP1try$)mp_H^vH{OC78YneTW}uA$WuT>j
zw1HLz$|WI_aFNS*nbAR?*?F?8ytNdJMv^da?Azt+ARP>}HPFrgMf9lcqX+LC-QEBx
zWxJz99=N=O@jDynVqk)S3k`HN(9OW91_l}EZr}(5#~bKpfTPfn%+|p2)s;sXpk-hW
zW^16Q+`1;nA0yzi3re`OXRyLRF9W>|^kEq)DwwLTq$N1cz+FL}fVu+G{svBvv;!sP
z<<DkLG%&!xNd}0Y3-a_b(c8%qvkWIo%u{q*XcrBq891G_XJ9z%goT+<bG8A_^UpNE
z4I^HI1)L>xh|uMMK2I^!z&Qrq;TTB!PXoIi%Mgq(Fw#Jd4P=17$^O11J<34FK-R!%
zb1Ey@^ec1pvq5_dYK&<jQf;7yk25g#uFBB{#u&K3z&Hcv8OR%OJEzC8c(XFJL*{k9
z0UCSo{39tdA&1Aqsp(||YJF)va*=_H4cuX1ih)ZET*}usaD{=(q*|ztrR^wdY$6}j
zSpQY|N&{CJm`n*YFo{ySI7geks|EbW0BuLfxrXEO4VAQBIOFZn*BQ9pz)gHL7I;xE
z*&=&`0ZuJ$WFZ%4DwpMGWp|5+7VY<LGjOYc+t=oJ(L8Thlj_^$xdc-U+{tcb;1RYX
z2Y&;sx(5y1V_<8Ca_%19OMw|yF-_?6rRn<&+%Nb6ihApGa&VS+x!cH84@ugwD1X$z
zbOTQrm}THG1CJYc(!fjuUoNZ6F0Xuo(H3f}n;CrW{LGu(OGtZkOz#cyV>?toZQvQU
z;IS3Y8=%_!Sp#znJZE6Gfk(&IP|Z$CK8<STQkccUivLMx{2SJ%Uo`NN0hnlO;$;K#
zITV<%O}t{@RRf<I_{_j-23|L?$-rg<3ph|vj18<{m#oVE*T7-}OAP!G<QGxYYcq|*
zJU4&2fLdzc4R+q3Vi{j#tG0jOMX=Jqn+DbySZ`pJfz<}qvaP?<TO>2amr^mchE*{=
zGvu$#U7advvA@9pCoLP<(9dK(novUg?D$gREe75)@S%Z^47|;nH?ZBn2L`rLsyQ4r
z&A!VruP(29?qpQG$IiGp{q*9@`>f~3GX$ItaeQM;o=up1NcLmC<{{-fC_h^&KM~5b
zb(R~S8`x>!X9K^mo(=3a@U4OU2EJee8Ti`3H+)u9L7m1P17ETHKj@<?dup<K*`TQM
zqY9pODSoDvpZhqxgxb&5ckH%fdj4SGM+4te&X3L>5K0v^r*i|s{M`kuFZxO9uy1+Q
zuLgc&JsUX4E*a(%=T`hKw;1Q;lhS{(a~UWYC>q%Nx%O4^w}F3H=D6fv1GRig^DL*z
z_f5%M5#|XD6I_fl?d@USG;#9AG<CD&I3`>Z%}pF?B4NTaku;Gq;hW%*3Klpp(df`B
zwpVC^erX~Tv8h|RbYS|UXSLp}fr*BUW1_LCU+{xw<$QhWzM4q1X2P5i=9`)zJwzyz
zH~Tz0U}VK%CR&(iZK92d5)-8+$|Y5qiIyf>Nm_0tq)n_s6>FIIoZ(un&HU-7g->5O
zzLY^`s7zdboGx%X6YWj(G11oqb-W!+bT!e<L`M^yOdM|NZxFA}0_r|JT?F&{(%r-n
zCXP1IQ#iD`Ke9glQ6_o_uCtOork>wRz_BJO1k@dj?Jc-2^W#kYRXxkZ5EI9n=x3t8
zi4#l=GI5%T6HN>-F_0}{;v^HDcjf3ahm(2Jsvv$f%%5W7RKAXtCFXgG_F`#9zdfh3
z3s+Q}!AiR`!{9ew_DmClO%RYzdbWw7tN|0Wh&V^eaIVl{rv6?m+g3@+dB|`RBTS4m
z@yEMk)`a;{CP*_TJ_z#!t<S5WnPR00>h5yV991T&P1G>{FPR_1e6Ma*BS&S=Gm&Su
z7A9CY-^5rGzcYe~3rvhN@rH?IylY~DiTh04Z{k7|7n!)m#ALSktjxtGCbIchR1-I>
zE~iI@OHEux*;t<;<`BW|a|H`;;%W-U_VO!DkaLyLNkX@(>eSBciW|yko<z~Q*2Hxt
zZZmPaiR(=~dQQ!aCa8D1!NkQ=Gu(;j#Qk3rHw*I?p|=X<nJH$)n0J_%V&ZNS_n0uc
zR!uc^f4_^X0D0WezE*Sj<4b$IH~O20DyhbtCduy=%H-rcVB$fJu_orT>zR1i#4{$I
zHSq|`!(L$GNfXmeJZ9nv$@6g&`_C`ggX%iHS)Fq{ZY9q&@stTJJfCI`t*SY&uq3ls
zs%!-T`FB^=%r-HH1?E2=B_=mn*dv}}^`dI7364lSVEBSWm}lZe6HTH#BflgZV!jK5
zub6n%#B0Jl`-B>5m|r)sz{El+UW*B(|CKRhv56%n_=1as-cYO6K1)sT-J5MM=erXu
zH?hLRXC^*3vC_nwCf+geE_*Qx)8p9Hlra-`jVmEuYhoSi*2HEL>rHGhv9`PBvpl)s
zH5;WcM@ebP++yM_6K^wfud3xcqqj<K+k{@%KFtVcMtRcrOuR1%cbJIE)7wpaXyPN5
za6#q+6HVo7#b_U!_{0QXlOLDaCFNtHJPUt?Tk$Eo=kgMQohEjf_?msn#BO;CQ|;lv
zSdYJCbsevt%L@F;#9mW>*RF{2#|^L9$5CiqW<TXYB7ZBCobOE>F!8gAUrhWU%pYaM
zqZ`8)7FYfxnBymH>ezz6QUWs-znSRu{us9V(VNl?9yIYMd%cA+3xApTo7HaV5#}Eg
z|8n%Ukg`x~qF}<bVDVa-D^gl4(6ov8>o;;VUSi+3EjSi@3xNgKLc+o@IW6K@m_0&U
zPcbGhPFgZ=<U$KP&=K^lA&o4=7Cv2<A)gaYdgy9kp^1g2$JaEp(8vPqX*tX4zbw<(
z0%`fGTvNGwh=tLrd}@@R7v-B<IMmW}?87Y3jJ8B@3ky}P^zc>ZH>{<Fw1wj>^s~^)
zLb-)b77n+-sa<PJPvqKKXv2JlSI|sUS%6>$IoWGxp}hr~JaN|7K_Yjw(3w*{yJBsW
z?`)xqg`O6UvC!2*Hw#Bu;NhBn+}^ctq@^caN3eQl>zOJsFV16oNE}XmkG8;LI|QxI
ztvS|0g@s-g=uPeutLl$Mx!!yi3&&X;w80>!VVwGs?uhc|7}~i?e+wsAIM>2(3nyB7
z7(dm*APWO5oFu`4QX3~*p#AXAQT`NR@?Z;NCgS{QtO2Ps22W?@n7YPzooQjP#5_yr
z5TR!a9V+x3p^Q09!0R2VM_3riMzJu)0?l7XS;$(bw2+Y?ITV!~8^zL#iy8}5NmVn+
zTWQ`RKIO;U%Cd5T^DN{oTwvkbZdD92^7$6V@^f%(1#Q(Rc$Bws7ML52=qNT9TDZu<
z=N5KaxY)ua7OtUuiWpyNVUmE$EKIa;xnPR-6?|*aO<h^fxynMF9m0R=Iak-mxz@sU
z78YArV&QrVH&~d?wzF`felOh1*RgQ3g<C94wQ#3}TbZ!5%WW2Jw?JPj#9U_HVWI8|
zK7~@ZPoMGR8NItC<~<gsS-4v;BXh;gy%;XlxyWVkehajAd(gr|65#>L;Sp)Nt9n?1
zkJhJpL;#flTmp0M@wkO2EWBvpB?~hwJjrfoVUC5F7M`;3w1sCVFzw1`NvgNnrs+3;
z$`E?JplX8FS<hM^r2~NuZPRpF@SKIY7M{0Ir`36ZwefFm-;gYo74swqYftuNzO02;
zExcC$*3^5v!na<Ud3H(3>lV0DR&B}`Sy*6Up{11o^WGZMgFYVR)|Ee>M+J^GFul~m
z8y2=pD=gy^Eo`)~$-)W?D=n<Hu*Slh7PuwBH(kZY*;Q1wP{G2-vAWh;SZ`s2lxm$&
zF7sI-yp`>j=5EMlO4p|HZ5H0Ku*Je#7TzWu({n2&Q?yvrNKobS>r<I`Eo^I9{=S74
z6HDH+K!pIWx*A}HA6WR%!bkE5X1+tf$3j1$5Pq3uO@3<OGYbS$m!_wGm7z)AE(^OU
z05&??_`<@M94c*iHuhNfiY?1g!opq)UsJp-{AA%94yucD-&y$H!anv03x~z|&9#{z
zmEF(5HkIW`F%AL;WKjBn!`iA`mPc;W=^i60erEaiWd5MI4lDb`!mk!Md@*vDIR6`m
ztT_KWU(L!A9JIj04s_i~Yx%z|{KHZu%N<(}CjWB$w@{Ei&J}c#HE)9lZ*3dvzsQ+3
zEF1oF8RB&(*EAkkLCm{-klr?`!nHxlVcEA4*eJ14Y9q7}**G)KA7Uf6k+jj!Mk5<3
z8ymN&2DV;f?pc&0?LJ4_aW%Hl#0HnKO>J=KYtW!-!mpYC9?%+q2eR2_Hk#Ww)CR4>
zTG(Kc!vr(9@WgcEhbze`v(eH<Ya4BB&}cSoqq3~($)7T<Z18{~uW}o|)MN>i4cKUB
zqdf~YIJ@hf%C-WCr!CjR4h?`i*yw2M6*`9|(oTXo3U#s3mDomq8{JqE8+~kanVUI&
zvGzoIgpDI@9A$%+w8z*u)<zE-N82#E>8~4^J#ElpmbwBq1U+a~*r3ZwUcGGeuE%t{
z+Sdk$ZmKViV@28ellNzdKKp!vjT3F0V`G?&0X9xzZZ=N0!PB?{ZSYj)DK<`)AUS-O
zQ-w+XARBkLtfmd~8Eh0=kFjUl7;NJ#8$)cZniw1Bcdw~rbxn@7=4aLZ4C4%?HoHs@
z&ga?~Zfhy3vh_D~gpE-)GB!psm`?Lc%CBeE#;x+L%(3PL^Giw&Pi-(s@taJwjT$!M
za4mj3AbFmRyp8z|UU6`~jj=4M1INJyHpba_(8fcyo}!Gm^$PK3mf6OIHZHPpv5hNi
zTxshu=Mo#2+PKUHkLIy^GA0dQC-UjvX>I4_HuR3wo-9`)SJ{}v3~emGtTpTNYBpSL
z<_24j;n&!Dsyx{SHIvs0y-w)$Lho8uLjH{s^Clbg!nfPkD(GAI6dSkMxZT!k+k0%>
z!RiuxmyM|cxVy(&cM2w`3*K#`@fkG?P80sUHtw@=zu*Ui>TRr`VnAA_eb~k$HrCo$
zXX8;D({0SP@x0W`V>V{kcvA4=Hl7f`8mlvQnrY){8_x*yDWS7$&{BdCcs(ne*+Pei
z`NteePPXDX*6=dDwfBOJd2;s+8!y^;$;Rt876|8MwwjGs1al{av+h?pR*0VDH5;^-
zV{&?XAYEu<k&VS#W^_~f@9MoLM&KEZCBj)Ml+1afDwnZoB)G!Ho2+LWD<w!fF-G7;
zu-e8NVbTD@ouD7I-o^$Sdu@EpfyKrq8@okdHrv=@;{zKX+IY*x+fuRb+1Sd#io$$O
z_8l8^ulmam8D0eMGV<1RlXV#$q<Wvdk6rtY%){~joQ<<)KC<zNjU5!=xtWh`EIUT4
zYd*E{8N2*v*<BotwvDFv@%r4xPAS86gUT4B?uc{vFIf4)+#__-#4@fRzGByITSD-S
zjeV478-LjNRw8`Q;@Q|Qn3;TMg9<2uA8h<+<5%JTRDbsu0Y7u>70m{tO>de0O_+6M
zIB4Tf8$}L84*s(7w~bo%`s31rHtRfDhJS4QD+0jal=Wjs3mm@Im2(|!I=TZ|4yw18
zQ>#XN9{u38EpZ(r9E@_1ao{=d9h~go6i4e%0tY=D9PJ=<5IKk)BptMK(B47HK?4VA
z2dx}5bkN8_V+Tzfy~G<)k|ljU&Nr3do;Y9T;1I#&H*?Uu9v>>;Fb6FJl+^P}9W0Oa
zYL01JIv^!3chK5FTSu!R+Xz(-mJP4@BhGWZMgRwVGy!LZL%1E_preEC4vuip$-&_c
zx=8*^-dVtHZp9|?Ud#Ah9WB`19OUn*B>zYU!$-G1sy_ZRi_>0Gm!YSFV;uB%aDt-;
zoMRomgzW90!U0dm_j0s$g;#b^Ssw>|9UR9|k;f8~`F;Y97y7`OG&%cz&YdWkaDRvP
zO9KR-#3T##h&Pb$vM_VayQ5E)JUQ^5?qHDM(;S(EFD>DN&JfO-4hB0oOE8_|kv~LU
z=WO8&6?~4+VM5OpI$S8<dIU49$4s7eQ0Z{afJYqU98@{D*}*Lo8wWKGE^%<FqrV-a
zSyvqJ1&?uX9wle7{y<Ds>9HLA9b6>0#<2_nCJ3dka=IC3v<n>&6V%a**-~@#;rh!Q
zOmuLKgUJr4nZMk@l@6|QaD@b?cTe+p%Ouv)&@2`BS35ZV==6UaJ=3^erBPk8^~~(G
ztcvwV+~DBE&$HJ#xZcq-aN3iQdCGwFjSgrG$?GQR4mAAZN90xqcRIMs!GY5BZ4PdC
za0ex=qGF1JZlZIWD#5enX*UI|-n$*#=iq*3<zSkFd!?Sq-?1kBWNDh<0Y`s}IYoKU
z(Q_Ee#zVq6_Sp2XYxJJ}qkJ6)GaXEK@EE~z{ndM1WZ(%3Ratt5U^01_;wfpJ7lh7o
z@U(+x96ak_wu3oREt|Thd9k{9Jtv&!9n5vWx*~^<+aP!6IT*OPoMYgN4qoD;>EPGF
zs*x4sRCG<h>fkj7U95KTx`PF55f?|eSjdKR@RNg|9V~LN*ue)5K6J3e!BPin9ISQl
zhNHEV+$MWdDry<~uY(m1W-QCCWJj<oUfYo)rsMHdj^0fpXEmE?K$^}R);U=3V2gvd
z9BkmQHe2r>%|9`{(ZMEm-jeiYVe)_gSI}IHzs+a0t=i_`9kzb&imhzBW3+=}rh3=G
z`@$rCPo#pUl8LtqzT)@XM-D!A@Fj;72cJ0D;b5nOT@;c}DnE7bnE)2APcr|xVDf`^
z(z_izw<I%dg>E?NE56`U7G=2c_mzXa4!(2ny@RhEeB<aDKE0RkbMP&D>!KVTL~xq4
zpTp*=9FH&)bBcICIs$!*&3iBRg9D?G`%yTYN-@GO4t{me%tdn-zd87wgR=|I#UBn1
zIw**w{mBY(@UP&%W#pl=6iVGcf(a(|s^C@2F(jF%>=pSG7pAL6C(G4~eFDybZ5NJ<
zO}lfKCiA4OU@p>q7lDhEiv})27m<tD)!pIjchaOcCiDO4Tz=VKD(QkQIOr?2p$qO>
zvO*fU`011y&Y~N;V31c60ZoM-;^L8Hp3FmC9Ok06i#9G=xF~Va($zyssZbu!CgxS<
z>YY1|Drpz3T$IaQ^0{In4Y!pmSL<rpx@hO(hNYEo@z~Nza(FzXy^D@6I=Se;M^irK
ze9GZ2I=krNYO%Tg&m6ZS%a&(~zh=6+dI0Grlz@_Uq>H0mT;pQ0iykhHc9C~+zKfnN
zj&X6Oi@`3Aby4ABpo^1T^m5VL)n9}YT=a3#*9Cod_hS;P;yA&_3%+P!hWyDLt4RC1
z;At!x44mj<fUB44lb5IIo9HCwzl(cqdUbpXpFTW0NOC^a#is`|Uu`Qt&Bf_1CWyA-
z47tUa)FhncVu*`TE;6i^38iPd80O+!i7?c~Ij&yOGiIF|&*3gc)TiZ4cw{~1>N_hq
z=b}nLCBe^n?O$CVXN-#)!R7Cb8O?TiZw#|N&jr)o)<*Bnk9Bc@iz{9INj<E8dYp?3
zU0ftd#tWUm9Cl^t3j1QV?5K)Wt8)`wT;k$V7nix<a-O$3u1=E@U+&@xNyY6Is#)kC
z`zjZcgu|nM|8YSJy{lb3pUe}`9OYUU*SUDc#j`H1r(n34=Hgx#w1m0Q#Vsywm9#er
zy;&&r47a(s-NjTFce=PkDzGr2bc&06wv^L~<FgfM>N@UnL3_))**6zv&T5xt6Wrrs
z{t0OYsUEpcvU=3TbQkxtHe5U?oQIej#fjRLWf@jA>xb7PA`jGKJm%tY7f-pE<>Cn!
z#ct_M$^4U&aE1%2N>~Fk*)fxOVp681V(Mv$P={x`n8OiUIM2D5>*D45yUz=Fk&-50
zo(ry_s&{5dnf4`N(&}}-i&tE{TA%7QS1VYkN?Iv0wt$}ic0Cu1Tr73*hKt3nUb6Af
z9IbAaxHz$I1z(@-NEu${Vug#96vd61<<hu|<@ny4>>%Pcme1{aVd)wdYh9Ejw1lj4
zvEIcl7rR|-aIw+F78XE+hf`3--{gXy@68+rKhF`o?P9Bo&m{uyZgcUDi+5e{L&+eo
z_gIsov?I0m>)&X*iw^{USkL)Lz{f5=spsrq|EkBIxj3YtI}5L!!hG_h$}e1e>B3DQ
zk-#24j+MY+*~MNKj~#7H&!1d;<6@tSA6)$C;#(K{T^w-rUch(kCIi#?uIcY3CVzRr
z#R9Fh>E4`E@hR)d8E0xq`GAoXKfCzF#jg^L5%_8TP4L2VD>!L6=;BX~<Ox^_{N-Ze
zru07)Y>Kpz{hPtV(~MK=qCi37n4G|K&9mJ8X4&|le>SIynJ1sfr?-?PgPnkr0H4c+
z7^8U!_z4`A(619D5GK$#fhGyP!yYBjD4`z|Gnhb1;xJkR0iPxF4F&v>%#&HS1S4pg
zzz?0$%@Q~yft9VQzim)O+B^X+J$N0O!1{3|jMkz)w~_=(>+vh?^@6db2nmZ<o<Qpa
z*7#WKqfG)TfgT=?_J9Q1CJ=ZCJ+w=peF6_9@Nfbh66lz~$OJ|u&?$k#6BsO6bxxp5
z0(}!WE`hEIbW5OT0>>oKJ%J;br^Goj0q(xB^^cMu)ed!MOpcZyOU13gV-tE~l!fml
z%nAwe7CF7;75eZghg7o#k58aq0;eW0D1rV7oRGjt2@Fi&#QNO0oF5>Vk(ooC*Rqon
zIE76k{4V0?=ClM(PvFc1p53MmEYFZzblv$_Q(aLnG}QF01coGVb^=3L28lq+2ksS~
zlfWbs!xG?%o+acVi{Wh9b(s+oheimrNysFSP2kD|u9A1DOyDB9n@gZ7f$9Wm5*U}j
zc(!ILKbnmwcZtUcr+X@&7tZ-YPoFksYyuas=BJGrkjgVSGL@eow=U!(Qh8bkZ<(yE
zGA>Twk_0YIVB0e7I&Y$Y%Y^Q!NRx9pn<Jq$y8Tz{AcuuX3EY&x&CD%<t7*D<NcNfp
zu1$dJ+{qFohug>3C2&0>JfFECfg1(TjG^vG6!({Jk;2@U!2J|#_NjT9+h_usz#W1a
zd~HP8lmsTO%1uqcomF|K(7S{(c(;Ii5|}37UZMOq2X8%)!0#I>r={`_CP4M?wJoYH
zi_7Py@{c6&XaXA(*p$HZ1RhJ^)dXHk;PC{WNMH^-tQ2VmYkq#_=>(okU?ydFRQ4&h
z=ET;Vn$Ak#t248!x>b=rLrI`eJybcH&3$ggC$ln4#i{k&1fEaer37A1;Dv<VynB%n
zzBETLPlBBL(Lo<M^VyoyGp`5@dg_%6b*I!WzMjB>1lF==Ra7iY;J*p1VE;{EQ9{q1
zmL#w=fyL})vOD%}Du42l+#3ljOJI2dblfz!x`w`k==hF$U4l0gSjD$KkXfDJrh`7l
zd-pME&dizB8up8W86NUo$DtsBUrMwuoec@hIx$V>Z+!aZ1h#Oz<y$B4RswG)utTb7
zE5##$_Y>Hjz&i=NOGz7?<#|DBW#40gWec)ymiR#eA13fg0-S+=l+emgULPm4{<aQt
zlF3_){AmK8vHWFKpR--2WOfVQnZPaq<a6fyh1_CAeVNeOSMGN0P2lSU{z%|p0^cOC
zj|JW`=9dJ%l{)_+fgcmtpTKtsd{3tAksV0r4cRU9Eb*B3yvOS&$@XV?5QB7y#sd7B
zz;6jqiOt9T&dg_4^15nh&7U0n6DTB5WOruYT$1}Yf!YNAkrv@9iL0T^+BA<{b5Ts|
zJHvzNfsVF350(d>o3=eTo^GijH|QT@xgK6yluLNn-Ym-oVzY7%%=o^C<EpdV*^E5I
z9=dtx?&(i<(nCWJjRdEJHW129y2c)wa7^~l*3%!6rXCLUaF~ZfBuGv(56uPdPw6j3
z3lAk8T6<czU+SUEL)z0Tl*fCesjjC%T}w}E?@#EFZY6Qbg);J=-P3I(CXMTqhto>+
zzGOR3%k$xqe|rxdJam-gTJ!Ir^Tn-smmA#c`ldVAm#2$|u7c}Ib%ci_<z0^QQ0Jm#
zd%F@E+Yb<_>*?Vb4;T8l$j7lBDm={a@T7-c9(sGYz{5BXeLVE_FpPP!_B<T#VUULw
z4f6dw^!ISGhf^5At~f#HKo2K+7$Ep0R+?;oukKpK2)$aRsSH2W(?&l3rt%xZY{}XZ
zVtOe&&BN&)&hWs4FlTxg;^Ax$gC$7LSsuEq$Pf$_&N&{a*ryKvu-hvMc0ZLF?qP(7
z8V{pAjPx){sx-$;*5ooCvJ&JU3AtnYdRS2@ReED9JvdYeuBIe3(3=ZmJe=ogCBs<O
z|IREGJ9$rcy@{RE=X*G*L7v@;zi?uN@g634xRLF}+VgOchbuf>>EU7zm&oHd>|E+;
z9U8C8JzVC&8?E&x6Ftxu<){XE?mP3=RURgJ;J(#$o;H{LkB6&0T-UAYq6T@^7{N6X
zoGkQOq0byub-g6HK`7HQ=FJ{%@o=|?d!(&z^>CYq+Xb&&H-@iphli<buVs2zm?AGl
ztI<1!b5|YT$+9x1d3yMI(8EI>?iGBWbfx<}Jm7)d@c0e719Cg;VGoaZcwBlPRUD6c
zn9kxg&tCjinmG_WCP5CQ?4D0}dT8bPbf$-=JRJ1!r-xY{p7!uQJE@0fJUr`Rk%z?|
zW_y^!-tA$&r#C*H^YFZf7buDq>A8Hbp;>N*&hzvxHdkjad3ccm`GwvX9lAR^Mdr+}
zczD&r0uKv4@EF2t6fHXL@cy?0{%w~ut;e|lqyp`~%r>gve?XXgiHD^gHnN*|c*Dao
z534<_@vvNyuM|puxhp)qpyQ7r-t@3aYLat!UIz!)a232(qOBLYjxRVQyZ%ePwY|a9
zt6;8}Hhb8@QEOoOJyxBEw>@n0@D7=~^#L(1sJD800Z707Ox3w_`dttF8wK~fS=yVw
z$Z|dPfrk%0d@YUpk%x~du^vA2@QFNhY@6~OY!~_e#oD%M7HQAh>CZiU>0ytDogQ|1
z;CaK{9?n}|`GsKqvxd0G7ul~QhrL2sA#}laIh}7@Q1Xq3eICB`u;0Tk9)9)kormu|
z{NUk74+lKG=A}6S*KzwNloJ2M;`!O1J<#j#y~|2?R)XjC-cISwsox~?KZO1+lq>x@
z%Y?r?{LL}VM;9Oec=*>t10M~2)Osj*@O=b6_`{K+2g8Rc*t;`h`LKOBJ`MyG`~fH*
z!HfIju8)Kd&j*h-Tw-QNbxzY-fInH_-O$(akn|Dxh<&^x|DCBTL(11BXH|2rypfN_
zK3e%G_tC^hQy+)=ILyZ(lDxT(&*YF`Gas}B;E6x38F?(Fg^v;+Wj<O;v{D~DBE%Z_
ztt`#M4m@^|miR0oPkE5vnv;JY$_IRXj(`Q@0(MX9bXy<oe022D$;X<F>Gr->0(bDi
z<tO9(*1x91q}GQElYE}zplcw4u0Fc?80h0<AKiT%;iIpQ<9r<H<0v0T`{?O|62%-S
z7(Jwfk8I8zBj8vc6~11u*Og(?>Kw0LK6?A;<Kwc=D{pS7AMt9xn&W-+lOzL#_V;mu
zj}ryo(;!dF4K8e{SU6)#`Xpi2Ir%xo$EkcrAH#hN@^PAv!7M+EDvRRN8I$;>%$Yvw
zd=qV}*DVb3G1SL7zFwrC?c+{4l)+kJVTQ4lH|nE;eEktVM*0}z<2)aud}Ms&e3~yK
z>x1?xl|ER00-j4H<pGdtUmKZ>_OY>THQh1QNM#c6m?zsM@8f(Q<E8vOk~~(xI3E}I
zx_ff)A?0=keN;~Hb%&zvi}Ye&PbV((G112*J}#Bu4=0t^oglm1#}z*A_Hhp%Ew^s;
zag%_nd`u$nakY<YeB9vUsRsGU1fS)u^>Lk#hva8Ehfiuf-mkizW!s%SrFGTLM&<ke
z&JlCV_+}rs`?$l$Rp(aR;^S5Uw+SWZo0HO0C>S#{cgf?XvJA3oa3_l@t8Ct4v}r!>
z_3@IAmwnvl<9;7c`*_CJAHfHFJmTX~!4I-LJ|1Ri(`g#W)!E2R_wg8erH`3D9_M>0
z?NRdy3NU{K+dVzQ*E4NB+3v3Q<)32m`5A6`%<{EiTgej5eAdTospsc?%<=J@uQ!|K
zvM?&mIQ+_#_DPe&ge?3E@(S}<T_ek06wJMk`AotR`dB3Syh{0}u3jkpb-(WG3CRMX
z3x#etMr(i<`&i;*g^!g!ma@@h&uf{0H-ye?l|F4<dO2TBrVVfUdN*XX5Bij5<W-b^
z*(IslB3b8Sy^ntb)CSl<>0&JfxF*0RADcOt1ZW*#i;uVX;y(WJ@wShx920!(^|6h^
zk&lmje9SRnLFQd~i|sz%qd1kO-<LA8z&E|4JLv~<_e17$xDI~eV}}o(S>DC|wZ{IG
z1C)=?eLRsWr(SWV4;nYV-XKrPi<#{9@r92srE-{R5Btsv?dyY>hi$*6RQvde((dc2
zEN5=}e0=L;KgYoBmDIX?FW@_&+&3rZfZ!i|{3w9YPJbu&i;vqjr+;JTWvO1v{3?|5
z<Ucq_1{DW=@H{?2kLUHa4j01QyZqZnDnNq(|F9Z4{`)9!tPZq|P0@!Dzz+}vFauZt
zoB(bBJHX=Vn$f)~J~~|=-sFGHwlv5;zdw@*;053rL*CleAirU+R_l?5f$pcgh&f$}
z10(}I^LcEk-d<@KpizLPd}08esc#(U&7cwEwEy-d0p<@YBWNZ$w3G<V0~{LQumCLr
z^xK~+3Gm0sHEni|KG-1t;Qf`QEN#O)uQCDE`*Z0)+t#)Uu<i3~-)2?(Ek&CEDnK?s
zWdH<d8{mWhCkAL2pnZUz0gegKAwb6fJpye2&?&&-0*(yOIY5_yV|&FB0lG4WojG3J
z<!(0#@)nbjN$UdQA$`+F1$a{&NFE*F$E|5zb#ad6n+E6`fL@y_0`v;dX-#?W0Q}7*
zFMi0FPn(AM;{qHn`S%MjxM99OGnro5vtgdU?Pi1l0Zs~VPJm$nZ7gwefYSq<5#SU_
zGAIB~nw%P7_z&7M2IHS5d;$ik*f}%c;X9ly%)tT93P3Lw+L6T_nSrBQk8hYC%9q-q
zPj`}T-duiefRWNbj4(XFi2B?*Oeh^ier+Zb;Pw9c_vMZDYt3OU!1)2j26{DD6`(pm
zO@Pr7JWuEtp-*(x=YaBpZ>>Cm_<{iABzURN@oaj&T~=$KCIq-pn5V4Lb_*8=xP<-v
zlN>Qsl)cxLUnX}a2Dm)H6#=dcFp2ULaK8yOgy?p-epcrlIcg*C-IJpW7hXfgl}rwB
zZGdM2Jj-YSt`Bf;fcpa65a32uX=#_K0d5j-n^1CY7I2HuTZPtr&~F!fhtMej_&+j6
zzEgq(cLlh+9^VsSnqYoyIgPwuO3vav5#WIU4@&SMq0@yv9N>}qIFAZAuUGmp0gnr%
zNd}YiV?Bedx&DYJ1I!da{FH!M0iG7X6P;wvri4%e1H2#Lxd3wmEDi966zTZ@F9ev!
z7PR!L=fwao1$tL~QGl1(F#{}+AUUrDc(oq$OGM6V6oUX^w<==Ng>siVmj4FeE<C|v
z;Vh|7HU1dALR`jn46r%Ca_R3Y0<2`;39u@_j&-@!0nS{m2d-Cp*WA=Fzb3$1)@?33
zqhWqsfJF`Syw;P`Fux(dM&U3fnLO0SL2pZdw*tH^ul5d~vLdrp@HV0Qc6Q+Wgst<g
zR3o=bwg>niz}Er3kq93K*co7#;Ew`)%$~whNsy^{w1;EervW|_&gb>~IwwoJ1AGzS
zOZK&m`lK+w%X<RsWxwuS@fCZ}oD47Owe~d3bGf%Kz_;w<0e%XwKfrgA)f;8i-v_vT
zP|Xj4KGMh!^a1wt4psczbD6y4=E|R?#{LxgOMt1p(!U1yEx_*_$F`UM5upF-+?&(1
z3$lZP8RUfXuK?VI`8xo2sR;g&AeVuK07c2FLkJ^;8KPl`Mj@;acBlt)KZGM75o+UV
zS1|V<SrxqNh1mF>)+bZN9fSx&{L?TWg}VR7A(A1uai0poe`GWWu{T@6ATedEafl`%
zN<x%|pwhl+sL$E82ysY=W}#NkHV<)Vh{HngBS<-Cvp%k>Z#$=kK9mMdEFmom(NYT2
zE<`#+s}OA^ST2-BQXyK`<2C|#dJY1(Pch{3|9K>6FPu6fx{e__g*aR|r-m35qH~BY
z66_kHB1Er{C-u-h)JOA<V97)D5PT#{J2!J@pY+io=!)%_5XTDW8REzHbM%};=7G}c
zRHHoq-P1cnpHQ18of4vNh~q+>5aPrT$A_R_l>Q-J+%dXI?}~mQIyTCWSeW7Jm4I|W
zh;`e?3=Bbhl0+srS(pU8b?>)1E{)kVr?Ig@oGDFqdWiMS^dfO^h_gbRE3Y#o#5nmw
z>(CHqGs9(>mF=s@IY;ge3&F(&_g+bdGn3LTBZLx+4F9)|$cCs4F{S~|Yk*vcD#}k1
zW)jsQYC`-s!lDSH86m{`A-0D&FGN1XB_S>ialSldY={d&Z9hi28W&=`FfSImpjXL+
z5En`<aSDAAi!HWx+?-;|@_#Frg_s!Pxe#+hT+Sv4abJl0LtGi+st~t@xIM%qW)<S5
z5I0i}LtGQ$q;GRKgqR%S+7Q==NX1puK5-JxUUnTTr!w2GQJ$3i8znM-+rcE%P2CcL
z=DW9sI8}V)(xR2o?g%j@#Iz99C*PIUgW=Q=cZRqt)N}8#jq-PgIH!^RJ?=drzN@OC
zJuuBV?hWzagc5deT5&%>9O7wt<%dE%9P<1lo(%Cwh(|*`8Gf9t9Au}5Shyrdr7lO#
z$3lHBd-=naPq5Y6rfKDS#IL!TA)cbF{+>B(bvc!mvsjtaGgQ=56-MpcGojY)KO16p
zsI83VP$rjTXuok|qdbGphj<~xiV!P9%%kjuSVkc)O}`Z4<q!+_=n(TMs60wjQSpj^
z%O|#eHN<NnXtDfyh};0JjUV5w>Y+wjz4qS_OF}FSu_)9lxWz(wW{3FxH}p)Hv%WV%
z42?8cF7Hk&5%S**u`0xtP#+Ip&7r`mSRZ0T$is$OMYfh5WJ7u#TkVlbDxYbO!D}Nc
zKg8-rc`jaFY?NoT&3yMawVlsfA>L*+j;+}mYI~1&Lu_LW&(}YXcqarm9e9gtpZ6pV
zXQv;8_)rS-c!ZBae9SHxVL*gW_?jW22yui@LwpwE=McZ>4uYK_zUJGpMMCTj@s;$E
zFND&!z?T$S(L50E3AN=0!CtvbZQH{AxqX7a4{;#Gw;}fPO;_c<V?XLsk$$I=m>MMZ
zxF00ikCGeDEc_(FI=#xTA%5dP9l?q4dx$?m6hah39HaztDCR&K>J{!^Y^*Q!uuuAT
z2p;j^e1Ji^#i(U>ptqkP*^!O1Mg%j`o!yG`jDp8ij^_VTm#3-OqZY`GkdV7U^grE>
z7r~D}TMH(kBMwqtp~M+8s4N*F6`@0fj>2gW;gAT;A~cN9C<0%tafGIFt4V|d^f>WF
zmXyo?r5)4FBODq*ML>kZBD9E*j?gMXNd&r*D2-4SVf)|uH(30f@ni?zt7W8BOa!z^
zD36e7oo>VS`YF>o(x1E!8s(`g<4d)bCla)e&`xk&8&QeDXq_S)9-&8sqa$>dyImr5
zW!=g<c8kzG!s+$)14l$SO5z+Tl+%n>+eg>s)-%E}5&A|rF2b=9Dk98nQ{G3S^@`9t
z0)J@By5eb+9~<R4%$~SHdsaC<!le~y{tK)hi{WE_t91VeCrJ5e7DCekCOIj>zzEky
zxGuuU5l)Fv6`?x9sSyT67#88&2&b`-9D93JoXsajTCZ|egojq=&WtcP!V{}<tmiks
z$#EJ(b?A@?R7mo>bKLlvp%Knuna9`gq6TKTq#Y4qWQ2Jw%c%z*#fpuP6F&dbnvHPH
zgqq3-bxz6n(`TxH=w#+ryQ+o-h;VU)OCpSs_!mUf3FEv7`AE+z&W|uQ0=<g;@NJIY
z9r_335|8?y@ew9OxG=(qmip(>Q#z(;k3=2dMG>sVdFlf%jc^%rh;Vg;i4iW3a8-mG
z%F5SID5Vk96_l~Yd0tlv;0JLME2^i{YD=2*jc(~{SowV_CP&&JhxOTVO^)<><`ChY
z2-70m7~!S}cSM*H;buPTJ9V2h+@l@Sw?z80c&pI1TXgc<<ra@A?f5b~HNxGIHmSNZ
z!d(%_Ik+lUk+&&qbtkayjc{Lt2O>Nusp!~*IovOp0`?HoMwlMqv3hxXr0%&wX%$0N
zFf*sc7bz1y5n%><pH$|Y2+u`&O+7QhQvzm1csjx}yq?S4Il1y#c1Be9ZJeLY=5AWe
zUlo%-H^TE2&QZ>S2roo>G5%77mj%od`XYq^Y4YbspiL&h>k(d&Tdz`9-_UNOUW-uK
zI8V&Gf40zH=Y{Ou3o{$CtrtgF5~0WnkFk_FMA#f*ixhZSgq0EAj1UbhUoM;#k^W|N
zX{#4{tJuvWtQG$12(2^P2^g<+5jL`0*%fqSwLZdz2n2P(O_cmGJvpbkq;dYO2ye6b
z5*0s1*cxFQ+k!&@N396&a@>gUL4^0%!8@n97NcNr2jP9GWXc;kAF}?JW<H{D?#jN?
zvHW9x0wQfS#2_#JD*7`DK!m*<a5z>B&+epP&(3@qVHaPJ{~%kD*&X4FNSm(JOeiJ2
zxmS8m1UB4Pl&)TBw&OPu_C?qq;kyXmN(blQ!|uZ|`H@cL-*Y@<^9{*<_q2AX{sW^u
zo%vCs&F`drxH0C>5q^pAYlPoe+6aG0X~*`_hHx~8W2%D@{*3S!n|MS8<Nqz0FrR-T
z{1f4&&S`Y4BA-6rY9kaP?dpdYBbza-82w|M5W|k)#Aq9%T?{uyB1Sq!s~BFayD;aR
zEn@gFf*4_pC`Qv5hs20uBx5v+(KzN53v}__AVxz0JOF#~qRcIg^W1bMze$XZEvk4B
ziI{-Q$Ly+RF%FIOI8WR>)|(x~ybj~D!U}?t7^N}xwMx^;TUm_VqqDqP#^7J%2+CtE
z30#kGG22?oNvUWP>-n}4iWq~}jbX5Tj1Do5lQ<oP9uecn7@Y(k9;0)NI={YMVswp>
zIisd)vZ7mz?lERG&M#}6-_|%!=1~%#y{~7C9x*sMJX$FKB}9BojALWH_^J@vCq}Or
zy<^ZFAHTe81vXY+x%KVJG@~6KqaTxxuhDKNztb!C6JrdBF)zl8F;0pxFh)Mc`7ut8
zaSGoh##u2=jWH<Js=w3O*Ivoc$>C{ig8f=KL;cbjF)sK_pB6te#`SHr{}ZmNhQt^V
zV`Pl8*)%cEiM94@7;8`Rxp7sxp{kl(UOHU(1iU*c*2}SMjLKN+vN96${0-?`jH+0#
ziAKk$j`eDShtO+ceKLL7*2)8o^$z|RiNHAL#h}SO!C01x?HglCjBzo>vl3!l6JtV*
z3u8=-ae0i@Dt%FmOIU^&7sqIM));b_+-{QpzI~ecUnWmEZ)W8cF|Ld;DaO=3+DIvX
zQO#8`mK{~abs6b@<mqKi^1L-U#<ekSj&Vzj>sTQ%Zj5nLj2kF;bM+r=`!&gvc59Mf
z)v4;<)>UkD(gP}eD`lWb{&osOvf{QFcm9?kn9wDC@n4y#490jo#uG8_Vv%CpAL9Ww
z+{lW1V%!^JZ(5gXnmmHGRi~@+`(kZmMdpJs9*TLi9G5rAKg`Ijs~(B*sJs_3nS2T*
zZ8|HeNq&X|$(+HqSeSV>#_SkR#+WI=r(!%UfVXB*5}M=*o~h^1y?NX!JtxL<G3K(L
zwo0?5p0B^Va7p@wddwPrDaOk&K8x{rjQKHMiLp7x7D{G}*J7-Qu`<T%?DehEi()K}
zu^`667;K35jH>^N4DfN!IaREjB`isdH`s!IWj4_j?O&N?F}60zFBi^PEvo-$l4sMr
z8DkY&oPD1|O;g<jEFMd;HpaRb8#q?PSTDt9&Wy>{Ctw_wfzdXJT#@rujJGMDG2Z7>
zq_OzKZBntU<ac7c%ii=!Wu{Hllv$O$wLQiM?9_K?|34qb_=tB$ReloVV?OKC(X2pH
zaxOoZ*%9N@7-vi@s|yydXuUJWt{A_?_?-h$j4xt*8)JXWlXpChgl{MY<4eC{>$7nW
z>VG1C&7q@7{x((4cGr!2Ftd+OoKRBd#pt^j-^chd#!u1^buD;6@DD<-db;vwcDg3{
zU)fE1>bm`fV-7Un#W!MY{1M~d81z5S_B|Nm&lrEn8?oyCrf^D){X<DUm?5r>QIMLf
z6NX}}l};?1m4uzd+evIq!b!qSVpI~DBu@~-OH%&PEeSt~AgR|2ZIcL-h>|ExqAZCx
ziDVMZiGzxi(8fX=B+)Pl4lLw15)J`_O_FGu#3A*ZW=Yf?oaEi7KCC=c_=nZsZIMKY
zV0ysdh}1F(`crL_gi0bU{8sfb%adp=m_CS@6|XbXX$WUr2R#P1OQOA$zk|@jg?1F$
zNho!^odt9e$~WcozIzf!B+);K6OwwBbfnPUNgS0#k0g$k;ITq^x2J$(lBnpFX0Sqn
zPnM;72^hL6-A6!Qp^R``62}YfSI?oo@x&wsBr#0Na8eQj36eN7iIashsJ?8cBynmz
z9@@VAG{L9WbGWRS+E-6m2Q%j+h6sPC(6j5~)H#+sCkZMu8B@P+62s;0i267q1<>f7
z6M!tWJxSCgQJK{9fn0r@s-)H=)4##!B*r9hZxZ(<ab6PnBrZ?l3f@iXt<MQbTqt0y
z&<m0nm&AC%JZ1b=Z+*VwqNLWPTp~GNoYYEbs#5s}y-Nk3HmCBkBqk>Hy8hm-RisxY
zaa9txCUIL5lahL_cuf-Aqx?@&?@=;%HRblXOjWy*$w^$B#C1trPnk^OCW(B5P~N4>
zzTcgSo0IsUd-|3n7_757d_{JtI8(iyMV+3Rn#3Ifh^H_UIbU-pGpx?umBih0>z;c4
zwECFb?z}&V2a=eR#B)hJD77~|iN}(7sJ;##PVy9t?p%*1(XMH}ZUy>y5>JR=Je|~=
z>@$*hO5!}3#7tJg!3>vmHLG%U`t4asz0%=S_L(F;->n@&KAXgB!CY%|^*2|ZyEKV6
zk~|iH7m}El#EVJ1n#5~Kyp+U>Kh(=f%unK$LE8S7W;U--ayDkB9-SWVRuQ}|IV?zG
zVG?BO2sDKf=HeuX7qOCm)l9y~5-BS649nQTlh~N#X$7oE;)dSol}Wsr1g*$ejjJf(
zGc#+GSeL|V!E1!_2La@-Ph!uq%my~Gk>#X<n1Fm1Z?m-BTS;t5Y7Ys0u58_-nCsJ2
ztE9Fi@lF!QrEq)-?<VnH5}i^wJcaj@*q+2cN&L%(PU6EPeoW%0BtA;w<0SSc@m&(1
zB(Wojy-964`>99~1!)gOq8@)PU}qA$>N&dwd?EBp4w&L5`l}?q7?I_5L3Q@)B)(xS
zZOBk9wlAq2+VJ{T0H5-`ya?auha?Upv9m)p{|zy_lm4H`;~lC=e@@~LsbrSq7ryNM
zmA?x8Es5U+kYjEgbC7)}sht(D2L6)5{GG($rupiodD7Y>3Q06e>7H1msH7035T{_K
zV5M|-4pOjFa8i1M+fV6Zo32FmQb?pgD?#c-Ntv8Sv1lTDOH=J6Dokk?2L#EKwxK0%
zoI=UsTq=bIDKt#+lzK&-J#C}<2#nJtg{G455TS#%=IB$gc?yT}L5!9Hm#=M^PYR_e
zl&8=-g|gKDEDF*o9{SF=Olh+~+9bCUKzmdMzuB8>lY&ZthO)H6<)4DtG3i;cT?*8H
zwiimz3B-)hA%%_-lXz6O%Fa>=T~g>O;DG!Aq+1HzQ#c}}m-&3hBU3m^?)FaUuG)h_
zwJ%eV!qI$-6pl&#&$|e<H^<gv`qX8dUMWoLmnL8)eI$pzLa7PwmqPy(eof)G6i!It
z#1x)OVQvZoQaCAvYf_k;!oU<xPT{;1@+q8>!l@~oo5JuE2BmOX3TLG-B&B`SoSxFF
zzcX33l-@F+a;*D~%E2kE45TNMCz|HZPGM*Y!%}E3Rywt9^+)O)zT=Kcs&Nci6pu(@
zWC~p2R;4g1g-i;SDeycR^(}{ZRa6{h`RI;S?`E<&iN>vY8bNVmyC#LvEDRNiR@Imk
zc;t$F;*!0Y^HUg`!lfx(mcj+B!(G|&DNIO#W<ukHR(_eikY!HkFA>eanB?LVKDo5@
zB`Liy<c21PIBHWTrf_)*lTt{(mA*onfa~-t1=M}Qu1cZr-x->>{fF63$y}Y%+Ay{h
zO`)z$;kp#=W5H6mK7|`nxIKkCQn)dNn^L$rg<DcQIl{lJYGuox{nB;6d%Kl2FOGI^
zOM&~>v~rx1!qgP*PT`)E)(+jt_IfpQS4yiFTGK1$$jYymluVN%F`s)=nA1X^ed9&P
z#Sf(LU<yyBFf)aRC{!t0m0(5+kEHOZB$=MV%adAjq@~u8^sy8kPw8(f-Q)1$@SaGE
zpIa&9Qz^_!;h7YkWfu@f#7|2mbdf<tE}zJ^o-Ld?jI*SK3r~I>o=@Qg_HlM1rb^+(
z6jrA2W(qIy(J3rWVF_g^g;#hjD_J1PUlsaVN;}73wy#T&U{%}nLJkqkVNZ^c$yt;F
zy-yP?W&gdfbXf|^rA^;pyR1mlhLg9bUS7dk6?3%@SEg5`usVgeQh1wfox<7_)~B#R
z9#QASc%5KAdZU2NDQpq2DTS~4rTMb7G-I~Bc+zmI+<IT=Hui1-|3}q#KuJ+N|4RlD
zW@mQdPFVKfL(ch*3`)*P!tJr_9%I0qGv<VWs02|FbB-7h!HgJCK#-h_D1wMc^7rZD
zd++`K@6D@MU0q#WT~%E()6+A<eX2G27BF)f-~Z+GX|IapUt9NoE4|;>#fG~0p)NMn
z1wWK@_qjejyOE)CRS}nfHq+5{v8OJ66lq%p?yQS#b+Ns!TH57~#2pk>tTw#y9)FiG
zQ2uUOSj_TMUHn`Ze+d1Ty7;v&ey`x+73Obsu~&-R%9xhTNNmNZ+gBHVN*J$OK52hl
z9AFpklyaU9UonX%bY_yj>!O;5>KYE!#Xn3qZ>JB}#nHMrRu}(r#=T$0JxE6wU|yD6
zI(aE|oTH<{n!2ny!8qhj%M}^IN*XF_sG|Mvv3^xy;DdWso#d&Zp{9lo8aisIMK%p-
z4fQnC)^M5zTZ5yaj>ga6RMs>kG(7Ttx~}%W1vlD3*O1g;YAR<M+W+=OTAJGMNeVx5
zPJ|act_Dv-pdr+_F<vo${)X}_U+wgz_>QUGbBr{cEE4C{az;auh9(-CYN)TFfp9hw
z$m@A%XsCe}TfAWs`MCz$SVPr!)gm*arJ0828h5Rujqtb7&`J<Gv8ARSlyD9FXi1ur
zt1V6RTxokvWfjV4C!?S{cwx+9Ck>r7jMZ?ahGGpR6ry36hAtYqYUrt<mx%4Ap}U42
z8v4JhKGnq-qlO>9ug2J0Lmv(OSf$}~+Lk+kHExv$9o?Z#8UMpbO6fOc++{jI!$1v#
zH4M>kVKA97!&S0D8W@C}3rxQ>*TL}$87`et_-G9yD7jPBks3zH5coxIW;5zArh?~u
zq{nF(uVJ$EK0(7oKIfI%QcXPqF4J&ZQ93IWs?G2_xjUNjb3&y2ytL&-X@R<>Gt@cO
zaF&KuNqmvS*&5E#FjB`T9p`G8%BV=dOyE2X=WF24;%g>wfgl%axP%fkTqMOZvzWEt
zeUZOZ!(|$lYxqFJ<r=Qg@Q{W@8m{E<sicPK8m{I5HQc1(W)0WUi8Q_y-=N`JGd^g>
zr&{s#8i+Ks;%ORg)X*-MBSVcdbK|Y}77e#*xKqPj9IS@hHQd24E+~d3qjDEpsulSO
z=UDOER=n1V_gV2h8t&CFTf-a;_i4Ca!wd~GHOxAcU$Q2DsvT3pOQUjBU>4)kR-%sg
zD$LdJfQI=R$n&5EDnN#LGTt-nILN8u0u2l41v|caRE|2c;lrF<8eY)wqQ<SQSghem
z4Npn)$22@n{cSatB_fsxi%(P#pVsh<hUYn1M&+IrBTy#g6Fw(!i5;`k)pq=nhL<%g
z)$pd+?G+8LYIse0q2^SE@O2Fbq^~!`M0C(w8s65hj8iz5dq=~&8r~B%IDCrbFxf95
zt@pn0P(5<4(6Ca&j~af`@S%o}G<>IFt%i>^e4^nC4XY`(Uxp1o)$o~y&o$7PO`MoI
zP~a-2AV*o|OAT*L%6y|?jfSr@d|hEu_RayaBV|A*{+1CkDo1VCX;`mei-xVj`Mrh>
z8aB#U$b7}O`QHbne_-~ol>0UbeY2R3#cdk4YuLpMreTK=DSW5c@Y$6mRFClF823~N
zq_#h6_(j9tOxGHI)$p5!eH#AMuva7ucH-X!p?ZHX8;nw6MicF4RvBMD-H8ip8XVB@
zmqf@xCWp3@IEq-t{*Q*k%oPb#PT*e+M>HJQa6-dT4b<eA4DfX)W)ljes{b)pC-6?c
z3=axt6%9xPLCY!$R8Ob~Azn3sY6%b_10h4VhE%cNS_zz*K<kZFYA0YM)Z{&Meb3Vp
zsFOh51T<--Q`7_5L;}yw%<^cpCQnGpB)dR<D*-!!q6F$E;E05J0^J0>1RlRXpGqJt
zls6{i`~-po!UTx3iZDu`V{r+Q>uUy-mJv=W`IQqlVDAaMmcZ)?G)$mT0+%OnMFNef
zd;)_L7?MEK1ezt#C4sI9G*6&~DBLlDmI<^<plt%}68O=HTPM&afuCn&k2|sH#-kQw
zs~;$|XInS!kU(!Yo;@@B$Pf8CXDicnN}zKBYY%0LIq(C8k_7G;QJCPyH5O%;)-QBR
zpnC#+6X=&fj|6%qaDH*-bP7MeyjKF9#+LUMyl%CkuV-ZY2!%3dS;c2ic{g5sT7h`~
z1O_B9FahF}Nrr>R^MgbmDrxo44NYKJ0=WbxC%C5+BN7;&z=Q-wCNL_2(X<jHWJHE4
zP3fZ`B^Yb+V-q-&^hSkowAdp4a3oKB$6yr$Z@-tHm_TU)S=w`<8tf!7b(vV~evYnE
z;r4Brd;*08rZSl)P@ce)1kOs}Y~hI$_^4}U(DMAyqO!q@vOP~LoI_<6WY4897G;w)
zyAx;a`Aq%^T%5oq30#=KMG1V|xWLgp>Belx(H%XJzchhsh7~SL;E~euvGofL8x*c@
zUs(2B{>lWdN?>*Za}u~(I-Qoljbu*X+60!l@pVGHA%W|~o0PWRjhoj9es|-W61X{m
z=?UDE;HwR|m0nBW&IE1~Bhv!6OIzBXei=9*$C$rMD3oxwAYU%aSM}n16L{*O?0pH`
zpTK>^86GndSUoZ`D}gOtGxXZb1mAz@&LLk-w!aE<6L^4ep1>0cJea_|1QsRma02ra
z@V&UL7cWepSD(y+1ZV`hd)C;@L*jy=Ui{7B!XpVhn!sX_Nlo@F%TMv*$3*8P0!d-3
zC#h8e&nNIg0#7IK4E-`B^BkvS0vvn8hqBa=$mcy3ocw(L#ROhT;N=8f;k>93Y#Wkc
z?^K&(e3cGbp5MGRLz`UZ#cw3Alu1BGZJk>*@m2!ACh%JVZ!@tZ@Es>Y0`Dg99{rfW
zC-j17^+5tF*v0Yu`w1+U1Tx1{xn*SnA13%tXh3}Rl=1-`3LlAWU)?#L#ZMFXEP*c*
z_$q<ty!i73zM!2C=gGWE#FDsL_)k<-Gx2M|iL8;@ZzN(@N=M&H6`i;)f%OS&Phf{o
zzE9wX1U4nGp`z_ZLGIX=-%JlCuvJ90yDB{MK%TSyi5daTyG@2bgnjKyU=Nc<0=p8}
z%`x^?hT7=G9Mn&YI{LAfqEu<CCh{*b5UNdlFMW}~u>_7M@J9msq~CuM_%nh13H)85
z&jCRW3j9mppE4qLbV!OE6y+c0L{8vH0+p7xJt{ia?@%z?7f#lm5Y8$(UYc0`UjnD-
zD!o_I`L>`MPGud-I;*TwBNbQGQB6m69WRJeYU-$=<H%q6y9VSqgjzZV{n((qv0^?=
zM;#p{I=bknt3#tq9SwCPbm%%#I(!|5j-(D-hofWmndPPqOZsA`l=;}U1}FP<b#+dm
zOi#zS<Ku}?`9Mb~dKT%3bZ$`#>gmYnDhH;89;IRq_PRdGybRj<LZrY3I!;P%q@%Hp
zPC{>@bDJgF>S(8<nFwjFqXl)Vp~k|arH(tgW?Je0i^fi=xV4TpIv$v#vgL@B3fJ~J
zW)3fO)X{;%nVFrMis{Oens*kNH>cua>F&Q1g|0ff=@_76ppNc3dI-I*j-EPtk$GnW
z3jDTxS#R;e{8ZdW$LYFq-x)MQ|Nm*lVn1ovpT0YuS0~UPRQwOpF_fy_SUy<#eXmbu
zh_Jn@7l!E=uH)rYJVGc}Z)x!NH+gc7*11g)p@GOyC+@L2_LEYh_)K=EW4w+DI-b<=
zl#YoyN_AYN<7ypQ9c4Ps)^U!GNjg4F#pODt=*a1qtRqhw7IFn$U3U@TB`e|1RD2>8
z$2!i^)pZE3i&!MW%ZYP!Ox1Crj*E1hr^EAO9_Q03emumFFVJ!Gn8GD~On9-5OLSbW
z;|d*@>X<L|%LL)|43Fu4e5I}~hnD&A=VJ<N{+J(MqvKloh&Iu2osR42Qyq8exIxD>
z9k=SZO~;MW>Slp#eiJ+L<8{8eOu9vgFOMng^W!P~)3<XX1WGYl=`J02>-cF%`aT`g
zh3#G)Mf3A)dyf=}gh5OSM|!^uWQNc=z}Y(H=vbuVVI6ZBQ99;vAUYltoc!#XZ3!3X
zSg7M6X~^RI+9jlut+UiVqT^8=k8?y)T&&~bAYLNOkI_Nha^r%SYRq~j|3rm^KZh5d
z*71yvH9EefJ9Ip!<6Rx^>3E)VT*n(amg;y>_+Mh!=y*hgbNH|5cvV+dp0og!d5v?B
z3}Xr(1o8KQ8tj1}epAO=I^Gsnl8491fxM%mR;XGn)A7EJRXV=Vv0TRoIzC|(=~%(}
zC=4G8vQiZ26~>hRk@WJhKuY*bsy?q6QE8~gctsem*72o|uNZq$MG5zY>W+y`z7e1P
zUZcP+sQh<2*6P@)W0#I~I@ashs$-ju?{#d@u}Q~fDi*{Wb^M@%-O=5Thsx;`#bZl_
zd|H^J+g_o`4o;jPW`xk8b!r5=b?nixSI6%<eq^YyuQ2{qn17ad_=VFdjNc98;%-Vw
z9>3`zzAudb(82NU)4`ZwFRWrP|0(i`9}t!P(s5A7-#QL4-x|;i{G;Qrj;aQ#8Tgl3
zT4kF;WdoyUWsmAOuH%HR@M8i?yA}S^af+c5*Asf7l7VGCRFWa&!K7NnK(C=0N?>NL
zZYWW;44i7<=8{4U15Te@O+)2gwykYo)PH$izts`sG=b!g=VlA*^6W8Tz%Y<Bu=_w>
zH`KXi(TI#`z%r0B;8ScA-`Ka@rdR{60nY&2Zts(67{&cc3PV<xv7^91tCgi}J9cn}
zRVwWpsAu3)1D_el7%1WpB$d@S(7?cD1}<k`1{xX|Y+#6iMg|%i=whI&fhGo;8fa~x
zje%wcnj2_I`3C4vPOcV)$|RiKbSRU_$tln+irX4!XP|?Dj>5pa#Q1D4c-t;HMpq{T
zoedNVg>oq5<YXx^&=%!%ZZ`wn4V-S^3<Et3^rVpuHHpYczthVU(p#GMF;uo3A1NVy
zsjbY80R}h?`x)pjJQqprKm&seusJzZYKr2a28J1YrjIEGh8q}RV7!3|21e2~2F4mH
zaZw=U6ON|Q#BOZ9B#O^8Fiwh$WJ+5e#S;yb8r<)PNzyxGGHa+jz<EarIRldotdHUX
z$Jj;1DkC;;fZ3AGdC;V>fwK%uHE^DRvkjcXaO#rdK&Uw<#kn#Ta;oHS-~s~|8>p3z
zIr|RK=3R0Z8n{S=Q!<N}a9sV<mrAR8X*GSWFmR=ThYdVp;3@-G8@R*3od&KkaIJwG
z4cuhlIs?~BlN$^*t(d7!=GD&Wc$(0O+-%?$1GiCmp^)uXK{zOC%Lz-H3`@snr{lW}
z+-=}N1M>__H*k-EnVb&d{d*0(z9m1yP|WukxL*+B6v7*7LLMCcYy)!)%oUT8@&Lo8
zTaFf(mX4X{7f7O*Z(xCeg$5onxc5xOBoAu-nDFo<$jEurz+wY08hFXTV+NKOc-p`-
zoDTEzj~jTxz>@|TmTdTxs7H@;61|;P`aCOE{WcvxZ{Rt>sQ{DG3!)YApVINm#0|V9
z(fF!?*9<J>G^rO?trx#8$Qx3{B7>o0y_m%}g|5%ZzHQ(g1MdpM-SxP44#VojXUnmq
zUi`j<*>Zs&7+Armn2}v+;A1AGgZU2)yl`4cvwiuGI79d4zy6?v#7_)<$|fN4xq(#%
z&P-w)7ZnYxHee^=B=MzzuQ(SB{Au881K$|<!N4X1YYcpA;5!3rCAVBSIK!+mcwo9(
z-|}@#n0?DPFoq3$&uE#QWswJqgc}9&j&HMpEzDpB_88b|V4Hy>_2QkJPz$mj){D0r
z*kR!3R)r<+=j$BE@2aPayo(7f6SMduXPkjw4g5wP#{7-tzevM)ewH_1lrUyZzD*|H
zYp4^)9|qEIar+!t#WYAbG!ySPaDbB{iBpsK%fLYcM-3b^@V9|O1`adfGyhZnHR@{c
z&oz18&J&^JBTRj(%Pt?Bxh$im^Kk<w3{*;@auR#D<SG9@8bs7MC8>Ixo{6g@Q8kHb
zNmNhb$&6a=cwtVK0&65yTCORO9TDg8%eVR3Nt~8cy)Zx5Nuq8NMiR*+I4CWNgz!@`
zi@M;KNL!u@NHmkMlIpy`S{5(el6RBvlIWI1_astD_(?QQqDc~ED@%hU>Lrm$aw`-f
zq3|w%^mJ048W#4?6(#Z0KbZw5@(q%xpG2-pj@~2#I5f68P#~p|&`BiTG>K+Ov`eCW
z63vrnK{-jZPO5Vv8CoXseZK;cpU3C8$Ux-xDY-UDw51N?%2jb*wnGvfljxj8F>RI0
zP1w+&lPGgyS$<_ECVxp%MN}85rIKBfYPqA%vw6ZEN%Ulqrc0t%61|h?n?%1PUhS&-
z>XXFjN!&R!!&WSwA>*Z3_R>Fz0Z9y$j<|@y6$vuXL4$;+-naRojFVwyBa#@I#4s7o
zaA9Uh{E&&Kbt;Uacak77S|F9-t^L@fIyH0oh{GSB#DpYXBU_E)iAipN#H~r(mPD3a
zBynkyyB0BtmgIVV66Yi_If(-ql>w$Ckx!zKMC~Fq)60`+TBPW`isCqlyRXQfmBhr^
zSt2B!o5a*4E=c0SB+g6X{3NayW;SFkj|oNbMM+$o#3i(Iy?8-UOvu{T1X*1aU!KGj
zv~UtPC2?gES0!;Bg(Pux5_^hb)Q_)8qGo;7>e{3_pYrHlUkSfKiqn!{no^l?Wl3rM
z_~s-onv&x|Wp3f{WeEP_{Ow8Hk;H>Z%%ew=+>nX;lDMD4Nn&~ubL+?VCe>y9JtB=Z
zWOvuqkDr{9qpCBKn3=?j_2aqH<5|4Lrbj4bidr8g=Ny_>RC<6hUq9yYY5jP95(|=e
zhE0-Kn8ZU#JeI@~k+3L<hm&|DiJj8wQ85}VvsjR$^_7*J2Jz!b{uTjGCo!Ud8vc_>
zJe5St2Jwe~=UL<!iBkdAK9|JvNxYoID@nW{j(CYqX`pys6oZiME@5WF#~Q@1iZ4if
zw?X`R5^p52G>JEp_*B$;D~Y$0Sf0cO970k2P7?1Wu`G#qrFK*A91TvhFb3WiIUEiL
zvLcBs)GdjRgl#3`iaJlpvFhU_KH=18JBbYsi5jf>OxQjbNKG`vtC{>6dlm{7cbVer
zBzK13c~b@OH_Rb|tV!bAB)&^xZ4$?mIFZD<B-SVKM-uxu*^}6i#MUIXC9yH7E|r;=
zHYM=`^AA)SylQ)9S9$qnCb9Y1Eizdy{voqHi5*G&$jrlmaANA};(50qyEsz@<w)7X
zb5oxjkA<UiKPT}Eb1x^<=-jVK^hf*~gQr_z5@O<H{^^Xu?@~(!&f*!n)P?k)N$lqo
zWAabpP!j(naZnUE+BNexbI8CnqmB!+Jl7mf;@>2WO6`#(u01w|`rI=zQ!+HoOma+8
z#JJ5FW{m%mI7Q47nW$u<vI*OSW1@<QswV21&`eY_xhWU5O`K+;hKZUcPBpRAF6KH3
zvtlh%-2#;D$rHZ`G1p-0nBd|t^9kiYfp`Vt<!6>BOqeFNBGye9(j;ke!*)3>oc=Cf
zr%_>S?}BB5#vzYu!ZYEU2u!3*m65n)LCAxPnP;D+R`x=nGw+RGn@^jlXCh;w$V3Cu
zO)$IGH!)*kZfQP8eAvN4LsKQ;ZEN#{jRZfXVNAS<iKZr+nP_g}924i7XkntIiNPj@
zm}q69wTbQ~dYEWqqOFNy6D7n4<lKgFI}`0qbTHA;L}wFJ=DUN1PNq8P&=FLU#it+4
z(k4HZX1bW@YN8vDVVQ&b^Gw<s9?Ei|czNxjo+f&kIKxC=6TMCJF~N%s>ei-Ve7Z<u
zW`2Etp0L5TOg|F?$Y6ra`<uA7ae>cM2AR00RiV=Qe5Y3G1jpbUYGRm)i6%--ZvDat
z6K9(E<Hy2C6Qk&H6Av!S-_odX%Baj}y10&NMU_Y#D^*<W=WxcE;3I(XCMF0%d_coE
zOYg_!c@qT_WhN$3Lz8c$#tRx1sPkm8193*keP@@Kn}|)EWnzknY3uUSFDk#SVNB%F
zhB4)zZKB=49GRz@IM2i!6LU?RPiZFZFmb1e3r$>P;yM%8o4DA-B_=L6aRp;_dD}}(
zTqekkSF3p7;q=d3Y2xjM@l__SW|RKv4)GdVV0(V-uEMo~kgY+(LZ64TH&7oFx0txq
z#FK~fH;Sm6P241LMYd~(t69vBh~H-7cA=M@_}?lV*K+S-0GpU8^yvauZ_D4y@a|K%
zhpud0sMkMppNab=+PQi;LwG3jn}+c$6Q7|lo7xV@RF~z-2WWOq921Y4So~jpo{0sV
z4m7(c_FF@>sQ8eH8=4gsnV>XkMaskG$(#2qyC!9^iN{SmAssy?{Vrhu%Q`9_w>@d%
zS*d!;#M4sy3<IxXU9obbxL==4-#vvFOuQ&L;gE@!OuTI3PZRr1ykg>26JOE4CSEh~
zx`_`>d}QJck@=p9Wef}xZ<=_E<1+D1#dsN7%)ob6E+TxF(`uPow0xh*M4mc*AQ8UY
z#HHKS<sa>{!o*7U@<9m~oXPpI2|iN%(!|I{af3$jCni3n^-OeW6i*$V`&?9AC6LTt
z2(nsW={l7(&S?~XV`7bo?>S{mKK;jcCe|~*)hd5)Rf}E^W!DPxI-0I~jz{ec`Cvx=
z`T5z6CVnun+r%Cdn@nuxaE7FB?33drgky8ETbRwH;Wm@sBML~|E=B6FLy(;&c2!UY
z&dmO3;wKZonb>RMuUXljP5i>}YZMdj*R1fX;4J>!pT9#d{LaMkc77ixEQJ)6k=}87
z-d&*XfDW*^i2d8d!;QF;L7m<BXl7}nm{-DUW@jHM$^B#Eu!(<795MOW8jUO*HF3;D
zEeoewI4*vvwKHGY!U@6uGjWO~>;D27Fkd!OH!oEzRJBxqb>dx;h3Xb+Sg2{K%UAl2
zNuEL)^e7P4ws4vS-$G!aj)l4wEDN>;%|gP0VIgTj7vU7UdA`bx7x&2w9GL#OQB1#^
z7KqUGjs@3JPrI&tCjVcf*t1krq%4Gu)dN;i_)zlu9r@5g#zK*W$U@rU*L~5saXeC1
zgtqj~ut|Lj2Y)Lx5aqwvRj55*J*j~di8r>;#NxM?(ZfPh3(YKau+Y&$a|<mjw6f6J
z!r~#BmKL7Sv%hsNaInn>WZICeZlSG(c7m`Mj)IR%I{#j1FM1N;5IR{XwopQqEU+(9
zPVCHgsTg}#OFgz=!*1-ZMlejq)ssWEFxtWx3%xD$u`tBKPzz@_j!(DH-@*V3XNdBB
zE%dW+*&fx={vCPhFwnx16NSMR-aAqtGDz5nu$DZ-C^OCtw=jbG{9aHGI(OwqS{Nk<
zacZ)Bm*O02;Y<sq7P1z`Sr~6&f`w^~W6Jqvr?MU)T{cnlXR*w}<3lp~u0qbj1C8TJ
z7G7wqVrDWOy-Qh)u-w8F3ten<wGmU38pW4Vc?)N8Xco?~aIO$97C6<yg@SzBI6lw9
z`HZw#*$XTjTAFtUqzNx#fbpYD<+-*0<S!9U3VgF&`Q;X_uyCD)>n&Vq;VP-Rnrh6+
zl41E9WqQBzYb;zVF4#IMe5!U4Z)R`c=q&88u+zeg7H+ces>M%{;ARWASa{IFJPWs4
zxXr?J3-?&K-NGFf?zC{1r7lEQypSjSv9Y>{y<7U?B`9&idoA2&VW!3FB6YiQzlADI
z;u#FEdU45=-0au$RBX0|IhMN7m@C=_P1KD!>7+bhfntfwx3GXlW)NCfXyG9Xk1{MR
zEE2H~TX;kewqh?`o5X!y&rc|d9~0uFCh-z_Q0}ByO9h^^@DzPy;YFILN&K{hXUIt-
z*N=IfPoC#2JTGn8HE&FK7e>i1S$LUYJTy(b%j_&6^?XIfGP6nix`j6^d}iTu3rj7$
zY2jVQp@p{?Zw<ID3LGql^IDUbJ-#DW;`RJ83-4Q4Y2iZ)%Po9hVTJTd9lmK2Q}dIT
z{nTN@<@t{+d}85K3m=Oae`ykPEVY^{9zr%*W#J18>nyCdu-d|x7QUmS>&IVN_*%q%
zEASf&Yv`0FF%OP{khc{lExFbL`=uR<n#SK-*kEC^g)J5~GIX0N<{v}?Z(Hd4O)?zz
zzSY7u@x^uqb3Mhz<u4+%61Cc8VYdaxhHGOF9ctk}3#ZuliHXj_pBDC8_(jD2W?`>|
zU&Y95NQ?b$sXMQIQu_zfLerQBZ>1R(6n?<MUltx~8Xsedv+%ct!xsMKd}$gVVsJKy
z|FJ+LQxx&Ln#M;suO;f}Rw75m3q+2K5Xw2hSzkXUQprYT8+C1HHmcaDYNMu&S~m8L
z$W^oP@c2S?Tg@pV6kfwtH}#C?Q*G3?ahi=fHr{O-53W>TM+_1!4^pMAO=I?zU_%?G
zG&gK@+e;0Tw(6J6#E;U>&0@=jZL29m3J2@iNZDv@t7+of2yAYd18lxVhtNhn8yOoB
z)o7-Cm$sD`loN%&zQ|!1(4IUfv!RVfwhG0THX2K9bJ3&;CD<xlo7v#4Ww#gA^klJx
z@DSm$ZL5<yEY4H0Ha6PYXlJ9njm|cTZFI1eJ30yMD3B6J;lb`oL=HzvJ8&Q>^V=#D
zzDi|mbhpvNMo$~PY}{<)78|{7^szC)#zY&ZbG+QoY-5;>Gi>y=(T@h%SY?2Xfj0UJ
zenzvH_lARr?@?KLh>d@X3WEib&gL(T$?!USI6D<-BW#QmWEAb+Eav8)|Ed>8+u(zK
zGLMz2Gi{8s!R;k;Pb(U4gAez4P+F;ttc{CpTw<fl=5|C(wQ-(}oXwBfq1?t4TkRj9
zoVyzo^0vA$EZ88<g~79S=VSWF#<8xMvus=-_eU@B6xJ+0$Huufh_E3c2XelR3u$w*
z+2EsUQYflXPj%KK4<G$pYU45+SJ}AQ#^pAyV0diHUuolyTk=;8%Y4-*(;&(|QnQH6
z*Vwq$27ABJR`<x)*|@>R?yiOFshIRg$S$VIz!x`*Z(^ME$<*1Wo_XDB<2D<Q*m%^&
z?KbYP@qmp7ZQLo$_t?0XAw)U0+72<@MzT+astz1l_DEl~1K~a!vu(_=alefjOa)?@
znbfCofyXRCIHFMtvmZB$=h`URTiDzz-rBw}&&GUl?iG8~33`Ezg*G0t)k85B7jZI*
zlC&X_fj<>^kiM9)XX7~=-)zb+vGKUr{}~$;_=JroMQ7qC)p*Lr(_$8S_TOglvo^T#
zfY;m9=Xo11*mzO+U$*gzjhAe7tztJ<4q|iiuvKs*|GGr-yEfhv<PCvK1-@zHEkWKE
z_>Mq^{qqw_mf3jU#zA`4#&R1U*w{iPZLF}d(#F@+-^PbFKH?C%=Yl<%7R}?2ZG3KH
zmCf&2;Zxe}Sb<faaZ)soZ||NX{DP6$JNKoHuWYOqoJCfVE!#XMB)*1Yw6Vd)MjPLW
z@U=G9(V_j*SKd^9uy)aU8{Z54a%sX=_co7zph<h@Hrd!LoFumWDo<v@!>4Dq+1PI5
zXB)rR*kNNQBX)dtkBwcl$*LB+MH-Q+l?wxJDrZ|BKZ?MgI8&sTUv2!x94nlx-D~4_
zhOrdcr0=fGzG~%^Ik;Bvr;SsO7WUiRZHp^bmj1OZ^X~NgU*sH++dn&d$i_d6KnJFS
z!<_z1<_@YjI6gXe#KwP&6EAy|v(E-^C63!zx+#Cc1{;!rIF&rbK_v&>j%J8&n3;Wf
zLAI)cY7S~U+*qr|Roy{NL5SCIFuYbkq?S-l6_}irCxxS^<3Mwea8TD#)+2?k*B#vX
zMc#0*ta(gi)v7#uX*)A(Ij|jM927Zl9KIh>?mF-s<$dBQ2fl-}1LeWl*}y^M@E7U@
z;-RAqLS#$xn2-$hgzb3qxW0o14w^Y=?f@dHp@T+(4DFGjVH-PWD#a!aSZvfHzPxvC
z#ZBcWW2S|J87oU#IcVvq@aWSbe)irxDXkslRwC^jw0F>^A=)-X2L~M;tWM+0G&(ux
zOoe>}K8hWbIC#{>Vi#Q;bS2$I;G&zO@_&B^0|e>rpoha>0|Y&#*vmn02Ynoz?jU?1
z%O1~gu=C!0Us0*FMNGV(gXM#AwBC_A<pUiIa`3c+XB-T6FvP(<4(@d@)WI+Z7dp6z
zo^mk40rO0$gONlWOmwh&eAUqoKRZ*xV=N6`t1w22=h)?=4s<@#!IdrIaRSE+oFI@@
zbApyFTI47#>!8fRBnLSfIcOP67o<;iR6fi*C<sz6kd!GLLjMervxNU_f#(Qh^K%_c
z75uyk%K45u*<IjZUc&;Fyx74d^sj?E99-()G6%Ofm=aFD+`$zNu6Ovgd|XMmsPr0v
zM6PmhwYZEp9e1tJudAqiZc78wr%CZffhQ?934Sv}R~T+}aN~!QZga3?aZ5U`_>26V
z4raE9pJ@?KcW{@3{!!V5lQMTZST{CDd}WLH_H5xk2lqQz?BFp64VRS8aPR<Qi47gh
zaxmM$4=v(3Qe~AD4z!4oFQ3bS=gTk17Ut0r4(9&YfDIQ2&!TMM5eEwef9NDd;KKsR
zMrQIn>VS~NB@V`C3c>kmvErA;<&Qgf!ci+K#GiCP_>_ajUg3dra?f&@4vsNVIC$Q{
z3l6?@@STGf9lYdVg@ct2UUu+`gAd4gciF2BUUTrKgSQ;K?%)jvOGWaEnc4gQRtr0G
zf6a5rn%^*ao1vH~Tdtxyct>LUT?bXm%HI>XOdyNzGlX6%CBn$zstYF<R}nvS@R5Tr
z9em~BV+Wr&_{_oQ4nAd8DJr}Cs|E$x5&iwb>?#LeaQ0FEm(uKg$GDQEnO>(BmGC6>
zTcwh(rQcIq#=MdL#=#m!tXVv>q-4e5p6BISuBFQy?BM)zu-?J<w13NZn}ZDw&U~+Q
zlY`9;Hqui}ZX260vvqr<<&9NKwlJ^{Pua?8HK8hls`#qO?DyVYCEJ-iTgK$vb8Fcy
z&MybQI{3}O9)}yq@iWcNh^^Ovz5m3y|5bxK4s_-^BqfY`Jx$?Md#{7v9sJAr;@}Sl
z`yBkqs5`CR_BmNT7U#U%TfJnzgV8Nx9tQ;ZOW;9)e+xY1;2%K_3nV8e*HOAD(~AKx
zwPoz{TBvHt2?zf%vAd|_;uIH^T-0z;(^WxI*+u2c!m2LL{BBYefotBGRLxbd23L2%
zUkmZzj~)5t%vvr^by3^Jk9U@Be5UlKmg+@d9#pli3(ZB+h3TqvmvEuGFkF>z=xDwx
z^k~cY*tp5RG;4SBN9C5QK0)KTDvj7K92c&O@@e^3TgIzf#zbhPl&f;@*cw6TB64w^
zh)uhw=VG#pyo-#BA{YH!^mkF;MFSUYT(qT37bUZ@&0UNr$u)G*$i;0XxyCM<2)$j~
z42#vWxu#NVCh*6WaSIn*No(n%m5Zq*IZ9~lqU&{ebxg~*bJ3nfCUX}ZTy%6%%!V#H
zN%Mx&@)X$Fg>^%I*7a)Djz<?4$6KoV#2e1Y@x7i_z0141=;@-DiykyotC){wc*<+u
zD(>y7w;TGpAl^sd=`PN2aavQg&`sE-q`b#B`2j8lx|rZ%qKiQ;2Gdh6`m~CNxESiH
zHO4V6h6yr)F8;7&xQm~<<fsWDiz9_N%Ef3wNO`Yw`B)bRd*|4DwRYv>sMXx;co!ee
z%1(Yf-|4|DuX##cbt0bRs<U%eV3|-Z-kZ-!kr!aR;-bfSBS2W7A6-mw`A`RExwzED
zWiHNkagK`%U0meiTyg6a)yvNlWU7nav-0oG$dhuuiwmg3EVUTR;>E(i7`TMiHp@vQ
z=Z5x~%U!+}fooiJFY9!ri>qAxx+gQfRm|emE`MfGbZg5(qC=+2*8H_DHZ00cOP2q+
zD0{t&8(d6taifbluDWfx$;Hhs?v=Qzxha1O<3w=wcq?6eky<XkT?TuH&^fw0UEEcH
z-|b?01%8hpJVD<l$o(#6xR@#UtO}lBaAvmP7u8maDsx>t;Nn47-89k5T=AYKIE(XL
zED(HQ1?3?ZuN0Lna`CWG9ufHI9JP4<n2RN}hKFlCHSZqhC5MO5!xJu^bn%pnr(JAz
zvBkwRE}nJqjf*udo^$a$&Fk_N3B2IqMHjEjWTYl9ac;JXUv=?v1?3e%`0~!3t>V`N
z=c4NyE|$7@)5TjZ-f{6Rr%$W+Z4z6lbzR~Vwev(~YsUf)-l)FsV!4Y?U3})^0}=9}
zi;p-x`(#$Q;PZ}^GAJTNJMtg9_(XVy9w~e$qNe|u|J+qu>sPz@k{)jruX6E)Anb_6
zO0DCsTrk(M_pdALR;OX%TaiPa4KBWOvDU>p+N5q_z3@;m;@>kY8>(BXKji*vql+J;
z)h6bp)@nGsEZOQ}8)vkO6E3#9*x}*;=bDS1E_S*2*~Kp|c31TEBhyIhc#o^r(yyDD
z{mI3s)^TA)DMkIt!Mc0}1An;K%YIucL(OX)-z3OBhWfnheix*W{-+3hsdfB`s6om>
z7yr08?Bef=z77dO4gaN=h3%M&BXsCMwJ?6vMPYb>YqRW{Ui(j&YkH{V;S>**Je7ef
zdpOuSt|oXDPd%urDv(X8d#K^5QE(Bv#samxaH@ye9&`_ehts4<T~EF3RmVfiHU%QQ
zCD%NhKc+n4;qlhWs<qq1Ne`w6$Ac?PI*-g)9_mB!+a7oaO*Z15htgAvQyzXDk-2C=
zmiL~%@UJ_Zk36J3^!G5pLp=%g&H^(YiYUrM0}mZMwbsN%A$Vxwp{a+49vXRS&65jm
zjmc)Kl{e<(W*(Y*Xyc)+hZfY_Q;SZm*)N|mv{B29tvt0b#eE=Mq_}8!c{>m7J&?kK
z0?9yx-F5WPN%|#DA;qFqiH9y8x_ap5p|^)V9=dzDa8|aLhtX|fB0W5uS--rer=~xP
zCyA%iZf)Xz9$v3mAn^=o($~X@jd>PtZxi3ypnRZ*K_1Q{r-#9wy80dIVU&j<f)DjD
z%)@ZOSv5isUe>Y~7DrPz4-;u*QSyd%nXy#E!#Gc!>&JWQYc^w!m;S9yp5S5i#sZIx
z2PS1blzAxkFvY{B&G|_lavmmo>dfA6Prgm_Y@V^ytKFk*;sWUtay--{X_~ir_G}O5
zFwEBH&!Xd+XHV9i>mgfKn9A_DI8O@Ya96;aZQ=_&T<qZzj@rZJYZ@?{UF4|^f&66&
zFL5uWH<y%NA@DLXc<McI{wRkp_48`#N>AOfUd4e3@(rbp&tB)@dJhv)n3%#19;SI%
z;bEnR8#z)B4|sUc!_6LU@o>9`J3RC|wft6r_$yzsK7Sj7=llG}?bX`OogSupxQC9G
zfV^8E?`~LiuZPA%(=$BG^l%@eqHpGY4@}OtZd3cXW(nt9+R!YX?cwd-g|jD=&++h6
zo0tffZg@vLkH)0aJ-p#zfro`2p69?lJS2mC*ux`Yu|=M`N7(##zC~H#Q4dS#^jam0
zWxO2hW5P`2aVCGkpY-sI@R02(4^LO%7mf{|t-zlXgp?OOyyW2(53hQ7S%{~!jlH(Y
zjO>w?r;B;K<{|hn|9ZO&y|dKAyB^;2@TP~iJp6k@8DHmDHv)8h+xQ)isjRHlDcNNn
z-uJNF!v`LAR8zluV6fd@w`Jc`a{RFraW9em(8EVGT?#=8AA9)3!#^Gl(~L|+9yWN`
zNW}(}f9~NM4{JQE^6&-Ywtr!@nD=WBUrLdbuY^K`$IB;_gT58YIuG9oLdseuB3Ydy
zzFvsmd;fcG{zC=N0YNr-*z948hpisA3FRk&+db?SWQV|=0x4~mAbi(mk06|PKQi*$
zs$~ANhhLasgub_e|2Gdkk0>R7_wa`h_j&l!!+yq+yj#jD4m>9ki2uc0UD5V$4~GQ5
zw%`9=^7@y#!oz<aj#Tg*737$}<4n}D_u!NiDy8JwJB7-ER8Mh1SW&8^P*o7()l#@p
z`mLEltrQX|=qa2kwWp;}N08bnd@83-^4Cp4t7u#ER<&>czP2%UU+@mjNFkY0xz0?%
z5`_3u&#IF(9pO~8a#Qds@RT4tuZ1Z@DfCN$-b|-ZFNM}Av`Hazk~4*dDHI7_zoKme
zK}w4=jRa|)Qg5&}PN9h))aQw|anlqCn{gn|=83eBs+I!D+$yCuz7lDhLc0|Dh@54o
z6xyfIIfddBh<6a!F@;WokisFC2;MD)?kRMspm$B-;-kvT<mn;A-U53H?3Dr+##zPg
z2v4sV#TkP1O{v9Lw(Xz7fD{I%Feru5bO&Fm6^0QN{6kV0n!+$CK0ictH~jy>M+!cQ
z1C-~{tQ{kiu>#LbVVof2Q&=ue@3b?|Q$}eDkEXCVg=`9CDNITsm%_~{+>*lN6!Ixt
zn!;r%6jCTpVQLEJr7(r2qpFpP&Q9ThBN?WSv*@EGr99TRjn7HpTq*w1HvYR*tzDci
z#S2onFa;7xA-sqdOW_i!`g?LYiA(e4)!V6+mdjJPB86*GxR&uL3|9#xPt;B|zd8j<
zUN^G*x)iQY;U=lQp@Qee6s8Hj^n;Q**+T1or*sgpRQT2uZcE|56z)&q_7sM+i|<U~
zt`zPdUaKT-7f)*!-<`tr6z&xYiT9-NO1qc{k9qCl{zGy^W~4APg#{@rWT>YwJB0@;
z_~!`nKnknc#d8HG!X~=}&P!o_3dh>TJV><K#}B3Ou&^x>_~ImGibn)**<SHHmco)0
zen??c3Xe0S8Br;`pW@et@DzQW!W$_(ox(FT@7VCA6rL63pBD+wrO<J3nnH%<$_ZaM
z*+mLVyXH93mpQZ)UQOXOp^$+CB<v^sE*0jtQ+P*=`KIu^mBP+}N+1t*_ihTG_08nk
z$M2=kYDn(d_VMx*K1kuK6uwSjh17mZn8L~wK1|^wCjS)Hw2yZUOg|vKe3HUj?PKcm
zX0Due{yc>$9pcrrp7j1j3ct3Gr%x&;{8G9g&aS_q5Yg)U6uwR2J7Hdz!dgzHG0H(F
zmAoLITQ9AG4r*K*Qs~ejrotN;Au`g<DQrpMC_R$G))cm-us4O@Y0NRX?IQo@6n1dP
zoOdE&R|>mR*dsEj^G|~O$lTRF=I}3>R8CX;LY>91WcW=KyR3u6d<y$gIF!OaDg2qj
z{uB<1Ne>9mUm}D`o-{tC{hdPpaakgS457oK&%Xk>IB8DF9Z7+Z498PAkwP^e)qVVz
z!YMu~`>5jM;Fw$`AB<{xnPI>p<yZApD<Tw24Qu$Q=|lHn_^9RMR3CMHXg+HDYDS#q
zt58vMvup0&4sjhJ5}`X1KBzM#6DMcV2V>s$;ZVMhvN1VJn4c88xq^EF|LdZ9r@)j5
zU)~`OeMCN%gm^qe+DAPfHwL&VK*mRrkH38!@=@PM10QGmIL8NkH1u(XkG?({`DpB;
zlaJ0mn)qny^F33v_tDHpa~~~ywDhr|L(Elfu7`ZtC)dgc@ir8~?RGx)cTmp?|6P)A
z>*JzDSsq+1>A>!q7do={S?c8l;zTC)SF4f5K6?4+?W4p8cW-v_(bZRX<=uSnyCRg?
zU5cdi5TvI-K86cwmG|*+y06wW*7nWt)dQ}#@EJ!xAN_rl`pEhi;A5bVk<?IHaiL?7
zAY7&xEXWXnLj?}=F<g)l0@>rO2d0cBP9YuR2|mX9NOX)}UY{TD<4hmpe6+4z;KD44
zO*_U%59X=KL?1**^tk^=Y%<wLUXV$?I-BR{vejjUj&Z?9xsNFfC#h{*T7L5S>MSWP
zA70><Fo!?(#r(NGruul*$7?>$^Krh9yL{a3;{qQS`ncN1HPYlF9~b+4-3<41jH~^V
z33nGR^>I1P=;Jb9y==u@(_E3@zS%2%T*dfotZ*vB{iPi2wLY%%af^>zeOyoBM>5kG
zHop1}!wmwt5_^-6n|*vYPrZ!84RzeL%Wq%sPK0{i=HqrBcd)zOnRNHUo$PU8mXcY^
ze%DniOs8T#7WsJC$Gtx8^D&nZ?(^TonBn84j`3_CGwG=X*|@YYOL~0e&%%jq`JqSh
zn|fyENWa{x{Gg9{J{I^`=p*+~c0S{CT!y{yV3C{Oxas#Hny81`>r42Ek4Jqx<KtN$
zi+w!i;|U*6GV=RmmiTy__Me~S#%%8FRU5Mp<m2MZb;X&d#H1Y8)11Xe3aow3$Me)v
z#zoE-e7s0=HB!B>IS2bm$C&VCVR*$?d)iri-Nzd~Rx`FaH+{V6<6~iX%g5V3mizd?
zSD#FI$H#j<mI?l@w53+>`)V1%?yatoh<wwtutM7MYUD#7D}AsRc0tJ9h97aN@`<@s
z{D}}h_3@dH&wZ@&!7pHZA(F=qQkyF-{a5Wh`=M9iD<5C`_|eBt<ngh_$7UZ}e0)n&
zGq(5SH~LuXWAEX@Iv?w))t3BgX5o7uHTD<iCK`N$;M9SXAAEc@Qe8o9q5@m;yqnwV
zW1EkiK6Z(bxBJ*ZFH|m~lDvTA0NLv2j`40Edzc<O#oPz})q%n<XJqKXpMCt|W1o*d
zef;X<Hy^+I_=9j>cCSeLzH-s$CF<Kad|zPgmONjf9q?R!zmEgVqQbx}(>1qb7)w;|
zV1=#N=|4UW`<NUcAK+gfN0`<Ev<Pt2$1(ak0I&6qGcda6_?(4TktcWx@YN&QQvwAm
z2dET)k3rE%Jy@?I#Hs<R1*!=dcvKHS3Xz%tKcZgF$EMvn#kB*R79bs<UVu6Q>IN_a
zSOK&E31LnK&;#{!{@^`%BTzZ;<O6X&U0vKpB{w^O!>d~9h(%YBRG=Q~djk20cKY7D
zFLWY&dL9Od0`(Z32OrU90u%*kA`JBdG!Ue5z|^fq)JPzah5=6E?1e?bMtk#312hx<
zC42LvaMwZ00IdQH4lpF(Pm$0jK=%MW0<;a#j&LUbMvwLZIs|+ZUln<b=@fSi&`FBt
zcZ%=q6q8si#Ya2EZ*_{hRB(0;&@I4=SC*53u&2;_2mI}+64fif^uC$3yECT;I3qxR
zA>K2tz^c9h`USZ7%JSmls`yQ(ctC)G0S<M_{Vd%L66Vu7^ZR%h7VvF!j1Mq8z=dDr
zM+V@R(};`+_y@f#kx>CglmCp&7^xZ?;OEkEu3Dcd#dp3?59lWZm>8gpO=hbxqH|0k
zrSypKjG9*7uyzrvCI!d^Sax5Y_@evrg#hINf3eEX5h!1Ct$s>?IKWu}&gRMb-zl6X
z=LFy<gQf;JFTlBib4Mj9Tq-<2Pz#0^D&MudfK`jsYlhr#!s3v_g-aNC0j34GG{9wn
zN+Xv`FINS)LW-nZDG28&d%rrsHNrsr+5p#8;MX&FY6Lvn-v3~B#pXO8v2maF%>izq
zO+vH_ach9v0{lTXJ$rkAI|4i%;F*9QTfkibW(JrQ;BGpLh*dlzz&(N5+jFnDfVX2j
z$I)W<N%8(bHm}aia@BOhtn6$mzdb)M!2AGn0<~j@XYILyJP_bPK`4{-1pyWYSQOyl
zKrPBW6o8LD`M(VQQ;%P!<?2ee&he<u@go5q4X`-ChsUNo7U1^IF_9%wd|coY0-qH4
zlt40+caERs^bD{&z@7ll2Y4aC*X*6a8Q>*4G{E}-UJmd|fY$@O5#UuCe^Duq*Tg$q
zOXP|Wi*K!057U<hcvBeO3h<sFblKa2yc6KvlU2e==F4Vhmk0dJf?9iFaRq1G%F>n8
zEl``jh<_yfs|0==fL(kN;L`w~{r_@4=MdycJ%xNBRjUPlDex=iE2ErMYXW>5U}u0`
zbmI7u2~U=O7hr9Gbph4~*uf-ue*SwJxpE1Q&4O$YxKZE_0yohV<2sUIixjsCWN}-7
z?G^ZCSG1(4)vu}VHs{xtb*-uvwHQJ_2Kb3njCOFUlk!V|Ujyt7@OyyY*!I1)dwQ1e
z$7=3b`Ide1{NO)VU*~s@A1lu93-D)v{Q(Xz$A+jE;;#S)nQ}wa3Guf$;t2H@<WPWr
z0vu-km!djn^~{{S`Z~tsAE0KaPJbuF><q9|C}dyZKj!Uy>TFUeRME(zvLIDLRIQ*?
z3sJoSuMy(XVHvX35@{58YKYnuI3Ls04WWf_LbxFkA@oqqWh;b1ArGi)s$DblN%C*3
zLLsJzW!T%o##+)jBfJoSP*Ne*{#fAQhbXIEL?jH=q>H4MNORfBo(a(?MB@-eA?k-{
za8g=@OulQ=FjTJ&QU2WD3r#|PQ2{MNv<%TK1pmKzR`+!C<CEx!=Am-O+?pkXtwOX3
z@y7nr)*Q>g{41T~wgdB@bdLE?$@U>Sgt&yJ2+=V_r;yuG5Qpd-qBz9Z5NC!c3DG6Q
z=^@St(KSRjk=#2(_Ygfo^a|A)dr#_Iy_^fn%(py<Ghy;Qls+`w3#BWK?2gWH-w^#m
z3<)tbM1S@&H#<<qH9+8Fz10=<pb&$l$W8BCFDhpm97e5HOzKyoq{iE&!$XV+F*3xH
z+5A79<3&UBL`F$*w7@Z;`o$`V<3fxNk)^3aObFqRET0&nRFEUwLYc^oe6iQ|;p*Q^
zlS1S|Ob(IfaGLhw=bE_@V%htX3ZdFEQ66H(>!qiR$v)L0V-?3OisQ3FtXolfK5IjD
zUN}3%IU&wvJRd4O_lB~{&y-FLaUMs}GR^5pcp>F?$z2rkZ(`Xm*5wsmJ9}}6e@CeY
z*_Va5JjBf*ZlPsrm0S_xS{eS8q1sZy^Y~S?c8HI+=C9%1V)tD4Vzm{J-oGxy^&xHu
z)jp+Z5|B4aI1Qhdy-A7;(aOK&Zw+x<hzCQ=3vqjhJIE7ac8EJe+!d;w68D9;n`0TD
zogU&IK@RuI@CgOi_U{ex+nxqq-waQP`)6nGrzt|r6du0d!w2gNr{|4-Gvs7(PKdcu
z^*{)oj3|(BeuxF4)#4BfL$zXdr|h_UD8wSpqdtWfY6TC6*gYV}*GwJ>@hB(Ye07Q>
z<nSMpww(A+(77QViSTHIr$Rg}mY*BpnGny?ToD>ZcrL{AA@+v&J;VzkUJUU?h}9v#
zC61RvEDP~|h*v_q8e%DfB*beW?CJS8ID^_}h`dhy+h>Lq$Hb==$8UvrJH&gm<e=P5
z#qm38a-r$b0`bMg@ud6mq?4b_%R_t+;#hI~i7>AS@nMLMLadbH9aoi;lWe1>=RXd?
zwkwO{&BgJjAwCQ7d8n>QR)t_KV~IGCTkgw$8RDxD+d^!okC<3OtPk<MFt1@62~j>U
zP3CVoXQ$`C3-QEOb<x6Il<OEI19EqB8iv>yVpE9CGA`EsaI*RAEY%);cYcc$x3cTI
zRoheU&j%$jRoxL{Plz8w><qC>6x&@Pfx5*5b3ZX-l*GS;_*EqQERdaY2V=G0^S^Ok
z56n>?j^dAypL0R&2&YB(GsON7|Ajau!U0Ye#%+kBA)XqTJIMSW;*iK;@t+Wfr3*@+
zKK}~+q;W_&ba(z3b-OozB2@cAk4q%%pPeOzuu_D|5yq6nwIWoBP&Go02sI;Ai_|ce
zo>pF65NgXIvk4^-q2`oK=bjpY2q|?U)QyyDq6k`qL<Bd27eS9;M6iV|8R7Dh*b+7~
zLT_nE$Q6~+kxHx+DPJrsiBlC~g9yIh$2ygt98pMZYZQ||9id)?OoXCH?Gb7ap}t6F
z{7}@U=}N25Diu{}?l+3iI6`@ZDG{1PXc}Q?gkceyMQ9$ObA;juEh4mx&?Z9L2(2P@
z&)!<#?n4>khXyLxE<*cAeY2udq|R$xknbQo9V5I|67%47;LP1>38ExImk6gvI3q&W
z2;Cy|jL<6rS6aG9=poJdqBM)`?@-%&c)#2`;txFweFU;doIUmx&Os4=FNym_+;gZT
z42Uo=!gnPxHDPh>scNS^83sq{#(#)3VR3kb5fT5ZhzSu!Qct0ep*KYc&z@}cT<s!C
z;4wDBnGwcO@_^h)3ePnYBa}wSMVK5R8=)-1BoXpdWp!6hNC|}G%yV=PW%)(cLZsG$
zi1Q#4M>s3Ol@UKrtt@tSg!3a@5aFB%=SG++M1IzZReV?aJSo=b5?>hMq6n8p>JzV1
zHZ<TycS^fhy0}Ef$l_&;CE>q9;G>%}nJ#Lv;_3+3M7S-&?Gdhxa9xC(gn?fjq_pcJ
z+#q77MYu7-s;Wg?0^-s~rCI^4&CSv`GuR^BN;`N;e=dU%xg)}z5$=g_Z-l!dwLo#V
z$fVk*cZvDR@N_9M>)t0y&Wyl!%~*SXgo$0^83JjgS)5jV%lQeK*%9UlCp+a>9*FRu
zL^W?r=0%tv;nbRH9bkbF7jnq|6?i-($f5`j3&I-;5*J5!EJBb*n8p%Lp9otbY>n_l
zgeN1cj_@V(e}tzatc>s>^M8bA8LkoDX8w=xe1tb5we9(Z2rou>HBu)yYW`A$S7@s)
z>XGHkky?->vbAA>$ZNC!H9V}=21z8cG{T@wc^+>HLgG7-x=uT0mM<6NUCz)5%LIQv
z0$)yHEsuo*%A1;n4<fAKtTYQe=#Gyfe9RyjpZz=nH^6@q;WL@wp9<vubG6hdkc+gd
zBFya)e<6^g_=@^R*brf3gl{6XlkK|*Yw3<I@fv~OMp)h}L*YEuMYz6i=KF}>uu|O}
zKdR_6dgNAhQ6FMr_V^(Jll&%uJhyHZ<9s<Fvn|4Qx-yOGY3zuwlhZT89}#xZfCI{R
zN7%#oF|rgwQ~Vg=rwBhsYR#?rHWli>MA%yqKfj7iev9yHmzc|vC+EUGCV!^lw7SXN
zFPwifEeLXe;ZeKfuLuVPp|m<Rf`1|$j!-GB7R~;Ra3sQs2z<fkXoO>u63=g+soPb#
za{b-;<D7ScGE48y|HpBq(XwmYuWPIt@&%$r*~)2DNvpPH!q4r0)S*TiHPi6YNTvCC
zE}WW%kw!9&+G({hqfQ!i(>P6V7N4D{u7$KT5<)py)GKNS4K9ovR4~(Ugkq&Jaae);
zb{hKB9Ffl^WZX29gJR=9+J2d;e!SwR)&JUdp5{ks@TXq4rEz;2_0q_2$Z5WxjiNN_
zr%{|nNg55(0Qu8sn^w#C4by0p#;hZyH+PMneW0vy8n4YSZIV{^vrPpy6UbuoH29xP
zB0O5A(MoXsLx9Cqa`)OUt^TFbA&rh{v`^#KPHJ=Ds@<9854Yrw)(cx^I;GJ$ji)!2
z@mSO~?vh5=H2S5{KdlyFx~0)8jT&F5osHeo=#fTG^7l~J|E%5k*OcCA^hx9NG+v&W
zKO>E0U1K7w?VDB;kO(Qfz#fnWKl?F=qvJ_xWjU{n+diFN-!*>jlz3<w!_qh}jq}qO
zp2i3c+$v_G7)hJ(ukL9~NUKmEmBwg6#-uS;kTV6Ie7R#B+tvy=#U`dvn#MVFht!gi
zO`|N0Nm865Fqg(;LGl921r`LJly(xvX`GeD*+S>lGDT4h9#bngKRroF^Tz=y-Eq2I
zl*YwrT$9GNX<U-VrRo1;>N}vND4ws$IVmWaotd4x6E>515*|6{3~wKAm&YPmR8SC*
zpnxDCC?H8dK?#Bq6%j-b2?~-GL<}HN1tll>?$kQ}?{`k0du~@(S66pe_s;D0%wm|w
z`JiWACX(kl`%-JT2QP@7RQ5&TBLv45sxZof(H@NT;Ck&OYmE{4%dRO(=poZMk&pLa
zf{<4PQ(jH-U^2tTgN+`%=D`#X-tl0u2U9(G-GezE%$4Eocsw@EgXtd3@Zb#(9{wDA
zlk1{RawbExVA?F<B)=!J8+Xon%Y$$EFTf1BUt&yDe%phaYW5-zcIAyV?b3Um2lF|D
z-FsVIdoS={p$8=6x;j}d6VypA@nES3?|blpw4NsxdzT*poS-)9GLLg7yW9ibwf*&7
zX61z$b?YQoc(9U-&V#icFalR`rJqTB=mFzuwa57mQ2n+KAOE57BSs*bu9M`!r*)kD
z654tX4!xAg8^B$8(-tqyB;Vx0X1eOZR~~%g!KWNgMyv;0#F@F(`6nAr$bIJd?~Kh!
zIpjkLzsTC|!51Fv@L+c7*q7Xbia0-g@|WVG<zhSemwn}8IYw99?ZMX^;X29v9`vb`
zyj44Ej|Y1_@b}Hy=fT~38TWg~Of8dg9xVTc`|x$=7XF|I-*I2kQAEcf4-R{9M8#1R
zN4Nm_oQ{f`Dvo(@oPH|!Ou-2czUOjQP(#5F9-Q>xAI6Etxxzd}n;!h;!H-<gb&{tA
ze-b<+Na4>yei7vJ3uoD7rT3p6oavr@&cpuz#d(oj^5C+N3xXFJJYBP>dBua79kM#^
zPW<6Pu9>lY9kNo{zr?~-53YIeH}@Qoce<S5YtqSYFit$ErhrEmZh4#sby>Hng4-V4
z;mCM!&x2A5o=|Y#g9qGj6ckYK(1U+PIk$pGLRfK1m+Tx0aw_<;PLf&2l;XU0gCvh4
zj{plYn@<RfP7hBMR8UkwF$Ls>1Pcomk-8KXS5QL1<5J}@4s4wy)2c}cA}y2@IUAzc
zCl!=dpegW*g)#~%389g)3d$)cub_e}si<JhD+v}|6+0dUih^9tRUSw?|6)Q_ob!jY
z$)qa?h<!?+z^A~FQd98W@Ps9VrM3{is~i*(5)2DQ1fznL1*-@at?P_f$KlSTFnU9E
zlQk75;6GAuX?;d51!)SNQczpL8wzGBsH32+g69?IGrgXIbOo6TdMT){pn-x;3OXxj
zsGyO8W@4wYU=u-_O}z@Kse&1Uoco35uDpeUmI_)aXf2X<igS6;MtECShu^BT7v8~@
zbQE%^mUAepi|`%_x(ey0pu3PW9V@bQZ6)VAwx@y&5t7G*(2Xnwam6`~HCRDHL2uzy
zV9HkbT(&bBecW0}A$=A6Q`!0Lub+bcA{ih!NWnlMO&2)Lr8+xAB+Nb|WT=8?g*+$7
z2aZ@YOu=vkFDQ6X!9)d<6pT<XQWVB3cuB}81*19gMKtO&jZv`V7j>M1m!)*9Am7%Q
zD&<$oBoh?8!XVFI;Z-SZQr9V+ES#UGuPb;>IE7P$OjYo9OJ`oDNp`v*B{PK7P0yai
zc~|hBf@LCkOThvK3l+?kL7O8&R-a2d!siLj7rfTmITyW1_!80Qyu71eu}C;gEL|%6
zT|s8=9M_jCcwcc|PPInC2a0nUuv$u22(A=dCCJfW6{ZjAk37P>)@_Af$bYP0or3iW
zHYn&&H@R8CMg=?xz_dxonQMtzPiHaviNfE4doz8iz#N!GvQ@$73hpX=VJ5aI*skE3
zf@u5fFBI%h@I7}1?mP;1D%h)Fp8`GrvP;3&3ifbmY{>XZ!EOcBzjZEwQpk%XJ_6aH
zp1NPbHwq3ZILs#Y2fwAmGZP26?Nn1)F?Tifph&(Gq}d}1jw(2&pvSC4|GLSkXPldt
zarM>XBBAgEmuF@Tl9LKfDLAL#cLhHx7=^4e3V!Amq~Iscd)?$xWIZ|^BmSb`S5Y`C
zSnN!U%D*xEesW5w!|Ztl7Zm)V;7^7BV2(=)E{pQ`eV(4BRH}6@rC#BNd^$!#3x9E6
zJrldC$badciKQB1(cfG+3a&HMpX|;4-V}0!Ud?mPE!<)()lJ?O<Sow~A)N913LbE4
zRiUeRsNi1(g;f+$@rawAihQaw$T?N#f-skg+(P(eV;<ER(!7E!;?Hw@_>r3VMW3XA
zih{yfT1W^-xTuO^D#|mIROh?3;wnn1ctS-96_2TSTy^d%`L!o+KuQW{cIULjlPX`7
zibu_Rms6b(Eh9x`RaC5#%`DyMyfaaufpbH#u5PlT3PpvgqLK<UQ#~r4njfQ0e!Huw
z*jG3C_&t?)>z?zo8sD)76@C=~6+RV)3RA^<s<Zi6LikG@xlL>HW4zZR52}c$h^h$D
zeuYq2kc9hZW#K#n&f(?Rk18sL4$0;>vDH-PduBFQUB&3mDobmrNK-LR#dx}>qBh4z
zMV5*>D(b4>X@ZU_>ZwRq*#l=xhS$#8+9<2OiUyP)O7LXvwP1E*6+<RxH&UIiuk%zu
zh;OP?(Ugw86=PzTo2zJ{qNR#0HM4km-&O^`L?P#SPa;zr6-{<#q)OYVXs?25Oi%RA
z>ZGExik>PmR9vi^>_Y6G)m3#~yi=@RvYQGXFzBvg<;nyPpY&iwc|BK*6V#hW#d_Z;
z+xu@G1X3||UhH^VHLfC|;yD%1t2kUUtG9{)Dh4v-YGq}s=tFBN`l@(ZML#;ZC|0Oe
zmQgR+ph4CvJ+kW7OZHbm3FUk|ZIE<u2;)%5sUI`5_--5(eA^GxP$AC>CjHKfQirK{
zQN;)q-RdQWtKiQcFQ_=!LM0ig;w9C24CG}Mqv%i5tZ&L>j}bDO_Uk1l)N{@gazN(R
zOOBNhAfKS(6&2fQO2w-xCaQQt#Y`2GRObSo*Mw75jGY~uOv^&1sQBeqbz5d{3SU>9
zqjZ%!WlvK<oGv(n)pKgh&QkHFinS^}Qt_6G*-ivvnTk1-)JyW+R!daORq?ipdFp=$
z#d%zOzVHQt3k4Smz9YC;kZODCIZr1oRq<)j-tS7Fa*t))F6ShwSf%n^zD_)U;KuU`
z^}lQK)vodyAs-6*5?QRy)$y^4bt*oS1-@Rz1{IrBK2M4>^^zN9bJ!t2UGW})cN3qm
zb;ceo{OK$QKA=bWoqEY-GZI^=%wF$LG_0p?6GHwdUEQJLOBH*$a#ie9u}hZ2SKKZJ
zWJLxzA1J#UWban-H6`iEqkXeZSLnS*1(CbK%2_e4o&74F4fft)XMdyOTNMW+dr$=>
zhgE37-ruP>B!rxgMce5~);gx*I0s+Dat$YB)4QbNvWo8+>MBmEIHlq@6=$W7Ke9#M
zLG;by510H{`HA~v7w4}3jFkS&01!gSuPUa<TNKWT<afa$HF}TTmN?HoR_e{BFGwFR
zGI*{#&xc-7@dsD2hE^K>RPh(LDGjEEtK0;*$7(2~;cu1i*F_EuIW=5ojH$S*;vN@B
zUFW9hrixoCZgY!!FXIm5A*VL8mvh#dkCQjf?0sM4%>Jw50Y3sH%hS$$lp}Jt&m$F$
z(vv(OJuI_#&zu_7a%sq|A&-WP^khB_`8DL#z)~K!ezlj{QY=%AZ&)GHLSYTOsw$_U
zyoRD0ifJgRp_GQ=qEJEutK_=ZhssQkX?R>iwTI5tGVuw~DXpQ5h9`x;c~@ma&!;EL
zYIvfzbHbT^j_Q<MK|@6iss>HeDrtB<J?YV$&ZaCYB43uC^okIYWsxp~Pux3d!g-Hr
zX?%qd>S(B|!LK2pp|XZ58iH=Eh>(zmFgumV=J?R7s0bJIQb)@v^r{+aYN*BTXsE6^
zN7-v=sD0LXa-XSABK!07WSUfYO2a32of$cno~*5b$Z@MDMU6Bx){w5DzJ>-O`6FFi
zeJ`V-WchvoR&1i7t&DtA4b9j=DWbfE=G*|X%A$K}#g5snHMG(2Jm-u08ro^d(h%3s
zUPA{B-8H@z3>`J_6nz&BT{U##MAuJt*3hVTcB)f6Ezh2I6Z;kF|K~|h27`u}2*>wQ
zGu_sEY531QnT3Rg-WmpJ7_1?iW709ZABROl9}P(jd^bX038bgRf!%Q@<YH2BfQEr$
z^Z#a(ZVb`zj0PTHW;cgw|AqQ<8lDwRTBDrK5Ql4cLBkXcQ#HJ(VT6XU8pdfDso^D2
z9-}#1_cS>^Jxb$SrkyMkk9NQ8az+Iu<2AgZ@josx!Ikse@<id2HC*hG&6CWNB+C=*
z)PIe^BZsA5*Dy`Pn;PEIFkKX8YM8~@shu@LvTtb4`R5WmH`u~cwSJOc{?PN;8s=zx
zPcjy8;;JR*YM3X4#@}YG`c4x}JOjT_j4YDwP{PLnSp6Lhi$y}dM95OXcQw2xq@T>-
z`x-vb(94S~FIH$+$+hN1X)ji3SgqkG15(3>8rEp|O2cjqYc+hNVT*>(G<>W%*MXZj
zX!VopgfqKd$OgfUg4Oe9Z)T8l_GczO)$sON=S?#FHi_A-R1lq=8n$WJE_{cEFEr;%
zr?L;6OW9?!61`729~ob2&iOQ6Ue2wb+$EX=W+cAWut&oI4F@&srK|ItHz(|u(tR54
zKXTgoMzSQ|YR(-5f6f0+$YBjfIHAR}4@q`oedi}je(nq?Sm8{k?Bm@0xua^hq2YV_
zqv4#!H;04YfSuIvlZG=IPHCuAU;UB0Vl|abpB4wMKUwQ%4ZmpkjnUpcR+c}X&5!*m
zK5Wj&X6t7;;2Sa~$T*zWaDjWfhQAm>8ZK%0gF8=Vjmv^0R~T>8o$j;Be*QR^StC$Q
zy{b7kGLO|)ukquczH>+OH{-c__CJDbl>DZKTN?6tk>88k8t(7|!i!v9z6T8VG(6Ps
zuLfmC;-7*Q?sKUYtnhB$><1i&*PXU9ZzdjT$l-P7mz)ieutj2SFY<Vi*Nffq<u)aJ
zj|Xe9j|IFa=tXfaN_bJo3m#Vg^kkxl7lpmpSKs+&^^IxHZ9-8oTg;2|BIJzlmhCYw
z9`~Z87p1&-LX6X3<h0Y@Z|?VIV)Zg!l=bpO=&0vKIWNk45%40&hP<fgh3@71{g9(U
zvXU1bFBEBohZt2MUau2TG@^OYJm!2rr;gM3yiQ11Uf8tRAZd7EiiAQo&9B_)u;1&%
z)s$I|^C7QuBU#0Zs$PV>h<Fk8;>`^id>uh$`j%OPoR>6Ps;bqzs4h)2qH1_i(~H_(
z>_3pG(jZyOi!^D4`piBh+_?~XBT+{<zhWg%_oBWRZM|scMFSdts5bVZi5CsM&I6}R
zjl5t(Bu%|&=0z(nTC;avw2*dNire&uo#hCxtE!ePU5kUjpW!HJBRc$AyS*13yy)gd
zcP~1Mu(KCkyy)aQ&njJ|Yiy|OeJ9vxjqdeeiw%-J84m@sDar66=Ebe5&O*qPB9^jl
z+>3-4UvW<PAh#FU+-JO4=|vwel3vW>=y}oCi>JMq;KeIm^z)*>7sI`HK^z$1#dBWg
zf|))K^kR?*$p;G=BKVBpP{C&f`AzlnLZ~^6qf|4C<V7#|I+~GQyySI$&>TT$8YD@W
zMzNLqi8+!TEox%~UltrII8Jc9;FtzUntIiX$zHtX#Y8VAiOtIqmGTc8BzHAPPN9S|
zQZQ|*7q5FU%?k=SIII3lOcy>w@YO^%<ukqD>$X@#e9Ox}4!~kBmWa(cUMym4^UEJE
z-u7ai7xTSX;Kf4mIrS-!dLVAw`QH48ix1Bw-Vyz4i((8g`m@xFWnL`z;!z9FyI#EK
zMbqoOnOK*f4xjTC&|c?)jp+j+9FSFBtd^c`XB2s{#*0rmj9&g*fup(E3qA!ywU4+Q
z#7XjXUaS|sL2#oh-^BgrgieJ|q}ICq3D%`o{ORp8S7)n`&%M~@N=`LMe&NLqFaETg
zr~kebXIN_|2hHXDW&CR|_IU9(Lw7-JFZUTQPI_^Qt~PL98nEAsZ@l=H?Rs(CixXZP
z^x``&4ta6diz+WvY_qLAk>6n+@$wBP$yAp2aYwy4#?DrXG4ZjT@6YrKA98*^_@3K{
z7j<@JpDz%@cF&Jqoc7{^7Z<(w$%`{yob%#$FMjso7cb6w@q9gX-6Qo^?r9DAW>IGw
z;R0bOGP^5(_N_M(=e=kw3yMM}@=IP^X0N^Y%Zn?rYyBbp<zCGl_|hZQQ!1Nl@T!FO
zHQ5Syw{>NP^Cj3nUR;-{zu`pz9dFN$-Q<###e16z?P21s@H?{0aUZ)U!ux^`ym%<&
zUwXbgkxO^<A8|(&LY`9yPoU-2kw<sFnxK%FSLFEw^Xtf2C!2D93sF!UC?v=~_ARQT
zm<~Q+%;!go>nNe)h>oK=9@Fu-jt)9H>L{tBl#Zy5$~vCV@oIJrMTe^6Ngbtilwoxp
z9vw~d$4lP!l+#gBM<pHQb&Q#mSwWB_+%QR8lt0c=V#C}j^)(%<#>WjErVg(TUB|%!
z{0;)Y-t_ePB-5wkrM&STUD9qIk6FS4bYphru|ArugL1!)et8^)pw55Fz_!CNmJV(f
z4~tqvuxo*M6&+P|G}6&nM>QSQbu^G()X-5=M?D=cR0uKE((#mz<Pjc652cB)NyB7q
z9d&fn)$wm2!Bi=4oJfUq9rZ;y*EJ=7<M@E%v4&FRRI4~GG~sCIXeX^S)6pk)yp3RU
z9W8V`TJNExrH)oQBF*C6^Tl`X%xJA+d2WZWsI4d$+~8@?iMXHP8(6J<$9N|loprpg
z;{zRCbad4*oGt3;rlY%#zB-=fnCR%KBTGkI$IbTf3>}#|hONqo>G&~S`y#h9RvoTn
z^b%pd)^SP_I(qBKP7OlqcpoVmRY_y@qzFfZ60FrvM}HkdbUY&p19S}3vFCV<)|$7B
z50dE^tRvPY&cqg3WvGs4bv!3Uw8j*yq*4C7NQUWPMf&ifjuARu*D+1UNY1j3@j50@
z7)p#{Us}gs)-jq<#K9bwNqr(Kjuj)cHcrRAqcOJl3KgWAujx2_RhcM$PS!C={G<-O
zO;w+wW2z4JoptFF>rU4(L&sb$3LS6gn5kp74wla1@?p$hRM;rndg*KimEYpJxRQ}$
zPWIw5i8(rm%+Av>U&j(1OLZ*Ju~3HY9frD&t*zpIX@!JF8W%}hEUl9iKNfpe`nXJb
z_nug$4)vFd|7>xEj+Ht#>e$4^qGPp=4LTSP48jj}e5B)JX={xR>p{j^!L&T_byA%=
z!}2<Vvz}AaFuCTP3<em(Z?le1bbO^_w~kMBY~k9`v0dzZ#*ph<VXN@Vxm8;DTzKx{
zi7&XWFDjJm)UiW^UkXw(q+yb{OR|LvJGH*n@r{meIruvEikxOC-^a*#LfbEriBjtT
zfAiIGSR@DOSnK$AI^J!V<a|+o!Xpo{_y*50Sxu)n#X61)KcVA$j$ZyacciTilRxNS
z2T!umGKmU%GfwOLhZ+<CiUMbJ{H*hh!MLsC7j7>){?PHKj^A{g)p1_O1@0s@^6;bN
zoQ~gh1adoH8&=7a_D2rqae#|DE-@fKuRP>##)Wwq*C%CMmh2V5Qw@`U>A0%nA05|q
zT+{Jok36ed=lNSouQp89;7<dkV>#O7xxrP*(ca-H)+kAznT)5>?&!G7{Tavw+|zMi
z$3yNm(!m*nD?Sh-eC@_}pKEkLt&!)EjvR2DL8B!7q><b}9w0wZ0LUvv!=I~|5BRB2
zTFpkzOWvjx%PI&I0ty4yy62&L6h18BbZvjmG#=6Up>|p^fPX>5e;6nZoLv;6g#S5A
z<e$*;MYjD5#+i<8^stC;?B?rc`T9Nb%SDyROS5<6Quu13Pgmrp{)c}m&I60U0pK7Y
zXO=MsnCqPG0e`s~3A_aG8%GW3lP|5EbAJFG2uK!!7I6B9*wPjGeSjenYMMflEAq3*
z76m`>{UwFjAm0TDgn<aq7JNu26a^{+jer|J#Hxsdq<Q}eRe@?ib&*q22dE*urYor>
zBn^1VmDC10<cd?7sV-2@m8S#sUETm_=<?Ma<BfqPKvR*t-O;JrOn7rwrv=bbcq_ry
zuDlKKXnr>J+26bUDiGVVb)X~ADb;<TFVNW?lP*A4pc~NLmGlzQL$D{1AtWZ4DM*_a
zY%R;>aUltyw~%aC-UnFxFoViWPXj|m-cPW<t1|!?=<-2A1`7@Wo^j<}^D8C#S9lh9
zP9)E}@?pSm;V-z77ln)f((@~9bQCZecnz2Wi~(K-CW^vXP8r`Rbi?xsFb)_GtS=M`
z<W(lPgxObJ9coT;?N1i6x?hE<TrYP$Y~l^zbzqvvrvo!wO~x42s4$c7`0O5^1-uCi
zs+##0Fk5uUJ9LS+X_TbS+rT_vEpT&p<@vw@;C<i&U?G>=!i*)rQectrci=oBLg8Xy
zXBCZv*>~CBB5|Isc~5jGTm~#>DiUWZ^kMc24%C*64;kS_;w#0%Dqyvcw~EA>Xk-l|
z{EAYkX#BS#@sEIyfpr`W;1jM&V1rmFw%M~ujBFI#^3X%Go2BS<sQkikVhg<jb^)IO
z`+SM5;?L)<SKEN?!oP4OJAf};PFKGIc5~HC&!!vfU2f^r*T5d|rDV=fwCI|-Pu$+`
z*7^qc*5x-IdcKn}JOUgA4hcUj_;jNr$MzU-9QcF3Q~)Qq@VTo4KLb3)_k&EzNnp~K
z<(WMt*&p56Jk6a@_{)uwa~dUo0e<Dq@F3%&;BUb1K(Rb=O3nhu{`Q;`d3b~8JosMF
z#05c;uWo1XQtc9OSro1Sha1Lg^o)JnDESv~mHVd;rF^&s{LOvXhkQQ#16&7g19yNO
zjgmKjTMV;Bp_^R(Bje|aq|L3G__J(c%r)gMH-D~uAcqe>G)mqF9<tpcY2*)Ryit<m
zUy&4PoJ>{B=|e6ba{KVD*vaE_EFTyVuirR{#z}JSo&|g;=0kBG3i^=QI9b?-B0iL?
zmMG+NUiaF!K;nhQ$(rR77fU3H`kdxiy@c3#T(Ec9#A8C*l}nT@7H5?we0b7_un!Fj
zsil1=<Adgd*N3t`l=GpY50!i<??cTZ2`bQj1vb<;$%=`hipK}V2h|6*@_ysw=i=n4
z#>pYo5`36W_W?cxd<gpB^Eu<=7bG!!FkNm5v3)2}D9$3Lc_k99iz+u7CqvQ&_M&W)
zWJEfc|AmSihblf)^<h;At3#;fLv>D#h5Qz3&`%$F8ptqE%ZD@{w)wE#ho^j~?Zc}+
zO!T3S4|O?oKJ@aTo)76hG+^I-s4s4C?${iCsNN*m$cM&0wDY084^4b%>O*TEI0DUl
zVDG5b!iVNEnBy<$oth-Qm9>^Wv=ToDHgSfijg+<(r2fPv$qqhr^r1`9M1~KYeCX^$
zHy^tDu((OGiw|9;?z$$)^(7KtR?pL?SYm&Z<k)oW$(*qs>=$P$Cx73}Bytd9V)o}I
z$t)k@KJ@ePt%-Q6NFpKb_3@#%57|EKE|O?oR2i4gsgjhUzEY80c-jY!C&>UG2Kq4C
zho_4wgG6Vj;9wty2zf@Tu$xrQ*RA5Sl6_9_dBI_V!v)#U3qHK)@)1Ht`tXt~8Rf&n
zCQdw$@!@43#`-YMhY3Es;=_1pj!jf-ntV51<3dQyINK$e<ilhiR`{?|Oua_*;SC?A
z_%Kx@ulq1vEYSEgPG~VFS~iV{v-(UQX8G_Ahgvk>^zpscn8y+GVYUx*L`dbiLi9o^
ztGstvp=7=f3w&58@~_V;DSsBp(4|Iii4-mO;e8=XeR$W0_k36;*)~m`o>mtm`9Oq8
z$ui7V`LNoDycd*DME;=<YkXKM{K?_*k9_!8_$D9L3E{|W5VBqzph2dMZV~xr;U^2K
zp9<L`0q~g*TP6Fs>o)CB`3oO*aQzz441DRsP9NX=i9dYU<-=D#oblmjR`=m+AHMV9
zkPpcPnR~c9$q4WD@iPVcMfi;mOzaL7m^gF?WD`5c$xYWN;XG1!*oTuoobus_4@Z4C
z=EHFxzUTHR22Ze$O_SRTC&n~Q&TX2kTUle3eNB@@rVCAzwDThawMp`{H2RZZ@2ZJk
zxMdYdoTCx3^Q#ZP2{|iRLF}CO;ero2nmKbpI~RSpB&Bql*~`L7nElg-zkImw!vh(y
zt3KTH;TAsyxHrBO|C=8HQiW50-G>{(m;J7=E<1Z$vgG%Cxa0D>GB^~LZRT|0p%4FZ
z8#hqUaGHL^4c|Z>;W-TCG?2@1wwLKXFmAch^BTx!;H67C7d~<1WhKAi6mj<^7BW!S
zKxqSI3=}a?)IbRXj~OUtpt#|DBCrarkrS!^xPg)eo)8Nug;JtPYgBmBZOE~2pqzn9
zqFLU+fsyeF1}cgI_W=$gtJ6s)j{!y0g3Xf5(vH`FZtx%CP}^`m!eGEMU`ro;1`Huo
zGsP<of?p&N15pD3w=^iFA<2df=d+BOl_guvKy@jtBH60KQ&U;PK>vKPS|YD$Ak_rh
zN;8}gCE>)?;gEK#*xW!}1NEeCx`75ls8HX)in0m1-OxZI1C0$dG0@a4Wku>t$&=Ph
zB#oLm@!7&aO9QP8v^LP$Ko<jT473%6jt1HZ=^)sipH0n@OteoUtlP-|KXgd;7L0c_
z(9J*((WHc~b{Ed@W|oPq#|&f|@S6yj=w%?wz$^oA8i*T67<j?Jiw1fd$Tl#@z+eM?
zI1~m3ik-d&o_5EipA1p<$oK$`nD9|m6CB~xC~*wg=n$#(oWcM8!!rhkN|s(R;GcEJ
zlU_Y<V3-sQ7o=oZv*ZZjBN;FZ9=RSEWni>{R}8#rV2pv6MIqH3BWkRHaR$b_7A7!q
zWNc}TTLFh_BIDV>Gy{`Fhg-^I!?{v=O>l~VsRqszbgmzW)1{j;47?#xN+UC+7PljE
zCa#OO49qrg%D|5X<`|f3U?aoWz}p7q8CYguxq<lx7RWkUD!9<#zy4vd@I`{Ov&3CB
z>;+dGSLnM2-jjA2w3KjBye|u6m4Vd;K45?uSSb<~ajh{?^Fsq`46HM-UW(Ql_}E=y
zABlvfio4^pL0V^vPYT&=;1dI18`xvuQv+KJd|_aR0j}%M418{2o2YGdeP)Z>Iog+W
z5}IWMeraGQ9cz}{CCF<AHp-%}4D1$?>K&WgYha&&!v>BR*v~NF_;ZR4P@jFL8q+}o
z--)Y-{-<ur0=sb3z%c_S418~Z2AMb`$GM2ACg{%(vLjJ=Qo2tGuWDHLw1J-t<TjDV
z#2EuW8~EG6KL&m=@T-AK1}+=;&A?e1s|$kXXxYGd;cS=P;Z-XQ($$NuaZbS%1Aj>A
zRW3&9$X_xztU~2fv|Mv%nOE0L*A3h;aM!>M12+xalIphw*$SN}vidy(_YFKUki&E&
z4-7ms@UNI+<n-hPkHkz$Kc|UYqDJ?q%=A~`L|zm5Oq4S5go*qn3YaKrqL}H-Y(W!+
zOcWOW@@1ulbd3%dF&($rui`>Vn0QRg(x1molr)`BlT^Pbp&C2*q>0id6ceh6GBjwS
zg2}&qbnKKf9Vg41jwZA8iq$Kb@R-hwb77|1B2uoI@S5<MFihxD1!5%C5G}AeHBAxP
zf|dzhou=e87&H+w@rsF8O@vKEOmr~O(L~flWfSQp>Pug$n5ZFy6|0)4W;(G)UfqOU
z&~dV+iCQN39n(`L>bjb>h18J|pbmq9SWkp>p5xHKL_^88l3q75(bz;2krd)BfQe=%
zT1u7`IV{ahv~aCaLL(fIIz^S%Cfb;2>uR<)(ayw|&77M8)=H&LCOVsV#>7w)T}*T}
zku=fQL^l)NO=NO=H_<~Z(6J05Jx%bYAmwVzZ8ytAoN`g%zMT+~ZKAj7d=#?96tdBj
zhfka6Cpv?uAY_1Gs&t@hmimKT`4AIViYBP=tcmAD__B%TO$-x0%EWM~^`eOpB6-0z
z!YU)lO((`akO`tB)&0>X#<=!VzKxaaIF7uD3BtLVr@WeIVv>n(Onhr%vWeGBEHSav
z#1s=#P0Tbgi$hl+!5h!lO-!R&k+kV1n0>=UgQCg|k(_S!-#x{fCf+i!z{ElmvrYbi
zCV1OEUv%c0c-zE0;q;mJAVdmDs6%JS7fI<mA`Fd;bH*1-2OTvN@0r+a;u90gOe{CC
zmdnJ%`zAgxvD(CkCRUhODf+9}u3M1~lM|WNh~*b+<ViX3v59q3w8_MJ6B|s7DynRh
zNH|e8L4Dqvr>e8RB%hktVq&L>T~g~a6WdH|H?h^k=hEW#%Fg9P>h|gj6FV50qUrcA
z_gpD!Uzyl#f_LKk#L2Hs>~S5Y+FsY&as?9mP3Q6~HBbjk95iv60b}Aj6NgOvXyUXe
zA2xB+#4!^`+`6=L+{6hJCtb<+CVmk9f1^Pi@>3$@^~q1%{7sx?iz4}1@K<r{7ePAD
z^qXtscawkUi3=t!x|09x<E8)U(H|!MG;zzsZ4-Z)xGMVB1+SU-TL>-xJ0eaC|F~my
z!<FB3Tjzz-9TN{t{A=Q_iF=}O-^2qUEM*kY&dp}YM<#Mu$YVJZn$toq%NhUNmJ<dk
zC%ONpMm4YHd;`OZ+*=A*C}_dwhv7#d3xzExHdGr$EEKh{ltwHRvryc^^A?6#C}H6-
z3k@wavhcWtk`~Tpqy;UMvhW1!T2L)KY2nw=@v;`m2`MdDMsVpxg+=8pRFEwBnsQo2
z3za16v3STNk>|FfQ>=MXv*5L0STHT<7C=8ObS<73tR~v~5=-^Oxn|nydSZC-gk{0D
zkh7^)xp~rWfk|ne42Uw_BPWI|ge^oYL@m^@P}f3b3sqR_w({4N47OO+LQ^F{P4a3M
zs*6iC1ZxV`5@czbg{NFzTgX-<>RCv)P~SoW3q{88hs(qvZ-Q86bevV#1bJf%O)PYw
zV{FSpGYg$8=f9|$TWDdSt%Y_LT3Tpjft}iaOKEMP+Pv&G7QVmNhmKJ=etkB1dkY<;
zckF3LQ6^z2)8?h2o+V?QEo9wPE>%i&v(Vi_KMVaW^svxVn(Hf=AsFM>*2uhmL!ld)
z77mP#_hMZsq9iUPA=q0mTd<FXq!8-tSf5RNTC&Mo$^Z)kEey5rtc5`$9Bg3-NB*YM
z#4{pEwYVjJY{(7eIhwlV6jd*;v2~+xVz`ADEKIR5)#Cr#VuXcPEF_v~BQ3mS;br!s
zdGfD9iBT5DSRi2<Eu_mWg}iC=<X8*iEX=y4+!!4nZ()Ko`tB`dQ1fJ|H#1-5qIff#
zqcqV%?ZSykf|D)0CWI0ey>4Neg?Sd{OWo-f-m);;!VC*<Sp4%@XVzx9eW@p1dsDJ^
zZzyvZ1Eb?_3(jT7n`@&l=mSQ_CpFb5U%&v6{w`)mO2!siSY+WH@qgBN$A3;7r(=nQ
z)TF#;VVQ-C7A{#>ZsC0kn=EXm{*{amEPQBTjfE95iGk7al@?Z6AYod~*k~6cS!>}V
z@oj_D`q;ucA+%7bskUA?3DfC9iH%%JzVhtdCl)@n@D0bx!WIjkS=eFWOAA}Y6cx4!
z`P{<3iwY->lI<40a7#H3J1y*z>^=)$S=eo1j|3Pe`fHJM-dQn)d!>l+Ks)<|*MB$T
zfQ5q=ez0)T!gmtkhb<fta)@(L$O-tP7LJMJdke>foDgKu#By5s_1PrcG`N~hS@_Yy
zFI=$F`e_SiEd0!%DwOz1kYklrBQqqk8NI3eCTiy_{4V6I>~;TqmC1D8!UYjhnOP!(
z`Lcy8+%|0#v+;+;Lr}PF;SPt_!re-V>lSWUxXMZ2pUHI1!rvDDp#z=-W0J^Ny(u<1
z0=I-PuDDWC({b0rLks^}xM$(MlrlUX2uTgvBMUif<hN14Mot^KY;3%t<h7B|6S-~V
zvGLiP+2j;*-pPsiY($mBNF_mD(8j`heTvv9WTUXn$1M}*yot|mC?u3~6Dw|`gpKmH
z6SR-nc-%&5+gSxAZRaE43E`z|C-Msgs!;NzNT@JYO%Ti2C~KpfjZ>p4a=>rOL|3p;
z(MBcP31+4q7Zs22&%BOHnhmdw1$4}YZUZ(lZS=C?vtih1WTUYS(}rau&BjwUY#V+X
zRc%zW5wLOQXsoi0Dnf!bLP97E+lUB{3iA8_g;S2j_@qD4?2%U8#<ebKHEh(h@j~l(
zi9ywPGNhJ`V}q*kDgJL8$B#FS*S1l|M!E>=vfWAP&7Y3fxSCOqQ_whGKVRHIDQ#e5
z&CysxnyL_be^9m0_GC1%(bPsqoBs!mW;UAJXk(+TjXzt*Ti9r2qqU8ewsUah)Abqj
zgjK5LP!65TU@PrxkTA^}7jJK)gN->8;wj1HM)A%zy4dJ$qX&m&P_?dtG}}!G?VR|>
z(^Ghcje)sTR-}->mlF@>RESwN;x;DOc!iN;qqmL0Hip>9W=Mw<eQi8#qmPZ3n<tZk
zBpfjw#^}eX>=_$qJI8+d3l0!$GN@XpNZKG9Qwu4Z&SgAfW2lYc91R=K+IY^!4|!u}
zA4@!MgQdd+NjMjwPcpX;s`jFd5jIBK7-Kspd`8+BC4~GX+d2NEp3K~G-NP)0_hlR7
zWSkf9Bfur&MU7pf@~bu`+L&o$mW@dao*rpaZM-fDlWn}lASseIMUaG+r`eb;E^#nt
z2w^L4xP4i0({pw}wKr|N#aXa1*T(90+H2Q6vu!X!79WeTR_9#m+cxG&H=h|;jYoRs
z+jwa}wNkC(CkrZzY`kORC&r<T#Wt4M_|nEs8%u5e4>i`=SkFadW0{RrG;U+LjrTbz
zeA}~)4|tI_Iel^83d}CNqTEl!S5moeg;o5i^i0j_lhZ%6@sTL6v9Xq6xhi950cGj{
zjru)4_IxZw<({axfg6R5tu{Vq2W@P&u|<lg_KA>B1#d}1U3TQA{4;hzvfHHS3!4vT
zVY~2euPKiG0t!8O{E3QG+hyY`DLN#$n^9q7uZ^!IOXcbXlzle#OZI?`Z-jiyE<g0d
zr4@Fkg1`Jhk&}OC<HQw(<gkq+Hjaw?gpKbR{5x_Vlk9P>rcECHto(yyPucj9QMV=I
zq-5D5t5f+jTiKsYIq_#3zu0(WBZnWq+W5`JO&hnkx!E{JYuuM?l=;{5yNwGrE{dJ=
zoM;)(OExZZo4TU>VdIL8>RmHwpJsnc#NVEs&8gwwU*)c1<2u)70cVK*w(*Y`q0Obm
zl~-2er;zD}2<h8x8+UBnm+W1^)Lh>ao*EhA0~-%*Y$%%6;zaCU8$`CA(~n$!l=P#N
zAG!U=<40jXiujS&k9>ZxRv|xHe;>>5M*%;aAw5%**@Av2v^Zs%Ct}O%q*1M?AI1E*
z^l#Q<eiWC|5|W)I^TOf1*}uZ$B0pI=#_4{-k0<@8;73J2N{hUVA7%acBfrz-a()ar
zr&F`MA8*#tI6f4z7DJ_yAF3akRPp$s_<0UCn<*7$C+linKXgAJ3U6O=tg)LkW%^<H
z(K(1NLH>O_{C?C9piTe*KZ1U=^`o61A;0qm%QQcp@+0g=#E+;SmHnvcM=d|9_?;6$
zOx69)iKD85)dYFOi1HeKqzDgwP$4;3qp-Fg&%G0>=SR99b=a?A@r})sb^VyVBJ<#i
z?D~E*@S~X@&HZTTcXs~9e*U?<)<`(By|SGXdQJS!#@p17{Eal8<)fs9A1y_vW@GL8
zkytBElVthNp>6zFSSVILkFw{j%=UhC@MEAKgZ${|M<+k}`JEG1o&6ZHwtj{mF+aNa
z(N(hD{OBQsMcw_#-j_|n)Ki2H*JqGta$qIf%a1G}alr(Ky{#vupQ@P6k&z+_lS29m
zKJAQic?x;Tt3L<C?;HSQDp5=sOa(vxSOIzf&-gKv>&uVd{CJjQ=*J2_R{HV0AH)2Z
z#lY}mIJ@k}oh6}(e*9Y~?L|Lc7Ba$*kwRYbW3&*KjuKL`xJEvPF)w7SALINOFGa5i
zPH^?9@T$unFRo4UW3psl^W$|trU{=SI904sXS!tH5S$^%wkV$|oP^o8#Nl~<%oj3S
zistw+SIFD{qq#u%GC@{c=*J>I-tl9xD|t`I5=NbncU^g^YsBTQ<b6Lra5>#r<;QA2
zcKPv@`0$}0oBY`9#~MG@irPnhtQYdJTWg&=V)SH#2sgTtPZ&`m`9g4u;OBy$`LR_<
z$|cs_CfV(R^kjz+%D?nurz>Q3xA0?r9QWgEKlb>s*N=UE9ONz}Mf?5u)~)-^|5QBS
zM{1mD<d7dnr0B4#NjHuPPx*5~x=+oY{P^CFAN)A!YW^tXlwiu>>Hpzp{P<b2zX;L-
z4W9MmoF6#@$Q8ivew_E?svp-x;esERUCoO^E(x;M6>fUM{}lYo9o3YFfBW%|ANTyY
z@5gmNZuoIq)NTsi5=?2P@QxpMWd!JRO7cK-9tl1qy5sYIqm(1yj2M-32aqR#Cj%%Q
zK;8iI1yC%2;sN9jpg;hH0w^3n!GN>SQgu^UL?lH8Q{#|ow?qJs1yCxbFIY0gWfi3A
zK9Q1(q)Y&1C94EbPDq6SDheqt9@02dC6Ran|E=FtTdD|YQ*#NAfpYIP0x*U60{`vI
zRsh}hruzfV=a(J8xy_kOJmt%5AmChB1_KBQ2?r1f@b3#9VGY5`f>i`5tSY3MVD$jr
z-;zyXO}DgG0BJ6NDu70hJS?pnK)nF&1aLQi^Z@Dyuqc3c0%#C$j>t9%plJXN1I~U}
zdO*C9kj8=k4#YMK@Xr&GpyvU!2%u#E2N$My6KoX#|6sax0DpgypF;9B0kjREoygk@
zb`tC$*fD?&RW+)0mMlpZAzcM)oXen*?!tQr_6#5+z<>Bfrevv~6+kcHj~7&#jSElN
z%nqPW0IvlwC4giAeFJzQfENRJT6Ac6Pyqd0JN*L~Abg-J(I3+W2QY;Dzet`J9O{-n
zE95!B{mqkXdRPF%-BLO*Lio!8j1@96fR}`fa&<-v86#Mua$=m2SKZR_0ZefDD?(O=
zw27`{QUH^Mr+PY727jSj`g#D<0+=4ai~!yc;oGSq!8ZkG2~ODPc`Ja~!siIi6}<gH
zHhZMhNX(Ng`FtS@1oK~a{zkk`+lq_X#G=s70Cokign=Evy8*lxz}f&l3Se1)|Biu`
z0jy$72Jk_ES6Ss(2r|fjv&%Eflp?DG_%MJqQks$wQ{>|S)&;OFfb9XSXTSuUgQ=ej
zZVd3E*HPOf>u9qGS^5cMRrnUc&s_OdMr_wiDloBW;uitz2;fUmpydA?qs^}Z*d4%y
z04@gbbpU$;I26F)0QSmga|8|su#Z=6Z7Y)Rmy!7<fN$LqJ0N7*Mh{EB6V63(B!Hs<
z{3O|9uI6bW#{)RwO1|eZbot2uP6_|fmCz3VLY-#Mh~#I%Uj%;@{Ee$}QRZ2}bArDM
zQg~iSk9V>!1#mfle*(BJRjvqLm9G5}z@L)+OVEDL2?nNXT-PEYXVDD~S^&31LYGoH
zDRMi2+Y3XK+za47_pTr+2k{_)hXIriqC$`lAK?-A@E{5WolPc35V?cM6GYA+a)~6f
zghKh;!b;vC@`<E?V1B_ri#nz4N5zR><Z^i7AW8;NN=l0aQB+7V!Qz4?1gZI$kjDkj
z@N0IS{|}<9Tl%Ds(m|9F@}3wk7sQW$I;~u5o~#%|r6ANGU+aNZh2ox|bE&KdKEBC$
zvV&M^lgAr`5p;HbJqSptFNl;v&KAz2B`h*U!4kBC@C%_l5Jb@BAt7PGh+v)m&h2oO
zAZi3rGl;4|=d*(!9MyzW7hD_Bc-dboh{i!Qky>ejPX)0oRKK=hognH8sVA5&$kO^j
zG;n#tAQ}nZ`EE9gczxTH?dD5s8+1Olng!8Z2zd)3Ed^Tz(OO6w!C@iC;dVji^0<8v
z9fBzRRj-agbPA#$;yHF_H13gBx<xWa<*cqjbYqWrs5OM{LG%b>K@bar=ov&t5YvO0
z5d<HN$P8k15MzSq6+~7L!=!5icBRFG$PS`U5Q!j|W$GQo)?&3tl0h8L6Mvd53h5if
z@}rrQ^rvPJ&$CuO=fRVK96kOrwY&15pmSHkG&n_qc*d0s4f16#|CK%$#N1`hy$L6j
zKTZwjM2j;o3XTXO+`>6gKT@(U3G$9?luJ6T_q-g$)Sz>id~DG93j->T3t~K-%oU#?
zNb*V$uL_^&N+ty{S@>(NWJ(b2hsLS=x>%#ZX+b<yN+Ee8h?#WkRBSe*x@P)!MdO}<
z@mWC--=rr(>Sd%cJBQto>Td@zKj>_;^IU7s{TSnMeM%Mu@lFsv9%>6=c-@MNgDCI3
zvkgmvSQ^B;LA)2lcR?It*l?K_O4}5~W{!3c?+5Wg5G#UMC-RkoYXw&Yu{wwkg|87z
zU6rM-sXh`3O?~VZtrxPvm2c$Ak}J1Qg7`FuFN1v12e!DS+k||^ND%V5E2r`8!oLvQ
zA((1$m+(D7><!{8;cR_(5MR4I)!e=yz7@%SSN;umA@PLz2ZA{0$|*b?#E~Gb2Kibo
z91Y@F5WfcTn<yL);$#q~gr5-nK8PQL{GYWSC3_}_(?V$fC%4x>yOLkrDrbdU2;w5+
zS@`d+&Uqp9|B@^DL&#;pE3Qr2|1*fcM40m7?;u~af_x$558-+cH-fm&EuBH)+PM?N
zE#bFaNvh&q$=-7<KV()UxkFBPJmQ`&ggl3k)Y#?<{Wqt1M3~prVQGO73WiWJgi;|C
z5_!=OiU}zkLJ=WsnwrJkT91WL!sSlU|L`Y-mvJRehEUq&v`|)fx&M(=q(c3)N+Ebc
zXwf2hb$DDU9aBOmJ0?>NfqdsLx)y>rgmrBz=pkog;iFtH=S$-r_+_hfKAvWVV9}p7
z8IcgaE2-Hb1VRXg@a&!jeje$U=X63+F&uI>TYe&N)413%P96<87u%HuNved9*&<0&
zoth!M7~(^ws2M`7kh6Gs4U-naQz2-JLd`?Y4<EHd&euv!L#Pu%-H`LOe7DZA`MI;|
zg?M;4D_yX@V1p1E3TY(RSdcnRIPyRDBH^ajj5|P!B)>;$5kkul|274!L+Bksb_i`k
zXd6Q35V}y_P-_=LCm~mIrnL`&*dc_DLddC*!mh3)GlXu!yNA#tgr34P+|rbOOtLB7
zOL$fYaaSiHq+>&^PY6lj&xFud2&)VX;c4Oh=te`WzwiNWDV-T4oMdnaLxfX}*`b^!
z$v(%vyE@N@Fid#L8LGV?W=Ted@KOk~Lzol7s1QaoJ}0M74PgvJB7|2$cr}EvA{-aO
z_z?E4&ZYv>@jBWBk&{nYk$++clO#JOgvr^NES(&}Yauu!JCiy@s*$`N!n6>khcF|A
zSs}a`!W&YNtx$iaYm*J7+U51|Thu9+pk!_cZ-?+MLnVZHjN!@Yi$ZuOg!v&X2w|Z}
z_`U0*0xFAGF+~=Oe2F0COI^)nB3UlD(3ha{`yqV5Rns+dg$P%Mkg|}%4?|ePb}M6k
zWvmV1qY%^xv<N=tQVOAb7!|@;AHs$Zu7+?egpDC=3gJWu--oa{giknn>>w}87p8w2
z!Y)}O%x($cvk<mQ(dQw25yB4P+d|kbq;)yx4)n_qc81XWQ|EG>iNcipE3va%@aquv
z{7)4s?2{~8+#kX>?yCG&$bnRrYh1`7!NY<_Qbh~Xj|w>^c$~8)YxxJU$qVV!we-ml
zPKktG{TRaO5Pk~bj4Qbi!p|=MMaZv$zlCsC$T_$4_Ylqt|5<MCXzik8F9}{|01Np;
zkfncy@R!RshqS*#_$P#-VH6AFItQO8cEZRN#tpYGH$%83{I)B(Bjj!f_gu++ArC@$
zDCA#P{zyoUFqX&&<PJN#98+E)dBRv-R7pwlg^@pu0%2#O3kntrgA>70N(zTjM1-k%
zq_B7xkA?BL*eM~nsYSA+=#&cMi7>W`<tN=1OH)|nzqZPVT3NwzuGxxVR0`v(Fm{LG
z2}22ERv2%Fp|X`b<<r7=Dhw?QZy0*md4iWae<%!J7)BU@Fq#d?G{dmM@JmsSf#vNm
zUZ|0Wg!}x1ZgFx}VG4$w+XrTs<cfzyIU*PhqjDHk!l)`)YSs`^O|ZHktx;Yxj9PA%
zlG<U^31dVUBg3d0M!hhGgz-!m>7r9Vj0WNfD>e+HQ5c=V=p07lFq()$TfwG+E!hzv
z%>`Qs{-5WqB-=WSHbQ7HRn#tw_9E%v$~y|7Z(YLZDm)oRHz66WPWLc+xV&c=sjkJs
z$PA;G$m4ElmRrge6C&&#Mz)YXuFk^R75j$qv}F5*F;GZ<w{(CIHZe%ZU^h#HLxn#p
znCi}R!k-tU!Z0DjIfg=B6#Tz2c`1x3VN4BUl&e2Fj4|Yr9UI0gLdFS>7o^Pz?u@)D
zl8IqV5;9rvHNjL9#Mi@^7RHP)-Vph8w{Gjs@xtK*t<B_W{ULU=MUvR$WbCalW{2@<
z7`!Z*6UN*y-VNiuFy0Ph9^-RO{Y7ES597}kN%Dn476{HdS0E+azpu|bVJsG9>MRkm
zRFDeG!dM>0nlRRe@xH6GLdXYU&>*X<bmgnK#$EoQkeV-)|0s-)rNxb5tP|mS!Bi6)
zT>X*l;+sTmv*0JGDoTt#YzgDDFiK93ZIy1``dwjXKM!M@WVZ``AxQa-6bWOeE7>LF
zz@pICVeH|)#{mpuZy5W+_&p5%*9O!6Fph?CER1i$_%@88J2DQ0@tu?&41-_Pe7!aM
z-wxWLFb<3GNEp9l#ov73$rF#KEF2g4*)UFo@qHLSgmID|cC)it_mo)3df*}dQTS;=
zW`7FfjPRdb$uB~F75q)G?9D#s!nnVs{G-0*>Dc)&E`)KB&4qDI8l?l5!?+UWNeQPr
z|F%f}8Aip29`dUq`74alz2fmK$JLpSYsA09_(zJWJ#f@+hH)#5q7f8};C2{y!pI##
zo(S%SaW9O2!+1mo!gvtILpGhP(D!UEtzB$%vI5_E!uP=BZ5HPll^hY|j5ucu`v2u&
zmL!*C_de`Ho;QL55fqG|&e>e~BF^_M`6JHpm8X*x3PrH;)9k_#@a;Mz^?1(5OcaS=
z?UC4?<=Mp}C=tPv5tNo%k45l!1c{sqUv5JzDMIp65j-KBujQd}rZN$fi=ey+%Sx3}
zEt3@@s2D+|2s{zzt9VvC5KbfpRb!({1nkQ{xm9{a;*CI$;QJ_kh&pd@@I^2tf|nyO
zA}}N95kb!gtO)D~8b{ECeTg6tL2Y(0f?x!p2+|_XjRR9y$mToF)BO?Q(FiKLrBx!R
zD!iI2sV=03U`@eV5%ljAXZ5FCouL^{wr&LJ5!8<$qi4Kc1i$A~m?&=`YP{oU=;}8T
z!qTP@G!x!Ag68yda8|1bT1U`AgqJ(TTXL+#)ix2d6=A0c+6n0(Nc-(0Sen;qh^b=)
zb>+nc<gC~wg07<0ErK6&s1$a0YjFfJB8W-$dBMyGo{pfO@LmyQMbPC5B`(>7U~j=}
z!9IdX!M-U;zO+o$?jON`2>1zWwT%ztq_m9>iQpL_g9HahF#3*%@}ZJ_R*+e~N`m;D
zWRIVU4U1qnqeU#g6v3znUUXX-5y8lmTzY-rj;HVHY<6w52szGUBN!LK%qV6>F+PF`
z5!~VOiQtt8UX9?32zEp;F@i}Ed>Fx+2qs7HS_HErm=nR22&P6bJ%Sk#ye{F&=$#fp
zgTI`wBAH0upz#RajNmO%m=(e1A9NPo<b8@Lq_D@N%()S~9l<hDn-{_S2*PJ`y%)iP
z2o{Qvzv)wXQ3UTqusGt}?eZl9lq}(#x~*4ksJ$yZ*3UUGz{D1pNAP|GA29eQIj5dh
zh{BZjvsVgPCAeC!T1)5K(X|nL6u~DEXH)t(f^|}~DT4J8Y!JSY0rp<@lX;vs^Q1bv
z;<Ub5is&<ipGsX;-x9%RF5fETbHQzb+j)yoy*$;vj9@3%Yy>|<u#02G7yCr8U&vPx
z>=r`d*AeV-`CbNp%Or*0MDT3{$E5WG5$6l-gMwRD<R|}5ILV<14!it_kfVZqrOU@7
zI3X73Jintm8NsOtZgHqvX+K7AI)ZatqzsAd8b3ww8{;9DdM1LOMKZII^U9!Kg#Rk|
zLf`UdIY%2jl#`#2;6en~Be)@@7bEyHg1<NdlD#Z=MUeV`2w8R2bJdmnE#w-*Y;Z*?
zF#RJES|-0KoJG$xb==@!-WCZxzZb!MZf;Qoqj(U(LymUT8QXs&coad=D2hdqBZ{0+
z6plI@J5w$p{G=ey9Yr2jo;M1fEzBp`{DK9dC@7?m;EOVhMT9pgrLlVPC`v?8DGE;%
zk45pg6qOS!DOg6ZR1{ALVU;I^losTumUZR-oYBiio#jv=>U>U7vtktd03uPMP(>}z
zvTSA<?L@vx+Z%;0aztT9VF~v|VF<~a+gW`LbE&pu{n7uwX6v=p_`08P6n)u56p<*R
zQPhs2PSgpl%7Qfns|Z#VtR`4pkmqV@3aJ%Envkai`N|^}(Ma7W>P68dimp+lM^WFc
z)gX$7QM8TnT?C0nBBXMQC>p!GNfb?^XeQa2EuCLanhVcYAkos*X%$85DB5toq%G=j
zA<$sEDB4HSL5z14>@3(xaCyt*_S*{8y18~Tg>)C}5k*fS8E$Dz2%G2?MOGAXSKdcR
zLa=uf*{+<LNte@~eo^#~;<+fEk77X7`ErbDsE~nC400udqZlIm89^TRr5cYDKP%bO
zt(=2Z!{~n$uSPLkV*7<CUKBDyaC8(Sg}fv<N|3d<^ApEN_T?zXy7F;C#tTk}Vq(rX
z)fjjaqnHxK)F>uNz%Y0w3wcejSQ{tc=ah=QF4<{<(*-G?A><9gCM)v4N#jv$jpFkt
zW=An6iVvb#5yjjn-i~5P6icI+7sdQ27De$+6vsn}1ySdUYau_R22^WuHW&H&5wSVR
z3M9N>Tg+G*SZ&sk*t;B-D3(X@eiX~1pblHFx+4EG7s{vjoNd`WCA;>zXJr(tqWCz9
zb>h|PDAq<XYLK(CKIE)<Vr!%=*7_)lPg*8<D3_({qu3C|W=f*iC>1|F7TXjBKM1U2
zv6K1YJl#qQpGL7oN_jduCHX80Uc#|xTNK-)_%@0IQG5}_4pIAB@Jj~&MP(=VioO+i
zj(1lSUojnt?UoVXswY1%DsxX1d!yJF1+V?yY7_q^iv6-D@TBzNmdU3k#3?)&#dq9r
z`c^m|#UU|%IEo`t3=BH&T5Mi6ag^O}8b1~VIWHhNj3g&y#MtHkN7Z*gNl|=XFR;60
zkhtVsRxYwb-0tZ#-P1jRBsoY}Si&yLqJRVe5fvq<2r8g}D54;Oq685T6~O?Q6DlG}
z1jGbL&Jw=cZ=B!xf9KS>=hmxNuhOgPp02JQHfnD!_T{3Pg60bL=i)#vuIJ)LE`G_y
z!CV~6#qnJHnu|lZ_#@Zfj60l*Bf0pUT~VX{Zz7>^#qq48NuKgm5jSyOT9--rpSk!;
z<bMn9%Jg^WP6+3n$>m)9lZ%rQJ(Y{|LQd!6OfJsm`ma{<?MLdn-3!j;f=GTL7Z*kC
z?~cWcUdlzq7xF(GTW}>8S99@iu75XsO^~E?ioYp#y<_oBF8&H?DX6WWgo2U^$|@+Q
zpp=4C#XoFYnn{%k(iH!QG^6C{ihqQb=Oq~}Bb<k7%PXj$pqhf}3Mwk7BzdbS{)yen
zihuO-7RCP@1hX(CNL7)O*AQjOGgwNJQ=T}VUPnP)1=)&!B(0ucrsAJgt1rBPAa@LT
zD3uCXVzZ(0-zmad6*N-(ueLQ7wSa=#gfvl*qxdHu8UA+`kA%^t3hLZlm!?`MXsMv1
zf=&urDach2RG=yTGNrJdPZe<w;;Hh5ssiGT^+mb@{tun4z!72ynhGo-ObQ7ZJEb73
zz*W#*@qLEDQxFv%5lp-#OL<H|JgL)KL7OCRE2N$B-z&klOSFUF*?PVgbym<t!FUA|
z6m(V4O~FtF#R|GB=%Jvmf;<I170l<Gp9*?Q#ybQv%Vb@>p4msiijmoT_jvE_0TsV%
z)K5Ww1qBKU733=zpkSbaK?;sc^SzFr<O-L`8qDlJ51>Aufqzq2Kt4nP-?J?evkmL}
zwc<<TG(JqhoeJ(&Fp7Oxqdv3WrC_+?zh};u&qpX2DOnOPg!fpNIa;D)72Km>jBuLj
z;Q0o}DVS5Ykc6)UH@lp5uY!pRo}fc2xKF_(1&=6rRKfiU9#Ak<!8EpFNWp^&CM$SI
zLHLIM#yhh=tYC_Q8h>OBelMRAb_<2m75{r>iI=W9g(-PV!3?Ru<DyIn!=?J!toBTi
z&r*<9qyC`%1D>MWvwKB2N5Ndhe}{aYw3mCqPfPR}#eajEvv{>wV2c(gcviBoqmEt5
zS}6QE1v{?$%f$-{7Ar{6P(s6t3SLrBHHd0KEK#tOBcfuEikIp3tec9ODqc~roO40J
z9~?~uuPXRV!RHEIQ?OFOTME`IcwNC83f9pr-}7(3`G8`Tg4GJv@ZrCLH`y(zAqo@t
zKf-9wuGt$D|98PA1@8#isDKJ@Cr!Pp;5`Lf6l@jwcS~Aq=6X_4@V?ljg~tXK5Nlq`
zOqn<E0|g(lY4ZktBuMhHkZpq71$QX;B$@gtn|VHuYF{Y$l5VD8pMtMAuN8cw;9IE=
zYZ$KQKPvf--QKA<(FBs63ceQ!`40+y6uwLFr=)zhke?Oo5yG;lykEfq1-~jdB=&z%
za8L-lj>h*7EV#C%=rAXRg5MMzl_W~`T+1X<Auy;Q(Sd&|_=^ouQ9{Mv3XUnbpx~l{
z;|fkFIIZ9eM|@zxKMGDtU$KkWZ>RqMv7o`T3eM4=2m9T)rJ&%vD3DxIa9P0(slXKl
zS2-fW*%j=uodpG~@HGY3ML+RWiWY7vV3OXc_{|%GOR6Zvx;0fRsYq3krXpQMY1Ma<
zb=NX$s@c>pqoS;eimLA+<y0_Nc@-5@|92dpaZ&iLJgu75(^nqzeo<u=w}{OuDymDa
zs)9_dCWLKF@C+5TRA?%66}45=QPD^RRMb^bPsOe3e`{ua6`A}yM-_(_M;fU9RO<av
zDbA+f`V45uYKSB;aUOKDx$ID(v5MPNG*{6=MH3Y{Dw=Yd46B#8l5&a#X#D2^)Ff}F
z`l~Bfu$C%XNui30&=CJbMy?7PoMZb-kSa+*)nDrvxS?#QFjaI`(M5&DEGqc7lQ9*x
z>aSp~>K`^?Mn^?h4ALf-O-}{SM36*O6jvzV^*yelwTkxav>StYu%e9=)J{cPA+*4Y
zI~NL)+f{TBVMoDE>^g25_8Q2u7_4nq72Q<iu{kQbtLVWBsOTe==_&fXRNRrYS+-0T
z18p*}K7Et&2QOsy7tYU~CQ|cN%sA1AcQR~pC$5|-3RG-V@wSRW>Zo{H#WO03R18(|
zFo&4!QZY=$NELUh{=vOF1&6CxR(il)f;=$DFhb-cqg0G$JyncTF-FB$)ju9Stz9+`
zAtEQ6oF~4=i*SO9qZhJxZkp!@=igd*uL|Ns!TVH95<<!SDjrDk2Zc;l@sN;t4f!el
z!m0F!ms?CzF<l7HQ9h#LQ58?9cv8h<Y%-nU_Uu_IcrthL`K+m33m#W7Qw0eRFt+Pd
zOnjqB_EQ}3$pv!-nKWC)9F?z3tBFI7v)g6!RPQ{NtKtpSKLy#XeBlBW&#8Ex-BmaH
zSrrRa{}ApVIq<tk#S1E4Q?XKNwOGZA^c-U#55V$JBu{$2q=Lstmk2K9RX_+O%Y?il
zxLk0BidU1V51h?=J=x4x8~TTrX=;^<)hgDgSgT@#q`pZ9UY5^O*z1^Aj%2cn-cqq%
zQppE&D!wYGGB>IGcQ*W?;!hRtvJ`gR^F=?X*vzi`Y~U6ZTUER-yzi}r9ouE|0PF`U
zzE<&#iVszM#AZHI^s&mXm}0w%UvDos+^~?xx)Ud7cc}P8MS_1S<TJs~ReT}jOTn)M
z*)(c?%SAx!?3AibMqyfqg5T#A)tF!OJsq{2AN^6qE)_qi2y`g;S;Za|yH)>ojv@1*
z0t)wXfaqN+IAr@&>=#0QK*cY@4<;qQ3OPiF6mmrHmdrvb(^~0yMZb&XlehcPzc{Z|
zlnkO&5XV#;=aRw&R>cVw|EM^_R&W-mIHh8E-R#pUCUh$1VPt-$APoN_2EDWWBh2Si
zTvTyM#d)qCoYa;1Z@hk>&ShzG;w<wO;U@<V;9y--ab3j?6*oEK&S%|oDT_K|FJ+|!
z{qF#j5TqR*W@q&Ci&?2bT%T8z9z^LN(t`XfRW=Xd^0;@IAj$?&A&81Wf69~-EFVPT
zOfe;i)5n#9xFv`xK~xq6I#}Y&`_m2lv%PfS>Os^9;_V<d1yM7Ij3DxY=odt-AZiB@
z3nCswognH4(JF}CAo!_e9;&)6h$cbQ5BeLs4T8uFB1?F~AhLs4T%v$-hFgOuw`aiM
zJp&p^DkTuoIOy;8GMW=aAc&Sh|7lp$puaK4-$X5fXePY5;HJI)Cz=_!BS|%uP8}r(
zEeKr{)S&;vDk#Y33Dh)#hz4Q*SkGj;_71Ru2uZni5S|bxS)Z^FH(8&EM1QZA#k$Sv
z<UiGH9YmWTx(3lLh_*r8*1w>G6vU)<L9`csyVQTV=u_S?h)zL-hu0(TEDBwMn01HW
zC*4J}XApM;(L*Xfc6dEjxK|LpgXkOdzmLsaY(<|S+U@&~^OMn(b7P$r`UjCOMg{~i
zCy2R03=CpW5QBp#2x4*&4+T*e#E>8+(3gTJVg;m8cMBE=F<i3K)G(3U8N^*e5_`%c
zgfn$y@V{N=Q6d=~#F!w)3Llr$xkm^yju-OZCM-*L>OV-cDGe#PPm(4DaleoU1Zkg1
zpQkh=c~~S<f|!~taas`5*<(q~M}l}f$sY~kG2t_kl3^LyG%{17bDjF+PXzH~GW97T
zvy+ye4&s?0-V9=05cAj%L97m9O%Mx$cs7VvMR_4-8J%4C^GQ1|3Rxuhg5Y97w&Eor
zO9WZ^QXz9|_%5_e_$xsyPo}OA!d$N<B`bq?UHBV<tC9-LPB&oRt`!$r*w5dtdP~NR
z9<p9Y;&|f*_DS!8ja&-;&SKI#LA)EpXF+@(<UbaHufTmA#I_(d2l0LoTY}ii0jk&H
zqaZ#A`d^>^P@=z$Eg<KsQxz)~oRm|a+v%e6oa7Tx*b(GIn1RgrsYFQ{G|T=Xh%bZq
zD~P{?m~kxYt01<&n*VJOUvu6yjD927;l|*tFBE+j#LghT58{U)4vGB7Aexpd*ejgM
zyM+8CxI2iSh3paRl9^2fhJ6y<&uJp$7eUGo3i&mNnQs&^dRU@IlBvH1aa8#4f`26C
ze{zX9KQv+aSP++kxDv$iWa<g_Rj1;Af;bt(sUS{^{CqO?Ob}<2{G5<U{p(*yN-hR*
zNjUo?VgD+p!@A6CBK((AscH7=7mBV+^oHO~K`Nj9y-Z1s|8a)aI@;(+)sUuPxP}oL
z(lwOU&_F|`hB6w;YN)QEh6aA}g7+}xG?dp+LG$ltZqfX&Jyg_CN%OA`l{N5+OgVXM
zcO!nrq>6^BqEk(fm)dVT71xx!yj7^HAw%=;8EOgE7G$)Jkl#BM*OOfQ=1G0c|Bwsw
zW@%`sp_hi<8nQLqs=?6^*3d}vKh5voOH3|ktl>5dO*J&r(1aO}=jRCW1197Q0gZo?
zUC3y24K3I%4T>n-dNHe|5bCrN^7*yAhLTH_XfT<oY0!lmf~KG)7!srfTS%|<MXm-<
z<Ny8nEj?5@D<Y($hG??AF(Gk|g^)IaZ3Wv2GGluow`=H-l<?ZxNqA?$VVQ+gW9X`(
zn}+ThdWigvq<&8!|8^>-&IdA-eKZWwP^5vM9_mZ-(ZD<n{e+PB*N~s&12haw@<AE~
zCwYO8LJjSoFJhLVn*V{OVi{k4xrKa~aJs~u8oq2;c$Y-^L70&m?$&TW9Y(__jUP|*
z_u3|D7^7jVhI=(k)KIx|@jV)<rH009`0;rDIKk-011E^ES?6LVb$o2#(Tbt_M8fZ@
z?~G)}Iu{S_T>PMh$r_HZI1LYJcv!<)4R30gqG76rMH*hvFipdB4f8cD(C`Q=pka=N
zxf*Ko|6erB(D1m_s``nnnHpwkctWCYKjiPbB{ut>6bYkGX_%el{8JuEp4RY;hItwm
zUK+}`7e=J}U;miU+5hK`XDQV1oQCH$%oNFp@>x?hWD-Y~&mvN1F(3YDSjqm>@REil
zoL?H2YoL*(n*Z&NmxVujGIN;*Hkn;PAv3O!YP>4Q)Yp==da-ly8yZ$=SR<0vN%<@z
zmD|evp2lk@{q4(j8s5_IxrQ$^tk<wX!xjx&HEh)IwuVg_-qBFyl&?8=L+0+&K6#fF
zm=SqT3^qHJxtSd}&F_KtMZ%8yK*NU`KGN{9=I>(PJf6isg>4$PYxqRNr);2Xp6*~-
z^#(ABmOm3^a@LKVL-M7DuQdFmVYh~_HGb$7J2iZ-!9J1ot(5hhh9^rlq$b0L&c%FV
z<Oh-eC^)&CU#nfh^}GQ;YuKaVAQue{dpVs?Wc?yZ`!sypxp=>D>K_nt@2&xV%19lO
z=wS}Qc;8xeGn=Gg-hiVTe&@odqk@h<H2kR{RmVLuB7bT4Tf=z`7c?Bxa9qP_4QKvO
zJx^%(hYN*<Lo4!Wkl_?vSN@shQi|V83}-c*lXAJC&yKpN;gW_c8m?-%tYP2T%tZg(
z>|D&Dq<;8R*1w{EP4GHfm*@BD4GlL%LY|_dgzitel7giK8LiQ!I88^oj?yAYSS};H
zY*MG3klMM06?Ih7(Mb3I6Q#0_TXfXak)flC?r&aK(@|YVRZ*@Xu2Ms|b2>9&fumeY
zM{OMqbv{t?D^o{DeH{&S)RibD^>ifakeQU6SvD|BIOR^80xC1yN+Wp#n8Y4vtm8Hv
znhsq@6CF7^TItBu5s+NXb+i!WraGD>ZGKfdn}gL-#}BgxvQSPOqM}395!8L>q~G%Y
zyx9LNg5ia-1%?h&ho>W=!_pBFQ(+yp4oCO>JmJ!8c!Id1&~R@fT8`@A3n3)87}+r$
zo2nF&$943X<Cor6M>`$IbR5^wUdQb^p4YKRM+Y4pbqv=rLPsYZoptom(OX9s9bI+w
z)NzLn{-Z=U-QP6lw`;mfl#(7oZXa6k=CA@LG4L&pK05m97^dS+9eFzX=_t@qsDm4e
z{dMHC&?bcgW<(erpkts^evpoeqqM=S+j~W~jMOsr`LCB$`=DqDt2#5kSVxhLp}M~#
z&lgK5=jPgww~Cr|Ddw&vtH-=|>G=8k0sLmsNF8^xo;n`XF-pg19g}q2uVajku{y@<
zm>_n_+|0a3n$x~Z@i-lCmJa<pwBTMQ>4>&2sQgY5Kfc8OgJT=-(=oH1PpFf2C2L8!
zERxAO9%9XPJf`De`sYZE!fEs<G0u8U6%ya&=bA3|9}zs97Mh{saUD;yL!|99b<EQ7
z1Up|=zyGZ>PwIF|jLa4_4&NLdbA@l~n$0M~JRJ*kJS)QaI;NiXePH6Sx(juGz2X}k
z&q)#`l)s>3v5xQQiaK7@@sf^Lb-YF=)Ui~@%Q}`x4F{g|KQ6>-bMy2S9V?`lmg``Y
za*i6;WPN4nl{#M6u};TZ^q&#h8#>mA<|-Y^J4O5plGQq9KV3w=R>$w{{f}9_DTJM~
zUdIL<U+DN!$3`7*OC`6{U3L6jB8%6H4|TjF!gqDNr(?5lHesud_l0jsN?x2(MEM62
z<u!uFKN9}2;5I?77(0Ye^AjDP3jZuA`CQ0^Q<-1s_*%y|I=+<!HgPdxWlHaFMEs6p
zF|6)RQEn?2;vaSF(($W~Lppxav0KMJ9sB8rI<6EK4B9o|$hl0;h&?*?avf`3uqj@!
zd{fZ@>12L=<rj9~(?#s(gCb$-Z-zgthjkofN9i~sWzoWKLO9v~5b_silkBknDbc|t
zv;GzdN9Wx+MJIIp!{Q7yHgHnMDLSX&FMy|YoY7I%Ksf_vb)3_2O~-W|=XLO()UN2b
z%B4fcMG7|!yrko@5WbMfKQb#!E1;14#p+rAaz#xWz`(8i8#-?4C}kkkK#GCcfBNs0
zl{Ea<I7=9KBfWrxVLexdw1PB|mp1%aoG!?JWaIxTmNERlQ{?}+l{fJ8OZg*u6jU-$
z!2tiVu%h8thJn1YWZ^o)>{Sd@HBik!bpx3OvJBKPP}4vi19e3$!@w7#>en_<OQQS-
zI_4_qSirx!BdKSgzJUhJyTNxDF7G4>O(J<i1Dn<sWgEEF;5RD$3R8!F%txF263%S~
zniz;0h#AN+5HJulpc!atK&hEc%@%C?w1Q>^nhPQ40@cz$D+9S=O%=If_*WLD@+)mm
zmCYj24gX6!mceJUFbr&s`qoSX8P&5$Yy*zLw}rDK2EqpRlq%pd=o<V(?QG_HxO9PM
zfJjbd{)=VYKx+e?4RkTk#z0#G9Sn3d(9Qrmc}0Wl+YPiA&IVG#&%W_1VVw+ozHlIU
z`xb>n@~-rssRO$SZa9_2>Cb3)iBkU#1HBCF9EI;kp|^oP2Hbw|`k}9ZJOd@#qhx#Z
zGtl3_3t=n{Bj3OP13PSdVq+j(!oXY$Pg@vlpuoTo6GbKpN$9->P8ldNFx0?jtd)Uc
z1H%lgHTdV?&F?h$*Lb+kz$631>D8T-k(3*Fac|BD!53NvMj04wV1j{H&S?x|4BTU2
zoPn|I#{JrbviTH_H}K&(ZCj^0luQ}o4DM2VFFSmXGg0JJxVm4vpDt?Pc>{|KJjf0=
zFo)GP@DMxPz%&EX4NNgGmG=9lKRGZXqlufh&$>|}Fzq$v+mfXoVP6?|%s{^i?&BR?
z%4aawErBMdte5@{JZ^wE)4(htPY6CKNcmHoR!LqZ((-8o&lq^tz(NBb7iP>eFyFue
zY46KT-PaFmY(7JiH<UW#jpqz}^{}yRV#c0Now5717wBCEmK#_>ecCjz#K2Mm^M+?I
z%WHdcTC_}k*}yUbB(HFczOgRm1m><+#!fI=_iAxpm*Q6qyhhhGu*$$n1Fv(q@5wm3
zKj)poP}86KGmJf)vzj`4bJnn*d!;hz_Rh-fr?p=5^4>JC&cOX?fwwsO(gN=oSZ`nh
zM{|R-k<*RSXGx2<86A_6c_rtoquQQ3GwwfM@?8V(iT-8-tjrd=eTl&Pf(2=Tt@MZ6
z0v`x|Xy79QWox+~v!HKWYoo%XZ3ebW>JGtA1V0sI>cO?j7Y4pGu;0J|_LYI-rQOnt
zTYPWeYr{Wc`3>86So_w%cO1d;ft_4-dZn@g3?DqF{9xcm1G^0T#KnqEbvS3Y0cQVM
z@X5O}$oB{**()Soka4DmZ-J6u4E$!`C>?ldi-QJ!6+(W<z+nSN3_Q}Mn9+rTzZ;<2
z{4F*7gLQtb1;d|0{t|q>OED{aj0y%$82CqAVq8JS&aCPzF8;Z5ng;jgR5ek}#2H=!
z44gA?-oO<DR}EY+5PwCX=4JM?flJcc9J@Pq_fPAh94VDT4`J%R25xexH~kU3W`M6=
zUpM$%uF(xH0?S)cr-X@;Cd!+rV4{?XR1>95lrfQJV)9>k>4GF%yA<#4QcS{7R)pnD
zoJvYcclDDhny4&El>{4!@D>wQOt`|Slh?Jlx``Sl+MBrDL`@SJCK{Q5$ushJ_C!vm
z=`RSiP1G@c|EX(YVl+_SL_O1Yq_oWng$+#P6l74&4$Kn$&n7AjO=O$6)x`L&#f-jI
zB`_stKw}fPF=NAkZK4TtnaDMvm<X7lt2Z~%!bDRO%}n1JX1}GJcqWgfKeD)gn_(F(
zO|&w7r<&EZ_}dbJ?OPm`-O@!dO;{#^!Wq?s=q3yk-RC=$w7sA;G%{Z6tb|Mu$4{@_
ztgGUf2(urgAkRd^#QC|+U;8XKDw2;H2IibB!8*iD#7*3PKBu){8^N}M?F5<BIHgtx
z6CF+TG;xQCP9~l^q@6Dj=wYI>i7qC(n&`&Lm}p)vz^TopfQ|ZbQAR{dr5jW8-if7p
zndohzfNGblKBhle`kC1NK+C?u^8`zm4=fp)M`3?S$`>3UIMBo(A%g|abV{WfO%;m4
znKSAPHBoHh7ZV3f3^Q@3iPufMVd5?m!%fUE@wkZ*CPtc=Wa67wT3CN*cbgbvV$o^q
zlTOMg6QgBh_0In68*Abo6XQ%A+HKq`I^%^;5M0)^czxI6i6-tdv7>7-E$kD#-^2qZ
z9;7#lsp*0bnV4c?s_=&e-}%JxUGAlH;xrDE9w1?Ogq>jGG10luEkwt=H5&NqV9rdL
zO|O`kW#S1FPnvkj#0w@Co0x544u`|U^YqxoEv&S_T#i(WRF3S^CY~|TZ;8S%&&2#B
zUm)aJ!G&z*d|%<;HI0~kSI^W%oc?Kn604LKO}u1ciHW5qnA-61j5_(L43i$oc-h1<
z6Cd<SJ+Q!FK})j(%*z2?ZeoRrS50&<16)a7Gr`J}tTg?lY1=7lm5J3R-ZQb;#2OQ8
zO}t~`T@!DbSV!0Dro3(9Efe&XpLVud&;H-8q_wYmeP7EBCWspaAK21zlPG8YnaM1)
zAK#zT{RO3AB>#OATTFb-@inp4M9S+eJ~Ht!t16t)4>^^Zrjl%<7n%5y>(4}Yhlx*2
zd?uXHjSU0DPdT*}pL{OzFOsPb+~-pG6_>A#%425WTNB@zI8q|;gNdCc&UIAS<ZgFo
zd@uY|*J4VT`lIOV68uSUx8To$dj$6i?i1WEctG$<g_K|EbzHS9z`|h)xx`thYT-9=
zm18E3n>fmeyg%o6(_h2?F!87O%wHz{=9<9E{VA(Vr2qr3RwqpS!w#`f!oo=|swOU(
zxNPDybCn95WzD(%ORmULrP?bBv!6F{fy<*5_w8zpp4q2|LXRC$HgLtnRgMdXnEo~;
z<6jdSKCX9-wO!-iX{0UlvoqWjgL~9eR+7~yX`z&b@)jysNVSk=p|piE7Ff?a$ND!6
z=@z&K`bC!rl(kUK@>}t>6JT}{UUw>5s6=6DmzAleq*k`TS$vDA(f!Eja@8zUr=(SC
zwuKrNYO<8YEk^InY51O#VWGZ-1{P{rV6?V{Iu`0$sAq9gI6%n=E6^(H4h;t0->6WM
znUGt^ve0auM#)#*l<Mm=rt&`ORtqx@r2McTy|IPcEcCX}hi$QtW5Kf!u@JEQwXwN{
z78aT^wTIHo^6wlN*r=8kT3HBLuq~Y5TqjqOJ{gfguCV@{71cseh$cvhF2oQtEm%o;
z*OMh^v*~`#5hGy>uEoDmsBN!QI8`~Vq84J7?<99vh+F<T+|feuOG;}CtVtWenUw==
zEwmF(VS5X=CwT`Jw8o{7p_2$ZTj-KZ?P{T$h3*pVVWFpxmX%9VIe`WHa(Y=fTBcT$
zeK~zC<XITX(m57sfqoX=ELVS^h5nX*A<h>ZAlNxKK*=Ef1hDYNc%{I?tW9pAg^_P7
zJL|hcEd0D!DH0^%ZSyb-cUqWW;a&@OSs2cla?}}XVT6T}L-U$1R7Nqcg}bGC2dm^$
zSaZ5F<#l(o1>zXN1<m>~*F6@-S@>wPGv30g4A*^KyShM`NN0Fcd(^^X7Vfh!$-?~>
z9$>GE!L5P7=I+Xt*R=;NocYq3Y~djx<PX!b@Tr2+lJe;mQYI=?crO+hvR0d6;c<)a
z)a6&0<j!PcEzGtsc9U{$tFv~k_5>YlslxE2kf#LMs5zqZVnuiM8s!-a^SD-oa3qBJ
z78Y3eFocgnc-F!~3-4RlV&ORp&s%uM!n+n0S$KgBwEWwT#TH(q^H~0({gQ<x;w>vI
zEVb}5llJDkVqqEGK;|`dNI0#Q({+V&>b=TT3%w4Ns<<Pamxh%VrY&-KRXtgh|Ax%#
zly1eVEv&JymV?e=eX;gN3+q_VzjM}G*kIu;;Vg@ixd*h#qf32~lES%9KY822CYi{u
zuXJhi#Xj!o6FKi$*ldAQdwXW!hv%IKHaJ@?d|;t#2;D;XkR!<X7(z}6&mGA5n9D*4
zHA2{CVY`JLTskc5vhb6IPc3|A;Rg#pTKL?;7c!tbEqrMqV@%#RtUQG^0$))s5(>ZS
zo{=$L3APF}Sd#G_h2xd<6$+=-_jHU5mn37ALjOPB-S^Dh^it`=d)F#^IH{K@M=ktr
zVXuXKT##2O`vnhMI3VN~!GnUo3R33~*X@-G$q_oX2zR-GW$QFb{@}n>50nV`_@{-x
zEc|WZn1w4`+16^uEu5gsSvYIqAJII;wRf3vQaH05KAU=4BotoGPCsX1{~G0@;CVqt
zFR(Kk21qU?C6{Gwq~t1{*1|O@>xSTULBHt588?$WC4>#P1Sl*SLa7i^Lr4puV#u!{
zU!P%Ll@0leaA|2p8No!|%7t*(6sNo(Nd>xe!vIO85Gsdoi&&^CSVb^VZnY$5xiv$`
z2q8O!TSKVDQbMR3@~_(TRl0GV5Q>Ipth<@ROHaKJ>W9#Pe$uVDX}99G-HJ0q$O`ex
zEiD>`z(B&lyp2LY2)EI->iTnmj!JAC@+SzF+(a}GLemg#{FT!-gk~W$=UYM{X#8SO
z2rWa%4M7QkH&-mTRR~9OQ@K!c;xMSxJZg>mwC=k-LbRrbV1y6~!4AO;VRuR?b8xy9
z@~@km9h`>8_i9cEJ6rj8fZ-7OcPpllj^~Eph5Sbf3=tvG5MoJ5JcQQ5+ax6u)+p^l
zXdm+D`|TlI->P*9VM4d!4jiDGZb!jRf}I7c?sD3+==Wr|;_e~z2;rR&-VLE=2zP`q
zGlW?o^a`PO$p6)IZwP%t=o`X-5C)1QPq4pWKfz}%m&h0L^kx4?%AgPihj4cYqe3VM
zp-__U6dWR0%z+a^<)I<WSd#MCk`(e`A(X%3TevHkI$X#IcKdK;q;L`{j1J)*iH;$L
z@c88tWiI7xk<!PBoI2w}xc^Mfgb)(OCx&oe2$LubVR{IUgz$i9P7!=Cgvml43UMFS
zuLHxwBKcUNQ`yxaI2Upf(MM@EgjfFcHD62W&tOd?%ZDO)B7`SHSRTTP5S|KQwj@0(
zI46X8LRiDOQqQLapAlq-%$HOeU%=^b)h}fsJvM~rMgEfDq7Yu-pv<eo)WsrsQ81yu
zgbr}gZ^hCOUKTl{%S8A}2)m@8U!~iJuwGJE3R3?~A+HO*A-F1p)k4+?HXg044dGR>
zuuddz2_|fA5KcQALwH;GrljQjl@cA#_&+h;3t@8z?~A+AW4DC-yTMb{{U26aL--&m
zKUN{|vGAWm*uxoDvedQ^wui7I<o{IpgngLl|KR#GgwN>JPT+Hy4qt}w1t-h7{*;`l
z8u*GyA$-F%WOUv;l><Ks`8I^_gzOajUhoIO9|ftrD}-g;iW9kZvl<oMQt`mv5cY-e
zO9%&fJ=&hm>nX#2t`#K$2LuzsUqg8GWk2<h2rD<JNB$ev3N9TsR2#pC@P{NdxA7;N
zBh74L<8Numl@P9ma4dx5A)FAk(;=J*;UD$`ugf8vk{;ud#lUBAXSphda502SA)F84
z0*CeGmb``IC?s?kW#3+wQus6f!{7afng51xEre<|s@u5EQn<F;NVBoITk*{hO4z9X
zi<@Hm4<wm)di%VRHcHw4I$5$!px%*z{6(K`qqL1%Y*evP#)fv*FYe{CX=QCZ{*P5o
zu)JUe!HR-Rs$`>bk{@UnsA^+sVaB0gZLWTEmis?dYS^f0qoIv#8yPlg*{H|**r+WP
zsAHq95U!%U)nqeyg*|#Ur-AL?#$?*a;^XK}N{h1^1Fv-S1Xhe!pIdD-vH`L4_~eXH
zC2R2xs<DmRZ2wkj(K~+8%|C8V%(4Ae2W&L8k;AVY+x`$!(zZfM3mYwM%t#Hi5@9Z_
zE%hG)tE2o853(O@Y?CD2hGAozjqx^28$0$mZEUo)Vc7`Tu-SWyTR1lO`-qmu)(wz^
zZLrR+pl2f@Bq|saj0?6Fq-MEpN;@0vZ4}rjq$wL6Y;?EL!$wCNoosZm(N+4YvyBh5
z+I-rx`aS>dj();E=_W}elOutiHtygvd>ez<jW%|7D;{8Dzy^nRalLJ%Pj&m)=qn^o
zkdl5j`U}rbN<Kf<pBed3Vz3R~>G65>sJ`j6&s&rsHj3EKHb&bRYNOc3a2q3R(4U9d
zxYNd6Hhx~NuoF0T4VwDD3i-s3c}Gem@3#G)V5N>*{GCf7uhe5~{|a>vQ54vRmN-0<
zCfK;w#&R1gY)rIqpN$1Jp0zQ_#{D)PvGJ&l2W&iO<6#?9=q)KJlQ~k`m4|Hq=giq|
z#TSqDXDL&~4W`+cE=BPEaK?9etQaf#`+DUux`B<SZ9GF~wlUMjEE`X7cCS}>MZSE<
zx__$kq-31zy0rF`?LUZMm~CT@jkywiuZ>Gdx$edDZ0uQ(K40`%2l@toA2HWL8_(Hz
z$;J|C@AEbm+gRE#u*k*>w*R1#y~MV2zvD&8OTt`B>4XL8FWXoqlY+lQC>%H_qwb)*
zS2%qJ`A;%mrM`_fZLG7gl6^8i<8>QvNRyY|R)<q*m5tRl)=2+Qzx(X;wVbL_3de#5
z-?FjZ#=AD&6X6CMn{2#eW223?ZQR{HpSjp+)FfWpUDsc(Q&KkDc%R;A<3o<S<8I;V
zQ7N!h_?kuosJtWWQu2|E_{Wk;Axq>f)^?d$<0klX?Nb|{v6&9GJNVqj7dHOl5^Cd1
z8(-PjYh#}%e{Ex@jqinjW8+&P%>Er$gOY(C%clHb<41PB$af`Ee-hH}bk1%eKMN-2
z_)nw#()TAdj|e#+_=}B$bTB?1+?(^OkV7^O3+Y-mg~H!#9HoaO^ZqI157uO;{|w}q
zQ`biu$LUv&zvi5<@sEur4sslvv~h}Vd?Kf0wUpD+IX7(Fv~h-RVB?(aUj(no@SV4D
zfu78js<XoIuZ>Gde%Z#AB)=*or+e{*vl_Q`I9S(h@F6Ejih~jksye9VprnIR4$3>I
z;2_mOnuF2~$~gWSOD9Qp{O1zfYT<JdlHTW1%Q`40seJL8fn!(EK_v%O*aY7EJAM-w
zZgKn>%_ryN)M4Py(&`RsIH>2KzJr<$G91))P{#p%ua@Iq{yt94C$_v(sq3K6M5AzY
zsgZ>ltO+MV0|%K7ZgtSeL6(Dt4zeBmJ~(4x)kthxo?ngcECv!dXzbuN2lPfpSq%pE
zHUpyp2TdJ%Chl_3%t3Rhr|F=DG)i&&+Yi>crGr)uaveU9FUbkZPHVNwzdKbO1RZD&
zR;JX_9X@u*f8=aV)4LRdX75ts-HR;;A$shp7Pf<KY?=edLD+%oz;n>f@qgn)L}BC+
zjcQThF+oP-4q6LuBiJ@6fAnBxd&zsdU<W~(>gb?Tl6Mx;#X(mgy^m;AVCW&y{(?OP
z?{Lsd2vd6t>EocUki4Y4pM%7+)BL1lfP;a;2MG=qEO1chJA&UXhGGXrNj}s;L3jVT
z>oAeLS*jHIa0eqC%%YnuZZXoq-Htz@9&<3t!Dt7Q9X#Y<jDxXk*TFjXJGjTeI0us`
z;cdU<8hF89ooZavCeWQOYWE6G6ueLHiKexwu<x+;fP)7eT=?Zb59H$cu!AWMrn687
zQ^kd*IsUbh4wi5p5=I|&KzC&g$;Wjs=KkFb$KS|%TyUm?Cq?)KiG!!4R#cwjV0Mx(
zODj27_}b1TxxM&|gLw|-%dCIF!D0ss5;MiYLdU;JV7c`3=fnx07hFX7X^nScFFJV1
z!A1vfJ6PgiDLt0CszzRRu#8@}q{V9ve!5}3;$Ve?S6OorQvTTu>+u1#Ne0hPCo-&b
zKu+a19ISHi-cn_?gS8Icbg;(Z|75ugRZJh(IoObpJeK#CgZ09V51fR~%iW8)aWka1
zvdO_a4&J3H2YJ0ydF5g$o23FDI(T2m7QwB_T78fZb}y#pM-D!gDCbwYS+Ii*=i~}Q
z5BtmGrw+byxbERI={HI~cko4$f9c?@dj6zl_{PC^4t6^DR#Nx%sPj~~?)R*-gMS@d
zbMT{sT@H>o_>Fxf<FePmKAHQw9sJD2#{u`7c%yhvi&TdFboC3`K?lD&IN;zH(M&uC
z=8}7ei`W)_2cH8+JS?dn4RwxkMRIV)!C41?IQY}S2?zghNpbMEjPfxVSuS^cp3Kl+
zO+79iOCucplMYUc!YRjp=Yhg%Y57FnrJr+f-oa%_y&$GI<u0-blJSzrX<@={=ZY++
z<X1VTWENa!pK!Ggqgog@9i)U&CXBLSlnA3_7-?aDssCa|MyW7Tg|m7a3;l(iZBGyT
zkHIM^9md}7#ndbpMtM=I97Y8p6~j1uv;Ugrb(uQ;WQj^5?0DAS%ey6vDiS3>)4jNQ
z7&XGk3Zr2dHN(gVqh1*G!>ASZAFWfTP8hX?vy*e?)u|iyo4`&cHekl9*79GR%rN(D
zGwwa>_gG6KBRh;+!)O^st1udcfiP|hqe<AGQ|!IQV&O_vmloKQIbj4?pAr5wg+1Jq
zeUg^nER5!~&{^qlQEL&#q|Qp8J2PgV)s9qkbEWcX*dGoh>|fEo>!bveEgG_?zY&HR
z#*<+@6^0c?D2yRt6op}j;e^pWj2>Zx!*IiB7e@Oq?x>RDg%J%S7DgoO?-MbUtDF)K
zqqRgUr<Iz0D5pY?;x=J?_>9vwj1C8L7@laGbvwD}bPJ<n7@dS`RZ?2C31sysuD(B~
za~L1*&*>6IS0O*0%wd!YETSii4r6c_1#EJyK(DZWZ#h7C?=boZp}cPxdBXc8CH;lu
z3(lP943vyZYX$~|5j>T{EHs{a(r*P1A`)v>Nf{aj4=&yx#sgst3**i(#)UCHjJrf(
zWEgjcF<dzHM+o_>QpzYHV+BWt`S<kcW0E@A2YmbY&|oFMEesRFxKC2=6`YvVyyxpW
zOr0drvL#a<3}Z4qp;3SR*MXEjB=VVIJe<^@62?^F(*&mrK9Wp*RLEmt%t%Te7c%{p
zlvzTa5Nv)t$LUc#JN)0B&vRkS5k5DJr^9%L)1-O|?<nSn{U1&9B<W_=lm!WW!G(f%
z^eCp<^I;6|YA+JWu($o&rx(L`iE}oNvT-a4V`&(tT%30Cav00P_#uoR!+0f(<zalp
zaSvlf7_Wx$ZW!-zDuuB!jJLvAPwx%m4UYB0b+}-z3S)H`Z-)Jg?;63if{bpwS)yJ!
z|8ACHUD)4<%patDblln?Yx3J+Yz$*WYGCTNbmFEkHoU04BN9fh_xEpfH;2JDsamC#
zqJ{UlfSk(NBDhuX13I>lv@HsgsK1R9DvVD#FLtDFmr{0cI;WLl(r00OE|SEvmoJ3x
z4C6~7RQM{4uao>6A>W4aT~d-T^1Vbm9Mg7%`T1^q=Hhb~yTkZ7j9xB!yV%3UEsTmT
zD!JGf#{Mu)gz--p2g3Lzj3aDL3I7-CL7Di!hOy+lR^xq_l0#hjn73glvAp~i#?df-
zm&NC=F#ZnX4|ZS}yaVU@#`kl$C>`UnFgyLXuWKI<`wtDcq;PFn&_y}PVda|aq9g}5
zj5A?e3gfb@IcLK-#~F081nu~17q=s2S-TL%#W1#Cw}MUj6R(7EHH>RvTxa)gu0#EQ
z!{EZsdU7ed!Nos}6xV-f%xbV`29i5_6chQ&x0H+0F3Pw_b&=+R4P;f*UA$J^f8DOA
zU;nbM-`H|4%Da9On2X4US8&nxtltV2RN2KXE^HT$iz+Uvx@hX6nTu*Js=KJ;qAo4F
zsOh4Xi`uTgqGq^$ZHIPISTP#eTq%u3w_TJ$`}JJZchST}j_a@I4P0a<>(2@^WVvYQ
zBL2RcEqJS7BSDBJlN!6YO(eWHW=8W^O2G9ylLlGg(*;g*7cE?<E`lyvN<pn$<huT)
zr-kXi%#*lYD6W5@Jb7BvT<9(=i6(~6aACS&eG*r(CN1+r$<%L$IAIsAi;gZjx$s;>
zT(ox4M%o@_#i%(VBbMyaSwB0x`qOM%7wyDI2N&&GD^aND`41=}ll_6CWpXyBvx_b+
zdbsH6qN}KNmsT*fn=4OKJ1LvS)Ml1DL{3t(b1LznZMFNj=<8y(i#aaxT=a7>#>H69
zh^|V17lU0CxX5=gz{NlrCXN*AHb^Q@ay=uf(8UlJBV3GR?{!v+TnrnZQ8$dC5-k=S
zCdkw~UEC#nxZvS0Yg2f)WEsUGE@<O>`1cqLqos(_XS91<jB_!~#dMCEiwQ0saPgqa
ze?q}T7x%fCL>HCYFnZ(u>;7HG{nAVhF-MR|Z0Ted54m`lj=Cs=8#GfyVXE{M^;rsW
z-Ld|UxOkM~=;Cn~kGTkRu0!9ZPcAKRh%;Txa`B{#r|6J!OYnpc4hLWTdT@yEv9wca
zXvSO@PrF#jCb)RU#XJ`;x_HUOd>0F(=;vKL>tdmc=OoIS^GPqKDlL%zG`;pBk-y+#
zvG^h7>#F+Gc8QCnE?#l5oa?{nEE8m7{})*273>pn9$I_V_4nq+2J#ce-*B<Y#ReA}
zU95JoM%3PNvDU?#VrpH|AoH?HY&d5(+qGUA%g1Hx(zjh~b@73VO)lP%*~AflS4>g!
zJt3Q2yq}b8Np|&z35g6YH9vCku}HQFZWr9)qOhjFx~>~j`%}?m9q4RdxcJh=2^ask
z_{v4E0jWD(f1~+pt}Pb6aq+E-@5JFhPfg*2O|4n#*aO=4E`D(Fql;ZGesyuk#ZO%P
zUF_vj@A{7j_?zWt_Om=I*dy7ecX9isr|cKuFD?$SGxz53okQY5;UwLkR}Q;4;^L@e
z;ZKGKSGd1%?#NThM?Oh!v?Swq7w;X;`NPGZLjK|^v03}u#iE}ql4C-SOVW2&OLEKp
zB&S%3!0L&mT31XVIpg9i9Vv=uqBzGS_NRv}9xk}J$c5BHJr9?p#551i-5HmKU*Y5}
z5xDB&Ul-S0T;~#+7AWOm((l?0sXQMJlizfaB0};KLP~mgsz))S)KB&NTx@2#hteL(
zcqr?kribSTh01v-@8K2?RXl#UGPQz-N**eE;0tdRJ$xs*wyGJ-&hH8Fp>$Ob)jU-9
zP{Z@PF=K%LQeQ%WrBKHgdZ^{0wud@W?vYm=X6MtV;bqhK!?3=G1|Gs5To0MVNlIf6
zw|U6&z%8eS9<n{$>iHXjjXZykfJ0ESS{ltl6iAwQ$nju!Fg*l3Y`R>cxrY`WntEvF
zp|$LGJtzBmEj^HwJCl>^p_K>jehxpIGxu<g!m4@*dj9xM=p1-(ilPbES>eki7$~<q
zgg6i)_v>)EgzbU2XkuN~li|dGbkFl|ygRUB9wHv19%Af95A8i{-tD&b(8lwxbnQH}
zmF}8YGKDueY{JoV{_}y8gEDRx`|Or}BQiR9=<K1V=P&YIJaqN^SDRL62D*7zcOd7)
zb4Cvj-93N$(}FrtN$hXl!Cvyv+e04@FL_wvp|6KL4|6=s732Mg9`5nb-$TB~+ffYk
zaHog6JPh(M*h7(rp&kl66nYpUSrYrOM2<p&vj>VLX_#~Zqm(lY7vV?`cY7EioLSiC
zqdbiEFy{YQOJpH3b)1Ls9v=1Zn1=}-?)C7nhbbN=dbrQS10Eiv4@+L^-~WG%aKCl3
zL?065a8QAP@~KJv=^m#2pVUW$Ct5K>_$&`kcz9g+OhML}7Kl%B)_9mLLP`>COyqr<
z{v+}iJk0YjU-%*q3xq7Br+IibnK4l-W_&&=`Cm^i7Rif(3Cl}8yzJp^ku3A@iig!6
z)_7PhlGi<d3wVWxS0(zI;7W09Iw1>UC%oZdRZ>DBC2K|PEx|Vh*9kI-{l8xL1`ivB
zP(nMzO&;Fy@U95o`#(vWg(r56w|e-%LystWM)4uNk>ei0$Ou06u#NLEf~FB{_ppPD
zOa$d3_{77f9#SLV6S>bkeD2{l4@W(G;o(aUdp+#)@RjGMe&gX=AzyoVGbf#r?<Bg*
z!%rS|3jbd42M<4rPC|{iTjYu8&q=<A21^8vFG}Apl3zU>@^HYzFCGqx#J*CJr7#!O
zNDhneNHRM!Quw=vKe$SJxai?e&P@+zIO{$9?STr%h)MkuQl(Q8{YQ#s_LD+b#A%UJ
zk}!MD!+DV;qO1UQE_t}@;kt(#9<E5ns~-N9f~c0zyyoGiRE&=(Z;FMK2uei$>oKM#
z)JjHBO8T57Cb}g}qUjNo7E&geN^9jKs1U&|5maI7;uaMns1!kE;eVA%89O2)fp6uc
zSB;=r1Pvm{l+@}GWJFLaf*KLOt65OZh+hE)E_Ag;STBM)5!8(!VT9JG$)2w-btY%X
zilC9yr=euYj^I{_@+1rEPh~{VSdwmwph<-LyuQP*I98t7SsbyM2zv=OkDx^aEhA_Z
zK`erJ1i29?5oi(UqQIZ4su*O(V6x8Sh6tSq%m^%LBTJ$EkjQPx%R<8uxKe+1IBVjG
zJR&+#L1t+kK^u{Gi=eHL4ub6j+Y8e8?NU08bQDRa2s(?TO9Wk$T|{e%aqliVJp_9S
zGUFXWsKc@A9YLQ6`bLl!LB9wJBN!s7{RIa`kS}C_V50Jagbx-h5Tq#vS}uxUm`H{S
z7AI4gbf@sU1c(10`P~tWqI*P<6~*WX#zZhDg1OR@V<VUv!L$hOiC|m=<0aR9k~Bf^
z-Uucpdn3{9lSF=h1P@48uvQNWnJjr95`0*2ieREe?1$+Q%!=TN2p$pnqcSLuMKB|R
z$0MLe%@heooSaC@Pl|*Vn4OZRBA6|C*;opnj^LRH-iTmT1oI-8FV$ES0h1O8e>Pcj
z=3N-Ua}hkBG|0A4NPHoJ#Ugw$f|nv#62a04mPfE6f|n!wm@QrrBZ;;ra<O#QjoDvK
z+J8-IwNmhP!Ng##j$lm$2P61ZG}lJ(5tn7wErN9sycNOv2;Pa{UCFW`;x8j_N3bzz
zfkkW*&JtPldl77w=m!zJAHf!}xm8+9O_rGGYHCvdLy?ng<Kiz3+!etNF8<^Zd>6r|
z5quWGR}p+2!RHZtA^Kk?b0ylFXz4dnXu>Q@Nrasd{2=o01rtIJ(~n8zpCZ^T<^CMO
zz6kb5uqT4OVn3lwg9k+67s--nBb&g~LlGRNn??O`KN7)j5nPJkas)>s{PZzSM{p*B
zKO*=uf`1}7$#pD(zs1Ng!G!<N6v^=jPKd|SJ|!&ll+@vW%{d#vImvZFJSQPPpB&kX
zQbSgW*{?)!m17h^O4MIk|D}Ee*F}>GH~x<%qf{sn_1jW1ic(R3MPlg`rbdw#MY>o>
zG?qz}v)nRKl#QZX6y>9+5k<`?DllUdw?t7zOjVLxl?AC!;|x`!s3!KSNB!2(6b=3_
zH6w~zQPhp1p5&?>MV+J?b?9%2s@9L9fykMc5+aitMv)ywG>VuE#H~@ZjG|Q(jiP`^
z8b{GI3SNV56XQ*y$Ppv75RfX-&bb9Gn@MVOk+6C#BuX6)Zf+Dx6sok2^`Sodgz{h%
zS`@luF`_V|u!J*LC<<FFxFlCfQrVGcIH^D*44w!hQGYdHq46kMOP#w#(I$$vQM8Mq
zy-0i~S(MJwZ)dv}`W@IgiVl*!V-%glY@%-LlP;2_t2C2BDt8wNFN@@NMA0jXQCw!D
z=p6-LG8q`fpeXu8(U-%dq~?*74DdVA{i5g}MSc|TUAGtp2zk9n@s=LNj1G>XAd0)9
z7#>Aol%L5>EsA1j6hr79nSsNj6&^}0j{0vb+!^(cwGNB=ze#(P4e*^<zUJ|7rII6}
z7#YRgyeC|o!N<#gcU1cB)QaZjF}3rEj4@G+jpFerW=3&O6yu_p6vh2fjE`bM)c>(l
z@{DzF)PINeK0%U+LU_+i&I2IaHhmz9sT4->VAMa|#xPmPLs2{|WQt&=M~p=3bcsG9
zm^-G_qe7VUn2;HQWyhDA6~z-#JQ>APQUBNai1b``EOB-ebD}ugAizT?bEDW;BfwC)
zX8zN$Jd$})%#UJW49~@|Ac|+B_%w>oD2d{^DAq)=Hj3vtB2g@fVkzzH&*75|;tNqM
zj^f2Ab{_HHE9UcrmpDV4^ylk0FVkmwwRkOxl~F8<;*}_tOU75D7`8&8@(RwTQ~q`~
z?eKT;>rww;*J}1;THp;1cUoW-Ez6-TcIg&v0N-<XGm3Rle;;QXCr%XWqj*1xEm3S>
zi=x;p`fo?EDT;Tw4m_8>t7h%?wftX~??l0q)P4=64kUcewxf}M$cRO3rJaKGkD~ZM
zEKu^HkP+uB@{fhj>7;CrVn-C;_bC2EjF9yCEt8f1Jc=(^?U-NlFQfjWi65f)k*-Bg
z=JTH@zTtF;;=3qv)zt5!{&R+%;&SXR^2+O!julJtSp=PMR}?=pDT<#&VYeXVx7Q8q
zjbdLEkr<*e?2qDr)G9rOUxfTE$l4yH!zcNnC=LrhBKTVrM}_<z#h*!?KX_yFqyI+M
zUr7n0$GD_KaUzO;qPP&n#VAfDQ_l)H6~*bK<V+M@R`{<GGMp3PdBL0GeBmYG*P^&A
z<ci=`!G8s*!<SgD3%?P?O(7{Uf9OlaP(lcK$r!$U^}kY5V@ONNdCsnM3}s>{8$-Dm
z8pMzpL-`mg#869gDhgIf>Q@p{Ifh%3k{YimRfSg*tR6#+7;46l5kt0=xcu=ttN=s2
zZ+dOfsS`t8A@yRYFNCT2js0_)yL+W)#n3PYB?griVz@Pi=1HAKLYfLfuyG8x#n2>%
zoEW|;n-(CJOS^le!V@3$URLs6QJRUG_VRyiZxKUFk+c$IiMe#V^Cd}wNr@4ImgIU2
z2@7TnmIy;JILTC-zBIwN92SY2lzTBexXhQwVu;5uJcbc5w2q-o3_W7#8RIFuz~4)i
zH>WvmV`vvcd&zjaU?;&2F?38?yYK0GG}T$6U1I2(ly?)-U65~S-VsAD;f<Foy<_MT
z!{8VSV(6RH&li#xL%*b?e++jo_3Jr6Bm<N3K|*?8?$4yc7=}u8NHVpEjq2+U7DKTJ
zhsAJbGW9MlgD?82BSmsg4C7czGIdl8qmz7$kg*B1zUkv*xG>(Y%zZIT5aGRo69p+B
zo0c*u$(NQ*dw`uB!{itqieWw-DJ}4D47}FNjp6ASro=EchG`;ylFRZ!mkQI_8w~=F
z#PFyP^2dbCh~e=VW(uDb!xKXIlaLCl(n=AT{V6)YwVc^vYK~y!On*LtenzS^FNQY?
zGrm~ua?yUiD1&>W3u0K_yY{m&|Elq4kK*TJSQNvy7`DgoLJW&zSQo=v%p1dBZ38dI
zu#8C$w0tRsB{A?Svowar@}e)1@>gPLdfr+~o1(Ttkk{f@V<5g3!%C67F8GGvD#6u)
zYXqw{NT;bcV_5xX4#QLP^VY|(A?82!T#%c(QFPePAH?u>44YzjhaFWu@NNw6F^ihP
z%lGCO0$;gXxMEZaydT5KDK3xft?iw^l}>)Se{fLVvo9$h#=z(K9|?Xe$Za4>cEs>W
z3`b)4Erw5H_>5CEhOcAzJm&9H^RVz2(vzn)XyjkU{A0ywJ&V8L!o@B+m~%j?_gxG>
z#jrbuof7?C@CQLQ?METI1aDfke~w{K4Es1qW7r$>FC1$YD7W6_H>7UA{{I&HgyC9Y
z#xF4(jN#W9UVhS9{;6{~hC?xQ_(1Ec_8a`YwPsufN8zY=*EKpn&;Q2oM+|?mVq8lX
zIwzPE!(Bb=vmwW0I3{JWI6mv<=TI_xr~bpf63tVB=VLf6<c#21LE1UTwb#lZVYm>(
zMUh_;yexQyUa`F8RpI}}P}$13QCOSG*JHR5!%cQt9I0`n#Ze;eyG_YBO2sj(FoQg!
zz(;jtokh~{^tgYLy|f^|x<Ed@Fr!=?<>UCOHNI|*3UO47BcnBHwf5iFsuahgaXc1B
z<v4DMqe>iA<G4MJ4sleAqk0@I;%FI1jW|Xgs#80TI&pvNwr1SlSIrQt6$jsIq9@d4
zp>f<AN256E$I&2;tT-CRkr~IKpYynL&An+NH~6ySKH-)zkzoX1MvS9z9Dz8R(ptIt
zx5d#Uj+{8|T$rEGVR76JBj=O$W^w-=s^)QwJ?d{AGFUtNw~8Y-jz}EQIFvZlI6`sQ
zaRk|@)BawVDMX7y7h(u9Y0-RtPu7ZKVyS!*CysC&E<0q1^ZY`8>y~?J4F>x=@}9Jp
za`IRlZR2Ri-iV`h+}~SoBaI^AEAgyk`#8=X);hT0i(cID<pyiVIRE4w55)0c9G&Cn
z633u82D7(2D_v<JjvjGvW_6QNxM|xnjyvM$6-RGYHSBjd12-}I#Bun7){hxa`&(>%
z<M{W2mM2)$G{1k`e{~^WkYs?6fr5PTvLKGaI7Y`YMoJkH$K4$3i&{|}<G1Avjf3xi
z6$=g%yi<_EyW$uwe1zag83M{V5Tj(UI(+YU^4K`;iDN<>_lo^-g5%>jEnAsvDc=X1
z7{`5aaL4n0N#&R_<0Lvy&tkfkzohJOCNoLi_?i;OLvcJD_ZJ^-vQv{iGc}HBlDFP|
zXF3P8XED3?5s`2ZXT<S%9RI{|GLD&X%!*?}92;3B7f-}7FOK<Q?a4Tvieq*hbLg~h
zX-|uAt{9<<@-p#^aF*NnCuc$Y|55cFP*xNF_rNYoks=^0OGmiCKKg@oSy&!r^Il#}
zUWaArWksrVlnzo<iu5YIS1Hm2R8*=Wy@M15DN+PPROEm2dFFS%|8sKgxt}|qnM@`#
zlVmcPU{(f}W?)%{F=t?Q2IgmAK?dezU@qOdC(g?-<{t2+C))xu$&K%JKh3~GNn}w5
z7H41y+gj&_OpxVJC0Fa%3)AHpSdoEs8CWm1Xk`XgWni_$;<;WU^^mEpWy8Oa9;<s?
zMrlI^HfG>631xZGVUr*UtMq1`%?CMIj9W5r=3Exr*XJ47o`G{2IG=$X8Q7VD{Y)?e
zyE3pl1A8;DF9Tml3VYbM+)IlUK2u|9_uilMWd^=t<>VfB8*j8ZHHASW4E>g|GH^Hp
zN2CA`WZ+<iF$0qh%-A7GbL0l29UYZieJ{;~?LuFf`9lVdW#C61vd?;4kc8jhpAddh
z@RZ<b!83wq1?f4rQ0@z?hq8;C8Mu^z%hH;zOHQt^ne?{)#J+Bw^{VL2L)q6@0lrUS
z&%?|c2O>IW%lw>yUovn@lHy6cE$4!j>eme1VGWTEgoki91NS7#eeq;tr}&W7n?19F
zTnZku)k}5yGXqbguYQ(+KQiz%!?+sqzJgtDjs>>XeT|hjp0lEkPTf_kX6eDHFU0vT
zwqhaw2(n{;DdgV_yfT#>ig5{;)h{tlLA-(l1$h*_RoYVLitWyZl-!E3Jd3Y{Ezj)C
zyoyl*Zz#w|pV^uD1xa2LQb0jL1%(t8R`9xlq6&(MUPM9O>Pg%MH#*ZKp+e4qk>UzU
zh@yqEd4rLppp=583YIA-t)Ps8sDc&>$}%Z_eygCqf^rJVE2yC0EPH+hl@wHDmiou7
z8kERuZe@jQ_o1eOS_-NtsH&j4f*J~{DM(iE;}WYyG42_7tH5n+X=COvpHhuQw{lwe
z%`ad2*H%zR0WWh_W`H9V*@<-(qcI-8ox&V)X&_<>i-@_(ZDC7KRnR~I7wlTo$(p91
zp#nvLT|pxS=?a=ET%Zz6xv>J9f+h;u?y)jiZv3QzNp%QiH&=|Oau!R5VhoaSM<x0h
zOP4qls0y44T-3W77vG!V_&U#Wx)pd7Z0nZjQ{d&UuNyPy*bjWvIh}KpG{tzV(-rW0
zH@_fBKuAz9Bp6l@F+=awv9wf>sbGwP4-~Xgkfq=~1@9|pO@(*<%(jA-eG<>jPH(56
zy@I|9`YGt3pre9r3cB-VAl-6fL)lIWIxFa+7;l`j1-JPV$+^9)psRut1#Rz$PUYG<
z+r`F~9twIZcvnGBmNRSM+LYaEQyOo#j`+sv@Fp_ZKGauQcMmi^^eY~p>t10?e+2_%
zj{_A9QZQICZb7*w!>86#e4r!u9k&fpFq8%LIC&JKw~QaAV1xp`Lm$o)C$E6#ewQ**
zLA~SYEe@s-M=J=mwQlNNhB#KiI0e(CW{y`dL0Z971s^K-NWo+UJ0kHPE0`$fYm$P4
zIpeB!N#utrJQrK)#eWlxpCUn@DByw#+}`gU$EH0^G5Rq!^BGdAGZoBIuwlM+wt_iw
z)@lzk)^_7z&XuE^Cpcfh0wL5t6|zvlB2!tcV2SX*KQ~qaS*~D(f;9@(Dp)CXgWm<O
z5^{8+k-gPy8ZV6xb=N6auV9yg-3%>l*&t2qGX)zZ=d6dD*!uDqi>GZ?utmXEHpza8
zJJ|+%Shp$oTrs-Y?W~+W>kh#|p=^F?M3WAUer@xGf<5d9%2+r=wpYPEDa=C(zGUe&
zz*h>sW=o0GI_I(OXOMyeQUZURY5lE&dz-D_u><@wYc!0f%WcDqHJT18#$$ye)SBPO
z99E3)YmNw3<oCY{j<MCNsHNgZ1;=^p4y<zEgo2Z-a(0}w<CKEa?4#@`WXBoy9t!?Y
z@La(;*6oUx^9nBTD25udRxT>Iq~I>Iq2RKDE37sOeqntWpLtdAx`LmCToa_uF8zk^
zo2GK~Ro2TVX}1*os^AW@*D3wB1T8w3HTY4=&Q9r6c;UFO7?*=53Z4r2O~C^N4;4HT
zlR=MJy`QC!{H}npm?rr%IiWp!X3qM?%CSfGV68vQ`cuTe6ueL{{-0!L|Ew`Zj2`B1
z1^*~`$@_B!uXvX2Mvsw0FkUdHAjMol;sp7Tdu|~KW@v2UL0&uZiIQLNH9HE}k@g}d
z$Jt`DXqcbEc2uyVq8+c>(R*F3B6iH^mRQt|TK!Xt*^U1H4LgbpDPcz`J4)M;C}v4P
zIwaX)pO)#nlU7EQa;9EZNb%}P<xPeBO*<;t(Tn@Cqp}^aqop00c2u#WsvS-3Xl6J1
zfog(v1e5Ks*iqe%8e-NGtSR_=n*=)77EVI5t{ql8>WR|Ojz)IWw<E=lw@jY~cBGoT
z!pod#!oLU`>2OQ8!zM~&!MEG~r#G=<vFwXJ&F%2nq1lmPhr(kQPt^{m9S-62dHX<u
zE5=R5&5}RxUus@EIJt;!x)~Z4;<qCpBq$g%Lq~Tn6%ig4Y{5*vXJzyiYm!>oktJd~
z!PY!M&vJ5WBPM;?3b`JigS@>R9mMQtM<+Wv3xCIsZgzALo-O#cApN`Aab;5yx9+0!
z5KRBJ6oa_+6qEaUm$l1|Id;soqpuzP>=<juI6L~=G2mIQ_w0CIJO|h@P{<%brZ89>
zVyO)gakL#n?HDF}xE-T}j1U|tNN1)Q!!f4vfgN4jB=BsGw_}1GlkJ!y<v_O&#pffz
zj|C^1u_g&w+a}=?JKB!7P8V~k89Ge}_cg<gnRd()bG8}Eqh`cd&ga>&-i{4+%(r8K
z9iQ5<(2i9+>c`28#DB3JOIY%M8`<Wz)Q**AI?L=>Zt@k(#)C9E#7@>~(bovBHGS3z
zVNx6I*ks37c6@EeXLf8BeUBYmOwV0*Y_(&Xn4b&o5Zo@vvf_?*+VOuie>b@VQD^90
zlkXGqrRlk!ZP|{ac6@Kgw-R*F^!(0_1Hxm8A2RjBb{zR1{RiPcnxV(cGj&{)Sbk2~
zahe^G12Y{sW5-!Lp4st-9p~&gZ^vyrezoI*9T%lz>Cz~XAD>>b<Kd)C_F9*PuwS}j
z$5lIivg4X4480}fx*a!!+%)x{h5RC^(T#+7$Bw&pJhB^aUO48X70tTGW^2c9cKklA
z^{uxW61hE~vnV&Vrqg_EN8JVKjPko3PbBVBHvC&D#<ns2xgCGnG01_z4!p4AFFW8s
z6$k#d;~zGnODRbXycCklfjEbu{43@wJ93DbQ}9Ht+zg6$Ah!cWL`e|L@4#z9@;H!J
zNIt=4tBh4@3kWYPNVA}jLW0pX>93pmQcqG*;l&(y!-3+$6V1>P4qRB6$>=3b#X3K|
zlmn&3EF)OafwDr%36>XRlnO$$Ygy!P3a{iqWe2!-*Vm;eR&}7713?Eu4kSBZaUjD1
zMLerJkSe5x12r9}<v?u*>WNZEkkPF|>I#<p%E;ueui}aI9Y}HDEeCwdjdI{d(!hZ<
z2O5fVV+U*wG!mXJIOPo+b4AZ4Vm1?O>cGES46(VGBx7yHvDn3QIp7eYnxReyI>>Rk
zMe#V`WgdiU4(LMmx{~~+f53tIUL!$npM<i*4n!R2VTMK>Xzf572U?g)O9wI?Xyrhb
zD2-)b<LfkJ^tKMP6S1oU?U@Y+x|p##I?&1F&laV37ETh|Z?*$(ixPOl7E|64vzuUd
zL5_m<bfA|5y~XS+NauG+Odd<5p9B3J7$D+6!B|$A_<Ih#@4#dchd3})$VY<192g^n
zX%2T_gz%B3GD^s32P#SqKM-@Q1LGVRZ~A=b039ZX8FOQG{n!khC}fi0>r!Y_9QZ`c
zsiw~~2c`?J<49sQW;rn1fh7(sbzlyw<)vhP8@N!&TnFX}p*Y`x1;Rfy6@J%7eUZa>
zN4!`>DtusE<}e=C_&#*G11lW3e8;l5qNQk(h4-|p9a!VQeFuJXV66k|9Qe|KuN+uU
z&rtSO2evt|!GVnqY;qXS+Uq(e@}cH4R?eIjE;P5<VRTtr9OyaMnmNFDR-OJ!^5+h0
zcVLGDI~~~Lz+MNq)Zs3NG4Xh}16+)Px0GKnw49BT#)-@cpV=wyV}0nD$aS&4c3{5)
zCmlHDz&8$jOB_<Wb-noS9L6*3aR+vHu^wQFT~Fr2@<9g<IgB-*53_Q9Vm%^Aa@2wE
zP5y%e$AtfAD*Hm&CnTL`9g~>aY1ze34qW3^z=5+4oO2j&QZ6`fQOJ40D-Y9Rgh7`?
zxg66SxGH38ha?7Fci@JDuV!$^ftwEe?7%Hz`^4NktUt6#D%Cgf7YD!GF_sSC2*7PA
z%(2H>-{ny-duKBF)PE*N+>ssS_{RK6tAqy*JaizJiZ~UI9C+-&U+l(tmK}KFz@OYp
z6U$Qvo;mQ`0j{3(2hU)a^pl}%K1LO&ZY(l(e4lM$x^3bN>kGEf-8TCF!@e$3>tFVP
z7mcNWUpkO~im^(}D=Fa|s!`6|atc{kCo5h>ZWSd|B&u8-zF~rjJSy_4xYE*CZaSZe
z{3^JX#T%+|re0G~kPfpmbDXjj5QT(hAr*y1e_cfp6-9;9zX%6~gvSPgI8D8{3L;;A
zl~j?WqKt~NDoROGrB&l=%Glb%EGWJxDW{^miYh9qs;Ho%q6%M+#L6n(R8ez*l_gwB
zH3ppd6wDQnSQ=1`rPvs8Ya?4V70D{9tEi#EqT>5FWA&sw?ULAPdc9`h6cj$C()o|~
z6KkueqhhX#c`E9vuyQXdG!^w!)K}3|MKcvCD&A7@^#*Gb6{#v3sK#1VjaA$YWv8iV
zoXgTk1v|8cf@M}_Qb`w`i-fRw+Ejco&DLPL_3_k1W}vx>3>9wG82nLGV?KjJg{s0X
ze9v=Z0)tZp`dF6)Z7%N4o=IM$I6wBVdQ_uzupjWMMsKh^K2BHRSMk1zAu0l@G1!%*
zqP2>kijayhi??+=dx=aH5jp8mo@mu*R&41lRdD_4M4z#WHGNvCMt|bW9oI%hTNNEt
zbX3t!MSB%*yvn(tb!F$p6z2c_I_rLirIU)zD!QrYuA+;IY!z>-=&B;$$p7A;F$#yU
zxbiT^vffdRDNnciS~-f<Lq#thDIeZz$M;l?eumRX-sN$zJ}juUV|Zd;6|eTE^jD1+
zeEo#y3ODQ#P8gtK+Y;-e0k(lE2B{d#S~1_ca(6oMJ=T-uR+6DAhN=7`3_emZT*U|;
zksS3%6+`{D(ZWY@U-@%$?o+HSj1jT<qJ*(3#;F+3I<w3=Cob0n(Wh-P-afZ2WBXXe
zL=~T?n5tqD6Ca$oV5N16ipe|#N$PeZ+oq10j(oYNv3jVOEzucwhLBk*W}3>_RLi#o
zjWyfnm<rALDi)|XtKu9*6$@2-tKvHqi&QLDv0B9%6-%V0aC~XGilr*9y&JcT1%4x?
zS}2}KeT9mZDps*R^p4}YokWUjRjgCFx?S4WY<(&=uozW*u41E#O{y_OwnfE1q3q9i
zmc!Yb*$nrj>=|a|1OBc(SzA@K9A>@zo?&t|^6e^iso1Sz2lxAJ%1#yZ<i<n_E>8J^
zq1ThY65J!WS8$(-FNJV1b2<>2)PBi1tNJ%mrJ4T&tVOlsdGR`?;-HE{Dh@MZUZXqx
zUd0i!td8>73tJ}5F(%mjAmWQw3Eefzk1CF<I3dbO7Q%(((<)9$;?>?WUa9c9c82Zl
zhS5cwS8+kbA1a=+3*r!vipOkFDlVzG%-&DMRTZ~X+-9wwZ~aNdb@l^#<~7!<H7WJN
z*_@nngAQx0HwAwdr1^`GOjv$ZaYw~{6~FN`t+U-_i(_M~W|=&|%7IXlE$gj^y0v-0
zcCpg>kPU52`impBGtDiJ*jc4pYFsteyL%#MXYGQ_r_wV#lY@#aal=dYqMK=K?0>3w
zq2ezUf3v4uP>Tc9FL^eF(`3(otCZzmHX`;6PUCTsZOR+YZXM2!b0Xe}S$@p+BexR?
zPW<7)a}V-3k=KbwE<AQ2pA-3=DD6TS7hZFs0R5eq?L<K*3ONyQBIrb6Cti0V*$Imi
zMVu(=L@7pb8l_rHu!P_nP81hXyN5C6#x2o_l1?N!`Ae+0MqVqG^3#*b(8r02PQ2+v
zIq@$qSYdinELMe>I6bM76P1Nm6@*|FC*Bzx$H|sVidaoV?(t?czPb}NoXBuOaiXRZ
zwVY_|gw2WCPSg>%Mo!cf(om4;Se-@}UC(LU6xDYkMaWx%R8pO2AUw@fczNP}iOg!c
z6aSazCQdYyG^sZg!b5IuD$JhU35OFNC%jImqPqm0rZXeDO@GFv>2pFCMf)G!|3CgA
zC&Eq)cH%uJB2Gk|=;uU#Ct5g-dw^C>WI2sXPfI5<oko>oqu^z?wG(Ze$admwCwhdl
z+d9$Si4IP*6O+oYPiu7)v$Lsma$=z94DBM~_;5CPS0`5tLoc2YC%QS&-SqF_#DZ}4
z#&GujaQ69dc5f%%b)t_GeZ}EUIQt)oUN~YT@}}SbW}~LDIOISl-il<C4{{o_Ou3a9
z5cj?lL!9`~iI1EZ>clW7#<6lnvWGh{!fEtxqnubYB9mmKm?Y7-lA}#N#)%J1KGuoh
zC(`LKp2hWB$^@q|fZroxe4+fYRE9}Tj4ha(wPGU6Eoyw&$orhhPUG%qiW8p*nJP$S
zniJE7&k&qx>iMfD&2eI`6Z@R_(upm9<ebNo;>1EH<}(p#9SeBY<eSz-PAqm}m*`6*
z59^)SAY`fFGQs77D+E^xt`c1B#2O)M1=k5yYhmPkqZ8{x@mrkO>cl1|K9h>!+?~GJ
ziO0{9EB%#=$fd5fv3w%g+gaO3T0eJU=87y5Dm$ELvM6PzAkE#9LuUR9C-yk8SIkWv
z%CHyO*rCi<PJHb|3763=>}NT!uW+HL3*U05EMD$HmhEMs9dP2H6Nj8Q?8J2^Za8to
zi5cTlFR<#4Pd(~1ZW6v1{K1K1PW<S^aVO4*a>9v|PMi|HcYG>6PYIqDh3581_E|cN
zPd#TU=bikjq634DO-Q}y#3iOVA@#B#$rUHA3jay)n&8n$HiK?D(Q#nvhM!XMxbU-+
z|4=g?D{eV)--+LZ-*)0x=IwUM9Wn0;&K{L|Pe_yDsSkuO)(a;d3V+0scj9*^p0ENB
zPyIv0r|cownM_S(6gsDmGM+@ZJ!juFEA>zD>5<;yFDL#M{*MzmUC8CaOZH2w#(m>n
zu?~z%&Edk8NH!xfL1LWCz~#eJ6I_UQ;dcqj?LyvYHYZ4PcMQ$zLWM!8Nzv?lE)eqz
zzUD#!7tZ!iE$Bi`I=fI<Ogg+S4y{I}HjQSt$!{4^$yUsTloi%DTt*MWMJbE(QnJK)
zw?jgr)C5+Bl0uSPcsp;7QZBTSI$zd>axScPVT}vrnFkl5F0^o=q6=@j(9DJAE>x0;
zRb8kiq_PVz)2t$7K>he+7c4H=Tt<&q-Gv%1W4(g9%(e^Oe%9JN@JC4`wOnw_v__-Z
zbgLuId?9Ofp`Hu%U6`m_Q(cJTe{o%S%Vl&3oG`;_5}ZHNKy;>==0ZbBypdqKAoa#B
z^p0keG?8Sto=9ox!Ur<5l-J@67a}g>sYh`cx5sv7!v)o4%yRb#ew&cnDa0k{cA?55
zV<mIyUYGG~?i17mbr<|Xs0V}uT?m;<*oC#TtqiJI-}o;~OBXU-c+Z9RU1;S(mJ6L+
z=<Gskmof9OgUfi1;A_n`F0^%F_M66?MmrJP3s$*YinkUWUB<&^_nC2BT*!8z8*5QH
z%iAt=bs29+d2(Y&@(y<wHP+hd?lQVcZatVW7kY`=+l2w9{;rTdf_+`+=Q1WC^cOQW
zQ*og1L4r(YunX2vN!*6GFqDPt!a^5@xr}?Ek6ifJh2buY;91CH8R^0(79;x{x%cMN
z(-;@VGtZZd=cx~bj1?T`!cWNw6eo!Jp<qmz=tAi==_l4^PIG}c$%V;6rU-r_NPVgh
z4)jeol^H^23eFOo?ZO;0bgm2YgwHpX1ulFT&1O=Iq~@@DJlif|u?zQZr*T{2!cvnj
zb78s3R|r|@!YU!<*Vdx*S{K&2aE6W4h4n6MaAB_t`{YD#WINiNvdx7}Y?upbedfYu
zm+_|c%H%}i7U5f2q|t1eyj%F(h3zivaABtlyIk1g!fqEnIi5-U!iABen~@V^Bo_3g
z3tzc#ihJj@f8vnZhuFH0r|jn$<hhXj9$<x`xVG$f(!Timfd9tg#>I`<BpnHs!)zJ}
zmLo146+-^K3qP3rm<vCe{5T8H<R{rza4m}j3v+&&`RruvcPr(b3+G+9BVEJ=7cR2i
zK1}}Ag-b46W|>?~=EM8nzb9W|#dG0?3s+egSm!5aE(pb6bHO*%%8j!?Z;H4nn*Ho{
z+RrZh;zIJ1WV+oF^3lt*+b$5Pa83Kn%gJ|nMqIehi^cE8D#s69_|1jGZVSx^E<T+Z
zpI6U#8E*{xyYR$?zuox9ji)X=W8-q;Z8!dK;kgSf-N<y~PZwUeP|S@t-1v*m?33Ln
z$S6F_+?E_}<9hm1IL&{Bykf0bQk!N@w{hb)X^l0P8^ky_;)Rgsb|XP}9#hFHB%fe@
z!Pnf#^G6z;`P~rHDdaW^t*{%fyHUiA9sO$-R~r(!6&15-ue9QBlyJl5MiVy@-6-jX
z#f|E2qgzgLql_D6g_m-pw2+<O8xMEo+$irxMK|7bqk`y0WhjuNdu`*9u#zarre4_%
z2(Mx)Ro$p2JY2{|e{PGa+G@B_(~Y;>NOhx@8@1iAx=~Nu>Il{q{HUz$g9^4>4Q<>V
zBi45#Mf8DNY~8CHdvD-Inj7hEG<KsQPYu_Wc4ObhQtf|9nba+-Us+pR9Sh_BHb1FE
z4a1*3RZ};byOH5WGq=$Pe(`P`-!v(1W5Si{hSLqZ+j!h?xKX8Y!-{{zZ#$L7M(1+l
z^l;<hh}`Wq+NMX)>xRz_O}H)?a>Fl#J^?p^Cf^?yM<py~#Eqzs7G~&}8!4^a$a15-
z8y(ze&6B&J*6pw{<lDxLwk-J}iNo)u(QN0&`a#AmcSpA|*ww{td<E7?ilwvLXx)5*
z;I)jiMz40Xc6H+&I=FGojc#sqcVn{~Tiod3Mo%{;xbdMIy`+}*cH><)jz;2Hm-@KT
z*NstbjCP}+8~xoF?#2jKn|6s)<KhOmF;FVoAU9V5GUf#GqB+=&_uR(S^L@b~f<py|
z33e`Fd=tlloi{9TB&*ZxggNz%e`by0-rX4M#yB@(^TEc{isyG~^`;r?1&x=uif#=4
zd?fAVV>c$U_VzbQW|A9|-FTieZj~ET+$gpxeXbkx<n(<aIMt15LZ%DO5M&-^x-m=m
zY{5B#?CuyepRFLb@vEI>LKd)Kg-~25WRc)vH<k!lD#*JgIxKhNyM@Nj@>WPyT<OMw
zp2oLbt0jGQENk3Y>o!IX*9oo{+#tA7kU^V-eC9^%zYkpYbE_MtSpD4C=Emo4Y-e+3
zb!Ex8u`^cZlM=piW0xDd-S|S3J%Zfz@1K<-?q#EJ<4ZR#R5wgED6RzlwbYsYYz1z7
z%bdGWDcN>F@SB>JGCQmnYFV;Y+YYjdipbEzLXNPWn9BEVtUi>^pda1%Xo0m_0o!pQ
z99=o##<NY<lY;yc5cwJI#cRFb#zi4#1<whd7i6X7M5as97%#Kx_A$N?WF^1i##Og5
zl*DRq@^adB)_gZ^vl6;-(`|fL!ot7h#?R8Ce_?g)VC|h?;U^(%+MUZ-?y$r*m%Ho6
zJ#n^Aw%vDQK%Z2O9=velH#Z)*jhQMB1)sX{NC=h3Zv1ZYCqg*!<C&@a!MZ2>Pcw*7
zSjqolyI5r`VEfXIf7yaO=<mTRH*$F3^uXmYE)6+7DCt3x2e~|m^B~@X+#b9kK?#CI
z1oL>1S4ch&_H-!2i222QO|XDqLBT?Tg#}+1JS+Z1Jt!vT@eXD982E*V#XTq?A`?s$
zvTJ><QXZ7{pqU5FJt*TrSr058RQI5q2jxAe;z8Su)@e(v6`1q<mdYMf^nm7@f+UqZ
z=(#q9grV@@%1mqRnbxWvRP!L&gV1Ixqi>&*K;$TH4Uh3wrH%)6Jvh}Tv!(|#u4dKp
zpf<PB>DjBSj;0o?2lYHi^Pr&z^*zQ<`kD=}rg+e}umxYHlfT8>4zQ+r(7=PgLYd_4
z>osiT!GYB&jXlQifzl-#%t_%x={8ZC2sY&bF0t}w7WB#Rz<)l4RY>uG%j%NbJ;o~Q
z4i8k1(V=bal*k|AkhneYc+g&o%j<#9gQy2BJkUJQJqWYJa$Ec!<J#f<J}oFD;KAy=
zIk-R*gF+t6$zut}=ZJ_Wm0FerzVK@4K^u>8C1S^$=|L-xQO}d!v}Lh+ylHDKSmO;#
zTMxJ>_kn13I}cXA8%O^RRG4SU&)Xh!m1H}6&_$GNp7-3wC2w^vE6?&fBEIWEHz8EI
zd(cC8Pr+WM-do6bU5!|Mg!g6T++&ynJQ&F1^5B98gFG1Q!2}OJ^x!=Y-uGaX2cvnq
zTf`6XVB<pLqA=8hVIB;ZVjLmZRjvXI8Y$-QwJc*i_`rkl9;{!NK34L~84lxEKYdBe
zf9B1Uex9rg(d@?mrhVkW$2@kHj|USyn8a%NBKdMOi4TC2J($hn^<WA!?7>vlNe^av
zFw27i`QxUuc2RkjGVu!=zn(bwEM>j$<t1(7bGGI*zquaF^I)L|i#(Xmdj2eB0gvuk
z3Q4tMr6wH9`qYDm(QHQKPmmXTu+)QP9^;3|O9X2^N?9(1$_gR;Gjjfa(`c?{fj>;%
zN6~{d9;}rUy-si|57~na!Z!+T5*#VtJAWp8v)~pFV&XP2Klfm}2Rnp+A-GeJRbrQr
z-5$i=-|Z1|uOO!a(%~x)zGjQ_;Isz?M`!K#;Cl~#5dMt^-+J&Jn~#_bJ>tPZlOOWn
zu<)IWQy6sA)F~e0Nx7bU!h`+o8~*6Qakkc6>AtgRxm#pYKPjQ-4`&|FlYWNjd#z_Z
z@aDE$J(9!{W)FPMV~p!^tnZ>!iCZ4r_TZ8Smpw?SV7cPKPaa(J;41r~ODP|hvt7BL
za@_+?!oMkaLy+co;}eNLi}?$Ctrpode`P<zvGfJ}M-}dRj77R0ih0k2`(pma4uQ_?
ztqcl<t(kqS<Y%tf9<dBPAo*QTYiuKb>cKOQansH_6W-W!3AH~xc)@Dp!(t!)^5Adw
z;XV}i;U5oPvMqa&<;B13{Mna!QQeCiUgY$mh!;h@$mK<x*SPmC>_xoSxF{rejmr>8
zZZSDt_ucf&JYMAWBA*xJ`MoG48~JNq6cDkX;D(236uFVS?lt<8-PSa|T`lIt8(x(0
zqAa)Emf~KcG?Kh1;YHmR*@<58v%8Xl3u@ZPnV(W#l$MNDUTv7=yeRKQB`+#_jjoA@
zUqRC6E-DInQ!r&z61>QrCkG$ct9p&c`6`0H#OETf=0&oYjay{Xtl>pXFCtz<y{P3y
zZ7;%9R$1#XSCX3B3#%6uZ`D)1#w2s@x1N_XYLMc^TVAAkk>N$(UDgI(@G+zb4=T-)
z<~8pB8;a6MFx`vBLTrL%eo3Kom4Vi#;@?cLxnQq-Hm0CRns&kAJ2(yA*oD8i#VL7U
zHe4)<Gz$rj-6Q$*df^kI3F=<>y$A@WPsnQwn*;@8!zTP<f<?+%0X)$yytvvgv85Nk
z7PBpQnu`~XOfS|=PU7{VwHIx?_{@vVUbOY1ofp%+nBhfxFFMG1oZ>}CFFFaIAlTW9
zo?i6wqKlY3*V$gYExfB2?|9M8)O!f&&H~Soi*DTd#pmcP;&{P#z39VZ_oAN{?|U)C
zi~eTZL0)5=e1I1NMTxEVIM@t*PY6?EnnS%9>BT57hIuhu^buYxwIsy$ST#qk(Ppd<
zgp3i~cQ0$K7vqF?iqFBt0q7aq%ZDO<<i*EcOcXwe*~@J?;59xUo-CXu#~EmTA`Vl%
zm?nhEN;%S*tm<BD^kSA5vn6Pb7fYBi;d8y1CuF|h0=5Dn3%yt*gqLh4wOBYwOF7bI
zVlEf#)824cA$%p<i;&fVYXlj(mS<V`dQ;&6#`3vIlvuJ`yx7Vv!iRVtwt4Zn7e~GL
zUL3Z2@ue4Ed9lNbonGwX=~$Vv*Nc5#?DpadFK(wK@(pijLgF4)o~H&GH_7<#e9wZp
zyB$d3lkC@Cv}}?6trz>*Do>~NU6S<;+jzDu*K$74;oTP52gKo^7ayEV<95i4!@`dU
zj&6}n@dq!CvH9@#)?WPR#c?mrcyZQ?_vTqocyWrk+Gr&|$!w=vNNAq+8nXpR&au<0
zWV!Ce4I$?RFL-fL2!k$paoOZogj^N;N${E%3tD8;joVF8e)ZyKFV;4*{Nm-$SS`0i
zye<60?N%yxytwPdJumKi@kBxy_gGciZ^9o4J~Z`5US30u9CG`e&40a>gfEmI&#^vZ
zKjX!7=^@$1bNP%u{7)}li1L@<-(LLV#Y^Ei#Nl7zuLQXU0;A*<on(I`VPBp&Ue|aX
z%<V&7AM*K(!QKQP^7z0zoL0Zbv(L%zGdl3seJCR2HNgTt6coasLOv80Uh0!FG{-zl
zE-Gd*AFBPB(yB*mo+);uC45Nq!R>>`hmt-d`B1}$nm&~Bp|lTGea0PZ8AkM>iVw{e
zr<e1gybo{sFs64Zm+~<Bf1hy?>>P@(D2H&0Q-FM^>;rtp7gd!eCh}O`c|Vc-@PNcN
zS4uI#YCa@O$`(N?)qU`lNFb@@<Ldxpr>YNie5mV#O|otEp`H(oh1VD4LA@m;MUYJ<
z)zlmKkS4sLsWkE--Q+X#<{13le?3nV5u5VR%+TgOWC&LT?Sc+Lc0SxGN8p`ex_riH
zKRX#OGw;Jd9|rlL`JnsI%7-i;{5}MHMyC|^A?U-{yJ>t74*86qRB{RW$`x$9ZQv(k
z5g(#HbUcyL!iSbphM9u#ujOWaXx_ATYaiP9knO|UKD70rozHlp?BqjxAsq!f2)^@;
zb!pDHCsPyX&{>o&roKLB97i&{`i%RlzCOGoXQ!JF-F@i61K~;Z;a#8c^V3|p<N7bR
z_VQuWAZuWGCVz&`w;O$UfLp8s_oVZOzqK2e>gPj$pK$|_z~2h<ybLrxavAL7UmGya
zhw(gWpE0sAmb?2kd59d&P#=a#X|NE6`;1OtgbyRR7avCZaI8i4v?7)<KI2KPU<KRu
z7TJyWq<`S!dWIG%%rooQ1Rp;1VZILweE7&`{A^{i&$zew*oTQM4f&%A#YqxGbBYh2
z_%PLnX+F&HVXhC4KeJBv;dYDcSw765ImbHF$2Aiy+$JAMpUrdhn(-g!Av3K@^5q^;
z)v|DI;ylT`^+gtkr#|(e`9)*caG?(zf4g=zm0wOR@nI?Jn~sJ$mie%piD($7VTBJX
zefY(PTP!FaR!f1L^kIz;Yk7aTtoBYH*7>mBhaL3Uma@TzjXrGgVXF_DeE5u+&u!T(
zSm<~qa*h=f6Fu1G!{<J1mmogHQ{=5(jPNe;e9d@_Ox)$eZXdqzVGnOX^H>gw^Iqm;
zN$q{YnGX4v!oTw2Ya#muzY+Xa@H@c+g0V4#Ly{oVJS^mh4@ZT3FZhGtF~J`Nj|-j<
z{4AKph^Krw&2uCLa@L1)tl0C7KNpW5ZaweAMISEtaDgr2Ko&P%o_e27yX?a?pK)!v
z!Wz{g`znv_LThe6F{$BJ62`sm!wv4GW%f-U?hdzd`&mfMmf5#`_>~=thB_MVQ1qdU
zhO!#&`EcKd1PysK-0qpkI`*3n1(w%(;KM^79<he_@HcPZxoc@Se+aS@c;drT=>)ho
z<})T9XWZmG7v)bMUT|MM68{pDD?)Q)=u4i{%f?6OIW_z%>AYgKmsK=#Xo#&0mP<3H
z%EZxuOTY;lR{_m<n?sUULq5&;){kF;^U*24h5{N2YIsdU{tM~7&ZQG`E-;ogcxOg>
zAq|B!yv_t?q!-cf<Yih(4MoK)CisS6aY6c&(2!_y{_!wLqA*q|A*E%%G|Ooyuc4}j
zY8onNsHkCiM{DPQ;&})AriRLz@yx=ll4i_n8k;KzG*l5$_cUDd#0W~(V9`)rLk;F9
z$x`)WV-g5SgRr%xhFTh$owBj5O|28p$%?EMbv0NuyvGDJ)YI_SrId(<sD}C)QZ&4!
zA(c@yG}q8TLz)Jz5}z))rRRc9=?yhB(m)b;Y?zHT@CltkHVsWAHNFULs^Mzy))X@|
zC>s140vhZZ92(rryvEg}GgYQ3gxpDo$0;P-4p&d|YS?onotq}aC&<~Gx)4{(YzA@h
z_Mm2r5`;8xd3=s-a(7|L0C@`yEj4u0&|O2OhE^InYv`gOOG9f74MSGGwjj3A&_T?$
zg6&u`8J70K8Oov8j>0=>aMrN22q%Us*s?Xede6p3p{|<oK=ihTzO^jvuGrq;87yF1
zS;#iXYK(99U=7sJUwnFM=q04L;JX_7u(Wqrn}rkmit^W(MB~{iWF4SkkcJ+~HV)kk
z)KFxn@lVM~D{X@{aJcwVQ_B#|=%0IzO&FtLsD@!YK^xPDYZxVDgocqC_{9yyE-kY;
z=0h@CL#SM95<anhpcyaXUrx7<*DyiDc_ypjLk%Bk*sNiThL1H&)G(XXqfPuI4U^eY
zG)&bnMKj*DQ7pbFW%4H-_=}ur8m2SiK4T?^85(9XWz86W;CxqJWNR<YL*%5~Di>1b
zXqc;Eo`(4vR%uwx%EQzBJZ+(dMH+^*%>Go&$t|-NYgi(D1y4k~MEWe%u#AT}HnXmn
z%O!Mi%WMX%WS)hr(XdwZO&Zn-Vd#1x6UUb#-=JZmsZSl7`I+!<B<@xXH`*ueV@1-i
zO~dCJwrkj-fq!`C=OH`UKvt)J!Mfzi+9jOkZXxzh)A#Tcmv7j;Xx3g0UoT7lb#D4s
znlVlK&zkWEsc6{GlcnKX*7K)n2Uv`C;@J$plQYN*J?{aiu#^sIIIQ7_hNBwJ$qD+N
z>AYo(E*{tLgYaX5KMJ00na$7>ye2lVoD@7I*sPZ2w2(7`X9ZcWVl%idvYD_)(os^!
zWery}JS9#~ysF_R4G%Ru(u_ssud&~j9P$;|b<LRAbAuThk$O|Z&q96?q;gBc>3(q}
z?t96<vR&Uxz9V>-R{<gS1%DHKAV{Ayu9yCP;$scJvxtV;K65rKxW@WKGv2Im%hxsO
z8C!&g=NkUhP)J8%9WU6ZS-oH6d`-vS8vbEl_cS@5Zu~0xrG}ikabKh_P5PG&Q!~UI
z5)?X<MxIN@gO=Ic;)KNO$Sown)bj|*t0PaQ;g(;AW4v`tp|-@wchU;zD5!%ZcQ3<y
zT}Kfe))$T5ke#l-Xe^#kR7Wu#P4?Sz%MTNai$e)PdREBHPSR0IM;+#>Piko$Wpq^5
zjkn2Vb(GUlQOBENme-AW#T9fIL(0#Sn@=&GDEqdzR?@MaljQd%aSV-wAB8~&v5H_-
z!D@oZIxIq}3vQT@Swlxn9VFap38~GTYprS4We#=J(@~%4m$&fqhZNnIa?BpAfo|MP
zzNI5oH)iSZ9`C{0l(RLA8@Wb0(sf+Zaa~7a9X7^gvOIhpO?AxFF-zwZVqD1;r|7Wj
zXs#QRXEJo-i6(P}ty7Z4p+nV?rK7bDrw*5nux>o!9f~Hnb@+D~AH{n_@e29`H9=jF
z4t^m4!JuGB2X8VN#4RF9RIr6$OC6a)S_#Hhy=$YRt&aXYFFM-kXs_d47LGV{(9uyx
zC*cd~8ZEK2j_zWTcM+1U<82{b1>ccE>t_1Irr-3?(NmOOg1rS}L4Ad{O~@U;E~TH8
z^G~1KCKj~})G<iMI343zq%%tm)-j6tOvwG7_`fg6JPgq>RQNC*&t_Y>4c9Tk<Rc|P
zihmTbjMgzm2gwJ5V+Cn)jmil+K9ocz3Vy_M*Vs5%p7f7(JkOW=!4JkdmXjoOvfvcK
zPjpNbGEH#0AU$X3SRhMZ&en~m>BTyh=$NBpu8t2%mf{<Sc{=8^Vti^W4z_@?bS{FF
zv{1()9dDH^b$Utqi0fI`7S$SdE$h~-yi0liuVXngoNVDWowqtGbga^iKV`4fjXzLu
zqqthf8XaqOtdnfSZ?STTwqjq}#t*g;H|p4=<8vL`b$q5{GjqbV7j$gVjVmcPess1~
zH%7lXCG1T5L>@cE9XfXE_)*7kHrNHVcInv5oWExIu%mUijxSg@k}P}Ju3N{CUS;Li
z2m5q<spBj5t~0IQ>iAB`*Mj@GBOwerk>7Ga$DVJ}KfhX@JL1F9LEU&nIwW{l#}Oe%
z1-}>kL6APj<m`~}7Vd;({;ZCZI!@{6aKzSrX2NM5XLKYst4Gd_;yIrBPmPI`=XG3Q
zZe>R0MID!fUpAF1I<A`hCm}T&bhx48rjFu%l<?zc9lz)(;738fv1rUK9S?Op(s7%Y
zlG2u6b=={xSG3&K@o!4PZ#wSjnD<i_mHRx{8n(j=Qy%E3z0ta$cP8<%j^B0U^UI3^
z9Zz+{b8@~P&v>GB{HcR~IcHts(l^i9BP}t0#l^RoFLeCH{$Dq~C}ii!#e7&R{*k)z
zQt)5FS2}X|k<)L~nOuIv2_fH6*Ya^8Tl%ol3EZzA4P=2qPVLC+2Nz`EGXhU2uVwiq
zSFZ`~?-Iu$okD&T_JeErzTxNcZgJ-yCciFb5kHFh@%y9XVt%A28vk=o%gpZA-gq$K
z2z;U+CH<)7M{U2+)hGE;&X4kb?CfAI<wt2DWdzF#F5H&FpbCDxIGE0zR+kJ^6nxW<
zN<u0Nf@QVGT1Akgsvp&aCkt9kJ(l?ze$<p$OtWYtzK$Pt{m5ee{YK@t`i(_G`2Ao#
zKkECDe_Kk5U{LTa!Bm!&A8CFx^rMj<8Ga}{UOyW9(aewLe%QpViT}Ua)$&mq(`hPV
ztiHu~4DEin{BZl>@I&?Ehk2#w>=b7bF7xOSt_ykveP*a8WS^(C-&6uZm~zNe!hS^j
zi2BjOR9gAb(vM6rd47#kye%bWw(%QX0Y6!t#&YnZogeM}=-|f$7SSixj(&9VW3X_V
zo&D$|yo(>%e!MNbhhSI1cLeF#O-Og1<$a}S_B8cge)JapuBp(Wuke1R(qG5`KL!dJ
zWa`yl<z!Ot`SHFVLqr_v$7nNjn2_OuBm5XCWR##kGn)~|2q*bK$XGwdnaX$}9mMTJ
z;U5WpEI3hck{^?WOc7){pZGD=<oz?Vd2yfa#|*#mJkH1JnSNsx9kz%$e#~VJY>8Se
zG0%_rezXarZ5Rvu_|%VE0o)E?p&yGF6u^Q27W=V863G!TTFp{Fe(@WBjbG-+az9r1
zaoS<|){pP}Sjk=ZvD%L{etaqVT0hqLu|qiB)-xU98w58BZZbnR7Rj;Mk1c*|HI>i(
z*d|=-+>p_^Z5MM(<#_U)e(W+mcl+^$AA7{y>*uGwmVHdBay$u>rSn%3^tIrAGuAgk
z!m~1Y6L`RH+zMXu<DeghgdY|>=Eo5sM+NEgy^tULc%ye5%^&?Z?#Brc&zn9c{W!(M
z#XRH3IU#2S$KOn2tot7%5xHIP<Dwbs#}NrsE{l0Z@Twm_`EkvU>!#05KW+%$I@ECf
z`G5E=KW?*UW0jUymM{Fc<Hubw@A>ga$bG@z1Rn^}`JoW~S<c7oJcU1D7j1?<<yFAs
zZ$HjS|L0=<$%gsNF#i(sZ`0==KVF*rUq4>?!IbGn%o#wg0OA6O51?ZJodS5Rv?X@{
zZv;?0fCMqA<PnlLfP6yo6NMBApooxyf`tMoEaY{;ahciN7@b?u0E&r7&d?G8BnA)&
z7<H9f$p9(^P&t6407{8iI)HKkln<bc=~Gq+D^CR>6$N7zkCp1p0AlqD0aOW~aR9ae
zss>OkfcgQXh;woP)dQ#zfW=HIw)dI=)DEDIh_wPnEsg1Q1E?pW_5b(hj@}ZbkzlG|
z13^Yi6Vfn%J1uOnbkYNuFs&4MlK`3q;0(YOKr?Y`ZpNCEnVk`U5`aAbN8rC!rUt-`
z5&yT*xdYHd^q6tI0r&zKxwBkSb^@Js(fxu4D;dWU6dnp796%(1XaH>jXd6Ha(OU_&
z6r^)z06%9Ykz|R|I)I$#Q)m*~nLed|OQX_0z(2ej*&BV|Fgpj(C4j*Jyca-r0Q}gH
z+kgPx4xnoQ?*z~-fIg<)T}ZD0dI;$$m~&l1ELLwZ-({`X_Mg%>fPNzO7c|^XrVkW8
z$W-Y3egH!P7#+Zv0EUV_(hMCYWOx80OojfVgg5C>Dz@Jb0vH#-_yETKj}L<;1Te!?
zJ`CWa06rFTVgQp(eUgyk%WYGHd?GkiaGKzBK{~|tH8X%&qRb9pP5^U-Gl*{UgqOUU
zM)Om4{_OUj=Gqv*BDRi;<rfFAB!Hs*QaL|rDVxb|>t`h`IG@6Q1S|^}e+pP0z={A?
z2Czy@Dyx~`)&!C@rm{AGb;8#RZV<dCKAQsgjA!<C%H{w*=iWcgBHtp)R@O`*O5Qk%
z+XL7Uz)oq``vUkffKwGLyTsfr_(cGF%vQfw$opR>eHFmh0h~4U{Q(>e;CnH@3E<lR
zz7u{RfP(=X3gC6qGe!;vaKuy!2k?XN<EC;ffFFftew`HSc}@gy(hNPt>MHz<U{?J!
zR}0%Y;pYSV#ktY@T@2t#09S=y3g9w}x=CxJ2NV2B^cw+O6LMXUp<60t5pS~X1n^4$
z)Tx9e55KZ22p~BGO9*!ZxEDb8AbJFGKY-r?NDZPv5Dx-)7(j)GDYb%l6u{#E$_9<X
z{5^mt0ptlHub58*_$z?FrJSDy@Q0A+f^_~<$P2;KdIFVygy#(6rI3FGslN&!ha^aT
zUQfs+JT8cMA-RJ{5b|a3I683av(`v0pNJ)c$REUOK@<ogxW&*52T@Rh3JFqS#Mgr;
zB4*Jb-Uy<&@M41J@1=1oAv`e%az^1+_G=@xB+*L=mJXtf5bB(WTP}$5K~yjm1X0oC
zZwjd-SXq#Ht`bDmAgYO3U6AP{2VoH&JGvUCUNeYT2EHk2sT~BdP7rm4SOuxn3!=X8
z6v4Mlz4zWyD<7xjy_uF4M8hEdnVs4w2)B@Q!N!8NAesniDyRxJ3!-@t8N!ty>_V8r
zuM?9TCQmMw<uth~2nNx?BZ@Z&pAapG_NI>>gg=M?Pf!q{ATons3Sq&hAfrcwa2G9t
zXekkyEZvB$g2<B4)`D#$l%5Q2E7(quo*g8pqq*NsLOKW0C5UX{ZwK*?kgh@F9+mqg
zb`vFL_6(v|5a(D8g6JK@yFsuw`#6a7w1hrEjHY=xnVx-v=qJ3t;D8_o1~EuD9fk)n
zIEeSed|z;=;1IT^6$y0UHcS*IJ3`1vLF%JqUnFBp<%1x`ntWUk<AqN!l@EjXNREX`
zG1kN&f1HZRK}-o^We}^lT}b{Uh*?3*7Cu#Qn&9*xW(c9r%pfWajw6{P%KRV}2$?H5
z&kX(4^j{prLg9-9trB-h5KF~eCb%Mq<wBV3_*DtqNLB~2h7~o4Z-ZDH#5!^KI*9c_
zYzSgU5IaTL$O8;wv+zwp9Fe$;zD1PJgV-u$8|$#1uzXcQ{s$=x-7Y2xw_W1!h2ZWW
zJ~va?6U1H-|NSjxUl3mk|4ML=`0N+X6k-b+d?)6Qf(L>)7{s9<4l_$Z95X$S3i(0s
z`ykgaF-nqKtXMkuEypG3L=Y$0z=fX?q|a#~2TL1;b5=OBdLf95K_G<1_0ui|ahd&d
z5Wh+2l^}jG<6af=QxMmLTo=4yhTatNvmg(a>E9B5n{76TJ3-tP^QoEJdpxvN2`uUd
zLE~ZPk0720@lg09!N-CO`aOszCVwjAnPBQ@<DuivAaaM05W<Tf{tDu6(=$iNNcJBw
zUkd&!_$ml}lo2tfIOGzf87CxOP#KbtM@UJ*ydmTZA;0iKArubbHQ@yW3kouYqoWgE
zH+k_8iiA)!gkq-hMhI(08vEr&QnYtmi4YPcl$=|V@KPa^4sjKClohjrV7U-Sc>ar9
zUX=CcY|EC}Du(bTgG8w;xMoNKb?$<vvPuY5<(!gN3mI*bq<RQ7LO2`3Ic_B_HA7tZ
z9jPJI5|c`8A$0`nhF~@IdLh&oo?<G#L2(U2NDE<72$Ms6XNpE4WQXuJvy@~>55W<F
z8bV_+sn~=x3885S&4f1>%m`swS}8hwT&}euiai8!D$WpGA+!jgWe9Ew3JH1yy&?F7
zXd(E8Fp3^RAa5K=AcSBDb+=}c8)n|Pu;~*K5*56=CZT?kB{PK9Vv@JwktSKP1pDNT
zYZF3S32GNYdm($iOo*k~A%u=0bP}<12wjA%%gm02l5`F6&lg5%^bet%B>1kFJARJq
zE@qDqdJ5qldkN_s!t|SIH2a8WU%`G7#8}h^gfLLVK_LteVTAC(A-osD`@)9^4ig+2
z0#@3NK1f+NHi2Yh2%{va2_cL&_d8a|m=Hb)A-0PcjuU;nAe9e8_=x94%!z_VCi5Cu
zVkoB*ObKB@2%oarCs{rTVX6@FX+oxlFe8MSA<Q!M`9fyP@y-chu9))#XRS$K#5TQC
zi3>wm6vD<3HnB2?I8bllwkm`rCSS_>BYe5w3c;0vt+pk^{8zK}iLzF3ogjnO3)vvZ
zp7S#yUxctHgv}vr31Mpp+gL0yf5GiBu3Kj4M&cgX#ZD1-g|OQU<*xS%-!HgN@JloF
zD<NNp5X<2=A$%*!cOe`O;fU}9f(Hc;g%I1((Gb25;dlrqME^nXm|!faABEHTq>$4g
z^gnN7K2MoC`58%#KIeHJe@MF>!ml9|U!8Ixgo`0u5`H;^t3s$>5pw8Csh@;gGxh5s
z+z8>On6*nM{4C@b!CQii!sr}txf4Q;Fmi^uRv7Mua6e>>3q2A1O_1h;5FQGDWGat^
z{2sy|FO5N)r>6c)$R8m*58+SYFGBnT34ezWw=sd9-2MsSU(^3(2%XQ_D83SfCV8$f
z;=-sDM&&U6aaiKR$REaQ!gC8I2<8bRuMqm=6LRl<8hL>*iiA;Al!AhV1Pcqk9>%9t
zvxe$P#l)n4*)Z3YGImrvj1plahEXz%Qel)1W7ghMNfPvGaS|P3SjJRn(xIG~<pt?e
zA&iP9e^UtahA^sxQ9q27FshoNwS-g)BUy+=u)1Ik!J1*DcWyX;d|4*Tt#%l7ME`1j
zQe7cd!Fplz(~a!C6-H_pUJ)CFkrqa?Fq(_mFbtcJMod#k=Qi<;!(iehjN3%Srh+sn
zW`v=H;S|L#==h&dRX7iy&fHvKxJB^@?wpuK(HDjmh8~7r#Fk+MghT{`f^-WB35UVQ
z-dJi;QChIvmK#c@n61Ld3Zu1%1q&Pd&8ppj*e;CrVGN04XcQg7=om)J2r?t+6h`MT
zZiI0&j4okhhcPFNxnaB={%_>-!!Wvr@lF`s!ss5xpfCo9xu(#6q5XyQ45Jr`@OQ)L
z6Gq=Ku9Y=vazE4a?uLYzLUBNtYYiDG#M;Gsrq4(r?=zpKGBk`~CLbQg2;p^iTaVpO
z8zp>n7-PctAdInLj1OaihzqWi8Yg7`{WR_+#!09XKMLdHFeZw_q_DA2#&qG61*e4Z
zNf=XwPYYvb5o77U*ih{Z5oZd{5}f@%4)a(~!uUFj{T%<7&^2MKWjhLEp_q#Vmxr-f
z2$NkB#!{0nW0}i<F!dE-tQ38f;A+AD3tbn+rZ7GWW4#%7Ll_%PKI~b}%_jd`$QHq^
zg4+ZKJj=N~j2*&vhOtKo_q$8T?l9Ma{_p&9oOy2;`*=i;bCQ2)>R$<=_)Qq!3O_0M
zo#0Wy1A+&`I3$GW9~N>X{NGqNmG4FQA&g^T{3!f*n6vMUnsY+TDaC9wPla(hj5A@J
z4db%tbT}8r1(Tl_(!-N*QOG4zzaW+HikMf!_=(k0_%|C8uA78O{T#+GVN{5qVg$F$
zxFsXF&FUfMoiLsYxf{kkA@{?0EaW#qCh{PRhhaQ2YksV@|89mp3FB!P&%|W4|HCAV
z_^0p}Vf+=w-)zO~#v?}gzYODF_TIu@g^?qIToJ^H8EZH>Bk1)wXZ~z!d<3~8NQfYh
zD2&UEL3E2D&3qCuzaT{_1tKUIL7@l=M^Ie!*993=EP^5?FDitCpVZ&@pY%%zPn1yZ
zi0vpzcqzfs5tI>9R<N94c|oSbX7y$SmBe&LP&on!PmiEV1XUxjnx54ns3|;I&>~n}
zu!dl)g)+@rV%CnJj*z;7)Y)+A39oM|DG{ze_FoN8ji7<a(;{dnypgHI8eQWEY!Nhx
zpsA@V5i}FtTrfj$oYY(H(H?=r^i=67uWVcqxJC3t5Hdr(5%^55MWCD9FC-8_&{TM1
z5EdR0j0(08>^04phukWHtOy22@Lt4tx7eCzM@X9p+D6b$IQ6$9Xm9ck5p*<pCn22$
zy9j1Szz1PQ=_=+sg54tMF68}s@jZmlp=Sj9GP6l~o65Tp^by`yu%BRm!2yB;1sP?K
z5Du8XAHk3aI1qO^V!W6b8o?YP<ijEuE__4;BO@3U!RQEPn4x2YOpI`SGmMR3oR}X*
z{(BiTK7t9N@YN5uk0SUu^56TW*juMb5lj|`DG^K+!aaT>gs+pPnaXrC)=X2GC1keg
zIX8lN5zLQZK?J8n{4|1v5p0X#^9UA2usDKEX51watcYNxm`fvAX6nm%fIG`E1FKAB
zosiXnYXsLu{(H-_Ud#=G8wDBham%dFgl`tyV(MF&6M03uJ;MLs;OhwXN3c^u_X_S3
z+%5Qp;2uGyIqtOaQfXfVUyAaT;5yBCWA%;jLlGQ~;9KF}2_6un!$F?M%xn^FM<V!9
z^rI1cAHfg8k3|rB)kS=oYV3&H@d!>x=t;qt!)f6RJtO371m}dDH}wlbE(%_X{P*(f
zN(5IU_$h*GRHDcgHO5u0M{p;CyAj-o7$&!yELGvZn942o|H6l^u>Bgr@1ql*4M~{a
zC-q(gk0N*+!F>t+O^^c@4<dMIawd3(BR^vP$$j-neG<V_A>_{@_#=YnVs09muwiHd
zMMilM!Cw*l9l<{mk;<zGUYh*hi1C&@_NqFE97V%b32{-xN8yUX9YyXa5~8RYMYSmM
zh(oa`-iUH7IO7=eMUh{~Yf%)8qLA<cQN%`X3X4g%B0^plon}!nV<SJsqbLzY`6xc@
zlbR?<QZkBVA0&_@MNuk>(xzTkNSP?kN@zJTW4watQ!$D+g;$EAvJga3#SG<J7$(bC
zGs#g{qG%XJqbRCJv7t{Yx0EPqM7eSuYKc<U)N2c=BbZ}Ef;EbI!s|z|{eBu1#wETb
zVyYmO22rG$y!42KbUEr~f{g`jf=vWjEKQ>rD-#Twi;@wA5`|s3L$LUs|HiviF`ZFN
zTw#oBd06;;Q~N}X#YwzT_@dCFXx2BiWt2;+L65>8ML?8@AcKNYgoKAph0`9Q!dsZi
zqY(+MqR3*hQFM!<brfx)=osaa6#tK^?|_n`XuD?FWf2ewqRSE_USx+nFu=mHWE7E%
zJJVr$a?cPH5F|<vB!lFPl93z)NfJa66;V_`MG!<#L=Z$IgZ#IiefvB9=hV69)~%<i
zt1ESPb$1mk$0m>ieiXq3gN_ms!nc7Gqrz>$nBch)sqq{na`3UlqRp^PDtb=|?d7CK
z<>ef_lEWqP&_{xD&AwTg&558|uQqr!2mNwD(w{|<g8{<n9VBERYrJ<dy>x?fFhs;$
zWmpb|vsHVM>cxm0jATp8;l{goBL|~$)HUuM!O=OGn1e~e-xM5^gRw%!362+}{RANk
zR%DY;7Cu*Sir`y0n3{uWIhZcqnS!*OA>?|m^jVHFTgV*2xj8BGgv=LQAh=L)k>J~c
zOsDw#28$iOBnL}{FB5z;T4jmvN>=8mN$dkTSVdC7^{ybv>Kv>QzE*Hu4%V}|=3t|E
zcjaJ{W4SE{n;pI-2k!~rD%jYQ!ld38zFlyKqwi!pIiAkY-J+0uAY@Mt_U2%p@clXX
z&<SNyx%MBidE}_M*@HQ_l!HHV@JS91<>1pCe3pYBb8spLpXcCk4o-;K7dbeRgKvd1
z)|W!Q7W|4W%F%OQ3Vb78@?(yETnO9$caHMCkRJq33i3U|X(8uw@QaY2a&Sfnk9al*
zKMUV4FA>h?-~w|i{8!O`%fZDQFqGn|1r2@|&WO1-mve9>2mgxYpE<aigF8;j*M$6&
zgTEZ*dJg^;e#24tw&JGnTY|R*bKj)!5O>9UF9-L9P<fDphr<8woz9~i<nbcOi@aV{
z?8$<;Z=>i<alHAxc+88fUTpKCfENY5YJO~(SKV0^@^a}0xP?FNMPV<V@S=zpMZKsj
zVlgj@3n}LXZzrDgB3-;C1ewB9UOeqZnipq(Qs2hVmGpwsN+hMkrnDDjyeKO?_luNg
zoVdJEDKET&qf``9N$@LIDjdCv7teaRAPh3RaEVyUi)v124KJ!YJon?7n#`wsMZ;{=
zc6ePc>Um*#5%8+1SC1Dj2&pefrGXa>y~y;Ukr$0cY~w|i7frlqCEjeoW?nQG($uTw
zJn349mnpRL{%>xRoO6<`9X)r#^EvT8FWC0KmR`IlVtX$-2<a%Od(p{@&R%r!qN^7<
zUU<FeCP7U9B{@1t?y-ELYq=3+A~*M-hGTCE@jC`VA$^_DkQZSuB3?wjh<VXVbXzdt
zMRzaajwO@r;qabL2~gzR?8{!f;#HHhy}kVLUllTSIu;S}RZ;rUz>C*}4;CCCI8bnq
zU~a@A4j<~p>keNUZ8V&h053**@rD<Ry;$PKD6e`k@s<};y%_Dqo8leg#Y7=v1;=?Y
zo((|e`Dr}CtF9WH^CzF=#bmLWBAELYfci8q=8H02aE2E%y_hAOq4R{y_F|5s%=M}-
zPZ&hU7b^=KeW8#=UcBun@330s(6n62ek%GhCv>?ND;&Pki&b9ml?N?99Fw|Q^fiKO
zsS8;zxW$VNUTpM&C$;H6XS&&|UWMf5>OC($tZR_J?^UnN9{1sVgY@k*@M5PIyS%vN
z#ceNkOXvwNzVqS(FZOt`*Nc53e(lA6CgR2CUL5w~fQX+6ek90bKNfP(i}ux1=%qU(
z%BNm@CWNosD1PDCe<kFI7hgIG4d{;M8cQPIc=4?l$L^*a6Flx%Qc;Hx?^!Q?5OPxR
zN5|%r7pH~)<i!~wrzBRnt*JkIan6fhyf`oVpI%&WV*MuMSHav9xyUx-<p+WIgF~Db
zR~$=~Tjxwku6l7zg8uU2hGTQxi@$S|l5=OC{}J!aT(Nq}9U)0R{87?%SNJ`_`+^U=
zc=(_4{MU;|qBEU5K2?>u8OZBHvUpPj^ZAhKLw?}}1X)~<`Eb9QDzt*4kQ8!)3j5Rt
zY3zMZ_)x@$qCVAyi}_GlNO2#Y^r3|CbRS9yc}nnU!89LA3Sq4Ay-E>Fi}x8H$_Obd
z$f1Bi<$NeF-U>cc^r6y!f@r`ogo6frs3Q8aKDdNb6=d`b-~UG1YCcr={qNlqb;hmb
zLv0`W`|z3%b$oF9@RAQXKGgN09%K3Nq7NRQ>i#W#XyrqF;q*4}p~COU4Si}lC{x5n
zJ~VbhvwUdc@N6MXeQ4$=&3$MgoGCCV{yN&)2jX*rZ3KCDP33vvZGCt_2)_xW*xrW@
zK6LS+s}JLD<>dvMuA>i~d>Aj@&NN=_IaD<JV67B>0ocu_J`tqztV{L!;PWBjLwCu!
z=7Z%!K)5bw_+a{w;#UiD`h9pOkDABkH&j6%!ahVK+aW<tlJD)E9Q7gQgYCo8g$?*7
z@#hcK2VHTW`jU;IJi8t~^<5}i&MQ837tzzFz6|dr__8RI=7f6t(8q_q(zNPIn}1b!
zKi0*(28=tjdddJF2KunahrK=w@?o$KZ}>3Er*3zL2o4t<>ci_oh6ysXa=|>r5k8C*
zCD%LJhc|s#=EHIy#`rMShe<y4?CKuJGL)j8$P!+Xek4!w1m=I6n$F_iEBuG$Wlzdv
zAEx;5mJd^XnC(-mK2Gyt{*T$Sd}>X|=|0Tx@!#hZ+Rx-kom1ba@DDErUCiT}<NM#=
zRdaoqCw#u6Ebw8W4~u+wo5jxZ6n)p*+G1v#neSHWO8*A*^8XZKuCl_1l|F3sVVe)D
ze0Z0b&$Zcyetk1nv-NV@U*T(fSSw`LsY(puFJ|j~*x&=nM!`*j^zt_}p6M1J-t)nj
zkhW&HdcJtyhwVPKQpyKD?C_}tCCGOR+3CYBAJ;LcMe)MvJlti5`(iVPTrhl}5Bq(X
zpkbnh4}Cb`LqiRj8b0EA`H)9Ll7@pmeB#4rK71~Pf5@jcP`;R~mf-l5r*kr+Wu276
zK76=4>nk6Q3i-l^BSO9u<o+xS{o03be7NGnpFVucw#Q4A4;R?Fd^o{$+PlB1Y<}lc
zYq_5j{GO*H<fPy!!5^83X458L@lvNn`N@YfLMWaU^0OdUkfZX8@ZU9?tHIxT()g9_
z#0T<=%wbjISm#E+i<inJ4%9we7B3f7pu$63_2C*vSLU{JqoGIA|MKCs4|jaLb5{AJ
z`&-BjAN~<?Q}C8ximvimyrRj?h`CMhUDkz9?H5eP4d|KR10Nnr%H;nFc_di=h?ZAV
ztB6BG6%EN6QZ(e#kg6d~LrIN)`=a;8tipmMk8$s*Q=S4E3W`$5(H|GGwO#rX8j1)n
zD)^LOF~Q;*p432_65<VS$zp;}3#Uk)uA!88D+!hsEH79_u&jn>gp?E9yg;QuS3yHX
zQOGG)cDVMN=UEN!jZCktp^k>C8Zx+cl7`Yhm8!0xhK7AFrBve?oy(ZAT<sfPQ$sCH
zE&LK0<mTT`Twae$9J@8t)zpu-4K&o#;L%WD!@2y~bYmCSq{}7L*$b{6)f#DNtRbqY
z|2nfYG||vSLsv;5n=QYBYe~%AR6{cj%{8>p@b1F2=QOoeRZ9(Rs5Gn9N(1-!`sZ!;
zZ_C_o7ta1;sk`fAt~(P`pV!b<!wVYPNjjZ1jC;)WqJ|C{&hE)-uVGCI7nNv}?BqH|
zM-81cT*-Fz8JW#c9yirrii=Bk)1a|@`17xZ98LYR8DHu4YVc|5|301qf7L8KsDZA*
z&|qrtYY1uxN&YQO4ORgSlUk_1U(4$@$1#$yhHhiiB2tot$7n16@=%Ovur<UrBqVOD
zpEJ8_=%HbxhBq|y)X+=AFb%^swFvyn8U_h@g?ZD^M|eNMzJj!QRY>Of<o=HGnuY<w
z2MV?tl1;P0PUsK~LxsQYC|~}POoKjxBQzZTBb|=QC^1+d`e@;AY8d0h8Y^U+hVeqy
z)y`y;Ng5_=c&OoD4O29{rD3UtWg4bxn5JR2hB=!0X>Pjo7nUklo1dX!CR<~~=(Hqz
zmZnxOA>sNtb2Ti|a50p|VPu|$`I=hRdx3_9LK^D!jdt#Ky8X6>cQm!`-(og{;aOba
zmcN-V(eU*WccUk=xtz;#CZgeYrmSJ5hE;4@np)=Nw5Ha0S*>BGhFxqV8rEu9r(wN>
zZq=|s!$xLIytLn>VT;2z3t{xeck?nRcdeLh8s6u~u&5@*?Lu}4QlY_a4IeO;M5MAu
z!+thb4SU6giR_d7kTCRshEI8#>@s)rekA(GVs=oXe<FBDkOrT#$|UrN*fToa7ZNL%
ze<`7~Jj!B`Sl?(kuHl4+Z^g@l9@Es)2PEH#a#HYnC-es)OyNgIIpyS*QGOEfjNn<p
zpE(q0_(j8c$NpC#7bJ&_@|&YG%}W~okXF%ePS$1iO$`rZl;HK~PYt(OU+vvj1xc=H
z_{-tfHT*67hTuPrepACO;kIrw${h`N#ap^x+C9hSJ_q(29)@x_8j+Ick%l}v>gn+4
zNYas4M}8fT=}6X*q9avTmwUQ=y1JVs;X)<6-D0ojcg_WLjElLei%mftg>*cwqp%L>
zsG_UU?+G0xgpd~zQdCDVM=37kNx?C)YtmCXp4O43qoj^>9Tg?0l#bFm$_XzcSXRd~
zLbxp{x6|T}lT4p~A`{DtUO`uj7v<`eM5(N+-63f}_pB%nUrMPeBty_8$YxVb=i*mt
z(Mz6V4PA|IH3e(ws4b+9pj(ikb#;_+r`%hX%3I?4IvPr8G|<6CV^~}xbURZ=BOQ%(
z_4!|xgyw$I+(cJ5Ftp*aX3cao*WvDox;@cCM@t>AM$j*URytbi_|?L17TV}|PRD%%
z4-7o7qpgmr1~Lr1prf6RPjnp8@gh%C$6Gq4>gb@OqmH3EF4altq+_9O$8{uhbk@;D
zM^_!)bVPJqYo;|`QR^k<a7C?<jvO6c9X|1Dg4BCFNYNc`=rA4b7h>rMI7(2*cgLGE
zO4w28jmlACI&2+J6)VLfo;#iAV#BoVI(qO-b#*bVvZ7W`9ldqro14{3$ICiiVJliu
zi<bX~eI)ei@#cLc=#SHR`swJe<24-vbPUolSdwD(ajl+#Y|@*u_svrql@4K<oNUO;
z`r7{L@7mXO4AU`OYMfnil8zC=M+(yZ4IQI|kJj;~kTGoPI>zf5D_$;|cWQLn1mP1M
z<*V8$bc{Y(SHtWS!Q2sYnvUr@mg`udV}_2II_B$GpktPf**fOxn8!*#l`%)h=%Q*f
z-xF6eY9Gn|ud-0bB00Oof^X|;X$zJc-8-TjXs(KJiSVU5mI+BYtFFA&cW15Cv4IU+
z$11iu9jkS$VH>d2t@vdY3mZv0_j(=cbZ~Y03BP3!sT_R0;wBxNb?jn$*0F_svuny$
z9oyJ=I=SD|WnsN;jo#O>UB^y(PkFdYLYu2<yVV^!$}Ur-%{vM%ZS;YTJvu(raX>oG
zURK-$_kJDwbo|k((R;d0Y%wsc1c!ZH?cd5pl0Rk&L)CiS8~dak)YU>{yes=u$7ecz
z({WM9=Q<ASILYRks`fknLdQ2czSVI=$CoU89Y=L6otri-uUgyoYsqb`Id0y?(VnB<
zF}794P04ed2g>I<!TObTQ>lC}3dJ8d7FAN4PW~v$DIKSE{N#k5({V<}S@HhN^ktD%
z8V`z^#9wrrm!J!Rzq0l2aqoVvH1T&9IL}DOBc8sF%j_UJ{?c(p$DcZSh0}JnFt6$e
zC95r)*_c!IJ;savbsc}}xTWK^&JBW9p1JtOKSEZg<Y^vlaFfGGw87NjrSIry^-soK
z9rtv6bTqSUos|1>`VR$JDG!8<PD&=<ekUo9f#Q*LZakfCAjv>p1IdP}T)LtLQVir1
zZ>oVpLh?JIj|nLtSkORvxDlf~?t~T=@`PX!1N-l)U2N!z@o*wODOf^~`cp!lHjrkZ
zB;5mLpS$->DMQ@_l{QeuKv@IN7<g8c3XPOr&HxFEsC=#{SW&Q&U}ZrVs3L?>xNp&(
z%ydTiCCTM7U>GnBR5MWBKn(*m4b>lenJKjl)aH0=psj&A25NOv&z^4bK57T6x(4bQ
z@EE9X;5laOPErE{<A2R;Vjx>cLj#!x8X0IT-cTL=kZ#i;%fO{g2FV%SZfc;@5O*_!
zZOOi?+gyXLxq%jj+M2L@JiDcVR>IxqJ*^G25ze4KwR9E^H!gg^Ksy7Pp>8i<G|=9F
z*MQGJ2QGJHpy2h4ZcN`mX9HafEFI!rK3scxocqt~8If;2^mY}|GsOLpftADD-41Ix
z21*?AkZ=STU%ufl7d<BrW^<8A-M|O086^zcZ@@C}y@4ML1PlZj(ZDJLAp>EGNv>rE
zA_k%crW%;WDqB=DM*DW|i3V%~aRUhh-3<&i@VcQkxanc2@uZLNo(6ged0CL5uNdep
zymI>#^}y1}-PgdY5~ZJDe*>=x8DL<L5ZVk>6=#zSHZa7%TUV3FbCG12fzgiTa04TR
zj}&}EaFi388|6&{V?-J2=;MTpH!#6bXgSHiWCK$S_?u(b!_2n~v^MO(C5_x`*wYQn
zFtEtL+XiMDm}OuA`C9jE19J?_Gce!4z8fja2e{|*a4X%PFLQ72pUo{NzF*;XZFY}Y
z<z8s01*RBf(mBsN1{SmKq`;Rj9ZtvjQ@A}%x9^N^o4WWQR;7`ui{%DZ7;3{ca^kxN
zRvY+&>9AC}=&ONk2HrQY*1$Rg>kV{W>e<4^Ga+k(fsF<>8F=EPhi)_bX15d)8gN0y
zW+y%G86a*IJTx$UyTsjNV6TuJ26hUe{VpN9*?t^_5%+OGkOO@xhxpLI0RtZiZ*(Jr
z8DPYZ#d}cj6G0yOkmQ7fHlIlfpBp$VBz?Juq8dpSd%iUAm4Tx?g-z~btdx1~uch?9
zF~B>nZ`l;zb#p7{mdoA8CG>>gcVa{F$}IOu13w!0!@y+&rwp8yE_T7dPeRz;&auz(
zC<D^Y8u*#ruy9_A-_A}Y{vtM1&Kt;8eih|60~ZbaF8q>XL;KvgBv%YvHE_+qpAt%i
zbBuopzhU4X1J@n>Z|8`#xyf6>Pt!^0Zi&Hd19u$DyF%`9SZmWL-%R&I1OIaT^rNaD
zj|}87an!`uCX!6#HSwZ}_9l`|q?qVcqD*rW`Anpmc)~;x6Zz>D)huYLmtQ20iMN2D
zS~(}vRfs&(^|*<`Lar}&(_7R;F%u0;@W!dQi6>2zF;Uh;)8}0!Or)78Y2qmpPn+tZ
zlYLm5+0HfXTt>QyLY}~L$yudME*Pc8!{8nd@#1@)qq~jNq3)dX)-xu`nJ90n0i?Q#
z8YU{3YDlSQqLPrxCaMad2oqI=KP&i4T6u~Y!d;F{H6h&%yQYaA>#~+C%p%qjUfaZ)
zx3lV)aErID36GF^f;98|V$?S=(y)6yGU#n+BGW`86OB#PJ)4@yGSS3Dws;q2W^a5^
zZ9Rtiu7X?CeOh`wS2G3~YNN>(CR&<kWvc1xjx~)oCR&>q@mCVpQ`(=I_MD05O|&)f
zf~g)WXuqjmO1%r2bnQ%RH*As)COVo}ZeoRrP9{2=YUnUcbTQGD#bx3pQ$5|ZDq4!W
z5%F@CW5R1fH({9I>UlmBMQ<f>Px*0|{2Fr}a~J6AeqQ#Sr^to7{U$6E0TV$J-!IQv
zW+G%FY+{Ouw@gG#L`}SAVt|QQJy*=c%O*bC<hD(mUgM4nCIsp2&H{9JPa(Yo|7n%Y
zD6dGw-X{78q0*N*ba+1#{T=?frVTW~f+ZPaVvz8`CWZ(ZDmc=_>q3SJ(s;O#5rS3=
zjmjG)Mu~T{;G2Tfc_L$3q%PMu!SR9<1Sw85F-iDj!Q>h)ic?KYGcn)90u#TV%k-~s
zGm+_HFvG-5C+;jEvrWu#l(|CY337*sg{+#z?)5cXO}4v97K!(5!FNn77D9cAkfnmd
z3YB8L@ItWC#3~b8O>8squ8GwqHk#PP#>`$UZDzfYwI<dHIV$akK^tf$?P{~MSaqW=
zWD6Vi?ou}@yH5V*c`UE%eG{LgWPM;_kA!Y#<E-x5VPdBc@?Ao93wE88x>vgSM{Is3
z_L<mk;zLo`_Yau3`j>|{3~ZTvIzGshO&t15J&bTF`w&ZPoc5)OPlbFY__>M0>{Fq%
zFT{I9kQ3ds+&0+wirI){{m@ZG|Hj0(9D+<-H*w6waZ_zn_lJoSCcYy#ah@$%PJtcj
zM-x8?Kj|o4^XEIoW+~pE1kai{W8!mp5Uci%`)3p9MCbaqzphtnDqb+vT^TP`zp*tI
zbNwoPaMUMR7uhDc*}5RfB_Y=@WL{<pz17U~6%&7&YJt0}g4YD;<<^RSo4CO-(~pvV
z{A1##9I=oew}kMZDSq4*e#gXJ6ZcHq7jGZgtnh(wwnJJz6#lP?M?&)W)i9MLm{*YA
zWFb5Ms+G@=RN?sr3kW{u$GnCATRpO%C`Y?Adfbn~emvnv5kH<3v8Z4%!5#(jG1=n6
zxzHkc3E@xq@wAX79kaid#n02lThWik>$FmSl=h>HDCGnhv8<411Pd;7mlsmO3H@_b
zb|pV5`*A*x+WdtMe%b#;uv?Sz8Gg8U5wwtDp_(7n{mAyCsUJ1`;JtkVKN|YMMc!)q
z)m5pMU~NC@2yy!{^jt<=;q?S*;}KHdk7w?vCznh=_;AtKuWrK{`PB<tie*A+S$@?j
z=$i0|1@e$I^P{;RXZ`ruj~0Hk^kcXmBm8LPM{7THKMYB^jUS!;=;Ft7empPAyxU1_
zg}flx&W{)UXzxb{@pcrPdpl`s+45ZSv6CN*?<Y+i?`DVU>Q}G-n4fN}!P_dgFNrZp
zjvrp(K0h?SnjQ7sOClb>n?y^~&n1pA#1Fq8mLCDJjQ9~167(bFq!VTV4o_o(JWx!;
zK7QDK#QjM4(cO=iMeN~6Pd|DIzx09j?G3J3nW2q!zcARnWUTuYKYII7@K(n69bBs>
zgqT`iKVJ2tpCA1t${^;@j{z*w0cit8S>M*RWVm}`N7t2MYW{(4_k*ONa=x$oF-*>v
zS)yZ^FqAmbk2m~S#Fiswqx_iV$80}FGg-e{FmsIPlO_GJevI>DydM+9JJF9xey%_4
znp3U}Q|o;%$t%0HPLU{Y`7zaxX?{%iV}>6yB}(%LdB4A(#Ewt<R`O6h;(pQ__tdhS
zROX1yT)}yQ^92_OF7)GqVbkm#@gDZ$3s$S}C4MaRW0@bz{dnJx?S8EAW2GPK{8;bD
zDnH&8vo&mBcamB^NLnr4j|RK>dW#9J^`q!ucdxCU4SsC&<2?zbzR8cxer#dAw^OS%
zo*1u;I}CNFzUkiT$2LDs-EN$#pBU}l;m1xtKJ?>&AG_FnB$0i7eBj3(KXz0uzn98h
z)e+bTSwXdWsMPk0*?__B=qUF`ethi5AwNE4A>T<lC_$h2k#s*}`0MUzgWYAvxIbeK
zA0&P5hp%4wdjs7)ZmAikhlYK`k1zc=DJB1vMEq9ps32{=7V?eYV5z2KejNAXgdg9r
z5=H+(aOwE8=c|=xlrr~JrTi%3DM5Nq`|*?TGykUya-Z|7o3SDmidy)E!wzf8k6(F@
z?b!V0$6tP2_v4}{zx#2?k3amlEZ(brToLl8VEF=SawZo^u8BC~Ueez}Zb>t~A^ab~
zn}W0~dOzv5A9uui*N<}7GamYJ&yV|lJP?t+_`q$|muXD*uOsHMkYpjRrG~pgf+Wcn
zQY_@NkZK{ng#s1|T5802%)+!gNy!hAst$H@!@GO;|JQmM^ti+=Eck?APbotVbj2*B
zStx0txTUT&Pg*Ep;VDb4mi)9R-*0w*c0P-H@h~*qLMaPnEw$S?U1=d@1PeTqO1Jx#
z=NSv-9HqPkDs&YrR1{vxQ7T)2@G6e-tdRZ%lU*GAEu66MorUTaYFJooVTpyB7HU~&
zYvBb8wJr4?q>cr*g^%whal!4n7V25Zve3kW$3lGzjVy2zmIfBSndN?Ey(iN`Lxyg5
z*InQ)SU~O96Cdd21|p3uwXq1#H`@YV<F>HS(n3>O)^gD`6VhCei?6n_z+FzBx74kB
zYvFAKua$5;$8s}mhQ7PSeg8sMI}0yb7-C_lh4vOYSm<G)r-hCdI#~!>2w5o9Oz&*r
zB?~#iyD$Snx(PD$i)HCVuLZxO_$+7^bPIJ%+pu6-pv@=6O42MTIg4mn2#E3H(~MEo
z4JzDRFKog7E;C}GovHTPi&}_T=x*An-)Gtu;uaFT=5}z!7d9Yv7fv#uSXM8Vp@r8h
z46yKu1;$lPR7h{ZK1?c7iu$V(tDlAbLPnYPeA8wkv>zz>8Ejz?Po$@t?x$txs!2D~
zU$-#K!ek3mEDX0WLed;#VWbcyJKDk<4j(0Cvz)@47M>3_`pmS)S{TRX(ZkJ+xyM^-
zx9$mIcFwdXTKFf}Xp$h4ddtF83-c{3U{8@O&9pE}$aD)cgfL4i&)F8{uuoa&+}l0Z
z!kFh>k4(Fy-@aNb4>`+i&HE{Zi<Vqy;T<{FB0=`+w=KN6*TWUpAJ4BQJ(gNnX5n)S
zhb=6(u)@Lt3m;inNqeV{ylY{#g%4Sb1GF_1yK4KHlRa5$X@4kdorU!lHdxqbq2I^u
zT^2S8*(OM3vyd$o-gA_#LSFBbT_HRBeGA0x7Ip|B-zg-IuI(1H51d$gEbMjoKFJId
zXEyj2JNiZz^Y*cYgBA`+CtY4Wv+IRq_Uli?d$?lerxrf5z!&#@s$^2H<F~(HA5rbu
z{VhAxsf;fz92G+Tm4&a0sJAL#i}H=&jx-mQV-n@K;QI4fjQ+iaAJ{><HachFq=g?@
z!Y4D%SUAN7+_wQ|%$D5AdzyXlX68?pdVk012)>v&E5*BOR@%?(m5V)`>ioq5zf(HT
z=)Zd|2$H<uw=Z%evEU0q3*nN5KP)T^U{L^<EnMMv5<rsx{^StBfheHv9<Ryx`M|<M
z3x5f}F8H_L4Z(i|Zwj&*+!Auz!W|)Z1@8&o7vzl`&HlCUh@)aaonW2-k^*=-fV6<x
zbS7^AMFS`nKym;n0pt_0pkS(Ce!<5C3kb&iHY3s%qE{61!a|-1popV<F<UDxyoBJB
zg2SA+PX#bVc*y|L1Nf$@iyw@2&rtIlr2^`DL039}G69qg;F$o9RLZU(ST3NhAoP}J
ztXXc7iUCv#VBR_p`7gyvR}QF6qsXgBsXiM()c`UAa0S%F(Z~(j_+z#14o#~TK=l9z
z_6DWSX9hlLNvtXMwFGMiP$$6sHPnQ5W&n)>YW}1y?M3kj))%Bfg8&)|=k~bt*3K-?
z?*JPI)YpJ)FvRQtH!epwfJgw%0%#t<^8vICpoJvM2VOpdv<#qC0IdV+Nw9bsR~rdx
zSubUWFZH<q|AI+nfiMp*1kfRXjsZ2J+m2}tXz*eH?E|WP^6{Ua8g>exa{yfe=o-L3
zjg;9LS6!yxO>!6vAQZq$!gB)f2H<nf!U#ZfxE?@I&V{FA2H+3C3LxNw@-%bLl=<PF
zl3WO#X3+pjy_)t`08;~q1z-md4<Hf1z<_$4N7p@oKEiuAN>3rZ1YZ_>h36$CUr+U}
zpRR8JuLjUBfc~Nn5PVHA_j`b+=cdwZPymAi7!trxw(Ujk@d3OpHlqb;FpSk9e1xNn
z4B!pnqXaiUQoZ|4;bR2H3Q`;wP!pkjd!{kv3DW!~3QiK7EI5S~+Fo7jr?DPisySb(
zZ@N^|i~we`K;BiMvjUhMz?=ZLY14S2pBq5MXI;5`9-DWTt3m&?1pzgl9P5+3y-)Jn
z0lX7H%^+$8u{eMw0h|utrvR3+xB62y2CylBWdSS?U_}5c<#6i)SjF}r8CWC8t$6E<
zYOtCW)W5+(zr9w(jeeWece`%N`T#Zr)P3MnlhvkId;s4Z!1c*#N9C-y1n^z}TLah@
zP!H4}3cfG6J%AlTb_(tl+$FeM@Ph#M2w}uCEwz2Z_X|$-8@bQv2Lkv=l#c}u2JlG$
zhXVMNr6I~^0el|77s3w*koV_|QrFZ2K3&?`3<l-$F9Y~W_{Gy1HCwyBma*=e0KN_2
zSOC>#xlaV}9oy0@_i>ikE_eJ{wX?wY(%nu5@PiO4TFW%zj{%$tsLdV7>vzaL6TsO3
zo(-aE5I;*H{~5qlIm9`^Ujph%bYAd60KW>M@|%#0g1-lFNys09mj!8aC4hr|n}pSI
zEr3S><O$-h+=}BF1#m<7Jwe+16Tr;?ZZUg~a#zS54s@@ny=G`rJDzr5#0QSeLm~eP
z_I#rO3oR*#LP0zpMBX5hgQ^%)f+#2?Ul6H5<PU-$Cp;#|&{6sG6cA2Aoo;KRw8B9=
z5kwh@RV0X_Led0_36=<=xDclBq!4c3_mq&Q9X)r_rlfe&gD4e5X*T!<seyvYL`Ezd
z<o?Jg=h#;gQa*?ZK~xmWTw_{RmLLdL5oBYa&NAULAQ?e*Z|@4CT2M9k>Vh={r{75$
zw>S^6b`W)fNDrY@2<{;22JvJFB|@kdgeQn5L1YI}pG8+%y&cXB;&3pnK~R0G+%SmT
zv8YBFSEHaBkQ)cpg)A$Gt`|H#D!G~l(JY8ZLF5Ucc@Qmv=p96#AX)~|Du^yL3#zM3
z>mb?+A#W4JbHbk&e1E9gLHh;a?F3&8qP>s~L39kFlkl*aPS<&OgU*hZoDsVPVFuwB
z@ueVgg76CW3F?BHAP;1)F;q*ZV?;VDh;R@Q2@MDag9tgsw2uZ66K^j;JBUOO-6fHD
z5V<+;AwfO=|CDnN@p2HaNNBFNZ;&r0uqKGLLG%lve-N`J^fke8L5vS#KoA3i7!<_d
zAl?+6M;Q{tupov9F*JzRodl^f*%3jE6lJtzfS<h5y}<&!lsQU}Ho5s6BW677u};n>
zh{0PyObue9@JT^T4kGPtUYaq5DNY9X@$j@DW{7t>546owyKgdaW)QQ)o?be}niIs_
zAm#-zpJRIvOC-tywizJ{gIFXaw?LS&cf`wxRF*n?RS?U9ST5cbf-9Y~qh;>tyes-@
zK`QHlSRcf3_T?Zp1hFxQ13~Vbj!i*q7Mp!RYzgAMAa(??Gl;E0Y-2eDv0YOBzhrZB
z@_%0DYF7}uof6}LK9JP*NOA3TN|^ThgZNN_a!>8!APxp`B#19X{6z3m!9#+%XYrZv
z&jk-lYF{{Meig(~(Z31e>;FW_&EdB}9CLETBhq~r#P>m53gV9-eh~Ygf;bbzN#Q>R
zaZ1Q(Cw<m$ZdT6*xfL4D^C}R;ISFOna)U02_gANga>d^yor@fH9AhSRIfyGk+zsMh
z5Pt@7mBUmJH-fmvVPDLyJGsq0@!X{T3F2lDw}QAWX;P%4!5xW`Ys18;+z;YG5D%T4
z{9g`P8vi<NBPoQuAruPX@eq<jND1Mw5DJ8lFT|a2-Kinu52=mnPW$bLH!|D)<=Ga_
znsL*^pg9fG3Wm6ooqJHWmeJWR9KsVJ(4eSbkr2x4$>#R5<BOM~eK8R?@6IkB0>4#Q
zQBv)(_*4k4Icl|;r$g!;F}p@u2qi<Rr{s2)(o7_Tu8a~w*$|!y0U=Zgp<D>%L#Pl^
z&r0cy@j;*DfBfoOvWg*f@v0P3&jpo3>dQ2K3&(N(*$}FR@L~w<L&)GkL&yrLPamuC
ztXI^k6+&$x)kCNeLQNJzW*T*Vg-EQ!!9RosAv6@5x`H0TdLi(0MB3CBFTZjm&lFD5
zD5So7B%x~@LT+k2XcIYfwqR4iX1odrX(8A$gjPaYhwxko&xg=Pyk{DwrAN}4Lfa5t
z2%(*b6-2qzFpc`<(|J0Cu=zlG#}GP&__w3`og*H)&LO<jJ2jHy?h*pMzPv6Xi~Xe#
za`-^n&K*ftS4I+V2;cm!h#rCw!f#<*48sh;AA%J|APg&nK!{&_p;Q>b5JI%)fkFs}
z5D8&h2=9jw4Ivi7)DWhH)K$z5p??Uk36F=62%)?19wGD=(o?XP;LC!H^@@;90~+)Z
z(pT_R!G40Y;S<Mz5C(?uW(Z?K7$o{|Cv>ooA%a6gcwNXa!DbT;Mjs)3q~IHZqXZc=
zS_m(l<YR?T3}Kv*@q!Zs8Csyf8o(!scX9|*9Q`dJ1G}ejXRhfXtPt;v5M~OQ#foq&
zXNNE+gt_9KC%8~>eh3R38-8reqbv&HZAV#AQz?tZyF_ql2+M>lcWn4O*vb%AiTB+Q
zHaYt05Y~jSR=n#3Hwdn0J|)?Wj%BF3y3N=e!WKt)FNCear<7EMvps|zA$-NA9&&Rp
zt(_r!6jGaN(d`nlJA@B}>=E4SgzgivU+}{a4hY$CIh_$d4&fk^y`0`@b}GG}gmB1-
z^{J501V0bqu%mw=<cQ#xf~l5$G=#4?cKO`Lmt-@0{A&GJ2**SCF@#egG#%dHL<m2G
z)P3N0A+>4a_ktwf^>4t@>10Sf`PS%@e3~OqS=adxE`;z?2xmAzRZBn1!AHvBXLfBS
zdpMh=!PmIu2R7hC7WuF2KFmp2%^O_gQ9`&8!aow_QV7>MvMs7f_lJ<nAzTUJ&k(MP
z_b<U~j?IaQDnI|8E=BxXL}rZ7-8Vyc5W+)IZb{0wL%0*dUE%jaxG#j6nbkwpBWv^D
z5FUk4OmdYcjHECM3(p%yav1r;cr2{?Y)TmUgpfbVR27{n-tS&E$qR&0$O$bdgnyM#
ze_VL(B)}7rY!ShtVKi^0G4sX4cv6%Sf=`F>ln@5-bRLXXr&&^z+*yUv<YCn9RVp)#
zvSB<EMkSJbu5xl9&caQd>@F_~@3AX{!T)F~hSg`-Tt2RH7zm?E7|(`LKdj!yRt+N~
zj1oPJ#v43zt}v>FQ9Z2w#-evrMOTe5JYfv~$x|~7dTR-i)D}`l(9QffdOZ$_o7^-g
zxif27t?UM2E|y-CuAz`Bmfa`}{yU~#2ZxarMw2kI!)O`?Cr)1yY!*h_FkWE!&^2+j
z5F}|Sq*WOAH)ppNY!k+FLa00+#)8uxl7n;I?ZS95jP_wXT_Kxq7V4JG?hr=DFgk^~
ztF@cn`kvIz%yZf7u3>Z$LcS)bb#r)w`R<%BykYnxOU#=Y#yk88PrP~<hNEX%Hbed5
zopr_th7k&5RT%Gv5e_2~<~PiES*nIzfX_S8Fk)fY%t;uDFnWgnH=9>%-80>V_i&W_
zg<Q8@)fnZKFnWj8WxZUL%syfC4XaNkMupX$#jl1jAdG=w@TQ`lVE-^)6GA0g%^W0r
zD6_{>{mU~r4E{?sgjL_s{r)3^%CIm-hVcfgm<{8Ghi(KDELDnxDe#ttuJ6a`qr-SJ
zj4@%14P$;7?9t=G7%%6g$#^(H_>?dvhS7S4Hc4=@APuOz6~<KYP77mZ7_-8d9>xq-
z)1^#?(y_Cw>Z2|kv%{DZRyRBp=Sq}$|4C;-7z-r>iv*VmzRlVRW3lihf=k1oV?MvW
z=pil_zCv)NAZL51uV(p#aUzWG!dM%|x-j^Q-=}P%VQdKFgE01lu~B;8`+}PU*(Em%
z*%HQkj<QwAHo?448QX>I5Zo!qSi6Mm7G!tcE98I^x-X3V!asBrj%gnW|5)&#;3tBI
z1as#hKNHUMKW8r!{zVu^gnTLZHAeu)=4hBJ(5hkcn=rl&<Cvo#4}$|cb-G*wE0Fd*
zn~Dr3C&M@$#!te3WZM(cNq!UH;B!X2zlL!(jGx2E%;)-Qrkb`r$95}0<mZK45bR>v
zHL9gh{5_0I?57c=Mes)$mpNXAag(F&qMBF2_)|!g?xpFayBfwdQT`IVE=c|FFm5=!
zr)6^*{}zXZFdne8oXfZ!#+@+ka-5u%%J-G`Sl1`{ddqHSs9!1`vU8oxC>l`w-!LA9
zktc$r2=YeI>`3NQg6xCILQ*2g7eQ)-D~YA>6Jq8+e*}+3P#}VW5jC6^ji{lxknqC7
z9~WZ=Jt1O||HLg8;lBnd){_yG5aZmBlc|vK=<MbtBS?>+O9WjbC>25J2pUAtFruzU
zWg@67q^uy7XCf#kynIA`mR~`5MJKdU1WSYJvV{n$i1@5v9l@#*WJKVKpqhAV3RV|n
zlo~?z_eriLq_(5;DZ?$iu3$Yuk6?X48ZdgLP#VA9%#5HBi|YwjV-{uv&3S6|Tv>um
zBIt3)$c~_C1noU8{-?9PNp_2f+8eZW1Z^T{8Ns@*J@mE`u|kULxro|9l{<TOj^OzS
zGW(>lCA5vG$D9`;XeZ=FK`QMd=-}{<5p;4mzli2b1lDi22wsZdl?ZxAkQ0GdGH(m|
z1Ou!%Av_&jh#_bS`UR~BJd0Hc2gOSgiXbdJA{Z5n2`;zP3^QF^yom_93+W+9y=Mfy
zgum=40XwZv1brh|xlDaGV$M=?<~a{DISt!Cg4ZILoxq#~21GD00>2H*#-IoWM=(8x
z88HlrU}yxpqSzh9>k$l#pk5T7D27KcB7(yad=bIO2;PWbV+5Nbh|W$O6~VX&#z!!k
zJ+yh<HwAeMIwpd#!YOttXHAG;VgxH9>gkxuqzD!}p_3z+62V&$b??fcsiIF~mLixD
z!ORF2h%!rXt`lo^1apMv#+v8o^M&Nz11}W5NbqgJcOo!W)XdG&61H{`mqoBV0`6wZ
z(_s+FO3CLcL1y^f2v!SUBe>Sl*F~_NMcTo=!BKb}<lWTf2o6T@Nd#LW>gMXb2(}8@
z7Qy=wY>!~Tz+_&mcSQKTB|eU*3->ND*ekd@f)9kyY>yBc+<iO`-99niAHj!04hViE
zn42aoNhZ&7AL37u?Mi(X!KV?>TfBse$Pw)G2>4eQTg8zGzKq~|4lfaW6~WO6zKN*a
zg0@D|X4X#mni<PU*<sn7#P~LXV-Xx@1F-Ble`mZsF+_4Ag6~9$A2eo7$T}Ipj}bf-
z#nVxBCwVG@D@-=YMRz)apB#QBg0m6)9Kku}IfCCsKOez`2!3;Ha(@H-l|xx~gV8TK
z`t^iyiI)KJR+yd6pv%ImJ~aMxY_3LdErP!yxE{gZ5#)&?DT*5`!wBw0a9_-BMsO>F
z+dTT|bPfnihyNGfiQsNTT~lt%u66LsOyYwG9!BtQ1dl|g4KqdqI&wNj%o{~=6osOA
zJc^X4`Vl*S6puxbFN)MCMtzw{o2B1)hy|i3C?%5{@q%SjEOp9LIEp8tC>ljE31vj;
zMFbhWcoa`YQ9`^MB(<9oF*n&X(a9@DQBruiU@5`UQIv_Itnl)J&qPs92u~z88x<Tc
z6QQdVMP*SSSS5;Qqo^vpc2pHkMij0nszt$!(Z0H1ld}f1S|f^@Jlt8UmLL`KIugqr
zMO`Tk))YlXtRF>#C^kgZ`}Brl(<F-QC^A`$XFZKrdfVNNqv&)%ZPcC>RX4!(yJR<w
zqFEHdC_+*GyN4E0bc^DpC|WY{qOJ~6bc~`^6s@D`Jz$$CeqQLlGspd06wgP|Hi|*n
zu6B&r#Px#Uufwvcp7YTAVifH~AukxPJ4MksiY`%f<=L%rzr5BnVyVJKP1Vmt{6T~N
z7Ue|Yjlv(rfi-Sl6j~HU6lN4UYq@}HZF86Qn%XTre^Y+9<K|1xw?}00GhItE7GU`-
zbJIONIx8GSB#OyVOo<{IMJ$T(QA~)!jv^k#*eJ$D!GD?(QM|w2)17DcY1V?J?jBL}
zjG|W*FH6Y`5`0ClpJ4AO`UvSO$kKZ?ihnz*Ck49xQM@Ml04H={6t~_{Uy%)tVu*-C
zIp#+(f>!~@W|)v)mZpvrGTPDK5HgBqF-xWJW)x#YdA_IGUwgim+Io?@MRC{VA}$ul
z#HiXweo_>C1bb?GHf!zB4!6G9^Hvm7qj)!p)l!wyqF5ZolBoJVVR{rZqL?XZ&Jvt2
zI9qUz;M^$Y3E>fQfAw7u#X?aQIr`f|-eKj=SNUXamqzihfNND0<>$MXiM~9F6;Z5|
zbJ0G?;{Nr|?$5qn+*NRudrcH;qgYhO#b>Ujd$V|3vM!4CQ9Njnoha-|FY4-b!LyM`
z4Ncn=#pWoE)~>xpa9b4b38Au;Ew+=J<ozhNN3p}vcShB3IMnI*Gw%mc?1|!T6!)Uo
z8^yjTev0Bu6#Jw2kYy6Zw>-q7i~~_M{qji^A4Tyoi&Vr_)7=cByXG}`18^vcPowG<
z_cK9~&!adj{0p{59#{BLC-kc*R!vnASKmweItojEPd>(WXr{B!evIOH6eptiPCEV%
z?0TnEi~2qab~H{V@M3Y2t@mBUPqFd*m~on=^kYT~R|=7x{cIHH<yici;O8jLvBn1_
z|H7(o@7`7<ALq9(MDZ&}p@98cR6S?irtxbHE(-o0#ic0zh~jb-S48<Iia&+?EqGP%
zn&4l8jC)-OC+Ns;IQ*s)dP~Therb2)aQt9^2ffc~Whaf{nHV0j<M4LqmWN+IK8mVa
z@d7avj3G}<@g%{#g7hZGkP<__7*ZYOF(LT{S6_1Fu9i?JrUuWa1RobHEck?Akr;}`
zP%Ng#+b0D{ipSJCB<lLIsAdV_BuwOKiIOH*GKO>^r36b0GFF)wMz7L%G3C$E<zlE5
zL**E_kWTp+DhMI37{ku;t~TxX0}`sl&@-mq0z4Z-RUtVsWW?Z#;YIOQi=lc9&0}aG
z-WoB~i@_5^P4U)>p>_;)gfkI0Pv<}>lDeY&u`G+czVOB|WW~@xc*7Vn8L>?|L+KjD
z)c+<GN@SBaiJ__3WD6?gK&fW`;Z$0R_c_5<F|-!a#<7{(I{kTvw~gTihqn_lXph$3
zQ98uXF@{d!?JU?$u!~?<!JSPE9`PmNZROOwG5BK8V$ekl#1M?Z5N-<k1ua1?bHwO$
zp%|hu#6%1WMg+SYC}j&t2+}ehLvcA!_ZWIOe2^%;Vt6@*S7PWL!>|~J$IyqdVi@Ga
zeKm&uF}x<;euBA44G=z1u*IVk9;M2GQiH`yK19e+!Pf<kJxm!PWLym6g^Y~hjTlA=
zA1yd0hBt)_TcK)stnl^g6rT{oMDb1$oFq6|kd<C!sj_)Xyd+a&m?k_ot21Mm6~j|D
zp0+VNhB+~O9K*pF=ElI^@VCV9UJUbMm`|I<o&_<y8^h`t_(|}>7#79wHj_G+F+Dl?
zof!7t@X#$*&0g`Pj<PI<<-%78u5|QOF@)YQ(tgNV6T^lv?oBalj$v&K>sZczX0DH6
z<IRi>Y`V8S^lpsdvqA2iUu4npncJS&iZW=CKDJ=;R(86ie7jgUCo{Ii@O}*2W56-b
z4t6?L-*ET1;cl<L^zq^DKZd(^)5Y*X3~N5k+7naPg%7rQ_QtR;1}-+WKZXxuI1odT
z74EtLyHazPzo+(543pE0FGgh%KZ)T`3_r(kj-@f({b>w`WB7t4Hni4fF>p%%a~9y0
z46Yr)@;Snuo?7P&kHWD+O6+J1-^Or^<Ihg_*D-t};+A)__t$hC=djaP`yqytF`N)i
z?{{MGeGKK-WYha2$HoEfpP2dgvQG(T+|xoXWoGxR<{G~>yT`SRvoV<0GkM|Q)5<R~
zoR8r`Onv0WJ+gm|sW%HLHuBl{EryFR?oFBfdkpu4T#DfjA(sXJ7Q7<(r{Gn=Ycc#K
z<htO$drL8q8^THc5pq-TRt&ct{Z0&bg|`XVG^4vO-Uqx2u!9Hee+3^2=CPGRmt-Ta
z!;^(nn5?DR$Zz8b8%1n9W}|?OLN*?^QP5TkcC{^$&M(~PUay!*EId_t3)||mH(oc3
z+9+nDgsnb+p(}2KK~LJ4TQQSf+K@0J#WWiwZB(;S-R7#x>H<;DMtK{hcyxJADJ`Uo
zU|Ac_2<aKH8Ct<cMH`j2s27^_R<cpW#<Mmmiwy*+C-+Go5wK5ZWS;mpv#N~@TMf&#
zZzj2Hel}B+HCV$&v&tTijrz9gaW!q!vQgVsA7R$9QCC9A-J&!xO4V}|#%f@rp^aGo
zv`)6Vm}asBB$Ppogfte+5^Q24+X-!&O9Y$SXyNEB*=+W>8NIbAZ5;hM8_zqut&JCi
zw-bC(u)Sah!H$AVgs0!xMi(1hZFI9$`!sC4B*ZI7B}d2~r#(I!n((v54eC0}M^;-h
z9n1Q2Qv)`FHb%$sW*i|KVFuZFWFulDYGaL!wJZ%AwvFjFX4r_^NZ1%@;|&|#ZS>$=
zjg7%JdfMn^<24)WWF51YZM<Tu*D=4YQp=k4X7qB|eFRDR+IW?1!&dj_^u9aa-QUK9
zU5XEoSeLiB2eP3~NgY+dRjWu|?-~!6P#9uksEyZc46`xZ#t0iV=DPVeG4I%WSIOp4
zUfbaQ@=s$FPsheY8<T9j$tt!n&c=8fV{PpGwQ+&j*~G19G7n!=Yd5|4qWa@tf~{_T
zN<2!MY-5UzA#K!e-AwQ;8&ho#KI*GZz9pF^{Q5k1{(V_9ZOpQ<%*JwC4GyzyEU?v-
z>>PFqrf@xjji*hjYo3kW5Ax2Z@g(;PAFGDFP|OwyzAgBUjm1J3x<trQL2kyxiJBFx
z=uYmH(i+=VNL?jfD(~7@EqrD`t&*|M#(Eon+qhw4gN==BAuqbG+G<{Rla2RnY`3x5
z#ugjzaS*HG+GeBlwCt_I>0MUUMeoo@89P`?Hjdc%(#9@kp4DOF0F8fAbMGJ6GKI@k
z;B4%*|M%W=pOF26xfA;z3ICMFLJkUkB6vtJ_njaU{7k%`3m&%dg%IlBoi6p2@Y6Pa
zvT@YL*EYTp<%Hn3g2x1De_RNY{Z7dDEG`=-h5sn{NM5;~5}upMGd9lJ_)`?7@Ux8z
zHhvZFIl*6SoR{;>&Fya@UUKX&vfhRN-?{u@<FY7M{-fs}>za*AO<i<<*|=_Vx5P&L
zpXgrw>~lf)KQ?wek?$4<u_V_`8~g>Sy6L{nPB%llW8<!kdp53AGww4MJK)7~<f{WV
zAF>{bPA{*;dE!Wlqe2`N<H#FFavW)Kl#Hv|Pl=;I90iHLc=E-O8pn)(Gx7^Q7Kb)D
zyU3($Duv=|`5k`N&aX!v7hYJ9;uCQcad=T7#o{O~<Vi;_A>^qzo)+>|tq>!2eJMLV
zj?!_}FZdKzDvnC2C9m~ymtn@@2tQr<nYdb#mvijp;`r)-r+ggqPk1_ya1$%VQ8|w4
zany(daa4(;Y8)AHaIJ$aGqutWGM<g2t1NQmio>el;xe0jKT>UR&1!M{wBwoaezllJ
zO`c#JdK|Uls2xY0INWh$#nB{=x^dKtBQuUh#3x*yIO@mco#qnvZymE62p{v6*)XnV
z{`p;T<2YVl=05PYdQLx5))=rlJ3Ef1%tIXA;%F8}^Eg_@)g^|mMI4-3A=x(~>(qRA
zt2kQ6(MCesJ2ub7@x1W1f-g9FJ0UN|QFx8|k^Jp_*&X8O7+14Nog}EUV4+>^E^#zm
z>&ZRhOCs{y<{Tjuy+V9(HOE3PKLj#ZP;ms}Fr`NP(mXg!ozF?()gc&1G>#ar0<0SH
zUTOT%fc+vOMZupm?Kt9b^>NprcWWl%Fs8YO2zHO72kTKd#eQ-0a`?+aUJ>jaN1r(Q
z#__6nbFt23jZx_Oi};%0fH(#U86?Qi!9qG|_E1N8J&s`xA0EdD;UgX84I!iA*cGrD
zeM}r<<0zEC;|Yw5V|*Oj;&?xf32{t}<Gr}LGno`uGo{C3?&)z%j$=w3Z^iK=mzOz}
z!J9+g<V=mL7dO-5s)zEMgc)(njAK?Dv*TD5$GdUNiDPaY3*uPF-cc!gTLstSTio;5
zq~jpzSR<SG{UZ0GI2OmTgryos_oL=JaZuzvGjS;^eZ6Nz9CknVGU3YwDV80Wy)uqH
zYdm!Mmbq8Qu_lg<acqjKdBwGHtdC<u9P8q0F6&6ZCazrU{%5g!${P2Zg<YHDXxk}!
zOI(dYEp8Y~+iUz?t9fPDRylW`QH8%#w#Ts}j?d!wJdT}lH5{?_KV%uku{(|r;_5QD
zPZ||VV-I`H+|<1k+o+|AI2`SdtC^qc;q;M5JO|?VD2|UM%ILpp@bYvpj!)w1kM%=>
zzFT=e<;ZX|sne~zhZ&LMQUY~s_mMchWG3VIg9AbwN8|W8j&tly(g?qg;|C$%#PO|=
zV}k6G$Az2_{7x{dfa|1?vx2nwF^*FXKh04>_!+?q0kvjJ?beNmzr=Aqj^E<A7{`S;
z{?4C|;;&-X{ll#BmDJx%fu89v=cN8F;^9u&BR+Otj^he@M;zBV&SbbMRCN6r$JIEl
z#c`luzKc~=tV3U``-;CgLdNls9aEyWSyzhUKdd+oH9NC!ajbq!9r1P?cf^4Fu8@0i
z+!yk|(d%}zA2~c<0(la6rI4%5Mt4#I#JmY4C)AjhB1natu3r;Z{)GCv^05SFY;qS!
z@Yj1cNx=lyAj(SL;4YlN6AAQ5pl<?25-6HLwFIgsP%MGs36x2oYywXvR10}Jfv>;!
zlt`#sWey8ZCE)Fy#-TnffyM8;IU!jxf%F7QB~Y5Ao@+u~7m+Tfq59JPnFPuwP$8k(
zaJdBHU0frcYg93TlI60IKoudC1S<>f-t2icfvU_WbCT}jzd7B?rV>wHO?NT3=Q3t|
zmBpOYNT4Q9>SRXu1ZpKvI{{Au^(B*a1l`Q`*#E62T33{Mg3Z>}YLGy~1YSs>U4oPI
zT4n-G6KIw|Bk?vC%u3)MUup*JCJ8LeYi9EhL7T?S6KIjZ^9kI2WVB51gMWKa&~7cH
zRRYnVO{HorvrPieB`{q=*9L7Gx8+IIGD%)cpnU>*0!9KIm~0o*%OT51@0d^@?sgI+
z>6}0p;avs03BKfn<|MFco||UA1n&1W7e%tP1c){N_LvFy6G*T$!dY~dkYECV1Yfsh
z(cS(cJ(PfT)5Fkk0ujeDnm|mr?I>}UZF@J(+ILXcL)uu+1bQX#vhd!5Y;Ug!=`k?-
zHCe#q)dcz_Fp~9k%ELDE%k<R#3B1PlzX_~QN~SV2fq^XN1iF9h9xOOSg6O3I@%03T
zB`};e@75e42Dy5!!5ayTN?^1!faz@EBngaRlla>+Hi1bAOirk&-EnNIH$3ALn7|5Z
z@1B^z_NH3(j&9-<cAuLbiqj<MEy1Y?gbE~6Og)jskCAw+nF-vOp1Mr3G|S1x+yv&a
z5__OS56n+s0b6x<B)VfEs~~}!3EX07B=AlG>v&S^CJ8KIeiA5=iKUWfUU60>uuS;!
z1Xf7H?sP%TRIf}Rr$)M!n(x&=Gs;}epylcW*04e^Wvmq>`LdO3LjoHUIFP_c?5e!~
zPheL9yA#;VUTnG>c5`n@;JpMmw==AnYpc}Gwgld12_&$CW!ubk<#t|n$(_RK<qz*4
zB+w+UYi|OVFC^~~PA@reUjq9@`Owh|4Nw1AvVAClPkHon83)-oMPVn6KG*281U^sT
zY6901IGn&232@y2KCvE2;7f9LMm96~2e8#H_g4uJj|zS*_>JJV2^<r0T#z;=gnTD`
znckBL^?>|S0%sEVQTQoAil>F}*PgQp{G7mV|Bt5YfRdtU!i2je=WyJSkq@{90S68^
zI94zqC<20nBgd27*))0PR4^x0P>G6UkgOs>kf7j?B1S+I6axsNfS_PNQU9+C@4b2T
zs%yHdtE;Q4!}N4dR-a%<|5oVV2|PX-CraY;IO3Bf_|-}D_mgqDg!02={5Tm)=M|E}
znaMai8GFVS@i|Ass}v@(C8k}V%ca3gMx!URpXm($%I#jZ6zQ#g%eX|f$22}edxw9Y
zj6dkNqsWM=?cA3qtB>`iqWF_-d9tFE8?14-du1~Io~(XQ;`5In|FYC$ix?~&RY}SS
z<Y#w&pwEmV6ve<O21QXWit<tPisF_iDnwB+itD535k;jaDo52JoYkYK5>;n%Ru$N5
zKoN01)uQ~dLg6){s2N4AC~8O5ltGK~*QcU7QG}xy`(V$yQDj9?FN*9ann$r<ND-f$
zC>jf1Utoh0dP6}Pk=r;Gtw{;JX%x)_zovxJd>oe>{^Qmnik2mKt0-~>XN0SHwU%I;
zD6TDu(>98BC3yQNt}DTBd$1?v?+``DDDuV?sV9m~QFM-?O9`bwkbHq%1$LwAu0|eL
z)IEwwNlemvMiITK@J50B8~uhTPY%(Dka$xRHw&FODO?}u9Ywz=xC+rHid&=j_51wW
zqPRV(mJW#bEkTHr(qCc@5O{|`Cgifxoly*qs-CVWiXl-9jbcI+6QdXwMPU@<S=bI4
z!=q{)=EYW{mOocGB8rhTfc*udq8KO0=qSbr!h`<C3c|Oc<=V*HhD2z+T$n94Evw43
zEFzPlYWmN8@;vp3qrqqtu_!){;*%)!DB@A<h+=0Hi71j$yb{H$5<eA%5rrvorlUA^
zK7ZWNTq_DYil?G@ItnKWmv5tZI0`QcKZ>bQ)!*?cJwI#AxT1jCh~jRFI<DxRDDEZO
z=M|m5rA&z`?|t{UBEtJ5)%{VFJ(JJpfhZm<!RL%Cn$%BwB#OtQAhP{f!K1XX0or3x
z{PKB$@m>BCG{XMcG<nMiPYN=+)X3>k%!p!P6pNyGCW>dHm?Jr6_S2q|>{@rpV%9UG
zm?gp4C6YhXZrt1`=1Jt|qnIzq3j$-o2qRymdXc6m6yhuQXD^OoNfc|Ns;jCvKwHY@
zIY3(}a9I?~qgX-P^GA@#=cOn%X6IbRS4FW}qOB1~;(I^mt&3uP6fcWBscM;2=8GSX
zAlwkeYf)^CszKL_Ln9lbcwMSyQ<PVdMK%j0vPBSnyx^uj9%$?xjBJaliToSl7Piya
zZpH4hWp~lKqF|g4qIio*j^w@@#l9$ZvyP&8JBsRg8SfAuqP9)`FN(di4Gsy8<nnx{
zV`uYtzIUV6;rD1r=W}`6)cz<Kd|zPKLFyHUb00?4@baT5)@76;av+L>Y%fv#7R8|`
zKBZrZ;!IS1_B|ZMH)8FS^E0Lr^W#6)M+7+<#TR5UPHkZOl6ELW;$I2!HQidH5QE=F
zah$$urFJ5U??p@BQC&AjPO`|uN1hUV=s=B>)AIHQf!q->ZAauR^}kWA^0BbzqWDP^
za-KFO2$gezGQ6n$OgrxxwtvasIWQOH)ukw=*H&|c-=p}0E;NREG1b;C)AL917mYJB
z-1LLU6{)F=7&2q{o7VVG?uf;0|Dm6Wf=H>Df~5tP5m;6riHsSFp<E2^8m&?cFRhD|
zkEzP4D0l^dJH{2oWQ0~ZhAJ^sjUintTqlOQF;t78dJHvUs2Njtl+=!)Rt(wABD-pY
z+q|Z=a5W;NH?I($-C_h&k#nd=R(1?IF|>){+8FA`&>)6uVrU*i!<ecpKFwliRDw5-
zp^4y41>RXho%m6qjDmblpHUF<sznSfOH#EGBsYd|38l3lU8<I98$-JodP}f<4A;fb
zC5HSM#&%b^YcX_?R~-dXFcR|wb`sb*25+01{&$sNH-QXNq=Fc_#}E-pFM-#`&_j@i
z&gS(Lr0~n!8;A&glfat=lEZ8%+AR_!w?2a0TJrX`82So+RRhCM=Jt<aPz-m*Fdzm7
z?+`dp;OW!3qzsN>NDTkP@NW!5V;C00;TS%Pp^$M{voWls8N@I$hDTU^F^q~~bPNuS
zfzPr0F)`c~!(?hEhH*j}AH&2LCdDuzh8F+iG7jPAGb5+}$}NiF@-y1uaYcmD7-BIP
zG2V4jq{r0YBoRaD84)7!7`IAh5lP1Iqceg?ismG7xDRCZce!Q^Rt#K+f3QZxj)Cx>
z(<&n`20w=TDN^Zhz&OWq?~dV~7>X(R%p9I|-~V*(y)jIoMa_uZCrX$aL;2&mEsy0>
z6?>l1T0E<f)dS>7^D7m8NMb%5!@85X<;NGz{63dm=VLKEF2XE`;fWZg#qeAVGh=u%
zh8f3mr^i&wBLAlt?Nsj50$ZQToxwuUhEL`$Dj2iv@7!l&n3EjQWPH)A7-q-tLJZ$N
zqdih8JclEH!RLxHXML5=av4{0pC@r&WXtK?`SSKfffQ!c(~*TS9!Z47A`*4AL=Y-)
zDGUBp{<0GK@)%YKPVpFRRSc_Rcs+)#F{}~#x{{b{1v&OaWPJ=T3;qhVUGnzT7%Kmh
zyFr3iS#6AAQ_0)Sf@~4U?6$@5MhpjHI2gnB7<R<)zZmw$urr2TF}xYWTQU58GWX?8
zji})dzRKTqDtC7bZ^y9l<wkpGx>s`fkVqx$JDK}V4DZJ9K@1<purG%9VtAj*Kbd>e
z><Bf_b>026(o$jGq(%+1j332twvMu>Pehp?i>Xj)q_CEmkhXM4MEz9YRjcFR<ntI#
z(K2H=LWjfi|6^+X>Wdh@jNw=eU(tPa41X6>-v_@I_-zc|#L!a<AG#xQZexURk4u~r
zF+{KAzp+uRW}J*+L5EO{`y!{AR}4SJaGvHJQv)z|tmk4lLnqmz-C26t`EB*PviMPn
z{TjQ23lis7W)#EEG5iw4=Ui0W9l999r5Mke(;lf9A&fQ*{~p61G5i_BUu;?5<{q1x
zwe8Q`%Yv``MV*p&g(k|g^4J^}mST_(&o`jum(o#7M{OOYb>$_>=qRfrLr12L>N@hi
z&kgA)r>h24MMwW<wDLMC>3Hmf+Lu*9M@3yVBEJ2!&&bLWZSi9f;v`m;U^S*Xol9a3
z9W`~l93H{Qd}u#)bkx<+T2}&R>8PjU8Xe7bWa~;Z{2!-@jvO8Jbu`dbr&GH)(oo0$
z`l;pRMwGcY(pX@hm$lIiB29JNF*>W6#AM`Hg-qyb;6c2ljuwKC-#dbfkYwIUSGy5%
z1%_GhCkq*DqvKj#EjG3lk**WGosRZ`kp69kQr$JZhIgc9bX<<(&p0~i=&a*}j_-7I
z(UGs?DIHJi=&GZej=OYB)={9NJH^v6P)9_^^*Va#xJ5?~9mgAndh+rYDrc~g_C~6-
zNV`eL%{q8U1<#(^KQx0YoOPB(3YSNE>*%AS9~n;UdMkN8n{~V3S9*nS)6tiyPUQ0y
zEw<V@h4k0?%_vM{fJB=(Dr1n2J9UiIc|sZn>lmV=kj1Cwv%^;}cpa)^n66IwPL?lw
z^%7e`z8#_ecLVHb9b<G%)G<j{cZQDDF;2&L9ropnvvWJg=61euZs!Rs`}iVWLdxK~
zi?SK5NFwvf@{cZOM0LcdVI8Kf?grJF-3R$8!Q(m-I+8kgP1t+=!_Rz^AD-AXP4)hp
z#hWXCxxI<SjC9<i<6a#Om1cGJboe@4!9NR!NZIgc7UAX-`GJmN9YpSyx1>`uQ*=zF
zf$4Zy$9=lGdXmorg51xx&^}|@PwL|72Xzo(eBMg=2o0W*UvEVGQHjZDkL!4XaU{rl
zq8~V$|D+`EC;FeRV}_1hI^NXrjE-k@yryHLj^}jD)Ui~@G99yY%+~R|ju&*y(Gj%E
zn8)Hjn8hnH=j!;!?97WYiI+W>KVJv&1v(beymfV@=A_8Trh~H=>FPes#R7SWIq3{8
zks#kTIiI&&$7&sGbP!*m<0Tz?>V=7~)Uis4#48*uSgT{5j#t^1Pvo~h5@8%7>m~TI
zj#mUBh1%F4I1vUnQMWp_>1eb~+rox9S$kc_Rzaq`6=IOE@xxg}-q5j~RhChPF?Z<L
zDM>DE4KdhbTj(tvyLG&$W52GP?H(O_1tI=6xe0#gO?BhsJ38K#;Jy+%i7i&<z0ZcM
z<A{!<IzH6#k&aJw9M<u%j<$!h=Ty!4gjV`}-o&aoga@b}2_6zi4m|IRPk#Bb59MWl
zrsH!e?QH%Xow{}_udcrOLdQ2czSZ%ij$@Mhnck|2eWl}TI;a!*L;hFD;Bl6*Ux-J+
z9OxG!Ldr=Ur)VT`OpD`tCZubPBO{I<bo|JMspD@QXLOv^aZ$%59p_l-Jo!x^k)L$T
z+pW&Cx}f9raa!$+Qa|fRPl^0OH`O3~rhKVib^J!}lv(z&jwykP`MY?|Kj@Lhh1gSc
zAFur>+=};v{^F~}Dvo+|{9BUCqKi4Cl#0uqC4pt)C|4)v?K>lxafIUN9Y-Hh;wT^I
zf4JxvM};^l#u1LA-JVdTI4Z|cFOKXus>D$>u3UFrfz{%u9#<U}`!etAJR&vXs40|M
zaiDRSPi;Z!2xJ77D=Usmr}K!APfi>SMWp(|kdy{-++TSl88(WevAk*`a8p@TuBL)F
z6L?J=%>{u#zHK2$%Q#w<P;%pHw*z0bj-yQ+PqZ6xZ5(Y`t~mA#(im({VMHn|j_U+x
z@VUleidW%$={!3BIJ(CX5r&-wb`i+W(~oo-o*zfoIEe7+CP;xmb@O8!Jwz2h-jUr?
zN=Gqz#c@L%H^y-jRd*qm&&_e3K&V~C7aO5l;_91qg||aBzKq-&$8B*8k7I=7*q6FG
zUwS~Cdv#P5@aY#v?H}{{$MN?F?d!(je&dVoh-08+I!NN=H3{Fz8fg$79LEr$42@%$
zAO|ayDinlfMph%^7!`*Thf4wC7!yY{j#wOH;}{p`H(yk05u#4UOOgrk|LoKIJ7-G8
zdXwTPisJz<^g-G1U2#l~W56eoUmAtE0{mHKSv`(x8if;aB;$xn^0)pe)4WXhgE3kv
z4kHdT4*vd@7TEGa>2#y;gXeRtI97KY-v4}_&Ai%W6Y=8k<9JX?7YLtw;<z`CV!>I2
zy9GJ=d}vA>EcnzCdY$Q^`)E`Wd?1egaxV9r&LQggp*S99eaWlG;&@z;N8@<%o3dm`
za~(S|dw!+JKZmoQjN_>|-ihPgIG&DUy41*Pam<M08Nrvv@oXH=#j#L=Gb!7$&<ldo
zm}kW?n{OM3=fp8Lj(KrBPb)oNnz``U0q34b`?5-1T>hFL$BQ)1#$i4S;#g8KLS#`K
zi;2^iM=N7K(kT4q3y~*BYs=zT9><C}UW#LV950LfE8|!bN3|~MFpyPo5U!?oie?j8
z8^=1fnlfS5e%~&`-)j(lg)MzSHU<0i{k&J>uukRi*&xWi4p|%H*c4a(XLB6e;&?;&
zZ;9h|Dc4qkZ1@z3Po;&C?Q!g&*__Ya$s)w@b{xAT_@=<O1Tv%DaTH39{}YB(LhVc0
zOtn{RmCj*b9PhEB<2Vw>{y5%`<6s<z;`ktr599bGj?UfdGsllafR6<pc`MW)F{1Bz
zb*$e3mbYwpuG1iML^gw;#_?l8edcnQPONO%&)A~Ngt<_8lua*=@8UQa$Cq&&i{pf_
zVv?@}Y0$m?*KvG9E3F^-HjeoT?Kma>B0>ccCvs)%fByDV9KXf!JM)d>H2ptwjN?Ka
zKQqTB;WKfZjpLl)RdO?CE{c2?4gD0ydAif4;W7=?Twumu8NbAFk)<1{{VIyOB-+?C
zQsc8{V9vrWA-?)U1UvRX#9i0uE>Xf?aa^IVPNH=ZfAeh|I}_NIz`t>nN}zuN0}?2m
zK$!%ZB+xX0vI%4)P%DAj31lV^N}zH=`IB-9)j{y7AV~QH|MV}SrIAuGfsq$VS4t@J
zqv4TKMdDNySS^9-g49T0YJ)JJnu5@%>LlRUq3i^563Xi8CXkiDUGL}dsh7a&hB-v)
zOYRL4XqZ5oqdCWhX^lu3U({H5R%{$5&Ky51qpp2ymOvk&UqgnH5DBzMpk)G=b2C_q
zRte-L&?~|7nzV2NtrO^$Kmj=?aIGY4mq1%V$j$m9VrQ%3v`^r=1hf)**91BU-m!#|
zmq4cyyt5!(1m+9m*J1X*<in@CQ0gXBJB=i8J=Hi|V}u?F5cU*!gTNaF-ju-2g77W5
z-I7r5n!BxfC)9zWPt{XwZ%yE~g!-OdkP+_7;$(zxPoSS5#5c@~+>yY*1ePVRTyh_j
z!0-e{ByeW}gA?Gsi^2CshRCa-0?Bh&0)-`bsd=H135-ghIDxwp7@fcvR#O6#6KGU7
zGB&}R3$$_6TeUJY)bR<`z$XYKGEtC82^0xJE2X(ci6>wtRM)0UHKh_r(@rkr#uG>g
zk`&mjVVFc#oFNuc_^-NXY0i&%RsuGSM>u!_$;wS&Zi6rpUnoHd{jJg3Jqg^K!1M%W
zP;WH91Ri9*lJ$KF)F~UL67Emn0ijHrmBU>2EDt@LfS#eoAx|c-cY^jv0*@x}SOSkH
z@I(TuMr+fXhDh&FkVQC6;;`3vO6ut8g!1Qn&ZR@oB=BqkFC^$9Km&d*f!PVn5qze=
zSt0{p%}pRUlgH<Ikz^j5;g5MaLpAm_B)%v-X#k4^S&#s`^@UVs6P3|o$#+QtOR2gq
z@>_&6${dYso2adjdR&{px&&S-sneB$tP;37fi)#``i=Doyqv%ep?r2)dGA*ecr}3y
zBGRS=HVg7v0vnmv_#$Rq<IjvOBF5GPwk7bo;MCi(i6bcO{bNFJNcC+O_`VflV<+2_
z-{riSz*`AiNZ{uLb|<hWfl~>5pTOG*{4ar{tU+oufp-%4B!L47yqmzj1U^XM!vx+O
zUqn9diJbezrBH$I)9fc{bTYRz2(vCeN~rNCpN|CzmnpSukajSELkWDEz}2zMVJXgM
zj3CI0`Z-gy`~yewk4W&3km~EdEYZ(bLOhnh?M+k>zE0p9I+FyBCvZY4W$r}PRb6ch
z-<4F&$*c9XG4FH&KM1QISp;!eWJ2UjLUp5Or9#goz|rha0?!L<a=tVvza(%mfxnqt
zI9w9=djh`-LO#DGU^&Vm{82)=oWP$Y_+Nrt5%^=O?7s<=N}_TSRgx&3M42QiCY6UT
zn?yzu6_U#5X9{IvgK)=A!$V2+Q&l;E<pnZ0`DlcF<vl;<Rg#!Tf5@w`CZ}o=)g+iB
zuzC`81gVk4*)Q{J3M5iXklIP*&={=CXk}Gf%Sz(-(cF4T)zf7sRlh)_ei99mXqZH!
zBw8fVGKt1XG)bzS8c8%2{;cI|1ZgJlx6!KAG*2o6xcrE6<G<|=wMrsaQXLtt9qXdD
zdXheUtkx!pYm;~~iKmiin?$=LMkg^QiS|icm&EN!^h-h$wgpU{M293gCXpwU&PjAh
zqLbj{)?<v8FL>AFe^os3g36_v5U*BxB#9d(Sa>x5`XqWJF~388Pk}cG<Y678+?2%4
zN%WGKy_4vZ#4UnvZK!PT)+9I>CPHJoP3o(!K#sWRwfZM9Ac>(#3`^n;Nks!=<bi?@
zO5#pxCZ#BYg+gRV5}jrIP?*H<Bt{8+|2Z{193l9~B+fJpmtBzk>!Qd*#mdsgCNVCF
z6eW=e<C7>#;x54_Br%cl6o)2B@SDLJ_t{QPBAP^uCbvBFyv$fRwkIE5;=~0qm=Gi>
z@T$g)B)lYip_l?Kfwn+Lpj)EwAc<n3^f=Jq?j-I>;^8D75#`*Q#MC72OJYhAoP(4Z
ztF@exeLu~tP~*7k!6Y6?;<@<|K3{*I^H35b_BowH_-GQ3B{5A>QN51~@<dW~5ah$X
zF;jml{o_cD=K6FJ)00@4#Hu7_h!}H|n3u#eNjyt4u2`zkk`N2^oX9g%;4Fc&ll(65
z-`tJU5bEK1NxoR%3p9)*UKD&m5(@?4kEo0`adg%q2@d%_XGs!ElUOFf<;+wT5IEml
zArwY_DTyr~DX+ddi8V>Qn#6{ytddxl#CnbrN2tNc)zKr7m*wp%R|Q)fdM$~KNxWUc
zZ4+HV5?hnlTte9*$RTlV+mhIk#Lgt%5aM=$KNqOM`7Xit2z*l@iEjzAoAo6t6`X^U
z_`f9fCh<;5oc9EIH;H|M;QEnGPj%QY`1?tGAjpSFd?W~yH&~(!_2C-X2a-6L#F2S8
zIuD1E_>}GLG4y;4hm-g$iM#K?J@?>qMxX{P{A1y05?`?48|ZJ~%OsA`Tc%MZjjxjU
zI*I#Jcp!yulK3`>t|@d&;dl}!=)_W}o5FWVoJ`^hStW5QiSKDGEL5fN=_Gzg;#?9x
zCGlfY{S|eFZjkz{Qi^*mvOV>$@!1<9T)RG>R0jqBoCJyd)^I^0b4&T)Z`7s67n8V@
z#IH&Gmc$=PTo&fPlTRp<S6DJ5UZnD;B>79=J;T)h@?G-7<o{0+|I)*!P%(v4DU?nj
zBZbVA5|8}Lq_C(|nX(eRVMlusLn-yKqg;x&a%=x9Rf-(Sr<CN}-!*%IRw<=ct*fU{
zBZbN-RFPLzQ>c~#ce*mu4G$N-)31=6YYNZWDGaO-t|ifuJ0tv{&p7vYLskm)Qn)S!
zErsk9a#CoWLYoxor_dmUYf@;QLPJT_D22u;P!E)$NeWF<XeL1_kQ8gK+O7KMJat(f
zD02$ADYcKKWeTlIQZd?{?MD%EYil@#Jwrppvv#XpE7zvbmZi9(D{F+MZkJNK9a!r2
zDfIzjW{+@>=j-2aF{48Y9aG3lp_3Hq`%YP%B?2Sor_d#Z;!9=7v&upx##457K?>cO
zWOCtMDMUmA{Zkl_!u2WiNTFv6H>A)jg<Dd%QOekITH(#Y`KA=OXF$n6t&o=*^iH8q
z3Vl<!okbfOx;2H{q+Xa8H)gYfc)wdt8Ks$J6~p}`BbMS0A}O9^2)-SZ!ksA;rZAk^
zNP$Ibw_Y2X!Vt-qRl~G=hNbZHE85&Ib4Rc`JZ%)~<+{j7!3&paq>N5sObXAQ%sVo^
zi1AsE<5C!(!UW+nF@;Gfuy**0dMgsm6XC-%h$g2HO(B+op28EW^6nAU#ZySqmS{E-
zWXv0L8l+R;7c?^kOAv#|QuW^!Ys!{rw-$yR)-V765_OU8rQi!52rMq4-_0WblEDb8
zYKQNYYMqk8)D-Tc+B^PN>R+!9KbXQpG>H`6X2KL6N#XevUJxdarZ6LgXHs~KV(%<?
zT;LN|;m(3-f;^eRQ-VBQLZ6<3y{Et)T=*;vX1R82m+)+9GS8(jQ^c6X)^~4x{?SHV
zu_?_-VQvcZQtJPaN+UDc_fa~W&%&m#K82T4SdhZP6jrCOhD|kv#VM?yo<$o=QeazK
zmcmjA7T;g6etq6@VMQj)Vr2@eq*B;?xMw3ck@sn-vaCnuOVeGOQrk<WFVogZoQzr8
zD=EB6%?pPODZG}#rW7^{^NnnJJw`GWIhVNsTUZO-@Onvmq5W@7VVlJKb92GMTFSR<
zPw^`TcBZh4rdWN%ZYGh8S{C4~6y`5ij*j$C6NTitwOY>qQrMfqnH0{lT*CRi6!r`9
zuE2eC5koR4!}}?Gkiy{<K1<=l6h4v?eVW3@DSVQ`ffNq17FKD~oB!uO$^VeZwzM1Q
zg&1VP`R4`I^0}lvox+h6j!FZe<X@!lCEZSb_!vvQvw(6E|4JxdvlmG5_C_3+An7Ml
zI3f6VC6qx<_9?-?FQJTevVWj%J?%%yf&%b{$8#zCL}N%Jl*aiKE~M};U33~hr|?S(
zf2QzP3Kvtjl)@h=TxQW`YQNGsr|`R!g)V}(Wl;d0$3lkPduOqA)8Gl&ny#eqw?rep
zb8zS%!C7hsOQ-SM_@c6Da936RF@<H)V1GgL$PfyN{Kb;6TpAThDCGqqbJ8oOQAvXD
zKa;~?)ikOxn8vQOa-P-GxIT>@Y1BxgW*W89sGUY`8sRkRq)|7G25B@*BP)%U7Preu
zgM9&0)nkwsfeB=grdvO)Jn*J&Xp~0dG@7S@G@7K*G>r>Q!`GzIERB7avKjfO86obL
z3BD`nvQ^bAg=~>Vt2AzF8ETov_DxDTY#QWN*c+|WXp`pganRB{4-jodfaD5o>5fRV
zHF=vWhufvWOxveHhD`@)9n$E?VE`R_v@kEN{O84<;m&FBf0<5cRiR|wB@H?mKKX)l
z71%9}f)aZ7G$MlYhdw6nnZ^xi%t+&zG;U1erZnzKV{#fdr_n2oF=>oV<CZjfr*V54
z{nF@@#;q()8hu44Y{JZxl3a!Cxq5Fa=%2=bGzO({XGxqp(ioV=dnF$J@anw5X$(nY
zs6=4*QEh_ynS}?%3`=9n^uoe4x(?8W3mhSk!I5c<D#1smaWFfFM5Y~=#)LE`ra{$>
zPyg3DPm=0mn<|nlv<I^(;jBS9(KKRdSZUZ|A$l6=G<d#HJdH#eEKV|wR2q-;FKo6#
zqg5-{v8TY0IE-edk?j-`VZKfpkEiiO8m?sFrQuU=6~h7RQ7FX{B;{^ewcz)bP^Jhn
zHI4fOnYBJ|azW$)n!z0HK{C9%kjO)6JS>z)1U@Q|^v48QQ8PR(jVD?Atigq$VJC7}
zz{DbrMSePs=~8@l-|KIR<gAT6o5pi#EJ|Z>S`DQr{LD0Fi3Vn;F)xkh$!exHCylwx
zw370xN6Lq5?ufj=f~2uPxXl-MTpP*i&K7*3z~`<FFG*u*TJ;*Qq_K=GIybyJjWua3
zPh$n+h^?+%rmae2Wg2Ye#%7JS$M(X$du<x)(#nA|IR_i-(|B3f@+wuD#Qcl-<o{|K
z8-)LBBJ;+y8sw-ZDS2%cxP`5wefV{OM79dDP2d}BdL{H75}6U+Oye!OI|Jnm>`r4(
z8lR={c^Yq1+BDvg>?qP+LHKjG|BA-oyAs?-V@^Y_64_6i5#)V=q<oOZhk}13@MD3W
z2s|M0pg_hvlm>qlC&K42jVGe;BWWB><5voq#usUPnZ^&j3x7`I7zh7p{Fug>G`>#b
zn>0?QaVm{((>R{Si8Q{W4*7ZRmO|P9tB<DZeX9Nee`9Opd(kIt`?Mh3^UnxBq*aHT
z>Z_ei<D8^DFY^3Eo>MzBg4RX(=L_P3I9Mg+7ZK*7z)J%6uF0c#k9QCM&Q`;rFWcae
z+&{$lFALl=JoHx@SJL=9jepW8YaqkGziE^*P})ElL;bF(8h&n=ZjFZbL5ES?mGs!{
zN<z*=NXaymL2_nM-arKdEe*6XP|-jo1C0zcHc;6>6$4oY>KUkNVBN~R8U|__NK7rL
zW}v!(c}*hZ|NF_jd-_Id8K`4mLyHl$4dv1o+!o;gEVoCvu7N+k$?vizl5K#|8W`xf
zMD3o+F;L&YcOAklCKNr@DcpZeq@lr+GnKPyVxXykYYa3u(2Q18DO~YpbrRPno3-@A
zBQ{o0+Jk`>lAO&p99EQE17QO_4D>Y6+CUov`69`+2HG0vz<dp~V~G}O*BL1PVSamg
z%i^mVF{ESasGLupq5OYm16@QvokWw2^OdiT3uC>j;RLS$HqgyLfr0J@B9z=vgI?;B
zkkR;KGTjLA8>p_8+O1brZQv#YHydhVc#DDFl4&n_wQ04+5na8C;V!%C_c6c|y_nH$
zB4J<QK%Tc7%7GIZVBiiCO(abWG%(1(DFfddxYNL31FH<IHZa7%P;xf#h=F0kr^vuv
z1_})fH!#A$NCRUHwHI!bfd-4UG1SZ|ZM1=n%^I?>oHDSOiyp2&&cJvww6zHaCK{MT
z{<Xt2EsDpZ=l02%WU|5A^xzrr4a5xS22uvnhWfoUZm63F69#%!E=7jKlZLuEorqz;
zG+-NW3~>Bx8E|h>wZMme>$p-2o)#XoN#nlgArp#PRgMG(?lmyQK(T?lX-=Zaw(T;Q
zgbumc{RLAE+$V*7fMz@*bibiCq46ASPLUYrK?4uT+iEpOvft++laCsB%)kpmd|cp@
z2A*P73O-FB6+XLS=F<kI8<<O*H!#D%GX|bBFjFEt%PP1*Nj}6?EpC=n=xhUXSVsd@
zzRZY_w(*yYPikoy&r9j9y88KKVqk%Rg$9-ySY}|6fyD-v2y-fpJULb&hhC$znsmc*
zF`JhRtTeDfaQ<-0w=`PDWPF}@yvD#<1BVTKCQQ~Dc+<dJ2G$#R*}yA?8jQWhx;F4C
z?L37IbRCvr^2B_N4P=vnHw<hy@cA1Bn`w1|ye@F7z-<Egmd$^Mft`}eF3Ma@b#N48
z?NW_{G2*)=ulEe>H?W8G#ez%O-!bs6AbZ)^dyJ%mr8f3SaVFOdO@2$Iec!+bBG^Hp
ze`w$%10M^{PU;f_2War$l>KCF!?_*Rkd=;tN@hV08TeEZ60fyX``o}011IP%*p>}^
z!RB8z{4MQgSRpIuO9RKG#eF5E_*&r3uF8phBYFMr(L(-_ahy7A8g4o#bkg7vyG7Iz
zBM@Q#by^rUG11h-4+efTaK^w{5=~Svan8U`<Zs{?wvNhbMM#}}XW;h=nHR)VIDx%r
z;F5u|CNfO?YT!2me^OmL3Vx^aG;mo&Wp*6hQ7w^W8mF8T{x9*3tja5*<i8F4BM6Ut
z{8x}trmE=DCdvrH<R5hz$DhG7O@vHUK;pX>s)0>8N`9NVF|DGBN+#-<sB5CKi7F;&
za@8erRl%96ngr`wN&_`a)HGEs&}G#!QQO3rV`_A9<wYebbI&rBw(FayXCm9=1%jxW
z!d<H(T-4%VkEt4%XlSC5iN>aKyz?g%Jv^a^TH<m2<ioVhO!PEygNbWQG&cbgElgZz
zLNn3QL@N{5nrLex*F@Mv8&kEE+uCMuY|~l<+bDfX&d7|%?#*f^Z^^d36oFzBzjLM5
z!9+(BT}<Sg$SaA{*+eH(b&*$pVW4c3wyTM5CL$)T7Y@6}g$hh`H?jW()qKbe?Nn#f
z!&D<)@+Xl$MBHfNCKF>#j5BewBphO5sEJ-CZZXl@L?6j?u!&nu+-BlV6EiZy+&oOk
zr>}|IO`Hma`Sdf<zXTs(;ts(FmQV(n>U<$ai~if12`MuLV23-*#BdWMB<n(fJP&iE
zWI9@cqf9k=<N$_nj8Mp@PYqR;@g~mpj@-rS<8;8pL=%%t><eWUnfUX(I&|@`bs8&_
zikfU9DjJKK&`qqEuf<IiEl|S`;+(^#Or)t{3!N+&CQK9GnE2L&Wx_VG%EW3DjtQ5=
zH}Q;!;hDJK!~-UL6M>0h6L*`q*TfXoR|@x-YTGcINyWZO|5GJ*igce8jolM}USse<
z6Azh~X5vW`UpU&sCLS~KxQRzhJW9)7q;dI+(GFZ6W>3*0FXIVQ4dKc?R(SU;ZT24R
zDHGGB1u@RkBGm`gM$+$5UC)|$&cu8YP0TdaTHIXPb7pv!iP<LT66c7)Q#L;Imh((J
zFC1QwEcS#m-k(rZ|HkkF;lI?xG7}3;ETS`+6Iv{#SVH}Xcv~B)neTEc*2GG-O>sdl
z3ID5>#sMnNN1~OkF|n3)Wa2#&>rAXS@s^3p??qlV@rsEplGm#y2Gj|^W@4j>4JA#O
z1*FYvGO=0WuobfjPmn{LUKg<$VXGk9OuSJ-*)GTq6FUXjCGgFXx8v{2+HGPF8_r7Y
zZ4-M<@VM{)Nw9w9Fel^hn0VL3j^9U+d82q?LC^4h=FS#m;;{G}>hl8=ADZ|`cpflu
z(8R|kJ~44ZT6Y~e&-3y-1r+{}sXBdnv+LGrpPBgF#Fr+HnK(j+woyB3s_8s4qQ<@u
zZe9LVXOB~{l`G|Z#W59+02Mk1MQ_Y2JkBiW)-2Sq@STa1bm^AzoTp5DZ{lwn<fSsF
z#l>Bs>!vLUPOtT&AZOTiN+{<{{AA)h>-1Iaf{EXr4E+!t^|QSFMc~DfnAc^E{LRGg
zCjJu2AJX(Lv$=_299VKyjWTe|!_z-lkSh}HQ-uF9@vn(e7D`*lu#jn?j7ZDKWi4>n
zLu6RZFwH4sp`4{$WqG#5Z*!+rjj$KyTdIO%vx*ifS*UEGilvOXhNV_nFE$TXB@+w(
z_C<9I8&_y_EKKrq_K2Foiri{Rb~Ky17P2hBLJJG^EM!|~WU1L}jznl+DZg4@@M==1
zhC<;-3ep=}XkwwMg=QjKa|_p4;B=LF(Y!e=qIx+Hr3<2QwzSaNQmYDl+e(<^GT(O#
z!WRFIQ5Mz4!nGFKT4-nCIt!YJN;~=L@vQcinwzu6J6Pywsj9rfo_($AxegkI;r)@$
z7P_#c7B*SPx6svsWx=-4%|d~N@fIdX5xQHr(ZWp@A{MT<(8EGc$%R?)dkXK&oz)pP
zNX(tBBR5;BQ@-6oKMTDq++wLae0$4V4hi_GkA+(){9Nrefqez?e?U_DTNq$rjD@ih
zzh!2rJ1h*eFvtRrF62Cm<t1{bg~37@B5<gMVS*G|7$pef47V`C!bk}&YZE4=O>;Gy
z8%^Og6{NRsT0S$;4dbLNTxgvrlHX-vvV}>4Q`#a+O=ox}K-5CaLRth<Vpxb<NLcWz
zsBvl1!sU9Qf#ot&!i`e{wpnIpSTHU17a?`Ny<LRsgpLK*!c!KWw$zBrvv9YCd&oyP
z2Nt-L&8Jupdg*&DOrZggiG`^a?z8Za#Ju0a0~Q{nsKeCd2<KL*YVENlGXGjNKH>AQ
zM7w#W_Lzmo#m;{(UG@nJ)5H><v{cVROXe7fp0@JDA_k{hm|<a^h4mJmvGA;gr52W1
zc+SF13v(>YrRJs6pJidTg<203aFsw6e{J483(wPLe#?8o!m;ZVk+U1Z`BKam1uhV{
zP~aj9yVhun1z#etd%Xr!$a30)1@>!es7WcpDhsPEthB(qcnUYihx|55V^HmpEq%GR
zR^mUkRC`(4;Hy%1{7mqQBxhS-MQpIth~+h@9p<vx!WMolweW?7*DY+du!j|GskMl0
z6o%hY*J^LDU3Uy`x3I&)PT|QMcTt#K1vCueoc_OM;p^=MyDjuyr#<k$0^<L(u-C!?
z3kNN{BMtTg3m;l|*TOyv?^)Q-7L=FqK6$o|G`^+q;8x{ietJ|ja5{&NEPQO?6G?b=
zTEt~HzT&Kk-SHuj|8thb!eL8|C;5u@`I&`Z>MNZe5lvD&7WPY41U=g;c|TkDigH@`
zNlNjJg>NnVXyJ^7;}%X>IA!5``hQ`5k~*=qfvr_zX}v(%Fr_+e;Rg$UG*jP3xt^Sm
z6$$#xvlh-tDoR3WneU`W)H1?(5#s_=$-3e%7B12cNX*~K$HK2tz~30HoBD>rgtV*6
z7XGyGm(&`A<kPBr<`wEKl*x~J6yskDrEDznu-HRs8)a-9cW}Z%SsNKPKDTkiMy8FB
zjUhIM+9+qMzO12*MmEaZs9>X_jY>9Z*r>?}1GUPw>LaS!sA8+(A0zX-QZ-w7^6Iuy
zF9qA%D^kl=lc_8l^=#C(QAgO;6-YUGA}IZHwyhj&j*a?~kZj5AYAG7nXmYTShetIg
zVxzN-E;gFlVC!pTBiBYV8`s!qZUdBLq1M92_Vzi<ngS&5t>03J9iCV1G;E`_jq7Y^
zHrm*@)<%0<IjFWa+S$nI1}?B{m32G{@Mx`Y>k655AIj=L4j<*`Nx3@OcyqqSPk}6c
zCn-J)%k!i1ZFIG9vyEOhy4fhOaf7WYw7ZRnl(YwRxW9mH=Xx6}@5-86UHt^TeQ2ns
zjkQ|~KHpn#qeQz&V9o}O2UOl-qqmJaY}Fesy*|5-jazNpW-A{;<@B|2yNv-hIv}H;
zjZ3$yCa|+jm`HyK?oAf*(%}JqWT1^fQbBhztw?p%?eHu+7IT=5LK`pGm~UgajS)8P
zvvI$Tkv2xzFl?AMM%x%;BWfdNW2}vFHYVCU_!Q$Avzw~-2{wLTsb*w!xxWk^S!Clb
z8<V9hByvfI$|S;P(M(OZ5tmnK)+3vPjiil~D6{#*qOKFwPxps*srJZ{askJ(VbeTp
z+-;-p(vV}rwc!Z|RxxecCx;bU|A|F`4F);P{(FUXk3^UvwRSu+=UypzR;$QVp|ju{
zn}#2-@t}<vHlDHZ5cO<>az1I}5h6CG*}Uj8Z{EbL$80=q;|UsGe)y-=d9+5>ET_ZU
zT#d#<R!`Y@TIA=l5?#%7im@hd-vXr&em8&C#&b4i+L&cywv9P9p41Dktz2r)N>xTa
zb8XDC@w`;@Q|q-hOSMKagkuNsqKySMHrRO0#zHn;8!MQR6l$@Jr8bt?SRy52(<3V;
zr!6g~##U)uPxxwZXr&Z<t&MdyR@q#v!x~$;(5qI&5e^M_J&WAG@D&@c+IX3&xKyUe
z>O78o$dG=COGZjvHa6MVZDWs(%{I2!c*9ml7rrjJb9u1#9Br$OZ8XdEs^DA3cjayt
zuApwWvBSnr8@rfrx%Q;3wD%@Ww@&yifke3R;B7X18z0#C(8gXH@7Q?H#(rD%JMY?P
zus&}ewRbj`vo@}8P#)!8r17$h%x-F4<Ri*s;}DbB_{7Em5$vGN+bD`SR_Ali#3HUc
z_1&T!mV}>`xElHvHZhKtkJ|L!7~){4gD-6yW2<qH<KQbBU(*3PsOaDu8{gWv$R<Yr
zY2yTq#KsvL-`O~6<9i#Y=^n?c?IowEF<F{pKgc6t4-XFgAR<v(r%U9ljdM1BvT<IB
z90(nER1@aI<%kO++t2dq7Z!hG-qhSM;jb*t-y=#nDDB`kHady$heT$=%eFfE@lSz&
z3A`fkZ-M^^WQ2d2utFx0GIah9G982*<;gP~<y$xs<EZ|?#oTg^s(L!Q@{TgC7iCw{
zk>|Ba4k|mS=_vn3dKCv%9aIwzY!2j5-BB*<PWBXz>IFEbpu?=?ptgfLl0}w-dX8HE
ztm}XuE;$V5RF^ReKa9|f>pN)Rpo4>s4jMXW<e-g%YaKLp(8NIt2Q3{m6+X=zTq9X9
zEgeO32e>Ngkz9U&qbK29pp}DM2VqCe-BjtyXHFRsqHL`l<@ss+EI7N!whr1mxK0Yy
zP9XauPAIM!nx&QS)M{ntIq2lzW(U0-bav3iL3alc2Oo3{=R4@;s52G2Qciw8o+6jO
z2&H0CA?epU=;7c%IC7Jt+-6S)H#oSFdRY12>JU!~9WAqX#$nsJh01Zz&q03?ppS#^
zhZgm9aI1sc95utDlIh7GcuBk60jIaaw-<2PZGeM291L=Br-PdgHQ;=WEoh*F*EegN
z;}3SgFETr{@cx(75QT7<gF**O9V~M&+`$M3_fb3tBOQ!#kal>11x7m<<KQj_lO2q8
zFwVgQ2NNAUpk<6_5jtjY=LSC_JHO>lqFI`SR2@}Hq)3A91}*9!<{-|(N?ABs&>g(o
zBP(yQDn-&kO6Xh<VRdk|mTSd?v_sQ@>%eok&l$D@$59S}ai~Bp;t}y31P<<TaIb@6
zVZyBM7GyTh^Q@%Cx>FoX75m&@A(J0`uP#Klo2@<I;6Vq^J9xptLo`|kPdS)3vFH&8
zk2-k5!8Df9!tTML#~eH^9LDwt_nM`Kl>hlp*2RJ>)&l1&Pdk|IU<U22ZJ49?c@CZt
zoWW-WdCtMi63Q$Gvjv}1LYeDez^KBjY57rOK8xU})lrUHxMyI2gGCM&J6K4fg^I7L
z3Cj{G=DK5fw12i!`kCbpRyf#C1E#bNRyx>2J9n_k!D<IP9qe+j#=%+#>#2XSbEaJ<
z4VIS{k>@K8UUjg+0h=w0`R$wPNLY@ddFaz?v^ocy9Bh_+w+dvOEwnDdDZm{qlsDey
z;Ej^E+a2sE!6PH_rh~T}u#?&?O?aK5wyZ=yu1|fk>---LCO7=9gMAK$Y|Pv1fFEw&
zagfzV`NsD|PR{X()4NhyA|KEs92|D=p@WYceC*&8CSRf*6#fSsRH&!=Svo6Te?#Pu
z1Aaf{M}f~M2K~H)V-A=#xgBwERQw4IcryC}2Y+`|`u|Fr-q&>gOfor(qB8QgQYZ?~
z?{3}SF8t2HN$SDHRu`ujp9*wQ=;E}4ALzbZv~_vB3C>U+m$wWk3C}vX=-`rra}IuT
zaGw3nK<yV{d%?laERL*PZM;``k~SIY%R8T69sKFwFDi;{S#0tTHh&ub{RMP!pR@`u
zY8vL+%M~`vRD+O<a;_Sj|Lx!(;ruV_ePU55SHaQ(%LpthFhgLbKt@>DQmL-ItK9g_
zcV)4Sclk5Fl8eeN8oFrYqKb>EF6y|b>!O;A>Mm-!s3q|ybyV7};i|ra1D@J0_K#Jz
z!Npz%DQcFBdM<KY)F+1<pxvmNbGD0K%~hriTs6VxFosn_C&pKeT{Lmg+yz`T6}Hz1
zY$lLNXtA|UmS@ZsE?T<CbrE*e!UBbF<tl5r+gEF(tzFg4wGj$eaWlNgyAz9kTd%cq
z)ikiPi!LtOySUDU#$slMJ5s#CUD*;lxLDLb!gWP{<;-)@$yIKg_d_x3d>36^-0I>s
z7u{U-QM;GG0xDllG3_o$#Ko$0+Vui^xacX!4FYcz$hS8Ma<hwTdaC13Z*kGvMIYgI
zx1%_BZK-@(Ul+HtATB;$r*`!9b1}fh9ioc<QndS9j2P%*kc&Ho$bwJp6QMD4!In4=
zo*m+1sEhUKEDjpKiK;d=+{FkN3t3DTBVCMgQS9Pw7o%N_agmfFjCC>2MO1i>cQL_5
zk&C+|M{0GVi%BlH$%Nc^777;+N#rw`)loi^70NFNF&DZdr}pA55`te<<F^xwQZCXi
z3>T&g*M%pxWVx_iIFd_+l^Q=TQ!^YBa(3gp>NuuAm<(vGOo-2-^^tpA-0R{g7f-vG
z;$o_cM_oMT;y%`ziw9kvWUB@M4~Q|)z{r!|AReYc+MOx<BUJmg0$yUWt-V?&eB8wo
zWY{D8q>E{ig#LsB?2{YR2WYMaGtN{S(?yJDUCa=K#AgIq=tZ7$F_Ye)r}A&JT+EiT
z%yHEfY+Q$#>#CdM<_UaW;0prh3*@U8T`VZU+r~yLcCp08Yr=e~i)Dhm;$pdr6)x7e
zSWEscR*I+;<BQk`&cRo?Sj`A?wY_-}ZYSWFWE~Aa8X9|BHj|fKHFDdvF2ZKcRIj>f
ze;}U?uIiwPY?O>RoZIALvx_Y*`sIhMSO4n}x4C$OjnqR^58GYraPggslVl=n_qupT
zlJ8=UEVzr^5`3Fg?BYPP@E#W&!%(r@;B<9jMUmd6t8{V1#ZedU(TBJ=<l<8o@4NVb
z#_!@27azL#h}z)#M&k%K8&h&__9o<WKs0cW3ZJ3qydaWBc-X~fbXGN$wUGF^#9?0C
zA63RJ{KCbTF1~ef+{H0h&5XWw@r{eGTs5BO^#|O9Np7@iIx%hnWScs{Qp-e`+`0`5
zopSNLi@#m`!y0$-gNvW(Tj>9#ye!~PF3z|(D?#RaPI6(|za|!)7b1}hF8EEh)S$wP
zE-r~9y6oat7r)UJP^%lX-z8Jdps!B-_+^J2xKZR!7k>#8u5DfsgtJjr>%T5ad8q24
z8rOe3l<`pBLj@0IJ!E*u^bqot+Sw|1E)H>?{%JksuFH8~pPn_TXz$8A4st4bsO+JN
zhtDfyR`M{vvdWYruH7f|4pvimbq_T>WO=CPp{9pg9_lcos>;|XLv2reJ1ga>_FLCe
zT?3sq=j_=Yay&HjlxME*DPP?{a5fgs4L_Fc2aP;5mgHRY<9wgP=4KwQ@i5WDBoEC!
zz{8CmZt~E=LrV`GJ>+?4CAqZmaIJ@24`EMjVrOUC+EZ)e>~Lw-Z9TN}RKwIHGK<q*
zkn23v2aRtLe&RK)gHXI%)a@aiJaqO@;GsMDuhzPF$oJ4yBG47{=K?}9>E_|;R{4mB
z>pk@JKwrV_RXwP^$ytoR;y>ya-XIBy(*@n^p_hk29`5vTi-+DG`g!Q@p^wD5%|l-n
zaI1E!$IDNZ$8O*%R=0cLuJ6Jd)V@Ccd@+DkCOV|KG7cxU13mD@VM;#O!w?T6J&f`&
zRCo^aQ0S>eLT+EYqg*Dfakz&O9;z?UIGbRP&srNzrFj_VVZ4X2q7%A4eph8RnKQN3
zb2R>f!M<sNry2{lKNWen%R}Iy*u!KGEMVG$;UVfF=0W$=>O{grQUr*LsQmhtk|24$
zG9<+P%-lY~DmEF}gF{xA%2;9&r+TVFxgLB`qbEcPIcGqG`-qtQZV&f(nC9V05BGYQ
z;^9FL4|$mC;XX#*q{aaEdpw>(jcRCb4DQ_?=`^W`Y<ZI8!yX=GZT>!jlcPsGJRA=5
zt388{3Gs1(PYC1$<S7qNdzkBCo`>mDkQpAH5s}FDSx?Q8`8?;r?4(-9Oix|8ILpIq
z5A;+@Y(a=K8aI<X&o)IpczA&}xnASIlBxK=07YHkVWFpHJ+w*ww!nqoB_5WtDvL3?
z7|T2?_wcEY!#-9}61D{&H~CoUVU>rA9xi!U?O~0F10D`~SnFXOtJ1?;G#<*}VXKF2
z9$xYI4HO$aZ1S+dQ?r2AsH^JA4A@c#mu%HGd)VUPb=vdm8ovy310MZ0<>XkMrGA6X
z-@`7tlr75T?(neFL!^aT65%YB9ClABXf#TdXt#$w9^Uh?pPq-+;o%(*?=mPOUe@?t
z8VQ$r9+erThffA%b4t!T2*~PvHUSSGdico0&4(Jye6;hgCkklBAB*yt?<Z0n9P;IF
zRk9tTay%UOaKgi351)BB=HV-v5F4q7qaMBx^P^PjD`s+Z#3Zy0e%ASt+K~T@IEwz-
z!#5tj70xYW7ZCkz<9oAeasA)JNe^c|obzzX!}r4NM-Qhx{2+Lh;UO-Oaibas=UjGU
z@C+3zBmAGJNwLOXJY4Ybb4d|c%<5B>@YnQIpCpL<N;gF(=A*Tb-#z@{p|+1YJ}!Is
zlWyEcrjNg9V;)NRDDC5K5C3@hmymytzNEeUKmi}};fRG^w2ZHsQduADCFy3b<&_iH
zD*qPpQO-wAAGLf{O{A3fQNc$=Us(d%_#KmqD*34FtF85<R1tbrfecm?q`Hq9B@|9z
zS(eF@imrO3x<0aeH1W~YM?D|eJ{tIF=p)DHrI}#!XQu44n1p`d>SY9td^8qmDKM|H
z<+dCm&3s(rqot2lKAQV#wF*93_~05oJ7xNIZt!L_4o7o+<*eu`xdK3+##PxiKCTsp
z5g%=RwDXbYqmz&JKCbi8!B<`3;tH9XuY4or=@t~S-F5WUaGLIdZ25Hdk?*6cFz@2S
zUZ!r#?dGGv2e&SC_d##WeD9m2ewdm&sc3sRa=ot>e0uokNdYRC>bbd)W_AN())={S
zOoy9&^zv~(_2%>ZUi4<6e2no`H`K?+Kp%sA-0I^tAANn*SN8MKUrKSi|K9|P)0rn4
zMh5t}!^ict!dyq<Y~|96+MSF~C1-~3(?<>QRcANMN1>0Qto?B0l}SZ}97_zR9u{jH
zN{wLc4AMpl93}9r*ECYb`WWXU<s<E5ypIV!qCR3iCi=?xPx4VD+IZE=y35C8#<@>@
z((18DqscYgtexl>)_uf%Bz<s=?#2hRsb_vEOZduF(yr+AnxtU(FntvJxZ8(C#rp7k
z_&yvlNH#i`dU#2Lr`#h=CGf%FHy2JB<iA(ZJ4bMSeUFbRr2Dv6R7COUI*MC_?vpxY
z%qo)nK_3tKSnFe*kB3<bA9H=o^YN&U$9zopF~i5>KA!L~&Bv2IUK<*s>uWC?(w_41
zw2x)08;vdu(No<NQ-=*!jE;K7$Fn|W`Is$vaYMp$K4!9cF3}bb)b>eVGe;CfF=z%{
z^Jl{6eZ1gfiI1f|=2K=Li>16Y>;+QYta19!h0?4R`RMMdozMK}Kqkw4ET^~kvC0QO
zTCE^+8jO6Ea~h~FkFI95kJ>UIT;t=o$gnL?_PL%F%4IhnyL`ON2I%8e8YEk{=xu~q
z|1~j~9M;i<qK!T_`TUx!Z5Fsi;Ohdn3fv~}jjM30#!Jw4NJ*IyTjHBO-tzH|&$}j-
z^V!V;`q=AZ4_h3inylnu*Y?nx1+R6Bu-&o9jJD6md#uME;rAugejn#Mg%+)D#K`;(
z_<@fP<t?qce*5r8K0c-=X&?SX-~oXQ9`tcY@YC0iWbiW|pVN#37y*v>I7+7)piO`;
ze0=F6BS2<=WArVn@_u4=KECqtwU2LneCy*oA18g~sE_+N;iFr2hzkguFmi7RE9evr
zuX6aTk8?h_h2VQ%eLy_z;|D>06nI7;=`0;fv0c93J=Z>Rfoy&JNjL7}7atd?dAfQZ
zmwdI`vs!NUucCpa-NXDke6)M`a4BUHf3OSi)zE@Chf*}fD|G%oN(Cq#;2$xbf5nzK
z$YgfRlv6w+Wdf89)TEEg0-Vc`!U&-N<pR_VkQJbOfC>Ss2dELCVt`5kssyMSsQC^X
zENiE7pz1NvE%L^=P_+R4yQm=j6?gd83{Wdjvxz!^a#niPaBYdqT=?y*Mfps|tQR0V
zK(heX1jq?cKS09(jRMv0G+>U?au}JnmS34v)L7Cs3D7i9zX?$0HAB_nB$?DHDrz18
zWX0bK0^C$CvqgZG0a^uEB7Z=W34bi&6qpu5Ulb0MM`dHYHbC0|0|ML;pk09W0d8dS
z0M`Z30^|qi8lVHS3y>F}lSoyud}hA<YTa4niLGteMG%gGxu=L3bqi1spl5&^q}1I5
z)%DQDQO=0ud%eIOf!c#aF&azla7w~xEY8gVdI#tepjUuf0^GYVo2sKWxaIHG0JjCW
zJwQL<+?VxIGu-#32*(vXI+bxaqhT)nnY>1ryATHk7!+V!fboIaqjhJ1p#g?TDF(BC
zAIcgcl5+{7kP!lm3@}P4%yEQd!TyVrzR>~31l%B6e{29YOe&cM#&1{@n867FCI*O8
zZ(FrV0g3`l4iJ^(6y~k~Jh7ZHfBks`*~S9sf!Yti{k^m|M&J@0`{hJ{WPlXQ`*DQ+
zoZUBfteF9<0B=*^0CoT;z=8k^1GoXa0FMWFB7h$t2=E{U3s4;3?f_E*+{Y})D&QH3
zYNHNw=kFmGepPLaeGqNnei82hF=G;Yzg+lJt5LN4hXXtk;L!k&1!{4x5t~duCHy@D
zRFD5!y#|ES0z4UDW`J1%o(k}EfM)_c8(?~%=3+BwLPJ8_ox=54*5<#9wC4iw-$&L?
zStFaQI0u{^U`~MN1H2Gmu2jT4R(kJ9a)pwud#C@_B{;#K&+3pG;XYx0&1cuVD8S+X
z8v|^jZ3kEyU{!$C0hR?=PK%<kN&PO%S9?U+vt*74@!zqP!h{2O%D*PS+5j&Hc!fof
zug2>FtPj+XfS;ePeMybzSW~YCcrCz32yGz4P7yx5e3Qw!biX;kmH^uW><I9BfUQ)>
z{LmYLx*7Ay+Nx1+6PxF5ZO%`*bzx_KU9|ZCZ_zydR_kfh2KT@1mT1KHQ0@JtCt9D!
zK4NcxcLL-VBV3Gk1MH(2?9mR<@|S4u1^7gQ`vbf$ln(-YOxtiHeEXqLJ`%`n0PlEO
z#R}mA691q;4$ssVu>gkye8&0;a5=!A^#1{l2KX+(Nk(fJ>3=!@ivVBJ{|ERgz&FgR
zAWXG<9jF2Du=Zv2i}|hAHX{CQfa5|Weu7@2w)(DGu65*8fHMKk2KYX}X{zYY{1f*V
z{1D(r+DY>;gM5gb3-A*?-V*JX0O#ojS7@KjD7+A;Yd5)vf%Ko{EkAi*WIGDfj-X!y
z{4T`b1akd>(fIs9Yh168zXDtdP`MaYit#s{KYe(ylK<ZTrHWDU1ue4}nJ=nZE?umO
zQ$`?>vVvp?tlTX!Ygl2Z80CsVggvreAzVTDkX6NE1cP!a6{F*=>T7=0VpJ<e<6<-^
zRu@)QFGihW)GbDhV$>8$tzsVCtX}b<>Ihplh-4M3YRxG|eL?C8%ofO5PXj?37Ne0M
zs~blcnO8^?mU$t&X)&4=gTKtQD#kU%V58>KLXhSHQH&|a@~+Zb7ONpQakj_qL8Nst
z+7$nvsrP`EqG;ZSLEs9KgI-AzAMh@DV2R60k{}>aV7X**iK3E(otfQ<8x;}B_>x6(
zP@<x!7*JHq5fKm-Q4~>BjQ^*L-~G;a&YU{W)b#XpS6A0`tVTG7+hS-ILvsphjn*NC
z7BRGpp=}K9V#<orJigK}uT@OVRcXR$&HTpHW+i4h7*qcmu101}X&+Oa1x^C8c5?$@
z#~3=rR5v6PQ$N<u@@`_6n%iZxU1I1O!yPg7jiFl%-5FsFy<+Gg!QNYvcY6%{turKh
z(;Ht6vB%UqruHlK;alz15wv_XKR?`0!rvLg01CD}`o~mrotAT841;1QjA4`nc;tGO
zs=<PX#4uFAT`>%cVR%e=o*5w=#>r1d1dkNjx4fEf`q~UljzyR?Zl@g^!?+lx>6or#
zd<+v}_%?>~G29))#27Yk2qK1iVu;3&iXk1tq!=d0Feiq&65$k<LJTuvn94|m!%eSh
z3Lu6WyOk65`(n61h6iGp83UK(@$1~N&Vi;`G0cvsUKqWL@RvQkahO9xeEMJv^I}NE
zU{M=mh{a&UV8)=wl*Q(>5yNoel9;6vkEs^OXWiAvHaRwxoY`jq#niC28^hCL^oTh+
zacw{~$<*$s{mgHLEbdGUSt-qxG2~)+D2B&kSR7Mbr-x%$7{jB27YKbsXv=7nZ6tn_
zovB4Joa!3joFnyNNes(kSWdNHlebio%Kq$h8G>6OpI|SN!B)laIHe>tZfy+fVptu+
z8VS!n6bBHVXs(omVj*2G^?KV%?THvR(PmOy3>m}b7@m#ca12{w*c!uA%w`PRV%Q$T
z&KP!4{XSQwcn5PT8;Cd)LANuzV<6qbkg|lEYo57aes2u>VmKJXA%ad=x+ZUb3<qLd
zZ>iRq*J~Q)`13QYN+a`FK`3w*DF1-ZQM{}jF}xDPkr-Zx;iwe-i&CI3apX$UPxHdX
z2`m>Th7u!vHHO!ySJGSIZ-^WU^Nkpevv$PrImHsgTQPhX!$&c^9m9zj-lf>dDORF%
z*;3T2cSM+MkiQ>Ovu4zX59HGvt)j##Zq(Se`8cM=JwBmMmQiB-R00s}?Gip2!xu4p
zO{E$UITgc~F`S9vtR$Q1JS}{Nq<XLg$f2sQVmQZYHCG#SKFA**!_XVgHxeOZ_%4PE
zv>rNwI=+wLhZrj8sHo#&3_r&3Zw&v%@Ds%z!<86*W2$1fEE@Z348PFS$R7DRbMpPI
zs)fM6HaWjDUoreiGbk4FY7ERcd$?TF`&rM(-!awl`6s4E@Ype-4l_xd9WJJ$xQ;v>
z*Xyc^U8kdjj*>b)71uonZ>Y_X|J}tU6si(&BV=g_c7u+xI(jz^l+h915`5rHu$=JA
z>#AtjIALJ6$w@2esH_7z8tJH_qpFUYI%?^trsGB(H|wabtF3l7>ByHD_&J_o+Gve>
zmqpAZv434d2R9pXkh8XqTXfXZQD0YD$Gq3kQCCNw?f*9dLw`gRK6R#nj)oE;r+#=$
z0Ap*ctI3+CI-2RYRY!r2fR5EG@~In5bZn8;cbxHI$mTj)NPaaPEhQ2T8@3V-C(GU*
zIf|*`)mm3pf}pLAb~^g%=%=H-jt=rl4;>wK7;__?DIy)6`1Ohb&J%@nEMKK<SP>bs
zO}kA;HxXbL=3<4`RVYVk8XpNiwoL1;<Gz17bWVhB*U^)L;^Z%7&dln{3^JWRuBzT-
z4*GNGL(;|{Q-2+I>L}DPO42Yu#~>Ypbyb}QO3^U2Lv#$)F<i$8UG;kI(lJa|EmB5E
zRiXSjofpwDQdfI7jMgRdyDI7N#ZGm@qjikYF-gZ{9b<Kj({Z<siSn)2IU}HB0&}`O
zNDIdOm3)iJaF33tj?+J>wr=fH;i21uEt)E!@x0L~%n0*EcNWno>nQ`=%cSb~QO8fr
zJ5$Ac>Da8}0Ua}Sq;+I;Jkm8VONUO`>X@x#j;@UATpjat%-7L$V*Z1=+HAFdbcA2u
z)=VuVi|OEW6-~XV<M&E6938HXxQ>JlOA>GEs<Fxi|D4e0c2w?-@`Uf}Na|{ojIC3q
zIi=&8*A%uoIER(hk<+nC$KyI4(($m4B|4VsSinT;Sft}IUCmQ0)bXhPe>0dI*kL?n
z*J?D>w2F)6E0p=LKMI#oG30h-QAu?lk+*_*+^BJyl6FZ=`%+_d{B<t0UP7)Bx|YIu
zPL1L+!gV?-bWxJupkpJ|iCchKogWNu(s4xgO^l7I{gPXBY}N6mj<<Ad)3II0VI9xu
z*r8*mj{Q0g=-8!Ww~jqJp5ib5T(GiMvh62o`1ENi#ysq01*8nisU;a?KKxRMBbEdQ
zb=8VHq~jUM^1fMWVwC)6b@dZx!n8_(=b0Ghk%dAH)bXOu^Q!Q&j+b=R0AOHlUmChe
z<A?$Ai)Bicqe^tdYdVhUI4)Vfd0@xaS(Fdp4PCXV*dSr1B6CzqnB}*1oY3(lwNA%7
zI^Nas5x=hEJst1sxOYw72Ncf8JSL11>#_Bg4<$|-6DsW|G<`Zw>i9y(XF5J-RLG;|
zu=28)s73q)N9xie^VljlCH2m-LT7ZG)p1_OcRIeJLDTV#j&F74hlJJkYY|1wC)HRw
zCBQn{qf!l4;R`hWV#h8@JgfqAjq-zFH8T0@b+p)*bo@+9VxW_O%Q}9c%`{Nmz^^*4
z=qO|01_QrQ6go;7$TRSVj;lKUq>@Oc_!UlGa0M?Lihm2|$^R+GHUChPS&ll287OX`
zqyaLo6G~v6?Lb<>08fG@xN;&)dcA?t23Qd||3ddclmlf>0hTpT&Ol`YRSeX=t^_xD
zmN!trKt)3pC2L<Lrm!F|H>!SuTozu{Q2&T(25uC<@_PS~nl~B9H&oM$!-L%RV)u*`
zHV@P=P}4wD1I-N7V&n!I8i0XY4Ae1D&p>@ct<<V3@hrcsdYTJ1$_5%3czQy0ewwWX
zev!*c8yRS9puj-DP_`nmtp*ctt0Zr0*TB#cY8;@60j>h2+c)Co23i;h8fa^vrGZuk
z+8AJyjBjZMS{vXd#Qu{b9QMhtu5^B1C#ART45f<g4Rl~S`_?3%o0r+B;1^j6?5cze
z3^p*tKxYGC1GgFIVxW(KI}CI+(9J*(1GgLa@W<k8BC_baON5*a?<q;`WuUi!9Suiw
zHkQI??#9#!_chSZz?}vL82`8GpuYs;Kn(*76ed$R$WTkd*m&cM{F4r)C=5(CFvY+y
z1H%oBH89S=2m=uVqYR9uG8iaidWx0!GLpwW5w(|;c^qS4al7!fdQBz^cf5fK1|}M~
z$H3i&`aQAj@mqUvTO5-SmGn$9RB`Zi{v8O|Ih|@?nt=xl%%pe?+-u-I1NTd5QhGBa
z`&?bmz`R|*E{|(eI9kFLT(b<!HZVt`WxtF8=mc!8!F_)vAC#}mGmz~To-dRjX5gV{
zl)y9)H?YpddKU=;mVpBa98ADA;21pC79Ymp8t@D(GqK!+Zy-tSHSoKEl!3H?qXu3!
zkYUUQ)-oysIYw^aG0Mci!-o2$K4M^@q-_CncSiZz;!x6~1{MkPn%tP9{c?Wy5(CQ(
ztT0rIYpDcSCiR8ww3P-{kz-)BWa{TuB_F3w%Hj}?l2PUO6Jcy?<SCC4TyJ0lmEXW#
z0~=X+4Qw;8-M}UWFtFLc7TOJ&E~mse1jN!@Gcs?hq1Nq_Gtmz1pc>G{oPpg^3Ofya
zS3Ar$GpAYi7<j6vXlQSle(p-xXJEg9=U8(oNdpHB95V0>D{SMu*0sZQh{WVQE9H1t
zvUXyfYF|+YxISV2!O#%{FBz%_{epoPSrOW+`rEa0;PFl>{<-Cfy<*^1+8hI4veFqi
zCQ*HC;B^CU7~rn7_Y532@TP$i%!Q%0`|*o!8F-t{JO`?F3-y!J1dNSMdRD7<DUd@U
zR)qIi++qzrH1H9b((ky?H@q<#{dTVQ35!D#{F!9=B&);V8lO`K=0zCQ7xIX0DmJ7~
z8#p7W`q{u)178{V-oOtA&KdaHz_$j@vmnI(B-=UPFsY%y(qYPId?%%Lfy(xRnkA=E
zC3EZ!?V^F73|unsqeRO`9M;JGS$Nab{Hc@j*;KwPd<yCpmZpI#a!YO5u|(C)KMY)@
zDKIh6#GeNKqR}(a#KhkQ{xML^#EmBYHSiyewu$m4ikT>GqJ#-HayY8MrI^>5%Fyw<
z+&f&-RPCZtLi2=PFSNAKGD2?<T2|<+yGk-VEk*?s6-`u<sF<(HrrO(H#Y9z8b-viY
zBlDApk^`0SCKLH4>YAu$;${=oP1H0|%S8Ja*59Tqc@0y|l(7j^+r%v<XV~HAmBL#Q
z&YtsWg*y~I6phw5(ZEC_6OBzYG|}c@4UjIWLEB4xqvX{9k*WSl1t!>1;_e<wj3Zs0
zwgsD-YI|>66YWeiGtt~c3ll9(XeL^lXeAlBR&yyCj;ggW5j0hYl>e_G(z0rITA9}N
zCOVk7%|sVd4W@N85i-%4nYtgHOkAl`XpdE^7s4j44WE{&uM*HzGT7HdKLOo@b~n+(
z1jom27ur*3FQH`iHql4$9YX2vl+6C}p*v00?Bs8PIc5CJ_#hL5P0TVe+r$tPLrp|Y
zOfqqoiD4#2n;2taxQP*_GGC)4vk?;`O%zf|q%X$i?wEt223^%JfYGvu$C?;N37ELY
z#CQ`EOx!Ks9VR>G80MrbWu(ljTrS3q+pK*Q9e=o!P26i@hKVUArkcu#y)`Uvnu+OB
zG(5_U!MKu>pSaJ&114rN@nr({Q;hQq87-Snqy^LRX~E{0m}??wB4y%16Z1^OO(aar
zXG%;MCQK7LZ@&tjUzyL-kO?^J#QMljurx_6Qw@5%COi{1i_BC@>DWr=Pm1aHscAB!
zMC(B&aoR-2#3Lpan#h{SnRwX50+uFMHB0)BexQ0foXg-OFUO`h+)XR-sEI`;7V}#s
z=vst2^OywY!b_GK7t~!-t)(VT%EZtL6Dv)uh+}0Ot4us@;)03q`HG3vCSEl0l8H4Y
z)|%LDVh@$s#Cj9kOl&u?!Nf+U$HZn6Psmp`F}1Vt(K8{+jcF_Pk^);yHIm82X~bJi
zycdnW*DkQb#7+~t<gJ3{0lLj$w~hgL(Iz});%O7lnmBA?uZevo4w^W`@G>m3-^2lV
z@j<uid1>r%#DjMA8DVl^7+cZLnRwpB5vrL;?AkEPwWa&qRl!|IY)>9F@v@1JnLO&D
ziC1Y@Oq?+Bnu%j3*8<^9>WqmuSj|JKv&pm_>K347X4W`G!oI^>ChE%{jk0~m#JeWm
zH}L_@%d$Mq$Z)&md#vo!l)e2>(njHbWa68~;kk!HY+z8sKQ-~0iE~s26Q8qCOnhnL
zw2AxL=6zw}lvER{2OB3G6AKU4&X_n$<(Y`DsM~8*PMMf%!(|*l{Kmw$CeEAquE-u9
zcJtZ5qlQ;$5aw(?E8Pz!F4FqNQ9X_yP5eZ&9LIHWTr%;qiK{f`CN7)!#l&wWemC(e
zi;VU}($Ck~%V2gmKJy1H<P+M4P8ivy<bTm<>4V|FX#7q5Cm~xe%4bvXAN~SphnH&H
z|HyRGLzmKuxbo`5aexwWl#HW%92Mdy6-QniW#dW*_#&(D^>LJrW8Ik!W#YI&`1~|)
zX&LyREhijKa?z1z#W*U(Q7w)e<EYF?3iGPOQ8lhyv@y1pU6s-1OeGV4Q(XOVxZgit
zUZ-Jaob=&PBaWJJ%!^}wT>YME#Zf1Yy2No+-T3+~an)wvIA^^$>c{aw95W?`25~fu
z197#0zw|!!p}KR!jpAq=$E|S`#MQQ}XdHn!n#5HFzblTWaWspgM;y1u(L9b8adeEM
zQ=I#@&?=5LaRlY9Di1=7qcw%VJ@1c1c=7eNakPu0gG9w!G8wGBgl9(h<0dl{N9Q=Y
zN|>-bVj8-{ahqTU;4R-G=vEX@_qh0XU8c-V&p7%DzgHZ+1@sYmhfp>H7=}^xi=%%W
zcg8UwjzMt@mZ#(o6u?h#tujLniDPJ7EypF^09in|OdA%*@Hj?D$Wd{Ojw2GsNJ$}s
zv4K&@r&ZJ+b4(m#;}{>ugrfMz6~%uo&b#B77{@(Dx%>aJb}h4$;+P!AlsKkJ-lrEy
zW10YlxmUo9IPQz9L9_cMspJzgDy~YM6~}Dq)#GYR#xp~6;+Px9gK;%Y#^H!#Uj)C}
z9wv^(p~sPqBNK-aSK|`NI8p-4IN}1xObD>zumw0m-J++S0ADDTod0otl+8<8l58Bg
zI35<2W3!nJa;ot|RPs_vN(<t6B#woY<VLl;nHu|O9E;+3EUp>`oMb0mEO?2~r9zhp
z<)h_saAg9)syH5xV{aV$_#vjhbYMdq8{=5bf__2`wy%k+{myGyD_L{51=q*1t5INF
z!!Yp^acqiXCpoM#acqubdmL>ChquJl^w3roao51XHzUN`;yAn|$ZJ8<z>YZBuVf5t
zIqWWy14ktG2!2ZF(?xs^%<hllKpd~e@md@Q<2V$@Gc3dvs>68wVC}lVXy$^q&+-$(
ze@^K0LdicO;DtC|6!4PJqe5R6`ijs4vzsw6g?}uLH{v)hVt<`oHdzVDy&iAIae^V&
zYH!7{cC*Io?YQ!@%Jw`p=N;B2Q6b{@1iVibniS>jM{#@{$IS^;PvDa{K8@p#IIhO=
zSsb6o@ogOE<2V_|7jc}5<4fkQLSXSqjSJT){L_4QqjolqUm64smJgqyCE1{{&BNQT
z;y5S#%wFwlD&b!3o4DF5MDSf47vlJpvRbQsA4jcH#eRt6qU5OBO6^B-)~N+@KMVLt
z=p~_S$C7`U(H4c_N%vRc_$>~zO_-VeJ&ydH+MBfsXZ8*M8OL97luMv|0)NNx53N=L
zWfJ%|jt|0tQhmZD6R0*K@?RXq1P~Wb;5xx2gzoDTA@hSi;Zg~3AU#j$^$BoQ0B_x`
z!5b2)WzNx|vI+2(rg&YG@Yt1Fg#;=mP$hwi2~}Sz2_<;;-bm$xT2)4#z@$Gra2|I5
z?C^~V+>}6m0vr==GAYUo_SzpJu8}~^1cvaV3DioUb^;v|=$ODQ3DilTWdf}dC}<d{
zn*b7MltAYefqDtl7tlZ`hb9^(lnV}eM`@hE)L|u?C%~<XO!KXLH-SI`@AM8gVU7ee
z6-o|Omy|Z7MFLkV1vpE7rAt6dpmhT66Zm3@)+V94a^sh3?Gm`{Tqr2CZ9?quxe#Y;
zxu29Xw*0|$pA_xHrwMdPAd~>N5Af=oKv*z)#JugAK(_??Cvay1-4o!vOwR;*CD0>*
z+Y{J#pca*x>ls*&Xn}ht&^Lj`2em#4+*>-pPu!7EbHseqPx#Na3-Ia6b*ch(J`x&`
zz`z6sCBQb=oN~nmvs~T?v0p%XR|3NlSdzff1coOtg6U5nnLs3gkqO+F!2JmnCNL_2
z>HJm#qZ7*S=vc}7m;|`RgPVQG8JAEtjn{Z)DuKJ1=Iz0W6gb~K(}DbZBtVpfE?{y|
z_$dj@+7e`dX~MZQwUBrQm0_pWuwvlU;V=Q$8$7_oGeAOZf}6!ip3r6|Fh{_m)1%0o
zn}8ut9~4T?JOT3)h!t`41UhZf_{bDayojGjz$(JF00wg@f!#q~UIO0?2ot0dNGI@6
z0uLvUp}uX@vJ689BRp`S%~*n*+;W0rK|(FeSeU@02|SWegP(u*>`3~<k?<ns_o((*
z0{^rQ^LDY^Zr`Bot2k;Im2jE1HGypjEKguX0xJ_(mB8R=q|X1e$0g*N1h|6be+jHk
zs4X6pPv`Aw3B=k2)=`;{E4}5lUJ7V~(2YW$5V|RWCk1R4%8*+aPY?B0hrQZ%;skcF
z;=CN$!HQ5ez@dq<1!2|~CVqDUdn7MU34J<&y#n?L-7oaHx#7y2)kg9|2|Pm)*=TIz
z*#r(J@VbRJEIgOM^UR%v6&8*p@InIjScqD9F@cw;S{ABXIGVuA3H+MCl>}Z%;MD{^
zOyHvgUQ6H@s|J;Gj`n&2^H*xw8v@74xgqdI0^?eDJY7Fb&YKCml>h;+w*{OK`i@jv
zGT)OJ7|Htyd?2`Fc{O+NF^zu$XA}5JRPoaUP6_yo1|)%#g1-<tXoaeYGY=`s>&paA
zvpR1Ho{^{IeAg#(E`hHT_%VT>s6VthyR~l<I4_|2!dl-6_&$Lj1YBU24}}=!BE!EF
z+Wv;ZyhcrmUXq-0aouHxOn}RQS_H#vLX-0gt3dnk!^<PTCGb0qyoCxD{-C`|ptyzW
zEZkM5#-FtO2~=IGT__j$i)z^?a&l(mAN~S_`CkIXEcKMl71FMAG}00lN?N$VQiA>U
zP^grJJPU2hD|w!JEp)x$JxjIH7Rm_bBgR=)!j}`u7a8Hx?*=PcsA3_#Li@RNppu2k
zmdfU(KzQb)XjKc<EM-h?v@o%A_$CYF@9rJWms@gJzBMe=v~atHo)&6ZsBNL8g;o}B
zu~5fCV+*%hs+mz&XhWg(EYug!Kq#NScaK`;4GWEggF4lDTVR2new$cmY9U-J9I!B|
zb3oq}JhN15W+AakYhj_e1>P1^36OFWl-*~|LTd}1`HF=$7Iv)CItUF4<!xI5?S!_s
z@MHThnY=n$=wu<p*K3Cx9}SVyjpKEzwA(CnlfYesb`?7MarFwX?sD5hC^xP2ve4V2
z;~j0Rg+3PUurQQGY@x4(ewG@%8fdA%Pk&4Oo(5RB(}G*8IyslO1wY=cwVWFnWMQz#
zd`h425aRg}hNNN)voPF3A%$RJgrz!15eqE7hbBcis7Nr9ajsE-@r<^xeNuF4lQ8iZ
zzIY@=FwVkw5$^;G<(F#{EmZ;UmQ;OJZ4@<xOW-D1swJ>k=wu61EKId9jcK-!v@o5o
zTbOSlW?_bf`z*}1Fvr6E79OxL%Tfc;>s}5~@mRlRTIlgoh=AVO3Fcbh=>S|o`k;mO
zTZ0r4f4=i9aAyaBZo#l%S+Fgb7XBO(iHo3^Dh@^^1iv&XN<lf4Snr5S{qGR&IW)pS
zCjw7yxm_+rO}4PW!Xwn`9pMafXW^6O8gW)QISX7r&)af)w1?$GeU@qqEj(&rk%bc7
z18hxk{{{7&g-gjlCOZGX<JuAnpG}JLT54fg5$5{3l@?Z6*kxh2g~us33r||u%+jwM
zSZ!gwg$)+g$SpZ*EvzfT%fAR-su0-7q8t=?!ovPr#sqhTZ*oJMEO1i~nJkDctmCV+
ztrmXitUAcs<aWDI@^@I+S%kS;WRHcXXuT~wPsOmX*HQ=WTz9c>A0ub3rJz|H2P_=4
z)YdlEU;4CXJclgRFrdfOXC=&Gq107&h>kE43tR~O8tuOY&I@zF@XM@{)dDZkC~eS=
z3gzpsC~XO`8}+KCI#X<Xe!fFHW?|*Y;Q#3S-@=<LBO9e`yk+5S3l~}SES#|Lj)hYe
zzNAsI@ScT_EPQM!Cr)g1k-l%?0}DS-ihgKez@6cf@eth;ao+h8QHjqid}`tH^awdG
zcUBAOKeup_1<@z`g@vw1L%hg5O)FvH8w=lBIBVf63$MNtKF1$f8>O6dib&ahEll!h
z26@QKdD^Zy+7A|pzY}^v==UNkGC6=#akusp)x*L+7XD=-<q_9JE!w5@|FYcvV&PW-
zSA>%Pn}FYi{vq_L&_6BwCE#zNTwucnF#qrWSvYiSpty}<Hd>C4u)j&)gV)*0vXu~8
zZgP}3&&KsOZnSZejnX#C*r;TqvW**T)kr97qnxc8Jj4`8c^egNWr!*WC0N%jOfQj4
z-V5~tRctltSk(p(lwrG~nyp&VTpdlCZ{z+7;aWCo+qm^i@Mas;Z6tRDf2=vGhHz@y
zm~+1}Xt&sCHaS|~MgtplZ0xo}b#1kzvz`qqM$gI7ahrn;Z9KCz2wQE|W9`@w2yk}~
z@vSxrY~1N$fQx{QCN@kPaT`q;r;S1zqii&{(ZWV&8)1sYMk^a3TQ#uRu+eM;Z9Lr|
z+`1@tZ3Il19Bpf3;MQO}n|qYPyxQC7Ah@H@PC_4B8Q~+g+`el)`ZilF)#zrUyN!d~
z0%oJD4Xz2K<s|LF^#4{kz{YP|!UVV5=qa3DLdofEqfZgO!$x1h{e<=};@@fG!O2ku
zp1V^UXk(C#!ID~b4agZ{gLJ6SyMzw2F<ih1p?n&#F;Xy#kGG?3jA1d^%94+@G0w&m
z8&hqJxA90nwLoPeORY^{f{nWcsJ(S<0_5LgBWf$32D~N-m@JfTex3S(X;iA6;rnb%
zx4~Op_u7~tc+dV&>qY@iB6GNP@e=I;8#9^6Ex}nfW>Xs@qvlWzx&{2T8u47_*Ty{I
z&!@lz#Dp%H9AyAr2E#NA6C`X{Htul{bzt*bHZIus-iB+#quSWmM_Ew=ZLG1e)<()k
z+Qvc~k5YSWaG^rhMoxsop@4^MJj^6*)K)f8ov(}U7andJUO=(fAmBA_e`t}7$3!eE
zY%I31L^86RpRN>GYGauVPX7^eJqf`pw}$J5!yH>)X=4>taicc8arkjc-o|Ph|1=%R
zEARCXclQviv$38P*2Yd78*FT}vDL=Vt=bbdHc`Xdgeg7#rjJ(*(Aqy~E1SRB#ufp@
zteD%Fww00XHn=w6!Yd)tU8-iOHPuhCEZz=t`N|$vd5!|@57oRiU^fpxZ3EFU{7de)
zae%hh#@p0n8;5MXXyYX+Ashe9zK!Q>Faezk!fUpM-?%f(v%sFG&7o7I<KZJV?r1ai
z1)&iHxB~5{jhAg4v+=r(S8TjW$(L59gVWQm@k5iNZ?+6?{i~3-Z`fd_8gAC!w83+2
zj@$G^7bX~cd=!0WouGB%cWr!O<6Rr?(TE)ieazaeM?R?+c%No!tM-Adnk#GweQ4t&
z!Mx?RDUKq3V&hZRdYTj)>|*ocnI<$o1gC6#Y2&Pouf%+vwsB%|bl5@d3}wDO$m{uV
zfaZw(`g2r|YJsnXek1f-p=6#H@ExVZ228cU4>m4Ro(>v0_|e8sHm-9}!oekKnvK6%
z;x;a`ylnh#;}09ZGPPSYdaqg#4zz0?zG8#)H(J+v>h`LQMZLmYtoSEY^mtg!0@&C!
zb@bRl8tK0_{-gXI6nD`5a^af&YS4xqSdNqYJ0Q~Iwa|h+T1f|`9OOH=*+HIz>m8JH
zP~K7P?a~g)IJm)4uEVJ9dtMKfb<n!aD0Yj8f1~FdCq%!96&zG_P|3lZ+dEcuP|ZPQ
z!Mv^FDC0&zzmA{(Pb0n2!A%Ybe*Yp!THQen2elpC!Vh%|)O65diB^kATCX;7{22<Y
z?K!HBgSrkH@R1Xu_p_x7HSQIy=YR@UpUj=wyZ1%-RzrE0J8c^~xYa=q2e&&Ya1e0N
z!9hm{O&m0J(AGga2hQuEX7ZI1%>wih+FV7BmJV7mgDW+43D6u+^4B<R90ZG=S``B4
zw}uZ?477JRXA$BKBmPo5IS4rjJGjk3XNIgDUf&|jO+E9*MYtuoi=&3MIey#S0hP9^
zgKh$z*c9e19ZifJHL9nBUJgb&D0I-<K_3T$91M1Fhl9S3a@F4G-bg>D|HeRnp>>;u
ziSKmOEEvH6VGb0^Z*eE`i#xO-4u(3o%TZ$v!yWW*6&NO%w?7=xcsqi6IAT=90gITo
zqa2KOaJPer4#qIehqSQ{#yR+COR(R2L6-Y?2NN7MK|polEdl!o)prHQ)C%t@8{iVe
zNfercQx3j#FvY=C2df>daWKunbO%WXDQcI484l)AdJcxaUF<#wGabxwa6fZeKm33L
zZaU_beJ(Vcg;go=pribU%yF<_j>c;)v+zcU;QZt$WgBy#)3!6D1H%FP4si#OhJlh5
z!lnaK;t^Z4gagX~*CY_XH&-2X$8`m4ySk3rVd^>X9enn*M%;P7mUfVFu*AVq2U!O>
z2ah;d=-?q%mf2eGMuGg#lryo1nIuR3&5KQml2Q#GrLJ~U?T|$byjX4df6T$+BD`W|
zWEsOV84mvEsMZuM8^>f;Q2wlgQ=+Sc5-bUf<|G}*ja#(|Fpp~;taEV0!3!)D2OAvh
zb+FIDMh8zg*y3O-wdH)U|E}Po_1Y#1le75_HVfeNC~vnp*zVxqV(n=MI~?q!pjg@W
z(m4R=>3z4*T3-i=i$4`6<)fz@<ywb;eje6s3GR1rfHm5|vyK`oJIDlV)tcNHIaHK8
z*1p3OBeyCy4zq>!oP!~IG<rmQ-oe+~HR2Z?yyV~$2cJ4P>fmJuZ#j6|!7C14b#R=f
zreF9q2gg{urGm4LzwTh{8zBN-P4X3;tc8R9B5$&EtPsHo*0`#H_i0rGyyM_q=H<pw
z@5wD6ojRd5DSSvBW))ti{ZT*6e;L8Yv^>8T5^xg#GY6kLIO(WnD*sljJLk%Uzi`x;
z9{-!#l;~*(XK1Wk)O2yy!B-CcbnushbIh89i>ySHiGyz)oM*90MXTOEu)AxRjhqV(
zzNh_JtkJO#t=tbZ6lK&<Gx7hn2Y;gRcW~LkFAjbd>2b7V{qCTe-kq!c>foK{!@p57
z)bQ5fD@^AOjo=T;wse5qqN_C5+tqn?zaI{BTIX*E|In7YDC^>12mjHkySUy(F&D*M
zT<5B4?(s~b^5MZ#qBEvMOStSZhj^8AQA#iso45asj<8)(+EvF0mT{HN^U8G#lygzu
zMKu>Uy3+V}QN;xpQE=k5qKir{eYJ%v3vE6vLd-{1B|w`-h4gZE6JOsRyqOWY$|aie
zdp5Q3p()YoE=X^AIaJF<Z5M4_v~zKbi#jeExoGTyEB5QUsOO@-tE!u|CES2d=NEE&
zJO6{Uv<<n~uSFO_Is0&{ivkx-T{L6+-&Kc|Jh>y>aIMzF#h9HMHwdut)7(W17cE`1
za=~saM~vD0s57ABSLZ?+-=*^(7sO<?aS?REgVK1~GB0*r+q>xCqKAvyU37HO$we0z
zU0pRi7$S9Xn~TV^q0TP21(mLHKI|4?qoq>$@a9Pop7p>Jtax>Ev9}=5T_|19^mNh7
z#T_pCx^$$Y^>&q)Fm5F8<Er01lR?VUi~70XpaJ`^{arY#gS=|D2oH2I$i++-vs?^z
zF~r407x%ar>f$aJg)T<980KQQ$e*Jbc0qWAi+)2Q+*%TG!CPJ<U2L2ZrOvb2Kib7O
zSM`R*xT+VRIs&e0-K~2dLgsjRG{ME)0=V;nkD^5(r!f64CR4Bl0Sb*ili3EG%8<uG
z(_Bn<aj&a3m2gUT|A7#}49Z_P_X{QG0qWQ?jbOHmIWAHZzALMXT|DSwo{JK#3Ljps
z&36%_diMxBlwrL9H(cm03~KUv&E(2Y7hi`0aTnSyo;{&aP?k$i$eJybfR+8yKFxJO
z>IwB-(3y5pFb}BBxX8L#MFn<|ql&s%>|%+FhbiaIfk!2S3k37_5f=-KFc+?KE?|+1
z$6U}OG_P9sM7YpyDYe(dGgC$rFLOcqSj$l>gtJm8ANBY)_&--otgK}f+p4V=yhdoW
zXM}wIyMucp8(3H_ZuU{##}kZ-+UVhS4^O(-ECum1s~B_Y;uROKy4dDoJ3ry#Sr<E8
z?4<H=B*(=r3B1R}Qv!CoxLiJPWJ>gDR-8b9{gJ({`af1~AKvHU*EJfi{ZjY&mz@7a
z_@IkJE(mzBY8;kG_`7-0#d8!U_0SIWdP+Ouf^EeYgc5LMhSM1@xj5>of6&X+ioHQz
zIRsvFaf}M@;!}!__Q%Bu7w@=g@BeWZZ;Bk);%zo1@|NHio(a9};`Azw;9bi9sG2+e
zz{Pul-xo@YNB)OYs#y3V7YBbR<n=L=x>Y0i%mw`_@U3$$KBtnq_;^b63)X!~?{Mgp
z+<qzaw2LzW+RO_x%vn~b!OHVC+ohb3{@TSiF1~fuum)qh;HoLe^De#<;O`Cc_J_sV
z_cTW?E>aYtKR+?4d&2DeE^8FHBzRT(06CXk{6c}dxWWiMRR@1_@w<!vZYjLM!ym3X
zudt-Y$)oU97k|3=OE~}0)O+fz%)edy!(RYPb4rw_i}I9kGK+h-r(EDV4<$S-c&Y|D
zS9|4?G62t=Ddi#01HI5+?<v=9Wd5&LerXS7Jls-V-IDUZU)Do859K{n@KDi1Z9er-
z$y2+os(7gCp|Yo%2X74spV=R(=HW&U)fufv&jV_{kJrrvf@{uG6MwuoO?K(s8U!_k
zU&~Vsd)~5|*YQx-Ln9BWr_99E4>a@uPqirOduZUn7!%3v5A*l*<TkDM8=>8^BHRMZ
zA82Ey<V=uHDY^m=0S`?)H1*KTQzwCT_0XJO@zB--j}PY6(!=Bfq1GN+2}cw9s$a-Q
z%e8PDPxUy0o|<KjO^CGPQx6?Hbo3DRRDbZ;{!k}R&G(g?8Vz~iZD*F+c8#EFe)u*C
z(?uu)^HeFOp__;99@6E*#1wB&551(IlOB3|=;Pr&5BGamU8d9>9{PIdCr=+e7wYff
zPQlYW4Dc|}!w63qz(Jl;NIKOV?qRTpA)e~Tkuy}%bC=Lz9*#B(@ZyoLbmYb4MLdl3
zQ0RfP&*MGi#D0|E(L%=v<)g74#tG(3C~w&zoj@%L2k!PTk!ffWxJPcILMI8GER<oU
zc$g}f1;pFwyloJ;*HZ_>@tPrk_T&M{)O-&y4>LW?Vo6mB%%*DX4$cu=hEu?DOU{D=
z=6TAeE^l>ef(O@w=fR}PwF%5^7;rqU%n!yrBm`JOZK3QU@zJeYGzRlMy!bz@VbuWl
zn-g%*KE-nJknxc9@TrH-Jmfq)<YAYG-5wrhUMLC=>pVQ-VWEd*lp7Vb6CU;On1{t4
z7BM}tG`)JG0GEF+@vu~K#|1*<vl~mWg7ue77O^~9#Zu^o$31M>t@a}`z^12_HCyAU
z>0mBj<cK2w&g(sF@UYdxHV+#;JVBf9VY9@riPDfI?(8nH9lnL8Ko;vV5?(xelux%y
z$ekW`c&fR}$q_!fA|4_3czDXgYt$1DPgA2jJn!L%hkYLQdw9mfvz}UqbHKwv4~JL{
zkA=7hiYw$94?oB4cwAR`*u!%ks$5@+F1&c45Bao^FUUt<qV7@Dp7IUISG1aiFAM(_
z53f?^!+}R{F64S<W}NniIend#&cnMN-t%yrsrB%dhqpa&%SqRfd0ckIl%J3o-tp9y
zAGVRWCX+hD7~c2rfrpReDTB?Op<F$G$f7x=ytRBRg8GDJ;duD{aq3*B&pn*<aMi<~
z9=`B!%ER{_e(><6htnR;diY8{!E-;)6vatlo}(f1@U4gQ5+P&evX*Z=@E{LXvF{`#
zC3eA6t>p`w`q9k=HS?l}A3gl);fjZ!JY4c{*~2d$ewJWNZTD?8xTAz?q-Xq8ohvHo
z<(^slO=9EB$nUH^<%)5$;U7{Q6ff)eUmpIZP4-dI$3Gta^-#)3o{#@L6!USNj}pFG
zY0t<hsN%i?!{%xw`KX)nzjU%;fGr~SjIQ@l+E=@7%latetG!w`NZ_$cG)}#-?$Zfd
zIUnVHb@(sydu5l}<yy%{WeIkpk17Hfe^p-<3PCkKm5upyV|bH~d<pQ@&3RnD&Z~xx
znm&#u@p2NieAM>QHHmIX+~T8-k3BwjSD~(tdOq&;F~diF9}Rr;_i?9>hCbk<9kb@6
zk&nhcn)_(s<5nL9zLI%U9|0dtBqb~ex|d;^xlf0AZzjp$ZSiedOCPO#wDA%2!NtiM
zg;2IsYhSfF*$Af)2--?`@)-}`qNnQ)K05m7!UX&1<Rj#xvyZS3o~nGaY^-MXuSwuG
zCP}K;Vms80d6cDt{d{y6+(YQ?LVF7BCA7EDK0@yh+E*y^#TdAejj|o!W1x>wK1TZ(
z<YO>%>SLI%4$2uK5*X^MWwcClmC-8va33RljPz0H<8&Lfh@DqN2{}T4*Bp^%%nU|T
zHpa(T%6wSfR3GDfjQ4SmkEo9cKJKQt3IY>-Ji1FYby%#8=BnWo`gfY-W3rDazH%nO
zcKDdCVJ<(WHDj;#*B;?%KBiMXat0F}dGX!*eBAHjAs-L>c)-U@AM<_0d}SYI`PjKy
zdr<IfmhVPwj*kjkf^&VaYaHevXZ`RzAIl1A@Q4=OhvCEV;rcLr#C=#kY-&y?mFonH
zazd1f%4~9H0kw{~rjmOUk&m2|EPaa|4dx|%q~tbDeGm_{TsE2Uk);L>QLgZ~gPUvq
znS}*D9$`oyt9>k_D3}r-%Y7{J@tBXLEUD_s_t9b>OGN!R^h7TN4Z14J#@AV+SNK@z
z<8k>M)5E|lrd3j2D>|x!&zSNxKGyo!;$y3ibw1Yn*u*w}o4^JU<3=|A<#p~=VGLY$
zNDI7{dj@@MmUy`RoD23C&o&?1DNi4}n7k3#;p3TU5%$_>Y1uaB27%qaI#h^hIJ{38
z?WcY0r2$Fe`Xu)G*ze<WA18er@NtkO;^QqJhZqU#3sd6bSs#ae9P#mj5BgAjj;2F&
zfXmLgC$#kpwQm1KA1_I&j{0g*8GTVssH!#xb*vDk5o3wJ>f?1EZ}@o4$1%wlUC(jk
zlVP}!{<w&ddB0<}`Ypcg;{=tBTONG8<Ktb%>Ei<*?}^$o0ENr}G|E|xLhP(T&WG~#
z;{zfe`}joS|CAPEHa-(R12YWQ#(d%9l#ic%T=wxLtBH^EKECsD#>ZJ7U;FsR$5%ei
zNf9t#91x~MR00leT+{7ueRX&ZKi#QQ;RPSx`}onvPd<K-k6xsX&5IlomlT|X;16{1
z4Qh+uC11_UD367MwO@SvO6%>TSQ1yLy*~b8rS|c=k3W1|_3@{#MhPel79agK)59kd
z@NL6FRytn)`1qH?%qvCAd|h+@UOb8Gk|>o_dR0Pb$s|~3>F}H!2BTr*EB(0zIEg7Q
zgc>JtYZ7IWxFLzMNt8>XP7-yKD4zs}_^J!7kVHiRm6B*QHF|Rrm6I5*1*!<Ms?cge
zZxniyP`;j@MAw_c1axU)w+z$}eodjZgw_^%i%=du$dL7tsGkHq>NHBCK@ts<KvJEF
z%*6M+5~L{jd!?0_@w{>&$o(A!Nd%Ihlf!mNG)bZ<6E;|DlSH#5nkUgJ2~C91BB?gO
zwiMiDYLs%|Kz-|^`g!%2gSRNy-A`)4B-$p`53%~{JXJw>5M&Y^lIWO3rzFBj+$J%E
zlIWaNCYSRjg;S#(du)9;(j}>Src4$292O((o<xr%rYCW461OMOGl|KRc@n*n>bG@g
z5(ARxokX7`?nt69OKrXO@-nSoQmuZc0U5Pe>z`EP@Ej*0<<R25B!)80NeoJ=%}u-p
zCox1Y^^muJR1FNH5H@HNDF?orL?nrkNsLXZzC&SBd1~Se(WoTeZWHF>uKVAJj81}d
zj8Ha{7;Ib;<0U-tge2}3%n`ZX+thZddnEp75|adw!%96>#KKjn>_$;~(~{WPWz^SY
z0y9`NNo+`BBjZovfg~0uu_TF^lvNUT5>67clbDmlyd>sJB%8IsTmc*|dyq`JAD<nL
zC7~x_CJ|4<pkfq+d3FXjj5F5^mPo42<6l1+w&X<)xN%;R0(6t`lE@|T5Cxt@GKowQ
z*(6d)q?4E?4s950(kgA-Q{fBr1wBMNFe0x_OZ9VnIEe*GJetI!BpykE=Y8{w3zN9G
zS6Ql|brt1R_rvOs$w!Hwwn9sjSVnCbqOD0{xuj}U5|1abLc(0m53fwBHC^gmCagmE
z!DFG-^2n<jW@BmgR5diWHmTYq>ym0JXMGZ98-zP|3p|m;rX-$bSy1tk*eqf82;D+y
z3)q^(Hny*J2Di)Y4%Sogg>r+OP`@jQ-SREUit%@z$)$`no=Solr(aoK`;s`A#34!8
z{v-}aB!9eHgS&c%uZ%pydXdDDB%V#;a1zhSQ)Yp&F*`T@s{HW0Ao0IQgEL6Uhf{Aa
zB~e^l_0oCxD@nYQ#JfqnD!~}wH37$jzAp5QB#sMsQz*l{CE)EOP84zIOyj*I-e(<8
zp?L})B++{KsPCAOBt8`UQ4${~@rmFzV<YF1_*C#`NqjDmoTMmD7VxbvSdqUjI3@H;
zp}aj!nSWbwh6=DKe3qKoVeD7boT*Vh`Z@_l_)QYuCUIWkq+&20UYyhWK8YWasFFg}
z6fP$5V-o)*Q7na@lDL$_A4yzI;^!nTC-Ex{eo~z}_lu;5jWqVNXfbHye@o(bVN$o5
zNLs3smka+);;*Fg>GUtFa1z{QN&lk%uq+OR>G7C&<J2hIv@{^aQ@AdLycDiap+pKL
zQ>q(P`;X%6Nu8RPUn-^k3yhib2&E~#(=E%UP%ecsDcq34t`TY=h0}AS<x{92f$0;k
zVoJ^YR!*t0XpZz&N`aKyBDm0t6I<0%xG{ysDcqXEO)2E3P&b8oDcqbw^%QERP)p*e
zky1Sl#?0OscNP=WPT`gm>ZI_^dW{VynnaEha$y6vb=Oa!K?+P~!xVn_T`l_=oM=gE
ztk;kNX(OR*+pz6dkU|srL?ERq4$Tp*I^%CDOyU+Pv`k@r3L8>rm4cSS{V6<<LhBUT
zq%a_bfhh!2Xq!T(6hbMqOQC%V9a88hF`OHxc2-i=*`%Z}8xPM@)hC5;3U{Q?H>HkI
zV1V0F=#s*7Q=?twt=m)RCV-E+r_iGab6rHw6i%J)z^fNUM7x?opCZoq5fL7j(@z4^
z=VyPWwtL`Cp>(=VJSc_1DcqAnG=(843{7Ep3L_*u1KgFul2$5t!$cJJbu}U>j7(vC
zQ6eXH33FjsVG5&)(la`RF@nbyamESYKWIV<oZY^=h(A#Pm)lKBVR8!7QkX8BDJe`%
z;pMzi%qhb&Uj+BcqZujOM|~Ki7Q>Lq<~M1b!P?9eW~K0G3X4*hP3=k{lR`FyxhXuD
zg3iKCVO|RJC6ZW5ElIj4JI#wrXJot_!DgmlrC>{#cnXOWn6+o=BX@i7T<d@%d@ltz
z1>W)^pI`TdpA?!BnifirnmGXvrSPx-?(SJ2;E@y-rf^K`7-MKSs3X@tajE}fDJ)K5
zc?v5e*pd{M3Sdn<)+le8h=t+T+!0=x!YV#WVYLM4J1p;U0es4e&*PKUFxR_+pO4F1
zo5H#jMssm{Ak2}yzg7n~rtm}xf243Vg-t0unZn5wzDQwn3R_b6Folm&*qXvNRy1yn
zPhoosJ5o55!ZY%TokE`$x=ZM8p?icrC3ImVZ?6ERXP<!mLJtT%DD;W1g3k(gfnwhh
zJ}me-q0bBDyGN*X6QTq!3g@L1j#4p-p1z*KD@FKK0k1J5Q=`XNQ?`vJ;EQjha9kd3
zkX^lRrSLY*PNl$!6y6o^j?gtHYI0Vc{P$9LpTB?<Ztt%=W?wt~@Z%IdN#U~;K2Ir^
z6cpyC6iz91D6meiHCoA^=jF2(<{Su}O5w{CzNe8%;dBaTs46LZEtcmjYj-5?D@hE0
z_pEw+{hJiNO(~ZJjFug-^E7(mxPbV(6fUIHlp-Cf@b+Q~Kc;Xgg`XvcpM>%){^A+W
z<rIFQtXTaE0>3i*U0Pg8A$};twb^XxB^szjs(kc26SgXk;LjBPViwY<oyOlO{6h<$
z#`S6Zo5FuI@@bSx!<?AcX7s3HY1I}go>rEYX}d0s5^0r4US=zvj}vCI=YP+KIY(SN
zjWTK6kVe@w_C@mEe61E=VV28D3>DI-D3O#;t3$?%od{P-<B?;bDts!SavD>g43kq$
zg7Mv(1>7j~CZYLhOlhtDCe@3=)JUUdS{c1-M~2;!Mx8Vw`y(yWsC7WAn?_^#dc8F2
z%PZVs#@8DNZkPrHG!jZf#77kAt!WgbmE{kl(Ikzg@|2HwlpblbG@1*ig;4gA$ZVB{
zmPYHeGNB#P=qQicq!AR*Rw#qDOQU@ezShp^B)8*st4KnEI|~h`aa&PHX02Nq-TCeU
zbXb5MY22Ph*9^L4&@+u*X^cu^bQ)L773-bGodWu#aYq`z77z4I<81Ljzcl)lFUH&c
za{Eo&>SPW`V_+JCB-jWFEseo~hX@@il&{>C#;_thJdIzbM#-G}V2P2!EEGEZli;S(
zCCDF>#@ICGrx8nITpHukn3Kj_2{R#$$t*s>cMF}E#ytX}LMI7jBu||TGkH@bsrL(=
zmd11e<lmdd48ivmaRQwJ<Ub&{Gt-z=#GjqUwJ;A#%=3!kXX5!4ic3$!VBj>qqPC|I
zmlt0Wu_w~Vq>)X-O2baWN#i3n9XB+0(<p40$IDB@Pa~NInJJ;Sk1k1^PNU?sX!U7P
z;#?XJrLjAWJ!w2FVK$_(F^vUO__Xr>voMWE1rR6xDZVI;$K-ag(8tqQlEzZO%hFg;
z6mq$MlMU<gt(9r4lG_efi}Ut>f>)=pM!;I3>(f}r>X6Wu{a&0WZ!*{iSBpQ9#-=o$
zOk*=ChvVwVAZPKwkafW=Y3xX&@6QFqTdC6Pg4@#AE`WGaEWhQn=*~2Dr9r@}O7oFV
zrSWtc2hup0#@;l}R}ELl<?p8*5WHb~h@A7M3hG?wz;WqAX*`q0vuSiF6?pi~4)2`p
za5#<U(r9z8!_=P&+P5nCd>Thsk$*1eH!b=CRd-tSMWHkQ>O_1rjhE9<?f*31PUA!x
zucq-@8WX2QkEL;(Myz;%_;umD!LqBQZr_w_zQszqD4(YTkIHE8r136`l_qO1-BcF5
zm!_||79XbZz6k9Dq5l*{`H1{7vrCYEEMYzo`l-;*()e7!Nugf|Jtg!@p{IrN-7{&N
zT+)u<TpC}eQ8}Y3<~M14OT(K%=?u=Nar4#dmR}#Zl*V^yTu9@4K6<?QMQU2v05$dp
z25w%GW34|5=O>|D55}jLKQH(>jmxZ_RPr>gq>-1w%$uuExUa--Y5bnXAJp(^Q4WYb
zFsI#B+Wa*BN#oD7I>T<kwCG;~{_@)Wo5p`smB*W3mqD=%iZhZnB^hSM%o3#E_g3NO
zjjvuJqr#LFS}KFJMKPbbPb-tb4H;C*fJIq0gK`-(*b`(<%V+S{#o`q*sF+cjKY4Ma
z-NFdl?S*TqQ!(gYg8Eh^gQ^)+%izWg8fS282A?2&QwB9M_&1^~WPS$u<MVIMpn68F
z&$+vLfXS%IWMoh~gIgHBc%V@RbuuV<A;7Ca26YA3E8^78U})n8*Pb@a0K&h<;k)JP
zTwjnuAcIyJXc;ug;K(n*F;{}kGw9P_Ynnl`4Bj8qkxWwZTVz1mGK1|`f*WrRx6YtV
z1{;0}hBF9e(4xQAK7$S!w9Vk9m#ep_Qlni4XRZWayAtfkr&VfnVorZk@sk<KpmPR)
z*B?#){EMyx`&<g%CQ<nd^12A9d@0yHgB}@tn!{%~+)m@4!TKyVWYH^w-Wj}+!EvTD
zgF7;KD1(PH=$k>m48~_LA%p%I+?l~>COCru84S#*F|Lsr49c*<-)?Y5d3dG-)^)%T
z1~^~P{(QmEjPm<&m(XEChi5QCKtyQ#`wk4yWKHwJ3`X%o{k4}Hs?IxAbaTmKq+>G}
z$D%2vrXB{CEOvJW6XiCU!95v7GnkvfgBeW9U~&etsYvw#Q!>gNO_N|#S=@8-H#Y7-
z{&Y#<z0`!_ff@4jKB4yueL(0;p|gY*yjGnbox^H%s-WQw#YpF6Fkc?I8N@PbQqRu(
zU;j~;TO$KgKwM}-s3r8%Lm`HDGFY*(IWtJ?Wiabv(3c2@4pcKBsSMH?Y%X0alR;Ma
z%rZ?JALS^VQh`{5k_$3;B!hz)9Liu}29IX2C4;RQERu9SmQg;n7{07keQ^d$GFY0y
zvJ4()I_1&#EAx0QXEHMCppcartP=jN0@Z&fU7f)ic|^Qc03%#i6lT4E4MI0&@I(fT
zjRAOVlE6<2-CPvIHY&C%7p?K#+79NfZu?ys>=v+7==dci_GIu>2K(jqX`y>F*eBrN
zwCIM-&EFRK<+LbYKOp=|)1sGtD0n7=S2K7mgJ&s$3Hf|_Se`y7^m(C2GI&7%pT5XS
zB=~3%=Vbw}WN^7@Nd`E^+HqHNUat#iR6Fm{mL(@I$$vA0w`d%)sFTIp8Jx(Vau!vx
zcqfB*GdP#Q*BQLWdY!>%8GN3>2U2z{g^x1$P>dB7vi`RnKF(ly&A=zDfHYGlT2T$I
z?ruSPGJ`KNFzR<Wo59NEp;H-rDZu%z4sTBjCOE_IcCSwG70a}KhdPZqkbaZFw;B9H
zt!7!ADL9|O#SDHF{GHGXLcbUK1GVVi0tWjjgG)50yq1Q4W)^bc_bZ2gqa3J{XA6GG
z;8$w$xq|s$cDN!>2Ry1>3-dd(SvmYi23G|T|0y7RUm>IVTOxe-e8GP-{#jJYs=8A=
zi|eu|n?<=SN@SI9fs$F2%Blkji%pN_WpRBLWwPK}l+sxYC?7aDxFc7ea^{Zs2I2D&
zCvJEaEtd_H&!R#WQ@3jQ)1wu$%C86=?s2K`cf(clplVi4;pJy>b5@z7YC>-mdXvx=
ztyL4Nx+JW2R*j3+$f9NzNAFesUTS5*n#i9!uWJ7lubV}^EL^^rMg1%qWRWOY%*vu+
z7Rcg@pE@M6Xp}`LSh8^zw`P^uDSJ3nkVPPi`?Gi;izZn#&7yFjHaUxCSv1dLh}@FX
zB8yIZS8iKo(JBi~aBHFMvS=e9D73B6dJjeTBCqyYbP!HQq2#oh9_=i+dlo$egoWOg
zMVF#5U9;#`gfE^B-kwEIxxG_puPpis=v@@1PZoCw?lC=j?YsT5=r5f4lT@a74aj0(
zQTRbw3>M79@X^pL?#g0V7PA&=qp}z+V7Sl`SwsYk6j~^h!I-Ksg6}Tkj1@3W=y;(M
zgz^&;1@NtV1Vn{Sq9mtB$(&M@s;OB_E5g$S+$(fO7WWnLnVp$@oob-Bh-Wc7i#b`$
z&mxw^Tw(Iazj;|aD7f9a2!oMxjp|wO5wRiE{Qrd~lYtKhM^iKTXSB1bb>Rq&3@b?;
zqbmAYB(q3mk!E^6Em)mJCaaE<pf;|`BAZ1ni-)p!IE$58^{=6mr3G2#yJ=|_j|d=M
zDBw|{i?Vo3z~Z8(OR{Q%34`%k#%j1nTb{*=qNf}<WmADMKhB!?cyp%ke_5~z!R6@u
zQLf2iZC3q%)t{Z#uXv!$+2F=3p2*_$EZ)e1XF_et;@K<~mI^$X#b&;n#a7AVGg)k7
zvZMK2uCp_X?NVhz_vY`&qU419)*}na-<8Ggta56!M<~HlSv)Oxuh4x({QX%R5PYzR
zbBNkCJ<3<U+YzKN4`=aQ7SCsKL=yaR7B2{RQPRdNghp0>NidUoG>cv1YcapXuL$$i
zEM60EOz5HQ>d|r96G|+H@;Ut7q~z*i#onS2vN$0zznjH-0^SkIpY{7$HLI1^3uSWn
zAd3$vAExJ*;FnpP&f;Uiy!}MLr&*l&Irv!?pR<SuXyl)yh_W~(PiIVzvRy~!nJms`
z@n06ja=7PCjUm6v;#?MAXYoxIzh&`z7T?mKWpOEspR;Nm$ag}&7kWYH-s9ED{~?Qu
zS@;t>^7@e$SnwUc1$lc}f?W~%i_l+boo<UXyA<S$ym<SE@c$BeRVev?X3_oG@U<|1
zXOZ_|=$|b9m8Yd{EhK;TkHw4URI1k3&ATp#5;>HV+d&KRuDw+%hdkl%_Id%Oh0f|*
zgBo~44rOzAK3JW&=F+?hIaJJHZ4T>lsFXwH90unwB!?<FRL!Xh(msc3Ioy~-!yJ&q
zO*!P}a7zw#a=1B%>N(|BrB+Tkd#RCAhv3xAfh%e0m4zFBc+01?`PSlmwP$UIR+nKI
zIHz_%)XS-#3w_^xy-7V%J43ez8|Cou2Ca#Fx^WJ-@^*_>z$L{w(7^>G;Sys0x&C@x
z%@;S#skM>KBye+~Eplinpj8f<fYv#*70^Z~-{Jyg9)U-|tDP`8RM;VhjyZJ7A(TUx
z9F87VE(<#65YFM5+X6=`jEa=3aa&GxU0Lh7pR{WZ-E!!j!`U6Rxm#yY4n5cfkl1?W
z&{se&p}mFjTYUuFA(R8i<n+s-zuewg6lQ>cfjRsrr(|*po2&1J=5SXIvvQc7!>}BN
z=P;4M)@mbih~zLjhcPUL913%4!TG41@;1X=!(2?lX%srY;)?FEIgHC;LJoI}#Kz~a
zW<cc8I$=uw&$i)jwrX#04{|r<Z>zO?a){<IN#dWoO`Dm+<Q%5tFg1s1IkgM^-mSq#
z|BtEbfO4YxyW6EG9hY6YaFGp439PUXmm(l4z3H+mouxMmB1HwHNRpXM%B0glItn5v
zpr8my2Pq=GBO<-m@6IpIcmC(hx#zz7ey^8I-n@D9ayFkb6NlJA9BRifA;Sen2vQ#@
z?MuSG!7lN!)ZP?3rrI&ej!&59Z!$;QF@d@rpV~1-l(BY<x8pNA#<4`FGyCVJuy1fj
z?&o&nY0(#UaF=!Lw4bwWvnSc{CHw!$%*o6)AMRhu<jeRhJKxmc?(}JPd}T+#j-VaW
z?XcUS*rD3tV5Jo@4v=>;GX;!Sfcbo%|Jj?&w7Trj>~PyrX>n$f&&ma4j~zbdaE*<Z
zmo45Qn<Twno^A)v^YM!p-<#u;zK|VZJ0fhUsPV*{Ju}KK;WfSy&u;|JV4X_?QRg!L
z96RPR^Jj8@vSXed^V!Yp*g7PCfgP8EwjUVz)2y%USZK#0QPv33Yq5|eb}SXLjLmIF
zyP$1_9jiq7#%|p7=3L19){d1D&-i(^g>U43C%)8IbG(Ob-`jC)zU{$s8{=HdiW-tn
zGHJ1G>5%+&l9Tm<%+dyq_gOZQ5%;rxwu89Qj!i<yf8k)UW3xDa6Wl4dMR2Pf+w9oe
zx#92P+%9>`UToVT&S5QbciFL<gJ_j)j~$03w|ng<)Y{78@3UjS9e;4<mz+~PD4}Rf
zUnV_pq3tle7Tf+5y~QfqQ5K4Gg%dTLIBv%Y4rd2mci^NQr|h_I#{)Y~GdVl{VaD=P
z&oX#R<Nw_`cJhafc<StVJ1($~jZVEtFBy!ybLNlr-@-2oR_SM))_cW{e>qO=xW+#A
zoMl!&>!kR^Tf?l^?YLpbO-=~6Gk8tymwwBR@_Vy*-L~V7@J=4<T|4e^V(gPmz1Hf?
zhju(-uXCWX1CQ-^!k<V7ia7Apj%RlKc`f642jU#qP&YNffkX!?{Ai7LfL~2z=6PR~
z<S=fT3JWF+ra17Ng9l62FCbV@u#jNpgf!~3ztKABSl6_w36`P`6my_FqjjLT10@{B
z%wN`lgugONI`E>y_=8Z&f$v^^zqG?R_LdjDQXN>+FQ<$HX%6Gm-*iE4y(Z_$y*z}c
zoa4W5$nt+*rLn0M9a#Nb;^?Ote9Zll163Tx%ax5BsOkV5c*TKN9jN9&eErnw4rDlt
ze;hA6_#M?mE<9QssNn$DRE>=3DO_dZwW?2QO$Tnav(|T@fdjQ1`1WX0Z3pT&aBfJx
z)qzY0+O)Nj*L9$th>6{D>3mJ}J*}<u&2r#U{nUmIeA>qPMw6Tx4O02L$sf}a8?u?b
zYzG=Uu-Sp%9BAS|Q#OGEKRM9Mfj1m@%YnBYXzoA@2R<wv*UEvG4!r3=>0ZX}Bi^QR
zd655NN~Br3bhIcX<KA(gH4}1R3^U+BTL(ru@B#63Mmq<(JJ7>{_G}~8q=;PwI|<UJ
zvyd(h{Cv+?Tjuqy1MfMI<3Km@%5@;mfijN`-?@(reBTTk6MH%^z*Kq(=`Gktu&)FC
zgyakM7mTfA4-`Jgfx!+85kAa;;SLNHK4oTHEI%V0i1DeSeCU9Si|VH{J`z&ncKi#i
zEFU{CN}Qhvjy7!`56K_vz&Hnd4(RNAC6gI&yaS&(@VNtDIG{>e69k#ubRiQRm}Dwn
z3YpA2I51WCGzY#C!j*RRqD^MK+1d9*cM2+kjFao|F5#L3ZXq7CMD+DCS}B)byk@a;
zIuH;ZbRgtFSa?*B_7NdWbcT?bg0cFX<G@@FDE5RK8S@;NFJ9j`ut3NnLB{a4kcEQH
zAH*+qV2J}u#koRonFGrm=u)Z-pCd5y402hJ<XZ<;iVZWc%8X&P1K$f@Blx4>TEQO#
zE8LG?CxkJqH<h0qxQuLGoC!CYe3Jve2>;bo?p?{+;=oo8GzZRe>^HKky^*!ef!{g6
zYgx8)W@~BL&4JuEX9vg2uhyLo>=ME^IJozC4@csOjJ*!*bKurH*8PG<1^;m10OzHl
z`3D6_4mohx<bMh|;=o^~QhjKC*3kT84jh-@Cj=SiNe51u{ImmSOn%k@2B859c)@{x
z9Ju1ZMb1d&EW9oW`CITZOA*SZ_^$(39k}hl9gf`f)@z)InDf0^*O{>g88-xfIGsU$
z?q<d<@j7=a<E{hu94O^9PAj_azyr?k4m@+<p#zT?vja~Y`1t$mB`b~dA`bsz<IT^G
zu=Rs)G9TpS#yJu1L<uKKI*ogw1Sfd7M<FMEUz(lhM3RtXK`JRuJSV(>U_n8KqE}(3
z@zUt?f+Q~pDdI#?A;koXo4#Ay=KOQ5d)FsfeA#DZz3kFXyy!%#)7Z*b$%)ENlo3v6
znvitCvV!FV%L`U;qM{I54)`SJCE+tyTY2;RaHFk?6U3@cKnQs?Aul^o-BdE1*wNlF
ze#MDbo%qR#pPi`bL@g%<I5E(P+D_DQqKy-6ov=Dl*NMhXG;yMy6PZrq@!9K6yyirG
zC$5dKHgX#4OAVZ8NK!nPtCU$zW4W96z-1QN;@UT~IgKAdk9_NagEZTTw}$4kLHQ@Q
zsS}MJB#<<7;teO7JB>f`bo$(BBrU|*Qt(YDS_yeekiKs-Cnj$#gdbvP=QMhLdr6Ty
z(_YrIIr=&{(b0)cPIPvnixb_Q#t$MduDKDrit}A3-V>5z`gRkN>qMTA_f7rxl;j>x
zES{IbusxmV#rj`w<<(nAA1C^nN<Sy^h4&Za7B!j;a$>L(<D3}p#1Pi%l`QHboER!O
zCm-g-aN*&aNi5561FR#R_`rz|o%qO!kDVCnG`8f8a^e#wPF_f)4V|M!9MUQ2Qzyna
zQMir~_KSnrh09t>&&=G?HR&@aK6hdP+sKJ8B!0yS)rkpCOmt!rOXtL7C#FbihDX*v
zdnW5jp#D@Rra9qs;xUgWPqTdGgoE86%`#okF8E7J3zY+cB==u6l8*2bU`}XGxSjAg
z5n+o+qF%v}6Fw(&C;Z~1eb5Q!GvLIhwT$2eY8ubZ!cMGiXCbj)&6?rFOef|t9;AI2
zs9)f07FVTaIWe2@pUs-%L@Wa(KCC~FQ7z1zFEOt<m&giS=)@wapABp{Czc5R-if77
zEF*W~TTvJ@YjU{+U%{efrO>(3iB(Q~$DBC9=ee;)$*-KtQZr*JAO5zqtdZa}UMu7W
z!5;<JIkDdKWrT;zSS;@*ZFFLj6B!CD3Vw0oS0_p-#;prS&1OzY3dRi0|ILXlPHc5z
zn-kZaxWQ@1iS4`_cj5%cuM<0+*uyMwNVc`6G)UbggnTz!u#J^upA-9?IO;T(ICx9;
zhZBcQe!z)?tm-z_LxLnPwN0nlpAyLtG5gDjKie7c91~~Do5p&}NheM@aaqhxJMs3u
z%<~-1ZLB0`#CcZm9Pw@@MFzRx#6^kWk`sSBQRrz_#ilvb&+bh7$B8RW{42iK1gT%;
zoZQY>*x_}twe_YGx11=bppb&woTloh-f`kC2TrDOdwI`^`w}ot!2?N}i9Y5;XYxlJ
zk3;h*J`v@qsXucXYh2Xh6(lIAb}N$^OH`1g7}XWad9v^n1<wg7AXxnk!=SKmlHv-U
zSB!diK|v8AQ^x1gSyVwWagvX3Ym}vg1S!`zCpD1H2T!FHyr>{mK^X<*6;xmz=2^d7
zE?a;Uq$}7yAhoQ5a*A=-3;zXkp@6d}*9|Hvuv(1MtGKPJl45+}qOxL4urDd7B80rE
z0tl}r__APi)3<v{at#G<^h#xavnqH+!K(^tD#omM>2PK(#hASh9cY@@!&+Mbl{yOM
z#U+x|Rg9(JdI~Zb|IE}&_SDxD)E9gHdvf<~$aUj}3L4SZgK8ew6uhqB4;K!&kgcGx
zf@dn?Txg=8se*ng@>MirP80+b1iAl5K??=F6!d0Y4Nfi6Aho4}Hx;x}@RrnG4y#nb
zI||yE_0K1>t%Y-`klntmf_4hpE9ju03oUPE@#?4;53Dn?b2^zyX9Yio)9BSzly?Q+
z6I@Uuk9s!+xeD?m=I#o5D0rWv^_sC(S*X3yn*4XuQ+!J%=h4|mF+MjrRj@CMrXXKI
ze+6R|j8iZ`!KP*yu3&_MfeHpG7_1me*+Uh4(c2(H#CfJf_ApjghlZUG<q}7V__2af
zLOxLNp%mmJ!FT%ESSW`5M8T(`j21I0&D&Y&HAci^JJZH1_)Nh>1(Vp0WwJk4FhMaM
z)_<Yk#P&2=&Wz9Nl#oX+uD5@wV2XldPx@rm`E}!A{pdT!Q~Mho@~1JOHrB5cOjlr6
z;85UJ;8EaIpeS&$uQtwMSO2+4vdRYarT*K-dgo@Q#x67|t<TLYF2H&faO~?6k54$A
z{Hy3^T5YTsZf6oh3c}2QiWC(Q_E-h$6s%V;L%~c1zP8qH*xwY)R<KOLas_h~%vG?2
z9pi51JVBDLh0Is5z*KIY&ZNFjoQo7JHuWQw8!k2ZyPO2tTUSWEHObC-w|?rSow?sC
zSgBx@f-OCAzgMt^Rd*xvI|Zv*>YJG_-_B&6td;!#$o|vM#_I<Ke`e=Q8Jf>65TQf4
z8x;Jc;DUmS3Vv3wQNb|<$Jr$~`LkR@^A9TcRY79+Tz24{LN>E&38A<}$W{g0g#2#m
z+ZF5(t{t+`j5*n*V7G$N*E7do&fTM6uL6>Nf+YLdwM>3M2%Da%A5w5w^8crTA9!On
zH2;W@zZ4u5GX1cP;t2&O6=ZnQPb>JnNb<c~nY>QX=1CS??Tmu63eG7A^|rCm&kLc>
zi~Z-4g1;3!R`5i@Wd;8zxT)ZlVr&t)qTs56YYP6QUNAAENe(+3@j7!mH2;QzCI@X-
z4(GCSQopU>4(EB|$@II@O!pMrSHRxORQPK}OKw4Ntjm6=;1N4ad>)gSwmX-|y(>=@
z#H&b9@k~LSYCPKDbA+_bX@^UsCyFyk#m)BVv@Fy*{aS~HLr<nZr=oz0>MAl+G(2o8
zsG_8bQYs3mD6Han6)&hLAzth`MN|}3!5>O;{%#giQSG3OS8)~WS|sefjHI-R7gfBZ
zqKb-C6=hVEQ&C<;nu?i~QdrWmsxe=sGfV4?A<3&`p~N92(<`W$RwBKUii#>&Qa*)Y
zom5thvBMhUMjfWh{#;cBn6#9L%Q8i8XTB_)<*nT@&!VD+iZ@lXQt^t4S5?$k(Llx3
z>zOrG)K*c4sf&{e8`r8D4|kYEUDdd+IA1)yo}@@6Q^jk-w+_#vla-vMB3ngcR)~s5
zDr_oVSB+L4ULu`2Bw?PJ&n7CGs(3?1a}}ItekzgPOf_aC&Rw)2z89a@f;Fk)k?a>@
z*jPQhrJ}ux4l3SO@s5htD%z-E)3=puu%V6ZMk?A#qHKLSJF4iUqKAr}Dmv4Q_1VVS
zRYe!!>@7@=%DWQ7dn$5NW8)LAZYpwx=Lx=V>fKe`dXhzhUMdEbNbjSfuZrHPF}1R2
z)LDe;CDWPn!|{3jRSZxuN5xzks~DtWyo%3M3|5W1h@m8HEkjh}NgS`sL-U8J7_MT3
zijgWtsrW=Se%U`z@u7;3Sn%hPx#<0|5bAVt`!to&Dn3;)R>e3reZ{mfs_`_3JJopv
zag4+Q5<gdsN4<&)RmB%7CWv#Q;4~GJgwWtiA(I8CsF*5bYkVTTzA|m5tFW8gA;ihr
z>zYIxmkLcqKt)jU?-uk<G<Gt0RCvWn?o*))_nV5NduoV1;g^Op1;hLa5E4}}Lq+<q
ze0rq}%daskztOP#S>iQYu+6Z1>ho00SMj@w?J5?qyQ)~MVu^}{s`0OI5y#r;#0%eL
z@?M24e&93fQtB;@Ro~?*mZ?}3&HOGcon9+cV-ffp72gV3DY#K^m5T3FtXA>8ilv{_
z=e17dN0AJ^R`3VG9|hNqNQ~L67v~1Sp9Fu7;fTad674U7zY1;^{7rC+;8sCqX&dX@
zVJtZBP_a|RNfoD5>{79tMSdykxQab0_NvAj@-Y?rRP0xceQtlre8OekKU5rGCk)sQ
zsyL+LFuU}y{Avk#pA5_YQ^mx9ty92uguQN9J~@%g%STo4WnQ)^A10nURR4q|w5w_s
zlRK^AjEegz9;i60;v6R>75}O@ui^r$?uX2aD%Nkz<YL<4y|(+0<1dN$x8T+VnU_`k
zqk?46^U1`kY~Slyci8i}3rNLv6*pA4ciUF)&AH8KS@<o%nxoTVdj8zZSNCV#RdJ8=
z*#0bDYj@eWnfak=+{!-Y<nuJ^k>K(tX??%UdBQn|?}bTU4PDQQcOk)roi1aDCAyI0
zLXHdFTu62y#f6G4RC3`t7Yevg!DVdMEa<|-^s<M#W|wiHkPC%fc;1B<TzJuCd^xCy
z%Q#lLgbO8w6m_AP%Q*LDMem&AF7R+v9+<-;MoYO++GQLBN-yKkm}-{B8*HgA@WtoD
z4J<Tf=S*`U-G#C)lq2dX<(Z!><AEt#f!&q6_qh(n{><mjm0ftrg(@sa$vEybpjg#~
zW-h$p0$ix(!pkmHcfsmHT^BN3u(<H53z0syVEt77z}0XWKZ36a?rxkD^4e;;P|IaZ
zN1UBz^|IA=fmlaS{WYzg3z@u=cY$GFbD_Qq4P9vDf-)?>feYSEIs84%a=~*n^Wo9V
zzOUplEbs0p+FW?uWjwWit+#Dn3FEi5u|(2Du&E&Le)-l|a~Ixpp%t6MXKmp^OCfxG
zzz?Im<-*FGoOjq{Hp|=6YCJ+}X$9k5jMgr+aiOh<?F73BwioQ+LPsIA>?EYK;HNWE
zx|;gCF1%-Q9^#SfLY@n&T=>p~_u0NK^mk!^%UJvBA=q26rwhG=P%nEYzK;ui#o13V
zU$D}XcwSuZ8tB3xCgH*i7Y4g9#D&jX_}qn|Vm8Kw8UwAvgfq6`E{t$tqzfOI%EvBl
zSTZv3k>Hc}Q^<LZ66Ys^qXj>8Vfozue8;*lPDEOccj2al`oe_?Y;+f#;x*BQDMBWh
zmR|~)%pRzwGT>BkP80k}aJryfkOt*P8=IUJae4$*7hFO#LAT)Pq&S*+h5KC4UGNL1
z7!nc?46;@qCB%%w?5?H_#hL7iE-Vvewy7_4VUEe?x-d`pd{bE<<ZBM+C-F>Zk*P0s
zVTs9?a#Y?oe3y%|Lhu{GZv|Hh#$s6Q!uKv?q4IYQw4)hoT!>p#bE^w$Iq*5OMclw4
zFJzqy>xIzr!yc)`pIs=J5J$pmqYIl{_{D`^UD)ix7O`CRG%e=)8}+fZ7^--aT2u;F
zNZBT74fZAS(*WCD*x@q15%6@WajL^Ev-j>6vPW>Q3;TrF&t>j+8Jq39-Ap>@!XX#-
zYxqOsr&aJLXD|(^8jiT|7iT;T1vDIW;TY4>jEVHP3nw_OC0m}jaMFcSE@Khk;L|K7
zdYWDIbjCv$&bW+)bY5pUV5?Zpxo}>{1s5*5aLI+gUAQ9(eJ{IkRX7iy{D&Ffhag?3
z{F3EgnK@~2&4ue?aKnXLW~iH-ySCftds~!UeR9a}O1dQXT)5BL+h!O%5CcZ|$c61+
z*W~q>J!Duu3FpkGE)@B|`i!;lft4g)LxP54*E13|W1Cr$hN}InyAu+VHKb_h&^d`>
z3_1N4)S!D)r`Jv@q#2dK$|)>W^t|8;f<-hG6;e#FxL^svl7b9XN=Ru9yA#ULSw=&e
zhL1<q-=ZO1Ls<>oHT2L>PD6PO%{8>pP(d?(%Ij*Vr=g;TN*XF_cuB*{qE}(Ig}mF#
zFoSTdPii$GU0+S3$g8@B3=I|yH8gzlETfL#D}t{I))cHISX+=`X=#;s)(*>0uHS?4
zWNNT!cwNJ5qEo4_p@GS>G&B_6Nbrp_#!C>qvKi!f)*B)=*3iVXZz`mjhWL6(G}F&z
zaQl5r4R2~_r=h)uRvO;Y&{{(q4fOg|v%an2*13%IILkX4CJoD-<;iZVVaxF>7MU@S
zRDCJ8gNBY8ax{!Op4CZ1XASRa=ypEiVw|OmhSe)7@Lhne8mgSn;Opw#8{F??)_WTK
z!*Un6v%6`?)sUy*v}R@S_cg4!lyR;~8ZApWvU_Uir6HgpsG+xpKFpPd&o%Vb&`-li
z4IgO8XXlxpGg!kADP4aJ1I+Rc6f#KA>CM@GF=MEPVeC;F$Y1BH^cOSuaDRkmyj))*
zkX_?KMged3hZ;W7Fj~V$8Zu92eav#Pw_M8DJS_jju>ASXZ1>ZQPc@9uFqSswGbU9@
z8^`RO%NWl(ERo&*T*iZ8`P@5wQS0@Eh6x%R8k`y?GQ*EECTo}?WRl>QjHhxg<D9Bt
znuh5bTxT*^17ES{T*%mJ&;ClYUMZbz*D&t;?!2~qm91z{HFz|5X{_Pdk%~;(t$~fD
zX}IdlE^sDeQt|Abt1I|8h%_uapW)ZQYG)BHt*9`2TK1RIvYF42hOmZ}8dhnDXozZ9
zs9}+Y85(A4n4@8?hFKbXC$hNrd$wlmE#L3UX0txMl(9gw&eJg8tY>zH1t$Mm2s=-x
zV)|kY%QaLxlffEWqG729l4XJ~uBy=Eqg)ne1-sK%+206$D_CTB{&y0|Mh%<Te>8kA
z&NUi-(D0-1wHjhQaGf|e2(A~*k@re|GWpL!V#dE{*ep(V-Cu=p(EVmA49It&wrbd>
z8HCsGLbeO;(6Cd;F4K3nhCRaf3honZJ>JHEy#G0%;ZrxpxN%U!A<q9A{?riXM!Xxm
zfn@z0(eM}Ne+|bpT-R_z!*LBKG+buKIGu4)!zm4ySbJ|;PP2b%xTxXnpE55b#C5rC
z?94f<;T&fz*`;${!v(hW%?vuZQHN$Eyb=0af{^^9;R<KA;rah+xW;aCI)nVG_?Eb3
z?D^qFpqm`&8t!X&py4*F_kKK|%im)MzLjxD!;(HJcR8os%3yx@P?*o$naQG#G)DeV
z!y}3Fu^=OVBIGGMr;xZW%g?LPEy0aMHyXOp$c;)nbCTSs=ElozB)gH~#&d2IaHAr<
z+$iWqAva37QQD2dZanV>SGtP3@q!TYVs2w8rieI;y75XoWBs%K@O)wk5lafD%DU)_
z!qa1l8)bxWxrWARZv4~NSVk)=VmZO`f)xb0_m#fwhUarZDY>n+GIQJ3`jTK3!K!Y+
zja@~P*B`ghtGXK*Zq#xkI55}ZMh!P!b)%*@AC1f#Fg*ViH;5;WW=<HMAN1!;9+`JK
zBd@j?Fi0ICR>8V%)Dx0v`o88yec=rRvjkZW3}|!Xb;j(*KsU18XzWIw8}GZ(#EqtI
zv~i=Y8_ihZw=!F}ja4RIZ?HM~*_ty{9~((aH{Nt(#*VaBV(^aOTY_)9jlUr*9YeKt
z<I7sTNZN^42RAwjY4661ZIZZb)ya*{ZsfSpjm>vAvx^(=y78VHUByX-Yvx3*<r3L&
zz5ldvH&m`0zqhq=WtG_7ZLF;Ja-+A~*r?pYjh;ffC*|?4Qy(|_vMlve^O>uSY3lXN
zes1uQcVKw_?mo7o`*Zrc(T8j4**V+y<_>aWq#GZ&G1zS^sSR-(3z$RQ80JRhtW>Tb
z4R>RN8`IL$>C4NqBaJJ2AG$G$J+Qs87Wa`GAG@()c>a{J#-i~jqSI@%kj4jWW8E0%
z#!qhi>^2sf#=G&k8(+BbnH!7xSm!><x^X9Cg4=k|v)GL#ZcKDz66=s9a>MI}&y6W=
zOm)NIhSP0)tYMlP)7`KO|H=)%@Ivv<SzDl(L3q?ZziFkgdS_Zyw(NjhI{8&Hmm8Yf
z_&k}LLqoTEg!3+uitdKrjg?ESbKD59&v5>6S$RG-KROowyd}gL>3K_7kR;+ZZZD(a
zoZ-eyQ=jF=Y~eeG=hKY$w{zW?C(+J#V*#sII8#|9WTD{jzByDTFSRap8+UQb+*r=?
zHZZ=|z#GC9v~e420^hiewKDE)_?Gc-J)vd8Rc@Rfp3mz$H&zS(UT}@zTEQO#e{^G=
zko9hC5W-L-hrYCuY;<Fj8~?g-)s0`=_|=V5v~goI8_SJjlKK`mwz{#$jlJUBCb*j&
z(v9tI?BFn|lgsk%60*~ceJ^BF;i(ARk-Ir1nfd3n&y7DMAdko2&oQ{jIE0O#!9BqF
z-;MU0jlJK8#NaRsD}>4sA%D4X)KsSD7^jgO7v~AVlY)E%dB%;ioUcsFb3!h<(c(b4
z^KM)aC)X~xN$HXsf4gy66#j*eWs)yjT`|KJNshbb#&tK+Jt*tJ4fe*umN*aMJ-F${
zEjMn9@>KASAPw#cx#z}xQ+eRVL*b7EADj9UH@LBxL24CEcqSq@hbMTD=s__LihGdc
zF;XldNRlihMesSn0)hoSC?uq?;PZmCe}P$*PDox<M1G2;gpkr6yy!tmk8!$kDUb0f
zJvKy2UQVjVIN^cz%o0f%ai)2YUN?o#avto@vQ+S(q6cexS<4GP9-iOijkHQ0<F8p&
z4=OX-WDBpCJg8#winVh2JIFUQU-qE72f7Zw&Sy8Uc<`4GM}4T_!7CnkyzqMQss}Ya
z_}GI{9@O%nHlN#i@Vdlb$Ae6dF&0kLO|^PJtm{ENCVHXn;C7W<eXOr}P@lyqXKCO;
zmd6+`Yx9g3*&2G#$b(KVro^r`FQ#OBjK5dSJb1%{#vbEdqKRNrkFln~>*4MA<{q^0
zppD1)3)9kLyz=%oeTBT~K`S9|33B@@eM^tXC-Q3TF*d}KwDq8!2kkxR;6Yyx`bktB
z1#_7n`fAqB9&{1X)q@-%6yNpWJ&*C9C}>Hdvzw_?VP^6?cwZvv?m-U^dJ69?NZ(#U
zcrVvSNbKKMzVQAY42Y3<%RmnXd5qT>8Dy{rLp&J48t`DK2g5uVZbm}iSPcJ<A9(PQ
z_<s05HnCgBPdpgS_VVI&FFxfkkyVAU9*ki<AI;d3l)$BiaUP8K;Io+G!B!7G_uvZ;
zCU`K>gLxjz_h1s6+k>#!O!i=k2Y%sGJ(%W!;(_YHSE4usr+Z-cplOk~aYc-!jB$I7
zB@3r`RqB-H@<8*zCr-DZ#{;jBhE)yAGR2Hg=i}mZ5s&Ukt6C&3AUr4-63i(YH&Nn`
zuoHSP!-JU~%o49T9^9#CET{0AEy{)>*>i<ZdB1qv0^!R%Snk2s!WWvpi-ar|T;jn}
zAukq*ODq<*f_=b)A3XR`#BV+Lj$O-xmEv3_czvHygztrutPzr3)F{zfw&SVpB<nm_
zFZ!>78$9^gwEsy+^&)W_O=XjiUpPfb9vFPH2fvAUREodNgWo-PCdzgXc6e}{gHfD2
zJ@~_e1HyL+?iSo5xL0r=rx78Yi^s*5o(^)Tio&!Gd2ra|35`;Z2>;82jYZ>*dT`8x
zSYuU}0-p5X6uX%Rw>&uQ!5J~W;=x%nh6^5?^WeM(y(H(1f1!|zVsJ_DZx1ee@Q(-V
zHt)5t@OrIi+`k@N72j)uHw3S<Ig%0>$s|erHXB{^2ZDD6?{QY#W3<S9aegPsJ@nv_
zI3IiPRLB!Sn(b<CA+jpsyomQA!HYyMN_kP*YYdqrFJADXh!@FTq=@pI7X^hB5abXW
z;jz)OkQaqTA%EVB|F7GkB9;&=CRkjMgN2qQg*Pt}_o5f6USxP-@uG|uX<k(J;wAA-
z_oAE^<%O5^Vv<>t6+~$yW38g_O3ZfgxEG7ZRq>*#7cYy*R3N09VAlS$<}EC2P3qM}
ziRGk*7gjIoit>u!tAaHJYk5)Ii#oy+PG#_7@Ot7TY2Zbs@Ye+E3+^f!w_8%l5@$of
zMqd0?EY4jdF58R7UbOL|trtza-~ks673*7GG!;%~GujJpZYnLjXle2{y=Wzz&v9t{
zwigWkjvz^EAr+R?Z09w8t$2;`qP_4AUUc-L6C22juAdsdT}ZtAF1*3t_2NA*dU?^?
ziyTq9n=y3rBG=@3Lf&Tv<XAQa?BPXE5uZhjTO(e5yclfS_w}Nm7x`ZFH<dv`26!=0
zNZroH*;Z$E8QZ;vcrnzAVW#D9A<xT4R7VIO=|#oSMs7beZ9ekiW8tF&KQZ;u{1q_y
zmW9U4vtz|M&WrJ0eCEaHUVPz&X4*{fVu}}2y_je!lf3xS<dcO=|H-&ZoaTjHoL|L6
zFP6$pX1^)MQ(cFMPA?Q8R8%iq!g(4noxI#$?152NJ}(zh5%eMCGmd)jd-1Lh@A(j*
z=tanDJgc4Q#VjwvUPQbYG1K<->{?NYZH5<lb(6UE{_2SQ*<Q@y*z}>0&ltILz4+FP
zmD20x3C{OoffrwUvCxY}UMv@JvEVYnC4vmQ)QiV&SZt}r%+PC3+6q(u#*5ew+$t}=
zV^8+ts28if_}+`XUcT&%HC}#13_HdC2QPl~Vw)Luofp4)vDu6DUThHYC&7(g{4C`E
zXN*mZBrfh37UzU9%3^sS{^rFNGq$Z>{9ZKf<sxyvd$HY%9ij(28uK16PSLwW+09Dk
zj8QC(N^B<FZ^m%Ii$8?_do{yXB<`RWhs1eU@Q8%^(+mDE#p2}Te9VjEUfl8Gt`{e~
zIO)X&FD{DxDZ#T|oECCMFf3uu31=kdg)qWPUi|IFEpcA<;vXS5y|^OenqaG|8UG5o
z%8V6>>nBlN_u__#OOK}QD3;7PdH--*6xLoWpZC0Y>culJ?tAgTi-+R-*o!AZ9tplw
zEG}k$NPbP?e2Dk)2_uqyNRZBxC>S-%o>@FDMHD7cz=!8d&Y3?}tA%}d-iMccsLnp@
zLlGa!iA_<#GJ?g-P{n;H;X_Grmhyo`EA2xAGp!dzPxZmKC#`;`v@|nRx({WA$ENG@
zre48^iat~lXJsE+w6s+5;iG+NFNwk;R5dLjq?!-0+RO04;zLsrYY5i#@e`BA*m*_p
zRo{P4rfU08$A?TGUK8Ew!)ck=X<65YdLokZH>JMGZ7h-SEZ=`O3=Mr~BucEGzb-u6
zv~Mh=iSNIAo@R9V(458bp{)<?d}!&zn?Ahd!`nWzGDGqHgz54g<{eR53v$3xY$Lp(
z+*s1tUYs2TJNTgaQYiB3<U?l>y9iS0N=5FAa(w9K!&g2`_aWDZJRe5-@PQBS`_SEo
zAwCTCf!hLm_|V6Pse5vIinEs>_1->Xqa#UQ@$Dx_vwR`_eHdUW1AQ1|^1(vpluAEP
zATRw%7VU>ggu{IpVaCk$u@BkAK1^gcYn;RDV;{!&FjkzSeE7tN(LQ`?`i}WLoi<!_
zB90UB3&HU|eCEUFKKxuIk6uMo!+_TWA1<dGK_>a|r4N&Rm?HMmVwq$`jmYm-HII3_
z-`mEpUmvsCeQ@~T@xkkZlij<V#bs176eiKjs<K}d&gNC7aJHKr=4nE!rwO$A`g%Ok
z=Yvk;+DS|LrdlVYahtK9qa)c8@ZpD6mZ`2(V%Ud>51V}W#fK;hJ2Zce4|7=wUs-4P
zu&qw+Odn?XFk6&9Bl4+FX_#xg0_MX)9~SvA--iW0tiPA>HQVuYMv+kZ<$+c@7yGcp
zho4vp92esCgWxj3<vy$s@{QmcAHMZrrSMfgtQPW}Ama?&i~nADf-F0)HT9VDM{%xW
z9)xT#ee=tt?4E9AR);6VZDei-r!uNveb~%;ewuO6hu@?&SRwm`Z1G{MscaMSyWn;o
zc9{B3A9e}f?ZX})_WIC%u8r3|AD*2^i}5?>(*7{*4+zOgNIv94Y0Y|=Nxzr-rw^-6
zWE~MCS$n?GF&~fMMqwS#>p0=VNzR0knpb@|C4~HMA*X#fV=8BTI4AtPsa)VRyWV<{
zqeBS!FZ~i3_OcKEm^N30{3{sqz2?Jpao+IZrVqD#xGl~^-N?fo;ZFtc3f}YKz7G$4
zc<93;A0CUi(49u(YgLSAxKBih@n^y*#_5Qc2onUU#DXM=Gg&Z&sH1@Jf;tKbiNzDM
ze?dnP9m93w0WK9zDMfV@(@|VU3F=2O2I?rOqm+)eI@;+dt>Z-<RvmS9r0OWcl^Got
z9cen!byU-hhX`eLl+*E&jw(9J>!_fkl8(wcxSn58kZbkaYaKpn<GZ&MJ9uqGt^iln
z!E-IR<Vz0SIJk_2&X;v#GkkSH#$Q9nPuDYF)$z@b*?h_36&(Yr<yEecS5p*<wS?3b
ztRq>XSWic$j%*!`bz__BYdW%YWBYo2NvMHtY{eYtwK36#I!4{h<kd*LY&u>yl^1Sh
zHqp^kH}+A#!<esUHe+l$-W2|Zj^;XA2<MK<<K@cIfcbBw<I4uA%sKg6I^NceW$n-9
z91kv-x7N`{H}-8ZGsN~fI_P*`vfWWP_BeIX(N#z%!Ont%hnIU-$9p>Rn4ePVIl8g&
zshf`9Yow8I_iwJwk4dHRDFdC2N~NzVnciJT4;?*OC>?!u^phld3--}5vq&;?$O>oE
z<m>3KW7uKa05-QggNQp}<Cf_$Bl0QQ8d(PE7_4K6j-l)x$(Gtjvbmr)^kCXB9j;@>
zm#s$V7^&j}9UtnLs$&{kmVHdeXF5J-W$O4u$2i@%TOKVj@Ndx=9iQsh6PL)tbGX%E
ztZw{k@Qg4{N2GJSj>o-INpia+eW7Ebj!8Nu=*EAseeWmnwZt!VW5dZ5Q8Id^PG$!9
z8f^21`!|(~OSgQbW4c7>*0KG$IJ*u-hsuUavp96)6J|~wJI-Y?^URWqVUJ~MI&Mr(
z)e?;}#%DiG^RP1~TfD4Q{tFOf#>fLYf;u_|&?$hBj<AmFe%$aQ!sK+U@nfwYGg!SG
z4t`YiW0sEDI&SN@qhpSaxjMG$*rsEijLpS5mgtzTV}btPDR5u2;Ej!WV<Ee%Zv5$Z
z7BY^NTdHH3j<q^|V29~!{H<6nL00ITaB6*{^Xti2sbiIn?{uuz|9e-FuNl&k*Y~=y
z3y9~@t&up%dFUKdVdOvRSjTZH`T1FVX|{ob?tfC>sAH3kUs&f7&u`+zd~P<g&Dgd`
zqOoXyXSLHy#}(GIj-8y7b)3|(OM>s!v5!O|*(1mTGT?s61M~K$jz4r9&~Z@g59v6p
zgSny?FBXc%ypHJjOUF?i$8;Q*oW#n@_cZ_C@{|O;Xa+y6<BX28674x1=XG2VFGkL)
zVDSG><&xO^EqGaw(bD%{9anW+lTge96S^)<Mt(!ea#M_{-{NqP`oF8=o{j`R68*TZ
z;{ok;JQ3rEf{)BRFn(6WQytHA#Q72LH%d(<RzKvig43DgN3!4OC(rwlLgGgOKMMN)
z>oByulo(e?oXj>u74{n)fEW1-eiZSes2|1rNcE$PAH~I&(U$b1gz#9-OZib+oG<!~
z{>dwrAI6g=dL>CBU9hYl<@_k`M+Nb!C?f6uOLR|GWj|h$c&NnUhac7a81BaiKVJ5u
zx*x6lc*~CrKP-OK_oIOyHKdreBu)l=#m`Toqo&jhow58dw%UHw@x$szT{GQGKk5lL
ziYy)MH8WI}9}WFz?neuWwvqq8mZGK2kJtUk7R$zd{Pk}|hHWBdO(iGI1m6&h4b@mS
zn3I-%yeXEk<lgq<9Y5an<2^rG`_V?cI+$5%D>1YavAtAFtlxGtGug?H&VF<;YmBLM
zHF=I7-Tdg|M_<1&(&?4!N1h+=OKd#_DR%dxhgloUQZGMxo2j#;H0WmrAL>WGc=Z>g
z@c@ZrpdW)o87w$NFjk+#OiLDgq#qyn;qb%Bn)Kr%Kc@IG)sK(;80E*8eoXe`6F)}#
z@tK+8r+$nz^EpQ9pPhM}ALB)260ua6$<HOBF9atDP86IZNV8ZgFdM9jX%avCL(KV=
z#5UazyIHH$6+cuz7WnbCA1-MHCOyXw%@4O99zVRC&;8(p;PXTGBj88S55Jk*|L2Xh
z6q}qweuT|zQ;hN_K#ZBOnfwV5K3kBf(||bF%+Ea0=bOP7`mxB5Z~a*5$70DF%ffOk
z@nfkU%luf*fPQ=<!DCUeivB-ZDlE$?3Aoyi?}RWLu`2rB%)<|U{OHFoe*EgkIzQI?
zvC)rBek|m_r}G&b*t^af+q!=8<7c+o(+qBivi_a%_+kb(KJlp#x0Y@8<2Q~Dzj1yt
zQ{3Xmc0YFbvDJ@leypx(+{eDa`xC$MpM6vR)SZ6p@?)PL`z1@e{n+EjUbECJLM(@@
z&p-S);K!eS9P#6z7*k}OGoC|!9F_>lV`Zn#wCFtQ$1y*S`;8sfr<p5GwzVxMSeaXG
zC;d3ZMm%mjP_Fbx&RIXs`Ei*;$#3jbKko-WV)eHl7g)nT*e-HL3Ro`*@>wT2zwg61
zX?ca6`4!7GKmPUOsvqrtv(c9)0rCqbi&kbQzG1oP$1P5A0aOX#w%@p)c|L#_0=VPH
zT|e$|^5<L~z;gjS@Z%vnm>+QgJmUSsos7qVvj$mf-^h5v9Nx@$%BgR#b=q_*efi8W
zK7gcv@%%9%fW!d$-bsi(i)@_`mn?dG?{q2!0>+Wu+<t7IpII<~LIER^!U6F5yKpk2
zdcBOTNB~6xC>B8R0QfOkzIVe9a1%=eP%?nD0MY{}6)^JuVgO&A&f??U(&9|5md+1q
zq|%1Ze?>XJ-1vG|Sy3tlP%eP-0aOSeGt&}xCaYoqZ`QNSZe}bU^F+0?^(>VGxH<yc
zdZkni00FcPpiO`kj+X;y7(k-{st1q}Kt09~fF)r3X4MGbm4Gonvq#O(?m?vZs(955
zpq7x@g4F8>u?A4rR2cBJ01tn*F<^rL>P!8wqJnQ*vY25xQ)rDpm0we`1<+gy^?Cr=
z0W=Qa*(__509G%y_L*qo8Z}AN0Gb7iKK4cc2Nq=W`njp4MF1^Xy^Sqz2GA;iiO(go
zyltOLeoI8^Z?l1fFZs+yC+}3-2GHYQ<4AMzb^){xfZM=E4Yqa&AUN9C64p6@E&((N
zqG=Fa19&%pF#(JX;JpBH0vH%DZg;x{kjtLH9u=vX7r^@g92#4zX8_&V3Oq@&jkSk(
zxe^k2(nTRPtyciOS^R2QeOS^iHG@^NUPl&5zX0+B=pVrG1j_)y$BA*g!>4mlCCi`y
z1_!{SW`+bXO6sTI*O@~D7#1*g!Fl{C!vh#0e591(12$FwA2CP(bLDLUnl0~?LQCQ&
z0gPrV6iuMWg@sSqKX1pAvk2n?m=eI$0LDwUKNI{sfG>nh5d2bbqTr+eZVbp}Kwgtg
zWg2^I0M`Pz9>DYf>;e1|z^?%~0&udP>!*AlfD(WjKsbPi*{@syXc7ZwTDSBZPXJya
zz5sL~vENz0*{=d@DU*kUu%|^Ol6eyCi~weeK1*<p;B3=!u8>%q^8;8Az}EpR3}BV$
z?8%D)_(u5R0G0%>RQL+PWv0z?Nr=Wwn#k+h09J}`EM_X-u>=2)vPN>amMs;)kD~u%
z#<nhi^(No&KS6#LzEN<Ksc#P8H}<yx4hOJB;@lp<jsUg_XS&-0_+5<2nZ2C>?2_F6
z5fcO0Yx?dn<J>1?zp1kb2ZSFKWGhqoGk_xjTo&c80FDYdAHXporv#4&aDtPG+!vh`
zC00MDg`W{TE6BW^GwbkzC>H~`WQL{h-@;>2{S&|yDc!$fdDV=8zBdB6$w?+?jKo`<
z`~xT$M4=$=1aLQixZr=8xfj4=33Z=80RcP|{z&luTad9mkyM_F{!EZLp&lPJ=EH;_
z5`#z*PG^dc<lujIu+N!#0W;CUK|C+wt3kXFM3EpWi*eB)iiuuUuy_!qgLqMRi6BY}
zVf>|p#A+Zlh%{3#W2Q)(bTh4TL6jGR3PDsdEi0Na#LD<m5LJSx8U%vK2*M)1)q;3A
zi0Tq2)1qZ8MG{^$f_O#DVll+LY6ekD#M**&gQz3KDj2h2-s*`n(-i9m(IAK{X{m<H
zwvbq~Hc6c=$WX5bku5>U8=EC<7Q`E3|3?tbgJ{8-If!?IXenX`K?Z*_h*m+o6~x=7
z(q70rL9{lNHbJyCc{?GoWjd}Xb`)nP!OlT+2_m-4$e7m^$$C%pydd5WB1bs&Zb9S<
zk6CsPqDK&41u;E{o<Z~q;sX{Th~7c;31WB<BZBA~L_f3D@`LCvg&iU|Ac(<21_m)m
z$p5wlD`cpMB*RSKk)}dR=7;t9Q4k*o@mUa`2QkX@9TUVS!bh9Rr$T7YP-BIU3u3&G
zSfa!)q-c|am>~K@L8d+_h%f)glFAfuP7Pw3X~UT9K{$e#7sUJ^oIxl-=t1~{P=j#&
zPm9O;fF=Rmf*wI{5I!NX{4kZ6Wgv)P5TPK#K}5u0b`a4ZW(c1tG1Kz@L(MWHnInYp
z%r%t-L3|y=&p~VqVxct3w?V9wQZEW(aS%&_SZao1gv*34H<cAaz7dQiw<?G=;{49E
zSsldp|6{OL_zyw+C}f@KwO$DGwjqe0gvScIiJdTrok8ph;@2QH2l2aU`J0ffL2UUS
z`)#H#^RwOLJB0jKAwldl^*v@k+$UtesWWNziUU#)2ZJ~y<gnnMf;T!E21kQ9#%5g#
zbt#Sqaf1D44nCWMlR=yc;_3`sn}O3ooC)H16eprM8^pOF%0^Kxit|BSU`vJYQ3w}<
zJcShxf_NCj-$7gs;${%Hg7}B}iHxhnmX<4=KhGu}%gFkdiDqP>d<t*jt_5+O)xx7S
z1$#6~CFdRBZR%Gt?gTNQizTi}+T9@Tae7R)Y<;t=|7zC#AirN+pLbu6f_NN6xe&^S
z@Fa+*L6iw0Ere%5#D!2IWZZ|x(>K|Y5JF<ec!Tfqpwy%gl0$eQgd!oNgz#Jl&xg?M
zWW@p@6bxbZne@UT^c!V-Cz{9U7Yc!RJ8HERG|uNKIWQ-#Q%<py6^n*YEQI1AoH|jF
z3T?)<&!#U)$q-6~P+C%F23`#D3%tgMn0cj!z=O?6(nH2B%1*7VWrb|nnKi4tr2?;z
zvEg%A2*X3D7(%5GDu?h=2=zl~5JHs@s)mpef+YlmP%VU)L#R%(rB;5kwN=SH;!(f#
z#8zAF&ul{rSZajuN(irpP%~s~d8Jvc<<`(K<KNto8rfBrX4VR!cF1^bxsD)-HN?}}
z4W*u7rm4Rsq+AtCRtOD4Xd6Pi5E_MG3!y~_{L<_7B9_-Bm9^hn$+JUf90ExbL6W8+
zG!y=YU~^OFk-~hNuVu)1qwviTS_vV4D}=XA{*I8=A+#}-wpo_;A#?~~Xb7w8W_Jvs
zQwZ*ljM8;xb^T`R5kk)px(KJUD_bFi_d>`KCC}8mg^+7<?p>$l`{L{#!e?s?XD`#Y
ze+a!z-bYAZ_7frbrp^z54iG+2aFF0&(|1USH>*aR{QfwzIwEBJ6X6Z~NFni$;y(x(
z{|k<evl2fJVHA5y2x~(4B!tl+j16I22%m<GbK%CY_O4{GKl63bk?k#~J6gsw!y$M>
z@P+Vs$XGg18Et#Z7a>d#=fn`EhhPt3k~qH<oE*ZG5T**BCdhz%Q2v$h*lr3c4sphI
z6*@yu{>Rr9!sd`wGkd!`1eVSd!h_GV`@WmU4=U*)<FDev5d0woLI{d;o?u9jzTpre
zCXa?NBZQgaTy!jbmXO(|@0<|kntb}G`tyY^5d2y&UQWARWZEnaVTtgiAuJQJoE=8U
z3c+s#zZGOoR<bjj{JRh~%2Sml({t&?;lDP76JeYT<A)G_3}Iae>qE#2qhS~uSldT4
zkA`rJBPE2N88(DXA?yfYX9&ND?-oIt{c2R2VbAL~A)_~?lW!HiErj2NY&UIM{gt^Z
zgxw(=G?hIe>=(Y*RQ3sp#q&o92gF&V<$tLh3gIxP8WE2O{w3JGA8NNuW75Z2G)`z?
zlwbilt%Yzeg!>_!4&jVgUKc#e**=6z!q0_pUdRPOM$&kZ?e7pSi}PQ>e?quo`u5tC
zKIcgi&8~`aO>lB{E)`xkLbw^itq^XDe#Z<&v%4nW{f+HG2oE`#hmjP<BhjClzK{7U
zAUsz}{frZS*eHIyV1i(*eqP^{o*YI>7|)AHo9DtPD7?V`m=y}6a2UN?Vz6A*q>Ww(
zqlnlP4WpQln=_2_!x>4*FiM3{H4KDNI*b>^w^A6XLTFG{NSQFwgrp0yQ1mJ%ynGlH
z!l)>mB5RCT;dE|gQC>3jDneF?Z?!O93FFl;UKX)>7#U$$gx4_b>$F6FvnSLH!)ofa
zgwz(S6GqcnMo#L6QBRc2Fd7JXEsXj?7PdATt4_Pz+MCiDVWTi?VT=yr(=c8SBRh<)
zVZ1Arjl*ajMhoFh1e=D@ObBCmLkJ^j8OEDov<;)3D6ItF5qwMVZNX73(OL+@wh_V>
zX)mOcsdo_4QE;r(OlRR;1ew-*VdMz!A4az@a)tL1%oFS(_`YCw!7@^5J;UfFPNv>F
zjCU&Kk@OX%pQ+~y+3;4{fG`GzF({0|R7~F?LWT<t4P%(8w}{$C2#@uI55o8`jE}<j
zIE+tB8xG-7!dIOBZ={sils+bmv0*F?V_6vE!WbWh9)>@R&%|<S7}LV|Jd7{IIU$TM
zg-jHj6vmB&<n&Yj#Wp#NDWbDb{;zFcg)v>6?lA18?h3;ZhBFMsR8%3er0brVS(9Nk
zQJP7OdBX6TmOiO54)Z`5!7%29F<-nwVMN225k^>?5!0TN$xPvM1ZN4(7Tg~+`sZBX
zu~}<@aEgn<_*(cv!Di2ld4|{GFqViCtKsEgtO(=RFgAzrO&H&X@ss$j3}cm$wSwP;
z@x2hnusRHOKaw@3!oKuFm`4j@oha)CV_j~8@Z&9vy8StfjbYH3oYyAt`bDsQ7{7(F
zC5%79I3UW_Fm{HqD~xSn{2s=35gBR+4QAVVNpU#hcANU%F!l)NKwxb9!q{&*IZg38
zXj=Xi#v$Q{!}wFk5kcCVT%Hrl+tDzNg>l>*<`k#&!>KS%htV^dHlaY=nJ~_>M@8^O
z1n0sy&nY5;%m^-oaWRbI5tNAFQW$@8T8<z&g3Dq26UO5(o`m_uUi=%zoiOf(aW#x<
zVcazHc3sGg@PD&YY~H?Q`ra0DenkE~ArDRczK{okTYt%VWa=!@Q{nLuqrIM)dRzo-
z9X3RQ==4gA{Fh=%gzHXt!PE-~DJaOfw~&y+rtkAYW|cRFe-YtDBPeG2vUN&EP%45d
z5mb$!bObMoS4F{8!EzCli6AY4ba9py<c|>}jP)^+@)1-JJvL)k5>CCcke4E0G3n%m
z2r?qDP!X?}P0Q*+*k@{(N}UK^iQrXn){LN*sq@#cw#mn?G6t75g1V-{uJu|3^&=P%
z!N3R_M35Ch`v^LSLBj}|M$jyRMiJN|c-;(@EhLu7#t}3TC;RZm*|s-?zb)82f)+wr
zM(}0?t%S#Z=--N9kd)Cr!`Ajx?mH2*j-ZVgv=w~Itbul{&yD}};f@jHMvxalrwBSn
z&_yiY6=b=(3SoKQiy%ihbJ$JDpe07Z-xuCHf<8jJ3-*YhX9T^3|Mq5XtcqydSCo9g
zei7sLfMS1fj*`3$q8Py#QHI2H!J!chi(t6$kr8|#WJCn9&itV`KaTkx&HRY9-R!?v
znn`?O>Z65xDoA~-ka2?J1wRvvO&Sv-m>9vH2=+!WDS|H}SR26)5loI?N(7+@!Vyf3
zU|IxT3H4P3(}lPqunS?)oI)Ieb^95GRU%Nu$(tWKHQ{bS&deSmv7Z=U1bPI1Q38TN
zLH>#{AdMptL?c)h!SV=ZL@-l)7YNRZU`_;ch0l&4{%a%1JaLlD7s8)2^3>OQeI3C<
zQ5Hq8B!Z<8EH*89dlvh>pk*v?E5z%&2)>EnTj47sSY_JB^0wk!McS_x@%sqY2pLr>
zo8phce~n;s1nY#ak6=RtKMCI?__N?f!AmQQUiyph*gg4g!YOW#V2kjrg4+atH+@UU
zkNysE?iAc5xI2P<XN|tGFM|CMJdEH`1b;+uAcB7*xEjI12o6PXB7&1*e>j4pLKx&v
zAx9$kO9-b>ipPW>7i3-WPUchurz7}Vlrs^Wjo_ki8lMw#o_#<n{{qWSd$|p`WZGPM
zmULP8Kc;d;$g*iU*CMzc!Ch0o5y5TYH%;Z1kXZfS5neHjd#3MwArDObaRg5yC>}Ms
z!P5wyMNmk1Tomz9JSRLskOoOY5~Kh9>q$2C6d_Mn+6o9MXzHAi3P<t0IA4gOsHqnb
z!k_zMLShqF3E?H9C>2F%)3QtyFPc0xiUj$;lO{^KAiplnjFpd~LKOX?$d9686qTaJ
z*UvjdQ8|j2qPRXd^_?iHL{T-0I#FYdh>J)(B)wYH*m_Fta;1{IEY9jtWJF;RUL%T{
zLS7N1&8txiyAe-P%T#KciZzP5QPhhfGm5vO#_Acb*M!uMqU$ItA6PetA}fl9QSgkZ
zrcq-XKqEnZ_`nv$>%y}I8w)lOyjL)pmd%8dyb(on;Vn$1WfX6kyj2vBM&#4%?I`$c
zomcZoX{{w2T*_+`MO)SzAO1$sK585ZNX~2U!}yL-bc&*L)HviMhdGR*3$q<X@zUAv
zMp5i;JVsh)cg%h-ivE4A#tz9S@}lSyMc*h2U(9?zitbVLpk;%UEq$!~0Q8uo#GX;~
zilVm|P#K?;*rrShjp;?_z`OD9)J*Ch#egV&iQ?BN21YR`3QrW?C<aF{B#KFFFBXKA
z9L2{`jAFH$b^AdSBZTuc`H@1h!p5i8K8)g{D4q^Cnt&g4`y`6dQG6c77g2l~#h56@
zMKNCNo0Tt1o3T;uJ^t?-Z9S*rGw~`l#@IYCLHI<$*k{xzcBqyzIf^MFs!>dhVp<eV
zankoIA@(Syn@aJK`3{rwYp06I?=~=U=!!y%!W~7&uEv{R-)74DUu=aaRz`W=Cj3zZ
zqL>@SyeNWEgrb-c#mp$e5>G@haf<XeGv;#0on`XbQ5>vTzN9s2P85@88j)8lZJ8g%
zf+!Y8u|&+ij$&aHi-d3dGp$5#!;Du!dBbjL6w9MnA->B5|6FIh@Ai%GZ&}-mjM}p`
zHP&Xoi(+-u_)ho6D87$k*<|awDAq?&{Zs3jD4tEVt`+=2@JGRIqphbWTQ@}Ua}?Pl
zjZd!s#4#v@UR1aYzDYVQw;Ax-tfg#@;<u==2)reV?NRKA8cXF{*@bxiXB2Dum;IgV
z?H!YrR?giS#jYs+h~hvLyQA0>#l=L+w$rw~QEcsL-7n64QMA66!51;;^+Qtf^%J=V
z*~xci{u#xQC=QW((hf(Bw>EgqIhJ+0r}Zy3N|}_SV#a{SqQ?6jAL_QHJ*_9BI2FZv
zGmyje|0vFI3Yvi`GjKMFb5RtWfkHEIK8g!b+>7EqGr-J8aWjfrGBy1j#Wf+9qxdI^
zE5dsvTCQ^XO0fJZ&i)URsB{~de_fn61UaqkFA#S-icd~vl2=NIyTfRUr*WX&jpF!w
z*3^R)A4Ktxbsk0B3_Ri(;e-2fmd8<SyI_2-@rjtx@+tdXei{kG#?L^~3?$Fs*8Tj1
z8AudDoz9dQSk&G6+zewz<+ZkQ){zR90yFS`OkD?b6~*5TAql-n2?@PiAdkNAz`)}H
z7DRf75PAvHdr^?4AXU0lU+--LNK+IGA_yX&NJkNr-kVgvJHNR9^PRKjo;!DbGdq2E
zXLo0Q%55rlJ68c43ffT8rq06SOg}Yf6tbbP4Ml7yYC|y_ii>aKfk`<wuNck}HnoF%
zS=WDhDbbT{C~d@+VneF%GKNxCNI4tI8%hNs6>X?wD2L;7SG55)w6x(h5v$qos*vh7
z)Ubi2k!Hi{lbQ8wFo}~&O&e+%ytWN>3|?1Am)+L-5`>{N8yX02XeeeOjcjNv<kmoq
zX6ZIGkwR-~Lo*wG9j95ux#g+aY=wtaoXrJW2<H7a{&gGPkfe69;Y}M_+0b5`Z`sgV
zY~E%%@1(80Zmt&}$I@F>!PLfvwl<LPXeZ=SSyKlaxWMnL-L#H2R4A0n({+}3y4cXw
zhHh-1gS8$uEUKH?-G(-2tvr5pSbK`XMJ=fJwjtAo**46vp^puHZ5V6AI2-!e(BFok
zHe^YJ18f)~Cmm?RAle@?Pwl0(&C~|lP;P8evv^ZR1yk<6+Atg5v7u>yjApC2lQvw!
zj_Ib25GULDNE=2;1_xg=(|}E7j16~BrIkNoCLhlRDM8}aCruDC(S}JjuKZK>{=-~d
z`)N}|oNB`~iR4`yrrR*XhWEr79iGzbi0Uuz+c1-r9v^4Tr@lerF)Qb!c}mZ<;R73f
zuwg$H8|K-t-G&`D%(vkq8|=(ZqG^E*3vKw+hD+zt7um4braqaN@^La3$5>*+8XG>b
zVW|x*4yAuAUdwE1C5`2RD+KAaQVdqHsTc}v){6Z`!F4>vskHTi8w9yg1(i)UwN4Qa
z?!D6L-!z*fgDaIeShj1_YeA<CE*so7co_MJ<fu&zm0m%gAf0|80l}aRAt7PIH^L^j
zK&`7B6Gb=lZ1w_!ZxOQ9hR+OTn~+tj8}GDXmkqnwRQO4rr2Gq($qjXt8QD9@o0v$>
zR{Ethn6GTuW5d@rd}G76HtZ97zOwm_U7&j%z7HkeYf~?Az8Bn=OKk}^&|c?&4L{nr
zX&}zoaFESlp>{+n@sMyje_}Bj{AVEv*GxxkIA+5y><;Os6E>V=mlRItaT|WKVN-L{
zqFPouPuVd1Ys(o)4^w{HhLz*9NIJF8Ao8W~c^iJW;SU?uomID0`~l|z>w*Km4Sz}~
zz6ZI;Zspf{4_86{w&98mSJ_<WS}u#h*ca*7*pGtcZn6X_nYzugT({u{+un9d=?Ydl
zxguy<Rnr}I0UH`RVRqu44fk2C4y<wDfejCB*lWl4c097-u?@}bXko`cHay`dWXG#^
zJmuhTL(Ma0*2QxhUf59Gjv98nwBcWl$##^m<858r(kVI4j$C%t<l^mk{;4^)9b>Dh
z`=SK9+UGjajwCzshyleycH}j9K0ERYFJLGI?dlyR&3F_Rv4|Z-g%mSvUSX)$lub!H
zO4(7#j>>i<OJcZVZ)u*LJ1OW|iXHcZTB;GMj2&f#mlG^6SV6F&AS3MfB)y8Ao0n;@
ztM{{2h0|$iZmMR-gnOA>VRiDGO}M8(njH=8*fFWL$*#5-s3}-Wkj~n6)G>HnJL(y{
zz8#uyE;rYJdY3*lHcLE=s*zo-`bCm%$J}da^ADvqvE!3-Y0k^$rgmH?X|k|zf~n1z
z<qK(6!QQ1z<Sp%Z&5llXbY|X9rSUcN>vp_hS9d;d+SPhTjn^iVx3a4t=q<t4EG{8!
z1ltO>6IA#Ac62a!M<JY_>|#e(yZWH|YdgBx(cO-9cC5FfhaElb++&d&5u%qJ8FpmZ
zG0d($2JUS~UpxBQk!e@o{Zi>;M@Uvq?k@%d1qTRr7JZQL!Gg3OV#iS7wQ{Q!k9oXf
z$5cC}*)iOX5q69e-?4TsZh%onsL?{k2u_wyk;e<4#7eYdqHuS=q?|RG8RukCrWiVv
zckOszoaFBbnJzfPj;$R`%*#wWX4x@Y#191L2+kE$aXyUyQ20DU;kwof48F>ag?22m
zW3ed94Sk7_rGg&|E)!(f6+%`D4(s>ds?@8+xkm64!L?G<Jo^SaHrnB`!!7zIHgX|3
z1!5C3X2foXLv*Iu$p+TZM8d<vnzAD-US2zVhK*lHz>c8(zeTXQ6n4aps2#fuo0yQ#
z?9lDVwqvt6w;H}%ct)vfW-8}g+w9mbzB>$?opyZDP37@(QNFNaw;f*!|4MM=0~L0U
zaBnb${2Tj!cbMPW@tyEH@}2NLJASaEzC#UA``M%IDC9t42Y$5UpdDxJIA_NpyLy{{
zT<|A54%_jwaEia$aYXo0!DEL03kOMAd7!{L`S{<^PY5|_$0;GF4gHLe%(%GocKptv
z$&Lr2{9(u6c3c*ILGVvIE(+n<FA4dJJx*3>xFXJ*hVNA&*X+11<c1(m!GO1f-xj3v
zjvaS}-}`?y4>|bTQL|WLqC;i>F-LFl{YUVLAoZt0o(b~%1g7K#uL9!yS1?Y3=Msz;
z%q^H8$Qa%(mY5_wkD=ssAfLhWJ5WG)LBVBGszn?q>Of5gYB^BMfma-;EWX7BD+n^?
z5)PC!cqs>xg_m|9#er1e<ps+KmK7`~n3JlU&n+s7QpwOKlrmLupsF|_XcDaEKy|~W
zh68B^=Zag5jf+t*n<PDIB-M7Hj`-F!Z0b2MBiU5_4U^_T0|y#9V0K`l1CtzR<UnHw
zdN|P2fma<!cc6_Cs)++u;Y|(2BBYsMPLpWvKnn+7E8{haqQB+98$y_vRt~&r@SH`=
zD7H3~w}nt|E2NzR?S*u3po?MCQAj5TIt$4uv95-1HzD0wo3avnF9$Ll$Z}wq=)E22
z@4x`znSy-;`#R812ouAA1BDL}9OS@YA=Gm+IMlGD^Bo6<J1|a^5rU%xM;bQF3*#K^
zQ2k|$h+_qFq8jhO1aao1cCrIg9QeqA1rAJQW3$(p=D@o`Hl`=PCuD{L?>pdbnK7L=
zPU*>9t$n6L&5X@*V73Fcj!npq6fn(k;KRq6yb~jz>j3cs!4DmnCuF`L_3-$tg$^uo
zsO$172NpZ9gb|)GuXJFk1D<`BWezNN;A7$6jL)LdrA7*o#|jos%RVF=%I4>dD<4i}
zB%e62mgVn6ekayBu-*ZOLw)I;>!f*uLoH+%dlJ9Vp`MhfY~nD;WIO)*ahMDJ*&W~y
z#f&ihLYmV77c<LKJK&Wd{JP0UV+a0l;DQ4I2Z9dlcHm0~LJou-*y_M%4n!R4PA^+9
z>Ojl^T{y)`Us;G}Mr3YkTxPQaTO8`niUmb+n*-a$><hsi4(u{Q?G(b>A)0;8G7M?f
z(HY#mg3hlT*yF%K2M#&#wFBR9pr~p(;J~*I^tq6JzoluP1K&BY*MYyQnW*si-T@|n
z<Og=KYF66pcYs*ltNrLu^Pg88Y6|r2nU<d%IOV`;2M#;%vjbo3(vCQAjKL>qM;(|v
z#j2D7re7TR)q&$;Kqc*x<u{f_*NhW}a*`!8+d{814p>^6es`!@+_S>zJm<i9;k=*Z
zO09p&%<Z2JTx7*LRn=T_;4cU6vig_{2QE8s-GLhpT%k?GdX>qGn2%L9k&|5G2(Uwu
zn+}{9pLN@TJ3?+bu&JPl%C_?rcy=ClUp3w5&A$UL9sGL;ZkQfA@Q<X8{E-8XMJ&;w
z37t<Ic<R72@nzWOLe8zx$X__PoQ1}l?KnPGjL*vLM1m8!gfncs6F2+yoqNDCqNa6c
zgFeJWCz6~XY1%ZCnAfTPQQ|SVVp0Jo3OZ5IiAqisa;nQvDJPPhDC|TLaTax=n2?-4
z`-&6A#aTkIq+scvQW@~{v6Rx{BroqoiW6<Fr}0R2qKxpeg5?aowX9NAL4s7`^~H%Q
zPSh7?Rl(YVaH5)!>Q2-Y!uV@AktW<En9o?%r<ORm@kAZNvaXPNPE41}geJ}ghVT0W
zD>ibXu@lu@sNuq^PNX~Ww-cA0XyQauCuTY^%L$7U&77F##Jf&dooMa^x1;UjL<=Wc
zI`KAh<iu-?(}}m7s_*l7!-+SYXysHtismSr)BgLXp3c^y^Z&%QPPB8PlM|htYA&L^
z6CIrBD4bt7(}2c|;dyg(aiXgey`9LEQ&8;YR6l@s7h{%556M(dCwdvV%Mg;1{NJD5
z{5z7T=<7s3C;B@vz=<p;hB?&&6hEA`aM9_3PCPi2GKlTrY5HI%xTn|<Cx!|k=SE=f
zI5FIb2~KcZoDoipbYhGXT)3lnaqF6)mQidr6S8=W7Q!{CxhvvWC(3ou#tDuW<o=`+
zotPw%Om<?56H|FKR&mm+W?G-4r!C}sl6udHI<lNB=MbhlF~g}Q6W(Y0>}on&JdQZq
zi8)S$orpLw*NG3D@Hy3-$%jtNb7Gkj%bl3-#79mn6`ftX{(vMdQnA2^g>1=*rbU8_
z1?gPE93>=@e9T&2n(=P_I1ZI7oa&0>b|UZW<dsgW66b0sHaYRB@HK*;II&j9Iw#gM
zM|QOy4v!5^Y!v<2{j|6a>i<3))5%B3w-mRFmqXC$gi8qZDig9i!o5<7RGzKRIC(qG
z??k|<W~G9HBq6rX30WkU&sB^%@tG6bBuI?SLrAvszuVW%PHYint6=4`Y9XoZPV8`E
zj}u=zv6B_#(iUz={>q76%pGTe1iuj6E%>D%y=s^fSkzp?=o=@#WixQ%2n*Q>uK2N!
zZN`bc!s-0piP8!2B>SB>;KV_WKkPV~X;Yf@M}~@;YZSER*GxY-@n;q5VJFJQ%q0D)
zCo#zQ3+AH|&v_?)cjA~6zc~55kUGn6M*PQ}C@S&CH?f{@;-u)UYne{5XVo;FcH)d-
zc~;0dcFc2D#=zqbQ7$>LVTX2s3E;rh&~#DoL?aV9ZT@ni`@<BHD^6T>;x^l%6yP<E
zv_h^6-f-f|^)w#5l(S%OIq{^VT8Qs1M`kBVxKPrC`|M(La@9>29tw$bA(sn}oOmqG
ze*|ALtPom0b>f-9pF8nF_{btwdhz(zi5?TOa(KK8d0qeQt&rP=1cN8KkR&{hVBN+^
zIrjO)*+QHJgco$7kPC%{Pv35)SrHeCinEyDD}vOEyD&)3TgruG7b+QgX%~hk#g!Ll
ziVLZRUPee+!E%C&Zl+ZbQc;j`&McZ(+2B=#RCNJDsu?;HpXP$eg)A3_xlq%ES}qKB
zsVi4)7wWjs%mu3pbzP|Eg4u;eF4T8HbD@C?4P9W>T#Sq3xf0{!{zoV_=HO3X7n-<0
zoxV9XIfT5a3l>Skgqx~<o4e4$rKWTHyU@~w*IZ~Lk<;>Z7h1W%fNzNMrXZaR#p5j(
zT8r}b|I^#L(9VT-uBNqjp{onsT<9RawD0IbCrMIgQMw2+g*mZxccHf^Jp_9S_7cnx
z{NH&qUFahU1NL>HpYWV`n2P}}a4+(Kf`eFAHnlbR5Ghp_>`)<{uBE-h#FsWrVzu(U
zunQwx80o?&ml__ak9J{<3u9dv$F_YgEq^<W@B6szOX0HC@h;rW)+V^rkTPPMb)pM9
zhGvw`Z@T-6X|fAbTv&58ZK@0J$%&>hT4~<zx^SFpJYG$k?!wutrWq`mV*fpr%yMD2
z3%dgNJb*ba%;n+52RvN((1njZSmwbz7v{V0z8f>$_{fC?F6?#TdlweEu*ikYE^KjO
zu?tIFYF_RW7nZufS3mD1n$|D|7nZrOT+*}Bg;l&gxShU&S+1fMIk&FURx{VzwY%%I
zJ?ph)9<65v_AhR{)`fL0td|H~F1TITz{Z(k+9<e5@KZsGHW%!|9fD3l{`f#I4?FB}
zi{FKS3tpGnn%2jZw^Ms$eD@+f$aa3uth@NxXG)0ZLWC`|qn7`Kg*GHnamEC>f>X9j
zt;Dsez1k6SE324w#3fsEnYOV>H#L3k!WS-VXN|b9)1?+c+T~Jn{#@6H*TLkj39Q`R
zE_}%b6SI8h!dJ}r8S~eIBzs)=bF1asI+=qvS-x@MThYt5%5-eB<b2$+&xIdc80to`
z+6ntzIN(AFH%hwkqf1?>c|%gvjV~J{A9Uf63qQGVm_2$(@>v(oNo)C8@Q4dXT{tHE
z7r~P*{3?Vk>bQ{KTsR@*-M`d=v8N2*(=0%P)8M@D>n_~jUtli$!6a=+xgg@-%!^@p
z(S=LG|1y-*w{l%J_!S{nUASf_tqR876#m?W7i>r_+;-uP;row}yQ~pj0)#&he8ir@
z!C$UKiwmns`^T)Hn*YtfKXKuym^~Au@0aUSUb^tF3;EruE5!-sawA^Ix`w9QLg<yp
zjRfI|hLYsQ^a<)cNM2F$8G34p`jDW28wEuvBv{z+Eg~eLowb---97Sn#f{>^IeSTG
zDL0bcXywLRZj^Q-#f`dd)N`v$rMgkcjmmD6aigpo<wT@j!Hx0;pI;!ZqQP@6vQ^xu
zElO24_>5G|@U7uSbvGK<R9EC>`z>j1^m&$Pa%0tojGAs_&#_Ri<;Kdt)S6>;B$V4^
zYF!|%z8jhwRyUfv(ZG#{jKqys-7ve=y+<QAc&p$mY~6V%gEt;kG*jJLrgY|_mWhvH
zW3E&nX(~<&a}hHS+MzXbBdv}yYvD#qInir^r)s9sx1C?zTD<PY8zR0b$lDm^uC*I)
zGudwRb)$_NZQbbVMmIO^Wv8}tqrDp)#F);GZmxWY%sQqnZgh65`=To~Q;9s-PM+@2
zc)QZwjUI0FmLNQ1Pj<2R(j>h^X`7OnA!Mp%$`r!1Eqg<yt)CkMMd|MbeFq31S<|#?
zT*e?bM)<9RMHwPU`xy^YvfLQv#yf5dm-aBljnE`*gd3w-L~e|9gB$qr80A*a-Q2%p
ztQ+Ipm`M9~GZt;q_^>(NjVfu@32yc5$^9-jPt_*5)l>Oo!BU$v{){%&jcIPY>&ANw
zJ1}_$TUw%NI#0b6(ecR~f%#&w#FKdbsWi)t*{n?u8hS8?F}QJorR2s3ZhYv*em4%d
z)xbN?jkRv9b7MX)0d6c1k^09%7P_&>P!_wfMEFueiA+mgX7J^1tPsAE?ahtVZmbdK
zCxUDHB~N~ti_wx0*SoR7jjzOOqZ^yth`14DxryR-!{dfcxZMqh8&2UaLB_)+>5k@!
zV?16_NCHB9Zuo^<6kqB=)`BQu!LcE=qIgXBRyRHqq6=obu~`TWwy^mn#*^^aCgKh^
zwi~{OESWpq*yYCOqU<*GFWksU6+?X~BGb9Yjj!GKMx6TuzcuW?6S7zEdlo{^l$<mE
z@c-iZk=(F9DCCeEKM6T(=s&ZQ8k{w9%#B~f`Kudegd8_~e{<u6@RNe4+&Imvj8T|O
z{8_{DoEzs2{=1Mr1Y0jkz9{6m8!z0r<i=la{4L5&!OMco$Q2=11+NKS7reo`o~GKs
zEpgs<<BpKKZafrnPml)p-FP58r&J%g@z{-jM0qOsL~vw}1R6gR-cHK!r5pcpMD?Jo
z2XP+c@}Q_kHT8H8atq1pL4uG(50ZqeoRC#K)%5LBEsqD!mufljFi1Y}%`aF$u%HKp
zJSZ&u=!^IwLTI_dVJ_yuD;^a0po9m>9+dXr`yb7<4w`KfvPz0sDG$hLoZ>;Ma4IoT
zE_Kg5onk5{X4Q;1%L}RCK}8{z1S@+`MMzZ-AcPT4f0-+%f00)gv4#g}9+*6+Db89R
z)E075x<(xj>KS3{dQeyTW_=Gd54e0JBjIr_Pn_9<Mq)O^qh4J#_TY67-Vpw(V7g!v
z51I<0jm3jz!mWbM1zQNV6r{~-LimBon?gEy(Ak4l!rwA%S_^qwu#I3_588RqUU&x&
zItpQI-%iNlLDI!gGCk-jyqlqP_n?QtdwS5z;29qD7S78w*ZE;2eZ<*Uu%8G0g$xiJ
zC`g+@LIw-A)-#5BkmbQJ58m-$p$CgR817LY?vC_elm{b((>dlnD{-_3(?uEM!B`>V
z1gCf~-h&CkCwef+gUP}#PRQc%ctTe0i3+EBFwKK^J$O$Jno(!8Jm@>agZCxWOpf^;
z%oRS%gV{o8L*oyaY~J~MFkcAcVL*C)<iP?l%TajJK@ZbUCz$$<)D|;?Zu3$P$d`B!
z>5)Lf`5B7KJy_wvZyucRV5JAEJkUMJ_Fy&J+m6(bN8N+15&Xo1wL;bjx;<F$!3GaD
zda%g@hX+m%XGpXeF6~ox4W{H%EzzafJs2I(ZtS%1s}(w39t1oZzlP;u%GNv{cs=lW
z;P<Gzsi5-3y*ehYMl~nR%K4L9L;AdSKa*ZeMp(`p@gORMO3Z^>JJc=ZW)HS_u-k(#
zSu7PzTRqt6!7dLz^I#jRseckHeY*!cn5tX32L5DznWnyQ`&=3T$)k5tW~U{5;laAH
zrtxVBUwN>{gC9LO=)u<>eB;3n9`(`Vx3nLaw3owzIKLBYzAlMpY<k%I_^NrI2Ne#R
zw}evnOEM04us4)Ce~dCX#0H-)?q?5<c<_^)m!H5LX5Y*gM{?9i$*)3=dGHInVZ4b)
z>4~aq9GBoECp|dDVaki*UYz#ej0gF=$nV8j56*e;jH90i=RNqH#puC(7QRFKgC{Lu
zy5qqGHoQyf&CZ`5T=d|Q2Y-3+H_OnY9$l$lmV&+E!4)A_jdH%`!F7WlkIQ{i_yPIi
zive#-aCOfkC*rw++1djS9(wQ(izuodRUUbecTf@&L;hHT_g|wu5nmcSWg&m6<ygMp
zknTm>%2u|emmd5p#@oyHi}NCvSGC4?!Q6s$CU}u3{7Gqblb^@X^LlY`fKoUz@bSNZ
z7X`g2<V9gG*!B{BH}e*2Lg|#T7E=)~ih8jwkLisrDa9oC^fg)uFG_k*(~DYOl=7;&
z;FDl^FOt0|?ZuI9O;Wrl>qR-Qx-g}B)w6RMLH0y`(X_6NiSLql-U?pzELl;Iq>_-z
zUQ{uZs$Rh0)x4-KyoRBqd0`U%yipSdukA%0FIsx>niqAwsOQD2UZi{BzHhGYh1si~
zf;FaUkR>!AtAQ5{y=vFORu9e7hguqW!Bv{MXJTU^1@q^o-h_>(lh)jere4r#5o{)C
z6=ZO(PJg_;*20TLLo8h3`E@Ve@S=|weVLeh<~P0Q;6+Cod-0YRT%o$P7v1isw`F3y
z_+f0HHY}*!Rvui2y4W3aJ1>asz4&#Y<>v?HPF{4Ty%*h?qxM=CuiB}zE6d@5nd@eA
z8^_-|Wibssyy)ds8{Cuk^kTu`%yri?GnnkvYV*zBUSxW4?}C{I#C~4%_hO6}W4##Q
z#Xv8HdXeSDAg@|qn$a>6o@=ldL*%673^mNl4PPugm^|V;bc!-UaHQZU!O?<&jv7m2
z9BapmX;Sh`$pkOB6(-*ca6)6E7n8hd)ozy3WFb=or^-o{nHTR#1x@#2CM#>A%IOSI
z-k0*Blj1BdW{WTR9M-}K%iw$IA9^v*i}!t)>BD?4K4SL0xX+UDVxbq?y%?4^Zjl#@
z8JiaY76o^H@nWMFo7n!n_}GhO>}3<PmV2>62v;dQy;WQ3#U~tCwrZ=qSS@6Y7sp>S
zjhL7<&!_bYYHPiy=F!%%N7OZ~7u+C7=i$$+pL${Q!s|u9N+!D?iJKMYg;SjQ_9mUb
zk?Iou!Ne>NOYh%!+HCwHmFQ!_8YhwPTe6@RQ7>X%guDoQ5%FSQJL~d9Q?F(z#CD0M
z6$x<z6HPjc)Qio`)S+~S`pk<hUi_V8;;~i8&tkmIi!z6-47J0HonGwn;&ZQh*gxjQ
z7ffF51kR6r>BVlZx=rG=-pFCe_uFb;d9lZfuf6!ji*LR7$&1Iia`PqElHtkUd9l}v
z@5TOrSAAQ)kFDK{{j8TliNmMmW@3n*57Z*wKXNSc;*b{^Jrbz%Xg?}B);|8Q7e9N|
zM|4L7k4jjcLV4vf{lYfD!uR4gFHU%ILlS(_i&N}n!cPmH_u_Xi&Ims%$gt<U|E-5c
z{)dQ{1TT2;r(tuE-AC4l`%9F+4LxVwp)2CN>curfzyAN?yy?X)(Qg~Rcf7c3aK`X}
z9hqa74>f&w#B$@v=~FY<|9J6)L$MEqe0b``GcUM)PLfXz?9aW3^C6cHFT7|H%y{X=
zol2$?nHm2I305_6=9v%6@jg{zxqWKjRpY-8i9R(wyXli8Vjdsz`jF2j^(cCYe{=D?
z1$^qQHzyC@Z)h#-LlK{P(N@BzzT++GLopv-@nPe{EH1`UToO}uxk?g`_=X83#kiDU
z-V$*PSlWja$xf<Z6(7p@P*!+3AIb~Kd7E58ctycVf=o<h-+!;Gs)_=^YJ$}TYY5UZ
z&9JQHLv0`W`Ox2oIzH6(!RkYEAL>atH1xsjLwz5PmQ%Z+YCbgZ;k)9Q9NRw#nH$kw
zM!cpzG&cCFLed4B2=eM+5z<W1RV<aETKLe?hn_z4^5He6%7?doXv1>z;Y}Y}`S2F2
zW1r=Rsp^utJ80%C$2TSWwDzG#Q!9@?%}i~5Xy-#0AG-R`-iHo8bn>CI4;_7&`j+)Y
z1M6IyIo2+Nd`WU<8NZct&OMSdyZP|z9_xnRGkXZ>F36bYMa&c#g!|Z5Y;MZ%fp5fm
z^K?_ROdn9!)W?UuLTXjD(#h^Tz=t6|43+8|=))i(g9TZYv+w0%Eob?#t)pp-55s(T
z$A{rQaIX_i-j4KPgb$lfnt3Uoej#m?52Jl*k6qq8?Bb;HIm=id#`)B{&hb7>@qzz0
zP4Ho&50gZkvP9ix^O($ro!de()rV<5aGn2m1!ws1o{;J6CNf7#FCKKx@?kcs)sIGg
z%wYz*Hqm{^_F=9MAFz4*{(B1+_F*0`0X}@h)_%sk+J`khEbw8WI2ZY_OvqwE8Z7Z)
zsc`=6`LPe2#HP61@LeHfC6grNZhRtrKk;ELbM1rMhjpTFGVIs;u)*LPg)mMA`Bc#6
zgI$P2&?!jYE*COA!UKX{L-z^s3-Y(tppcN^`+K{Th~zqI<UJ;2MpE2nAGY{#*oU8e
z*y_V)K78%NH>^`1w)^n8^k`3h(+(j!IYbmTd3tB;V#DsDrL`~-zwlwV50?sBzw}{`
zn0>{}=8k9ESiMF~?ggV7+tRl__2MADcpOLd@7Tro7nl#<3)v_5gCO<&LJkQ2=)*xF
zhYa7JI9#k%e=!_kpY<WP9|?XO^WhgCuKRF<t=)&?KAiF4tPe>O`~1d!*Iqm6QyXxf
zVC|1g{<od>sCecnA5Qyls79tfF)P=X8RvXB@54oAMC^ZOqbi>HhYttj*5ZN>e~PlJ
zc<P0TS@inLhrfN`Hwjl+x%bVNeYhe{ZlW=DOcw9Zk_K6L%XE#kyxP)ekmaUC`@n~X
zKHL(1oBha#yTUg<O1~#0XLF7FEXn(3Ci{^Ok9~OQQ+Hqg`0zyZ=RUP3_)})NbCYMn
zAIV-Gw0R*044bky<zERE=jU(ZD)^I{Da3d`#*XhplITa0AKazAq91wu$V=`=X+QG$
zk>8J3{3z~60Y3`*QN)j;eiRbp!h&CS)EJP*rF^-W$YOrAPfFu*Nqn8eJ;bS(5T%qK
zCH>$X-Lr{V*{@h>S*CYpieFVnc|Y1bGN<}c#*eb1P%P)iM-R*^epCCraCa5n!d39A
zy<qs#s*)d-{c8XBDt^@PBh8PheszBiKdMRa>V9l*o<W87jLPIkO+V`SQQxobmTUP@
z$B(+gYcu16EEMkyw3Iq){^5+-(mX@+qk$g{{n#{Ec@>|O#Ugr;w@=4G%B-;;ulnH*
zz!N~aA5Hvd>qk33n)+ek*;&FT&CUF<`sEvbKbreh^Je>h&5z%9WVG<3r5`71C-D6p
z7w&uAk2m~ylSRam-&E)8p%#AIM&k~Zn#{YF-dZC0d2JGJtJqW8h|Sc&T6;e_FnIxW
zb?)d#CqHicamSC&esuBU2S4`v(bbP`er)z*iyz(nc<({{C_hH~)kJy^KYIGn%dalY
z8Ga1%W3V5+{m2xhk6?d4`U>eMNXz^mVSvF03Ypw9X^4<_1cwS{3DSO;kjnBK>~P^D
z1V;*%D3LgZ&5tSRqOJ2|oFC);SSrbz;KxKi-uGjsUk&Dy1mE>zvJfg${FrL+X>3&T
z9*6pSeoQy?8A7^*Q)l@x+m8i?K1axhf^+@&z|c$S<ru>}an2X~h{-7T-?twN{a7U8
zV#9t33%0I$!St~o%Ou&$1y>8M5L_v^%8x(qC9v3etP$lC!L@?j%ciXNV}l<XrC1z(
zIE8Ey{8Z59hdsx6D$TqYF5y15dA3909>dowWZ9?cfj!_yRGdLSLVkpWM-0n;Nr|+{
z+f^;b81q9n^lU#y>``+;TmAUVkKd~$?ek-sU%iX@ZHiT!q<%%;?#B*4cKWePvOwh<
zKR);43-(Y^_89t?LcU_56;s*g@wF)YU;bOe<~t#K1;1xYXrDndeo*S}tR3*<NA?=_
z7e5X%4U)*?Y#R-&r`_68xAv1CheiC^NdFN(jtV~}_=}<cD&)+kYUX4>Rh7Y$eq1(u
zPx)~=$H0%Xew-8jr{Q~^<skeIL%HBbN)r_ckBcH+^5ZYV_isP<XHh4*!Zuvcbk)$W
z3Ayga4MVx<$1Q`m?45Mik9&+cfYbo)`|*J7ys9-{0O2j#LqA^n@h|Ifi}pzHG0!68
zi6Hf-emoQY+)!RfsnUyyi3=bxpt^i6;#4hOIGwqLBn0s49`*Ztk~s4izIg*`=%Aio
zlmY=144_Z|g###V*c1t%n8Aw%kh`a9ey<n`oh5{q6f7l}Z1|QI!hZ(K1W-1BHv?!D
zK)C?Q2Ve@IW<ZTs6#}RnK$QS022d%0|9vIPFKI`lq_Ac3bX5a@5oa|a)dQ#@B+bzI
zBYZ94%>u9rsU1L_0O|%%Pn-<{Fbk<Ks0lU@95Mxsgz#KV0%&aTSB0cAoqf~~fION8
zU@?3b<WJ;>VV~Hv=7!QDfR+Y-Er8bz{)Uhd`4Zm>pmhKf1DF)R+W|bhXz3F`-vHVK
z&^CZ}V%9l;E&;SR!gdhSF@R2n!r8^H2Jb1PTL9gK^f2^4ok_h6o)JKAgJ%Y?`8}1F
zegW0%2Lv!sNPoeM?HPjt7#!eq^nXuwLxc<uV5p&F1u)Fu?*!1ThN_?uhB8vfC_(0z
zUSouh6&x49cp=m$2;nE?lLMF%z{Y@@-kci1v;dZg*Sm)0M{K15Ob=j&D6;~X9l-m-
zXBswxCaDC^5$A`jFGK$zfP}D`T;(xO#Q7}$pi&lyb726B0$413sS#?45SH`DhB9t_
z^6~&y1hCRj)&{Uj_-aF0Bjgh{a`|19r&t%jdJ#7mHe9iRQ$u_P{4@Yt0H^*ozg;QG
z9)Kf&Y7?}s-85$aedb$Rew6BBpZzG62HpUC0c>Frjc@E{0d_Kl1Be6=2p|~1@86dh
zb1E&wP=mE-fzk>CYNmx^b^x&e)>ck0o&}vf`a*7UKHYC-VNSDhmSE@I^sNCk!}A&Y
zT>#qy*unTOq^0&r;0-*<PJUQ5Qni*Z0@xiu^$===@MQpB1#ls#&ax+fuLC$1#4ka7
z6Tr9Zl|iHhG4Qhay8wy?)ol`I)%FJPeE|Cc_#uG(9A1Jb62yT3eq`+gkr>25HopMw
z1aLQipO~ZoPO@-VQ{QPnGyVX63E)ToH}+VMia4^6m0nG{YQF|R{4IdvLaMYh@tw#C
z;nxRb@O{eZ0C*`m8^E~$&IqTIlXcA0`2a2j@E6NaYUdBZ3xa<NUKFI|k%`*h!mkTn
z7Q7;ORggB<0w|N&hvbGRHwAAQzPFj|X6mH(IQR#UD~RHAEf2)^k>EqYX1&$u`dIis
z0Xzxdsc?!f19&F<x!?;!|GKR8U*U1V|N89SsfZ7%p_NB&A-p0d1yRke<qfKzTk{0f
z^nTKIt=;o<-sI#9B7YDC7~G-p;}HHeTrjBq9WKPM$W$|#ZNTOf8>fC>Ef&NpOneX}
zf=HR3TrP-`LA*aUcWF9<YNx+aLA*CMcd~F2{{d@i5M_g4qq^EwD-#5<+DffX-GnM9
zEaii!5X7EIjVlIGDTvBU$!BIds{~Osi0VN#^#n<CwV)cWX7tKfe8Ef--j>P_&gp9k
zqGph*nqYDewSuS}M6Vz+f~XTj-5}Zr(IJR>LDUbTO%QE^(3rKDrEw6i2GM|)f1BA6
z8Zt+TCbM9pAe=7}=;V<eM9Uyv3v#MW88i*TB4qW8gl0ilgJ>>JdbJ3GB1yZrMB?kB
zw-S8Auz6ERPULS1Z!P$?;FyHOeI-*=4B|ZgQpMIWh)zLt4We5Ror5SeE3*qTH7RSu
zI?MYW%NGs{N%tVmIxJ_smgR2Cut`}xf*|%3eBrnB4k9y%2@+?YAo>RRyE+C0;diPS
z`mx)(Ej-FQESFlP3=ATR0fQJM_Jak72y(mCp;9uOns|o>=>tcw>bF{k2l>Ugg-La~
zEF(o3B}lK)LdFP=4Pu<3j~8;aWXeQ|`Ocdu3!RoJK}-!|T@dSom=?slL3|j*JRXy>
z-V0&|+gK3H>~yw}b{bbLn<->&5FZ3FOZaTTIfBhzrgLepzc*M~`c)Azg-rJRAeN|>
zkB@>_5L7cTRdOXR6tYN=mW$;q8zyCaENNR2#L6I+u`ve`7qc+eRbFP29NuJE#Tplz
zU6Zny{WZc#J_%wio3vEll-E->1hFxQy+M2*#3ptzmSGUCAZ$S}k=G_=6>(Zf>_Iq!
zI5H`VJla0f9fT){?<6r^iFtDnTY~Tj_XiOOA{ay{h)57oHsg5J>Uf03AopaIq*xHy
zMyhln{B)E0$Cp$y+bYTzL3|d(wjj0#u_K6GLG^j(P9xODhN(Z5S3gR8E=s+&D&X!Q
zz6|0k!{!?ydj!7@f@`eN=38;{qztmNStbj1AHA4CDQ9cQvOkEQIV|`x$Pch9g)Bev
zDj?*L;7@|o4+~)o``e}v8TnC(yv*b*UVwfL;&>3h1#vh&H=XqobDxk4)0rSn3ZZx^
zsD8UU&BVm3)k4mSevac<Srd=*LHr)XA3@wHkwWJK!9Rnz7{sL@{t6;j2=O8O9mM4z
z9t80)h$|e#g1F5fY^5Ce*$8i^agi4OmvNovy`6R=h?_#lZwcXAC3l0k$2QO){ljvm
zszbFGnc97hCyjgaIB-p^j`ApoClcY~pjuqzpCD#x={)#W{b>**yK2wqTh6p>fcBhi
za)9<i@MRGHvT=sg@;($7-^oSH9YR7#U7%A!NDLt<gk*8%2_bI?MM5YVLcS34hfpAd
zf*~;RB?oF;$fe=cl(G5Z`nBo9q9_!C^&@NH5PHR%NQ#B<N(d!FC>cVBW$J4I9>qi4
z!cVPBQ!=-y6!}nXa$hwE$o%r`rRAixxN_HzWmAQh38Acza)PueFQh^U6@^q1tZevJ
z38AWR2v#%n;{&y{5KJMo2%}{fHAAQs!tD_5git$#Iw8Cl!t@a8hEOkr$stS$p?(Nj
z2$MppF*FFFVF>L)XiwvNW^)MXAv9rubkZ7$(l`XpalIPC*!$*sle0L{)Rd(WLh}$T
zAvLenOpv6%%#5`N;dMi48NzGAZ=O&yR6O1g=bIt467rT{Ye8ioq>W%(!H_khLkJy1
z7#zZo5ITj>nY9o?MhHDlWOfmo9>Ti{b_=1qkfwtz%uY`+V9eZNxOWJdA@moePe^T2
z%saq-A@mhK)0RPnmYvd*2N<CS3K<ka8_D=kagGjQObA&a3=83%5bUoe^F$*;>T~qr
zf<q=}jg+F}F3F>Wv^{S*ch5Xlf{zbjTnKd9nr9Fvu%>RMOk|uVGWVXe5c_)6mjF{k
z>b=zuxzwA%X~N$P;Yihl9AyRz`Apj45SFlZLYNuCtPp00uz=N<XqppJcbkpMm_7($
zuJE}@rm;yTiXVnBPZaX`LOu#%P~JE?7m9O{pec`uUpVj-OG5~-Lxu2h2+KlP9>R(c
z)`aj0E8=nbO2Os!<W)kbtQInJa@N`q)`jqC2sTmHhp;h(O(ARuVddm3T8^BTajs<_
z@8m2VRO~e7M>{Ry55XbaDd-Y(3(~+N#2bRoP!`M2!aF8sg+d53cLhurLx_YBWnF}@
zFN9bKdI;GeY?dH9dL`{mN?er94{xwFgl}15pJ|_o*B*A;DoNWy*dD?TBmOT#*lF-x
zLOu`S3q#q>PGqbP^OcAr3dViSF{g^@8$pt85i?Kmot$Vd+sqCNoj-)IKZN5U{1(E2
z5Pl5dPzXPTa8M%oII5;HdVOWJh13JuVG(~3{F%)_$Wg&#g0$gziNA_-L_YPrSz#K6
z^-4Oy#$(u=3gL7JXT*6{@I0GhP7n#sP``)phhcv~$e$s6Bk8#m!e1Q!L%1BmO(|-A
z;d~{8>ml4=`YoobA;eX%UJHTm=}3OQkp4|jV~uq4X}83loC^Wn4dGr$eKPk-823p+
z$P-51Fdj<Vdltg;5FQDCEcj0dPlN;><zhp9D*Qs#gclqGL&z0Id>HQ@O8=K<5382{
zZh~sh{G@@HTNHMRL?H=b^b%isC5bYueL|;%xO`z02%}&a`9=JnO`$LfhfzetXE$>d
z4Xge&OJX1?CQb$~9!7~UIvlTEGK}(JR0yL~SS{|yBRP!H22Tki)!=2qC~NR?VKncN
zK;w#GR0^X(7!AXy97dHe>V#1@jH+QEjI=OJEU__KwJ>Us-%YPB&H>xZ6l)IGxb2{J
zJH2LDJ-XHkqsNj|isZFLx$!i;UKma8r|o{6riJlq{gnD)eD+Ivq1GlUv^0m&h$#uH
zjR?8hU}NTv_F=p#!H4b5WK@^#r!@`ZjR$EK5s%gF*DQ>EchbroNw<b^Y;qP!xmuY_
z$!lS}9>$kpd`0^(-eetx@m?6M!gwpJKBDLnRxc%6OWAe~<85)a5v1NWjCR7?8%hTu
z9R)ju(LaA~nvJTGFkol-u3>Zws}|Kgj3HruGF_)f7(K)ITubj2Mn)LDY5y|bcF5ep
zt7V4KH;jH^_+Byf3FF`LnKve9^$%k}7=xI|OP2U4S))VdA3IqG(zj@zhAwTe=;J$P
zn7!K2FtS+7i?m^33=d;O81IC!V}$l%v3B-(E<V$Z467%*GSAb9qlAwRV@w!h!x+aJ
zzmmpd5=&3`1i^`d?`I|F_)Zq*6v3&2(*zme^e|?yg2M2G@qQTo(Wwi<SQy64FlL1@
zJB&GD^)u|eFy@BwK^Pyhom|M|TYfGC$|p?{-tAMFA68#Pd=yq!89vf3Xk+C%V~c3d
z38F9-hp{A#rD1#=#`-Wegt6)EjAdc$Hd$AMv0MlhI_sLPE5leN%IYxIgz-rjYYiJ3
zjEY&;g~5Y_PQDDvDxI{E5lZ{vlm*9}qYE?okA;oBV^U*#SX~GlEVt$+r=UwPFtLx9
zRmNgGm9~Q!4<o>6^O&}W5ey>~hR%%hyl2hfFd|_@c`tOv%;#|)eEN>DxW?wDZw_u2
z%dKH-`F}diJ_}=;1f(UM7oX?4emQ+-7`xcOI%%JW@da}#g_iqfdUk2mand@Nxc}^)
zFuo2$i=aUS--Pik$CC&OM(|x2d&4*r#@R5wXHN;^5Zh-MKZLPAtX8l3QJO1fnGOgE
z+|Epyl65ewZdrMqqJB7xpTp|q8vpn^62_hW$w$LDIIA(!Gq}9<nDAc&e-%6~NQ2*m
zoM37V<y07_h1cXMW;H$+#(9<`C%q&1J&ZrX$Q=PUT;P+%g)pv#aXqXa_WumyVi=c%
z|0Q@ejK76k7Q7;u^SqyfH^R6X#tYGJ2{N9?Vccf=#d((l7dtG+TmGQOo*tK&6Yyae
zk3^)CUOC9H|Ag@*jHh8dli<%K2%q(6lVe7km+Y-!#6^%RqLLjim=kkO<Oz~HW-u{=
zB!lOPAg}Oz5tSGoG+^QI0>R;~Pz1>ll#ZZq1Vth!8d1H5^MtRIPa-KM&R2LMAyi64
zP}1O~gydeTr9_Y#L5&E~A{br7bhMDQOax`wHeRHci=bKr6UHTzmye)Agd2OIl6X<6
zEQBx0c~lWzH3AsEZH}6&OCFm|$zm5~gE7%-dfmDa)QqV1!+umNqIy$p!8#G-ybh}u
zL4C&4T-`%*Vvr4~VMOgP)jxs(5tt)r6hY$%UX8#KL9+<bB_nw@CciT_xk&^~BdX23
zSv%po9tm@`1ZxD%Bj_1HFJ`JwLW>AmM(|oht*^@^L71M`B~`5>ctgmWf~^GKieRX0
z07rZ~f;JI6U(mR11asCj?i@iov1u>ZL9nA>C&4CDax?NS!n+D~6YMV7LvU&76xy&}
zG9t)~ppRsvcLX_q4E2qu3uV6uKG<hI<If;p|GhciUh}{R21PJEq6Wjk5e$i7L<A$5
zR4G+<{C6UV-cHYoV3?G@x(hm=Mtyh$#FOh9k77kfFplv@aQ;@Vyaz2~A_%oKjg4T{
zeB{q(Iy)+3LIh{lYm+0G62U|km(-DFvhqy|N5!cTOpD;%2;PgpbkN%Rb8E&{HB@G}
zwQJv74%p0pyR;c>Dl@I`M=&#jSrN>RV15K2vGgLC%fv@8FM_YuX?#id0n4_Ll}D+G
zYQ2<R>lE^n=>-uij9_sDOCqRV)|xU^>5C$8tk!ZBG<DvnK4n=N!Mfivc;`l39>EHh
z#x{)HhLy}q1V?oo)3G{&H9S`gdt&$`g0&GGj^gJi)<v+MS%_kK6dNMg$aWRQt5IxX
zW+T`h!Hx)Q5p^5jjKCFvJp%1RD-VYdma01fPXwPuuq^^_1ilD@EJ=p-Y85wXenvjW
z5{Rgq&&>xc57(;i%EGLj2x1XLSOOu<m2K`cB}<R+Pg`xJOWQ2Q*%5xLukCVZTg1r<
z+8W{S@LGqb>0Ik|!HlvEMyo|%cSf))g1by%1fNInMFc-FYtjsM3+@&Cl6hxQtXE%e
z?qSR#l7ADyx5B>@WZ6>u-tgTg<cA3M3prruKSprS;D?0lSa10`f+NDO@<c*@Gi;7U
z@Qd(Y1&<4+uTA2)PDF4rf>WaW5y6EBP79~knF!7r{G5>Ug1-xP?v_BCKO^{CoEHVD
zToUqE1f$lf%<{M_%9RLy*lNj9u0?QN#2bP)1#bz`;I@!E5ikgy_ak@^L5V0zM)5F$
zM-(IYH^QY|%#S1ZCxR!eV(#a@JL8jkX&)_5ej33ujuLDVjWb_FxTJ$Q{&O=qZ(`d#
zO^b^nR}=-J$g?CPK8oB?<clJI6bVtRxR=gv@Diig{cHL*r#Xpc+~r&_Zxk&@Xms*w
z&VP94uTTs9Q7ITjp(qMR@$Elp#iJ;9FRh61qJqT)UlF81|6U2>Mrb^5sVI`8NQ=T0
zMd>I~qNo%_<tS34YP2aAMR|#;j9}R)s;x;LI?uw>@z%OR6cwW?zZLs889pT|G+nC_
z<v$Uq7DaVQB(p$YL~)@+X_C29vYI;0H6#d~(+4NjjG{r0gxXQmiGsmvMbYb5GmYy;
zQ7@`)Q|~-U)BZ`TA4RKM=`1mFEec`-!G=+og)|bR&S-flOpoG?DBg^s36q_uW)hl4
zVG-U;&}!(-qi7+#rJ=kg<aNO^(~?_7@m3UVqUuJD1v0x}Vrwaxw*{xnRSzs}qi7dJ
z`zSg@F(8V8QT5em$0)i)(KU)r;_NI){mJkQVmER2jiP%L2Qo5x2=)}DvzL$z!QO(I
zf_+#)Q#Bg&Gh*u>MN(Q{MmQ*n!BLE3s-hSozFAQW6EZZ4_)!__re?eo#c<(cq8K4$
zwBSg=QDQv0i$>%1Q?iI-MJFlg*Cs?UF^VZsOpRiaSWXt?sh{=Fs8_5H$uvWGS4jFu
zl`#GxHG@uW8Xi^8nD0k1Gm2SJ%#Okpg*%ElQS~9pM^P+@Vr~>4aO`zz{O|a~C~lWf
z%Qej7fE+N-k3z3(tytT-Fp5PStD|_og=ujVCw6MfqF5fq^&+MvQ7nz(V|Ijy`dIgA
zBP+$Oc}**#SQW);R!3gbN}jifiTjXpd|MO6T6VW8rcW5>CM~@%H;>ThY|mXFnT#kl
za`2DB9#wDOX#Z(c&Dhu^{_C|&%ep1gNiT;OIHMRnNqzai3$Z7P%~5QL!W)GzsxHm`
zC?Z1015pGG9ug9cqHcr#Rwj>%5);$~v!nn0QMfgV&!YH28t1kswnwoiim%yIqS(m{
z&b59O#jYsUw=uD!?PmMGpZ2+Qw=aaZw`6=7<+@nr%SY3R9JQK$ZT*I00{cs=ii_Sd
zeaHUzwrOt^-$&7Tb;egyvW~Vk?PL3Ys(KcA%G;)1chc3(e2VFSbc!FN>VkMsl5{Al
z-b()z#gU37T+XB;Q5=n;L<}WkI2Oe(Q51{el^A}F;yA~;81l#P8*4C%%WNAQI_$|O
zqc|N^4^u3qQ&CvI$~f|8`k5%sMsY5R^BhUoNQ#<%kAin=w?}0BLHqrd&|2*?pLQv^
z&!16TjN+2m?Ek^?cNBjK=U?p%m4Bo5z^+}5;#w5{MDc`uYOHoWs+MZMAxP)VC~ira
zN8U;1XF|8xTnn1+Fp=5XUE%klxG#kI16~D$KQffZ(#GiZl*6D$dlALUD4q#_E=Y0n
zWc(|qh>NL)!6PXtK9}%#L&+UOg25AoBnjq;A+L}l1IscXNB#ma6ppE}x?oH#8qA}R
z5H1f}M09!;6|(Z5T;#=B{!en1|3}T4Y%gXh6+?0iJ7d@tL+Kb&Vt6x#RxzZ;P$q`7
z7)&uPn}BjL>`#cR97B2XL{mk<3W9Xft7$u}QViW?uBl2)%{x^!d?BQoVD%Vk7<$QD
zxoXBxOPsIAP&<Y?F)aT$g%Q>jG2O7N7eoCRv=|zQ(#X&o#$Xm+GLNZtTs#9dj^R~N
z78vtpO=4&ogC&M$qPH-@T7@(hJe&~MQpjsL&Q%(xlzW+y-VkRXZ`@lkw2r|OgIAQd
zW9Se=#~9j(vuzCRgs>c#hW19NPBC;AzB-03F?5aL{TOD((2WHZ!#gnykD*5lJ!9w_
zLqD<XC72mQhLGNZjI(>Els*QpV^W`<_K#tRC<9^`7{egpgAJRWom4TNYm`hJ8bg-o
z!vv2_$)Y$ShLPfYH^#XRjE-S~IL8RmU|ftZ+*MusjFKE5L$;iHqUe(h%gI8f2u_V*
znviP;tqjZKy%?s8GDFaJOzE?PlYAJ%Y=h4cGFR|}7zWFE=fyBThL1#C62sCM7R0bn
zoQq;uEF`Bu7+X$KKV~b6VMPqf#FskfJXacg6<eA#l{GTsx<>R*VmNsyeQgZuVpt!;
zh8XNIIK*pX44(?wB$)H|fpOYmaLEKOxl_Dc>_kRcxnt;GMrGd@gP-LV!)CDw2*zRv
z3JD3)EG#4<7>$7mrpQAVWnx0ymKe6iuqMg0O_a}Ks4lt4Oft1fGV%AZ?J?|NbIN1-
zQ1bP83}3M5>~Xte>MGD~a0>f=pM~0&G8DKUrE$*l>lnU?p`i}5j&Ec5E`}mHit5-K
z!}l>9jNy<N?~CC;3_lA0f#ZOXHP6&w!sBSiCYPsVaf<aP+FMM&aCl*f@hw11%@_R~
z!;u({a$p&f%-vpi)i@Tz8&6c&;~e}YsscJru>50q7{j9&PQ`FKhAS~#jp0lTXJhy~
zrdH|iooznHIAgdN!}%EK{9W)5!3%;E=RC>06jMuj{uRTN7@wH5<Vo7F>gpc{Msk^1
zt6`;YrOKvjG2DrPzuR1ofzBH-+>GIta5`_xNlADx;9Vvrs@;p>W2>5}xF5p<$>#8o
z`r?$2?T=%~r6XR)KP<`Vb$L7y@>K9y49^Yyg^-sq{A(z2I@XR;^8@_aJhzTS9n&kB
z5_C+cqdq3#UJScmrX=ZVo;HtQULE;_P|2@j#o%O;g1Wj26cS`b7Z$>zE~euZ9h$Bt
zoQvxyp{v@duA`)oR2^l6l+uwbgubP9q!@h7sEo2Y%89dzj`D_HQAh<rzE`Rwq_QBV
z1sDmBsyd*fnvT)(!FkSnP7NJtI!roh>Zq-wj;?mLswK!Rt8zB3V#}|q<H&o-Bl;xN
z)71nHvsPbMcNf>*XwpFPa^<XAvVcb;9T_@$>u9XwRUPR%n&{}MgXPBMu$t=X*4?VZ
zq9Z>?@)T1u9hu9t!>dx7>u8~aTMN}Zq;@B1spB;ruj_b2SJ&l^f^X_*CFCs~t%bx-
z{_h?7+dA5a(pIpYAOp4+(m^n8s`|sdla9{f>>}7zka{;E-F5U3a%_!?xtFB;uNS$P
z{!ATxbbPMk3mtuR^wTj{#|Jw4>lncLWed?UP{$x0@8}q=W3Y~A+pI&Gi~SZZ&Nf6x
z)gq=RHIuR!FrO)9YSu6v{8wmuLDL8wBX#v9{}`#VUj}6Czm_?QeZNrLXh!&f`rl!!
zc#RV?I^Wu2ov34yjvwb(_(U+7X;_>59^0ypDLSU=m`1M-)^~MW>|o`zVY`VMkJBlc
zGjzPKW0sEDteV2s`m*A|OjcIdTBVJ3quDe^I8Q<4pFh$+)G?2ht|OphzK)OBJ9Mnm
zu|UT{Nz!T^i*zj3u}sHu=DmB;5*<r*e5?{<=JW_V?39Cjc+1DtrB>)zsbiInIkgie
ztkxdI)HKnAFD?8Rk7wkuM&kTLFkflwdL0{dICMC5Y}BzyhmGkepay|Ybv4A*U8C`f
zJ4SBT)wskMxMK)s)m%E<EM6VaOBR}Wb?mBP@=3IORQYzlWz(POG!E(r>DZ?85kL#;
zi0H`Hv02Qx3RzS~Ot>!RI*^peAjRF<77@4V_)JIBfI55UJj#oGs`3<U*Rexa--J`=
zL(@*4nq?&)E;{#GcI)_(XE~epvyQKH?9uTPvsNeJYjzEbiKFy>9pC6`xc*j<<U1jI
z1-}>EC-{SoeR*@!-~j8IjZ=Ok<iK@MS6>tyVjAwM#WQ)X!*WKR<%p01_0=20Uv&Jc
zBWVlrY{79Izp+(hV|F%9=s3y#n~hhqaZ1N&9Z%Vkb)3<0R>yT6H*}n1zc`=vCtH_v
zkn=izXBRkQW;gjm#|3u$wMl%;<fkB)bo|B0gXXI`{?^qyvLz!kE(`hYZsrvZM*;OI
zFY%fVdL4UT4T(2(^|Q}i9rtwH5>DrBA$K@Z6^W<wzM(%B@<7K!A&&%Ggwz1e;~yPQ
z3`<vH{Bs>IIC5sALbiHVdZ{CCHu4Gom!~_E7MG1&;*1xhk~<q2XVVh0k(iC7Y}9X@
zlqVbW2Bgxf?3Hw4{%jNw<8s+3n2kch%L*3GMkynnB0`F0qnMCavQa!6C4`q0ocg)O
z*#5UpW^y)4i=HBwnvF6-wl+zo8DC-!IGxFbE|*_VWAgZ;cg1X&vbk+p<4W16oUO)_
zD%q%>jT+f%v9+q%fDkVGRxMkt=1Nk#tceRsaF?qzdTpw+xg%<3t8P^*8@01hM|fSq
zI!K~kPdG{aY-qw87)rxzn1weI9NsOHX6e~zl8r9e=$ehD*|21*mmnRoak4=Ie~JA+
zs=fnCilU8{oO90kA}r4COwTUK-DP({P=X{uauOCrP;y2@L=gl*a*`xDIMdyeL-ztA
zNRBFkN>U^Wh)NLN?T^3TdGDM$_uRVmb#-;sSJgGu)jeq*tIwu;(86Q=kj(I)od*-<
zSIqPv%Y!|A^W{#-*V2Pg1FSiAD-T}wSaaakf^7s}5qwp!tzhrGd1=$$gNyGe%7p9=
zy!`D7FRi1Tx|0Vz<|&;8N%$S7*FEUw!4!|RqlsOqy9a$d=<C57v|+n@5E$Nvp|^*V
z9IPCuY^j%z$e93LtDgt`Jyu^E?ZE&K_}S-oJQ(i5K;eS~DZVLW@bjo(wg*Fnye0Uy
z;4nej^BuPl9=z+ZK2|x(W4%(%?LE}r6N8b0OzJ$p08c%}gRyLM55{|}SNtY;tnXU9
zwY(zjFCVT<Wuga@Bx$l>yC1AiTTGSf<sEz)+vQ=N_XQc9!G>UMcrn$BnI3%P!Pg#m
z=<ObS?7<4wfCry=Fq_3&l5fIqc{#Rx>cL_UmUuA7gSj4j=D|D<7I?rn+&P5K_uzAn
z_4)ey^{jWn*xcj`J=W#{hA%u=B%C8vk-zh`>S=9zTj~MHtKF4l9xNBm=-813R(Y&f
zVmEs5l?SUmSmVK$9<23XLxY6%9{$ONvQ9AXr7CwPSU$|PqYWN7cPLl%DjV7)Z1P~6
z2irY3*fwD^tHNUqk6S&s_8=e0%MbGG@L;D0yV=kMQg?9>7^d*|``Y~}&;MnH;?B(}
zUJq0c8hP=e7aB|M!C$O!4}2c@Jvi;b89IyyL7v5f?>q>35cVMELEM8~A7NuG{g$2{
z;YhMUi3%3{+uA*Dc<?QKX{Gh)e$#^-UY*<x_XyeR!9F41*!q4UmB-@%t9`Y?Fm0)F
zi2crkV;&smFy&W{c<}GnDM#6rcJ%GoBw=3TgsZA@g3h^AIpx6>cLK>tiL&dZHBR8I
z|11Z85B~7rI(sMwe-D0TZLC#3DU@)I-sr)35BA1V89niL?+d*A&B`wx{Okdv45vG%
zr}_CW1Ik4YE_ra-1MY?Rowc!5A-TfV*{WQXqki-7T~|vyzfHNucHExQIwRqR2RA)<
zULpJgvRfY9EtGJNZQUZ_wg-2F{3%G~t`L^|zL<qeB<xwM{O!R%9E!at=Ec7rJoF&1
z7x}z+<iTV5VS6Q)*Q)s^9z2x+hx|X**m|Y)gzRS=U5h0wP?h$@5^{SjV}?9l)V-3z
z`9^*(3V5yWSQhf4-|N;Rt%6?kD3id@^-2m~|1a!C5ijTbDGbY;3B|oA;YAfMs(Mk<
zi&9>c^`e{?{O!XgUf(Fav=?Qlf2r_;27J25X;Q(W3FW=0;6+8R<-PP1P98`qNwl(H
zcza4UFRHUtUexoVh8H!x)(Ywgzw-T83LiqTf7SA$w$~b0>v*jXORh?<IHYQCcoFp}
z^}Tq(3-<)2*x+ow$iQcX4ZLXR#m$h?xOf6r)e^k?n{|bR7s&qxy|g*i;YA`Z+zY1{
zE-zm9qMH|r*IE@!_o4-J^CH=c6tCs6O$13A3+Xo@yQz?7UNjf-k{4;VO{y2yE?RRi
zhOrZ}GrY+3qO})oyw)2lSuBYcZJQ>vlqi)}UVJ(so8*&r>1!us_qme#iWeQc)<o-7
zFBokrNYYM7doO6o=xbi=>D{NJ7oEK5ES%9Z7t)Dcyyz;5J|UaY?q0mXHuB;vHm(;v
zy%^xdKrecE`ASYoUpBoLy}ejItZyGdl8OzimuL=4!TNhKct$FtgQUzu1m6@KEO<%G
zXprqi`^tSt-u7acROSRP^x6sUh}jt7!v#lp@ve~f1V;*v5~TfTAs>`T80*D2uQk<Y
zp5vcqvRC25Vm8x6FDA(;$R~Rd9@Ud%niubrdlB(sx)&dKvC50pUd-^~LoXJ3@dd|!
zFFs<6>{b@mOP}S%$6n0!;xpDN4eF(T>II#4wzQ@`EtM}R&+&pEBW>N)dVgo07xTSX
zAeP&DTJPg9e9kV=!%E#MZ|E#yZFf=h!U@a0SnNf|*V31GvDAxYUh8QBAI=sRGfuGi
zD`|z-`mMCmiy_6VN&XryzVsp>onoyQ>%7?F#a1uYvpcZ!9!TBn#YP_D#k2O<ME~5R
zaAH|;PDLI|h3?JM@gD}a@ro8Jx)*#ROtM{~JG|H_&Po5=<+VOyzuSwiMezuF1yw;!
zke1c`icbz_K7N+7YHyODlrSX7D7$mii<lQzz4*<GxEBUThWrU9r5a5y_Ij~Tcn;lC
zNZM$tXMN-49<an?UL5ygzwmF_$JbP*c)*K;qI@TKNbs=W5y7K^w50tBR&SXM?n|Ft
zt7*f56&d)h#3?UMdvS(+^J%lQUR)9Ky%#?S`O%ACg`5*SxjgkJFU||6{RJUEd-02{
z%xYixqVP*z+%I4G@^ii=l?UG0k?P)>`nwk=UDnHSc~o4ZXL@nniyIuVy?98M<I7)O
z-16eK@QbfhU00**9S#m1d;aOQ8g4{Txhv%HgzS4l?hF3q#RDO<`P++sZ2n@tJX9We
z@z{$eUNkFKfOn053g@TzpBGQ*@TC&ox!;UK<ufmGsn&3sTadp>$n&b!oU`=A?0iD<
zt9X#xnqd}FQCP(r8hU6bqN1pZrYf4LR{4vmD50XHisBNba<X1}DHWwv)KRTDOc@nr
zRn%)&^;W)waw^KJ*ikXPhH5o*1r?Q5R8dh;MJ49nMd5F74(6BdRIaL`8q1)98x{Cd
zw9jINyS$z+;|v(qlfTw$s;H%+wrbrz?iEkqcj{gUDs_1x6;M%MMWTu%6)&i0prVnA
z7ge<QwkPMtv6&Scsz^|+Z;0`)F<1=ca*9K>R(R+toS&pj%yz19sc6islzfV6E#tUV
zB&+x;JDc|0^OnNmtxn`ekUC7v=JvTJa_t{asod;I!{#bpQZY-#$0|})q^WpQ#b6cb
zEP#sFRdiF4p(0a7TNUk8WJy)GR?$X9OBJnDye!J|C4D{);M(#lq6}YJfKNAG70yOE
zlrL9%;hj`;7Sch*YbrXb*n@N)NSnU0oI7A*HltlsbmfH?Okm(bbaz&`95p~i4;4LC
z^s{sBrJ}crJ`&~QjJ`s+-pfT`KCs|sLgw6GwN|sa#dn~JLA<Vfxwsl!ezC%&Au6&}
zj8-v5#ZWnRgo<}nyrtr86~jb%N5ya<+(JAtUoKz1TpRP{;)dk+L>whJQji&L&6kTS
z?ZmMv#;KU9Vw#HaDki9yWM@J%hKUm8*U2UenesfktiaBy3GWM^uHpk;Z@ygIBRxaK
zha!F?%6kP9W~vAlNO)QxVbA%Rtbcyl>=PBURs5&osftfk%%PvCIHqE*iqBMRQL$CU
zJQed*ELX8Y#pfy(s92<8v1;vKT1Y=Hp8kb!Mc%L6ems2%`-O^SDh^Fc{dS4cdWkZ-
znYFglN>grl6>dFR$)i+!sbZB1Mpp}dS2&^O8fC4Dbt*Q}6<PRF3F`$nsQgnxrO66q
z;za9%3^)ABzGccLiffe3f+QEdR<^0wuEM9n&pxPPC%b?OuZl-qd+t*4H637wvRk5j
z*^^?;j?FnxsJ!IO%Ae!Xbrl*rdxrJJQ6m4sVDU;Nz#3DnCGmqQLMp;4zEQDXMTA|T
zXu@9Uo+lI1qbg#eP>icEgqwmnw!Vj1Ew(0O?9uz=zzFyMt2m(IVEKfaZF*8K6HDhG
z&D8Fye8<|OjhvdLWdRtDNR<CIc3i~?71veVP;pYlDHZ2b{6t5sZ#~vO%_Sgq>h{W6
z72m7YUt+O-k{t;@sQ6LE&3Ah8R{;N3X7b3M=b5VFqKZo@er7{&RDNZ7u3JC$e^Jq4
zgEDKK)oQsk<+6$^Dz2*dja@jTa4cmLaH_esY{Ksx`Pmot^5r0FZ@?eIc~UAjRoqhX
zw~BwH9dE0+tKy!DJ8Y?C%Af4W@28$vY~8HybGX=IEx!Gwf|F`;UdRKs=FXIbS5ljl
zPxzM&$4mmL4^{A_oK7FCUHP#JdIiNNY?lV<{PFlqMJ^3ZH8j(ZTSFcVl{Hk+kXJ)K
z4W%@c){tLA0S$#T6xL8s!;A^mWP2sgxLwKKqVQkaifCy5LP7}*MR`cQgkpllHET-7
zC<kzUq`jnu-y0;X>zH0fLs<<KHQx1<avJ#ECmK}H_$nw)r(3ne5?1Sy&MK{>SwFZK
z$g66orlG!u7c^AYto;~S8A)|D)X-2<LoMdHQK_wAVKkNftN1phj&Me~fLu=lH0<7y
z!Y__?Ucpx?QW|Jzs3A#%Q$vD=MjBq!;Lvd3YlW{7SwBVBDct*!sNvXlWz0r}KENw=
zX=qV4!L4CdQ0aUvMbWJ9c#K-DBx~qbEj>k$q_JlG0BIu8tcxklHN2#ut%i0QQZ=M$
zXr<w04e89MXhNojEM}`AL$jXm^9KmMmmlwC;Iyr!hRp2>w~nxhTeE~)lr|b(VO?!e
zJX@4kHH>ST?y6sf4azFwZ>aVfI%w#up^JvsnE%d{(4%G@HLlVtrI0}0NyCzf*<GCJ
zU3tcJR`b2C;r3RAd;Gd-=&r#xF`FOzJvFK)*D8Bz=%wMfjuSe1Yv{w8*HJ@9UtXGq
zJ!~E3tYLtL*&068Fi^uF4U;rX*6^l=!5ZGvFjB)1Y2~3B-qMh*S^EhY2COddwgx)t
zFb(gp1xuu-j#q|j)*v=Q!@HWbLx!!)U)f!{SlfP5uBD7()rFLC8pdlFtyv@C{;erv
zq_)Ru=vKD?t9^ooiJG+|ar1KJ<_?7}$F5g=xiUq=RJtzn=M}9}`1RvytZ)s}<?s(Q
zKF?J+VR+IcorL|J#h9t#V-25Z_()1MOE68^f(!UP$0?i}%$|@wN5fnVn>1|J@EP;b
zuw26mjT>2&`E)`JUugJT!vaxO^3M?*)(+A|oI90CSj-mOrOaESkS`IwRKqeM?FRKM
zTql94T%A~{VV#Ec8dfoLf9h(@>d|WiNxmcz&N4GfXV@T7_P&i8zS6)u#gU2GbhfHr
zr*F})RYO=qM8h@>+u7puz>K6F8g{bpbGENx7t8#$!grVW_cZ6ytREv^Yw&3BYEU)s
zp$Q+IXml|CLwdpdItPln349_+<c>1GhJXhBwe&+Dqz37$;Z*)RPe|jxlPgWy^rXv0
z=~QbKLqkkMoCAwri6taZe|fQDKJPdylpJ=JI_dQJeHy;e@I=FZ8un}4Dv8S)uCSld
zi!_|o@I9|i!y)!lHmioi(nd#_?e-K7m`8YZWfLaVPUjhmd6g3ye*U%DY3V*EIb?Yi
zhEviFN#-6(Kcj(*Aza4!LBo$4e$nu&j2nEUa!$if8qRYRTCZ^3=4T-n1UYE%=MOs|
z-LG}~itN7^HU5{4^@Rimj+R$7{Kg?m!=Ef+YQpat{?Krp_0Rp!^z%G<DBh5yTOzjc
zr{2`8dBTLugxgYG<P`5}xToQ<T;qMQ<bi)l`FXQ@Kub@`-x~hmxWt}VKjGnX-=1p?
zM@)Jo1_S)54_7I_-Rk{R!!r)lI=DS4myX;z3h5}!-d!XikB$O53hKzKgEQ@Xy7ils
zA-|AvU9B4;%{a||T^;}x(NSDS2^~ds%QK7VRxOp-mU4Z)V(d^HZ&YNoq;9R4u|i7g
zD5ImSj&eFG>((5jyp9SwMz^TQ5v-z)@zK;ux>Zrr*IS#Zc;1rtdsop>RmY-b3hmig
z)g(6#3pI7r(lJ8EyE<y?sH3Bcj;=cD>Zqq9RY#f*=%}wFNrzLnzOws*4ld%osH1_7
zhPqWboI)&Jpd{#MB+>52tMX4pc@~Fm{XkCCt!H_Bi0RUy=$7|3mEyTs{^W!vQbox+
zQiL?tt<8a4L}I;h1mJ4|v~MOyH5YtI$8bGm?7_<EI$G$+(2=R*YGG@VGqt^S*UQq;
zQb$J}opiL)@v@F~a-!B!HkS4k9c_fav@?ZKhF5j8)#3H0rtP$DrtRedJESCZ&_R5S
z)v`OCq_b{47GYqKIE&y2|GJKDI{NDvprgBvH+1Z(*O#-n9=i2As~3lT9X)kxOs>%=
z!ToB_KCDllHPh%T<o!@8c|RS?S1D|}L#vd5I<j>P)iFrNn>q%wX~rwtqp3r5{IpEr
zo<`1*R&P??(($%c57@L;8OHN&OL<4f>efB))+w-icZyS0_`!4bjv>hj@97w+V}*{D
zI!4h+bj;H6v5ql1#_E`$W1^06Qo`|qo%W@^)TJkVhJH9n$7Fh}j`w*~(S#{Fm^nXF
zW>vLrEgiE>d6wxqKG3bV3~C0eaN;+E)&6@5!-u-{jCiJwk8Fh_>L)s8>sYAc3$}tk
z^;3F?j(Iw+P0XI7W3D&`^FKNj^VuRxt-9jXao6bQIu_88wpyI^xk$%i9UDT*Qr%iO
zTEg;ptk04pEwx6HWvo(q)F$gT#4o*bb$S)+M@L9USjQS2U+UPQV<)?tj&(XV>i9~>
zdZ_^(vO&sL>cuLYj?y3a>gXovlH1wcb}O58Y!R|m$2K9{xL9~ZPbSe1R~@yMUU%v6
z>(-Nt-SlU<C=V}(RlUn9-idkzR2`bs4;7u>QrEgw`E>B5UCt^w-wWsn@{kG24!%1u
zL5b*y>Nv`|MDg^PjyN4yM~)7IHMv2#6IA%>E=iru7VgopU&ptSv{%PIA>VM2*=D7(
z00&qJd}%j5;fRid!WsQe$03^^7Q$s=-b6kxmvD?V6G-J#09NKn9jA1>>O)%}PIExe
zQQC(xK5#kWtd9S5Jk{~Njvpk4AK5oq4?51-IsYW&yx;}FpLP5q<X6FqIxgwBESyh)
zuW%F^ZmqnX&6Ssd<abHBPoEL;hmPwyZV108cvJ9}AnkAKxMTA_=`F(f;F5dVkJl<k
z1OEQ{OSjhcAFzW9A^%6mzczoU<B{;kf=_InPtcy}$mK&(ABy>q+lM@SKc#7UK_8B7
zQh4Le>q9;t^83KeOYJ{QE#R}>P9o=)S5|C?nUxFqkp4n?VIPVJ={B(^qda?YA4>VG
zxoZg@>J?5XDae6^oCoHglwH<`az14EtR<uJK2)HA5Aa#DzKT9n^`V;ZN<LKfS%X*=
ziE=LIuAW}qhZ;U`-L;MnHGS5vuv$Lre!(veabzQ@?ZdS0efas=HmXurEUTzWeIH)%
zA;o8T4nqSU5`9SWp`j=Vw%$m{i-Hb8ZtQXT;1bU7ttmqCN3A^@Zs8=!LcVQNwXqLP
zd}wOxsXjCl-rQDR62k9Yr`bxn4=seZD{g&BFVlxCA6oj*%7->SyyCOAtiS9-Ya!%(
zlkqund1}qd0^Bt;Z)s{fAKLrS-G|Z{NgaH6&4(_mF(1PBlj=>b$R(+ceEF!W(#eO;
zLR$4Hz$jlNdEJL~Hyh5IP?-(UjZHSHBKK5t6W1FoK)1vmKJ@gVmk+&ta8yg^>q9>u
z`uIRk=02#Q-4puztY5O#rYi$k!g}cgeAY-y5<HSRh>bX1dDDl%LWT%Z$rduyhqr9y
zZ6B&n%4X7VA4d3)%a7cCyz9ezJ{UfjK8*BXln;x2SmLvm5J&qk$%n~2wM40m^<kXN
z$NMlr_(Z{HWvp+BPw`=@4|9B&%LCgN;33m|c;AQVVlz|l13@Ou5b~iQze3FL5wA<4
zAN#CNntvjEwjk|4Wl>WTXh!~-4-0I4o{;%IeD1^f&I#AVV4;X#2r{chLIyI)hh_9t
zi7xkH1)HgCuFXEI^kEg-Nc5bp2|UGWdW#gJTZaN)icWE@52Nc<Az3fV23z0g!&kyL
z$ss%=D`blgTP3>9hwVP>5QFFC-|53HA9iynkkWoFNgf}(LU^nyMEidZd2Z?R!S6%B
zhoB_I1Ve%m!LScgB+sZsS=250^AqD71VqpAVUG`g_;B5ay*}*o;V1_pAHMNnKRdV_
z^{o#FgdFr?b85m%w;CpNP8c^-VLso9en@arU2Bc~i0}(n^B(u%gz#%Vob=(855M^E
zE60By&WQe_V8&a@Ss~vG{vgPFc-7~G|HO6_a>0k6h49*0r3}w2;i3<heYhe?mwXsr
zHdp^!4Oz&mqHM~a|2HAO3o=_~{yhI1KHT)-i4XtrP9&-KefUdS;kFNV*jV-<cSXD>
z&G-DItVWUtKKv~<{|Nr;1M@f97kDVqM}m(9FN>c%6>go~ZtLge$>T>}Ki=@8hadU;
z$nS^K50~HScLn^Y<VR)U1^p=GM`1sT_)*l4@_uN=`_QJCq<V%b#r;-KDIrKwQb;L3
zN((7t>t+2YC;Y3j=`>>w75u0unUHU}nzxD{RsE>pM@>JfiOzC9FKTs(^4e<&dBKkc
ze$*CT$B(*x)ML&Y3&1{#8P>P?(9Q`Bg*Wo!ML!aR(||7O5T5w|C`rQKJztpyitv~G
zNEPDtTYW#-j}$)|i_*l8zyEDUOI}V>KbrZ`Ty&PRSh-yM`eK?N>3+Q8$E$v{@FT;I
zmVVGn$5pWWA=8g6+y2LO)=0(B%8!@*Xe~M|zer7J<Nsd|9sHl=>TM;dogmNK-j5D;
z4Zr3`N1JyN(%FwLLb}@e>wa|eqq{_TYhz$0J^kqA$0R={`_bEvK7PFI$1p$o`q9si
zA#yIBy1yTTY(7B9K)>aC&rANMD1!xA0}R>1hYG$W$bRvTAH)3^>&G~j?YF!m{QOs3
z%jI~Bd6zZp|KHFt^0|FEEA!F9#|S=m>G5>P%9WTj!EX%?BokTxld^d&Q~a3f#~eTA
z`Z3Lq_x+gR$A?nR=~9y)`0;J$gmvAmVZ6(v?3sRi<j2Q;+%21HV!2$i{3u)AI_co^
zy@{X5NoV_!w!Xlp!oQIsedfnJKNk71Sj72$G?F&uA)kw~z>kG~d?EaK6?yOGUc#u9
zWQ8A}4po-1PraqE7-x%BS?<S%D=8FL`msumS}kt&{Mcn_SnJ0+I#R9rZEMwEPh<MY
zBeZ^mjedOP$LR|=a{-%J8-9#FfH4QK#gDCioZ5@id$G-r?S5Q};c^T+{Mbov3~;|X
zcKNZJWeA{X0AKsz@xx^0eBtm4lEnQ`+247Y*W9`vep~kmX>lq!ASCEVNJ!X^sE~*t
zb0}TK852HaQZ}Q8t$VzV96$E>u~(FXetainpC8`{*>78Z>&JoT%6CcUXE_h~ahQ$e
z$2~ue_;J*aJCb@#@E1RR_2al7Cs?G~&XcSGJD-Q1Bo^SbAAbdt&Iq0r{9f<}KYsM%
zobaF6Nrjvjr2X0}Lw**XwI_+ui<0M6KYnAa3cqZh<q9*&=j4ePeit!io9mj8KWv-p
zLT>nRQ^+mB+ji=YjjI1?^WC?d_k}<4<3AR_j|Uuc?9@ko{Nu-y2g<*K4+R;W_qtVp
z$9~jV<`{5Qc`Ej~0#?gD6Yg(Ry?<9%?f^HFJMxI0S1_L-&GHK=5I{j8g#-)Rsf82k
z6$>CR*3nq7cmO2=C>cPh0Ori7<_Ms)=#>Jf96*@>%1X3c02PGr!14jCpHzs1p`wUu
zb`-24q@iHd0ICI$y4q1afSM%bbCcHy;G^jdl3D={<5?uN1E>?gr+bvTf+Y2XAb|Qp
zUa<8BREj6kAi*v}BOxyaF#k8J7z~L4Bn99U-4#HC`HtiO6d~kpo_$g_Ns1V3FOr*w
zGzp-oM4JVWE~L32lU@>%8bF$@OdVt$a&u9^%mA_ico4?lVYCdORREoX=n}-s0kjU_
zasXEXXcNFI0nB6Z0(g}z6~M3n-U*;x0PO?l6+rI*It1`q0B?}L@94cgvG-?=jsbKE
zKwszV96;9qUKidafZ5KpR@ZuT3!r-dTQbv%WV;{rN~77KhFQcO0rcdl2RKicN^E&Y
zdGCOuPXK*+;S&nJ9YDVT`Ufy50QH_SAOMDe0aUu@>^L~{--nJ~Ez{0!b?!<^ev{)#
zQu1KIA%fWf3>EU0;G;UJG&r-#$^3^0Fd~3y0lXi;y8*lx!1w?r1Td2PfaA3)$;43s
zyq)119pHmJ*BHUE0gMw;droeO#ED`*S@77+<Vh^v)#Uv-$x{ND8o<7~&dfb-;_qb>
zrw8ysfQti`-_8*GPCq$#mX61hvJa%q6y+lp<1_axL6VOH_(b?@!A}L}*r{^^_{`>w
ze^EXUU_k(zS-k-)4B(3Z76-5-fHl*c*()830{Hcgvipjo@rRDTv)xMrSP{U=0G6>?
zce!5Ll(am6@)KSE7E)G82{-Z7ucoXH;KGTdHG(8x2C&xV>)3;YZ?Kh(0emIAbnZkN
z^YBH}Qnm)LEr3%2oDN`n06PMx`;Ti(pNySskpLdwN;(<9ZVvtd91q|`0G<H6?B)R+
zpif?PsR4un2n*K)bwOVMejx!tS_awuS2;)`qT~oh1!ID7K|_#crjW0Ga_kYZS8$);
zH-fa;A3%=<E|QrW+&N}4$-w}=lhi|khXs!a9u=g`F?vXA%XsHsj-`9t-eRfbr;gVB
zYFM)~0si#{ehy%jC+YhDehA=P06zurBWwGyWBp?Xu}7DT1)pY|XAd1z<N_P?eu2KF
zoRJF24ZpRzSYq3jzpyC-cs9dvQSg!=qtm82uLkg2051g5Ac)@sxE4UUAj${vM*!D3
zmIhHMh#LXi4B&16_X4Q8+I@>{Iw`w$M&H{3+zH@mH0@8pULE@_Y}v2EvX=J)_$z>X
zLCbF+a7<W|Qu&tqNdSKb@DB&rTW%^0|4P!s03HdU@>s~igpB{h?5W_h0CEM9J80#@
z9P$KlBsGhfFys}HB!3W#uO}4{9DhCO#&K8SAhOOm4!-Uz9Ym2J|6#;gG>FHCoy7!;
z3ziTpDOgI727^9#e0EJK69lnr5WSigC8-cZ#UQE#Q8kE4L12!fa?tu}^omVMrS+sM
ziu>s;ceNm@2NC@zSG^!=(5z{*nnBbGVn@@g)_*%|2Qle%X5AouX_ZkYh@!{b&iQFa
zN4S@~n?<sqi4#GrYwWBa#7pIi53AyC7(_x4O@e3|M57>H48j$J5=6JN3P-S+U6LI^
zBnFWbMA;Wo$Mnc>1~IQ{%fFr`=YN#-^_gUM5XnKL1aW$1pAAPG6Z0oFbh#P_G4#Fs
zY?NW63pER(c@S+_fy{Za!<*)QDTve{N?je27DS66GJ?1~A~`*XA3k?eY}H7~WR(VS
zRCADb`@q@qITw6ckV&nBQ1>b%)wT|KH3-&E+aL=5Fa&!Y?Sg0@gnv?Yham1f&g>Y(
z$rm$TqvJj7K|;M#5GN*OlXMN@b(TMbln}ZF(LIRkbiyFs2%<+2=YzNqL{BzN5F^+M
zLG<Q@OmOrGqAzn^pXMl;c&%bHez>onl&XIa1A-VBM7+QIYCreeLIwr#rVxsQg$xNI
zTgXsbe=CTt{oFJdCdxa4!|haN^<EGogP5??@nI0(=eQ1xaJKr~F)E1BL5vAvY!Ef;
zHfNYBWSro5!3lyB1t$qk4q}RsQJdV)kD4aY_XVd5ejqqQa9(RS+i_+P9|ifuAFeaX
z$3d(LVs#Lo1Ti~^PlK2f#1ctj>RcfU=+(9|FNpaz|D4WNz8TFHit>fvB0F_4y;@0Q
z>QYgb2`(30VcV<>;?8Y_Hfw_TlC8|XFG*{I*c8NO`nE*Z3vLkHD9A&;ViR|8lWY-X
zXArxB*eZORZL?j-4#A(>S;o7CtAbw(dIY^e?0jmKM3bm4$f%Fke%3(}3?dZ7VGbif
zgoB8P!MD7|AYwu6m1tbhw2w7{$o$7TmLW&PJwZG#29<rHd=tce+kV%;6zT^gdN7FZ
zZ2b_&)#Fw^M{VU)5XXcc7d&C>Cxcj2(Q1*?L7WNVtmr=qesA0SK>x4hq7B2jAbt}4
zjMU`M9A|>K#4gOUUvT{z#6`Bk{Q~`#Bo*81_-&`N<dQz$K5z{AHi?7S6%I`&9an?+
zjkkaxmR}frjpY>bLD`;+GLYO1;uZ(VAf5zqo6Q}>!yq1UXbtkggyWwe^gWKd?0`Ys
zXV-3?{5OY@E4fJilIR1$><7+H%bYtdI5MU>{^fA=*l}@{>-3+wIFYMd-Z^t_%6~yT
z4We)eMM8K+7hUYm6~eWHNzZ;!uHRL1hcNATXPyx9hLA6WFN$T(hI`CbM}FZ21Pcll
z60GxX3T=vpP%MNBAyf>ZRPEgSu~R&R5+RgiG=#DtlnbGB2#z%=d;9e&6T+BESvMzT
zo0YN#u1TSIVsJlVd7gSr3YC|#+#`lJ@f}I46hh??s)SHA#Mh=W7=AjdR12ZHL~Ddl
zF9d{8Q=+wOo7y4Nv3cDP3QW%Cf%QXpLBymG8VGq&u%TdrU?V{q*OWsX5>1o>JU_cL
z1eb_P2yR<{epKTSnuM?_gw-K54WU^GZ-mezgytc<6hcM_nIWWxP$)}D51~cKy0xW+
z@bFK^pv_J;%}<?^ziaAV*2<X`Ldy`khVXib+g)(-q~q-kj@LqXnPYX4#MXi&ZG^lc
z_-Y7kZM~h4_JSRl|LQavcMO4<Fmwu`v(38*DN@AsO)#lj2(R6#_TL#NdG`=Tw^K-Z
zhR`d7Wg#pNp?3&<LijX<3%@$|mU8zEp<f97d0o4bGAp?TgfK9Ku_25LVNg+Jkl=eE
zyeVXG2tz{1ex6iRc_)OS!ru~n+t!B(sn8{jISdbBghb!9Q;VOfLw%$~M+uG=91}u9
zuNq7mA3~?n?r9-Ro#mP!NfQMp3DRJ42vcl6HH7CGz8}JL5kCmwV<9tan-7J|4B;bN
znMDtm;(a2@Y+Gjm=7caegwNP(w4?<gEDT{@2=gWSIXl<A!qmI(aS*={ad8MsLRci6
zV$wt>aVcG^Zc!43qyHt*D^`T?dx6|5=}Vc;Z@)^~{AbhL%bjaN_%Z||3^R<iA*>7W
z9TwaQVSR`Xlo1Lc9KyyBz6!w`f*Qi65E@@{b?%hBo2}m|d2<Nk6O}E3TLrfXZWr7k
zxHE)ZLTLFYQTaN=ci)^I!Cr|9`P5wQVZ{<Pp02iwK^Ni^^oI}-5)@om%1MI<MpA_S
zmf`v%glGscjtmdn@esZZ;ec>M&=kxO+!Mmy5cUZl`Jek6Av|iokYnqT4u<eu2;WQe
zkl+d1=5Po{gdeq)V?vH|ESl(GCMRwEl#tUQoUxU&Ap|#AHa~>$qlo81_$7p2h5r=7
zc_9~U`=2@VeWTF+qODvNaw&w%Lax~Q^K5@(n~HKx&~w!~_BwmI>SDOT_Bxc86OXH<
zT(?8G8^XO1R{Y?&BlxEvZ!z~d&P>nzJA{8i_$!2JQ!|S{>+v9jV|QA%nw<SFJAMf7
zhcWwl@}m$Qv!8~M8OD<k{-bdi)x&to!9RqeVH68vU?o>B!2*K01@j2z4I^I|`Gx=D
zcQDYHp`a**1Pcom3G>5BP9_x(qeK`LMP#(3kg|fM1WOB+31ePK%buZ}DCGq!gz@IQ
z|DC0hD3t}P2v!wrT-#kEjGDp|!>A>sUKkKkTd<B`T|wr_v(y(%5PU(ffndWh&gHj?
z!O%#Q7X=-HJ-%@!h2a$L3L`m;6yb`XTafkBSV*%lnupOucvHds-&oi9lJK-J(!)p<
zPO)z*>x?b_f8#7J{)91rVi>K$csY#M!{{b9t;1*+Mtk9H1YZ$+Rj@6~P}|K6J4m#%
zAfvAd=_uGqu-I=&U4(QM^q<Z{GluRG?Jf9*U=P8bg1y2RH}`+-)kl=Rg8c;hhjCb1
za}b*^jCaF$PxQfIye)+J4-t|rI5dp6Y<<rztGS0s^qnw<+xmzwF5a@PXk-|p!kBF9
zqlJtY93wbZa9o%l5c{9!Ob}(F;3OX2R$)F2Q$(36I8BiCHa(0F!k7`phhc0BV|y4g
z!}utS#bGQ7V^$a+hw-@>e<H|y<_eh|#;3M2N5}_XSyl9z@Ofd(w^Q@pu=E8IT`2g4
z;3A$;JY;DY%feU}#(L40hp}1+k6IyQrQoVC|5n?|YK@)xrI59}ih!kWu=P!0Y!v>L
ztvqk&%@W-rxRv8TqhubnBaEG4ghkvH#_llu_EBGlq1oIc#2bdnTaWPPC)I`f!q)VF
zxiJJp2?~Y;)zf(*LYNvA5)+IIvL15Sd|~_^#<ei^hOsY<t6}`c<|yL+CXDaGI25*)
zJN65H8^(d>(KE`yFtVFjKe`WxaU_hN!Z^<y-gejh(s5L5j)ieNj1$6Xb~cQY!cW=C
z=`haNyzb8Y-wXf2R(=$6PB61$!DQ2Mfqm_5_sUW3pKY68g#1d66>>@NvYmQ`r5bAe
zoSf3t^?qgN>NO6oas3gte!Slg<F7EThjAl}n_=7v<Iga@FqMMOk~SC3b32SX^uR&R
zJH6aDo+gz{bxlZi-VLL}M#nwo8E|a6k~BK*m|s4lPeW(Vl0E+k<6nAj6dy(LFpNiG
z{1Cy95j^JLAI6*r=0@-z8$FDU5p;^+Ss1w@c<-!|96{~~@<dQC0z{Bk#KI925t1*0
z{6Y!{78EQbc<NUN4`(PELHP(OL{Kb(;*wM%f-*vwS~7xCHZLvYzq46og_ILq*x1U1
zA^$IqiV;+bpt5aWD}pK!RF!D82x{1R^$5C-v(8@AR!ZG=F<M)qbt0&1>&ds1>f1a~
z$O{oPu$6`pBnWR5!HYs1Hgav}d8v{_aYo=0q6jj{Eu{RzV&o|iG>)K21WhAo7C|f9
zrn!(75xgWM)z;I5q(|`eNB^tC3{f%#vm$6IWZF(E_2md!OSFw(y9izp!lYLtXlwIN
z_B-1P?_evhMX(@l<<L2TE)k3qy=w%oM=&~qU&4-Vq705;NCe#@ctfH+1P4UWQ%Ent
z-h#}kPXv91_p_D$5sduee^)Uuf<dCcDaf^S9>S0<(cuvcwU2r$g13bavz2#*^iN41
zVJq*FM6m2)(nwnwC4|ZtTNx{4{GFun5lo0+Vg!>!nI6GpA@t1WWtbvls^GK;-j9Iw
z!z5PG2NBE={-NN<5zG|A)Q=*VW%KGY8hv8(*%5qdb7u8f1oI;JCW8GDcse(mAHl{5
zzKY;;HbDdnBRFwbSsuZP2)>A5kwh0quvEwr!2-t=+Au8RC9JAPvND2IbpB`VdG(5J
zJEUAXqO{4IygCBnnh3rWLcUhWI>Gf3Y!I@iRs|+)iePgDY6MyYTO!y>e`E0?*cQR|
z2zExWD}qpOSDrtdJ0ht5IJKBMWY*Y}kK-+ONAP_Omr}52@h;ATb2GdVke}?~d@>@L
zr0?WxJpx|@(FkG@_{BI7L69!=Nixm)j7bhf5TOfw>I_G~D1$mQYv!}2r;;+_Ja1x#
z89`12sVy@NnssPaWwC2d1bbQY&zkOIQ%=sl_cV)Uw_`3UjD8!z0gf|Woo6CA7{PZD
z9F-`QLlGQ~;7A02pD4`eb0m3oqVO@XIW9>jZ2OZDoDzQ8R%m&aSHV$Ha(JG}xd?vZ
za1=%5D9%T4A%db&6pP|#_MHf>M{t7;x+&?`2>76_#G1sn$Ga~^aET+pL*=p{$(0DM
zM(|q%zuU?m5nQwRhld=``OOG!MNlw`LQ&j~;0~|xpyQti{*2&m1b;>FfCFsZ)L~_s
z-;3aW1j{F9dnacfo19JM?+DDM%1dw&`Am&T|3>goa(KisKZ2*c3rO^d;6vXKX8ufg
zuBdgQPCr#3<`$kukkPzC@<owfNCCl;qn%7D9L4cnN%f~#Yg|R5NO>(K|1&qScoZd~
zC=*55D8An3C>h17Lypo>T<Ys86-9@a3-UhLqJK)kUe2?563azVA&N$?y2?k<qm8o0
zm3jWHLN_O8SB!$Vb%v`-6jh^eMWIAdEsE+<ycmTeiW*VWjG}H7^`dxG&s{5uqc<E&
z&O2*Mlu8{T>q;qzqWykHptLg~iuzH!5XGF=l2=Z4H;5uDCAnyemJOrOnr4!-V2z^I
z9HUNOXJQmN`JG8oG+yFpr6=*R=36Z@oKbW<kX5#=%N<2>l&>maLKO3tI8ve*7e$p5
zO5-S+M6vkor2oz(HI3rq^J&eZXdcB&QKUxEH;R6|FDEH!QM8PrmGE@I7J?aqnJkzP
zT3)}L^l}ufdEO{GMbSp|c6RD3LSBuct&m5@l6Xja;T>$7*P>WZ-9^1~6kVd|DSB5s
zwR;q=+q_#8?_?>oWO#$kVe2OwXZ8}_+gAES;cuNqv;I*Gh+?Fz4~!x^ilI>q66H<7
z!FK8pA)dJ7En68L#oNM%*~&XC<OM5dh7lsZ8^wEeD(~Z?gpU>+BRJMhW%)U|8hO?+
zkr(y8YjPA*qL?HN`ts(iu_0Hdb%|41@<PhAC=y%b-%&R4{V1kKk(uQFAc`5RsFumQ
zzfNAJC11*Ne;7s4DcSCYnX}lAQ4EP8JBCl9m>osw7|O)(DIF;amCh5z+$cU{yGOBv
z`IwG*Q7nq$POWDDD9ZdOK4;ER{1I|3jN*$Z_7rILRuk7tWn1#j-Y#z<m)Z^wbi0e^
z9)Hcjp0YHGWl=1TVnq}cN4Xe0QLJPqiefdDaK`#5Hbk*T_?Lof1(~!?NV7W08>9G&
zHTh!lc0p#cNeGqAQEU;u)mF9%nSOl;Q+Ej8DYz?&-L}ow%z2cH2Hq(Cj62AQdKA7W
za>tM-20!aLid-=?7~~8_5sKm&`_6~fLP|J_@1yu3ibxdEC}L4-@n>%o`-H>=jVMeZ
zIf8oxX?8xL_&352MR8cje!*{}I3VPpAT7TW@}P^G{74ihZT)Bz$AllZl@n1cY?nea
zhEq|T7X6H!dREBq|0Mkw#knYMa3G4}ClN12ahZ1k+wubM0>Xc>m0yKijN-}qr04lx
ziQ=lA+Gn}rH{rhvUK9MoPQ5O~@xXmc$iITO=|w{RjN*Y1W_ve^d&2MA%3mBzWL@iT
zTlt5@{>rL+hKC#pMSpCkK8fN#n?L2)@`8(IY^<B#DaVhwxT7O)3>?*)b#|7DAzuvn
zV<-?q!5E6hP%MT*G3=e1S#wHuha-JR3QM$z;G#>8;xUwnp=1o1nj`U*l&KpsXtSws
z=GOHYyLM)9AkBz6%EnMGhITQukD+`F6=G-{Lz5UP#!xAS+MhUFF<dO2cw}_F$}v=7
z8H)C=Dp*gjS`5{NP_H4RW(>82)VB3HLh8n_s!$ru5JP%HXZ;vn5WRt5qF_V81i?lz
zyeNc+IAU0P*hRvSB%(8B-O(6TVsOW>bF$;^Mn|%clo-EilEg*Yxsx4DV_2HknHfV?
z49#L_9>Ys9q{cAtU1vrNX)H+$En?W#%<aGBOy2LTywdf<C?`|NiJNCTTE?t<VyhTl
zj^WF0?(KOKTgR~PbfGpeyb{B+>?WJXRE_6x^&HydRc1c4Nn63mrCsD5Vt6fvPBC<j
zfvboeS%!xSZ`1r8?MZXK5Oa2kVQ>s{S0{4QTGtp}kD*%(-C3}$4qj0|A#Vuwh@qzt
zCiRM;x9~o;(pLy~%kZfFF$|D;7$`VMkouc3%-?4j{Bz#%T3gr97~YCuLyTVo!`m?o
zi(wuOVt6Np;W5nSpc=!77`ha7PK{w&4DZJ9UJN7Yc<o(NSQxK!R1BkI);)Sm43mYB
zkBwnm4C7;%U@J4*<en&elCAjL<iA-y4~>}#HwC@V@%(<$2QkcuVLFTPs>0B0O7@4$
zCsFw*hFLMpjKMtTn7h|Sh2i5E`VLQf&Of1_XqG;Q_SYPr$yqp(&t+wnXhyO@cUCZ*
zpU1F(&Je@07#7l|v~vm1*u~lXqT`Dg7R9ib9j&QrUgJjmE&pP{Mh`!6RKBGwk6}d&
z>tfb}#g%NS1h@B6@>+Uw469>U6T_ezuFMfmbx-n_HmAb1{XUnH*T?u72dB5G>q6bE
zuVUB~Lp%l}hRrc-i9wIS7sFPT$CtD%hV3!yj>)I$JJ?<^?52Cud35)8KRS1@V?J?_
zY&@=bV%T+bh#Es^L57zt_(LCto@3GmJ2N!8*#$RK{k%FF#1M|*&pe6479|B^xUgU8
zdm$I=oL!!~Yi4D+BQZo-w^{C(Aj$Nt$z}{WG5j3EFEOy{_ORW5Y<MPy8+nwybbE?1
z?2qAKLDwe%7i;_57!F9a9~3;siW0)4Lopn-`H>io3NM?gFzL9hpAd2~hEqaL+j{y5
z7k%Jt4ByA_LkxW~`u!NgxtO(`hJn$aSdCiJc|np3LYTxc?N^RhG1MrUc%r`h*?srU
zJ4t=_xUaAS(jQE8H}P8xzl)Q!GjT13Kj`yM8-)y9=Vfw$HBi97%@}U6Bgc^%$L$#I
z(Cy<W7RR44+>PNWJ3f2OG{-&W`Lx=ecU|{m_$$V*|0O<%;qMscyqwu*N;aea2xs))
z7#<3LWGjz_Jc;2yTj@NlP_8&~$1!r2qi`H&COGoMQ811|apaBT*dk{>!Tf>+1Su{U
znf7Kznm)*yGtXX^t4JI_)OU@WlAZW(YVkNq#L*;<rg4;vqf{KF<0unH*P6=M|D3aa
zaW!g@RyK~{ct^!JD#cMQj`DF-h~w$~<SQ9j)261Beb0G2PkQAzs>IPSj)XY42wydh
z%puM(2VB)8T0M>$anuyf)Otc{3D%CIj;+^?<L+k;8o*ZS$MJ&A8?aQrD@<Kd!QChh
zcN`=PFA8zQk!UMPLY#59Y(<IVpAQ_*?UO}JiKB5G|CY9L$eZnYeM_CPwQDqsqj?-g
zX7dgM5^HaD_&;){#rby<xDdzBakPjdBaWOn_QY|tyDKw}jd6SxM^+py<7gGf%W;g2
zV_Y1q<7gAdFgioSlvm<-HIC2vxq1t>73?I~E{^s>ItacdNXw2a*gXeH=Qz6XszrZ8
z@O9g!n~?5tJaf2c*+Zf|?bKep_WM>2eMIRSN544w3x6|?!9oVaG0?Uj6vuqYXNV|o
z31-`=L*tl`Xr1M4TluhEF-G5sV|W}R;&@l|_w3YiTP)*|ag4H+(L%<=alX95r15cU
zlCUU_#mqU5iE&JdV{#lb<M>FDro{1q5SmSmW18^yZDo2K#d8!UG0ceLLtBs5?LW)r
zbK>||_$Pw1ZT(ZW+I4H5FqcJ&W1i>>1n1i}pT{x#RVQs0+R7Jke!^uSl_ha36>)7G
z%k0!OaV!_U!d6zsvC8JF=~46kH#7M%4rb1L7}mwH-sT&G)Tx>}JTYxk9G*D5acqub
zOB`F{$W<|UcN}k2OlH^?$99|Vh+}6QyCgb)N;U%xzP3|WR7zIkXtdCw#qr%!*J7?k
z*LLY~_~O<b*&jzJj<E26V32+4%Q{SoJQv40Od(OhSR8R7hMnq9wDv-e&Pm(Lab|Ge
zeQ|ta4H1s}e<}Opn7%dX$5&kCW;ni$<3Jn-<JJx0OdJhfc6}Gep*RkULh)D}M}!}>
zl~>j{s2`W;3Bi+sr{Xwm+w{8QI&1UqIiSVyqeRce@sq7{$0PGOAIIo>E|Op3_%)8p
zaa>^|zT&(X$E7%C-AKCMqIv6?DZHEW-g-5T-{QE#o=Xob+jH$q#~PRG_c*Sx*JQc=
z5WFtP=nWw^Ir5xIx+VN}92Ez-$7Q(g#xbKztG}eK?g_si$2)PQPiC_DMz05~`3*^b
zb5Ig;u$1%PI3C8~^f{?N67g{yPlWu(0pGCf8J@Dgi<nE4ZXOrKJi_w|=CdsiJ#!T_
zP{=@A1MLhHHc-Ss1p^fg6gBX|>Xc#ziW`U?b3g6tDq*1YV0YrGlyU}28YpF;w1I!$
zbW<!Vq>SJTvx>gB&e8s(mgNl$j5?WGDtEI=1}Ym!G>~NA>Uw7t!}6{d3{*8xO?Y(!
zb%fLqtSLyFS_W#{eB6axb!}eH0Bm00Kzmt(qJ0Aq8ww@}HWGYM&|$#S)^bRvM4K3B
zYQQC&qGG@;JXtWs)*Bl*SIe4bGBgvhg@MDz9nFQmWFXbHOcRoBU}P`rEExte4P@D=
zt%bA{Y$f=zfn&+lY1ziMdBwo1!q@Dz-kWG|po4*F2HrRDnt_f6-Zn7IKqmv84RkZm
z-9Yskxw{zXYT$JPGuq}a_ou?}q;>wo-rNheINmVO!@ytzLk#pZaP~k(F9W^VtPPyy
za=Xv2PkU{btB(P5sJkzlW1pj+AW45A1K5Z{2HE<X1~?O@LAHUR2HxVaUptCDbjM$G
z1_~r|&akwRi^@9&h8q}VV6=e|2Hs_zup}3IGU;)N-0!hjd*rTsV{p;Y?isUlQ6FPq
ztbvIJCK(uKV7!3|2AaH|pGmBTWhY%-N;;QrcJ;6CoNQo<fvE<jk9BaufA^H*z<aJP
z^D?>HkUxK>8~DJ$5(7(F8wNf!Fvq}L12YYLWZ+{1pBON96g-oadloC<L+cS<;~CD`
zJnu=zr<}aq9Ma;HGR^G@=5EHM&kW2n@P&az2Id?1+`s|@3#EZl#<*C4eB*#W3}4CX
z@>OcKexmE@z(R}Jp~A%qqsYXnnVcRhGqBu%*MMqZg@Kg@b{g1aV3mQ@>|zgdtzp-5
zr&YV8{L#j(zU#j6i{ncJYYnWUb53xqH?Tzr`33_U4SZ!_6R)mqy=86dZ8pG{4sLs#
z4Qr-U_&aH<SZ*`0-N2f*^}cLdZ-*#r{!HTGyA6Cz|2M!gvpc`tFpX#A@3QH!q(SR4
zHR>L>pO<DpH{fG?ec>oRHHl%&YFCi0v&PL(-ktmM_9T+9fe1$i12F?n4LmatXT=)0
zY~TuA!axpt4KHo6dyj#=^m7Bp4eT>;-|60O;9CRV2<NuOqfdMG%xd0mrTc(^g9h3x
zb8p|A^qo}lA%maQbsrWaIU?k!fhu`289ia(q=7T^Y6GWOQB$&?E_a_c_%Di?#^lUF
zi`_lXCVy|>2LnHH{7FpdrnnnA-PAi6%HAp2J6$P188~m?f`Ok6T%=R2a{prBl~>%q
zvdmMmc?fNuE^?orl6`MV_9X-V?RT#~<-Tg*H@b>}8*+iavuB-6KDM<bFZP-!e;A<I
zhu^wy8n|WPF9Q!)16y0(HgLzlpK{?t4?FG}$Uimv9-|xvm%DckPA>3@dtH*d=G5#t
zm)w6F_{YE_1CI?nIb7#o1C6I<KcpWncJl%&zMDz^e8M7ei1>9#-tUunX|-K$UIH&L
zmx<gaUNF(XL>?1)O_VcH-b6kV`AytOc9%3!z(he4MNJelQOHDL6TdHa7okBRt5cMX
z4q;2}C}^E)?TabJO_VS(sgRpjQ6o9!UZWK9QYK29c=xh<@^W_>6J<?woSMz@pI+qN
zywY94L`4%dOw=?{$wXxn)lK~Pt-FeeswS$L_!sUJm;0lnejomo#0`o$Ta$aOaG%_i
z!Pco|qV;}vT@&?8)HYGa#K(y#`*vl`KAU_tC+j^&3RoDIyS|AhE8J|>lS|!0r)D=a
zkzk^!iDtaCYmP=H93~Q($-2ZBP3WD{=vPT5dL_FR6K)eulMh!=GtEhzf%TSbBE>{w
z6HQDoI(=$31Dk`X#}5x-gI0di+1$iSCbCSlG?8i|%|wQYOcN|dnf@v1CR&)53*Ff{
zkS#+0SvEC$$JFd8%iPO8bF?z?vJ~J|UZ9CKv^242YIZ)ws&fX~e^D=MWL9$)vaMK-
z{Y`0aqJxR=Dk-m-=p=-^qmZX1+?`Ey5xy`{=_=%P6TQPuhEWNwH%#;}fgIG&K~G7|
zHZhbr3uivPP4qF**F--PuTFOi6urNR`%t<Mb`9W9-NCMfm7IfEv1w@xZ<-h^{K(_f
zA>`HEByX8`+r)Yk8%zu{@s4RN#jG+h+{6eIqfLyVpO`3>*Oh;#^F6v^E$8dklJ`t^
zj5IOIguj?;`&{deIo8BD)0!JBGcn%81QQD+I+4w7Vvg|1f*%S_5u7SGP4Ioe>4F~!
z&JgtV$h|R7?wP_r5}YOYvEV0yvjsmDWEqqp1?QUh%)~tU>bK6^=iKv6EKPGwU6%6s
z|FvmvJ^Wf|a)SpJnOJP{GeMb4Bz0%2mgGxq%aiVc%S}wrpR&TlHy7M1+1>6Wo$u`?
zvaVK3jja*<QgE%{I>AwAoEuH+z0MsbcAEIg#3mE>X1F)ACQCQlW+K+kxy8g*A>@bB
zT-%w{)yY&YyzDZu+r)JfH%xqO!o#dg95CTEp_+)8h?>yYK}-ZqgiQF@BJ8=<@&rt5
zf8BY<>;7qHT3x?`@2^#@=lrc^?y!l5A6V^mce49J&*YeixQQHkvI&F7Ud*L-E^M0C
zduKh?xDJ+Y9G#G|*Tg<vxQYGj%lnd%lX=fnPW|OBmN)U^icU^?->T|7NZ&K@vx#3!
z95Qj(#0e88O&l?C)Wk6p$E7m$CQ9d8t_ACzJ+?YpHFWV^Exv4c%EW0C=S^H-|DBt5
zh67GHMIGuoYvO_GV)$Oj4;+GQ<(!G1gg@Jtp9WoOyUtC`KJT$!W%|{`MH5%K$YbJ?
zob<AZE41I4Hm|6=;V36xm*C}3nv-!ZPwwBj{$t_~6YUo{Z-45{YTb-0#v8I+g(o>~
znz+TGH3vm<aGL`!>x4s=i9b!;<*7~l&32Uh@0<9G{&U^^<~NSfO|zUE9eh3KRGRZ2
z`ksl0CLWpK8%caiD6q*f?m^P8y`A@_W*>QwbYZvqKNC+m$mbwm4xX9Fm4n<l$dkhd
zsjiMSn$@e>Y;e<z^!1JlV;!ZZWjAQy%AbP*IVhNeLOIysN$X(@36xfzEbQYQ?)qs-
z3a28=x~CP*L9rZE&OwzN{*Fe89F)yLxg3<tL8%;+&Ow<Ra4qrj8D(_7lzu-tm1)^y
zZYJ&jE{V(0<#SLW2NiQrDF<IXPP(!_G530R<F*Q?D6MWgxcyjp?5LW9YB{KtgW5T$
zo`V{!pMAM&@+=$v4^!U(B}MUly}N{kB?kc!kaWqt(-W4s3%g5{Ac*8FVL=c<L6Dr4
z9F(9$L86jDBnUFOXQsPn7RjPy5s;jb@ZEX-<~#p$>fCed)vNrfrl%{ko$JV76ihBK
zUwPUg<;iX3e57JUCn~Wz&gfqf$7yTJhU(s%%EN_9zi~=cC#pGdz>R}$RCl6=6E~c=
z=|oK@YB>>LA)Qc|QJzd55L2B<cA{;%qxWLf;zXoa{N>q-)d`yub|)N89CgC!M2ZvJ
zFI(z3QP&B^sx6pUyM8?<>O1kd6Jwlc;6$nu-JR&+M4A%~ooMMqD<>K``C%7J)H#tZ
zJVP)uCT}dH3EQx)m1@nz+gz}P;5&j0>XlfwwG(Ze=;Xw<6D8k`$=kCE!rKYH7n8S6
zEc?Fj4lzkbcGLBIOsaEC(nUyD!ES=DhL!E<L@y_XIl-sv-XiQT*vE;(Y4tu3-dC`n
zAQSA=Hva%8vYZ$glMHcUknj&<lEF;&zoyt}`ACFAo%lEw$_?bhg?|#0d@5vw6C<7Y
zO!z1#M#n-g4YtxT>#<IZb7F%N8=V;M!~`d1J26MpCOR=arawu@WGAKwnHrN%6EdNm
zIzz}8f?vi$X9}6+#N*N`^P20#Jdu3o#C#_fIPr}W-#W2Sgi8b$(a4?nTKHl?Mr<;w
zGI93EC@vM@GQkUNb1skRtP--qiIp))o#ACy3ttnHu$|WmUnlr|Ouk-7>2^6cIkDM^
z9Zu{N$rhS!Oy>uVZYNG{t-Mtv+hX$nO10x&-d!R&B)Hp&Jwo<6u|KBylN0-5{AVY^
zelhHwmIF>4jLFZA%KwY-!!gMbA-@VTFPAgAtfmQ)xP^EGy-xU?@H?XmZL70OFmz#O
zb@uyjk%XMl<@M7}oN+>TLaUudX9zJ_5+RY8JX^>yCw>!hJSIQk#K{;xC4?*WO!llZ
zdNlY?$>MjxbAo>et{Y`P@5BWsE;@0EGsb{ie>-v6i7QTAWl=f9Y)o(auR{5QxHOW7
zTN+<;LLHEcghAJxpq!x$`p1b|PV{$UfE%}+xZ}jXPP}m9E+?pWte+jQJauBzHsziZ
z_Zdt0sr>N|op{8-m{zaI;LP-DsgIp_!pWps>i&5Ok+Gg}fE=(q=Y(7{ljNlnubjB%
z!rv~ub|TJ&(=MEGA>M@q7pAx{)rA}`<aFVE7dp6*%Z1!7q_|Mqg+v$fxKP1`iZ0}J
zA<2a|Tqxl}J{R_tQRxc1kUz!?2q`F7NbvL`J9UZ(FX}=uA;kqtN>EARWdutJzA0E*
zka6E~;izbmmla_-!M9x~FQkd;U{EFD)m^9|q_QCI!Dmnv!K#AQTo~5eN+DfM7gQ0F
z*Ak+*kSxR!lLzysScTgJ?J>E-g~1ioyHBijMAAgCt_$^q)OVqgkOqROf@y-xtDy_^
zf4BTshIA2TxR5ENu^^LWXj2!OiMP36Yrz(R?+CVZp_P#FX0$qVZCrTQg|;GW=R$iS
z?)~=nTs(sr?Fc&Zjv^=j$c0WWbatVONP4@_M@Uz}Zi3xi=;1<7;k^XeBaHiB_kG~P
zK=D%2*M)vD-rt1*E@X-Ky$M+iU3f2jP%QLAww~}If}^v#QDLYHAG3E{81BM&k$)1?
zALYWQF+ReDk-|TVNsMaN(J}tH3u9auE8d?U<{cN4S8ACyLHI<$Niq3k7yh%xH%eQl
zx$wOU>uKSot<znY;ldX#eCfhW7nZs3jYOFxIA3tK;2goZg7aMXYDl#27PzobB#Q(W
zQ!a!-U%TM*{LccHh;XS3e^rlm&9^a~)h;X-zCv(iOuov6#iB{&H6r{@aIFjLVmb#x
z>IN4!x)5~1@<QDt^35)65%O{6RL1?mg(EKf>cWpMY;|Fq3)@{dBnmrR*y+Mg<l^1s
z!X6>J1*aAJpQY_}akoi2lls|({Vp7o&;$Pm8T6krBmN?CN)Eg5pUzQ{cm<t;E<v{-
zH9am~7avXEClY^5uDKA1@xuXY$OYX6LnOxpO~J5WL@-;BNwMXLzqxQcCOIMGqzk8n
zG;^m>;j9b4yYQzA=Uq4_#z1@cLlj8*Y;8Pdwu5+qz2-vrs!D#*g-fDvS@4SBRlyrq
zqb;^otm3*0H(ao~VRPdq8_<QvE<BM$Zn^M?-EpqhZHaY9kP+_+x#z<DnB;+whk~>>
z>M+(*F^qUO65P>5p1JTmrvI-CFND7od=-<w782)<rttBEtQ>CSbfdHzZ@H1njoczH
z=0>8B0)lx2^9nLnk{kJAJii-?Eo#*TMN&wxuwapxPEj{Py;G<|S6qZ|xKTn#Nx@Pv
z%{TeD-q`k^W*Ilix>3#@ZEeoRZ@W=m)T+BtA*K&EDhjV8SUD!=c&QTORfSX&Y(F!h
zhLD=E&{{0N8_D9exS_`6T5_})^R`&+ZaCcN;zm~qN^zrYOsBRRb=;`yMm>=<awFZ1
z`obH;bW+_&i}8kTbQgQba3j-=Rxx>FA<f-r5|cD_qgjmS92ITe7UF%!jg~@w&tLDq
zR%$KYHiGX8R%>l-=f>O#S?`Iry&#p}7t%qnqhKe&&Ted!-`Q@wC@hrG&kY)Ici}xm
zp{E<1^Lq*JE!ao!13{+Tm+f;PT1ZAGX1OuYjrndYaAS}gAG$H#jR|fHc4LT}mxyAd
z8y~qb)Qw?o40q#WHx4h0zAee$ApVitHu9q76L<7g&!=uQt(=GNy?;?{&%R4PUasC}
zZj5qcj2mO!812UAe0<6mecN!dm^y#By?L;4_ws5qo%#uUc{0u&eUY-OvpUg@Np8$=
z;|n(?yD`O$>26q45~fNn)A#_EY<>B=nyJ~^-c$JAJLmeOx@8ldJy5=MW40S}+?eUc
zEH{cySNKPjFUgyRl(`bO?bq@1*m?`B9mc68%2=7*LN^w<v4KK2zH;MhH&(i_%8kWt
zEOFx-H@<aa>B6L?ZullB%iQSpm#ybZ%f=U7&c!7!cY|*R>?0Cau;j&(cdb(kyj$;^
zh`QR1HEyhTBX}h9J2%$4vCfU}sr<ll%1{P>Ze9Jj!H8u_g=+&^EKRv*Dg!=@KhrpI
zlN+1e*x|-bcBMPIe(|FlTiy79#kg-_QZ?o{DBR}8b~j$<j(=lt>iMx&w%*1GS-afe
zI_w@d_PWt-rm|a*lAqY)thgKdMS*V^_|AbFS^wB?zwlMcxt7+?S1X6y_{9yE8*Vmu
zyJ)x49d_f0wAinLlpJ-#8RJtYMmy2tMu2s6!z*%MEYvSVqw(B{?k@_7H!P@g_)k;}
z!5uwS(~TAL6iTQT5ru5QV;rHs<fQO~8z=cTz>6AQoO0td$Fc|QJUHXVS<!sq#_w*N
zqe+ODQT}k_iW^tO`={V}H!iqw(Tz)P9N3!tODQ}55;`YjU8bGfS1Dnvzu4fSd@YvF
z-)>xw@k#Zg&2rO?e`1nb9Af$7%}}%*?znN+jeBm~m(a&<JQ4Ch@S)%%H|E7fmFb>}
z<X<<Q33)C^xjsHoQKD;wFWq>>E_Nf%gC-s{^&sAZ1P?48s2=3-Ag2fL@Lz_S%Y)n=
z<ntiE2Z<sno~nNP)N!}FHID~*JxKabEzU~ihIiEh9u)Lo?+H8A3VBf2gEu@V;Xx4(
zivAbfgJK@cC~K!<lu`et@_-2mu_RL~5G7+~T1$CA@}@*7?cr);v@m5ns34@QU^&6J
z1sPi2gVE1ZNh*q@l3?XnXxT=Ut9Ve=gK8qlmoKHJkm`apJaCRkW87NeRXm{NXi`eD
z2j@RaBe8m5^PsVW9xAEYJ*eYBT@M@{q<AoHhNHFz{RX8pp5Y*WXLUk759)i6&SZOJ
zH1HtR1DCEg^kCX_N1EXEf;I**$3aEyjXYRe#Qx)3jp@zsAX8$IQ-RHRY)Fn~9yFJ%
z-w_;LSZyIB|9Yir5w)cUtvqNg62_Y3N^2wh-I(N~hLzv*puLB?F|ojd_dV#~!RH=~
z@t{k|t{nwG^`Mgnoyo;Z`A`qKdT@7uqnluN!5$v;6w=FsEFrxGmuz<Q5%PgxU%`HY
z{XG~U<c~)6nHt?d4+e?kL&3p<Lp=CMNb?-_YrV=*jb->)3NuV_xCfua%69p<!q5>O
zj1<Xdf};dS$8@MXmR;k)Ob=#xFy0e=D^B;N2NQ&Aan^|*O!8o|2U9$tmu`j!yBgc4
zvX4BNE?oQC`p%fNP-FWS;^jpXRC`&%%A{s{Fvo+r9?bKAyB&BofB$C7UrW_7|JXBE
zri@>aLR{#<A`d(scs=;agRea}>;ca?F7{vv6ZBxW2TMIz=D~@Gx{8Bkzw!+eykPs5
z{IMlcq$c@t4_0_^b-iV!C;B@`Nz1af)gG*oSl@ZD-h&OaA`jMy<a@zGzn7dpLt(P+
zJ(i6g{NTZl9)7sTvdM$Z9&8bQr%}!;r%F<|RlM6hC^^BNd#Sq3ga70^JlN^M)OE_)
zayB}K?%@FU;E)Huc<_@4`#dPKO+6q5<8Hv6Z>9XqC~u|gr_K8kerQxLu)%WBgVo7u
z{`HnX&g9er>a5RI^R0{{(hh8jUxgeMbPBpy7$FQjHzCW%{^A_vMS>Ta2LTWM^5B{W
zK@UP69P{8e4|ER<4+a}OvISEf+f5IKE>cTRRl*{P2v*IsQ75jA{WzP*gR>s|&Y_W%
zOd;J#(K+S8X(4Akc+D-HRqWO0r=0WP4-sDR;7<=;7PFoA-~wl)&5F80xjbFD$oa6V
zdYOZ9opQ;;6?~QC;IP#93fitp#FrDYn8n{7T=(Fq2hTjX;lWMXya)F@IC9JKkEq@D
z;1=iP0;zO7ndok--tk~|MLP+j-{+wA;Gt*^eV|bC&u-<B2aiSagfs0$D}{7BSE$cD
z_?Khtxf;hGxPO!v9=!UmB!XOnpxSG;;Sb7~>guqSX<WXiB!?F{y(r{GVJ~udk=u&`
zUc4S`PxPW-AT6&KNnX@$V9Ueq_(~;Vl(dqz&5M+LUJ&y$)_G<5O{JhW+8uOv$61Pa
zQPhiyA}QuYaWCHRqJ$Tt`Z|VB%be!4l9ZItx4bCBp!Xf6ym-@#(q3%6Zl%|K%U<Vz
zTGoql-smj)U&?Pwl=7laNd*aF=+B4MN)lAr3wTk5Zk)nx<W;>`nLFj`zg?<%qr1xK
zl(9-pFKT(Qz=wrCC|)G9cs{)0gT)Kgi<w@`^1|wc&5OQX^z*{*g~N+WEgc_tk;10%
z;$1J=dQr!V=>C5%>UqJ70gp{r>wD3_i*zqCyh!ze2ZGYPXy}dZa2|gpzL7UNmN)sW
z<P74bZepevjlF2XHvBRANYL(_wW$}aC2lh>=xr|8Lhv2ImV&JWso*YdYa{xVz0p;V
zc3yCuy@MAWy_no6<vlOj3n72si<`Oa+(gmIi_TK29$p-)lCO&w`f6)8FS-h8*0Nr?
ziCNu+*PocxWnxxOFM4^=+lxM4{Pdd=KBIJdWoz(S32KVBxXPAUvM{B;7X!Q)=EZO?
zvb-4R#ZWJHT#T-T4U&ov_Tob?#(kGTN#X1$4)Nk638I`{x{qmu*%=ELrF`PWry?Bh
z#fVtwXfH+z|12gMCHjo`xff%+7)z6zl|C*OO3t8g*XT3t1QAXYoFq8eizz~;3QiN8
zE=c_uUVIVbU$U>?j6Q44W{-REz>9}o%=KcP7cMW{Ud*RCd9lrl?OrVOVv!dcz1ZZ%
zS6+P0?(kx*7mL}3WgXvm@vT_P62YZjEE7WeS#UgYx$qTUG;LCUfX_zZN|CG*TpiO~
zBjm}nJnOvp-iy6c)7OjS+UB?D7;8gJQ$J$c?8OG%_JbEcdU^Xql)ssri%7Mt9D3m>
z`7hQEFDCeG`&er)c6zakB`=(?o9VODCBZ#jtiE1@`g9|@<|586oUq@E16~~V;)v)R
z^x~IT?uTeXN1_Lu6UXGC@~<L4>V=b?^>ZR63DXjYbgSd@dc5#@ao&pyUiiH5(=xsI
zjq|@3EuNJLdJ*y>;KluhDWA5<$0)j__P9r5LrB5tc}$iex1B*@FCrrB_kBXP5F=0S
z<203=_A_3b_2PsVC;9yEMW?F?>y{*(_Ttu?4n}M`qH&8X2X9{b-HXxjdH;~O=L8+4
z9e>ii+vMXo>Xl@_=tbF(?Wz}lab^%s?`0uZ1gqCfyXM8;UflNLju*`3x)(P%0424m
zg_4-vKg?IWeE8w^Avy}_?s{>LHI*Pnr29|K+#NHOM_zpXL@DaSV~%<+o_g_&Gqw)}
zeRwVwo5P2kzUYAZ*NYc18-D2px8lDNd@UH~!>at&cpnmc(IC1m7Dq0L$hf(Exbb5m
zZ?{YIVaUL!@#pa&uY@M~kk5zw!v70mXz#z`ice4q`B2!0BEIMvO5FLVgoJMKYYWR<
z%oi;=XXX+<>^0R%f+c+@<-?mkl=k6mAIkgimJeHOO^Os%c^JQp<iazyWql|Y<M}$N
z6?~}Z!#h5-^r4aum3^q^Lwz6MLlw^CKBz3iD5a_oHCQ_zs`*gehXeoGF5Od?46?lT
z+G_dGuS|mCL$VKDmnn(f=tbGQy{g0(D-Y9IeQ5ZD;_xBG2b&LeU-X0>Hvk;UW2L;d
z4|RN~%Z!@YC>j5I`Wtoam98qoAE-QV)WC;SA2NMt>_f*lZE4J+m9>%ZhAiQDW!n%n
z-G>a3Cw6H(TDR{!?r7qRURc`9hvq&crQ4edE?#48;e(bdA+=Ka{>^C}*ISl$u($H@
zj59v;VXzNve0bM~F06tNZGC9xLkDKWJ}nsko)7JPc;AO#T3P#kXbCm5a?f*UY4mQf
zPCk6#j?RspeHdD)7t8;ktS!Bfy_*l+edy&wZy$ygDbs^3c3bJ`!}XKOwVxDn-el58
zdf@{f`m$wqM0YvzXswc{_RMMR=R<!V2KbOAIs<(eB;@C>N-?khk3)R;$cK?We8${;
z_}GWxK78WCx1Xm>?~`|OEBi1Xh<i3Gos6>1XZ=6*VT2DP{$(l6gUZ!QmQg;8_F=3K
z<7iPnj9~}45{4(Falvc&#4K(!{b)yY)6{q$Cp1i?QEgRtd2itG0PDoG!ME&Z7Ali{
znBv1!vA}79G{`$m(xwYPb)fzXA8#A0|Ah}<3YjTL$t)jc3!me|Tp{xW=ld|TV>%V+
z_zz-{4`2Dv*^e%MeC@+xA71(J+J_}REcL<bgU^R$K78ZD8umNuPV4okpZ;K3;lpy8
zZb+G&VC5E_l`@o83342*7INlSWvvhEeAwp0b|1cHQdMmo3uJ8ZVZ9F<eCYJZvC)T3
zw1ff~<ZF*wMwyn)J`gFP`@x4FCA93@Ww$cQ$*6pX4?BI>&rX-1T|Vp+vfGC}Y!=~*
zOv_I~5^AI|$`>81O!H?+d0LX~Alsy#?T8P*`f!Mb=fh!9rY7aYqGjyFqdxvqfLnr`
zv1BQ~)kUTA_&}uBPs{glUuASXG~kQ=n+y4%`w;ZuL^1p3>S=uSWcXnEaLtFmeF*yy
z@!_10C()4Y!!fbF-+Y*KKl;|_-CmA-_v4QLXOMgm<iknfrvy(6o)J7N_`4t@?w%Rf
zZhOfu>%`|$tbh7&J|@55!$skjVv@@~ToHa%@UNKsbo==0oKAhX&q-sna+8yZ4|#T}
zcUe=;A!F4$qIp~RurKZW2hsYja^Z^gp2*v7u+EqpeXIF^lipv-LmwWoj(e?-#Y@Q(
zAy0jHCgi!`zp>C4KI}3wsK#b&a8-@-Bi@e;KQjGD@WcP3wYVQ|_>sepoPOl;Bex$1
zJhlRUJXw;G=#Tza%I`-WKk|ws$&ZG)lk*8Dp&Pd<owp_2+@n<8Zz<^K-Pe{vf`w`M
zKRAl`QPhv-O;d^qZfcrBUc!%(epK_Lx*w(dc+-yxepK|Mv>$Kz@wOjo?mT7uDC@_^
zU3=PVc73rnxtt$&cUX8GG&#?ql=tJ?#Y&Agt>0|QTmQAKk{^}*fFElIrX4P(uHkLi
zbJZ$-+={bR^+(S>@PGzyFs|W8O(yP#)sI?!D1IdSVew;YQoWUpQ)X|pR5+z9JEib4
z#u@d~_#W8ihusf{A1O>~mHp56)t*J`<sYvk)Uem~qpqJT?<MN^Q7B6tc*}OUV9k1d
z{8=)kz8_6zstx?uSICwsNRq~O6W&NLU9e9^E(SIBqlrIy>3w@fWG~#P(bA7rel!!_
zT#&*RLf#RiGQU~h+K;vpk)IN4<Hx(g`MofP(zWyBJ&}-az8)36FWwG<9sTI!$Kbnl
zDJORIqZ`}7k8OT*_oD}!*N^4?=u<>bKgJ5_CD_}KK7M@QM_)fa7fC-q`m?8mQ$OeM
z!~w#yVv>PE1_^#BI9PCq;75W({TScje>+`=iDbCoCw_b?gei{@GE(p}KSssmqlHWv
zREIia{J2x99LYE)DDnw@%=BZH9}{Exll++cUzC_+svpy0e7cYsetaS1%b2{=Lir0I
z-X(%_{Fp0bp5T1J1%50zo|gq!DBeYWd?n;-LCO~k@ei!CR7i!F)@6Qt!_GQw%^Far
z&Ld?7hs>XG>-_lMkCimD%GOnWtoEblE9)9RF5l1iPWXwR<H^^Gq{XT{9~{frx<Xm+
zkKTr{!H<m`ZdDs^@`LC4fAB*KrEm6Q(ZsAReiYweUslKVqaWL^C=BH@&vrj{aA;_#
zrD3NZyZrdwk8^(P_G6D99zVQ(?DgX(KmMMXdC-sjUDSPkES#q9XBGT-`aGGEhAWc~
z_)(^sHU8U_b-mLL`SFYBv&x74I6~XbWBXOm<;PJ!oHU`KjVauHGK#kHb~ne!Ej6R1
z-N$*!kB}ca3pp|CZJ(7#j5R+3egtW3b#3`~+P%LGSo5o5&`L)-j{9-K4^ue3VLu|m
zvtyEDLVn}i;<HlWq#w(2+fMm$ni)Nc{_#A+W~rKQ<Ph~NOLf;mGVQKH{DUK!BThpu
z4d?y1z*)$TdwyK><B}hL`EiZI;i@fH|5BIzxZ;l<_rB_n-U;JIJUQPG{_V$gKmOqa
z;>Qg?Zu-IRYw!~-mlrf<zN^pn<Z9P#Kh~W~DBdIS4(-rseRrz$=($XW-uL4Ho7azL
zemvx~eADsRj}b}r9&u8-ZFzCe>P@g;pQ=9L*xzQQ{J9_h`VprgUc(DNUi$IMkJp^T
zC#gT~&G47)8rf;N`hmS(x;pB#>N{ae(4v>s=g^|VoZf-iD!oXz=hl#@;VlhiH005c
zS3_Y9MKmO7$fu#8hC(!zdvViRsrfY&puz)7ztKvc#AF`X>u2PQf7-u5jnqc7m7*Go
zX(*|olm>c>Yj{IL2`yU3WlgL+T6n*Y{fkU%6KmAHsc{FjT3Q1+30;zEEvuoNh6)-g
zYDlhVds{<!4ZM+_{Ih=XYl`IU9A~Yhp|Xam8mdVUG*r=0y}O;~iE7`me0(!?hex5e
zbdLDy8fs`reQbMu+rI6zHU1ZiqJhtu%``M;`Wh@6Zf~_*+tyRnqUR0itSqph+BDdO
zI5ebC`Ixn~hI9?n6Vy85tt(hhLwz9)G^7ckW~vY-Lf(+=Al@5i6nYswLqn#d(^#;H
zAmvT9=qMv;q2V13T{U#m&{9Jy4ex8{prN&fHd^$dh)+TNgUY)aXbkUZyt63Uo0PQE
zq9;|aj<WJLhV~kW%hIh$^Bf)7cYiuMYxv9U=p@L0mw)wc+=aY%<I_Jlx@+j6p^t_S
zH0=9I<?=^Q4O6D82UaP)H1yWs>1iduw^=>yvThh*-;`+WtD&EU{u%~o$kH%G!$%qh
zYPkDz#vlzJYH;sx{4g+uI9S8Hl3o9pm_=`BV%AU%AB);28h-)tU}DyA4L!FzNQiWK
zCS^^j)SJp9HGHPwQ8usq!YB=+HT<UIxQ@>?jA8l#cmf!!;h@>W!=}(MPQ!Q&6EsZJ
zut>vK8Ya<-CS}djFki!D)<{E(G0M;>N?^J&RReLF;B>(m8om%h`Ij1I3ZEr7TX0S+
zbS@3!NJXmEnWHSwu#g5eDeFN#weMba^9C!g`}<nMVhy`#X&RQ$$Th6i(07coOv4{*
zl$9*iQ5z3xeM8&ZseY?rxsVltW#6nf=PPU9Yt~g9fce!@<*jQpe5YZphIJZ#(C{OB
zS;N*D%0@ww^%^$B__SKKO&T_9c-7guMZ>pst$mtW$@hJ$Y}Ih5bDH~sgSbt@b`2}P
zRdz_ko&QzSP?*{-4XhW*JFV2cv<F(3hMzPvE32|RAOEfH*Kk0ClM}@*m1+ky9F~%k
zAJXuPB*@laO^=A2b^KMs(HLj4E)AV0+T9x17tWIwR@O(uW=qyl_XeP`FdQ`jqz4ex
z5Yli;!)XmV%h2E6>w;oxFgWf!>czxl?h^=Wh%ov$O16e$G!hN3msm26TZqRsoDgrG
z^*!mOJ1O2`PRkh$XF2HwkSBoOHJsCMPs4q7kcPi+C>Jzbq&@4(pB(<5S3b`IEKn(@
zyQJZYhN~Jb)9eSvQ^I43e`&Zzt7gByw*1YBbcT}q)_@@=Y}bX~5WFe)k02Fp3AxQq
ziAkR9v3#;6`sU<;hKCyd<&-W7KH^x`@KpF?!RQITKz@$;XBwVsDE+hxe|mU#S+@z+
zm+X2C2?68?;I)Rh0B?9!;{)LNO76_(_X5&>vFy64jJ~Ag44`yNN3H;J2e5yZm2Wf7
zbxJ>9*v4)7n>8hG07(Iq51>K-`2xrvz#9RS2%tcKYXm3~K+ymS1)?(#UEu)U%4dJW
znXX+|d32&!0C~gF1E<9U_~vl*0{r$}tW36K0Hp#b6F^y(hq(t(d#UBE0P1u|=cOXt
z=*x4Ll%!m@l?&jv@(#MU1JPOQ_)3NR<?4)z0aOaW5kN`+l><NkY5>*%sz^zy22d>k
zsueA2uO2{;JqlgV0?{|pH3Fy^D{U<yieR#!MKJHII4au$xZPB>2S83j_hun`Z5A?s
z`T;axYg~-08^Fv8_Id%V=w#*Vl$skA{wSvgkQP8gNs8y1)#FN$vGx-^(l*?xdwF+S
zMgW-sbP1qq0F47^5<rG&X&*q-06I;|Y8F7h>ege4wrj7I<^e1n?x43t0EM5}-Vtmm
z*h;XqV4DEm71CCan(YEu^{DQ90nB+~qt~^=`hEZ%0wC!qNYY72XTef!)ouZF58z8y
zht0(*2k=P%p9at?fZhRo7{K5F`ULPn00RQZ3ZO5`NrSmHpg(hOX;nUPaJr+n{D8Cy
zKV|IMp$?Sl4+>yiP`Urq#;(-MsjFT)h6FG)fR9<i*N%?@_^v_?o)8%(%EQ^A1(Po=
zQ*2Ap_xxog9}&RF0LBF{K7h{x7!|<hEY+ke290Lz#zv>6w)+NjD5Z|!Pe6btnr$~i
z13D@ybtVKbF@UK7ObcLA0Fwh~Ua-UziT-Z^JKf3+%1>SFnP=4L0c^fzn-Rbl><hPp
zobJ7R^)^1Yt#A*R6~OEORtK<#IR-E{fUg5s9KgH)<_EAafJL+7cra%{00(QvS4p>!
zcb=mz3g9bRV|sKTkD8@;izY8&Zw9cOrV_w14u=4~m0I_>Xn%ajI;?d4od2j>+o)e|
zv9An(_x*PJD{hr2ESQv)ceaCReiy*n0Ja4116wtK?<I6&0P6!#9;DXwmfa8l)yVm-
zzN5#wiS-IZZ=Jo_$WE8{y!vARTLah`z^(wc1+blE&Yir2gY-OiTq|_m0oH#tOY#$2
z{LspNv*+#r_5?tZ-b|(ArC~n>u#dH_qy8Mg;Q)?s#t`oTLCOyXa43LZ#9L;(N=M<Z
z;&lohjcM*%skmbN=dTjI0r&#=HHf1@_&ND=TnB+5udGBcfQJD*3Lq4K9>9eFE(Tx(
zU~<N;l6pFTZ~ze+&)T%(%)Mz^HYW}7k{=VvzU2xX73fY#&`H5lf=q<&OaNz@prm;&
zfGO3je+vIYkY2j;BIgnBO95OCVB-bb1D0*MawUN40o(}SDyOLcu8DB%S><e;{cquA
zFW9I?cax3NuJWA#{t4g~`*ELg`~M&n?gnsAqTJ_rtdiP5A~GH3#n8tAJmD}8qDU~B
z?^Dk00mKC{Xh!<80G><4e*<_S<fY&%!9O2GqknwC79T`H5Q#ys7L?=&BDW+(o->GC
zG5%}i6b@tx^8}GsguI~RX_eF@;rW8dAJZ%#q+k$*ViK)gWkxI-MEM{p1W}B6NzfZX
zlnA0^Fglx2p_B;A3BDPNTRMohgqIO4D|k~9d|UXDFRhOo_o^tIiOk<qxl#~JdC#P*
z>`7Twf~XqAdqK1hqFNBugLo&1mO<1AqGJQKK@h1y)C{6l5ZiZK6e_D$l_qzjY;q8m
zAj)2{E=o!xS|x~~wjk`n9fB!>wFT=4Qm1YZ^<un!FuGDkVOlVH(?v!QnL-){(I|*%
zxyn$OE|PhBEF=F>8w+n11bLGnnu?d4YIM!T+aeg9>*#I8#`)6Gn(5qCIO&nM31Uso
zD0x?c+6uN4JaWSFeh?jk=ov&WRzHXW-R)h1FvcpKg81Y+JD*rO2cr);{I7xCmaai`
z<A~dB=`PqqkZ+$T=^aF$Am#_LfaM9IZxEw{_&kVyLG%w|Xb>L<F(8PnAO;69B#42*
z=+FJ2AU+JDb7AYj$qK#ICMk5qn>juTBKt*ZnOyO6dzE~7-@)961u;B`5p0BD^g-ei
zcJ6-5r<@1Air(Jv<b;JQ6rTl=J~MjZ#;72;9K%Prf95)lo#{U&h_OL@5yY24j0<9X
z5R-$L62yccCI+$oV%#JeLsIh4MGF7n^75aQap~*EHJ-{g3}Si^GlE!H%I5#aQmwBw
z_c*2A5w%Z-m4~uBjI_@TBFCS~oFL`~F)N7Ktjju;Ck^MWP$<tiDRCaF{8VZEwZh9t
zNfrjND2S~=YzyM6Aikz0uy=x39K;efND$u!u{4OYc~h5>f1cubmO@TPzC4H(L97g7
zRWN$)$=*`ExhYMHSopV{&$>Jde|d=GyCBvEu`!5ELH?@Zd)6+94Q$L?YR9V<=SItz
z3f5*1Y^jG-&nC;nfVw$|EkXPc#E(Hdnx>3}?UTW3t<v^+gH?uhSgJh8Z`~fmjv)52
z*@M^_#4c(7pMu!U0Tskvj^B+X-_FQ%w~IzOd^f$fQ~ALky$x(mX0H7~90=lY5RX4r
z`Pg$Xh(kgA5=7~oDwkvE3jS<4en>67Og$nxE9_QkI)iX=63|gfhdT&Q5P3q#8-h28
zQAO*W4&qD@KDPWd#UF&m%Kohe*s60>optZ427?F*A-}%bPPq|;8AMogyytBZ+UFNm
zx@;lG1b++Scuamm$VtIdf_Fbq&j#^(5ch((PwNWek034waV3a9Y1?;{$`_OiLG=Dj
zIWPFdc6F}TaWRNXLHu;ULe6a-SJ`nv{1e12{$}m@;93yZgSa95?;v;{d3{UkO(Ep`
zULkSRss7bRH@;1aO|ahKWHq`m3Ef?mc9rtw5XS=!gdko9@rpgjHVoov5YHs^Nice6
z&c1T-)m=7{=bXL<CoEj6zMz45m45}xw}`GCG!9x`2N4%Sju3K&KyQ4ApBGUQgp<&H
ze>F2#2)RS(a!*YRf!@a>Q;GD_)v9Jo3L#$zjY3EdA%6%3LU=ob@*xxqp->3LLwF+u
zzNsr5!p~2YA|aG1S()CV^zwhfQ>B>5_uJDK_OO=-;mr_AhrnanB||6`!Uwrhx}R~R
zma6ww2+ij?%7##mDG0xP-oan4<0DcYo0)u?<<ED85GsbaYhA4qLZuKYhoFRzEE0rJ
zHH2!ytAx<%o|S6VL#Po#%@AsZFe%+m$-MIQiBk&JBd$@S5=#hb2o8xzuQdc)2=-8P
z?-RW*-&cvLJ))RGVF;r>Q^?1ziKbsSgnA*=XD&_EG)bXB2&o~M52E^Xls6Rl!38Pw
zW`vL#!iW$?vi;czA#@9&dk9TKXvTgCp-m{dYbg12V)GDMgz!#?hM}}%bwbh4!nUuY
zZeN!2aXSYc7hm2Dp=}5qLg*MmyAa+Bp?wJNhrpnv+19e(q_kX?l5xY{VPwXEC6<)-
z_D&&mW-o`(H3X(JyR!A|3iTgeNhiNjBAsqY!}J~@^ki>_FeHRtEZ!OWKqeSM?-2Tg
zz%(CLv-6|FAB51CC7-CUefkOMFE}8CtpDUEREF}G>%$P%`Af{al6QY~`=;M)AB8Y9
zgkd2JXH8kh0g03|bk8a)3s7WP!Y3i@|2)s9EaYpoh&}y!&Sc6zW3z{_ID{o3j1J-R
z5T=GOErc;4j16HTJ2!-JVsGO^m>{*|+IP=eN;CHWMn8T=olLtO>Y$qv0wsNojJU7u
zB-2Bf5yH$6W`*zt8##mrXRRz%!SAE_(y<t`Lzol7SM}=+X_`KFrZQKOqIX^h^v)Mt
zAh=MF!bQ}N@vlSR);J26hOjJzKnTGQz6s&m5LSh-nger!b$JLYLs&DJo9d%py3=KC
zm)wfKjk+d;??T)eVsVSY+7LE}cwQr_ypE$)$a+CaHVD}m!lsyHb%VS=2;UjPt`L3{
zzEyCW;C8_sf=ppYg{0jf>=Ex_!M!0I5b{$@XP=Ot1^0(g>_aOf9u)5(!CwR^WbQ|V
z|0;M?&>0JLu_A{Rs(GY>-Vl638Xi^sAyhe|veueN%B@jCA?P7o4B=7;28UP(r$hMT
zKvGyziwJK1Lizp6XoA@x9E;`hn~>vzCqg(Glb_<GcQ9J=GwhD}%2|>BE_hDxkC^74
zA)Jr#3n3hTt}@nT8WJZ)oyP%`s}lMogr_0=CHz_le}`~A7VCBhH)8x|2>-<REmo(A
zjj7$Ck%;hK2oHtakLf%J@$5#lQjcPi$DBsaM9aWun`a@!>4?|yTpIIVP6A2EF9cr-
zz7nMHwGcj!F=B#_Tzb@matM;-)RFs0G)=nPB1{y_qa$xjCrQVn!pT(NagY2u3W&U*
zjzT&L3x7kfh+t8{VuFlPT*su1(Zox{B#wUSn>q$gca+spPDg1SZ|NwbgP*zKKG;fM
zsa))+ThsBjj`BLj>KLb^f{uzhGIcc8QAtN-9bDe6qXRms=&<Ur>8PrsnvPmJ6dlz?
zp@xo{I<HN$QMtb(`JcSXn0q!Zizn-_=umaEem|K({OnG_B!xeD14<-QLTA^JA}NqN
zgw)GbgRVAHzSW;8)YVZ>M|~X)bTrbDt|L`PnvMZ`S~V2?XC)M-9QUDR_w^bb4m8cs
z!8KXBOYt?*8l@z4tkXnCQysl@^w!Z#M{^zRb-b^mg^qVvW+tMeCDYtpu@%dyqiCL*
z&d+MG3a^e?h)le#j&?f!f%2XXZDp(7lWU*8Q~lcRx|GanWa*%zqmFJmy6d2@la#8n
za6aC5(XsuNwW|mV-l!4DuE+#?NOnE-=zkeCU(J!_k~1&W?4#oY9Uto$rlYTpemVx}
z_)tfGR#rzA`%!AmG+C-r$@b^dYO;Np<Jj8CgLMqi@sW<9I_|7U)>CV+Y<$^Ly-}??
zU204}Q~j^G$-{MgqGObf(K<fWF+#^k9iOq^Ye&0=skt5~mF=yWKHY=?Dzo@p#~2+q
zhgK%1&ZA4V7v-(vbxhFlqmHdQCeq||EYz_`$7CH-bj;K-OUG0l({y~H<4YaWnZl&3
z89MGRiDNOiCPFVu`0MrP?veRx;znl1&(<+V$AP?!=dq7cYR+XNlu+nxnXlFxb?eU8
zv4EzV&(4a_u?xP^@ikkIcCKTwjwL$2(ebU0rEH=S$;)*3mel9p4e|l^tjuw_jukpq
z>R3hNS1nx1r<LaXxh}7fWcx5>TY2kuI@apk#)*wO*6H|O$9f%mFIvX^(c|31T6BZ<
zMORDN=9_3^I=1Nef$j5t^4Gmnm=`;RL1lB*pphSW+;AKFU58WWaTV;)u~Ww(9lz+<
zrDL~_pLFbF10JijhXdyw>t2qg#At64S>K;^>}PA}IH-f(Gp3a{wlRw;E0c+Ii-y%Y
ztmBA|qdNH3Xvwe|um8>UtB%Cs$<!o{NNmU!bL;Tv2<gyuc-ba8{4`+N-hk$%zOz5d
zD!k=f`Lg|!13H2_iWF1HSqnOHLx;&Kv`ILoBg|Zw!hTD(bR|2Hj>VwyC$3DsI5Y0M
zg2^XzoTROWF(8anI!<%YnP_I>jE=K30|PS+{I261P0qk51AplFQ%4>Hc@3P`aY4ru
z9Zz*!)bUrz#$|eD+~l-RE4^*ItmBG~tCZ`wuHyz<{*>dIj_=lIdTXW-|K`B?#!f=_
zA1Qp<&J_OPT-P(>mX6y($nOZbtK*)K`+^Sy9|}_Ek&eg0b572p_Zg>s&f5m+WTpN~
zD?Mm^Nwen>0O9i*<f4S`m3Uw4h%=D-hb`Vff{+{ratfhv%^XKA15e}Z<n~VXL<5$p
zDw8E98OUcK!$78i{00gbsBWN!fr17K87ODqZ3Bf36fy9I!DUm_P~wXkC}yCzftsaN
z?l<61ByU#aUvFO6Skgc#17!@9HSnf^T{g#~=gOAK*3wM8i~5#e)zK;B7e}ebO?&N(
z^p1)3${VO)pt1oNsA!;)fk*9={&*t~UlDM@cY7;G=&Dl1Kve_Zq$O5k`nLK7eYUj&
z>hS)h#n&BUH>foY)H0A_ptb?UKr$<6KsC@+&tLGbxKDr1+j^dAHDEJfH{dYPrdoY2
z1h+12<%L(awraV_S-Uo=T%o9Apss-iY&Qe-4Af_JKC0ZST0B=h?ygimD{AH6(li4N
z4Ky;4Zs6Iq#>F?<xqYbjm^@5m=|k07!O`Y=dSe4k4D>PZfq|w5ni+WCKnDZO4YXkH
z2HrLBj)9g2S{Z0<;AS;jp8?UGavz;c<MVvCckSFL%L|~|8fa(WJp=981x3~8ZPj6g
z)K`nG;h)tarPTw;Dz}StG|<UFHv`=bbT$yV9oK~wH&FVy(lvMTl!`VU8)-N>i(8?3
z80cxBmx10!^y1m=gX~PR{pHMxR+TRq+E(C&cuHRb{S16;V3>ja1_l`T(BK&mWEmJ}
zV32{6-^Tact=w9r6sn%adqlag?pdx5F;H}5{6_|c8aQ1$^W(ABl(E*mU#pv2*W)ZP
z+`uOWMjFwJ<v%sB;bmNUnfMWGhhb`8Q@JwC&P9znmEsvX+Q8=qrW%-LV2pvW2Bxqd
z>!*%0Fy6q{+NqNbIBTaCx2H}JGEqV&33jTTO3fGc)WD9nh*YL`x&$fq)ENdw*i+wl
zFXam%Upi7}8JJCrGVrZ|IR@q$_{zZ72IjGM8l--2PhDhSzC>p_3k)nYaK)BdHdilt
z=VaEueXh%514|e;v;ICuG_R!+kvhvH*2g)cn#&EWFmT<#4Ff9;tTNy?pcz<gV2y!|
z1~wV^&cIqW`^1Fx2G-GL)+fESEd6_`<#VLAt6cn5M$7z;4F(SUnBJjX<-GYFn+<F+
z@UwyaoW$}welW1dz+MACvWaL0Ym=Kl@4wB!b^|*MtgoH9ll`90(Q|SZ`7Q&y#rw^5
z8-;scW&C7-+3lm5z04$;)+}$+rRnx%=?4rPG;qYguLiayISv^(%+c{W;}-*e=5x@E
znw&*tY93`@81NYIvh~V4Tn5}is6#K^{K;89138wZx5(#s`ZD8Wl4H%}tbl=_ffKYS
z10e&tfiSJtfI;I-a!gKgurMb3C7+|u#Dtegj%-PR(T^Dzoi7^tn}OqOw;|<NhIdOl
z8a>K5Me{RoRoaj#oROq1b56_WI4k(OfpbFs5d2e+q2~=;5PmTxxg>-sU*Qm5n*N6`
z+APfXFKMo8BK(^@UOHNmn+E>j3~8c-iCYG4a}qX@!^9ohyn*Ki{xxvVz<tgb{4tuG
z#R@)<o_b{9A+0FMaqPP7r^#854Lsow*2cy|oAe|;HQ<|^MZ&r`m!-3uFE~%OtNhx)
zO9QVsndEb@NR$)5%jbwQ5pRNJCNGoZ$Y~;%iF_vVo5*c~#*=6wkBR=NcIq^vEtyC%
zqlx@=-B#<3JR~ayXB03|(1atuqo|2OCJLJ<V&cTm@(g7xI+ldUjwoiLxMas5dWj`X
zlroWQ!eZi06Qxa5HUSfFnQ#xzC}-kr6J<<nZkD&KiJnW-*$$nO9OWeurdiQM1>p`)
zGz&(l#5SCqMN-8?RTGMdm&?+tnW%0eGs#iYL=6)OQ?h9DOo{`f<dm#hCfJydu67~5
z`#OVhRTEYd^-R<^VKbxF<uH-LjD)jWDXDEjO>)#V(Y;?L`?QW3?b+KeGFc3^Z37dj
zCf9S3X(G);L#a->iTimSjYN|Jft<~*Nn<uP(Zr0J4Lgno{9p0tZO+y<vE9TD6YrR4
zX`&yy!$d0+txa??(b+^BCdke*(a}U(7Pz=Qc}muMCfb?!V7@}PH{06Y#QP?`**3tk
zCX;T}M#Wvx&g=SZuN-le?9}OEqOXZZ_R3vN%(>_2CfMCX4>Njie^2rD7T!yc(JQTY
z^kEhzetNSp9d_C4UsvwVR|ZJFbsUwqnaC18(8M4UADS3!Vv~smIZ~M85EDa9d~D()
z(cw8b3Wu2(ZsIGEd?HBUbQ7PN7-3?hNXEwGp9vWyI9l*?6JuhbAKXeEXJWi~CkRd!
zoG3U+@LzjnrawjaR1?#LQ1W+~j2R}r5bu{J=EmeRP0SKLTX0TH-p^5aUX0H-u^`45
z3Rxtb!eqY|?_$9vf=f*-W51aAR=nQ}E;q5##46z{1kK_Zt4*viu}-{9>N_E81<R+V
zTq&7B;eW~`>rHHkX>R1m>Sd*Hv$Xsc6X{8fe-QqoAiHC$iK{);g+&|FB-n#HP3$sp
z(ZnSayG`sdaoEHWlLvPAax%JI<N!O}j2>A2sExXhJ=jM5*~ESmwSHB|xm)$1i9?(O
zHmGgds=t`vZVi$K*~+gbj+$IYhGxQP!ezp1!pG5Jf=7nw*6bVLVWzFEjKc2&(#x%7
zbX<B4m<XDPn8-E}GNE%gOvx(rP&LfxyJgb^_svp`oFpt>F5et8@tcX$e7xuE^pMYx
zIAP+X@LGDpDHB^Rl(>IC$Ge&Jrg{~AG3u;|-%b2!;=GA-CW?;h^@oYO)>8LM+Zp=d
z40TFJ>xF;f#(Q&IFfr+cO2@tEmrYzT@vn&&oD5efTz0u?;x7}|O!S&=ePH6DiN867
z4GX>3P23RqO+iZj5pqlLw%{GXyMp&PZwQ%H)K2B9^HLs}cy6Nh4GZ~WPIU89o|t%Q
zV$@_c-}01aoWqx=aI5gszSf*o)R!h+agGhc62@y2abc7QqhuKIVI+i+FO2+Q<Om~Y
z7`ekp3?o+<>i2mnpG{2Yo#)bHJO51O33K-jlEN^O6B}pr;#1rgi>xj0+W0ul5B(Gf
zqhJ_C!YCR>p)d-EqutT{YTT#44medcdY+|nnT%p#6lbQs9B+g%^Jj%mZfkO640_#j
z{w8~$_~cSyyctHNFe-;pI*hl%csq>pVV+Dx*)Ym6*?PIw460Ld-+-Yf(s_#E-=8y^
zzfdZK(W`QF9k5~;SyQqed2Q?K+A<Q85k{3Ts)tb{jH+Q&3*+y$(Hk&$0)o$$wnXdB
z_VsFpQ7g=M8u3aPhl@CPY0TEL(VOJCgXPYG6g3QM7%jtS6^1Pgdl(JFXcUGcjFd3y
zhEb2L)HGM^FzT?hO%r*W^ymu~HcNNKT0e{iVWftU7RHy~S<6jS*A_~C)-K~wi<HSZ
z>$ABUKJStqMn)J-!)O*pW*8@)#WfD2Nf`W3#3{7pch(l29l^y`e&4ov7%jqhC(N(u
zmAyZt4j-iX2WQj`%fl6EAKX@2htVdC&S7*3<J~aYhS5HZ_ruuuAor$U;@gGsUKmrR
zWUasL_<l$F@x#^*VQeXr&@qfoVcxA_J<u(^$sTpNO`TUbbHfRxYZ%?wq+#?9qk9-V
zsM9x3Pj>oB`_a<%^J<nRmh_aN>D=nvCyWom=o?1AFrKYU<E9a=C2^^O8;se8b9&hm
z675-G3=G2?fiHqVVSLC2iJ)NwgTolYHV@-S7$1c(G>mOwY!Bn(FqS0L8|O<ue^&Y8
znROWJwN4!__(>R_hA|?Hk^Il@w~Pv7w2;rjc%E&c<nu7bgs~`$ufiD1hTUnI6vkvB
z<H8s(WP;#CK`LCkmzOvtj4#+tVN4bIG{NaHof$Nqx9n7#8OE$I=8Jr`;9S8uG0nP(
zW#`5CsMh%x2wxbJENGqo>o6A6-ojYJYR2T>hOsopmkIesFg39(GhH6W3h}Ot>8uiB
z`CR=jCfOXuTAGb`zZcvX#`;+32HL}s=sl&IVv=dC^KXgqAHw)CjIHABu{nATEc4wF
z#!fb7oyOc)Ug?Q-7rUu#<AZG2qqg0Gd&1Zo#!tfcaioW_KMZ#l>x?(8+}(F3(|SO>
zl=y~cFz%r+mJPK2BI(dJehuSj7+1o$8iq3rR~To);9o*({RB71*KLcJ!=ZDchc>+5
za>wFm-Z9=6hCd7~i~w6tSAt=L7%QKew8gO?V(Ik6uCt-0WEm3O6l6N#Fkd$zJB(u@
zIT4fpCggY+J$>m^J1O2%9A83Keh_`n-1>y=td#2aFwP07`oQ)F+xbd5-JfBckMRp(
zToisu@N!JP$Sm_0BXZ7+AYTN3hjBfOCt*Ad<3<=a!?+j5{V@Jv`hyd1g>hTv%zHiZ
zcv~m(hNU}U+~w$dXq#v%3+maADfJ(O@y#CfQ5cUo1=Y{>ko}&TM#-j2@m)&9^VJ0R
z%|7FB;H(}&LInS^ttKlk!+6CZHbr^C!rYC%&*#t9>oDRXIB+QAmnm77lal!pxowt8
zZ;l9ZMUXp!oDu9_70>Nzyoairo+~keJQ3uLVC4}DU$CeH9o%rjo2GcrK>i2{L{K>b
zL{Kn-LJ_<fLFotzM^Ge!Vi6RNMCYQS5%hkN_jb3$9W$-R2U*{UphN^EBPbO??fSOn
zZ8CGdv=qu~<%dLDU2vdGGC!B|Rs>}ts1QNL2+BrKE`qlsC?CPe6a71$v>kNXxG#>c
zV$_>9PCM&5sg)wwx+{Jb@?=hp<DEP&_bOE)s2YJa0$T*tBB&mL5<zkVzuk<h5kbue
zYDKW%Yb*E1a>DukMf4{-dhK%rhu@4>BiNf3&(C5WFQJZ0x3SFj2pkdAji4SAM0^TM
z9zh+Z%zZ2+tS9bTc<0!$J4();YW)ZrM54cdsS&VwlQ*RC(<jS!q-_gWmakMAMWS0)
z<}>RE(j&--ATxr-5p;>5YXnUqXv!JV)}$i~a4of21RWyL(a}7D=WA3-T14;;3s5w<
zWdyAvXf3?0U>m`A1^ETW!JpaN34c$py&yl~`aXMVRdmUwQbt*(+=)$k*uoq;N6>wy
zm0vOLMiRmB2tJ9RM+7}17|01cf?n*z2>M3QFM>W1e847M93L5x$eY<Z-cXz5S1-;_
z>mR{@2(nnagYlfq6XKHlys$dDSm)fdtyrvn$f`v!G=h&KXf&YI5b}+AK4ML8*!s?l
zuI}9%q$X8KD4ajXvUz!iF|<;z7WL9TjbKCs(;}E2!N>?ci(p~|lOh-u!RQD+k6;X|
zFePj7*UE2ethV2kuS(j+MsU7hbZg2u7I=X&UXWx0BR*0|CPy$Of~isaEP1H0dc1zd
zJ4fvEmnp6(%KBGzXGHKt1hXTU6Tz2}=zaAwBbdd$?yGLU!EKq*vw<zLRUWmV8{tfx
z8^Ju9{Yd+Ts=c`@hTEtXMzAP?%@J&g;HwC}j$l&+7u&}#j$layYa;kgEac|;_@xmn
z<8XVTd=tUTCCZ8jz7;Pe%UQ^y3dza{R&gwBRu1e)Tg~CH*4}8dg&+4^D~W6nTqpQ_
z1nVPMxLbMqy7FwFGPu0DQRI9f$<`RXRN<n)4-xzr!J!C#;gE@7TLeF`juC8+;L%~r
zF45l+!A>DB>gGCqE*h6^cLaObSrKHPO{4eH8*1RS^0TNN5Zo`wpr%dp5f6&@okO_}
zv!|9SM<Z~G<cQ#}5uAEA|AAA{lwBfmN3f%f^^~r7#5-?!G+%!N8rvir%d-)PAjkod
zjb_;hMfiy&6wF4UY#0%k5nPYpMg(gw+QSi?j^IoL5f(LqV;u6d5N0RI9_Oe$&ij#Y
zDcAo_8fH&Txp^`N^J+dZ`jkj_mV-2cKO*=&f)D++#TVk{EV2Jdqhc&ZkKlqNby1M_
zHZaQLDOumxqX}M#;QcL*s}b;H9|up_$^YUI7UAE5l<<a)n-TmIL5^(X%*L$<ZgYTh
z(vILx1a~8N9KjO~x`}!2MevaQA{pI};DHe4!n-W^nH3Vc;;Q{=1kX4f9UrjmL7qQn
zq_4?ge^j<UgI<XKs|a4xx?*t)OwEeRMtn9BvZKeMc_9XF*UdRCrP|c2-qI#}kJxf$
zBX>3uvr+6oG>bgh(FrYIHu7g9Z#I&$qpim+))d~8&%qSPj=n`q%ax~GX~&n3>K4vM
zk!)1X2C_kgqW_Pn>wuD?=(@X0*d^y21uj9Dow($M-33X4l9L2Ut7HTuBa(vxiXf<f
z5=BIUC=vxFNDyIicTacE3`kOvq5=Z)-+p{^&VNpwdv4u&RbAm#P0vhsl@}GfJS`oi
zyeKV78NqUbWd&JOdASPhyS2=y<V9sKs(bOA7mQZ%qMDGZf>dZvPORZYO(Fef)}Y?S
zTZ1LAOdgk0+Y6T$ZZGP1QP+!lUOexG&5Lv|>U;U0PFe%6b;=A2;qfa(a=RA}FPu^!
z&%vR{aQKw_r<E4>c#+{nrWY-|Xy`>FFPeDK)QiUK$vM{6J;YeD)t}ASR{>9RFPhKE
zB`JB{#gk7tG%dZz@*>BJR$la~T8?{XF;}+NdS0EQ*4m4o!<9Jh9IRt`n^0`)MLRFX
zdNIz68S|a(z2Ij}UoSd%@uC+Uz3Ajc7caVc@sbxj{o!RVI(spyed@D7g@lLscJrb;
zujoZ@FM4?Y_g-61$#UXL$CUkce#`6Q1wS{doiD&#JZFbD6|Z>F&x`(E4DjN0FNS+D
z(2G~S7{Us(6>Z&v*qk%Y!Cu@b;ViY$8QSYS*FAff7rAuow(i&1`E|2tP_~WxNR#YS
zZQSG|yco$EdNG>SZtD7IYys-4#};7H7%x^Ys@`QzF3Vx`4KK!f@s1bodNIL^iC#?h
zVhZ2<deio%V4r=3CJCWpM$)EwG0lrPUd;7kI=jn@w>U0hFf)NW?+l|c!`oiWPUL+i
zvSX>wV*{_a<|pi_EbwBXL>CDz7F;4|*{k)Ida=xl54>0@;&LzE_oC+}$9odxg=n@S
zVSgf$#^@@xRFn?|Yo2vbTqE2k2A_Db){CFKIPJwcFV=gpk3K1G`KcFQd9l-r&%D^+
z#YV1&uR3;c?EbYDqD@|GrkB1_aElmk6{P;T7uyp23nAMDzw}~EuC@9x_}_5v@?y8>
z-+Hmfi`qF3?oIcN7hkixj#@T*>56l5Nw|RqlSsH0?f2q<7f*jpI_bqhFAjNe%!`xB
z?!$>IelO$*N94Wa;z8R{i9Tl}G5p}gk6s*4Se_8F<E*v#tEDYG<we^@*(7JYIP1k_
z_Qu8JbDSw&guQ6pEBQR#*oy$ChUC5A#YHc?be>iNn2TpJ`n>Q<68W;HNp$Z9MN|0B
zJ6jhLeOE)bW>~A4B2m=~O$e2U5M9vVqLI*}LSlk(!AqR-4Xg_P>ctf=u6l9J3*L>~
z@!~os2-kTr3zcfZzYc5mOZ|-tSHINXy}0QGMRMk4xGiSiwM@Rth0%*Yr4W|$mlyXE
z+}Yegh0*(5!RP=g+NyZy<=0`f4WnHckGyzH=Lz6U08hO5&x^i3yyC-CFOqzy<3n8^
zl6^?=p_C7$eaPdp)>4LIKIHWwpAY#(N%NtAkW?QIW>~E&DA6Jb`$9ex7QXhC|JA>!
z4^syI@3X164<#hEWWt_3U&e>BK7bi_4$E$yubdC%eW>8W#w+&8#gZ!~EUWuaDZwlI
zP(^rE!D<P8$(-Ehe5m0=O;PyBVl7twwza6XygIaO{?>Q0lWR-T?kmale0ZKb!_(b|
z`aX2~%I)^S<3j@<Y(Av>VE5s3@oh(<e5a5Lduq56O4A|E3?CZ$&_$F+J~Z~BnGel<
z7=F;!M8uV8&6`Rz<&2HuxNEjdAKw>7J0Hkf2(}c=@*!JDj$kW6+O+oJ1>tQ3i<C{L
z=zeImtJelwdmlRZK*I2%4;_Vf5`0PUWx>vZv{7Pd#I9_zRPXu@>pth`E2%wv=t&z9
z+3?;%nAFDyO?KJs=R<!VJ_ulC00Vp&=)*ie=KJxg4}*O8%!ds=4ECYqCHq@G%<^G~
z4?}$z=0mO&HOYt9e0W{>7$1K5%{JVJ5kBx0FeRGVvt8CmA6ATYkMbdHy=}B030E`L
zVXWjD=ffL9#tTxPAY`K8n}R8?r%q0!PVw=eMog3FbRT92c~JF#_jNNR%9FO<_F=XU
zD}7ic${Zi&Q>o|NGs`oVZS>*XRckFBc+OfF7x=JH%oh2uSjZB=<vzS4gf{OAS?a^G
zgyJkN`#<>benMFx<O9KG6RpYe<%E314}DlI;u^t^eE8T0R+34dh(fYf$U4FGK75+c
zM>R;^=))!-D*92$kIg=8@!^RN|M{?$&g{ccACCF3P3&v*PTk|f7d~XhJ=;b3GEvSB
zAHGWPokDgA?)G8bIBPEBhWl$D_WJOR=-&z+^kJWn?*#V?9(blqv_-!td?>*W`*1|~
z_X(x;(&ToRlYa0a<U`npAALCP!wDZw`f#4EB4($2IGwQn$p_bPt542|a#rwMBK2oZ
z-lNt@sSFo<2#9`Buy;n9SBTFCf5LvjPx*qvKkf6sRZH<9?!zS!Rr<dV5g&Ak8iLP8
zgyow)L`8`SQh6{a`LYkc`tYX@_e8wn!|y)a6n<6knh)27+z@20-#9?2*0zMV63T5K
z3T`e)<&G$K1^-B-4*c7i{(njIkq>|S@Q?8OKKv`>f#5?yTH4;SnpQ}$KGz<L=<1mI
z)Q2QLPTzDF_aoVlS~Xg6-_8_zPG@&=4^JMyb*yJzKl1slkAwVv6cUmu7@e7%CZvEL
z1%=S&_6uo+g%=SlDp)L$S|?9h3E?IE2)}1JQYk-5CsND!QC4_4!SV^cf*;FLto!ZC
zepK<}ML#<FQPq!XemMPb`BB}E=lsZjIcelbYo6ASj5fiVg0=jBAGQ6clPL3fKk5pv
zmr&NZtdFz$el$oZ&yTTsEZq-#LU9OL)W_rY!{bM$AKEw8>XhL}^Mp-9KN<;dEZ9V_
zsbDif+E0}KDcJul{AlS%mgubnvjuYmx%n84Tl?{XMBDh$RtUv0c54x9C(-tT9Rx=r
zt&<-w`7zv&5u!|#GY4Pxqq84>4t96(qpKg?{OImSUq4<En;wEa1)n)~FF$%qw2vUK
z)!#_!C;U}E2Kmun_yECy37c1<mQN0r=rF+{ehf{do_IMmSNLlQ<#j)5j<L4r8R^IN
z4A+}}O!8xtq>lDujF7P$VrjxSiM}B?UT}gSvrqKnq<m6O_Jf<mzLn6Y2$?E4&5!8`
zeTE-16MTEYg0qCb?Z<3C<|OpFe!hzGzdPaGFQ+c>W1*j4;!q@jMSd*i75zBn#}Yr@
z;e7F9i)4J)k5BwqD}1ToGQs73yywUJ!dD1>=*I^_Rtl~XWLwtPu|{^aA8SPUD4~Ds
z$K|os4lwKdSkJ09w#+`2)JVw1llVSMSZ?rRqwr0F1>bwIce&2{8l`Ua;}ECP?0ld5
zu}zY`@Z*4x?SfzWvBQtAgzxd=Yd>}h-zB(PkQW_S(fTag>&L!?@{ON+!2a)!ahoIc
zJK_5iO88WsgTm=T%y>AVAMxXRKaTqG=E{s?exyq(4So=V9|eyKo?tysS!3}N7b`!0
z_2Y^kXZ$$pM~EwlALr=vC$oML<DUi3v+y#m37Us^ftEkmF8bk>B%feF&@Wi4q1Bl|
z;Y<6ZDnh;vyL3NPKlu8I=10W;zfWOW(ji?R*bF~RKcZqB^W&0`ON~8o_VYEXr3{z-
z;FkL&SN*sq28%kTUKjEQ=cAAte*7kcX21J!Gr@29aa;JEgmTx9rsFIhxaY@TexwBc
z*XMux@hD;Qk01B_Xxt_BfhZ3J|4pQxnVj#jA5Z-FPn0An;b|h3PeLXq%ACH~lP7?@
z0pv?41%>1nObsASNP$FZ>jvcu3Fl;C4T}a)EWqEO&{)Lc0oa6;2%uyDrG#^*=<)%S
z4uIc)n59erWkn}17eI%L)`DC?l!^gV3ZQZTRU}$hu&Q7U!D<0i7xJ7SGydRAttq@#
z00^MA@H&aq({i@R_1f0B*Awyi0O|{Akg$n4^Q8x14}j0-I|AUd%KeK}uJ~%YGXSD1
z0Jjj2V1^*|hC(>$ngr04_sIba3~>Jtd$Ry~NXg9u$PA!G04)P}DZnEUtq=XI0NMo5
zHh^rg$w}0qm5|l}ypT}3RZD3n{Mo9=yzSXniPRSZ=$PQ0gjCw#d^w?X4xmedcMYIh
zf_D$#!)&W79%_!BEa6^OFG=bhK%az7-vC|_-cPW9Lce@H>D2%R1u!vyHv<?f`Wpd^
z4`7J!p@PE#$Yo;#cwM5S1cwXKVMYiUDadL}ZJIVZfK76TGbVts34L4upH;}F0bf_2
zAmVF*JSSqVwwuzQZ*Sc^PYPhN=u-k%9KezQrUo!AfaxN>ohWBU05gTZB{(agbHrx{
zFeiYyqAU=cCpbT0!_|xzTF6g<gc9kI{EqN<1^E$71BRs%T^8WxZ+P*IjQ0fJ7i4rr
z0KfiiBUu&Te^vI61NelaAe_<F0jv@JQ9{|>HfwDF>jF3!z@Y%v2k>bCI|sYJWuFAF
zfo1`G6~IRJTL7O2uq}Yi0c;6iYXEm^yJ@-pXy(O^o=c^(NX7^4Uj(o{fG;JLTl6!D
z;hEVp`<<Mabp8N#1+bg*w|O@8<%8Y7&dJ>y;E`cgIp44*M>FdVadY1o=H1682e6-0
z;LBkL0zAk&lOj0-Ip1AvyvFgUgX3@j#3L+32>H<fjtT!k@W+IHJb)7kep1M(0Dej+
z{72(#0OtZwLQq5aIe_y4qy&*Ch+hJ@5I{VDOYF34=fwa50R)A61$_a$x2=GmK4~jQ
zgLXeTLIJ1&XaR%+U{n#a4RxC`H6q*yzzjeaPO(_T85Lfvii?~|Orpc<HoeTj4d7k?
ze+6(QfU5!g9>C22t_5&iY<>&iMk4RCqKFJLavZlrzr%46a$7L__2x`{t(4;riT=r<
zS!|=i4PpKc;GY2g6aBv6!vOvb;DPXso9r}W_D2$Z9N^m!)`gx(G??Qce;Pni(9#dN
z9LYg6dee4pr?XBpZ{8sC1#vfsKZ3{~L~0Q0gZMOvv>*xu(K?71f+!e7p&+URQ8kFd
zK@<t1d=M3a*wMaF(ICnN(cEh<7DTfgYa{F8LF<2k5`razC?%w{AoVgr%JOm-a~NgD
z<9j_7gQz5WWx;J;w>RBA_e2i=wK;y-T`h>}K{S-4=Ypsa#DA+&Hl0ta8N|{0nM*FY
z?UGbW5JA)qqK@#oK{OCjPmq^;K8X4WKC^+_mf-0^x|OxID|ZCpl&DM4ov`r;$q0g5
zj?;{xQ4o!TXd-&kAX+3Wo3TTLXC{=&$E?RYTS_!5h-@J_f~^uZSC*u<38HNf!-E(R
zM7to`v-b|zUgIbfE66R)I|T7!5FJJA7DV?TIwkVH6vWF3-Z_Xa!n-Dvf;X*A*LysR
z2GKL2_X?u7@IHcl6Z++(0{w#MFVO)(3=uL=@KwP<f-G}z5X)9tgFZB&3=1MR!Edfg
zd0n_a?jGJTYh)0kf|we_v>-+YF(!z~K}-qa)fMisV#XJ8#|e2uaJ=9I!HI%z3i5K3
zf_Uzf)un^J&SDqwf0jqZn@kU4Mi5{1&9^Fui66RW2C-1=-wI+@5N{{)&KEK}h&e*$
zCiHniI+U{pcY*Nh?t+VgSRBL>iM}WJj^Mk3O9ht+GS_k;JR*nuec>wvKM-6gIQ6AM
zHJiFW3}UrJX}KndkA#0L_=(`!MC!UAj#RV?{49tKK^zL=uq15^;)@`*2eB!L%|UDl
zVrvke2eD21GygPC!`kjAb8>Hd;NFt%J~BF+C49*V8^o?4cC(kHkS9q6b_T&dWNNjr
z+q2TWCy1|uSUKIgB16f!)>G4agFNYp`^<a372GHIo#1}K1A+$yY1YT?J`%+DL7e9j
zEf+c(#MvOu1#v8hAA;cS{VeuJ@@<~uiI$!aax#chLVil<r-L{nJga^tbKT#R@^cWr
zRVigU72-dS`O@4Mg18uj5`-EAMK4o>@CVWAlA8w165zrmB$y~O6hv6~&%Sar(1aU7
z^ea_3A|0rU;&55p^_!gL?`B4Wh=~{v;%X4rgkK8cvXEZ|uLv>=4^X%+{H7r1?~NdS
z6aIU`rs~wRTM2$Uh&u`XX;#5MgSbck3}J2ve+BV3mx2&Fgz!%g_k*Yv0z!BY#KR!U
zhEOhqe}iD37Yd<p2#=(k$3Z;dI+-Xlf5=*sp9Ya6BsqkX5b_AmE67y;nF7RoA#|LT
zL6Vx#(}WZdEGT&Ui%Q$K+Uv~CEfPXe7A2=S6ie6_7g8dGl0r%)^wJ@e5&qO>tr+D)
zs1QQU5I)aaq#~QC4r76AMWqlbhp;kV5!zG{`>Kf&s)bNJ!JiXSLvZ5I%o}`FH=mo?
zYlq+n!5KmwNup9WgnA)7AHvcZ)jv%sP(M*Z10goSbV0k|3!740A-F?0zA7bKlzG3o
zJRxf-&IqAl2#rK+F4$PGiC|MfR=b&yOHHeiXNJ&1qAdlp1UD_Wk{EJAXeCN(K`JkV
z&_;M$!FCD#%8cqSa%e($J%r&QbPD065c-ACKZLJ$S7FANLvZ!Yx2Kb*vt;Qa*foT1
zA#@ksL$FT>J%un!uMm0*f3KA_P5OppF;Ao>eP|s&p>9eU5W>I^UQOtu-0nfb2MZ1n
zbd^gR8p5y;_$qF0!t%8c|M9dw<wt}tGK5JXOb%i1C$&a}Fgk=WEOUjM|B{atdy?A2
zJmV61-w-lBgb4{{VhC?0IG2$r2|ksccHXshjeDAq=^@OJq?z;qIc|d$cuSO7A-tW)
zH9LegEv!+P7sC7yz6xPy2n#}3NIis)LRb{SVliG4!tIaUclzYp{H1lq3hV!l=<m{_
zge(hTxsdk+SBCJu5E`!t;e!OH`%zgH!iS=)PUx$AX&;C1NeG)l@XajG=})t@lDbZC
zeF&e1@L9rsV+b3B-(O*UtY129o#e7P#LfJ%xIqRVMcB%&j=Mik*l!c^MF`u4d?~mi
zkve=)`CTFG4&i7B$3oaccM9Qf2uH+VZwQAt5z3~06GEZPtZx&!_J#1B@cn`Z1P>-s
z8>bYYu@UrqFUqM+DZFKBDjy|3gz#esr$acyV(FYV_tUv)Cqg*8#Ph-y52GiaWfA;|
zYm1EFS&4E!vZb^+$8P~4oDbm_(JA^vxFGzZpjXhBNPQqZ9|$3sP(mSu6Z{WPK`n$x
z2rq<@d(W<iU~saBQ92AWgeX_t5blQ%3*m02`$h=Ag%A(nQV5qr_%(#<qF)K2cq!M_
z5U#NU+dA}zwk9^mnI9b!9%MCd)MV|em6-S3Bm3_(4&jdwZiaA+enn?<I);B?yCa3H
zS?_#Q-1Rgq{m&5cpK>z#R|xm$lT(~(W7h}Y+Nk`^EbE=$U35GM;b8~`!zdI+r&rVe
z4IwoQ>W@Nr%zjI9Jqh7I4%0=)OVjwsmg8v%tW}cOFq#}jits#wc@uiRF!Cq(`9JOJ
z8o1KJC?Lv)Ngig*c;qP@M$xcUjUr(%`qp$?`|*xqq7?33t9TeCgqM_DRG6zw7-hq#
z7Dn|j%7v|iMHs4tQC@fjK^9msj7nh)NplV<;;bCT*Mr>TRizx-vmA!!!l)Gn!f2J_
zs1Zg@A*Jd#1~$y79Y&onT7=Ouj8oJ5)eR#v%nhrZ^}={QjBayt>xa=)N^1~?O_cO7
zJVNY(4nbNvg}4OWVXU}sr<ftphJuX*8w)b2Nf`g09Y)ej%5N^nbH|?58DHD7M9E=o
z!^nPChd-Qin+<5q!c7NzX--AUxZN~2ov@9#B9B&SA4Uh-E67psqKJdpKVfv_poj5N
z7%zv>M|9@uETp?&moT~}^lm~Xy<DY7Lg^`_mtb$fB6Vzi!+1q_zc2<0VVV7f3=n)~
z`Dz%05~);%hA}LRd11__7zQ5=<z{Qc!+0$W_kP>!Ve1gLUiPM&b5p2~2xDXzqr%wt
zd(!AICWi557-Pa18^)dK{l|szh7ivX&+!@A<HMN1W}ff2r9d`cC8jbdjLBil2xDd#
zQ^NS*pktcg)G$6v%4GECovj$Ahf!>J2BU9<F-wx>gt2pHtG5|_;F(Ro`mZ^oWjZy<
z*_Jgo4C3nh9@;MmV__H<!|;Z&D2&Bnycfp%VJr#boiLj1vX{Ex<S8@na`-0NmWQ#F
z#-c0>qstZNmcy>gH<EsvW?R8pv5hnfV`Uht!q^<fmM}gHV|5rC!`Q?L62?biY+z-o
zC4bDW$h3YPt=q!=i4?w8aGl_KL8g8x<TJrzKI<2%o0Xf_JCj_sVA}m%Wh=c>erp(?
zv%oO+hOsTojR?49eV#9Rr}C-(rPW;9+1n|uFS%k&ckdAVN^qy(F2UV`G}t4An}>fB
zhV!4aZ^LLjCYcXKPg>`gxXE_-sBM232f{cW#)&WvhH)s2qhTBi<8T;9!uXzg^JIU_
z#_jBil}P6n@vAmEraZB;&Oe0lV;E5*nP(h-{X^4>y)qqJ?I$^5!#EqpxiEeT<22Xa
z18HYCS<c%3Ywut=<u2NbR&a8I{hz})AI2|XTnJnHT%Bs??sv(<U8?x1JNH-{Jjr(3
z?evA=4<k)M0R@3Dg6xMd{tP1&MmUVCVO$GC2}2FzQW%%%y-ky~5-DYSBx`iw^O=z_
zbm?Rx(eoxNoZvAban3K@`u(5(LI282Bqd)Foew#9YvqhI+}F9Lg>f^CTVedh3pMuq
z&edsTGM_o;&uG=(&3bc*?KZugO^y`28%D#U!}z-WceiYHZ#(-Oa(uJOaW9O&!gvzK
ze_{L`#y?>^<RTMB-zTYT@BJ_ygfTtW{o_7sJH*R5P3D$OeiTL%SL)+1rf#;qe9`Ld
zvbTpm4I@cG9tC+7tUi?Y_sryE1t|)8#%<iBbole0f8zFh3i2!P+)GMTaK*HhF7E1c
z$#(6Gtz)+=7E(|_Aq7xSTR~w3MHEy}P*Fiq1;rGUR!~MkaRnt5lvGfP7i#R-@t<SQ
zDChS9Ctn{}yUzA~j`OodS)+z0msL<sL3sr))pv7WL4I~~%Uo{N#a9w4DX6UAIR!No
zR8de>K{W-{6^xy0J$u&UPy3AB_NsN<^n~fR949u}Ybv-@CS|*tTuZ^EVtsg`%^MA^
z|5EEHsLQq}$WTyE!Sf323LFaRD`=p=rXZcsO}5OOES^U&f3P+079aMMAMbgux@&cj
zLQVxP1#Sg=w!hB%S=`&ud%(@7#5w&NDrlsjxq?gujTJOe&{RP)#X8p@<xBo=Wi|G@
z+~!;pazD1sI%033prwL&>9w*HYsKJ83dB!Jx;mb+9!G4YptXW`6uhh81qE#sOjoS+
zv#o-53SLw2x`Or!Iw<I+pf}fl1sxT1J>clU{{MYwCk34qo*sgi*kd~!R9+VS%UO=D
zyxc`ccZD<5){R~9YhK=aJo_Z#R@E$_r<C)`ySC+qqmP3A3I-^c>U8u~@QM&u+}2OQ
z`l`;xi){~Gj)4kzKH3lk<gY3i#Nn>*9IW7@9~@^DXPMh}rVbUGVS>4W*}S(=F#dbn
zC<UVxj3}HwLcz#qq;PtmZox5ZpwBfy!9<R-f+G){<49K7-e4{v#ZP8l-0i5gJ@ZY4
z`!QygZR46EWRl=yc9bh~_qUFzQYJG_lL9xmGG{25so*UIvlQ+&(3Cr7yiHG-VV|d9
zKHI)0bGG0dj-3L|6e=7Vo_@PP!D0nV6f9J%!*CfEv2zYvgrS%_^T9(~C?$QVf@KP}
zDA=lCxq|l;tYL2`cwfN^1s`&vDfmFa<9yDoi)<@71f8=+6iZ)4J-g|Qc8*EcZFi>F
z{<-A%?2wcDt9-2B69u0s*uc^3;N+`VYZa_h(5;Q<^eIo1hpzPsK2>n6wu_v(4irt_
zs94W$tn_&JLdPa@1$@zioUaOgu3#Idvx-y|UntnFKvAG7_)@_R1*a7Jq~I$BI~5#e
zpDWm<V7G$33cgXWhf}z4ldtJ%zq)ziC;6y-gEG9Cj9$B9`&L20e$IV@B;P66FZ@74
zIjG=Jf`79yYxM7~?^$gHKPWiL72}gZET>`AMe?J9;|fkFFuG?^Tsk+Gcv3;F1(`ep
zg%>@o;EVz<r=fzgbam79vx4&q&apr}r{cj(8vml;f>iY)`Gaig>U*tN&dU!5l&aF7
zSx6}Q*{k~o1*Gtxf)J-$#{s-hSQK(iK}5k{3jS80vq}nL3gS{>Q_7EWIl5Y|LyxT6
z%bXWyWnNNnS-~GtlV7=DD!3uWR~1}Sa9u%gP9|H#tFtm=zi`g`Y!DUl-#EcJ>l-_6
z3f>ZA^tO;Yf_Ldl3#(K7Q_8<5$X0MT{!wsW!BYiED%b-L6g*MzA7`aB<X;7k6x^AW
zS-o1*$Mj5AVDtbY`<a*aZp>nRl2wbRsK_J4vB$}1UKRON7<vvlk<n*7O~rF6YN#ln
zqM(XGDhjKptfGpFA}WfiD5avbiejoYBE?mdkc`h-T~ccJtZ-r(6=hXaqCxkpaw-mf
znKE}=%E&S~<yDMXoWW3m_9}ODbPqr0W|X7J23Do`$)HB#GOMZBUA3uqRAzM*EdSXh
zYO1KE!mYxi0xEY4L<1Ez6?Ih0TUbI})$$7RdMci0{VSC}HaC|(Szq+qzRYwLb`>tE
zsv}{{EKX5st<LP<wH2#DB|}9+6-`w%lcYvs+*n$~>`kOISu6Hia}}8?vQ=)-hZZVY
zs_2lOouyiX&R*JIstM~eyWRkbC#O4Gsl1i7wN}A4vS+Bgpdvaqm!zGF_9`Ak@Gyc7
zDqd9afrgbDI;!ZTqOpc18eU>=a40q8)zDc*7ZrO|e50bPif$?vt5~9<yNVtvMyeR4
zV#V>So+`KW#4EyksmLnl>8+xVijQVz<jl@^V|GSA75!BVP%%(Nx!D;>^Kx&L_3TW~
zd{xE$@}6NTa#bj0Jc9%W3l0$+Dp>oiRxR!}eoX~)4HtY}bVeCQh*EZ5?r0%zs+dFv
zP%&0)#;JHi#dzVzr)AZfmpg&=pO;HAk-a)Em)9juRxw4zEER97n5tr$iW%%iX%TBU
z{r_bjJumky74zrivPxshc}Qlf_;_CK0u>8Y%%Q(Yu6cs<B_q4YUDiWX(=(ZiVUfyR
z^sN%!;eg(4yh_D~D&AGGRK+q;ewdg0zKZ3-Y4DzkAzA%NR;Xao2P#H)Y(=tCMeo@e
zB&$`dQL$acm+W@dN5w`Jn^b%vee#)#4N{Y}D%Pn`=jAf27xJl!<`q1nDtMNc^|1Wg
z^Ku)^&e$x)Zc(vS#oaPIh#~iLxh^mCg^+D3K3|!|D3KM|p(16zHKw~%e5GQiigQDA
zs57vhyH)Jrj5yt@!u(ub<!g>kInOt{J>RO>N6%CdQ}LaO{VL9=IIH3Sr{3Mh->W#v
zNzDm3KlhNd;;`TmL0&7VoaY!T!&$826z6PN&yOmOt2n`Vaj8|joaZD<;Q!8LJ-i$X
zM9cm^Ny)6qX}WHDCdoM!KdT6;2&p(P8GS1JoQWzfsJJNA?oig_m5Z|e%#y?U{MUzG
zF|ufr0B1qbCKSV*oAYzq7HOifpV_f0Sb^?hzqXtwqC%HT8!Aj8Bj)F_N>j>ure*by
ztGFcPKTvU5#jh%EtGJ`$3a5El&qw7w*Hv7lbI#AbregK{+@14t$#1CmO~vo*?fJR4
z=qhDBH-)pYwCN>HzN_L78Q*_Y{Hfxeiodz4wCv9bczk~DUmUDo`*4!#r&|%HugtnH
z)n?6Wm-jqW@vk`cBNb0oBx!i8;)#qM+xs8agx%KcBTv>aw}OX(Q95~wW{odNJ`MRb
z)YMQ*L#l=}4P`Zy(@;P|K@Ej86xR6XUB6N9*t!pPKkn=<qM@jUQW{EYD5jy`i>*p%
zaNcqi*YMRX7sH4y?vkQV9CFBBM#H+z4h9}WmL9b8oYwLhDrk5!%UMms;#;nY8qU6B
ztE!=rkjfgW2zh+d#S-|9>96PALvx(fHQe8k{+xyy8veeS7GC50XN~jy4q4DpTSI*f
z4aA_1241C}hPo1EmZX0hv*ypU719J74Ky^=z`EHrI5cE1X_wonfi+zC$mY_}esHVr
zx@0lx*3jyZ-J^lm;xiRAn|{d7jEyAw`PcI`)zD1C%UpytG-rntuy#ajry-NQI^EVn
zLrV==8nQKOSL(JJax|ESU9B~|z><YCx_+~Je17Yxl4Hk)wb8)GwDy0H)AM5L#a0>Z
zHL$=Af-ed(+EGI%egtU9ci6=!LqB)FE*iROn8=RR&`m>k4TCfc*3d&kPYthdq%`!>
z(3@iyx6Nwh;I^54G~6uj=*yylwrU$v$+>?>e+?t{4PzLnVSw<xjkCkk+*DqbsP%P5
z!%z*cX?UHNSZ=#K#5qjE>Ydz$(w0k`4{S@?=NnF<VKm*0<e_b(h7X_EM`^q>w>I%0
zZ*|Q%ps-`ChBq{f*Dy}Q!5{2YxDUnz4Z-=j3^{Xc#8)n6P0}!#-lAcNhAA4RYM7y6
zriQmSJ9sMSG!056$F?qx=^BVUJA)hFmH)&sXL_r*H0zb>S*-1$%5Ss(H)qZkoWtoL
zWS$`P`5G1oUnsaJq4Rs$I~v~AuuQ{p4O{lRmuhIS!M6U9hi5&P^(FH~a_bBrcjkMV
z^<D3M!4(>gY<8R(?_R}*YuFRP*AcANutvk82o^{1k%o^o6px@p1fOVFt3lPEak6Mw
zui>bMV;Vly@R^3)%&uXBhK(A&(6C*@CJmv<Sz9!0<+XY^HgiHnJqHUpOC8MloFj79
zNpTz9VCVn_M!yuZU4lCVzoN&^cI*_i$d|TL#jIRkYuKw{zlH-EzM(IbbbhO0pJZvL
zd%mNqoXnas(0T36oFA2(Nb!t=8V+eV%*Kk%Ym>8Bh&IGMX13!|HAkl@S>J1@RxESD
zaOV#ie$;SL;|s-L_Tw5(YB(jiPH4C{KbN_F(r{YCISoH+IK%7icHU4j&$5?l4s7~|
z=fk@WM$c>bg-gvy#|3s&RqJG^>Jzg^U$BqOXdN$_;nU!!^RR!oltp`=I_qKe0&<nJ
z%`(D5SVM*L;)accVgEp9M1!v3frf_~49-dozjJD6h-!#&S<rA*LtMip4VN|is_~vb
zla*oKn#VoFq6>0+MSItb_P(a!x`yBArT47Dam~)cZ?M2>)>Wvmp0_mI)^JzDA5s}s
z?@ppt%=IU`f~yVJE)o9{{9D7$8`)3w?1EFXIPUB{TC#5s4{`si;Stw?2=YhpSi=(y
zc_Nle{3jWoYDkLkR0R+FHaP-fO2l%Na?M;#2RLe!Z~EN#Rx9#KmU>gOQiXgv#9c&4
zS_JoN^eGTQK_TRYA}E~Tvme`vMo=tb4HNgAC$gxL5tND`D}w9@N=Hy8g4z+(iJ)u*
z<sx`4VmVcL)**r_5mb$!Vg!{Us4SPWvd5gi&vBEa+B4~v)gq`aNque<rl<|fnq9Fq
zZE8eNGlE))T;L3<*!t{9t1TS#x)Iciz#V}ng6AWsAAutRXT);U1`(u3V2{AYhTLdn
z8#jO>$ZlaqHosE+<}N9-<K(QTH?pg*chc)JB4`*vvk00;&?th&VsLv(Rudug1m@+8
zXv*##XibgG2<V3`CACEa18%h9kP)BucQ98@1g#<%6~X8TT1W6g1f3#yDS|c;&|BI?
z&_05;5e&MP^xsW8l>!~II!IA3Mlh#>yW%)UxN?(@5lqUHLGp40og;WXg5eQ#iJ)r)
zJtF8CLAMBYUbb^;bZ0XMI|A37%)3|X(~DmyD!BVZ&^LldBOJXsOaq;#HP4^i(Sq0A
z=@=G4zX%xZ&zeUtQ25N7g$G6OY6S0%buuaacPGi<2!=@NP(gMAlX4^2ao6*jAjzK(
zJZ$m^*7k^JWCRQ5I2$a;ed&@Tb)a)h1Y;wZ7Qyrg#zpW(1QR28lU-4#`S=JXNFXme
zC5wS%QUsGDm?~k@<g8L#2T`0N_KY&nY(@k#BbXP#{0QEPU{(a1jqHV!v)&fZpDoC-
z?yw+tj_|n&h4W}Z1PdehjE8Q^^0i{5gXJ&l;#d;FI}v=!qzK-PU@6ydc1ug^5$I*?
zkO<z7U^#tTYei+~g4`7md=SAZ4jGUA734vC+>z=1=@~pB`a@nNy%v*t8hO_6BR~v3
zruRm$mJU$dDukh8PR6<jx=(j7tQW$K`!+<dF@nz{*cQPiHcj$wW#`Yx%_*0$MWQoy
z)o4=QdVscc$MRp$=PRV_68-TL$My)m<hVre6@5dHBE$JERv=-n-Snc0)>GMgIZq?F
z6v5>PzU2gu;9>+`78SvM%MX)JMQ|X3gAp8y;0Mkuxys=PjzqBavh@nm_oDFRoufi_
zF0+c|nSeh^^n~DX!M|@>zonlPUO}Ez|0#mg5u6d_=LpUVIV*Thu-69rGs29&h;l)2
zL-pj2*He8F1R@AV;1}`cP;0On+$|f5fID}^BOnh)ph&7Js0l^{bwOq^A~1zV6H1Jg
zNz2cq4%Mx@wO=E+62YwqZbxucY<MKoH6eU8_<964BKR$W53f0YrwiqEFpv{(O0?1a
z)H`C_w?V#p5!~fK*K+>BWo<;tpNT8-jp@H4_*<g?a0V@~eh<H&NPWMd>t9af2&(C*
zuH$h8Pq@<R)_>XmMevl1=fZxabtLJQHx|%QP)D-x6u~@#d3BWd#`?b?pG5QPNEMPM
zSgojax5iLNM`2OO7o$oM;YD>6)A=xxv$#Y{vM3!}duROJJEKIOj8Y<c23T(Zm0=AR
z_Pd{zNi3(Myp9SwD(cu&!qeb--by;}i!vEL`N>vUM-?6XucWFD9xmLyWJc%J4jypx
zoQ@hgx*F(apr(#mI(F;WqXRl>>*&HH9d&eEJ7II_aO<e6qn?iEb=239uEVbL*?ap7
zC0z}4*mPX_$A0p962BMxvN)fEbzYXiP3pL(cae&2r;eB6P99(4(UGB}g^rdw8tQ1I
zqp^-AI-WCa7YDl;ewg64<<Dp;&1@#f(_3C`nAMzprS{9z@x^KTkS&>6ytIziI$qF`
zqvOBjPVRcde|-A$9#{wQtm<f^qpgmPIt~?W!k_fp>1eN`1Dm|V+M;SvYDT|8R(Med
zd6h@a=V-Q0tfvkVhL?qO7Od7OqnnQII_Bw^ucL>Ko;s%Jn5v_fj@~+6*D+j2^CAx4
z3r+gy=&Pe<J;%U4&R29iXm0%&-cQ=nU&jC;19iMAWRT!c9fO4o5u|<J;@0dQM#oDi
zudxDuS}*Iho$DE)W0a23I?Q6}BXw(Y7!vL%HAct5=B~*)#_C{noZuUR;{_>B&@nN=
z-_$WF!RwT8FmLyijA=Ti>v&toY#n85=giRYmX6OlSqte*smzh#&I%Xov*>RZ>|K6x
zRf*X@`n&m8cF!DoOX1dY1rJZoSfFE}j?Fr@u!nUlW+6H@=vboT9UbfG=bLQr(od>6
zyPAF0=~${`nU3Xj;03unDds~R?+Iu0eH|-=e;~Lrp|29cw~bco)-f~;YlM6x__5$8
zf@=kzU5iH^&@(^Pt<ACb+;?o`q{wk@(s6TN<`+E*KR)iX&2e@bm%LTS=Q?)i_(})=
zUHyJR?l!ug4t+uHc22H38D9#IjdhT7$4<_#%@Ny9orkSE@9whiV)?u5SDHJ%*0EQ|
zUpoHQ@eP-hbM~KgoY(QKj(zM;9s6~h6#W2)PsdT6zX0Qqj>9^R==ffea%XxzzTn`Q
zT+yE$Ea9^?PT~(be$;WCQ(MPB3vw_0;ou%h)VWK1w(8_bmj~x$oYL`=j?+5M=s2t6
zoDS+&%elCdd7YIGJ}gnHx$E4Aj$=a`G2<^fLOQ~7#S1zv>hS9D>G10a=m>H&bDA`J
z)iX)873}LQu`u`HS03i#wpt4NP{&oS6*@E>5gjodarTeSU%z4Mh)S6bdq(nP#~xSn
z4vTY`QO$MK{M3C($7PO=jw@UWK6KPunA^5=(+Ax%4z6+MEX=)M&%>vEuIsp=<F<}F
zI)2mfI|ob0EggSO@^F*GUJG-VopkWtEVRwRT&?DN?&|o1sXFd)Df2k8Z`t@uHUAvn
zvL<8f!rWi4+tOe0{G;<YZ<I4o-oOJcxl+TD2L9FYh%2^%Gy{)yJkgP2Adi9nbUfwC
zZy=faIeQ<&(JRGsvrTs2-JZ6SZ3`D#5BKIZkk3GV1Mift<y_*N&4&^<XYwTaufOqZ
zS(sbEKtTh=BzqwPg$)!jP*kF?FL&|;;RfgJ(}!ht-D%@)Ieo`u6gN=9fHu|LrL*VG
zWzV^~*3g#{`_cx=7$_?|PZ{@<6!)q*nH3CFG>~DSp@B*UDjTS4pq_y$2C8y}H&Dw!
zH3QWRJZGSWfwSM|l%MW2_PZB6a<0GUdi{}$<tvpuFi_h-9fNl}wTk;Jks)2T{<JOo
zcjM;`)Hh%^;4siYDqu7CDk8RS&0P6k^Q}#-O15cl`KQx>%YfT}$H4jgu3MRoUK8BE
zHuv!8a~`C%=CE_{JI+Q18XI`QKpO*13^X;+(m<AhW(LnzK&F8fByLZi#a6LPyIUoE
z^NWM0Fff{JAjd!}1Fa4G{=_!sp7ZJ~>j5w(tyyK&xzR0mTLbM3bTaUgf%XPE7<kb@
zM+4q<?)RE!oIBwjc)>9%U&h(#j=Vp$s+f|^TrV5wY@myQe{$VCLYL3m@L%#_SFD-U
z-9QgEDq_1}pr?Ue2HrQY!a#2WeGH5;Fxo(01FsnPpk3B*1N{v2H!#@15Ca1Y45ag9
z6&l3R`Oh&44jx<iDn}uy)YM3YF@5?Uo$MKEV3>i|47^SfA8McCc%!c;*TA&S)+=xP
z2a_l0{S|ZaSUQ$JLas7Wkf~z~j5V;pz(ND#47_3BZ3D9nj5jdBz?%jp8JK9`k4?6(
z58Jwx&CJ;3Tu{z2*#M6=_&VzO=bVGvN=z{@)xa-3oea~2OgAt?$jpTPmVsFb&Shkd
zfw>0e8JKTaH$}%5S~pbnSM=j)EW39)pU$=o`NO@)z+wYS4J>0vT}@iT31Z+~4*i{B
z^?tHFIc0rBzFf5lZ*G@MA@3QOGdFo@d)M3bty|wEZJi$&SZUxJ1K%20W#B{ln}N>_
ztTwR5z&Zo#4SZzaV*{TUSZm;ij#;tF8Alp9`5*3v-L`JkT)abAr8_<~@R`AHG1y{Y
zg8}{udS{SxlYxx}_{agnuwz*_H#*uCa`HJq4pY?UuDaN^&A=B1b{W`hV7tNJ53$3*
zS9H|Fwkb`Vd7ru-{gbqMpCh|+#!kb!C1#ylzMrwjz}E)$vad$xeEphpi=NHDo7c~<
zHt(gfk1aLuqk-cF_8T~0;D~|mIqrp$4;naR;4t0Q<K%9=pY3rDd&jf)u$@0<wzTCO
zHE@g#l#Y74jr071eyM#O+lM>23Y{=;k{)H?oPkqpk%7|&&amh6G+~u`U$^aeDLK-^
z+1FtmCH$=~^JfFL$_37|h6Y&qN>6QHykk}G+nY(+!d&|KMa~p)c%K2kf!~JaiAY#i
z!xJ(P=Hht^6>dQ>pmIsMikerU8HlhUaU6|9H(+pf$IvDQ)8KPT=n%z=QN#?y>6|9!
zn7Cx%vVjpMMw<B5!18y>Kjb28;EI8(2Ci{x@5$sL=6@Qv&JJH_yJ4+nE{5NjB>bk}
zEy3G@cLeVW(((@>spksaGw>HZ+-LiHVea3Y;0Eq<x!z}Ecwpeyw;a#-!=3g=T-n%g
z6K)evxcGCiHBrvQQv*pR3YsWnBH2WWiTox~P5j#^Igg3FCi0oq*><^I9XsaRS}$|*
z;1%vOob+{anu$R(QVW>iLo$3Uiu+#PH|&K?6fsf4L`f4xO>6oTGf|w%ziw`KS@J9A
z)*oFw{Jq4Y+)^fYU8_>sL>Uv8b6f*coZK+EV|54Lx#n4=<xNyDQQJfv6BSKVGEv>+
zO*JZ;sA8h3iE1WXA2>gs=w9*2UL?)M<4Wy|a(Q_D-ad{RCTg0fWdbHTEXr+A%2B9S
zD{iQjxz4@%zJtf&uvT?V)H7jY9ZWoLqP~d+ChlKJDqFC{@x69FG^Gr8x}LbXKdRk?
z!$i~TNlp`d45`I-+v=x|(L)?HN~hm_l;tszVWO*vZYCO<Xk?<bi5E;XHqpdH3llAw
z*F-ZD%}r#Q)}1_`c5~mziv8=Vl9c{$LkEAEFPP=dGLdZ}$3!a=uXl3x?4K3iVCPcF
zXYHD=wY^{5!4uNkm}qOFqlr!?+L>t2)|q(Gq?g+Aop4O-;o;8+{9mJW%goYMGMY|s
zzhvTNlYe%ji;24pv#(WdeQ~$_+wx7?ZFX0jV{2K^5j&RI-9!%)15LbYqNj;oCi<Fq
z#YAtCt4Z_jCG{~8pW{67#KoPcuZ(o}qldih=x<_xi7EGOJUW(-Y4PmWYKI(Lga?@z
zY~nRG!Nkd#&LJj-naDLUl+Lin$&5P<$IY8I7DX50=9ckT((G1+zWO6+xQTDw&hGu(
zqfCr8G1bI06Jtz_HSyo;%_o}}XW|Xoyy=|L+Bs}d?syXuOiZME+;mka=VU0U+uk%W
z{E>$re3MKNk1lmip&#nD5!ISA%XAYnB>I+#gK!P&?4~}`#G1!;lBuN~v*>A)oo`Da
zZF@N9nwV$eZxjE}!%ZwOvE0OaCKj5Yvu(WOYIMo9i2k!BbFqmfCf;GsoUygMU|VY9
zUAit$yqaz+k!4@T>Gp<``pP|y_c@hJ{AA*^i4RPyH1U;*ohDY9_|U`#6C3Gctdfbf
zCf1qw$i&Aoi9Ru{4f=cs?eP?M*)B~^-?2yc+18u*)Wnr81wZ3pMeIXP+PERx$>X-v
z)wU+Z9GgsRHnGjb7bdot*lObQXY+BBZDf9D`Hl8jKW5U~cdvAAXJ`J9`lX2-CW>vf
zj_W;s(9Ng&I8Anbo4L!xZWD)195J!S#Mdmu#C{WdO?<-<F|p4C{fb+WPn}^S88X?*
zxaW$ap2K~BU2WnJYf>qVZt3r49iv=*SZ0mG_Pxv9-<vpU;<$+uoXZ_kkD2(v#E&L!
zd~SPgw{xs+uj6&_Fy+~ca!;B#_gcy+E&?Nxqs3jV=eYSm-Rw%PGaP94fQhR#F!8eq
z)r4l^yop~-_)P>%TwwJ~cun|N_&pn^)rL>qF4KANp1syd+u^9A-EdFPM94(gghFp$
z?HD$_74J-VyzJ&J!}#6j<`D-!a3dyk6EPY{HyS2P6HyNOV>|zz`}kv9^q_5jZRdzf
zj#XvKUgDa@#ox3ZZ|1U7&u=SJ(b;B2zw}~Fu9>)Q;--mPY^jMp<E?FNels!t)8vu`
ztb2psS?%KKd|v&wi906#q`#S%^nLPO6Mrx%HH{x<TW&R`W%aIEKdwvui%zvU`Q}?m
zPi@ZEYkTgSc)*1{it<rw`F+SWJc@i#{A=Qo)ci5$ln|yq;qu-+O{tsx)I<`^x~C-z
zGKnEYO2{L~0m>ice;<z2XT@rcU!GVS6QxB_Kos(VQ4~t>!a|BfQ8bETQ4~+;rJ^Vy
zyktTdB|nsvmS`ElvQd2VyHx>(3Q;^4MU5ybMo}q>%25O#xT=Xkl|%_uh3pxhy{dV>
z>ca07%u_RpT2a`dNRI+h)Q+NF6wgOdM-1vF^8OvJGID_X)Z~2i6G{UiAHQV%B>1pX
zsyzxv6wkJ`aY|CVDB4Hiioz{Xk6?Bb8BsJ8-YAOZLK+J;5oBpiqiB}kkJ{wpL%*34
zZ6Vk)imXKHv)zGmB-$#9)(QQEDB1{bn^4%&XU3-wcz9fP$0#~+L}J!ot}jLLaujo;
zm={IoD7r-PY7~PcW7jBpMA4I$*BsrV81S~OdlXBnTEF9cvdFsK?G*(J>>Wj)DEdaR
z&(XSHlqbB~UlG2mzncm}e~Au|G6xFMPX<RZB#OyVOo?J>6vITH7)5RruL&O!#p^<N
zq2W<HzGVHn+c{|GHjE@AC23R?qZt}nUlYcNGB%2FLf%N^9UsMn1b?Go!8a3pl8{|L
z=bIYE$br_T2Q#CXCgSucW<>FUY`$b&OUd(A6tkju+nOV`If)Wx3u)28dc66&MY;2%
zSP;d*C=NxjFp5P{d>O@#C>BStB#O;q{7w|_MzLD_lev~gv5Y+?Nj1fn-izWxiM}sL
zn-#2y@RbQ=6>la7S_=Zh(8ku)*F^DABK6}aK8a#&6zdYoMj`73KaJuuAsZ5@6)Rc0
z^lVD>@D|axM)7$Rzx;07CeiJ}zlb7Fe>cTm<y<_h;j1WiMzNQ(Ol)>Vu_saHZXvfX
zCw-kz$iEf7KcVa+;q18EoL46vNa*Va6g(WoktnW5aU+WFqc|GHPxQ1Xj)~2WQ5=ur
zhlKs?*Q_~sLZYVxPZGsHso$8K?@SbDqwv#{S6DrEE{bvk-9NJ*CRiEIvuUDSki6a~
zE(&3id!%LHlPEnlz)_1L6h+nI&ajlm^V~TWN)&1oS`-nnye6ne5l@t3L}4a)l-~jp
zyz6gCmxNyy{8jKuBK2w%^QCiG2VVWRD4**_o|v^<-;Cl`6n~24?I`X<aW{%TqFB}6
z{byIJ&PQscO#R*VxTW>y!s+YQ#JMNNe+m8_#XnKpkK%zup9s?CA=m!|e<b9wAomDj
z>VLwYMv)|SNRA;z$iL03tF$hZC$B{F2~x=~Bvmj?kUNGIjG<5rg<~ipiamy+F%*lT
zLJSpS;7>il-?ECwP$GtsF>XDSSvrO?F_aR{Br0WNC>KL{QS>6tXQbQwehf^lB>HoL
zl?AKBP*q5^L@ruZkKv2S%}HuVQq34@#ef)AUbLl)Qac77%*s$lNL|5tg3k-q7i<uN
zO$aTy={nCxW*r<cIAd_d;Eo|HhU^$T(%7akG>ai4hK4aTis5N1cjFkENRoF^?l8AC
zksr6tIy~0XT*MZF6f;@EAZs@#hL$20Z#^Jwbq-%Qppp|qs~D<Jw!W~mmQ?b#F|>=J
zeH<O)XwMqP@NSIfF5$%(I>zu;46|bB6vIpW2#8@w3@=l^;Cv;9elc{8p-T)&YaLx<
z=pI844$!#dZXAUJHYL^FGlpI<^o=3dFSEB`!&SCELb^Y6QRF5_#EgI3OE=iKLw^3M
zj{Y$Wh+*`4H^aafUX5W8qwhNy<yQ>iwqU=4MI1w87#2fr46ntw1wp^@F)Z5dcwKO;
z;BdhaF^r61R1AA(zc4z6$Lli2#H>?>8Rb(<jE)mC=6xe(J=a7sK?<BG$dccTVUqC4
zf>Q*i3QiNG&GZ;%B=}4zpW@pwJ_c{+0iBCum>t8N7o2lqm`k!KcU}xRDd`IZ=f`mP
ze4Yg{RGXGH<BDw&yR@y7sf`AvGVhWYt}n`YNAQ)~jhDr+Jcj4v=&{-UUJUQYa5siO
zVptKw2QmB<!)dx@469g&7(R{R!x+xzxEVf*VYTozg8TuH;>R(3BGI)mtc&57Y&Xxj
zhzzsdiY5Onh7B<siQ)SgHpZ}t4dg_KVRH;yV%QqP=P~dV`1s7M@<(0K78z-abIV?`
zHf%37q1E;nK1xgfPVh^?9Wi_r!_Js>Ryf0+7<LKYEjWCpH66YdzBgg>jgW6+*q2aN
zAF}V4(hhK5tg;;xJS3R)mHjZAP|-#GXbi`=bYy0o5aS<W_>n&RlZ)?DuvW)~k3H?8
zax#WfblRd#*y{hrw_=~1iQ#Mvkr;HYFl=B90lF)DiG|1Di-DVIT!<k&B=cen-Wa$K
zKx)vMj3WcX7>1;}{V{8!^<6>F<Q4A2HaE8l3DKU-Z;_$IpvIsH|FcEL;S<ALxz?=I
zuec5V_!Gm`7_P+-jUg7p<rsdAAs)jenWvrKO8Ym*-8kT3=>3u7<nq+#7Uy1(A(-8=
z>8bs;>#R%+w_>;*!*4PC9>Yzp8>6h5{&>IbwKFbmryo2qj0ywy!C<(<<*uSd{*2*X
z4BX_uVjO?P@Hgi|9Qor|p5OgX439W*Vz?i}gBZAn|0j9f4`cW@hSozpJmTDy?&kLX
zPq-4skQ_%!98X#8nOO`;ajVtOIJcV569;S3YkaG`aqGHU^Sil?KMxT|jUz3N;&GIS
zgV6$U6po`v90lVj6o)&X`*Xgv9d>`eB7+;q7mcG>-0I<%0-k^7XR$@(CF6X&5M|>i
z7q?DlC>_VCg6=YL{E^qav7RSmaqiv=**t<_c#Dkkaa4%o+8X!C2JSA4bJ^rdaa4|5
zZLbnX%{XeYZgEtLqk0@87Uw<}M-A2|;Msb&F$Z_VRd>&ue8J7l7q1XUojB^oQ9Ew!
zNA&Sp2M1#F4>_0i+t^F>;#ig1<iKrP{Wu!LVT&U@4p$ufN^6hfw#U)=eTReXU7Qh5
zO?Sq@*L<k#yXT^TI}VRnl4r!xQ239}xf{hnY#c|EIGV=MOrliUumW-JxND`hh$B0p
zw~Qkz4r8r@`rTHpoH$y=@!1_)>o{JB<5C@G-r}CM6|B??SDnPRlCfPJTPHhDj%)s6
z93A7>9mk$HI>q_-G#13MFpihw=p4tJalZABF6{7Q{rbewH;%}<tgdl%i=#Uis5oEu
zL$5e`$MHpW%G1>JIsKf(6QA0P|CEn}_(~l8*vWB>jH7=X1LFKWAGuVjI|jxvD2~Cx
zUyY;X<rW1GJBGx0LXfTc3$=#QHx4`O#?aQTbpBY!gTh~9^@6t7<KXe-Bn-nv`EW)3
zQE`lpTc>r8kAu-M!pCt$8al?Z^4<&@zYzxy@21T&oFFz61y}yr^z*XL$#KkxV`dyv
zI2P>Hc8&u((ix`3F+C2FhwW++--=_FMCZh@tzPCco44bbEh1B?%oUs$=Z2s5`LsXh
zNak6GJJJ`i4srY+PuBq@MbU0y$vJ0`c*(O97g%6rcgaXrNdih*l9CZ5NKzz&ASywE
zfMg^pl2Ih*Ac!DrPfzaYo*6O-yxSlDymRW@bL-Yu)s;I}Ey~2#nV6G_Q;RKh3o<b`
z6Z6DtyKb2u*C!?<FN||O?pvIRC7D>3iRGF2CKD}|S-zFfrNW1PVB^n>Ozk@nzt6-6
zFHG+W@vbq4jCr_~f<I(p6$|*cg>H2wPOoy3{3t;i1ZlZ06YGVqC|ieKx}U_mQE(Gm
zT*wx|t%BPGw+qsKhmfB$c~56Xr`yeH5pj<oKZ@8ZWM3vX$N67v{F;gV!oMt%_$JnY
zOdJ&Dkl<lKekIG$W0^RfiI5wb8^34bk4zMFb3swd2{tSHxq?3woTNR+k%GnwPG{l_
zZ4?wza5fX?IB+uYZzj%j8eC$}vB`2h6BjaZF%y?EahY=n|AX7ulz1f*S2J-<6u-~H
z-Mcng^HN{2I5%V6$i!cnxS5Gt?8cj{-?i^`Cll2F&ctmFlQNEf1WBsAZ18G{bH?n9
zdzrYOi5HwLGm*)0%IP8#Mkd^uP%{z8L@*PcOn7<3O!zaw7aadSa;%!xbl#fYo6vjr
zFlWi*u5BwUp-gC*_;OqBFf-iN)p$zA(%Bj9K5+5FkKMB~BAgyM|77AZTYP?wSSB8D
z^3OzP?k+VuBRD%_?xD2XMN|1<)f3K6nRu3o=d6&fy}NE6Fk}~BooA%3O{_X6gNLrM
z-}*8WuQ)svT)k>}orx?8vMb1;@Mof|SrsHG$fn@HFIIlB+<Z<(pG8Syf3q$fWX-97
z3qI#kkXym*k6qmAi1o(TsoXt^TQTNUkWYcDeXjfp3Me?W#(wn+^H;>ab25havKLlR
zL_u8z7KMw$qnLs!3aTn7uAqd1vI@#6D5;>7f*DWymsaq;$GUm3CFP!lUak^fM#1jV
zY2@X_;4K9e6;u$;Pr<3vRT6Jy1zb~<UcQWYqgPW<OF?Y~P*7dLzZ0ubuc4r(f-}9G
z<o;meH<qhj<t3>j>F|i;i3%JFoWiXNY(l8ph43>Ta+iW61@%PvXJWPb3K|G+sDNG?
zFsWowxDOP)?upe>6uhmVn}Y5Nnkdj;+M6k8t{_#xmkm?W6r?NoFk-v>Uc;seI)<!6
zu9qUVP|#9AI|c0(b76s23fd@mM?q@^<65|QDOK!8=blZL8V7Q<RnTFx$wP&bJ1_+W
zT@=iFW$C2g#9>P<yZv1Sote*i4ZHkq;V64gLE9y^_XRKIw+|g}<D2oWig`m?;TC!*
z_&~we3KlEqsh}4Rr(nE--pr(e!3u^b<~A`ODd?x5zk)vE?JKx<x1B))6l5qEs9=zS
zb6YHJ=i7=*&e$;8x$TvsN^X0duPrzDP+Gyq3PvgzrQj0<!xRixFhaq@9(JXd{pDc`
zpKn*mn|x-obH+)_ql@;@3dSfHtKd@w6Aziag+C+nEeRh%_r7oW`ZxRiw4~1zOi(aW
z!B@0VFiF8Q1=AHwR`9ukDGH`a8K=(4@Q=0BT5ielk&AzDV2*{G4$NT0F<HN0i?GOd
zyYKDp<S6J~sC#AA()AtJEDiw$^A#*muro2&90hY(!wR@rC(Y=%aTRON_Es`OGm^3{
zRIo?^w-V#37jy;JB`#6$je;Etepawl!M6&2RIpCLcM85&uu{Pf3YM|Oy}6bvSi$^f
zwQm~hI>EKI^Eu88YuqT!wo1Wj1#1+n<=`r63+(R6dE?YaDXlx(xiG@Pkxid}n6h5M
z1_hfHY*FwNb66!|BL|3rU0rP_&suxDa#XxxS-Qo-#~oW0Y*VnEO|UNix+#|W^->nk
z>&YT;C%Ea??K>HTbAp0{9El3{DA=dq7X`1fW!<ZQn-=BIoBR1X`-y9gUlrv4GwXf@
zzp)6fUA*)vKF#7uYZz>48@0o7NWozRM-?1XaD@49Yd-AK3px2W{mQ@XBqwiWb>&Do
z&Y2{K`40Vrf<F}m6a+c{b5>FCmx7y||2cT2?Jje8u1!5F`~rKIkn@7nd+f?{Q8<&j
zq~NYRX}luJRRz}+^gWdIx_EDJI1DpCQJe9OZT{)3w-o#>dbRi7x-H~i!G8qrm`S12
z#9Sw?Su3mNLzsIC)VIy=WABSWrl2C|7E}d23cNymg0%N52p>0(8&aTg5_WSDdxRxa
zS75MvCpzBp+ae003Vg*9v%2wDen(8f0}c(=Mt%p^PUNG@M+%-Oc*+#+@y~G+zt87*
z#!mH%`D~%4JV|>l$-Yqd#MK<y+}`4)g1sYLuN1r%C5zkC>7JFWmf!|=H_j%QU69@-
zTdld=$n8cRH}c8}x@6THbH}9dd%}EfBxgzF<?)s3PJUpS-;Dxplt@b<U$E3t$c@5o
z6mg@d8~?a*$Bklc6nEpYBvQhSl5PxlV}u)}+$ilvsvBu;lyRf18@1f1?M68_{@ZRT
z??weizhm8(;d;xBif+_&gZ*kl`4papDlu8jPFGn-6~U^4)!cxP>VmYX;l{}IR+0;s
zEKH$}8+BO(HyXNOaU;<UryDLetZvxc=9LduShBnM37^B^#^HS_{5UgzA3F)R4N7vO
z-)D{MNm<$zw2#|rt?x$Uii56!kk0i}8oANfZT`QX;zqW-$$$Rpocz@MiT-UjIB_*`
za}zEL-Kc;i-HoPhbavxiH=4Q8+>O?5v~lCdF18kKv~nXh-_laNRJdvrKlwXc%=V5O
zZQbbP#?$JqzX#g5!&f^u++SF_`mF8U=->uPM?r2BNKUhX18wi|xNh`h!H4m`21^&W
zxx?TGG;`y^b9*;8Ho)0kFxQQg9xUcy7nLn#%4J`b(#wtBZt#`Uhi(jX!~2Jg{3B8N
zxY1V#m40sYkMjX;blGjskcuMV6g0?<!ESJoDDok03}x5KV*A+5A5yHJ2$BqQW6ng=
zcqH4}jh$}na$~d`W2n0^*Nw4meCozTHzv6;xvFEF8|&s|OmHKALgIMA&uCdRiQZpk
zxB{0gliheSD`|=wQ(0Xb?Vk&>6{flI?RM*QsiloY6Wj8_K=>Deth6uPs5jj*Q@mff
zG0V+GhF#QWQ(tOU^*lG`yRnw7<HiCv7P`R+@H;owhZ-+p;^O_99e9dmF+2G$wk2*1
zm|~&(#*L+MzIaGu#^QC__iik6V>#<zwa)W9de(2cLO8uE-S{ESSGln|&eyOZc3Ek#
z&JCV?H@Nw+J=U`|FQlB@Y@Pa!b0a(RR_hiwepznWBz&_V#X_TOTiNCITDCF4&bIBs
zcL-AaS;!chZMPeH+&JyV88<e)vh3w>aN`Kul#QP1Jg~v~3#Sndq6wD$f+W8QIpD@Y
zA&27n>{#BT9P*c~S-g&<{<dSnj|)=#UC1A9oDlM-;K_LCDUPO`cAA}a<D46p*pYs;
zoR<c=z;@yEa<?ZNtH;5VD%TxH?m8yyv21GU8u!X^#f__OT$4_CQ}DVQuQPciY`MYN
zRrsxQHhMWcZ;8R*Zrm0^W%UfpT{r%9BOuB>H|`7Z31$j<1QkKIpz6laIT?)Z74ML1
zUCHVE;(c7*P9BU0h27BI_}+tM9vGZJIOJ74P!T2JB&lK~z3fYzC{#34@yLzGoGMk6
zQ}KkInSEYG0Ts{Oc<x3n6}eTs;QZ;vwsLuLs`$N<{iPe{ciC2)v%F&ZN9=U3g=A4p
zZ&novLb3@`$u1;^ihp%0y*x*(7?wP1L6tlzxHoHF6+^@6RZH9Rspc7kA0+eTW<eE&
zR1{ZHLPcQ}MO19H6ez0lIfM1Dx-Q-bA9~w--(5^a-O5P^C!1%_k}686D6OL8QQKhM
z${pqSf%gZkE0j?&XJvZJRcYl_R8Ub{MI9Aysi>%;x{4YqDygWfqM8b*=1;YMtxc&S
zIjO3ei}t@<T86vwZ8_}V_jo_wNMBOGR#S!d!=|-V@Z%+3SpG97gWfKw4eP3~s7O}P
zP(`AOMjNbF*6O4x%v-h#*=$U0mxZETg+s+J%PdYomtc}$J;C~d4FqX6;i#jLiW~<^
zrm09*!NWCHk)k4rKNF3yye(O6q9RquvI*vEmjcHf{IaoP<%Xj-S(>Y8!5UWav5J-|
zTB+!-Vt|U)D%z;%t>Qx!@2Fh61MO6_mqgx4>iyujy;z|%Zt%*DSv#nBd!e(V1a(r;
zS;f1;yQ}D-;yo4btLVa}QPE9B(=6r%2{FNME+h74B`cB-RP>Zs<i0c6_;E`wHfyT2
zV=x<kh4@H?{j{Zzih`@0jSt%Ts_4hQ@x(Ia3-g;vk_;8u3w0l);^z|<<qyk1_KLIS
zHQrzq{C#5xb8_F>DBV<UT(*6pVmOPo)Ji@~1#w3ClD<)nl8>#URE$=!N5x(hV^oY)
zu~y|y-1t<*I2E(mRaA^u@tKO5D!x)NLB&KBlLy$?F(#2PSMw~~!*@@sw9lDNtF##^
zy0=Q3qGGCwX~L%qj%}6Js8t&ALaVed*i}TN<<2R&&vA*Kt|_xr^Iwu;`TBh|Cuy#V
zc`BBu_(sKi6$_ZLQO>Vb3>j-%sDf*7EfPNeT^sqWGR~s?or~G?*H}pS>&j9UD;lSM
z$Ie#G_N|J%3AS3Q^?Rx9WrE8ER|u{Y{6Ub_wMxip6>H+kvz^v;D%PvmtYVAG(+7sO
z&bm>>CKW%44exOZHqX6md=mFK{(7$Sw!^kn#WpsLik(cShKu)H+r`pdCSeD=-$ypS
z{n@z6$z{QIskkXSR_x|5{K@jUX4%JnuHv$aD~zIIzlw7z&a3!M#Q_y(RGd|DP{kn?
zr&OF)aacv#C(c8i(oU*4qT;A{CmuJiJdepik8_R^@`oVx6Dt0U^A1b0GA{R2<@d(*
zyX4|MQD(zj<G0!PIHKaPTn`snE~vPu;u8CV>_#+wik;KZ*r+X>n0j`W{i=#<D#9vs
z71!CdIH#$&r{XV`i(^y89S))imRlS$qnx*y=k?aVRk%-B54~f5*vfuup|gE@@?F(j
z)`qM1kl)U3<8FHQC3}i$-nnFQqBw4;ecIt>7d>pDQ&o64=di=5@T&;L^?-_CoM-u@
zF)fR}H0?DJ>%O!YoOn6&vkU!cZt-(^jd_2^Pk?R|ax^ZT{E(BsiY6YUdhnQ&zlt&*
zl=a{#Cx6c29%S?2IVXP=|EYM%@%z|vqnNXq-CT=|FD728$m&7tiKWnK%WD-`JRspH
z&V9(jB?tLYdUg+Tcu?4bA|B-QfOX3v7xJJ)g9f<-b9<0SNM6Bwg82mt2o@B~-Z_y`
z_<`TTZn=wkP|SnvQ*EU@7`4S(+=Ihs>?MSkZfPs&G0z}WIOI!vFuA#HgflB2=9KfG
zyayH!5<RHk!CM}{gX$jh`Ex}Ns(8$gU?cN-R`Q^-q(IJeJ}8}B)dONRLB6}>OUW7@
z{FG{|%|e~C*Yu#42Om3}<i|(a>v-^NPDWiplFI9BRu60*)bpUe2fviJ**(~nH`(RE
zl=i(G9ymQXc*Z$0C5gzJqa+W4Wy;;{X>TBTXy`$wBM#p0CwoxzdRCro8+mx8G@!8u
zDIQE{W+SJ2TSR)(JV^Ioh6i7G(A0xw9`yF$Ly!3ax4Ga49<=bFr3W>4*jh1h59(g8
zMBdtiHX^<w*jBKeAVb>==^)rqut}zae`j=NS-!NqEBKz^`+{8ry9##mpt}%S_V8d)
z@kEkhb2ECf5$9&~l4A1q|I7yKM;`R|V1NfKW*@=6g8c-?KXPSwFwg@oSvJmtK^_eD
z;1dsqu?0Qm-b_Q;3Lfk@=_22uS{5C#Y<ymue7FZA#DJkAh2&b9NPQGDbHp-QkYtPp
zW8?f&cAK1u6vwkyc)%qeC-6F|kDZ4mpXk9P5y>Ze@Ohk15i(V9n&5PHw)-}ked)nW
z4;Fi{#ADurf5moLYQ5bfb(ROSJ(%OcTn`p_u#jyRu~=@~=Xo&SgGWcL<Wv@~PF&={
z*UX+6P??*W$RHxKbmw{RZ)6B8Wj9-Dq5IZ@?>y$U2OU?RTh0pfAeYx17b`vZfuq|4
zzHVOS!D<gSda%i3K5{SjyJd|BYdx^f%_ug<&L>(wdO%#~!FmtUmO3}E+l#_<CYN&Z
zKO@H4%yGBd7V%(<2V2?D9GD(>Jn*tDJm3SO(K%9fdC>Z>^Jf-zlYOU$%fHyVceL;J
zV2=lTJ=o{L-yYoN=wN4HPxj!b2m3wvjfG;{Ew)Vg#?o$}?bq>12RK+fXn4X#cS!R5
zhS$k&JLbW04|uGL9{eukga>~L`Gb{t+RC7l;w3rDxN&~kgEMj7Y^sH!=frzn@B+u_
ze>RGjJh<$^mAK^%53UNo7FVvbCQq10q5I2&n{oY?kYlqf|9H@Th3&ovnI7B`PVZe0
zN<MS^>%l!ymYjA{?03kicyO|W&Fuksm#Y?42zhvu`S#i8L721RJ2pS{KP>^lpdh^=
zAsR>eG7G)BSQ>(if-_B{oUuK4z^=Hx7u{n{%W?il$dmWes6P?@&m}yQ-tydo7asiQ
z!Anl*UbFwa^5C@x*@b8EBC8kKyh!lkmoID#r6VWO`~Tvj0jW7fq|PY0y~yK5UN1Iw
zvzPLsv={lj$nQk~FA93Wi{27m6cSQQkV;`Mig-~}yiEsNsZ6Tcu()`c2)!kRPx-JK
zc^O*1G%ubjcu`h(ISDN<7^vo85Zzl|R1}50l90+?ENyP4R?Q2rXnrL4QQeCgUi`$|
zdQsDhT3)>4MO!awdr`-W#$Kez5UcA&eIaZqix-JrSiP{t6_*gZphM8<MPcjz{>o4C
z@~$dtJukeUn@<HBh(WSoL%~LZ4Ep|Dg}1$EBHosQsa`bqqRibaX<np@(p0dSV2eKH
zms&N-CA1Ll#0usmdMn|r1q)xu+Qy4XMNGY&7wx^6>cuoKI(X61i-BGY@}iR$oxSMk
zMK3Sj_2NA*x=36`$<aIq@qI6Dp10(mo~5f7-6W{Hmp=lSGtckGDiA-2+wUk~ek|JC
zi~gc~=*34u`mp}@TKamiNIoF{X0N567bAL@xf&3Uo8iTynP&YA_F{;LqrJH3aSZih
zxOhJn{3LEaOvsU+bB_=*GOmyEVpqhx6{Q>F#aPilWm57T={PUO$1Oh-GQo?9LMFxa
z$wEFCobm=&<(Tfp3@_$*F;^6p^a~+8%9lcB3V!9qEFrT6FZVL{7N6(EeDSUlT;RoG
zFO~>j$T|^1v#&W!rkgcD_l=0(3oiBITQ9zg*VyXwX1gr&V!4E_@Ztv{D+Rm!I)Kqv
z$)1U;y;vjSTETT*aOtEUy(qugta-ZiUTlz{)w4`xlNX!4<{|*oec0l~R@R;mpZc)P
zi|t<A@Zv8oc6jl#7pJ^9?Zr-xorJ`_UhHF?^Ova4oV&f)BjW6hP3ai=3)2_ncftK$
z9P;9@7r%LNfP<(*1=<|+;=&Z?=&pA1BVtB!+>4`L9Frh=`J)hVQ*9@a?hh|cc=4wf
zC*$@^VPWYc2A%PuTt4Slo1NFaIP2ve%{b3QytpEk=bl*i7EZkA1@V#>mqqNFp7b(b
zW5&HI-fN=s3ZH5AE^nrJ(~Dai7d}2O#osI`2cr*7efY<VJDeGOXyC(LFaGsH@xtxJ
zJ&v+kcDnms6wm4`_t=rip7X>p=)SA)6Nl=B#|zyH!)rc@r-4_@NPI&4UIgMw(2J08
zO)xAtyorOx5#d>UINqpaRCvsb2SOft@mvVa9(nON&YyVkG|r!SF(sdw4&4h8|MTKy
zJoJ?puZ91in+92ZNbn(>57~XF?K2CN!-t$g$_VE2A-@j=gy;708*<YouOLZ2AM(z3
zk<b<Np@<JfC8&^KVZnQ6P%Lg=k|fSc_^>mp?M>WLB9``H?ISbiWql~;LwOM^`B2%1
z3c}xt$F1nYoe#`|R*5U{p=z90^MNl!7+T$j8Y0&8p_UJezAZ_y(l)bcz8&GJ<3n8u
zwFo+VNEBifq>ar7dz?3Z>~O}p%ZH>muP3D7NLR8C4Sk?l6CWCp__zt6>uqU7CY2&)
zcblcXzUN>WA1=3~ijo#jr(n*cW<E6cp|cO~`q09MmOiv$BJ7RT8@KYIwGTeSN@Qxh
z86>v#p`Ca;N>F<rI*6BM&we+H@4V~mBnpqnjJ+rP{kRPc=-5@d`Ow{mfj$iKp@$D2
z_|Vsfem?Z{!L>H!L$T+Zqh74Qp3dGrSVo#H&i?a}j|&rlouA%cADV|C>F>jYvS|YZ
zNisOqJa&)__F;$*AN%kLyIguIe_Q5S8AB!Uaha}RKK|3{9O=U-ABOV~Ig>_65Rb?-
zC$>!e^1f@dDD;l;fxAGGjPqf<50ic7CGls1BolnN(BDonksWNGdEGlnf*QuGpT}*c
z2$|}`G#?%;ZQ5pyX+Oh<ZY>>O`0%9<Gky4q>G*Kbhgm+%_F<zBn|zq#!}SH0B|d!P
z!(1Qc`7qyy1*{n#zV>0E53P<{Zgg|Ky)uy#FZp5yO-Y(m*443MNp8sUdpXxqA6J0E
zk3Lv)y1rva^<lLSYkW9b!L`hX<vy$sKJT<+r4O%5rtCf9=rA|q2Oqp=9CWLM)J^T3
zv%IT%#gg^UIM({m@t8U7uk&HO4~xsXHgImYC;h~cd&-e9H-nsq-ptA0hdn;*^<gUw
zeAwl~ZZ`MY#O*%(%!uX9t$%iK9G!A-|FxlYQ+BdZ5}gIkIEE#-vg9%y%eBvkUwk;p
z3iRPuANKpOeVpwCi!eO(Hy?iY;SV1Uh?mMiA%_GH3my?X>ccT1#|3FQ`J}md&D6OW
zbR>NA`X{I5*_N9lY^QxVBl%1}?KtbhITrJ@<Gc@t`t%^7D}Twsy>FJy&A8;lWsVn4
z4nAD*VQ>x?-Ax~^`fyFW*L}Dl<cEm~3_3Y6;V&P8xlJ>=TRaQ+aGOPt&^LJ3hktzt
z`Jnl5&xiZ0e-1Yvx@f&JeQ^7ra<clkmm)}!&LeGfF}sU=P~Q~4WS)fzusdaUUH#nL
zJSgZhcXMOAgniI`c;Ul;J{Ueke2B46`Vf^^{mZ+mOiGxt-rOhap%0HFh37sz_JL2)
ze{PV(Ztz6-Q^99~uineUQ1%vfo|irp&grCk?Zc}$r%ok{-wYaCJTaRe+5OP{F#O2j
zM@~O_`|+WlKZ7H;AC3HI>_;9y^7>KBkJ^6Z^CQ0>Rs5*xM*%+y`pt{Rl719og2IdW
zQA7y!qC)uUoa-CA3MLj8ZwbL!HuL(Vl<?AiaBYN}$+j|nloh3%V0pm`f^P{jN<|@+
z1S|Wwtc`hnRZYBjBg&il>cSaR!*8zeQ`3+4OPasQ(ADw7>W9sbx_*?In#&TmOk{aC
zSU=_eb$&SfNb;ke1UUt_r<hmHE<eoe<GBaT7)yOW8c0y7v;VvLO7`;)VzWXzB$=1-
zDSo`|M{7UY_|e3VR6kluXqsTU;QlJE&&ww@^`n^|m)7w0pRKv*jNU@XqVw5W3E{(Y
zF0w)W9r1SXqpct9{OEtoydrHc;<4)H<$6ayI{6XYXY1@ox1r`+2J(0Pcuz#~_x<P+
z=Us(#6YTCskGTGUke-6Q{N}zkjQEisef-$&#|}UG`q9siFW3akgC7I@80*KUepIuY
zwUOb+KtBfg&7U#p9pcAe$szyAdZP>#@5h3l_%Te#aKRCRj5SioD8bQwj1jV9NOlH|
zi`z`}W4!Rs1Sj}$hRZpQv0QtWWfH4szS&Zf{rH@HY>ADZ4^8odIMt77Ldd5Jnc>H-
zPwe#0^y4c(*7>pCk6C`q_G7glY?nEb{z5+%`7u{`*J1W~e$4m7e!vn*vMpd?huOn#
z+rO636@IJ~vRH75AK&<~Vv}{Lc)u0=PLMhL-j8L%m&cWL30YIU)+6tlXOkaT;d3)q
zaWMAlL9)gVt{6jotsg(e?T^}WZSdnKKeqYN{G4SYdsOj+trEIPaO=#p&3<f&b4H(X
z*xG%h*;p6mX8i2OPCst>@i*(iZ@vh)=ErqEcKfl1RVT6j@Z*FZ`-J}@_^TiLh5ROX
z$d3bW^f8u$Lf-Y}J}l%&Tt6!0nBZ~Nn2?TXRhbRCKRF8gxa`MCKm2nuPD$u#L57|Y
za#rx1;CaCdf)|<X9A<C7BHpWl9Q*tepW@Af+3U{EHArrwZm<F+^d>v}Wc!#cW+mMA
z;~zhKJgx-Y@gtK{haY#v`>)_VKcd$x_k|mO*JZ4$zgrGQEp9(l&U>9)QyZins+8gp
z121Qof(ctkXAN)=`4JY8TU~_w*woP6QbZGliB$im-tzOV?=r0srq3~}p}U5d9}n2O
z0$32hLq8sIG6|qb0FV86;zxx5-U{HUAI~`V22ePF=YG841Rg-H0B+Z_{pUxP0I~+~
z(vMdh`}vxwF2~H|q}P6=HMh^GXG;j6H(&S$aN23h7J$0ZRl11tdL(}iQPSJmsOJtK
zPr%&CrC<Pg1IQOZ<*2Pd0QtMv^9OL@b33DC8=g)tQ(l(SKEi4H_*J(e0Td0OL;xiN
zC>8*N+Lf|x$z>}pd}h|BRFtarQUP#Dw=w~cmljNzmr+*4$IEQxSkh&-@&Pnmkw#K6
zfJy<>3ZORg5I~gxk`j_?1dv?cRyBZX0e}(nHKX^=4Quhm&gua?>XFLydv374*k!Lt
zgBR({Mx6la2H*(58Gt2#?_<`)0IV$XMpxx|867G+Z2|mNFWDZzoDu0OhuO$q&atQV
zO?3rOFM#^2&z6p)0KR<O8*|h9{g>7tz^?((D1gTEGLi$hG@_~Zb+^U=FepWk#I@T=
zTu_j$j<f&<2QVanbQUduZUJ-;pjiOT1LzPy#{gOc&@zB`0%#jRq210_0kjF=;38-1
z0GJKBp_QEtho@6%7r?S)d(};@_5qx0-J87To<6zfrt8<OodR6d7F`199KgFg)=XzE
zyN%WOp44iU$w>`|)~}PC)Rnzxo4rB%{0!<5zy|@0nU^sjfSv*L3ZPE_ec3KIY`s~=
zq4htc_pOHSUbBA`!01A0bY13Uy!D=~UjS1(+Yf)`?9X;tZEv*B)}l>v25Yr=>OjFk
zg7j+FTtfr+IDm-(ObXzW0EPuHim9=a&&wFjV|{IF^Ob!>058fVj|^a!D{bn3Y2;%9
z7#qNN_Me|q#}{b&X#nE_;QmBohNbgxJZSgHNuRM5*4ZXV+{$g!TeeA`9Kh!RObcLo
z09@5)3fm}8ayM5R`BYI@oEZUp5kR(K>9g6UOka|n6~I><5f4(AxYD-Wu#pT*P8#{d
z8tT@RmU9A_8{j76*1lgl=h41hI?2KS76tGigohz~9l+uMJ`G}A5K991CV&`&0$3Wr
zw*mYaz{vo<W8VvymkP((hyg4QU}peVGh8bISSk930DfR+Yv!8pS#KiUssL7tLcT`G
z+5moxE9(MSFMQ)#D-C{<M40}@05%1%S-e{We-2=)kZpq71!=j1IlO5u|47#}M|a|`
z0Cop3XrOCP0DA-2CzhQbHa-}@FY#Ev3fa$56ITwf9h;fIP|@-bd*H*yhXs!Wa8wAD
zW6agO43gg^)*q5{MmZ6{p0CU+x>FpI666l>gl<+8-9JLkvbPI4&nYN?iyU;~{VRaW
zLT(7s{)&*Rg4YDE2jJ^tZoovh<9@<T5pN0pEqGgyp|9_omr{2ExGT!Pas8f<`+}J)
zsgM)%%)jaBRPlNO@Cxw-;13`m+z<>3h6FXiupr~=0kEy#q!SS_D%h@SzK5L60%#pX
zn;<faz4e&Wau9igc*0YF*gOj$A!ydp^LT16g#0J?GJsb?UdKbTh;h~+ypPRi+S!8m
z=uzYBBIXdxDafE)LFA6}L$-$bg2*3)Q<MUN_8=TW3I<Uqh{8b>38H8aHRG|01yMeT
z3PBVPqJ)SggD4$DnIKBVZE9wkwOuxda&hH9%~Yy4$w7Qe#L9vdgQyg@Sx_T)l_07H
zQB9QUaUDVP3r0qys}aQ5f6a@fS`u12h&n;k6>b$g+b78)Br%8uRm|G3iI=2jO*0Rh
zo4M#nT%sol)(fJ(kOo0C6OtT6Lm`a>-xh2fM2ZkbXUA?5L~0OeqBM=`=|Oan^hs#e
zJg&D0qNVUwapma!gm;2qg?9;}tB7rbXeXq7+@?bi9ffxaqO*{9gP1Cv`91NzFL<+g
zJ|3%^@G(Ji=II{f4~7Xng7_eao<Z~qVsH>c#Gtoef58vgRfO~r>?_z$kO{UMXjasK
zATmT5C^#q{+VpMnwrHq$M+EV)kWU1M2@V&e4J}6sA0;?Ct~cpx4&Jfi<yxKNgZM0n
zxk1beVnPrTS<)b;1u;oVG+E48w4Fm-pT|>}!fJVFE?Hn3=$anHmqE;wpc#T+uur}=
z7hU-(h@X1dXNmZxbIuN8P7uGharHTDFTch5<W}DK68dcr-?8dmSr!DbP!vXAB;@NL
z77JM-_>JIFLE5lCd>_QJAc}=hJcQ*ztO#OF5Nm^28N?4kRKDg|#j&%++G?MTOO^Up
zI#-LxFFYCaV-V{ksaHX)4`M?Qcg6ct5F3Ly6~yTvHU+Uch=V~K3SvtTTZ7mW#NHsb
z#q;oU5Zi_Ch$|4XGl*SrWp@xi*E2uh-zUm`!OQm(ej$n5RQT2$DZd4AAg&|^aaj0q
zR+^9_f=309z2VX={}6sckaIHA`BV5w!4mK0Iupd%Aa05GoZuC<uaNUWTnOT#@Jm5l
z7Gh>K?^{H6`)i_H58{T94<!A+*vW<5jNA8^Xr6Tb7VmAre}cFZ58W{{>%T$V3*tVf
z-ymW^JP1Mw!W~2)h@hCMLHOhL9wA;qU(h^>GjY1Ea?p_Ix}X+BSO`NO-cK;%JR&3-
z#6uZSW~eAn1s@4M=KL>&p{%86K|BxQMO@*D>AyIC8AQdP*@CY{$r3`=5E4Sj7D9oL
zIp<^-%q>W7ju3JR&lOkLSMvzZE0`~Y{MpRAs{A1=9AcKPpy-7{C>%nOcr2dL7*tfe
z9ML60C>g@U5GI9CO2qadbO@nzh+7$=YzXB-Xcj{A5Xy&8A%t2X)E2Y1LZ~jJVhELl
zR1Tr4kSc;a%A3oEYT`u*x0{=}su2&ZDTJrjIw8~z!5M-}6pNr;FfjzH5Jt3xFtFeM
zt`i&~b9$th6hgfaQbKrJ%<6~GFmB&KNOB0@NIlcIktmI6BRQecM3nRpQsc4GSkf)#
z6<5=^GW*LMErh=#*fOrS64F|*jo_Q|whf_O+=lt=80TX{=oCWd5Z(>py$~{3oDkj*
zp^F%NB-k~C9wB@XLbrIV?m})zFYOsZ@3`Je2+xKe#uc_^AK`sN=odnN;RE8K**lxJ
z;Vd0-PzWD~@QLujA&llZC4`}I%O~<wZCD7SL>VqPA|5)D`9ER~oYA6;iR*p4=l)dq
zxVSQ2$Y&u;5R!i0Y_G{7d>+Dq5DtnsMQ}w3Q$v^*!t@Ykgs@n|F9aE7K?q-lFjKr=
zg)lpWIU&r7hc;Z8V{V+!7c!3{W&8iGncuX?LeUrTE+B3>Xn4LQ>=+>|73JHw&e`cZ
z;opa_OvrM<j(_C8_Q*U#tqkFZ5LSh-I)u$3Y?074g6l(AE96JPb%KmCubesWZ3y8f
zQ8tFKNeKHP^<n-jTSM3u;?B#ace~)u5O#&IL-@~v4C0j)ad!y&;>sQ&dpU4qHhXh}
zK$~Ah-ygznamyd>C-BsHNWA}sa5#h`Ash|iSP0ieJRZXDA)F84f_VQBJQKo+5dIW?
zGK5nhoEHA(nqi7eT<n==L%2NCd|Y!*LT!Q<1+NHR3V~O2mxX_^D92SHw7(`~x;@8@
z5dI3`W?a85<W>lO$CWqj_>Xw+2;L1Lc+Tum_r!ZYgv=0>5ZobzLeNB1L-2**55Xf|
z8heH8lP69WrkPhh0j3iVy*9jLIL-|rdI;IiyZFabM7+G%jtYsf$hz4d9)<9jbCd>~
zh9@CB4I!U~{2HExus@IURS2&`cpk!w5dPz!F4diGOF7p|;ZG{r=*^;m%RXn*kX=Jo
z4a2fK=@K-&?=?vd4LLRB(vVv--whSWkxb(+JqZ&|y7KTq*IjuvkdMjcT(H>5l{5-y
zD5#;ThH4rLX(+6rjE1rrifAaR;Yy;jq{bh$P+UW!g;h#uXuiSKVn)&nhqGli=Yfh1
zxlBhX4W%{wH6@9QGc^4>HI*wrXeh6tqJ~NuDrivogh9iA_W4RDI=LnWSE!&_uN|&w
z+gz13RMD_M-N~)fSUEW}T+mQmLmdruHPp~hQ$uYH!Rbj1iVSdF{nlAa<JW!W$`$qM
zSEEj6(ZCOk6UB^#jzM+}z4JQh-qqmH;MCyKkffoBhExspG}PD7kcHCFKm$wk*&kJs
zndh5Mu4Td1SE^;CHr9}$;cX4`j=AbzACUR7LHC@_W9wbjvpcDzX-L=5NsiK#b)Mmx
zUCr4{!>f52<jpnEOV>h3OAW0w49%9-T0<LA-qFxj$RG=A($!8wdkq~#=_ts!g-W}g
zWKSl!TGG{71My9X-jjpAFW5z}s~{_|hXyXL%MZdQvh_9e6mKsL<1}!`Z3gw$@S%tw
zY3L)QuLk~?%^<pd8v2VkKtqOxff@#B_(YV!f<pyqKO{~V>toH_Ynx=4hT)=*&@e^_
z#gQ6D#rbFr-1nB^*tqhk5T-DmL*RksGx1K)%$e=D+q9gdVX}tLHB8ZPM8i=HQ#DM}
zuw26m4bwHuU;}BGFTMQ>4Kp=-rQu8Qvj2~|lYbWLQ^Q<Q=EU{ME2{0zYQ8X~yE3HG
z0u2i_EMYA%0~)>-v&9<neU_UBlWymJS~wwc(J}REo~07>t%mP3{8%jin-sp+P_9<B
zWfHXEy!j@y&0g0^4L@kuq2Xr@t2C_EutCF58rHCG^QEn2bg{3zJl8r6k7kr!FW#Ex
z9Y+()jCJXkvQfh(4O=v9)sSUZg>wJo->hMM?UXC$9Sq&3VdMqJcEOyN9En+6^!|6w
zu~Wk?Rv?F!hTW1TQ`;+K56f65rD&a$eHwnz(DJo&$7}P|B*|}La8Sb`4F@zBjhuAU
z8G2ZZ1GQ5c?@Fcjn1<sTblPb6UBe$5yc&EOPDl!;G@RD(r-qXpSqXVq(mYFYG1eIk
zXEof`@Q;{1>Yn4A5WY7*ui*lddhNWZ;gW{S!s)%i`6te=YPc5X*IC=Ioiw2POT$gk
zZ^c9ZW~c3(#2_B@j)uGJes}V3zT{ww{3}Pi$7<Q@qPs67Q-cy$+?=f9+{1Zqeg@50
z3P0x-iJPObGoXP@HvUYWkOob|!P+TdcFVJl*M$>!L}zwaL_<`=OHKt6CB}JP!&40p
zG(6-y**(W24UZ*=_C?P-uGUVuQ77e@hUd}^UU0_yC;xwa&9}@vN~=5h|KoIe$uTY9
zc+GAQM$RyDg^@LkgfOy)%}Ji_^3Dp`!nnJ$0`~=AH^>p!UpX4)7M?GR{9)t?Bd>TX
zHtB84>S9kT5Jo{!3WZT?eny3J4n{dU$5l9tRTmsZ1d9q56Qo#NND0A`f~CT^an`}0
zvSE}9<C`d!Mo~VD3Sp!gNHg$O7!|{)X_(`>QW%xP_)s@_l`yJ?krBqgFsg-7`<HY}
z7>QvZY=+WR52FSninmr6b>ez$A$xyKsVn40rg^Dj4Z{{jyD-{^xrHShVYCjTSN41(
z+qj%zE}LVi$KyV;x&)KL_;*xeda2i!&<29ZVKfY*Q5f@{CN>TuT?l!KkhcY!2&M|A
z3Er(yp{bB&g3SdPt3?<s<Ghs+E|S)UWxQ{DCycg2N?x#W&p|33!ssZ)=^sX?Fgl0v
z@E=Q$C-#KJwk{_u?}qVS81J*)7u)#4tE-SMVQz7fMx|TWd<#a`{S9H8hS8J77ccij
z_)tjiFftFAW*^1v`-IU~c)z&vv{CYaFlHA|<qx*RL17FIV?7TP#*i?79>kn5=7#Zc
z7@veOE{ySE3=3m;7-PfuG>j2p^BgoPjEUWxc^+6tve!MZTKrksp0tb(V~iA#yobxl
z1vI>;E&RQOA4`80#)L3thVfMxMb=m*hOs?4os0DHU)o7wOlH;j9dw_EF-7=P!D)ii
z1!o8rzG3+yj4y@L{(f;A|4^94+9;j8<GZAAcl+!xh=E+W=Y=spjBmsEE{p||D|Vs9
zVbE-$;3D>Fr~PZ;*AJ%g6Qd>U+hKfE!A7@K$e{Z6@55LY#+oqJhH>X+`tmS-;GhWO
zRcqS{!IgsFU$^oj!vde=x_Qd7It*gQ_LS8L_8-~9v)LBkNauff>v*gV<-aak{--cD
zvNP*=tA=w^7@NcJhY<*4OBh?jI2*>fFt)LZ!Z;GfQN{}6=P-T?<3JcY!`KzZzA%0X
zV|N&P!r04*c~Z(5T;S7AM?&wgIcdL!v7aM!eg?&(iD_>_Ne+fVeprGI38%;?Oz_;Z
z{Kvu=bj<R57=K96aSpTw$%}HNoCxF3FiNz}eL9SjVU%(-`*lO=sW5ua&nTBOnKpHE
zzfE$62W^*3az2a;tOqXOAI8NnE`@O|jO&snLodrwu7q(l3`XP;nF4j@gvYwUdB$-5
z6~;f=(&?!D9mef2?z4Nd`{hXahm#=(I9o)#y=$aUq`N2H{}+`o++lda@G_q@Qm7ME
zCZ02yWYe?!B#hz<qd^|?xWO<&9Ctdh>Co7b!gwCWi!k&sj4&RB@tFCSN?@KJgb@uR
zCP!pCQ>r(6Qv(kreU>PpjN?fdPo*rat2bl%lm4?l3xl|Rkd007Ul=dhdBmRHZ(dtp
zGs8s_v*_lJnMGdMp1!bU)sga}NwVw6p`(P3k~(tgW)TYOD54{maC&p=$irE8Lu%f*
zl21qeI4>ZipkN^#{i`=)l%l#>nZ-oh_E)K%zok<wE?zckDIKNRMa5f2M_C=^byU#J
z_9`c0yPPR>jKb3KxOD5o-74y+q@%JJFsPP}D#EJ@R*UNpQe8)lxKdNd;eM{#Lh8iz
zx;iYv69uhtou#nraOiOAaOr5Rqm7Ov9rbiH)zM5xeH{(hlzXhHI+ArX)Nv}+l|q9%
zjz&5f>)6{NnSZ8FDwRrQ-29BUbu`h@Xj)4DaQ{*D&7d?LeQox19aHAn>4III&2?ni
zXKkTl%PH&MRr4|N?6qwzb!_DmU>z4<TB$S2J32b(=%}MDk9*ifrJW8>w#4>2mdwwf
zw@6+`Cmr2%bl1^Y$GbY-)A7EJE;_pE`1+=;{@|u`B(!`I=*HhY$b0DcKsR@R?5(4x
zkX||#v~l$M&`z=Xm(IZjO~Rm$bo627b@bCwaBON;1O0Uj(D9p&13EHv3}i$d3v~?A
zF<8em9n*CT(J@rVXF4Y6_*lm$I!5RispHUs)L}Y?>)7eD<!^58pL<5NkkgIQ@u`k+
zI!4pJYVR?EBx8l_o}a=0XUFp>HEfqwB#|>{qK-+dQk{$G^`ETcbC&nh#@AZeCUm#`
z@uD|fiy{rDN+@H|hHi$AnL54_@e3Va>UdtI@y3;Q;w&Arb<EW<Pedj%M+eU=j7yv^
zQJBKV9c;O7rI0M*;dK0{W1Wu0jO%Fjy^dvU7aiZ|SgPY&9p6dj_Z_t}HD;J`hZJpi
zYO8&@jukpq>sX^>rH&tTtkO~Fk&TutDJ_})tUxLW9SgEn(n;!QCbC|~1|8dUY}fIV
zj*aX>a`a6)&K<OD)^V(Xqgl3hXi4uskNR)bK^#~$ow!5N+0O!2wf!ud+1{yRm+;+!
zdj$6i?i2h)@K-_FzsVI-ILHRoaYx5p9fx%s(Q#GBH62Hp2aXXPr*$0H@w<)_I{uV{
zG8=S%u-jBkXF4Y(O%gU}dRsfm869WY|8-nqadey)gA2O(_w>wS4Qa6JLK-V@SZ*5~
z`@>}&S6G2z`-(2<wVT_T)p4+x*LB>~aZ5*!tpjcd{w2uhf9rVY?N4`GQf4Lpqocqv
zd*`7xCi}0Bdpcq|9_YBQBa^eYj<60zhg*k_rTDk|kg`sdV^D{e{k*J`RsB26vb5jr
zyfQz-uOq<G(Zy7PI$n-23l)+kAklRg(o9iFiiL_uHW-ni>;pu)hdQ3Ix^z6!@mR+b
z(Vvo6ww?LGb}z|ZtF>+FD6=!X;30IplKT0Nb<QH(wz1t`ONG-Qi($4t>tRv(rU?eJ
z8OUxRhk>#N&x|nUXXGT`VJT!Fmx0^{27GVNV<5kQEYniR^NNx$?k!-TAngyN<Xw=#
zzj0|(*gz2jMGef(;VdOsOpxB<LP{7YDWsOuNwKs6_jOAd!(732{C?}hBFW_qoby;<
zpt^wyyag~2YT+7C)>hHr<5_FXi<U|Th?Nag5kg+oKsDh5PMHQZ3`|*U<0daJn&p`n
zvXR#^P}@Kq<A3WGx(w76ZV^n3>sBE)1NOM$FmPvUy3;Vv<Fm#%lSHo<53Mhxfq`Tp
z4Fww+Xl&r|*7OuXUjC84ZJ>#G$(c^Nfu;uXMUg*>W(JxYcrSwYBY11AwS|GJ2Cf-s
zX`q#X)&|-bm~UW#fp-kFH89rTgBP?j(B8mc149gSFwoIJ4+9?<=wzU?fi4ER8hF=$
zcGmHpf%gsU`q)m+Tli*KTz$?t_)wyo0X`7u&U)Kn<HH9ft1C6ZMgHe2XHNsY4D>dj
ze^QCDdSx>ovVF)j&pSRcQ17CnkAYjSopgN-^y4XjT_v;U01+D>?3p2CVBBU9BPO_L
zJk-F)21XeeZQv6F!wd{JFhVl9KU6NMbJDB6DN9~EM;hiG<&~`i$eB;xZ}JXt47)*{
z6h6LS_Qn|)&n7l7Rm9H>OfWD}IB#huF^8M0O=hjGOW-Xw?@TFv&dOPvsAn;skW4f1
z1^bdH(*<V;o_g6}rh%{6IStG)Fw4N7^{ep-$-p7GtFwDwbj&rtJKV_^9rFw@S1sKG
zC{kHyV3C1ec$aG6YXgf7Y&5XRz!C%B7+7iG2LnqDd~4u)1IrA2Cn?wawOX#vaxb}L
zR_}5HOlpMzwoYE(0Opfzp<FPVX_bMs27WZK+Tc>L$RTxdqpXWh|JE5;Z(xIgpV(Wn
zx!9WHrDYk54;F||Zdf-P*kWL}fjtJc8rWuFhk>6tLhGdPUcO~k*LDv4*Um-@GIp{@
zEy&nqAh<XeQ)7SN;{_%{x7WZvHu17N<gY)eL_D)B&wc~Hu^_LUXAK-+m(zM3HgH79
zK?8?`w7=+}e$+6ZIHlG}Ib-0MaC(mm`Q5-DLQV+&DR`3O$iQg>cW;=*9ADD4xlRgy
zreF#@+&Kg1<+v9NTr_Y=_`MmWUFRH^rAuFt%4E^>*XDcA>jrKZC?7$Ei1~2fFV1o_
zkVgtP*+mWfZGel_+%|CEKqjY04tXBh;MbL|e+}HD?sw(;HQ^1G_%(sL!dZ*`)<Bp?
zPjIRR0xZY@=aV}Yj{&d2e|9h`!ReP!61rg%>_M>!3DTGmnUrpTX)^IQ=|>I34CIX<
zUjz>fJT&l>xms%Z$m4oM@||t0%k`MOx25a%a_LVv@3nMMd1m0bffok;<CGpj_6S}|
zte>V?UK{YtalSH8Ig5j9FlLEh%=@ma5zIJip-T|5;U{~J2&O-^<cc7-kem_RT5qrN
zou%b^`(HuV_U~<ZB3S#CjU<1BpP;x(L{KJAVu1(>MldYsDilG{2#Q7cv4N{_1Vtiz
zGj1a%7LR~C8TFZB=ayR}&+n8f$)hyQTPgzA8e3_m6G7PsPF-=8;~bdia@B1}p37q5
zTM<-@AUT4D5mbs`>zJl>Bd|nJIf5z?-kc^@6|uTtwFn@jjK@mL8p3NvP)msSwu@rz
z2<nKJoMufLCnZMU5XBk+y>zw+>~Ws2c9N6%j36l<t9}IagiqRT9)+$!1jRSnNg74a
zSb{o4kP^Y$5u`<s9>J4;T{#OR(x8cirbe)2UbQ!In~Kslf@VS}HW$(&f|hZmRRpag
zXd~WtB3LeQZyvL}NugZ??Ino&lTzszkJU*?XTf(P7?)_~uuBA8Bix)F+au@}LH7t|
zM(|YxJtFuZf*}zMji6@)y(0L=W$PQ^s>0@{5xr&Ld?-loM?(5U@NNn7+p2yM^cQ77
z1P7~T&4{4WXU=UCECX59+tcU<2^lQ7(u$8G_(beK7aSJBXAw*gK0JaELPiQQ@lirX
z3yu*SEBGl(BxJnc@H>@gJTZbv5!7sA=V~qVwt3I|ad@&A{CY3TlnACqFipH)3QiZC
z@y1|`<qIL%{I<ReGNxWBH7kPI5quxPvIyo#&^Hk*6*4!1c@fMPz953HBWT{&zEHf2
z1Uo-9>y2(P+gcRzH{!SK<S}dLp5;5X#a{DmX7N6Gmvg*lW?37-k7B$cf|c=DKL}YR
zxLR;c1l4r2fa};yxf_rE#{9Qsy##F#r1z%?HVXG!Q#M6F+|2PJgnTQjqEip<v$i9G
zpCibOK#5>yguhzjd;}LF*d4(hj^%i2dn5RTJc2Jr+x9W#o@qP;-8FBP{bKW5-12~s
zgArU$GK)rcID#V)9F5@7J=?Je&WgeDxc%=D{1N9Tg#0OZQt(s+r-hsm9Q>)dBP889
zj;x2>NG^*0Zv@d(*)BzJIRY-#cqM{s5j2oZ%C3sR=e=`X7v+W^gZ_%(rtn*We+%9g
z{6~;BcZA%Hpzr)<^xli$zNE%dzc<l#H7%<<0+ol3AQpiq0&fHnG4OFf)v<*l&{*N@
z9t(N~L}!MBLdGu0;2%%3d!&RT$W<__9uGByY);S0z2uTho0a?^g4YpbiQ=IIJraBz
zw|^q!so=8+p2zhU5&S3oWn6hBWYqj@Ofzc~T){6#6bVsqmr^R(qUM<~dlc)|njiM$
zjN-qSwp>x<7Lq55#S1d>3MZjsXn`mSMv)vv!zc<xQ8<cdwO*B?C=xaQB4;ASg%pjV
zn2^b@%s;+ML{U<XRZ6g26s4mm6Gd6^wmta2KI5&JwR{v6qIfHcl+T?NC6sA)x|_#!
zsT2v1RauT$MX;)1wJ0E@x?l~#nu4_iYYWziqHYwHC=#Pc5{0Q*g*XIlg7zq?ZmQ29
zI%gEFxaAwMUKI7?N`oj;w^(V`D2m2W%%!(-)08OQj^cwTdPdQN&9~grPB2xF-n1w(
zKeeSt(Nq-v@!Bkk=E7UVZCVOx6-8?y{Pnd>6z{}C+eY!?w3SJ<7o|g#d&D?83a^;y
z>J;Us39in9??&;SkoN_tcM;N6uv-+}h4hGrw!PJ}R}{UY7!}3nC_aqhqbNR!AGc4G
zU(_QbioT-s6YL+w;BV8J8R9@uh6oOdVpEOO!NQCEkV=EKw=F}X_*j%*7i3Tw#wr?T
zBN;B@h$u!1dDJtB;+QDLMlmIdsUm(F#pEdZ<VYGP-tmH;MKK|YYYQ?aMxigrm?WGz
zA<wrkV``g}&!ZUA-8?$ov?yjvtm%SOW<>FY@Gk{t#`Uj+%o04^vD%!tUU{E6Hs?vV
zoFB!4C>9D|B)B+=uj4)T^E~D^IZN0vTAO|Q+bF){P2W=#c#7|%SQbUchv@VW%cEEk
zMVANY`T#4V_#uiwNmum;SQW+UC}zblJBBq;tc@aX4EbXCkwZ0#3sGE*Vto`FqWC$A
zol*Q0#YT?PbJlIFb|G5?Hw#j?xd#xpM)7SATb+d&+vEBUA(lI?T~X|g;%F4dqSzC~
z-Y9<KbP>hAD1Kp~qS!B%yd~#0;)iagbH{LN#4)jZ8W;IL7{#F|4o7i>BXPHN`9vq*
zgz|9wA-&Q}OSyISgcpsENAY_Ur=mC=#UD|eh~m#EPDW9!kt^KRmiv*l(#3Q>(|FV>
z>AlC!KRpA^L~%BXb5Wd+qC*XPo3g2s3pHe#JRG;r?yZ?STwjXfauiw=;V7;|aW#s2
zQQT)Ah~jz_e@AgUiW^b<6~)acZbkW(i)-EYO?ORkUE0*NcGy)ozhlmQ8?RLViQ-Na
zccb`M%E+B?E6uexUG1z>-gbAKz3N5lvLVjQD3mCCQTU^9N1;aHiNeb^s$pB#$<?Z(
z^NR!<Z}5BMc$@zp^|IOnQ3Rt1NrKu^+k@ZIcb>3aYn77ZbnJJg>QNXBisEGy5zZ%3
zJdWZ?6tO5Cu(L(+h||>gq&9Pteyi<xzR6y8jI-`|%a12*JG`k+qj(m@b4~(LaKG<Y
z7tMXx&!nYZsGGud3AnSoOLe@8;&l|+W5^LhmKd_ekPt(*7_whZVZG56E$YltH=R+q
z##;XSuADLCiXnFld15fK_C6M~jooi)u`q*MZ{J^N&qz+Wwa}J7h5|9PiQ%0X3dT?<
zhPp9WVkjI#kr>{Jp<)b0V<;9w=@`nyP&|ebF_es<R1Ew-uJMCzwddI@4@jz*C#g&Q
zWPZHFEs@H`P%eh@F;s||cN4px^#3`<&UHWNn8`eITs8aJD#cJahUziYh@nahRb!|Y
z17f)F$oge@b8B_h0I~G1_V2r!8?V=lp;ipFW2h6uE{C~T0e|5i*vWPHQyWuD9%Ade
z$DSC2HHOA9q{Lv0!5%}s80yF1h`||yD~6<)IhqO#Fw^I9!JEdqHtcu)IN$j&r@cW8
z$uTsHp-~LWzA-m&r|Y>e<4m!nacPbfUCbzN$Iv8(W-&C6AvK1y7}8^C%9Kx<Ib^MF
znr=UKz;Yxb#X7tfl@>9yjG<Kwtz%eGzA=>_r=$}n<W8JrwUzGcn(^AzHimXF42fZA
z4DDm+5JS%xdd1K&hE6eb`9G$v1KNq={cb{eQ~^aqdb>l-OMS=#9=rn5REi=UsSgkp
z1O%j4>AeXei1c1X1*Iq=MWutHG(nM$Nj96F|J~1D&iS7+=bk%vzL}l!%_Q0E&Un$m
zi*{bT?!_Bke$~Xs)l3hk8=p99_xWApAM#-j`=K`-9lhw}MQ1O%c)>T3dDu7g7pu4<
zUCch`XVV^}b@$>eFZy`V*NYxr^z@>a7rni>w$r(<O~!a@D$mKat#evRrg8TP`dh9S
z{k-V!#Q=6)*zA*QzhpfA(SGEXd2Tx=1y8$p$BTEp80E!ij<pwqycp)i2VM;J;(afM
zcrlbC`;EE3{b6LX6XyNvs26n5Ran|^FGhGV(u)th=DT={|Ls^Z-9z14%RO>l?%1(r
zua5CztQV8KnC!(kFUET@!HbDhnq|ztVc&h&-g}N&vDhU?rx_0ZBA(*KR4+dAVwx9R
zvIecpux>Qx7j5!yv%S8?Irx6|OfP16ang%ZUd;Alju#uf*yP1r7T(^y*o!4z%wuQn
z^33;QffozuLaA<sMKoxcLDKQQYx)ECQZJTyv6_oH$Axa=#Y!(e<#oO0(Ma(n<^%8~
zpGdTMu4k{qJOXSL3!ImGysFz$$i0S(zZdH{zrMDuWzDnQH-2)g^Mc1G7253i=2%}I
zoV39Uo{q#*!}v(sW-qpQvDb@zUTo!19(L{Gh_6ZA=EZg|c6jmqUJt`gI<pXR9=kL2
zLCS6~_RvwwdA4k@^M=nCUhMbckQax&_>vCe#X)Ir)1f(Ed-2`8+yiu{{O&FDa<}#I
zbj#!Z#*1&gC^I>YkH8VzXS<Jhag_D+;y6Ff9;AH7OM7vQYl6+qw!F92JW{I5x@<n|
z_am2)GM*EHu3S%tylzH|G)_D1#ZO*DI3+pjz4*n8zr6U{i!)xF_2Q}*zk6}ci}PMw
z^5U`=7Z^=-Uu3R)?)EP8p*}vi$R57p#jmV<BK<eEh2MK8r`^BeW|Vx{x$Hma-d^1F
z;ugF2L^X=ny}04Ux{CD&JL~^`*~Np*{`BHD*P_0jJG|(;T-N{byj)hYMu%)3YjxL)
zf4q3gLG<FD7x%qj<sW<Tz>9}oOu6rR#C2nGE_d7bp<QO-f812apK#*mdfM9@9C5D~
zJ}(R}f?oK&(7oVT2k2w@-E7gWh`s#!Y(5gn6T8@5A^P@@?l2dkY<HgdxqLFJj5RCf
zMVwCJLrEVJUhv+g)rUMjXg*AN)Yl@&hLh*@A)gP=_)yG;{63`kP{7AWFYutTdrxym
zM&q<{^K%RN5Sfw9^R|i#DJ)pThbk96)Vtm?NAR0s>BW60;lr~&{9>uqW1*XY8;R7&
z@8;v9&-+lyXF6U*A71dGv=3!{DCfhAKJ$r3_H7v-F4){WM2us>hV=Nn2oDY`??VM2
ze2wd;&(G!YYCMU%k`I-6T_39YP|XMU%poq=Cxef$@>+fCxG&stPv9A6v3k{gsNq9R
zA8PrK>Vw^f+CFnnfW;$iHXrJ+)i-RVsu$c5bns~kzUb=kng0%C`;g;<(}&kr+gv`l
zeeeipw2=>K!s{lLmxR<4Oc$*0LxW^$Lmx7deC8ka#=<iNvywW0h&Az{sShoDXz9bt
z90gA%zZf+0;k+l4ytxmIGW0j<wPO8!Xve%hyz0YiKD6=S+n1cL_DF5H)6P9PTl>tN
zIoEV|v=yC6+$H`EA6~lb+Hlv_o)=n}b|BNe^|@3=JNnScXYLR7iw~VSG(N2LVVw_M
zedy-HyFR?<Lw6sz4R3Fsc~~>aTR!v<g}kSbUV<rm?0tObYnFz7KD^B@u7@)ic&rbx
zzeET4P`A5zQ13vAzLT^u-f|D}VXzNld>HG4aoG0055s)s0ZBuAc%zqls1H1`g`woY
z?jQIt+=mg8_d_2>`7l!WQ{|5LGz%Xs(R;P4F*~E<d>HS;0v{IA<%W1B_%NBC@54kN
zCW-RYRbcboBK?j!nL1UJX+C_!R){juok@K<UDSuhi_>O`0hL)oX8SNl$lRnp&xiTK
zdEzI{7WuH)htEV=BDh?TCo3)WVVUrcefVOir(aq(;tEkd5oGq2LOx}Sgsc|qaNo|P
zH9mYU(I>6~j1t%Tu)&92KJ4~kqjUnBztx9LVzyaYw8e*k13hfof9=}l!*)q!2|Ik)
zDg4#>xs2}dVXqHA_;6g@Zyzh^!+ttam4>#vjxQ<F!F)L6!`D8vt<vxy9mA8!qyutk
zD&L6Gpt_qn!(ksc12Mhgh!00ON2<HO&)0~!s&mfwJ{<GmS9j*L5?Ktip?Cf0!|9}_
zo$%o#`+tp{`Y92~fAZmHcEURziVSb=wV$ESa5dn>@u7?#W&OC|!$o?O4?!O;`Ec2X
ze|)&-!xdi6hnqg!^5HihuKMtY57)SAm2sVJpO>4-|IW#E$;Qt?hU-4u;IcWu{;Q={
z@%yhA-BO4APakgk@VA)VVQH3HWv<ozD{1!GGpXl|dUqw2<-9%8NxbjFBOe}%_(1TX
zAoD));VD-+AN)T2>x0*aJrn9O3xjjIomXu2uUUfbLqM|de7&?xPn+Lu{g%`Z`4IM@
zs2|Vx5%D3)WzCQLe#Cr;`(W|I>PLbV^P|JiS6N8!R6DWo$p4j}$B(>zv$5l4OMjM3
z&XD3q0Y3`*QTvT*-0HuO*cA4o2<`9JdUt_ovweoSmOd<KE9OUWKc4ralpiJhc-9ZK
zGL;6;`SB1ohLV18bN=w;+T5d?NiX<ObZRGt(o*by{6#-cm9_B;e>p$O`{DG%<wpfS
zD*9m)vr2wc7E)cXiXYYdfFD);II-2dT<0;4oN_kh$E|Z!80GgOR+XfN*w+-S#TE&v
zBRKVbIt>_7{jiHd?(l>A50kiQ+`?JUk90pg!qfby>&HvNxjjBp8MymveLoub(aewL
zel+wW!_WJZ$o8X=AC3LU^rLjsYTR6%dwnplndRFx$(^5@<3|%en)>mwA2aIJ<`o-l
zv7OjxW0~jg)uKIzzJ(tx{dmQXSN#}~n}>NBT1j7-+Zu55A3s|A@ms$9+_vTICp8%!
z8nxQ_@wy*x>3p*rZ}`p6wcCE&@uR&TZ_*R|=;+5RKW6*U$q$}P*TavVesmVzMX;+M
z-Gp>!IYMa0r!E;tdil}YkI{aN@uQC)ef=2d$2)%Wix&Td<SQPzejF~~?&n99NooE4
z7~n_EB3Z+$H+kESGW$H_@A~m%y={aai*`BR^P|Oh+aN!dRCZDv?8p0(N<PGop~8m=
zevs6M`|-=0rZKaR^y5P*XOtin>SO&F=f`9^o*(1=nBd3qw$6!uq(19zc-Iy`p3M`)
zCUIClaJJ~{<Vk9yYB{F*G0pU-%xcH%AF(Za%xA6`oi5@G!I^^0GRKd(esFu+Lw?K?
zLcZRQ`F<?$V<BrI;%dRgf-Bg-q~%gSmL>VetXq;V(bHMZClXyL_^BVOgmkNwk4X%l
z`LRZn&jr^Ct`q!V{|hwO;KxQkHu<sHkFP|hxW$iM!nY=sZGLP|@*RHc6n=cHjmEo$
z@9|@=ANz#w7yLqy2Ax}5zfAIH@09&o_yNI#g5L;!E11#R$}ETdIO4}qKfd$hnjhCC
zi4Sai@5eDeevl~5P6;_qrxkJ{sh<?m5rt24X#Ds&sb8cg_;JRMv!a|AJeN$Za=IYP
zyuhWSwu9u7AD8{OBB{S7ZJ6|%@T*DXcR&6R{zFMK*A3w}xv&UnQ!8KNTKR~7ChZ63
zOaIG{zq$13cuvP%KmPF}=tszpdw$&a<B=baIpQ(r13&Wh&wl8~!6k)$x#1z-bHnq5
zlcjd1kKXus>Qg`d^@F096Y#mrcbatX^lQiYbF%!BN&{U;z>f_Tod(zZWocg($|^A|
zGwes4OFet|L{3C7Dj4%);{4pyra77pi;luNis-QF$fF}gM*$sqb*!GBn@>l6As;u*
zF@EpVVQ1F!&2skt(YK(^GX&FXF1H<;pL=szS|J@Jo928~)7|3Dw4yqS>wGKL{)~<x
z<1&AnpIb}^@y5$JPt(&&==^Iwhp8oXJg>v8!=s~=ju&)P)KN(X4{AB^xxKWG7j^7v
zn_h;g;j{|E%knB09OZOWtKcZF<5WHOoeOrRs;``ULZ-5gR2_C5RdiIPjSlFjrK7eE
zrK7rz8aisSVoPk*FL{>y;V6{pzWIrpr?tM-*gP<?j*j_ToHjuoHOQ08T31M?a$t<j
zq2v8yHW%xr<4&o}(PQ)R*I(1#DdpDN(^#O6RytnM@e=z)M<X4Lb(ARMNY~MTJ#ffI
zUSE{YE;<=)s3Sx4;(iySnL4s`G}m!@sUurQj*g}}Ue?XGfOAh|(4dJJ*Pqg@S&~rv
za-5CWLUOefEZ5q}61e^Qt2(;r;IGBkbhOsdMn_w&_Bz^ApOW29$Ll(L^K<JpY`EaH
zv<Fo^+pBf@>b0~tb#&CxNk@~mX&pHF3vyq%+UHPJPiGxnbaZ6{ul6auAeZ)6s&%R*
zq`QuzQym-I7U3iDJ$3Zbu{D5g0rb|9o?@M-W0H<OI{LEP`E<IDkvcxq;riUxPe*?p
z19ZHtW1x;fItJ@_N5{=e&iB~Kmz`M)a^GdQEXbWP$ic9-towboUB?GHhU*wgKgo0q
z69XpwFgxw~GwvqGGY8amk6@FZ)U#f6wEow|Xtg@-QS^j5?s0;n1;+@E)p0T0iAm!n
zI%J4-f{ro2n^`97n4;s6j>kHt>i9^<0UZZ*Ow%!4#|9l6bskWgIYY-%9m{mg)G<rP
zY#noSEY?xEUD{k7^K>i}v-P`rZfekNz7FC7!5go7$XUW79UabRlQ7E?9ej?3<YOJn
zb*yCxle1Rn_(aDlPCy+ibzG_Mu6(_t^W!R?3TKq>4}N&qGrexNpLh2BOvlOW`fGH2
z&W_6GChy)g$9pt;osR9_XRp`MnY~)jy-CMr9XmOpbZp^}G3?9P!I{#)y-nwLt=tP&
z`>^Eg^ppDT`RhE)+b+lb%tQBX9eZ@_)%k*_`%7P+eQceMubBOQ)|3Ug`*nP&W8z-V
zj}3UXT_*FQdXujul?F3+dA`x{t&U&06zDjl<FJn7I)2n~gkGfMdrsaa^}l29-OJim
z-+Y<0WxFi$V>*7&k$ow1V7B|*$TZrVU^Cf#y6b({DSEz+77g8(X%=_?BzRHqXTe{%
z+6ZClSsmw+{Jf3}NzT*cFA0C^eiqGY_s(E}jlN7-wjlQ^7wxuL*LB>``FJG$kmxlw
z^F|-)ywkFAQ_f8tw{-la<8K{*(nIQYyTj?W+e&hqGj2#4+rs-BH!r%`uDd$!>A0`s
z_IA%d?6DJlIZ_Y!>5$%OMWeKbI*3^f+zbnC?k75)a_tJBdI0~@m>WLm(1mz)bE|V7
zyX%_94dntl3>`%ScqV|Lju4me0P+TK*lFIU3hRjI*ioy#_nf267DrS^ObUq$(jcKj
z3z+3w1WBwy-l=0@;rRkMv8TX)JFDjpAVrc2BrOXDP$<a@2T&x*$6ie-7C`X;Dg{tE
zfD!?enPmIzu&s0e&j!rOKNmpB05(iA57l};fF5yssQ_LGnEP$MpU=_!Q&WFYELop2
z0hE=J%LTw)*~=%dQb9<?0A{u@*JRd~C07ZUo9vNP4WL@m5&<mSVZPN>BY>I#j1FLo
zB-IL_bpUMwsLfmf*aAou{pA4c0XPD9Nusmv+MEG+lH3)5I{+RD#M3~oZ!mY@Obei{
zqz+$Jn$dazqz6!+%?Y5X=nVy#lqn=buu%YwlX|Th=3jwX0c0nYoB)~#|E;itM~SsP
zZr%rO7C`d=TCmt3Y^?(5n&I4f*WNO~U3~4GmO2@IMZ{MFcumN)<1UJwo=atiOu5yk
zZ2;{8cs+nO0%#vVZUFt{5^r({gmegCd)_7;1Lzb$XHmL|!b^8yfufLKZl15Z@VAmm
zxVl;Yo&oeqD!l{Xp?iG-=$lm9W|^JSKY;fF7!<$&(ccyvn6!CE$h!f|+GUQ{;G{l0
zfcJ$D5gaNwESdTN$LnSDP&tMXB908;Lm{J*HtfK$0gRLArU1qVFhLw_MF0~6m=wTA
z0Za>EascON*ro<>Pqu!V!l4{v-XCVP+D+Tc&pp!vm>0l&DQAY@Ox9M&Y{5B#a|M~v
zRm-wK_%gwTNqtcOYqIJu4q%BWOOtvDPf_OjSfa}X|7xD^lK@sqZ9f%dgWxK`)d76Q
zq5}9lfVBav3t)W!KfjRf@8#LLAos+A+?)qlSE@Ke?f<uX$wtZ5w@$vzLZ*zjZDIWv
znrBOG=llv_s)3IT><nNRC#iww4eSnJPXM<9+&C9|1K1b9=>UET;EMqE2XHii?^sj-
zUj^_@0N)1iHC^;*%7Fk5(jN-D5|PZWIy$&%WQ$|2cJmyExHJWDB!FQPEv@^z=M;8V
z+T3?RaYw(OY`qWKzYpLT*PH-O2Ji!yi$N*J1Nboj{`uQ2X6M5UPppn+BWzXvw()rJ
zQyj9*wrRU9<oq7;GrK5&Ujz6pfHMJ{4d6lm7dg<aEYsh$p5w>{aAl|c+tcoC=k2^R
za4CSxROssK%RZfJ;}IC!Hrn_y-3PjTaWlu&0DcePS^(F%2oJOjt7J~VKj>FA9j)u7
z-@l`^I9A|B05>^V5)N(~&V}p62Yqe_a3_FR0Pz6+3UE6${2PEbfV%<w6Trg&9tE(x
zljU9j_XBvqt~+BNIl(>q6B}Q&ulAv>>T37n0G_a_C9F>axV<2EP%%e;o_yWT-7u~D
z_JqyHl_!8u0Acn?0D%AuF8iF(w{v)yGHZDH4$pzjXxYf|@BPfWuQ?(d(>t~(duB$y
z2Ub`0m1+5u^T9W^L;#wBf(8m1uo$o!$Y&tGfjkDzZ_4+6K+9`@>+q%Go(j5$Cu!Eb
zSt!Lo$<zV`3|!n`?uz#Nwv26YM_~g+3=}g^+yM9T?YE^sQ3KD=XR6odBW<-CW%B&8
z5(X|6E%mH{=M3|MX5=T%H77jp_IAV<<nGvKD`nsX1Fsl()j(+jFB)(fa2Y6LpsWEH
zPzK5wC~u&OfvN^77^rBVl7Y$wu2puo9n<xNg}Db#Ilmv^J}|-7uCkM-OIM@u+G-E~
zE^v5~#dgWI>anf5ff@#E22u^wG*HVxZ3A@-l&I`k@X&GMpDg~7&1TlCW}fxNcMUGR
zmtr^IFra^%kI%{;zvRj)msazv!)?H0Aj?3ufiwek4Ky&&(7;Ou>KRBkP~X7dOb5U1
zFAv+EyKbNBbMRF0Gw--79&}_FXk?(VflLF(4meLHY`03J#;opzhMo6M7F4hQ(*Z}0
zfhGo;vGWbQ{&U`@?7FR%mkmUYcy^3)7M*K*`%gy;12Y3!O9QRg4}CM1e&d+_rET`X
z?1v9+*CUSC474`zwt;~L+8AhSpqqj22HLSe104)>WM@vbykVfdfj8OhpQrLz#tpY!
zJPo|q+s><BWOOpn*+3TqT@9>Jp1Ozo7F%n}E|k8!qhnOG508jl_=58-13e7%G0@jQ
zPXoPVWP7u3N7&jo^)z{G`}12{pL&@mpRb#1pr3*M1_l^NeC}M?({XW5SEtXx-(ozp
zy<E_IoZuY;?;03s;6nrN85m?>h=HL7w%^nS(-US`-Z#vHJLx>j3<ujd%)kc*h8q}R
zm_L(K|87`*m7_>6N0EOsX)~yrbN)u#C<CJnj5jdBz!(E#4UCgYZisfAd&kAMU`9T1
za<ZSU;h1P(l7YzvrWoeoN>@tPr?{k>d+{VUPvIQi)={)Y<}?G-c`XA+49sBv8(3>#
zoxvkNFx$Xtx?*|H90PL=EH!xiCFU96&gu&}DGbavus|+db*a1GNmqr&?!}@vtYE%F
zv4ka@a4~E;?)uok564}f7+7gwxq%h*{IZ^%AEx!$(U)H%KQ-{EjEBXpVwawD{dCAx
z<)n)n{&Oe!&p1*Bd_TIl=l|z)?-MTa^#(R@ve+`dHn7paCeBI&dkkzgu!SqUly*O#
zCw+{S#ct*7%kSC7J{Lm1L&)R;o?T)&yQ-UJd)Y3wMT%wg3(kUqp8aA#!Z2!l8Y}jd
z0V4Ob=hY7wIB4J-1K&!Y95O(gk_9}hDv$Oi9yRctfqx9#Gw?m9hJniluCOZ%95?W@
zfnN;#$Py-5PZ~I7-~?y)NwcMV{-6EE4mr)sN#Q$wbPef}Q76T7#=u#6d##L%2F`I!
zGf?fFN<1}y2A+kv7wEBNJyjOx?9R$r+_KOmE+)0i;}w22@SA}@IlE7|t{V8=z;y#R
zIKeA;{xHDiT$8K3GCr+#0ndvCJ*>t}1Gnfui&DthnGMg`c?`jA19vzL7v}y&zok=2
z|MXv&%fN2@V3uP&jSW075Hk=r@Q?;vY77JnJT~xztFbMg&%jdy{~A1~5%VXPW|hYE
z%J{Xcc~Zd3`8_<EftT|eAhI(J13|75%y`2VG7u(V15cXox#Y2B?3<Ly+D5tltW34!
zH_vXMp5SU9MBbozW`P!jB?zl<9-uIOVJ?f!7exLbI$Y>mD2S9G3ItIwh-p)@csZ7K
zKgB~Q;U#7b%H;7Dg@fjU0lf3@Oc2F_s1^c3C>}(KAX0;{2hElL*&r$gQ7MS$f+!ip
z^CD6&6GW*be<6s{!e2}(pA{`qHp$BgDIY|Iq>`I%e)+E~(dt1|5mGgoT1^N9mEfP6
zrA9KfW)QW4s4dYUWvx6ax=s+bAoyVFnK|aKCr1#@ARY(JyXCGR+(GOLVmDhFL|PEz
zf*2n}-5_2HqHhqnLDUN(J&3CH-7SM?S=LiOh$cZa4WfZW8wyg-2%?ej#)6qiJu8T8
z;W<fV=!9}VHg&(u3N&>$52Be6@;c=`ErQ@<6@CA5o47TzRS>TP@hU6quKyZGO)SY<
zi_%80tzbLB*MoRNNP9tAz9|<aVfh_{=oCa}DWr?wTS0V9UcH-;?t+{(wC@o_&tz&Z
zA-#j>BcyW$4-NVS(Lac{gBTdZfFQIw8QaFE&Fhju!V+4XalI47dqE5eg8W@UcGO@g
zVMq`|gLpq#K0SX}5bHiJ_(4+P+fu_hBCn+}j1V$X@WUWRCH2ukj7jpbLipO$gdisJ
zsmmbl*Groe#N;661Ti;gE~HcF>OoAGOH2*oqvW-gdAiL=@>xO56wZg`xEQjTv*{kL
zh9vWXm>&eYXo(ms5L_g<P>{2jW{ZV$&#0wB*cHoy<_8CpmItvSh)+b{7{u^1u9d<+
z4Vs@3tLT<x%`2`B;xp07*97r-5NjpM<&ny|Al4^SHwfWJ!=@lMOMzR0*cmjBiP<XA
zZGzhccL;Lb<8_xV%%#nqAod1vmxU~}?UN~UJ%}4Yd=bQcMuYe&h^s;TE=gZ=1hZ?O
z7k(g!gF$>F{9D1}f`@`Q9K?|zj!Kl%?FS*>34SkljMJyG`L&jz?6xXD25};YlS%tu
zgq#ZEbW-_A$j@9}RBdKClhn@!aZdQQDOJY*p<R&bv4$6exRm6VgSaC6*QD~B5dFoL
zEb5OSu1N_a4cp^K=9aLXo|-Ro+!XPS;H@Ag`R#uOahq$!noM%yFPBpO3gYh|o_(g_
zq#yJ2uk`{u@Sh+eMN{ty-WPlj#6uyE1o_>Y22X-`8pOXrc!MYsLeUU>?B`AP(Z@4W
zLhuKn2N4Lu;KVs$%NIhB1NvdwlXp`rA#=SA1re5tMFgXQ)MFgnR99T02|-Ql`^>at
zf9tRc&m)*uaLIt|{2>f2@7!&3Rrtrj6U_>QP%va3ZB{6RauGX2VIh@nxt<B3nB;n%
z>wgF(LU=BObS?GS5GJ;9_sMn^9Oj9(ac_U*Dk-|kv@^9-2rq<CS~8Xi;mmpSzRHUs
zRKNbew`R&pQn?Vy3t6=%qe2M8ih`8{D+^W;tQx|>iEbJw781gp5dI3GMhG=SSQo<j
z5Nd@`JA^kw=nz7k5Nsj5973}YQbVxICF+LY5aMR8MGmKMm*BvE%<cO;AvEr9-uFlo
z@zaHs$X^Pf9@`Z{{SX?2kQqW&2-_FtHVh#nghq@Wwih~VA9hP?9K!O4HgYO7$QCp5
zCLx?VWY3XQMw^DfaAINZorSs0Lue5~>k!(oWB1uxhVYtPn%8X=!Yd)XD$$ky7I8N=
zYgi$#c^9Rvh{KQN;b)(HyRBUa(|&in9>N=<w-<D#nLlqkhR`X5_d^&GLgx^=gwQX9
z{vmV?p<4(%F`U2YKHg@Q+&#qYk8t;-tw#vGLg*brPl+C#<EF^aCxpHs<c8o~lkuO@
zKkni4+vEd6NNeYQFN8rMye(JH8J{^Ygm*$9VR$!$?6i!d-?;{dut*$W<V)2KuS$Ks
zOUlp?hK2A+2rEPQAcWx|%nV^x2qQum8N&DwCP+0t3}JK#V}y?iA=K7ABVLb}9xKYY
z5T?BD{;#U<z2=x0!lV$UhVYT3P7Xo!E<J_0u9^*@!R$5mX(3DxVTKsAtLmU0l$IWR
z-E7h7AI+C&W=mV<gfKURc_GXXVTC9Q1ebF_Ls%$$k>FxMW?T}&(j;Fd<l_*&&sU#G
zJvya@E;(~Mns;wLrDIF#S~^&!V>Krr!vO1NA+&m!wMH<1KPUNuQkk@87_cp6LkJr~
z_$q|2L)a9;<`8y=uqT8qQq+zRc80JudG&2Vwuf*l#dPeVi&IWMQ?Si++b+>_(=2<1
z4Ex*lrI3AsUxct<NQ!K3$&810S`LWveF(=m6GQkWgl|PT%3=D}eu#5zg-tEXKFr=;
zmVHE!%6F2wG~}So4<Q^6;inLO4&g`1dm@CBLP{MmUvS%X%W{et>ziAbpJttX=34O!
zSC0^Ggm6<V&kFu7crJwVLM{ki{XXTQkV}G>1+NJHD)?InSB11{WZqr;LpaH`5U#UP
z?Hp&mw{Pf}b}Omp#I-*|xGhnhzeCGSKJ9P%ObE|}Q7nvqLbw+~B!p-P_r=T~f*!(y
z5FUo`C|S<3rDp3MOZ180Q^9`)z5EmqqSkh$8AE`+Dhj#5Pk|&)`L%EOKYrFxeT>;T
zu@LfykrGBcghU8h7?!a4Ns%uMtB^c`S1YFTZN$97nfkg{>v^nvqsrC-q7)G<C|D>A
zmmIQFSfY1^S&9l7)XiLZiic4mjGAH867ktE|Ift>!k-JHWEkt;&G)=SX?$m#qjVTA
zhEYY786zEK!YCU?xiESxGhazN|Dw4@F_agB3W5~{D+yK(;{)-)s$o<M^C?Y@g(Hm9
zT0tcS%v(K-8cANZOX=ES)RAa|Fl=G0Yw7fa`ItIV!?26)2*WMJDOkIK(-nr}txS@N
zTWv>n+Ukb!QW*6mwVoiaGT)vuAYLzBq7Ce(CsZ3)x?va@qBII)@>uh?f8#JRMac>y
zJB*w#-rr;XoM}_s)g+8b^W7v2B+bHT9>(nm?nKP-YQa<%B6(X1whH5wFnBlY)i7QQ
zqjeZ<!Wb_K#kOIL7Tzw5*TZ-tjP_v+66MV>2FyvLP46%|2=6G^NsvjMg>(_@8b&uE
z-38wg>=8y!Az5!`_YyMbX9qL(NnX8g7`aK_Pe^~k0b#r?WT4<Xg6|5lKJN*MEzISv
zZiCq~VUP?FBpDjUuq6LL$nY>m2pK8(q2MS%+K)b6ZcMV|u|md$q28{>3r$Gs6T{ea
z!bW9EQn?t$)G$5@V_F!~!}v6eRgyF#jD<;?nL=g>&K8^##@uA;JR$SLSRmy4?M{}z
zNciHU&5|&dhOsP+-gPoR4r6&zk8R9Zk>sC*u`<a^F3M#gtHU@W%4bP^O&FgGUrSF8
zn{RZk4`a6|<QqiUD7Yz%%|f;aGIgtvZGzjw*db(RGIbZH!@M+_?UB;<hOsY<FT&U#
z#_=!)-pe))xLu2KzYL?rqTH{-sC?b_HS-ENDEM6%-w0vSw_zL#<8T;9lFCt57}-q9
zzG@>fd>_U!N&O*dQ?=#`KgzXE2%Z$=rB88!C;3l8eir<N<xjWKfPHl~jC09eIv>Ub
z;Uh=d=IzV46vpK+u7vSx7<nVe7cnQ%Z({JL;8nrj!}vo8Q?G?FaZT!V!5e}%!?-2H
zU9riQb@tm~+zI2aF#Zn12;-egUGH-7593J~Ps6w;%9h6I(+1?@!_4=?c)%&y%gyjm
z$fGbGCzWmwUH`Ik+PHmT^gmQ!TEyn%xIc37+2-8$o&GTNFalw|o>1t;M=pLY&+Fw5
zh7poWgu{r25ep*{M!nG)!&esQ(j#lx)|@!kihSiQ5mQWrp+(FZk`o*D$g)O|CxT%;
zvKZ2?=j4wdC4zAgjE|r|1O+2#8o|pE6pEm51TRKVCW0an6pf&?l=Dmk#Ugk<f>IIu
zP%^W41kXnB*Nn_t^>a!@Fn??IpCvP&iy-gwnG7W(I6lK9Jr?D5o{{-N1Y;NF-fWe#
zd{HjVSf8>H{=Pt+2y79QkDx*X)gnB)3;tT}iV;+0$vxebB4D>v7Oc}YvkL9oW>R@)
zmW`<lDuS93H2>E5-AHHk2x>&|%x))BSx7A@fi|@zSLQWGY6SKOnuxt4f}DePPXuWZ
zI3sXH;1(r!Zx(e17FajJkI{NBu`?t1H7)Z&+syO`_Akn<AHju1xwIi~5aAzlnG6jh
z$PnI0uyF*L5o8I^jv(-{lf6W<oTNPmi*;koo3TC-42a<E2wFtYGJ;MKbdI1^1g}K!
zS_G|`)Yct+=pw$#=%^HudTrfpB6uT$_Vnrq+OgO+?$<eFZQZ{`Y~-xon-Lh>Qpr0+
z@O4Kkf0~_Zo7pjfH6sg?bdl5^5%i3pt7PvML3cK`t^2JAo~u)hen?K&WoPz^pkD;6
zL+=Rsh%@x1+dOnJ>B`5>+z3)H+1c$h=+DM_3z5`lRB&JfL+Nj{kKo-1-s2VD?S8&&
zsUZ;z5}uKoIhg&Hn)!YN`l4JC;;SbzK9Ea{iePjE!y_0G!N>?cjNpSzXWd?IUWmxR
z=&nUs&POhWF?28v<s(;tGX;nfBA6J#w-FqQU{VB=BiIzd<_M-lFg1ctB3K#0N2XtK
zo9F_IBbXk+j0omLFgJpkOnvAY-pf5p$n3`Hvss^6HY&t<5p$Bxk6;1o*2_)KU%sr&
z*~PYn5fB#<CAuVnr4cM+*FAFaNAZdXJ{G=Qu*Z%}>YUoV)~6Ayihw=2HiFd=e8x`B
zb~2T?h8=a-_Bq>ry9lEk+_$b5StkbU{PhuRkSRmHF@mc<mtwJ7BG}6B64Hm;BG?|m
z-U#;4TSjN>h+t;~f49v1uvHGDyCT>vI#V0B%GuT`he_1;iAeGV9X^7S$Fr#uIc>k9
zFR`O$WgZYbC>fde8;Oz}j^IcH=OQ>C!O;l5i{R%7e&HNnkn+w>_xDn(V_ZPEK16Wo
zXZNWHPDk)#1SgoZ(|wX7GB|Vm-Yjxn^e3@d*UF53y3S#eOI^=MA&j1tm4ORFkzMW!
z5nPPm_Xz%AmIy9K(5931Hx7MiCui#wPT>f+<kFZOPGq>s^{uz*-q#|y9>J{${$zJO
za@~mFCVQZlds<y5m*P{iY!u79Qi={w2cYs7`;enqOf4^_?ndwr+nYz7&!g@|aGxt@
z9A)Bo5Wz!MCW>oOJc{5kr*jmqM)4$qrx8?-qDB<|M&OO0WE9Uw;ghd_u?XTEP~o~@
zK+q5j3Wfy3f)PP}Z;W!SkRJjGQBtBP5QP?nC2D@Fv__F9io8+$y~zB^%HS<&zN?-u
ziu_{G_=0O&b9ccg3Pn+zW);mJiG`ym5=GG{-td@FhG(KE7R9ExjfZ2_dZgu>R*eVX
zHi+0uL_vI3@HxQ(Gn}QOcp-|)QJmUnDJ@rF38fn4dohYKQIw6Mbyh~DD2~*1mW!f%
z6s}vgbvK+jaeIX*Dn>!_@hUTVsX!`in72w4RipT1hrOC038GL*e(D8R%_wTgg)*Y3
z9Yr1C^`fvvks5_3SqHliR}_w<;*9d`D#wP-W;5MUq#Z0mk|wF6A35qq@sjYKZ<xP*
z(uLO-Y#=ygNWO;2UTPFYV-Yh2n?{ipMYiyqC}w_~)<n4be3i!kI!Z0heL0F|qBM`9
zr4a9TwifK?>gI1E&2DKG#pnAR&6MRe_E;3FqFBw^M$tBkNl{FWqFofPNAYeH@39V1
zw2z`|6y2hDGl~vTbc~`?6jw%9d8?E2$w=F_skSzk?48-+vuv#v+ZJER=)%rvX#Oni
z9>rTx42a@wDpg!{E4zC{(KCu(Y|%dr`ABVlA-x6rMA0{j+$b);S%j(mL~PeT>px50
z_nSM*Hjs5Il&VJC_}}q6QGE7NCdr^E21mJjEyhOieiTEZ7#76`QKYYN4`tKpI99B5
z%paWP(=vufF(QhupGkebMEcB0xg(>P_g=;*_Ti-552H9<$W0Oq*+z35ciXFUbBv2(
zd=wL+n8*UR+KQD(tx~}0S)6O#YTLNV{r+bA?_b)cL@_mrxhyIQ?l1jO6w{-a5yiA9
z{+i_|TP=$?FJGgXQOptL(ge>e`orkV*@8@ZcS$B~=0~w0iWT&|C>BPsNJ?8wr!C&;
z@mwbZ3ujmo#l!9PrGm?%_*lqtL2kFjBo@`=e&)(3H?nYk%Gp{iYjdGg_c+gIQLKsL
zY`5;ea`dBE8^wkwHb$|fkb7MeE!sKDCTtrHyVpngx$j7yYWt#e`lcxM(|@Aa%vue%
zZHZ!Q6x+D|#Otk(xwdl!xNf7qBML@$3X<%KVz=-;No8*o`-FcXSn-~XW?yk2qBzO9
z9L0es4zmB*AtT-2MDZ=Ba1?vqbB}q?eMrb*de=xdmB(*cN8WQBjpDl~zK`M<Ydg~Y
z1HHFs8Vw4K$Z4}UmtoDJoF66Q2|;E&%@D;;Q7k{|xG4CuV3XAasQePe8HtjgjpCf}
z^GW4`kPOXniOv~Cyls*06Kq#F4O3DX$bXZLy&C1Mq&`=iuHPlfTY}fAa0bQDK8Bl7
z+=?O+MKmghWzZS8Dhj_Xc!x{P82hFi&)q2g;YuEbH;Q{v+>hb`$2W?nD{b7t@{9Cz
z5{}W~BVEV#bv%->d(2M(Ay2s`->=2dB>JN8M-hr59OZNMwuUQhdK7*3+XAfBPYy#c
zD9DFNsI<G}Soup=&J_ML8)GxMHpWmbh6I=Wm|5rNW3UJzFDAqqL!KD&#*j~<`C~|l
z@!MJ_8Wa$vU=05ez7oYyNW{W16cIwRqA@&^<b3V7xbPB!&&Kea5dO<tG6o{wr(+g|
zQlh^gSUQF-l^id|P)4F<1<S>-bc3_JAV~#Q@_wy~F;q$_m4#Fh+<w`H7*q^(V|Xcs
z>M_)iLOg;s1)VX}62hz3j-iflTT)3CVi$A>mL1TAmM-CL!N6%pnh@$GvQp{^ZyiIM
z7}8^?A47u}8piNS(k4Sl6TwC?G*0T7F=Qoqb__X5{`)jr(->ZsXfwf9g3Se62(}dL
zlas<abQOG6l-C6LY8dq|E|}OhhIS&pF8JRdz8OP@7}mt_c?=z6=oG`E7#52`=NNj#
z&{KF9!LEYc1iK5qCCKeKdd2wPuJ%q0@5azOhCVS+>>I-XG02UfpD0U0nf;T525%>`
z4-}D=d@qJUF?<xmv=|1*@O}&*#`xr(V~AMNV5ku8yFxxp_y;izPo|EDVWjY5-<nMx
z6~kzWjuCx=@UbzB6Ea@#KYPAgH!+4uqD&T?BFI9f3SoiMg)E3+VGJ{3m>I(?QRXHs
zXU8x{_<v>2`%nLW%Kj;)t9yEzxP*=x!^#*wjbZ2!2VXN;#;&XB{8(_g;0i&Cp9ooe
z*tL3=r}SJ8-_c$b!|E7rY`2kr7Q@u??jP6L*T%3ehQ~2HiE#nPh8TX1ajS4_jA2s@
zhhjJ!!{!*a#IQGpeKBl}VOtElV%Qx6H-6t9!<FieoiVstJ9Y^2H1kcr<xCq@i68xY
zSa=&pVx{>l>)I;E7cuPTDzP=?>lk)?kx}rT{n#kymof9z(XRyg_3uCo2V=Ng#Pv-K
z-^RFix_$f^N8Oe#lHE%kM`Ab{!|@pRBEWYsd>_NH7=DQ1Qhh7m${Cp7$p_C8OYEIz
z+MeBRZjW;!hLbUzis3X@q(2?=S7-9E)ji+Xeu|;&Xa~QIbiQeCdD>aKW%`*I&T@T@
z;Z_Xi=sz)Bjp6qgF2rz=<+DmL^EDa1YxZgdb7Ph||2nU5Rjlb8c|IfIbN|Zm)w6z!
zA@!Ra*G~5zF<gt`I(s{Y?RHOA|Cj!J-m$2t<5bXbD(<XW+PU{v$Dc9Wj^Upe?!|B?
zhQDI?JBGWQ`-^yNdczef%yoX-EXTFgw&|4|vko}#$M7JAhcP^gnLF^GzUA6?&(7tV
zj}G#+&6MA4Grn>^jp5%Ita0Rt!yAK-V-!Ou27e4Xdmsjb)8uS6pIQvBb~Nwcnc3X@
zpW=({eWPnq!!bl+(BiPfxpf-`d~U1I%7fuqu^65nvc=h0j{f_(e5#h8I2~r#^4zuY
zV}f7**q?dhJiru%;wT(P{y0+NC=f@%INuO)ytg=a^#t37xoJGx;_fk9n+NvYJ<^KA
zQ8bPh;wT-*GjSASlxILpb`+1J$~FhT8$T<g1WVg*qw-uF6ideOd>po)Y_C)@ZAyuF
z>z0i>xA0M6K8d&QzO8H=<>KhBskby$K8^}3A%T<xD#lSMjvaCAjH5COkE3fG-QuVk
zN3}Sb#L+Yk#G&G_$Ki;ZpL9i$Ry~dyany|S3~rAtj?_4639l_!N03REmuDTW=$^C2
z#?U+`tyI8X?oXF94p$uRIQX1oW}MIXIXrQsNwjVpFU8H>A=r~lttXt(bRqTQXdt9v
zQqPE^QIa=~gWo)9oF!#u$N7r}|E@J3bbM)vllXER&EjYk$18D6Tb$eN+4SaY_&6t@
z+-?y^%Q#3Ljmado+nw=h9G&9$^LozO0nXRrXdMR$Lz_6-3U4R)dK_o|HuX2+XrHus
zGmZ{P-Z73M$L%!e97nIG_AY`X>lWvBXOrU?6vyB=U)(@XdPN*#-OizpUA^KM5a;In
zuHJF<iKDOZeu5n0+&K2P%buC->MshPK%*tY+i?sO<sCuCS{udp=o^(BwNCdXz8}XB
zc1|20(;$vvam<NhZX6%PakOjJv^b{6F+9%K4e)hk=g2rFvf*2t+!5<TQAW|Pgp3iS
z%~&Dh;uxP)CJ5PQcTN&AS#XNrRKbq~`6GqdXK;2Xa}Auy3(YPt=zx1x9J5(k(bQj+
zbM7)*uQ%ND;^q(Pg>fvR?+ITJ$EDGl^?_}CVRJ9U#c>`A?_3(k5=o_UTV*koWO>}&
zsd8=Hd>D0w@J|F+3Nq=_I93T?E%=$>8o|#6X>(=2o!QsLv0lpAAV_6noIlL5IgaW+
z*OoZ82_fIgRbr#P<N@1uQSKJ=P}~*A?l=y`aX5}War4QauLMc<3fULO7eX#?v+ZX?
z;vgx~(@FeV^aDxzgF?O${8lhN&v}F+7{}Q-&c*Rv9N))rI*y;>D7D#nEY3UIwv%zb
z+r|6ywmvUAk24o1&ZfQ$CxrYp+CiIBVo7mzKIhMI{K7#wojqiSjc;l<yPtk0Zf?au
za-Nr{<h&8bP4@X8jtg;I6heN9mq_v}v={!H;MJu5yO2KwuL)kKlNV^j?6)}M;t0nP
ziQ{%0cj9;$$D=s@isSD%?kC6ht`MFU%_06Lj(bU+2Twove@RSzEYT-|pWL)Q74om3
zHx8c=e;kGo+Us!yg#Yr{|L(v9;|TpfB^pO8j=TxeC*#Rnc@jt@xt4%MQmukK&6$?_
z7Uv`86NRMc_9_JuD40OQ1TqpRltAGGiYHJafg%ZfusDrg@!C%rMH7fGc0Q9psY@<~
zVhQ|IpyB1l8P6v0Tmnuhtz-g2|F%_4pjraY(=vf4zdBw>pnL)q5-6R(iwTrTV4owi
zYy#yH$nVS~zvnQKoTOp`l@h3&Ko#b#l>YcL`@lo4KXiM~e6{X1uEol{+$;kL*s?t;
zf$BmomU5i?+Fc`o+6mN2fV`$)EkWMLX0QpjCy<&HX~y7SV@I3Bl`v<)QcJ2k0Z#&H
z33JEJx(U=5@=^lz5=a-Gzi-<0r=6I3bY4~iQT~fIN}zE9R}=U>fy@N55?G$ViUhI~
z$Vs4Q0=*Jw!cIPCZ<auFAx#r_SqQ~Xx}~*9pk)H>6L>R$Rtdb4K$`^GCh%$kuO+bc
zSf17iaG!Q=yzu8&=6b@wmwDSI@O3!l^#tBXm}gvmVawplkN>4M*zD<$K*t2SCD1*=
z_gT0R7P=(RH362u4U{f#@>o+$V{X4s4BU0Ul|YXKLYMR8J7?N(hp`<y&409eC(tK>
zaS4o1pl<@X3A~@ckOcZA&_98J3A~fQfCQR;Sm145E|2+k<dH7f%+8(4-c8`W1O_EA
zm=)M%mUd`yE_W^asDZm`zVtv>^ZEaw2@FeMbOPL{iqQ`e7@ok0gt>zjcX?u9tFJY#
zKQe(2lYToYfu9THr}3Bs#wNhun<<wvxw%&RzuglOn3%w<1ZF2NDS^oeOiN%oOG{v?
zSbjwJJ7OL)%3_;wFR8!GZO8PpSbS5Pk-$v)e_pdgSVQ8R1m-5NB!Q&~%u8UtRA4bX
z<gjajl*4_%7A9-8h+`^EU?<RESppoIk0o`@EweNpm`MC2ft3mDNnmdRpC+&>fh`<j
zsoQEXUYEdU39L!rbGp-tf@|6HlTz45?$1UaU<vERY=huN!A*ip+AQS1j@`yW?wacZ
z!}bJrB(O7qU1Gq8)hX^4KB2MM?fVk=g7cako4|hRtWN^R6ZncgmcWq&jwWy*frFCe
za01^5;U;O!`>k-2LqghI$n(eXzI1@^5@_*ff$tMImH_*cLqGXJANC9_&HdlR_@v+o
z4q4ywW(kXPPbF|#dYD5`W%_6G2oNW40_Vl}jNn<$lq+uf%!LFlCU7}{E9}o>=2Ke?
zm!t%C+OPa>S;q65j4Y!i?dH&MJIX&2xW?5+Q&lu|J%JkuXqvKU>L%xP0{<j%k28f+
zW=-l}35@x~eVZ=2%za0Y--OBk7X7Z^;OzReVYr{bqXZs{_#lCY|B=+R#iKn;eUgAT
z0bc@76ZkiQO-tRCo$kE0G;ZwXPe4x~kbuEKzu<0hxo`94ZmtZk9(EnM>#jY@6Xe`X
zpw?Y?Sdb(lB$_}hsl<gOxLlX)L<6g)@@T4vriyARucmmWUO`Q9H`IKZ%CD&uO|3ZZ
z{_U=tI;&SeQ^Zjh-Gwy8XI(>ox(jQHXSLLHxS!EfF-?`y)C-y_uBj55dR|kk^Rt>N
z<4$`{QzbQ(CJp&3k9*HQed9B`U0j?y;e0l2N^9yxO;ylTMH*}B%MG@&nkuKM%4zPO
z$2lJ_&i#C(hqW!Qso!h3bC$cKtqa{-<gO&;Gy9MwZthH2RZ|T$m7%F>nu4a3rmAbo
zttpSDYG|sarkt9}HzqgllH6LFa<HXcGnuirrigVkWfPJrc%xE%yQV&Nq%mn%?KHN|
zC3*Xe$z=&?n(DbH^CeBy6S1z~v_QRAobGf@)z?%5O>vLGDC@c0eR941@d`IRp^>H<
zYpSiL+G#3NQ(2m7uBjH9%9bu|s;OR!-8q_S!m2vl!&he#sl2SIW}^5c%6@C9saBeL
zjZG_F=oL+^e_-c+cdxSRmgHU?<!QJicbhY<wWiugf!^9_3>>M~HN`SJXsV;8-Voki
zQ*UaDuDiIer(6N^iVU5oXsW9ibQUZ>Gn=8pC+-gmxVveJcw?Bm2YY}`u&QjU>ZPgP
zn!2Z{`<m*bslJ+;tEqXK%GFdqO-<3%R895Q)BsHl*3|o&dYj`r%r;O{?+96yZGLqj
zzAMr91gQ)X!ncx#XlkgYCQEdfralldk#*D5zTqk3HMQ+kM@|*z2+>EfhC)UOvYgSH
z8Y6scQW>YIN;l2rVuC1-V@|%{#^@x84ryZP7&lWtl4!?IoijBxO;gkVi%QZA;WuBh
z%o0N5*+S+BZnjzGYifa}e$><nO)b>aB29g!sWlvEO)cSs($puKTB@mK^f65>*AzE6
zov_X^Ws&Wl_MYtZJmAB{`y1m=W~|iIr<z)&snv95pX-@VZBLpyd56T<lreom#+El6
zd{ympO|8|`eqLHr>*x=f+Mub8oPhi6zmKsUTWjyJB=`IQ`<Bn#<eN0LSyOxec5V?Q
z*~$(~^6i@1p{bn`-9;3#TX2sc?WZ5^x=;AUc=<0h#pll{ex<3eHFZ!^-)O4Nn~wC`
z_5+%FG{tfIri)vAf2*l+qiwv6GxVCnU(az!Q^do9M>KU*2$k<N^}VK^j<z2Y<%gtx
zTtph2)YK_WUDDKLO`X=%PntTbsdJk8SyR8TKP{<en7Y=+r<Hg+Wv$2AYiZi-b@ua`
zy1)*9Q0O9u<B6R&xc1j@@u$7_l(Xu7+Z9dy%2h>Ee`soS3(Ies;^U52dC%ddy?Bc>
zy==pg>CS6h{55q~Q~&UC%6)^=_DlOW4)YW0rlxMmp#MqtzHGlOct`LrL5hD13GB4-
zaOzR3ohR?vSjYoSJ!Gd@)B%fnq^ZYTel6-5i+aMw@*~EgtQN)pH~-a?!If51UQPMf
zA#|8kP6nOxs8}k=r4hD(h;P+!Amj*XDyFHpC}B-Sg#6Rm8KtwGck(8Tei`Y-90^U$
z9+F9-SrqZZCAoPlDz8Nqv8eD0M?Q=C@~oqfV1A2A5t{-QRZx`Ce>G&5lixXL!%#S>
z&%aQJd5c+8af_OI&herYRYF=(+M@RDaXxEN&skJSi+bLoN?BBgV(u3#>U@feg&cG_
zI%tj;2Q(b8*~Y(M*sd}bRo0@)$rUSGR27RVZ&4L2s-i{tI#jD9dWExHnU_0WK5pWy
zYEjiJYLi86mLyn|vZ(47)v~-<ehrJNX;CvJsg_06wy0Mv>NSh1V^KDX%Ce|zi%PX9
zyG3P)4YN2b%56~|i8=*c7R49Dn3N{bmn^EDMb%B(-`VO&7v3PL)VC<!V5B`mLyOw$
z{9lhX5`)GTm6^00*s)qpk~g=gCc>KvzMRyXae&U*{wu8o+a-Fd|7?!BUJ=3{Q>`tk
zjYajfs9cL`Yf<eis*6Q+wW!y{po8EWg6#!a;G68&f6TgdOe&o$s<ZG7nWo-Ncu&FZ
zf^P{jsfR_)2${9&l~j6LR3G8I8%({QMfJC+4=if9MGX-BU5k3pqTWv04;1o_ApgxD
zl+=d^87%m|Me(*XOB<R@9VX=L2*(JE8fj7EEoy>AeJJ7>!BI)e(H2!TVUF6^q%zK;
zMt$w3GSQ+YS=2PqCnr;<3YlV2JyXpqew5TddL?6elFy)%KWF;YEQ^|LQFAP6u0?$=
zsq+LEThtOE^92`J)IuT5vdE%t-7xF3RFoBT5+Tb3KNehWQSIZ7Yd1{yUTIOQMf_B7
zl^}Jx(`QM(#-a*!Ha%^vDC-2*3vNi-Y_ur;Z%CW%9jnnZw^-CxN%|wi=i6=DENZ(&
z?XW2R7jVCsW2Z&EvcT59tz(x(?Y5{r7RA5I_gd6`&YDrSeHPXGJNp+F#n;c9wRhgz
zXl_*arA2Y~@~<pvR}Dvv@wS5&^^HYcwW!}M>RXFCWKkzA>Xbztwy0r8T;EyL_ZHPC
zW<Mg)qg*8(IT$@=Q6m;RPgvCAp{0MYsN)t@Im^+aw3~ke{b*75zi{k7mGeeEM`pr)
z+M<54s0$YL^Rv#ME$SCpqt02>8H<`X#>t`<Ey+EbY&$cu;pZhv`->KJ$)YaPF-~Xv
zDkWSI&Lk=fza^u8aFXtDHtXsvVO7^G>bgbUu&A3{@vN$l)x7k78E>&~E$UCUsHWq#
zMcuKezbxu+i@Ix3d93DI`j183<9cXO5w=3A;pIAJQ4cKYA=iJ4dTdcoleK+fQ9QSZ
zxft3NbNnlM0mD@M!VN(^X&+$Qmzu`Gq!O~I{2^0`ijokF3C5E)2mj2gN!=`hG`3n*
zg&F@_Ve*QYPcXk=id7XzTC$n6FKkuMSXD8rDq>Yd`8`n9IwqZa<S1@ce7m2kCA)}G
z8b50_hxj?GDrr^ETh-oN=R&{p1*<A$RsStAw^C9|OZhKaRT--)YgP7Zwn|o2*{aIX
zKE+j@)w8N5JslOTYVI-zQyKU%UB#-ZT9wPH+>*VTRn@erT2=*#D#7Z4tVRv1`o87=
z`nEPNk<{y0l`Y9rt%{YQu|pJRQh%dkHHsdqYM4~gtg5c?m#nIuRi#^1eXD99O6ni~
z>&d0Bn3v=EN*SUz5^OA(Dah2Ls~kCOnpGXKs-srb)T&;#szp|{*s7XYRdcqNmVEf%
zs#;oAf2$f`RjsV*6{~7(Rc);5Rele@YCb{znh^f`_HbAxqivJ=TSD4d)$2mu5Nt2_
zreFuF>S$G+tg5qBtsd`W-Y!;E_)SN5N$o1wO^`|PY0mfF@U))m?qO9uIqs}*y)5ee
ztg5&0K7xG(nUu?cYf+wL@Pllcy=_$k*|d?iNmezfc&&G=Y6KlAv(~#3rShIt4NCIC
zLf#h~VpT(h3`?edU{%ADoO?=)*lHhXRUfjzt@crZB%_6l5gcn(<Am_)<E?6f@QH%7
zbQMpXEEQww6sww=<R4kpG~v?)X9&&|oFzD0aE>7JuDVx?I8UPUt!e@Nd2-r9iT1r+
zj!E^(rY*6m&#h`q@%l^YIU{V#I6JIrxm9ta(G^zpiB;uYP?~(DRefqzpNYQ8su)&V
z)%%fJ3``}CxLS9Oq>?bY)~eQ76>n6oX9<T~-&)lMtJ-K)o2+WHRqeK_Jyx~Fs<v9y
zcB|UKy2Tu)MmzRDa%{7z9v0_|diR|)OW0pr;oN0a`|dh7r@LP{;|yPR?q$@f_WvJK
z-vQ;c@qN9!k}O-YCCf|i^#TE{<+8v63tMQRL+HIO5D0{x&^w`o-a7;c5PA!}L+CxU
zgx-6v3FLcv{QN)PIdks0bLY)y%A2t*OEct$oXe~epu8JnP>s$XnUc1*QD}1vD9iR3
zY>5Fyx5glRByk(_rCNv-vJ7Pi?&ON?iowe)2@9JgQYH7&l#IcX7(9)^{umsfm6ocV
zE#E<E2(7X7^FI{WvOjnz24`b%E(V8bh%?yte2$Rw|70Ge=2PF&M|^klI8T!kj3*gS
zF`i~T!`N`KO#d|f8H4z@p-Z&3+zg(N!G#z&CM93wC@E8=xXUr9v&jD!_4fP_g}<4M
z-EZGDx*CIPF`%7BuE$`=EbB%LZpPqN4Co-X*W=AcF}Tf~qIa0wjlsQ$az6$SBK#o}
z`hWIu3@GD|xdVjHV(^@%p@2pLUQjQ^00IgKcttj}%nHy1yotfv7{mw=1iXvE`xyKi
zgHJK|5QC32j+vtWp~1av|KIwuZ`#y5!S0szqMh|Q2LHt%N<g##+PQb!duv?1!0rX6
ze88mleCg67G)oj932+He1ULl90;bW<KLR{omAbLO-%*RB2g$O2wrIZ{Re)PSa70w)
z{?Yw2TdgOXE1vm_ik2?GD<F%2tO5)HJ^>j7WE2of_D`bH2}m#C`>Vlf%gll01Ba!!
zx-p4|LRKbfNNjWwZ`RBL4j(r2_cdF7GJoG;WfPEHKyCqf1mqBqQ$Q{OUyTkQo067N
zy-8B>;MNn3Cl3fa*IG@lMdcNcPe6VFS6`X(db4Gn(7P-CE=@v7EByrp6cSKIKoVsa
zP*^}w0mTFq5nu`kP(uX73Hb3;e!l=qz_Cp6<RnwKm<_5X6di1)jx|Hn6$7Kg0^$XG
zDW<<%3GYowyIwCjef@;u0ulry3Meh0gn({MqDu-WC7{l5GiHVVY1qnnFi@{l%IcxE
z|5Uyb6?He*;aOC&fD{4M1XLH0Dxj=@iUPhCP)@+Z&T@GH6$H?uZgfV8l;5f{DiAX@
ztz^GIB>|NMR1r{>9x5Jc(G#2Wpu+JA*2wK)dW#`zQ|nz)VhsT`1=OYr2&g6C8)|aj
zs8t1G=%eA?S1FGdnV;(g>I$eQpuT_x+#)*7hc?_k+&Pr%gms~*b-r|B`I3Rg0-6Yz
zC1AFIrUIG?7$9JvfaU^P2<Rx_I{_^Pv=Y!xKzjkL1+)>6CZH{s`RG)Dp0c=;Es-9u
zJa8vaB}?FA?%=lq=Dsbd7mDs6Ao)^Y%ZfO6Uz47E=p>-CfFEcS$U_8l5zv)-lA3VX
zPiOS>PD-Ht#OTx~Iyj~~7v6)hCnNQ0FD4o8IeQD}BcPvv{sLZq75^52zSP470<()-
zW11({FJmqGTs-I0w9H)tg9Ho~FiyaD0Yd}~6);l3C;`I+3>Pp$z)u3`V}<_Nk7*E~
zn=P*<CeF<f$gn2q!Uc1*fH4Ao7BH4B_rY(j3I#SKp8Y03Zj)CkP2U))KPL#7NNyuw
zx`0UnCJUG%V5)#j3;lKOnL}?|bn5H675><T_G(sw1~*U43~t3t0rVs%jcm%U@Y|>U
zIn-kUHVfDyV4i^a0#*oEDPVzsg#wlc_*K9!oN<wW#R7i2Viu_o2z)RnP7ahS6QHf^
zmkL-$Wl|EYB(H<*vRdT8w1PET>Zc`i+^s;}iRLN+s|BnVut7l7wWu`$)(TihV|vRf
zIM!@2);u3;$^ZH5RSs_yu!$}wphlW};kcP}$1J}pL<>%{$=1X9=2ijQ1RNCbhk)$@
zb_m!jV4r}U0(J@5Ents;^E>=C&-=T*Ncr!SzwrvI<CT>Dd)mYdwDt=)Kt7f=y435a
z6`zCg-2&#7M5^i`S{4Kx7jQzr5dnGK(MM^L(x|<(-^6^rGf;nOn)bp!V5$Ek4M+Cq
zO0A<$k=f4hp-cX}B~$W`GS3P)C!mLlo+|#N3ee<oprQj81YD$+idZM&l7P$9UJ-3X
z{3YOT0U;4#5m#tQ5g>|?L|hYaomOT6F9qBXa8tlD0nfSfZ!tch5{{U+1>E5%jqF`A
z-W|Lr;69TFjHEnd@<_mACaJqKm=60-mZzMNcC)<jyZtnNcfLXTikw-%M^2)XH{Vcw
z9@uv&-_puS9^1`&FW>`{u9+K9lmd}|1pF)DlYq~haY+;TKXRCKDN9}@MTuzfq|_H4
zEh0t)i4+7T(`zK1FOl6L!Y3kDge<}-!X-ixp^4B%dks`YxJ7uFfAc1a_B8u0M@;7H
z_U&9c6w)ig_!J~!h#>6NJBctI8|M;{TSR*18AN0hG5v!-lZYH5a*D{zQBtxn$;z0G
zF}sM+M?WP|$lWsj`JqH2bh$ht@{53oyj*5JM$&gBm!OLl5D^eTM^zT&nvhaR#8(ks
zm`M>4CX={`?iXP(?-LzISzIsj2SrdTsGN8aMMYE>QA0#A5wy47i3(CBzG!g~2_i~}
zC@G?ph+!8SloydGqO^z<5vd}|h)5FAV`^Hmh#wBOiT==<IFU(H)7DK*E6Z8RF_J?1
znq?_FUL{u$QIW;3MSSRx?>Hy*T9!g>tSq96h^iv0aRmnLGJ`jxXopxzswtwDhz24W
ziuguEZ4q_YW?9+jy|3&~BKjaEtSh1(>-8CPo+v_MBN2^7G!fBM#GiUF?~3S)E8<%I
zVK(DFA%m7onv)krdhC5lpp^((`q~e(2-8Hg6){u9ED`NQv=`AyL}$Llw<3O<6a5|a
z@S~^>BF<QWj;!~uV81{?f7*U8q6_tph#y&>BIW2xoiC!hi0fCQ==_%+A_{rJbd{Bd
z{XIqWVzY`ln!Z|Q^%l`b!~|AmWG~fM#2^t1@A&(P=r3Xb4aXsIpa@E$KqqlGEs#iL
zu!tcdhH|c-8Hdq2(A65wd<5f9j8wysB1SPE%{YefL1nu$$1)$sNYU|h(Wdq+o+x6H
zh{+<R(4|F;8))rlo-&oZT138y@iR&Vr?E(cc6iv^Eb+_`i^yydb3`l^v5X6x%lHf9
zJQ4Gm&_c0*8p!;CZvR)lNW@}}2J<vn!sJ&Gt?8_m?q<s1sO7|GMz0b<-{pQ2K?h8%
zU>izZ$s|*j=+#WtMD)}(q4gp*h`1->K4la^PpzL6aZ1D{=D&;BEMf~e*dqUa5eGzU
z6|s$@+ePdav4{B%5j&ZX*)AsTQJMBelzmKc<}N|0zrQyRiui+-V<HZTI4t65#PW!U
zOqX3`M&ZMsB?(C(JTBq{Cl#AxQS>yqmWZ1odhZIJ6>*Nq74l~$ml)48USPaPi`xr7
z8UGy<AiPYU0<7B#jbmnu2!*TkDG<@GGr1ATNU672xy^V-1ZBL-oDPnBAmSmlLc%c#
zk3>ACi7BCxgeM}NipV7)w}fZZpS03SP$aw%@lwPm5uZi867ibmzKD+^-iUZB;+=^1
z<W$Y#r^vzR>DIE*rs%ck@%UjaEqY}j529zRi~fh^CN0r}Lls~7n{D)ud1U=3B1(cJ
z!66}9LW~4Kf+&HKc5iGmu4;%r(8&|pj1K?y$(oeIdfFy>M;Td`;FK_6iMjt%koK#j
zPh?esTS5j286|imXcBx9VkIQ!jn*Z2B^VOk><j9!zuVl)kxKW4lHZwBl=W?fbQ01_
zICI84)*?iogH&2337I8ilaO6P7V3};uHOCStP<!Qna+bv+DmqR`ali|eTIckUd*0T
z0)6NcFI+K!UbxF6A+Lne63R%(C&7M1PeM=vBovTPSV9r%)oRXy5(-K9O2RyUkZv6H
znV-CQi%HK5(MFo4gg6O)36_LeIa9_ywVs@_zuwc-psiEK53!DPutE~T5)veokU(3h
z7L`y;LUF3n-q78(e)@$-`<>37W1jOR(9e_Tg2^Q%l#-ArVR@W;hd1bYVut^)%dE21
zB+De~C<)ahRF{w<Ayq;}313SnE1{f(@)9aY(Dw$c8`gn+W`RDT%RNF=6Z#?J>Fci~
zp)&Q1gsRl8i&mBn*3ANeoO+NpDWyH2=wHH9|N3i4s41bYgnANcN%%%WZ3%TGY{+iS
zTWxl0kwkkPml<WYT@=`U&H6CHyxm)>FJbZ!xq$?Aru`*^zRS^f=Ef45kS<}0gr*Xj
zN$5>Yme5>63kjVhbe7OkLMsXFB(#^%T0$EMX%gC!gOyC_dM!vtIBonUK&O#*n?`St
zwN5e`d@G@YgpLxvqfU5d()Pb}`>Wpy^WZA8R+B(G&7z%7zn9QOLU##0By^QPC$?YP
z>FOrgOICr+{(s+DH1s_s^pfy{gdb^4)xe06@h$5&+&<j;by#ZIS0Q>}tVoSeUkUvr
zjF9k?g#P5f5(Y~cB4Hq1J!{M$s^@a2xyM|1(|@1#`tF}Nl!mx%^e_p-$qD<#U+8b{
z7-4pvXVMnCQUCZyN*E<!tb}nAM$?p`#@>(mnFg_SGWD2IAV`~Y26qJ8u1*>+VS<E-
z5++I5mc419l(itxln%1|J|?mCvmm|xR_sY=s)T70R!LYbVY-AF5`K}eNWx5VLJ4!J
zQ4(g8k5!AFSxufp^R#l9e!kJ~5qgPxzJvudQhh=T$$u_cSAX&Esh3R0fzc=LgY)KM
z2}{WFB>X1fR|!icERzuGFT4HL)<*$)zL!qUty9vn)|ew|MXw-#>lD3`#_ovONQ#R?
zaEP9;M#5SNJ0<Lruuj5y37aKsA^)Kvkg$nHL_*dD0X?JrnL>}XZ`<KdI~PE5V9Ud#
zt<+=*+a>HE4_{`!=p72Tvlju!&+&5Qgb^qG*PjJ<OV}gfpoBjp?3J)j!hQ({h^+T_
zjS10f0(5iW@uo!jO;Ofu1$}XcBpjA-gnW2vG;NAb&*M>n-^^@se`*?$;}TBLn&yDR
zfs+zW(dsJUv4qpK$Vj*<;hKcA63$8ZOTyn0{*-WD!X*ipY2AnkT%hK3H!qSHOrn!a
zt4}Jrv`gIdm;SGcL_Zj84Xhk0aW(1+tt3t9j}YgwoXO*-o7W}WkZ@PRJqb4@+#)>U
zzD?7%m-)DlS<f4wcSeqX9lk>g%iks~$oHuyujGFq;UW3Yev`H(Ay1~?cl6d_?z6!s
z5}r!<AmJm;XbI10<&^N2)_(~vCA^aGniku>|GVe#vZ1o4OL+4(>rAE4&=M(Ec4d#v
zAib0DUIOi_Ooy_OhrAgW{)Zd&S;Bu3{*~}a!u*7A_YT(11NPOU9Ef%x#sR^Bd}1;k
zR<feE*?Usz!a&*CVzlUhYjR5IS%KI2l4J**4&-(q4~Y&a4y1D+y#uNPZU?*$7!G(G
z&>YYmb~k2tQ~bv>=F;QVU!&53Mv%T?`W#qZN{V%0?#~iE=RE%J;JdcgkUfD64rFv7
zn*-S$$mBp~2eLSj)q%uB>sTPEpJ6>&9%xXcslLagO~2EBTPlYGIUOkYZFDZW;@3$V
ziUsL=<8i%2slKiQrL4Tv5C;+*DB(bU2jD=+fv^JwD2oF@2f9AW_WNRUezpMZcwESV
z1#g01IZ&7h@ghu2#yCd516Cw8-~gRzOJ)gK1LdlR;vFdJKrsi3J8=DD@O}^T(fz=q
za?wZb)~AmEdMk&v?l0*;DF>1rNTC)vP}+eq4kS77)xI|SfA!P-9IA#eEiLa6%Tq0Z
z{@6`*psWMs94PO=>-K>%ldVEsEPaX9I$MY=tK4p5wut}Qfl3b4Qt*v}$_`Ya&UeD+
zL{$f>InYtYcQUFwP=neoBP^pP8PhLZ2QE7BjRUnEnCQSH2kJOb*MV;x=-@y-9yJ=c
z#tzhH-XNkhWYUPS-PckRCQTWeIndmJ7R*~Qwq&GoN@sAjcA$*|X%VHZ1Ao2`e#~8p
zQrofE-hqG0+s_zxbl^KyesZ8w#QsMnogMhzfiBFuGWK$y8<XygJs5j3Qc>~8#2*}>
zL*<C)ULTWvqS@PlJ`VIH2b*a2b6|)ALmlYvzyJpZIxvX!!4A+7eo+UC=bV;CW)vR9
zHyXxCBN#~;PM+C3j!6Dm>FV_JQTZeJqN5l`Gmc^W*@3Z4$Yz`a<0E{61HZhmAOD{0
zz!V2&J1~cnrZUcAoaVsvi2V#EGadNyqCI7#FZtuf=bG!lJO}2}<ZZ8zxWIvh4*bE!
zzc{dn$ri@N4*cf83g$~3_?5|0M#{L1$#TYJ{q3J8E19o%V3h-_$wRW(Kg1}kabPVc
ztz#r*=KH7(5x&uZO<#CK*-UP~-u_9x)q!meY-fEh<Bo{UP6u`|-yKo*Fgb9~zmLiO
zFVRTqK_>MFM;&5vIHDhM;HU$~95~L(sfd1pJ_REDuNv}c2hKQfmX$vv`Z;op_xA5K
z3g>BdG_^laE;(?SmNgk38GkwOH?5E|1Q}NxxJqkO@q}j%T%#$^g}kgK-(a$If~lT0
zZ_?z-7`)}cZ6<ddc*umryR>>l_<bf1X!;aQqNGO={V|g#j87d{7q(NMJMe<9`;zga
z1Fx98W~BPOao{cUcM;`1lMgiI>A2G32^9Wu;9nL$F@9$Jk1<NN8$}^n2HgN8BFd0t
z6q}Z&$`}CK2OP4!s>?E*+wHz`%5bqlT#@nMl6|*_><Kj)Iwuuj^vdwbh-Gfb*pT0O
zu}o4r8D%d7v&p#s&@L@Kr)FTxNR?rdnUPYnFv%)oNnhJVv&+aKBWENvzl>bWb2H{)
z%*&XMk+OuV*%`sn0x}9RDa80y#HO%}_kEJc%#`usrM<svoD4s6i){jo!H9jid@=Dd
zipnT0qYRrB<D?SIi_1vhC>2GI^Oa;?N=71eMIPtq2_|&{-T$YnB*|zXqahn4%Se%t
zN}a<|a;=(7%E>6tq=Jl!Oum*;l}RPW%8XSQsmw$7qpC%Cbs04x{O+~<C+nuxlJQMM
zsm-JgjXRTijP)a_@>pjh8I5H$m(fDT=%%42GMaH}Q${L{E=S>GEx9H222Y>z4^1Mi
zINDl98z!Wr$!Htl?PRo%@NZ>wi16)6iJfG0ma$vL9vR=u=ptjTjCnG;%IGHJXBlH<
zbeGXXMlTsZ$ml8K&Q+7b3QI0nTqg1(*R3yOC3lYAGWw9?Jv8a);SOBGelq&YptDE@
zu+2ajgJcY5PHh>^WC-I>8N(uar*6s!=0C|8DPt7#(UH_=nmq-^Pz{^fx8ugi7%yWs
zb=O&QLd0ew`54cpNiwKnlUbh<NuA1MnvCg8W-!i-q|TBNSK0pT_?#hmjts&K@y_`&
z7RXpCW0{PFGJav>#j^d+@1n?jsohXn(loS$lYXTNw1}p>)X!AZav7Ug|4qgU8Tq4A
z#%z>U%2*|1HS5%A>oVCtYSzeDE8|Q^UdK8q>%SN<Zj_N!ia#khx|wkc<5tFPjN2J^
zFj5ISW$cRZ4^`#8GWJosWc(*%zl;MiZqg+B5IjiDp|w}WRT+oa{%^*^j7J!c$~Y$D
zIP)_y&N4Z{c#`pyjMGf$x}gsCYH*ID7a9MQah}PAh)wSL@+Ib%8UKptl$T~DWv6hB
z#p^Q0m9oFX+~6o}zh8ZL(k&UcIeLd`bs_jvw!eGam2r<2pAYr#bJ7FGhm4f{k&MR?
z{)EXtIh@a!(0DzkRYk^28LwD*6R~{F<d2T>TPE*le3^V;{8z?DCjT(fRqiwmeTwjR
zWt>q?L_6Vh!sSGa(_Y~PCqyT{dLP_7!IYd>S1i%NdiQ)Wy-P_la}rDJw}0^|PI#Qq
zSX3F^jGL^oI+HIeHbuQo5K@*{C(=3btrH!bNbf`jC#pM9!-<SeWO5>x6S<wRVnTB#
znVFr)!i8jYB8L<0)7h`2Wpg4si!XQD4xH18b~Efr@q6FsJWk|wqNo$aoXF=yek#X_
z02{-J0!(hsPkg2bO=%Q3T8LW8gi0vvL=om@M2U04AL0LbT|p;8PJ~%0U-N%HFeqJ2
ze8h%^skjpfP9!^#;zWsvUXn>%QJNxl4<|<S(oU3Np2T=MV0#gTR41yjQo4g&)`@Zv
z`|?aGI8ia8eC<RfCn`Hpg_Wuioxbf*Il<0yi){9+tm#B8CmK4@$cb;L&p!m~v1M(>
zI!@Ge;vVlKbbF#nA5XzaW_>3bIB{))xuQ)zLMo)O6K$QCpTjP&i4#pD*J{S3Ib#dP
zmQJ){(%Ok$_2o9q(-<jlbOXC??Px$FO8IL-M<>2>;*Aq;o#@2+VJD6_(b<XbIoidE
z$xcjhqN@|#oapXE57x&p_GBE!*o*N8C%vJ7-pu<r(cg&yPW0tyKgM5TqJLdre?cAS
z#9$|eI5Eo~J&63_iT$BW;rLHcL)r2RCmim?h=}r&6C)#h6qC`6arL5qj_6~VjB{c<
zlL--hq7##tXR2?1WK4BpniI>N_|1vwPRt<Bxoy{BX2kv%CbJl4GtOb0>%=@75#|e=
zSjdDjZmb`jk@xr_zKF%ej7yyOmB~`ZWt3%uT><TG)cK#HR*>ifbqgsg*<cmpYQ{B;
zYiU7nV!aa^IJ%K0HBG?z_AXcysuXqpAK%OdTNt-GvCWC?PV8`ECo2b?*yY4-C-!rc
z^6qhBuM_(?+P{Tsa0`2<DGJ0156}ok#6O%k6v_1^^{5j!Bg!!*#~DvJangxXPMnUU
z{_VsWC(d&8oD&zB{K<GeVsn8>;kx#o(wCTDcH%E4)UjXs=L$!!(gb00o$&@^YE<;(
z_WoPUZ!_L;;x5fE=1&>#Gd^IXt2|`#i1D!#Pa^ulit;n&&lz7ZzKo>4V)B}C$L*+h
zPQ0h!!UqaYd~~9<3vFEZ$BBQPDCj~V7d|=h*@?_9dljPaALrFvpxu$9S&VVP$wY|Q
zh%QJG?qDJ_4$fd7kK$skxS&RC+)O--bmAD<=q`9UYB2g3Nso0QoeSw*$iPa*i2h{)
zW^$pfXn$T%$ihik8M85FcOeIpoG#>YA-4;8IGW#uyi6!pJ|;9|6etQ83PhAIgGl06
zE`04mB^L_2P{ak34NAID%7r)={4Q9L(&Cu}TnI*#kPG1m_usT9Y*81Au~M8dfsw9W
z!i6RGOj>OcSxIFq%~*z!@+P^E%shp0a2tD(EE`EJ=R$er6&Nc<^fya$RCb{XM;p6P
zl}T;JYK+wxYcSSiti?!$f5W8LeyL7Gsmr9E3-u#P0~Z=bcq8(Sz4ngu6q>luG@>_i
zp*iywj4dO2D<*9o2x%^~b>S&T+qux*g{3YmbKzSTI=C?2g$XWnbm2P}2DvcUg-&eQ
zo3XPC-!tjrLQf`L8L1B4m~?0C;X<Q5|EpUsR(^2dM<!oJzYp`ijFh*Z3;mf7h$sVH
zINH#@Wi*79QH(<whcOOkB!dx5eqtO+eYLy|i4;b=FeYO2vkPM*d>oS<OJgRwFv*1l
z9G%QKGh#D^$y67nMU?4GW-vbLAkT{Evzg3sVQxg3$7H?>HTl=~LXQ3tNnONbF?nD_
z`ISl1g{;e6_|1hYE?jkCg$pZPI6|G^!YVe{$++5uHB8pJu!#w^be#+9BYXpsjWh>0
zCfohs!e$q?L{hgi*~++${BwB{+3fg|g=gh17j|=Wj|&Hx>}4dgeN6T<9-w*pw1HiI
zck>Tc4!Llc35_pJ=VQz%^@0n>T{z*wNmkBA^ixbuyKp9=biFT-{W*^Q>B4y?U%Z9%
ziyXb=!sUqlUoQOp|JhuN==WT>9^p4!xEbNMnA~>Zjth5P_)^c5s`grRpOYRiK8)Bu
za^Z1=KVd@a=QAeHBl-&$UNV0bQC>57<HFmB@{UP`j?Ry?_|x*JAh&{lS@bIZTlqh6
z^s@{9F^N(Ttso|nDk~5oTx23KIv5Yn&gzV$x)dl1RF1k8cob*~3a+xqhMGyJEBL}m
zB*jqRW8+xHbd2d0WKfWic{avOjF}m;FjC&E3f4vDcy<<ZD9Fj=OW)>Eke8#y735<Q
z$C#gyN`Qg_5nfP1A?9B(7LMpen3xJ~@~N->h;A_nFa{Yzj9~@wOo}QfreO9V+o=eV
zWPi6zP*8$XiI-GRN<pH6(h((9K^f*rjL8u_g~``Non;l2Q&3((1y-svR#Z@lZu@_+
zQEb2RC(2b6R8>%oMY`7F+Uoy(#!+gGh+b2{7Z0qhppJrv3LYt_tDv5OO=P2>zJdk{
z`YRZqprL|B3VJB$si3ifCJH(#_)bAnQtn1IQ_x(&jEBLFJ3}oLw4@3&kE8vd&KC){
zQqWcbJzUya0Y%#|5=mo1f6G%+J2q&q;9Djg7)d|h)9j?6vx064y3^$*nDh|i_X@fw
zc<{;JRl&rb&RN+?5vRBE|9YB#oIgy*uh1hIy%hBNvB{4LdMo&WdCeN(XZ|pWeH8Rn
zkm+EEc-LFWE0lzO3c|CjxeGE5R4_=vVg*YS3|25i!8`@?6%17{Ou-xlbGhq=D|lMY
zdVM|6vxhlC!B5l!J<O2`MkyGrfWGfdpo%FN!~ADP62~$br(k?U>HpZA6yejq5XLEt
zQyHhxba?Bh>@zqzQvsdaJxc-UB+h0Wzs{uFN{&8e_Z$99EyD{GEL8A|f<@G>-RAfO
z*0^e^iEqN8%_co6Oz)^BZ8v{auvEcn1#1*6Q|Pf$tW>Z{!EXwJ3(ZA;nQyNJRw$^M
zEl43-ruh2HO?OP(rw!)ZzUEr$iUWBzkh9Soq~`o;ma?q%<j?eGOxeJPhk^MAOnTGy
z$F_mZ3brV?sNj-<tqQg&*r#B>g6#@+DA=W7H~Ge%z=htSiCN-zDxgPF3;i7a^p{m_
zWq|f3+M{4^#8(Hrj5?s;pn{VMPAT|9!6EYSN`VPu8{hxVI!sNdZ5>rW{0JlMcX3R?
zan@;Lw<SX22?bdPgw1b5r>X73&A=_|tb(^QtTPJwWV48@TIWBf;7@W(>WX##c|zy{
zt%Pa<g}(0_TvqTGtpf^fDfnB#6$MunTvO2OKq~E-Mt9iAU9Y|g{(aehoqBbrd4nd`
z4vWJ01J2tD?kKpc;2xDcEk2OF$-*TepDTE4zduwrbf27=y1INQpIM3?`lW3X9xHgF
zpoj`n#Zv{(6vV1Xr{cMS7c^e0-I|J*3SKFo7h~f(glRXe*9!hq5T)Xc0*bz6e8>2n
z@dM*W#(x<9WhCQI3O+NZS57FpFMrc$6`nQLx$a@&F)9QVL`2nogkEBFFj7=j;Z)(`
zsG`EnL}hGt%_0L&#F9>cEv%;KD!eM<t_BSi*Xsv-j2#bz4{c9OuOfqr!YaKRm@lJ>
znSDZ8Rm^{8(xlF$f-o~<7RD7F0@+k#SCK;n9kEwXMWqs@_Ma7Vs>r1xw~9QhQ&Pog
z+48E$ry@Tq`2TcDEug|GQHn?*6{U)nnjLKLm5N8{8xWyGcsJ(=#HsL;jf#MZfn5T$
zh0%sd)}T3NPz9Y<Tv<gG6(JR274a(QAgx;=D@jFB=EWF`GbS*WU@Xa4iZPLqGL}|R
zCc?9=w983WL72jrs-i5Da*X8}D==1MB+IX<6Czyw*Q~0dnu;_PZB<lPQA0%?YU6B^
z{)n%s;u{r9`vqz-+JDXW3s9)7f?iW1Qdgx%%I!bD>e;o5tFNK~4cvIMp^8Q-8mnl+
z(Uy!&RWw)8f_XC)^wWkcDcb(2pEzMF7F(-m!#2HcniR;U9oeYptm1nW->T@Kf@(rl
z>Zsy76`eRrFXPkG7ZmDO2(E2yUFjC0>UB}kjZ=wtjWmJsc2{w?O@K%*6+fsr;l@cf
zepJz0MMF0lxzR^OUlj*b98}RyMSrRoWmhqP23N%l@;ViRR18+}lZuflXcZd5I9$b0
z6^Cvn4^#2+UbySRWWo`gL^gvD`bVi4tzx{22`a|W^mNlv<`}Em&tMZDr-B|OqOdG`
zfN;u<Amy5<VzP=UDkiB&*qCU>ItX{pwx*KHjSN@PtZ6EyQ+@soZt;e1Yb82$OP-}-
zwu*%+eo--pIzfz^&vhvN*_um3rh-V#9s$Ayk-Bw#8CXP3t8Xn~g~(zR1xAI5Og@oq
zXNkmRDweC*qGGFx->7raS*um7VX}g8CAm72BCTagUCW%v1}5uN`?G#M^V6;5jZ8K%
z{?54hi!#)jamq=#wsCYf<8~E0n2^4c$u1SNIW0x^aC9%@KF0lww0j$+{y}3w%cC1{
zZX8x|L`5byGP`k9#W5BCsQ6dKadH3^4^%u<aZ<%86<262qFx$eo>p;I#W@vcXw7-+
zFZb9a{8Pnw6_-?8X7PfGi%jZ`wkXvaYTNw93YG9T4em6Pi0hS~kUoO1(de%;Z_|Rt
z<c5lyG#QzbUgeU|@0386cUZX_(eJ6~HPyV&QL4rx6_2U@2h6uBp3vgY`YXm~j4$X@
zfXVwY0V<ZlOO8G|BfMrp${Q7TN?AnSaZyy-dletZ)mNGyX=Y8ZNFn}7#b*_&+pfTW
zDx%zQxa}rHGfIpUjbS3VAu{m__I0U*(zPv_6(^&Mk&+Z9{|z$TZg||#+|b=f=eDow
zWhCNr!-(*c1*2ml{M%es`Uua!BqLXkY_hnKnkSIYjr?w8bt9V_*;&cuMs7E9FeihY
zZZv;WiU@@~EKcZQ=8dG%wj^+)fEzvE1`9E+xnNN!=muf$EXiNFQJD22ZnRt<AhWJj
z;|cw4SZ<Veqk<a&H-c^?x>4GVkQ-q)O1bS<gDJ$jQOu3vZWLvO{@5ikfq4lxN;0X{
zK15>E3+5m9>{JSlixy!SPEBzmi3usmOqyP@Q&Zh28_~<T?Wa|<h*m{6zGkrwV<k7L
zx>1dJWjCrY`I5c58#OrkjT<$YP?@!;hxZ1Ftls~>n$&iq_0j+Fx@=a@jrvR)Fwz5-
z7q=!icB6?KBi#7OZU2O9O69oG$&F^z`K+{HY(ss>glt+dY0W6U$e-p$TjuTD_?8L1
z{MFu#V{!J4#15<w>Byvb!dIQ$_?}j8H~O;Dg|R1NSH^CP-5Gl@t{Ygi7n2_tsk9%N
z^me0vHT$EDLO(ZJ4T>7VdVe<tFd68^AU6gxr$YqxCFM)4Xm8O;VW=C!SRc+<?xFp|
zmcmFkwz#p?jZtolc4Lei9r*T3g$9A2-5Be}I5##w4=#3N31=Md#soJex-rR(uNox{
zot8G&jmZ?+`=_`umB}<WW;2=Y#tb)RGADys)X(z*L=G+t&<=-lSf}Urx(+qxxj{wE
zccbyX@B%j$x>0ewNy;y7EaIdCo5QsE4;_SRW-t6J*JPs`OWj!J20i|_oMr*lYDeO4
z99_Y<l95tZxv`o#J&L*eqkk=1u47!!NEtV{QR(*(5$cmoR6bu~Gh@2{vXQurIg!0g
zw!5)|$xb(Rxv`rTis%sCdE3L{=Q0xAh$G{DZtQpCfEx!{Kjy|COepDy8;6)5X6%>W
zKIiu+b1b$t$Jzf+9jDKQLG~@#Q*NAg;~x+H_27&fXQ@v-80Nt_wtw!%3nqWMao&v!
zZd`QZ5-X40xXk398@Yy?f4T9u8&}*|b<6%;e|&i3tIV&tah;|K^V^JMaMO)j%uB`v
zD0(NN-*qEz2V1$%Wj<hh$oPmc|2mVd^@Okcl<^rOU9rd~^Q9ZFXd&_-<iTq<-ngN7
zpnC9@Z9Y;n-KbSC<sIXDH$E`Ax-p5wf8F@xMvMo72cOALHds*}tbJ`A>YVZ)we*G+
zHQS2zpl2_O#O6j&^kA$RkUemEaR0U`dEj7@^FV;2mp53nFTKmYbnt1iCEc~$9(X*+
z>#<+H&^*vR$lyUn54;{6@0lFyK{^i%57zWd_K{e&>FI9apYn$&r1xO=v@{}Fa+h5+
zEiID=nLWtvK@Jc8OATf5Ae#rrR<z0L0omN1mPX>IX=zjfMRR(P$AfMEn7KU2?ZL)(
zsZ_rE`>@<AnMAV8=fTA9!udS_lLCx>#)6E6Jot)9VMa18!o>6-E}}FyTo&^HV}|Kz
zWES=y-h(zCq<K)(gJK?3_n?Lc#XU&ypo|Ae9>kPMDd9m$4@!A3uR+82m75m&oSNuC
zrRiz-m{QsUYkC?5Is!P^gA@-cdhoRescc-<gK{2_J>~kdLBsMMRG^kNXh`;yoyh1b
zW+e|Qdr;MbwyY3V@nBW3#E|J}#U8b;<^kn>RVR`3njX~hpuPtUsPi`jzG1AxSeu6I
zv`J!JjuNTI#8oM&p$CmTXy!q44;s^emQFZnHEZg@v;%=Aj76Mf-z>^d;(^)1gO(n&
zrq1-1ICmn{iaPwHIX6d`ZaYxaU)oA87ijB2I}d*JfOd^*@4>eoeD6UQ4?1{|Z@-^j
ztox2;=vIG652|I0BXVNB*~x>>9t>V+(r(zKbY+8X9&~5YX?x=yOepCGCOsK@c|g1C
zlPJARBJAx!9}oI^(9eUeodSbA=<mS*>X0gKXQmRQ3}jB^OLVXYLm~><kUrdl5gt78
z*z3|y9vt{RG_7o4o(Cg67)7HT6&y{D;lU&i#?Wx*ivO8$EaN!F@r)A~$sl%A{A8-+
z-+}KJ2Bvv1h51y*Y}ErzhlHk6=PV4&V4TS~i*YvN9LBkfWOiptU_Q-FkNpti0uL5?
z@QVkFJXq|(A08Ychuml`@nDw+WjFYL^<b$7%b0IuT<*bd9;{%#hLOxxk|Ra<Y9_5F
zI7wg2d>!L@#tk0Oc}$eFiKD-Ju-Stx%(pXcWh8@bOx}-?iSJ;(lkrp4nB5*^3R$G@
zVP&re`<U!!B>e!BgN$3gb<^(9!GFxd9voris0SB4xI_yDtu`K<VDT*DNybx*rx~fV
zGfbAXcb|(We=<4Gc!4p~Ecvnre|c~(V)M5LH<@2yyc*H3F}coo!-G#B!*mG>w>-EV
zvAM(KF5_^I-IMn{co0c_$m9{@W5!MG-A_Gu=D~CJy4N1O@!*9AFFAU>jQonp)gJc0
z32&Ky@Zh5d@0gSLp2^R(qfhjg==&ZK5-EHlU)3;4!)IDxJ&4i}t)a4pDjH%m2pV!|
z$f-fp@b6|*(V%LOG&nTK8l0NFOJu$>@h%M=)`vG7c2Ts@A7*JY<ksNPkU>L64VngB
zgQ3BvVb9XASF@Myc0uL+p!joh%vcTSH2fSBonFJ~xX|uJ;c2H+=1osKcOjHmCO(sf
z%o-}Dg|lhcD1@?TxX>ywtA-8J(?;eCE$y00I~8Zwu&;{RYhozF%}_24xiu8kP)tJ}
z4S6*b(O_!Gry;+FLK?o(aAt85G!)QKP($j?5N&!)JG(YolyawQYAcx@Qw$AS5iYEO
zHXwa%Bpjcf7N^0lA*3O!!O{@W5TxFiZtqZfYkC^(_nZ1K*kW)zovjnEVcXP{I$A>K
z)?up5H)g1~h6K8bhO!z;Xeg<njD{o)r8FdJC`}bRU=A!DpCu;wK#@@6=oH%Yn7W9z
z6wWXsEm=bfb>rZ8N}}MA5+2MAmD5mxIz&Tx4O3)Wp-v<6wT4O>R<sT;%2}dtR0*^R
z6R)bFnuhN+bkR^<Lk$h>HIP9~4Yf2h)zD1CHyUbdsIQ>`XRo87u7-LPx~5)wQk*s@
zKKA7<P}kIkG~5~*YiL5no(t3Fy;NJ;LHE`<lX#G}<SiGX<~P^SN<(W6Ei|;$Fmk7T
zpwEN2(96>CZ8W55Xse-}28xotKu=g47xK?YE143C-j_m+{g!-5Lq`p?A#*3j?-<Lr
z4sXdECb2U)VWPcVb5{-BGz`};LPK{AJv8*!Fn}5*g?eiEQA2MHy)^v5*@J1}n^NfE
zg%BNr*+)ZP4gJ`q%V)Q!w@-FUf*7JY4Ad}4!?z>ThH^QBseCImgho8h-bXt1QW7N%
z(=fYrA`!x$sDT=&AI51IrD3#&G33l_P+>+IZByKHaQs;6ja|Wg=k1-MsSx5cO~&)w
znLzz-hF;VSPo~kN&Uxh@sbi{!X*6YYcy&zIFhj#x4d*n>)G$lK?;18!`5NYESf*jQ
zhPfK%Y50XkmTLPl|9lM#G%VC`{!kL#Wxc#Ik&dQ4y*#vUP2yq=OEmndVX21ge+Bza
zjV}@#EHWs*+AQneqy8FKgPG0;ej_)~uvWu54J$RQ(y&^?8Vv{f1(rRsDy1g<)IF3?
zHPm)!n0Aw<T<d8v(%jUriTd-Xzwi?C_mAdYDZFN_RXBZo<{fROx~wf4wrV)2;SZW1
zbZJ@#H0;%|L&HuDyEN?9ko+*TQ?zJz(`GZ$N;pclo)N#XM}S_E+NWVZU7ZW3Er~Ad
zOsY~l{(bHEUka6=%N^2iSi=boCp8?=a8$!F4aeEI*Nn89cLKx4SoLZr6+W2M&KJ75
zEO3ez8BRSz{n;lpXJp{_I(FM>Cmj0O@+Wl~d8UR}w9aU_sNuGTI~p!&xUAu-hHD!B
z((t#2D_lsuBs*_Rrr?t~AtKZv*EQVGa8tuA@`qAZotOT}Gtv?h0(ATY8C3t;`o$Bt
ztKpu8#~Pk!xUb=XhKCv+X_)xfU*%%s9{a7`uL6Td2GaModfc%#=LtX6@Jz#V4KFmr
zEeg?=JN>^aMx{|G(JA%(Qo9bXHN2svTSttJw;JAQ_=jq!;XT*$gNBck{c7tL+pX0N
z!y8UmSJg1(`b5jVhW}`S=twALH7^%hHY2TRw^T~{r;<f`RQ~d7K+qxTaOqHVNID!k
zWF1c3e)hZZ9&5)-Q!W%NxFl>=3%}lNwmD;|I@~%uIy4=$kI*13IoC@6;iuN(&7rX`
z?Thx@W*ItsIx6d^q9ayEIvsI3{5sO>$e<&Sj=VZD>d2%cn~v-{GV92q+uoH`$DIGd
zA9wrD&I=S9oit>tNn#EiId$aHkz2?1OLjk-1CmdLt#9%sW^e>f`UCUE#plzJU&mKE
z3hRK50y+xnD5PU%qrf&PU>{@sA&GVzTBuqLwprz~hAOVjSA?%<>eyJ$?%^Ystgp`m
zEgb<JrFE3iVZXzyqd0Y)j<Ak+9Yu8%)3JO)JiRwcFLL^ZnsaBRR0srf+)E}mE1{#L
zj#4@jb*MRLf|#p%mZFmB2jJO6`x33%hm&+9>nN|If{qj&sXEH)D5qoDAwQi=_wA;X
ztD^$>ABT%=3ej)doBPa)I=<FXNyo!>`RGM{Duiw!?w^r1TMv%;F;G=UH60yvbktE@
zM-3fKbTrjbQ%5bG_E|-J9pC7vt)q^Px@5UI@yF7Mt&$R-rzTe1MJLXfs~U&tL5l`D
z8tQ1IqcQi%<r!&j7X(7Lt)2T)%N;PUTuY^MQkv;#uA_~PG#xE;wA9f`M{6DH=L8O}
z4WAvGc2$pC(ZPO&b2LJ9GE`d~?R2!)X}el`WXmk@4}H?6*Nt%Y{ejq|<c5XqwtT0f
zla4+*`s(Pc<9i)FboA8GMMqa1-E?#(Z*jzBk5Al7H#0Yw2M^e}XmJ=86Yizs2OU4^
z=uMsJNvJizPP)-FOrDdR6dKYdFgvT&Pe*?pLv#$)F+j&a9fNcXCilB#ZaHj~N@s0N
z3tcW995O74j;k2;r+=7^;W|d>_=)RG4zsRpptUpDxo)WEChOnt!nEzoD4H5N#_0H2
z$7Je_SN^e#;~B>>&YzTrbP5x6Ok{=lBqnn%6`I0iD&w?BDrK3eV-^ixCN#^0*)$P!
zj7o>m=`dHvJRPsRc<se}9Sd|E)9rm2Xbb&?Iu6tPvO>S;SfpdIjwL!a>)4{>SL*yz
z8ADQNxsIjemZ$y880il!;=k!wp<|^E`jWPW{9FpHqA6p=uV!V$@nAbMw3bU=M<pK$
zuGcZ`x9|o=A{&`(V*H&tB&7t2TXk&Hv5#|6f!lTLq9w%{+QH?MvQx*I3ZZ6;!@IdA
z;cVeOG_$gW_tIR83lZ5-A+(<y=5FYKj)OY>pcTduqSiez;}3BmYsJtJE}z7sOz7Li
zaUCagoYZlO9LbA*UYw>2(emO&W-rd_IH%(swM(b{OmJSuH67P=T+ne*r~ek?uIRX=
z<1%G=SNty;*_Tm!hFRhOdGy>Ib<dc8>p1klx|<kyFIrc1`zPUw;@NNLxT)ijj>kG~
z>A0=qE*<zwt4){C9UYSnWGA!Y9YRIAgzoEjK$Dk~D3x@=FG++?bUfAZk_K1DGa6GJ
zFF3?R#r^R*Kr?-^+p2HaZ<oB*@rG7@T4B1$?=J-w%(EzvP6l+`*ascs#W=wW(Tk5d
z{vq$x@kz&jI-<OGoe$QMYi|vI=K5dW8jkkT*X(eN7h`@hi4=bpqCkJcNnSX-@OcsI
zh3tjX3%3^@FI-+IUZ`FOz7(oYt0NY@xVq|Y64j*orX<Y^-3zZ5h8Ml7hDqEQ3J}J*
z6X-N6B82I@Nbg07i)}J`K~b{Iz!h^k1N7hh?mB@HSN%sXhO>Cl#)~vBvU-uti|k%(
z%V_2DA~zf7@FJ%d=jw!Np7s|ItUO-i_2P4EbSp3Nd6D0X8eY`&0$vpGBHoLlUQBvs
z{an(1p}3$Ig}ijX0)@SxsKr=>(PShs&I^BpuexoL67V7zQ9@pXnU82{7g&sWiWjL~
z6!#*5qb0mZWKxom%u0DtyOM2Rnw2t)Ns-iKFTS~Nr&1`(VkO3MUX*82A!1pP$=6;S
z>Hk0b%3f57q*i58&5P<0g-+0;GHZEpg|>8{t57w(sKedZkdeHiE|Yp*)Q>0)m~_2s
z|9EV~yfI@FFPcVd<_wCWGMjtRf(s|!l8NDtYwe}mw$X=An^eiRUbJm%b@8IB7wx=g
z@5Q%Xbnv1xm-BONtD_g+dC|!W;<Py%VY=&~S2NP?`x3wR;>2KU!u1esJJ!vM?q2-h
z#gEkXt8IFC(TjX?W*YIHUJSV&AaZwV;_2gogmH;4YbW;hqUQyx4<kj1_xECe7jwLr
z>%~AX26^$57bCs22Px<VJGFE;`IRR)#EYR+r3v=58pf3@Ff(lg6Iuagj0=tOVzd_%
zyjZrw97EOSr14&i_2R|0Hsd&&?s>4e$4yasH=N3$O+qHptb7uf<i%t!rg*VtxvhU+
zQJTtp8sl`v8H_U-XEDxZq%3uVo_VzRd$E;fgcl3ESm?zDFE;W;e_>q7xX6peOqMXx
zwSM(tDf49!WjT}I7*}|4ev3Wa^k3&Hul)z&YPygVT;s)BChHj2Gtz&5H~+LYQ7_5%
zU+`O~1m>F=Nt|<0I=aG|`pG}=cGPw*|Fjo7yx8f*E-!Y|2zqhUiyI|U2Or5Mrcc`A
z#a{A|KmGd{_j|FtOu_-?BpxJpVty#19H#!CluSv-yf{wo)Vj&4W>Ql%?t~Y2Mkbx|
z;v_k$8b_hkHvi3ZNtvGn&(KEzEgCeTz7EjM_8t{OiBB5*Nv$To8kc&(i;G@d^5U`=
z54ggAG2UVPn;e_TRWGhnwY|8;QR=R!%P}{Z-}2%%Eqy)g=eLg@w4Vl~aB^6_yAjKK
zUfgHiq^14t_CqfoarChl&%Aif{0Xg%x1*ji(o;0m|F-|jpzy+rmu&EPv^_>|ym;$H
zX&=h?@Xm|(blvVrxqSFQ%f1)G3=B8$j~D-XVHpS*_(aR27nuxXHt?SpQ3kvQ3<J>y
zVhp$pC<fMK3JV4#0}cbCfovJV4>E*1#wE%I?hKHf24-ipmBE?9M9yRg4~a`u4a~?C
z);P&+fKojMdM7o>|GYSH-9XiuX+(SmVhzk3nkHokr!$b=Kt=;(Lkby_O$N3kP73K+
z3}iKs+dv+whJoyyH-~}Rnd}No+m|sZW4QG5;yDfEGSG5nS_dtG^t=Z087O4nE3Qd?
z0|l6nB@7V0&loPq3S}qz#7yDB28tLcJ}8D-M9nk}#Bp2bYa~^}Z(wnTFp;2vkbwpU
z8X5>2h&NEdKt%&Z4HPp_!azwX#6a1bsT2~pX;eOO>Y`HIlgS2B3?x!D43sgD#MQWw
zF+4Lakx<VRCQPLg43slao>NKelrj9rjZ`X%%!qf)9RAusCF%zQbqrKCP{lw^1GT94
z4D1=2Hh5r+mN{I_Ky?H42gTQ5@o4Lmm|<xY{l)-wU5JO3%xEkIug+T6z_5(rdfe(l
zH&Us$>l@g{<KD<XV*}qC=whIWfu;u98fa&rnStg8+89VP(1NRaAb+S84Fq$l?Y0%k
zyGl1{%^gziQX8r^iPS(M?G1cupre8B43P5iMrsG@mQ40o+**~jlY!^y!=1_fy0}Rp
zPFb$sNbPE%n}I$C`WonNfV!fWfgcReReDhM2F3SePGo+WCO?t~QV(Yg7cbL<e3;51
z-p@dPuHGO618C3(#Z#3AlDA|Ge{r4~gJP(|2OAhij%{El6Psrak1+6)fzt-g7#L|_
zl!0FjEHyw+r;Ii*#=y@8=v<ZMg`>yP{OTH*Z(spsH!$A71OpRkj*tTz__1>8nat`W
z1CtF*F))?7w{q$a*V{}pu%dG6bVed%cKBclky$h-2Id%;YoOQ6w5c=G*33+sSUGhb
zxlrX)QYi2B%BiF;H1LaoMdYsJ9!2est&ZCQ2QTCzvV{8WmA!`07P2?Jp=Ab^8~EM8
zW&^*`6%A}Ou*twm1FH<ICy(lGWtnEJrqzJFsD||{+8TVzT1(!Z*;>aK9~-*&!oR@)
zneFl=wJ8!D)I6}Wu0^5l6=92kt<)O^4v-fa*iPeOU^g}Pp0&fkP6JdR@u@HTJB|rN
z_88bp^`XCg$vIaAD3yZl3zEUAD-8}B_`|?q14j(J9uex{FOj;)JY?W_Gb>;1hDQzb
z$euv@F>21R5M?}WfDBGB5;<w$6!XEC{S-Y*o%!7S+rSkA=M4NwJuoRiPc5D|aDhhC
zz$F6(PnaFLm+JJ)yll`-i7@@+^B4KsGn4k-*<pmQ8n|Y_=R>Ry*U5nmyrPO3xM|>)
zfv40u11Dyt-KGVTENdlYZlApOW3YSQz+Lj&zJYrN?lXD7NXkP4k0SiBfhWvq2Odg#
zPL(;9hsa9<FQ|HDk|<PrUTRaBBof~kcuOm}fheC{a{3Fd){T<harXC&9}IkC@(&}~
z{7at#%s)qzJK3aY&K~2V@ALL0$V~LXJ>0&K<ip*WX~Z3DBQrXEa4}IBH6K(al+o>j
zC&G)jPu7`xBZ|R<c7RFeL!JGBOg?1xp>f~j^gitFoSMOhj7*j$1SuMG*v#U?;wQy(
z_>k2Hic-kNB)boE1QJDQGqjvOyg3o5ILFNGLmnUU`jF2D%ZGpu=g%hkD_i+}fDZ+H
zcr+(ah)7D1NI@Sa^^Yd<l@En|D8f1=#W67%jU+!Qejg^Uvq{j0kPj2GrPM!Qh1q}}
zoh{)*ybncvDCV<wn<um4K6LWMf8hyiMmxQi^x4nomSRj~q^B-PN%A3?Y7&ddu}JYD
z)rWIF{OLnkAIkY~)Q8;n&GJ4}@L{_TJAA0<!`D9i;KPqTRPy2Wh1PX^sOv*zA67lK
zC{$rmm9ZLQb;cS#)MQeN@f*h4jFjtmpU}xOfqFhPqT%qNz7G_o(11xpANK9`Q?z%M
zU=trY_|VY@;!PQw`Ow^l7CyA(Xj?`~ZN;Ru4{ah!8k3VZ>bGOkp7GmAYTX<eDA#x7
zg!LpMomlVe!}mUPVcwImYs9`A`BH@U@Zq}~cJ(Oq@}Wobc$@p|Z<0fO7)HG}HeVm|
znYDqwjQxD*&tw22=>vTj#C$O0kcfWlmV3AlBdDW%D7Z9f(rW7`A7=S5+lTcYYorgO
zd>HLRQuCxS<QqOr^x<cYk}{UbI3LDGl*uFHNfADc{EGP$#;Flq9U)WR=|0S0WoATg
z&iWjVF7#n8lX;Bu85c07V>2q@7atbU^zmT{>&qE`Wn9X*jFBuekC1<3zJhUOL~k%c
zUd?<BIflzx8`0NM+kM!;(T$8-7&rOwd&Fk54<+B#r@|?0^<i5?r|RwWVV4gtatHqK
zp?#I4-98*(vd4$LO!oP(p9vj%M+UCeiG&mm`mm{#iwNaC#3dZ|;Rq8_XtvU1ImT1w
zIO7TOUM8fUVshGtGd|EQM+#?|lzw8J_u+yMC1O!B78iZEL`z>RJh8a!!(TqUrsc(l
zzkRquE1?hfe7NevH6L#HaFg0g`&^w5x9jh`PAkt;`+m+Xnw37>@qtd^Ot&(b6bf|o
zUQ)<Tz3;;VAD&a4eRxPN*D2qz0hyk0IgfmJ%!JIIFnQ_&owm7TdWcQ{v<vZJ2=5s4
z%7>?y?YlsPRPtN;^6x`bETUuap1%D1@Q)Aw(tMm8qRM>aqNs$&a_Ex}pUHAo+J7vP
z!Iwe^sj4xt5Mm+6!WoNu=kkcLkYeG8wg2<YI4g~8=+H(w^D%B#nkyDctlf4s);>J3
zBR7p~e9i0=617<9vB(#T{IPU85{y`6jzyMO_+k+oi}bO`z<JZfqU_UbR1-S4k-9Ep
zET|u->oUdK=N>Mf9HOStiI!Poku4UvV*ejg-vK2>@qNvbcFD+ePw1ZMNpL02?##|C
zu)x9wqU0b+au`HF5JYm2AXx#)IY<r?1SJQNBsq!#5+n#HAP6eyfBW&9?|kRfx#!lc
zSJhRo!i28wg4Y6<1%?Glr;53ygo_8w`tzVn+HW}<;O#|qb5WlKehcc%iL#jtY!@te
z+k%h<$rco6;T8leNVK4&1*I$~Ek*H0B)zdP$t;i!;iXAfy(9~Q7Vz9giY&kVoM_mB
zhy`UWC?^$8v7n3vJaqC+79u&jiG)e17Q8vGv7!ZO7QAmk7Yiy`P}zcaEofpvx&;{)
z)Mkab{#%e`L3Imi&@&cPwV;|@;*Ilp^<K4-8Q9pG;{SInsKs&$rt(^Esz>D2>snCH
zf`%4Qug{W)Bs36Lj}dRYscIt&8e1@;hdDl(i*u@}1<fpIV?kTV*qlAft{3NUc(=5m
zl?6OpwY4a(zBC=hKX2<NgjdIh+gZ@wf{qq+vY-PUvdYI)UU$KqC<jl}f+fcicAm-6
zS-im{)`1uOz=Ez8d}_gP3%Xg*-GaUr^t0eY3wl`akp;b^nREp`+|vRcXUU9LjwW!*
z^tON{d@Pk=fqg9aL^uzVWwgHq11uP1!C(tG1?aI{`+Nh%VA0v|5FtY?7-j)0Py6Cg
zb2iakBqJ;sX~6^wCR#Acg3l}%Yr#0lLJy3l6NIxPM&u0h7-b#=%rIW+!$Ky7!k=64
zg$0u=n9L6C5dWrA@`}L}>DftFv&}kaj;LuCOt;{n1&=J4VZlrb_FAydf>{>KwqPa4
zl?8Jwm}|i@nTGQ$m~X)X3l>`NY)U+Rdp$1lV2HlRg2fhmB{t9N7A^Tpexq5gB^>Id
z(rn@KG+W9soGn7K+`@C0B3tG}S6J};_hj<bbSztB!FLv{wP2kEn=JUog0C%DZ@~r&
zHqwoAiZXA${t3hr&2xQOD(wwn37ahlS2PcC-ol}qBf@a|X!2I6$!@`I7Hqd*hXp$=
z*d^h;SK%qI%q%~=3P(4jlT^tT*(3F-aVh`z7VNj+yag95_`!k$7W`<zQ40=Qa7YU5
z`*Xs|QfY@dp%Qa7>5z6r#9&;6jXh?;aSKjcaK?fYqMx+j-hk}P!mBWx60v5*@L3_}
z*1OJej8!(6L{9w4f{Pa1wBQ!ke+z!G;EDymigBwPrUNfoa9N^9WNcHpYQZ%Nu8T;|
z->~2}dTh42H|EspPDF+_Cz5Y-0TjR8x8RNizl;4{R!>O3*QP^8scndVu(L#bxZd?Z
z$UaH^i_?dzmV#0Wo^Une3FH=JQ}DM1PdOeq0e2@e{L4=P;kP>FVDvva)`Axnyp)Og
z>P^z`$=nrlnG4;V==@#DaSF04P!(7e<WP`PK>-B?735NoTR|QLc@^F;GEWbWSCF9K
z?WAzuykTw>;Thuj6y#UT9U8xMGB<3jycu5TOWxX|MMlnWAq8(KD59XSf`z?Ps5Hzn
zn`u#?DB#)9<ezSe9LO1N&^yJZz^=frz_K;qP@pN`v8P@Ix&o&HmjXk9_dq0dQ-t?`
z4pvHWE4a2W<YDt$XT6m-c}<QsIWi(aBXz;BfKS1+(qZkJNKpmF6o3_0P+UO?1%>8D
zxiy7rDYp;(bI;tNapi0}XK`r-0R^2EysscpL6U+h3aTmyDhRRd3eprLD+ntnqo6D+
zqeUWY!oBzu;g52LS*uF7!sQgCDk!g@g2H1d!fmI7Utciy1+nd19Cif4+(uGKL1hIQ
ziuqt5JBa&vc$7)H0(QrT!EmO6ECuxBwU_16^O(8lkZKBAD0ojnbp<sPJROx@Q$aHY
z%@w?(pq7H#3jV7XtS?AXM?u{fuO}q9A*q3oh6)-9;i^c>#=_rK&_oE8rb76D4|nW5
zd!5Sa@!nrc1+5fxP|#69YXxl-v{TTYJ)0Tk9k<;_lG`d+(mS0;z*l*lO6Rc7MdwC)
z2hutzh_VwOhIxJs#k9Fm@-7NKP|#OFKLvXpgu5!}p`fRjbyLt?!G{Xp036|o-W;EF
z+D8g{Dd?kMZKagn3O;5HGtGT9JQRN2rpV$vVGh3q+y%tp8jaAVzk&e@MkpAmV4#9=
zOCv)#oD>XFFqp&jY=pyO_|Oo?>M#YLDj3dQE1@5JS&o~6O6Ls+N2ItfnD-e+DfmqK
zcdUZZ3dSh-JuCa-NdX=o&o)j8gj?q|htTT%IVLEW$eCh8UK>7F@C7H76*;V!q+l}p
zOTjZ<=(FGy1q(PA6nv>*Do3e;>5BRE(;Nje6wFjGTcT8EDcCYHNWwtEB$By;^91L|
zESa=O!D0oMIE2^>3cgaXpZ?_gpB0|*fqe@2wzuU9RwyV}H1w^4l?qmI_$l~W!D<ew
z9FaBjt%75vLRUtmb3<B-*QpE{@rmmdY*4U?m9N*DI`7SG<a~5S7+Sj`jpjzbVKwO0
z<KZoWB((faF~1ycRq%3WU>h4UH_*CYU^_=nzrYR!J6V&-rm{=HZV~qgQrRoybwc9z
zTsN+p&)Bvx9}U9+1qT%zQgBkiDFufW9ARx099QroCmI`DC*!w8iR)`dy7x-oSS+Pn
zsmR|oGx*}=E+r!;ICGDu7atxzt>BD;pA=kFKuac_Rd9|g!|?EmrQ!1mwtW?5xS-&>
zFVdBzVTPaCm34!^&<V*AMqg}AXLNdv;JsH#R}}oJ;HqLi3I3acn_P~BUl+U~$fQsA
z1a2v~t>6y@f3nAm2k&qcDY(mJq<%)d2|>Ph`X2pIB>g@YpGN^kAB_s<8Ik@#!9xX)
z6#S)t|Ek%mq(1&PsGUi8%!$DNySVNNS>{e=7XJChq7t^I|D)hvjxH5bRs5&mxq@mc
zs;hXxzTnEHB1y$71+Tf-s&J^trlP?go#Is_sEAXMT}2KRIaTCRky|x8@x!@M2JV!5
z*eUWV(H!ku5b~(VtD=Ysi;8?I@~bGIqM!<Hs%&;QnKli^M#mLMDWsyXinml0|2Exj
zX+Ez;%3CMHn?B6Es8>`}s4A=~Y$|>}ALgD?X1r87?B18T>|r_XFg(8^qN&hT6jf17
z1*1+Ch6=X|7q56WQg(cxXf)lU!mGlk!q2NOO62BDKE%q^fJ-`eY4Rg7C0iy`yse_7
zic%_Gk4Px4VnHxmLN#~daW(FAGtAALrBwt}>=>Fb-<DwMoyBc?3^WL;2&t&3B27iI
zim-}Ql`r}>m*t3x6cuH}OM!3W%c|IYHU~dh%BfJ2%#D$B8dn&u{N+_tkX(+dotU@f
zwQwbtQ$C!jqOy>56&Wfx^|%?8%NjpQn3|=cii)Z#SO_oIDo2<GHB{78(N#q^74N91
zrJ}ux4k~J^sH38pismZns;H-;AseWoKKqx2=L~bpB6rntrw2DiUK^a=SjD?4ny6^1
znx7_bKB`9EP5$_+%rSGL<<6R$CtJ{^D%z-MtD>cfRw`PnI6a`~W@$eC%=MX^4-0dT
zZadZd%=Mj((DVG59^c8;QN><|?R^!URB&mHs^~0z#8lokqS8f0VvUp!#DVPbcW;Gx
zJYshhpQ;$n>ScyM6zn0`Q^iLrda39wQKk-1@v-nef}h0nzC!w`=pR#9_(0)<1P2Qa
ziKPxzF)YUY<-;RXj8rjJ#W)qCRB%h@XnHt4{24oOCAW5)yPf&bFh<2!+r!*6J6^>E
z6<?^BBxVy;d~P<`#{H|DGIT7b!(`R`Zbpwyk;Zmi8Q~Zh`%Y+@is>r$srX*S3>7m~
zEK{*u#Vi%GRqzWHf0oWsF;_*;wUMt>%;V(km9<dCA{FyFj9F}4%9wlMR_h|0_`7>v
z;$pU?QpytX^NdXq?y)J=J8P*F#UaE3S8zC~;K%w-5m%{Lt74t-)q-mTS?8}+9y=1=
zsA7|f^(r=S`eZ9VN0tJ93JiG={)W}wWbOxM1vabLLJuqoek=H$;8wwHg4+dYu!GCd
zhzQ9p&KDJXRBW6ZW!S4Cer@EFX$JY>xzYV9eo%2+#T^v~IDS<8q~fBALn;odIK^?O
z;)se59+o?*;+TpbRi331Zn561&vA~}DdEpAgimmR+8Sv1Abe5<dyUG|+u<`R&Z@XT
zmxjtyImfj{MYRzrwJwCS64So#l*JFe0>h(h+Rt=_ir-WoR}{X)A#pGMR~1)PT;^1z
zc(KH(;VJw+Q}_2y{Hk`16I{g&nXTN=e!D?N>wy_p=SEqjn{ut|-vw@Q9sVxx_NGq1
ztGKJ;Z%#dxZyvyXj-Ppnk2%=NrT?Mgfy(<|_>=ybpP05Fk@!gXUmPCCi&CN4;M5@X
zCn`qo)tQ&dGZp`^d=)QQ@|mLla{ZTLSJz0O!E<(yH-m)uipwBZdn=;x?Wt@yUNryr
zfoxW=%>LQSvnZCyPu`qXyk|vAD{@(p+lqKA60E3XMP)1USdrHX!wR<*`K-uqMfZw9
z-HHNM6tu!(g<{2rO;ZY4@s<^Zo&*b9(eHZ1Q!Bi?ex!&Mf6t9F3~mupt*~05S+Qzb
zz-Beyp225w9ah+_m_0jCY))qJ*AX6>ab#JLf7DO#2c1^%r7jFED-T&t;nq-(6<#Zf
zTT#M_BBhfL3`kkpHQi^0--@DE6q7Px#faCDS?9tm|83!na<6hpsaq*4N?VcAJ-yS$
z%zzbTu7}E6F|=7Qk(Hkp-LWE=WJS=5_rDJ@gsfOmF_<jTuoaP*o+6}-;PJ=7a#8{d
zNwuQ9@Ct%#NJSxOR&cK`4brX1u%fON^;lIavaF~kb?#%NRk31Y)zHmr5zD^xs&x3_
zAW3yAYFJUzig&E2ZAF#C!Isw}wIqvge|GwW(Te@D>R6Fpq9RFsdQ4KATCwL^sG${&
zc|}V~BN6Ek=Q~B&FYihZHWBgnpCZky2>DZ*OSDDIvT^tHR#vpOVvQARt!QIKTPr$P
z(UCs6Z9Y@n&dRe|g6)}f#{AmGlf@YA#9?MdXIlOc_<UO6eJi?Hd2A~NSn+`sU9ISC
z#m823V+A;7tmr|{JWDT@D`D<Y|JVxY3_V$_6}?11k*CtPp^W+q6B)c2<(J&e)5nTW
ztmtdS8_RxH+{l^0z!HisOk`05tr%oQ)7crz*wL0C584=P#Sr#_6~nBUW5rx6KDA=F
z6<_i~E0abDj<aIC6(fa@5@gb6LPiUY5gcp9;iXATnjq1Mf{b4O#yrvEb1Uy7n`KTC
zoE%G?Vg(;xqRuc?#A$-l1!q_>Q^+hq+RV0MbiWV@pR}51MV;d1zp`R}EOmj9g;p#Q
zvRH6QER{86#-)OMb<A>h76<vf=t_29q4KLZ9_B?qoEKd!F8X|4l#W`*3N#OXZN+*{
z+vSPeS-Qc>P0_9`R(#7b$=O{YZId9$H$pZG_Pi4Q&Wf#8{A<O3R&29!3jvN=am<Px
z%*)q!va_BhSJtxcv|^Vi6nArE3f~)3_F3`0@cl6*M@9lO9+2z@tvDp)u;3BF9|dVs
z^~b<*D^6H(*NS^qoQ#!l-HKCI{P`=td*F<SX9X`?an6eK!Y^3ybIkrHD=x<Pk<^4=
zV*C<ULVtEvo8gKTzlwfU@LJ4fguLPQhD3j};$}?0CFHi?9V_?Am_A|1(LV0JaK0q%
zr^0y(KTH0DRTbrd6%Va=B>ZnKdUC48UsgO8<%u9msNTZdZuHcOXI!7x1pbNXM(6nF
zR=ltxyA3&PcxmNp!;#Gf9?{DqN8jLUuKcgeC_|hLJhzl5fnI)9E~gC%V?*&a<gy{R
z4ekC69GYVWeteTB*ifTTrcu02J{$7eu-JwrHWaX-pbgDzXl_Fx8w%TC*x<I|EgL44
z4LSsi*kBQ&2&#flIvF&u3b)x{7eeK6z93PvK^Mg-=n|Z`De2t9B##YV8&Yj3Z-dVU
zza*vDP}GKEHuF?0W`_;;pOp+r5~FY1P~65XA1EnG>G)C<8A`p03I=RQ6p|#!)SwMr
zN5sFeOtv8$(<3(Y5WP%HDJ!HLJ$W`j`w9}xvZ0C%6=ODOLMjPXwsD(^>7R^PY9>AZ
zvRM4w#HymywBa2astK<ySi^>~<;-dmYuQlShDJ6twxNy<MM^~K+E9-k;OciZPrZSe
z^=)WiLqi)jXO!nTn8Z>U<yXv$9$cL9t_@TQt|{8Y21c2sDf14@q{x-Fg<PwP4IkL>
zo((N+XeA1-8?~Xe@HT>FrYE)K2#KY(7t+CojzT&KX1y%Nj0~M6`o0ZSmzmM7HgpqZ
zs$h2;dfV`^joW+BLzJF^y#zn9;rMU=>xD_PLw#)c#D>po7;Q6OX)-ila$g(ziDiGm
zfr10r7aNjztwA;nwqg1c^SVPg3u=Ui3X%*H@~I8OZQx@^R7Qw0Qg9S2b3U2k7%7n1
zzhoD1$hA%*A7{gO(I>=GC-Pq);a|K_1Sbnld83pKvchY|2WvJ-nZ_!KIKzh7Hq5bM
zrbK7OEcYBPHrIxE5?y4&d>d{IHiy;%8`w0Gg)vLM&dXIMOyw&ZmU5KZ5wV+#%&N9&
z%WPO~!wMT#+VIeZM>edoVYLl=Y}m^Q`#QMBhAlRHYr|R_*4c1wd*o{yHrlYshV?dV
zuwlp1%!E#@8M@X@`-VfbQ)`~SwAqFQ51YTyoyp}HzLTV#Hf*(Fn~fW`O-qIyLYn7p
zUTt4SO2f2)aiLu{5O>>fvQj!<w6)KM?|EGt&fBoxh97J=YQr%b4zPw_wL8py5pq!Q
zkPT@+WKd`Lkwdgmy#24>lB>b)ZL@~<Ykiz$+Hi_Rtq7hFWCc#!aK?tSQjKx7(x@!?
zC`5dcoF4x&<AUf{Z1~lNpKQ2j!_S;h^-QzNHvD44B^y}DrgPHMUI$w@Huc{crOnVY
zuG;XM4L3PM_hnqO;W`)0Ss5((2A9N-LS-`2Z`p9$hI?FvY?#qF&006@4jb4gEnn}*
z?>5}Ep-h$3kw-Hb{lkVoIdhZJAK36}NapL;6=x@wXC3IDY44=|Wy50|tajM!cw)of
zypSEa?WkKV?Wqm_+3?(E@@F>uW5d7FoHEvo5>3(vHOzX!#ovZ(cEs87%7#B)Wc;}^
z^qMQJHG>VwY7-<fWVa)S9Xai0m$eR5;nfdc&0O`mVxO$?@f7Wd)=Mj5M;<%!+ELJs
zLU!b{qjbZZ`RyoRhx4Ub&Vc%%O<CnTHc2NhEJZEImim?*)Th-CkyE$Wp-7S{xTCh|
z&u{y+w%g&b!)J%z4$Tf-QeAe?U`3w@^E&OQ-!ScZsJvl^TT(rCc<rd@sKOH7;KrKa
zqIMLsBgu}S9kAnVJ4&&hb`-axgdHXAC|WCZ`@Cr3Kh2>_4>!&p?q4T0AO%uM6v9a{
z^=jtk8fnF}<a!zD9NQtbF}ZxQ;PV+NJccjDj<R-?vxB^h;JZ7MQ|%~kN0uE`?5M!H
z*^yyKrXBZpB&CsLPwX}(z<146vZJycBn;_7e!Q0a<Mbfk>v;Irq!YJ7Rqc4OJc%bc
zR<ncW@sU@z<CZO}h8;ESIQ%5=j$mWKT7tFhs3U}_b?vApyuM(AnBGuGBRd}cUXo@E
z?~2mIj;2DI2{spOA^4skEn5m{#X)k{%-hzEc6JPQVu%y%?dV{~UOV>L(b0}h>~T8=
z%K8(v<3l@o2=8pi`*w7(;{%Cyw_{?H>^&AGb+x0L9ZSCrkPpotvR4l_zZ~po$47R2
zB9?`6ntPrZdfCxil#d0e^x>s>p4}ufwXYrhVtRielRt?Y#7f#R-HsV{46$RV9V6`+
zWe2xr4YT7@G28fiNk)eY=b!B(?B-wYPp@|R%#P7^d~U}Vk`$Z~H^z>!cJx|c)@Pg@
z<L#IrN%z(NeKVYB$MO|s>Lk%grg98?l7F%tQ#h)vX403E#B=JW2|4*n&QJL`Fq3)h
zSYhX$YIEtHZO0rw|0R5(9gFOkC!9(1?N}guMv-(z7u&If8CQmv(P<0AUvVB?G535f
zWmQ+1Z>?F_Cu8#c>_bPSth8g59b1^!j@5QFzs^Hmut|zqBe>R%b$0x=H}bV0$$B9h
z1dkUtUzEKzEf?MO4ZUQ?6`Q$VqL?%BJITJC6V{Hcc5LG;xM1FqX9>ielDbE5mmptj
zvs=iCiACw^Ud!XYw`0E@e`xqq!w+^G;LO!fTEjs*4zcYH%y;0h9Y;9M9jNQTk9Hij
z<0Y3hJC50L+>T3jT;|nFCZDk5f*n8EaZ)b9jjyNdIBmzlI>9rdoVDYekgl&xN1Yem
z=)<^+cKj^-#f0n^=S6?qZhG$*QMNt^T(RR<&Sh3ol&f}J7jli)9hfb2D8R>5X@5h+
z-|V<4<d)!VL8jgj^1B^(?YJjArAYQyIn06aryURM_{)xz6G=H<n-ybtNLSnnJhGb`
z^LT(SmB;)Pkc@xZ@l?n&JDv++>OVsM75q=I?ltq-mKQPQwH?_U2s#jQAkKlMtKxkQ
z_#MdZKn@2+ObX<5n8VNRKrRPzI}q<cf+$4<^EgmY2yOBT$tRfKfdVmo`-!+hF<w~6
zTY`G)pe3d&LR1H=LToX;M}-831DZs2L8k+CQq1|~lBf~0bUWaQajyd-ZKe;atqT_w
zv7`gV9B4bz%m@eG7O}VkRsYUbLimG|raeO`iIx@&IFKkLNpPsFJjo7(9mo=e_7Mlt
z9H=DG6bH%(DJxhmW|JzUyaN@4RE+84idb2~@%PM2S9Ty>^bEmF!Ew+3*Y8zWRjGe9
z2M%0Gt}a+Zu%;lzcZAe(pmt1I(cW6mf%*=7>A+M68aU9<fgTR@bfEc$U?T^bIMCFA
z#t!pUpLKJG-gRKe@xar*rXQL~1=`S32$dENyeGV6OljpnYvCu0o3EW|>%fC2+1feK
z-hmFHcZpec6w*mB>Of~9@5fS`zc8EmfdgGd>E=L-Tfy$aKaAO2dz|ef2ex&K>*qj!
z2YSWy-VS^m<9&pD;y~Y+vNE^n+W{QO91`r!;c){Uc#)AZNDKxG4sl?pkYR$K3Jw=!
z-h8FZ5=KdMoZx2;jE<#_5i-_+udbO*7%$NY4or05bK#F=-TNYDKgof~!l%TPE(fxI
zv_CM-ff)|Wbbx%iAeV0PS;A+t*Sea~IS%|gFG@1kfxVZKNESG-(1Du{+;U)%1B)Hl
z>A)@rmas|=Y;xcmPHG31Iq<byak&F499ZqZ8rFn=Q#-KA!IOo<IRh!PPGsaf+LD|{
zV6PS9b(~Y3(w?_4&+i!3F|yu)4XnWV92>dh%8sc;>jOKNMmBTWK273npdAiuVMYhO
zb8zbdwmGofVcx3Xy?EXwXCb_i!Fx}Z`BCzn`^?v#>~>&}1E(A~%@#SZ&w<iAIvsW3
zdk6M&g{N3M{RfU`2M#)L$boVb(zqdkcfojz&3x5!t}t(-u(Tum2ylS+?8uokU}@4Z
z2aZc=G&|wINe6g?uT`xKZu#JLh4Jx`GY*`0;DQ5Z9iR=Ba}IvuMEG`>pB%X8z-0%n
zIPkLrzc_G-p4^pOH9k^&esqc!;hh5R61<rs{Hp_39k?d$;{FGF?ua{(#(i;Plfu^>
zxZwcFZ=BlUaFMVn-ge*)7g7!J8h&@+F1a)E!eQQpyvOOonmBNu)ez-RuE~9a=Vk|H
zE{{wb5q{*rUk*HT;2#GbJMhGTza4n$0NY!6ev~^F*mk;iNc%MIk>gF+^RvVMI`E$Z
z&p7~QhWWg9*VPej)!T6(eClZOOLmO|uN}yyA*Y6S=SSl-WY>^G1NTz$wg_+GwTPHE
zxq=N^@TO`m4czw0x2$mYU4n)@8ff6xkXJ)K4K@vS4f!<`&`?B!MMFUig)|h_@Rnvi
zX3h%mE(|xcbekV#IRiJhdtNv-cqzZ4LDgW@K!0+0Y`oKnTP3-zZo$!jLxZNlrE!}L
z=v7^VQ!{T#=Xutg_u~c($~-tV?AGAX;ML$W%_6)P%>4-*a&cQC+zdvA&MC^OYJi5C
zr-K|YB{aOPp|}R#VjeL+`d+hiI=`fbdHZveJ==*}J^~sNHSE-|OGA=|poaDuI%o)K
zNY>CuLt{E>N-(S;Q$v=9h=vpmWkhVaJWx(ZS;1|OlTtNMWGJtpg7AuhX@ZpmD+|&l
zT|-8UfBQ68h1H&z#!y#7RpHe%RM$|0ZP8Fm!<zZgIrF1LhIeAo+Cr$*5prODw4UUx
zFW5li(La#_Wm+|ik$366z2*5Wx4DLXzXzLWXey+cV8*5Z#TFXg)6h~wD-CTlwB-OE
z65m?GN5##L)WuDL93fZB+IgaMI}OCv(~|0+OX{ehlZMF}rf7(2=uAg-3{KGSzJ@Lu
zx@zdAVTdR713~|lcm_thYxqz@PZlnE500pA<|51_zB#{_W_}?tqZ)eiS{nLjeE)g4
zpN9TIKGD!u!+(M7Lju{UGms3>Fi=tl2@Yn-|6eLg8>(TLhEFvN*DylE7!6}JjMOkn
z!)F>sbMSXbVwN|>t{odBVR%#iI4N_y*t`+#iP<MgV?P)CLU0lXz_@gJ;K-rCmo(O}
zg>BI=O~Z5zOF1Al%+N4X!)y(6H2h_Y^IeIbrNMN|eQCZYb*@Cs=HCy@(=cDd0?r)`
zi!^*C)nFwTYgi)uP22k?X8(VcUoI|Pr{QaH;|jr*8deEeEy%*x2wBT1u=;;*KwYn4
zgXHBK`PdN~W0spVd=ulFH82aaA8s7{PQx}0>(}u$-QleosE{zaUBn%NyY%wAHSE!F
zLBmfP_G;Lt;e>{h8ot+XZfRgYzx->sF)y*pw!i@{6q`ebH5}ou01bNCw8YcNhghqw
z*7ci%KXOE!PCmvO9!onamNforL%!p5Y3ER@BI$w4X^o49_-NiK4W~7%Yac$N;k;(P
z1M{pz&k6FWd?xW&aOxK|{H)=shHDz?mI~*%9r%S~>~tVc|G*_Kfc*oPHC)l~tMG6C
zNuqMPYHF{N;p<%6HS-nXH#GdlVxK18)NqT6@Cq$5sNB)`=Tf*pfyn8e5k~K_zvh~+
z-@GT}zJ}CUX7quEha5IeRCMAIhXk9WW2TPB8lGsVqob~lzcoDNGN{9=<C%tkSRWmE
zb^Oa&pdn62b{)?(T%I2-8417A@Iu2&=_Y=DrJW7;pBjG6i|Sx1SN`g+!$!xn96EC9
z$fYB<jw;!ZlA}QXgz%D)p6iE_<8^Z@b%Ks;Nhy35fPDP4a6TRRby#)SbQI80P{&(3
zis<-dM!1lU!aC~gPQHAz)9lmXXY->qYJ@F16deO+gjF4>)5F~1zvxVuA6qP~PfChi
zheL;p<t#9_j%zw}9ZntRyJc{6(dNZ0bI&=qY8yJ-I@S&gR_`C-B}#<DJ{^7?Wp$L(
zQB+4U9RVGQQWSI)XXS;zt(zZnEUl!DQaVaAT*%J?S<ZuysmBe93_cl7(!tgx>j>)z
z>ImuP{`2>rL}*Dpq9a8|86B1XO6PmwnDppegijDKP)XHMUPl%ksH1|8ijp@&N1BdG
z%%UTm^@(OO3qS8ZmnR*RgXYdyKJJmJn~xhXm7j)HbySnQ?}%7kM-3e{-xw^2W-N&I
z%q;I76y*aHwRF^GeSYo8PuK(JBA1E;>*=UZ?*&pm)zLslLmgdoe4wL|j>bA#>1eIv
zT^&tya4@vc(Nsq>9nB?5Kl7=UWwXPs8fJ_59p*h9Ep<$d4`1yUDUm;eS8SuBt&Wa5
zI_YSqqrHv}y7|Px)J_q$;>3!q$qC^P)Ch};>gcTFeI5Ja!<Ryt2f|^7XW{Um+O4Q`
z)zM8yUmg8)bl35rj*oQo65}2^dUC-3!INRbFAtdh;g{9kIzHCXN5>~RmYr+HuKf3U
zxX#s1yw<Ck;Ze!vu<Wm60DD=-U>UL74~GZpcr~t7uKaEI4Q&X^42Fm57{)<fBV2J>
z^j_|8Ge;`x{7<p)a2+FbjMOno$7CH-bbO{`w2lcnCh8cYW2}yG92+{S9tsz}VGdoE
z#z3F2*Vy*Yb$p>?k`6wTvU^;V#kQUu=GUGxGtH+|SiLVfM@C1d(Vs$Ce?}RmOLV~}
z!C5+H>$sugHyv|y%++yR#|a(tbj;VWPRG|e7O+0k!(ZuGs$-#!MLHJiSVH?&DXc^1
z=YiG>qBDajtRBsl=~$^_m5${)R&Y=yrqC6=7ewj3)f`})M;soNQ_SzK)sy)(Z-ONG
z&xF_O*q~!CyF<rD9h-D))v=BBtQ+}8$7U`CXT!S_!qrZNNw(<tRuuB@xDd?=PwpSt
z&ThJreTR;nI(|MA-u!jDU0kfrhKt-bv+QP1oeeX(hqG)@gyef2`*j@A@uQ9(bR1y2
zriBj)9^?c+V~)UrXEK|d4Ih?r7-g=b964vgD^7)v31ODz;S|>Dq>fWMu5ozJNk6UQ
z3=0g0FY7p~<D9hO7p^TjF6j74$3-11ZNu#B7jK83_l<Cc+;t}WGbd59SyduieTma5
z!CWP-==hcMv03nH40oMNV)QzlAm38ZG4D+sw{&=%@H%l@#~mH{oXGFQ?>g>sW!CXR
z$2}eQbsT$;@eez3LG%yde{+uOc%Wm)g6Ko~Z9(+ug6JcOQu#~BV;xUo3bQ|@H+1mL
zIh&&`>b%#2%D+++$$wnZA7+re<SgLY?&MDo6j>O3ts~Bf>`r8pC~YX_a3ZG@ofbxG
zEsT2I!N5ZE(&X_XvW9t__&Yfx!3l~ad7T)#Fv_rSVYGk~1)XS6Ce`IcAtwquVRype
z#9L1D#zbI$9#u#YCoDn~G2XQ>%2caxo8XtlLM%iRPT~}z3nuK(Q@L#mip*j-;dYug
zWytqmP2TlGlFtb^@wO9wCyF{z%!$GAVTLku!Xs)0Ns2pB!ikU*$xf7XqLkBI3X+^C
z?L@$dr=La>otS$g%vFMcQU1`_(?1e)BAAroObA<cbP79BeMUINi84;}b0p#fKMJYL
zsN1Tn6EAlcEAPbjH^SwdNOgiD!#8zXt(YF>hOr$ti={d7z7t)XsN_UtC(@nB;H5`o
zbao=si7Y2tIPsnnRh+2mL_H_!J5h~SbmAR4+=&`a)O2#MU6^FmxBv-p@%@hD283!m
zQHNd?Jz+zT;v0hz2LcV8Xy`-}Cz?9ZNU}F};$8O3db5NzqXM+Nm@i0dCI&2|xtLL*
z4Y8#Yt>o(Dt(|D&L<c82vbKY>wRNH$|NN(mu9+pUzz0p!c+u$WKqn`nQXq?cQxr@4
zdSu|)XDO3kC-WU>A2{)$6Fq45IH{`>-Gp=(95CpA?@a6I#K%tbapEJ<Y1zw(-oi)a
zE6FIsCr<Q_rS=ulPw;ho;(!<#=;XoTiGu{0Whh4u9c!S5flr+n?u6!o?!pKsMmn*>
ziJeZ2a^f>5<~cFniP27sabl8_4}gP5By*0Bb(%AMoD<`nm_QF4&M~N$`9_zCqVFxA
z{<#yxFPu2PF#335bc*P61;2D+DksRIXs!Dh)0~(t;tau=g6}5A%@Q(OaE>4g|L^U%
zcixMiurP6fDBn1-*@=ZtEOKJ86HA;}Nmp~Ud>j5s43-Nnbz&Ju-Qd8EBZ2)dlUH!4
zEHQscS@tBX7K1f{snrv%H7mbX_&UL_Iq96q>z&vj(Tz@Q5;DJox#8q}&HQz?h0VVc
ztiK@mog{th#8=(2m&uB3<pBF8X`6`KIUVd7r3;$B8Fx9c+ll|2c<#g=x`_U9;(`<V
zIB}df<iueo_B-)|WIX7E^SSw0{ed@ye;oKuGfxEm?4N`qPW<RZ(%Qg}rQ_}{HtTa#
zY>ve&k8=V(3!ZS|q>xjBrv=XlGWD#GbAs2an13k!<ivF+Zb%^)In<{He|F**A(sR%
z3sS!#<X6F~g4dkjA5ctUIlnn^M+&(qcq>+`+ticH;}U*%;;xAIocKq`{g}-kPW&nS
zffEmfJmRV=<S)U;f=>ilRNj@wQ{m5I%E^J*{uR#0F=+6DOB3hsAK8ky@JjSJ7qYv+
z?NYC~{=2ZlllD*fbXw+cnWH+l3-K<zJQvLALM~A#{@gk8)S4^7g?ujLcOj4Hd0jYa
z1R0)<3i4I<1zafPLSYvQy1?k#lrT3WyyZgP-AUSz5IM!)rbI0+D3V<jv<q4VZGy?g
z%%SDrRg@rK0PA$Y<-(UPOm)F<!R<mD7uveualz|Cbr)*5;B&z*dCRy^)P-U$B)X8~
zLdiu@xDasR<jaaI^KBQ3iy3(dAteP%36^%j(%KwLvwn@Vi%Si<5ON_UW}ocB!}rb9
zugiqPE)XLw6d930!mSsczsgN~yJA@v%DFJ}-=tI*$_uF=SW)n*5=;|P$%V>7(gmxz
zkRgN_GlgUcR$(8-bQaFkRgEGwU3kZZ`Ytq(iq&#qSDX0CCjzxys3S^;a^bo{>cwha
zZguH~!kfgDMlLjVp>Ja7=={LDLRffH7n-@yTx_^dv=-7r@IAqnF0>LtC%kdgo!X&x
zF0^-Hv<qWg=-@&}7Y4g9#Dz{SL|y3NLQfYuyTF(HGjw&~ec@eP_`roFm(wVA?p2YP
zzffj37rMLfp%@f<lFrmApGQA(p_dDvu#zq?+S`SX#eh8Tqhftx#&62+=fVIN28!5U
z@KUx!CJl1&!I}Tnq4|ZRp)L$_;WKH=f@bEr{izGXx&F&s7#VBh@xNT7V*F;oG`eWZ
z*0`}Qj1%#57sk8r!<}psB|3pMTww1z&>SHQS#nqL3l}EEN|?<03!gmDykR=ch3PIF
zaN(c}GuX>6taf1yCyooVU0C75N*Ct1FxQ2}F7TfaW|=417rHRt#Sh=m0zs0A8RZAp
z4li<HtP;mRYG}E{g|A%rXIzkBsgPwZEEn=$$FdY_)=#LuKW&u@b+bYY4V%QRbzz+g
z`{WW|yRhDc?_AjG!ln1ivcL`O%0q#TlDf%-ChbDs2;VG7gDr1}3;SOeWAw?Iz&01&
zoQKZnb~;uJcE;>?xv*RK9>Kjaz5Jr+_b%KhY5t|ZpYDz6Dc-n4E*$1eH{dsL#DyQZ
zI<<{>3><agm<u)ob_2&<IKf$LKrwLAg;Orvap89tPP@=_QQ$V$irs<Xl|yG-IP1bW
z7tV`*P4I#XKMA=gcv<jg7k&}K?3Y})wmp;NiYULv^s98pq9}ES>#TfC|ILM)F@B3{
zSFOk!8`j~j3-`DP8)&BGWAwfY*$k8!9{9tBKV5jhrN)K-q_#|bB;;?wzXTt<@FbS{
zWJsQ;G5(BQ9OM7;E6v<6vp*N*h2TrUS23H{yik!;+QiA#S%J6qgmW0kX_)THWgx$h
z+=B6f34(b9^9s^3pJD#tMp7WA6f{sscwxb}VtNsSrz9uR@<Gwe<-?=Lss~lW{Lrxq
zwjLgK2=TrQ4PFz_gzJJ%L0Y<m7=msC%MawI$lx^)I9-hQB8y5=aRVg`6cY{ur545U
ztk|~=q{_RnN>VXU-arKdrI}I8$_XY4mK97A3>pXt;Z>3igoQ^0Qv}PzQioJ9r~gyU
z{0@+6z$>rp;JQ)KK$?L{hWXLZEnkpW*+8a&ECcBVGDP=g3-`*K$)qX<sv4*!Vg*YU
z6}~T>xWZzl)->>rfv??I??x>HcV7p8GH}sAZ3A@-)HP7gz%YKTHBjF`0|UJ&o(nWI
z(8xer1MLhnHt;S7o`L3^FL5QCuxsdznj!MRohp3OIVX7w$<@+8E6$_Zk@pPqjkqia
za}!$|Xd|hm#+Rh>U``^jy@3t}J}}T#k~$jbY~XzZoeV?`SicO>hI`R#H%jdCM;y!N
z0SaBj@<rZ2Hv`=b^fd61fe)o7Jq-NWfbTaj%YS&kMA>E~dl}e%%IB$ClzA5xG_Uxv
zWbb3(69at>^fNHfz#s$t4GiEIi!0gSqf+sA0)L+_&C}C9UKAZ{V2FXC2Aq#evXJ+a
z%qJACB$Q&9uqZm*zz75D=vV_I4U94{%fM^{pBWf!V1j{(a=9@E#&dSuEjiY}I8my$
z5Akt1)~8hCqSQY(@CD}r`_8~5wxw~=FAYpJFj<UgHbuy&j%BAA$Qv}>vS~$tI9>D`
zEz2{?%}6}^nBp7*a}6xxAU812z<dLX4J;AM1qK!xSY%+@r68L#tw%|orWc(QWv;Kp
zU@0eHMYDYF|6w3sVPK_!wX;jFF|dkPA5wa?M43d+p5@<DOkFG4S%>uoHW=7rV6TCV
z1~wVkYG50ExT^Fw2DTWuUo5a$yg}vu#=y4*zGE+JOyWh)wM^6Vg||y@?liDVx^D;9
zlN{xEmECk{hk{Fzf|XVU7LGRCyU)P)299w+8rW~(2d?l2el&2vz(E6t3>-G#`m_{}
z3|{;yqgmHdY%;xl>GzVubC%-eI53V%waMv<6CAV#&KfvpfZjO8(QDw0VZN`A85!=p
zRf=Kc#S)QGIn}Lo&KtNuS8u9T;*XB5TqXY-QR-&{zi<Y*(ZG#M1}+;Y;6_0=t{C{$
zz#Rj>8@OuVnt`{zjlae5#-aOd{0+l=5cSsK<iA{z--O>3yz*8m^`G>}ZH}mNDV+`^
z-!*X0KsGnx+_-Px4+GB({KH{y;DLe12A&vrXyB27zYHYZc3%A@z!FAX%v{(becj7)
zBvk(9K)smxRFJ8)%Cw^RuYvyzyfE<6z;j;xTk};R;|ga#*4}(^$1ADNYr*vF=1VOY
z)-8%=cO!=zdELn8M&_a9oNnZHBi@Zla}#s9%|`ujAbHa-`4fca5qx|wc}F|*9x>Zn
z+7-#~=Ka1%uJgtCcz7W<3cC?-Bhihw+$iFP%MHT~i)6IB;c!E7Lv_O{3JbBxwFWxP
zDzS}3%?;g+lq=0LYUC}I5OK0f&Ikj`ce~+nqqrL-B>NO+#OsF74Zj;j-TYn=Ddxts
z19J4n&=fwao-IBCH{N!m_Ry5*kz^v<SUNsZ(v7l*lS{c#+KqunOnU}4D#?wY8&%w>
z>PE<oWH-{?$dGG=-FPQwq>>vE*3Avx`rjBADI=t;8`W}0$_b~QDx|z%1ve_j^fWhk
zBc2A8-B@-cnHvm<nNoO`8@<Y<unsqNC3MLZnKaCKEO(@u8#Q@RH^{5IQR-6u8g86?
zFYWc=<XUWz8+F~NM}H=muDfwEzK#@iDNkhadGjS33@nph-Ws~`z8hWKXyis?H{Nx_
zc_Wj0OE;Rh(bSD*Zu2|dSFg%dcpYf@Sz2?6wh(;JjRXI<nA*yX)^4;BvArP0wr;d@
z<LRGC3<nlPsdR9oqoj6<*+hkOcBAvr01ZBHqpKUK*%Ft#(T$_7efo(p!NG2HcjH4^
zy3td_-fnzEp9p`0>kdR1XwUGm=zZMyL`Yx3eu7NxFJu6FHl_@6^8}ehCJk|8s2juF
z*tR%noErtorG4`{_^BJi-FUDxFhX#oAfuz0E5=8=F($^x3h|8%j(1}MKaPh7C%Spy
zj#<LzZhRqRk{h$!nC-@7&JIz&6r3(Nm7`P$vkZ7rjJteixG^)P3>lh0eU3yI2+nn5
zUMzJ!Tm7UM4Hy=RxX6vgvD78((`_LpEsZJ5guFK<w8D**^m*YNJAX)C<;H3^_Af|U
z<HkDa4)V1zvZqLHcF+cP!L<^X+_>z<MmILO@r@gs-R8l;-@CCzh<To`kZ;}iPRLfl
zZL!qtLUsu56yyi=?pW#`A$#4}C!|rgR2I0OT%rd!U)(q?{Gc0$gd7&6*%3E>jPawK
zBf^gho)A14OTF5`JkI!x8y7`6D|k-ue9Y#8ke>u;|Fe)^1W*3bp4qRs@hew`F9KCP
zxGDr5yzRj?;n&@`;l^)V%5Ep!61*wM=*8oq+iu)(<99dix{=3Y+T7#fF9z8?_`{7q
zg+FIc3He*_p&*SPx$&3q$1&vzXXS<nlb*(uXF~pQ<KLL_pO6EkOtTkmyp-sxSn6vx
zvPn&t8t1_{DJ_R6IR$gYQgaK57fcWg{1lg0NInnpdr-iGf*xod=pGajT@hr-g@wE&
zSi}QMOt1PZsK&U}1DgkSi8^99d1jE=oiQ7)2QJ}8OmPeG2wuJ#^a=3`78PXnVjleG
zO(rSsF;B`!^dQNDuDL@cJSZuolpvMT9$-Wy;6dikfwpDRgC2xD*!Xu+h6l+Wggrdq
z4;4L#c#z^jSr5v2;QS!Smz0+An6E1B*EDNifpDsDM$3D^$AL*0ep-{5#`;LojBib`
zvIprNkndlf#OPa_LS=`9GCjzWD^~HKboJ2ogwVa+K~|ue2h~01sOz{aK&&DBP-1c|
z58o_`nl158OVsh8t_MXb!BPqJJgD!%SEaGEG#Yr&(1Q)du(22#dC=H{f4unDi+4Td
z&#t{5?DL?B2TeU_=0S50rg|_<l3IAs)`ND!-}9iQkXC}s*xG|OF`n;Qw)P%$@L-q+
zpL)>IgH9fF_uxY@hzfq-L1!WFd(cJ5-=*R<y3D_GyGoR#n+HEXFn3h;@Svv$pLoz$
zl0FjbE!azNMh){H!jC=ZBhmE<75z5@{e%znV2}s>h0|t$kmCQ8BOfe$sNfI}ZY+vY
zJbK4Gsdl&rBRm-I!30Si>A`3rA6LpZ%7a|{gP(bj;WsbJFvf$ioGfCnWK4?fqkI%6
zdhodiJj8a22VY3igt6Hs3z;PN?(J-c*O>PXzLY4BzWrKDn9eca!FL{P6>+8qD?C`~
z!7LAEdoag?xgIR^V37y!&JN8JoB5nUgU!vE3nV&YSez1yEEc|0kV#9}`!U}9&#YxJ
zzFbJtTIPS<t2|ie!Pg$F7I96?W-Y5E?p-g+rkK8g3*Fq5jUIei*8GwCjR%`O*b+<q
z)`J0?0!Q=bD_Pp~(l!saOVS<>_%(Y6eIkz`?2Os(@?dw2@97oSGgs>2k<RZu*w3Ns
zMFTH>@ZbQi=tXfa4tj8i<JN<JJvi*a5f2`D@ML!2M-PsAaL$AC9vl;e;u+364^DV+
z(t~V^qo+Msb3BXsDG%Jkf+P&jYh|2`**ATfOyvSsU=RNE;3v^93jXZDFCJX-pw`vM
zO;Ik#a$WJ@SK(I$uL)k~pz`21R$y_awSMHywa7_siNS5bJA%J^a90RZ?+Llj73Qj0
z8HU@IL_W;>fJ+v|QvrsO#m&n9<-ubbi~ZjoDF0M^WB=5HXCfZUZ<_t*!E=sA4_=FS
z`$5tRAuk1|mMl-3Y+l59p?YEUn$FDb#alvhc#+eKT*9e8otvIJ#^Z$~c#%g)UN7<q
z$uC&givmIl3KkM%32WB2BkGHzMMSZ9Q80IkBK&Dq>%*%9HZSZF^$R+@aC+equ6dyg
zVF~}1Fsp4y)FbE?e10g&8zVli=|d_-MJXl-L1nzb>?OP?=|yEP(!D6<MQJZWUL=bF
zpAe@(KzO2Hl3>vLKi`JEh=@`_FvW{<UZi?a#*4C|4Bu3gC6w`oiRDG9Xip_?-6B-c
zi!?7PiAd#E{i1j7njM|tMWz=uyr}6#myaS@UQ~(Md@iL`^`e?6)nj_)zQK3cN3G1-
z*7KrPOs_4Zj$mEEiD~B8>-TR~LoXU}9!&}C^rA5re=lZwaqrha6EB*2G1QA;UNrNf
zxfgxB_{57AUcBeU$NBZnUbOV0l^5;2Xzw+*L$~&#jTdc&^A{hL;a|p=x9274AR<X8
zAsxNu?-WL(Ui2KEot*aXvzcCeAW2<g_Lr*YH0vhO?p}N-q=#Tn!H)!c3HBEJSTL-c
z6=2DIy<i~&z33-;e?cY<@N)Z#X*0-c{yrrc?8Oi-SU2+2#nDf_81BV1iH`7Mq!*LC
znC!(UQO0>O-iyz?812OvFMl5;H+h&bR*E7oYDBnooaIdL;&ZW|=*8`>p4v`R{6eZk
z5*3>%yzXK1=N`kC()_7{{7K8oO!s1j7u;yaw&We2eU=xqz2*n>94{7ovBZnHUd;1i
zzKGNp3R&RApr=9Wk8u|>LyI^WYllYV49?mc{K|`^UM%w><DmJl$#O4Nc(EgvcO|PD
z<Ey+_Eqsj^YlW;6R1@O9j@hgivO#d8;3mNVdxM+3@LmXP5&Ty0J1@3+vCWI4*@D|e
zp+Sp5p?SH3B&Rn8PrKrFd9mAzJznf(C07TpvX8vr`78&$=0ka`@b^;wetrsgalnf$
z_snkv3{{TD9rEI^7e~DK(TiW`VP43KV_ux~;+z-9Impih`v-#WZwZ|cep2w1Ad^lD
zIU`tlp;_j6FA6OQbZQ>oVs6R>FaC@Ke-gat#m_>h(5w6x@v;|Jq+;YddIo>>qO&cS
zwlWC=1J~GhUfl3vV!rTAFK!9>jf26GNaeN{cf9z6rFrqY7k4@JyzqY*OsSk)rf;ZO
zyD)L+g!ubhb!)YD_DXx;#Y4_tFaGxOUD^1{i^r02OwC}2gb<D2WW3Wo_>@Z%2hV(a
z`9Z-)TKL(yq)H`%bn<^*Joh4ZF~k?c3ol->+J1cJ$15*hdtvcI@gtiLaXy^!;j9nY
zeaPWMOCMVKkkf};KG=P5_{<TQ+lPEU<QE?ALxK-^d??l?o~I+_6_GZ-%nE(}I$HrB
z9%Y)J{sm)tAs-6+@Rmf2_%I|P`M)s%i$s-}jVi?IgH1?k`TyNP(|mCGV2G&u;1p8)
z8*@Cneeg)Mz7Jj@<$b8&gU<)Q4@Fr$A5wfM;{$wn+lMFLB?WybE~JDHC7Jp>LXn}A
zh>3!weV8>h5bz=OhMANk;(#i_yo-V%ACe^+_8}sK26IY;iK85$vOavgH>1JgXsVEM
zKGa<q7~>6hUmT@aku^LSe8-1cKBW0j$%o25r2CNRLzWMt%KYzJWrh#e&V<gL4DMfL
zj$Wm3aupv)s`^mPhn^LJ)g@X(u%=+sY#|zSj!)w$b+vtH-zBMzAW2;z^?Z0aGQcRE
z*1(5`J~Z;7u@CS1@csUzW<GGJ@Km)XKHQucY$`}n<!X9!A6ocOuT1F7+TeRaYP?8h
zw6zaySQ#Ha@}aGGzMBu-eQ3waNwk9xxetUkriVI8w38sO9u?A=)fUnvrhg!$s}KEa
z{IB0X6eWL&P!Aub)-k`SR;m%-%ZJ`RtnpzjJ?ujtA7;c#_{4`1K8*CCuMhoLj_88~
z2gGa!3Rx>dYcR*5M289v6Z}+=*Bb6a**LRDMu{@chw(x_6CCZsn3&~QA-zUtn;_)N
zm_E^m&tv=xA11~4WFb=oXOD@SDrB1AbU_xy>oUybIP_t*4|9B&D@iMSm?wm(OMI9w
zd_hcE=))r6iv^F3G0XYNhowF&6J>eKa^kYMtsUe3nrL2Sr4OrO`f4Hc&pIEz=Gc(v
zdchq&?DS!S@Qs4ZyUB-dd^n#yakD5}-snDjCuFM++hdm7*fr@{+#ac{H-EG25`7<g
zFg>(8X0u1gUcu90a~Qnosr^3uAmRbRgFYM*a@dEHLTGu!haZI>_2HP1;~d_%|L4gQ
z9RHT&KRSlit&ck;si!$yt>#XobF9A)|M>8)4;Os+$%j9Ec;LfDF}o@Fvk$-ca7j3`
z{N}@D;a3EIjp<i8bA?}zDK~_4=w|-hTk|B_Egx=+a!2qFAAXNn-W76B@V*b@7Ms6G
z8GbDm_mIn}4}bgc)Q7)f_D_5mej)xbEua3cjhT7lo=Ix!G;?n%!>K~4#Q#Lh@5gf=
zUeFIdyz(Kh-(1oeUi*;Ek2pX6+>!H*lHHHR#WVAs2;>l(oPxPx_PK?``;j0dPfTBu
zJuaW{+HK5^E8s^#KMINRmSAB&S`Ra?_~WgFBBJoFTqq^G>W9^jYJODr!{&$G51*tu
z{Lq9r{m4EvPWS)sDe|nTMHdgua`|ES;r1hSrQsDbkDz`|K6f6ON8<YZC@NwxKj6pP
ze*7Whp|~F<{5YR2E>%)X`ccY{t{39Y4KzJj+K+%AiGK5}mNH_{b$KYsk7Iu)1qDNX
zBnt@(Mg&s?moG}9Sy?|Se4SKIFgY$fHjnubO?f}Q+#IMN1y=MU&5ufcRF)`HtN4)~
z;~9Qr#(0(=o4>ZvfT1cIYnZL8;YUqB-uI)6AMf~4%a68xw395g1>g0fj*z;3)Du!)
zu%TcB!3XxZMnYI%V?UObjib`UkEVV!i|K9rXfC`(OnJ|bmNDK+NNWzByTO8w%ukjn
z-njODbnv6a(Hxy6^+AvLjzT*5(W7W6Do9Im;%6_cAJFrD4EAG)m~|8E?#F9+beA?C
ziqgZ6p6v0lfsg#?B}#8UKJlZk@Q(%i2rj=B$H0sX{ru=J;sC*cg474G2M?QXBpB+)
zFh7>~@s%Wf>c?k7hWjzXkCA@-)+RDa6p}7R>Y{$3q<;dV{TSoNSU<-3G1HG(Vldv1
z)1QTA_%XqciGF-8;v_n-c<2k^qmSii-Yq!UkM9p9P2phRn15w%Zef@z2Gazm3mTs0
zYaay1Zwt-#W7F5cIU+XN73g4u__mz6GT7z`&i5nIC$zwig%VvPxLEMqun0%vQa_e)
z6cHCkmrFSt{MhKn3gNu^N+GNKSS@5tOkeBAx)}dj$a+7fo(%BTNtwe*n>Z3~nlt?y
zKejnT*>8n5EDkm)7`Mfb-rY@oD|J7-Md2%o?SAa=<0Zd#`mxiGU4C5m<Axu*{n+Ej
zaX(J@&HLAT{Wv0IAHC$qq*bB)ejN1UkRLzzalns8)gm<8=S*L+Jd5G5pZi7AsgRTW
zD0vw@%H|7ydOgVKNk2|W^a}gPk28K;@Z%>@&icWPF6aCx`G;BZc@e3^&kHkp(T`vJ
zxFq7wf~zkF7%mGR?b69<#_+2sSN*sqgv#7@!QcG2DbZ(s-16f#*H}Lu_;E+Xdoj!3
z|BtDwfRf_qy0EwtNERnZ&mHM$@5L8ZAi*WL2U|S2B}j0W1b25r2=+ljAi>>&OK^wa
z8sxwI$ei=<sdLY*SFc`|ysDY)>3&rhcZKsbD^|QO{6VC&(`4;YVLUF3XA#Mh!gw0t
z3@**|u?^1)<3(YZ7Y$~KuOd3H3*!wp|H5FCK5D+D_s;P;_<>*k6=YVBML}`}Q3@*W
z*3v3Sq2SsOXYXDsjYv`orV>o8V9RimYODGsP$8Xy^diro@WoO+qXH^qzV4D|63Gum
z?5v`YU*Wlv&L;}8i9EZ4&lE%}_*AlWN+hyM4h8(4nOi{~AvswjWN@Vh-`sWc3ZI$H
zrcOTL?f*2$KUeTF=rR=$LOX>OC<<OHc%#6l01D<Rn5V$6AfTXyf|d$`3PK9XDfmKx
zsvxW|E;@=U&=lwj90jfdLxHKlQeZ3IdF5}qmg0HqSEp+GdL=T;C_Rj8%KNb~3W_Kw
zDmv5ina$T(ygC2-kIwof@g)?LR8U4ioPtuK5UZfHf`cCnTG+85iO95}Qsa092?`Pw
zlvOZkz4pf&BPyl7=2w%iejj?)(s|yb;NRMp3d$>}t)PyA3JNMJsHUL0f=V1=1yvMO
z<&f5N8J?)?6RYk5GvkQZ_C3u^z8G_xSwq2B3Ti5-rJ%85m;BeTu9*y9%&RY|?rMK(
zG3oWX3hH^KXriFLf(8m2Drlsj^$@qTZb#RR3I6UBjxN4%dTi}I?w<JxO%;5tpqYZ^
z3dZ-f&h66nPcsW2Hn#cV82pp};`Lo)v{I0yV32~rw4<Pnf*uNbDrl>qox%?VbXL$_
zK?emL6?~(BN4g)}YO_^VUW@Hy6!#tLydmnMpsRvz3c7PPD?4f1SZ=^dmC|}SBBn?a
z$0-%t@t)mFL2m_p74%ckN5QuWzLPO$b^bs@<iW&w=3BgP)?dK@1>Y+esNiVb*oQ;i
z;YH)-y-a9T%=)FJr^!>`hbS1T;0FaiDj23<xPs9N#wZveHb*KLMMwRhQ8{~&*bkR%
z4mke}9IId)M?=8`1y^QTO?3vuw*NS%y}$49e{(9QFKbTZ6f2mnV1|Op3Z^KSs$iOe
z8mGLT7XHyZw;*ZB#W?b&^{rGl&6x^jDVVKbj$HcIPUoq3&elv8b?y~*YoD^`D_Ef5
zZv~eWEL5;a!5<3#RIpgV5(R4&tW&U5!7>FuDOjywxq=l6Rw`JfAY(J@`|U>I95J+(
zt$hsdRAgJ2wCbw$vw}5rxh(iauG=jt#)`IXE_A6jV2rh1!3G7ta(h>>QNjNdY*Mh9
zD>`4yyk1(*+gjx%@zI|;eR{>VdTcR-?-m8WE7+=Fn}Ync%)r8=Ev4-<gS9*dJcGx!
zn9m!<Y*(;@Gos*_f}IL>DcG;zfP&o$_9)n^U?11cee?V^&qJDA*6y6r{#oKp!5_Ix
z9aL~g!C?hQ*s$;2_0?m0S9S+>jeXxdmI{@Pgqf4f<J>nCoKbLA!3hN?6`WFVT0zdP
z?yAjJ={MH+qekZa7GHZWu)Nj0)7Ci!=M`K~aFH8b$x@6Ye`TsSiI<0I%rYu_p+Pa1
zIngpc&lOzd&Z*#`WUni@q2P{!y9#b9xFy2dY+EX4baaV8N0+w{=@R>YG43h2ui$}#
ze?;e>twx&r-jZZsidDz#FUG~ZKBqlW@L0hUQFyB0nSyiq-MZBhqEmZ5P&2v&k?Dmf
zycB%(k*_oUB~g&lhg3eiQ_z3AmCT3aKD_4!c-Uh4K;PStA@f^1+|G*fA%ze6bMx~o
zvCOVbW>5RnVilfw!8F1!)B2Fkhu%K)@gcnr8GMNIA>N0KK4kJi@xkXqW}g?6@RL%>
ziCKKe`Y|h*(}!$6WcT4yA3hUFv>;<OP(ppC96k)lpp)bhNp8VBk<z?A<P)A>@N>Ze
zf&~Q&2^JQlk-;-f_~7@USVR)=!4MvdNJ2tXAHqVkh+G%K@Sdg+iybTzLz}h_jt?$d
zvN$2ehay4-EOVJ<Dk@pNNnKoOm55j?=|d?WVkKMJ=Y>ixBb<bZW|<OvsO&=(kth04
z)`xOFd?DG2f?o=j7px%2T8yPntmMPq-7d-8!CF-xYDsA|!RmrF1iuojDY*Gckoruu
zeW>F@T_5WCP~V4+Qc8IPAKG!Iia8B^7@yv0#Kvs#^c(xo#D}J$_O%bKBKpmQG#6|k
z*piy}y@-@a5uMgPw2APxKE{fPXDL&A5q9u-@okv>MzWm*J4f`p_|R2&H^J_LJtCz&
zh4k`)cX4UqTOYm?$p|0%`p{4KFv0#l3=uLw@O#05KBS%F#nl`n*};NcGL)iZsPKo^
zk`4c;**MLIUG_*HM)@$>hcP0YFF00knh)bRV&p#j;KNiA{^-L*A(I6sapAo5=8K7B
ziU`Rs7EU1YY5(aWnISk+aF!24dw9b&Te5R}m@8zSU~rGuc%}tDEc9WK4~s><M3CWR
zS+rC*$ub|7NB9aMD+N~x{v^2Cho6N|e~k}cE=(d>=fip*RtB*uhz&k$^nt-e@&Nzy
zVUrIxe7NbuW=^XQ$9?$Ahu?hO-G)7MP9L`T@VgINeb^?#T|WH5>Gol#WVZ`ax$(XD
z9m2;<@cx@%mdLc5n(}4=`94uN=)-;?2Lz3s-p!Un!Ve1`5j^U{F(J1eM_ntMW^z>V
z6Oz5)!$lz{eK_UAX&=r=mPXF|a8~#^!O1PHAFAi1eDuW>e@Aq#3AyCMWlqGN6jvhh
zt8|GS-v6Q3Ba*j`y%$VwNj4>L+lM<o+?DJ<K0Nf{UPSZ04-b48JHxA<+wd?&T!u$J
zJoe#<=sfq~g%3~ZJZ<u@^qC0v)=v9UNE9c6!QXs%?c;Gj-aW22bj6~vO#cdbEBKE4
zzmN}+(q!<|k_+Y;m2qjZbSZ%Go4p340#XBM#4@uPfwVw6pze3x-8`oBQj|fklN?N+
zNqA<#EI?Kv)cnLdiPvjkcHp}QCeP*~ekMo~EhL8^!*)`V3#c|zBjJ0!d~WAC@B+vO
z<Oe<n_^3{GpaxLTyT^}sAi=xYgJRRXRS*WMCKTs?06utsejosZL`Zp)l^OUeNf011
z%cKGmR~jT57;F;;U;?FpSik~ofYJL)0uH>x4vGQAg}8z-KoKD<D$3!ikb#8y1r8^a
z0Dipc^6LbV5%?)A4U_?Xt`|qnFZq+ErjKJ^4kz$j19Q5?mL~#gSF<c|WQRRsg;@^x
z0{9Xr4^$+Xq3!Q$Rshb_vU(}z>n?H3Rst#m?>bvmIAXx}NT@2=wN27d$ZX<b^DCex
za0$2!)B<V)eSmL)I-E+N6VMr`2h;~L+p!&i1~O9%)_Xp{)DUO{GzOXgO@Sn!HLYc}
zzXqBOuv)_Vg{2wLTu2K+N^Y%j7FBmzNw&^Ttxd!e+H+JVX>EaaK#3L>&u_iCS8LzY
z=|Bq=y}Oa$NHf@y=p9xUAV=4@o<PF_W>=saXD7*Iue$?1=#2?>ftQIK4U%4>L$%&Q
z5(aDE0eyiJ9K)|o9#SwMwb>8o545sl25@RP>B7Gk90&~J^IyOaU??yO7!3>qh65u+
zfp2`XB2(Ha&Pd?S6fesl9%H1G{0AXpxsHU4kH{y`S6jJM=q^<z0h57)z#(7?FctU>
zUZj+1z;s|W-GiHIhUgi<JYYUBQ|!zVoGmyfVtFoSYP#2q1;9dJRYblBSOzSoGn9#0
z3@nMrmjd@jB~X6_P-&90*NVAw*lXBI;Fmvhko*KZo$MKGzc6VHg}_G68o+20YsJWV
z;E&@8>jbw=b~cFcx$)n~Fo?t^U^BcR4>ZET`IYO=_4pRxcVKIzCA)!bGy?p|G4B+=
zJtBWMD2ZtYurngr1@MqrT434(?2X9xaaBh60U&$R_>Ve=*~hhse{ls#=~2OB5zXVk
zz=cWFq)w`|&Pm`DaGDDWxBy%P&I0Fv^T3<ACKLbT_-<PKM?yT5Huc})#yk#{jyknT
z{1ssL0_!Sp4PMOHrOPv12X1f}xlOIqZUVPx_I<HO!0Rpc=zI2UdJb@xjik<a=OJ*P
z7W#Qn_n9Sm0Q@5o^1+v4DP$4TW8ev$p{J)wr157!#u^sMOW>8XYK)%`P?dTOyyXtS
zF)UE(jo`nGD3-xt_C4@{JBc5a{7B|Uaz6_CQOM6DMcgPqGW(Imj}(5S^dprYsr^Xr
zM+QIA_|ZGs9hB2eCnT*OS8^~atS1TPa5GBv0(%qd=5T2zlVmY4DyyG?+}&tDa`0L?
z+)w<-=0|qnpZXbu-(7Ph@iWP?biA1=rysfe_?&IX>E;%EmBY>JM;<?7bGl4L;u=$u
z&(9dwZvKcu0V!pbX$zAI`=R(z#*a8Ze131=xBRgE@cS81*H!%p3kmS*LPCPu;INd9
z(fly{F#XU)eka=XwMwX!(``2}s>IKE*Z{{5mm?GH#`+QCM-e}Y`B9wLD$|%9r+!gC
zz1m^6g!HSFbhBinkG@>)&>SvHOZ(A5kNs^`{NP+}ydMdEeCbDdKfaq3m*_`XKg#*>
z<Bqs9pSg!t#eYHj44{|G{dr;1+8eDZ_)+>%vESa;4-brax;hUpTG@{(esuDqvmaIc
zsOCpQKN|T_-H#f6)b^u}pXW`um#-vp62Ic*2FBFnPz;QzCHTXnIF_=gu1s7#KkECj
zWOW`khN*$HYVg3A#(p&MqlF(W{b(v<J}ZaI7JltVGe7!%A2mMOZSLoxCoWTXXi_Ub
zlKg1Tp5}5}`x(F8ZR1B<KgJG>qTB3Rm_*;mel@Y3A2ak=k}Emg4t{i`&&U`yi}q%O
z<I}~DuC(t*KR>$p(cO;%pP;uNJ!B#{@4fu!DV+1dPF+}-^l{w!`0*_pFAexIQ*n-D
z>!0)V_hWz`!~7UdC&}UIfA7aYKL+{n@=Z%B4Dn;IA5_lvs2In2s2?03IyO0lBm5vA
z<;O_Tp|Irjw49gGey}bT#`-aigW$&mKWYU~JAfZJm3|!c<Cq^4{g~v(?_5){ag+U+
z;>UVFHuy2sk7<4^^kWenkCT->;|xD$`n{v>`1%Gh*+ee_(k#yGe0{dy9KpGM%o8$S
zaDgCol1+(P%t`cPjUT_zR7tP;Qnoq4S?0%bKUPFESNid2VG>K3R*CQ@!PS2J9MLJa
zFskPjXRRL$)mXh$<8>VHD-IKbe{S^Se}4Sx$8UaY@?*198Gpii=ZMYblTJLKljjk)
z9g%YjUGb*Z3>w+WDfZ(JKmPRNh*a4gxz+(8JN)3mZ9DzgC1kfCC42nXD|}x>vfq#S
zR~!~G&g4O<dr0swm)<Y`oxr<tm+!bAfBEs&k9RWoC;a%^k4wT&3ZC-gG&iWGF=wRu
zSwXh;oRIT=To7_GB6mu9hx}gl<CY({xgYv*)sKsR#a$DH8-83D(rv7FzVJ=qU81}y
zrz>P2-tptE2=Dpv#_xs7yzj>YKmHNnGr@;~j|5reu^&$&{Hc)SPRw&5F9cr-z7nMV
zYwD}s%S8W*eO`iRxxV+~gCA-D;Q*2akUW4K0ptuID&V;mCn%$k6oM%ONEJZp0MbY{
zgCNz?29Qp8`iSJ8px3FDlcO>Pz>@^YGY60*Qkpe@PlRU+AbS9xM&zFfsh=`abVRbd
zrJE~&+>#9iFn4VtP2~w-&(Vau0pt^T{s0sqp9>ZcEGS6jLP81)F6|!Y6T)x*Eb<GI
z1cU_HyG5So^Q#w6eboZc1F!>d0-k$M-j~h@VA%Nl91}ADi);C&)1+G>(Ut0@0*DPD
zCIE&?qmd#aEE+&DA;kqt2$mG2PMT_YN(-+nSSEnD0OBL1Uj&dKJW;T$V7W-?gzD+P
z6ka|esSrTL2(J{tosjo_UzGr=iqM}WeKjG~1#3h!zY3tH@a2=Es9z_5x&eF^M061K
z0{qnyKL@ZTfCkhF@WfI~37}B`jRWW&Ko6;S+ey!gO*l}goTdSM9YC`Hng`G#fKvlv
zz7cF0KwBZL1d{|?3sR>|z&lotq+LYPK7bCwJ4Pg9b*Gc?&VpSc@~#1Ni}0S0iuDYj
z7hNuZp#k&`pzx&l@dxd`0rUyrTWRfgg4H*tVSF|=yI%nP0~jE}_c8+C3m+&rNRVoS
z>2j4lmmU@X&&bX#elk3O5dn-835DYW7$tnP;26QNk<xJiBwlr>HbEpm2>vKIF`_ex
z9-hL}xt!dY8o;aoW(P1Wfaw7gITAl3z<|K+s<@b$9L!bT2LVI-&S8}R76q_4fD@^m
zd0bGNwMS9$^QGkrBJE!&<U`h|CDhcNWnAEC<Rd`j1@d@ZTP}P>02@*`D+5?1*`EYg
z3sUEo2C04tU~K>w0=O8!x&YP(urYxD1#mriy0Te3PuRePV0j14Z{pH6oIj-Q=7@z~
z1Nbe%w*>Hegl`RCoABrNy|)zq4DkE9wmpCy0qhK5R{)0sI2^!k(K#TvM{uv;K0#L8
zAAljVb5JDJl6kXyB!Hs<oEFKkh~^0)#{>8)B8e`O|D^C!5lJvrCRRTq*|Pzhi^$Ih
zz@UgM`a6J2oR<Lpk)q4=x_#+x2)`1*)rkHzA=d>n-*@`vc5eo7D^hw}$Q{AE0o)UE
zKT^t5XnCQB+&_cJ8pNXj9tZFwfT!HAf=C_2vjCopa*7~c1n@F|50SdB0{B<>Yr!`W
z`N!9g-%9qK;Cpt&^jv}|S<u@alLrwcg#38FoWztteBQ@vOd64AjFhGgBAxK`f*B(6
z{1?+?5}sM`#;N~4e;G-Sd+aAc9#G|7h$*{}PlFhq(i`v`LF5dgLl7N<$Q4BHAPNLg
zFo--s<P9P}n-RppV1_Y=(&h`I%=NU4+r|Lk1>{5L<Cl#>K@<+6aS%;{P=fG@{V#$*
z5TU(xAc$ZPei6<+<n<^Ngc?NAAc~1F9E2rA6QqJ3gc0GqRYVDQU|WbI=nBRNvb0Fh
ziycQ&JctrOp1}BDPfH3ZCCDu$HX<+0jzsvJDjDL1CqyKPL6nW~azP|d|KCh~8ASOY
zDg;q6h)SYROR%zF^&qMUsVZ1akWEVUzce)>{Hq{p3h#2*8;9CK)Cr=lNb>Y8KuNtI
z>Icz4B#k1q8VaeH$4$P?tJRcldDw0iMDrlN<}mKF_x|Kw?4QJ<7NW^>R9gnoDu|?r
zg_nc9imfHvCWy8Xc{?HP*{?snH{8DoqEiq(g6J7U=ODUBX}2Jp?S)v%)Kw(=3wRq&
zcj57il6nQvJBWcn3<{!85Z?yzeGso7<r|vdd>8a0rCXVb_YI<75dEbJ>ki=f=cxbD
zCeL!^x1(-Oslh?~Tsgy#Ach9Ph~f-+I!yE@1~G}gDttr`BZC+vd|brZ=pe>K_}Cy?
zj`zOxjTgxT!5<=}KMEO~-wOyZIf&^&%m`wN2&W28i)ix8#!NbuWS0anTgU=I9w<CV
z$lM_238A(5LQ)^G7e*wDf><2k|18f#ou!gpCb(R1MG*X$V9`%OtPbLaikm8a4q{CZ
zM?yFn!Y@Ir4I&|g#1Pg6u|9}@f_TXL|3PdFVt)_^g7{w$n}XQMq2~1M)iw)m4dT}z
zehXp?*V<3<E%NFtV){LZMS48RwjloCIE(W3Aa(>XU`krb7eA^0?d5blnQr`(`poVQ
zVz21z5u}8s_C<KTpW+V&aY(YKgE-7)2XRueM}s&P#0lZ7dpwB0gtJLB!t~ML$LuN2
z!u=qHXM#8z#JM2O2XT-4LobaHEiOovTR~h5;_o2l$Cn88H7;?h>7!j1yduc#)gZ13
zzaEj?5OPzn`Pj0z#nc_ayFt`WQ`}sWhS%j|hxg@j57^X)8n62(h{xQ@Lf)P0Ln9kM
z3E~yKI*6x1?-|8sL40~ZdCrf3ARmLlm(!D&2AyrZaK1jWZ}B%l{7Z!pJ`3S(5buIW
z6GGY$-gCOS&xepAgk&La96095g*-{;^4JAdPZ>h05K@Og5<jakb-ItVIfIk(>MTtc
zLi!Lghma+N3?Y<`&z&)ZOd;=x;q;a59p4$$CsH$O2%m(IErjeLyyzFVBTeZ&mcC(f
zW4`)LowgrTnvD)&Lrp7R2>C<E5kk%oa)ppPgghbS4S`0kF7z&%FI@>9_gvc2nOOJp
z5DJ7)IOH9?RWOA8XU(;LDTP9yL6$PhLkyJ=j^7F07}DhPMY=zPKnTS`C>}yEgir`B
zhh=guT2@2gsmewO;Si%T>RJf8j0RgvQ#XdknITxBV~60#wOFh2hgR%w;oik#WNM0p
zP&9=9{iU!9$CIQ)2qigsVyaY#!ASKxs#At`IAR>w$37ZiB8dwzoTg4!B!09|HiU8^
zd=)~?5WWa`FKsbZ4&h7T<pnE5<Q0Wf3SsagPmQTc2vtQ`O|W`Ivxblw$BbGb)DB@-
z2*X3D6GB}!GK9_{)C-}02yH`{T+V6`@=h)PI)r8+Gz_6p2#tx0lA46jR0e^kd%S3r
zI6q5qroR0(9?j64RYGXRNz|PdA#_}n#Jdgudypn6gw`Rn;RbRxj*_yC;&{gW+g0^=
zDnvVa+9j<$o$WiV1FM8^J}REKRm+};`zC}YJ>w7cjPDZio(<?3Laz|IhR}_^G~N4&
zC+TIA?jiIDVRWN7rX`KydWX<+quDQn8OdV$gz#+$--)E%xoFD!(r>fI^KCz3{}2X*
z@O=maIc^~g31N`b${!cQx`P)b&E6VM?DINdsK`HNM}#nvdteCbLm0*DhOjJz<spm-
zVQdIfLzouAxDdv(v{>S#5H{tAn-Ic}LVggecg>=3A{WI0^TtTWo*F+ngemlg5{XNP
zIFzt-I<FYQoDk-QK*`JyW=Y+JHC*b98RE<iVb>_<$fSgZ*^AE$VSWgd`zM(!B3Zyy
zBa%geiv=lPLK5MfM>#7(JZ;T0xH^QDAqJj^UnP>C1eqN_%Cq)!2y6He5W-q%L%&>!
zvlk_?I@`H{OFo3@@3aH-e3pjrdk9-YJbMejhOmX5YV7Vh>;A^po^|=kQbM^{5(ez0
zd|L>A&>KV88^WI<Y!{u~A?yfYXUK~oyo<wl);&`$_Hnu<WyZwuy+}SA6CCRq+(-B0
zUNJo8=`)+zYljkvJhqR|LmuQ}Wc9yN41Zqia0owb(s&j;SHv+ot%|Qz91r2I5Ke?}
zk{hFnXcebII8BcV;bjPCLO2`3J-W?Q=UfOkgRxgaDDu!aA3~We-lO#w*wgOX#Ss1$
za!K&AAmy!7q`ewq<T^ZgWnX9Y5N>e>Y4%d=(6V-hGxlvMBBA7taBAM=xJ}eZe(V=_
zpQBgCdJw`tLdYKqc_jE)@QL74!DoWc1+%5IUxn~GgfuGBswmmI=o{|vDt2|t^Dp;0
zF0lpXhoqwKLLf4||40Puw=SAoMU?6lrBFT1lqxFz?mK)UEqN-Dq*k#t%3?O1iV}Bt
zKoT;lNUx&&1nqc={KQNuGONg@BD;z#Dzd8hM8$+o*4VwKhY#FJ58R*Hn;rI=eLr<S
zRY81IA#MIy+S^JEa;V6u!ct+Y$fY8;ib_q=gjs#5mPbW?6`!l#$meCzwH*0`PrK5H
z`$+*6A=TSh3JMkyOtr->tb(Yh@ChM@3cv7xU{EkGqZ@6p)krPc(b$XGI+M;e97toR
zFjX{qSf3K2qrz2DSw$5UF)E61Oy+9wDvGKorXo%n#@~`ls3@f(mb1W7y6p00WbJO$
zHYJ9yW?y<=yvucqskDkRDo8%R;u4=4-qQ}WmLN70RqsW}vMS06`9knZ!SaF?1S<+s
zvl1IKStF^cqMC|YDr&2!&QX14&B_s1gER6<8`sDrex;(Oig%TBR)1=~X%JgSMO_v3
zRWwl1W3%y`uQ=>C>v2H#d&=MU(ufUJ9C=|i5^OBUY!hB0mwjQb*-S-q6*E=LQoWC=
z7Am@_=&quridHI;RJ2xcVo_2@6>U_s<yaLemBo$w+Kp?+;aZfGxo2W~HqVXgz!fTT
z3cpd&NwS@3{L}cZ!n;uaWijf|+H@zbhl-vmzE?3&#i2`D>=vV!iry+19j*_(OU3hT
z2Kl!tv~$*Xg3R_)(O<;?QKOI&CTb2+F<8YE6;o9VQ884-Xcc2r45I^_GDfHvsbc@%
z+He(3_D83mmoAl_q2_IqX%xrvwppiG%CRcOsrXUFL>1$u)(?Wo=cSt<b*ry1X)1-D
zfn<`3$@D-y!@mck_Z`zHr}1gxKhssrP|>XEf4{s}4kTxyZ*Xj9tJt7oql!5y=BjAd
z+nT3h9ee#!o3CPliiN6oNQW23O~@j_#ez!&m#SDMWVs+USEyJid{sp9!*pkLg#WB!
zO@#lVVy%keX&v5fV#W2GwR9GPsn$NG{ZGXv6&F?ftzt7BAXV(|bYm623TO5=AzK6)
zU2U6+Ke#oi*iF1-|H-|gL(v^7E<d!l3s(7BKhnY3sd`}vtF>|V(A4!*$GCy3*sG$z
z6?>lw#tqodh4#WeAb3#lkRXMJg&a|FRLH{Ju@wF#wN7%|SHT0ePN+zJ#pXfwdmkF7
zRm?x9T~Kj`mw0F}ofYMCD$a|9m!t4PL+88QahFu+h3qRT?rtzIi>GaTV7@zNTonn0
z*Hl~=9{0gu_Lhp<DiXp-4C4;v-0Q-y!`=({XY!c$RNPnbK*c{QQiPE*jE5>7sd%a4
zm5RqIZ{uUo9`C)Cr{W<b&xJe_9C{(yi-`O|`;;pZJ#RU>#(1sbjf#J{6>oKzeals^
zqU%ZHJr~zc&ZDi`2gxQ2d&1;`BvE0^ZtyjUzQ;@zMy4<_hf!pJnL3O#VWbtFE{u#}
zRR7bUJbf4$!nj|@+R(=0gYg%xX%uz|Sy{q}4kJexfh}g%Fg^(*TNv5H@PA_NS`zzN
z7@rDfDJ92;y2}PxIm5^mM&U4&Fmi{HCye}Id>%&f3U=NwvJP|eg&E2(hR<wYX;<{l
z2(y4#VD&;_6cm2WSBlw;i?lsQVtrvCj8GVA7`0+!{n8R^cuXLSU>HX}m_KAS+hlW6
z3^2oCXki#(wD`=b*24VkmaSZl*Td+ST4%%fED_~JirYjd3^(k362*lP6aMd;c}b3m
z@S+h(u`r4YFCmzFdMp=jDdDjZozh{H5x(><gQc_?FP0CzvFH_L!)O^st1!xi@kJP4
zhEYC@#$hxGqe2)JDL<e!45LyQmBXkPM*T3VNOjt&8peo$-opu}vKOx=!s?6yB;>1z
zPE8@T!l*5zPDEZejH&w-)@=|5<IIz+yYIcRRq&ek9&RI1JHIV?(};e?aPqIiXcqqO
zBt+^om!cM7#_0C^kPmJph0#8Y4q>zod(UyT5o{~SY&#)MP8c1-_$G{jVGIhR6KAc0
z)isQ6LOKg}2}55JOL_M&dWhuvFnWg3D~#_rgYBH&BBa8%Ve}EMJuQ`Ytrzc+I4nhM
z-!Kxcx&6Xmw95fud=yenlChx|S(IroM=y+#QhkWv&@hGx87|dhqGF4#wMK=(eQ8`6
z<HHy&rDFug3PvT<X=*|kKZNm1M`s@Uz9ja?Fs6qwBaEG$orz&g3S)8@Q>5r{M`v0X
z#Ho@k-_BW*B9=XB(axF4^%%xKi;`wZAG0rsEpaP;j!5PTvglITxcPD+UTcAng@R=R
z=8`a$av>CjzbKZ4u{@0Q7BW~^5yr|eE^7E&!>TZT;@Z^ksfN{I{2a!KFiwWChDO5p
zGmPyrr)vc_hp{e<^};s@ZWQd)IPL$0aMCw%qf3^&`T1nOhVfe%TSWec;O`NgtwOf3
zdGn1@v$Qmqz3)FeM7T$AXBfK}z-p}Le!Ih%`@MGltQRecX>S<&B6ju*IUsmY@DN8*
z$PvM#g2x0|_qdS11UF}nIu*ugZeL+M5XqS^u7+_fjI&{!3*&qk7s9y0?P8vBQ4}r-
z{w+vr!)ka=ewj<PrT6sd_9I5XPJTU%8)4iPotqKOJ3?*=-lpGf^(r!bJQm?z7(3kL
zKUcB-;pQL4%P?Mv<|D!9VLTQ>{U>2O75+@{@}$NT&bg+&2><us=<6`vgz-L%4`KW(
zI&Zn7=JGCgYFhetVI1GCH9cZBOy|WYPNpHbCSR@ln(2;sI#C)@Xh<o-R2otX>FkeZ
zQ5xZC1=DFruOWkQ7G)8VQA4JPB(sK&z5nZDRt=v-<k^I<=raw`8lb_iA&2(gUYb`(
zPQhG)xiy|+^<OF9?aiklzhpnxP*6w#!8Qr$xQj9s(oi^}uW0ZIA2-!2Dm`BdXs|Tc
z8pwl!Aq}dAuy9S#6x1~sLaLwlDsJ5xM|3o}8k%cpp&>>?5e@Y;)Yni{V`vxicBPn-
z8a~XjifQ13q$Q-MAD<H|R6r@E@l8xOmNtcy5iGAEP6&(Qg(PT5j7Z7~DJS@ahA$)X
zjmI_WSI|&VLnRSb*6@{(DuPubn$<K^kMJ5A+Vgzy1uj!f5!Mo{t)Wgtr>=&o&phKi
z#<78hCenq5G;-2tq@l44CXbgYKP85erja@QS_ALSH4~&WwA9c_LthR3G$d(gt)Y{K
z&Ke(cHQQ)tG~a2bq3!=0oc0<zh`giVH-ag4IY*CJRPLgotA?H$dTHp!;hk*oFlQo@
z{XS2R2%o#&>K)<VYM5a&2#lxpbsC-core4OHIn`s254BQVUdRKH4M}+NyB6fgES1*
z@PmdQH4M>kJ6mk3`SAtI#}Cy|_f;a(Fd@S=j1V$X!zdx6HH;H7Mv$6g>D8`DGCm@i
zAcVpW4WlM%NVhnNJn52?>Q&+t4O1CZTf=M((=;4;nK)gllN4N>M4cHLW@>owGLaRT
zougr{h6SQYBlE=ae6HC}2^CvAyfm-Nx?Nr+F6NwS*r8#khNT*oY1lv)>ZL8$u!3sy
zwN>nUZ*3*}{>)f1NE<L*WBB)<q-eF^&w^_Ne-T_OxK5B3)@$I`NRo}5O%0pG{%?Z3
z&}I$43a5Q$nYKvwcMV&GY!m!L@J~VNY!^~~kwd;q_!$km>3AAerYPQZwYFEoKH>W{
z920VY9<o|HDEyEhH4k%$BK#;l>ZL{@({U00C3r&cq~IyR(?q`No1*wx`utS$oOtPZ
zZZ*ra3mO`%aB>gQ$S-NQ%!O~Ffr%>`u4=fV<EoBp8m?=ot)q^P8yaqEJZ%kM>bOOZ
z;*O!Ch>klN?rO-Y;}aeC=$0D)4Mb`k4>bIv;hBc#8Xj_BH9Tdr6Z7$o*<%e)G?dC!
zwn?qn7rmMk-W6YJaT4Wq1YdBiU1*h3$4k0&7weVaYmH~2;$Pt(1m6n26QtUEA)j3H
z>?hN`iph0E2_a9xwoQvC$r4+<^Wvm5I@0P$uOoww-_EzXo)8~;W~S3Ic5zav9q}1;
zWYUpENBgR=nJL^6zk7#Qcj@A!*A=Y_cUw`OO-FVeejNcFpX&HbM}8fj>xkBoLq{GR
zd3D}5M*XMta_PveV@1t4T3~<gXKlJ;ane^+V*g&8luySi;a97~4jd3)Ku19xg>@)w
zdD{AgbaXBo|H+ahYSIqF=~hi2PklbnA6k`2$=fQitQcfghpEHTq3Q_hFlZ-j{jYj8
z(RAoKUSDtd=0F1L@)8vj<49Qd&v#919YjY*`5XEEEE`YmvgJEH!tg#tb(GZ6W2Hu3
zO!or*6xUHg2>I;RW+@%9I!fzk*Tad|acaLdYqnNK$J0NpI348Qd}~pdpd(RA7k6{Y
zvXN))ayricPaD?5DbFFgU{}#`C0hw@vlVE(yH-(0B_Wjs%m3;HWEl8AqpFT-I(Y6_
zbsaTy97>y-^6Lkie5IqNj#~7?l%<&^E_v0Yu8w*-e$eqFr$9#oj--w*IvVO|q@yiI
z@}w7zzOjyGI-2WfqNAw@zZQ&LTZpCU`ZjK%qot145&c#|k~o_=s#Br-SH&49zKsYO
zq`k?bP&@jJ&PQQA``<)rb=1+XR&h$0I_W$@E=<x@M>jgBj)6M5bDXIo`aN}?Vgnv4
z@STp{BI%>!TOmBofEDitz2N**=&OT?gjuHkItJ)CaI8?{8LGA<X^@V=I!5alBXx)9
z7_MW4j-fh+>1Y+L$F)~`<^8YjNF7}n|6fPNC0@LJ#<yf3dXlj^#!K~ag54&n^&5XN
zK{$^&;DKcmbxhK+RmV0RlXXndu~f%09aD8o(=lJi0#Tk$f6y^o=aaFRDU$XnRVH3y
zjt<7>pQ~e@$TO|*28VI@iM$rmLY)u%c;iXFNXV;9+7clQvp=J6csZv-$2uMBb*$8}
zO2^MS*3hhu)nc4=hpsGnKb^L^O?dp+&@UhB3bN?4V%{+jX=dpgbZpe|D>no>o{mjA
zHgg@7Q#j!5dU~V5$o!1h-^et!aM%y}DEVE-AIZPq6fnj<vwv_w={T<AFCE);?9j2F
zGa?t-sbjZ}J;HYhcARJLjkIB(5T4_pcQ5+U)IlAGbsUik9g@-^S6cECM};2~WJ?N9
zuUIjIH)1DroYiqo$4Ra=9j8U%j37%pMSJ7<Q-XS4#|0giM1E1ch4Q~8OYbGWse6-h
znfp>Et*otI({Y{p1}+=8q2s2GBm=Dt+|qGdN6<jXz#ScTb)+$n*1$a-_jSC{@h|s(
z9slTfrsFw{+=+jv<B^WX9NXGvj*|AKrq&axwKMk>j4Ro}e9CpPH3P{DZu`7CcP*V^
z@#023)lS^9ScUq7aycXgvekd9<DHJ=2BHkS*YQE;8NQxbrewZ+xh}aRdrlQ1rVx25
z1E~$96y9`6QkiV^cW1G*{Z^*h*7_Dr(iuo^AeVvM1~M4PXdtVBPYh%d{mcf=wQx4B
zu{QRO<K6x&21dS3J7r&dHUrrWJ|2e8M4|4bdaJJ)Y-%(I<V<W1133+BeXCtL8av^+
z<zBF8q*bxlJO=U_C}^ONfqVu!_KEx4Kmh~!#YofoQB=cF=f}xjm)ViR(gwwV&%m#}
z;wa>+T>R<b+(m=jZ=lqrdQ1U>M`^gJP8h0zuz~UhDj3iV=mv_41;gN(kFX6m2L76o
z#u6dNjYhIJN^m6`W1xruc7#Hv5|3Rbl41smi$VzlC3!{BVLM|v{-3&K3=Dj$l@`vd
z-*n?dIo?2mkVFGzg{(g3St}>}3qfYTG_YLrI?ExgXrP9HuMAW&P}x8g162(eSIz1M
z+VqaA>MvEzK=1QDl6r9oeU~KN>XA^>KrI6e4Ky-P+dv%y^$j$T!Q|j`#Olh0>KXXr
zi}Y>kn5TNhu~P$cm*o{38)#ynr6{mFO$~f)pn9%^=J&kGY9@TrAg8&I7J`5Ej=MI%
zY9+&7WT4r`KwAUz49qvs&Omzu{S5Rs(1A0{rW)vD;2Q&-40JKj)j((V$X|--V|Rx4
ziCfq!uA71A-f>;e`??Du??KmE(yXUsdkIcmlJqTuGD=hF34Mh;Jm+ICPR!D{Mg|!8
zo}Ou76sLo(_1GP3V2FW1!mAH7DH$rYh8Y+xE=sqdqmB?^?K>K~ym3j=Xai#m{Agez
z-ORu^0}~AVK&O4%viW|C<2jz4N^SGH)L(bgbHeB6e3J}JrUx3BYha2Pq^9%Ko9?Lw
zrio;_;0!^^XBwCl;j@M8$!<6OkU*c$-@$wmh+SY{p@A(1emAhlz+wZx7+5QsOXxEO
zRv6%VTxwvMfvaT_s`QTQzTI4DV3p|nY=HB~{iH`W>n8)m)g1o?7Ref}_dapFN~L7+
z>kO<nu*tw?skOntMiSwP=i`{xovY8*_HJtZYM^GzCcnv=<+A1O@lWqKlC1`|88~R*
zkbyr8{Apm9f!zkSi;*1$b_&V<YXW_VgLbZ|w~F@|*lS?Ffdf)Xm)IxdZ6}lbMN~rJ
z9iEq#-VlA*z!Cbhf%Bqp)W8`7XAK-PaGYzI`_*grgkbKyCOOkd$(}NBS_mb1H@och
zhdc4l@_UnV!N70leB6*5|KeQaEY~oZ{$@u8SR_|Co(A%m$ZO)7f$IkTHSm`Ezk!<u
z9vXPW{hy0&zJ5>ew%{EDce&vt<L~3KWs`YNmfkn;fWxvTANfD*Mg3GHySgMiHt@v2
zO9QW@;!^|94ZJY$jKg>#BXz8D3B1WbQZ%R(3o5Tg?G0yty?d^I9`}HqYFfU{GnIGT
z{JH&_UQ0e0NM<6fiF78Cn}{-z%0y}tDWtUbxwI)w>>uUkE#*CS*!zQ%#zdc)N{^d)
zd2mV0SKd1X=}lxXk<CPQ6Jtl@%xEI0#%7Z0Q<J%wO;o9ycyvip786-bkT88>;^KOj
zgw;Paain=3CNsI4>Vp$)B8Q2bCUVJjhaa+Yi>bTWz1A{K{NUs>k>5nTi3Ag$n<!vH
z=k9Kzpou~z0wxyS_Z2pwNJYNB>l4Dd!_TG7rh3oDGx<&a9N_Vwi4eJoeJ6ck6Pk&B
zhwYw6>}-eZhwmM)??-IYgk>VeL=h9V3CH9=+_-wkd%I!decv&eDe^z-rz&cqn2A^u
zr8$NN?BXU$m?$Zn3QSuX#g>xxw0K*;oiwJ5Wa9+?`QTiWVM#Pm)<ks^HB6La*Jh-t
zXrhvdFHC%CqP&R;qTl&&+B_e;srh?TJh8F}NvaB|B4{7++F8v+)x#d)I1|4zQBz85
znW!s-pOAHgaB8Sf_g4LSk|p;B%|s&;!%Pe}(bz;26Fp4yG||+=fZvTaCfb_#+Qhfp
z>}DpK3uz(PO0cCMpC+P0lJM3hTAb4sZZ+FUw&-ZBtBLj|I!LyoU>6hL2<c>^Go7ba
zLh8B}6OAy9Z>n^Y((ZzkFf>yyy5gD~gGJJtzDi=^pEYKGwo}M=Ci>D*KeziymPO>>
zM=Z=~stk<qK|<KOArZ+?(>vXm7aCz=q>0BSo|qVAVzh}vCJvhzL(3-CnpkIIoQd%!
z=9rjkVuA_&EXXv`#1F!McxV1-VrOQDgz`xuoGds+aH`-m!RaPu2$?BJ{aGev3oq2Z
z6tnY8%s26qiPa{SjL;UCSjbgi;^mSgW*1XvVks|o%RYEBzG$NceaoAf?%T^mvfRY6
z2PV@B6DuQp6_?@CBnp2PovORdH6|(_vHI1C`o+Yu%+9_0^@!_DY%uYsiS2BRiT|1S
z)x>Y~gyhyH6PtyQ=lUtfFCUC^<1%b9@w<s_BHwC)LZ&LSGBjOhR<D}yhsY@*-@)s0
zNz(s6vv--;Ek%2|nS|2O;GT$OYBD>pXu8ow)9p8Lz{Hj#POmj_2W1>cj?isPKHrYZ
z?3#(=CeE5TM>qS;`pd*AF6!(hPDu8oAmvBj8mCR1G4W|3dt{r0c8fg;`>s@RTV%4%
zo9Nxax*&K_@NW|r_{doY>k9V-6Sqy=;r`DZY=(7{cDk6?xp2zaZ08MW_Ug|{+>&t~
zx-*W#tn*^;ns^{Z_c(F0<L*nVZY?o+T`K$|MGplZNks~u(y5A?uT8u$@l5!0!54xo
zdTHWSgr7|71^xKfL^8{(#q?H+-kErB;)Cf$2ub_S_c0~65M?2SXr{K1#zM+StyDtx
zU-Y6A=!;|1N;aKf8r$76%*<#ZlZ9Vx{AMGwg)El$Gv8txSuK3RADe7sw2{q1b_<Oy
zG_mlhh0iPmECek?Ti(6>LKX^J$YCL;g<O{W9$_J$h1?eMSV%o0Szv(17~KmW82K%n
zdZQJz&~ujlx$pvl6f#QWxyMl?3}~#-R9Dw$fxP2M>q+k7jN?FwUvT#>Gh{)vP})Kn
z3t<cQ-Ww(5x|$$wmFN}>;ijM^XbU=ml?#}z#q-}$#6nRE#ViyTIqR0)o#N{6+NMLv
zONeBc?)`dl!A@1m;+rz4*vI=>gxNR?@fI3bXlNn9!s971wJp@KkZ7T-h4Q+mR?fl~
zV&qG~s)FSOE6|h>s#OwF*+P|wq;*m62dQe3t!|-4ME;eKnu4_`&-~wSYIS+(Vu|%d
zUeCf0J+zZOz2AI!*!Qx<&dCx{*(W=VESx*#*t*ly!q*liT9{;^nT6&SdRypYp@oH(
z7P^X&vlFyd7TQ^8Zz0J-YkJf%tqpx6N^fg<r%5tPPV8WzqlHcuI$QY0`tM#7<xKqN
zx{H*4ncUNfPwpLP*iGzrx6p%*x=!m!Ysa--7WB*JwSL-D)81S?;adyeSr}ts_;RhU
zg??;#rBvUObay}gPSoGR0P#I$XD>1bS{P(uu!SKOMp|HG@1YikSs1%CX}DyqrAgJ6
zCbeIhG{VBNrAbW8j-m_oj2UfVhe%jDmR&d-?8&c)7RJ*{YnT%RNq!LWqlKDpGB7*Y
z!W0X;EbO*0)xtD(%EBfK(=E)f@RRg$riED+W?PtJ;qXW=;>!DGPUX*|ZX|iXmNLz?
zFi$k+TUa1uA)6;;k>Fy%C4x%@SxY^TV!7}Yf-41AMM~4RO|#m<%WWFT&uqy9dyR!(
zBBg7Eth2B_BH18hqu_U)(ro5dVBvQQTiMed+VXr>`*G%PT+TbKErM5;CT+7A;YIt?
z!gdRP2xpc@kG*@7bBBeU5ee@yQJ!&|w#UL=3;$YpYhj;-{c^2G77kcAXyGg;mop{j
z%OB!ESqyb(9idl<8u?KR$3(a=na=EABIh`quy9iNDZ$f%XCkHV_b1O;&pL16wn#2S
z<QFacZQ+uI%ObfRkze7Z>zh|CT#HB^M0<<thJ~9VxfPK&8JOx0_s^92U6I_2$nOhz
zAo!1khY|UxxU`QgJh5=)u@}`R?Hui?g=dx*vFf?t3&EFy6uuJj+QJ(l8M-<YzO(S2
zYtTk28*L_NA1oxdk#Dp{p3KI+3pPoVjTE-`OymCkCPT`XerTq)ku*a~Ya^YFG&VY)
zGML7eG}GJoy{L71kG5#8X7zAKrz)O_o4<`lHX7T=!p+}?Wy7}diS6z1`E2C3@mX&x
zn~m%?20XJrW!6SQ2P@h}P8+#w<gj5rv!Bh3?etz_%55W$jl4EWlyl1+j%CrzWDYA1
zYh!+Hqks*+jew1EBg}#}3iH!vpi@Y)Im;CPx|ONe@QLst+iioVWl@0`_{!o64cZ9t
znNS;H8*PWgy<VC`)Yt&Y>NX7arGWiWo^x4}z06Z^Y`DCHjW2A(*eGHn(MH4mT2ULt
zY{c2<HAO4V2HS|WQQG!iuPAAwl#q^#{(JvLTkerwYtobvIp2d|HeTwodV-Bj?~Rrt
zt+H%PLzB+}t-f!5X`{T2sy3=|7)NRqY*ZFf(Pm5}tCDcaA8j;<RV4dclwRFN4I6cB
z)U)xGjcK2lwFF6O3V9KTuWh4_@J%J-DlbdgQPI-QwybZXfe1Gq_OcCa@cEpqszq#K
zqp6J^HhS9l+D0=QUD)59W^)@Y=pHtlfm%!3+XGwCb8OzyG*7g#TGQohbmUlNjAd#o
zq`hD}8{MwgZ@Vn1_VxN5Yz$hKG;3MXH&R4NCn;r>7enJ{vn#VUy3^D4TP^Z>Yhg+z
z4}00@ZKJP^em45pxVG5%*2Z@nNt!wvynjR+^S8YsoxUz>iT?CG8)I#ZvvK6C_PyXJ
z8v}W18-pcF`A8c>gb$5Kh6x!iIKsx!Wl2=KR>35Wj_8cx8X2QeGTz1n8`Ew642^$x
zX+PMAeqsD*W82!;!M|!3kDC*15GUD~EM$t{R6)w8aqXNkNoLxZWn+PjlB42kw=`$l
zm}_I6jX8Aq=;9N%BwRabvuM7JGHs%Bow6Ie_p%G6l-Wf#-sFv=+7cT}Wf?BBvBt(P
zHkR91VPmBTtB>%Wj$m44<0p}<7W`R|^7E^_LwwfSSZ8DXN0d`+c;qPM8#o#bV>jCP
zA4|8|n*=ut-c9B5+}JIgwKS#waq!T=@7!KE4mSR<@zlmM8-Lo^ZsU>Y?69%Z#(5hT
zC~p+M%f?}jt&QDmi74!~vERl4?pGYrZ6?j${$L%namdD^iWaj>Z4%>N9Po;c+Bhb5
zPTM$c<1bpsVV@Mq2^*~VQ9m%qIVHwf%8Q<{ah3!4t7qXHSLh&(r>K)(wDC9HY>sxv
z#w8n<*?>*jb+LAZJ5>fx=PG?qB;=L5d-iYGxM}0oNBe9oSMC;<@;p=Hh<9z=<6QT0
zc-{Lp9&o*g=0m~X`gv_=KFPEESR_vbn-A6~dCs+OqpO2%4qn=L#jVLfjDy#lbnc}N
zayt0e##?UP4$?b#XX8D$cLymQe6W$sL2?ICtWM**j2@58sQT8o)x9?JJl|%jmC8YC
z2WcFnb#QlC5`(pt$!#-M>g(HXjfpW<|5yen&fp-UgHIe}bCAhFW(QduWOYz@qqbyR
zOxBs&^pj4;a$Yaa6f*0NG_yPS)WK&Cq8-dQWTbvms@k*|E|BK+8XO%E|FWdn_A57+
zgWL}M4gwDHILPaupo2mV@;S)w;ByBB9H{BMb{2__Pq#dYWc4cZw`iAZp|AtRfzR<G
zwNbuxQc|JiNemYK>tdtS@}x?qovK&Opo5SD!+}XV4#EyJ2fBk`X0M&^&YS$`A(^t)
z>U7VOSYpa{;BcJZ)=$>gYF^(7u~UuX-W}75I4J6%mV??3ia99m;0p&|Iw;|wq=PsI
z@eWEkh;>lfK^YF$Wp_ejQ|sqlqLwtCgi(AG93(m@>!6$ihJNk3Jjr-#W=x@1Z`r`e
zW*y5C%Q(8_9aL~o)j>4}6&+M^P}xBhUgD+OxKCo)T%Jd9uWR(T);%eHa4W02gBlLL
za!^ycaQM^s;<K%sPs|F_EH$_Ja-DG^+N|TCu7j2iS~;lapuU494w^b>;Gm&{Mh+S~
z*j(6t^uk?p!d<@Cs4zgA-CsNLn`v&azIM>eL30QE5hlk`W6N1<VWt?iA=P>JaXn|p
zug)J&%p?b`9melMM+a>jv~|$VL3;<AE@+I|GWY9*-6!oj+qI~W6Me`V?Qa}(a?sg9
z7l%KOTH}^`cMB;mx!FqKS+`MU1J&&ApofEB9ISQF(?Kr>6CF%)(Az;D@8=*4bMUQ$
z?;H$p@V$e+4*JOm^cQ6O-ZPntuRmwgEMtZbbTG)lU<X5_ly1=Aruk}*xqo}&H_3GF
z5{*uq!ySxpFxJ612O}MfaxmJ#7<$q2xCtNX=lZ?X$W2a(o?7;CUKbd^dAx%O4t{X(
zqk}W!&9yD9VQsDVkG;}6K9io``g3P8JLq7cgGCOeI+*5Qwu3nirgLdHnCV~^dsNxw
z+ftWf6E1Dkcz`LLb55?NG&0x0JO}d~EZ}lpWnG!5o$hQ_Y-<r)f1;<mZlow<E_SfQ
z!AiQ5gQX6ZIauys1^wqr+?=(sUOSg3t+`$5=UD4)Dyz{I_a_Id9sKNIjpMymxptM&
z?c2CRjohymx;zAd`aQ=u>m00iaLmDR2OAu0bg;w0P6z+vgmQ0pu$A88;8zE~IoLw-
zz4rGEGw;6!tH(HYbk*3njpkpMwQUamaPX&t?OY=tjEax!9M@V>XZ<+sT!Xj+H?;Ko
z%v}z4J2>Frpo2XQ_Bz<-U_U21Xbw*4?E9t^_4%B6#}P5Vma+?d6LZMHVFyPX9OYu{
zRqDsb_Wq*g{Q>bYW6Ue6+cD^k+g}b&IJn~As)LgbPB}R5;DUqGoF)fn9h~D>b$9#)
zi&NQLqm4}$`)GqTx=^XzJFSZj{&sN5!DR>iCz;8u*eMAy;~IM-b37bRtaaPH=HR-6
z+YatHxFOriO$WE=Ey?tZd+Y(5OrF`zRA{Jm*TFpp_Z>Xoezn%PImP_avXAU=_MC3q
zHCO$*-&pVayN@^#yl4zA#o&p9rw(qqxaH!RgXdgRE;_n+!A;45?ZR>Kikm-oR~OMP
z-f;8h?(HJ2i?`hTxz)Q!;o?0ve+S82BzL_XvPwg*{ri_Ewd!iNC~MR0IqxZ5q>|Fq
zE^@@VS$D-QFBZo~#i%*vn3m2(dY3QkAghZEE;72v<RY_+yRw@d&1v>OVdtpXxOUC>
zHOpHSoos#LBAbisE<SZpew+5qQ)_qi_@kBGEp{wV-=4QitGd?7;UcFCpUVg5kjq7G
zp4RT7fQvjX^18_9BEPh!{x9AN`n0&$X8(*NhJsJMBB`K@LM{rsP+Y9PYsZ}SJ{lM(
zzEEnN`ulTu%iQlG;6ihuy9l}rNC?$M*u{|5PU~alkVI#DLGMGBQ$W1F)HURCrVGo(
zjhSA@%dR&s9W=GOiD_O~u8SBK)m&6}QN%@27YQyBT@-Us+(juDu`<s0&c&8+QPM@z
zoSxZ#GdXHWtF((UF5+Co%O&_RiWNz-UONkJ7@gm`Jq&MQmUU6iMMW2tTzui;OOBh1
z3NHBd{$&<@@)7rs`C8N0M$fa_p4H77?~eOFroIAfYNHDmclYA@qWf)jH_1jf_TgHf
zc!44xr4%TX;;w}jDPG))yOp*SD_-2)i+iCs+>^t<_ul83=Y8Heb7nGfW->`8Gc`oi
z6j4j`E%V4>u|D_KlGRl*$Q+kLpNgnUc@XLED%2BEUqoXOO+<VqqJfBpA{uc{djAq!
zw%7iAbFfBJp-EqXeiNpbGfhP_6Y;r-<|1yc5mI0GtHM-6w8KA<_f!2!`$9x35lJH2
ziD=D9wGq*l$(gWUoITSc6EX|Ow}!qH(O$$?B07lpJ4^Uf_rSw<p)b3I#6o_PmAw(9
zp}v!d&LWnISSI2d5nV)#7BNOdS4vRCKoNsPbQAHNh~6Uli0Ce&hlrjcdQpq~5-PGQ
zG-;f4^=LpW=o<;S_3O;OBKnEwFJge`e@?2nG%2)MtWZd-P#{cu^3(W9YJ){O`5E7f
z7)e$kVwi~GB1Vt_<OwZ4D9F{qbq5GdmnMC?G)c>3j9;2GO2iLb#viGz4+Wc^6${rF
zNA(UZI`5}8R>U|FGeyi2@so)0BBqF#Dq@0&i6SP6m`qjlIzqFlXbFM#IGw*Jba_R9
z#+ij<LqCg{CStmX86xP6gJFdtTkD7DH_77r!bz&RGcin8nJr?Dh+jl36fsxCJQ4Fn
zETCex6*|=s|N6?gl+iE#%e;PnnYYtk#93V|VhI)V_dw5qkyOk5wmXndYP~bOT*L|y
z`$X&)u~Nh;5t~K)DPpyVH6k{O_*KMO5$mXbiP%6knakN+K1}B|PzqBe|3dS-glG`n
zB;q#_zl->TT4#MA<!%4!G_j<copdK$QSk@KEh4sx*ePO{h;1Uai`XI3(s$g>tBzb8
znz>(~BO1-if&NCQ`J~|O*?yGWBKC;b%SGsVBusTe#=q*g@S?Q%w}=BG&WboE;-H8_
zB94nVA>y!zBO;E9I7TBwS&#mHqTOFt<cge4CQ^lGqW3|E11CkC5^-9@8S11*15Iv*
zY3!9-dS$x^of|~1r4yd6YI|P91rb+8ToZ9o#3d1zsh81kw?EX-5$IjSh^8W)sIqd3
zRQR+&!s{Y#a6bQ`diW*y<i|j<A%VXym}esPbUk!i#2xA^5?V{RE8?Dr(h|x@xG&;?
zi1ZRNNObxn9*KBEgEsYd5l=)sr$JuCQxX5t$j^yWo$S3M(1F*@{_~sQ`0UUN8vI4P
zqG6wgP}i$@#=qg#80t4ohGwB9qy1UgJ2F(d1xQFG;e&`|5|T?uAt78_cy>fs*u%Hm
z6fFg^@EiZybR<M-327vxm5@%ty+Xo^Eq-g>%qczH?|0bym7Je4m>DHxlJJRy{1P%t
z$RZ)9gj^D`O2{T5yM!DPePxI=?r+l}L4VW15Ep}qWBd!{|6Ix~A&-Q-67oqH^H6yD
zQlxgLpz}dN>K&pP8u0=W3Q8y@p}2%X5(-NwBB7`RsfItWjM?R9X=pv)lIhog{e6TI
z5=u%aB>|M5`+lFjku@|gqpubThTpCTgi1(dC6tp;Q9>mN<t0>*ph!?91SBL#h)576
z1SJR(LR2{twjK8<`njuqB0YE}Q?;w`W`dtpNrEgPDq;J|2z{F%%M8)trGjDF4?&Zl
zORyx^5)28Z<lk*$jMYYjsO`u*CJ?%QJnTqtC3q4NsWOM#L$-(MeI13C9wpKeDVoo}
zeJ50wP(?z037<)*DxsQ$S`unYsLl!2kWiEBWU(RST<2~{<!7~G@`O4PK9x{cLOn`3
zN9e0nA-e6R-X&<)xvg9H_mKt?8cJv;;d2R%Bs7-LL_$-lkOCnxX>ybl9c8j`q|-1K
z8hNvAa|taZw3P4#*=j|hv=E|mF~-dm=(FJV>)}G3-3K!xZ6vgnFjvAn2}u&#Nf;_&
zn1nASw3pCbLJtXFN$4Qq8wp(`d@Z4)giaDVOIXpz$vH2QX-9A_ox`&^R3M#iy1im%
zS1PH5ZW6weuy3YNwSgq%6yF>W=+Ks19SwSj*!P#vQ$jBZ{Ur>L&|5+u34JB>qgeT+
zU4_jvEkd<Rhv*k<I;rRCvEZqbZ3aphBw?_GA!M;h!n&l;`5%R+2c5)ceyOSdQok53
zVT6PU5++LcUcyKTqsd&k+DA$FLBfyJ%5#Hsrz8{#t2N7L6nCtIaT0!#FrHefsy~QP
zSt4spqnYruUZm20!k^uRNfIVYm@Z+4geelHO88mAG)}qP%P={LMQ&}o5Isr#`7|(7
z!Ym21CCriV+)?Syet{Nw(=CaNvvBykLh6Nu!TAyvkj0WgQoob1P{LXX>m)3au$byr
z!b%BCBrKJ%Ou}*r^q4@=cN7h6ULRV<Nl_IkFNIZ{jnxv?NJxJtNP|O`*8+WKCuQnr
z>m_WE@VkURBy5!MtAtGwexo_+{ty-OM(GIkvYBIre7k*pBAX@rDPfC*trB`3^LuWs
z*Wqq|2G%H{hV}i2RyrtWhlIZ*9FcHT!cGahB<z>)w}jmi_DI-EjV|HPU19FF;Itdg
z^($f8|6%QAnr{o#i4I6ONTCuAQ^XXJf#t);h6wNSgpwVwZ#5HF-U!q?9y%uBxP&tj
z&Pq5T;iQC95>AutRccNdAooxce>!IBzlXY(i<F#bo|AB1!UYKzsSEG(`wKmrOnnvH
z^_`gOmq;eQ_g#^2l@gTwu6<3yb?QelK9_Mr!ap=j$tWh{ri5Em&oWZUxGmw1g#RSG
zpz)suRSAzJJfZPl!UO6}5*|^l&I?wnAEN!t=RXw^dP?h~VcI^9`odEQ|4Mj9O;5^=
z{E8)4ySUJKhIv6UX$u{iMZc8rO2Rt{?<KsJ@P-@lEe&gzd|Qerk#2!dm4d?LtkMSw
z$z&v#kwQl5mST<y;q5!ZC0+#jG>U9UEz#%E1C{O6GSbM%DI=GRv@+7k$Sfm^jPx=x
z$jB%o6Bm5faItV!KR+o>`twG56eXTjMm8DQW#o{t?cWeh)DJZXoye9@zM!x9X0W?0
zgOpoF9vKB>6qJ!yMm`yz$jC3_k7vR1FMPG@9mHprNz;t~3Wlfki4@|?6_!y%#;Qw!
zMwUQrZM_o6k#cbvC1k{8STah=C?!LX5t99_`Af?vFQWoSFC(L@jB+wYpAzT`*Se6f
z_(tgW>%y+3NdZ<!kP)O@eF)G`$_py|Zw^`YL?|pHB14g($`EBpGGrN188mgL2WrXy
z{hvq=2>)jCO=Ze|0ZoQ3!;oRh=(9Ok|4iU{73p+q^U}Vy9|rkVw705c%W!1WlIfUT
zxH3E$Rb*6^ktn00j7l;p%UIy5p9<czus>?ix4)&|__v0Bkx(@m)n(L>QBwxJ;M&zT
z)VxWgs}!O>HNBw!Xgnbht|QY{Drg|1p^UmR>dB}t<Fk*&tRk%mi=PztQ=>0*?azjf
z&WtpY(O5<k8BJx}iP`O{sPruS&(b94ok4RsdNBOGtJz#e3o5mYnKD|+_(Dd183Sar
zlF?emH!`}&Xd|PojIStTGLmGplkugD_I%xY7X?~bQTMT%zM6gTd84$;l1A1MzLwEZ
zMkg7aWz3rIkCt>;0G$tYv|?z&ayG4dfvyx?Mo$^NWOS49os8}>ddRr&RG_z5U!O9U
z*7F-{Wp%OAXOYm!aBr%18GU8+Bm5^ouTt~OaUaW(tk3-fX)4%pwlGk}AQ@w1jFmB1
z#t<3b%NQwRs7!}4W4MeFGKz-;dRIm}7%aRV&Yn{kd&(`kOX$)+G)l$~GJYgO;&L@O
z=C>&wJwP)hx)0K0GUb1qjGtsomN7-fco`F9Oq4N+veYE>$2h;{=gkk&%;ATW36s+c
zMy)1OW&A8-nvCgW3{8aM%aZ84Ia2HM%<l2tpno=r&yq2l`iP9pGUmvbD`SO>l``hZ
zm@i|IjKyR#oTXo6ER=C(d4f2{k2vhDKWfoUe2I*uGM33$F4OCmFm->YQKXF?qObgv
z=Qpi{x6j(FlCfIG1{oV=tdX%+#yT16sfn+IXtvq9y;yB|gzj{7A`%%!CQJHN#wHoR
z$@ram+*yH60i!EcJR4lSR%miQNSj@g_fHvHWc)4TfQ+p)EXdd;W4Da$lnohw$=FH#
zWmyt+?eTX)KV=inrT0gzDx;<F8)1)(y)yR6*e|2ns=$_(kxhRHG&i6L&!-vHEJI8>
zPV1nILo$xbI3eS(j3Y9R$~Z=yC_y-I-JcKFE2&X`r-we`fAo%=lyOSNX{sU`9KH%Y
z`XW?yq1iC#-@dbFbf^)DoRe{$Y)r;Q8myxJIDbjTWf`w!ypeH5##I>)WIU8{O~!Q^
z;i==$_%Guh8u?}1;)b~OweVFql%c(lHqoQ0UBa(HdJlG2#yt+bPovh{fO9u8DQ&p&
zP`{<<4ap-Jk7YcU@t=$*GM>u#SH?3Ldj<+y#|17m_wS+2mif2-p_)rC)`+~2@lwVs
zYK2e4-pi7lvmts@eJ*vV^0Clc8SiM^jv_-8?`3?Tn^6?0qevD-@+eY7kunNeE_l!j
z(aB=>K7?swB}$Oo>utd_QKaR9r;GZlg5S<fc=<;7VN{3?CG3}3%@{?dD6&V9BZ|yX
zWQihc6xmq+dT%Lrbz#!g@S2VxdyhwR<F`daIXNg-6uG0IZaejS(3=ucjs=GFHXnOt
zUJlI{#V1kZkD@>nMWZMdMZqWvMNv44B2j-&EvcwKzR?>?a^o)hEi0}xi$_r+ijq;3
zisHuCu5!^O`MAFRD!WLY@XBWX;7}%tvQhL<(NjgaD9T4MGm2SJREQ!FMe`_HM3E3h
zFbXRQI|@3@B@~4c{om>-I@By2=Mg3%qZEZ4mq(e<Jxh&3i$agf4JI94CZjb}Ci57h
zv&ld1%88<S6g61lGJ1@OQB;hg67$N8RT-;9LC3LC#A;FWU+Ay$BCHujttdWY1(MWe
zQlGI7<EK&7jp9l{|9Gr=EcwVOR}I)p@`g+rMbS8lCQ&qv{=Y?Hv>2mV6raa6v%D+S
zl6jvf`bP0Z6s@9Y&64hnZ5Z1|krYKc=9K<7QG6Li`zXF*iSVuz2|L6?zh=@gicV2<
zj{1w!DD)!|=@La(R`@oq-;HcC&KqqDlTME)dd4NaqUg>1@Z+=;)Q{>ait$lQh+;q#
zbvBhG;fN>(vd$pJ!BGr}Vkp^RYI7JP=@2J3oV_i!2fmMDWE7*~R~f_PhbVqzGCD4w
znK5DP|F~~IKQX7h4v16wgybeNnH0rjCR5__sZspQd>Z5QxO_$whi>>~nH|NPC~7OH
zqhM|n^P+f1T|0{TQ7nk!ICU;+xF{Azu_}tyQGY?*BF1G=jLsk|X1;`RDPx0+DVH-@
z!ASZm$^IX^BeP^!6UEvn_C&Eaigi(}k78#OyQ0_-1)Zw7HHvK<Wn&cXBl}n8n;3tK
z;`exJe?+l4&i`bxg)#jP8QT2i|FO6|9=e0cUs2@C@2`I&x0@x!_oYmgm@eAQ--m4<
zOO8abKOXDvC=Nt%km`p_x1W8OG1UYwS|m)~+d=avYaU}v?Cqy~GKy1C+=}9M6sMy&
z6UAlf9aM);LdEZdhJ7oXjpAGsM9xQXfyu=vE;0FOSrW;~)z2YZjpyN7)ZajI*sEmM
z$?$sni?wb<@ehaIWL&*0iMA3Y`JE`9vgB?Q_h@hn`AhX^`=I;Oj^~08qIk%J_@gKu
zGk+47B&BcuZxqj>cpk-nQM`!aC0XW-(CMaW(<~6*zw+1Yy&?-=TH$RJuj6@pLuSxX
z_$^x^g_fV;7yko|+X`|hNTwjUf)onvT<2v_kWoQO#W$E#3Q{X5b}`wa!AWTpq*aja
zO4?)DQ>0UnUcqPK2yMblXXwz0KXhDOCI#8o2eT>2tRRa5I_4(p|A+TdgegI)oSX`B
zDNq!s3LPwnJba;i3Jz@!<W<nJU)l;!{Ovx*ok;nKg8T~TfvbRm(hABjFQ}l9g2D=l
zuy@b0BvL5KoJcVR#hI62EE$)VQs`7LKdDajMZ&TQ$|;b^{q1|pE2t3HtlL}&D7f-U
zOi&P1@c9B?fgGLq6=Iz*V<fIGGLaOl&*PF>VMU56Xq(07ngU%xOo64qP+%(fqDJZ!
z`-0a>hf3rNsg=|Hd^}()a1>NjP)UKyRpBXEeAqt#D`Vw!i3$p4Hi?(Hmb|ipDy&dl
zK~)8h5vfK|9@(c8eaj*DEL9%D8VYK%8u41xj-qdbpDL(Jm8PPIih2s_D>$p*9JQcA
z3qCPK!B7Pa6*N-NT|o~8jTJOe@RfoN3Ysctrl7TgHdGr5nk#5U%``sp_KU(Th$#3F
zh<w?~Oc^kVe4$|DA7YP$2<=FJ;XVDnha?4GDriqNJk384q@98^1^vGa=o8r1LSpTh
zze)1H{R@1}d0tpe?5v<8Rpyp(C&k~^{*&|~sePlMi-N8SzE#jo!FLL1TjoRW8_TEK
z(t%u+5~Ma$B6lW7i1$>`i}E}-VIX5~1$`CtW8R06GSHvN07lZxGBjP0B7T%XRKrQ)
zU<G~B8z29b9;RTpf>jDuD;S~Rdj(Udxv4nI#gPi_@QEL&>OQFC{ZYYa1!FkR^ig}|
zI<atm(X^zoEE%WZCnn<+Oky&DaUvrXlMYCp%>3puo4h|On5JM34eScuPl!xcFhjvi
z1(j1q$U95H?}Me;oLf8MSM|;Gk);L1c?#xJmpLtxgxt&CX%{H?MZv=ORhBAP6z7YX
zETO{wS@5I&G6l<7xFW8zl1b)u;u-~O73@&(mx6WFItu<!uvx(dYHn&c1)Hd8_-7@m
z#_YeQr6&80>}O!X-xUxiA-S>V+&>ju+Z*0OLh5=KGL6qKZi~0VcIq8@5@`eQcIW)v
z`*$kXrQooFBMNpa*rVV^9{YfTy$bdz*stJks-IwlhM>WFB8!hkvR#i%>?0CSQzdec
z1`~4m!<~L>OBHo#S<+Dj#}u4Ya7sbhW#VxKr5-9L6qJ}8p*_rrH`yIItzbbB?d&S?
zjN<S6O~)~8N*|#uw$3ZKpx}*yw+b#QxWtBfSHWc(B^10|mh_K;tJD#;g;v~5MM&-%
z4Wuj~euK=fqCkW+Z?gU^1-F^pVWiNz>C}4)?kjkp;Gu%&RPBW$kEo9;c&gxE1+_MW
zHeVH<&>%+tU91-<%GD0dpK;10Cr*<86uh7WS-8DY_!TEYDZi%TR0<Ozq@my)E7W)#
zcuzf7LGAB^WGXVM$fP2<iWDkRsz{|Gor?4-Qma_}op369IE{)v2oa}QdRi5PWuG~b
zS|+{!Z*n%0LG{xiVP+LsROD8XM@3c@*;M3IkxNB(8g>jZhl)L2%!XaeA@7@C9w^ll
z%q&fsbm%GUF~n@^&Ack|spx8m1yy{af>!GnVDI2wX2ti-cfM^t>VS}|l36EvM9X0o
zQgLv+m+4xYqAH51XsV)_isC9ts0gYMRFqUvih>piB`@WnlN#yMPdOFzl8Vk=FRl6~
zu$N&h%lPPw@bX8Yyow4chy+wTJ0BpIz@by$216>sDjXHAiiir4<+=)qiNYu|Mj6Xk
zp{8wIl{sBYQ!(>Qn24dmWa0O}2FS%!SSoB4#6PZe-&{T9sYs;yR8dDoMHSa~2CJ&5
zrlOLH$||a;=oR%I<;YBOn(k7X|11brS5Z@?{X@dUYp6)L5FkPdwKzJ-KUGmzMT;YW
z##|NkR5ajh)MqbM&SxqX+5%M<DL3S#8gbnJh6@y{31#VcY9gPjXs)80itki^cZ(K;
z-2xp|v{dnhidHK2{}AY);`ncY*38>5wq;CWY{y7yU#e)&{42&RYeFRaniHH=IMnt{
zvQ8>GtN2F6KYfH>vL|$9(uFbilEAkrNJyL25K<nxb42}K;Q5!Kx4lEXRP<J{Uc&|r
zeN^;SabLv)75!B7CnF@|N$?lX4^S~o#c&k^IXX!OF&Ru2uA;{8{#|t_RsKkSC%qBW
zOe&VCSgv9utNozjM-}Ro;3ySKdKk3-1F4PXpt&l>s2EFaks~sWB~w-Wq++~^397#<
zDQQk*`RhEXC#jgsymXD^Io=eUqSE@D5S?sJIzO{~nu_TvW{?%Bn5AO2ia9DuuL^X1
z8md`1tj0q7_X@}Bh3;<%_DP;FkE6_2v4E<GIi<6h$wJ0Ol>eIln^!Mk$x=o|@atrS
zimmKj$+$|zY87jk|Egk>inSj(?FvXWtYQOu=k`jsk;<FbPnOnZ{1(^Qtm1d(e=rU^
z?XT4Rlld0LmHquF+f-~<v4bTiKJg`gF`v*v+Noj}^WBUTMETsSVjr1}ioaFdQ9)0y
z2dGV1;i`&5Dh^ZLUWk`f9AV*6#^sa!iRCe}PZcLroMhoS6{na`&>1GD8R;r#nf%|n
zI<MkFT=OE6OL5Ke3j<eFT)7#3ms+?M*SXH*23c%ea+Ap|6}OputZ=&ST@^!z=ebA!
zCrN(&JXG;W#UIU@kJs>6#S<0ZYUrlnsfvG9L^UWHo{<&NIH@7OhW}K&pz&5iHVrRT
zyrKbILuw7LRlHI0Ud0C$Z&kcgaXwZ!H~%l3v9S2dzA&ANl1xK#4JkCF)ch$Bo#K&m
zdD4K?Vpqlg!#7euJeWpIqam$^3>q?Om^!dvIt}S5{a@44lrL$2m?j?OmnUV?uy}Vk
zvxY1hx}J6Wx1!fm;&4S;od17!|LhuaX~@l2$)RCYl?*vG|GW=MArA}lGJX>)e6C-L
zd>W2y@y`lrGe9b!p`eD68cJyxUr;Q>YQ;4a)=)%4QBEXv0kIgRUr21XFHD>wmS8m^
ziwcU+P+CJ!gP@^|hO!(~K|?t%PI(P2N@S#|h*4OioX_cO2Q(zGPD4IU>$^0OkcO}Z
znVO)GxUq5Shz3!Eq~Ro&uJd01?^?q0>BQMX@|`Ilsv0y6pJ`~ILDyhtsHvfr22(>!
zL!yR?8Y~UA22TU6LUA<EIl(k#qI4(^G@T~b>zv!WSf1wB8dcIzSwl6dgu;H&3KkHn
zXsD`TZXvN_dhvEs|6k_n8ftK!3l<bR@ZZg~HPCXAx*F<fs6!R5NE?r&{Zs=j#-?ho
zuYu}{N<nci?haE8G}O>Y!<QP`YiO*YiH4RMz90n+%~-9uhQa&N7GwMQT*Il<;@+W7
z3l8!#Ab;LULu(CfH6&?hqk(4i@2mQULw(>0KM@kP;~<j6mM49sp@W7_8aiv3wyV^e
zRK87q%?Wm7lrA;;Mnf0oUCFlhhRN!r{b4c#O07f@e5awihVM0u)X+miPYnY!4Ajtz
z3bG|_KdRE@3B4H`zYg@FCO8@B%iew^!u`p34hbng2&D6>Pu@WqhH5yPJUp1XL$WXl
zhiG_PrR3tW<}eMzHH^@3IBSIDD|+}*C}@<1A2_v2KL>u)Fq-)|4P!KnWj8LFuQ~Rj
zK#s^ytdP5xpU4Ca6RCI42u#v2Tf-a;lQm3X$yCPaj6X9@V_cO&oxx-#BgLJ?WKW^S
zb2ZG<usSZEPn}W2680|8@Qa3p%qg8kaUELIzBJBPFj+=@<Z*a8BPG6)g{$H^8}g|n
zT%%!aT(XW@jqECgx>3WgRD1(t3?%&<+(Zqk;~O2nY4}~k9~w4Ohtd($@u!9@8s2Gm
zuVJf(Z5pm?xS?UYh8-II)^I?>UmA95*sEb5*(#+>yIvDdnVeR&?PjmDHt?@3eOW-*
zuVGksA+c;I$8h0LDKUA+&_NA{s1Y?BqbhwArWG262MC90FwsE#jvTK1F3{vf=(vV!
z8t4!7{T+l8)Qf2(si>aPaGJ>(#*2(+HJoEY3g?+z&`>vdWAc)_q~S6Puf%n(Qk@_~
zK|5B3DE)sl+@y{`!?lK68g6U2ui=4)JJfme`#U73*cbTqY~#Bc?okIfY;yM=2oE(p
zqJrENo|47(4m>6!KNL*pA`ySWlG$k!!fygauZhoT@YnE)hI$Pzs3yCG2DTJlQqk^)
zPLwg<ZxXVf3Qj%hz0q)WQShyXHCuykvV|A_l!Ck;G$hkeR7Wu#$#taAkwZsL-LLSJ
zIx_3Xq9c_K`W{4*)H>4WXgD&EmXSz09qDz@hgaemSeTJ9la5{w0wm0;<GWFTGYdl5
zIFT8hqS<vExG((ncc}G~U@jfGbrjH1P)8oV=(1D7Cpu0AXs09OW71<{h`jlA(C3oA
z9|T&MQAh`EHeQ(ZiMU%r-mOp(oz|`h^xd<#juJY`=_s$`{@OrE9neu)M=2dQrUou=
z3l2z;aL5wM=qO7%BSLjX37N+Pu3U7efE9EEbbl__y@yaSi+FWza8A)sqc0+K;(Lh7
zrK6FKu#Sk1YC5Xx5Oqjo(n)5b4p~Q3ho(c<p-=|qgvw43R3?2_2RD?J>dg(kc^x*W
zT#9PzNL@2z>WDERZZX+}5QREATpcH~hKYNuU;KtsQAZ^mm336nu}%%$pD!e2QU_L#
zRHf!SBm^%8PWA}Y&{0!IJstIR{IE4rOGj-Tb(kL=8v2xKK1H~$j;F3bUgG3_FBK+>
zqR&I0>1d$imwQ24Ba!!<M_c+g*3m>qI~`x@XiC+qqqUAUIzHFYT*ntWTIpz^qot0X
znZxf_h6vyM8fczLC{R)e7Z>Q)kC#sa)OM-13u=0)tq#iVh$5jRGKt3`k@nnzU+L(e
z<9y!$t<h@vKKQkcjygI~4V?A8&(a7tOND6Z^|aMO7u_FNhU*xiqpOZ@b#!A1341d6
zj<LIr9!%EuE=fVXnD^Gvhe=<?ITMOgP(L00**ieT&-rz719c3F^T9fX#Q9Ji!<f&y
zQ;yWW*D+GZK^=#5jH2q*v55vc9Y5+Atz)T<Wje;_7^~BHyO^P4oQ|J#Owut~$9SDK
zc$6mSn5ZLJMt_U`)uPlZU1aIPAe~$=MaNXSkdA3o=X5xo7@>39$4rdWTb@K`l$SUj
z*&T_@)G<rPJRS3O%+@hS_fJKitE0>Eq{v*m`RXsW2c&xmQvMXq0%}kl3w11_HkuWn
z7afNedo@ClX(byk=Bv}YvP`AKB|2_iO;2RGjukpK=-8-ZC3O(Wn~pU)Rxu|p<&$tN
zS)h*fWB?N*^a_q7n|J$;vPv&u=y#H2^OAlgvni_)`CZ2!I{wyaw?knw;}#uT=`O&W
zgqN}=<eeBGLT(!iw=?e0@t2OBI(BhZck9@rV>q4B5J<6C$37kVS^iN%HQ73lf*g4d
zaP*Q7{R9u|p!N1q1B!toI*#f%rsKGd3py_9I6=j{5jagl6LmKlZFJBA(Z_v)GtZVK
z`B@$3$TD>-zF30Vf+XaGY8CRgObF*lxTNE<j<-7A>8PsbyQ1T&j%zfIwf7I3pv~n-
z`8tg`Iyx^)$kki^hbmdeEoz9R3HQlz7AD+gPTo5@?lQj@mz=s(_yOxY)bU8iV;xV}
z`;zggj%PZaGyj*d;IcaZF?qpAiH}~MM3}Iw&MTI@*71hPY?iNHp7dVF2O1R(z(6ts
z$ql48kikF-18vgB#2f0~WeHu&RY+;jSxXgC8A#0}4I@d?8c4@{$MPidW;AeWdD8bq
zl^h1{-BL3#W;T$8Nmj;ej1-!k$)n{-ISu48klR2WlBA6lF_4!@0mgicB>#j-e!Aj{
zB=Q!F%L^GO9OwB~Bo$>|jIp?Z5={DEE>e;S#U-862Fe(a49EuVbWrV1YFPv8d#L3M
zRO_UYD{r6z^MHW_13~5?17QO~Tqnciwvjj&snRC5{TMfA?k3tywQX<p$zST)A5_(V
zW?<#9JcA7A1`Goo418_CG!QdTl~OQZ8MuAdunjnru>-|xJvPWY?6J|UZ^$*^86Zg_
zBaw;*D#dwa16AU@{bQrLff@!H8favI;?^{<<8`=}L0bVN7F_GpW?>xzpE9Y-*ubFI
zalSHX)@Sk=<LHX%N%%>o42=!k+#ifQHojtc69Y{RG&Aryd%rNyib-<=Ets@qq`1j5
zWoXU39b+5Dwv0)Pq(iy-l6m{Mgsw{wDX61?P6oa+(A@wPturfp!$_6Tg=>t|x*GWQ
zW88QOR1iwGhk>3fDYGJpqAxP-UhM5{pbwM2jQtq<GY(*+Gzan(i3~O{#K2H$vMu2e
zjKdg*8>rkk@^hm|{&Au24UA;rC<8w*p>@Rz1(Txu$X-$#YhWC;vI*P7PX@*t_}#!C
z1|}GoXkej%MFu7rm~8knt_23B7?^5czJctk13!~x-VMw!Fq6qN#_7}(F9$BywPzWa
zZD1}nF`Ge)<AFH_{_Yqp*gQhG>VlxY3U`!4<PA*>(7(^WkU5>TGaL@|Y8P5;_&=mC
zHE?NukQU@GG0@~6Vb!(3G6TyE4D2ebVBA2~Yhaau)dtoWSjWOj*|oI>$c-2jIFVB$
z<@GGzvn-UitG$s5Vqg<XDCjo>*M~bq$koge*=*oX1KCVuH_>`mV2gnZ1}+-dYG4~x
z&Lv^HfxiswG;sD!V21%Z{AJdYz%Bz{JTOYmFMQ0PqZ`A!4cy-x+{3unz&<AX8UHqL
zz`#M~M;H$=lKx=>wT}de9R2?!x4#b^H*ms0(G|gyarr3&r<tFLOU^PmXW)EXl53@T
z$-rfU4)$`gnz&-%s(}{<UK+SYMK*Ak#vC%>+U^a~A&WKeY+?F;s6)}UZZuxiH9~lY
z)EWz<L->*0H}HUCJ*Cl!W0CwJOCB*kHt>W=l{Pj-{P$zZEFtf61OLVOp25y51FsFF
zG?B{08v}0*eBfkBlM;Vt;JtzB-$lqvuF{I6WTv0D<cuj87j4T+63Rnr(=SU#6RlPx
zr7@A#^mCrhMEmX$BI!+J;2`28$z&q4i2*B;C<<W~RwF`n75GBRVIrpq)AS8Kmx<ga
zB7{Z4c}(OrQNcvOL_QOrn1G4WCi0u06+uNA3sBHgfxHFTTZpkRV-XYd#|;G)V{dWB
z5{xBHlwxx9U}$1Se|=FI_KvFV^Rmp#F_O2ui4LkrB*DbbE0V&T&!7pxgwjlG(Ag$o
zh=bOzNTMR_d?<=0B+9B6-gqJ)n`j(rK`zQfF`+Wi81;ClVWP|<mDFM;dZzZ@UDM%-
zjtSSqK@*2ecqS6*Dki3xsA!^+i9RO!n*OTh$|kCrsBWT)iG(UrRg;c{)?P0TeX=uM
z4HGp@G&RwTggL^sOw=_|&qQq#b*M$shd!mB%&G}9ehv`tR86RF;xo#Ui6#{5L+Et%
z(0{7}4NNpNL8KAmw{ru;FRlw-9~Gbn=Sqcy&rLL^S~Bsqi54bWnrLex$;20A1ExQr
z>i4}c^KqcHiAI&fw{Hn)3JYya+_)Xsls<GSg+GsKXW~l}!?J}pH4@rWS!nuaqW{Cd
z+ogh&Qs`)+lZo%h<V<un@eLX9gHSgUG>&y)?8<0w4t&dGXbORXt`GI|Nu{Iodr+;K
zD0ou%d1BzxQ^8&)dYd4UZnN+0N7phj(!?ke^tasr%87~LCI*@qWMVK?_4dFJ6GKhR
zotch!vvmQtU&c(SG9GA_;_aruCO7i5yflJpxV-c|qZ5q$VB$v;6HPkUS{!X+jEQkH
z;G5W3P#8=3f02w19XPjMAg{V1Fy6!jYKROG;<Vs_f>!4fCz+URVhY<^pKQsen*Q{=
z(3RlY&HiZxX*LF?o0x54j)@s2=>OlDCQ?5TW-;b%6(K&CieqApiM3=H#lxewr=D+O
zfr(#CEHts)#0qM-Ou`})i%l${E?mTv>WE8CEF%N1BZmG8-OnZUsTU$Xvq@;BiB%@b
z<;_&Ju1m32Q`{nE#iA{U@9i(HGqK*pb`v{HY@l3~4Q(;~vpY9ZtyXk?C3B)v;JGZn
zG5*f@2jgbOKN&B!@!#`rHSxB3@@*z2wRPv+Y)tr<iJd0)nAl4;&zigGu5s0Wbx+qS
z=4gZi4v70q>^Jc@Mf@`OYD9nrE0PmGVB&itlJ07=!zPZHND)KI7>=6Aw%<Hs;;e~d
zWUIXb$H~&}8P=%42@`}TO`KwKnvo=Brv=WLIB(*%i96IyQpYZkCDTYX*1l-sl8MVy
z(uJWbCay9m=Gxa-?K<PbIqrcKNxkQ~6p^C*!x3*X-eLt3-ZgQLtjNT_oWgy^M<yPa
zpw!4cWI|UV_n1SUaNL_KlAf7(&XPCORZYBL{+dHyGJnOqWyq!stlI1&CHR)?$HaRR
zAL9A<uQJE&KF3ZLL#sY+@|a&JBB^3X9RuyRM#D~;7~VGw9a@<>a}3x13#N^s?S(+P
z7}Cd(fqBLlGR1Idv^c6)Wb^s(^Q9*7T9wQ!G5;LTtTAMZ`G*UTBs)t6)HZX)kUNI2
zYocRK<cT3~3_rRU?IK?cpTw}%#yT7MV<-?q(1u{6U<`%m5*997C>%qP7>-c0#!xhd
zVln&{!|yTwGf?puzKo%L3?*VH8AB-|8v`?UhRqldL+KdG#85Vd`%zbpp<E2*Dg79P
z81i=(E6^oYCIw<hwKD0CADx64a-D9}U|o=Sr?16O3}H(1W$@LhMx&PmBb*4OBgP=b
z`S{#UGzKLGH3s4aCrd<&L638~5IGW(J;!3OVz6WW`#L9v<}tL0!HvO-Au)!EG1QBp
zehmMP7b?Y2l?n06Osd3i`b?O-<f_F`J%$=AugO>^hFWp`+7!2pulXrU>c-{tjhKX=
zQH#eV4Pt1>yb)vLxV#CIjr+Z3Og?9%5$xmD_39##mN9%0*KZX=Yvyej+cGA_L)*ph
z`c#Obd__$b!>|~JlO@E^F@~No^opTV?0;(`zl)(W^9ApfZ(<<q5<^!e-!hV<TMQdB
zh04G37gctTp$F^J7I5Sx*PFeAV(7!9FJnK({)__{Npm0*?T57ca?67$V}n9N7>CC2
zpsGz?YOfL0tT9Yr&F^FWG-hNBquBcc88DO4G5o}Y(j3EN>_=}5bQpo3EA~!|VNwhW
zV^|c!<QS&JFo(?VMQ~~iKgTeGIeAzAmSGz6>5RAbMyicZH<S4+#@URdS!`cqZVdC-
zJ3oeBm@Httl*b_jauk<vaSSVBSjj<4Vpz)LuWi9)F%T|ioYgmwFNe1(2Eq+7tY)%?
zI%bTPW(7&OjtKRXX(n-Ulq}&!R{J%EO`PUOAr<)#N;8I?T=2~?{29ZR7`A?_mZ-3U
z$+j4_Q{Ug_H{3^jRwcA6hTSpjkKu3D*%QNFCQ3<vBg%cuYqxRyT8#>GO8I7UfQ1Jc
z57EdlGjN!Zf{w*-oZ8gF*A`C1aFWIZ3#BcbqOKG}S_|ncoQdIV3=d;?6vMd~eK5s8
zG2D#dLJSvUxDvxv8ily&sr4_Dt)4BLv9jNny}RLSF<g(~26d>p2|dO~UJjB-o+HVf
zoiegHt4ceW+=|gZHMmRpX<qm?tNryrxksZ1*;ow6ezE11Nwl(V;GMRaPWWHAM*Si_
zj^PRQml)o#!qXU@#qd0ap*1r88}pCnrhPE}i{V8KFJpMcX}&rUSU5iNI(39TT+-5}
z;)A8fZN;}Syo(`)MZf#ueGDIBNM<29jivcTTISUJTQ8g>UjHVvB~7GxA1ASmn94$G
z3u!Fh$p4t^&K4r77CC-3^0Bb#Eo87z#6nRE87*Y8klR8Y3z;qdIE-u-vRlYvA*+Q!
z%l*Zul#M+p93u;ISjcH1mxWHLBFc|ut(8f1*teBMB`>+W7V=vtU?HD{Pb_p@>``1h
zePmY!f5mS>3xz1d77C6_`s}1lg=)Jp>Fhiwb5;B1n&6I}A#%km6t_^qLP-lBC8aDp
znIHJbtIrFRu~61RWeZg-Bos5sS&%Hq7Rp<wV8J;N3|J5>gecTP&_c!JYR+%H3`@k7
ztHiK{h~?M0XragH$cjyY6KNuSRwj{z>W7*vYC*H0Q-z!m6$`WuP-Pr0L<|e21=oUS
zA!fm{VAJI+TyrBiXC-yXlkTrm5n3+z;dI1F6}dFbPNYj)sAORrr~lba-<<ZmQ;M99
zBz{nj2O?E1d}g5mRk(%f7HU{{&_$|a;ZqAWE!475+rq<P?z8&Mhh-^5<XjhtlB#Q=
zo`w3H?3~pi8CxzPQaK?)mD$ijBPyMRwiX&&Xkwwcg%%c?T4-kBb3gx5lMgD{B-!)Z
zvCf@mjj7-*Es%M9VWE|U=`)guH(4z%T$$9GD}gF)^U9<o3+*hlxA2vPFD?HVnkmc0
zvYDJlcf(|*L^cN^=Qgw@gYQU&VPTPl#TGhS_{PF$3u7#FA!D$x^GbN6g>Nl%voOTM
zPz&E#{@JfR$fA-*x?AW|+5Y-Pc;3c9PnPsz?9JGRk<|J!>1Uz8g#i`@#^r;V46=~I
zwMmT#A^oB|%))RBBj}>HN_~_}yef9O68@eH>3NtWqb&Sj;YSPWzYz;2hCW;lcb}e-
z_*klB3qM<!X5l9b<1I|EFp-lbHOi+r*PLWwvV|!Yrc!F7MUs#^`7C@M26-v*487A$
zw=l!PTnqCo%%pzNEJAL!g;~r=r)y0~n3`e^r%XX4nQwt|{)>fDxt#?Rabtk0uKul3
z3t6Y=lD11IS7G54wfGZZsfA@0mRne1;gE&H7FJqVWnsUCzb&k$j{H3Q8%Ly+*DzUY
zVO?CZ-ol1B-^k=w#!Xbc6<mt)J6Q-zHe2{BuKA~hEzGyZCEF})XTF1xPQ<3T<aS!v
z#gg5Odl*T+*TO#L^f$M!b|rk^qt^meAV~(KmI#knIBMaTh2vy+Y(gK~@kBhGlT4^V
z$&r4B8sXD)7ohB=63#N7V?57zf$<_EDQs;ZUEvXuMyFynu2OfV{%+w08NZFpHvX}2
zlZIIvDQw)baGOjbDm-Mo!+6iaT_$vR83o;EPUHcTxvK+@EIg(W%)(O(Z!EmE@UMku
z7G79*Ndr_@srEmSaVy2=7XG6sD@AfUn>vKAEWD;cfJ2{@Z85WpbYf-FI~x2ge6VnT
zWzvdazFL(P;^$o@@+Px!-HE(knUvD@$Nbbb(lANISY&AOv^E;;wZHx$klsc*8z;sD
zn#`|2nk30!gD@i_ZF-!=MphfyZRD`geWrhF&SrzgnOaK%f!_Yt<eWAN(3GB2&c&FU
zF^^4q4f$6mm(Rv0ah{(^HZesZ8-<w{v5|9C5~&ru7N)PdM2gy2dEZ~BSKLMkYKyc9
zC2f>rLcEj>FfYwmCN3{)gZ8&11#;zCSiwesiJVGEp#1L$l-&~u*$CShXX7Uu5gVe7
zHa6PYkZi~{s@kY#BWgpj5wl@&4pkcl6U~NBJa_VU_5BClSTTQzmucho(mt_mI5tML
zOIMMVT^os13HyCbj~;>qm&l=${=&RUbd~hUE3;Y^MiRChm%6%*8a6(+(cDH&8?|gS
zu+h*)ZQDQbv#t%hOrAP6KIJG|Kes6s9kg99o<e;lpE1_C5Nc$jv5ltj&;eT7Cd@0f
z@o&M+m=9kSsB$@3i_*zku(u`SjGTU+zp&AYy{#EZviWhcBpdB)^s~|5#+NqQ+xW&t
z7plNE>AtdYtwY*QtlWX|YsQX@6t^>z&c~DADIcNF++A(-u+h`Tw>G-j_>M!DoBpM{
zGvBf3e}6;tvT0X`6n$;~WlL`xeK?fVl1}-`KNe3hz{Wrp{%B(mDccwx*BQd3!m6a9
zamg?nSvvU<N3i638zZUJ;-Np-cwXKQr3xe@H=2XS*ccnv>A5L1-o^wQ(`-z)F)=Pb
ze$zMFN$j0$<JjQjQ<zV+@iUWe%KI~@88&9xNO>#pK6$xWWQsiFU0`E2^Er%j8Rs$1
zXB>S%CCy)KTHK3Fb1N*OK4PP6UMyzs5=N3QwXrPDm)lsuyh7UY6ts%dS<SeHkrGUG
zx7>Og8z?mgs~l{keA@n6rg;uF+4#*yCkLG!{BGk98+9GjbFkUQpElAv$lzd$jjcA`
z*mz5WWGQKzja@c&lL0pgZD-uU_!r|&8dbdX6tu_2UK@99+_SOI#(o<oZL}^MdNwWa
zw~ZrJ%@a0=A7DIa;}Da>j7J!cG9F_*&Pe*!)o{~mnFvqWI86m?7CFN~=WU#2?>R<N
zpr8vJbkW8o8<*oL{A1$^jTr2`#+bZ^Kq+5meuKK_nP%j@$=+Lxw;As+QV^wl-^K$n
z>=%L8HXc#|mj%eZVDgCS)`qt>_=LSr8UJN`#`v7^KSqjGGrL3hlD)5NR9=-t-oEQf
zesd}E&c=JX89At%CE)}0pbi2#+O>c%nd5ttJANI;$_gnRe@EX`jHw-@ad7E*IIV+p
z4qDy~(CQTOl0wDffs76^IVkU-0>{nlAiIMc4zf7N%CUsnd9pE~Jpd_IP6xRh6m?L{
zL2d_m9OQRUz(HOI`5b)WV6K;f@{ny@fM(-67X^uw-V`k8ppb*Y4vIK9-8(XAbKqsw
z(BN}{)~k}j69RN-(Tl}qaR((Fl;MJubWq9x9F(T~{9@kR9+;FTvUqqPc@AevG(2!s
z($XKLvJT2Q{weA|P7l!Ue)6P1z(In8T3nDIW0+B33^9`0pt7L|bCHaHT7V>y1KB~;
zf#N{rpsI|T1IvN!KxePPXfnnasiZVrapJt91DCnSm>8G;QPCvLN)9Tsq)J>)SFaZ5
z)tS_AP%|#sytxp?s_mc-OFm_!2`UNeJNV4O7Y<rEXyBlsgJupsXN5)%nmB06yfIbj
zp&(5lUuIM(7CG8?g|NAU@sk5B9CU3KA#Y1oPL)UcsMFfPs3)b`v#<?gTL(!F+BxVr
z-A{zvmn_fAUE?bU9UOek68f{73fs{E;mK)%Zya=SFvh`Hx|V})9SnCcf|}UDcMke;
zl<tg_W^X1v9Q2G!dNHAl^<hF=PL&qyeh&IOIFdaBO;86o80cV-gTW4lQH5*`4k4So
z-8N<V7DF8f6&;cgCnQcmbd~QJe{lSH^++lyd+9NRf_`K^nvuMuFwVhG4ra1sJmVAx
zQyuJX7Mb8+A`{}1986|@>wRPLQrw?edAft!%L3CJP_>Y7%({{@SWZs|G~=Dcd^Y18
z#<`3W+Xv@6Sm59n$G=l7XC$)F!67HI$iZTkEQ!mPI#|YBUm}v)inyF!sIGRf#zD}9
z;9{+Vbq<od^oWG@4mLP=?BEG?0oK38_$%E49Q;OuKXrNPfJ?+bXz+J%(D9Fl{*wlO
zR{Pt*RwmmR^Cd*+y4xM>aPSvPc01U^WT%5&OuD6vj7{UK?Pc#iMtWx4&*Y<!LJzQ)
z9=#7SIZO@B<fwyFG;}yP#$M7q&g2B+NgBjX_+=+|h9wsm&pJ5A<UAvVepI{2-uy%S
z|L89>zruKx@fzcG#v2a)VRDm^GE7l!JGkTEE=$P!$iY44_Z>W7^3XwB#ec^|u0l7T
z6v^e|QwRT26SIytz70v9J9y9D{}@T~!of@CuNYr5zF~aJ_>Pe@A5QS||G_~r*S8aT
zPePcIc^bx4jAUu4nb7VBX<ejap58?k7g=3oU~fjoOpKWsN3Zi=$u|8jl+C66=up~4
zb{9EZ<a9y5?G$9p#h9Csgn5|cWz5I;31fc70*t>F%S4)mm=|U&!dTR$k0yS~#TiR5
zmSil&NI~YZU>VL^c^4I!lw~YOwmnd$+y>Z7B*8_}5dSax4va)XE~>hy<|6DO!fK)m
z&4unlqV!o3b)m*nP?*pT%;YG#!QPk)%Y_-&ncN|2yKr1oiA!7;6<u`A>o<qzBGE;E
z-m8I-TqX8ajtk3-@!PAqiyAIky7<CHO&7IXv~c}rsM;>-xVTYYXyoEkmVD--fs4A#
zNueH<=%rhqy7pr?+g-1ri@E0l9pC!X(RmGoRdS@Uizckx)I~EFpHmHA^h2AoaQ{nM
zX>4P1A(D{0e=sj$D;FJH%uXc`Z_R3LT(qUiWZurjmrREDNk*4$&-^P!(x;#Ozjo2l
zMJE@XT?}wB(8V_#+SSFkF1j!`*8K0Znr>7NF72CVe#i3e@pO8)=*henWAC`UkBh#{
z`^6=%awm8L?CWJS4RSHOYWiV>E(W_G;Sk25j0?^?h5r%KcN1I84vnDdogE_gy^E1?
zKFY-p%&T{iC}@m}vDDC2U{}F77e7%ABqAvh<6TT}k>DZdVWNvkE_S&1i!(FX#jae!
zS{GAXOm*?Ii)k)aa?o@aGh8gAG+RYxx|l`P%TK;kW3yRd3F92bxi020na{Yu#V;;S
zjrX647P5rMA{UF}{QZ>VOPSLF?!yoGf2A#Vu_7K?AxjGS!oJGIYL?LUQ)^so5BX0z
z>*yBXVgqNJa=wwtwI{-_amgkZzcK$kF8Ra7X6An~ZeiTYxQ&u!QlU*+p-oy!u+{-{
zr|TaYlE=d?7rTkO*z4l4izhDjx!CXGtc!Cl{&sP|#W5GhUH`@VK^I4u9CC5k#pQ!y
zy2+8xO#g4Dqbw(K?V@+W#Yw6e7pGk)z0!SuA=9LN=?kRHOraZ6`FO@f^1fo%>f!S)
zF1Wbq;+BhxE-tzB&KB1xWfxaC!K-AP5u<FxKa6j6dH+He8E;TawJPwBi+gGOAadu#
z$ZZ#QTs&~`(8XPsUgl)D=i)x6Ls>mP#n<e2#K%eN3J^YWk$;B&C)A&-lAe;ji+8TS
z&gAGM^O=j6E?&8K?t;AJ{&Vqy?#@|5)wg>`S0z1JmGs)h*Ja$dF5XbRtx6(JNSdi5
ziSJ!}aFNVIau4Y}Wblx}LrM>6Jf!vL?4EEc52-!OyOfrWKf89yq~q!iO?J|GSfWPg
zR5&`F?a?}cgc&_#@{rX-HV>IStiKf^VHVFn366H%p&d9$IlG4(9F&VRS10B4KtXhF
z8Xb9dQ4Zzy{1em2QOeZfc|E_~^O4X)eh&pa6!cKSLrD*XJQVg&jD%Bc+TND1h=-yc
zgbbqd)*V$TJ#Bki+(VH};-n1X-i%@?5AaYczgW(rRXT`FvCDdRnqE9!DSa6a**`c_
z?}W$nPjT~3xV(o7l>cQm@qmZ!1Cz+nB?J#451Tyv<{?Zec<?+VdJsK-MY`_6@E|cK
zugoOsL1ChL(3l)rT#g(mkTX5RJXkDGzqJ5KXtBD@UgC~NTetctlcTs5Jyh~A!^2Du
zl|5APFu=n=4^=%>^Y9(z(?fO7AMG1>Xvn07hlGpCYEr4$Tbr>C<EM;u87WFV5A{8K
z#$HuR`|+%?M(l0up^1mJ-}|F|Q<ik~@U4et9zOTb+(Qd0V~@aB9MsZ7D-W$be8FCd
z^887%Hq6^H)=uu<8j|9n?U;PY*xtjPf&S~e4jw(``)PLc@C}nrjGY;K6&9Y?jZkP8
z_Lf_n6zdwHv!V#QdFXo5Cp|p$^gurg^keMB*vCU}CM2)9%OvdUp<Le}k^U@ymP;f)
z$irX{lRQlJFvP=9&RYWiBs<K*81@clq^yqc@O_+*^e~F7v}M8%j6X7xcQlis;jClh
zn&X)K<Y9bVGJ(lN#>bPAP4O_5`GiZ!5+4SBrtHNv>t0AUoq4Nz{#&?N9%g%3Og+)V
z9FLxtQKm-d7Y}_O^SwJBYrcmCaX$BIWFhlKjIVQtimeVU^{|Y+ZpXCCJv6?V>_Z-N
zBTH6zSjl7+<7!5_^cu2?IA6zPy@w5PNr_r%e~t5=v9!N?_`}0d568%6%<yIpyQyo_
z*y3Re^_oa{tB1clj5se4-{xUE3yJUWuzI>L+(}*UMSv7`u^MeMu$KpiYQIJfdf3OD
z#)|z+{`PPnE}<in4pATZHFB7d$Pp%8FQ-24;RFpSi71qalO9faNS27?i8$@yjECD~
zkRHx@IOpNAhbtb=d;W5)OCAEX#0wrSvX>U((hn3(ME~Cnl9RjY;f9BQJY4f|-9xH?
zH21jQSo0=DiiILKsdc7DZqe8k@_(ABxiw7QyB_X&_}9ZT5BEJfiaH`rj6C%4&dTt>
zgTJN8De(~vH4`I`Jv?FZl<~xbh?>q<e(vEv4{toY_3*;OOAoI+y!QOrBW3L2v`Dg`
zM7OXR*CYMQOM50p-cjZwk@p@xPzM(yLQo<vZFW&%b6e6(k%*Lu$dQPgiAa@*)QQNP
zh%AXnlZdp5NS}xdiRfZVl=F0n(2|>!GDWQ3E=9&foI5RMO7yczr6Wi8+^m#TAvIf~
zU*wviL_9ll+OnhfiAb(Q<W5AsM89rHfs!JZhtd%vc@t^->&Rc%BcCK9e<F@ejuc1)
z6^H6)+cB3&;Y1WkL@W_jB8pO)i720l3W+G5h!Tk?LuqodB@=-}tnVq7O2pc=9{o`B
zNrF_GbdE;`3I3loDGvMh_f?TdxkSHpDjkgk5|NOIXd;wE1QTh6q!dm>BoRU)D9?vF
zIiW-lQY_kLL`;N~2$`={CtZXbm4z}%s3xNEDN##=o(M94W_?8R8vlo`_l}aH_`g8e
zB`jHxobv^Q-iZq=u&}#K?3teK=@}4^q`)Ew5+oy8k|;rv3W!8OP{|?+2nvEI89|V&
zlCy$>z`Om~@4WMSf4p<*+;i*Jr*fF-?&>ZNGCY`c$wf|^P03mR+0rsS$nwDOAnHN3
z2dz9%JqUSl=A#^s2YwF%9(X<QvGHp+-K}O<3AmVGP%>pAPxe@^1(Ae3=<ZC5h^~3C
z>sThm!-rhD2dpM*M>IW%dC-<+^B~UJ(K%fwcGPLZxe#!@=)vGhR?9Qu(lYLhW3Kj+
z8vl57^PuW{*Gtk19X#kL_MHSf3w9BFS@0DPx(Xq(vzYRk<L=wLT|GQ_)q`?Al=q>h
z2faL4?Zp}|Uh|;02j6+{y$5|fc-@0V9(?RUUl00u@U92bIO;qY;K4`_MtSgt2LnAA
z|4+A}9-JOgn`Dr92YWC?$oM<Ty~kPW%V!N^uX!*+#5Z$;{^`abI>s99!59zTPUvGj
z7)S2Gr4hAjT&(k!hf^tYBKymO3GAb_IUSO+C*QMA_Tc3+9T+sl8Y-E&y#3mosglk+
zf_#sI2GfPl@nEh8Gd!5d|NkD$5^;8-RDX=9UEyLK7N*|CI`ceOIaB%2gZUo3FJ>PI
zGSn=bN?ah`g&gn_<)cLC^`A2qbC`MXg$HXzT*{<8SmnVo50-ndB4PQ75a#$u+Kp*`
zD#{wc)rnB*pLy`Pc*(1sQ`T_?dGNId-*~Wrb4r4?aKPNQZSo+u3Y$Inl4j+zC=z*B
zmT|xGU~3|shi7cIlg@1(eCxqZ54MZGLvY>KHX82|K6`OCTZ3M9+-?u{c+kO%j$ZuW
z!CtNyUR3a6p9epB@EfOz2m3wviK~PMM?Lu2gE}+QGF!S1bDnyjEzUeBcu4SE2`80z
z^QP0_7#DvJPI~aG2fwhbmRlD!z0OuX;lZG_Ids}m>pUHvp?r$<8mLrUr<~?;v`$%M
zbDs6!9G6Eg3V3neg9{!!@Zceb@nq$q2fusp2Nl>aaoToseUxhdlT}z_Z_fR19$fa|
ziU(IEO(uIw$TbhHCzKl=+)VIy<4L!L-x0hkcrOuJWKz;!9{kNI)7#ze<4(Wc$>Od;
zR=?B*<sXh-4<30iyPYH1i@aX&0KUf_3;z>*BKTDBnP48VN%A7rt2xb>R6Z}5tVKT0
zA*Ogy(2HVT6!)V35ap{qdAF>z74o96mq+Z`ig*#8r4$uBw^bp3&WjRW%--QF?Zw;g
zDJ8wAc-Wct*iHVt7o|jedNgB1rn8I}O~133_2S7RH(fb~K4?Nx(Thr6c)aj>QQ3<s
zUNrF{-HWPTzON0Nm$zq8-HRGt>-~|sUexp={)(%%*XplY6w73B>n8E;?6f*wz-zt!
z&jXR~h8(o7$69#tg2dg>#?k!)rGfB<f{I|O7oQxp(byqr@}mJRW<A&L^l~4mEB&h7
z?M0dwjl39=;%v-ff0Rkmxt{%#vJUd5UNrL}!;2PP@S}Dui=?i;<!J8Zhh!a*-|a2E
z$n;{wjI{lat?TYAX3?{Gw%6)S?mH!K#aMjm+OxUO3qPyoMQbktUIbYYFOOoesb1?i
z-4NT{i<Yy~irVb^>)FptR*0GxSF$sDJ#x}a_rma6r%^|}SaDe~*~MOb@x4OM^Bjxr
za?b0P)P~(!E9qyy{Y5X@daZGr9}aF1ZRfSV#ogYEmxP4hwbR?li_TuW<;4Uqx_I%j
z7jJkm(2G~R=;}ouR>6xST6)KedAfPgovEd!<ap83i(X#zkd`cS-|?y!#JV#xUt`c?
zw|cKoZ!dOzsnjT#x;@)*IG>}h7cZ`}?kx4^IFwktkaWCjAK=BkwT@@KT=`cjgS;5*
z#V9XEvkSy#xEHr7WL24-G?dv@Yd(zqHP}jXgcrMOJKhu|8A;;@c9JnH;b>*77t8)t
zNLH`S80W=!hL*I~-mUO}Y3^8<=*1*27J2cp7n8l1;>Ao34=;G!!`oiG<HfsPOck$E
zuj#&5U4Lz{P4glvC3QM`@MDENGDFHXcWn+kcNQmw7aw@>p%-&RpXbH<Ud&~KtWx+!
z_Q7>Z<M$N4PyL!VlW+R(zMf}3%{JIS@?wD(?kmoPg1lZPk7TDaXt5VdyjUfv-CU?F
zWp%t*&cV6Lv7mU>O1qR5Ua+~^j?43j7j6D>tmMqvr4(A0LHv}HXpPm*`$`o0%!|*x
zxbDRbju0=_dU3#ugI=ujV!anT*+E`xkX*L2zOPwp=0@>u@?x`)F9o*<ewC{XRJIEF
z+KX?5Y)k01B!wN~{gxwkw3Xm@UVJagKEd5w`GwS6W8WjBz;f$yaxVvDLC0S$l794J
zzvw>+{><TB(@KY~#?+)kUL59(^Wv<89`RyiO6qZT`r|xDx#Ee~@4mg){wlwCaYDQ&
zz4+COQyjw^>_@63ofdK2DC;|lzX>0>RI#;kG_RC&&Wk@d6ZtD3`UOFnT@-Rj@OLg;
z$yRwTvx1@&>0)`WdT~v>7wcHwlq(89{&SO~mn*6dMSQsJ#T_sH_TqsT*=3UNit#<c
zmG|@97xI_jxZR4aXx@ij{Nu$lPQYd5{$<Dc^FQ|DKQA7M4YTkb$oC|{pL&sc!1~DK
zr&IseR(X8ZvY8~9ESOg?pAY$k6cDtE>O;W<FXZDAZS78>E9yf@(Tn-ewV0#0@aF_e
z2y&x1&E6WVJnus(A5J;>JvS>;x-wLD+R6&vxM!>2Lq#95{K)pBk`I-ADC<W#KdSgp
z)rVa^eCI<oAFBJX(1(wFsNq9RAA0%lnh&*nsO>`wA6oiQ#|QY(+=mPw>iVqPgLF<G
z>hWLb4kulGAussQKuE)cuK1AZgUtuKDBK?D@L_&F7o+ge64528xqV3Up^@;$x#`#c
zUoK62NEfB4V6)s%ewQ+TvFgLD8+y}^r92y7Fq75vA?kxE2HAo+?!v8nV5S})ygv9u
z3@1|X`w$Qw6jT#>NQi5+bq7-OAtGK~&`8+Kf3EO%bCR#Wof7jQ?n7%ImZw@b8#{<W
z8^ITSXq&KaC!~F@SI}D@9ewEJL+6A|cOSa=@UjoDBotnfbQRt$p(M4>pCi17;H!c?
z6QS>==I`x8A0OuWFwckAedz1MG#{pmK|dcx`0%C={e2i9${T_M1uvDd8hnuO!9ENT
zGE{JwAVY@>Y50YEqz|Kfc*}<gqKp<CD>z1Q-P)XSLKtg2M`Jmwr|2g7FiG@oE3B`W
zPEOcN@!@SBZv5z+D#|+v{aqpNDXtkl%=Dp9$#Qdicu&N9vr=|%v5q;LCEnRS4Exeb
zbJl+AD^l<K@PQ8>a<ED0qMr-SnQna|b%75l*DbT88{L0gn{#oCvdD*zeOT+mIv*DM
zu*8Q?eOT?oQXiK2u+j%wF85)DkWV<#Hf2+x%RK5j{(&o(uaeMQ?;0OI7cYZ8^MPh0
zUx?D<jZE_OK5Xz|s}EoMu+fK267-c1o0+%|TM}^>9kq<NA9c}vn3~3<=>0};yAL~r
zZ1Z8&2{(0;Z++M)Nbiiav_|u-e82Z$HyhT6n?CIE;Rhd1`tYj{dwtmF!x0~j`tYL<
z`+Yd*!yzAj^5JJm`2feEq`YF7n`E9Njj7QEPq+_@!IoLBCpX(36aI@JLyrr2{<7<Y
zkQR0;)+rxO`|!IDfB5j54`+P1;KM~RIP1eXAI>wclkQ4tD;oDztSB|oT-4d-ml7%8
z`@!|650}MzP4J4~RUbl9)9%jy^~-h9d7XZXi@y&~eR#%2z=yj&{NuyFKHL+7zkK*x
z$bG>9zgW%qz=wz8?dq^vZ=aO^ktqKOQhY3=z;Mg{3G3C{$~TW6Nq!XbqqrZ*e&qF|
zpdW?&$md6XKMMGfLW3LKc{hNLWN8^IIydtZ+3AJ-DB?#^u_-^#GI;Ko)%)}QbUo)s
z3DHaYQPPj+g_jb{bIe6YGrA?WI+YQTeEJD@c|R)n(bx~auSi8M{(e;TqZ$|gqDhsx
z{`<k*m`A2q|EU@T9qD<jTgT@cCsp^Oh95QksO5+2j4MsBwjT{B&Qt360Y6e7I`7Mt
z;JSWXJmjt?Sl^Eqgz%F)6dU?cJIPL`&_2O!eq8_6X=ft;DGos=(-%U;?MJiE>?Axk
zu@O_dp$v5=H}PZKW+mN^rVRCiK^cDZnx!=NgJ)CTSYrR@R|mZ<L~Q9trVyS$N3oS3
z9=3k~`2+C!;q&87KSr`a{0R8b$&b!{1pQF`c#$pN);^`9BjiWK51nEQd)N<+t<=`O
zt+9(}_;KV#J6%jjRM7Ne&7a8><Kk^C*hY|I^RorpN>WU%ogeLmza-c}(EXylqaX9@
zyJ*nGkC**;Z&6lnKX``DD}MCw<5fSp`q9mg?jq*+VRp1m*tr=<AtCmZ5>n}0E3=m$
zudyOS(pcIfe<qXk@#A$r`ufq&k0E{x^`pNZ10<J0e!L-sIS!O$N$9?+l{q-!9a$@L
znDF6#z7c@jOiKh)mJUhF#Zi8Y_T!iz$4UNjj$vo{G2V}{;-#YXaKGip1V3gnFFz*w
z(PTu%R6pMFW0D^{Gw9li%*lQbr}*)<AAhZCb!lx5z4~M2T|cJzF`eD<SeY>;vw)dt
zujBet&79%Kv$Z)D*5%CdW40fM{5b3f-zlEs$G3j$6h7CFd49a_#|M6tz3BSPkI()1
zkWKB!0zVe|@rmdk2`=_yiI7Epd@O{iG1gMy%LVCO=0}12E|L|Z@B`Q6EB#m{-cJSB
z2(A`nBDsWSU-+@nk4>Vl^<$k7>g$DU@Pm7D=%w2%%2$4TDP&8+a#W>qTmAUjk8ecT
zp3t{(P58x@8+Ql0X<;V$o^I}4e(d&Rk00Op@jd%xKr4!LB-2i~e(+--M}?#5Ue4M4
zt`ga<spHc4QudF2>}O%RW&9+eKMNiZr13#NXhUMQa`kMHMm!=ZALZI*wr4uO_;G@r
z=*QoFob=;YKW=c?_;JdQ(|(-u<GdgI=;CjFob_W?gN(`tooBe9{p9?xNm`|6uC#SI
z7dRykI<Ik|V8Q&>ACgOqa?ts^Ajuy>{uI0{ct!B4AA^(JG;r^C2G`~6Xpr&Jx*SHo
z<;OoyvhMqFn^QxtJ;~AejvsfqKJRzl6C`>1N(OEEt;>19G3m#@emwGHR0TU<ndgzF
z|FGjmy1F>+kNsGFTzTThQz8FxQ2nk<sO+Hl%#S<)<Z^x)AW1mA$wKl5(C)UK-U0!n
z1W-MI8UYjx{O=!o=>Q4|FDzI@u&7|M0JiT|iVHp`SVFL*;PZl|1jG4~Xlecb51_2X
zB`+61`2?>JKt-{vBv@InieOd2YJ$1x)C{1OL~I;D?EvZopal4x1R#LA0lW}Eg8=G@
zL4AqEycm)0S_!Kd4Fe#dNTf(&3&1V*^x7qgBLJr;E<xH%{y0xs0F4sG$W4KIlK|2K
zXc|DX0GbDo5kL#E$u-E$lswm)6+m_XOI0jW(JBB>0L6kR9)vdlUjS{(wfkd0D}Mk1
z;RS*S2A~G8C4jF22n7%hplbl#0?-181kgHwHr#pA!L0`n4Pf84?&O9j!{*q`0Ac}L
z38lqp|B^d5l=vbO51>;3ode*;+I9iF6hMan+6O>OMr0J4bqs(mmlNr_1n{yb<O?fS
zc_n~V6|0alO7{SA0_Y#WfB<@kO|Jl63*c4Bnl?QHIMga_%cEAk1Lz|LeQDp`{dxdn
z)C?N1gt=Mwlh7E?+74h~0E+_nIDkO`3=Uvw0Ph4aL<}YcFqs=~oS8#e<^YC^I6`o2
z0B;HzDL6`yS&SAkMzDVe_c$Tr1>X{!AV|xJLfAOZUUKu)*98@;ObOua0LbZHJnN#(
zy8+A$;JpCuK58{ha5`IFh&zzYj_BmfoE5+VYiMQ94qy%ozb<E4>$JH69`>3&PrUC7
zejv!u4+EGleCDN0dKU)p`=v~}j{+$Ax<wWTuq1#r0er?$6u`0oJ_%rD0Lued5y0~o
zGgqz4IeIZO^HOFtEp3>;(<;g9(*Pd6meoEdE3HS?>Hv1H%b{a}p9lDPUTg?pV*qQV
zcIyIIA3)w|+4m}TKDRDszBBX5x}4t0Ej9(PnG+!Zv%UMrOPQt4+tZu0JKe5Rx%D}Y
z^*Q{u+n_o2tpR);z&8PG3*bh8KgZY}zz+6%0EYwkmQ_ni+ZVu(0qkU#l}V#_R{-CM
zPX4`+-GX}re+Xc2BJ_=Eh4u&VQvh4*H$M;n51nL`p9ARoi;IpTm4g9{f957R62Q>_
zE(CBffMWq158xbEwoC3`0yrTyjLQO?elO#sr2nhnDZ$f%zX_fZr14pn|AK?$yreU<
zR2nn76aY&_F>`7b@pm!)BY-~>u`Ua_62Mg<*95O8LR0>2bt{0|0sI}n1NK6W<4yqg
z1Nf()^KJn50^r>$|4S~qVy%<^68)9B&a;p056J^~9N<T5@h|5^)c#0}8RV?)=<%c=
zBR=73u-x`6fILC)yvV0)g!k+XW-3WRBnOc{XnE-hT*;p|h(@ne&nHUp*2y%cV+vf0
zQi3QLv=*g8f`tX?EfPf01m^){&jnE;h-pDg529oc&vVrZLJgu+5T%2t8$`Vz-Yn6y
zOb``=s1!t5@lq)l#J5FK%Lh?G2sy>dOnj=lx?mMSdaDLeEx|+Ub7}-pQ@mxKwyhOJ
zZQ<qTDs>Vz2%^Pl=Y?un^@DgJh-N`F5269Nn(YYUxfS+?!j&LWgRlkB`r|_FKQ3e!
z(RDSmYk|VFbc!X7T|(S~X@ZS{XdFZn;pstiU1p~lT~kr$<;ki&*XQu#q8Thn5Z8NW
zwG1LNh^!#8gVsY>Ul6T=@Nnf1Vr=2Ed_J4xN+YhU>)}&WKKJ(r5eQ=H99Pttme1+p
zcZWhjgo79u#GoLwAdi|w&!F`itp{NQ@v3loqd{~GqEirN5V0WQK|C6pKfQO}4y-17
z|8aBLv<c!xv2QEbPO!b;OM<lNpPqEk=FsZ2>KsIuAaa;sWBbcNBo#<~g;frMNA(@+
zoz#upJzD85vAR`uwVZ9Y^|Ib~%d^1VBZz!YY>f3Ew~O$hTM(}W(OWG0Cvxc{<n<u>
zCX{|b+&Pe!_C3nk2L$m(5G2Y)8&Ap`9K?_yH*jK-7!Tz@3Sy-2VS>Yh7?DV4?E0Kh
z91q_qV}lqcWVGNICgO8n?ByuFQ1Q1;8ZY*51u=nDo8;!vr895XZ!fq0t4t1JN)T^z
z<m7i$=$159EDzf4@35EaXY3u6^llLJ(tS|CF(ZhXY*iI)RlFC(ENd*Gfr{Bd%n4#&
z5I+VnH;8#bd=kXUAl6@f;r$>!3Sv<Z9|ZAX5c7jr5X8bDhNl7xQvWNg6yv#0g%vtJ
z&-yrs#q9Ls%JLw34Sr!s5KDtt#_D%(=B(CmPTv>$m31(bxFU$xt72f)RC-qh@hOWP
z#FijdOZ0WjI*2tvd=|v#LFDOaquE*s`XY!US6`r)Zp7e*#0^1g<N^}J-hTPaVwS!+
zh`*0C%xITRzSd0tDu}H?><(g25MKxJO%U6I*dZm{7Q`QOtVHNmUVY(49p&2~c1lK6
z4j-<$i|ugrh3`c9Uht0O{)6znk{WAD<Fof$688u3QxFe=co@XbK^zF;bP&I>3xa$p
z48H_%B8bDRLXgi2Ytw$Oq;@ojV?nTLRE`U>vX8F5a8mfML7WQWy{R_7=|+R@WmBtG
zx7v;FOc3XSI3L7Wv0S=7hvJ1GE(UQqh%21M-BK?Fq4X&62S?rDhQ9~V|3ZD*{3-Sq
z4%Z~_`K$r)Y7p0gxO6%XbGaVG&{W(A@?#^oB@KR0>~9OdBY0QP*ReLc<GzIcCHS{s
zZe9Kf;$N=MDhjE16vSh8rHUjK|B1~rE(r5qcq06%Ad9j8aLv_YQmdGrWYubod@Aw_
z$*ZErg*t2sk1M@^iWK#KqawEo^D31rtfGjDGAhcd*!(QDsEX%Qlu%Jj<*`#?CRJR;
z?Q;KXw<`IqmMp2_c@?Epl$I<!&Qzv<=y1(7M;ew>QC>v_6%|#i?_f1`aT(#2R8&?`
zQ$;P+8i!RRVs#Y{FBYh(qMB-rmIh^0i%U<{P*K;ka;&YQj{3j;g+!^RqCP`~(|}bY
zaxk!SNgAq9R5Vl3Tt#ZaCQXG+g<ZT3l?QHF?c+>@b}QI|-(hg8AX2Amq@uBkCMtSX
zMY@WnV)^3wF1eu`7#S*Bs0gSCs%WVqQ-x1#vQ%WN@FY@hCB*)hRl@vBoJ6mR??zZt
z(x0$lsH!5Q!c-Ac5zf_B=qfbf>=D`<3Hzv!8-=WLeo@q#fN@dUsAw&O#iK~~_2HWB
zRJ2$54;*7vyrf#cCa<XIs-lC6jw<$DRX)FF@1&x$@Z-zvRJy2mS-e>#EN?f7)l)?;
z72Q?jh_{D|SA{Ua6<6}mk-Vm&w~GEM2B>(UOgbNk_fhdWJL`8_UlsjS48L2SobTw-
zk&Noo_ze|<R18)zPzAl+`ZT`NHFIv)O!6TrhN{@XMZQntVG=rAklqn0-V{DER}mbY
z2;I;-?>H6XRcr6@Vih|tIp0z-MaA1HCWv>U;3O53InH}z(twU+*-FP$6?0U~Rq>9B
zcU4SNF<r$>F8C@gY_X61z_DXTs~K$1F7``rXP#Z3Gm8zf{^i-CoITx^I=%6s9p|a|
zP{n)|@2jBqUYm>$RQ$U>=jHrq3piyq<a{K^poK!dY?HA_#m6d~8*&&L5@eGuQIT=b
zdPurl#R|@m5UPjpiE6!~`-O_NoHA0)Rf3-ivev6rtP%d1;O7awUuEYyPDxJ85Gves
zZcwpN#XS}GRczwKSMiIA6YN$MTU6{<@so;t<I}!U@r{aYDz=K3%GVs>ypwapwVf+c
zVb=~7->Rs3CZ$th*G?6?IMVnsm*9gAt-j;hl9Bnnirp&qh`3kq2f=eolWDw9ILSNV
zBKGlV1#;YcIqPQ?hq+Kl76()u6q`eWM=Q8DDH#K_B1csmQ*m6y<(1YRd%8VKlly8#
zNKUHwRmD{m*HoNRaazUiD*lk@zp*z}TvTy}V^u41mhIWyeY1l5oQm^o3MGR)MGgeH
z#Kvi9oqVxN&La6!wLThiS;ZAer_CS9^fE3Dp0y}^UBp{lDuvuoaZ?Brq`@8GBzJ}E
zddGSg#A5%Y;%^njLwGKP2V4xfIERoF!ap1^DxOI7Y57RSV=n$GHk2w#FI_`<*u*pM
zo=Sqx1Y?Tz1(@Uz@`kKlC@PpQg!~~)$hMvjwj5TlKnN)z6b#{U34Z!3qfp4Ia&D6r
z7G5NTgGvU)Vxj+4ftDpCsZt@77E&^V=Y=rMxg)C+%Y;xap_CP}WKME<j<gVWPFlU3
zi<M;TRTktRtRkdp$l5+iZ;cRYhEO-mjnJqSLhTSf3*qw+>V$w0dWO)8p&`@@!5=~(
zWW8ryKLlq8t`J@bp@Ary>p78WYbab1Obx*%#4hL%WZZ*C9PSX(Sj~k>ixA56ay1H}
zNeJn}8;4-_bRF#NY8t|?0Y~!?GK4e>;lfuL+#m9DFPE>2eeF)A-i@|Qp=Ah}A!LP+
zEeTTbgwRU(x;`#?>AWG#Gc$cGYS2M%Fa$M(HX*#o>g2dXA!s2)LI{UYtEr2h3E~Y;
zJ%pdLT}BAo{H}-3()sW@%7TTgFE7PH*!f2C#Aenvm*OF`7LlBmZ9`}mLYEL;4xxPr
z-8STO4q@qroWUD%UJ9W@2wT3)96ceYV+ikT$mtY9@jY&mZ#Lxg9G>+`2wg*<We>q_
zA#@jVd_xY+TJ3F>!+Py)#ptiH^}coQAC*&oOJ?zfsjpG5=@=D4?-2TgP++e8^$^|&
zVW9B7A@mbMy}ytFg6Aiv3}WZL<Q~F)2_ZS0HaLWP8*-*~bPp4Qd>!2*LKrSV6lp-^
z%@9V0Ktgx<cEQmho=t$UA&d**y%1)FFg}F0LYNZ5+Z_BMOl0HK&8$8odr}B1>t;?C
zBzZR@`?%3+`hixP@~2G|ae4^nKFN9~ggfmr-wk0J8)st<`I8eJXg?!_nTfb{H|ER^
zVGc()+ct!`A$%7r`hEx>u$M#FRX3A4<{~40D9Zd0nB#&FF8$n!Zea)?311}mvEbrF
zC@q(Tu$*f?b7b@fSxl$SfmSO*h-YMzuL|K)&e{BFSK4Q<<^(+1VMtQ;nh^H=+=^L$
zm_Lm+UxctWgli#O4`E#h>q9ue2_C|R5H^PJbqL=ug%CD#Y-c;ZVv`<LzU1)WFy5F$
zUe{LJwM8K(*~+1~ET!N}N!vo$9>Vt_><(c^2;YYA*9>JBM`H-3mbhMZVE&4leP&u`
z;ni7h`!0kZmf5Ui583yyY$5zeC4{|P@y>T2S}Cj3#+;28Z2Lp_iRp*H{dL?$LwoMN
zn?5>+NPbB4-$FPO!r>5(gm5&3V<DVmv8Ck4L--|x6T)fFG85^ZEwjz|L^&n(IvoNz
z#kG~vrVdxmvZFcsI%fSD!g(>c5W+<veDnHJ2)~E$hZtB<GVH`rH!MeTnZqMF^-2g=
zrOH9mDkPN~obOB_jQnBT3gLDLf3un)9Pf~Ehod?KmgjB=%$=nrvYhw1d~H$w3gK=I
z$F%$QGMgL^LwLmXnXAwy$3Gmv<CK3Tmm?3Gu(ba%kr48P@g#(&Qat8M$DpJz9KYC;
z!^kUyW!^s2KJ<yL>;tR)3xtspM!7J`hpk>N7)J3ho(rQ;7=^<q61Lt~DjG(yF#6}W
zm))XF`(9yrXvyQkON3D}Y!$vt7|%=eQel)1TP4Q`%h8y-3fbv&Wy2unkf;zw#W1Rd
zQ7vpWRHZODHY$g$VskLOd`qbkw%VUrR1c#@7`4NwBMK{ClRp7rs|DCu_G1doSYJr3
z`Bq4olIc|Hhw(xfAB6E?7!AT`7)FOMI)<TytpV9G3|gj!VGF~~1_`4{80lfOtPXyU
z!pXvi;SM7$j7DKJ4qIZ$sQbWu`@?4TF8l2CF2C7?ylEKC!e|~w2F*q}(yL?TNDEtp
zK?Ay6Li@}xvckv?qg5EeFw`(SVR*yvhpiK=d|`Zgq98Xdvuz8vcTD-jak8@`5Vm%T
z_FSdV8wx`UBf{1TW5RVCHxOR)+x4*ZzugGq=iv%>Ar79RL`5+L859d69!6{Nwh5!1
zkQW8pCTwnB%F|x>O9|yv-K0)obPi)!7{kNp66T@C);EU-h4Bg-xs!{Z+Iu~WuEOc<
z7Do33&k3VPg1;I@&jjx!<h3w*htWs)p|G2d(Mz|e-8YPW?3(A2`*R#FNF5+Z@`jLs
zf}QQjgQXZl1cwTiH{C3lyPji27-Pa18^*vJ_BX>ADRmhY#*e?+M~9Jg*jZ}7i#RTf
z@nO6Z#=Bu_zP}a5q%bD4NyB*Uux+AXmCo+pkJ_e$@pc$f!ytKB-qrG`lbH9Sg*-d2
z`b1?~7{vF(m@Z_7;7q~y1ZN4(7MvqU`?*5qaWLey(@S?^vu%DD3s}@J_J^@BjE^`Z
z!q^(dqA)%V<BKrXhOsz|C1I=x<C8F!hOsPc{fk>3#)Y?2N?%VQ(p#=%IpRtQ;{WH*
z!&oK!(=d+P+c9W$7;8lNOpuDJSs@~$7wVQVQgN*dV|^ITRM&<uwusHfgykk7n+3lV
z<Q}urlJD2-K1b7SVQdfMn=nS*&RUf1;s+mggz;?{+zRzW*gEKWXBgjcDhc1k!F<5^
z<J<1tVYFC~x<^Ew?l+`}d-qcpbw29d8^)e)nftghD1307`4h)^7{7*bDvSeR9F#8p
zC5%I191i1HV)Pyf<7k3MHl&musZ<@7bX=6w7p+Hr_Vam9i1(ymtwu@wh{tKJLSbAB
z<F_!*gmE^Eb8PU<%0<ERf)@n&t-M#yyBTyzyuS<nA^4}@<uI-Y;WuRHXn8%18(~z|
zP({N{F8*PZ&`?st?J(|ykw-(4hPz?h3*+A~9))qAYZPm}+3_%pzr)}!&Vw*NZe}By
za5IUxO0WD6m#mPJHt*Y$Ngj*AlQ8}Zqe{q0<>A%5Pq{3M{#(fcpWBo5n@PzU@@goe
zp{RyusxzO40vb{@o>yhfJ1R6QnQ1Gip^%2c8a}w0M4gUvlls7$NyK6rp3|({i?bG)
zHaeOS3)_>Q*HB91H_eh`H<L<hD5IgGSeDhSzqRExs}|*iGYV6qSV6o)MyFJgB0ap7
zm*uRgp_+ya4J|ZO*HA-)O@m!SO%1hZuc4ua+8XL;sH>qKlhqK8rP95BGl`C*zJ^=&
zWFFS@f`<A#%26R7<Va?YLvAK1k{7FxD#c@4IW#!QHKc2Bv8O`30CA>iU`5<gLRPAg
zhQ=CJ+)QE#sk6C=O*Js(=3>)KkhxToPHCwjQ$s|9t|3c9wg#UDzlK&)T8~6zgH*RC
zdxhr~I3S^_hLDIs!M-=Fda-fB8Z@aI71|RG4N(o9G<4QrvcMYJYG|h+uA#MtHX2_1
z|Jvuq%Ek5?UeeG(L&yJrn=Tq&){vv2hlW=)bk)#JL-&OJ3F+(qi?3?vsiBvK*EIZJ
z{r~dUHT0!xgMM@x`g8b2Q83DjZoI)RFwoS%Kn;V~BN3!WFj&J7c6|i3BN(b-n1=Hj
zE@&98VT6Wei!wgc@TP{58YXF&tXV&cqcn`wFs)(IXbpo;T3@Reqv7ZxNBJ>H<1~!d
z@Ro)NVmVRp<WXz;w@<N_i1x*bOwsVRhM5}P(=b)TJ4{N$bk3K6{ap?Ds(7k>=c=n%
zU#~6w$TmYm@Js6zkLAa0C!43w($J`td#)r~m&X@qn8SIuKsj3?tI#lIo`&~1vm}&J
zUTc)U;i(Lg`5G2zSg7G6&L9mNH7sJ+YgnyejfTY<QqS9$YFMUWiEw&{FSm7AZd<Nl
zrG`};nHoM}Z!Wh^&HKv8KHt~gc7dIo<Wmh)$Uoy4E|9)f!^!p8p9}v&@b2H4)Ypm5
zp!Gsd&2Vkfuvx<a4F_3Z4O=wq(eMLP)38;;(;=?i8ot)>q*n89G;Cu@Dme;PZ9aTs
z4v#@ul;5#k!wyy?zvElMor1drzY}E8_w2YT%}MC`1k;ulOWUjAM^5?5&G%`b_dPwE
zxSu)BDn#;=hMz?rztchQAq|H${Ho!U#&=S{!&8oGI3@;6_BdOtM)Q+`zp&Y>G(REu
z#)|Ib-P*TeC{H#yt>LVOb7J-zSBxsn&v0QW-R?@c^jRBoSflf`nv-1Aa7n|T8ZL8Q
zH*lq{$oQS>QUlj4#rX$k#H0+8D;ln9_(#LP8m?(bd)nl-hC3Rr3%|ji09p!fywJ{2
z?ph?$-DS$D4gS_}Ps4pN_)7yFgTC09Lwq3op&-4ypYuq=W3JT^Yry}<Uf{B(Ax{KP
zHJll!{C>d3jX=LG$RJOOAUR?klaUfZ-U#wVtUW@-@7ms2?dZ8gd9AcFe*}D*UqG<p
zPqu<$aJi~=;zr>JibPN}f?^SjY3-^I!IMMo#mh5_NAO&PU!ioDh@hmDf&5TA*YgpW
zb+bwdmKH1{SXPih<sv9Ayy1Qay%i-ct57Lo-FdDYK@}n7RfSZGpt_J6f;AJNr{_89
zM1Tli+(v2yH{Nj9ji6ox^&^;A&VJ&&<An&`eBH(WY|TsC8$>Xoq_bfJ2l}{3_~MK$
z0(%5$5j2Y6ui>2>5u7jW=`+@PXyuH+6|tT>xCKd`FXU_-v5sirF$c$5yBfva|32qz
z8bPxNUenQANAn0WA{fmkil9XVEhBh2f>$EQWKzwn3Em-stO&9rXcd7cf|nxb|Gnak
zz!yP<;w~eCGS%&V5mUO`$pgZJ5vW3F9Eu<;Toa54>WR?rH|8Y&>4>snMTtcak6`;E
zJ0rGE*t8MyqF`IWc7p9Aa8`HGvaGLgg-(u+Oys=1lORcFAzcKom2K2Df)gi{ZUvnK
zq~p3p&^>~j2zo^D^9d(w+B1SzCFt1KS@hENVk?Q#Td<EH_1A^;ji8^9{t11Vp2A~a
z-iTme#5x*gkRZw62;N?#4B@YUkYR#UhO=`M{LKhP3LhoNSTq<L!8rDE1b;^`K7zL*
z*v7_*U;>9q1S=x=B!Wp1Opahy1hXTU!nhGkk6=awQzLjMf_EdBCdF(1x?_sV&4YA#
zAp5Oz?n|$^3)gaAxtwQa1n))guuhV_zvK7W4u0Bq*L`J91al*pAHjkM=0)&+1Rq53
zVFX?KTbIulH|B(zI$o-7|MI57<C8K!vn`B3>y=b3JL4nH*1nEsjnW4!$yy}&ek{0H
za7hG9g)9?XF39$*x+!I41gj$07{R6pK8;{?1ZyK$7r~kcKI5d0;EM<zpRHfCzGE@m
z++WSh;TkKIKh7%mi&~#HT_3@Q2>v~tG{NtF|6`>{8~fd(%4Vh?!PgP=s&1cqCC`=!
zzKURL1Uy>Q^Mi7uynXvI$2Zk8K0E37hU-j$<R=@I&o^c4h~V1@PDb!+1Un<x#o@u(
z7r}QCd>_GH&SFle2==h$cPIV8G4pcT+7tF?hioj;!<r5rF!Uo!+aYCt1V72to7OmE
zUtial?k?-7m-dc>5gdx(SOmu-m{ULLa0EvpI7+@w+4*8t{-@Tnq~mvN$^Y4MvI>rC
zl>Zlw+X(*KnDghG_G=$2wYJ(%MQ}QT%Mo0O;I|0QL~tR3ixCW|RrYKI=eQs+$``gh
zKiVE#wD<T)nZIADKiY9Ag5M+fBZ5CUqPEylb}RAPj-M{smj37BmbQgG?AJEguSRe!
zf?E;Xj^H|bVN}wM2yU{p_0yIacHSJWx7N;&DSeWXb|-?n5!{R5K9{3o3R5dp*WRn5
zt6m>>`As>8{<BSYxF2v_af#Dm)A0{`CxTKsO6z#Uu8bf>M?oF`aaoQaNk_7dryM-J
zQ=UbTM@P)(ZuO(>Y-X!(CoA@)3a?@F>d2=fzm5V-p^-hKymL)n2h9%u*ZjB1X}`Sb
zKDNzKNJn8E&*><kqlnHOswk$TxDF1O(JO6PUdNIj72XSSZ_0W8E#=<)oRT`+_wzij
zBls|nxh`Wwq2_D1+S@(Xu8fYdI%?>ssiT~Z@;WN(sG_5Sj*2=e>EJtYmp|*sfp_93
zrB<`-8!739kGiYUtY(pFI;!jVZLPwyhXxN)x}>B|`B$ly*I7$PZ5{P>yr83w4(O<>
zqn?g!SF?wlw}ts`@<rRBK@NUA&C%RCm8pS_hB}OBilSSmIduI(;RztTF~v+L{O7W>
z3_7AZOdU=gE*)MSK2}FZnvN_T**Y3A@d`<ebu`hfx7hgFc$@c>k=K-T-TLKis^etS
z47z4QnhR#=Xpzuc>c|v+rn-Y>yyw<RheyYx#!38+2T%9r$)pe4+x<EMIzl?aI+~qL
zTJuWzpbnKkE=AI>TvHaEY?rbtL(>t_p|d*di%rV5ckJs=I0s&^O&;j_u$X(@i}p&B
z+%X+-9i4P^*3nu=8y)R*v?n>2=S3ZDb?kqZr*4ibV7U4WbR9eFd`U+K9UXP-8k>Jx
z4||}P%RfYUu-|^>x^3P=rHhW2b>!&iq2m=DU3GNR(Ot*Um6@#j<aTZzVs)xe^Iv<|
z=Pa?8tm}ML=kaz)J$3Zb@m2BE_UCOyciA|w?@n~|o1pYz7wA~8V}p*qI@YeYkJB+;
zM?W3?bqo-N;wT+&B=|rbgA#nOjv>N_CX``9h6|1md{f6rAy4*XFe$px;vJ)7tdJ(}
zTjE<fCg@nD<5L|I+2dX8%XO?^r*LQ;vJ58cn4;rt9fdL+Q+0f(W4?}ebi6B_K2674
zskLY5m@eM!bF2%8nL6InF-w$rf)r=#n3Ldh*&{=&jaYQ=i}-=y%WIMr=vXLx5zF(n
z>m&AWgDjFpJzYfFf2?D%7%UN_vQ)@2!Bcnhd_Fbj6CEpcTq^AP=t>=WkGINbbTMnS
z)S44vjcy&yz=)se_*};q5^=4LKG&^Z?TinyNY;sW&G_VvIyP~kFp%HCW?Jg_RmUkE
zTiC5SzSHr&j;%Vr*72=wUEP1fIU)(};86LrVBgw~?OZ^*C(V0DdGU3}XN&DWIWl+Z
z;4cNqE*-=rGnCyr_UJgE<DiZobnK<BWAs5g6WpicM~+n;#~#_|^>JuRQq6a>?zD2=
zTA^q~Q-9V$q~#$Uhjsj-<AjbQ9G0}#aa<Dd9kedcdhfM&o^8KSGPTL~juSf_>&n(X
zsiWtgd6)&S-FE$MJIzH#$88;Vbez#~R>vPY{?u_!$9bvIB^?*oJ5wANY17Kdi2Q4P
z{*jZpPv4sKJ1xtnM=m&i%45H*<C>1^I<9aQur7J*br+=3J=^WPp<~Hn$4wo#bj<xq
zA?HUwctYHOUG7_6`&}LPxNfrwy=&js@fX*59shEST}b*{#{(S?xh%}Gk8Wija#3ls
zDd+x92RBPR((#xpzm6x&Zk+wY1(xF;0J{D6oUwaNVgctf9eE5S8Avv)#VW6X`&ZkU
z12XAW4szRlX?+gb3K&Q+U>Ade1_~LdY@mvP!Ul>MC}W_kfuaVA8F<b>2?L&S*1o>t
z2EN&q#DA(hpRS~V=M9uHP+Ah1@tcz_+n3IBIV&x8jGnD*o|;z9KzRcd4OB8v!N9wF
zlQxyNiuA`t+uhdo{;s4kKUmxUX7ngn)j%}^wGGrUP~AWc12qlQGVroJE2*88^~YMP
zz#;qGx=Hz)<}dPL8VuAm(7-@L1N98lH}HaiW`Ecj<aapf<`%MZ?;jO9#Xzb7n}Ks<
z9ThceW-a`?NifA8xNmb9a2jwKa2seO6=7(af#Y2Y4%n1K{@R3^jYV%FNOAx7u4V?B
z8+e1aEDU5AXknn2f!7RN?C5A|AYwolo++3mm@U{!&||<Wg!VoI{sa#g2ntsPLkT@B
zL=#L^TNwtT2HF^S(ST_nW*}~$wShzNrswCSHR|K|d|n!#y=r~!{M~7wrnfcF&OjG7
zrh)bbUNZO%ZO6T$t`1V8VofqS8tAaWx?myiWS}$qy-5b$w}sR8_H~>%<#>fky{26a
zG_GauCfHptN3e&1Bexa0SB3Nx9PpRY+dv-!{S6E-@YVOu*9}ZQYU^j9FMD~tjgC(-
zKHsQ#_GI#L|D{iDuUzc#!47-f<kUe1wj0=CV6cH928J3KX5eE3iwz8yGEXotkpp<1
zGQz-{21Xj#bJjV^z!(E#g^xBcf31z;I5ygn!s89RW#C?wCMcGAY`mM3WwFyac74ty
z7RkWXBaQ_IrWknJz)S=08JKF|9Rt%1oNw!R*T6K%^pw4*GsW>+TE?#Gjztfed%Z<w
z7&!B^N##q~vkd%vP?={Suuz$8fPYBl7?{fmby4vz$!NXJne|P^`vyMXklt!9Sl|93
zi^myJ+p+ukRPIeBStwb2WMGkj-G4ZWk4fTWPu{02F|gFYY6EKwEHkj&z$&IQTPeQB
zxx&Co7GQ(z6N$_2t3M{`-*22Jw`M7)9G|jkb?qOPNG<Jie`eqd18WU@E|!ISMQJ?y
zkg|^bBFcIL^v-GM*kE9z0TQ}R{1r&>FAZ!-@KfzGS;DObzUFE`n+3`?R`xR+#Y>m+
z)BCM~od!-D_|3pB10U_k_?ec`tnUnbZ=m43?A-?T8rWx`$4<u{13$3WT$!UQH>LMS
zt{4N{bo&k5aTX*AHLU%Uh_{^u4;VPeac<zS0e)xZ1PA|w4o6t96z4Gm7s@)18kqFR
zxi2g8IM;`nnZJkuZAL^Lv_EO!SBZE^kV@ZKX=e<aHSo~DKU^Q!;|8u9xFH3;z`<kS
zl7XB7ZkC_!cLP@>=nug^4O}+xNl7c{*GV0SS4AheCS-cL>!yKQ2L3YeH@nZ1d7I;q
zYtH4OccfBO?uyQuZk%Jk&-R~VCx4J=2iBU7%D)C4Nt#Jft1%yQbZvK%(EVrN32S8F
z8Qpued3~BEirtrO3|f(Cr#CqY7B8=0z9>p0rRR^LKos8U>D1rblrw)^W}zqwNAb)=
zo*0TmQ8bFmCaRby7De$W=0~w0isu+NiZ)Ta7)8k_o{yq&6iuQi6-DVNDnwB+iZW4@
zjiOu><)cWi<mhw7nfjacp#0}S)~PFhW;o_1rB-6%QPhZ{W)xMT`0YgY{`T(DpE#;U
z!OOjBf+W?WnEHOk>v>XZMNymf4eV3iupXG!iQ+&-r^1Z3D2Sr25b}CL>I=Rg*g&wM
zV70HZQ=@qEh=a}+g<ZHq&?)Fjgu0_hOYlZfT=`RBl=LW?Mv)ywt0<a9(L9QbC|X2$
z0=RS0PY!<4$2@L-SSf?g<y%J4cbt+L#q6O9T~^fk91V$w4IbrH38GQ%<+e|c*ljku
zFA9IudO3?N5Qriewf3>7f+0bA!%=7n9*II1zOQu(gUl#~RmhA-k<!4<n+Y*?0ki(h
z);fw}rPD7=%c#-X-8PDLQOsg_qG%t*OHp))qGQy0o9y<Cv{xoN!grKkN~O1WV(SzI
zFXB2!@#wIv?lPrI6fZ~dN)%nA=oZDGDBnP_u7A5n(L0K8b$gC@sq|p8Jhi<VMNd(B
zCG^*#*i*_)gFaEbE>Zdl_806I1rMrVIs?S}2J7{@o!)`st^HxfkSK;mF(HbHtY#F$
zqj-xYoU4pr??f?vl6^cY)zdaIicwMgbIH!jw6&i*Mn^G5^szK+R(PE7bx&+F2PrhB
z8~d&D_W=jVq$nmw@vaz@xu;|*o+(kh9YxETX?2>|AN`v)HHvp6l*Z>&`!wOx1!oA(
z6nsxGn4V@UmNh4exlzoE;{7N_)U)%BMCW~uFE-`eK573TitpBDoHpG2?#+iB{A=v9
zHYp3E_$Z2dQQT*1MDcMHzeI5&icc2X>IdzMqgWEf(kPZi@p%+qaB5stmPfHVii4YS
zR?tk8mF%F+%Bm=`+PbWrx|@|xMNvO?(7Psz&%}(p_hQG|DAutgQG6f8`Y1L;u`P=2
zQEZH2QxsdG_$rEieE*lTJ6M%x2!6>Sn(DgIqNAf&`hy9XTdnm6ck{Wvj)Gpg)s@n(
zZpxuT;~i0+MwhlLif^OX$&r&{iQKft&^m&<IV2?F(I|e1Vs8}tqxgy97G+-)*T$v&
z7)9uWi=Sj+n#7+u*(J>*oN<n(_ggkSD7haJJS@n>x1Mk{EbMx;Dd(+c>Bl7f<4nJq
zwFmMf*FCORYn8#zY+bs!PDOE+W&6l}ItqG!<BXV@c1Ae8&v$d3lhE^m7X&XxaVd)5
zg<ltB^go3B8O3EGR|I!#v0r6UNsen#Jl$gF2c2$krA>0&l+as(jC)(i9Tq;J#78;)
zisJ7m9!K#X)BIlH5#-T;<3SV;In?hdbpJ&0ukc5LTbJ7?PAcPk!o1ksSKZD6j_LVZ
zbQ-EWiz1JSBooOd@|q}V;&~JKOw^4#=t`K#Z=!&Sl!Q`5NI?^Y5=vncys1UwqM{TN
zEN<dCAv~s*E;qHOuQun7f=LH$t7<z+nJ8_7q>Nx$L3+yxDQ}{JkctVtl8_#O^r|MR
znV4i+R|nNi)G*QAM2?A?CTf|8n`mvKwuw3>u72bSm;j4mqM3=+Z)MaoQQw5!gu~>S
zzZowGDkd5Tx%^f}!vsk+c^Dbb>dmm3nEze(S$nd(zU+3INHfvMgiFlaf=qVOq#Rl{
zHqpdHx`>m<WKb!wIcG6kO-&5!mqF6pM1~2H7A8C<ye3+j$P^{ZL@OcLg3OU-OrgG{
z;FH2o@tfFj#J-}qm0HlmveOFZzG_-4K*&T`2)QOCBB+}%5_;5xDLiIk=eKTJ4pyu3
z_DgJ#(x+CZHYQ#)@z;4rTNCX}v^VjRi7qByHo<#AMe678V4|am|4uqPndoeSx0Nam
zbUj#|%?ERDTynf33dOFp52iIKl-12dr@9&C@@G)&VOm@32bugo=6E<K?Nt*!O^}o<
zlGV$^YaDn*vU&^l5v2EZA$?8s6VgAS4-oQ(;J`#8gG~%Et-XjtO}uGhq=^X?9K!^M
zn;5}Hn5<CwZ@A;fr;br3#+n#sVzi0(zI8HajETO(m0a#0p^P{27KhVA#{?4-B`$fN
zu6DX=hn2}DrkHr!#8eYMn%HmR9TV@G_|C-lCZ?H~Zek`=W@lwJonfN?`9e(=rY>HP
zO7AQavrQE4<NDgf920Zd-6ocp+~14ncIO8i693xYXGcs?er@8se#ZVGho6ZBoNnut
zf1UP4LKd3%NXXvxwW)t>f<biSD%zKt`2Brl^nUvm4i6K{#cYL%hJMHL>$Xo!tQ2LH
ziO)@ZVd7KqGLh9L)+G36LY9u^%Uo8zbQ^`NGqFCQY+x-kJA*bQl+8lEG{K0}zhaa2
zNhaAU`uY*dHzu~3*e=!IVd7g8*_(6N6t91iwbR5d(dnf~g=AW?Yqw1Ey=>KF*B%Zb
zA$eb_O7D@T?tLbRuT8W6Wa4KNJeKa7i327Mn#h`IU6LQ-cr$U<#5r1;IBMdwiQh~d
zGjW`w#l$HSzpxWOwVgEa_YT|0nvN43JT)B+_uA+^_=An7OV=-MUp`V<a?!@WItz=W
zp5c)ALZL!DZ{mW9KTQ0|r203%XyOvv-vs|5eENfJ@n&1)QmMDH>~CGPT{dw=GP-Jl
zPi>lCRyOWZm~X$mHilkWZo6*chKZXdZkafr<hpC(o{8Hg?yz1LT)y#Xlh5WQ-Zw#9
zai__@oT|d<{aeTb!H0tXaK*l&Fz8Xj<}qh(f<F=RloNb&4sDWRNRDB996RF38$-Sr
zd~x{W$R9(27)r%ZI);=O3dT@8X05t(g@hD~p|Fr5f<+Ud?ax`S_T0BSpGznuVkjAd
z{Zta)hkZT<wVQQEv`h?TW7r$Rz8K1hW#t&E#85tl>7`v2V%Xx!oII>j#TY(tWmbxz
zm%AWI)flS9uqK9SbCl{a)Sw>2YcbS}p;in{Vn~mH=ULQ_!Nwe8s1pNXs4HUq7+w%k
zPmtSR8wjC&Lm@maP)R7MLU`kap|v*Eb|iFX46X!s$B-txkznJ5UUPFw(-@kuC1dc%
z&^(3=3A+ACMvE9)#^6a<X2#G;c$Oef6U&ZScZZlM9lc)Ba|;}ZAxLiwZP|vRM`F-p
z2*tR^$*MKWNz{b9C#D!NL}O?zUNeRc6H{WsnZ@ceN?bVeVoNeso0zrnl|k)dXfHvX
z1YZ*D5W`y&Q)t#vytx^5j-g8oFN?yU?m}LPp{tN?3BC8kl$-?b5yPtq-jgHhN2{j2
zW9Y*UWxvPpdJKJI7#+hHG3zHdG=}~$42a>4MBKqb2F5T*$X7M&OlOGj+_DWzSPqY2
zgzz^7M+%Nggg*J8AR~^A;kg0!cSIZ)!+2IUh6yoD6lGFwl!+<1#<ZU-%9I%17D8oe
z47{Ktc~_L&{+bcPOpd@z*P@v9)(OYkdlEWJaCQuHgv^a$z7R&AC**yO`GoRe4EIm{
zZ#*mzabXM}B|^=)g?RV!;}{l;vLuG3F)T}jeiFlS;VT4B-Lg8GZl!ov#qepua&-)c
z4qCZ<7Q^Q;e38(1$FMerbup}uq4P@H`Js-jGI%z`uu*I_B`h}!`I6H%p?oFegx&dd
z4BrUfCb&azdkh?G%<<b8cE+$P#`hrby(qb@#~=>5+}@n9&9x_nAJ{3|T-1p_#;`wz
z)VQ@G{S?E`F*JyyVH^iyI2c3yII^y}4#jXdhP-j)i{nTPM`O6gK_0`g7>>vAdklZX
z@JkFQVmKSaxft>kah;6eR1BwM_*J}AzPBaQk^C0JnHVaGvQx1Xy7OXoLG<lP^2Hb~
zu{si(Yx!pkmtz>EBwrQFM@sS)A)osT<)*-(8!_CB;c*QA#c(Tz+hXuf40mF<8^hl*
zJc!{Qhd~T~Nf0A47V)N%+*QcKMB)^gMQ+Of#_&k=iN#ZM?VpJESqx7T=~&U@AST7Z
z`-sVLs}V?u`Qs=MN7*>a#gP(6!8l69QBn*F#ZfelV!{i@tt;yyas0pek`x#3b7H`x
z%BNZhJ}=%<g0v|uq)fu*ZzZ{W92MfI9!HHhDvJKu6noV;D#cMb4jM2Kx+-z2JxMlx
zP_$YcwBc4sdTYi}JB~VW)RMTlwV;kT>LqfiD`cRO{HdhCLGnTz?cY{NIFOV$!u71*
zrWR-N3_GIO;;_fzh{G92%Q!OQaK+({qj?+|aiqmD;u~ADxOLWiBjNNmj-yH3+RK_Q
z*i?|->rZVgCoNmV@m6|PF4BIC&yf{Jb{w8Kypl*OX7o{2>I|i2u5q5ORr~cVABZCu
z$LKi5#I5g*Z#~dKjU&V|$Dzg1Cyv+Sh{U1C@e2Di4kM0e952SvHV!k6SRAe6_+hmp
zZCqhu;beO}4&tww&NgxQCKt*T+p$67=oCk1F@7nI4smph<NsmmETE(~zAnCt?IOY5
z^`f(*3oNj(ySN1srhBGmrhBHlXBG_vcb5Rc-Q9x)_dsyB;7)>jaQ|LE(%<=?Q|F#v
z-Fj7BU0q!>JKNHrhT~fRY4#$uNkeX^TuMwyDP;s?du<E55pkmpS0^Wxp%rUO)|iWl
z)Mjfp_Fb`2KwCE3v2Ogs=vePJmJV+8aieplgh8*YKf6KNk+l<RXVxxmbY<wqN-^Et
z=;20B&i10iR5*!DO1;^kEH&7d<`1__T&i%z=a0(|bYlk1e~NKqFdZN_hSCD^lWme4
z!`%4Ajj?W=ykLD7n>gH!k#79z#t7>C%-ZhC&UD9IqulsfIdQZbW8B!<+Ld!~^7x~!
zxeMZ`Xwyr_I5);~K!%6T3Ea*^*7L*Ssm;m@U6b7yx7#+wjj3)-bAy}~3+$xRnG4oS
zp5?}DH#WGj(TzE7%yr{8H&(ha&yD$REOKM98w=cM`NXx*jmt${+VZ4_N%^PN$oOPg
z(h@h8y0OfS<s5L}VV2I9VkvTk>CnHD8!S)SR@Al1jn!`BKg;Xfpo(O!abv9;x4R@a
za@l{U^L=>|CEvlA^}H2|q-||-<6J?7(l%O(P2NJ|U^4y5Po>*wI+e5SaAPO?-FCXj
z-0j95nzsVl3;5HGz4V<^Kn4N(+}Q8N9XIZ}ae!up8|U4);Km_04$}%xqvysEH;%e-
z%#GtTxBJ_sp0W2xAD3Dt<>P)!-hQrqbTR*5mQ!w=rp@(AdydwBnv++JA6Mz$NoQ&K
z8shqkmHtgbynBsBZkKq`jZ1D^cjE@_pc_}*xa!6=>iJpAmtOJoH1%T5?PYV=@@<Oj
z{MWdS=%yRD-1yr~FWST6f2_CN$g?NO*Vlf!x8>~sOY1LHKMqQ9esa;(Q}^7s@5UQ9
z-n#L?jfZYLbK|)ikKA}nqwU61+T|OLX)zUY6_M#%C~b&-4_tZLLEivhxbZLTW2U%Q
z)T?WbJS}YQDVCS)v}%~<{Y%ShIyCED9XF-EbK|`mX#`w^{ev4H-G~-&y^#Hr8=q+$
zCfMezOZ-Apkq&Eq*WkFsGkIO<^Sa*Ub43aCDs!2j$L|*URUxf_bb|37nJGCOxu)5N
zZAy(15Gx>ufSdv{3dkfNi-7M0&>P}13wVFoBIit~{n)voos+JqlUu8uJ@%{u#!R(j
zW6jP=|AxyYAh&?#0)7ynWvY=!KzzX2KtNsr`2^$_P(Xl1K%9Vr6p-0bTEOgBM<D@)
z1r%Y2%;Exynp{l4vI^gkS;BNm3MgeV6_sIz>6B$C$68)M1=Fu6pb~QnTOze)6<`w}
z7j!rUe4&dx1ULj#%bD0`sGYJDGiOsOg}JEzG;{*02&gI`#cVA>KuzXqrc+%&4U-cE
z(8V)Uol-3UN$e+^rPPhuCf8x8E1;g~)EDq`e;ZYdU2SbBpb;IH)mBQ41vFu9%KE+O
zHxuY#FX<?NZX5iOM*gKu7cl*zr3JNl)aDi-2oME$I2&Xo-zz{8;Nz^H#=-Ohbe@j4
zQ2-@HFrJM=5aLqRjL{hAAt!X=hXq6gqzY&$7&j%gVja*ViMTa$8&=A;70}M)#`{Wl
zpxqR(NWfwN9R+j}FkHY00i6YO5zt3KUjbbO&~KPay4!mS=*CRh?gDx+7swb#**uMH
zy#(|YKtLbpr2Pc+7eIfU4iPXwK+FXv-G4M#z(8io4x)f%uDclxzkQy3LpgXD>o2TS
zw_3*<BL(~_V47fj{~RTN7LaiQ#tRtDJcf0wU|cV>BXdG*8OH<xhb~zs3;49cMleyp
zBzBsH;=Y`)PGO&lrV1d3V7h=A0%i*Iwu^)Z>Eh-w%%anQVM4WpIReO^OQ%MkWa*-p
zc)oxIY%UbA^P)AOb29x~dWnFgbiRlvCSsX@<pLfGcto>8z;6Oh3OFTTrGQlewg}iN
zV6}iX0@e%IAfW!X=(PfV7qE^d`KiE6pObFDq`zXeY`3+nku=j9y-~m>8UdPzrD{Cy
zZT<a@r9f`Sj>h(sbP3x8Y!`4uz)=A^s6PUB3HU>xk0%G+>^UN}%G@T-3;is+jdQ_9
zmz(aPsU={q040m<Fe|}60sBopz;KZD5KW2xsT7cTTo%$+^RgTha9qF%I$Iw*>6*X{
zn=HfjS+%hiS}IQqI3wU1t%L&33iwOF1zI6#Brn9A6EJy4mh<$9^P4T(QA;1eR=RNV
zCF-PrD*~?4DzqfI_ZZ8ArIxf4EWuNjS3Y~10k&)lEjI+*6!4FLI|6Re%5XpGwt&BB
zW}dOX+UeXhE`DBN``e*5S_bb5xF_H~9Tz%7bHo)+ObqvOiu)|I%b8C)>()*g`ZW2m
zfG4!%ibyZwseoq!J_z_I;JJVo0$vMvL)ntC|I+jm@Jc}DleV0H+Y+YRyt^HlJ+<dm
zNqQ^b9j(K(itb567ZtQltwNs{k%QK8^&PXmSU(B)EFg`Dv?9I;_$nYuM6`%T&mFdn
zwv_IPALiO9wHjxkkDh&_>1l*Ex;4*IIOB>&whSU-L}V3_O+>7Sj3UZuw(mq_5|LR%
z7SWjh)81QmZc1&})RuFVoqkW~aLBTT{>kXclwAZJi-IBwiO3-$r-)o4J;=*JpAqEe
z=DK-U^Rnh+r3Uje6cDkH-=08k6J8QusIZ74A|@4%YyZqbw|3H^QCvg`5e;caM3khV
zTWPH%!Xl!Sh|(g;@Yc&xhegnXIw4{}x@xrD@**mTsK}eRvpK<-Exj$&8f`b<<=VGC
zSB(=<Sws~PRuMK4b`cH{@gnA?HP(dEql?lD^_<lH)2c2J=QgG0wmRv-3&+wstBObv
zkt8BnL^Tn?^v*;PH5sb2)?l5w+(p6Hb0kneEzwwQsO1zIoUNAnqH$9sL2VII24@{M
z>$28krDrKnX#){M?bQe>e@bdBqPd74L^Pppe@be~O7OjiW+p%0l=`EH79vy;nh3WD
zL4;3)Uo@UMCW`Qg@X`(ruw?neA~BG^ZI5HaL|ewqsR0o(^;|?q#G^D03R7q>lbsYZ
z&gUY?(#Jw~Q<ATX2#aVVqOFLCh*S|RMYQ4uDIiEU>V@L!&9hv6ZfPx|YDE_TneDh6
zKZ$5BV&7+n5VldvRnOTbxm;7f+B%BpL<hnPyBD2BbP@572X{Q^Dx#Z+*CO7C=q{p%
zh>apPiRdY!mx#e4hKT4bqK}BaBKpyYWlkAity%-R&1$v%X3wO`ACoU-P3}+oKE*bG
zbs*~?R(e&?P!YpKED^C(#4kKsMu-?mbBTsxl8x@MBK=jwC=s(n%oZ_P#2684uG{Kd
zjV<`jJC^3Eh{+<xi5O2)ce-uw7~2F96X~D?U45q7DG^K&F;&D25i><h6LHO#I9){X
zNFt>_i`Yq*4spK!DI-B_tbI>0#~d0=5sO3=USXZbO0a-oK5JG-A~_3b27Yzq3db*|
zIhl|`sr2U5Wg?b~sJ_^`R>TU?xW{BQ&4lW<-)K}1TQ5deSSezah+FORcWG-AhFR8#
zDDQW^sjX0zqf;!u(_s=pKxsY02AV~E?UdatVvC3qB2J2^HPX`AZQCm1;Ty{~*6kv8
zh}bD&mxzNR4vF|f#BLFL>2QmvwB1ROdqn)n!F6{#=@RiLlATPt4QjuL19X<{u~L>&
za^d*H9Cnno)-vl6hTY5T$3z?#QNOBDvH#$B(o-Vn9{GDBzRt3r7I8+zSrLDUxJzfK
z-F8mIc^YsL*Xe+^uW~`eB@vfJT%;*vvC%tf8*fg%LUZq^i_%p#Gr8@{$Jr=*L&Qy*
zhax_lw^O>s@HgviYN2{k>&>Z6QXDh3I;r%I2zuocy^ZVWhpN=_eOgi`Sst(wJfw4q
z`7!Gg)~9CaGlu6PUNHP?`Y%OnC}Mj>tI%NMEB9Lw@95O?AmYJ$>ISVs9wdA4QN$+^
zc|FMI!P5ijKhsBy2N^v0LSrIg%Dkv357K)6`&B>MgEY)lf2%}`VLIk714~kh@gUZN
ztR7_ZAfpE}j=3mh_8^l7r_Nf4ziAc^zB5bp)~@Ux<nTaDV_Y#vug1>lL2eK7c#zBU
z-+Q!ag(07^-ypvS1w5$gL4pSbdFy3707D@U3VSf!mQ;kZ)L>DDVywkIC}H{~8A^Fj
z+H|^HGp-#i>w(>L$}yB@t>8gL)33x}VU6>^%3x#Nu)=s_4kd>NPIic04Dqa$S*y_A
zDgV6_ryA|oVrwGp%h9yeJ*eTq==m0Xw{cA!ePY)1fV38CBx_2F2em!$c;MxB>UhxD
zgC-u-C3Cg$@XUH1(EDoZd(gl`KUdlsdeDfW<XrndFO%xnjXQLjdeGd1A3T_KI`(@H
znsHM?UE>YlKYnA@7OXwySlkSk_r{0}6gGKtddUNy2MQe{5BwekXfINYAIIooA^#(<
zY(^d*VceP#@<8=Kqt*D2GL-Gv$D(sUivnr3bhFSkeyJX`^k9q!V?Ai)L2D2CdeF~<
zHXgL~ptA>EJou|+`gR_)_n-sU{fTw<F5?EVpFN0qYw5^N!78@uHyxdrqq=43%FvUQ
zBD;Ceow*0=(qv=SQR+q0=CP%>2Yu*3^s}d_?0mY*+Mi<vd+6;g#-q{(aCRW;AP*Mv
zo9>5rFw}zy`5ePofA!!O4~Ba%g0mx8skF>A3+ctdmQkiNnqkeklyM%6_h5$yJIV22
zq6h0e*x<n=4<^%br;d3r#e=CH?9Xca>PQa~A*C14lg{v9rUy$sSVl+FgV`P|@L-__
zb3B;q!8{M<)A23qx_8*J`hcOke{hn1{?++ppMzi#?S%(RJXm|j$l9{n>j}<FEu6zQ
zr!Mzkg$JuWSmVKO9#H8@4_0|_^q|Y~+IeA=bJlxjjWvnn*QlO(tp~q*u#Q$0ZlBD1
z|2U?kkIVhsk-aK5(%F5c%oYza--_BqqsIf-Wr(pal(y2$q2a2Yw4Ie;-saR@9{j;!
zXFS;L!5$Bed2pO2!!AePCeA;(XfG?Zu#ZND`GDyh^x%-mhZ&Br9;KxzcY$x)J>kJ=
zHs6i3o%De86dlU4E`oxo#<_5orkn@oJUH*cHIBUC!9|bp|F5eaT=L+u2UqC4n{UZo
zFP@ary)TaXpAC4oGMV%`*Sf)ala-pi#c-STZ`LO@(%+>KW}a9&&3z9ZP(QuM?!`me
z9IekDe4<I{!4nT&(h1IyPd&!fzb}}ddGMUGcZ)@n`7fK3F8;T|y!PNNJ8xL&I{DV=
zqu()8f8KlWfu`K%)Q)Y8Bl4M+eGk%mk->|v9FxZT-^w4w5Y2jJo3YTPWlraXg>Q3+
z;cRBsSk{cJ6q(734QY+`vzX3zUSwr1!q*Sy@FJ%dMZGA-W-c%Cn~}L0@_3P#As_4O
zfYDk3=7L@n@}e*^nTH-3|5+}=S^D#nxHxkeFG`p(CA}zRa%nH_M$*y)_uxfYFUpy|
zm7%;B6}+hEMJ3uzuko0^I97UbZKma}(y2-Gpc49tjJC4*meb*d(~Dmu442^YBHoLL
z7pY!U_M(axjlF2XZC3Rn!Ha6l&NC&edr`xSI-E`PqNW!q%(c8oqA#>X9mh_jEv6Vd
zLMhpcs#}al4b=8x-CoBfe&TUmFY0lX`mBw-Xh30SjQED^WIP>Hwvh1w(bS9Yy%4+*
zy=cZoWd7(ybLJmRr~SaF7R+wegrfg#-NRYU3$GWF7e3AgypS3EtY3ITiWh%WwFcQ~
zGNyEhfgF{6+NjPBLD-A=7UT1-r5CNdm_;MA&(_+DHePh`qN^8ey=dn}dm6n1mU9a&
zU4OOx<i$I8Jl#r3+QEyaeO*6OXV$qodNF>QtrKf!R?1dQs7;?rbk|`wI=*S*x_i;X
zi=K2u#F#N&jP;_I7rnjc<3-y3#&aHqdePVHTR$)QGY?=L$U4X@9n3I<wc+d7VW$5J
z!*JFSUW_#TU%eP*@@R&R0b{8d=fwmsCbBc$3;m`sfhTcxChKI@DXddjr+G2miy6!l
zek@Ayl&VZ9PMUd8%xo{_crn+Dd0r?If)eI?vA~O+UhMK>p%;t1*h-V|y<@Q#OK2i_
zvEGZNUM%zCH!oIt>8Xjyoj+BjwA_moob_{-{8e78@nS6<0>!r4i({Kp2|CHiztfSG
zlNvv;5)*8ou^nLB=*1=uRtp3Zl5CqfW{Vf2i`gFhT${qkq;72E&TMDh;l+)$Rx<za
zVmGY=5(-Gz<Het}9(wV}i@jd#qZlv!aE1L|9Pr|}7boca(&Onb$Ab)qyg2N|5t=qF
zqmNQ2X}B(0>P@$tPZMW-XGy=zVn1X#$&pm+f)}TlPqUt3J<IwR>p9l*taNW9Rk_G~
ziS;t;71pb)*I2K!X3J=&_*-7wHqFVctmOR7*?(B?u-;|8$9kXj0qeJR9((bG)?_cD
zBxA3idhyJQ=QILathCoJIPx9qzpO7=U$MSseZ%^e^;?_onLn_8Wc|eYne_|nx4ou#
z+Gw-{+L1I8(n?4t83Ue4!p5_f^voGpV_0KZGqQf$R%QuVIQTmWxf$+lPR%MIn*@UF
z5^}JaQ$kYd_*@bO&W|IYBGNoul$SN1S(mn3P(mRI$r4f|6qZm#LYxGvgrX9P@hDLb
zi*p~!N=SdhQi8c8Ybn;!tYuii`mML+n9H+PV6DhniPggTEz%~z&e<dh4hA|L2@;&l
zF4lO~%B)pbtFnG;p&D~_)*7sdtTkC{v3`rBxkQcEmQY86UqV1aT?zF#z{gr&!uJdf
zSR1l7Vr|UYgtaN_w>FzeXfELg2|r5kN{}SPra0)CBrPQ5zgJ#}NpMRb6<9?H9)`}1
zDv{azob{9Lqbr18XOE+f(P&fp)~w8%=p7vwlF)UlwUdO-5>yEqZD^}amyjx<C39Fp
zgn@q6u)nmmk|2B1XM1PqAfdH{!{h92SP9xnXlL?I655;mE`K$O|5-vunojR5_5+qq
zTWwuvyApay=q;g}WPFF|!Aj6w!o#2P66`o?=_%n){*us#OZ!RaFQKm)`7LaKglA*p
zDW1|mE*d0ZFvActa;Su1%-^bvkT8-?6F<`V@vCG!SDDfxA4W+SEn$p=v1CekAz_?^
z@e+<oI3{6&gozRsNmwk=i@7mb!W;>6B}}2&yCs#<bO{Z{#ZQ$mO+vFFNyKE%kT8=2
zX0gs@rJ@~kQ%UF1>98d=X-n#!k@54H7f4u0E9%I2@+md-`<6&pN}ZRmMZz)(%O(6S
zVV#5(5`L4gO2TRh*$dfHiaS=)4B3);qEGy+Lbf#$ZeB|!UMrz;T4})<TkKOCWjoij
zua~fa&Ql4s))yK6uWj~8J8AyS_DwWyC+q}UC2XUSm#|mDb_qKq{2^htgq;$oh3}&h
zc1b98ur~3&vUb`uZEg>p=EWW4%qn1$iX`l#6P$Z>Si%7b2PGVm&?X_-X?4)HD4r@(
zmU?(ZLdC*1YBS+)>v3vd!fgqEOE@Xvl!SyM&MTDtXg@9CFA3+E&qz4SFm#QJiq1>8
zAmOrPJP*))#CcJ|B?$zSHm`Sf*=PV2*^fG}O1Q>h*J*GhTuob({2T0u4~&>w65ez0
zKN9XpctBH;Hgv?9xoa9Ky~~mJB;02pXX6p)BMFab2D0;nJ52sl&f<4h-o-{m`wc_?
zmGDx6#fLZ_UP*W@A(s!ieRw0`EuGgsWb}b<f_Nt(is8M44-!5~_$1*Ab>lA!r41_z
zk$#pyKS2{jDmlMOxE?k*+J`h;F)eF))^x0`R}{*?kWkGT!_YalbS57@jZMz(!%rEV
zlrsB}#pLf8vigvX;g{D{DIf=PP9F|6by1cyj}Li$DB%PB<etxGykNJW4~2Zl&rI0@
z47I&U#D#q*X8J{ZC~9)C3(n%qkvqoyBPD$(<wI#7gu71qeZHK}xLmf34`3+kLui6=
zG3_e4HSB5C@;+4Xp`s6!e8!Wm$!W_<PbsweVDlmDL&OKW4-Oyd`_RB=EHzH*_6JA2
z4=&C&zwXEzlcll`ReX4qCGJDt#L9gVtNM`OLp2|&b4)U84OY5zKhcMp%(Yml%_JZ8
z^!@MmiWD|$`%s6Wt{GF$hjsmon9f^L8~V`5hsHkSxbC2hHu2%)q-4#9e~#Ol`tUth
zX-0$KgUH<6haVVzG+S%ogWKc_+l{a29v@`W@iIt0_!#`AAMk<pj)E1_2{MFORUf{b
zGX65vxhK?_eup!s`q0vckv{zDLn|Lz`_PVNf)ByFQP<o_ZD>b?q_#dxyJFqF&qdna
zhYmh;@u8~^tFOn<P*a0HbNd}xJNeL=f&86oOH)8MANu7_8stNF_Ivoylc5)DKOcHC
z^kMDGN_F?v%S_szvjbQMvX+c9{J}m9;p|Y>VXWl;!Z4h5gbxMw8^6_z@?kVP3w#*k
z!&sUO1OEF9eVh;bd)xb7u#ER%f)5kTc4qr9$%n~4OfjA53{z<+OlR~v<Bx?IG`&q{
z77c99+GNgQXRhhb^I^Wp)eB~vbRlt}5AXIFeOv6q5+9cOu*`?cK3wr(xeqI-S3Vr@
z;Wr;v(%hqSf2DO54Y&_GeMnhsS>wZ6A2#~1$%o%*;`y-NM-PZd@nlLl^U~2Ev!NSk
zdSpzQ@yc;-X5!gQDVu%R#?BTWw))U_rKNI}L`u}!b{}?dvt(9H7e}>rapWJYyIIN1
z{>t$uop)u79~<}5UcV^3k4Cs*a)Iwt4$@?9S>uQgN9kDiwjA=IY`YqVeR$F*iQpLZ
z&4+V50w?HP@ZpRPXMH&3!)YJ(%Eqyvr>f3dWl!^q@j)MqMAw>Dn&2-w69w11sJQb!
zT%Z%DPt>y>mWw`I@`0e#7AI-hkuG78^{Nkde7NhQf6(AMP0k_-H)!GV;iB74e3PB}
zGc31hd8A{+S@M^atU)Hhi>ZnCe0WO-#fSSoJn-QmEf+p)SQz`thsU%dK0No~g%3}C
zXff9^te5SX4{JKx2|D$*_5UvJUk-lh!}u+!l*nHnXD`&-_Sy$3qL?>aL{;AV@PW=m
zAHGtWZ2joNX9nU=KF|}T2<U-1^rm%!D8CVt#*b)*xf|@1rPS4e^nPUUW2GOf{D|=*
z)=&QoLIpoE`a%Cb8+R;i7Qb;*PbNPy`;AMmC}qeU_nn{au8Pa*M>an?t+r(MBflSX
zIbROW=JX>MLvGf5ta<!MyVseQIpY&o@8fByVgWx2`ccS_8MBO^-3t4S3;yZf(?$F!
z>NkFxE9M6niu+N5p(JZ5R{B$pVoLi_hO@-93A*~LEN9F4F?Oee%!+<g@}r5LUWSNU
zF>w|@I?B!~!)$SWSpBfkzW7nyj~aeB{BZhF*^esZd*fZK@qYRNIW1-HUrlq_8()=8
z%2xB!pFHsiew^HECFm{1SCHZp&C<Gl)byj4A4z^B`;p>DZH}jkuf6e9rLi}@4m(tl
zxXCMPJwNLE(ZG*}el%jB%~8u#^i3O600)2XM>9W$_%YOv=6?L(#{fTOKQ}Jx`q7Vo
zAF>}U{BZk0|AQ9%kQhW(4=ddW>7~Q8)l%?OEUAx8KRa0NQv3+|(T`@!gXC95T_Hb&
zgDC_m&6Bn^%@5s=upbdWy81zWDr;Lm+WFCvnaoxUty$an(fEmr%%9BCj()T^xq}}+
zGmqVA#B^frY?gMReJo&Xy&F5-{pjIGPv$<Xz0Ano3{AQxQE*>BMpel~(4P){_oNmr
zvJemSL;Tayp@nUbALmZl2K(`MD=YnnbeNys@Q9gy%<^NnA0zyj=ErnDM*9Ez?Q|-`
zuhb^PXwx4<bIgx%evD^l66*xkiL4vF#xHM^nWy}ZL+1X`#-A`V{Ae@K_&tzPK{<N1
zAN1U+`F<>5nB&J>KjtwX+h#nXgi06sv51{zek}H5i62WjOQp-UB)*@ONHG(N#*;2*
zpJ0U_zcHWB;-KtmKi2qh){npZSnJ2{e(dt&4?ouV(d!QfrLBIf_hW+}8~xZs-8TIn
z$Jz>|l_+2fJ7L>@@!R~^&dv@qawkKPJk@slv4{DHAAkDMKUjLNANv@-ZEHW59`xgY
zAEWy@smeG15c`My*tyY8&QY48ejI1B#N9IFoS;+Bk5hh}X7dc|!d<pLrHmHVY)O4k
z+Hua0^E8e9hzj6>9~b?2;KxHh=(V|*{J8AL73P$|wnN38SN*t6Q^JpHeo*#0E5Qv~
z44H3n@OLNdWd1`_C}g|GN^r-IyUexc+bDbA^eet7{D>A1Ki>KA-j64KJf)>zzU^N>
zo^i}`)^BxR{7<cy%&%Bq`$6rzVSY;s%Y94rcw;M$k~Rljt5MSSflm1^_K$viVj%v^
z@P&0;k%Z^~(gct<fP4X@4Io_rF#*H|kUoI&XYABehJeumF{Pi*C1ngCQviW@TaExS
z2aqLT49MQ>`MwK)N-1RvAgjq~i@V6l&e;=NQmIx>svd946+mu=JgnrDDktR+pa5+&
zfC>Q=44_lIoe}~l6hPqsQs~O?cv}(n>FHrb1I9DNim?`FEfGLThEl9lS~`F-CR5$A
z)W~34Ioe;<MlG)_?yML<r2w1(xB{T8g?E__VqCyDf>u@nTL5-u8es<m4RU+{l><no
zHUp><peOkl^CU5VssYfjCzy4s1yJ4O8pQFoPY)s#S(D9L0VJ8FI|iqz&BI<NfVyl_
zJ2ZeaX!Qc9A3y`%7wWlBO{U$U9c&yxlK@r^!<u1e8o>9|T1O;zM6&>z2k=V6YYjgH
z@M8cALRc6=ivZjK6j4xAfe?Tg!1w?r1mFq48^F&2bPO2R{YnAo488#TbgY@l4>HIB
zD5mqnCx!e_04h70=_}TxZ~zg`rUuZ~^jijCTxk|SYj)b0{%=i_shxH-PuOX1`W+bR
z)OU3XpmP8N0vO0n7uG%jG`{KT8bG&z@%X;(0env5>=8iE0DeoZ)+>PC48-)J8B$tE
z`*Ov8thB}c4D^p4;z0on4PaORgU!+*3<HPQeleY28HNWif?*_W>xF|-V*B_}?2Haz
z48vGb25Ol;d{YO<5KIhU5*-2=f{e)lObOs?08uig1~4svJpuel9qv+ldI0n3kOeS<
zvol#|vCd|tm^ln{1DIzzF2%kufJFgpF`dN$EDK<H087|e%KG^qD^*|dErzB&ZDmyH
z8Rg^2Tou52_E!h!fwwkt)&#JYo!?p4eXG@__QLx14JL17*c8BKhGU~jQ$<Q!IlC=@
z?PlZ-hMfWIGMzsH*v))*ODa{_%X~I~zXI47!2SRZ&?&apb&!36VFgks>`(xQ**Oxx
z(EyGypJb)d;|wQQ)Bk1c?5O}wo26$M%2kLzXFC5foTpEL04@e_iL<u@_?zJ}>lN0k
z0bFCa&U%COCM#{_RsefTIteKK6ToBk?IRNJFx+Lm$9kXj0qaB7N3`PAOQwoXIQuk!
zXABdg?9Umf=tTgv@*3^Gq*I&C*8zMoOWy?WmiZm)d)5!EA6cp5$N~wZp9A>v&EX>z
zEhCK#myCEBX=OwWb>^2*K&HpbAiazXGQQuR^qq`lLzNgAj{QlLVi_{Z$i$G@^s~s=
z6*K~}a(p({?5sIhbILgXi!B#3HJDpQ9_GBP`M8vP*=jE+WA0$f62)0UMj>X(7M4+j
zxhQKf*5a(s=f_Y$Ng1VNl$KFOMnxHwWE49QfsFF6lFQRs_Ss&RwH&Lvb8-b4?f*^6
zK0AJGe%T@;PKKTKMaJ1o$yOOs_PjP3({H#a`>|f_r#DgvoHAm^rIf3w5Z76oTv<jH
z8SR!hTga#?BSA(T8FksICL>8kal}`bQG=aC8MPQFzNU<FgPa7EK5b1(=12-oVW=&m
z<6<Xe>&d83hd@R%84YAKq@8`36g9-zNJe93x{9)iOpk(3Zc!+ysf>T-$K7xyI!+`}
z_2Ug)&1rW|B>gDk2N`z<8`~nK>IA21)+QBYcw{V*u~deac3DPm8GU5<WcX=tWOR@b
zkRi)xDWjDPh5Y$(nhae=P)10G$_|-n2B(P}aJ)X?xLC*)W;0dB@>MAjRtli>$FA5F
zg<P#^5M=x$qYa0(HCt$%-u1MQE3GB*Q-ZOTpJ@=dsGE#VGCIpBaW%_?!mchdNa^Ju
zU1gj|=bBM9e*XanZN0lpZz6W}kkL~{FByLnaeZo2eDPsNKh1cXUSApgsG^LCGWyFH
zAY-_U5#0Vj8G~gEkuiv~HGJtQeyEILbSPttSM^Pgb(K8q_(jImgO1e)9i%Of#Ez6P
zTE-X|zseZJ6-!jZwIW75jlftL<JfFm4-eD3#>==qw{(r7E@%JvNwoOWv6C@R#uSd3
zE@KAGJ!iG4GNw^$Ym1yZY+T_ylg-&2GmEBltSf43YVBCp9Cj#Rvz9nt#sV1&*_nLM
z@xwt!-vf@Q7*~8+*CH8<WqeF$bm?$L*D^W~G<y|fRIq~PjEuE1ewVRQ{_k&@)iUVL
z$5k>4{~a|YF?tP+BwuOpA<nT*#(EjsW$ci#LB>WId)He(*2%bOt$h<!mqD=Mw0+!e
z+ZGvHIlGNUV7IMN<5<hj3YG4p#X-h7I>+hI$k<J186At8)<4%I?U8Xr#!(r6Qd*O=
zmz7{2!+seD7!I-?GD{EBtk`R#un)VfW2V}U$#_gp4`V&SdXkmQQ!-AQe1>7v?%2P0
z>!+7lif|t;$aujmUzBl);WC{v3|Hv5GhAc6$$Fjj2JOgj3-#d^XK%Ao_HTxNWZW^G
zgVT(#dou3Jcp&4U=|7h7$Yg5jiOEkHp2>L5@MX1~s{bqFC1)+?jMiSscrD`%J8xxt
zW_ZW?p7jIkM^=jeL<c=r9KjbEU)hXOkWMkioKiGH8U<+?zIB-V^qkG0Aco=FrZXwX
ztQgZKkAf@;R`#;w<m`6}vMR{N4w*R=WM>}du~C+iHp2MjEti7a3ijlP^NxrjB_}Ue
z&&QfyK>>z>tW;V^L16`Bt{6Y%krq=>T)}}L4hB(zW7a8Hub`xYQVL2dD5Kze1<e#d
zL0JV26*N*%jw5R*NK{Z>K?TLQ*QTO^Y6=Ela%6aKtE9lfF>wm43^oPvRB@>Br@CE%
zgH0zZIW7e*k5N>aohqzV&C&z~t@uj9aqBGA6_7rOvG>gDtf`<<E?csKS_&we#F}Y*
zJaLLyx3+>_7cF%-TUS9nhWch{0|oCg8{2KH;6=9RwAZ4N|FY8C!J2SDQ~G*8!t!*P
zrMZG16bx4|Lcxy;S}16%pq&CYefd}5RUmP^sK8^k9Ij#f;LvTHaY2z!K|q15z)#2h
zynW(YJE_8v^h1HJAZXSKF{lbO)4AV2I&5-8K`L`g)>f>oS=+GEw&-EDKQVVx(4C>Z
zf(~Zs&kP+|J1OYQ&_zL41$8$Y<3NdCDBR;)7{6JVoSrm>3VJK(!~OsT0~z`%=*Q5X
zHBZ2pRD+m*VI9m$<`4x#O&&%wmLtjkR%N7u@d_qzz^@8MDHyF_NSXW;Fh;>x_G9YW
z$0=Ah$6jQBh2Bxv??}Fh?9Wj!Nx@|1DRdC`TMxCiP37z~R%&EA!wdy88D_E0HcO8@
zjhd@qo`U)8EK{&t!2+{%A;Tip#jHzMm$IHcZCow9Lc#Bx{f%`cEBUJ!Rx4P;u-5c1
zTE0tg+Wh@28x(9*uptO~J<TR6RZt{|qCsp?uvNho1y>bpQ?Q+;je@-jc5n-SDA=uF
zr-EH{;C{0VUtIKhn%DwcQ;!Zb{>`z6W2C!LSxegYDcG;zpn^ke9-wKQ%em^5^=NE{
z+kNea6&z7;R>5Bij&cB1Z+s^0G3Mi@b3(yM=2NVvS<jfIo!Ufy8f8rKbEb2i;R5SL
z1(z5uo26rNrMafyx`HPPo+`MZ;3gM6X1%50Hk}TM3Dn@gCsBW!wf<qaqu{QBdkXHG
z{zC;1Os??8*!@QeK0Gy`SQleHKU46W*5M%11@XCz(a#qO{#EdjYkg#W#rj&o;ycEr
z*KZWOW#=91d)5!ERN9yqqE8CFq|aEizp#EaOQV8_4jO(MR)W?;qMJ@MdXhef3_)~1
zXlx=Th}a-920>5X&CQXSg2>E}g*6B3cR^%jpeosd$Zqn!T1JC8gUDq%jW5^E6GYx1
z@|jLShWtSkFdYgm#9a7)oMJ%~529%h-_!aZM9CoCQ-dl&*mEQ(mu#hiC>_L^KP}gv
zxyl5AAj$?&<b^9fi08YEnO`o5@<CJxq9V6xGh432K({2tF<4E%)7EG^vxC*i>M~0&
z9*B+Kno7-94I<B}m|8(3aZy4L)q=)@3#h0%J2hAngQ&?+#Ju)0If&Xp)CnRbh{ZYL
zMxD33eQKFjIAh?gr7lO-3mT8>q;~2D(SV(Xtc_S3vo>L+n19|!H4CD75WR!w6T}Ze
z{1}8U2!9ZsTbU@JMG)>FveYrwJs}8@E8Z#)@1ZKuc1m6biFHo>#6S>o5RvJYZb2wP
z1cPWBM7tnDv;x$(hpBpM4V4?wSanuvoSyto8VMpbh?YULGW|9Tty$~G88Hjg=%38e
zE)4C1=wLcO2hq{wP7Ixc^mJ3>0?V$Py_Uz|?m>FUYD|wH_SQD8+U*%cFSAy@OUBOj
z4Pr_VQ-kOiq+gpcfJ?`d^2{7a2P=rdK@16EXb`^!F^U6*v5sK<C5Yh+)LP99#`l(y
zK^*y9ih$B+E*i@^=6@o`{ZGt<ASRkEObTMM$+JsEPosk?WLiXXAc(qat<$+^Mi4U@
zX0gs@ofE{|Am%YIV4creJdd$fP+Azow-=TXF9~9G5Nm>1N~cw6`!bGP&Pt^#7=8<4
zCBrJyFH}EfWieN`pN#WmZ4ke+zm9di8FQ{hrj0>tqAV@`)TIHIeL-vu!g#w)T_<I?
zF>hzx!AeCt8FmHnhw1DNV$U}=oxR)|1ydvYgSgnkMsO&I!*rU2P&b4lK^zU@Q4o)V
zI2Oe5AkGHyR}k9av?qc%O{aelCxbY}UF|u@Sb5%eH2xv(tYyrEm8Z*`3*tPN-U#9X
zZ6b&(L0qLhy<(iOlr9Ca{%_Z1I&u6)6-w8FxXx9&FHaeIQ6gtyeDuvAZn1egi2DRj
zjL5&)`6q}w40l=Yu~O-SsYZhjIQx)w<}&M(AfD2~6+)R1p3zE0D}NAQf_Opm@V;@5
zEV>o-ZxAnoxYW+|ifesjejUUc2J+tq@s9a@5FZ#;cCb^TB5L6i&81~ldN<rxnqyC+
z(uR;OWGwqpAw-9eCWLRDX~g@Ro{PQ<AuB@$))>}U){G%!VxSf>Gi3ReeOonK2-%rS
zhLD4yKnPQ-CW)^tIYY?xEsS1}7eY#@=scXw%bG8Q{AOwW7RH?j1vy(Ngu)C(Sc{r5
z#Tbf*P=X<U7vm$i6!V3K3AuV0#{wZ#453m8WzAaULMYEnuaK?~0x3N|#KKNe2+1MD
zg<$2ZEri4nYKCCvtRn;`gDZq;4Ag#n2$h+um`+uO1PY#Bk^-u8wgzjCjmG5-lzz!&
z%*k48wz`u{oWi`WTXby(a&A?NsTV^15GIB&DTD?gGz=jWf*L}j5E_Tz4`F$~m?k0m
zLk2#s^?e9*|25V1hS1Dxr+ElJF#pKfg4N9`u!^i6R;pVPM&G26@wN^Em)BSX0$eJy
zDj`HFIbL?C5oBn-HB}2i5205Gy+a6dOotG*CB;U}Hd7f|hS17%T8Gevxh-ou)BlN~
zeTZH>YOJe2n|{X-Ix%-<?ZVpCEbYe7J%k<%Jy}x*8@G4uZs+O~!XS3~hR~0pe+UB@
zD4<ot^mH%Yz!0+7?F55E7!tzJka2_F*bv5rFpT*Z*5RxpSVyw{$~ua5G%Hmc!!Y@-
zYkUY7c3TP~c>+7clqg_w2vb6s9>NUn##C0iac@VD*l8i0)Bjt^XNE94Wc=rs`Z<f{
z@Mz=E%%KVVSK7H;g)U>5$1tB(#Y?uyS8a<zSWI(LMHLlGLRcC?tcr{(meFhp;Y0{0
zLs${QZ*+h{*dD^l5LSh-i5lT{R)?^Tfi|=zgtaFB9zu;g#@5%<DMKl*!5g`BY|ARd
zl(vLmn;N|}g#J&AciF64W5n#>m|Y?K5yDQI&$_Ytbr~AFJA^$U917uZ2!C?S-VpXN
ze7gm2Kl1^aGyMJPAZMxW%L{2qkA!g4bRJZ69%DYvYWc_bE`2J5(;++w;b{nGLO2`3
z<q)of@D~j)hg}TeyxGD9h6i7aFS@savGh!{OCjW2VD$fL2-iZm5yH(7cK>U%e4T@D
zoHEXCBc8LjX{uObPOP^WkMs=TAG75<A>1|j9>aas2docSAF)0T;oWHCjC&Ts^AJ9U
z@F|2BA^aP{s}Np?K*LL=FIg+CF}`zBdPD1QU1Lb!QuPqthwy;|+8uXooWp<4?=tq{
za|mB(omc6<pZLlFQL51zrD%K1t;bPx9}RI@Hq)u-UoGa`F=L$5vy(wZjEbCl3TA5J
z*z(+JT=}CSmx|mfGONg<8rK4S$66<lM4Xj58*6qIIT&)XQt2s|Esu)4DhjJ8q9WUC
zCz<(F<R9b8Z}zGHLqQdVOy|>s*rF<msfZtxrlN}CDmLtLlvGhlMG0ogW;y66t)h$y
z`kj`tl%S%Vit-##mNi_$s91ryOO`@P2@IMTGohfXk_wB8IQFe7>?$10Hdgwn*~vh4
z<Eg6|TrSSGt&~U(wOLg~f{N)XW~iv9qPmLVDn_WNp(0U5K!vQLrixlBMAf*rB1uKE
ziXWI$RMb|{h?$D&Fw|$QtD+tQy<(Dz8mMT<*;yw_Qg-&HsKzRqsA#I<dlk)8H0M%+
ztFNu!n1B)mQ~HrhTTriNS==fF&XO<Xit{j2q?bWb;bZXAQEO_W7*a(=P(=q7KXXw?
zMMOoa3RQ)sLZ`hrVhwW<#S>E^Xvt1n({IJlT16Yvp~sc9Gx;Zm_9}*4Do=GObyU$+
zMK=|l%)RTZqKg?%yU<-l56=Fgf*u*sleM>sUevMv_H@~8BcA2$qoObS{b+78P!R<W
zU?v!-Vi5CS)*&j+Ew&A19me{4ax6L2pNsjENJpxe!W;cn#V8e{na8OZuVRdfv79BP
zhn9caiwW#ZR*hGMPGp{B9$5+?b1IwDSjnMBd(Biai;k>@?={R;F^5h-4Y@STRWVP+
zeH9N>%vZ5M#bFgkR4i1nNW~5nJ5?;E#b3oHI(JkorNy6i>Qd5r70YQh?oXatD0!WV
z70kb}u4G-sx|)^3)-bGP{heF*R+n^xij$6Nlr}Q7Y?zR_ZsHad+f)qQnmYJv)vYS_
zEK)1yP2NsRMBPM!*od-A#UCp6s@SJuw+iq6<oR1u|5Q;hDshjBbWKv?qY}y4xixh^
zo#ssv*W64wsNw+a=GN4on<kQzcp&+ZijPy{FVJsCDvqhRLQ`GEaTO<2oK^7`HQq1f
zq>582PSa>KNpyanSifn?_H?xu<_n%t@pMj7&aWxwRGe4oDWHiLRb1dOiliQP?w3M9
z{v|HGOvfuqqU<#lH})p~O{R+LD&7i7zJ|^lD!%kfxk+bAL+33Ow;70UH%+|twZ<J4
z4X#G+svvHcFL+PIhpnl3x25i^o%B$}BiaiUpHw_n@kGT775~z~imUci#WPya+=(4z
z*OC^A&uN{Ektp@rth`k5O2vB>mAfg^tx2y{thXk;r8UQz^oI3GT+%x_AHOP;dNxhC
zxH9g83Q`)k&(u{Fu^KXJDE!&>RYkOhG#a8fyCFJQB37c^Ppi?h9~0ASDBU<Aod$9!
zn?XYi`;_gpH+gN&<V+eeYsju4hlU|3$^U*y$)e#q4OumKX42O_C7Xs{uUYE-nM}H{
zqn(^<`Oqvm>3US{+?ugU<kwJuA&-W<8qU;nQOc)bL-x3Wt1SgJ<MPo`n(<VhJLheM
zG>{f%Ey7w<LotTptW;Wpp(Jbf8^-5aX$@sGKtoxL9$SQJ8meo?CA;M{RMn86p@N2r
zn(>Ide4Uaiagl{JPJ@-froqKvXQjFh2B(Ijx9yaT=WJ!Ov<eN&NgMe;ma=b}U?V*}
zDN_v%i5ePcXsDs4hFTn4U!#A!*lE)goTMR{%@nhp+6;AA>$2A4eo}C9DaVcj7P_vu
zk%pWPQW|SmRVto*;wJ12x#nu7p}B_NHLRoSe>D84VVs8X8d_*@Yv`ciXAOb|QA0}&
zt>}<x@M;Kah-i>B<6D7GgI~j@j>b2K06VAbu~RA<e}~GPRWt+{LaZvQ#;UVY<kq6G
zshaWl3*uu3jjt%wNTDyb4ZEzZHMG&t){I=+ET&gMM>`EaX&|7~o_cb@O3;yJf`-8~
z%`|l8_?{HQ(1o?DhHf;6o7uaYt@Y55<%#h<tv5S;HT2VPVZXHxYpqvFdCpk-YZ$0u
zPkP$`4V2BfHWTR}W`YBEEkiX7(=e7>P}f->cFFsThT$4UXc(zsl!nn7J)yUFk+;@g
zHIP#3+$)JR?b(d^bJiZCfpkMn>^dKvHM3)ahKU+h(!tU&NyB6f^EAxYFoh0T9@k6_
zvouWAFipdB4J#(blR1M9(EW@f(xeby9T7j<+`Bm%@^v%@lhRxbdq)`euPxB9P{UFU
z%Q%c47q&>lV&)}ul74o~trmTyl#^gNo4;u&`r5U^Y*X%<^!F>{HjvdC*08x_RP<W2
zl%~ONucK_GV%O6y&$67=j4yi|G;E|9LNPRxsT&%)yKGxDY}2q^!&c3BfdV<Cly+#?
zrQr_^J82M}S;-;Yt%2UiFm9=34^3Bo1ueaWfnKt(Ps4r<Cp4VYaDcX@;Ru~>8V+eV
z%#l==!svatL(|!Whqezl(~Ws)JEq|{o#2bDS5_ucq6X<@4W~H%G_4h<Eo7eIUQrQs
z;4cm5G@Pd?q2Y#xo7Ddp$3+cSG+brAq~S7s+BUM2Px`96?V3i9_fICcZUSX*X}GQ7
zfrf_~{w80;Jz8^8Y<K8r&asc|ZNJOG#Pnak55q0@X^S`Q{o-u$XX_&kk7-CXywLE3
zj#q^mPc=NFCE~q}m{PNbHcC|YUkxv*pC6*=l?uhGBn*9IrL^X{<&B27G-=x*Z#%rx
z@SaZXR_NFYA2fW_(7Gksw8SSqUgLC(*YR1y7Y$$8QFH`#MCpjukw!;a9o2Qz(2-6@
zdL0#XRMe3{M~sdlI*RIu)saz0K^=v3WYW>BOj2eYwr!~!nkN<x)y|^hJ00{6^sG8^
zGZ1HE$j+LBHK&eTX6chp$$6Obnod3)`I!rt4t>@%-IhvCQ7WwCRR82&&F#f>{F9Pg
zTt^8V_U;OCNgZ>aOQpD0{~ii`WK(=;9c9dRz)+U8oR0FQKdDb_B^?$WE*<eY;&fQ4
zO&t!}H61&;DW$DRHTEXAPDv)FZ4Eh=LM=OWyvY}g`J7x?M-^_WnvT?Msa17^dngGy
z+;x(3H%%O}EwxN^a8bKts*<RqrjDjMzSmJpN0N@ZI_l|2){&y4wvIYFe$N}EkKH~$
z)~5KC*^)n8i9F68Bpz8OxxS7DIvVP@ZLdZjxQ%$DjdkP0n&Ru$RGR3Rw=H%1w$uyT
zQk&^$uEV3ltHaqe@dq6(s7pHNJJ^q`&$p!t1a%VVi;75xb$crDr>4f2v@+XMB^`bp
z0UbUazjRmVivdDDS;yYRskOGJ($)#c4CzpHbkosYho&2E0B@z^*<uTUPUD~>qT}*@
zORA2RH1Q@|-kh{imY#!6+M42ZwAE4UxU-#(pJ+U1CmqUMr@f92Iy&j-tm9`c?a1oi
zo=TAvLrSTOj;@^k-=w-dX!ho|4bm}KM^7ES=+Go4_tw!*$HJ(%K05m9I8nC7%)&J~
zZ%^G=xJG{tpqK$V2AW(rG5L(8+7Q}t9m91D)j?TG!{~VJw(l;Uad5VT5wwYH3B6OD
zq$73w%Gpt@qgg%HYGWA2>bP*)Mqv|lOr&!vjEZ4Q(lJ@bUpoEBgDE<u>R6%UHyzV-
zOxLl1daGlGj+t~O4vwF%W0sEDIvP*1P<9T@b2`xae}B0jDCMNTbLsM)q6J+EKiJk*
zuhD0zi{6IdU1nKC6CjOiv5qA)lcQZrbu81doY`~C@%V^?w0y-x(v><^>DZ=YyN=a5
z*67%vV<XLh`EhG?RN5S~j`??*x+ff8w8TbNvaHw9XoKta%4B++V@%K3P1GM9TXb4m
z61VDTe<cewJ9c|2WvLH4bnK+bqhp_rT{`~I@uZ;ZPaOxcr=ft|I`(kI`d^&`A2@Oz
zbEN<3qz><=06O1woYrxWv`z8wl9)p}_J462mossf2#)AD%6yFVIO_@4ldKezsaDZ5
zIx_c+J*y*BDs%bc#)vgK>d0`?ah?v4jyz%H4dbGYOFHiBctG=3#}yqnb==Z%mD{<-
zx=Avw4ZE)62F+5xaa~#E^sa||k=Sh=cXiy;(P}~5->m=WxT9lfVHY{g4m;)!&QI}_
zv|@Q5>Ug9hd)OG{$21@`0y@6xc*<LO#!6SpeT#pt<AsiYb-ZMs%=Zkhbi8JG!}``N
zeMj@BYW%mlAK3h;;}gSY)?K?|sWd8#=rFQ{>7McQX~IYw#&_Hwx^OOC*tmQyLm259
z1{88pmQqX@vFv1IB_|U@X4WiW$X}ggW(}jk9t)-1v987b#B*L(jxchDk&D}>P3LCt
z#2PzT?VuxH82Q5}8b&ep3xrXKp&)DBo<?sAGp{+}DiX$x<F3mMYZnirL>OhlKo}*%
zC>6$xGsfH~&5<2X7`3LKOeQVMPP2Q?@?n%?_S&nRi*=67XT($r!xF~*2p&Wb7lt*A
z%n@XXz!ru*j74EA4#N?KGmPG0^a;ZiMtm4QhtV;N%3)Lq<NGk0akEv!#w+lW!bsq3
zHP-5^HCSnLiDA?<xfYH2dSeih!$@JXHfuxHI;?fWsK-#Bm4X|D(QSZnd>gUT*z}u(
z(bVLG>KU7d@k1D`!Vt11Q1Fjb6h?ppT7=<d5W*0{@R+rvFuW%JQx3lWVVPNDRak?p
zAy$=@wz8^KX;PiD;V>c$sb*=*FfN}rjuEBSVbB@fhKt&=whQAYhW2KB2ZnSGXQwba
zhoL-*p^9|VH))qJJ;vF9t{l@XjP49QSbMTkX)ijU_X-pA4WnNe<HMK`M*lDdgfW_q
zY@Bmo7;1d{^EAoCgSgh<FouLNlz9Z}FxFpKhqF?HyU&#w$^0wpDATW#EfYQ2bxasz
zO=lcKt7p!MVWgWFGc$}?VQfipP6}f(7foTEYQ|4vm`?MVp;$3vm7tY&b{JnKIteH{
zCycpVI*)Ze>jKt=tS|c&qOc`lEDhs%7%#$D7RK^0_Jr|g7%MntGj)UEH`bM5tO{c_
z^O`W$GpuF(opl{6HJiI%@eRxySvQ$}>*4vgGGB~wmgl3hEsX8#>@Z_?GVG!igJC!8
z*#gE{us4i-VH^wNco_S`NKWVMvBgS0r2}CcG+Q{taG3Q7>rvM3(HSZ7L>TA8xWLXy
z)>Evf!#KlmmX#v^VmL?R9A}(O7sI#|#zQtQv)&Hl?=Y?~Uk&3L!*$l1v<fj$#qTR*
zzGZUOA+i53-#48*VcccDXF7EkrlDF7I6G>$vEz@JABXXT;VJ7gRw}i*GW|=lJ&ZSD
zyba@37_a#}+7X?x+;nH=MB{<#^rW(P9Dm|bOxg(Ehw&kdkL;w081v^7^JlZoFAQH<
zqaujr7-fcWLd{LeM4FBrg7gt&V2&}JScZ%dWHOyC>Aw3ef~*nDjbL5`*&@guLE8x0
zMUW$coDtNDASr@e5#)}bas*YlVx9=B40$8S7eW3A3UIbU1O+1~6hRrz7G^ERT7;E)
zRWyQ<kB!x!cmyTbEEz#*hEl8(?)<mTe9Iz&vS!_K5tL_s*UK3Eip-T*Ev#{@RCJV&
zl#R3Y2pkMfRu^kLD@CS%6jL>V)+>z$OQlapF#T!~R5!Us1c}TwP3KJC{K*ldM6m2!
znNS3^BdEhgz4j*6ji6oxKSb~&JM~$cur`RGAwwh9#;mm6wAnH>W&WPEndvuY__i-C
zB9J2RvEybHA`s0;PXu1(bds?ne&!%+z>JY2P)weeJq=BGic}-e*wiCPji4oSID*JG
zvrln~X+`4`K^wE~?nN%k#Q%=b!tJR)MbMs$#z)X0f=%09-6QA`!Os!g;E(l=5p*)^
zc8;J6b63`GrtioX+cSb*5&XhVZ`OfkX`cwaPuVyZ`my#m{Q=Z+)6B;H&W{@u!C>}>
zunuJ%W=0D8N)L}<L<A$*8D;vvGSuxCJKA){FpQ00oav-*nt4J56C?N>NtqNuc&c+&
z1d}6}!U0oRlL}#)89zOO8O$?TW11Q3In|mS!5pqm+`3l${0J6Aur-2h9JY{k8SA15
zzQj2fGcSo?DFb~BQ9H{cSV3cZ+ex3HztJr+jgwbKu!;j#v;H4bUjbd!@qJB#B)Gd2
zC~WlQNfI=H1S>AZDN-cQUG6Jx1&X`7yBCVPyB62tTAZT)b9a9CTi;r<_S$EkGiT<`
zotgLYa^=qytR-1TTu<CUl<FH(5IyC8=WdgnEb4y|w`ehs2Sja8!HyK1O2KK0J5z8d
z1uwYC?4q)pxQDoxxGx3!Ne&PX5~al#uH?fh7#SCPgvwFkG0l5C1t-W)YKna4UwyIk
z8CkP2vG-GOHU;NWa9;D?O2LH`Tui~=nsO}#m&h*@uW0&J+0)XhM|z#g4dPABJH3oL
zoo>^-lY+Y>|7hNOa%v*gk0dD%C_W_GR~CMff~P51V#ZQ4o~7V<3YweI!i*Owc$osD
z874FSO~EVK2F+>{uT$_wzLb)S`BpaAbg`eA?Oh7qlYAhG_oM9p<exNUPX6dG>cmr1
zeIur2s_!XCLlU87jx^((OI@w$%t&uW2I?7!QN(C1GWAm|lNp&cMZTV8H6t6%>}KR8
z$)S03lH?-hCgw3C^;^0$myb$*GYXItBo-oy_f=e`B4!jdqnH^>rp4xpjV(*p55(fc
z5@wV%<3}?}X|-TRX^qRbvN9T%ul?oBC{MEjQQkQstyDBaM>9r?)SF=-m-kIeK&%;Y
zW+a)BOfjBVg;>dq$|MqYqO3a3Rn4fTDb-05%t+Lf8fMhgc%`1vwaln(#@fc2^ESyG
z&?Vle8e2#6)-|J^89&jiPi$;P1I^ozq!IDPN_C59Lf(|vj3}QnKbz6gjGkunGNY9l
zt<4CS5j11?gOoOAbdWIewq~?5<H+hb(c7C5-QRq?pIN@KcQm7i8E03fbTXqeb9N!#
z=f?i48C_|1BT65-o3W>c`Yj^G46_*)Il3!JE~1raBif1La+u-NxV}=no7_Y65`CK2
zFWpWXD^)^l>wAvK-^@_R!$djJ((bP9W<eRx-eycPW3m~2%;;-IKXrN}jbmhgGX|J3
zkbI~a!$<}Z2NQoM4l!dESMeV-M-hh;M-WF6rMa5<)Q`f^G{+Ffno*>QI<>~roS;Qc
zG$S|v_7v9?ii>5*>*A-HG0lwWRA!j5h-9X8z>L}C^NDkabBU5+p3Kt0>ik@wDGSZ`
zk6(sG438})czL^dnHkHaT?_J9u)>U$X8di&B{NpB)+RGHo3WaFjTyU-sefgxrMb?G
z^;+f)W^5$?Q&VL2{$<7%GxnQtz>KYCOy#$r?PhFaOuusKa*(pajGeN@mCL+KtGip~
ziN^Oz^#+;u(UiYf51MhvjFV=ZGUG7Cq@K~oNsbVY5|7C~xzIdjQtSzu(uzSJf13QF
zrkpXWzoea&osG(Q;swns`&b#ynagHeG2@*X@6EVs#x*k@n(@et>t@_A<F*!mljN2e
z6SNW5)y#B<;$1D~A2aUBlG$y#PvwE8x49qrSmSTZcw)v=+5f4$AU@Z;j)m$3eo6CR
z;wv*=Yu?HA)FFLqhUc6*<vy74(ToTSA}y-EC1dP=W(=(!`^k*Y;^HC|{R^vqHRBt}
zcVZe=QIiagPHREJS$%p<Nk`JVEHYRSWkIwB87;^~F%vNxF*7j>F)LBBU4B(0J9!Rb
zPEB_%jQluIovV2*$Y()i3#wR<-+}@b6tbYO1qChGcsf~%#7GhHFiplH7L>A}v;{?(
zrx@`EVsT;#VoBnUM5$Y>U3!q0wV)hH8RDH0QROYDKwim$iX=v&ju=DK6D5y<M84>n
zG$q!8IP!Q+Da{|L4mZwR)q-jkG_atd1=VFd8BouH_d}8r<q&Gc)}d0vf|?{r#AKqh
zRm+0f<T4;))+Me@n^m}eS?!-Js82;Ek|<IdS<upgRumgs(1b+vrWQ2QcykL{kpHYH
z&GJQ`NE_RlW=9L!khImj?JQ_d-XT@d^lO|*oh;~VK^Ka@5>qVbO45zkohW_iA;-v{
zp3GD%M62fgzOJal0;dJjESPSA%OX$oh53zsf(0Indgo~$3;J5%wZLbA--3XM)aAuS
zK?}m<Aqx}>LW`m#UW#W?)Nfjhh`q>r6H~qYEa-2+Fbn>mIKYCz7W_^=kT^(MUlb)x
z452ApDh?%2ZDlz57z@T)Fv5b7G)Gx5T8o#usgbF5$59_oOx5KWCt5Ix2RoTKg(&(|
z3lftm2$^BQObb%1>hJusESPP<Eemd2Fvo(q7M!!-yan?tm~X*a8KTv3-45rIoBkG9
z@aG2OLJJm=EG90IgFUa$Qp+H&r4}rsxSS};3X+u;tRh*h>1*V?Jl9Epq+MshdJ8tl
z!W6Fs+bq~_LHt7FCX0Hfp^(iqh5SXb#e%JxqTY&F$GC%$$1K=Mvde<q7VIHENZd=@
zN0ci2EjU0P${i!7ltVNR6OUMMlw|N;lemtP3pqh@l6Z=Ens|nI)`Ekj)Wf-8!ICX{
zWt#4?1s7$7b~MPpv;VfJ|J1%@!T69)$Q28&T9Boj@tOrUSpB-p(oZ@mQt_tjhmX`=
zm8f92W5Hbuida$9ihnG)XF+x=a#(TSf(I6)u_D5XhZa1t;FSfhEqH7}iDkMML?KTs
zcxu5j3t}=9c`md1mhR(Hqv(|e>0UDCUoBFeqV~puxAOm7D({HzE%;!;|BLx(!6)kf
zX|*KVXN&p-HYt);%2x}%(fge!?~fKyypdL9v8s`2tw?7@dMh$mk(o*qQC!g^l2dp_
z@=R9sy$NDUk%qET%%;Ul#hg|ws~wl$iUL;TvZ@bW%WXxep1M3%<h8=SKrioB$VWxQ
zq;m1iry4e&Q~O!aib7I-Pi$c;MEN??xPOqYm=!-*@skzxttf6q2`egEp<~*TR)FM3
zqBK;Bq_h?CA2Bh@&@4+Vr^S>fslZN3OpFzJD{5MiWQD;BqZL)HsAg54IA^jV&Wd>Q
zSYo{&;wzDex3U#4x0{6&x{$Vt71yup<y2OuH&Kg8Adx%NYLG~P#3yUs+E&yeKXN>+
zypOw%6?Ltsr+MXN*)k<0zJV1Dt!QmU8!H-Fv3In3Xf3R0Y(*2AO?gDk$(s@7U8wRR
zQHlInJL;Ast%$da#<#ViofW^*Y;RTXS?j<7k-4$;w(b`zI@0V!>`ass*M&q{m-8#7
zs}<d>=+4pZ!BlyqdI^KPH{8s9%tEvhZF1_Za9H7_=^?tTaFfWUw>_nD>w>1_7YW#<
z-Ui~gB4EWIHVn5RXhq11JT~ODL9rri#cnJ1Sn-<`J*`+|#bPUZ$qck&k`<G!=wn4+
zsmsj$hy$z`XhnbWv1`>UuHRgZ%5f`pkQEAV=pJmv@AM9_{_i62p)`ldWZ<>s(+yF>
ztr%g&KDTisaTHO^(N>HhA4?oZ9ItsNSTT`Yo~9+i&3`gZv0}Ovh36Z8oSZn-idWXe
zX+(K}j&y7W+nq_AWyNd~(dSq(mwcY4%(r3z`9e*ZaWBmh@-<ehwW7n5G)v`_QCUu0
zVZ}--R>>r(mbBW6sdWrO230gnsbKt4S-o3o9mCekqMQG}D~>i;vC)cb3uFGYVv{UP
z21w)<AsVl<Q@!kbs}<WcWjo0Z;!ff&D=uDBuhH5oqhZB)D=t{EUzWgN-61OuGv<I5
z2T5i}8;?~q9<kym&6Bc7Czd*9#c`STWh3OxvnO9BOR5vH>*oI7eG{h`dD@DPMU&51
zan_1+GEX`siJAF!J0TK(kukY#_}hw0TxgeN<yvvWiYr!JrE*QSrrYYelak$UxM{^L
zEAGlxPw#Enh!(}(u|gJgYD|j-`g_t1D?UimjCmmYRao~%J_Tq#B0jd_iR_%@FNsq9
znHA49{z4}3KJ{hy|5ABHd`*<=ZA6!xZ<+a>74J#p)tn;!Cl~)P>`?EH682fPaT}s+
z>JIkBim!AD|7OK^E7I5yVM8Rn>4|A=NJnz1r+Uaw>%|F%SL!d{jusM4S2kis8#0lI
zp4o;h8qaD|$3#Ra*(v5A=CmP~7Spa!=FNOBRX!W?+t9#<hBg$ip`Z=LZ73n)f`~#k
z6tSVG4TWv$w;;J3T3*K~q?ipq*l_o~dbh&)2Wg@n^$=3hh97OHYePL7O4(4_hFBZo
zYyj&TZ7`9Pv7y)PjAf-K<>JcOP~L{!$<+=oNUmT*MRFZc#26d&8aLP=F(P_<#>$;L
z(p=2JxOf{XF=sU!D%;e1g``v=snRj3s-|ShqxQKvBNJ>$B&k8HNlYRp6D6{i4Yf61
z$A;|d)T8@}N_`uywafIZUG#zx8D(=AQb4^pvylxwY)G-8u?<aZXlg?<26rVkx1o)e
zt%VIg+tAX6H}lN0%v;$YYdqHub88um9p>^o%#y7wgWK8Ao}>fu7h*?ZCt_!!#CNgb
zSMs+J<;Cn~LwA~``{-KrHVg?E%r;nT=qbZa-D*QXHgFqkH0{KRSq%;w1f4dxsJMxe
z&_m+2!AIiP^t4{}*h4lPT%r;wiVb0Uf74<Lj8|`4>up0H8~Vxw`zv<iGgW!Dq^Mv&
zhV{2$fQ(*6^(oT>sSF|xCjL$wV#839VMK{cH^1Zv8%El2NG662qindbQ9s3osWyzZ
zVT=u9wMbhr^@hZ8HjKAnf(^Bt#)&peCYeNRIwkUrHO@IIQe4w)m~O*T8<xp}eWaUV
z!yFst+A!0GSvJgjshcg+e!uSJiNtdss)#wyhWR!uv8nIAY4S_l^2HGgY`B*%Ny<VS
z7Riv7Hp)i5n4(-oCNJOdrmwnSoNl=dt8G|g!wQ>vz1B(_ZWoEK5LtDV4JS7lE={Yo
z)~4P?IQ%!mP8-(Qu-=9ZRMcAwNj4Jyv|$s;X5tGaN{Ym6p}Cc~&4%qHJLJ@_i?aV)
zrSzDjU9z%l>MiXzizMx_VXw^jaasMon0+>gvY#mAfSh0Q%I(UFdBldJHso|5mjlOa
zI4<3`<BlCCq}wv8c1*G3lntkC$Yw`&JFJ_HXKc75gJ#278_wBq-i8aZh-|oS!$sK~
zlJpfC7%!9jZNnuJ5sy8K5dDe`f>&i;^^X!!?g+bKgWyf-wXc=CMRJ>>=tG`I{3Anc
z!+RS(*l^#52Qs``D-Rj`+=fRsJSLa4Pe`6J<{9~ZL!>nNf?SBi{A<H28(vd+r}glS
z4R5KWc2&A3kssOBFE)I&;Xism5kC_pn*@Ke;X9LLu_Lu^8oN3U5q3n{k=BlMc0}8e
z(T?<XWU#9v5JgNK1gRn<m1nXeGhL}8mWo-KO~S;?VMk6o>~=Wp$Yn=vJL2uAWJey>
zDr84tJMxlCEBWlmPhLP%3X)8F9#O=OqIQ(m^kR0Du%o0MKTs*I>C>O9XYEHj%1|j~
zM`@Dq^9a}>DBfWl-m=uo*^xTh73`>Jht7@|>L#Mz4g-nQn!F;vkz7u(m{MZxh||1F
zC|0)PCp+rfQN@m`c2u*YIs<Ckk)TD^v?EdDHS8$2JHMn#vLl&dEutK+h^aa2P^n9-
zCnL#eDc%NlG`6D&^@esdA`xAVv8f%+?C5AmCp((k(ZY_l^!}{Hw6dcmdFrvZwxf+U
z4ypOu+0mW>9f-dWZ)eCL`DOGv+tI}i3&mgU=t`1eM>jjVllLH+pGS=2P)jXo$V@S{
zhgOZ-?2v>~oOZbE7;VQGJKT17>=<CjKs&s4dEtAys97-ziO&wd5WCzL91|ppH>8nM
z5#_^n{ANc_IhENX``FRfj$ZWk)?%vv7b$g9v7elv|04SnQ<Xt>3}vLm3?})V-XTO0
zhuQIm9mDMyp(Pxt5%EeH#ePap#@aECe4^|~5#{B;#XH`P35-u|PLxSn=Bai}<H9**
z$8<Yp*s<4+eRj;WW0oBo?fBD<*>=paW38;IB>h~D;R-ue+A+_L`7{^UvB-|acJ;ow
zg?7Bn6g~ENgzzPHEN8${JC>1%E?()CEEyrI>{v~Gjph}X#OPzw>0hQ5zRr&IbZsC8
zIYl?wvDuEDRQ|GK3(0mnQoYjdRy($_Gm;^-xgCs2<-5ptGhh!7Dz)N%I}X@!kh*m5
z5Q$_v#`wc_93eSMOkMJl|G0b#P&rAICS;UO+i}J&7mnhb9artRX2*FuE^yzwV#h^0
z{?<0D)D7(t&C8l7J6NiIojIiy>7gh$?6^rq0&Z!+(%fA;p4c&2J_YE#N4&4qeL(Wi
zjz@Mpwj;~4w0Vt@MH`v6KZ|&3$1^*g+wsDVG!8^K@Y0Td?f7U{KW<*xvGh?|d2atZ
zny-m(<ouGzjwCTs-rMnkif~!2|Jm`$j?bF%&5kb`|7wQ>q=tQ`C}yMsX&uPqP&fQ^
z4y1P=%7JJHGEfn5_v5sgv#Xy?GPW5VSolz#81|RtWDq(VA~Q2A3o$D(n*-TNau6k0
zMkcodc^o+Bz<CGqI*`wSeh&0^Aio0z9BAx769)=9P{@IL4*cXmVF!vhP}PBI4)~Vq
zi#kx+0XQ%!y`h)`KTs@A6mJO!N|OI5VH@<NG`;18s4@<eb*T5JRB@o31K$_vE7Dt@
zSV4>2vm{05K#T)=O^GEjIAA0(Y5J+(ib;!c4#ZQbr0JC%n3B^ZE@|ubp!7njJ5X2i
zCXggLP{V<m<VnO@#AFAY7owz!l-gA45an3z%-6pir>id`R<Ljb2O2t{eAmm9vKld9
zeOp6`r3SedMk+RSpqT@`sW*3^g#*7h(9waPWw_4jT2XIFF6NZ_hSpTt5T$xs2ilRh
z*OU$p^+q0Xb#kDyhz|H2=t6JiD+a3rzdF#BW;bFAvAY93NTlM$fAwZ^i>Az~l+osZ
zou<P9H;Gg8x_J7eq7)BBuLG$=A<qw#+l2xSbSq;D5`~0F6k?e88?h&`mje^_m?W$Z
zQ}uPAO`BrZMj5;}O#>Vl=)e{SwmLA#fx!+;bYPMLzdJBQYRSaYsY5!{fng5(;lMPb
z;jc4>b?bGdBaFix7~#OhT81ooHD)A}k0OqCU<}Dv;y9wjjCa6dQG@UIR&ho!Zn6Wj
z9GES0hB4c`@l&N0^66Tw86-0uIFu<?YRz$At^+F_SmnSx2j)BQ_fGxL{DuV#TTEO?
zTtt*AGFO*qe5nJ=$d_x%3Rw}AGfG%bqhYlJ>!=G~<G@-6gvjv<uBX0%xRLlLQ7Ue7
zV6(>mlC7h(dUV?y*zUj{2lhI!!-1U+>~dhY0~>nlba(YncN?}8GZtaHxo@f`dY=RP
z9T-~6c-Dafaz-kertdWzl+5Ge=hRRS{E!2O*~$?Ij>`9ct;G{0$7L8fwi0>Lfm0Mu
zYcXeJx3MRPOY-Nwp}Qa_&Verue3j92;F1H69eCovWe2V}@IVG6bKF%224sr6?!XNh
z=ge`}WY>CZ66K}?w;cFKrguW@Z6V*2e|ymGjst5Rn>uBV6MokL!3+D7?lDHh`y@xd
zB|ns7v?o8<pY%vt*`MU9RO_h&&m4H`z&i(?JMhARS8`4tw0r5mzYe_47#A>h*}5_*
zcB*=X=f3aB;(G1C8(9uJ%+ephxGZt+9r)lttxR#NGsT57#|imJ^FQJz2R@V7zSa`g
zH`)DUXLh3S)TA^{L^zSziNW<UMmmw!iD)MzL;D@(bWXMP3{IqXqWJaNQsh9QoT#5U
z?uRUK4>%MVoyg==M@jl7!6IgHBC8YGoM>7oZhpN?(u80Rrm8z7DW?;;oXG7&9w#JN
zihWTgNf_u}E58#3oG9u-F&7FtQOJqbPPCCuI#I+4gA+#aI@L$h7bg}Y{y;1}LMOVE
z5>AwK;zuV+QTIRAm35*tIf!M5a;J=^M_f7b^27>6$xx9*=R}OA=t;ag;!IA&I?<43
z95I0yPpm|g43(Xz;zU)N)ri%dIDO72uDf5=P9{>6-vnwnQPYVeCz74=vjCiHW9vCl
z+lkR5lcdy@A!?XZ$BBX7q+&mGX^}3Ih(F2rJCUVP?FNkh=#8Ac$grqs7D?O4iN;Pe
zk&$QqmPFB;InmsS7Bqi$Vs);nB1%amt(>rJQ%A3@6YZS%-H9Piw0EL|6Lu#YPW<9T
zM<;%DqN@{~oa(P|oryyHN^}>E`xNyj^lmhJIMJOXRZMZh?1V*&G{#3-$!)|E<<+-|
zIh}Ah)&IVQD7u~SI^iSt5D#Tgf8_C#2Z+%X(+8c{HbDL5=ejAqBJ<XX-<&vmJTd<y
z-C!qrI?>CC-cIz9F?8b8`ozBU_Lmv!#2*=|_LIS%lX#(6RdGqJt}k@1pOObLM!1NQ
zx#-D=p-v2Q;;0kHq?QxIo!BbVV7H;>d)){pGWOJsbz-Cw{g>!QIn_JXM-zpNabj%x
z8bZc7G2V#@PE2%Sg%c~CklT(XIkD7<Wlo%1oHW^qDI`;!nC8TECuY!`Pn=1d=fo@$
ziJwg}$BDU`GHs#xuqRqvQWiL|koqFxVl8HgEc2K|37Frcn4nx<yWEKn->W{(7q?0#
zh7*4}vB`-wj9;tOx>zCc><QC4n(K)hoY<&&*DuJpSx$!&TbziGik<K+RuZQFH+Gr7
z_S%baas|;gC$>AW!-<_v?2}=9tlQ<pZYP!>Gzgc6X$VT$L)Tv7o#(OpojBmcL7InU
zf#fh8BA>h1P-8~2m`7x~9yAC!?!*bsoM;zL%2{^esT0p+#W``tiR(_>kP|Asb>gzD
zj&SS(CHA}%f`1b)5HC8hH>kQU(VTO|l$@viQ>FG5C$2hiO>!!=d-O=^nOIw5ZaQ&G
z4ta6XJtuBEVXBf;C~Uk-az}Q{Wjay*apJ2#R*FrDy)O&diHEH6Si(ZFQumP)fh8$I
zq&#t=BI<M=ZGP^=3#sVDHz!`o!c<~k$<FD-zcRa4n<cF%Z=87R#DDCknC~R)is^$B
z?-}phVHWWtMbVXJwLUrVSr!)$eDGf57rKOecOs1o>0A&lCBlWY8jo~g@!8BGN{c6(
zAiWEcM@j}4qR7Q1rmWVCE@X0HwLUJhOV)4YEG}eq;a&asY%Uab$rp*r*=go*A*Tz&
z?(1{8keiX>>Nuuw9(tu>UKjGYkl%#@R3t+|lDbFI2`|J{LW(en#NWu6D6RkC!U7K#
zdQjYj5-xT3DCxo@7aqItqYI^6DD47VsP0073uRm=>q4vxaW0f|p}Y%v7Yr`UT&J(#
zg3g5)7b?17{4-G$!8`k+#7r$lhM9<>NI<F{??NRPs#2-!LKPRJR;pKs6v<PK-qdV~
zF4S;gkc_hnHC;$@p_2=pT}XDJmJ9V<_{pU{aHh5kbzJIGYYrVW$b)O@x*+6Ru9(IJ
ztJQa*feUS2kcF^sv#y~W%V?dgRspHih;<vg(8PtNE;OUrlGvQsf+&$cv$_x|tz2lW
z>1|x7o696(I~Ur!(7}a+DMm4KWHJ5XLif?Sj#NZ^HA>gTg<nN<p@$30w-~#+a3Z^*
z8~ON3CgVestj!b`%rZVt4PF<XH#S&Yu(GYoi;QwOlG#Sn?t+8FNpun2M2Yc`eBBY}
zbHVRIK+}7<5Y%``rX_ip_?xEpbm2=K^@w`A(1&7Q7y4=5A6?P?$p;VzYI^!9(Z9Pe
zL`KPlc`gi<S?9uZ7iKWv4;MzbFw%t=vBu#<84Vd6X=M}xM!PVEWGr!#3*$(}6DJTS
z5~WHJm-;}V$u3NxGF8*3kvwrm&vZfhGs}h9GD{a3TRt?+k;T$4Zr@?`^p)#x9NoY)
zUlxK3M_oAP!a^4o$&z$ojVy}RaT2pwcy_}QE%Q>6WyIw!tRPvbc~|i~O0Bh;vPo7S
z`Fc&+;KD|Y|4A}4mua&Lf01u-VV4WL$+x<&jbuA<2T_vm<UA3wM^g@x>~&!u$$sJi
z%_}1;!G~xbcHxMo*Wu_Lr+G_yE*}9doO0nbm8--vslhIsB{`RBE;gKZ;ey7~G0)#F
zT%vNBct!J;b46d%_;r#S#G6Dp1-CWt9T)Dp@Q(}kH01%wePZ`ThKHIi>-vccPsMcO
zZ#SOF0+9{MjdE_haN(s3(QagP<6jqExe(z-q#Lhggykv)7v8$?agXs{k%)IxL@ZX(
z_+H~5#7q943!hy0EK9(J?=GZqtJS~CLRgsTn+u+a>N7*Sx2Yv4CBvTRbsyCK@27QR
zYo9EQFPk#Bk&ac;6W`}FMBY{ZcNXPF-DuN;yT(k^^SY7Gjm&Nwx~cvLEsGmjsb_N|
zJ4wFN>cty5+{j5Y7g3blZsgIpJYBi#Hhq3K3b;{_qB6BWAvX%UQHo{}Ez<g0?QKz-
z#fU$+QJkcN7E{uVA2q(Vf}ym=K~jcjjZa_RjS6n`bECf-72VLuak){C-WWGxN%U^?
z-k>*-OS?uA6Hy-49p^^88_P}_Dp9FQtn5Y=5{VytIjWi))oCWUk?ck-@<d_{VohQa
zv87x6mRsA6Iy8mn-y2zv;!keWccZHt-P~y4MngBcFs6|k2hOYikM86~V>g<((bSD*
zZnUGfxf?CqXhr_Bmb0ZBx10a(f2OOeMYX2hM)S5MIkhHzdrj%!#xLX@HD&j5_3Dn!
zZn%o6*IG!DUuD`H*0sxL=<Y@jHv)`IA=Z7Svy+&K7NXS+8;QJaL^3$sa7s2RVtPs3
zM2{PWr)rE(^ZGSK#Go4?HxxI*nzxS|zmfOUlwNWYHNL-(nyRmsVSpP0-Pode2e~oQ
zjZtn4rt-TRi=S5+LOzr@jQ9sp@(g!lgvN{8BSyP1MygO5>&7@Y=8=!rVy2QzAWn2+
zlBQ2~V~WN*9gdvl#&nu9h;xWD-Izr(n<%Z%{5S1f@@d1=gPO1D3*1<!@kMT=dY8Dd
zl;Set8sc&{R*<YDN|IG>tk$^aS>#&sb#AP8V}qt|BH2j%(~U)Z3iswzuNG77YTB)C
zY;$9~8#~-MrRh6K4!E(4WH)h-=G{xO&yD?>GIU17LGnXx940y9#xXaJlOH7x^+uc^
zk^Y|~i7yc$MNBEDshn}+tQK>Q<UH|0DppIr<i=$;YI>05!4)^Iy77a2vGm}Y8`s@P
z<3WT6H)M*w(LHeEA#2@q;}*$n;vM2$qO|*u8~4cXYl=Kk|B+jLMD`Omo>F}5hTUZB
zyGGw}mGPMyZ`^q6#&fz}5ML7iB}&d$@+qM4aBuabzoYq;_@4NI_|c93-1y|iXPRG#
z62I-8dgVjMmC@g*d?()Mp^jCgNBw}v>_HX}(vqhmrYB|~MiC!{bkQDUB+o>Yih~wK
zWc47M2l+ghZ!*cl_C=JEodG$BIf=Q5xjo23l9wovrx)bU??C~Y1wHr{UrfY8nzt}X
z5f6%z6w`FM4y1$!C27Wb@FPh@4|E=sB45zPP?`iDlp&F{Wl73;P@bfMrt1epJTItj
zZZYCYOs}VI(7Z+uOyu`d)DesGVAM@hya$y$_~o>&vIh-glAC@qRiRmxD0(#ys*@)W
z6E(et2hFC%OF*&*wLIwKL0=}X?LkWqT6s{%gSsBnqu7-A6R|$A0a3cq(1S+gjfqV(
zy;oDUlg&J6PDRWXBtLsFES>6V?Liw40u<YN(2m66L3<B6c+fV7(M;tR54w8L&4Z3K
zrD7+N&crUnUp;tTLw$Ofl<pp+Q0zez<;Ge4LUzWYDOL|`8n?@Y$)xtDf4O+42QKPv
zqDPDIdf?NzUxsC&`WAyAm5`<@Bw^xj#Gb@n9`q)WDy}bS4hE9@dGNajLn!w5V1Ngf
z6Kc-~QW@mIV3KDO)o(;YWw<<;;=xpzW*hZ?creC;r&kl3G&2lm*a+fCnG7VOiBhr9
ze07D6r8$l`o;bmSi6oPVlZg_UH<W&w#^;bsC(iI-Cdn+~Y+@6=+PAsnLgtaoC(7GE
z7J0DPgEd~P^<s$!OFekx!DA1Wd9d7r%@XEOALF*dgS8~WS9-9Dd^K?maq9t-xYm)c
zCyKd&WFzrU;wIvOh59WXZ1v!z2d6yP=D~Ik4$~#Ic6e}re5VK3s~dJ{`fidv9_%IA
zN8C@$aV$|P9wa~H!G_mrX9SOUaFpUP;t3CqlZdzXebbC;>Y<(X;EXgRo3;mMHSYzI
zbHwwqzW&rn<VDT<w+ELzxJ>hk2Ukfte~guwYg)_|#EE&6=6w%td2ri<JDT^d2hSSD
zOTa%=?h#M#SG&Em8XkD?kcwxJ+U^sXMIO}lqK+5OJa{g9mlvhH>McJnWcTyny9X~N
zUbYLl`_+R_9(<OSexTHADsMb^OCsKPB=3nIJou>T|B=YOuG5;UcSL^i;HzX_7@N|#
zlN3?XcoE@6b}w>x5$Q!*FS2-%)r)lO#<ULU?Y!+VJ<SYWM3F=jGZH09CNDB;JoS#?
zY&5I%jLvc)PVO$x=|wIt@_Lcai`-gd9+Go^$GwV<t#6LYuj#2z@F?I#K`Moag}o?3
zQq+s$B*ln75Ty@CMinbTUQ$z*k11B#3wTl4iz;4}@uI931}}_Wl=Gsz7ZttGdEvfT
zx&o_wn;bc8hgnidXVOfGjPXKGecldpk<+HAOR**|V!eo`7^k%&cTsiSko0j$WF;!{
z0GSQ5%vHUpMl;Ea>Ru#xQG;f8K1w2yJdYu^=Wg}?CN*h#4Drcc)bgTVIppCZZscCG
zx?a@tqQ4gdy!gqB`d+xC!;Ej>MLRFrd(qH~MqV`bqKOx6>5`l~c9@%zH}j&o7cI!s
z@@~_g$y*Xz5nB_bRvRzo@_{YFf2tebfqIWruNNIjIuR%Jj_XX)h4?G6E3q3<GIaMM
zoKC%GO-hOvW=*${SiP{3*oh9!>m=EfF0022uVnDzH!41&;)OhD#ZMmaB1j_nLnQb8
zwT1s&BU4W=dU?@T2Ga|9a#U|Gwwf~a@ginuEqNl%KgqGRpQv}X?w=g_<e++I?m#aF
zc`?<CX<iKW;&)~n?Zpr;hI%pFixFOV$563hUi?AV*Fe(8<k&6a)cX_9?J$q@Vw4v`
zYUpAGn+K8v#WltYc}UJ!FUGOfc;W=2cqe)>N#m2fn4)pHi*ULZGrX8y26Mcasp+%5
zm_=UZOtRcQd7_;9w2HZ2%%ixqbFukeEFfP<T<XOllEuU&M5!W^S#TN6<zB4N^pzy5
zh^vXi&qc5EV!doiK9u%hgBKgUxZ}lLFaGpmlNX1)IPAq{FaGjkrx&}t*djyi#SYm_
zma6|Kf77<qHZQhIz!}4;eTJj^3>hO(@s%<1hGDlCd%WsnFb{aK*Nc*c6ZX>-vd@d%
zpW=i_m;^{UNSC~-?}!&iy*TB?X_@f9#vJqFgedzA!jF3)%}GNiy(sp`5MR?Ic*cvf
zUflBH@!z_0jJ)8*MK8{i2R<ep`<V1M`I?VOmo#$O3o)f!@#3n+uX%Bu{08wRG0R^?
zBuqMRn{}m?f4sOSJ@MkL>@c|v_oZnsp2+-3Hay^AKJ?-d$;=M18;ypiviW=Q!i$$)
zJeO^%m2twTj`9zMUXBDAfqzAuk-Wd5@wFEsz9NcJX=LK(zjW`scrSah579n+@ZzIv
z<~~IF@Shi-y!h(HH!mdYvlm~yP+Ay-%lJqU{@sf-J`^k&TVs_`6uERnikNAANasTa
zpL)uoBaz;RK40|R_vvetGo%vHGy0Iphul8o@gcJhS$xRqLpD~)+}J2(TpzWS>^|i3
zVbXVf4!T6i>BG-U)jr787eey-kk5yb^#1XeF24^2q)RkY!(Npz7Gj3N#3DpVSd^p~
z@dsjYVhJC9TV;@dAAR^ou4X@Dkeu+Lj1NX1Og;?$q%Z43c^@kHaG+)Fa#E{F2j!CC
z`p=2We2Eo(c(qWc^C8BEPCN8^9}GTpmRIR6FdTks6q0*iQY@7!#5khp@g$Xqm5HAZ
z>Z<xs&4=nfT*wiVAbl{$O60ke*n<g%L>~le5Ni@gZZp>Mp|%WuPo(dOIzH6(;cN)!
zLa67%Pd+RQV0i%beQ4lAe?JEJ(a?uRJ}mKJsSk~PXySv}2a69)<>l`_bn~ItZc}q&
zdtwV2d>>kpw;{G7_PnNVO|qzrp)E-}qTC9!`E*<dAAa$nBNa*5MMg&Boqgz6&@ij8
zA=@kcuN1rb)EkH-tUJvfT4V~zuSE@3A8bC1^I^OXb{`y)K@P_Urw=Y4LOv)ybjV<E
z`{4D#=YvO@Tca<$(0FlxZdx9rt(QTHUy}4P1c*VI@GEtxdYDRYnFBublon}<YyNb#
z;)I!oK2-YpkhXZ76j28FFwln))CUoN_hAUhU}Eb7#-SvC5Qh;Z+nrq11c&<|*U}3a
zNqv+LqkS0TlbZ#MV|^%mJg!B(Sm6>Ne1Z=XWqf>?#^6alOwqDUmT50{tMKTutv61m
zxrp8_6>H7#VWtnWXwH_|vR^l!e2x!uN#+ryy0{iFV4)9d14c3Xrl=#f*e925sNGoR
z!*U;r`PF}xt?*%`4|jaH>%%G^R{OBshaEnwk-9#7JD>QM59=f#pJ@|KQP#_+fDapG
zw@FI;Q%=wUorqFCOw1>^*@r<jjj75OIfRSpxB9S+b+@jH5q+l*yJS}TaL$L_KJ4+~
zh!017*z3bSS&!0l2JhEu$pwm1>yRwcGrHD`^oQw{_e6*|epuWwACCKQ%7@cFobX{@
zwwSw}j3*f*FNPK~wI>%lCN7<?KO?hlmrlreS&u$k_u+;Q7k&8Khs!=(VJ-2#dXjWW
zHi0Ke(%go}<>g4P`f!b2>4PK`UC2!zZd1JF!@p0WMKAe4^-h`@|Bny%eE8zSS0AdT
ziMdaF?85_+hd#M%DYo8p-6J2`4%cP&$4bl-AD;S9c|z1PA3onK_uPlsnUY`l@KTbq
zmc+c5UXi~hz9GKVyzk@?>Ki3Y$_F1lYWjaZd?No$l%^%%n-AZ8$nQr1KhpRS;YUut
z+SN#6lppz)8!w&IrS&779~F1&(i4SbAbE4um~*@?nqe7<nf!RTNsdLWn8lB*B-x1B
ziK6H5qxfcn8W0(i%a7cC2$7P<kGvYs=f}UB^&%GZqmUo>yT%svqu?H0VL!Ic)=3ZL
z7>oEZqfBAp^L+-vA0(|GCHyGqM;kxd`thS5rTnPrN0MLtIjgiEdOr+)z>hLi$`WIU
z<%s3|s6bMYs3XqK{=d5jA2cx<{V-9i<VUO@aehpFo==j?D-8Zxtp08g@5i2ZrtBYe
z<)4?X>_-(p4lLDIWfk#O^P{@P6G#&MsG%wAUZhF(qn01d{Alh+Z9g_viLUF%!9Eea
zN9pSL)lak)8Dr}C@e`}mmyx-n{<hYDW<xDcBa+6%CVn*4^iO5gD|1@-(aMk3e*El5
zOFx{~bU$x3oULn&$)et!)U}KH^Gk^?5$*hF??(?mQvB%P$1i?#_M?j*9ht3@A3NTq
z8M#XxnLH7(yY^=J)sL<+k(Lze&VX)m2yYBkyoS<wlgk`6R0<nq9L#=L{P6nW^TX=L
z;x}=2KO8cK9}G6>NfX19dAdfo<D7nY{Aheg=aSR+D4}{EquY;i?@U5uV2ud|zaIfV
zPQKIk^yA|dW5RYrt9^!`9M?WW$Pa}?cvwb^y!A6f=9b1@tkRp<$B(`wORwwuk)*sb
zO2UDD4D#cPU#{7}U_XBM<8MDM`7y+gp?=KrV>XX&7;%&ze~`!^3?~^u9O=icwMoT|
z$$dK{jrL=VA7lL(=f`+IrpcV#X`bN6M49RZk|z7HtZeN`B9^S3Zl^iT2YvT{bW>zN
z{1{fYwnSdpnN)DHaXM?w@MESQ``g53yOAiF#VglQ&+%ieAM5;>D^r(uqs$|jPh8-~
zLXt%?+I}qYW2ql2{8%aN`mtO_b$9;M+gJqU!g9IxdzBxn{pzLWYvl0dmVxIHa;bJ|
zj0CUuV}l>3{CHHqz($!K$8>-Cv5DkcLfmFKeCeUgc|W$uQuSk}AG`e6=EruKFf3Qb
znLp;J<L{RwC}rRGD!XOL$eG${-YZLWr|Rvz(>(r4>^?cUIqC=zJm|+EKaTowOy=QE
z^I^J<_%V5>`R&zq64P^C@^Kl8o#qpAHvN!RrhYX_q|_Cc=%@WS<42u;^=JLKAYYkG
zrgJn!IWH6Yr15he(?#uUb{$akvLuniq;gf$?~q*c<GQBY@Z+Y&Z~1YX-1|-ax$mx~
z|KrC!^83UG#D|(!-gYg)kNtS!$5Yvzt{9%t^@994vD_KMOW6{szasueeC@{@lDEWn
z#P>wW`N6N=pZ-x!$6Wo|W<@?x|Ezi6H;ee@$9IVdpn3pl0*DA8LjX|$+*z5afM4BM
zA_GVpP&dzX#PmclGi8m44j^Lya(!LZ05S!TIe?M@{1`x%0I~*9Fn~e<WD6jB0J#Im
zBTa-8au9O{5I@i;X08B|OB;@!)hUyWL$evb%uCE0Kt9PCK<jWqiJiIvj1M(W{(K{O
z?fH&{11J(e(Ey4C5E`MA3=+0!uJMNe-W}2v51>Q<Z6~XlgFAHx8yXg@PQ0@#s#E}_
z1E|DQ2%t;=h5+79*Od+6$Q6Bs04fGhE`ag@d^@F=D)&z5Z@X*j>zQ-`2<nM3MDbo+
ztP@eH8=1ruKrBfdF`g*iy0;9{|H=VWkzVc8Nom#4AY&!pwGsmAH!f=cwg3_Xs1ZQT
z0Fnae5Wp`oAOX}0pl$&5IMlTRs6+D4s7wbk#av8`koU;^6u{}ah6VvN450r`eSH~?
zdpaSFw6oJbfW`qF&tYsrW%eOm(*T+U&^&+^0f;H3bpSt;x73tYOe?N7RN88KJE`@z
zUi9PJb<=-~?-)R*0J>7_%>2IwARX(XwJyQ?>Z?<_TL9ey=n+6l0D~)<%mI8TY24Dz
zu=aOd_ICyg<Kr46|Iy4KZw0ak;0nMUfFpnk6FNEr>KzJFdT%s%0`LYfDuB@e_yX_;
z@OuD50ywtQ90*`w0F%eX2W1cf=shle!7-hn5<r-y@ZSRHN#08^fIgbupQJCbAMsTq
zqr?vg;Gfr#LIwrY3&jT$FIbJj1&0POT$&~y7Ldmj82=!?h%t-^Kr)OZ3i;2LFov#q
z0n86zYyjf|7$3j{igSn)i8BM3L^7E;g*cTc-Izu)J%AY`(qc<{!Yp#>((M0FpBsRE
zOmPWV5P<Y&v8=~5hJ{+KMKa*Fgsf$&Eup@YD2l|a2w<iBMHxba5LN}ST2@35<%3ug
zkiQ-9Ie;$#tP5a$0Pp1_2CyN3jRD*W;LTpcpTvCu><?fQ`7bp}ZI(0sd)!|EY@xC>
zfNcS64`4?Cd#LOTU{?Uo+8B2;GNDGPV+Bl7MH1%NoVb@U;*A&<cOZa+0i2|Ah<KQI
z-H}#;r5p+1D3xQx<HQq0@pi0P>J<5DO*s?5S@LrMoR`5Nze>Cqz~3Y%${R0{Tqa7M
zE3)}KNfvUA%5~xm&3jXJtpaLiZd17vz}*1aC!79}tto)w6O!%)aG%P8Lxu;8c^JT>
z03MUSBt9WN4M1Wf)w2MeQxX1xq`(T}za+1SuT#CLxYzJj&d5Nc1Pc+A5}7gnBl&;C
ziQ5dHWM`;ZN?c!MyOWJNh-^W851`fT#I!-A3nEPrwTHx=DPV{QA~LAvIaH&Rl=S4I
z9+<KOk%2rai0Ght!+1ubL}sF%nJ6bz6dy5r5IKS<97K^Iat4trh&(~$4XQIFx0W`M
zk#gYqf+!SJM<9O?1%fCTL`2O}4Zave5e#HCtSN5twM;G=L^0Ma6~qrDC4=~pq<9b|
zNG6U>lKAmC42cIy3z5!9lG03$Aj$;Q;gV98B*UkK3PDs1;!6-;gU|&L6U4e8)(4>v
z!VpB`AesbW48jydEg7XCVuN^Az)&fO%0a{h(Q1-9`0;G|WqFlX38H!s333$O4ON4v
zutZlah^7gK?P(JCg%YbICME{)cNS9(Vog>|A|?~Z*DNL7t`kJvAQ}X*F(RfO_4>r0
zh|@o+OD1)k8wSxRh#ow@<vzs8d2AX)vmj;!F*AtfL9_^BU=V|3#4^VJEFBJ_HF?V*
zTz|yp9%O72MB5-b1o2A{?Sd%vDdFU&gePAUgtQN$&L@>fa~*^7Jb`#;5S@bP97GrP
z#6tWvh^|3&3!;C`Qr)Rs_1BW-q*jk0Qm6<wvt1!pDmJ2>=+I({B$aXn;il;cLJ1-q
zgf|FZ5PpgQEmHCa$wQhV`6c;pLG;m-o<Z~?@2x2k)0ey-vA?Dd2+AE;iBf%V5Jf*H
zOqZs0Nn-vU#E>9Xe@Yk{#4rZ`5yTjh;lvTdk;G9%sWn<gK1x0Ou|bRrVm$T9#0kWS
zTI8f4=5e5=P?@Uf(>U^yp=0KFITu1^1u;8_Ih@I#<`$kS6=knxd<;zUIruWw7cgL<
zoU9-g)4PnggeU<^Nn}Au&gJAQh%19wMI!p@Agn{xIkr|)y0tTGkl7f-`5-O?@n;a5
zg4iC!jvzJ%<+~!bFjD5EEZ73<gH+!d#5U?OrB`1z?hImA5Ql>}62$Hx_5^W|-ZD82
zrE8W-u2E{QOf9Q%A8~&W2S}#sjUpam<nbx$7ANH>%`-t9BN63z5GTk_2IcWe##2F@
z4noq3OZJ?iHA|fh;v56&ztPt(pCBJJ7iA3w@ji$TL0qEiCGm0)SAw`2#I+!<2XP~a
zqdC+@<wHt_`ouGXbmJx?Zv}BXh&$wuiFbqehvZ%m_etdFq^^_)G#?Tl1+n6dDn6n4
zl=zG&;`1P0XuO&1|3SP8;<YG2yba<VUDA`6L)3F5B`{SdMaa||r9KAnJCFLmAU*~0
zSx!@agA{Q|fRJyp`OBskf-a=4moy<13882R5g|l|kSD>AHiSYU^jcy_$AI+248*7q
zqC?0SLZ%S%Qpp@bmJo81M>^F{=d9$}h+<|Z$q~Z6n(B(kMKd=sj~26}W~qGS`H2OH
z1vT$$_PlTibzdc)bEGYn6kjZaQXzb4V)!A1;vtk^WXTYI4B<wNQV(jBI-`A0koeLe
zAf)boWf)dIgt8%&BbTMObXfe2Zt56Tpt3Aed`t-X5E4R248agmKd|CMs3c~MQpS+n
zzJXX7E{<><tL*KV{4jk?<q%$eP)|qI5Vpn`s?fF3P^%h=oUH00^eED0_O9d_A=C_^
z4)r8r?GQSBs+CMGJ+H;H@N}oS$JO@ZyC&C_e*uJGt654u#D8Lpe5MO;7($~E{s>`s
z2#rH%BKbo|31MGxW77~?htMX3W+9yYr9kr#T7=X;=tAq&w>SPA!V#OHWeBZEE_^bG
z**1iBA#@F)TL|qL{7VQONjiiuvX^ecofN6tDTH4s${(klL+BzSdB*VNgF*2AGyU;_
zX}Z(9lRqdm|7^I~Ai^AiC4@i-!4Rx+AR)Lz@JQILG<F8NLU52ciPB1%yZP@{RsWih
z;tj!1-KTle?J}DZBIKotp%9c1281wB4!ou@%z!>2{1!q_@?IhICdqV0z3fd&j(0`-
zhHzqHZQ=bw=&x~625I?+QXCw@?;-UeJmMOng-NYpAso-G-WoPShDAm@g#96m3So2z
z3qn{J!Wib65W+-~u_27pGLI*jvoc~*2$MsY6~gQgrpRhCMNJQ3MhH_wm=?nICHlon
zj4%KA-w1R&ns%m^;qAqU5!=)Ys^@6R+z{rG&zBY5#87UhUT{$ei$ho)!kQ44gs?P(
zWg#qQ*s8>cx3>RfZg;ro3N6n{`71!<CtDcSl5YrMBgs1AdRc3H_T8T}H-~VoMcgKG
z=~AHsS;YK{;uhl85VnP|J%k-JcM~OMC&{jmJXa@H%sraESLR8-I8hFSa8SlPgp(m0
zV*Vq<!!rHGrH{1!@3+~bAsnNAT<b&GD(bJDr$p!b&4r()>r4oxe~c^SFq{wJf}Eo;
z#)fe*gug?WqhPLrOCemAWvHmj<cjQmyG>6*cpAc0>6@Gp*;qnwzOV8igq!qAz+Krh
zryFjCaGS~<O>dOZ_>ac#g>audK6ji{k@7HvM^qk%aA1Y{&oZg_EQIGF6jo3~!3)_*
zLP)D1oq~Tucoo9?5I%&EzHr=YS^gos4Ixcb+=HX0cal7VdJRd>zoKHRL0(_}F@*m@
z_!`2u5Godp`xL@w*(XID6#4Op`hS1jUr{p-mKO3|k|>B&)QgKE6iCTjEbe4XdRIoi
z^<#d_;fJNuE6AWAn}X~Lq7+0cc)Tk*vw{{G<1#90)0q^=E72$AP#;8`k*_Gq!h~5B
zj4B$pwo1I|ZvGq!@+iowAg6*{3gk^j>HmuApFS?P0zs*mPeFbK1r-!h(5sW$p8`yB
z`<kxrA(Nr6nmpw%^*t{|6%<oYOF?bPqoBAVFF{6S1tk=eR8WSsB<x28r4*D_P=mE<
z9#!kss|GMYI$TykIR)hvh*&{^na?>l##XDSK&N18gG@0B;;HM25@1kZBsXbFtb#c5
zE~iZrAn$?~OehvtML{(M)!9~6;y=5h6BHyWsHq@H!MgV8rPNR`Vu1QmD*0cPV1d7)
zk{K-TkuQ1FR7XKw1#J|xl};-7NkJ0@O%>Ev&_F?!Bc?_SE>R5)Ns8}MFF1KxF|n}%
zLE+65G*|Gmf|hc=7$Yxc61`x?xbmC{8_z_wQqY<%c{APOqw4f%r$Ek{kd6x4E9f9z
zX_~{B_j;CoM@@y2I*YerR9t68y%)QSf?pMMRnSd=TY-mScLjEm9>f%)nP?$ei8f;N
z*V2;5LGC2F<Pd7t7E#cvz^5QkTt8HSUx<R=852|xA{jtbh`otn1;3H>B=#b%Pf~j;
zr4P-%3i^@sCyHJ%s)FD^nu8P!*7S1uF@!ud!!QMZC>YKzjg(0)Cy`uwC>chRPa%#`
zFqUMTf=OD;c#;VUCX&d17^UK5&6{dYRWMC~WSdSDGDE>kjn5*PEo&-kq`2mBzgntb
znS%M`3y89bEhJf_U@^%OP4^{7ELX5XL2?+i!dR(bm4cfJZYfx;V2y%J3O36$P~b4;
zU#H+>1LMP;rp}pT)+^W`NuKLAN*^*O|EZwpE>lFah(0sp3qFtiOTiWeyA|wVLt7Or
zKcZi{T(?cZcA3LZbUUc;RPc4NJ~6*(mm)vc>!ipFfA=cbr{K7P6AJb-?6Az+&arY7
z2WTEtaEL^dsV5?ikpKBacT~YK@&cvRPlS`?XB3<zIYm4zN7_dHygR4hJX^n_;DUmT
z4-J3Iev-qOr%uvE*-3Vpg@}1c!DZ^>U+TrYs^FS}3HeRwZ|SZxp`^M&(rlOcwt_pd
zxrLE0jJpc{QSeQ{cLn!kdz7J**_$uvfr5t$-YPgeGxm{ep$c9rc%$Hn>`_UvPdBO$
z$-H~X_*B6&1wx(^Ul7H7DW3uwe<h3hni{Oz6FcRKA+4g5f1<rp@Loap<oGd@bsrR1
zm*_9<)nDC|_@9DL3O=)|Uu1V}7?=N<{=?0<ujG#!#M!^JOA|&!7}>+f5k_QK{p?E{
zM!GO6)Q--Ry{bI(Gkq9>*}}*`B0P#DnwT++OeC2#Zx)iQVMu2rxaN-7whz_2lX8ZU
zD~#M>9GR&ryE{=HA3gJ6Y~Y0{Pgs2vc5CTd7zM&Ggym(v*kVj97)IeRiiG8=Cj<k=
zonv)^MZ-wxX($y&X_8`L{6JD%l8}@n{uqX@Yhu%c&Jx@)y9r?oyJjpCM%l1>wT4_2
zQ7(+vpG{J9VU#DYK&(i75n~ir47r{trii96V#BBrM#&;caU83uqjZTR@nQAu*Ggej
zrYXl;g`{d2)kvxn6EyF@QW2ResB=<M)eIvkjKpQSpXwQ#zSY$ZqfQvz!ss4G-7xBf
z(JqYkVR?Qm<e>znyoSbM)DNTjU7eH$Bn`u8q$%>~#U^1Cy{l^)#<3&1X2j-1F<XT3
zGkHs5D`IP68=}Ot4P$Z67$F_P_$7?%S!1f-OW!dpTad0x7{7+mDJ(xx8l`k5+5Eeq
zdU<2<mHMtS&coxS+|8^0mC+*%MJ9uskuc0*^$FpYFx+8y!mx&63uE$igFOtV9L}Ox
zM;OD+m8%wvmoUfjSXWqmsP)v030^ss9JEjvev$w&Zhqpa!pWmE#|CA#{A&`@`;~e<
z{BL3O3}ZkT1H<SQ#>NN6xx2IU3!`@!eOPgT-*9_&V&5?2F__ACom}?cKa8~tGwnBL
z9u&slFouLNG>l^T402qO@b@s}Ryg^S>QuluEQ~*-pJ61-(k-f0HQk)V5n+syh5ueZ
zlF5H~tWzJ48PtsqBW<RtKMjr>7shyr`3<9g!-Oy<hH)c|n_*0n!w+L_SbcoNlrScI
zEHW#M*-SE(I4z9nBr{~>!+2A=*rhD$gn6AmVh(lTYnnv;5>StNUKsObZilfjj7woG
zdtAP8-{?hQtO{eboXs$ngt1igF#3MeuaL1lS2E}@{8zca@-RAltB|+2VPzQd7Ii5S
zuto+%=5rV)!&n!_`Y`rOiyw6xWIUxV`JZ8I3S$p>r#eRQZWb=*B8;iu4cn-TxRqwT
z{%XK>iaWw6Gb?!~^<81?CXp(kk%r=Cquk(JqIKN9Ff5CV*_Rj&u*yL#+aWn?yUd4a
z9w8nj9t-2R7W2c+jHkjl9me@EE`)I=jI-jB&7XL<xaoRU<MgV=>_$_+Yo?17|0bTP
z9G4-+bpMRL$8p`|Ft+B_T?ylA82?AsS3pUPbm20C%;4^BAKEkBlOB9v1b4T^Wmw!H
z>9i*4q#JjK#g_#ZhXoeb1r~?J7k6J+Sp3~w{=D<fdFRym&Ue4Mb*oaTs_srYm1|>>
z_hpUb0X0s1t#O??v#-q<Q9n+tb8{?ijYSp_Sw-CD^LUSj_mv8HbHv=CA~|C2GG-j-
zygwEX#^T{vJQ|DlWAWcuJRXZDG^rcK{WBJWr`n#<JQ|A^WASV(+B7aen`M!>{$u8s
zWASP%UejpV6iYwAJN6VB|C+EbDrVPB`<t<NO9SS8nt#XQ9i6X_nbV!Mbw6Y4eb_c4
z$^Kz1KGFyjkxs;?vG_a|-^L=1i1I#L-$!Y_jKx<P8!uy9mvp?{Ztl(H&KVIQB2q-9
z#gSAsWLwjT_PFVe^dd5d$S5L{h<2GG+nkJ!5)mz$R|BZJ5*L!rIPIB5jJ|2!_<nmM
z6PZ)T3)w{TUS~-Wr9@;GkwZjI5xGR<6_HOw%crrq8S{u(n88jarTT@F3U(0kizpzX
zpon^rDLJpi77|fdL@^N!?k7b!5{ih}F*8;#Z}Ord2uECxD=vbN97>3wtPA<<rA3qx
zp@{f%r@gEQi0CAuvxstZ_#zTS)E4pRp}m5L7!k1|D$-Gl=(fvNSwxeiw$ypHhLX)j
z=XAO)UlE60ghNC%5!FS+{q2aOIA!fl=7NYR<7^~Opg$Xns3PL;qC!;>MmIYtIk&{F
z_u6ZSc(>lBXN&Q^u+<bnSWCp}#`gIS)7262wS%Lci25QDMI?zx7R`IpDI)f*w~^=A
zM?zf@+veJyuXeo2Y;Pc<p@`-pT8Jp2+Zu^zDq`I|TVoOP;Ap})q_LeiRozU)fx}KB
zEk(2v@p-kqgNXi1ZLJyGiD<*5EhFhgF4_s(i#VCnL8K!Wp;GC(+J6wyMZ^#hLq&9@
zjuO#VM5>7HB6^7QrhAajjh}2iMf4VNJ!tPGg3MJb9E1gzB;3_()W|lE?EOSk9dGi%
zB7UTLMI6&?16UkL$`M<mCU$ZdM4fOdmPqT<vE)2V#BdQ~MTm5wX&_~Zp){JwND-r$
zY_A$m;uz+AX4r^J)H%Z)vIw^bmk7GKzoeU;?%;PGXEwk?L%oOH%Q)$r(<kE0$s|9U
z0TDAj0_D;jE>(mkA}E@7yL3i_hI-gu^k^AULL$N}5+6r1f_eE}X2D4!CewKr@t#JA
zh^aKrMJy7{RcIRHY!TC$kTQeGOvYJ^4{k@#VKSF-9^-t*1&max+x&!|L@Z|Wk%%Rh
zeo4eq5z9m@7qLRb77<%HYo&-)B7PC^Gn<2NJ9am8tQN6G#Aa4{M8u4FWPWn374a)8
z>ljH{FJc4pjf|Tt{idGj)%w^RTO8Y1IbrF)iP%n4Rm4saztd8{`YsW>nd}#_hbGsX
zH2W<7y&@{yHW!dW4)X)<fQW;fbx6b!CWmQA^tZR1WL~9QF)JeRn7IqVA2fcf2*;T;
z&KU704PX(c*gVI0+VVLg;;h9ZUZkA2_yrLcnKvDf{x9lDeh%@nh$|wlinu1?KIdMy
z{O>WjL6cp?q^b!wE&Udg+am5Txyv}PhIvGk4%IQq0}&5duT8J~xDfkT#1j!uMLc8i
zAI9f2keIw+RF0;lg0DopX7fbV=+AYcZEZ8ZVe>5`IsD7yVa25XEaj_+56nL@ezNq>
zOumR%f5<k3AFKZ+B8_AY&Irax#<Ywi7I~c}gM=svj{<lcK(s{PSkT9fzHVfakXgb!
z8S`aik&sowaTiXwkWE5%$@~cTLqZM-IVBX6P+UST3ArWn4JJh;Y+GQ<BcTx2vVEy7
zuS9zoCg)?!&sac0K_-FLcFHO&q46toe~BUz=Es_yNpBTdbHi3bLP-fh3A%(*5=u*G
zD4~%=FPA}C3Gq~&1V|_+p`wIJ5(?*!E-#svm?}tke?iF5P?+Kn(%IrGOBgXzuyK}q
zzA##J2IGVnHe)5&nNTT*gg6P!_L`SU1PM+{A6_R@RSDJTfBO<WaD?g-YDh?ukSw95
zgbkJAYe^`dnw;i>P-Kpfz@=(4*0CZaN~oM@K2MY)K{+b4ixcWR>N9CiYNxY8efGJy
zxM%|j)YJ{Lg(`0IYENScO(cjCBneHaRT8>N=q91LgccGyN$4!0W5MbzCG&NetvKwo
z+2(6ZTT5tT)!SA=JLc^fJ1}-+T;(vGSJ0Iu30)-2=<B4a`^F^`zU~`etxcBh5_(AJ
zDWO$Lx5u+gamcMcy(ILe5hBqqHH_vssf>dd`$_mwLVxBIoSqOIz<i*ksQID?OBf<y
zC@Ui@eVByd%$r$nvKz_fC<(nTn%6TajbUZ1gxv>{$#hAOB?RceCAcMcBzPtGB+waG
z4<%Di(y{nyj5&mtY6<G|9WS~qebG&oph>v9CzVV}(+?yc<!ft(gph>g5>`kEOBg3%
zj)b`q#!HwWVVZ>L5++KRMB}`B{1gcXqJ+s3C?K`OIF&T<MYmch-KLVmwPbpFj+!(>
z!b}OXB%Es?Oxe(r+-6hRhi0EoF_K;<#LuIlF5xE$izO_Ouu#Gxsxe%qQFEuiPW;z7
z0=13WNzs;2MG~rBb}r){xV$x4iH)Z$<E}utD<%9aVY`GK5>~OpW(iv){378~IC-^%
z{kHfu64pvk1>skApyKP8P-E890Jiu>CYu=dIfRMs5?kr0-6ghBpASw7{pI|PCfZD4
zV@y2ZP6@wDI4t3agk9u7ot6-PNWvaEzvqSbdr}W_oV^nENuVRz&*lNf`CZM6kaU{p
zCGte58)?#wyCcy2J<7dGJ$8&190?~R{3&6q3!)1rC7hyJ??M$9PD?l=;e~{k63$X5
zOSmNAvV`+=e)XuoB=cn`7bFZ65^lO27bOtVuB1`#&8sn2IG4yhCRZ7+F<zH&!^-`e
zN=djS;WjIGEZwO`QQ5n6MoOD+gt;%_0S(1>wn;DS583At<737rj87TK`5BYvjEVPc
zuOz&dkk*BCF8m|m4eRu-nYWhzXD0tLzN0mb$$yL=7(X&n<WIDAT{Dl4(iaxLO8CYk
zjmzu}N)awZTD<R)jHIM@p`Z(eSj^x;lnc==WMnfBV<s0eyO4!>4#upE*%&E8b{G0y
zFoWl0C6}e=c7a}|Lpr6rF63i9zm;3S1$ylcWfgXz2#Xb5pa(RHGB52yF*b`cmS8N&
zSc;K6cegG>#mlgNSr=eMF2|%iwTcgrd@8b1$%V=;*j$KVGtTmlb-`|N2b1Cj;si@^
zGWjw$x~dD+To~xWAQ!5;P{V~DF7$MvCOg!1p&pZ3E+n|jSA*4NBvOY-q6<k(k}W;O
zW$x8U4%EW6U*ibtyU@UehAuSXP@NeYyU>J5Qx{sg(8`5oY&K`4QY~D_aM|qV)~vL1
zp}h-jtlYLP{CUPa1!i)g6YCwV+?7ksSO2u0WsZa&T<F4jSH^CZPj?rJUoaa<sZXKI
zguPtmHN)QQ(1-e&Nh)JM#vd8Uv%d=iEIz7G{2xP0kT}?dAubGMeGDU=&0#JK=QBHk
zaU|m?>s*g^fxZlo+s6B5Gb9&Wq`0uw1=&R}(}`7FP?@-0@Gv3K%f#n`pGkl**S*4&
zrMVDvVYUl%T+m%GT$sYSA;t-e<Q8^e9P{yvT`Q(1k<vsLCb2S^@q5gv%qe#olj$zZ
zu#}lhW-(HbxlES1u-t`t%;&qXz=eg(DZ)=KEMi{xL`E_fGhbrmE@iTMYSao#`Gv_!
z>Ml!J#pLnvjH@l>dn12!VXF(<SX}4AdL|nzpN&j5xv<$%wlJZ(esf_vb$g+>gD%vu
z`e6s>?qvL(ahD6bUD(5XuM7K`&>`$&vTkM+@dGrHIl>_;_b`(qj7J&&aN!ses+x+N
zYb^XpGe}0VjFT>$qV?Z}GcJ5{A&rc)E}V1Wz6%drIPby*nqn^8aN(j0f4Okkg)1(4
z_fW*~f%Z!-bY5hmwCA(!DlI`S^NX?fQ<^u$9HqNE)<l|nrv2@r4-4FN;hqb(T)6GR
z9d>Ke#(w0GBQ?@KVxEH%{W2ow-T5=!8y8V}yYSG3M=t#9!aElpyYR$?H!i$&;VBK3
zH4&6vagb*&JZJKP@g*b0dF3*{^uDG~0ao7f@08j-BW@+6f9}gd)xCG&KNmi@kb91!
zuH9MfOwqHu?7c5VexwD*S@hG#xKA#8wxWG;;j6_<^o)p*5h<gvj3P49%19?8ql`>4
zTK;5DFC&ADC>d(Y%oqBlf5gp*md$RtH_y>acVwn7|1xsO$SEVMjBGNp%Q#pf;_z?6
zjP8yhFKzS$B{`38m7I%96=KZIn1_*a^D@cDn4hr#V?oA){8y0J1NNdaiphwP5i6s(
zj1n>`$*3%&!^rf`HujZ+B1^J=DH)}il#x-E2^h=C7}4{8zsSnVsK8=HMruR0OXe*k
zn{1wrHW{+M+GT%G!ETq~kRiyRuBO~LCZ|hArWQ2EgHuMlj4CqvoQbMI!RI-ua<poU
z)fs7AQ9(*I*{sEwKyjGVVWiwdChNaNr^u))qpOT=GU~~wFQbi&wlZcP6dK5AB%`s6
zhBB7y7Q|lhbWf^@jNMCx<}zByXez^X+18A4%4!GkmNHt&NM9np-%{aQinFy0`;FKQ
zTkZ6oI5L+k723%-??~t(qrHrgQMEfT66q+TlZ*>z<2uVAXG%X%s09KMs`QOy>n@{*
z3|WR-Mo$^NWDKVskkOlZL&hK(gJrC!SgWs$elmWP5quh(%GmWwET#T32FMslqidV(
zdSgfK_tm!Nij(pQ<TgYGlI<-T*@v<JP&)Ryj@|uC<>?LkNExH(0A<Ws<QOeuj0{mm
z^IvR~r9Q|{LB`U6+?z^OOYB30JjsF3Bf~3Wf{ckWd@}qLUxqFtKs~(GrpQ<mDU{u0
zBd*HOWISr&$hgTyRg-SW2+0V`7{_7jCJ1w6GbW||A8eGy%OIq~nIvPfjA=5a)A$@=
zKdE=2G=<hBy~|V?xy#up;LLD=88T+kp~;}bpDCk%S_kcTKSxH5jkdYu*4Q+OS2z$y
ze1VLGG7iZ&EMt+3pJ=r3fLTl<fyo*fOPT!4xQvm;)p9xu%vUmwyPr(rDl7LFCaY=W
z#F#UBt&Cq~tYdMbOdIu^;(8eyEdK+y(rjkFm2u1eqi^FN-{WkTu|vjAD|fGq-(^H^
zv{Twe?V0G<En|<2xz!wts>YMpB1g<V8o)VX_A?%!1%wIRSBl#mcSOcfnuBgQ-S|Vs
zF&Q6Ze3Wrq#t9jBW!#hTCv~rE{;t0!<CKikG<0QLWaW&Eb4-3x3!J3|VQ*^w<8jB-
z0_Rz*zSsOI{g;f(GOoy=|8HEPhK)~M{zu$Z8k|L(l;-%0RO@5@Q{}ph8#4Z;0d_R*
zmW<mnZc<$X%q>LXZ3%Z|e6DU5X}I4;f3Xk>JMYVQAmb&?AQ=y7ILUa<l|E*CD&v`q
zC$w_%|0`PTP3>K~7=@zra!>RNI@d?y&g?PY?f#mk@bxT2-pcrg7MzaGTAkCs;pXYp
z;{TQLPR4s0mi&K`|2TM`y{YcKsqLS2{Y0&jQNWFYZhVpPmDYB;bmPW18EM?e;5Iug
z!i`8b(lOtB&8+CmvADEuyg6!K=t%Fzz^*8?z<dEglpE1*jN?E2ka?Q^4&+7_H*&a<
zlZ#V(vbvGYjcaGjf8AtvV@EZNDCXQ-)S1hT+-~G`BcB^TZzxK+dALZ?I~|Fa<O9s_
zM*s9qO8*{-E96FDH{eD&H;TAX)QvLiU(Ai-Zj^ANq#M)^-_Oy64Mj`2LA8`-9|}nQ
zKVxs|_w!qp#lBrp-i-=w*xZO=B~ms2TvXAGN^VqkoByzCxz9E-t&{#FLwc+m4maZ5
z7}+Vk-3^LHVyDvPzAKe~i=zKr#k=v~R%|Ud5|~tRqbieXjFeT~jT&y$WV6|eSV|<;
zcB76PZQN+<Mxq-@oZG^UWUEvoH&U3_wUl~H>N7TQqal+PXUu4n8nfBNjiyYRF_PY#
zYbVmuQd+sunt8vRF{HP1qrDql-012?2i7}To*k`P$gMMrKQR8hH<grbZuGP~ySvfD
z;ynu__F~?f(aFb~>P9~|{_*0C7eCVZb>o&Bx7`>(<I0W2ZY*(QkQ;;DnBb<12^iwW
zP&Y(3BsYe+%_V508>5&EXB^=MZ49!0O2lY3r?)UaVaG5hGM35IB=hdA%MA~kGNYSu
z+bPGJzoNZv_}uWj5nxeu<LGF+;>O+G=9AqA_ofnRoE2o$84bn|W0-LqBRP+Eqnlv1
zWRe?`SzN?8g>k+cQ<+R-oX$9dk&4W8V;1w-jB^<0GR|WpAAjM91r}fEM)kFsN&Lx;
zxtDDzwFSbZZY*=-fEx$hSnkFOH#WPmg^R3Y{Fz$FmwZ>T`HLH?-58Vgf4larVR5Y+
zzcQiV>)cq+e1oNIWU`4dE;(W=ll`=eL^!s6_i<x8tu4!A3*Jbx<GVt8PP*|s^IeR)
z8TT;mW!%R|HMYKP-UzsrC*qKso`1(tTJWtF9<h8ny-G9ShlpctTy*0vH;%h;g0uc~
z<GdRe+&IbRDaO-`XBf{iQv7pF+D-2A$oIeRW>bzwTw?Kx8&{cJW?cCq<r)(zb<>UO
z%x^IMZRz_LM0|I?LxabShaNog;GP@zX@T;flm`z;bR(+=*(l46$6WA(8&BN$cslke
zo8Gk!;?LZ8?#2t6wq4EtKCOJ0_N5!IXtdMxapN70s~Yids20IaspA3@-@5THE7cyE
zCON!!<3IL{Icl08IsPX%KGXWoJgo<t8kn==E1fA;(s;~SMk&IBNQ-Yshjh%-GiLB0
zib*tM7RHPoWMYz;ks{Q7Xr95~yENH7$l*azOV8;+VGkN1E|&-Gr`hh>6LNcy$Ac<O
z6Z5i9KFc#dlLCwdJt$=9!)j$N;z8mr8>Qy!%<t;OJSgr#33i~qy0zDwv!y*K<ALmf
z+k>(mz=OIT)bpU62jxAe=0SB2DtJ(l&dVA{RW4h}V{WHk*@Nq?|F>tUjrAB0Vm+{X
z;9!%2$9oWGae;}Gajz0l#nP*Lq9}4yxs)1I_G#G^)`$KTSJQ)9mQMnc+8)%gltd;;
zjLD2`+C}Vxd6@M*Xy8F_4@N8YhL(Rv>P(9__MnLeP1$VbK^rE`J!rv%c7voKEj?((
zW^2ZQ!BQl)W!{dlJ!1#P4PkR$bYkAwgCCf5VeH{SS0?1p&4cb1zuPpTC-Yv6PQIhp
z$Ai8eq*^}1J?O{$M-TdYFu>9Wc`(r8*@i?6w)hYahB6;!DXu;dBRm-C!6*+FzB2z;
zHkP`DbH^}FN&erA7Cn$yaam=*XL&rB>cKP*ydL;C%kM$J1I0scc!{VzCPMY#?lW`t
z1(|4!S$dm_?t$S!h)ab%n8ak96@R=36PQo5l-%VqO=dpDQmX9jJKcjB9_;kscMsib
zHs{?|54L$Qi}`F1=6EpIgLxjT_F#<%^F3I=St}S9GA?0UMB|ppV#bMl)+pdo50<gA
zoH6Z;|MkgAHh*SZ<-spZHcl~jQeDfO$gfPM^4oUSF<<Y&1`jsUqQT~754O<UX>0z?
zo)T>&>zicmmrJSXgEYT+uw<ugy9Ya{h|l@-i;Ya0<GZ-*K@Sdju$y`H3-&!8>}5`6
z_j$0N`2kDm)H>?02k%bXPqA`@`RcazqaOT0ozvD%>6iz{nV+zfKRr0feAg8RIh^LQ
zXFNFT!8s4kdvL>pzdg9%!9@=)dvL{rzu4!JRc{S`uk>M8#8peV#$?K$nXWTwmD?N)
zH$AvTV}q7@4{lqYcbLq$9r4}szNJ54LNUMVk3D$e!7wj|d-2qRXLM*Dy!YU_2L&f3
zzVhI;2QO%xL<w})<0Y-JHEX?2C;US*k$wU&5_#i6u70NSuceG=mia&C*}cf&#Rm^Q
zdhp4E&mLs<B8wMaJoxG{Z?(k52vf_|9dldwMtyQyNaIC>7m;2wT6!-sFiGo0IwmCU
zuTqOJip`ii<{g=6<{7=nWcko;idEbtD%8xF)r(qZV~5=lvU%}wZ|b{XVoon|c~RAi
zYF^~_(x!-r@gmlXyk2^f1&Vu7!i(+6Lgs|T{9Y8`fCas%{XiJ6n74rnc~RJ^rHB_r
znHRH^Y|A4{dJ&iEBxic}P$@4;b5<F~3SN|D0?WS~lk#3{IhK)vSG4p>UQ}jovy^ko
zBJIp6tl)*i(&MO$nwq}?s;)?OdJ*r%-3zuQw}mQ9uJv_R_d>5Jq<B%+iyGV;<Xn@8
z7YSZmSr%EF`mJWIL=ISo@!r#@BrlSg_jZ>!#BHNeM!Kx^yr|E5141vdD)9}yXyip>
zFPeDKj<cFFwq$I^NM)NdX~9U_V76k?nz0Qd`Ly-o>uvLdw)dg~i?t>d>&S%m0`0`4
zGvj@Ci7sAr^`e^>-MzR!&isAX!;7But=^0NUi4zOzKp#Y$)OLEU-y?vwUmBLXqVRk
zOsF@=ZJ-x}*c{9_lyQg`8T**eGEgezE-}JO4+r6IFK&7<%8Sw8i+eG~i?Lp8^kS12
zD_>O;y_n|3bT1@!pt3G6WG~!ac)aj>VR#Yp!pFHPqu=rjFi{x4?_{fa5oA-hd`2|S
z9QI<I7n4{S&)BlLIUXoYU~?j4RDE-RO=doYajK<1juB>f@iUt<y_n_2Z00o599gT+
z@nSBU^St=Ui^a_6d$E8C#azf_krydf%wOe8EPXkXrHsoMcQi8_wt{-b@}X9(qB$5V
z{KCp=#x-87WkUP?{%U!y^J2ZlH_&{!)rmq;+U&(vFSe251<gKEcI|ckMpM{}KfE}`
zMRxGG8oj}}(~IA|*yY7;FAiGK_AuGYbK!f;eO~Ohau0Yxo4AsGh?T>Ze#DET7QbH%
zKVEQ#%Lu__;kXwky!g|L&)aP$y*N)N+9nV`#mZ?f&M+b6ER%Cy2<c6S3tse?CQ!QQ
z#a|Y`#N@IUw8<)EUG?G`S9+cC2CY|;c}-^N%t%L`EVsP4?Zsm+p3pdqaNePL;l%^y
zcfGjBgmk)#{m^RpBU<w#|F<tL&F-gOJoDl;&2csUxfd_k?UfftcwW3@lQylLeKz?^
zE^~eEJXh!xE4=mMUoUn9urq*nUcC2Wh#y1!_>Y!-FIM=l(ua>;eDb2L5AA&TOpCu4
zg?uRN!&fi9dCe~#nS5B+#hJ#3_CH2NFei~xq|eMv%b3oG^h`*};6oJiXvU0|zW1v6
zH8nGvS$xRKB%2S}ndI;xFO!^%xfpXZ=3%6=nL?%VG0)FffU)5JlUu}xqCVJtaQINn
zhvGiO_z;;tu>|{+_o0FhC7G9EEX`Pku`DAP%Q0^4XnrHgzAyD%J@Y}%iY!+0p)wO2
z<Lc(-KdULlvRQs#YV%4$oDWVP;(ZWUB;{*Qp$hX9AL{y0m3cKEl2W3p`%r_;nm*KF
zLeXmZkifjQrS$4+R+LCZSV^|@x3ePaF>hum^_etaY{=M%v9S+Lm{6Ri)H5s1gKEx7
z3&xg=tt_9`KD4p8-5%ZEhYmhW@?o+M9ewEJ!w?^a`tas$TxWLsf%?3k*~l(FboHSd
zi~Xz!-I?_8(F@Da%ZJ{U?yeNwhk0L1N%bMyzviE~eq^OT;{e8ijDr{lGm_i<^3lVX
zkMd!(58F#c4)<Y%l{=Ejgi?`XeDoM8ZrzNV=!3|jZ23q&xR`ewVz%GygNIG852_Cu
zb04FhG2ny3gq*VuHj4z=3^VGCh7Tdjr)sL{GtP(ctW2=<yZjXD$$1G=e3<IPY#-+M
zaH6wwnhz(tIA{1UolR2u7fU2%ChM~p*LQZ-nGrwNhj~8C_hG_pb8;>4VVES0TU%<O
z4>>a?9X)UUeqZFnPh8_-#wAwmOPMV5VY#L3dJ*}v53785?ZZDl{NlrEACCBN)Q2@b
zto7lb4@F94{*@L1>SrHz_^`F6`3-+PN7$PoVFQzmKAaPxHu<ob%`J>u8OeFucS0k9
z-jYn0eb^k*B<gosH#V6+)^@S7+w$Mz!(NN;^I<>p1D5h}WW*sKJ;3NZY$;Qp34i!-
z%!kv@<K9*j7CehP?nAX!!UgI~AO2*wlZ>x!CQ)^#n4e}m<HK1d=NQj3lFzkv5f^><
z%ZGlSY?pkv$@*n0_X?A%jMo^iGv4swZzdFB$tT+_A8z|_$A`NtK4ZM+!z0V*z7G$W
zKeUu6p7oD?c*4q4OV3)$ysY=!hZmOelF2I?0EIGAdgH@eAFB9K)sKIDct=aRA4UA;
ziv6BF)6l1Y&)j8{ln?YNV8!{w<TK+J`V?UD&C0E{CpyB9NRE@%j|@!GF;blLek_bL
z*UTtCqW#F|M<&iH#F*KS+)T3gk(Eg{KXNe1&PW9dmx<14@mzk4zha)CJbvV5F`pj=
ztla!e?k1SSub?0E&Y1szJypjvi~3Q_k5Yb=_M^C;-T@>W>@Sq`qXhGoqR@MgFmkAn
zr?<0O8AlmEY<}dMA0NHQR@M)2*m8c9_oD*yUpktTmr_MPDzQ?Tk(7dkqGSAs^~26e
z-T^}0eW|27{D@;kV02pk@k|cKMpg5px*zrZXh26a!db(QT7DczPOQleqlTE*mlFJ_
z&1M}xk~ufgij%~o`gF6aQ~apQW<AEEoy^uY^rMj<&HZTMM`J&x6o_lWxi2yc#L1y4
zo6Y>@JU!Yns-+*T{20JuYsT(=^zfsNA8pxe=SOEIRJJ{n4t{jBlumw}k2ib%2TSR~
zq^lp@ETwj3)1jvyy;<pH>67`9%szhfWhIrdALEafPk$OtpQ=%DN(22E#QI<>_i&5!
z!~7WTN0|W11~9^pk$!CTW1AnN{21-WTpAvJjPYZvpB|>hcs~xl5JW%Ret4Kmj4nT9
zCY1Xme~p~~b@Fl*MS1o1G57lsV50b;GSU1nm{8k-OmxOEr6NO2!dC8(-R9;J6a1LP
z%0x?_<i}*@Qy8aO`ZPbLGoN88GwDELYJBg9*?zi_XHI8IyGljQ_hW${>;2e3bI^}P
zoVAAWCqFJMw5{@EF`G;LSn9_z<|`Q~!g4=WSp3FFb4~c!k52{7Q}&CcujbK03Z=Cy
z{>r$Hkp|MSuEOGC(Hs4^+TDz>$&bxe*)24M51MQHZ+>j21tfs90qpS8dztZ<AD8_2
z-H%;<T%<vm(=5B&kElEuckXu#9VqPaW3M0k{Mb*kfTpk?e{$G^ejH_Ti19Gv5k`uT
zGbQ>D=EoS1Tl$au6w*mQ&RWVTKTb10V<~$YnwP51v3Z_)&(bRni7LtOp`+Z(e%$us
zjvrU7+^bBkF<xi9;m6-hZZh6tq_T&L6^MTv7vC)Et{?YUyzj@vn{glfc;LrFKOV98
z(vMeuJoe*>A5U4i(aN0N&-{4K=ANOZ`NEI2b<L%K(ra4nIg9u|e!OA+)>2}Wh<D82
zGyZ4kCwiv;NT-|4&x{cPe6e!B`tgl<n!x|YTbYW{-#5@m7eM*|iUd$JfD8dd1yC@6
zLhKeDK*j(vG5@_vqEaO>a{zhS%o0FWCfNeW!Gv0yJ%HTL&6@%_S;@tin=y~&<1B3s
z$b13hx0C`*CiE|Hw_UO0Ys>*wn3XAAob9Jasyl7P0w~T(i2zD6IYj;6#Qf@8ip|mi
z#5Fa$5doA7U}ylt0w^Cqg#ela&@_OG0aOaW9)N>#v)d~N5JSg%A;I>&q9W!NF_dE2
zEa*!n9v1+8>!`_!z~~InzNTjHRbeDjl}WV#sxzr!>FZjWjj6?ELIAY`s1rb<m0OQV
zQUJ-8k`h2&i|=Wlxjyp-j13tZS-Fh^<~Je=-YkIT0dxzXdjNa73oQcZ5J1NOT2iQj
ziR92KfYw~94P)B?+A(P#K&Z3XynH>)NlGc_?8r`>)tQl$9|GuN@vc_il76>Lt@l6K
zdIZqZ%Iy_E?*RG)(3h0~mYy0wKa2kuK!4_^Z04z_G%$ccR_@>chFH91tEl0$_y;gA
zfcXK83}93M6FGNu0CN_bWt9NN1TZ!L(JJK&Kw|D<lo{QO9!4+Y_g{h(!5=_?m6Dsy
z@7pSKjWHO2&V+`O!6Xzwn8`Tmw=w^_e>y&Z2`p0a)M@6lofN=iR;Dmc4PaUT)0xj<
zoWVGgaTeojMk@PXF|%9dvbnfT<^=&P3}9^lzp}C@fS&?b%)D|ov%yOOSRKIc^%9n{
zxGaF>0jyw7xwM88u4MCP##I6QV&!&>jb6iLV}5W_gmnR|=d4WuY#=^DptLc7HwO~F
z^RoA{Y-Wcoj9aZZ+rAUV?TntHwSEs^7aet($g2VD4w#RDPbumcy~egDfV~0i3t)c$
zr)U5Na3Fw#0UQnBj{pwQq+VsC7f>GIIEMqMGShbEwE0iMrw5{r1#q18yq`Lq2;fiV
zCj&VDBCe1^kJQ;{NAa4g1>$D{I2*vl0R9T#TmX}1+t0HzJ@?x8Q<^1t<1Pg7B5Wse
ziN?<z+m!%%?MuB(OW*2PO1IC&?%(Gm<yrvO1E_bxc7sCM?DqrsJAfZTw38%m(KyfS
zXe--q2XH5Vy8&F?VyE=a$t1#i0pL+05i0c{fQJDLo|91fODvgBs5b)W9K;VnJPY7C
ztxhT`sCW^;%K*A6=%(OR0IvgxRbW@}51oPlN+~F<;B5f^29Qrdeg*FWcuxzjf@}(1
zv%-e}A{8WN6g~z}tdR3d0AB<6#QZbk{EN<PN1T&tXZjYv_}fB+0@uOBGzyN^jwdq7
z*@?uo9D#zQQ;?oHU0KbbfZo*=rI=S)qZMRiLOc_b%nGu6S274B(xtiV3fkC&TnY|v
zkIliDQ$e9E=3i@a6H(*yFy>_>lP-RaohD4qAQVtgP(krabOw=ohpm``!U{%b5Q-=$
z%A{o8{0}k;^;S5GvqK3+y6|37L4g>7ij+}MRzU>?6%{~1IR)hvbCsTxJAz&~+qAqn
zJ(GK8B$UqCDk-SUxuny6^)>}DiutA(+FOGh64FOI6vQcLOK~D&Xx9QkK{W-{6>|pz
zr-FDURT!%>l3wkZqlSW-3hFBe?6uWWkf0z*L9&9{>{G|WL?&$y*(p&$N+}BJviP~Q
zSp}tf3dYuV5^12Ip@K#V8Y^h7par`%QP5ODGv>>FPNDR@RQx-E(s$mHb6Y8B&7=(@
zWtDyq*G@ru1s(Y4eqij#NC(@ANoVSi>ozjGut{@=cy|Ro6dY4<TtQC-y%Y>oFi1gf
z1$`9!sNlxeYP4ZRUj_Y`lbOn7eKSYlZ#JVzTz@tPSh>5aItD8kqF|PS*$Rd#7)D*E
zKv6JU!3Y|q3S<Rup4&#!7~u0oXJ?dx`6q1k`v_yGixh|oiiK?w9no#u=o#^)QxYa_
zjy<<C*3JH21wI8H1&eA6^jeeC8*NRe+UD-J`#G03Nv5w5ssc^HL<N%+1QqBC#w$4Z
zF->%ti2fB4PJD_r6oeFn6>KPPKk%E)UDq*=IzhJ6>zTR?tTjQwx9AvKJI7=NQ#kCx
zI_ak}8S=(4Q^7O^(-k~%*k{nNAL`6=spEg2>||EA+39^xa}>-~ut~vY1@q|86f9G)
zT)_eb3pvP7)GfWt#e5N)pK`>}JERsXSa&Xh_Jv+TjUR4b%Ghyi(h3DD6}+esv4Nd`
zW?av>O2IEoDAZ~uYZ%uu{z?Iv3>am8VJ`I1cCxACT-dge#!ngZix8zP3bv7tg00lZ
zq2>?UT#eFKkB{4~V26U8RJCf(vfpU}+Pdvg=-F-iE(LkScuKn!b9Zri&Yhl)->YDs
zg8j6Pt+yRe@CTEFG+D~p4>3Q?c!ZIBj?xH8YbQdf=_}g_1%E2|sNj==licRh3eG4v
z#he;IyXT!%a8AJ$1v5H1&eO7R)OL~a0<~?kjm*}W?SIjlv(I)(!P<cWrOPzrZpLjM
zAY4^&O~GIDgzE|(D0oQ2Rl(mh;AaT*X2Wo-a8to88kTm`yv^he<6Xvk3hrCE9hXNx
zqLwre9@Dar2HP&!sK^rq^q}Qa1<w>br<29b9~8W_O1)+Bit#n$Ki{(yd^uuP`tNts
zF1%y%p7B3ga8i@Mx2k$>d?sh=d=+_Be5D~utGbE|D$=Ots(9~_Es{xuiieu{U7eJ)
zDhSi5=3j1zM5%~YkyS-D6&Y1zQsKE8m4!=XR&l&~7J4iF%>A}0ee8!9=cfqSRpd~S
zQ$;QnYr>^SnQQ&Rs+l<<Hy2F!(v9?dD)Or+%}N0k1yz(_UPwh@6~$B(=T?OVM;1|0
zRHeV0+751xrI%H`6wPt?gd0p)Qbj2hMCcH{KX6?}MOhW#Xyq8mfA|1%Sf1=)UT3SQ
zV!MhRDk`a{tiq-uM#TsfBUQwzu&ZdRqMZtdiZ~SwR5Vl}sBo&Nt)h;KcokJt)KF1V
zMOA8fy)xBQR9B&0sW3TQC)cJX%`e*0^p7PBW=&s9MFKfD2AM@_R5}$=kw~J7Bo!$t
z>Z(XqL2e}OjzQIq70IEVYC6|vq?mMvNSM@>ltwBVlc=HvXEjmLj7d{Qa%f&8CSg-4
zlU%g5WU;l1R!oZbGQ~D3rWc4N(rS36_9{B4NLA5KMMo8#*sYg}&MJOT(N#q^R=O}|
zZ;UDF&6amp(SuIzrY1dEFV!x_x4JSlvRTy_%B9p>MIRM?Ik*3}N~AoyQR&C;riuY7
z$Ru%~ia{!ds2IvwgB{sP9IT>uk(i==VusNfED|%Evq-l$u1qG8Q7T5On5kkGXN^(e
zR}oM#R)wfSVo_G%X5vzjJ!fSqMaiSWtHQ_nYS}zB2jy5wRF|ScRWU)uL^^|XE>wh7
zj8mbjFsLgA<`2<#vsN+3_r^snh>^!sjx5;O$p@RYynVb15{dkCt->S~lT}Qk9%gY0
zh00uUD%VJal6PNf*X40Dcsx)8sMF{s=4=&nXr`!Gt75K-c`BBvSgvBeiUlebt5~99
zp^8N+e&SHiGTI_~)}h|^oT;7eNyY6_73ym0(xr5Ct1DwcOwsfeSE#fI;}`b-&^*u2
zDk!buF3r?5j(U>ZR;$?62&I$E{`pnKIu%>lpUm|tHmcaf<_4;IeN_@EZC0^`>MCot
zd=}joD-!caYQF7ztIFDb<1BL9sp5Bvpkb4ST`G3dP}h*GVULQvD*jdRPQ^YI`&Im{
z;--oNDh{eRui}D=Ln;odI7QQNkU;5(icvob$5k9v@dr)S#DrriHav2?Z4gfvd&xY(
z4&?KvijyixocB*hGEb{Gqv9;bnLb!JM<->lkUy^OmO-?~lyFlNE~>bs;<AeW`U!v0
z85aeLc}2xl6*p+*IVtQPC8XJza81S1F#@IQv{=Q}B|`d$VZtpHw^iI%@j%5L_PNKU
z?ppr2-_)WY1r`*0s6ua%@=C>P6^~RrrZvare4^qhbr)w%uq8jI0mfV!=X^=Mv0a!o
z&Pf>i*-mArjZGQcDl_%QKPui>J@b}Hn_Wro=@4jn)KE;r2NfS_mDZ3+!zVfg`%=HE
z_@?4BIf%j+M(PLi&@@D7NUI^8hPbTp)Y?nEosk*{8x*aTUc;37iBXIh7|9$Y3egtt
z@mnIr$*du}h8!$r(U4UG^;k9y6pa$`oEoUB^DyROET5-SZVfGZJ4vUMm&JS<@-r#G
zNP0mHg_sw%lp-3wpSa>0N@%cYh|$bJQc?pnl+#d3Lut)CS=2B(*fN@V$YnM2R1zt#
znFF9|xx~sEDrl&vp;^QDr(;qou^TzG%o=}UU#jP7LaYY6hH4tBYj9|Y-<9MfWD>_H
z&|y~UM0yns)F+P)r(EkN5UEOai77;CXsD@y#$jy@wKUutD!lFOOwj0eX!828Dc`%g
zjz)WJr6g*g-lkl_6b*GX+H@M4hI$(6Ye?15j~p~K)X+&oXAO-sG}hpZ>E1>|6Aeu@
zG^fs_W6|gpekphNrS5I%9N!^+@g+w~4Xre^reoRac%0W%_P0tN(jlHq;%zmw<E-`?
zYTt2oWZpr;4R#oloV;RS;tv|SXy{8L<chPahHe^qX_)MaPs$zNT|*BIJv9)|^3B;f
zw<(faqiY>|Yv`ll^S)Fvzl&6alpcBGf7CEi!zc~?H4M-&kj23ohA<h#NTr5q=qMzQ
zphLdhk;pI&!&xb~Kb6ef*^+)3pEO#-7!4i`UJWY?)f%h8MWZfTlBhwVfw3vM%Kp^r
zU6QG7vIe&X;;r_l4%(kO`H|D7fx5`A;qhfB9ee!XL?QtV3M<5Su1N`M&^64ZG4RxG
zXrMUbHB8VD(h#Ojc;uvx8pr-rDHWNhVUh;wv>6(xd6W5ArjkS6_$k!*T%G9fDNUn6
z$XV28GG}U-MMEW`?raTnH2iqE%gC7SRK(Rafr`x2Fkiz04GSrKbFR{`NW)K53m@rX
z4NEjE)3BVzJjbMfRP}`S9f@cY5(sT&%}Q5l_?df&BHwtOOjZ1%VYP-e8rEvK<8f@z
zKtqBC#;-KI2Pdv$B(k2#vCTbKXR1qXn>B3F@I}K{4O=yA)9{E6P{VH;JqqnOqT#59
z?aX&**hvGD7Jm)<H5|~en-+f!`)E?+h#}{_)Lr)+L`Wf|MEduvgO+kg!(ryMFVlC2
zKQtWIaDsyzv!eZ};UtY)4S#DmrQx)Ozi1KDa7M#f4d*pnVE=R6lJ9kWuap`<HD2T@
zNV#m0t4yv~{^WCwmFwJQGH+_QrQv}_Uzl;5tGLI`ci4@pxXYvt%;UPx?fk#>QYTP^
zCmNn=c(36<4bL=Gj;{Mk!)uMUV6F9>&UFv_3k@%65m=m%@tni=ul>SY+dmrKXn0G9
zGuJk7lW;v}{J%7+bH*=OnEZ|j@zyV#ALvA1voHFX^hrbc^N}Cv?9hwJN;^pTtRa1`
zBqHBv`3j;|5D7s<1Q8iT@gPbBkv52QL1YOcYY?SR_D#<i9i$7(DH)hY1<`p!>Z@sq
zl$$XKBAJ57%!K&Yd`a1Y$R0%AAo2x~BZ!<q<O(8p5EHKomlBfBKCqJ;@pVg*^KdER
zq|DFVDSr?Jf+!fo-!n{yLO~P`qG%B0Ni|ZzB0*^TQz->ob}Pm@WszseAW8*c55hq$
z45CaBwjg4HC>sQVs2D^gE?6#z3PJp|Kb7K_4`SuVI68zb5y?CEr&eYMY6jIpF^MGh
zN{kKS{<18;?{W~oyvY>ff~X$Eh5e~Q5Y8atgQzhyxk?aKgZR)gsbf-7*Hz9PRjL!O
z#>%*1$zR4fYA~<K&ZN{1qD~O4gLt_=H8F@JYLzRcMG(nBdJ7Ml2GM0jY~3L01<@o(
z@6=8nH6*!y5RHO}&6C(5h=xo^+<eYK*f@yF|8!hFESXw(=5;mlc_zm<;~>q0pp#zZ
zrL!fQt=K$1zZf~R38HNf?SgnW*WT`+Emw5i_Ca(Aq9c1=tzz#)6@5%9-XfVALlL?J
z(KU#DLF^BrTM*rY2n7)iqDK%tgBTlx7(}lidI!ysHav(vOnwZaKa;+UsX_D$qUQbB
zi?aC>YygWyhA<fz#2_YvE&cG6E|fboh+(WG&MH9W2<9UhM+GsONi`|`7$yVhFX(hl
zF9;W#Y7jCL5`96qnR^&rAJTZK&m&{<8fpBj1T0S_h#Pm(_^zkXSP3%fR<035ZJ6yJ
z7sU7=<^?gIvnB*Flcq+q^b>=a#LDC#rdg$?1TmF))d;gJrRi+WV66S1A}O<in9b%K
zMpEWdT{qIuCCUXsEM)O_#zjGFwtRjHVlne2ma;U6Wfor^#0uss8GjC9RS>@fv6`k&
z5bIf76U5peex(D6ji`Ds3*rAw8-myv#3pw8|8utlv6Zv7F>WVhvZi80|54^)?g(Nh
zEAMie2e^yoY35?PS=qx#;$9krjxt0J(3S8saVLW~6~w`yxnK7o#>0$9f;h_Lk04Gk
zA%|m3jx)|xoqt+{vQ7tah86)Gu{zEMagNqE9VK*}r};|@LdbqQNc%wAE(URn4!>X5
zzt|+@5|hh8T(Oj^Os+9rXS~7qH{(sl9V0UST_kbqb>U7BcZ0Y`O9%DyG+R*}4}y3Y
zL`EH%bUX^;G3(K~nY${*`6P&^bp1bw=d6EXd=bRIOkOgQ=c^!I2k{S^w1Mp#CU33W
z<qaL=^N!8;jQ`P^W95Df;)usa4xfYg!s1t2=eYsj*i6Gbf-#bjoTcZsbUM9TGb%kR
z85pCi+z)Z~i^m<b*J9@H`ktu5OtR?6N~Izkl(Ol_&OC>XoH}yp$jxQ}#ypJqbmV1H
zu(6$r<Y$h=*zXYv>L|ntZJ|j@5ej}F_4iM<3L~A=!eU(Gh;_D-I!fs%qob^jU1D_2
z6|tpt^Y4r0_9ZSj)#b!LanSL0imj54aylwR+RHN%si4C@Go_-AO-&t5_B$%;psH<*
z3%<s7KX0?^aOmi-V}Oo09fFQVIvVS6>WJ5oprf{qDmtp_c&sGSRq<*%s#7hIF*~0+
zYUr4?%T70;$gHVj;VqNY;#}f&bR_DiOEF*BzGSYIM3GB6lXY~DcamEQyAfGh!C6m7
zeH{%frJ;`F5p^kxQq7FDn&@b%<HkCnkB(+Kn(O#MM;9F}bhOmbPDgtkt#q{3(MCsG
z9rG5L&8To7mGDS8;g2)1v=?`)rLi4!bkxyFM`!BBBJr16J7@>*>-z*Ev`cw`#e(at
z&{an_9X)mQqIPn7dg$iHR>gl6C`dhy*;~h|iUI|vexL}%`|6;L$5VCm<03yY3P0wv
zl}M%r4Ae15$5b8DbPU!pM2D(F(=k-XFdZ(6uVc855jw``7|Ufx>KLVCw2pzhg@X0s
zsIJzPozw%g1(2vi((&+e6t!x2gxPpHz-CpG$;Yk3tHY<m!$ByEM8A%J4uusmht;rC
zlZa$AQtB!~P=~G~BW>xa!_X1ZapI6Lo}I%w#xbFa$iL06LW_C!2|6a~$k8*tLvsA1
z1;VDqw#n>sRT8G?SScis=X4!2bS%>G6P>TB$uo7#(J_~Xiq(eMH0BlC6FqUBjt_5a
z^K~rHLBoK`(pgxaKaP%QAv@Qr;#{m_33WIZp-x^(BT5lg=vby>Id?m~qB@VmdE)oj
zl{$XbF@3o$|8NH-iuQ|+)f{Jyj<q^|r4jP0u)MNak+x2t<jPuWgN}_fx)$T_#n_}{
zvyODrkbWAr=-8^`!bDu0h;2H4(-9RybO<k;_U$_Dbb(VkcIeot<9C{px~cEgv6~6;
zJxrdIx5o^0lDSXEepU|XIBNME)N#n-hnXB<yzFuQVd=+cF3?HQ@wG-g#i8^kXRX*S
zoYrxMbRFMl{nv3$$5S28sHvlD=NTVR`<YzS@fVXzI_@zcpUXO~Fu%%pjpp@S`*p?}
zjAZ_;<0kW4I&SN@!~8Cd=e1c*dL07;4)SUB(!4WrU&p12<^^X;4{4JA(en|l7##Tt
z<MkZoy~yV@4AMmWtK%IV1?w+$ykhd2W>XgP&dWcvve6{{8h7Ac>{}g#l-l*Nzt`~}
zd(!UtA85?%iT%XpN9JVC%wqnv<Fk%0tWVl#{#7Q8fd~UW1AYUM2GSZxGLUQ_oq_ZQ
zN*O3^AcKJ@1Gx?4F%WH-&md$qkj+3w1DV*&Y#<Ah#j%3tjQKFpo0&p(136gCW#Bh!
zUyGau)}J!({|+A>Iq#g1*FZi4MGX{V&-?}o8YslP0Apxs(p-KLs<43~2HIaRgHs}M
zDmK2jfszKurvy8{+?;Z5mSDI`ESX%ajDfNS>;@bLV4$3V$_8u(${VP_&Xo*QG_c>9
z>Gqn!JK{3YPKgwjnnVq2ct&U-If=&@h-K&XdFw{FopA;P0|^Fd8*mzkH&D$$bpurl
zRAskW&P=(AR*y<GpIM`w6>G3q(?BgI-4CR$J!|euNy+XuJ7L&E^ZhS%3?v$$8Y$Hr
zl9Xbgu7R!wx*4cvpuT~Y23nDWfrbW}8E9^R+SbTGV*^bLeB6>U-5F2YX400SO}QeW
zve|$Z%*nIGL*Z-Mtba}_*4jWD7CRYe%cLE3DIEnr&(gs_hhGYJWPN|gY-i_VDJGJ_
zViyC;YZu#EyIAh-=02s}4fHTD$iQF&Jq`3?pMeH?8|Y)8pMf6@^fho}W@IX7mEdkk
zcU+*|Ci@$p(?>xD7#MpXl?bIfdFzheT-YW#hZq=YU<_p$7-nF&fl(ZR&dUfs_K_6!
zeqS=_=r(mv8qK*&hnTGr4M+yu20RAF9Y}Q<kU4k3fz%7#lBg@lCtbS#J$>WltgQ!9
zGsw1pfei+|?7*QIPz`7Xf(GUrSYSXmU>KNcU>XfJ17QQ>N&gx<j!uefD}EzW)*l2i
zTZU{C3{2!K+CiO^Nz5l3n8M`u=tvT$8<=5WdgjPE6mVbMOarqF%w~tRE*pJIp$*vS
z3rxG^v2*EQS^w;E?0geTWfvM)WPob<#lTMn7SkCqu)@F+c3Wy-8JYJ?PfE0DJf-h^
zrGcLftYWvZPCF(0GP5oss|~C%Ky6z~^JSTBT*k;>nNY!XG+Vg{adOybV3UE(2DTX3
zMw8lrw{E^{8y$U;9b0K}7}%}l#n|lzb{M#0;I4t46qdS_=F7v_T?Td=IAY)^4YQ^8
zJ=7<gXs>|Sy$06(XQ#A}$$kR|m>gt0WaS>F<C<r>{lU?w;D%YYV+M{JIAP#V16No-
z$#~kp85&^BSGBT}Go`a^USvFH;5-x3FBtgywd1?bUo2i?yiAKywz%*5RaUMs(r>XF
z2D%q8v;H=4lSSgU4BWQ(-cecZ8CV#0JTUN($$bOjm)NZvVo7{t;2n#^A2WGk;HiOU
z2A;F|+RA-l;3e}{mJ*E5N2UH@^9|!$1OGBHE;%Ucy@CG>d|)L_$ZP|pj|M)m@|p1q
z<5xz?{YIzknEktFL<o^wDlKC=#`IR43?a;3W+TsxA!G{SNf-~NM`aEnO9%%-I2c0K
z5VD1^Gh}Z5yzoke>>-p7p+X2bLdY3Hu8{fJQ80u;OmZ{kVayvsJ|^UlpGkobuJg)J
zn9Y)mMJ%79Op1k2+)_#~IT@XyR0yS+mtiayLRltYr1-Ojny<miSUJ98h<*m5eh3Xh
zs7yx@YmW&bmUsh)jm>j8yBpW+_7G}@=nXP<2P2WV5CrB<ONkGm3iGOr)hxX_lNup7
zX4t4;tq{JBGf4vLwHfO$CWes2B$<(XQkc|btQW%I)<2NgFoZ@Sj0s_E2#rH%5<=e)
zQbTA;=1W`i5L$%LEQB*ZB*wQEPSDOjA+%z%fSi14bYklex`i-jm!l1f<kpr+yAaxk
z(1CeJ#velHWchRsVfsxQId`#?t|1KHo=i%2jz$4{FzFdWFH7kiLLZBdmE-$`@FN!=
z6+-_I281w@&3_K0Qk;Rz2U+n4hcJZsP{v`5!>!yAA=E_*m5RD$wkqF#=jaeVZ0&pL
zn^O!y3Sj|_*brPH$RW%PVO|JsE*lJ?yUi@<Vbja#3&GDMz^E{)jO3|>@T{^~L}$ea
zA;csc!lV!;GanbicqS7VCo)ozp9^Q6!h8nfRK{tH(;3NUvs#RBW(c!bnQiHFLiE3S
zvu7w#=g()|X(@|B*c`%^5Pk|_F=v&tr7Q{I=GnxhAuMBMc?heStYD-#D?|9%;;Wea
z5<+;TKv`=-SR2BxR_;b7>q1y>DH}qVU)((7ls2(=vb9-oYY4xEussB7z_t)xw-pj@
z$CAE-&T`rq;xsm@z88MyHDMRyZbo{s=AIDthA?4y>^?>!`)Ob&2-|8U9tz=b2+lC#
z!#G0zA-oLXRS18Ca4dvVA)Kaq=|RFq>5qqSB7{Gw>htEe>x+WpBxey{voeByE1jX0
zB!n9*o@G48cs_&+mghw#e=%MP;j*P)3E`^6uZ56M+^ix?#kjviptls=r4HxZTOrIW
zZ@(Qvpk)e?J0TPsQj5qvb|cUGAv|FI&{7^Tc}%OQr95TwEQIIuGm1IA4~`NQe;vX<
zw6uniJ&ZRYybU3380o?|*}(p92p>cAQg4CyyAa-o=z%`_e>6A`+dnX0T*Tpxj{C$u
zpBcX}er5c|NX65H5fL`yL^6I&+k!Y9Z2GX-&(Vw-7^4^`mNkDqWDFw{o5VARk;UR!
z!|28DKFAS9&M=CHQ6h}F&uqEE$QMTbFmkg=N**S8!-%YtOeUoQVHCD<3o<FhxamX3
zB4HG@6cUStK_V5Q+DmfPabc9Q+E6--GR(_{fiTK3uNX$9Fv?p#6~ai<Oo*;vuWTu?
zVc3|*Fs@9rmtJJETe%K1zI}XJhxpzmgpuuod9}Gp7*)fV9mbq6s)bQKj6q=x4x>gG
zHN$8hMu#wJg^>_OlQ5cwQ9Fz}Vbl+!0f$Wtqh1)_av_P$WUH=}FzPa=4>hWVb`02A
z+<Zi+VHl0VXv|rYW|-$_R9a#6%Gl7OzRkjD9!Bdh+Jw>K|1fnG&`~5^H^CCz-R+{2
zj0Fe~h~Vz-5`1xYXRLdsXQpL<#chGbS=@uWySpuJi~O%2U!U`zQ|F#rw_f?Hnwg}#
z%7JDMG<U#zS8pUeY&QF2m3I|l#BI@g6RJMUfmRN*cF?&TktDV_n4HUOqjK6g(B6Tb
z4)k)Mg99D8mTnGoa-g#VT^#7@0GUyN18q9e1IBb#JXYEF1d_Ycq*I$a#ZzPG5QAQO
zt-U#W9|!t6kj$KPs;(cIy)M+>fdLNv)`RhijdXgTjvjELpOAkzFxY`v4!TVYLmU|D
zz*q;yIWWwD;SP*;U<|dvL07S06qiW_K1ywivDoM}c{+Qao;}`qOm7?Yk&?zcFu{Ro
z4os)bBqt_1Fo|=KF%9Wt=43p@fvL>rEYydK!VCwfgqaR3mu&RAk`y9y9B?=w(x^J%
zbin0++X0UQ0Ul(sna&Tn(X0ALf0Y&-utdcK8^!w^kjTb?Ah&_cnuWpd01ecYo^djZ
zhyN)-t)*zBY||VFIdI5<6bI%yFwcQ?4y<?3*E#&@zzPReI`pnBaA2_mOB`6}z#>-Y
z7K7Iz8;#*oT9`Spj2iFIAGD?mAgEZX_eem$5nvS?|K*?u^FR%zqA09!V66jx)386#
zEi?DF(?tnHsK5=h&>Yy|z)lA?Ik1@q%7JYTY~c~x>cH)jk>%JQ=;22Ca<$#?x(Ye<
z-GeUL*yX@(2lhFz-+?`xi`;TAjpVjy8iXy46A8)k0FUHBHaN3Ve*tIIc>7@ojyQ1L
zfg27Sb>Nr-XB{}lHpd+}N!uXv6Xef{wl}@)r|ElX@6=~lBqw}dvnn0+Kt-K*;DQ5}
z9k{|t7ah37gxp}pbN%(1zt`F4AJX48z3RX<P9le#ywXl>yXn9!R-RC29k}DbJqPZy
zQsQOl&XXeVIzY$QJowP7+b{jNtq0V|^tMj-Y!4lH#AYNuX7by?o-%(%1I2^<!hx3#
zymHXX2w3aF-!A;?z#G~XT}bW1TbeJLbSG9h@!o+Cw23)U(TPj-6F$<`L7SKppB(t?
zz!wL;I`G|rAGBJZR{!RpD<0?sGyA4o7K#!UdXSWNchXO)_h2#+QidK(4tFAz6PcaJ
z;zXXW*3?d9a$?yJ>+u)XG)|;-BApXCu7pQ8_1VmQICUhG^o*ora3Z6@pF~GYnQnht
ztbJA|vN=)IiDFI+O>55XL_WhNhZ8vsp38~c%<~vZUM4SIhUI5cfUzKBA;!XtMHnYH
zOuK7rcyZ>`k`hiVh={tDXer4`DJM!ZffHq%NPe&T*!&k^Wmzm|<SOsP$Cvu5H#rgI
zM0Y28IPuVKtsh~IcEU`9v%+j~!s>+03GWJ1leHE*=WXajBPU{<sN_UtC#pD+;6$Pm
zv78#mSe3CFV|7NVsKev18V0ZFM7+VN*GbIlGS*_O%~*$#@)rG}H?<x|>oYcB%zGxh
zu@g<0cVukpL~AG7IMIxw%^6!Twq&GoS~>Ce!DJ#7zK_t~cWBE=?HJoLc3@25qa!;p
z@9abuCS4i3F;d<>QKfo1(aQ<J3DJq(PB^}rraCc=4U(Pc<3wL4`Z>|xiP27sabkcI
z1DzOdlrYGNA<X|^9Bk+}%N7~Re3+pWEwBHFafA~iSs7*Ml~1P`%X}i^IL7ge6BsF1
zSfrkJ5=SR9PGQ_RHQb&)e7X}Ja{Dj3x6E*2rW3QAn9T+bM$+dnNr<#K4aLR8O>5z<
zUih~C=Jr|j_m#ZllTIvj!smqKgx|2&m;@MujIt976P1zj9-N@hb;yaitjuGa&-kZd
zllx`ZvN!*GCVvr&i=9})WT|1Z%!%d9R~SnBjv4-9zQ&2QPOLWcbrG?DJF$+VVJ@t9
zVuKS8XgN5sk;Q#Z>~~@l^UY3dabhd;os9qdM(RG3?N014l)&7yyO{50++*l_ohUh2
zAF%_h9CPBh69<jdLrhW_4?A&$$x$Pf*2@VePC9Xml~YcfW^$GBj1w0P%d<|LV}9OH
zE|3#0(<kT>E0-Cs7^%1N=}o%k#C29~Fy1s$%M{g9Z*%kx<6S52F}ZKpO#Bx1$ce{J
z{BY8*emrsFDeW^(yc?>ovS)1euM^LiyfAXTWb(?1*M@Q-U-%p5Zw=)gllM-1FqFpI
z^!9vm;<FQ9ocL<!*^1~L{KnD$ocM0&qd)0~-2QSRrIe+>Q>(>e&bq`D?$Wn+3b$7l
zN#jCV7n-=x)P-~|M7WUXLXr!SE~Iy%gbO8I$Y9tPcOjz-nK+u6F&ASN#;lCl7_&3x
zV9d!_ZGGO{O!Bypmq|Xx!Y<@zQh>1_BekuN3rp(75-H-svDA9+in>tDNWFR^;?njs
zBvL5lLTMM^0-bC@(K0TSbs@p9EayUb7b>{WdW!k+27N{<a#9sWlM7KUM7v<-sGZTm
zXk{dOn+w-9edml}rIMjnrZSr(kRHoQRmN&ARCghcc}>O|jC#HA!r~2H{++(woBAxZ
zT&T@rBNyl-|2j0hmGn1pEU(hnb>YrKb3GU88@U>|(9qz8i|Czg%+a~K(=>CTxeIO=
zJTA0gaj*+RTxjV+D{7|;S+iK$xX_l#<b9TQE<BLKyRv0_qs$I2dYX}5_lWPrN@vC{
zM(T;|;oV&5&e0w&^fC0FF7#sFn=#qYmzD|d%e<cp{aqMf=!0AsXz(4GGyGxj31jpg
z4Rv9dp;T+C55;g7Mz}E2g;6eyc43kWlU*3YHe(r&R7pi<<BVM6nM|OL7>bgRc8UvA
zIXc^gX@)+_h3U*^FwQje!^^@C8t<^oVbS4&lZnf)p-KhjK}M0L&xP<o7M}|N7j_r6
z5|>!<yKqr3QM5rn3+b{8iVLcX4xh(-7yfkNp=t`baA~w@9`m`3Ye$<`xlCtnnIkHg
z7r69y&DOZE(1k@VEH>J(g2@ubrHsoMmowVihOcC@it#VT)r>S;TTew?{$`@{oY&Fj
z@4_-Smb<aRg^ezl+=y~xlM9>4NvJU{dRD@+g)?4vVJi_Ajyy4Kb77wg`w4fLw!5%{
z4R$i_Vx(GjGuh+9UPGZBX^Y)_z=d-zoOj`%3x_x<h4DD!VJhFSKT6Br;A=kXtLB6Y
zCs{e=!f6-I7^!EObh;lliZ|^GE(nKA7g;3o&nI)S>fx6-dYSQx3s;$3W2BO6)C<4i
z!c7-$xp3QsyDr?LHRz(J6HRoZR=$5Mhss!bJu%;>&JM1=;j@|EeaIUyb+eiuaS6+d
zTFSZc*o7x9Jayq2&6*2gZak-T$LBD=bKwPBzGQr5)ccx#1u%bOC~v9W4f@{l-h~e?
zd^GfLE_`DC*-*YP`O4VlP1t`-zBB${{K=^I?q+zn8>!qV>_!o{{t=McjVx|tbt8=%
zY28T2BIz02h%k7h8|e*RD_?j<=9w5X8~WTV;n|qya3iN1*_j{xu1^+)TyErLB{yRp
z#-if?P6Np2Mt(O6uvpNILQHns{`aoE=Vl=)p{N_#7RHr!qZp?aXC%FZ8zq^SGL%e}
zGcB!Rg&SquIQu=Ca+T%0>j#<3lZO|zP^jR>wCkpdZn)zUI_HRu=Ddk+B)MUBWA@oZ
ziyKxqDijH~aZ<b+b~j?&sN}}XbNVMptQ(b?Q?v?`=YPjlb)y>FmxvFq&Lobp24hV|
z%3GX|q)VWQSYaNy%~Xr^)^4<Mqc-z8Zq#+79`j~KuKI2?FnB{Z8ZmFo*u>DAGMW3y
z-rS8Aw0?j5Z-iU2-pY-3=kyJ>EfF^yZaCd&??wkVCc81kjnZGu9o-o2M%xXhPHuE|
zql+6|-RSE^KR3D=we)hMJM$ilJq_I&roRl>o1@8Y^f7eWh58%(4>txFe4rbH3|?3a
zAIy9R<4{8%#w1oYk6<#=jZsWSyD{Fd8RN!S=Hm=y=u_QiCUA738<Pxua$@9ED#2lz
z#>)A|v2^FlbR%^J%_H+!jI$Z%7^!QrguC20_r8kXjR1L$8^!q+U5^_A+lYpx*9{+Y
z$x!}@Nfl&1kA|+R?msd|6-Jd&V+^@5mkHTqO3^24z8inKv4F*eZXB;{Udnut8;hAN
zG3-+&==P@<hOcmAr5lYsXyU;tH~w<tvKv?2SZ!Etb7PGgYu)&p3V9WlFVei;jWcHR
zI>rc#c>`N+WPDaVd=rz+j9c8;%H*HlNPo9ElV-acJKWgm#x535l3%?F+wDdQZ7JjR
z9bk_edpT*J8~d5u4bxkDz>R}OIfvXh&nJ%^Hk2bwj=FJ-$#FwJ;l>jFAUMU!X~r|O
z-f4min@d!h!7sRR(csaY!+%$O)s1Uz#C!B@@VXl}XyfuAmj^f9xaGz(+O*xcO>4oW
z&(|F{zHT)Uzsu#^bK|}n4~#M&(h91ecjpl+j}83^lc#Qc=i>!lxbc$qQV%kC@QRbZ
zyYa(~*KYjl#v3=@viQY~cT7GqzGwWvNL8HA6#j|%XG3|oFa1}8e{<tM=CZvA8UJLS
zn)~>Rc^Gp_3ilwD!K-`1(|C}UqZKOY9ZAPLf-%yA^y&1{C}i|t<j3gj9%M4|W@eJb
zgRD%l8G6mW;dee*a<KhTza_T^c|4f-Di6Ijp4WqX9#}oFd63_O0v=T4Tm?NS<N=r$
zW-P&2#Dk(96k|?psOJkWZt!WtGL&Rqim|kzH(03mq6|mNdQgr@c_X!g2dQ`H4{MoN
zi8AzP56lL)c+jPa{`UQk8K%D9%y!meJgCH^GGjFlsu=dM9#l2>!A1H(>(xDoW2J_n
z*Yu!g3H^smf(MBnBzX|FG5kr|sM;RXVw*cB&5O$<-n?zA<3U|k>KS?Kd(gn(4LxXN
z@T%j(n|jd9gFznr;X!i`T6oaQgWevr^q>`+_4J^%2W>oP??DGv+IrBAvb;Ar(nrzh
z`b5s}Hh1)(lLzT`SSse!|3;eWM_6Yz?qbx{)q`#Z@9selgWn$(zL+mfGfgxldoYmo
zJ|2wP5!sh{Kf|&=lK~!t8+WDA-*&QoG!ORRASVs+V5kSfJQ(hQ=0V7V5#&N1%;D5g
z9*p*2vIkQ*I>v)>OsKVEJ=mE_pY-vpOkkYIILWZdJx2dEG1Y_VhBD2A#kuud6lQoZ
z)6i#mFx%k&)D3rd;N+;wg8&n^2OcJZ2R<euqnD9NyH`LjR`S4aC|`zz2bs%^3ZrVI
z{<;`G*MoT;Z1i9gi}O8L!{kp77BE@p!BWG15tGG?OBf&B3R~vEat~H;bQR-DMruig
zJK=vBe6<H(n<kLBmX*I5*D<a)Y&J02!xy!0ChoyDR<_VnpoUF}ta=}}|F&e@L9<|_
z?qagrgFQv{UuP8dda#eh{fq|;%iya_hdfB};IIcrs0&}h&T*3EqvfavCD!OW@G(}7
zdvL;olO9}utADpVWt4E*gEIy{>%lIQo`u4B7B6^kFG6qXWe=`+&|ky=5m!0sUjc6f
zT%!U#xIvr02NwkTv4&e7+@{4Mpre309^CbytblR??s;&Z)`)-z0S`QQ=)pS=-h1%K
zgU7V1d+^$WCmuYdJ+ndl3lE-AEv?PZY0n=U?@6+>lj5B3O#xTJOB%-Y7UG59+S}e~
z_pb+UIm;Vbm1E;e9<(30nmBuO{N>T{A3XTz!8Z^7^WYOTPmZ|W)Aq%K&ustcj>Vc1
z|CQFujnaKa$M5QC`|iOH+Ej0pPD}kNV*AMru)Vhv|K-t@FahD5G-|g!l>n_nd}@xS
z5kLwVQ0>&_NCD{u<Q9-eKn4LB1!NPDT|g!QnFVAKkW~P+pSnqbNP}6)gzsl2Q{Ef`
zqHdHXVj9wgFsA@&b1ngm$HWuKD<GeM;sQztbO{3HM5CC1|N5H?2q-AfIkA>Pj71m=
z3kdD8kXV$Xwxed^R0vgCQb3NomQn&r3%FXs{OoGnlF{)Hpe#==BVhK}c<Ku&P0Ca+
zFQ9^eBmuPqR1{zmP)R^#YNUW@0agJvL7yhG05Y~P-!VG=dsQ=u6zr_TFjBpw<nZK?
zk0n$QP+dTrfLH-lIkg%M8XM3QA3vB}LqJVVN+9PM8&5M!myO0#t~>1-zOp9@P<wXi
zbkI%%URyvN0WAfz5>Qt_JpqkqxCE>nV6HEqAs0)2(twrI(`=M|>8*q&Txsz==BCu&
z(eb1ZZziDHKyz~%;XURS0;Ya95os-8TUSdP0c|-;6`q}T%-b{O_T-^{(TH^t&{=?k
zCRacg0bK=*B*zfYO+a@6$pZSYeGdV>1oRfrlcSxxT7Hk!&g-Q!mMT2(sJX9zegXyx
z7$l%S4Qz_uyaDV9j}Io#ylJPaSO4I=!vqW$Fqr#Dqc?=fP|9Vs{2t6q&yuL{5meoi
zuzatgM++DuV4{FY0>%m$Cty66Gm$$rWU=0o2~_V`-7ODiPM9oU3L8wP(J(x7nt;tc
zyHK;evV|7T40a*PI8(qZ8cepIBj99b-2rGk30(r*q|-<W@CXoS?T~W{5CwPz_-R0H
zl=cbeaa?bJM5|_Oe5<P_;t&6}RJoN95D?_9$y~T1Kz?IZnV;{dXPGNto`CfNHVBw6
z;7<X6aVkyR0s#vJEaFMbTg|#yz|O@{v<iM5OkN^jDXpVB_UlFL%UGwR<pNe1d?k}r
zToffyMXLp@p_zSUp|DoK-^|xBHfUoekxJeuU=s}y=NjJ;@5;t)AwPU&H)V~gSID+i
z0IiN@Q_b52>=1BBKnm3&V3&YBv`z&a&T4r*CVn@ij*jnBpcYlSkBcI5kUew1fCB=K
zJW8PMkdqI;(~kDB!=wl}E#Qm*(vJ%G_j>750*(n7kP`pyi~YEO6Fe!zPf{P3*on|A
zQ?X|SoD*=KYkBxAffNel1LQC?3zr03rd?gYZ2?zku4yNah`LT2S`PDvb><g8qpt~|
zgO7-O3z=^SAiPOVyUIl5j)1!YUI}<jHfK!t1bS@POxY>ir%wSg`(Sz~;Moe(BSs>R
z1w1kM)8B;gxqugj{!+l%_0eQZ<<N1pgmo>}w*uY?C@-Rdi1z|M(3U8okcf{0J_-0C
z;HQAk0=`fSY0nh!m1h5ji4Fi+ek*?3V$)iOnGPrUPP0(3>apIbZH1~nX=VK-AWTGF
z5o6Lug^NffB9n;BB2tU`Q<^_}#6^g>wZ3o~5otxFqw3CBkDazQ*lah4+apD!XR{0<
zGK$zVw^UfgI5MD&9Zp%Zh{!4;CmUpA%r4^PaqBO>^O0<Fu$b>qaxM|MMNnN`&sfu)
zvE~tR?xZ!oLR>x(_r6#t<QGwZdFO2Aum_gHB8rImi-8bPlt~FjQi_Qv&b;#=8$~IU
z6j91ZEiIx`QUr-*SSia`j&XAjJL&YmYDE#XMbr^t5)mcpkFZ9INDz@I!YslfV)nl#
ztB4v*h}%Ti4IU$+l8DM2ts<hjp~s4-D&j$>s?``N7x6ewEq2RHQ3^Fh#2fafeziX~
zLqC#^W-UoXEfL4BnJL(oB-9mAPefM{-9*$E(Lh975$!~Xx6BPiG!fBML?aQ6MF>@O
zQ4dwoj15|dXh~BXW^FEF`<f^+XeDB0xi|`~*?=sI)U>r>@o3Jd_98m4Wfz($7CRaC
zl(+NmEVs<WskDvbP2ENGpqYxXQh_~1^b*le#JrMv^n1NhWYb$jGAktZVbYgzb<QX{
zeUZe0A_j?w@uHF!e~1_?VylRML<|uzRK!dXvqTINF<hj(GpzXp`v?&uMNAfPBFQ#N
z#Ap%YM2x55TA_cVqcBFqSQ^0ldbClK@Cj5J>k~y>AEy5hqcBOtglGCU#wlFRR7NUr
znuzHlj)qxgh>-io9sgn`oGs$bJQI1v77=qqI7B!_xI`=#u|$MhghzxXB1Gd)4ij$o
ziwH0g$<3Jf7$rtB@XSq57$m=4Rf>o#LgA!Of5oeY&FewM<{ErHjTm!UFJ%8G^NpMB
z3q&k5Y!)%0mAF*IG7;-Jx?IEx5o<;KO_OL?t`bo<Twlu+{t~g;(AO}DI+VPQ$y9D6
zEnYI)AYvmecGfo=_GzozDCzO)_|v`gMYN6FM#NoOvm$ng*hyPKbxVP6QM<@#TUhpp
z*ehbUi2ftZ6xOAR-6vu{ed`wSwxPvRD)9gfyNF{nmEM?xA`Xd25ph_=#lDs!v?Q5~
z=wE$jn|LyyaGWhK)5M85$^4XvOCnxJnJM)&D`yzbGM*E0p2-D9vbo5F?1SDI!ms_R
zUoo;@BUce|L&QxH)9$9ZL;E2c-{#hmC1t0^P|GP$_WQKPMZk+PUOW`>h;}v+zeKbT
zOG<09JQndp#8Z(@B(uE~@ruba5zooPyT`qtIZBG9q=kd4zZUVYh!3>A)1t`M^^J&k
z<d9jqzGW<A>00|x^7iNP?`f!?$9HKM`$@!S=KqQKLW3D!<g1A2$OLz{IQ#ABZ_Jx@
ziz9{Xzl-?6#*d!2qiC2H;a=qR;`J<B=cci#yvXLo&NNA>y-4FlS})Rhk<p7xUW}<@
zj_`tPBE4u9o<z~~93>?KlbJu;WoEN1USwsZ<*fv#8bbzSR%9T|?nMqSa(a==i*5~K
zn^%g>x;8Pl7kRiw;upRrkWRJd^CG_&1-vNeMRBkGCAM$PB89vt;zdy}3VUI%7OOUl
z{Tvr-UY?<t7cG-wGv`kq6>C40&RW8YlE1T5i!J3vY3fnu4$;+P>!hT4+S*>$i*jC6
z^upvtd9S`F9M5a5;6;lr`bKdzll~T7lo!#Q)Fy4DnTgelsaawz%rA}CcMKaVcE+vq
zOq5#Liz;5s^<kb5v0ha5qKg+@y{P8J%&Kv;G}?Gk-HSLcYIsr8i^g6w@gm-f1TX4(
zQO}D+FOs~d<HeJ;oomq;MwlsMZO-o4WhY)>dBWmTX(_e77Y)3am`xWOvOS57m}u?H
zPu|9p-jt@vi&mVSqRpAKq@FUN_uNTrv(ZA>nmqQsl?WxZ_39sd6xuOq??neMI(pH`
z&^t3JbICsFfR)U;dC}bq$p^m=J-q1YMVJraKJ@aUw--;nc;-d27k#`~;l)ZX`g*ao
zka?IF!@cOoyg%arMoJp!#USQ?Fb-xMVx$iBqH?5}%tm-I(u?U{%<y8A7o)w1xMm`K
zjA1$6i?IeD=f#vEdaenqOk|wIIGJ$@%_Ea(UYz>aj_k>pvdr{imKO`W$gscnY%k_`
z;oziJnPSM`yD5>->4nP+w-+8SLYzvXKx1NXk%`v}pP|&u)ZXt!fTKY#R3@?)iWk2I
z*n8xwN^iwh8fbrCC5^^OB+g|rkCDos@5P@6?{O%3A@fCsvY5#d#-)tQ7?(3Xe`H?e
z#a~_=@Zz8st7$zRD80suwO$N4XQFeAd%v$fVu0muFV=anp0jN7VzU<;m~UjHHrzZ=
zns5t8cM&rAhjAO@b}x1?*+~nW3E2-hWZBJp5940OeMahjFLD>Kkl7(Gp8J!UA1IyT
z#e^r8iN_KSljC`D)Qe+Y+++LWUYzjavKLo4deVz?MmeXvIL-VF<5|YkxouSPdFB@w
zFEWyN$xB<k?mrZ+dU4CpuaR!>8%%C`QS7m9cH7YJcyX6`*+zQH?;H99`V?UPi1D$Z
zKk<T&i6G18UcB()trzdSc<IF}FW&sN8Ik_A7yoh~v-T-^v4;=oNaI8J-iwb$X&=1!
z93OM>mi-eEFTSu&=f#oPSLWXs|1<2rGx@>zlkt}q7rEo9d`RuXG#{q>kj96!J`D6>
zkPqp6i14AW5B+?I^dY?uCLf}F$lyapAI?SFsjf^uWcHz$55;|`b1*K854n8E?L$_d
z-r#JE*%@;%l9<zn1+Dc?QOM&%K|{~WBp+jb#sWS(Nmq-^3URbBV-ZFYi!%98%}Tt4
z4`n!7(nu}Eq%<QK-~TK~mSvfjV=T{D!H0@WD0O$n_R&6=IojF>iw{;GYWfh*ij8)7
z!_v+qhOrW3WyUIG&;C}GqtzIzGsZDeEj5_XqD$~0(T8RnO=7I)Lwz4=F|W;7hmmsC
zWpX%GOant{>_bC?H}ZjYDl%)rN>j$)N^`@eg%2$a-ik?+gQeT}(AI}`9PP>2-iHoM
zIx==;?8Mlav5OBYWA$OD(2bSuj6HmKUqqkTUL5Vsn9N9GANr(V-rrCLusu1FKbxNG
z4<82mFy4m=J`7=-p*{?wj}=}BWU%JGrQ-n0a34nau=|*0qz|Kf7;Tg`mdO~#RVNb0
z{lDl$A13)Q#fPareS2Abv&&@i;qVw&ZoLZ>XleH^VNOnEp5enxA6!1TeV9ewzS%Oz
zr!U*tT-xL$-FW4Di^B(}53LVbVhUEJE++{lj}Im1T0|cNAN^_3G~u-QdPJ@A`7K`7
zeT?I7ngc#;{1_dgWwj$uki;-^*RvMc2gL`~hxvWX+lp8+(yi_^!uL#<cSpY)Vt)87
zdcF^T`f$dFv$S@|>{_|)KJ4&ep%06ESnR_RD%OWhJ}mWN8Rhk1l@Gsy(aRZEFqWJh
zNy=E0uK&f#dLLH%u!i|sAC8PPzq@Oq)W2C-N2xiZC`w_258WbkzL}G@GE#Jl55Eii
z$A@h`I&n9N#PE)K6+3<Uw=DXqaKMLM%=?@)?e<|0O>S5?eRtaH!#*0-d8Yl0%U)F>
zevq0WnGP|gFdk+k@rVycnIB_3&Uk|HBqQ0J^5L|>vpg?P$~hmt&{lTUeBOr(K3w$S
zk`GUPc;>@pZq*eZuF?(=5!vdO{sr%v509vKOQWy*aKne2Y(x4j+8*=#?>FXcAMUVz
z*GRqR!+nE4VDgZ@8vUvN*rf27_Aw*11AmQt?!!kzdBNnR53hU(%VU1+!@ty|oBylp
zjSp|x;2q<8Bi9ESjpO<|3!i*w^j3eu;WH=EVMJeP5gkhY=EHwJeD~o8tsqH%J?AI&
zi>i=N$R9x=sf2~_bbB*};{J$K5>iVbqKC?9DJh+V2nm@rWYG{QA-#lFGFr>XAR(iK
z4t{j>BNG`&_*=p{30Wj$mC#T^BMI3gWS3x)5G5gpgq#wJNGK{HmxSCB-QpcXkJ+0d
z%y}dfkWf%UUNVj_Q^+SFzrh>lH5ZaF#AYrmp<fxx+mG?YN0qV?FGfw3P*y@Y2_+<i
z#wOit8V?CqG;>LgmSQZ;xV>3o83|-SflkRQFQI~@ACy-pHgRG081+zcMG60Hu)H0f
zuWP^@Ex|0IiiB7R7711fl_YfCnq;F+U5d6#`pIb&)CMsz%x_+bp3oqM3@Wo(ftZAo
ze_E<as3{>{LNy81C3*$kro~#~B&_<Uch(%%8Z=NjtaTeCCP+w>P*0+-Nwy>j^Zqc`
zmQaUDEgG&K38Y-!WwDpF<Qs3PD`DfI<h{{d>$80W##4uq$)K@>CKAR;7%!ozgk}=D
zOXwk?xr7!HI!YK-1}$m&Buvk5kI!ol%WH2<GbrI+UV9q}Z6&mma6XT{y@Z*0?d$I)
z5thqq&v`$obj{9W9Cp2QCkYj&#&nj@g$ePlOu8{9PL1g)p%+b-grO38OGuXRaY&~A
zTwotMIwp_3uY|p@HLBUUA4gl}x05(P!axawBplCc|3kuHa*uTdiBottCDm_EX2T?m
zrS|8u4=3l5Am*`;lrUPt80wlt*M6lU#d<VpSswe?DXD%(*XOg>%^W*H!bAx{39^Jq
z5++OVNDw4U;fBqUFk8Y@3Dam~XdLp|XL2n>W^go1emhm#X=*AOkU0{xe0G-vhXmxa
zlj4*>gR?2G-OWjqO1elrii-0~c$UZRmEfaBt}8euk6mI?J-?keB?TlzmI2L$B0-g~
zM8Z-kgxpoapAr^Gm@DCry!QDLXbR>rzd9sSkD8sSy4OQXEtJq8kDW$%v4lm;X>4h}
zNJ;IFpq4BnXJdUiPx=Z8E4e7Dn%YeD{v~0xgf-kv>Tf@DTEevwXxxabm#~3Wq8|nP
z*eGF>gzFM+(D^?Swn#WA;gE!_68<4CvfFk@*v6!FTnt6GGcPwLJ@K6qc9H)}sH@oa
zO4!Fqdl>aY>|aIfr)}q3mjmR?`xEKaJokd+Ye#G;5)Ml^BjKz>9|t%p;UtaTVcRh>
zK5RQd3*>>V{bl=c353M8BR0ZQ5;9n9r)f_x+vvqc!gJ)+60XupykNUPGjiH~Ny23b
zKVG%F$Y!Kmq1lg)p%X<8+iVmiUcVNuk-uHBXR+IEO1MS#5`Id!Ezu)PF>fTim2gMG
z@XqmfX$0t>`;7N#uUKq)AmO2eM-m=Oc)|J;2~Q<FXHLe?n3$jF50lh*5aI3|PvoVM
z`ijYG#(x>}JPmtCMIB21B;hlY_YyuZ`N-JhYA;GHe8}=e!Z!&-D12q&a&;#DpM(K|
z`8#9z@77=Bw0`8y9!od!g!_@okGy^?NNbt8C@Qrdnf)M=#*YUXZ2cT@Y5gEf=SKvS
zNXGPx85lD%l1(Nixv!cidlo;kayi);von&O!;hTIb1~*N^gMo?&Xqt0vqswT`Eg~x
zh1yflPoGnW_QUK)VLyuaQO1w5eiZfNl4LIF$H`yO#r$y3F%@Sl!AK%0r8u>;AICRD
z!;d=qt(1k5%CSzw<VSht6%3`KpAKKrZK4c?US6~KVWsST)b+#Whux1Fe$@0M#*eX;
zldAX;>qjN#l^H2J=~cOe>WtMGNu(qSaU6ZLG`i<_Q@kIEoGZb|ONAu)QH!Is{rFub
z<(=@!T+fgCezf$X6{j}vBk(J_u^$bYG-4!65}WwZ)Q@I<P}R--XkjE#?N{<y2+5{3
zceb6MPMa@6(KddxHM+m^q@}$dqkcuxXb^Vtqq83yg4h^D7eBiC(KCo%L3Hz@yB{3_
z=oml`5^2T*$QD2^KYIIdnI_SXWIy`&vD%L{e)J{x@Wbne&yOinBKrF=hQ2@0{qKwe
z{TSrOAIyg{Qqo{QhA<z>ILy#1{-a+&KZ2tp8Atgs+DQExOf{DII6uZSnc&AvKW6zc
z(T_>2O!i|MlPQc-8L7-xeChUdKV}$;R1UNKnB#}Yio?*|Oq_nW3?-CRzqs7vhhQiR
z;xkML*Dr#X{P6p+gcebq^Z`Hqwb-6-vd{G+XjsZj6hBlZ8e_;vt;U7S<LG=p{$#R%
zaUtU(MyhBr4RtU5fGG+~SzPAFawaPbo0Uvf`SF*b&`C{e{rH=sC;V8)WTzjyn5?JS
zXR?uTlOLOzY+>BSxRvoA#%kI0aoEm$haY>&>etXy*zLz57K!g+vX^n6AN!dcU_8i3
zHZiF)r!YTkC`Xta_2U?m<Az@SW~P&VoT5F%k8{)X)1|yMI-lXxvyA5q%kxYwFkWQ5
z<j3q!RVd3<Kd#Xd@Z+-|*ZsKR$2&jXQ)hEzxar43KYj*N-7?C#&EyW_UB-Ki_Zc5B
zW|<NBh{<C=p7`;U`76d}j8y4!KVBI8C6gaDGrVT<FXI~{^{pR!_vp9Jm&uyp1B)O1
zNSE@z6SPVt$A9tTs~_L}_~FMlKmMbIFBI8UhVF;@-+)lwpR}&uRQcscSO7CV^&%xa
zfO^UHNLs~<qEa!67b8+LNfSU?Cg~U>7|HBdFco2Xj%HxY7(gZ_nGKsP0TgMMmdvsT
zkRyQF0n`Z~X8`jqMidXAL;$%0$j!!i0w@|lu>kTKdGiI3-{1uTD9F5!p%kW)nXk{)
zp2{!CBT#O;sdq(N$pA_PP@PjtGnNgYTmWERhLN(!6N?d+=cpxs3QQ^*sU{{-0Yoz~
z8+y^Auo~PJfIWbi04lK(%UGGQied9*Lb0mMs~HMydT|D?5kO7m@r((KiHu2%)WTW;
z{7Ut|^UCV7Sf3`#NS$0xpRxuVZOGUtfW`qdVcs-=)=ZiO&^&<QIWv)Q3szb(wqhjl
zsJloT=4~0<8G3srbX8oZ06GVdDu~py{|C@DfD-|n44_*8-2?b1fNiw@2hcMBEr1a1
z{{i$4U}ONJ0!TJW>mNWL=6xCa8T#sAssRBE3}6r|Lm2;H9BkNh=w%<ue3+pO4`77B
zODs(_+TgPS7{h#Q0OJA}&wOG4lLDAv*pyAy54fAm(P;rpVKS9*GoLp|sncn781^#*
zu(6NL4qy(84#q$L&H!A@-2r$Fdk+(VQ4F9F=k*z>5)(h;!^5^96PZzAq}tU0hMv|}
zI)x>tBInYoA+J6cJ)aF$2k>VA3z#otTo%A0CW{%DFfL`J5(-T$w%p(=0$9m>m7)9<
zz}gJ@=fxT#0sPJSI$B5UFoo;sM>?zzU_$^K1K4Eb+7iHKga011tpUiV^fqq~U`GHc
z0UQosC)?}_U^h8QqV0mow#Ud7yUD&c0DAC)!oC3Z8~i{32bmu-6s2K?BSx;H0sZGH
z)k5J|0LKmeNTZCW0yrJO+W_7La3+AW0Xz!eaRBE67}hxBL;e6gAHW69a*<ZboP2iz
zxD>!;R<1DK2;izw=CuH>8+?1?j5iH_D?n$|>r0P9_l89X?^3H+xo_wX0(fZf+DlSB
z3E*h}Zw%#90lf>)IQl$*7ffCnsjmWfZSa2s$g))5Y%^M_621@MLjYmH|JD96fS<HQ
z1oWF0KLzmF$n}NE*8sjT`H%6tk@|y{!@v4@iR4jqTjHpDwr-L>%i%%z=Gu0dY-xf>
z8$^>Jng)?Bh=?G}L0E!_<a)CQkt2xoK^$I^Dnk$((%3Sxp2=ucW+qt}vj&mP&^MIL
zm@|l69E}blH<J>Kc^LBsk&j7!#v(x!U_xyx$fQsZg$<>9N^()=#Tbhlde$cTmyMD^
zlnSDB5HR!#L6l)$ma&|nmk-hpAHDk(Surt28L8d!M7DZUW!z!AH3(Y}F+sYD6cn`w
z@n5!B%0+x%n%K%gR0*P*k&DDwgI8tJ@K7l-t{y~O5H*6R8ALqm^@B)YQkyZ6F^RDj
zBju_w3U!#*WvplDi-V~eFmK4%$j}=zq3@#2f@mH@ryx29(c*V1W6L0%c_W84w6+SO
zH7jix+cLIeY|luwcVII7ROF}Wk+g`q1ksh19`yY`h+SD@yL0rxMbpE9iMzKZQx>{-
zuF{u+y@N;&Vpb5dgXj}P-yq7bNtzHuzaaVtF*Jx_K@13DU=V|YSaR1qh(26e#r+Y)
z*v7Fb6BFltPxzF#tI(tfi9<MvZ0Mf!;X!<T*lSb}Bbbb2jO^VdSL3+RL5vAva?`l6
zG)F;<4<cu!_;D%8u3M&`lM>fP#ozl?J>NU?#2_Y-S&&Zu#?&BYl4JMo@-R>Qv>>Jj
zF(U}#=EQ{djbp75?Q6G*N4E}SuplgUP7n_AmLL|=00!X-A{4~jAlyNCf(Qf=4AQCB
z=zKTPOG}A~NMcGdDH2uMDsJZfcz+PhTEx-Q4owr{@61k=X{~7qDvedsIE5OsKc1o`
zCM9Y?6mJzr7f-iO*S=PC{PbT{<^?gIN^1~1WvJ!PAU@TO%Z_-$ML{eMVik|!k|36H
z`&S0Ba-@A(5X*l@N7~EoOI{Jg<&|a{jhIGp)JN*nUqP%6VoeZhgILewK&gKRv5x#a
zPr{O+mW;LI_Al*Dmj6UmCEOIm<{&D_s3>Dg5L<)zNG%ECpCGmcak9JZMiASB*b&6B
zAdUyIlRPAdy+Q1wX)2X|awf~}AbLhx_Api&ZHZ2@><{8V5Gk~uut>_mAPxmVgbZq*
z)R97y)fxMoOMQfGjt24hQuLS!<`YzD5NCrp7sRO`P6u&@4Je6>|9?0i#DyTP1aXzT
z@m%VQw6j$xd^w0qL43GjqA+ZQY4D<Gs*aj>Er{#ffT|PB*VC8@sR7ixn?X9#7Po`A
zL%q9Zeiy|1AnpcnkGye<?S2r?S${xd9>gQ&WcD<O$3Z*^B2&e1iq1M+lJFU){#ITD
z@iK^4th`}-ZRGuziM-WDS>6WG>bOoQ+}vpS5X6@MEX18>t)GKfmJ*#_#&aZnp`i}q
z8?B>v)?Yz{$@njb??L=vg~Xq1OytT*6Cs6g8EIssm61wDYFW=1>}4rC&DOMxC7p~2
z8IiJHK1B(~Ke9GyV4*<K3^Fpx$Rs0vZFET)rI=)vkwr#U8QD0RpOFl*%gDhzr;J=o
zdM-7So?Av9j^;Hi^HDQi=t%`+6lAfGjKcpf3ndldXi*u(m=tFuy@ZTQ%k;dZSt-v5
z#xjg$8Ot$Jv1IuhO)~ztR<4?i>N28aM9VPCu*j%NBXh^p_N3J+!!9F620i9#W26W0
zDp7UEt+CYL6V}QyhM%-nVI&etWhe2^Q&!48bz@wdtpA-bUPgk98Zy-E=9-K|=)T}Y
z8A-DKvEEolEg7|C)aPg&#=0`<F<F*Unm!K5?0{SU;?aP`hB6w-=$yM2DRiJQVG|im
zWi*q~oDEvaSkNHj=jo9xWQ^f2mRnMi>FDfybOf}Fw$v#Fl@zp-(O!m2hMRgv8D;&@
zq^UAGQQ<O%$QUZ4i>yB;-J6n_bd}MKNp~4NWb~9#Zl#(2i}xl~R4?WfEw?+Gvh<PB
zU&a77?#tMZ@#alEbs+OU7zfGprziapXbOX=5ZHh7VdR-?FkHq686%lf(r6~5WYl?X
zqN7&F7&@J5GET;Lj!uv<$<QatxSW#wyUfWlrWpE|HRfqDrgN`n$e6=~MqnnBSu$oD
z$|+AF(j79KtSlZ^ilQDFf{gnzouL6yM(-*XS%xB`<(A%F89o_R4p}HjGW;^+N7eu%
zksuTML#rx7lkt~~)iOdd=F*}gpZQ{%N9DLpi<uLd&(S{_7ceelT*OHBOJpo%<Mg-F
z(-O1ZPQP5n3RYIiSjB|QTHj8;Ga<Is?euG8td(&@#!(r6%UCC4FEt}is`WB9kTJc_
zCF@t^Zj`ZE#>5+`H&JOvEXM}hNQ`P|*&<^rEt!TE3jfI1#yrn8D@Aw6*h$N3oMjg+
z`BAnC^)1AA%h<!BWwec=`(*5waX{AZ5k5>F^1M2cgE9`WLOg}Zx$o5}Dc>;rF&W2Y
zoR)D$#t9jj1NvXlPs+%-Jg(BEyk9e>KSjO~tsj<nR>nCQSE<Ya_VY3x?>EsUzkT*w
zF37k@dtG^(W1xNFK-(qi)Ii&1#w#+&fTEP;8fUyN;|3E_ZpygD{I;Rok#U##Jwu`F
z4`n=(@kz#Ks#M08ucntWUdebO<Ee~i)YJx+7vv$6P0wkucQ^OxV<v^nn$|aGNf+~4
z#yiTDlKiiXH?)_giy3{-e*2^KEs3=fh`g8aLB{zZ_QJ0s|2rD}k#_i_(fK>sivO^D
zk?~c=HyXVK(bU=hWPGRU6y#FyL&i_~zpa9d3d{$if6)jiNUfk)Wowv%57xMF1s!f#
ziKL<Es-$!ZA{4}(N=mC>OPeHmuqRSMdIiz<&BPntNT7`Lgy-rHRWd2atRS0$e20^>
zFlJRy>QvI;qbB>|<l-lj#%zest{{g3ic(&R63ML~57n-qxPrWtOF?1Im0v*t1qBrp
z;=1k?O`u|_0c{Q^5B0=R_Q8jfv&Wi?C@8Avj~h{G{tfXZ6qHmzx|Ir1P+CD0WmojK
zz(CF37*A$pI7&)c1?8BRXRN?jk<r9RHgif<r}k4X9EX$53M>jJS|Qd<XrqpBT{TQr
zs*#k+3aTh*sG^aISOrxTTvu>IK{W-{6%1D}f<{t74YE<tNWm40b;Bdmq&1eB3gQ(c
zC`eR5(YgvUrH)EcP)ot39x=7azGqAw=0wPVu%3eYY)pCsCL|8%me^Q969qjL^it4N
zK{ExN6?9S1TtN%k+ZD7|&{ENtb87{Mmgwi3wNeoN-0WTy-9|x7J!@NPMye>E%eHN?
zDe<+XgMv=fyhl3kNJ+0P^}g9wKZ$Pe#!8R8c2)59gsGc?M?du^V2O8E&_hAJ`KBJz
z?S#D*oLUgyS3y4o$>c)G_CDlzeeCIXMx^~|8jxu1uV7HMxS<LLC>Tgw!5^#)QLy5I
zm68TiQlgat@!wGzoM8%<9!@4QQo$$%iUL)^Xa!>wOjR&V!B|Cqo`iZgS;08w;}uL`
zGLeRhNs&BevY9X`jBpB%$<gSD=hsZr70gf|D)1_psbH1@mjbtf*_7+N$)R9-adVG&
z+Z^&A*sBzbp{P^Ay7@LDp8gq%uQYkcpI4d$##eoG-hH>lry!`nxgwglq`<F$NPv;Z
z;T;jw9a+KG9Fc+NHcdfD!DbpU1#=b5Q?OdW8U^ze{Hb7>g5?Tm02e4&#AW8GV_m4=
zbsr0n#q2*++7cQi<}<8u6rFW5ZiRxss7E*BD6CYl%HY4pHfe6$S_P*4roj)a8x;Jl
zfc$gZCeu0v>uDG_>6|=)yk#T%%qH@&GM1N1O<QU76dY4<T){RP9|e0A>{GCVopYyx
zT?#t(h^gP#zFWZ_+E^x;$Zts@r`@(Ykvg)U7W<9pLkdz998hqOZO$j#$>4fz`(Xt~
z6j0uy<o12-zcZ3Okx6Yk&>A_R;EaN^3Qm&0v4frF5-1Cmzo%)^IR)nxT&6|G6<wg!
z#N;9`E~<qJ>G;V)i;Kcl1=l#0svut_g~&|>w`iwQQC!7s1$SutRismKSHV36|0(#+
zE_7eP8(I_!9&q#_Ee#6UERPkuRPai{6LP1|Rtis<JY#&W;Dw=|i!r~Z-Q$qC))gz^
zzs!qdvk>pP-}H_)MlJ3GIm0;9dj)jALz8i)j|x7~`1nnq75X=&=?iU5S)z`0wh{lT
z;2Vp?3w5#mQ1FvB{|lxxDqft5`=uaE#fB&C>G>#%hO3zJu3ah>S%NVXQmfc|I9bWx
zp6u6kwneCjRFPXn9u?_TWKfY!r9-(hWK@x(LbzD0{k}f7Osc-OP{>S$sQP#2tc(+T
zmm;2>EYn+asK}|Jzz7?4Czq=KllSs*lQhhhmn>JBDCAd>kNNPlarAjzz|ae-D8#%l
zV-Z6ys_M5kQ^pc1N~$ocu&DaMN~Kg(RAEwa@<L>36;M$|MOhVRd)UgW*f-F=_La4q
zilxnLBjYW1vnNzgG4Z+S^R4LkTjnSgG=RtVo2bFj+-w>Is|uTnYAUL$u&WSUrphX+
zsEA=s(Ml>NEHn{`Rq=jN+NwMn-<#QJ?nV?%)qI>~(REXtidrgatEi!Zq7-VXh*vRh
zzA1r`NFtLY6<2G=QS`yG=sGIus;Ec47l^0m@-DWGSFFx1o$IS;pknv~%b<ak?~JfD
zR?$SoIu+|xG*!_|#UCmLt7uMBsl|0s(N#qY6)jb?QqfvPI~DC!JQ!c9jf&}CdbL$?
zV|*zh6o}-%U%G<|8jwyZzKt){k+NUV$A?lov;7cy{+~&270D{PtLVYeo+^4V`CS_2
zr7V3|>8GMUlfE=owf<M#02KpS{B23bgE&gn4N);v#S9fQRSct^QZ5>n@bZ_crW&DQ
zw2Cn*MymQ%dZQTWw=nTN-+GOuzF#XhUd1@-ZxpT_PHr^6@VjQ=^vkGZ8~a3_nn@}q
zGnv9Tm3lGMGL3OMWBjK~q|8z=TZK=Bq+$*^n+h)t$m=ktike@|f{L5hqg^U;Rg0tG
zR^eg3@1vEX%ipIHsV{F#LoS<gtkR$5^Q#D`n6Khb6+soUija!As{S~cLLJPSpb|fv
zoa;!k#!*tDjwH`hG4)$Q%L|qh)e@slCp12iyg<c56)RM%Bu7%QrLScPIkSqz%-!K}
zq`YinS*BvSii984Df;MBJ3`{CRQ#o4Ep;b-%xV?ahR3Z@(d|d|-v)mcuu=B?kF9^J
z=zS#F7iHa`Vxx*DDxRv?q+&BITbc!`NX1qahg77{0IJxgVz-JtDz>ZGp<*YG>aIiK
z?I(o2cZ6>q6|sw4Xilne{q>{cDeP6TU&R4hj4B%U4}bdDlxui((ht%SE2NLr_?h<C
zKP-n;9HCXL;*^S`v@lhi;F4GW7q+H<_2bO@ZA>QnJbW<VX%%NwoL6zdNII+HoC>m;
zkZ7i#hf|Lvx4)L5e@DHFiz+U$*=5F#)A->}<_{UK)1sg$R&h(k9oq0&yiGeyjDCK_
zngO;SyY;@@Q*ob`((giEv}=*aI&Qn|Y@99TlkE|Uj~SoL(93_O;<<{{n!a1UQ1Oyh
znTjteUa5Gk;;o8zZ2T`R&k12~Xnvjgdr1@y?y$Wl<C~_B<RonKLB-cSz0Ym86>m}a
zx6P3K5nstaRs2#B##Q{smfsmOb_@TZ;-`u?aW)!_X2Z>IZ}$pkvs8@XDUqZv@2?+<
zl18JyOd_3z2n`uEWMYFz#`GHI4Eo;*9vR3Cmfzz*VoEC8@cj{4HDuF}VLmd>M|KT4
zG|ZlhIdhRyLoN-b5TZiJts#$w=^AEeNXcc+tD%U7q8jpXl$87$ectIw1vM1XP?-5|
zY`8j#^kN!{YiOmRwT2QJN@}R8p_+zL8cJ)3)?n5E4P`Wx*HA%2SxtWvdHmlc%4vv+
zu+jPX^zV;qiMEOw{J%<@G(>5*RkJGDv`uBFQ^D*0vK2mIwP>)Cy@pEMcbkTdM@rZ=
z%srxe9ff^M?UglD(dd#mJh@ncP93N0Lx#mr(vbT$Dy_PPI1P0*)YDKyLro2}HPq2C
ztD4Qp2ZqOMNYHTVes9W>s3A#1Ee%)Rm8R&a$aI7h$~P%UEhkc6Ljw)XG&I-fW!n-B
zH8i4<>CF6UwoP@rH0DN<SraBrxof{mm^>|_g@%?IW+w81_HU}BY>RHAp{<4i8U|`;
zr=h)u9vXUT=%AsahAtYqYUre)GtKzIFlr1PicW(@|8Jtaw4HX-(A}t!&RVZ@S?@wG
z4ZSt=)zFWVk~Q>UQZlW6cIze{x4M%eGhMXzr>SXDkd9ub(gtbxL&I1N<1`G`Fhs*h
z4Wl#+)i6xMa1A5K2`}2|S%r=plG99&A^y`^H6dE>3mrjEI9kIPuITkIT|AlAHeSO7
z4U;rX*7U>e>7f3J8t9OAI-Z?|YYH1r)i8}la<7$|L1)ENOX#Wv!kIKd)RD=i;vvkY
z?rXTO;eiH+1}FJ|hD{n=8r&K*4IvF44FZj}hJXf9gO`ktBug5a7D>qVx;_09!AFBU
zs>`t>$@B;OnmJ;F8WMZrNJ@gDp-EVrOy%e4O8=)&HKe|6i!7M%^GNbs4f8bosbPVJ
z`5GwW;v2mS9!>80Hfcs;!a@y;G%VJzgp=Y9Ck$v3ha9o@EmfClSjHk5r%Fm#u3-g7
zS87<xWEJCIjH?;fFy;%DqFN~YtzjK2>lrsNlHTK0<Yo<9G#t}#T*FoxLk)*D9MP~%
z!*&e^H5}5ggYBCiP2Q=Y^3mie2NHI%vYT-a<6g#njQbg>`~y^Yy*MJr^K>0vzI_VK
zV2h+fwPM#COqg*pvHQXjostS4)zJTF@~orDCp4VYa9+a&T0R<1YdEXnoQ5-88fDMZ
zB<}2y&f&EZsK7gw+Q+3NEIOKeQNtw-JC7#c(O~}`NlBO4{)&dHOu9|b#cLX!@vDzH
zg&P`fGQVXgw`n04uu{@pR_@UVq$E%%@+s+|hDWq3hLA3V$FwJCc(37uhNl{yY4}&e
z8x7AjywLDU!)s0dr_80J$>l$oU(#lnm@p$-!nYf}f7kmkF(FH>!k-fo-fDQq713zC
zIhvgPSn@}WzBb^8hM%;EKA1mi_>UZ^PTUs_Up4H@+x44<tYf<LIFPU`F@d7rX@5JG
z{MX1XFDEDb(hwFxcnGONs57R^vXq2fjp8V&{;}lLA*2cEz3z1^nd&;7t`_}gEh2=-
z5VD7mBZSij64Hl|IfN`BWC$T68)phZK9+pzL?Zd#q+_~=mrO~>8bY>^-lMgL66pU*
zo`VTFL&z0E!4L}3{vSe~5b}kPKZMQ4lJjyo=Z+;8k8FRxaa@5Ah91^iPM#CdDsEeH
zV&M>qgitJm>IV~whCtq4?|I?nE#t1PiHZq}qk8WgOehgT$q@Y_FqaAeA(RQBG)G6v
zCKAhr@O+E8d<gRn#l2aRv0Mn}Kba?NF;`%vBIEc!%v+BqMTcMxVO$8~L$HKk4WU*D
zwL`Fl5E~X%ubnxDi9LjeBP^s;3ZZfcRY(jWA%ys}QG?c+s)kT41ph<RsOQo3t6PXv
z=V%;bjSy-wiDztE)Jz76oHvPaVoe*BQzwMFA+!sjeF*hJs2@Vp5SoQ>I9K6<6D$ov
zXc$5x8qx_C3Qa<2OdU@&6F<1tLhlU`Y0jzi8c{1IEf`xerfz0wO*2@-_TrYgO$dZ-
zL!d*3iF62|V+cJ%=oLaIHtrfiHzu7!=)!~wr~BZV3z@#nF?DC92MyHb=!!Yb%{#{R
z4k4Mv5h3&mfli9}1k11x`i79Uw7DN+{}2X*FpxQkyZe|2G5>>cu%QnjXE1o{pXT9Q
z>_2Dq-i<U`GK$G)#xaaz8R>PZ2_Z}jA^lurn2SjvOb%fVc|}Nn$!H4sC%Iw?{rG~Z
zAxvYD_;hmbH;F`Maw-|jqE7+lw@W0Ho|fPY!4>*HroIBYiS7HE0;NE4f4G#5ri~SC
zd2MlbeYgbIhr7EwoyjDVOlBguySux)yW2y*Gl$=N>%Z1rd+oc=x##+AnvCE|GOi|L
zb~5H9V@)#FCSz_g<|SiAGLn<=E0b-0G8QnQ57jR+m=`i%#JHGo3FA`6WsJ)isqD9X
z=>%Gn$+(%#tg`4#hLnuUMJ$WvB(&&iaWSW?n~9tZkD+*(D2%>jv}~6|ZWL2XhMz+P
z7=y`(*q@H{P%>7svWk(E)$}3lh?&Sbn!9A2O2*>pdV~$h*prOCv}f6KQ!+LuV+-@0
zM%k^&*v5Q2;|@a)+n;V1^WBCryoY5U^TRYyS<L&HA26&3nH-|S=ZoG*N=H~Z%6Kdp
z$C;d9JjqBt-#@22&HN1GSwla^<UHerWL#u&$*^8d#<NUTDt;{)*OT!s8Sj&Eg9bkt
zPsx;wTgkZ1&QFqYhsgt@>|G}Jl5yWqvhPp#kohCV$A<oAv<rT-Jg3IzvG#qPNHxAl
z#!GgHo}J;9;rW`$8^*UZ7qc^v=Z9o`OvdkIq!93lO+N{ld}jQTjIT`oWBkVWo$&`F
z1))&o#+m=}M0d?^tD4muCLpDNw1U1|Q!&!g>fB17`qTo#Ss|WAK!m}SN9pJhNpDJ9
zA_Zg+kSHKYKt=(X1e6d^Qb1+_Sp?)2kWWBX0oerP5|Eod{|h(}mM({YoC5l#Zr`<1
zT=UfJclqq!1NsF~FOE58B~{8J&}YJ^zXbfS#pSLPw>HY2UqAr?g#{E5P*A|y^Qj97
zpi-3nwZ$nF;|PlibnB%a90H;Q6c=Ew6h{tW#~s!x?Ow*lQI=AfW%)}{d;ygO#0e-P
zpsav><>Jf&Ok5;}kvyXX<gn>QdWY<U7Iw2TQdk=|z%C%xXh}IXl^0M!Kt%ytEUn3{
z5?lL5wSHb9E?&St-jsg}ur-KEY!FpN0Cje5Y+M4@7;(i$wNw>QO~4QVLj_b9P(wf`
z0i6ZZq*6o8wFT535kE7ZrIr9fQtGf$S3o@h^_e#n&`dxB=H%RvNh1M`nKUu<?ZqRT
z8~h&uEezh0Nh`+IjBNz0-_o8!wKaU&F=@}(fw7~2-qgGi@m;u`-3-sJoXs6=A(KNu
zch-9d=*gs)fB}YQZzg>h`_kGl^!~JpjytIMKtmbC<X-`U4P{I5$YBD83z#5aqJR+s
zMzU$FfKg0F3mC&AR+&Q)Qo6XyGETsFnyKQEG?<jAmPrC83z*8Krm&Sn8fSg*N5qpt
zID<mb;t>%qVwQl}0`3cVAYhJwxisAZ(v2|vC0gbQST10NfcXMlR)>WGJv_>`Silki
ziv*l;$50|=%vT%XQUSFNS(h==k1xcN1qcFG3s@sS6yOx#6`%-^1h}ZpgH5u4^6~ml
zpYJ^;H-$}EapEug#|s5K0ygE*|IhLXPz3}9gxJ3bzq~*b;OA_B@l786DZY6}hOZQ`
zik0QLVuwsL_bp*hTfw?kz&Zij1?-?u*AmwY*hs-?kjo`(pk2SgG{I@AQs4gYe&S{-
zE6}etF{G3_V%jQT8%>AP)cm;Pk56=wxSfLj%787~63A`0fIR~C(v}f$itF7^o0rKk
z#)ATm2zc@(<`8EOGiKOm`uV_;yM*N^4fR87+v4Wqte;>!$#^=im7ZyKnnqXvIh+-6
zS-=$m=LDRm%{AOaG3mFA3j&r+3BO27WrOJwEuQdbB6r_duL`&)fTrM@0LorxyunD>
zn*wezzs-2Z(C-SsalJUD_j3G00gnWv5D_NgG40>CF`or|q3#HHO8c~9^fLi31oW6{
zC;pt3M2q<)E3X*I^jg3h=5GbO6Y$>9KhpU&#r}b_Uvrx~OtF6wuzyHA75PdB>^9R6
zI&AOT{$oz>MEgc(X4m-d)WUA|P`-+F^4WjVF)n}zrQa0Ikw7G+h*ToVh$t%}wTN&L
zc|`mrB8`X$5t&6~5plUnd|DBaA~J|bCnCLwoaGZp9QVOmA$4>{cA#t~5rcM{h}gcx
zOe$|7l2t@@5jof)8)N_Dj+`QLG0)9No|GP3vQF(`rXqPo<P%X;L@^Qh*`c6_LLv%K
zrJNnNCBCqTA|n3OOJ!?6jG=<k2Wymw;_OpO1Voe&QBp+JyamZxB!#X1M{BCivBYmQ
zx0Gf#;_X+OOd_;Zrg9?apM_`<F(SSnGMPo#SSM}~VP!F5ndw!8#m;&xBRvM3%FbP8
zDldYtf{2PDmh^}rUWt{;B0WsQOxY?T{ua?oL~juZA`(S(712#Z5{<muR87>E2VD_e
zRYdt>=1XVI)kV}0QBy=M5sgGN7ExP79dZ-VKt!7|=DH&4iTJoX;qo*yJ=HMHW0TY&
zp`FuQBqo05aYsWcJ|f{tQA-mMO-1}8qOFK#B7}<Z*E=M%<busbv=BkrN;irVQfeil
zH7jjIOsH+4C(4pIyo05k2*NHR+B4}OqN9jTBB;jBtWc!~dL)uh^qmMoYRtUwDgy&C
z4q8Z?O><;ZcM&~A5NS~)si#PHe3%aOwDqCE5iygFQxW|{^ruQiOcXId1YKk@Si}$!
z1DOwE{FjkTy>FR@(tL>+Bhn2Bw&9F)%jYN&BSef8;XCf2w<6Lj{IV~xRZD@<hQnA9
zlpQBxJT<JAjmpwBtM&I-CyAifug8g|V0znR5mPujRm601i?&YVEWJ6Md}fH)QZPM{
zE{9A%o0?~fSotRA0d<Y0Tf{sO^F;(jghVV5u~39Zgjd8O5ihzYCDZteSWGK~X1{yV
zQW48UEN6aWg=Gaz(8+F&6Y0oAN!Xe|MMM#S3JER|PL3ckl0qgon`A~(&f62dM<gmD
zR9dSMiKO^w6CG$ry2e%b87XprNyU@hR*G09;(&;QB36r7BVreu){0msVxx#n9AUkP
z4NRV{iK2QbCJ~CiS;RIG+i5`9+UI1qt=yQoQw#rb*ukycDS}MoPX(#=-CV^U5qqic
z-IMl-*e~Kwuc=Aoa7e^q5x0z991%h3C|9xTxPw9+6LDO`2@xknoDy+S#3d1@xfZgX
z6LH4iXGMsEqDZ84p2Z9QN4ZQ(oy9ARSB+BFM9`p7ksI6{A~%gvx4H3mMBHU^PsDvD
z6LuD*mQ$jRJQVSW&VLb4M7$UAfu?n=<*A5wZ!IsGKNInsMn(i(7Q1Jw`Bq!YyS%n#
zo8w=x^)=%gksdsV-x1O8I7<<d-*^2e;u9UqPCeA94d%}@M6~>Bo4?Q$3^sjb{Ev~c
z-$Z2nr2p<Pp}FOUh@Y(gV*D*4g;OsQ=0u4yVX2v?bRrcK(#u~f5N_}^OuCx$q~&@S
zg<{e<vHfW)YSNDrF&Ui5=|nCkGCGmT2~sjMW_KbBldO!SXLI86aR(7fIankmw-b4s
zm@Q$Bguk4~>%><l{&OOq6ZxI!=tL(cKGw1naH6Oa#hi3~LTo|CLQWKBQiO5e!vr!#
zIZ@n+M)cD|HZ!PePW<gef)gd3X!YD0?L>?drJN}3L>VXOgLhdcOiaG~u6X2U1^Njf
zM~tnD#b$QG;zSiEtPZ=?3Hma>k`wgOTbon=x|oukNvsp)n3Om43QQ_8rdVXF%p}gR
z#yjz9Oj;^F#$-DeZA)|_iJE7#rLGrAVpS&^I`R98t=I;8H7-)!i5gDSbke0YdcAdw
zIJKRiufa*7RM&}mhF;%^1_l?x5-AjY;osPaCQdYUqL~wId1RV1wqT@z8noKf(%`L}
zXl?K|PW)qVx|)SN+d0wRP&zm<b4vt?ot^07#7HMbQPoa#bE1zEeVuSPabzHVU5M}L
zM0Y1P4+Oo{x`z|=S&+nDPNa`0N6!fDO_Sa+df-7*KPUP-F~o_XPQBCsCk8q3uM-2E
zxWsYjMuYjgO=O}pn8da^p-bI{IWgRc5l)<DHxl1IPkX<erAhke(N2tU(p5TG>%>?m
z#yPRDX2p3l?AJ}>Y1KI~$4MVnG3JPAB8!upnC!$9=HxSt$y92?kbIP-G~J0AhIJ;B
zS%0$s<RR-^CsH0W(d$#c-?q}9lKD<7pc<W6<b=y8wU|k=6H5$bDU)SREN8NUG3yD-
zpBe=xT_m74*vTj{_TQNQkJasj?1aY&FY5tDg^?V5PN>W^L-9NH7rc@w$V!NDrD0vg
zWHoK`3wmeQIkDb}drsVUVuKSKoj7ZlHaW4wiJk1fna&3z!d54?G2d<|)RAMqO}l6T
zh^A9c>}GwB6MLELV?4~b--!cE4l+^$4$<0PtGDEc6Gxpm#`+1y<AzVKUujPooczi8
zv=e6xWq#U>=bSk2#06HaGG1i7#CVyJN?l<>vv!Tib;cV`++=dgi4$}=+;!7!&fa09
z>|N^b5nYdLVSd2kJI04jJaXbO^Cyh27@s=vj0qKa?!*h`FAat2dTsDGOx_v|ApiGH
ze4y-F(?>RaV*Jebh4IfS{pQ4XIy5BIlJJ8Lkh!r*5~@o0N!yB!7bj9kh?P)ILYRb<
z60%FkAt9B7)DqH4NGBm&LK+FQB_kw^PqaPxP;JS>(vt^Q$aF0>_4CrzK9(X(FCkK*
zzq8R9Bz<3Jk#H^2oRKjTV`d3whge9=|DkkNR<befJ)R?{gj^C#5~3yKmXJq6l!W4R
z{!7TqK7}beHzA*d{1OT<?*Q|%QdSZRN+`r_TlU*rbVV%bR7DXkRa8PTNx$fV5{Z<+
zdMU;dj3pUIhL<L5Y35}Z%SxaQk{BZ)@l$E)HFc_B<rp(tEsRzPHVJkKROvKdG$ryc
zFQI~jI0^9*DoUs%VfNSP$`amrP3g~==zr3KbnV}k7{V$N{+5tH@g=xYo9UpS_P1JL
z7KWOrFLa?4{c1^%q|O=_R!!2spsp_A!#)e88j^ki6_GWAY_%mcmC#H=9SL<M)RRzO
zLL&*^Go@@Gp`oN-B(pP9SgoLbk;9ro`v3T=*M>Eg&_vSz-1li{9#yAea|taZ43{uM
zLQ4s)By^Fm@R6;xgf<eE{#7<G$n=kdw$xJz9VN7raPCCy{-Jv9B^=CCw%@WELkF2Y
z9Cr}!B%w34^SGl<<p1<cCmdZRbmM>y3H_OLr$v?4_Aa%phlHLqIH_&DBz%2g>&?6m
zV_!xx^`jX-+KtEnE=vs?$YhX&UXN}6N*K)9A&f%}pJ7a9O^h8WVU&a^5~fNREuqv2
z$3%%<BoseJ!dM9xid7rOIG#4e2?u2<O`tw9C$~wo64;;k{m&T&oNy4CCSkgS84_kn
zuokP9zleSl<%|=K4X3TMB*-Tm^u+bK66VpUx-i0p`4SdL$m~KE7ZytNC@=^TL<x(j
zZDG+p-kS(1EuqntuuQ^o)>klk&&7}_nK=>4IweRFUP^dHD@TG`!fD!iRIdb&gu}F2
zBzPq#v>tM{J}BYA$XK6*RZJ%2Y^_SrBoLwGXA)oxN(dSHN(uj!Ng#*S64tP|mT|X)
zb+o~mZ=fY4VXK6VoZZAoMK)8{epUSwf18AztZz50JB()R`acRe@8RrT3HzArH>?M!
zmJ<$gI7EXMlSJwGe@VIfCLEP;T*3(n$2cJMkt(JBo|JHkPLdQIgq*D@d;Wyu;|a%E
zYUKBX3lc8U(v@(YLUH#?{<a_6(CLzd%Mu<-cp~8n)tf2tDs6BkTK#xRYTh_%z;y{X
zB;1s6i`#ae@iyZf#=DH<d5=c8emoIM4<tNf{n7uiQfr^mS=Tq=8SUkh4r=Ff&XV#%
z!k{!&h`g5YM#66iDO`9<dqKh%+9Ny&G!*Y?mr3}@r9Sawog7}3`uLe0sLM2c|4H~p
zXFeVE+<l5k{rxV1@Iubk9dpM1VrR-y1E@)1E~IoJ!iBUhq;es(OCP0hm)=hDp+tk3
z#-$hk|3%Wd5a~h&7t*`1C1-0&)a8sWeY9z&GPw|Q(m|XCnVOW<g={XApa?ExcOi!h
zd0hC53ewx;sTL;0b1@m%Fk)X8{mPlVF648es0+nh$nQb{7Ye%&HqBnpg+e5nlN_+-
zyq!eKmu%+6zv9mRj4R>-Vb?folncdOc>Fz%tZ;!8BI2-gM98_63#DE7$Az{olyRY~
z3kfbHa_uG;D!Nd~g=p#mD`poe7%j9gu`=2i?JmSJDaT07F7Ltwz8Z~q%j){qvz1*4
zF3@{KDURLZ8LKe<{Rj8!7gHs<P|JndE>vZalxi+iH+T&fY8pIViKxT8DPvt1>bX##
zc_YK80h5M|w*4s^Gik!uIr@KZ(rm`r=8P>|Xvu`?ZN;Ru3vCSLN4xaxTxjpYAXYlK
z(9wn7%sVlj-j>1PLTAIj3zM#l-CP(pN`LBpcf;Dlg`NiQ#bk9xeFXZr(3i9Q82cMO
z16&x${QOt_!k&MbKR+Bk*o7g?hcXUhET`zhKGKCzG@EWza$~d$V`#0q5$VQQ7sk18
z(}i0ujHk(RL3KfM;e**a(S@llOk+NYak2|5Dp;n_+M8<HyT&x#g&A~`yRgUwQ-<i7
zF7(-+a-IvbTsU~cGMkae942#JnEljD+4(LsTo<!|kqCWk_)#lyu?tIFSn9&IRMxTi
zI}lR9WiBkI8eK@{+TDzTi{3zFrsh!+S#i1`F>x`HeyEOFX6|A1GAf4E$7Evxv)_e)
z3;SHyPixYJkPACq*yX}XcG&L1r+j)vt6W&^!WtLW8WA=zS;x5Eg$;(jkx7vhmd#AI
zFm7es#z@ipK1*UM^9~pCo{X8+-n`oddcDPi$);Z|EkyRXu$Pt2BlOo^9H60d;hGCO
z(px%DHy?5#*B<k6T36G}hg~?r<S1kE%cNsW#yl~faN(qjZZ^>;@q$tBX&25I{HzP-
z41S&o4LCVpWPZto%S^5qK3D0`c%To(br&+GGT)%{s$Ak#SO{;saL0x3F8pxet_$~E
z`0T<L7w)^zyt4VB3y)lQ;6i4Hd3p)+!+jBtUAUde_KYJxVSH-T(l4#~IrA4Tykzpq
zh4)NeGrnPb%SerR=fd&Pyb@UX$oR>ys@tQ!y6~S1-{>?;W$swr@+xR4dB@zNg!z`s
z)c9NsMfmAL3b#H=lzzGJo6Fj3C)PRX2xC2^VNK;mYUbgLX$(EWjkE?&=f>4E77CTY
zjf`#-bfXZPGP&u^yvXWCX3jp^6-7STj8b{rDElrZJ7;sak<-v~xsjXslkK|yUv6CZ
z7?YQke1=bcHwrNK@6>$?yHSLqxnW|lC}VNPVs1n+q26^p=^$rtwuBocnUGS-jnW1$
z!(?1WdUk;|+KpH@%CQo|XlAr9S{ZGOcIu-;pOL};TFSFh!42Boq>SN8E4vZr#&9=A
zxDoG06}Ns}`T#fnb|b-!Hg5dmMxq-@ZZvYEu^Uz0sOCm(H#VJg%qx*l-HjS<)N~{H
zq{Ck#p_ZFIgeDOo6Om)5s@8F%t{e5-ICIj`fJ%kO5~<JGd8ey3bffs`sw7ghCT=u!
zgUYsWqnR5=n`Y=&BB8k(ml{=V7N3-9qhnZDQcE{lago2dRBJcVEHzW{wr;d@qpKU;
z+-T21I#WkVBy@12BaQROSSm}AJGrs{b0Rgh3tK5H`8eF@PSbSC(btU!r>gdFqn8^`
zxjQ|nCGkng;jz70A+ZmWh*OS!TuXmO>M6zXeJ~AlV~`vF(pb67%Nr#Oc4LSeL*4N9
zv<!3O-ge8<ZKjvI%r`s47kgtK>Bh!J@fWj1A8}(8{Rwbm3@h|hhl6g=)o5eg80W@#
zHzv3-(GAHBmm8DZnC!+PYHAnD6h<O*-I(geG&fxVtLv0zxiQ1wGpTn~6G@zHD08@?
zKc4egoX@y`aUoTdq9R!ryRn3orEV;9V>xqbGnrPnA##>@vKxZI{}gm`mTGakA-l27
zjqPrDXdK*F>BcHI6n5|%rF=|OMveOTyTYHg1y~6(hTNc$A$>JxH&7ScSi^j+8|#=*
zjpVSNNAFLBO{{EjV>1&HDgIW2ljjcRdl+{b`Ytzi8=QRhGT+Cz-_Q@xITMpW0coZV
zxpCN-J9-qxQ8$k1`z89g8z<bzR?1F1Dm?8;=9E3<#%bnf7|*(K&W-bQp15({@VV&5
z6@y=5a+$H>DaTbqzvc#IDIldAEZ#Ic@3?W-jou;j3E`d__uW{iVv&jmZaj1&kAlAx
zJaXePZBH-idGUl6wi_WCD`h-$<2h}78Es{}aN{M-+MAfPGG4jynoeC=zjNx18*j;f
zaMhGD-ZA;*#&0*?(;>szkBmRv_{4-fKQsB_##bi)F@9tG&PYB#+(;D{ON0`=VK9ZP
zR}sc2%#I@d2Z^L&vDqm{xD0wpWf~a~+_2lZV<}M!)5%CLBT_~N8PPIgWMq`FyM?)g
zjFK`k$;d1ti;S!?3dtxeBb$uuBs$E0$;criClz$G$t@$7jLO?B%Su=Y3-*g6%)=(K
zem`%{D<hwb@3#_{t=4_=%P1g&2&IBdOwX$pp$Nm`x;`;O#*kBvqB4rf7}PH=iuK}*
zDJU}g9K4kne#l%(Mj06!##`PGwU?GLuU-<7{R_-xWsL2V!6akN1^b5c7PAbCjA~TT
zkT|Oh8<AAi5@gtA#L9@5QAI{M8Re-88F4Zy$jJRNj#5P#Wm}m4@JcKW@Y*}Q(oGFY
zC8WraG-pLZw#o^w=UV=z;hkmvXJUM!j3gOVX^0Xm_UhKX^Wx2AZ1Yb!s>`S$qo#~n
zGFr+wG{jz8MjaXTWi*gcSH^(zF_bP1wG-BpaWI#aNJAMPx5hM*(U>M~eGKs?L+wpu
zG?PK3DI<9jZ_d00<5cn)YHuae&C!<DGTN|6JmXONj-mE;GTO@+E@OnO|L@j8Mjsh{
znRjID#Mqg!i;S*J$g>+02V-}}9*jL1d&%g{ggmnswDptGpR<E$jt(abpsD2SK*m(*
z^l!BOWqyBD9^ylo50x>D$%tpUe$CQ-M#>l^W3h}SGDgc-J|W#q8M9=JVYjg|#xWT$
z)1z+jWw-uv*tU-%CNih&BpH*LPcf9KGNv(~&N#!+`^`<5O_L~N0SBB*%ZbT+887$h
zEul28kxnY*2wNy)k&Gw({-@J>gqN~2SywPw#<-j@x<W*<3_*s-S)UA*iBpEe#Kq`l
zqzEz-j|?vp#n4MWPO<rnJ!zeOi-g9aUq*mQ(D0d%Ic$}T)wHNQXz0Nj8Ea|Z$@n2-
zos9J|uFJSVTSnHOJ+e*4b{QLGY?85=6%x15h_%zLl(w>%;fQsIjGZ!$$v7@!7o88R
zACa*~#$M+8Xe*iGJGHW3YGwa$#JXR`>|(ZYN2~{ECDR-ou~IrD<FLW+AJyM8c$ChK
z6WxfMka1GRB^j4xoRV>VY(CedJR{c@kjuuO=J;o1oMm#3@jN3HyddME!Fx{6b4A8g
z+D$cZji&FPcyb7wa=3+r3|!q!8MkCSlJQu^ZKKp(8Fvi+p-RDfGVaTGz{*1zMYlx6
z-fs2MZ{K!Ge;&&d8Bb-rmhpzpfA)Dn%R|O<Ivxw*1pAQN%q%Hiv6U{!p$3rhmQIi3
z*8f<1$M{~R+e`Iv{>b==@iXHWMlyYs@n;IY$@n!~e<<J0Q;wg+WqLd{Y##iUk-~$5
z9u)E*%!8C3<n|zs2dO+r?a_nh^dQ`WG#)&ekUvi)ls;;W@F0UnCuu!M$0R*to-}q6
zBbkTivuE@m6Z6cBIT*7rX7wN&lkALD#AqtGr+{8Omj@&GiM~to=@)|j<v~6V@^ee_
zdQdOFz5FqK-V3m@;YNl=drg!r>_HI^N>MZqih59t8sFMpf_<VqDDDB6zs_fW&x3iE
zXSO7ZR6N~jM;Q;wdJyeF42$#>*{+pf@_<%jpO@{-9#}jGjL*NV0v@IL-%|&P*gc5#
zpo#~7dr;1US9$FfJ*ebCc@HXhkabH0`O{QV6_t&;;+Xt-YH>U{AJMy$;6b7XwLGZp
zL6Qem*{6mFV-8!Zc~IR0>Sp63){VP$=aJ)LYqCSvJ&u>x^#`BU;cR^m>e3K-FuTD2
zT1ao@JMpDB^`(&qjcHoF_{)nX9yIm9Pu=mLnFq~1805jf9<=bFr3W26=tw-hy_E-T
zJ(yG2{!f>r)*iH>D!L^7!&rT30&z06^Ps?KM|)a4)!I?ElLrqTwHlw^-ot~=9(3`b
zs|VdYaCp$2LnS_LMQ%BMCC(l1a2K{yB8B{Wa{GHR_GawkL0=~Q82d90V5I&I^x#_x
z{VVsu9t`n7^uX!CP!EQA&_08GnFqr?==nQwqz9usSd!j8!UL+5svAv1>cKqnjI_T`
zXV14RVXOz^JQ&ZBr+P5Wg9%106Frz@@W~!bVcsrMAKU4MKF5O@%x5yrGW6NBkWTB{
zcCMjNUGojTfXPC}MIJ0R^d(G|QsaN<4<=pi!3qzOX<<a#zy3@-|IA86@Zb-TJaBp7
z@xbdrjYd&!4?UVGLFTzjN^d7mdYEUkMo|;Src^xeagdU~5>*eX?R032M3PQBf*yoC
zIOV}<4_11x%7c9#?Dt?b9sV9{@?f(EagCzZda#~$VtV^JTB|>jXaI$=DK~hq(Sz2f
z9i&t0ecG{wtdCo5^I$vIxRpnqCY?rm&C&!~IXgT!&?|8#<1WVC9@sP3_t2bHYPXk_
zQjzup+?~T79P!{FhdRWA<Bqg9;AdtY_27gDCs{n^!Eq+t8u7yw8%5DjP+b)8j0b0F
zV|wt~gL5AAPH(^C!Cemyohp8w!(Q;<B5iXIE_-l=gIs64>cKT86HYslPdnE0Y|^CM
zVDTp7Eyml79eWqN=fR%z_7@&JerCN-dx4sF+Cd$E$PSMfDZ*nqOAY?igJ%YRPAzQL
zh8%kSOnOO;Jnf)3Z#;NQ$E+9Wy?W!{v2#Rv`+FuI7(aUOiOFZi?~GqO_{!uz#&3*O
zX$#BIKRo#9!7n=e>74ZHhdiYeOj3F=uy?^Q=5;dIQyEs8k#H~4a5ln=v`nZybPmuU
zQ*j#bNG~#ak;#h;UZl%lcl6T#++=1?+O4_0$ih4;Bbl->$<COAF(+d#FQ|j$K&5Dz
z<@MrZ&4hAZl=mW^7x}#?;6*_%N_kP*i$Y$!KkfM3BB_KIg}o@^MNuzW6=@AGNGwL}
zIpc_8g~Z}sG|&=>kckLkNiS~fNJpd$`<uLoX6LeAkTdBqUYMEKy|6H`dST<RWc?G0
zBK(OK%MMg^{_imryr|;E-(FPYY$Y!$Q^8xdI4@GxkBw(eZo~=cV|juX4;}gkGvbL}
zBze*AoV9M|=&D{+^MVMa>R#0Ff-c{x$x1ClukA%0gAe~^s!!eYq8BX~FB*E$$cvU<
z{TF0PjlCGWs$CP#(zOl5o3hf(i{?yPFxuxOkg1gyt-WYNlj22tFFJV9){AxnVi)eU
zwqsK2jDz^vzUGcze92?$?!~7QmQGaZcT;CC@@%top}#nrOr1|!x_Z&g3nC6iBHhne
zdXTl4xhEr$4a<`Hc+r>JHjldRMSm}5b9R7N|3_o67ekl~^kNW`e;LWNqD)xTqL!gv
zjPPQl7sQ7#4rioy7>)8`v=`&N81Kax8q&52V;SkiM#Rg{kGQcqExA#4f)^9Lm_)P2
zFF&GC<S^NbDI97lBZ<?zn9h8Lq0D45i;><IL8Cp#i@DtX*-!PiWX|_uffozCSVVK}
z#Un2kd$Giey<Y6|VyPF)yl{IVd$HV$6<&y5IK4>rLhzz{D5_l={Yf}<KXT1srvEmZ
z4z+^h1)<9ex)h2`vqtLZ@xtrHDlb;klIRkvu#b;$YYb&6sa|?Fx^D6_1{i~kA;y)A
zw_E8xl-AH7bMdvTuVY-#xPfsa<0i(<jDN~fja$9g#$~rN?qJ->xQlT&;~vJ$=`2)a
zzZVC*xa-9|4t3Cr(_Wk*2QR2E)SkmMq)d)79%DStc!KdH<0(e%Tj@W&IP1k#Fa9*_
zoEPWWdV%pG<0Zz+j8_={M4;l=ytvNF4aS>{w-|3T-eLUXf1iR+Hb3AVUA3kBQ#-Z%
zF@5<%dtX5+1y8+rMrQ@>8ZVyHku^5yl^3tQc;UrMI&f}wt9r&!yL{_;2NUU@<u`Q1
zdGUePOj6=oFI`E3_GcXPrzO#yzk3rCKYB6hjDv2o9Z)UtlNSf8SxKZv#eVhTw-<Dy
z^nYIcKG|<x(2cR=_T7sgv<n7Welq@Iq%1v?Hie?=VG7diaExn_;F*$?T0yvi%nGt7
zNTcY{(kqBm5TPI~xhbIgZK+7$aN>^xi4=i&1_c=vdQ>$A9ZIAdikF>nP`w9|64#w^
zWL1z&K@J5u6-*!6{?r*qb_ErGq@|mJ>6y2o6jgI6`Wu0BQ~ZP7C|jVM?RjoXUIqCS
z-1p&u5BU`oP*C5820j#2P)LDCfmcCc1w|BC71$IMRZvXPkBj08YK<_huV;x;5S(e+
zI5xIM0sX&wC@8@W#7i<MrJyvEGK^&zO^oCdtsutWW+oN|pEFp=WTz2OP?IWBFt&4i
zIR&fN$HXZpub_gW|I>Qtu(hHB`rKYgL1iX`>ZBiZEs6fEi&s!Z!QTp+%9cdN&>~BM
zf{Wj+O^d~on8adL1=Z+V#BK4_8EY`we%MK=t)PyAWeS!nn6TGWS3yq&y%f}=A!4P0
zf>zYEmnO0{RM1F4W7eB6HmCSZ$l8pFYm%vjp|n)+M{KR24U7LM=**<8;nR*udj%bs
zbTsr%3Qj+_QrIr6bT#yD3LMP48%hraSFQ2n*;_#$1v3=PWK&-SLlg{U-jA`rf&okh
z($Zq`FXLcZE$d?_!k_Fg7AZSH!Egm56pS>KF$zX8AI<pll391#YZ}Yhag5{tk7=TU
zNt`90$qJ?ze5!(J2A{4#SggmHWhir)%%(lw-2Ny2Tm|zK%vZ3$@L9}cp@Kz*GOVv2
zWC>@N8u|(at=onl9cvdABrAAWB}q^)r(k^KouuQc*{MKM;8NgLaOkOBR<NU!nVj!S
ziN{C85~jXpR}}aZ{ZIcn1*!r~!AS*OcEtD<1QhI2u$#7qf{=nu3N|ZPsbH0YwF=fz
z%#^lC`>d-KtRekP3}q=bJeq`2ru7Oo&|;?TMo-B|X(KC%MEZ6yZ&9#S0sZ;gL3@FN
zY*VnE$@eX$M$=7XBLAJN6#HV?qhK$`Ijmrxg8d2(u!*A8Srz}M0S8IpHkiF8Dod3f
zQE*hjF)nyq!3pZrC===HTADAL^hCv}o2R(5rxl!Ga+Z<w3gs%DS8##$nu1FTqJ4<*
z;j)4&3R3$J?!#3D*XVnD1&<Y6r%jsPd{e<K1veCAz1E5neE_(v{O|YEdkV&MGv8sn
ztDxaz6J_r!IIo&0J)ntG&^3#l_}nR`CtT{Cg7>sSm_K8DuHc1&m&{)=4xVnOUk_h1
zf5Z5ekwg>yFiJD~!Sr3h4+S4t|HSy2@r&X4Rl$D-|3*vYjfsl?WaZpsODZ3JG5^h&
z!uP)(h53-u;NQllEqu#N&S`vz@L^pAOA#N^`jF0t!t9eLvpu~Jt9qNW`4DN8%D^Ne
zV<yJTj9Glh$|U_;{rBSRKIHHrCo7cA$0QeHZXfb6`OC28_0hv2_1{?Y`|z57N-jWu
z1=w21@M*I>il$~)ElW`!iun-bLvbH=yG+9+6MQJ)L)oJ-CLccSi7DwrDJI0pN?4k+
zWf;r)K))f9*!P~Lsmo;c!NOJ4^}*_c&4+3}RQJK|L#&T(6w=2nVIlt_Z?=}>Y<b2C
zj1_&T#Dv`5iux49`4I0z6(9a)J!>VsYy$H{#w5n7jAWXzJ*tKe?|SHNb$qC4=(T*P
z&Ai^pv}9`aR1aQ{l|Pp^H1wg74`X~7>qBE7n)vXK4{d!|a?{+Du?1r@ADS~+yVOLc
zmdsl*wr2EdRol=2ZjB*pJ0IHnFwloVK9nD9qX+bL@S&p*oqQlpsV9@pK6GKy)zG{7
z;4pZ1COsJGX~4ah^fs)0nDq6bpP}^kVF2@HQ5L-xA6-~(8o|n7#vwioWirf%;Y`S_
zLX?FP5o+^D7Dq9T_UU(#RDNV0=fij(R?-6YVS*16eQ^2U_F<9_lYN-(!wjGPSz-#~
zG{&huday<~iIl3nNRf9>%9*S?eVFCLY#%!JjA`{N#T*vNXRZ(Pe3;MK1wJfevXF5R
z<6_1ojO4$R3B4VDIg=HP$&3Oc`G`Jb;14qrD|bp+vgQtxnJYf{eDE;$GE!q!);Fun
zgFZ+}VH$HkWB7pB03CV*VqZk*pN>L4EC}gWg{}5sjSts+xbDMR+W0=4WB>I&Z17=^
z4|{#s$jT-kHZxiLOuu$(3+*`0Ze=W6(z?xu?X>kuS}E;dvXgNa<F@As^V^w+Pt-5y
z+UKLkLRyaau%F2Rj&P8XtcRE!rt$Bs|EGM^hhwa)$(HN5;d6q?Nybw?oMv){@hl@1
z6dOgJ_u+yM7Y*eqlS_=3eYnCT{EmLNRO_+&Z!|Ypx#h!c>YZr5$+#{`H{J2!E{*vk
z{UKem{tl<1zUM<<$xP$?(1%BKYN_a};;|1;Xyd5ppz8mhKBW~%M~x59e0c7|3m;zk
z@WzL?KD_cFSM~%-uYEXDG?K`!n(6*1@7VO7aao-R`@3`>=r5NP{rHUIvkzZ<$fqK|
zimyKWM@O`Z^eTLtY~N@+ui8?p`0m3GAAVA6H`#vskV3^T=H)in)^4<gv2#jB$7UP(
zq+&kktd)4UiZrSoCqhM96``v(;#g;oTxTa9sUm}l94d0E$f#oTdRt}{SyW_VPT7QK
zHo~kbva^y+1yw;x(X&><a`EZYowept>B79|yc|3?V;;u8{&1?r9i8!-t$>PxDjKP1
ztfG*L!YZsPY$}SVD5|1_ijpemOTuC*imL$gC>5Sxi6rj-o!I<G(yR>jMb+AsQc+q(
zw2BxNWmNr3r?M(cD!!a?(Dz*#&pNus+0y(>Dst9A1@|pWFsrc82>edGG2XGULhEkN
ztacT#Dr%^xsiK^U@+uNkB&w*OqN0jQDk`h^7-^r@IjQcl1o}QLj;xPcJ&d#cts<T|
zWvi(4Fx3Pi6p&0wD(q(+)l^icb;6vo*On#JI_sDnX)n1vq1{<WEfuv@)KgKPe99%&
zQPJ<Lqppf<2NTBrPRx=b>B`asN)xH&DjHJ!NPDZ^iIkR{bu>}YR7EQltyMHr(Og9f
z6)jb0!_!fsOYefi(^2}9C2XVO9~Es?v@?AEzvmx9&K*^BQqfJ-kIK%BM7pS`Gva^0
zZ+2yI%1V9PI#hJ$Y!4MZne<Z8o1Jf3!?%w&Q6fU0TKlOOp<*Ppc7?gWiUBHyXG_?h
zHF2PdK`Q=L_5XGUs~D#0FKQXW*`bW2)5~H=9L^@~tYegl(JB_Ga6JtlqhhRz*(&5m
zUFqTc<5bL0G326oyow1bCaRdEVv35XDkiJ?QwRSbksM=8(^M#*6Q(m#mN>n~oN%U!
zW0Os#l1;Nz%&Baqe>^)cjh&-nu1ar1h@~`-$$XXWNzqNzyH@Yai&ZR9u_J(;0W4Lq
zjCQUc|M{_8#R?T0G;Gw6tU^$+iFS<&QH4{5Uqyh&O=9#=r<k}IX@q4Jc`BqFnlsGH
zio)n)R2el!^1PBEEXaJdiZ!&$Xk=cRR<g2+Ir+TL9k!Ncf4%<qZi9+-%qhE`w#+iq
zAAO?=a?92yY>SGmv>!FtG;C9`UB!PYzEK}l>{M|<#YGjnRP0u9ltxU&9u<3O%4nQb
zeArxQAMGy{2UNUFXSyF&x?A_M1-eG(UtD2IWa-1SkuRB!sG$2|MtrMMZe88CFH4bf
zT*V0$r&XL`hm$n^1EWvTa9PR{sa@YnK4(>&pO^m}p^9K)=_%u)>2{twBg@qPr#x9N
zsklt%vx+AwuBf=G;;xE&Dz2%xuHp{0=dUt1RNPe2WL<o@_hu?`OT}%jj`)FdMG5zo
ziYhRn4BZ2MyIHaObp4MCYB?2r-8lN8ic4kdK4Smf)@X8ms^S@q7<F02a}_VBzbam_
z+uS@RN=y2eCWILMTE!bK_?FgWSG~3GsBK(hHEZ-o6`xdmrX!1nF|5XcQ8D!7+lr;i
zUZ_~^)A_Pr={V|LhKh8Zo$9-aA1bnH$fn^Z9s6{KYe=Wzw~7=RQfWx7Axy(x)uYHi
zrG`CE<G)QRGb2qU>P5JQG#Vl_ef;UZ9ukS@m|yQpdJT~pGHS@AA<M_&8Q5)oG(B%2
zdTq8UnK?^(7A8Lnm8K%&f@QO7$f2Q-hQb<hYRIJ_uZDaYa%;##&0yz|kIRuWZIiXX
z^@)C9jn1#30GkSGn0&3&p|g&&%_`AU`o~!4MyDbgifSmWp^S#nw$#NmL}@5aEf=Hd
z3GH8(*KlXj8w?F4I7msxQj8;Z>g%Me29pM}1`C&p)-W(%Y581i4Er1p(>uQ7T+z1X
z7$Unem9cAx)i6fGSPkVgl-JNwLn{pxG*r}3TSFZUl{8e=kf0$^L!5?q4OKM!t?75k
zRS1=(IJ8J!Y%pDHQ0v}VN5%!MlQdM-P*X!K4Tlbxs%dB=nrIfPYpB7^ICrjSsXF>x
zkho=)xg_(t8tQ3itf7g9`sAjep@v2pT$#$vUTmes@ae3B;!`a&8bq3EXr`gLh8EPe
z3pTnj?PR&X3xw;l)32F6N*T{NT2s{;`e^8@;U5icHFVO@SwlMw?KO1J&{4z7Qnrl2
zvbh2kC#EjbRA~1jy@}=}P4#MBG<4O_O@l+j?p?O~Y8=%|i-)GZyM_q`%YG_VzK4dM
z8hUZ3dNWeJ%_AyO(wm{7zlPx&Mras76QN<KhGEp;C*=kgjPCin%peW_a;d?LL#QHa
z^q-M=mNS-C8r>~Li*TfdQJQ`ljMngeNX4~{_2B#N=~LMyfAlyF<25YPu$)?@VWNgv
z8fI&lL<>yAR1MQ;YxIk{`lb}6DH;fAmr)<5YuI|G*bMT?98KAow0a|L6m#v(QgbxS
z)v!RrLJhm3F^`r(w^Z{r(0R3fd^s9{N98Lo(y&;=5)Df=kb)cK=(wXpZ%I2_`uTM!
zt;tY!1s(nxLK;?T5HyGyd>T{@P7RU<uLeZ}x%C=a+NGh`(6VkG2iX`&j|OTCHOXE+
zng%~tehWQOMAP8c5YQ0RFtVI}3~ur1w{p|p{Sl?i@^B0JuQDR6)v%hXpuvC9mIkoy
z41Kv$TE`CSHT(+G7tAIaUJZx+IO4|^It@A}ywvcD#)tj{XxOe{hlbM{&d^*xw(Zn#
zjCzz1yNl+F$sP>{*|b-~J|;sK+4eIb{{u|O{}5Hd{0L*dgmgy@6S*DdP~>)k$w>{T
z45eU%?W~4#8g6O0t>L_e3mR@}ApN3-OB$|exX#(jj92J9+-N83Rn8Kj`1MNZNc;w!
zR2%J7(aJkr3GZ+%4>UZ~a96`U&fcfRkdTh7<WFx=Bz&adiH4_aeau+pvF#bhf5BPu
zdCplXMW!ky+iMMPXnFXt%#XJk-f5Wb#|%H-YxqDL(~p1r_^9C%oi={d&t&<m;R~I3
z%)e^*k4{lPQeCioqXQw6C4%+u8h&v0r-qcQ{NgM*{ML|y72;t`E_EwUJe41*IU8<R
z(=Z8bv844Qoge89J)0kqeq`WmM#jvHnHY!XjHGB;m}h0Yf5VcUNe(}9GRfsf9wy|O
z+m9+gEkq`Lj3CTw==qrB_oILx1^p<**&>XE4WD0$>53Y>7`6XMRf<5VxF7JNgdZjS
z^mZzJSZs`?8Dsn?W0WfEhsog4eiVJC7pG+Q!@|1NurALLX=fg5DCPVpZ}9OsA}jh)
ziL;d%oB9#wM?Ce;kH7t>!(xKrU!6&!A4yEA8hSN9%-jHKLk&M_vR=!u*7l=%XT5oK
z{iydx^rMksZQw^kgWu;_XzWK5LphQ|pO<ESG-ss+V@t+XjI9~Tr$LU$wtlqpV~`*J
zve@2_4t`|K6`4HPw9{<uXn1z=qq84f{OHO`Pd|Dw>Bi__?9SN35BpWU<-IxEkCC!{
z{OD`&6CWb_Gaq0m1O3>YQZF^wk0C5NKSm5?GR}`zPTMfUbGRQPn2%%}#W>oJF-*q#
zaf(+Lg`&4^jc0KJBPkR8n8bWC;}k!pGMVN_Yok=j&X$>e%<^NAA5rHVv;COk$2>pg
z`!RW(X)blVW{&ymO?6M2=&Q2@ek>ktTF7Y6VI@v?f)mznXkP5c5{^JYrY^87_hW@0
z>-<>nM=}K&Vh;Kd@<Z@L<gC-LKN3x1-Xldta&Y<K_Cxl=<Hx>mbIG-4zaL&&>TAsk
zBM~1H)ep^3=w2|=1AfpwN<>!rv5I4^@nba;y5Eh0f7zNyxR#Y6Ywg4-ZQ$%4KQ{WY
ziFulWy1tqD7C*N7vCWSZk+$uA?DS(7^BsPCGNmMOH;reeXiAjr!U~n$%Rc-3*v~-@
z_;JvWL(I1ij{H+Ek)yPWQ%0Yp>GR_lbIKlPa>9?{Evr)Yv>#{uxZ}rN*3bHJ#gD6g
zob%&6D;NB@WR$(=2YoqDr7p8_v4>^wOY=3udXvd@#v6=Hide|`mLIn{+a;r(z30b$
zKc4&X!jA{6zdIE3*pG+I$>EV7q!4++%2PvsMhz=!CjBKVZ|J~h@{0D+Ci81Xvc6;S
zBMl(^74YK&ogpjrdMV|9Vft)D`{GCRO;eM%N#lO#F~9lo-H(X@ObXzKA3y1=2%ts)
zzx?=3M`!?r0{Xx0DHy{82n!%3^V2o;FF8{Mkeahek5k<KZcY<GL;$Y~rc4_^`T!yW
zNXOQ$$@+i#8JK^s9%dO~&d8j^OaWvLAWHyQ4JB6q*$kdNfE>(o8p<<Oe}zGA&gNnK
zD}cNK<YS&cfC5a~&bE*nCAw~;Z~#RDhz=kofTC<QF_N_ylPJdGj9@ImSdy_6W9b0O
zFe%GOWpg!;BK*8L%p8CvfCSd90oVelV))pZZ0e|YKbCp90LmNI3ISAPUWu`?p~nRf
z&-~bN{Vf=O2XOv@{&I)%xl$$?K1l&oHFz~9pDTvf44_s3odW30O6>p|1kf;mIsw!T
z;7R9*Vk^Vy8Kvq6aG!5IZWKUc7TX0tYqde5-r6PsG!1~B*xZaw&5cqmn6wO_6_eJC
zZ5aPyq_S-TD0sFlk@f*}ps5*cu^vlB*^U7m@1v700dx)E-vH{B4C@wvgA4W#pnCv4
z0_err!Kb^CC#9YN44AGrsW<C=82d8zV@&x{|0Z@o0JmGD|5DB}FaW|qjOE+5863b6
zb{iVNxST1+GanYfa3)l61e1}BqXHOh=wq0SWgJJXI`O}EXG{p7=Tp7L$pK6Wz!`uP
zz|;Vy1+X}PB>_wiU<Q|(&p4BD7UQbuu-O63VLms2c}#|l*0&g?v!C=T7O=RGaS`LZ
z77<GWSjK!sfbM_PM`Jl>PoK~^rDV<u0lJdMA~Ij*4s!+I4j>pnC;&MCPXOzG#ApF5
zTH>H0MOT`=0Vve+klDwmGE$aaHRul@KwH?7kv!YI&qcU0fK>skqaXpS4q#@Iev!kP
z08$()N`%r{Y9zO9LjW5C*v`$^#JJ@T4mNG3Nnc>vxJIActpRLfJ?$3@U7j@bpuRSC
z1+beAnGjNiuqS}Mw9bR57R0^)_R~fVqG%8Y0yr4JhXB2Q5QhRd9KhWG?gelpfTOfo
z0=N*sF<NW^oFlif`A!6IGN50|cqV{Tbfl!UpXMwnDI)BYh)_C9M}%?x_Ab7T^kM*4
z1GpBz!szfz0bCB?3hnfB`n9_^k66n_*slk0gG1d4pxn(2H>vSAGLY5ZN{@LvfIDp6
z7h$iO)=t-i->1cM#QH3N=K(wj;9&rC{r{r?9@F-ulXGmo>Jj#*T;$)@;S}L}YCX;i
z?#1f>-URS60N*j|EA}aR%$mxi--hrufHf6j-v{uH^|*riT@vZC=59U|p91(CK!zYP
z2Jt0;uK}bAB6Se|(e4i5H~W950iTreM*u%*Uw6|7>Q?}pTZhj+Y7H#WFHmn&(4HcQ
zu%K>A8N|re;dIwVk<#&P#f0!6(on$G_VhtSutPe=w2WQH#ZIjdOTnpNBr98Xr_G%;
zccvgR2az|3d@N=OB6|=yg2);~wjdnGtvAj_P?2uMB6G4st{`#;G3Q2xJ(Kd}VTG)J
zF?pU=AEHl(^{e0Wv$7?Py+9BJgZL30{ye|EP!NTKD8p{#L!?+x-*NUJVuOeZqBv&}
zgo#NBMsg_0q*M?UP3F=R!O+Vxsq#cW1fqk83Bt_E<rHBSCRRopBl+ZP8*w)=wj5_G
z2T|V8D=?`Tgl%)TN{r-8DUS7c#wtPl%_M;_k&%3of*5Yr_h$7VY6LMWh}l8Z45C&L
zeS^5QA*OZ^b%JOgM28?&rn1zfk>RrSf~e1=0b@(XhK!AZXv~DdHVL9B^Ja|A4ZTGW
zh1%<9PAfxc9mLINrP~D2>St>rWNI5kyCB}p*8B3fZCFS4>}B|O3ZiomU4rOpDBYOQ
zH<J!S=^jK6gZB*LMnrB3)ti*Bddxm-I$AEiUl9F+7!brjIwFRKjSFI0`Gi4i9UH{I
zLHbY1G&qPMOz7cnlpV@^7>yniQbsTt8N?_iqYZsb5apKWMGkz?CwhDkA75A|1Tm50
zzucB$5)(2_4q^)PsfIEwi0RB{FwSIb<I|rwF(-(*LF}hPEQonQ%nw2f!XLzfAQlE8
z1R(~oD2T;DEH~Eq5+=)nSjvR%zo2Dos*;|N(uyFGS^q0c*PTH~L3o2uSaby;GjY?H
zdsEVblIYpL<mRCXN^6_5$VS{3gvvf$yXzbLi#KKWt_TDX3}R~#+kyzu5(;8{5F6NS
zRS;`}Sj&8M5T!Wa))I7GpT5o4v0ki_ZDSCdm~Upx+#r&y&BkI2XDe>7XU=2a9>k6y
z_OL?MolJHIvCB~My|s-WuO9__=}!PPAiI9LQaZ3C<-s5h1@SzH7eO2j;z$tZf;b<<
z(IAcmaVm(@K^!;YoCqQ?SAQ2arISJZElBP87(c@fXBm(3%d)pFNqHfNi$UBE;sNWI
zg18*S73LMgGg5@BJec=_xW?l3AO=;4rF4VIP1=A=ZZqC7tapRRWU`T4mIwN<Q+gQ0
zBaT4)xi{rw=1&-((vi5$MClpz>!g*)%OG9_@tKbCAYKRYCW!Y&*|$vI(N3B3zdlx(
zoaY0rSk^x=-uLGlc_4u*`bvj?5Wj->&HA?>zSB|3JfcRruaopE^M7)d$nG?HQ&WWW
zg%K7)rpdaM(y*{}sY3`4;ja+#hL9$Nh>(7$W@k*xn2|9ZV|vEO5Hc|N77C;1He_N>
zr7|<g5<*rc*%(LU(tq@)l!LQ58FMk_4j~VdODFZu4EaLHA4262;zB6EdO5~|AruOs
za0o?0C>w$)grXr73!zj<f46c}2*pDv5rS02Jm6@|YquF8w2QGw70rZ|qRb`9S+J0`
zH2YJLGE9<J#70w%8DeLoi?)Xl6M~tB;-GoLMvEl`YY163T5KWAK4<bgw^#pW?y|-d
z8v;2~YCAfS8eBev3f#hqjHFZwL3yvAGw~r*386;_Jwy0AgoKd(A-Nev6HJLA)DD5(
znVu9v)et^sHCGFvMhG=Ss7~p$g_LRk*=w<><XYS4a}G)*)(N35#aU#o7t+5j_^W`W
zJ`MFf3n>jk`a#_=ghot=H)hf#gr-a$$z~FphtMK~mfYIbA+%xAiZRRRuzx~m8^ZVj
z=58U-AhZjiQwW_yXdl9WDW(n~{lc)0A<T=hXK#{7c<NKDE+KRcq1rrC=RB3DV6zOd
zRp*)<9E7snL%6=tOoRrc7uT}rZVGye@|fJVz9IArq4x&#*?|5OKZN(I@nJOvhA=3E
z1*@=d75)ujF!g8^8n42T5Qc`(dL`Pd#IO*Chj1~3OCgL1VPpte2>uX8g)lmV<sqyH
zVN3{PL-dgt(?b|X?V%opFfoKfnf1SV8Olcz-oIs=6vC7cj`p_{zG9sm!q4`$?bQ=f
zH%pir0^$3PwizMJ48av{Swgc(mw<+_kjd;2<}jHX!h9z47+3DGlG}oi{sMF&{Wiug
z3SsqL>yN><#UT*pOH*+v2c($GLiA-tJdxxOa(A#fX${lLUuY6S5NWF(kNMfo_Mn~3
z6@ohiPY7NbvG%qOU#%B6#LFR^86J5(Awi*ed=o>-7s8@5rqU(N#8noHrm7eSAsE7e
z5DtbA3SngkTSM3u!YXPNO=t+~L-_E~x+X-g8ZoU6VMq1&xI7h2X<{k6A%u-IYay%+
zGj}Ov*~He(Aw++%{<GO!>XWsa-#q=6jXbxLDTKWt><eLM2)jafe5%_XTCR8PyJ_T0
zS-w@OnrWcDrZ@W1XY0b&3EBUP+fSzuz1%!^LchCKayS&i;Ses+GU#YKLNgM=i4abP
za4dx5wEc@zx{y9`(AWf;wOsH2A5&)m-9+}b@uo;y+}-6t(<Dubwot*{7I!HuEV8h;
z+v2jgF3ti?W+pT7NpN>cad-E{7x><J`Oi7uIdh)#yU%^+&Yf#*l98yX$qA=Yahh5n
z6=&(ZT#58%;jOJ~5o5cbOGWm<wrf=q1|%n}{ANi@1?iqD2}|!9`wX;ROvNQyyX?qr
z$K_O9NyVd7Jf=~aifc4U>soK5;yN9)SY)458R=M+D@IOOp*_y)CXe1*thZV3q~b2a
zJywdj&+vftVJe>S=h-Kzc$$irsdz;Wjo4AP7u1{86P`1-9BLad+Lm=?I61F*$Iq;F
z|B8J>pPN=%-cs+dL*@UQiucSPbmt?(C+f-@+J#A9sB`lsE>KKgX{6C$rbVn-#P?K$
z*|jD8hrU;tmJtR!!tKbwerDE;teIFTcuD(+2s<L}h+-!TYfeF%J6W06cGgz)9CqZi
zqq-e6?8s$DZadQE7%SS5$Bw*ql(i#UA8S54^4n3y4tfc10XquX@o|r_Bo|W1j=~I7
z)TP7PpMWBE6lJHF?iaVCgw9)AMU>**sf5yY9IsoGpr??~ppUg2AFDho9Tav{VE#?C
z&iZPsWXDyD_Dxr1JF4iVRkg!tM>Ho*tX5VttHq8O2HI<%Mf;b}W=AYL)pY;I*=#lK
zsAWfMc4|`#WKC>hM^iiE^q6=%eS?R(oJ?S?Z$~0Sk{*+6M?IZybc|@Ab3;2CF*nwo
z?fJEDkeYEa&!|kzb-x8eOFLTWj?gGm8#~(Ck!6Ur9h-LtX=m{Zb9*~FFm%-8AH^BE
z*wNLF!*(38qnjPw?O1BZGCO+M(bJ9rcFgLTrI#JO?MSgBp+-y}JH}fQ`r6UYj&Ylk
zE>w!US|f65#sY1-*@_R<rfPpX3dCxc1N~~pKsyH6@f#m*t{sCJ#<32uW2ha&^qP#e
z<9D5hGmNm~4~CJtKgy04gKShXZDZIR%Q|mh#CSU<Fi*5&wjFbRqxX7avK>>{oWVMk
zmG+%x$8_dHm9%=!Wd4(NmLB74A3=r8u|xf8oHfWcPxt5Bv4D9Y>muD>Y{y^BOLS-4
zr((<PSYd~qW`P|m?O0{UHa&MW!v;InFvO0tthHmEp1YpmZ##rz+7+7{Ik|~-GwT-C
zt*jI<bwZ}?%>U5H9HC9p9d_(wXO|w6YDcDP+WFEZ*dg1Y*dgk<k{$P#7@ahjds=he
z$=0)4g3AsM<=Ww<v9ZK>TG4JZq<wvM{C78uo)6>aeFM})3_;d?c7zy4nIm>H?6G4n
z1MPdadBlF557=>#`H=4PX%=zRj$?MffeH>Bx8sBzFYI_}$4NU*+3~=RhjyH{<BT2W
z?MSEbdE0j4QP{kEhO=DAIo32*S_UsLwCifUXU9cq{2SIw^e2GLE37wZiD0<KdY$zK
zE7dmT*DSY~=`G&3?YP5ySI@1{KY~iWPZR&Pjo^_TkL`HMxld>wb=JPbu3IF0)Q6bs
zU98XSSlm_Xm*;j^YsWu&WqM`DYg&yR$mqZuJKj>O^1ko%^1m|t%lh7q54!)+j!!y&
zw&RP=mdoKwljDayGL9(}^NrS!6|vv#_+dwwL;H(Bhc-C0zX;*11ZlUme_1m*kb|Af
ztPy%{qytepXJN?7nvFHP0~5{K--VnG<Z>W4n}u2Puu@iDhI|g>XDGm0P|qzy$6d}(
z0d=6L1I5@ct>+eJDB(a!hElpeyIDjToy#(mV=eE%#U<L<uINA|2kJY}z=6sRRB^!U
zfW?8T4m|7|VRRtcflfm+Z7vW+e?iVRv(aX9;B9Z~25V%DUUF>)s{=NMSk`KKZgmH0
zFxO<QrTZ`A3dA`O??4@PvR5?IU#Pmw39NT(*b*H`VoqkQ$4b>c@;I!a1C1PL>OeCG
zI!x96Y&GWGCJu}qY<;-T7}~A<pwQfbmh88nF8IwlVTiR&R&&uo+Iv#kIMCLCaSn`k
zpq&H1IMCaHJ`S{}0v+h#Ku?Eu(PKvkx-fKN?d;IrM?+h`z7dq$mCbGrbY~!^bEc}K
zy&U*BJC=a9tw}ZeI?&I7-#8{kj~u|zpS90uBSrq|z(8v7Vdg=s1n%>iKbT{NI53o9
z7%Ta|J20F+0yyYiX056tS#S5zDmIFFH0v1Fv8<Fu0TZY-9GL0ApAJmo_L<_qR4VOM
z!O0H9rkd$ay=e|ir{=9_nBl;w29aaawAE}yyf%z8*fPy>V73E`^d6Z*{m8G=BAv_T
zJl6TF3mjO;@H1vHGZpx_x?!mU%N*z{pr3%{4y<tCmIJpPSn0qj2UG`w4y<-yjRWf(
zSnt4E2d-zg&_;JyXE<Oc_}hUE4hRm24s3K_lLOlv*iOB+Df-3p@|zvl;y_p>?Rf}W
zX|y-jfWAKZ$AKLV>~bKLmXxItJ2{@fFkE{wfZc(yS0gFuaNxg_+Sjcgc4^-yNDeq1
za68~}z%ihlO!KHyCWZI?Tv038<-pP^@vmGqFPlCG{IoLE{ogkg0XARd#pNH`R}CQt
zb~|v^fpZS*abT|l$7mU+nZ7=Hp92RRILN%;0clG)G7oX`2rDHIJMedUL4u>~d^r|H
zOxp<uPP21Tk32<9SGwNM+%s&_j%g0;yBCwreL--ZI<yIL_SgO=xxnT{)=R9H9k{}9
zmGv4cMP7H{hR!!>fbp+IcO1CuKt%zS1l)7rz5@mU;Q}7eszR%W1MeJo<iKMGUOMo~
zfhP_;b>Nu;&$)f*!3)E#Wt)-~MNRa=fg#tjnXhG=+1Ix8hjsrC>uZjALp$cxx|p^x
zS0n#*;JpK1sk0pTKvR!nK0ENqf$zQJvyP3V5;~lWIc>0g;VjzAeM;-rZ!|Upt(-AG
ztlu5@!MXpGub1J3mU}}go<TrH0mTFq7m!InW&s5S6cP|2AW}e-fGmRcXQF$p2y5Ml
zf~k?Tyd)Qm%qk$8fTvHb**Q1AfU$34atO%DK%7fJZUK2XS!10wukPm)F#KO51r!ia
z%5FUR%0yaN&|WqEAYdpWpji*?Z&Oh&cBs`xFA6Ckprn9u0?M;lN<diw;~N`1!_B1y
z3@l|XBVb)`i|0@6FKquhX8Ph90xAgnRd!mK_JuZUWdT(L?GtWW0aXPU1tbbc5)duG
zBw${pEOiC#ja_B|aRPE>uvi4duw!Ml3Gg2?QvhwT0;&n1>piM-7CAKp)MT!uJGB|;
ztzq$8S{+s@R+7zBPJ)2DZ!}02P)|ThS{w$LD(x`W7tlb^UMSYLzqLe;n1+J(O0q`m
zklC1_32Rf<W&)b)xh)tfw6wP3(ps}pv26rgI%g(mC*T(W?Wyl>+o&D73FyELLfny|
zlYq_)U0A!aZf#YL0%+^b$sPiFGW234zqf!sI^SqjE=53p0b2xY6)-@+uL8zVe^E~f
z7$jg64U#R!-vlU$F>AV5hH{?{W*s6Rd4}Qq=dfY)6%dUR0Te*n9}FV|yviR<$&tFh
z-DeujJB|_1Hd6b3X{-SEN6V6rrU?S*f3OAAAcA&R;6wqF7$&n$VV%lKxziY?(-bIN
zbB2JK0{#>*i_N*Lv-QY14BsYL=jqOT0d3BhsE|c89t5luaJi`MF9AygETi`4>Ma$J
z{@rHWs*TSA2emt=R<KV`o8Ma`uF#+a`c8P2fYkzeoQa`rjexZ}uVYv*;BVd8AYdc&
zCf(Ug{dm3~?YK?Ab^!+k91_qqJccUvkANKlb_&=f;DCUo+0Cf}>;eJ;Q~?eF0(FD{
z7iFcI;vQN=0g`~&x-m}HCdFfjWdR>Am<ZegJOb#&Req{J@AB9b?_;Rkuk*jxj6*k>
z7VM3u*IESy?M+pC1nd<MqL!Ip-c74YLo>ZPigNeSbS@dS&1<}KI+9A;&jA<nn&}H1
zdRXpZ0Y?N}q(Lj-sDNVvE(kEY&Bq0t5RfLI;zHv|)-$Z91e|8bFxgC5pV!5o6>yGD
z+!s$t(<dXrc@9WtC9}~xQ`Qd2_Ho9`0<O?HMw70m`KmVLjMr%05b$AU0=*AzYOd%T
z0&WSoO+!L7-V{L2nIk5;AEafjXxi@3GBVM4m*#J-=z9Y0Gdy4==b?Z{%#U^F35}3*
zDU|h0z;gjF1iYmFY99NV)DZQG+G?APUTAC0WF>e*Yj5p1>0AowzXIM1XeFVwgb&mm
z0v3r_EaDRlt#!sKBC3k`EZ_?*7XtnhkXJ-L5#I!S7m!s%HW5Drgo%g{5h=nTB3wjf
z+QO=4F;vYU(nGYWWD=2)fw)zjuz8EZ2xu#|I4p{N69tPHS~vRexs=QsGf*<Sh#Vqv
zi#YY8iaS0!r-)Jm>u#+RmP-UBsc=%t%EJN87lpNcV976{xQG%WYK%4(5b^%7v7m^J
z^UZ}s6c#Z*F0qJ6PsT78Wi7_K|DBPXlA`w1HHcVJ%tp^uC?%paJ7kt&D9c(-M0wpe
zWVTUm1rZf>rxHVD);B_gQAD(eu_DHaFo`gWXepwV2#bgq5w%6ciLi>Wi6~Pvu7(JD
z|9Gs3>YOC5#*P|ermgB5%YSbyHQA}fx~+0tyofp?>WgR~qOOPp5y>Lr?dC)gj`zkS
zYKOX3`X%Cw(@3Qe*AsDnm64M4=JbXl8i{BsqM3-sw6Dkfu0y#dBG!K~-L7M$|Ig{o
z>9mcGh@pL(Q_UNjTZlMt(6l(r+*(8%5xqt95z$seI}u$)bQAH52$yW>C_-*%ZqH1~
z4h*zcClQ@Re4T9UB4YRfGsO`1TW#!4ZGO|-Lqtyz55}8`dx@y!G+u9FDYRBg67&_(
zPsBhGgG7*-BBE@Vc>r^NYK<>O`Mrs@Uq#Rx;R(_rVtx}bgocv{;=!zRQo}_2E@HHZ
zF;oXp`y|qIi)rU#^9XLzKUhbyj$)-2pwmD8DS?!VrQq?R_DNwbjq^E{3Ct5kOk$WU
zViv;`5mQA>W2WGl4AVu-(47xcBK~ClI7R!cLECH*bM)M9H#5v*p3k~~bs;M~YKemX
zq81b3q;?juRKzk7+eB=q3jbkT&bmg#3K8}08dh?W{8bFAsfJm!FZb4pSjWzK)-9}m
zi`c-hk(I(WiP+41ZIAY`WvlM52shBDkAG-vrx_irJ4Eahv5PrXgq>mN)`)&bOe42O
zP#A3jo1zGb;is?A@DTBZ1_n)P5grkzMVz4niSUWoD`KCB>~#!&5kV0lS`8#)K!nOQ
zp{J@|$Qg4X-msf?sc(Ll)!gB+b&m+r<ad$#X}D6Oi8w6c+K4PKXKJT#kax^@+%Rsc
z;fRQltIWqm9A)zuO&`fh+l2*2@=u63DdOM<(<#<m7mUPbMVzBCCK|8Nh!SyL#LOL$
z8FEFYi?|@-qKHeh`n9yIEofbwZmwBA@iHZ!X1mJeU!j2)ZK3jCgvC7CuYIq0UBnF$
zH)&vRH@p+^uZUYBZi~3X@$^Ukt%$oK?$NYmhjw{FbA<V!?mQClSm!~}hNmK)(Xz(Q
zE8Tw~;-$_zDj8nu{D$HEo3Pm}&Gfd2_u8o;bHm6_G`a@I{c^_kk)hjZQ=RPzpDDMr
znYQ(>jsMZ&FQT%9DiXfa;x8hPguD{MBp4(_Nys9BF5(TBkcmJ-1_>G2xppq)JuUAg
z%(O+Y6UnOHw2+gls5z^IZ0zJ@%`PE_gaKKzwV;cWYbH()tEq)aGz^gMyjBQpWag8Q
zUqUGfr6m-QP*6fq3B@E7;z9~bD8k@*Q)7HF^Qt#BXs^@7&BY~@V80}5mBI<fYgj33
zXswt54U@{SSx!QEhO$3(a2zC5kmzz~RFaVErB-d)+7-0q9veq*yC8OcG*^{ilu%DX
zeF@PLOcH8Kh?8KJV3ANwLUjo-608zz5@ID(KKs9Nnvb!Jhh_K;%Nkf_woIrYp{9gd
z68$7+K7Y)dw~-dsX>i=^x90XWt??4-NJx~BB%v->k8%^}WKWt1Xxn&`#+%j=RLK3u
z#vEx{%Qs-Bv4kcP8ZuK>BZi7;DNQAMH6B`Ul7gx6Nt?4yep92R?o)-^NN6kJZy6h8
zw3G0QghNgocA~w64iauixGABdgiaFvlrT#|X9-;-45V|B(3N;obax3o7`m~h9xC6H
zp%*I!1PxKWnfvHYUkUw~Q&{`!{s0NTGW(8cAA5h3Fj&GE31cM;kuX%kNC~4PYzU8X
zTqr+`Ba5Ah`JG|7gb{i<e^95?)=C(yJE;}34mDXRn9Ok!CP<jbS>tI~rfXNx(01fe
z`AK^GWC>H4r|Ql$3Db3+Az>!-&kJB?OPC{JhlHIH=1Q2yS<5BNm#{#>B7Lvb6}0AB
z$jR5?iHjNj(sP$EES0c~ftrzmS4ddN$yE|I(lmUgT^O^P2IQp3H4@fx);d=5*Hb^z
ze2KJf(4F=VwCi&=adI>3771JR+-(xJGykJIbJ8MrNl2wJAmOkCy99@XfCN>7K&wH)
zNDoKS%SlBBNrIC>W>r{StZr61`uiN(WlLU8`dIzcTxtKisw5~u%%ELhQ@u>L5a;fe
zut(o_uY`Tf`&kd@{z00L^=i>xv>lOfRKhU{pSEZxOWSb?CncQX;1d$)4XX3T*e)%%
zo|bTqP2w{W&PpKo8e=6*lW?B1(pj&tUXXC{XFTg=Rw|!{)>R4DIQemU<aLI`v=qv^
zCE>P&;ZBTj;*Ny75(+y}#EE+}b0s{L@Jzx32@fSalJJ-UYH8nzRmhp8Xu-&l!|;81
z_!FvdQ9R+xw4O_NK?|u9*`0V%2QMXjqlH?+wrJ}s39lu*k?{6sHCW%V{>%EF^#dy%
zV)?PCPZB;$_@X;h^RLYR>CW=>hyxe3Z{&W^7`|f-bHd=%Mr=511ZxH-GBRXh&CE(M
zbgfsU&QVTeVa}>MMJJTX!JN~HTnsIuJLPu5oxw`iN73$i*v!kCkCn{)3<aF1n37b`
zi9!r?SrjFUI#JAt22M0|qPP<!oG>~O&GDO;hnIAs6mx0Tb$#Q@I8m0loD-FtsO&^}
zPSR1}L<Q!Gy7S9H?K{jWoUH1^s&sAA(MDimv(zrsacUQ9nVqmW5yPg{i5d(x)>zhR
ztkqem1iF~2rp~pTsLdRwJMjeJJ$@dmt`iCDC+fLLP9*DG&x!gv(-mBeoM`MsYbV{1
zjwaL^MQkmdXyruQIa5;(YsT7~wFT?Toki(D)i2w8ORYH$+a~X@wRM7Cbl%O0c24}l
zG3}k`%Fuz8;yXIgiMjJnNB2i(%>J&x|7LV|Cwe&1(}`YA^yYxySo^RJVD0NfKZX=m
zD!IQC%ObRqK-;fu4s>FWo?Cxx<Y49@x--;?Va&hl&gL<;Kb#op#4aaNofzfBXeTx~
zvDt|+PK<S8trP2<80Ul(9yQI0>Ad53CnhjVWSzu1nRN>5R931LT}w&N)tte}rB2Lr
z;!oyTtP7o(?Zg}>=IZfudE`9i`MR^fi9c5S?;IC7v6%h8SeNKA8*SQZxy*^>y0gNG
zmCUPHSL^;7YT-88Q?J)M@wXFo`)X6Qb6Uy)Mf-EMfx|XZD;3rJElzB8Vh5YQE-JCj
zi2_BlHa%EwJ3IgAWqwS-PA6`j(YkW>T5UnIJK=T0=Y&I#5u6a6NUUv@*m1JTtO~1(
z)y+yJcxbLI)P6PavlDPaW%&7b@GvjhK_^0N?q=P?O1tc3*yqH4h6B2PkYJp4nn#>C
zN>f`#IT^>CIPSy)CmuR+!ikf#0z2VJGoEtdv=djHxa!0iIvx5Ell|Ta*0W9=NVc7$
z|8@$+5>W7YC(=3h0_#N@%sWivU*hCteaCA~OgmvD|E3eyX`ClmY4;mkS|!+S(V_Fk
zd|PX|P0lo9k!eQKyYyFpcc-t9?o*YFF}YqDA35>ZiOe!Rv=C36c<RJ^Cq6jw%!%hT
zg;$zi(aP_{ODC#LGv0X~Mtdz7nB}Lw=72X&ymjIoGsXW)JzmR9KwHE|<3}ex(K0UM
z#`v($PJE#SbF}fh6JMR6T#EURM(k!A!8g5x*y@>na9EhE1+OfVg(AacWRQ`O>dAXu
zT9rhQiIa56bfk<Z8HHsOk+tT{A|tzu95U9dGiH^Mje&S_#e#HuV@?@)W$n&K+Hx`E
zmbI_c^2q4$NW1?rpN#x63g|Hf89x1EDI{Zb0~-a5zGduw#avWIDH-(rTQTx)8H>y4
zyVXjUN|und3noj-cy`N3K;2hb)_S>&tPO^z8;#{<K*kKNY6Te;WptL&MMfnVm1S6E
z*ksV*s>m?Ph?Y^6BdNRdHLy`VO)|_feLbPo`D1C@>)pl}8Iw+Hy?pkJWnC|Gtc+?h
z2JN(VkWro6u&#^*88u|olu=8j_xnUeJT}&mQJW50GWN^o*f<&SG6-nPb14Jm(z#6g
z*OVxOw55zB8Obv0QOVPc>HDmW$SD|GpK}|~As8s~M54K|j3%7SFv{3eMj*jD{)4fZ
z4ASPTEoA(&$wbL*xuaXjXf1=F4b|k8u`M$t+sXKaxjiezlSyyr?nr&K$=HdSrFH_n
z1iY(E&w;_1Y%#-RbeGXX#y~o889lkDdduj;(2KR>VoP5-_m4)}`pf7iBZc<5Vx}Yw
zGtvPve&qn_GD;rFTa5bpHyQMD`EOa{sG$bS7($)9+eq6`8HxL?1iw>9$QU8x4;iU9
zj0=|=N6H|jaX5it6dj$1#2D@}${Nf5IBE?Ba%`Sr6J>f`g0)tm*hvhNWlUk1%1T+&
zWK3s1Z;7YmOc{U5m?dMjj8!sL%a}vM;JI<JjK5^eWv1jj8S|MJ(6Ja6vC{7~^mtVY
zh{$UxeaW~)#!?#R)L)s+%Vq8L(6n`!XI`Q6O3os4jf}VF%<EYR*2-ANTsAeFlJsMc
zTQY5wu}Q{f8c{Mf%h)30po~K@wo-4(5M@X*w#(X&T)U{zczFLqpZ>~OcF5>BEo`TZ
z<Abb4hG|!x*kyW#E$B(P4i59IHg0cYpk$=e?35wXoFbpI6d6Y*SY0v>XR*?EIBx2o
z@@C<j@xPM=tl5)&GIq<@Bg0Q8LgUk8RAmHZR0x@WOf}L^V+0|p*a{<EGD<%}?Uhk5
z+Ol8Pe(>5yGi9cwzz5R-87sb-zAZOSZ)!eFhm&zZ#zh%NY4N8z%Qzv!o<sYB=yNcJ
z-k^O_#wo7bc^UVzM4y&%PDUC#XJnkEiJUvy^4XYWkL{(^Qf8%*p2xoILkx|gbQw1z
zw6|kll5v@uSH?RTS7cn3abLy*8P}*uZ^x{hZ@kNJofcTyg(lGg+bwotyIOB^lAJp-
z8oiGpxF=)5Q*)t(w&A6$4`n=(@tD@4E9TvYjN7LgGcL$Bf0yA2byFWRRqQFPU^2?T
zN_futf|ZglWxQg3tvhdMHCUTOS^x5>(XXYSWW1O0K}P+L=8rPkKGJU7%lO><u%D&=
z31hRv#;-E|qqR<fO~E%A-(}=hkVnA}8DR<{6+|g8C<s@OS<!y9&7dHoqOI)%dTE#6
z(5*L_6uOhe6384~vA3B5A~+1&%vls<Rghgl4n<r4L!Y$Yv$84pw8#47a0Z&oITdXY
zbEcZ;Mw?s;c8s&EzirH`AfJNL3d$(Rub_Z}h^!fC_kxP{NAS}n?bqHy%!OHtuu@i0
z1;v<)vzA~jsppnb;55ciSXl+-6jb6<D6b$>so0B0!z(C&qWzhm_2<evQ$+<U2U~LQ
zwUSomNIGa0hN=pTx)aS{Vl}f`6vXJcaTyJ<bb<=HDd?`Cx`G-CS}SOypm@gUnhF{y
zXsDo;g4z@oijPweui#)eOFkh!V^mTd1uwkuby*1#7!p~NSd&@nvDR0hzA;i*wKP*B
z1(he5nowz%jExmYV~q6h&!!5RDQHgByJj5q*w{)z3ua2T{Aunt#=JF_PcyewaQ9vq
zeVN}$K|2M%C@|%*v{%rjlsR>mX?-?J2L&A!5YYDcp|P`qme)-)?wYzNAnmH)L1Ha}
z9twIYNKw#VK`#aMbJ)sNHTPrat)LGBnSB-b1T+0uM!%6YE252%0aVUX<FC|cw~bXL
z)0cCmfixs08XNbs3|25i!3rN%`Y=?%Fls$7YJ2g!g5e4tDR``4gn~b)H53FDj8rg6
z!FC1zC>X6^jDm#<7SZ@rFiyct1%E0?3z)_$m`b&M5Hmr+M21NUCM%f2OqWK}R$*Oi
z;n6Yo8k?snm`*jMF5A<OHrk6ef>|`crkm&UF0&QPQ7~6Q-K^2H&7<SaGyY_XT);83
z7yVINtl%%29SYX6xrBA4f~5+UF)yd{W!N(Le<l1p;wlBJ*)RLT_|sXZ;BN&RsB3ta
z?&&5v;zk9VIBYA8+aE<Ja<hUh)c%LGy=FZy{oHpO$8=s7OUWGyL>e{<cCxvPHC2I~
zfiBf{C=jUK=4d5Q%g|m<1+oG+2PmwR75~yqxh~Ek_OS1z?pEMurbZ6XD1B+B5-5^(
z2`So@qPrFBQSkdy?ZMZ373@=RQ^73-`>9RF7*A1O?=t22BmMwQ76peC9HzZ!$@(My
zgo2~A;IuIlZ;XmP#!SiM48n8GKgp44E8|ZqIHTaKf^!PeY3_eA(U!(=o;6{Y=H&HS
zNiVQ-QNbmK%dF&IQE-*{8tZl4zd<ES+U}K(7-^B;5D|S_!5x}ebnZK>_Y~Zx6F1c&
z&R)&-fKB3u48zh=o+x-q!`O|HZah=)T)|}*uDI|*!Am-Q7e=`7O2KOdaW2HW@J3&A
zYPs-M!8-;2DtJ$4>Ox)@KG0xZV*aM!JBNK_{iNVC!xz@CtpBmn96XiL@IyhE3t3&-
zQcqjH*#?6P;hfCiLWJ&TWXR+~X5HDdPWwSBl9N#`WYPVDk%nwKXLlh7b57P=x}Te2
zeTq4s3;CI&T`1r}K^KOVj;ZKEAs6h$3?(?LFzd`{LlGB>G8bc|qZfB!aasyN4QIiU
zE|hYiv<qc8w>)cEJ+hn&B1b}ZDlptAn^Z}6D!Wic=c+Ckb<WmV`v=41g4qR&3o-0h
z({rsZ*qCE=r^(B(>dZA*YwA9=Ol@X$xb_Zo+UmHF;KG92+8^t>)Pn`I>p2r$NOB?B
zg?cV@a-p*e^<8M-LPr;U&NVfpA#o?H4VTl%g~l#4(aUe)LQ|caxzJqaP7lLc>fFkO
z);d2MU8pT{JJw%V+p~6HrOI5(Z4eI{kAz~nxX_i&p)Pb|_>Hx@3q4%u=|V3T2C&nc
zwI3^$(8q<oI`2$1q%il_ot(1_zcLSG9i;nbZ-)(L9>PkuT~krRn19z}y5!fcnfb$o
z6)voFVI(zXrQ}gAjHXHSEo_VnOF43^3*%fE&pg$IX$%usC$dgroy<Cg75fd-U6{eV
z(1n>U{K-7mg;@-Lr)%|@%{+&dl3oAO%y}-%XJ>)#cj}U55%Xf!zgU;(x#nkK%Us%>
zdbICy7w+<z60f2W>w@IMY8TeHu-1ijF6`pH;vN|@thB7BvsU8&c3}gX8(FupZgOEW
z!xq-9tW>7+eb{!L|6$nS!cN_ZOEK&jU{2+v-35p43k=_rBb_eD%oklyTyVK?&_%zi
z8cMV?yV>`+K>UWTxO2hhf}hRZF6?n3z^t+cSwpN;EANs*dvz|5!?2HeKkEVAU-_cI
zAs4<+vK@BehzmzuIL29LT{y1CoMt%T!byfxy5Hlzb_M$x7nT+1L~u^`(-_XXkghuy
zsF4e6AA)GR#OATIl&daWqjk@X2sf^~aD)Au7c$*+;g$;qH%`2bxy|Om(-BWyxI;5y
zhv}{h_t?D8`iS)bO<{&kFSIH>W`4p-$x*uv&s=y;>pwg1b^j&9D;Hkt&KrieF1*v7
ze~CYI|5@`7E_`(1lMA0Y_Z#aM)~|Z}e+)NbwA)6$yYPdPVebF^6-X;?2<P+4;6_G<
z8dYqW+z6gD_I#Q^8tF!q8`bpqEN--VXPz_0oYjqNZp=Dt&hADIH*&gB^R|ip`CPTo
zn9GekZsc`i;AdlQHxiCnk{Vj`xsl(E%5GHQq6)ZC)Qw`y1>GpbP?)s{E7f+}3PW+`
zvbs~kjgoGZa-%dmWpv+{q|L`!H4Ww5D9<L`sK`)3k6BdEP)X++84Xo+K0U%<bR*gg
zlkUX0>0&djeJr}u)|So6Y}1`s`cvLmTg+*z?nVtdeK%^kQQM6UZgg}b&W(6C)>Jk(
zccTvPRnLw340Tx(+(=|dVx@AD8OAp%)PSKWYePM^ksFPfo9NCFd$wjeKdGU$Knpio
zQU|fwnzaq<k@8vEGPGm;g_YvlyD=<E`_R|Pjm~cLa??Yo;QDBLRasl3x^P%m)^2We
zXXwG&la*pV4bId@=U*B6vi4(5VeQX4fb~Fm!$3C%x$&DDgWY(!*gzYVGlX-0cVj5S
zFjn%rxwVgn!`&F6JCzR`M!7NCjjkSa^I(h{W8G-sK}!$DxiOx@Zo4tTjfrj?<>Vwc
zCcCl8jkiT=)@o2_iW`5@&~;-f=T38Dx*Ic?|21iqnaNBLUn_hz^CH^iZP*;<xvcZ_
znE7rjU|y&@d$$%`?8aZ5T*A86jiqiZV_wd>igkq>D;elmf8H{zW?rK^Nn;DGV_vU2
zf4i~4jg6dK`7*4|F0Hnk-Pq#BRyRHAT^qC$*CcFr;~$#BZiLv`;fCyn;>J!lcDa$t
zrpQY1b_RzVg6>>+W|5eky3@g=-6-vH!>2oL1`nz3T->fz#_vXe9aZ-Se+k>I^8q*Z
zFz;pE$GTt7ZL>%#;h-Cb*g4F4M9*DU#Bj`w<D5L<#wj|Z*oc#KxXmWoUTxE6;%PU|
zxN+8vb8e(@<TcjwZd_tWr|B8Wbb<LIEA3T>k9*mTE9_j={aF4d?YbK`bmyiUw{(7R
z&2Yz!yKdZb<GvfYJjm_A12-Ph0#z;C;K3t3@)g5lH=Zy&Wqro_ob?4O)#Rlcj~i*L
z%4;{?u=$qtqZ{w^n19`Puk#05<?3nwNq%zUGn-#nzq5X2{m+eW3=}qIfaQnIVIFO?
zwAy9}_aFmvM%FAIWMat7N-+^0L^4O|PGlpkr?PsGO?R?;kVEI39weHwQ$QXM@_KOM
zt0~EYd>-WY(6e!1^PqqS1wE+3@r67n>;agIcu>@XGI}}17)r7h_n?ICw~sTFVlJ&a
z19N99%Uq7NyzUPuVyM8}wy2?^2bGvB>$xq98mf9=^dMSyObqHY?d;4RSU4G@=f1lb
z8S6nc54yfLWvi@pQ+3XYW3AyqO@>;mwOJ{q>s3QMa~;;YtO<H<B7<u}Lb3<-JgDzM
z0}nP8F@ITOZpc~9SR3i_jXh|>+*Eh$`3%i<4xemj#oXG1HXgWMYX5t*_2B;JuwOiA
z&sps}7&+J2u7rUumh0d__l*giJ?QAsuA}S3dOdse+9Sp;9#nl}%J{;vZn(L-2R%G+
zdLVny(}P|fZ1><F4|;QfeLd*sK_BL_ceNv?c+j7d>pU3X!LJ@n@u0@Xuz?;7Vt=>?
zzcEBqF@L&e9?U$1btvmF*56sFz!K&{BRu$nYR=9m4@MK0(7I`i9y7s%vCQLG$Ls$6
zXJHeWC$Ub}{o;!ZQ$6%$HKuzo!-GX0Eat449?WI<Q;(d*Fx!JUx^t<PcIbH?%x7l-
z>q0%ZyhFS3@GnlT^k9hxOFdYo=f-9+EN5P!J2!hrtYTixx`uVFo_i<4u%7vE4>owP
zQTHzwwr*nH%({hjE9*8^s>8s|S$24^lamtbF4k1mqyK3C6WTp+a8h6;M`XAXTa)-v
zT8csg$%E`(<nY4%GxDYRx(6O&4}2c@Jvi?{*-qvF=N|On5QFMLkb%kxd9d4qJs#|3
zXFuycJ-191!vUS0r45IfPkC^f;fM!E8IG|YXQeVvcyQ8#FE<S%i)&Rq!~Quv_pAr2
z#%tX~TN;~{dmGX{X!JFKoC_XYWb+d1W!5XKS6M0M8pGapu{S)p>A@`zZhH{r#V@zR
z?r_$PyXH3@-1XodO)*;h*?i@}Lt6ZqpRwBcj>5+tJmKV1Rw}>nB*Sx^UwH6R=Pu*4
zYQN^>-nU_IJ@mQ+ZLR*-ga17E#{Axc4<3B<;FG@B7Y{z`ygt$JRp-)04d0nFd9^}l
z`{6;D7X~lF*~zH;8N9fX?SFUE(>16Rnc0g7&W+S#9^44a;zd?3vUy>hYNT!dA=~B=
zW`dl0Ol2=}dFhqt+Trqek=KiSUd%1XAK~N8`MoIMML{pF9y0zBZ!YA;t}BKT`o4v|
zD57&wFN!f2*PZLl3?;oN#mUlMfT0X)Sv{tl7v-5dtTI#iREG*)RMc}Tc`=4RkyY`c
zsuxBt(hD0lE;3rYi1xzdh1rX^mX;BF&D95)chpTHh@ms}BKC~weqNi6%Zb%XtHw~B
zwT2fpbzd=MkMknli!wfx^`VXzb-g&^#ZfO3yh!xI;YE*S<|Ho;H?TJIqB%pd7xlcT
z&)mR^MqV^#ZpeD8P)!ORoUdLJFPeHmKuJ40Exc&y#R4y0OtZD}qO}*}nA>>K){8D)
zboFY#3zuD8h637g)-SB>z39Nuk(F{gF?9Cg;-0LO?8eDaSByiv=uUO!WKS>p>+!w3
z=&f@fFZ$}-&x;i1nEYlcX8`lBdhS3k26^$DeiRBA?8VRO4ds|&RBXnkwEgbIa4$x9
z@drDjb$_H6qjWyq*F1)KEbHUtiL~Q*FD7^~kxQG&I!QnJWG|*LPi38^`_sLc!Tj^w
zsaAh-a+Vjf8RoFgWu3=5pOqr1@(aCK<i%okmUyw0;V;(bTaBIW8kc#o!HbPvEcb$v
zD_B>uQgW3StG!sm$+cdr(|sy@J@enXGitD96BoOkl>#<1Y+>EXx{Xyn5JS2DFz;a9
z$-2vnR0cci&-x2qh+aru9J&?b^TO|?7ylWZUdUc3UKAQ`b9uGbo4UR9Hc9i_p*9bV
zb{eJojG2qsb{vkmdo(6M#qKig_F@l%${M72FES`5Pc{qbUYhSmO#3;Dg7<mhDVufT
ziFo1zUL4f@Lkx#m>8q+^UL5!0trzdSIN`-fFRpuW!;4e27R4u|d2!y0(_WmR`lQ%K
zX4W2ych-w@wD|aqQy*%{bT2N@n7L!ULZgnBuXJ0-r!kkkxa373+WJS|czS@|=u6hv
zu%xSA?R^2X%QY`-C$wj^-Spy?7mvJn?8R*_?s#$Ue9Qwc?$Sb+7L)(7@tzlB`&$<8
zHs;u7zE5Ldw{iCc(?brUfDO&8PrP{Q#Y>uxyNw0Unx1*_+^anVtdzq<$roNEO*hs(
zA49wEDQA7<#cOKAa@Lfn?r&)2Nw5(t*kt_Ii%1`$e7JPU_}+^TRQXHBkF1|qKYQ`T
zi?7UK9QGgcH`ed0KUjU|<7r<5$Aq(PZg0-uLq;DmaWb<H@?i_b&=%oCpqiN=iw{|S
zDC9$7AE;Hc`LwrD7i7)uLk@<VtmNln$jzFEHLnl(^xXUm1$;P_Zlqvp<Q3a3MSLjg
zLuoF&m{04w;y#pMD0#_R(ubH7TPYvCfzjGvdTfn!dTFM0Ysp$vljRXL%lS~=hlxJW
z^910d*B9a!AKLp+(T8B`#MH(a6Md-ULuDVT_)yh{I3MDDF!~Tp#nN$0C7OKNbD1p6
zW@a*-k2;Y_VD;f(ffxcC2gI^gW3A3wgSDm)wHPR}w!TXpb`n_Y>bXBlqnIQgl6|P>
z!|d~>NWs+3hx*J7SR4A#h@mlSD<7ILG-ah-nlUu@p@k3EFD12P9Z@@$xV0YBhM_HI
z(JouB8P_+<STiiT1O4ji!!RE@(l4;N<2(7#*@rGZboHUP4}E;-#(obU#%42j_i2}K
zRIO8hl!ANu(2H|x4m3ZPjeULS=fkf)3}iFKhyFf1-)#Q7P7K}eOz{IaNw+W$@?rl)
z%U~b=&8+#qaXkH{CLZELdP^(8?>_C9!LdH=Ux>Tk%)@;k9pS?t48$XS7{xrAbqs6O
zh$@s7m(M)Thw;>dk<qkGV7Re5VUiD%eVD={<S!qVFiiDfnh(=`n88UJJac`R$^0kl
zEY{h2?i>c3F;e6_=J`G>U|7hyh?Q~|Gdy~&J>X&~^QbBsFY{qJCl?pYLdjJ=toGse
z0EP#!#)q{uV*T_GPOS4`J<T;gy$>3H`>?@>Yt(%{Z1iE14<R3R`>@%EEk20UFFtJb
zVVe)Td`R_SyAS{P=<ZkSq)AaMdRs)XpX!JxMojPAA+`J9@IfGrDE8C;|1nM<%4DkL
zqI&v}`Fx7(gF?K#+w_IKhji)|JZ|*Rn&5*<lk2$A%j#qGvkv~N_tr(dgFak&*RM|Z
z>ZQ)7BxUZq$A`T%-+egk!#)}VJ{<Pphz|#7szww$=%a^SYq00<Xl&^^b87c0vl6JP
zM}0WPXEA<I>~Sri<_RB8(h~GvpUIhPQF2M9ZqGB<qL(_I@!>4>wGS6L{v3@ZI*TRU
z(tJ42PQj_&-ye#({=PSzX|3}qmwdQPHT0p~p{^80CqkwpTdk`;d@fb4TFqKds#tH(
z;*+({2OmEAaMOodKHT=<jt?(=ctt~w7BL?l`0&t&`&7^3<)_~%UG7{ts?~tE{YW4A
z@YshZT<vnLdcJPnolH8`Qy-pD)&(u{Ip@Cc;cZMGO1}2t4J~mrJJ^5gLqbHcUn7b&
zIG;kfldPpl-}`X<RBwVd=TkmWZGHIRLzo|5eE8}^n-hKiqrE&ONBO&!`BaMZn-AY<
zzWBS6S*Jp83NZK)?ne$ka{56Xn!%3<KO+6e=!YY!SSCNZpHIo`$GoUwl-n$-n7UZ&
z_b5NIaJ+P}cUHgF^<-vaCp)Xm@n>$8%jHLIE-DZEdHr~KTx)jP^0AZOj{*z@S*e`1
zYq}Njqo^OH{jhy1P0dc_Pg>u#m|yFH;;bcDOZriYfqW{k4A-QrALabG|F(B|Kl(o`
z2S1M0Nud&o?C)B^4^raFepI0y1IQOZRX>b=xc%_>5$%V`kHJ(EKg@nu{Al1uLqB5t
zu=<hUM<O*yXN%2`I)2n;j%BUJTHTNF^Nlr_YqHj2t<4(88t=#MS(cyAfa=x5@OrY%
zX33i5$Ix<yWIyWpaj{JJruQ-R{W!PW98p&LtdxA*RAz&vkspoejQkkjM-#uc9(MGj
z6GKx!nlX^s+>aK1wDhADJMDD8wI6Mm+v<+Jq~RCl_N*OP*H+f9i0kY}7a9_uj46I}
z^<(%9BW>ON^t>8lH$Ui^jX#|poYj-H7i(|UK7RCNps;=n^Ea82WfK+ns~?v;TYmE+
z|7YzJ=s-UP(J7}`%k@g``ojGDy!NScs2{`pSmVc9KYpj({g~*-B)@j0%?KK<12X;L
zhn*i$^|4H+k$xJ_=-Np8d^g&UF?<$dS;w)CXPv-GF^1!jll_?D$0};QLYb!eG0ji!
zea4mA+UMNqek`XUn#(rBkC}e_$$QQ7V?M(y*4eCcSm&}X-=e)UVu2rjadIK+BG$#M
zluOV5S)%h&hGnc{Hx#17rL-}xq?6qeU+PW_>1sa?ys#?sjayzNtn*{NACezVTL1mn
zK(omY!H<o8Y@&AXWA9t@NWW<_osMdL7;o94A7!f_+nBfe@sA%nn0K-6)MK)`!&7yR
zc^5`S_041{-`Sjbn?Yp1$}G#LD;Aj!-NvH$;qoKY#wIk6IQk;-TzyNAQvAJ&A3i_+
z^W&Qzem??!ob=<AA1cj9Klb^tpZ20*PlIZ{aW9XnJ=6uGjmI)Y5A7H0dK5=R5g+j5
zpdUy4IO@kCI@Y7O!+z~yq>u7O|7c|<*ikEX^AYngKTdGnj{EUqhMAnhU9C@_n_a_f
zr~NoX-RH+EKhAQ@eLo)1RMO8e&5!ebq;v9uA6FSJvR-1n%zA}&C;yao&5!Gxyy3@f
zhMTOnSgB|Cb<!H)jvsf~xyL%MgZ69Mt{w#*a`KrUkNjx2-%Q(MKb|l@rBQv%Oy5qB
z`J8%lgZWEz%nO>Q0}=^d`|-w)<`*nqxrDd0sx!Q!MQoZj+W+<AJv$#*KeB#e{me=+
zYd#einIYM;+ZO&!`#$!&A3yxa6hP(x!U8Y^5Z*a5V}Kq<X$%iwduKxia#}@JtyF7%
zbHlQOWjYSgesrTPB7m%c|9xu|89-D3SpxJNPRp@W<KPPx>5@5H0NDcw-Z16hu-pM$
zLtM@PaxoP48Y!74fY<{ubVf9y@&`~LfYt%D3E)mdbin{(0<Z>9D1gEN6bYbc0ObNG
zA3(7HBItkqfcCH{$x^F09XEheN!C6Q)=U`^O9fCmfV6E1^y#lm03E_@w3TJ(bs`1<
zRG<|;03#h*POQjUnYB^?bC(#&q^$}&iwng>)3K7{$*;X3p1>4<nVpo&CQAUDE}O`-
zQ82YwK)Wk}u5_&yK&^mwEqZmT$qr);)|#x8e7Y>6Hs{8%#<Nmz9fn37q7ni~<f4)S
zXc*A`*G&$fUI6v!6dsxAqSgkS+x3EN`(_(mmfwhDD6DY+O_-aqHVdFJ-KP*9-JFvx
z0%)m6whG{GR5b0<Hh^~2cVmr%1NbF?_5t+c&g#J0UGLwH44qgz2hc_Ly9Urr=ZRM%
zQZ5>L1kh7=dIiv%xesgKpZZR_V2rku0Q$2tfR&tI0~p9Wi1jztE2p)Gz7C-Zce4x)
z(0eqjN=4hS07&=G4j&P~9|1g4@mR&k07eC{DuC4ij1FK-0J8#^9l+QC#s%;vmo}bt
zasX2Tn7}-dby5INrkT^8R3@Doz%&{p6T&Kd4*RmfJUxJ!95aKJD)ZT-{l0_q+3wfV
z=E58rHUTUS;I9DY1u#E=1sqBDl28k0y`#;tg)hwu*<2LBW&^K~^aR}i2DQqxl8%+Z
zyp*~|FMoLeD|A+_YZr;t_+DU50BdO&sHm@ET>$F?cp1Q}0R9eOLjVT@I26D}8ju0_
z0|?Mj0@xCOD*$%@8Dp$l1K38>nR(OPq{|W3f2fJhr`QA7K^@BX-|b}B6+o))Brex(
zTXO^;up_cctWH*$m0}czeh;i3s(Apu0OC$2e^{v9r}kl@rc3v0PnJ_@K?q=X0DEXU
z#99Y!jSK~FENhQBRb%_EwC)XHUjX}g-;E~g`jpuH6H@#yyFXfGJwPKfCaHCD_rn1k
zp}`Qqy#S8Vz5!ee;1ch0Jb)7coTPblElFCb)!cm}`4mkYV=VFM0L}z(mg{+rHH~${
zsmSvT6q6pn1)allX1N@|l>lx8aFfle0pzJ|y+)(!YvRfh+6|l6X^I`x&g)hHw`qZD
zl3Ze~l@6V7Ry*Z8yw}?*vG)UbK*QsF%98*d(r^vnF)dIltkou@EE{h-c+NWJu(e&O
zTAR*Wp9b)ZmbLv!&uJ9B?EZp!^JVwpO=HNJbvp5N0B-`wrXstFw*kDPm03jw75@hC
zK7g+Q{1?E706qrrDS*#h&ZrFuPgYo|5NglFbKzgON|dC+zXk9;fFHE%tC)7gO6Al2
zdQ_iZVyp&sG8$u>p0>4!jh%bfno&iBibxfiRAg4Q8opd(rHxLr@*`_#aAK5-N>*zY
z6<JkKQ4~Oj*!;444i!076jf17MJ^S&Rpe8VUqv1jdC9qFrDmaa7*My?PWo8U$XY-}
zK^28n6j5=vM`Hh!STYN#*plCN;(W@KZn2iHotD4oL}qanB~;W_5vQW0ic%_KRa8?^
zTE(RL+Cu=!s9GCRWy-23r=q;7jq}PXs;B^S1=fnJlvRnL_l5FR87!<u)@W7}D@B@B
zbSzwxAch?)t4+_Pd%C~4lB=tzsiKyO8hn~}K6j^4L6uo)iCrx9qLzuL+K!D(QjyF%
z)=^PcFCjriqRz!uS*a80d>>@cTDyUYhAO5~2dQYJqOpqpDh8-%qN1saZYsK~Xr`jM
ziVjps6)jY>RMA#NI~A=|wB};lP$R6gj<UwO#@L1_$@k8uP}^!<uY&aJ`IPq5#a|N>
z$J;1L2koSyGwrBiy48Bwtqu6RYph*WZJPfa<o9-`^ia`TMIRm;Jz0CHAfHb5$XHYy
zi;Y=p_Epi34?!iQsQA80JELD!3{){n#b_0SRQ$$!{mvx}Rxw1yQ0`MIhXxh3+b|Wx
z)RMG_4OcOO8~G0vi^gK4s?C=hRbr{%>Cj_Tj8!o~#YECYCB~^3&jHk!qsH6*T4SXp
zWs-`?D*i4IIYq^ljm4>CI^`*2wMBzqx{4Vp*3y!zVy22eRV-Jrf=0NC*>psziHbRN
zMiJIwMX^xDk=-eCRnSD9r(!<C0@ibzijqllkh=0O6?Fgg5*p;`DRc^Sl%*<NW{^zV
zGKOP45-Z!RD^<`;q@`??iq$ICsG!|xOV4cGaZdBsQ?*s>S8+ha1{LW`t^cUlL1A=6
zYUh|Fx~+S&il4(~3-|k0726oLvr^;#7GvG1VwZ}&D!L9s&Pj=>Drh>}X+ovMo=J&y
zs1Q_$DkSP|YCYc3sX}3p^>P~WQs7eI)*TOnmxkhHZ3qQ)e~${4ImjB){oN|OCT%>>
zHpA4N`h6d-B-Eh?RUD#Gq2j)Z!_>$s?$F{uWAd=|sERWx994Q8<8qFxc$D7p1oKI~
z<Wnk6GnX2x-Qavy#W_x<skqD#+Mjfu8j$${D}`NTxI}ZOuJ-5Sii)f3TvKtA;X3OL
zRtm_TA^R=n+qyHmKxCs~i81Ng{nWI+kv^c6uwY~si}fML6mMirU2T1$;wdd<L6i*Q
znTqEs-qDh-;)RNrDqgD?^S6<<R}6HM9dWa^(Qi0O=38nLHn+da{GOJYAaV!sLB&TE
zpHzINMLUS7AihwtjroU)upqvw_)o<*S}4*}zSDTV+iA|zq?GiO-z)YY#}EW1GX#+_
zh#BcA;XzQ=+Tpf9QFEpsG6%6PJ>@{f9`~;H`*F2jL=gV;6asn}SC$~M2azL)tU+W8
z!uO`8FHa0@k8f7W83bwMsG<}`8}a<N3G{-JJVE3QB3}^sgD4P0!5~^z?PM8cdpRqf
z-g;0dh{8b>4Wd|3`=D`VmSI2zbCDoOXU26OnQopq(^{NLxX+(`W?4%GQJSh3#QGr0
z1W`7KK|%Z$M7bc!2hlf(enB9J-eyaWAbJK-A&81WR0^VU5M6`l7DTO(tx6D0f@m5<
z)gX*PL<eCCq9$c=9n7q@AS?`2tC%3HI!BH&#4=Z7t*-kuf(XwTO~JI)4k96l#3150
zH=ebQ9$7btSrwCiMkWQ(fc<1Ww_XtSbsqS^)R4K6?lcbK?pAHzX6#I!Z|M|7^B`JK
ztFqHhk8Bl0Yvwk()0Tl+hIaoYi1wW9pyzfB;zhP3%IX{h72AcCAhA$4IxlLp2N|Nf
z2NCwsl$0--oL+nuR9bI7adP_bE;G+0rEnutR)5Z-9f=17@oNy2OJxq^NIKl$Ach1n
zod#hLLxUI=#JC{F2l0Cl!-E*jyN}SzAIb0sEA2~192G>{$_dn%W7s4Z%ZH#W;t6a{
z4q_t1Bvy*2+$qdcS*Nj5Joz(&_%n#Vf>=Ul7et18rujiE2x2zP7aB7gE#%A%VjgGR
zZg1`U!${6TPA+1lq%XGUVx8Mwk69YTvLIFlv5L**tShJmc7{{%PbFB*{@NhcFq}_M
z$#<jc&)mO**bqc0h}}VmA=}0vb_TI4h)qFkW@igcqUDzDL2M0T8+RxrX=_y_ne?9^
zc5nc(t8{WIP4L||IS3^Pdk~HwB8w#mK}ZZDD>+eRlAX+IR(i*FvWw=|9E+Exe2_k3
zSlmH)XugMRWJXQ5`I%K(m$JkJm|vx*5C^F-FPWn*XuOBIxV`mg5XXYp8^pdK_Oo*^
zh(inqShMsfN@0ijygGzzN7y7M%fgi7L7WKUbdav$v{8TkJjatkoZ|V83n?_Zs3ocL
z=YmM11*&t!?42u~4<en$-sTDeH&?h2#Kj<54Xn_5V1-LTTn^%DmI~LhRJcMwtJ4P*
z{D5mgTo2;tDI7b68$sNpd9e>K_u*C$w`qmhgMNE(ho)f=y>_GbZrlsveh?c&*c8Hp
zARf}(4<RvxN7N2M6bhkm2v34|N=tMISweUg#PcBj4dOkO9K_2YzFjrFqot_>UUA>O
z4x-QAY%kK|-{^DmZ4fc1%-@3A*QDp#$A92m!b8Xq!bgtz6hxQVmd`=FIvM|kmEbGG
zf2`kFzX$O{&kYM{!G;i4{T)v*<y^s`M~xXn$P_~65JIzz5g~0sew0`HBpb=>pWc<e
z#>pB&wh(fLkc-XiA&i}1G^Ul$!O7KjW3~y}8kjqTJnYbiXiDY{AzujjLnsi!=)1-t
ztqlc3`2BX&u-j1tM>Z$ssbnh>LeUUv@Lt72D9%tmgc2c?{b(#1La7i=%`r4djVv8P
z8EVXCG4tnX)hio9IS$TQ(A;TaLa*25$wY|mKu5(8Dsk42%vxmS5KNq`!djJ;d}9dF
z%yV;V-@TieEvzwmj5P!sb8fdamZ2JJ^$=b!*S-O$8KOTfsLkfS-)(UW^9pFkjSta{
z`Q|$8)D7WI$6912g^(P=zz_z7P%nh~Av6o2c?b<StWgLNe8YP~PA*Q*(3o0pZxlT{
zu1N?@*`z|o=E&9}gq9)nVW$;qyAXZ}VPR=QYfiQap)Etgh5uvfETE%E+OMAg*#viY
zyXYh{nF$_9f;)@56J*iF7I$}t#ogIOUsxD-$8~Y{#bL4U>C5*2eCO1;=U2C$s;;iC
zuIZWSnNF1|lG-xc(<rAB+8fcqh>k{d+o<bGZ9FVNQYRxiGb?@<>F2UIfo^oVQ+rUG
zj5dfbZN4a|eC*TPh(1Q78qwE?enuR*9ryU6W_O0z{zm+t9v`I{Xv82RM#*F_VlX>1
z#E79XlDzqCm=V7kF@pXM4xqF=+=zUql}}?v(ie!m9`Tz@KO-g@G0BLrM%*o5djd<x
z$<_-*j#ndJWl+B0_&8TP*@!7dEHgr8>{KJ(%!yoV#1bQ>F><;QGYB(f^o&?!#4KiK
zQ|D0UQs+_UQx_N^sq9PTF2w4ElfOsDcE6A+e~i48rCHM}&%2cLJvDN<5i5*XX~Zfc
z)*7)+Rtc|WwGnHK_?;Yj6@Rj=VZtK)#{b1>9P#UEZZKjaA@6*>#9Md74Q{3t*kZ(1
zBO*;mW5PBgwj1Fz!ezt`BX%0`mk}q8*u_2^H=;#--EJe&FD$&rh`mPaqpx(#i2dXP
zs`H1;Rq{dAIb_6PIh4#Er5>ZU{9Bp!KlD?r$oUJSPRKDmrd@AJJ|%025e~Hl6TwO~
z8(~rXH$7u)Mr^qsC+*l}<vFJOCQJTKA#J{7w-FvAUK#P)2(J-7Bd!_oH!J#$xMIXr
zBLYS=`kzuIXhg_}FiTHU&rpN0(Ps(gs1kYJhzsP4s&k2OS&l-Ca{ac%rqQQGW1Vsn
z?{%41uOn_7amT29@Oy)iH;uSO*jDksyCuurj<{>YJz4+NHXjlmP*1i^dZhY~jd-H+
zQzM>{pHp9`{!2Lv$WN1${=6Z7Fyf;TZ;j~MKIWYo`Cdjllk(FH`MKODn%}7Z8u8hP
zFGhU*ku9SvL4iWb$|mW%5fLV3Z8w<|KdlMrOwgGSZ$gwwt__r;@+L%^5Mx3yX2nTw
zLIx8uGTSPDn$@4;GMSLygaRgHHX(}%;$$_U$MYK5$Z1*|vNM~5nv*J}xlG8davnln
z6Y{Cfkf64p35853!bWVDQ%c$mNe|)*n;<HiC`x~8eVwrMs<;UyOekqWDHBSYP}YQU
zCOF6GU_u#23QMG<^$n9muYQV`^rLPC6DpdZ;U2|OwI;+7K6Xp#Q&IT@c!u2CYJ$Op
zTG9dO=fmg(22?Ylk_kKaYbrA<kyQv)sn5Ekscw>Q@Z%)aFd>m#lbUi>BWAJ*DJC>A
zp{WVAS*4K)jR|#3s7rWQFRGpi_2uk7pp(>q(9ndzuMLv@b(V7KP2QGRq-ciUK4_Ym
z(3Q2Co6th~<~RJz-ET#0Nu8Wq*V=?OCbaCTl@Vx5vmLcPRm={Aj?_-n&L(tGOPgk^
z(~Vo{PVMGbKDX~>LT?l9nQ-5PJ|?7^u+)TQCiFF-p9zypm~29S69$+t+JxU&@fQ<@
z%aV0FVxS3wWRGYLqe_EA2t!R+bX|GV_p8jYruvapm1*gDtQ}#(NCu2j<9k0*hGGn}
z6HFLO7-zzG6XZEKQk1QVQdiPM6SVB}6ceVJu)u_c44!7fY!l{?r^{aaRBeU{GYPY(
zzQ}4~&SgNt$xLz%N^A2>xZc4qpXQqt=@$_eQ>9d1iA0w$D_;;SH(`YdMiWdXtTbVj
z2}e!HR4vVF6V}KftFK#kCPvmzsnVlo^zSCDWyN)BYwHOcOxQ@+WWr{`787=xu*Zb0
zGM;p{Q+HB#P`9R0PV-%|#r6v9HDR9#hgc-p{e(YFIAFpbWC{CG<)9iP*~8=`|6jl{
z6DH)1{GSQOX`V3Qq)Gk`TJx72@ixk^x4oYB6pI8TYnD<I&YN(-1grS{YuHV2m|!zu
z$D5>3uH<nSQk^EaSj8*rPnJlx37woJq^=|n{Z*MWN^3r{pBkVBsUd3EgwupGRH=KG
zaLxpG6=e;)Xu>5EZkTY>gv%ye;q<=Fn5)!la?rmh8~s~t;c&Z{`_&T;eKFiJ;Wo{g
z2TRB^gCs`M9XfZZrz=H0FyWyrM`pl`M<zU$Wz&pIW;`+BsjRVP{A5-hH}K4aCr7o<
zC19j-Twa*)(j<R@rOefTsRFMEuT6NPI&V#Qr}BFfKB)ZBgik8pT%a`gnb|MYuhefQ
zd?!Sh|2rch%}7H|OHD`JHbA+Okrd5r1~Xy^>8ax`D+gE7!V8@<n~}wg9A@M+BRpH1
z)r@S6k<$B@BeSb~^;1MHGcLT+7c!%;8M*1_F(a=TxkeiDnUzns3Yd}KjDN<(Nm_9s
zRh)umc>kAPKw2weMlmyrvtm&*YTQ&7e@VITMVAmW!BCPaP|A!R4QdONF{7**DQ46*
zqnsJ#%}6lIf4rcA8Gmh$8{Rcq&(<oMaqdBc#*A1q;^dv(GR?cuHMC}k>dc5Yqf`;C
zup|KktLV=vb8>C7^p&M2W+a-i-y2tjMODqHMv#E&1bNx5sXDa?t13h$nIZ4ClFjm#
zQ`r%Dd|n+h>YDMh87*aQm{H%1W@hyCDkn|@)@n*^D7!N$sgW6t2~DWt9KVq2s2Nk>
zXJxFKGqQyl)!Qo5pcS)nnbggU)@Ecs64yp{vt?vk`V!F2jP~RX)Q+m($&AkAF4V57
zU$9L~cec|*dMI<FP*U$!8GEtRtW~bhQ_bjW#!3rTS<ugn{$@m55M#jrGk!6{W`^C2
zfo2RcW2qU-%or@AVa60QrkXL7?Mzg+HH`498N<!WFD4|7Fk_?{qs$nsI%CcFjXdW6
zob7QEIgZ)!W=tSNtW&B_GGj8^TsS4FmO&YxY0S<tW40OJ8fvGTF@w%b>e}4O8;3b&
zth*7p#0<HzmF!$I=CO1>bpciUg@i@a#d2PB{qH`CzY9h#H)Dm&6EhCT$e6K88kE);
zx!R21%~&ggb5*}aW+R^%`@ObuUFUw5;Y_D|8_d{f#x^syo3Y7^&2lPTNWGd)TdPJw
zqBdoVnAzgD%IR}IPEyAVwRf0tJ$+){Es+(YV|JS5R)6K)*)DEtH+7GggniW1{K~5M
zhZ%pGaf*(-c(wi>(b%8%pc#kgNWft;j*yR1kNxne$EhcNI3qNFnQ@Z5xOZWxXf(rQ
zhS`jdvy=gUbs^QFMq16d^FA(rz7&TUPMMaHmDRuuHv_Jj;gNwl6XR9m<pNA5u+I#?
z83CF>>P0g`gs`+wM%QPO=CpiJGf8vCjI)GuRB_JB=#ek}tC4Khi>a5)5WQ^16@u_p
zGakG(Y$&3P+uv;Vx*0bJH>tO%<u0a5z+E%$nekRu3^VRaMOo*~cxuK&#z?>;LgCpF
zrJ5QZ%X-q((0xYqGc%r>@rp~w{?l>SPAZ4sg&8jy{Eu2Uac|sf^4y^24WZSR^zY5`
z@LYU7qB)&2@}n6YdHwU5rJv0BSFM}2evAzD7iPawznSr!5Me>2MR^HGW5J7#$}COG
zY&vQbRm`6V+sZ_yw;+QBbu6fBK}HKQS)jMTU_oXJvRIJcf&vy~WpGZ>1m$f}HVd-T
zk-JlJSn#kAUvUx)xh%;2BPPL+$AY{T<dbIeB}%P(`}Cp(EhuC`X$!#Wg{j3Yh_0Ai
zgk02uVg%Vr>&u!F<dW1<)E>K(Ww49|Wi4oONm)WA9jP1hzClzu3(7O50<|JlLzS3V
zLL5~~)mad)mM#e7O|YPn1vM>rmoKui1yxv-Xp#4Z%EYe9Y&A8$x&<{<eqSZ|g)1uM
zidJTCEenz?NM=!rMOliaZf$1e+D0z_>RC|Vg5eg7u%Lkj4Q1uD;1>%TS(MA6Ru;6j
zC>PI-W$)DXn_AFJ<>nT&ApcBlNqt^Jxwe$l#)9@1bg-bU8sCl(JvE}Ev~NLo3+nZV
z?o6|b1zicIjS=G>D<dh|%>t8FSq6Kss3%pjy$HRjeW<Ax^d<D8N=$!(J)^SA11)$E
zqre~w23s)1f?T(i3;v;u5gtbPl`5Y-O3_FQMp-b&g1Huqw&0c}af}6HE%?oX;H83H
z%POsnW4ypD!g%Tg3nr@mBnu{6kf)wr(iFl}3#JjKtNsiNW~wYdos-sPThJ$Of*d~K
zd2DK_1@kRfK>l@e<U+zCbt{VrODvfBKsmpbF}vKNyenLx#!OAhwAz9-GO4VnY{l;u
zthL~i1^-&G&Vuz87-gs}*kHj%sbax#3pQEgldiZH8?^^5*lfWT3l2ZiZM9&#1v}&<
zZK~bI#`E8b+-bos3ks(yTbDnJ5Z%q9J?hr?TCk72Uv&-;{;=Rr!YW%KsU_)<Y{h~j
z795q6{gyJw#~2{fb^opZV*b3X_$Ms*%Yu_E9XmmPN(Cu0TVS!^vISQxuv%ba(OC=Z
z7C0;jFe_nBi}FcAzGjgwI&P{*E%g$7RKLuD^2$boYH7%Vum#_@=uXo)LmmH4+4png
z^J?S;!bR#O=})z!hO+EiaLt0hEx0bu|CDR{eP@(Uk|o_><YNnN5^hn&ziq)CnLKN?
zcU9+}1^3Ahs1H^DksOOnC8f#}3!Yl=jJx^Xf)5rvC%>S|zP}{=W5FxJYt?@vlSk!u
zGGbp05-jPX%pd=MEb!TaFBbe{MYI)PE%;_ZlvP=Kzq2Ruh|F|WL|74NMH(yQqXQ{=
z(OkLMNXxKvb(9^Kx1v8rAjXRHRus3QgcTVWkj;whR%EmylNFh*$YO<bK=wj<lGO@L
zJEbR8`zw%x@zPphD{`uw%Zl9OJk-3@d}?WaLIG+)D+&=trz$ItG+V@qqE<97l^|Tq
zs%){*oD?Z4$*_1UN?B3b3RqFb3Y`_Ljz*Sck;DwRom7roo?3xgk*c9eOe`Ues<onR
zr~lsHU2hZVoS&elZ?GbPFk`DS_o`S?)rvK8@>)^Nit1MMv!cHhHLOUKu3FK;ikeo`
zvZA3CjjTwLjwPgNz!s9JDb(81^FwiU$aSgpsP(C`p&tu)=uU=8RpT4eY(kai2{x4>
z-K`wQW>&Pnq0IK5S=7Obj#jjkaj>E_op#hVvTIfp;pc%@`F)2}Y0sjG^<z2_#OW+Y
z^Q<!eyI9fHif&e1NmbV8AKKlD9*pcs?M3aa*6m|Os>*$>IDc9BYG8mBzgRKLirH2S
zv|^A<KgJBUVhCY`6+^8UX2o!|?yrP9O_e7d@7<{kc*_ggku*n9N2`&s4HL&$G1iK4
zsx!fg@hbnA)f26lL}xN}3U#U)GmS9aiW#ai(~A8Clyhf}6?3iF7K~hG#XKwSP1Me}
zVu6&Nj;pmiVIkv}Sh3WKMQYu}1bNt*RA2oxxpgJwnq;{ZE38<l#;mqtl?<$WtFlp7
zdxYWrYGnu4TCvWG6IT3X#d<3?SaFo`8?D%6#Xi}n6`QTtV#OY{ovqS0a>>rhYX8ir
z-OlU|>P{<m5q480K+nIP+iQibixMyCfE9mO@u$p_bjto7wBnEzhpjjw^Z9kbvxjt&
z1diN``H@cFjytBd_CG6*Ta~x}Qt^GV?xYo`thi{!B`b_pn5=MH;gKoFxn#D&VujU;
z0x1bjtMb-cUZHGk%5H^&Q0t*Ghh5~na}@Sk;j`ib9lsR;sYsThAR%l;h|rVQ<l>)Z
z_6+r`6?$U{G0!tA_b>}r8KYbgU6xsG#ceC@Se0j7UbW(HE3QlX!}Ql=@LkIL7fCl*
z@s@lGOpsgaD`rXa<8!UMG9RqUcc2eg)O>1>`*L#et>1BDvebQO#lyFnM=X78#S<%*
z<*xRWSt)&HMT2Zge_mSgj}<#T*yX`1D_+ae>OfWp-dOQg2GfSiHoUXqy%qIsXkfz!
zS$M6;XG4A)K3Vavtj0EEvEj27U#y6-;U}AND8I@&Z$nxezHy7+<>(YkjIbe+r8E9i
z_HN0z1i6YR^f@jaO~t926iv=ZjiIKuA%hJ$ivIVXmXn7mb32m_d73Gwr=+Y5dp9#8
zn+@3|lG$7~<hCIvIdoVf<0g@LY{*OJ)3nIDb2Ynl$_Ny&p`Z=%Ht20AWJ6&a%G*%E
zhK-Lh6tSTk<0Y&pp_mQD2_;m&qz$E1E=_<9WmKoE4Ih73UVkOYfvZSgr<Q7Lh*dex
z1}%AAC*|y@b<QB)K^SaEup!Zgnl^Mv8()b5)orM3Llruu$7`xeBlnckyqXHaHEifu
zQ5mROHYBlDJvo&7Vw1_WZMZ&LlVZc4Z<Kj1sg4bGZOS8(C3$x%t(Dyu+0ceYHXN|w
z4;vcW(8Pw{Y#3uhQyZGuFu;aiY&bP8qPYz%ZD?h~EnQR#w*NDAZ#bs44Q*^#Uox^g
zowhc#lWBAHzr!J0X-~g{^p+q_CmTAGyHLAQyQ!s3J4N<TxhJ8Q4ZR6{sHxPxRB5dr
zp}+LGnDVnJNds;2nU7{Pb&w6gm&t=|7^21xwP6_fSL$%pA3+#N9Yy`)L8LqaLmC`w
z!#Epe+c1azc<LnSl}|IlhKbDfpQ1!gCJRg<Or=hvPN&YG&a`0`K_bho(ag1Bo(*ek
z_}vD1EM|_p`uS?<0vi^R7f}~em)Nk>CihV*r=g@3gyqyjce<=3tfH=_O3c*Lk!x*O
zXTx3__Q~<GDHk~#ZP;YP`2BGksNzW4Y{MQK>h(?9!WeP3+OUnhow|d%Q!U+P!*258
zi>W_akh*_plq;P5>el7l{L_YmHk`5HtPO{3IBY{e4vh^*Y&gm=o1E{abn*}fsd!8r
z8;;XIVZ(f`)#CqU!%3Q_s79)ZYNlGKR_fD8<z5K84VfxNI&5&#bWz>Zmqjyp2wtiL
z`)u&5yr!S>ldF()wP&Qf91DkSIL*@N#>(f|=WIC7>;<ZWi+|3p(HEIrGFn-AuGnzZ
zhBS7hwd0x%f6Gd1!+SY5ZMb2>GaH`UaMOl#gSC%YtKJ&TEgNpj_^;7Ox?{s#8}7+2
zl#j2NQ+qr`d!I!QY<MU`cSt8OkK`ckSKtX-cuL*MU(&s>;U%+gZ1{&DU6Ln7ioUYp
zwd&-Wo#rjM=^Nz(mJhO^$ue$NX4fY*=8Fygs{Gl8X&sam?5pa0BYdYu*wJBzPM#~#
zh(|4*9Z_t`Z^ut|MB9;UM~WRWcBHq<54cdtjtq8Ww4<~gup^Tlne8ZIM^QVn*pbza
z>~`d^E4Sav1L(8aQT<B?a~ea(2t!Uga?vkrmq%Hpij&)pW}*1Lq4+#@h~}l{qvp4x
z0HGkY5Ow#(R0)%oTUSUdW=C;5O4^mD-j`sr&wTMkJ4Q+AvT%GUyYh_Sm(`VfjLX<j
z)()*5Iy=hQQQnRUc2u;(dp2)s#^gsm3rY(bwh(JaoE>)}4LJhwhawHZn4iqPczGnZ
zG!k!zfibcPy&bmi`p=K!WfS*uqOu)T?5HMtDx={|SJjU5!xMUi^s}$)8{ab2up`lq
zBs<0w%urKCuZy9U9a8#Ju2@m$b-g&El9dBg+m8BnG_a!%4?$gOJ?i`R%ID7w?Pw&&
z%Z`qAG`6FO9Y5RA(vGHfT-GNwx1)s&DOs}n-)ThOGJSlX+)BEAG4)Ep8tv?8ZATkB
z-gilEYe#(Rg!?B9_Nba~%hhOaM?~IusTI0u=wwG{JC@q9%#JR06zh{X(2hZbu69h4
z$L`qCogm!9j-Ik#%=WgUKcSBusdC`R{nW??1u{td`230vp!tjRhuOh)jO&wFp@?p(
z9YgFGDo3h_ZkQb-?HEP=)sEqW5mfn42?-djwmhEjn+&z;jFkpeK2adU1oFfmj_Oag
zV~Wb!9dXmh)2TD;m}$o>wR9d~HgyhlF0~FjKi`f8b}Y1G5zQr3*~i5)@!n_!B-JR8
zVYwYE>{xBb8kv(j;`$ZHP{yKLX@}@4I}WT&6!_hatMT#M?AUI{T07Qp%mXVEQ~D&X
zw_^iKC19f+o5-70XA5B~^~{RI9d_)r!(zwRH@aQy&jCCBAndkd4`DBLA60s|Uq*gZ
zDS<!jI7ss^I}Q<!Q4gz;N9;JNaw13Ie|8+Fb3*k?7szmue2QvReG|b<jfv68=BzR~
z?XcV7P-9$nILVQmFcRaoL)ar{t{UT$K2)tLMFBg4c7*H*%hK&YItNbMamJ2^c0A(g
zbJmXQgmZFw%6#srT)SSNBXH4<OLErOafQw`>Q%M$OEYEh{F~XWro<bBn|9o?<2HFr
z&BXh%Zm98h3HRg>C;azW>jPOF`1#mlJD$iX=0Kza$D2kzwd1uNZ|rzxM+uGYxgEcs
z*Sui$mv;Ok3+A8yweX6jWZx40wc|74ot(vXd>{{h8S#<uNzF>P<u4q+$V7TxMgF(v
zD}6D)5xz_R_bONHX&k5(p<H1~m!uoQQ4aj%KxPMaFV#qjb|9n5F%G16AcF%_Dke$M
zoPh?>Oe_`uM|{G2eKrTOJFwV^B~IjUC_nN|aw6G@oDSr2Ah!c~94O^PX(#eJkk5gk
z4h(Z3zXJsv=;%Nv2MRh+$N`N5u?}3=t}X1qot60nBo(1k)PZ6S6nCHmv*MR^prp#B
z2&El>>XdPy-nZI6S|~@eJhg%Y71fwZgJR+wn7mCZsjBRbQ>%4A=fLajT1oK)y#oe9
z0<{vgGF4)#I8gIpoIo`Psyk4Ft<`a$E+J7$3ANO%Bsq{wPEnoO;`C8EAgP`Mt?1Wx
zpn*evf%sqFnh_dN8#~ZM^_x1deva-(-R2Iop#QU4+EQB1rZn4{P8-#4>p(kld)4XS
zz>?KUWM>E5{o;l=Fng}H3t6&V9q8sjcL#c?PCr6V2YRVaZwLC2Q&p!g!8S$HpD=*>
z3w0oM5LMbA?7*6>Ndlhq1?8zpzdA77fq(;*it9IS*N$*tCr5jv1EU-m?Z9u+TL+dp
zFvfwg4!oMLnd87X2Sz%zQyn;vRVy%_*$ECzB#1Lfc2?yn4s@xb6LT8lr&Fck3<qYC
zXQ|F?nRTf;DN4?#n=9j)PdCqj`2^twgoV^a)Wr_;-6p@D(8<Uzb0F<g?M4TdJFw8H
zm9)Zvl@6?8cC`a*Rey~GzpMPy@`CHg>s4oibbFpsT}ES*1DhQX*g_T9>cBSgcGcP8
zz?RKADcZ$x+wH&}2lhJfzmJ+@qJ(`8>?a&>;19x|)WZ%OBpjkjm324LiymS2r~?<}
zCX<hvhIQhPJ5cqh)-1EMPW%Z6{vw>DigU^VBiW=naeeg`2doa*SkX<D7VHi<$WGO9
zNz5^g6nW@)sXn#TFZ)s@MM{GXgyj7CJvr>aBL^PKtAGRFa>Sl-;H(4ZWHgeiUUlFa
z;XL&M^`Zlp2$!i6c7-D>Ag%q)Ht#raogmH)2X2yYsm^VgS2c7}B<U{Adk)-JOCLD!
zko+y1UILyt@Kk1k6X~4Flzt|k?Ktq3)B8E~g##}MQu+_!l^i(LkwY*3I|sg~&U*(w
zkUvsCss6tXd{()~GmX^x%Ir4>z7rzYfk>*9rg1_ZA0`mx#7|D-cA`f<UAmdNXs0r7
zvq*<$>SCzrsTrKeNXSH$(#%erdSVdB$|_PTn-kep&LQi+%DJ3yRWL|E9(f6H$_K)6
z`J5<1$WJXm6~CYpg;Xv~SadN({G#MyP827UP-99umDw%<aH5P8)ty-NL0i^|a!zQR
zh;^d86W+&~iqr~JlOw%2hp!}x#yO#t0imyRBA#HN_H3iSF8@|T{_rVIf)kt=*IqAB
z*@-GnRAo^$s+iaIBuWyf;Y6YnHR%_wr7h7$TT6|R;4Q~ADNgitqMsABov1^nt`iNM
zXh^O{t?$J4>v{=p<V0hq{9P6HrHgIiL{le5C1_hZ(aed*k-8R695w6YcXQ31IGCYB
z^GZ6&{_MoFty+Or3_jLfD^=P!(bkD>=QQo8U8wDy=s@U5mC{a5bXIx8GR@sv@m(eB
z#3Emur0z0F$URl3mlM5J?&CzN%3rs~&CC+p-zoPAXhu8H{*`us95N>cIx&dZk<`J|
zA=IH%i5y1wl{(ys5rpNZHBuyLl$w?He{*6Cvty~_oEY!K1oBL(#7}f$5_z)fOd(8l
zVw&nqcVY(lNuEklWtQsCCd{GErOtC=zFNA#DGNImF<T;6tR$(s)QM$IWOF0C8_S(o
z;Y4>AdbqGsW~LL*op|BIYA4pnx#NV<iQk=A>%>XvB$SV3);Y1$iCs>tcVdGR`zu%7
z=)`6x?sn13<<=%Sq4Fh*xy7k`0<hJIZG^LW<*Ic%d57xkc4ChcCz#z!m6$&X`=n*U
z0oDJ5aP*gG&ybXZP8@RLFdb?6h|Dqau^+*zFRdMS;()!2fTX|Z*Bcy}tEp~z|2UHq
zW+zTNafZId37ZpkvX$DSe58Zma>7k;Qgdff-W_|KXmL$bNUQve$V=bngr6WzfDojH
zoCvGFw0V~N%!w!Ml&joxPMlXuFF0}0iA&60cH+7dH^^70SE<*W_?sYguaro0lYG~S
zdxTrm+fLk3V@{Pwb6@30vZ9h7s!j!+a$FuuXH@4Y;maVygnY`?{!1tRk#od_0xrCA
z;<XczE~IfO2lovl|8?Rm;hhr`2UiyVJ+mLEAD#F_SX)y0;OH~?i%iQy+OK3WzY)GW
z5y57~iR+UotqbXx&ErD1zqNPlnkcpOCl{j0F{+cEkimtFE@UESb|EJriwjv@c>Gh5
zY%XMXA%_biqLeRZ*M3wq-kG$vYGN+6o!l;bSf{PNN1vBYKGnZt(H3-}kPGEqs6ex@
z3ng4ANiO0-Q5S6c5{ofgoEqOm8Q9S)HN$2`mU7|Q3FX`=%_30CP|H%wQGeVhQqhG<
zE>w0wLo?QeGTSsWGw9-6(9)51bcA>p^aKMnK`rgyFS3dYRb6P|!p|;Lqu<Dd#x7KM
zp@s{IF1)C#t?fb`7iyAgQIlLqb|HnF|5S>^NV@k(Q<p8&cR|jzdgL>WmA#YHfZ2vF
zylkMncWc6|Kr=#9>L^Fr=BmGWV024zI~Ur!(2CqzEp6jMTa^d(h@AbiG6OrfAYaf3
zbYxK{7dopkT?k!ehN#Z+mc@Fy&`VY`7go8@oBk*lM!V3*g;W>%y3o&sA@uvZFo1A&
zlX7%^k>P3`J($iw7X}f;Z~HAG^X8Nnn^K0V&M?BSE(|A(Q2mjFW6vXhBg}PSo(p4K
z7|ZN97pAx{)rIkD`~(*!k|(LoWEWchxc}3I=`PH4VU`OsT)2EQF<tAVEt#rr>!ue@
zsuDljg*kGLv`%`Jm@KBLyIxAAxAR?C=ECuZT^F#;g=))-Tv)8~62ej$x1q{ed33m8
zxeF^?5RfE)s=V5TH7<Bu@VfB33u|5Y!-YRxh`Om+=fV~jwvyMo<hw}4+~~sQELAsA
z1va~I_<>G98sElk?VxU_zIYtDldy}ro4SX(*M&P(4ExCYsnWs$X>Eei&x0=c`(K=L
z!6*((<)OFYA0ZbTtv%|(u^+Xl$Ehc%e^F0TrAqY@X-qDx|2NL8I%^w6<yxV!xL~DY
zqsm!qCpf51s*CD&;kU4I2Z+xFzYFhW>2M+7LePZ=E<BV;>q6LtYcBll!f95K;B$mC
z)U(td3&nXCE--tMDv_56mtDBx!k$)!tExZgKzdnHuFF8F&J7oCs(g!Zo4UDhwY#c+
z&xQLcx6{Quk`sSc=jU`DQ=d?uQlC+!51ZRZzfk!l;U9SwAiP%nH-xt?yi=W1Wurd2
z@X3V?Ze(=hUl%^Rklu}@8<p41FD^v7|NHLgs|(-MTHjrWa4Sdu@j&HROG?AAwA6Ie
zDC$qtXg6XA5?QuG^!k6|ezgDNyUt83%IroKH72WDS-vDVhZ{NFi1$G6K`u9PyRpNK
zoo?iDBd;4Z+(>jIpBwqzNN}T)8wK1b=tis?ac&fHqp%yr-6$b&Qr9A!w}`aALsOJn
zDMtNqKxIQE-2k0Z)Y8-+eUQ>JZj_}{jw()hH!6@TQZ=d{#lOqbGOKgr_b2Jo%u>cD
z-VMDPV~{=KD^6uPRo$rOMin;>chLU$bx9WIe=Bx%+1Yf;=Z!VpsO82iH)gw$<VLa^
z!`%4QjTAR(yU~^H)S)(^)|G+ks+?~1+^A2d0kt8u5w$T@V!B+9Xi9G8Msq?7Y6mxd
zcB7>mt<=c2ZnP%1QJugJ<;#V3ZnRgO4X2eU(UI9s)Xr{nQA_39$!>0RccW46^s+Yg
zaHFRiy;%ASwYM96+(;$&Rco!dS-Ky&KXriWAFUcQP~|~x3?>hu4pse4vm=JPF@jm)
z@@2In-5Be}I2p;bHAlHInnk}+$EdaT)QD>RDL!&=<?(JzpgGZvDTGPX$<!)8|97OO
zx-pH8?E7>#W~e;VjTPmT7pysM%$3v1jb(1kW9bq#X1*H>$P1~9RDUty@fBq}3#5%)
zE={?y&W-i-SGuv*4SCd#l&+$)n!1MiJ2fg}M$cO1kEZXh)$H6Axq+s{ZzOD@Zgyh}
zVJmeTbvsoeA2o{F<;HF|&be{kEq}ZZcc}0&DRpD78nchEpL)QJKiv3}e9(;}ghSNB
z)V0-hBM)kil3VvzZsa)b#tAp9ZrI%TOGdk7yoIHEvg%H{aY{CtRcE9Mm<VP!K3`0g
z?2lVP>~1(%<*XY{H|i8snhnx%QQdBM2wtj>>UZP*wzvRU;)n8QO(AB()YH^6)J7eO
zJsqwbhzo99bmJ!vqCL3e#$`8Ny77-2SKPSD$fs^xBS`RF!ryLOSDhPf+$7(k-lpDB
zOS}D}+*)u?I;J`g+;~WSM14$sqLv=xH@wf>c&<7x2(3p(y(0Xp`mf!1Lw-wrr~2>R
z_@MGf!YAsAZ-qY-zEHoq@y(6z>av{9qr50Yco0cQLrqH+Kje>$Qn^OQ=ok;udr;Z~
zc#wg9Mh`L(2Jz2$GkZ|bgF<w&c#zeDY#wA+Tgc-<4wZAttAGbpO6hW|&hClPc~#Cw
z$nQY`)mg*Sv#<w6RHxs~h@#|Ts#Dy966BK9QmP+2HL?s@9(}&3r@kz?9JM^Pf(I2n
z(2!%P2fizJ2gQ-KR2@~!rtcyQ9wc}$$b-QiRPvy*2W>rQC%fZ8RS#Nt@UsWi7+=?e
zdW7oK8XhDPYEq@OS{@{Mkj!k4(vc~I+SEE~%-g=o1$o*1wMFaGY~VpdwX_kTu?I~E
zO{vYO&8bq$$QwahdeB-beoSdaKkubfDU#I2gQ*iE%P!Qk_n?CZ{XFRJK}QcdF|4x(
z8Qayq)k!-kO1ZhBiw9jj=q5Ys&_(yr_Vu7U!+NOO>gho*m3w>8N99xx_Ue`MuG<6U
z4yXb2e^E;fSCosofy~aVn{S8*Lp_-0!E_IXdGO_U;s_5$dhn|nKU{isP7^;QdX(yn
z_8{g~^jAK4@HY>}sQy^OI1k2qFu|i->d505CVDW5zFZhgRwJj#IH>%3Nc0R3W_qyM
zgDoD+@?f?HYdu)!Q7*jac(BNW#SEV7!92oz>H_LQs_fC%GRg|J#Dm{uj%7)+l>UtD
zvCBLVUGBjO!b<8Y>T2p5s>GZ>6Thpr!TNXHdfBO`%JJI7MmA74$|yC~uILw6{JOH>
zY~@x2wt3Jqq|2^P65j5?4hE;$6W95&cDDz6JlOBY0YCP7uurC|4=sJz@4*2Nj9!?$
z_``!gJ$UB9a}N&6o>tagltt2mLmnLV;D`rDrTqnU!X6xxmOXHI;Pl|Q2OHL=n5F$C
z2`9Kk+4^6ElhjjGBh@7BpHTX2VK#eJtyN~rB#n(~r?z^e+(+v2AjFu2XuVrby=c9M
z>ZSTT@Ds!j5P}|zD_&l*Qn!8)-DwZbcyLzw997}GOp;kC0_QxaQM5wUgm}qbpqXu<
z?y?70Jh&~B#Dl9IT=U=-w=3;*xfAiX2iKXs;lWMS-}g3RWF}<^wT0tqUrKwIWA)I3
zN3s?bO1j6e`yTY@p?yGopD|W0T$j8r|JZ{k9z6BHnxTe!sb=eq2!UVHX<vBo(t{yh
z4E5q4x%pF0ST7oR@!Eqo9z=K%>BU<%`;IEJaZ_dGD8Fa+g9jf8;(YSpU-D<_7wT8)
zH>$*ZC)|nBr|}}K7xlcT??pPVvPYS{$l^s5S+YNQ5v_6zA-xwFR41cX?t4*cNlN!P
zBC8kKyr|+uM5{vCy~yE3oLBi_Y)&t7c~RJlBFyIYA}=8iRRU(+jS$VpY<@2a5DHQY
zQ74{{mw=*P6l1mmwK%mDwS*TX2@*DXM^b4ryeQ*ES#mkGG_FrUi7D^J^#ghVNfo`&
zsHL%lvu%rrua!gK*XiiQd!hHjKwh_9Bc%ymR8nhImOeK!h*{N(3e|PhRKL0xHM~gl
zq9&abYAv-iiID8YFD7O0YO8)7FY2l+-!;hC{uWHzKpp28zM*LBMSCwgc+td*rd~A5
zT%j2Q+Ii8O+4`~C7GC`9#i7ULTT)w5CEMDIHsrRdBfm(xFpih~Y-IDXxIWVD2^Bhd
z(V0#cYF97Z&*CI?^P)Ss2eqf__agN6Di1c2Fli^%i@sh6Nb2WBfARq8FRDL~FvyF+
zgnu8GZ)8t9%!^;WSmniPFNS+D!iy)b;+J|c(u+}EjPYWu7rP#5MtgDjujFC_B87kR
zV#DL|0^__G@5P#%+QnW>@XCL!V~(6wLz1pkiJ#<!=oIQ?s{E&xI8(it#;ovkFJ_Qu
zs?IFJY&pu^V<o_uOFP#K(RtMQ)CJUqUMwO=sb+#^3A^#Aeud~&nq?fr<zB4tVkKFQ
zY>y$z8<3lCb!)u%-HQXV2z#;Ci*jzwb}t6jk6x!nu9v+d4|2q9^kS120+Kd+v4y;q
zx{VrtDOHMgc(IdJc6qVSD?g>z?N(dc<HcU`3Eqq?Mf)XYhDKnuUjL^Tf61ZTr0_vG
z1bY1;ukvlzVK0s_dsN2XQ|lP@f7IjD6Vwg)qNVgCTR7!KOg*hb9&A)kYxct8#V0TR
z^}_0f&5NgAJoCctg~N+Wawui!yl{DOk$rP};US!t&U@kWqH1O3y_lp4&0_p4(wET%
zya>waSw<J4hN-8iVxA$KrJkdP=hV8ux<x-JuSAksq()!y;;I+7ytwT}pk#$>Ud+;F
zy3Vk_W&XrQ&vqx>@Zu(&tF@G0OAT0*c*l#obRNl+yRW$?`!z%RfP9~NGmGIN1LQ0C
z3RRR#pvN+k>Bs?+>~pX3I{QkNdM{p(CHs=_j~D&}I>}1d8!z5@@tzgmdhzIq=E%qL
zADFF?s+_qW$==r5a$O=nd-27K@;+4X;j0(lyeR5JF`u$ff0w1$hul6y_z+1a4K*V*
ztq<Q8>C*WS#q3X1sTEC#@gcqHWFR!Csm$I?<jmA8)T};aBV?!Mph{#;X}^oo+dMwx
zr753ROE#Ymc{&;j_>f<Xw7yI#NV5>NFtrF(BFCTA75AZp59NG#F-Tw1hf+R(b?1K8
z_PVPn?Sp_kIil_kZ5bcR`Y>~^^5s#z1)A2?v@0WH<;NNoebD$&%ZDT%Vtt5X^{PG;
zUaHYb_o^$qCam)z-UmJX8NDkT2nkdvt>i;xm8<yB=u)bfQn8v3)!ASTY9h5JRZ0V;
zGbEGi_)wRS;zMnM%rvE+KGgSNTx4wTW13ox6B_uGJ6jt0&`@pRbCar#X*QusX;UAX
z`Ow^l7Idx`(}{WDg;unc53PO3=!aZ#wDF;>4|8OEd}!xGdmnybn;m>e^CG2_51oA|
zenZodDoz(4x{~`cpqmdpedtB*PVGUB99mU^d;8GGhg3S!h@@-{s?MCA;Rp9)JN>Bx
ze5h$x0tWgp$cMo`4Dn&C?6MC-eHi9b{tkDv55KZ+qhvZQ)(rPygbyQqs8}}s_zC6D
zas|Xcx+n751<h|hjFDO&G>r~KiX)}teVE|GR3E1KFwuueK1}vuiVspMBV6-qghc*G
zk`<Wl!wes0ans_=l%vUj909GgHk-bqq{8!jnD4`=ks7yLLLWCQ@W~hASS+1C8Mn}f
zTbE-5miVyLhuuEx@yQL++GReh^I^RY%Y9hk!|m8o^*ifU`moA}s#&$44<@hn;mqeM
zYp4Rh6V_5M=G1QRVWSUQeegBZO4{VZX7bq2RXV4M-y(xKJ(KulK3Cc1!*(Bb$UtS&
zOVKVLcFHkL6Ccc>JAW_va^-@;dwtmF!wDb$lIwpT4)}1$hr>Sn;X|%ohCh8c=)>Dy
zhUUEtqk0;q_c9oI8FH*hbHoRM|M_rS#?Xgj3>HViM8%Q6TB`lJpzukbJQ)gBA8bAt
zeK7f8VX(AjW?k8Ygyrg`WJPx_Ph<DN>4VD$huZ9qU<s2_VUG`9*<~O6K0Nl}i4OrE
zf<9dL;f4<(AHqId_Th>Tr+qkCDe1fq7i9E&I4jesqoGw7!#N*n3`r_HB<Y7vTNHg!
z&Rk|M`S7Fkst?zEkl-;Z;{NvGdnZGmOQ|JOle=z+5xyx0SEkvDxCe3seYnGx@A;6>
zH~Fs2w5u8k7M^@5^*)P=-q0_<)#o7_lrBAD2R2?xed@zAAJX{|<;Qbb!Q@z6O8xA^
zOCSD`ZeL3MAg3_RcRsxL;WhaUi{Ad=OQ}*tk_2bEoLc&F>PH_W_!DEq{Ffm97sh{;
zg;#b*mVLj{zErF|I4RPPG=8M@L-@{=q{{`m{qSpDPW{P`Xg?+`ik6)%+B6}?uZ&3s
zzq0S?{ctu;{IRox1}10nBeNe_{K)FZ5I=_ck<E|nez|g1UT$*u@hM)Lhn$mKp`k99
zAGyg=WXi0|>qkC6^7~Q1k0al;v3?ZvqmUmOKf+n{g;}?hAI77JMaa@@Q9?04imOfu
zKT47>o`}rXKC(39r3(BgqjFh7IX}u1D)>>6AUCC)*cU6oy%#2o-WwO^m-|sQT0fGm
zXmozWGpqL_*^i!?V-0>J_~qBuN{poHgvx$YAyoCF8X?t_C`kfp_>t&GO+RW$ga2QQ
zL`uMqU<pf+qu@s!KkE81a<8U=1eZ#v$9Q=FaeackmTjvZ-%v(oXjiGy*pDWDH054*
z@GFlTm62)YSAL4#+>aK7pQ+-sB((CQHK7f)Ew!B=?Fn~`8c7n|(T`4kboMJ3Gkv6=
zesu9e?&6TtmC((P?t~ty-_ws?D)%P5{-7CKAil33xqeIdr-VVcpC6+A{rIDTc7Pwh
z_;JJ9XP_S)F2xP<!*W4$X1Z>$A4QMG4S%2+=Etvotng!{AKwS)hx;+v58oB-2xdo8
zM^Q&pCFVDopX9OBan$kD3Dk))r3rGxB}tVjeoXaaR_lamew^JBH$!^<toC&2OaZNc
z=uDQ*@?&1Lq}hJV@nbG|9(A!F^M7QkB`xq{p~{O0Qhf<wDRr4zx}4jR23Ps9+K<6k
z%I)-HKun!AGXIw(uk+(~`IKf<jkSIp%pc!6Q-WyEoZZ&@u|bZ@<<yPpoZsZfX7U!*
z*-F?(-A>&h6Zm~snHanL%5zb7Q}<B!Quk4%$k4ygAAbDl$4@~-2T>+X>_I>J1<*f$
zLw+2VzDcB%1`r*<F=^b7$9_DK-WG{DE+Zzh#g7x*=wH;6RN3??Im=Ww5zKzXhSJ?y
zTFmB$-H)p@&+O7T{K%A|^~nmO#=GRAMP-j4UUIq*%5}S+9PlIPM@ZHRKXNwGRXwUX
zt;S#Q;|%#M^&IuQT6!WT??v(@)w%4)6_sCQjl4$w+mCj0G}l%Ch95WmxaG%f)wxf&
zL%r+AJ=M>hCh~#G5B+$ga-Ob{PgQ>7$1|0m6JAhX`tc9pm0J2*js-vKd+WzLn(zJi
z;>TA%KBzGt37@F{`te!ylMwk$=IuCLL;#TieD|Z_uiB{6+K+dYcNS>^cz9GJzgZJb
z8&DSQbkwK-y76B_V**GYK+^!41&|?ti~;BZhz}rB0GR_Q&)_TpWDTHT0EGg`Mkfz7
zJ2eM2Cp8x}H&wP(`j93sIUhB@>K6!La{;aOlcsP0MFN287Y(3<%EbaGuCnQE;gTws
z3ZOJu{u)j;A*l?rWvS(;6RSs8AXKDEj3$6smE!`?s@!UJ20gh}07(HD0!Rp;5}oR5
zOyvNokgKXrHNvXNku?a3)S7B(uFla<4r-E_txrt}ptf3Chfp_wdW7mh<t<VJazizy
zQ2>p}O;jhUT2ym#hX6VT&?10ae2m@C0kl+OS`k_Y(1y^K+Ae_hGAsD!*yH#+blF@d
z7WE9EGocGr{H`)9RPG)?5Aw$=$~gB@{oaH=)KqHUfZPPD#0&`FmjJv0_yQOhz@PvQ
z2XG{S!2t{jU`YT=0~i{>umC0mFfo8%1CYN<9Uj1l0G>rx6&@MDD4A*3;>HFrnlOg?
z8&&+}PxNEQbbZlRH;&GD8K_<f7kVaW`x-j+OqdkFtN>;QFgbuJ0f;kIj&)zdi~yzu
zFg<{ysfLFA3~wiDq-dt}wtI?H7oHQq+yE9acvfG-yZ{z3cs?8XB_%%Un`R-M_IotN
zbQz@0#Q{h=b9crq3t)KwTLRb`z={AWUyNTHz`6id2Cyoie5AIT`g;It2$w>6#JrPR
zJ0(k130@z-Cf3?O6=!1ryS`~EMCpV#2jr%g#FhKwwgs?VI-C-}U%FaKw<CZ(gq>7z
zb_KATTrYQ3$x7PG>^`a#9SGo$0R9Z%pbY*#-65IkNe0=kLDdswSY#0T_DVQ-U$YT0
zN983zj%)zOd3@~w-2bLI5x`#ooFvQbuhO?u0hj}L<<}UwUnc3{^D1*L#)}?Xr?CWJ
zm3G!?B-sK;<5j>BfHQyx-%87Dk!P{Fq+$SdS1AY4!$T>9FGc<U?gS9Xlra!MFn~}1
z;Q-`+#x4hNI)F3M^9J$f1Nbmn_jQHlY(V*!#d85{oTh2AOe-p-7XrA*uuD{Nnp+K5
z0_b{0do_S-GO7Vwmy?Li$`k!=1aLEesc++CE7k?t0tYln<q~cOu<xzrg;jr|xb|)U
z_hjFt^8xu^ef$%^39t5H08eEEwrU>9q3;*>m@4pu@cDdRDSF0$=K;JRl-s2hQ|@Mb
z#SXs<VDTZ%YdIp%G;ip<4d7e)SlNsBvV#G94B%4$X@kn%{mXza)Xy?q4=HJiMI%LD
zr4}3c&e90Riyuiy6GZkV=_H$u*(mA{CnkvWL39tIM-Ul;$QVSEAesh|DTvHLR1Kn9
z5LtrA8U*CBA*j59WDBAoK{z`h2Q?=(R}i_?(mX-rCFi5&rxs94$Lv@BIK2?Fg@Y(U
zC@P!osN4WqEQsQCN>EEu#V-{^X_X)BRF<8x%<6+M6^krKE>EoxM5`EW#UM1y#!};`
zTB?pJEyM@0cZBkVtbtB~>Q@S)GPw$M==lGhdssb)lptycQ6q>%7S#+QiBKzund2fJ
zjnr(vUs^Od2>S=6lXY0yIEeP&BI*WFkJ<V`G$2So{^n??a-$%ethFIU`7~oQ|9ws>
zHVdM85G{iEIf(FCU7H}<N(Z{9ZyChdt=d*W<lLrf%|=FCPL+!7g6P6*`yf6KP_6+w
z1kq95N~a(?tK6`U^66#QAiB}1*+kiH&mejQu_cJDLG%uyPY^R??}A7TqHhqxg7`Iv
zenIpPVsH>cf*8QM1F64IGe1g_9T`NH2L1dRBH@v8fj5-q)kT`&L5v7uToB`f7)f(%
z5VGT=$fK#hQKi-xf-_5G0VrR>PGEM*5#6L9CaN*FbLc0N<zLjM1Tj_hrxB)8*B8;x
z3Su^ST@Z7Em>a~xAQlDjSF&zi5c7WoFIUDv(gK-9Qx(?lid@X1r9sqxs#_Ao#WMf>
zU&=E2%Y#@!SV>()T}@p>{hhj&Dh=+wsWiJ@c3I9!nhC`tH*wl*R%0eCO4$~~_8?qz
zc2ExmaX5%kk2E`j*riUh-7MN8^I5ICFNpo*1JpmLe^L)pW$WW6L>&p@Xb?7OCx~OJ
ze^MZb2_=-daXg3<s{dCIhj>MCDhOi`=WFOpL6})8+-*amg>0pMRiE$RU^aPFCMQAK
z>=Vx5CLdp*k?HLV!Y@<$F52BiAc$ZP%`T()WrSq5%i?nmWzXSs5NCquc^bV=<7^P;
zWcr0MAdK@tT#$Jf!jKRy25~8fq9GIu;c^gHf_N6h^B}GUaV?0OLEMu5pVIst#0{CW
z%i?~?9e+KD7@t;iRkwJv*5fkV4&qJ_kEL%b6Yd6aPtNze302m|-e+$g1d)&-w)z?6
zJ?2BQWFHZp3@!EfpzevBZU=Qw<&@c-Uf@L#FN4S*LV*z0Y>)dVh%sk1?}B(0#OolI
zT~2)y#9P_ob$v>M+Go4eKD{+Y_`QT}O#BeU#~?lh@ox}aGsgZD!sj5q1QF<=PZPpd
zf_xx3aGvH{5Tf6y0udo48%dowI*-Js4JozKg%Cv;c%idoqeF;cHhl<L2^pwTl#!4r
zgv_dwC4@}9^iq^9gzO>Ypr41DlbTD7%pJnWB%MS`${RvH)z35_x?l)}LTFw_Cy&M1
zcQ$U$Z`$f9`obX;31M3!ojip>w0H<5Lh^SC=p91I5K4tmHH2y*ln!CmOHF(T`VbJp
zzRRg)LXhX0m8A-l3!!`n6+)<}I+_sHPt-_JES)&j*M^`Yw=3ICN(~|OsimtNLX{8_
zq~*7oN>q6;&H4%2TleDRHf*0q6TYIU9zu-}8idd=giZg%SF3AC454NS@+<yYAtZ&6
zOqK^>rx5B=YlkqpsZLTIg8U(X{3SxYkn+a}_37yUNNyBD;}F`1lo#11Av6ss&!o8e
zLeq@UirSniev1%(R=H&eOG;)GQ&MZ1ZK!QSXh*mlSzd}dgwQdBP9c<?r0I5AlOu;-
zpmPXaLePxWbp7E|yHk5mC8np0{Gm93J|U#aj0#~;NdDOa{X%H_&M+W^zqaXfZP&}K
zU;Wwn;R8$k5<;4t+AQz2qW{aTU9eg6zphF0*tnq~3=8352#-SeHH6_I*g~*}FhV9w
z2wOtf8p0?UkPs$?Fgb+Z*x>zjy798zKlEcl7)uxz!h=Rh6GD11rF23F6GITVk`!NQ
zT1v00nkgZy2w`OiQ$v^*!t@YkgwV*KTS}c7!hFK45N1pNix{M64xPEwc~mhcKG%sZ
zV0K{$iwKL=(j|n$yOJbkSqRISonIrpWLJf-S|(Ts>q7XcS;sXY{4Vo3B4JWQf@FP{
zQ{T2oSuguIRJ&0ol1%SX+6~n5rQ+w7&~KKt%dhRAN$Ffp(QP4Y4`F8ryF#cmFHt^L
zI<ic=BZU6RRlgL|?Uth)f>k=u$FNuCZ3w4i-y>u9%W{!fpZLyjG=wa#Y8(jR55k|+
zgVaM*DLqU$Le21x?wE|cO!BrmsV?bw2q!{#rHlV71j(MH%B7mHF$5DgXQsa1kw-Rd
zAx}7#EDyXsSIpoD!5PAh5N?Lx3dwz{xE#Wj5IiAxWpN0h_LZcT#q_=qnvBZhmm{(z
zPM&ymdqCx{dy|4Jm4FZ-9Fm*IG^ay2!|d4*&JoU2FNSb|An_xA(qB?}jw${s=aTJ>
zrmanLErh>AI9ttdJ%pKo<bqpu!g=56ZiR4LCX&pq5Ylxq$T;5#;Vw_2d(<-hwQ?#o
zSg+|{K`+brswCaBv8j(kcp~E#M%FN%hVU$e7a_b1;knFbSEBsZGW+|8iTSl#9!2~k
zV<__>jOeheU|nBJ;~DhtmDQ~4n-Ja--ce^>=_BTc5I%<RNmhd`v63Rg_?P@yb-ob3
zQon`pUG*cv_&i4UqgI-*Qavp-T^Lb>V=?h!UW(VngpnzXe@dlKA4Y~SN`BB)iqbCL
zsmT~d(KDKB|I_Roq0bzK=z!AcvxSj8j8<W^4kJexIm0L(Mu{+TNwd$j^3;POVdN&~
zq2{ILqvod;pcbS`l|o?@Ryj{AL(woQZPyp03bYF(l?>zWNt!xg)D2_Ydrhe@O3ToN
zQ6`MCVN?sFdKl$cR3VItgz{ARKwIK9VZ?`_4=WFIkEI_+)lzj~$kW&*%(Fpn2qS^!
z_Uy42M`<dBQJL9Cms6_{B&=#!c_SuJBaFl_lIho^{@7?OH8P1H|1F#nRz6*?EeGyX
zg1oyFtrtf9Fw$l0)+8)H3ynWjuttM08ivs*XNN{%G!8=?;YWF^3P^xNHf4OXFq#uu
zP{sc_jFu|z%^BM!jJ9EP52HsI?ZV3I$hbm=u3@wfqXV-Y!{{QT)K=Sx+0Il6TR1OL
z%ra?Xx`koMkRa($d0o#idWF$9jDBJC4x>*PsbLg})|b{*D|bR;KWvawEbWz4and9z
z7qRUhX_CfkehFh>7>~nv62_n~28Xddj2&SN31es&E5le7#;`Dc4P$W_OTri)#)z=|
z0tjQm7#YU*DcXNa=|_dJZEC5r+mlAixRughd6JxSM$*-r?K^zej+KE8V|*AB!k8Pz
zzOkB#RDr2sOd`)4tC<|e6xGjiSSzK|!VrIYSRPWT)RHtaj9KK_sxwDU;q0+eG*5Nr
zhp|8=53`HHm_J+7eNL$tY2zhkX&42+Y3Hqzf2LAio8-kPbV{>4j1@Ae-ll(WN0<9b
z>gq7ogt0k{En)mFSE|e6)`qc8hUH2*S*zo2>ekDQlELY1kS|I$$YHt^H}+`UrZ6<?
z6UJ`T-H)oeK11?Wnee*}+rr3PzQ!fDrbC6~=1GQ~VeAUyOc-aw*d4~6FdYAns_%f7
znrOqO_g<w+eUOs7+09<yA{TC<3rLk-L|8gX6Qy?%L{Mo8NRcW?2kE_vaI?F~?xrps
zl-`so|C^UD|M~xO<~-+_XWmSbnRg~_W|DzZ8Q4VR7thWN?4o1Nz;7AYLdVb}nZmXV
zY-R4z0&kV=8Q8%}!6zaqyECvS1A8}k_ESI5Mf^Pj`<M{lOUId|!5{yM#7B+x=4_CD
zfI6`T=?BS&nH*+3!g!RCQjcZeIP(*(@^WC}X{wr|!kG-5r821@mh6_?>`S4uEuPE3
z9~n5Gfj={lkpX{Y?}ZFdxX3sr&~?k40ENE`rpg)UHrU(lnfK!-J;QYKpMhuwVi{1`
zpO+O(j$~lq1flAaloA)jP4m4P6;zLGdIk*Ia8&~R7~0H$m4Ry+xSjz!1994E`|MY!
zFzfj*Wq`uv47Ak(bY1vN3($3e@G3d579fKg)Pl<SZ)V^Ylk8>u)XJnuiGLpU?K<qc
zoq;>lbIPb7<8B7-QRgNjhm8Bw$C5Ksx1528GrgHSnJaA;AJX~$Dm==-;|x5ZzVzMX
zokP=~QqEWW6#ilIZw8(*dG6|Sw7{zjyv{&Uri3>c*uKd#^tkgktN-})2mGFy=8tER
zky%C-8ChlI&5*Lm7*jEOnMwYcS(7t%q>T2|%PAulCCSJq<H>v>w~V3n#XK_V-ts^6
zq$jl%CvEWOmr+1Q5gA2g6qIqhoY?rhKm!_UmP#okqp<A!MMci=6H=+RtL!Z%qqvMg
z`4XyM^OTUCSFeSOh$UtEuOEn%Vl2&AhOsOoC6!}RUdFq>CR4Pcj7l=<(80*4ETf8y
znlft1s44?8re%|A$e5Q$8ahT=RmxjU#(OfF|L&=nNvbZRUG3zan}yOpCR0-qWF*M&
z%Se=IK8WCvA<0hLZ@kST%J5R*EcO!j$sp|gVZQ33w6d?i;4i}2p&~Wa+A@CFEljEF
zOOjDfMlTt?WxOw=zKr%VI><<t(LhFP8Kp-_4e9V^3ly5kNMWApDrqv(UEYZHC8LRq
zrZT!s6xNl?@^&lY&0U)oGCpA5(p6f?=)Tj*oObjf@2-uEwoKYFmdu_^N%R7<ql_N1
z)6soI^<{~j7&|jkw2O?cF7L*qJL9!yVo%<RzMRrE>th+RU+mr3n{TVwS{1%4B=(ij
zPsW}geh(rbqrZ$iLF5f$fQ*4MewVSA>RrZQ8M7%L8AHgOWQ>(DPR1}9pUM~^V<gqi
zB=LSs{ERAhusB@CmtN6)E)bIcj3O76p?%eTw2aTn`X*dT{#?f2D}}>{q%UO94Rf*j
z;+L{>3w^Mwcf5?BeBxAc1{o8`hmQyoWlWMWS;pvX{wXppf0;WhNW}MV@du9jr_({w
zBL6b}%vFDejF~dNlF=yY`=(;Ow*S?Y3a8G@m-Mxar276J=u7@m@f#U)Wh{`fP{z09
zY~%?tPVM#3D9ZUV7H{$|doFz^W8<gd_l!h36|c8db6&eGA_E!AWmp{(&*k(kk?|<E
z^IH2yI%b*v<K|r|W0{PXkIMSr)TQY2(&-f+iZ{!o{w!mKjFnVY={>WyOj;#lwTxe6
ztRY8jnM4L_We{#6AC|F>IYrkq*}%Aw@mCpZ3pg46=GyF#v4#0o#%+w--BjA$PUgE@
zWjEC|b4sFo_Q}{U<1eZX83$w>lyOl;hKxhhFq?ai$T%wFu#92_GB^G{kzVy5qk6w9
z{vqSMjN{BHdP2rY=BF4>GoEo%&&oLG^2ycnWa%ybN!4-5vvH0v<EZC?jIx%O9yVne
zK`K}oHogC$HkieEId94cGgqj+AMvToDJjAv${1tRWaw_HA)|K5USzh(5_WD7#>54>
zDE~B0ip#h}H8oD6a9PF`=2u<invCnrZ!q3uy!C%m>m}ZnaYx2Os&wlAWfaOL-Iwuz
z%D<p^k6KNJ(6zO6XNQo#o3whD*mIinn7Uu;NM-yZV@F@_ipfIT(cY2S5>Ain{x5aW
zK~(p8X$bc-8P8?BAmhEBmyB704u8e`HRFGbZ)9ZRBudR3q<?M-w0ufdR<gNzb|yK3
z$jPK=AS)TuEl2JkjxS5>H#R9>5cz``7R0AP6bPbV5WXO!APNOhIEZpVln<gv5JiJ1
z6GYh{WLvDiOehuv`uQ96^%oDK1lg4Kmt=g0u@qxzMoL=upl;i?Nl%LTTk?;O-wmQd
z5U;O#Jwa3qqEZmGf;f=JTRDg-L1gVzhWfN~#cR_b?W#enERcX8vi)778smG6)fq{w
z5kyUw_nV!GI(#9B1j^@>aAu9C^;qG8B8WkFgP^LX-x(A7gGdabR}j5}P9H^6Flq;#
zhfwPM>I6|Yh@>Fu1@V3m9|X}dh)j8<`avWI(I5z+o0p;ugU)P-#*9Q#f=Fea#+dHv
zje_`LjWfld2_4}bv8k&!3!=HpTLkfT8bT{q=^jMuAU+JD4J(}(+tQ&1(cZQBD2NU&
z??`(eP>1$HVfzDbXV$wgc6DvKG1*es+k;6@R}aiBk*at;4q|8!_ty$LuKD@|@ktPU
zgP2o8>KDX@w&Kb49^!!@`m;EIaUdh<gP05sVu-68$()$7)IaTk@L3SUgP2Wv5F>&Z
z8N}y7j0s{?5Eo{4A5A+tC7h^KpGH8@^5g4n3SR{AWe~H-6}9SPgBTaY)F7Te78Wf`
z9v=kZq#z~)F_Apyv6rH>oF?JqAf^OCOJx$jB>B#2foZ(ebjBHsGZ`tXuY!or%tfSO
z-h{6y|At<=0)7+3T*^O)#X)pS$oXv$^XPPrr_j?P{e)$H5Z?vyJym583#g@Bl>Bv4
zI+gSd*_b@Ir^6T0i9}Kg_m-9f@naC%g4iC!PeClD3n+akFDxw!VtEi-u6lk6Vu|7T
zIfxbH)j=8sB>j`xbJ}?+_E+as99_*wI@zq@P1XjnE{OHaDTiOFMwoAOm2@M8^i3Sy
zOx5b@TY}iiyzMJL8SDsRCpG6J(O=fTi~5;;f^y!so6dJt!gVe1uNG)pyw~0!_63nE
zgxn$Qr}h}cwIHqsaWIHOL1a+F58`kTM}jy;T}Kd&evsN<$aa+6b*wO^Lz%<HeJ6rA
z8N|6D{s^MSUEx#^yH<*4snQE2oettm5M7HU(@XMM_x#0brtMmoe4b9NQ_l-QWPc<5
z8AR1#5=99w2BBs0lSmj0A{2xkgb_qI2zswr?T{D?LZKa*J_;(62xByeRcn(;q?u?M
zbpk6B^5_9G2#Zdqq<A?9J4iPJX%+QA{+)ihUdK6liMGw@CH?1z!WG(eN$D!p<Krwu
zZUk{Nh=)Nu3gT7}e+BV(5VxtKW5S3n!dCkGc?&V^mFG?ncZ0acH7+)OhwA-)5D$X*
z=(s@d#+MBf>4$^Q9|(`B2M*#Hd1DYygZL+if2sFdEaVs`q+AzHf0lZ3tn>Zl&5+a=
zL9CuHybR(MmD`q&={igQ94}VRU%XJl>mdFM;!P05Gld+?#+aEgO9)w+kWN4B&dxjs
zV@_Ak^Ic+|5b}obLkJ5($QMHX5PFC3aR>!MC>Vkmf;WUIA+b;hlLq?Bgitty3y(ZS
zLMR$?e5M##-jP;%q~aVUr390bjPEd(3Zb-{I(IwPJQvD_P%eb>Bc<|`{}}1r5GruA
zVhDJvkCZAgsmxd<gsQH-E-81l5E93F-wUC72sK<?2%)CSYlX0{q1VZOq?Ev-Cxk(x
zov1J5Jorc<l!|&MH%V^Z&g&1M);3RK2(?3~6GGh(?ws<bKkz1nP>*?6#`i;L5yA%{
z)DIy!ga$08g^<pqVF)QqQW+_SCe6KsjX2tru`y$l5Z)#=b1j>PaAUk<Ord269YW|B
zLaPv3v%!aqZ9{0|+8;QXtDVc+hcINZ_;%ZmLg>PJCpWb-lg8WfkwN{MJ-czVJ7W*V
zo{YU1$%ZWZgz!lSGeVddLf;Vjg)lONQ6XGaeSr`LhS0c(uRpoUDDTkQz5yW+emK=n
z;vh~MOvl57l%Y(9h43kp&s=?Y2qTzR?C5MbIz%r?#4ke_8^Y(z$1r}u`2IdGr4G6w
zjU%5~B~7P#ydjNeoWMAdaZ(7AnNaGK5T?3(8u|105{ZL1N{f=kuR@p=!nYyJqussg
z`!)4%$9$8%5@v@mCxkLX(!XJSE+a*2c9Cl9fxo^;oFBq>Av7H$RLGRJV_wehnHNs+
zkg_m@MIjsv;ZO*RLs$~R&JcEm@FVT|kmsimmWHs<6faElE(>8fiKG0RXmct3=Ma7g
zVbvw4rLPD%*NByjs~A@^o`0Qb4HHUT%Vb>$>zQm|+{pMVBiRhjlX-IpzlE?R1mhcV
zYY5w@h3*u`zw&Gk;g9W}3IBQM3cG`OypWHS-67DE@BR=DP|k7Rp0`<ru-DCV9~1he
z;IpdERNOpXDap=sID{i18jt{)nxQP#8!46QTkdEG$3i$B!if-0(k?<cPhnWfsSwW4
zUP3q>LVG>1eOOBC57P(h0ZO9ixe)y&GeG3e5GZN<u#^i-vi48C=qfYxfZU;8kP7gD
zr$QK^5a#BU!XYRjs3Al`$R5VQd`Zy|Vj(=HM)ZfDf)>IRa$Sz<R3J>u5Udbv=9gT{
zcnI-#q_<mL4x!IFk@&R`uCu{C#v6=(hj7!~>K2o~LI@pl>?z!)rWC?m)+rxSC}+a^
zj1NM1$b^(fA*^`mBSPUx2v0-!Cxm}Pc*X`<!gwCS3+8V^c**3oyX`CToPplA+x{0q
z*?ft_Gll<m)|taNFvU5StgK}FfAkz-<P0NM7`ekJ?&^8MD8xK3W4<u*hf%;yEy(2U
zxzN4}bF>I!QP-we7;~2;(;iENQIf@X7|VuHib-kLvP>A$Z>EuDIabQM`nzEi<uj@n
zMx`(+hcRHYR5gq*W~T3~n_49dLQ*J-FjndT;?={b5vIR<qEG}i!>AR;Nd>1A2w^0I
zQC2}Y1)ea(FxH2$Aq;OAzA&1F(L4+(41XAn!e|^uVi>i<NDU(`4EkPECybj#6Y7Ui
zH|#vuP)G`+UKmdbC%w-|q*-=pQDI+l7!AT8(vUHQks2K-CFvHZo;d$kZ+aMKQ=RwZ
zO~P2)TT<&~X&S~q6-BzU&3D}M=%}wn7$1c3V;Db$(K3uyRFYwQ8%FCeJ`7_T6;~K-
z!kF1OCHGCSe;94UXctC%s==FL*D$&<>A={L@gv4gVRU9fW?jNq5cLtE&^?SkuHJ)5
zPsU!1y~Fs}P0gs)h3r4!XkW&DVFZ}GwHXk`K#mRyV|W-N!Whg^+G+@sp^U>AKV|&P
zJrS}QNtMguD8|u@pEFYG7^<~j@)G$njIm*ibM;AKjAuT<RVIe9qfRnePIi?kVN7NI
z_7rB&PQ#cL#@AHxg~faI{9lEU<9&a^Q*r$;?`(2_zG5%Q`wf#hwC%>6q#V!#@6S$|
z7X}RgSV%P+#{4i2_maM2B=UV2KQLdwc)h1YBHh0&4&%44#U<pBIcpN3K;lwzzsKU*
zFxG{!ER5x0{2WIAt)3M`N_$Th5t~mEHti5rhOsK_Jb_YJ&EyxxHDMh8QzUWxHqZJq
z-v1ILn(4nWj9;m#Dkz{}Qy81Wco@bb+ItvV!mz`Lhp{z`ZM1C|C&JiHjy*)&9mXCi
zG3GlNcQH~DEfo2C7<)N-jQnJvXCL(>O!hO9QngAV;X#fbVmuti5jXWH?Nkqt0fl~a
zUSXV~Ml?<chH*NKGhycy<)73d$RYccrziAvDb6>Vb5zK5{9}dlj6}5g0$E;Q`-_Yj
zGzy3b=^fjOA<j0;_DUEklL(_8M%2wG#zbSJuRI15lhI;a*1inw?ot?+!}Pk+^LH3m
z!njH$5XP-Au7xpqb;9*9ZctJ8@Dop8llnprlx>yXGSvAmPMs9$TzyR{>1)oUb-nMo
z9R}f@FzzxTeviq0#s^_cy5l49G4&*2<Wo?2kDy+Vo|0#V@h{c>@N)ki5uQ=!A4VPp
zc@?|}qr%zr7A5>?GXgKeAo41V*G&E+H&z_wO&FP&WM<5&APbXile17Ng=`$nu7EP3
zXikpiV$980Zg{@8mc<OmV8OYZt>~57T%n+XLJEp2D4{s@SXe<(1;rE;QIKhqheEZ-
zKI+Qmu1u+W$9wdJr=)^+6z7B2(XGx1x>9t4`$c-UUs^#K1(U0^JhM7ABX<MB@(SKn
zutdR+3Mwe5sGy^Qj}%m*O%$|L&`QB=J5v<}O%*g#P?ZiqK{W;MDUcNS6})=rrH`T2
z71U6i@2WK!Jql_u5f~E~DV0W~h%Wak@G+nCN~EMj1+^74bW`gvd7rVaf+Sb3r+|L^
zNA~quNoH)|rdI3VB&8@wb(J(G=?WStIPg(QV^?pYI6qJz<K_zHPW3-M;yD%fwNTJ@
zYJkEAO#0gX-#q@-3O-cOhAwJ*J&{AsTdB5GgJ*s16kPqps~+&Tr=osZH)rAG4ov1f
z6FVvBtl%pJvlJ|@?(3qUtAcI{c0BSW=Jt12&_lsA1xIzEr-EJzhAH?|L2m^gE1*Z7
zp$hsa&f^b-{t7-}-d90CCIJN$D5;haARNGaAR|QwF&V62h^rJ|RHd9Ct_q6Ex5DN9
z-p>>eAFg18f{_YFvDrk%(TrmmKUXk@$rp^2^Op*)H1ZLlFiydE)+e~BMHW?=#C$U2
z6vnA;Dm~FmS1^N5d8UHT6MS^;NqxPwuXw*!Fk8XbcxSPKIaC*UrR}dh-zoTpxPosL
zyu2?Ac;cV0VBT9k%KKJXe$)TGf*%yDNlRLwU=fw}@+=EEIy5zz#0r}{zMS5gWyLv<
z(|%I0RKXqvzbja#V7Y?rR2>R_rh3T`a_;afZkBn4f|az##lk8Ds}=l0ZQ+@?y1%qW
z!CD1Fb9#SMoNLND1=SCEXb}wJ>lJKZaU<iejGGuKbu*K9lf^B(IpwgG$u`EU4aM`d
zeG@MVI~D9w@W;oAy-ua?rrOyrtlB0lDJbow9bL|}Pr-f#7eBAReW-LmLB1>rwbzw9
zMh$kY=b(Z^3Jy~XEtGtO%2q+vBFV&0{v;A<WCV^YI6+-R)EB%ZUA!$k8<%og!5J!l
z6=PJKRd9|vHx>C*{Gs4HRhELg3jS1ZL4l#br2Q&59m}jLh$zTVAS(!xyO#8SJ1(Fo
z=v2}lQV?d++Xzs!b+l5fxIan__PI|}Fm|nnNQ`=qF#-`?!MFt}wWcJtY}mt6U@N#m
zZg$BNS8z!|sk^>w3TR!v%hao^O1R4W3gghGsgLJLpZ4-!ryAr@!DeyaO$GD;;udv-
zQ~ZA^Shv?h;cqGp1>M&=e9=1ZJq7m_Jf{v^!2{~edM7+o@JPY%>|$3r`7xEA<)bFN
zt4;C~<`jKOJq+`I8J{uktKr*lR)}Otc&Q+liV|hLuN1si@E`4Ki#L;s%&J4)D2VU%
z5*au{%%UQ@iX1Aks-P%|*_f0&o-J>kL^2y~1ak6LOE#zHR-L6?_DmP^s33f2R8oEw
z1ysDRqP~iPDhjEnsiKyO!YYcWD5s*lilQnW4R%(mE~a91Q*n_IC{8u&_myBQ$w<+6
zn3Q5Ht)h&pmsOF!eHs}|Ih{rR&GW8`3Mwk9sHCE@iYh8fSIFLExI|w+cN>AKDuz!?
zFL>NrLq+OP2`Z{FA^skd>WojCc}aP5PZCtb`}9muan0|Ww%fa-ndng=s_?4tsYs$-
zyzxjX_H|A1t4LJQ;I-%b5B&GLO0`wcz$c0lucLynu8I?#y+raK^VQ>2+BTUsQPEaK
zI~5I8q|n|~q^a1s+<Rib^kMlV`rMGNqLGRgDn3xrSVa>R%~VXgnMJ!>w<(j2Yy3yo
z_z5XAR}nG-L|Uq7rQ*p~QX3VmRV2)ks)xKE(m}RPBTo9F%;LfCQ;4@$(LqI5swu^}
z&URGMNkwNB{yfPaF%CE?T<n*2!w7VtgZxLJaQt_n8&$fB9x8gO=&j;o70*8C*-OP1
zUp>4?%hE7yjIUlF7C%wZS4H*z(n;*cWB|DklK^9X6`9Nc8Bh*`c#|P21~U<t1V|jJ
zVwj3gS)u3%6`wI5?ke^2J9{6gVw9_lChszxZNE_Qr3zDprDCj#aVmC`bE+7xVuFev
zRs5u4>eH+=$#J5JNh&6*n4)5ViiK3I6}@>HdZ$t$GoMcG&1426rOs6G74un)U#s*p
zR&ln9IV#R%&HFZx*<4QjmT?~Ae8%q>zh@+~A5_r4n~5x<Vob@sguL!)>VHpD7prJ~
zQ@m2lH?>Hf!ezxB?WCpTAu4vMSf*k*wa^X1&nkYQ)-+ODLAmkk%9R{l#kiW0-gd50
zvGy%z+|0OM#Rev{`9>ALGT-DX^B!gYjrkVFt&H0kw=>dKJE-N3aNdZ1WBUf(m1z8f
z<4Y>`Qva;t9F;~3-#!)lRUA-pY=fUX|DcLPDvH1CLjPnutl|jSkO$TlcPENRRUB8H
zp70n|R-za`lZ}v~Csdqdo%ksgr<qSFoJdjH@axgyA1Z3x5n?Jd73Wp_sp5i)oYj5n
zz7r!VE;6TRh6<T^&{aYz!ps#F?XP%MSI^ttOZHK64AHx8it`CxCvU&*`?Z6(IFsK{
zL0HcW*wjm?xUJ%jic2aktGKD+mI}RV$`utiRL~f8dee24DwJGKOu5cDFmE2>eGex`
zDtc+q!e8WO4}`x}T=~bdbC#c;O=x`AT^0AJdnCW2K19U>6*R-{A=UmoDf1GM{?%^G
zPNe>P#^++YJP9-f?1}2Uc6h4dAC>-AjAyEIH=94=;B)4=n7>f*QpGD)UNdHm;6D{_
zm}iRM#ZS)NY-Tnlk|l!fPd!AOz+!gB9E>?5Sk%(FWzEgeJd700OC%`d<0yU2DZr%k
z7;opv-og<Si9m=VA&R0A6pP@q2!=;cJc1Gt_#;S+pkxH^L{L3~8WEI=pmYQkBB&Ta
znFz{8P(FfpBlM2cTP}jy3x!tqJpF1(Gf(**&+*bjgmg_j_<@&J6{{3M<p^k~YHBu#
zMjDja;Hg5pqmf;Vh@cvi_ZYMF%}Pl%Bd8UD7=f3LFoJ{#x-9Z~BIw^=e1EN{VS%Jr
z{UrJ}aVp&J)bA4APWvLx<({TkN)g=t+jsuDP&-1iIMF(S4<o1>K~e;15u``(@wY;~
zh%;g>IfC~i&ON}8NOJuMW?IR!&UhL`(2&mejPn5~C4!F{`6;AQ$u#n}G6Rhw82!|<
z;XC1j2pUJwB!Z?9G^1KOnB0O2ZE^a~Xw;ku@$b@mKKQ*VCDC(M%LrOUko#*fTfr`b
zZ6atJL5~P}M$j&T_H>X_{oNyYekN;&2s%a3If9N6=WX*xjBnDV?j!wOA{ccr`LC&B
zw+OmMP+)la!Ud^A_IykV{cV8?oE~_4k$nUwc6vUc^Ie%jXZLXgf3HsI!$<_v{Cy+n
zN3~oiA;36hR)zi%3}8NxacBgCm<(nl%OMe{vPfhYE1$Z0*A>YlA{ZIL$p}u-;ZgZS
zuq}e^5quuOm<XmtFg=1VBKR_bNfAtrAn=nw-)qLwTfVQn<02Rz!Gs7dN4ygwXdd+w
zId@O&ebHa0Mfw!Vxr2D$<1e_^Lw|gjN_CXSOG<@HnHDt@|FFC>NTEWz()X(fW<~II
z1fj2mrL4@3U`_<zFeihBOy)9v8^OE?=11@yM}Kf_zNfRGwHdGUrLcfbu&(r$FJgnm
z5iDWyqig?D1S=LMlFhORmb3VC1ZyH#OFBnax|XY$tY-Wrg3a4KZ*yK3!6p{hGj3qq
z$VdjiMzCy=lmBK{`7MGi%(uEqiKU4<BG?(h;Rue9=V$TlieO&^`y<#*EspZfBK;o0
z-UtSpfrlN%e5XCzp4TUy5lB1`!P0FW8p5%1P1?Z-2oF)ET$OUxu1Bj{9a<yOiYrGW
zI2NHllcGxAE?*asPDG$>Nh4y#(@#fmCW3z=_?Mbq1m_~S8o{*){)phbQ=zyL!JpLd
zuRHfMHnoug(uD{vMvxJ~xEcN|e~EGgL8>xNiZPN+n2AFE#w6nEQR;JYC6a;WDtZJ4
zbJJBUDxX3k*+laA<J3aerC*|6>qcja(h#^076|*63;*s-rIvC%f+rC?jo?NEHzT+e
z!CzEL)uqSOOd|NDsrP;a518C$yu)}mf_qHJU}Tm=!iUr^>Hgi@MB<OAz}tF>EcbdT
ztKZAjUsbvO_;cQ;FN9}QUlHVrB6k!oXkY7vml3>*Am=GT%H~gKmN@2$@S4sd0y@q&
zjM<_N&lE*wCd9Ka$;!CDnlC$(9E>>`$)*>?JW=G0V$<@>G!~-tw6s}fAYT;uqbLwX
z!6-b{#2Qf)ilT57)uUJ<i$$pOr%f72KYu0`i=ucGmFYNl2oy?0QJQ&4#&=x36q75{
zN|cGBEc0?vRB%(vGkG`ad`YKFD!O{5DCT7KzRkG`i&YuHSS^b8TuWMXXr3h&A5@=?
zwk98Qt*G-aZ;E=N5Tn=}#cxq~qwq!1KZ*fSNKyEs_$Z1_Q6xrDJ4)-k;e#mZL{T@2
zq$uh|oq1TaI>Fs8-s2y1r6In3&Is>ELG#4xN0H2=0b^Pe4Vk1crZSRQKSfAq-iWa=
zV-v=vjAYX+N}ZUKCj}aR(lUxxQG6Ihn<)CM6<S9@cL*hA4=n(AB~#`c&pWgwC5rY@
zOv;u-(GF2(=tW0HB5MXEQK<e~Lgy$ADMzP3zE7g)8pW_u&IgEz^D}pgI#<>1QS^wS
zXViJ&urt-yCyHKC`XVOwX8f43T_iUtluBJ_U&=wNPC4|8A`qn?i2EtD=#?@sia}II
zQG64{;3$SfF*%AUB>KEVX_F{Eje^!B8M{;XEQ;Y#=h8VL>hw7yq8JqgU2{irlwPyb
zDgmRTxI5MVc@*Dk!iCe`F;NhH5yh8G#xjm$9M4Fp(+7DcQc+Nu<W8XHYr4J<d6+Ua
zifK`dI3dm?CqE*bT;Um1L7YxURY9D=nESEkt0?^?$}=m9YPY<9k5BwM3c}e@Y+o-D
znM)-@-WbJCQOt{CeiScHIqwjzH4vo%$=}ftQmuWP{6iEAqgWKBZ!0L3JAuOIN$G@(
zIdw@C1KauE>Kn|!(kPZi(Q%Du1sy}a1bRVAL+_SH@pIG}&ew9TSpKQ7GKy7Etd8QB
zC^kf~G3tywKV}BjL=m6U<K&zkYok~fg>D8&U(cze6Q|iszfu#9;_ZZ{x%c~#@s=pI
z(ve5;DvE7%YEj5h1gZL>*crvSDE^3IR}{PH6jE{y^5on@6%@r`@{sA`-Y6|!hC^Is
z`=dAzMTs1Z4$>)1N^QKS=aXwGJKv;b+)saE1}J*$TFQ|qj*=VGw!K9PXQMdo@)Jx>
zGM-{Q9mN?pHD~$!WdD`ldpj<i=iU8DyFTgL-bwT&NEf2G7{xy`Qa<%a8B9*ql0s30
z$!(&z6NM6`rO)s;dAqk4-Ge1os85a>p~|K9e$Eq%LSv#wahZw1NJ%C+Idj`p;!#|3
zd8rZJD^XnK=(Q;RVsf4FhHG<^$t_B4`oA@Yw_bH-xEHhnccZvR{dN?Mi)Nu0-6Y<R
z;z1M-qj(g>ztja46(3W*NAZ+SiVofq3l;Sdj<T}#OqSN4^bjADEIo_jc@!Djg*u}J
zQYdNN5{ahwzK-HQ>ZxL=8^fC@GR06e2E>p#hAc7Ui6L*yX|P#i&c!ra4Ev`EmH!a4
z$B-k2Nx#;jfruY26>`Rqi{@D`6>>8^_^Sr-d@<yY(SOQ3m1Ce~{0qcTBKE(xUIm#H
zilH!*BCcLEhGH%+&cy1Rvm}#u7)!-aI)*aL-(@VzSdOtgBNb7F&DkrsydslIjM<uG
zuM%^9$4P<yFIg>y_hLwh!4pIE81|G9>3b^;D6J7g%@}IMATa(FOKw=C%c$cbVXt)o
zF^0cRXRS@eHOT9Y!AGZDNs?ml$B-Dq*hb=}FVnhwEj8TaZIH$Ls!qyu%P&{)CB;xL
zhK4bu#IQ;i=!N|IG1QMCIff~fe3SF|S7Z|#P!4$#9(3~(rp7=|g=sOQlfhAeCID_5
zDjt`7J-d1v#X#6Nh9*piH;tj0%bUm0g82uo(lUlt%oF}~Hg6L{+ZevJFwa7}7~041
zfq|9=I>gX1hOHX5Y4|9HPBFZW;lCI<$IvB)^D+DxL)RFsFot0<d>TXd7<$AoD2Bn5
zc?`X%FymtPsCcf2RAY|6cg(qk_?WQ|BSk-9(wDJc3;|c~AHx9V16`$iK_5+wq9@rQ
zF$|44{e0)E&Tx^<U->_aVR#H*#V{*|5iyLU@`+(;45MNg9m8ZgnDyf4G3N{5msA}w
zjEUik7^d;JITAaiiZo<p9JvA8jE^~=5hui)k-h7GNq;+aYZBX&UT%)C=SN{$4Abev
zCpx3MXOP2Kfda{x^jlyi^X687l&@o$9mCHtte^~I_$G#BwD+CDTq^1qzK_u)ef;|-
z>4R4J=EX2ShDL9azN2FFNW&Y|qmZVi^sxd9*k)l2#L0l{7sarcMdC|hbXVhK@)P4y
zSASKe<nkD<PZcQCS?G-aSs8Qgt~ZgV#jrYtUt(Aj!}=ID#IQC7`X0KD@ysC~@yqA4
z6Xw;#jZ~hgBAxZG)ao^n0*&+89K&xhY$3;p;ZO{RIp=MRzcX%+VF#0)jI`ffG3;i(
z$5pUaBz<oT`&ilU>IY&t`2SlT;pi#GqcI#~a-5NJI1$51=KnY6(=nW3<*aLSE=ChQ
zoYQ}6bAc9rh~Z8QcVoz{WzLAfiouRSjv*LBD26a~cjJVSPX#3gm5L<>o!qIOKN3SU
zh8TJNQZZ-I<mZzUr_T^+a!1{SMuY}+m<f%{m^0mjjIT=K_QJ{W7%lFKzu2!X$8aTv
zTjZ<r#P^2!uTp1{FX37Y*D6RvC|sxZGSq(~hMP>((h^1UTUp4SYVhwEy|Wc=Gag-4
z|6UCDWB7+^oGN0vu&9Li>V)?J^{z2Iis5n0nbx|arT4|Q<R{FZGRkEVNpChmcoxI+
z7+%Djq0zKPV$rtcUebYW^z6<m(Ma`I<f4lOB5z{Iq|r2LG}4e+LlzA+HPq6ORYNw7
zTmtztWY>^GLoSU9)A@jsQ^ODEeOZ?YQzvKntAzhqNs%5pXf>of8m5e*Z*89Zl*5$7
z!WxQb&PbI48VYK-wAx=t!xvVd`@h1xcN2?hD5jyh=3E`BWJ@isp{fQV6iR3)so@<B
zrC52_)k|wA<MOgh$}yJLP<WSzHmtzWij0*QNvuqSc`S$bZT`?u%}srePB2RX>2JK5
zYiKyTN80_;D`-g2P*21A8ax_K_VA{Kt6qH1FKW*3alMQ_Mv6*I{EUf=wHfPZsLLdY
zkyfE6<N6wsH8jxBP(x3}v-YlZTJ=3Bl2mQBKScx01WeUXc3HwUv--E&lhZU1j_)8f
z*3d-5G7ZZ$G}X|I%3s3*4Kx$5xrPrkw4~I$QVR{UR%UvANT5n-rD3p!AsSk1_)vp(
z-P1<H$`k2rX+tZ}Dd26Vp*<@d=t$@YHFV_YM;bb5=*+wuV;4r+wkwm3^pVI_dT209
zc`1oPZw>ue|Cq54<0r0VUvhv`BAEp=^rvGx=6So-01X3On?X!&6cmSQ_+*gusfNlU
zq+uG0u1oH}E_u5Zpb3eeX&A0ygocqCMroL?;Y%fTG~-we<CuJ|VGNTm7|GyE^5hJO
z$aq(otYHH4iLNq915I*tjFr?W8m7AXG!3+C5@(QshOb!vhH)0-*BWNOHD;WnVd5ZX
zUvsJYG|ba5U!zA7=Qy3f<U0)uv;A*hq%731NW+gBF1E@^<IKxflXA<x#hSCU=@P21
zm_(%ibpKBp{HAxQMzfWj=+7EfXxOabHw`;IDJwPns$r9cRT@@n_(j7SYPJFA_4TJ`
zg|$>Bi$o%X>zJ=++@N72lb(~Eq{ZI|-<<XJZ<a)>f{(iF**ib;ud{_M8rsmChf|*I
z8g^*dpkt$sof>v&_)N!e9lJH`(Qre<O=`{>_EKGIxU6BHhW#4i8W!*NTpi${_0~GH
z5D#cLsNoQu*B8QJ4LZ4y={cg|sD@)2ntwnii}M<eGpFbYYJeI}X*kWwSyw+p)%}k^
z1{BWGDO_>*pPU+Gyuf&oF@uo|WNJj09Ltb~um*+oD5L7yM5qa@a%^I*qLC}+^pQe`
zYS01mF|S%7SsHBSq-XtHP#<{qZT5C7o$HDQ^@)#0=A1byUe$0-1CinfQm-?ac-(tS
z!(UW8I&$jxTf=P)_cc7w(5h<s9V+3!YTVOsSHs-6?@ud0Sn#P-VQH0z8XjqQqQMvN
zZ|&;8(B1!-`l#6{6uQ0ikoc7PTMhqect)O3CW(|c8lG!-q2VPfuX)>7%)R-O$cDmy
z9R0Sblu37TrjS`j7MEw$k&StFS7}(X3q6PC(w#xSLv-ZUkw-^f9r<)L)6rZ<ejWQ3
zdJe@r@98L@qo9sLItuG3p`)aZE2>yThgvEhk)j+WQcOp2m-|aQN$+s9f{s!;O6w@Y
z(Q=GsUCX_t@|Ab_yE=ZZokSZ})KN)CWmkueDlV_8Lz|IEHq~5(a;UDOhK`y#YU!w>
zqb?^2bh1nmTuYA*k-3*~kJyOvk=#_jjzpK&*0KGkWJ*oaQBOxY>+dr*WUSAa%t&Sp
zbkN^piKMtnDw8zEghnZiT)nZ5CN6KPgZ^enTeV;%@}T|z9Utgu$<bCi4U<L(=B;&n
z$fOM;ZPJ!WJ4U)*chvEbj!!t+Nk?ZLy<E#KI=VCO>MGrITzgDkxWpc=(o;v0B$CqG
zRX%3YN5`JSe$pxQ)zOc|fNRrV$I9%^@eicRogoZjBr;e>>rd+w8A_FsBo1tuGE4{I
zr#fgv8Ich>M(X%M#{wOrbd1(9QO6`5pX(T-W4sPpT{CT(aHg_X9wUCC<4dZ72GUp^
z<8-XwD1=%i(VM*r&BO^h7GL%}DD3O}qc~Z|6df~kD37G6<h08Zrt4U}N0>&=oXbaH
zLLq<NlzPvvNHcYOrDNEAVV3UPx_qzWYmUy=F-ONY%qexAj=3)XmfFZ{KZ)~Q<vSho
z3OWkq@XMLxg*q1LSgK>0?yM`aSjQ3_KkC@p%1fhAdL9&hqBDgwd#Z5sOfoIYyqsK}
zPXCQ(jgA$37^`)hxhbsFk-ek1N=LaRV$vXS<rvPN8s;a`y;ezUb(AgPUq^+YgQjlH
zt&v<d!$-=mIyUKespFN7%{qP~Z`5%_#}+yO%3Q}@9oxvIsh{V4?a-YcG3?YquUuNT
zPar-jS=>cOm@HoFAnu{vjd%9DGk4~FI`->0q~lVa+_^mY59nx+y}>~p7josuS1U8|
z31;rpgU*MfqdJc1_=`G29mjQ?(6MS+f=ac#&3jVEDIKTj7^aGktNPC9^uJWkuqmRV
z(~NlUS&p95@dp!1I<MnT+J%mbtOOY|+*Db|qvHaZg;)u@dg0eTn%YL$(ve4WM0Lb;
z{M#Z~({Wh`Ey_VbXJRm#IxJVWbsDq!KbuQBYUdT-+FxPuDzz6k^*XuhL-B@=o33(8
zN5edh{c`@!cw5IE9ch&_(|>mE>bR%lzK#b}Dd#*dsQe}GL%Q-7Onjtc`Wo-(a%m{+
zeXQdNo&Gt`Qymojhmpv?I-W6q&PdZaN!(DwdDrw>$A2UmsAk}ej!XuM7$|BW&^T9S
z0|!<o)cnXxkAztaWHpe@Kz0Lnc6;&|&cwqUj6`xW$z>q7t4KUOFt34pu9BZg0mg!i
zg%}GPINQ@pnG`cnocKhkyx}~Xtb)IUfszK^F;L1tSp#|Oz_@1Vr43r$7bS;#?^*#u
z3M7_erKTMyxj*Gy0~HKZG*HPv6$8ucKyy1#*#O}bJFxm${l0dfs(~8AQYPo<HEDDD
zdj_f-Xl$Sfi3VyKNHLIVpq2r_fMmc=uSbT|NiZN9I5$E{E!M?j;PnWJM6Us#foGe&
zz9Dr;r_@9PwGGrYkYu2af%V-}`-&+KJSi7xmVNisdIq+4Noio9p@H|Q%*7N6^_e8o
zPP?SMf5}(2WzyX4sT7E(8AzwScM~g|PCwozUn2vAbeX1QZC0d7O$}$5aSOv)HKLi}
z3<hq_NMwZSnY2JCSl`>qKx+e|OpG@1p@B9AE*Q9Ipsj&+2BsUBVW2&|{GqH2d}g4d
zfsYLIGSHifqPe$|fzAfH7#N>fJXScN@?D`T*$B>e@NNdW8~AQ=S`Py~4eYZ6w1UCG
z`&|fsYAk+ippSvR2KIaz2sUuOybS)k{wGu{nGy~iPVQ$ouXHE`nDjR=fXP5tAH-xZ
z;}8QwU40li!%=}Y9ByC)9hHFz21e2e8u;A67{i&4H`>6i&;0*<l=jZg>33_2Ul>q|
zB#kwkE}F=f9G$(dPWN4@<5(PBE~$6Ugoy^|?50rx8YrEXIN3n`pl6DKn@c1LQw@|~
z>JVCYh5D$O2EH<|+Q2UcW*PX}fIT|%JOi^0%rTt*@_a+Sy;+P`_x@BUfgZZ&8pyQF
z8KLnl6?>k9fvbi2RCETuH}C`b(j)(JI>%c+dd0MW-21SH!a@U!T)vpe62>15{KRCb
zo4Sn2vFzf{238nYX<(Is-;BNw>;R$vS<mem{S-T}#=u$whYcJtu#P;_z}$(_E(4(*
z-VNlI<Qpp!c3sQ0(ZH_;2Bvs7anfc+viXh47RIdxwz>M@Yq@q9*vXq0iU%l@>hZuz
zC4IMngo^d|Pzf8@OYT9f@|HwlzkwZla`tbQcz~6Iu6~H@>v+lFsDWeTgvW*B1|lzn
zh4T|>yp7Prd&0m;1E&m}re<j14+D?)rJbQ3gGp*UP$^qdCBaMUQUB8>>AZnI4QIs|
zx&iR2zBUF;%JXFykPYNDk<Ubsj-R?R19uIC$t4V2HE@l3jDud4n^my~nVvltA_k%c
zVg_D}sIM^^)H}8C>jnl_s7E3NlXZ)HfJvN@^h-=GGhU%qJjzSrb;Ei8M!!|PO||gC
zcf&wh<K&wLJ*@d}8TiX^9u_`socy-|!d~$}<5NQQ{Qi3e?i={Wz`q6_7<fp2Zs4hb
zM<iYmv(*(J8~EmykNCnYNn>*QN`0F`-urk!%I*I=&kQ^_@E>*W)X|L*UKn^qeS#{y
zH0Z}e5`}$hyvZAc*W@{4gu>N)nM|jp^j#wj31!V}B8!Q~qC}JRvYPmHfkfZMvYF0Y
z-Rz7x7;~D)#UwW)rRH&s^P4DOBFRKO69r8aGEu}tQ4^od5DvAGs5dBVVvQkeYnN2a
zL~#=pO;j>b!gTJ(N}A4lyu6p4Pa*G^7~ITTim^0f8OE}V<rvAJyoq<2S76LPS0J&n
zi7KYEibapozN#i*LNe*`8P!Z@#Z-?8k;!|E)fsCr)?}>3D40lKa&Sm0ZRKT7#9oj>
z=rid<iH`_{L=&~$)VB+<*5PPf#`t%_`zGp}7-C|miDVNEObnv_IfvBHbl(5BGSS*Z
ziiw5`#8eY$CjQ(nwwmcrH_^yMW7C<@^8sTMMv68y(TsU>S82iIS|PC|lm4gjk{ON2
z`p`sY6J1QSF`Xe{6xuRrXQI8UbTHA8`A4qOi7KwVGrp@U)vt-`pF5mFcQ*Khu?J&M
z#$G0lyzuun@i9lqvX6;>YyWSnzAW}L5pYxcn;78of#d*X>eD8JO|&TEzt}}=H&EK1
zPaI}q1ReZ*@2947@%_xCcMHCOns2!2T%GG27e<<(89*mr``#?{d~RY4?a{<D6JMD4
z(!^Pl=JjK&iE$=YoA|}VcoP#$d}Cs+iHRmAQMYj1GlvT2GqKrY&twx*OiVQ~&4gVk
zmHx5PcW~zECT5tJNe6Hu{h#Lfz9LUv<GnrF`?ZN#%=;H@M9OS7Ae(n8r_zUbTI2Cs
z6Z1@bw=;!Sldx6@^G&QIZ||1+or&-H#D6fcgpT&5Gw5ysD+^65a?50~iNAL{Nk6*E
zPfV7YSjJ>I<IisD3aa1ReaU{6iP`HsW8(q(G1(duYfbDlv5N}I#Cj7uOk}^8X@iN4
zCVn%Ke}<Uzc=E3%N<rF0HDY*sZ1HTS^BpS^C)~m|WVY4BHkWUwf;uXYNOQXB%DCIa
z9uo&l9Hd>pmVP&#RrmK%Wtq;RC=}+7@zT4>{Zz}FMOy3NkcpiC3P(&FHF21Go=Q0q
z&My*<ne;)n%yAPZsA()n?08c+dq+BH;uKZo9f_72D0Np_77v^@amGZGB$1*d{$b+0
ziEHGd)M`vzFzJO7EOMKszKbRd)A^>BVM3<<pHA81*G*La(IFu^&X*}+MukyjjF^Zr
zq12cOjk#V&qA0C7Ty&o>vYeML=(dTt37UOFSzRKB9PWL*QM`3i$k#0SGPQaWSE*@B
zKIvG>zfF?&#{)M^+@!2bJT!63#9vguCT>&yB_$f?*7`Rub)k2-H13+XM?L3WPm^`R
zfKeh18@NwZ!-Vh=b<QUKF+r=WP$&6>x{E_%=DpHW>UIC{_L(P4XerTXlh50V&rQ5A
z;j<uFcxmDlxvPa@7G9h9kNPeP`7FFKk;y`43t22@Rd9KMKtoKQPWETDkj=t-eZ<@r
zuIv)BTTp(GXb^7>j^<<}Jr|RF9+52bSP)y(B2uN6l;1)@3xz2EHJ$<%E`6VvBeV0B
zYD9TwjB8=b`BYbgG3xadw@|`DISb|K*k1TcS}1Kf!(vao?)#2~QWgf)NzRi$ZL}x3
zj71ANp+R-=_nqRCuS(Dp1T6>su7wH~Dq8f|E~N5aDp`1u;Hzvo7d7eUN>waWwQ#e1
zdi?_;EVMe|twyKDHq{wD7HTk|t!gr<WkGP21Pk>Wrcsi}ir3ZYZ&rQ_i55Pv(9%L}
z3w11{T1c}nb+u5}LXw4g7OYvqz>UKDd@vo)c^Xh|mb07)g=7nnc;Ie4u+<hDT1c@#
z#BMKU`Cd%7(8xjyi>9j!jV&~>(9FV$oC*KM19VbNEzsi3wCEF!TIv6%(A)xHw)F{D
zcO-Y2oZiYpYYTlX^t14x1)8MR!9qt1Z7j64FyQ^9QT3AcWb?PPurRy7Jst2_-`~0X
z1uA(zve27~v67cUCnlXO8eQNhT^YMEc4zFtNJ%{{^m6&<Z#*BnypM%XnA0i&WEP-<
zv@q9lR!_RNz<Vbo46rbeD%Zkbs%{I@EoUgp5DTN35Fct`81qkE<uePzEsWskNXAi&
z$sgryzB)T?QutEfa|>fE`qG3iEl_kKBayL8#xah!FoDSeS)imzuFYf%Q<zV6mGo`W
z3=7>Vh%GCKb;mf%+|9J`m4y@Oe&Vw%5Pof8HWT7=EPTV9<_%Gl#zUsJ^v}2OorNDR
zVZkMQPsG9<8+UE`7K4Qr+S}-0W08f$)J`qDvarO$j~4b?*k|D<3rj6*u&~j>GV%ut
zbbX|%*G~yQQ*@2E(M(=p(Yz;TeX5mARxz$-{Kdi=H+8LrbuM4egjQ?()u|EuW?>8E
zzg*Z%$FoA9-;rz`A<@-#tA*T0#obiJ8$8>nOo}*@F}E|>!MM}HE+)e-SEr;sWPjKH
zJDry)QlMA#`z;)>aNWWU3kRwH$t+!_PQ$_>i)Ju6f1o&G!6rwo?LBJY82M*4@i^l-
zDr6=n8A(57;WYCzu5y<8rEES*`oqF`3xCo{aZ-dziAjhtgHdKA;~?*j2!$|<iUrk8
zRqf;`^OyyViEhDUVlZAPSnut&7HwrGzs)dCy&NA5oe`Z2ee9sFn5F<+wQ$XX-a5HW
z)a$wAG~SyQ?o<8J)ATpOEen5H_}ijI7tzm`xJME0SfE)0ofk@XN#E(eM{PN$MC-T`
zKCtkRa+_J9aejZ1Dd~?anm(5PnDL2)r%e7~{FjkZpILbB@)s8F-VjNAZQ(x)UK>6e
zZ!Bc8k;_JI8<}lnv5~_Djh>>54y}}!)kZcO*=^kDm2RE(QAa`le0*=4*lU59)5fEh
zzU+Spd2HmhooDby-BS`y`SaN*WTUW+{gZ|KHVTlRPe`Otkjdo&iA8Ms)wqX3Wt)EC
z?J3I9Vm6A~C}E={N8e?9$3`h8rEQdBQiicCW3x+vxA~Ok=*26UDln<YNJ*8L<Qrdw
zcoiE}ZGe?(Hfk|>&$X;>qlU|CGI_g|U?aiRJxoNKUT-=XN;dp9(rq-dkx1gH%yc7^
zW}~)^IyUN3NnY{pkJ36P4xvTY>rsJ3rS}=@Gg36!Mgx~Ow2|WSR2$XvrIG>N6w&Qd
zV;fCuG_}#pcJ4Pyb(dBu-b2lkn%kf?He1?gWut|SEsGOBU?eiCOG;}SAKGYVL-+Zl
zUy|F{IJP^bEu;6eK&xrx2}mRMi9|Zu_{hdI8`EucveDVba2q3Rbg|LZ#$X#mY;?2H
z-9~>K18nrLofqJJrU}%=^|aB;27UbMZ6kTP^s$X%<r1sk7l`*^<r5oynUK<tNq~{w
zW>?DP9Y|Se)i1;a|2@wjD$;wN-fNPF+MtK!VKzRsaaByNm@DBks=FR_ir@2GEbWUo
zNL1fc9ZAk(<4YT3=^XPUjJEN)jWISZ{_RY!_<{;hlxVr*p4Zdcq)Hpd)E`G~c{?{<
zAm~%_cpDSwOjijLZP2>zQ<+b)F`3B}#-oW{$beF5xtJL?X4+V5W1Wq!Y|OGT*T%Ot
zzP54g`wFwE@cX6E%^MBm`zIjHvGI)!BJ@6dWaZrRY|OW@!p2IfEI!#EsN1*ky^T3N
zB?_N?FD#_a-^Nm#-dkd^jU_gIwDA*V-aEO)h17-96AAlY3at7zrS@$P@#R#f|8@S^
z1|{v=m`a?)t<w`%+0G45;cWtSKC5l~LY~=I%-S{|g*CRb3<X8k+t^^^mW{t`Y_##K
zjd2G(-)50$(B>u^zmfmg*lasvI4RIz;H@^c**Hg=a}L{WoFYG5F6^+Kw|P5l?6R?&
z>}?#dagYvxbxNX}F~Yqzy(IkKd%ykUQCA%C5G%)A{jiNA%#XTCi-gqU%ul$=NorOR
z=jGvP8)wK-2YKlj&hn8E(JkM38-LoM?;|&CTp%~Fsb@yS#?<)|ZABr2vyyEDnS>a_
zj0z*!&`ng7`6XA0+0dBlHVhl4tJ_R0+xZpU+x+7;@+YLe<(E123VAP+YwlLp$+Zf3
z$)<DIcazR&xkx{B`<omlBIJ)`osypSwvA1x^|ZLS<(hEM#(k=$IR1{~fsKcBE^$nY
z<B^TWHd5nAi{lA(2-M=@C?0p-^ZY|zYDs-}B>!vUnT^#m(w^IRVdEw9hP}H|c=M({
zg;zFS+xX8${fTLBsPm5_PaK)z$Q*Z+EOBIKl9e$VW7C%TC@BYXB01y8#r*P{`V`IU
z>V=r(iz7di0<K;#?i>$U7G|XgV^KGiGA|KF$v9Ht&WC_^=!{-=aemWwTqwnyqNU>~
z6Gz!N%EeJWj(V)W8%KpWgg6r7s2E2jDhJjpGs4}r3X`gFv?}1Gtg5;CdvWY5kU$EB
z8Z6d~qn4ZcXL*ry4@V_NF%B;iA7h&-j)6apM2^;GtQ$uiCX_@g#3nJ%ddsn-@IIZg
zo0`m|0b|2BXcQ$GJj;|YqJoqjM<Y7gI9kWiIF6ltGB=N-McirNP2xCuUuqghGbY4m
z-Ik_a3VaZE{*<bn^0kcP!&hA>{P4zE=H<gUhQu*6jy6=wiDKJ0+Qrd6jt+4Qieqpb
z-4n$Iw}g&yd=y8gI6BACGmc)AG~1iCf}gMp^RA5D7`w;OgUP^tsbtWbc|S&qe$1o~
z<0o<Sb@e*6y#eO^83(xfz&PISDDxCAO;|3`Hg$4uad&FHVR7gA@ryX>R`GsHwf~Rr
zGjb0mBN#_Aj$$0m_&Fn4j){X_=M$lasW0Oo9LqQ^j`2)LnGnZB=964yavW2b7k?y>
z!Spz0#39EKjALdTU&ZlL982Sv701_cEQ#aCIA&8#RrfBSLcZW9GAE92SeeUsyrT3i
zlX-E>XYw5*S$-eK56p!ei4<K(Tu5CM$Kp8VKJPhpLt5^QX$v-_T`Zlr`foqoOVh<@
zSscsb*z{WbBaWZrSP^%=t^5+lO7j0Y-c@m0TwNOPsY0B{YC4hA={vUdTocFIIM&5c
zq-o;rIQGP8l{ReP=*Bp<GWnHp6XRya-xz6=E#x_-m&i6&wlnT<Q+G1i6-TMKpKK`n
z9><|L4#%<Awb>WPe&z=l4>D4=Z|#pTIZ4jU<QU^|H}wR$>!d1gEl<U9n)Neo>RD<v
zE~kS$PmQa)_-7m!=o~i+7pb@0=FN!Xi|qnEh*6+*EJJaG<G2yW%{UY)!))Sv)3WPv
zsBwB2M>LKJITAD~(n`Kq90lM@I3p5X{K%W}Ml|Bs5==GYuqf$aeLIeEPdX2HBoL3Y
zaw(3>Os+6qWu(+=aa?C^b@5Yl)5}b^;yC-8pB#J5S!WUc+i~29L%Ib2CEShU9#!Qf
z6uE@^)cI5ExP)w%@Q|v$p_us+vRuNWI382~AIG<k#n*HqW&aOT*8$~J@qS@pWhqhw
z7LX<g7b)2!n=H~+wjdppCLN>&u%gltK~xYaQlu#=AVqo;1nHt6y+{#JNqs#9L{Sm=
z-}kNgo&Py=?zwa4n{WCgFL`gChvbhN_*0ZSf>i#xfxm_SBX~Ed|I7XPJr@m_@xEk#
za0A-Qu0np>Rm(f>E?1n({Jy*rO<(Ako$AL!ew6a#VZXiq6!YV!+3w<g>_6m4^Fvwe
zASvPJt#00uf+Uf<z4(Ck?3K>ata-NUS}AWCKR%7R%lfgfMDI<7Tb1{tf*-a0c-)VQ
zemvFP72D)|)Q@yOD*5eaHY@v4#gDe%rA|DQ$tc6i^IcW_sOAS>gH^{}xVj%T{HW>2
zV}2eo>8j<&ZNGbWT2t~lW%G7Ell^eTrgi-G*Gu?O&yTu(9unwjSlnIneD<4<dJhbD
zJ>f@vzx{@n27cUG?&3j|4gL1}RvP*3`_LF1LNfet3gOpXmk_sLCNJm5+xLlO`O(;q
zmsyq{Px{fskN$oPU_C?5rhYW{qlF*M{CK|o03LZ!vR--@)0OSV$IBgU*l<7E{NiXS
zNRs16uJAm;{G{H>kEeyVPAb^rZp&);(Vkg~Wpwp}f9P}&&S*zJItlNbRG#tUSwA{A
z&+Q_L`oK|fyt|v^V#e-%^homO{OIXNFNyZ{qi<60BV@ki>L-M6v|+}9?Dlz%A$|<?
zLwi5(c|QjE!S}fg7A*Oki+mUd)Q{JuKgP*3+>a5Q1IT&NkCA@t@%zYM@FVzIHaTyr
zCcfmiZ?SH)A)olFAEW$u$B%dE!4E!zc6p6slHY!Q?R7uikO^5UkulnjF@BJY6&xqX
z=y)L${Fs<jI$f^xrr&-vZ?fQ9f>Q)3P8IUD;526W(n0Y(Kc@Rp++S^hA2a;;W1xGU
zAL}0Wyf1vF;0J=U1ZNA*5u7W?EFTIn+^+eYAyu=6?sgE*-tWymS>(rJPWvD#2eHJD
zrG7LBpkV;ZI7$3C@5co{KJjC@9|!z6$aUn$XMTL;$1XoU_hW@0Ygr#Z4+6z1neaRl
zAoiu>3oebeuGM}NYv{_Gp2ydquVF)YcJU48mwv4GV>9Q^6vqZXHu^E`xMvfykN1*%
za+!~QdoM2bTs!XB;>T7$w)wH$kDY!Vso`XpUd+W;5A5J1Kj<F&Ui#b4fqW&wZdneS
zhgJWY!*t1h?2!kR@8R;dTzmcaM#w(F{esk&SMVP4<FFsc{PuH*h5D2@!nwE7!AHNp
z_2Z}?-}!O>SRNm`X`wp47yfS0d2)l3Cl4I=;|D)Z_;J#YQ+}NB<E-C)er-u}?`gmN
zLKeQCi}>>|zRAtKB<K8C*0kx`S^Y2i@uMGMKO)@g{J8AL&wgC@<BA_w{q}oxxnpop
zs(+C8li$9N{hDp>tMqo(m>qTQedYLt+u)TVK|g-=<2TOv>&_c~1pMgO$xZIJ-TIz*
z&}-K9-pyX9GoeF%h&#jn{CgK1iXW;U<pOvl0L>5G-mmZn_tiqp-h9u^>sEtf7k8L`
zSo{d^BPP*=U|ewe78ea}3cn@D=<h;~m&=c*xNcW*{pq*=PrT#DUw-^8ymY`;{_*3k
zME~W-M*u}cyeG<iKOP7vBqEIq2Qc!g{X`N&(Ey4k_0#|!5?(B+qzT~(JSBvb6fBiY
zeK=s>!Bya=OaNs?|9Mm$D&+&H5WsUi`qU4gVgTs@)Cl0}5qG5kDhE(Kfbdyol>nNZ
za2y(u|7ZaGBDAGwZq)!7ttLpqR~pf5zU8SI!0A-aV}c~Lgwz&%Jb*ev>Ix!&dI3BU
zK%dk`3^ZmS8B*Wf>w8zD02~1<4)C97WCY+0V0-`*0&oTFLC*@HaRBZBG6V4JaqwRo
z-f!;-z#G7VGs8}v8Mf`ruqSDM(ZN$X#{|$MfGH^%P1%Y7ng`G#fL{h?zY;)p08a(b
zJ%Ap>lirpA<Ok3yfE<ZZ$rX|($TMl57ScX|4nkT7&_+mG!FGboRW#ruc9iI|0dx}5
zIhp!Q0RIfMPgw0DO4p>`jlI3kJ_+`@0D6izB7j~2^bTN%MEfKy`wQtCK)<BIlW7M8
zFff4UMH!sb2MLKZY(cjLe5feH1bu?T1NJG_G#Dw-7X)7vd`XZ=F9&dCkbN%htD=k&
zd@Y&!x{x;l7@bsj#_Xso&anZEW6vLU-=6QT7Vu3BU{V0H1DF%Q*;TGL16VaSXBMa2
z9>?SWHpQK9(OAe-!M6pePYd83;qM0UUI5brm=VASqP#CSGilkiq${w{!7Ti*hsY?O
zvg97(s#KW2g3e{e^^Ok%m>0l&P8BYS01w!7FXF5YK-unM@HFw{-glE!sy&dnl$(D5
z!2m)5d>p_h0sI)ir2v)(@F~~eB*(=7J`3P;wkUve0jvms2f^{^hRp%2WCH{EB7oat
zQr3#jq}4*!2qr$sI`WHiT>xJuQ`ZaG5WvQyvMFF6bHR*T0@x~iTL51Rp}swU9m01C
zekHgonYufGwR7!rB=!WbH-K+MKN7&VLiPo)U&w&~4hlIGz~O?V+y9+Y@%ACdQBmmR
zWB}g<@O=QsMEN199~W}%kbQv033inA-{~2rxXhC_XIS|kT{Ji!z=eSQRWR?f8uk~$
z94C?Q*L(J|^Mfg_%K`9T=_}lSxL17dI8$QaPh7<v^3$I3{u;ow0DcbOx+uR0Zt9SK
zr$c_TfUi%$_gerr0x)W2`vV9Bz$^?6-u8?Q_(;M5M7ZGxQ9cMI0F`SnfV%<v7fUSw
zD}X4w=&D1f2O*|l>1keyu>j%$>@MZL6F?$>s$<-L25?Gq+!TIG@OQ!6f;9LefOf;&
zBnKP0`2J<){YyOj9YE0rE=F@UJG(uS!M6V!z`X$O2k?L!-4#bl5JiH>-tR0FL}4M<
zC%YIe8bqo@OA0;|L~$X-1k(g*)_AeAgz#%yoQ#$d{%{bbh47BJGD6A<mJ_5I3$n@;
zt`J1UAb95|?{CyI?B_kxgXlTak-f=PC5T6Z*d4^zK~xQ*S`b5m7#c+NAZi5R2qGhh
znn64kM7<!M2%;ACnU2~)JkIdI$s443R?j1w-F$kkP7rnJ<bj7zt|7?RCT6xO<Q@2Z
z?fOCRrHze(Xb{AjMI{^e^fV0O_P6f#E9`%(7tHSG48j%U@lfa<ggc1LAf61ONf4eO
zrhMtl3UWpJcpQ*7XrHmk+ejJ*G4;WKhOv@A-y6`BB~J0S3?e6pX2P2bwh-hKN!dc4
z3ffNt(bC&6FE@z%AXl94<njDGAt^uPw+iCWUjv>FqID3oX(QN4ur1pnq`hDVLE3Z_
zLMNS*$}>Sco8(=DbPeK;BcH}Sf_N^7!9m1NXZH-ESJ3_|st?CH>g_Ga!zF%g=4y1v
z(Km>GLG%yezyi-8R<B|!{>(lgh=D=-_jZQogJ`rajf6>AOFg{XkdO2Z3&Iz~@*qA9
zVt5cE*hN9S9mL2WUI^k<4&vu^-mhn$X#HXkF9mUAt@Gs|Z%A;x62zWFCZqGFy5E@U
z=8a*af_N=x-y!yT5N`+>EjUqdOb}y*j1#2U_#h?-|KHQ2lY)3tl*vh(w>Xsl&xU`y
zObg=OAl?h&9nSw74nBj=%Z=$lJW}5~k0UN*MiB1{p*S;$50ZRV5VMnfP7rgG{6irl
ze($}2-Sv^HN=4TvK`acStKY@&k&s1#iv^bmE)8Ot5ZZh!8A+J;$MU(K1@U<ht2u9j
zSP|qe68Wow_G7KQEq`SYrCjz6d;InLiy%&QcI_FKvNniyTx;E2JA(L<q-@6ap#9>=
z^};s@ZWLtFrXV&4v4uk{$~M6!Gwts@48tqA_&?NF@7K9Hz_l}ouY&mNN%yWGzHRS)
zYLuI}Cy2eAUDSj4CWw7O{K6Urv7a+1h#!Nv6vRPJvt^E>L43#Q&8=XU^DqbEnQVq5
zbS0ec*I@MfAOb7gCxST1v0LIk7R2!&ejxgD%fITn_>+TgmOK^2=^)MqagJj##r5ob
z*BM?+1)TL4x{fb#oaZt@CeJm!7{rC3{ip&Tlpyk4jy-&Ci&d@Vy%NM#y5-Wl=IR-6
z@`w7Lxbuv5@XX$8LHry9$#p@JH+DIG3*tr)F|L{*{H$RR2KV_tn*@Uh1rgzf9|Yf(
z7Um9i-X{42UHgjWuRrNj*)4xN>hy7IK`_dobJZWPi5awSk>V2y7ANGF&L}(Wf|Dd`
zy*t68gZ48QBgcAfO2uw*r{Z0pM2Y?($O_XHmr~Jv{NTes+#W-y6~f&h{te=x5Q>FR
zp>^SVoS91;<L@}`2k{_?LLn3mAti(&Aq<^q|BB-Lw0g%fO^b%?A5~IANbOvFjFOXB
z=i;v`CCcZeg-|?%(jk-yp+pEJL-s38pIV+#DuhB6T?`M0z*#yaQHaPn#{YTChOppp
zW{r^jpKrMk8lP}J5<>Zq{a<i}5Go2u7kpH(l3-=QDuVpuwW<(isV1blApiN@HNssp
zWIrLo=O${0@OTKVLueDSf8(kXLUssGg-|yHgut_;>V=RQf+vJ0LZ}}?gAi79a5oCU
z!SJrDq1bGm>dFYgDclvp*{b$wR1A#`r(48No*Pi0cqMvwj4MlsZ4<(i!kdK9RLF%g
z+0>hb&^&}+mS?pPB&m7J*)oKjkp1da{`8R>;weMJ@<Kf0(eqTorC;{s3*Qs#)hYzy
z(;;Nt8cNbOgwPsiw-A=!ceV>5ruJfJFQkKD#}GOR=`8q+;Io3X>>{MAV80`-?jelX
z?&=Y;-;l+?r$l>&(3{gHhT1Xo3861X)5N1D`i0P+lR?2l3I>EQFoXkP91P?65C(-1
zrNa;ghcG0BSs~0OPPFIP&=7`&;0s|mvv2WE3}HkFBSUzDlOco`LU=KRS3-D|lhew5
zDTJkY#XOt63@?Y!N64rUMs4<flvnJv5Nd4pe!Dv5by1XnZ^vfum=MN>aO4XQosSc}
z(N^yScHK7b_z>RS<RziEHru?DLU=QT$sxQI!h0c14`B*%v-j-~riCz-{khr8g6Nat
zJCbyMb;`R!s4$6P2FFxNd0+6KfR9z8{((f_NGU!igt;Mn5yI*aJ`7=JjjVYg%;!A(
zJmdC{buQj%vLJ*-AuJAIVF-+VBuK&o(3Y_ItVRf*hOjJzk2z6S)%iC!o8glXh~;Wz
z5;G6jIB19Svk*RK=kIVbx<U+?v@(QMoa6^GnU}aGgtZ}@2;pQ1>q7W4gxy>bs*_>8
zkgb9n1UH7TNyuiwErPUstx551!nY@t9c-HLuLO4`_5S5tUvs)jbZ-cULO2}4H_6m}
zLiTg!2sxP44~}=Slp_-TUhrGNqg)+Hn{C;)&9M-UCzT&U=(x}pPla$ggc~7bG;}k1
zCWK2NT;|FZ%X1-|+GLxZ58;9+7n2@-458;NJLyUYS4I3;@bq`CpOQA$LP&c!g*FV=
zxp+nYHJSRG5Z>zJm(p2*KnTGk4+#kiMg)}*)DSe`x}X_?A%uAkTy<MX-q+!dhmhdH
z8SYvY#?26Jaib0+C5+#>Gl%f((Eg*9%s)c-GlYM*$#YMe>$t;(EaWdiD*HQCe|Lh<
zTRZpP5O|>ay%6q8(we1NuiSM#<;Z*xvJY=B6t<D!;h?Wb7)8VA8%Dn{Qp0#Cj3>ir
z5=OBw(!!`3Mzt`ChfyMo*UqN#n?}hnO3{90Mx`(w7D8TDNa--jB$e)+N>VQu#v@^r
z7xC{z^$N+<ibB!_pZ+3+mX*V(BGE?$S1qzdhU#HthOwxTr$!hx!+0!=T4LY~qqdMI
z!l*Cg@i6KLsVfLUdZ-u1d+uf=4Mb@u`0U<d1^ydJ)DcET(*DQGbzMpB4r61P614P$
z!PlCTcqJ)IuyGjCLd7XI4Wn5YZNq3MdUJMf(nE_dvV}jDR9Xtj5zGxEFR3@{T(Xt$
zrv+Ol^)^CYNGaYvsdNjYL)g9y=_pF4q~2M`GhsZNRJw%GHOZH@wCmqJj2>Y;7e-If
zdnZ$Sg%SDSzdq?B;^J2;_YY%07!$*o6vjYq{$acv#w(IKD2$;Tj*1v8(IJc;%6#16
zAr1?}7shbWUl1H2I8tz<jO>fTUlL@kHup(=RrrZTDWipq5`0bY^)TKLQqbFDgfrLJ
zFvbZVFE}Bo@A+ofn_)~2V{sTu!gwo;DPepV#=J15h7r2tc$ZTmjJK2a(}cVuIDSBl
z=|W}-&JcWG@Uz19STlSe(OF^47D8o?khz=>@7QZ(zC;%YW*zqOv>%EK!}us^zbK3%
zGOw13@~Pl5!H<(Rp9onl7?NrBneflUSRrJk;0;+mUxcwbj5T4b4P$c{Tf$fuw(rLI
zGK}?{15;e&d{k-!=d<W@FW9%rY!Xf~VYq#>%2tVf6UMfrzCDZ`NxoCaS7GcDvRm-$
zWa^$U_9i)R{@EvdzhIABPC7pn#$isL2wshVKgfK2z;z^yZ^Jkm#&=;<j-W~e--mH5
zj4NSW4dZwiKZJ2MjB{aZdc}J}@RZ=mFq&4*rO0qPj58umd)<zn590!--`d>EVO$hK
zj-ZdJKZbEB3=-NCdlb)Q(obPr3*$i;g(CQw^JHzVKa4;a*M<KQ#;-y;uFYlAZ(-aB
zgM7w~G-8l*DUADJjDE#Cc!-Bb=^ihV9p*X;LkU9-LknZ(OWxlF^)O;W3_(-S5~NL(
zO%Az8;z=bT<YpMRk_w&Q4&#q7{!A+WgmEW~za)Bk)3CpVP+_<${NJSIy)bA%|G7aQ
z8(uhqln6>hP%?rd5fqIeHG+pCcwyv#Db<=W^fa8sBGAX?ew&w*7D2Ibxdps<1XNyL
zKcG|u4@Xcgf=41KEn=An$_k-z*;WH+&v1B&kJ0iGq(@Lm{8SLENXzkVCNa=k|DbR6
z65pc{@Noub1g;3GMo=w+>Jik4piTsJBdE!;PG{B<d`yr(@+8h?Qmie}#|77)%jD$=
zB6uQ#`r@!2n^w*1nUd8Yf`$=fMDW(&>_!pr{1ZMM&p+i!91;5t`2~-9XFcTQ?XT_#
zG9!2{f}Rn0BJf7gCW82VPgVqtBWTTN5$~GQnHhz=PYQ1mK~o{k1akzNN6<n@w%}8O
zEd`mK^~n{UmsIkFw2I*Aq~bl5IX38H8{0<Ejx}lFVaE0mbcmoM`{!I{Hx{uyr<3r`
zf)t;L;922a1iL16Wn)fvvF{<c>}=)-L0>QFv_28^ji7e~{H^T7+01Vrc=|=qpQG?h
zAC|~4fHUNQXGPFQK2WOnd<26c7%Y591ilD{M=(^P!vsIBQ<BCbguf^_Qjp>cY|gn%
zl9xnzIjJkB?1zj-MeuqAZ$#{q*k2<#X`gH}I)X6~d>FyJ2*yS*E`m2Bm>j`pXEMig
z4xh@L7{R{NnG*zeoymObMCPQ3{k#LoTM<l&Am^H6P6SgUcsqi>*0~3L?PQq7R($Q8
zA^1)N?+T&vUIf#HmwluJqwhyBQ=%V4Fe_>EY56oJ&5mHXkh!84@MnhR&W~V81WO}W
z5W&I-sC>kU)XPn>D1ybJTs`Apl;W}oK8|2r1Ybt*2^~i8MFguO_>>KdU}Xf&-}ipb
zIo7yUuLiwW2zjkrF8S9%->L|IHT5wtI`aErYtyo}b<157!P*E$RLx|@9^G=+N3bCR
zGXg7ujS*~$z=+tdsNNjGmI!`}*vAfRjbK{@-*FR;@DzGm`8t9<LUsu5<Z2SKOK`U!
z&AM&&?2X`?2oC)}eV_3Cf(Me82f2zj|91xFVG)lAek*uXFn-H(EP~?^T#_jL{~+W{
z1SgWpNg<~MPje%B!G4qVS&5#D;JlCvf<FpgWUn@N(}sbZcsYVA5nL7iQv}zAToe3R
zkTwmQyMIaYUpXB6{;T<o2>hZ4A_zthO4=ww!h#XO4s+5~A(|k4>f8ytG$k2T)qW><
zG=f+J_ak@^L87bs_;9-+aq<XmMsO>c>#qoYPx9Ll{2}~LK|X|aM+kn({#(dDf_DY!
z?O!4HIA=OZ{m(lKDPYrH`e|5U1w7j=MX~?5FCx6CAjK!EWENA9rr-|+e<~=hpoD@}
z3Z7O_QsJ?^ttu&~te}*FhZU4o?1uyy9#K#x$;%2UC&=g5$}6ZKyrP2iq)kC8v5JC6
z733<2uFI*apqhe43LFZmEBv<LtfQc=f*J~HDtJsmEfF7AFmgf~Q)^3<WZAW}Zue{j
z3hIg2K*19Vwj9o^FGxZI*S$0nnl%)0%!ITI1x^J`6*N=eQs9=nS%R4gJVI!uKb6B=
zUWpEzkk(kilM0$Bpw12IiI|%rd2=zyR`8U97Qzea*-|WX1Xny+oUWLK_Ic83HauUk
z|3e>@mNmU}Mr+nh!Bz!r6tq>)PC<JGV-$>4&_O{*1-%vYQP4?2X9YbK{Qj2j83oTO
z=%%2%V&8ApML}1^{t<@UvBi6VpCe!AzWPJm9tt)L&zh+WqyC&&rf&205)X6|3Htgf
z=%?UC1uro>fBaD}Oo30qKn2e$7^GmZ<oY-0Bd345EhuG(f}!I4c8e@J4}YCQ9Ijvl
zM~ZWXb0g%V^2?)5SrGB)R`1ISUQzJ6f`Yoes$i6Y*Ay`CskeO3*S8x|E95IE<qa_#
zEtodNH%`HL1uLX76BJBTFiXK~1(OuKso)(2?<$zA;4Mxz1=FOeZ$Cb8iUN9`D!H<x
zK8&^t*_}i3o`UHLW=aLFZS_)_p@3EG8}hv`8Od3t4;21TX18UIg1HKoC|IiCLk05`
zEZ`uDbJlsj^agvImP8H#yZR#$7b#e*fKdh(v`oRrlIwH9PXs>|TrTCZLq3xzU2!-b
zs@;kXS1MSg;0pz-6?~~+y@E9g)+$&hmK@@Oeq$Ckg!UU0d{(Ihqni|Lw3}%gutl3?
z^f??XWt)QS3XUlFmecHbw)r4)hk{~;W2b_z6zo#4Tft%W{Kf3A73@)PNWuPbS)G2*
z-K*dm1^c*&p7!RQ_U`9cJncOwctDWROPlf+PtPLx^g!O``K2yq<g<vQ3cgcto&Buf
zdj-c7oL6vx?OK+7T)_ziCx!nYxWJQlO2KIbXBC`dt{ILC=~-ul4E!{YoJz4Kc?=^G
zy)G*FQNc9@KP$K-Hdho}<%CT1y38K%<mJrF`H3ZZ@{a8*zU`$JBt!-}A>ZT4`BlMh
z3U0DDb~|n;@GFQYP!t3d1Qmo7Owd}43i&D>$lr7*lexlD3QLchxs!hF=k1@xda4RE
z_TJr`#+~wY1qLT=celxX=CIS^+E+mR!;mi~ggh=JA!dx;QqZzl)87?5GSqWhkc967
zyQAPQ1)~j&G4Qv7e^@;Y0S$K*{L4zJP*vPha9_bV72{PrP*6z4lPa31D6AqyMKu-G
zRTNQCR7DvTWmTlAct}MF6(v;^Q<0{kuG*rwYX3R%LgmyE?TeB$s+3Bxl!}K{tiS0k
zt>V@6REE)Sq+G3(`f24<+LTlAh>CO-l~j~hQ9(uRcM4Zj@x#Ql=c}YLl>WY0@k*(;
zSGy~#SUEARii$^7{z_bkp{k01(`_fcE2mz+=3c0^sG*{!iUukgs(4IAExT3#eX4j|
zg{8KrBQ?ydoJvltP&t)YPsI}|>Z>6CpGfjgx*ct#!lA;=R23O2oMPq@EO0_B@Z(Y8
zWfLl=W+h8u-56~wMbqr?Emu<&%~U+6qNj@HDq5&$qoS>fY?Z&hB3DJ8iiwp{TZ)Gq
z!R_g(3>5QKv=ZfM6`xAODKe?Gh+ir#>RR4*D%z`fRz(*T9aMBw(OJbaNk5%bEKN_{
z67sQP8^i+%J#<ykO+|MVJ(8AmwFRY^RA9+yFBQF2_*4v6(MLsJ70;^}q@tgS{wfBj
z7$|w^pT-5wS-k@PgC%K*ilHhBl7@*w0~#~Da?3kH#Yh#eaFVEaLB)$IUQ+S0n7u1z
z1>Oqqf6ZrflnVC1Yhw92=Z4BHt_8zr6=RZotZE;xO>qLdSH%_;TUAU_@urH!Dwe32
ztl}*dAE=n6Vv35XD&A8uow-y@Q~8oLzF^v(+bi1@9#Scl;fEb*vp-KG`qEQps2D2~
z{(Ti;S4o=96yx(+3-Z}2=BSvjVu6TrReY#o9y_yA>a15wO_`L|%~g_EXHfn^6(5Ps
zBF<q)VW#%nkwy;;j4oBNOvPFi>r{NK;u94sxFS?6=VVavnTpR<jFRyhlb*`JT>p!%
zQt^d~)hgD=8q82y(11vrKziz=+4c(hQi|RvxSqqrHT(I0rQfNXx=F=msTJ2Cb8+=;
zQ?XseNfoD5>`<{&#Xc4LReYslmx?{&hnBn9s7YyGbBm~yYJTk^QrxTJ8!_M(Q4kKO
zIH=;Nitkh$QgK+t5f$I6s9GtNp<pK=GB1(J_bQI5Jm3yLh#x9UN}H5cV1GhIfpIV=
z_q2*LDz2;eMa5Ya=Tux)aYe;>6&F-oRPm$iT?M5S6hwYWJaGG>hpQ@nQgKbi&$4`2
z5GOf<r*i5=wMAJ$iodG3p~A1?H>ncG^ze$p0Tn?NAx;eLLec~5je<@fp%P*BWIbvs
zbgm{1{WTaWOcixB)YZ6aA<CUrLrIN)>LIS;KDTHU2^BY0{H5Y=6}MFUuHp|Bf2!c*
z<Sb>l&EfvtyS|Q_O556*ccfM%!JGDF@;@r>a{m<jZ)7XZu9SL@dr@us(E}soE2N>Y
zhExp?X-LsfL_<-{UIH|xC8t5tN~!O-?b%*TLz*NN*FZ5f(-x1-OR>$`6)vUWVGWfv
zRMAjcLm3SfHKc1OtD&5R@){~=cto=QJ~54fd3S%~EKtY`NF{z?$&~&`@KFs_HPqC2
zmK3UKU{}`=57jkrH8EF8*xusC$gHTPp|*y{#eg47L()^zyU7m)l~bXio`yUP`5K<k
zP+voqhQ=BiXlSUxrNOPCkp_o`3=K{VlcaRwtP&Y3-6cn-r~Z1c7z<*^)Zo$J)v!c5
zlL}L-??|KZlNy?6XrUpS{iC6ohUQY40&lb=$*5va;HNaS)R3bgR|7q>2#N&-kx-#o
zD-BO;=%S&khSnO|Xy~Y+lZLh$+G%L7p@Zb5PX^YZfUJ^Qb=L5V6#c9qQyJKng3`Nb
z=&qrshF+4|L&J00e>>YG+26R!_14fwLtimql?wJfB0sg=%?c0DFi^u94Qn+#uVIje
z=^AEe7_4E4hH)CkYZ$6wn1)w1jMCuKFkHh68eY^ef(BDOBLzwLiNMbVl9x0diH27+
zkUamdn+gNTjd%{pYZ_kHFh+8{p<%QTBDeYi%K|53HSBrQ_BKJoL=Dq4yu;Dd@FpjZ
zhN&7ROUAc^@MF3lZvml5^0pXot1Pg5SE4j~kA7x5NZ!{lQ^SWE=4tpqQs)TH5}d8^
zU@p6XsZrbcT;b4L%-66$!*UIuYFMb@BMnP6EYq+^!(z@QG2?e9W*OeaMg~Sd*6`$B
z7x5D@AUCxC+WVP?6&hA**g4zrxulY;67q$H)tupz?0#b?J=J!oop7#WcWL-u!!Zr(
zHEdvCY1k`SHfq?WVY`M+8a8X#qG2l+Z#O$*s6<AApNSRRJ6N2CT^e?a4K2SCdm7kl
zO<YkdAk6rUhJEZ+4M#NWm(&9q4hmrrG&>}mgwE;YTMb9W;di1J)Pa_CMYqQ_{Gj2Y
zh95PY&~Q@284YJO-WZ9~Vnc5QZt0EWoQCrnE+k#C6#8L>X-2%H;j)Hn8h+MrMZ;Aw
z`zcu;R)+Qk;kt%jH2kLF23MRI6r>W_$@E6IERH=8BxeunIHn`4A;N7+M|T~H29=wb
zj#@f24LY}39Yu8*8cYp;X!w)+zlNxWn;LF$|JM-LkVvjRE;@cU<}zd;C;l!;w>40w
z@>zN+$sG-UX}G81zJ|Xw{KIel8vYf_g6y;`aK#Oi<bj4lItuGZ(d`YtAhp1N4hxi2
z9S`X!ucLyFVmi`vJglR%j^a8>=qRb9l;ka_2D22@gi(HzXS9rtvO3D?_P2c&`iPDK
z14e0(Yk4c`NZ0YGj;cB;>8PxuRi)G_;&W)FR0i%g^mA-SS~VTjb=1&NGnq=u#1t>F
zz>>VSj>mO0(a}^#9UXObICZ#mKu0|t4Rkc5|0=0Z2-c@T<<tv1(imFl_IIR4IvhGO
zXul(^;If6+1=RW7-YtcCba-`SiUD<Qr&&50>v&R>p6!cvZeO%l`=TVw&h^_&M{^x*
zbhOpcLPxfaTpf8jp3>1$M~?U`_|z`=3@zaKte%dib+p#)Px=1^mRMj$Y^S5Wj%Rc{
ztD}RCjygK&=&U1u_+z`I&dl{cdw!I6(a}|k<0mygy9<2Mpofm<bj;B)S4U4By>z^x
zW3-OmI{N7F=@_n~ua15?2I&~AqrZ*;ItJ=^UI$%mJW*r>F9R#5axDyQUzGSFKY4Ww
z<q&ua50er}>Q+hR9!N8mI6}ur9k1wkRmTfDUexiDj+b?8{jfGu8OC}_7Fd$g=O}SP
z{+bY`lE1Fw;uQPCeT<H=I;QD(N5?oF<8@5d@s^GWIwtCvq~lG=#p_TS7hIDTT$b{a
zg=C73sXE?flix_80RzdwO7^AeyE@*}@xG3kI;QK`q`PMbF5gi2`O2vbR6fu#OT^ji
zkjkk{VxZ2z=!ZJy>Da7ei;np^7I5<G_*}<A9UtjfrsHEBi*zj3u|&sGHo;x;dKbG<
z{MKE7D<-B<{DfUSF>SeyPj$>V=cKZ@eHs<^Kh0J!RmVD=N5^B8jxThq*0F};7%F7j
z$QP}(IvA)h-2K}AuDD*u1|1vi%G+z7KGQrU|5t7S*{Wlkj=eg*(XpK?t5WJ$I(F&U
zp<^e#$!Hc+TafIg6EWB$I>kSEC0oJX0ho)pPsc$Whji@MaezbCz9`pq=_;uthjkp$
zaa6~5l9w63<yND%VBj|v=B0lI>c@5bz=dX@o`DlOPU=YLxT)imj?+4B=<w?}qvNcO
z%Q~*;IH%*hwC+d23!F1T3NFO{*MXNf71L8WL$2!hNeq6`aZSh1I<8BU^Pyl$uregX
zUv>N@I~6ydf)LOV)M1K!h?~C-m0P_;xfMkC5uoEPzliQg``_N8ORB+PmA#@M$<h(k
z5tF32AdBOqx+@#<Egipe<26vyz-=9W=qO~Muz^2y+@XIR|LXWl$KR6iA3^R&yt?E%
z<#j0eJrVEgc);~8SDnOnE2T29pcKOvQw=<1pooE@hCMe5%$S|Ln1M6{#SQza_J2tv
z^jylo!v?Atc+@~?17!?UG>~qftbuX{${VO4-X2N%T))Io%<|ID|NIw_N(L$?ZTOND
zid79%Gw_&!S_Y~csKNGDPOWL+sPqZ1URgR7zPh5efyWKhmF&D&V8s~f7~n;B>p6~(
zWX3*WpuT};4RkTkz(7L-PZ?-wppgNG0k4590~rRK1~SDDJ-7_Gh4b>cz-PggoyPz#
z{R))E2AUXXDrQd#atB~iGXu>Hv@q=bfzj-w&w}XeP(H;R15X=hZ6Mb`o*3jCXeFdz
z+zZNWW1y{p4hA~1MUKJ@?F_VMD}-}PUvnv?ljQ1b;2F^i>PCa6l~Rda4RkXwLTtJl
z=wV<WD`wz1QF<Hb!wF!ZmtoII<{eZyb&jiKUjzLN^fxfTz=E2E3og(uNaqg`vx4id
zK?a5x7;0d!c;l3#hhf5ff{aoeE}UPF`DJ^gffo$CXy7FSqYS(zNiQ3C#lWk^e?R&$
z7k{ARM=%5V>jvK7Fu6-skst9=wH9?Mr;ar+&cH7Qel;-Ozyt$34D2*8(ZD3u*}y^r
zZyK0vV3vW|2Hr9-#Q<N(IMcvX18*CcVc>m(AAIg<2Hr7n^@8h>;huIS+#9F3-Zemc
z&%lp&9MgrzH|91foj2t7Ceub_kJ;;Nn%?XKPTC)x{rkB7xSK!6z|9fa^9+#B75tDz
z-_2jq)O+dK?D+;lU*(W|WMGkjl?GNBSZrVk``o~1tnjexr3O9`vdqB825v0Pr^rCE
zTy&C=rJ8<j;J_2jR<K1CT9MG__d9b|4$uBVDzL`DS_4s@<YRz350GDH;7bGRMWn){
z9#t}lY|93=OY}{Gn+3NBZWY`nNaO87PRw(EWndRQr+B_Ga4^Na+rS>~0PnfTzvc$A
z$~Cc^o6)@n9yw#57rM{DepZ;q1}+)6Y~T==kAag0PH}>{v#0j(95L`M*EOfa!OXQE
zx_9;R@LB2aSc)hVj|n+$;D@Agf+N_&!z6~&BAzvHM#!af7sYeJ@BHmNZ{Pwa)n*69
ziz5DL;DeT4Mz3(h*_>XU>jr*e5BKu?Y@pO2_qC)wl~@OF#pgUHi}o(;&i;*q!d=L~
z9Roap)^8wUKoK4=5abZcOy1d~aM-YKjGXd&6HZ;#fX01W%ya{W!MBIQGB9_ey@woV
zQfy%Bl2HRO$(!EQ7UKq7hg|f)w`?caGdrC(4crp)yC9VvdV@d2XQ!3bmrX7F7k~UW
zP{>4K6aN^v%Y9&Q{sRMFTyZB3<o+vBD))rk=frE6TO;gaXd3pVm?&bRl!=E;6g81*
zqJ+u2#XJw0=<{nznu&#BPcczQs80%eic7R|#EzB}-sG#QrA?GEQPG62uD7g-AL@7+
z9+7A{6N6f`__dC=yom~;%+2dxtFD(yx<r|!l8MSmp4+5FRTI@r{9)lw3)M~3F!79q
zXD!q;@tBF7CcZLJ%S3GxV@-@R@wkaPCOVktXritOm}qLEnTdKPo-pAw;WE+o)Uf&{
z8k)F&lwT$t4NQFSi<6|035SU%Uv%BA>B^AQr`Nh@!&J8kj|s1d9=apb#H}Z?D}CY3
z67r-8=4~uas6Q9>&5gL5n0Wc9qxwy6a}zC0v@-FuiEI;3naC5*EluP|7CJ1t-9yZk
zC`+V=d^RMrIIBUuwTZ<ia!J~mXk+5vX13T?iY94qf~7D}?_{DgyUxUL_L9kCfzg{|
zXQGRVt|q#(^6Z&Hx!p|MuHj|7$n6TVe+IbN#-1kBZ61;_8y&q&o(R;7yf1J5msSro
z(ci=XslXr;1Esdlvzg_+G|SB_&N|Q=t1;Nb5HTaCI4s#rHfMy1k>c$Q6EB!}(Znc;
zzC=GJUNP~i7(dW+84B9ity?Kpm404hKTBh4ykxs&pNuv!hV9BM&VHc6%8WNL!Ng}K
zJ~uJZ#3U0l=}<cGO%qd1ye)jPiMLE_Kaoo(Q$!)3CeGh8G2O&FCf=1O>&#ZLf7rAc
zCf=8>V{yz#og&*l%fuo&F)`c3920X*d}w06i3QS@dD6WFPMSAzFBI`36YMeO<s>1}
z&k_?$O?+(P6ZUgvaSqTj6D+Y`W^tCjTynA8Po-m-`r!e4#8;SDDM?#QtTOS1iFGEv
zWS3?ZUo9QGR_xbEwQ0|u92fSjH?hIQMiZN)EQ*{(>|R!bgr#hj&S5`qHL;Ccoa_(-
z_A{p_`-jH6Ozh?^VWFgjuTAVR5iy~d*lXe&6K74FGqKOKZ?F2+#8DIbO&l<B(8M7T
z53{}V^4m0Vm;c(+c$(wrG{+Gx6L|kR<oV7-uz1D~CQg|6-o!Bz$GMzyJl&hQVn;lD
zCXuNp*|C+gPMbJm;*^QN5?6_H4&s_}8GCEF__o0lD?H~-TrhFj#1#|n^`76V<y<uJ
zqiLU0eTkD{X&#?&<l~Kh{gZLk#7`!EGjYSTUrcsQ@K+N*3%M@%i{PkgnKT&J+S_}(
z%g<fqTl?A7kdT02&;(!MO+Cy#v$dCD+HI$5LNjrfJ!wKWVVL-nD|Cs=G+~*Dvr5wT
zsEL?~zqdJg9L?M<4nCe-?y%?ZVb4tyzjF}zFwQi`EsoL0?jjrPPWyunS9xeQ^D__o
z<c^8PiyTG1_xwdC{0NYKK3*-Gxqgm0#;wh{XQGgW!WQmxw_KaU@PHfs`0VQc<fm9D
zVqs6=rVm-X1qh?tc~foTI{%mRO3|j?ysY-8+{MHoO|ZCN!}d*?rIdw-Eo50}Y@xJ;
zG8XDssB59Dg>u}tE!42^h=uYNDp{y(p@M~vUEXvHD~>oT3g0)`)qa!bgU(*#v8*Z<
z9<@-_LNyD|e4SULVeVU5-rPM-&23*GlPs{DH7%T(;;Btn4e}ooUdzJ5W%(^1&K#KK
zecZzQdd-$*dHME6Sg2>gVIjl9H>*8QSXflb)6hbFi8c_VUJuQ#toAhGhs)WVx6kBM
zSnF|GcxkOC(}K%_+rpTQo;T}eHEHPGp6UH^jmKlbYk?&Dm8`3Q+$SwGv5;#a&q7lR
z%`D_tIC#n3+(HWrPgyv*(etb6ToU#@-PoILf!O*>55<=3rQ9sOh2(g9zWc9QzJ*p6
zI#}pP8w;&1v}4hwOSZAl*21WDp11$(?J_fm-twGU=V^4y!yDw<TcEfj?9<nII$2oN
zrc`IH$D5uN2~W-Hc{k5Gx>)FH;XMn}Ep)Tc-NL%hJnvfQVc|IoV=auc(9=RM3xh2T
zvC!K>9}5F5?DV<&T3EW%)!#z2nunwxZJu+J3=rkU9(TW#%;&{&kRT6yzQ4yc)WR?e
zFI#xUg3rQm3nMMOU}4U_>^6NpBP_&sy5=0tKA7iTGN#3g7Kkqi^7L}@Ns$(>vawS1
z8x~$;XXa+UZh^&-jC{{UQf@|i<8kiM>>LYSCfIcwlI9+7p?C$?R961HdxC|D7A9GE
z)8gxLY`xE$uE`eOV(Z?tIbUrsYo1M*RODibw=K+0bxq^&)#|;VgZCW^#HM9j>?=Oq
zIm5#H7LHo@&caL!A8_a`thX?Wxj2C>e8SdQm}}u9PB04}TA0U4NGDtf6?4ZgOu6}w
zeYv-gdLM7sKHl`A>BI?(oQv6Tw$#Ehi$AD(=5@>>PW#z0vak2GKHlcnQ>yp(F1PTh
zg_Rs!3rzZqebUGKxggD`tl%o^Z@c|M3|3oMW8uX)RrxZ7wH6*4mbH$new?dlf4fBH
z?Gwt`U}2+$uPp4cu*t$^R=&S?yM-+lwu+N&7QXH44L7J>tbQgvvmm~Ca0f@(!qin6
zbVYmWyE)k`?6+`$8-j(s7Eb(}vQNCJ{k-2Wb+n`7#a={~d#aE3poK#g4qG_Fg8F#b
z-p&hCewb4%81p>n>-|<TQfKsg3&$+{#&NfB+~T_caNfcN`saG@=RITLESHsqQx;f5
zZ`-_YUe7+w<@|a!%VNXNv30RRbVbfSzi8n{3)d|CY~hlH%NDL!xN4zOU%M47nss9h
z+2o(3VmsUBc77)RI>-H2&o35!<$7<M$F45?crzlqk<Is82v{&Im==N-52HZDf+9@_
zTi915eRUwk?$uH*j-zTpv!HXN`g!TIKxAso-#ivqlZ9K-u`#X=3keG>A}2G4U41T)
zLgSk<+*H_OzgxI1#`N<?OWWoS2XVXe=_p!9@t1|aE&OBQu7xU5JQ_t{k>g)ZfGARg
z-($5GIqq9{AcVY76q`QECSj;v)>R~mqEVzq@lX_z(%Ge=xMFyVMR_s+N<@(sMb(w=
zgLSfrzxrK_mK4R?%}eFsC`w0BCW`ytyTbK6WuthdW~=XqxwmG!%SG`>loQOwP+mv{
z!HR<EQB;be&@2ygRTic7)1InPREwfn6wRZk9z~5P+)-pkQ8S9iqUhhsT_=jNH$2`I
zu3AxiJjugQTgc;rcj|lVMu8~mMS1s2ri<Ct%qODYnLjsYJL*S4Y!F35A>@ssa3pz#
z5N8zsw#sA@GdfngJyCwW@s?7Yg;%=0QDjB&(`0YsD4ImkG>R{}c%KyPTfXV`Dc(_+
z^BC%V<Z2Pc{u!?9D4vSq#N|Bq4NuD`a%3#>qNw<{-R-#&<y&kDMj=0nR-$}3(?g|A
z6m6r}%x;OIT@>x3m=eX*C^|&ZF^bVqjESOC6rH2!5yf*+JQKAq&$|jfE68Y<C>G6h
zkT7(MqI**B{%mGX_DK}4MlmXi-cj_4!WYHxDEdaxFN(oY3}J6aF-*_w{HS+O6a%6d
z7{$@!!=8^K+`kXWKZSCMMV91TU7XY8LGIp-IYVh5#fGCfpHKB&2>Xf*$r};H$SAy}
zye~)bLX=O$_+E;l)_LEH!WrG7XL^?8P+=*rusM%<?}mM^MftOHgT9rU5?_zvjVR{M
za+KNaUj4Tt{g7*H6yrDwRlO70ligh7qnIFs+*u)q_~1hENn-G(AT1|H@s@Bt>%r*T
zQA~?seiRF$I6v64Ihy%S6z@jyUKF1na?EBcQZlBq!V8@<1WDc(GBb(~gv=6b_lTEC
zbHsk6FMDnjA4V~cD=R%`yrUVBeilaYQ55T`Kj}JltI#4A5w&+n9yz;M$dV}Lw0A8P
zT*f&p<P*W=f}aY0CivB<bQ-T<{j*Z`u1{SV#VT>~g&^Ioj$%!cuZ?1z@Gk{dpDaZK
zo|U>Gij7g!pW}VCW#*=+eR?X%)+n~Ih@H;IV%X09k0KUDJc^y19#@?Qqc{}BS5fSW
zVmHTbjAIYi1>JJ(m(2XMNZye`8GLo-;Bw8F^i34|#Ad%Bl><WF@9jMt#SwP(wfetA
z@hztl2PKMY+`;~Kd?$F7Q#6WWQ5@&QUhQPK5XBF|PY9lj;#3r;g`X2VBY0Mj2mUb2
zdEq48@=`7e|55N#QoqdoEy-!a(rL`1e-`n26y<W96xW1pZ@)%yFU7;~TNF2h`?*eq
z1O>GyLPElV5kcB3LR7&)Q*){4Q5X_6lQx!+XcPqo32s5$-(n~i!>uTOkD_o4DKXrR
z;*Tiqa%<wa{G9h^6brpse?{?nhs--syyNjao96jDihrV*5wdx$EYI>xPam)69yiz+
z^o5@LQ9R(jx5U#rBdgFQPtlC5`Aa>_UL=O1F{H&%JcjYdJgG4}6vHM**71*QC&glD
z;PtG$Wcw@;14U*j8N<C}w)0Xk(A&d;B&B00ljLuH;#s%c{YVTIV@Qvod<={-REU8u
z5FFLqRVjwbG1Q3R)WEDNF+3VWb>S;^=T;R`Erzo5JdR8^4PKe-Ba+vYq|y;PI{db?
z@$D9m$51DRr*5L<P1KD6F<gq{avb$ycp`?8F}x5%{h0k8qP8)#i{aHPnGIrS7(=5N
z91?93L(>>CVsOUb5`{L6V{i-4Oe&rjPp!AJGh{Ju#7FX^D6<|kByW~X%@xu-h89Ay
zlloIaTE>tg<iIUQfww$~=Eu+~Y5BB})`D$fsJX9h*_gY13>{(^60;u??-)a;7zV{K
zIEKzKJQG8|82ZQXYz$puXdCeKiJ@x@-D2n-Lys69K9Nb0;gvo$o{QOM=)ITcx$~eY
zNzWK^ot|ETy<?br)x&6Cal$u5Gs^&aE@Hn9X<!T`)_X@dJkN7L_c{)5^me}F<*^Ut
zkJT-}p)m}L!6!9jC5Okrm)Mew5T!tWF@~37cr%X4al9PED=~b-G2Q1_5qG>A!@?Lo
zieXd?uf_0s3~vyB$$USC(J`#tFl-Vt#`r9rZ%hnhV;D!{O~cNfcaM+p_}rXHn}$t@
zVPXuE*SjcAKkb|x!&{Q{p5T-irpEAg3`}*b@D26kwrl8~7Q=zlPKI}4csGXYnYm15
zbb1Uk#ByN7x8g<)Mb>1d)aL`iSuxBOGDmQ(;D>^=oEO9VBwrB2f;&!%i(*(D!=xR~
zZ80o~VQCDX#_(AT%ecTjISk8%d>q3kG2RR3Ox);2jCymtn)CA*R>bf{469=}xX!&Y
zhE<&EE!^ZqQ!^MAjLantYUo}Q!&)vk&hRtNFX`&2lSfvPuNS^SaHAlTHVN4*xJ7U)
z=hDbLCVl!tvF$PJh+$`p->dCvGkh&%m*DOgDol1z9OBO06T{x54UZ<<7sGybEUU^@
z6SsdAKNQ2^7?c>)7>;nQHO{&o!!I#>EBt5--wFAieJ<n}cN-x;aJt5DCWaF+oD}7h
zVEVayI%)h-E^%VSNBkqR_qiC(OX`Ift_ryr!;kDJ;g<zz*{gZ~D+T;Z+X=%@F<gt`
zXAxJ_9oYDs?RG)L_bWG$M3V?dFyi|yh8sfsf&syx;DEuop%}t3K4<6anc}7K=A(Jc
z*r2&biy;=Xdq9uDh{0sfM0`>1tIa)D4DGw-GTMD?9;2BVo_Gw27;bX&kD*W;h2!|0
zQ-ZU4bKZj({)pkv82*mopBV1Ma53VWzs&O&=eF0=dVkK0A3aoN<u$v@hP3H_FNS}`
zhN2qr-B0oqSMNfKFJ1Aa#8D)UC*t_EPgc=5QsZ{6T5&uSN3l36#*rRJS{%jWcqESU
zag>N-(WPP!$5A?tnRPrR<KPZZDvsv)_KPDK%EVDFj$TD_$;-wuyh(48$T>U8@Py*4
zATy!2)3ar#w^AIH<ERqHSL?hv=X2Qv+SGf;_h=kd<ER!#^*CzAvFgvfW{R(dWPE0q
zxArbC&6ck7J{ITWPCoM5lJs~S%hJ4cgx8G&Lh8lQqHzn_FidRQzkZzm`DQkVqhTD4
z$m8(D@p+ynBhI&l+T-Pp!x@Jwj?G_q*01(X%J&j8;~+9rJM2x_p1*CAH!F^hx7yWc
z9LJMVP?I>C#?g#j5l2t<0LzUdJC0{q$vB>hqh%aV$I&{DoH%mXGm5X>Rog>e9KAhR
zB>Cc}mEf51c2b)-+Q!jY6h_+#=@>`*q|zbI$C~UO=)^vhEFVjBr{e1p#~H;pBJAlJ
zhpG6;yKyu(*lxSW(Id|D96Zk@{S;Asz2oQ;$BS{kM!8qtIQqr0d~o)lI93<)_UACE
zz5#K}D&}SCK(TpVaDO##<%hh3g%62isE}c7T^u9g@Wt`bA-<itms9nPl%yB<x!lXk
z=&L_u7TRkky~K}zIM2ext8t8uV@w>Q;@Gz-_jR!kzm)fykd~@#{6-vKrne#)8^^df
z^mOk8NgXeksOWvAl3hcFiEN;VgL>J@TX9U`T#e&M98=?Xo9&8Y4SO$+cjA~E$A@ve
z8%G&W_H@Db1Q{JvsoB=f?imt&UvOp|A0$&}37H+ooTS2Y`x9H8^Vo2%lsM+cu^^7u
zzH=-Te7bN3-!;JK;y9MX@fnw1SNBp$DllWxGKqdH_=(_h!A}K;9d~{%WQ8E@R|;7r
z_(dEvptv@Ub#d&7V<&qoj*T0f>*LrE$Hcv!Hx$RlI5La5H^;Fh&NESQtc2%EN(Qm|
z0>{=kw#RYuMb9>_z6B13mGz3Z&Ce=5)ysFs^oh8LU$JlZJ9ovgTL}5raqNj>Zyetw
zl><Wd3GV0QJeWzdgAzTIwBc0zmOD>%_whJ>h~p^hdC&D-9M`I4e$OpvlH-`*t&?tY
z*6>6er#Y)xy*L<UI3=V_%~IrNg<pu{TpZ_xx35`>NyLj1{ZWud{MmWqxXQ_&K)(cj
zVu^A56USZde%$oRHPtw^;<z5iFPx269KXg967pLdH-z{FgMtCUzxcpK91LNJM&eN7
zP=(V2bsCTuT#PB1H{-ZP!XDd{VR7a!azx{Z#SxcO8YDQqTYE_uHWkev{vOBeIR4<;
zum0aVZvLcCvA@H;Xt|?UANzcdzmp#7hn@e%aW4-4tbXkh_QSc?s;AzM<3SvS5-6O2
zGXYluDG3xw*zdD;Bv3Sg)C3+$pnL)kCHVZEt5^bQ32a%JSG0Q$qs0>_A^L!wgPv1;
zC54v~Wa`5Slonn_uxwH<m%#n>TpCnJpke}z5?HGG=y0^^OHZIu0+kb}l0bt5I=`Jy
zvquwnESa~ekZK83PbxJMs42X5IG0XpB~Uwo$3>|pSVyp~AiW`h>y=uOJRwT`q|RD3
zloAUHWer)q&J!IO39OuucHW)lP9QUZoCI<c@Fd_(phW`N31lTurd3w61SV$YG-hA<
zT~D$~zu7-yHWAV^0dgt~%|)R-`BMqBl<4)|0~noNqxg5jvhor<g$b<_Xp`VA;vVy=
z^QEnxR>Gf7pl7Ab3z}#0S<k<tQraf$*Z(n<HtiGO``J4r&@q8dtabvwRdx4H;F$!T
zP2jl%cDvnO64+eG-7SIfTU{hwC3@wytGg)sk2!j9=683K^i0^_y~lsz?v((eT_1PT
zTOZc8go~tq0t49pH&Npz1}5-)0^cOCFM&Y`4Cc&9;LQZiU33pg;H3m!PGD#P!xHc%
zFg(F;O_<%uHTIligxHKsfc)@f$NVNmndQX<Mi+0&kZ~yUl>}a8Y69aDI6B%rDuLG%
zcq4(!WxcO)1RwYGe!@Fil9)P1NXI#q>z4I0IzE939F7FmZgf5VOWOB`)A*vyqleSR
zr)C^FoHjXuw-Wd;fq4l`VYN?XzMH^%LZ)(EBrq+38h3_Le<uN+dU1JT4sm({U#q_N
z6PTI64B?D6O!M9!oPBv)^$!x5#l_O%zwbP=6PUv}T-ZBTkc4LQ6IhVIX9;|sz(Nja
z0v{*vNdk+w#7^5MmMl)7PKOd_R3G^g5tk;gESbu4Ke#;>UHE@YoduK>N85#Ga0`+U
z+~qbl?99$Cu)x3y65KVoY|sRUK#%~z0wFjF?hrg!LV(~7f#4F{bw_%vNB-OIetph=
zPMv$6y7g9dbyaok%<N3Jemkb+Y5GgY6>0cb%YMQXw>k}t3&ibC!|z<HX;>@Sb!qrb
zV0{`k2y9HlrZjBkJgP};3&pX@mNcAhn^<&7qQ#n-S*EQLxs7W>V29{V(Osg9nL8=N
zo-{n!mc)MUPs83c?BiANr0<3<4y!pXrCGTH(&s-!{}knYLKu7~4Tsb4f!$8Sku?0x
zOD_%orlI<|*rRDU#m=PR7{{DTs7Tz2G@NAPM`FpBdO7Bl*7-~t&Zgn|)|5+WILCvQ
zs(m317t?TFnAw82yL1}vc*s{T!yPX!^}WnxmIm_F1rF+!G(4YIoP3Rqq~XsqmPcGs
zX}Fn&`)T+u4Y$&;K2qau8urY!-%i6FUWQY67hDS;4aNtJ(Yz-`8&^0oKCnFC{>G;w
z-nH;yXAgN&r4slEu*V#kG(6>8-?3ykXL-&`Z@J|e8!u(M+{a4iMH*gmn>}ZFCHh+Q
zjp$p^ccKh<&r#Z?H<FeHCpQ)+ekqmUN`sqQv=f<}@T5UaLzvrX8oX)nr6HIGjk{B;
z1b-R=X}s4>;*A`(Tnnx9w_0dY>v*$<c*;3!Ow2Mx+10HUvs15S5@mMWN=F7KsN~E}
zWO3pXCm(r(tWIQeB8L+>op^XDuGYq)*`3%ou<O=e?9Joj6R+8u#wNdL*e#couKc`S
z9w+iTF)}{B$K|+uPJHSF&EVZ!XD`PQGM%^gjE~Rn#OF>FaAIeMgu+e~5h&<HA%U$g
zV=g|6UHZ67Q74KyL0EOsLVXzML*-ZRN;*-Mhxjw56bIyyt+W$moG9x=IVUPP@#Ltr
zyc5L-Ius}VwbUHjEDla=-IGYDAWlWmM(!Fctt|0XocMWyjmg6Ot*?U+<HQX<{KW~I
z6R{j3Cu*>$u076)B|d94C;TpJyc3m6*d9Mh>iF7PT^ySHGGT%fM^YU%ov7u+UQ5l|
ztlrPz5RIwmU?ZR8Pe^nk$%$k)Qrt*(BE^X>o#^63Jtyir(b=g#F1djd4V`G~)ITNu
z!ih!#ZJcQAL=z`kIq_S`cs^RUsS_=n;FlkoInmsSv?G=RhhypU%M~rf=PhJe%0^nV
z^A%$|IkL8C5cg)a{w>*d65n35gJ?%5IyrI68asW9olRv}mYF^2>O?no$%*Y81Sfis
z*CwrUq9;eMt1Z=uuLOFD_7?5qgmayxukh;JRr@*7--#Jc%yeRa69b(X<-};7@_Xwb
zCx$pN)QQ1PeC@>e{57YXw|wK|FCSCeRgJ5Y6t}Q)&0(BwCtknKHQb32Tz-GXY;(oM
zRjK*3a?QB<v5X(%#J5gNc4CSXW4Vl-nCQeLY3)0z6BBrpCn*O$am=eylg(ze)a+Wh
z=9#N;88g)5A-?CwhLvm5oa)36PE6<GwAN(%tTjzK$y)herIxF#*PZ3Wk50_xnsH)G
zY6*t%-!!wGV9^{WqP?v@3G?ATd@$uaCl)xd(24m@FnidMP-aieA}1D0cBSYNCzc5?
zV5z__qQ5%vJgFwl<xXU*l(@o(nQ<m2-@VNAS39wWD`$pntrK-B#cmK@C%RrV^RHPq
zI<bkfw!prbt80P%H(5nn#9@|cs}n_sBoKD+>f@#4LRlAfIkB79z6;r0_}z&;PCVcR
z&h^Z}cjAl_XPwy3rnuCd_}hs;oS5TCKIp_>PW<V_aV7Cp=j1v2lFE&ZCm(X+uoIh=
z#B-NY!ne8*jyiG7iIYy8a^ly_@y9uyms3t~axbSaTX;*-!%a!2*?~)`Om#1(e61wf
zU!|UN;yf=*CvG}%!HJ7b{NuzGZc}?xkG08l$%)It8E++)zLd%;Jo;5R?!WB(rX(Js
z{N<EuPF#0_-6PLc5^p(i+ljkQ+~eoQms9R=!)XHg<b9dr?>q4yuiRIuqs__eHfyo*
z7OzqtIq{e)+zA&~xD!vEc<aPFC!X;{ltfm1&c&=GK5moiM$42JPP}BdTc*6?$as?o
zuO<6N)O$Jky%Qbf96v~J8Ss%8qcEFdJ5)FKIwwpnm|akv@G@Oaj!H$J6PgntZb4Ed
zz}<VXH7LwJ^K`;8BN0(fN9b}2^+8%Ew#?Ja;6g^1-rFoLWOC_ap4r7;lBT}8n95Q@
zTBk&w6sIP;3;l~E7IC4d3prfK=|YeCwp=b05+HvfklTekF64C~pJem9@VN`08Zn=_
zkfnr`!Au2QC}{XJSwyq2;S716T+9XDQofW6M-N(x3o~0npri}=o0MRd&%`P1!uop_
zzLP5FLU|W%xNy@2xS+Uj%7xP|RB)l93lm(J=t3nID!b6pg-$M1alzt3T^ABvsOmzD
zq&hBGU9h?M)6rDEYha3X>2HN<h}vC<6QC0>P))SDi$8b$UwncKHN~tYT3gg1$~Qi&
zIOzM7m9J8h#A)Y3dl!;jNO7T_3-vkp;x`awaB~+L3V-23BZ0=EO+}lq=k@frW=zdo
zyc??iK8uMywWVk)(bl4EMB8$%<qh3muTuH;r-KXCUnH?he52Rdg)dzg>%uq}x=1j`
zVT=o1UFhaQcg~Ir16>#-MLk7RUFapyTa?G`BhXj$whYTxF7%UZe-{P_)XkNHk<`JG
zB@Y+)+J$di7$Q7WbeL#ciKmW`>`2j3qO3bwARwpnEf>JeK7Cw$zH{ksU75ynwY*OK
z&eex(eVsbVh3{S1$&HS4{W^8B3sYVA!G$SY*gccx+_lqW$ELZk#D%3UOm|_13o~7q
z<-$Ta(2vG(e|BNE!E;>r$>6yH>4Q8^c)sWY(e&9_B)nJ#pQrGPWI5V91b%g4nG4HZ
zSRvVUT;wjSbYYcbSG%xAfE78L)U~4Ni(!KcTO_;Dg-tGOmc%J0Fp}__3tNS^iEft>
zV-XXFjsYCK-Q4_LIN{RYmA8JKx<_J;OZ;9J_6h74Js|pr3xB$B(1pKTIPAg^F)ROo
zLjt3h>Z|l`;iE1b6L>dKf4^UGP4d)Z`gOr`=ZKw@BMyA6ugo(p{f^nmgKYl_oOR)x
zz<JRNq8CN)?sHsn;j-{QqE|#&{i+MO{<aXVxp1A=+92DY*%`KN&p^24!fhAcxbW76
zJ1*RH;h781U6?%4c2D$?3-?|4&xKK~a?)ga;6j51i4R57oyRUbkzi(@a_LIs3m1xC
zh-G@^!b^jPov<>!c7giteC#_H(o!5w7hEp9ci{ss@Odd8#r)OWokeLb{thvf;C8{|
z;>%71xc|H0Wei7YOA5n$TqHj`rklF|uS$v|$o<xh&)m>l2)Ph;A;Rt2ja+U-rSZ&e
z{kTjf0kaz!1Tq?aCO7XhsRuA+5i_f3Hqq>&Io#a&tqf4!7N>q9W^Pet^SF^$IG^F9
zx0&CKs&2%%@wpoX+$hLK+^8Tih21FPMmZzCs2e2>E+$aijS_~l_p-H=aA`NnxKUO(
zy_7}lKzVT>s)*7|53A@#C2=Z?RxwH~ZY+|zY=L8Ib;IUHtWjE>V<H@9IPq>&GnjR2
zxRKySO>ydo))K94#5mmOEJMnk)O91#@RQtlvcN{Oo*VT!7b-HUXy8UeH+p%{+k-FM
zXynFFH-@><*p18<TWdGkxY5K7KK`4jsT<AQXzs@CBi0sfw4Q5i<wi?4_-&c-j@Za7
zONprUXug_l-7x1&=<P-yH`=+;-i;1!babPq8~0l~I<b3hbakVf8!uO8`_hdrZd_ZL
zjYXz@Nq6ECn$(PA_3mz5S(&Ye8#I~ifkY}}dbx2=g8RC`;C^oO7f6+Ze#MrH#7@6w
zUEuCGz>Tln_{I(LKsN@tG1$%D$)>WMgZ$-i&V(US@ogRlvu9RjV{60R7{PWt$l$?9
zH%7U!+l}Ad812RwH<r7x!i{g;80*FlZcKCQpO%bsW0C;*JAv_{6Wo|+_($vLxAp$s
zjmhFn5uIw3)-8~2x*IdxSR&3$H)gpp-_1vE*?%-*eiE4N#vFlqazE#}M(NLP%rp2x
z?b-_rUMR3gbg}64xZ2<JiCgN%FOvOLlzm&~#@$BxP1IMqvC55IyeMwjSG&>nd4>&c
zY?QDyZmc!p*SWD?IQ@>$n+$)ez-BkL7|w5Q{l?vFnQ5Dt+uhh<l<pKb_*(zh(!A?M
z_qegwjZ1D^c4MC#``!4{je~9+kgz|DS`YFi#B7V>bDjQjW7)avN5wzn*8e$p*oZkI
z@V97WQHEn~9Czb{QF_jelftJA=d>GVgwGnz%s744&bx6zoQsA(U9IsC7pEIf-FW84
zRj%zf`e$el-1wI(S;DT1-WI(fdee<t0=`W84Z4}`NcJw*v%r1P|3q2Jkv|iz@z9M&
zhVz)$ukbUuH~4cmUbx|P!zboTH{QDO&W%?_{A)Mf2(u|R_+Hp8`oW0#$j!lEryDMV
ztJKxc-6L7m{l7cU`;F3&K){Wl;b?At<6Zv<F)U6*G-{NZJa||~|IcGa4>EaR^}yyq
zW)HG>kl%yPJ;>_O@09+T=YQ)Yn+MrF$eV1>;XzI@bBX5j;1hw|Mr0m=yrQYa3w~<&
zFA8Mi5r;L;S-^vW9+dE)q!bnMptuL=PXQ<_P7x1^8nudf(6dPi_VZG*edmq1QXZ7{
zppplbC7_H4Fe1x(P|o1;9{i&Gujh)G6+|m~FrlLE&)N{zw~GD|ZWZw@9#j>G5v6~k
zPL5a)>>hORprZ$I9>jalkQ=fDRP#W|lcSb!bq{I?B#71&Wee#ytFP^W!-G0v*7cyC
zK%x<oB#`VuisA6K@b!fo7|wv1sf~m=9l57wYwST251JaKtpu8hHus=~;kOj{I+MM%
z;j|HG>p?q#_J*H#H#&LH*%)W`{7V)+&rqeQzWH?VpsPf76YVbAgTWr$kvq?)Yab8#
zda&Pv10JM$@RbJ(Jy_&HKM(qQ@T~`9Js9A@Ko5p_Fx-RDTVn=!^q;N_@nEnAUwgpM
zovweH@Qnxjoy#Y^Y#m<4Oj(q5s6_UfVmXl#H^Kw{cxM#<3V6UQf8nAwiyQsKGTMVN
z9`J*&Jj1Mfy3;rhzGLJL`)m)!bGkkF-h;^={9GY^q6d>a7^>J?SBbl|(SGf9s^?8y
z-s*8vxQ53#=uG7buO9b<=rmDgrwh#RV5Z^B^593|s)Zd4nB&1u9`I)ub3J^KX`e6r
zv*<hzl9ie(lj0Y6kmEy*-aG75pTsQoV2KBtJ=o&GQZ7^v)_SncgI_&Z=D`XNR(il+
zjx6`!-gf(*)y1hjH``Zn+}_2k@!(NX{Ay9c+KO>3E&ON7dale*>>E5VO|@s`SK~ji
zZ}ec32gmL8s%^0MsFE_Kbn<T;B@cFc@Vf`wc$B309s0c3>rJ+A=heNzl6SUkrw6-u
zadk_{yxAVR(|-3`y|q0a?DOE|R{Nrf_Prk5w#F46W~0yF^8De!pB~(2hdnsx!CxMn
z_uzsDhdem!!ATEJ@$8Nzvhg)VQjU1=H?Q<Uj-#T-M43G<aDwwV$<FL)4}ZrLbH;<S
zoc)GbPc@I*S}OULxz0PK<~a{eD|W&~4=#Cd!-Jb1T=w7}5B~Mw8W-mzd#??al=CrH
zcuk#;x#|IbJw%vm)BAj#YjUEUPQuAJ{=VrJ&xOm_gIld_2mCR2Jt)#Rj&P5Qq(CB>
zKZ9yl)bW5@C1=wE7l+-0#~!@$;I#)&INJ8O=N`P^R_VbruI&o(C8s6rzmoW(Uvh=X
z_S%i&u2heE$sKj0o$$tkx7-2T_KzOC;|3cW#{qxOF1hW?kHmc7D%xac;*7N1WKZ*;
zQ}JYi+XIgWng<~dR1dr|WquEQJmvZc-iaAb%qvBBkT>a{+tvW*E-609E!u5wy~q;w
zAi_?n$Zv~_8JH4fwqQ2?f=T<<#;jTV;XM=iQ>;uXGOKv0;+2XlDzd5=p<<+pY$~#=
zNLG=eB8Q5cDoUy-r6QM#PgE3CQAkB@6?s&As^T*hc~vz0!f|P7Qa%+-WTqW;62A*r
z^Q-8RQoMi)^5-h=0oXlsBI(emZf8y<&8nAFSjD=6-HWO?Fs54(l{dafotm6fOhww+
z)X(qtEv}*jQ`^K%DM{4QD$1ycQxUJCtcr3fDygWfqP&VpLv2u@2z>G;b=Rj!6;xDI
zK`7QEg_;gkRNUNbt*RnM#pNvZETUBkb+@XpsW@3Lp~9QgSQWpG>=wL`%qnwEB-vH)
z=<I4W71dSLQc+vZsD_G~Dz=?S+B`BYK}E0QNqNR}%U4K0JBNxoDw5c9Z%SPii7HZC
zINtq&mQOpCd>qF__&hnu`?7dF74=ngQ_-ET|2b|dTB~TI;tLgxR5Vl3Tt#CQO=LiL
zj?+hXYpUX2QWBXD&SSQPik5QLtyJDkB9;Esi^&&LYL-q(THh$4t%`OW`8TN@RlLjF
zy}gPK3{LAruF%ra^G#~XKdGHmbXM^tPfA5s6>H9>o*JKg^;{}bI?(B%qNj@fDhBXO
zRrKZ=shE2*sgE4`iLK_Q4XJ%qyiilFj_GzYHt{PJ>;_Xm6?`ZjVW5gZD!x%MMCF|j
zQU|N}TIwFUn9S;9TiV$3p(^&iN&V+d>M#}KZ*^=`z0=z_slzz}7n3<1qg0Gmv6FME
zVvLG!*#Q+ls~D?doQmlxX7Ef^1RC2WtC+$TR7_AYk*oS`>f>nb-b3OhsrX(+`x8k;
zPwR>E+ooOu*V|MTKd4wzG>J=Ynu=?oq;X~&btWg}c+!t5W~-Pby=5mmrX+E#5?T~a
znxo<;6$GYkZ5{Je%vZ5e#VQpGR4inhDweAJ-MT(6i+JKHe;c04vEo5FLBFW@RmE}@
zM=vCQalbEPmZ|t~*w!|Ko%&ttloh;Gn>jM1B(3JWsMxGxi;A_pWO$~nQ#SH&rWB6e
zdKDW~EGp1_-B4TY!u1H7*sBsr)z7AOc$@m0imhBuZ~AVRmAp+xfTP4!edSEo9V+l?
z!p8E6b$fK)t>SkTr&XL$v4?ZPxl?gS#XhONpBE{+TCh9&$@R>}|KKbqC;h47pvs?Y
zr<R$JJoZ#7;joG$Dvt5uI-c~miWA96M>&A?lJ*`?>Rq+wY#EK?^kqm-syM}E$r&lw
zedF8I?Nt-WXH}e2@h|5>MPx!U=kC0U3%uSv){82xsJN=)65D5g-llS${G*~ka|hF?
z<iu_<iJR&rc<Vb3<xIG);)aR`DjxE}S8+?lU0yyaZgVh4#_jvUQSONC4$riuW0fi4
zV?D=x?u6S@sy@k8WTEXpj$!#kCh{W{k5xQX@k}Z{;p#1~ALv<uMBb(OxxVuC2HD8d
z-ZsLlCXUi=9j{fqQDOEXgBNdk0jltGeeyb;WSKhA@}6_8LdzTbQH9Fx1ubbRoB}TH
zgxrwLHk#wh#(KE%##rCIvrxS%3g5E%R2125VJS7J^2_!ynu?G>j<&WiCwhy;<i*u-
z7D9yA-CJu^)xSVKxrp^{to6b^OGYm;d6C<TJYHn>B8wN<y~x<oR$z-Qs~6`Z)@)u(
z9ctaKS}aQKY00)6UgY#5mls{bF-)I$v2uu&Fl(Hx%QihMua^(UM1Hom&6>}PPrbO*
z(7JA-g{3F9+dlWgKU;?^`z_Q$UKI9XrdgR~R*HC0)Qc8=wDhBx7sb6$e5l~#=82N*
zgBL$|^&ioc@}i>`oxCXRMHz9*dQriPio)eY%Zu_so{9i#9Uf(`Bpl~Oyg+3ys(8Vt
zepWSNY+l3&TMg&t%Bryj+XWI{TdR3dUAVPZe~L{FFKT<?@FGF7HAU&y61ej=wT>5c
zy=de`V=r89Qww~SnCJzSDM=vNixe;F3D@_cp;6kvi!)_%rbm9^MVvExIydp6l^10j
zWov3gHWO&h(KDQuUd+gwgYiomXQj6BqOJ6~ofjPh+KX~z`0rZklBl(_7hihO+lxM4
zbdl1oM$ACJshh#wz33s_Q?!@i^Gj=Nr>_?yycp?4suy2*(N9VTd-1gw{e?T2Yy-R)
zXz(ER$7Ey0Z^RiU%Ipv?hO(XKR&u%y=M>M;4>8J!ndHT2;W1u(>%~~%@uK6r`hU+E
z{GDX^q}K^vOcYMn-o>i2^m}n8doe|T&e-wxX<khCLh~ZTG34U(Vw)G+y_n_2k6tYI
zVucs8y_n<05-*lY#h*myiO!`8u(kWIE6o>P;Kf3LMP4+M0cYuAFTWR*Kw$cXECGcI
z*GzYo@k%l2om?sYMlUvbu}XNg7i+xyYP5biY!D@^6IjpXeIl0GgaLZ9Oq<33O>~PW
zk41kgui}h)`#ZeY>BUnoo_Vp$i``z__Tr8gzk9JqB5#Q9<&b(Yyn}6@tg-#ZO5-~G
zL-<cG4tnvI7l$PKuNQ~CIO4?xBl2%AP6!`0oMQsVjkS7GvZuT_EpWz*a{^~Yxr{Tv
zOFb`4NWT^?a(nUOvKRk|f5nJQU;J0S*w`*5J@T3t*NswMN<8tKa$dK*ICV!~S4?-k
z_)knO_<LU57p7l+mgRvL4<-9Z^l^IFkytLRC$iXbRWUyo^Q{-}ym%q}QuLK5+j%YU
zCcWsd*!Nz1@WNx1e)J;E;PX{%PJ>-uxP?!2Ol2dg;d{OCaglft5GQE(Ri`BueWyo;
z#redC+&)CSh<ai2!R*s#KbH>~1hR@|6s4cZhs?rR4CirHeUW7IA-mz^@FAxU?HlXM
zEM4<Ha**@*P}qkeKIHWwp9Fs@TF{5jjJo-K_*}Sv58bcnS7^Ex5|g)AqEpm|(vmGE
zT3nQV3HGgBw~{`T5{FE)j1Q)LF=dUIaz2z7F5KG+_NTW#trdN!<ijQ(Hv3T7hblhw
z^P#^F79Xnm(87n7KE(K7^&!!RBp+->Yc+j{^}#OLIMEtD#2cm61gf)2v3MRO!SMNn
zP-biSP}^`EKGZR|uE3@Owqzetd}uD&dZG=DnEF06FnIh+>+;3%Ur4r*4~>0jBHWa1
zmasMxChY&`e`}cEUuxw;YahBvQ5(??qU=>$AKDq*p69Yf-+McX(@C_m4_^v2TU(Xf
z#fPp&mXY0k=;1?8ar*j@D$vV^-U59@8OELMD}&SbJ=3?g0X_`$VTKPgeHi4!U?0Z$
z@STKx?ZYU6Z$yXqFjQce55oo6<|Nfl9pS^&g7G6onPnR7!x$sxTOY=zw=hKCSI7G>
zL9)|DCyGw>VUhp?zV~6W@D$N^+4TkagYdNUn8y|Ar0)Z>#F^*gkGb?K=tm!B3(QH6
ztZw~DU~YQWhd(Rni+O=$fAQg09~K&siv$+?_@y%ZmczbOl)+@`G9Om@uu5W<i>~lt
zqDOCyX|*`(Mc0U~^<kX=zrM(T4IH%0j*X&ItLwal?fdY~hxa~g^<kS2r+ql%!*(Bb
z`0$qxhot&WA9nljyYMa_(*I2Ck?bF$Y<#c4J|FfQm*D|%(l5q8g%A30H}JpS9`@n5
zm`6na7CkD;){glQdKdfI*ZO3g@ZqH4pAu+Z*?v~wkq?gr&iQcOhYLPjl<Yq~ToJe=
zdRcVvJnK~-|96c0K1`n#f6a&MKHT=<jt@6{xamX2MC&anDs<Dv0A`uUcg4K-|B77Q
z5?w_S{`291nCSrzIZD4Kvf>jt9DDxCho=TV6L{{!3&VLSu=<ofHLr!=h`!}kyhgwJ
zKKSsFdyXHmex&)}WDotw<k#1j%Lk1^<bzwPczjTO@cQ7BtSK3O0Y(OV`a``5LBrum
zF&ma_grngF|BBIxa>JCy&7v9n`UOQlT{HWU&5!JUWRcRWqC*bpdrJ;Ka!R(UX!(?^
zx%~LVkKBIb@uQR<rTxh3M?OD>4NNTP$F5t}PyMJqAn`L{n)xOBxo82=*YA@UP{@zM
zeiZSe?chY#DlSlz?*at!4@#teXh32KKT7)X`gR;+sAc>p>qkXDD)~{)kMe%>ACOo<
zblieO_@Vgm!+=D#&%`P%2PCc@kXYG|DiSkiVB)cXi40(o#SgaMYmY5PPK_sP6&O6I
zx?LdAk0d|uRE2oSR`a8lKy}d?qMotc68xxXFdJd2?T14gaveYF8r-X2bvns@d|@~#
ze$*4LZ#WJ7XeeB^fPR5A@}sd|e}*-gsfiy=rL>u7bI~WctIQbLw3Q#N{qP3h3!n|h
z(2pSj3=N>2AMO1p5kSd+zPdX2F~E<3esuJslOLV^_|lKBq@6B)bQMVTqnki?KYI8P
zT%{knr#OV(e)JOND=5B>>La}5PGVm_s0`rdL+vMif1}p3w5)^t80^P)evJ3yYd^k`
zqHjfq_%TXgsOT_1h6^0XXB{Ch(#W#q(ZXXy>tE29H*Y>R){k-G@Wnix3BrGIiUlV6
zG0Bhb{g~{>6hHR*_4i^^xm5hvCd}+KKbHHk!jI{G%<yBTAG283k9mIlXvF;F$86y_
zhEup=;#`CI%9HKP_hYFz3;bB<$0Fe+M$BRXzCcZXXZMTY|LVswgDdXuxl(wYAL|8H
ziLUlzjS;g}pq9KO-r&a;$!;`CHwkPOeIqZ1fAeFjQOZMa7v3SdQ*@W;Za;n(U}yFS
z@Qhl#OWh~D-*682@rUrAhI7!5xAMOAupdYKc;?4*KmPXPsGpz0S+DtV%#Y)KT=e6T
zA1C}c>Bnh5&iL`m{A{mYT9{7xQSf67L2<{P_2Zl$=ehjcu@#aMeC?7}&(AjOn(YGj
znQJy?{|v=m_G5nL<SU%4Gco^gRkuqbT=j!Rw?eW1`r%KuH9cUv?#B&IYY*#9KOXq;
z(2rYw-1g&+bnKoV_x-rb<?&f}rcn(`u($oQ*JJ#DQfpYe?U5htPFUzX=F#JAZ@x}`
zB6XjNGQNNo`@)Zx+&=@z8o(>=SAO`|0Y75Gv2Xl%@5cu}YP3&!>xX^0;~o2uU}cBN
zAN_Fo;pSffUZ;sQ8SmtNvdQsmgw5lJ$}3ueZ?{Z{R!jIZ!TQy(+AOlPOA7G9^dsU&
zl-KXD+L|9Bzy7V`o&FpQC|Niu%$>7v604X3Fb6QFRLxAH8ALM%z&2S*pDkw&;PWKM
zz*05W{pZLQK=uGW4dAl?as-ewfPCTDyizMy01VC@z$XE)?y%qa;je=&<OyI`=43iN
z$9&v>);P$mmOJtXP$+=H0gyizEf7FK0oI~fgd^6u6wkV-bRcpdN3j5k3%6*ORCJSr
zhbt98=>Xyah!3Dl0A&NH6hP$w%E^Yti@kzCc~OWeq8<Dx6$KcR{sz2?WGw+q9&bs1
zsZ&*)m;kH+*aF!7cMOALjav2q_UyD4`YEnj0M!F%5<t@cY6OrV0SyAE89=Q75+z$(
zlpjIV5pal3%vrTAQvkISvN!+NloUX6K)?AdkCGw*GdJ4n1yDZ#f_I;T+EDy2L>q}V
z7A;Ul|C8NJxK#kH1)7Vt2%x3Fu15cRN6?0|R@>Y@fVSeZV!Hs&ZP3rILjWBE=oCQb
z0Qv>6YHiGyqJ$m+Z0}&}BH6A1bTj<!0jy}6i2*$gr&j>I1Lz~!zM@|RkZP1Jmtbmt
zaRwOvzyJmXFgSp(1NbI@^e}##H@$IYhXpV^fU5!g8^DMFMh37nfL{U_6~Jh&KslE&
z0emYkIe@VNj0<3bagMy>$9D#g7g)E|F;O4`ukirB7f$~mh(j?YfT=tX>^}rBEr96(
z%#iGloDKmN&EnL*NFgxw{kF_(@z0LP#q3W3%uPRB01E`>iOx?qt6Qr*N#c4~7{DT_
zwK$-ELbXJcaAs}NuK_Fz;O_vAax{!uhd9~+td#63u0Vm+qH6+JE3htrEdo4?^#N=!
zc%#6k05%)Wz$saO6W$uYHqNi`F3}xE%uWGD?iTpn$g**!y#eeqBKHd%5dDLjfZ-nu
z;4fh|l3weuWRC>EHJ|Pr3*bxuX9GAMzzH!=ik=SOlt7~c`ub$z<w-p!=H&p+2T)B*
zx*$rp7{Dci=bW|vBVmlcBEb7bUJKy5@UsAJ7^VDphcPz;xMeuE1Gpo6SM;9Y-xv5V
zfCmB(MIVVi7G*n61fFtpJF0h;>3IMz0(i;&Uy58Z%dbV>1n@S1cLBT)z{yK*LgL7h
z-9H4d_)^kGo}FaV0{EkT%EJaJ<?E&R?sYmlCy8yk1Mo;|s&U+JreyU85a5~&p+*S7
z05r}{5c`7&1rX-m8${b6BHXA0KoCk0rXb8glnA0^P+xu-g7_qe+(Bdv;_Md7#?iJ+
zL1YdhOAx2m+Oh_bJqVih-&wK+d3Q?7hu^I^g6MY0l2bI7D6`9^*>bG0=8-mw20_j%
znlFe?1?YSxkYDukAPN|ML4iV|g++@5ak)q=s}z$4+0WtvogU;MmkOd>5aoj?EoPY@
z9@Vjz75;8n{E8VlGF`Ql44Cq5u{Up&R3V6pQq(wzN<mZ(qFNBugQyb3$1xUb5VwxS
z5-dSf6^9%nQ0J7@7DQ|isrMcBAmXKw{5u?RGEkG&>$e;<Jv7yj;DjJ*3KY2*L%&uK
zb%RJSRjnO_Ln`i=X3mvltHZ%OXd@&Bkt6|!|Hzgsz~B^tdZP7%XduwgDE%UcM#2+E
zSQ6%EZ4yM&Aeu?zyB1qo2s9Txveed+rB7n$w+doFDQoK>7MG~WY`Y-Z2eCYe6+v_e
zqGJ%Vg7`6rPC;}IVj9P%k?qSMy0BId1B0kB+R`<MI%_PwInf-tiPrAyd3o!+N{Ky!
zXjjYHQ?yqQzcsezdtzl|ABpcPnkxF0Xg|^ZK`b0&VHihgP!L0c7%F`p9K_cG--yP&
z(x1P^pI#0N;yVu73J240fe}HBG@MaEj20dv`mN|#qjX#lfBdO8GTv||1ToRzNdn&o
zG1+jY1Tod%AA)GIP_N5wOqVXr2%?2zn;Ar{OBpA8uq0=wIy;D;gYYIe=19O#qKuy_
z@Zx30c>?o;SirLuUS`BB;*1!)B#5QLzZlN1K|G$JKNN;(=pEC_AXWvjmDAm$>gpiY
z1hFZIV=Jw<9@*Bi!{V<CV)|Aq(|UmoqA&MZI=9KiS~qG~HwQu8!kH2v)87`vb{_PK
zb%&V02eC7VIT;gn1@(VTGVKoHLp>W|4+E}P_loBIES7wL!y80g2w$3F{|w?Fd!k{J
zhQES16hv(e4h@HcIKmx9Lv9U!2XQor*Fn5t=Yu#N!~;3s6G5B|;yPOn;uN=?Ag%;)
zHHb63(1Q3Uh&EGfOO)7iK~OIRaXyF<4ejI$;#?G+)WdpNVB+j-H&U#uLaqPM`q6Ct
zHwe!>8`Cub{@Q)yN9)ZX?gwF;;JC%*^wD}-lyFDjuIN3{qdBYo$15VAjW?BAvcvX}
zyA5Y2h$lfjlOvX>5npbqqi`Af(;${Dv@)zw6YKLJUP$T7AYKlx{Ysd9?w8y8Hi&mY
z1cT6mc+cStB5}Ue$K4|c|3CILMvkm~d#-iIsM=1N?=rc#1-(mkixNCRsKQ>+SA(rI
z*@9o%35c>kp&-KC$u(rr5aEejw+?Dy&7>hJ%&bX+S<`){3<4Q7H18JIzgoiFmL(XR
zRYNvS{~M7@Lv{_58pP(%P`FXjj270|ZgJngOU<bvG{a74Un9O%<D@(q@@gofp{#~{
z8a~xfP(vXNpGhO1Ybc;0zc70{aGw6Opbm@lnY|yfmfLFU^U_*aLlF%{H5AiOT*Hy}
zRz_<7>OJK9tP;}6l186PX((+lC$5}^@*1ofY#N|J(NIN$MMDL)xx`v+iM6tZiW(|u
zAWwd3jsMJ^Z>sh0PZN7PW9VFa6;oA1=fjqfrD9{`(DOgqVl~(`)YA0XkJGTEo;9A;
zHN5X=H4Uy^>XfzJ=-ONo)iu;$=?>eluWKg=)YQ;nx_xj9+t#{PPZnDp4RtjP(=c2^
zqJ|_5-86L9kgOp^Lt72)G}PmP)}XP5CK~E%XrST6Vn;&_UubBgVd(@1vtySyR=i8S
z@SS6C=I%{3G~;|}Xu(sS;J82DG3Q6?r%O|+w70g@urarzHAkSmwUvgR?`snpe3jUS
z&3=_w?K?+%c8@2k;Y$r%y&c6bm$TE^mAN`;xST(!>55zh-_@Qv*AX1==%S&khJ>>=
z_mq_86%#q*Jv8*u(3dUC$@UWECD~g;n<lw94yhWx(l9{7Kn?wPUI%UcW!|5aviB~m
z58dzGt%EcS*6@vnAsW8c@c61Fra|nMZ>*OG*PdcZ7^>k9K7{8lOZ_=rxCTais6B#n
ztzoW)pEZoqFj~X+8YXKPqv2Z(j2y2a&l$^D4dXO?r{Uy1Yd^)BC)HYUn!RExo2iR+
zf`*B#K0IYi&^C!nbgI58mc6gdg*QdRG!4^vUN5avHT<CII}CZ(OMQjRkoJGlFjK=U
z4L{2An9csTu-z@0u<qO1=Bl0MNOti{>)P!O`tvl**RV>%Y7GlCEaVVz5;ZL1b+I&s
zt70+dXp-aL)a3L<LgyC^ziL><(Rf>%o7Hlj?9<d0a;!l)6WE`X9FyA?ZV?Pv!||^Y
zyG}|kb+@k7K<)i)?e!WqXy7oil)9*bbu+UXGKP>Tgx@r5)o@C~X${*nY-fWS{?xET
z!%hu*xE|J2-KAkS7gb4}BU|u0Px)PWa?TQQgR{r&)v!;)ehqQWy3ss9ewRupS3<wF
z)In+CFnh(n0>XzxkEiIte``3Z;h2Ww9GNMF=rE1#iq&~DoX}7zU%`_a@9nI&_T*ja
z{9<uuG@RA&M8i`J=UAlSx`rDXE@-&OYp_V%WsX%1y`LW@6uqP&zFJrEKN_w`=~X$j
z_gyL@|J86!O!DmFaW|#t5m%jtTU-eTvfdWwj_6%cHg!+nzJ~t<9vJ>ZPECP&47jvK
zKYHnW1#46+_e{fc4PFgCUbz}xYVb(>+MDHHY4{*Vf2|?c`&8b6_Kk+O8VK)13GX$y
zipLSkzfb+BA<gKmlfJ=j4Uf$BI`31H2A5E|z>3BFT|CY&N71+yYY1ova{U*Jd++YX
z#J+_YRwRze6w)EW{oimt7R*7%96|;uB3CIMmpOziAruRtcnDcT$QHsUA><C}_vpwT
z(#Je!2s!u{U*_(?fO3RfA^dtuUm<xy$Qwd|5DH2_z7ReQ;j<7r_SNI_hwym_yopNY
z`?;9yoK;^i?cb*s3ZbyX7v-Ug#VwswtcYZ7_L_6=CNo>+K-Ll=lnkLl2o<Fdr9vnd
zLirF%hfpSjEt86|sj?w(Gzg`Rq(WLyq^MKboMq3%Hk(mseW%QoLil}GaZ3nQ*%OJW
zB0BheDl5i>U=6_*LadkryP{yeg7n$GJ%nZl^j}giO*j`D&j3>_Q?(Epm9!BOLZ}%+
zA(K+rq|^$bb_fHb7!-vgggPNi4daI}>V}XQf*OK1grpFXLs%Qax)4%As24(N2w#Oz
zKZFJ$bP1tr2n|E{B81L7i}{uc53P+jk|A{BI6SmA4(azZX%a$Hc1)b+A+!--X$ygt
zA+$1_)*<Y8rZ>`7oOYt^jnWPrmRqqb<$?A-j+uPH5=gUr$z^aucgDTfwOa^%q$jg>
z<m}F#IITTG=ovyUcIk<QS*G40@QxD%#`l%rey1({Lg*jD+z@^aVE~6EgvlXH31LtO
zgF_e-!nYyhyk_}2g!U&bLqhmQvUHw!W2i$VJ1m6Z0wavlkpiPcM{}%3TNwOws%0#v
z@6)P!x1|Gw??M<aJVA7#=p>``dja0rgOO81m>mL~#rdm*A3~TG(tn=7G+kgu2r~s{
z8UBv~ykFTIPHVF`rk{AMGy1O*=JA>eVMR#4A<Tl1{*SrEA>Nj`2H(3a4DrtPF^fVV
zZ+vMf*3G^ogry<;!U6AQ|5fzfbjvb<<)RgT)x+4sm0X{vEvrH(kv(B`2x|m(G)ZK3
zJ=+iAN(fg&*cig55KbBAxLM#gszB2>wb|6x5VnP|oeLv`!y)iz6g#E#_Yn4kuuFKi
z=)yRCa1K4R?hWB!2!Dk@-Y2?W^gsxI2+;qN3$jO5!lpGbe5MKEkQDVlXz4rAa)cKt
zw~OVLqoRakAsiPzVK^s4`cFAnbXtziL!S{i8^SrmIWKS_go^@~L@yhq|Ah2Ap0VP;
zA%24w??d<y!u1etgzzkc=ONsb$lD>@3E@@<A2V2)25h(8mHB!odM||g0{@9Vk60dr
zFz3^%oKP-u>Z1@Ihwwy7i`GnhD!`ddC>+nbw7m%7bqH^`LMB^YhVY81RHrouE!1`v
z>!N-!Z+Z1iv@pFB7?$7uF@&@bJlq@(ITrShafaXu!5u<}nU)(BYsdG|XMs0APh9CB
zl*v`p7lJ>8)?u^>Bft-TxWR@|APg;p5ckqBvW5{3A;KL#jErGKjqx#s!N+j35p!7I
zTlP=2@_t8|!brVt%N$0p9JQP0h)p>h^S)6cpJJ0OjO=0L2_tV9oYNd(<dj-z`(yYF
z8dlF0#wTHzM%!|SQMjvZ-{?YQ?oRo_;G3QNVSF0aSN>;V{N%PWwToD}*jTY(7=^-U
zDy<a`qevJ@VI+r9G>l?l6c3|>6nXxLX*t8vGgV*zCBsM%vs4(R1<Hg`A&iP)l$9)F
z%7sy07>1*S(K@%jCsYcfau{*qS20Sh0+ukU3d9(`r?5WYwlHGFu^ayC+17Z2tA$Zr
zxP~Z;ScR#kWNV4m7Ilc$;a>p(#w3O@da)kN^kpf%Vu}>i3!}af(?Fo1=og}mL>r4X
z3G-)7F|623vdu+Xh_)1EQ7eHbhxMbh4P#gs!^3D7M*A>2gfVnWOs6n9htcYA){YXn
zvzhJ7FuH{K<z93XX9FL8bXs3>t1?-;i!(s9M;JW?Skx<w-okyt=*xv<`2E88%HX;G
zS^FE@ufKl210_31bg<~xVSFPnM3gZ@IU4Wu&W{LVq?i-K7$q<+jPE#x!eh7w&RCef
z4Pz`9iK*(e+*S3@H^%C9$A`fcK0&m*-A0}i#`j_UVN#RBm|`4j!aIxiaZLX#xu%6N
zoogn7HWADSV`dn+BKRbNSz-Jb#<MV<hcP>hIbqBXV}VrvDU6@PxOK+zrh;`YXL*)|
zd;UBr+Bn(L?q=-5FcyVzN1VlBED7UC7=KH4X&AqR@oN~{n(4!`ER5x0><wdI7%Re9
z8O9C?W6`QG*7Ir#W3}O|31h9n>)40UdJ7v3=Qn{(VQe;>Exb}z>SMCiaJGf9UHD?5
zc=|gHf0w}SFn%|jJ)Gs^`g+?RM*NkSKf?Gkj03{Vaw#^yVL8ZM;)fJw{|bZIL!yMk
z0y(bc;*NJTjEiAh3gcK9$HQpc)^;L{a{}a(VVn{^EqccA&+<xKU||5$c`+}Dp7&WV
zhw)Dsx5GHYJO78V@QUSX82^U#hizSZq~EcP4%4+Tu1o0+Q93sTZgDoR>H)02YLew{
z827@s&z&$+lSiWeaRXdu$=TleK(Y@-Z;rAs;BgpF!ulu4PsOCOW|!qf7%#acMqrNM
zRT!_s@P^?F<4qWE!|;TmhVd?p7rXVr9CO-6eILdL8Rw6pX~vj41zcgc!<c(GD_?6d
z_*~S&f8LoN$CCZr{KL4sNB1wZ(3=W|(J^157DkBszi>o!US2DGrYJYh&6cWJie-o(
zV?^Jjvqj+Dske|R0zOGCbA-Rkwqy~_D(d;fM#ov&mOX;K#jQCa$QgnCnKfSzJHMKk
zJAynB#6=JvLEZ@RMNlq+@)3L*!DkWuPYnMY<QFI#fn%HX^9Tw=P%wf*5tI?XuxLq9
z#utg8sBkgS;)Y)$qW?W*Kq+xbi~d?WflfNN&Y|z~t>)VhL4^n^MxaD+a;w$4JLcI0
zYbB!{djypu`U^#-DgqYKs-iIwSOsjNdRPP)XCXYitKXxqS_IW2Xc)m45!8qvA%gnS
za?J>u%1&M@f`gMRKfbio7T*y;9f7(LBnt2=uk0sNQUuB3kW(V4Cp=Cjy+H&v{*WZA
zenySNZ^HHk8jEt$n?*1@+0i_LNcO7yEP|2z+u9<6mJ$6G9aF0a&b-v2Z3OKi@I;_S
z&_03=5p0iOM+6-s=oG=^2&P2PIf5@E=n+9rp4xhQmk7E>&@H0hz>qB;o@?pOMr!Fh
z47tn;ORoreNAOJqL)hR<OCR?CgJoa@eIrQahS}Ff^D8OpC)!_hfGCSbepZ$7gCe+c
z%`!NGuLZ~lr&v-e#14&Mn4Bi>rpPQ0Iy{0A;*5-76i-liTm;_<jEUe|0Y;9E=&wQv
zOyeV%B>n`WbYcW+R_SN)z2QU-XPp|s4-ssLAbKixS_IQ0SQNpDf0JfJFjK-@SFP<@
zS!YEsJAyeJhgQ}fMJs)$U&TL3%tFz*5&SGLPjtR0V-`g8|7sERLm#y)=D?a_mqf5M
zf?tf7RRX_?E)!iI!3v{vr2y~gw_0G0=vvWrqHKA6gtubT55W`J7{R6pHb;=M-m)bE
z%K-c2_o?LH#Mv6bHi1g-EQ#A=c1Ex(g69#uh+uaFzejLE+T0_`pJSinwa@YS-m))(
z{Sh39;13Q_1iY#8pAvIK^q}ZpqU^?@2o4*3=d$f@gO5gV%;4h@G%l*o$VqWd8UAUm
zUg5KbQ)ykyd9I(AF*66nQ7=YtiK8l|&v?C`vHZhTB-yJGT#Mkk@V`7GdG&ikvUel6
z7r{+o9`sfOw++6-$PRi>?u+xt@c)b8fx!<2ejld~^5Y1e82(dUFJXN#Xs7fm?wi9|
zUq<jDf{*+wz=>EB^E!ezyj1^<c`Mm>++MQU=)adNf!`5Li(uduyDNgEtW^n4PRbDr
zfz7%j;5E+AExi%=xZg$*AB8`H0C&+S%0>~4K#QPc6s4jFMG%glL=+jO={s<Qbz}AO
zibi0H!c0GkPol^jMaHNekWDm`Xl7BGS)#~laJH<;*@bf$PELVbqPqv%^F)zXxNsEt
zjF``(_*D2a!^tne|3$L>0#Ot+{6bMKRNZ7M5=BwNFBU~{;q^`QL10q;h*{Vyu5=WG
zmswV1(NBtZyrh<k0#PVYlsD?~F02)zs2GJ^oUYqrDhX7MqT3`(z9QBtQM@$SETUCK
zV??c@Hc<w|M$xdUmB6E{m}#pPMfE6}MbSJ8TZz~jQ6xlBQ(EQ^@oEXw7Ud+e3X>y>
zI#JY(B2oO5^it7eQSO8cs~1K6C>n^vY-53jQG6lLNR;1iWKk30rlQP#$+z$g;#x$}
zHi~v)w$$e?rd1TJ1=@)6+n6-lOF##sZstO^&a*5Xqv#Yx=P14uzef~3qv#^s)rjmC
zMR$X_XZAAqD}mlo^bzQ5_^DAW&aO{TKXLkt4lqhBIg1XC;_E1$M)53)Z=x6y#f~U;
zMlm#sVNon%^(cl%F(QgtQT!Oi$S6idF)oVlqWHXqeRLGxMlt<)%oz6ekoCsmcx8F~
zSaE1>IF)I96ceJDMkk7iQM@>2nH<HGC?*Lr`@O)xH?^m7ot&}!AW9fN$W9$L#6Ba6
znNgg27`r^D-F?h<d#+s>R^rM+%k5m*>CBE|P82^yvG!=<{3sR(%oY7Pig^O--lwv3
zVHDMVbnxMlPi|!;9C@F*B#Na`tczlO6sx|={7V#T*xH_$A@eQ2MzJi4<s1;MH-3s(
zFm`1W59e8!UBwIPNet8KDB^NgC9LJ;d?ALf#HiJ}**EYy;s{5vF^WnRtZf6ao1`6+
z7V}#aTcg;{!)3C@<jTl@z_D~2ufgv2p<V4<8}xTYu{(<MQCx`P_bB#6aVUzzQS6Ok
zUsV5Zpua@6{ZZNTqc})Mm_7U>iUNVyXY=*{S*I?FAK1<QR}`jOv5Wn&N22&Us(;FN
zE{dbvdEQ!DjkO(<isa)_Fw1lzij%^pqBtGJnJ89&Zo50u&LYBDu7u1ELcuH!HZ|md
z{bCgVMsY2QOHo{o;vZi7%i~YIjM+TTLbxK?tD<?&JFZ7@BZ~V`{1?SdIg#7k{dVjB
zg}lWnejmI1UF@AG?ne3i#MqhR9QU|R3fYF;h@n2<CE3IJgv&eGMtB&-BXJ&!(rNZZ
z{Hr$>p6qijrzpZvM7VWC@hS>63NKgSNc(G^yBb@ntNo2+--^ByW$F7UJ_vs_oU|yM
z2D_qg3wuP1{Ni90_T0z)KZ*d?bIA<M_Slga<Xk_nhoaCpyqhgd!Qpl~>|~VFVN!CK
zl$<8TY*OZpv}86ZSxia>lft@883i(#6t=@NoqWnt>#Btln$@IaGbscPY<82vcVXTA
zvAImjCnhDYNy%qYPFc*kO-h}1`XlVS?{wrbDMi1r^KIs*(%@$%CBI4Oygc4^C-y_L
zgbKD?pYwC__pt>`N<ovt;ay_SHt0voZ*>!ju%b!XV^a2-lwu~OxJhYZQkt5S5+<dj
zNvU8`DoTT;OiF2!QbyRZRsW($S(8%Eq?8wDZ$-TuFe!>;f1a&>Whi$O-K=C%Dw~wL
zCMD6NR52+QlTyQ^BuH3QQL9Ob5n%AvRfTLkS(9QnoI9D#al-M2Q_ZAQ7hd7fzpYWz
z@N4tG0K)&hPo?iLDSZ4>9nme{TjwQYN-`qro0MeX6vL^<32I~OzRK3Xa2lGFva8Hr
zn3P5)rBF6&W5b`AH(N84(%hs>FewvFN(+<Hl5=NLdYY70CZ#otX6t9&M&jFxwl(Uu
z6F_1D13H+Lj*{&p+S!QtQlN`ySJ7^w-9?j6>5cai{>r5EHYt6C`--NDUUHh+oAt1M
zCZ)eP15C=-0x?aj15L^xlQNif%h*=*uyyKUrTLAN4iOz{Qihq7;lg7?M~IFT9VN=f
zN1K!{d+A4E`qre36@Q%QcSg*3f%&<TCYhA)P0DJM^20duWHINMl%E8qh)xy#!K6$R
zV4KqgW{A!dohACCNtrFcn7;;Po@-KmHYpF~N~AMSik67ZHz^AQ78>!31Qv5<yXXse
zsp0=(QhpU)Cc514R|u>$DXRp&jM2|`jY(N+Qr4N2^<wT4-C$C73TzbJB)VCYRkjHH
zW>U5aY%~1rCS`}geV$sEIra6N_oihxFM-3czl(mhIOjf-vfre1Gb`QA$^nz|2X_Fo
zlFzLCX;KcFl*=aNACvNzNjW4<ofbW8QvNntK4MaOozwsB95tL{Cgr%nCrrvo;Zvd~
z;`DPoW0am1IA>DM8_orRizelgz`d1)7=Oj2Ts0|oP0Bqn{}sI@dd;L<7q}tH;G5hf
zit0zXZ8&$h?c}LR=e|k#&!hxRiY7%5II{wQ_y7A|)+3Yh*rYr$DNngKniQu=aY?{)
zlk(c6yfG;+Ov+1f%3mn(N`U_kd;gp5tx0)jQa+lLG?T*Ydz13Pr1(BF^Ld~Q;OnI!
zAN7Zx*E^h<dZ3}%ZBjfY#V;+;Q5kHom+K*?jTPw^$!HFU|Ne*nT?-+}<}fQ^lM)e*
znv~3(IJr_xX2on)GDtR~XeLoDx0y{vubZ<-Hmhhhvy$Dc>@1n#OntpHy@i}+C6|<b
zB1$v2KpxQ_ujv#0sadIDRw|m6&&14cRz4RfU{*>B6clA-A+u80;38&D%m4aW%&Zg_
zE@3$RZe%PaTw1h@;g=OCXI9D^4g?e~*Wvn0mr9bYYF1(dDw~xm0y`gAEj+si){XP5
zR<mL=E3M2*YqJt-R_tb_iCI|}XNxl{@n)rg#8(roFIwHK)G#Xv!aPJ>vr<#Imf_Sk
zD-MI}@T_yzV_2d%Nrs<nR#JrPiH>;MhcQeo*6FWL8k&_a#BXH8Hx|fPN?#{U%}O)L
zHWzIn+EUaq|9>;pMzWpFN?U<;qO9BAtaLEAqgm-BJb1f)Xr?bE+r_MOHDcbZ&Dz7P
z^fW8O%*t@H(#x#$HY;CCX&<xFu2$?<Mr2=sRM8ikvh_17{e=gJHohCf=XVb@D}&4m
zVX)|(@8ifk?l)%Tm&Dj1qC+L#m)kr-fTfen%1E;^O0uIxCzzEn0^f>`6&)wa`0oV9
zi?(`Vo@iD+?6O8W*uMBpADr*SpKMm92uw9AKL|`SD>DQbGhLuXRKM`g<Sg-{S($BC
zo@G*=XHw>vm7jRx8I|@KmAPi+XAVdPrB4QBo>`f1R^FPGcV=aQSy^aSPMDRGW@V9C
zS!`C;o0SdH<`U7>W@RZ))~x($9B~!L_6Peiv$9-(yh325=reaB>gt_eW5lmDEBzjt
z)^SqG>Msj7nw3pv<*->fVpcYrl`UrFFRos%Ui6z(*=bg`8g;jsmF))a5E!v7+b+Y|
zZB~BgvYD<QZjV_h;EmZUx=(b!=mF6`_*X!HF$a03{bC5Lbx4|eR9F8q_qSQO)&h;Q
z>#ZF%E60qZ92ZEvX+C9EPMeiGX63F~Ib&ANnw6_&<zFd1CwfWryji&*a8dMzLvQ@D
z@IP#JLe?w7JHOIj6*FB+4->u4W^c&W%KcxQTW00903%<mHQh5S_sz-+v+`2R|IEr`
zv+~5OtlVmTU{)TA`N)Vba#DY!@>9t^6CItU+;gM!(Za5;41R4^wmI|@e<MyC8Ibo}
zjb^1x2BmBU<)c|i<Mx<ADUd;NniUr>iVRA&42s*Vc+5&fYN=+$E1>bpU1RZ?m7rPS
zW3v5X21I#?2F@B!T}gxxork8dSt)o$pNkPQW20upltD3PP_AdqM(6aDG8r=HJ8hl;
zwu}OqGANk^Xl4-@G|u#YOq~Ug6vrFI?{;@~)@9~!*N5%h?g?<f!QoDDhXBD765QPr
zG!P(Ia1w$94+M9D1_&O4yE_3w{@=V~s{U17uYUdd>z<yTo}S&=*<GgvE(;3hF#7Md
zz(Zf7dZ_^md<4G*Kb|TpN&Z+iXu<BB#tPQ1tz$&xXq^Eu7K|8cw3EStjC68Xkcp7R
zf~<th7TixVVzODVuY>{Fr6@~u>p})wAG&ff>|9ADm$cTv*pa*z<g=iP1ywD`ZviYQ
zZb34`3Q)t;g49A5$Y1#srWUavM2Mw|A4e#5CO%?8JmV8ANFpRs(^-seNGfVUF$=bD
zONi~5C|bgTk``28OeqUeEV#EYwKTJp??#R3Wn6>GSddDmEVaCBi_q3lT1v-#Z#-~b
z(SnzsMk>*lY-J0=`Hg+7W<hle8d=cTf*LHXV?kX)O=>L*{#qLM3Ar{^vh@g3y*?pS
zEMd|9lm_I67Bt;$>`M~?3tCvvl72I4bLz#$t}O$NNsfO$zVi9hf>su^w&4BYIQej`
z4a4F~MSnjgs+|SxEx2sK6$?68(9wcb7W`sCCkr}TFw=rr7JP2O7Z&ujpq~X@EclYu
zyIb%TK{oU$qH71@yIRoAbhe&zir>S6o)+}7pf~+K)VlFT|1+f;+Mmt<3kF&+3?Glt
zAez%G7;M3T0md#2p)-^^j5=Iqkp&|y7{#o_d~LyKlgC&vmfU&9$2PyQV4MZxX-=?U
zvMl%(OtfH<1)F`b@*5`qUWl80I5fqAsTO=E`#vN3>8X%>wl0ss$VX8_eu|TGR<<(T
zf^DBA&amKnb6X9z8CSsB7R<Ha2MgwyzB)W=o(1#e<g(x=3l`8{Y?dx0ETZnH8oh+D
zl<K}}?D8@Tezu_h*6^O5;pOzjTtO&y-?@??%deQLEm&j0F$<1cu-1Zg7VMXCvtYdi
z8!Xt%$VYecZIn~nf<0+XQ8!UHTku<&Des90TdCWq+o?M&*h!Gh?ULp0sPXc3Urab^
zdbA{iSt@_?bhc~wpas8MaG1{8%Hb_V^Gd)WW;@+6cI^oHsEinA!XFl#u;8Mc2=q@{
za7xxXa`&SdB>uDo=PWo+=M42Mwdv(3OGo2+aUm^x(rEk=Szw-4;ct`QS5mH8aLs}^
zE5cS>x8Q~a|61_Df}0lHk`>#67Yx2leQd!U3+~El!0ZFFo%@8dd!iqj&Lcu>?)WDb
z$gj9OwcunW<2Bwh`b%pnFD-aQeoK9A!5a(yA!ogAbhzo2xSqp|F?=VdC;g*==#p{9
z_3=LoqO8baMNX@+;741L&WiL_SeUh1VIwG3cnA_>C#Y692u{;?5!_bDsVZTTymWk4
z_|2Gr6+yCQI=U4x<n;rhVp2RA$eFFkLdZzXl%@k6S*?)gi=^djR<w9%Kz1v7R7zc*
zU~Dm$6}hc|6$Pxw!zyCtwc;8FA)o2wx1vUOW92MpMIoB8)WTMT%$Oop%-&{uv@79_
z+c+hwoG@l%#EN(;YFUlzSArFZR+P7*f)z<t6t$wH6{V~w#uiFQ2R4R^ljqe9Clgk4
z8p|awh1paq(oU|@R+OQWwimLYvR0I%BV0bp*tLqx*07?I6_v?Vtf*$irFF&?ys8xs
z8XJ35ozA4WvEtXX;^Cg$moFLBKe3{=73U6z>sV2j)i>TZCWfSX%+{y2iBlU{(OCA&
zh6*+`v7)IJcdWQ;MKdd!Td~B7r84qXw6tQR6{F->ThU4m0jsyRqKy?Dt>|RMXLQ<H
z(awtKV#Z8sZ$+k1^n=01b~~_C;B%j+vlX8+`z19k_zNq#m@#L^M1N&PS7y7(1Ryl&
zZoFDsyfjv{rxm@d=xs$G77etbuUWT0p`R7GZW!AgVEPw=mO)kwW_E}b!%Tmu9N&`0
z)poe)j3Cs0=@@Or7%RTDVhWwH)bUn)P56c?6~_@Oy^fk-IuqqxfEAOiIDgo9^DF7n
z@T{U!8Sp*zJL)v*bm|Oh@xqBSt(YaV(TX`%EVM%A&s-~hVCe$tJgQv9<`bmlO_QT#
zib~`nD;9IQ3X5|zR{hb6pR71)#W5?ES@E+K+pO4b#d0fFSg}!BuwtbZtJu^AD}J$J
zwH51_UBjlNowd?JteV!Kw7lNjZi#Hs^2@`o4uv<F&SooaT8(2g`dQR(R%|i-tyYZB
zYxp~?*lERHEB3MIcuQlt?vf3ek$VVrhN=6lIAFygD-P2cJlTjmXvOc$I+NUzm2{$6
z#v^pn?=fCv9=GBTE3Q~^)ru2VoV4PM6=$tD#TW@#Jkuh-clW0ir|DELY0Ong=a~IV
zj+zx0thi{#_i3np!Yh7{8KFy7{B6Z$ng26FU+hkmBp`LK$*@;XxXvnR*P|Qco77uY
z+_s`aoN;67mki1Gthg^rt_>M%cp&Gj6;>N;HaxQ8u@(PV@z#nb=GI?W@s#|`be<EY
zDcPm9m*iJgWOT*8w&INy(j{S0DSc<fe++nU#oCJMzg9Gvo%e&;&ivZOWiHBwXq#~%
zuuuz(GzM8A3%G2slU1sN>ZA_k`RKO6!>reafDJ(#e9Zc(SN<|u)5tMY$?Al(i%~jq
z`=scMHe|9P(S{@&GTV^F2G~%*hO9PZvmqD5!sCsLV0Lm28?HvYImu$?T54R=bK8)|
zhP*c9GyVLM&1CeUR60Wo+EB=bc$OBpYAGz6C=-d;P{f9i4Y6jeID*Xcu<6J%vHv`5
zzk?T@1RKf}Dl2~wQ<SA8Y$$0%F&m28uw+6cnWpnEYt@3r`fP04hE$p<Hk2kDINPEO
z;Y@3zSCYyyTh4|Cv4&I8hDtU}v0<tWm2IeE!{;`9VMA3Ls@c%OhL$!|x1oj&^=zom
zx;1U6W5Xc6ovdZUCpI*D6{*c4X|PG2=(;A$`O?6KhRimzp%J06EdGQJj_9U@wAWGD
z9vPopG^cZZwDB3rr#7^*;WHcB(rj%*8-k39luG*9W$Z#b8wM7M?!cn<RBK(eqYW>@
zYA0qTrn8&^3yt6|HhgKrI2*>>@D)o3+c3n2t~PYDp}P$|Z0L0<YV%{G{hkaMK<#Bi
zZ$ckxUur*Ue`={Yp_6=@Hc$qKPF=p77;3{X8;093g674d>gdNG*XofrjJ9En4Wn2j
zTMXqi4&_*8zoC9jy>mON{qs1v^*X_foNU8H8z#v~vD<i;C)eVoiN^BstqsR+8`q=n
zY?x-lIvdv8Fx`e3HY~7Vp$*@gEzGlFrVX>0olX6LI)^&fhFU)wt7v*e%YrO0-v(J)
z1tcx9VW|y2+OU|xOQ_;!Eu8ohd4&xt3CnEw*(_a7xKb#3mFfIq!^y3=)7o5Z!y5W)
zsqwMK?V}AgY_#Es4M)YaVUrE}Z8#t!_9|+#4Lfbv#o*s;*doU+Pr_Ckw$a&6?RGJ0
z2SJ*evBf63+lC)5MeUKZexNZ*d(F~)gwX@!lRsmgJUw7NC{5jn`rU>@EILdb6f#PW
z*>K#3^EO<t;SaNgKW#WcK52t|Emy)$F?;Zk^|TFVY&dI19{S4|&vP>IN*Hj_hQDmM
z&eE>uBA0BqVn+UL!(~~qPlT?e`*>&Rstwo7(iR5{bLy3-TQ=O5t=n<ZjypEowc$?%
zrxo0@;l2&66|_<Cz=nr56jV@1!6O?U+n_6mQSiiur?LqJih^f0x$~_2$M&C7-((2C
zu;Halq+i0XsIRGSsQ<_U=nYHJTN~cdc~2GRU&04j9IQq_lw!=BXsUpPV5LqE#@iLB
z3j7KJ3LFZY3Or`yfy@>c*-cG*S?eYHs9Vi@Zb4=>YTAvX2UFE_3eqdcp&+M%3<@$T
z$f_Wlf=mqCz2A~InxADT$U-MqN#poR%C6v4#%Ot^-ME->FCv$M+zcq7Anmf7M?qc%
zX}1~ku_!+kRH-sSH!dQ}dPf&lP((p(1$7jJ6vQehqaam5oPw}|;tG-#L=?m;NK#Og
z)e{sX64X1!jfm0>jHV<NQ&8iNkE@5w_7Vz8%7N|^D$U?hROLZb3PIx2UiQna+Oi7D
zDX6TV3X959D^V*bsF)Ui**GI4-LpqmRZxv)Ed|vTM30KDp`hVVWnM;OwW+CK_}7t%
zGeWCpCrS1b1^M|NLAb7hMhY6UZar#!1q~ETPYE|<c1D$G`MQlnHc`-2K{Ewu?;pi!
zuAqg2mI}VU_pv9RvP#<RyH@1z{ix3rv{mrEf|&~1DQK^tkAl7mIw<I<po@Yp8QDp}
z=Y-A*s-B4UzA5)XkN$#A+Dn43$i1jt6?9Y3oh&`+sX!hg>cQ;&eu~_n7E@AhI{Wwr
zr=Nns3Wg}?Z`K;1V4%r^2=$6b4^=Qs_DI1uGH41$&>u}5DJNixF}p^YwZd17gFA-V
zvD7mMtm71nS1?t<cXTFDCn=anIP|G8V<#*4mf0!PCIh16iR)=)je9%OWbkPUx3(nD
zAg8W0R-Rc3W-C~$V4Z?F3g#+Uu3&|N9~iSl!BPeD6wGIKfsD_r$RhGWnf$y>Dvd0r
zGe$SM@uPyD6u6EXV-^40IEc$w`ZIMY@1Lwx@QZ@g3RcOyx@Vky1HUpl6Ro6Q!!W1a
zxaG25!3G6K=}2~?f}ILRUP}B`!6pR*wj1+sGfRJ?dd4MgQLt5(j&X_GsN1QM-9h;K
zZsIORc1j<;TfrVl3*z=t_fhv##XLYbsNi?PA=5vs;0SqmnTUiPQ*d0tA7&3v$f<2!
zA5Y5aLBC$m7?v{%&MN3_M;|-RDLAh{vqQJzf`W?*EOuD!_)Ebh1=khaQ1CbFUZxfq
zVzh8Y!Bu9<-7-e?8d*L&xT)Zlg1fTR)484IQ(rzXB9|s*xzFq~1<&OwKz>M-(no~H
z)F%p_n!Zf<7v#6pmkM6Vp4Kn%n%OrBt}QLK>4|ZF;2%12Csz0!`91Yt>IVh?5u`NA
z&P#wDH>VYmtj!L^4!<1%JM4C-c6b@!u)}GGhwP$Cu$$0kjPcsLX1x0O=&}Nme0FsD
z)R+lrSMAYjatH00Fv}RR7(3G0k!(i^JJQ>c!4B9_z>aTMCuFoEn;qHh$Yh87n098W
zKo&c)nq1Ikd?=s8j=bD-PHHYYa@#SA_oefgeXHj&HkZ$i{HD{sqotr7g_upWqc9=P
zj<6j?%$SfJv38^+M}}BpMWuxZi{kC*_R<(kNeOh`B09;AqIOK?UA1B~i&Kx)G)|n7
zc4Tg@*0-a99i^mAJ4)M8#*V6XRFly-6HcX;r<S#&96|h1$%z&0s3<*83`<s0B|9pc
zrBw(olM}_SZbvQCuVF_`X<RkpML)5lwjFiM(z<4ml-9Fj%qmr&p&gCv=wL@jcDu11
ztqD!2rx%5q+9BGE+ML?Lj+O-RKP9xXW5)Q9WM!Azu;ORbwsy25h~J*D@PMZip^F_~
z+R@pLD*KF;@N+x9V7fjxHs_`ASBz<LHm;`~U1iwq=x&G1YDqop_;Z0V!zJlTA*tKT
zj-Ka@#ksE?{p?s}$1isDw_|`EQ|<W9j)8UzlDT2WXgh|C2n}ZAL#Vz>DMRfTMjmd*
zzGB9N8NuvGJK9V&vV%(}jIm>^9TVw)O%?weJ1+54^>L;%UWS@1uTdpnl1vO{zqMmo
zh3F}EXa$T0SG37^b!upu9n<YtV#iV$J%-IR+xgy(h5UF+f@j$=+m1PQ%w_2!>JN6z
zlYPloV!j;<Bv{U-NA3S@SH4m4#7VWn4TrR^RVZ<>+1jBgWu=`T?O1Nd3YtGrm)Y^N
z8T0sR)R8qt-&UGV^%qgA?O0>S9y|8hv6lWOJ2n&6*|FY?+(6i9N5-9Tzseb{r%ota
z;x{|C*s;xy?JV6&ZFeW?Ttez$J!OX-JMGwQwy?_%`S~o_`l{=3@*zmt`(MfKv*Umr
z2kqEzMoJ66%Q|4kiIv8ClYOPahwV6S#~*eaVa!o8@))7U72`CV`nS=zyv;l%lSih9
ziq$Gk+i^xt5EXS)oR!62mOB+e73XE~x8q+sKG<<l7JobL*>PWvH5<HU$8|gYw&OCh
zSE#f32-a0{cRnt4L)KC|ZrRazr*R8TwtkzXckS4aG5;ND`MmM!QT}O8^no1@?Rdw4
zN7To5JR!)vS)*<n^(nK@sL!b{s4uCns1o^_@WzgROy?~jwSM$_!iyxMK}rAF;ZWgJ
z5v3wpg+)c0uMn(Mn~Jnom39@^oW@&DRYlre6c+<LDmub=r{h);Gbq%0qS3OKMLw!u
z#k+-3a%WOgp{qzyQCcEZq*D=55w9Y>iY_aiIaTCRk%3jDg^YwuDk`^*WLA-dAe@zu
zO+|J>4r<ejaZ)6;a;u1C#XKtVs>o-yR!BvDlR+pzElBNFOD#+&LX~zxDq5+=xe!Mu
zEVJe3P}-}71lfhLu3{>Rt4LIlq@t)<%VjsJ?0nENnT~u#u9S)r<dW1yIgJ2Ga`&T*
zic}R<R9UN0Rz*1#6;)JXSa}r{2sL@=CBDD}qhe*6az9GA?|5VKRHIXaT3tmo{!Us=
zW~H>2iUHBFpQM%MveZ>kPeoT1-Bi?9(LhB@6`!hT$bjZ%twt&ut7yV(Q|V+WV{^@z
zmGfG-g&Enux!Q{SCAGDRHYz?-(N?AeoiA#JqmymzRQMB&N#0&X2Nmb)M<j)!Gsye*
zPAWRfFwRf-JT0CokzG`bzWi~lzEZK`q_LKESJ6Yocoh>=^i<JHVpJ@y<LIrTkBWgR
z2C;hKU!(h)?etU8-{b)*#$+?z5Dlg?RK+kAL(I}ud#uCBdy9TNJ4P@&k~)eSc$sYs
zVXTU;Rjj+B%99M=sF*k^G>*PBes+szqKZi>7OGgJVzP>FReY~vrixA@qo*)zhKi|#
z?_}3Tg{G0Gn=PywZ0xw))tN<S0d=<Y_IhZJin%I&kW*4cjdf)uOwxP?q-7tDHtNc)
z_{A!gNaHM8N=@6ZAIU#amr;MFO0DIDhEI%jawT~c_4=m7H7eH1rXBdffpsd@tN263
z2^AYuY*evR#V(0du}Q^@2gXvcS;cRxyH!PCU&<C)RGWSr)#;TT+gK!F+X*{VT&eZ(
z9o%j@2UYAbWA>`pN8V38KwWp<cw-{zcV-W%IIQ9b`KXFxGUg>p<Qt^a$Q(IN77*to
z1O8R<LB%Omo_N7&6=zgjmJX<>J0#rov~^^B{8^czjP#65Jg?${ii>ha{2uy?<|Xp_
zUyb?vw=4o-W52Gd*gG%o83V47udBGB;--pQvTVMJyIMQ?`wJ<z8E}_+$E<sg+50LU
z5FSz=sYtsy@R->r)TdP0T&dQM=j266$_o`QP5+gO*W@?Uf2eP%@2Kyo(!$fSj{juY
zcOahw`5lOM7%RWU0jmR@vKdpz=78crz=0r(>{Pb{ssj#(tXHv4I^EkE2hK&7q3{sA
zR3BAJ{SMscn;p#oon}r4VjS3{8L#@XI*^WLdIvHPGE%cRkcl8MnF+Nu<IQ-6<I&kn
zKRY1@_3N5Ow{wwmJCMhW$?N!djNm{42iiK&&Vhms6mp=V1C<;o>_8C*>JJE)WtETv
z#iR;3)`14IB5~xf0}%&gEAeK_2@WKZlT4>5VPUSsWZC7*p_0s&AWOFS>BLeFOq>=<
zaiFvVWmuYO)=lfbXgLSUJ5a%a0r?U`S&c<rQlTQzmDx^12O2q0g|(_WP>oQX`U$m$
z12r9xZ`{{n_Wfz&UcIE+%+_(BE}<T^KD7Z=Vy-@jlK<gt>_9U*O&pM{q^5)c&Qhtl
zQ=7A>1+}FEpE@w1wlN1<Indf{r;P)jnVjpawY>u!92n}rFb6uy1aqK=13ew+%$U`c
zjl=r6179%P#Q}Grq^}(KlG$pvjsABvTkGaPcXBp9)!fU0-VO|rbt#9Vj{{$2O8#kl
z`@^k_{`6&7KL`4obq5dzQU^IO*z|AzX3U(Gf#l&1jF1Cl`XdS7I55hA(GH9;{jr<|
zQsrwpX)C}u@^~|50zr=EBnKut@GZ07IWWzEDQ3)6GiJI2Gsv?Y_}(m?MVKk^(?jy#
zPls|F>*^ebJYjD1w${L?c@E5X;FS}vomk+&LI+}<h;w3*1B)Fv=D=|WmN>A~f&C5~
zaNtJ=esW;51HU=2jE!%k{!Cr&zzV`j2Yzv2%@>hX%*wXXZ?~-`uQ8pqgmn(ACu}hN
zvA-+7k~dLLq#7^DByEuiU*5fo=2q%9>UQc5>Q1T*X1{0gyUBZ~dmY$ExSY?}@q-Th
z&g@|aoW~6(UFU>DvW9d{khdO39H>0Y*y2&f$eq<c95^A7PPm*n>A)!m-mvIT2TnV1
z*MWNuoN?f+1AjYkS<a5XjLY9S2hKC>f&+gM#JuRhAH0nwe2He-p}*q5bq8)ZaFymY
zYBF!HN#sojZqvC%-F?yMv!pxBrnPY2ffvj^aNwZ>j~sZ+?9=~?d1B7GXEddS=Y(x_
z9WM#5sISe^wDsg42i`jH&Vlz1{Of?-X{_@f9Qco67AK<UL{rl`BLSuAs8%OzG!-Wv
z`;0!zml5V!j037V;b4)lY{l(_$B7(H<aEMIKb;flo$xu~cOpPXrv}Yhn$uWFrMjdT
znrYb#PGoT+s}mW`$V`OHj8BVs=QB=(Z1l5JrQ5j(`KeNx+lf3T=OyH$rnLZa0VfJN
zQOJqHW@N~TB4p=xNpi;Z=we*i!%jq;_}z&^PQ*Kr;6y7YT04>GM3NI#oT%zVQ74Ky
zQO=3-tX`a&?8MCt#*-=~m@P?_Y$+#F$fZrE3?Y?TmZ}djD%R&mt`+E1q*ijGG9kW(
z(KkueoT%+Y9h%jhs6nVntwoiXPYAs)MAvnqo)e9jtxuK5gxaJUALKP~q9L8MA!<w(
zzljq~$<3(EsV%52sh?6Ma%|=3Hcouz#5^bFJJHsOc210PVzd+Oo#?=@!A^8E<GVW1
z$%)R)eopP;#217YlZ_Qm+WeB)uc)77w{#<PccO<AJ<0v3y{NsZQmc;>eN8?Qm!ZGO
z1DqI09%MRu+PjC4hdMFLiQ!I+aAG7KnN-q;w9!b@F;0wiV#BG>wsFSCJzqQVtrOQz
z8Lwf!VU=;z@ze>_iB3!+Or}a?w#CX6@>D0jBTS>ta$-7R2K9UDOsdpc*k74#@*F4T
zl7BFrdHIb~X@L{#oLKL~Lb(JuvHx`ZVkcHQvC4@hGHp&qmNNcF>Q7EABm7MLrnd12
z&2sVzYE!TK7bjLbAwSi!#tC;}V-uPudHd?nS_Y)86&sw`$m~8R#{V7vs}sL5yUB?L
zZNt{<ahvJixfa?&e=BvH6Wg8GA?H+)$WA(XtB<d9b~&+|&K|04bT1+QwsQLk2c+)l
zxPxY?bmOoSN0@!)#8D@XIq|m>m!0TUw%l<iPO<0@8MNHSQ9B`50kiJO1oclRPCIc%
zPKw)c=S}~t6X(bhAXOw?VD=*QFDEXUkuzRpOWqRdcRKNk6IW?obK({uyUTIii5ujb
z)U*+k)^0O<$BDa6+;ieSv*JG`JaFP6;Su$*S^C5YOGaa|NxIcM`Z@g<)R)wSe&ZOu
zapE5*O1Mzcg||+;b0V(``CP`b|6Uek7XmK)Yqt4;@Sj`-7!XahP^~W5Tu{hvs<dEt
zL3P2wtkVUT3puYiB*_OZk{UL1cv$2$<9!T}ia{4NVHa|_ptJNw*XS~5qhrj-bcFOS
zWH6nKE@W~cvkO`1WHbG&F8FRmEnFX+olXwZ7gIKro7rW3N(tw2p?R;5M=-w&g<L4i
zQcw%HP|&Q~xPhaH3n69`s8^py#kvqz#8`*pTnM{9p6L-6;u(;(CM23IB)L$OT#Q<r
zn(Q*(ddPdvjy)r#Tu5=@8yCj8P}+quE_89>OBYgIDC<Hq>8cCmTqy6tCoa@x^$IRj
zbD=u9q6?K=s7$WnLREtFtrH(^l+M(k^UC}#UQK3eQ4>3;bzG?HLSwU5JwgK)>YGm5
z?lg26*X2f3X}k$boBm%+3l~~4+mZSywXF-S2(4XcW7d`GpV3TfxgEJZwF8I6=)4O*
zl#cIAQ?j4C@WuaC`O1Z^E(~>Hm<!$L4{%{}vE=S9d=@cIgdQ||QhT}3n;?E4LSJe>
z7y6ri>0Fk9<U!QIra#2&&nmBFxC<j)sB<HJgjt&If^q9<lnbLxXN(JDWjC2k+dI+m
zE=+LYunR|AnCQYJ7Z$m&SUT*&wr8PlU6|s+w?|TXye>7>h3{OL#p>zKg{BdvyRh_h
zeB~_hGt8}g@50Rg+r(`092dsliJxo6{NTboljpmzfV|Lj8VyjFNV6{d=E4@4e*a|q
z(S?;RtYW}VE-Z7Q(}&`+cR%x}Eq7ssSvMcwZv5iH2GdzhSmVN4(^*GY@4|m|%St11
zW!xx^S-Q!E&E)gPi~*FiRgO`Y$TnF7l9gs{lD4yShZ(=qg<US}c43d{9B^Uq%q)AE
z-RHu7(@%Rm;Ghe?(>Y}N)~?Y<T{z~#aTore89tTo6`!M%t)Fn=lnZ~laFRt^TNo?D
zX|wKm!WkFN63&_a!7Ik9@<NIJ%Y{oWoG*q8#qhTamtFXf3;*T96&J3$P)tX09oJ-)
zkafn7!hYOv;ie0DyvXatEf;RPaKnw8ZrpL<t}LN$INiAC!hIP%V^)VBxbV=0*Dkzq
z;Ssm~%!TKK$J8e-JSD_lGP-2+irH5#yd=zwG1h<MEtq`l>%yTf>c8~gQpJ2H>&!OS
zdnq~?68K>H$FoLD2cq0YH=?N)s?`mf8;TotxAAzSN>gHlB?-9PaJ$jZjs9+U-0-^5
z#EqtI_}uWjk=KoUZUo#2x{=k5Y;NNkq`9HH5kr1{)|$?ZHqF&6%-(4mot}`vjf@0|
z&*VmCljW+H|9I$!<ZyPkd~Fu3uBh^(WD=8;0lD4CMc8&IEWZLIejc}Rv!(g#P<}Vy
zMkzN^-1s&{E#O8GM)n%%DCkBZa$M<fVK*iXiU@@0#JUmZMwpyLl{O=8#FG=KiKahb
zKy*=)i@8ypoJ=i2EoqkCerhT0Mj1D1xKWd4svFhZkS`~eWwxAjue0&$x4at_%vu!*
zmE5RIsABq6-I({*cwtlBbp9OC{HueZT5kO7F4fo#dBOIH8_nLu)n-5)H|i4Vxl!MZ
z24=0QTa<<-HzJhHZb@sinH$aB=;}r{H(I#S(v7xmv~%NAHzIu!TDj5Mjl)~w^4yGS
z!-|h@M?Q1o+ULeY&XVK{NA2C{;Kmnjba6v|Cb6R%%ZeJaRJfBHooRkf9aT9|%rDu_
zS7v_}7EFxeUFFQfL*1nV=fgduORqx$J>BT#MsGLzFt{&u#Tv_nNjb}QFrJIf@O9Jx
zHwL<~+>I4(402<z%nCWsZVYi_s2ii*7{gk_+!#q1P8~sQeZjcRJBlpu{r$$GW8E0<
z#soLMc4Jdf<r}kf9HI23sJPCS$qT}14>U^rWH+X{F<s`K8&lZ-scwAdhV^gbhMNSm
zxnvcd;l}rDVG)aFl4r>|IOOANnAvpZQ0Kbw17RLj8ktX6;KoA2shb~HiN$U#abu|)
zKhpo1`V(~-Rat7R8<Os+j+Jh#a^o*IF3E&s=?Us;H`chZ){S*;9H1ld>)qHz-ay?b
zDg)xiW@dM|@f%?~bqjSXRqAddXj6?lbvLUhJDJ^6(wG&y)0n!KD&{^n_LIX;Qza|u
zpqwVF<9>JJkW4=o9ibj~<ER_Q+#kRHC6U)NS^hBF$+N=P#7Q?!(fN~l+AKZe##xik
zxpCg)3vOIAd66ahZ#NRxTCUT%?8X(sRhjc<OwRVkevQAD@4M#4*xqvEw#+vVhI(+v
zjk|8VapNCZ{~7<tjmK`>cjE!G58bGpYCJQuqs7NPed5MTv*o9RXKp-q<Ap4+{ETBe
zpY?iW#=K?=(#~5q-pP99L4pVGWf52qYxh9)$jX2ZZv5v)ln08(@S{DjcwqIw=0T+q
zN!@F@#q7>s=HGcb-^VOX2jl%71Uzt(CDKK3d*C5>P2Wc-RK^wbK=UBC2YEcuJ&5rj
zg9jNsNaw-QC&klKrJeUP6WV;2ARs9d>)!q;OJ=jREFNSfXQO7P<}gchdXUTHrZW@r
zdXUe9um=$j^3$Immr&RPkPA=?QVUUKi_LZ8p9qS05TX-n`f-FsM;%f+k=?77!I9`e
zk_VMNsKU~s9+dJR#e-rV6!##RW=U!ZYN3PimH2-I>xZY7_MnUh<vb|wL8=E|)pVC-
zOl51Lux!OPRjuGbMVghU{|(M^Yk8^^NmBbcs?x0CK}`>;k*lW#^Vrq$;1dt}dC=d3
z+8)&LpuPtUJlK{wv94^iacVso$>Z@$ny2I`k??F+xrQDz@?g@RYF`f;vz-nebo8K!
z2TdhQr-cVC3C%rtJ;E4@PnrFUD%n<q)*iGW{4>px*4wtswxhO}Q5uvp&F|zvXAeH7
zU%Qt33&NK&8Xj~ZOIXEz#)i6j(9?9fdC;BQ!*m+#HU4#?7qh)R=wtd>2If4zDzV0p
zqycmWc`#Tee<kNY4^CY*=Gd#|<<mx6ruQ%phRc-pBIv~k4@P>h$Ai5djPhW#2kSl9
z;K3LV*4zwz=fN}&#(MCz2j6%w&Vz4dm+L2t_sI8}lP7tw`ewYq1ZF2v_b!UN@;H97
z2OXZo-+mn@!Bae#>cRL028&MjV1@?^Jy_(y#klbI9{k{eM9%bJmIt$?GYjJ8&}kYD
zi$9l~cdjBVX`To3=?E`iu)tyumUu8Ti)FQ(Tps-B!Ag&D@s;$G2P??Ss6WdjIixIS
z3sNfE5|ze9S25rhwkg>)9-KWAT1ypJCzI+zL|~%_zk0A+CiBhECYg2XLehclgv}oO
zMi6rgVXMqT)5&-veh0U^le){?3+Yd-YLVvo!uvef@4+(<o_lb>gM%JCl+_H0zk6`V
zgFihu?ZIIWj(BjwgT)gQBpoFjryi4|qq@cX!z`8TNs~``P{VGNo{>HB;Iao-Sagnh
z(S!4Z3ub)BYLUOlmrUnxv;C_cT=U?T^xuQ)EWKgI$QEysyZ&o*?+*DM^)6NBhWL{1
zdmzpO)0Bzvh?C?o^$GQ<tQ$Au^B)Sm@ZhBf(Oy`*##DJFE4(c19KhEeyfH`e9}nJ=
z-<eL@k^R8z=DqR%@es?_qrAp}+jTwO>V?f~%tMbCir1Jka)_M-J5{ARyvF0fQYsVP
z<%OG7gkg#GdX2L{l8>gJnrTi%^FsF`n-|%=i18ww7hjzTXYnGv7Y`POGkCGIZ}`li
z@Xb=;j9#=%iI<egi_GK^)x(m_>c#ul;Vx=KbVUCYadLQZb9OkV7vE%w<f7*G!gH<d
zeSeB*J}>fnvB`_gUcie2UNrNfxfcb!DC9*sFUor%-!v~wjZlkFLtexZ;;3P&L=M{#
ziuWSHi$pply(r~Hl37~Ri(=&B)MRQ2>aDwlq`IUOFUrsnE=`a(&cdnWvR?E{A1m1k
zUR3m=z84MXSE5$)qB5ZhRl=&uc(zpqs+&#?LQOAfna(F()F#(4ow{DsBd2RnLh4Ft
z$ZQiY8ksST)10p11s9{5da<}%vV^seV<A&+N_e3cpL)^Ci-BGY@}jjDZM<mbMSGSu
ze--+SAdzilQT;X~(7}t2Ui9&zuS}1=hSP~LoxS+ni!Z$B;ze&dUs5mp6E883CnbI5
zg=kkVx)Hildr-yi=|wMcrnyG2+~}5C{k&MTJ!QxtgZq0ifDM)$6xqBY_FD18!OYI2
z4)J2B7sJToy^!DQ9!`E!GI@j-KaCEJ^kNhpX=*fKj2B}GUz`3nUW_Bpo?&cp0^6DB
z#U#RHFTN*yOPxZM4NdjpJ1_3s2u-6iojSuTeb*-Z+ssI{PLWw@EmP;1TbxVy!HapO
zGvA8^<Ogewv0WsG%!?&*PI<A$i?v?-D7(Xe)zn^_Ld(p$KNFTyS9r0Ku!{N%RT}(k
zUufI-uw>VHvEGYc<t!^?93cCaIMEGWY-FVTKaR2WA0z#9rTpf_7B9~FaL$LVUTpJX
zhYve_*e>8j1|Kp?){9+UT=C+n7rVXK<Ha#Aj(f3Jrk@wj!|?~G`=#@NgwqL;92?@q
zJSg!~L%(}*h^2?UI6{!WDGYgHkIMOOjqm=b{l-Qqe|T}ii$A?M?ZwG?`K9i3YxtxW
zr@Zp@f!MOvu;>}-B&+}J#W~q@p714R&r_w!1zEvN{)<p{n4{Lw@cVzmQhJ%r)O01T
zd2wA<MIS6a+>mw2izpvX?TFlxCEANOUi>46+l#wij9C_XA}ib5&^<3Ejtf2X;=Y{e
zb&OvWe?X8w*%begOl$_67!Z<dgA<{rUR3dydq#ck#S6kq>MQDNs>Eb%=YH$OI~j@<
zvHyAzSRawDzGqi2&Wzl<ANn90S{x_oKUs4^VS)X7BW*gxS$(kiP;Hn)_aWEzu;PQm
z2d58qA5<R}_6TRn8Xvk4IcJZ!d~o~V^TF?f{6*C3?cp9RQawJ1dVRQZIwCOhyHLOf
z&1W3SpbwJ$Ye7g<4wD?C82VC_&WH45@#P?9@*%Si<9(RmLlz&h`jF^Dk`LK@$nHbf
zhlme3e8}lT0UruVKUp_7HL+@0X;4xgAM*N;&xiaz3_8+2&#T6edDzM$e*$=WSv%1}
zjK9;x*z3YR<0-x(X?>td3$Z@Lkz1@XW}QTSGbI%7!}J}I1T*IFr%6S9DCWaRABsMX
zEAB(G54C-$<3kA_N;0gH52bua@u9+`P(>d~)0Ewpzs{6q%P^bjLs_%Ua)k2K3O+QQ
zmm*<Cf4U`A_MwVTKE97F*1V}WRpm%AtU9#@wI;O|RboDonEJ-iuj|8S1405Ve5mI`
zeIFV~m#ozr`_P2YklKhUzqKO&anMvoZ$PM-57(<2+2%fs>mRByH6+~9hfjTI<wI*9
zzVzWMZmx|F9SNUN+fv(6WxMSO9ejB8rLp6ZI??Iu!{>xA%*ZZ2$nTR&Kvy5S(Huza
z?n56!4{A?pFRBFh_Tkr+A6xG0LqGcc&C&rr$j`+~*dQMU(;Pw_N*(hyei&gmbp%y{
z`=1MSDx5INhtZ}phA@`;HT4_nIGF=CjIB@fVUiC&_%P3h$v%AR!!(&QJ~aN@D4oLK
zsXlz?gG?TAl8+}AyI~xl89sb3=ZFsv78@(oEJmtB63z@vl<aI~=TPVRP@|hsWxfv!
z=xmj9(}zVq{OH3^bXsiByV!>%<bC6f4K4M_d)ru<b<1cj_hE$(Kl_Z;Qp~gyr^oWh
zN*`AF@QV+t8MeWPHH7t4X=kku>&Tt@8+(+-0vl=m>cb{8a<dP=nY=}sZEnPGGo9@+
zh2|N1vCD^1ZHw)v3hee_4|%WY>?2J2GTQ+k4oa<GTmJ6DpEQLJ(K$>#LOtrkF@lsH
zC;UM@K|M)5<wM&XEhIp;c-n_E<|ZV2-iIf1LbrUlE%VTai$45C=PFf-E)o8wUZ!60
zq2-@(QgqFXxlXu2y-Cgdrtuvg?)s3<kMw@r^Wna%tA1pisy^`Hp%3qTc<;j_pFDDd
z7e2g{TC%uJRiDX-`S8?-^0_1XHpPjGDM>0ydc~MGER~|y0-cPQe|&gLGvA})lHGm3
z(7!%>@FCg{i{H2|{KwKLc0d9oNo!U=Dl|{E`JwoYO-qt&*DBHbCK=mO{c!l<^uy(c
z-;aPFZa=F0k>K?s&#43tdHNp-;`sbn-#2m49|^NgCP-1x58aRIvlF8JOwjyDtYScn
zAMg4kUb|HOP2a=}eq{6`JGY*Rnl(+Qs+s-B;y3nPI*``SY-U#amcx&nj1<o0M{bkz
z5c2wwkC5N=;YR_J3lgRsaTM_*<VUq2ss|D4N1Pv?0K5VD%UDGG=<mk>KjQsJ@S~w0
zjr?d=Jd)@~W!YaplKd#@M=?K&vsb13@cx=8--S%}8{deOXWdKqQPPi^pM-Nq!o9L3
zr}&MJLQ4Bl#xFmX8=LA!IjQJJSwD6u;XOO!)T?owv&UEPW7^l*B(kC(lC4A)IJPLY
zstm~I3Gxw41L?Djsvk9^eLw2?A%7z{bY<%Cwk>M;@rfU`{ix$dU8?*B<C}j%q7ozj
z|0r7DkLccc1tdl`)TUGZ#(p&Mqq!d~{IJXV@5j_f?Q<1Vn)&5RE6MrS88;AG`thkB
zU-|LH;c{{#rIn0^AMO2U?MEBGaXaxdKiU$68$Ky3f3+zfse>OK{pjR}1W2|s^$S0`
z`0+V;L6MZS$S?gU)l`wXlEmriM>jvZ%Z{u`=|k<|M^8U`k$Y3^zeS`}lDvNFOGmh$
zA5Zti2@LdOkRRLp*zU(*86`ia`!R!iJ=Bjq<r7DfhxsvF_OyMXq!DuX$fNw|yT9G$
z6_GRB%8l`3tRM4whrjk?k{^?$=ym8D>Nr2f6U3R|$3(LHyS-%PKSV@7><fSE#}t`<
zLqb!j0^bp)QROw*_kPTjjr#FoR%jM=DYa*l)Y*Q_AxqI*!Vl6D!hF+T;KxGpBGXyy
z#}e|$H>ITFkAD2*$1<~YogY7wmz&NCKUSK&itvjcs|jnUYt7OV4O7;e+_7MZjpSeb
z*hJV&-9r71S~FNyI<QstPDv8j;m1xtK5*D~`LWxNtA1RQW8ueMKQ8+5mmmB5*zd<F
zKmPRNfFB3_IN`@hKYnMeW7I>`!_*^GnaM}x6n^~i6OiLH|DZ0kM5jOb@$(M(aj?^7
z`~|`p>RCU|5zd>Xmj*<o{cheCN8}RC%hbQAfwxgt2q~|PEnb%of0=zwz3InoKkkrk
zQI8Z=?-C^V3E`d}_x*U_$5Oq5n35jSe?)yOXU75K8EHvR{dh*x#%+o7!jG4JyrTKq
zkN1Q(R4M((kGJG&^Hbi*T36)bzW*yr_dtXH^CK#N=m0DMI0JZ=IoTRO#_ox>02D&?
zB6%fi58(696CD9Oj(4a5T<@8^!>)+<X{D|J+zb{+0(=4Z1LzPy#{dEW1Oq4*K=A;y
z0Q3M5K!E^a0!SAyu2cB~NFP9k0CEP9OBx9vQvg{5$QD56fU!zsp$d$hA0=9GktI8w
zf)CURewR2o0$BOT_{ZMdW@O#~@|e7kH=^?e@Yy2cj<o!dfh>Im1CT$DkQ7fS6hL9q
zDMAQQV*`jY{cr#glarQ35=>4cBn42EFfKJ#nmsTjlpH|)02%~PB7l+slnNjvfC>Rr
z44`xX37bOYsAZ_B0hA@k8$c<N--;~HtZ;Zy=<<$)N&(aipjH5tWjwX8q$&YaC08?@
z>H*Xsr{5MY0iVd$y=7qy*OdWZ9j+Zf9l`)-ShDp3Xt_1y*c$4wAk;8mEdI@?@?%(y
z0$95zzHtCe0%#h*YOh79sB~@mapp7+poP?B@TUQ^C$tKnbpUP1(o{PcZIjyuu=S|%
z1jyP(A6vLPL+unm=K$sg@Po{&0KN!dWB{XBrAq+a0_aZuGJvlLUCq`?Ei!(5php0O
z3OM=((35_z01ocY(wp3eT4QVCwqRmEvsV8ALc<dW1Tc^wJcuxuI)pkjfMJB;)DhHj
zOF|MXTO1w0OtZBy0gMgcYi7R*VB&IPzsAYP&yS3!PM}T<U{U~+$x<|p@NEE72ve!w
znWgf7veQkTLHIs^+c!f}Q5v7cZOx|63E;OSald?(FfV}l0jvvPz4%Fq3#dN@u#m7w
zhICcJ;sBNeurz=@kJ|qjz$ZD%rf-=l+;Vur$lRYUW8}{PEDvA>xr{e{r8M|i_B|WR
zNt>%^{z6?%T|-?Pz|f+J60jkFjR8Cf;HmflYzp8?09OOpES(JCWB{iE*dh}kfE@ws
z3}9OTNzD^}Umn^Xz=%32`7*~>JREv=Fm6`>yJh?fMvh8XrSWc&^dE{JB<u}fA7MZB
z0M*taF)ikIInB=}9tz;FEF&L^AE64Y7#BXq29Hyv<v$1~WLX<rPO^Una5{jC0sJLB
zc^Q93PS2}}Szg5ppAFy~P2ux|3vwvWCrb8G0M{P1Pudgzx9nZl#C8)BFS9?=nMaos
zuLbbsmH2xB+?N$HfExiwKW_$bOAaM>e7iR(!<eM{%@gj(PMuG@OBLwUEV0kk#0LR9
z3cz#4*tLfN$S4WOf3-a3K1Ti5<XHgEWo`ta1yQt3!ixa@4d6onF9UcbC;PLw*8#kj
z({pQ_@Ebb+1n`z1&bt7zpA8#fB~m2jzW^reOlc^8`x``55c12t^WMe(c_Q8tgf$3T
z5JQ%RJVANnDWU{%BX7h`RjHD71mPsRsBY@?Dq$(|293`6r~-aMAcz^o;w7sG5fen7
zAo2#0E{OC&47eGeD~JpX%NWGuwIK;BP@<ebCT24Sk%f?znvI&BDls_-IfJ<PYe=%w
zV<WkP__Rhun#~tP{vfIZQ8fqzQ6PxQ+)BY9e%}+W7(}kskwQTfX0}KW#eygvL`dEO
z1QACwff}Yps8TULh$-Q)fTYAAl1#s-3|;j^F_Y<}QcF-vQcDGqLMTlwLtTF%UaD-i
zgv&B3T#isahzh17zrs{W`t~M#v{y)UO_L-UqG=1my~ii?8Xg{(8m<vUO*xJlqBY3X
zr&bW7gBT+tQ!M;R5VeD-6GYu0>IKm~h#o=ImvIQ9eGnajXc$DJAlk_0n#=!zqKS-N
z5Uqk}N@waMbwNLe6g3N?Ih__kv<yOgS(+rt8^hN0B}Vx90psD!&w^-6Q|h)O>=_Uz
z0Ud+r6hxOGz6_!>{m+B=B8c_egtRFwtRa6DgmBj&x-m@5G+!E#;GRMB3Stn8dQ<xa
z(LabjLG)!sX-XnR2e5P?RVt<>@dwKc4`OH#!x%r@+#~6*l#XD$v@nt|ilver8^qT^
zTnXZ85Z?qbE{GLDtPEm&5EFu!9mJd<CI&Gnh(#yjz7HaKL(1eJz6;_^F!5WNHquVe
zxY~|wlDO(%!pIWkgr@~Doo3ID#?vV?$kSe=%6GSC1~H3S@rNXO<_7VDv>e1@n)8BK
zV3y7|Tb9U$LCoVbAxnZ-8pOtK(LV=qa7VizgILD+pQz$UaF0(uK6}4Bh;SZ<q*X!u
z62ze(4hOM1h&4fM4`N3UYlB#qwmCUoL0ov@*=TNk17T<SvRlVT|C|)RDF}HRyE%y8
zg4iNQyh-9poAJtaE5o*#wNBNG><nU;jDHaOY3>eUFF~$xdk9gF+e?zVk`BmT(3H2y
znfS*mzcVWh9wD3z;#3evgE$t%aXKfce^8}`u?OPP_We&f^D~t_Eys6p>cm?iIbLUE
z1Wx5U8-yI4a|}37y+FMf#9xF<)W50H=4C=pXY#cmt_SgsC!L&kH-dO&^35P_1#vrw
zJ3-uK{L3Kj1#v%!p7|3V22pZC>eei!9t0sO>3G&s;y()FF$0935S~(>1@WBl!Ytj}
zD0};Uxh3p1xA=zo5A`k8H#b(g^q%}LRk9xl|4}8(qQR=+o`(AxY#I~|D>barVAr5(
zsI8%n28RZxhFA@88eAIO8Zv3ftihu}{?^&AA)vua_EE*m^0<9agQg*!hV&ZNPs=T)
zt|5j24qqY3E?N*Pnn6QGO<r4C&OI*p>|#ODYte<WXvnG|pN9MzvT4Y!A(w{S8ggiO
z@H}5m4T(qc&7WPWYR!0Q;Yg`M;^fhgmyJ*PP*9x{E2b1dLjetiG!$l0fok~+5+)o;
zmQqPYm<>@oKQ0(E!)P$9A)+BwLs<>+8WJ>=)KE$`sv${3F%88v6lE0&E?htF^*@cK
z9=tA;tf5o({3SG8{j9b)otuQ-yFzoT8vlZwqM@|-Cya3@qv13`!pdnVuc4ZT>KZC&
zsHmZe*|Jouq@l9xe)UqmdxfrUF@~!uOCNVOT9#}L$(r#s2@ftc5dRYyC_-Hg^)w9C
zFib;z4GpA+8aiuesG*UD<{DbCR%2>Y4NVB6y+x&wW*UC+6scJ(R<xytPc?j|p)Ji;
z8d_^;BSZ1Hef~MIUzds7aVJHR)M}@py@n1NI?Aj#(SB$r<3GVS>qdwD!6L~8i_|Dv
z_;U?kXy~J%uZAufzSPi7LwAnPR~ov?;jWl>K<^?_@#RTFduZsXp_hi<8a76X?8#JE
z%xZ3<==R#;qCK<6_S4W`!~EF%Lo^J~Fi^uF4TGg(_Sg#XvDt<d?)0CL!qtjAsuTN7
zrMM<7DoMrR8b)ZCsbQ9eks3y6n5bcrhS3_vX!u&gH*$9TlvBF2WMtN{Z0+rc!s9fI
z*DyiD!Mlal4lOF3lrE(W_`5HXCu{gt!!!-kHB8YkRl|333iL@HaIcV*cA8uGbfw~w
zWa~5Jgo-ZmJ=^JDG*-CNJ!9l&YnY>9v20YsTn#^HSfF8{?3B0gJRYF=a<<+p^v&ez
zuN;NtF@r@KWKzlWle%&g4$i5*RKt%NmTCA|+No#zN%ro1!BsUagYPHHBv1C(mupyE
z)3QQ3P$OPWC8_x2LBU_d)UZ#(ehq6htktkfGv1G{ll~L7YuF%%K*Mhuw$S-i!)C%J
z>Yz}<w##j$N*|k7bgRs2zG0Vl;@e~fJ}Itm4((v%PMJ=NERy;}J9pFBL)}a5cFcGT
z?0}4nhCei%(C|BbF^_6EWb$DRM@(Lvqr@?jj}s=>cAeC4O2gk8E^GKx&N~g~HC$ln
z84c$MXQ}Up8+RQgwY;xhq$B*7tT{RI3tTdt+qIIe$V6rK4)vOb8yarP96si_PA6wn
zxkm-vw=~?A$$Ty0Xt{(F!;|J&6B<4?Zdu%AOv9U&2O1vA>Z-%38!rzYX?UUGrDpJB
z4No*YB?qQNo)JzD4Lz3=aA|0QCHfT|iL~i>t>KM^f9U+H;RE5VhIfQhFXG<IS@yX7
z50>zM8lrT}${&f=aj$N4v9r;IJ>eOTqAWD6R4G05+IW^;(P3xDYV8lJI-WK&-t)S2
zxOL>!kxz$5hgU~N9hn&B)1eb2%&(*5lDL45AVFBuQLBGQAVx<z9X&RL((A~;__Dk!
z_1muabj?+HdOx#{EIP94kpB~rrcz5857uVWkzGfX=W#i7)XkZYM@LQ_xpdh4@!qAO
z+`92+Lpv5kj{FwB5eSRs*8v?(x+lczD4?UDj#ypJ#OOjgj?a$^>G<zzs4%$*_1(mT
z=}N5p`p4}{>Em?yj4WEdbQ9JQ(T#84$iJV9%EzDyIudo`^Ux%!Kv5k<OBhATI!fqx
zm>G{Uqoj^fI!0y0=!{6wQCi2r82lcCGCERql!-xV49e;#r=zWob~?)IsGy^nj^;YP
zd74k|lvdPHNk?VbWgXAd^0jqT)s6eZpHQpGU`{VrT}KTaHFZ3i*uIvIzYdh^G`*Z~
z8c1-ic1d*@Usp#x9rblIkTKEGR7XP{jdV2D@v?c+*vIWfGq*@OHPHacCbmdQKfRo2
zk>W0Crv)2nNnKn!@27-TI$G=K+$$^rZRiMmreil!1={QApktkm^*TE0=%i!1ju{fK
z<8vKDbPUz;g^n&ddg<t`<4YZ1>F6m{hDN%|JRFtKT_y>k8`V?Mn3FxHl<jjQVaLeS
zf+@y7HT2QZSB9}yxq-5wdrkW3=&xgd4%e8334SB~+MY;eOUl@>34?SDmTmPjUVCR8
z5E-SF7^Y*mjtM#@>KLJ8q>eE<#>!EXDLo)Enkp>|2gfFeel3Sa(wKziIpfF4tdL2S
zk}Lrq>`g>vLo3U~Ptq}2c6MayR2|<ER9857G;Ru6eB_B2{Z6K<%)kOI)3V>|n5oNs
zVEib1s$;f}`8pQx)TnSJb&ig?avmLx`$5M%9siz+H0)~Zh5Vqg@IoD1a%WwnW3kMu
z<&m4cBbPoHcci7mOSlUQ9=HEV$F?yE%Vk!x&1E_^rc3x)W=^xF0xM+@{NYtPeqmUV
zhT+vZmYj*JcsaaQ$K%Y(8i{;RYVrM2>sxtl4~=Y)>N*O=pl}R+)v-xObPOyp*sS9>
z9k+Gd(XnAr!WM4p4;@>jSsmMT?9lN$&7C@S>DW(}uI?u6rS6d({KfdPzodQt#|PvL
zGUFfCjXp#^Og&=yM|B({A2*#waqbg3PBMFndY1a9j?;uQRHF}D)N?w{GkZbD6&+V~
zT$FQ)&Ltgxn~^<AMqgeYeVN(2d5yQd*T^??TsLE+^rntmIwUe}Uz)^ayemtttksOU
zuVc{I@I&$ga@U*X#CaqWtbgROjwiC-nytMcJk#-<Apfl(ZN4PG`aeg^H_ZMc=k?R@
zTk1O<?+N1ktK$RtKhuedL6x~7DYC}E7K4}=q>I77BST6I+%fRPz%GYaei<WwM2&%i
z?4-J=QY1g~?u|kHo2sxD10Q|ASsI8zkUZeLF%EhRG9QWCQa&u2J_e8bhH|hp12tm|
zs()u3_e>IIwvZ(TSxwFsgX|{v+!>vdoQs+}26<wTmt4?{$w$afMGOj<{-{OK)ovRd
zE)s)K42s5}SPWug5Ep|leo07-!L4ek;TR+^8;QZ(#o-C#QsZMF`ah=50!nJ+>*CYE
zFoRoL(n)*w#d<nD0t_%PGq|(3JA=Es+v2W^yTh_9?y|VMySw}M^7z*|-#Iz={OZ1!
zN~KasTe?CCq~uIG<&Wdc*SC@i7!l9OMc66Gt0Wjvh)t@kFgpaa`mR?gq*dpnBpH!x
z#4ICb8&S-N;zl$yqLC3L=#}D3fNs63YD7sRO3^W5r|Zr@c_Ydg@m|ub?_<mI?vyiv
zzRa(@QmbG@MI$QFUX+af!-y(IR5l{y&aiMz!jiihnT2{3{_jdKeQ}N6fmAc1x)C*u
zI5sM#rV(|GsAohiBWfE_$A~MhQZPlMClGz<7rXFjth!aJZ$twlY-6<g<3eN(7#KU@
zR<N;=W_XTjXGD7=ni$d4h-OAKH=?x>Cr)HYI-i_E9gD=4G^l#Sw4j8<1PO_xt&H%s
zj~U)QrVaHENALGYN1={gVmcVn(THJ23^$^a5uJ@RNp)y2?V}N0jp$`WZzIlki0Ed-
zmRvFEN*THv@ol<3y;~3Njh?LJ_c5X`^B^Po8PT7)?DV(+My%SDM9V;isng>eu7Xsg
z8eS(fpluD|Ee>TRbNE_qgb^c+7)6J;NT|ym?N4e<Fm|*NV~n`ID6-Rmz*r-~Rt2X~
zgAWA888P073CxpO$((4!B<3ZVH7ZVFp33^Yb$)WDGtXe9;!K7$EhFd9urXqj5&zKe
zsFyg`h($&$rqSXK%`;*?!vZ4~8ufcN$o#EKj96;KY9rQg!ZIUP^6JaExPq0EtE7)2
zU1h{?hw5Kz#5yC^(;+BrpyCEP^(IGbG~#bwohtvm{N4~HY&K%I5qqd_>2T2XpKIQ3
z#14jSygDV*veSrNq7o`nwWNDFjp{sT#6BbTiz0;%FjK>5D~F6YEUKavkJ6wuqTm5-
zuocH?q|w1OV}KbajW|W8j~R{4IBmokT1+@gixKCH_`{@M$IcsZ!3fm^y9pPKxMW1u
zp4ulPE*p_$QQ(ddcWLk&ag~PI4z2G;?HUgoTJbu=4c41R++w&bqUT?S<sKb-&xjA~
z+&AI@T?dSK#KqUFkBxXP@}Dp~HR73Y=ur_bm|wEK5`MkAVQ-k<vc6+|FQPrYksk%q
z1o)qg_+rFYIwOooXF_@tzSG5=6H@c;|73o<#_&t56=s5gL#bG4Pcy96|Av;vgm4pT
zy$nmsegtcz$QiLORhJvujBHv46Ed2R$%M=%SVc682|1Xv3MZQh*#&o6WH2(DSk1z>
zFx>wTkc1;M*i2A_b2)>-!5n2m&;%#5i`8v{hrw$?E(RZ~pOy9qCgc=6u}b>f%z0Sz
zvIa!7>DUO(gpdivOek)`x`a@)3Hd}c#)MeGaSR!c81kD?fH~fTA`AsZP9cWECL{=F
z`m3;_f)h<hVony$jQ`S=FrlOggKW_i*(_y31%}chr;G_@O(^8mUsB7NP+s`Ir=8E(
z)li97ry44oU}~9=>WNmxgsLV~GoiW(Jx%CkLJbpYn$XRJ?!0;}6WW;2)`Z$7)G?v1
z3H8`dF`>Q*4Vasl5Y4j_HxyfJWI|)X`N9oN1vfLHxnS=$Lks4XtgTpEi)cTd9JQSZ
zD@F&FuF~3@(1Al8P3S6eIx%!+?P5ZoRQi<T4+`kJAMVpetkQazFl2-lgjVfSus0=`
z=>0AJHKDHw{Y;o{!VDAon=rtHeRl#AOc+T0W5S;%v}znNn5!MmI)rs7>o8W@#IKOP
zp%GjhX~HPs7d;U%nt2TCSk`eOI-a5Ch5&7Gq6w2|d~VixGPhxh2~!!!nP$QqPc*?y
z6K0vP#Dt~1?rhfitaDiZGGQ*mJXUJe%{O5Sm>04xVqGkv%2d7O%S>3!&T`?eU|4Cw
zD&g3wN3JnpEsb^))|>D*`x``*9(B4=@KqQ#G5;f+5wi_jOxS9|9uxMO@O*b-^8tZv
z9No^kgLS9K-(|vX!TC?7*~fg)ghM9m7ybbgQt=%7)c(V49%ucJ^$6=x6OJ)Z&c|Z<
z+qn}aoD|L}6HW^bOx2_3On7R-GZW66aDlG>CR{S%4(D7p;fe{J3q{|gvEkA??Wzga
zIJBFe_<Y@j8(gF*KPY;O`8F#RTe}Q*X><*VyJv!Hi2e@tz6lRF`cULNGU2h{CnhXU
z(kEYfZo&&X-S!z8nDNqtSM<VUhQo~4CcH6W@Z`urSqyLW!5ov$jPz!_GvU1nA58ej
zRsCZ9#QM#I&!YY>CVUla&2RY5{DbwU@KZMHyBS7L5;E(rjH%2>ZAKb1!nqj1n%0b+
z1@x|4`d$AEJS~yz&)*xJfx*n0(Tq%HWM<CJN|{;A$jY2eINd(_axfcNO~TI+Ww0<?
z&5#&mR@Dp}gThL67J6Y`v`ha`zw>W{(~KxHf*f+0;Woo#hL?-ESbeO1R<Pz|rPYJ=
z^?lFH#XM%@WuS*Dkx2_pTdFY^G@}qh$c$(ajWHwEj5sdlGot`Qei41t!W=KSU96$7
z83|_8GNZN`Ma(E_Mg=n}no+7xAkmD{48%!hB%4vpjN<H+6n+Ua`uz-2g1%5=k~D%c
zB3hQA9BX+qy8qHMsr{9>0o7P5oAHNePZcw&3jY2kR9$clGinNccs-(y;Cc*o%}6Ps
z&+1TL_!;;~D-F4r@kdw_h7>beFf=uz8AEf{-xF8T>MhOabV2ic3bmrnycTH9(KcqZ
zHKUyw?Wz4{^f04?85{cqI&yUFOO3b_b7$5rtX)~D&Tb4x`y1#Ey`CEaJ%!)PjNXF#
zn9-NHpKwb33>#?1ATt(Nu+W0RW(+Yyw!mh=P&0;^@yv|poIKo&QD*$fJc4y3Yp(ir
zMw>CljH_nc=$wA68RN`YX~rru#+xz0jD=<_GGn3{lg!AtP9JQO&6r}wU%dKM)|sr+
zSSew;88eu#OmtF_mRV-ZW@nDbDH+hKn#;v`X3S?;Afi#7{k0wk@|_JXW@iZv&Y#*+
z=4GtQSy!-9J-@OUR-3WLj2(2Eo3Yl6bsXBvx}NnP)(xy1S^qX;69d(d`Ab-QP;b(|
z!r5ZRR_1N2+l7C>wPBYTyXjrJ8K=zHBm5&~>@{Pb8T*BE$czKb2ZfXSW7uKl|5$(b
z=TYWktjAeTuu@|RaFb4R@q!s=7|x35IWx`+&f3gyQSc=*E;C;d4n6Phni<!*c*BgR
z)IT=^H_f<Z#%(k1us=6ry1OF(A;Ud0?lU|Pe#I(!7d_(QV>6yG+@7Q#<xed%Ti?*+
zB6`9LdI>P&6<z$z_+iFRGv1i-){M{8;kopLcV?`&Yah&b&o!)npqn4XRzA^1hJPIY
zBAl;gd=vcLjGO$e(JwQ?Ec%5my9EXdQdy9di>X=3PisLM=5W@NgY^3ZBA6pBNM}KM
z=1i;^STnLx+RXS=nVGW)r*<DhHo@_wB4#cL=CHtMK~9@KhmVOvW(zD9e0>>a<)S3=
zTlEW9EKn_|XF+`n>=rmID8o^w1ullt7Pu|&SP-;8W5-LCTQIho=HsHDm9_<j0X(H)
zF6P`8<YCCm8eolLrTpPt4I#lv7DQVRV?nG1acmZ{AfJflx1crjV^M&ec-Dd<YW^Bl
zm^nc>MJy;PIMITtZ}nF+T9Vl;W<ha=609XfW+{f5n*MTZy&O@Ni{&gR&rrdFY9h0u
z1r4i)D$$YZVW@1uAM96QttxT`ONQ#qHH1@>p_T=;8R`hXt_58?>hs|=plaD1Z$Tpq
z8e1@si%l$OYC#VRdRoxTg63>?upotYZHRsgM=J|jFt@ZI>Uw}oIgP%{tt}YVL~CO~
zTVACdYkO9TMtTh$Ex340@0m^(bf)AqS{K%?tle12>~6t>#X$n9&GReRZepMpSJK;p
zJ`8<Do&Bg)?}Gg;7$6*Hgkcc91aNVP1;Z^EL9YT_9LB0F34U^FBP}2pWx<~`w90D4
z;T1w3UD{|12xu8&!I6wfW4Snv#^j>_nG?8%i55(<V6p{|*2m1E?%kvB`xFjMWu3-4
z-GUhmGg&F;+IIbG@Yxp3VdpQ_xvcY8=d)6drdbzRu$U^hqK*|yELdv6ISbBPuuSBv
zWLVC+!h%lbL|So`1*<JsLxZGSXqyGwEm&*8It$9K3*^pPa6Kn)po3c>a-#)*Td?VO
zZNHT!e`DBe!ETS<)Gb`xDx!DtM((g+rv>{g*l)ou;qRq<!Fw$Du~k2JXepVZ!vPMR
zu;8Ethb%ZOGXG<km{!j@V!=@^9uv{y^zt44zw_v%1*h1jSJKlAXDm1?G93l<re3h%
zn+4x#fLU<Kg3A_Mp?yCT`_Y1{7F@I7y#-U7g|1t0gO)wT=>IP_Ex2XDb5YN23+~gv
zv)~RpcUkX=Xd!RpL%~nz&@(?4&Rbimr-GkZkY%v`ef|pzUb0!OsD3}#D+^v*@Wz6-
zY`zouy?%KpN;hVIpo`w?Xj-b=i>8);vfwlC0`V7yudIu{$NaG1CnZ~<S@Fw)Fspw3
zcUfVu(&VBrT4AyxHJj;K)3AoKre%#_jbx>D(^)b3t$vGg26i&CX0jr)6<L_Gvu0(b
zv}{(CR`d&g4&l^WWiT_VtQO&086;NO3LAqWqD`KK?1CLuI0etO$GVw4R(P%OG3ORh
zzZGE4DV$tZG~$6oP0C|MUiJg5Q6dM84IwL<l?=sOQIO4O))*^dX-_+8aUwIH75SM9
z2<P(muyR?V3R#hCr5~;Ir{@%=Ux7um2t!fUL@SbnzjCypm=(pXC}BlOD=Jx0nM0+l
zD92D*WR_tlYsGecXb9C`o}CI-RAlHoTR%<y5c$=usKQ*8wVLp^-AY}9xu#YBcA}Q>
zw|3E2uWQBo4_XT=>d~-i9aCRK8(7hhxsh-hThWBMsc@QE(Ohtf75m5i@7!!@MJp>>
zbEu6KeXZzcMO!P{S<#-&u2yujq62eBQ9~yyIx}|>PQkDGDbt;ceXQug(37<nYj0M{
zdDSQE$6<YUK7Z3@=Zx-8mG=$|;OIb+GsubsJ@lL*R{b{Gp{(9CNyH<p7-_|832!8f
zvf@t~brM_>Mq4q)ig(mST*+7~##=GLig8^0;VDe_15C7Hk`>43Yic@Qte9fOCM*4)
z4pXg|X2l{a7F#jhiWyeSwbJ93&_vN@S~1It+05@=rOdHn&AVcM(TQ*@m^>`GQ^VxU
zuTy3!#oG@^o^QoM%6w6HPTr&iR``b{6PzEKocndk5-a5C+6pUHTCvoMWmYV=qWrtW
zD({O8dYw}2bxO0>DXXklZN)k(*3%}ei10+Owc^XNlt$A-RA<kwiG%ZMvtFnC`#NQV
z6&tPC)iAk0mWJnEr~GXNDOIwW_SA~qR_w82ixpd~$Z9g|v?7N+ew!6LxVB8+61Q7%
zWPK8~-#1mG`U!SfQKVt=wxP*;t=LB=h!xp}YWuA?K;6zQkINBrkj|Z9$%m+iU!~M)
zn0)wbaK*9Ui`OaTyJ|<QI7++IRhv*DF2ftWLi!QvgcVP$cxuH-D^6K)+KMw)T({x|
z?O>aPvsPTN;v%)&iu1J0O>8ncG@)wJ{B&^?y+pk|I&_)(vuoUmHVId_c-4wQ?r8er
z^cokdS53NU#Vxvy<u3fliraKad6RP2ihI=a8RG6(@hqdZeR9HmuAFM73Lo%_53Qhe
zhs;f+jXvhpsfOC4wCxt{8J)it?WGlK`-h%e@q&)jV{Q1s;Hx+0S2X0Tc*6;AS?}%)
zP%<qoZP7F=KUk4gLWG2mR(!JJvlV@|2R~g8d}sK=`qheWH1-<DR8*oU`ooH!bfQhv
ze$ka*LTjfMCZW?)ZE26tt@oi+5>iV@BY~#b370@7WfE6fpO9vo7AfKWl#ndJCV_sa
zOD`dVgp3k$NH9vsBq6hetP<ivF~!6DG?`l#38dAd^@-iGNyyGciqdj;N{mT@S%M^i
z{?tqfW20g$608#DG)owk98*1W{FR`-B1P$xR3!b?N@czLGR)3EjzhxcJNiYyEx{vU
zp@c;eJ?$Mn2?Hctf0ElT0TLS0o_2}LDIu4H!V>5Q$lMb0NC-)YmhkOhAg_cd2|?xn
z>)O>CEfk_fldx}90zr&~SP2Cr#B)xZgnSb6Ge=Ah(DFNf`lmpzvw?yV3Q72WEJ#d#
z_illnKZ0-5M;DP$O+s}EMd`;*2}u%?B~+C#^lq@h?LaXJr6my1Qk<cLgp$H3C1Js4
zJ*^BoWhInjD9`!_YX#Pd5-KrJa%BnQAL|v;QiaXmmHggf4GHg7XtgBNlu)L5=;+E|
zcTTR&nRO)874_7UQ2#fxUY260!bTDr(~*_XR6<V)y(Bb~&|E^c+Hu_^q)2EX(ZgBL
zQ9?@ztt7OO&{o3LT5+u<JieZapjcf$sa7kl{QF?;+Hvh9w5J19TX#r5UQgADGdoKt
zRXdKV?LvFa`CVz`Ur$A8WOnB*_TUf|drKg{FBkhTQ;{~;kDdOkRLSF_+CT{t;}Zu-
z7%X839R(^%m?UACgy9lK(gk0_2x{|**a635O^)azYf?2j9{VR<{3VQ)FixWTLX-2&
z3XPFa@JN7ozdMmK$4l7Vve*O(y_YAG8N0ec`m2G-5~fI)O@mxQ@zRk~B}|hrT|%Aq
zaTi`k&yX-v0&RlonI+-c%0yp>xNhy^2-bCoqXzs%qvcJ?0ts{J)u(jin)Y$?B+RE_
z?@Ze6Orj!fm$tZA!V*b;342JVu!LpA68@90T*3+odnHtUr>&H*O2T>x8ziizlXtzA
z<#S-2gf-MQOX6C(CM-(u)zO-@PA0!ucxa=9za<dwrjx6V*6LB}O%ncLXS0M|66%%K
z{^cU&Y+=|cVH?AC;qPGBDdEhR0Hsa;q|sV?L^REj&^~V4ehCNY+&mPx{#NU@HF!|M
zAqfPubl$2Rk#Lm85A~0PV-k)_xI!Bm5;!5@q=a)^+bIdB8O};LG9k1u*82HM=nOk$
z-W8xtU!SM%?|F7EuwG=n#Cn<6qJ%v5P`eAE>ugf-0c|%r`i6v?5^hPjO{d0~z=C<&
zeF=A%@3NA4kJ|rEqe*or-@ZCX>z106>JcB5$E;6SpRzt<rQ`Kn!VBh?tgl$}zspUb
zw{()y0Ha$9WxDYLA0#}<6JwY0QNky>>dMF_<FkY>l0JFGHwj-Q{qH|}hiRnrbTj?_
ze+fV61T3HUQ$i{ksb&0<5GG@5;dEruVvvzO6hn|k*3&Y|$Rs0NMp_xoqvImjOxG+S
z@;9(jT6%^ItY>zGGBadht@9>@5;mU?kY<;W?9}g)Qe@<iVU)3Wm}Zh;kzr*vv+gUT
zWmjS(8M2IC?F#=hMI)#7mK2)|(uHR=+jvct@yEgx0*4Hz43`YItiL)$%kaqXG6z|G
zGH%}t8+$>2Q|FffHgmG(V$ID;(L6Hp$}snj4X{SBuIuO|=XLf}nv4)<{!>e@Dn>@E
zj5v1k%P1ftAM^X%aihBH-^|3z=zCEA-)pzg+RF4Xg*jSHMs*npGK$D3DkD)wB^mMe
zf=MzO{~Ij9n#@YYVhqJuJJ*XT$xup0X@)W~Dl#1S5nWbBIT=sl(v@e2)~&!m4lyN=
zR;C_fvx>;6%Fr}dsD_N1GG@w{C8HK~vW)IBddR3FqppnBGTO+fC!@ZMrZSqzXdt5@
ztt+Dm@6>;iexE=iy*>J0Woa4p%eUs8ey478PG}*crHmA2bE{zTf6>J!MXVke(Tbg_
z0sZq}TN&+S-07FtMMirW9b|OkXh+tY$MxE(C+nHCbe3@<GA%(@j&>78s;VcA85!f)
z?=7Q`j3F|H%J_0Ibzd0+WDJziPey+kf1gUC8YVsX-@A)JG6u_-eacd`Xq+!0k@kgj
zn2g~v{^Z(5u#RM<6)A0$U~0^08DnS|N5yD{*s<&vZ>IOgco`F9Oq4N+%_%a*A4ok}
z#@bQ-3#0rr<14+lnJVMwsmN)ZFkRF+gW>Wh|7;m^Wc(-Nh>X8v%$2c8#y>LV$(S!=
zrHoZF7RXr0`HNYfpLZ`}Xtq0gXt2Svi>a5$pw3w;V;TF)Sy!-*_)vh_xmv~=85?A5
zq_)XeCu2QFGlcX9ZPUM6=-zc&E;ZG^09^OWNBTD>&;i{{AY-?TJu<e?#YDz-89QWb
zlR^7PnK1|5*;A6~xbKv)OGcg?y4hxx-aj-o&FhoVdu8mCaX`jF8T+|fYQu-qzQE*|
zCs8qn$me%}hv}lB#n39WqBkY+sElJWZpgSP<2bK%R>nCR3^Gp2I3?q>j5F-h{r0IM
zV(5s_q_2xE#k`4(IZthqaa~3(O&?VEv->Z~xFq9kp16TU<H)=$;|i}!(W^49F{`EZ
z<X74K-A4Iu(S=3ELm7`~+{(Bs<DQKBGX6JC=IifB>-X2k?E@K8_&EZ3!U{g-dY;I5
zDmsS}p0W8{2JITPjhudOQeMe;E#sYv_bT2{!{`tzSft<`UHoZ8*)Yk54|MUDk>7>_
zHhiLsKfMIlklltaGQP^lXhS9&mMsW=qX9;jdKuqo*e}=5pdY-&aMd4XgTV${k<jO{
zF{y0&B{T!;;P=7Q3~6i#x9O8)re!6FV2HFKop93IK=b}lh*qaZ+&)Vcotf9oYC{$q
zyuAXnoVXR(yf!!@UnqwSMjP^Sg2|@e?BSst8_YHgUl*|0V71YW@llcuQAMKNHppDG
zu_~-8E9Ka2a0qrXxNQ2nTnhDz*Pi?c`fTvqkcYPgR%&5Rh9`0QcWb$9&=%Ft&04C5
z-ZOcMMYeer7ND)$5G0?Iqiu+>A!I}H5Y4<>YozLX8q1+L8}eV&U)1u6`u(*c<83Ht
zLpK|`+fc}c!Zy^hp|%YPHWaa;j16UNC`t{sp(L-BL^U%Mxfxc>2Acn&xDDgpX*A6m
zO~O-xL&tvwskpj#pp*>(hoQ8M-kpYiEe?Kp7bs^#c^fLwaeo&`$`-0TGEmWmnl`Ln
z79g%<LuF2;*(Cn3p$hHGmOxe3YOGYO&QODO|DK4Rt2O!&xsDBWZD?vkGaKsJP@kL8
z#0L7iaRWNCivo>oXlTQjaE<1%xz#%~5?W&$NDnU#7J3jowlZMe5@>EiiVZDz-HZu_
zmNxybA8l-CYeOp=T62-+qNH8E@LK<r_lY0#*Nz(hD%jqJ4!mMV)=sRQSt+v%Ls!<8
z&%%1x(9?z?HVm~P_FY&n8wT3w)+zM1p^puHX~)w?P1_piZ$m#`<@~t7wt;~G%;kD%
z+Xw0AU4dTus2EH`ag{#fO76bFVYEj!jG}>bDlpupPl7apxy8SsKY87;bfl<Hs2^<l
z6pmv?26DLU)F<OPI)OHqO*?taK>v$B{3tN&j5gVZDRguc)KW0jhG{mew_$?~Ptrt9
zrw(5bwU|zUt)Uq<n!Q;c3A0#dv(91t>$h_(FqdJT4f7cmur3tQMGR9~1((>cl&%9d
zEVp45bu689Hr&~p=1iQn(uT7;wL|96j5jIyBegZOgKttUrHxu^Ly3{v&hddG|AyAt
zu(7l@>|$u64S(CPc}`&V`rszYq|vJ&%&cvuJ*74)kQ8jOVXF<FX(-yT&4%qZoVMW%
zcf}4HjxbQi?zCZ-4ZFFx$A$xRC1Kuc!#<I-pCSI4{#w&>oc^ZkkPU~~{7>W@k4$@1
z@G%>XGoN5R$$Cmesh+booa5qa8_wHsfjYs4yEa^8^BU_V*2}C{Sg*3u)+=~2TxY()
zdXx2*h~B1Q;4Zefto~*AJsX~~f8T}&3=df!*$~aULphJxd18aYPpEmuMe?89@PhfJ
za9-K4r-c4m`G%dhtnXOgvwmRx$VzFSZ0J~A&%cwy{?&$WHhia}oD$ozMQqbnu|GI1
zy@H<%zibFoU{Lfce>iI@Rw|}uNW<D_oFT37BNRjmPNyJiOMP1z6l7G8N%+|rGAqc!
zkd-x?i29!TaxfcNO{`{C3oBJvbEjUdtUytqDzLHN;(pL}D#5N`Oo`Yeb{q<v3@!zE
z6$BKx6?hbQMLjtc_?Z2y5PmuS!aSFP-0b8LK8+~aZj^%j3JNF)D$o>!I2y|u%^D-}
zLvaytg7Z;koc`vYmUxB!HeyduP*6k*DJU$se<MQ?=Ax{L!tXcQkSw^Eg5rWpFm!q9
zE2Yp6C@7=+Zx*0G6qHp^PC<F$+$<MUL2yNeO01O?3~#AV98^U_t176*TwORd6r}m3
z&mB}-K^+BM6m(TkS3x}m^%ca1Cs?KghG&kV*=v_A3pP;DP(dRFjcFh6g*q$rtu>k|
zXrZ8`g3mp*W(t}sNKt5BsTe9Y86K)13@vIES}{m#rJ%Kf4vKzFZbL`VS-d@`wPmJa
zJBH`ZVq3NbX!VYq*+~JdOO?=P>S}L8rkBACO%l5)7$06_l7j9EdMN0rpcnVm2nD?v
z1}GRv%d=1)1$`Na`zh!znBE}K@fxIH2<OvNW(G6R-6lg7(6)xL4riqzJ?VQSCyY|?
zr-ISU6IjP6DE25cmUSHKc-HqcXXB&LL<Ku<M)bI(ztBwP{3-MjpkNv^nR66O7d%73
zOu@4lW>X7i=r2#S{H0*7h|W_mU+@C*i|ZqBv4SNECa9RGVyS{<3d|}jDwb0pDtM*f
zwStujRw+2E;GBZh3f3stqhPOswRF%IL~T&8QNcRq^{ixWY?$=7;C~o4u@-8dw3*t#
zoc>(Q$s5JCC?MUcU>gJRc7`3)2@Jbfce9>-lR^pm6zo@URKYO?2NWFS+WuobL|r{l
zIjrFM)!NhyT3)|NIl`edZ}mUY9#?RJi)W}p1*a68<|2hGZ&Owei2J?PzG4l+uV<{*
zB;mY*3kvQlc%a~-f=dc+D7eY1Tvl*J!Br|Y)&K2#jm_(<o72ROubW^w8Xbx$cuT=;
zI>!~<rLmgLLYb{bT1oGT?Or<_G2n3Y(*ki1*?FqqnSw_O9&_;tYbA$2+!k9iGWNNG
z7wo)Luv?7{K2oTvUArQSbl2PPM!{PJsa2#=@lL^e1>Y6?pzBGU@DB<;(dnjO#z5tx
zg3A9!{9fe?*Y-`pSBCi=_~{|J^xA02J1gR+f?xFVt-_${hdUK(wtpkG7SMB24bf*y
z3s;d=MFtfaIT~A`L4=A(733#|tLapvSM@feRbpwO24v#2EGn`xWL7bY=YGtlBD)Hs
z3X_T)DrhTI`R@%yzfFlP_`g>D?m(-GLR75^NrkM!rb1ESR{<5O3cCuI3b(57uY<Qj
z4LGsF?^H2j=>Pt;?NQ-V5yxBca?ThvwopHPk8-NWr9x8?QjuFl9u)x<Q7YPS&*W8c
z@K7|RjrPX`Rr-5%#0xq0V}F|?pwCMgts+K6J{9>@#8M}4{c%)DWNeW+QDxqyl-?UC
zpdwyHK}x%xG4V{w)9~0vZ&MoFtwl?|@Yn<uMO3s?(OyMS>O&RvRMc0Iq#{{GDHWwv
z6ypY$P*GAvac0`|iL|k!*Q*4Ew6O~>`UuLXD5s*lin5$j<9Yp_Z&NC$sHmcnSZmPg
z#(M_DHB(|Mv-1aQ71pXMs;Q{XT#J?Jtie!|)x99BHbWf|txKCzVkxbGiiXrVDw=a>
z-Vkde6^&IiQRy$wv9vT*@wjfnZ_aciIz>eb6|GdXR?(6UYr5D?yP|I#(jSOJ+=eS@
zOGo^A#=`d4%eGi+T74@WRCH9)M@3&1ooE=et>0BeHx->#thB{;VWl+U{!J3P^HJ!@
zW)D_6D7{ql=E_IDO`(O-`l;wo<3z<s6$4ZZR53)wP!)q{U;d34Oot|2ES)LzO$F6V
zY~ZtRn2O<C&(gOkw9tVbrQ%N&V^xe(F`5SUU}X#^P>5Efg$@Vlcs76bjC|#3NX1Di
zCaXB1V&1^O6ctld>{IpkUDH%dSFu{f8XDCqX3}Zy*XURHS=0kD+8h;sshG`t@Xu7_
z%%vJsELO2Z#e5YDR4h_)=WR-_B8dxClqiz8@@VptOU)0wP5JpYg@8g!>B_HS1*a`j
zL79yxjgxzoYCs9J)++K#H6U24VjT_CT-t6LglA&btJqBKRIx$DMt1&Iu}Q_AUa<-1
zW3HZy`G?u^E`^+mB@?!&*sfxSimfWPsi5f=Q>BaZR!^vYB)C(>E)`v#2Xh?`JlY;z
z`DS#*JE6ue3e$MlLv`+o-pfi4N7%380Bz10dr-w86^H2@NsOT)eMtY02GXls$5@Z3
zII4m^<BZJ_TXJS#;)vMebg|kOO?*<tDHW&bKo1F=RdG(m8QT4AAzBWmi#o63f{Obp
z9;mpe;*yGMDy~x(b<i#oG)%riV<UYu73t^it29EUCAH{K_=bv`G*t3N-%)W(#ceud
zE&bE-gh=1ji69`o%L(^btF<po$q!XLqC;F<drjvB`_EK7XL!Q;lr`#I3T@&AZ~Y~m
z$XukBykh4_`@%gQrg=lxtLW&rDyUU0-=%y|@sVnFV1@&qRD4#^$d1N#d{Ob0PH?;a
z1JE}W-&N$bBVfl56+h{1fE`vleyIqvBfT9N>~x=MqJcHF9hu4`rn2L~v0`MVu_N4$
zw01<;5ot#{&arQ4PD^C-2DHSj)Mz2dND0jwWU(VF)xeyYbw~MxrBxFsl+8}}1Hec%
zR87dvq2=9T$)`F^c9`u@q6;qS6r$*zUxg(*WIKFz`0cP!$PSksRF$_}ylRKTj!H?1
zc1n<=X<6AKf{IQ%`WQkx%f!36@&i>9Ja&+JS!dQvq-rCBiLfK59l7ktZATtE8kLP7
zeIwAnT0*`9Nz14DX_v`~vLk3mq8&+gXm*6`_#<C@ydBYY(7t@R-z<*0<$Q7sb??EX
zSk`RAlJeP+pEpgl6|jS<rM;^;JCU@Y9fj;DY)66}ML4G@D|Mr>Lc;IPj4PjzY)3IW
zO4?D%j^cJq_JtCDX-krmUhWK)uwzr@1cIYgij}sboE_!u7`8XDj2&@R63W`?*Mw*S
z`U7kQJ1SED*g@6O>XoVSc2wofRS|X4A^Tl9wT-%^I**eYcGR?^7IQt;+N?B$>M+!`
zW8M;tiuJkJfVCm(fPZzri5*StXyZUz2b$T@oVv@7Wp<?4(ZY`DcFeG&rJbfl!cc0w
zohG$L8$0M}l|5M7vUazl9RvC83GC>|#ZIhUSUXd1s2U~E($$V`Y!cHoR>|!r=xIkU
zJ9^vkWOig9j-FT)^*g_>9sNXpe>(;+4;0QII|efk5zhRHAzE>`9V6`+Wyc8i11tVl
z+n;uf5t*YI^301GYsWa|@l@O4nD^P@sfG!5Ok{Hs>txm`tW#MjXPRBVlo8x|U2CQt
zv+S5{2XWJV!8x3>z>bA>{AI^nIu`8A7wbM>sW(agew&@e!k=<1GG<NG5<5trC&nzd
zV}%|2?AUL|N;`(U4$uTyfh?(3*|FM=HFnS!hU-}g*4nYoj!r9rQ~zyD#SM0B<j~)C
zY`5#vEp8H-|Jbov@V^XOShuonqZ2tXNHwfV6|=(*(w(fk?AXn)hjlOOp^izEaKMg(
zbiO!H#DPOJ#_afN$2U9vv*U;zZ|MZt6r|;-9arqQYR54<j@xm9{R^xo?Ks77n)M9p
z?l>>4b(Z;@9p@Ry>DE2nMZuRCF0-!ap6(hQh>zL>J099`-HsdV-?ZbN$iKyK+m1U7
zcZGj?V*2}nZ)J_9tvosqcx1<8HlNt>QbeCJJY#)s#|z;%-I4B<;MaD%Va~KyuWHQX
z^zXR%-i{9pA6Y-KQo?73FRX#yf$wzjw<Eg)IUIV|{iI8}1Cb8=68T{c7&t`HR1TyT
zoQ5HsHLU|*FNP=~okRZ;IGaQN5;#4FGKl<)44E9rESxM1Ssn0g)DKywaP4MS&B$g>
z2XZ;+ZU>khu(0D|wX#YM$PU<;?X0xA;(#jnU7Xh;*vSytK9X|W%pM243_g+LXMh8@
zwgo6HHy87;hQ{hoz{%^Nuh#YciE<#ufmr6C1KRH#)@WABiEkenC%B*k`2^>8pn%|b
zdTCD4dyJMsY!+sn)GbuhfkX$YJ5a-cBnOh&uj)WChVl+nAYd-RT9UOCYiU-hvy1~}
znai=hra3k@1&i$r?xCLm9N5+|u9C>C?7$y_t2nSHpWdo3(ONY&PaO!<bfA_4tsJ0#
zUe|V@%ZC6#6OPt#psrZAo&)s-H*laKb0gt2cA#9RII5YJrt~Vnesk6o))peOr2}C-
z^fqMf>ut^Etgf-`9BA*rMOSE=L!V8k12w~et`2l`=<ky|InddGVVz=2Hlp8OVqdNf
zc5|S+10x(5=|B$$dOFbCfj$oOa$t8-LGS#i(Q~2-{1w&zcDmbdYZLT!pq~Td-`4K$
zz(5BEIWT}TkH4+GU``a}|C3aZRvgUc5Z0lr!yFjSK<iS%C<p$edK{QQCxQdC?%{<=
zV;va7Ig~*4P;KKJ$et^fc%lQ79GL9D6dIHBqbPwEYHh#U>4v2%LOhjMq-45-@m|Z|
zOb2E;FvNwSF3fgdjst~VNO0jV2j)_TIML0Cc@E5X;F$x@sR0fwbYQy!I~-W#z+wkB
zI`B7l+7bs=(I7O2mU3|!>vC4=(iIFV9W?Qgelz@P2i7>SmbRWQw2ngrRp$lPi~J1?
zy(=0vIq;7ITO5cksehei=%2Cq;oxS9IzaGYXOMI&jX($Tgh%HrAM$zQLfK+1ofCID
zaMpoy4(y^`=Gyi+&~AU=5c6IK_AyYM`yDtS_#i`pw1&eB|2c5PfuqbPM9wjW<E(NU
z{TI5E%%>bU&2Wa5{BFMV=N-7<z+DIKQB~nlm-8Dga`Y1GWe2V>Ty@}v12-MGCf2>q
z@acZoEr##a^nU@<a+^j%Qp6oP1lROm1MiFc^{-MrV16i^M-Dt@e&WDWhRZb~ck!Lc
zFC2L3fXfND6R#Y2P3MRc1}EM)@YaDJoP2FWAlK{QJLdNed~o0+Gi~$>!zb3y4mc|5
zKbm|M(QgdjSts8JTT$Hbldk_%L)IwzweIfzKq@C%oC~IQA`L?aNuO3L+=(nsWOd@#
zoKRXPBAkeH>L+75Co(b+r*|TQ;9Bv9OoB5rkV84yoG>|IW+%H7IT(y0b7o<Kg;`~_
zvPvQ<J7Hs1gwvscUZ>p&hj5%uyx*<=+U{|}>qH$V>N??b!tX?0Cj!*|sX;iA%Zc1h
z%={Y2>BPbl0fHIx1J$2ud7Ri;ImWyqRHBm>#dYR)qJR@YQNQLyh&fs~F;2uX#|bB&
z69eC+P#b88XEV`>f((UN3p<hEL=ll+)QPVB^>1r4714Jm$w~J|p_miJov7eMMJGx)
zQPPPrPLy?`lvt}Y1FiCV;wf6O96RNmxX1rVrw~<J$%)ENRCl6=6Mu+xt1?t!9kNNQ
zCj1}Q_1~>(a<P^Z*XHW~^QC%fJ5jS*BF$}8&x!g@x>Xo$IHv)P5Qc`VjaVBy(S)I?
z6U`Z@l4cB>I_o=_^8dJ{6Rkwf4E|qaTP`jt6>8_ir;mjxzr7P3*z71WJ2}yrxr=a0
z)i!i@qK6Z2op|R&PbYdgvB61S9iX=peVmx$#8fBxay~t;YLpZGoG^wA{hb)V=0Mir
ztb?2w%rJzN+A!3KVS-1z3md^aQaCAA^PkM4S;sgr)`@W<I?;*o%oA8|?bbVimPuTk
z%<7KKG|h?W%=4U>!Ej-0U>2Qs7Hy^zjT>qNv)P}+N;UlD#9U^K)$9E7K5V`d3us8Q
zxyXr?B6Bgr5+{~A5kD`mjEl=zSBRXZs(zEtDlV>OUE{=BhIJxmJ&nxu`lbGFCpI~8
z#)-2|{Nu!CC;k&T|2om`d)OW)wy?9+iEU177tx(g>|n0hMgJ9J7xQirebC&nmw6xS
ze%1r52U!oX9%iN0)0Z|MVLnP{x;6e7^KlV9;lxS7r<^z~xKd_=_ltgK&N(N}vw4B_
zrV|$#E{V*`3|E}EN~ePp*ST0=hkobM4UrQc7k<l$+g!Zk#6u?@IdPXxLw4>HPt;#k
zX?eg-8=j8uG4l&2o-k1KDZ?`-o(m`Q4Z};pubg<z{6;uG#~I!`@xcj;3sx6C()r><
zxC?1rH2eyF=Cq$qe4&e8zWA?Vt#1t9S${ZDG`F2L{Yyl{T>4er;6f?};?ypr5j^E`
zM1<f>E<`e?V@=PRfi)v5t$XcJY-Yh(7_z#M&4ujDIap1sM%KCO^-H(eg>+Za6H6}0
zF8EyVbJXU7!azB9_<y@97ws-M7@Q*Na>32)Vf6}s82wt~LQWT4%d~<n<Z@wDx~M3Q
z=5}Gg%(y(vc}0G}h2Kr0Ee2iCTnM=kEu#5dh!Gsi5a&WZ;neP<53mAUjAy04V;AC0
z(;trLvse+AeuHiW4iOY}A<=~-Hj`Z_%RqiH7m72NU@gg7inTN=<&>eF8XQAVj-B$X
zbKj+qQ_+P=E>w2m4;PxdkmAyxwo`?*whL7ms<Dz^-Gv&=HCby3KYFpfjtg~Ns3)8z
z4E0@Tz|c_mjTjoc^zVqM!lqnoCZc-^B(!j$r3*cT)5?Vo%&l452)`{uI~UqBOq&`(
zwRLo%6BnmvPo!dJ<}NODWgw>;Lw6TGREeTuPcHUyp|=Ztm<Nc=zAp3=+~0-NHv^PE
zkexxSgGF@Q^uUe3gTrW#T$t~|a2H0nVEd_!q`~9DpJZMNMO=y*?ZOy(XYN9Hf!brK
z!<*HoWugn?1dn%Nf(y=1#o|oS6q>|LFxiDEE=+ZS{Arv_K+AL&X0S;-lVKKp3J}g5
z7yY=VSCy$)+*}t9mP=UiGG>7b3tian!T}c+xv<!UtuAbHVTlV%U0CD7S{Ihl*_SSQ
zr3>+4`u`A@yRgEA$EyPS2gZG?8?%Z><7(Da$%*A|$F6f>y$hRM_{W6}wDk@#e{*yr
z^P|==k#qGc+wSHOo5`nrIg)XU3nRP6&_uhfyTz1R6qPSIaz=*e?Jn$~t4i*eJ#Axm
zx)8fSzk_tI3%lshY!5!l5w+WeJ=8_@V%8fpdg#fZ$}#(RLzyn7KIp<B7oNND!iB>w
z{O7`L7w))l#D$|STz27#3k~-Mj=6Bsg;OpZ=e=8)96CV<s7DNiXj`XUC~VYdug`F`
zXIam&QuMqF7nm=yUK0M=$`M!T#9tIBO^<zXVVYUH=E8NCK9w>3!Tg{%G^umUO&4yF
zSvO|Z9v|sl7w)<6l#)Bf-gjZahv-Mt!we5tAG(l!Y;5JEnEN9QnKy(M{T2R%M%2e>
z>V#)>Q5qXd&)1t?CGn*TuUz=dEqU$28`_r(!H?93VNq|{e9!#Og`K++$lPBj{DX@=
zcgIee7AUJmf1+!M8cqMx{Nln_7rwbb583(Qf~URqow@C&=z^7!Y2R;-NFU~g!HxG(
z_z;CuZlrc&Z%*vXi8OA6yO9F40Mfb<;f6*3?<^wSNau#l55<r4Ze(!dlozMH$mm8U
zH|Be=z=O<gWO3uJ8~5DE>egRY2D>rDjcjgYcO!=zMmI{iQQ8fY8)i3R+=!+6-LSe5
z&H0iWvKzVF$jwEY8%_qQN^wJFwzE2fpQmbs%MCXdJ#P4g?{&i`I0H|70XK3ACo_LG
z$>WA5oV;!X1V_0M6#Vj0Scv)e+#3ENS_6M5&W(I-B(k4hWF{~aa3fwg1>GpbTv#~q
zO$<c@7j<Lo(*M0POky+HP4hbH{YFc1H%c&<6wasOhB9uHb>sN~Lr*u#xiL3NtK~**
zH_E$Ffzv9oR&}EiLuIk<A8u3;T$BGAT#bv>-KfD(Q$*`NGuLsWt{WZMspm$08V_!?
zaHE09Y2rph=0>cIg+H*IVd{=RQ!X}hqq*?^yc*Gxxh-oe*4C_TSZRMZmNT?tZqM35
z_=$eKi#oZ{SvXzX=;}r{H@dUaL-^)TVK?1+vU)q%i_P9{^l_uF8~sF1e>avt2%|a&
z2xlO}AR0oC^_TCVZVY2*xf{dX7~#fvE{<e<@G0U?H%7T}!mF(b3-$17NhgD&-5A5s
zv8+_dI5$@EXYdJbOmt(C8(+$43+TM)rytqLZcK4wsvFZde-`U>))}lbSt)by=djss
z%yHu{cIL6p717f<4D$u&yP-FJAr}|1E_P!H!%~s6jG@K+^ed=&Zme=+wHpWAI7mnH
zmbQkj0B-!V(y-Qzb#AN|Ywd7jgBu&&_}h(5Y;L7A5&hSV&4NEwGHelix3ggz^LF9L
zA;V7QU97uV_lW4-HsSl+7;rSSpEa_iM!f3Zm_u$Hb>o;Dhux@|Rd@b#;|MkW-xyjB
z><k>|8ZNP(aN{JyDb{mtoMt$~dX|-XDSJ-CdFBhO7llvlzwE{pH?FdCll2<wb=DiK
zRD+gAA7;1QxXsQT;qMLUHxJ*ZtDgtiJb1wVLpL6|@z{+gZlw3%P``+$?7wy6og2@X
zpR>Mj<0Zo@+Q&=(yE43X;|-fsbKd2V@7?&|#!okXx$#l>-xxl*@mV-u-1y3@^87#F
z-T2`K`s#y(mTrIPAM?XJ`lTkE)!;!YhSaQSSSk8*wBC%g9{PK@o*c=VPDGDSGi30f
zxL^OyEu#mS*w4(G#RHlpoBWdV1KHUrMwuSu@WAN7tZ2>TL0%669+*9#r`}sUuzDbQ
zAbSALx3M}ra55+!s0?;is`&@cLgw<oD;&269>F#E!2v!G{K6@qq|3>ii#50K^DylG
zBO=O!pa)4*d=bz*2zd}6&}d@DXb)mMC@k`0849q*d617Gzle6PYls(I(1SvPX*S3N
z+WiI*Mc66Inkb?<--PW5XvrRswrHW1V85LQ?L8>zK`9SPdr-!MS{~H)pe#qLvzGIq
zJVOQ6KUgbzP>G>3EA>^D0;#GnS7ogx{KdufV^qU~n!@>+9A1aHkq3=EsLNcBwLWVD
zR$8l}2e%sOb3-*@rv+<M)@CB7ISqqXVJRLINgMSnqrR<{9<<_UYt}ZbZAJc%Rf!!u
z=;*<`4598GbYef#$xt_j&a7QL=*n=BPs2(}LSw6HJv`{?K`#$_doav{;U4tioPn%;
zS^Kf}XC1&w?b*6spGtI)2ZPxe!a7t$=iD@m@L(htXL~TpgFl(4dobFAF&<3h;#iSC
z-h*+1?a})FPN3Ef(?8@+@?f$DQ#d+R<W%FiXr|HGm$f0~%n<%eI!Bndh3P#!hxsqo
zxvcY8Dde&l7J9JAgEe0CoEuo|!4ewtUcif`BImvb%RE@_!3qyndT_#nlOC+{V6_LE
zJoty!<;=7X1AjBD^<W*tde#lB8(BR(8yID}_ZHktjt7U?r<QDC*vY!pgKZ4kS$D8f
zPW|l}cX?>CApK&p$AkUC-|N9X!EH-sIKX^RIEOr_2>pw}|AceIgQJ3vd2n3t{fYil
z%$I2IUh8*~pZ4GkJ7-zXv7TqWz)Cq6skQw5?PU+Huz8jB7V9++t~1<Vy~#>zwQFq1
zG%j%4gFC{x>%l!{XJh@)Kk(q82ah~>>_Ma#>AZO2!BY=@c<|GMXC6HF;F|~bd4U&n
z4fNoPsOJ^KJJ#2%Z&=^5#^gx#-h&U!A6Y+p@QLBz8~qCZ&ZmFFbFoeMS31fQLe;k?
z(<Z)quxoB|Yq$2xgD@}Bdi6tK@ZwQ;R2nbBi-o6RC)G(UwHKZ0Y16F5Xo|3KFYFog
zkBt!=C0H}Sklu?7UYNWv)BAt+vwP9Ee;^ZcW|5i2i>!jPc~OVI9-$g?cwrR&lR^5Y
zLW>tFZHP^)7m|p|Uf7rw)}QnAUUhik^uoo?*pU80hE4jnb8dD#UiA1D^fLQc3-doO
za(a=Ai`~7*?L{6hDtS@ai@a<md6Dczz>6p@2EEX{2r=Jzr*~<z7x}#?;6)6Zv8-{d
z6wSwQAz5!;ycY>vEXZ0&<P>J0uSttA6lF~m(GJTD#RQl3qPQ2UD`>Qo@S>y_bl+Mj
z;Y`V;l@Xa`8OpJiXRY8xMG>v^)BJ}QRlI2CMRPBzdQr`bx*VmMJu*w7>LRlSLrvCN
zthHI|crkOkzEkzQ*jL9;--`xbG~`et)&@ECC@qb-*o3tyYqb~V6fY`N(Asg4a#}F7
zWNpRTnzapUTh`9cl=ciAyy(c#$qSn5r<)g@x!8rZD=XF6*~ESRr=bU3{k-VqMQ<<0
zdoh6%`gk#%j#`gEUoQ4z?eE0^F9tFXVWoNoc`;b<o%)8M%)^AU?vi1I7bCei%8NgR
zUuldsnwj2NjqzeE^EeS*?a|vdk*>q+O!8u~7gM~L>cw1<GtG-x%+rN4gZf-B&D={h
z%;w@8Fa8pK=@Ys?&x`q9EMRk?7mFDdiJbDC^iyLA7ne^mEEE26FIEU%$*_ubHI1}g
zdbMl0xXz39UTpAUqZh0AQ|jMdY@(1CTfF$ki<^sr^zm~ujkgtnOSeNC=Z2`b)r)Oj
z9P#2PSF+uUy$n?C4u+jx>|)r>x<^E#XclNM_Iq(aI0qSC-P6y$LtY%_;(sDa@7BUs
zYo~i?$JjaUrB7t~1??oOn#%ApUj!A;cyX4-gAWsYIOoNAFOqyn_ThpT7rjXIA$^v}
zOI}>|;wnEi{t5wIAAHE;!!<9id-2JO&t6PS(r$3g_i4u&Zn4rPZZq8R;x5BI;X8hW
zJ@DcoU0}U<?8OK6pLp@qi#N>ASYNU}XMMp+b<&Koub5v8=PF;=-+J+mo%h1mEczk)
z=tZ$h`kVt_y!h&c+oyNMH!r?>k<EwfKK$VPR6eBU&`&RZu@lBc11qgUwWSf9$%k+s
z(sD6^I*K7uMAP}Od4m4XjSRxc$RNi>XJ*L4npH&K^ADXle6ac;`Cw$<#A;@>h|I2T
zgDlwYgH5pFgDRNj@1;#Ud~gcK<->qv{uS6qk6sOY9U1WYK<e|s&j8k(tmNnNA^Mx1
zme+?yvEiBzAs+%hG&vlIVhyt9Y!yr&r$zg4{D4+aY%9ixSix~V<P)6VhXR7*eKci<
z{;L@+g?uQ?eu9V=@u8^T*&f63b9&2*`7k20R>6n5zEE)=O89U%y;jnPnz?G1^`Vpx
zrF|&F=Gk{C6x#bJk(8q4eDpxfl=42Ld!Is3(T7StRQBNyADa5mj5k!phsHispQZoW
zTh)hZ#6HvzZKy|E@u8Lvwb^OGGyK<Kt}Ai|hx8xs>if`uorc11<ipFYX(&XMH{nfW
z-4)Z^hZG<B(?Ri}1!s2h!M$2*=|d|YTC>wu)X>I<=HK)KN=rK*+Oyw*wWG*!jW%@l
zp^Fb)+36+xZa#Ep?!nqq_>M?JZ{|L%eOdd7=;pJAfj*qv5g6pdU>cJXL(g7lLqv3x
z4?~%U31>JR8s?G08CgE!Pr;)Z#;}g{VVv;)I%}Bd!z3SMKc?m~O!i@l50`zo;=@$V
zIqt*7oxy27O!uM9!>}1_E@GYO!z>?W`!I)#b6NjlrC$0T&ewk~&i7#f!$J|woYt_|
zhb2BN^<kM0`+Ydz!*Y&p^5GvJR`{^ehgCkT_F;oqYYoFXAJz(IL3+b_!SuK2jm&=w
zr))37X69`^Z2xVtZt-EO$O-P%+quJsJ?!jc-6f*C8MeFiZx8nRuuu5cdh6e!9HgP{
z!|!)rhv+c%*Q@%EbB?ecWj!X=+7!xo!iV!;6Hl_9^5L`(c%MQy^OJeThqLSxpCe$t
zz<QDO66*pfL<v{9&c`&g{?M-ZaNUO+KG1YJ4}75MyrS}iZu&ra%ZJ+xcUbST-ebMb
z+P{5%N_*%-vG*wh?V(3LkY1Y}dg8-VAD+=^>qD3y20!SJ4=?B{?bCslmp;7m;k6HM
ze0ZEG`ZN1)S>Lg~_u+#NAAR`5#rWGnT8r+y@}1RJr{xPpa}@l_(QmBZS<@{E{Pf`$
zbL}eu$}HJLOXbImYr*t>Wbh+3a~f7M!x_@DMzBWuk&a=?=>R2U<i=<7BfB4&{K)Lb
z^7|pGHj5uw{dl-aXIlF8({lLrS0$q#CO_u!6^4ptKP>DMkIj{6WtN0<x>FMQjo+uJ
ze%PsIKUVnR@WV+blpoXlaQXG;x%>R^Gr0ZmFp%l>BRNex0sP46M?*gv`H{<y+~oUF
z%#S=&+oV9qk7z&g`Vp}!BEU|RA4Lvov;_Uon5V4?7By%we#CM@0;?}ECXQjt>tH@V
z^7}zRO94OPnF|W15JO=<=n0aPKpQQ>D;8x<^dpIZ{MM6$#r-JZM^!(n`B75%Rs1OB
zM`=IG_)*r6itJy%9xUevX$98utXVp1*&{+n{|iuUl{l@kAAc~=)(0Qc{eR8{s{2vH
zkH#+p_5G;H4I{sfAGMfkvr_&*YYg4BTi1_zemtEY2xW_>Vgp{0*4^sT8gtG4{TSd!
z6F-{z(aewLY#vyp(Q`ag{AlGzYd>1BNn2^ju<=RmDLn&i{OHWZwti5t9V<b5h7PP9
zSv%1o?h~L8)zHOH&(20SKe~%Ldo%R#qo;6s`SGGlh?4sVr>`IVnE#Kes{oE7i?#`}
zAq01K=1jYH2oOku>jJyDE)v|`-CY)US=?oj#ogWAoyA@L?aTJB|Epe|I`_Q$TxO=H
z`}N_+UMBql=pR7ZZc5qjfdK&w3}9RU<JqCt+xS5N3}!wgfHn!E3jI)q`uPkCV0Zu{
z*c=(a7+)X7WOM)v<Dw{k3S(KB{ZANi`awM*fQK6u3KN-3qO|E_o*&jL7Bi;Mf}&o^
zrEgAS);gh23t(P*eR=>h0+<=VtN<1S@H$SPO>?8YJ|}>=0UVs7e_v(H3*e-o_t%oo
z58&#O*jl%=QBU>j!<2;qEDGSS0J=t7lyGqXBraR15wCXLSQfzY0L}(*E`SvQtPJ1~
zt(pK<1+Y4R9RchNU=4Lhq`onLO#!TBPUgA**86+|Ev146i4^`0U<>Ov@9CQZAS7`s
zE87_VVcgD0Q9l#z3Sf5tdss~PP|?pRdpYevR`vz3-}gVjgp$`yXi@SbY@VRD2XK@I
zdX_@su>g*<{;a2Go??E6@iZ;`gPtf44<p=rDfWB-7Xo-6z=r@X25>2WM*%zz;Bo+0
zILUp+!3ClzTxEWZ`j83baD(dU^IJ@AGu~mm%XlvU?YdVeg$Fd^EKWV;nNI?E8o*mt
z$b1&Siva$mhOn|Nf%nGtm(1TVzVba^(<)G6D7MEXFXwl@J}cJv7{I3hQo<Xx&#Z?6
z3E2D+z*knj`TpMn_~G*qdPnXnuUjb4GyVyIL_lIrNJ<L&7Z@Nt45)cgOTrk=n3OSs
zk)o0T$$eh@pi=y>mtiU(HIRmL>)Il=!F`iNdMj@_KmYVhG63}kdUc=!JL#x470`gJ
zKsG>z_bgk#sun#5oCDq`2z`XngM>LjCu`Yr66v{s+yMQ#LH`@jlO_}<>@w-{XV?#o
zKL5!KFv5=w0)o#)CK7O_VSqfTAcc#gw+R#10TZxTF@QViy=R?l;K3~|7Kj5Jz-2QM
zD9D7O3II{e3-$_-SqLc1W;9R~hyjWKD?2L`mE`Ye3V&pZp-_mO_y27b1BwGBfRey(
z!0$jQpfpe(r~s4!$^zx!J-A)Ev^7_=%#7YUvLE*gn{YfyMc`MCssdau7RcW{NhP2%
zD>L54uY2n~qndT0_cU}>pc?Q8&=9B&)L@?mG<;0Rp%zffw&*O@+P+c;sO$53OzJcC
zD(^k<N@X>o8tybHGyxhjC!G!eY}6|kk!C=1;52nL4`K^oGIwlCpcT*>c=uTu1&jvT
z0BwPGKzo{a)Wd%&9T<u9WzrGo1at<v_<C=kE6|P2?u<Qw9)2u+4E17O?7K#p^zrqj
zcf<NI@6R}ZaUkO$MsglZIp0)>3}s~)FdP`+$Btw&eWr5yQw;fxq3@gHlmrv>KY_6{
zu>pFtWIQmD$pl7HIyXu@$>-^>g!j0tQ<5pbRA3q~okDG6Bk^~IJLV~N_m(*Wm<h}R
zW&_DaM=t@El8>p+VVui2513Cqw!O&$#)ZHl>df_8L=o#RRu<Eu&T7*$MC7v!SPrZP
z)&MJLekRvf0beWVD?tw?)Fe_nTqlfJrLSduJtHaW01}C8@Req(;x^HM0-J$j72<Z&
z>|Lc1*#c|@wz2pRuoKwDd^_U~8lA@Z$c;kg8nNqJSVZ;!dx3qxe&7Uf5-^s=9smvj
zhiR(N<m?ke3gHppC@^Sg>@i^3p}50u<KNzkx%W2yIQuNDWdC#{JjKfHv=Nl*EO3sh
z7et95&I1={XA2@Mh>O4_;2v-vxC~qY?(!793S47yoAEm1O~xCHX@_U0?dTTsy*uOY
zFd=0|3h$>%sfdgZfQP_m;0u*?IV^oQ;}P%}cmg~H-mrhi$;LC_B^@RWJO^G-+tV5U
z(xNCAeeQYV3Q=}}eZ~UY7*aV@cZ}CSr0e~Je@p9yy5(rn_du1F`UlGY_gbVA{|J0y
z(c?qHzj7%F>BgQQz5(BXAAUVUg9r(FJL>9jUWK1O3`r2gwb6RbGTws>iGz69FpNl!
z;Y!-FMv@@HgUB94jv$f-5fMcCATn_BWQ-{plQX7ZtY?L$Vv;(D0?&*z%+oTaW4y)J
z^D{Ef6hvkw6NZFNJ06;ac{awZL5#iX)$n^s{qOa9&LDCHVFY0YkvoVyK`23}?3p)+
zfA)mZueN+aoarC(ag?4vhyX`{F~}$|ij0)46ol+^>WXn8`o)5w8Y{Z5mn|G>1!1!p
zOAX(wILwPOx<N!TIX^)!z$A*XAY-8*3Nwjjq!Nn+@xk(16cYrUNdMci|4w&_3!)hN
zT;o?FmJFg)5QBmk97O3L$^_9qhz>!N4We8SO@n9_M0xhF6-4bIDg;q6h+l))^u>Oa
zR<F!am8fI$>Q_E{|Akcv;x{&b=cuZT)flTY)?lp3Nd6(yyh_$#vu+UM`Gov>Y}OAV
zWnrTM^FMt5hCwu9-q=@~1QE}?e;qF?3eAIP8AK}<TLf|PTDB@i^465FO=w#`Rhu9-
zEb;u?`N~;-SyIO!x&_fah)%3`4x$T_u8d*Xy$fz#Iw$VIX73>S1kp1Hx>npPh-tfZ
zx=c+-KDqfQ*S<mY3!*<e4`6IjCv+ea^2uH_$&et11~HY=1~H8FQ9+CjLdqLDJctpj
zjAX3E*RRIVW^&7z><voj*dWFQ@xF~dK8T4-CNS1aX<RN~PGU~6e+Kbl3B6g;TX9o@
zSaBv{g$C+$Z&qMS5L-F(nL#WKVj1&ULCj_{hjA|Bydbt`_PT36n+t+i$YfCve=%7c
z#1bat)2vkDHL~~D0EOi&Zem;!#7f_1RS>Ivz9xvZ%-1olXWZb&ZVV#D=NK<HU)lVV
zJoob77Q_zj|3q!{f2fi{RPJsSE#<xUkit&(+{I`f4ci;Uz90^ZI3i+y5C?*IC*Zw+
zgFzgkc`M*|0f&P)5`-uqyt{HVh-AH#>p|QI;#d&JgE&FE({SZH<4KCubPA_}I8D1j
zklyU0pAF(1k$oEJ^c9-$;Sa5Lx1<+n;5gMKM#|(elPf`7^_6QubbhB%)XgAn1(8WW
zW&yW@xD!MYs*iw&hn2fQJPG1y5ch((AH)ONLW6h|MBV!e#g3Y%5oXr)$D|)tzMqbs
zw87J#(PW?vfyL)EADEE-ZxAn;zw(vWOx^_X)>q!q=(IA(`6DZ*V?0jbQxKnn_`>4X
zAQEu(NdLyl_aJ^S3Gww%0gvvR<dBe+M2w03*k7203G|CXC7+}MB3MZ)Aen&V0#f;&
zDVU^WO!v~uuzwXjwLp(UdQI+iUzvZ$6VnMuFCc@TDx=`NMx6A6dA<5)5s+0t9szmT
zA)A1lzGrp;IhdyzW07YrU(YSz+g&ehK33=}KJomF0pDllCof5mO+f%vjLa>yVkE))
zk|_&N1gHWu0lI*q0%8Oh0!)e(5Gh~@Vk`lUKwnT}Y{s6)<A{?!wOpWpfG7cl1Qe#U
zCyJ3yp`d_YChO!7Eg)Cdxcn!Ik!KO+xsS(_5-T81Kt%z2e@j+O!1+qWiVG+q;O64k
zpE;KlK&dE)Qe1)3jAWK!QdU4YCgpv-0*zy>ICA(^KqUbgFVzWo7hhSx#>7q)0b$4E
zv%ZTbtSX?IfWHNLg*yGefEofO3z#CHrhr-kdJ5<zptgWI0@?{^FQ8e`f^`K9HVQTn
zP>=kdm=x+$lA;d%M)*TOLmILlRwDruve|6}G-i{OCIaG_H)U+b*jzvhCM^ZfNyx1Q
zv|_X4F_V%^&lf>rTk1MKU8?C}vx9(+)W8nKx(O)u#7w(I>BL1->7501@p)IlJBOLX
z?gCoISv>@h=j<Jxe{TVO1dI?cQt(cj=}T=9FhoE<Hv0=0AYdT#;vx2}P>Xy92`Jy!
zNtwwWDqxs^Y$wf_1a_X@4xPv}TtIFynocVs93^11fN=sI95t!JW4PL5+5fQ^{cdVF
zwWVR5=<(Du0wxNWBw*AblN9>(O5{(PT8B*{72~3&QYU=ZmkXFCV7h=Af_Hs#zJLV+
zW(t@kKuQ-eTfiIva|KxM;(uOc+A}O>9xcPt#VWju|5VjkC}0uw6{Y3me+gJj108CT
zGhy?0@q3%a5?{GXUnbzvP2*nDs9jZ^6<joxzEZ#{pRX3MhWX_$%31-0>loKFZeZLf
zU=x#R%aeB75wS(UR_Y4skVt)-fPVxWqD`Cnd13T+n&dRuQW-mFM$NT$3fLv!d(y(Y
z1*|J??4ijy%OZW!4TTPVr!z?R3D{3-VVK7c(5C?NuyRoin&?La92Ia?z%>EKXmV=i
zNdcz>T(6z%ICWG5{e*x$$*mGe%oN9CPYWPCE8q+h;yE+aBs|CFdBzKj7a1>6bC_IV
z+_73C=j#G)2)HZY9<5CQl`Gk|X!ECOe^8mXCBAnP{SGyGhjRUUfg2eeGMnu+sM@iq
z&HFSH&U@q`EldHAxo4g;K4GMeddlP(ZFg<FYbGz){MV0t$>bH|YsNQ>Zv{NP>0Jf-
zAmAenF}?Lw#3uotX<rqQQN$MkUj-x*kyykxb|9Y+(ewOH4SA&eV0<_zB$P$c6EI0A
z(xYwO9Yhp<VI`@E`bDiU5lPr29?r^7p9mI{F(wz0f(b>X6p@N~YQ{8-Y5mxABGUUj
zwpwT=5%kcFEy59zSwt2QSy{;~A`g>njM+uxU_#D0Mdb2%q9<Zr5&1+YB2*FiMf6;+
z!;cM!X#cbhB?+=3_`1kM5+O6G8Wu%9njdS5&_x(*{(4GV-%+Mm%a0w^rHCscQbaLs
zMF9~}B4Yd&6%-N8ybxny#vFT!QnwUgUX+neTl(3Dv24bP_~}VvaS<h0BwkWPDW8`X
zQHFV0Un$3=yod@+D*C#1J*1L|$|9<W_)SDJ5zR&XE~2W4+hJ-W(c1~DF*XoUT|^BL
zHQB5!qK=48$+Fg>vEW17>eAFYmW0l2t1qHM4!fS{omEJry6Ej=l+PcccR8-1h+6%#
zHl<Uo4r+}>G!b#{gci?8q$v}6Aw>%jEk*Pd(N9Dx5v@h^qG4?s_PnOihDJ)n(xfW!
zwjv1I(ddLpL`dwwQ5_jOiRjFv3u9MC^6AE;yNDjX(vz0JbDg5}rgm=;eYk&!7b_A*
z^`rxZ`imGKVxWjYltjcb5rahx5wTFjA`wGH3==U@#3<@R#Trht3&oQUa7M66$`2=w
z%vwL9MvE9Dg7{bwlSNDsF^)}A#xt29Vj`1CzWyhZ$2S|3&s65KMNIQ!r;C`ud?w>8
z#<RCAa-PF{F5^7L`HU2`K%^_KUJc3fFA+;v*OnApETXq!iG{r6sdZ<$h!rAs&`@$i
zR*Lk-mcT|4+e=xiM6BjiYZ%x1Ij>`~o^b>B31v02T)j=yr7Uh{+`>pvTbXPV@sF=;
zr@nm`Pf@!>?56MeBI<Q4MpgRQ-yz(?ZhJ-SV=|3B$>D&AgY0>TkrZ>yA4f$T6H!e@
zbs5J+oDeZq!Z-;hMVt~5kN^p%MVz6jE8??=vm(xkxFO=Ei1Q*Yh&VpHE*+h8QN*Nd
z>NPemiMUK<34trrEwk0DBBYhEjk2l4$&<o$5gV7N#d~GHMT<zpQxVTZ+##$Lb>y;M
zce#3(Cb@|FA|8n7k|q}&@$pauoj~%0x@)HTh_dA~KpxZN&sUy!^^5_+=OSLv8k`dK
zR>Z#|UW(r7SZ}CT&*mfYO2libSVph5gbU`WRKtihVedq|7x95gU#xx<K?*q#FSpS<
zc<PIYue8TX$ROdHi0>kjN{Eo~JiN#c5up+iNXRE!A&k@m2_+0&q$ZM(SVFp^`G`~a
zMM9k-Az>WV{D+i8qLY5ra0$dI6fF{xOhR%AX(VJR8j?cts+~$gYIaM>X4ZC5l(~B{
z-^Z~blq4->&dDj;N<~79=E*Zk$Rr`Vgd7qwQ$CV6F4-hZ3z2s>N}iRoqCyum%|;J_
zQvNwP+guWIOXxUTeetwT9tn9R<Y%26@^*{LCt=;$d_>43LOm0dAV{c9&5<BVkR+6l
zP*Q>{L6HzCp@2mH=|huXlN+Dqs7o-J8;m<8?<`P@d6!V{q)LZ*?&)E!ggrm3)5pvx
z2?Zs@N{HjALK31S6p@f<Vpw4br8rel2{9a7|5~zPg{?)$yfY`Ko$#=jgyItJ95*ZJ
z|DB9_d`<RJ5=u*`ETIagDkGu1gbEVMN+?IIE|t_iYWBXCjEblz;aB!qRzB(UWr0c(
zPOZs)UW$Hp#LSV<tMG3Us<FfGjHFbRa5==T{oSfAp$3aJX$bT{EeVv04!k9wvB%81
z66#6lEuoKu`VtyQXeFVwgg+!Sln^hWDGd`Re^)bcV+mLKWTjeB+9nbXbJOVib2A!u
z2`y-aHq1&<-LH86T(sm=D%D}0+J;6@LKg{LCA5>!p2k-~CwACfGjRv1e4}Uz<Vm5k
zgp}RA95QTcLfB10cZqiF=w1@u?nu%@!iZ=2drCNe#C)(k<_`BfxdnuLeI@jhFhIgU
z33Y#1B=+Ybh)^#Lk}z1pa7xbOHAKQ+?E*vDfktrCv;4z&fXI2Igi#Vka};$K_0rU5
z`G1b)7+OSyt?vz^$4i(X;e~{MB}|ksNy1c`*b>tJrZ<@v{-=b=5{?v&nnKNdVAhLJ
z#Rb}qsm62(GbEgNqTH7-Q^G9jLvoWaTf!U(YiVvv-iuM@N|+~MzJ%K&!cxY^ERb+F
z)>=drX0niRzw9+|ez;YsiM^Psx<tZK3Cox-m#~5f`E(5pU+MEz5?1?s4GqeVC~{aY
zVS|L-G}R?+<k){0tDcD6#N=<<2bu;pOW4BZRtejf96zT}pd2V{XJrTDP6@l1l-rk&
zqV`I-(b%RBrb80;Q3E9$VC7{Ko8FCbBv-+M5(=Nzh!j!0Mje%KOu|J8muSb3kmo}F
zb2QwX;R(i*H2-P!%~Ve_o?#^OEY0K-CK1YH6`!|!fd)N+y-ke1OjDQolZIHrRVprr
zeT!PX!@R~BlK*ukHyCd+K2Mc^9H{^AO5Rr^@_ExIE0KF_(rLF3Bs`SxNJ7tlv}Y2w
zUbKijmhgm?r;O2Kvy(_s&m{zw+C=DE-%Fa|GE&KSCDH3?@P;O~goH8@$#^H>y@c-)
zen|Kr;iH7Fw8?XQmhaF1iOFZ0C!zKi3Gd3*Gs_nv{NG(=2rs=58KE)~$li80nvbx~
zvo}zhcb>#DevuI&Bbkgac1R*4Tt>e$;pCk4YBE9!No5@CU5r+Ga`s8VNP4rp5rlJE
z<w`9hjf{da3du+-Bb`j2ILI#}y^IVpvdCz+(#|L&6O+s`R=tZSg+lW?2?!^O^|Q*z
zCL_Cy95QmVTTU56R@xMDu}OqHvp<W?L!P_ryfXGIOwfOYJ#(cUkiGwpH5s~$AZ79_
zR;A8NVhJ)tPP;kWnidx($&h92d>5Z~m95C2w8T4|Op;@zZLpgq!)9X2bef|5>b~W$
zTa=8BN;LVqG9qOZkg=>$G*yNwK<MnUDZ|1tqGeQ+@vDp?GXA(^6_-(hNm0fa8L>>_
z7>hCPPgsOJzkV@F$|x&?NGV1lrDc?1-f5%fK%pF)<ryn5hMqQCe=#b_Agm&zG85v3
z7A7G4O~&uOQdLIxR-RZxMosD>6**MYqH&b*T*eC-b!60~cF9;Sqn?cV)DJS+%igcZ
z28@5mpfA#7He{1XBPNYyIxp9Ai)U;qqZyOtGFr%JDP!bH@4>59EVgF+sgT%4Mq5^h
zpE8nkpnjGyUd99&on&;DF;vDd8C}@tI=|3|JiE&1#!7b?J!JHh(TmLiGI}%V&)A2t
zFJnJOO1t56$j(@=6$4or#5kC7i0`w%PvYS+M$pg~i|AP07|FW#@7Qf+!yaXnjM1!&
zVI0dij*+r09UnST#)(piC&~Cz#<SG_{Tnh_#$W6+MaEPa(|rHgOs312;VUzl%%c7;
z{NMHSIjqcOoF`*GlLd?m8L8YwGTpcE-*3#tGAd*YUBXdI8AGy%u8^@(#y%PQY4x$V
zUd9GmV(YBcq;v{fBV#S=>li6d8t#oUGS@S<v$Ba$#%9?&!gPy_tuoI4qHnlj9+>By
zh_#L8%-fiM7;7$9i0|<8*(qZe^WDC(hsj=lMjeoGP{v&u_hcNBaahJ>8CPT+VYf<i
z^kYnpGWL6C9j6|aagxpRGJd;boMKMZIL+jYjI&J6F}CmS{g+DN0-G0QTw+2>!cs}D
zGXJZtaYx2AS^^cl>2Y1g4c2cm-tzr#%Xr$OE;-N(J_wJ58uw*9knvE)sAZng_^9$o
z#^dk#pUFrv+<46Rgz>3NCkEIg{#-}@%6LhWM8RYQuVlQY{Xs#Tf;TeW%5?t^px~X1
z_cBr|NTc9`jE^!BEBHmhCt9;l#hy>Z1PVUOke-TPsPdxpmGK+ncg7!#A&M6p%1F25
z5l^Tfk%F+f^2G{L$4Du4cPUIk5(UW=Bv%lwAgO{s%1RLmLd!|3f>NvYQpR#pkFrvE
zTS}oIrQ-csPo?0mveNc;Qdlpke-`O>Z7Ep?Ijw?p3bHE5rXan73<^fhmNP4GyQR#i
zAYpqclY*5+rJZG^iG`&(?WHW_AV^gcN{iY^*%jnakVipY1vwSuQjlB0j4V=<rm`SP
zLmEl5sz@arsqQ3q8oe>Inv_pLeg!917BAdDI-6G79VZ192vnAWNClz-Nr9ojq}nQ=
zn|^d^;4-({Tvt_~DY)=1KHqaOQA4ljJUu1Kux#n_tIA210$YKjV6QC|3YXS~OU=Ti
zy3^!Dt>gj<JuHmE3ZfO<{VEnzP>6=3kJSE)c<ht-eW4qjLpr1=MHIv+Nbpsh*H|v9
zV4*9;)s^FF$iHezF$KjHG*Zx5K?wyV6?$_YepgURL1_iQD%kl-{4FSzQBY1nd5R56
zWfjc+B3^qd&VMadP|*E#%8CkRwUy3)5YHErTD6rbDX7fFRpI2%=g18c)~0+Oe-W!H
zsHvcqf@%t?D>z<CszKA>t(d1(x|UU>RzWGLsnk|bS3x}mb!gUwNZ;Owokv!#ub=_V
z0R;^e42+WWvJz!@I2d{RhuEZtM4c9&R%)UkUO^uPeK}!M1+5gcR_OW(nkyLai`0Ue
z`9^H1VALy7t0UDZBT@cs6tq>)L7`7ow4-_QMjR3%?VcmoY*x8F4bu{rluk6q3P_z5
zbfId8NJT>=wTE;dR_dyNup1+h?o4_x_EgY|NpHr13uSWXr=Y)r;R;4jeP}?-q#vYU
zFtvy(@Jjp^h#dV|973aTDg96d!??E3-^EkY>b5FXy@2Fc%1Elbg0Tw5DHyHbSx;$<
zf}=k~x)hl_T%t^9=1@W76--nxNujSF;sgb|TS=mpwMQ*^Om&IY>6S*)6a`ZiJW%jZ
z!88Tasgeo~()3m^Q^9(Ax{=0|23o-q1xppoQ7~7*0-8Ju=8<Q6c|Hy0<@B^1Xc?Yp
zD^X2o@h+k@s9>>zFTZ%JxMW>#siyc>q$#~j!E#z_3RY1kWRa*>PXt3&C>T>#l8Q;I
z6|7M(KSo-oV6B47hC=mx)=nZqU0tWT)cA?GQNbpKo>j+o1%K0a(M#H*V5@=}rKQc(
zQc0rayp0w@d+GT7Of@X2@(b~SD(#?2s9+EEwt`*M^QzYayJ<dGliqw2mr?&jO8a<w
zp_=TcnzxmxqsG;jX_+5Va9F`P1?Oo6S<(^4lhok~j?wI;I#-igZc|Ut_SI0Lu_K>X
z9i>wWPAfR0fF{zpLeg2<I-;bTS)?dIY7-(|P;gPfEd{p~T%wjLxJpZay1H{^>Xtyq
zGFKGP0A(&ET~}~J!A+V-r_&dyUA|_d^d__PrKZ=Vf~4G`jU`gLtKc5j`Du;v)J4Zt
z>AnKm8yB>b+A7K;1&?X}RFPE069rFce<o*|HVU3AcuQNlf)@(@r9EH4YXvW9fq(FJ
z^5u~d&8Sg}i{DuwQ#Za*K=rxUQ`-7kq|)Cj_(=K8l0W?Hx9ZYJOZucBq>q#|kJPlc
z^i{z(UMY!Hd{^*;b^{d&Rk||o4Qq&s<1M666@dkEqggUxA{8n6N%k`_gRG4ERU-b2
ziZB&PR7|QP)qXDKH<i~lWNLeaiexI%tH_`tIi*q&`%X-wA|++6BDIQd#l6k5_fnTS
zhvvWqOQ8>rv?|t)%SxW<RE*Cj5y`01-*(8V(hJeNB$-uYQL(MHOi@R^i}SyVvLiK4
zFD)(X?WMGf=2VeOMPC*DROD8XM}@7zQN7zl^Qs7{SbR42-8v(miu`oC(K;i*NQCYy
zttXg71QntRNrkM!Qqgj;rl{UGRSJfRMJ*GnDl`?tmgxsO>pB&b$s$5-CcAx&b%xCi
zA=6b6sUn6NuA%@(g}sk2q#}xWLB?&%ysr&~RYa@6`}iU%W`sINOViEA@kLcUon@45
z6%(hTn2IVYep69gMF|z_7S^e(q9lon>y)PMJ)XD8;yR^N2x%K;j4eo^j0(cCjO7^1
zGge@%$oMN`B^8&S<s#>#$MX{YuA-`n1}gqgy)zc7si>`@j*9AR)=*LEn?j)`lUj`H
zCn>QB^+yl&Wo7lcDz42_>Zw?DTB*;NI+@x~MI#lhRJ2ynnDc3(BAz;Dr1CO@)s)=s
zDHNKkXvVxr0fWpI%v&<%ORAI7MnyHp?4V*pAEzyIGTSj}&)8|Zl5cu+M-`pehuk`=
z=)%0Kif$^pGw(&yZ-dsu_vxuZzo3zGZ(r#{?MhXUl>RCPs92$5B@fm>8XXlgRSZ%w
zSj7+(d%79pXrihZ%ACw$Duy#3!8p>_N2wU?^D!#MG9MEiPDv)Hm`KY<#h)y8Sfx}g
znu+wuDyFEIreeB^sVeAYyT=NPq|*^$r^?%@V>IG}qGH2ls<Tu&>j{fg{6*8_ef%88
z`HXW_%ws}FA5&Dv1kM5#3t9O+$|Pm6iW4>UCViD<Dwe2Ns$&1xu!&>Cir0xDLSZ@0
zx;io0CWft2k?+0oFU^fH-nH)4D%Pmp6<rEznXFT>p2-Fk8&zzgPNVt2%4Wv>Dh{aF
zqGBs8VODmk*u~@@728$ppsCWW@XtKyJ?unwbL?KmJu33fu}Iv<CJ}lf=Aep0D$b}l
z%i>`b$7t7LeniDl-?L3}hx|{ld5ZBQ4R<RqHwvd&Y1G0q&oRHqcwWT?CL_0cuY0&e
zi$%p1R<1I3T;e6~E_hYFuHuG@n<{Rpc&OqLJKScxr{WG1a=S|l!S!;ZaG%8owDUas
zuO^RGJY(^R@BdT<-K|H?&slll>-2A9vN-)EZL@LuD;2MqykV^H&LHu<iVw6Cn&@ZZ
zql!<ok?P2-<Fkq{w5&9&*6@`!RTY&rRMGHV#ShxdH6+o{v1Ck$hENR&nA6{32{k-v
zogtCt?SxxI^X63V@!rI2{=#^rR!q2tq#E*R$gg4GRwY71Y7NyACrQR8DakdY(2$bN
zRE+=jNV?>ZLQ!cnq}7m4LwXHaHDuF}L4y*eXVScX@S7F1Gio?k*q#~}PGV*aT6}aC
zDz`~Ak&%V%>~xAV)i$M(L&Li$dq6=uCn@ctkIv9@YsjM^uZEL_?5-7zNfFVLlIi3b
z(7Xo;ifAaRA*eynpldKR?<Q@Liq??mv_f2BB2#zm^Ik`*vRRDY0?dT&ax^tq8X`3m
zVC8YSfX&3w;A&WYT{-;L3s2W8Q5p(ri00Tr8t%N(3v0MrF3|0pR$!`5#dYbd&>x^g
zVl>2RD5asahByj`ObR756!Up;CJTBeD5>Gk#5RSzy%UttP*y_)4OcH41?yVnG?b?j
z>sodS^}}_|sh*(S1f?R!{>oTM!`R{0fr3uS(aLWce%DZ2LmdrOHO$|nRAVI4rd3RJ
zpVwegQ$sCZ3B7IB)lg4EFAcpl)Ys5JLuU<LH2gt5|3IOAzKMp0%o}N-?VUnn4fD1t
zeYb1z)O913rrs!fq&Z`I#ukh%8Cz*+t)UI`>?4)78ro?nF(OH(T*mB3hZ0igz_A?}
zJ26fxV06{cO+!yEx4VYxbCg4uH9`tK*rXaxo~(~JuGF8T_tDT_!vJc<B)zYOeoTlz
z_^uDsFi4|UNvg-z>Vq{5p>EeOS;J5b!!(T3FkZvH(=o#}jAAn2Y0L->Bbl$B5-vQA
zq1e$H#;`J0L(?NMO`67#+XPl7(F|mti5gCHjv-#^Y0RGM;ZrnB)v!dvQVr8IOxLhT
zgZ$Z=LG^qZGe^T*4KtZjl35yNb1X$|zhf?`Xg7WuGmm5EYgoVqMSQf#b0L>PZj{wu
z8WwY^KZ?hZN%dT&VTFd3oN&1Y%7jF!82M9Je?5GShP4{bYB;B1ord)qj%qljVS|Q^
z8n$WpN5dxG7B*|xqM`6i<!_BncJ-cQr$BeW7P%g>Rm1U;N$8o`?HYDyI6w=W8aODy
zPENQ>!;}v?x$V}lN5fvKJnPZX`oPcHehv5fc!UBG%JUE<FOcAfhQsXkrL0allU^<^
z-*L^mrQrl49p6fv!bvtyX*kV<lrv2JY^I&pa6!W>4X-s^)No0|0}T%~T&97J)URr|
zrr`?n#>KqnlCEpG!RAe>YLNgbGb6kw(QZ+Ow9ILZbL^Yl-UD&>G?aN!^FAv?D3JJw
z>-<#1GYyYv%gt+1c%q@hbc4uqBCC`Y-_3Em^cS?N3{d`Mg~XRk3TATN(2&hgK5F<x
zI~Z+u1+90C?-|MbKy4`#K_pXB@5G+Z8oto}ui+bQn>rHecphthr#+v^52{Hzhm;T<
z<NMfaw(8e&TN%<>iF72^5w0Vt4tj>`7ajF-Mu#yEo1!GqvHy`xfubUGB-4>rM>-ah
z>qx016?>-8k*$SJKB;vycpsmJay#sq4_iierdQ*(&?h#@m0m{%o!*WSO?s}&c19hP
z>d0TZvDe6=Bdd=3CK{N?rX#zK7Y6<{kV8jK9Zd|x8_1<2H)XEl4;^`QOuM95I&2+z
zb>!2LUxz$bk#*2RTmc=>vHGkY)Uo+cHi0?CmTYW^IwT!^-p5mjIH9RJeoq*+ICU&V
zY0Sygbr?EKHcL--NU1hKadfz(=%}hAQbz$DC3KY3y?;`obj0Y0)lrbmLW~y-tFVq}
z9Yl&S7G)%};Up_gM=^FQuA_zFy|HxiDeoUHifWs_cqxu5t)mQ+wC%jVhRf>sjZNa^
zn3UI1fk{PQ|5ZmN=9L+%_<F6w#VFO)DONRBYUrq`qdN1GabD)Ni0i29``6JirO<!>
zM^`qTdNedT=)o@Xq)_C7-B3p(9e>TYTj{hv7^UB6js3Jun8fR7>MPBdG-qs~qouE}
z>zA#yjy5{l>S(9qoR0H4+Uw|`<8K-`9UXOaqJh>iT}NjfU33i4F_326JF6>WPaWNu
zkkXw=55{K;6;gUJ?@hzaq%UJXMvCpvByTl)kdDDRCexxgYYfpbl=TTZhWVbOnG9zf
z!8np}lvh2SvKqtYSVl6(F&R&@E<qHT6ejAJ#NwZf%cgqOqvEFMn9Ai6-`>=w`<Z9x
zSf*pSj+r`UvGZ&l3z^JeoXa?maXuquwSdOruKBa9MJ)csxLC&$-)AXJrz!^dtniif
zI#&986_eFE)-YM?>+5thE9<4&z{*A)wRC+G^SA%xCw&X^gE|iB*h=I0&Dy5pA06BM
z9CkC=p<^eLU5pF9dfh@{51V^+>|?T@k@N#heinUL$7vmBXs_^NkLoza{5azY#*=>R
zDY^~tmDd||=lNM3M_-%CcSaMhu|&C`<036>1D1hHIxf@JXW$nDS9Dy}@vn}TI<9d(
zw{_gnaox}JhK`#)zePhf^1u4urQP7J`Iw{bG2YklfXPGO|B+5-mH+4egvF;io-uju
z`@GO`xMwWY`IU~>EPmDThRG-2=Pi?WI^I*w2PgR8>mQk1G`uE%*71eS&?nx^r0`A0
zcO5@;gc#n!p%7|#$%!QJm4pToF{fT4J<LE7HghnB8%Sj!wSlB;Mlh0FG6Tt(r|^}O
z24?O1Zyu&GkcsuQer!4e>6vHnm5c@^uJG!anUyTQo|Q>91KE9rW?fGD2r!V_Kpq3K
zuje)Bp+T=*`55#2dcZ)XtKKRLvLY~weyqeK*#^%+p{qo`t})RW4Fjh>c->_ia14|)
zP@Z*{v8aJaCIuMDEy_Sa1BKY68A3{7=FtX<_&)SJLX3e}HscseFcxDhZeZj=n-Wqe
z$x124(gw;fA-$}D;TQhv;R*(RrDhtaXdwE0ECuSN$_A<!XyE(*W}ueOe>YH-c{Kyo
z4b<@UpM};m@ac-zArxwJR2>6#nbb49bxnGG11-0E<PX*x`Z+W*(Aej+w3`}eW?+DU
zfd-lz^Z|#?2D(sM1FZ~nH1Kx1(%QhaG<rMcZJ3kU*1(ZW=F?<)d)7NJl5?rm@r0e&
z>{K&`cvk~G4fJBAn}O~IdKlPJDIY~qAky1U+t)xJpZ~eubLeNFzkzPejQJ7zmfXf5
zgC29h76V%i3^6d&z+40K3=E^LHZYT>w1E*cGzKOSS!s<jFxtRa1LF)-z7u<+M_iXX
zv11I3zY{y{ef)R>6KGabZtvq07brF^zZZyXy&X%6dNBS^1CtF*F|go(HkF+3gb<m=
zrgc!8ZeRxUzyXc)hJ&ry1_*Q9j-A6~cBp60Cm#bV46HP~AMXnd{AFOVfkkY(JG}p4
zuOHBs7+7jxnSp7`V=uptr#zQa|EG*y(llA@0gcR6238vgn;N&tz#2|Ve4~Lq2eh?}
z>loJ?*uaEzswDYjKV$!GU^8_>{{Q}K9@Haln}L4}+%RyHqQb51G@1sE8rWfAr-5At
zc2mzcj`{dLo?`b<Kd-Tg>}6*n`<U!!JYe7;lS6*&VJ39<#W4fN4V*FX^6%IaES~ax
zP8!%ZIF|B1%?goK<?Ehheva`x;|0cx^bx@1vVrSNt}s$fuF{0`IaRXmDzBdOAj2&K
zPYpzUGH=rgN@d((By!ilJ?8frA22>-e8l*e$_g0d`Gn0`FBQt<8E5sJG5oRi(!eVN
z8BAm}@!G%}+LKKrHu2WLI|D!HGwX%@-oOU~Uk!XS@X^3&NB=@=)6zc~IFUByGh_Pv
z7I6}*4bU5Y(yK)3-)U=V8%JSi87IU<_3}}nj0qUYOvvO=isHYR2s4q&#QSM_5)&<M
z$Ap_mYGT_si}>s+Mg-NZi=Es=G822o>lDV8k4wQK=_#2sjdD_(NMmB&i`Z#VMp_f;
z$p1rp`4NWjAwInc!f&Nax_Y0<L|zm5Ok_5Z#Y9%qyQH7P^uAOR$;M`O#;~+TP7}E}
zDz}L|CX&=jocdSqF0uj%!im$fIr&W#G*O5;Ex#Txy`voH9LOLQXF@a~u^DMXHtEI6
zFxXU0XeM;#lodS=K=<^XS!bNOtx;N&b&JtvbWFG={%@)RCZhhoQrJYaiOMFbm?&bR
zsEN`h%9w~T(R``W_efYNCb5ihCI&}{#Y|LOWEMA3f(h}GOs38-$^XQ9W$2NxvL?!#
zAYRU-Q`5s<El`M8;7lqq{>n&2R5J1Dr9vb$BI-92FUCbzH}Sg(GOIEs3ly(r;??cO
zL~59*X`&W&tciN&fB%WpG10ECUe`p~5AjVt#1kLzA%0I4@8H%yOf)pn(L^V9Ze*gV
ziDt|jn`q+a5N{&+Z{8WL&3&Z}lNO9E8C#iX&7^OHcakB6wrsXD(Vht@9ZVDp`R~q|
z&L(>LdKVL2nRoM*?k0LLk4yTWe=ifgY57d|PUh)jV%<e^#Hxt?CI(QG9n^9#(8M4U
z!z>K9FxbQp6ZtI!EDR-)+ET!HXJWXC5hmu+WHvF<#3+-_VZaO%qfLx4G10^%6Jt$$
zKACYGb@Iysf4wX)WvM;hM9F~;UEZHydQYgG`^Eax#AFjwOwi4ZrQ_|@=k3#~wR?#@
zl@$`FnP?Pd&7&LmyXiBjlVN^(qs%fv=4{3}jD4Odq|7(5z{Ft_M@%d<vB<<fCbpA<
ziNz+?m{@CKiHW7;*40@>t*C3v5Ugb;mYY~%!mh4USZU%+b$#nyk4KaVTh03P5AoAG
zJL@>=$CsGRGzW_4>rHGhvC+gP>e9~6g}gC;Ga=8mb&c(j7I|(lLAaH18?E;mI+;6|
z>@~5EsuyYPq*QrhcA41CWDg@Llu6Pq4ms?nz7?zk)X8~cD2Ib44w;}DQdIrCF-J`t
zGjYenT@%M?El?#*oaJhtWIRQSy-e88)}5xA^J^_ic+SLm6W2}LFmb`eMH5%JGN+Fe
zBhO2mKULr|HSj|`wXSg9n5!n8{T_3Ts?pi0TwSL=yvh8wiCf&IRq7gNKEzX%YTih4
z&%}KbZ%o9V(;k?3NGr}nmlN6}6OT<iV@~E16Ln8$PuUz@FOHPOaprS2J0FjaI;a0j
zGl6DQ4mudbd_^0n38%k7ZlqAcx74wJYAtK)gzrs!pzHs%%xSN)@Qa1dJoCT!YoSH9
z1Yb>jGx433KH=Uqx}FK5ey|y0A=LVBr6*vL&_W_6^jn5J!z?7RP^m;%UKYbGq_U9O
zLQ+3fgoR|xlQX7ZOv$*ey0`k$SV+reW(!lE{r6_HbgZOj%)pqDF_VR9Sv{XDY!b=J
zB%6ioOmZ;hWX#2wn~^;8SU8@{J13k%KFhm|_K^Nrw-B`8kZD1%u%Sc}*@9xBXjfgd
zymw<s7Bn&O^kB3~#KOG;HeJEcEf^NEj5FxCFbbvx+rm$7S-83^I%<EQ;Qjz9kroPA
zsBEE%g(wRJDNhT<EfnHfMO!Gsq%h;ooZg+iMJ>9A0UMu%<g~s1iS_FrM`Iy-ujDIX
zp`?Yf7Rp&D#j&M*pO+uv)jVbyHs59Sl9#to(T}ZQVcXjbB>u`uC0|eaG5$9TzguW-
zp@oI27OGj^2Wwpm)tMxk7*^9l4d$eWbx%@@xP>~@sOjM^QhBEaQJ~xD>shF8p@D@z
z*tw~NhD;h+_<3J3Jts?^jV&~>V4gJN8Ht#=GBjh)Y=y0tC(M=>T3P5~p(~56Ewr`h
z+Y8!QpgZR&honVw5NU6rgN2SP(t`<|*!kFTv$KVXeE0sHLuUPxW;YAnEey0U$U+Yb
zJuURL(9c3I8l42;y)E>i(f=6#vlV65#?zhulsVn`-`@h|Ie^CNYfXx+o6uhM!x~I&
z;ev+JQ2KW}hffTn29~{=Y=ni87RK5bXJeFw(KNwq2sXx$Xknj){T9Yq7;j-RO?V3v
zEV_uAWTJ%<`xScQ>iluaBnu%k^*<R$^f%Ou`c#_s7Ped1VPU$385Xu$Sd~(rNiCYF
zJRK9d*1{|cvn|Z=$8?#6xjvs~VZMb0Y%XM6%(#g0FUE=^vM*t>l#wP$nseU#S#Dv4
zudHOU%ED?UYkYmG8@i79dSBT<6WHgQh%n#GxW(6>4^O&{`9BtV7c(i)X(v?TPH&cK
z84HCG-(_L9g+1&xf1a^)v$59#;Vq}w0SgCdZ?Tcw#vuziQtF2-9HC|=H~Jpck6Ku~
zQu##NorPn}$vn>FgoTq9PFXl@;f#eB7XGzx*1|bj-4^a!IB(&Cg=-eBv;Rd4SNt3<
zS-9-;mTh&)^D3JQyJshUgZXU>H<{dGJeI?Aqj1N<T~>%^KB*BtVDpKEhfE&%v5%P;
zZ}g|W@{GxI#?3Fym%jd%$tw%5edP`9a_^E+=I>Z}&-j7yBjfN^HpPy6r+lIMEYcF&
z_)2Rqm+_5}$af1rn1|S&P9fAr0-q;jl8A7kLQ%ii2(!I>k}yWt2xpSiMxoOR>E}P1
z^;bs|x%N^?VIzZ$j5bo*NM$3nO<zTfv^LV&NMl19ruWRIXC18ceyArcuBW$=G^s)N
zc+fAPOg1vx$YCR=?cFYt#m3NjdNvzb*{qY&Br$C|WVey!m^M9?Iw*mj%SIj>L~`5M
zmekl>L!X&h&ub%}jZ?)9(kbM(kt~54U<6}DdZ?FbVxzW=IyPh*bf#M+8<lOSHZ&WB
zZA9DN2ck~(Z*Q443>zadgx+4PrAla6Hf+`%8;H01?^4LewGqi;0Y*}ym=t6z#7Le+
zINPE&ogYCj>F_><V{OFQC}*QQRilDFZK7VxM)i?;arPvK5;jUQFU45e*UK;|OBF8U
zogGwxHlHa<MH`)>^$hPd;=kHB8?9?iEy5}`ezQ@-M(O?L@3wdF1x>K3HcH*}PF<#p
zIn}68>X2MIy%&J6CiTozg+eVGcjiXZM_*kV^{A_D47O3<MgtpNY;?8phmD3dI@-up
z*J@;=v5mGidWR-E_DpYLBi_cD+D3cPxY69Xc}#C=gRq&6=1f{Jwq$I@*qV`i+Sqgt
ziB6=QjrKMY-&7*bDjld?H--v2T-WMkW7wA()1N4vZIpdogTy-_q1|lsqS9^b>Th(n
z(Zky`^n!_;o>Yx9isI_u=<qiieQorkJge$`f6?hb#Qru0*!a<3d3{<x{JTDod7_It
z{YyB6CLwjKjRkX)4x{Ez^uAY&v@zVq<|OI}8)eeiAFpY}ZYb2@qj(5L+t}2^nlsSz
zY@vmXw=uy+sDlI!Cfb-}<AjZqHvY6R*~V%cYivxhF_q?njlXP6voYPq92;|K9=0)N
z*qCKwwvCx=ZkVX2-sru*FKdy+Uvn7~X6V@ysq<{iryA0*-c>H#^j=DC%nsccZ!fe#
z7;LC7wy}h^(5E3QXzGqOmfA>I&R%AtXm6dKYF}=nb)o2Hkp`idB6cM$H=bIQ+mxop
zS{v(Z9JJByhPB?t23lygcg15PHPgoSkH%JVwz1>9w%NwoyRm~`Xh;5Vwr~!|8yo2_
zDXG)w<n|9av-tPBkR42RGQMi2@3OJm1`!H-Y`U}B<NFx*`}zSIvK$8Khin|Sam2>b
z)6w*@MS8#CQRZYGvvJ(#DcakoY@D|7+{OzUeOe1P9@}_g<D8B2Hty4kjx*^c;1_IM
zwsFPAMVjHYjM2BuOEfg?Y~ojGzJ;mRZ1hPLx@(y7uD)^I_P*8Mu#rDZrErtUEymll
zQkdNJWACvuxjnG)vZwZtHoykP(|?plHV8{Zm``b^+OMSeH{=<Oi;-kYQDaw1@8g)l
zzcxPF_(Tb*2W-5y@y5oxpB+fgs<a7xOB3dA@12hqGZ{nHW_)ksgN+qs^bhAXIwbA0
z4Xb<T)$__%8-!nI2P>P22!(H~d}sV&BgF9>G8fVb6FNxbKy)BENbKMj2WcIobG)4}
zj4{GN68f2Z#`}35?jR|PnV)-KXp=ce?jVJOlnzomSYOS1up*U%yg#(wsr4^^D|8nP
ziD@|M@nR*tgAANJ=pauZG$ZqXgG@j3bP#<uGz;^rjM*GyXOe^bnNa>Y9pv(PZYI>3
zd3_}xll+WS1Rd7-=U*{rhAS^7I&|BB;DEm5)4OkE2a1DO2XPKm2bu%dL8JrSf#D!W
zWCHpSDc(&nIUgfmC|$I-9M}%>z0e&8o98Pft6GEw97H)N;$XmhWn5dM<1W3RgF+7O
zHq#1Ia~xDIZG0`L7oBa;dvb~Y_DC=4AjSca!Pz{sn1kXD$~&mwpoD{x4lb8ACf-p>
zQ4QY|9^l55qdHSHz9lK$!YbpSESW7V3UPPs32m)4kBrH+^okBDQCSWay-|L3KwmX4
zW;3cd$X(U0>d@VlXf{sy&B5;uHVO`f&dZe_8KSE@sNsOf+}%dr*~+5k7V+8+>Nq&%
z;<Ssp4(d55;3CRJeFqI_+Bmr8;13549n5er(?KH#jUDuM(8oa&2k{O%IOyo0DHZCV
zjf1uhnp4H{TP+;4q&{z$sY90}t!Pr+3TsUTz0aQWxnZX8rqk{^vF*6SiMMw!w6S*}
z{K;&gZ(<U6a?sg9Pmb;4psRy!4!TqQP4C2#^$oohG&~}-hl9rl{=1HJ$BypB{wE%K
zpLcy7^m8!U!59bqX}lZ^p(5B}po2kvxwTp+9_)Y$H6|%^W7seU!ySzBV@Eg`$$ZCt
zC1@Gv3dT~-dFyyzXvaDjN0ZILWC!CNOmMLKP~u6n|NChx!K>ug;^y+<d5BDLFxA0y
zKQ?v!u%4+xr#a|R!8@{#Li2kevmDHJaLB=72Xh?Eb+FaJ(*!1kc}$kjSo_KX2Md`m
z@|C|FEM|VHbrMRll=(8oxm}gzOjbBp>0p(E)oiY1T*F97y3W_v(c)!u1LNN`h5Xn}
zj`#2vxo!59Ez}9?6jHW1_=m;q4t6rx;rnzgX_Lb)Hg_}baX^>3_A=k+U_X-sj0YLX
zf76Y?5eG-vJm=t;gX0ce`u2L`goACblrm?$ZaL}upQ5&}^lC!kjDxd3J)d~WdEe)P
zgNqL6v+|My;hxu!%N%vZ!K-ae$h_|02JMP2esOWr!7T?b9Q^Cxwu3tk9yoaDc)z9#
zUrTnE)>=XDW{G>O+;^}&i!F!Qk7z>D9O#$rnS&=B^_21S(!kvv-ec^E{|<Z33h@_>
z0xzj(2Ok`Kbnx228;*L<_?Gb<<Isf3$$w$Z#DrZE*`FMIriJVv#P#a)#lbgrBmR}@
zdDxsNMSo|db-3Mlr}uL>)I|ap30;g@lYMHxY>8a_{Uxw}p?59)b$0J)moOJeT;z8V
za1rhzsf)}mvbczFk&H`8?;^R26fV-ZNb4e{i#d$~sa&Kc{jix+iQanHI|^WUxOZ8A
z9=lH4B|y(dr*qNjS>3$_oD429y2!*?1-b;pL!R@OM0Qpe*<9pdJ-dq>E~txgyU0n^
zNS!ek>*cfAbl@2IcjWU8a^?)=Wj!Aw=~NJ%(HwMPxG-G^E<_h9$4V|_7mDxMqF*-h
zr-VCpB%wfDbD_IvJ}gs$I{%$HV6n5~!uC@o>=kgCM>5ihVRSxNK^KKwEO)WOMPV1w
zE?QD!T@-QYoLr4obX6BcU1Ytg#kh!d5$B?qi;6COby3_!2^VEtlyy<kMJX4h*)#EX
zrCcM2lGJYKoQb!|+`K)moQv`<Dv*COPw7*=R)u6L5i%>esO+MOi{D&2D?ZR?g;A1`
zau{?h@Vg7jjhyLAc{LZ+Y0x_<HC!}w(a1$jHc6?)q_&GXOq|kYT^IHI*!oNwxcGy~
z>Eqrnn#L{$yw#e~$HWqiNE0^WT{LAvN=V+MbYOCG7cE>6S(Y+AAth|>qK%8TF2<L0
z*4|gzx!65gAK+r3i}o%$xajD57xcQg=*pxMV`u86W`T&91l`!|>7o~t?k;*Tp(NiT
z3KRBbvoB*Gs&MXPBvR<dN`Ds_wwq)Qaxs`Du#34ahPW8&VuFi_E{3@n?jrXRWweVC
zOhz)2@~LTH6mufgA8KP<r0W`>&26lUuu}Fos&Gkryo-;E4I<<}$;DI`(>TeWjFVkV
zVUn<mLJrei%y2P_65dqk@ambgLQgayoj7GO`)5`+m9BR@=Xov`bK3bX7P$08p;yVj
z7#A^;N!e1}h%E7yrA(GFzHAy;>0%XixQjh5R=Zf^VvCEdF4nqON9*pUvMaN*o|bbH
zV-t0qiw(@l+{h&Dd}~qWxXtVt`$4I*KAOyJF8-l*g%>UbbNkOs7%8_ME_V8yMxX9-
zB$2{inyW4jx!A|C`xy`To?-I>*SA^ZcG$%c7LPI>cX5mfbr<=Z@cmCxZ(Q}VJ>%jm
z^?4-93)VRo=Uvo_MD0jiaB<N^NF+idy}ueSQ4iFKee2?~iz_a!y13@z25tDX<E60v
zU8G!hacZU3dAL42XW$m~!*=}@HKdbso0j3l@H;NZ=dO!;Ozty2WqiQ+(8VJrj~U7N
z2~Dl!I+16rJZF6IGuHQcNgLM}&xZ<n?cxoW=$19_4YA+3c<<r^%?B5~qx2sxKDqep
z;+u<2xntLy$VV7GNBzR)S4MLCPCL>ZmB>$Adm>+gNF<Cz$w-unM50I}jzs=Q^rge!
zA`upe^pVIAi6oH-k3{N7q=`h*NVMqUBxfWN5s73zFY+;-loV{Hj6^CXKSk2hMtXnf
z{4~>X6eY|UiA<5m6N$W$$Q+3*RK(<%2^+(*Mxw#T_}(AmtGzX{MIw77S|5$g!ALrV
zoXm4YA~$=ILJreD#^>Ww=>Mj_KgLsWfk-+v8^K7(gS>~VV<I6$(p#9l{{h8FNTf$X
ziS*7|ED(vPNT`v}*wiCoGx;B;z5+^$<NJDdkzL$f5(sdy*_qjyWx8j&r)8vPaS6d4
zmf-I09tai)5Fofa!QI{6-60U%zSnPm{hj|gb?&+EzE{=NRn;}p-BsjrdXQjo7nR@L
z%$~?fIZO9==qs^IIwdcQJ`d<8YKkJUB75Ms;uQ}z&NRK62f7CV5ADzzpnX+R;)5I(
zVx+@GJV^537Y_z@c9i#^0+Z@Aq&=v_yqX7<nH-+wsOmu#<`i7Ks!o_b#<8$P1|pPd
zu<K_JYFaUOhijzQVzagfb(nPYIqDDB>wD0^V}3e}@SvdwjXdb$L04*U7R`CvgC-s{
z^`IFmtr(j#wqQ(VY{^LRzcMLMEUxNjM{5t-SbAG(cHV>U&>~xV4?3{k(eifkpfmFc
zysvsU54uw&S?S?HPbT+*vAwML0Ze)`_VJ)ElYW-BKNE@fj$D<){5C$wgTa<}hzCP0
zK8(q5M%q<yqz9us7|rHH#xabuzeSDpU>x(`Jm$T*@ysVM{?158N&VjZ0Wyir$sSB$
zGL`WU#+3VI(>?f;#+U~)xu}yK%%V%_Ou}Ct%%(1wY|aLRb3B;q!QZSr>mN1GgZUn8
z^I+j7JEa9o)(|pT#JHGoi3dwPSjL<pS29`d!3s<HuV9*07GLcFnP(b!)>_Is57t|J
z1CxzZc@H)*-|WE_%S#!zGABX@+Rl832Rl93WyKuyV7JBhFxl(DK1<n8mn!pjTmltx
z$b-YI9AP}lc#QEl;|az?IpZn#ln1A|4bL!MU_8rsj`2L>vuC!8OsL~7d5|JrrOVla
zL)CG(I<9+g!-LI1Yzg9~2e;^Alu=&BZ4d5v@Us^+y}0YaJrDjB@LIrq4<67IDqx_1
zhaNnlIY&Tg0gpX+!W~^wz*7&N(Tpb`zkuf+yzn4{fQ$lOdhm)SWC5uK{OiGM58it4
zj(WCU;v4D<YWzHTx?iYG=3cL~+9$pD;DZMrJ^18-Z;|_fPomUPZ18!BxhhWm;&ncI
z@P%Dp>5^IK{>J<}BgIDvh!)I@lwt%>fhjzVfK`%|PC#1A8!I5r;=kz)<}Yxk7m(g3
zUGz$s1Y{PFO+a=56VwJ-SRZ{ZwYy4URsmE8DmI6JoC0zSpp1K?)6F`UdZ*kVmjJ3K
zkvszOa^c$-xG7Og0RbnnxGDX}q@aL8ObQG5feHQhMTr86uvwJxC&pro#TiR5g7K8w
zLGiT=$NBsX%Lph-braA)fK5QW09Ak{fOc?k2yhEX6mTXs!6|_D4M`B-I+%Wgnn2to
zV9mKawEI#y0UiNce^Gq`$P@(n6W$>*Cql_9;Ga_t3XlZI0{j9d-f)nja4zEK1xJQj
z0i6!Pk<|nQnHT~h0z%Bgj1<;cGxH`1s3f2=HJ8g#UO)u_Q`XohRTNPCqvMa$F_nAU
zs?eb7;jAh^xUQ2qqppiGRu@o1z|R6|3aBNZwt(ZW&HX{h^$Q>3%sNLMCiUnLjpJ!2
z`nrO-A3X(7>Sc2@6wpXOR{`AwG#1cAKq~>Q>7;fgG!@WHKy%LCY`=|C3jr+!{3;+>
zK(FI2Qc}vfJ=adDmgZ<9psj!|oTZ(B_5wNz=tOnX%=hCu2%vusi4eZL^uIcE=HQgm
z$vQ{wE}#cpQ;TeU1oUK=J>bl6Jr&(#>?NRgN-*7UJmu&s;7i96r=L6evDlySTLUM3
z>l-9sgMf_!1`8M>U?{n|+LjBbveY?Dz;HH4Fjlw`HB!JR0iy+s5%4FAV;Rj^UBEcz
zzcG$yoWS@y<3vV^oEH;4nfVmPsf>RxPGg+Tm=Z}iL%>V{vsnB~z#=BI1<VmJSHRzN
zL9sGV04?D{Ni0=%N{7;4(%TlWzEGf*$;(n0;bK;nFfL_W#z;rmoH=F%b?c+3m2~0L
zJRr~$eYUmiT_a$6T4&#xj_V7|hrZUaxSq!6dq?LVUH=H!M6LI??IO)x3v8POoELCG
zFyFG=LgSo<kbvz1b_h5k;HZGj%j0(nIKTnB1ni~*3D_%OA6<#r#Vqq|^v98sA%4ex
z`+inPwC%PX6p(7Ei_#$hhb^9Iu<IC?L&rK!O`$u9oM7dorJrJQn(++dS!&O3_HzPa
z_nWVON=@QkRG|9>jutcHK3sNQ5^!0-6#-WTTodq!2AF{BG)*0{-xfe`S>6zElg&Ki
zbKjzq{g6!QhuiKu0`3YZ`n=9Pn*W(pPt<Z|O;|oneLyq$hvbKr_{RqO69F&iI%=Hw
zRKPPD>RH{ig%+jf0<DndAo7yE?QT0?F`0Tl;SE(@z!MQqMZ6X8j;?nRB}DTk#d`r?
zY1$F+LBK}=pQs;W<3BSJNqn5}g*n~4AoJLF`*#6ZL}V2aB_dixzt4df5vfId-EK?8
z=HUrW63I*>A}#C0V@1R<Psf<v(lap0C?XS+%$9yQSGjB=vWv(kBEM)(DLF*s7D2C~
z=M<4k#LiuDKV6F>egCewJR<UP4Dr3YOtFB7f+C8tSV%-+5kH8ue1}<1N&saqB7)*c
zp>o30%^Bt=5yiOV6p@g&<0>iQ+)Uej5v4?w7BODL1QBIKloiobL^BaK5%D5CA_Nh3
z5e^ZxCz!hjIz=RiNEA^{L`*(&5p|acw}`ft9A$Uf=uT_tVUEe)%`F{iU%$}<9HI!X
z2uXxYU31wn|C>NApNL-%*cJ!eei657o5j`?p@`-$4poFELKhJbQH7NtV|m69W0=tp
z5n+-ff)eH3Rl=-K1?CkQD>0H-naQ7B-Bp=XW30|tgOOr>7BPLY`CH=`R%+2HGpWPa
zNJL#G^%(0jQg8zi4K03msF}Snn@#Af`L|4S>R%CkMD!JrOnoYtn<3VkYeu%Db`a4@
zL~9XkL{vU+>p?APmDX8AJLc^fJ1};%yq%~%-^}yv!b(@hZj9Zn7^+xLE|yB}C89U;
z{sV1f_7l-x#8@kGfQaS)*#@$C@wi#HK_UjTIYh)zCc{LGw&I5~86je%rHrDnbkFQ}
zN@G~0pO)i9{KlLf$Njm!i(J2pm?+|;h*KgaiI^;6i-@fvrihqIbr7*a#2+H2aqBIm
z9uaZ$zHJdjp0fQZVupyBT;M$GxU)q3C1N(4bEpmn%?ePO%gW!Pxm-hvGM|+NA{JVC
zYtM2n=8~5%W}amm-p$qPxow$<JQo~2ZrNw?=A@K;C1+VBVzmgGF4i!vWn3p>J(CTL
z|A^Sgr1)ApMN-<t=4QHDPus}cCSt&3+W`>=MZEu7VmpnWp0*ua{!S6QnCxcU!?>4m
zA0yRdzX;!*|DDkx7Eg#c%;X5;Q7iJ8h~pM-dCWF`x!F53C!A*S3}gCa*IAkhM4T6q
zj=S$3>lZ{^WO7NwWhPfd++=c<k&3z|;=09eh;WW`ka&xg+l+TC?_DPJXC3|FMlla)
z?#l0eNS*uDM(L4=$ILVCG|guso{MmK;r8N%h?gS0*o(F!ZLdW9OOvM;IlOo+;*E&!
zG+le~A5VZEM0})A0TJ)0Rav2lE`>BaXa6MPvxqM=53`H(|L^)Hf)WK&7-6&*F<$e<
zf!+)3sk}(-MJ6vYdy&SAv|hv!&eD9(1LaoQD8+g~s9u)Sd6C|W*0Zz>ROeKheA}Ke
z#r&8|;__Kq7B8}Ka8@tKEd4Q=kn#pTCNIkopVN!HUgYzdA5yuz$ju~=*W9A?@dfif
zdw#F^9qgCewnAPM@M7f$wIGoJ?vra(y4P9Q3v&IyNaRN^-Ec9LqLxDU*^7Bm@;6&?
zFG_gLtr_X*g_2&BVltwHL@OSY_QL5!f)};kC6w`^tk+x*!Ny1=-V3|M9ZV?9*2yjB
zF|okAghV<!FG5~~z2-wrv~h;V3&9J~i}yp~6fbT40<RZ7FW(hn^fSs{oLQhY`)J;I
zp-me#7KsO#=w6IC7d!1-Y>-VN<TAWyf4NjuZj*=?NnTKAmG_$e15{#O!HbGaZgp_b
zQ-$QM>_rt;h?7{&3)=ISnzT9>Qp1aCePYcPrqlQ0gAX5lsO?1^_MY~kE*;&AUwvrh
zLwzqAcyYpulU_8WgL*OBi#gO~UNrGylozADXzE2XFS>Zq)k|+FCN%e=12wf5Exbr(
zWqBKCOD4ZEQcNo*tr^?UfM?Rq^0uea8mJW3$x=Fdap|a|eZS<|jT0k#=()LsZe9%V
zVrnV}@$MYfgRv)LFFJiIZyzRoz368t{k>Q<)J7QxQV-6t4WjPuZI&~b1BNgT^<o&4
z;fx~~DP|;{mta<4j2C0QnC!(AFUEQCn->$k*w@=Ro(5!;bAlJYbKz7&It0a28e7RR
ziOZqA`N*8gd=}#$jMEsWGycgqgOP$~(xuwO%=H&5g;&{$&!xfX#cD6scrlOl1zs#<
zGM~|wF@6z~rHqeemssotiA%ibU$9ZzDrSMp*tMK-1>;J_Rg6>PooktF_hN?^>%3S`
z!^w+{EN-JQ!-UEiS;eu*;+wtLV)3m^XgQ8D6KtDPCG2E#w-<Z7*hQnxrjNMl>~q^}
zpS|qb??tbV$@{#R_A!~_Nk8DlL94VwOb&Z-gvn9HW0v>07x}N5y>p7DH7|<!P~3+z
zUYzwJyAL^hIOoNAYDphb`ONK@FL-g!i~C+&qygr|Wv}_H&K)j|$Q3WHQp09)USs__
z;|(uvdO=TDQot=%h}@<tqN|(8<T}o~Uc5W%Ao9SAhje{;@zIM%Rt;Y<dCd64i>FMU
zF+OK}!APg@l1A(|vzPz%no9t^W+d{4J_RiPmdQJsc9_IIvQYpvTIGiBPc;0RyFPPi
zUl_l7&9A}Vtn$Bm5#=*4SW3}8RA2PJQJUI^Y?hwJhqM-t^&!rObZn;gAtRFvmUqi;
zvz$z9X7(YArDvr!@9HL(E3<j5oId38A-4~Cd}x?UoAJ&)iS<ifIj;{zIafX(^@U6+
zKa&DJ6l79}u`uHgj6X6`WDzFc&dPL%pSY0OJI&K6;e+af<^y~v=|d?WO8emPLGYoB
z4`qFD`fz`WIbc3!NvLzjX7eH52O_j_FCirdll&bW6qewFi{pvAeMq!;IiLBQ4~Zhp
zrCAbuK1e>SyleORU<`4;+ToOa5NF$#ri)j6=(Nw~XY6&=O$wR14*?$<(|oImK_5as
z)b!yOAHtN~hpIkgD(U!i!5N{!yw+a9ha{i*1GZ5~M|mF}tg#a(y&`)n`B0f!_>J@a
ze0volFHBc8YMf4v>WuXHTZ75ZJ{&FS=rP&Zs+3%d=6N61zO@stP1PtR*P%}VCiNI;
zC(UVdYz;W3A!8#(%F<^-ViO;l`p}G<ebkm>&3!0w(ro;H7TQ`+3$K@xeIVY_hekh&
zL|XgM#)m#W^!1^wkDfm?KkmEv(4GnL&OUVTp(C4}d|24We0Pk}==<i=k6nD|%C0OA
zqSm~P>dw4}4?TUf-+{fC54~B*-X|6Pj^2LH{L8(c5B+`k+lP5R4Dewf2Tb;1kPm}>
z7~#W6pShdT5E?3bT*G`=G}k`VhdrMiM254Ayyq7<M)@$B&54w2nPZF(6MXpHhp|@7
zI3IpvKHgI3Th`$PcFI1!rRRm)G0BH~%^YNYSguXsYEbp2`e=m>Ok;C8<6n$_`Y?mZ
zOdn=3sgT`#HKx@}^P%6_tjuAY>%(+j2m6uYm``2f!#W=pP}BK9$|4_@`>?`?#Xc<Y
zVZ&bgQXiK2FzUH|@Lqd|=k|pE>?E%AVHL-(@zMXlW=0YTDTa_%0wuDZvioq@ha*00
zq(l3#-G?1MY@!p-rEc+IE7ioIZl<stbx2wLF}dkneVY&dG=4It*Ur$ik50UQJI_uZ
zcKNWI+L?N%ore<XdztTJ+|PJ`@gO6`9OCkc9HqHvbn-E$deVnu)PU_gl#cswg89@B
z1<54uDLN6SO5}_WXK60-nYVf=UGU*N^J+6)=}+1&(naCJWgo84F!q^W+phX>jjk{H
znDF7c4>x?cN7p;e2E4faO&_|{Nkfmv+~VNdjCUCCGSV&pw2>TP*?(f^WQ}>m;$t74
z(53xK8$Gb#+SP?9J!PE^_l(JN#utn)eR##>U&hyrkNMG*|9p7M<~twWGg&gld_(8q
zpn_DTPd<F69+$8}!WSRD`cO<laS7ji_)hvudzpo{C<)OLYT6t>Nr;h<p{bftLaM#4
zR1#84w0i~8N~ruwN-rT+!dj0UCm|h^{(@t8NNw5J)oZrgwXZXS1i~wgT+QpLnIvT9
zLb6E6Eg_GDtP-+G*tN@*UBb$^bX0y0Hgig#|4(vBXg=T7Z?}sA@=B2RyMB-mneWOc
zAwQc17z;`GC4XW;32&}ADQ4C!TVd9V-Lg@EKT7Dl)Lulw7S&Z$!Z5>4rHzDxPOXGw
zZob}7LL&(!C6tmdWw))ogwhhqNbpPMXMI@-HVKIm%1MZqur$5PDIr0EU4nznoG;AB
zLcZomID0geOM;ul$vtfpIaqNLdZ;qn>^??8f+*qS$7E8xtPuIq+CwOj$x6AYb}|({
zI#obrqDjy#CBP)e7?KdSbc0ERF^O^7Wr5D9f`p0^Dp7w)$lKXnMM6~xjaRDkI=HJz
zs4k&~gr6lWZ}0xn&fUVLCU<hylyJX^YgB<o4XAA;)MB$XWjt@M$Gi?>UB<R!Y!qCd
zIc0CT+gW&;)>uLl34cg<md@5xLNf_{B=n^YmC!;$2MGti3Z*h?$r65*&`Lr}3G|lh
z>yOEVp#|>N61t^zwUy9@3Gt{&u6E4ZTZ&J2b(GMF`d3012|XnAlyIn00V=sGmrtY{
zlkSX(QTmRYd3rJLEul_YSB64)=+_p7^^?$F!gvW2Bn*%+P{K$Fqa+NHFj&F}s(-9&
z^aA$~353HW3}r$*r`<K2c_Ig7$(fOA_0MhBXgbrK3F9OXA0uHbljb?|kog<CXc;cz
zzf0yiT{BX<rZAZ(VG@(cjO2>F=%Sr8r%JdnOx+UinkM1)CdYIMe@d7kVWxz|RL?Z7
zSrYz|Fi*mK39}{4k?=Q{Fjq47xXeE!(MaVY@~wAli5Bh-&E13xBrK$0-F%5Sc7>a^
zR#`-ae-(%<;WC#pE@Ldwz(Yq_Nqr>YHC<>DR@0Tc-o94CItgp&h-+Q$$*xPWuJsZ&
zNVq8Bl7x+P))KZ!*e+oc)j4at_|&mg!e$8*UpjAv61LDZ;%Zdmkh5YwZ*(zjhlHIH
z&Pq5(Q&R_h7iFhseI;DboOe6udnD{-WuJuh9}}L>%eY^{0agx5IL?IP4>38+c!cpN
z<1w1JJ|$DY2{unMo?<-BNUk$91N1W=Fg`D#SWUUur{oKC)u#&*?^`}GG)KNH;fjQN
zG}I+rrL!)YaGkn_l&p?x60{77q<nsmu;p+2O$qdp%Pq#+67F#DT{aKSaZ=d&?+(HT
z5}rtSD&e7oM|7PE@?(zdmzLJ3b&yHxWj&MdLc&YdpG&yeO{R>m*!-7~Onp@g!o>9P
z|4Dc&!7IZj<DG=}G;ztGeJ4Li_(-#^j65<vN%&0DwT$#KzDW2=Eh8h1j8u8GZxW(p
zM9cV26Lnr~<Y-6cd+r!gM!0YN<4z@mlr$w}a@{SarIisYW7`%rPR7rDUE@c)$Xk81
z>mlU1Tht6PGRnv*Bby8oGs(y-BX5n2;ZMmFN!hc=AfznWWmFy$$SEV2j2s-CHYqS~
zk(0cnQ=*u>GV;kNBcrU0{4xs2C?=!0jDj)>$tWVDC}%7z;|Cc(%Ai9~2~<xagt9~b
ziA6EqJ@8ZVp<-H#PsvoP5;984D8+dpW7rmz;wiW^D|H-tu_CnGpl*{9FT*J#LB_$;
z?wOyGH-1XC%W%jbLW#<Barq1Wal2)ZS^v3%>Yqp*kvBl6?2+-uSew8o%Gfi=_R|pu
zDUyuNdmRzkTvt$*;g_Mvv>z}+L`K^vX)<&f0U4zqq@$a6q_pgkF=%<|->@+A%IOmf
zYR2>l6hKAYe(tIuqoR!c3Jxf!L@pV1{ix?h6&Y1&Y{+;oqZ*wi)mFwJ88xUAWhBdJ
z$(5-|@iOW$|Any@V{OJd6sc%*p!#e!Wo#g$A(KWjnlNe1NMYvth8{<hUZR<$G-uL+
zG4~SZuQFQ6=*DJi8Eu$!W^BvYK}I_!?HQ>w`h&V7^G=M1Z`w(u)J3M(+|c&APMom2
zj2<$2%IGDdpOv>alfE+gF!{RPM$3TYm=>2(LVp$q$RPcvjkduuhRCQr-BD?0LY*~^
zvGeUiX{g8;E@Om@qcV=sbs=MvjL9;lP}^Ql=z81!_da#B48k#tV`Yq^ifxl8UzC5N
zp~8Fu<L`_U87W|rj2%m4B2#I!$k-)gw~T2rrps7M*YeLQO;Be)CI2a7hHTD|GpT$T
z^O(<)@fVZXjO3joW3I(B4>W%r%$KpmQWnTqXz@id7F)b!xim{<EMs%Ij8&GtLdHsq
z4^LZoHS;x=vbSCIIvE+9K|0EM85`*8AQyW#TQQqt447^%9lS-xR+>F5eTR(g7XNzG
zd^KYyn^fmLOpeH?b=$sIhH%EVkCpva`~kWuEq+MGVdh3Y^JJ+b-kj2o%Qzw9vWzP-
zPRckX<GhRuGEP%R4@hiYAUz?aGcvstX)5O!3qOrX(VGuQyeQLV$HkiD4qlS+;!`q_
zt1_<1cq8LK>J%9_Wc(}RwTzpb_j|20l<O8f0wm)OD^D4zz`IQD$+*wtfsBVT9?5tt
z;|VL#pOaILn>16UMEn`+&lz7ZzGNiVD;c>to~pEbK%)J#SvS(#&n)&<2A#sV1I4H&
zA7p%_8Qzc7ethEg`9i~6#%HVD?yQsOqyL+Xm|gB@KfcpcyxA7zM=knt5-SqM#JXbq
zIF`os@tiG<A8GyAR!ytsN30)leq{0^vmfdFNKdJ*^LNdW!H-_KU8`=`(r&bEjdN!7
z(*`IGB3b;%>Ibc-ZTOMRk26CZ1^g)JM|QvY%sHhTe&qC<j|${sB{yRp#=MOA81pk8
zpI3si6!N369}Yj9EdJmJ{3yx%M?Z=%Da!a0V=>0!j3pRv)HchZ<r-4zP|A<ete0Ud
z%V=YaXS6e>9G$Wx_#v=D+~vojK2A4dB4ar}Jbpa<Cz%qtL_fTK_&8o;lo(}3Kcm8^
zGNv3wXC7b-GKLt#j4Abx_>tttf8A~6{W#j*Rf$}FOmFR~=tqY(uDz{Xgrrwyv5Fs6
z{U9+{ThmqDj~afwxm2hAD#z0Fj-UOg=||I7_Ft$ksyZpv@}oBMI*co4IY_MUM*~0p
z_2ac44gF~3$3i+~KN|bdgg$QO#xI~k{AlLKB)_@db#ody@d+LL=;%iaKa%}u>Bp~r
zwDF^@9~W$nHMJbA{Ale5k^M2Qr)|o*HrXh(^P_t;M|(erS2?85zSn}ho&4xb!_1G~
zejFL;?BYi^3iG2Yn<ab3kw~eB-+YyzCyPBZCQK}?kw`zy`uNe$kN$r2^@DB*l2~M)
zV}Kt6IdZfggZ$Wd#zuOUJubq*tPk;Hs2{_a5BFmP6Y|!4Z6C>el%+H{Qh@X^evGx0
zaen;9d_3a>#@{XPMC))p-`ghpF~yIme*EFbG^)QJGpNywm<~qFbSCti4E=vaN+%<x
zyAd<fk6C{6;hDdvuV>q4GtOb0%ShtiOy)7pXQa30MKwKj(_%lCP&H`S__5TFWqz#l
zW4#~C>C%3ruJU8G-~6mu;m1lQ#OJxwEY4vr*RX~fA+`CG>{=QabIo1bqQ^Qm(9rT@
zADt1!`#}ono2Z7IeG3=6hxt~TNvtxr`>})hPR3o9zT1z;Tl1f~dL=Z%{j6`~wVMuD
zF$b9(^5Za*YH!T=V}2Z`f#=6vKTc46;-XK}oa4tyjyc6R=vefQ{4r<!IOoSrRw$!U
zBKkZHNH$-!FwgEH^GkkQW^%=fyz0j_=GPf-SbC{$X>KvU%~+#s-UIub_x!le<}*JY
z(464M6F-J`G|PYF$73sR?8ulgiuotrQ$OC`G@I^4-Pq@Tyx@SBe!OB5yl;LP$k)bv
zv*rz5_;f)jXsO_>AMa=~RFI(Hy&oTFc2$r=!AC!GNC{v4_{QXuAD@|!_=WPea1#0M
zN0frhin-$S-hew=L7ak8CEPIzQYlESfW%k@O;uMK=3oAHrR4z9i6>-@Pp2Tgf(+~>
zF(VUN3X*sx1xZERR2pT^q97}~vN6(ymNV?msUVkvl2o8#j<?(jeo*kEf;<ZHD&{NF
z`4rrIm{34L-!snqjPKez=uhT?3JNJ`)ZSB=kruii)x}jrK~V+8e@`r-z%$WS)^Pr$
z;82eEVvIzJGpWDa@vIBI@s5if9kZt-mR3+k!Hz3-^)ET&P<L4c?F`MXz@~uAc!kzZ
z43I+n<F*8cf`zkWGF=MX3c?Bu1#OSn6BP&wL<Qv(T<Bw`<WXqH5Rr(NPmRt_Rp3(~
zv6<hSMrPt?RIHdjS5j#f*A)aT9#jxw{(E<G@I;u`RPYP6u!8amDzH+KzWg(3w7pPe
zCN&r-OBE(n6;!j7>eTWrW64G7XBJoGkE^91IM~%lL1P8A71U8sS3x}%R~&PFbIXrv
z)~(NG14asNsNmd?`b3&2xVPNZOhI!66x@`WBGFBH3kA3H>qN+VG1^b$R|TyUbWzZi
z`ZT|L`+P@h#k{ZG=&Y>`wI_7}b?aGMdj%a8bYk9t@$wUm61h6F`M5#?EhW@VL3agH
zqvPi)=%L`j`vh8jdZvP&3VJE%t)P#B-xW+$%s)W-D(J6ZfP#KB#^PN+Ty$m2nUVgR
z8mM3b4P#jyq+qauA<W4f$z-U4VU{vn!3c}j&s<`Zg3)Y_VH~eutmPf2;5X)_HruEu
zO2+483Lr8`!DMQm4F&&DFh!xAm|SU6X;Z1e)4J%}7yZ%nM)6YEG!CB5_@{yyG~PZZ
zQzF+aI=d<MzZhpL(2})1_1tr)xyHx#ZLj{VV4i~c3Kl5XMyKp|(XEGt3L1R1Z=oSg
z<D_x?V#XzmWG+>(Ou=$CS1@i+uu{P)=BpK~W3ooUS}J^ijj~X(owu!LeZ&$|*~t7K
z1)G>`W~|UIFS)AiNZ86IePbkZJ6&`Nrtfy_RIrcrU5w<~tzeJE_cFPfGd=04?j#(f
zOPIP?$3q>571}Nt_f*_haa6%E>R%OeR2)}uLO~T3RaKl+@b4Jyih`>OPANF8;EaN_
zg&h|e&(hFka-QN>m$;ySo}(jg=~K>a>z$X_b(t}10SD>V6kJzOKt(|nH)v{7@La(Q
z1-EE~D|n*dse(HS?kaew&>a)pQ!ucT^FCErL6gtPH8-{B`#E`6o<>r>;Ji-G)I9^^
z_G%RHSV6On?neIx>IUS2d$iGSOFW}Xd#{#D*Ip`kMf0I*meb@(^1oEWqk3)?_j0SR
z6}(aKA0Of^O;#N9jy?hud|>g5g0J)`!2A;<74n&`XgW$K=QkR4bZRPMIb)QH7!|3Q
zM>D<*%ImAjsa2#=L8PoprCd~P;$yDc;#ACz64R?lr(#i1B;{R59`aqtprTGCks>K&
zQju9j78O~!KvHt3$Y$~Ebm*_<=~K$7A{Xm7q5@>*t}NFMXn9rSV==#q+utSmX|fd1
zh91)ksVJ;MP$8=LLB)?8<5p2b#nNsKOS4&2#m_;_RayQ?MKKjrAf@6eN-&3|lw?v$
z#f)T~0?Mc;tKyH($)kgsjmwE=v@<#wos0>LE=H=bl*5^*qMQm3ortbcQ6zc}CA-=-
z^s4ZwFjPcTNPM`EiZExCRrr}Gj4GqXNZEB20gDG!?9$A(qLQ~&PebJF7cEIec@>pZ
zR8~<z#hTB_rT=qOR59|XPER0jO4iHm)53eSdT&b{`JCKA)2gXxIMCLedPH(oS5bqS
zNJUK*O;q}P$1f^ssi?1_0bNZ#y|#+FD(a~iH(jlxf*xI_1zl<B*Zb4d8XvXVZmpq;
zMk*T9m}#$*KIoH1NcybBdFUV1W-6Mi=%$*h#kNq9tfGU8jw)JO@nYtLUsXK%oJ^^e
ziYH-bYc|`cXiG62bkf_YXwPDbnf6OE9hwU4L>FL5XJ-``KWSZ5bY+v4mL-uYKmk2e
z^i<JH#nbuGeN^;S(Obo5dg-96t<Ah*g#A>EpoUV>U&R1wWEKC8HNF3QunkhpuOgHN
zGa14-lyR7f;g&aBrwpU0&0j?Q&I<kIHJZs7#<7g!RQ$$dJR_Akfd)x&^AnuXL=}@%
zOlH><6@N0BYDNCRWSWZUmNJ0fP@BQ#Ock@3{AGDhT}d}rrHvYqu9t16ig`5Dza%fA
zD?-KVyw3S57BC^ckS<t@FIMrQw_LQQW0{KODz?((xl>!AVx@`=DmJRLw7zqdinS`%
zsaQ<|IGwmgg}bDa!U!v`uzl<AUQYw{p>x#@N3V1Ce^g96XWv5QcXt!nq$2-9=VnG)
zBG~wn{OqiI8(j`xlD9MNV5DGDcB$B{VvmZwDo)VUtzw^w{WSl4cO6!d!ItKEe)j<t
zgmhc;po&Ax$9>ai83BqpLgQA&{L(UckI{*6M$&s^aPL2ma7x7`6_-_<rZNvCP&%XH
ztcrdI61v2?&#53h&v=2x6_X;RWfHH@AZaR7{LH~IS5-V%re0&b&Pe7B6*rmRvXt8@
z?l8a0`0L;1LI>324^(_r@lC};?zKlM9@EIDQL5sNivLv5`XSG#M^wCI{+z=qrj924
z6%A2pRf^AQj-M1Hoe1Gu6(3Z5q{~gkd(K6AO2$t#^0~Axj42{vN(tXpL}{3<VUC7q
z4KW&OYpA0km4?(B>>3;z(r8GlA&Z8rnt5r&YRJqajxil0>FG6OV4l%ZGHGxvHfx(I
zAuw#WeeNoIHg*+a%&sAahMdfEX~@SUHzQ@qqam-wU1y4tlAp~2j0G8MbxHHIN&3PX
ze$enED@8Pv&;aH|HT=Y+7$cQXTtnCI=5JU^B{h_0y_DsBP(Qj1^Rkv=(-6<R)6?RV
z#i=1d!~C1h8gyP7b_sGoLr{ZTL!yRqR<7k;(|a@sY>FEEOuUxY$3$Y3scqxU_E9Xa
z%0$zkTZ(OPbVx&(&3#I=p`m;MM@7pUVUk3mrBu+cs=oQHz7i{yExn3{sur)Np*r(g
zE6smRe`a1&!;J#wN=?6L^w!n?=0N|$sJa^JY3QJ#qlWq#8ff^Hy$v-q(jeN+`Zs2!
z^^>T@-)v2oH?>M=rlGmTTQEsxY{~d_d^*bBN<(Warj3TS7H_Aay~VGGGIY|=S;J5b
z!!&fEuGG*^Lw^kiuQlBB#@3A^yEFD+?8(@Ru{UEM#=eYn+$F*2Z2S__01X3K%+^{T
zq=A-BBJW^UhA>`i6+K+T2o2*kOwce=L+|dkRb?E%X&7adHd@0Ni;rb8PDA?n<|1sb
z0tut)nr}<FK1ThnVWNgf8b*IMk1~xTCo@iAoXYqIU55S5ww=!ApNumYNt~%+7W2O>
z<=20r=W6&{LlYfMb<CrIO4o&sA9XCyuu#K84UaS|(y*9%WP0>L4NExhIt}YJEM>k-
z!*UHPtTI<KS;@GHv1BmK8q2%ZQZ_Kz!MKr7!zSii8L76LHEdzti2wQ^Wt)cW|3}$L
zSCfX_tQ=t6!$^^PHSA-)-%`r+I;CDY;~@=)H5}1!RKp$i9@B7K!#NG-HJq^GPcu2m
zc#82zxx!~G?^#Q^py8s1>y~~=!xf8PrhYtW{?m2UQm$$EJi=U&>4t`z8g5zoZ6@SR
ziKl?O8t$=ppYZ|XI$o;xv4$raqI5*-h(G9fs^OVN+j5ya=RwD<Ud|U9K596-%JEXe
zE6(^Y<2%OJjBgnK)9{uF9ntVbzqj}YCeOYV{KVw5rGL@zmH9Wu@0NZ!XLO8?R66qO
z<_wUUF*9Qt9ch`wGG^2f$0QwNdd3Wll<~xks7w~8PS2tvE1TIE^XSN~BZrQhI(=I<
z50qP{yV&NsUeWwUKaqd+=)6`5`KXClFJLJJbriCAVVxELG1vPlqNAvenmT^b@so~X
zI?g{a|1m4hk&+HsM+qI!QBp@K9Znqy>?*CJj8$6K>gMEGmQ5RDybinNb?EfGH($uC
zl+)qS;kLYqOxiUuFI$1m$kIh7DJA<X?$@E{sH%e=KT~yRIwCrf*sJRZF$pjR89x^`
z|Mv?sH~x=8VtF<zF;>t~kqPPlmNc_e)=}mEDAg=pok<NHKQl=QuBD?kn~fPe@!zm@
znAg=&k4b&T28<0E=_rku4FBw$-PIX0!q!Yja~+d(Ox7X1k7}W#n~v@}l6ADyajT2;
zs}8-XIXAYlN@%U4jgGcD+UaP|Vi(2^jGY)eGWP9cF6-TyxigD-8Fpn(N)H`9nUB`d
zi%D-CeRRYewhgV9x37+OFYE(Z@5e}a`|B9MeB==GKjc9=2D3RNMbt5r$uP#@j1)G4
z$?dAqqnL~xW#%2DW2}yGto+XS8zZ^K>zH8i=uNJP%<G2Dp)y6sR2_G9+|%)gj%hkJ
z>Da7ex{g0-lx7oG>6oEorjF&DYnF~LZ5qteF`rKDx#KTt$t$+mI_9uBmyz_pnOs|K
zTVNe`sg8vfU!-F(^CgxtaY)oMi|>CFwSxIdOPR9T980TptkJPn$2!(GSl;zI9L3G=
z5*sb$A00zRnrAnAplyqeV>*uO*s5b22W;1|*NWW1WT%c@Om;KwvAq7TQTuf4*KvTZ
z6c&##9%4Mq*zsFbn{Q_OQ#wkci1`T}C)s;J$0;Uf8Ba4(<QcknADFq$v2xzh52cU3
zsN<53%a(G3$rT+}nOtMMZh6-`Gv2iLEhe{h+_994wYiILM+F_u`z)So5c^2SV;#OA
zq#&N?c*>K2Cx~Y{p6mEMfQbRT(D9OHvjBbx;FXSlb>s^me*mv_yrJ<NK&k-#vySpr
z$6IRB;tkLJW_!otdmSGv??)z|7(X+9VVr1>{>J3Hj`ss?QGx$`>x*V`<zRGbCg}pG
z^x6E{oQBP`jIoSy0hAnPo?!X_G6ay3#cTm2e=#4v%EV@7#w-D3WwPK8Gd?@VP*@Ho
zIRnVWBsXIo%bPcVrsHiCRv>^;nSvz)C>21#015^0Jtnbm06%h>cY+B&1Q5N|xn-a^
z28skwly%}iF)0?n&9sG!2T+1dSl*&XQ<Y}!3?P9?nE=XKURwb1%<YU0OONxJ*Mcj6
z$ON0#&fyLqF@U9s3FQKi1MoBV1RyXWT@1j>+{Y+c`t^`Y2|x{?0+*~Y>H!1-Sl`b4
z7@`!Uqgclc1rTO#SW4OB=7&*I0OeVEc*?9;Md~j$D+f@WNfpMbjMW$^>~?1J!HgOK
z{A?*}JQ-^RP&<HM185aModEq+h=u_)3ZPy9Ya@;qAxC`*UT9mo*VZ6_0Sj%E+|3*f
zR@xhLA<Y745&)T$ng&qrut}OzA(zeXx-F<%Ijkk4Yu*3Ov2_5$0vH}Zn*iDd(2kBi
zF0pq2eK@Q=V}}4b2GA*h&TMvPq%yk%(3N>NOX)PK0O>sf=*dbiOP}62uDh-lOz`$)
zrC$L3=@cyQ-~a|PAH?|Z{Qv4Ugw3Ihy|Sbm!Gy~1phS<PG0EoW02*g9zr9cz!^+qI
z#xePgaXjM$Mv6hfbdv&@9KeGB9tJQafT`5H0jvw)j{v3xFgJj|1DI~b{~5rNoMz89
z*<zo;;!MU_jDIoCW}Fj%Gqo8xFMwNx67vtXEoXf`<AMMdGFik(VT+k8p#jNcnWYbY
zW_~oUU~^>vtC*~2Tw}!?9U8MffDHj04d58f1J#`y1K1Y8_LP7CHU-e-fo-!Dza@aJ
z7GL%@D*NYxbch`RbA{)f0bE>V-^JeD0qhCTZAa{*`DB$jS5Vr|u0xCm7!L;UXM6LW
zDW$^!9AS}o;)!&}12_@D<p8b(a5&a^GC;4VndO|~n9~8A3E-?1e<^@-7C+DA0^>!-
zeID~etw#Omt85PXl6*ISYs{|)aD&Os0B$p($XiUR7SBuk4s*KOd(ZOTXEJ7oS(!%x
zybIuc0FPOG62Q{{e#jMb;;XqP<TDnZGrkDmB@@zLQFAeW9l#qV{{`^Y^7iRxHi&4%
zehA=W0J($66T~OFoEO@ogNO;5<TIOJ0{F`08zbr81Bl`P;_v@*qzWQ+5ZQv}Cqf!V
zBAJ+^WsD6Xj!8Pk^o$u8DKcXa*>?qqP|D0=7RIcM-L6Mvw<2={k&}5YOBvve&CC49
zAc_Q$FNpj>`aF#;<8u~Zy&z*D#=?w0FrMyaHthO;<dp~9MT7V$h+?eUgP<omiZd_4
zh#*P^Q7ULI^H`P@%2+yxG8U&g*qFy#N`r&6^s`wGC1(%`%w3FbOHT}<9CLcGgu>{H
zy%03N-itwV{S$8x!}6JHlE^{$gZL$gT0tm5>^+|*9E1^s8bq^J=C@fb2%V1`2qMTN
z6vU+K=64nURr7;55=2rEM{k?Fd=M3abhE?ksfs~V3ZfeG%0ZlJkiIH&a#dk+JeF2l
zi0<7xO?5VFFy3A!A311tR?Q$%F8ta-q<Uy;7DRIns6!{^lIt?oW312EAc%%c$lHiX
z;~<(aY06mlfrDHvf=CWxOb}y(Xc<Ju3%1rlv<V{D=Q_VKwxX7KYA3U85bc8K8APuj
z+6U1gi0F3CZb2NYCUy*>E1R9zoZnjP90Xw(7KyxE98Y20gXqBll#xsldk4`ch!H_-
z-0JQdM86<j&qy8|ME@WL1Tm0?aXJ^JClg&+L#`e51A{2wV=|?*X<S2s7|LeGDDN=N
zNO^}dS+TOk$RI`qF**pxeOIb_b*X$RXV-n#xFCL`x&^Tyi19&82;$EmW(4tj5EFy=
zUe7(1aZ(Udn2<6#h^cusBK-=d`{9P`k07Q6F`d0_PsNf#i2`N@F^k1{LHrfO>>x;=
z8^jzIi4RMYn+iD<Nc@{!;;RxQl5%)^i-keDPltb4UmV1eAXW#lCWxh+w@cx46t*mg
z<w2}qB}*`ol$Fd^F;Z!ytPO&0G;d^O9dk0*2eE+_3Lx{!?HH;ORbvw)DO-csMis7r
zITf%yh#fRMBFGxS&LDPCbA>TJjNMckeFqNVc?f%h*cZgi5N3t2KZpZ#1qJbzt|lIk
zSA)35<WLZYnb7DxLRSQJeGtc4ImdXy@}6XJDu~mTa)!xSs?|aB0o3zsUa-6ugSf=}
zvZY+1J`I}_?De4edLTWn@FIvC?7hi&i}5z&ognTqxySf8i2F<)Fj658nLJ|j*<+tD
zdCK^V@j2tIs^*;bGKg0}{2Ro{%eFVv6r1d{H^*zbSbleq(*JoZDetH^+d7AaFf4@k
zL3{|}BTfE67$HPL_#DKSAn3)Vk|BHz;v02V5K$pBONYU>0vTLalbq2ZtlgWCE`;<U
z#4u0ANMh;`(pWrg2(cEA3nB5Hivlu)@OE!P_7HM}kdb*NMiMhK$r3_VOUV{8H`FFq
z&Jc2iP%wl-T$9`(6ktNN$`eA*>}p;%^D*Y9>~|8#MLHp+!mR%k!VgS-WGuo+-lBAr
zF)kv-ETwn|B`l5*Xdx-`mZEbhrIlvAObBI34<VjSF$B96?+(FXac2k#%w3F4hnVG1
zN@TMfqlZxlAxmcmxx69xLXcP_GZ2Ctf<FX>70uGs5NOfhl+yGNmZcJj2iY64V!|P`
z-C>?r5-UBZp+YDhLIpM}hR}*m^N6id2$fl>!dN#%ySAZP2-Vr7?7xIigZa;vQZs}v
zbIqgIvXt6P>V%NA&usa6A=D3{0gFvSXv(Bv2#u`x#v#l;_P^F>7D6)X%`I<>khyO%
zl|!jz2)|l7Z7$rJ>)eJ;ErfQ==@dGL(B9%5Lg;AmPBcHvwNn74E+KTa^lnVLhwxiE
zkzBp3@`r@bn|YrQ`ZA%lnEEm4&p3c_AS2an5R<`-!56kg+2e<HqW2szf|W@jj0|BE
z^RbMhL+CNpJnJ!R(gKpi$1(pcWUjzGo^b*rnZJiXJ4a09u|XyUPYz)Ub^RzCrKutO
z!F(FybjCmFva&nKJ0pbfQO6k7@fS692%AIL62hDi=7w-Cx8rZBSX=kGSvE?xhmLt6
z%nxBf2n$147oy$nuqcGZA*={tWe7_`SW06ogykX7E{C+0;V(0t^hW2*FUcpKIC@`m
z{8+)YDumT^B6N*}F#Sn_c+!3Ak-LZ6vE@s0M$K6yt)KSFq4&EtP|KgR{S(4QCcR?3
zWNu<k<XKwp))2OZa4m%EA#4xfd?{%Ubz%rRnD1ol5SwWiliiHxza;OY$v=eCA#-QR
z10fs?;X?PslOY@m;cy5?LO9CG%P+~tt|ya=QVKc7`tcA>Fd;qD*W^=N4i(kquJcR?
zXW1mzIVR^RGK7m9f0^-;m6r~8h51!WDfu<|MhG`U<}=Ut8E-M(4dFJEJB;L|_wVjm
zJXfU*q&x`WAuEp<A6wohAv|TiFGofSn^Y|3MF>BJQ6!9)A-oFVUuu?%1wMrEF@)FD
zn2$@pVI=Y&lediT7~fM>uSSvU6HWd!pNEkuj4o;9FClynndB=Yk#8a7@9H8#DT-sF
z!?@nXR8ohLCX6g$WDVm$b9dS>;=(AI))mXRFs+MTs7x0Ik@R76DH}=|!pLaxOiVI|
zaVL!#nJtX$VdM%UcNjUs_&3g#lLH>4bJ6Pt{mQy(z18xBkvEL|VH60P3v}lTW92$G
z<*j2kODGsdp)iV`bFc5N(@UD)FPdUuF60Ns;Me5Ix7|g<aE0Lxn~xO!6h^Tyiic4m
z41`fO3>#HGj8b9j`<hTDj1x~1MlZ6LW|K(U3=Y!Q9&i%Ihv8t|&Y0?`OrkT41k0pV
zcPL9@80Er94x?olo-l+kLSckS`O_wbA%!7_@nxyQ8-_28U`7Y&M{d~sVJNHz!dO1c
zR<V;)4I|Ra{Kce&p@)$zqvQMn8(}bvS7+Rmj`VjJ)R;#yRt}>I1&5IoM)@!*glQKB
zEqKsYk&au)QR|Vb64m^IotFL}e(9vEYS{dB(44Va7`J)vs_J3X2;*n!ubB9nVKibd
z@n6EI6-Mna>aeRmBk6U+sAusClWh$w-Y^W>6@>!m5RJKzCX7wPXvT!}m>JP6EKUo~
z{2E59Fb0J&IE>a|v<ahE7`?-2OXJPv>=4GcT23mnT^K(tRNIHKGfhHL1xH6}llAsa
zj6^!qSY_Uou^VG|#vY6m(~|~_%|Ya3$k8W^eqr<vqc7K_^C|PE)-Zp<fH0nYjT#uH
zhx`*>tac13n=tjEV+akiIOm8kMustz(yQXbI9K(P_Te-*huLyIb&lc~3L6*3u2r_t
zVT=izO9>T7=NL=FtdxsLfp*b{PunJh@jH!b0|g9B3}X_V5oHNuau|Ep+5ZS*S{PI4
z+<D#msZ3~@i0NVc8OG)!j^%vl8Dabt#_TZ0E{&cU#xGOtv%*+6%=|_=$7<WZ!<b8h
zzeG%<n~qrnqvuf{&9~2IT)?=HaS<cA7Bg8A#!@EB7;j&TBG(GK^yqZLSRKYjDnE=_
zCG<66T6aiZ%e?N_<aKPWXWYQp?Q1dxkZTjwJd7=2oOCpzTwB8+aXV)uWgDCSZ4c}S
zgOIY^XejUIvv?53!!Y(x%g|L8#{MuahH;5q2N;isaWITS%nvgjWjsP<{%L+&rgY5W
zC)jn8k@QncPSadrDQB6SV>}<m1xv4bGSB5OuCRHX@oE^?!kG9q`Dpg&B@-N!QjT>a
zjGJNH;+Wfvcj+Q!Qt_m-Q08>^m{ah5t5%P~cuY-gAd^8)zTqkLxM6OQ{49*;VSJ_W
zAI1xs!FVs`_e@?gzM^T<(qA)qLk-B}t);)C*<hEA@_u0DBjcwqJ~R0eHb3iWJL8G7
zHH!HjMif<}uRWE4;@uOY4fCM>?uo=>SfO2#QyciJd*Y|^8f_Jw)<CR*IK$k;IfG$t
z+?>updIKA~CBEvONVw^1GL=T8?*>O^1M_yMSq)?{K<2VbEtX|Y$YvnBfgA>M8d#Ip
zk;_2yg06}~-D^ubQ*U+5*)Qid@UClO9>%-|@)`KIb>g5g&a+>W3mPb7psImt1_~Sa
z!GMb@Y~XfmJnawiqk$p@iW>Nd&gf2kyMbbK3I<9UC~e?uCszprC2q%oOjZ5)x?0k}
zre4~F^>O5)RK`GA1EdSZoHKiAL~I-o&mu*xduDSOa2lXlf>HvL(Y>9C2Fe*&bXKcm
zAkAEx#{lheAsY}3hz7oSM0(Ne`h{e#VQv}hWBhV8p~W@ZhT1N_0mXo7Kr>LmKt%)p
zOik1c46Nz8^EiFLK>hP_kTJwaW|)a#AYvf=&XHv4<(V|io<KVhpR4Jj!s&38xnfke
zDh8(Au1}=8ff@!D8(2c;WuT^kAqIvT_{Bgi1MLlTFi_h-9qJbYEezB(P|rX^1C6MB
z1Cwt>?Mq1CfV?{sew*wf{4&kF*VEWQGXpmd=4nFx+sM4L(3H-ltL=DPT0(jRF4;g!
z1Fa3TG4Lxj>|XOncPj(5D>|)+c=@?NTc4BC=zY4j2EBrTtyA^v$vP>ozb1Dy(8)kg
z1HBA%HqeFI`E>E_21b1^P61sFbThEdXh@vCZV^)IVPO9zd;A?&Zv%a(Jq-*pFmlfS
z?h^Lpy7e>ApUD8m6z^a<wedx%ge$2F5z_YS!wd|k)-y2Ozz8bDz<2`_=;#JU8yIKc
zH_krBK$#pRQjR{>p#6x=x>0&^tN6onMF$Ly{hcO%YCr>1IDQg0=En=E97D|JdbTuf
zs)0XPY@gaS@xJRZ?+*W`ff;myX<dICm}y{^f!PM;a0!jS7yrw^xg$ks6Zw>5%{9!m
zBU<IhyZV8ZtK4O}1m+o-Z(sqnGiRYN5*Jx~YNnW_29_DPX5hMk<px$5IAY+aft3bU
z(REFc9K4#5&SDK!a*5f<Ygt*xxZc19CZtm{ZZfdhz-|M33~ZsUH1Pg(iCr|zo+MDG
zP|P-(I;{8|26kGU@_uitWlinc%gR3LL?-F^h#l{^GM;lEFmTYoA=VEYNEu+N!)$?L
zWE!|&;G%&O22L6{Ll-{vT7GjVp5nGWZ5@j;(&><X&cNF7vFB-`aJc^e2)Sh7Do0*6
zaD`@@{O%e`VuMuwYiDZV8#LN!YBKQJz%81B3_LXO$iN)~RO~$i_c{Arx~5XQ=&T>G
zNtX{LIw*;cY4SJl%)oOVt0}Ih9Hypok@<p)y7<~0NH1A`#YmNWW8gmnF%hJS;4Mv+
z20j}2MD0vhw~|=+bny>NioXyR#G7^gY~YK5=!n@4U%8O))WxgJe*9*&VHA7mjTjQC
z!qi!*BS;fL+6ZFVmC`9EN0o?UGhGDfBbZXwCC^OuoNLi$i916C)IpRzV+5HvhInQs
zROf6FWRD<6dE_jQ91-M<pmh@3Bq3J>xg*#c!M=$3Z+V^w@<x!4`Kk`C{1Ft0phpBf
zBPbX_p$GyI1S2RM!4DB6M$ocT20F@*5yV?ZED}M{2!4v7SOmo*C~fH_A}DEbFv*ZR
zx)hUP7tI?zl*&X<){3!3a4PD5&x_hwbVT4}l3>NSB5+&$Xm)e6^>S=_A`l`FnR_Ep
znfM}*n8*?MBT$$ZJ!^hxDKX1@5|X&aqRyD2gdzw>&>(__5f~9f*i|cnBqo&@%Ukgk
zBB;o`zyh<_$`MqFpsMAq!K7LQ)h*?0YV*;lpChPgDZfOJ@_<ckOQ{n<UFP*Hr9P8D
zrMO0x(kX(*5j0`5X$0+<G>f2l1TCzX))6E#Z^`&8V=K$sa;{n7HW9RCrFZ53eV1z=
zK?f_QBNKbR=*~>KFm|=P-6H62@$%`SdqvPYf+Z0wji3*mR0K03m>EGojv2?;KY{@f
z42)n<1S74ygP9DAV2Gs*r8DC9E{9vn2qsq^=N@G#qnV6}V63I|Z}0gng7IulV4NJm
z?@T6IF_R*AI@#=cN>f;z8o?iycN&xF5&UT>qYuZ;viQ6R{$f6xaSr2L#=jY<%=v9&
z=39J01PhrjVqDBPw3m73dRYX^+1wn#3MT6q$+a?qRTf_z!5Zdk89%i*=g;+)cLS4+
zgqE_2ns=pnc3W848o{;*wp-ra5$v$|&IoofFZ}U;pV52Rr0n}6I1oYVB&12g!3YjT
za5aK!5gd+SZC>qI1mlttjzn;j6Di$a+6j-dej<XCOinSLXFSb#hVg6!=a{7XmQ3Yb
zU{2&BlS_=38L!agJhVQ!u19c#X59$hMQ}5MTM@j7;AI52Be)a6qX-^Ha5sW`5!k~C
z4;b%9u)n-RFPcH<QsVCwa@!2z!w8COx7FQlBYZ+*AcAMCr0CCS;@uQSE=rV<%6S#R
zYYvFr6!$Mp$eZG*5c0l>;6F|&=KBb!gztRN4-tHf;8O&jBlsG@w+Oy)B<1>6AtP0T
zj!wZ;I4N|*s3b%unPyB9QYD$yOQ}psK-wh4CZT2$J=f=qOG3INBqYI=g!D<skc50m
z$e)CaNywCh97)KTgv?3Ek_0h1F<TO{CZXLvz2vuKGJi}?eAiFQ&Mq>O_UVMpH^t>j
zLhd9u?1^_8X?c>6HwmTPF8N#XBzI!tZ^;FcP%!ELF?AMDQX}2lpFwtTclQVDX&qo-
z26|?&?xelbNgB5q92R$XcXxM(MHX0`#ogUq7We<n<;{1#bLu?jS5MulR4SFUr7I}q
zKxqdGJ5YqW=RgSuiaL;z9OI6%7IR>_IfmGL**5>YouH%xr;}r-amvz0%QyfB3=Tv)
zP}YHR)V>2d%hhbyFQII|1PY)q%2sfoBKyQ2j8-G})8v5p_b&8H7`I2;3lFz!b0Ee6
zy8{UhRC1uQ163WU##LyKst_>S&uE*VDsc|PJ5ZfXYJ@iGOKR9@X<`ira?G?+qOe2<
zk{ob4AW+L^5}IsJSJMHCtmQy$uGs5mavcZiI_Nw3L<j4J>DCsOM9PW|xE%015OAQ$
z+`?`Lyj<7AqeP9+uxJ}~VEoTyf*=F+ga(0zot%&ZvIB|(ssk+?NOmCXKs^T<IndaF
z`VK6<Wo<wmv)G%RvR=&?+t7g(kr^J|GRS!?C$89=IM9qH!y-dd2hMg(^|`k_;<AN`
znma&{`IL31S}?_dmK+o8oQhgIx8B;yq5Ud4U{Q2i8e|79J8*^0^ht*H4y<!vy#pN_
z=;*+o4s@cU?7$4lw#?Vrfk_TbcAyI#(C$%PDeS003`BQh=<Yxd2YNct%YohwjBsEi
z`+Xc3;J`o!`f`@4^mCv;^Tn(d$_~=~p$-gY9>O}cQUaAy8phe-4$S>({Oyc#V4PlS
zv;$+9$Ldb!g<7rgoSopnMBSgU+eH3>^-)tCnCieZ-KTva|3zuTOb2E;FwcSc4$Rg|
z=Qu!Be#gvZ^YjAa0tXg4u#&Tj=omS0YO`U916!|FA)tk%Na+{$r4B6PnB}Z1Sie3k
zPn%oCyqcA=YaCdsv+qdh4GwH{;5Z$fF4oUq44bHB2evt|*#XK@+QKmEO6k97dOtQE
zrfwg%5^Q&12c1o9?s8xs!{4k_y4!(04(z4Fbk0CoO8;=t^t;CWddvX_4l*Co9r~-?
z5!#WT$wwXd*MVcq`+g?3I&R%#N+AD)11D(&==7&a=)gIiOGy?J&8RcXUDC%UL`9!>
z;GzSU=;V!xzQDR5n}uR%G3SW~Ofg>#R~@+Kz<UQiIB?y88xFjnb75ihP1d^(++(=q
zz-<TaIPlG)t*t>RqHnSL4m@z+83&N_(1FJeJaOQW?hG|oHPp!Pl(U=p3;zOE^|=E>
zR~MxCaxbDtUpny0f!7Yaap0{3?>P8B)|y%Wx2;=0lWQ$bRkB5yj}CmIE3i}R;b#ZF
z&^6qNG){cgxA=>C=)iZH9upIOIPllIGC%3On3&K>(4MjTd0<S06Om4&;uajk%Y5CE
z<k{MUiqf)^p0(~7>mN=;Ig!qZ$(9%@rPS|JQU)$H^t5Gk;^R+kLHo??WN{)ZLpIhN
zPW*W)U3RDTsh|GCPGJY8rpoO^9w*ugXeS`A6ZxFz?nDnK@;gz$i3UzIbfTaWg`BA9
zgu#hRnJk5!C{7<D>e=bROhufSRo+yTwHT|tb7Bc6N^(FcCn_+MW~C}+7{FTAiE<3(
z_0qM2qbgQOU!qF-XzJ=pquq&`ZORy(Fi|$G$?Sy12`h8Ksur6QF-}zD$Ol<Wm7Jib
z+f%K|>=0COB9^%-YugJ^WX9>G@lI4{uAw`$P;-J4iJVPxLUh7K9dM$S6Sei2?B7h(
zNFC1Bb;6<hPA3GNOMWs_jN6Hz6WSxd*!SwCJ_bK)z)A0H%TO>SiJg!WvL2~8q3Rr_
zBdBwIC+HbTRHcy<jh$%kq<ah!m-R3;p(ESF)WV6T48+YCnzP2XHYGce!ran{R=P=H
zlv+E{hMl&o?N|qYHBu2hT&9B)9i1Sc^e00nCptT^ZHTE0XS?d9-PokCo=)^~!Y&{|
zKyN4dI8jB=KL7T0qMs8+L95%}i2*e21*8%%(1}4#>~LbI6N8;v<VYt*F${5Hs1w7O
zhdXgMr}m*~1ZN2-JKBjc)L|!<J2BRYaZb#nsp!Obj+vrIPH<wP&Xed2V&2Mkc1_j&
zX$;d@XRwxu(cWgyc48rC=djLYoySV0^PO10e6_pwZPFs<#jHzMm$Fikd?(ck=FO}t
zoml0>YQ1#56Kj~)>drbRx<32gcUc?Q+{n6#_4&`zTNt*|uscCdqyCF^JFDe+X>v$+
zIq^5m87Iy<v74?-=@a)ju~#2S>eW9^9B|?wH?_}+{S4&4da7;ukQ2vs=dcq;bUy0D
zzd9ddxUfdMlkEiaNheO}rKg>E`crG_oD=7rc;m!dCoVW~kpmvkRYi}y&2ZU?D^6T>
z;u>dfuwK_=^43XrllhkJJo>0@_YUn5JNI<|J{@Jgnf9R*kLc?0y!2x(dhWy%hNrC0
z^!W1~wC@mJaQ3AWuNYqIrF$Qk{&V6TXMeH2XZ^zZf%PNnC)Uq&!j{#(+4#!YZ>-;0
zf3Q-~Pli`1+J8SI_ynO&re-KAAhE4EjexYA{X@X9CNb%MB}WNJ$4+_yIR)erkU>C3
z0h!p$%1W(e7LbLRrW|FnF=uDZp~no)5SLp(9?lkI9lN7cUWR<E`B|xY0RhLGYjc}Y
zApwQiFTz^!uGW4r?rm`abSz2;D9J^o1e9keEnr-Uq%zE4r7C3wlw&UWOZyVL0&_)H
z18X!Z74;YwX%b)-U=fgf(`FM8BcRR)lT|>c_U8I2=8Ekq&$1@eI%TdTfV48}d22$f
zfT{wj>Fv}I5T|oILv_}T1tS&y4^g6kB!QkR5U&bY^PjCIwIiT5#n2O?pTyM>P**@u
z0IfLc5a1Nx7T^&eup<g^3G@*u>Hn>{N~@mI%BWsCaK+<&0{jfL%xORXt#nFZtzT;E
zxDrSLLUavmo<LP(0g3=x-ISO%M5WZ9us~lq#?+$?31}dop@5?+4UGjfVQ56Vx!OQZ
zQvnMbnyL&ow-L}xKyv{t^!-g?NETp=PeVgWsU<tDSX)y&-pKdH$d{|klV6+K3+NzV
zvVbW9ItutxKz{)P1hoE8rIUc}0(wv%;w_z7yRdc@&`qFQeaxFx6BT7XXX+_nM^#%N
z0mQxNRe-uQF)6-hB4zt>Q9o9SnVy(_pnyRFJ#n6%M`m-TSO*IjB48*DxYxR(t7({k
z;Q~er7$abWfIdUb$10mfGUV~cj}j0t#nVQ!J&SvqA%3iY@dEuiZyCn{&5s$VXabE}
z_IOHHTE$NiaDRK^;!9@IsRE`6m?L1WfawBe2$;pYGdzoFCd11pGjZk>rrDg`eN5Xs
zd1lf)YOs{0Y%Alz?+vLB3k58qY41fTFBS_}BH*NmQzDiMSVk2^G!n5~zzPAU1e_MI
zQot$!dj#wiu$m?t4TYesOuJUVIssb*Y!$Gc&dsidP3&)A-N;H|t8Z$nyl$qsSE0=B
zl~lLUaTKtf1L$#bWYUUrdG>0{wC>bv?Go^}0Mk~}Zg#4SiKhjt{}Hf{v&RMO7jS_2
zh=79()qf>Z3x}8wvr=|IDl_R(&i>1KjHY*nXfjXGjtlsjA5A4|(Oud)v}XjIrCBE;
zM#MP*=LHlIQB=eQ0T=1wCgKkfmjqlE@Ib&r0apZE6>vwuweiKSvEJq>dY$!#fSU}r
z1YB6J{o8_4-=c}6sV5ok3fTFF=^pES)<$nk<WT7&0gt)jq<+OH`$WJ~0nga^#rj;p
z3jr?$yb|zHz$XE(1-udPj!WON{>MtyvyRc;6`V^I`CfNE2q-&9`}Y1bJKqF+7x0CK
zg0oagMSagl{?OxpGEfV@n~D&%fJjz?R1B$E(}=jf-%e(fh;$;diO4P@Jr`vW@$Rzr
zTV4jvW)zW$ft<_?w~8cW6_NK(?e&E;2b=jt6cCY<ITvegR*K2PkXJ-Lh965y#P*Fk
zc3As1xS)uUU$q@9B%-h$f5{bDOhj=J?ep49B1(uTDWaT+@*=X_j4vgkj0iB7rgNb}
z5}CcDGgBjF^%l;}PN*QFq6ni1gNXMXETsK@7Kj$<zCIIWDG`uKy7VuDncDfwU=d+u
zpa<Ggwvvd-B0M6zBC3dp6}9KH?Dkr#il`<cK}4d6I1%w8>>}u^hTW45m0laGiy*DR
zO3-k2{It&&f+P_&MeW12NUilM)$L_uEfKZZslz(4YSp?76yp%#)L9Vm!DS=UCBiLY
zXd!dj(+z&yG?U{K;iqBmXbOu6hzN?1MOboK@2@hZT5XU-Y+Gjxu@cmZj8;Ts7;Ig%
z#iWYJf7(b;PsGuN=HUYk^+n8IZ)iZ<+G{M4uWDlvO+@q%(NjcI5zTmD+lgq-&`KZY
z77WQEQfLIa^Yx#dMrX{e8QQS6Wu*hur)sM9A||XdcVO+vO4&adI*I74J6%L{)wvrT
zCg#p73>4f;L~jxQa+`fb^cAsC#3DMrBKnJ%DPoq00U`#97$;)9h(RI-i?~_LG`y~P
z^bKW*2-2Z+-Kc7NlG#E$OvG?DiAOMuWF1AS`(qf!veMYnV}Mc`#ZTZqOk|zJI+=9}
z>r__S>uDmUGtXdcK3<#ovqj7iF;~PqnpdS_a{p)8xzzajX`HW&b-suNA{HNsuX515
zj23mAVU`Y>7mHXTVzY=XG(|-$6R}FfYC2xoqL+(UA!4P7a9?x2&Kbu(j*`wAC^a2s
zUL#_yi1i{ih*(D_(KchxawhUA%`0xA_>FXYhnY9gJb!1d*4Nx)o>prs%^4B9MeLyt
zi`dQ;cZt|R8yaTV$yM@SHjk@fJKD;$r;hphMZ@2;p^s+T=w1>3h&U|bh=_eOslHi~
zb6O6G*w6cZfb}5j!eZJuI9r)%t&er94b;d{5mQ%b9e8_4`%U>6haG1<!D>5R__T;K
zBEGrt-Ho$!5Jenw;kXOu>Ecfl)rICRT%?P?h%_#wb>XszD<YnWcrM~9H}XKlLxyXt
z*G1f5pe^2HxFzDY?%WY^m-(LV+!t}}v-WrOM<VKswLN8@;4x>Ph^TSbLRkv9vp3TV
z5ijZbLx+hD=%40SBHoJlPsD2xrM4uzVO4*be3fF~QUB)}#;h%|Xr}ho*IhgQqlix;
zB3y`cf$o7UIzW5H`OKU9!uplQLGRUfh99gyS%1;hc&pY_k1t7S8rV{~Xt@|GL24J;
z!``Z%?GG2CT(G;4;6geV(z}q|g&ZzqaB1rhW^o~_3mILIZ&@?3W@e>qhX&f-Evb`8
zDVvM#M$ld;bGnerg=iOyE?k$iBb(cWJTB}{wC8o9luLUh%I89Uh61cbT`0&vMTHm&
zyHG@TS{F@KjJY^#3EeO0f|N)51*)_QW!MC3MHk94l+z>2yHG*r#qG4$R>SYC5@m8>
z&I?QLT}F!wW@gHoN^7q~Ru^n8#JEt2gIAcMsxee{p$bDRYgN`m=Co9WQXFUFU8v4L
zP7NB#R@z1rT}WcHkqZNp>@{8RyAWWfmJ79AsKZ>>1&?0W!Qga3&>fM%<${}`C*K=G
zjeA}2u`{ofHs(PZ9L^@Tiwe0gFUC$uW|%rXhFD=%S;MULSnIPkU~Ncekkw4Vja_Ks
z!mc(^W2UESN@LPNJMN?{Tu63dfeQ;=NO7U13*%jw;6f`GTDvgFg~2Yg;cifTPZvE;
z8SQA+vGb=3haMX{xX_W#O_TOsD^yWaGCOfmXBWCKbY&&Kn+x4_?m@LC#E?l<db!Y>
z+w8;ISKnekhW@MrXv}s0ae;J0To~%Ya2H0naBiew7#BV65Ji0dg>|G0qg=S}Fd?KJ
zxX~^=qIV11jbro{#xjg^p)v<dbYT)Zb6l8AC#eh5U6|p*R2M8=t<zjse#G2ppF!;!
zMcGTo46VCbXSy)k1$r{?EEgL7O8(j1+Oe}X>vngu&UN8^xwv_(^I7SMTI4KpVX+I_
zXhU?axv<oQjV^6H@C@y&%XsT6X+t#G+G)-T7dm&a-klM@%7xV~JpN@^!!c`JI8n!5
zv#e<yXV<fCV5O~>ESYYT3!7;?|2A%+3(kJSRyv)V*$Q^B(&NPs-L`CZVTTI`=@jrq
z?W8F|=QSPftCqiApi9a>F7zmzmS8t$_pt7zElN>jZhBE>p9@dIiFExrK!g9#*tL%7
z-%i?IA9CTa3rDycM`=n-GW<&yrPQ&X8d-^dPBNTu;iL;=+!*V|DHl%D<;4w?8)sZN
zOIIy7(z|hvF8(gOqY-oAf(tJnnQpmI(`LWOe2Mik>lN0ktk+ntv)*96$x7Afsc^Sl
zxZ}cInru-CPq=&CvfJ;u5HHy8yFmQFg@-gfXoNZY>_rPQsg&TU3(s75u8-|Y7hdRm
zB1`&LF1&W(4LeIz?M4?$Z(aCLk2#bj{Rif>Zta<CRQl0{PkQNR7rwagl}@)b(cfH%
zaBJ|Lvp-mWvXc3WVR_z~#E~49%8k?vX;{f0Q@ko|;t$?XlpFLIweG)?Gq{n_jofZp
zV-pjrL{UH{H!{1C#jRb#jf?EL+{nsI*=!8i-N>OkIT<djFiyT_$bQC32Rg4CLRV`+
zH}bhb+1a}j^1D&M4FXHs%A|$Zr`8I)QN)d+ZWME)xEtm5HcPlsM(2`llwvN;THW!#
zD=^$B%T77gYkRbt{VFh5bR+F`?IL5~Y&5HJVtTV17B}j<(ZCI>8#Xs;xl!AV7&j`p
z@#UJSnj4ilnCez_qlz1`ZZ!IADR3m7N;h4$gz3(N%JFd=Ofm5sT-}Wt40bmX7_4ph
zg}{v@&emk5__WPR)nTsZ#)5t3x^6h!aIzC*72FWra4~yW-K<o%iI~=_v(F7bb3k{f
zlwu?|LhQ(_3aiQ*W~G>a%xP;kHibG`8`7@1(aMe1ZZviy|4VD#*)b_@(4lPNMpHMM
zah2w7Bu|ZrZEtJA*<`()OOw*|PnXcr4bqN}4Q<#T;Ko2V+Pdk>rPy|Ev}dz}8=c+g
z!rak~Ki%l$M$1iFhhOu{bXUF2-fnbb?#|jn_j@w*qNDRFfok>9{k{zSs1Ld`=X1m$
z=HaY^b$^H(Lv<eJ#*l*l`_w;z&5>@5(o07(Bvwc}&W-VIY;|KBoj!DG&?vRDZE$0f
z8<X9b=f-?Drf~2q)~T%1Sf{hjV5JVvbVD&}Q(`td$J$uuxG~oa0*y0T7r3!!hIyqM
ztK3+~F^gCivr@$+ZY<S#nH$TQSLlwdL)xxe5>~sh#*MW!qo&7Py=9{}0PEaXy(M8i
zjcShA5?N~&yP7~id$G}tO>ShmV{2T;zS)gMZEah4@BYeH^Dj5HyK&KtOK$9NW2YO3
z^sQ7oktWL@F}vLOn-0Vj^KRBXtb1AiVco~NpY;IiK~}0lSK7ne+7UO7(nWyzEbB3S
zE5{j5xN(x<l<uEqIKxV7fY6wnV?IwamLaZy_KxVX8&}-8<;HC{uF_zBuw3WT(Vr~W
z7`Dwa+;C&%*?3Af-B?%O`s=pkjvIH~_~^zbH}28pXpP~e8?Wg6-DJG)#sfDVa@|L6
zJZE^!N}GG)##82Jx>Mqi){PgOeUQFLxeu0gjkF(|Uc2#z&9|)o>GAIv-n;QZcPhoC
zo7U0x*^RH<0s4ILg|0AnEj7!TsXtjhSbn(ildfGJ)b`+)8xbB@J+OJO?VByqgU_Q(
z`8`PGL23`uc#zhEOde$R;13R<m<$Y2tm!;Ruls-AEk~spIs2`@Aqzt`53+lZmH9(8
zI|bxm&h0@S4{|b-nTuh?)AGIEmZJvqayFlCQa}L@3VPtaXei`CF%OD+P}qYa9{T%m
zs-hk|n^s~9eG59@7&Rxlga;)(sNg|G4@!AZ+JiD4z=I3Pi67o2O#GGn=|^H&56XG)
z)?_a4!9PC}SN}>r{44oga^l@z$(yDn8$5{iz~Vv6pNZMtCm202d0_T{c;U}PYKL^g
z%0!C)_A9wyM9P-C#uyJOc~IFyZ|ZFHt0+Bbw~7bVJcy$nzB0yow3ouFp8wr{9#7^<
zLv;^oc(CNUfqn$Hdr-5CsV0Xdc#z21AAPJz9*|O^Qfi?}rPw+i)b(Jf2g5vYc;NJ)
zuLu1+5Ihh)Xyid-k9Grq%Y%RiK^ig6dT2l*s#5ZL;M3X9Ko10zJP3JE--DG8t+EH_
zPbH{aOJTl$!9Y&f19@tZdhApC^xM5-lC^;c{a4r;dT?*MVfq?d6YhU!)~2k@JZR3)
zg0-y&$qXs1Em>*5T6xe~=Qa#uwx(^z(4Mt}UfR)vKXvZJaB@UM7v1UVK{uVdd(eZq
zr|$IfptsI_7%q*_ZZ+)BJcy>#NW%aRx_plq=)vH-+G$8>FqaNt4V^4JoDQM~Cp|dj
z!AK8Ad9Z@U&4bY%jPYQ$2Xj0a>%lk=Cevi_phZRNcn^AYwomk6f(Ks{t&th5bZ0gF
z`Eim5FV-bf(Nqtnc`%cv@n!3Dnl_2n86KSOY)|QI_ja}?UA2$9Y^92`JZQ==*MoT;
zET+lhLAbeXz6T3DSV+^}V5K!HC~}bpH!5n7^vpul>A3&AYhCKWG7qvCtUo&2>HnC^
zsn3IAK0datqO)vt%ux^i^<cFJYdnZ8YFf*tb9Br)nq#A5)_btQgN+_+Vt>B}n;Euy
zu)~8b%+$zM0-gV&*_F2{nLBl755q1G{$|*%`{fG8?$!AphJ7B4pOip#59t0u4-PRO
z)}15VF^XBz%yi6yec7Xr(}9>|$Wk=p2?lZ~dz#LsYlgEPoTFsSdxo>y<`~)~#Gm)z
zl?Sis%HY98_AhyG*@G)|Rcw}rYF+i<ng<U(c*LdGJ-Eq0MK>st{tkD|aLa?+9(34J
zh?vqH5AJfzJ=Xhr`~x~|=V}3ub?3PUPjr4tho1R&J1>}D>ZP=yH*~S`;5%InJTSD#
z_a7I1V|~Z^-h&SweDvUxUh4~8$(c*;G|_gyGP_b~eJ*rAk@P3+CS94m$mT_a7m;3M
z@j`iPO6Ao?EWH;rN~xLCc#+nNKbWIfDS*0~PUm|cjTtzes$^uy<V9xPc{tm!<A{M;
zzFEwiovY;bA_qfGy@gy}{BA9e7kRzN$9{e<3NZX0mV(U1y(r{GVekLOzlh#KQ7?)y
zEB|WaOsNECC#1_<+KVz?-0|YB7x1Di{W|8w5--YmQQnJbUQG9*f)^FNXzoP|FAQEp
zd*SuM=jD$uURb=aGMiY<tTnfoY+l58QJu4Nt;ka(p^_Jsy{Mu)@m|C-S7oi{#q$Hk
zIKA}3Z0#aL4rvW9?CdA7CVG*?P}2*C9$$;0wik66>gxWsnUPLr!3)s~m+pJKaO>>)
z6>%h^_C~_*MZk+kg(DR%3VP`yxhdq;{?jV4Gyig=tk=p|HI?c`*o%5z)MvA)7w?~&
z8+g&ki^g7DD`IKr#fqy*WR|UOo_pBP#EZBHGo_#TVrg^DxK`%sk;z`9crnO}!CtiV
zqLmkadeO;?)?T#nq63Gu)wkP@Vb^r+3(5A(CH}G8>0s*UMT5oKd+*L(bn#+<9^aLr
zyBFOU=wG_@12l#8;A~IUUS9NO=)+2-eHr?B(O-9_zK<BFbC-VFTkav89p%MPhGAX|
zr~Vf-1&3;{4kNr6smE_!pLetuV>mn3iwRy#WFF_mcs=GkFE}~Li^;mPVw-u27Y}lp
zr|M4oZ0TlD^~$E%Ud&;b>BTIDe;-8A5-xL@7qHG_ozGgqq5ULEX(4A9dGYS0_9N_4
zFP3?6#7jS~V>ulxFFno!TfJE6#VRk>d9mJ$)n2UO4y<K0G*4IIbn5aiwQum!zKXb*
zInM?!HgZt}udca?c{3|L80CO1avQN1yS>=s#dh}FRWk4NVh8gc{+)D}7k_&}{s>bf
zifWU8uNVJ#alng%95(ibwkX^_FZOeG?G>{rHWhW_5OwmFi8f7q*o#^-wI%-k_2QTp
z7rnT|!N<Kg?Zp}96Raoc1b=Be#rnI-SuZYd5mi6OaGu8Yu=ew1?Qt>mdojUfFRs$W
z_Tq{jnendnKH)lNZ?fL-qS+zC?_Id%#cehfbCGXNP4~RGPjlOcPCh*F;vt=GJ_LPu
z<i%q;J$>+Aj(Xz7Q@V)xP{fC4bWQN$rx(Axc;UrMI={U5;KeI1#%?xJ`p-*`<kR?#
z?!0Blv{);BM@@Yz|2y)d7oWN4lO9R8wtmt1s~6vxzw6EqFNREvqPh`2MEa1?hfF@~
z%O9J{hd&tFR?U#whcrH<^<h=Xgke?FS9zHrzp+L6kj{tn9Fu{SN~vP&su`#>vkzH(
z$n8TOAF^^ORm|Z-HXpKcmSQGHm`QW`kh-mjQZ66rmX9IG>q9;t3iwda2Qv56kIBz!
zi%21sUM7%9sgMtiUYe;hMSZwb+#KzL(FY+SrI-)JeJDZwe`PP}Lm407Ln$9h`w%W=
zZ}-Z+w3L10OD&c4p`s54ABfBOP~HbS7gg|KF9QWr6)L4FCfcJvVyr&c7|cFc7~Z9g
zA-`yCdyEg&e2DXbxDsn+9~`?As`wD=!=RdW@~g6+9FY>wP@9$f>ORz9wzDR%CbA~6
zQcO)BYUw;IBBc%u7q!ohlXl#PF%?Qt*zXN3ibx@L`QY|p$}i)ijYf|T*T<MBc^P~@
z_!-(wG~C{4pnIMrA3{FJJ~X^wq^#n@gnSm22F-`4-35=7i?8QH%t~{L4`Ul9)@N=&
z!9H9*X=vm_GNrkO#y&KmX`jm4<Eg2s4<$QUDK+z<Idco$F}+EoVEWp*r4OxqXzjyv
zSUUJX_lmS(Zp+$^wLNR=hKUr@kz+QA=9AgYoqg!ygU1iAA6<R)ut<#ZVYCn9(^l{9
zLmwad`p|>3<n;8Rm(INzeq1w>-;WNB4};n1&pN<|fea<48z_L%5FduKLp+pW7`67c
z9A!u7{zwKg$I$rrFwckiK3rUE80SOH9)>AC?SJ3nX-FA}C;Bi+=gB_p^BS2`eVE4P
zbRPnbEpvUC;loTHZuo7peA?q_GJi4=&-P)C57*L~$)PL(1uyVnp^sL{!$}_&`LNiB
z?LO^Y9Hk{bIRD7B)CZ}#sZ8eRWi(Om8J7ES_@ZTn4=d@s_F=UTn>l_B>qfoqS{iWX
z^}4fxEB<bI6Pp)urlaf@=B++#WB5ytzqY6J4j*><u#22}`6%)L7ya$SZiYR2<X#{C
zVcy5OU-x(1ilABteK@2$hkZE0e3bQH-9N@~ob|@x_)|WdX0GhV86VEl71)QzKAiL6
zybt$$pl4Ok%1#%k<s8x1>3HewT%uXce1-KY>ovW!&#Mg7pBtRL>BB9C+pKq3@3K-1
zjn#d637}*B&G`1bb}SzH{`X1Yi4RYG$m~ZJKc4yUoGycY9C~Pe;loQGe&{W{^5MM?
zAAESt&KuUZtpDjT?|fJv6-$j%`sl+q-T%b!ne~egUm55j+P@>e`|vBhwj)3F_+LIm
z__a9`$(o9lvMU!9Bu(Q-T0j0^Gm15%AL$s<vu0qW$Y0I1_)MG~nl5uz2KZ@tSY-1f
zyB|6H$jN4LKXUnzo4JS|c^If}0fxMO<kOw}ep+b4OhpCRDWv;_{n)=Io_tD0*(}CN
zYj%-S!jF=iEyY@zmHaY(?V}ArIX}w#Vb=W$3>8_a=M-RIj`qXIU}7boK2wld{IIfP
zV~x>EEBUd4KO0g^6+dGAcwJ08Kvn&y=0}_#@qSe2;5w`|{77Q3>n$V@=uESyCUY&;
z+Pc58W3jq^IQ($xj@u7`S=1dD!|V-4+WL*TWqf{Z8PaKfO!vd@N5GGuACe#A{g~iK
z$Pd|%Zhmz4L-E7+(A<`^kVW+)%-MQ=v}CC7M*}|^GAFY(Vr|UY#E+&7%~+eWrXLp7
zf+4ueKrN>*6FgjPByHtKYu#z%$K1XqGTX6p{*|RYLkHH5e*8(jU8n_g@}sj}s|!O{
zKiX`Mr=lKy^z@^TAAM<#4T~bD7YD4{Wb93|;*)`(pCA4G7{UGkKL+~oxr^4fK@20=
zAIv<2btvmF*5RyF_jeW2Q5-*-bqwoR)^V(~A!>P|ACvsBTsP!BW1P$m^=&G5V+v;t
z|5ypgoZ-hzKi2ti?o*Xne$4h`o*(o5Sjitr=)LG1zxK&=F6)3JsTcUM(2uo#9NVXT
zDp};mYA#yr$L7}Bd)g&_EM<py8N+hc71SofD!p{*4eh<|8qP*LliW^ouJfk#er%xA
zzeUVOKeqU>)sIb_C1*2b)5Z{NqbhU})BWv!>}2i}PTavU#p)$e*e*Z*)?;@2vB!_S
zoc)LOpdb76()|nvXnw*@6)Dk=!iU*BLXAYEP|IW<^W(T5KN{j^L!9vAB%Q4)Oe#+K
zaoUeJ65dKU<HuP)76-8;h;x3N_oGz+tpm8=$KW@H%mHKx;G!Rw{J8AL6+hn5nc~M)
zKd$-lz>kN1lrl$N_v4;EN;mvCm>7AJv$y=X&2WeHt{!tWBIW-7=RES`u^%t|c<ILz
zKc4#WoJ*hS@wARX#*x~e2xctT?pJxm{u@8u(gj418NdOh%4q9L|3@QZ)IOkn@Z%$0
zp9A<KfKN0hIXE(aFMfPwjtHPw=l}h7{EeOOe$eBIfB5lJZ}}JPZ$t{UM%_rMp?x$<
z70~8b>HyL(<nOB8#S|4lx&YD#kRgEI{akL=K96VQm=8|vBQvE;oXxPWMb-eaF*gk$
zdjL5Ch!3E80JPX(&HxZV*#L3{kUN0c<*a!EC=&p!GDM3D<qaTT0Qm#BRMPH~O$9iB
zVhRROD1gEN6w#d$3`J=l8H%&Mi%6m1lFX%8OS972N95nlmSN|8Q@H@j2Ve^zCZH|8
zR3U)q0F2BP1DMq{#=x3|-v0++=IWJirK9S!MAA9gWC_3;00FHi_**M+e6;{72T&z|
z*Z>-pv{wyi3oa4Re#Movzm`qZa$ErGeVGVq1Yi$94QNZ%B?OQdfDnKfKvDoT1Gr+f
zJ6UV7)(N0?0IQc|BENEpI9lMbZUBw|%GvDXJltVxTE#@*3cwveFaRk4ay-<Z5^+9e
zFDq5_2M{2CT*Bv%3Gc0TY9Yj%kONQxpn(3BGWN0AM@cci8xIFiFM#@7y+HsCIe2rs
z%8df3tC*Suu-$5JOrzAuI>Tnq9GOBbP*0lip{M!KJb)I=$-0vgKueupkBDp&K-&Pi
z2GK2ub~G9RTn*qF4P5{oY2*W#6TqJVbP8Zf0Pjqe&H;1@U<Az;sue)D0D1?|hX(v#
zb9b6)k<mQ^7|_wwgT}V3?REErUIEa3n0+3bN$0e$OfB@~cKXrWD`x6X!JHi!z#s++
zm|odJI+(LVSce8MOfMZCK=Wk=3Ye4MG%A3x0gMaa&;i3}4j2<aze0^{j)WyuF`hWT
zX+i*(ZDxw6@7X2>Fe!k^)aTu$$e~25|4j{GS^(3z`iuZ(1~58{wx`jx<A2A@;-W(x
z<K_l1FMxxzId<j;uq1$`0W9F`Le@pBi&?4qk-u%r0$3iv-vR6nU<I9kFO566bY%dm
zXi^2Rh63`KLw5~p^;(+)SjW7cbpz{0y>t`9;Nhk%3|n=78y!}ix6>KjTN|aF0nmze
zyI2X5_Zs#Dus47M9QjWGXS$nO^f!#|W!M+M*Gpzf`x)eohEj*L77hnsN@YFE@kjLb
zk23rlz%hp7x_=^olRBSbI8B>iI2WxQh5tTV&INFuUIN%$;W1s*<1aB>X1&6iFfiTq
z0B!_OGKf+^EWcsA8NllR-UM(<uXQ_sI|1C~>^;_JtoH+WpvOF9c*OcRfG4{DGyvC8
zBlYSzJ1<yYvc6)ixIi0$w*mYYK&BuvQ#V|;cL970;Cle?1NgvUA8Et_=zhoeiO2af
z>lfDTRZKMOAHEs}?$w(5L8n7dn_WKx7&Xa2=~n;|K|}`eIi2OVQ*Eg+{YyjYAkqYp
zHi$nsK0PZ{jABT~dc3SD14Bl=G~t4_J6VFr8$>=fvj&lkA-f)vgCQqtF4o*Z<k3sh
z>@1Z(hyp>BV5cB!G1fw?g;|TR7G<R^<{D@y9@PGSMEqMz<};TLqD&ChAZ$S(h_XRg
zIR4fwQ@J221W}Q*<%76<#L#k$)euB9J9MDC?l4vwWH^1mY7D{@#Pl%+N@j+FzYG(q
zYGW7^M5Q1a2hk*m%0W~KqHYk5AY!?ZAG-~8f~d+&!POYzf`|{II&+O6lJru05D7Xb
z(v>i$jjGgSr<U&5rkKCAYXaT3PwEUp2*MvkAczz53}O%-jwE)m;|`+LP6IvP=P$|R
z4Z;`1%LvPpJBgGH1|bDeFNnFz3=1xpLqUu)n8QKHK`237sG2~g8U*Q>Cl*qw(k5W5
z&+$~H0Yk$e8ZlJ(VkEO^5Y2-4Gl)(>G!LRh5YNh*ItH}|jwc7vp8J*(#BilZOB%E;
zwpOgISs(p0wP9$>+K#nUSUX`maK)Klwb^@QhM{(IYwS}~=ODV!-hH#3O=G5CZ>fl$
zHr1Vu4vqggOOGIW2GJ{s-a!lqVqg$`f{2MoEV<d%FNnTDWHeX3)!dfxiFJC7nEpY`
zHdk$V!8Ry}!9fh89tLqMd+d-Ph6Yh1OYE>}*1zsrNq0tDM+7l4h)F?A4q_CI)icZ3
zXzO_DN%fe~L5yJ-%Q`NILlv#xw;QNvLJ$--k+sW`MB@7i)}s3prv$a<zf+pZFfEAH
z1!E~YBZ!%F`baUfl;14sUJ!F=oN0Oov51P+80G~*PnAj%ZSy%x&VnF4<K9M)sfoFy
zV$B`0)=#i44PsdkGbHWp-0~n+1d&xjHVG?(SQW(cAYRZGgGl|vv^|I&L97X4Z4m3&
zA#-yO>zOyOZq)rv4E+Ziwgj;?h;2dq#SST%RFTr1*Or|@><Z#Z5QXYk{tjX{4M-4&
zgV+<qUYcok(>~Uu`%#qsp}{F?B6EKb2ZGpC+LX6Mqk}Zzf0`+c>|i?*#L*zm)8q`|
z-ym-PX}ftnLzk{*f@47(rwJd#N%qN6+r^z?KFxYY_s=q%WBt6(eldtkL0k#qDqR6+
zntd^Oid!FTG*Ju0lxWj?pCw!i;yUeP7sHJpZqnRfzRybLZH7BR+-10@`)eB79xy*-
zeWd%38E6wUEKhlGo&|B|W&&kja?vNc6bJDth}U#|C}DmR#DCN`=C?t59uNvmj(SfM
zpuYV>5Fe?9$x+0V4vmlMb}%(n`4Ys}Aks@XxZL=S4$2B6r9UJMzH|0R5I^bYN5%eP
zjgT~^6e%GUb86j5!;qGBV3yb@ZiL!NC&9ViKybWYas~-+{z}LwA(Mp663EHI&V#?~
zSJ&I9D7&OBYw4gW5^_k$DIu4H+!Cx3Y!dQF$Sa|wgi;cHoomV`p}@cC3p3{@W+1<y
zghDz`$Yw1f;rkC0rJ@pwF&EdJ5)AZwgwhhqNGL1e+)g7{J7g|HOdtJ7%Sk9Np#uB#
z|3PvpG8<T<S;;gqm{`rM773o)4X7waLM1-As!OQM5G$eeFzqu`6$$2k@wTs)w`ZcN
zN~p%AajaAtFVPdIwNFen*y)-xot+^;LLx(w9$8aDEeVHrX-jq0mQY9c>(aRO)gA#R
zNDw7$!HP!b4K4|82|XnAlt6dycqF7qXeq%f!6(5lAt0fVgvJtr65`Gp!xHLAkR*g8
z$P(ycs8TjdEP+Dp-?NUa7(**eQntQ?_t|3`NVIsPwfA%@aYG3;o7?(ES?N;QM52FO
zqV8SmAY)83+M>bQLP9dZ1zU5@wti%#)^-kxp@*%Iwvy02+DfSt4VQ#A652{=Ct=Td
zYez}DIER15c8ZQ^&tV-T>?~T9f~oXRnmqOF1f3;xp)s6c?MgAU>110su1MEgs@{CM
zm7HD@dP~@P(lS{>9|?UWjFvEJsjVN)VF?2z4AQ10j4$oqELIwgi|MS(W?2VIpc|Zq
zN*E?#2y^+zDmlX?TIR({uOK6+sVM7j9!U+-)ZJ{Ol{`tuNEj<=FEryMjF&J$!qaKi
zZg;J1KNT9Xs^COED3c^aUADURTC!D&nIeIn4?b1GGzsJ!cv&TV^Z4l!wpp}MnkiwH
zgxM12&^aa1P4bv4VV;DI5;jSgFQM>T+j0pj7#6TDl(2|lF)IZuk+4+fWfGFE+sUM~
zlFd~#_{B|>T`ge^J8LB@kJn<>(XhXXqqJVa2A!X+Ox`SEi-f%r{-Lp@uF{mCuUYEZ
z|B|p>!Y<MgWhUP??4X{EweFMvLsD~k%()?nVp^q+{#(NBvl{H7f%03I7tBchJ_-Bj
zVkO~_gaZ;P{-p(vU7Tc{o)q`fO6?rxO&pczOCIYHRx&UDvi&RJm;?e!w9%6iPEl6E
z6$z*55_HaXmQGkYH%A-Ju-4CRrrQb5OIZDv^`e9e5-3Y4qJ11Wm*`NoF%w*sQ2Uei
zZP+Ub*ChIz5^hMiNk>z{GYPk77wC*TXm}*y4xN3)OvHB?TrSf+E+XeX!vofbtb690
z9y2^)rI<w(?9U}EC}bvnN!M8BA;nF<otV?c*L=Ru*cw%9f0h3vypwQL#=kP&OZY%T
z9m0+fK1%pR*Rc>idf0HbjCJ`u>t_jHBz&bAOBdu2vV`!RMrN}iDui?){9yhm;g^Jn
z5F$fbQ7YEi?PH1Or?!%&4j~Pj#A!qLgBfv^D4U)+BWniM-wRJ=V*cG=))2CVP#}b;
z3a0EK<OpF<e{<dta)#h6U@zF;mOF%8Y?5C+ZFTzlK%Nj@El8w47vu|R|7h4^vgZ$>
z_sS@Og4_-@RVakQ%tcs>vK9-WI75jLz(A2D8A`F14xvm4be}5uq-EJG$4c4qdQrs?
z3?W2^V5IGa&?f{_2<8x)gwQkuO9<8w>V!}?1X~C(A=D0O?+R>95-TxOXRRDU6^2;W
zs;t#m<5=Tasp8sywO5K7oVBwiuqLu5g;0~B7Ar;8Y882CNf9-yeeLE5p<W1qh4Ic1
z1P%~Gko8Dc2yW`IsJ+B^Lhy#*3&GE&LDqmCSvE(cq;n{Q?RT`-6onmC_roE4&8Kyh
zQhnM=XKMp4Y8XNzJ*II8yYgr^?KBIac?hjTXcIz<5DGQ4w&IxN5Z?4Qri8S=H@4Jk
zowG(QY@^-J-!_DHY<3HwJ;Q_(+PxW+I)u=Xoj>(jokHl$+=aEP?q_PQHPt<Y9_;kg
z{ay^-$&r0S=oiA&5T=EocCz*lVRQ&%LKqOjK$?mn96M?l6~e74_Q70b2<y-gsGr01
z)`o{LLg$eT6Gmx+W9zJaO*%G&Db&3!cH(hdIzEI63=>%=g)o`nP`Pxmlm9oWmJ6w;
zhcJWvWg*NAfj+&?=Pb1|i(z&Mb985J2=kaT?El}o(+fDeFoZ=6i&>YjQVUBN_B6IG
z4`D?JD?=FOjoPS}t_oqb&TB$g%e;<tz3y*d$l!|F6vE~Zws3YU>%A(rlMhO7`yKgP
zX>M0byOX9w2$^JLmhpE8yXndkLgR;)Jt6E3;a&*$L-;3zeIZ;A;YJAiLpTt^r4TNM
za5t~*APsv6=R-Ke*~1~wySXDF91Y>$5T53-Q98kJjP*F{_yMWNKS>uN&YosH6T(@B
z!TGgX4pUmv3v~KtFGKJqI{qSW;z&MQ&3j4YT;brWtfTKHU870zKqdbsT?cA3Ah<)5
zggI+I+ijY$d2PS_yCKjf0{LwZLU<U$ix6IhK<g?$3gKA@u2m%-hwy~X+=bCkSzk;|
zMSLc`^*LvWv$`|B3gLAK??QOb=H!#<-h}X$&fjrG%$Z~VW0RJ}&O9jQ16}+>D3>YW
zTL_;Rh(CvLBCVBx(wC6-!SgF!hqu`1-5NRHX;kZIr9VUX6+(op-ET%IJwv37R1B$g
zKaGsEI{zUfia8x?j+5FwW|T6>$jFXlu~IgRjI1(R%V;Abn~dx-j516za>&Rjqm+!&
zGIGh-;ET;CBfpH?%z0##569+}(W*x*rAz+UUaeva$QY9$P1(qlf-)#esgO)R*2ET;
zQG|iGsElIF#aT<}eo2|WN!HpaBLgzZ$*38bQdUOMda;x?s0~;3Hd1MM85Lwylwpt&
zO+E3)&iIl#PKqrl#gbAsRaDq4!y>~i!z05g(}NOFQ${UWyZFb*NRW{zqmqouGOEak
zr9EwIj+1e$w`ue9glYZlRb^C@K|raFWR90nonvaqurrLCZaUe^@c5UJDkjNj|IU28
zL}b~ak*}|qUgb|X_R~~bhEs+hqmGPgca3#rIA{znE0c03>>88MzO7A^F=K(jC1Xu5
z1HqHT_^ozJ#_A2dGJG-`$!ILYFC!pB;cj2<XbQ?$G%CF~(ICm7Y>1UWmO)D(5+waJ
zsxs&+zOalkc4Ix(`m7CPG-QbSWu&4eGMdV0DP!MrV>20>>X@$lX;QC6HkZ*t#`p}@
zWEq_jOexGa`Ws%^Oq6ZKJ*nK)&}~k1TN&+StdOyic3(yZ8KY_PG>Pdb<4+lbWDKSj
zWOSC%O-6SaUHX{oPR!FqM%e+0U0Dazv;SkakFAxyhm4*a5ZS&mh4o_Y&Dw{R%)T=E
z>D*t&0G$WQphhTQh>W2!hRGN%<H<AaZSawWiC69MBV>$}F^acHVIxB^)PaI4j13}F
zZu{+HWQ>(Dj&@VVd>ISqq@a0KAa<6F*)k@|m?UE|9f+64T<?wK(+$8=WK5N{dxI%W
zlQCWA84NR7DR_>IxirUKYPG0(jsmfi=F#LS5Uch|zmN{4j3qLba{Tt|sTb=&%~H%V
z8Ovo1DG*Cd%|2ix=oy)^O2%p#+hy#Kk*<(ERhsBEGS<piCu6;g%`&#ozVEhepaaTB
zY9pP?87xyGQ^=&5KlF6sR@&3734h6Wm^ykJGlAyB6l`iT@04-6t#!YQ12T5eOMr}y
zbtCC(ipk@nc5{P!=sc=#-%Df8u#c6##31vaj6*UG%Q!+XKI*qg6=}QF$nSQJ(d4A*
zp`eq36EaTHIj*3*qOF~BiY`G4vMD$%<BW{6GW}YIM=~DEI4|RZjQez9`DwVwN^pbW
z5}g9NbA_%R%-3}1I>UU?dQ*39$+)fa9T|6ZzDGx2v{JJVbmt*mf-=XE^F+o|86Vhx
zrk4(VWqi*3LU&%uc*Xo$#v2)LnW<T7fzp2r?^xf<+N}s=ew6WvozJXk6?~ELmH8X%
zPZ{4Cey~!N-+S~+MuhUemLnNbv8Gm#hN1NeGX?*lAd0i;STiX|&p<^P7&0ojwnmGj
zl$o6@thv_3XIGFzK|uwD6y#KpOF?c0c@$inWV$id)aRq=Ko?V9&gNIpY`-xdGnLXE
zj0F^IPBv588ZZ}DwExkROdDHVK@o)>ac(WDXip_8#(t$T*0mL_B@~oYP)b2*DpJt>
zo}r8aC?KVKV5Z(MRg9`Y@Y^S-prE3HwhG!QFer#tpehI}Fe)%9a4VpvW|$RN6jW7E
zO~HQ^Vyp^c6jV}RQ?!?WSJx6(Ei+bDKw3pXtb(7Dtw*L<bFED{cgZ&Bh_zCm<TwTK
z3Ti8;qoBH?Jxe8t>(*ekvnH@ogNY2ZI#x~HsipkyX%|#lSAmOthoU{`#K|n^ks<><
z;i3*d{lTNatH4KNr9e^;;?jTudVolfnHJEdCtT388)OBeTNGA!e`^npq3=)V2`}`2
zrFshLD`-l`g?6x@t$~7jM=gz+8?rWH9dpz|rA?SmR*Y}1(8GPSt3(SLC}UbGO4fUr
z!qAenm4eo~--cmpY`Pw^&FvNK|8X4^47q9Rpnx0#`l0;WN?T_IT@;*Ca9%-I1>F=Z
zreHeI6h`w+!B_=774%XtQUSfX^;XbF!7v4_epTqJpr3+)3I-|Y&kmUb6hyQ#W_eaV
zwp>NZ4yKJN7|NwnJCrAfQc~S$(!v8P4A*OoP|zfxnWLybFHFHSWk%Di@W<0X8OKq~
zo45xB>{AqsS1>`rL<QI9B~DhfZ&W5JNSI=$EX8byOu6(XZmNQ53Z^TVp<vfH!vX~}
z70gnQa>_Da!E6O{6hwAPELEw&vB;FU3NADW7x~njcpmM`QwzcL2wTb)+d@VAo8cmA
zZJLQvr?U2?3YIC@LEBZZT)_$jTWB68+E>zHqM`zEn-r|(VPC6Y9m5)h?#GV%nknIO
z5%YQlm*W#Qu%D-O4Dm(<1D+%kydQ4etl(~B3LWCD3g}r#d0JYx(MjFX`j>*DJ(9L7
zc(l(jxt(>Fg1;3URq(HZ-E=IRF?$vKLz8N$agTy;8_fj!6zr!?E;Sxfu(e{`0R>NU
z#~h@++nuU;WK5JPk+O$5;0Wv8+X)nWj5~Hx!6^k<x+NW_R{;k4KB1j2<Ed_Orxl!0
z;Av^4k0)djoaOAd$dn6og;BJX#>=U=M7ycrfr5t$t|+iiGTl^gOTksTpmFxPf~-dj
zHxw+qXs?lCCf;7gd|Lr6r2ndI{Cx#?Xej8sV28{yjWZQ%tSz%YeVv&C9w~UNAgzi&
zR6J4evViTWf@cciir9#sD|kV#S#-JPqL&KZ{e}XzR|;M;ztNqybp6qJ?=j1J<`1kN
zSwFG<j`_+Qp=w*C^i9Ecc7Cvu^Haeu=ClR1fV76RksO>#MQXiP8iudyqM}r!Q;|nS
zUKQ!t%&Ny^V93atNkwLcEP837W2v(-XJ^f!`#DwQV$Q8QbPb`eL-VO9%1(aWFThZc
zwUCO!x?e<vt&rC9V(b)WEuo^Mic%^{tAHMvyd_<ydhumc{D!jZ(@v3DUe%^S1y+KJ
zDhw*3Rb)t4u=3FQ)+`0dG^?<vs9hg*>cdJKRS^!OUKlYdDydkbVyz1GvazzN-OSTo
zMHLmXDyphTHOZ8uqNa*!%#@8|h*wdap@#0;84_3%Rd}bHD40?$74=kYwX51H>Ztf!
z*<4qJkHZ|CCC8~kU>0@9#o$)q(H*afn|U%*u%GJ&Sc58_{xDLK7(%SF3Ptx-+EeCk
zPYe`RUqu5I4OQHFXK2YSG-5sCGBsAwM8){>=BBL8Sevtw*@8x1=M=h0Z>xz++PhXN
zT5}7;Z5Z0JwqvD5#yY6zsA6KQ{ZAErRP<HRNkwONy0CU<?aJCsMdR;g3htqzr;1)|
z_GTqBRklVCPBbLwr=q`#Q7T5O7@%UHiXkexPBj%tm6F)m7E#|cNCoL&)^0JTp<GG<
z!&D4cF+#;ib}qg&M_q}3Jk)$LYt=C-#;TaEVup%ww5KX2tC*r<0&QKzm%}+Gsi4*P
z_iU~bZ?E7jtF6rc{HKwAv!1GgbQ(>hsRn`xvdNb*cBYD1Di*0&tYWsR-KjWN#XJ>R
zuExw!vHe$t33toQXMcf;g(~9Gm%n$u#(P^8e~rc)*H&!(y4(^KOI55;v691<saURJ
zb5a`9!=}|!rSwW$K2L0oRVuQ+EKmJet)fQB3S?6IL%LL1r((T|f?*U2V}pu~Dz2%x
zPW`7ARGg$6ELCh#u~o%CD)y<^rlRHTh`&{I*qHV&>Yl2-DJmQhy+cL0BL+%4RqWEa
z*c0n+6?;@%E@S$A&+1-Pd$_=;h7I<sIH2NR6~|N@RPkv=yrH#~7A88R;xL__G$4uQ
znXRpHkIY9^xD#W;4^8C6MnuzdNsg;Hq2f`$sF6LawKCgY&NZA?afYt#bT#N?Jxg6}
zYdcT1Dp-v-4d+ylo@ipFSA+{xv5EB}?QgLJ#jicI;xZlg%a$uDt};|@V5RI0I(_Ik
zs`yHiU&U?OmWszJ?x@<UKke^*6?av7Ad5L=pZOjgxX<b7am){Brgbqq<N=|DnCQ<h
zPv~q?@m9ru^jfgm@JvN$lHs+A=bU}P`clO!I@TX76hJ9&BWvmg);Dzhd1lDd#7fP+
zQ}L1J?Oa2d&4%|XKByp|lqw?n6YWkN`_z4g&oq)9tUKl!zNz?5FFj#Ih4DkhPr5E0
zG^Gk-$kdqaD~!LW*~X@bFlfXGBEu*-&*0B!%D%vmI*c@7qz&Wj_c$u5JT~FL_V{#R
zqz|K9W?SwsGK6ugMlAggC}&tZ;u*up6h>~roH>jvVeCzxkd-xi7!_ho*~0klwF-@_
z<mX`j^@JFzn~UbyKEt3w+IOdU!pIv&zA*CBrInul71rKDxaw+QRoYnTvt;2gii8m#
zM)fd?hEXgGa~PH|iic5x`%pRzd*lB-Q>i37rNUS-TKihKOc-FNY#0xhX>0yaD#uQF
z>LCL;6~izvN9&G}!Ne+?(^+-DY8W=^Cub{#Q8|n%%<fQzScc-fx;wQQo}+E68k=!p
zJn#I!Z+&Zo;SIwV20fJA9!5eKiD5MTVMq!?<Y1~*lc5%C?J(*v)Ma(BI#~r)iZ5b`
zbcNv#<DgyJiiiEP{B%@*7y-_P!vDLU{D8ewFbs*!idnR8?<vWgRan)qc6%qixvC#V
zgD{TN!_j(Z7)GNoE`@P9jK*O!31f5^W2on0Gz(*R7?1ysZ5~F8FuH`%HH_pi%IA*l
z7{=8?mXt7Ba<)|%?ZYVb%iNl?ZCKl~QgAy4@uH<e81Md%r?Y@=8~M6;uqiV$-!`oi
zLsCrIB;_scmMvSdWRNYV%*?#qEi*H7yJco(W@cvmo?id@&Y5%1Z|=MqjYgxf;|SuD
z`khbgQ7tjYJX;4lI@;06j>+i~C~LkETWzjs_L!uucJ#KRj~(6Y=uQWvXhIK)3{!jA
zL8U!uzLidB8K!>96#s2)R9`##*)fPt0oswz*8X;g6OslJuTC656aJQofSid=+Ymce
zv`B98h~A2By0s>Ds2ya||JjGzQFnpOaUpJm9e-@Ijifo&)6#L3X|x^x&<WDRbjFT<
z?HI#jc+8Hmc8s%Q4~6|{9&g74JJ#B<j#{&0k{$1#CNHt0|DuwU?O1F_jc3VI?3ilD
zG&`o-v4{gGW`-Se4W4PoEausUGslk4-OUs>kDd9f3yji*c2pfAQfZhJM@p$wRvT?-
zDF-ZLUCz3Kb)_Av7$|ZzouSNw=hUF=dOJ4QvBQp?cF;yQa?vI`&L>!?^gqsSX5GR{
z=2nJntlN1{$)x`5;$H1$pE@)CttI2L<h^$6quI-2b%2!ytxw)62bm8U&S8cltVdaM
zf7I`$Kh9%*g7qZpDLYOxQ0XHj>Z~0HtHht9$vjTK|M9#X7nlcMDNEVQG)rl15l~dX
zRXeWH*=pB+q`Gd$4Lk1Hao-Mlrgx56NjL4te%o@(j@x$JVZO`i%4Q{BNwQuJOL;IN
z=>hfaN%UhnQ?4aFq*KF=pvOr}MdUx>(x<HN%(myW4%_k4j#qYM6_8E9YdhZ1s`$|s
zCE%@{Zj`fy33`^&I~q4TKG^Y*147vUMALw?Uud;w_{#c?^*bxo9o$rJ;inzH45ww~
z4CI6gc)q|yKq;IXj1UlMY%vX;{*6+oD6N2W0@53PCIK0kGa62r!*LXrSwI%U+14U1
zJ9AzE?e1H17=BKMTmo|cc35dczx$9+Kz;!|t|d~o0GkB`6f#N+3$UBbR8&kraRF@v
zv=vZ7KuG~j1pFzWlz`F#DhQ}300PPgunMpVC@UaZfLVY=Ksf>3&zUL33Men2QPm_9
zYYc0x4JFB;(()%_NhzN6cn|TnA15GQK)3U0Yi=@88u>A~l7Pwr>I$eQpo)O10;&n9
zE+BzhOB6scjbBxwHphmkq|3t817YgXI${zBB(tUnsKHQ^mBMN<)Ml;2nsZvx9}Eoy
zG!#%@K=S)afyc2Aib<r61dujn^LCiJ`9v(~Ujmv6kOVZyZ)ql=Id$^CSV6$#Vl`T@
zwqk85pxKJV#<?x6X?O+njjcgp6eGCe90D@-GdbxaK)_>9eCc8}D6HEu6E*1KW@P~i
zgIj<{fLDNzvq1qWLx7dy{S48)V~I6791O&%0w_z+PC$DB3j{0_&_O^)0Ye206VORO
zX8}D0^b*iTz_Tzb-H%V&mAM;hcUCfcFigLmmbf?b0M<UVUq(zn0sWbG#_O#OWFEvi
z*oYZI6RDTJmEr7+6flZm1Z$t4u~hW8fT;rBRkaY07VwXNe+7&YFjl}M4jachfpt9V
z*$T;z@0unu`wk~k#mUUidOD{N^mLLljh*QNW(b%mV3vTnzhlCzvl-l`WD1)j(0iz@
z1oPOO&q|GxvxtfWY!$Fgz!CvV1*{RUR=_d=%c+N*l2!>=K^?wiTPfgCr=-nel2^qf
z(ldzYx7MjOY^w#liLec>VOu9)y@1UE=s7|slWiLWY!t9b!1f2N-j7NCPtbpxrJrQa
zne+z`6&RaL<`x0p!c>Co0(J=4Ct$yTodR|VcsV3xkDx#7Xt#hPW0Je{$xA;r(qoax
z-^-=9$0Sqf0RabT8pqm#ajkoHN}~Q$T^e^pz)@O)97ylLF#*Q~oE30RzzISBB6?cD
z838A$aoVqj=2kyLe(S81(BD8Y=LK94a9O|=0T;Q}CD#9sr(g=ZD&PfmM!+>LCFeTB
z4FNY9ZV9+8;12Uc8a)AbneVaQXMMm*b^BJ!_}Jhl3|nLMtvscJ#o6aZ>DYH63m=qv
zMI%qkK79%ZSl3Yh61%L6uJ3461$-CqUcd*g@=?HNhEJ@Id+N=8F<Se|P@kXa@k2nU
zLmwqdKiU5!&|ka%b25gjVa(yI5r!Yhkj8;1hO~yixNc|$2QoTP(Sb@1WMV(71KAwN
z>_8R=eh(vUiy*rLIUFeLKoJLWa%3K(om>pL9r`c5?!uP5oXzLJ@gjQ1@;gv~or0`|
zSOs(X-+NKi0h0qOYU_797IUCDmlBt7pd@oC!zt|m94O;JS;HyE5bdCaS|2e=<sHcP
zQ-2W;r5G-ab---ITO6=5+gRgR<5?@PQmr;=LMuB^#X(;i^v+jxAi;rTqjYYMw21~+
zbD+8d$}|0WHA!rC7@sc1fxNr*Z!$F;*!L-lQY|B%W^!Ez>NzmRiLp-n;Xr+A!HFa%
z8aU9<f$<JZaOmG)8#&O-f#wc0rb9Ez)Wm4vPY3>DUbQi?sYCz8wZN&w77ny@psNGj
z9BAc0YX|%e1RStCAUGgX4;^qg;B-K8z(wZV7}0??>1+g)2&m{clRqTI=5|2k0Ade2
zUI$&BZu2o0TA1>?dg9@Tsf7|W2Z9a|q_VbgAZbMsW!rML9cz2m4y;tv(Sc3|cXptQ
z!PH=P2YNU#+<_4e^mL#XZP9^W6Jsg$cA$>~eK~9WS)iW-{W%SEV1NUMx|k`3w7{^m
z1cNwiFl*bjdi9|W4C8oWsz^GL^=}78GmK&l6-xiZFwTK(88cDXzufp3HpjBc<4gW-
zVeKIEL@FI;+Ty?@2PQi(h4#gPMGh=>V44GT)4@zSplNO8!qw>x%y58!-s_$DT*@pO
zQU~7dNtr|YWwOnsX?7--vh(P?^CivaBeH;Xp>cF>%@14Rz*0I{99ZeVGWM6VUK<%j
zNAM2oDt0!ru6AIJ1F=hLQ0ZEB2-Y#IcVGj<M%GQN|FKfcXKrfxg}AK_WKfc}Ik4S<
z9S(Y~3tl<!+JRjT>~`R`19u$Q<G@}zWFL}`(VVB<+!;%}XO)d$KaImE%K--tvVVy6
zFzXRkiaAQZ%5JXlyVh|BPB?Iq+FWIObJBFmfz!-q9Js=8)`4>j=N-7jaDkQLFFNpJ
zQwqUl!)cb3j<Q!BxaPohHg7m^%P76c9iRY8#CILI=fDF89&*61fu{Qolz(fZ<X&ZK
zy3+QDM)I`|lpZ_qgjPc4rw%-GfXwHt1TPp~I&k5niL!6#K-1#sL{2A8T{gdS;JpL1
zcQF;?NIy96kv<0(+det)*?}+2*428izS4YiAjFApMxVbk{BYo>;ZV;*od|Oxy%QOn
z`nZKV5ye0p;Y6gtX`K2vlbP0V(lJmA84V{3LnbFO8xECbH8>kXcBkH3YA2Tyxt;iH
zqAA{qWs7ZjoG9W1?G$xBuM?#CoXF2mfR&trP84D;%&NS$ky(_RE#^dVCrUU`lCx&k
zQcjd-DD4Co%CJVWmUZI%TfHZg%5j4PCN7F$rEIK|9%x+ocZ`K%*tZ#_aZc3b7AiPV
z(TQr|D)r|<!Nf{VRCa=Z4p0?_s!k*@B(hRbH7B}h$ppzxq&U&ui4IQvBcp~B^=Nr_
zq9$i+u^!77THA>_v^mcHfc|q$kuM?jY4LZ$!)8M#8adILxiRZstWBKwlc9OIO0^zd
zk80|KI5D=_Z<Ce$7EZJ@xD~@Jca+@;f!RS-7@S5-$DFp7M<XQ8x>#i=6b82u(>x~B
z>x9n<m7M^qpY?Y;8gtNzR43Xv(bh>fO(WklOQVBkQ^n*}xvCH^t!yLh=tL(D9>v<(
ziSADHVD7@&m9-n|^ITy)8HTg=a-z2reVF^P(*E{k*z_!<zY_zT7-;x|83wTq9~3gg
z@P{%CqvM!M|F$rKvm;qkt@@4me>0C}rR+aW{A=*@z9HkB81F<25iLbbaMDjn$Sfj@
zh)GUNcH)B*ADx)u#8fACIkB57PGg<x#B?W47l@zXM6Zt~N;939<>Y@EIPpC>eh%xx
z?bgT5?en<Gd?yw#T)Pxrsheq`6N{W!?8Fi$mO8QCi4AndIkDV{RZgsSf?`%U(f7G2
z)9$4E<4h~*tn6n#<d0qB#9AlTaX_a@ma?bK6q$azu2=7vH#)J&iLErYYs~+#Zf5;h
z+Dy(C=CHdK;!9~_w$YiG-?rU}9Sp=f>4be8MzF_;y-vJv;-wS&xZ62SS#CSApZS0j
z2c0<N#9=yHow(q{5hsp1G3l}89P2SB&M+KjJ;8dCm10iO&@t14f+>5JxmIHvak-4<
zF(XYEow!72V(qw_PW{hYg3Fw}!g`gJ%xetSow&g;p}QVQ>6R1n4hz8@C#c(ZS?@V<
zpH6dH1SXlEvqMD>op@yMV<(;%{M3nO%vt7}C~V*EMABDIymsOpkH8z&x2#Q`dueL*
zs}e;@={=k43Z?tx#AjN=MbztO`r^b_C(?@gV)A88>^CRUFn@P~vOidVvi@QvGep#j
zLRrID!&xIlL^8bIsW(LpMv2HU?0?^u(}}3aSACP8fj5y+L?#Au%D)N8Dk7T*iwLWT
z>>_fA`pqv-Vr)4@JoH-fh{!7<m#9DFDz^w%EnCD;%ltZ)d?NCTC@G?phyo&ALyp2C
ziijx0{H1yP<y)2og{=fdMMUS!P+UX_5yeET+-)9y$1;3)5+!;DY`bukw6uuwIWt&t
zW+)?KpFbHQcC1P!|Klx7S*k9AfKoZ?TWn%^5hf9J3);wu5fRI!W+UcYbb6bJI0~R~
z77;J%|KUmzQA0!p8VV7WL{t{_OAeAmbZl>%-#57m$5draV5KUFBB~i&of_P&|C=nC
z9eRldF{PTEttEm2emk{A)M2J~ZIJVai25RKTu%{-nsdP1KtwYdVVE0=XheMw(S);2
zS^pIAN!7#t;;bGv!7(CSC1`FqwQfYT646@3SrO+%*hL5;=7@AxH5?+GBK{HauLx0u
zBx1{L(<nM*B4iP>=f(CFp@?vc=q92&J01}#gO`<Jd?LNaDuTc-A|OID{I(215vdGq
z44*F6YA2$-hz{&@W$kE`b`sIq;4ZZ9Rm{{frQe(AA<}EJ^lee<DWVrg_Gay4)S`fX
zBKnIMz`;XA3>7iZC>_Kwn3W<|jxY}s_5a~MYGxfSV)(gON+U#!G<eK|Jb#Ob7!*&}
zO^v2nk+#O`<Hm?+cRF^eh-o6mGLI86p4NY6Dw-%Fah{oA5<8Pc+}@Blg_WRIk;+sw
zUBoOJ-Uj9w95a)KQPi)GqN3UC)cUHoFi*sM5r;&2QybdkwvJ7oxIn~05sO4D7O|bC
zy@(|umeO8`STACkh~*+yi&!IK1)V!0?q6)RisHl7gl&#>8{&F(Ncr}}S}(yyX|0Is
zKW&t~R@IjNUY-piHj3Cx(?G-~5n-Wm2O1RqPXq<LQj)`uSzlGPwGE4-%agX!;maj$
z6G3LF<w>MFMeGu>mrh0zTf^1ev@cEKCUz;QElu7d;?HlbW-m>?|K4{J*e~J$jpWkg
z)_s#G9i(X)u2R?$5l2Ow)(6>gOho1`Nt8~}Q-BOUA>t$jRE)b<JR>QUz6e*((3GBP
z%XlV*^t^}*B5sPfCE}v^ziZ&HFkBLGnPJ(@)^s)dRipG8!*$jhwBT&guYSKR;*N-y
zY~E#kDB_Wbd(8Jm{pp<)_JFf#BUIwYBA#)U_=$+8A_krG5R*P<{{`!B^OcC#v^=u&
zmesOUzsCNZi1(cRK#McON7hfQpIMi`j-p6PUpf1Y^*d`!nu5PXgh=%69^`T(RKn{0
zro1lXb0JJZxP%A^krJ9n_)|g}2~iUAODG^At%P(EvP;MzA-#kQ60%DAr%Xmxf-Dj;
z8JwA+Vk!N@qS}p+Y@BUSM$hJykV`@yBl1M;w7CrqkBiL9+~ce%pM>*SW7P5Hf)WZz
zs3d`&r$>8KSkey}BovWQR6;Qc#U+$vll&V$E0tjWZ=5~?rI<?_rQHg~l#x(YLbQZ(
z5-LboUMQ)&1d{}tL=THL$4H2kU}cWKWHC$ha2q_IXkN9#Oj%k7isWuh+3}0aLtoh9
zB*b&+?Uu=lTE<tDFyToYHTeE%TxAJWBvh4<AR$>oii8GbZHW@9Nf^>8zV9nr=U(ZG
z9gM5a*(4fOUkdp(r2qYv(ojN8=30hRTS6V?x~%nB|6r}p+JJS_+S2p~IHg7s8nZ)8
zjsGQ~sf18E#4a?G&|Ja>2^%G}kkC@XSPA1Kw35(TLT?FuB-p90gf0@gN^o#HK?$i6
zoJO0X1WAI6vofnsf?|}qC3u*<hGVrys?2`Y0IOz{hGb1o{T!Y<EomDz+p@M}ZO__)
zwIgdM37r{kRMRVVlh9p4PYJ!K=hb!R*!-{_96&ducQ~mxyD-L9HZoIR3H>CDlJK{L
z{v0qs!axarYx-`X=?2j*w=YdViK-0dfFTlwG7OV2VyBh-;hY`8I+8Vg^}?fRa8||r
zBjH~O`&P$oJ7OzDr#zSDQ%h4fsN#5<Arcl#SR!Gfgh>+SNtiETvV=jo(@x>wTJyuw
zUoSnCd76YnKPpXUrs^{!%w(R$I-7NlQ9765&FZ)X3=3H!8)i7trYO~2B!TY7pS(0~
zsf1-*w1y_XgcZ!IC9IUNig`>EeE<j6Pa$=kj3d4Lcj2{Mv`)f$3C+&gDnzK{XSmaP
z6P>LRj!8H!VY7rS5?(GXu#bbcO4uo3mxOH+wo7>bx)4>Nv_rx{PZGgy340{$r8Z9`
zQ+D)`8e_urVW&hRwqL>lilh<X){aOxEa6F?yfc;-_#N}Zn{t$kC@U?DJ0anuglBX<
zN;oCqw1j&S?n^ksF_&1+8u8~C&P%vpI2S2W(+BFZ;as5>&YP~XUgHCCo%x1@n-Xr(
z5+Q*umcGO0druq%-(`OGx)SjN2@kocClVgfQqV_l{4qP-((6B;9{3~WDQDl8*RwB}
zzexBh;iZIEG%-%-^Y%6SZ&=^5zGHpQ`hoQ$>nB#K@|o(^(cAnc;k$%ihW|stPg=V3
z=*`a0r5{;;Y&>a*3-vDPS^70H+=U1iLROT!eqDbiFqx4qq;Vn2r7ulsUC7Lkj+LDB
zE@W^aqf5U=owB5vxQMPsrfe1$vbvCso$M~;GHT^u$Z168X2`?(yPf<l6mVgnj6pIA
zx=_f4$u3NBp|A@@TnM_5>OxT$in&n7g}N>jccFv}@h((wp`;6?T(G!cb)mEiaKYq4
zj7$HhD&xYMZ?R>mogVrpQM3#Hem0kLp*+KchW5;M`_%E~^99XEFI!qKH^sV8rkc&{
z!ZmYVf)#s1CpbcFR6UD1jvK7K$GWv#Xhjz)xsdEaiVJi<S7k1$?m`t8sxmiC2~A)~
zWYs?t3EKbfFR3IpTl@^E!BESE8xH;d0yXJaoH5->=I1}SF#eZ*TY5bg{&1lwE#n+q
z--RYFEUpvPz(o(+K_i#`Os&9D(}P~-DHd~M7wTt;q4&;E#Xnv6i>nY9`54mNg%&j6
zE;w9hY4~=AR;;aEXdI#DOtw<|DO*M-o2m<b7epgoa>2zc8;-)@cEQ8oW%U`Qfx@8y
z<`?(%eRt2xt8rG@Xl~;|TNnDfFu;X&F0^-{hYLMj=)eJ8T<GdTN9Im0bY_s+Ry>*-
zKB2Xxn+uvFw0u9k&F)-8(E6i3T)kZA?Lr?OmKXdg$-XXh+nO;pV|YIo7F5#rZrsq&
zfi5gRp^x)Wu0Du$unR+IQhhZQ;(rJZb78m(BU~8Cr4w04xiFT2>i+G*XoLTu8O1!t
zaE8{`|9>}*v*TTuz>wjY-bqT6T*wlp_kXGj(`YDUw39L2g&8iqcHxZ+GhLYF!af)F
zyD-~@IWDYnVKp~0mpbpl3K!;ac0MaLwZMgi%!>?XF~brUmNG0e{OY@-R??{&A6c}B
z{*o+8>-y?9gRkL$9WJajBG<XF-rx-`Y;<AM?=0(f7dA6&Vcq(>sIzGseZ3r^|C5f=
zq1&N54SyHIZq_|6d^{bsm-an}ev|tF7Y@2`*`;6Rafl{H2g?~3&N3W!p?ZGn5$2<;
z$5@ZEo?t!c!YPK+tW-U3OzCsX=UM4~4KgWRaN#05myAfy#N1b0xavZ`@8)YRJYu-c
zdV`hxn=ag9zRh}v^)Bl@7w$7WaN!|C!}%tvLg{pz`7t|BTsZzK_9-*@&lsM&@WOCj
zGQ4u({Hfd&@YaQQw3x_9kn!Gy4=!Yqky*w^7e3LKIvL?IKD+S6g>No=rxmZcMeMGR
z_E#4UoilG)5%a@^pDz4zp;~{-@-Q3S9h2us?3rGs5E+58iO<!9P#N*-k_q-)kByKK
zB_pkjNEyAS$J2U}hQgMbzGby;IuVsl#^y3eFQaO**>pEHgRHMPlrl27tJ$*1bpIyG
z%7~VcO-6PZC1jM8kwZpK8Pt9u8MUXHa>;N-#T1nFl{q(S9vOKV^0AVipP>Njiy^t`
z1>!GjTGB0zEi9vmjHhc&MP<CqU@OL2oRxNm9-T*Z>3w{qWR#Wx+WG<giGpQh^e~x!
zbJf!sXk^OCh@%~sQC@~gMvM&YtG*`Ct+lZ-%rY!8gt759Rx2xI={DQ%Z!GCT%oSu*
zlu?CtaFeN$j1^i!vrn;=WqciOdaxk&C}*i?!Y*r~jA}Au8H$YRGLmGplF?d5vWyfN
z4P-Qw>7sGVWl3N8Ysjd{yIhNU)!ag<HbWg5bs6fh{$Z5Xr~bdu!y3^DRMD4_mNFW1
z3r$%6Wc`b^DJ#V^lhNGZ7BV^>({I`uQz-2FBdeYERE9%_Q^x*B`he{3Y|3-dEXt7R
zsL43cCMq>Tr6211Z_s}jq&Iz=dYU#oGmSrGa?9}WZ1K`y$_UEvaaLueS>*o>)bi|D
z%BIQ~b~LIDoAfF-a_Eh3r0r#NkkOrbqQrNkgBTV=&#CK1Q~j~IlZ?&`#9d@`W#0e8
zN?Cdp@A_mby`jE`jGi)j(FB&!M@He*vHfMN`fBMbqo0g&V@$+frNoQtEyJ!^hzH2n
z)iRDA<~dl#5Ly4v>_`Pesc$mUEA)R%43{xN#t|7uWsH=OJ4ez4853oUlJPfZN6Q#1
zW1NhCWc({*44dzo)fg6`QZNDOcs36e&p<pgLfzZlGD*f#8Ovl$mN7-fR2kD`%$6~S
z)_)mmBGi`=>P#7zBGef)KWipYb`~9F_9;s|m(He@Df8)Uja27RZxd|<3uG*0f02wO
z42xMQl1fR3FOZkhjFqu(ee6ydD`{|Ob28S-7=7DXzHAj!n)uZ+=vjzmN5|2dcGt<+
z&cm`^)?dQAfxehsFcWN)v56hx|7c}k-XdcwP4&}x$lPX>((6#^ksv$hU^#6BwB21Y
zc5?^zu<m8u$GZPFua7;zaFF$ojKhY%p>O;#nJ(bRdl?^OoRD!+##I^DWSrtzeL==W
znu?1|r)8XBu)H&!m2pnSj(<(1Pnpishitye#1}JKFUh#VwJuYwj8;mMe&`ds@vGd|
zW!&JR=Q3`}$k$OnLvPEt#pd8l`ssFunc%LBdou2G_JNE?3=dfyCOwkUW9rXeQBP?3
zV*eQ{`C%EtUogLv>Fv7u$K@-|zGi(R<1NEGRw}(1ANf(nCt9c#eF^<6<BN<RGA6Bz
z{no?smBYT#lDk0v;_=<6wf%L-PmcM;8lvd&p{xX93c{Hq3@1`S8iS)02;X8U?9X<V
zbP7nfzipmTK_*3iS{*%qAhUuj3i2x`K(%_AvMT8P-I9wrn}X~N<mX_>so-GyWXk4N
zuz$JPJl~W@L0$y}`B<-{ScWL(f(i;LNTE$AD6F7}f=UW1D=4a<n1a#@py)pa7H2J~
zpoF47rsnJwYnyuUr6?>?rF8#pav23>6~rspULYY_L7=NG`vI>>!Te0|<rI`x@VsCG
zrOJ`&@XodvZY`G8%xYn^DzGuo7ULAuIa-6@L*4ia3Mz67RGk`0TR5SvC#i~pstOVm
zyxW(UsDPZ2nc|77DfoL&I)dtKCUHPAGnq9N)Kbt!L0bj2X%jTg3jU%}1@#o{>mT1x
z!ROKme<-N0paJ#ghHYho_~<L%`nTgw=1-=gMhY6U-}bh(iGnvDt!rB+kv3J(Oo5;F
zUD021+FXIEU_<-37BpfCmLRE>0-1rhHG`dwxB>^WQ-NfZiVXCkQWt~z!AeyWW;d&c
z)yqmnJ~|L9Oa!-YS*fc9Yg#k~K?SJ_a$k+3q7%~+JGV}{e>*OIpS7KW_6mm3@~fbO
zf{rwc6!cNhNkL}?T@}<^Vy0K{bfE+KL2r$Cu)Rh%1>F_&Q0M|VTTcbOIE<KrYaKKF
zhTK0Z^;Ix{=F&-9Kic%qN;D4r$ti0g9>_iw4N|bXZpvWJHgnj9DY#ZQg~oOSeF`Yp
zR3mZT>~!Q%qR}2jM^nLQ1^+0xr{KPVe`!vJ#Vk><RKXYpV-<{3FkZnl1=AHwP%u%!
z6dLM*@skwL+a4nw$&=}rCfm}EO{Oa_=>efrxs+b)I4ayWL%~c1bLfyM`sJ6ixXRTb
zDO7PbGu3KksWMN|FTz};fOtOZ0tE{dI6KCZLl<Y#m6nUS1-jC5nS$jCb}HDVV1<H}
zv{ST(C|IRnwSsjD)+<;;r)S!7Ygy?ne)Q}wQgSvZ*ht6jXE{<bZ7XBQr|f10TNDs)
zSFn|VcpFESTbWF}#aDiZ;m=!HVYh-k3XUl_u3#@sY}$~5LkhfMF;|Xy_tU&BopOM6
z>E%`{awm~_SOKLYY<4$QA?K(9Qi@!(IrfAC(i^NNSx>Q^R&a*ltb%h2&MUZ};3_*8
zSue9v-AfD~3r1csobAg?UNiW*0xF^~N;ehUGW^>L?l9k_+5RM&s!+fK1rHUZ&0IN~
z8;=x>dJ{*FKYFg<G4m7Fr>xId>3?|?^FqN(1+NsmrlUzSS;4kG=De3JZxp<xRYJjg
znkNdrDEOeDd8A6|qoRK#5qwhcG%k)Hd!S<S=Gc*q;!c){tKdxjPSf~k>@Ni&ZXJGb
z_9wSY*-$sa*w5ldXOktIHOh?$hDbN6XR=aC<3{VXW`eYCq~oGXJ#7@9o;iaX85uIM
zlAqa)szu`ovbr&`pY42q8)<>wmh5hj=3s4ZGUs+9j~i_~XzM{<H}aA1K|v4l6Sy(V
zjp1$-bfb_P9o^{UMqxLKxKV`~cjNqLQ&Bfcxl!7U%rj$(xzVkpxwso8$ZV2AT#_AP
zxKYN9lG`oi-JqqQtQ)j2Ml%<xnY$ck>DvyOCO2Z-h;_s4roWvFS9IglsyK@qHaFtj
zpf{*mDR{nZdR5y}S79oOccTJ3#FWUd<VIyTwsO&mTOKm^u1-pDqk$U@-AHt!ni~s-
z*{Zvd<VLa^-;X6zws)vGh5AEV-(jiY#>df?nr^H)8@K#{<yEM;wi|WasOv^OH~w&=
zK8<#@WGbRszhg)v516S|BR3km(TWb18%^AxmjhC2&hV!je;H0wH<~eb>lZ}<E!=47
z#?j}Y#PknkQo9?18|~fno~*>wPgaK;PB%n1mS2gZH%iz1FHv&C<%aCWfh%#>1)Jke
zT;t><V#N)&8y@z(ZfFcXRw`8){B8scCr{^+LFQD}Hmq%p(sm60y|+@`4$L{L>c2~L
zcB6+IJ>B}(o-V9i=~y##XFWPae>Pe#H+pk+kQ;p%`m^?B?Z=uszOYnX|E@K_je#`V
zr<5e_J2z@Dml6+Q7|Ke`j&Nh78!z2><;EyC{&r)s8&ljE?Z)<M)-i63b>km5c3iSh
z`j=r!@pP9<TgK6e;0D2XHzv42w=5AK%WNf`<i@2l=9ny%iKn_T&5cD{EqC0Q?#2wN
z;>MHHrkQTca$_~k3O8m`A5yHVXax4?_n*#jV=i}Zo*VONb{Rci%CL}i5$j?%mKdcY
zuSQYbWpqs0Sz-7q8FGILp&uk)jxeuvW1SmEXs(`*-96m2-i?iJY;t3R8<ZV?JC>fy
z{hu38E#~KMW1p6>Y<6P{&3|rW7sW7aqrqX=!Mc-`ww~NObdSLY+}O*!k9EJ{gD<!`
z=*A&-4jcaB_Mt~<vUM;YbK^LhC%BXL+p#C<v}NZs>v=cMFq~yQ$4Xn@EQelTzQ}sX
z@K?*BSKPSjM!RR`Yi`_d<E9(eX~IXvP~(F;m~YWJSUj|B2lLNWmfLiuC>c&}H{~5`
zxl8^V%RM(9+=;tS>c+9laSz?}mI_Pu@>b$U>^!Ce%J7u+87q}OcjJY@ua1Vjc7yH*
zrw90-YifDp##=Yux$&Nsroxr8c<7g+qz@GDO8Ub3kydPH+$TD-gt*VlanAU!ZhWH^
z#*H+S%$YrO`FGq8=AUkQ*)c-cAv2u^p$3O}5bi;Q2a)VV8GafvopBVL)^I4B-rx)j
z89m5kIM0Vib&6DHtWC-4L9556liOpnc|e+-HHQZ|8LnQ8&Bc)0gFFm*St&9feF_-7
zu#c&b2ZcST??D3(ig-}egE$Z3J@gX6sA3+J@t~|nUk!?TP{IRx1R1509+YA(Z8-2?
z(IXQTMRPF4TN%o+miNHK5W^bl!Gdiz`Xn`b&^<E7;sNo;lPOfo#sLGv3s&%;B6D32
zs-7`bVy?+r*@G$!6knAg!GlDGYKC8(A&FXMNHP2x9(vT+|NdI6#b#~RIv&LEoyGNx
z$Ui*vR0KV;p$Cm<s6A-SMUCk|c+ix&3G1I8JUXtQ^4)srcTY6)(8~eQf{R+RlG!<*
z-qay}8<gDxANvBU!vm)Wq6d-(iU)2FT<pt6UApC&Rt&1{F&r-g-CX?pZfMo;{T>87
z&^&ZIq<+XKrFu|^U&~Is@J2{G588Xs%!lSabf6uiqvpk8FFJY9*@K-P?DC+C2VFfF
z<H1-Dy3qmhV4w$sJm}#;PY?PTE%)-EkHNh?$j~b7%j+S14QI!s(EiK=SmR&l7uF8;
zV2B5Q)10}L_)o>ep)^p>Od~uP<^g5N9PYv4b{681)QvppcS^QVG$HA^0k;w<ax{f;
zUE+VaZidU&aUP8KV7Uh?Jec6YMA{<{7JD$sgUK|_Jh*$oJiD`HiU*|AJebOG%B-8y
znP;$4cBTij44&=59E0aF%=2JALx(@&C^%ENd7%fRBUNXQ8cRGl|BtELE=%?F=A|AS
z{b@Ql#I($#zoCYBr3b4#*x<oNI%_JKS9`GDgK2_gjR$Mlp+~;Yoo!y{0crU9Sc-Xh
z)4Yjx!EWB{!4?`o8uqQRl$J)STRrqd_rz@;Y^M?EZzi5q%>4MFX$Sk1t(Rcg?ZF<J
z`Cg=WvDbrr^bOF9d|vGL;D86OJb3M){}khp2e&=?OWqHAaD)~F4^C0%**V5aMJEpG
zw_qRlfPVcuL1%Hbk_4wcIOD-h4{mW7J#~;G&oZB5J<oc<gNrl>bjUbMG1ok}V(?W4
z%ad60uX}LA@Q1cA(_fBcj;^XVdxwr77v1yVi3d@WO&iad?tAdSgGwVz4?Xz&HRcgB
zWgpY36=j)}&H9uhpRqn?eZl&YwfiR%weyCXP3J{=FW!3a&ZEDsk+%5WgAX*|Nw$w1
z5az`vhR>{DJoxItH|AfgROLIv4-bAa47p_?GsLTpZ73^2)nBE<4US-l^wK-v^q45t
zv_@&%&ZrDt41S|Gl8McXUKCqmQt!uR_9BZHS-rT}Rqv{Edn`dVFFx$EW@j@8Yfdk6
zG2~{Ym^@znKb{2ny(r*?#S5z!1-&TbMR6}mctOAa7xsc)tyt8Hwe!qHy!bm(AOB+9
z0eUAUaY-+}-Ly{KV=m2RDK9dv)??sB887I?h{R>ND4Mk#E1BiJFfqrl#u~oai*b|m
z9kH=f*^4S(#2KaWUQ{r+B10wC#dBk;dXeCzzfDZly+|}-s(CT&sy=8mMd_84`_IKD
zanZ45rW#(<^rD*=-My&gMQtw}UO2s|!vT$0>v~a-;SVqBGf-1?XPO!q+>l}Fpt#0f
zH1Xn3&i-YTwj5z<>P0gzntSyZnzvwoILsG5>yx=9XIpvE+K9J%AsGB~M-;_~UiiFF
zy^y?cc_AC6iWgOX>7%4PvbeqQctJqP>&34Dx=BTTTEo5Q>_xx}jVlIO=|wZC3~gB3
zvbJMw&)R{NTIlG-q`Laiq?yo#&91EWMmBm$I{7`k=;_61FaGhOmlwUg80n>_+v#Ub
zA20fQK?_A+FZ$8>GTTP+!<OoO9>9%M-(ec)#UL*Z_AyZ!%rJy?C>=G1;YR5QFCtxW
z6gGR1-U6k+z4-D@hkv~o!woL*Vk}J_FXnP~ycZL^D7(Zw$BT(H6zyy?X~o-Zn&j25
zDV@wZg{IR$(^TeZtW-3eVFn$|omR@u;#yR3HqDlwRs#8@iC&~N&x`rIgT+_qLv->=
z%0k}m=~MdPFCq5gnHSH!SmwoYFE)Fz#fueQw11egpo#fTRLn{*R(Y}7i#1-X_hN$=
zrIRfypW84aeytaz>saZhdxDK#{Kwf%UQi;F0!WFsda=!mvtFF@V!IbRyjZ!}bjpjJ
zUhMLsYybG;UhMW_j~7S1xbveDT{pXzR(_f`^eO}@il|H}Lt@eaFG$He$VG>|ILtuK
z5r%p*OCRGFZVpMJYo*9P!Tw3s_$V9QzkJ#YF}>{!YnmHT=V=-7;+7Zr3szBD+b()>
z#fz&nU0d5Od2yM6xZ`!}H9A;Dl5To&GbQf27dPn8)QF>^>LE4G=QfjhI8vpnf^Sm?
zytr1N%3W51dkpuzcwjgW86L4dW_`l?l)B-Hp(-!Dcu9-A4;g%T<;827OJ02SV(2RK
z8!zgfF~6e|C!h5#jq1WA`j&Dpz3n}%s9t>Z>enfKB28~QKfBOp&eB^m21VG~HZp(n
zBGgAu<}rWw;)fSMX^CrS9^K6Ri;l<$^N)!p;t(H5cXl_2`4H|y)KzPQ50PAJl9ou>
zG|bdU6hm6pbUxV5=O#0w51C?;tNZ9jUS#qivyW~<L{=Y)`B2=4Y(BcU5%(UOi?ZhM
zArAvNIjJ3kbNe7(O(K(0ULW$Y|D}*EKSKc@3NjR8EzC-hMQDrpZNF>X&s?Ph`xSkt
z<U>gxsI(M2rG0=8WsF)DhO$0H`%sR#ybm!(smTZG47C|+IA$Mam)AQ+$;zh9hd73K
zBc=j1WlN-hyOAns!6F4Kb5Ru^s``+?OlBfOHKSJjd2z`;r1<D1CaC8_4IgUyP=^Mv
zqd7E<8j-c!iu9Fh`9NBmMlvaufEI_X3u6nVQUCCvfe#IRsP9AC@{umS)V7fijeYpj
zhrfLKSL=P-QkqcAE-U?aM!%2XPDoQ9me!7;BKq8{Em&Ik(9(z6e$?@!l@G0b=&GWd
z3cC-24<~&%<%7cqrw`+Om_WzK2g!%_^tIfFwUf*)A3Q#InPpbRr+*=I`(T-7rU3d$
z#OH(GhXD6SrRn|M)MS8J<LuqZrd+A|Z!bX~QrRJH<3n5Kc7`)DPgqAEI{6ThXddH3
zXCJz7(QxW5LvJ7YFm&^wyHTqLLr))iG1Lh8-``VxIXj58pAY>R2C&ZEm2MzI#Wd<*
zh9Rs&eHg~@s#nP2FaNt@XM_(UeHi6KtZI9ZVE&r}Mzhjh{NuyF24BjkZ+a|e$NBI(
zJCO#;hgCkT_F*y?&Glg(!xSH;8g-}nFx`h4oSn%!n{^iJ@<aLqujVl4*c&>Zft&?C
z97r&q-=_aMw9tn|>@PM-m(UzwUgpDvFCojBR~V%$eOPl!|D%l38XtD~u$zvo59>H!
zJ?j?M4Xhh|*u<b$Vc6`$kGJ}@1eCV=u+1pl?!yj)chczP`QKBg_ON-_hrLGWJ|FfQ
ze87i;J{+P_<C$6nM|`+ZJpL%h95W)1`*4Ce&1wDp5vP4PLkp3LY%0$BaL$JZK0Nf{
zJnc1A_u-}w7md1?sLzK&)AK)bFZ=XwELVKE%B9zgnCr%|qsDLfpds|W54XAW^g8n$
zhP$ly$lv?F`F5jA-bX%cXp$JEBCV>Qm5+UR;=@xPp84>cw(G-BuJwZT9qUW_6kvGG
z`iAu_E46UxO4NHFKKSs_hfi#N_tA3|^uO*YeP-v24_}S=Z$1p*OWpoI<`)-*s|evP
zQLRvhFxKB;5h@~$(liX^j)kXFkzR#of+-6-8C2BV5Sy7fql!!nWBTa7z80=-quY)s
za%nMZb`?2P)KXDfMNSpDR1{HBR7Gx%*SFqSAFe!{&8wnL)zEw@@*AZE7z(N=#8BAq
z;SDXOqPU6*Dk`cd!G1Xv<yDk4VoIqf%?#EutYulFS!uiSfBLn5CeB(}V_0KVm>Ddr
zU#{t$v@sLJF~qBQFjMz$9kNtXQJu}oMoblkswxr;Cs9Q;gT+t!X_Ca*WECk4HCSsJ
zF%(=!MO_ts6#*6X*l(<&3Bw<(^;sLRHe_w2;%9teYMj!aDq5&$sp2m#N^WIqs-l?+
z0?#H>b5;MfnYa~~QoO37HGKrA5L7tW^s+it$VQB)LSl9qPS!GM6=pZ9$M9z#3ilZ-
zwn|Iscds-Rom9*mVF_|+;Roha6>W^jwhZl5v}fqR+R-Q-Dus4d5xzg}zqht7DmI5!
zKK(hiyNVtvUZ{AfqNj>pDweBQp`y2nJ}Snl7^kAIihe3atDqP7QaAdm7^>oCOvwQ%
z(iAoi<n{*{TN$ikh`|ZFLx&kWT*U~3N2(ab{P%B%U!qMd|D)nxRsXer3@ZV(Kb~Wz
z8FeQxOk|zJI+=9}>r~bZe}zt`-m18h7&=qMLN;fy(pF}xn8Q4mbsp<{)&;B-bGC^-
zITvwuv5F-OOIep0F=O_Ju2iu~#c361RIH}yQPQ%DOV_Z{lQ!3?SjW7cb%TnH44YJJ
zWBBj4((mdjwivusMcGdJB;U@?4%VGUX}z*(cQfx%v6qg^E$cqco=~x0#R2AnDh?a*
zhiDw~>7N=$*g492jP<w?^UnbNa+i}TP8rVll6sZ1oPD6;oQm@*E^zji5pz++B|1_n
zuCR06@UN=4#{9bxYUc(`7<M{0h)Vu5>b4PiN5x%(?=jq`m8YHF8A=aTJYw^)5%WaF
zQ|4!e^PFKIt^6up(>m!#E<fI=cuSMhk0?Lhsd%sAtBP+N`9VeE#*Euagnl$y_{8v8
z#TUaVXNmgG9O>6TdVVnfG)jNb`p-TUh58Z39L^eH_=BTDn?DGxd{4g`DlMDY{n&EE
zoX(H*oXx<Rku?)*X4WjMSy`!WHb2Hy_}?df4mK0=hvxPpj~~VTDB;JS)kE|8k>8I3
zek{CT%IC-Xsiytu^)IX9t&oCTrI68DVTK~CMOlmaLDQImOZriYooarR_Ty~B%H{nq
z`2j!5_>toeOIg2uxly!V|D&6-<@^YZs!56d)l$D|RIZn?F<d>?4>N<skE#q-R+}Gj
ze#A3ZVx^5%@S~!^<u~N6Y;YBZAs<5$3@6b~?_JgVS>2E3PfSUy$*d`U)bPW-+C+X$
zc51Ow_U&;?T|es4rUQr%;156Q`?1}R9ey<MqoE%`KT`c@<fj{u;qpWFqX`WuZ&dQ*
zFFz)2(+9t`A5Gb8#@gKIRSQ2_8r+KEO^V)0JG0=2!zgt!h^!&&LO)$A)r`OFDSl{d
zx>-G}URG+y$DsP*H=F=NyPEn567{2C8$a5zv(}Gxezf;vK4&}l(b11#My*bM^zfsn
zADs=SiyvK?yRmjR{IDPT7xiA8?a$iVk3L3eUxt3H89b2#7zVNqVjavngmow@wf4Su
z=x{$q_%V{5iGDQOY#PP<w;!V!{_*2qnu^SU$9f;e(#+>9@zRB%<C!NIPW}<0ll++M
z#}sy^`!U0hsm#-inC*K*XZkVAkGbs3HvBmZREi?{!J;&eo!cRy3+N>B<8$6Bi`ZH0
z$IF}+$}aJva3|YRKbEn-+>ccZRCfi#O4jXt^)HjFnb#Q3Iyxh==o?zk&IUg=GHfFC
zV>2_AZlm>qc`NIN#8C6qP*N(|>BlZVzWMRpkKKOk@#B;qr#Wn|9|sur(do(1G$HO)
zchi$mxexl`%&%XBe8`W(Tts|?;VA1dKaMk;U_Hr7F^!u<o}m@Mk9&UHXY-sNw~f;C
zetg<xy5Pq}KQ6I(ne{5`71n3f^{*?}n6LYBgW)DC`M3P2^r!v@>>YOQ`jIz#O!R3B
zsdg>&fgc}?$cKJB^5d}|PyBew<{Q>$bX*vo8<8*QjOP1fUm4D8!+FcjJJ$ECJuB&>
z`q7B|#PHdVFNX7#q3<6NKm7Pfi){dT1Nh~q*Ipn?K>tJtWzEbQ#u^?#1Vbcih5*tq
zP;eAO+5plqq&NKR$&nci&cr}}{;a){G`p)gYXI2-$e#MY`I((da|Dpnh|k54n|1ZI
zsC)tR7#LYBfZ_q<XR|;61sMvl77n0l$^W%hB!Hr9Qs4TH(akZX(w7LJWB{eu?=r$1
z%}_c37?EWHD9apttWWZC0klsSU!EOP05J@)0hk%8{i`=?VJ5H!U^6(hXlR81Dh9AI
zfK35Z3ZQZT9RuhTKo#m_0ImS!01^U744_p2tplhQKy|L(IDn)8_I3%aW3-kWK#IXN
z7;3WC3ZOQ_&&>Kvs~gbY@llUH0@$n{KtqNGtQ0U@D&5H7Hkb83#F}vS&j9{1{H6@e
zSevu9U~Ng`HcJ0V!OmG{0Ac_Fvx7C`0#kRt<?N6+iRQovbF+=6W0TB_qvDkS+#C>O
z^{{HJ-T-_IDyyG0z)Bn1>Q4Xc&i|gsof<%!09tIdP|IxtXlKN<XXp@sJ)j?p&H;1@
zU~m9K0_e&`Jz2ZaoJkYYJpfOFl~RuYa;LEn^y1RjC(`$3=o3I+hJLL50~ip%KxS%u
z5X0|JCEDE30EPvyIDjPq3=d!goeMKVXK~EP0R9Q!U*=H({LL_$HN91zS7Vq7rUfuI
zfN=qgXJ;bo1l9_>yc96Wh@2e26y~Xh6ZTyH1eqSd40dK3ezm6|vzg}vuxFNeF7rIr
z`2j3oSQx+}25O<iiqJ=j-m9enEDPZ29Mg&bUKfvhZ@0u>HZ2bz?!J|P0#=eA7PBgV
z)kfVl0jxE69m9Io4FS9g=QA;Y%>k6qP*TH|0Ja8jH-LK_vn_xl0UQlrdjLDw*~z*q
z@W0=|c2lHTzou&soelx)<I?@ChglD>9t_|R14UN&Q7BxkL2xX9;{jY@|3m;M131Tg
zidKx8mebU7AJeLj)~NL+f-{^wOXuJLGiA>QaDjs_vQDj<_7Vd%d)aWVGF%JbdH^?=
zZy7N+8QM9cZZq65{8d`o`vE)%AcuyW8XgAlD1eL_GHLo^>#H0&V1wmx08i);1n?|?
z-DhII2JkI_=gcnxcuAv5haiA=>}>gNeG|Z2W}nwW@sun*%<lvEKr<>=m5%{@=2G%M
zG3+g55sN2%3E<4%CNjTs-$FHnaUXsJ@YCq+uK+^W{K!AQgflPOXG+Tu!5XO{4MP+w
z?M2at`W+DIG^A%I18ajn3y?`E<Lc1NMr0NZSq;vnAv^Q(WwFi@VH189%B3N<hCCW>
zMw-{|ip|TVg;?{k=4Yig3osPau;;dZIuthiA{vS^7c-pV4A)1*m(oyLL#zg~hJ2!>
zYivgP!7kGh^M`VwWi*u45Ursc2Or33E}UEcHK4o(6FV_RYp2ao77bPnH8j-JVABxC
zMO8G+x)Bo3eBW2Gf)QVlp^}EmhI8s?NLA(p!%1YQrlGpwBxy)yPBEOeroy!})aLAu
zLh*GpjC*5!cFQzF*85pkLp=?DXlPkWKcnj#wHjz>$lQpvvEgSN81k2frW&NNaE(PX
z4b3&o=!=<s(SjP$5YY>fz0gWSYYkVs;#ybOH3)QEI^k9)I5aqE5K>`Fg-DIi@18+~
z1>w>lYdEgqga$=}TSI#d9W)%OQ^2Dkph45%)iCo)*@(1}J`E}}W&IlZ{%0i!YN*xT
z+9@KWjfMu1(Wx~4Az_6gquXk@92!l~j=Iz$g1DoGP8#}a7@(oEhAtX<XgJ-hO0#Ss
zHLjKIN(bm#*>0=^-KmG0;t6_c=%t~zhCXz-7nbTr^JjiS^*ch2$mqTr?*E7&m{&hv
z#Jq%o8U|_jTf=B>cCdz_8ir{YLgOY{*CrSJTeJ?>@cwc92n{2t!H95r(@N_i(fuOA
zGdzkPrGb>P|7iGE!+s41G>p+OR>MjStLX4)7_VWzh6NfXXqZUjPotq>l7=Fcqo-Yu
zpQd55hNl^$DNWHZm3iJ4D`nSiN|;XLoS?%j4X+L+G)tq-(=c1Z*A>+$&0(0UVcJ|P
zWz$c$-fL8Cp@v1Y3u&VpoQ+?s;Ys!A4aK6DF)Y!rl%dE>EBVWr305#DrK4ACSfgQ^
zhV2^GYFMXXGcD|NeAB4Q=ULZl*q~t}9g%(3qu+$i`w})WQ}#a%C|Hf)c*bhM%+Yj+
zw`#Z;6-lr|!%l90w}xHRLNUFx^?d7ph;Gr<x<|u^E!Lzt*1a0`X&|7KCRg;6`qqOq
zqcj}m$s^<yn>Dc>(Qr%y!BJL%T%IbU3RfdIso|7{I~wlNaisHopm1Kp1&yBVfU_DN
z-z@vRT*T|=WzW$xeo?k<j*yEQF43IVaE)eE)uPwSR=!LJqIl&itmR5nCf15ZU#E|@
zu;^PFZZHtv)Nn3c2mz(rG}VhnQ}!NBDh;1BdMQc12ekNWc&6dGhDRD`GCyXWm?j$0
zX`W~pm`0!BPuWCB*b5CWHN4gEjt;Sg*Bah%QH!YP%@HA_L(_)zI9|C!f#~<_e`Kv3
z8U2AzmKBrJG>-_O20v@~Li0hxHxBqoGe0W&yN12dX$UC&pqUvNO>g}9#Q`Bfy>CyC
zRjU>i9UeqP5N(5K7er(bX@V#fMCl-+f=C-g?jZ66kuHezL1YOcYY-WNpfiZlfQ9)<
zGjcXl5SfG6JvU)!8kNiw^J6Z!@?;AlJCz3UAwGYuAkHjnJ+@w{oE*P8Mfmg}A31r0
zpcgR|r2Yi;(>Wh&e%1oC-7x)3|CrHQIEW%a6b)kOo%l)5%N7e_Nr`BxSR#nxLF_3J
zowa22;I7t^L9D-#FT?C=bbt^<nILKhQ74G9K|}{pDTvBJthrvcToBeEY|Q0@Ffqii
zQfX`uW@d}wWUxfU5&tUN>|JFVxA-6`&?r@it~k|Nk@mV+G^L@9TUQC9Y7j|5B=bHd
z1o3W8LbV_gIXi(@p6WD`4Xo3qB;=i$Fe#0i!bLTMcvzuI4dxBE^3`H!5E4lvnOr`C
z{smk&h<bd;{s_Vogg1!#oNW+9!yp<3(KrZ&ohCv28AS6SgdqN6hdSJnp=l7!7^t)b
zL(S$flqi5wD|TA5+JksdT;Ed%XPrTaK}cLnX2%u8?~2>USbsM~!EQFm@dcrBSSqWZ
zRSP1(K#>#cmJb>{>xsVgHk|!0(a}DL4nZskVqp*+gXk2**dWFQ(K(1NK@6hV5=7S^
zx&_fYh(27aJ8MtY9zpa<tDh0QI7@(X5q%9Fz|fDiKkM(0o`KA*B0`1)F*JygoTa+M
zf*8(xGEMYmK66KKmOi{j1@SlYXx4vO{|UlZB7!Q834%^}I!_NCuRK1830yjd%pfKO
zF_W{CgP6iFopmbfG%^cB4{A_~I#acxu%bZpjG+E0NiZvj*+H!P7)tFcypMCa$~;!u
z+<b<^5h06$SRBNwAYRjHLZ=MPmN#X0(b;r2epwJJgIE>Ba?Y+`Ei@~JidOT<wUw5F
z#%b!kj$aeRQ6*t5Z83;kALG}vHf&_w5X462O|1X1Zf2#hEi_SI#}k|>6TOX2`7+Vl
zgV@19ypvAPG%CSvI%k8}8^pdKE(UQai2XqvptCiNeo`L{Vp(hzf>S{p3gR%0!12mQ
zf;dU%R|D(OAdb=InpZg<#EGE(oq@)gf~z&xM}ECrkoYuhF^IFAD0?obU!z4p>3k3u
zc+Dx<GY@4i2XQ5cC+u8hCG%bo*Mhhn#0_?aT@NAiW)Qc6xJ?V=jF`Ku1b66U>{*$B
z0v=@uBfZa69?%&b#G@d_goTs;nBz}|MiW2ffM=}FSzoZeWc}T%H_Sy-Q7jd2X&DLP
zJ*}c_W=h4!AU@IJoT{&!pXmTSiH>0Y!u&OeZ$W$y;ztmnsR&EO&!GNAA|w?<GDK7Q
zMZ;KCxVS97``!e~hI8FlIiv5?EkI%4XT}fA8Xd`Inp8w_t=KI3uBBr$J!=N`GqO^x
z${EvSPDPefWaU!&l+T%pY|PnNX+t?u^=?pPu2kes1$7`#D)OhIKq|=0%VGIgoeQi5
zIXL2JbfHwx)~R~oR7CsrLso=i=&K7IU&<CwMTu0DWRtSxQc;SzG%Hxku$E<wX5Bxo
zH3d@(<vD9&jbV*Vg*hz5oC*tPYp2tXeq1WzQ!%^)Msz@hR8&mG(zf_Ns@?)Rs;m7T
zPDnC%DH;->XxL<m4x}Lvf|lZLAvlyE<95f97OCJa#ob+6tU%Es#oevATcP})yQlZ}
zz291A?X}N7&v}lYt8-_W8P%ooMszo!hY2-|sA<G*BlZ}PYD6s~LPiWSBF(6t57#xK
z9!YIt9U~q;i4(oP5e<y!ZA2d<zBZzv5gm-^Xv8-(6N6SHjf}Xs($Lt5CM3d}k~A}-
zIY|pmZ)ucY-5SK8YYu&DBib-~TVgxSXM2(cBND`aC-PoKq#M!Mhzv%%6T2AUdzqyx
zxmb2H%DGTqAw4vurx9gGs!k-BvgyC2t`Pegk!eIf&C+H>e~k|y8EAyj2$K={ga3Ij
z8)4CGtkNy}Q^l=aQyfM($@`2*aFMvB2*r?CM?I_b7~!Sp)9n351T-Er;-F4FBOPqS
z5F@4-G1Z8nOr1#lPR5#K81X0Ka3e;Lj5Oj0lKh5faq=Vi>4>PGNk$Pz6UPw6W-Q4#
zBgSjW1ex~h(<Mp5B#M(|BH2}Cni12DSZKr|>NCPwjF_qAjVP5iOJ-L}+N7<ivnkFo
zVy>1tk7T|P3pAzoJi}rmmKd?oh%sgKOO5KafP_^>ETheG&2k0FN)B|mZmW%0W5ik`
z)@e2}2i9wRgNzHOjWI{eCL=Z*vHo-Y79+MA@hfe%6Mxg}w;7SMi`r=tc2L}Dls{)w
zSA>M$wQ~0w@rMynCPbUC&xrj-Tr=Xj5eH=8jJP0k+lWKVb;gLZMjV#?!HB}u(!|LT
z&D&9<`~f|V8}XMmsZJYlLQ6eq#3_vr$gWO?IiXk?#B)ZRr!JQ#eI15_eKTaYk<?2@
zTruLR%z36(EvA-Lzk^P2Z|(@e8%EqT;*Ak+jksmRZ6od&ao324ja19Kb5+ZG%==U;
z_ivK>Mm*4zhekXie@uL$>0{G%eFk)W#^`e+UTFGDl2^pn#9|{e-jTdF;vWfqbv1o3
z;v>a|xg!20i8TG!=bwy-(6}s$EaWo8k}Jjp9i#P4$ZA416Uv$Z6SA9-!-Rq+6fz;F
zhzkq_G!MB<$gT0uNb;EQIZ0kk&qtEqgx2?xq!bCI78znG)~i#gI7wj>;z;66C}KiU
z@?u1>ucst@q46Fg5=PB8lrW*Brj#NnO)Nu9Fd=iHdbdGBITI?GP?>rnQBVAmSl)yR
zBw|^SWcAS0Dkd1nYnf1$q&l%0Q7n^8_=-H4SoHRP?Mh*^h6yz_%T$u^CYeTFn^=cf
z*Mxc`;ThGygs)9#Xu>xpv@xMAlNy=O*n}n~B(e9Jn$S$v$ct{_)-|V1D`E>1T9V|<
zQ0Jb6){O2u71xd=ohW*H6FQK0Bz7Vm(q)Eobv7YGv+P3B)r4-Ea=3@CrwP4GsAEQ5
zGkTlQ$An8JTsGlb6Z)F4&V=>S|0eWf77wvM(M%j*!a$j693Z0!CW=zDEJi^KqgE4a
zBz6-VB$IQgi_U3+i%~aGA&Ne-lTOZCye9Ze@S7k!V8V|k{6vGG2_X{(kq;&gBMu=B
zHQ_rF@$<d(ZIZfvhil3Rl99w8r1NvBo5RnHPBmeg38PFHZNeBT6NqDp<A~#lk|mI?
z4$4GECz&u=)2EmqXJ3*u-GmtwSDG+WhzSc!SV(0SaV~MT33Es!OXJSEdF1mo<w1^O
zi^!L1%3_iwCN!U+o^LGE^yMTgOvvR`+q;U<)x<TL&03Nz5m5tjMbyj{vB89mCTucc
zvkALR*b`1QVF$@p;;%$;_#4SK6E4g*Y?pE24zp8B-9_>{@!)i|VtdK|B>q9%N8E41
z0g{8nLqxGZY(n`yu|kfRaFpUP;%O6(oA8$jCp62GB<Y*fL+vROZrRiw@(jhZn$0;A
z&TISv$wlesCF&k>#e}OS<TWFo8P`m>&eZoN+%Vy$2@gzoC_X9PC*CIBA>Jk4BmPai
zqU{xHCmSA_@R;H|nFAy*iBjlO6P}syoY5Dx(q52+cZpY;&1)0hX#B10uDs_KUPS+x
z@WF(SCj2Wqxmnx!O~_(K!%2n+Dv`w2W&hhNq8N=fBSy2=k*xVe?XGO(*@-#K$Z19{
zav8haBx3WK8F@7RdDt?$K0iryVgWM>no-D%STib`QOS(LntdrV;>?IQqX?B^#G=F_
zh5xJJ7iJWvQi3QYmLz#^PAE-M#*73r%986f8<3PUBatM~UiJ2+mRjD73K}o4DqfQM
z4D4Ikj4EarG(Cx=su|TZrA5}5ugH^$dwDvMqNUa#sYy&VqZUaTu{Kdkk>ya&jQVE$
zWX8{CG%(|9GmK`KWPr^0#*DURv@@fT8I8^8RkTY>W^6)iPHbvMGm`L#%L#uAMqAfQ
z5c^hUv}VROL{S#6HMBRQgBhL7NH@d0$dIp>ZuXz)9nDCCx&w4JBg2gDX7n(lbUl5K
zP3q})7y9f<>?VE7v;CfoeoGXaUUC#5@1rT<iQ3nUOik%$Mt?H~NYPw|l4~H74)p0O
zSA}A4Hp60u)eM^%!<l3^!$C5L=p_2haGBvYLt#|>cu2yF+Dq;;BU}MV4NwUZL*dky
zSq75~Ar3X;JLz_w*NOf2W(=b)R~Zr=K|Ycw(I3qCQR8wNJj#sGX3REY4#hEMY{?Nb
z!;G<-%{Y?rW=t?+q8XDIovNiyHe-s$!`tIDMyC_y+-#;0GiI4_c!ptS<8;AMzZeAP
zvVr%Trb(`Onuqx$3y2HNSVXdzxP%y<C(F%PVa9SRR#>spj8$g*W5x$FR-3WLj8kTu
zHe)UAx0$is47qEuj<}w<fw<9(O|;oe+(O(+{FV3{aURcsrQdc)E-E|C*hTWY8HY$D
zb+;LNq(zMWLEKN=XGVU9Itm9g%Y!6yvd0|Olt0ZlLjHeOk;lw9uBHBE#tDs|l*#W^
zy-7G@##uAY$pY-8lj(Qfj0<L5(JV(dsd3SaON<`vpu4Q;XUglZ$|1mv>s0O%ZxC;4
zHn+^UO@2pHWQ^{a@wXZG&3ItOQ!}2K@sO#HiH|hP@FnUKGs<O)kxD+N{+9T{jF%+)
z?Fp|)UK8IC_ww3Svb<yTz05$KY<x81Uo%QsP}+h|W<*$!*MfW&L|Tx=0-Xg}Er_xp
z+M-?_##nG}U#i^7&YDyII5WXCD0PW9A)5u+Ey!g-ZVL*1ADhF1!S;ll7R0Bk2h(f1
z%<j_-pIMN{q8?&Cx4^a1AXiU0>gnUE=`Sr+d43BDSWwi0Vipt>Cl<t7P?+}ZLJ1W%
z$6Gq<r1UuPX+aU{uXUNS`D8n+?mzn#!xt75x1gj2o3qF0mL*lnq5o@>p@cMKySi&h
z_I$Gw%2<$K!Dm+FvC8|mfCY*L9t+A@kZ4iQ2GcCiTkxd?IlfkNJui}0-hyN%39n#5
zMGJ&TsANH9@+ubj&;+WICuynGEcm`-df4(Ssc<g6aB*0jHBTYdu%IT1=&2Ue()h6i
zU2O~MSWwr3dKPrFppymlwba%YG$8-lf`%mD5StPk5gQYmSg@<OT4*y1np0^(Y(;Eo
z!I84+`J{yD1=NYuhI(6KI}6&AbRbG<Nluk?3v5(6TaaNv7Yn*tFn~%oVowWtk#x79
z2Z`kUJ8MjD3;HnHkNB+xeYMny%f1ksObb>uQ)i2W{!Ehk3m<5K(E^hNX3gG8VzFS&
z3bl0-E^u46Q+HV4)GS>jZlc(DE$~?|&4TF`be?VS%NSWO%%a|J3|J7PSxCz}Nais4
z5aLix|IUJO+texdI#EB|f>D}2!h(_HKWNI27W|~~pGm^^g+^O2#)7d_##t~)vl&k^
z!GejJvNccqWQ|WDnMxFWh6OV%xM;y8Q8+)JtugGhV3q~5Eto^IWfm;AV6Fx8ESOJa
zF>wKLAyFE#$byeG|Le&m6qgdqC8;-LR#>pXf{hlelmVi?nz)X*hPc*(WzE!c;Ps3O
z`KqICldMDwwrR>13w|Zvswr}y`Ay^DvbI~WLsK4Si`iwt?~LxYV82B^tbsj@?$vDm
zAlXM04+kwcWWh-bPEk2bJWl*mX1fJP$#3v*b4>QS<^Q$%FAGjENorn&Cuyf;m(!Fp
zBxnC8?|BO@XsL#z=*t#d;VgP>!By(_EqGwTH4Cm=a6_}aLvquCTO_wNeNRXARP!#Q
z_lSQJ?VWTFHJfJ^JR*OrDNjhA68}{ao|C-LQeTq1B8E?L-dOO~f_E0Yx8NTOVyw_v
z)%Ep(HWB0>E%;aS@JW`&2K9bLq!n4Lh@wF>QN*y%?Ac<nYDx|(vS~a!NzG1byK-8Q
z%Zl7oveZ)#tPOk#pIedFir!ZAu_B)p`K|cUit<(zu%eqTCf<r7v@d8yA(B`t3X`nw
zsEZ@n%KL2Mt*8~HtjLjFUyQmaUszF`yachNruR!tE3NS|Bnfg9uma@eh~ZlziB{+}
zOZ!Aa1uH6AQQwLNR#c+?l@-ZWR3@*YSsF;H602E}r0FY$CsZe|sVON|)F7AJ2vXrx
zD{3*CW<_lhxsDcHLLDpWQmIE2WnnPkYbzRB(LqzbA!%ntBP$wP(L~c*TG3SF&8%py
z@fKFx)OOBR6kA)-MoVo=@^-SJy{0_qpzCNwCq~n)=%wkMt;n#Vixpipr8`MC>;HFN
z-NTBWT54h$^>8CMpTD)DuN9-M7-L1I75%IjWW``B`fHXpD+XwMAc>J^BASU7E371g
zed<xeZiRzUrxiXD7tu{rh#sOCdr9Po>?a8jgTxR~Y-Aqx-<7%}O+SRnP~vyQ?}@{#
z7;eP~@}G$#t@wfDM=O3J5kF^ls|O1?AsIzQ+)8w;72{;8XN{R}#ds?wSTTpG6RntJ
z#dIz2WGkj>d<scaN8L0{3D4CTjLr;;#974I#O||obHhpJ6X%h{PES}sve1e}RxBo8
zYQ-`umS~orWzCdI%Kn^#OL(OftE{+e#T6@7Td~H9^R!%R#X2jtS+U)U^;+JoR{3l!
z4$ey2NM)0zZ?<9!`QaRD5B#d>zgh8ct9tC%VZ}}>&RG#NPmS)f;)qo}CHq~o+-=1k
znOau-p(%%~@|9q91??vuARg3Gqb8`geGW7FXE;e0bJU7sRvg!CPFV4m#={q_CmB6O
zJZ;4plCzqPJlK-!sobq=T+oz@B$uoRUpHN~;+hpk8%#D_x8jBsAFTK&E6$2rR=l&~
zy%o2uxMRh0X1r^~z5iJ+e_Qd0`hCs+1L+@)H|KfUV=JC$%2SeO#BO!f_P(&<rIz~2
zir3_CH03RcRJHMR!@NA|vz~vf|6K)yFD?JI;*%8-HbmM`&xZOoWU(R2hC~~#ZcB}}
zA;yLTn>sE!8?xGPDotO~hHN(VB<eF8^4O4_JO@$4oFuu3xovozS1;n{HsrOTsAiLo
zq>v5yNeU1P63fmuh<z-1VH@H|;)z9wo;3AJL~M#ND&z|rij$Ynl&LcerEDn8+Lj>}
zm|~Ec*L9?qWm|4%*TaU!dG+ONX!L8Uv`%kBsUfLf(nEP0Dv(r^r@ETYN;Xusp^6O#
zO{qpwmFOFiDm6(Wm#1vWHdMDE#fBO-)Yj~4lGGxm66I~TwEs(8VyL6>x+GGc1~z<c
z!$2FNuO>CLsVA{rZR+#-Z)ng+nn2RTh88xoByUP=W<zrlsa3Z?LM!rin$nu2jSX!{
zHk3#cv-UQ0u%V+3oovX^EYnFk6Qe5VYbK^mu%>rmG~#lSDBW!6ZbJ_$eThAZ;;@%Z
zKFO%glRldAElH04T{B7g5&IJd5XE>)j$#$27^J;s8!R>qx2fyhN(|Z%vcX0!qTL1u
zxzh%h4Q_HTQPFHXB=77AK27o45YYJDj(uw`SC1xxG-a?2L&%2`zaxH6945`-PE~c4
zdYUxCCSMThE96HTezM_nJM!A`vkjwccx1z48%EnO#)fS+Y`0;o4dZNBZNnNH#tU9b
zoMyvx8z$J)7ZE2CMV!Q>$u>+O5oIb#wK%=-88n+kWhU_#8)j6D77w#+n8Vb$HY_F)
zah?tH$rsqL(1rs)#V%r0$gNMYVz9)9rBs#?m)qnffU2)xRLDvjR*`38DWa^kVJnq&
zHmtW{gAE&P*g|EKmP`DL<z^dlUd<2^E=$O-(%x>dzu9m<Ax)w?Y}jeT1sg6h<1QQi
zvf<8&)ZcB`ZNnZL_R5r?vb&-F4;v1W?;}d~{n8?hOD+kAY&cA%;Or!c9w8TUl;jxk
zxD92qW{P-1OFc<)ig?<FGn#(ZCZCQ}>vNu1I!-TK!X+DS+T>vYE>pjv*<ZEc8u@kN
z4NaHI+!k)b15LSW!`~XeNAmM7op`=aZg`yZ@PC>n<NkzWoyU%+HaxT8xeYI52exBQ
zN&QP3UdeV%F45OEe3Y3`QvZhdmiUhNo+wHGkbJPobwQK_QU0~zla?A`N2KO03(3*W
zvC*0mV~0-TSxGWi>9T7|4w9V2T*TaVd`7ZiYVwzP(+0MUmg$<$j{J5^w_}DK1?(tj
z$Cq}Lx1*39u{74(QP?gYvIguZXGgpp-3rDf*pap@wTK->CA++uXh#_m;a}KMoV*0F
zB(W5+G*N8Ye$nOV%v5<xyeyT&Sz@v`%Sg1#-@Mj6`F&cs3yDIEYf|Nf3Yl6GD%era
zj{0_Wsa7ObvZFFd6*~-eR3%Tgqq-f{$dia)5kE9k7i@|hHSDMvR;DC}6~X?t<WxIq
zQBNb*Ce|U=C5nw$Hn8JsJNntt-;RcMd}BvzJKEUM$d1N#w6voYjZ^#7_~KVX6A`PW
zG_|7{#pc8o#IR4-t4J}EAogwTXlF-;9bN2bZ$}3^I@;xvQ-(1e(!TC%sM6OU*ojIy
zJ#_vbKV4-+q)HJH-`XMGy4&SHjtxES=s}zAR)f^MmmSjl-c&wJN$z8ZpeTLqu$)g6
zgG@W5R>B9^F_30s?J(M5vLk3mh)HHUtV|L!iye;KF_O_H#R;eGvBOJCryVXk+;+%I
zxnd(hvE$QsX+nIo^b?1-E+I;QT!=J5-!XcS9mDMyL2<AhLr8{7&-XQaXUF%94zr`u
zBl-T4+AWe%!bm&D<WG~1`oWGLY4ejEqqNrjEIwP8cyl9Vw3yj3Wl-$-V!CkY<Lnr3
z#{@ej+A+<JI@RMQu^ZPE*2}m|rmHDLaX!@!K`BnkmC>1L$1hCUX2&c$X4|ou(K*EB
zcC4^tF8Mq==G(D=d@*q$QCuyOrN`N|gvwIlGA%VVMJF~Z?O0D`l^v_YNyN2w+`AJc
z1`^g$S!qk&K(djzi72Uas-<kPtNW+$t#<rM{WmQ&IYqbKjvaRFv}2bYe>rf%f#2=e
zZAV)N+BvYtj=i!}9Vp<yA9n1s<B=VY?bt6pAg^xPamtPZb{u5%kR3<tIBLgXM*k!Z
zTCP5}lW<J@Q#np7VO39?C7iHh<4D!!H1(@?T(jeh9cLLmXU9bnF*r|h!7iWRR*(3X
z7`;rqLJa%7ZpRHq|F+{M$z7skxkYkYI)o%_e@{!5s@^AmV8=r{!l~a?R&S?Bcp_`Z
zj*m2WYR5A>o|C^Iz9GJ};}wb6za|l%Z|!)ec@zD;9se-tTD3Sy{Z|%<9l0E8e?~YE
z=|DDeiDq#iTH{d;h`oq0RCJo2m89vc*zB5;!-1USa#|(!xye5x=Fx0EcOWl$K1~_j
zBfX#lg&at8ptb|C4it8vngdBRh;yK%1Em~@XS4{hD6yDBe!Y(3<WgJ-2eR|Fu)GK)
z(b5i-VNyk6f&*}%9C=ydYPV{Z=)jkZ3fDVOCGo#I<mD+=2q*D=btMNXGg^gcAXX(V
zkIj(m624-z7BQJvotQ$b;XqB2RO#M|x|U1-yZbHW)}j8j0}UOhOJ0vCKI@Y-aQt_V
z<r@bYIna_~W6h?S15GsEltdoNNZ#h;Ega~|cK}3b<v?rAvW)|u9O|Wadj~o=u)=|r
z4*9zrbaG(010x(rcc3$k2RV=-KmKyS#AsIsx;fC>fj*3Occ2$Z4`NTExV^mEAVJ8t
zn$pjKz8cRYS(l#P-+=+-1Bt_U!^B7~Pw>qSSRAlAU~|CjfZ~9iN#fSwK-p|DVS6V<
zmjm+h-qc^zh2wF+Pti;C5yMH68elZ&fG8pIS<BS3`oRtiVRWbi-;sPz97dG8pkWUq
z9r(e4i4IJn{v&ZL@h1m<c3>3wXyO>6R5kTfQ7K{^qe8|zFhS$;z;UtzQyf^}z(T2&
zrq6L;ngi1vm_cQ>rq2|j@mVDA4yliQ#qC^1=Q%Ln@!#7uUHC4?A_o>TX(>@EvxFos
zpDIemWezN-67JGf4y<NW?)t7F`IWfVfpre7Czo7X9oXQ&Mu+;$RHB<SeX|2w$TyTK
zCVIHvextI@f$a|L&@6X5uv6o^NPc%<$uM<!?vZIv<qroAIB<}BA8|jide+QC4jgvi
z7^8m@k2rADfnVJQ(;UOJyj|osXbbkKH|35qRY--!hLaAQa^SoJ7aTZE{j3A$9O`q-
zGmJKFr9Le1&eBaDYmla0q<EQlNya@{tzOpGDS~cK!Zio3J8;E?t1jGd;HGqu6YHJ0
z<-l#(zMLrS#2p9jI&dRWU(|_v4*V^1wWPj?6Zai>;J`}<UODj4fis)apAv;Ua^SJX
zpE%T?7>Fq0nFG(MzaYx9coAPa@Wz2WPJHgfTL<1b5aERFdg99lHKda79r(wA53-J~
zCw_F`Us;I{QiNL%Bz<yV>D1WSgVJxkNPOxwL^_ehi74jH>O|YDnbA({ew!FW)Dh(#
zjVRfen%#*UPULh#zcVQ}m7;?Txk#L5!)KZzeyUWB&g(=0Cki@|&xs#K7^DaCJ9!}!
zsV~G5r7hL(CB{0@;)hfTg-POw@lG5(mn35C0ul0SFZo$VF(<xos=ry2P@JR$u_W<T
zWK<a^5}X+B#0V$KIsqrDJCVYI$~jSuB+-dQ*Aw+le935eVg;$*n@H&&2^FbSa-uSc
zC{>&=kXI$Pe3h7^YJ3v;SDH;S$@Z=ZHJqsFL>uV`CsLiL<wQd#zHuVW3D@hy`o!8!
z)N!J&6KitC)N>+xL}5v~{dwUqY2d`d<EdXeu`5^1*>{ODOpTmq>_k&1nmN(Li4F6U
zGR9;`>aK4(@6Hv|oIYDRaprZR_-Vmt*?DooTS=B#>8+i(xH&_j?VM=uL`XcB)OT>A
zqZ3xCwiBJ4NOxkO6GkR=cB0X8LoX*XoETYJ{asrZC%Q68csD1yllRb+p5o+PoFw&j
zsz3H=5S!M=iEo)Iyss0PP6+8o6w=>`0p!*M)!5`z-vZsa+)&G#W|pp&r}RW2DH{xS
zCmc?ArB|0HjmniaYN?^b)-<QI(Fq}LqCy<K(%=!}J*t6^_L9Z#M8Jt4ql-%GL>W_8
zKWv#{kPOWV!(b<du%0d7r3`iAJ13r&)JyoDWLOxN8Ai(VaAKYl^PTw7iJzSK#fi?h
z6MuGMloMHRCjR;{@nONV(N2t)G5w_SF;0wiLWqQMPKbdiYvu%|P9#nuit%J8rjSo1
zP9shy&LE1-OzDs*X+r#;5@$K(p8_C6!W@#hPTZK1CQ+%<0;y!x_$4xhoG9`kQNki8
z7L!X&B)ZgzWljvsnz`JG!gmu_5M>PtUrD~oiPa=)h@!7`;?P~yV1pAIoj5Hs&52D;
z`K*C@L3hlFe<Sr<oY>*SPA9fXW1aX-rc<<jn-kleSfz`ql|}t=R?F-WLSFZa+vUXX
zvbx2s6W{mL?Un^nRKG_&@6nxmlDOB2Kb+VnJKNL5{Z1T^$(bcexS%+ZkeWT>uoHhe
zaYUwNC&PlahH_6L2MSt~k5UnFZr04>vhg<5OAY^GJx>r%5>FB30`06U(iGhtC+<3N
zj$4ytIq$>;*)EQxTy)|Rom_U}niJQZI9phMg?N>isYHo#!-?B6QkN2MQoKbjNuq@D
zo)dq|`gNh1OWoBsw$$Hu;(-%;{FNTc9CPBC6OWvDKfjWM$4)#U-<~y7qR*XpA^WEb
z`Ca(BK-x<uB3;Ph!Ye0UJ5}Y46CX(4I`NL=y%YbCWJ${qgE0lt1V2*wm-vYoL5Hp8
zr%Gy+3(+p*q7p+CF^3B}7w+Xx%Sy~f%uW<hjzKv!%O)FBb8GxFl03xEiFsYHT}%>(
z5(>ERr3>X<D9EHjF2uS}*o8P3%2A1Tp@<75Tqx;6Q7T^$C2uhj`F(M5O_5*GmU5xA
z3uRq^3uQDt!G#nSCzX_pQrmFp`L1UqYBqWjF{nWDl?%x(RCJ+|3sO*J7Yx*^X!i40
zq*isI8l&Pri9~ljL+VhSye=`tg&Ho@Bu^uz5^E8q8ue~w)Yf<%7gml`Ygo^P`YtpO
z-GxS4YC{*kArH4#3Kh%7E;Mn$wNA|yZbEYxzlY#Ldly=`(9(rg;;obJV|IO(3rVe|
zK5GpU+PKh`Tz)q(L@{)5p`(=U!YUU!xsdL{Oc#D}p|cAaE+{T|SX>tuy1LMfT<)h0
zD3I3Og?=vdccF(1J*oF{p)W~q7y7vHExA-rhzypHOihu=Ho%2}G9O&9yI`bla>49E
zxPN5oioFC2ldNo-L>-K}iBlG*I;985CFz%CsTG*T>w?dP2`)@@!S6!Ag%K`{bRno&
z4t60#K1fq!S`Kkxs0-gw8K&vqyKrrGMR7iyij1=GAIN`pVU!C$x*(nZ6P55NjMnmw
zb771NW2M|{YOZkVcr7(NMJKs1XNKA{lU<nN!c;AFI>|Jm4EGF;h{IVf%ywa(3-cwf
z^kKsU$v&3`@(cQ2YgKO&7Pufow$Oz?F8sIR7P+w4g(b9HN?b<F>%wvuR*=j6Qpqb7
zUd`xVE}U>-jSFjCSm(le7q+>uok<&9*zAI3Rq94YCD$glH(dG_id$XyRZIQNg*NQH
z9WLy2VUG)YnN(cn2FdTl-Ne<`GYaoY|HFlSjQ;7uev(5j9CqOV`9WgRaCQDmkX{m$
z(@4Q1E*y2?7?tB3AQ5GG${IiE!YLQdxp1DTr-^5YXJo6PE9pkDmmobOc!7A4c*%v!
z+!jPXx+e9S3)fv(;Ko8XZn$t$#@daL8@F7zE!*RjM6VlnT)6AP7j6`H<DLtD%SPu`
zH~;%CJaFNY3lWSybm2V@3XfcP?853q-4hp{yYRw=r!M3^mhw#Or|TpLm++FtZ)N{?
z;WZ6DG3gC?*z6tsh%2%Ghx!NUnMnOd7yhL;(Zy0K6X`}2tC59R^IaAZquq#c!_huk
z=SFTfK9eLjvbmAntsdxe5Z5N^gy$sBMZ6akA&Qie$E}u?U-BMH`J9-SN<O#R5D^Pd
zEa*ld5)s3CVK?I3h^JVTScDjEpfsnLW?#aMl5TW$qnjJ0+$ilvLpQ#0ql_B~Zd7oi
zq8nx1kmh{pMtL?3%v;WlL^t%Tk2sXZhOu?KXfc**S8}7W8&%ve(8e|}R@x;=Ro$rO
zMjD%t<i=O@nd(Ne8`a%Naia#4!VM9WEH$Z!|8V`qc`fFWRN=MVsKYANCDtR>CpI8{
zO_c7E?2X)L>_!JSI=a!sjizq2bE7@|iz_LjnH$YnVHtuJZnWfx2yf*^Yw|Y4wwf;O
zl@XNYi*u=JCpUy-xY5Opbe7wh-onk1nIJ_7O0>HhJ=`$6VR56U8@=2Z;Ko22_jaqZ
zw?DBDm2chX>qe#<{pfS<UrEv&2_I@Fh@}vzfYA*TQ>6mpKioN1H*9XWsoP~Ly5V%g
zrS)*Q+F|1`SKRRY|5IfR`efZ*N%Ru~#90v$gWMSG##lGTxiQ3zp>B+H;|DiNJW2Y_
zjqgdWbd8qiF!JHDKpv%x&~$N_?Pki4vK(%v{Orb0ZtUKiF8oN=Ou<oZ2pR3h80wNy
z#PM!SaAUd~Gu)Wy#w0hUx-m@*9;Td>PsfzdPj+Jpt0&G!+)NQ%*D<5d*ELGEkDKYn
zqGu_y-PluDFXR_SXA#9r#5r!vbz>e4=FUi-Pm(fNeIUEYjl~jmW3L-a+*s<yW;eFD
zvCNI-ZfuY)eHXpLjg@Y!k|C3I)Ie8tYBHuJmu{ew=XYz|>bdTE;#%T5qQ88!q#l?P
zck*5IMmILOVPB%V^&mxzx4Pvf47RzkU1nqXXi<I>=UF4_PgQ;HaAPN<zspEHOxYzi
zN|Yo?HEQ<iyPM91NUlHJ*yqLxH%_{-UplIx{*W7o-8eul(SuU|Q3=w<Ki&8xA?{Q|
z{ZW~aM^cW+;BNUsqQ~42JWl+J*rHDjF_0{$+(@breVQG9qJ{2^lq)m&Zqhj!n#W1!
z-57Q*?YqZGvu~!v-%PpW#$`9&DtM>hiW^tm2r39ExaP)n*=iJ&RdB<No3b}5$f4kt
z8@Jtf?#2t*|J}GNlh&5}jCjwD`_gdozlnK5@ekd2<i=A*dw#1MHb~bwDdjPvPuy5h
zS$)>O%a$x;sb44jr5mr@$fBqd`?VWy-1y+eN2#G3@7#Fr#y`wkx|L3z_!PH9N$CYF
zQ4)fyb^kKy6HydNick=#s5KP-f**(Iq7+0ch*6-UE|s}DM3+^Om;Y7!zV_s7nte_M
zxfH}Hh*ywX!DkBcDafxNkAlVL6D8zTFy?2&=fp+RlSMIjqC|O_HL8Guf;20nAXdTb
zM@ga^+eR0rIO<W7v`!u;6;V(^fsmpKiU}#H|AJUtL75y85|vQ$UQ|g1rD#@KbP~xj
zxL>T`S!X;HlvB`JK^q0~lr~X86$J)zy@D?llqavCpw7dT$_gqnDwdTLTrRE?GI@Kv
zkgB3jNv@_KiKJQexUUo>E2yWSzJlrs67y%&P*77r3P<PMgA}n(RZvSoZE;R9O@RbS
zk|1rYt3X1Yj%i^OrGbL46*N`QjP?x`G*Zx*{2LY_Ht!PS#B&o7JERE_rMZF@3R)^?
zrCEw7^$A;sv$R#vPC-uvy%e-p&_O|lf-VX=D(WSCCk5#;^j)K6hm>e%ij^+L3BOiM
z*Hu9`1&>C@^^nobpVnRSo=)5HEJe6%Vv`=Gh*@t1eI%CxtAcM8^i|MLL4T=FLw%<7
z*q6~lRJ@WnK*2x-Mg=C;_J`Ib#ItzFvPvfvXni)#EMwHyAX|h@fn9-Dflq-$fm4B7
zfx^1E6i5Z+(X%`x_2*BM=h3or_Bos8Q6Tj>`Y^?>ARu$~Rpik#tZIiedBQFg9;9Hf
zf;9@(Dj1?*sDhaaei5ax{yPPu6pU8zy@Fv>e%hcLu3&_Mms@osWgx1h{Gg~$z-40>
z{87PAjQ-4qh$5{UqhPFp$qJ?@7^h&of{9WknegY5CMfciV?*e7UBWqahCj~}fBZ&@
zglp?{Qx!~8ApFjH-L<Tl)1`;cq|Hze+>w6sMoQsxX-Ug<vt*?xSfXI5OmcC!Bx$~a
z1q$XW_!zI7r{KWlcyaqGYvw`)%UkLeE0FsPi)bmjywW2#G#Xq>S*ECWHdYdsD_EgG
z#3h&GZ+?mueHC@dxLQG2S*KvVf>Vn80UtJqPicjMeF`=y*sMU_li4EVR+I#JZ7E+c
z)|M@5tAbw@{3fpA^vR3TMA=5Zow$RzQ^79w+wa8PM6ut))V<Py<<;4;U)rVMPX$M0
zhl$f4RB(u7fg|~VPbbP@MsGJSaa6%E^1r0QuT#dKPCL%%r^5R2j^q>MVt<mPeb?wS
z3eGC{Tfu!<k_zs`>o3WYS8!gz1)06&qhBo3iFi@Lyq5aUyF_16a8-7A1-E7YS8!c+
zepyiG(&X)?T-h=uh_O`oCS8fWggfMS6{uWN73d$Pym^??)ZFEPf`>A%6ugp^rQosf
zWx8hyo=Ei^$r8@$b%IY7WUCk_<T+ivkp1UOns}3fUQ3qbxK(*0<bWs#yEigM4fXje
zN55C_kAkm!NcQ1_%nhlt2e&==SHUM)6dnXUi0~lNgA5P4c#y?|C=V)oP{o624`Mth
z=s_V5bRJ~&pmB4<_*Y5UNQCF}AUk;uVoqW%Vs7GR#5}~$iFt`vQxhb+g#3&a@Ste6
zOo{3oU1B|m^B~@X!b}pe?CI1ZV&K7sxcCYbi+NDigMVHnN$M9=ihEE(voA?f%7fCH
zQpSS>jo->11<C#*sT@&Aq6d2NFEyn+$?4{Xic)UvbP1J6Y`0Pj9#r+9qeuP9P&E&d
zJows!h92}Os+X@$edU3Cs4&@slB3cjR3}OCpoRxE$x}UOprzLGAkBl?9%P%S8rSil
zt_Srzs8560dDG<nZP<@>d|I$Y3E_V<GkoKLU?bvZ)nkP>CU4?FQ<7%H<{q>lY3V_G
z60vOML2D1%Fxr;bj=1Mz%8YUu)v{%ZO$RC`ycyDvP9FR`(U9)J5917-Wj;jeg~;Qi
zt{(NZfxaGeBkArz4-a~JP;H)}53v_9cZsy#B>R>meM=$+!!2={%+=3>{vHhQV4w#s
z58NIYJurD-^}yzV*@I7W3_0f*EX+85wPEH$L+QGDy9W*roF06)EJ=dALo1K-1f@Rm
zt-m6R(-aT99{4;E?jcH&JWupX+v_Drm^egz8W{3mkO#Xx*yF)q4~BTK$b-cm3>D8F
zO!Hv646z5pJQ(Z2I1h$<Fv5eMq(fNwk<up~{75b@`L9*f3P_M|k_e8XKE{L5B##>Z
z_sgS<dI{q_nBc(_>JvTaye)MydH$iPlVpl!%Y3{<eFZxFi<_xT8VubG4`z}tB>v*T
zY!Bv;&+=d?f2=oG=8t^&!Grl8{Fyyw>HgI5d|`C~&DyS1A8^m>tX5CL5)W2*uu}4d
z9m?}x50-1Z&ZPKN9<26YqX(NjSflA1JXq_&Iu8zKk6G`*v%3Fzt2nl+Jbjk;V>f%S
z#e;1gZ1-TR48$zmZ_K;Km+-3xABU<vUu>R1>bXODc&?%0D#I=hc543J+frLBH2m(t
zGXCanuM{mWzE+IhFLP4bTT<Oo_sQzGr@pv&z=MM{IOM@e4^By~JnBV?Wcic&5#mt~
zj(KpL{4WnqkW}MqPGLOl!5I&(dT>p$Gxaj@9PvC+d|n{A=)oltd4)+t30D}6sU9c%
zI{8fxZpg%zi>6D7f?_FW%XgSm&5I;2?s{-fHVO~!Q>@^{0}md0@VOUxy?EroW7&AU
zYTG3|@!+io?>u-)V^N-wJSV>J;H9R&^5C_`-;l_K*n8P0$)oA;19>F*NAiD(pX4Y&
zamyUFAri895vA2Zjwy1$I>scO7g?!i^CG(!IW(I*UKE@Vo0HL8#N1wdMk1F^;!v)t
z1oL^3--|@AdY&nvfEUHd3la-?5ld2-81F?K$*O9xVqAp0D6tq(#4kwNrsztLlq8nY
zQcHVL#)||m%4!O{_@Y@txb$)q!%;o?mtK_DEKluAujoZ3HleZ?RY;yL)XCg4kXI#!
zUzz*Li)1f0d9m4x>RzOH5%OY?7d5=7>4nJ)vlppeb?a{6#n)cc@*>TP+FsQ0qCWMy
zGB;WnT94NC_%lv6<a%BRc6^a^_kN1xYDgO)A6po{@uHCzjlF2%MHer+dePL2W?r=M
zqOF)6id)>=(A*0_2`xxkdeKTc;YCtwMklpUliGRF-i!UOl3qPel4u7ebtLwmnA(XX
zo!FU}LCo{0h!{6~p482YzFuT{(cOz4UU-`udV0~zi{9j7(8mkGZ@rj$KciGDHB0%H
zhVvzB^z)*>7e=r8;nus&3?-9e2hegLv3Isiv6Rr{b&~kBNJpK`aL}jK3mb`DrcK>+
zNo{gI)#-)Hi(}0UZZCW^7Or^Vp(xx-lKVxHpQ!<2koe8xNO3-xeY?zy<z5W&Vko2E
zc`?k3;pE>F<>)`ci<lOMAH4XH%1C1Gr%69~@v|4Rr2emxMtL!sWU3cqNJN}OGS-W6
zUW_N7K=ky9mDGvk&s!R{T~3|s#S}(G&(X>-jeNQnGrX9o>A#Rj-ip#uuhcNxi#cA*
z^<thE^JSPc%LODdz6(hfX}WSwe#nodj8=G>B;V(h4wu=r!i$w&tda(vO_ivG)iTMw
zxN=cVbv}+<%O+nh*=3y<>%9=Nfhc677cyOiZ1G~N7q`8*<HfJEKk3COFMji4n-|-u
z{NcquFLs1^Gs8}jU0(d|#kVaCyNP><dx<jKqVM<O04+~=anOrHUL5w~PicG4)ThTX
z<P)PZGmprcZEiR!6W~>n^v|>@>Bq>A6Gi+>cCCL?gh-2azDPRlMMl-=^IA>Lkev16
zoLBysI8_$Hmfoq-@C&lynj0>9amkBv^%ErTW$6|gUnO4CJY4tU2Kh}*xg}NYrS|7t
zFYbAf#fK;#{?<|-k=&P~fEN$RzvOvcrR3PhUOb`l)Qe{%vOkC)3D3QFK}Fj5(u-GK
z2$AsGi#J}pW%M2KUoYN!@eiBx!HbWw7oANNOX&e=-Nh5>pV+hrA0mCK6X|EcO|{db
zeTea)oDYdUb>q_cP{@Z^AF?u<jhLM%sX2VesqtJs<o4k+AM*I{ImNBXv3Y&S=R*NT
zXZB8AU7<*RALhSEI(alBPw&)%KCF0^v^2U)Ttb(^KE(L|T6UA~MEg)i<3)TZ>Vt?9
ziuv$`#*34b@S&s+rO0JUm)25cqmUXV_)yjd8F2~MIr^K+bkY0pr4RqttL3E!eCj|~
zV2RJKtCOS>mC8h!U{!qT)@mSDB~~LQ`B20WD@oOTNb%v04|jd2;X_RyUPkIK`jF~F
zEgxq2Fx!VTA8Pv$@?nq<b$oc=EV{lA4J5R$Sl5SoJ`^vTGQWI^;MYDh^r5E@y?pq_
zht8eT+xXDdhn2-M8cCH%gf}5+>O(V4X-?9@hnAYsN?J;udsnJtY3D<GAG-R~Uukvl
zp`#BOK6GKUlMm@6lGLP9e3AP4&eFR2dfg`V?9{X@X>*dk($LgyK1|)1)}59;WW<*y
zNsy%8KJ@Xy=7ZfQ-@-*-@wP6#pA5$cLu?CuIj<p8sxi#a>1|Sf9|rg^&<CRr78%et
zNq@giGWl?QnBjoOAl&Rjm{^%A1{K~VIb>RTRRgCK@lT34clqF^fkOL$4;~-9RD49g
z_<Wlr*(H1$VGt)lsaV&v8(q={O9k4hw`+#T+@4vnN{`r~KJ^0Ugxm0)58wMR%!lDV
zjPT*;BEw7{j?FcU^x;Pze)2(HVf}&1CTE&=OKP!AhM$>tln<jx#t^6aFxH20K8*Ka
z0+q==OeB$lCXrm^N2q3X)=km$#B4FsG(MeV264Z9(}0zciv_9D93SS&5cqJ!hk3H5
zeApq?mLFgHu+WE%K5X(~k*u$Nv5S3JB0Eo0gFFmc>ccW0*88wQmQ0(h%YAY=7S-y0
zlq9Y2sgL$n`ml;*HNCANt|hJ`e!Qi=fm3yRsUHW%-Fg)HszJhL+W+dqZ$4}x-%2d^
zBt;xbsFM`E&4=x>PN%3(45dVQVkJ&?`ml>We<$wt;c)xtJwEkI&U<Ag`mm4sL8932
zCpkbfi5_C~u$H>KkNQpEqduJS;k1kn>mbT;AO0dgp(!V&8?&fQKI22YGx@v^S@Nq7
zF3(CwW!IhaVe9ooiC*wQ{wzR(q+asjGFS8!;w>Mpl3XKRC(3%i;loXhdoQJla@(iA
z|G76;gz$S(0UtieSom;Xrmhn8z=wCaBHl5}Lm#Hs&_5zR_TdSMC{KNOM*f`mLepRR
z@QVDkro8dtE&04?y<~h(xBqDM`QXDxaw%6TBN*XV_oyhpT9ZifEPl1NQYBG@=={j)
z2ZAUUL^eON`?1N7&3@$YBc~r<_)*-i);||>74jpuAD{V=$B)nb$m>Tw>N#^qh^r?N
zYN7f4DBwpymK82VL`e--DVBO+Vw@lGB$8T$ev0~0jO2JO)nN%gO8OD>BjiUZKT7-Y
zwI2=rDC0+hAIW}H_oJ*-UaDFpx{4p={OS{vio`@e^nUeX<V!{?_)(rjt}(?X`~a>J
zmC8gBCCMP|wI^5gtJi4Nh)Kk+h$4o6n3*Eg{xZ4&GuH5<rXQ(()bb<Ek2-$TrEzW6
zO0tA=3D)zYK9j;u!oO(}F4rC3_|eFZHh#4Aqp=@Nq~Y!3<dQ^c)s$IU`q4~^Yp8F|
zLR*ka^lgRcR$AR!lZe}Pezf=FnK4eXckrX5A6=MB>^u39&Tbj^EK;J<Kb;xPAZ9*`
zl*)AVqnjVy{pjIGPd~o(qpx4RNbluGZ$J9@<*WOdl2Pts%iVj?<&kBkAN|CGA67s5
z`!T?efqoeM_@#VwOJkfo)hg|YGWlWlW5lb-!y%pAPnL_voJI6<Q`+W--4DeNj~@;{
zoPM}uy2=zfmn66A<$k-|PM4=Va@Sh!SC7h;>Gi`Wb?_tLSMS-%T~oP?J=-x&9_C6-
z`j*T{?vysjkHLP-mTLPk#E+p;t{)@)_|C6Bq=@pW6Gps!?^kaK5A$O<iSXx_<0a__
zKgRgc+#LHOyX7Z8er5+|EY*z)_vDqt(IoOLLpph^ALAGu@5cl`CUPLA6DRpGnZ(z+
z#1xXL#A!sC6{4#%#E+R&ej(2KpVYb1Og|R-vB<CfE?C}XoX^w+L@8aw#Zr1hz4?6N
z20xbgvDB{~CYJfJT5SAS?#HeI`W3QjD(P!^GgivNshqaTkGa`0g{+lvX=hmP$FSTn
z>m+YCgG8fd#mQ~bA~~WqvXtkpqVf{s7C*N7u^@nj0sQL6Z?XvlkT-yBer)&SFF#KB
zvBQs@e)TAG(67E9aw#femmk0Tv0M5-MZedNKm77Oq<R$o?@I-d`hB$DPkePdUh*E0
zIv-CGBH@r9hyD1|k0UfVP89tp$uVN?z3M^dP^$W{_@o~%WO@2=%8%22obltVACLTa
z?8iB_<+2}F{5bE&1xDrB)<u#_T2zMPD!Gt{B-e=7Woz=|CiyMmUE*!x9iq%e$#swX
zZ{mGF9+1dfl_Ys4DENemkY^-MWg}(A=bA1z`Cs|*+K(&&L<MjvQN4R3PkZ0c;4SeT
z@jdY$nb;&^_EGx8k57I?1P~cOnY-#6s$mo&zY`RU4j^j)*#at$38+tpbpgna{v;|P
zdjNR?>gJh)204kM=L#S<`Da8~cOq`dt3FK37f=s0rKPw4@(0xMEkG<7K%oHso@0m&
zpzbpDBvU>NQaFIPfck|H3Go3G(RfjkV#F^3C{9v>Sdu9Ar2_aZTc(hN0Llj74nPS2
z0h9}%O8{L1NDQbKHPr)12|ypfmjRRysMqfzRt%s5`G>;sa;v0L0F?vkIe(P^s*xCo
zqEsarcP3SM68TpFBx|Xguf*2~pk@G_0_rtsY5=tYXdFP30Me+`51>H+wF9Ult(K&x
zN%aC4c{HQJ<OJbzk#Z_qrd;WKEtR2tt{hPk{U(4$0W2t-wj*D>7>i}o0Gb8Rj$-ow
zS_ITfq*l_yIie(0cuP7L(mH@Pbk$a73!O{FL~kEJ2fCeILf0_>DM%jlh@MVkvFS{b
z5l}CyE9Hyt7C`p^tV`m*4WLH=MJJ~A4j}$XV$T5P-c6FwizI18F%kO&u<m}MdqlCm
z0b~ZyD_-AE@&;fFpm&_UKXE_+14%?N24EsLYl<a+r`a+kNhXXv04L{+gLo*rer)S5
zF7lz9)emua0+20EjvDg<@CM)uz#l*$fFA?+DWHBp<4yLMU;v>21_dyf%6G&e#GwIf
zT#+PZ$8+j;?nwQf;xOWH;t1kM;t#~UhG?<>Ie<}8jR0l^Fq--pq7)~o62=BFj>`A|
zCIm2%T=ejtSxgFGasX2(P7Po>$uwf)W(i_8L$jYrB7ck};%xG{0n8z3wm3~h3B9dx
z@-vzF0hGK`Rem6|Nakb!S%QcPVo3l?1GpQ&y#SU4uv}(B0H*_3Axk@e4buF8dRDwD
zpdKAo2h?4<a*TSazlO?M8O;FJlk4SAF|w%tg%LK`6u@TMZwX*44MZ1Lzsh2i{Xc;1
zvXtmbeC`O~0F5gY)$b(P6@a|(|GR8Bw&dMZ_7L~VQYG0Jz<!bw9Ssu1i4=V>fI|Ts
z4&YCgcr1Y90UV*37#t-D=lUyv6I%A95_$<IW!hJYmVa<N6Tn&NgdVZN&joNkp#HGv
zW&juH^I`y(WTWH1er$V_cv*&TbJA5wdY*WN=zErUEr9FPZv@aMw(y012C<P}Io+a%
z+r&G>@D<130o)JZp8!4t@IWU2^T=lbJP+Vu0FPuQJWPBnb6&#3#3zh?$`|o}*B~!s
z7p3?%fL8&u&95fCq4JtpS{IBsRJd^1{vDO~G#j6)|0vTSe?(+ZE#hA$3HcO2L{KeD
z<@q9>J&)8k*G1E&KoA9khzUX$L{>TZ4<b(xpED_Y5V=WyydRf?BquRfP%T1Sea7gF
zeg@%r$%W)2S;(Jp<(EQR>qRUSL~IbngD4S1;UMCI2)8#r2wN+?RIDg-6(NfAVkBQ^
zb#}H@os<lsR1l?^^mpOH;-O3s3A7O|24$Jlw@oqOi9zUt$R0wD5WWned=SfmSRO=$
zASwo73Bnpgr64K?(JqMgK~!Phnn9!nVF;osqt${)4x)MxJKE@zg7_+ko^AE3OT<e*
zOA#_IDJ;DPQCjgwfrwf`qy^E6*~O-I5DkO)hCNm%h`K@43qrEjCw?771LhT1B1#Ys
zje=-Qu?3wp38E>ZQgrQt5mJ+8K{Tf_zknK*TrGq6P(bw{CAJPioU{p|EsF^I>_AuP
zL39qHBY7to@j2=q((F!DMi5<s=oLioAi6SDhM+r1H==ZJ50)tZrq@$Eb3*nB;#-cR
znKpfc=pV#@ATk-1-sl&EOjIEQHN`|H#vlgLgOo0wO$8&QI9m|*Abt$uCmK6~7#_rk
zAe=$Cf^Y|+1mO=N5QHZPFFp8z$WQ+#O2o%LN|Yd76bvF1#NZ%?(2sZ?#6qP+DK1xm
zh@n9Y3*uob{dYlpuO&$(v%iRxsVD|wHj?f7fukl#;zUFVKTDSeF(HUiL5!yVF+q$Y
z8B5IUpbi1(WMUALv^q=<VoDIRgP0S<)F7q>F_TH+TuPiyK7%OPr8pV2UpRcTh%(S~
zgP0e@q97Kt&hvv<NV0&rWDq5zpY>eAHMKNsRzU54SEfO5MGz~4cp`cbtAbb^#K|B|
z1+gZGwL$zI#O@&01+hMe%|UDl;#nL0h9LGtMr@QqV`9d))^B22_nt*cSrR4{jMy5)
zuM~fiHA1pYmQ_3bcA|`|l)ICB*Z(Mcg4i3x!5|LFTxC7Q+x{T-(SyRaSW@)|WULFR
zJ%2ceKeata_LCz)92d*JhNHAUCf$;%f6-1K$`U2yFGf!UQLRk8L{A5CCWz}n+z8@q
z5a*cX5(_;a#DyR(2C@HH<my)X{~P7M?8%pDc7<kFW$$XMzeawA{dtqAw}QA$GOCGA
z`sYp%_k(yq<t{ghdqMn7BGWQgIi1X|hjj9YHbxHCV{+LopOO446EBG8LA+q}Wf1R!
z_$P>0jJ_tmA-*MUPSw97Ngvbm1BrB3!t=<F8khAI5mJu@5~4zg)OZ$>5BVdaH6<nl
zT}b`AOzGjQA$8x*7D5(XjF6lm<O-o~2=zk99l~cJlnEgrggha9&g>;a$Qwew5b}pm
zAf)c?;Sw_oMidO8PzZ4$#M3fXJU>iK560DLuP;m<UYJEfC>}zI5Q>Jds*S!F@rw{<
zY)sX+)(cK;s~_H0|Gl;nONCHcs>f)KeulCkfc{g7<z&wfp?nC5jOvL}C0C({3L#XK
z)It%-Ayf*XGV37vhisWuLP%oNK$Ln`4WXLG<%h|#D!&S;ySHq%)#)>ZSVQw)lcX{y
zZLJW}7_CjLquDHsiK!n#gAlAC*h2U^goYtxgwQ2~Z)npZgq9?YLTDU9lMrNrh5NH<
z2+f$(oEUC?s}Nd;(2m{ShI(6KyO<cs6&{QB@)y7qH#E_8WQ!!JQwZtgotY%c@xJPz
zylV)(Lg*brH%;#zLJy7i)W)|@2;YWa38|Yy-w-lG=pVv>5c+9779Lrt<Ur;%YaWat
zm_k_APA?mU;BS2mVq;G&k*iRIJp@Mx6KUxT!4<-Y5JraJ*762O6rv{tFNse}^~>Qt
zGeepX3?W2uPzXaq_%4LOj1D1&`%TQgXLOiM-RzkXl`x!2xYK?J;inLOrt%|E=E;qM
z5u?b*5l0ipgfNyQ?0G!-1fuwq&3RIohcJbmGnF`l%WYZ+)0sLue@x3v!?8B{ORe>@
zLYOU!Za8uem#<!6ZU`%eVC4|Z3t_&@(!uy@FcyTcFof!ZkTM91WE4VpAHqK&ED5Qn
z^nZqMB!s2X&mk<A>>=z4VQ&a4Wo3o1O_s2=XbY2JbqE_m*cif^5Y~oJs$vllC9DfU
zaJ}@~pGiVKW*9bwAoweBGjU4@TS-J8oT1wMCe!tPl925o><D3J2xEE}I`uI8PO>Y6
zRGUGR-66<DfrRW&BL4_sUkC?7>LrPs?eCY0Wzio9sn;fdBt{Fbo;&_f2y=?*<2oA-
zvpDgfp81DxF@#I9gkz$Pg>al%{tDql2q!~0Wi`mJkIxGUsZW0-oF+LF!da4YA@yRU
zLDdvV63YuAyo^$RupBW>cR7UHA>0Y!N(fh3pKBr93}HfX^<RLmhj1f=VkLFL^Uh3L
z(cW+?gj#!bQsKKH+za7_xC-I#5bjIf?3s^4C>W)G5W+*&Q1~xS)%cOjndk9Bp2%dN
z<-z+&&qyTKbCSDJ`d5;@r{Q%7Z%B?r>EF`NyO4Sr749V=)!P|9Nax7rHVBml;a^##
zoCc)_A!3l)w^4%-EqbIrl9+{f;7)wZAm|36&>+MPLe@dZHVB^&Lf%2hK1lx2DJtjx
zW9mJiq$s}c@rB(Ta+WYlmT;X>KpPfVSVk~`NY1cigeB*kCiTRgp6NxRAVEb%k({Fh
z0Tm=ENRl8~lnhFc|Lr%Q`Tl?B^ttEOt5>hmtLju;?L<K*|L&BW-)XLaEK$ai_MuY9
ziNa14adM{%GuS8D-s5mOk7iHITdkT!au;`^gcIw#D=#@w(g_M#PX0B!%Ir*%GEP{X
zDDOlCC-__KG$+c5PFbhf=}i7by>29Tl9MVrQOSwQPW0=f(EftX3XPnqY<by<o81+f
zrM#*W)ub-fov;g8++TqcuQ)+6HO*m55c=V(PQ2y>Ne#icbH47x8<McD;2M8vwvysR
zZ3)&9On2f`1v`2vPxf0GThEDexy{Ft4V-A`#0{3miA*ONIWftJ$xb+&c+-hdPK<V<
zu@g<4=-@<0C*E@6Z726!D&0yd`;HSI2zl3u_nc_TzUZqADsOMb_8DQ}16cC+ooMdF
z=bt#({tTY$qO_1CEuH9AB9#rrqqP%l*wlR#9&MdyC%nBNotDB*PIP87vJ+WxCyJM|
z_i&=8kgkH=1hbsz?lcEr?(%l(96Oak-ph&JPW;`+Y;fLF_i>`H6C_3ITZsLg7$D^t
z;Y79*)2ZgfrasEJ(aJz421(TLF{Z;0abl=+^su<l36K0;J>J(No%p1^<48mE4t<QY
z`2;5>vVF3Yu}+L*cZ9q07%#+AIfD+*KXGRtOh2{DGR29hPRw^=ffLhM1}DN!X!I_&
z|GA2^?{UKAgxiV81@moS)kEpa`YB!(LrUUfzZ_2Y3sO1YL{NB$W8seNK_xq5`N!3W
z6S@<#oS5xIR9flKpJ_3t`P|^2rzwV*$`PcI8BX)R;U7tGrf>>5Q^g;T%yF8N&s@QI
zPJAq6OtzK6Pn=lj#C|6ZII)PX%VFrmIwzJm@u?HbocP)a4vo*~5>702qDNPyLB8yl
z`3qntzNDRTmbn+w|159+igoX;@Tc~~Z=6`}#Og%ZzI9@y6RTuIuW*`E@yat9EFLjV
z)`({O$<KNxW^`1xJF&xw4Nh!i=dztUE1R9z;>3}Y=BV__las9+(dF&i1W5)r?aoHt
z>BRSRs?o}KPV91G!g0rLY1KVWb6RF_ue2oHEKf(J!jbfSPW;th$-0~C2Pb}X;*1k#
zo%qR#gHD`q;-nLYIGeFOo%qFx!z_S!$T4Za#=VrI?C68(T}LTbkEF9PIbCcknf9yG
ze6?|}g1upR^Q7}<-lX3+oTZMZx+(elDVvH}PdgER-+j)B-<|lwiOWvx%`D3^)OikA
zCtBZ5e`~bDR=ViKlic=8g0#lj?}`&wIlAj~<FUG&{hILW2?<?@F83#0+KCrV++qdA
zz17K<zn!@4M1gDRcSLg634eYEm09w8PTZGDkw0+aVS+z$;&Foi<HWzhp9nq`d?xr@
zkZHf~q$IhJ%Y~O*DCsii|J;H_T&OkPlI%i?3$J%lQn?D*g*?Iw3FdVnp9}egQ=#@i
z3$cI;1w|4MQc~E3IH%>JE);X2Z|h3MUD#H?TL~Aw9I6=ES;SH<l$LyJyYPYk<uc5j
zc3iN!kmf>JmpSwEsOCbs1TQb7f(sReR1&N#__84Ns|cwo$Y+(5R2L4xS6r~Uz;ike
zyO391cuhzR!J2}FY$;SIQ^4_tl#mk+r#^)h`7Vuw^{ONCo+InkbD_Qquef1zBg2IT
zE-ZE73yE#$LMInGyO2qnE;w9x(}gxJ{x%}{MGvL1=rnVoi3@KDe_QZf!FQ<N*L-!=
za#X$dMAB67_DJP@7n%$IK(LhyErhfb+}pwQ79Oo#=3tNWwl1`j>bDo24uTy8y|+zQ
z?BYUKD!AZtp_>a?E(~&EunQc;-CgMALT?v(xXh`qrwdb(?IgF(X7mvYeO>71!n8eR
zX+LyfbuXpA3j^2=Ny+5dE_Cl@7Gt0bYfq-Xzr-wF(K8uCTo~%YSQo~z0Xrx>bq;f3
zxC=ci+efgSi>HopVWbPABn!^BqorTEwXv{YIGZgzm_FWx2`)@`!Rf+87bdY_E_2VB
zrrnkK-Id8w-zP`Ssh+~AF8*mTd72Az%h{XWv3<4M;$rgDWR3;53m!J<P1B~=1xk3>
zx+s1Z0xry95*LClgj_IO$l<8DnI3jQb0H#}bDhq%x^3h978O!_tR*IdS+9JWGQ)*)
z9>+`<W^wHFQ$7+rlHQH;TbJ3Hvt6iC!M<*aW9rTHc`khH!ly2rIAxpf!U7i-a)kC#
zW;96qgv~X^^5C|O?#K3DBz>`1khNPP6>nU@{+ZO8`F<|V&cXhr3tzeLz=ek{EOX&&
z7k;IE7rt>}IV<bJJ{P`qVTB7DUD)I@FOpZfaO-gTS{GI&tgUuoO@jB%m&9wNbuO%T
znOE`~1W8i2DVtr`BK@_)g{?00)?m8?+2h-U{L{tsgwr?77q~k`;X4<0C3JQR*(11D
zkk_dDUAUNSUMd`S;eZQ2xbUM3Ke>Q@%25{%x^T#aBQA4>=dAm)%bYn6vtC`yOVBpI
zrTf||jN%1$pF`=#Tp;GPrTpT;-i`{!)SFkJ%t;r1bK$fLXI$V}fOGpPmw7eFW~ahg
zsWnS`QL1@P@OQ!Uf)@l&J<N5<g+E-lOl!Ao939t%ToJtL!Zj(F`Nhy}+YJ|PO2_>v
zcw6w6;9qpMCn<jm=cu{k!d(~cxuDdw-WMU;;d<UAR)<+Ua^bNHh1@9Y#y>9n>q4p<
zdZV&Wr0Jd$U3e;-<$orm#ckUQPIq@~x!h=3$xf2wHiJE$rZAXWgvoBC2%&^!u(*-O
zZBE5`-R3y`!j_Uxg82mt2o`jk{(mg5IoTF*qo^Ad-KgX?&n(5<DDOrEH;TK>(`5+}
zQvQ;Vl5UhrNJ_g=Cc&*j(ge%8Q7$3BIU>2hbSr0oS*Oi`P}$8r{83$E*>TLhirc(_
zsw$=8iMW~@HELN&m?PX++b4^}?#8Qbc&Wp>Q^Ac^ESngq=|(L#UU&a*g&39JaHFmp
z_1sWIf!$ZzZFX@TsZP2ZuN+Qy1RV7_`MdF!8*kH^&B8n125vNTBh!sWZtw=Ju@uQ+
zHdGqtnKva^A;oMl#x`Lq-OfewjvMc~(ZX#`gYQwe&DzY3_uXhpT;gEYQ-92?%;`!-
zb2lb;w|pRl;Z+%n#3U`<<^)L6#*MaaWVzAZjV7`LqMek#z2w_L?00mdlaS7Wyh>rh
zE^c&{AbB@8R)o5e^q|Cz@or3TqnFs}muQXNZuF5d^c7?=n!d>Wp&R`rqXFU=W8KJ>
zAPYZG$RNSNf<xRG>c%iPhD&giAT>t_87cVFjkM81#w21N{GDr@7(eu}g}ygY%HtGd
zuT5g(B={5|Q{9**WV&FvMrEnya>MP0$Bmg+lD|J~qaBVcUV{4E@Vha`jk#_F+z8UC
z+{kew<VM(ys94YhX(S?qJBpL*Zp7~gV@z8-mDiRO@|YnyT!r#cBGpVcKI)w{%Z=GW
zc9eB+&Y$PT$8IckV~HE{Me~z{{sJMdbypU;u}JvxKQei%ZuFDq9=Vf0b>lNPK2PW`
zb7QISFWmT2$klb`toxPlc0-k~-S~#t-7=pxd|9B(h)*0V+*s*`#fv;%ta4+u8<RYk
z?7<oi95<3ZNbz8u8|&S;=*A^CHn_3Tjni(NabuGk`5Tqxjm$AOHoLJ!x@M~zyV&&y
z)3>?dn(x>yNV3C?ox;Bpj9AK0$YSi4&fVk2ULoHL?sH?m8wV0TdB}|)g#YNqPn>F!
z|F<LDK~c_1O{Tm4?8afyIU;zJ10gjzu6f*zUqtg)H%_>5l2cQ8JD;)q<~E-va9C|A
zScc@38(nhS_eaf38lHpBa!yD!ZxYYB@w*%6rFQ90%qLM7-1uaggE!!RxN+HyTW<X2
z#ud@OCT+rcT@`EU_4Mm*+~5E&p2}guN$e&khuro*1zTT9{yW}xZoF{gwi|ccxGP1a
zg=a$Uxp6-sdEmyw1b-ytG0y@*{!PfAxbZZ><JEu8`K^qF+vU+_k_XRcWwKIqj9eZN
zb9+#%q=O{Y1B(Y)9(4C0j|X`@DCa?W5Au1;DZP}(Y>oWF3kc3}lr88%A>oAusaC{;
zqQZ*_78fj$h<(X}k_jGf+tMDC@t8{&tb!zI9@M^_Ue<%Jv$Ghi;6X(X-t?fc2bCo4
z8y+ZB_TXg?s(4V<V?K_1&4X$lRA*hDq}V(FGwP!(o?y-ruXxO-91P~4V6l75a~6+R
zg?#9AFl`MFYI;!1g9q2s+tx~Xoh>k0;ho)@d5+p1)bXI62lYKj_kcSPR*0FGC3QXK
zl<VGYA!dmEOhMjmH}IgL2hWm|3e7X!yOGDdt!4onqR?)eqlpJ^dC<m#wjR9g!8;x_
z^`Myt8xN;b^IZ?#W7(Q^pE|%AzwaJ1N_pRd<{o_DL5bvK26@THM`|rRXz4M}(XBja
z?ZNtFyK{kq#WrJ;?d?2h??G2l=-@F=Ml{~pgO0*G2~xPIujQ>9>0Laye#+6TaG7FR
zN;i*rrmJu}t%nCaSrXRNgI?0|g9Lkf&_~GoS9<jIpzqQ2ejcoC=inIp(1ZSrJ#8Bx
z5(=|D7?|LXPn%E7#(!IZIMjpD9*pr|m<Pi>7~wImekmU*q+P!3QPM%nmzu53W2}^F
zya(gh<GIbJukVygV>u^?e4+<)hnagtPVr!>2S+_P=D{=%rhD+22cJu6ogOUoV37wd
z58NJjJn&NaW_l!FwwZ+oIUdaLz~?a^MfyDmco3A<GXz7lQ`W&O!X9XJ@;kPOpe`5{
zj0x7roy6GQf2PyyN9?sMWu_nrdyP2DgV`b(o-ccjxW`-%<_TdReJo_Y2MdIJA~>l~
z8AdJkV2KBO%=M`U6FVyZbu!Nak8h-_OUx;2sRv(p@Vy87JowUsuRQq9gIyjh<52Q|
zr=blVeB;4#dc}?OwH`F-qI~PY3J+GYO%A3rxXSatd*sz@&kO1AR?b)>63&*KvetRf
zs#ePT$@cZqAbhB`(SuDMZ1!MQjXv81w+J%0RR~*ve7grb67row=qkIVQ&?=CF83t(
zUg`ARdo24sIN-t09vt@I2Z=o>$dUV_==>y@w@D>hIK<Jh*TUzbM?~lI;ngVQxE|U~
zIqtzP9{lOSEf0RBYk6?dgG(Nqq}zC~_<q_swx^^z%ewSYPD|C!2(s{eTv_#58teYM
z%zo!R;Ikth7dR3F4$czH=noIBiG|C8Om&6xYQn<KjMCRdPR$$4tAhO|%ab>W<S!5Y
z=4{MZ4{nRjqupjd-tpirGxFfR2ah~>Om{6{&LphP0}md?r@Pc-R`4GW{`Fx0q4cL7
zJdqr!voK%w%wFcGc_vXLRCpowpY^un_L|dpl2@Mp3ulh>$z+kFc+Gb`sg%pLWnM4x
zc~MYBAr<+(DB#6KFD_ByMIkS?c(K)s!d?{dVy+kSyeR5LF)zA#k>y2kFG_gP#cM9F
zddZ8DUSxRDK!T+N-|(We7iGM#dXeTu6)&oKQC6bNeV&DsBMPaIkWWfUVr(S|R`%lM
zg#3WWt9fA;Ny$9+>Rv$jD}uI!=GJ`KuX^#C1Z#LvOGwQ`Y~23q5*$z^g?TB$YYW!#
zB3(#bLB`e-Qs0YhKRFm|=tZU%okZBk3x^l&ylC&mn_hDTY;(cJUNjN%mKW~{dD{yv
z<a<YuYVV4W|ATHSq?zFRf*%wz_kRDtixytA6iI6@+OXHW;D(2T+M9c@w-q@FzrkVe
zGs(uWHTb0)B^|uzC><UDs~rp6S&BNUx23C)nsy6?-M#4Hh1&~{7d^e`<;5f~n%gb>
zNT;_KBfRF<I(-DW#J8^({k-_li~b@RDmcK4Y%c~1r}AJSgS_C^Lktd)AeWbu4`Z!`
z3{MD03K>N&daKH4ulW(v7?F$>94E+x<Gq+5e4^mAvndo#_F{@uq)STDR3WU+G$GRk
zoq{fUrZ|k(3)PE{yqGCQd|vpy2zasNU<R%62#P!^81f=4gmTS`NP_D^=yH_Dgd1Mu
z2$_-4>Dnn}mhjnv`*S5zc}^nMV=?zO|JaK~UM%)vexl?H*p&&sP)M7Uq$OT_>cs{L
zekS<27fXfIcs1n<A++`-J5lQRl^4rI__Y@+60zTSv0V7Kf+hdX#Uv|*uS)2w_F_$f
zuk~VGg0Cl;Sep796Ov6rHhV!wqI{bd+r2o++Ig|Vi=AHl<i$ZRzVm|1RQ7nW*K4l*
z*yY7;AzakN;P+na^Wq1Q?Dt|%iKHX4Htc{GjoRAB$O@t#C6<eDxcuXg7e9N=1ue(D
zILy4-o2v(pdT~UA)MwN&k?(J7?@=P@7fwN9<X10Fc(EB4>Qi#ci_?<ig5Vj+;&(63
z3OOgp*YWFLN;)r`gbCvd1OA{(dvV{32VPw9;;I*advV)qu6w!WH5Vh@6r0ysg>&gQ
zgmYoQpF+66=9U+KaeVz{<KhQ%y^R-l6FMwBHF@0gnu}Z50uQ}-<i&H2UoRee@sAhJ
zMEPGq>OT>}te*<u5(So%X&LpxizF4PDlDqmV!2eaY`KLmIaQG>tddovNRY7u3Ykgr
zsOH+d0xI%~{Mr#mKAr^<I=kB2<0};lt0<!4xDUVhP*g=R6#*4N6~$F^mUvsmJ1R=3
zcu7S`l|PY34Uv~tQAWipDvVUSRj`VRsw&ciQ&?6-IpO66D+pE;tRz@j@MXaheabNj
z9j}@SsOA}`y5R1MHOQ+@F8w%HvQ0GYDqdA_MD$-1$%9R`n6{>hS}I;w@rH_Y6?G-K
zqN0uv8mX;<nj|zute22ysHiVTTJM^a^JpMZ4OL_cX(Z?nd{eNoU=zW&1Xs1oV8VA*
zyr;sin%}H7Rn2dc+pFlHq8Yi0<|;l=(N5$oRPbY*HY(bxXeqpvU~9o+d(2ODcx)JH
z9hEPccDUOB_b%wDqLYe&Dh8?ebhFY~MIRM?Rdi9&RYf-y<G(RK$LOIVOU3Xn6dv7$
zP}oz&fG?H8t-AJ7G45NXH?vk84E9s;A){1O-kjNA#of6IHYwcC=iwY>>@p==#fI8;
z+G+NheK6fg#V8e{Rq%%zLsbl;aTSY7*lC$KLN$LsI#R`$PpidRC|9eSABK!kF;>MC
z6;qin3%N)cuVR9VKa1FltWqYbSeMUUf3stfihG6Zr}Ek-voAI~cvM!*pIuH<;ZpHd
z<67j?RX9~tFXU)7!K|j6*{SfVu%_GZFH@Rd%20*-RQ#MTn?im8%?B?tpQnUWgy|bT
zyy1hUBBJ7qinA(o6;T!ISw|Hy`jUzzY*?26k}XHYM=E9tpP}ONxeN+taqOs=uVR6U
zIc)878S_M8u8N!Evi5}>)VY>q|CnPZV)9Q^ETo;0S&LP?SlM-vVD<lO<Tsw#&Rw<T
zo8|aS#pf!PsrXvOQWewx%=l8pR~+5+mK!!2IsVM{?Il~sOSZnV9fL+>eWPNziq)*b
zWgCwwxstwBv4T#RD`};QRUAIE9e?M`Zgbf-F{76)=Gb@HwnoKT6(l^?3Ar=bx=}1_
zRk2OQCgGbCHn*t!s3e=lx2xEp;s+H!s@SRGJG%D^+xIF8M;*I346oYusMswnz~2+x
z?wqw(#gmm4s?Si~jXL(J*stP%sI5JhvF}_)mHgSK|FHd};-HFO=;ta9vCS{pj;J`w
zE>m$>1&d8nt#g#+*KE9OIHuxaj&huS9(J&`H(hB+aze#P6{l45FA4m+0foOwUyvU!
z<~Xh5zw0(NX#O$boQmI7<nkf659d`}ppU7zPn#+(ageIGq2dn}*9?W7a)rGtoXIJ<
zs+wDAu_V`6wu`o-Q>{1Yv?~5m@wbX5`Ll1S=1(G+>0fnwG02v=t>TUfb}RcUEy;dY
zMZf&nJlJs$R6JDiRK+tDkLYzX9FJA}!<qJ(EjrnHaBwyD`@bx}`HUxmB((gTbx|?+
zn(fERSyS_8zhJ)~%S!TL_GKG`2kZ5sZzTJW;zMa4%J`7#gT)7CUCf6(KIHYGkPn4@
z$mc_TpJ}{+4+qv&AUTrJtJK;G1x3i<*ekZnRjlu=s!+rSdRkE*Mm@8!f9apaeJJ6>
zOFon}9Np{pYB<zV(uYzKWaEUc+So5vX6i$AA3(Ve<$S2(LscKj`%uA$iau2G;fow4
zIMYEls5Hfzx~>9yr?L+(`*7)+Et~gxS8P=1{H$y>A0CDstZ&QFS;SX-V5-*yZ9dq2
zSlLE-)dz1eb9^!Dyq9b>e5lFFUb1ytQ=yj6bQS8*pyESqAKX58e5m6?x(@?=8014;
zAL{w=rVow9T792+ftu+<h6Ec3HWVzxl87HR5*>$+oAaBStu^uCEg!o0(3KL2de?{d
ze0ax)zL#w&Im(H_rJMTD%!i#<Z7qCw--kw5On?5shvuSB-ZfOMU1l$mmOixdp>;yu
zUPv1s+WOGWhxSSKLB$<BsM&$N<3lGOUMueCoY0R)&Er2rL^41y%ZKhh^zfml1p5m1
zq8o^v-V&t2K0*R#(#iYz@Sy~A)k*0emp`**3+YtDN`=9~CkhVnVW^N{K8zPah2cJo
z@L{9`M+uJcVYHAngR4=2$5<c6iG(GY@t@fy6X+WfJIRO15;esKr;w>WOcOGlO&zMn
zF6P)|5|;?iuC8!&a5b+Fst=#}@HyKsNAdYE!-tQ2@cR&;+xQUjA?ibn!DqIx4-p@9
zdg<sa%?Hld^$f?oP}+h2xa`V0E$pBL!-pI(#olLd@iTMm&-7uI4~u+Q%+cq=9G^M;
z&gbBYI_CQDu@5z7rjgGR2}ck|3Y~L-51;sOePsnsVherdyi{a{LR{j*<14mLWvC7x
zY~fg#nLnFja4DODKI6l8K78rpueGqohqXQ|6aD2rZp4AFefUO#JjL)_v*nqMrdH5h
zeOM)Oo~l;+%zxZ)66RDu@-3%*AJ+S@&1e1&hNEwT51V}0>_hRnj*UL-$x-}CcJeL4
zx3U4R*f>-vCt;H9l5ht*T{lO>E+2OLu%D9&^;yBEw(q4bdpQYQvVC|gYfXy=`$V!l
ze>ThTgAc6uPd*$J@}mzE=Qt=i<ipSOpK}>UeK_pH5hnl79Mqgu;-k3Ab2E5MbSU}N
zhZ8<L;1uD*Ngsam;V-soF8e8;xi;gxa0XAacYHX@PAO+UC-}P{*Zgd%oRL%6a)Ca>
z#XlUC@*MIKC#&4{KR6i*QOnz}P@%m2s^B$NP{<9zn}UA|-V&sy^J<U3eYov2*NM^c
z9m?fd=v^t&J;D3F|GkWOB*Di%{3C=9bN=<=i6qJE2Nym)6?rbdY2=v?&*Rp7c;Pb_
zYvr$KPm(CEeBfFRJ{8aHN3tI&ex&+Q!k%LBqkRjd?f7zx;*rO1K1in|pWke&Et4Jj
z{V3oE*WGQ;pUqdph5abvN4*&8$57OdVt&|yum@3`*8KP>fP(?NL?eE<1Mmb;%8$~1
zjP+xjA7%XJ))Q%dloew2n|Fo$g1DR?<^9O;qk$h4{HQ1euJ1SZY^mgj-H%uOsO-nX
zo&)$r`OALuyYec6RsE<Ygp%rhK=><yHo?0CvlzwWH3=$$HT<Y4q?TmC*w-cahTr^^
z0E4wf&fM#WJl&7FLKsz#^%c(6=DMSXeq{Q&t_dytXyoVX$jmp{DSkNo;3ka>_Q-E<
z;>Y-}9L@a5TiE`VA8-4y<?Hl!{AkK9*r>eAcAKs6cu&X#g`2e0pq$F@`_WudQNmzL
zKU(=Q*pHK|l-7Q<@uR07z5HnFH~0C;VjmT?leCjyd%+HVbQD5)CqFtTco#pqCU`d?
zr$1A=iv=3#!3JNb<lmav+mA06C|{3N3N26X<Hz04l)fUNu%90v3h(d7{t3ze;n|7U
zfqo21a2g!q$520p`7xZWv|JhG$BGr{Bm8)2jzTihk6p`@&h1P-bCxpNk1?V~%?``c
z$NMqCkKKOk@nfPNll++L$2>N*A5;AB(pCJJ>Nj6uO!H&9A6;xIKMYIe5*pWVi_;Gm
z{m>5vso?SBLO<)pp$a)4c>4VC`!U;(Ikb~6Dd0yAd(CgY=n0AkhWrTo%|$Yr2qS`w
z)%}PHj|m!r=C7$z>>v4Y%#utp%a56omdP0;QX$Qj!i7onoDce1KK5h2A1nP><;Ma)
zKJnulKbDKBg?=pJ;(tF@|C~<!B_gB|zQJVLPyP5ziubu7B}>`V3I3%YUkP6(_;o@~
zQ{M_dUy&bxCa;L=Sj_jTtNmEx$96w<NJCXBV_i$ntlMkAT+2E?)=S%N5ZoxZNsw*0
znVu|sYeKS3NVDRpJ89ua`ivv#yZm5|-?3qjq+hw5y!BKX$zDIc=P(bTQULqtKOEYA
zJo4j!A3ykU-H#i7{K(0K*8Dg{|McUKA4l1?esj+M*^k3Q$a&XuL^yw%#^7;3e(~c3
z$B5s&DE*bDs#r;QoXelhvs>Hs707w{dfJaOoQ3@O!*5;*ob}^(7L{FA(s9m@KQEfM
z6&ECm<f4%KA9QbYE`#SUUh7`w7`bY@BFGcaRX?r?r*U2b5Si+xAAkArH?48TGaR=B
zmtM6!$)A1OZ=Tcd`Eg&!9l^Vt!Dc%sf8aMSHa?qbwYTU_GIc}G$A0|dN5KFJ1<Y&L
zfBncEKym<2{CMieGe4ely7uD*TXM3M1$#Q%K{Xy%U)YiY$Q3XzDS3827d9`dQvyh(
zodEI$U<n{kz`S``HN?WIvDia%6cV;T{s0OD%u8r;-dpiLg_a8k%&Uc$0w@_kkpPMY
z%xm>x0lptG@6LF-FV5@?2XBH(&FIPklnS7903)B<$_31GH%*lZz#2fB1Su&ig!fQ1
z+h~TPd;k>!=A8?pCY{eX6LC}y;N<{X1kf^oDgjgtAU%M(0aOd1dH}Tocs&3F@Jax0
z|7WWafGq%f0IxAt+=IwlhF2xX|KDvfy7JPC6{#sL$#T9Cz;81gwFBT4CR<wxz&9?7
zS4s@lVdMN^t3N8MUI6t2cqf2&1IP$~H;kEV(tvrd*MR4^8C@H)ngz0#1Rah5-egGv
zrh7CFph*C{Iekm=;*BkZ>=FLsk1azvucO`znC{2p{Q#N<&@2F!FfM7OIhrS8KM=B|
zinSF<03Qa>KY%s?^U|wx09^uT8$i1N+6T}fVBQ6H44BU)*mrD3-szBZlCES2b!86*
z&?|u60b~WxJ%Ano+<tCj>+wcu<IJ=wS8NRS6k*0QTc3dGt9=F8fb@-i34ZjtZ9o9o
z%qxJg0SpXaPyoXM7#=WhYzGH0RLH<#mLZHCW}%P=Z&F6kB?9>NifuGKA;~^Ukk{&0
zV&+vSd;g0Z$2dAh08`oB*K894m>9t10Hy>mNqUO+p@)ZM)hu9M33uhit)cjzn`Bx5
z)1~el$m|Yh0ImQ?=mSJA`!0Y_0$9ji4!|EkG=NyZywnK<P%eK`gf2ba5@fMQSV94W
znf#zR>uOAR%J$BGxv8ns*-qQI%FYNNCxF=j%n=JS1ZN6<M7Na1Bn8emW(B~{c}V64
zFpqtgr7WO@-!ncA;6i(4J~d?lGkLM!)A@FuXRAd4EDm5p02{>`SEnoq;L`v;3*d9M
zTL3EpSjutKP5CN-WgLS6d?~?u-7OT}?qv0MQ@*C}F^i7MH=Jp^I?mL#&Q5dm@1sz%
zG5{`sU&VpOk<#6KvwU)P<{IH^C8|w<>~#UG=e1n_EGqDz!X_!qX1XXZ^Tt^CpGUUF
zRuLYM_Sq)5oee(9vLk?<Y|J~h?*w-V?iSo5xL5Fd!F_`J1(}4W%OAwlkAiIZL1Qh4
zINSob9>9%&c^P>)fL{XmHGm@$JSs@}u>g(>kMALNA|XE=z)9i1v4R}DDdrAiJV@@H
zv7HIvEIU1b-vc-wz#jozX47$&>!Vx>{BJ$UMG4N^omSnR!UZ05fGYu9mCmKw+%lGh
zcXC~0qZM$xdNBQF0Dp4S2azv`TLJtPz&`=}OK;)+4*}c@;J)zNf_DPA8!#`1^ObVc
zY+`<!{~&-zBH=f%4}~brDm@lbY`=vM`JYI_X8}BC0ggDH2GCeOtNbs37o6UMumq75
zG_#|H<REed!O!G#3-a4}@)TaTw>3XG<hurDohN8M|EK<Wc?*+2hyp>p97L5M3I<Uq
zh>Af}3W6W-Qm1ebMS>_Q_R9&<LNVS22&X~`AukD*45Cy*URp?*Agn^t1j{C3`E7oA
z;S~}Rejgow^Fo`IMHqj<QB^nus|8U#p-<&k{vZBo5U&OCM--Q%s1ZcXAUXumF=+Zv
ztsq_x;*B6KCMW%sV(0&Vl^|LM%|9vE4x&yF=|R*DqInSf{+*j&)eFKAG=Jq;Uob<k
zfnY<yOhGC%5|VFh@|!{$2hl{xTS2@h<ZZ!s1m6{8sy>5C6PpInOeF6M(g=kumsmbv
z!P?kcNMR1|w6+SObr5ZWXv-dHY;7-99yrU~9kE@|yp#RDV-`2nxr>xeL3EZ%t%#xv
zm4hf2Me!)Q1(6lRu`rH@(LIPBLHI)mgwQjHUP0Up;?E#@2hk^pEkSGzqHhrWf(Qi>
z4&uWg`Uf#ShzUUq2qHU(kwJWL*ETSSK|+QFF<8hD!KKTrjO8(uEuboKK0JsKL0lN3
zyt>Ye9TmiAQ63{WE{L&07}f1;3XgcIi9xu7@B}d_h{>WbC5UN3Ob=qJ1gH8;`%dAm
zgarzl`jn4OWH8Db<mnqei7LF->K76SB3{Vel03-Tc}zQ65Ro9h3SwChdJxed76q|5
zh*%H?+dPOlLFBMgf|x0GRy?$&Z7{3zkpv43GL6g<Ubb}R+#u!!@o^CIgM8YlkTaHq
zxFCpy5+whGBdbg%36DH$txJOVlwHul^0_E%a+~^}u@PF?NtOojMG#*~)UlOj)=Fw-
zG&S?<AifD=ZNldAAXWsiGRXgsnwc^=k;f__tAkwmsl*Mg5zeS}L9Cb94MA)YvQhBo
zRb3goSvZx+w*|31i1X~tAa(??Gl-vqI4n`$1@V0l`-JZbVz-bzf=swK2%FSme-H=g
zax1L|gZM#We-ivLp-D9=GYNGLaYkKfB{>qr(I9>e;siZeVkxK2@gRN?oew<<B|J_B
z@mmn*g7`g%Q$f6YIOA->^64PX2%lH{e{DX$hxNSJ8C17)d2xe_qHu-th7j%@`bQ9#
zg}2|9#XW+U>D3^v1#z9-anTm{r5mC^ek+K-f@l~*W(a==aho%02!%qpBMQ%gcpk*v
zAnr-<eh`m?_(%AIARY>NB*?vUnbE((NuI>XO6yZ0##FOk{!7GKLU_SbK*(&ga<S66
zgyaq(SxAatY6$o(g9_X@mzYO{c|*t-LVn?<!S&Vx!goqf6%L_D2=)+O4WVcV#X=|-
zLirGihfpGf(jk-)<(EPznXu5bhlO@Zg|JwNRpe!vFjhJ(g!w(q*e9#443hAu5JII8
zDvMgh5Iz$H%3ltlY6#UtUPY2qSY3jz2r>vEw>D?l5)$r9O!;deydJ_EA=D6g%|vXi
z5DNRvx+@{n4xw%c^+Ko<LdJnK3e!ccfmq-)RiE;>B#}GI#$v}y*eC=?2tz{{7Q&k$
zG!CId2pvOc62e<d6+#P1`*sNLh0rvFcS3lV?fl4AZ;drW{H<9C?~6`z7GsU+$wenA
z1^>xK;y#epGK5wkv<abY2(3je9u-IG99U^>7lN;+rM<*bf;HAoA#@I*UkD$D&?UqN
z<LDVeuMoP0kR@t8=mU~hcL|o1?3k9Mw@CVg&{qfxxoxF2t`NumA|EI?KrmYhz~qBM
z7%Y+@f^q#GtE|IA7!ktc5T=AMQlh9lE`(7Dwb3Dr31O@RFFwn~g9_tAm=MB55l#|}
zmpP78nb$qjbKD_J3t@T)PSJ4*Qf`w95<MY!LkK@LZ7x|<O%(-S2%6L@7($3{5JsIa
z!W4#ZI)pPJL_*L*_%Vc^LWqVC3*oB}mW5!1ki%dL`{EF0h^g5j%n9M6M7}eH%o0pm
zZ=EaT6Tx{Qd`#yTzCe&gs`Nb9bMb_QB3UFDpZAss|CGZagwKV4A-Ghq+XicyUgkLZ
zl1=xSNxlx@n-JEAupxxyqC?^85WY?D6+%`Du422z%-L^EB6h8ib#&v^rXOw$VN(d-
zg|I7x%@Vaep}8f5tqH!3x%YBZA7Kut9U<%#`KMxmlHC&AC%8v&ui*EB1Ewnbg&YXs
z2O%k&tUT*6;lU6Nh45<#Cq({p2uFn+7Ca)z-lXQS5RP-C-?g>eXZc0svE^p@M{Q3(
zDZ$?a$34t_N(iIK&xUX=gp@E+!}vXf^CA4ji8_P}AzT!-n;~2Z;g1lmB~o1$ay5i2
z9E=ZbL$+km)Qi$(h&--`a3i5v^SSA4e}-@?A)zPS=Hws3KOy`Z!d;Qy58*)w_k^z!
zA7HA7Av{i`dL*Rx!`zg|@kt2JL-;R*rwN^B^hT-g3z6gsBX<}{Ve=HANZFEwGsrTu
z8Ej5*mN4>!@lqHiB`R+ig~KQkM!qoehfyG*Uoebqtr}3DM<EdoDOILuBDT1YVuCGl
zCsC(F*epq}N4ZOdQ96vOVN{dYGGUYtqe2+gFw(-{viq_kFBe93Ps?mM!F5|{tti6E
zVZ1D)QW)`*2rcJZW33{>#}CXiSM@Lu#%p2J5aBC=c1n_yY+-be#;4k=BJcjRVa+gV
zh4F?2f9zm+J&Xn3@>IAcSD_>deV~VhWk?UBZWz<UaE4JYjQU~p45L>V8DTUCqg5EK
z!)O>rW*F~;@opH6#Af3#nuOsHPHS%piT1F(C8XlNwzq|_U=&h;$9p1qpLGnQ8FL9J
zT2IUW#Wt7N55i~>C-m(ws6bO~!e}ePtT5Vz(LRi>37rl?I)%|OA=&#*x6TRPg@ymX
z?9FZo$*p!~uzMIi5|SQ4rFWR`$1z+aeFgX3u?-BPUl<=suzwf}OO(kLK0tW9MidST
zV{jNlB#OeJLVUTChJ}$M9zs4MjFDlC3S)E_lSE;R;Mg$6g>h)TIdXG9l=(l531LhO
zW7lwnLz{9E;^Z)<NRp{i@+T9NX%ZY-Ae*tSFx+9R31e*-o-n*&%nf5+7-|?kQ8U8u
z3(>-egb@fM7)D4Wo%{W-cf#y?nb2rZ4<ky)76ta;sFhZBR_l`)be^0rW{CWwFlL1@
zTlh@D_-KvK19L<&=wa@U!<Zk&XJLFUk_Cc`1wUa+3So|mgs=ch5|U5Z={+nwmWt%d
zFun@o3*m8ZUlzvKGG11RuprD^r*DKW593=QD+DQD8ODJo-AGm^B*mXMWN=*=8^hQX
z#`=VOgAkrvHixk#j32`IF^sL87Q)yY#`j@t7loZ+d>6)!M5<*gt-BI@H$7*YIZy5p
z$)>Gc$@dB0pU{~hQ{Msl=R;eZ{}jeyi9JY{5b|>vY|?mp#_>oPM-vtp^-CDPG8jRN
z2u_4?k}juVhKAq5I2DFXgI&YvFwTVWAj}0MI2*>fFs_DiO^o~=#>IrS^I=>N9zVUZ
zz?UTWhu~$wD}t)H+;!o93EmLADfnj?w}jBbjw#CDVcZVmj!5o>abL(?4w*@&SJz%;
z^~-d0X0`QE7>~oKsG*XEf5P}Tj1n4N((ojVr(vXMNY%{g{TZivA>_})_)iSJ5KIzz
zu0-tYd$!~R|4oLNMMEJCg*D{SkXJ*~qZ#=$<Y#lOw?5ArK!X*gDg`t!VL`!F>#WNY
zvt<ztMa5b%4V)Z`3$py=B}Ja5p{#~d8cJ&@Ba%KnER3aDs{}tOkiB!AwVZ~?I%|0i
zt7TTKAW?TOn=?F*${MPPg#2X<RT8|a#-D8|Y){IoYq-AJ3W<6}IEAljcuhl=hVB|_
zXsD^-Z4K{esHNd`(R65dLxZ9rLqh`%wKdeyP+y|zt+UozXHC~omkR5w$L^aYsi$Fu
zbToO}jn;;u*+?)`aDLD%43%%(NqJKwjWsmU@Ro-ES&*iq!FMJ0eGSbuyvJsjU^78x
zO(VZ;w0@wWg@z6yY^kA@kaikcYiPq%8?0?L#FeQ(VxpOKKDiETuOZh{TS_lWM-9YI
zlCZO27s0NA)bA!FI8o`Lp{Is%8pdnrrJ=WmK^g{Y=pzaP1p8{}r{Tjy+Ws2OiVM+B
zg-vFev!zD{vcD1@GDO2j4Wl#+)i6v0n}upThO=2#Sx1Pe8{4z!5~JxMy)0ui^9r`r
z6lH88m)YynCuo?cLDk^XFiFE?4bwF^HB8YkRn!`-v;JR>)7Y5u5XP0T;L+d~&SsD2
z?qzozPbc?l2xtgv&_p397!qtO%EX8UT|+z=m8h7Yy2-R)Xnb*Lw*2;A(m&ELlS3(j
zA`#5uV9{_`!x0U0G|bhoRl_z7^E7;{;cE@wXqc~IfrigDEY<Ld*rc7s8Ww6;Btc#q
z--u=!7tI!1qT#0k*`I3oOrpps<ne`uuSD{t2Hs&6YiZu_@>r(fmW-z58ouSo(y)f!
zE1D|>sY89@Dh*dQSmPP3)v#W}1`X>HIyACTc!r#LHwkBvHftbm5oFYM4Lc-izlNO}
zz7xJr!!99v1ew=v4V@*^y&Aqx@J}A6#OuhY0~&tN@FOdmC_hsj)Nn|{&m5=wEYysb
zgmRLj>`DzcHT<dJxQ1UiacMXu+5M{FWFp@ak~W@%cv{054VPJQ`mly`8qRCDz`AJo
zUBjKpN^j|X;zbRYH2lGtO&XK<f8=6w`&A9sB#VnFN!Nw+5#M7LHzfGQ_N-eP{?hPV
z!+#q7)^MA%w}z+8MZ;YUk2E|M%`uYWJq`CIxVokNfrf{4l_|<ctE|L-G?4J1aR&dD
zD60KmrJg1F;)RB!2=YfzAc9;G<c`1+L7s?trYN<}njArj@KnL9Ro06MU&<?zd`!E}
zO3Oqh;ZZPxLJ}2kdAbC9p=bofBCtpBYJ_W;Q6d6s1Zkr7l3=L_N(!NcK2Oa%m(mg}
z6EXXd!Lkyp5JANV$|W?*3t<+Ogj7w)D@X8h1XU7g;})t(EDKXz2n1h=z?MiwJFi7h
zBZ4<0XdFS!2x>)8FM|4_@Va0f!8ZgI!P?Adw0Z7Jmmo=9Cam3U`YLONNE$|vDWpNf
z9F-iBjU?zu=>K0sHHqM@2%072Zwq-Zf_H?xE7f@-?cX$^!~5~~Bj(_09{Jy3p>MQ|
zpcNZjM{ymkBWM%Bk_bMHplt;0BJf6_M$kTj4iOBCV0Z)_Bj^-Cp9uQWNCaIX-1S%K
z6+zbsx{2`~5oEDJR$IHXn`9baI?bHNipULnPqwy@-icC`T5atY!G{rKM=&sg{t?_4
zR~#S;@l?b?3H>3WFj#`r9GcK49}&UG2&P0ZRbod)FeZYr!bb}hlB~x?FfoEj5sZ&u
zLIlm_NnqQa7CwMwIRlfG$)emvicQI_Y09(+ri;)Sfkz1CE+KBV&lYpW=F#pznlA!>
z1hXTU6G0$?U<7&uQPB(uYJy=wX3A6%w&YrKM8rfmQ_zSYN63r_HcT}eFm<}}Q3OPC
z9<w6m)B8A|8^L_(h<Sn^OF};OVeEnkK8avq1dBwtIFTyeuq`Fu&m#Cdg6k37h+t_1
zUqo;yf}bP!GJ>xnSQEk82$n_gwOCjg!8by_6<jXJjOL4}6`TYnnonF;iF|b;cIhhX
zx(L=suq%SytWg9TBiIqaPEptt0q?)IM6fxbe_~(y)&$=c!FJ(m#WB8%;CCVMAQSG1
zU@ymu=zJf+z6gGZ;71AWkKjPUj^#i)k9dpmUTKFIIViD5=bCpAha)&b;}M*X;AjNL
zA~+SnX;C;H!7oDiJb{|O3O^xu`M&LB1jOG2`8fKF$j=JKpH4H$ISJmMVYv{&#R#rS
z@RHzV!9N7!rMg1b-D<kTlF4RwUy~@Bx*5Tr5j>CJKat#u;2!-yg1;j8JA&IHyer65
zcOrNpZ&l)DejxHk5j+<1kRwj&@{a_c2>vU`LNfVN;m-uS2D?)7LU^){6dg&rIql~X
z%q__GL^D(+Rfk1KL6PJU%%>y2ki0tLPQrxu3Zxd$LA<Lf`Szw4(otAPm9^F)qFGeO
zOmU|;meBE%4zCVXM@b!}bhOveK}TsFWpvcjQD28uN16`1j#qV*)lp98Pu20VSSzoi
zl8_356$KYhSJtn#@?c@A=%}jW6_HodQJvQMHaMB>U=&1HtEXj{j60hIDQ{iB`)fLC
z=%}ruj*gl-YDv@^I$jsDUCJLvC6Ou~OxMv!E^BG0u0-)+W`>RiI-2NsOC${i9fFxU
zw|-R`v6?@0jX(B$Q{;_V{g2F^dRxakl;~)o<6Rx^>3Cnq8mH1!)Tq!bp-HZ<vNjia
zJZ(!It#q^%N$Z6E^B$Hq34X_EdSE*pL#3@c>gc3nkdDDRI_u~nYJGHc)zM8y??kFB
z9X*717hEoBd+O+=quTLwwkK^;xLaDOua17A_Mwh!A^mj>U|$!^j<<gt2TD}x@vcKy
z7#$OJOwut-$8a5Ebd1$8LKJ9ul#r1+*0!>@mW~^(!-!A*37zpemde!v^(Tms!O4l(
zX+ow5PL1Pg>vSDX9WEVik$BkkJuSaXS60ZgaoV8;pANr{13G@t5zrCT@r{n<Izl?a
zI_By4Scj$~q9ev4i5*=>R0u8H>tSKzljP`_A;P&jKH_i?K3i~>j_y0nd5kVP`9sr7
z=g>E#o5(4duVaCZFLZpV;}c2pnU2qOEEJyVRu<`4taHmRWr^UYf=o-v#0^#=kEJ>&
zr;x{2I=&XZEFobbhdeOPFW>4|p<}a-Ejm`}SS1P@1Xt4u*#$b9O3PE3WSvB<7tHT8
zXB8eBb!-v|`P9|ctva?zaJP=_LUtr#pFYU7Q^$8Yb|oZq%N=t5-J@f#2n%kqey?Mn
z@Ug>{{Rz#1yV8Hu@so}_I_~N?sN;~1^Exi*_*utc9lz-~rQ?W>qdHEA!yl8h$94Qd
zpXWpJ^JcUE^;-syUv&@}WC2d<V37Q@jx##W>Nv+~WQ5XDD&B6r^>>Ml2P^G1ja<}m
ziQ`(wpE~}~aaqSz9oKYRNtBk#d~U;6|5Uy%!W%kwHB{b<zgF93Hr*{9w-fq*3He(v
zmpB9YJstOT<c=aaiU&F#>i9>;zd9c2<|~-TI;azW7ZXR?e4^u-j^{d_imCFh|6OnV
z$2mW0y2Oh_j(jPTD{9u7-qN|3BPEJd2^NULA|$_Ho+$E0O$Qz&CC?|qyQ56M?X=oj
zFp5G^e#2tgDH27|C>V7*k9qgeW{s5x$=hdaC8DSnMfE6NilSr`B~tCBqOeAh7DeeO
z%0zL#RaUKn+3yw19`scvW6O$8l_<&yDKA(-kg*k`s3g3y;LC#DT6Jd>kE#;f|E?8L
zyb{G*QM?_6Eed-S^`ZzaGwr_`MLL`G?X1_L=AH?Z)QF;{B&;P!$?H+PAzVpFYDZBg
z!5<{0GGSdwUSvsTeX*P&*g&wMV5VRrL5JX*f{g{62sX-<%2K@(#k)}~VIM{DUKC9w
zqeX&7v8-lMydOn#wzEj)MA0IOmQnPIqPIv|MbSYBOWs;Y8^N}M?F8FLQS6G93LT^9
z6h&tdGMFW#i(pr-0ur*YQ5vJVCv<uU=@~^_-Y1H_QFx;8io9PGqoNoc#fMS!7s-Gq
z21PMgcy<&6g;cp@<~}5fp;3$w34_Cg3};WBH)CHD94W%RFH$HO6UA5wPLE<-6yu|q
zBEboQRG1XS!~{Q7!9vMo3D*AIIyE7mCWM7|3UMXmZXx5}wyIJ1gh!+BCt|}w0_-Ls
zA;E(e%yMc8orn-!@be0mSQJJSITD;HI79FwK_+A)%u4XtQ9M6qTH`TSg!7{KSjhZ@
z&VndD5xy`XnRdy#I10UH*8bfYOP{BF7RBdLd?T@4ucm8@GnWegLhwt$uLPF~GOw?N
zR2hxsQ4}fPoyWIAJRfJSjAB(3tD{&G#i1yEjw1J8S^UyuZ4~RGSRciPDE3D2eH0s`
z*c8RCD9RSJ^Mj7fQEZQ52fd=GeT(4MD7FcqWJg&mai;{oi}FwLU9ENO+&GlN-C}_s
zu<W7!o=jTX7sXHWmE%S1Gm3F5Hj~e(Za)yk55j*G{3(v}m4iY?`mzp3aU_by8yzg|
z(I}2ZaayuF&YA6f$FEVGh~gKK&@A(<u|PS=f$%)zw<z)yu!k2ZrzE&wsnTpq<{8mE
zD|k+jNq*-{CHz7ZL-LtME=F-lB-KAR>vAQEtDFX7C>F!DD6Vtrjv*z+=XJOl#fvDC
zV)!$PTTwiY;-9Fw6!R~(aEYY*QFE#1-y*q9F63?$_k=Y5x)u*AKae2F!zdmJk8jlQ
zZxl~BrZVmSiSQ}?DxvvINZH{3{~s3q5r#SDiXnH*EC82!KB(&8))N$_#$bsde+&g;
z$Rn|N1^F)_ZWfU*h6<^v<6h70%Cr|0c_Bd>;Tp@rvH$(Xt4PeOOC8yKqd1eqP%(xQ
zF}xH*$rwsWlCq*xI)*YaScNn9w3zv~AX>A&WTl1Dvgov24CViyTq?y-IfmC_s1d`<
zF;t1+l^AR>R23s!tqLL41gpm|M|SGqZ&u1(O}2}jR|P+ARE-(6>twGmP^rm$W2hZN
z9ZB_i3~$7sH8+>kvR*8SB1z(lPSa!P(AHizhLu&**x+0)%a+NAp+O9d4Ky*(Fow(+
z_Qvpi42@!N#Ndx15W|~Ph+#|&V`FF%!&@;7k6}a%Z^!UX%v^0gQ1IOtdd1K?hWBD<
z8bh-fsx5N#jG0T#N#2j4xk$)Ah@nLcEhX40hW0F246PHfZDMFEyj?<aV!WlJ@U96-
zCn23<=py7w!8DrfCOk{9yI>DNMsXE-`crd5p*~Wc4`b$T@LZ|hSAzXm+2W~Or`=!V
zj2aL_ws0n4kaZjs!{8XWOEZrlF$|5NPr>YAg7?RCCm$(|K+RD?_yY)T061DWx5XY8
z!}u7c#<(;E6JnSc1OL#$MfLphXp-nmiD5F`tdDZ<wE1BpH|yil@#!%*W9H7Tz8GAh
z#`3sh*m5?5%VNnrF?gj4s^GXW_4r*U%fQX?f-!_*_&SDfVhGbKV)&Tlk0BC+&fXkn
znG-`ahM1V0DQNI3$UC-=sQ;lghi=eCnISlInuB{wu6~$nR?Pf1ZMNja0&puZZg)R7
zhI#aA`4h^+hq)HS@JS3`iou0~iv<_OkUY`CjlZ~_e2GX{&QD|bEQZfxSjvHr+x~@E
zW);5eXdPV1KC*(HpLu@8QPW*nCdiGlm&fpJ3|qy*3OaKP>tomu!>WYMI(56PW(Rds
z)^N-YQwGn;T+6<jlevywo!d^rd^g6hN%UE-vz@F<ucmKi8Lp;p5q$QsV_OW{W7xqj
zLpvy!WTVubQnv46=J$8IV&;!Cu60m$3)v$=O7_LDKZd*p@)<Y~!w)fBjNwuYKT2Ld
z#c)u1)9fIU7|x2E{dic&vAO0JYDZ!?8V?E{7yL!=SHTm4Ck1~KWU5m!oQ~m448CIK
zMuj}$8^)fC;djwFFL)uLAHI?PM+}!^cuq+SS7Nvt!##<;7Q=PUC&F*Ua5IM69B5M=
zf5yz88vHHe!aJhgEe7d+BkFPcSz@5S!u@z3c2l@N-rbn_l>v{}lg*OcXZytPFos7l
zJdT0FCmaGDl`nmcf9NVc2fy$5m$OYbQ}R?g`k6RhgXs?D_=1DQK(c|~MwmOA)@xKY
zmmxc0a{p%o1rMjwRoJsBhB<sv4OoPb=Ml2BR#tuk1q{?QP>cEo3K_5(NHb8_KoJ8+
zGR>WJiyFAtNhxligkjEU#SBa>n9aJpWPlrEa)ZZG1|IcPO0pyitt9-ErnG@BM=O>w
zu;;gm42~OXDQf@*UNKP4KzXrK!9XPgm4#On<i>sc5b|XMRSZ-$%-!9&F<>>r{BWl6
zq4esk=51TKPHE(`%9;O<<{s2G19nNv?J;kUsQ0RY*9?&Gs3BxuKjn1;Z-`Dq1B!v#
z2I?88FOoV2zLEc#rW@dg9{hf%u3>(~Q|nvPe&cd!8HPDaHxLZG$Q}Q^NT#H1WWd34
z=C;3S{BQOvTDIp~2HrNX&%k~I?-+R3K$d~-2HrE!)Ib{pZ4L7W%FPV(+l1D_-#5_Q
zzy~aV1b0tJrUH+a23m=P{CPwBzXg+cv@_7&!1xKtOy0o&B^{ZtP!e?-%cm}#40M)M
zT@q=#3h5?jZ)opfpr?Tm21Xj_CB^7tps$eLEP3AKFY+e$Gw@@cq--`g{{mp3zhVC8
zmy!WOj^;^XkWm9gVGvzT2qi-d3{CK128IjgCTWZsWni>8=S~A-42(6fk!^LxHjdRX
zuuk{{0}~D87?@#Tl7Yzvf(AkcrqJaKxD2=rG<I~IX25BfKXjf>`;M;t?qyKe;ACbc
zYnsP^muXunKH52vsTwGiKl$Ok^sibg{aY!10|5i2TPjo-G&7U(u-J(h&<$t?Qd=qK
zt!c|zr9}<!&(SfCi<Zj7sD(dkCNT{3c625G$iPekpBq?8H3PE^EHbdzz#KZQfsg4A
zlJM8GwD*6@nrEQdi0;4S&0ZkFg&a-%1v5A9GjRWT1_?8Ap2%84C%KpYnSl-`vOX2g
zAj|3MTa5}|u$=T&1IsyrwmH5MQ(qfcCgo(QZg(0$HQM~vzzPGa4XiP+l70O!eHDvZ
z#_?1#WsW5urBB{tC0T30D4xdbSO#{)dg+1<g0-t!HwmG9vyd$YwhGxMxIGcOLr86#
zrQtVSzhm{kN#A9dn<DP!*yk~&7LUCKz8Ai6N<9V-82G_Ju^bf7!H))hVka6nW#FKJ
zLk514!NqF;&S^h$?58FVd75^ZbCJl8vUamFc^orvTsZGI7`(mP@~eRpqI1$PKSuuG
zLi&nB>8A~xG4KyZikLcU;I8PLGw?gr3|!!NH*lSu!XaSbvSDsJ%!%a>mhh~Dga`LB
zy<*_10se--Jh_**XZBaPS@#W2fCg^KG<Z{RR`Jxo4E)WR$G{!Kyk?*>Cx4zRsefy*
zb^FnZ{CUkic0I?VVeUKXuiNdhOfL@wA8}Tc-R~*iILy4hdSW1N4)W#Tsexxw_~(L2
zIcUnw@D04++)~c|&5?97$p3%kAa{;AQS(U7L5lFygv64AJi`C)Y?wa>MRO3}Y_>oS
z3g)0t4hrXBZ&^Dxw=W_j?^FkO(&jIlxxs1CUP_4^yp)4lIe0w>C38?J2bFX1at=x-
zaw#vQOwRvD)ptNiQ9S=2+_B^!N4g_R_`pigh2uCl7EnP^a*iU197sl@h=2$Pn097%
zXJ<Cd%pOV<6%Yhb5JfS7f`SMLC_#`622_y$XKLNw`~KgXSMSr+)z#hA)itT72U!#t
z;aitcEL%Wzp)~?{Ih0R+EfK37aCg(?QAfap;huT{)Ti=d>G!Z<yhsiJBH1wD?xnwf
zmWT98G`mp%`~_HJq27S|hZH7xj%X49e+<+#fMx;r>T7iK4AT1o@CDE@fcpbz5kSj;
zd-cdF1|7+xq4=A#oB;SUi&j!&ZUC(X<Oyvflr3o+K)&F1DULsY_JTVI<<%+09thyU
z0J;XyO`6>)fGz>|yv(f595s=AIHiH#S3VNJ$9;T{23)_bTDls=*re_O3=LpdfFBNn
zGP5V=_6(p`00caG2hb;l`v%Z2h5HK_5WqkhA%MY>93u3cX&x5z&8b297zN~dn7?Eq
zxKOm(hyX^iMiawKJQ2XC0KN_3yAYlXU~~ZWf~X%vK>%X{2r39E7|R|7@K*qT2QV&x
z@d11gz=r`$2w-9W%K}&)z@z{s2QVXmnPP`20kj(7nJSpuVzZA=2QV%0-|ocI=^N=@
zUTKg&D}cEHJjZ4S@Js;Pg4x{rdQQNdfc#s;vou$etb>z0{9hP_=ZV7k0W1jMqsM&D
z2e6Q~70mfHd$E5}080YcGSx@CIDjGBvj~`cQJ71Ga+B?s=#~Mj2;lVqUJ2mU08G)m
zd8~Wg_*wvg0Q52iN&w*iYV`G~0cZhmyLd8#0fd+<UEtQuyc((5c1V7P*AULrMZN4=
zB!FnZ{ZO~r5MM0d?u;D|z@qnxCnN&6@nw#a@(TU}gOwIa1Ik`4@<sqF19&HZ4FRkQ
zVDE6>+5pxCuv##8eqO`jKA+RK^w2lO)7}cWS3&Cq)A9D#bgz!y7UfD$&qmI#Cw=b)
zur+{90lXW)=2X2~0^k-F^gteu&-9dT=;4Ig7QpEm-uDCU1=#ig?o3GERHlG<M*use
zg+I~S0qmmB1n?b4he3n$OR{zc@Tq_=0{AR|bKm-T$@F;udjx+z$w$s?%g^tQd8PWL
zIKx*$_X>S-sOM`b&fAl30@%+U>G=nQChuHmrGo(+<3LCk4h8T%+Zn(Qj8PeBN2Sed
z>X86qtp^iuDzT#DVwu1$cSq$DB6Cuzt8*ru9{6(rr`Y8H&IE8Rfa{WF@6A3Nz%Pt-
zNAk`E+#lp!2;e-Y%y8eYQg!k-Jr@JGB)OM41OlpF$fodB!Mq%;RmFcpW;$DbQwshT
z!0((UwY|^o&G|z(e{wXBxc}yJf3Wq0@1Fo}F&-+oPr+?kgArT7T?+05kfxxhf^-E%
z6gTEGrja&V;QkvWLqRd+zwgtT^e8B+xOX4L6_ij=Qb8#NWfb?Wt+e9CpX@W~jFU+~
z6VXr<E~mgWJ>^;C$t?HIMM0*5dJ5_*sHC8>f?5jrr!zLSih`QbhN=pxDacZgt)PYi
z`W~Zebpf@j`}xl}Qp%IxDa+5>B7O^BTLEbu1$7m7PkSDBE1)$98YpO};IY@;8$c-T
z*}19I(nvvL1zyFy550$G8R8@0Nu-Hjwx674iW_yC3nj2xdwdF7C>XBbaRn_E<S1yb
zpo4-|Y-+--B2PiC$n)Prtra|zkxtM?L0bj+iaXi&$-PfIT40cmho6@3Hk6<vyP%-2
zwCw=}4=U)cpocVuH*1{~bXM??f`=7!CAjL&uP!tlw~rROOg8s^Q~}41%x(&nWVp{U
z_{V{jce44{$es#%DeeiPx5!_aklsg<<g96&(NF5_uV8?JfwjB?6$};23{o&y0iQ*1
zSD7J-8)=!#CjbwWOdCe4D(;M?-MCxM2n8b*%u+C0!4sm5)|jMVl!7M}j26yVT1G&D
zf-wS;{x(i=FLkJDq9`0Mbb`>@``mpM__NE&3Z~HbS8}E*n66-k;HMQ#6F@%yfwI14
zHh<*DTgaJ;duz$t$!8SIk&0fRKL}u}7Alyl;5h~J6wFufyn-%uJ^VM{0s%jq%}FK+
zIxcbV<M`K-MG6+vqzYbC@T!8>#Lbo}c!}mJ>YaZwXPJV)iJaw%`@;oV>1BocF`~7S
zRq3A$3Z(b-(PIO2Kj{>A_fqHpMZNrgmPRKmnwH$-OIHw9@VkOP6d0U13XXG(6hst6
z6|7aTPC-mTT)_$juPb=8UG?Vjt2IlyX3NMrLK6xK1-wwg-My#w_y$hJV(iNs3Ra3R
z?}As+b@%417P>|OpSm#lrh@efb}RT)#NJ|$6l_-THivSE`>&99*tR474GK02Al^hX
z4)GCeQShFE4;AcCuvG#7N%21Ca%n%GOKg+m#YySgh4TUZWb_ao+(V4NKiJ7&Qro+W
zGwb`Tj}-ThnXKqzX@6<U|A_)paz0bAN5Qc(*@qN-uHXv=-!LplJHHhAl~Dexi(b7~
z!9MZuuf^u{F7EhrK*6^Pz7sJjJX@w9`KPLqxq}ZfrscX3{(H(R_(5tvqPYL8;bmdc
z4US6kn9v`E@@D^}f}a$eSMaNXpB0><B^8{bi_T0xt>7#pq}-36VJ_`oCT(#W_x7B(
z-pSkW4y9^dP;gPfbp<!16#18!oSA+(RrZR4tAeiyr9e`{hXe|2c(^rze@51y3T`Us
zr=h=wzZCq<Fr{LIihmT`Vr*1#x9V=obDNEvmsMTxzdQ>lNK@VYf{LgprJ}ToqAJo=
zWC)Y|;sS~Z^{DRtIb@bd<(5<tJnrt9Sw=-!)!l|AOLh0QEvF(=MI{yGC0Rk}T`D#n
z&tq;yshxlYE326GZ)0viT17=w)!j;n%xbE;?<)bfB+6FZeObA86E`5Lp`xbBYej!8
z72JY`+X-^FoZ70pb5R}D-A<=S*@Aj1>Z|Ce;(iqkR5VnPr=pDtsA#0(!H~b&FO3_k
z@TzF3!rk^qMH3bGvc^&cO;vYGoGs@XD?NP#%~UiO&Su#ilmhpOm`_Cu0c-%7IiiQE
zTB*nt+&aaf0BzouEmYlIVTtpl@7yGZ@_rTVRd@R!9vxJWN$>z0sbY|bbrL<@Rj~V=
z1wWM1{IH5HDg20vM^$u{WH+HS9rah{mQ8mW_mJW}RrC@-PHz=`1osu%PiTLk1B4C~
zN=drPU>VjSDu&9S4-@(rjePeI)-qg@>>BY%6;G)6M#X*=qf|VpLQ$cr7|kZBct*t>
z6=PJ4RWU_%Z}WLPC18SzaVo|OZo4*TQ>kLiny6xua3-rba=FOj)?T%#m;9+55fwdF
z`=_axu40CYr^=-L(bzjv#n$rKvsBEMQa{)8yZTr9$2WGtvnuAQSgc}+isw|!Q?WqB
z^CCH4=;eY26q`Q7zfh7ds8}RmvNR^z*#B7ZVi%ftUsSPF#mg#QQPH_f+A<X{sbKB<
zs(F@+{DphHY{oB3Ty3wa2ndt-H35|d4jtcX5R)1wj*53wY)}zWp{uY|*eb#)`G^2R
zsHx%;-ThfZlt~qF4)@(|r?^EnX@$7YQISxwTE!ZXFI4e{fE6lU7jPn;)AN&j3a?bL
zievPlTbxJNGTyZ+)^Xm6SjN??HwCQctn|Cec|2L!n<(#nTloF<<!w~4NyRP|AFFs*
z#by=ntJtn$i;DNywlz81IM%<p|D@QeV$WM{v$@Y<Mrn6UKTz?Zik&L1b!_lu+{2fo
zWbRNgV08|`M^rMi!J^k)<|it4tN2nX{Z!~46`!m4OmOR}Lnxz6Y4F_BZe3pp^R0n{
zzEZJQlswnpvrom>!p}LEGo!m}^8+frWsuQOO~ZF84yyQ_W2fSfitkmNQE^tqVHH29
zIH}?%dYy`+Dvqn%fp!Rg#&L`hvZVJ%YG~vi)y_3w{Y>u(`blXo1(?jJ;Qd*}DaJaf
zmv$aA&2@t+QD4#Z*}tebr{bcDODfK*@YnG3E%OBxzlt!$hH5^Ja)pVwtl|nyq~bcm
z*8mT*uBup8${miMD|m0v4j$K-ze&Ml)p_N-f2z32xUHcW<3FR5iaRROG~DXk<{uTe
zDQx?031!);V+Q@Jx_d$rw|U2R_k#Q)8j5O2*Km22@7+P36(!v&w#`D_K0c3z;u^|n
zD6gS}=FZ$w8cGW&sp0LFzPf(@sRj9EG?b;x+rI5GniM0hpy4hJl{8dl!-jY|*uIJy
zGNo+B33t#}t?+$PHm&SnPZjOI_Doyh%hHgop^b*NB3WHSZ4Gra)Q}`g)uhf!#cF9V
zySoEXSNJV7wA667hI*2$uc5I9uZ9L18frMz-46|o1Q2uI$dBIi5!|DpiH2nxeO;gS
zHPsMmIHb9Tdo?r@e9`YE=ROTS4PzU-n8!Q;>z){tqoI|C&TF$<Yj}KfejTepu7>)t
zsyST;6>sLxlPorGe<N?chISer((tgf&99+@hK_>UYbd$47RCCv_TI1IK@FWWJfNXl
zC3grWHS~AZ(C1wr7fAGK=sEI$+utr49?{T4Lr)ElijuCB*RXkQHgkD&*N~Wn>VrMs
z*zRoVrJ*;wP{G?*!}n27<B^^|8m^Y}&Zy)%z)vCH<r2jPXc(wrkA}}R4AL-I!%7XS
zGz<~_lQm2cFjT`Z4UcIU&Ms>x&@e{Bq*;STXc(p8Nev@4JfY#EjlP<j-Kx(fd^f8O
zAs(&a%xph>gLtflr!-8^Fj2!e4a_2Qyaoyr9NFj=%qUT8l7?+Lo<sdSJ6HG?z2Tdx
z;b{#EHN2o<nuh5bo|h)g&@fZOTn*1@@T|$1rC|=6@kh>V4bO-`#$!XNkpC2TR@z2Y
zOj2MTds^sQAj0$MU5;D(@)E@;u%@GT@Y^|yG%Ti%iIOE6cMeBDgQ8(69Y(_|8eXLx
z#$_$n@REj?HE^v+%Y<*=8!o;0UVeYuM?UMie`bT%H2muLI0sb?nuajlsqc`W29^zJ
z(AlXOzC&wrC_^PYSlr+&vt4aWMyQ;sG{iZw8VWU78f;b?^Enzm3%Wh3SjqcEN$+!I
zyw^&2S7>-$!y8ijuVuXT%ew>p>c{z%X|N}MweZQ=rD2VRwHnrGcvHiN!e6i9E&7s%
zEu7sN-qEm0!=WbL-p#!m7$TZ_H)^OZ=VEHOw8_uY-@C#m^F0CEG`!Dg=<{ynloZMB
z0zS~(b0tfyYwFFt#|1m2#+|A5d?aA^l0hG*IG<?PE%?(E=QH|bGq>y)8op$B38G>U
zUuoE@;h2UWHSA;69bJL%G<>b$8x8w4II{=wR}@RP`VP2L!1pb^G2h#$-=I2cat?~-
zL*#4j?<x*U))5UqXt)yfQH-jN3X{1VEZ=brC)mv(GJ-g%;U`Wd7S!-Fhq#QFf%+1I
zjNsEk&j@AKSpmNYJty=$sQ~6)&~Pz@2kgkd%;5<8u4p(M_Hj(BmGWNKa6`jC4Cxwv
z)9^dvJl$`ak3R5+hCemjB%PN}XDA{g{*vaSCouPK@so>x4!N!2U+HX-Anr&6pm17{
zj^txB;4zG+svz#K=p7#PkroTW6GWLH$_CN7zQ1@7e{k2|AW8(??SIKB8AP3k@A3Nn
z(vp?aZ4d=`wNNgIH^RQM(|zTGs1U^T*8ZI34e}zs?N_oggYJyT4x)Mxm4c`oM3o?X
zUjOgyy??CtkyZ`jl{bCWgk}Y?wUPJpb*_8Y2%?shttpi8F#nwfwFTD+qHYk&R_E}H
zcDHc440g|(4T5MGM5hoshkzg&1#v2f(?K*2!W+bBK9puhf@s3t1@TbOUH;TGh~`1u
z8$>fnCKvhK#})?Bk(LRfMG!56$PJ=(5IG{#D(Eh7V%eHy3kbOAC{H+TgUAoMzw&7#
zv`evS%xxD$`yfX2@%lw(yew+!ARIF9?doBT4+L?>@K7P;9~7}pLG-Jf#y=%J97LBO
z1_m)Gh)05Wl;c=2tv}5;z}q#5o<Z~qqFWH%gXkdzsewP`Nz&dy^a-M`6zSl26#ni<
zcJpIJ{iGvSX0ZX((8pbKb+wmE2M6&O8z00F5g00z{9!?iH{BLK9t8D_4B`oPL2{E8
z8%3v@ls==MKdZm@$sn5c_Wo7iBOMdO*dPw2^gI>B*Mi3h9UsKC-rfm8OblXD5R-#=
zosJa5lpv-C@mvt|q*G4^F*Ar+f~N_c9>k1Pe`(U$DLglbXM&g$!~?SK>)8~4M-kU1
zbFLSeAH)KBS`e=W@w~KQQ4otoY@yH>7+!X|%g=Z$3F1Xz?iOuJ>2g6V7tTvUldH>K
z7Q94cXrkAGhy)Q0B0yV7mKsD@fF?A^dV|mf<9d-~UCAnpAWY#;ltE-xEQmx9g~E&r
zwS?M29ga&%a)od>`pJK0tqfvS5bp=EJ&4sotdZP}Le~cQVia!$u}+e#<xLKO=sC&V
z*MoRR_!)K<lg!;9$&aOjn}T>Zh|NK45$3j(hW7+)4WfUgG@s0iU}o9}L3|j*?v%`q
zAa<qjP5~bY{j^BhPrbb#2SNHt5N$6tCipbS(;W7Qz!yS47n&T(F9m-kbgxjhbDw~R
z%NBeS#C~!6d;5702$Np=tqk{fLJtPrRhJyB?}IoT#1BENy;0=HAdUxdB#5INg&Xd;
z91~#z7C*t@AH>hXN&5Uxsd~92@_Iin7fGH8;w=3q#QodxOAzPSh9J^HI3L8XLHr%W
zKS5jw;$jegik?eCuLb!Fq+*u^vq@K|Hibv<=U*v&L%?rBe;4{k(EX<vi`<mtUqYFj
zc{ZK&RuC^g;<+tMHu&EldS|B95q~QZLeUUPg-|-=#=!ItJRuYhAw!bn6r(^YR)lJM
zN(jGX$PG$&!r9!DlbxklnGni`P%Z@S$@zcs<wI!Lp?L+NcL|*{y?&(-Du>WCgk~XB
z3888TUeQ@Cgsc$ig-}0)>=3GlP&<S=l2t?6K(#ePZqTchY8$JrE0|_y8}1IFn>6Of
zGwBUjon$o*xgk3Fn>K{dNRr7tPCxGM&hC3etchsmf>`Ql9>TpL+%Nq5LhyyqCWN+9
zutf;11hf>&MXEU=cd05}ozXrwgx10*&I`HmpHnhvjr<VWg%Ei+-ycE;(cGRL@8u<j
zl$CZAW>WZp5T924cV;2yp%5MpK?@-mLYEL831M;wQ$lz&gsveB4Ph8N9zypJ281v$
zgdQRE456<m+>nY1y+Y_6!pJ(=eMB?O$iDXrp+86bhitA~<sahMj6sq+SZFW#K_111
zh;axWW2dMjgeOG#<1*YV#jFv+VeA^km%kxQl;r3T3PPBWDn2HJr-V=Wu>#nPaRR7h
z{QoqJddQg+!YBQ`n@{IV4dLk!o(*BH2u};)83EHnm=VIv5Ox(!pDj)@OZWx-y+g|u
zP{Ycqb>;{sY1rpNm>0sb5SE89KZFG#RJ>8-#SosCs@bZ=AuJU67lbYnN<A#Tgq_Mv
z`!qAnBWKB_QY5`)-b*1aOTeNZY6n7iC4^U{v#&`(#vGPSnz~G-G(|>SP3f#VGb<E=
z9>T}$W(eUB4B9h<H$pH)CK5ta05wogECgGUaiLstY=zvF-aD@safCyegm4N&SRtIB
zW$E?G5LSh-DTH^$M5{wsAHrK9tO;Q)9s5$_b<&qNIRX268U6TsMD~<!`L^&mqu&X+
z*DbWqh7dNUY_+$qcXJ3^LimXGm+IaN;X`ury<0<I7~Ce5;C)7zf+5?5ejrRHcSw<)
zLcba9W8>M{k=Kj#o;`Z?T<jJ;nV*O7X$pT9!XDZu-<zDLUxe^w2wzF=-VpW)*wNMV
zbqKe_?GJ?TO{%r~1@K3ZtE$$a+Jhk+Vw4M`SQy`jaF`yYV~&m=LO8;UMja37I2yt+
z1}GiXbo>~?ajFgBb_gdzI2ppF5H5%CQwTqY&@#(=jvYUpekz31A)FBolRWBWd8d>}
zKg+WKgIkuD$HWrpls_NBuOg;5$+#fkBAua02LJbWg-s3N_YnRF;aUjaSM&0?5yH~H
zGOmYkF`WC)JsITu7DA_)=>!#x+&@L^W(W_2bNfuq{fqNDoXf1gh5wHvsrg?zX9#6<
zl+}@@qlk`4KQ#6TEvh43K*lh)4diF&C?*^i56dX7qlAu<I!ftye4U3(9;J0Ki-1Mq
zX=#;L<&@KLmyU`$%IkQyhnJiRIvzZk7dV-hcPk@P$DZX?E9;myKD&~RD?Pl|R_0XE
z(Q<Fz={r?Pvvg$ZXs+X49o2Qz&;cEdboV!iHFeb1QAcnsp*c-6>gpKrOHO4gr-6>U
z+1krF^>ozN(Y8c7`7BkeWz~i{D8M87ThYc+*F8F#=<w<|b*CyDxnqF8DP>mWG?QF{
zeHZgc-))|8pAH|}FV(eRu8wv({JLxB938njey!$h#r|e_r~Q?2;_2MhI`VY1(Xr%I
zURx=}(V<MfV3uN&+Uw|`qoa=db<98LZ{N>9c1o^t&_An5##7;39uMfK6|PD^;Z8ax
z_V5rqtfLD%t7D{&M|3=@qqmMeI=brUrlW_Bp1QlRlP`(7>+VY^zACEuqd)oXsh94)
zgyJ!=Y(ZZg{d5e`F;tjmTV?f6<qi-qQ0O3`gN06dvB59_)bO~D$8`7I)^Hu4Wq4n^
zl0(Y(P+4ugPl(J@I>zZ3rQ=B*qjePM7@I2V9P^J6%;E>~-1d0Orj6GzLC18qnLSNO
zPUBFf@MIlR1mAdS^i&<BPYaz_wtyPmEs;J`=TD&A4$c<(Nf~$Z_T(1sw8OJH=IXer
z<C>1==y*ClWy@)K9Sd}<(Xm#?^Ewvl2<iywctOV^9m{kq*RfcKUDsRpTsr9z9WP39
zsnGhR(s*!OUefWhj+OkqyN*|MyvpMx-xn)A8=v(=rsTe+BcMZJ2dB6bbKSk}<mxyz
zm-3p9e=p@&mvVF+VI46YaUFC~Lq~)_hnezQ`uVKJS-#6Tbm`bAkHrS)cwNUE;_wb9
z%hkLD9rbd~w1s}k6w0JnAubmxTd-2cDt79y-#V2?0nU-tI<Aju!-LFqI^NXrzK-oW
z)=QC1oVhyQ(($&A1KmCEFsr-g+dAIT)x8^ZkZz<4O~_(LHjDgwRNlk0MKGCN2Kcw?
z*d|phyqxn<qrt;RwfR8DhdOrZ_=vN3QPum`dUoje=I6YBHhMm3p0P{E$2xY8@$J_6
zzQg5bK0ajsVgK5)1*d+_qX0R3bbQV@tmC+jFLZpV<B*Q;CCGfG<7<}Eu~)}F=8kH^
zfW!Gqx}RMTnQ!T4;~I=TnfFBxFT>7v3_e%$yrbG2q<jzW^-%s{i2y(7IKmk9V>XNP
zII82A#Do&fG8zhJEqi)8{e+G)I?n1ispBVl9V3a3(-H?Zg>xAVGAF0cU+r13+7s#1
z;1^nkO0v9Hbew0zV6&@v8M?d8OlL5^pyQ&BOA<*g>)@;>ldi&`K~+3ou)6DXcpbNN
z+!iDM#-TaZ_)i_bOY#q)W$tlZi~O6610q2Dw}5{bMJEnrlE=S{^I_!YdG1J7TG&-p
zL}*c=JIWR$B^TRSo-m4s5i}4oP$G<yOcEF<6-MbWA5vk56e$x%^)PCLQ8tWnVJz-d
zr+gThl69-Iw?f#R9e0tlWl%-I1eL<597dI}J6T@X?O}~o1y>WA6~<r1(+^$B$qs|G
zbWcysuzLz93}Z!@u@SYys1rurFb0P)B#gVms3!vL!>BKS!uJShAhe-S2yGNb<1oB}
zIo)_(;QVS5MpNN53!_CCEd@6Z<K8gt3*&=H=~T$W$4dLTp3fsEjMib~h0#ic$;l17
zXK)^EQk-^Sv=yA6;&6QZg3CnQsNNxrj$zy%<_QHog#Ta|odi58w6oAIVLT*&MIIKA
z3_g$i5AGU9x0FnG0ecoz?J1yF7`?;j6GmT24iwrii~$0uv%dhlWgfx&F;xdiGI=F1
zG>l<k%n9RJVLledq%bCjF+7aN!x$09$S}r9))Qfj3Zo#5F_L^z=xCw0?#bYJpB3>K
z8>W-Hqe%`=`UIrog)<?HiK(olz!XUmPY+|N;HOiZX<=L&|KC{52xF%3XN564j93Gg
z|4d4f$+?0ThVeoe&k3F<bbd-^K^V`c@P;LBs}|7}!+4GU9L5sKdNGWbQZh>gEEBq1
z=);HnFNg6;7`Iyd*V9{rvI3H2gkgrE2v)<;IH$r0NixhNeTJH6x;EKgwtzH=BO+i4
zB{Rx?367^YA6N6*f}JoDVeU-pMgSgluH?KP=3`jAEx9YhSQW-P&XFu{?Wwt|!&obP
z;x#G2QlmPxc~g?>IjjR49I5SjD~$I2U7ha;e?u4>!`LL4%=f~0H-$Hcu|+UTF>9;f
zZ9?Bq$!zC55}eezGmMYI*c-;aFm{FUF+<9I|Fu8TEaQ_fNOy<vX&9e{-Lo){tFL?Z
zgz<S8Uxe{x7~%dIUrE*}o+io`P@qLPmyzV_Fun=nTd9l5{j~PwoC9HuO-o~v&7<b;
z!Z^s-!i#?iQ|H5c*zQI`9w!C-5XO-d=V%zmQus&OS?~#=fB7<a{3Q72l*}msr^7fS
z;H=PJQn}~CxNtF#75z#O=Jh--g>fg9ds)CALa&5zHO0Rs;JVNoVf>cj|1N-6`|e#p
z7&lY=zry%CjDI9~D~x|r{M!O3%myTJnjxnE14RXppDrLnXfXpG0X!u!t0aTJf&K;t
z7$|L^jDeO0atxF;P|iRt1GNqJ!9{rkcNwV26UW8I6{uNm$1*8jDJ|PT{misV1}Yn<
zBEr=SEUJ`NRWN_2(lRqG%K+~pd3<rP@rC~0>IP~UAmCBcaBlz!>KLeNps@k3fx8XV
zGXMj3&ZM*U`UV<`wg!g#V-#Ok51&)<;XH3|8yW6h{D(!-c-woA0p7niH*l|kCWd<}
z-Bc(+GsAs)6NzPg)W^#vu^0Cl@JV-wTS$)xS{cYS(9yvC23i})Gtk~Z2N7#yxWCkC
zo07bJDJ$PVJ82dF#p9<~UvIy@UOup5gQ=>7<9WcqgNA$S+Q&dA1Dy?YGtga%JY?Vz
zY0~(<-iHlzF+jkh=GpW|MWCzDLU}ODmh;g~4>q8Wmq$+ny#)6bx_@deYwRnH>}Ozc
zA1@#KlQYo3AOlMbyl7ysfgv=7fyoAj8W?6^q=6@-ipPWwH!z}78lQTx4UZG2+Qac0
zW#CBz6AWDLFnqKKj}uy8V2pvWhWpllk9SC)5`3$tmw0?qroZ<<eLt-+k;Bx@eakS#
zz*GbC4J<J5w1H^`W*d0Mz;pvM4EJ3LTmEWh8Wr++#Y_XU=nuWT9KnINGv-Jik5@{2
z)<C~*p3lc+%{A~Gac?i51I$Z}X3{xJR7!i^z(Q#f$K?gdrSe4r77L~1QUl8bza|Y{
zF7&0;D8DROwErtISg#s*f3%NDb|fHKiUC!MXi^dNv*o&huz?>995-MXFzNgT-ZK!9
zA~6GT15v@$Q`A$;GGI&cT?3ARgn@S?StxX+fmH%l7<gR(OT8h0?O!c3f)A9|8CWCp
zk;Y$ZfSyA@$u|wG7vZ-!>kap>Puv!OPuiKqV}oREG_Xl}!S>VB$lokUKJDCUV4H!x
z2KKS<BD~$e2L?vn&UovFyW7Br2KE^E+`tY4I}LnfV3&d2DQzDc_#}m=W~T8mHLKw9
zsW3k?@I!ysS6R^)(vhzWd?_Q&K_4Se+gQcd2EH-yoq>Y}_8T~0;9D6WW+i(u@9t~@
zCJ#vqj|%;s6Iq_@9cC@UIU<yjoRXx+Qlosrz)4;Pn<#1GCj&nlxM|=o1E&m}W;+dB
zb3GGh4gAWeWw;CMe=%@Q0P%ridFKuH?`%9G!R(6$E-`d0tI8~{i5*@g`!b!Rw)fYe
zzAKCpcZv@CI_J898&dpt>Q7JemrVOjlKh~9rT$<9E0+GJ;Vuj3@n-S#zYY8&0!2*3
zE@$5|aGOctP?AON7)UeShVfIE&~SHsFMo2%WKm(Jo5(O-ZN*I7Kg{PbQCyM__Virc
zo7LoM<5DI{o9Jqyn~5?e%9^;xL=zL`Oq4fK%S3Gx6-?Y^qOyr9rrVvJt+V(!Lq*eF
zTAyixy{ja&d20`kswT2cu<y*RW+KaUKa?Q;x^i}P6E#fKG?8oik5=>38Ye1eul*^%
zj)}S=)>!D>CK?K;XQIA|HfP<hCmNVI{e+L0lu3v{BNL0-xVhBtmG<2AcScha%}lg5
zk!Pa0>3$$~p9!Cdd#SCc_vSwt6sCPzP=o1ygG1a>Z1q#S>aE<iVMwlre0~_!Z=|n{
ziMA#lGO>P^C*O2GF{3d%neOjm+nMkSAZ~A>Lkf4Ksl~|TKVag)6rUR@@bik!CeB!X
zf`?6XG4TlP|4YuJLJ59vTa~mzYfpC*JxmNRG0;R$X&&3z$8<l|=w+g}iTQK<BZhkT
zF;QR1?PsFD=`Q9!S0as{OS6$&nLo(HV9D)ppvLcI3#efTt(5KImj#b;j7)5fV@n*5
zn;2o@r5G2YU?e~OGU17#cnqUVJW0Dna9;$YO%#~eW8!lYV@!;tCz#Nv&BQnpb4)yI
z@@+CENOd!WP87;!OfoUq#1vZ3#B|gBB99B~pO)NdCi>nf%5Mkw<LRdc_#Ry3T4tt+
z?^@)|GBMk9zr}vWME-;ZZ2a(V{anjUFxSKq6EB*0&cr;L!o&g-&zo2%X6NGbqy=6u
z@mSIH#ll>~ff$p;&o{2$mBq~jXrHAfmYH~!N6W#B>v)%o50AK(Mf{S9ms$Jd+*gFM
zdBpVC*G%{GnScpJ0Ke;JGH4=XVwH*2ru)NjHcw}bj{7Z1*n}Y-NGCJ}L`+0Ek!j&_
z1!TrkxfX#5N0PP6W+zhoLK7=e_;nL+m{=*vdgTh5i-t9(`x)a_6WdIzHL=dboAgzV
ztcg)Iyl<I!+r$PF8%?}px?h_%X_w9KmG}V;@g^CIcV$vDd1bP%&tq=Z7AgCl<Q`w)
z;rFWiLgal(erjU7i4RPCXkv$nk4=1Hf&x2Dd}M+jToCuK>)9p3Oj0eIvD<V%lImKn
zV8i?@>ZfHsGqE$`f-g*bY2ucN+a|s;vDd_pCXTaHCcZXtRGfrj-v~HtV!w$4Ccc$u
z@STZ+GPvtK>4)gI!`)BS_$|iwG}=fXKO`ajfq`p;?}$+T(vg_c{}{EMPUlA)Cpcsr
zcM}&Rdi+FxGjYzu&n8ZB)?aOWn(jTd2GyQ1ajd%cH(%aa6IH*fO+Y=lSF+F3rHA==
z44vxZW+oR+{6*(^+H=XoWfNCSTs3in)0RQt_agM|K7D=HOpsm|I(Uie@W0au>w0dQ
z_`}4XCip*knvwhiy|Vh&^^D9&|J!u8;GhlvVKhFP=bkJ~++i?}phUzC{%JxpgcgaQ
zXiaZXq3IC}o#!TtMchcpZ?8NN@cTr9k`a`OATxqW5tNRgOav7oZb)Z5FB@@#c6p)Y
zB49U}thdC^@P1ds4fqu!ZZsy7S(PKG5<%Sv?v9{p#68!1`mMi41l1zQiXc0JZgt%6
zn5qjnHz9p@WB0F`H6y4ManB~Tg+Bd29pXBI>t=ZCMNmJ2#u0cU=ra!uBJM|F5akUc
z;5WAKjqs7vDB}LbJ37Gqqy0S*G>f?5f?w-2iJ)o3{jP_{yc*u-!oT^f8$Emxv|!t!
z$cmyRI~YOt2zo@&irtK$O$2QtXwB}(gW~tD<>f`(dwJe2@lG>8f_4!+62YSpeAn6Q
zkDz@79U|^M7oRBdAm|tYpRW?!AHf5X^`OvBLOTn6NGN3<j-X2l7i*o>m6{7Y-GoCW
ze4I6@W!~mfc|9ZO6~T=Nev6<t4HChV49F4mji6ry!y<T$0<GHgk6_o9K|>;#cGy3F
z-H%|9;KLX42B!eC_^4rM1dZ}M1ig+886I&TXg?mom~sV)e;SX7fX}+g85zM7k~K=`
zqIn)N3n&)BoR)dlBN$6>;TUBOVMln3i{N~O0V;QV1QQ~d7{Mgz$iWCEM=&LV<q^CT
z!PE$z7XBhOiJBu=AjugK%#7eU!Lx)u!-^u9E%@b2u5Ecd8^K)R5T8Aeuby)6zIn`x
zV7~BAU-*ynd;|-H^McSh<qDFLiz8SP!HdFN8o@FF%nDx2n|RPq@Un2i5f~A?62Yqx
zycR(qf}rpfp<1exD&Q4S&W42~sSBk-YBOoi2tJ75!w8}g#3EP|!P*Go5m*ttp3-BB
z=^RPYhKUFYg|mV);#3|rlSyrFM6gouDv@0M|I4h4;LQj&MeuF}>qX!lp>GLYa%ITd
z>^rGgY(oT2xq^*C$=NJ21n&vh!ttGw+i@zkMzD<$<6_?X)LgD$yI_hDlkSKxjAKs(
zpGWXfO2a4g!xa8FrDwNrK8@hBRF9JV`a<}7BiJY4%Lu*_kgT0md@acX5quNDemYgl
zybsT&C+WAGhW|h3kO+St!Qlvg5PTwnlMx(=;HV^zMew5lzO12g9>@PD`IF$Eh4K;B
zDMq;n&PehXp_D%x!KW!-I>&e`dVZDM3qmiZBrip9S@0F1S0lJ4ASw^9Ncobq!^OPc
zBlsf%hMM#!{*1V<PHu{rH`C8Yh<^!oMz#4nf`2$zquTJeCEzw|7jQ>tTJ*o%B2g3-
zoPH^f!ql7*MX{(`g-2-dC`t$@DKs;RQc;wSqKqUf2rVm=Mao4{K7~7t_T448Vv2L=
zm8?pFE2lVB1XPW>mSOSiD5^)%K8g-e)QF;H6iuUO7IkB0ttje8v8%KDJg{~YZ%)ar
z6GdIgV(#5h)Dz5CY)m!~+%O76(I_S370@_}3un_Q!{Z*|G>M|Dlw$B~9>uw{>Gwr(
zZxnngP7bLriWVZ-QfQ7)zP+V}R)TY*Xf1%8yeQhFa9aWSQM41_7y7!yjgC>=A4R7q
zI!BRqZw6mRGuS>5#e-24xyw(?;eIHJhok5rrI_pz#UoKSbQ6>Ecr=Qx!XfS!MfViu
ztH7Sbl4O&5N6|-=^c6Zcihct63mp)}z$gYqF*u5+q8KO4AyJHoVq_FUqZlTf$Amr}
z#c%<1W@_d!{iQ*qPYAOhictcd6gpbyh@S2Vj>niN#tMfILYW*N#e^uPMKN8N6Qh_S
zV3JS@Oy*cfEmKpRrv;EXBgJ_}z|1ISMKL>yi*x>K6=mk6WS)&8*^=j?m?zBnQS6N3
zqbL?c@q82uqj({T!YEcmu_%hgQRq>GqgWEfi&4B9#cNS4jbd38FGcZk6w6bZ8SzS8
zb|b?NJv^^OLCP@2Sah^pK_ChxieMC>DAbg^CV&rteJArM!-Ctz6<N@T!i>Tafk+fl
zsU<GSq`6{(D?d2&k`%N#XQSYprILhX5m4vrQM?hw#wa#Lu`-HP%!=ZjC{{<YhO;J$
z^--*ig0BG9aj-hIVX4jk=JDjnaZC>7TT#UQ?n^^b9veiMNxt4CeK(5DQM@0;cBynr
z6k7$nN2ATFy7^*Wk@5xGgj0Ei|IR}H2ZBEo%Hr(l4#6!Jxo4JLQG6W5E#Z6;#qKCh
zMR7WcPowxOii1%ciegU`pGUDTimyfNizvQ|Vz1yYQ%$8RUbm34Yu`xLfhfL>Vm~Dp
zy3MA+Nx!3EC7cq|0^dh*ScFe<?4mdl#g9=OkK(8>X|!YXjsAXWZZ3AFxlTw{lFt0z
z&j$P?oS(&*)OjX~vr$}+;zks|NY=$DF42>tI3LBYQP8~9c|lrEg|sjYdpXMQ4sbP!
zYm!Umu8Vohr9#${^y=TD_+1qKE%Xn@|0r&XJiEh#no0j+b>#}E;U7uPociC4xXl<F
z#T`bQ*ngaK0YzdcDu5@u(NZKMhGN3u$%_h0#85JZnlaRhp;Qc|W4J4ZiZPUlx!1Zp
z%EjCZ;IfkB+ezZ`F;s|w>w=j3YNkIkhDx#j-Y8X$p-K!jV(z>Csw~pkn;k>-7^+Ee
z#`dfjl1nV^8|~vYEd}@z`DW7$zDcYdL!B53Vi?03MgHL!y2NmI4E3Z9tggQB8;ItH
zLJ>ow7#hdmjiHlpsPmo}S_^KH;xvt+Sq#l%xR)I1SIZdg6YLY(LMWS&%*~NxE1|hU
z*~mPC&fYdLv=xvqw0#Wi1Tf1_aNO-q2jO%SdVebS0Ra!jz?ezl&XRmcXh5k-&Lc5A
z8biMr`p3{UhHf$RVXm~cd(3@VRzJNOlRaYSDg0hSxsIYYhisC(o$T!GE6i<&`~zYb
zD0p-Xg9NbbU>Y;an_Ss7M3_T`4ioyA(BVQK7dk@dNTE*%9VPThp+DAk7mRWB%h(v6
zin*67^I{km!}u7UiD6C*6JnSsk~5|KlVZ42JbiM^U7yC$pArN8XKD;j$1qLAW(bGg
zHC;fm@5BVNVwf#VUPv@Qn#DJg$rp~#O77eko)f?o9Tc7~ctH%$$FNYa&NrT&z07(+
zl8b~cj$w%a@?VT$so-TP&T;{a=dZBd7_#EXj^ni$0x^6S!@(F75inzj#Gne+Vs7l^
z5sV=uSWj`nG4QplA(R5q7-BJe6vHk~r5LOj-i={1trUY3!`c|uiNb`?)iD&tup)-n
zV|XKml`*Um{{OvdciaC*(PZD(NLJDx-i%>=3>$?*nYRSIEi}2{;T^#nV$f%}Yuh$S
zk}sVpyhZRfq3;PLb1R2cRx`dI!**eQ5W|jC?uP=tJDa{!0GC9v$j32!62pNQz7^)~
z7`_tlX$+qU*b~DS0x0~s0IuKoQUI55kjZ0j4EtjETA1I&us<cwH2|5i_=^6((3D(0
zaVUoGWAMaLJdVRL{1C&H7_P=}goDEMs4<)pa8&3qp+ClOT)+vTCxue@rx<?^>b_Pu
z9m5$`8pHV*&c^Ty=c(<!$>PDU8<OuJer2#ttqdpsf+)Et^im9$Q#voIRj<WxU6MuO
zxFMx(#_*SLeiQn83?2G;|A^sF0b#zc%=iAC(r`z>KlH$S?=7LXWB6A<owMo5H$G``
zx3i(qzM}E}Ueu-wCnJtx$*hZwyPi!i5l6{5GUKQeN2xeUOIEo!_$sYT9Azb$>|Jst
zd3oVfh~uuf`x2I7d=XYL?!H$&#gHCH6%nWwM^yoA17AyV`7QxBd?u|PM~ygU$MH-Y
zHRGtoXU=hqh@*BKb>e6nM}8c2<G4GHW^pu+qh1{K<M77$g&G=2UmCHsmC_o<-8Vak
zV@)3~0V!W0HIBRA%dj!TP2%p$-`SaIO{IC{^zP@qH;((_Xcb3p96eUJ?-_k@_tkcb
zI5s`vCR<7}C+^yRzATk*Eu1`2!ne%S*@g}7<2_%kTDv&>adeHNTO93KB#sB;=){Ie
zkq3m{FEnWfnt}&w=`74HaXcj8VWE6Q&MY2}#PO(bl3x#XXH(-C5XV4a_N0|AHSQZn
zuQ+-Ohpj5?<?R#4_P$;M=Jpfg_ZM@q>OpY~jw4<v?Xft9#N7?9hth6+y;rVfu)1N=
z9rlZz;u`zmaf~hN?gu_Hjwj;od-<7hjEdt)(K$sZdoenW0;zqBaN5ny8Y_U+Jr&2e
z6do^NLL3uQoJny^7QDQ-`)YEk;HTr5Mj$K3r^m6epSMSWZw5PF;G6q$)+~`p`r({7
zo{i%z;mnQWxj4dc7;(&tV}2ZJ99kR;;&?ueWpONzV__UG#IaP|l~ZF;97_b#dl$#u
zr3(Zv#=)1Nd@D-)+FW<yyd?SwUWwynF~W_$-b&>QUgar3vH~fGQBsn$Nsu^>kHp(q
zmJQY=_k(S<X7}@&aYW)+P0Pm-jUyJvQ)koP;JCzL#Zef?3h`L3)wknt;^5bI327L|
zh;RIvTv@Exv0mQS<L(C(JUC=4<5(33nOx66&nJh%Yvb+*HS4A7buvb8a{8Qg7g6vt
zz{6eK$@sS9z7xj=T3ci`34J%^GfB(57su8(ez)<5jcswfAIA|3M=flR;{$rHg@-MC
z$VSF-D~{W7>}2=jI2Fg~ICjPHaUA>OIKT$Su{(~hNGqj%8pmgGd@0o>r^B8&K9}Sd
z(sH+*7aPA{$(<~}eB<Yei@kB|qf_xMur!;m^1l&43x6BOcX9Bep_8KFU>rZNk#QV~
z<9p$h%uG8h;Q5|jV*2yZIDV8d&CT~7<Ag0%jNrI%n0q3QhUE(ge&W2yO#4|XO8Ul`
zIL^j#h1x{;mpCrOago~2q@QDq>g7Ez^w&7hEhD*N;Zhuz<5+nn{S|q~o!poHS{&Eo
zU;z0`qRI`i`5)5A--P}yl(yokhCk!(+J>8PypriAX_>#{_(ud-#Up3a|E1C5Xl%i2
zA<aS&i#sf#jD@0>8`&}}6tj>nm`Q#($<g;%C~2XT<!UZ2StTrRnMYE8a!^RiS}13s
znuRP2<t<dOkZFMtm3r>7(EU<lTB)KGXZYneePyboRkGZ`Qdwvfp;awxsGCjZj_XCT
zE!4A6-$Hc@H7qx_v?^av(?Tr^wJjX(<E<l1g0*$s&zI_2xLY`^F>yL4*1+Gu0xWkC
zPD7#pXOl*jJ8dUaPP@lK6ASGvbg<CWLNg1kEaY15Cu~&G+`_#U?z7;d1uCbt6eTUJ
z|IQlaZWN*B9O+T=GuzgpwvC0h7V=Uy<kZNQR{15jonW?>|5;!g*hmg{M+==T*MBN!
zrrj@M4_J6mKqsM;<T|AbgR627yI6R{f@(pt@Ti5Z7M`{+%|bUC*}@PDLoM`>+WT_I
zEcCR{OO*7sP|(ZUzH(Y0$)(QZ*!8zCz`{T_TfSD~d0~(U^uL`knDe)%8|rD~VHO^v
z1`A^>3>SeB7DftqTr9(=_=JT~7Dm&ZWZW5@o)m#Es=1#(Cu8zh3r|^?Xkn6MjT1US
zS~%W<$LpS0lWm)9fnV)Su`pE>lF6*G9kRGys7YqpbPF>qEV8gzG|aT{oP~K7X3^_}
z^Ni4EX`DXZITqfzR)k=#xbe8_Md*Rl=KjFK!U7A=TUcn}1<U;g`9x+KJ&?IPn=n+8
zv&6!S7GARuu&~s^GB!Tn`-+9-(y*7rbhg;@Wx=#0Pgt*7-~u)-kNM}FoT2$%Mfyl1
zuq-dVf=sf57B*YZErjWH^bKjVVIgWEX2FysTN0tg#H4WxmW55-vv`W3L2MClEbuc=
ziX|jjD0GDk3SIO>KkrHlt1PUyu<uOzY75uT4_PZR)UYPis&&HQN$pJm^o_SHyiL1V
z?xo`f3!GB~ZFgpE6aiMZNdU)vi-q?re9o|7VXK907Is+JNvFD<@xBFqEX-bS7tg1L
z4|o=kN?AMkA6eKX$<HV$3U`a-Cl>f`5gznF&X-Sx$q2tkWVnz|$xQoF?EkHW?<{;}
zVXp;#N4AetWH@kNTNpI=zc0A=TR0$mwmeU+)(%=YWZ`>Z(!7TSe8>4H*M~o(_{S{#
zNawdP+{SSWCm5G()VFcc!cP`T*eGe^XA7q+{AJ;93#TnE)xb3=e%8V-7JjvG!NNJq
zT@1#)oTuN)_3h<;ekR$%ixw`6{3W61jBJh?&*N8^<fQBGUTd}J=DBX+hK1imhCW8u
z`kk}Be8C?=3I3F<o8sh5vZw!8xNYHI3%4YTCp9wfF!<Zx8psSAMQnF`i`s7dC!lAh
z+wRpe?<1OCFH($q%-JX|xue<+p$rcO(o#0}CqX3}m2H%<QP##?HY(a~T;-(&X*t`y
zt|)J#f-pJIESRJOnKlkrbjPKNjjA?k+o&T|ut+r<SvImI$x}>C0o8@pu-)<fte3Zz
z?VgNy@VsAFvRLEY!sMVcNYXeBY&5jd&W7IxcgkyI<6ay0*=TITD@B?My+>$Mp-pV}
zEJL%fVa-y_&J<Vi*=S)S*G6j_Ep7J_BF9E6Uh1^ZO8Tc+;EpUi*or^AsFapxqm7NW
zwmWv@r}xXsr@?!BdE7dj-QGqA8$E6GqN#1%Z=+eqtS&Ylu<`t8A5YT{+U{9~=Z;P`
zI@=ggzJL>%%kUnu@vt<NE#$rABQ_qj(KW^CE<@Rk3gs(inxcn|k2BK<dfVt@W3Y`O
zHu_4}2G|%#iwUOn`il}y)&IT%mSnQ;LsR;P+3vj_tL9A;d-^yVW@ELDH8w`tc*4da
z8;fm>vhk#iSvF?d7)=Y<m~3N;jWIUHiiIcGcuI7R<LEO$iEoUz@lhWykBw!APNaNK
zFONy|F1hNS%BpR5D~ajix3uuIRIBK*Gi=aZIqow#xV^lMTIM~&F|zTTjd?bnwJ}$`
zku7JllV?5B`8F2Vc)`Xa^|G0KUKB30G5>lIPCW{j=$J)$hU+CZUbLav2-;X`W0{Rt
zY`iM+%V~l2wO+RIk|b$Ksya6{ce$)Ze2pU_d|uKAXpnxcXR5-XCveGS$cApC(8daO
zLHJRdyLG`3YzmE}T#?G-f^8d)^vDv=88F(H5J{dE*=#m|lCKMgqq$PR8$#I~&hb^8
zZgTIx*2X#;`)wSs@urRSHa6LKSH|cq8yjr!2Ip<5k;|>$v9Yy776C7SH`-X(A?tcy
z|7IIoZ0zLN+2A$Xd%W_u@jfNlh58v3;2ChcjSo0#(g0p5aah?%x)vL`BQ-9&=%_Zn
zkh(sxv0FTOj}0!{rptY5<1;$2G=8#NV}C9J><fdymo~l<<$EOp?6YySpPyBHElkRM
zBf>2Ht&Q(&oU?J>#z7m0Z2ZK~ZR2}}BO6B;;V-$q{e$hEPhA_z1@KWD$87v4xtxP1
zMeT8+Cxmh)a`AA|@}#G1oEAPW8mZ@ujk7i=!>nJV7X-iBxM1Uk^!K6|{IZQJQtFZo
zUY1biD(6=p?{!XrMxJYerx*ChVMw82De#+(T?IZ~TK{R|CdbafyAJ-c@wbg<9L#a>
zkBwW51`Zx@aNEYejH?c+JGf&b%|Rsxl^qmuP}D&w2c;dPJIHWQ+;Jxw&%DJP_d3TT
zl-F_xV_8g=aNM&4kCH4k#z(+Q(=v`5`74TKSqJ4DlozoI4*yW;mb%Mvo62KDe|Mf{
zI`~=wbrlCy9V`vI&&_yL6FpofoaMOd+sWzXcxpJP>7b>990#==)OO%?aF2sJ4(d9n
z@1Oy@keS9vLYv&}pdNKzavhAcp(t$Rpt0kg;2=p(kdu|&<>I?#)S9rr4(@aQ8-2$A
zkuPU8bI{yzPmz2`a<2o@(Dfod2Q3`_0x65LI3|y?S~<vd+!gygBeZsq=b)Vfzk@bX
zU0W)VE6HjdvIz1W_wv&3c-lMem0?H69p4Tj$<7w*=jC-N8~LDvP7X#pC~(l(!9x!E
zIq2`;VFz6t^c5pN;^0vSJ(y*ntLRzV&(HstbrVdr-34S<N$V-{y~O^#h1n-1b60;q
zFMAm41~?eV?mKwg!5{~N9Sn6a%z@qC%kL?Mhz6d;DEXLRUe|G&a9aj)MmQMB5$WaS
zcLW@-CmcK}Mjpjc=;KY!qiw^om^H@1SO+sD_bCVC987aCU6SJ+OmHxfs%~c>x$}dA
z^<1UzV6q5IakxFKm&a78i=cofHMvdxqi*&Lkzp0u&a7F2XUk|-uP}r+^3OV$OQr+e
z!E+AgIauakxr6x*7C2a(Dw{ktJnvwk<DPw95V}YxldNt@O7cYkOF54u(!M0gR~@`2
z;AJ`+*Z&J%alJ@D0NbVrNb8WLrZ}2_pyS?oF-(OW7!FoCSmnTU5OEN9U^$p228oK3
z$D|02&*@2>HixNw)(Xd6UGIn^B^+?ipF#&0+h-+ZUKjowj{8ht%f-g49jtNij)M)N
zYORBH4&D@VamvvBc=<ui>!sswIe6P~A8+ywj+A^pz98M0>icGTvI9>7#S?hX!Bz*~
zIXEbqw+a17==%<~3-~}NYx&T@4r$m<q2#dkT@F5W@QH)nj1TOHgHI)QkAu$zd?u8a
z1eE{6!Iuucq9e&Ug{|5vxlHbpTFBu5(Qo%V_*TSN#Q_G86&~K?{?yIA(>&zhdk4QW
zOgT90;0Fh%9h`A+#KBR97oHs)9CPragA)!;irVDO{&BI`Q=@(SK_M&R@srd}FFGZF
zw_0SLb?}RW%MPvx^PGbV92y7bCCLW-N;}A@flX!dlJFTDS(eGGV(05JVXq10JuLY*
zq$R%zWkDW)G73rZCQktl4i)(RX8dPpE$|VOe%Qss)5mQG|5B%ew1n&A83`0g;9TXj
zbV+g+7frZxd3yN*PD6rX2{&vepZ%6dpkxBA6Ua-TRKgAT^%H22K<Na^Bv3YiatTyP
zplSl;6R41IXGi4(?n<Dd2v<sg7b<*+ktu+<WEDSUsD~eJbm;A^mOxeleD+l<;fCVu
z1ZpPSdz0!y8BA&<z;Ag7$YkiQop8@7b%fSUxRZ#--2&<*+}OorL#g_n1ezoOX;LHU
zQDb&93FML~mm8EN&@6#_MV?J+&c^h2M}fb~B;|2m0=|SBv3ayeprzoP1X?A)8~h|c
zSC}g@{cYF`QT12?`3ba3pnC#667VO`K7mIht3v`E6X=}4L(<>-6X=uxpGrNDYQuvZ
znrrTUM06_BhlSroXp-}w>`e7&O1^6X-BOr_?U_I?Ne&X)TWEiweT4QE+ArarJ*j_y
zBnJvDe$YK54^ANYI%bG4hbAyg0JD+<H#~vI*=1plOklJCI?NLZj7qp$c=32rKyo9p
z0_o`(p^T{G5*W{M8Q7@Nz(x}in3zD$pJ??bCM7UAfqh@$>#r~+fvGgzR`lG8rxTc#
zz-wy}Sc~Zi%t&DD8+hss%uHZb0{5+eZv|#2@Js^nLRf{ElfbhHTuR__0&^31E`bdR
zY)oKY0`n7Cm%y9U@TVt!-n$@y=Mz|%z~Ev{mL{+)ffocX61q5nCFKj2Byem?vloT4
z|M7<?xjccF5{M)aP2gp^ZUTp&NH?f|O_Sciv{%{G1Of?cE8m$MML_zNCRfjU)dV!U
z-+6CPC_yLzU2r(Xp$0R7ci(Qp<JQ|vV(e4`YdF!?G_mO33GDf*Ng@G9<f;GqoOJ4`
z-aWriI4e?mUQghS6kaJ{RRXJ1oDw6_SZb{#udQx#dQzTKzF>U<Zzb?{0`DYHw{!Zj
z^WJYdG&|g{ENP9M>6_T91V6V=`z(RY32aH={RFl%{?k6^xl>KktejQ^TiIXX5NFj(
z`yhc26WGmB_$_xw0y`5p`E{)kucn_{+W(^jKBf&THzVFfpI_R4-L9UWBv5EHKR$B+
z>8Dbv)aR`Z8O`@3@Oc7X(Arko!2}K^U=?fnB?T^fze-@QfPD$nx#{KcwSaFD*e~FK
z&~Jr)CzLV=hm`%E1DC)l8CeeN4+4Hp;7E#dlpRUnM@b$RdO~PM*>uXEq=%;@Pqk}B
z4*8Ror=3pVjPTE<a(@wUE`jq2{F=Z8PS{xGiwP`PQJba4eAxQ6zneYNGWQCHgOY_9
zQiy8_TxZlRL|!3oB(UndH@A>~#AyCo0>3BlM*@FxEDDkFtM_ICe=#x_qI4ntPPm*J
z<C@%JbP`;AR+r6%O>QUfM5TNFWh4}4niMP{v`8U}79yQkk{+SOgi_UCzj=!P4=$O)
zwR%@CQ;1QW@2QmHloe2}5ak6_Nb&CyP_Yo1DNg>D^vZ>(BFU;kYZjtfDmP0&b|I>#
zI5i6KP^caoQ%g9tQ~Wvt>K5W|0Z%SVqfGrmG>~M&Ld+dro*YQBk<iA4@D?JrIqe=v
zHW%8Y5KRR%6UrhKAicK`_Z7k?%oc^n5zsOvGwN3_Wm-w{=|{RYsMz$#i_O{;qHQ61
zu!@(P<rkt|A=($BLm`SSOQWCr1^hpz&I7t>BwE9PgizBUh2G(Z*l}o^gaimB1d<SX
zU3xXW_uhN2OD~pWTefV=4xOc!r7TOYOK%(M!U9WO-qp?1JMWx1|M}*hJ0oc{Ggc(o
z$>9bTG_(M%O_>%nvLJ<y(SoKH%xmZ0nEeiI{ZlPy*2Z*xMi^-tn}gc=Q<ZdPf(#1K
zIj5+(1s#+iDr#v#D+>~%Osy?wW1+9E`w^F0+$1T%)YgJ_w4Vv4_N*OPDcjLPzm2T<
z`IHKzT`cHo!B`8%S<uab?iLKOV5kK>Ea*vnn-VrBf3sc|G>GlnkFvo=g5C^$Ea=O=
zV@M47W;O}>6BIHI;Os!wL9ByWSDsDvuM#uNf*0YYkroWMU}K4x5v(1OQrf&Wl0V9V
z-@;9!Ef~YFH^f||LdtjxCRnh@g2fh0q{ZKYxzvpoOr~ZnnA0&~rUg?isFrS=VZp`r
z9nLm0PP1UT1q83msiZeT%;^<lXL0asQZBM>?MPL6XBrEqrp>ot0iEbjbK6TzUx%0*
zSIS(-*?hHQmRRs!G8JguYP|(ZnJK%>g5^4|U|4CvDu&g%zs7>K%<EWx(S2H$H}Ig^
zXu<e?&7$8o+eE|3g5c-TS04t_klSX#b_?<e$S+`r1r`f#S#a9|!2;2OQ`9pSNETQv
z*k{3h3v3qHEpS?(Sa2yjTBd0mmR32`OzdE%;6cO8dCgoFoZOYDT0rc!U{CiJ9%|u2
z&tFG1@ly3mMjtCd7Q;@~U97uV_pt6|b*{-cV8O3+3VQgRwBR5OiAd8S3l3Xwqie}O
zS0)~z$+fcildDO`EjVhyG0v75);!0gfD;ywMoi2cr5cwU4n9o>k{wN-Dc3AGLnp|B
za~Aw=!DS1sSdcy}<-7%dSa88Y|M#$E!o`FKVvnLDBEnk6U9^Do66=1k_w&>i<636^
z{U+!tP0Ubp_qiF@E%@(Cy&J4IStl1v3N8@yrv-N`$hP1)Z~CqUk1cp&!95G^Td-_<
z%CJb&>23ZGX!V$7dPpO%zUdJw`80AmhMJ%9sG}ABnFW7Yv}+7X^a1h0f|nM2WapIy
zuPs>7FO{lL3vVoVM+-i;`8RzEaD(K}x1_w+`GW<c_WG0ghoI@d7JRbcGcEqKya-r7
zBsOt=kFOSdr(?0;8x4u-CQ8FY&7_OlbRRjh;|~k`I5HP2Rmm;DU*`Y;$%FcmNhy%c
zyaGnlYev}u0tyPKAfTdvLIQ#Wl%s%Y0jH+74HodNK#coAT!?^B0bv3P3n(dQLyl4r
z0TBWs1&k5=!)e@JGERszMG1gXmK;iyEy{i|0n~xT1(e{r4a-%e>ZJsf7PKKm@suqi
zpe&bCWK~O98W`mTv}|p<Uo)YSfXV`@2&hV}^)%&wnto@c0Rmj@W0!}-M+;b0Fv%cj
zt3ktn*cY`Ui~?c=?E=OmAYWQ|_130X&W^nqQ%ykEt+7;8Q$Q^Nf(TK>PXgiuJQwgn
zK)iqi0RsdK6i{10qJVS(8G<%YlLXYGZWIvmIlhj7x&pe52$;1tfR?ZN0<sljs(`#=
zVgmsU1>E*aCx=oa0jZwE6xPN9Iyb6A*(QQ^#W-9}Y$|{>jdkgNY0U&=^0s;kcv>Mg
zdqY5TfnHcbO96Cc+kus!m4MdFZFHwCLpuTOb>~x5U`OUotUt4MX6?e-m6clS#?YO$
zhk)02%aYkkKyTV~=Z?QV3hYCtNkBgVW&!iJ=k71y=SzOnhvUzct?`TB=WV&^U(5^=
zFj&An0rv$A5inH12>~bRywjo4;8_~{pEZ4ifRVHn0b2!(5-?i83IQv%@q@7f<_NH-
znzp8z#tE3pJf8jppx{)~L;;f-h$k_itv~S;=Ibl`rU{rX(506aJd1UvUPR7p=A0^X
z1<a$P5U@bNQuZleA;V(UMKpl9aq^c4^q&O%2$t!Q%k@&))m3b+5wM!~c2TG~XaCo-
zzfQm}G>-&q5U`P*%>p**?NGC{?B_I2o7*N}yMRO7&ak$bI|R7(NDGZp0ipm&fR#;!
zMhJsbkFg7onH{=Qv916A9feCj3OW#v09AljfKNb{fPEalQ?IpGz%HG43)rLc|FyQC
zoddf6tAK+#Q_NxB|0C=iWj&^s9@qEblz`s^T%*}q)^J+D83BI?xFF!HfO7(V7cj+b
zJblb~S&6?hB9Z<SIxpbPfPgaRjq&G=7ioPEa7DmX0pmKF>g_cqxe_l^wtk(@i(+%T
zj1>R%y0PcgwCe(H2)IehMIXZ*0ps69JDx}1BD1jJHtU}>gK8TndzVZ9PWJ!0!T2RR
z`T<R3az4aAdlUaqz#{?lsqvVn<P%m}2c8Oert@D6;^d%!B6;bAz7+6^2DXSXB3=u4
zBcQy93L^d%@RpW~nZ|-5-U;|eK!AumBHj!5AmF=z{{(y#@UMWc0v69T_8M>eB;d1v
z=()x<tF-JFI`*-~sjG~k(~aLaCUml~Ro%kVhqwMAAeV^TBK$-gnqj0c(lYan{vxiW
zh3=SZTs+0NwY%T<>Bc}2)8-iSil{WrSZ9{jaz2s%fsrx4hyo&p8%k7MX)HF|SV%;W
zh+q*RBEm&PhzJ!y`%suQjFqw%+WL_e;q0nzevu-gM3fLwlAWTg#YGg;;{!jLD8BY?
zzx!jFloC-|L>UppJ@zM-Whf_t_<rN=Ip*;R#)`D7BASS3Dx$Ioh^Q{2hNyK#6%o}$
zZ0MR?RYWv91`#nLOd^b&T|7qX3Obxv5e>SB5$v9-WurC+QLUOHYKce^QAb3s*~Xt(
z6IkO|<5}y>G1g|Fm_!ksW*Z6Wil`@|J~b=i$|B>Wqov=jG$zyGtTGN*Wo#&-k%-13
zo=i9Xwb+=#hen-Wb&b)w(wNHrxtT^PO%stW(*LzYcd9$zm?5IMh!!H6QHM`AX0qPg
zUy{ydOA)O^v=`BV&)2!!sjWq{5kcE+%V)Elh=;s&a%hlrq+J#9vxv?j=<w;Nx3=?p
zxI#PpE+UA#viW$mk<3YBjXgy46fsc5AUathdW$e~K*%y<A5j~S{Y3Po@vzKTe~FPa
zr#iLPpTh>Q=AUnTH^Deq#4s95BK?m-;}8);>FmrkQnDOK7{Nz0iXA$@k({NyrBVtT
zD`K38Eg~%5vg1We5OJii;TI9{9iu0TSk5p>#AFduL`)U2kez9)vstIJQv3`NGnr?x
z7S5fQ%sG1LT!wk9^F=IRSRA0mP+F9eWnIF$RKzj{Dt$OSm~;haSF)~RUCp|NbuH^U
zR!5ZIdK#r743VadA~uWI9%^p2IboBC=gs4m-3ce%7iy+Um#reUQK^VoO^rKfI(Ig0
zS?fn^Vdw8({Uz#B@+J67u!*pXxFO=E2w8+f#6g<-BAg-=5qm}La>XUWEn=sLT_QXp
zUS=3oR@zqe?fzbxBcWy=D?t`RR@a2xBKFYqM@-syKf3lS&?$zRs(L+ipNKal)AzF;
zpsAN`r1UFi-7`bGr}!VH)rNM%VLBq>sEA`Cj*GZV6GX%b5hq2gY+}4bqqnK?l!%L*
z{Y}JacFwS#XFbb$j`eps##BG5Lg^27F3{9lr#U%3wMjig{4&+=Dz}-ZiB@`cY3g+m
z^A9K9h&A03aa+XfXyXqNe~P#x;zfPaa}jq%+!OIvs5yWxGDSQP@mR#+{>jT75nX0<
zAb7~xN38Orq$eVtig-p<*vV#nJ~Cx$hA}6e;05)th*z}u)9lM*{LcDD#6Psu)29Gu
z>4wr<hIb-zZaPuqtK}W2KR<~0$VLCMlK)A>XPv)@_{#iEcj)g9YT-Ycaf|#Y*iS+(
z3EuMl^huPR8rz~_kpKyKB&14cA|X&hUJ2DCRF{xXLVgM1l6DnZKtgm<Y_Nn72?d$`
z!_0*w1Tj-lsW3BLLWfHD5S^Z$lpH3Zu!Lc){K<?v;a7wjWQdUPduDv3gkRH>q9hcR
zP)tH`8mrmS(Gp595SN!wQs+_<O6y#Pp{#^*x>I*u0L533P*Ha(NvO;W-KoM*RYH82
znSv=9*fFxku$ow7S!a$9C^f@SgW@G5NT?}kr|F%oLM?`$SmRiav@zC}aQx52dJ^te
zG$l$%;%pt(x)R!knW=OL>+J5PWC`^-vH>eqX~@t>LJC9vsD#E6{eNVCDrzbrO+sr4
zZ6u^i==0S?r!12;kzmS@(2RlZ?c`66r}NufLJJ8kC2h1&YQ?*kbH>|BXvfD@tfyal
z2^}PKk<eAb;%mW&1_gAK(20U2jGbws)R}>bh&{{vyGi)m#?+ma;F%?;hlHLIdP(Rl
z!PV2B%syP&U&6sQroPPmB$#P`(u+{(+%Pl2#-9FEI!MA`3GMClPXIAQ!cYmHtoUrj
zFbTsc-inr1jF2!=!V?KkC5)0VTEbKb(<F?M;Fp!$s;+5tY13GG1i%M4Ucv+hI%GOW
z6KUx3nlp*b$r7e8P!V;-bO|#g+?8-o!b}OXB-ka$5@t)7BVnC{UnI<xFi*l#3CkqR
zm#{#>BI+m!{nAVeC2V>S;cjk<aG5B(In10`LxUv}c7~Y^W4bPvutLHr39BU>dXcnJ
z0tFD94>OZe#WfPvawGK)rj<FEMw)MK?0N|sBy5wgUBX5xm9Ry^RtcMVqhlXL#J)_*
z(_Gt7=a)%|YeTEVhf~oG2^I;W1W5t~2oh+o$S0<a-bgc9xw=il<1jPTr9{3%f>Xk2
z31=ky*DF?$uv@|&I*&BK3K}W7C3u)sR<G{+BxEt~)SX=tzJ!^n%5QY%Ujpd~3HuoK
zOE^FioW=uZ57ALq(84H16gD4b^9buv)?=(xdYo2|Pc3sIPqKN6lwtbW1oF>HILFzW
zw2VkNFQHbH@noqMl>U%FdWH1@>qQBdBwS|xaLGu+h61i~mf#x0b=DiKb-KpiqQxz~
z<84-gKN;@OPz*A53Nha2vGj<#RKf#&Ts@=?d=y9nY|E~ox2Y+^rlv1=W_%{$FPiCA
zG_Y#ZHe13+3I9rXF5!iQml9sl{B2`;FX6R>H?+WVc4*glGJ8G<CVfjI@M+z5608+6
z{^8Q6o72dr^nqqjc3pzc5y_t<l((V+O(HrS6240KCZVhqlWqlmr&BDUh!yk)%MU8e
zjt;aUFK7K&bFt>O!k;04H4iHVzv>y3Pv=l8@>@~Bih}GE(*5*f{uCL+*<jWX*1Lvq
z^24ks%-Pz9wXkq2BCLqCB8tsYRup9@&PoBrtQh$!ke~!RC3Qb%E2TMGhPBGQ;9U2D
z%h6FsB<BvwThWS2R(L9!>R3_P3Rn?mMU9i8%T9(?u_A`6RAr53rA-*DFzTGszR8MM
zE2^<sowXJ<!cdbn=P0P|Pya6)&zz9suqIlO#6UYq!F8>uXT|JXvC=0~;h?<9R(hQ{
zma=p=wV@S_tVpq9(CM^;HB61I+8r}nc63uK?yfMTTCw+9LK7=Yh0O%yr&*D1)jlXG
zWmwUSIg_<HYg4E8QP|3g)>hc9kgaHAMO!P(R`j=`ofYk^=xIez8&d}>I$F`iimqI-
z6U7ux`q_#J`Rbp0nnaCswrU^Kj(qjsoccN6&n>!HvF+5)-L2R-C$m7$lpa?6(Ik0(
ze5+no?baWq-Zajw=xaq{r8vsE5ZBMD-HaljBOPGHC@V%=F^~?{iosS4p*7!%;k4iv
z)~>AX-trr2#VwPOc!U+CBUy{pZAKg&qxoa37;D8+E0$R?&WiC?Ot)eN?Xwk&yJt+c
zVu}^+LFp4|@KeX$PN;f2q5rY;sa6Q3lOm_5Tb?FQv!eU$gzm-DNoQIyr$o$bQY&tJ
zH_o!sOa8S8=F)+C6L#NDSj;fbiunu+SQoNVz#@j7C1M7>F)g8kdSe<_*u30|6;|yp
zku9|I&!bmbv5A3rl@+UXUc<1~igmj43&VOVHt5bqD;6ZjQbkIe+04mqwIaJ<?rm0V
zr!x|4+F_;Fhhi<P0;|X>v07PetkH?pDbitu(~3W>xMPK4h0BTyR$Qchqv>PC5grVx
z6<#a$(D1Wrmp!Mi#T71X^3hx_ZOUS2rxm*xcC%7UfkDChtmqILf7l9&->>@z7=E?l
zpza)^Wn@q=Rhbo?mm-f^ag2uRmRiSo(<hlvu(m9pbc#(HjlWT|R-CcoEIYsJ{yBz-
zH;LyN{?M~j<q~(=RV%Jpaar%xD^}ET2T+$@=ec&9^#;{4rQKw`#kw-vKn_jDc~?z$
z`Gmf*;x)}&n#j?{`&K+)cxc5-1~MO6@tFAu>r>Wedg)(u)^vW(@Pc(kVKdb&-N^5a
z6@Odt!HSP`cCzU|q~IS0;&%)OHkN(Q@ZeVP^N_GpBOCAN9!mPJ6*>IHimx;&Y?xrf
zH!Hr=Qf5PS8~(H6hZUu4C~bqE4Y_OxvLV=p+&1mx2HKF<27eob$J$3&0GoMii2Y`|
zd@UoN4f$=b6gC%RfB!dA0UJK#js0p*SdgV%ZWXd22SRMxpRVCH`j09IwIPhNg=uHn
zm<|^<f7z8-#D=De6A2=1h_a!C4ernNin3YEMo+hs-po&=fE$I)#n~jMB*#!#_@zKP
zp=E5SU_(V4%GyxQhQ*fx%d^rSp_E3>OO6cce6L=sN;Xus0X9^z!Dz$De1_cLqSuWu
zR%MQ6CDXt#!eWfEp;|%1e?pvzj+!d&GM)PzO<Kc-nl`kxp`8u2Z1~BBW;Sh7_gN9w
zuvKiF4e^{!u%W&U4QyEclc6>{i8drL)M2g5T91{gCo|BS3||VH8`?nH*oH<nq)<C@
zEM+Nqv!heFs0nLR)-=|1R*K1BXfvU9rVY_Anm4zh1w%_4S~Ij_z2CY{-$E@ZppBkw
zPv@vlOg9_4+t9&=jyCNXRwp{YHgvXO%oo$cN)cUb2sxKX(A9?C$I|Y7P9+WA7}SGz
zey9z@Z0Kpj=YL}8h<Z^B`+aQaYePTgL9AvQ`r9yonIZ==jBMdgi6+-z-5;X+!)>tb
zGg2BuL&AoUHjJ_%;gXTkXa*_@D`K8_%{bPEaW-6NoG@!;=H73u$)9M$BpXiKaK?to
zHcYW$s}0+1m}<i`Iy=0H={8W`&b48l4KtW$+Axb@wheO_9=s2v7)td+O3tU@P2;3c
z@=_ZX+K^#STx7$_yJ=ZB;@{jf8j6?~+pvU&dJ*$_yOv#M!wGwu?T&U|dId$=u*!zj
zHvD44dK=c*&~i+ov!rPq&!)9B@Y0Q)kEhXJE-%`IZ?Ivb4V!J)Lc3};(d61hr#K{@
z5`|H=(w9K`6NYrV4LfWQZIEbg+O%s1K{9>)<}WaRS!NioYOfqvZLr%QQ<u_$Af(j3
z*rj0+vxA25%=RbfpctGsC^oogqH&grb}@KZRq7Dk_c3JIu#@4x+!ZKzH}f9Wy*BK#
zVZRLrID6EFUl}OukPQc!b83-un6pP%hdWKj7>@rx^As~h{>G4ArUE6(p0(ke4W;ZT
zZO896oTsJ6u3ZuRL4(1Dhc-Oo6MfN!%Qjr0Q<iABWW!8@f9K%_8i7}-=SvtK*l>-*
zuCv~-;ie6@nEzy@$lDA%)>pX0a98*5G2FM|?<++qY~Q<RXMBanHaxN64VgAPwc#1Z
zykPyyhHQpCYqUo>l%CTBT&3}_3Vttbc*UiZea$ewg5O&k-Vxi8$But&cyGgZTE=PN
z<$%w$+I)!q$owzsCst~KUeNl&{8e|pG4$G`edPV1b>6P6V3hpq$i<vncj%Qf@(V`!
z)B90@b`-RukX?JFDz6>+81l1{Q^1bSMa%?rbw?Vc`@sw$c7*B<eRvhN<Lw7+Fc)D6
zw<E%?eeO_-WQek(sO}VFC~ijy-6?6uhC+EMxD2&v*RHJU*-_4p@^;j)qn;XF!H$Y{
znCyt99iEd~$&P3{3_K(%vx2pX9aR}<sBGUHoV!Ajk>dYMh_R!4`IyJgjlSqu%2u=E
z@0zjI?LeWV&ZpuZW;Je5-qh$_;`;HSHSI_pW~yb!PYiLa<iy*Nz+9U(ku^y#tz$=B
zovV#bNVcQC9S8aa4EK+3U`Io{_FTJ>9W5DNw=$*J(U>{ajwW_AWlm>JW35!ypQ>aq
z6EtJUWNmIo3x>CW@l>?QKfaY6t@X$@3~lXb$1wG335w}xM<?oG85?E%OsCb3C>cd%
zbg`qW9lPw<ZAUliB0C1t?Haqb)by~!Ouh7=d`~-i@oDN!4eIBs4+AYz{d9*Gw^5}G
z{p}cF$3Qza7B}>2Xvm$%FvyPcN(y}t54B^M9bUV3%XhdPBj_~QVW*QAX&PzAEIVe~
zG0Kk7c8sxWmlKr4qW)Am){b#@j3<+W$(d%yMCM7XlXZWJ9aD84Tf|I})9sj{J2M%6
zw9TAj$6PxscJ0b!9-GVTSZ>FB-Y(Tzz~(|bD0q<_i#fZ5btx;w6#f*rf_V+=O4e1Z
zt66vQ&aY)&XU8uL>+RUWKrL*bUSi&)JDX_~B{!p@t?X=L-L9AJu;ahE8B{9R(fmWI
zXoqA+@iAqnqsX+{k+a1{O--^LiXARH9Cp-9H#zMfv&Wp+`Ez64cI{Rb-6QhYF=t0I
zv1&(Hu?$L`7R060F!}5t&0^ijy0nOSj~#pM$S<RSjD2?Ox8tTAw`hdh@v9wI?6_*j
zK|2oFalwv@Jn#<NaoUbEb{w&zKxiBd!lQN^<09hYcKQI-CIzLFcAV1rH#>4heyQzc
z^M=HowSy)L#hl}S-)SuAk$*7I6uZP#2&&c#yR4U<xmWKRO@YX`<)Qx9?b?+O0cCHn
z>24Kt+m1i&_-w})JMP$V*N%6z2-|Vbj{7u*e;BguSoFhSD`I}YS#loQ@rd~`>l597
zYR5C?zjUWwJwJ+n&e<2NFYS26@S61v>))&t`PPnPu0j<FCg+cTZ^s8a0{x6s`jNx_
zwc``RnI@TJezoJ99eHKsleNA5PGduF?M(joA9j3P{4@D}T$)QpZU%qW09Go^BO{PG
zXNSqzU&P#n_oSe#EdpV(_Bm2WrZ<xjEF(n5zayJX`OWXuyLuJ3287BuUeuUg$VggP
z*8ZF+!WzyR!5S$;*zXq?ti9D%Oh$1T9b|NrQ9?#Z8P#M|mr+VaX&IGdRF+XjMp+pZ
zWbN@#IT`dEr{blc+f9tSni$K=Xt>g!e0ru+QP!3bde8#~dM*|#ql%2GGNNS|WEi;x
zdKg4u>+;2uQpFe<CXT;cKareG{6LK^nQF+0mysZ&ri@xLev-8}tSEJOlS&#V<7^S_
z#j4se5@j@z(UcD@Nk&~6vA_7$;cRwD82!CgkC`5$B+J^vl=?Cnu+xyW5o-!-W7bsG
zqMNk$X9kpsO_R}9Mmrfj(v9gdG8me%l9S2MTt*AsX(^)>b8FT%tbY|TQ!usGUPj!B
z2m(q!ikLgm;xA*ajCnFT)8a3~ETg}St}<#@HTIU#M@Bap-DNDAVeBEJ7oD$gb59y1
zpG+gh8A%I{HIg%aNs+$PV;!U4m-FkV17!!u@EZ_2QO5aQNdsl=KI9-7gK3L(lZME+
z-7|=sq3jQn=`|-UU<B)E86z3U86_j<HXZR8Hpj{sr<abGF@bsAfu0mFNycOuQ+T_*
zPo+#{IQqpjO^=^0V}{N%Wz1rp%{qs5dV`EgjWg(Kfj&&<%UB>|A#I|KX@#u4TDFMB
zQlx3IjLipo5-j1Or81VWPtI~0y&turl^nl{l`5{LVW#t1hIOpJ(9mM&*~Ua+o2X?O
z*JNCmu|>vK87>)a8QWw`8y>tvhDFA9S-b8H{}KHo#vt&llw??Ch}5w`aW8wAOyOpm
z3_DF#t4Wa|%i1ma8g$P;M7tI5kl|#9*mtT~%cp_<ktUA}RmOf92V~sao#>@iovI&5
z@X>&&8Ji_zr;LL=V|K~d%?_D#(X~fLo2SVKyT|OM((W-7(4fDGYW+%C+JubLG7ia@
zde=mQ`6wOfXTxC`M;N}$GEnvytr#-ur-hx6af(O&N!HkLjj76(!2y)c&~&52<aOzs
zj8Q)fv@Ttc@jHzx88>(N(W>|d^-p!vhI*y~xs1R6FkGb4ABLpn{+GGd71paVJoQX_
zei%q^P(@lj9BAagEgFh4{*m#XHZ9|hj4_>y(CEEOT_J-y=WiMJWn_mWJZB|%Ambs;
z9jECLE5TzKPjr4N;~Dc`x|7XNZ*|!hw1UZa#qGS-TPwc5{Tmsn;pX<?=3(Jx+TvRo
z?|9S18yB?wAmbx_)H+bmfq!LulJSEEwgaE3**wN?tOQ?Vd}S`yFPXBGzRUQJot$T6
zxg5ytKt6|7%in<jhCB}K>2OW}X&{?<S#wMZ&QHPol&z2hK@KE1(5rcTumd3uL^)8@
zfiE>op$=4Q9$%O>jP-tt_#zI3I}pL~wOYhSQg7EZjjU<fQ`1Dj#T+Q^Kn(|KIzUbd
z2cjMH_2k6*t>Q~MP|AVQ4wT`dimYW>%dwVct-$)Nn?F^jREe{d9RNcWR`RPlaPdJB
zfx&^sE#r;4ALD?DIaYV7F;sWp`GL|DU&{g7+u1kE$2;(o12bF1$FY{%o=DuWM;OJ_
zb|BG#BnO^l#@At`&Y54+RF}D)?j$=<-vRO)5VVSaR;(Mvr_la5(8YnS4qR&6Jk^0F
z4m5RWpA>SpzO<mFIgsu^2I(>X;dPTxC$5<TogH}8)Soz$j<il(bJi9Pv}9=IKx>9J
ztQ{O^%RrIs7}~Qw<`z0KccRm+$2@83KUy>uO!M#NKz9es4)k}RZb?HA2l_fNqOy^=
zC!J6>d$aao&6Q!GqJA7Ryu6Vj2RLvfxa3p^ra3Usfk6%oc3=pNrRUM(S%*3>ih-PA
z4h&}=!8(%lpM~1H3ZwOyF$`l_$2njrk(Wv*=%o`GCb3Rtox-|4QoHFi-GO=3$=T7g
z^30%<=)f!o=Ik=eCUqcmwqajtFqIO_b)du=1HpU;7SOlPW*HVbu#D?2VqMI-gq5l+
zrD2>MLO^L)d%u+qta9L_8>ie@?Z6rb4k|dLV66k|9GLCI94CHpU_FgVYJvA~g9Do!
z*zCZYfiW8$$U2^(t$q${bwF@HbYPnUhR^jZ4!9a>@0o9RU<XaHbYo;l{E=b7^1zh3
zo!Uwc?PZuF4jgsB>VVAwy92TV`y5Ce*v#R8(}81`jk_I~5pGr-*hS7Iql->un+|SP
z0*?bKvzOJU`&ka`WNwt*hQg?wavL-DaD#hUOZ74B9oTG5xOu+=2e{>5Sr4)vVx`R;
zX1G%<<QN_MX}{wRoN&M|PfVBBJukP5J?X%C2fQl+h)+2{`kMo%8Hmp~aF+QT>+ibn
z3O5(eH2&eh1v(L#MoOdlC0%yl3axcc<agq#1J@k*>cBS#u2V13lyu-P2X4}G#NGJF
zf!hug>SMa&z+Hwv9XK9tCg+|5_Z@iXK)Fa0Wgl?q=?M{(y&i6^{fi%&j~#eIvus}k
zoe@e;DP~hZ%b>VyItz3g-+_M^o;&b@;U()U*4L~Q_J(G?&Tk!PxV#IQ?`gODbo}7J
zM+d4*j4Ru-Z&1^?e`yhJ8u!_OPYeMU<0$)uxzN0hy9OlD>haxyJWd2U@t*@fX#Cu3
z=jTL;Jnj9R=+rGHmlL_2nn}s}IWfQqp=i>?HR&z0lV}X*b)vUo`c2hlP16g80!|ck
zqNfwRoG9c(kQ3#cDDOnD6CqAiwj`HzBGid6C!(Av>O^5Dss+XuaU$G_SG8JhJdqH4
zGJ&p4BAkeHV%CX-a@ORtCla2Ao130YASmWUarR3%QOb#P^^(Xh=>**>p}M7=7&5MH
z87ID<NT5Wu2Ik94e*jjX-H0?*bfS_I-m8AZm7RbS^_^(oL=`8hI+5VimKsXYPQ=n)
zan|63QTJmQOitwdJwlPy+4;$d8hT7khFYu#_xQ&##OqnAQrn3{Cz9BqY#k>kjG(UW
z)N>+PXWCFhCmK1?#)-C0q_E$NwJ~cdYZKO{tkhJR6X`l<IMM%F2{JRO^Ea8AJJEuR
zTC%owq7}pc9TDwJJ9av;wrB0Y+L4u-qTru(?(9Stox3{Gjk!B(57wNPdpps`sV%27
zo#^Ytn<&#DCk8vwkJ-%HpOuORFbs6UFTzaOAx;c+V!RU*oESzY+KI7F?fpYaBN#@r
zj&x!aL&t|5sAvpxp$K#C)g8lI#g22LWVZzJC$dk@WE$<Z4wIZ{);WUwDNamvVj7LZ
zR<YBanBhc)2=n0TZ5z($;y*HF?4u5KBFwY&BQ01Y?_4M5IT544q+q@i3!FIZ#2F_R
zI<d$J(Fw_k#ZD}7V!IPNC~}r*sS_)lSjoJMb-5FhW|@TPiK}Q>^3#NEPONrfjT38~
z$ZTtn(hXY~*0KKL#CnDetQ%P=Y!ky~)-6sPeGyIO2%}d0a}`5On!!RdQ8o&^{}t-h
zSu1OIaa%{2txnh|-ie1tf3`ajf6%nYiM>w9PB@%!a=gl_u)0{?PI#REdv`i#Jb2mn
zv1U23lS}D7GnMXQb2lqJ(AmdFx}S8vX-2mH%YUN}a1llRN^?QyLrxrKKEm2BQ2U<d
zF()#f1|E0f1esRTNhf}DVnBrX6ldw`_fhq>lOoJibe2{IT3!?k%_{r56X)sh6$C5z
z!-)${<WrDe!9^O7PTY3lPa0I^jhAWVr-@V0c!kbjgn4HPBk7I^^EEns5$5Yo++ZNS
z$#9F#)V54|S?G=vcb)jhiT6(2b7Fsl`2qE(6Ze^^ouE)-c5M73C;oCGn^J82V<(<4
zJY^;4nG@6$0qJum>Q*+sb>amL+M>pntOTzZUbDVo{hQ`*;TBZ%j;rjyl1vpRmok2E
z;;R$ioFM+_#J>#0pPcy2{6%+YbKhwq(BiKkuYw=crTqStzoLPkf?N#5xfSf#nn@7A
zP9EJa^haPqkU#lVw+1|I;Af*(Kot~Ju&1>4uCMpCu@Ljg>anxR#O(SSAEF?pv@u*k
zsDkqIdW5kSW-Y=>=H&=;1cybkzKk$ODJT_X%oAxYrl7cj5(-KxsH9-B)OgBVQz->y
z6_is@T0t2FwZ>*N9H+gAZjK5mub_g0@bSjdk!I^eV^_L0u|Kh*f}3NTQ$S^fzF&qa
z+)gxW?vII86_7SR(1O&!Y~-T6FB4-GR8ufY!Dt2571U7Bkp|L2|C)-nxFu6*y0Mmm
zpA^I?h*yxLpbiy1F|Mf;o1mb!0uN#+ODU24m-%DrGWcChs;7XmIi>2sg!&2^C}^ml
zk%E>AS}90T=v(dnO%<dm_%qtjm^D>F69w<e87M9I8lA4-e09UXPtnJU88Q^@6Rnwo
zOa;xEDceFpy)WARG)e<n8GbVxS}Qox&e)y~s&jH11#K0yQ&8lniHd4xG&9sRbfBXc
zVu)y}JsP8r&Q1z`R?t~N7wUmg5&iU*yE1fB(4C=&?)PNq#oAjzAKmZEP;+32SwVjV
z12{X7_0{QWIeR!r!C*ap2u)|5hbb7&Jc4zk?l(@!7^7gU0;>X>f^iDQD_E{zg@OqR
zCMuZ4<8~6APzBQ!e7oJ0PTcn$21-*DkWOWtroes2MA;cM%=RYEWIb3tZPh8mYz1=^
z%;k2LvOXIUI*&dDm=~}vWTi>5NWo&AmoQAKT7mp!3a<QCmtduWRSE<J_3wnQrqMpj
zL|@okt6&W?W#d}4T*v&2?yP6npkO1zCIy=nY*DaP!FD}n8y#|}KUJrc13S3LqTpE1
z05YHCiWL<|3J54g97?n+kQMAj@;;hDQ=8WwZE`4ZD!7}^pwPJG9(Hlo%}Rdy(Auir
z^Iio$<}BUWsbCjJ?q+9??(bEw`?I#5?`P)#E4^>?D*><bhiO1ka^WZ?+F_aqE;MxE
zxPlW3ZqVdaa8ki31;5j1SF{HK^wn>ANb#G3(+bWg*j79C^U}DplpPa$j<T7iZ-%5!
zu}Oa@_>gM4NHb2+K1wdI(g#N$Yi82}EicnaQE-(`y-WKoj%$kcm-X%s8Kl=~pFd<c
zd-&Z_a9hE@3O>>7<N5wl!7BxKXj0@c-c|5Czww@e`wAYgL*`!!9x8aG;IZyJrEb^x
z`$E5GIyYEfIGbB|&dv+gks|}B&DS(BZOLzGrYm@(U`ANn->fwv&BXsG_%9`C@QofH
z70mOGf6w}X#y}4fWpCeZ-{WzQ&)m=XT`1tf7v`@t{u#d0D(Cv&tKa|VQ-Do6L4Gde
z(*2^h{rq!Sck;LpsB>P1d@iI%nyF$z7Yex$=|YqXK`sQl5b8ph3-%tS(sdHz=cI(V
zFnM}PV!fooE);R0#g&Y37ar`)hzgDy|4$M<yNPgN`heJskhtf@W<_a-v!g4!0ES|$
z#a$@jLP_RQtQA;GyHJLqENeN|@~qTI&duS9oUO#_xTU>HTEzu=8PUW}RTt=eL^3HE
z7>q7-c@>!R(rK&<wOsg#{c0{$*CT7VP?Pyow)Q?}obD$w#JiBdP@9!nqnIQY>TtHM
z3&{-iSgB}L`SAM8k6&r6HF6=vg_SO>a-p#csV;PK;b#|`xX{$4{o+9f7h1Jzmgdqv
zfHLVUxNvs7fl`JG3qlResHu&{-jfZ@sjFRR>B7er9p7$AYEO;iF}8A{H3M-Q7uqtn
z(;d2%N0G*MAst=XZ&qaPD@jT-uCogZUD#VBri%+*UFhaQcRHsoOmX4T+vpxHjB#PC
z3q4)v<w9>4`UV+pv@?tf(LO}_P}YThE|^{D@4|3>6b*1;h|U8U2Dva;cc?nm9m?5Z
zF3f9Rgt8;_(vdEVVjj)9EK&;|=fZ_Th6yfAWEf8|(T2%EhIvH{lc*biGSH>+k-~XD
zB*ad2VVVnbT$oEO7cpc;8m7B2gLiu->ulCpG)O8M=vXMGcr61xr=I7+e2Q#t*xSz-
z6=Jxc#4VskendxaFfO74S4@jtSmMG`7yaad-*VPvbeM{XlDbFJ6?E<%B@wK4VT}t1
zUE0HuHxZ__E^KsRlMCxy_=Sc_WZZfecGov;aN*6LNtqoIey^KA=4KbRxS+V;a$&0r
z+gz}?Ah@vog>kzJJ6u@Q+w^jLz{S?-1Z0Y|4=(JBG&@|dy0m)^b~^A#vyJ(AK>PlY
zW|^8ICp)_J?RHKMUf4T^s<>V7xUkcOT`s7L45|x07qVRNx{z;w;*_4Tmm|$BdWRDy
ztTb#H)nT^_dt4Zq8MB{;3LS!M*hh2r*Mvonn^H`z!(AVoG8}N>SFV2dP{*d9n|_Kk
zAL283*hT*gE}l})?#++U;!i`xjR9_)aN#6%ksAqg(~Jhc3r06$+&JyR89M5=M*6bS
zSr^XHhTJIS#_ukir$xq%a5u8QM*l%0!G()1e4kN<vX@-A>_WB+&t16U!c`jfB@BPk
zJZfi12r^vbJ-P0}4ThVnw_Ui!aBEU?8e^0wd&h;lY~FL>F~fb<2dotHkl~RF*L^`b
zwVtr^l=T_wU$mk8d2>o%xbVq^&n~=l;gt)oIp7~w3V6ftw+n9>-s%3cHHF_Ze_;K{
z`mbI}zgqK!+0Tt!ZhU3_rk8$a_>c7mjduRE9NJcHH}blX&kcV!e@3w8VGYc2o=4vu
z9+F?@AU6sy7i2A@`xFz*9O6c(8)3R%n1MEzv&9HE>ee?Dr;T<sM7j~>#?|h|qHYv(
zV|$i~xc$yx3J8rdmtd!pNqbSGv>RpI2q|HJ8)e-n=SD?0D!EbKjSFE0N=wrX6_|$z
zM#|E0Rpt#f4%Rq%fPv~(aic0XLLBXefq7KCR%CK(GbIQyE1#v%8XHUd9OPfkt*y7!
z-KgQ#7E($z8EU!l6GNQt(;bG|ZX~+V(Tz@SB)RDYW3+OkHSL2N_1tLYMy4CdZq#=p
zotvfB8o1F&=Z0=9>eZGum%?o}cH`iwM2bn}Y!lX|tZA&#-GeAN!;SAqI$0*+es5EA
zH(F4wvD(A3#8Hil-->JL)*ibf%G}0{k<rF>ZqVOEZQY<d5_F09>1<+qKI#r`jCgC<
zu-icTvm2e==*OGr;>Mnz{Q9`HJHvDp-PNuA5!B5Mx@X?qjUJrs$x41NH+t*5s%r>U
z>B|)xMw!iS?Gi4yKsVBXZVYl`xf?6o80^LnH^#d$fji-4*@&UMKh)YVH-^(*(Qeb+
zZ<;om&i*Gu#wpV%HyW=s5{zMIEGrd_W1z@_#SIhPnCiwfH`+&;C%F+=KW(y`ekec#
zN}bZvsNZ@n3Z3r83^$sN()xU+8?%^ayD^u6{5ftoS{n)Gu`{1_fnK_hVUZh)8J6h&
zQif$TLJsw$x+~pS<%X4xi|+q({|Ii-_e|Hgv6hPbW7oOyiyQ0Rpx2q`$?^s_HoCFH
z4GZ;vJ$Vz2(n!;0H-<);sdNixx3ZGIjbXbR=GkGCr9?0J9NMkD7Ug^sBDx__AAXId
z<mzvnS<z&7Bg?IQ`p9%>ZtV>;C(Y&1xVcg0Jo)k}v;sV+=i-y)cEiI!r%Yw=y5ZBE
z$Ms`(y0JCNyvvQ<G)Uao>(;JPj=QnXjs0#M;q1B2;ba~VO$Xfgl{QBpnhtW&AvX>)
z<OCdLrqW{^Mkb{bG!9Q>XiSSgb)X8niZgDUr4i`CR}aq7;!pkTL7WHY-T1?ecW(Sc
zi+~#!-MCGIpU3JYUVri|PQA>-><Vk4z42FhkY97-Is?tM8w@vDZ@K^Xd$M=<tUYw&
z5m&s+rT19xvp!(G(meLD8&BL=SKO4%&Qmv@ah9A;k+FYK=S0Si8C9lUWbAV{UbyLh
zASS$Y<Fy-a+;~MN;z8<>R;JP&l2=^)`EObonws9S+9x%W3S`i`Snu8V;KnC6KD+VJ
zt$mU9U$^#NCA})}^nT#-fwk%F-!HW6)2iq}1rNT_;y_EW2VoxVp5cFPP4j#3gTar@
zT&(2hX7KkQfFTcSAZuRMe5~}h5(QH#;6XulhzofT#2m~T!unc?ry}~1jlv%7cM(gm
z7GVu%jqo6nA&Qk^iZT@Qpg2Pb){=VZ^F7*6c9iC984t?pemMq5l)0h@m1zH;N7wYA
zvIlf8hPb*1RT!3p7)%~iWhOt`1B1>+h8Wf-t+hX0V?C(mLHW^!JpV+emNK*&VW{B&
zz2&=nX1Q7(oQN`0Ox1S&@g5|2u)%|k9@O?A(Syz&bnzg`gE}7iB_A~LVCnS4x*jy7
zfMaR(JV>THM6*owSsQq?`@{72JL&n0iH$fWg|#s&RS90zq^SpK9<=nJl?Uk_jGdO4
z=|OW3GMFjbj3M9j#In;9TX=9g%1q{%XRX^WFWlOLHXd~Jppyq}J!nT~Elqo*ODX5s
zZhH^?0*R@E2d5i{6O8ETU*}~UrJtz->%{#NW$x-hHxCwiaP>m9?jH2;V6X>6Jm~2`
zp#y$>J?Q6waa3k6*4`fUVIXI0=`i{_+rG>3q-GELdq6;GfCmGa2kDN#95B>_VbmKQ
zO!naAl-S`OOkf}$!7!3_6z#3<kD;U1c^t!d)}r<NCwj1QqIU6Cvu)5652n&+X&W?y
zOQ*3;_h43S12vvGHP*5(Zl(uRYnBJ%#OAYk7|hYf##|5PG0)eX1s**A5=M<L@?fzC
zOK3N~g)HjWX1ND}SL2tmF7qIyV13H2(2sE?!z$L*tZO`2tCz0x;1}lgtX=a~ppM$)
z!DbJxP|tg?#e=OL9HE)z!8Q-Jdr&%~&Or}$cwq6s?t$#Vf&wuD9fAjv2PfOdG+ff$
zN`B8In+G?4iXfoZn8#Fz3odGQ(E3o+ta#w^AXo7uC#@9)V(Jvt{vvRD=%+^!T{+G}
z=c0U^>d~%?ysSRfEY^pU0?6ORk-J&<uu{dn4EsFT&u~EZfAwHcjW`ORHRKTW>S5zy
z*6Oy1V;&s$;CEWaX>!rdd$iT>tOut&_>HDj4bvGK#@GCE&x<`x18iQ)Ps>6`_pb1#
zB1-4DG>8B2;GzeYxYh+$3cJieEl{%*MsUr8>mID|i(7aq^ak~h2QO$~cyNoRj|Y!D
zc<jNrkT|b@{GT4&@!+lp_dJ-BC;lPrXRi1rnf~`Zp!*mPSPAZAhSIOqz3_{F;=xlI
zZ=rF|J=$f@GY|gqAe)wm<hXx3C%vzqbiQlSxF2!rrl(X5h|k}x`6~}zd+^?a4<7!*
z(1W)gykq{`gJtKMTncIO4`){w^E3P9ZClh#pWq)o_}7C2W1>G(@X)wV9^9W;#6BsM
ziiQ+5e~|qvRBZgsgYO=gRK%+IkCuH8%Bh(CbBv#gTq=sH=v~1tw+eq1A*yz17ocjF
zi}_U)P?1MPpbDYAe_j>&*r!(+7axtF-|wQBf+`BBm|fHytRhI&u4lSiO?jULHux4o
zOzGPyzfcunDhjJ8!i`6=hO2n8#u%ZZLwi30N?+UgMX8{lS%_@!M_NopaTO(0lvI&(
zeoLuH99NrC85N~<ep@hroU)uHF0Z13ii)asl};10imLrsVkH%odC#?LU=_~-Lz^u0
ztEwVeg+bM>MjD);UpYZgLUO~*_M3{DV^p*|k+JziMl}`HRrFNRi@L5uPz@DvD&ke`
z;<=`Z&lU34Qt^|DU!qLU8^<24VoFd^TSW#RV4{j7Rr}m&NG+rr9515lsHm&bmlW{d
zrP%shluX@wPy5akDVYtpXsuMek%~e0!o1nhDJmMP+7rW6)+Q>NGNh?UXP_ebNIHI^
zFhMgFnJSvAXhDasqO*#YDq5*%t)h*Jr*tnm#cxH5A8FNOV_Ov+RWuwNOny5R?KyzB
z0|SK-cTz#Y1YOwdrlLDTR~6$@jO0@oHASfhIaQL#>8+xVij68ZspzYspNbVKzP@f_
zR?(kgRE$?KK*c~6*K@~>qMdA1XON2Fs`d+b#Dm!xqGBiwwlWzeSNt#)H%n#gy4##|
zgo=@zCB8E%vx7Z;w2Cn*#;SP!E}a@QebcH;P%%-ZA7(L4XPu;Cs)}jMlT}P%pwd5{
zWeltxGU4|m0%>fI87gL~n5BXoN}i%-(%CBJsF<r_p6)MZn9sUE#X^Qfdg=U&!BlIB
zilyu<)BWWPRJu~do=I`5RIFC9hWQs2DfaejnW<<Uo%&Tt1nb$^p!@5)^xdpti;8V3
zw$rewVGP`nL|=m5s$y4l?e*^+Dl94_6;_(Ip>YTA*ArBTs`g_1;NC4eo=<MECh_v?
z^7Nu|m9Fh}ze$x<IB5F&klP2R3WfUIi(y{4RJdtWdlBb_M}<l)sCYwzjYsTW75h~9
zRPE9wi<Mv}!!8xOb!QKqcYZ3dpXQf}^D6#OQDu6_uPRQcIH}^GibE>>PNw0oilZuy
zsW`&fQ7(EcVxYmiWPHZ{G{bQfq;Z{-PpSBBi1|&$X@=cPTGOmKqvD*34Qt}g(h4@&
z&|#>7F719-wZC*+xeWCO87`=}$h-Z5rlg9?DsB%om>m_asJN=)j*7b~DDoQXEgF*y
z<lJDm$(qyJZRS5&=k{(wG51tFQt?>DeKyH?pyHv<CyScNc|t4CCL;l*r?m3urGKf&
zW`3?an+Alu<XwHG;_R#Fre^Kp^KV{B=r^~kdGS`oI~D(^cu%XJ7iGNopyH#7{9Y9B
z;$K?d!V{uxCO<DeF;n)liZ9Gxb>|zycUot3=LbXM8Hu^Ppz66<3H%uXSo3%hsQY=n
z$jAH}Z?2#hg}kuNN{sL#$ct(N`%>K;4fY~LuNBG==0#!MDZ&u$#o!r<R3(xdp?0De
zin12-qBuhdy|g4lDKGYQZbHFjy(s4eybxz5QY!C71urUkaj|ogFm|YM@+)ybW!C8}
zf~t5?mA1}VqZct=81xn@&eq~hoQ-AO8lFJTfZ2)kZI|j^)bMIwd#UL~EiXFU52q`i
zbBjYM#d}e&b9gf^GQCLfqP7=_UL<*u>_vSqS|ph2cu|*uICpImX+6%;Pxq{dPaad<
z)WD0<wc{GH5;UR>F*nwoRE8$3O<B{tNY_g<yja#Nfhu~plxyw<eT$(7weLksFIsug
z+KVn;?K82B7j3;L|0R&VH%i%dUUZ^eJz2Cpmv&(7$eI)IGjr$v=XCYr#2!;OFS@gN
zx2T!gd0y1q(~DkS^!92Wd4uUh=QH&2qOTYInEQJ%fWhp=Urh|FHybzPH4Nn7LF`Xy
zWB8$(V)Ge>aF(ifZ|FbVixG6Lz1Z)?NH0ctvD1rPw8K%R(O&H*7DX?{crn(CabAq~
zVvZMcy=W9@nBc|Qf0B27%|kmg(ThpEp~<Y|OktSn#WXLbdoe@zXL&JG=XZ(P%UZL&
zxcX6hhCYw|U%XiF#e6Roc(ITjdj7tGVUZV$^}0*ESjxPNbvf(MPQla;rIlW+VrMn$
z8rHR}>sTpf)#UI635E@n{X6>aHrjp5jb3c>VzU=p^cV}nR@QA^Y-iZP`l*1ndI-#=
zGPJ)?zLYUZG<UqPd13d0vJNlGN+tr?3nj&$z{!5(&)pR-@)k3@Slz51FH{CEtB;jp
zvS=O+jU}K>oV=2;o42@!2gY9330r#5@HpVbuU<T(Q}4w=FAj0oZ7&Xcam0)BUi?8P
zx0>lF>p3rud9^D^O2-*acyW^96zgw#>1i*{FrU>Oy4w7mnSiQaprwGeVhg5uddZ8U
z7ecR7sTY@NAl*#3LcNh4eU+8qnimfb`V$=TCg1epmbRbCl&UY$)cAMupI+SY;;t9>
zym;)@ZtvXZV|?hvkVe}3w-2a?Z)ec)K4SktJ?(w_C(Hy-8A>O`W_$76t37f4NLyKz
z_`-`<UhQN0r5DRDBvX3q%Xm$5hrjjqh9bQv(j@6EJMVP=A1~fBe_&l_t3dJp(&F#M
zXF88w`1!Q^LSMazEN1@Z#dn&pXL}O=M+;OjGo>H2ChYA=(4v_6)$mvfF0j_*??ZqO
z7k#+oLmnRjec0o}ULW%Mkk5z8KEQ{eH>>9Np_mWFeJJ2VK_3eF5adH)ABy<!>-G3x
zA3}W?UCex;eryOkjmyP``S7(|?36Ce>1l7c4-q~@`m|$gR6drf5Y)Vw9OXk%A6{6J
zDSP{R{I0UGC4A^Ix^@{K%KA`}xfJX7!-=JRAf;0JQc^h|D*AAJjIq2=`;JltA2v)j
zE-YpyuH-|Fc}B{T(#fqt0X`)9P}PTM9}GT}tDIcJhaYqm>qCqWCLdyb5Q>?rvsulj
zJs>_^qHoNplqXe_cis-H^>?3|KGgEzCm-T`i1#7Eho`^ypcW_{q>ince5;t5;8QVk
zk`Hx!7~#W6AL{y0&xfu)bn|HgFPSydhx!Z+SR1lZX(Jy}d}z$sR3FlHzX?NAAJQ1;
zu`Dfv8O+UCbBE@o>Xe#uwgqcT)>b~W_MwdrZGC9R&d)xyXQ23wK6KETeoUj2&P}Ii
zf8ckfZr7dW{(;?@XHQD+??VsW@99G?oqIF%VeRWfKixO`5S2S5XAcLkInake41@KU
zAvDIAhp`T4y*^IcjZrkNd|2wkG9SjUKZBKu#`-YMhw(m4U}qBRL{{;<_PQFS$()_y
z!&HW8tmIGk;njcIkBU&5>BB4^X8SNlFJ0urT;_SK^L2lL4-0kvc}mb?<|VqbsJs7i
z=Jhlh8CLkPl3|q|vzlQI>slYyG5o^n<{vqs{n^M_n-80O*v!0zbqDKKAGYNL&^Or`
z=-g2)3$x&Z$RO!4RtD-!yAQGt4$kgmb+RfxxES25URI9}Dg(7#rb1pHa~A7E-rO#|
zbT^ILP1<@(e{1ifx$nb4A0BVa-0#Ecsf`c#AWd$3DBb^%4~Ko)O@^M6wWm}^eCRX3
z@ozpH_2HNg$9*{A!$}`JTax?5$EBaocodef)jyQ7r)a{CPVNy@pW;t*tusEHWjM!5
z{_hOuefUFnF3^DKl|V(8eYiraSr+nT;i?bUX#Ub8cv?Dqcz>$sOBx0~+@Lk^dGt*m
zZuxMVcG8DC?BqPPTskI#O7F6B&xa*(hWpG9e0b=?Bj#tU6!zGMCptg%q4dm9GXG*H
zTlb$cyr9whMY}v$9vsuKqUp6y`{HWO_fr4%;jItveE5gf<Sa<N{oecVfz~BjQEC3(
zO!`Rc*qiu&`4qgKT=<g@pM99WzcCfneHCx%9`MbFH;w?x{_r97i|M-$|1l6x8kFdl
zr7cIfvb08WGgH=|As|buNZG(FT&f&T-{#nVAt`?r3S^;d7LIT5r<;=nvk;zzh%6N1
zDnWV+!C45=Ig}wR3xyeq=zi9CzsM{^WuZhCN@k&G77m_kQJhPg%uOzqg(q{;35sO5
zqkSk^v3aR1l+HrZ8Dm3VJbi$cq4>JZlNJ_k7@0}|<+4yd3l*|ZF$<NlaAX&b?n31(
zAPbQ@5w#OlvQRY(8?&$}3(<7ES?HF9?pZKqAtnnAv(P9DrYyu}p>`G$vrsJy)wA$Z
z7UFo9YGk2i7HVZdJX4l7*QSEDsw^8EP=mWDo?{YNm$m#KroIC@s_OeXkU&66=)D92
zZb>E+q=b+Fp@fzY2)!vC1`(u4lU}4(>4H)fM5;2cOn*}XSP&3F6hsl}D1uZ$`1U*V
zoB#UOx@)g}&po%Dd+vE}-n?R-NL;UI?!*i`n%mLBj%HHiii@qbHmYFfa+!9tw4;^X
z+y$%GMlrD#Q$tsLmK|;F=w?TEJKEXN-i}Uo<l51}j*fO@+mT~OR-75<`GO82>k@m(
zcskqB#g05Xy4t~aj8Ls!k8+q3U8Reu$;5}Jdf3s^j=pyEv!j<Cy@?4?eeAg0Iw3qM
zqe3*tN#*`_yg>ubiGEWC&(^BTIC;1K!ENz_>=<mvOgm=TF~p9cc8s%QydA^r7;eWX
zJKnZqgdH|JM%wX~w7>z=T&Kzx9=1F>+}Gl`*wJ>3vGW#gjFpju=fc5HEE&rylSFnp
z!H#$Bm}<v+c1*Nmk{y%nm_okZG#yP{b$t|-yG$xi^In}AJ<X2k(&G#}ICmPh<LhxG
ze4z@}X4^5xj^%c&uw$+r^Xyn;$6`C?+wr~~3+z~EN7$<2MdXmeHl$_9m)Nn?j%9SS
z^-(pKMsXq;yW&aM%St;|*|FY^4Q#=V5A0ZL$2vQ>;;hIv*VxT#k{?cKI;)%66bH;k
zHrlbtjt}kFY&XvgM}HK<rg#@U6}U7^D=I{PY{ynRezN0dJGR-e-42%>ZaZ(5z)m|3
z+HuH^U3Pq8$6h-=r<XET*s+I3u%p%-vnd+?_1_EAp0w4l`?Z<fXUBf=6L!b3anTQO
z9TTG7Dbj-ahwb>n4#f^tEcvA!N9?fMakNw{Us*$ggjbLiH8x_0!wx6=U1#o&`tB&s
zi-g^^TW)@0%){Mk$2WF-YlqJc!;XA5#eHf=z>Xl}i5(mgN5WSDye5ZiB70#Y$Lu(6
z$5(cIP4mj;nq4xMKfq~2R-vnKBq!|n&W<y7{9wmPJ5Jegno*11c)vDVV4^aYkBL9n
z*~nQt&e`#!9p`0s;f^@k@VZmKLAP=jxIOLo*N$g){9?x?JMP%=ryalA@f)L)9oM*P
z?D*Y|D|Y-LKEuW0e0R=^q36(&;nuF(al?+AcHCm*aYu2?Y@dCF4M=`l*8S+5q`w$)
z?Ra3vLrUzpXUBaz{;`9mV9TsRWw!s@;yAX<>?1oK+wsJXr(zlQNK@0<I8DyzdvUqv
zcKpXfo`RwZUfA){j%Woj3ZfJgP*6}Y<3AfD9@rJnt^FtW_~@8IA}_2URxx)_LYdg{
zaj{`<q~<FMiYX|iptOSG3Q8y_sUS`PXB1u$RykC`^pNmm%P1(Tpqzs83OMX*^~)uf
zHs`_yxqRlLuZypwpt6EB3f8hm1y$Laf*uO0DX6ZXiGnl*H5AlTP)|Xkf_MeB6x2~r
zSB6?!L4uI5Rq1|g`Beo_%=q@20@{SnJ+WUtvBJ&8VI(QAD0p2#0|m(ntO`;T)aM{2
zqSC^w$U$Z%$1wyk`ZZM0NI_!-snSt+rtF0=hZf^QD0JPX3epv1DQK%8LqRhItwg!G
zf))xg6||HrYq8}k7tCh4?>MBsy-KxK(1rt^W3C+)*n2w#?G<!VkgK4Bf{qHZ734?@
z8+ycXJF}7Syf|i>v9p3M3i1?mRlp%JD246MqHfYM^>0;3CHACQ6iiYuSwU|FeH08=
zFhW6J1^pBZR4_<Ee+6$ScvHauu_0^GChU%co))(AU<E@I3{@~pF^@Rxi1OiwV#1{x
zuf(&8O~FV7V-&oj;4KBC6uhlqw9JBYWH@4jTn-MEwb=ex1>+RFOIP6nRV%yLRcX9}
z3G{(JiBHR0(<V2iJ~ip;ti{XVQxr^9@V<ft3f@yNO~Gsha}-QhFhjvi1+%0tjwJWX
zXpWqnvM<(UJ98DxlhXNu;VDqgv|?z<g$foaSf*gPg2f7!h=(s#K;Nc^cN`VNAyG3N
z%vUH_NwY`h6%JzTbTzlzt;7!$Gq!VO*C|-9;FN;X3N|R%sNjeKyMj#$K2-3jg53%>
zE7+o7n}Y4q+D8gLR<Kn#1IyTxW?<ngxYKti*r{Nbf=^_9X}$Mal;)5a<!B<#vHT}B
z_pqXZ0}2i**sI`k1^X22mz~J@_St1#>|zx*NHlk@g2M{FQ1B&ZR3SPnU-zZCrf-Ze
zLo|t^KvfV>5LBRX=@qyYcoaBfkWK|Io^eSSXBQkTCr)qlD)4b9D)1}dL^!;iYvcR&
zEW>`oK2H)-kgwot1>Yz*s^FM{;|ji#X1Q4y)9Ch$Mbzg>$fb2r-zqqv;G`&UcYnv-
zCuc8w!8mVS;85A-_X^H%`>4oP@q>c13|T5lsyL_MM+Ns4{G;H!f}a#zRd7wg&k8Om
z_*KDg((FYAzbLpQJlr7h!l`(+d|AQo3a%*lLrOU+3OQfmn(bx`B)P8OhJrf^{#0;N
z!7T+mpx+i>qD@$ZMy49cUkdKhPZZn}ov`J@t#Pv7|6PJ7Fb@<wWaw5=P{kt!j}<&u
z@SlPw3Z5$XSHUy!1iE_o)RYUV4Km{i-S34A@+E`6Y92|ut^40Drd3b<T_RdVjEW*E
zimE82n#YC0Dq>YLV%M%xZfKWs40Ie4hryy(R1{NDT-3tnv>YMNX5U*I6{n(<3X6(l
z6{S^_QBhMxyo$0a%BiTVqKb<0Dk`X`sG^bz4sZ9H<}r(nbAoJqcf5JNR8>Va71dSL
zP|f3b*90?K@(eb-1oh^aTey~r+A3eviPuylsHmf&E>HVa@Fa>YaE=W193H37IK%eq
zsYq0jB*UgcxGC;mZe%K0RivnBrlPru`YK*mk*cDJiUukgs%WI5v1%UU7;M=TEgW7N
zw!@L6sc5PqT}6fpnuw(oa(!9K_PGl2E2CPd$W+lrMV5+|GKN+vS_`2vt9*0G4Cx$j
zTNUk8v{%tVHIH1}O6;pqmvWpDHK{{W<f!PRVv&l)DsokHR`HgKQ7XEq$Wzf@#TzQR
zs_3Sow~9U-xr!btdaCFpJ<=xOk^kS>DYJd0sGnfi)I9bT&yRXj#Q+sUxezJ_su-kV
zu!<q78S}%@kK^IkI8+jP+He&kRM=FE<kEa+M)m)Thg{-tRC$}rq++Uy_f(8g@s5fK
zD&AEwR>e3Oz<9AXPx7M%mt_ka2@kRpRZLPbS;Z99JWCHddH66F_H*)SDyFNLqhhX#
z87gL~n5AO2ituY6;u^&9NKGSGaK|%}aMtrw%vbs52P~w`yO!gsaTf2Z_||1!e&1ip
zbh&W!UZP^Did`x`QL#+Lauw@UY*4X62E1Cu2P#%_bI~Uw2l4Qk{2CQ&MJH@?#^-ga
zc|<r~yxm3>n^b;{6k9n$6`NITQSp(AHMioz=A~g-E9^_x`j*?KV!MhRDt6M5;$o>o
zx8W+V#~L~1n4P^o{!<mZRUA=aSFwlvsyLwHpo+aJK3B0%#eNw~^rd)CjTU1BD0M!b
zz0k1_sW`0S3l(2-b>t+LLWb5|u?5)$J7N_@g{s1(!p;3lH&EeF;iPLNm;sFg=2^{K
z1Ils9m}Rpb6<!rSIy1c}!8}i(cTrBlDr}HEs3OEzp(9>LzRJ%~VuyyE8jh(rPOsB2
zNW)huzUB_nkfq@pE)e6DhN2oysC=UoZmYPX;-rdGDt=LMNyTYyMioD*IIrRigTIQi
z4Er*7cFGeK8jvGgw5|-d72WbD6+f%EpyHzV9vzHMMNJYa&`{*Rs`yRCA1ba&JC{}b
zuHs5$UYrq^VBW_GG}JW}*Hzq*rs%+IYUwBDtZ%BgrSg6C*5fx5c|OD7^QVfxR6JMl
zpNhM53>6O<-c{UFabLwhDjtYOajX6w7kh4P6vH*!Svj;M2liOS6Sk(}U)8**&T-QC
zv?^oHGZ`Vf9{IKT0;?A)UaE-J5ThYVLjlb^3KZ1vbuTmghGQ?)ILAVo#D5L3nz_f>
zX*f!-S<d1W4aGFPssS2`Ybc?iiiWBhN@|GHP)<X64W%@c)=)-6S<Q^_Y?jvJ*x2~4
z&So5&yDh$ghKd?0X{fA$4#u6%Un2Zb%wE_dtB_RFP+dd3hFUVD8iF-7GY*GOA=qYZ
z4G9|RXs9ctv<ce}S0~~6GQFmuo`zHnO*ABGNYYSW!|NI>>{^3WLyFX8v%Dw~u3P+J
zZ5|ZD6K|lQk%q<^8fvDKPkF5~4|XKfq@9Ur8k%ZouAzm7bPX9Ann{D4HA_DoWgd?>
zFxoj&LrV><G_)24nwN>CO!P)Z29mZK+G*&ap{IuS8aimm)zDc(M-AB;ax`?(%quq9
z#N^x=wKp`1BU!vX>e*&f(nXr>s-c^PJPmWVN6m>z54TU=oy##XdF~D?CA~EC*3eHw
zf2m@-7S%^XUoKpmgd-ixQh|~;G`y){fCh3V3O_&ezu(ksZLo$R8s=%3uVJW$VH)1m
zFj2#B4I?y+)-Z+@HH_3SO2gaI^;^;u$H1l<ly0!5cXjfD6RUIl?`RmSVZ4S3GVF1j
z^^DpvJ8Iu9V2(fKV$}c5agv6~8m4QQp<#-KsT$tXFiqNDmsb60zZedc%|6+jK$|Qc
z5Ia-DEDf_Y%+c^jtVA`_4jT6Ni=ibqw@C;VO7FkJ`o4w*8rEu9r(vOnMH-fCSfOFD
zh9w%7YFH+{`0B@UZ0x06w^+6l?rtSFl!i5;K*?$@;&!ulDtw@UU2qoUCyEqauVI6R
zEgC-3uu;P%4Ife=QZc-a)a=(JW>s84l8-fP)v!&&c5dDswJBjTEmpa}59f>00XUdl
z8a~nRy@oTgnxAU0Yfv=o*06^X4SO{l)Nn|{=Nk5L;u;Q!CVid<L<VFY6Ulij;3cEO
z8oto*rG_J1P&wsbn4<R*sl&wMk;(yU2x-V?l+fVN;ML&M;MCyK;MU;bj%b~*uyq1)
zoZ#V$^_Zm{3=Mt_0S!U=N$Z3$XDf$(ioen==HUE_RA{oU>bk8Jk23gc_?F>a!*K?G
zMk<DV(SJI#Vu4(9PqF1njbd1r{5uUNHJs9LTKXL$T^|`*k%Y=@ne9{U2Mxb#xT4{#
zhI1Nz)No$IMGe1bcu^qnCk;PqxS(Nms|03=JKXW%bV(F`<JJ@Mt5~nig?cOvE0g@8
z;VO5Kjxsu~X}GQ-S~p|q4GlLnJl60;!z~TBHQdv1U&9>@e`@$k!(C~ObLVI|PFmpa
z@GQ<&rqOQZH26ou0}T)9z>JxVV!~#mRmWehx3Owz)=C>#@u`M?HT=inX?UjLy8?;N
zrIBYND$<@D2Ceau!CyxK9R+n$ftF!k?2(*3lC!B89ffoh))A|txQ-G!is&e+;}spn
zbmVSHpfZuhr{%eP93DwYnQ5GkQo6aOr|SQ2UDzf|%jzhnqq2@FI?C&)prfLWO1kMG
zoC3#2LL4^ATv=ABs-v2Y>N;xZ=BQZ8$#QJu)M101Q7s*{b$q4cYaIzX>ged8qoa<x
zI$qV$TE+t%ujy#4BUMK|9f>+pbkx_8q{E`as+;k!Ug3htoN4D6MhwPA2292Wrq^{e
z(9uvwBi)P}R10rs;*6<vSdltSbfj?>I$G#xsv})ThK^=B{@9klt;z;jk%VEB$e5X_
zqos7(N;iWu69YncN0ZP3ZDiP4I@$_pC)i$)rN_=hW$Vb%u~*0EIy!MVbj;WBzK+g1
zy6AYD#@CUjqpOZLbqvtaO-FYfy>#@}(L=gscRh78q=)<E2>a;htE0b;H$>sZmIMx_
zA0<1i3x+jesCk3iVT*Zu8K`5Bj^R2+=oqYHh>l@Wg*q&yL54~#+A!R{O~*(bZ|N8%
zY9|+%c4LohpEe2eF*@GSF-6Bz(HW~_f{u4}jMFh*N4N?#8Ehx&n51K}sD<MsoBH3P
zY>#?R$21+Ybj;Q<U36yXn8``CGDm)JR1ACM2+8M2>0BN2gmCbTqFf6ijl4j|LLHlR
zY|*hu$6_6;b$lR8utdi)9m{nr6$7#g^;hUvsbiH6PU`=x$~FV%i!!azu~zDSsAHXu
z^*T05mO-2P8+2^c@i4yuP0ds<CY>`X*0u=SVap%s_*lm-9iQmf8u5W0I=1Q9F8)Iu
zYKE0}ib9xws$-92cmIDvDt{KKwNJ->9WEVi9S3wA)M3}5=s2X~u#PWv91+XV=f4ob
zx;zjwOY70{Br4@P96FpjbRFU4AYOSRJ?t}_1t&=K=zIkhf;vJvd^!vrejNebJeD!h
zQ2)2Bm}UF<I*#f%E($$koAQK&3deMi(@;DtvX^gke9L&^Kotj0FqClsI-b*8bez(0
zPiB2u$M-sJ2|uIb2OYoZxUA!>j&nMG)^Q=S3x3pbUb^Fg{uG(-?8506b^M~^l8#?R
z81qrWAN^utKT2StBXLx;!|yt-Na+pkdL368`E^{Ec)}Jqc+Q9^Op03ykl&2-dt1jH
zsr#pnyE4wdB+Fqi{VfvOkjB3+{2v_;ggn&oSjQ8_CCO4D?21oy{40`hHjMx2c)`%^
zKye3N>WFfnkOPGsDBwUr2cjK_aexz<A73YYKE_(~qO#k~k;ghv#DSs?yy7rJC7m<8
zgTgCC35`&~fsziCb)cLBaSoJnptJ*J*lgrng>z?{R1ViI??44<t)d|NV$uC;=9y9@
z2k1YXPE`l0Incy`GzY3XP=h0MAkl%E4#Yc9$H8~Dpq5mx?LY#3K(^lNGG=l%^{NAW
z*U4+56J9J1gF`ALI!O*#9C+P<1`Z@UV09qH0jh=Fn5OtKt4MtZ!g2n+g6Rz%Xyia+
z2U0n^HVLMO%c&hZ;@NU|rcE74cOc7wwhm-C(2Q?daiFEcJeO$hFi!(oIKYzx5=w}z
zB-`47HljlbOT%X!#C8s}cc7yK*`n4Vq7$y0<3J||avkU_E&u-~A*>s2q^kqn9QZJR
z%>i_Gpa-Yp!AuW&I?&63O)h-sLT?B9II!M{4NmlRpq~Ry2V4%^xKyvd1EU=n<KW$5
zc$2GnD{%l9w~B4J0|Olx<iKDDhBz?HVP48$Dl#~VPv;GlZ0SPT&F3UgI6{VJ6CCNl
zTMmqJpm*_%w?)D)N01YLI+FH|17qnn-^73Ez&HoSbJh;*bYOx5?{b6=Y;a(r1CylU
z8V4pjFvS7BMk%dc^4Jo|Q$@bWf%hC(do*L31JgNQ5zZ5wDL6}Twjd2Y$AP)Rl`+}O
zGR=43eUU5>To}>R{n3ksFL7Y0kY!vEA<G3<2(pEh4y=msTV>0BAe_}%w3a?5+1#OJ
zJ{y`$;YRMATZv5DxFTFEhxrn}kGDl_j>xw-@R9J3Ba*G*?6xRsZWrEQr}+)0T@KjG
zr5$wO6Rx8?tNy72yCZxL`xU-d@N>a^k<$GR9Efnf{`Zgrt;?ky79{zCQ)YH<`Vn^F
zfZ{M8Np=XT++U9WJ-N)slXcp^yZH=q_(^2910Kd1Cki^@b-?GqUAl(@BXd&>2aY@N
zl>>eU0uBV3EoVK-U0=nvX@NE5Kt2t!z#26_f%0P!IZMBG;2Q^icHjc5_bT<R11DMi
zo9-vL^%_|J>{aSJA&slpC_LrBX(=WD-hnd_{(}Q&BmA5LKSua@2YwQsC)Ia%j=Si<
zH3zOc@QcHILh6zr$*&IlCj7GC?}AqZ{}80kRocI^`6k#K^x?Hhw;Z_bz)j)IR<@?y
z;jAlnB>9t3ZZ1DP-{&tWrGyHpt+MYq@IYF-FWc&$$X@F^%zQlXp#zT`c<jIv2cA0c
z%z@|JvsG;W3Z{3?TTsPD{7*_>I`DB7+qLYx7u?h<dr^%k%85Hho?68g?L>?d?>I5m
zi9${kcA}^guQ(Aasfg2j1HkDjR&95$_KTxG9uZT_iQ-O_ccOw5C7h-|ly;(w6D6I9
zb7IHx7`g#dDW~ZVb3RVvlkC@eWR!K{`_8H5M4wN-PngrLq7#*z=<GxnCn`Hpg+)$S
zocMV{TvaC$II3HT)dZ^x))1tyrjU5ST29oC$T!R_Unj!rI`L|R!->}-yq*(@!uvlr
zZxl~<!s<i^Cl-!0FZrf8(L_q?NAzEJqCtc=6w=6v#t})X6N56$ifK+X6=Awy8^H`G
znmN(ji58M=C73D5DlMJ(a;jOkwMYitG~XPOCA_U*JHhsXEGl)kL`UJ-5lN1aPJ+2k
zlpa5vYI#m{bz&d~=0rCq4qh~GW$!LJ%MPTH_YmGwu$L3Po#?~(FIkrM6SA^Fbblw_
z5dNkU1B5iw%zq4-;$MkPZI?9IiJ?vmb7F{;KK?VY?!&|wxu0#g6C*@ub7Hg;2gaMv
z<&6}{TY{qm-*)1Gy!M9*V?^zPv6gX8jF-}NPE2s(U3!rd)0~*-ME0}Blbx6%WRerh
zF6Sn0&0un@Ntw!tEbc>cvWjiG6EmEc<-}|!qK3C!^ih+UG<DM^d`kv#juUg8Sjy^7
zuxNajF1(;O&x!d?^QNr#1s4c1yHLm?Cl(7?5|Ou^SBs@X=eJ!hk`;8|4;!tFl&%u8
z+KCT@tPxxrDZP|e>P8jYs9HH2o!G?1a-ka!$4+eKtX(MN!WJh!a>C_=+lh~z=7SFh
zxQ<S2bz&Q1X#?waCw2+hL9^7b?sVdL6<dD$v^(`0ej@Tu1*y5)i9NzUi%9l5@wxDQ
zg8L(KK81bAiNj84>?_dg3tG&Hx(_lGCyqGH6Bs5t!@{!`F=q;2T$b&BEwxNmmdcHv
zmDPTGwr(1{E#IKxU`#-=Q?TCpY!BOa;+zvdI^lD|aN?xXjP`z~`DqfS<3a*X1cihm
z@_Zpj1&`4c<;x>qIq|g<d~g5kD9bky&2ODJ5#iqnS-dLhloKx(MxUl7%UhYgcj8Qh
z{~+Y7;4hu3o_FFWC$2d02P2OY7dYQSX}>tpBcazt;X|HwYOy}&-)$L}ocPs=-<-JY
z#P3qnty}y4w=>SIPuq~!KA6|uf1ux0C$2g1(1}M*TzBGz6Ms2z*NK}>+;ZYJL#`8(
zA9VWpS>~fDd6OSzK3$g6@>%Ae6h6#k3;Xlhw=SIaw-fiB_{WKRPLzApscco-`c*ke
zRc%ywxuo+0#?07U>OXek376i9|D4EqocYv=f1P+nOXjubXvdE0)o6V`a%#SyHJm8m
zLO~azTxiy{eYyQ{m7ZpLVsg_9=iYskS*1`ed9(`?*X2;ZunVy+v~!`oi?4n{Q5Vu&
zXzIeK!6~n}P~3$Q!i%{u^P?sdmUJP`g*q<ObwMeVG@Zf9h0-pRaiOdWHC>2z!D&e<
z=R$cGD!9zRJ~Tb4q6=@vC2h`2s^UT=;bm+|m08P{#3zIJ4z8*$^KD(#1gpDHLkM3h
zL18TyYD+r_F22s!3~P_aTKeXi;q;pxWnXmxF1+qS0~cO%fsfTtp6o(BsWRMVNpvB}
z1rm!ONul+rRu@uS$gOItFX-)=G^u1#*`(x#F7s*J<h?PY$0s#%p|K08(oPdWwruQ8
zT|LeWap~-|o3*(MEnLWOfgkc<YUbkEY!v00uK%5zWx3EY!dnSx?LwP~B>Z`WwrpI!
zv(UkXjxOX$U)e64D`@4j2}7&eZXAfoaiNn7H=ZZuy3pB$E-sY(p`&j=N`0eGo2$LG
z{pPHP9*FAhLJt>)ai%WxbfK3Eec2a{Imgmlnk~U^l(e_>Ven}m#XFGuyYPk!e9o6=
zFK@aqfD@r(v`U>>)i#hze5EiS{~W}nuWDPhBa6tQA)+wUh4E=+nMSx^b77hb(_I+p
zGVf}B$Az&jyhXQhVP&fIZ5O_M(rJtfcUDA?cHz;;P6HlguCHqQ;!Nf^HsUfLjhW)Y
z1Q*`r1iwg|?1K66ZWku8&4l6Pyd!$w^X8j|MwO2$op++&R2Sak^3^h*h~dK~d>DTQ
zN9e+8PQ-;-F3fh}eHRvR-KoG)ElHm%oFB=WCxr6(E)0~fXpt8hU6N^`3p{mMB)C{`
ziQrPfWrE8ES8!fJsK1I0mX0G?<1!;B?;+pl!de&BNp`&p8)%A=>1Fe>c{1FnR0cV9
z=wq81{9Rb##!5Fna^YhaUUdU*Y;|Fq3qBVN7q-)#T=;@M>B3GIc1fH2T{yOa7xS^(
zg*`5ON)LS9TCsxFw<7AZh?jQg5gnhNx>vHFyUe?)_6g^Wg?y>n0T+k|1rND!SjfJr
zHVXO3*bx_0mw9}&yRbMjOA#cQP%D+rpt+#C{`YoMhY+Wr%LTU(k03R@Tn>3g*zZEX
zg_ACvav|t4e?=a1;W!g-1acu?$WcK`e)_F2U$qyiYWvECuU+_tKDjmHpE=Q+cvq)z
zW={zD&V@fmm1Xv{3*WnNoz5d&pW()F;YSz0G!*lLNX`n@-jx+o%yQm^U;nQ!7k;Li
z3x|qZE^?1lv1~h#@rw&pPxQPbIIx6;{5R3R?85IZTyfzKF1-s+s@g7AwS7{?vi4}F
zt1i4P<ath$Z+Ep@KgW90g%>Wobm11GVl~@sG5#G6nBFe@kqevqr{1MCT(~C^?qB{n
zOT6#GKO%V`_)xIK4D*S<$5QKwAge!h;ok^<Cgiyb{|Tuw#Y%-JHww5>+Kn=96m%on
zjaS?#=H@4UkY3HkR7lABv5Dk`g~z&4L`czy&PmNu+>H{f#Zd3YuM@2$g}3PuO&%wb
z@?)*mX;vyc8k<_yjhpYLmt&QLGR&5Dqk`LfFHl7{Y6>ym|KmpG2(Kcfs$ez2>Vh@g
z=vvK2Wu|yHYKgG6V1i&B!McJ~k5;4FYi`tYW1Jh~-MkAINp1{vW0)HjH<I1x<wkEe
ztZt;Z(cX;?Zq#?<bvN3%acf8E25vNTqq!R`WOj|*Xy(S$yNQh@%c-Th(L{KfU{k^L
zNNI+UzmsG6E{OXH=E-xW8*N3{GNRMUjn=~3xRE8~>4U;uCYvkE#P?egm10R9r6}8t
z93efHMs;$7$62P_h@`U{lvC2hjXV*uZdW1Q+~^)wi^zMr@m+qIa4&t_$d8SC!;QXD
z+ApHhpOcllp5An0fE!mkcN*x1H!<l_t)xM2`0FI`eVc>b7~<x)-jbM@UEV4~84)ww
zjS+6x+!#rFW?RO(%>&<CZd5u~;vF|eN%n0w-X3ga8tulI2!E@Z?a-z2R5oiZi<;oZ
zyKc;P<9#<Kx-rRZ#)tQ~aPr<HUPYPg#uPV5rV4sabt9if%ee8=ii{a<Y_4XT=f+IQ
z&Jv`2wi|OIe6Emr)ohz8HQ~W}fg5jLuq<`shXuVBy0OTOlWPYhR5ZU{x>)!UH`Xs1
z+CHwyGB=jH@n>dK@69n4idt^QT2{HS+KrMP#Ch<68*AJM(lTzWbz_|ypSrQzjXSNZ
z>)qJs#wItmJEAtY&2t0x+hSwXC+#gCa=>nEaiiMmsO>D`QNWFl-R7zCaW!hI+dK{4
zCfTyiN)*;BQ*);qyF_v~BZDW#pSaD_<1ee(h<n_~tzbRkhMmR{n{yU>Wko)BW1mR&
zN8|_GI2hrF+&CQJUkLfq{lE92DQxOyqQecR8!Goy!MKD9$r?L#gXE|3$wU`@V`d7I
z*9~`sdxVsHo_Q)g#pi|*mNO1)ObZAfur7^N^4&PfSi#-r=I5fU$K2?2Ht8zY-Hor@
z`0qvb*KVA3<D47cNS2as-8j-K_XPb}2>D4jP6<C9k$msQ8R0(&`irMh?MFAxyYV}l
zs%HC%zWQ}eQX4DrXW<tFnY}3F7r{%6Y(jpElwRh5d*xD%>53bFh@7Kh_L>_{GgFwZ
zyKzH!{b!At9os$awi^%Jcu0Ss3%T)^8!Z=hzw5@|++VJ?e>^IAkJB$y?jN!CeZfOT
z@^(+nW$AnO%RX}BF@v_pT#Mwr)+cWK>&7$gi@nyTg1^K?Kc{_!7xtL)8;<A~k|lr1
zI9$OR<v{_DNeT)^3&sdiSjYobA&C`95ox4or1TXbR46WE;QOOWc)$m{IG$1-l=k2a
z58m{kj0a^ssO~`x56XGWQ;y1_U*3Z`({n0#aQtp6PckcdP$|MGsp2sYD^&%ndCYU~
z@YzvK58~N~2k2(4<uT705<IBmL2cn(wwI-Z73+HNR_V<89=s|oz=PL>)bqe9ggS{H
zBza(wEYE+EBl7T9Em9;)&URk+pn){lP>_;FLK+LE3T`iHP4l3s2k9PUc+lB{E*>=V
zpt%QaJjn8xCr%Tmmms$AAXBm}1zQPH-r8e+ERuw&tq5}k+j-F5gAN{alx&V*wqRJl
zlW^7wXN!H%HqV2uBJ3~N%>(tNwV&|rf;|L#deBQqZ^1r-eFfQC(caOG-){Tg)=cuf
z!!ibVFwleX9`N3_`l+dWo8ll32755XgQ2v52ctX~=D~0eY#z9uWZD{ATWm_>mF*E8
zjN6#zT9Y$U<SZJVYVA?E?Au)Ka@Kb|SURWOXb;Ypv5n!dKTa!Dq~%zTdF^-dJnJ|Q
zh(kJ*nc%^@w7>z&L=R@anlgz^Eic3DWDjZvn@sUws*v|QNVsO1CVYDJ<mnz%v8GfA
zH6hMoMGxLKFxtQz59V@dd}!grJP+o3P|S<sUcB$Y0uMYMcs*F?!6FaVda%xeo!?vd
z8PLU?9Y6l-LBGYhOFg(;&9+Q%Iag<S`U>F`t`xG$gVhnq2Og}6@Y^4!{oK>K-eW#Z
zf5?Lk9&F@fJ@}BlaD<;*_!*Z4ht0RsZ}wmd{d`XJN8;Nbd$84mZNgc)!-MU@`E5{U
zdG`)+mj|DC@M%Qna}Rb$_#Ppj3GNkSm3>0?%e+|qfCmRf!sh~*J?z03+<G1yq5sI9
zJzOt&Op7eLaBg#jJ18!B@XK^fB)XtO&?)E=bPH1d{=Skv4-5|;dhp1Df2-MO1iuFX
z4}u<qJUHvYIS=w9JMkM2jtV~(ksSBnE8$;zP-uJ??&6g%%pd;WitvO7-$gV}dT=Vj
zPYe0pgEK;Yh{&7XF8pJJ-=zn7@RJ8WM<mxgxFGzZ2fqlp<iYPkeii&p@Umd(>NXC8
z>563k@ZhQtN?3F~!fyz<>A|gt<hGDI9{effuZX<R+vaKW-;%xO!TpH*9}gY~zj`vB
z3Xf&IqP%7#{J~*);=xlI)`Mprq#m^V$ByKkna@4ui?)jREiXj!(u2jP(}vy8roR>N
zqM#SiUc`72>qQYS3VC6@WGU=L?%#PNm2P*ee7;8Iv)O#b)_Hf?jpf@FrCQCLSG>5|
zBXiG-jwQS(=|zqgoxF(iqLdevy{N(lId{SGUX<~g$EmV{<-Dj{-FD}$_44|X6}+hE
z#eXGZJ9W2K@|yeW%Q>mTekokli)vmZcu~iT>R$7x5ifOX2(Kwf;awxDmdJU%v9=fC
zXVU9>@u~<rdd*9J;B>r5@!~bF8F1<ek|cVO6yX*xl7;hvAya+fsq96_>w*ouXefkr
z8+p-KIF*@A^P;KrmE}dc$Xg0#2sZPgxsVounO^g<Bx^AhS{g-c<wa{LY9mMq71|1K
z7m>90qC<qUl*Y`KIflxY&Gn+Q7n8i0>_rz54)9{27kOUul)J0fJpJw_yt@}YB-_)A
zz9Q)**xQRfLjLd5pZz4u>ivbhA^2uQXOI_zz2;Tu30^G8Oc~;Z&5My<4E16d7txCm
zUVL7|dT?E%inmjF1lhB~O0~DV80EznFW&KDoi+2=^b&7-G1`kES5r5=urg7n<%G6l
zy%^`kc&<oX%O)?ZOIJ2}{?vNxYU-6+sqads?02G&t1C)P@nWhMHGPQp;XN;=d2z*y
zKfIXk#SAa@&>CLM^kSA5o5W{kd-2bzp3SS<77Ll<#atm2&J!|U@O{Arf(yM^B!oYQ
zskX$6rCiYJwq=5A1ebfULdZ(NRf4Mpsri8rRwrM}xreiY8w58BhSfTzw*Sxz;%31u
zf**PLiD6T?)r)OjY!|-Ei%-1RA)G}!y<it4pNeGn|0ib=<$Jx@I@|iS7vFGoyx8Z(
zelHGq;q=1g#lgs)vI{xn#bF^|MC4xzIU>j}J9GCb!c{@d3tb51j);z%&Nd~LDJaAv
z=oRz{8iIZ=0z#<CDG)=F&G+J{kYj?!BRXHnOsV#5q{j<hobcj1FHVZ&tl%lZ(}Ld%
za%^Y3_#wi>vp6T&AH6sqk^dy*XD`AE7bW{kr1X*(zY6~?BDu`S6XC4FDO~lUm=DE$
zxaP%mFK&2olY6{CX0#8tytvJYOiz5q5H~aPj^G2qKfU-%2<3N${O!d(FYeR*BpXJy
zPlbmfc_jE)kisWkJdN;wg;1HZelElN&x;q4alRB1<ugNT0UrtqA%FHqYD|O|@}aQs
z*odTvkfJ`k5|NCk9d&Q4wS*59d>~;eDJ0H^QbI~c<Yk1E6)Y!MUU19a=!!yEw~`N)
zg;x=*8j)A?p?ZYZ@PSpRT+4^rKJ&b~kzj%kNj_MF*YTmQ5SG5`1BAa8k<=5CC^$7I
zI@xEwZ)DP%w(ng`wTdt$qFG<a>w*mg8w%!6HQ!#+*oRcfk~a~O=0j5<=@EH`56y(L
zBdTTk(9(zRd^qVtD<4|>Fw%#&d}!k{50^PUbQ0w(AO9wcZ|g(vSF5%2p}h|seCX)I
zXNm2(M%g}G8k$RDuHB);T&c?=!eAdd`_RRQJRiFH(2Lc5=;p)o&RueDr}prnyAS=(
zbld#YN(l$k)5rgVGB;0e+sB8#((my1+xDZ54{!P~z=t<{$ZeWh^zUpcliY6Hgk+!(
zgM27g+~l3#%_Ld!(mKS4p*{@b2zk$s&-`l4aN&I647p7>N$F`(qkMSVhYx&M<HKkl
z#`rMFXZ~Zt>A%C#%Cm~(V|^GW^BONWLGWEcmQM7cSd95~n8`j&@nI^1zYlYHGVjAQ
zAEx^-!-ttZ46b0gcCsTs`Inm>H_M0FK5YIyZLd9{+1?D2IX;xw)0t`0{<Qf%yzj#@
zAC~*Dz=wrCJnqzFu@4PuS{C`tE5H|?<c(>OVkvD|B1KCDsl#8Uyn4KXJH3Qul@BY~
z&a{l7B`t%i+gAJduXm^TrfJ(ZN3Zo^oeu|nIOM~6**lx*#y)JI(SC2sb=>H~rm(zE
z>W5tMYgwE7q<-YX$3E=#VUG`6ec0y14j*>XfCW-MD;>Svhpe5sx#QZuUNv<WCtf}E
z6CXbH;jb#GP3QJ#SS6Ke?YiZys+{_n4|{#sCl#GV%75+yH7P&8Bw<c<+kTEyimFJJ
zH+JS8_TdX3j`?t$78}*{OCQ`qjtEj>_dyY^MkJaKx^Rb}Ga`2hIaVpg6Onj*@Ci2}
z62A`t;X%QWV1A_Zs1Mt#+t}$>K78%Nw-F!shI?db%KYdwUZ11^c>;WbaV+23A!I$}
z!)YJt8+hHo_dc9qEHY5qzz;s0_2Hopk9;`i1OF?(=)*5Q{OH4ZA1<G4@)Lz;nq2VV
zXP<d`L&^LzO<W&lOq|v2k`KT7aKne2K77?M?KdBO_u&d_`EaDV?cAcwCoe6v_O<;(
zod3EHSLqVm-7T}}_HAn=^V@<Q>h`(TKI@hbx4A|>++|-KvhL6yPIsijN7pm|6iN9a
z8Gkd@areb1-)AH3v#dojW@lJOb<Fz5hX*20xtYmkzpZY2?8Ep%$<YR443j*O>{B29
z_2HTD=RUmjA<Dpil6@ga&DJr=!~zBiO2yzurI}?SDP*9qfntXF8$8xP5d%dHpo;k^
zhvsd}6W1_*#V}8&f3I#UE}A6_*w!^FDMHHQ40PC1i=>Q!vIbr=P|q-fLpj0f2FeSm
zAXrh5rImzK7OWyzRj`^MU(;8^KurVjlC3LP%Rp@d2?n+vZ{pdJT}Q~_H>{g;QwqP6
z{;Gke)on14>gip!hV7x+<jX3t!LC_}27(`0lVr3O1IY%~u8Lm0D%vXY6v0+)qp8!t
zKtluVIUU3NGq?3-Ya;`V*`R?cyDjMkG7K~^kY?c6cuP|QdmflK+uR6rB=YJ<Gg|Um
z-l2z?&5i%v>DR(QW`wsC(#k+<A#DV+BBgB&v=eTrVPjJr4P+bUb%Wssatw4baClWT
z*C^LOX9KNj*!mghVj#~zcLVE2r89Lk(9OWJ1<`l2Q@+2`gce><*L?P>2kl=sxu=0%
zhWSV)CA|&wG0-=X<x_<Gi+M}c<o*U~WTw4g;7uVjJEaUTFwg+WAi=?cLj)-tDrA^o
z9j(a-dIcR|X6i^mM?$H$42&{BLLrfne+(yOV5%SQ`7zeOI0N?${6n`iFu}k{1E&nU
zYha>*&kgJ|Fv-AV1G{Nz15;Shz;XjC47_Jx8n5jbn9KH&Ih|uLFw4LU!+e$BNn{o*
z5j)#}t8uS+6*E`2PdLH%^$jjj<yOgg2H!=G#RldZcwdwk(6)7~3+ZeVhO#30`_(i1
z)UYj)(xnE*)Go(1C)BVlGw`rg4#`RbtGE#id}v^`fe+|WTm^1S{^PSKZjBJ~nFHgF
zrI~*Ntry7#16^w-Z4``ul1RSUz!n3$BKjX0*dE~@3)yO5TST&8Lfj4mJ0<&QWZb=X
zlZuayt6wbX6Onu>xN=-lg(;RF=3729u-Aa|Wpt&9O^J6tx9&I4_E=Vl3u!I`2MioE
zaEKE(pc&8&d|}{A19pR7rtY@1hV2MDYM<3-Tcb{o)0y3MEmJY@*M&4yu;hYFhk;l7
zHlgI}x4V?N+S6&^yIS4v{b_L<@EGtK@EOQAaMXZdz|Sql^-8q{48%Upe6%9x^NM*J
z%I1+T+msffH*Ux%_@R0I@R)(G41CS4YM@aQ>*((*5h?%1z_$iY$Of75ywrD*UDNJi
zCQApzrk&<2)<<15@C%OuhIt3$86E-*oHcOHz|RIYzsz|fyV;Khelqy}*z|4L&CVP6
zdt-?;eXMPomZD@$YTO0R;<V+{8n!D{k}ny!Y2cQDUk&_b;Ie_=4O}<SG9jmEX0Iy-
zt_uHy0W-6gw}y>)O(f@P*dEoe-4I@;rj7ceZOON3Hv`9Bx85=EC-+^|jJ#qQly9k(
zahJoOBaKP9#}yge<F6vIOw2x@vl(daM+-k58F<V+<wrR`o-oQ8*zipngTuev?}mBZ
zBi3);u=?CUlph8Bd}k(J(EeW~y)<y~hLuH|&u4f$B^UG~+K)nh6!s&=Z{CJlKe}W2
zp2^fntZB=wX`{}p;X^4Y;zv<GUh$*DrVOUyLW=pZY;z2=B_vxiQX1z+DL>{9ZNgOA
zk1`@}`CmDv@_tnCqp{z-4WptTl}P-s_)*z!9w6fVsO3i$;Z+4GtR|$oU=2TN`qA#0
z`B=o;8)IrmbY2sZ;71)lT*H&=M&z#wf#BWm3)d5pC^)vJZD~zgvL9AI8u(44rTB5-
z*UZ<2Gh5$}PixwE6eFKCyBD#c6gBeW&(_h*ruxyuk2F7;`jO#BGe52uYvQbFOZVey
ziB#Uf(&u`M4lOgj%*v=Ty7S6fDVct>^rMd-ef?<VM{7Si`jPEN8^3vQX(vl|s-`VV
zvTgl%TsHN<j-l;E&L!*MNB?H#9mP3*bn>H{AKm@t*SK>1@Ln~)-bLQok1ir4&-0^e
zgb#YN{L}8%9)1ve`f(;JnuMtr2fr(~w;wlZ+E!dn>&Gtq7~sc1KmXFTyg`Euj$tBy
z(~pY9EhM}yG{}#kehlL{Iq|=&OhbgsX;oslA0zx2<;UB8+}{<?6BVwM&5x0O^LGK$
zTYiL3U`C5%Zlkm*evI+s9m$UMW3nGFYTCxh8jTm6Ajo#!6*5t9lHiBI64vg`{*BFe
zI69k6P4i<qr|icwKW6wb(~lqgIP1qOKW6)}+mAhd%<*HcA6vMTe$1nn`thOP{C@iT
zek|}~wI3h&vCxl2ek}K61y`qob+I2yh3x5SUE;?bYZsEC8wM@&n_nmSG0%E0F=M6h
z|B98SWR)LP&-P0_+mGL{SmVbAKQ{WY){k|5te2u{SKFn=+p5Ofrq1qku#0t*A8cgt
zkfE$wWMRr?84rh)7jOHR*7z@Ts~_8Ve2llH49?u{H-Gjr?ev?M_;v^$ep!!_U4DGR
zMW2!Ispy3N68g-Ky|gWt<9L(L{n+Qn7k+%n$;R9E`*FaJgPd|z>pxYjyvO^HABUwu
zw*0(i>^C)2f=1L4KUh@0s#WuYXctucP=!#kYE^ID4`po%xxVX7C-<NqZa+M9T{@c|
z*LRihitnBF!{>+Lho4T{-TIASz>gsPO*n;L3CZ{4sE}iV$0MbC21kD#;pIOmLH%$2
zI3benBJz_$P6;k|ryU#|O|>v?5q^#a_v0Tw9{6$IkDnO*ZYAFG<7YZNU1+l9It}Q@
zFXCg@xJNRqKPRPJ^5a)OeiPwUKfZ39x_d^<Wj}rw3H|emAAdyn$fcz+UrnVB<;g#m
zx*^T7<(oq44T!o;M`9%L<1at{_TwHGdTogZyRCcTZFgzCcpJ%mhP#FtCmO_2&h){t
zsE2f+4i=`zJPOc74|eqO4TObKpZLw&x0s&#u_nFilfhZf8TS2nJ%9!Qyzt{C18)Eo
z1BeQsKmf4;6bYFAQ!s#-fO+lxhj?3b0C(bTe|(bl^lV0<01Ato{OyVfMFV&xfHG30
zSOCQXC>cOp0D-U5N(5jOOd$E!X}%hiHzbz|pmf0e4fX%a*;m<sdCNz+04(1ODlbSO
z16sW~X_W$~9Dp;BQ6+%t0n`YfY5<)sx2+~fvb8{F%>d#9=3!#q)R<ZU)E1s3m>>wj
zI)ZftUlk0$M))=1^#Vu~!ghE?f@ldKStM4$lt^iPA<Doq4FhNtz={A?2GBTw)Bq+2
zFeQK{0rT8)6ekrxS^!OHTYF}D038F!4j?0dW+G`W*eZY)LNbYOrL+v->iIIYkCkGT
z)*>fqBP1(;wnEwowioOmNS!{HGjpWh5rUlrn;Ox%0dx+aO8|Ky=@CHB0J^f)TPYl5
zHxYIh<X4h=1<*TyfdLE>Ngu&C1L({372ZF9H-y|Pm&WR`wQR%zA|a_IA2=Qyz)+D4
ziO5_0T5?!~4;NCSmdz$)q~Kctux_~e=m5q9Fd=|<#m?^pFiyzWi2b8-%$Grp=Sbv<
zxrrj5Bp80L2un$(2Jl^z_A>*R6~KGKr*W~yTc-<W(G1Cw%no2q0E+?`&^UW;03|ZA
zItQD)&(+V%o+mh8&>d<*`GNoz(xgF?@61VC9KezQmU82~mACs;m*oL06aHSuY)ZcR
zGo3>IQ@kpG4+2;dz-l%%-^xQLkyj_i>`q@BFz;ko7cf6l%d|d#4FT+*-g%?oCc!HI
zB~r2_fR6(B=O`W=#m50`4d7V_&qLT2z;^mo2+cy+5x~v>5X5Ui><ZwM0ImmcBY;l>
z*d4&h08Rz4hqf~J6vpOR8t%644dC+t_EC9M(^gS2`vW)-fEq9la0df86u^-H>;W7O
z;0r!8crNNoPXGOsg^Nm8&9)v+&d9ma?v38%7rQzt0ZdEE;GwNw^B#?B*)(ZE55N&X
zg=MLWo2GnQwcVo~nXUlb0eBb(0yrALu>gDw6afSS2nAsM%;IPC;EWzsC106nslV3}
zCa)GOn;*cL&n%Tcvk;F5@D;O4c`AI(DDjzv_fUNoz&FC*Pqcg+z=;4zn5aMZGfVf+
z%(uRu4xrsU>y-e$XY~Mn2;gi0KL>CjfSg*ka{-)-ZTS;*7Nq}3=Ty_rbNsp8NxZQw
zm%Y>DBHg=|?NR{02Jj30wr9qK<Q^rD<o(6~wI(&|NZw_x%j&$+d8xk#_}cb7mR1;-
z^+y1Ox@Yj`?bQIT1<W76|166k-VERt+Yh2*5Vsj-*>Clv@<IGbFWqgu8^GTI{3V>(
zX|-(k0=OT*e+=F91P*V0QkTq*4>^~ci4QoKjY(&ZS0aBDz+(|U5qv86ui!I5>O2=R
z_F{*ZLjFD+RXB*KpxG2tfglPBkB&%UgcK6|tXGNHAc_btDp)dzSA-N3WDCWGln7$b
zx8@z=aY2*{qO=Ih3YHOkcSKCM$8teDD_WSm#%1%3H+)@xr667nnup!WK~xE%Y7o_e
zxPQ)4JBaE*Tw9(JAH>?TmKs4!{>4)CK~BvemesP6*Ah7iOV8cum=MIJ6P7wbkk=LE
z-%E8*o@!Y>$x<(f#323&;z1BeL0E#=8^q^9G|fy)4x&jAX+c<n=5a8E+1Muag){rQ
zkOo0Cj7S;<(Ky0Wh48lXra`0!F^#hbA|r@qLG%ye4VhHV<ecU~v<PBWpU#;<<OUg4
z&{B$81<_ha8^I1iWC>|2*iNv$AdM5%BZ}Bjve`l8MC6@<_+w287Ig_CFNhu@e>UB+
zY_7#U-_kXRZb6WA7u-?HMo#6PqSi~WcMyFdt@RC}Uxc&AH-i`u#E>9{lFYLV<SGYo
zcai1pREsvtLNYjrCA`A0%u;HGWmpiE7g;9ICep$PL0b?bgLq5$m`KZ`guE>{S};a4
zXZMcqv4Z1*7%znK(@QP%lXoRMQE(F1H&Qw!h^Z0&o{*?_%3tdqH6w_nbd?}x()dBl
zmZG^q%%j^3h?*0`utk=t(@kq!UTK*hY2p1K7DV{MAQlN<EVv{h|GPoy<w2|nV!KF+
z4~$wF#OfeE2x3(b_a>Qb-f2~44Lb^ATM(CLS=NbW;tX>l>x0-3#KuT#TZC*1;zJ>u
zBl4uKQ6CBaI3n39q}G5aHn?=YWd|L&p4rz<9t9#gp9uLhh}}Z=MC6|Z(dKetD(?&8
z_g&WS=&=>8`-3<T#K9mA1>p$78ANmiYtFU8#KS>+5ya>bSzn6qh@f4NrAiQLglj?Q
z!t<n}OL!=Ve7c-)kDyo3Cuj)z1=(6aNRVDFEgX#yHW;(VdMt?JL6CeUNb<FiZ-V$X
zA~_MnNBzsO=wuM5WNN2_I3L7M!oL?hBlv^hSw;yVG{TQT49toq`8kLSLENI_jU0Y4
zBD@;JFAOZA{419-QtP*f0xSM5!YhJ*2v(16N%=M5*Mqnrgp!*=hSZC_E#wXl0Yd%?
z;%^~$1;dR{|DI&;(~V_>4}*9VM7a>khwwOvCqWbnp>POKgZP(GJ%j=w%$sX{M(>*0
z`8iJy7Njv-t!LZ+g616pF9cr-9<JH8(~u4YLx>51gef|N`nho=)a-q??U_l|*bvHu
z%!)-qC>p}vIX&Y(NO&a#78MKO;3R8t!8%h@ON3A|1d=$xQi7!gDXhDqY}t_ccXOe%
zwk@tDRtTYN@8tLpYK2fSWd0RWDP*45GgS_uN`zMpp<0Aj51~ec*9;+i>Rvm9gb*gr
zv=p0csS`ro5E_Y&yO!<M5MB$RUI^p}Vf6e=l0+#@VXcB0Ns-npAtVd83LY3?{wSy~
z{Pl=V10f9s`xP(OSV*d16G2u<6Vg;LJ%n&O%|mDr!j~Z&2_Z9tmLa?s!n6=th0r>L
zH$xZ@LYok>Lg*Dj?-1H@Ic_C(2%%#L?S!`%93_u|RBoM>9YSshokJkc5$q(`u2^!H
z5b|iHcx#Ukx`yy>ymj)D?CwIkh45#Cl-Oz+Y4O&;z_gyU!09fN)@8lAJhM*-cR#cC
z58(|VeFgi4F#mZp<uBY({2jNTax6zRkW0*eU1dCjLKsX^B6>&&Z_#bCEkgxKhK0=E
zmBR%`gkTdw$;c2Y3@kx1DulO1I9l-YzG-7Z2!HSXoe;)`FfN4gQZyk__rIl4?+TwN
zI4L6MJxf#QpYn@%Y6uP?(?giSE()Z49>UBJX7S89gzX{B4q;9R%R^WZ!dx1}o-?1m
zH^|DP{JfBP=$|~u`hExtLgv$F-D|g7D8fa8iv^bmQgf-0Wg(ocWn*?_2&+O^8^XE}
zHWf`?9m1*R*&lEs_bnuANH$xCeh{_vpY-)1YzSd<2wOtf7y>1mLikWf`El7)CXOE5
ztml~Qk9f}iw`Hp|^>GNn!(E=Vwz7!rlk5nYcm3@RnK6842)jb~L?oXI^47lapXs|p
z*dvn91o=)m*1EEzJZtR>VL!c;@`fo4n}>xQ4B?QF>#rn-<zH}>_gF92ve`pWLijO+
z^C74qXk4-od?Dx|^Gwn$Ug40naE8oJ(J{G%bl(!~5uLKV%=1G-HpsCMj)&k6fnUK3
zaCRYtLdXx{s7OxlwN5w?^V{9RVM3j+Lin1oqHf075LWlJ+<Bb%O$awjC4DRXo)Dyq
zekbH4jV9!@;P;WzGeUmg+ATF7syautY8gyD9;N>j!p~fHI)4ZkLgpWB7en}kp7U4R
zv??7gh45<#CpuVeh45Pl6SK=*4`JV$^a-sqE{E`Y2!Xg%y1^Ckia!Le3SJYu5F2}g
zqYdHnQ|4E$sC=)M?Y8*vv#W#e&=o@<VPY5bTkk&W-yz%!;eH7Jgz$**wq(+S5FUom
z_ij?jAJfbe=~L!q{Ot!aA4@3}p71CT!o>%P<o|{+tX)#g5=sAs@FIj#M^XAHUWO2r
zk6!ucosR<f{JR|W^YMB<qVo}xkBa%`bw##WC?Cc1Q6e9O^AVeGE^ZOQvYQf$=HnIN
z#qzP~o!;g!ZYGkH%tu^4%H`ve^;yeKM3u_Nfifv&^HG{D)VA>>^=0zSPt`9ypK70$
za`j1S&kCvK^Re`HMumJF?34TL;FwDJsGN@~`KX$Y#C#;>qgIooC2v})<)eB&eD@M-
z<fCprUd>0%e8h{SRz4Dh)E2xuF^OtSbtF5#UsCLhB;;e;hSc=3CVwp-^*EjxCU06V
z>2zE>OFoDxg2{qbLEE_u%J)_5e4KBp%tu;2n&zV+`~5kJl1BMxoR8Fe^I4=O`S|Xu
zb|f*a%p!)z^nB#xo0o+%XjT3NoNxZ>Z!Xv(ADQ`RDV)MqVUiNvIv;KFk(H0O`RJIB
z>DQaHv}BJ??L?t{M888mj;>8*QMO3pqRdaGcFIR?zIo{EO#2K^eyx9U7s*nRmyfQ(
zyZt|^t^zu$YwZStOM;eCC>CHtW->vOkO0Ag1ri)uTnBe|cPmbT7Ad7@OK~Zb!noeK
zGeZk4P@uR|C=~nm{qpWx?_cYzz4qDXJKs6?*xb2tu3&r1e_qh&VBwdJwJdulMs%wd
z-^GH@Sf~Y4E%@Amt`>~3XlqM13%av+8fg#b^ss1mD0&es=*cnD&Qzg-dC2WteJto}
z!5|9;ThPyf{uT_hpj~F<0Cr-t2(tyh#djGO*)@AhBg5@7@l0CK!Z^f&p%#p=V59}Z
z*j5$H!!4*6mDqB07p5|_t6+}VTzo(U^C$~OTcDAz5~<IqU><A1IH|yR3np4HN%#Z{
zzN}#G-8SXHk{qntWDcZ?h3d)Y?WS2U-GaLo+_PwtdWHqFEtq4$_THwMg0nc<=e1*W
zt_AZfxNgA>i*}+i--4ekIAg&A3l>_ih{M%_ZOmf95(}1Eu*QP57A&)1xdmTXu*!lJ
zl972=3gM$ESx=`>S<TwYlPcUooMD{>>n+%1!Dh}Q3pR@VmxA0XmiF9WmK&;*Y_Z@g
zj$sS7N-Fo1W)eNHQ|OR{Haj@)*tr%Qv0$eK-&(N8g1r{(k`efw1-pgNm|60#)v}Q9
z<0R!kvfz+K`|<_F15(8If<H)>gMwN1M1I7CTlJD0wcwZqr^J%c;})E-;G{(VTdOQf
zrk>XQpS9p;3oeV<ISYQV;G*#J7F@8vWr5oQ3kSJ~c4;x2-fr}B_HKm30;echjmgbR
zJ)D4Ckt|Rx@LAyJ{FUN(L|Mn1MTkKQLgG0r2gP<~8!rF)KdnLkzjC;W0r@2k;L}>t
z@1p!6ct!B4;57^W6hhB5V|{*Y8gY}upqcTu1%Gjj@l<48#4QezbrIy$??~#!HIesa
z_T{r8zZDNGcxb^R3m#kW#)7w;dR!_k+!YWnEqG=DA7J~N%k`2D&%&*qQwg_f6m2|Q
z!JK<_!ar=Z3g&Dv=GPY7s$hP_i5zWQTHN?A2h9Ey>cn^AA<~K*R=l_1gG9}%G9s+V
zW<_=@?)T3;Qp%Wcq7}*YC}U15a#@krinae{_)8mKer&8?JTtcyO*S^oBgp#jnYYq0
zW}e6uu)^_UlW41UzE@B%O7QaT98?asODtkVQ7igeF~EvqRus3Qz7?rfd}KulD{5Pj
zV8zE)l(fPm89%Xt?^0E^0#=j~UfPOJg}f|Pw2Y9lf;1~<MS0;BbS1`$ioz>d!HvZl
z$3_zmS4*s7h0zL<s#f&1HECdJ5^Lo;+{7Rv36tW4KfRV3Z$&jLZuKx!x1xp>HH9}C
zZ0tGMSo(SF?z)CrqEs4eNVICJXtEWtE2ERFSh3H<P=`nKvLH!{6?LsB)F8EHjJcjw
z`$dQy7e6u6)WC{{R&=(aaff2}$2M(bMSCmwMc~G4UMte9+JjXLt%NicY$n)Tu!R*Z
zg`^8+y+pv50$NKnLoidYjbK|V+6l>e@1O(w!k5a>QAj72n5RCYU99+wU0_9{TZuia
z=xIe);f!{(qPtaF^T~;K^Cqx!ds)%jiau6s%Sh-e*gVEu(Vuc~WpY0&hzA=NHd`^!
ziX~PowPKJJgRK~2#aJs!|JXgi+xJ!swPKhR!>!o+Aa#@#Bdl1o%fv8ZaE_6}?>Eq*
ze7|F~Rohi&&9S6$R*bh|ffWnope9%`+lo2DCt5Md3iE2M^(I>}MZ~FsRHg};Zp92C
zGj)BIkiz3*z8euS*NS<ZDf}wR2yJm-m~TbSnc5ROi=?mn98X@%gPNv&xP&2(FKQY4
z{eJPa?_y6|v7FqBl~#OV#Xc+cTd~T@{phgMif^sj0}pGg_{NI$-zBcKVjYQyrz|a~
zFm;0!8?E@#icO+_Ex1{5i{Mv+v|P|P$5x$h6S7@!hZVNfpVPo{x?t1q5_hrAR*>u!
z+|3T1R%nlKmN@piL>A3d>IZnE;b_ERIri@bdB{HqIVkv};2|q+<ksFyKO)hif{Y#$
za@>j&x^hy;Dc$}jE6!MPmWOsJ;tq$?)8wD6IA_H#R-CuOZ-rvT1-(bCR_$R73!83*
z_P}A$m?kzRaj6l5z=}wx6)xd!&ZF+yqlq3puUClAikq{GQ)dWR@rM=LXPb6xj8`Q!
zXhq11uoV~eT$hFXD)^ffmxN@^EPD8zV?bWjA-^I?SFN~a#h+GO=K+dxlf!bhiI3zh
z4M$~_`<Ljqthg<NB2({jJ^7>1_a##9$#A+a_(1TX;3F#@3wa{=RFEU>nGhvZ=!F$8
zt$dOPRtNsE;*}LU?D)ox*H-*%MI}2b+wsPVw^lr~;gJpRxa?bz&!(+Z_PenkI5-D1
ziL_x}DPx2U*@R@bAy085mHsj295&>%A(stXmYEpx2+3_j>yxFkl)R!an%{;3HWaiW
z%7$Y$9Je9bhC()!vZ1sMg>5Ke!^cdTU@Xe)?TUV6LkSyPGmXV;C@zG2_^@`oAo;_B
zc=DC2j3veX6Tw2KlbQFzB;%(xl(nIpO}jx*M)0qh#`0owga<g&NV5ty#Mn^LhDtV6
zwqY{OY=8|_Y{;-7(}t=x#M)5LhWa)bY%tnT%ZA!E#Mxl7p}Gw<Y{=KR2#bifp_&cK
zspMs+l6OtkF0R)0M6rmPQZ%FQmTF>x4Rvftwjt4mBpW=#<0;bY(zx^#-LkF_`Z@Ht
z%~unQsWvpQp{WhcY-nghBS~$-;!5OhEPTlPNFL6Gq3zNnnubIkesddIuwhRpx3Zz7
z4YWy@)W1$8vqTy&OKThY_bkk4t?}t?Y-r1<4FhawXG41%y4ujqh7LA#w4t*NU2Nzi
z9%9awVU`p}Z#sE%Hs&)Mrt)W9n)Kz^bhZFfyW7yihCVj_Zlb3Ry(D9AIo>g|w02k>
zV<t|UZ|ad+gnB<Q*dwCZhJiMWvSG9hgKQXV!!R3$^AK!kUbc9|pT&pTz=D|l+PG%K
z5t4VL93yM;a)Rdne2jUF4P$MXV8cWk#@R4l%(k2>Qv!)J=zFjYaT4p9TEtu;nw){n
zHPwb`HhgKrCL5;PFvEtWHY~GYrVX<=>}{BD0}qzQvu&8e!QhFS%hYT!ZQB*);ZR>-
z!$KPt*|69KHW9}#MRwK_86o8CZerRj<8m8T*s#Wiwc>E44PV%>N_^6Q;q&>C#MR=5
zEw)a~sB93jUUU|^QP&f?WNhX{<FvJ5w+&y}@U;y)Z1~28tu|~E&)aR_QL`QBhi%ec
zsz<(4ob2KNyO8=Vr{OYVR#(zsj}3cm_`!yQHtZ9#12%jwPWH1eCK#tRG;t&(OpRe{
z5b5nl8xBd^lBY*T^FR*E>?k(Tc+>_yT*|O(n(>4UCv9+YUUQV@H=eR-|Blbua9W~2
z2~s~J<g5)p3)x&Dn&K~FO#Aa}2jLc7u?n$eMFky#&3(Dt9E3Jpvf;7~UJ(@=eky15
zvEK_A{aIP=#{PIOI$*<<-Ax%(Awe5Lx)K(0QSev6-#Gl*CDJ%Hw$1N0T(jX%E*-IL
z{$Q#Q@~c8F#h9;4DLjO`LT=b_Q^;R>>9>U37QDlSqF^Ks^Pb)s_k}zVbVd|?Y{L`I
zwT?0Q?09O!GcLt;?Thoz*+EAm-g08v_`zb_ENIw?#24%@n|7|k@Q)3zguk}oUmGg4
zY)bKsD9lLy-i8l0MB24;%LqHN*^%9@{m3$!by`T|?_<6TrW|6ErRTCEw;e6VroD(U
z^F%t29eM5AdG)Ijxrq7gC}2lHyH<x!?I>eMlpWC$EyUlTKE@(;oE>Q_Y{$0~+LF+$
zs2#<`ptv0$*-=7xNjpBV<745bYB4lpC?(O-g68pMx5(x>Wm#NBa|Jfe3lq0wDQCxq
z*9qk%N)kgqt&I#7h4i150z0bMvC59sc2u<^){aCwlI$?pwO_+Wh2pB)wSO)~!8k#a
z9q~e{3EoPMra=umYBJZ;mbL6iuw!|_2E0&K+m4x6a!q_~8Wo>TrH&oRcC@vlogFE5
zY`@#Fxg9O+sB1?(DXzX9&4i@d(ZG&|!oR7L`gafQ3CTthZ7kSCFio(j9rG%s(12mZ
z!KkZMbGNi3Q<A8p+tJF7d(V2e7R(TwdpDU%8#}tyZE|c=)ZTvS?d|Ab#~3@t+HtB!
zTt_=T<I&mC$&Su;{Maq-L8Z7ZcGUk-JFQLa8P}D0?HFmt)ch&krL4h%J?!XdM=#+6
z^g8qw(#MXzy3)^%{yML=u%KD^K*2$RS>NaxqT39$W0>&ax-votKj1#fj?t|1SGBCK
zlgC8I-5%OxoE_usSZK#0J0{pM(T?eM%n+MNtgs!^gijWnB6ziO+@+Jr+utO|R5X`-
zpFGo!S$52^V=n8NKV{;*<k_4K?~@s(8xrS9(WmP+nUtpiTVuW*3q+v@M%h+vs>Cgp
zMq6UXQb}4SQCE7(a*3`Gr145SzQ|GzYTrg*W5-$<&l~MnXV)%9Z4j(i(Y)S{Ym1wa
zOgyMvA^*~jO`M*biGhT#?YLjev_&|hUoo1!!H9C^t)g!e+%8D7P8H2NIo<52?LdM9
zyI8s%5AAql$8J0J*b%ZLELGZT#}6z$kh0INJ*QWDQk(rk4%qR%5Q@`Y=Q_wkv*VB*
zhwb>qj`MaLvE!&6C)u!e9JAxN9Yf0+U$1LArlPs(<&+aV5nb2RKPZlP+K!*>IA=%s
zjq!^snt%3oJY$EmqLHiRS*|MijXw*{EK@yoUkWcNT(HAphu03D9acMRcDU?t^T6$R
zJUEWw(A8W-heVxr?5${K)P6Vi`hj$h9Sp1cn7C=1wW8T?N5Br1gQ0*?vE$cE8GIR#
zB?hI$KP#H~D&H3kBKUOHMRrPa<L|VwYnv?nX2&Hv-c~f{iZEUlCAyNCI-e~1!;UL<
zT;;HdHC_|EWyhaFt_xDXA>^juUxH;CM^L|Q#~q2@6}%@%{k|O!bUwUC(Z_Z?v7>?m
zg_cJ=wexvhys+b?9dXr6&t>Eo{;u=4M0Z^%Nbw&#UfEH|fx-^Fw&PzraygLOfj2w^
zJ9<1%erHE5Q~Yd0e221eW3Q#Yx8s8y5f1IIbj>a8%f-ZHb0E7zTMQ!wb2^Yi$kKrJ
zfIR~@RmkID1>*BLkl%s44!j)Il)=`#NC5|qREaC-K$HW04kg_kR;2th<EHP^q8;Gt
z5^E~QpKRHr;MMv?94O{MaTa>Deo+SoCbc2?$f4bCD<w!$!hw&4mlXU&u-Et6UXG=O
ze=5jm86jmIC?}-6;L3lSo{dP1aiF3Dl^m$-KsAT9A2=MS;y|ne2HHzMR&}8Fiij7o
zmn^&0=+HLWs#D1v=g@lJBuEl3<l%~l>JHQpS2YD|2{wo<O6Scs7f*B`$$=RT%ygiR
z1IZ4wbD+HgDGt<iXpiHjIZ)4m@*kPv&LlT*puPhI`k5F_rTvBol8j2`hRo76sgYn~
z`WM2xs1%zz(9D764(+01x&y5o+C{|{4zv`Ky{n0r7MaxAflN`Dnjz#t(}*^btF2&`
zSqJIaE)IO=Kt~5UNfIwwc6Mk}Knv?4K6jw21A`qH;y^bCx;xO<fqoA3aG<9H7e6Z6
zTbvB2WbWlan~~`Z*Ud?NM9gbW+V!Dhe+L2!QwKUwyIzw44y3MW$zbLX^|vSKr=$*Y
zV9T)d#+~a9b!c}+xbGZ)?uR)r+<_4ejN}Ns7t52DQ4V}xM%(*tl9163j1e+ckV)el
z7_ajQ4onoz(-J047AI2#rwY=~G$GSjx||Wsa$vRt#~nDq7GvqZRXya;P6p;WFwcSc
z4lHos8wYkeu+V`;Y%2#=i-*O6D+HG~uvEx0!R3Nk{#oKm2fh%6oHrb^^fhd42iA!m
zUCQvK1M7uv&@DF#;m6}PIY5KWtgr)L31@Vh17GWWs}Q~>Kz+LdJ0v=6suulLoO~y^
zOZUt=>~>&}1ABFarR;P3=WT-hLJqJQh5R6RQ1C}KMJMeA_RYOh4?Dmy!%=s{fuk~n
zIO>kcsN?uK$;0`?bjE?R4xDn}v;#j8cba&Ig~$-tU5I1*X9s?9XlHS?3nrZ7Y;9@m
zZB01uz`eXih6_R{+8nU+cwN})g2MqPhnW+*op3qe=CpF6f)gGGZ@}Tc0}t3ueE5f>
zlr?m~?|?#4Zte#hc%PP{IuLXqB%IN(kf*s4$xY?sd33+=U>*3wfyaGQE(u=d^dFv@
zt##`w4qSEMF9&Y1N*mIyIdI*9qNen!ru08q|34Ba-r!VynZR&U$i9hbw;i~{W8utg
zmpP+i`du!Vzb8DXlK$&E6N~$-NK(P2X%8KE#L1E~Zsb1GV~4i0*)s>83wgpO60+Zu
zi#iAA-(1@rcq;?-h2TqG1roy4S3+Jp@UM_R&O}gTc*h?FC-OM8;r-r$4-P~K&nB2d
zFuPzRoA<2tIf<MSCCTN)fBocjBFc$qNy;afU$B5+K|vZ9a-y*CPn{^@L{TR`k!Uf&
zkDMssL~-HtpXK~xiI&vM`frJ)L@%w^s*FU->UqoQdW;hlok(?}ffJRSsO;44S;sj6
zr?!~H3RV%U>O?r0i-Ed96cVEo+$5RA<V3s^)tspAM3NJAoT%YMO($wQk>ErvCz`CN
zbuuxb#EM!oR<|O*+Bfac;<UrQ<U}Vjrf59bi4-U5^Qc#*v2)qWueWBe>qI>#E}iGo
zWu{Xv5;7L1RY^%~=+tg9&T?Y56OEi`Oy^FdNtMPq(bS1%P7Km(*xZS(PIQxK3nyAS
zk?uq*Ct5qv#)-C0Os!;Q{WHWMQ_scsA1StzXa^_S3*nnA6g%oRot)_GL>DJMb7D;;
z^XF_^Ng`*UB|~>ndOOiW&(%{%FTsziByiR3<JA5b_7&_W*k5pf6J{Yy9q2^Iwy7k8
zbw5L#7%F_2;BY5K2pK6j)`?M0?c{`Y7%j>e_C-uwR;~P%;>U~lbaUDSArqaLBxJJS
z6gCS-)JD@ZiE^!*E@Xxvoy=rMFVg-g&v9a|6YHJW;KV#9<~y;-iN#{Jz=?&r{q~J9
zU;Uk{@|_AxoLK6_y8(u^l5}A}bn1ziWlrqn{X|h#II&X57kb`RPOKKbM)2*2!Yp^4
z@P@q&>B)v9HEAOo%89R?_|l0@PHg5NRFkGB7uw>)p<qk$<!jpg8DrY&#5N~(O6ttL
z#_dk*aN--5e$Ggn*OyulPu^&`zmoY|Cw4h8^R=c#hLidqP258>wuuv0oY?2YekXo)
z;x{J_IPtv`b|)N8{NThvC(b(YvlBncTzhv!TNCch>~P45!%kS&v_7KG!J|$b6MkIq
zgcB#7I3@fi-R3mgN<5s=mE$+G)5~*CTyVnT<U2%oU%$zD>1$ghGn1-6F7$Lm)bD>A
ztxniPzxgCHVNaTqi$5n<WwYwUm}(}s6Fw*2R5E*bAn_)z;EhUVa;Ey7c)L165zBy6
zyRk?y$N_oLnE#?N#HB!7UF1S>(dgTkOk~lQoOry}#3yhrJMp_y+pT&@1MNKy;#DWE
zafNZAvI~Dot+>vVcj3AdH=MZX#9vNCx{$+#TTa||;$I$k&ZI6IlI}S1#EGZu)5KPH
zowz46;=bSmeRe!_;*riD3mF#^@r+CEy;yFF&RIk9+=;(Mc_H{x@E<{@zH;KV@Vsl%
z8GYkK&zwnbMR_OqUbp-pB*LXR&*nmQA>>a><~ARQ&gnuf7jnDMXG3v{d0fcrLRsA=
zp9>{~=Xari3k8K2(Nm*bh!$Q*u&}P@8>zV}D$!yt6c_T5o?2c~KX##{D4*zhDHlrX
z{8J%iTv*VpDP5IwVO`Ir419~cf=gQ^VqDnQJ+8&192H6a&;}S>sNzDh3n?yCbs^S;
z>Mqo9!Qj%)c}y<EyZ9y=xWibS3!m1}_Owy9r&e=m+nW6lNT?T^{=F&P%)KNkn`^p|
z;6kDcwOpv}Le4pvM>n;8F*0rGrG%7)O_E&TPGxmi(84Bzk`v~6lliHUx-QgnVUi1z
zU8wIustcoB80|s>7aF?onG2u0(8z_xF0|p8;g??o(_CokLe@5<6q~t_E_!pp7J@AW
znaUmATM2J1n4#;LLPjmG)mBJ5!S;G;2O%9@=p>}Gu6J>v`7Lcj#jY-Nb783H-CgM6
zLO<a>b;~|NdI|P+;n(45%*D`G6z-?W;o9GY0WR%Fp~0qFW+4Lw2e~j<2$P1egHjSn
zhVdLPN_GKqVT3ptDaZq)+cCn&362#^-kM5%^5ul_E=&-G(TPG>`V<$Y3SaBOG#943
zuu`{~A!MQ8Ou<<$%+^!qxG-1vJPzzV#`%II3tV`#q87;_NnI?sM9;O<g=NB*3$D=h
ztjd2O(N%)01=k2>b@4imisiM|yRgB9jiP_)!WJPsqD?Mr)_K;i`BxI<Z`n2%w!6^Y
zjSg<?aN!%yDK|cHW2Xz>x^S5z+=X477cLxh;YSyCyKuFwaZL6$2VB_W!d@3Py)U-9
zt+8P9gncgTcVS%f1O`UGccJT&rauUp)|Mwf<icSW&bjc53rAcy${EzP@S7UicD2V?
z%D=J4U6@}k_kwb{Pq?t7S+SEYT=+Wv6xYcH@uvlU5<DY#R`6%RRS$E~<~;3X3i|~u
zF4$PTAL6Ypew<6Y>_)VULeU|_Dd=*+EySazdWHA|3vSO%dqsG_1yx8;FeJ#-FpJRn
zuR?xv;gYUwd{Org7p`!2_cMHOX)k+T<;u?mU-&f_UX?W8wZz<T;ie0JyYRw=zqt6j
zaL0waF0>sU)nmTlwhKEev~FD4+;D5>dt7Y4Fg)aNa^b!Uy(*ihR5m|wfjH-x>9GrI
zE1RFV@YIFj*9-E;h1s9<NO|T0@wp(${$C6)xqz%UymH~S3;(!~cGJYLzq0vSmDc~d
z(8AdIJ%>Tv_&2Q8e8XG8cY;0UX-|#b-f4(%Bbyu9-P&ttIo!zU){ZXHjiLUiAMeJJ
z=Mp8_jod==2vX1MMn2*B1q%ok6pRw2&DVu<7ZP4rSBeNJ>P9gkqn~O;lyKu?Hxk`Q
za-*ahpSV%pjS6n<k>*lvlyhsVdTBR46{U<|S-1A42A`Ip&5v7Z9h+WITlw9n=teC!
z23JU_<kr?whH7q977oEGf>qs!b;BUsBuGo6kT^FARLsq2yhO7&qt)H0;l}e4tr=>%
zaj~1BVi!YgH|`!uOOP7!;yJHW*KuomjMR0bo?H8INp>Se$beqjzkvE~q`J|<jh1fh
zJ0=a>*tj*lu^SEDIQzIBLn9&kA0#yqgEa9*hfUpRCcL>|$+&2WRlaGR?nZ0frj;9Y
zU2RNH>SgFkrW<X9w{@ePkmEfw8JM@D8=c&k>c%uTI=j)ujec(QcY|Nf`b@f}TN%^m
zZgh2{{qXp1ZtV|gA8C;8ZuAh5N>4Z6_0!t9w;)OE>Im23^uBKGk`BoLc3+`{;ckp@
z!|cXDHwL+}E7s6;gmEal$qmn7!w|uC0}bTE-1tzzkgtSc$~o;Lyd&M1;KuQq+NbJA
zxiMPWnS6{JV}*~?mGMH(EsvV$#w0fyv`w7s#uUlhd4G<DHBDn*=c1qKZp?6FmK(F(
zxHQN>S2JZeSt^^IYfN+8nCr$KH}<+Q&yD$RtaW3Z8w=c6=*Dt4R=Baqjm2&(<3O#N
zzQm13nVBDt(l*Cl>c*AI=AV#GEVn6RNoM9sH@<LVwHs^PNEn&A%8jVmY5uC|85x<y
z`llQkl~H(ET4u%cQe)EAyRpHIuiW^W<H3zD-FP`YZIc^+S2oX_p4l(G?d}Cl$~J7h
z*$rdAv@LG@(q9`(Tiw{^#<y%wH@0*Aua~&Pjc?qzwZ2s$n1}REs{->*IvJIA{k`eE
zFZs^2wC~(Fwy;UCbQf2Vq}?(sx2(zB=f-|F&U0AKOgrGl_imhW<Fp$;xN(s7Y(w^@
z8;9ID>c+&&QHR}l*go^@(9|PrXP8+Naw<({WH#E+>Vz97-I!iFoeD!1p}|jXoN?nE
zE6)+mBb|}<GY7+B?LY>sZ}t94(y%XEP41U+eO}tn8JUZ=6}sSt#SN<)HaDDZxZJS2
zkvTuj;l{|g^tGEZI>DT;U0W({(ci?Td)T>UyD+KOjVMO_ZYcasypC_KBjAS0h2<hj
zT}0505DzMV69I%dk$H?h9QWZ@H-6)~=fyBDF1c};jo`sg9{ldcA8y=sYo9~C;>K0>
z(Qe}{H?FzyClBFmg?)V@2CXl6-Hn@W?Rn`NZtmY`OkNpJ{EJJg#q`mHDC%ox#%%2q
zafj{PKgV4+?zwT_jR$U&@t~{+4>^{&6nl`}qg@bq?8YlDiL$%n6E~g;e<t``@NYf!
z1xJhUe{_YrkMeD=*PO+=@<zy8H{R*WdrmZ+M|l3T$7%fdq(~2bso$)C2jn>fa|-72
zAh(b_f=tcpK|Y=57xJiFbnjbD3VIObL9_?tg*;f9o>oG5VGoK3p<dL3V#15-%10jU
z<uWFHELoVVqz9kqyp#u}g?}nYOB$5(pu7iNrMW72aO6Xx(StZ4F@hBZD|t{^2o2yt
z6`fc0AXd0RSLl{DCJz$mQ^a@=s_CiKh13wNDOgLewjiA(c~D1q3&CU$8VgAgr02RG
z)DvFcgH$061RDxwRilx#1C5)ANRsA3Q{l~YrMYh3(t~slT1m962kks)t=nXHkSV;4
zuF!LP;hhCL=z2#FItl-8J9P2jGd=ZlJ*k@q-96~xK~E1Bd9c`nUhF$*{MmwiJQ(J|
za1Z)=&`*^9f`bGHcwiR7Aw5t?*0#EXg%9yysGdrFga;!%m?p|74@P@1NlzW)!FZjI
z6*A7l_X4y>uNfwYGEpDTlXc4}9!%9a{ZAJ@Lsw>cFiYoIuI5N|uHZZm<_lS%+bk49
zKTAAV>cIgIzV~362g^O!;lY?snlY^KV1w|L9(*BW6?;}sUG2dd;mb-FqVYQ6>jig3
zl%=v!_?I4R@?f(ETRhk*%2$Fk_*ys4vft*x_W!SZ<H1f*z7^b)mFmHFLg-;P>nx@3
z6=k2U@An|fCvAT4;Hc;a_0%6dI3)bA;1OM?t7F2C3!V@>DR@ed-stv>2WLInRoR|i
z{OrLw4?gyyq!+(<aGq<R2ai0s;DN=1>mJ<j!0Lg`gP;c?59}T|JaBp7=4hE?bb4@c
zoN?bIWAY?p;aNsLR_F0(ueS$0+M`@vL7$*sP!Y_TUa0;Iqv`?iyNSjyop^AWi@XQF
za)DZA<h$*cg#0F0c#bi8hVk>o+Ou16k<ovM6Y?uUu6l4y$e+4%Cf(^+=%xpEJh;mP
ziH!csqdh}-%Y*k*jkg8)j%wfW#(Pr#ieG9k?BDm`fp}p3`TG2051x1s=|v7No_g@i
zgLlm60h6AK*;|fqAuj~!;iZs&1YZfh7W~(PH$rH`y@qO;3!NKh<a_!bs82Cw^J*;?
z;l-G_Mm8pu>|RYjnKL@47rDGB=tYzlxxH9A-*|MHF~1j|M0LsIMP4uR(Q>7cQHHty
zm<o8oO#oVt*WPN6_M+;i#rbA>F)s>vQP>N%VG*zP@_SJ)Tr;#LCEvH&Slo+`L@(h5
zL)q0v1}1&tMJX>5y-4z+v=^V!p%<}Ul%b6mmA!x$w&li=GmYiEDDOoDsbNKmoik#*
zcre+>(5-aR(V50dVoB0^wXup9XUAvcUTyrmZ_&3EN*TN`dQroRnqI_tVe+E77l8&v
z;=TB;p{be|BVZ=!(msNOEkHhIsj-$9wY^C2g74jjCK{hiGiE-n&~2LW*J;|D_;tKU
z_M)X1>0YFGQP+#cUNrH7maJ_(FY0^IXQJ_o1;$h_8hF7C4H|lpZLYDAAfuxe8yV#z
zg=t<i_iE40HWh3p$moMP#uhrKIBZwvR$jF6qOBLLSx`e$hTztj#!N4Wx0V^(u@`0;
z+4Wt#XzxWMd0w%DSDPsvz33#QvtVIQ6vfZH_*|l0c`U~w?kqKSlPHtAd(lJZi`zx?
z@}f5zjaUA?=qu!Xji_mN4E?<LqIQw~qA+!U7iQrDb!Cu{!Gc5BO4}o8Hk@tl#Y->#
z@nWPGqr3?6SiBg`A?n2@FE)EI){AjoEMoh6G2V*_oF=@6FE~+fn&2d__IBrF;Zp>s
z3i9K{(}ghC3@>h0?@z)o%Zu5f&(TxodNEJ<e8B~}zEDW&>4YU5b;8#RF7slgkmZ8(
zxx$P2Fq3@Y#VRj;9g~B6wVt}hi?upm#|D3;-3!>DD;tG;>4l+&cKdsa7hidCj!UH%
zU$a}i_|c0)UTpJXyIAfQ+#$Hzi*osLf8)hYiGC|cC%ZVXb<Q_gsO*vGUN83PdaM39
z4tVjsM1Sz&pcix3Xdk3@B^z4q(5}KA_Tq>a$Gte=#ZfUkrsoZ`iP=0#yN`d;i&I{l
z;dGOv(}F(<4t^b5<xzLqFr;)Y^0SDQhG^IE&U<me3y&9GFDzbIy>LpZP0%h#vsd|Y
zJB0syB{|EFOQLSUuVD5G2?)}_&snDP>D9ExR3+MRaYWdQi(G%axX#}3;x{j@O4234
zD}t8=fA@k{6#07BA6%EZ#PW?Za=N-Esaco!a-2@O!4c)fUldO#CD$_D^5V7^550KA
zVZ1Bmju-d5xbMYXE@&&8xtB-q^2Gy=`A~xUc|l&yC_Jm#+_s62y?ElqGj`vAq$7h&
zdtiRb36h$qy&RO9_?!z%lId?jk{4bqT-J=_l^3tMF#1r%hkv;^dy(IV0zSNz8ou-5
zz4t%QJbVx((uW)j_hKV_$mT=aQCiDn_krKl<;2M;NmTOskjsY;yP7cM_92hXX_ilH
zvYuxs=tGnbWkiV<EaXFBA%FDOJQopOOt7f$KW|<am*_`=v?(FvW5JR>d?KWjU}?cm
z1!;N3k*ll^<$NgbgY{)>jOY~vv+7e(x2)ttW#K$1W~}N1cLDC<Lr)(JJ{Wzd&%J%c
zAkK#*J(o#HybslUs4l#QU~R#gKGYIIhi4qxP2>b05_Ki3pgKMz>q?4{x`OotY16=m
zhQd4gpmZ$S$cH9Aq>0j)jl5S|D;S#k&_YD=W<E66dDg2*EqzEArIin@g=7e}@gdWv
zb$3>4FmGGY+xgI52$c>(XwXSWXTdIlp9y|0*j2EbV0Xd&jkFH!<wI{DX8SP5hd!bY
z@?o%$zCQF5(qE9q1B94;7^o{*tu(}kQ9g_oaj4)h!QnoP&@D#_q5T*k6MdK@WUSyg
z!SOy!5W=#$zRgLTEYazLQv|09P7|cJ8A4_X&JtuUw#Hl^=K1igDD!<-;KN2AzVu<C
z4?EHf%Y0ZaNsD|~tmj%HWT{{qW9}6~R_m!NefUD>tMrk-MwGR>zRrjB!Z+wjzCUtp
z624VeHnT&8e<k>}uJc&7>3lmYDf}B<*(t+-hqlXy?|j&;>)-pZN9TKm>=WGY!vS5V
z=O2V0^x;P#hXjxKa99Wp7>)|hYP}Oaob+L<f^7;;`EZ&|=f@^Le)8dr4`H!9>(efc
zGPr&CS@=0!`NfCx!Y}BGg%e!3P0%jr5OfOCkIRRWG1_eik0@SU_xa!#t_TJMRXsH*
zBqVryYxax01mweSK3wu)kROBn7#JUS*@tPB45j?|-G@JXxZ=ZAAKv-!-iK>Gek=el
zefY<R>vCMTeYoS(Zgt)8;ieCNaXQ3kx4>?3FbiSyt`GNo_}hmUKHQgFk9>IS!vh~4
zidohMFT^K4JoVw356{Jn9vG+-+0+bKmRTZ8VQpVYiCL+yCD*?`yx~uP=vf|!AAE@L
zBaa_>{m3SVsb%qNHP7xxq!5}hN<F6^x%|k@2Kk?I^ZAkAj}l@@8yXkzqo5yAenk6G
z#E+tW?U$vHpU?Yggdr<?78diPxE~)$QdX`0YrsN37Pln@KM`cE(tdpEM;SlL`jP5K
z13$|7QQnX0e(wH}o7pRfw`zXG_)*c1N`6%KBi0XtAMm4!A65USCUnShnJWv8e#H4<
z@@w7nUy&qUN?$SDkX7v(;-RJ=wfv~<M}i-9{7CjAQFPiQ>8(W0km5&OKkE5WUkvCx
z%MXt+i%?-`=tmPj(!{2bU}N1+Q$L#d@tGf=`_bHw7JhV)Dz)?@-H!}EGW9yQ@}sq0
zO4cE?@uRID?fhsj-m=PKQdVkKWjcyC)~Ayno&D&dw>DELcJ-s1A3go(C7!$Mwd$c4
zO0(X6^pRAvAASAk=SP1(28hDeV_83CM15#knBHj2=s*#({15T-Hj_5$Hu|+$Hq4Jz
z;(0hx${Oj%5<iyuG0Kn8evI*BtRJ)dnC-_nKgKhcAJhGqAU-GhF-foCWbwmB&MI_@
z7))h$qjm<%Fhi7?dS$ZA=J+w!k9mH~*AI{$7#2u0tIi80%Ob(Wg7j9khURveAIty8
za)lh)O1(+H5JD%bg{;x5y4H_%qO2F(AV_bt%o-${{n+A%#}BVxdqDRqKaL3b+K;V%
zZ1ZEgAN&0{;KvR>ayE<D>BqNz?Fr#;1fTpA$y~eq*zM=GGw8mg+jp$?fi4vHil2Rg
z75Nl#bK{PgeTl`on!XqDN5LNi4{{i<k6<dpAwLd_NX|E{kNR=UkK^n<ZuKMj3Bi+6
zA3i2Zv(x+u5b=y3E+J<He-=C^_=_Ls{kR~US!_ZqeprQM`Jrx?s6){CKS^#bKEsOh
zacG|(em`0&NLQfv5%43sf=C68qYbJbSN*u=*Lcv6kdUw-m5V}t_2V~Pxg_MW;O~C?
zA>@jl$}eC4>Bn_HUik6Sj~jm6^y85qkNx<|k6T=t{J7`GkeeUZZWMXjk2_qKW*SZp
zYnB>g_-?4-z8?=nc_{c%ye58oz*KaM@x%nf6F;8%LFI3b_V!Wq@XU|rTsGqk&7Q@s
z9BLq;x6$pRnEH<&|N8O9k5_)Y_Jfv8eY-D$sVwWQAMgBl@5iruBbfAoOK6NCLP0hK
zbd}i2P&(B>g@Gi8f}9Gs1w%yzxfJA9P+Y-B3i2q(s~}oIAqDvq<X5zhRuoilV4$&p
zf`^3~jP7e-*n2-VO2JPJ4Cg*KCL|gPiy1A8Dkvg6p|g=udwD}K`svk*L%oE8j}?5X
zpo|!lRIqkeL@5QINc77#2HvVGt#D_gg7n}2oT;pW215+x6<ispxhkh%d~L(9T!sn?
z2Ie$;mS`BXJ)x3<$_f$`Br1S{Dhf;r;uTa?5Uaqbp!t(nhDm`UpB+yzNVNXL*gjhm
z;uIX^*9^BNFtwV38VYJE_@-K1b>@vT?EXg6YbmHLSv;c*+YXzk{JhMRq@a$1MjU1e
zk`<&VNM$|6tgeE33hIlW0L-_4HvN)nc-6U;xk;;r3I+v={F+{zP8cr68;DI5G-cN)
zU}_rM7G~Ptj*Uxh71dlp3k9rR=2jz(+vPK~Qqa0btBwjfktoRiEH*<yrh+yK#<bAx
zrM71?3U4RqzELkr@1WpFPR*dRf-VZ?DVVR|GX<Y37@=UKg02d>Dd?-9pMvfj2~!PA
zY8rYe=%Jvef{s(P4U~3FF%)lM=*=oAI5EITWzU0HD*Y7<;GroPtiY^bdjrEjK^pj5
z7--4=n?n=~RWMA!a8{tE=1o0pqGj>sh9yby%M!HWMkyGrV5Wjuth|D;Qp$J*3&*t@
zr=Y*txU#2_B`)37WP*Z;QUqO1Qt)S2!(>5{DGH|Qe43Eyf-|IC8qAjH90je+#s}RE
z^;$)-GIKc*%tju|0v4y>3k9nbEMg14ja{N(sgT7ACU=dPTO)FrM47Zg$Z`ez0!zff
zgq0HYtxI5ZwSqMYHYnK05w6>>SFldO%?v~4dDHoHLp56zoqVZalNfv@xLLvF;)X3e
zqplV=VZ7n*jt1H=e68TxA(Q7=%60`iI8*{?8o)OSc5(y;kP^^-f4@}_QV>?KOTl-F
zrtDU5XN2LDf;|%5E4WW^Kc_RRcizNV{Jnx76dV+txsEFMQTQQUIV|J|yC(KOzpBR+
z92fC~ZgWz>>t5Owq0?Lw6r53TR)JlCL&47q&MB}cuqyaP!FdI@rx`A=0;V`tZ%*~N
zzB>~p)G&}2%xkEX!(fwY@5!erP6aLnJ_UXSZUr8N-)GSdik2^%wwj&8(7T-Ba2w6C
zKt6+_AfP~1@Zxw1H_o!=F+3}8s9V+$R6soNF7~2=Upc%3$P>VCQuBWWFR|Hq)cmWW
z;3}J1!5^ZR?`ycCfaqyv_*21k1@{!(m!unP>h1q&jhmwUrQnv3+k$rl*&ufn{JThN
znFpdgQSemALj{j?o5w=<59^tbSAx$u?B!C%-#j8wUJCvrNQdjCJ6=mPPZjeU1#cC+
zW3Hh&jFlqai~iT|xjyLj5dmbAp^{xNQZR>LPQhGRik!>k4IrOHKN8FzK#>4qN*f9U
zz=wGX1`riMbO4jSODGgT;Q+d|Fbo;fqGMbf+k98N;bk7}(m_$lTP%R$LO6f9qfUtc
zJ`SK{0G|X<Gk{tFlnS7<82t9J;cQF8r^2fSP(}#-lntO<0OciGA%M!d9wVfpV5I=~
zb3kM0sa1I2U-~FE07C#q(W~pJaRHcw#|u`|^{iH{AyHl>XjjruI{;#mU_t<i0lXPu
zSe<U5SVzQiRm|jdtC!}L?YaT&B6&SQlKKIp>byY!4TU$-mBvDv1mKsv%>rm1z_b9S
z2hbvbmH~7L;In}CC)${qnI1r^09pr-5kThv_<4xT0NMo5K{%sr1N=`N(Jp|)HBuOz
z6W^(Q07UYRV)LetsZ#*K5B;dnlK6Q5T?6PFKtJ|i0Nn%HgAM%p^P<Ledj!xsfIb0`
z_Y9zykTDixnI?4~JWb~ZrfIpjSkwLi3<zLs0Cn;=H3u+|t$HA_@Rw}{1u$5=jR@fG
ze&dh;hDuVXL0v{^Gc3T@QNd{aVoe!k7#YAQjxH`}2a+#Gv>d~ES~i{Gep=me0gMk|
zLIBwh7$@_Ij*h7l+1=$bCIxWxN(KY7Q=B46Qv+ZYMrQ;tGk|RYe$pMY0+=1Zk^q*n
z2dkJ@^({CjfVlz83t&E7eK0H*ToAy@yorn0_*Kjc*&tQ4w?P?R)sJxA>7Ow@a#;Y&
z1Nbt4O#yg57*+)E^n+m|a|!uEkjkn6R_lCC0BeP>)0Oo?HUzjETOk@3&4^?Xn*-Pq
zK(eLKSL{>1j#@urSQT^oY{stx*vgKsA94JHp}xGyxPyy-0N)4jLjXGi_%?vO0X~fe
zzQnpKfZYM?3E(@4QaO1mx>o~J)=}h3jo8m2v?7AhzXujPz;10|nv<%fF8N?M$ofbl
zbX$;v(L)?aTm-Ti*FQ`+BHnnsM*}#<19voG(3}TwirpGSd=RGt_=zVyDh8@J6Tn&O
zD&kfA9Kg8%B2;8k@e7A&04fJz02czV1mFz76@Zl$=JH!PA#p)VTL5qK#WC0ea0u_y
zu?eGYE<r_7{2Vrmnvi%T>J{{{tRgAXtC*DlDr`#&2zn9{$V1{e9Kc1^yh7Ze1x<hD
z;vc|04w3*aapgIb#PFAp%YwfL@Q1En5pp$vYeN3i_3J`z2;O9aw@J<Nb1Q(`9Fw&Y
z?&y|xg^WFz_8@?V0lW<0p8y^O@Hl{H0Xz?&z9Ife02_<NJry2RTH7DsUH(pg2hg@s
z{EGml7ER%Il*m8r+LAnUrO>MYUI*}R0Auo`jCpSKEik<afLMK5>RTc21m6o%{}4dE
z`b|i(tB6!lR7EirIaK6SQAkDH;lx(ICFWAKxt~V`d2X5=Gv*zXlvhPQ75OEppo%CJ
z1%yxgT>HqylB33G6<J7yM422_Sk)e-E~4ViX(LH-6^?&flv7b&#YZYisQ6}c<i{#X
zs`y03cPEXj&lr>T8cV6*9=4@bthv^X(N9&BQBhXqZqHgl&(0c2=&b@36%|!fQc<Tt
z-QRAsqe!eQwKAwM3W190jpD1QSa!u&RYj~2@`{(VD#fYT_H8oB%O=spYHW(rNexsq
zR8d_;4HY$2)KalwX+(mG!Z{n%R{3?OM7|)uwu+g!p@b<>#p4pDB*8i=l7*xQQm?C`
zp78pDsk*+min)=B#wtEn(WX;m6BTJHx~MR(O>U~9nTob5+Nt2niOp5CRFSUYVYiGH
zDzAX09;;$*rQ*k#39VIRs2H?4k(?ouu0;RNo|>ifd7jc<#pcMwjw(8-=)mr1ukCmo
zmzJ{qLqfJ}iJes>W=}lZJ%jie`z14hq_01<tExTx*-en7yNVtv+*QmyMd_vMy;bxP
z-d9)pspv0!fUdkQk$aGe!76eEkvoVXDu$}CsIaOSree5?wJO%B7@=aMia9Fgsu-nW
zw2CPzrm7gDVk~_wj+j8RF~#|tK2F7W6|RS|JO$+)PoAnxR53|K-S4%#CzE*;iH1h^
zV}Ja_Fpa&*%RX$AyRp-S7k-gz^U;WzDrT{fPbTn#jI&j|dsBGIz1XA@hIuOHt5~jL
zg^C3#7OGgR;(RY7voBKdX>#OSdoJ?Jzvo(_VyTLAMGVVS{P3rCMn?~PDeR~t*Gd(u
zRIFC<1rLFjKwrfU$zkZQIO0)l!y2hWs|T^H#(EAaj(-(9Rcuu8rHZfF2+mxaI1``8
zex*V!r=2xzR^cfgxkW|v=LY_R%TXti71%1Cx2f2!V#2?%OxnSEHZIukMeMK!hHq8u
zQgKwpG0rI!yH$M8N=ngtRO}TpMQ&ix|2~QC7d*foX`mI#P-9GSzVCLBO{e0Jio+^+
zw#H*AFhaY7d_)C}Nsg;Hq2eqTb`>X8oKnGWp`MYX(<*+FXyWr&`{P*qFawj8mMB(_
zR|&ZIOY5EIfk;hG4NiT(J!b14(HA)E^BC$x8f+@;Ja!dc9>v{Q2YZ}9B{j6Cf}JWp
zUaalY&Zt}E`MEY9eUkc@id!oDDijp~Q7#Lrf<eKMU|8^?;ID#o@|%iFI$wM&@pn3x
z=oJ-z>iSh7*98BRk6v9@aYLdv1+%_{b(`b1jOh{QyNWw1?n?BYiu)=*G^~BGv2Nw)
zhn%o$GicU4N9K(hrcGViK2h;h#aoU^70*;WSMiUES1SJI%Go06rHVW=+Pz?(I+Gav
z(U*A8oJ#Uq#lIZSQMuo+tZD5Uj%ocekVu=dF3s#t74v%)*@K7-;)9Bapq71@n%I6#
zMz$bo{*+F_Xb#bH1`#}y&Ro=qd4k9r)OK^K5=6cr@(1xz5G8^r5JYT7WZ@u+1i{mT
zf<f)9DM~Oph(bcfjITqnsBn^ELXOst;Hg4!;n}O2KMtZ~5M_cWE6OK=rGiMVA91Rv
zxpWYp2C+>}QF!iAJ|nVR5aolYEM^sg+DTW%AS%&AHe*Z>S?5k#p;gT@B8;OuCP6Hp
zoGn9<M^ROdB{m3y5Tjt6;M3;CXizPP>Oou&;zkfPg4)S;pCJ0Om4c`hMC~AMapRpJ
zS_P31L}Cz0lDA0^X+hKxPAADiQUvP;QBO#H!BoKpf(->}-zbR2!lyseHl1!7M6)1L
zy~$nfw;R&1|A{81=0UUwVs$%X(J2WngXp*=ktE-+F0F&e2%<|6p9PT_1i$UoE{OI)
zv<Yf2bnxR}ZP|bYbCYynt{~bbb?O|%KVL*MwNnrk)Lsm=H)S$fq+ssPgXkIrZ;bZ}
zqFYe=c36)fjHObU+C7N1kE4<v=Bmyug4jf{sUI#h>8+Q-a{C3*KZsC}Z&+hM5au9e
z1Tiy+fo%UEMg%c3h{0U^*|Q}~!v&L~it+)5p+O7_YR@)MA3Z9Cq}ksEM+GrDh>1Z=
zqGc`97_lGAA_kedwutOFt=YIB#<P->nlVg}>?D(em=e_95Mc;zjGh`qzk#M{L9FPV
z*`$Q#e|iwFx3?jg6~ycyz71km5Oac<8^pRG)|12<=Ls$qoG-W_h=oEH2`(0-<q{za
zGa{D-v0V5H!PP;m)NQ^HvWgxuBAI24MAr&tZ4N_mLl9r<_8WzKDYz+!&APrt$X6_A
zyXI%BM7IfU*KKwL@r}-R3Mtn(;yWQf1aXkFTlgNqy@GVLPssit4(Q7FLEP!7ZCvxC
zuAC3@9b_C1;z$rjgE%AlF+KHk5XXg|(3O)xoYHws*#qY%&LAOYb^T`{=Yse}SE}_W
zdO^5F&>Dn|lOhO*L={1&pf?DY5LVJH#1lk=NgWvV>AGLnDF%X2CHk&sL{LbRamjq1
z=iI=87lZgUh~I*^6vVY4s&q-X%*AA^iI0W<!Rasj^r)mP<qBuPh}f%w%F|qbas}Xa
z-#fJDkZ%U@7wZs0!w_x-ahrdFLZ}wPognT8Q7nYwA>0e%eh}G1hzub!$@CzI=Ry1(
z#KRyS1@SnDdDEIPJPYE9&Yub?Z%(FOf{*<K@lr<nTP{KKn*AgEwcsm3iWv)={mW%x
zVY4@aw#Cif1@S(JRm&qjaIvjpiU^@{RWoNnwvZNGTc|8CM+iAX+B7U2Laq>UhfpAd
zf?|*-gm1Uz$R|8+2<oE*PDy6TFUqZl3He8*M1>F?LZJ|9UTVK<YO_XlOpyzl?HC&G
z>u)L|Zi|Kxf3Ro$Ewy+QAB7MckX)H<wWe8#5I&}#5IzZ^TnOdaIQ^4Kh4885DlN!b
zeYUAqnGi;9s#R8$x>d~-D}-=rezS@p&}U3Yd!C91)uF1nlAdc~FaaS{k&IPChz-FY
ze9P7xi<(3lLokKV;bp<NkhZYUxwcBw(n$3XYJ{}TtsT;Oy#5~TIrEw!%pRRoE5r|*
z7Gg9(3=##C1nUSUXX#yHQ$naKyq>Pq4<S|O(bFRvh0vId7DnMPnuL%R!apHAiHmF+
zLbDL&hp-@o<{`8Qp&x4)Ldy`+L+Bhrmk?Tov|FfcLTD?bbqE<D46AC+lxWsn%Xa_6
z+Y4uw4k7KHe#ek@^45usCii@)e-=UyvH4uL>>5J15W4F&%#~%_GlX7}ow<68aUa3H
zf;1Ztf;of<AxsQmU<iXk7!|_ktW?2~Aq){Rly#Q+(A98JNJeB?>cx%G^|87oZN^Eh
z#_M&P6vAXNn-{{A5T=GOU81Zo50m!O^t>~4Z!?9=VxJ0`6T)2GChIVHAk4Thghe47
z3E^l6i$ho<#=AmT8p5&=R)zRwIxG)iMF?L=(n>*QJp4+#nM=Zu<!Vg`TbRlb6~ej@
z){EtrQs@T3jiO{3ZxX&)Fw4)^diA~yVQUE6Lf9^;^uI$-BL60Yow`m}S>C=2VYi5T
zLij<9_eyl1;C{gaA$+g<`ESh+O45&lhXfDnHpfCZ9>V1ieh=Y<B>fV?`4CQWR)%m|
z6xQbq=Zo;Hnw-`3pF=pOcOQ$p5P~HHM+nXkthx=e*g~*NiL}Y8l`8~y2ucWn5Iiyt
zz5nCiC)}@lU>23DO$fh*a4CdP2w_R0eo?piRj)=?4O!>^mi0#nS3-Cm!rviW4dGe{
zPxV}XhVYlpuM4>m!p;Aw>a7rNbN!d3$AWkH6Ci{I-51LT66FwmC<pQ=1WeHWf3Xfv
zL}5*yiA`3m_}8y+;~XzUdHFxpeigzmpBH-_!oMNB3E^!B*}}*k#=8*SbFO{c@dKyf
zj?UU9<gOIrjn)YfVQo+Ho4d<JhLIzT++pMiBWD=n#x)CMB(z(UoGXmT*-djUO(y0I
zBVQN=!YCNVnMKLo$LaaQAWo`kCergq^OB>&7(KJ;ma69HFdnQ*nXt2CkuZveVGF|^
zMzJu8hmjFRW*8rZQ6h{QVblzx)6>}BgSkEqqhuJLgi(sM3d0!2gcL*RFv^BeE{soE
z!+Wu11b-f@{ntMJB({7Q6~m|$MujjKWrz`Seukm4SkkOY7!d9;{pVk8)i7eixYNwQ
zTgJ-zgv|2Vf6}<Hb}_*u7#~KpFsg^qr;&ky_bZ8`-o(}lqjngnVKfM1Lm5MYxUCaL
zBCGe2VONwPDU4et!-;-|<S_1!ES3^R-7xBf(X)nOQIdhk8<h1WS|Zx8q^hA|7%jqR
z8AhWp8gu;*WA${yiqob=Z4GH*5St1%6J)fx5Dox-*(W`WR$=WEKRMSXu;wJKv!c&q
z+l0|JjOk&_2%}w?A9BTnFeZl4A&ic+38O#TJdDn4g!sswVOVDxTD^?z62@m?d>+Q8
z90rDNVRRLq*~iFe_b~h=G`)w2=U&A23WHZydb5>CPMP@CA%?!}!CD5A0b!WK7#zls
zFh5_?lKa~X6f#JVci$)u4Wo3jVT?3mu@AAs!Wb@mgdqEFWEi7_kJc4#(=?XFaUV{u
z|6z>R`LU{IK1Y;X#V{$1$s+y}?l>iksgki(L&G$V?N_nvrXK^vXNED0)d=J3FlL7_
zCyZ5Wc@EANhPh!Z2xDOw^CUW7koud?42!}DR5i2Tmxr-9j2(pxOTq~K6H9TakY#M-
z$FWpagt0P=<PnBt(FWod!mpG!tO;Xn7+<mh!`hw+JY?cJPL0R0>p7x?Y!u{|j3}}N
zHgo<qZ?#2^;!acTb3ea!G;9rHTNo$8I2p!vPNl+zZ|RU#3ga8`Tw%0vCnv>dBSY;%
zhVR1I%{B?+5KGT(cwE)ICyc#e<j>IfzA%Uk`@=XO{Ci#bLCC={roE4)!8ViOu+-!T
zi>_~A^k^8|ylDEP*kc@Tk7ADt^1kY)4`NS+@k<ynB@L(PHk*OrCn0CTI4k65!E<^l
z9iA8a3t?D<tSV_>cB^ncbM6Sk8Ag$dD0&gDFx+8&2?fu?@Ng9h<1bFVFnk=P?29nM
z?4$cdl`zyW_$wR;V_9PZ1O0HO1la|j7<kw6Vi>=M@mm;|=%l(KM}k2u(14TlGQ0Bc
z*q@>dH`q`$<9-+XBaACTt_ofgWa^(nt_yO2-3)^n8Tfe2ZB8++gkd}k<8B!DSg|q1
z|BtG(fNmmt-+!U#LW{fW15KJDB`p*P(w0JtyE|cVhsE99b+LtAY;o5`7g=PHB$H&4
znaoTAEV8)sf9LJa?|lE~%z4h|KKH$M?%cWeHcduumoz=4^)0K39=t%`4SK7Y=-0#N
zkI=NB>E$E*OMOn=_`9B@ANr}n(UGRU5xTy4gtw27-GLt*c=rhJAK}|0e1C+OT}(;&
zO&=cN<0JitNV<H2UU&70n6oJN3&Yn(m>p)KWS9dP9LVZGHU}~~^g)}+fr94fUy7N+
z9U%SFZpzFKnOPX7H8W9r&Rg~E*!QR$4&-zo!huK!)@CvFc@jknLY+w_@pV)#2l6=3
z=XKP@q2}BUoNH?e?;dw<f@w@nQ+@}M3z!N!{<{Xa0M+c!pQT*L0eV^v{dFTQ;=npf
z^7Xhl(&7%3aNva-FWo5VKq&|8F7$Vyv;$=vxZuPePLy?^oCDdN_`!+t4peZUH|^bl
zb}PavI#AnzIu3fc6Dm1S*?}mB{t}ZK4wx9Wo(!`%U}h#in))QlPC#3X162&assq&w
zuFeqa!1m?|6lOL2I0xbluE|i#fdqyvC&MVRt^+n|l>_bBtmi<g18EM_cc6g-4cSa)
zrQk#dlK!V`Bjyy=#;i?P7YjWpn6{=4v}C851I-!!{4=tJLw{peLp7e1Vp_4^+JQC<
z<g{h5{2I}Lp|b;B7&<!8$%r{oF?Uzy?hf=|=;om3@kXZaw<kNjSjlW(E;spo9q30x
z%c(!#)$Txl2d+^O2Yz&5fCIZ6*zLeT2L?H?#DS#_{m=Sf2PQi7Regv9v?>l|a~SJz
z2SzZAq=Cxd&zftL1EZP8uu=_U9XQeQzrXK4IWXSvCpa+qhJKsIBmy?4(9qp#zPryl
z)q!aaOm|=g`}0_5Ixv@E7VB(QDn7@70Q65Cw57iQWxfLoICr5Dvxs3aox7%bOO`pX
z*JN7hz$%CS^TBclRyZ)+Y$B6Zw$%=-;rMklgB)nw%amNh6l`TG6J;l+;_DsQzyTW_
z*u?O&1KSujvu<JC%G#!VUMjMkCa(iK*!h)}%$+pq`s%-l{AM^26U*(PwmERxfin*5
zbKrOCJqJ$GX|kL4J8*y|S35IZz)-rT{uk#U7d*sz*nuNPJx3il#(dmx#!SoIBA@9L
z&A6H|{j%hu?O86<Sw6GpIA&smUg3EMy_q!Tf>G)ZhKtlo43}B2uwG@Q#`pO<%XJ5C
zIPl4V&$RwKaLa*54mddAF9+_^_&k*9HYe|}-ZjeJWB8kuo}olb*#ie2(%EmOFO{TD
zZsB7Go;ct#N(m0QX{F+%*8v}`Q4WYkE{y@nVATPcIl!tIK3yxKF$Y;ghJU0=c-yR|
zr<{Dr`i}$8jNIq6;xU)VnU#L%q+|b=ldl|j?Z6uc-g5FI>pRx>4iwL1`oK)_v|rLw
z^TWTelf|h|G1|Uz@|y$S8N!_UjLX29ku{u^%uEcKS%<`gXEkaVJ3IH8ewiw6x8-mm
zrxU48q&X4cM5Gf|j>+XjZl`{^OAROTIFXmlYEI;Hf_lEV6D8Qm&sxBVf=(1-F3ehl
zm7Z<&+vBLB%*C9@@kF1$w3TG1k`tvEO0$+>rQEU%<ygzJR&b)CkqakcpY)`#%Irk3
znpn-O(X19$3X5@~iosQ#SW-m4j;K0S!lq+vCTb)(C8n9^0ZsJi;5aAZov7*5e<i8q
zL_H_HZ8o`Pls&<T+HBTgrQEts*bL5DKdinJMdo#A;6#?PX4)D$k!WxdL$VW%7*bdp
z8@WvwHr`Hd%1v70#8M}kInmsS7EZKuVu}+}ooL0m-JIy|L~AG7aI&ovot)^*+>W)q
z6CD^jveKcgD;VB|S<c&<lC*W@B>6oU`Z-~Dq9=1N+TCvbH^JUc^kJtjYkEEXo%oTH
z<DD45FxrVRP7HKnkQ0O18Ob_?btvmF*5RyF&j=?D?$dWc+bAcf83bcFcbpNky;xQ<
ze{zBbD!~NyCmOkv7$!UMdcIzEniJEVSj6TG);X**St(!^!))rz9Qysaw9R#5o{>AB
zVFBwxqfUxh%nt2hnG?&M*yhA`c2+pC+KDwztmGs`t}@!WmYt1GY+_i)y55NmM&y|x
z<tYAV8dOefWpgtt?Irz?(|h9=Cw4e-%!%Vp>~!K+C-xgP{N~iJ<@nu+U52yUi9O7F
zS@#)!dR6Jw9$@nz>mer&8!<<mILb`H)YT^p|2)G<)>EvfS<kSZb>bXDdjHcAjqPB$
z=)@%_%D7P0h09J{aU$fzV<)aUam|UlPTZqDKN9|@6So+yJ8{E_n>5TmTZ-N;sq4^E
z^lVbv{&M0r`Clxw-C@XkyX4<a+;_s`gx84&PCTTMpV=%p@yH1WSMusan3I93`gS6W
z)aAtZY%v6GnoUvmK~Z)pB0Ax7LUtm+HBgf%!0&{_Wqa&xPf3NjP}A-~CsZdiCw@_~
zkWU+##8l4{C!W&U=t5o>{&C_N&0-g_y71ho-w5-~iSJIlpp)gqzfQbz;*%3!7lm!k
zll8R|Z=L%0y>D3Q_qf}6vc7YIvWVY1@qzu1tdvFmXX?NQS-!CIHC-3!-$sVHkims;
z7yZ$Xe|e=tMi(AuXk2EUX@O=^WJ@OYGrQ2fY}1FIQ&#OX(GQ?4omsNE{`=gXo#6);
zaxmmH{0J8!4bJ64Zi9awlqsJJ`CTYQAKhIj;6gzcO1Mzcg+eYAcA=O{{|i-wb+}Zy
zD8oyBcJZA+L~%~G{HYMd(Dq)=5^c|&Sk02I=}^vv@-B37>HSl|g^DhHw0Cv^E>v>q
zOH&&cD!UNnLR}YZE|^>}yO7{QZEEwAsAv}~F2uMnJIdZ+Op7Wm9DAEqjmo}Fqui=4
zY>KiIRA(oam9lEMU}cVDjW_(7F4SV~{4{~WzN}6de7kTR-Vs%@b44oo^;~G^LZS=B
zv&GkUp@9p^#2E62w`oL>#KDbS$nz#GnYob*DMk$qvcxxWA=O3KW$BH7o~0>iQ|4x@
z%~@Npwq$L^N@1;Cn9-^cL0cEvx%3~1YhDO%??ML`I=axw1xnIyzSj3WN$DqD3dnrg
zOr6=4`?ecvcNcoNuxDtlo-XuZht5kcm;O6KZ&v!`-`9nHF3`(WkB^EbpU%sVE(~zN
zD?k+VYdHqGu+D|`E(~&Eu!|nQuRlF+GMy}{!G&Qi45!?DrqM2p;Q=thg^>(Nk)}~D
z{iDm#k5OY?SiQqaPhFni!Z>D1{^Y`V>YVzf+25lmInjkl)V%{tR4}{QG&kDxch<D2
zF3fXbK97@WtkbDyXf!sjJ=29*G!mF8IfsFU&|Je&_n2o~G%s*rB~4+;ywHV3F1&D=
zZ{5tj*o7r7Eal`f7nU;|i?ZL}7q`Mik5MwO?PMXQ;8oOG7q0ATTxns<8W(n-FjG})
zUG$tT9X7bIk<Pw=yaF~+54+%UL2zNS3tMP<x^U8ktuAb%f^;HWaPKy6cVQ<@tDISh
ze{o?4o6du^DEX@kzqzo>g<NN<(Syj=?lE^iq+j;7mk<0n_0N9uKIY$9_p{PTKfrL1
z^$_b})*~()WjMx4k<AJxXFe83y>!Zj(=J?f;Tl(ah6A!Ria+bZITy~m^h*It?lE6>
z;R021!2Ad6MOI2)VwiZ-e8q4Ay~6%<;kpZVxT+gGo&R#-whK3DFGZ3+9ISPV=JLnJ
z1bf5M=vqOlpDs0|R^6pVY)Q;LF8DX=ebxsqJY;ypN|6p1oCas>8Rn+7%Z1l2ykXPp
z!c#ie%%TfE7yQf;9n_)@bktOX%uaw+VO3c*)}RX^T4tF;6T+V`OgP_y3O=L7--TB+
z&b{Ur<kKnc74~_*`Ck{B&5yaYvsSJ8@n;U#BDfP}r<k`cymKM5fGh&uyYPXl`tHI<
zn$9#xj>LVT!Be`KcV-LPKJ%y}`0Bzp?))QJ(*AyEroN(GhY9*RnL$8ChHzGLGBHTK
z!|BknGPhb4Mt(Nt?5sZs$iYB<PKF2pk%p6tAvbHsKIQTW$S+`qfSCdc2q-8ZO+Zrt
zg#;89P(y%KKoJ2&1(Xv|UO+Jc#RZfS=zZ&$x5wmaZ7U(5q(DD-nSO7Xd`2-Hoo*^4
zpsax1`@`r%c!Bt6*CJD|ig^<kn<@yXD8M2hMgRm<5?~VGU2a-gJ#zeZQ)K~B0@Nsb
z^YbS6MiZ%7K(v59+fDaR>CWb!jjIT#Du8xTT|k#xrtlf2x_3;~1bRq_$?Z$&f6o#t
z;LaUW!x^SH0r3Lr38*iiCIz&%)e?{(;Bmv~54TLU1=JBR)|FCMKn9bY;DKVQ<FwfX
z%zB$b+xaT-4Foh4kRqV5fNggyi2{-YBnyydnl3pK0yT?g*lcPf;M%K{q7KW%ji%ub
zQkn?*GhI`uw;k~_>qL_|sb@?x0nG&r5HL_c3jr+!^bpWfKq~>Q=_mwr70^aNTLB#e
zbfi5lFg*yE+6ibcVA?dDTkkd{mT%liz_Y8S0a8k52I-pVMW4pkubI;NwJK|}&l(Zd
zjn0l}>Mr1Q^XRVAO}zwq1G`DRY3eJWH*+7>SBp&NoR)q9>;n1=bm@qNy7x!w`J1Nk
z@zM26c1jKsFj&BN0TToa5inH12mvFhKR*^&e%CZiz`Ygmv<(+<{<Dc-lz`C!#!>wO
z4x#B70nW*(V+H!eYonxAzG;^krlDU<RJOU>Qp9PSC}5I+sdRt>Dtt9frc?jiG==t6
zCURYsyyPU8u%K(>=>k5@FdaW&%D>ojxpwhc0%i-?Dd1NDa|Fy4uu{M(8ixXE-$_{{
zU@^md0Sg!wvaZ%r8U)Ns1S}P>g3edRR_}wBwkA92GMcAB%W?t3IZ0WY_L^1;SR>$%
zCGpz`ZkpB#STE4Kaj}kjkH+D1DP<!q{sMj$uvtLm_{cw^_2ErQ|6dnRjNU@iLD2u#
zrUPGOvUh41y`4_F-(m|{ei0z;G40@F@fGpE3D_mzPXX6yz6jVO;DmsaG*BN}_6qo2
zz<%a^0<A)(!nZ941RNA_gr<Oi>OEr)(dna@>!vHqO_a>pH2O=?#=n^C6S~D56L6g7
zwIx2odlU8Hw@;>10!|A!N2g4n*T|Z#><?>NKl%(gs_86i!!k`T(18oMEZ~ZOivlju
z5Z!H}L3nDn=}FI4h2Ey5U9nuHiO?{*?_J9^I*G4SXb=*2xzP27fSYvG0`3dACC~#x
z^|5!G=jmSpdbNtC|HtnLxJ!eF21&!{$@QWUvQW(72GI`$JQU!dVI$y?fPKqN!@I<t
zGuh|YjwE)`q?m1T(?aw%L7)y-%(357q7IlS>0$HhHj__)UqCxI+PfjqB&8msi69`r
zA8Ag$j(jOVp+U|`O+b(#&v^Yh)etkmW9s~T(N6?CW#=E(XRObSm=_E`ea^D=dA@%I
zoN+d%f^P)8rKQP@YHqxvK}9psjpA;65b%-y9JrCyjZXqT(`w_^KT&@Xbp0ye8^hV?
ztl#OtP4+Oit|J$=oM~-J@bjNtGrAE@Mcl~D1&7Od$fvTGCN%pvtZz0qvb&MjjeKtW
z;6@HNA~}o#yt_-0=Hz4qE8YB?iy^lWlgItv(}yTBzZ(VJDC9-~Bez6-{oBsMZXCVz
z-+$RfIIE}|^zePkDnVcVyHUZ7if)v0qqH04IG~JCLs<qjdsYhG;LTIs@QeNpFq>H`
zxlx%a36-U=D0WOn<nT9Hq7Ak%#JEv~;g6ynD89NIv2G-}k?ckdH>{jh$Bj6nR4q5+
z-9UV~n(P!h(TPgYmf%KhcAj#7)^)??Mm;y`yOC&=z5Pc2f~x^18@gfIsDC>_TjRL!
zMsB3I(TcMgv!=Px)Qu)a*;Ix+!~2fmN~lybcAB%caHFLWdG&sl)^4<Mqb)n>UlLM$
z`!G`nH#)j;$c@8pbaJD!8*AKH>qZwhy1FsNjj3*QbECT(1Kk+pMh`c7y7g-~7w;)W
zI&NnsdRA30c6zh+aicFoKUO<yf7Tyasnh_fFfp89up2|%nBc}lH-;LyV;F|HG2C!Q
zFpP9#6vJrNuS#pGfwr-3dO)$>q@P&Fvr<yqTZ%3ct9uBO+$egf@nqJO{Vc@fPjh3Y
z8?!igx*Idx`lV}BiXP83+l@JH%;&7vS@R8k)OxNPp~L0ox%CU=>g|ppT|l|9`ra3E
z*djL;yRn3MDeH39Wp2=ws1&w>lPg&%xr$*mD|N*>H`X)nb7O-W8{OFK#ul18Zrt1$
zOFJr8D-XfXRNE{4iD6sa*hcZOmc4FlcjFf~_Hgm^_LIMZlRH^|W&O>KT}I4qH`1R%
zmVOqf!WUC}|L(?q4k&dvf$BNn#z8kSnC--+)z(L7lDhGy8`rrLj=6Ehjk9hX=bky?
z#z{9$QJee3pXN#k>c6n&*_M%t({_%|=Hy0K+&J$>5wm{r-UT=QFxqpG;S%d*noW`U
zs0hVh<x<yZWg8en$s5!gZm4c()P4^B+l~8f{N=`NO2%5~`n@}D+;!s~=hCIZRF7?2
z0lf{emIrRQ-SD{a(2bgx8b6|;emKFwkxo_$bGacH{9=P%-0Oyq9g%ftu?~7|g)Dyh
zE5MG-8emmeDVI+AtA3WC8_(GZ(YhCJdF+N9-r)&5)B{i5_=ou!D_w%<i_AwCKU3Df
zZoHz^#s{kpuibb<tBn`&Uc7bdfAsTtkl%xMZoH@U-;Iy7M0@aq2cKvP(@VbG`0mDM
zHzuc=zp#E~-P6iU4h4jHkjaD09z8gN2N@Z{J^G8-$jNE5k!JBA8~a%ef9L}Jg<^vj
z>6*iX2+qyv!TlWdE_-T`Mtbz?(sOx`FR@*2);u2leQ<f1$s{h|K|v30cyQB$LLL<M
zptlEoJSgHpQ4dOaP}+lH9-L}!rSF|edQjYhG1D!ym0*Z5+pBDepsX?;l=UFdgCq~i
zc~IU1iw7|tRPdmp2YEhNqdmy0CUhK>1P{i(wNA@!t>gh|We=hlh)oP;3J~-F+6FyI
zt>Qr)x3!K3F2UNPNz1ApRP&&^2eBU1;H;XgR@QjdIM$h2lhc8U*J3BZgW3!g<E=lq
ztyPEG>Uv=FfPl7o9@J-UU^opKQu-t$d(enF(}Q;0j8$vWQat#jcS2(inoxxclMeiB
zOZ6blgQo1aWNpUUoRxxGc+fA-O3=!1S~IkvQ&v;=BNMFc`Pe&nV6WNq=15ydI;S2a
zo9)!Y&N+#lJ?P@mzxO+L*w)np(rzAfXXwG&la>5l9<&){Bj`&z_29S%C#X&j`g`<e
zjUM*kM-K*gFvEkH9vm8(H2rmxfgTL<V6X?Z<|mDzW_WOAT+$HMp{&C^7|uZc2!@d!
zj53_jGy)eUQPzy8)NvmA-_ttDgP$12vrb?oe<A~&g2@b1Sf|pdXQ131<I7EFp1dGw
z&E;CNJXq|(5)WpRnP8=Djt6r+n8(TatP5B}3ky*0LJt;kvfH90N-p(a8TGRVJ3OFw
z{4J*`;K5oCR&a79>nhgOtQ51fdCPUo>pj@u0VT=YXypFv!6t*L$Y$m(hO^a!Z3b^=
zNEu|K1KG(ZZV&6PtiO4%i-At)ZU*&Dlf547WB#4>fCu{-yg9Q{*g-m39;9;uzc}Cs
zpU|VM$2^FhZ{G5&IjvRLNt&~CYCO2g#ZP<ihX)ruIOD-t8YDc?&U^4rP@iS=ec;OX
zO)hvqI(C%)E`YM%^j9KY;<A@nTbAr_&4YWpEas6N{`6pURm<l!ovt$wPaK+j%Y(l>
z_~yZP4{m#K$AiZnJn`TzmGVIJz~{l=9{idu&f$TR#ykze@1_SH^f2o;aX<9n5j!7t
z={{{PPP#o1Jo>HEZL`Ob>G7aUsU}{|T3^>fcN_UVkT@CiKxUw@fCsCBStvIq%&f4f
zvTCdg`1Yj`^QbwQo>D(}@Wlgq!|c1V1)j10iuF0oxVm94m|wE~%bH%pYY*OV@+~Xv
z_nimt4gTQ4N9IqgpAFwzDl0{PrHRJ(jE8xV!HXhZ6!jvb7vWxH_u>aHGI^1il1sy~
zd6C8YU!P=UNU9q~t)fbfvgTm3fENY5$mvDlnUN7je54n-49?Av$BVoS`B?KCx$l>R
z74l-F*<P6Tp23`cZ`Xo3nFxw`QQV7iUX=Hugcl{fm{ZqM+KZPN%(Z$)l%nQ^ne`LF
zjVa?rSuYCIvy7S*NiD44MMW=6UeK-a;F{@9`6*Q`mAt6zMU=63H7<dQ%ro1~UPOEK
zL1OX3$~DK(9y6G!sw!SoHR7u=RA-I#qK4sLotudw^_K{HQOk?=B07jj@S?UC>%G|E
zMICC17n8l1;)TtNdR`3j>bDipR^N-3)c9@r8hFu=%|zBFtVyiNtc|=#VW3ity%_Q?
z7eT7wq<PWQ;AUPlH@F2={-7B}w(_F27j4+@$=cS7b`0%VyL!=qp`#a_yy(nK1-sC>
z%b1mbwxM&wNxON`opXDzK3iLW%wAsf_M#6v{aO36QdU1N>;{*;m*q!;2Y4}%`NakO
z-kHIMKg5fnUJT>pa4&vh7~$1_*%|4@C{B)M9qXm9O#kc2Q+KnBV<w>5XdBPT39J*n
zm}ErOeUfXc7t_3$>%}~;eu>m{);V6xpi^eH&-7xJ7l+LD*<Q$I`zNz~Q>HdI%yx>T
zOS$HIv4G<XG*4dW#Ud}3d$Gcc#cVERUBX&$O93jf%!||I@?8mUL%h<9Rh+es#>1Y(
z)y!*{DR(U=^G4gFqU~p-xCYVojb3b`Nh;D8Zur@Y&0akA;)xeqyx8i+eJ>t(vCWI^
zUL5t}m>0izvBQgfUi~73PSN&eh0O#zIr*y>zcK7$-Oaj(buTMLj*hnf?uB|bjd(ws
z2fR3F<Q`%;?8Onod3`qixECk9xXI2*FHSLBVLk1|1tao|7iXEz8P0iztaq}|zW(sy
zA}22yxtAH9o+@{h;hN$9>BV*C8-|m=i20Tme{u4*7kB6r@~-4*(RQl#t`T$3i@%wh
zlr2a8Lz><0vR*GlFCMY)V0E&(SSd{K!p-b49J*Sg#ECSY7k<Nee=|a&WwU;mOlK<E
z9x!}`LG?mo2pWEf!nh4jz4*tAk6wK8;+YrEy?F1%2QOZDK`*I)OH(7S`K3|nUoT!6
z{F>nnEiZdBQ6rt*ZSQDo=QNKGq!lk}-g+^-Zw_;OMEGYfzIYKKB2vUxFTQc9EF!)$
zWES-zVWK`xGO!Y46cKK4CJ{6k$n>YiQDjz;zQkyj&B)Ep@PmjP3^`ew<kSaSE)lso
znV&U}h<prrMY?Gs`NfdvBV6tNwaFA*Ktw^#EyPMrVG%``H!RCd$>JhPh-ko0NfD()
zM2oP9C@rFl2#9p2YTL3R%85vEq*WAAUc|K~adj%1D~PxiZC9i1YfG3ZxvjXF0xF59
zEJ7`BjuK%KVHT12tXZrtE+V&iOBwUZg66TQaWNvQh^R#ixQMDEs)?u}!pb|!Xt7rp
zG4_7jSk|A%B^I;T<3z-ZxOpmVL~@+nnO0N8*#Xhf_mhbUz7}X+TSOfZbw%{AANKk{
zqD_QyFu9(H`XUZpk07RNezMiGcCFH3YuCOFsYxP|L?nx7&PTmFx4CWI4vpvlMKl&M
zv4lBQM4E^uBJLJ9_pV@$Eo5%<dqPtY%|uY}+Y8Ax?lz9M*nPRoEkv{w(MrVgGUhfS
z+EVB2PHs&HUeJ8@PTO^j;@TI>-%dmui=8$aJRL=J60uaoGCE!nU1*Sqm@J~Jh;AZ!
zis&Vxz_gg|B6^4zS1Xyg^4h$EEq2o0BKn9JB4VhBz8u!@RjYms`@-AIve@m^10q%|
zi}{hw0jvXAsh&Y11~ZpX<0(0emOG1m6b(WV!$ph`F_Lp{TkIR|SSjF`#jaWG1hkEz
z(_z#zPQ*_Jk7t-boyL$}{}d5ZMS2E^{tSU>BBqO&M`L?!><kezMPywXJ6puZK}oZy
z>pob&S?tf;R`IEIj)-3tC*>Vsn=69!(Z*);MJ%B1x^JEE&bm;<yOFjQ_w;{P7jw;2
z`4SNWPp1+rr=zAhDB_!ll_FM&xFq7Th}9z2i1<~+Zz66VOIRyn6CJgPbt2YNw_i=%
z!2U*RWWCg!<x))_>mI2Rw^>B*Yl+)L{fGN4%#_^9P_bz{GPhGxIhS|`!%h*|pJk!s
zE*c>sPKY=uVvmTuGy+8&7O_vn?;Lr62E)4M?d!DLFTzzj;Z9QO<+^>T;6a*h6>X(r
z>_<epuG4;0q$ez)X^fq+=zeh0<6L}jjD2;C{gjB)BK{Cj^hx9ynr^UNp#8?!OC3u%
zOPxa_xsr{x^AuLQ9RU?DQOR~ugjm8>vurBq6%kiOctm(<#L_Gf@wbTkBCd<LA>uFU
z7MgJ)+K=e%?AYiQnK5>P%vTdh?}!M**zeIvjIk5krIy!gM?iZi6x;5Bh=(FR&xvu1
zcqGCh!bwL;i%cb3?e)#yA7~-Av(YB7)8$30V<q(D*{iv!h$zBGi<pR4BK#sGkzNXh
z$0B6fqX>=LuW&!8A|k5T=|FP7XhoY|X9-(S#FhcQ37&{}O7+ys^FqWwBA(FzsMYQ{
zjlFWV@>TS9j;?GA*6CZPioInO`%4iO<5LM<i+CgAy@(GY-tt}!)ob_RY1!&!Z13oZ
z8m9KGV*e=O$zj`P8bv)LJ~7{1A5YE~5yR>vgdMRRC~u(~9KO>Z1s`(x5avS$A2Rw7
z?!ym0<nSSr51D<)=0kR${uR@}dmR=<#b@#1WL$JsA09Q1CYTzPOj&fXkb9viCx=lo
z!iPPfTqV4b#Is8`&h0}UA1e9)AM*N;&xevel=30J59ht+f<6@Tp#U=_ujaHB_MwOm
z#e694L-XB@tLCs3_0h)_^T~VW&$}Aa#S$fa^jnE}eRuuB2{KFjP{xOsIc(*8XgDgZ
ztPk(nCro!YE*RTvN)>x~A1e4Td|}MiD)xJVId`_SN<LKffvT<ULzE9DA1pq^_+a+Y
z1NY*iefq^46iF9m{MkN%xQY+G15K*>P>r*wkw=_ye^jwAEs=U=f2~*_s3p{l-u2_-
ze2Aw`laWP6O&@B}mvw%``H|p5Z69{}@T(7Xe5mWgEFWh3V58%D9F^olGDAHd>ickT
zazq0<5Oxw-kA2Tq?QndSIZYb*km5r>AM8Ff_Mr*qcK0FGhcqAB`q0itk1x~TbWB@Q
zADVFhadRJ9Ft=oFW%#XqXk+k|?s?lA++$%RmFnO_M|L_HerF%L7~Iu|ZU!$OmzUyu
zaIz<BFX}WSw+};K)+1B$_V?jOA4d5w+J^yb4m2Y7j0^j+Fmezl2m3I@@P{%CV;#;q
z!iSLzvlr`49pl4TPEPS*oDV<wFmG?<WOl~;@T7{JVkU5MBI_j9<j;Cv)hT276csa-
zooPP!_BJ7NIwxoNFq45C`q^%d4|C~svonu%i4RMCnD4^^>Ukd)`LLLV_uiz3KV>3q
zup%;XMP##c`a4N!Tjs+GF16gKbL7OlE16dr&T1dlFt0V7bu>8V<)-2r*xBgACWfC`
zclfZ`hb=yQ-jS5Pm#sc*<E-thWd1@O@;S@vZ+b@^8<h7qA9nfhiHi8Jo2IG{P9I!8
z?Db)v4;Os+gA4xd!vPwN%==kW_Uknq^5Lux=h!*Sdc=pL499#p&TxYDqz^KW##5Z6
zvZoo&q-)0fH)cniXRiE9WTvY6IlAb>B_Hmw`A_!f%RXE&c-n2f6RvXdnh$^aaGm)E
z>n+xse54fi7bkDC-eJAV`gFd22!Au*XQku=hKIDKF*sNw+T@}v!3Q_3Ha`5rrpE_A
zgVzU<!KCP|^3h6ly*YtIhfJOJUEj;eHIV_1QCL+UG#`S@A=by#;r;aAf@ym~r^BWX
zyl1ouaqer@7qqhZ@Gt2$z0Ox`5==M{S)^{03|*t&7|vT-_Y8i|@WF?VhC?%pN`3L6
zgdZjS`0B$qAHLJF??-;Wz6xbv&Fx1XKQj6e&dE%EWMjz8N?}<Tvij-qbo$)MZumd=
zk%KuWYXobgk(<kpCjaXFlh<(aF_fulkK^-Rz>k9L6!N1uLt#JmJ~0<zF3L*9i}~^F
zo4(&JT&k2GrTwUG<d*THk{^}*C~G+7{3vg51%`@#fZ=-O0#r|wA0|Jl_)*mlvmeoZ
zSp10LfJU=z6fnA~eP5R*ySvqHmmz_Y6hnSB)@G>*<j4B4q;2gQejKe7-F8|8X}ljb
z{g^Fbj)YpY`1`TXkKg^M?MEFyI{4AikGg)?{AlGzYd`AwQJ*UGBgKyfe)u-WB(f4T
z^rPX5#EM$8BtMd=U~wD$i6_56VrpaRQa{rCXv)Dk%BCJ@5s}JFMVk51+>aK1wDe<R
z1sgfEt-hK_#R;0cOWygx(uTUOj9y_oKiV2hetYJR1@x>=esuO@svpz*=;B9LKL+?Q
z&=2}7(an#3e$b}~`Z&?uuYUyX;YUw~UViju=)>BVb#%Qv=~s~2xm15vD*hwGFMj=_
z;~+mq`7zp$!CYhr>rht89p=YyKSpqpE=(n7BprU)RDv;njAcK%e;G=SW1i^8PYmN(
z$)CVb-4{8DVKVC!BbS;-Pdb|J$4ozF`7y(<Klq6Hp@mXwwjXn-C;iyu$6P<=ago)m
z^Zi&%W5ACEMm-DtSY&W|JD2*g!f=-PvE1PF+?9T;VkbSh#>idk$2#WqtQ!o!cPR2_
zKlUF>*v8Ig)-6WvRvLcXIdr_+{rJU?9e(WO++BX`_TyJ0@;8R`;5{_m3_sl=-A|{+
zkLNVm{W!?E7yY>8$00us`*DQ(hxT%u20t@(*D;1+&Gk?6C%DK-KTi2^n)!?$=NZnj
zQp`C9IwKbt{xE#{C*`sqSNwS7hr^Gne*GK28#M6fSUy;;`SGV;{~Sx(_4GZ~NuaCT
zZ~1YLYZ%d?(O-VtX1-(8dDrNfzYXU;!vjAaG8A{@r6xK3aQXHB3!eD(2VMz&c>M4(
zyIG%H%`MVIqq(^wP4>f2<`J93N<al^%n$@<AZ3W5P4PoDSo0%jaEReCEB!A(1)uVM
z|6zURr%(8i)PR?M{Od<G3DqUM^5eB1B_x!T@Wzj~e*7RIhlF>2{nP$8K8p9OA6P$<
zGJIzJ!kT`5zcQy!$?w#72^l1P7H4G5#v0C=NkV2x?}{v(q?oJ{mR8mOJ)tc-n<M?m
zDIr2a0Zv95k$ENLV$RK)hc$htR5qW4{6=JYs|rdeB%v^yMOceTC~Cx{7c4IQH^NIv
zpp#xv0wk1{^bt~qwJgV%V=XV?XehFRQNsxS=eH6kqa{=}{3r$!tC=-@Ul!&V)+(%3
zS*f+L5^6|jE1{hPtAscSsS?s8#7m$7P)9;t?zEcpSAdHou-0a!WADN(u}NsiPCeH8
ztPNPx0}>@9aWa{;F>52%6jqu$R9h2fYSrNxrDz&9<zzF~<`P;+Xvs{GttGTFIK9u?
zaFV#agboshNf<7nql8ZE+gUqH=q{lLa~BC+8K|~y4AfUW8TuH0FNWU6nd-~Qeyr&`
z?a%z9gaHx;GE;3s7zVKpmh^|$kxAQ7cG8n0B#f0XPQpl|)F_70tYiKs@+aoW62>!3
zV4cWHZJ5LZgDRgQVXA~_?9X7G&PrLd$C(DtGLB`ggn1I4Nq8<{zJvu5{*Z7{!a@m)
zB<zr|Q^H~iOC+q9ut7ra!AVOctdy`y!ZHcVC9I$xUK~4bZLI4;O&x48t0k<FuvWr4
z3Bg@GB-MIzb?m&&woAz^`uuDwvMe?<A!(z8O%k?9*h+(3LX~OFFE+4jrnz6sny**<
znBEB#woSsWs`l*?evz;@EN0fy*saUcny-$n6SUS#OZZj7ZxW8sfm4`--4cG6uwTL+
z3Z_}sG+`ed(c;+SOJg^#i*>KiA;+?$0}^_kw;hyli1r?7xjr_j!Did3y=6A6jy+7P
z(3uwYWwFO39G7rb!Z`^iB%G9RTEZC#)a(}PW0TL@PDv0;T294TZ!e7vy=>BXj9$rk
z2^Z+VH%F9PtG9E}ir5vJwah8oB?*@$I3>6wT#;~9!e2DgC0vt0M|54n4GDkJS$Nqb
zesyfvP}@xjw`l0ri;4Z&Mqj?gXjbB2pQJky?n-zl;gN)U68@HOU%~_8#j*6|-sGQc
zbO^LxU#+<2D`Tn1^SMd%<bml`lN}PqJhnC+oFqtaO9)6%BzPovCHN&sbSx5l5)SuH
znsUar^s)8o>NNVgFQ%uBj@NV2_QRkgS<=5hoE5aH5;W=u36H7H-U;LcCEWaGQSa26
z+b8J>Eu@dFPbIo@1dUdwQNZMtdUsLTFCQ&0B)p_GU&3n%PxG0^-pKN=q+i2%h&~A)
zw!D$>mR1-U8DzX;{~POj2_Gcntzr5ofo}Vy_)nbtOzUJT%NN$Ktd#r~-uye4qA<D$
zkRCIeQN~n$tpGXUvc9`aGUyR5VMj}6m61)x92s+EWS8-Sj4m>|%E%!jr;I2WCK(Yj
zB4w17L01Rml95|RQ5nT#<dKnA#<{BYLNfBn$S<RStY2<KTl#fGnIgi83(ERMM{{$;
z5EtfvBGiV6@RGG-ip!`MXh;6Ts&;}BGD@;jinTOr8CJ@TDV<zSMtPZ@<)z<eM_UE1
zt)dJV`>n)KnU!{7mJux@O-55078x-z8p=qd_Q<FzqXr#9ds8(TrG_+$<!-5--Z}KV
zf~@*At9{3ttTN&_EM7(}1}ajM>i-f&KwE;0+SCu(Om#T7t`TFSW;53}oCY%J;lorU
zNk+1a#xk17Xe1*wqrR^c8RsqkT^Bm!Q=U{A7lv>f=7$mdHNezNMspeMWpt3yLdMP}
zrn`Ae?PRo+(TdJsdvj}9f96aZJ_I`N#BF8Jg9r#nDVX-sky=iBFJW4dLx0u*L1*go
zcBWqEtleasY!W_J#yA<>W%Q8IQ${Zt!)d5Ij_OU#E0Q`)M(JACJ~H~s=*Nzom9irG
zC6M-)@gq9}SO>BWVjav%F+*q|G1DJ+N>YU{HR}i&BV~+|F`9QbhV`Nlnf~rSY5>7c
zGRD){myxtLuXC|!f{aPB{x#-AYUDE0h+8JQiC{82bfx+fhN-O6So5_D>oV6ggGTsV
z(@Yt&7-qAQBbegn$(T<)CS!$+DXR-Ckg-t4A{he%b?JV(#WI$BvMr^#KrjC#PKQr6
zN-pDgf|W9sg;_Vq*eGKa^J>;LtdzA@#yW%7Gc>x8Nd6`nTMYkahRrerXDiCu%E@i4
zud3R~*+FMt#<l18^ErN%@tcgckJ0WicFEXHGf_i+4SQtlmGL%!cLD5^@w*IBhEK+R
z83$ziDdW0~*Hgm}$~Y$DxQs(G))ove+SGhl#u1)AM_Ik+^h*IxF#jRrA`KE5r(~R#
zaYn|I=HcgLoTYQu#Jr_fM7lN;OHz^ZoO?mW><t|#d5LSd!b-`@bVmA=Be=@WHCFAA
zzIxn{aZ|=4Bl4DvyE5)^@-G>oLlL)S+~MS#6=gCsHvcW--?x_g><~PfUhV<&L)P?5
z8L3)_3@1A-RzZfF#u&4gH6vdbNs*;CcJRxPWXuR)W&pB`fW8EwegKLLRYrIKnF7#c
z1Z8}d@r7C?<FSlqGM-a6u8(>mqx1X3r!sc6vK|?0`A5d(!BNfUMbSeh2P#o7XhbPd
zuVlQWmdkkYL(-@g*1%xvDn-wI&AD&r+%ddkCI3Cc2iA|QpJ=_^UzoBwPquuOk#I69
zEP#K9TE5BnPOJB53vu1;QRHU`AY%YE#>Ovwmz468C365-=vgNL<PIQf0NDbF2%vCW
z(%c#G3xA2q9>5O)blVw~BY>O%<hYueHm`BEsg{b9Ev5xgksL|ERi<06Ots_*plkr;
z0{Zha^9GPFfcybeK9^J=fbUZ+bod1WC=}3-w=ipo0E#e>Q#62L1{V+fcP!+WWU~}&
z=>W<YF|j}9E+0UJ0Ad0tI#z#nYsCO|42`Gfwk#N95r$fbE3s2KfG7rXOaYjgqggGi
zgNx^;tSVej)c~pmP@S2ot;G;a-Nj&Kjbn{xt;tG}kLp!VV6M$thqW%NjrCRj+!WRz
zfQA9|3&0*gVgN}2M2@z$4InuH>eAM97TQ@G1&|Uz;{cij(282v+DchnPNvK~-Y7MI
zv;YX2vNmI-WOIfV0kmX@D3Y5@Dp)?YRg0F^HUae7l&QmTOS=Ht2hbsajsdI)OX(Xx
zrvN$!@Z_J8eF7NK+S)QIsS6#xDe2nO)?Mkm2S7kucZMDT^fa7a482+7UbmzoU!#)z
z^HR*mTi;(A(?5Vw0gMjd#{g>IZ#EzRG6%8_Vx{C@h9Rs&0~p3I+{hilFfxEHQ#w)b
z?aA?D0@yt)erf>3V_C<s{=_;yfC&r}StqehW~KNk0X#U6kATL>H0s;7*6B1dr^XY^
z3Sf2sI|KMNpkG`xCxE2^ETe7=U>;3}uGaYhyj~ZzD1ePEtqTHJ$Y$=I*1A2di#cma
zK%eFmGhj^Aa_ZOsw$d;QMqSt+wK9O!0jvptcoj{Duu{~3wE?UPU{e4;Q&rXM>jT(8
zl?QODU{cPu7TT<ZQYMeHSPCYMd7rd7fGq(OWWM+$iMGnCZC`T6Zwp|104*$Ozt9K?
zpk2E*qhgb2RrxZ)@>>AA0=N~xUjcm`*d2hir{zEZrCM6|1hAL>1O)JV0Q&=&Gb`S`
zA!T>{mfD#3`1_6KjI<mK;7|aE`55T{7Y(;i4;%^LXaL6oIL`jL0M0X<U_HrtDuB}r
z6n`dwv&?j`l%(xK09TFNKLWVOe2Mik>lGuHdh#0cpRCteZy32ZxvQzd+q8&vvA(1w
zE`U1$+zsGf0DlLd(o#$#ht5j}tA|G5zLW>dc_NY?2Jk2V0@@q_IGJ6ng5kRvGJK8m
za#@kp$LeRL3MKk0U~qu`3K&f7p)D9drO$awWGofp7LxOr<`?r*!}%wGX9hnH;05#4
zdr1`hDuC!sjqIx%y=JI4Kk7{YW4lJRs+mOkK7bFjdZ@6g_!z(^8c2g<VibH1;0rCS
z3JNRu8o)RDlSJ?2Rq#E4Fa=o^WK)nqK}H3c6+LU{@c*7|70$^_ivH3HX?e>m6gfPX
zw|Y3en=iY99~49?$fe-jyj(dHL~vM6E<*pIBuvmhLw+=c_pi{E;B%+{KCk9ckXJ!I
zMSoOaegy?NzJP*YMLj-U>0KB_xV8!kDk><dpqPT<3Q8y_rJytyNq_fQN#==PbCqGB
z8p<gst6=l9DEic$bD*s}`;Btwl|w-#PMTROD~K{mEvp$`xox;f!H|xT^hOT~j#gmd
zTzZXo-qw*-6jW7EO+j@9KPecmAXY&Q1uYb`RA5yQr=Wp?h6>^p)KpMML0v`vKCOwb
zSuF(#3Ti7rJ6qbY-el4j_)*pDHU)GcN0nJ=^%OL%W+$fa0PEBFniF%}+A>i=l7hwx
znkY!7{g$z%ur}gq`&HAwe=Bq;ac(txs-l16)Koz;ig#y8Q}iDZW(?^~U)eQR^snfp
z^0t%oYxCxqRtj1x7)*z$ppAmI3i>GMtDv2N_6m9`=%vtCK(-DFI`UpNajQCUJ3F&>
zVeQJ=jg^|+ouLOSy#;_8Mu+oxZQI^-em^(4T-?@AfnC7>h5opszk(m>pe`jU)$9kW
z*)RRrdsTVcpVjR2O=<JXi6a}f8${h(-j<`feW-$A3Pvdyt-x$c9j;)6qF)&@`C00c
zVZBEx$WhW(vAW(5mCD-cRJV^&FqQ^P({|Zy`qeMv6wviBn>?u#6iig`RKY(ACMlS#
z;F5yNbjmtJO;NB&!D8mA3Z^NTu3(0OnF{7An8*Gs1+x{*VIF!XY+Si8dfXG0EwCbN
zzJdh`7Ahb!-618WZAA0%B?^`*_)Wns1<MpHSFlOJ&k9y3SgByGf^`a3akZ-ztl>&V
zMP{XH|F^333N|R%NMrR(*e|E`nkknWKw+B|Y*FZ`GT5PDtAcG@)pl0Or7_&DTo^rQ
zi+HDk^N+)RHQIUm@qhK~R<K9GF$KpJ>{YN&!9fLwIP7-?`)Tm-6rdW?H>#5waF};-
zM8VPYHm?eM#%-qDQLDmEC^)I$tb%hKc1po%1!s(1Q!~;VPe*ZH!370>D7a{}IlcF2
zUq7wTTS(g#&JtL!D!8WLPX*T%{H@@=f*T5MD!8rSj)Gep^OsQ-RYI*Iy{q7!0s^X>
zT1ZfWD}SKip#lfTKVqc-%B7u>Iu*EReWRO0&xEC`TY-neyb1ye6dH;&(b(}Tkp8Cz
znVI%N6{-p}DoFSF(h|o&9Acoe`TeB+wtCv0(5kXR=VuC@Q)^WeRQ2)sf~KKS^GgN)
zDtM*fwSqUa>MD3|l%j%f|A#-&g220=I%zNI+h+w|X#H34jh1m0*;Ra35T+trMJ82m
zVFnc$87Q8T>7_EO$iik;^}iOTw=+H92NgL~<W`YKMNSnFDk4?n`u`)T9x9SvDzA!s
zD)Rr&UZ|e`%Ppj$u!>qL68PAQsHmudE*dMUqL_-}DoUs*qoS;ek}686C{4TL6O?0B
z7;VJq$#N>ntEj-a<WScCokW64Dk`g}qN1vbC>16Z7Tz62nz=|c`FzsTYa@=~0D@{N
zs;jV4QbjBsJMXjxmr7?kmU#AS8f~LW(%Vp5MI9AQRWwskm#&0Uk*uPTih3&Qt4QQN
zq26eqqM^a*okp7U|Myr5CsS24R?)=BqR~QKo%TOvo2zKSE$^zLrHWQ6+N<cGqP2=P
zD%z@O_djRq|IR}CPCKgTq@uHmE=CMhPP<4y@98n!RCMRv^-$4MMK2W;Ljk?H2yuF{
zkBYwBjP!HeU&W6qd@B4Z2B;XQ;%60`RSZ%wSj99I(^U*nF;vAksz=4c*4AMvMynXZ
zJY2;H6(d!=T%0nB#!?O2>_L`8N|KzZ6-B1BvW}(QHP2IWu=QG8{CE|A?FpZtVj>NR
zrn%??=Oh)AsW%EIQK=~^#xIWw&5B=fqA9^tPEyPa6*E;VSFwU4XQ`N{Vm=L(1yQqA
z%u(?<S5nQE*0}~OP(k}$!p)<Yg(?=QSghjDTM5U9#NWQs^ue>#r7F%Zj#|b_kUP+b
z8n9Bu8Wn3*tWuGAXVhvHGX`7M9coHhal<UdwWxI})^n>isCYcpvQfpEZdUqVlJ>Gm
z#nv5d1}}};LO{NXvnsZ!*skKBibHfRRP0c(OT})QL_4B(s`!oO(Ll?uTooPW-D0^P
zJx?Ooqhha$1Dv~0#qZRsyTi%f&rV`{E0v<{)99288^fsahiT;O2|uRdxQZhxEmny~
zX$_edML?xas5nXExxMu?YidM11)rk9pCO)1+FDh&pQC=D{!wvV#RV0AsJN;^8EYvp
z)N)b96{>Tn<r3@I$4QqNsPbFgqiRjGT%#poqGekrTiZiTZ>YGb;;xE&DsIuarh#Ot
zP6vCN`m?*0{-M4@BkDlPnI%!v$Hv#l8UHseDU&VtRXm_R9~xyI74vdr%tIPWBV!)X
zpeovkz@fs)j!UIWtrEzgO<>1Oqn&{quL_YlJy=p9(^{$_lZF5ti;90$yi%dkXy?1h
zf()99l|M$16QZ-A;t88CX%<wsllhdB|FAw&@tolWE9KJNVRYNq$nU1tD&El8Q}IQ`
zTNUp(;G>ER2?_62{oPw1XoBa=MKA88yQ1hODY`xC6D{Lm=1JA<UsZggNKL=Tik$B>
zW~$r6G`-Za>UMI@RJUi;^k8~h7D_kCOss)!Qj64(RYNvSzxOIaLv{_ftJ`yE$f@ZE
z_=5(z>4|_|LaJ4_n=_ijV(n*wStvM{23y^*+#HsNmBR8e{1fO?Ktn+d_7M7qP)I{z
z4I4CU)KEl2Q4NDM4AxMLD%Vg;LxP498cJ%YtRYH6DNVl(u&jo18vHM^l-5v2!-##E
z=q5o*QdW5l;27cx3>7t8oYJ0>v{lkjNlsX|HP)oTtf8ugY8s+BOk2|_MuUYpy()^Y
z!bwkff$9vg8fq|<?AXrAP?I%IqlY{7r1*GF?&sZ6soEOqXy~iy_b}F_KGD!oLnjUO
zG}PDVfi-BRp@D`%vGx=V6yH!oBG-_lA!$t~sxX<8jaVr;Fg`zNV@@_<P1TTQ<ep26
zXwKZ0wT0og)X>V{)(mY}so&Z$v^R1)Fq}w?=xjLD6<suR<zzPvy$!#+h8_m@)X>Y|
zRqG1$F_@01ADw6o{kaDQXc$OiKtuN_?P-hM8cW;d8-=NJ+HT7@M8i-GOEmq;v|$>C
zYnY^AvWAtfYK_n^M#ESQBQ?A!7ClPCTw5afqdE78IcA)OpEOL+V9FIu*AR}U&U|MM
zeyZE7q;<fzEECzM<f}cAQ#4G~Fi*pL4bwDC*Dy;%m*IIk^p9CzEMbNQ(wQ_Qs_4ln
z6=P;=Xc!$s+Z=|u8u}b>Pss%u%GS2@pPzedm6$h`Visyx#4TUUN{6t$f7nvyWpw!S
zb3b{VZ@GpQM(#=t@ue-RG^{q9H5%3$ypCZ#4VcZbRMjR8KWp>^A$$nxowJ!nX%I0%
z?C2i7MZ;DN+ca#~@QVf?O$rS=H0;!HUc&{dzgP6H8un{AkX||KF4o<wdo=82*vI-i
zEA8dRz1#<xPp}?hJ<NK9m12%+I7Yo!CFZ!{<mO9rPjd1U>uC*V7|ybuWBtD?mjBRj
zO~apTUes`j;WFzLR@%!|272Ny@pW2)4F86Pn+D%v_)A0jlXmWCxJyG$!`~X58eE)v
zU&8|<{?V&^5C4xD9IUq2kphFr>Sm?=dKkPKmbvt1(6;k)7D<E5enb!f4T^?OM!c%w
zwZWQ(AgvD?9vjXJ4NsV#YWPRPGv?<;u6#~^`f;9~d0raMzZzaKcP^SWeeZ8Hyk+N|
z5%XTd2ZKK{q+hQ2S;H3%Up0JVGdze)Jc_<+2xFiMGcaUiO}}b1a}e2$+$;=PS+lXy
zJfc!RFy{y&C&Pm7db1;g$Q4BHAo2uJGKf-~m6x?JYd+TeK@?yp$XbYXF<<9dgt;gy
zRah*D;s%!pB5{)5|E1ZfX!vD<D9c>VaLO}O2x8!x|IQbJs1!tH_M=!$tS9~mH#0=D
zrgvJEAgTs2KZpfER12bd5K}leHi#NQv=5>~5Y`~#f=CIXaS#V8N5^wOJ=U5*)MB8f
zCInHNxejYx!?!WeCCBv{8n8BGO=P9ANeszBG%}n`J0hDfw_;5-{InpN8r+PbIctj`
zS~8?x+e~$~=42bzwyf<~>A*WOP|S}(bPA$#5Qhs!cVV+n5M3F%v33ulM-cKg{X%Hk
zdIr&p{obsD`slX?^kweHYG)<0e-QU3>DR^&pi>jXAj2QYFgS=IhBK65SP;VvX9Pp~
zAQ=_J=pe=fF_z5<tm9aJVja&qtIU7%WnvJM*qO{q4WRX8s=?D3rnAmqoyj_jb#@SQ
z80NChW2G97@b%RTgIF1)8~^o{c@gX4AeI<0OM_U(yqt9fYx+{QI*2tvTn*w{5Nm^2
z7sPSSUC+8Nh~I<Q5X8nHHnFpv^=DSv*Jg$-L2PB%X85!M|H8Z@h@C<F%Dmgi{Vj-H
z%wNCdqe^Jo!^yp@=|{Am&O0X$uu{yyAPyOv+O8ZqM}jzNILCtj-GOo<h?8ud3gSG&
zY1T8WXIZK2IfnGx1THZD5yV9!_Y%Y9Ag(Y}ES{f={29dcAlyNCg1BKs{vE_kgKq`#
zm%+Cg?gVj{;hy2|xUF9ge?N!^>^wC5M?p9Yb~3nF1zO6E#8VO4yg{hcfMT^oBhts<
z4?;2=nf?keD~1zYG^-XwFo+O4PlNRA3w@kCW_`j+OZqd0SFDu#Jct(tzYOAEgK03o
zW`4u^mi3*HyL4CN#~?n@ObqF-IQbmJmmrFUP%MP6L42cCI)sQ2Vq)#|FF9@Bg9r;D
zLkJl|`WHd8Wep*mITLGU!_UG{FFBlIvN308{UL-L4D`^O8Z(n3L&z0E?hx`&ohxE`
zO-&?yKc-FI5c1LI{16I<@L+oH{G3}Lg!F)dAzbU+f+CY*?c@{*;q1ufl{S<ro!dHP
zQrF@kln9|g2n|Ch8A2&Kv=FL=P&%Z)TckpW9_EHJ%%<?TvJB-|%hT=(mD8U>T+jk`
zs<2iHp)x}htBKXj8qI29rBX2=><WuZuOXNru6hVV$25=QT-sM`2&6SwtsxxEW2Iz#
z2sK0a=ew0k)iUZyV5l8J9mA;`f{nSJ;nWYIbF7_8C5Dg`Lh}$>gpka+jaZMBj%k)B
zYYKDY5SlQgvNjDNje&{}$d<JkGrgmMk}a8^x3paNYHbxl>k!%)k&_=5Ya2ql5ZbfT
zg|!1~M<b>awaVai-Sy7w8bUY2=^jE4=AMRwel2?Q*rVashfL;vtS6Vpe4iQqV+aF6
zcpk!w5C(=YD1_4?oC#rY2tz{H8N#B~F*N>%hA=IJ=^+dYVR#55LKqps_z)(9Fe(JO
zhILE`ZRguYQ*Nw1<GWg<V?&q|Yahq{Ppn&F?G!`X#1MMUwM`9SQV5enn8L|536=$U
zqtDY^h_y$hw5OfU2w`RjYeQHU!mJQxhcGvUc_DqazFVb#+L^<A^ktU$AuI^t+s9h}
zkE-*4ZW{T*eIOy!kc19P5AZ=G5^53>AizQbgr24MYI^Uz_uhLiOYa?)rT1Q!&a$wv
zWm~pv$yR{nUETck&U@$ReCIdc+!>8VGh@e5S(1ihohnvOkEh&)oVzFuiy6qdzcKuL
zmx@c%u*`Ipr(p&2O4C`zHLOm<8q?XmG57j3Y)HeVG;F4xIon`k8g7(K_0CNEwx?-@
zpy(|exyy{-nucvAZ%@Mx=A9Wayxfg?oKQj+_mD&5ISu>LaDs+w8r`jl1GINK5l><c
zrr}T;j-=se8V;wSRjGDcrZhP5Fn&kNrljw>H}F=ov`BAEaGc}CRSoVBOH}$dIF*Kc
zPh-xe;dB}(d4_WfM<r67r03E=N{{-vn1(-Sp-98KG+au<pJ}+AhC6AvoQ5mZKlKA{
zrr~NDuF;XwDNYo>zi3q<QKVOFU*}wcpavrOx6)9$o)~mFfO7Aq;U3N9MDZ2tebxtQ
z#*4ZC32#jLkoghoW7a3EPiYlmpqS?jFIZpFP}~_oCT)ME;dL6`u)m~!06Emi_i6Y*
zP8$B@eSPHI&uRF?@V6OEP5OreLaJN7q#>g?nQ3Wouy19xu}XZr`|62yIyLn~3cJ=J
zFR3dH?lc5gk;!T-&I&KH-&sAZURIS=WA&xM&p`2d8q%4+vCeoOOeSqVIQd^1elm3V
zX*_T#vlW3>RI{SG6+u>Hv7)#YC9DXxBC8d7tjJ5gEixNxh!xqb$YDiJPUd2z+>+HT
zq%~M`TM=qS7-xmE&e<0cJ<@msQ9dj3Tk#8<1y~ES7Gy2Nx+d~}|1~bc$?hkkiZT>q
zrAk`zUP@X~-iiuVlw!ZM6%kgHVcvT*gu-YmYehM;6d0yfjfi9rt*FQ#u<FC}Q+yP2
z71n4gDlw2>nc?b((5j}>r@AG^idZY^uoGwcH5qEK#<M1{CSNsPJyXky+Eyg8^Cf%M
z2LBpQBCTshJu7~-qP`WWoYlaJB!;F|bSs;cVv;%8(2Dr(5tM9XMPqh|Q><vhoU*JX
zC7W5%oRckBTUv4ClkuPZR%ZOE+rht?yklf&TPxaGVYk6yLwhSaSkcjjPBwJ3qLUT<
ztr%cMXDhl;ORTtMjqFNC-7a#;ng~*FsQ~&xwLANi)q|m@6}=dGn|>b#3u|91`Y|l(
zX*}O!pcR9x$ZSKP4TG&1V#R4I&R8+jieXmFwqlMI!>t%$#TYBbS~1dUT+ca*BHIM4
zsA}A7KAN3dO9kR_R*dK5WGg0EF_F1<-w4W@WQDTQ0NQTsFoLIW?o=zLF-&Kj!AiL^
z8D_Ee+Zi&~ig{LSv0|$g^Q~B5#ab)YaqdDZmNPW37O=>Q#mrR05-VNiZM1e7YlSr;
zF>Nb2xsr7i>uT0DtbR{0#jLktqZOOj*<eMs4$)+8w&L(+;p$2u<6s*XZ5sZ&u+54c
zR_x@+?W}Ya>n;W=vY%nM6?;tQcZR)I>@%G~KiVE(KFE5A_QG()iW3Y+S*f;TRvc%}
zvc%{>+D=+=%FL~OCh)8k=dAQRdAO}OZ^Z>G{<7k=6&J1e!-|JiJhIZir12*gxoO2^
zhH?GlGHScR$*Zi_Sg%`ggMk8$cMiQ}#ceBQd1CHZ@!yH~iT9%Ja_&9W`)1?=27Bwk
zXLo}iTk-UNzHu&STau^UGc)oz!wc4ztgl!%?F^yFH&(p2;)AgQ8)e_I(&M0sKU(q0
z3Yi^B{>|XD;xofPR(xUjN;Auh`PYgxW-F`B^d<5iMNuWRIoSNQO#pGWkVb#6EJ>hP
z;bA|(1}}qVg^xkC!co--_H&ZpKPz;T(;2>5@txs^>5p#{uzI=hlamuX#;!Bj@HF12
zC&-2@HiX-d$A(}VvfAjMt;VC9k5PMU$YG;baT)L3$j(YWU1>mTOD>!70YO`c&G?@?
zL8uM%Gc0Xk3?0Tq<h3E64RJQ(3srs_3fNG=hDaM0d&Pn_6t>}c#pptuB&Ulfz6eMD
zVnb0IiZPdEEp9^z8%o+xijxsGlxCo6Pj)qac9_UNk(FUH<JZV?Ho%N2Z$lH0@vB9l
zm}tR<DmILFiJ}cXPBgA)!@b!0Q5+e~TFER`*@leDtFlv#+ewvFw;{%iiDhW{U)~xF
z@irvbP}7E5Hne7^whf6kq)-DmS;vO@40Tzlwt6=FYBC)~1Lh>tNw%ROb0gNqrk}Xc
z_;%WqlPy`Bu{LLIVYa*#Cn++O;Wt+L`?L*1TQj#EeF`vlFdgcy&Ng(hVTBD}AC~ND
zLpK{n*)ZCM?tI?+u=X&=Ku;TbG1EBd&4Y)=gN2>GHuPiYZ^JN#0jv}-kYNyg3NQ>Y
z{h<tV?cu{2MwtFcv*s~2<4HafZJ1=kSmtqbPHlAcn&I32%cGq(9>P<8The43rr5C5
zhGjNPwPBhKb8MK)Vbg7RaV~IV@hFO%VZ%%|iD%g`oB7M4FiOs2zV$G6i4F5@Sis5j
zbAbyP7O_&;VunxW0x8m7q3W5;5oFS~+y>eO`73Q$Wy5M4*4S{xhO0KLwPBqNhio`(
z!+IMw*yu)h<I{E{9VWwG8yftXwAqF&oSabIvhhmbR+^;z&bVzhY&Ura!%iD^na*y8
zJ*>aeNenSwGe?#0vthptE2~?o&1*+bzIxWb;z6#w=e{PCdxZG{>rtBT4CEhYI6>pe
zbWSmxW<A4t)`oLt?s*&P)=Hp)v|Xg0q2nD?k)A+x$%a48n9B_L9|m8u;kpfvY<Nsx
z3G#?H$hYA(=ia1KUpIg%`MEkeD5uf>JM7=3X-n}%#QU5i{{h28)`T$QYsM2B-rI}^
ze?7G!Q(#Nlp3#EC{DSo*>nqm3SSjW;!yDGOHoP<a7J0-ET=_>EKH2c`ZIi!kkho(%
z(}}BYA?F|VzmUoBFDv<J3|3YfjR$%H!P_Q39yFqp;<Q1wp|=x#oN(FTwqc@#NfHzr
zJT%uN$o(tQ6797i-G*;A<0DCB)mVMh!sUYB2Hgg0gNn+Hs6NYu?>79fp{#^*68^K{
zCoRGf@=G}KZ&ZMUU<p|zWRj3sLZAftP*{Fn$ReR~{oFz1%o7}Qg<oQFlbJpyIh%xB
z5<(<omykn3P6-oM2@juz(u*pZUg%6ONvZuJF}H*;3E>h#C3?|YRC>WiY2SrB5^h$v
z<dtw}Qp%^N!e7^f)s<?}4LAiP6qHcEQl1D2g(MV~P(m^es)&T>{EdoAC???-=5^Zy
za_F@VE1eAo&J&7DAbr16C@G<ogwhf&-wkfOSBSf0v|++)p^StFMH<m|^R561<s~$f
z&`3fB36T=wB-D@~NDw7dkx*4aMS{Cg(Gn`rF}|Wla-)~4HbG?x_YVk#7720nD&{^f
zOz)KJ@e0)>#7Lm87DHMzsxIN|=Y|BaRNG?XH8G^|5)vfTlkh8b@3W|y5^76Glu(O0
zc85R@NBU6Ra$}ZIM?zf*J%%KAZP<vCvzH0cU83tt82?D1SEVG;Ugil6SbIGdlBp{K
z3ecNMs`wi=mXIPLRl;u)nox(&6q-qBF5zO<MolF=S}Ty#LV~}#MeP>dN<vHK89sp=
zI!$D@me58*X9-;-w3X0KqDP<$9jV#TaqT5^p!54)=yXl!W)=P^)hIm1^6EvyP7;b%
zZ}j7%@ZVjbD~-uTLN`8~Bg1mrrwcJLmL3v%Qom96j;=A3wKr=YRtxL)$u;^)Anhli
zKRXmWfX=4LgCq=Q9%4F&a|R7#9&S1#B#dMp#X8#b$1seQFwS(w(-1Y8>X|HIii8;w
zW=gP437je!Uqz-%n8t9TK*H%`#*e-BxnZ*;%%+}qAl89766VqnvZI0>^CWtuIBrU~
zC1HVtg%VClI4xn3gvAn8NLVRhiG-yzp}t2hm#|F2onpfEe!`8m0=?RAX?5dPJ9;tt
zDw=DO@s;T$^*r_4!GH}CHcD74VI7^U58<<h8-KE`muP*C)Y}EN>?>}PutUO537fg#
z7FLSc%CL=fJL{mbS$9d;P18-nVF`Qa=p+=M7kYqm_tKb&vCzGNRCXWL&nEGqx4{SL
z6nl(safOqGBkb3I%NIo-4LK^|7(2(!_!AP6su-2z%PQQ+CY+&(AmO?MJzn^INB}kX
z91XB>`6%GLgbOq{x!@lXE-`dIXnafjlV&a_udoiu5qg#38f(qU#_s?(xK6sXn`*vI
z{VCzIgnuO5m2gkO2MHfJ;66=x2@jd+#qN(JJmyNCu|A<GbE6Q|_LP$ZVRFcG2`@PL
zQo=iiR}%iBwaXD%B2}mnD7=>NhW)o@DQoq>_jH<u7-y&Slax=A@v`;Z3BunJM#Ku6
zh6r@NUY?8jLd!@F;a>@9625X-@^8tJRvLH`&eUoWZighnPHU_kL3UUkhB)ZFb7c3%
zf|Hhd2`&k4>MnPrN^4`Xpm46oY>Ah~STCdhY17#BvC>OGbP4Ga^34y8^+bM?@Lj?W
zTKpyaq&>E1Lh)jCA+HqKK2`{zy>ktj?8t2L=;}gQHS%f4yjkoBW-}{m4m;>XXJgLJ
zI=E|SPCIhhjlT#&?5JjsbXFH~b5<y87%S}}GOhc(Z;^TI$ZJPFJ06x3^4n3&j^cI{
z;FyAT6tbhRonCDd|BD@CZwC}%rX;;MyQo<Yy~w)+bA%mb>?mpar5H-valCh4+Fe;r
zmVFaHJhpc^W|)zaa)w6QA=q)zjz8=W?Wkx+vK<ZWh_V~gEt-|a@Z=$(f5%2tqGs4Z
z@2{_7M^)n(QJt%*%Nk=xZ95X}h_xfmjv8zxnEQ&i<2Symx~A#WVwi9-rj8wpYee)K
z6?F5A@q135n8bRV^($+A)&{JUn`FoHCB|<%jqGS_M}Ip8*pb4yP3>rAH*PL&Vn_7%
z$Oqpe=_N1C?dV`fM>|?@OiR{QcBE2!nA@_pW^KcIX;3Muza4XX)+!xxle2WFn5m1<
z$&Su;bYY*&o_2I)?#9~P^m|bMw>Exx>t#o8JNlS@KN{i8eNBf3=lKT4d%y?UG02W7
zc1-20^!6cx?HFRmP&<aPGv1Ey1YyVgfZ=wGU}vNq<LvaFh~Q!cgi&^5H5<)3hK3CT
zIkg>;!`kQWZ82UJJi(5Mc1+??O5<}fK@ou<I-f9&&GmL{uw%L%GwhgY$1FRvY{F7I
zX4^4`_egIrrxQd~&83e3JLcP=&uz1avlcK@av=?mVIsj|_9=J?L-Xj0%NUm1v4UZx
z9c#>(RSc``$lvvUb9t>D>&)Cn$D=mdvB{3p>}<AUiygn)vDc2Rc5JhQjw1e6aMJ?9
zb`IFZx`TBm>-4h561tmtj~!}XW8vCIBixRobWXPf9N?^jtdzB=dmQN@P9C=7i0LPc
z6pzu#wd0BuIVn{*!Tw1z_Y{NJBJ~WzS<^qqaGv!7HF%%#3-Bd7{<P!09UtttOcmPk
zmevqUXtRFFSM7LZ$LRS1*X+1XtBoBu?YL*heLHU1aodhNTowIlN+XA=npQ86;I7?R
zu~RxGKH%J^tPfcqu|8&{_$LfE-v(D68T5?i6enM>zBFS}(n_CcDg0%}YddHurc!V0
z_{x*?ogHmn<lPKQs~W;bJ3i5B;J}nb;cq+rLpjgCcBGLxR`|?S{bR?w_JLohEGM_V
zGkV@?r`sw~z=47eNOsum2yh^i0}eWswAh}E`eBD`hl>W4*&a8YHIo$vj~!mq@i`*3
z|H}-1)`BOD*Jh<Nf3xGe88hL1=zn(nw4+^B;pQ;${h`DL`Gm|41Uitzft(HmIq*U2
z7VMzs<OgSQ;80)jY#%XS`IcE7#$d}v0k+8OtOQ4fgywP}gp+w#bF(It%^J!O#v0C=
z@sckpm6wzGSo70<>l-UZAqNVx6YW3|2Yzv&EGLVy7IUDu1KY|QeMnmg2TD6IsE%=V
zN^(Fc)@DOP8?9*<;XoNqQm#-fu$%*MpgbLs1EK>(<Bd|04$w=@2#gp95_cHWgtm$f
zM44sj*R4tpRCb_>1MOlgRUPPhD!27pBz*^{|EsW2j{MY7sLsJrV;jXeP{V;E4jgqL
z-hl)M`Z>_wftn7~a-bLOE?%fjJ8~GGm36q(FDFBEZ*Z&@+0YeP*MWKt{OX|RQKNwa
zohYD2V3GsL4zzM0)q#c%M0+C}IndYvS~=;%l(zekSyLQn;y_cbumx)~RyvmE)cD^2
zTUA=JNzQK$w05A418phyP5feSWUm-YnK}a9>vwWZK!=T~?HnL&&)R{tqXT!l31oJ5
zpbK@NC$g&px5hSd$K)mM#xdPldpOXO;b&<hzPAH?9I)`Q_vHrEi|^g4u+gM~RfPc#
z40K?K14B7$kOPAqpxf>!7fp<ho^^dfhdJPFEsS<xj05jGi^Cnpcc&2?KazEn18a2S
z#L+g^ff)|WbYL8{b3o#F2PQZ$k;A4r@b+2oB<9JiQ&^|6Qd#=WJe~O|f8(9yz-$NI
zPKd4a{ojGP4lH(Hi37vFMUL-k48nOFJl}x@3=7SA7SSPRd~Q0h%z=##Y;s_^11mUy
zZmFlTD;-$tz+XQiS2=Kcb<Ap3f;ALBKZRhO>8xkiKwY#;B%jKjt!jK**i6S5W3l@p
zw>hw#Yd++_4r-(~@^=UJva{2HT|8$gezyaA%oa{98@SJb{hU1LFxIHh4#EMN`_4$Z
z!IP#B4eakf!w+)+eIcjf#~e8Bz#|79J8;5*lMY;P;35Z{a)6o?P)0b-$%tmc8FHA<
zIY1vS=N-luQTimM=h*x~W3_is({(XjT#=U?_>)>yLAcDp&$<g&9JuPhH3zOcFsWd^
zJM7<Z7+(b!#TaAeCXG5aZ?lq9{B-zT=6kI7P5%MIL)Lno#U~Ctb-+Vo$$@7MJa^y~
z^*^mV?~K20UO4cQBUi>)&X*J}=MiYuymnwws31A;hDHwc5(oUlN=4q&BFX&GbUrcs
z?Z9UScL(E(2W?+C`IYrw2hteGw=&oqXkN-VG&}Fk!Rlm{SzWBu5;udwS}QU@bwHz8
z??f{vd=B_&k#VB76S@QG4wQ1Dv=iSP`0hX<Cki|9!-4;JkJ+90nb8KPv62U{5@d2B
zGjkwot6D~@vY5HSPGmJX8^gT_A%~O3401UU;zT|+b2}00L>@CT%!zR3ZgIxydZpX{
zR`0w{Tw~79xdqJlf()sXj9nLTVn*-K5>EWWW>MB+ti@R=hW>X+T9T8uA2%Y7aH66U
zQBIU`qO23SLj%ikuHXb1%9~{?Fhn}>b%!ynL?^6a#(ru1M>|o;i8v=}I8oV&DjZqW
ziH!eW(}x0u(N>N9>Z~!Wu}*p*k8$4rbcE7pM7$FTPSoTq`dS_l8?i6Ol2JC1nx{tA
zp;ObU39VFhov7!;uTIo=q9MmqSOcf=Ei~DQBz8`5*$P#Ro@`{sG<G7z<R%Pl$_6xd
zVx=wepJqY}Csw2gZ}JN(a|kV+XyrsI$Nc6*M<+Tt(b|bNPPApS18Y0h_N=c;8T+Dj
zp8n|T%uem};O-1voaoBXjg`Wt-wqy@lDCHwJ=y7H`t&YNixYjFIO{ZiZ0YAje<$`a
z4{)OCrGS}E%yMF&6N8)>?8Fc!MmRB&Mr>I0P$z~tjpw~wiLp?UV7L?RL&h^<MmaI3
zOVmWp9nCt1m9oY%jAI?oI)OE#;3VeBPE28-_^D1zGkH3VI_3#mVkv7j^ExNi)9##@
z>%=^ER+#bg85TIP&~z3tEM{He#8QT3tjk%c+V#1zt~7ZS!)hnin9f>;1@{9s(BXf`
zx5J5@bku6pMkh8ov6*=b>ozC0I`MZ>%%>O&1<<yg{rh^%F0SNvv(DWNdz=V}wNL|S
z+e-(PD=Wc%nkIa&;sGZP(tunYN6ABM9(Ljg!%@~_X5?{(6Hc6DIK_I}%st~ok5|Uc
zkLP#{oM*kjdeIyee>ic8`A;V<J8{MIuQOa_y~av+4b$kl!A$>ZyzRstCziOe)Q!7N
z+;ifcjQ29`JMn;H#>sf-#3Lsf$Vig$*oh~!Dmszw#QEpOfBl|1@yv<mPQ2g-yPbIH
z#49HpPB@+T%Zb-cd^C^c4Z~a3D%%6;px!z0-pu{rgnf}=exkF$=4U7VF>|}DjQhg;
zmGxiKPot%V*~TiFzMY{}t7Ms>+{UO)Ta24qUDU!kp#+K(9?tSQq0-{uL`DpS`Plc<
z2;m~MYibGg+c!GnGBQzDbQZol(W{W~!-@asBY=5C$!Pj1lFZC90%a7HQA|dVj4U#;
z%g7<)#k}ZX%BmBW|6nX}RvFpYY!sG6$(%BB$q1K`@0u9GN)Rd|w~Tu`JA3ZLcfK!@
z6DA`A@^DOEGcuoy{LBSRryxTi*21hsWc*_0{t{~`E~A7DQAR}>C1sS75h0_DjM6fM
zYhw9@(bTHA{o<^p(Gdq?%gTU^@-oWF7`8vQNx@XgrS?>i5h>%3LcJ+0G1fvLaI#sI
zs3;lHGHT06lu=1W!|Y9J$cUHe@q^KoWmJ*TCe~7wlhs(Ov&L`>W2se9&1j3GZaEN3
zMG|CCW3n!dt|g<UjME2Vhs0V+JP@h(s2O#rpR+fqE2Ex_X7i(0-VuM5QJ;?MdVK#T
zHK_(_?c!JqbzL&GL`HKNEvTJUq8iCaVQ9=sPOb|9O_-ZfRSYqA;^;q*74F5gl#Nw)
zu#6!xS}~`}_)W&`z=YN^x-+zq(N@NcFU`rMtsR@~WprTZ$l8guGb_b(Vd%=*jkV0_
z*d7c$St+I$LvI;<OvfUlFLOT`{bdYb9>hA(j2W8}ox#-Xp)$sBn}@LuXB{D9B*Q3~
zt}}_mRO6PD(d?u~7*}_Xl|c&y!FU-HWK5JXNyZi#TV+g^F-6848FOWv3r(6zr%#6S
zVC*y*(`CF|AGIsiLOO$aCTq%7k@hm1M*e;S=E+!Fv&Cu|Yh=uqu|UQ`8H;2rm9dOQ
zNMLl(A7Wy+*u^rI$T*riZuLHql!n1_9t^8wtY9E#r3^ah1e@xHkxn`<u9dN>Tk-~K
z@Og0^>w4D9v6hXTwTYEtHZy#?Aa0YfosLDuc^Nxo?38hWyJeS*-7*f!IK;_4GWN;X
zPrW2#FFT}E4;|6#Sj)u^tqxFwPsY;L<dT^6l6Y9g5o*5-cdTXVJ+XaqRO^HB$7GNm
zr_p{<{8Tu}c1AoYgMv@VXs|!_G<Ca-e`>ZkD<fx|g@87K3o<UsxJzpSjZ7JrWL%YT
zjb?6~<xd$KLsPHF^fG13Wg7YW<BQjgqwXT}I@fuV&Q5p|RepnVD>WmyMJJ_e@@@9-
zn7I^lU&aF&Ph~vgf)8osr}^?ke8fpA`1Wx86L!d?<a1ibWW1K~hAO1SY)D<ZKJ^t>
zp22_7iC&-j`CHqzKN`HH^>bcyNbzPD8`Pw|e~{_6Qz$NYT=*p8Z(4|4DDA>$*|;Lz
zL9L>Gknu&vS6aRri*^~s6Qci>ktV}RldhFW&*zaCY%<2L4oYq%9*7I2$F_7^pN}GC
zIziOQF64I^AI)xBiyDieE+{fQGQ2WW838V2a^X>Yv?e26#y1&0Dzc>oZGIU#C3D5n
z_NZ6#cNw(;^Zt<WpKQc0sosuEf}fo1FuoaaW)}io$l^jU*V*e!NDxEAUddIhMnF~<
za=4Jwg={X&K3<fZ>@NCuWDkN|E`(4!T}ZJu%QY>GoQxuE;w<D)%fnm<cNvF3TOJqk
znrtbZzkmxJQ)7!zRW1~Cp%7`Oyu;!wh1st-BZ`s~P?VF!T`0ydKh83GN_+|ClC0UL
z##2~?3uRn5>%ut~%DPa_h3+o&Z~-oqccC%0(1i*vM7r>+3-w(PTo7HT<w9*2D!LHm
zLJb$<U5IuW*EiBu$%TzktunYWn^jn=vQ~4Ux)~Xh0jzPX+x@i@7;3T(8xckIL|08F
zO?06Sb;8Mf#8Wo~)pemB$83wUWbEsFoTULf4Oz)dav_;{$F8m!F^ycvyxXXui3?3#
zXyZa#4rs=j>OylDTDZ{Ctf3V{$2$%DbGq)Gl1c@CbD=ex4HiY_t<k)l3+-L#!cGV3
zRfbNiZ4U)bA8B0eNn2-j#_sOg)rD@%6Q||16*8U?(bGl$G^fY&V!jK#UFhS&5Eq7W
zjKzh1F7#*aOJO<lQ2YQ+4sv0z3j-;>bO1e<AY(5v`;0>ya3S9?7lykqg(F9>20sp-
z#4yr@Q4AD0+J!MDk7XFgI^Kl|3=_@VmvNQ@L-S7NWKOTKyQ$36T$pag%wU+wI*SH8
z!yMMRtW+xV{JaZXSm?qQ7q+^v$c4q6waJAgE-ZCn0}UP*ma(~>bvZdzj6JS!VWnBm
zDu&gpYg|}s`s-Y9@pw3MxFr>#Ela69)I|iF%@|5<W8UGyPKNE&+Q-4Gj)d;w<Zd(a
zP?6kwT=<=nds&aN?sH*3!vR*R{GbbmOg`+w5tCo;Pd#SxaTiXQe3Idm3#VN;!yMQs
z^hjV<s_MK87id*<;U5<+y6}e!Ph5EFf?7M^k_-1;c;LdHE?joO{ZqK&!c`Zp(F#+;
zLP>g7z;&9WnZ?vh;tg7t0*p7Y-lS3VQ@G{AZ3f~y40l=Yxj-+dCG#PzT`thOTpzno
zw1(x~p8@nB0`ln@1x=R(JageWSNOq&7cRVX;f)J#U3g{I`IpOh@oSO9fY+u&?~r}R
zMc&g?tzn@@C{(Ord6F%*XtThN^bx>Wf4gAI7JG9;=(bu>^#a5%E_`*t?t;SwYf|*T
zE~F7Khvx|-ht%f6fK1WE60MMV0yFsc@IWVr$us~M=Islk7`GYYr4FRk!;Q*rXfESX
zW8Yo);ewCZPse^XWWneZoszUNL?nK5p}>j6nZKrx1{@Inqt?2S)ouKB@Y96=H!``A
z*^L?%#4K(+I2{}4#^_065Ie6Q=Ds{iBr|1or)+LyccY{mrQFEj#*oh?%YO_j>PAjC
za=8)WMs7FqyHUW6P&X=c2?%qe${aCeo=6<dOvyY9dELloItyou1>Gp*#`=k3+o@t<
z-tRAN)Se<1q4taszfBO!EfHrF%t|j1FXlF${7{@@sKF)NcsWY!G1j;eth5_t+$c+p
zxgHSVHtv|9|6G)F<J+c^*Y^jBZorN5Zft)UczR^T4jp1ExDn|F0d0aCsWmJFw2O*v
zM7a^|M#SLGR0(~Jyd7*j<-3X-v)q{NMpZYexl!GX80siD#<&sd#)sjFP2FhbMjW-x
zjd(W_+^FZq*yb&3x>3uGL^tYiSZ&sN&6`*K5<{hED?h5)r@c+<x<M+{i22ox`do0t
zhqwj|R7sK>$tE{+qY-ms))dok!r)(7t+^X5+~~ud(9(@oZnSly9UY?^_QoN-`-io5
z<HxdUzi|LPk9|?Yz&6ZDOB=MOK5?U$8@=7==*GUN#GdqrcK@(W%$-@guu@i6hHk9g
zS$nwg=w}pV(No|5U0RL$?aAEwq?;RtTioc&d+F!K05=A@k>_WP{$%EjtFxinAkL!5
z!E~AuVyonh8^X@|2@Qt2F^q=Cga*S|2}UrCq`_c1Zz?8LTwZOg8&hdqt*bW94N8u8
zV}ctKnJ2SOVx_EGUu%<2aih50SXLWTk!f6Tx*IbX$eGD7sdvI0H|Dyrm_|7L1Cjm&
zaASenxJqrl8*~j@3s*2{@9AL+-B{#C=M93Vc}3EZH7pdr%#G!4Jon;-7c1OY=|(>f
z`g^d-jn#CH6j&6jabv9;<rF}{IyxdZ?zwT_jSX&WbmO=iC*0WN#%4DTxpA0h?iM%b
z+8DaTXsa9B*xAndJL?WNb~5Z@-Oaj(bygYU=M>uZa&n&=`x(eN;Ko7bj0YheVLrxs
z)Ql<J+xW$G`t5*|Zk%HC7VBx&i>zl@&$6C#<2(bEy1>xkZSWrqmrVaphRbeTapNlU
zH8(C+%t}RQyUxxHH*T8ogW4Pa8@kQOJ2W^=|H81i2W~uc<EI+|3Ld%fn1+xW@91Q4
z%u6%!sT<Ese(uH#legrEc*Xn|>uc6Gtn{-g?eslOUN>}hDEZNie@*`6#@{A?cH<xB
zFRWi#>omzjMQBTN!|I034T<I>XL(p1tWMS}Qv+oN7b}%=Gbl6{a{jMpyl$v$YOFpp
z($7$rpR1Wp3m_-Io4G&S_>Vc`L7JHqWL8i}L16`fit(Wk!WxvJ^e+Gf!6s)_kj>=m
z3UV;#WX)yz(;@?NGl#N<v4)$uc@*Sj&c~XcwSbvhP{AKf`Nw~DN}K*K3W}OsjG;Jd
z2?ZrhzZ3)gI3K}KMnPJ#P?mY(uf~`!ub_egI_mBUHZ6*ZR1l*eR)L^ERE*DyiV6-@
zN~*>jr68K25-a6aR#1hxs_8_p4XDnX&^TpTY;2r@8VXt|NL3K8AVEQ61t|(@DyXI4
zR|WMI)K-iOp%WF<QBdYoUNL_nJ;AcBf_l^py*6#GHz^BhSiDWzG+-xLK|=*eX6}v}
zmYX$<=Y=+6hpHlOqM#{P+k&+jXEj$ql~69lQ&>yRdQ-y^UN7Z01+5iyQqWmJ8wG9Y
z@bf2jP|!}n$aSrW+j9-;`<J@=HieQMIUsAfL}J>yDCovcw+^XY6?9)yg3Ju<p`a&s
zcrWT_1)m28l{#;XD0+iHYFn|df_@5~D|n%xzk&e@7ARP#fIf2vDj20;H1i+@gB1*+
z&a5DIADKL2rZ`l=Fa^UE5RYJgq=HN{#Y=O<!sN^p$0(RJTAZk062n;5aSFy$h0O8e
z#90%?fiuL(3hqu8=PH<|V2XmN3Z^NTPB98*E0{s2c#cTz3HU95U?wNE8kX)iQE!Ym
zhntsao_KMAIG>y0suJ#+B>pi;?7l!;q+qdv;|fkFSfXI5g3SuHD4?%T%M^Nk5mqUn
zFDlCwtWfY|w75Uj*u`pE{1vQMFm$T8aFn=~I%Jf%j(1dGlDKGat9fI@4GK0Y^n+wD
zeFfUYS;I5M<<6Y6Rlzm|2NWDsu$|kpN5St3b|~1X;L~JrmxA3CP&-f9RI$r+kq&_l
zZ7=VOzG&5%DDG3RU%{!V;>{&S*4IViAq54-h`DBoM-&{Ule<8qWQn=rQ3dU18byxL
z(48ojnJk{9f(ouHxS`;*f-?#((&SZemd5-%@q&V~Q^a$0Xq^+O=JN`|XNbh^Wg(Qj
zq~K5P+iMD5&JiywxT1i1lDO44qa{}rT$o|(g?1gfM7*is7Im6}rwW$Wjk>MizJdn|
z?$Ft!va`hU)5LpR6_tIkNPI|({{-<7_Z8Lib9&fg=GBXh%9jU*rdJ7n#_?4rhy|yM
zFBQB}P~C$V5B^f{T0v<KB0P9Qvs=Me1^+6bJLun0uPXRk!FvTCXf#f%fALo0M>_CZ
ziIhwFS;0RvVQaMbqChSYojD-(SfQ*_`$f}Z0mw{KV5QmNK^6~e3M87L3RG%XSj?&H
z;dTWM+6zsb0#PnjnRRtaC^>Fs0)@fDI%RQ?MpHE~_CHSgSpBTJf^-Gnn18TR+3yOf
z4Qxh01xbIhAK)?eNLwZkGMgO8uw82w>_Ju!@_3NfgKQoobTEpCc#xd~a+vWs8FG1W
zf*%n;F}c|ZWesBu_h8725Xu@*Iw_wAh1jHIeh&&T7i4W2Zag`Gw!$71VdobQU2tMF
zvKVVA*5a%sSWB8U5C2e`!peA1)`O~?Rn7x=&@sM66%Wd@b8|z!l+c(8%#o~u2hBS)
z6Ilr=dJx4N&05LyD|?VQyg3ErjkkPxo<L{3ng=%nW8J~Au^z;Ekm8}+%230Dcn|7$
zP?x&PgPI;=<ka?HLzdWD9vog3Pc2*@9wWwE5<Q>?Tu^dj*4TO;?0b~hh}%QXuO8Gl
zxdB5GYqAFoO+Tn?L}L$VbcHqzBW>zIGY@)EE;ZPL79NZbi0$k_OEbPLLo3!)4}N24
z&Dw@_Y~HN2>vqiTSt;3pdXKr2>Ab4kyNd^1J?LgS1ADfh$nGBWV5g_)(*r2_F!%Lf
zS6Ix654A1S4@Zr$M+1qR0UqO9^eGQcdoa+0K^_dIQ|ZA94_10G)PrFj<1r=+JQ(i5
z2oJ`1FqR!_MA%3M${ocpn)UOg`s9qGZt-9mJL6d=crcNHawjoN_F#(Xe3=<Ioq4wD
z%wU+wI?IEQ?IBc<wmIy~^<W;ud{*-3iD3&(UgW`Ilb6t_v&Jsv<T4MIGeoxtq#~<4
zSna_c4}SMxjR$Kz*kP7h$FP-kJ@uIBZ)Diy!DiFh!cgdw(Y$RQY&ZRFX9IRJ?_%A}
z>bRIdVS8z$(Kz&=d#Z6n`#m_wxd&Luxpgb|A(PuigdJf%YC6X}IL>^+bWSq#Ul?@8
zgR>so_TY{O=R7#?!8MQZ@2U%|1eX~uk}_N}{XadJe!;jwkG3mpUZv)>Po?B_4{p$S
zPBU_Ea@H-@1<|48-1Xodoog?qd2!!^2efE=QO1jh9z62E?t#OD#yQ2u9^*DTi3Xbo
zPnn;we&*cg9=!12CG#r}-Z4<AzdU$t@*5A{nmqDk;CqulFnnbF<iXzzx%YIV;<U$q
zcrRaAzq0<zn&yF(fnsb7bW_{bXNi<_dLVlc=tYp%XtT?M$Spx`j`>zALh-=E?Db&w
z(fZ#!P|bQY2A>Ch2Ho`28OGNM_|8Rsuu|Fo7=E$_c#YaJd6Ai6QZA8_S-c4LBHW8c
zX|=nCh*`bJ=0)$q#&H$fmryU>lHH3OUJ%fhlOY#t2y1TEP%pw5CKeMZERPp?y~Y{I
z=S5LI!2FyfrvO7i)<RwsW+-Cj{^CXAfrN}+E#^gWE=w&b!BCR56l-ZO=wK<UtQY0H
zsO3d%FW^OaFCx7Vyyz5fq1-J86DoK?`nZB9dJz{AcsQ3>(~F8;M0x2lOZ@U8Db|aE
zYO_jQZDrOftW{a7u~uiL3S+$JKi;^*G0t>qFvNS2z%ZdgM8<we6WQtFMOQECcu|+S
z$ctaS=<LP(cuRdR8hFu$W0F``UruVokj&bU0=5QGJ&nCc@q%)jc+rxfDJwb67@D)T
z@M2`Vh0Io*OlAFzwKXeceNTyP%ayldZO__)m3GvT`psk-tJKJ<#f*{A&5NF1^zvfj
zi6-4yd$86kW90VsqOV!1j~5n`?}cRTN8RPc0Cq-uF~*C5%!9lb?8Ok~;jBYhhp|$f
zwD%DvkMv>`^A0|zW0}XBx#MUO@x7u{Y67*&^e1^SnR$xooQStf_hN<@XS_J;#Y`_|
zQMY)ph685vAY95k$BVfP^H}GzQvD0OSjfDHb+PF$VaOD1ocd+V%UM^juJmFR!`4zp
zcdhke9VbtEjoVb$d$Gfdo$PGjHf;1_6DKKnGmYMivZk}mi|x#P`KW2K?Be7>F1wp`
z59{w<>}A-;x}Ws`E0xOKI*{r=#AOeAam1|us29hWkF%aI{h9}YPI--cZ%=zsrG#-H
zwepMSyf{zmuosWKxZuS_FYbDAk48&w@eeN+l@w`5#FxDIlg-PlS6Iov>curLu6uEV
zom-}Vlj@AOPylVWy|}}E&QDD!d7r9!8UKJ=Rpw1;x<9vM$*lXr#K&ekpE5l0g4VYs
z`+}_TmS^mA3=e$i#VeXq8j>{p<;80+DygWf;*FPHfQS+*N~(D0#d|NldGXzg4_<uq
z!s~_V#V0TRrYW$esoRUsUi{<5zh0zy@mrCkFEo-D1kgV{zjBhC$o=`PUgLT;@*NB|
zFC+#s?PeCS(+ioCE;E<jRH&HjF(bEcXrs}7yVm!a4z<MZh0aY%XQc+*Xm8xp@xzO(
zDzd5gkERCy67`cIKt(3ia5A$J1QM8>MMbd5bo)kj=0dDFSaYh##So$*Ttyxgxj7lC
zB8=f!<<N}#KJs!hAM5pYVHs`6&&dL;1zG9FE6OU&T!i%(6-60}u@+}de`;L2TT1=k
z-!IWBN~?%aQAVXpD^Wp3BxjXVQJw*2WQlu4yPDro1r-(97g;l&nHFV6HVe-hlwhIn
zt5sA~RdG(mc@@=ER9Deo#Q+sCDq>YMR*^y@q`erYqOOX1Dr%^RSB*C<#)Sw8Dr%}&
zTU@Bc%}!L2?`LFf6<ZJ1|JY8bqk^u7r!C{^(_d9IRPo6o)K{_TW@rNy{St*F6?C;N
zZOIJ(Wfdmn6B?-?-P62D6BSKWv{TVur4KTp8C9qvRW+_1ZO%>$)|M)oUyY)G$76)w
zRJ5T6Ymu$FNv*}eeC33;Do!>L>Z*~X9aMBw(Ni_<ZE2ZB=%nINE}@%>&MGKL_b+r|
z=*n8Wra-yfRrKI6;uU2DD%eZK?4OanRrFC|p_a!q?Mu@tML4xqB<`o8M1rMO9buq~
zK`J(=*r;N#iXkedtC&HP?rO|X6=PJ4RgJ4^hp8B@VuXreQshV#qiK2$7DjRMYafBk
zX~RTv#;F)jJ)>f>iU}$XOcrR{KIgaGD`O^7@iihPr_foW`yw+5{rd@1RZLTjJ2LW?
z5VoC&n%GyIsbZE2YS>C@zY4nDV~L8TD(0v-6(!77QGjoHou^_x_uc~5g{(9n7cneW
zp~M@%IxeH}@H3Kr{#v18ISq^o!q@c30YSzOVlO8Mt5mF3VV@MehDL~rb<DKK`0~O(
zLPcuNdfMqoks7l}#by;psi`W8{D|D5VwZ~DG>TMgQ?Xse4i!1d3$Y27ohlAx652Hs
zN`wdmbTvCwxQ8ZYbz#4X-&O3T(^OE{r=nSc<@@TGQ$Hgqc|gTwHS!>pRq?olKsVMM
z<{>oJ8+nAX@(2$q3-s@X<J2A%uR;wzp&Iu%pHz{htdTs;{u$P@te0Dh6nR0#MHQb_
z{G;Lz6_;r5v<o_?#vXA;#a$IwRO6v-*Hm0*xXMb8O}nAurixoCZnHyAV9R(88!6>x
zB#G~-c)$U~_f@RF8B9RiL-l{pUVEbAsfyP$W>h>=@tm4x#=lVU(%c;t$#_=VUuJGb
z@~w*ZDn8JZ`TzZoG*wmn&1OVW00q;7=`xCZA(Q%CLtYL4sz_7uO~rQ_PAY6FWECzI
z5}j_E;0cy1MOrvi1U?s?DvITZeUPK^lyxcj);1+}(?C+8(z&2PI5FNsLw8)fmkwld
zZojwIqy$Tk$?>&TH}%mh+nC~~;=Q6qAC1#hq^tOHJu274c-jbl(6Ud9zlQ7@eyRx2
zFuh2NU=5ix3>X_9s3Ay0W)0u6H@>v0X~e{MYD^XlD-$g06EV5NZwKZz$*N&>wNy%$
z{+N_QLrx93HH2!&r6JZ<x>(^BdA`>Q(XgRT^ydlj2gk;TX$aSFIl)3rD!;So(49?#
zde{Fw!IDoyehn2hL}@6Xp`eD68cJy>q@l2eUo;fe@N#l|5e=<dwd-Y%3;f(7-=4T)
z8onQmE3To0hL7pBE*_0LXRBRcR!sD)n5t6k(i$Q(l+yqWWi(I=e~yYTtDy*GeN5^(
zDL(LU{_+|sXn0|-Eog|;jNTqSBZgYlcTLKHC*sQli>P7Cs3t*^>6$83(h#p9K|^H?
zRp<aU#A&Fi;kHt%x`r4H)i~HbDV~Zvn-u?JR!p~9F|Xcrr*kJISZZiAXlr#{n=)u~
z3hk(-hT0kuHF#UKtEFMy>ZWvZ>u9K}p`M0cHB6WgpRUxpI60oWx7D#Y<#lY))OPi$
z|9!R8wM~;XG^7Lfp`;IuG&H6j(C|q^iiRc{j%hfqp{a&u8hUH!qoKKm78<%}=&GS5
zoq|5`sTzLM(25SKVAP_;$)v3{w4noxi|R;2Vq>+i{?TnY*^ae6YX??}*&7>vbAECs
z4V^U*JjxqK+Kp?Ys(Nr(cTV1095AeRR8Qt!tbOC6EE@XKQEQm5p`V8S8m3ZjOiLc1
zVW5U_8pdlFq+u}EGe*Oi-tj{;jAR(fO3pA1!<k30Qme=urD3#&5B&^Yz)JpDuIFch
zWrBu@%#&G*hUT5ba9s_du#ekYOwn++e{}wu7HZ5i>b-tZ(>2V{FjK=U4R@v|&t|Rc
z3n8X$j)uAakF!9-LJbEr9MrH#!(t86)*$MTB^s7$*sbAYzo=!@3Du%jYgnUUIWr|!
zFsx)<#X7cj>{^<DHKI0Z*rZ{dhV`5*?he^N^Jro+0p)I{QKw-So#h^}0dmY%jaL4U
zof@_gXxO3A#ojT4YDAIJR=2MK2lB^mPK=%2C~%L4-!)ifChyhgH}mAiTbmH?)3BdS
zp{9kB)c8Zxo`O*;AD29=;ncwBBdkYRDY@f7i4$~O8eVbODGjGJT+?u!23!5WGaCNT
za7n{iZanqsIX=<nX}YN)7r65;vNPm)%%3zesXy-(zsenTMMH;j`DxenYFbFCHqskh
z<cWr-bkh4q-K1$nbC6B}`*ac?G2GQ~kKw+C2O1tSd;3RIK<8!2q>s5h)Pa?9)On`i
z$l8FHG-bLJtzR(eIjspaUwXvG#7B{KtZ9i|nEaQ9*IWrT<Bdiyk}&$@9qW7csi_}0
zN&dbbv43m$tRdKktUmn1zKsThhA$ev()zC<O~bI7mT{+=j@w}zqm^UU98aM6V%Ol%
zplI-DaB7gbei!S=#mQ~^N8b<0OJl~(MW{Vq4XTF!Xc?!;I4nV<rC@ook9qR(1Y$os
zx`uRG&$(~EYxuz?<<giW?cO^sz=!^yQn$ZM?Xxp~CZDks(3aVUK;|GHZf<Xpg*n&P
z{FIf=XN=^$KIHQuyAL^h5VkbQ=|gTGLVd{PLx>Na;R&f%JC_`hKoI7m@65(T3-{4W
zR8tA^aBY@3#u>@)LjfON%}V~ohk`y7^5L&z2}OKJ9-my;hbe0VD26sV-fHpTv-h+p
z>O(Ofiu=&iZ`65nTjtC2jCxA>P}&FhjH}$I@Gsc(bv?p|GE_;87G+rp%K41n;R(uf
zWCd0#5=lp4vgkua<|xyN_MsAUW!5UJRavXCrd~FlV;}27oDWN)$}f#7UxRwdhn}J3
zdxe%y@S&y;`+wrVPt@|EwhxWJA>|tqeW>HZWgS;^)b*jB56ApC?#Hh_)c0YgAG7>u
z;4?06f8oPRACjnBd}v6EzYpVmm_YUTkm5sUAG-L^g!;sXc0RP{BF%hg%Rm>0H}`?G
z1t(jwwqi~7;Wq}_MQb10nA~brz|7;ZWYX5bhfY4Mcy3(u-qDAn_2LL9*)+XTSB~%I
zLw9QVlIV>19zOJ=5k-fyI;1Bx?@{hv9M;>1J`5JtzN~GuMpSA5Gr>SQJLilY4Kkg<
zJ`7<V>ccP}hMWFqA4Zrw(uYyZbTdUp8^&;QtPk0`2aNNf+!4c{=))u**88x52E#sa
zGN}(!IWlQ|{4^h?`!LUk`992`#!qW;Y`-{{&H@L_Vx>xE`!L7k<iAVCFEws6S-?)E
z1~r%Xu#kBX>tZwVcFwFzO<v~1a_Ub`uJmEm|MkBFuV!Aux|VgFnY-?)xY37AK0IJ&
zvkzN**i944hpl{=+gM9a$W4vhZkF2N!%pU1rZb>P1O@!=!*L%@u({WVeGL13IKXg_
z&N9OxR*FB&aKwjycL!1OnCaI$9(&S<Q=Gi%!)b=|K3rfp<HK2obFA}fTBs~-7k#+G
z&L6DgT=L;h=F6-@hlG)N)y%!daNUO+rbGQn0k=4LoAr(lcg@^;4EKGYVN78UeR$-<
zV>W+gN)6d(42CD1eCoq9v($6$K+1aM``@o3VSfDO!)qVj`0&<;EPlg(=fis{;)C0V
z4?cYK;VX5E4?pS)pM3aC%f1hPbCR4H14YtRWdg&_#C-9AG<1iU=7ZG-yAKXJqPl|3
z2Z^AqP_bX~s!~E@IkG@*VOkTx>4Qvt`!lj!oM93S8X+jOwECd?knThE8i8IPR39`t
zU)hBmtMgoVk>BS-gOxFUS{W`xt?4RU=`4;KDt`0fyAMBo2=JrXu9zP_{6~|zk&ro`
z(73gDqJ;sO{K)J_ARVJ0^}a>cuUzqcDWQBXu~ejm8ndIOrDH`Qn0p|rAKCoK?ne$k
za`_SBN3BW1gM30xKZH;5$x7rUv0`pNCOacT{W#%|96m~{yeX#BWMRR<m~cPxa3y*D
z=;=o<Kl1sJ-;V-*6!as`j~ady@?%>2+$H=d=|^Edium!1ABT$zMOjaT2*kyhi?dRa
z9!%kFD3tP}ydM?(D9yWwV5L)5hM}w<<rrZ4r78tRGFS4WGK0V>vR3pXiXobn>KWBK
zqzZFY*5<1t$fT{BAJy53F(YFcO6JHK??-~4KB~}+otl2s_M=o!<I<*De$dVAJ#z|)
ze$?@!u30vTp&oq-m`;8A6fn8w;h<!b8~V}6kH&tam`)RhfHTGq4y4;p{O{S<&HZTM
zM@!Ca<wtuzI{1<5$8UbLX0wf1!`Ygaw#@BJCtKCPjwW|y=;TLdhAyVxtzBR@=I*RL
zOn<XCxHt0zKPLLohuPvsUqAYpF~j}n@5ca64rCqV|KGzO2AeTM{1|HTFouc`Lq;%+
z^kbACqs`p$3}gHl%P`LLjc0s0jo%3;QCFNZepj4EL)4EcG<xd@^oz%%aAB$+q=Qby
zJpK?qoeR#OAstzfe!QCP#~eTA`;Ffi=hDgg96Y*TsPmdp&peK#mq#z)+=X;n{aEbB
z5<hnNvD=TOek}82vmaah_#7C!+>ecZY@+EF5WB*Um40;UlCX+(HR~GIwXEw{DPX-H
z8%#ctIkx$#c<Z>P-G9cE>fdauAKU!c?#B*4Lf>|ys~XgxSh|>`<cQ=Bfw4RNSTVR6
zy^di-?Swsk{O-pAKMwk_*N?Z$<M;Wo-)~$z@TjKc$;a9&SI5)aCDwImc8F${A4mK+
zO0BgtqgPrK`WcfN+2qQu#AEf1YaaS-j6LDUNk6LSsH)?XAE*5Y(2+^U89&bY@xhOe
zew_2;ydMwzc<9FkKQ8)l%a7ZBtlcmE;m2h^t}tI>{gZ~}&jyrr)sJg_<7>|iKfWIk
zuhW#-6;D80+2bKMIjixd78G#DkGr&bj4?j-KHn4XaTYE6|JJnJr%~}vj4Yf)S&!I%
z>c?YhGk+O);>VhLQItj7Gg`#<iO)Ia1?x-JSG4{!yk>pFO7U+Q-udy~biTbZK2tvV
z;b7-)I?;aoL(}BG_|=bp{YYw1^NSxdt{7pouQcAH<cF0H+{RjFK~KuHb5?@}VHD={
zL#7J-aQmT}`%?Vy_)%hhv@q5<YC2ditraiDs6(+D#}qys@AJcN#_J5}eta{X?+icu
z_>bYI=`VZMD6@`09Yu8fq9aI079II@6wnc@Bdd;Z9eH#-+1iG#8OWw1yN(<>HYK)b
z*jUW1Bd3mBIzlMsmuT7o?-lZPs!u@wcL>!{adw+9-MIOSU~}fAygH_Ri_%l0e$=$&
zqg~Xpc&a9Sj1FzFE{Oi?QBX%A9nrNcg>`go)q=M1HCq<dQA|gqPFF~xxQ-G!O6!Qw
zku)u#q>j{TNi;W0>39_oL)*tE9m?n^O9QftFf&ptr{mAf(W@GY6&RqSJhi`HBAM>K
ziLQ%*lqFIlsU`b^D(i^SjSEibO(oGZyq85)tJoWZx>nLb+PIcQ-I*|;mZh4G>N;X|
z#OXLxFDgdI#$JIR%S6rW8dYd-R1F>RI)>>Ot|LK5O&zVMkveMWsI8*`HCsobjygI<
z?ux2UHP?)(tJ723Vt&<8kK*ky<owexkn~H#z?_W&DJ)qBaf*&6IvVO|q=Nz)>lkg1
zsk|+SA~Uq9j^<RAj%FO6QAvh=ZW!2-_vLOF_?wQ_I(q2nsiTdKwmRDD=)k!e@3$S-
zPt|tR(TPrOqrh%DsD{qm&aNEU#f-^lEj6z@`xMqoM{gbdbqvtahl}*%;ua3*%er@I
z9x6yjO@}a$ok2PV(^zU0Sbz_Ch>oG`XY>G>6hDGGO~(u!Gj)uj!`CsHW5(zht7C$W
ziCn`t?#A()MeU(3C8dpOm}K@a_1F|0Q)x8viI~nl9R<bEMlegqY#k?boYXN#$6Osp
zbR5+&Pse;6J9O;Su|UT{-pdBoMXW1yEM}m3mgrb&@-l|yR6{LG#$HzHSjFaQ)-`72
zS{>_5UQaP*{6?B|roWkCi;k@f+f08uL&kX6rDGo_ceCzc{hf6$D>Wlm_0at$AJB1-
z`H<-xrg_0VPp9b^o5$(Arw3C(>Qx$Ar*xdwaZ$$~wEpWjtJ5W^iRU<SRCl8@DTX4?
z>$t#Kl$%j7qX#Z=<e#h*c~!?XoqpZLr*vG`af4<`x^XAwO&zy%_;u(yZtJ*1ZJ-gZ
z8~1|U)$u^bLml^Y+-GOZ6602{9EkysbUfDaR>wP9yL3F&@m$9X9nWZ4<Gac7HVdTp
z>QXS>ZuTO%=}THeIO{LgH#%N3?5$<I9+$R}J@Qhu6?28Y*YSbcNk_CK;FFHO>DYe?
z=d;DqZC{^t^v%?O>ZFbC6#J^<Uz+%}1H3xYbXaxBI$Szz+*FEj=#X@Lt!lBe>H#7#
z`A!a)J1e)FL17K$HwaU%hm(_L=O$KlXq==L`e=3}Mx9H_ldj_%H9j3#)A3!$4_Xh?
zkvZM?k>o!eKXnA8gC6`&$sGJH#fjsChyytwC>>cC$jsOx3RI-9Z0X3Jj)-)WNjLr=
z%E4M79XZpHD;*)}$eoUSY>t_2{BJjuIgB-&mCQU0dDG#UAGof7@qINvJC|x%3NjQ*
zM`4B{tQl4P!d#TK7;ACX609ZDQHr57E7key_mr~fD3^|!>8O<supiG_KHd0&K`|9L
z`G2VT4k#&#@9XXf-P5x!IZ2Qx@47QPOIT(X78uel3%g`kf+CrbEK#yVL2}NZAVCxm
z1VIErL4u-WBq*Rrkf5kYn)tnW^J~xlJEzV)w{E?9_3Bl1ZJ6$!qyV`B<mPOceN%;a
z1XBW3MeM5vsG5-K0ph|Q+Ae4o_ftbGy@F{0N*BWZYX<24Z?RVrWdtZb)4mmz4@&8*
z@Z9T)$R6qisD6MN1gK$vmIP>NfEooTGeB<zXk>u00@OG_T?5oDK-mFm5}@`0>JXr&
z0m=zb>j1S0P;P+E_V+apP>TT7O{~`}Kwo_BOYEJIuq3r*fLaCU%3;r@*&cq5iOI)<
zGusB}S;X_!6>naEKG@%|U4S;NYF=?!YGZ$9nVM;nmZWwJ&}#we9H34CdNn}bT+bUb
zIrHqY)B+<iCyZ~wZeI^j7je5|Nank~lm>%+-2>DkK>Y&LKR`VL)GI*#0KLIk9qeO+
zGLtiV2k2<6G$wrlv|>T(;d8C~3eo4Kc7HGJn}wMJ0yHo{Ljp83K!XDGW`G9s-1qt3
z-tSwrJT-NG>Q~bm6(5(Gzfb0{01Xe&hye8+kaBZnGse6--lt1)kBrP@J}N+?12iK*
zGXpdxKw|?mF+h_7G%i5n12jPfUAo4%#hdnafPU%WDLE>WJvV;bwDIiB$pM-Yps4|R
zhnt4_8ZO9vGOO*cb^Oz~S|w|GfZk<;R?Qx)YIe}$+waO@Jpb4;D?qb3=W|jQ1!zuy
z<_2hffEEO(P<mSV#kunW^te=q4;Hp4vm$jN$57Mz`W3IXD)-h?@2I(%ivyHe(|a<#
zS-6gW8E=UI9p;2{kO5j5ppOFdae!6@Xf>}?fYt|SO@Q7D(E9;e%R?wB4b*ziTef=C
zFLPah3g@r4VqoUe+*VA=jLv+vFn0rAu#0m)4A4eiV%}6!Ge^(M<Q!i1_%;V9MM>#B
z(C0qq-4dX!0s1^ZdjqsBK%WF?SAaeX&~_f~WUU<m`ZPd`&v?((^!BNlwv#t%ZnNUu
zd^aK<uI>&H>w9=}-u9|PGui%6R}RnmivaBl(18FQ4AA}nmGEbNDG6cYDZ?`ZiS=#`
z>ikuJz77ySC&*i?RxNMKk(q}ARB(1CKNVOhvEC8hFai28Ko<jaEI`KtbTUAv0`zTw
zz6;Rzob!dLCnBCd=f?0vfOalOwOsY~c-{9yfLQtMp7%7bmoMckM;M?p!uu4A?Z)#Q
z+nc@%oR+bfybqNDK7LS<`K16|4$w~l`kD83fLh+p_^VZ`F5_BkTiKlXRlXPp`9{=8
zyUsE5Iv(%FrC41*E3M!6-3ZWce9{Ie9N?diw1#i&<jX%mw}kU0e_O~M!QTUPR|uO8
zs;E2&&>sN`@VU|2!{tvQ&jR$2&zS)I%_k4vHyxmV1N2XTc2{+CDLf;$K!$rpU3Z4d
z{Ww53)}=q;OQw$dDJLz>&7?*h_j5jrQe%XD2Kk_<>u2LgfTDaV2B}Vvlpv`=st}}#
zL9ztN8l=P^<qO6>2(Sf750WED%loF-1vSC0J<|u&jeR;}1j!kUeI}B?nCh7-AJ)7e
z3V)!MKS%|FR4hovgH$j`g+%B7<Tst66b{nTy8a?Tn#}R=rvOrA((?^Z2{9`v0kG#6
zgS4oZhe@d*l@3xFX??gd_Nfq;mx5GQlyZXQ1zG3MQz`}N<selFQq>?;4iW{)Ej}SQ
zcZ=thARV93m}5Tqh9@Z)`_#`Bq<V`RGvP>*gY?P7#-1Rhn2|W9Hm(+=>OrazByW&X
z&9Of3^}kQ4xK~<`(t}i!n^Ha7exjL@5Y}snlMF%jQ<sO9Z^3BHp8^Q4Cs<#wfnY<y
zMuKdd8Kf+e=T7smk}cIHf{TtTxj||cq?KV>6{hAvY7wLlL$o<WErZmGQxT%dA!;3@
zHbMG0NLzx`Hc0J)G&M-?1Su~_?Ss@WNd1G<AxI^LrMw=bE<x%Tq)tJ;zs2*a;A?{0
z>-t&g9Hc{a{ku;!?;50TLE?9G^a)aTA<RcisKwYLNIiozv!17ysrMG*7knc~y<0b9
zv%WzZGugAWRU%t9%=Qcj((oXS2-3hH4GPkmL4MgL4GR)C4GGekv#)U(8l=A_rNntk
zsiyZ*G8VP;ycML8L7K!Hrln_8kiKk~J2pt;coy$^M@w}~kY>&F_Hbv64^nIX7$`^+
zguMD7qgFM~I(No{5h)XcbaGXCzh<7v;)h*L;j5#2<06w%rUhv_2N0z9g7hw@B1nsa
zv?Lh2Wo2fN<^*Xj`<Lo$!S&@*xM^OH<_BpZdt*Nh+zWUsX2xz`nb;uqwT4`*J#37=
zOl4`1mhlP(X%+8^Ol5hHR&ZbQ{uU<uZGds)drMaHaH6~)q_siXBqOd9WN+((^nvjB
zT`1gZLy$I_t+yYy|4@S29Hftg@Nir>ysbgn7NkFd^e6BCAZ-uQw?X<YNIQb`Dd#Xq
z2ZFRSNV|gcd64!7>9Zj14$_{Wd^O>0Pn{*1{EVcnYYgWt%l#rq`+~GzTEAJC%0G;P
zXT4WPw^(;8<Jk<`!61DVq;G<BBuHNess22VKF@Y2NTYA_KSndy!(q;qT941_qd}@Y
zBJmh+b>5|86S;}Y#G#obdSxCM()>h_z7Nu+AYBg954?OqIuoR`K{^$r9s@GB4Dp?g
zlaZPHqxO|~)^j|sTHXsm`jHp3zwbQn#$~Zb`vYSVKdb4z7^HQ}QnRP0uyQ3xKLzP#
zkZ$o5f^;=V*Msy6uS?CeYaIE)R3@)c4rA{$@2^3+Ax(=sK30Ac&V;MCgLEgzw~*02
zKIqoOT7M5xpmGiue*B!P{HS~T!M^*_<$)m2`XO&}K7K=Fgy`=e{lf=!h;Ox`M|`HW
z_5=j~6?`oCM39@F2I-mb=cY1qW$a;-V30zl5*88>jPg%`P|PP6{%%%lh^Ad?&D<U$
zTPXH~2tP;?Z`H(157FhiepZ|zN(fQD5akci<lZTN*Y&@^Ri8gm@KK}&^8(VPgkWW#
zzo3vpAu24Sh+t7cc34bEalxt6^1Udeq+qEKl@?MaMCFCNBv@9E`<4sQe{og_QAJa)
zB&5|Pg+hc7^$*d25WNzjq!8tWsC|fBA##T(BSf`BlpG>Yh-&b}<$wDrA*v?4im6l$
zkv%c?rcf@`LzHUj)$($^AxaBTx+t|wy`~Tv9DBv|@I{GrLR2?IIU&jokuOB`LewZk
znIWnlq6Q&qX!iQO-Ro>WWl`)O_>cMSQ+{|hMA;!~A_k3lreD@#k;`8@^46}mHVskA
zYq5_NxHRK4-}KX5NDE$_PXB9dB}!|-HX&*&q@5r;;qDzm)G<W8gm)6`9HQ4l{6G2s
z<>a*xEgT+u{J)E-bPrKi;oVGS5xIH@?`bM?mw9`e+#jMhLewWjeMRYK>hZ7p9Q;n(
zfgu_cqGcgk9-=oxG&n?4LNql*Lqaq(L}NlUHbldCz2?>$yRFe%LWT>D;Pm?Ztd9&)
zJD;D+s1S_~(cEz<1Eo4n%vRn{n-rq)A$ps)y3fzm2_bsl=btF}&cH^@xy$4bUD(iL
zuh0Juo3WD+%?r_V>GE!fW^f+LW@R__&g7+O?48ZAy;F;ao)x0bo7=H6M`B<<>_6>v
zI+OV!TEM+Rv`9jF;PWpI(UK4?m8iHcTV~IybxuP1_EGB<l9^Rzepd3XUKab%VYMi0
z1m6>U-?Uj9qIJSQ5L|ES8-#2W+$5OY*7{M1J`PdwFqH_${wJ^{MB762Nr<+FV%6kl
zwTeBfwLL^TLgWlnLYO`c(asQ^=d^@qSBO3f(dQxB8=~Djg_53GI}$HGZ@NeL7Y(hf
zaQPxcXZVt-=ie8i{d}zr%J?!w2SfA~cWh`q5TaY%JIq<vl`X#x(a{hclkSHE4-0-1
zqTgGk9N`#Rr?A;^5t)1^<l7LP+ics@sVFNaLiD|eKM0-_JSBKqaNdWV*o=cY%e^Ej
z=B)e}qKhHAAEE~#y2OWDh;D{r-?7y(zx#@i8zK5BL_dd!>iPK*p{pUf7NX~;v#y8e
z7a`1#eAtQcSE<&o=jZOfg=qfJTqd_dbX)w~3DMmU-Q(fhZGIQbcdDK5Tt>Hges4mn
zvGx3agy_!@g+ml!`w;!b-a-`M^FKs&zHjm<ME{29pAeNfnKi4Zn?0|zzdE39%F=rN
z$02$Wiak`t<*ATof*cjrHwlI)#OpX(p=itP_54Tc`4hkG8V!*WCVQB)Fsb3#e63-!
zg~<}88}<C1hUB`pX6>vL8)f8)tmY-$dYEdg?qG!JpV1ji98#Tm!}nEshiE<j_xoHg
zgz4}pCD`4Q7^Zw-${(fzVS0CCr@~<>7$!F0a=A;BLScHbzMmiYEORNNNI3TFXHh{W
z#llpjzCXLZ|HUxh-b`<WX=Ip6g{gFya>LXtOl89KQkc@iR5MIv!&Hv#!&Eg)<-=4V
zOcW-B>Gk^lieY*=OmpTp8(H69iJjE<-$`|IwQ`si)%P=bB~1KxkSk2?aO`iTB*9rJ
z?&L5Hn%+FY=k^F;n-sBR!eX^BU23SL^2EbbUG!4fiCgRYy~5Kt;Oeoz#eRCbe6`kX
zkJb0rVm(ZmVaf_q?J(5|Q@t?N=bTq_*A3G)ulqrLzt8l)bAt6|PTTwq{0*duTN{R{
zQJ8x4Eb40D=W63HWrwM$jM5}b2Rv>L_`|Hiz1(i*IpUW82ILr;hp9!FdWXp$rj}u9
z#W@L6moT*sQ=2e#lo8v8shyAxd}+Uzp2uS~@V5^Wdt)bDxXN?s*1+E>Os|UNYhmgv
zgl)Kq%Y}wY*D#H5;O`lx_nWuv#!FMf-JKo!+?>W9Qf0GVVg9(y|4y=-{}g>AOnt&M
zI7~ytRo^i657PkQ{REr0ZaXkcyBhd;B5%rM2ZgD4dThAUA`X?s8WyJEV*j{-zp2~J
zA&m%AVnhEXx4TtCWmK3(hiP7z=7(uan8t=_QkW)(X&grzrnkfV#cgexQ1Zb~eO#uG
ziIoXqni%GHD!M;0k{PFjX)14_Fm1MGyc4ErypzK;BTP>Q)oS={#&q6q9h1BK<zpOv
zC~sz%X7iTok~}L+4<355$JvgQPM%gcnUyxxQs##F{q`x9j<#69kylMwo0z;bObdA{
z@*aLMV=)I-DR~Lww5+qY+-VQp4_;1Q7N+H4TEUsA)#&GZ8NZcGK5;0W`RXvO2~#9O
z(FncAIp@qos6>R;hG`vd&M<$Q0DTaq^<g>|jy++-WdmO$P2C?$bt6Z@M?FtUsvk*H
zjpjwzY<=;<Y{q3vn6~l`4AUoJIyIzGM=fP<nD#dEY?tZ|!B4}qQ^+pC&ji_ccbN8=
z{BvIPk{%Y>=NB^2zA)_%)0e^zgy~?IzTykEp`YK4d8%)hufz0Bn68ZV9^%uWk>@Z6
zxw}?<X>GSA?Fgq%I<mJ;4gJR@{%^zdU6@XoGrjYh#uNEIOh1I_B!>~E)6(UF;2FX5
zf@cNK2@Y%MpWV<OpZkwtx+o%7y~ny<3DZwu3Wh1fhfHhF&tbaH>l>!4QoR<Y>q34J
zyd9=rg|OufA-{#`rjT2LnV0_eTl5{N{w{boO!tIvuR*P>e}w5zsXpTa+0_3I(_g~J
zt*gjpT>g>jBf)=p(+YVa_*8Jun%G#+g)<3+X~*$=T*9IxMq<;6n61$;DG^d5WD#8x
zv<kABO^98Pe<x=}7w(9VVcIx_BnZABc;%Zm`Gn+;P=N>)jQsCO^TI+332v;G#omfU
zsHj*L6J&)Sw0|)|B_lK>LPH}|Dng|rlpCRD5h@d*mm*XxLe(QwHbUhh<cg3xLggb=
zArkvh@=Am%3i+X(m8)DTN%iFjRTe^mtRq4jO`9YUx8C+7N5~VQDyB_VmD(vLzxhg`
zs>099_dcgas78cpN2rd7-U!tck|vlgc;PG8gD+xV5?xEG8G@f5EL1l_z6dplP{Rn-
z6OnD|3n_Co-`#CW?ip7jspgoinL@Gz8%HSH)SE=8smb5ZQ&#M8S?0$^Y#yPu5o#Bq
z77=P0p;lruj=xquLal}Kca*c)R(BJ|ya=_AkUv6iM5u%5t&@<B5#p~AXB#fBM(DK&
zb&k;M($phD&$Z+(rhQjlQ{mkOr<Exf@6|Ixy-b_lLX3uqeN5#|A$<k=MX0~24~Wn}
z;e!O9NwkA`hsZa!&#zHvScHa0XikLYMrcHY-ipwK2u);?m@+a#qa!pXLZc$IDKX`E
z9q))b-j5F`Wt+RlMrd4w#z$z&LeIQmwznfRvRNYYB1X#EhW<$rnjE2-5eoj=vSz6L
zlnA{Op=lAC8X-1dWkn13^a#Bhp&60b>DsPZenu|rq;g{HiwS1&HVC!nGF!-?V%B*P
znjfJbBXluB3nH{ILZ3uvJFmiGWfAYm?e1+6S{$Jz5n39FeWLWfAm5?7EJDkLv$!Hc
zD}}EzmDLeiWAgWS|DTQBTe4P^brJeN$odFvHf=WWZa4WRAs-4}>S6sz$j5?P1h)#Z
zL%xA_U%lEb&!z8((5Dgpk2-xHp`FsY-?Z5kq0fZx7ThEFx!_*GF9i1qvd{Q!nO{ce
zfG7te^i_nuHd~JhITWG8rt(dMj+mU|VGqZodOSkk3i-}#<+*U{50YCZTuw&ll-YVZ
zLT7j{Md+L;7X;6nt(VrsZbhEeDF3AhU5?PB2>lzOD-rrBLU(wA+uhyk=l?lEw<58d
zhp(Ewu0`m&@LvRfjl^yxVm~*e`dfr<3W<l!c$;^)J(uqn`dxIkyc?l=5xOtc2Z9eH
z^oNi?1>@=ZOZeY{-0L498@6?R9HA$?T_Y5V&{Gkg@l_e2-}hTN&VXspPS$R$#T~<<
zOk7fq`LUTP9mDyRD5+7Z9;MVMS)yc(Qi&+N7$sYj>`}@WrTkISqNGP-FY&ngS{|cA
z_zQxDpfgGdLOyHKk`1^dMrqZdHhC>#)dEp|$0HRMgMxzm&DX3KiBeIi@{8-^y^2Y-
zxS*?Y{*qBD6(v_OPn9T@j#4D24Wjf)l*&Zur6`q+Qn@I7Ij|A`-CaIP^Q(H;vZ9a*
z9DGU|E0v@>>n{tb93>LctF+EylJKP;rg@k|X`wY`R2z>wO36{m$ZOA>F(pcD(5!z;
z#;Q?bv09W~IMJ|vPum+W7OoK`Z<J<4X=aqtqLdz`yePGgQq3sUic)Trnz1WRrhKN;
zSV(QbI#H@C#3xu!u)ZK0HxSY=N{vh<Q%F{n`m9cgd&`belPEQf(!PfNxRN6_duq6w
zo4r~^sfEc~M(NrWg)Li0sf~zjqtwo9<)-?*igIg*D0Pfd&nWeZ^8I-9YLvQ1sYjHm
zyybn3b#G?ZD0Pm~>zwCto;wwkE>U_X&&y@g_%_|5wCzCV!Q{*#j~Xpok+fk;(z)Rt
zCj8HY-ccG5rGZh}TR7Ptjs1J!4Z%KweWTP*NPj_Y9pBnIC`xZeX?m32<vj^6i-V&y
zBuYc0bht+B`+4E<4io#~Q5qrSttgF)(s<z`1xE>vj?x$*+-q!<=9Eij^0ui=j?#v)
zwh6p;&)gHEG)eTWy%n~ZV%kjQX_|amlzw|D=HaxbvvW^ckK7c-S)9pxNsFVjBucY+
zh$zh!Wq}|!&Et%joImelWnq*SnM$`q<ycu7rImc)h`20D%gxpmQR3SM*kH9N@0<D>
zA@4;g?vM@EMroah9|*2DEjL7Iqsce%M1*fPm5+q*5L<Z#qjcGUD-L`TrR`BFVnb0I
zc0}pZC{0r_UB%8Q?TS*OihL?Qi}F3{{24SBD%ca{8(?BL>b$LBZ<M}>Qh5ax6zmi6
za+IzJ+0WN3U*J(X7^SbGbRtUMN9pS*9g5Po62@UMV?RfPd?Q$TVeFOHN27GiY&|aI
z@<Qc1-q?#`t&Bg2cs5Gsgq##S73H_l#scGVMhN#}eqQ(`!3%;v3SJZ(B{n}URDO!m
z&wQRJ&=g$dv7+=aN`HyX^(fsFQgos6OO$?%(hc4lQMxJOohaQB!eiYQQbv5n@pn<~
z3UcK4qx8V!f3Sako~T38pM2Iym%pR*Pn4cT>3NhMMd{xtJr!fNd25mKSojlD$&@af
zu|Sl9B3c!&Wk`5bFwDoPkShCQsZhj#i7LdRfK$XCY^Kh6&=oio6i`r5fuX=DP5Bfg
zELIW}#N%WSFNmI~VEw+BXP!uY1@VvyDJU$hB@`49Qe1G}LZzsJV!}D?Jnm|l!ix$@
zDk!CZm9o;x4oeFuBlwaaC%>EmKD)TJgA7_xL0ttt1(g)Mte~<263gleAjGX8S;#9A
zf06>10=}ZZUL1>=i$_6<f-2@Ls)})5#aL@K;XEkwR0TB@ctxoxn5KYNgqzaMS=UmK
zp`doWRdy-2){!dDtDb`T3c4xiuAqT}h6?f&w3pUK3bGY6VLwvM;#suzG!`C@g#9#?
zYAeAU1-U|+2{spOA;^|3g)DxYpLuKHZ3Np2wiD!q=%ApZg4YyumNo4p`l|{?%G`M!
z`EACpi^zW1zKa6>J-@30{=AG8PD>93JrxX8Fi1f!)3UFE-n>TllKi5)p`ectw&x||
zKl-?DKT-M%4p0zZ$~P4ZRxn0Hwi%*egz%vXh6x!imOOg=5O|A2RWQo5XK}Rf|Murt
z1>?-t@j@1Tp-fOPQ8vIN1&eNLQx!~Bu;8w1iXfA#4gK#Zn5JO50)8cFqiUXah44E<
zXDHxTqtE2|7W2#!WHMX99Fxx#GEZ>6V5xGY7AaV)AfO<qV2OgI3U>1ms$iLd<*f5#
zRti=qSgBy6f=vomDR@%Z_r8L)3RWvvqu@O;%iqX<txnF9hJNm{PQeEvu2+!1n2+B8
z&*Ii-5oeu@4GJQCdbDlf`%uAV1>4wRC6Cf4<s$`K6l_)SW}S?Wd9ryvCXdIqZ<?ro
zd!}o#i(Nlauw6mF;=WVGeM<)Q*ul{b>Jjg|Q^76;>}1!J+|LxaOZm1}@_f#Rzk(AA
zzE|)CAN~ryQt-8c{R+NR@OP2)g9^%5_8pKo@1aP+Ct1IC_x!Q88Na3Wkb=VszLTbJ
z6jW^F|5ibrMzN_KQE*iBV}i#8S#Ml3@6|^B;YS)(s+n`-X2uV^77A`j>nR1Ng<Mf^
zM!}&Ea?eV&#qNyfMSa}&oPzTTE-3iX^ma+XMd5?*<g0!?-(}&(9~v9~q@a3v-_QIb
zK*2TB{uc$;g`YT`k8OTca6_uU3EmWJ{YH6iYWX1FZ3TA}{I1}xg1<Nw?5B+Ho`Q!8
z%9V`8b6>#&>GFr*pMqm$`fSNIvyXKf+qcL49=?ARJW{}f%fAX9oBWB8rwX2#%5&Zc
znK^70;?qq2zvomD=FK40r~-=$s~T%k1XUG_8^!(`W>ayxtFL^vS5sk^CKlt0uEL>$
zo46Q4zWvdgpo0JY&EDVg1tB-iDEU<sP%%iwn<@&bD5RpPiX1g|P!v{CT16QZZC}nQ
zqN1pZVk(MDwWJEZp^o(uDqa+Y`Ls7OOQ|R^*f+RPI#*v(QC3B&iW(})aR4fkRJc@3
zG`#0VW$rrXt)QZ!ijN!lxl~f|vdJq8AwdYfqGElI3^x1zo;NSu>*n8TGQ7zuJRHW0
zIVmct38^B;N>vqGe)2NmQeDOJ!s$%BD$-OmP|;9Dx{8`A>Zquzg738pHE&T%MTUw}
zPn+_@Ypa+$EVJr)U*q#ld@8cLWxm@zv%ZQVy)x<ve$}ekmgJl<|2A#J-Pu4z6BSu1
zk_TsgHb1km3cl6w@r2AT3;3!c$Mt6OngcS+Jj|&uy-}`;W-4A+(M83fM*ik1TBv9#
z*<Sm(FFDKFN=17W9aOYd5$xxyI>^^X1!G&mc7k~-E;aJA$eB#->gmYqJ|T85M<*4p
zimTTII}0|Rp>R`I72Q<yQqfyQcNGtddb+o_GWHPOQ!p<2ReZ6!Sw9uK!#=B0?+q1w
zc<(9o`tnYT`tC$yVt*B@S2r6N^$k!lP&ik6jBn9<VC)m;!77HR7^-5JinmovP%&J^
z2o+;h?BC$2{aL%WRE$yay(_<(mp)R(C>5hstn23ayOEy_?zr+ZPfYiXQ!!qJmg!IJ
z)`E4mpC}%tsF<o^l5o~1^X~Qfm{c8*^^S^A+W&aTO#izoW~hj$h^m;$tKT7MmWtUb
z4)2Wpc%8$mtl|VmqGFzk`6{-n*r8&9iiIlHsCZAsBEHa6tWdF%=kk$ziHa-jJj+xp
zRnc*`oBu`7XJ#SKHTQBAxg+xBZAq)V$Gu9LR`a~9-qqXPJ@&eX?r^`aVy%jeDmL*<
z`6|2QUaw*U553*}0dKtT-E7%^mz#aEx72;^4^?dDozL4?MgPn0MqAS=>~ep^sow5x
za>AXH<=e`?<ey33#+TSdg~MR}i73HO+@JC<|0=#x@wJLw{L8<J&sFSI(Ya^E-Mp`=
z=ikE@&NcVHJKf)WoW^4{`oaALCsW0j9MTT=K91^8kwUXl_^a0H%}M!lZpr}_Y<y4!
z=A<0@CgTt%P&|CA;u{r5R2)~qzd%mi?k;oLecDpssET7M{s~v$r?Yc5*Q)(<Y+m1~
zIM7q!96ox#@DD0Zs`y>ST@|NzU-3p&aaF|`6=zjk<|L~)#}|=`A5~mb@xw*;1r@)%
zT#!lA14Vc&_H#)^;D<C$PUKP=SGjcRsr<ytw5bqt$MVF>2Z~%%aYMy#Dz0;P6~FS4
zxVaW5lUq4y4L)+;RB=ni9p0`x+*9&0ZmZx$tdyCbS2^`mY#}~6;J&BgzKX{xo~U@B
z;t!r0E4Q=~Eo%SCc|Kg^Z`m6UISIUKW30VS#8SF<kNfr>H?Phk&K{SmZoUhh@u`Yu
zd};H#Y<Dlc;U2Wd{hT-O9yjlS0I&5fcblF{NVZwA9qzCSetMmQQ7lj`m}JFdD=ZdR
zEjVJqQ44Gq*ez&nK^qG+3v>(WSWwpjhXsZOWC7o{>a-xif?^gFm+A`^<g*~Z@I(vv
z&q*!?q*~B|LKg5}sqqrO<+ZRh6|tZw4=4AoaBB$*UbLXHG?lcVlm%riC}%-w3(AQ2
zlK6=`k9%VtcUazn3KmqfppuNv;>*${Zot(zVT1**Sde6a%Yrnqaa)jV_F}he?6Dw4
z0;^&{H4CbXSyi!NgH$0kEbt2XF9zGa*xkJ87Sxo!wIo{h#wEjo+TtYc-)BKR3tEU$
zUyyBbEodOTp<p8mGA+omps@wn7BrEu;@;Q^5871Ba?DX!;nGZoW`pLYeM>QGB^Zye
ztp)8YSj~zBc^0&{V1fk`rDF#Rx?9l0f{x~rb+X`93tp4%oh|5ML01c27w0@mJd$qG
z8V`UY>}f$S3;M8)1-&isi>o(Ghit&T;@D3*G9PI{e+vd!Fp$kG7-qq63*NL~umwXb
z7;5^DkI44%u^3qyVZmEs5O*8*Jj#O67L2iAtOesOcv}p{{U1MZGsgeOBnzfn@U8`u
zEtn$F##^Ua@Qwx3%=qJ@%n(<zESN21rXV-Xv0$zRi=;Zwg89;m)6T9Ih`3NN9(mmV
zVhfg7u+)NO7A&`5r3I@@Z)~taQq3N?OWdBxdltNJ!5#}fw_vRpZ?s^OkaZS(AY{GZ
z2ElmDA6l?ks=EX~vS5c0cKETZ{uT?iin2}c6T$6*aSxvg-zmt!#Kq4n*!_Q$y%v07
z!Iu^suwb9)`~OdCyvsogzOvxZ|Iyjo*ODs^=CG-MW9Iyr1;_c4w4#a?-&*h;A4*m@
ztT<u8_ZHl?;En}9Sa8yUYZhFW?x!rcXu%~5PD}NS;8_dK2{~`U1q*(Z-13NA{>$xu
z)yo!KvEU~QewHp*1>^C@@fT5U3jQj1!-C(0#2qr;l4{)kcMI-X@V5p3h<ML}`xZQq
zIr8X#n3jK<3X2a#{7aC%JrWYKAZ)?E7CbgBpIGqJf@jjoy#f|IH+ejgpj0`Gh;&h`
zP_40JJZgHdSYfq76OnbB6?T)ehj{#~Gcl}iT2a=Da#kc*@q!fvttezgqG_Mc8aw~l
zm@&T<1x%f*g-!mVkRpObttcj>xD_R&FI&b-Nh?Z8Q)w&82w|N)zhrWbr@ZhAR#Y^{
ztz^Z^BD$=oYz0~Iid5McCi(AzN-`C0bz6~ag-4Y5K#WzbsAlEgyD-{{>Q<y$(bbA>
zR@AV<Yeg$7T3eAOUFum;-->kMH3e%~ks+kE6?KKwvBrMh#WU#>CC(WeSdnc-6Dt~8
z(a4HSY0a{tu{HM7lMUh_{b%3Qie^?cw<5>%lWSVG5amDnmS(k$6>Y6}&9rYPq?2Ht
z745C)U`0o%#z&0ftEN3W>}>Mat>|KM*1KELgGV=&p1c+&?`1`A;eIRLFxRM$D4dG;
z5dEy^Z^Zx+2MV%JZeoKstr%>@5G#gSF;bd11H*(27i6;$Lf#UL&pPgQj3{HR7$@Vh
zxABsHwt3r(WP%mX`K1toOj<rqnqtLNEAClw-->svm}bRMD~?$)-HLau*lxuRD`r?R
z(~8A|lGa)=%Zl0YWfhzwxY&xhLgoqb(DSWWAbg?VB2#bJF=L4pOQpI@aHSQ?&DIq{
z;$PLY%8J#do-?}<`+QHT?+cdu)V9uw4}`B5+$^|3aHAEQgmAA9`C?fX`wNcwM^=1n
z>RYVXYVvJDJ`w!(TH4`GzE7<<z)SEjiTO?|c3HvXGb?smu}An9f-HV+#a@$hiuRd&
zzZG8!_byImvxDM|9eyR`Yr#WoVCvskaYXpyLK$p!oDYAA=Y|#EnQ@-wp8_WTUdRuE
zCk0Olo)$bK`0<5O=d3s{{DKuf3;9v-qTnUL%Ys(~IZHqBLDw*LBR7|;R$LSPy4m`R
zkY5EYoB3TI;J0LOxhdq96}N@lG4<cAxNCCG&jTy|u*UucZP@Uq6%VaYY*20Z%Zk6P
z2wSnPbjCkcJhI{$?@~^J%loetPpl~1KDl#;<i~urBzynqknHc2{FM8a&tO;oR`3R_
zI5plDv|{JwT3h=SdQ{OHvLfV6E?O)vB0iT@PL7I#6tBew&vK7uLxtKNs|_|A_|v-Z
zC7WHyZ@mj~m78=M9Ad-OOM44BZAh@iB7eb#d_tylOir|+Qh6_v{GxDc0UHVmFC<u4
zaM#G#r)<S+C~kvSLz;#XHoR!VIUD#fu96(Xy`-0IsBA+i8%o<y#)g+{*ghb3H+xwd
z7Kf8ghLS4SP)>MxK^CVcyDHjXM3O2Aa&_YKB(ecE9Jb*b8(y&?$%ghebg;o?gWHA%
zHZ-)w{*X`RB-oI`AA9k~ANP`~*l=Wmr<M&FHdGbP)oMbj+mI@xhM-q4O)y=sreImM
zJ$I=sb76;dgnS}TJ=e9tXX^EAs4txV)6Qm%Y>0hwI@ptAL#7QiUP#Z9*2boNwvZ+^
zG&L0tIG3|J*wajqNpl-oaJnjaS_-zZp|uU&juv2rOB);7ir!9;l{_1cRgE=uw4sv?
zi#VS)ylTU1HVm@iO&O@O4PDuZ4X>NycClgK^oksFceWpt)K~N#!g~t#66`I=27V!L
z*w9DF-&4}hZpz^9{cPxO`Wzr+pdim{unj|m&$eNx4a0;_w_&&qBZN<|;Vm0R+AvnC
zqXgOKXd&_N#+Y%AGh4?Cd0Vj4D9=P2CJCQx!#hHz2u>AbZ^eFaPZJ*B8}FL>3?VZG
zXW76{cC+yu8&-FYJt{I+^m&5wZCGH#Lg5L;tz6h(i499_SZ~7yUUX@CPcpMyI2)|6
zVWr7e30W<;#)fK{el~bts%r(;34S0LkCP2H+VG_)n|N>7uvz%0HtZDgkqsZ)utoS*
zLEePhgmB+aczc+92XBK0tytV;!)GFXA-LOy&xPy}{BPX7avjCD^ge0Y&&wn`{8>lu
z0UHjA$PT}<;cMZCOeGq$ACXJ)j1AYDWgg|tX~S_FzO~_d8-B3iJ89)>_Jok8nf_N-
z7Ut?n8%~LGT5$V?R{NV<S?6+ZvBEp>EYGN7Hk0!<T(IFs8!p-~*^Vi8T(aS^4VoRg
z9m6B8SL!HNZ1~BBpKZ9x7e&PN*oJ-)*EJjN^O03YVSe3)Uu^i*h8xnv$}JmyGx<#+
zUq)Q4-xhvH@OQzxHrx}!t)=TI4{Z2DM)}i*e@y)${}d4Zw_tqGM`r84ruf8$r+i3C
zNbK#I_<3$az=ojMgalPP!a^c~Q9;EXn^Zgoi^;8a*o50ng`GR>Fzje!M_W6bb|l!5
zWQWTh%ghUQ6tts|7$*wm6U=W%0U`gzR@jc>c9gKAi0C|SQ9Fv6JU+n}?I>$UIXg<)
zQOb_e(pu*K_w$nde@jr_jtX{Ewu9`bC^jz(RuYWQi!tsQcD(Zc`(fQJQ>bM}h8@Xv
zc<e~Aqlz7AriZF_q?){%km?+jne7@JiP_3xy2)#rHnr`jBVw){b%ivvqmdmxJL=g{
zUz7%BFODZ3YNj1oA~q3hESPQ1`o9@9wIfHG;=P*L(Ojx6>}VyVrQm<|t<9*~*^y_*
z06PZS(cX>@cKF4zBWJ^o*X`(H$E#-F*M!8U-1-0TuEKi=b`$Jw`tK>#UV^;^|67YU
zq}oTYFQbtDg8yZ8kR2oJc*~AAMd!YQ?HD3_sNgVDA1)+5{gHNzwPTzeqs-RPc8n4J
zpXc#*Ot5339dDa9@xF0`NoIzp+VPGZKiToK9n<WXZpV5%Hpo_a*N%mDEV5&Uc$jJW
znPtaplh3hZuF2=wF<<xsQz>3YS!~A=J64NBp50PAR@za$j<U?OSuSLSAlt7J!Uk--
z#<Y3Qj`xMHwPT%-4@|STB^z(FW4|3=+Of%w5AE1&$47F$eJ++C+wrL#JB4o%+$y-u
zj!%TJhwVak2(sH<roLOqXM!Bz9#dz|z4qGig{kZ_Z4TIR(2gIa`jy~uJHEB!YvG3k
z4-0-HctnuB9kt__$=UyRcAT)|v?$-3`bi-_@ChRUoRVsspRwbt9p^+jZ^s4GhCQ=E
zJXaT`^^)LaL2kVwi^Alp9oP7X(@<E$bvu5s;|1-1C+Dwr{A<T!J8szVn;kdpxMjyf
zJN~lcwjFou_(Qz?E_lz5`*z$Fo+)uY5S}BP2a1b-@^vlB-_rU>@E<|8;ih=&6FZ*T
zVbx%hV4jJAqT#t60pUSD^X-TT4++NoN9~A{L*}@uc(7>y(|HuT28TIEO@l6+?GvK0
zpBIKyoq`D(Hj1A_spivSKNQ#|zlH*$FfXW~T;15lD59aLhL<%|mZoB?YbY<gIR6!(
z;YHykHI&v+MtCW~_>^DLQ1<^+*&$D)f+%s$SW!cz|6d^uCnK&D5h3`Bh9n^_4Q>s|
z!q3!EJSO3d!Ckmi5v8hzY8tAGpVwrvsTyiXQ@on4p{9neI=bnor6EJZYz=cX)Yec(
zLsJbo{AW&wq`Dd!YG|b4&!HZlhWZ_n>M;swAR_CxTDJ3c^JHpZY%G|i;fvwvT+Nm$
zlO`G}yqdISZ1Y@ko2Q|@hGrT{_V6~>&_Y8?4Xre^6{R(2vQcImo<dLW(@E)!O?rCS
zvRkIVorZ6Fc>n0`?VzEfhW;7`@bYPRRfB&?<Gvbtl*@jNxrT2pW_H%_x`r+y{yxOR
zO<cN4wVQ_SLV5`H6znC~JFb_@<}Pn&=%c~DG3mY4NyUeFIUy5<di(JdMrFS=A!(q7
zK^mrMn6BYX4TCj|)i6%O5DgE1PZ}fG@K(}L&f%@3VS>X2M+m+pI8tzwhS5T}BO5bD
zZ^v-FhPOoz+=}TFgijRY>LekP1*d43YU=N3nDM+28@$Vzd78QM#db3#nKO8O8)mXH
z^G(kz4U7+3dgp4Gry)Vd3p(a&SfJrM4JR}#)UZgyb`3i;EY`3@!#WKgXjrOYnTFLG
z)@WF+#qO$F$u?75)6RQVXn1_V$7Gd|oQ_Sn`kscLFJ`~byJ(JU(RCN|wHkWowJ!5o
zuM<^kuh+0a!xr8Tvs|@WCU4ZRNyCR4UfJp^bKmv+rmN{@*K5;Vn>Ezh;QC0z$3mD_
zKI_`5VVeg2I{QyJ7+0Zd>s`g#wyt)<^QnfN8V+bUs9~3e&ou1i4XI(bhCLdxmbvEt
z>-t<n-MYy~zIFBg$kpnP?3t5Y>MQB{cewUx*stMB#;f_1m-C&z+I)_u_T|gIuQYtE
zA#%cXOv6W~@*m<2rs0T&o0DCKHC*~Jd&u{$NwrHCy6qX2=|8H$I@$H8MRLX08z1K#
ztAR<v1{dS^8h+65mxjOj+SG80lcV9PhSM6(X!udXMNW05|Ez}23ti_lq^Bi!Tkkrr
z;erO5>Z&!%wfqCuzLTCy8ZK-2Ny9S~+A&z!u-e6~SNJ%Z>DqS0#nr8Ym1}(XYq+i9
zj)q?}{L0a4xTWDrwRBF}4Gq6(*!s6CUj1{s>*bv;PHek7*~dP0{jTAzh6ft{;8Ssm
z>z;=Dd@am&^?%oOdYNnWgV>_1d!q?A{mJ{BFT*?8D>t~FpLUH{;`&F!BhHnEsD^)e
zCukUT#1+!;M8i`)?Rm*GxR$s^Clz|e+ibmS*AE^>F0Iey5AtD~o4hU4e|L|o><v#?
z!_l3}mfu~94poPyL)T%^(d<mNRfkQ-@%gUrGX0Ep9Z#PZt+m>9X{#^e?Hq@W*XFpK
zY<$*Z==f}|>&z9`nuD$?m$PqW`V)2J)6qyrrjGnN3h1byqoR(2I@W&TDypNHjzT&L
zOZD?Q$wk<*VRGdw+1z^E+N8LS7j=~6(XCBN2u^<FDy5^ej+b<l<?a_eeXsb+=&`F~
zbJg?~_gq(8>E(EoE-B@8d|0T-nfF~E=uM_ybyd>wvW{vxs_Uq%gLEY8@aTY!S9G}b
zSn85=xO6zOVh=BW_E$ECk?u`?eV?m(!+f(^B$t`!N?|9p^HtHoyzj5sRdrmR?HZYp
zJaM8cRYwgSwRP0d;nk6*qb48tI`~RV7o2n{yIrf~`De3l{_J^Urz=Cpf{EUjvi!X9
z>gw?6XrQB^4&J@>bkyfug<QNpxq9lNFTHchpL1MgYbJj;CH62^mX5|c@^rM<k*%YN
zEJ0fxO?BkxXvJ%hRw!4;v@4$GI$8*6#^j!hm8l=OT5_+ME+$+;^IffV{CdpArHzoQ
z3tYUQ?R10#MVRn{c3}THI_v1DW7mC8CmnB5+U=iRukuW@{7V+NUe|H+iigE6(scA{
zzGl9BrE4_luA_&Jh>oa^o;rHzIIQCv9ldq<IVU<6>v%&)A06X$yse|Jj($3Z>lmS<
zzm5Sq2J0B2W1x;fI^N{vTb_D-MQY*h>G_+r+MJfgZ-#01Yu-@a28#*}({XG};!Miv
zek=C6n8AHA-_kKs$7mg6bj*F-=j@+3inr79)FM4oT4(tWHSpYDoH|y=I2|){Gt|4@
zro%G%Wp@*FOw=)hMIDoLOxE!ZCs4<U=bkA#rk<=dRruP)sb%*2y79ZhvRY2p@h<Pl
zgFcRJ*OJs3b5d{2$eg8PHZL)EUz|FJ1JE&#k9}U>JKmi$GJjf_I&yC6u|=tGpHc=c
z&*XU}&rMy(o9B*~?U(3Ss$-juPjoEPv0TRn9UFD5(6Lg-dph3Nu}a5kz9Med<&d^0
zDc;q-H9Gjsbv!!118w8N)U`U+>G(j$?_)Aso~p(F*k7;X+xe*}x4jR(^riOA+{71%
zj*oS0(XlxtYqO4zc*o95eLXpgtCJ^YGOw4L@nW`htB&*~smncC9PoA>J9O;Rv0ulh
zI(F*Vtz!=#5o>%WmZa|D6M%Dm+gl|iYuW+dh`Zj;b?nt+_xOFm)4A^3*CT^p?$>Rv
z@7OIbNBgA?e(T^t9bfSdS>rpv$IiUe)Sek*s~7&7Gteu8-`I0Vy0eE`@B5AjzoO$O
z9Y=Y^IRiW?9cTCi(D5BFjgC`1>p7|4>-a&(Nly5n%+PaBp^P+sYahQ>j$fox{hy|D
zzsq-;e<d56$$8@u&*}J4$3-3IbzIOfVSXxm;HFv4GcNHZKhHLCnD4TVCks=@J#EVG
zxLdm*_h%hfb^ODdWJ&5Z9oIR}I_~lk@I|EKH@+ft+|Y64zPCZ)*!$%;etuKjEgiRY
z+~EUfaV8I8?UCLm%g^(zc|DJP-qUek$3q=|>9{mE^?{B*bo|NFT$DO-dFsQ}zU{ZX
z@ooP%UwW&3T&nc<{e3@;opTtEB$$77JQngq@TuT4!RLZ(8PE|ld5EuclYe?QNpV1R
zptS>S9I!ZGbs)uoDh}8juscxFfl>}=4(JXPa-gsS4hIYe@;Q*-0jC2A4s<B%OLSmY
zm9*kc-=r-63l78y<K{X!tF!z~lYDb4<P>nApaV>}a1-A)T*QH5Y|OaJSJVOS%lG9n
zA9b`q2@&^_??p%K&SbVP?LZj^$N@O;k^^NOsNg_F2g*5OHx*A&Q%WB#P~H){8=0#d
zOv{_KDmhTu0VZE(`CoS6SY;n`zLS;>UU4AF5&Oq@vI8!jh^vU(fk9<`-{tvA-plt+
zos8dIMSiX1^T_CIU)6zX4rEKUx&x^W)N&xhff^2Q%xQv5ybcse)R}Ne7qO-T?1!th
z9jN0#T?c#)EWKHaCv~}YMsQk6JqPML&{!gG;E3J$%~Rl;w;Kv?B$z44O<6+thUD@U
za@eei15Kr4jsq=trVivfz)5Q+L+~igC5=p4Ik54Whs%tgG{!QCdRqtDIk3Qig%0F7
z(B6SD4vcl+z{|c44s>;(n*$vkxc*)WkK0L-^Qw&gnggB9cwTp)i}0FXS=p?+13erV
zEfeo4*x!KxV$jQh-VXSMzu`b%(?cHzxG&G8pD0Za$NYH47vz`+@}Qh>(T6!OT*zR-
zA%a7B`eM&rMmR81#J2?h(?^*$yr%7cp>Yn3ci>$IW;npff17um1Ct$?-~gxe-3ECR
zxwS#ww(>b#o#Mbd4oq`ks^sAm`FQj2*4kP#XSxF?R-|)~EY5UbmIJdLnB$1uB0j*^
zi;+dX9eu6?^BkD(09RS$!h7j(pB}?s@hx&-u>-pu*yF$wUM~rIy#vb}Snj|Y2i}vl
zTj9V;2Ua;yv{8<-%g1|WwFB4kVy>7cRLE(#u+jSttaV_W1I)L#Oyrqz>j$#EIkCGN
z<ZWPwcat_cu*rcBWgyPjCk||O;3Ee<HkGYHw#bUG!8WPJGr8S?9S(eITJ93E)6DH>
zQjPC{&v^$raM*!w9QeY4eKPTb4(xZ}OWB;9G|u4xIWb25l8?FnmwaW%7yQbBuN^q#
zz=bS7PnMUUO0B#jQoZQFB?pf3CG5a)2fh`b=N$NsSHXePGWz#|Ck1~HjNiA<6FJ34
zmfXY7{EP!<rFGl&*d6=lg)_Mz<VV5I*YnlAo{w{QzHfQPpB(tvfm=@8cH$~0pRaKz
ziaK%KfnOZBY~YH4Umdu?=bM2-27YtkrUMZNqTI`Y+YUT-;E4k-I9;C?$$!Uz-yPT%
zPP*&B9}fKKz&)wn7knUSE97E>Q6G9A^5)!;_lR9pbN$5!odf>}Z>YIg;cqYf*Ma_@
z_@c=!drQ|-PR;;V$bql}&v;zTb=~QD&S&-0f&sp|?<EBVPgZb^s1f_7PR8R8lN1B0
z0b2o=#lXk+l7^<aw)S$JuN3=$)yg`TdrACb!frq_pd0ArcRLIiV$A&K@h+$E1OqP^
zNEFWBqrtAY<dbTC0|kV<qr~*W28tLMWZ+E$MGX`)P}4vy1H}!LFz~X0$_8FEP}0EH
z<5DUbC}p6ufwBh587O0bpFe8p^}J*tHO=$t{fufi>OQ=dqkD798>nF5L6*PKbKf_Q
zeg0~>Y`OnhP9+w-9_C~K29gZ847_6SXKm@$#{M!!#bZ5lnY#@n8>r514R{QU_Ij!q
zsA?d^K=_$&SkQMU)l<#D?Kktd3=8=f7j5k{Kh;yifY(48Z-bzZLrOQWDd<~XtmTVK
z(pNsoZJ?!R7^rO^&p>+vbqv%skZYis0iS_-2C@t^Hc;O{10MIWFVn!7r@n>;8X360
zG`;dF&&go!kgi$G8!k;RwltlG$TrZ_K;PDln@EZpcFuCn%gNzTwRA2Ud*n7Z(853)
z0~~Yd#{QNDS{t}&ZN{aQff|kdalWuxZd(HbJ7-;3lHN}8dALSy2Ll}q^f1uVKqrpe
z>*;LZbpx*o=jv-hEX&jT%~2S;80acWHv`>G8|T10w*2eUuDuNOHqhU|07<Fez#9ho
z7<`+32hK3tyj{c7*FdC48kc@Tc+puOD6W=t$(n0v#?`?Fh8XzFz-|LW4Gc4|#K2Mm
z!wrluFwMYp18*4^Y2a-G6AX;v;S7vp{kd<9fgcyAkL3)EP2oY=|4Yw&oY?Ww$_9yE
z&qM>03{2s`BvGTD_$KqZ+hh6XT&-S_{tgfH*mv_$E?1{t%X!zp3<L8F%r`L8z$^oE
zWG#3F2hPdav^;$_FW=l83i%l48c3*-+sBr^z`#NSi=>J5UytUne<qv0_ANH>?~S_5
zml;@YU?cA$11k)yG_cmdIs>Z=tTynTf%kc(p8D3vg}_^a`LbSFljh`v=I3NR_LW?o
z{sG&x%+DKsz1VcIr!(Im+-^_*(7<K`I}Chk;3K{&4SZr?J1_UKoGm=ovh-~Rw(=HT
zoX%xO4bQ`so~1QnmrrhE|B%W$lbw7)&9<_uT?X1#%wuKWw#1^-%I=X2e8p(sbK!dp
zd|_apf&B&!aAF_j?yIb~`Z0~O^raX~59TsIXyD+IbY7Q31`ZoIW8kcTZwwqU@U4OG
zctb8tKWgCN6W?*UI*u7wHncU{cP^2i@dSIer=K)%%E0#qeh|;2N91vCN2hsq+S7NO
z^BoN5p5~N(9V6!qoHuaEK+ebcFYqqXn*C^?Ut@piMd>9M=3HbCS94Zan{lt=nMHVi
z{$${11J4Zv3|uvE&A{IVj^9nXZr~SAg@Hf#{5NpJz&+7_6J&!s9GLK1+?vmQTey91
z1#bGCM=9fe`&#;4-Z_o^OzunT*BhI2>z}5FhjDU5`OCoR(r$M#cj6}*{}_10yG5Fw
z2|gBFSK9r=z*9b@@1}F%FSvg?C?9(Za{PR+z7q*fgm_o;Rc0W{2fGt?Cln`CCoE1_
zojB(7HJOlEb$lixKSkC0C-2`*-z<Jnxf8k*4krvJp7ii=6YJJDJM&XQj9l1;hj_sm
z8>pZYiB7OhJ}2@!@#oLp0#1}1=wpTXgDh(yF=NZZLblayR?NwNGQ{p6>ghxYCtei2
z3-@xOloMG_G<Kr26J_|Dt(|Z?(Wqvdmz-GeX?kTR4peMe)`@aXly{=Yd3OaTDmn48
z6BV7Pd?JlYxg|N{{;6}Oc8nLT-G;v&`_zb9aAL{JtzHo)NrHXrv|)$IPI#PX=mdWk
zaEcREoT%+Y9Zt>#cU31coZxTft>(l>js3r#bypWX)rlHH*v2a)O)y=sreG~6T1D!x
z!Nwj6e-AP{sq4g{Q!NWd>iBr{r2ITwJysg~>pRgv2y-@TB$4D>my;>vN}<BpPBd}i
zH7DA1bv1ROe@j<KXY6NmjuW{~G;^Z46X*N6=0A!3)Ly+?Y2idmF=!>&S}=YmVH+pf
zO0}I}o*=tw??eaTC4Y{6XV#qVu1-$8YPPb^&ca_e75=WVt~@Be2-;lP?m~L-!pSpY
zy`1Rngx`rboZzqNx#>h7C;B=u)rohU=*P2gV!RV?J2AkCft>I;o^ehLa^g)VHXW-u
zhId`K>0l?mo8uYcMAE^UT(wm34RvA||4KH;!)3UT5l*}%WTfCI!O?=Z4%B2b_BPgu
z7v_3ieb~9si4q;=cqTY8(TT~N&jU3_?9VrFj%Sh+^$*tEJ+(9s_hpK2ip224ftu5t
zn9hsk#6l-79Io}Q6LXzNd026V6EmHdCE{!+<_P(*vH$nR{^yPTZ23ZV4Cgs9Uz)gD
zI@`a<iN#L*APToGabh#?D<_sZu}s9}f@_^vA!McCDnYhi?Zg_BzvsmJCeM(u);aNk
zsjPQmgYb=}vPsB?yj#ThW8PX$eB;CsCq_m(R$AI?s}tLt_{53s+5X*P%w)S0J49jr
zsS`U*zDvkwg2S@?d&K^8C-yq=g*oB@A^V)zZz^93;S?Qo;wvY<mg-@%^^g<X#M9)$
zoN-#V|H_hHM`LGHta{wE{FZlx@Drx;z08GePKt8MiPJ*P2>$HESs~{H+3Y+MCw_F|
zqN!XFa!K&A;Hqr@Pi8AC+p_&vowz3Cy5KK@tpDo74dK5Daz0sf7Vz@6zr&N_OFI#V
z6LHsxdrp*1M7c!Vcj5uB@(Wn`0{-9w(}_h1Sey|1l<*;69SP{4fWMrv>fcWM<HRE;
z{^heM0ksqGm@f@JClgRA0Z*NHCT4{b@LY&B0XFdya3aWuzY}56*_D!jh{>Zu@)?C#
zR})~7E{&(h?wGO*XOb@gS^{*bIs_904MArD>g+ATW?WtnB{2a%Z;w3-nO~|*3M8PQ
z$qNaYx}``FQz<H>m|*b)lrZ%d6ELf{E$+E=0xBk;QUc0I>r19h*#wj`d3hlf1g8!w
z@NxnwC!k6Ks)|AhND=};cKeEui>Ec05O)HS6W}phQ-u6`yh*VKjoG-`|KsU8prfe1
zcOVpDXLj1o?#>Rq$OoBhEHMcL2z7yEApsHyy)*P)q$nK(lp-BLswiDlq>6xmNR=+4
zf=CxoI!OE9x%}pT&O6`v-hKDo_uhT?y_ubz;=$V<q`0Mt9wae;$CY&1%1+?yt8Q2H
zppsiUu4`j5QpJPjEUD^2ng`XGM?9#*q`C(+nABt>{aPN>c6qC!&YLCbdeD$1^*l&t
zlEK)(gD8{wj0<=MGnr>GQr%KsXO<gz(Aa})7UnQE^`MEXvm$Rn(#hp)GxF{B`jl<q
zK}!!>xjJn<XwAHhE7|<AKsyiGd(eR;wkz+*q!VLj4^9Q04s>x#yE5tK!N6Fj(Viak
zV#y%J-X8Szpq~eQTzz?f+~4H`UTJRkQpJHDbR6ZpL}IW9@3MS|2OoPdgZWSohIufY
z`FkEr@?f$D?|U%9gOMy8>%lk=Mlm1FIEIl7_Fm|O-*^uux{?V@KA?H&>D+BdX=h#g
zLl#bD{D^T1Bb6>**N|`;XQwm1zq51w`_Ag1v|xoc+k-hCcm+rT=6W#CgNL-7J(%yo
zCmwv|!Pg!vaIG!$pl2PY?x!qS#JJdlB_1sGV3`LiJy_+zat}W9;B&Xu#Qf?C=0kk7
zUw@wb1@rywota(j!5Yr4WxQ<0{G9o}zO7@)dd4pqH_+bF!Kw9)2OB;3hqfk`f6I8p
zgH0Z6_F#(#TUqj>2irW@&U~i_-!a+2NJjc)O5eM@)P?4|JlO5Q4<77c;a(4ZscVzk
zx*AOh_p$Ktw{?kA+V8<nEIHs>ILPD><6*|zb?u`b{OrLo502B0<iYPAoN)C|d2rI@
z{l{ykJvc)xx{|X@a@J>4Tfcg6j<W?HIiC5$gYzEz<-sKnF0lL}<DZPJdHIl9p*OV4
z9$aDJ4G*p|A^CL=uDSf|_1Z%_HX$LUzgc*b@s<a-U7huJY8A-itd2V@xyyKu@xH6`
zz=Q4sO24x6*n|H(c*;dj7~@LBK4bF2gO?sWXTD}~$}9aC!8y3(5zuJ-|0H<@#0tpA
z^8Ab*0R;pUWS(2fS;DUgD8$*qjQ`|wdPqqS@bg-qDB!H-%#<uZ5%4DKP*xS-7Z4Dj
z3GfMcvej9<lyp|eU(cEDAoG%phJX+gld*_^qD+c078j5c^S^dWu;eDcz^4@R(gMl|
zC@bJ~&RPQEnUrIMfbvW#FjBj5Od40JLp&@X!Ig^-r8fku>ESH)^7ZVu1iUREQJ{PB
z(Lz8=0ZF7Opq_wq0V!^+S^_FEuOuLqNo4`mm{f6fsxnCvF#O+gWSmlUmegRZDWG#H
zXTz`U>PMK=VXP~FmMWEIxTV<wq5|p*Xuy(&jG2sCjM+>6w_i09(3mAuy%zgCM?e!-
z(v(RqV>8C)0`8Y|+G-`B%e(SG0fPjz7SKjOTLJ9^^klX6j9nN>xdW4q0y;72EWl<G
z|FQs;PGIcHl5ULM8GFz+_`Y-Q(TlUa1@sZnmpKUs2<XSWKjW)j)!FOxZ7@ql2pB2g
zT~~hylc55JF&WPIo?H4plg(8!sro1Z69r5XFj~ME0b>P>6EH!*2dvYwNa@}lbv#Ws
zyQ@Th$CLkcbynPD0UrvOAz&tJek9;y*Zvd%Q(Znyz;xzsv~ebylG;+9C1AFId9F?`
zGiDAQ0t8%b>U4?HrrS<5ZulT}fq;bq4hlFV;8OvM1Z)woRls5aO9U(z@R@*Gd99@a
zmeI0`solD2czB^?B7`dhd@f*}fb{~t5U^6fDgmo$CFZrxR1KdV=cNx9t`V^R+Zg%=
z;#z^;Hed~^XCE8mop3AZO92}MY!vXVfUgAPNli6VQ@;`LwE$A4iZ$nE?yDLmLfK8P
zgiZ%6l1$1;A>lRw+Xd_+*HxvrC0VT+#C|7Whk)+|>=dv^z+QoF8H(A(3cCf+*9>PD
zPbd6=W~81yzn=3Y#K%)(=*xy_Rbv|Gv3{hk3LyTIfCB;!zl^(HDfQM=dih)2VF5>|
z4+8EAI7%ClfIkIX6mU$yaRI;3rX=75t>5I-Qvyy4m~$)Xq(JZ8vS`TE%7dygX9Q5s
zi%g3l{8hj?0e=WM&%)mXAT9hmMMc%{#TaY<9+^gW;nk4yShp9&7Mn(|iLm|>a7n;*
z0XL`*G1g@PS7<_Mnx;C#?=&Ib#HlgYX!lF$6iH59UC;hoz)b<SDSqOVza#1`>g|$J
z^{2)paIgNM=^*b_4eQmyRGs{Pj~1hV*F+Q&@j$>s0Wl)-h<GI6v4Cd+o(t$zHRg$c
z|JXU?v9`C8$T?4G)#tG?tA&Zb5MXUA^O7as)w9X+^R#eY5wRk@=FTc8BA@7lQ+~>d
z7*H&INtN)>)KscS)$3Lb-x(82YK293MCc;?A_NirU&cuyWVRrR&OCZWXVN>xSbO)#
zd;Tq_h)_jn^z)}`nCwtzi1;{rEiD`nov93oFhvAK7$W-Rq*O`^pQ>k*+}l+opA->M
zRCMC=ezEjoBB)n)vQr4@<!>cLEE2I;L@5!aMU)XyR>UX~qeZ+fqMV5KB07kGi1H$8
z(&$7~5D_OLi3ZE>=d_r-DI%Up*p(-Uc!PQDlTxJl7W20m6J4Emn0%s@7V3)0%u_^E
z6j4b;s;g6-No5gLm{es<b4#l++2BvF;Yx%jrD}_ah{zO?#X|I!>oBS7>eLgF&OF1F
zL`BqR-oTa6yFD8+Z_e0A1bsY?2GUqWHcN6`%_bt6GS77-%|x8_r;~CEmb7GS#n{@_
zX(OU7^LDPJU2UzSh)yC#u%xpHo5^4iU6}NBHM@%F#{KEe*n^R}*ON&v#@>v5L|m(9
zQ&B&z+n;fOYiFQ{K`t+>H++}*5XPade3*#gBHrWd*e9jlXA<Q(r2&rQth_9BjEJ!!
z=5ltNi1AFOi@4K5o4`GpB;o@WPGmg6Z&jVl{6of%7|G@oCR0UBb0vAxotL$KEMf*r
zW-`ulOJ_5g!$@W+%@Z--E&W8q0t%-%YavTMb>+Y7o#@qDOGK;{u};KNT4Hg|i>a51
zST5o-5i3L-tF3$?Vx@>nUp4)lkv@L?taw3EqqIuIYSDRr*BVA5q`zLomm;=_*e+s&
zh_6IUXcyfo;%gD#h}cN35OFU%VNrI%+D+ly+u_ND5;lqGon>vIb=Nv&Gna;wQ?}-F
zbjW7vzF^_*ULxO#*g?y%Q5$-t*!Ln<HA~saxQmgpdw#35N5o!Qxf04r*eBvg5e2<?
z&5QjaeiCs-#8nXoL>v@xPQ-5_4pH}ZTBk(}iBvu;;)sZ&B7UZeEg6;Rtv<(?5I-s6
zxQG*+-BhRYlKkl;JjGdWx=s9yh+in?MfjT6qKdzYP;zUPNw>-Pii_#Li>RHJ@~4Q4
zBL1L&yi>33PV2mg3nFectMw?oa%N5GFWR84SGXjivlu&iVFRjonfpdUv6^^|wmaIl
zMLeYaVV`wF#6P4@SAj&NWK^bflT5k%wumBU>z%Gr`HqM)FY4W8J4DKk&U)UU@;wpv
zxh;FE<$U&?Hj4U{pNn`Q;xWsgi1<&$Q<gtttdee*Yf+2TuBM5Fx~9CO4d07=UbK!>
zj`1Ro7kRyCnr>6kqOuK0c(!@1{9Y9BIwPWi(1->%sGL)$K_M>+dojU_54`YrA$akI
z7jJqYdY#MoiWjOEUgngQypUZ!rGr;<d08)fUg%!<UCBSk3k1BV-!BsM!eC*@ixO_B
z=|vHj7iCh6vA7qnUI<*$EiL6mX_uGrLK*5jW&FAq<yd&_s0=3buyc7YD!7_)Oe`<r
zT}jxB1eY(mSl}%$-u9xs7ahDv^x_>a8hO#!izF|Sy~y%n&O<LXl;TA#FDj;nD|%7M
zi&VBy)wNTZNfkyhTS{}~)tFRgtl>pXSKfG+Slf$;7j;}oeI|7o>v@sRB!e-^=uE-T
zm<BG-WI}B<^y16cofj8ZI-f>QUT4!>dy(tKfp?N}y!g6AQWLN9Y&d0`krT#8+Idm3
ze0;ccxVaZCTx%_vv|?<{*v5;tZs~iwV#dFnKuvV?qLUZ>S>D+T+l$^_^zoup*`zLB
z^zwo_KrZU)1wFmq&5Q0#dN7itCzGj7o!-(|`g+liP1$N{>$<hBZ>&xDeeX(CI>3v8
zUJUYLFe^}pM|$xt^C4ag^<o%v(j4x^nZeE%uHSPd?|U)A<(J;eH_GLsnT+vbER%7J
z<K5EZPYX=+Vv-ksd2z{$$zFWu#cm2hFFx{OiWe)q_}q)B6cUZXpLnsri)mg=_u^x=
zFwcvYC7f~1@M0!QX1SJUGnwPXTvyV6zIQ(B7nmRWs@6g;KJ#K-IO$WKtVOK3m~jc?
zQn&6hFP6KUy!}Q}64m;`i<Mq%@?tZsyEhV6(cINbUC(N(y;#F!ty^mylm5HJFPUs$
z{K_r;nkJF?M#gVlInCF_A?g<L-U!FrulJ8^<)Up~Y<G3OW3q$sdoOk}*~NIQtmB+L
zUhMValozMH*hj7o#UJ(JXD@orOZ}16_IvRYlLL$g84ocYW+Wp=ycj(~B;qX`zv5Q%
zF)upzsC1kr=vMLxMj|J@xM#=Tdo$?_*E;LPuU`D}%Ffo>RF~4QV~&w?Ui`-L-x>d4
zJkNN6k#zp_(qFyK9!P1-^8%N>xZ*{OgglZXyz0esF1_Z(bzWRIIQ!I#zrDEW#Vs#x
zQ-53w|1i13_%Gw$<Keq*>E&70eJ>t(@zCo$tnnYqA2EN-_=K@#<rpd*;4MfU@Kg>z
zW3_3coe{n8;w5M4lS8y{@^UAA5_Ac%67osNFQI^hsV^%v8!65!7hjMSUSp(LF2tlT
zqep@uL1Zp7dKo1~YKxYhBB6PYN-84}O~M-$l8E>vtb8-63~L4?1eq8TN=W$W?Uayf
z!IV(M<wYeFV_w{qM4lEX$-I;+DJ_A7)HJ2C61ta;Z#Ogz63Wxi8ikuls30LuLWYE>
z<lG=<Nq9@b+sxw`!;A^kZl$<4B)rMlSMQcdWd4qXBqs8d7>Qq2lPn=cLPZuv7|C)a
zCaDrCOQ^!Us)RHN)g<)m8zzP7u4ZisHC$d(LM@jcyHkMF`j?KWBRTI_sO!q>F-d1U
zd8|NvCOHzCFloS;DItpqS!l?l5o2Qs*-V;FE=@(0no7uJN&K+?y$kDcpg?nWR|^R(
zCA5;9-wvCn)NjkAwS+cINGS9vN%D3Q+Djlp>Bf@OP7*pxc&7-Gioll8g*>d|Z5>@D
zbR++3h||zrLJtYQs5q;lr-WV-N+~F<ptpoRq%Y%b8GXr75{^qaA)&v70TLESSSVqj
zgh3L<OPC;Gumnl5hDsPF;av%I|HBZL^hmcw*&0p~38N*9k?_8R5fVm8bUnn<K9BS$
zZ}mIZV5Ed&A?xPR=p4Zsoo-(dt<S2*jFm8s+Df+@{+UY3-Bs%Y2@@qup+zBK62+(A
z`cOir8f_*^*qClpdaJnQt)2XlL{IWoZ+SQ}O~Q1VG6}QEGlKQ8gqae)+#i`C!9OSA
z*^Owq^{HeeF}2eiijCK;`4Z*@ths~|4yW6J_TlN0^=WbI6A9X94YnSQUQ4$>m9R*{
zb_w4}SS(?Qgf$Y@N?0mk83jMBCJD<Wd?sN9_mFztdqsoGOCtqJS^G{zK9}&@iOBZi
z*6Xr$rKq)vJaZ$uS^^DxqiN+YXRRa8NcdX9H`G-Lt7L0~gc%jG3S`(%W=HC#Cx1or
zQrsf4k!GK!Tf!D{%j}#pflixf`Z8?#ZXn@S3D(+_ZIW}h43S^%SEc4EX4pF<d@tcg
zs<<X~r-WS+c1!qy8;Us_-QlxROImv*#H>x-C*iefNqZ$U&aiJ?j1qRsuv7k2_tUr}
z9FTBO!chr7OUOJLIYb_la73a%#VpFE?u$^n_YOu!WjLQZJVqU>nxGf6cJ9g<C|M^Z
zoT6P$rduCzTEZC#HznMnIFxW!!XFaOODKD;!LQ^iiB9&cW96-L6d~oUQo~}NWhDPj
z?TQV5(X0y+{*-V<!c_?uCHzHunqXa~*y!t}(aq1WFVViSHk!63mE`1G3dL&@Zb<lB
z!pW7=bqRO+M)SQ}YgN!{7@sw-PV%P3$+so^BjF`^K*qnMAmOQmXA<s8xF_MEghvwY
zvsWKTczi6{!E24#ne)k4ks&*xk0}mmnk4*3b2KM`TtUg36MHPfrWHYn=7l`@T*9>s
z`vv(>%WVHFy>L!)9vR<tizns0GInZCty%jc`DGN4Vag~Xqo9n}Wau*dGU}d*7Lp;z
z5M^h)g=KhT<c->t?yHtph9pCi;gj*srx97kjcExgbA|ChX^SLrqv{up+J7yJBt`9H
z(+bGWdTc*9!;le_kr}lqTsueY5X;|-+7}LsMP+AlOUNiGqnPYWXmQzz+so|}$O)xn
zl$HS*<z<xN;k+)RoYP6GEaR7JQbrZCW<~AWC9Otxt5%Q^CnGE)L53w`<&tDd@idmr
z5hBzRLfTT^knx_^dQ-;QsIAi{LFvnzYcmpQATk!qSRx}yMzRcBMi&_=GAhc*k<mm(
zB^jwQA~Nd8s4Sz3j2bc?ZjV-#ktU;>jOsFeBo9RGNt#6+dm6R<^=%s9TlMXlGHS`F
zO=I~>>laDx$ny01c3m0uWE5YW+K^l!BZC|zBTGh9#?-+XMO3SSjQ8u?^<|7REt1d@
zC|1s*u-{red1ifk(XvP*8DG}78_UR+F}$c%qqMcJzTJ6!w5g0-8LecrmeEWGb*ZI{
zPu6A}do8oMj209FAuG?OXqIZddo_BozTHMfTNxK>CU=z4PR7&vb_eQh16yfex96#$
z$)%Mtcw=lQ8J%gc4eS<FRLttv!0sxen~bs4Ng3T`^pG)7#vmCzW%QEKpJse+q}I|%
zZ`%1~EGuF4kukA>eO|K4d>!p4V`&3>O80m&mAx)?04q~q50>#Rja|kF8AD_Yl`)J4
zDAPi=D6Ss;5bd}r`g1v}>h9=QWv%yQdSEB>iPwqqkupZf7)?{7TU#60^X5nLMUp8(
z#?a{A$bGyvWxR|DGG@w{CF29?iHwhAOd%IhLoc!>%UH24^=j96;vdR*-Y0&;><A%6
z&QuxGWK5T_`l6Qq=jg{WW>73GiI7{aeVIyltbyYq+9+nrm?vXC1vBX%$m#lJt+_P0
z?Gp^z`DHASu}H?9Q;~%-*6odEhi#gLn+@zwIjV`!ELSR=xs-e*<BE){GM3BuOvXM6
zFzTL+&t+_qv026!6z3EGGB!}yEKXh}V+{p1%|ggpO+mXY2Q8D=$rw}IqTOIUFQTJg
zMu?A5EUm2dm5i@td?O=&rcK$6GA`Fku9#_mOWl^N;+ghee`e9~Ym1DnGQOvsM8-B=
zKE-~Gd?(}QuJPL$mxQbxw1j_+P@=`POU7<mN1ldzW&A)*Y>n<b8{NZ;y>X_!<x-TE
zBuyek!hRV)$v8!uwu}QZ4$3%61}SVZorQBq#$jqsutx5UR6bbm2={9D>J$pyV>0fq
z$v8nXm}wuE5ns$&oN1q=4Xv0p<V<9y-#R1X7a70H_(R578NbRnC!?v)+LVyoVO5kq
zdV7CJt(ob`zscC1X_Ndsg@=s4D3E0QNo!$GtBYKek3OWkB>DQr$caq5#kF>~GwsW=
za}1?33fkqa$+%9Ns)B+FZpiqXdL`q5jGHoU$@qshd|qhHE@`)!T$mwJ=kHLJQr10k
zdzO8dkq9}2ut#z0p^Qf|UdVVU<FSk<GM-T!QqcY${f`zVyOB5zgyN)>?i}SW_laLI
ztQI*cMnN70`4nf1>tR}X6?pfHu?iZ^&6(G<4IPzwu1uv``4tq&ay<N+f<g*(1%3s~
zRjaT9S%IR!qd;JZNEQ@26LU6mI?j^LUt1$@X4ynk1?|^Hd<tmU645wIY9DNl&=ws~
z5L8f9K`{k}f)KT+VC#;YHw>$OmTfBNlx0_0pIWhkO+uQr5m|O|1tk<zKihz2r{cm$
zNyXXf+xCo~mt~hxP*%Zz3Z5!>T|qeoGZoBI00re0v{KMoK?MbI3Ti2+t-w<7RhFHo
z;2j0=3c?B!6wu-L4Fzv9d8<$Sr@i94?Tx&p;B9i3U=44P{4i)G(eX<`vVtlKs<InX
z6r?IxT+*t@S!Zo32+WVrhESP%xcXTuI=G}Ms79SvP(#6$f1?*yMCc@e3?9j{Ybw|i
zw7ys&-ORFw$W}x_9R&?(QWVrx&~;BVT|tI|dI}0Ow97QKX~jhq)K_r(TxzC*DJLQ{
zQ}y+v1_~B-PJ3r=0?D%!(5IZIolR{_{#THzpl?GvM?n+aIeIpso-}l}k){foHFS1Y
zI*vC}&|E<a1uePT<nx62&WER|;*pKfHVWD*cvry?1%q>v+tCCm=*+x5V+Zo#{76Ry
zqc@~d6Sjgb3i>JNPeV}9O+iluy%c=V(56#}?h1M+ppyYwCZ&E$?K~%8QA4{obyC6X
zl$1USC`*Zs@^ngEZ>_V14q*L33I;0J($F6LQ)EIZYp~*MWxd;^U0I(xRKYL>;}ncn
zFr4OsdZJ*Af_qy_zpr3~f@2MxV+x&p{T;AIDj21J$mKE?;aKK$5TyIAr+y}F_%t$s
zx~gEhf{ztUR4_@wN91aS-cnV4GOgu?cAiG|hn$U7EfP*uFiioSBA$KPiVg?G8`*Sx
zp%_SRWY190VN7ER+Qfh*9E#3XFo$Mb!CnP(DcBTzp<tzg`3gQ!@F|U*$l8nrG@IOK
z3UabThX$H=YG|>7r3#iQSVFOVF7;ne!;>Yf<%)C1_zDG|EBH)t?mur@s9|O!yU^EB
znhTofy}jdCDOjywGkH(J8U<?=Y@k)3I7iHNw0;$QNekhiNPFF}Dha3NL|U!Mpt$;4
z!8ZyjEy}k^!A5ezgQ|zBM7uU}g6CVsIn|$eIJ)U_bZjGgtAcF`zEiM+)^*j=+o}JJ
z>^rNXlS*1N_V20PM)pnxyO^vllzF_7J#KaCZUsNkiV!WbbFgB{;ysal3Vu{@Rlzl~
zuiz*0s)Dl$4k$QC!z7<5I7IQEzxpq2(vI-jJWLZ*#-{91@+Y0s7O{vYg{<QWPAWL1
z;DkbZrj_tn{ejh^r)kOm7@>5ANr$o)@xYIfUlp9A7*lXb!Ee-Po3ua3IkW~3M}Jpv
zy^&2VUQqC-f-;TmiwX)iw&}2v=TfxA#c03lDa5Nbw%-q0muWc84r7fhQ2p|m==Gxo
zu2aC!dQ|W)g_(kzv>qEfpNzkypxuhdZ5{%V^d@a+pSe<_&A`U?9R&}m&kF8R08<=F
z)_vZW9x%`NCQ1_edH9$@%WJJX6QLzfQ~ZR2s&_mE%rgbgX@#ojtm1`&m$db%uvEmT
z$fH72;ZvQ8c~ult@tTTQ73B^_@~N0@Sou{HP?3LKYK=11w8l1_ixyH*ScRlQR^d@0
zsPL*-)7Z{m)cJ|geRot;@$=Do#C<y=KQ^}OC>HHw3R|N+O;vHRvHh&Et*h{>D50XH
zih$}Ilxba?DuOBu6(JS$OMya{&RvsNrxF%XQIw4oQ&F4=*&)k44m75ImQqn#MR^s}
z0rGzt6=hYtu7Y@*)fwef&@T=n+Xi*MvE4YgsdrR;DypD5hbl^MXWQ{A!YUf5$W)P_
z;tdtmRn$=Nri!;zB&kSN@ivua+wV|MOp8dOij@Z=J+ke|M+?v~B1J_-6;)JJRWWFL
zw33R-s&j0myI@jP=b%7@)aaaQOtzh-qMC{#E1EWamK9g9I_<iNs#Q}(EfsZC)K#(R
zZpYdxA}Y=tju5B$rAq|$u2rq4B3;G3Ezzh7TI`FmZ92ioppN}qkI2uo`IG-W*2g|8
zOGQH!EmX8r(THZhesWV4xhfi~$X1a<lb)N_M8$X6c0P|~7PaUH{>f~+)~W{0R16qg
zt2qV6`Y7oH1dD!&w^GrXyq9CQSJ6hr+@e-n75`-0R7#vkJI<0bOXS!cc!D}ofNhC<
zbD*)UqKk?JDi*5fs-l~U@hT?JWU1((;$0O(==zU}UevCNfhu~d=%b=9O`nRt$I7%b
z)XcHz7hK02o6cnNeiP|WVKX;EyjSP6K`I85)7pn=?;4(C&&jcg4^=Tt#b^~{R1BwC
zP%%oy)g1eM6(dxPRIzJR5+ypL&M9fp#<f1j-kW2;R?>QrV>f$Hb*zeUJa>UgDb4%G
zk0@VSZ(@I-Vj_)8#T*rrR7_SegF<m#r1G#@AF7z9V!DctR7{~@YvP3cR0^l!79~2$
ze9VzXTWH3{C_Vl|!7x)r|3#5mDz=rgZa%C^J8d(`s@FGuu8MiI467y0cUGeH2~AM9
zcpCeQwNc7`s$!9fEh@HBM5$OpW>tKtVyTK{Dn3`~MJVXotj%(YoF?{X%*Rj4Ccc8g
za(9%@?N_Q;rGmDmwJKIqTXmAx&=drd$b0n5f_^1+Y+}>3nsuy0WP^$eg7uAxjnu@M
zN?)n?T6MO1IyBSj`&LE0Cdr#s=Uke|ChAEMYeW;9vR6(=wyD^z;wM_mGzt|vRP0f)
zSH<@#cB<H|;&2ludUvUqwXxRrM_IF)*c+PIKd^mcV($5qIr~)nsN$>rmG;wC^DOHM
zId)$TwN5`~>E!UBibE=nsW?uic)pI3f2t?b=5s^^9k^-rJy{|BO#2>rV_WouinS+;
zom6p(lm#pISWfIuk+*h5Ptz)+VV1VODrS`{lIcAk{Z+*|6%SQBQt_LL-^sDpD?Cu~
z2a~^4TvBnKIms`m_>=iX#>vl|E6<nR((6pFQ1~&q#z<F;N#};E^EZ>5jJH(WX7Z2f
zT$-lzFOxfrcNy<7-d8d9EotH%r@8XWy^mEqp%tpZqv1alPgNAsoNhmJTX{~Nf2fh<
z1<m-&N-r5>G>22lqaiQzSj}lSA7g$-$`;U2(B-dbp#GEaOUe27MBrA+Fp7*`4P~#T
zNg8C%DjJG1p{7+08gripU4x%_&@ByU|GRE)uq4E2G8S=l-W#rxonjh_v!sM8FR7sv
z^U{p3W}z(e*BQ%c0F&|>@=bC6uBB9hUi+^hUPA>R;(Q2eNYHRpa~@}VL&KZo5Dh~}
z|3-zkG-PVX((ty1L=Ep~NYYSULk%uX)=*JHB@HQ@{o#Ir-+Goz)liwURW(#$LU!`>
zvh0%1L)MhiSXfO%v{Sx06=G{@sHLHvhI9?J$rT#vvO<fNdeYW%b(p`s&Uvvgr6c#9
zN3=3n7-c-3<-CfyKJx~zutID@4UIJP;A~^YmKs`V$kvdfp^1j3ENreJmkC*D#-!GO
ze8f-3*)3eTzjRz{4Q({o8oFp`tD&8Sj$GQ_)#;$&&tNW9q!eswcXH*OnfzI(Aj!MZ
zm4D85b4y=2<i*WkPnPu3&|5<v4ShBA*D!#E50rxan7rN8dGGN+4TCfcb}iIimXw|4
zcy;|-4i42YOv88$6Eu7|J3L%--e*2i!+V-@Kg0WsB7NXV!}}Mkc|TaAG>m4QF&f5k
zkdXdZme9Xl&L3DqV?NL@QNu<J-)eM;43lX&Xjr7-Lk%Bkn5kiwhAA4|epYR|hMJ{Q
z>hH*!s$m*MMWv(y3!)^U^s$B+TuOXbkJ_^}%+WAk!zUW%vV5Kfs`%mg6slG5x1<~4
z4B~_fG%Tbw_*)WHB&52FH7wDvR>L|COEoN`ZfjVnVY!CSG^}82q<K3ogVMqZPWoI!
zMpK)}DvI6(4OVMd!!}9M<!B{B>L)3$XEkc*EApO(4H~EeRQmKm5>@}2NAwN#r-IWr
z!c7`BYuHcLrq$k}VXH=$k+Dm|HVxY~?9lK%g-xf_?=%Sg(>gY_M`y&o^C;;LGxvOl
z+S%V_&B<!GTf>54xqCG1)lm3c(hs}<kB!XSr(s{Q+#fYq=To{C&84Ex9wfcj)c#4M
z%hx!_EgsTvSi_SZwW;-1J<^WQs#z-2NB0KwYd~Mh`&q*=4aYT{pj}bJQw=9IoYHVf
z!(|PpHJqWgH2hA33WRql#edQ0_I3QKAvGnOr(K6iiQ$c1!{=yIwH-n_e`vVKrKE6P
z!v*Glx{^<u+JCux%-opZAC0eQxU1nFEt!<?Rc_^)hU?@~ilVPekDXM9Z2qm`CKnOE
zrQx>A|Dix-e#ey@ni4~)*tk0PH9TP9Lk*9)MXLKqL!q=}>R9LY$xk#8UOSoeOv7^x
zULPbMUTAnp9`?cGLyXTEV?iHY^C1uOygtVXv5Z9WG0D$ZfRUPhdL)L5C>3IfuaWrA
zC$WMLlNaYBq38oC^!X$)e5#!6gW^L;A4>V4`Y^LoIOxNnd!pup&j;NHKUqi&cl@wU
z$5Fn34{wa}<*gY0wy9mVbJ*}9<U_4Mxb%X=X;qU=ABu2uMH#7~Vm=gic?l+$>b5EE
zLm3}Hqx&kgtPijIkkvl9oR1!_)5sOKKBz+mDLua{2CnGkeVCu(48-ywp8D^@hqV9u
zkl;fmRiys-@TLz{e5mTfTRyx^F7lzW4~ag!LoHHiqi~WBPtp=n7?T-?dSgjKsiKc=
zL2>xOrgpo=;Q<GdFEzDGmQ1HwX<WA^4UkDSAF4B<q8dH~KJXH$?L))|+M^oyaQu{2
z$A@$uGJL4(Lp_$1TV>VV6K;E@9_d7VsPDrPU!=lm>+bhf$<Hbg7HE|G@#KVtJ~Z-S
zfDZ$GXzW9_58Zs|?n90bO?>F!Lq{K7>U73Jsg)18%$vEA=03D=c}pf0f6r>oqzz+R
zx3rxP?V0}+FTJwXiL+gN=*+}sv<|kT(yq*jr0;hI+k>-xeCWxfmk+&}?B`O#zOH^h
zANsreWm9{Q4}*Oe<-=$n-t}RK5ARc89I-ams65mMx>Ihr55s&|SH1GGDwVG!HF(d5
zmeUd@{bmh%m@$F^;HQ+9LS!T<j1M1KZ4J&1w;7o=#)q*!jPqf<&-p&%L?5OV&6vRW
zfe(Xzw<tSXh!T!IS8tLJU;k`PT3hKOpL3FsM|Uo@5t-t{RI1{`bRRzU;fN1MeV9S3
zz=th9Z1rK553_yP=)<=@%;CD<&~y)%=K3&?I>wS^J}jr`^<e>L7cwql{L}|}9Ge=V
zw3sDJ7?(2MNzzFEnGdUcSk00ZK77vP3&xd<PdYf?)}*w?hc8(|d@Xr{`FdB9Pb;{=
z<zLZwT~22#-MYqoloYp#mP1nP%G(9#!E>^(nPNECR$q(T=EHU$_WH2ThwpsY!4-Eh
zeoxs7ar<728}zf6su0;l3-I$=yM6e9$sWd)YMlB`+>bu&r>(<>!#?~(p*}qBfDZ?m
zl<g8%<X(kvuKmZlwD-!!l`az3_)!JAXCtRz+|NE7^Wmlsw`jfiaKeXkKKw>8KRoWF
z52v{sr)U*)$~XOHg^av$XMFg@2O2`rfpL`1`at+AW20RAcOU-n;j#}`d^qnzweE2j
z*uun)R-{$jpFUjl;jdQ%yeVA?J0~HRI9s@D+*Kd)-mP$*0<}ooHRj86;!4NI-|%5u
z<NB2TX0oeH+-)EJ@!`G?54i5)X5N2&^p-PBd|#?PK`Q@yfxAB3^WjGKIKL7{_|S((
ztohuBq~y5AK13f@AkRPX;Xm3g^2W8T6XzKg_tb}HoIUi!8R-ijUef-rV@GP7_{f<u
z&+Q7t^XiDz(R*@CJ{__SMMr)e1#}eD@tO`nN3?OckdDGSx@X6FI6JCY?n5MZ&9%+M
z<Po{HsKcw{<6N6GDM>owmy{sV`BsLi!>=QtJ6{~u7=4Voj%~RqZTn{jbr?Fp!jO*V
zZ)6u|ZtBkc$winGDXOCwONjg1h$VEa&b3Rjq?C@*I?A}EuQMr2rY6OZayiaY72@UD
zS_K`AYKG%jZc$g6gc;w^k-&tMhukgjCi7Qy6Lq|!BWxhSK$4DR9l!hWhaV|AD(cv!
zW4De<I#P8E*72^6$~vm(=%}NUj;cD+bkx_;KnGn;uco8A?);igDQD4DtQtCM>ZqmT
z#=b~8na#Cp>xk(1A=j>>qb|$o&*E*HBK4S)nx|iU2HjUvH#y37j^u54ZhJIS$3d^v
zSVuOKEFBG*G-9Np0mZ^OI$i%qOC1%0nN4-fU6YclqnQr6E=^aM=}JZ68FDB$ySa`Q
zI*7bn)`75<j@CNb==5~CMb|OfvOfI})lSFw;+Y*+N80P?z&)X>({!b`vksdgN=Kf0
zmfBD$D<ouRSzYKZARQaCtoylkH;N_pZ4cMmJ$3YQ`G=>xeRTBI(T^?k*D-*}CMj8J
zW|K`cvj^%JL}Am+rbH47<{>&}>zJcssE%PehU<7w$8_p5eg8|x2*>jdAE{%Mj>*hN
zGfvR)fsQfE$1;-II40v6=XI7Q>hv#g+$2UKn`b5wo*Wc6WRpV5AL%&oqQVp%Q*}(!
zvH9N$Mf}p~w77r&t#GSX9a8vM#|+)sWM;C#S&ZGf#pTP1o2z4<jxB^e6XxsqM8`TE
z>vb&9u~5fSmVc^a5l!64+$A)X?Xnlluhh3{bg}MyyNAg1<TNT;rX%aJNJf_H_>60<
zVEml%3&xd<q_c{akB&8*U8{o<2`R~^+I^{G15J~TZ>hsNzSi*#t?pZq+Rg04w<Bk3
zb$YrxD?BE*T{C+Vxw@IH-id6c!{6;lm%k%3IlGmXwvO#O`uvbaHowy`C6Yyb{_fw%
z4jtd?__Ii4Cv|`fHnWNUpkt4Y7(ep(u~)}F9slaML!+aJ(s4}3aUDOAhiR#<6fa#2
zAJlP(_Nct|e%5iAO6i4fx^q9IP`>^V^8bf%vsT1?GCA(`T$yylx3m*FPSV2B@wbjs
zI!^1jqT?!8Jfq{*!SJPK_PKiAUv!++@vDw=T=a*I^GtrDCCP*uGFRmzyrAPRSMsNh
zi!QI(B!)^a>A37lT5XP<W7MxWDefBg@H$P+tvE`t6XRCTjJrv#>$pveXnNefNpX|6
z$NfXIyeO{gLWh?)8NRFI9#z!wl%hQ)=Dv;xI^DDYf3pO7LGgc6;~weAJ3a0(=}e8g
zwk+<6juTtsC_TF#_argqnT{7aUh3%bDDF8ejjQ3RN1fLT=iaMZwOON_vPJUx5$nfJ
zKX&<%&yW0ml=b6vKi*HSRlpCAAA%nR{m#{-*Ze5tM`%)7p&aGh-Q>c4x)&>+$fj_D
z=tnWu@%kaLT=v6YiNaZxQDdZ9J|;S&-;V&3AY-U)m=r=>*JPxoi!dqb|KByD;;y^|
zlahXvVp7_bm+}Aa{{M1*zz^GxE`F5vqk<oae!N2?y-|Vg6C{jdZut?<B+Qt=NTqKu
zd6V%iKi+0C^FT2wO7bJwj~qXm(Ejg7MJ|f^QOS=~=5-h=`%#lg6~?NJX^do~njh7f
z*Kj4P|8@?_wK!Xw#_P)WU6ATBug93~$}^bsv7Apz)o0$ok4!(Z{AlRvH1?wr^S;fT
zGp=k`zQ^lalWFQl8<ylUHgijx`_Y1VOU72NytN+*Tb;{Il-jbe9b<bxIxy+T*ol#J
zI{Q((wd3lpesuF=q92pEs5|3OKYB3f$=J(}-hT99PE`i_(U*BYSJK~)0nB}q9Giof
z4`zJV)fwVP1I^i!DGl>uILqIokoIE)^RbL08Amaa=4d8k7?(|o8OLNi;{?VJ7)Sr)
zTzs4C$A^9__v14^KJugF8?hhzF~g53tV0S@{g}plx+^Jnx*W-8a(1pCvt0RXKjyf6
z$UBZ>=lL<;k55>*z>mdD7BYUyxQLN7N0xQweTg4SS+b1rmt2{IE10kLV~ro5yZT=+
zS?R|rS8~6b^HX9iXTM=w$GF~)FI}AtOuq8tYbLM4W+U@&{n+HkX6D-&w=j~;txUH0
z@oL~C`Oc3WZt3@aG~=k)?Z*#(&{ML*23dP(^Y`O~A1D3T=f{tJ9P;C^AN&0%J;*9M
z!aCrmn{ORXX>6;sgMRcJZW(z>6CR;8Sl;^CkCyLQm4;YHX(bM^8jZ7#`Qe+Kahx@&
zh;+)gjyc83r~R1xzSU)_b;b{B{TIfwjFkP=k8>{njR{pe@5cq2?f^;!oD0Q&`f<^Z
zzx*(NkSTk~kIS@$22db?D}G${<AEO!{kZ1Gbw6(TowL~+e&;lp&b0sb<8kdUNp7<I
z^K|E-yxUy*4@)TfuOD|@ewWET#{0BPCOc=gkI0D2pKwvWfYS=4|NMCB)_vy3bGA(K
z7c6|q7{khW0?5lG)~)-ZnO&;7^MGN&0A33qr%x*JLID&GpjZ7S{s26zskr(=0HVvi
zOe97*K+hD%QeD+8)tLAK(3!j%MIhk#B*;j_2q47VWGv#!i!vz|KyfA|T=|0OF{J}2
z6Mz<kFNm@MydJ>h06q+$TmT55egF*u&Z$@V08#^}96*Ht;sUS&h!5Z$E~4Mm;Q)P%
zBQBBpe4|1F8E5h)<6DexGg9e)kMn=$jU#2UnZ(tT8B-W52Iyj%)7<_Rj>6-(f>i=Y
z4<OLouF4kD0{A{D?jtF#S^(7ps1ZO-mPZ1p6QFBfP6ukcZ6&r1Q#SHpOkI}LW3;Cy
zl8{mcXQPb&&WgzlAS;000rUx=VE~N+XdOVC02&8S^k#+W&y<`1mR5_)X6&@a`9q-z
z*KNv}%h-&jh6$Cn2%shNR<48`)xShS+W@)-oEOZJPCFiKd&Uj{qz$w>GVc^XXC^lF
z#Bf~EC4ld~jUhs{y0O9Tj6E28Qgku-tDv*D_YI(50OQF&FP)d#^$$2FAp-*#5I~_K
zj<sMgc2EF=19+EfNoL%L0ERFh$~cU1IOBVa?=zBddK=zI=A#%#Gmddf#|ALY<&QSx
zn-IVU0Ze4c;MBND0bI`G{LH6rQ1+t$rUbAjfV}}s4PY9p?FwKzlh3K!0el?5i~we`
zWMKfG1~7{`8JQix9GA}x(1QTZ?9XTX#FZ}y;H~D)e;?ytR<Mn@MFA}4q9u&W8J99H
z3($M%9q&>4j3p}=Nw_iq8uj`Bz6@X$3rS}+lQjXXWwOqd$6qY4App9l@-<6{d=;Pv
z+?>lS->_t30N)0%$<^N;z-E_k31BPpZLWl-?>m?8px|e|)0I%^ZkPWMK=vf(khCv=
z9|O1$z@Gu^=hEW=oZvwEDS!j6{y`>(0yykSjxagO_%q|N0B-O3-xafy0sO%+c`AS^
z)#6UG!WqV20yrDMugrJebbNS@Ig#H2_}%4?tb!DK=L2-PIF9y#i{$VCo(AwNfM&^Y
zmnb$^b6So?S*m*_fU5yq3*b7-A28ks&|PP^$@~r@Y2KoKy8NF2{$*Y{+4=hLUFP@P
z()$6lc;WQ$p(}Y5z+;y`3E)5G#a23h<UM!g`GR;s3+km4MK1%02|7Ga5P6x<OSxlR
zLh}4UCk`nU2%=yRuW`0e5MCyQgZQdctcSV4C^C|Mg^sb3%jF;x<|<=N`ob`M_<M4U
z9z>5IdIsSSA`nC{=<NSS5TT%R@EW;6G=nG-M5!Q32eD>fQqdqv1o3ob^I}0158}eg
z<{#uwAo;a@NhB;8MC$D@kx@^>WrBzgB1}htASnAfBaw1U5JY)bQh`Yvqs4f4b4&vD
zB#5ja8V2zu3u`gH6~x;?BnI(L5FMX}D+iGjM0#_(5@(ZHhgwNtQZWcJMOo5JWeH`g
zFsT|uS`gKk*CfyHOeVGJoUOswBd_(UZtWl<Y`hL*gCL^M!*zqG$7<<8WRQe8S*XwC
zuT?3p>UL;uXR_qe=ix>{Y<iZS8$>fEjf2PzA}5F@ud=Dqg}*aMp=l5!o7+UlT63=3
zIfxcPv<#vZcc66;ZFpSMzKLy13eUnFS>7&)_Ca*uDz91}QP?6Qlsd7nMYN3_M3*3_
zA~~ch*XqVa-5E(U;aRv>5WRW!^Bd?BMBgC(<*4WvME@YZ4&s|21_UuMi1{oZ6vW^l
z#s)DiNH?)K@k8l-CPRW48pJT>!x`VB&bQD>VP13lmF5T<uUl(W5TluoaU~m@+v9_n
zz}cCM9|Z9clZlLz7$*nuA@#Fo_A8rzwW&2Fh^bsOEr=ORsAxKqkEyH2GhS(?oi9dY
zRuHpYojF0w4dPgHd!8$~&RzW^hy_6`4B}IkFAHKhlSM%+4q{0V2Se$vY%XQFIH~w&
zL9Af@We}eS@kJ2pI7@0PX*Drl#kiU=d#mFaN^5DEH_Ron-qkNOrW0j1&|-Hb9~Dd3
z7{s^KZV-nkgo4=2MLz_wg~<+Ab1Rc=K~!y)vOS3JTzQ@r&J=tf#7>s%V%*J`-n1zd
zQQ8y4UY6`*B*~9V_6PA(5C@nqPRi|nHtUuC;UG>2aVCf(uKv*=ekOkgaom+WnW3Ht
z;v{FuX{Ul%Sv5-4+YWB~3kxp<=>`UzW&Udr=a~G)_(u@M4%GXdxzWNtAH?*|kuBL_
zs(vwuzgT`Nh)Y3S4&nx98!ghW1aXb|-?hS5nJnL*be+k=9Fgk&&HN@~fdlnOa+~=-
zjEU^1JIwDg-V5SBlLtXOXYw$JM?pMhPSyVl;)%=u+}wmDPlI?yyH>wi#M4{YFSzt2
zV~l}32K^V@DX)Qi2HqXwgmJ9lETx{O#7;Nc5h-Axpn=y69BI_1xPcM|3NbIt=rJHL
z5gGjk8m&t48juV;cp8=sC<fZMuvG(^0Uzto4xlq3gCwUc5yF6hpaH``h)atYC~ClD
zPFoG>P_2EdQiv2YP@#SsA|(x!GEm-d4jGevNh-}Gr$|B>17!{T_Dj<1j4)7+2}$le
z2$Loe!U_iB3|I!@4LsZtLq$t#D}=<~Fz}{<UqUz=!dnL3HlT)}g^+0A9Rs$3E_D6h
zK(c{U1C<S=7#R3CSkXWw17o)9CmSS;XkkAx!=JRUiB~aD)j(SV?F^(DsAf2q{hJ!7
zZlH#N9M0A>P>V?e1GSluPJIIr=5<_2T?6%8o^Bw+<xwVQFBG6!bSpbyrhzQCv>}s5
z1{yQTW)!N&&>fqLOG!-(=T_K!)nlkuu7PIcUeTh|oJk7<Et#}pY|Yq)k#y)4*6j^+
zFwmK8(qlyL)Jg7WI1kl!GMuOO$YzQd8@OZ=>1v>xfxR@32D%&QVc;_ZD-85B(96JR
za-D(RwD}ttYG9awz6Lr?mj{q<Nwa!PKQ`E(am2u^LFD{3`AGh*fx#@K<~Fr(9(WwW
z`b0=F+`tIV(z9LfvD*8L<-D0A4UA&meWCN{#PJsPSOen>y7?J%42(B0!N61l(+qrI
zV4{H!4UiFfYI2f+$%gYV?9CSZbWBUTWJ~)a15+p%TH5p+LF1No+><PNdU3je83tw=
z_}KX0^Oe0@+OsGO#x|wyN&V!>Eu9X}HSj2!{E2}DOy)7pC+9qGm9RUq(7>k#mKs=Q
zV0lY>k%7eqmKazwsMg`*IdtnLJ>*OGaDLy?o_#2~+`#aDGX1HP)+Ot7aqDvfUyx%J
zYqNos6sYB_wFcH1SjC*OtH};?>hK>e?ezw}r1h>_-x%27>U_=QD;i56lWtWd`!^nB
zZ8Y#LYi=T^txhEeQZ1VIEe5t4*k)k6f!$QGmHnN89R_yMa&BdR&z;%HZeKRAR>2ub
zFIqZ2q#hoAP5Oa0gf%IY-DBYNrU(gtq_{G0j@GY%pSTv49$|98z(FR57!Nace9>y$
zgRG+lel~ESTFfy6Ck>pUaC)9~oZOp`e1frYE644p4d-6avj)yE`Gs-9^wK0;lGW)~
z1OI)I(Y;af?*{%b@YKLF1Lw)Cftv<y8Tiw{MFZCj=Z~|$3|umBl{sZE8@NIf(LSNp
zp^WaW?Ad3cB}!Pmrpwo83oT($_6BSIO<~r`Uee0m-pamh;2#z~Ht?^3I|lC4F3OU-
zjQ7Zao`zKYOe@D@4-MRHWz(&&k7!xNXOVo--d5Ds69WZ)ijwAk2E^7j$)6i|LBbFU
zhVYWMcf+ETH{_6*5YXDr6LNY*BsPS6A>`+xt5akeNKLlzS_p+g@UonyxNrzU2x17H
z5S^u4^dJvCTt;20a=pNB(_@?mRYH(MP(o<k+UX%F(4-7$ZTmvdLs%2S+7SF91gPB*
zN`?>&!3e=5Ya!=jUZIflMJoC%SHIjkl>L55v}g#$sOTH#3u5{2RX9W+4+>#sYn!sA
zLMR==vXJvSQ%Yq*$PJ-c2xUWfJ%n;Jzz|YGsK^TCLwJ)(g%ILG&J{c>gfL6uIZKk|
z+hP)Eq?{cxBZee|Z?VqXbO;FH9WF{DNeHA&3e+y?{6AI-p=t<eA*6Dx%8XQ6g*?Wu
zDy_znnjzE*p}JdI!!4~HLL`JnAv6x5P6%~bp?(PUTupt3^J6wWgbbQ5`bY;O*(Z4e
z*2xSxmrAmjH)MRbw9~!p5OP9j5<*iJcKk4Q^DM{It5PClp*a^#W^55c%Me=8JciIW
zgnl8kVR@$zI)~6Ugm#>5A3}!^I)*@YUZts7vD0Qa+zz2j2t7jR8A8_(x`pULEoY{v
zl#miRgc>D6*eitIA@rdha&KSt>Qzzy5C()WDumG?3=CmV2tz^`8p2?<Mmq0OXt_3v
z&WITn!tfAAgfNm7-s4hpR?PeCtK;+rA)W~8203cx{+KZ#j1A!f*V?!c#)mM0M?_{X
zzw5l4lt}NRF%v_W#A=j%)x!@%_$Y)aAxsTnk!xXE2(v?&6T<WmKBh(+g=bL2hA@ly
zX_~=CVTu{TqBCRWhA@vSE(~ElD|`~df)HM*5mM`<M);{~|G|Y~i(S4Xgr&@1X)br=
zpD|g%_&J3Hla-9C7*{jC3SBb3E`)DG*c8J05WWmyLkM4m@J$FO4|~53;n()b8^03A
zJq*v?owcsDO=M#TyP0ebVM_=<hOj?`_%Y$FA#4j_J2}eKCszx9$HE;UoNsMUmt#qx
z&41zVL)gjkU5vXKe+Xeu2z#0DV<hE6?ee|CpF%hg!jTY;hUixh4ux=-b*7C8lS2P3
zv1InGK92IwAvy!W8P~$`5Ke?ZJ)xq(LP5flA)IncPcxxbPK>NXMZbn{E`-}A{xR`e
z2)|RQiLi-3sQ<J#nkZo6LI{6`aEsJJpjf&{YHw;p{tDrb>CV5amqNJAMZ~X!aMk74
zm|SPP!T2}hO~%TlWBv)@U)rT<uQO5Ma??8@+~p$TV@9>Q7sCAz9<YS|?0yn*Zr6Vp
z!XuVYTaTGM&58Lh<op}{l<^rOWuJ%e!sWqAF?md<^RbM188!a%Iv;Z?n*C2)K@+c;
z2$%?(C}g6r3C)DhgvW$n;)mtQk_pkoz&uHm9<;Uzy_}_6`_!5BWfO`CB2FUS#*S-a
zQ!U*DDf>;VelNRr8=E)@4HF>~<!Rt1OcO;+6gN@Aq(`othRAX;6K&W6ak4{Alr&M=
z{NEjnrA!QAVHsCa*2L>BFUJHXVs^(;#W)imx3MejNL`s2v6!!>j<vB9OuS)YhKZS^
zZ{jTzolV##-ZqhFBGW{ciFZsSnW$l+rio+|DJCkJNHy{D&B(niY0H+zRy1+7V{Q6o
zYh@EvOr)8pMy~5od&ZTdswVDtN~P5Ik4ER)*sZT8^_i7e-2{EkHD-EZEfcj(WSEGW
zh?uBjqMnI#6H7;C)-|0kuAUI98TZn+>`0?;$c`FT``(;H`r2uYNY;kIwdq@{^-VOO
z;Or1CoY|0$N)1gkGSSLJYZHx4WSeMeB9|<GoR~wgeZ4{x^4{FU&i|zM8=5)dlLpO9
zG&j-0L`zCq1}Ur$N7hzKo_r!{^)aWP!eX(FiMA%%nP_i<K6py4(^qJzOC3ziStNEe
z(TVK$PNVO=-X2i9?v<p4kCN7pNa$jstBH{&Mw#elqB}*1i9sfMnCNMuuZeypdYR~L
z;-_)7`<NhuOE0I=cW=o)^|066MEbhx?3s!EO$;FCFHHOEM$-N5S@S<m9BkrU6T?ls
zXJX~YwT6(FObjz|Iwgs|rdnr4;^Q{<u_=kgc4W<)pZLCs#oq7;6U50&G{BhNX`@Yy
zG4UZyfr+suy+8vW(9pP*@g^#EmnTr?XD5!>p4NIsV&5r=<@3suOiZR=UL^L5rd~Xr
zM4t&>F(+|~iK!F}vlGW%O`_gTGcldw$^`l6#*{?*@GE@^w)_m|bHKAq%r>#h#BOq$
ziMb|L(L$hJnV4^42~D?&PfRQ@@u`VLBo9aEd&di@%E;Oiw1QtxPh3oE@L^Kbi{5QZ
z(>iZYQ`*|gOe{C?88t^?GbfS4qvFiO1N~Zk{!#dI6JL;XsEK1qN2VnnpPP7Ma~c_>
zqBSPgn)uelCKKyStT*wsiEm7NX<`F~?$sm;Ez<nT#Es2qYsO@5i>B70(4CSP`93Xv
zPU1$>`C>ACuXeMEEhe^`_|C*u6Wd5WJMnHeIqzbToI`#-bR&sA=)A+k_a=671l~<=
zNOj5h^6pM&elW4e#2FL6nAmG#pNYdJj+pq-#JPXc50F6<`zbtVx~Dn@X>m>bH$7>I
zIQK>P5VbxslhV{V|HspHfZ1@pZ>$z=^<d{txik0P_s-1TRd+WQ8^LO8Eusgj-ql+K
zkwltEh!O-5LJ~ypC5;e7LX;3hk3_T}M6db3^ZDKXKJ&cKd%p9X_MPvXnLB&toa*}$
zus;F6Cg2eL?StySa4Ji{K@Pyw<Q;jE{%X{MEpq3kFDU-(VNPP_lQ{s{cO<XRs(v&9
z#}c@|I?l0B4v++#=4eU)M>M<OByRySYSuJMV+GiuXA<y70{%?ES^7iB8!toGrgOZ6
zbE0e!Porj!pJ%%+CSOXx-wC*ofQz*4tm;E6Hsu-3lP@N(ol>1@xg#1}X3^UsS0w+V
z6C&3Va6JL#6qHxIk5>NWY?*-D3AmBqofUgikmQ9c1@9yv)H0G!L7alS3Ao2O>T>P-
z33$jUw0a8pg9Ox1OCoucfX5>IF9CTKFE)?ht(FmTZw+Uy()kq>P*7a)R(lpyP)I>w
zXw71xR#@Rb-B3iLZY>NIRj}*3ssShE=>sasz0GmiON(c|ShIwJc+n}TptOQA3Q9?k
z8O~T;uJVQ2ORJ?63#XKo<RniksGz`NK?*7=sH8wq(B`gt>P*Q|>l-8pzp%b$)lP{%
z1*!r~!LpMD4aIxD<)sU0Jkr~8(68X(t>&gkYUf0Q3PK881&Ip4%sVC83I@E<Bpge-
zH(bb3yj>Z0e%Zvoqe(=;;l^oKB1zRnAxW^Zf+|9)3RV+5_`dfA*@pA!R8CQls^BFZ
z!*x8Ppr(SdD!+(Cnu1yi-tysXA8IS8qhP**1q#v?JgcBTYoeg8g69-;QqWmJJq7g@
zv{LZAf(8mQ6l5tVc-URN+-;~}=2Ewjf^#{oPwjLYD`=viDXprYnSwp5QdTr-Q{lg+
zeOI}IJESmJyg|w43fgUVv*|zUQmk!m3k5BO?<yCeq&2Nd1qJO{`W|=vDtGCGq_!+>
zT+*+nnsi*6(m_E-1vl5a<a3uaCV4@E@BWh7ML~{&o(g&?=&GQbg6@*ZvbVF7GHUTU
za=mE}1vQSQ++AIh$jqY(dMoIoAXo7g)$>}DljoDVZMb)CUj_XXy#IZPbIVdj{osDI
z*d3@~kb-FnK2$JR!4L(nD_lE`p$cA9FhapdcEQ)~Fa^Wus7u_JSf4E}SLPF2Eh;zT
zclTulqZG{RmWQ$L)lYqePWw%n*A%>};JY=RCULZa|5m3=-sx66nEEEWiFHsgLBZP!
z#wZw1<4jCCke>REg7@e}C*83M7#zBw=DV!Pf|{pqHy+1I?sBV@&DzwU7L||8icC~6
zNx@_VA1Elg&a-Oc<z8c1jVTKLTIx3W$>UQMRNv<jUeguKQt+{Y8SG*OABlb5t5=Ju
z-kKdZa6%HvY<ky8cdmjt3Rd1|{7KA)tHvi){L-DL;8TSk-r{q5_?Pa99(joT2!gm!
z!50etRd9nAQ?OXUCIy=nEK#sj!8!%&Ig}JESFlRKY8v?ux2sfm1q+f={<X4x{MlU-
zEAhqj__Z|SN|#q;Mal*R8x?$`;No`oOV&YcT7HlFl^AMk>&VxVs!*L;RQ~6v`>o<_
z)Lgzvt?v|Uq0=hZt6-~w?>P@B_^o@~HV)oZ?lVO*eo(NT6+4v5Yln~pD{E4|Q^Ai4
zNO=9EfE6Iwzt!EX;AaISymGdc*hjA5w1VFi{K8?iA>|13XRQ<*RPZYYUC;DG9O(*f
zwMn~v+#R|+<;LB{9ebv)nUr)?!7+}|M=jZL#}%AVaEd-wzf{eIHBZueH@Vm9wY$_H
zi$Pv*k4`_M;14!m!6gNM(&y)tPF$Mumx8kj{;8Kb=}>Cf=d#WzIIm#sCU<A?bm9eC
z`(|U3zZG1j8mD)0<85D*yQ1K#f(=L9W4qi@``q0(n_lN+vfbU;CT+-emn7lY)SIj}
zozsW*KHOGtM?qyDs`$Kn#9aj?e2Dkqo`S+%^W0bPfF_mO$D_3=1$=m<;4$5vrnqS5
zl_Votm(Altvo&#)Fo%3T#QD6(Lh}5gP+@kSf<h=MB&4tpPsJofd?*^@#e@|1fi6Vl
zl0KC3!SW&CL+O}Kf)8bU7}dipE0S`8<prM>tRTqb6@91_<1IhTqX^HNo#pdEjmb43
zx}YKG7c_lf5@y0H=tGhSLxPk*NLbJobOc==5`{zrXCL`r4zJw_RrR5o4-I_C@S(a7
z-(}QF_2C(x=YchRNcO?F**Halh1YuHqNWdNKGg9c-G?QI-LY0yEg$l4cF&YZt<C0t
z=Qca-KI=nWAAVov*7srN@|5R%7*ssHp78S%lgO!0d9Zz?p%0CGXywC=)ox=Sn)s0I
zLkl08`jF{EmJbzHy2t8frLJ~Knu*$_LYW5-=Wi}iH76%AVcWeaEqx%?sGHR`C;Ghb
z);_c$@xiU1#I)mbqJwgx)al?uM;`{VN<I`TmhplQ-F@icLnj|P`_ON%`^U<ZTYKFu
zKIE{wefVjw%i!tVZZ{u#|Ll>TKJ=od5B+_J`jG2GAG+4z)bD=fhn&#6=V21gexK$<
zDeNn$NV<PfbAS(97T4q~_w}Dm4)snQ?86WrM*8rw4;^~s8S29@A71id&k^@U+O}4i
zyR+jqHc0*8*T%zr7(wr9llHi6L|y7ej^yW!a+D8m`0(|VX0Q10s?WQ-z2-yVrS51S
zx;$*Kd4v194^>yzoY6Uj!Z$^e%DfGY@!=gG&ie3|4`Y3J*M~VieB#4<K8*8WiVstL
z7|-GcmHhFdJ=ur%g-`HdqR;!!&Lkf`*qP@+w+Q*og&uz3!xJ*ihYx-Dc0uH0AEtAt
zwu*ctNlFYVIfK3L!{%0z&$>p+Rw+Bn2j=j`JNcQMlG&nm?)QRoeVFIN4?gVl;Zq+z
z^I@Y8U;6O55A%Ik>BA}?7O=g=+$BCN<+I0gc^3Ncg%68-+;hX-kmJ4gUhD%m03?b3
zE_0dB+X!L>Q~i>;T#!2_e6uT)TY@a?o4DGCwLYx#VT}(A^5W)!>m~mUoGT`lytO5R
z`6SQHPyC8D<N#qO`tXhDY!dv|hy6Lx(o*7P`fyRVOL3Q5gKqWVdmnbts%6}5KD>3@
zKYMM)cDhPwms?D5gGUDW?}m%~FB09%hch&6tH>@Nc8lqHtv7%6;kTs79(L=Xk~CM`
z5^b*!`@~lJCF+0=zetc~JUut*pbx+La7ZM_1rG}z5&TW?sNgZde$vG!gr5{VC3sr!
zcflt*%>NJRvOj%bZ!&n!hx0z<QxT`)f)5vcxXWt$aLI?ieYoz!zdl^{;fiE(&4;Tr
z#k36O#)kaE;WMZt9qi3PC8y8G|HPMW(2IPyCHnL+dem(nW_NB?dU56*5pLU;hr;{9
z=~}<mk9*+5L(cpnVU_Zzc<jS}tV2$;_p0o?gGzd?RW&WI>Nzt@$*-b-ief5?t0<@<
zf7fUc)w6IR!NP)12|k>fhw`E-hE|SfU86*LbqN)vRFqZ`uX^<_sUo#&lwHG85-Uf_
zF!Sxj2QMnws%w<N@+zKI@vVkU8Y-x$sN$ZA`zk7_NKlchqPGe~g-^vZDr%}wRcI<V
z3qnMN&bnQ)!zyeQhKlbyxqgwDf{e0+1O$VEAwj6zBgI<-pK`-?RJf|QN|TEib1OOh
zx<*NoR8&?`O+|HP{#S8oR*{5N1sTl$a@jRsdGE|?s7O|kB65Cq=hSmjRlIS}TQPO1
zL-8~fwN$iJ(Mm;a6?Ih9Q&C^Vg8mKDRqPz>KBwYYNn2O2e?jkSN~Zm6ep~~U3s%cE
zRMAL9hQwaq?yY8TtYTbar>Tle6-`ubHSBQPgfH&f&7>7n7$r;7vm{A#!EC`6OtQ;c
zwf?+{)+%05(TSw9+eSq@743z$Rk62<LtzI=Lgk5F;w#Nf?kJh>{@CS*jh$6=RnblK
zyQs)fv8cKC4JK0!xo&q?(M!^{U*PtTHue-`lX*oY%AB3tM@3&18&qthlc?ygVv35X
zDh8++sA80gS5$AAA}hda5c^BT5Ea9BlxA?K%43O;IV^se;|x>rl8U-PXSj+HG<8LX
zoGbcBMoREy!SQX&yedV%q2f&yuc=tw-Ca1$8Li@Vk(0L_?!2YqZ58jUn4n^eig#3u
zmxgb<Tw$z=_f-7(*ls<_d6zEzv_mpZ(y~gQ&X4Qi7TS8to~U9HH6Pd$<DZ?Z;<JD4
z%*)(L#rwkI15w`fW2tE>K2-4q?WSV7iWw?Cp%Vt;wrq}{sp2CQv*`0T>{4#}$C6~W
ziaA2ow)MVld*pcE7ne5U=F-!;M(3&cRK=O7)3KfVnTpR<%%@GdISZxcBnwpDH+zyW
zRrdwSi=SkrVx5X5!k4O8#u4|(Uan%Lid7<9!C$YL&e$@}#RqoZu(O&@($`t@1iAal
zx!TOFVHa=l;d&J}9(mpLrHZdq98+;z#n&pnQSq~iJsjOCHmTm%zB`D#T02`fuG5|G
zI2L-jywnlSR*sY^ar#~RdntXJitQ>^<a+Hb)GYG{j>p!{P8C0@oI;(SRQy}s;c(j}
z*)r$dLY7>%_o~>Z;-HFOY1ppbTG{=Q;V*RfVa~!d=YR?;$N3@Pw9uSGDvn4g;oa(C
z71t{`*_E8%R2)^YD`av`sNKOOo=|a8#U&Mgt2m|NG~GbOSrvuLIQbshzjGM=WA7f<
z^o)u>gfG2hPYpPKsW`{lN-vz}<j;QT<aD3sYE`_CJLnY+N;qd#r_en2vWhEoxt{s&
zsJN=)9~HM$+*a{aSN9rQO7jZ8E_mXm-S4aT2Lqj(D%c!0WMW&dEoJ|+YnE~NZ7(yw
ztKu&?zx#oThjbDRZ)$kNX`eHRhK3scQ;|nQB@GE0@@mMZp{Ryp8saqM=S7=q-bapQ
zT+eR{XgFm!1vP~Exp7Y~|H2xc(!A1n716-TkWgM+(#C5jA*6pDPgqhzDG8R=@U)OJ
z8p;YOr}4lVhhwC?1gTsm9Cx$2Q$d0iHRO>GniLH_4api(M6PP^YcPdtg1VqVZ0)?8
z=vW#88XOJ#S~@|A0xK^h#Hd_nRe$e$Oj`rL&EyxFynH<zS3{zPE^eNPhOFWaZw;JO
zlQdM;K+?LuQ$^!q506(9tS-o44Gl}9E=j6}XEZ#kp{|CS8aD1J-R(K2j)pW1wKUWg
zi?vvs%o+ZpNaF4*HjS39VaQkUB+p6p>WL2RaOZfb`WhN&p06%_u@sF=(nv#N4ZSo(
zH8j!CR6~0W9W-QWXr`gLhHPGy9JV@3!>?T(4y)Dc;#+8FsiB?Z-%9hARsXj-(uRcg
zyl1y&^4oUUc8IIHM%!xG(=|G+gFCdbbKtzcqlOnWbeFWORVUu2OE_IMbf%%C-v@sc
z&x+*;rz=vYn}+f|Qb>Ae-d&X+%=VPzyYf1@8hUFOs9}&avyX=U8s6&Q^d+g|&<_2i
znFWTH8X)q^uO=~eFioUkgocqChSI!!otN15md=YBhDoqqK_`E*Q%iFw9IoNZ!A{p5
z$uDc*pctj$6(JmtuWEQr!|QZ_TlQ!TgE>Vzg*a468eOyb?L6ggX?R=1XBs}&Fh=7S
z&6uQNvWBr5-j!BN&~Rs<`=0RejP09eoEVVX7qH3ivv+d6DRKXm_=%!3JAcU!G)&R(
ziH5lvrfTS_J0EG7rD2+e4>e2|$qWsLW+s>E<T93IrUXm&aXuD9{cAXLG|XmS4D+Th
zddsYDBL6&J=0JusPs68DP{)S_SZ<bl$}wNV0=gef!Q}K(j>m*jD>W<<&1D*vYgnvd
ziRRrkmTKTqZKfrs<w;hE+TH6Ra&t)hDh;dIm2`4W^%^#4U{|iyu#WyY$a9;N+cs}}
zD<0Wr3pfX^+jOe0G<?IxHg&$%5ML;xMP-Lm6LaHE3!623$C*b*f{ra3wraSi;l76N
zHEh#xR>NN!wrkj-;UIlj!w(vEYB)fJMr8*a4gbi}HSE^#XV>UY8iuE(lKf1k<zUya
zpQE*jyO(`bHJxO6*jvSF4oT$tv{{YI{-R;P^O4+LO~V69<ZMfuf6af0GvQZxe&@Vb
zBjd1!BO1=}iT$Gen}(ypkHsX%HJpg?lR{1jp62A4RhCK4u$}|bhHR+$2kS<U-B6R)
z>I*67G@RFPUBkZ`E@-%@;R<Jitg>7S`nYTK5@+CU(UT`r|JHC>L$&9Vcn#`S|Eh)>
z-J<_+5-T6MrlHaMHRCFzW_OF;&~Q`3UCy6N^V1rwn<USu6uG70HvPF<l-C_0#TzBx
zp3{o|%738Yp@uR#%IbK;$(HTqq^e_oixgUh{{VfIk(^gYKHXb9SxU#836VIR-<wAY
z>c}s`0)mX4{z{ud67^%*NMRjM>D-Yc!mEgoqB@GjB*k@<5FQ_sl+@9!YELR({41@r
zj<rKO?Xa4b)4?Y67+j*fj#59?WD!s6`0Ri?e@}7+9Tjy%k0z6M`?Iv7!>6OVjv6{t
z9h#1Sj-bxfN*LHGl|Od=dQ{fX(Q#UiU+|T&ZA=|Ri}{pIA_*~v_uAMx9BBe{gmoUM
zn&NyHM|5?r(1^4f)TNq^@!g_{IwCs$Y@3=SNK#ox72#ENG;Wtl<vWi{Qa|sVR>?Y2
zboA8GOGheS{_E(XBS%L~9celm>S&~+mX6vwp3_lJN1Nh}>gY(<@hpcx-w1=3r!`vC
zEn1hup<DE5w<vq<dbg<3JzBMUw7!l8tm^pG3_+46-J^|lG||ykM>`!&b*yXHFbi#(
z>G=3!{Y(k=>K@I~@p|{@!tT-LI*8diS_o+=NJ%Rp&kMF@tzz=c-J|Vwob4X%sPlg!
zc-TGKK}X+_jVRGyY1xU5ZD-f)5v?C;(^&`6=n<v2bk*_6!ullLXu5H2x{Hy^r>6DL
zabZ$i_TJ=HJ)%(^y>;}_kxN_kh&CLR+-qQ3Umbs!jr6A{=;$YW@}xLQ1_~dl<3$~V
zgbx-RB1nZ%J)(0@sU*W<5=M>CF;d457Is>AS;r_HbxpqFz$-dl)p?3BZW(w@$7ptq
zfm#M$*YSpqBRYQ5@urTqbS%}eOvl?g#^{(ulj?X!$5<VcbWGOqu8#L~{JbFReI4W2
zQnmSbnr?mE#N%1ye4#OZeH?c~ouFf)j;TGOe0?!<Va5kK`1)eHj;|+`oI<&dX(FNU
zLm}K4pDQpKoS|c;jx%kV4gEUhBO%=6nR{_8qmgxdp@Zur=g`zT=IY@3x=%S?=m}-r
zc^uuUTVY@0&-ovy^>GV1c8a%{Ppg)37YGjQok(6GGv&t~QD(A8$71?(kLVIQ{Lzfb
zC7W}<=;b<A==hF)sAHv$RXV=W@vV;4y0^FIdL0{dtl{9LSqju$N0%<vqFm4D;~w5t
zpBr_2$p*5{0}~J4%KnOdy{f+N^Z1wEYI$IFeJ=c4ex~#$-P>e%eXsPyp3%+BXJ;m_
zOKUT>>iC|6k%rZ=jbo&zw<Y*a)}ffYUB?a~``UK-fkV5ex9|OrI*<Nwf6}pw^F~tk
zggh;7RB6|0Vb&fULwZIJ>f96;dv)yNbg?mGzm8vY9MJiCp>vNznVolL@HH1NMm^{n
zp=}T8ILvPC>1{*W=wQaYp3$Q^j_D|9ppb#%I!@@gtmBG~lR8e(XdE3<rPK7c%#=Sk
z5tVd**HPzw*E2Li&nSb94`tFB{?c)dj#tdR#PNQ<<#`>iy{}MyLB~bi+v9!6wXDTM
z5)bx_{w-?xr<A1fRUQAZH+4MLagA<P#=WWImX7N>{?&1VmFXF6TrZtFa`W^A!*Flw
zxTE8~jt4sKa&Q%_drwkfeg^r3MQO}|7vJU)A98B4Jo2CJo#>(UismyslE*+^A%%NI
z8H_WK-|&o_RlzMFgvU>i7dG&e0mFdbKoJ8)4Loh2f`MWNiW}ap-DM55ypvtRKuH6o
zgvT3LyexBRlaxoTQ%W1&jyGitZn)5qYCQR<>Zd8?43sy#b*FoWX0t~|{G3tIKqUhz
z>r=r^AR6!)o{`gfdA8+?M<TD*y`q}v=mz@u<7?_}_p;4R1D1g*2C5neFqMI@0o%a9
zUeWQrqUoD5Lk3`QMW45`G|@5O8i*K3GSEFKJJCS>9wkcWXw07q#L5QBR%*VrS9J1&
ztOdQI)eKZOyf>4n25Ja7vp6f+@Xk_6+1)9{0E0a2fcT7o*^8UjG%$jvW$bCqB()9H
zF|ddRF_3QHSp)qH^fyq~z;gzkH_+NZJyyU#a|7818W_khkZIt-fy{;m8X0I}VCm!R
z-+D#==@o5kpkad)UInAkrUvd!EBVs>Y+p3m%)tB}&8tVFSq6B#6iK5$I=kgvYPMjH
z80fr7C2wVT=NbJRaN8JY%eEWn!KRgP+ZpI+-~|Ki4ex9nULDxK-)6Rmde-Y?po@VV
zX2KpX>8>x~9<QI08;y1~(2dnA>VB+xd#!IQ)`DxcdrGhM5qU2IQ3J0oXq;=Hw}Gzr
zvNM;ZcDb2Fa$|F5Ujw6~(Ir>2e%hKbfSpBqQrW;D1A`5WWS_oWa)^PUlHqW6uI5#2
zRy6t|ozuWeyzY0}5RLZimb51t9U&!VsNPcKm&GmL?vpsmz}aY&<TaLMV48ssIsY4Y
z!@zq6#u<3iz*}?-!#mUDZ3ANryhCpvn#im4mW%?qQ7t!0hZ!GolXIi*(mzAq@fPFh
z(gr3Om~3Ezfr%U!BkOZvJXbr@ow9SI+)nuesn1lyTXjE$WeqOD`vvRv-0=Er`*hmb
zz^4X2GceP@M+QDIFxS8=10U0c49qcb=*#+pS$b}C(WTU3H?l9~Z80Y|dLhAGn;V^H
z;HTW^qn7cMFzRz!EH}E4<F}|g-@pPPr*os#F4Unub-obEq#M~w=t~BEW#$H!8CY)M
zTLYU6tT3?Bz*+<A3@q7_L07q#8(qcjDCVx_lsGkc4gKVF3JGr+>kWKq;41?g3~=o?
zB^&9n%Tmkqjy9{8@-?$6=JLFrZ=@F@y}g6gHXHcPz-|LS8`xrCtAU*cel+mCfo%qU
zpo8^}a?SbgT_YL2quUMa;3()F<wbuhF{lJ%e=@us_Lwu*rSCGp(;`~c_6{}Zuq<;A
zz1qM51A7hZW9f@C_tSvA(%(r+;SgZ(pn=0i^KF?a)h?x8%wLMvVFO24Jp<<r{AS>&
z!FL@vZQvLue*-5BoRqfDU7mJlv3EWN%UxB`n;G(bRi9P*T?WFR9QZ;w9R4tH?Z?);
z8m62T33dJwGOBl!x0?$Fu1JO#ISrO_FL640A?0ram+6yF6s9Mgx3jOZjiTmXnR?B@
zbp!v>A$f*N@8}H!t9wVEa5n0;fjgX4{8;SAUCsj>o_=)o<38sN&LMte`0>!dBTj>U
zIDR}f@E_+iKg#)$$B(>z6!W9FANl-<^P`X-g{iY7BflR7{5*FCJky8my)ZqACr6ko
z($dPhxvSHj@}r0!Mg3^DJZ;t144%xgG{ZZ|h<na&y_{9Tk5Yb=_9Nbpl78?YgCS+z
z!7I|ZQ~llx<)~lAkM|3j%#8;jmG|RmKTJO?KPvc9(GS%R&5ufcB>18D;q&9=@@_@N
z<w-+KyY^xxcTm5vDV0Zobl%ij_rvhR?+0sjJCePAN%kMTqdcpHRSNhK^dsa4Q}M75
z7Po$Gex3~Spm!90<SfVvv(=ST@*J+|`jP0zGk(<cBjQIA4N}rg_M@_ps(w`SqY4|<
z$8*AO{PA|5XmvjtpUkS^$B|F7D6D%mYv+$SDWcDgPW5{yaMkM*P4lCcA9ekBPNHfH
zru$LHj~662ChWAV>9Zo|b5T7Z^#xfFi(uxjPb=Bbk4Anp_aocy9VgV-k70eH&1hQ*
zQqojNrr`TQ?>~20es9d)e3;Em*jo6}#*emswDhBuAJ6-_N}*kAKNh~6y}41!$+_j4
zy_`L{Pm~i>J3l)3(b4ZsR_z7H&59#`L3n4uPVD+J&6o9w{@f?pMI;>f-Tdh8$6J29
z?MDwkdipWIkAZ&l@_Xm1(8>Gw5%uG8pJ*=S`CIfB`KglLV>4s>`q9ttjfHZ{Q~R@B
ze3mX39puMgKVD%&=n0kFA#AlDFZnT4f-lml|7GXz>wN_?+>a6T6OnJ<kw@+8J;scb
ze5f-@<dpEi@-;t3`|-LTZ}_<#rOW;B`Ao8}K#Q|8lHR0=%DTVJ&fuX!=N6}r;W#Sq
zPVi%*AMf}vmYA=_yDTU(<vqW5q6g2K8Ap#*-0^}W?+f9$p5(`5Kj!%Hi60;MF~yG=
ze$4b^D*gO?OFr0qNDsM{JxzkieWTM^!wPN-X-jV3=tmO#Sn5AZH2G{ZTY`*bd*}Kw
z&yNLu?=-YeiGIwd@%u)3%1N^?GCucvXA01<Ia#r5USF9xyLQq-Kfd75?v})h&o)c^
zSjwOu|M{`ZkL7+G_v3^gEBsjL$CrM5#ew7Z{*k@bk9B^m7I#|X_r7vs1!nb)u9w&i
zer)uE9~*K?{5GLEkMLM0HT;@&pn@MiiQ2b*Y@)$AAuRDuX8g|Y9Y8>`#qS-(@`P{o
z<9kuwCb(U2hu{x_)Za<Nc8Vj}<;QM6_WH3;Dz-}s{n?K_Vx>7hW=^h<yx))3g<JHm
zlXPfDo?rYpAekKW<8UmuU;Q{FJa3Z8JdX(fEf#y!k7L4LnCaE|q#vjJxar3&KTiAc
zyF^`NFVxM$fp&(o(1kjGi11Gtzh`6l{3Ya^ALnC|3x1sK>m8bNi5<Nw<!_N+j>TT_
z<Erp~Vv=h@t_%Jvc*D=l-#i1}rU6Crh<?Ijb9MKwANM%_i;xvdY~r1U@Ib8eP;kbN
zHJizInt4p*HKCf&Oyn~WXQG^m@}}46`ArlNQouw()4PusGV$}dOh)l4EKyIHm_9$A
z!J;OLnJ8|0gS3?CO*<t-fl={7N}Ay3pA43kV3}BKS(Aq(djBPV+62Emtze>}iECn+
zN+x_ydkyrNNQmhxu@dQTtdeeGb>WJB6Q(E_QZ$D%Q&}bgCW0bo(fm3xWWqM#n1Bfe
z!-9qSd8g@7-xbXof{7*~LMTr%Q8|`L6(LmxtC^@SBswLFYRM+}11E*eH1UkcDXb%;
zreK<2Ey3E-SSs*JH}R|pc{l}w^-R<^(auDB6Aescm}p_5rHO_n8kuNnBGdG~^=K@}
zh4)Q_^m@7=7uGV^%tUk3n>@+0OmAgAm9tI!e!U=r<dn2B(ONiz&zpE6CvRh-t;qR?
zhi46UFwv3bvfx^H!9*t$TTE;<(b+^76BA5KG?8PXtBH{&UN+IqM0XPdObj&9!$eOL
z{g~my^j;>SCUQ;mHZk~ZjgqHtr~foPp^wDAlAGDr#O%Dy%=(#)b2C4x-077u@%>HQ
zsS#mt5R;gA$;5CILre^1xqs9dCitSD-Y?3FLS7d)<RmvJJHkZalt|8)_!9gdN{z@U
zzWg!qrir)c8zx?3o!{10-On5?B;QA=Z<u)9#E~^QO2cToFLUCDx1sQD6JuyS6XT?m
zcT9ZTpzK%^H|}Td-;h(ccjmh$h%B^cZsvFs?@OWWHsml^D^IiNkd~87Og6F5#1|$$
zFfoNWu$d+{^v;}W;zPQziD|S_Ze~bQ%`h?3#4HoHb2HOL@{tJ&$=Q&a_cNJr4tvMM
z=O*Txm}_ELH1ksvOA0od8qJ(%Vn;OdRE@}ILYl41Ves7zIr(!l7tkRmHsv*Pdcq<T
zi%qOCv6cy?Y0FKlFtL=maVYi7XgEeo8_}lp`ka*}`W{SQO`TqutAsQ7>DnBtN~c=|
zQ`ebTZ{kZ6U$I3dHkzR2S)cvW6LQDI_ljm_MKixP@r{Yi(u8kKTz{$MCQdRRrTS7L
zPr94!`p(3hG4Uz=qHNvwCbpS)Y~nu?+t~^er|GvQelW4q#4jceaG03*$;4jqoLwe%
zbIwVQES;Xf#{O)AcGzQrrIS!Xvd_eR6Lci{8_R88zw|*9znVB|;+ToiW8x2)ILzKR
z@y?eyd+wzZA8qu=Z_=SD(M+Z~ZsMc~I<5L)>IqIY$r0B4lt?K2;eO^B6MvZahZC2H
zKTVu9@wbV~CjK&U&cp>17fqb!6goYP6&p6F+&f(}ST`br%<7VKCHsyBykg?2iDvzx
z-Pd$r6T0_{&OO=mx`}`37#tLI<9^XDW8!a^xJgf#(v-=mcFP1whu)d2+g%g)O*}Ah
zPpW!*LeoxNGl&n_iFw;SV%<izp&BJeZl~w5kk>+43*{{2vk+&YxP=lH@>?ii;VBD6
zEEKd*$imj?356}M6FFdiyOYiy<WQw?idyi-Y;I;%8N9_TZ{$+KF&J-oBe9fVNed;%
zYP5D~3oLh5zi1f?PYhn(!qXOX3x<UX5}RN_u~5-MCCh6gEw-UwbWgvi&%&VInX2V=
zG39UF_qtfKyn#UCw_sWbS_p{(U9m)!PL_p$<qeJf)6=L13t<a%QRc%W^qI5$qPFNS
zxSyVAA!1>!g?Sc|EL678-9irwRV-As(8xk#3)L)Cw@}AIx`i4Rk}cFqj?}b}Vxhwe
z8P72PP8q4f>vhW5oE)kBFn!aC;%QW~aC~L)mno4X2|Y3%cF%a$LR|~>EY!EK`e6Dm
z%Zoo};lT3Z16LMjkU2N7kRkfyOkSs3MnemmyJs+Y6AMi(w6W0ELZ*dg7P2k0U}vo;
z{$b~gEC!P!%`K3VOiYfnWWzgWjQg|B^UNVR(#pc2<On5<Z7mY=b{5)mwztrUcFW1=
zV4<Uh4P7%XCr21023HmDY@v&VZZY|u6~%KbbhXgGTLv}hhpZ$o@}4xTg;y-RY9Y$f
zEey5rqJ`el%L6P7w9v;wUkm*#u!H(b|FU1mIW&Hnkvho2U<*SmZw3ntDwn@Y#^L+v
z#JYpL;p5#4ER3))(gG*smn;moyc-0k=wR>6mxWV4N=S*`nVhj1^_qpz7A9Nxz{2Ym
z-moy1$t}ET;VrsQa^xMsNByF2TNq<uN{@_@Ju*0m&JAiqAr;=Uc)TFqXSSj_p8sn|
zj&NqsS9W+ZvL;%XWP!>YaU5t*gj3kkyzM@;FkMnj6`aNaIIImbpJ8F9h1nM7a6nl&
z*EwUBg^wlYCpj!hj?9*U%-qWLkA7m|TA|b@QJ-4)jNM^jBgcz{`5eML1joVx3kxkQ
zv9Q#_7b09_VX=^T+1~xpSyi0)?1S`WB3v%`{J)viQz9#b@7)rj!YVqag*6t|ig3N)
zloW3oT*slYI*x=F{r^h~Us>3~=|XhA7Tjdv8w+0_sPHX)J1664p;Y$fW((iZ>!ziC
zI6akVBmJY_i}H5*NnEpS!YRKpEp>-TC=6B2{L#Ws78-<+5ymbHyDh8>Vto)lb28!h
z3gAQldoAqahzOurz+1<%pR<;Qe=YpN(k&dc@T<jND|jQ*Ib`9mh2Je)zGEM;@Edcm
zaKge-+P|Q4%tGs7Zlsu#J+Q^xEB4N4{gW0>(RE*RPIHVjcD_h*Ru}ZnFDQ`hIMtjp
z7XFZ|x~wVnr-ic?rVepFY3p(w8uxfSXW_hs3miBXD_pYhw}p$Wd_!kNB#||_Y;l(=
z=Zb}^l5@1S^ABg>Z09N0*}xsxvYl%ZoPWz(WOc)W9e@+SO$)ay+~$<a2|R%E0o=84
zkFz(I%t_ntb5;*{yW3Inz{0~PQCvSJ<gtbSgya!r>f{x2?~=_VaguOy4W~c=1w~#+
z@TmX_3wg3OuSftz11Khvl7htrO9(R0cp=<&uauC|f@NZ{WdnRU;8l;;(*bA!Z>PZu
z5?fKQQcN>Jh$83<K#j>ShvW1ZHv;f8hX5>*1Y+{5y9x${hhh>05RUQ6)g3p0!~mWN
zpk@G(0FnZz8bGxGDhKdqs6~;domTKFStWoc8|_vPz;5f*2p~Ct*5mR#kWC;{0!WoS
zv-(FT-n5U5a!#y>qy<nbfQ$ed(w+g-5rqZ;T#0wm1E?1Ocd@v6GX7bS*A;v&fVE4#
z4LR#eEEN)SI_D1d7Q!_Opm6~8zl%IMwxdY^-O9yt-B(jd*zt<p=dPU<K=S}z3}9FQ
z*#Wc&U}%8vx}BB*v<jeS0G;BU=UMFlc&tWFz}uj{*8p$HN}B-MN<Qrb+Y5FGpreo%
z0_Y;7lOXjw2Y9%uw>*qj?Gpu=TUXX6fbIdjcGd0?;Acwd6p|k+@AL{F8bGd;J|KX>
ziB9hT`bdzgO8N@vC)i(*mGqT&1_m&Q%A(ICuidbR2<IUh3>LX<b8yWW=)4rb>HyXR
zFg$<}0gMdb<p8DzFpU<DcSZ&9Rse4YQ1Vo%R|0r7R{z(8jQ0A}8!~Ui<ZlN4cdiOo
zI*noTYnbm#)H{M>1>Y5XPjFlS<ApGjdrsVh7@ruxB;k_<KZwbv1o(E;TW|AW09+<S
zvMhk<0n7+srs#Yez--!9_$<Lil|A>H6Tl}D{33w40n8Kr<UF-ch0hP*Ga;V~GRfgn
z-g4gs5?mMn7pXG1NP>$6mk2Hu^orP!XL*dT5VA6WRYDFA_4bfl8^F2%cV)qM0j#Gx
zjmxv+w6|nvLoC%sAzuo9CHS@AH-g^=ut^A$^t)GZO8{E~_$7b?BK$spow3+$0c;n(
zL+}T|CkvZ@6#i2Hy8_rPoVo26@^b)tgzSyU_X#OcRTelsRp?L?=O71Tm-ycT_%(n-
z5_?!Mqnu~tBTpnl^Osu{IU2w*-cZUqrwTg^o($j=`!0ymL7WcYcWMSb&p8voACl@n
zP8R{34d6B_U%~k+fODMR0=Uc>@{8p20bC5=QUDi3`Tcg813z)!sO0cglK+~`QmzDW
zHGt~@{2M^dKlVQyq>VGLF{{my3nLpp6X%R-lv%!nbAvN~0JrGy`5lh;b=l6=)-G{)
zRp$<G0aEn603HPJQ22ep8jUi)ZJzmv@;uJt0OD&Tp3QR7O)piRAo5B>@(Dh?T7iv<
z3u4`8-kig$KoA8bs*qseAf5`Mi0~4E)F~>Ym|*cBy2-*|%HxA5DZ;x&yt$%G5M_gS
zJ%~4gC>Qknr$P`FgD4+F_X%DfJuS+oL-Cb@NC=`s5FLY1g75`VKZpiFZ?{!72s;QT
z2rURb2t$%EZAge;&<w(g$pb+IWBfq}uM`9kj!9StS9nb}>RBgIc!UK7Q8}hlLr4|D
zszFqX$*T+DDLlzSQUp_DvCjnYeY)pVX(Fi=lh+nfCy4YQo(*#Cy5~jpVzJK!(fqMz
zc3#E5jLQh3p+vO_qLC2ZBAW-%IHuo3NYfxPg*1!Fvx0an)(hD|w1~-D2GL6R^Mb8o
z@^EX<GHrus7n8IPqWJRe6uuBdry%+S(Km?BL39y?Xb?F;eAUbCA;GS(RNaJh7v!?)
zo<e#BF?xWvn4j1x)5#5@cTAs>$E`~gO-k$+ME@WL1Tip(Db*b=KOPjsy_(J|qB%H-
zAwq@<jtJt#SPsL2cqzt*lgL7MmNim@F9$Iy7TZ*o6TeE!h-7q3zI}-MW{l4h@>URU
z2QemycY+uj#JfSf7sQug&qTbAos1tB#CXx19mM-VOc4HI5EF$=7Nq8+Ag=vchvWm1
zOc9(Ki=7t4$@bnsUDIQd8A4_XeiX#4nEc})E_~-b71X_D&k5p_n0zh=LN(7;p9b++
z5T6GzU!v9qu^@<rL9CSE7cu=sLG1p|uJm^kX0=#^O9Yn+E)!fH#0nwQDG@ERDu{e#
zoz;Q|OE_zU?CI>(lFv*w1hFxQc%URaH~un+t3muj#|Yx<AifFWTb9U2^dNqXHry1%
zmLRqY-z@kYhxTPVYeDk&L2L`+hah$aasE~3{ZihwowhCI><A(`!>Mz{9@aGB#~^lz
z@F&h%4V~`>xntY96aKXud>`2p#NHtO4B~7M`-0dX#IYcb2k}b~2PDanAP%z7APxm_
zm{XAA@Y#FL(+-#Za!K|#{k`dq#r+n<(ICnU^(NJP!y1<;=$r`R{&UXhAbw|m1#v2f
z0(BjJB{VO?p}a)_=M3AJ<@`b8CpfwNqf=`+)%eIg(D{pPVaEl%74qkTpnmZVZv85W
z7lZgah|8SQsw7?#Oe*L6o8VmG&zU~XphG2gw|B~}Preq!b(%MXFGKh@h#Q<ULnt5e
za=Xc12q7+nTS43o;!Y5EgLoLkBMuqXmL&!;a#3>r`!-8txg_yd>>^bY9|!SY5P3q#
z8}fbxoow$`Z0JlH<{W9}-HCc^j{LSEl0Sq3AuK84ln9|<2!%p;Duf~-4Cvt&W(7((
z>@Rm_@`Zuk<W@9<Vj&a{;dFne);Aqqn48R-+Iy+atZXMfgpwhY3ZZleWkM($!tG|>
z9mj3%6c0OBd$!<Rj|-lEHl3$Ks1U+CA&d>7VhEK&Xc$7H5E4S3Q<))HLKH!tpc;ZE
zgbI2HhH!sOvNvP~LI{TNObEZXb3!2?gle(au#iXywh%|qjm0JkY5YZ=q?n{~2vvkv
zjY+~)<EqDajS!NBrwFFT<R{!hHA6@Xp_WMM3f7Lr)(Ih9__Hy|8+P1t!s`jv7i<uV
z%?P38jdV7aKM5O$&@P1bAv6i0X$YC3(=w*nOh{G;&4pyg<SkgwzTN{TuT~;_K7`h>
z*ft@wjqyq+3U&ygV+g}T7!kq?A#{?c!69@O(mjM8Lb`;IBc!V!bM7XDKa_e3=^a8J
zA-zI~3dt3uW}%{9W%^2RKnVR}^8P}8JydF7Ofra-kt0#4KO}^qG5L!j3={rROtPnK
ziIKwJ4q=RtmqQp8!YjgG4dHbmuL&}@(IG4v_`k2r-U#7Mk-rs-Rdi?if@FUFwym7^
zea*WeyeCm#gfK3|C4U7!3VGi++)7OvAHw?~ObB6OEbX)qCWSCrf*)`QwDP_;<TWLP
zsWF`w-M9~hPZyjaI5QUe-_rcELf#$r;}B+xaE{<-A$%faZcKAt2%pCI{e#{!|K}mh
zk4YAUurS6?4T@jHftIJvVh(T-E)`rYxJ+=l;EE7dhQN=%R!NX~?jDqXO^mM<vQBV)
z2peMZQ$H2_Duk~?{NaqVA^sa0--fU+g#96G3Sn~yKl1A0d>6u&5VnP|J%p{S-ipZg
zA@CdulEv5U(%X|a{nuni2tS0dlWzZ_)3UZR<MZTUt(~S#9nQ1^n`QnK;wM^2Ddp^z
z41W&cxxZ~{GV?tg8Y#|RK?Z*b;XnvSLpa6~@02<i!l4ijOND>s#L~f8<|OWa+Brh`
ziBi8waSh5kEnau{0_S)LCqg*I$t{FtLmHoyRJ&J~DwXDp_{aV|gfk)h!Rc{%GAGa8
zEgar5_@xP73Q_Wx_{NP8Zia9!g!3U>pglvl8p1yzTngdu5H5#sC4@UqdB<2Vd7!;F
z2{&o&vLQ8QC0`5SI%ob6INyGo;BZ3b8zIiR4ga-!WH`4topKrn@&R{3xEsQw5FUqc
zFNFKNM}+V&1fKTz)o|x*ai?oXhhJ`T>gH8C>hxNfyzH-1|AmkT7}vuqmtRi3YB+Jc
zi33joMF76<DqPA}04N9)f_FRE^pbOCUUFez$RD+9Z%m`4C{PS24wQiR0ZaRcS3Q18
z$^N>xHo}>zaz3XNP#X9N*yWwR4j#|D0$AxC^9Y{GRSl@_oy~#@z+CDB6}_!G5deZf
zg12W6xJZg?LwtY=Xn@Yx_RiO?v*Uvn3l}HT8oZG``a1Gxuy;S=KX@%323XJI{1k{$
zdmq}I{`uzui2#oW4Ffjd2<NvyO9BoJJ~5Q?;y^b7OuJ+=|0F4ehqEvTei_QTRgoH2
z6})lNt^p(iO@T~#@<{<w$uHY!pXcWz-!ni>k*5Lmh13FS19gP6Zs|fc{8aE+A$0|x
z6Raml9sV9CHUKhWl7>Jd;f)2G#N@3z$2SAA*qgw3pgE8Y^a1(;Er6CZ2+)D;75#p2
zw&i$FJI_n7HPA*#TfugMjNQ7#`)S`1=n8b>+MJlY6E};E@h(74jQ2d{&F9@E*c0gS
z|8n_^x0eK?KyFOln`ztq?}_?Cey1PM9~b}(6ot2eK|)3XF9U<=b->VA+LwSAg%68K
z_>OV7@DVY|sD9oni&4PqB6&sdRl(O{I-`Z~3$iz2k~e|3Vw}GX$He$Mz*yn$3ceSU
z^GMeBfe8SAT4r=9&d&fR0v`g?fk~n>Ii~r6kSV}aA=6^=b4lh5U?%WIO!ASCPXuQP
zehkbOGDnc@;#p&JfqB5EBAGAvnc(L!olkmt7FYl*j7f_1^ZIBJuvjEZ1eXdfi|H%}
zKDy!Es#b|)%K&G!5Vmv;uohSctOvdZzG0npX9KVi_>w{0p)#+pfa|Y2{7{Z(07W{)
zeG5>yS&(ECyK<OI@*O4g(w^>CV5gAp1-A)q7i8=XAwLL??dnkSBWH|wkL(712JQj(
zfjz)p;2dxs*az(ANV#VJ3H$;a;A{q*0uBPd!n<XcZRd@wL!4peB_9QPM%}}}5h3Ki
z3E^qN$3)?{AT>{LEYD0PVcJ?7<4yyAev<sV;2FU`1S#ZOO_qKZ_)Dt6k4cYS_P!^*
z09*zB0WR`-;2HT6@VA)vGQ5u~d0pYuQN|<pek*m2mIVF<qWg-!+|aoZ>!aJiO%8_?
z=axvCukxyN2k0%oaPI<dl=nu~1K=U&u`q&RJOUnbDh{Je82<rz!YCR>v9M>2ykW!%
z$rnc2b(@km_{KYo0wOFZSS0MdoG&E2a2QVsVJA{~%?J;RhtW0JBPGKqA+hA~LZ&u!
zN`<jurhBD}ODr2kxiIuFj4;ZF@pKrK!bo7zfkOEU#`n8pR|tbxF^rS*ToNVh{R&V8
zNqk|fpW$_%CTjfsnA^&m?fqf!2aXxWoSrT}^5wVWRv3@#Iul=ULSZ0`>S5FfBOC^A
z07+p~4x{0k{QL#vgyDvf7)B(F>@p5N2rb&pW$zRD^i?H{s$uV4_t#y$QmTcq@_Fw!
zd$A(UmI;x%U7cjsoVFU~kf($}Obzo8Ivj1|@~Roe)fx^-tuSh{+_FxcFz#LsJr_oL
z7|)92!%&O5LKr(~eWYHjrS*kyVrdvgqcEnpnChZ&7)`<$W8)ngO~c3xL$jgVXck6R
z80W$`A4YRFB#fnDEDNJW7%jsX5yr?cT7~g^7=6O%8^-894O)lMF^m`Z-?W3tZP;sR
z$!)`EC#1b#2SLhr7D?~K940k5_)K!QFo>PQ=prOXu&W^DE6>&G9!8HadWs|}*h{eL
zOU0?cD>sbZBB^xJ3pRQ;sb3i1RctzhMmv_=Ka2rF$Oj4;6vkj7!PI05sW~)^7bVFs
zK}uc<V|a{j_%HHu7^A|N7RHBRyb{K%VT`9i9!Ey^kG{sX_m93KI9l*^!8gKqQ^;F_
zZwpd$Oc?)6X+XkjtO(x?<GonyI3YFecolm;j0v%tPZTmqaB>(Q2$>R#ohoGbvE=Dt
z%m`y)80!uuPd$-5linK!$wz{-1V0v}aCR7r$JQtLB#gNtoG19X;HQG02`)RHJYNWv
z7le`LW)qT=(=)%2f))ub7F-fWz9L@f%fna^#<noF)5F7973TXcuRB(A2#4|3v<AIW
zl9z3)$^Kd^eYZ|<y&#1fglrUieO9xtIP@Y>dd}Bjd=tjEVQdm#+7k1q&Fn1Uje4X}
zjn`HQeoxmO*MPwtVf+xruVEYtV`msYO6MLFou35v3hoMHw-6@zIgC9q&P?{j`2H}z
zcJbW%fMAoy5%Q!wNpzdTVua&ioDgy(jNgPD6+9;R{LFaThiyC=#u;hgsaUH|hw;1c
z^Jhv>f!7}r{8R937=H<&K^S!*jEkIm*&Q}6h4FV7H^aCU#^o@s&<#!{u$0w98nCCX
z#{A?TA=kpV9>%}1QE)?qg9WL~w%iWmjs)-0>|vCAslh!7vit6b@gT+@3V9^Rp~STH
zyQk%~k<Uf}8wG8=k=;DbMt<A#hnFWepnX{F*|RbW*(hwIl8po#PuckRR6@M%`9={N
zqi!}SYJ<K}Ot83M2|)@wA4@K2qm+%(qF-LHj9^(oW>QW_iDSu63#lMjQSi+hO{l;+
zDBQEnhH4{spXY%~BI!i$I?~jz;kWUs?d@4-+OTZY$Z0UrMu4yRZ8W!$Z6joRPyBUk
zq}vGF=smMRRU6f8Z=l(Nj-V@;C>XJkB&4z+HLKX@(ld>OS9K9SBUnQ)*+xoCGgU~D
zgr?N2DLl<aEg`jII#X_Y9rrA)t+#7zd(K(c#&bgI2~tvDNCUwP!G?m3Y<$??8(cI_
z6W#^HR^*wy3kc5=Y+pK+!WK4K+KAG0wl~MNlFog>#`88>+h`-g_JWLUE2NzbPN58T
zkYLAH>~I+loosZLOuE>}vC-8=Hyb@g(p|8JV9Vpl^r9*Q(}}%Aa=nPhS*6}K28g6j
ztmb`f^o#NSHlDcXKpTTZZLr`l8$*N)6=YT~3h8zy`6VI41xLhUX`h$rpEk;#PUR-j
zuh`(myu7$2GB=cd&BkaOuhZvkZt4=r{w4V>A#VzDgJ=rhwlQv^w<Gsh8}HI44mLV?
zk3t&}2T2ab+jyVVwsFkH1RE1=EU~dvTyc_(&&6(&ZG2#33j5v0+?XY&37N%yv@zYr
zjF^0;kZO7HQB3ktnN)Vf$2Ml$m=lZrBo-Sy?%fUN+4xi>p9!*?D4Z{RK}>U@kS_!m
z2`;v|k$Y2WF0--R#!eeQ+E^h`99f%ethBL8f~#$;XY*~Wk>FZECR`_Ee)lx;jl#dS
z@ntObD<KbVc{TjT#<wv!Gv7>ZV~g!QNbuS&WUGzug=`b#Bgd229TNP(#-i^_Qu33H
zT{g<U(tr-I+s4l_B7POzBlwGry+Y^!`-JSbLEmHWfCLZ5Vmrv~;E)6l3my^tjn*iV
zUi*0RadxGRe{I~bagvT<<1eWUp9D_ZXqDHygZxfMl4pZ6HvSO)r{GyZ&KQh6XXCt$
z3o#2^v2juOCBeUA^2;n;9&ecKRU7|^{F>l(!DlXb#=L3c7N=_mg&f?L`mkwv9M70{
zY}~bR&&GX`Q}W2hgBX9vK0Q~5!p9={Pw=YJj*`5NHwE#^CnU~6{+OhI5Dw?U4xV!G
zw1Wzc=U_z~#0x1ZNJ%jV#f6uMNfr#rD(Rq<gVG`?8<Uq2LO(Ajq<l=?;%+kCsiFhJ
zf!_gnCBXy-iV#YC4piY<OrksB?Tk@oOcD}e2?iJ|WXATI)Im%q?7$Z8#3ZhR#2Ei=
zZ2ig(syKMf!Dt6n9aMAB(ZLH2synFRprwOWj(6irc2L*Ba}H7*q&j#;gtY}3TT@7y
zgIY1k(MWoo7*7}Stb=!sCR4ed<K1~1IcO}TzF-5v3<nK`P$6-!=lo3^WW^*+g=9Kt
zCWOyaRA??dTd;*7g?ui0o-OJhZSA0qkXL)AvFNe64ca;&wu{xRy@L)ho_!+J$w6la
zeI4|3&_$dr$3a&ie?61ZO?ogY*j=!PU{Aqbf=?zZ`bn;X-XbCIBZL!Le{r*c4h9Js
zAh<WR*<k6Bmjs8zdS|GE7ljXVz}{!K(gB9YVn;X_8RIVt8726NgI9%Y?$&@wUU%?@
zgD)H`a`2{uw;X)rV3vco#VnH?Om;AaT_eG<g5w3><y}C?IKh!8l4;NPg-;M<aH5dJ
z+0EF-52TIL1*bTe8f*JBAs;#z(bs#{;x$7gGaXdilE5Gb=Eu@;pNgGlJD4Nn6G6t#
zbucf+F)WMy`<a8!CCU6)k1uerFvg1<_wK)J`(g)6q=ri!td?G8otKGZxq}r#Rtl~X
zWbCL&I{jpggSDc+F6JBSh0wjfbnq2Nx{ER{zIO19gKG}1JNVYYCI<&tPswUC+vs46
zq*7Zp-|Bczk~^heNWPcgHV4~<>=67xkfl@MM+ZMS*d_XV1$PUwQ9nD_Bb>7+gZqT<
z7yLyqVW`*dzdAT18J=@+*ufF;v@;HV6Duw2A3Y)DsNgXN$A#o8;*HId!bwg!I4%75
zn8Y64;19`)v*@1=&c^s(4tN8i@VxXCAEz%kxESlTOAh`Pep&EJOn%kDKQaD7sOi5B
zZg5U^QNYDb2e%~iN1Xpf=Z*uOCQx9y_w$@?b633Rp5T4K2Z9eB@R^Vbtp8)F_J0od
zSo7MISCAy1i#XxD{V~WVSX!*0i$X36yWTD4Dc76)N!m@UUPL&9{D_lSOt83M3Bh<5
zC514yl#m<SB4u5abJ4~{TNmYB@bl1TUDS0^!9_(EwhPBaB^L=U)+kK_E)>_Zo*_u$
zbD_q#=7L9-QOK*h{1oy_&~#zN<ORg*g045|g#`JZfUuB_@7AZ#mG+WUb&(jeL&Qar
z@XCT!1YelwO}y1yRF~v6T+|Z6w8=tJT%-zlMzCfqHci?>HD0w{)QQQ{h49z<b1v$+
z$Z*lnMSZa|H5<4XbH{r?TJete{-F_H{<vuFBHKk1*Bdo0Kg?V<xdBO27nveyCYUA2
z*9(kd_qAY#A7_%ZbiJvvl_1IUE?NucuX_gDxoGd=RTr;GPqC#PTy*5;xh^`n7~o<c
zPluDb^%m^nBF9Bn;k^XA39`c7h4gUIGbZ6{gsAY`n55R-<UTRp*G0b=?=OV!n%Jj<
zT#S%@9PDC<kfAPy#d`Kd4hI<sFNtKhARkno_`^sSFUK@Txp+l5y_&I{Nk+SPPn!9<
zi#Mbf-V`i9JBy}%%f;Ig9OL307h{D}{;m*C_#^IluaaoAaW2Nk?D@Ws2`(naB$HfB
z7XCp@qC1%8;zJi(60tQA(_PGPu^|x~6EV}pNA%1@*om0s;$s&lT%2?<+r=E}xY+38
z6Blz`EOhaOi+SRcr_;S&{!}=->@y*s3(gl@AXsTY`XaFaduO?e#q3t6=@OAF6<j7r
z<Itqt-)gWzdSRuDRYFz^t`S@-xbFX$Iu9tRsrUUaEKOutdheh-?#v`plT0$hQkDgF
zfu)1=K7i7DmENTz9Yh4AiXzf2bdW9}MNvdL(gYL)`9FF2=6C+*-1D5zeeZj3lG~C=
zGB=_uZHqu3L*M4cb~nzt?TaE-&JG@<8{fOJ)2Y2(0=q@OVdXpa)yM5wYmXa0xN+2t
zy>9H2rrGbtApxcy5IE?@VYkjG!(lg$IH?>#v>bEelvs{C_7iTL6#hA9G969}|0sIK
z@!>D=b5860BygU?N8qC9B_}mg@8rvF{OU#)53+jjn;Tc$_(!Uj_4d0P_uRNI)p*s7
zKis(H#&tJth~<vxO*d}+fAxG@*!$#vJ@&3d|C9=3fe$45*p2$7nlbuNqL1A8OW<{X
zru~UTpNjtN#z28*ZajD6UzrD9iL#Tt5O^v2pJ-h-;ym_D!jMTIvuL~ruWxB)^VoBK
zF%OD+kllkE9(xvj!-E75atr75;7tMAa|y6n6FtZyT*!mG0{I=Ed;%O$1q2F;^8O^V
zGZdC+5z(Teyl9LjrI+y7=a&lHDCd6<N_kM)gEA7OrJM(4g<l_gdB@J*cg*#c2X9Mu
zaz&5*44ClxH?qqEw+9_O=;(pR1I2?H9@O+e^}y>vWhsZ9*(Y^kdf@lieVZX55EKo0
zpb6-rhA4f)9{l^BeaXbSwLFMOAyH9UDhVWe@Xh9AMytrdvIeRORP!Lku~hdURhSoG
zbg1P)ng>lhXzH;~-08BD^*yL9QCjMFP}kuMfqJ5;kvgoa2IAk)gGK_4MQLZ%vG8Wn
z+;_s-yB;+6poOy!Z3J41w(_90V;|7LYAf7Mw7p}0I-+_f)&u7^59WCg^PmfpJQ(Rg
zSE-+V9`yI{i=}wagZIVK%c-~S9`tayr$EwEt+zlQ(Y}t6b-S@rodI$PLp>NMFi3Q;
zb6i6_81=^g#@8?phCB8V^p}w`%7f7!%#dEeh8W|)L=Pr;FxF|QaRTE#m>|GwOS&;k
z_TWRuXNm_?g<s#fnkGEmNu_b7(*tJ-%=Tc8z+A`v`jU0N2cLMbLNYE8UFg9gfyEvy
z5m@TM#{$blxhMRsx?GsQA{qVEgOwii@}zI_V3oAUI;UM$3w-9m8iBQ<tDL7B>m|Cu
zgN*{8i*g=d$6&wu!h<iRBW-qi*H;2tq=xCR&12t#W!UAxc87O(u+!l)$L!Cf?q;8N
zEZ+(Yy<B{c2YWfID9Ei~p9lLrxb49m4-R;6(1V{mIPbwB4-R{9!h@3@9P!|iKmSn=
zj(PBd$Np^A8%^UIWXsO-PnNXxxCfOk<tCKe5qHXiGam43ag3g34|lfC&&=@)VrMzz
zmlZhY0q+6w5AqjS8s~Nou5c6d^dMX9_{$#rA|*uT+ut3VS2Ldat5Z&~<(YqHDv!EA
z_8aU@9|iyL;JOF=wi?~8iQB%}cE)8j^WOA;AB-d4VmC`xx6TOO_25qr;uK_3aL<GL
z9z5~jspNX#!6Og;5`HM!rGR~OS1#Iz_E;=cYUU;X?ZI<SI3D~XMp~YE;8T)4vw|<g
z@}FaWDKPSyT^q01Z9Y`^DYwiD;uXB1Ag2N*Wl@k_v0F2%f@})*$LD$L_uQ|u(3nF3
zizQUMl>1Eui&w-?IFcKdo=d^Rnt3N>%butpkAf-+sw&8<AfJNr3Mwebub_Z}G75?=
z2o_XONI?k&B^4A_>`${5p<S`RbGKt&^*!BV#S|15JNeB_D(mXeEp7bVATL%+DJZSr
z((K>?Q>WdW5iGVdxvYY63V1C1?p_l^drQIF3PK7r1r-%QfucZVfs2CgC`eM^Qt)zS
zkT-bw(ht7_xO`i(M?t~sT8Gxjh5f1XmL_`@R-oNR0q*3&pkLfJ52@aMXYxODf~SUO
z1Qk#(bdRw?bp>GsrULdTL%~U3D!+MWDTpYjq#&6)GqXC2;x`<liv1<WS|Po%6#o0n
zVD=fo2iLWdyOOIZNKw#LK{o}}6{IStr=Y%q8VYJEs7<}D)l!hAAYH-WhiMgVXpg$b
z;<qO+oe^Z=-JYb?QBYSwhBQ!?rOEGplg#_rOlqK@p@Oyw+9_zHps|8B3WopMqzQNX
z*Cr#k>8%ws73Q}Zn<;o#0in5Q3(=OMG`5m9BIy4qmy4y>xzdE?w^z_XK_>;B75f8)
zw6yl5cH~i58X=~D_1Q&1v&t&>iZx8wp=<9ccwfO#1;Z3{SI|R2KL!02^i<GGL0<*q
zXDGcDxOXS_QLsops@Q%>@~|bz<Y{Z#u8*@z8=zniYeT_6sS{R<x}f$~9|bw$hHx^O
z9rTXM;1>^vD;U8FS1?(zzrOc@f}8HtiR|st3N;_5jZ!e0HT*D*VT{07wx(kluV8{O
z*AS+|_8S_rPf;*cu_vDonRH#_R}o_~?S`1f+UQ=LQR++uvlyyjHiLpW3K|$_Xke~_
zkJw!U=o7#^1@jf$@ZzSI{T~YzY*z7=ibWh;3QDOctzwCSr3&sU_*20$1s^Net>7C4
z%N1FawXm{@{qs)xCkj?5_*B8cJLxMGY<-coN|?Z~S}dO_SR=4jl=gK3>)8j2U;`(C
z9<hxIK9`JR2h^j(T%Y=df<6<HzvR9NkiSx}Mfhvct)kmRw~Ou&-6=}{T|9(aNrZ0|
ze5c@wg5TL&6l_$qBMN>{@FJ&YkAlB^+FmxCz<yC$4sd6L4~ZTYeOyjs(oqG+6r5LZ
zLBVkaCls7k@S}pyMwsP$#7?r|(o;?;=y<5!j7$2;OZpi}BL5_CR>3(1TqC;7C7nu#
zUzVp|<n*H8R|SlkJz_sAxXk|ZsNOFeTs>keuuG5Fh#s-RKkMAeZ<6#;kJ#Wx*{&+M
zrr^3_uc-V7hg$>px(06kN8<)ts<Znxr=5W7rh;4cWb0v=w_2n9j-(Fg?7pYqKBrt2
z*;Nc3;C`Usxq^QcJXG+AM|ax%OTiNbPuW{en~xP7T3nDo``?oKkLaV`S)K`O=n*Rw
zQD1PP<H<!uW|a@+?U#!(W@~Y(4X-#uUW@Vr3jBlzjd}KTh*yzCwRgMucxBtAxU4E_
zG;lvzrbg~+IaKUtRoqI-t>O(8V`i8+Mc-7BOT{y#QG$vlixL=^q%UfcsN&xVY919$
zALh=hBA;r1wlcp8cfsT$!UaSNiWX8)SRie0Jl%>47ZWWmN@EEXCI3I4GAhcdXsM!=
zigGH-tH@AMPelb4Z>i8!=qlb;5#R_^@s5h(L)3~YQZj1<zQB{DLgm5okMN=dw+fH2
zBKl@w`yDE;uuqh4H2DPrDuMzbQM&P6O+!UkMRgUatXmb9ipnfdK1&@@QAs!|TC0x#
z>KPA{l2v}n#Qq?46%|!g#6BooO~u@|OQxu}S6|^uK2J`&zxKInsHmx;4)d;25(+7`
zRHUg$SMf_?Jfk<a+saVevCv*u1?>#=Rq*Sy4OM*OR~k5b+hIdoBNdI=UaI|NpBAD`
zRqz`<%~X2<sCR{%3)9Gt1ksJqT16Wb{Z$N5(N;y7RZ8RM@iEoz?d?>wSGkO;%^gL1
zPKoOz(AkMHsf&uPvK!r0^i<JH#d|8=SJ9naXsb4^Lj19U@f*`!JydMWWH0I8TjdLL
zN&O^C9~F5Pxf%MhGrve8@XwD2?j;RWF-WyP2D(vpc(95g96sv*)~6b#Vz`PqtXLHz
zRD2*sO%ffcVw8%}D!RyjD^{hs#;6!8Nol(jM%l9CBsyNj1OZwms>nLh?i-UG%M=w;
z9sW>Ynu_TvW(dzzG0REaeb9b&ZMKS&XY3dC89q|6OvT6Sz};Q*RLmF81)>X`T#HmJ
z7G5H{)UoHvmbjcPrDCmEHmuZEsQ9~J9Txkk<Fiu5D&f_lpNXz<Qc)rMI)~S**x>Nc
zoY_BD@g!AY*d*|U=$EQJhts%4#n<eIUZi`mRmC<HMZGBI#dZ}tRNPnbK*dfKyLf2r
z6HcqxEfd;N6~_d=QSq(7ccR~`*rQ^vihU{$i)Ftk=fHyk2UOI~nTJt^Lu{{TzSn$2
z#Sh{z`+hcBj<cuz=Q^q4l)wr0uK!#mqHzoaCJ}yAaYn^i73WmkR_)&YlZu~v*bD1j
z;SptRabCp*0rEwGOQJusZhORj5x%VASI6f!)m|Zu&cCa;O5>aEKREgXu8Ce3rTxZh
zD3Se^z>1E!X}rUo+*6w?J>FIAl_&ocy(h}a;h~C0D&oD!;>BMo9&_NINzUZO6BSQ6
z!K!$n+ADtiE&5!=KLWHo<8<*XnPAC69}BA&c&WnoeGyvzQ}IgNcJ(Y6=e4sl+?;P@
z_S)C{zO)1?LslkvQK+k$P3+l4bBHqa4KH#Ezv)<V2_%Se&lA1KBiZwM(Y|SX5ijl+
zRPuQ-*V6L~7Z5E-AA!Q6^rTx`(c)f|@ZxPRDta+|v0lD*LP@Xv<=;|Xl%}zP(lJM+
zGG3JRqMR3R){3v-MZc9wc`q{6iuWzgGPi~PmRNZ5s&`j|7w>pc*^7Mx8}Xk8oXjhE
z?XMWPyl_j@<AvhI_*Y5A{fYf^yHqc{67`7&z1Up9<rfaHIr=5iGvtNlg)T-$qh9bY
z1BMrS?j(i9XnJ8esS(-AilHuge)UgMvKJ#=ooX&rsa3qF>P0m#)}$&G8pYT0Vp*z^
z;ze}<a;iWLFKP<>G&7FIiH+(|YkN`0i<w@`@}jO68D8}FVt^O*y!IzS>wD3_i|O^1
z4j;8`=*8(<Nlm?I=0zjn#-dHUe23e0jL-kJx_(V`zv~6Hn-|Rm$Su5RDcnl5wHIv!
z+KP7aqMbl{(GH>=MVa?b_WIP$5{-#=@uI7f%5@r-->>_g7u5H?=q}Jhw5KTTy##uD
z(MO=KWAEohQi7Wf1HItKEQWhALST>=g9T_D;>A$mVUFdUS&1L8Wz*b~y_mu#5FW*Y
z&FW?tEzvO&9V<GH%_lHHbfV}aQTp>7H<gVpeSXW#>eIY9TBrV^`PHX;QQ)fmBYg%N
zVo-Gk{)C+E#T+m8vIlY$u+kbT8@$-)#YbMu^I|?P{=N9ri<Mri?Vv35;$t4E7mFlH
z%VIB<IJ}hIK)CF08BF52FX58$iPt^}t`IGd$Mg2P`YLYyU;`T02&`t37oWeEcJ?p#
zy-UVgFV=Zc<61lNdM~I9+wUtc)~0+e2e{pfO<sJ#e#_49g|VgC*Is<Zaosb<u*HkJ
z>2AV`QYw|HTg7LaXz5bw4lj0ku}g~DBf8tEw{N`oR`@%|^1T-~u4ZGEF7Mimy5EaZ
z-!wVk#X&E=D`ZT*l5oh2!(RO4#d$A|a9ZdYJL$zKFMeR1dvVN*@=ML*>=GqBg!lTT
zUEGmz!VBuZTaB9Er=9lVj2CA)g1%4t(F@N5ce#7+r<*but<p1g&Wmvu8qXY(e1TcK
z_}z;XztU&8ddZ8+?5k{FFMbi@m8At6m2Az_-@NF3Eup}&dRN5$?ajJ#i{(9Os#m@E
zLoC<4xb8)jKkCwX+^xEFCfxGkHix7i4gI*o3gnRYVXY5;vi^B8^`W*8_c?OCDCt8f
zA0B$~NE)=D4}W>_*o$XgJm>uH#qK9cZC(4@i>IuI&eb<RQ@)#!Ld!p1jILL|?TqUG
zdhx=G>^|i1;iVV<d6Cs;pPpWM(WIa|&WBa;d2<wW|32Jagfo-RJ{4y6AzmPh=<9Vm
znI)S<N0!NWLrQqlhg?47^w~?_Gw`&<#j)v@;6rX7xWH_QeC|Xa^7!mCBUc2aC9l}?
z`H)|LmI6M$CvPVe@}aN~n_tEk@gZB!a4{c>3edtRLve|g5N+8rR@#R$K2-Ignh#}t
zDCdL62gQf-K2-35|I~8%@RkoHGCZ8_;KPY4HQ)B3q5yeBrw%`FcD>^R)tKdaxZg#$
zr0TWY%v-%yp7N=x4_+TXNN3NMJ|Fx(=sxUE%^mO|=tIv<E{)nV7V;r(y=!967|W!Q
zdf~WY_>ie+!La0Ic2mIeVb-QNMx&0sl0dQ#l?AFe_O-VvruZ<orhDs;*{b{a7swbn
z)rZ5M8Z~^V=|e3ZW@j~xTgjol^^rne(KAM_<3n8^`uNb-hYTO;`Ox*1tCtV;eQ4lA
zdmlRZ(9nlQKD6@T>+O1DADZ~k!iUM*_4~u)n+m)u+RTTYJ!7;tm+0lY>ExEe{}R4P
zXzfEAiMADOCwh8#JOe#D`p`)Z=Y1bK`*3-ttE*_thb}(+GRrk}x9e!n*zskqZaz@o
zV<i-?weVMEgS!^1sJl4#U=0i0+~X>~(RFH#(wm*FXX@w6gZ+Hy@3SYmg+2`MVW1Bq
zeHi7#All2v@k-_cpM8xwSagUFLj{I$uL{|#mJRn|gz!Iwv%R(u=s((r>Eb!Yhp__V
zL?`<&USNVKJtz7wNqAY_?2Ix@k?2&>4@IZ>aORX<><k}fvh~Ht=v;x>qH`P{+CLJ@
zJRjx@ED+5zEsjZx*v;y=7yGcpXP=~&imvuynZU=Q%SAsCT_O6Z=t@!MTE+UD5=Z#V
zhpRnf?~iXrUFXAkABy`?!jBC;Z1mx|5C3w^`mo7|KYY06!xuiR`>McJAGZ1MB?qYw
zU-__wU5LH3Cs#R${d6;FTXU^Iuh`4YjcD2K!ww&g`f!ZB$cJ4%99&iXkPo}1$@Yn|
z?Y{BhTjB3~_+DU-4||=|_vU3u{Wlxk_B)mXEXQFc9hPE`i2fkTt=#)qJ<c)i!$t8t
zDSFn)bxPp0=#QdjL|<>{obXSg=S43#sh0$PX4hqh6uu(*tLSf{+*OwIyTey~`1G{B
z|JQxE;j?ct+~<z9C{Vht`=$@Y8mqTNZ~JhE12)Zl*N1xoe~MPQ*p5a9!UM_vP?Y67
z68Ou9#{y48pE{|3`|ywOGsn_-S=<Xw{+th6r6l<AA1A#UMw}m+{CLGd`lCMa-6q-*
zBeNgze*S+7Z~BqNkF0*=@MC4Ah78#Rvirfn=ngTy;TS!=Vl?LB>FjvDLX{fwegz$J
z`;q8J9zXK>(V<tYs2}<KcxQ!G(2qiXd^sjhem@F`g~n>VV${MCEh0MP<2<xH%3ps(
zuUIj$Ea(+0=|?F)e17|@VZ5v@?Z@g#me-H6g_JT>0dhG%$_rQU<1Ihl_M@U7s#qYJ
z<aoX#@a5S!=5h(UMLnVl_fwKyYbcjdU|qc5kANRRKSF-g@*~X;%@5s=21|oA{q~Gx
z_>n9S_TxeQ6k1F_EI%S*jQUYYfcC8;5~%xzB~*4SRs5(bTun4Zw7O`jDE(^)Odpl+
zYTL9vOB!6+5zo6i>3-DqqmCa(TQ#}rSG*nCtgczFt{?lKSQ)IPn)T|5*7qaZS)I{F
zel+&uo*(!9XyQjxKi2xO&W~n(yz9ptKj!+;+>aK1^zx&(A1(c8#lyLk)X|UDezfuP
zYi<ZVbhY*4`4|^NJ3lu5oJ?ps)wO<xtN$2R2R||{B<C6HVy;epbe8O02ZUpOP`gn5
z$Tcn8P4qp{_eHylGO33jJsm!gyLlf!`uZ`(kFkFA^P|5XL;M)(#{fTm>hB)t#~}9J
z)^XzoxPKq$UfL#Zupfon#AO=mE<eCM%#Y!IoGejr6#L{b_Xs~ma({-qKk(z)PIJ;g
zcjd%R3tJ_(9_^-aG!J=*yXXY_x4<|*rm`yJcfoi+CJ0Y-ERzH#`!PjeVXo}-{Lo3A
z=Erp58KN^C`z$|ZJ3QrB+(&-Q^Wzg9?3B3qe*61_Y|v$XED&aNp}-<P77Hv9T`HPf
zJ?^#t$9^pL+xPc+Y}LySk6+=(ryQPstYUBR<J<DtbJdFHPvF(8x|Pbp2MJ_`HLPB-
zujl0N=i^lT%y#tSb3cAyU*bH_K-uKS*M4mE;|o8|O{&dXkze}J?PaCSetadcMYPq(
z+%#_UW4j-R{20wiz>l4NeCNmae(Vy<&!g&n>&I?;KXI^TljEn{1BZ0FnJJCVggt)j
z6}JN%R^Qg!=f|-dwf6h5rB{qTM|;JTEDaBeLrJ|ZvmAcSCF&kwBle1IKIwkHwELJJ
zKl*XT5Atz8PO#DaI3>~3qTilRebp<*R06B(tW?^0(Q|&p^{w}l@R}nAQ!j9;>09Tb
zAIFc{(O>+yEZz8qAHVwT-;Y=Q_`{Fi{J0{~`U?_&7huw(m1Rm*iyNEdX1K=2V!ust
zmlMlPKW_PPTl&CVj=R&j?+6#_9s9R)%Ft!{pME?W)s%hdfgcY!>jsb`fJc5T$|&%c
zACFnXw~}&s8$R*lsUMjGh!4Olto+Tv=*Pc)oBv@60xvJBjK1Ks**jJ?v;LpJOFwG%
zj&*ETw{`E>D;{+K-mx7r1#F+@{o7Ep1kh}Kvs<ZZ)&OP~Q~zm|K+YDxrUqgDet9E+
zoB^Z+P(6S*1IQJC5`Y@8zZ;$qz&imXv8Z%c?f?=4$P+-`0P+Q}txFA_yguHLl0Sg5
z0sNRtBNqsuU;u>zAQujxgaEln07Zq1IhNv5K9d+qim_AxrJd9=0<%ZB)_>qC7eM&{
z2n-bhcuV+g(Ta|pt4@4*D~S#ttmUH_xC8J6K)$&v{^Ry>32WWTMm=v9&C3JfQCCnZ
z1>g@L5P%kd9>DaXS}=e?Yx9JJrxnv??$BvuFxVCWSOJ6s$f%mXPOln)Vp=2shG>8*
z0IPj^b6H@Oo^{{1SaNazl>?{}KvmfgE!6@zldIFSg2^v(WoI-sfEodG44_j0H3O&>
zK&t>+2apy(dH^i~;5t;S*xCW4mUJaHchw1?Zot0Y$OxdJKs`}f>I*aopyh$`j5Z3O
zaR5yMXe#!1MPDa1b9|aRdAT}VOW77T$EQVY0`_dvHh^{kjPD&Iw`U#JG&+cV^0RDY
zhWTUjb`IF5#VuWx(bH?hgu95+*j1n#t3}{_(e9!>M0<+%5~cr~V+HyK&@X_|8pdeo
zAHaYBiic1lgn?`h_PrpIf*2gYkO2M&;2L*0fMEgb58yxm!vh!*z-pGpwhmw<`_FOr
zCjpFNfdR}3U~T|o0vH>>Cz(960~p6c3*bq-y1uh#LI4wGH>L&nc|^~*D>5cYbh79a
zQSRYXfe!<?oZw+}x<qF<sWSy;v4P_4E5j1Q<Eh-%N3zBFqVqVMCn~)&duU$}z(O%D
z5~XEv0850IiY^oV*hyU;;Kvy?x~*WxSf_s~x>9tNXyvLZ?P~&98^Bf$$pF@IM6lxp
z@CEm3vTK9r=K*XK2ybz1yY8YkZ`t5W7B0pu?Aw!V<5vMJ?j0knyI1pT$Nvk?9=nX~
z>^8fMoU_YPcL?tcV3z<byV*$s_*SCdv4OHQqw#x*?s0tf2C&azcAkR)917q<02c!|
z9Kex){lolR06zq9l#>aEOaR9?MbOTXQb^hLk8&b_lL7l78kx#)N}|`!T69?1t@K%m
ze)gYM_%Ew%$1F1sC9}+*0yr;)lh2nakLKFJ-myyo{2ah9oE0Y*_?3Js=`#0ZL3KjM
ziPe7#;0ouTSIVP@X}<?hZ%B29s{)yZRlgp<jR5Wj@F(3k!SeUlt)!a)+zR0D-mxi_
zmD>T_34riA$}jNV<Lnniu^{dT@F0MPocwtT2;z+({$hKbb~C&Zc+CDO@RX$m@Q?5d
z$LCo9&mI0ZfP_A=*Lh!x@jub|9pd7G|0^?-K;|Ig9ZMF0tfJY1$nMxzb%@Iu1TXdT
z29Ym_HywMfAQBwT9YmtTc?1@ImW4aOE#{YK0nvh@g+!TJSfGe#wH~=ShZGOmPmQ@q
zP>CQ)265`7UMh$RK@{y1D;>0Fp)#U`vO$y+F7H@4|Gee!+d)(m=Ili00SmLRSXU74
zAdUrbJP1z^N)RbQR1ex+NDU$wM2K6=R@obbPvFeIb^Jl(zFH?hOP?5%w4gn|Rpo(K
z^ytEdXjs$~wSp*^y<S9=5EZB-nk-sbv`Wyvl%+#8DQ(VHgJq@$Q6q?rL3|!W%^+$8
z@oCUr6frG`^dQCsF+PaeLDUJNcMyGos2fB^5T%>Cn+H)ZXrBle8Vb}8qJaRHwRvrC
zB+<q}G!bYj+D!CaQM!FLIj%(zErVz!mJUI545GDg8^@=uK)WE?JC>koKOXHA#QTn=
zvp_6}E<tn^?k4)4=w4U$|J$qXV(Ae?PXU(GD~R%E?Wd)E#WE~tukX|^i2gwg5DQny
z&Y15W==cv37%VzObg1Z0BNK;9US=O5@IeqG1xAUE79Ar>pRoe7in@5UFd>MUK`u-R
zdm*?WCIvA$h__nU4~VBo;e@F{d?-9kbh_va(Ur0|5+7&J4q^eb7si|*78P^NmDG<!
z=ZUhM`RsvC8!e=pV_z(=B#5O!EDPde$Nq`H@*w8-w3qi`SP{e!({6&5L2&u6RY9y~
zhiTyYEQqxNYeZ?`qBQFqUN5jg^b}W;X`o!b7`G{iFM{|oh|NKK8^m`(d=<o&Aa(|^
zD~PXy*c!z4Aa(??jk_^C_19HtJO`cWW!CHyOP-|6I&5{Qt=@QH?&j#@n3|HD_oX}T
zf$qL+y@v0D*b~H|APxt?Tzi8!5X8YC_64z@g^y30x+#N2we1t5|Lu>{7F9|k({dz;
zqmqUE14oBAu!P(1Mot8AGKjx}_=m$bX#aw%{v!TN5T|84{wR9)zOuT0%Gn^!aoh!Q
zK8Tw^+zR4C5Ep~E9K^3dTngf6R&|xsZyGA^Hd1~G;_-@v*L-wtT%QTrZycNL;%Q;H
z62$L3M&YZhc89M8aoyn?0*l(kKWnJmX3MsVe;CA_Ai6JTdRLPEbUg2I{&)C+!26NB
z%=L(80muHBld!{2$vMk&>-D3`Gfs~od+a|C;@==%P$#IlLtOS5FN63m2wq;k3L;m?
zw#S8#DP&tRi{=O+UVxS?0$D@I=2)_a@ZeH9lNjC*W6luX6gaa#4~;A^A;c#{dZ27_
zo)GeeP%wl-A+9zLck$%>A$u~{YNb<$b?Z<dgsP>J357$rTr#;x2ytH}XMU88sSJD(
zC{rzWu@FivXh<kY;GSs6uAy`YWkOgS!jcfmhEOhqXb6=;c0-pB!3ZH7LItUTw?cS3
zgo?smQHZi~-VxwBZZ5~-4#DHF5`yaR*{Am8;|sy>SOOsgLkLOK6^z#ebWyH|RVHWl
zqtoK}%gYR*%R3$hOCS=$2V;{NO%9=Q2(v<%9YPgWLI^X9E7L>vsiay6sUg%5P7$ph
z!iS~o>&coS)M7aybPXXbg!B-ah45|&wZ*Mr2rD*b(5;R{>xyQG)(fG&Km*ap;w*Gy
zXe80bqD@4bhA>s`TQaq|SlWrU2%)7wD^aGl7HAVfTY=ZtwC$bL4k2`OxKjw7g=3<g
zV%eF!TL|w-bV3O4htOSkNC-Uy`iau5r$Da|dJFV%?0p4(8knWOV;LYYFoZ#lWpD^@
zP0GVUhK4XKgyCWzEjmK<1JRM9bQ=}I)6(|7F^m!8*bv4EjCXtzM%Yz1F@#BuWwO8&
z(Wz`HfoV?a-A8$TD6P&2fjTpUz2Dh);Ef-RIU)Npaz6X&kH%clk3yIyaKD;C<AM+t
zhOj7vbxV>953gQ$WX7YH3Lh&k4PjXbKZbCIW8p33W7*I?4#0-W@(?~@9|+-7iPG|=
zz)I0oA*`me@R|@d2&`rK0!0^Rq5pc8oMKN+3>(G%c?g>XX!$~b4x2f^g|~$8jlkEU
zTSM3;uw67GE&q-Xb_y?*8E+Rm?Wc8jhcI$ZQx^EGBoV$7_+E66=w8v0ePa7VI1s|Y
z5LdI;kBJfvg>X28BN83<rv8ItKN`aR3FYa)a6E()j{Rf^ryM>V!m+0DbT}KrInHJb
zyzCF*JZFiB_G<_iIHCQPdNG7c0)szE`8kC7ePX|`Za*-`Oi$sp`ejZOV-!Xs16%zT
z!j%wy58<kma65!QLbxV;L-bnBc$R!!_-f7gn<4P#+bxOyAxU>axGT{=L%1)g^uH$-
zzQjUj-llsP!lMxW3gK}G|Ap`>geUB-Jg5-nu5$g&4!OYfjI*o2KkQwbU9{9oGX4#5
zT^i%eCYP}>xkdRpFGEQB%tfHaY4~h^v&<UeH7=54WYTc_FGcyY=DbRtEE>u#aAnm{
z<+@!+x363yR=IL$cteAxLD!H|!<!n)Y5Zgoa%ub!8%k-I(Jg$UqJ3(}tszlE9?gEd
zTTDZ74UZef<<;yrTJwqK*HA!!mVyF>L<?&uB2d&xjcXKFLPPgq?uEnLB{i&H<z|*j
z4f8NsTC*qoGTc>eBF(+Xo%r9m+_W6x_a8MV8dME$X?R;hMGX)4hFu!mn!Rf0I~ux_
z%0df6k|gcl7xoDJpM?%y4L;32VTD-Ep77E7VZVmY`^4I93kNh%gQE8vhUv5DVm5=v
z%aS#8)iC+IW@@Odp^gSi<7dJU)lf-8s)ibLc;!mgP?^=Mp~Q?hMyE`V8+#)gp{j;z
z8V-%r7*aG;f6aYjjMAs3hFTg340L8l(~z!V+bdU&&RH0(t09AXrJ=nBS0SYyt4Ko&
z;rbdHXc*j(>%b}v#nMQ$v1k*~rW%?F(C1x&MvW3%YG|cl<I2WuC3|ZP&(=3?!#?m=
zk@Osu*SD>~=*lAT%yOl?(m_KfO&%6#IGbwZ_}*RRK&#FgVq(0~A)dpnSI<2Bt=CP%
zKn;U5yr<!PHnD~t8c(UoeMEb*svkG+#m?3&>Bg6dy(N07PmIRCth&ib{lu-mh5;JZ
zR;ka741~cNKgfll8ir|D&|NJ#Hecv$1H#{ZV#76jpkbuOCyB}k4fpS*&Nyw63*Ac{
zrD0O7CccNM)Ug`IY4}FRw>rjan7|IBBT2_Z`e-<z;UwFat)OAEhOabC)$k$x*C~qz
zBu~>YUBky3mUB30n5kiwW<Mu&x5-Vtbj+a6)-XrI(hromR36v0q>nVr)9~BIc&5&m
zLtY@tV_&FYk?>;CC62xBqPS&jpacFdCm7UEG_26Djsrx)ry8Dia;@RkpC+y3jtzCK
zVz*R1yoOn=*_VZ%i4J?2xK@1VmVKCO1DjaGmn?*z57V$oe9{x*@Aq?kp&@IJME+XY
z$LE;+?4LZm=E;%}zeU6M8un=TTEkX$LJiwB?B*6V?9i}N!!8Z2FKG{giS1J3sbmH+
z^;-?!Y4%Bwb}EfjzBsX0!+s41H0;ytn>-AQ54jF<6lgfA;TY$rQm(_?&s#}9XgDG}
z`Q}GK?o#D|i$9t!Z;v~!@sAbpbl@+w)DsD(SdNB&*l9KVsNsx;3mPu6bF!{ZyMN-G
zP(1mZX20jp@NM@_=fy%}V&B*$?jfrvzSCW9v26BVG+fs3E2mA4_eyEMX}F@{hdst^
z4Zmx+s^PkZ8yf!LB-1x`O|*22$ow5?=ML!yW~JTaaPAws#YR7*S9zpo>tVL-8zbN0
zgwVxg_-0kcpR&1oqW49)^#=kEH9QjdOZ2hm6Va!le~Z$e6X0_V|8h>&QCi0f4KFq1
z*HJ*ne;NuKN}P^NIwlXP@k)dFcLE`^j&+6-uVZBwh1agRkCw`!!!netI(Yvrn~v-{
zzvpOMa*Mtp%4kj<ZwluUO%Q#vx5XreL>+m=l2<gJDD8ABsH2dMqB@G{`0{+i!a9oR
z$YLmFP&u<8kr&UeFQJR;D50aIjwbWvin_4U>v_5G-dfcY^Ow<4R>#{qKNC~1oRnN%
zM+F@<9w!7YHhfD*B!B6po7!Cay&<<aHYMJhy>dkzREVl(UY8EHj<!15>G0@Km{&(l
z9V#7k1a;gmtW2$-Y&;$3)9nH77kyGVOF+kl=kc_JbZ9zs9fpohL&DWX!=lwhP41XL
zM3g>Jfl4}(1uBbHaZ;=5crYYPH-;1)uA%?qR2{Y7s6-2Qsg{n0IvVLn(~+*@)z*aC
zI_m1k&{2oAA<rxGEzC!#r=x*msW0Ga=zg8lm{qEyna;)1(NxE<zOmm<l)6(uxm=?O
zwYiQKI$G;!qw}lm_BiFj9j(}EU8<*klT4nlSf71eyL?Kk!?hnXRc^1NgU$tM(NDKu
zsqLuSW26@kO6NbO5t(krbad6xO~>@%Y8M@|OQ+838+%X3`#QSo=%HiL9i2(W1hYqS
ztks&v<erj|cJIhKhrh6T>-Mv)KBD7S*XyrifQ}V9KGiW$#~>a^QnO_`2J80AKVx)^
z6&RvpsK78$CJh%Dq2mLAk)orV)X_Qu-Q(#tj+4KR4|PnFqzR%^MJMW*<oHh(n4%-G
zy#20DH__=jX6Tr&V}XvDI%ctB^F4nawQj$s`nr5N&yl=yMK^LP;2%qcdzOz|D6mMB
z_T~?>@$|Y_qDx*IMIYuW__2=VJUv<J;l8n}ePf^Kh<>U++~07ej#WA~>iAs8YBmQ4
zxQ_L#t0USP(Gy(@j@hZN<p^5SltzZ#3lgXs#Iomzwn@hqI(F#T$q}k!vyQDgw(0na
z(Y0B&==hq$VUl^Zj>dhv`=sIBS=N-~`VGXgUB|O|Szh*y%^7FXXP4wUT1O-AmR!v8
zosRF>qYM->ut&#U9hY_ds$-vy{W{7_i~B`7-T@sabez<2kX=j1VGh!<uA@4R={O?H
z=nn#ajB(wb?K-YwyA?O>k*mkouEeihr*teXsGQMpR>x^!Mt|f)Hzf<<oQ|J#Tw?Zq
zvF)?edHb6e=@&b%;{vCnezA)zYL@El7bDZ*XK}kfSK(i}_(0(|9aror3t0{P&i<C<
z{)b1c<EoB7bX?PMoi#Z;%L5%ZbllW&SI3_^Zn3WxvhL{U-#k68XU1(E)FX+WeMZXZ
zYi@>noO$k;_vwGve6k@+>2{Gn74@NxM>_t}@mR;-?3RO)pXgW<Z>7{rdn)k9!s>L}
zvAw|;-xzKB#VVv5&pF$(kO3-hcmJ!ST7v#U$4eg3uCjbNzudIASKPE=JLJqzsF{Q_
zi^dxm-(RJ%?AyuN4Et|BZyLyMAcuiB49qXA<TT(u6gRM6tZj`toROL<N-hHl267un
zG?33gegk<7Bo);zep08oQ9rL?KmBBM(YQK<R(kyc2CV9h&J4G9Ewl<7C}Kb{pc*J@
zpqPR31}d<?4F&o7D6avE8z^C*q=8ZfN*gF^*wafHgUcXjk&4=rBwNYl#LlFYm)YJj
z>=~Pj^1ownbvRTym|RhGdcWBCaVbd#o+Ya*J}b>@0GBYMZUY{NuhmWU8unaT%|MC)
zp8>ytfPtU^lY4I1Pq;#cJuw;vG;ZZeoNnNgpW^v$KQG(D1~yjKnR-d{^z|wc1Jud}
zqTB~|n0*P1CW~>&wA8f{ts>E?th5JqYIVbY&|kwqO#`V0yj87%o#VIm^VBks#_a|=
z)iaQ8ptkH}UC~{0+SV~pr<lT!RHx0;rFsUdbeW!ana-|W-@wOPEY9tX3^ZmNRYLws
zXkwtLf&CT^SZHS8T>~9WbTZN0KnnwF!&nzaO9QP8gu^hyXl<a4frkbj8E9*uomBWw
z2HG3wVBk9g-?Ib*oeV5Aut-un8yI2W0|PMwT?}+J&`s<EMc*^fTi|_Bwq17vJsj?7
zpqImWhs5=9xUWDz1N|M#0D<4-=G7nrgC#n|NgXOMOmsMV+GP8_&`1NL#4^{wXai$}
zXBrqQK!<4p<2V)!Oc0)EV2Z#b$7iyE4V~lYJk_y$XdrVQ`##ci$1;O0C~q^;ILp9n
zvCnZ*e;t*N_KytA6U%(j1)}Q)*(EPFu*AR@2EH_~)XBA8U>V!gz;bpx$G+OY3Wq-x
zSSh+n)V{eVutt=HuQhn#XOAX^c|+~HTN@<0QS@^Io1D}sZR`iun+<Fe%U6zli-E5l
z-fCcP=e%^=E|wjlJDt>B0=q@OG4QQGLZd|b?=kRq3+sS^g9bv0+FsFpoO$wS`wg5w
znM|Pl5c^WQdS?tA7KbCEwEtk>sPHkza$Mkqfs+PK37<CbBYXAEBJ|I<qE3$$$(+N_
zva_v7X8Gp~L^A2aJ~Gc6xM1L-flCH%7`Vx?#&NOI{i}iB4E(|&T*7`HbeWUDP#dmr
z#C1(P6{~-pX8{B8y<JyDne>OiHBo*LmR}j8+bsjP4cs^Iz`z|&www)?x$kj4;rEUW
z`(X`Vq#=LSFV=E|4Ys|bYyMV?f6@KRz+(fhFx+80G4Pc26GquE{x<LrXXY?+hVjg>
z&v&m3#Dx())$+MS|26P}^GN~ar6}P)fmh?>wY^rRFfxbjT$~*Cx9k)z%xIP{vI=K&
zEZGHeh;AC)<jpX036~BdA&lI@iL09=3b2GiVSA%_MDvD`Pwe?6N_zo;f?;qs7%dz|
z5wR2%EhSn^w76&q(UOiovoIqAH&iZ+@?jv1cfzO;##>?gH-4V8?ecc4QFd%w^4nsm
z7{;{JdW<G<Z~wG^{*T_9ylIPh>6qpTqg!{C54E*0l(0Rqt6`K1<o62uME#;n3WO1K
zI3y6))y}I68)4L#Y%g_Ug%Js3LKqXnh=%Q_)&0Xb-!I0`!z71MIgBb{bPA($7*)ge
zxw2yzcgN?g7DkFhtB280Ae99Q)C{Ap0G(?Iq=}}B))uW3w%<^qLxx1_iPjfwAj%~A
zGzz1!M4N=s!m&3EqnX3+3N#Pn^!EJB(lU%zod2EFb^>ig+d4k&ozxDF<(nJ@dB%^0
z(S_9;#(S*N5e3ed(7Li7N@xt_+NH2?>i(+v-<Ry&!|36Z(=&`-4)+%5Bic8NevbY7
zez5^z3=HGUd#*uY3=Lyg7=tA`M3i<e&cJarJZ#@L7!d|9uo)$P5XML`juIU$O8b~F
z#tM%U9WQDODZr#jVN4F&ccs>ZF(r(tVay0)W*8rGxFs9YL<x7lC^KF7WPW4x%=lSh
z%noB=7>mM~!%EJPdL?`6yfEg5QSXh^k3=8zi{<Dan;*vWXzc}}bNtEVJtyid4r56e
zOT!@7_9y4fk-AI@`Iy5$lGmLhbvgS?j#P$E1XhTC8pcY2Ridj!nf<dcxFI?ho>aSZ
z|JeF4HiS{oL?II!!}vUmI1`ynxZ-sl=B6;d;Nf$BZYBN5`V3=p7+-}k?+<fJ7~hKh
zYtgNu+eGQSU0_ETI~~ieFm^lqjeyoa_MKz-o<|qP-Z1usu|JIC92BLKS<V5D`Y;Z2
z{5qahmn0rxBbHA7A&l`+i$12Sz)?v(76zXi*1eaT#uGe{uIkA!PH~{AiKoTkU@R|_
zKE0j$Y#8UlxE#i>VPw%<iT4wJVxJ7-WcRY{8yCX3Nc-)iOB~T*{35*g>$un7P<{}#
zXXf9+xWc(NjDIBc_b~2<@j&=$7=MIuEsX0Dy&1+Wfg54WKhu(V8E%JhPmJU{0(V9K
z3}d5wEtmFVp-vCQ_?PG-QQDW3kAE!u#IZaTsNX+Ue6#XQ_<0zc*4q92-!NW;QKyjW
zC1*|n@_%7`|0IdPzz^JKHsw-wox6aEcoSJnOvzBQnt0PhE)&@#n%zVW6K~M6Il1B5
z3~H<Xv78bmB$&u;BA<zlqmvU&tjtjJN)jQDWPgy6^3#{eEH=MH$xPzq_b}8eY@&#X
zkO|F1Q4_^XC?@!1r?`m{Cd!+rU?Q{EDrw@vN~5%iQYK8lviQE$rb;rQjES-)>?H{X
zsO7|m@Ro_UO(cmYeJYx$R#SP0ZYI8&s4=9cDKA{sH(}K!KF>EOZWA68gck+UsrD(r
zgjZ^Y^SRH2UpOGj)S!u@P3`-Zx(S1ob~~w+i7-nukzt~qX<xuwCaRdIY9eAHYNC>f
zWD}K5`(JqX%DPjU>Y*C?yhA3V?{vyr%|wccT1+)j-9)Ns|C6q!i5F!PYnYhXKUQ^P
z`jGyyPZKka7H!sPRoiqE>-)!Qo7mew)~#IP$rA25QZh@cYoc5w_4&Tq^-VM|@mu}s
zACEDL)>Rvt_U-5<CK|D->#B`KFErQ41$!z@O*Av@$&KM%{t6IoA=*-O$H{C=YHgy8
ziG`KZ+nN|%IlZ0m(3TBdufpw33@(@6!NlZ)c`Ag{JDZ5H<}IXH=whO)iQTM!6WvU_
zM<4bC6YrboZeoII|3vCxqNj<mru_tg&ysqvKEI0}XredUg-genm{lgZuW&!n{-R78
zAf5!yOM^`Ou+SK6@*Nm^1{lh|WMa5@jussu`hk;oq=``uH@%#DjPUDqNXE&Yj2Gn_
z!VTueO*FBkefr8r`XugEX3vInb*hOEP0V4%nrKzRGtI;d@z-{zO*idJYyK*kX=3&_
zZiZO|hl_mf{>a2U6JMJ4ZN2#>7MNITVjb(##3B<bOnho$v56%nmYMk2gu9S?spx?s
z8RS~MJ^cUXa(4AR?oUkIeOifKuHvhDjQ&<lUuj}BcfiCd6PNnOXjyTx@u>Z+)^H#%
zQ0YnL@9Xs@HkkN=!+bz&qlwSCGyP+S3%NIOLwVi)((aOl-2}ciU+}R$wV->miLY1*
zvd>?OmKYFwmQ~{+Y?bIX(e0u;M0bkr5-pW0{aX{?nb^lMvcUdA+4oXQdrj;yF{Y-Q
z;cjYN^HbKBEj{~99FUQ9kX35pA;*-7!zPZ1@q~$!0zYshnm8tWoa3d2Yi?N=SJ>dZ
zeM*en${7=<P5XW6A5Hx6OWvi6-0y8^bJoN;6F-U1FD5PvoaY?k<hm$ui9=ps-edb!
zkY72VOxzaB6%JApH-)d7cs8-gHQ_%*8KwVqVZsg0kj--wZaJ3MFM8dP=v~o2Mem8;
z=ZrM4HvJ!&_=~f#g<KXMa|Des|K(wtcw*uyN6;wqZ%&e9&6T6ge<VuFGZSx(HlIs$
zO#3V^P5fu#$1!FO3$HjXEW{2q%x+=FXfu;&Hqp!$YK$@Cg|moewa{p+NjHWs>X-je
zX_dKv!E)ZPkkhgYTs_95CRkjY6J85G3yBu;SSW9yf@SY&UJLmx6tIv_qE%+3(CF>f
zsUVFrQc74T#EjiKF%-5?#NnbAiU}8YEMq=TE-6_`i860#3uPQGYoVO5J|M=V>n&=$
zWdRm$<u@4KwouXGV2c{>SjZR<OA;lx1l$%pjztkrMR&BQ5gu*&Etpav0SiG3A(l4U
zeDQ~+ThN3VEj-4y7#65uQMQOBxmbG<3sHwF2_##n>{zN;s46^IX+`Ji7E&#=wa|_&
zV%e9h=@x2R_F1N;g<2L4H_4M`vHz=G2E=9#synx)yN-nhmObIrwZM0DGc5ZZU7lg<
zS*UMe>;U@(U}{4)sD;KBnpkMXGS8$m<;@=pErj0{{r*rb+M8RLTBi2>v2DmL#ZI`h
ztWj%++pyRy`Dko!p@W547G_)MXrYsZ{uTyU=*(_r;XMoQTj+Jh>|&uCD|w94qM_cE
zTWqLr{<s#S)b4D%-Zl8&nSK^}2-ob}sHX*LFVWtjeJu19peK_S4Tz=8jUQ-XkcB`;
zWrl^pQbprLSyw|W47D&!qQgZ;TNokmf#Wk$V3dVF->|>c&M=0@<)qR+-r)%X6GbOk
znC#f6u%aCPP+*$qbkV=V$=tV@vWN2)q|cEy`ohAO7S}?-M;7K;m~Y{83!5w~u&~g=
zrxsRP7@eUnvand-Q9$XIp)V0$D$3Ml0w0Sm7yU$Z1^eW>igdUbP*z#|^McZ7LzdMR
z-=9|)J`-4DVJ({@Ltp3E*IU>iyiqhL*}2_m_4I>V<I65LH(U71!amEsLfB&AYYRIq
z?6R=c!ZvnY3(I!u2{pCN17aI~sJPt%`NYo#HN8muZjOBm%C35QEPN|T-&y$H!qEY-
zvNbjOTpbXjz7XBZK5#dERZZ=)v;r41JO?ctvT!$oKO;D7;RyRc1pOlTf!R4aBB&X`
zF$>2nyct2R2u^TZSh!^2XA7q+oaW(J_PyMS&k}#+4zE;xvT(-2Sqqt(7&lyr=fp@m
znR?#B%&!_>5M}gS-_!vYtY0i#=76&B)WWY8eq(R3aL>XOY0aw^{vdyy@H=axcdAw;
z?V5$_l61qu)ncC2@2KCq)OIC3PY&ug#ePflw&)!moxtlGm{)qI-na0;!b8sXE_Jj^
zePrRU!3`d>=a=;SCCupXeR^^ci*JelZQ&ma@eyQ+;F*Qz7G7HTkB$4b%G7^35wXvg
zS6X`2o)4|-<<(abjf)^t1RuPuGAVNe^IU4Ntp;~>MLFeSY6^{6BX+JF5oC)Xdjx%l
zCYMjLop)?Wcq4*0+-m2Pl$;R^52{<>Vf7|N5R4!cLDu(k=Z+vTf;<uAjUZnHo(Pl(
z@<&i0f=x>dmuSHV%0*B<f<h7dWtGCBMItCFP%MH{0!%6%K?#RTMlf`uNn>fTlyU53
zBPcvDMmx**4~$iC>~9IY9pU?3_Es1W!8;BoMR5IgI*o3z)EO9Kb~OTT1OeGeUj!NR
z%|$z!_#@c7qsgCB%;8IGbsiX7p1Tu0wFq>U+(1c<AbMFdBCsO3R^JFmU`Ej7E91j~
zu^Z1T&H6JrLWhVwIai8cqnYOSYRM9<EJ}M7fvOQy6G#!Q?xemPn2%dIStp@Z1Zfd;
zirBx`(j%xHL4ybyMo=eW-(RX1LH!8o3TKF>{A2&$;ZnOSoM!JfOqel7X%s=@2--#L
z6;62TtVskdBlg|DrlN#q5xgth+_AJ^BTjF|q*h{S9YMY08t=cgiP-n|+KOhK9LECN
zN6;aHH3MTEMYDFRNA4U!%&vc}O9Yo1Ywt(URid<X6L?RQmn+@Hp@(SC2zo`(n^o$m
z*+;b4^t$Bz17lYP#`;GvAc8L<_%ecl5e$mplL%@wD!|!$a0Ck@SQNn!b`@4aLi{lH
zWOnt4{j*|t1mAz96L>v8GJ+`)OpRbv1fwN&Oav1I#zySt$m67*3F9SNw0zt|fk~pY
zPiAfB&CZ1ySm1{d%#ys*M5l|=K0{!psDE7+T4oE+5uGdg5eJ|EQ|AjTh+x@&6&YO|
z!4jqxQ<g=rZBXh`yNUC<dRk-}KaOCzr2f~?&A<hDRz&b=1S=z0#g5U^bGE%*C#%_+
zSx#ZsXA!io>RQ9OLe6w+1=dBdK7tLx8zcDKNzF2(fF0ysS+>!6Hb?MP1ivR{|An(b
zntO{>&PTIcUq`T&`xe1=)@=lP*wuSkJ0eK0rtRcVN^>*1OJH}zo`=5?{Z{ll(WEvB
zwC{~zUj%0(I48#aoZ$tSbRdF*!iPi;JN6?2TzK;+PXQ4em*{CH^+W_Gg-?mToNT{;
z%kX0aXT(xSw);~Aj}Dj@IAwL{l=p4@d;~8C#<<(`yeMv$c%%Zfa93yEO}ZSxuhLAv
zMR0|a+n33F`R#YHTowI8l+AaIGmOJGBDg7hOZ2v5za#KnW9wc7_jx*tqE-|SB6!G|
zDvG2i9!2n11o2U1iK6?5agQVTJA!{C*AvmFoCoIG|6Rq@xMvak8^MbRp0ih1P#E|I
z%gYG<i@-lOH>a9q1+7<{{G-Smg{Pb+PW0hE{n7$E^^Qm7LabS%_PYwafGiP3wkWbk
zkt2$_O~QGi$Q#8Q!Z}6X6lGGbC=#L=yegdAu_Q)OKi0bFpcqs0MNue<!ci!LV)@0P
zKokWX&+3C>MWQGg1?Gi|MKSq)E0&Y_%ht^Y#d?)(UOb9%jl*SPtxHBxDvHukl!@Z)
zC@Mx#Hi~jlRN&qoYM!Trc4KWy`KbM@nNj|2`K_pZGyLR8t41-tf{A;@w3<)KwJf3a
z*6W8yHF8Daj=~>BfLrX~;mQ)8sQuQN5``LtH;TV2B>SRBjy5@duB|_s&Tza)GN;pE
z)V{Y<HHuIaS`>N|hV6#RQT$ik8gaIGI12vp(2UxDC9^~cktm|Vl|*-S&O#%@4~0us
zaeT5J%2q9EzbKm$MfE6N?alvA>$ub?YD6(;lACt^N9@cPcUlzbQJje4WE8cds1wDa
zC>FCaqsWM2KokR`sK?5WqDRzT#j!yY4OuNwH2y$qM2(_t6xLI{36FiIq7EtDRFcS?
z&znWDcc${LXmimPqAf*RiMAGP6UA@qn$o#l6z!wvoj1J$4@AoBC{bEiW@oX)M7xO6
z*fol74wosYydTB61!{NM4en&(p_HCc^kN}V^ogRM9EB^<(^r5>=5h6xD1p&IQTu)4
z5m9`=P8h`yi4GMV9>p*LI&}0E@K10bX_0qi6r-Y;6UE#pMn^Fwio1i9X^i$v8Y?<g
zbe!n;C?*I@6rCg*Et@zwiYdaqb{1eph7TorBrS1z6f>fj8O7K^+P1-3B+i&6%;;<Z
z-gf&)oSADu6!W6!J1FLwk~Ck8zdW!0^#EmI6rIb(HE*LWiDGFK8=}}4#j+^2{OI{C
ziZxMuEX?TgC_Zs`g}|p#taL1^qF60_;(~|HYoqA6!nIy{`?@H8+~ImY-9=rn!WG`@
z`aFtFQG6T4cTs#1wZCosWz>Fj!tcW83)v4nH%IXmOA}+cey*>hIFQ4&HHvLfY!@Dy
zJu@vkIK#Y1n%UF6lfyymyG6edrNg2f%J)(1iQ-5UKd?tdu`h~)99-P<I!*SA9*E-7
zbA?fcb8n}T3+qh|b0{rnOki|Qa+Bj`@=^Amw^JF8MRDBW@h97z;xTd@MG;rY9@;-f
z@sQJL6lbD1OSdR~isE(@De2nzC@w_*A5+%>Bt`Le5AFz(bIu4nZ}0YqcgG#fY?|4f
z-I={3=Ny)t1SCfZA~|OyCkcWmK~V%mf&@XLl2wud5(E+b-u(D))mPQ^>h<eich7X%
z*_jUbjnN<44}_QN<7$0eWA1EDjhu8p)yL1mw@i(rmp0eM`$ea?8*GrpoHqq;3Emc@
z_)C5K8s%So9(#vrPEVt|%a$`Fk}WCaJ{w+r+}_@d{CAEdU#9)RD2=U$f{z60{dh>^
zNqsz}Tj%_T&7Mu`NX#qoK4;OLih0%1`B#0s5anfk&`bAsG>F``@92CjLH~*wm6vd2
zQS66-f(o)Kh$W|6?~LVUSqicV&n}olFsI;Kg1H1~oLfj9!Mq9vA1nGMh5Ssgn6rTB
zJC<es^fbO*6GssRMHPJE!j~=-Q&3z%brm&Klu%Go!2$&f6_ip?T0s{DT@{p3P*y<|
z1yvQ4Q?TlXgi3<t1?jDzprY`Y^D*>Rj_Pj<IdC+lnqoirr6@>M00r+Th*#iHP*XuI
z1qlk*!aEZc{AQ&Le3_k`#3|k+!RiWX2%$cpmb13l^FQ_Y_66$*zn+njtblmtMtWTZ
zX$mqFWGYBkP)~uTKvz&-fug{zz@s3=*-#a9DOi55F}-vPRyBJ1o#9pBlOXav*R>bx
znjabxITF{<uOO%(q#&TcP%wY4kuctP^}v7ZRm*EbBBp}BheRyi*OtJY*=q6Ofv|#N
zCsT)>_BBw@P(d37ZQ1@CCp1#fTEX1nNw?g|jTJOeKtk74K{Mga1zQNVjE1&SP{Nb!
zESFkzXyjUhgmwzrEB3C89ThCQ(6obs&sVl*;^drPda+n)Ck4dL3Y<eD`p`&3K{v(T
zX7+sr-PsuK#Sc_4NI?$;Jz3qwoxK$FR_u4+3$iB<FX1HVqoA)S{RI09QXin;UEytq
zM(7=^;5`MS70lRd4N-7=MA9$?!-Wi0u)1gtDkCK8BC|u6-)m^^|0dp13R>MyZ$3D4
zjDoR>y*_K4g7J#|bb6+g^Rq_Hsc^a01O*cnOp^99O~G^plNEfRV2Xmv-o_t_-pgH>
zoNlU!Y-uwT%v3Ok<*Y!h>^L&Wn5E$D_Kw*Kj_h!5*wci#B0h1Rf(GRs^A(;8oLHrs
zW5DD1nHi2n3KlCkso<1?B?^`**s5Tgf)k|@mnqoH)>YHFoKe_x+o+s~_z^|fWPYWP
zRlI8<YXsK{t`l4@NaGC(HVWSqRW2V4eXL-Mf|%F#-V|?;)s!z+;&ug}DA=K3r-EZF
zC<UJ?*u~mca6rLlta=4|73^b2P_X_B2VJLYPU0T%4!Pj`Lcxfoj{OS0Qt+j4dMnI!
zRJ#yxZA!Xw#qn(o>l+0J6@1I`QE*7X)%gjuIm}i)-tmSL>7HaH62DV$RKb}m&PUDk
zeSMm3D&l<Ls&zsE@q0mDC;4gGa0FA4UBwRy&MNl5@0W`G<aSQMJq7m_{HWl(f(s&2
z@7q0*cu~P6Q7$XEBIG9pKl7@Dj~G#zHrIsT61*;WL%~fUZ}!Zj&20t0DEO5_hv;_&
z?+7xKGk)J#@~!Lx1%I$rEBIY{2bC2?vp-Vo6$+0<VO?xlScu}E3Z5u<s^D2ve=el<
zxT3WAOTmk%9$&5K-wIwS_(#EO1zA*NRWa&X!jTV?{#Edwf<0fxc6H_FUxpYJ@#hn+
z9Z!f=k?UM)y>qGK?<#RB3jCZvci~Dx4i!CyMk=YOtRkn1w`is!w~8_<%BsktA}<Xp
zrI%Li63!=BQpLY7)ABPB@lr3SqLA>yDvGEm8r6%dC>G^wPsWsp@-lUb4$bK*B`K3^
zIFnvvmsU>2({$gkQ;jOBNIu)Fyow4cLO-Y!yZ@O^{fEga5AS|k#XGzy6;)JJRqa<L
z)l@)8(n5P?4v}UK6$vU{Op5jYmBP7Ci7K2bl2lw+lGL-PbJaNK#G#R;pQi5~o?KH!
zEft4U99B_VMI9A`R1D@ds7O%}R*|71Rpks21XLKR{f;qBg-eB7MY@W5D(b8D?)rIC
zRlagm#6T5=;%|%cdQ^B-Xex9S_rl3O)qdnyGSq&Z_3y;c_lH!!irbyydS!H}IwSLk
zDQPD&Bc1Xk1X&vEoFNsakX=I~d<?Ku`@w*EriunCBD})p@zrvL8>;A_qN57(Mk*Q$
zX(C9asfuR8o2zJ{;`^bIUxr5h8yab;qLqr)D%z-MtD>EX_9`m1Xgsn+%8GK0<LWm*
zQL%A}VG-xB2ovd~B3ss!E-JdJ=*(LFUd_mwwCg~J&hDhu?(`u~((g{{)J;Wq)qb1N
zL$wFnfx>&L=q04LAVd48=o{tzg!ET2Aga78WcIF@XRTA2$a^Y=sMxOJ6WZ)c9jaoY
zib*PlsTi)}z{sQ#D#oZ7tKxOG)RBUtRE!p~uz{cAIF<WeniEv}M{2y_`zl6$+MbTl
z57aORwAUxAJPZg6RV-35Ma73IX0oVNOjR+B-C??OhKlJbJUdh9I{aiT+hM<DqQ2-w
zquDCvsF*Ki9e1TLXs(JTo_g~HNnU-Cus}k$=G7S`*UGfTDwe2N%2tt?!iSAzs{I;&
zql!%`maABy;v*F+Rjd=eQu~4orCX(9wQ9fTUn4q|wQS^D;z-s<l?`l}4eT^Gvyaqr
zUYpf)i;9nh^Ho2Uttu#P6a3?&H1e;ErWf^?9W2$g&YdbgRk2IOXDYr@@ilvBQpV?O
z(oBDH@@^G-MA@ripAd!~yQR~Se8~<nEV5t4$vX|Ju2P9tOy>a=2iX`lb^3-y^eDaa
zun2Mc@J_q$H2hY@5f-TnUKhSoag<MqE|hfPn6&DLDjumguHpn+EYnnRUBwO7Lhi&<
zD*D|k@S_YSr&avAs^J;_3Pi`2vntLBe<%}%&$G*`xG2g`QJYIbE~~f_Rfhaf;Ai1i
zqslcQLuGRBO%=bh7;mY!M7*uy7v?Mcp5SkS90~6TxvQe!pZ0=%y8EI$Q1Rw^n8+WJ
z)QDk`$1470!*C&w3s2b1RZd*T-zuJ|c+Rm)MdrnH=Z}uRCpa49H~v!b`FNX@{W;(3
zIOCOye^hY6Q%)CN^Y-t?|EuCZruKbvt{UEU)G@u85#zG;EP^CiU5FJPCzwqzdo;9B
zrGjBk;#)4{a-qR8$LzZfdecs)&7A7U>#_&`0xlGEf$x{{xzMnJGrtQzH&2;AEK<mY
z!Y<rCn6hP9<TsD62%r32DDDDzQ5PCDt+(i43hn8w{l41$U`i<$O1td8FtuDL<3d@N
zJz`XsEXuh67v6Cp|JC&JE>sYaSyyzSQj}MA;q54|;zHFZuO=igG7h)Zco!~|Pfv8&
zrw%z>h&h~^z`Q1_Z6BsNU2s=&(j^ILT_LfC3y;RAHRUom;N+~HzqSi?T=?;@FIliY
zSCzStD!i^>x?q~iUSLQwx_T}g85SW?Tu>#{CFph`{ns${YZB^nL343l4aU3BXKYY+
zp{EPIT=2UPaKUgP$iipwx)74vF<r1+sJYOdD;{=XRKr;AZuE7r*bJ9Fz-GGapTCne
zlZcI6XzW507d|c!%k?z}7sPbUC~~oVTvHdCxp+92ZQn!eTadfZ%7xY<b`fkN*ujOi
zLTKF1h4#YV>@D0;cqhTmQJXhGUBw#_>?YV<kfE;{+jFRT^JZOG-KW6bxTLxF3iNeh
zhzmnq=;uOz7Y49u9yU49DY0{Bdn=50T^Jax(?Ko_j`H_}yc`yx<uDgUxG>U%;V#fy
z<xobqk2R79c@jst@KMtc`Dh6m<HA@W-)zaCxNC;veM#pd7bdtcQTQYmrn@kMu3_qA
zQ9f{CijWUk_|=nnRa3<~O|bA%`&H^pHW(Kcx-d(`*@D#P2$}1`JR$Snpo~R}gfDmD
z``2l-T<pRUQI-l)Stf+r3)5hQm~Fd}ywZhLEIldG?Jj)c!WtLWig%q08-=jG)(hDn
z$OXJqHVNO%CgH*s;adf_x&F6b^c%AsF6?x1n@9EV^`d++{;3Ol#EdEI67rb~pGTG5
z(YSk~%D$+w--WMSXyZX!558uZyU@{%PHueT!a*1Ex{=R~LoOU<BjnKG!uI*jZ`m*|
zy>rxMKT{pyuK@3~gY%XnKk=9g$6fYn`V%gkcHs<5!-bPBoO0R!F$ZMC*3VIxWZL=)
zKe%vKEHAroj-Aeh^X&dItaYA}pW_~Fct8yCqL^KBVgJ3Nd<NqS@GGJ)h#6gV;hGEg
zUHpGxf7iI~!aY`EAmN61ZwlUG7GCFV;k5Zh$ghIGxo{_{-{r8p&`E<qL(4OT-(C2F
zgS;CzS34hav~eN38)drq9=q_T3$xEAWOL&QFF0$)3m2wUO?k>5(Zxsi%!TJs{+AFM
zzjUG9Pbq(k_Z5dYA+H5v-1t`r<Nhb4=<o=mWN{;_<QOZ+&^Wi9(VJY}x{{K^jen*V
zppw&#w<IW+U~WO`3ooY(UKAI0CFggefE!6}RClAG8-?6>$8Fb0VK<7n@wOXZv}{_`
zjbd(;bECZ5{zq2ajgoGZa^sU>F(urXu_^9hk3_lw?wHcN9yiLmkz-Esp@U6wAmPv0
zR+DpQRB)rB8<pJXlC2djYuq=9jLs=-mEA}f9?4ogrSzGUDsEKeHN?7Zj}KLotl<WA
zUPHVa<5%T#(AbScH@vNbbWS%iuNHX2+1+ZmQByA7a-)_TtM_QC8!k6$yHUrDWH(aW
zNOL1yf>H(Ry0Ic}dh-(*G%js)smBEGrp<{26(RKn8AP}AMFKbZbi3hk+w&XgT76T^
z>xNIfnj3+rt_$%Ca%!Rx)q`$?qTF=j=&$z7=dc?Y%*BlcZnSixl^YG+Xyit7H~O}Y
zG^Saxgx5tgnz})3B3}RS2zfKNJu#J}g&TUg1e#SZnXr6eQfoKbxzXN@Hg2>P`^9hD
z`)tsl)bRElL^<85VC~`w-RmcHW{tRU-HjV=baf-bI(1`*8{ORK?#2ghOmW-$)#N^(
z+{2BYZuD}aw;RJ)lFj4$2)-xSSCC>qH~L5U05{%^@_}v)it@oicEuK={Se_p1?TRK
z8ScgiH%5wgtRQVhxiMP!n5a^APRuyA2RGgqWuo8&!6B7n7-f<hli3vK*qlnkxiKHQ
zF_o>ih;x(M{#Z6maP^$@>1@C(sNs>BqAU_V%Z=GWsLyd@Zj{e+W4`bOQDvc!!NVhq
z-B{wrQa6^lv0jo|&ZfmS=EfTFe&ohVH&(sjdtyG?6T>rQ=vE3@>&7~_eag(7C9%9b
zIvQ*c<Bfteqqy0PkKNcJH?qx*?QU!p{>{-gyfxD(k}p(*<e%cPJKgxyjni(NabuSo
zpSiJ*9m<Vo+uMCE`0Dp$^4-GsxUp9V6)wR4lD)N<^Q0SjIy?8f@s%52i$d{RAqV&?
z;Ko6Y|KdF?_-6O@x(n@1+Ubt)!r0i{I3}Sd1gRf)gEln&UX+=QDpO=erzE?3Tdg1D
zjxM-y(T%fioD=Vl9MCRz;H}Y}cY_lcNLGz%c;i&cB{wd+afP=zx#3k7{)mSE3=99n
zD?FC^vm0tQ*Q~rLJ<1il<_5{$-Dx-7e2<FU9^~=hwi~~=k;Q|o9{lRYZ|r3pa^1M&
z#$7iayYZ(R_uRPe249Z-!J;@Fc;LqGtXVyA`tXQ3*TLVTVJ8C*-CX1nLz_n|t1AwY
zCvH4-<1aT}uwdP&^1CvrZkgw9eE3@+@e4;mzBF6zc*#Dst<5XmnvlQUnDCQ>%6GHu
z6o_kvM|SY!Uv}`aj`-9h@)!^D{$($RiS;0PllGR!-cBdZgKQq`9UjT<!S+AxhndU6
zBRM>HIy{oogQ6oMLo@2-^5DyHt!cb`YSX+P<ntiYg9aYt_n?3Wg*+(iK|zoG{P~M&
z6-rF0kfhFEY!zX259)f5=0PzJihJzWT(vxW!;F%`Ay`VVGB3u1G9Hu_FD)y0P%g^L
zd%z7vDOQXsm7)s8w?(WXSXHo^$DSC;pm#io7scU0l8^+!L_wz@&1S{tuO8(!gw*ul
z)><EfYKymyU~<$ZMM$a#2OH<54PCk@9>IEo^#v6VR3Wr+dEgd)E4RHdj@JX_aC@Hz
zng_b*mZ0B*fCq+fQ;^0%AtAv%^Fvhjl*}I%Z-(Gv*><&|2R-^EHu0dTkVYOf7J`li
zsW<c3&s5DlXyHNM&Ca9|5xyL2=|L;e$*-TO&{}xi3(2%>=Rtc9a(R*4iw+*nC&6|P
zKJlQF2c12b<-u$Zx_HplgRvfr^Vri+BOdhgpuY#*s7x}ui%7kPke-6QJm@W?4<nwl
z&%W&I!Gw=OB!hPQ26!;kgJB-L>%l+|1~I8~p}~Tcv!u*fr@rUG5D%_&40D0!y1^kv
z$yFeEIO{7mWt7L>3V4JVkM!^vKJ$J|%4qS95oA&w$N2gdbB_05k_VGn4#k}Bd*Cmg
zI)OQ^tT0g&b3`O*WZn-vnCiha52mp3tPQeje8{H0N=s{BZ#o<NgM{>Q>8%zuB$?sC
z`RYkCJv_8G>G)60=6EpIgVi3ak*b;J!F&%E2!Fp-kt;76FZ5us2TMG-kgdrg53*cO
zCt2#jG7pw}u!5asX0z=BlS&LsYRx)gImgvq>A{g}>Dga4?l&SrvP!&PXKTVS<nNOC
z*RsKTu-=0WEYcB?Z60j&V3P-1Jvh9<-0VU9!5RPb4sYQ#h(WRI?YUBZWzTTGluRmt
z6Y7?3VXn;G;lWN1j(c!Iy7Q+V+#eTv#DiTPeCEOD9_(hDXHi#byvJkz6n^Ewn;)0G
z9_;hr3l0>b^T%l7l=l0Dzxh4-I?4|S`9_d&4@qi=1)1!(LLBWPeCqhlgQFfC^VrXg
zKUJ(;;d0E#?_$39;3S7!ul*nPln19d_Imhw0m<vtGamfl!CB!;MnpK{Vszmg=V;S9
zlkP{>5ewXdi&7fbL}#&F^5C*4<X43JB>1xjSB0Exlg^;)Vt+&MW;D%P{1p)Xi(u}-
z8O-R82Y1=LJ$UZHJr*E~G+XLp4<2~ndZjjO=>J{F?ic1C9?<(xkmQjERhK$R{`BAp
zM_>+d4g3qfE>U}4%W|*O#+94?<-rRNUVAWaM(Cvnf77i<|A*<1h<x7A|B7WbBH}0=
zxjrHi`b%X}|9bGB2QgmEo1e<BU|GC)F(N{eeO_w8k@hClu~Lk2USt!JU66VXFLFlt
zTW@Ug#^&)NuNPgs=;}p2FY<fg^1|)4|FsqHqL3Gby-2L?Ea*k8!}iVwMZ75LMFK@H
zig{7oi&9>c_F`oALX&eBD&gf`wSKyiUOZgfxa6w%YeSu7ykJl{FUopB@505lSl$bg
z`~Nkq;6+8@l>{kP_Tp{fRRpVgQOyf@@s1bqUO2p1)w#hit}|?%@^Fcho69|@lK9TZ
z2qQYZNb(}pi@IK9Z5PXL!PUK};YCeeKrLsAAW1DRYI{+~i_=@m@QZM==zOOdZeNh!
zi21^n5!1Y=@3lV)a~^d%?K4v92_6j;rl?4eDp=a8?D4|uMSBjXUiiGwylCx3_1X^I
z3%?hQy=dY^fOpZ5vysypd0}`F^m2Zktz-(Cg7jKK!d_$uneunGz^GX24ZLU=wV^oo
z%Mujnmht_M=*<M13$_q!DcDLdv#Fg(8!y_*g|+kI?uo)&P1E#oeBWc)Pt<JO(fhys
zEqQiNCoej)v{$DuxF04)yy)h|7%#?p(Vcf!QQqNr(Zh?LUbJhJ)XR&$Ui9;#H=B(p
zU5~|-E0n~b-EE!yy&w+o;_)-*-`m=eXK9`^(2GG{4EEwZFNS(C%!?tc*<#LBv+eC@
zTq7gZrlt+|VuTl?ycjJ(yEpnqMoEj2_O}(z^q`xSX^rz@JR9VA=Z9Xr@5KZ!rg-gL
z*(ZAKO?vrnWwIBOy#L$XmwRB&YUKQYmLnt6Zls=C6HCjfQcBYVr+YC&$V`^Q=Df$g
zs>!08<;9yaoXdXaMXxY=hcVxa1?)!wv<hIM7mK`Tqob{k#mtv&Rf9vrQZJTy@r4gx
z`mo%K6|8z6LOy)t#Y$dMO{d3)RbH%SyY->24{N+w%bw^%ejnDcH+i|fJ}svY8@$-)
zMRp(hX8JdIvDu4DUVg>K$K~~pS;AiI@nVaV&sHzCd9hvir-Cf2PrTS6d}mbIa4zpI
z;hzb99@T$Y9JkkteO?^(;ux<ysvq*=%P8M3<SQ?}_Tqr>Zv+qWj&it|UAo?gNOxHD
zZ@oAo<U2v?n;zvq?!^f&&WiGVRR2N9Nx@Tsrv=ZjCFE-LCe3v@ik=gZ-XFa<FZ_ZR
z7lriI@>1vLwkuvFcaHmu!=o2JdGWIsSH<9t;5Bw$FK!68?S<SFyd}6hN6}w|{3=MB
z-@Is4O((hQ#XT?Xd-1@FC(+Q~y?7Mme+YTVs+WfPII92Y#p^81nZi?1o<;TNUJTrj
zLY?j<Yh3id1z$yN{$boG|5wP1m6c<B|C<$`#fPlIV+G@)dNv<Mzp}5n!LrmGK8)Dv
zt3BWMmJhjn$nC?{AJp2D)AEXO9v{A#k;a)+RJb2h0Urwb(ELnl9Ult$P}qmsVpjE;
zvxpBHd&Jf9p{OXud?@Zi2_H)OP|XMUP|AnWK2(y>GJ?E-@;;OmUM{LkYHHV11s^I#
zl`pism4&}8SS6}g_2DxqN!q{TgH!bQXsAO-f?%Q#H`cbN8C{Yn)qSWDwXDf&o7jv&
zahFrLpVj&tMah$Wb{FH@!W18TtDAINmYU{6x({w2#&=CRJu*_yhqzqHE+5G2`=AI>
z1>YDjbX(=Z<hOg5@iGw~G@m_ZiO%pr_kl+s`9<OP`hX8N3pIKZdiHRF>4W9NF5aLI
zVIMMlXzfEAA2NMt_O7py4~>O1;K;Bit)Xzfb!_58Qy*IRP=1Z`S>w9IX2P2b(z|$C
z+m^yxMU`T2C$;sVoe%H%FvN%UK6LP*pAY?g=;*T_u)Fxs)n`w6?c_seA>=zcg(E(6
z6K|CYu~fPX?<Lqnu%{1s8##0M(tC@yk6>TH4*8QAWq=Qxe`@-!4+DLm8TlX|?u@jb
z<pz_~O?t!mU_aD{VLr_DVV)1e*<5{?=EI8Ll#!Ae?I*~kj$*48WsKlh!Eu7)1!?)d
z4?T-lCYdP8q^LgGhYzBBiVq(OpBhyLpU*p;#S)vsh%<bcDf%qI*@APTmfbqU&i7$~
z51T|eoTK1Ej_^LPlomy87W=Ry%9jdRCb+d|mlga8@L^>%biI&OKCBk9MsRI3be)i3
z&HNjLY!rMm19`LXkA2t?o3cgtRv)(cuw8hGHida3bf3^bl%0Z9KJ{V3#7-oi`|R)L
zyM5Rrq)NY{otDP&U;pu|+4uVFzyJGuASc=H!&g3J(U4Wc*FGGOCjHEZZ+tjNOCNsr
z;Sf8^z4#M?hXubCJR<m=;8DS2f;2wv!(TV;mAQ1^`*6~SQxbGq@SG24g!~Y-Kg%D%
zQ}*5nKZ<hRhYLPjjD}toaw%#<vn!(Tg93LTyz0YmY;rzav-^UrT<3`4vo|NaDM)h5
zhugw`5&Tu~jWI*-iua)p_c%&$$IIf*`#wAnk^FZde+X7TR^d@pe=Our!6$-GeHhuZ
zFrz%@?fdY;hnGI=J8b;Jfn|>KZ??VVF|UNT+nJfeTQGK1grTp+=3l}8e2CHPD5WK+
zY`2(L4f!<`U<GYWh|`cwLv{^36)T5^w>0F^fays&H8g#0aQV!<;|aMn<kjrMv+`)5
zcU&Qzn7TP3p9bO=dlCw2_W!}c8j5K4tH?rvSKm%4s-c($4wdg{D6XM|h6)-gic(TT
zDGjAH91JDTJ)S;ptX@V#ISsW(MapWR_wom6#CvO+l-EFHA{>M(X{e&1s)lJ9T`FsM
zTLaCkQIXE0A}hnm)iirX4J5StIDOQp2xG0Pm!A<6G$d-cso|Cer-mdA%QP(4P@PxK
zOf}Te>^59e!`8Nu3D50)A!=#%_g0c*4JjJh^QL&e8tQ5YY6xja)401Gd>S+ji`s_k
zX;3t%8tRMpNNfs47rhRX#G}Ejp;4X8hMh9$rSod`D7tV|gk0AU&|rw-7fk6Je%2+E
zFFF`XZfdYJG}q8VLs&zGhQ=D2XvoyifXQk&6K^uL+VjE<HT(6*Z#~0r;^w~EzNv;D
zoimwHGcjX=tuBQkIZ}4&=`A(1*3gD+AZto14XanHUtVq6mIX2|+)l$Mytel{Wp5cC
zJ+jTH)Xa_=I%ycimY|_CFH%Eq4Sh6p)evFaa*4fIvl_bdX|_^gPiCs&mtCn`Z`k%p
z+Wgu{Ty<Eda$@Ui>aqbkS1k6`&`-l)4ex2_uVH|Off@#B_?Sx+ok{Ns8CNQC^ZTmv
zPzn{Utn52LAHpiuFhT<tIih^xFg6uO(r^v?cc;$KeH6QG(?&Aus!8*<YbDDij?pld
z?LotIT51@tVG7%f&R@I4_cct^FiFD%4L80ka@OZ#c3ki{Sp%0ke!w<gEs;vGLn-TZ
z--nXXRKd=*?bVtyG|bd6U&8_o&-?4MG|bU3SHo=ap4h4#)P0NoO5<A2c^Vd%PUr2v
zs^nbAw!t#2>|CnB%PrN)Coa~oMB^b)_M%I!D&?KJ3KV{<`&O_^YPhK3l7^KUR<R4S
z$<=hO*06?EqhW`JwHns3#cD`?9(=oKj`h5TE6E!*Y+&d@ZBWNlJtpa=T<Rv#H?v5E
z&}NH}_g^{#&y%-l*v{tnJeh7(`_!EpK9#<(M?>6S!Ce}-0qo}*KBN23-V(OzEN$no
zjNQE1@iy73;mBC+&mP+KPR=hhe95}d@Rf#dsdM~i`NXGZos@J)!vPK7XgKOp&(~;l
zP{^YijdmxbAJ#A=!`Z)Rk#psmen(xy2@T)N&1N+k9}_aOSdrsGM*O0m)No3}1twUm
z2n&Qkr+LdihR%oql^=wh6+EZm$Ebc@NXMf8i^bOzmwBfeerA`^?43#enG-|2Dz|?_
zklp{9hNoT9uXCi@qtZ)PY;K|3Y}*`0bX3>ztA^j$gLGuq?ddUhG(6z-$ef?M9J`|Y
zzGm+b_~5O?-!=Rp;zJFOHT)_3k%rT`i!j!csC}G{ry8EIIf?RG<FX_CCH#fpOToVd
zUkUyrIRB(QOJt-P{Et0!gnbxUj1GFU2xb+eH&zG@&Wn8x9XWOM=#W%F$6Gpb=_sS)
z<nHFVb>z`eP)8vhd3Esg^8$kTbZ~M}*|CoN;{EoH<HV>45{<$-is)GT+EJSSa4)78
z)lpnW2_416TkV*GVo4pPbWGS_N56H)F~E_JBzWA(Sd|T<tmIoxu-7I>c^$t88Xh}g
zpATM9M<pG5VvAPR@wN^sRRrU8R24#{nhpqmM=<B2LKGd*&;%Wc!ktlt27FHVb69!}
z9W`~-(otJS6CF);)X|Zw!))aA=}6JRm*o79Usp$}aBqBmDrvg?eugexM?K;7btpPi
z9e-5MI=DvG`Zcn;bbF5)+PHOiqV`@P@pED{$wJrR*AdWR=xCrLQ$mB1k)<OPjb%nJ
zBP>cr)ceMs*V9n+MmicxBGh|4h^4-HT}m_E{+Vv2qq&Y2!dvRx$3su5r<bf+;K3`4
zp{;ei2<pF%inP<wUdMPp-uI(}j*dER>A0<<la9_hF0#^fbkWh3%|OR?-QGVoqNAsd
zUOFCrk=Bj5pE0^KcOiqvIq79n?5*Q{9o*xzkB+`NCQbA8(=mWiiaYy@m&zOdu8x5^
z21(Fh!I3)N6GDR_LWT+s(=j}%j}S8Tg>#gU(Sl=ijMXuYWz`^VyeOsG+biXt?oK+i
zB58t-iOgEZWF2#K%oT$V1g8s5(ea^>se;UXnvmRU9W$cJOd+#$%ofsWO)Smk>6p(<
zb*$8}Wqf`r3v?_LgGD-)30W-IX?5%pAxi}>J&0c}WQ8Cj+J8Ko$FI_{iA}M2{Awvf
z>TASct>8Kx>xFEH#@eXk?z?F;+bpp@j_O;4Y-JS`OJwLLI<ALOKG(5Z#|{n)c@lQA
z^%n0!_o<Fu!jI=m_)G^eZ-In8I`-=LR>u(?`*eJv<7*uUbbP5}zm9vYGr!VtV^=7n
zS9tj+ap#Vz{5tciFZ~-G2X!1~7QXbCj~X7*k!5sbX#Wh?HHBVc*9pGwbR1>J)bWFk
zW6Vy+=Jy(()Nz8>pEady{^aj<@Uw;0BTQa$XK3Cy-zgoZbqxDXO;ghO2lK3sa~vYn
z^z$5ZMn~-ZKXv5DpG?B9Mbt0o7}Gt8*Rb?L%w=AuZa?^4A+ld@PWV~JH4fujQ?81a
zif44>x+oNzkB;0F`~K5wcOMx3g@eD2Z<-WI^5ZuhcXSl+qo5zf`SM3coFCczxToX3
zjt3mXbiCB@Hw%-6uj2`acO475h56Vvq-OI+Iv(ph;kx;sg8xM_$xC(2e8&E$<G<FK
z&)MC?@~@~t@Qh03m5zUOWcAx|>0V3dzpUBO_8(^||8ek%hGr4M)MEX1nlxY*+5O1j
zM_xb9#OgWy_Oy*+OXG42dCQMnet9E0G0bzv@`!lsda4pEoX>9`i<X}T?VRU*vBW}t
z6!s(052qhR{3z;2B|j?rQH%xRM;SlL`t7%)CHyEUq-W#U9*&e!{{M}irTwViCuzdy
z2*=xUetXm{?+0y2D)`Z;k3D`?^yBSTI?3C9RAEFvAW2c7SyhSEy<@(2gfK6Mq!2I2
z6cR+IF@rc3rB+F*TCXTcbw6tOQPYoFetRM9C_ifZQOA$Aezfx=*^d-ILX7K2svmXz
zaQWf(+f!=OSZ?i->I+Zzqn?n$O=B3O@P5bIU-?xLi#3hubj;xq?)SqhgrPn^v?$kE
zRuVTLis4642*o$L<ww|$&4(OqB=HQv=3<j6*g&u$i%Upj!6t&ttErG?y#BNHh4DID
zh|<!JR#BVQLKwu0FLxq)dk+47^!H<cAMctCJF+DG=*0rr@95;m<AoJFi+vYAy803E
zqgync?zHb3$6R`d(x6vSa>qx_emENF?FV;p@8idhuL2bN`q9siW=&(hZxTx{-MfCg
zC$R<!PEJW2<OgxEpAV2_7<WiCm!W<P6Fxkuj1V$XaPjEKXg|hCosRY6R#SU5@i_7R
z{K(0-858`N=*ORaJn>@^v+(09Kfd<k13#wtvD%L{lFo;I%=cq~A5;C9=ErnDHg0y#
zX1}QEq?_T#OyRSl$~Cp}9N}~Qn8)^W)c9<4<jCj<V=eS!ksmAl_UcQz#X^<|E)iVn
z$CA4p7_{7v6{1}5<fZo`;g?27LS22USOr~uTy(kCk9B@*_u~`4{hf5Z9~&4{-k!Df
zt2>6cQS?oMoBjA$$QHq^g4+bs3lyO74nKDKvB!_Se*C(v;-`KLO-T97k6l8j&`bBZ
zcy|lFc^=*;{7XN+VEKGhfa2~R8ZGy8Na<>m1FSedj`?xikAqUA>5c^ciX9SuSnyjv
zjtKcq@TlO7SB~0qQrRR<@b>S;pJsx7d@r2dlYX3v^7ao){NM*qy1e1XO+U^GKgTxa
z$9X@xL=p}Za$NJ{g6J0oF9}{2ydwCM;Ln0r1$VGi|Bk=zN6ShMrtt29gj;OAe%$xt
z0sBIn;}<_Jr#SAi#P}27#~uIwPV4UMcHHimz>7@!x$`}aY$F}X#T>u;!R4_j1s#us
z{Ncw#ArzCI#y@7mh;{IDTg!jqpR$$ukr3dC+j!1WouBlVA1~x)D?fI=^y6=iq5+f&
z;FTXEzbjZIfT97ri2m{8wI3IoIQ|vm|Dxp+BcWLW$QnSb@VEf-3&|Eh_5gAOkTZbX
z0ptn59TWHD+X`<5kSl<^#q6b;gK9WAfA!R~%6S9G7r>AI#qty_`!!e3x|~nNd<#fY
z1p_D)Kw)N4%$Yj4?#QJn_g&8Np9G5qP$GbfFB8a%2QYevJ)t7z$MkoO*!$;)Zssc;
zK$!r_22d`5_y8OM`$xHa0NXy)Dlp~tS`DXKQN&7ul?7?@wvZ}<RRyaBfN1DD0nE9d
zOf$NAS(5lqHrA;+14s(M7l0;a)dQ#*K&=331Tbc^^GTO{t;Zyn?yJ@gpl$$Z0n`Z~
zIRGm0&y!OENDbh{9P|F@NZE&>f5s%G2Qbdes24zee%+fGj;qj|c_{%*?xkLGs;Xq+
zie8U90FQ95;8M+=6|V>257<kdS43h00T=-^4WL;7!2r6ytd`q|Z4|Kg)d>acL*-22
zRsdlk8G;PW6w*MjAuF*?eu{LB185>5511Rc*2&cRcZh8sKnqEYhts_|d#-f=ZJ1^V
z86mU{pj`mx4O}qLK7bA^D+8K=jsbKE;8p;)1Lzz;mjL<&&_7^LYVFE;ujA+&KqP=}
zyzIdL{{Qw4pho~b1L(#2onrqjEx)0{ipL4;R(-^VdWk79S;j<eXLAe);N1Y$2Cy!G
zfdLE(aMCsAOZtNY7#hH^fW7DEdxAp*^A}Tx2QVUlQEXHJtht_#TZ4{dD;g8w`J`Nw
zF(!bq0nC*|#tHIjCk8M+%HJ0<fu(&gmO+zPaiV-6I9+gx;D-TB6*5h*$?yL=!*qst
zX9h4!$ZSC-H79^;E0RdA7qz!IUclxNz={Aq3SdzHivw5|u&0+V31F#^acwf_eQ$?4
z>d)-;$3&I~Q0b!r++8Ps7j-3@2k$O`K0fD(UCj^l&3FHc_N(b#mcl5lrp0jK%zBn*
z0EYrN9Kc3a#H`w%2CyrDO~N+|ek`~}aI4@p!R>;d2<{NvDfmM#mFX-@Oa3f?ucU*2
z9>8wiNLuoq0QLt^a#8KQ;-#`LfG>o9Daas-d`><ySNmGxa+EkA<eLBv3aPx%en0<h
z07nA2!X6Re`jn*aB<QH{<wtCTW31}{P6Y6M04Lcpqp6(=;EeFog8Ee3_=f;U&WdtQ
z@JGQwWBaV+3mk<4xFk08UjBa(X>hfiJ(T?{BFR<OV3c1E;6{|+jK<;*(=Qw(4dgcP
zYXH9ma3_Gf0X*ZN9l*T+?g#KFfKbasx(5Ni$G{)rjTA}D+)&`{ipg{jIovf%oKhzJ
zaR7fx=#v1RvcQ|$v6_#GygMe+=u#S2F#Q$4>j3`cz%?Q7ivV7-rE&acruBk9f7Oh}
zB>#xFaP8#(0*EnCvSng+1I(pLp2TTM$yp4$V`deM6^t{GO~{*bC~`=YoPuu&Udo-w
zMDiHOYoMZmN(S;7$Zw#yff5D^7$|6<r~w`%&6EonC~P3lvr6QrALXT3#IP6hk`$9%
z-iRd)%or0XXP~@+QU*#JC?g8RvO@Uq$$huztsq|RokC7Wu`+MRKurU+3{)|&p0{D(
z9Rn%19aRlfGw|(d#||x#Tb*24>PTOkH{O85K!Slgs~t5A{5;!1muSFg*bneYg4G2N
zT(K94d|RhX(SUJ2F<-R_j@kz57)WN~2I?D745S*UYardg$JGoPZ%Htklq#AgxvxI%
zeAj8zGjQ-X$A&Qx)qu+YFT+D+OoX9s1H{!=)EqVIc@3VHm`I(d8}J(#VPK?z0Pn^C
zPg)#kAZQ?Dpqqj2222B%fz}4v7zi84FzoTRnSo3LSNb>_8CcoLLDIlLLj%W`B+%{P
z;lI4`I*ulWecm4rly7R-$I1_R8o%tbnC1pru-1|t=iYU+G(c=6SSY8Xt$}t1mi2W+
z4BTqrXwSTII=UG4gG~qi3J4+ZB&4$eKCaM9o2~|4x?@SoK8PP%#?iw-PXql844_T6
zgkA>v3h6D_M{q@tI0n)6Gw_DL8zl>i#nN%5*dPOg4ZLSywm)HrfuV-I7-#M77<z{Z
zA8zpfwe9V?AcjGs4Evm>nFeMV_6NJs2F4f|Yhav#@dhRvJOvUD$3)&YFp;e{GkF3N
z&$M36%nW8G(>uvPvp$W>KI$;Vz=sB=8JKQhQ>Hc5!1)}m`_2?@;gWM~WCr`f*a)W^
zF^JJA&NeW|z;_0Y8koxqV<R!J#lU<63s{~8mK#`Tpi94^{OhsUz#?`fZoj}$F~+q-
z_)^23E=X5!aq0?DK4Q%ZsXsQd%0Sz>sWjfqh9sQcHA2=3t`l4@xWT|iA)5qg+5T&l
zahcs#1KSLIVc3hNw;T9`_cbqdpMf2c(Z#7D+Uyig@~MGSZS`FSJ`?h};BG<cdkpN2
z^4_;Q(Ej0b^-BZ$CGmY#b1;jq418^%(bx#x0R!Je`9TARgddJ7-x@d~yr&pnZ&>fB
z;XB6mY~Wcqbb=WfIBnp211Al*?-yd|CtLF|=!{+Fz9nVT&#@!3g!5#cHL$NyJu1yU
z;B1M|kK!%9MZ0L=l7Xc`EDPc?`wlxu5Q#zj#F2r+Q4ke^xN6{<ftVn&1aaNK4Fiu1
zJT`EX-NC?b9As8lTtRc2O1^|=@1&6b!ttNg{X@d5A59_+?ijc$miG+YXZtkpyLfAP
zRi4sC1G+y%dB~y6tJ3=?@2*V3nnDS$4LlM4RFL8`1J7Ay;}fP%O!&*d3*q#><On1D
zRaE(h<a>ib{~DN7Dxp}mR{yb0-i;qOHj*`n*dTHTktc{ax_j|Cg2)*}wjd^0_F)Iv
zMJ!g(@s^PM$WJj>5V?vw=;n-a<P9QU5M_cW`^F%M5<!#<qJVe{2Jvu2gF?a?v2YMY
zgclVo7S)Th@ISMEsY^wb(n5Z0UVtL893%c`f90Q3C;!eVwq?bjJy!FmuPQ-Q5?)#G
zZNb^w?e{GVts1nC1FI&8Al?xYFX#}QCg(XigGdS@BZ$l(AHYyU5~&wN%^;XmE%7qJ
zH?Lf32krey>IfzarU<4A))h<>Ob>GQU>O?MkEWmmp$6d+uUpVB=n29bwebnj1a-lz
zTM9AvKoEv_gMw5-Ld+nns1gohMcIN3Y7j)jAO;8VUJ#9fXdFb>AR<9D38HBbZG+&R
zMa_7>OByu~qJ<D{`O7)3Era%y*Ve4Za7ruTL&GWLZGu>wk@C^lNV_1~OY{ywbQH3^
zeL<#1*C~k3qL6nH!YQxag6JMZpCI}M?bnq(g6Ku^Q`4S7ZuFYEZ){}V8nt&2qt~bu
zxBlF|Ul13^Mg|1A)g<~0-|b1KQstC7Fo@JHVR{DzLGSTwDa0W`3=Lv#5c7f<7R2x%
zrUfxQh!H`I4B~?zrUWsH>GNKK@MKRdFt{P7Nk1GL856`<w$HJVae^e{g}l$kA5|s_
znG{6+aS<B0r-e8af5^glsZI^r)3fO~6MOyFB?dn=X9O`bh&e&LtkjfQ%wppSVthmY
z>lf;p+nGli`8f@{#<<9WI!;dHp3m|OV*R|-1wkwfBHY-2v}z6}wTP9~!0#UyS-CKE
z3CpuYev;*^)*!wP;y@4|1+g-S-9hXLVpR~UgZMOvQkRq01hF=VcG*%t4q_cs4q_9F
zB2PM>y9T@$w}Is|C4FPie%PB-IB{~<;ARQke<Fi6TY}gc#5Re(LvXtw@9q=1O(wfj
zl-p0t2a8g7u?>$&`z(mhgShrmCyyQPBtCej*505!w(JYy)@tAU<EdYW_e;U{<0AXn
zc*aG(5~SHTK^zR?Q4o)VI26QTR(BAWg7`LwBW%(^oMpryjs|fm$fdirjs<Z%h|`0U
z+x4=KRNj-KO&IMw!TK8Q{9f>+V9eIo(_+skXM~J<FZEmy12dB^(BO$i@*@kRZ~S?d
za88BZI`5@kc-MJ3h$}(d2;#F>DL)1AN6s8S2kqmem&Z5a=}}jCv*NuT#J=i9sP`Hd
z*_fi<<jsnHTkswuPHO*45WkA|H^DoCcLf>oY0ezP`{I2d_`BdAY;RE;=Kg08PdK`U
zP&S08K|JHA7(%uXo(J()kYDBCK9QZn%d46(?;nX-bj$IQ!;TCEuLS$btK)xycrD(4
z1^*M|5D^nXmXJM)(q#=HR=BIQ{Sccygd8Ch5hZ5`Lthk02qp3@YpKPKw?g)-+FT*z
z4k1qnd7~*53L#&V=ND2Sgo06Jc%_1cg_pW(KT#KW-%&J#A1fKfL@X{?B7~Ar`%*$m
z3x0K5DHlTd5Yj`a7qZ9R3L(^%po$?>5>h#YL5m#;A-pZ#DuT?Ys*q|SK*&3S@zGF+
zkTGi=i9(!$Nzu^iA=D6FQ?OQ4=bP|4AtZ;862i*y4!XKRQdv!#ZEsps@AZMBeh5kk
z{tyBosB-acNyim}Yk`Aq%|iRdyC(#%=)Pz!S_r!E2D|Nd;6@0+5Pm9YzcZ(6vB41v
z!3<&SE<3s<DYImfU5S|?Gzj4X6H`ny453j7RZUbg(Kv)AAsi3kL<mhoXcofe5Izo}
zc?c~+m=MCm5L$-NDufXsj0~Z52yH^>A41wSwJnu9db<$X^TsQsC$4MQA@slZIbE6N
z3aw)ZokZyz)w_hiZJjvUL`3NpLiZ4QL__<9&@+TyA@mldPY8XPWA!A?g<zC7XATya
zo{x^+0U^9AW&>HvAq-!uY55X&wJS6@n%a9I3}Gu}iM`4`j0U3jToCu>_{I4@Wamt<
zQ7o$v#)U9CgfXn3aPl|ag2Zj!g5yK@WM<lmAJY20Rq}l%65EQ7L6bt5%<9XLyn*G(
za?|vgA<SZ{Xy}|0!r|D)ABHfMMR(SkCgOBKhRzUDYeU}IA<PM3JxleMRO)j>SS&&F
zqL%YRSP<n4g)9=RS4&?aWN8S?LRc<*jo=Ewj|5i=t`cPWt9dcwA|!NcMO-JSU5xo?
zT!h!Ko8wgon?fMrtUThDkp0y6ZOHy|u{DHkA#4}ru;3>l><D3}aGHG)!lxnZ67Odr
z>=p8PG<0_edxY~eWE$@i{^rcJFNN<H{7Ud^!2^Q)3;&IfgCQIe!sx~F+0UPREIbmz
zcXD}6_l1rMITpg!FDu^I8_R2+a=qO5jA9~wgY#qvr=;pnbBqe%mk`dd2ZeA}#7iMu
z4&j{e9|g|~UJzt6yC@{?Z1yWr<+_lc1b+_UYE-`_B<HDoH=@eT5N-))V`EakhVUCl
z=@9-B@lFVTL@n<MxhHr(ga=XmcOjn+vAfK}5FSPK$07VF{0V;oggj$4NiMX!xj*(r
z)bd{;FF6#1@HwZJiT9sq=xZVDQ2z;uG41}FMKG%%y|F^#XXeXhBD-n-G~_Um%S3MB
zIR)P`@m5{?HzJRCi<l@XB(I5sa~=6i<QFdu3J57ESV*w2iQoHWGKj92C}m9)7g9oy
zdPx(dgqId9V`80r1SFOdrM!s>ru{3h>Rf>K6-`tUy|Uojf>i_?7Hm!fn0Uv8X~JS7
zG2t*#!$eJ!n~nw(OjI}R6M@a8jzkkq4w7D-Jjui#1r73Gy8`S=)%&EfaB4Buqxjk;
zp7w~TV<Oo^iiuPcstK2gx+b!XiQREGKHUT{jm6T{e&140y!A~eCYE%v4d@QmcD#I=
z-EG2WLNn2{WrD{<{RD^Cv|r2Q?&}!!N4##rZ{l)y$E3oJ#dRG46NU+%B}yg8N`Xy6
zV$gfIBWxnWL_ZV#O=OyAV4{PGjvW6@lzAE7gjtwqWMWPgyH7PX?Jmy~h~6AR)J(kG
zk+Qjo7Qz|Y(nPB$Z*8KD@V0{OqI!EF?4g}ZbT-l5L=O{POe`%H%RO5nCc2vT<}F+}
z%$@FP^wztXI6W>xrKgErCVsu1y^k357Cc{}AcG$JB7Iq;cSFk#hlm4Aeqy%Y6iqNO
z(8M4UqfCr8!M6&7O}uAfi13Zcm8lFhG2Fxm6T{w!<!zB}q<Edr)C-gH(>q4IO{+G4
z-^5sxUusZuRcxonCWFRH(BWyZSL&EYI-AUQqKQdz0h0x}D-PeTe`sQ=iK7;dS(s*G
zx`{g`?y|;x>I@SrOnhWwrioc5X0yyqEHJUqw6~d^%j_~zic~B;&$Rz!akb!l-k0n>
zOTNg&GSl9Z)>*OiVzw6HO9i=#kn0VX3#S1SS!vq+ce9C)P3$S0xXQ$86KhPYWq)By
z&Y8Y}7g^W0o~0BiOoJQ`(zu`1MhV&^NSmzB)3%t{YT}5A?@VknvE9Vy%*DhfY_}#}
z?902$M7K-XcbfJ*>Q8wiyV73oh~;_i{nr)v%*4%cky_!x4BBI2FGm0qhfM5ag_`)<
z!~qjun%HmRD>jCgO5K@hM8?fF(Iy!ZF~=8qD>h00#>5BVWX{k&Y~ovXrKFS-;lfj$
z`4`0&W=2f^sEK1HF0sLzIBw#Ei8JiuyymHK-<vpT;*_M2?WV$%Pn%$xJ;v&b%;ZDQ
z^s^?;nYdu$qKO~bO*X1b@Vp84Q@wSIF3t6%{(7T7o~LuW#i<k1{^{qtV&W$gw@lnN
z@w17mCa#&dZh|+?^*)@M&P%$%rub4}Iyd>CHAa6qE<(O?YTV!B3-U&OVe>XI;8-Dj
zg1tWIH<s{Ag&Ey5ao@yWELal{I2cMLKI3S^(p%s3v57y~u5uT6XyOrvreH#m@%DKH
zPlQJX>rYMYT9!nGCqD4|&Xv+>&pG;4w8={ji6&NBSY_cA%}nIAkk7(v6aSjXVj-(#
z&v80@BlMriL%_`#3uzh2B!iCIQ-)$KWV4Xnvj3sSSr~OaM3U!9(;OCZin!rgD1LmT
zN!RdO;>~3tw-DP*NZTdN^IP`7QqV#n3k57R=<m4KHQ}>`356~6e-%$xM94FLp`t>H
zStxFygoTn8-V>#ih0+$n7BVc9u~61REeo|Rl(SIYLKO>DEmW}3wwI%lWxs=3<#JTC
zF!wWOo5n>eTWFKtVLp$4Tavn-=BQ=?7MvE6EWBeO-a>)|&G_5CnCvg(9pde^IN{g2
zjzr-<D30nDY6#zaKmJm(qfsYEP4ONd;$W;g7LqOaENB)|ETmdcET|UhTIjnxA>Bef
z7OaJx<sH_+WZHM#mRw(=dzvRSY~j$`I9j}lcUf>-_RNGa<s3QcIy@G<7RFX~j9-($
zD98Sd*Dd%h`*$R0Az<M_KgS2J;>`!~kDtXG7V^I3K<9*z1(UV*#J(4cWuDXVJf~x1
z6-OpZ-a-!xJuNh}(1^vt60^{lrT4Y7IrFXHXkwwMg}bMV?j7pjFHSSL!u9zaEiAOO
zupqai6(e?Xw6@UxVLWF_1RmMBw4>KTR|{K5IyzYBD6zU&nEo`rlZ64D9Gxv3|DCTF
z9KGLl{MIVrX~>b@%@MKCjYU-1QQG6^ZeeCS`yS8tbM&&%o3SL3y$Oy!EI^BYA{;+1
zOz!oUon1c(>Th92A0Axdc-O)}Q3hEUY+=^(_zf8jURdw!j*+7sLo5unFwDYm23eSG
zVT6T|7A9Gk%$C#5F^VN@VI1!Zj?paJQjRf_+Rh@5@ozGE6+gkk`xb6Q94kL{mWgwW
zeHlN|!poh`VYwZg*YSac4=qf!Foi87<XDo;Vb*p`vk>WGH;m~PDh+p3&+VAOd$h3W
zLHwphw(fowKZi}!!V1Y{o`v}q7Ft-u3fh~xfLHq<eq%6ZVvHmCb^KxrODrt2u-wAm
z3lsParQP50OD&wJ?C21*QyW{#@yc|VZpTNGTIH2?VXn5Y#=<@eUr0|}%PTn$^O=Qp
ztZNG!ENrw;?Lx{93EjjN<x1Zwe6!%k7Pbg^G&euH^ETnz1?l}n$X|I2GKHOz&Zic3
z386B$z4LPm4_k!Ov!(2|u*U+)UO~Q{BWDU<vQu{mAF{At^eY!qzOwMOBzr*cn`mAK
zExfsg!xp}kSV!0(2esqC^__S<<0DM!I17X$Lm0Kg_};=v3o&723FDN7(-wZTaNfch
z3$4aS&aui|&L4!+d)DGsu1RI<rpzi}uid_2;UaUi@Yup73zse2vvA+S6$?LE{Jq8<
z3)Kgv{%oQ9{<^<dxGG*M*MwXbykX&{kXwSc1!wNbN3&l!=6qFm`~JFpraSL4>pl54
ziq4>V*Rnql%Rl%OG2Kb!cZ-M71WD)~TF5iQ$%ubicp{0sw(!)#Gqy%H3<-U1;V%nc
zCaKJV#w0Jq+h~7Xrtr$bKhfORAE~>iRNU+Rb^m3jm{8_F3-zZv8H<=TjM%XKe>NeE
zxG=JX`PP@`!y<baIl?FqMnR%W%^3y{%*_=B&(eJ>jK|k?lH6hB2_vtFw?fWU>r(Rx
z&mTs=iAgjF-LlOJiC83z!jed&XozCbFp7n7W?d>{(OW!>VD<FpE7ekAln&$VFsg)6
zCXBKYrBWE>XzXfSL6YKXj`CsT%5?IQm{G+r7tuQ@Rt{rC1LwFRp_W6;s$o<M!x2WK
z@kt2VYh;d0NQw{R9pOApn3fb1s%K=WmC1Ax!*GU?6y_TF1iI=%T7DF+keN^;jGAm(
zxl-sDR40t&FxrRFA&itTQp3myBa_#B+E+IWUl<y*2qQg=9)siSh2ajv6Gr_o6tPhS
zU4mEoB{SBc{?3i-)A=g$T<2tO7!^<WUgg&~5l#;y5Qf2An#cRY*!*p<X6v$rvnB__
z7+W}Cg%JwF4C9Y2fmV0z^G6sI<_%u))47|+HwdF)7%jr+c{_e-v*bo$G!0|mU}xhn
z=xrjH<Gp0^W}-J2q(RNGPDW|TQVpZEL~j#D+c5HtaE`C!Z&0#8JK^-69pvoD-3%tB
zc9V<jJl5GMjLvjpodd^5x`feHctmi(lvL_%`Z~LZLF^&eQ!q~xXCD?g%fBJ2H$=ZM
z`tu$$F)kAW!g!bMGXpg<FffckVSF0Kt}q7k8t%nU3S)8@?+G6g#?UZ^g)v;b<JcJJ
zO?Hk9V^kQft@$g&Sfj%j!<5;svi%=XX93-|(sk{$DRWb1Zg-Oy5~qQtX;NlemTlRV
zEW7OXmYJEEnVFfH8E%=G;g*^IqtjR4zn0cs&+Iuf8jWVgwk*r>;|B#>-qya>eBD8M
z7^N0$pJ$L2gSp5MD^^#iKhz5PJBXrF;={HyEcmtl2rEWfvD}IkR*bT0H#kkSVv-f3
zna5Z$){1df&@Dg{XdaD7GoF14`+E}+Ig_oJV#Ok={6geZE2c3lv|>6#%lyK=H%T*?
zXR=b*EILihb6DrH&SRa=N-+zpST;!ei_gDLxLRz*63$vmKEwV&!6HqKc$SW0R`Quz
zYsHIl@vE%bmu~bPW3?4)tlFCm+HzJ)b7EA)IxE&&@#9Lw1}i8@+eRxkQP-{3xbmck
ztyXNa;*Aw=t=MkW9{F;}io;gyuwp0mPl|DuReP$&0V{S}v4>_cC&}MO9o4@gW$ouM
zaw^xeQSzV_f7j$ARvfkBG%f5_9JAuM6(^}<k7T9aVbQbAPf*_;&U(#cY(K6h{VeO0
z71ss@3C_|Cwc?2tPpvpdYlRh;thh|G%+~AzHIi0-8ae0UYmcs&WpI%63RONvxNpS+
zE3Q%{R$RB@21Ra3KA+V?+k;B>o17%)7Q<~T?&!{4hI?F)0;sBoRy?wzW3if)EH^kv
zH9V$fWc5UDa6h9lJhb8qD_$}@r!`@4@L9Vw|5*_jTJIIDA?M?j!NEco>%3;B<fLLX
z-&ygVmSP(U+VH`Ok5+`)w1xVU6`$$F&W6-BWWH7R3k@?mQ`Da4;a^$5v6}N+g*}l!
zt@v%lA1i+8CWTQJB|~igd(J?YFXcjQNW;mDHl$_9V8fLWrgY5dZKyiNM75CyswYzo
zne?)mso>toEH-4-ooqH_XU?HJIT^OqZIFxGpWB8!40&zH$Ix?daPna7qGf(gzUZJm
zvbc~9Wo#&GLt&dX*NWIs)P_sVa}=|ogbgKa+K;D-bJmc|;dIfs6mw}C{&`cL;%SqA
zN0hT+<hamC8w@tUhVnM79vlp}X@7c1K5+y)l%yM0hi8d1+F-JQ{t;luAjxdQ-WjIl
z!$Pa4j<wk6F+PYCU=UEjhFBY{HrQ<1${c4y3U$JZ@OT>%Z1j-|i8fRwvv_DF8wUI^
z-q{?w_))qf8$L1D&yQrAc0uFXPa`?Lu)0;Kdu^y@!<IRw>NeD~q0bOo4Nlgyp%z1J
z8|v7w_+mwhIXp}zsLRQZy{l7jeH$8ZDdMtmk%A3&8*bZh#|F^`hYjbrg-#n>)FC#E
zvO%)JZ9{7t+SuUXuJhXvu))hLQ<I8mHz+Ec^x2>?kaKoU_J%qKZJ>KE8`;p9ohCLk
zwV@evbJkf`!v3C%x>v$lutUj~bdH!?vC{v%li8NJiw#|EXvf^1wF7HM)=u;iz+kzn
zJ?!-Fy4uZ#-fVVf?ZMiUm126?Fq7NR$A-Q(^kaXp4MS|`PiMzQS7Wr%HHh_}=UTP@
zSMyLChO<A6mHaw$vX5Z?+vd?W`pG%A+OW-ru{MmOec3R}hVgp*6dNY!Jkf?pI!|VB
zJkxeJ)rM)hKb>I)>!VlMX4^1_d4mmeZJ1}n3L941FrUpOtP5;dXu~3As%<et##iZR
zqvTRfE@NG;$56km(s?b7f1TIZ{&&AC6<lY-dfiWam2RWXn{3$3yoL4e`Q2{A4jT^J
zaKwh4dgMNaT{i4y*rWS<8K&RVnzx_%0P8^;4l(>at(1F|lc!jZu^zYK1j9+zzmcbz
z&#+Rdvo`#zbJ17X&hyB>z<QCDrs^ddE;C<Yy~=ux^*SrX++etA!!3qa)3p2c@7n0O
zUdSLIqk#K1Jh0)X4Zm!7Xu~5LUfb}7#@Ncp$Fzpn@ShD&c<Fn}`i%8C>kC#|NE>Vn
zC4Jm0^c6d_o_s$O_tu8mO-sGA;k^y_n`i+a$hoRLc!8c(OYo5v6LvnclJmueuR4EY
z_|E!+R_2wF6hM{yw&4#gn*ye;j68liGL?W?V@*x(MWz=Jb}cfspuHS~vZi58%bJe0
ze$!Hy8i!DDCIOiRKtOo`%e=NM0<sFoCg8x}ASL&EZP^7B6SV(f%pri1wB@AwnR5xq
zEg+BX7Zi|}IUj3&)&i_W+9v)jTS!3RzYZ&zMHvRPNu*sA=N*+`Ey-F+Kxu|DtQ1q0
zp`3s{kMmK|+$QnT;NbI`rf>lf0tlAp3?(%RFbQZRps@h6fG7cq0H1(p0Tux@1=JD{
zLyNzFY67YY+TDh+0;(_&#|emMP7qL$AyGhOhDv%&62sd)p~<?FLUry7qv9=VhEx^c
zm=#L*D|T3>J$a^vpk0Wgjjqwv7Ep(B1<<cNXsgR$6Hre;eE|&wjQ){7(UsjQAj@?*
zU8IL%J`N6&3Igl`L>jI`f}^u|3JwWI3<){~xVQ#MfS187z{5~&NYFhbn7d~zm6h3P
zH6(c9dAKT|p`g9S(Hls=fB^MdR2pJ>*?m<vjQl17nhNM4peHq30R6DHrGS4JnhRL-
zIx)!Hf;IO9D~+^P0@?^@Oa1w^PHO?<k42K%j(U4{<hOl7M*%C>MYb2PcWYz^0jZA|
z6SqWm5>WPcoz4QfP|G((Qb8)!mCJS$(4FD0*^7?oLSjDwCnp<wGrLx%=_8;oGiCL#
zXYJ3q6wtkJ+#msi=@i>h+m0auh6=bM;HrRO0)`7%AYdV#)_lehd{V|yv#*yQDPR->
z@o0uItYZbdyj7CS@d73Ym?&V9fEfa23YbjiUC>_or?Wom9y*m_8Y_LX&@nu+X@_j2
zvjof*FpvE?)VCe7&DD!gaicAgt^kucpIRv9rg-<eJc|UZpiUF8SillN`){?SG(#DP
zUmwoDoLO00hmxxVtfqNH)0T#i!?;Gkv^0ht0@iYpoOJ@$3uw{Sw1J(CteaRj>oHpx
zwz6&$u$>{0yBQVVDPR}ZxtnzlYap$G_Oe&NK2CODCQ<UBfI|Y#3EEG4+K<RR=}GKi
z0Y|8*oobY;m-Q&s85etu^*HMZRx(ctIHmJxhBE@rGW@IimZ8@30xk$h-=)Sy0hej$
zTJ7_0#a<HNzY$9?ws(z&O%tyPxGvxYoj3tEsAn!j(wM&`;7skvo5KI@OQa6J&8OfF
z>s<l&81A#uNqHdPq0WyO9<x3X@RZ@1p8K5PMc&x|1klslD%cTg$14G^1-zlfRzO-i
z(%JD&z<U8d1^g25LBK}=KWL5m$oD{I&Q9OleWKz#D`^6LVfZTG8^d?jzu)c+s2bX5
zNbolu*T-~!1Vm1cb$kiG@Gd;W4*%QmRCaA%r)CXhrDPh0<?TY!+mXSJVs;c~C!-x<
zcI2`nlOCCwA&VVZbtfA`cGetr<Yf5Ul0)?(a@&!Qoq=g0^4LL|*A8!71VMiG3$PYs
zEyP-wm0DHAj-t%<o28*-2|G&KQQnSlJ4)HLPp=C~MwI4&WycFqKp8vAa<ZIW0~q?9
zEf--&q+Ppe9b<=q%~vTAg<>O&%qCVdYZPlVE7fUXxU#NP`rZ+f;!JUN#M@ETj%s!!
z*tO^B^_!fS$WYOaQOg^=8D6oH9Z7anw&TOx_$qcx{ZTWSIfa$JY$AWskRbWh?fAEx
z_O81`2Gp=??@MW`Y5(85vN{BI?6hN-9rf&}Z`b}TxX1Zy4eYSm(bbM_cG&C?>`?6R
z*<rUswBz2^xPNDAZz0ZSuSx2#Yp?Q7J6v{1cDU`J|DUq0u2{EvC667~QpI}h*ncNd
zW<IkajvST72_JPQI|2;t>}YRCLpvJT(U_eeYZF%LrKSwcSew(?;a~K$&~sbb@egw=
z-Dzz{8|JpGe}A*nLC@`I$KQKM{@zv6S@*l>HFvk8haDsA7-`ogZ%;e=F!W+2r?*{u
z67_#QeSQD>y(;#zqd)TiJ!YUCgLEEDuL3#`Wf;af+>W(Fv@0#6>=<pwDl+XDLj%c<
zId;so<LB$7adfUl&m=p>+Yx#>a)KQb?U096r7ZdbTGGi})f78DTs?`Zn###(c6zk0
z)_B@xFwA6~WyfrWTtj0iYaSoSp^K3#?6}n>&3ro+(3Jd{w2*ZX>tfbE?~|6;v6Q;v
zeG+ZU7?#^{xST*qs%oVjNBCIQaQ&O@*g{9gOu6f*c{*=k*l5QlhQH5U-)aY4Q`)A-
zIR6!>)OI^|*m0n-?QhI(JND3g7m;7YUOV>Lag&;D*ZwzQza0ndI7Bn$d&vXTZ<!4A
zV5P&<B$@(toU`Mo9mi;D&rLi-@phcB!+F_pil+SixC&1z(st60g8Xn2*Ddk19XEyq
zDS6h8>XRDKwxGS~JT+#b>5?6n?YLmaMe4dC!G~*%Ife#}LxVMj2Cvw0-Hz@*D_o_~
zZU;HPHYa})5(#e5-1*d?TVj014kmitzir10J6_sx$Bw%+r|h_I$5T5$`OS`pc097<
zu^p$!hEVYTJ?-u5*`kzuVy8bt@en-Yc!KA4%$!_{;6GaS?f6DB-A)ft#2cF6nIk{a
z45h`NCV2ZCGit@H%M!V?m4Wm<Ef=)RdNikF?#NGee5RgJvlhu0`NfW}H1WeCUzdpN
zzN#Jt{GcwSRa!)55x?yCZAWSmp(6h9E*ck&3=wfOdn6S}C8GA!nuqg8szZZmM5Gmw
zUPJ~FS=S|QPHj&o;(6vs+CDB%%t&UA$W{d-!=BgcJ~TLEXfO*oB65ld6Om0sskhdy
z9Szw<Y#JIIKQ;$(4iRUE2D`U5<f3|p2J?zoUm!BKh&&=_k6UKd^e1?_R%q5~Ud@nU
zL3#sFK-As_6cn|IP~fmoNJL=~MMM-8wObuZi`eKh6cbTgL<x$yosN<v*(4|>qE3%A
z1msgNZDmB1<$~o{$$^OS%;BsNtdXn+R*Er-xJoxm)BnGSh^7v4A)N~r5iue*JFvxp
z3L;`f{3qg-h&U1PBF2jJV0k2ns3@YRh+ZNRMN|?|T|^C0dmd4e2>Pvb3Ug)FWDy<L
zq#?5kXAx9os7B{&c2-K(6j4h=6A?}61ks_1aEXva)D=-rL<1345wlAh>x($jIC)Zd
zGI73PL7NCcq(_LuA>vMvWV@)nh(rzx5{DIT=Hz5;B;P#QsMyxTs>6bA5grkK5djfi
z5weIy<&%9PD&Nia&#<5(BFP-28io!F&Ked}MeK^NS7(uR)39Je5sgGN7ID2&;<_i<
zw!O(lzpHIgB$>3Ch~{*3B07l(ifAFC9bM8F(Ne@eB3g@RBcj@p`t&o{R&=$$X0x0d
z8V*fLJT)vxPFp&z(#dpXZ%Xxg*1qmz3BjCI>va$j@vU;pWQnx1h^`{KQD2Gpv8lnf
zSbLGUdep+F!-CyuUq!Sw^kC?pSg*H;J|YH+bO%2DIU4$j7{F(F(j4uc(*7dmRj*E)
zP)fVwbX)4|y#^WS()3_ayL>%F#86SYf;~*c2nOQeB6=*WPC(m84jUz6H0O@dV{SG|
zGhW059+odfOcXIm#BDkqA|{KNB4WFU9U`WRm?mN_wL#P_>Q1N5NfzkC$P7-BGgHJY
z=Gm-sSm|$EC~Llm1tM0_6cDjck6%XTj(M?&B_hf#&q|R?_1rWIvo6<pg@~0p)ARP%
zFb}&XZWOVWd7YlSUc?6G0%g-vZJTs|vxqG^Z)Mm<r}CQCww;{ZCt^RtE)gNagS$oS
z5pgjwey?8Y?|%dw5OGYzaS;b~{}8PVIv-&;$~tC9*a;CQMO+qfMZ_sR<{ZOm)-$x)
zF#OB<cNgcGFR)VcE;3wV&AKq_RT0-{vOH3Y4A-tdUl(zMv;OuoIX5|ZOE>R|xJUD`
zMfK+*?u)20Hj!c;ig>_Wq(mG!k2sk8#|%$cpRzt<y>ljnYIwo*#7{O>7_L2d|FwuW
zG_M`7I`CG+JL(p?Q18Hd5g%wlb|9kzA4PnkVK3sRh|ePZ1}E|x&1ex{M10kgvwr7(
z`KPjTc#v|Z*9sy1MN4$|#8eKXcHlR?1kf3ApzZMB0*)CzJV?BYIn;qP4qO`^OzS{8
z2h!8thX>6KB7cS?Q$4g%&6ym?>_A}$ia3yk;$MX4aUd^4R@Q8+*&WEiKmj=!!dP=T
zkX!fncK1+jK28>3&F{eS<=T7uf_h9L2No4dPfk$>iaAh@{o<@;9onU~5)SPGS4q}V
ztfg7YIJAeCQr6$S&=b|@whyYOyk2uS-36j^B!hv~=zxjghD-b1ca#Is4p<zBacH01
zYp_;uAc=vTSO?;m<8>#&fr>gOI#5aHQD;IZzA`71SyLRS!cdj98f$e{iu@a2lasX^
z+B5KLGuL6Q%UX}MJ}brB91tA%$AMN3*c}iZkQ{J3;BaWqn{_(ia^TzS7_%jgHeyop
zX<r_yfh(cUxn9Tr{sB;Nz~_L<ep6P8^gHOe{aRNvWNoDTjU8yBGhND{fMyOfXD7(o
zg0-a{vu&x=+JQC>Om$!y4M^Il14A4b>Ogx3IylhXK{p(tqXV5B=;A<E2lgLuT-+Jj
z*@2Ba>XjTD(z&RSwvM|(OO&tK&4H$M;umbMNIy90=>Ylt9O&ghZ>s-Pd>;qAr{nuN
zK)+5RsMo|uN-_N%7{I~A105Ko^I$sNiMh!f=D=_V#yc><fe{XjbRg4+;8+JnIZ%Ie
z_R(DJf0^<e|2J-o1GM*;OL3&*XcnJ}zrHi{VYG3g1Cw~aQ|MTBh1RW_JZ!i)nH>Uh
zXfM+pm_g&*fyEBY8WpkaLc~l02WC4khlVlL>_ENHI&&SE=YaD}ZDI-|Sa3D@*vwGk
zg$}gbrcy!DB@PhKww${6vT-Tbxr_@^<O&B?I<U$Cy2OzpB$HEWL~u1H*Eq12fwI;)
zu%3AX>qgz*<iPz5+P&XfX)g}ca-y~q+a1{9z-tHIIIz<}zp=%?4xDpfH}%8Ly89hC
z;J_XSJuwWMS86vZ>~o;<lkg>LbDv!ve$atK4%{nkJmtV)2VRsm9_8c_W=gKDYCOgc
z#T;ii;lN3T*-b-fJMF+32hLLCs~VTJN<&JK1m~&E)LI7~IB=0?^mPYrIB>~<%bdL8
zz*UC7Pl33`od2fw%LUqQI&g=bjfLyoVz|vpA7<||+|!d3{E&udl=eKFCk{Mfe$2V_
zm#lON_bEHi9C%I#MTeO`@+A!bhLoEnFWwVgIgq?Mk=`>?7A4=(WOpFUiCj*+ci;o9
z+YbD3U}3FXAL%f=7{5C3$$`)GUNlQQ-9YlifjsSuwB_w&{N})S2MTsG{@}=;4peu?
zQjwvpjlXDewKl#TTRX&wR8C}ZBC8Xrod|Uzy%QOnNaI9Wrxu?!5ZmBDVv%0)>6}>H
z-gV<d94XbA(TPk>*m`Ndyqo<zH$i46Ry-(5Frj5^HYa*c4A0>Nady_8bJHAYAD@$A
zMuk&Tb32j8iSkZ_JCWCkd`=X1qJ$IqohaZ$VJC_>>D0thWI-niIkjKsQNdah!s!^P
zlA=!ScqdQR%wkTgFOr=CN>ZKejHR3??L_^?wd>}nQN{_mhq0^^<(ya+Qf!7HC&h#I
z*vXiwMJ(OPPnASC5$QyN6BV5>IAL_c;zW!SCMV3?T51MW9>t}iof!VOT!KBe{a9_+
z6{y)=jdWb`PQ+3-KC3==NPL_Vr0KdEr@pO0S&2?ma-tenmE=TaCsOE$0$QEPTqgl-
z*Sp7(S%tHzvgZ9-gW6f0kG+NyHK~#ISlZ~0pgK;}b>hAg51gn+C+kJH%?W{y+KC3#
zZ&`9!o!a-&A4`PL-4R<C6}LMfI&siRe@O<16HX^4Ix)!!mlKi`jhtxggxiTFZ6g|T
zZFC!<hrvr7$UwVLobc(aGWb~otW(yMI@TfbUH^zCPBf)na$<xN&75fNL{}%eIT7Tr
z9`hsHGPGcA>BK(_RDUZcS~IuNo&Eo1Z^zu8wS(?=bfOb;XVxydzo}tFcj|<o_VwHV
zCwkBzbfTA@+uMoPC;#_+_&#j*b)p|be?2C4YS=)X2QdtGVhF=f-5=(}fiUfT2yG*2
z*8B`VxF!22CqBk#zo!_@VPl*atH+OXVm$K%-D$EWWHOyrCssSL#)+xyuc9Fo7ctF=
z=`>cqhtFVhz7sPUX0gs@rM=8ynCrwm-Fa=-u5&Kn<U%JF(QIX2;>2=2W+~Oo+}T`;
zf@xdf#7cHL)YJYXx7K^jT<gR-C(cGi?4X&&x!YMcuu{NACpIx})}1X3TUocUHY$^z
zu8Yzg$P~Ymon5TES@*E+W!=ZRpL&&H&C7CB<ggP*oVe!1btjHGam<N*=^9*hYBzcv
zcjE5Ydgq-u!O4@Xr&uZXv=e7^KI_E4%;$9H<(N>4xxmSbte0rM=($&DIocgU0hue*
zC%xgsP1+YVtdA-BLFHRc+~&y2&Fb$T6MBa^{G%3m&k4`e#IPncNgq1#h!#>8(zx*0
zi6>6HaN?ztp5&RZUQBrE)Glk#_Ke{<>-n;l|D1T`#8)T2(I|D|jT4`p*fO*JTdHb)
z@;h4mIWnPbjSsXAj0k>mqSmLnAK6S>@qbS+%M)UvB423zNnexTyAwa0`0d0Wf>y~t
zo%rR1|7L87DfN54jCG6%b{G*1aUqopsa>E4F^!CmEf|tQZF@T|O-g($Jrj6y*JOGV
zIC6ycyMy#DWN_iQgcA}nx{%3*{1OUC$m~KED(*r@7qYsL&4nf|G<6}n3preX3*}wN
z=|Y$bg<aZvMcQ(?P{5`AqJcQK3wfxo_+4UN7xHmTe%5xQv^UA51zjlQ!rYG47urHe
z$t>bRQI095*IC>}zw$uMCGjO$2}&`PcA<>!ly#w;&V9Bu3a2`shu3nUwhIw1M7m&L
zC)R~H2BQlm1~Y3ED;0@mu&~CkR$!$|)A0-`tQ48xLPh38)=I2NdTwQgWY!Vy(pAy@
zsxDO1xw;EAbgoHPpW1{{wRK#m>q0>H>$%`?!RbPM-D%*0)uml1v#|=Sl(f4bG7p%q
z{j|`<@hYpNmvy_~VfN~d%%HIPSexfd=VvHhDumk8khzfyjp@vm3K7`MUMi%S3(Z}i
zpH8%OA?QL27h1b;=4LtipwZF=TkB^3xUi+Ak)RbP3Hn*$D#jSwxUg_Ukbstgb~HR*
zgtuq)NVz(>(AkCEF6?okiwj*{*yO@y7rMF7-GvD*OmyMN^Y9)n402(x3q3hWPA`Vu
zF7#pOtNZ<2=+8WWb)fD~s2)P4hPW`)g<&qVsTKLx8O{OYT^ON9j&xy^&Z8N|u#R<M
zobLaxwknZS=Oi}gx-i*=Da?!4r6GT+3)5)6Bu7ryOU-a$rp~imn9V##cc{*JF3jiT
z0_tamg{+HQSj@1*ML(I;I%Hw9JfzE*36?XgU|mV=<bx%DwF_(Xn6(V+Sl7F-fnlSb
zOMBnq(pIzWd}_8bZ)2sUqt?if9qeoCKf^B8FB1#xbzz?ik7#*xVZRFpT==h#>5hw@
zlZ-=DoRf!LIO4)37cSFz+!cG&g;Oq^<{FOCD#UPt_2geOUVD1moft#<{1FZMn$Eaz
zmi>QODeIgI=b10)&P5ld8noAODpkduqg-Fp6_@tPd(}mc$JB-#ZPyuYxNuW<j`5Ce
z(-QF^JbGuTyDr>w;l2wGxY;{K1UHVi)8SAX9=bqEjep|8Qx`tE@X3W|E(}ZveeS{w
zjxX-a`jX*|3vUTrc;&)tT0G^5kUSB6`kLrxM8pK|T%dM-pw+;c^*z^24JK!pJI7}i
zzR+STA*Y0|E_|b=N=Pedz51PZ_tS+$ca9&l7WFmdJ`nqhra)g49o=s}s6Q@*NdG(D
zR1#9_9Ln%R4yAh1Nys39_L!clrAj9Dv}Tl0c2{gBJw7u-771Ayvgv+yh8N#+hDpf9
zmE`4uxw$Ipfjkl_wTYl(A<f4Di+0A++mC`03Q2HDkR%kAP((tc1cQX45{gj`6e*#&
zgc5Y%VcLB=;|j!<lu%0g|9A2%uVgPRp^SvKvW<A>t$6y8I3&!UT|YuXc?sbXw$v5K
zq;1}Q;pOz~1V#xa2`Lh)NH9x?qUK51y{Tff1dD`N32_o~+>Tt3yJn1p3KHDoOy@=f
z8$PK+8ZV)PWE|Kit|CJMtLio;O6a*IF0#6bG)cnm{;`+t)U7OmG@1ILW;{Vv3DqRj
zl~7MYb=v8;iZvzFVyHm}H6ln3ZM7xTt`(bVWN=&`QymEd_R0kHB{YyAN^nS^8-|}B
z53@?JNtpFAPLSvcz_E4-Gh*z0YsC_i(nh6bor`x$Ajmsba7*w=*d}4S1g`{H!XgQa
zB`6Yn5=KZE$>&kkjz}9VehC2y4JGZ{c1pI9&`3gK2~F4`v!#Tl%*`YWiAvL)IVk<_
zPU9BT+9@IQ1@u4cx02ABA^MQ^vuM(`yq9*YRDXLq*BiC#fwXm$&`CmP&g#P2Lqb=E
zZhCxohI8*CdP?ZU+?)D}p^qNZm!ThPe+hSX{O|MrKna5+45nu5k;52<(wK2+>rA2i
zp~I#B-3>B|v!=0*rjCk_7$adUC&x*c%rIWU1cr%pb{PI1OWX1PdmlbU!c_LD@~qoK
zr_;G>965uXnRF5*%x0cPLznieN6ux)oG)|%!$Q{5FaGx#hhT}My<w(pi-e^TmPuGH
zAtuhaQo<?;D<rgfDBP-Ox|T;68*41oRD1inng(jDagBtv64C{0u45%wFJS}oM%GQb
zznSAHfcCOg!qfcPuc~*@9Pxx7rRh^Qawjt-chMx$c@M*03Hv1MmvBJBK?#RwnokO$
z$PXh!XV%gF>x7;Ld6>F1O}ZnJc0&bym^~)p!NuglBZKtC@kt4%B-C-Et{bN%oT1fE
z!Z!(LCHyPlvV<!V&Pg~gVN|v_def+UjHKT_Q?(Z)T$IpvXN^m&1fHykS0!AN@RBB@
zgzFM+NVqHE9#vZ`_NIhP)3V*7vpF!ClDEkhE8U@HBbH#(yX5=SDq0z$OwS~GiZ~ug
zcp@QhZ0!66bsPRuH~vZFWAf`%CnobLt)=fH37&J27pzOgcq;x%!fR@V$@qmvxY_td
z!Us;i<s|)o?mG$ZX$>?RX^R;dq{xpP@QL*^t8rq@%7?SkFC)H7_`yS>q8mRY{G#>K
z4TBrMCH#?4+Kn=9gt(E)jht?Txv`^pWNJ6ExUsia1aYVvY22XSRMK;;)4Gw)jnxqm
zw54ar;6_H>$>c_6W>X$5Agi1HS~nt_8}#Xqw(JZ!+?Xs!QZkoY`^cP!DyQG<<ci4c
zhNo4;t~wF)NVmLh<a2B5Nq){P;6_1)LT(giD9l=fwJ0l9Qp^oohx!C1bf+XkDK{!b
zX|uJg8{_gu4E+-hH_9>7lQ5|z<=r4NoRuJgfqnq{=9p}BYcC?PZkQO%tmH&7M6+60
zV^}M=>1$Jg0-VEQ<J^dMgCK#GfG!3mx<UVBREeCOb&}ku>_)O1lkV3{p~jC4woWkl
zN5xigYd@*0>ehatR*khfD<x~VQIokAYi-@%F(I^`8};3|>&87d8n|Jles*IDRqKY}
zMi)1_x?y)ibZZ|6x_1q8P#fH6<wljwDm}Z&<wip{8o434;dX16f<11eY=|K6a#Cic
zq~eB;S=Ajs9W`^R=d~$-9$u6%QY+Y)%_eR%)gzm^(VRKR+Jd#Ep8Jm*BW7s@P1`-K
zsn552+PKj&tWH}u+HtZyEBPH5I<j_R?d-;~X%Upw&5iDE455?gMh`c7y3yZ_+Z`(2
zt`gtNjnX$F`?%5Djo0VnX}fznlAOM7^y4hzmp38@xG~U;BP;3*a$_);CEmTR;+yM{
zyE7*bb7MFS9vYu+<MP{)BiuN8FLI<?dpQfZOO0}4G#AO+)Are&IL3{!ZV=Em=v?G@
zHzv3-@lKtIbkg0Ju_AKf^*HkgQ*dOEDxb>3b-o)5+?eLZbP8}|rd#`(W{w-P7>H-P
zv1C~(g5)f@NawmyAi=o3S;cuYw0>2lk5LQVSVZlohS4||jf>q_=f-*}<;GGsO7st1
z=EfS%qTJ;SE8JM=*8Xj06({RY30>{ho;q^5cJ;OFR4bmIf;VVKt^F4dF>RY@iQwGL
zZfs%LN<+7Jda7p|HHKCaHg}HH{w;bZGr=x5b~EqM9oy}QeQxY`qg!(=@__CibmNfD
zhiM7ozpg&!#&I`J(NfP@Cs<!i3OUKJut8R;;fxz+-MH??4LAN}|Ee41`)ie-bK^Wa
z7g#T{UShq>N-<X$s1t~<@evW+)N}8+af|!vHY;V#YnP3b8h_u72X1_H<C7Z?-FW22
z6Mby2T_5t8dGe8vu~&^x-FU{y=We{vW2Q%Bd#Uq(ZoJa@wHt4Ae#`KV^}QP(7+Rmw
zo^1JMx$!ftz#e4r;ENky-S|dR{zhD=2WdQTmu&XkjUV(9Koh)VGkSmfi%uWE<NfW%
zALbAbQh78pwFk8Q&F#6TURq`<yJ461c%^ilOz%MkhK#J4SSgqSveF)3gqLK^=0SFb
z9IS;s$mv0t2e~+zk2N<d70Kg4UY&=HFHKH<P8MJ-$XdvQiro?@tB4+1)PrKo#dW6y
z!<~m&OX*H&hBB;WS#L}WEAK(L2mgAtksskfq(_5;UKl(udN7K8lLuxGGJ288izpAG
zJy_zwQV%R1#CR~ygYh0z@F3QMfgTLv8sez8J@9xC??D2!)`LV3M9!l6D>2wTNYb6k
z49To1tW`YtbT+CgYc&t5Gt}^)rU$h=sO>=m53Fp~@t__<T~;d9W|o1pJ~cIc6oHL>
zLC>YI#G9GOr<Rmnp25MpbF#WvCDsvZ%TfSsUJn!xd~C|Jul?1?R6X!}(Ak479t1e6
zl?SaE8hX&kgAxbKjai$pQnINB&6u0(PSArE%q?~29}n&xOXFIdg?7<~YwO@aTLyC4
zdC*?xI8p7$+{uFr^UYd((bQe_+yNeR^Psy2Jv`{iW?v63RY=v#gWzdHZ+414GxuTm
zR9L0r{h0f+M$}Fqr+6;yNC&eshLw^-7>2SA^I*6KBRm+X=Z>Oty&)fk(KedKdHcKs
zWA)sdg0?VD;N*M{CNfN7oy<Cgbt>yL52n+=dl@~0lk=EodN7M&HY?@MVVFxJWNZ{A
z4TcPV_r8EjEo5E9y4Zu4IRo8(MJ?mxaSu*-u-t<c9;{?%C+jK?Rx_mOr?qyC2Wvf8
z=fQdpHh8evgDsppeq?YX!zNaWtbQ*OX`?k6wvxl<b`L_PrXq6(C%^2p%y<#K%Y)q>
z?4h;7gZ&;HpkC^ol5LJ*p9i-t7jB<6!8XevzloYuJLMpkYIodl$b-Wk9PwaTnDM9w
z$2=f2*GB^-`wxmCKIy?J51w;8?e4S(*F3oH!5MbW(ggS59COk8RWCA}XT8AM)0pWJ
z!(|VyFkGe1*{cmg+HMRAxxwa5R&wgv^WXB|blc3tx7obIde?({ddz(f9xy*-eWd%3
zJ$S<WRCk`yNHA%=^ny+hoBw(6N6&r5@Y;hn3~yQAv1Wa3c<;dn4+v=c$nc5vGp+v~
zeD&a)p8J#Gy9YmXXJnP66S<;(c`zVb!f%>cX%ncD5HC{kqL<o>v<%d+P=+*KTs@IQ
z$#k4dujgj)(tCcb{h7VU;>BRy&+0`d=4@VM_acWEIlXAYPM8<DyzqJ<dy(6VJYLlH
zqK+4Ny~yW9xEB##<oBY07p1)@<3&L)-k*#r<V9hIm~TalOOlFsQQV6XUKI7Bm>1++
z+gWAPlc>!vqDy*F%8OBRk`_wlQE3y(4vP7a)!1=QbXhM#@|xiV#SoO^B#k%9Ezc%(
zNF*1m<OQ*Ts`aAYX@kj&itL-|CBTa#xy{Re8=}4VbKhX`qTBCi+G4z@z#OYPaSZXS
z39Qt~iC)m|7T1oV<|Xl7Xh)S9lD$Y_sKQ!R&#mS~b)9Q?QIokAD|HJMuS<>e!oht@
zEeWrd<@yIxeJ>h#VfDi1h2X`QFr(dz&wbQVc@xeYjY<x&kcwU$y&O&JhLgeNh2#Yd
z47V2^cD}EOS~jHG#99f|dkWXzkd;oi&kI#&KSRKaMya%wvk@m7>$#~?w3*V>i)QRJ
z*ZrUu^itKri)U4nTC)Db+KRO`<uXuiTZVRCwAY;uUUXz0_C1;csQ%7gbkS?>>cy#}
zq1`yyowWyRPu5<ny;=LP_VuD41J%>tivi37SqJHU=)c-}IE0f!y%^@ja4$x1awKc#
z)Y{5lDUUW6M(d@<crliF9P4=239J)YC$Uauo#Mq*FQ$1h-HV;<%<y6+!zM3gc`@5d
zzpun{FXphhkaaHWJl6TF3s|>!w3aMlUd+0Lbt!9~Cn1!(f_W|LO4e1Zt6A5u{*7G6
zyq<Lf>qgeUd!ec}d$EO`t*qNvx3lhG{aep2=H0A&SogB-W8Kesfc0-Y)qIGPhiTq1
z9Azc{7{hVa6Ram$PqCh6J>$h$28zGjE99IP=e@YV&L`H3te03XvtD7P_^V!AW4`Xi
z4ThUE<n-KI47a_wqdRvQ?s;+F3wot{!1|E&5i6OGy?CPYQ-+k4rsrJn1?x-J|5&LF
zue^Be#YXyg$oiJ`9qW7653CgM(Tgb~3<RIK>=)Lrtlzx&&hUdZwTzz(RR1q8el!2k
zoe&wRWbJM6gl)x1LuI6qk(M1wW|EPPIX!Cz-Onh4;^|l@CNncZHkrP^fV*dTPtWo>
zWaO0bvO@X)DwGeCkxNGGS;U=1ZW(!Gyqkdc6OdO%J{f1b;@_^wFVkPr;89CFZi#|2
z3d#7@2)`Slu#6&9m5MMGMP(F|u~fk_1;u5Qkg-R`UKu52l#<a}MjIKWWt5T8K!#OD
zSsCSIRG?kUfQ(xmql_|4GRn&cm$58wRH;{n83)V}G9qQnyKORXOrK_EjrUugJu;YO
zbeb9!B_mpfMMjK_r@Irz_coJGi;E_uqn<X}5GSLGjH)u?Wl)l~1Q``&BvPxUnJckb
zSw<2kyU#U{NioUnr?9romQ+nfbs2TJhlR_g8Zzq0IM&5nQ^pu2qZ%4rO9p9e8JnM0
zBA{JY`WRAAMtzySt<c^Ft{tka05-0{N5L`#8Fm?s!=gnQE}0%N3J3MSWGRxv?4*v(
zVJ3FVsAox%WhgQ{GQ2Xf>@zIMX}pw>P<xA6`5ZOip&@Q!@!37n`(*@Vw2<+>fu$i;
zSU09Ao#ML&f=09#c8HtEnA5}1_pG6rj1kMDn#<UF!EkH8B`9O;6oYA-rKODSUkv|n
zJ*`;hH>psutD&uoc66{5Mtu^DYA>U!jBYYI$mmEXg3kEG=%$BLjh>~wPwUKw*+s^=
zkwHp!m(fGUAQ^*YjC&Z>Q$}wYePr~~M{MZhOnqhald=3{jBRC9j@k(ugHcpre;EU0
ze7O^|`h4_28Kh;bmLW2R$`~nQ6b(^h)QnxJl;Y-LGVWwI4yTSPZXO|{$w3nV{Q=!*
z87spqJuVnJp3z<r#>p5@^~hL5^Fqc%8M9=}mN7}j>)cV(Wz3N2im1ljf0?Gpm`c6z
z%S78WI_fV5f|)YHhMFJr%D-xT>h@Pm#B*fKm9bF9A{wZ4T31BPm$Br7p+z?H;vwb*
zGWxzYT$*8c(_QPC#gs+Ugl5M$L%sMctyWl;Q43|PlF>FaVL9sxniq?rC>ed<(DRz%
z+BnO`TIRJf*2&n-J$B{0VLgpB8Czs*kU`0fG7k1LT#h$yl0n)n$+DFqW$cvkv7322
zoyYZ2J60Qa(A2wZIBztc+G5yt&g?RncX7a#J*MitivBv5YM+e#G?f%oP;h|il<|ss
zL&hN)hh?0SahlHEAM+6zM``@a__58f`i*I6iut&V6I9i9Q&^a#%>=_q<{{_J<eZ^p
zM8-22HD?(9r6EBRS;lP{=Ve@waf6TOB2DvJQP*WGK*dXR2y{@iMD#M`svC7p##LrY
zuKsPd?~Nw&ayP?--{z^UD&3^>_}kp$mEn$zyR>vHGCh`Yk2<G!$^#h>X@p!c-=~uv
zVovwX{D?-*VN=>N=8~(;w4?kM^AlP$Xy`6CWb0s_Ycx}FYUFbnFSxbDFJ=6v^Y*al
zH!|MJNUtD+f_K!bGNwnFLlu0Wfx6F-T0w(umX9(%$@ol1(arEx#y1*fcg$a840&my
z6Pjg(_5pcgFT-~kq(4}H(u&GJ&Toc4tRV_gDO%WYZwzUvE>+rew$RF!M#1`771FY%
zQ}A$HHA-ewkV&C`+C>=!nH6MFP*g!N1z8oeTwy4zAOLeVDsm|%J8KTsoUCCAaxvsq
zke`9V@-XCO&BwZIfvEsPLDoXLNx@Wk5#EL2fhqJ@XmJH46kK@k*)>pG_oi-)Dyg6p
zJ7iKae2BTMf=C4h1?3b#(S}EP1>p)_Y%o|?7`D=v%?jogje1=@s%xt_qXLtHXa&b}
z8M|*Vm=%~en4%Pvt!kdK!SG0|(shKvqTuNk0}Y05>7!#6#3^W|pt*v01qq7wGFn4H
zMF!$33KA7m;$)J7L!Hej3Mz9lnRWa!!|-j|oZUHCdwW(@K{W;4rW)2hGE`SU`e%Tl
zrh-}uYAdKi$F88Eg1QRoDe%*AT{hIG@t{Ce;QFndbgKeM!SB1;>#~h^At<mjh^*v0
z7@VvwMOzcdbnCeu1zu)ZcN7Iaod*?9mFKl-NMkc~!Wb^tNI???rwyqZbIhpFsAsmQ
zrV4hYHm=`bpbifzXrW++f|)c(6#S!Ln1bO7S}ADFMS3b|qi9372PfMqXs4h(J7jiH
z&}oZ-fVPfoc4F<Upo<>Um7yDJcLnLTnkl#+zccTpptpiP3QqP-HI(b`zb2)x0@8l0
z{aFXF4pcCRVKD0u)}A{o6r4W7{53=L>J6q53PvlKR4s{kqyo}W3T98OKrlwZSk4;9
zI-b??$UK38icBQXd9s2j%u`vX>Hc&&v;SErcovPQOXfwiNRBbjRxpPKDviC6sCf$J
zEBKSam?b=Vfr8s~QKGY9Ar0^KW^1PC2IZ4z*w9PlVg)~|M=xQmlEb`Q!3vrSJ{Wvh
zsbH0YPYOO$`xUHFa8$uD8gB~LDcG%G4^27+8x(A%9^+2is9=+Vp=-4<mZ3u`g3X-V
z!uq{qr3&5C#(xNzJgdTX1v?b%RPgL+$faFXJ`GC0OTo(Nh9gf+8|z1%?`3H4A!e_F
zeO&E+IywqoVme5(LqVFG89$scjJX?qSizl+m5wNQ@-c>h^tgf(3T`U6MW<51DFx?g
zrYp#M({NhB83kv#!l-MhtqrSEBmboXFCH~ySJXKL{XUsDPcmPmfUkzhEz42vB@U)l
z?y`a_)T_G_XuHaAO~G}B8@j);m+3aON5RBSsop8LtKgo3*9zWnCHHADQSeg10|n<M
z7Jo>?^|sbaj}$!SfG2<V#rll(IV;7WU#hOtwU<=l{}jC9p?<EL`Ag9JxonjB%k);k
zwCYihdzo*2(^iT1^eVt*=_T(Yt!53)A8SW_QSenkK_3eF@J+#Y1vz}k>BA3Nd>)(9
z_>k6zp9+4_vOvQ|L24g85haR_H^hfjJ|v}2L)@uN!g{;b33P%&eW-NS{HL-doeu>E
z8nXJdWi7oA8GLv-GMJH*&3=Sr;$&u4^0WBR@v?~^8wX@(rGkNolrSH1aWan&<8zel
zd`SCbotvFevs3c=kdHaP4+Zp6#V%(l*IQc>3;R&Shmt<TybLMIxm7bI6!SrT5kl`g
zDWJFy|3pWX@L|h(^QxNWQa+USp$tccvzGOtoKHK&@S!{d@o9U)8;5qhR6~RhPbO(i
zGWuZhVYv@0d@%bE<wHxV+=pl%EI!onp)NJUr(KOq@}aU16_{gL|4XsN`4I1exFaEf
z9SW=HLn3n})-q#L=)@)akm5r%AF8uig|$ILV^xMRRVq@!8q5T>7;5^kd2ci&X{+r+
z#!*3ndOp<mLG{7!L(g~R(~M1N;Dgl%8yB%tOMDQR(|vRPE$i^%Vb}CNHl04W7$jCV
ztA~|>z0||ZitePJZM3X0QdYo+hCVd)p_vbjNYhp9aI->VuKDj?novJ;Bqf`3@fJP=
zeK<ZV136O<TCR3YPteMT);>(|VWJOhd}!;#ARh)(JVB;Py;<A)(7}fxwPHHbIht?j
z>_aDpA+M|KxM%1>J#gF9m9-lyCA%~9VD0HcFNWV0Gg4L`u9GV7>q9^0{;UI72eQ&$
zqE=Xj_%M`{V_1i=j__eP1J!VLuZ46ZCr9}(nqm9&s$`D!VI1$2c)SmD*d(3gL*DY`
zru(qttYOcRn8`j&@nNbDn<f`(*sAC(wZb$XHhyeg-fWrS!%QD$`7qmug+46uAvS9!
zA!q72G#}4L&t;v*O3C>?EMShwnVOQc`EsUS%+3-$W~mR$bf&PCKCJTLiw|FYSnb0a
zAFlgw!-us#tn=ZN52t-t@52V3KF3)%`mmK@6Dv)Y%{1eDIJjH;9Qs$c`LLai&WD{o
z?DAnBM`q4u?%&?L+XqtG_V}<@=UgMB_UpABpsIX0<ilazIqJg^=0cUz(k_lMUkYkW
z+X-64{yOWlPrhe-I7?%!aHXq0{OiLx=F6-nQ>vc#;Q~$G!j&$vbIFH#B`Q5EU5VlY
zJ5sLr@akZiErqot`PXRiJZB-e>BBAF#cS&SQAxLH;L+;g!yO;)veRQq^LswrXD0Ij
z14Tac;Suv=)=QuLWIprZxex!*!ZNbL3s!=cbjGj55zzMYa7Ef)(OP}DA|>DW@YaWS
zKD_tg6V2s5`9Jv3#h`xlA$OJNoUP+X=WQuHe@p4lv|e?pN=`nh!Z#lR7Y)h+qqDC0
zJG}%@Z9e?+A-#$WDt`O$$A>GuV?tF_eq|0(ky=H=X696^<kT2$KKsHvXkr$MNuwgI
zss+=QPQ~CIB^%eQ+H0dJqly|Cq6tcm3T9G~Sp{(xR)VZ5vgw?iA%}`1+boooOGR#~
z$B!X?<WZ4V#Y+|csmP}yzlxD6MyV*EqM(X!6%i`tH;XQ$qLhjzi_L{qG`$l;TM@bn
z#9T~8ooiK!vzB0`WJv}JE3Kl8isfC*J#r?MRZ)12xtt2(3HK~uD9`#~M)OD&1{Ez;
z{G-CC!la_Eih3%{D$ZrJ#H&b95v3wpg+)b5M$6onmRN=u)(R@TFD<9H=Z#a*`>|zV
zM$7e7RVu1TR8gHeN<}3VUte1KzOhteNTQxsk<6T;qKb;)FD(>6`>M(&0VM}dXii#_
zcTq<LRa;BN<#N?)v(hezTfEWsRbNE|6^*HvR9IEmRQOfU?gXyQr$SX>S0So!sBrQ@
zc~!U=XkTs>5;ILAN_upkT182jlL{+kQMI&3+Om#LA`Y<AkhKx(=9iYHDw?UF7^;D~
zt2vhqa$_D=(dukLd(5b1wNlZVI!#3%6>U_sRnbL7R~7A4v{!MlMbf5jRXQ+qRMAOA
z)lormq7GE+tYUGtsCoyg`9=jP>6@C=jh!AUy3@%zQ0?Hdd=$`=xfgYap(1TmVP6&f
zR1Bg)$kq1e0IHL+2B;Xwl@NCy6&%7@!#Rwcp(=(^<)eb9rzV}Bk~BhZUZ!zTqg9Mi
zaX`gE6=PM5Q!!1&bQR-O#J03dq4BdRhF}8Cg1gZZRZL<ao~&YX<Cs!&4S%MXrm7%4
zf4s~L6<>x|Sg2x=ikZx_Sjn8tFh|8)hIzU_U&R8Q-;ArUKfQ4=b)(&UyM|?nilr)+
z(L_+OPQ`i^l)Hj;m5P-NH%FVvT+O^KXY?BC=YyuToFv%5u!D6Y>n2tzvRTCzowqV<
zQ?Z>PI?PA`JDGQ}?q=P?x|emIiYFUP`)Ouz@W9no52-jz!<*I|>ccPQBPvd)ILUle
z#W9BCtdu)_k9nroa!SRjU*><Que_GitY=i5W%xO#TCCebx#v`z=dcT`7gbzhxDt{;
zxpYmV(Qflq8h+QySG%5ajfSp@8!B$9xToSioy4i8TPp6TxJz64sM|Dox0pH)k0~`Z
zv+;_d@>5TXI#nL1cu0q%;;D*9w2WLa+>JCprp2w7fr2j{FjFPZR6JMlf>xNqnXj+a
zYRFkMnkpo{Af&uf@mfVAKN|b-M#WndS^UWA$2%48X>6zn@#BMvk1Eat%s*7*$zlA&
z`c=heI{PaAJrVkU+cy>8X#_4TzVUf@hr@;f`wc%;1b-N4`^E5^HLhf(RDQhOZO-6F
zxzxt;#|)|c2=#-2wlsdEWlrbE%nlZE((90s<Ecm{hRl9cxn!bbHb1ia5$i{sA36NU
z=|>Siiuw`eM=n1K`7x@eA^*0h+<xTqBR_51qVo8Wmw|Y8A+t3kp@1I*1^xIZp-PQS
zMUHvP(pH$uW?y8W8jAT*+>g?Jl<{MHLXi@Fl=9>1>6ns!oT(F2rd@^CZ7amp&XCl$
zLRo5_9}#{;`f+n*3jEp!nQ%YWwX0Cx562P<23p8Dy}YWy52GI@Kg@o_toHXi9YcDk
zWQzZ)A<7SnALK;)(eQK(Z9~=@VrNFh_))=+)M=~idsB&$V?UVV{Ydnq!~ODkbEPEs
zQIQTUS4x5MDXT)NR`Mf>dgg?wGWC@oRs9%|){^W;3WLL7sXoc_;f>aqYJODrqj`s@
z8h%KAxc#W<M=d{UbK~u-b^NHyP|pu5Lw(i;tW?RNzUghug6>>B8Y(h7Se>jcJ@<4y
z?c<Nfk1wl@^dZjchwO*Kxhktqk30~iMf&{+=uSgF{gtF<Hu0mWAAS7j>qj#>1V1|Z
z(aDdXpB^`n)XI<b1I;b`IQ1v0r61?knEqi-o@^$kwI6N#XzNGGbjA!h&E_rUc7C+?
z<IyGar1eqb!lOF)L0UPTv9ljt{OIndKTI*#>1XKbM>jt*B}YB09la}mMS>NPse1Ua
ze0x$))?Tc=Sx@gY4;~uR&yW6o4DzGF(3n*l4J`&n9S$=O@Pl+9_4ZN&0kuKe88y_8
zVSa25U`qhQ=}h^d2H+21B#lNt>I6_XfYE-8@gq$DX#*HbjiiI34xy1rEu=2;W4j-d
z-&C3C$0PzjCXNbHa*7{Q{aB&*;WR(y(y)A;dOABZbbltpEY{hqb6C^YO*@Z)x_!PM
z3;bB<$0FTX>c?W{C9IeE&X#3*?sA628tGT+&MH4v`?1E4wYsyB8l&@iKQ`$6x2jFl
zC+uv|{jGioceD=zJ7^vqiP`VR0Y7$f?k+uMw;y|S-pjDhPgmwssMJB4S<kARq|<#y
zyApDUa}To~@#84NG1lX(Cs=D0NKL_1r0f#&89&bY@z{?`$CLi0(d9?k<{2LOao&#$
zexw_dQoAz!M{ebdGzafSU#BoSN9ihGW+k}7aFz8MHO6Ho^9C&%yrWyJcm24{Ks&v|
z&?UE#_?{p4Ir%`(eaLXOY^q$bSt#;}A5YnN=EqNl=YG8K<E0<}(R!Pb`7@iZSU>pj
zn&A!WTh@21@2U8D?X%C|6zxW}k8FP8HdFEoCkehXeDmWw!w=m*)iA>^oqsd@VGRjr
zt70nF)U2VbpU<UF7eM*|N(N9WfP=4183J(MH)Y}6i~(d~pt6|*xH`S+-vN*{fNbn%
z51{jXQ;q;~1`x(hz5wzw<YLXunkRs~3{+2n{@OB9fRjZ7D9BKVwXhyjB!Jdi8&Oy>
z-6_scf|Y709YC1?VgrZ^plkr;0*DU45&(TOaqNmYJV1ZSoK&7UI%}X>8|_Y#hyWtF
zxIwSe7=TG<a{y5~mpY%GzJ#D6FS8h@3{0xP95%gL!FEY`zemRhkQhKEHWOGY29Oe3
zeO%k5qyQ=hP%VJ!0c`A>luRw`om7Q6g^sje5}D*wC1+q#wt+FXohdZ}s2Kq5sIIY!
zd6=1?RsgjFxOq6`=lj%@JUq`-F92HrbK@#ZsbQ(ldu$MZm4O<$Ax&N(0DAyp0Q0gI
zEYwnQ(AjBUfSA-7fQ!!WY$N$n0Hp2!JPgEM2ANd}z{fzPC@T;^!vF>cFeHFR0W=Pv
zZ2;{8Xc9ov0G1dnK|1xJmSzF$G+L~eVu+gu@Z4x2Xc0im0R9Oe*A7GL0Ioz?S}{{{
z=}b$r43;(l6isXCdf(DMfDQq43!pm<8>6Ko9p>KX&di+x7-O`|t7;*q3;SJJBQsfg
z1kf{pL0o6`rZK$&=o>&k>h`8Fy#wgOFeTFB?pUoq^FUV09YBXu)l#%+(wMnLDjO{O
zDrcf54Gmye0J8#^P3u3`IffQ_h7qhI0~i&+!%K$I0VGtkPy<}q62=AS-_0;JfN23t
z2;ltbXmhHV$pK6(7&DRP!s+NqtTBaSrqCB!sbXj|rHh#!z>EMo##dN!I(lXRlso!(
zG_|2_p_syzEOY1p16a=m=LIl7fYkx43E;u;=mpg0e=9E-voL@~%!>nPeloi9Y$NS-
zDLczpm$R;5rL2_!tkQY?sNmWF?xnJ<W6hl*hPZb@O{vWrXk_x<H_>cL6SMqi^rVQS
ztu)dCSkVY88)16@I|6vs5U(3zX8^kbxYQ7r8)A0=duZKg2v0-o4PYP5_lC&#|Cl-p
zD5tUa{SSi-?(WWmbgF|FMsRmsn6_z>wrSE9m&M&(7F}R**TtP>abH;6VR3i)zj^1I
z|M{JB&vQQax$l+S+}vq1ZR*1QWE@Dw9XbTsTas}o8NKGjT%gmj#Z3QMyK~EYI2lKh
z@fSNsSx+V7Z-!&6$5~IXQmvD8M(&shD4kBm8TQYzo-<<3C!=CF3k6(E#wA*Qw3#GU
zyUeA1trlV`x{{24lW~>JYst8tj2pDt=fqIaO*YL7iW1*4+Ps|%pI>kDUNY_{<8?CL
zB<uf}dytGLM$AKoN34(OT3{H{EShRjdYX)9M&$Ek9G@HWg0nA^@yhU>^J3m6;~kYw
zw?@14S$dz0uUz_p^&{&i*3Yb8SSeD?lAiP%XTP)lNXAd2G|Gik++eO}Rtih)LK@Dd
zbs>`rnO#W7*%%knyD;g7exw=L$;e9CfpcQA7@Wg}tjyV1vm3r+p+12*UC3oPxn0O(
z@R9A-{4Nx5p@9nxT`1^6As6f}I5?m%tIdTXE);d47-vhnP==wn3ndszvX)|{z8)-$
zDeFQx7h>4~Yem-btQA-((wsGYC1#W1e3%nsX11_e4S&-DTAHQ?sjYD?RNHE*>4MV*
zx^-XKg(^l&RVrex&RWCp&u7m|ebsUyft}ihAJ34oz!F_ZGW<FWbzSsd9{qGvs!w%O
z>F0>j3x}n7#w?9oXl#@=(MN)2oNdn9+JzQIX-gMc8T@8$OdIC5tnCb+)>uauI?-8n
zVX_OIUHHX?!7dDOp^FP$U65Vyad5H=^l=f1+2w+p!DF-|FnC=M4JR>2-nH*dm(s`5
z$o(!vT<FF{0T&d8AggM`YYZXQuuK1EJyq<^of7n8=;1<7hF+{Rp589>F}SY_-?x~^
zr1<{a&aW;EU>L|ch?PpO&o4UEg<&pSzHObr=5W?AE{rf@M!GPHc{J+*zM#e$rQ=)}
z&m1b8ks6%HP0=Sk=wIYhT$t*@78ka<FwKSOF3fddo(nUKx-;o2cwwGxvdl7^*)IHM
z@EjM)XVov>`Lyh3>c_H_ix#jhbm4b~MMnH$7nT_O2gCA}re!WHcVUGKE7{q^y2^!h
z469k!u&!mLUTPH1xSn}~;cR3WSSjsh!+E+eW}6Ftx^T{g^Db<6VTTK6xpb!syIeTz
z!V%8yX5G)ahyDsMP%rx!HgDBW?g1AL8vY>$S+@LTI42m6y6`u{G1lWoX=r}TNrO+h
zaGLpy;moU1`rp%5e`@{05q~q4sA#!BMNWIhrj~!`Ou6W3LYC~Qtyf(5*M-|I+;QP5
zEz2YEH(a=K%Sv#Kv)5f1RLx1*o9y3m;oJ7~l%<%vbXqr<pSk|`)rNa6+^21DzKPNU
z7alS{Vtvf|pHce6g{RE@pIa!H8hO{r`qG70bl%;l;0E2v&pg)j+J!f?kn)wCT*dO%
zg?BEzcj1EzS=`9##zz-&*KmHOzqWHs!`|CIx$r1gZ1FXwMel82T=+`kq-(*2AGCqH
zQU1M+(obsty)89oqufYk_|XiDlZ&P?oV0GFV~#PL;&=2GGPse^a56DucH?kzQ7X#j
z#_JEZ>~7?6<J24{IXT_P{?S%~HJ2N?IX(|-A=bQZ<YUOsN>vKDQINS#c`IcL8-5Xn
zqO8T-C~o-WCpajqq#LCSr?eYo3@+<NIc6Bnz1y~mWJbrvxl!4TN^X2UTGPZD%W7sN
z)52h7wYgzuaIk(TUx5OuxKY)Opc|?i)!e8~XU&aY+?bdrzJ?q1+^FwHO*fqE)N-S)
z8z-&twK*Hln!rl&iEbnrT*r;S$H`>A65=Vofg26obgwU=H3u|u<DwA1!5ZJ#jVA0g
zWo_w3Glu4@Em*0Mwqs*jF>e>*DN7aGxIx<1jdl#}S;^_Z(9w-f4AeE5UEJvEhTw*m
z&15%RZn)jJJ5HV{#CzNzU42vhI!>n13PQZ-hUA9g#;-#B^)3mr8v!>=LcGrnzngBg
zC6Gyps??hnUvRukVbqc4M#zo9ZVYiF>_)_m-fr~a9=o|gEqCXRDv#HD>ET9C9zd({
zaxWU2@V|-bOP%rzQ-l3@#`?SI9#jHlDGhLApc{iYfToum>UyXf!`ztV#%wo+yD`Fz
z8Pt&*Bi$I~#xx!|P1@*`$#i23!&qZ($GI`y;0fF#1yh>D=43af7^PDg=v>fLOy_24
zU^E-rc$toZM)Dg6EOKKp!yMMRtn*msyRm>_AuILrJI&8$iC_skqsGg57U{kJ;l@%U
zW*NhB))lNYhShGYapR2}Khbrq8|&P-K#R(a_0*snd)(OT#<qE;jr7`{VUru1-Ppps
zEk);<wla)rk(na@bYtwwOawdF+-bz@V%SYr!8{WM>~mv3?G<huapQm+*Eg6b9dhHK
z8}u!k>sew+XRbBBK4JRHjiYoF&#RuLYk}beoj5m+F_V9sA>;kD#HW}~{~zZJRexrt
zqH_kE=aHnH>%8Q~KW;pC<AocS-MHe$LpL6|@vj?K-MHz-EjO;wvJv8LxY1aMBe?EH
z)6B7%Q^yv%W<ENr>}@yhxN+Z&2eb%jQLV9F^2FWaU}B5xAXQw6R8((PS&Dz`#(!?)
zof%DyypXL=sB78!jJtU1hB<3Zf6;13&fCa*=|<Wgrq^`6x3a!srfj{+<>DWhx;!ww
zb>p2I@A<5KX8pkWk@XWRozP|5&0m<mvVQx&rEWxd&_hB`38_4Y_TZowhrCGbK^hMp
z33x0Ztq18ma0ze=i18r3hn}m6rXFPQAfpGd9+*AI<UwW+3VBf2gDf6o^&poAxjjhM
z;<I^>gR-|R=U#iWd+_^snarFX`XIN1;Bk|<JRXeMZqMgIeh)ouzIt8{sFaGx9D3DM
zz=K9f@x`ikEa<_ljS@i-4~lwF(t}bS6!W0Chdx8-po$b$f}5i3wT@kPj+aY&P{xCD
z9)Nv{DN6@(Hl}7S>y`0xmZUg}Ebl=DqsNLKJka7Raqk2s&PF>d77wf*I6bK4fz1QE
z2h}{N&ixko#o=Ix^PsYaKJ(*vJ6@)dSMktCl^j)B>uicAuEArVLEdfbtmy%1+p{sj
z=vuWssOv#J58^%8RXIMvgG3LKIMLzP;i)5_2|Uu+S>J;O+)iWm=@1$kgKy*kO=ilx
zjVfQgnTMVpgA4*P3TWZM_guEO9=!9Qr3bA%Xzf884<>ss#e=qVP>W6dJQ&|4zMTi{
zJ^D?p4m437xS2b8(21cl>n|R3@t`YnGAqRoyQ|-?>wGuH<AFdcihVDu--Cb$q7f;1
zARFwXGhRslPlw_`kj;n(Dnp1>Ga}PIiwYaumHX=EL3hK+dQb1Yrw6^*>CM{5DD6vY
za)L|&beR1;_|<~}9t`wgkOw2_+;P}o4~8=gF=`F<V3@&KxW^Hkjky~$nqj<AI>v*s
z29IM%nT-h^Of>vS4BopjQ$3jG!5$CxdNAFC86IroqM07d@?aVBY}Q4rzj-i+VXg-Y
z80N9gXQhLpqpSE={6f0245!KIe2WcU!te*{Qr6g8QOiA8;lWDIuJvG@2dkJ@v#w#K
zmg#J+H+Yi=8<;m54$Z@6<}HS^)q};!`c2e74QIOtJD7K}?lSz{40P7^(LS@+_OAz5
zJ=pJ|Uy8v&4-R>7(t}eT9OkgUS&y*(#d?&LI!c-6W1Kzi!3o1(zaZ6V56*aS$#Bjx
zTwp!t!Fj{a`#9>N!P<0*+Wd#Jmszi{(t5k*!F3+$r>>S89^7RADeEl{?s;(EgWH^?
z7Vgm1ZE)YaF%Os@8_q-8R}H@YBKkk(Cx%0F_>B2E>kAKFdhm+*jS=&j;bDP})EABa
zy$2s?>lTn&z()^0(Z%k;+UJhX9(<t-yk>?AE8?#fb;!>h1YbQM{l=PQWjuxb;NYLE
zQG#AEm4I<aV+hjF<}V-}ZTsvuSgE&Dd|mqfM`O|pP=-ZQ3?*tOlYq<u$_apgECR9$
z$S<IPfNTP)j5FnC%`PB^fUN`UwW>$w6p%~6nh~aYMJy-YJES?LJRC#8c^UEv5UW~?
z{<IVnP)I;Y0i^^K7EtL{OrK<HF#$ycx`h}|si=VVw_+$27wG=5m7Ed+-Li|f9f>c^
zPN`cl!*9iuVU967%hKVPofKAHKm`F!1vC>-ky;jzAmCJ@-6SAZ!1Cw}-?r<Yo-zxl
zCg}Hdi7kTuF3c*x#$ac42#8~-ETAd_#Z(b6erX~Br3C}aRu@o%i!uyPUz5RUMAi~e
z+u(Qs*^`S>l|%ujk7Y=rNvLG6BcLt^)MIVTTA#InfQAf>SgB&RKTDG~p*_D@CW7V!
z0)7$DML<gdQiZbmL2+;^*46^r2xu#y9cMeSwr8d49T++a(73gfHY?33dN-}TtALJa
zvLw^;NNewO*G|oTNwh!N?C=Qm@*7J9EEC|R@zXpAm_S_%^a=`n1Z++&TJwX=Cm=ve
zNPu4eWhph-XIgpA85FR1n@JNutO^)$+tJ{?Eo8)m1w@#;v36(e!P=9x7i(`;YV+qU
zTVDbF1oRj5_r>%sc&I>cLoh%<*G|@f95zV6+jq8lYmz8_uz(?KQt6et&S3(m%5YYK
z5ey>*j53_j3}Xb0Wf;dw?NIPU0h0v%zEk=IrpW@P2$(J4H*S2YfN27zGfPPsQo5cY
z(EBERDyGgf%@QzXx5FQC)L#-iN5EVG)k|CE3!q4PV@omfIFjDu(=06zu#l&V_;(tB
z!HWefVgAE#mff~37qCLWF#*TP6tGIb-?ZjaWnN7eBb^#LBVFxl1*{WLyo-IKfI63L
zU)N<?&ps7xU<ek@LcEDKhg&9pLi`rGs0D1JHuKrG3)sQ%CoSNoCUPipr+}jZqAuHZ
zarNB-_Rz&EU>|4y60o1)X8Y(v0uC@AWbIKd168MVSilh@X3xM(wHl@;Gl$DgZBi{7
z;RyjJ1zZs5jWDvDws(G<=@jiYF1_w)0cV)cvXXgDz<Glo+%(ZRFA4O!y0|Og9|4yI
zT;aZ=b0yqj_?Pw*0oRzX3%JQ}gOxg>E(WI0L_qPk1(4R~e(wpm&y$ccT{P4O0v_@_
z^vIA*+5ZGQ5zxeord~W1@Jv8yFUolFT)+#OTQAai@lv3-y7(yI6JLq1>Eg;(?!ACF
zv}gsqW7E4VhAve~g@Ro^u=9KN=;s9;p9Opo@RNG<>burg0pDmr3ZNoisZ2ivoZV1_
zG|e=<dd81l@>9_(e;PnRM>LJ(MOA|AY3ym(A)suG7wNso??nMGGI){Ei=1BM@*<NL
znZ2m=XG{(+jt$Gdaz=C(FO>3SspYI*Wa9x4XJ??{bu5*M{+E>7i#%TB^&+1a^h+`Y
zhs9CM$6@KIqrA0?Zkk&<-5Fa!FA8~4%!}e)6!y|@%%P|ktx{$9I8`6^@Q!I|oRoFe
zjw|6sNiRxq7c>$|^f~Ivebc8vSub1<Y;=FV9EA<C3r9@wqP!Osyr}3!EiY<&(cGI*
z$qO@s$%|M9`U$p=`R!C>@xsauWo=%N+Bxg+BF>A-UR3eI$qofq^`eHs)x4<AqavTi
zT$BBjNXn8K??r+ab-k$P#eo}%iC+32CH?iZ<ZWh2@}kiSYm>s&J`b@rt7)n4rC)+Z
zBbu~kmWFw(8}nNldO<)j)iT5#cxY=(Ej+Y^GsHF1dqICMe)Xb-7cHra-1+*^)Opd`
z3!fK$FWPv~){8D)bS0;^qn#I>Xq?RLSv#<HWNjXD{NhE~u%nvhaMh2e_`%<klD+s{
zag6Nc@OW{lm&4_S+l!qA5(dBN;8Goe7hd*7FC;Ji%wLBpQkcxFXH`dl)`=I3gN~kF
z1ietb2zzn9n?s}Xr8=m)5UsJKcw*PZM5-I{q8qo_-HRR^L+$8Ys}34cFK(*07k#|w
z%fqG~X*`r@{D=3LHhHad<8%OZvC}-&i-BGY@?x+TWDfCSD8tie+b}PNd-d;GjAtFe
zI)-(m7o!+PQy0@>Ruyv4KVB(vESuw4`%jCR;KfAdNvu;?CwtMcbbeai)$?bhD$~4}
z?!^o*W_q!oPMjB?pIB#kvDS-qUi2DopY6qOY|imwF2g)JKrfbfF`u&wSgF=RIuQmh
z@?v~nE18u3@M4AGFZE&>^K#bweWEE~rBS-di`53Nq04`TlS<dKvyXKH>qaj&d9m4u
z+(E}>@K!Ij8T_Xg+nK|+6R4e?%)3~3v+iM~qP+|c7Fmc*@9i}5vh-$ck<-4|eAtU4
zltlbR$%~_2<Pecl#NV{Z(2n6nl!)VAJUV8&;l)iaPIz(Bi&I{lX7gWK{|{_bdWN%S
zS<kVaXT89Bk@XTQ1^>fv*^4WNbFP;4su$P1xNbP^&t)jGr6uW>7q`9m%KjbJ7qn@6
zao3A`oE1Npx$ngTT8cj$ROMkx3n_Zc^qAp4FP<<wHT-9^<r=(wvFR1_7uMH?|Hg~A
z2EX&-y}=(CKC*tIxi$O*n`1%yvNQ%t-@N$F{tu(Hc{xWa5z!)2i*#4bK4F|?-h2~%
zZTaFZOBzxCKx|qO=|sec`ptpttOV&rWMIx{IGIFb7Li3nR(7(n9;Z)w_AsR=!G+gR
zxkTg^(L_X35qU)96|rcW`BN)PJ`wpv6c<rK#JBrV1w<6(-V2H-B;x#VOO|8$N6QLx
zvqePI{+@o_ep@k-ez-*c@Yu}tVo4FDL{t}1Lqus2Wkke^FpDTFqShlbM3fg%j(KB`
z%;dBhWT_xxOdks|rHWisiPa=xgH!h{BD(B0S7Vd1RuMLX?IIk^ajcbDs~DwKX~yUY
zKab3x#_L*>{dyvtZS`iIlx3&3h}|PC@vH<142dF=80r{)T~Yu46a`#tZm-W38;EGg
z(1?}VY%Jp8#X<zlL^Kz%Si}+$Ekv{w(M?2m5v@eD7BS#2n<%1<sQ<0+%1Y2yL_3;E
z&URq^g|(xIPDV^;5rdA}D40?gHggxzIa#DHkLazrSv{-*E16yfswgqYB77qJ%&HL+
zU{FK^4X0iahh}hyAuJ+dI2F@7dWh&LV!DVKB6^AFEn=96;UfBo=qsWho%gk-vrQcF
zH!SZe*!Rx1_GgF8Uugym9>_3=b+Cvb3`335q({~f29Fal(%?}dMjJdv#8~Ej`)t(s
zco7psOk`&o>m=66tW#L0vKDP)q4?J$t)w$W%o6F*F=c-jF`GcdJes1+)#k9yWu<I`
z338)<tOWDfS-`rG_0P9e$zLR*zv!fNVN<3*=+xJ@CY7`v6tPsqG7-x~tPrt{E*}vq
zMXVCBMTBR9yjsK>5t~G87BR|RXRU~J48#ZRb=He$Rv~GF;cR5MzbMvKCeHOFo?^C?
z$+DH(A*R;;u-DlxVlQnbB@%at*eQaXU95X(G1KI8%%o<P1q>9nkAwG%5cek@5HYhy
zBAJJ1(e5=J7WIdCl)M*3e3UkS5#L4pplg9Pe-W>ED>y;BmWY2vTorLj#A#9gC+t5W
z&WJe6d{M+XhVvpWFx)v9LoxqfFR@ukElcKQ<}3dv?3#${A|8o&%-!7(aZ|)CI>rq7
z>=`oL7IBCDhpcyL8awJwA-G4&^0DbY>jPHGPF$WT>pZ>mKia;IML(nUEaHiXr*x@0
z(o#U2l$uIka8s0h$rY)=YrmR`-;R3CJ_WpCcq`%^!+XR3AmSsl`Eu${B0e*JVg1Vb
zjkWhty_cUNq9kOKke%-TONf?`Swa>GX{uUMOSqOPHob&~HR-wSNGsv_PV<m&rgRcw
zm?^t)pP6DZaAZc-OcLf!Fs;pPAN|Bpv9>d-g!o*slqzJePA}$jNXRQ8pM;`gOgUL|
zNyyERN75gfL0_(4cg~bwLIDZpSGHyn3Q8y>p`L{L5(-NwLJdktpehoINvJ5Hl7!+C
zN=VqY&r(6chOg#TjVvW4kd~5AnxPD9LK#b01}Z8i0S1?sP<yP2Os$b6w9sUd5X(h9
z>f6aQOR!3?v14I9b3POKcIH|V91`LrROW1T)+(%3St+ubgoT-`1e9v9SyO_OVgGu)
zUrM!&p(aX5;-XB8lQw0u*OBmHy{RtE{~lA<-KGJfEw%TU8c6tY+T2J&V+nnWS{h1d
zIW2BPVQUkv*p!vpY;!y>>9KRB<`P;^jD%Jax=Kiv&|1Ql8O}Bm+DbT{=p=4uz@rxy
z%C?u#fnz$dc48&JGs7<ux){!m39?IqTS7Mp-P!c823Q4FFRREZvC0yB41QK>dE#U%
zsUjiBj%xTCLr6l{a3Zw)Ow}ovQgn{QTDcNO$j)98JwO=kedyprADR|wM}{h+pM?Gr
z?n$^W;a3R*Bpj9Sw}gQb21ytvVZ4OFbU1nJBP5KJFhs(!w6Q~3he`Oj%sN~`p5m5L
z`K_d*n6K8dEnQ|EE#XM_1Tx34Io8NdkT6lg3JEJEOrljSVZMX~5~fI)Dq)U9KOhx9
zO~P~uvn0%x^p8f*kT8=L@SM0x^Gzjgn(9=w5dS9O(gb<k%^3PP@qo*wWk003)WwVF
zdE5duvUjEP%=CnX5|&8#L&EP87D=E|@)y(bp3*-jOdry2^t*Mbgypo12gfX<8MthE
zIYG`gQH~m{x4cTiY6-g~?4gV9Nc<W}e}T7N!dlLfvyNf<W#<MiqSB2LHW|E`VT**V
zH2xHmbtmg~)*ZC5eA6F7LTMKb^@;vne(6Woy%G*dI4ohGg#8js6XgT6kS59pX=ds;
z8%&gm8?>-zZs9ya$2C!&aoR%s7ahVxncx_$SP6F|+?8-b!bzGII$!zirz8ZXnT}31
zU12ya;S7W8iRr9_a}s?uz<!>U-~z)%4!9)YAH%=QK#lw>;VSKH64LKBU8l=ux8Cx-
z;iiw9%>*|kq}yqoz1n?C!fiU6tKBnG#crD@ua34)cQ}%lI{wUIc_87Tgq$*R$#^8;
zG0ldI)H42)@Pw{z8nc9_5}rwTCE+!#Z3!<VyreyCS`4K+zr+_dfU<8Syp`}y!g~&&
z(v*PzA4Bj-!e<HJX_t`jMZ#B!9xo98jpM1561^m#rU-s=QIw2Svff=vQ&dVt#A#%t
zm61_KCRuMGos9G{s5FMNDe)QDNvV=qMiv=aWn^PBr3<P^DLc2HgDa*CfHb#^JTg2o
z8h(t*D`Wf*QxzFiW#p5QUq%5L2~F%|7L-8`1S2lQF@<Fmkx^7eF&SlLl#@}M{ZcYY
zGn9}~l7Z^ZA7CLZV>l^3WR&LstBeW^m5lg`GBzF3J2kNr%W5`CEix*;v{5M~n+&_*
zJ7mNeT$#c3hqFmRYc(0IWwfF3%cvoPoSHJ~$*9lllu=7YZRU6xi8N_+$eg9fK<9F#
zb!60K$Je<Wr4+w`5z~aG&frE2jb(bMPB}_VWi(@_xr~-ZObafhMp_vTMdl5}wUyCP
zMkg7Qb~xL~XfLCKjGO+r{Hv_XW8!>;Y@KENBBQH}WEov(^-hhabh)VY)(~s{)(Ppp
z)O5*k%Xspm=94M$)hgF%Nu|@Af()+=QO0SLO`_A9&gordB9>+NXe2%Dei@34TX~(t
z0U15J+4uIe$Mv&*=w;VrglG&@DkCf-BGXggFk4198G8yQ4U{oR)_1DztUahMLoZhH
zdo%Q5?aSIvMt_E1SqHFE<aJMa(!nx@$rvtUh>VfzO+#7fbqnzbVi{9pOqDT8#%LM8
zb#YFVF-FE%I@dA|DDj7b@oJoXfSJCRj0<@>cAx5;AmiLbdBbJPQYF4utZkBv$ucT!
zwpvQYQT1surgJ-+>RM;Wpa4oUWsEqTk(@8Fw&hvuzsZ;*<1ZfPTp9CZY?iS_#(WtI
zWUQC5LB>KEzsp!llfTnU-|k#Q6Lr`WGuuSESjG|=f3UMu#%hLTtjk#`W`&HE2CrhE
zX9=!h7+|+jz&aVbZ<s6msyBY`f$j{yZ`nu_b>Ff{2K^Bv*eYY2j9pyoPu4R>%{ygm
zXWqejaELx6O7wSjP;~5WHutdZm9bC8jAilrSr4!tWIZI~%VZ0U<gkn*?7WyL*Q{+h
zD&ub%$7CFraYn{j8DFzkJHdKN#z`5^3pg$ma4Z-Sy`zBRv<y-TI49#g7hU1V3o<S-
zP|-yhF$EnI_76Lk4WAnMm#a{NR~fF+W;jW{F5?EB=mHM%&zPLIW!#bRUB(X?cV*m@
z@tC%E8TVzp+H1X#$?BVIB6uL<Av?s6WRxmzA$URqUSMi|*8D=oQ~jc_JYywzE~8-B
zLhzDm(K3rzU(0wW<GqYGwCNQ~e9Pt)izB&s@&{&$`NZ&%cD%uMiXrDSO`}ozRmL~E
zBrlrC_x@r3DI>}U_)y-5R6a!ekjIC-KBV>`jSp#kNasU~(Wa;w>HB21t;%SR@zKMw
zVlw!U(TDUtkTa{iEp;zbCJv*>>^@{>&cd3NH5)56LIF9LbFxx4mk+uBPia0M^80Wv
zXKXPaT4juF`#608BeEbvA=bjIMSLjAkcC_BmS8FFLkS;B`cR7fGOVRpw@uf3r&N}+
z<ya@Ljj7;6MIUPTP}7G>KA3z+oEKN!hgcuXKE(M@ndYRb-Qq*JXLh>}R?ga3>D~er
zIhYADPKm4HL)(^?YCaTrZvWZBQk9^Hm0(IwQ<1$ky5~&b^r4myNj}u^p|%h4)T2*-
z&Rc>H^t`)@X|3a?m~wrnI=zpnQl^B7<4kpZsM_1q+J`ni)bpV}y~M3=Ye3`ofgW4e
z(1*wiky0Zc8XMfiho;QU45vB6`(dV*K1?2KYQ;)GuV<3xI@|it&IfuuL)>Pdm4J#m
z`q0UT-+fr*LuVg;@u7zgJ$>lnLsuVEA2c75eQ^1p`1GyV&Fb}GQrcRn4#s#mE3n?l
zuD{_GeULaSv-(*5tW+BC;r>KDEXXb79HKL&5RIH;!baq*j}G#?`Oux6D_QjiH}#@9
z^kJ+I<LLFj4}E<Y;KM*_^OgQ;lTtqp?$7$G593#*qBMxJLwy)V3!8ZeE5&~=m1;Qi
zNFPS|FoHSdaaE(4$N2D~u_Jivf8(S>t}-%eJWZ?*Q+$}fF%wy-wMjm#&!hjLnd-wd
zA7=S5n~SEiI?w123!T9{leIxo+;0qXe3;7<5?j(X&xiRwEcAiKM)3<cAcf0JlCQi^
zeYRKr#Xc;d>(`Goe*D1!%Y9hk!%}9dwaka@RpRpRHLaxU*N2lnoZ_O@K5X(~vkz;0
zSnI<&x*TE?Hqa^VXkE|zrBot08`;@&!XA6yzQu>FKJ4;gw-4^Y3EO-)5^di}t#Ou|
z?LO=<cwAI0ITWzRhrK==qUChQyw8XIK3x55JK)2RTv-TiY<H3#WRu{E&3Txb<?LUy
zL>cxTj;Er(nU7IxhvSbkpJ1h;+LPqdKAiF4fe#OTIP1eXAFlauosaaqkDe%ki_8VW
zPD@4mCFXy8Af_q0?86^VYZ6@X;a@HyzDf%|mwpCsuyd0&CCoa|dCP~}v^flP-eD!U
z%W#kNKCOpw7BV0C@YsiMT=zfLH>^=ZoKF~@`tXe5IV*Mdg5jkPuNYn%{_Qpy-!i{r
zeb4%V^&{&i*3Yb8SgEzIw5yx-%ZJi;Hh<7E4myAO5arjeVoIqPqFL#iziItQ=SOxw
za`+MBM|^F2Mn5w7@#BIsJ!=NmV)f$5dGgdmn%R#mY-VN6#u}64q@tXD<nq%uOi|d6
z+<xToqkvz3;%LVkmb`xC^CQ0>^su}7v6kWuEW5*&7h^2+yxD?&%y@66L{Ani;>Xne
zwlaQ{^`rlj3Pt@W#z0)$j}iu#^rIAWY1Ra_J_VHX1AZj?;qs%r9~Jy);73D0D*92$
zuYa{Fj@3j5*u?7aBbKw|oBgmDY-O<dVK<!Pc{7e$YMox+@@}%JvL99asOm>GKdSqY
zXvEZDsLfi_4<|z{qtw?c1N9Q`M}pz3>1RqxVb;2aUyq?a9Rh#<tC1g#X~z6Gl-2U<
zH**s|TKmz4W19NW%&66zp@knU8Cn_s+qlwgncEvqI|hH=j2#T8qaU3N?(D}e2G^RF
zu`BmWU0<4Nar@!%W3wMy{1E)``Z3Cn(SEc~u!w$i^P{^Tk{`04z9ad+Z?UNiem??+
zqxcat_~bDC>rNVHLw<xAB1Y-I)ATP`_3)z~onJP4`q7J_H!D3Mq>mqcjrg)t^!Q&n
zJJgQ>hCh&D5bI#pA%48iS%-ot4P$3G>j>77tli^E(+U~m#{xeV`Z3mzaej>FBC0jr
zj|qNE<m@CrCL6w|oQ+DS&;mA`X;ivg|I*V8KW6$di~Tu9>1>AISociHIG16bQ99ob
zdKfa*{oQa@__4^~#eOWIKLLI$H5^+B>oS9v(<QlG{}LIcm42-9V>K78@nb#1TGn+&
ze6Gr+H!yEBoJ|aYrPi%}Z1dx)AJ->X{`6zJAE%9&9e(Wh<A5JK4QCg_Zq_}1>^1y-
z46`Nun^_0__?xqbSP!!vVWrZ)7>=^m{$M)BaGdo7>q%CMJVpD}PyGPT_;J>cbB2G3
z;k+Lg7%s9_daZZ;5A$W#E3E&rQqdwU{WUs9&ff6j9>Yze^cKTyKkhKxHT=m_Gt#9*
z)gSuth}O0SRl{RH{_|s)g5e6D`0>;aF#sumXMQ}VeJOwn0le_zr5||%$QQsXS|n90
zQ30e1;I$ub{3xT^-?I6M`5o(fKR)=eFGB*QkF>AuHxYd1urI9C$XAAMetb8a9}GWP
z%bMb&14tb}jsS87^iI>T#srX-Azc9fR<)6Ts=g&XJH#0R$QVGyhSp30WDX!p09gab
z7C`m@>iw76{517uOEi^IYW_S`??Ew?av62=1d!X{TlXysTa=>)Ddi8KZ~#RDD8Qu!
zSqrfibLs&_1EA+=7Z0FBiWxwqF)`$q44_m1WdkS|Kxr<@|55+09HlY=^e!Bm!W0ZH
zrBTtFf{Ii<faU?T2*4CTYyfp>@Bx?uuy9yn09FP^0C5bq0Om}Mu?O(mRJ~tHmD#Vt
zI%$=eoT>p-<1BG?h8h9XG#qCDwU}!gPCP>b>yPt#3rPXgF-qz4OZAz>L8hhwG+=HR
zK%)R+GW~Df8VAtCh^NO8^;~9c7Qn-qI<z$W_5rkFZq3@p@Y^!9V{NtEM7?(ipkn}?
z*y$XA$B6ueCZ|ZnF05SxNM>-clJ90%dMHZZc&|}wNa2cd06tnO3Mwh^2M`G0IW6@7
zlmLPO%nX2@oUaD(W_sx<bY@G%YXO7;$WzP~rlJ7)1rQ0KTL9fD{*<E+7xiGKY){Vi
zqO;7-BAbm&Q;v-EJSb|Re*l957#zT_0Sutys-l+;<VY&ryTLSss}qlA7#hGZhT#E>
zpktgQQ_=8q=8<fUVm-GudJMx@Rtgx$Fg}0@hBGmMNd`}5=sQWC8bF$JrfIAM(*u|h
zfa`~u{^*m=3Sc&^D_URy91Gxh0CNMF7r^!ab_6g#fCT}p4PYHD+97cZ16ayH{Cfb4
z3|<_-5`+Js7ADCQu#BDMhQA_!mCUPHSF^4$N_RbtULQc>khskOYzbgP02>3?#LkrI
z@zfwCDy6hF0P2EZn^E^qhI~WfsMDPR><eIj0K1IR-3)tJ_p(x7RQ*5zhq;}en@S&K
zIArvAB!IsHILanPx~7)>n-6N&kB*c*5x~g+ZU%5GfKvgS4&Y({mpJ%L02dg}8g<Xn
znH>^$p0jiaG*oKgp8ziNNSuu`)0nT&X1l)7HQMgjyvj=c8oK$z@i&atXymuK^l<?H
z1#l;Ty8+w_;7A!e#ouQr5#QwjU4|T%av~lvlNlKj_auO)wD||nVMrX6l12@e_VV1m
zq|HBo;tEPAcum(u06znWQt&pQKNjy(0G|VR7r^@fKCnaP&S56fj{z)3B0;I+mM>iN
zjrA+*;-i-Dw993#MgczpP%l{tQYna5@I6z_JPJ}PNTVRLf-DNsD(G<2l3qcMt%>Or
zRQTPwK9w~_LB0~!Hxo=56l7E|W{K5owq#O3?<>D7vA&!jWmS-kT6<BI9=J_avMb1`
zAQxB9p`g8H^-MD5=70r`atAfNI@QWc%~B%@3MeR~ps<1;w(936$!#h+3o7WlIzH`B
zdl7|x`ovLGK`|QJPy4QuHcI4BA}C429%L$~018SeX!)&cX@y>nI?Aw?RnVrgow7~e
z*~%-}_SSaxgoCmb6cl_{ld|9II7|v+74%flOMzK|ML~T94HT?sX|XD(tDv3&n*uu(
z)lG0HsG;Z|Hi%PDnVl*MZa)&ME2zrZ`s<}?3YynVIF;E#@%h3@H94NDI2mfO)>aU2
z_z4OU4Ng)}hdJeg3fo`V=w6Vz#`!8bwxNPX3KRuF1&tLnp>)?=J-&KV1<e#BD{v{G
z{iHd~HqFK$Qwy36c3ROSFr02(s5Qf<ua>qHKc+Ojl5fY(Cb4J-1sxT1QqY->x45;d
zf-;-T(;b#ysQrGX-VRF__NfcX(i<Q8NG*X|frqAAftPl8juaI{(pn_urT5JXV`3>x
zR^VfYIPZ27-82i(0^3oDp6RD5&=efFXY)R?Y<Xe|DfE+VrU+}8m2OXUW9ZJ>gOy_D
zJT>)J(1!*vGp=oHs=f-U{igqE9zZ8+yQ!ao{tD*(Fw^^jUllAHRhD?5f`2FLf9VD(
z`m3G6tV0wGRY1?EC#T4&m=Ov_QdkgIgBYb?w4&cAvjj0l!B~3zrr@c9aSFyOxTN65
zX0vOCG(o|91q<lhc^wlKOrmBLbbn}?!a7&MREBA+(^+S*&Sa&?Sqf$w{F{O~%nSaj
zKt+`1Df-WI6D(Bd^S4-`V5NfNf15g0&$LLvVg*YS{6XigdL}ZLa#80!87WbAnS$js
z+Q&9ZIexdUQm|UVJ_Y;fyen9%U^C69f^~}iX|6^5;Vy#poZX;cBf}=vq8-ao5v8pP
zcCtgfO~Iec+YM(2!<Th2RJx0KH|ric3L~bANdHE`K?SGTImG(6QF@q82lHR7M_HvU
z>8ZhE%*R<NdxGJlf>R8yM16Ra&T#guf^$aXc?B1kFDjr9@lp)wKMF1@xI(8}!9xYZ
zmYA<9xJFmBf;;;9H(jSwtl-2t>!+7h>8US`v&G(|jUvi&OVOW#Vv4nF9Ao-)&vIA6
zJq7m_JfLf#mYtqyv(afsEj#@b#qdF<N8B<s{#e0(bnz}RkN($8*=IB!1sQ_K7{m(&
zFBQC3@Ik>V+Wcu&=`%kHZtb(5-fXJTQoj>L>8(PaAGW?@{imINW9OrSPYOQMd3<JS
z^h*D<<QGN%`f#eC-ojS}-?%B_?+ia!e=3OLfam<XQPIq)St&A25NQog#}E@ldWJ${
z^*d&ng2)_1!5|6+ktK+1%Pi%$MCS;i_SA%|l;y|@9W!MQ;_Uu}G;QK@vXd)_ti6(Q
zv*uyV%bJfhKWhP23VSd~E*wOWAo3ovmI<P05XFKh6-4PEiU-kmT*9l8$t8j~&@z#@
zWDu04bgO0Jqj#oPt*rOT=RG~tQZ|TkK_H0oK~xID6hsAT|GL9fH-o9YgP<a3TOM;z
zHkJa~JIp}{bu+xW<{+i4H3(Y}_8=TVOb=p45OG0N4nhec$Oly=i1;89f~XoqwIKeO
zlB#+T8>(1pb7_qrYBJEIIfJOhTyTSa`?uje{ibeW5J_yd3!+XCb%VI~RsSW~F=dL>
z3!()V)eoWpL&G4NGBjePu*M8cShHSC-Hf3*YnGb-yHnjVh*s>hW~Ewff@sT3A9tkB
zBDN2r17|x1;WlDAF?0^%7sKho&^3r;2AAPy`4r{ZV)4+t1>p@sWZ!3$N<qj5Uvlb0
z@&^(4KaLuN#@T^Egn}qAD6uzZ!>kb_vRe?{nR~GIWbMWJdV}6<ALhQSl<mjRpY>PP
z0d$pB)aQ0k5QBqgoLG7Y`xAp08pJT>;jCj=N3f2hzXA-SS*bcb;e>Q-5aZYxZ}<}k
z-swe?3}<o>Qw*LO#5Cp;kM#dg%nV`{Xa5djb`ZY>u{nq>LCgtaZV;P-$aKLpFNpa;
ztl_W)Mmx(G76$P<!y?09%&>%3Aj49_-&Zo#a^@9=vyx#|5UUwxrqRc|)+k*U#Cn4_
z1hLWJ@9m4ySD$E9TZ7m}*PY@28N}pqsrGYrJL?YCovgcp*v&v)>|xj&#6H6b71vMP
zoH?e0>>M)u!wg4)_>18v>&~D0yd4YTcn~LOt65{ZV8owfI2FWchBJnLmf>6w=NU4@
z|L+$BE(UQai1yE{|FB+WrR)`kG~dnFg1Al>yNa1AZUk{Nh(|#@4&qi&e=$JmP7t?)
z`Y#|5Kg=I@*YNK#+-H3d#6!c6?r8llh$pmHs7O%pG>B(Gq*D>2;yGR2Z_TfQcunh*
zPWLFsOV$PVOgUhC6U18@?ODrr+JBl_-v#k8h)>M#sRdWU2WA3FpV|2uM2wd7g?$3@
zzp+E`gPZypM3kzxnTj=yifD$^tmF@kjZVuvv}rVD)2qm!qLK=eii|2UsmP-uuZqkn
z-o3YEQ;}Uo78S`i<0+e!D!#8u;4c`TLq#qXxmD!kNOG2UP8?9zGHAcGQcm0MJC=MZ
z@~bGNf{F^LD5#>CisBp`{M5COio)Dl5f!PMcA}V~oTc`uof0Zaa+VqocTOa8%4sw8
zTUw>tWhkqnoQjGnijK5Wk5md3<yBPRU}}mQB%gq){Fo%isxYgtt8l2evrhbW!e&un
zRk8Af&8DKzWcl3n%oDDrUzw^_oQldSoGNOmsG?%pPkS{L)m8NQX|Jk+D%Oc|?3kUQ
zhKich!ep7=(Y!isOMwx2l510yGd6l_Lrje)sz_4dRUxXVqoS^gwr|WX74=lqSMiIA
zF65|IG8?F9NRzX`*+@le4r@%M&umRto3c{28AEf{7OX8*v@%NHOgB}mVQr(giE9^a
z?O5Bhc3|zu+KH6{I@77&Zz1T)J)TIi(@2t;?<_YHyO}+z{>&?ZSsdpeUs55f=&Pci
z3ZIIB7j2aMG`$&}DI8!^p=I;g9As5lH5DN`N6Zn{o~+$ebZ4OW9xAq{k0t2EPH)5S
zLv6lGB)`9kUsa4yF_L>3z&ea|po-u}+aMK#Q?eIrLsSf9zTVkRV;gSx^u^mz%o9{h
zR54n`7!^CJS;o==dl#Q_6ysEk=a|b!%qh+!&aP~2q3mSlDXdfJyfctLomTimFTpGo
zvsI+kkWRyID(0y8kCxWf%yU)DQ*l$pEfw=sEKqSk#X%JdRjgWOUZr9+!|y5<F)U8;
zmzkF^{K2}EuDj&8Wz5S}tT19$s_;y=Q#)%^tfeDT@nf2O9bFw3`&)~BBg1;u4Xj<~
z*f*)z%&l!vu}uYqQOjG|8Fxpo^(UPX_HPU=OWB<&cBv>bHgPxYb?NMBXWRF1DHZKy
z*r#H@;m}A9sW`0Sf{KeOj;Q!c#c361R2)_Dw~FH`PN>+@$5C}u0_id4ZjEgxRh**B
zXR=JbshPuj*8cX_L{f@5t74xm?z{>LJEvlLe+QXVN^nWVx><2G)|;=Z_=hfyPL8`%
zESFVWVgFxN3b;y_fWciR%M^b@1?hQ<b?sU6Z58)usHyB@4%+UhxJzr}ppDWzx8=Ty
z2Pz(NDFr-YcvZO?@nhOg_LvBs(6p#{Mw`Ei?==4^UZ{Af;=PIwv~(xSuV{r#PI%3n
zdcETf%@sMc43^lZOqQQ5vC~)b$^WS06Ya4NqQBBPy=?!iVq7Hd3oVuF9Vn|Uu@ih_
zll-Ac8R&zuKWVqu5dG8?rRjgmQn3=Wt?Nil{7C=nmPXTm9FrhMLwXJI8WJ=-Uml-9
z!?jVS+8Q!y$fO~&hAbNLXvnL9?t5g_kV8XG4cRn^m!)T7LUs+aw0L?1P%aIr?l}IK
zEa%p6uAP&3?}+#*@m=$2$giQih6<YgxUd2m3TY^;p`fNeD2$%aMb8#1qM@jU5}N)D
zF?z_@zR5B@d90X*;+p;lGD_r^<kC_aN;8z9@oOlj>5nF(QhL-FDK!1rYXtPft%@2d
zX^7KMIVDDeO@o~})nL{@&(Wf=EEQ^6H2pbjR*s>Ej8SX!yfRXUrayO!nkBBHp#}$3
zWhJK?Lv>aPBd4YYr-oYW&|#88BQ&|==<fIHC8k6TjWjgYkffoGhCg=M>uRV+Q_4(>
ztpSa8pQ$11LSGf)L+2BA?y@$~&{U&)Yv`b%nTF<?{*JG;h8A=b-z+UPw9?QzsWkDi
z9vLQI)V~0t)=t|-Lt72Yrr61$qIO*Cw3ygYLnk_M8YB&!+3b}`uks5sK^F~OHF{E$
z-iwQM{V%E9MyW@G!0a`g-&e)R%#o{lJCuB!^|J;vC`P1IFSDj0q@h@M6z`6(hKPnf
zVe}27n}+Th+#z^E=%JyfhI<<BYv`q+w}yQh_EV&WzSNY4?Hc-N=&xathRL*|Gz`!%
zNW)+aS1p-S#xPLB?k+KVD_MpZy${vUazyEr(qU{4*D!)%B<m;*qZ!7qj@K}jVH_(}
zG<VZqSWeI|(QxeR(@xPamCm?+383hD{T&~rX&TaAG*8zsgMqm14##ZT{JG*b4RbWi
z)v$#Q>WXuohWYF-V_iV&fng!*@2rbh7qc#5rCz#x&ajmETxb28n9DV+(6G`dU8iA{
z!K*c_VP0!EcM@XO)AHu*Mh%-ZY-XNzBdS>QR3Go_FT#mwcw2dp<?ovd)XYF8-959#
z+IMK!sbLpaIknZYo6b=}bt?UE*Rn?g>0X+>!Zv~f8V=HKpy9lRLv%Txwj9?Gu5LN3
z;fRL6Xkh<Ym%eozrIDAm=5OWrTcck+c2GK|p+QNT>znn2hPqP{PHOlxB#zQ44X2sU
zuy*=c?W~3ickEPjLBmBF$&-Xz8ZK%0hxRcI*EQ^IXSuB5iiUrwO7(ck&Vc1AWhcv_
z)E$YR&PsScSth-q;id+H{6pj4ezuU_ri*BiiQ2rwE#IY0@<mO`KG5)xF4YiBAw1IX
zm==#ERkjdTtuy_n;UjgV;R!XR;TdhJ8s1To9qFFfUubxx;WcMpvbx^ad_!09yP9t`
z5L4K``xc5!iGNS?$zh$@`K;j!y^shYCWNmVzG;XGAyo+9HF{!09HpNcesG%A#6el&
z6o?KXO$cd2NFCAx%GS)75}y)GoIZpMA!H8yubqq`y<#TLQcOxySwhJAf1I5{T=o!h
zgdj%8<_w{D2qmaAgny5V<m3(^4|87De60CdDWE_I1w$wlLSe%x%1|VP*JTqapqSzR
zSt*fPD;YxB5Xyy6DumM9BZZaW;FVW85F>>0oUIr_1qL$L<c%lIIz=XZ=(NU$U=G0&
zf;FW7resZvg&rB?O|<4*Yqf>o453yC^xa{52o46~IEKn0R0*N-OLJA$YOK{+Yp_yL
zO@_SmLA4O#LueR6qYx58XmU|X3?V55`YLp}DRLc#x*^nKNSGqmXXrCUZV*D(DKf<`
zeUiB2qSQD9rG&kC2rZ})Zl`Go%|iHjRis)JHhqfRl7<&T+Ys7?(3)e~uu{<`is|N{
zu=XKzVDlH&vs|}h2v4TSo!IHjDqWO@UzEDg7(z%6!NumxyB*1&{l-k43L$tySQNry
zn*R`_5W*ouLi%3{nWnCw{^%-S2!5JdT96y!RW2e>LI|>x`+|kC8v7wS3p-6KOV~)e
zh0r~Oks*wt{Xc}BA;exX4-27J2)#q-zso$7f}h*^gy<u<wt*qIo22a<!nYRoepJfv
zD=Rqz7<Smx$A~e5LKqy<fAWUX5C;0zFtzrgLWYb@EyJn(D9eZth)ZoVji#&PmT6oF
z<3kujN3qg0HiR1s^bbW`er}o&!o(2fhA@w=kph-UA<Pcpw-6?WFeQYkAxsNlMhG)Q
z$X>`Yox%!PR@}E*HW#5RrCA~Tci1wofaUE6%hb#XG*KsVq?!}Lq~dn^+R?xQmiaV+
zt4s?+_&tOL)W}OyV6mB;n2e6?iT3HY^$mGR2!DidEQI4BEDd2<2s`P#r%g{q%R^X6
zn-5RyiV*0>fXG}O!Ws%5XWAaZ+7Q-JDa~!Xbv=g_8<9$WZri~8ai3{p2%Bh%_L;J7
zv~H%$e4}+s2wNG5w=qP0E?lssoqh~x2Q89Jv6KQW?YlzQ9nyb%Y7aMcG=#l$DRnEl
zFNFQ<9|(cokhZvFrkH~v9Afh@>k(G+|Dsy6tpqgezeCtIA#M8B(I-MUNmpVRabcVa
z;WX`FVWbV?ObBP`0;gs}I2XeC5dNV<4&efszm>k9m~bhC>9@s;w1J#V4A)60{J2Q<
zhW0Cz4dE_rBd$)Xe%8E7Ya?QvmKcAH=Iv)qO4sRhGv8#r#d_N)y%WN?8zu_7#}%pW
z{SY36@R0U@cAl|5HcJ0vcoM=>hSqheQI+RL>5C9vGQTpM552p-4dGn~pF{W(!ut?@
zy)J&Fogst|9FuXXTqs|1*EY`5Q{^I+?a#6&f2E~Pn>lR=G^>dTDP4RIVR=%*mlKJ3
zn>nMx`Y}d_kt$5jmT^)_oGO!(I*ihdt0liqN*6{<7)L61EFDJrFfxRZEsX48WDFxy
z7+J#fV<HGQbyAhg+|;*23DmFZN^<^{KqfJ1jxchDkt>Y5*6K~0J9CFYEtd?V6j#YZ
zU5Ak`jQpG}!dif}AS<;{D2&1e*KeSASCq5GSc`{If??8Oy;JJFvMY(svhzqnnJ_)O
z2Iay)7!|^($YG0mbuAx8$G086HFcI97Ee{q){4)uOsd4CrZ8d|%&b&u3B$^4W3?N8
zmQ=}=!>AHQmoU19Q8kQeVYCUOZ5Y+Vs1Zgpj;zV*45L;UH4i1!>(f<g?mQCJv33|w
zha|>_k-!0oVKgvWP70%r!F9u^XK;OnMSn{T4X05UjhUOUHZ^>EQ)lxqT7==6Dz^-y
zRT%z!U6*FH(86dPM*peuuU{q7c44#+qf;22=@8mDJ8<=mVYK9hM2jRY%K1wep@f8#
zX{Xs}x>HJ~X2Vd!(86$s;R(Y>?S~<R;SECyLk>d>V|Zf1g>MNZk`iX*O)l8beq=x*
zRo{J5*Gw@<fiOn*>KddK)u*cx#>^)Y!De$jU5^`bCWOL>(93>WT|A^e`*iJIp=0+j
zdW6xFTINRd1%Eh!78PZCh0&XR;#pJWesqj9k_hAoehp(l81*A)5W&DO28Hn|jMvm`
z7(>GNH;k)c3=Lyg82iH5AJ+d`4G&{v7^7$c-$jiGWAb+W2KCz-*3n^X=YTO`j16O4
z7~{iO8ODrS@e{(B7{<IX=7%vUjPEl{vsfpyPGOzOIxURpRE3$sX3`SvZz7mDL)Y2t
z|He9pbuMd4{DLrO7=N%XWc{6W5$j^sC9KpYMJ{Dt#=4w!1#3#osxVfEv4+RLiFGaO
zI@a~98(258Qk!(7o0+$;Ze`uZ`X{TYpB}S=XNe|lXBfNaL|-uPX5GWOmzB(+i%kbO
z@<bRX84j`@3ga-t5!Sz0kFx&FdW@CYKOTnJsXqqx6g!t$PaCCY!Z=F{=}!4`tmj!T
zu#$O^;Zhj?7|wxZ<||xx=T!a4vDd=5&e^-HH^R6b#;wKno1DGHN@2Y!>c3fbCyXxz
z^f!R_!nn^x59k6nVjhO^i1{(=e}?~r;m+HrXNL1Uj2Fx=4QD}{^l#{_(JmK3$q3$s
z@ji^NVSM9&4`F;ZB0n;GqS7NKx~o8g`4UDG=&Sd87(Zycjv!kEKf{P3-Q;vQ(@;^W
z2o|N&V<<&O^!1;bHBAI*BS;rP3}-X3rf1E-nvs>_8`ewA%$&t=c2<tg9zl)>3PsR;
zkx3|N%^AVcO?of6B8aPPBPVwRc_JX7l$Rl21o;i8Km-Mu@0`=C7v^@TsUi^+HMm#=
z#SNy{W~Cx19YNIyszp#Hg0d0VBCzw2lA==`d}}Jl4A$}yREVHr1eJ_2n;3fi&|gZ$
zMquWwh1JTswSzu>2X!$<pQ|ct#zjy$0{W$owm&Qb2kU;NL8+>95pm53=qH|P&@l3+
z{cN*1Bd8TYqwj^Os5ZyMvnCkvi4i0jTqlCM%=HY%b1iDdbxXqtT1C*B+KGU&jadnr
zFf@&znc*~NXu;Ytf>IAm6xJq!wh{aiL6->HMKF6o*_stB9WR^PN6;aHCFjf?Bj_AK
z|5UNWogzs6-f?o1nZn5FN~i3+nS2iiB(u6$-L%u5xBk^Gfl7r4yb=0wmN=0cJdoC+
z-m&^3@JDdG8%}gXAOa<VuHBH_4Z#T12-0^$hHlUz2u1KIg3l3zBZx$>HG*vsbc-ON
zUE-Js#?tAIpa+GWvh<|ms$?C>lhZ4L-VyZqe@vYPblXbTwVP7XlqqGVU2tN@PTRCe
z8z}ddd&^8I_r{WJ%a&}*DKj%OGu|?DZ<(2y8ULe`SKs>A(%S2pJ!eKUqZ!$W1<W#?
z=ab=Mc2nCJ6jmB`l}5FY{+EcKofN~@7y_(w$_5Q)7-Hmhev*dvHH`N-ob`=6bW}1%
zCxaf{urL{8IC35*$0lQ3GRCtrB^gs0CM07b!z9+ptkev5c<3~PXVKwcp20fP@H1Tt
zrO4UIn8VIo!(SgBJfHWtfVIFJGc{&WGIG?5UQEj^8B3F~EE(%LemU!E))lNPSy!=A
z{j16btuc6QGS)Fi4%B}ur)>i#Hzs2f!)7D$oh`WG2h+A>+)T!;WNc5yj%57HxtHkJ
z&5YWaj9tmtos2zfo=nDGhJ(pCl#G4M`&kdL(!NT5C~}zj80!(%qekw5h@j)lCk*Gv
zvZAMwaXJ}i*g4PoAM05o=3Fu?$MlX|VCSOY)9V+>yqt_H?9c#SWw^$Ao%KdC(oEI=
zyEXS|!tG>ayJ&jDbKp)g?k3}2GVXKOlVm(i#slVutW@L?!(-O65&B2fGv?>4eeauJ
zFuY`a#Y!=+`G6A8_BI*s4F7#HJ{bHl8K0Ox8_pMMz>5Sb@;w<pl9ASqbawnq#;;_Y
zd>HgQ8K&zN>foK}QGJfa{-I9U^=EVh*|E4x0(FYGx+O8a9U1J%Xh*PJA2B)>gF5Pe
zLQ<2cAguywf2bXq?TEJ{!Hz6;WVNHH9m|iIvf1^IkNkENV90Jq4m+C6(tDB9j$CXK
z=Vr)bM_z_7!_UWXqnM?jU0+s(SqTb}pO`>UgdJ)XaWOlJv)^Y-R0%su+EI#&N3haf
zO50J!j<R-?W2d6w!;bRI6%1!kiI7a?^Hs9L#7?;3Z|xdpX13T7X@}Jg8z*D!h%#cT
z+EJOgis8_Th_<7e9o5;1F?>1%sUt~kt6@h?_T!9PT4;%O)Uu<s9c}EWO=CDB>Q^yK
zT|4UV*rHa#g~WuHQ!>@Fqdt#A13Mbp@fX+7+^DA!Lt`3thNgz!%nqeMXWDfOc3QIj
z&DzR{p|f0DJ7&g2ceJD1<z58s>}bzU2Uc=u38d#G)5VUicFeV79tGRc-Hw1ADR%U*
zqo*A%J7hb0am|t)9dcS;H4jR%qqiM>=wR)OoWEbc;H0k|{pcgWjsZp+lIc@`d641!
z!_atXNs6~K3#_7@9u!cVOa~nr&D3tB$!W*nwB`pR_4(%J7=_hi$NHx+VJ&Rok7HCj
zymoA{T4?jx;Wt=gm=GN|*p4A~jI?8v9YgIH#x)GL;}BnYLN%X@$hW4Sd4wJFFIou5
z8EwZHJI2yv>zU<xWMrNK8OGT$%Z|{4!E|lac&=fB9TOQQ*)f@63hQ(`rZP-prP}hW
z3Z7x`OgpAk)W3Diwu63ioWn{$S8mU@V}Tt9>^Nx0LOT}OvC)oAv>wX@Ew*Eg9c#Ig
zC3Y-jSZ36@+>R9nue4(o^J>Fcbv)gt>}A*4vB7ZG+wm=XWQ^C8-EO8AOKrAe(gE96
z&aFAuvc-<u?@a^|l`?FzW4j$Y>}XfX@~<5`?O2&9oOr-N)96l?U3Tndhs-@RR$0UM
za&jN*eyXRKnX(SqaoCPyb{x0k2vw3^Kk*)=epS=o_DfsOI^{lOHcuQF^Q?4aiD9Nw
zcAU23w;g}%IAh0uc6`ko^vjO3cAT^0ogMFK(CoNi$0a*1+tGBI+5a%jMLQY|G7r0A
zp@%?T;l4by;}OGEJFYQYXQe&fu;Zp3w>Wv5^&aaTJMJ1W-s<|f{k|O!3};2z(8mTp
zBVRQ=p?+D-PpJ)cEzRE8o*TI@7+$izVtvi}hV?D$))#3$*zwVhAJn5UCRcFcCpzLk
zBfi@4*^W+aLLPs#eX)b|Xg1q7Itn!{-#H+5p?ObM%TGImsTT2g1nHmt@!NKr(+CI>
zkWoOefV2WW?Ttt;AcKH(0@mF&(?$+yYLYZWKqdi&1^v$JXJNKb3J$a76p&d!76DlW
z)OcGpn}C7&Y%{bd3dk;CwHB3wm4M7#0&3k)%q@U&^RN=+We8)<Cm_Fo24Obx3$RmA
zKp`WtWq#c+BA}?@cqYe{5KvOU2MHe~loC){z$6iqMU)XxR=_<0_XU&_00HX-Y!Fah
zKm`F4DNH~`0hI)Z0we(@0pS7?sf7X}1egU>6Hr~ifvi@G0IL8SbEJS>%gyb=BclXV
z7Eo0{w19-&<|+a@_KzLdI;y}n)5sX}x!RV8H4>ENX76!xjDT1H@dD=jvDFYzQ^3A^
zmN)_Q$QSy7;kRm$7n>&Dx6$)t5~wAQ%rlppkGP|13#cQYxqub|>QXxkTAK=ZF~?F*
zK-7S^`mDX@CNyAZDBv%KMy%)Dv5gs;2-y1DM)B+NL^Tu8DT|qEXer=t0qq5J5YS3M
zYl^&LX(wPnjJXY~+RoCJra`g9S|80@io~A2ZyWl`+EKu`Yqn1Gv+S7!f~oh~bmoqC
z5ztjYHv!!_IY>Yc1{#yz0(u(UOF)vrgGa~q5zv>D{a6PG=x^laY-Xdf1F6DGRs!1o
z5s=Keb|Xe$=s!BvA;2jhMZjPIE&;Ltp8!8i>7uc20g8a-MPoezp5C{S({)muD!?mX
zO#is?m15|c;gzAa4i}Bp1Z>M384$2(k7Y)Y*tL11W?Zrk5inH1C;_7d3?n#bq2o1D
zz;FQ+K-&n0#GV<v=FWZk#%<{zdm>lcF#^WYKnWNxV1fWo3ro&Tmfi;~RiBzS|A_l5
zBH?~e)MNouXi*6CEI#v80Ws4|a|O&3FipU80o45&0%p=ADX6z_XIJwq0kZ`>`Ihix
zQ`b2HdjGNY2#WfhtL=ON3k0m3Vp=I+p@2oySph2qwB2c5EZ|FZ^RM@|C7dK@DZ?`E
zBP9#>HFth%4n1z(zSF#lX4fVQZ8SZoNoxeq>|IMI0Rfat4h3(df;{GzsM!Lx2slJ%
zjHb4&)Xh9m`)R2EHg99z&bov3U)GxY%{ysvZA{oDU^hE^SogA0@qM(8o|*{`a6JcE
z&wMaborifZM_7*vIL2^XzzG2-1$yaZyWr2gsM%q8tfy!iH?^H+JtN>h0cV-dv(7JU
zJx6D%yipXhU`pHtfv$~DxJZk!cq}<o{IY;60<H?UMk}Ib!W}x|t)uo`H(eKSL%>Y|
z6myFvLn-rZZUZHW-+wXP<wy!HQ6%<(fQJGKiYO!^XD;(20Us$?z+*bBxy(;!9@2@6
zc%StxJ7hj*c)|Koz$?RlE#M6^y~2sY-U*<4e+b^Q`GHQeg+eL$nGQ4!*R-fSBEAav
zCLq0t3?jY@_#q&Th#(O^>4cVO**~T1ABJD7zXhxsm`MK3+GX|JhVi7CZ>38sBAuwm
z$2_)-*%y23yg8$YTp|d9Swlo*5)sOroi($FEDTviWMk-XD`dltU@AhIgPokLU2cVt
znOnrsQkDs$tgpUU^NI))kx%5m8bsti9!H;{jgQ9_5OL*?eqY0-iAjY;6cN!{L>m!B
zMHCZJRYbIi;v!0jFo_5k>H1_#NfD(O>Mgd;{$?#L>bF0TUxuNqh;j^MLPU9kD~PDb
zT*+`IZ#G4UFpH=xq6$}NVT}~gxPe|_^9PYuc5JLstn^~L={LeCm$r3jqpOLiE~2i8
zdNery*kVK^h)5I>E24&orIjr;MZ}4Sr<OEJjQY{${U94@?-I4n3AS1yYKy2NB5A*6
z=MPiX1HEo#3bTBU*do|kE-X}EL<12`MKlx9kVeB4+gL<YCfi@kFR!<4B!YCGFY3+2
zq$ZSQicL2uskw+2B3g+Ukja+L6ic}TEk*pz&XgmOsm|8)wzeYLQIAs03%*5;E>W$$
zh(01ZY%+Ba=^9jPN9Il<D2ukv3|&~eis&YyJ97_eJVQ@bitNQOppTWfH}kU1A$>*k
z6VacO-qZlrfg%Pm{3F7}K&6sJ*bNp$h$19TIz%`b=&cGAMjL@Fg6em(?=ea#3@Q!#
z0KFML5q=Sxkvp6rAR@(Z28$SC@KA<fH0yrGP}vcj94TTHfe|yFVT_2e4C7d{AF!mh
zYJ!M~MkI~K6p<cxjKUI%NSG#Kx`>Y=K8ctiVy1}wA`Xa{C1N%m3lSTsoi(e?5wTpv
z3K4Tf%oFkZo^`&6B_ineU*ZKK7P3jah+#1uyBblHq=2O~ARI}2?N!y4B36l5BVw(H
z)il*}W|l*&doo(r)QHL&h>AHEu};K#5nuj9-_9AWnyjRIL#&%bY!-1Y5Vc!G*%h`e
zBDU%)7wu+PFNIjQQx|eZ|10WmP0C}o?hrxx%oVj$1XW0{>e$6u1bam66|qmm`x;S0
z60G&^S)+oj#0Nzj5^+z&ed=Ha>tPY6MVt|Fgw7Zuj)|C7GwQgA6LcQv5lehh#Knx(
zMtdVqiO6^$p~#^GVuwHKKM`l?gd^fMwU$=m3fn~ymqeVWHFz!V0xQ9-XzOJ<&xp8L
z$$Fi`uCiWZrAsU6^+r^-&JpVkT8~GpH(8$tqV7<8epS6IVq8Y6C2RE9$yVxM!L;!Y
zL_8Gnj!r4|#IAv;M<SkzcqZa8jnX|UZBInd%aT(0xro>7zYx(jqxB_^64mpH!86VJ
zhI8K<WuH&9zUP`hu+oUpUOv+?qSh{n$Rpvah;JgYOHhk;`c5sJX!=FdfZ+#y3NVmK
z|0n+=B8`N<ikmY_2$Jx|Wuh%DgZH)0=_I7*WCqrZtih}ytQ3=pAyk58vR)*MgshUj
z(}JfWvPn2e7tvTFNpncZ$$l;g@At$WUlNgbQc`XSPrm3+Qq3#rSK)?9$R{DcgaQ)M
zPBa&k@H{4=Scz(z=2(7Aiz>wCp4yR=EGnUxguf-Ul2BYi2?_MT)ffpS>C3-_@)9c0
zYPuS-_CZ8xs`)`g83|=2lw$^K>mF6er;VVZgi6$Y36T;^oJ)R$gm7khY6K<C%=3Jf
zKmjWytrDtAh?Zb8;-eTUvsPhE|GdKBtv#zrs4juPHYtge?&1ud9Ud#8hJ>0D;w03U
z&_F`Ggaiq7sgK7^i4tnj3E{qJU2rtLM76erI^?`IZB4PA>0y2u9G&Bmsooq@J=)8H
zMDiO-`t|no(bJ5Mri4Z`&MzYxOK3{R;<bsm2|JE!CaQc{u5gNME}?~_zlN2zmJ%|z
zG843x&_+T>37sU!Vb-5j;@V1R(!|z|wLNPG);>*a<ad_PMZy*dTP1Xr&`rV+2}31x
zm(W8(e+dI5%=4RklTAG(^pf;TeJGj4W~cO#y=h13Bl}47*h3xqvA)k0Njy-(APFvN
z23331^bZ%w_AY{oCo|h62n-@C`H}>O!A=PepPI;YOQ3m3pi1yaP&m2ai<wNioQ8Za
z7xA(BC1?x*))ZEX8BD`cH<Ez1VG<UwKU~5H2_u;&v5t~3nqdqpwSO$bIM(s36IiL9
zi4rokH4{u`XNrWWG-Hk2*%GER&tRQt__G*#XEV<+oVlsMI$uJBTd#AWghlKumav*(
zNottiv{b?}gO^KK!MxINR?##&s&|vNHEgbxu#RE9gbfVMvgt#yQNkvp)Mi>fd}y{w
z*e>C^gc}leNcdO6ISJ<_?3A!e!XXKVCG3{4N5Xyy2PEv3kb^$67FqX6^hG_6n3R&v
ziPmyw<LShEkbQz9G=U|osboFPdW=pi498hduu|^fO4g+rt*1CSIMGVZ8Rq|3&q`>{
z<^>5CCHl?CdPTyK^wvufF4O$nXCtOhlh04AWh~XMO1MVjx!UGQv{59z&X1aRQ^H*d
z_vp+pG~t$n+YEPD$r+W-dSAi=2~Q<FqZue+6rKDfJf?NJ$woaI+&%V*1bS0m_WyJ)
zWwO!>{+>&CA>pNj+DmNo;Z8+fNq9@6)FJUT*FbxJ!;tx@^+=Dncg*i4P$Mb$lZ4L_
zd=B^>_(CUtIs-V+$boOPBRZiuV0GY!grAcB)!OX9FA2Zt<mo_h2mVM%<Di>xk==o9
zZ%sj@qA8R$Eo(Z~^sE_JGdd8=5W<>?l}e?_AC#Fni{WHth+CA9gCVB_xftl3m2F@A
z@3*Af?BsDEZ)z56J_qtUP=L8GYeCjRtlwAZ{{=0=T$HuR=(6OLaG)e7(~S-)#Xx3{
zJVB+IX|0uED9c*T0XR^exq<^G28yr9P|1OxRrI}tb25UpN>P0;79+CVfDASVq8zC2
zKm!LVJ5a@e+78rlpen~CvPL`T;ni3-*yMYkraC)xAzzFGu|_>L7-~8YXE^Z;2@Z@p
zqqm_JC+iM2%L8n69T1)bKgq58wAJIRpurhxJP4kWE~p_VH{{oI8#~a%fu0WZVzVi0
zCkL7_G-qwW+R}l)8CtQnbD%Xt8`ie0RN;iz`mf>bIoZL1j)qVD>g+%l2f7+gcLz?T
zjqJusMS8IRitlnwa-g>ZP6u2L^kF~Q0lNclvIX_!WIqS`GYnuI$U2DiAJz+x^=1gn
z1d;<HbIfD?*Di<Qx9b!vJK%P}V>sQ8>lZqPW)D#uP}%gd9&WGy-@Z(pXw89u1G5~M
z?LdkHgB_USz*Gl@7&S~_80x?<hT*IujNFk7qgY3?j$s|kI*xU`15Xa<Kj2Q}<Rn%~
zPIl0nto5UowNTJB2WA-lbcUU({{Q5e%rq_MI55|Ny$<YSXCCWn2j(*@U|q<%h?UAN
zc3=tfQr2ax%UM^ju4G-sO7Xi*F>4%H%gJ@DyB!$Q!n~e&g995GHnDDI-NL$+lwrFA
z|1#`g?fsYDyPeDgyBKz5(f_XB!|W6j_8Yk;95`U`K?e>oA7(vb_(vT$X7F)_57qTu
zoTORD$<s#e!pCjTI&h8_=1|lfit`R!aA3O+JAAn4pqJKRfP#SvE<13AMqb8D8CM;+
zMvKCQRxVt3;0E=@iJeZ|bl{c)NltoM9&S5u$ANrK<agq(1NR(w;lN7=?mO_nfoHt;
zhpdn3pffyT9ab#*DFd~3RKc`wwwnJw9`T%=W|j4;5neg)noh`0<Z$AR18*J3;M7mc
z?;Lnftu1c(>A(k$|7g^cr;gtDPY!%$=Zgbh>HN=JaDl#FX!}l|0!DndIhmZ{mR}D1
zrjGzNFFy;Rm^4lV@xIcsrejUdO1T@GWy;9ha8gn*Lx>ZZ7(!Vyvu0t<%1WiOIk9xC
zd3am>Sm$K3<qo~Ixtz#t#N=Vf>qHnsh0l7M3pi2GiONn?aiWkDg`KcD5#>Y?CyF{@
zaw43Ai#bu6p*SlQEWuFHiBb#&uItO^@i9{wC(5!@&IvG-XRYW&1qKSs786wI|6_8_
zye|@AIA$j-%#o~C!}oBHa+J{fHFA)yRh?+)#9vNCJ5kMv>KvKK8p9fEl&!%~(}_5S
zc-90X_x{4rTFkYbsN+Ok=K8GlSf7^D4_pIgf|!g!jhtxgL{AECYayqJ6D^!*$pKAS
zn>o?kh`%eu{B3Y2Ct5MLcA^bKTh?|?WY6@!`<2=|(Sgm5tW<yJG(nvW?&3sO=5B`5
z-H9FsU&xiE7qexv{+94QPV{wRvlCmK=;uU#CsZfAP7H8jpp&kXw@OZW-i|HmS>zxm
z{_Ai3hs!3@A^03&XBAjQ*8FxG`3@%*jLhVuF+XUg&E<q_u-gfb!3sn0Q<KjLzZ0vS
zSmT7|M8Ju0PK@W>r8rR{V~wFs4Cdqz)*@-bsU^dl81BRfCq~loO%pzbreZ@20d1q$
z8O{3SkBOYIPF$R$!yqMif)lIg&{*Rpa$hDnG1-YJ%nO`Y=)_bfra3X)i5YCpbz&yN
zY}Q$<G;}Zb6q)n?F*)-%Io}DPcu`6&GIEzWv6y*@;VfnNut2{+aXIq})|ITKR%f7p
zHc|`MI`Or>Wt|i2oj9CH|K_v7iO`moO*8>ko9Qu48=bfp98N&V?jHSaudPnh+GKt=
zDt?<2r~cKSh`8OUUw^oRhO~;A{$kzb#BL|jyO6<!Jx=VUv#1kyoY?2Yekaa4an6YY
zP8@XNgcB#7I7Ah8h&#?YX<YDOI)XvrN1Qmy4rLu<I80f*k#ow4(@vb>zK}`I0y*SA
z4x_SrrbnK4;(`-bow!EF#feK!Tz2A$Q4j5filmlGt@FAQH|Wf71Z<W=Xrq8z>=3-k
z8-ACD!io1zd~o8v6Azqt=EQR+9y;;Ji6>4xb%JVs%t|9krQ%OTQvKAn)CylX@siH=
zPQ0ZRA&0zTO>O^c8h@iz8{`n;cQmTo^h!QD@yUsAPJDObGq>jp9W^H?jB-=^LcKm~
z3Hjl~PbYpm@rT2H@kmk_H72$4G%kI=scj2#A+1Xv`E;zQ^#~baGrCaKr9YuD*o6=m
zGPw}yLJ=2=x{%q0EH316A+HNrUC8D_4i|E|FmO^*b{E?8i*H=eRxh({bY`0^i!GN6
zb-(w>?SeKbiIT)`&h`v*A)gBcT`1(DC*8&8cVUaaR{<BAKW<a=Q#|qXNl7awB^7o-
zuylU<u-D~K+q$W7#at-vg2{z&7fQHL(uJ}vlyiY{_e@GE<w9u}E=)?IWEmG8{fgH&
zdiRD4)Sim0<!Ltdi?6^+FeTJh$%Ws4;@3=zBaLvu?1IgOC>Ja)M7mJmahr3G+6dhf
zZfCZAos?vC;lR{5F^jFT3sqd0IW4Zxw73RYY;Di<qON6~oJ2z!?Lsvds=E;50wrs+
z#<Ehfh6^>B;|wR>g#?2W8EUcSQ_|Ei{JJjGbD_Qq4cKX7_zfBUVr|6Q*afMm{*gpm
zQ+ArMHfL?&LQ4k9Ejc-<H61J$p1APTg|;rVbK!;yH(hA&LI)T8bjV!j=t3tK{&6AM
zg@)ds&MtIup(|H1;e-Cc-OYu5F7#)oy9+%Sdb0LnO=9iM+K06-E0wMAO0Qu6?JleS
zU5K`UoHdB`!<BS)ngCR1>DU1uOrnc!XO4Drmc;5{b+WoxsRr4F)P@mz*i>9l8N94M
z)_MVb*8vw&T-fWvJ{SEu5ImTUsSC4Q7~;ZE7lzS*?==s1(F;RypnSD4cOyS$w2Y)8
z4b3xL80Erfu4;@66B)*`Qnlk;7|%R`m0lJ=<|O9HtW#W=>cTW;%9_qF_nCg+UY^c(
z;+q~n+l4tUY&2r#y0Dsgo(uC`Siro@$X)2dBId=0v&4m^23LQf|24FnlPg?U>B1`J
zTldrWZtCN(#)w?Yu#R;->joDnjAAy?NrRm&F8s@|m6fu#F>GhuLHm8Ff8y^na(6N8
zrcVKyIW5AwPmCtrPeV#;VRF)G7hb1}Kj^|C7Y@77cTW8JgxDi&9(Un{3rA@^Hn-M(
z7kP}~=`ZU^7slL+J;fT>moREZeDUAbxNEUzT=>t0v$XnNC0=#mnhWP#IL~{z;KC&r
z=B0~|y%%wj18CP*7KUGTf%FP%=5M{O)7flp{G>Z3YSOkFu~oiUb7ZvMa^Zms59vIX
z&UTyijth4gCRL2R=R&s*vG-kgGd<J&(~%TU|Jgn{)$+&%ugCP5CX!Z&;F$~0DN;sv
z882LTNo|l3BjXkIl+K?ra?11%dAxPuhYLTcw$|o%E_`+2n+xw<_~61vHp%})i?m>o
z<{d4>pXq$n+WdtAO2tufcNOb*Iyw(@m{}^0vVPI|jZSwmGRj!wjQZn38W}<KhmRCR
zHKdhszO`AEqS8@gO2z&85l5PynJNjE5h5e2tnY%h(E7odxDu)-R7PgzEUc|&Tgc2N
zBfE@29W7Lrk_5SA<d#uJMp+qoWaO1mNJe29VKVZ`C@AAyz2J%S;;FT>%3JfxAT1yx
zOB*x6y&RzglvPAVF&V{W6qV7rR2<bzO6@Npqoj;dGTKc}q9k>M8c$G~Yal2m1F4PY
z{+5?fQO1al7V1j{8Pt8Mypjx)jBxfT%Pb?p;2ovnECxq1Sh<B17A2!HH>N=ia}^m?
zIX9a3RZXUUjO%^B%;O&`qXzq}Wz>`rC*v;}jo68oQCmhG<^&mu47FJ4XjZD7mReYs
zYi=N;o{ai3HZ>|uChe58A!kuHsn?BVlygQkk<pZk6E~9~O-@?ZEK8^(syTBD87&$9
z=0irgtvE?F5Vw)hmPS%Wdl_A1&`jtcqa)9R&OCZ_ENFx~@q{Vkh@t~T`=y!FmF8`0
zGad0BGJ4ANE^>^K(Mv{>43`X9MsFE?WY}d0GWyEsCu4w&fiku&?$uw`9|_pS7DwB5
zYg~3)+#s4lwzy;&|HzozPR}Bx7&1j_m@Q6{aiT#Sl_iJ3!AU3ALrJ#`4~LDEp~z5W
z43RNZ#tdtmSB77P#`XJ*%BjMDj1(DzWlWr$L`hQG9qp8MF-!)va0FLKS;M(hYS@?1
z&{6F7wS`d2j|{Mlr8ZwSO_ecD#&|0Drs@P4lVp0Djcp<)$r*J%f|8TjoFe0A##l;D
z<APLnx{N1p$`Z_yF<Zt3H!iv{hjuFCfEx$hm?vXC%~d!3+aC*LER^wC#uqx8G8W6Y
zF5`xbB{Z=7NqR!YQW?u+ESIrD#=nNYQl@W=*eGL_;jCs@BV#SYI>TR22dja8qtGUH
zb{PI<hAlF-raFed-H7j!|9?+f+bLrg=k8|RBV#YaJ{gA@_EXnn9HfQt(sYO&+FgBH
z5G6B>NOMHSQ8tgsIL<&OZK=5@Wt@_6TE-a}mpJ!7)^jvP8P3u<hg))ilT`CXI?BcV
z_wA^(Dd@6{E1Y$e^_q<6e0t00hUt2f%||jG%eW=uHYe}MxX*BxmBQ{Z4C4REJdp8_
zlRvqJCo-OL@~w<#M*K^L=kzJS@SY>7o>wwn(^6uS25|ODy`2Q_WW1O0LB>bU`ovm_
z+xeZ#ewFc!&ZutWbK|>=A9QARBa0h9Wkh-6(zx~c@QX_k{ATz=9p|z^ZlrZ1og3*n
zEX0irZe(;Ln3DqE*Y+bULzg>6?s0r3H$rLdx%IytJYgBqp9rDHbYyiS7sqFFBfA@(
z(Wd+F^#A|lU^6Fc?*{2}Gvr~-%Q~5lPJZU%Zj^ANfExulS%|f$8-*FDwjyp&d(LeP
zDP}m-q>^rwa-)Lblx8T$TE>mChTlDZ1{hr4jd1Q)MZ>A&hKYGWeSOT$Zdlw<-SD~*
z>4w#frfxKI!{$bm8}V)=xKWwoV_B=PR&^uVjcRUGcO!<K(l))e6pMbF32muMsRn1&
zWR0T=&Hu|ybmK2JYq8dLqmCPO-KghA19qr}-uW}scjGV*ev@fk$!X}ujcb;fPxQAJ
zHFDE~n)PGdgmngoHFu+h8+IBxH(Ija#*MZNf4k9&p*1TN{G2~SJ2%?9(c6taZgg;?
zqZ{4a=<Y@*H#)n~#f`3Rede6w$*^y}-a%4YQ)k065cF`PryIT8|665AM$MG<BWE}T
z_hqNQ8v_{nu^tY~Fwl)bZv5j$GCNIL>W}L|z6`0eG<EKYZcNCS&&2@}E5$e%oUGl$
zGRO>WR*xGBL+YZY0r9!vcVm_tv)$0#2v9pYAcb|98^aj}vkq}%D1(?kL$?O$M=+0e
zV~iUknMbjf<dry<*2OOKcy_2&<J=H=h=?b!xhG$SNp4JbV~P<oonfjQH0;ydNU9f2
zFoVsRMohND!E@Z0>!v4rV-21E-I&i=%UKt&E^%Wa!y?wjtR?&CzmF_sUdBqvR}F*8
z6v(iGlPld=#Xw!7thH{eb7LzxZmc)rH@UIF;EirfGtTOp+1$cPC!+0c>|ox*`mY<i
z7<RHA<9WE7IrYVGw7b1->~mv3jgp{W+b?j<LoQnmxpBgcljOfNA9mx28}~m)9ChQ;
z*GSrqxpAC1=d}n*uHF#QK2P|x(WX;woOa`k8~?fWe?6Ub;~eo@{bArI>vu}*6LFr-
zhXu?8l)U7|WjFFGD4^g9b*h#ny9YTuxa!6=H?Grya^s5|U){Lr#w|CVyYa$}+iu)(
z<DnamXgOqzy6Z-oKW&SzHWA;WMzTr#fTqD18{OwVJ7d&iH=faIy=HsDxi`wjJf+IZ
z#?*A0$!vekM*7l?H*UOj<CPn)-6;Plk}k2PdX`Ii?mIW$)2S(AR7$hhimyVb$Ol@U
z*K8l%_{8v;m7Ie!L%-3<-;EFtGI{WWPX5$F4}v`OQ-%4L8-KVBzukJ$dCx}Lw0SJ;
z;?hi0S`X5Dkimm=9#C>}g=*9HMr8Ep`<<98HrRs?rK9o$Srcl<uDWJ>y(c2ngUe~d
zvwD!_t}U|%<Ye(+QW*<1d-W)DHV-z<jxRsPmeYe=9`yB~p9i@;$m2m(528KD>p_?Y
zg*_<Z(N9*7YX|4^px#maSGoKi6kxL;D>;Qc*qly3$rSaV7&Xc8i!+pAEx}sSgHlFr
zX@)!<g3B6CIR<!8o}mJ3Mb=8Jv<pv;pl}Z&JTTKvmAKWv%~d?Gco4|}Ru3vO*jS@j
z)kyvC^aHo_zm7X6m_PNlRP&&^2aP;v>_LnNu^d*{gBlEptQ1_6A&xcPg9L_#d?N|v
z*5YJs);b>SZKm&~9w!Ovd(gn(h93OI{I~sozpyvqWLpoKdeDryIcqBqS};%zEgAmy
z=+8GOn%&%*lWkZRMd_p6&V%+e2=^j7ctHK?=)vGR(e$YEPL$-ZE*|t`=*mh(x_Qu@
zxrgC=G6nTwPGarN+Q-QKdM&u_7+Zf2Ceq~bVC!J>01w_2j~?j3AWr_{K{EApr`7I(
z;DJcyY!hALOOcX?{<4OT!yK$m4_qF|9=JKFuzFa_TP#$BHkGE_BE7iZ1G<}Os0YJ5
z&^RW*n!-BRgCPv`oIMI&+(0ir+=J0<5|8j;B=acNw>cxp9OJ=QPL88dH6r5=SSK)l
zxUN?+*@Gz_-16YI2U9(m=D`^c{_|kE2Qxfa@4*HSW_oaAdHmpH^Fj}1G0$e5!%A6m
zJ($NlpLK!Zk4%VM<iTQ({;IVl9;{+m%1X{M50*2pFr1Yhy2o69BiL$o*08Q+U1!9!
zT^78Nma_*(*xBsC77uoN=w$@h%FcGyZLCvv>F+h$!Tc}lPS#zllr<w?X41VL>}O{m
zYrkc|WFBBX$a;wNFe_!v+^xSA?x+XH*g4L6!pJ?zaLR+zhO=+D>8uCmIC+t^OmO&l
z4?+q?USPf2*<y-`yTn<SJ-9+=exvMl53VuK*Gke(Z!q69az8E&zT?4N58it4j?Swd
z-1p$ml!(`KL^fMSzt9Ksfd>ygc*I2>v%aLsX4LT1gJ;ao4d;ait#0XWB70>xlXyVh
zP#2b)j!rkdr_(PrTR|oTA3gZKFM^&)^@)yM=E&3UBR+fZ#e=U#*<TFbD2(BU;s0b9
zxGeZLHQ0kRiatqbOV1FbAg$q~Q_$|No<&;*1sM%LSb=;0|K1-L%4SxWGb_lF%B;B*
zWMjzAN;TwQ$f=<59Q`QMmRms{BR8*tFoW|ch|j5yLqP?F6hteirl7EbA_^)hICjM5
zUl?9gK}iLr6ckfXTtUR7wDFF#r#sk6DA<t2T<o^>PkUQw1!WbKqnO*)GSudxnaIp`
zBohTdL3srg6x@GprH!1iUt)%puU1KcNkKSOs31x~Wd&wx)!jG?E5W~a;vyAT74)#i
zzqu3F>TA4B!Lu@Ef+`BuPqPO1idr){sj8wsY&N=A6lwB`h#e&?)fL1jh*eNSK}!V#
z{)?!oAWlJ3g<hv+i&v1K;4cM@6eQBV6x35tpR;O{DyU1jzNpQ6BI!jHd-j)XS~Zk_
z3N}!1H^_SbSR`>n8mKJg2pUtrjz!)&64`|6*>7r4$mZ=9Tjh9UGdiF}ZOysb779ie
zu~CKZPKErfpp}Bw3fd^>PF+*bmLe5&R&aB2QhNpI+r@WK(2<6^U3{KzohaFf`Mob;
z-{ho+ZR07d3kP>q(2ao{3hSw$mx4YD`YLEKEoAMEB1v3ZZ&q?l-#Sqw)zD8tf0_^9
zI)&Xzyy8nB7^L7I1xvkH=0!4%r-CXfs;Uqahzj;AIG{jM;7~AM!2$(N1ug|c6bw}$
z)8SU&Q{Y$NQJ_%23WpD#8lozgTsZtkrIM8NDmXo&<Dg?EQcXcX0db0g4mHyB`BRa$
zZ5K+DGnoC%>w||W7*53%Oi?gG!AJ!YIcpS+q=In@#w$4Ji5R0`EOq%$MPgsZYP3-$
z6BL}dW~S{%g>sZMsisK^_RbBb#*j{>dHzrIGzHUXhS#@H*bD_T6>KdLKUcvlj-0Jv
zj)Do*s->2q`oBz0qJVh{7A*)rm_gsmLShB$XdWt9tY8WEdNqw94MoOkbS3i&4qnE(
zoR$2Q3Rb1^)DUV9)w4#yS}scil{!`%6l_%RFOS$Jg}xE#W3^oY4a*j4r-E$?_FO1U
z#c9h?wJcRg0krL4pl0t>uuH*iZVBylFU8Zh?h+*_X55_ceH=y|DP75WP{ARZT|-Uz
zR2)`tM8S6jKNK9LwXfg~O?bL!r*4ts3QkdbXkZl#UTZx`ZJ=K+PU&wXq3sM!LUxG%
zQ*c(nIR)q0xyE{d^&;yfx&(;6|1%$*q8Go)OwcG@&~<}v(3pJJzggWfoZAdfSL^=(
zxu@WPf`{zfXDweT=#dfmRl#EgPZT^goOcY*6g*e(LcvQ;zA<uNDR^!0_VU)Z%>U=S
z=i~?0j|x5+k)Ij9u=W>%zA<E-l0?n>spvNd<W*60gz1-p-wOUHNTVXViX19}RHRjr
zSw$8V=~Sdwu|B^oR7D0A8C8U+h|O=KEtsLgl%%(LZFCPWIhiOXOwX#DH9Dq%?Mr^!
zg}c3WhS{>J$fjabK3mNxN&O4h3e!EpD)OlMUA?(fP%<|w-6l*-H}KM1*r;J)+&ue1
zbAA;CR1{QENJV)S6)0Fm5o+EFb4iL(QA|bDchg_F&7IF$POi0_Zxmfz#gZ2hB~;{Y
zU?C`_qO?j+NHCXCQH~4J1q@|X&=*$%s5tRkf4MMSC{j^HB^5Jgn<7=1RD`S8S10yM
zo!AH!yXwYTRCx2WHFHdqHL~TDq&&?sP_C7W*r*u{l~wGS6GD}A3ymR-R#8pGGZoKO
zR96wB>VJy<O=ES(6sw|!iki%qs+!|e#H(neqOpnu6^Sb9s;H-;mWtXc^5zJyqvF5g
z>HcpE4X!*SbA|dek}4Xi_={@ZV;VR%gd!=XQ$nVmV?%n44IyZvqN$1&DxTgh-%Q1~
zyfyc$5p)u0u0kFga=)Yg3EPq;K%=7B!aC=Si)f{ywTd<>+N$WUVt|TvluH-ntLUsk
zGY7X<(LseYC23slxQ+&NQPEXJl8WBc(?#ZPDtf5ssiHe4%N4CgCT+b`{3sMn;L4h~
zq;yOl&ZT5u26Fn*;VT_O&g3ac162%Cu~fw}75}J6R^d^hsGwU3>~#KDQF2Dq!cYr6
zH|%2pv&cz_)xqjyb+O8<Zq{ZeLsXUCer2AbVk#Y0s!)ZWx~5{Jicu;895#eCg>^9N
z25TnTBW*)DIgE8U>j>6dQJF?FjANz9F$`l>gcY_>a=hVBP%)8tlHp9IK3<NXn0@O^
z(`fZQHP2Hq-N>E6Fq3tbirEZvjNG{@F6WM>vhxjRfr^C&FJf3s18X?tPKGR3u|maK
z73;`+Y+6bCvSr#o#7w-3oz*JVFw`7rB6B@085NIIJXW!hR<w#^DvqnztYV9b16=b~
z)?KXISgA?d8Fr}n*Kl^K2(4wNEZTOnxrcQxtvDlQzpCF!lp1r8%|on*RUBbBYD6|D
z6m~+zNfno95ZFAW;=GZ2n&Aws9fq@pe~zJILGuNMi-zB4p}x~AoV>w$mGzp6>kK&y
z>Mg&i;+Bfr?A&K1^NxzU2H&Ik|3Hs?U^ovMXztN2p3q|CB;Dsi_p>Z6XU?B1oc?Nf
zp`xr8<-B;Q;+3l3Cj45(wY{bcUbLT6_Kk|SD&DDh&spDCDdvNUk19T?_{`2%)-Oix
z<r%?^rUp~kcXocT{#5Zx#c$?xUVTTj{o!O9FM<pwtrx3qnNoApvq`6mj9vtL5#mKA
zFG_k*%8O7h{%RSO%ZuDzWM-yh7B8|IoQ)y77dZ?krxzLC6sEAqmQi`UC}j9~8Nyie
zd6A!?0Bb>3D$@LBTGGOtEaF8`hGMM6Sxc}|4DI6n(@28SUX=0DGfd)%X^#Z(qP!Q4
zylCvj?{l#gya@Lq!iyT?tQEbe#6WCfP}WD7y|55_QPYb^FRWfv@uI31HZQ)$Tj>^z
zC@<DcNg6N2RrcaY4;$T4NOyKbdr{4cj2W!ws(0M=s7-Y*V!X&^vYt+`4tyRN%S=8w
zabCoG(Ld2z+l!_`T-beUf)|Ni{f-#A>#&v=mCIW9Pe~%J<3(LB>Tz%bRw`AW;aDSE
zLx#U-7M+bJpK7KL{U%=Y^<wo9Q&TU#T{kuJqPZ8%u3B1n(aDR>%q_k6o1qnJYt}Yi
z{P<*T>qR?Gw)dg~1C`BgPVC5>ubhRFUA#E|#zgnEk#=S7#@d~=2Ww9+dNCw<(VKyS
z!`H<2VV=7;mXiIb{ay_4VxSjuy_o04ATR#$Vzw7^==;AHzMtliUX1d>?uFom=!L|l
z&kF~Ght<jIVwG8`pxcXgB`gGr;iwE=R;5;czZaSp0ZtBOO<^6(N(F~_G3%s>U>G~Y
z4S$3er4Q>qZKJ)I<i%t!#&GUfBW9cz<C!NI&P1>N3ScTS#c-y1G1XvtEhc46=j065
znY4E!m-cvXf&Q{!y6}?TtvTO|1vE2rg)j1Ap%?Tb&H>%cqlcU3r8n<Muq@`RC9GNZ
zM^e~wFIITb)`xaJtfXb`#T75E(j@U>4b3_)&U&$yrnDD_X+C?go|cbS|7v}Jb)y%1
zyx8l-CNDO7v4u^_-AYBa_axZH&UVA!!SJsaI~jJd?lyAU%?;gW@P3AMx%4mChx-H_
z^x_aZ=i`G)RQca8$Va_6;l)WWj(O?3O3=dbrsLG>@usF@%?o7xOZX{jza`|fQRf*i
zijUF%he_KxFD`g-k)|Byw)vfAZbH!RhiNW(L428JT|&_6M&?w#=EZed^*+?};f5DC
z>8#~LMjvi@aodaMUcB()ju&^mc+9okW4+J%I^JCRZkh+owBLsek60&U40>YtPZ^$h
z5o^+0_|l74v`D@9&VGs`%WE&*c=48#?~GEd%30qte=wYnUVLKy%=(4(tC35?^21AS
zbq`AK(+}cL_J0|<zZw2`k%n`FSktmna5^7S?;r>sp7!#MBEdd{_)yu07FmKa`4H-(
z*Ylwu2WMu@%bJBXD{D3%vNPmh&B;nN=kg&pa~{LlyH@{+D$IvKFLORN^Rt%NmZ^{r
zg?)IiKWzj%MSLj7P}GNF48?sYn;OhY^_29X6mx0ADdR)pZ2b{Zv~@VGU(yU8%5!c7
z){3l^SWT?qtQ7e}&~Mu@`(W`Ql1-}*HXklbNy@t*k+PzgKZIJ^*U^8usNzFaqii%o
zH6N-QP7FgV>zj{h;(Ul_riqup(26zDhgv?=_Mwgs^9x%V`B2w~%bP6qIG6VFsE)Nh
za|6R^$ncjB1B~amHfE;@Yg5){tj$?lu(tH!Zw6Dna#SrfqqPrh*bx-{hu8K#bnu~<
z4@o|B^q~`H_3)vy542vo`t*fEVO`j#rPR%b?#$%VMlprn+j?>^<@WZWj}NnbnBzlV
zANu*=^ugsre`+?D`p1WZUxEiRKT4;M=O7;rf6;&S==mou*$0{uc6J0GL=KZ!9jrsn
z$5W*2gWHD`9|p7O@xkkZ&j-Z^)rU$;{&z>i;BdX=e)9KNG>%MDN<WPRm<u+r4PhAP
z!+0NtG7n>=nBhK*FnFX7qnJmtj$s{Z<i0BrG{J|7Gy?rBvwWDu{+E(%n@0vsHe#mG
z**G+4st?oHnQr(qe3)r)ej)SV$$Eq5`Y_LjjXrFmx#7bCAJ+M>p2HUUu*`?$<UdJR
z#Li+LmKZfG^?@ETOf{_V;jCm?MNOjpGQXXYM9vy!g0(($dmHhtZ7gZtlKN5D;KR{X
zmaY79oaRG=Hm4qUu6YadRw|OS+U{Ydwu8Bm2|@q*u#=X?U|bxGT|Vsg;jM;u8us|G
zmsYU`XxPU!{P7`;ANzecKu6z)Lq1&d;W`~<A5Qwr&Z(vgJ{+M2_;AdJ<39Z7Lxq>7
z6F%ffXXzsbnWhAtWIpA?X_}=QP2`_phsqM4_2HZk=V^{jFmE4Wp(kvIeU7-8BRt3V
zG#9z5OSHIXR8vf2r<tz!aMcH_HPbeJqv?hZH+^{L!+Sda`*7Qb;Ay7UKHTx)t`ARq
zcuLb_qv@Ux_vtjnOqIB6Td20leIg$E@W=-O+8%S;2zDGdKl9-g9kp3zYRq$={;2R5
zKD=a@(mR5ZltnjC(8#}`ar5anQ&3+>>0Nstcv!x1cRu>?$%oH0!(W<yg;}VBUwrt=
zSrk8cVOko%?;QVw^(X5u?(A<KA_@rdBds5|{J8B$IzQ6;G0=}eeq`_?qaP*wDCtMA
zA0d9^^&`xWOn!v=k<E|new^%)klBx{e(bH$F^eDj9=4rdv*WeFy$G_!b<E+%&0~qV
z{K)OcsU1CY`a!R`r>DSWnVOV`YKZGtbZQbk&n-oZ%I8OZKZ^N5|4J(0M?pUd`%%P?
zLVhfp97kmjm$6d(>KYv>_~4LUlq~88CF!wp#Krv}4WF9yv1<BKew6W}tRJQQSo_dK
ze^Z|s5L3<%`0=+Nt^9ah$X4Eus(wWKQNfRje$+{cs>EvZ!^9BoM+Ae}k9wy{Qh<e%
z1d)DN4c=SC7R6lIaH=q*7O6(vq2hj2_anxSSk8(!B5U|jlR3_CvRt$!7@WvZ%a7WI
zQ-|WSMN<QEq_@^*v#B2q{Gen*R)W768nHHJZ9+q_!bVxmxJYxOwiXO6sd>F@RA*~H
z+W0ZR5BgD{Eob#$ZO7W)j}8nS{pjRJXFslvC`+Zf_|esm?wpnCklD?T53fuFUz_VO
zJ^kqAM-s>MW$n#MS$&Lpi2JeGpOvb5bJ$8Iy&3HvKNLSyKa&0WcNjaXz)DHc56NJM
zA5Mc^e#i#9{qQi~yQeQGuOB`?PSDi#!|#XY$520p`4OPQG^A6CAA|k)_&k1TyK=)i
zWJ!DxPdtRWJU5nLxE~|@SmMW0KSt6-%5Eidu^*%S812UxKgM#|>3)o3pxnuRjAx#}
zI??baG0+~TFibW4X$(u+m7C$mOj<8~%w}f+>m1g3e#~W{`l+3y^EpZFT*$D<$R&rm
zKzmu{$8uUq?aC3a@M9(W)Tvdpi2T^)$8JB?aH$P`Y-Cu=y3UXFMs3upO*BLN*kL$Z
zXkeMQ8V>DoJ9BCWscrvqawqE+ZtWiC!>oJhq(LWt<^z5lWS~-159uLekdJWkDC;pJ
z=C~j2e)XcTQ+}NG;|d?aGk*N%$2mXF(|I6=et@XUXZ`41J(}3Rv@|6z_>tvB{6#;4
z=9w<BUS_2v<zDsUnji5~ldk)5gZD*D{!L@QRLLDb?)s5gLlzD9{J8JOFF$_!@xYIV
zemwKzxgU>cQeCt>@#87OW7abV;^_*RVO8QDhQ*aB7}@rZ`Gp^^sGEMg^n;RzYU$=1
zKc=;erQ#p``V}>AS>Lg~XZ=72qG>E;QOqYlK6B;7U;OyW{EhWH>klLMCqvC@(b*P-
z|Dm(G25Lqc4M7^xYM^V4(rHMqVP2Z(%aL&zG}NveM_Wb>)Kmg$TZS3&A)L&lA(V?#
zGpbgOUfCiptA=bEa%;$=A-kqGn>vz9Lk>;vS5DSH4fNi%$sS*`U?g1}l~+S?4J9;$
zY5HquXv?P|zlO$j^f$Z|V6&ixLPl<34MmuXvKBLZdM;2&4W%^vx@0b+;dAZS(%d$B
z9naDhv7R7H&a!c3HIPz&%WJ5hVU~v3q$f=ksbL!0X{e;Zq#;~GgoXqSi5korEE=LU
zRMQZtVNDZ@RfA1K|I4vGk48jksH~xihN>ElKQkp<*SE6&>07O}5e?Rv$gHj*Mng>v
zaT=!mF~@4C!NHV8$vmnaLt8vop2|<pm}}9<(;#SQ!UgMSsHdU6hPp;sYCr=G4K@6w
zp^*mKV`|wpPxWdi957MMacd%)Qp=x)w9wE}Lo*G{xp<a?dT{eS=D#(x($HE%8}{?Q
z*L|w0(y<82C0?~MqP>O=)L#t)G<4KJFG}vJ;py>+P8y2ti0I4?nO!vf1<?NY!QC{_
z4<+4M33@Q}WbMV8#M)a!ABMiH6xoj<hr9GZ4TEStl*>9^!#^65H4M?{#u?Z(2pSw3
zoEk(8Z^NvTh6Vc~dd)O_49`r-BBM+$4YG!Sh7{`BC)=DZ7Pp3toy{Irg;izsvQn0h
z!OyDEj<SW5IatH#&gSslmXU5tp&_OP1uVlf4A(G1!$=KZ_Lx(Sn0&h<>b$EuO4C1;
zUavP-pO%)|Fq)HNG>l~!r~U77BBojTx8eyJCbCaFiD5G96xOM%(=<$Hn87-emEv37
zNi#>oTn&db9Htej;a~&HdJP*i%%^eCuu#Jy4eK<FN~pG2!xCE5TWxDum$I(Wu#90j
zE9I_WSjoCdqeu1XMar+Tkv7O4R%S$L0%@hKz}UEsQ<FAo*rZ{*hS9%G^z_2b8n$Zs
z4`*96&?5>b7tc((jh#$QtmISJ4h{cu{7%+gw5Ddo?xsHhIJuYg0P8;1{jBuPXexV<
z`9|w<M>HJO@Ptk&*4Sejes{H=)o_kxEG^G6R{N!h6B<s^^tcppiuE+>8P<`PBL34r
z?<1q!&pR#WHQd$Ebz8&*4Hq?BVy5H`hRYhRFkIDejo~_-yK;q6z_X}Kq&L~T#Y)NB
z40kl7=8|(y!+j(70iAygex%{C!4&+IifDLFM{T|7g@%_J1}}^yex;!R-N{AkG+Q{q
zYXc}r{9eNcIvov0<Y0W%@JU1Y6jVsTXPS_7>JDH<fL?!zZ?vNTx&`Rf%#q*ed`Kfk
z1<jE^Xew$LcEd8~X(H(#4QT?%6+mu|d^*4q6hPVl(s42qYkJlUtQlE@S*f;=00QGo
z1hj>+nVB_909lQgYz)~0$YD4+8E8S}2_SC(#RDi2Ko}K4HL9l|=jIC_e*n|YTWBi~
zz>yOX1e9Bda|^Q;VJ#X!F$T*0GS5^pfKma}3!r`gr2{Av0GUw%l;xOm0e~Uok>2d`
z%n<=pFlwmCP$>YD;e-eD--{{OY&aH%NLFhAHp9>T(o&hZN&r<EqFHMOP%VJ!%=80y
z3_~m{Ra+x~#~UID;sS^dAc6hbMs6ZQtpK);kD{15hF>>;3Aw|`X%Ile0O;rPmI1on
z()3pVjX37ip9o4eW^TgTl(iXabJiBDRLSln^WOoq3ZQiWZP@I>+BSerMohZ^+B0`x
z?P&OG51Ofl&Yb)?R_B@X%61Q+M*tF=Jy{0?Fff2#0mRj`CIvA4q@_3eeOUXlQrUhC
z{R7xNNgwla>CA%y5RBY^0?0Snl+0>pU7o`#()>xI&y6lUtd0Pj0k{H?1DHzlCjfT<
zo&Y8WFev~f05yQI0koWI@^YO+0vO8R3&78y8T$$ZkYe!Q0DgYbC;6}dh6ix9o#nvX
z_z?jtS1qFh_&C!vl9gZ-jgr?yK-(Cab<bi5#sx5*cRGPu^^cAAP8+>+fFAfvbxscG
zUsvWfi=7gHW2gD+d-L=FW&|+!p?OgNmET)t1~4mtG?yd8K2^<{*FrEmfH~|C&t;ew
zz<h=UhQE;7ydazc7Sjpgnq>(q!BU200hqT~D7i9#RRI)EL6H=!4q#0H`vW+@9be13
zfpuK~=jWAOPu*`~-jPlpij4tm3ScwmZV6xq!&cU9tQ507fOe-s2x$A4&7G{fSa-AT
zVci?RJ_d@M+uC+8fJ4-N8kqnN)AA4CMF1}YI2ypQ0L}#PUjWAgsC`l&z*7t-SWmM4
zz81fBsrfXWUW%Iu&eBZSYQ7l2C0f@Rqt3CO58wg=IiJc#mKkZf%ni6kCykM&D|D0@
zi0KUr*8{i_z|8<|am-`Z+pPCl@37uwy~oEowbu^<c*rIt9|bUTrrzKu>^x<CX5>Dn
z^|C`h54;NCbpW3N_#Dt5zdxvE<eLEA2JkL`_W@Xrm_AT$xrFL>BZ+(8wUK@dpyDt~
zzJrmg-`nzkw0xmM96*<z=5MS&SicAG?LZ`%w4JFN{hRk&XMbeD6#QXMlY*cWq)pL3
zCPGt?nIRo(`V?eHLB<q3O^Bsj+Je~+Va=3+1<Crtr!7kga<NIAH3iw2v$N(f{G2H;
z{jD$9+$qSDg1m-bAO&H}`3xt2iheb0YR#3aM;2nAe%{*nDWYf!ilv~e5m`J1Z)4(0
zrQml*ONkVeq+ExoZ?TwMH%+vTN~fSqioT#Kj@Oe^VYw6_1^wEa52v+KvSJD<rC?bK
zmQ&kO5T1ewTysPU%qi%ef*vWbq#%;bE-9GtJkpwiAul32{6D6y0!oS_+TzRN?yeV^
z-LVB0SXjXmEI@D#ut2a7G(eD<>2d2>oCJs91Pd+!LU6YPcbA|60{`~g-~aq`>fCeR
ztyizS#(KJKu-Xu3LoLZ_Z9^LyYTHo9hIkw5+R(^`#x~T`+nFMyz6}XBG_awem`QqW
zq77-C|F^%%BBq;zr}DcgZC<_*Y%17Hu(=?!TCk#=+7x^#N=sdDC1gvxs?2I@Lnj-W
z%rbl>VmsZZy$v07{<V;fHXI&QpGD~0*@hcM%w25gDrI@&R*LL<cN?zdGxreeX~V7N
z#*)Rg2K1H)eQdb0L0ixL^vK`a(BFns8wQ9nRM!XEFi7X$3K=XoMDT2xcm^3}!*DUb
z6C5GP8<sL_qz$9Q9BqSQgVTmFVve<8oDDw+r`u#3#tWYyI8pFNJ$I4~Qz|CYZHlf;
zwZSIbt}6~3E<e|5bcx~<bPIX}y@GV;ITe1L2W$um4+-+~0v(uC8zP);5vSSEM=>q1
zVY-+zY`8wI`%Eq~F=yK_U&tImmYr+EPr`rJm3ispnAW^H_pOY!(1t}KE*4y(doC5S
zYip(DHmu-|v!kdTD|z_a@S1NUZCEW1Yi(F(!y4fgmuqeQ)rR#p?6P6E4I6COXv0pf
z@cqV3HtpY7-*vYPsb$(M{=W%s5!@=cO>ny)L+#*33u{dsu4>4%$A*hGT(V)W4Zqv4
z&xZZteAb2oHvA#{xD5yO2uE%BQ|E`cR&{>FhS?9bn8$SG(;4l^Iw9ss8&2u^X&cVy
z{NKNf=Y*dZyrApX!iK+W_}hk8HUw%XT;`It;RPGnLpwCC+Hlu~d*XbJQ>K@?VZ%*s
z2QhEka7WjB%t_$0zgh6UC{F|*2tL$(9tnADL(el>FP@6|Oz^qxQ({-8e|lN|;jrg5
zzm&med+5)%OmA&?XG1}|c2@jr!+RT|?8t7%2OB=xkim|OcKpYqvRd3{4s3y#Pr_FX
zGf_GEv*ExU6Yp%CNs4E)BeNY@?ApI<C}y>5cTxWDd@_-b_;GKsM%$6Yj(m3Hx1+>V
zV@|vFY#@?g)*QL)$Sq<X!MuVch8ySj4F&8lJ~B6ZS-)#J<J#`V;yp}-q`Ja_Z1zZ(
zwU`~n?Wkf$RS`=FR<@(0kWzM(7Qzdt=wHT;vSOAKEH6mCf*lowSJD;d&Pvp;&Nf0<
zstMWf%v9B5tuDNV9X0h_gB>wCk7cuUZp>t{*kQF}i5*Mrh_j=X9T7Xy?5J%=9XozM
zYMg9Gyd8Dz=wwG{JL=g{-;OWsXlX}+UHh&e#g0aHG_b>eE@MMc5(Sx+WJj{jS3NJ%
z*p4Q4G_!-F$J}nH-_(xEzgn19HqnN(xg9Me_Y1*HD-9G|NraAeWNj&TfwQ9xTiDao
zR`jp*`0eayuk#K<z7}lITl=Ph_Z947M^`%r+A+wEZgzC1`NlMWQ?SU=!;Z@f6MEY5
z%MT{+Zc8sQsr0s^kMM5<$2CakE2N(t{e`3o(sR`-Lk&wppG3>Ib_}*-oE<;d@w|d{
zh#ilbSclrtae?8>vxYo}O~dRM&f!{M_)c(yAkFXX7%6;|9ixSev16=|{8i0#V2a;v
z7;nb}JHE&p^P?RTxvrA6tVh=jl@l#TPa0Mih@ZsC{mbN77(2y|sdm`xu-oCX!y9FF
z*m1F>Rk35+A@kxWE0M`5=B8t2w;dk3+2OO}N@=UgEz{Xr{ZF&sj_uVGm;!bL?Vu78
zB`ml;qm@~2RwNe7W}RlobUS9)F_RHohADdtN0N-|ds~LSG|jT3cfj!ZfSC^!ooxq|
zId;soV?(@Y&->V)?D$zk>hpxmw_|~>EVN^h&KKL!Z<c{>%Q#t_Upuzg@nV2+xgG26
zcwN`Df-eDf<SlCKnPyyN$7(x1Ke4W{gXTIr?_R5sDf#1wzY1TvC6=6r{{}lYa-H*4
zK#*j!5Z=*!D~HIALv|cym-*u_=l8VXPdj$nvCED>cwD?R?6zYM_lq6-?AXg?|8tqu
ze`hGaH*<@eHTetaemkyZEqQ=zcxWYFwzU31_5Jf=rwyxqP|D^XT8R-hUdzs~skdXl
z$`Nyf`*Dil*`uVRb{w<gxE&|#pviPf$VtxZUQ@bqn!DyrEcrP*&U0ltkm|q%&b1w-
z94PI;B|HAI<2?^gJO1X1<;t{cmvCPZylKZRAy);j30}A3h7h_n?`OKL^T&4FvE!~C
z_e6PM$3r{r3wPJ4L1$hp`iKYYZS6LC<V2<?c03iIXLh_<t7Q>i*zu2uFDVLn#TgXB
zd-1Isq7{5A<~u=}|8mck)AWx#{6#G6z$YP54rF)WvmF^6$ml>O2eLV|K4x|xi;%1i
zT<K9&D=Yt=&YfI^oQd}>iFP1|0|mq_r(hlj@;Z=9cv5C#ZU=~Tew4|aUMint<rjQ&
zBetLrW)*Va&W!9NMI0z9Vlf9w>bb>*l+b<pJGGc)94PBRD+gLTP|kt!4#YZO6weBR
z)ded$P|1PH4pecVswkx!8X=+jbg)ztW!&^s^7Izg5T&LA1_xq<^V$_A=9(NZI}q<c
zT?Z_Z6(`6ns{?~>B$99nYKd4|u#N-UkDAgW*K?qu1Bs&7cc5n#V}b(>#3WDmNpj#z
zQIZ8IrZ~{ZfyQDs5o{*dlwJNsTM|soMQP!{7eb0R)<(Ofa1st|8{zF8=pdx617GR6
z?Sx$KYW!MA7YDjJ&{5CrB&4%o`4>^$biIcI-F1HZzSfMM4)hYGx32eb;2Yt6b)}z>
zgFCDP92n@pY6sRhFu8+ekOR@<4Bt91b8$|ZgB=*+z)%OqzBP<@V1fg~95{5yFx-Lf
z92nt%t)OwV17jTc-hq)~_WwO<l#sZvMV+2HR`@S3O+Pp=&Vf@iD@{0VWES1J{vI{a
zfgc^1<G@@8Cb0ny_#E(aop&=$alqk#;=oh~+W%;>Ibdg-Cm6d-Fm~!~$y7YI(*c(#
zUe4wlLzbb&1LqUm;_PuC^VV3FS~op4OO4V22Z9bvcVGtn9SA!RaUjisQf*4oXUT5{
zmC8!ZpXqEV%QP{IH8oCO*N<UmO0-!H{I<c!hRx;zE|{GynUu@)lLJ3Hu-t(a4$O04
zz5@#!SSanOQ8xPVt!OrEkpqjluPdc2bzlj*c0ButWd>Hn$gFgk1HVWwO7tno;4Mm<
z`3#PkH@YQfidpI4rNSWJQ>77ctpn@WhLMJf3VwB9y#wzZ_~5_>2R1tJmji!0u*reV
z4(xZ}06iVpBK~^?w>q#}$Tn^SwlGip4hK#~YnLVO6rE(35ZC++dvs-ajfCGhVuh>h
z;|f`;-8bg(Ve=mj9OP6waN2=CxgH!i>cBD1;MAzY4(w}M^@tQNw%g1iyw2gc11B6f
zd$<CNTaTDeN-iJoLVqe}nB~BE9{8f4bD+%`?S^<SvRevn)!t>%?IK?SB$toQu|L!v
zQF@sp>A*t=9yxH;foqa`SDJd=fm;sTcHrCP)*GVV6lA})?9(FO;mVn>U3N9xRQH|(
z_qjaIM&&qFndt$CZcFUxC5ew6c;dht2i`jHREocJ;FSZ<gwyA_122R#&Ohva_G~0f
zY1cEn=IV;l1~whviQB&vuV*;t)~<DAk3Kr^p947+<WlfS95O4&qTsUw85C`nGYV!>
zaI%#4T=Mj>BFU;CN<nr7*~Eb{nW#sLnL{w$nV4Ha9tFh|6jzW}K|Tcq6%<mCU))%#
zfTFdk$f?TdL8ug#tRkY*WGX63wiD(Oda2S1N-8KNCJUxlS4Kfuh5r*o#vGRN3Mxo0
zITM3$#7gb4R#H$|K@|m66_^y5#Rm#%D5$BRnwZrES>)gI+GH8TjFtAp=&fRdjf%G3
z=&)^SoJB#rg1QQ<3gX1SmV(*}>Ii2G(|gzQ$L#d4r=Y&*jT9s(XdpaEu%UuPA-S{0
z)063kKdi|LQWO;E8Ar3}XG=As)}6-b5uTQ6rl7fkpM99;Lkk68C^+ZBc^AG^&{Dxg
zCoVbBN<nJ{e=0bnppAmI3ifS?ovq+21??1!S1>_Adj%a73{Wso!PgApH*`_ZRY6DL
zo#>eo&(v8#iFz98#(E2y`zq+Cpu2(|3VJH&rSQ88e50VZf@e`?TfO*sSCfuUPc?i_
z_A3VZ`=UBiEI!!E>z4Z~*m*JbQKm+z3f^~&<8508Dfm{w4+@6w>OWY)5Cz{W7^z?=
zt7v4J_R{j5f?>jk3sUswHGWmI=LiKPCn_gg+iV!cd8}X>qhPcGnoKpWC5~0_UrPKq
z1)E#NGxtKq6zZ&HqJke4xD>c~H~7uQNeU(_n4+LdHY3e~Gfh(!I3#QB_a>VHI~VXw
z)2{p$qQYg9Vst9#R?WCzZLA?a$)mulU^;`0F!`iZP(g@o6CMz}QJ`+gSt$%2RuB<I
z75qEDg<_g;l4(LB&x{N;L%~dmIZKcV9p)&QtKcV2y@IU@wkepWV7`J?3RWvvpkUf%
z<5C676f6`@bCH6@I$t7$j}iPu$O^&b+yzz56Th_3`L9h0D-{sQ*C<%4V55Rf3f6I!
z`x!^pjo-jm0pWO*v|a(RZ0q=k(^DI}j6FvtZdOpfU)&Z2OS&ii#y0d!AZb}Gf#RZ5
zvD<lu)G+?8fP4p+fr4EMb}QJUV6TV+{xL9%_lhTu>ZKLgr(iz^f3fL+f`eR**^PgQ
zd9sq3;_QA#Du)#u;SzFUuoFiW9HW~P?VUKT;Dmyk3U2W<Q;_+d;f#Xn(=5Cn@+pop
z7gZ$g-TRoH&9j{4YG;JKiRTquV)un#;673?wP`}Dy@|~FTft=oSGl?rP%$)1pm;@r
zWp84Z8L8J5+~8?ouFI??t+XuuIh18@E4af2<3vp-?kc#)Q<sOWg8K>{D0rdZAD)mc
zvOZMsNWo)mxkeXxZ+=2ESIl$4r-C$}3Hk9*&cF93mYI?IQUN_ba@SlnZ|rP&rQo%K
zH=M7|mbZc*6ucAiui$$@=JMI@#E&iupPc@m0^e0LNd_k}I#I-lqE2LTBC``Yoyg_H
z?PJC)PAu$?Y)*8%5t~(T;sryLWRYZdBHD?^X-PRmp?|rYJ##yeM?6oYCFOO3ZUvku
z=tMrfczzKXu#gbC6?TG1PbLP*FgdD4hs0t|6nCP8QyZ3QPOP~aRnm!4PVIH7v|vRi
z$_ObdSWd9KAblzb$(v}Zq$`z$RB@uJ5D3n=t^MiXt0Ly=PHfs5Tj#XF;6#iQiB2Rr
z!LJBnooFcJ-Kr#`6DB8Sn~l`XPFS3<I<>!4(~NVXmJ_wbvz}lb!FWMB)ODilDeXIl
z`l2KVHqdkV!GT$Q7h94Uq=~hKQ~M)xiW7~TIP=uZDjJJt6Tzl>sb)f&3-ZBUjPQjM
zUpmo}=fCdL#);O#*;+cZ75qxiExW!7|9jZMiLOp`bK+~xkrON5#&%-Y^2D@wZYJ+6
zN*5>2sm9K=&E1{o;Y2?t`a99niC#|Fww3Jb)c)6ev0>uf!?C@c=;P%58B7}=8oqIY
z=&F#UWUbq(RLs|z5>lNQo+)7<>&lccK#(T+AmJU$XC30iP$$xynC8SVIy>>pxo%^f
zXwu90ofD(Dkg{1uh#4v!|Gg8$k%CEAGLLp@-?WSoY}qS@e4G<MI5FM{J`HM;6O)|?
zT(C^w!gJzQ5`Qm_`;l1>&6(F)r#LZ{ah$00Bx!N+cpG&m98T;l9^boe4n_2U6V0l}
zIh~*blgkOW&OJ_eh5K~HuZQaR+!~aEp5pOg5miA}6cLhnuyMK*Ggy}szdJGaQ|!u2
zmL?laGo6^l_2$IOpk)qsqL8_QKM7L*S;#ym=5x4uTB$4$<yn;~i-auZT5@8k6U&^~
z!0F(4>SfmmSuVJOvn*tlp1YcB`$H@PGOZPHo#3xdtk-=$Zpykz=i7yB7W~bLEkd^H
zx!auBxhWw%+71zS3hr`Zx9+pYiR-tu8uvM|--%PQLk~FdhZ9G5ymKW_h&t%RpH3W-
ztU_5b_bF0|`}eSzKV7Oezj)Fy;m3KTIPv!k?aNQ5lOjH!roC$&I@NkwO!6~MoYna`
zA?KaAAS9RE5Bx6%;cjxFwF{S>xWc2%g+eY|b>f;6|FGq3vlBO*cp{~43f^|&4i}j4
zqH-56%LDBl^<5|KiFlvKrjQ4M%z7x~k>IpP8CJd3n#%N4lxI#ncj5)ZjyL976kEQA
z@eHcIa^kfU*<6Tn;f=U`5@e~jLf$#?udcjz;)C#yg8%9IpeY&ni{583Gq~hafD4&~
zFivI{vIx&Acq&bM_nX~?XczLkkn>Azcyo}rkjsV1Ut~PKLu+$x7Y_Yy%qvCm2=084
zoKM6G4imHJQ^17{2ekhd6?UPB3q}`AE);d4m<ttLs3@h1yHLu7(k_$`v!vjm_u9ym
z5l&K0NLd%G(b`wmd*@~>?}Aw#_EbstsqR8$7e0>H3RZEUs;<L@YQod+s8&OGO&1J8
zVgzGdn3&)AR~D_!rINJ<n_Xz&LPHlUtki`#ajP%L+*(3vyHH10;$5h#^Lj$gWYC(L
z;6jhx8c7tfxeF~^NOB=r%oG=zy3kB`Bf-WlG!eog8&*f3KVlgBt2Ww6#@t`HkXLS}
z`K1fp<lgMmTZ;3=QN`N0(AI_VE=+LYD;L^{KFEdkE_85VfS6yq(9wnNY?7FrT<9XC
zvx_%lH%C5eL)TRlPGvVCyu;PG3>p9S8GE|W%Z1)9^l_oDWYPI>X{~GDh<QI&yZw7V
z;r#_u1vmbZ@xs201G#caYR=z^NHW-kAubFRbC}>L7lsS@PH=?a_ktq@&&VTqMhj<z
zF)obN`8XGT(0M|UOcP!B(S=PeY<6K1t9HTbg3pC1x{u9;sls#i)>b={T}+3dBIp!!
zx!@K;ACHiny)yb;2)MA^g%vIYT?mQ3P%!MmTp_9p5g}<V%oM^1(_EM?e1_mj`G`$@
zmYA~z=Wx|M)8^tQF@F}MIZw!Z7ZwO<K13T&rbR9+)_s-;S?a<vA;0MQy`DK%3SZ^I
zY9U-gYlLhRTr0?E>xBF&xSso0*FVK)Y}rg|bYY7Nr$pcC!Zsl%xT>RKw!5%X_unBz
ziOarA$Zi+*2-)kxpWLb$wNvGH7xsy`U+{q7AA$!3>9eYkR_P%Z4vTU`@TlN1!Q+DT
zd3H-1w399zzmf6u2IFa6KjXq#op-sL;erbnU8v+mWiKwd@Rtj}xUt-gzj^rcP;#S^
zo4?WEDo-jmin+B{>T53CaN#Bw)nmhTwt1kX*0G$oTxi4#BVBmq!flCv$A!B>?z!+p
z$bG%u2QEC+`6Cw|>wHvG<5QhKbK$x07lQu?wy3Dx=Jz!Zf4&5`k=>2AF1&N$KNmi^
zP<TY#iqyD&U3l-p2QK(Ci66O%R$J#~wva2UtsB=_KXc2kv1V~2t6L)(+{h>-lOUDM
zLKr8T8%5Sy`Q2J*jg{u(I-R54$l*pIHwwE^aE&#m8@b%b?Z%W<*1uBY^0<-LjeKt8
zcVqrKD;-#h#aV9wH`0TU7j&ckj8u{$Zmn%hpJFVXGAGfYxEsH(O)TL?NjL5dH0BN%
zO1bgqQ*3z_uWf8y)l}Ne8yTUj8;@7SlyjryjMQQy<H?ythYI3W<KNiIZd7rjhZ{ZJ
zsOkpXXy?XDuc?|_d$FtOhCxVmH);r}Ag>*KA&YUt<c8S|@>n+>oHrPSZ@Jmm;)d0Y
zR&KO*BhHOlZZvhHnHwi!P0c46wk?dU?M59p;@zn02F*mldV)0TyOAKgfvz-kW5r7&
zvywzfb|XbdBgW4WL%p%?*~E>`Zq2i~RCl3RUGf%s?iWJ76l^KDHOAP6bC=E3){U>+
zh`5a>J{t#2HC=sSO3805yvf+!jSg<q%--N@H@djBXLfgV<9fFEP9k;|WbUz|@m(di
zn_zcAI^RsT^m3y&_ktTgxzWdsZ`>H^#wa)Xy3x;#>8DJ?7n=IJk?KaN)~0XWXq?qN
zKyVO;@v>>4@Z`#7H8I(cH-<ig#dC-oLxl_zq&{58cY-4XzjxzCo;YUpyPsjS8$Y@+
z$&E2?jCG^-NXv^whH;$hB1Wbk+!!x>0-HL*I8oQ{R!f-d#<HwNCL33;@Tr2^>%~*F
zyW!w2h&3s0OmicU*W`4=C5l@xDClv+D}<gtA%4Mtgrdk4aw9CFs(VI+qzSSv`b-x-
zLvW@WvxHEe?ZzCPGv?23%wuP>#w~Os!_ma~%*_~A^-cc;Vm4~ggW@7L_>Y*yZVX6C
zTq3wsa2a>OH6umd%XEbsE7>m(rhBl;jn!@>dywM68aLLu@vj^2-B{=5CD1tO#wj<}
zGbXo*8(Z9XGt0QqjZJQBcB8_?xEW*1RO*m0zFpS#1>z>Oh}+8L=f(jy{%~X1+NkZ^
zcV|pHxJ}kZ(QPNs(hdo`+&F)#AJc9(_UL>sH$GQOeB3@=+0XseBAIRnr4-2tH~y3c
zFvuYh4+|b~<ERko$GBUCr`MRQSZ20}JMG39E^jUyH_p0oPJ&!xMQ*Uoy!X`8v#~6D
z!Oj0RYAs~C<i=mZ{}#Ng>sN$a6>Q-&^^Gzz!cFcAH}3PeaO1WFzvISTMyO@HpREBC
z1K!gk-2c#@WB8CKm?*r_)+4ue2Q88(Zaj74neO>g$a6Pd2>D0X|7&Vyz*la(7Uhku
zzjfoC@btcaaN{G7G7l^s{O86e?i~+Gd+?d7#e=LKWb<gVnNcva2bqL$#5k>4JiHrN
zT(23aKg>vt@}OilBWo<^L3Z(p_8^A`IX(Y7R{1>0rSse#<k5LvA?c0DFT8*U@w2p0
zOocosEMgJCqJqT)iwn}HgpiV~t4v**WjrYBL99nxPUR%4yayGSo^)>e%vw>}#>RtL
zl3Q7@ieObi2I($Kv6=_fMQO1%s)h$Og&TCA7$IEMTo^_Vh$hxDF^+>{^*}LNYI#sw
zNL)Jpo?M4r^Wf}zV?z%RFx2&+fd|WX8tQpapM$y5Fs_=>9UYV4L7(k8_$X~=o%*^6
z{S!S%l7fE@G!C9&Y~;bsTN&DT(AI;-9yIZwDf{a|YY#6_vHtMN^3G#y?m-I=zVP5n
z4_bQAid9!mGDi$dz8<Fg9jrCy8-BTJ=A{Mq1{>?en7;C$od@GQ_`!qr9(3>^)q?>Z
zeC<I;4|;ge(}PZIqzBzRnA{?vi(ps5sqa%}&qyu0zW>%4soh1P!<iYWy*%jcK|fLY
zc<_w}eTCCA*U-f0Gg9fsBE<fBscXOXALzj#4~BR!)Pw$ulD_pI@66P)E#n4zU|QdQ
zckg84Fb{@%kajiuXb-;Q)XYpB;lcOp^32rbQxY$QlZjpWCyn%Al;rlGnM$8A9*pHk
z_D|ZeD2Z4qHEBFoOUt-PtlfhN!Y2y;C|Ijk3UjA;Fx7*A2SE-mhp}Ir;(^lxy9W*r
zrp!zoGB}B8?#xt|2W}2ycdOq6j|ZD)rjj$uE1aG_AyhhEwJ>XIzod`{VGmRZ#b^-^
zC^Dr<9L7v{p5ehv5B7Pm--B5m%;uO_683m7$Ah^ZtoLAp2S0i6vj<B&Sn9z%PW?A=
z3p`jTWWHeDXwxFyT+F^aH_(TPw-i|B!7m>CD!I!&SiGppflgKa-E3GP%1Xgif~y7B
z2(A@eCwRV76^3F(T{>6U=)oorwt29f{q^8Cc1nEcu*HKLovJWCdDAfl*1{q?JlN^M
zZrx{>_|Sn3pwDh`W`FleuYVWpa@TmkgFiet@4*ER_QG<|gM(jXJ>kKh9(;UjWI80|
zum?wU<){b8bbegO<u<uaa)rb;I_1G>Zn2rEXFND3%Gq?Bnfi>2C$>@atkjDhyq=p}
z){9RaO_x0Q%Y(l?xXg3Xi!`fs+Q8&1Y&rL)2Uk6yc}?)T2hS}jAI6!e-16YI2N^8Z
zJ3KKmCwV?-Pb*7(ZoccmJrC}C@W6wAJ$TQxZM8o1;2Fybe<b+WgC|0m`_zLipJGW~
zi1J$SA3gV_kXIh`dSRx|8!_MNx$iuD_=}192VKeF#Yf@)34YS`&mIh3YN2OF>0>6r
z%z_lNc(J`)5=k~MqP)oa+LB$eih2?4MGh}=ikV;c&*epK;dun}>Uuseyr&Zxr+_F0
z1q%rl)_sb2;cj7~Pcc!73ziTpDOgIdv>@Hec#$$Jj-;Fy<-O=sEvbTJ?OTypQOtxo
zR*F@;sOp94MZ^nuQO%34UUc)Kx)(LPsN+Sv7d5>wcoFBt(kqEEf<`Y)LSosfBmJqD
zpOtF%!XjeRijB@xY-ANq!rWS3m@777s_g|85{h-bXy!$8FY0+w--`q<8l)HZqM;Xw
z!W(;$BqZ63+OtwwipZ4WMI%vi*XmBQi8O;Gy)he(n_GDCg%|C-xR|l}mtO4?O-nCY
zd9mNu|K@|r8$8z5UbGRNyob5cbdR;I7hie#5@4l5Z0|(}FG8;kUvs#;=q$XW7bh+m
zD0UH(gbM!^OVZto9$q-TaCy<wi(X#Xys&%G+lxM|=(uI97vFf%*Nf3!e7nWc&x`(E
z4Dn*97pYzh@M4e`n@br7RWJ_pV%GQ8vIk7FqfJDL-+D3FixmTnO#MojhIujEi;?X0
z<sN5C8Nc&lgcsj)Qu159g^jm{C2x9bVv5OW8pVM+W-4|zrR%q*ir<>Xu$BtO;pOAT
zdGUi6<Gq;R#bhqsoyL@aVWJn4ynM%N{n3l8ca0wn$rSr;G_AbcV~Q6GHyY_Sm8&IJ
z9LbmK3=Wp<V0jhNu5?m3AhnJ0v!Zx;lG_Upmoz8+s);vC^m);GX56zSh7xab`n?FS
zckis<&oBg8#EW028~Ie+8cPjfF1e+KBh!s(UQFY>`;hFzbT4Lj@xqILyqL*?UTov0
z^J2CabG%r>wc*8Fna6ov%xAR18GrJk?Wx$GxrBBYNItGGF7RRzH~0$ULXM%w!2ik-
z7fUHR@Ie;Ky!eHt7hAko?nQ;{rgefOE4)}Ke3h=O7P3ZgtrsO1ndtVbp1WSi1}`=W
z*`({6h1Bj;y;&(^R)cA))Xrtu^FW0iUhMSZo)`DM*yY7;FV1^$K^*pY@w*rMgzxo&
ze=)mdH{@Su*zd&wFaGdiK@a0vyWyZX@IMq!R+#?u;*b}Iy*T2<DbbG#vaXXtj(Krh
z$O&D~?9;w4%A7CzX<a$v#aZF!bS3-vTo?J}j~7?Gxa!5562`wI>#`Sr3qdy%|N7nM
zKLc-4dd-XLTuAp#x9C~0?)M7}H@vv%MV2R~i&actJ~tFPW4tX6^tt23U7hoGuMfN!
z^)~U57mvMoD7^cNXev*<c<RM7FP?Ki9!48}j@k7vdYd(8oB1)@A4XFtpH!EZyuS3}
z1LxX{S6;kk?cC9)4NUKZycHa_IO<<7-s_wu?^p02U)Q`S<wI#7K6{bDhk`y7@*$%S
znS99WLp~oe`;f(l+&<*-VZyZJtUhG(;Z*7R!)?hlql9M{j26rxm{Ty9VC#cf=-;ew
z;=HUTrrPn9^82u(Wc`Vy>lg4Ldzt#PN^AUn(fGnX6!D=XFJ-A%pL$Uriuq7ng3!MN
zuX4$1VjSkuY&$EJCV3ej%KBjR!Q?|ZZlBb+nrp3<d?@cj1s^K<ux*WX)H-YQ{$ygk
z+bNZOs3PJSgQY54^1Kcce5mF_bunxBz$}V2#Wd(XF+yUc3g()9u=r5hhdL6?>O-6l
zwWRE#3zi*s`p>CnX?;6|q2hh0>qCMM4Sc8?Yxx|PT+fI4K6E^t%<oJ#j!yP1NoFG(
z`Y?P%T%r&C_gGo#&GpXh8^opf(8z~W9|rg^;-_e?x5hp+@oC3<Qy-dhtb{icJa|6W
z7e0I`yt@xAedt%y+*(Zfw-PezpA2n$Xe<0HAG!!>r~9<`p@Z<R1v?6M(sMie@NHQ8
zO17)6bo1ehBie;hwoB$7BK8#Q<wI{F<}aiA2>C{^uV6p+Q3wlGsg-r04}*Ld=fe+-
z@55jpzGG*77^3?O6Ec)-+pPWUGF;aO*VK0L_w1?s8Z}b%QF`uZAIA7FR?O3uD7J*o
z<GGAEgFejgVWJN|O0L(3NkSAK=10d(=J>R+PVr%?4>r;5dJslna){Zvn~}~=AAZRZ
z=kmcV#3PuqUm``H4}S5q4%2Q~84w=yAtZ!KScvLFL`a(8G(Gq5pIYx`iaFbdS-RdU
zka3RA=lbxI@W(%DUu)0zVSx|ZgV+(oLLV0Sur7dK16b_C686OpyB|w^Smxuq0vupd
zeONBVcl)ryhn2!Nvfw1cDj$CJfxmXG_F;_=Ykk;!+|+8h;bR-iI^pNW@RiH7UW#lG
z<nQb?CuQ8kT+ZO~*x%R^ZW$l8h^amKLdZ5B?ktX7JV5&$ZKo96<-_E%+S9(6a%{`8
z$A`T>{4QBkM(@hF&xg?&H2=7<mHzPIAYUl`Nb%!O9}e-<@}rO+hkZEW!!;kS`*75U
zV?Lbq;hYa$7sOmTQRTP~Cww@`!-Ug%&~lnn-#9vLy!FzMBzL}?vkqF$`0(LOe=6sF
zxWJD4@VAt`=tDO{+$GM@hot&PQ<&!GjKA!|6(6=f?QxaIquEk%gLUP}<oU6daCQsD
z8$R6h;i(VLe7NPqZ66-`@QA&ZfcJd3@55c;pU-w`x-a>I+44Zl(en~79kkHQw=U(e
z4^Mp9bR}iQ(%4(O`j4JvA$jh@3m@M2@YaWad|3Fj$4ehx2^qS*N=J)UJJV}v8%w?O
z;a`bdz>oKAsv$0)A1!yAKlt#`hyQ%|B)QrA_$(x&UmGr_3_?E5v}6*JSul&9o7Imd
zI}+&@<wtfAqXl#O`HV9yLQdT?mmkMt;?iU0@guLUe@w{1#^?8IU0^#0G_1?vE$l}T
zKWh46@S~_7#r(WqE6V%v*PG78{V45689z!$gdww1OZrjD4-zK-(;m(&xminD$?aga
z{Bp`t!H<f5RPm##U+Xv(PHrVXzWR_<S<u{~d&}-+np$(PApEE%ZsgVdsG+y>zlJ$t
z{D}3VzT_@AV=<B(w$$^(BtB+Ai=b67&W~Dt)D~Vx@Pa3qVdI6@6{PvcqD*Y|+4-dt
z{Al1u^xMu2{Ydm<_Vy~|&)#%S^7BqR$zwhwrQWmfmdK6#=<G)qKN|b-YD;VrKl%))
z-Bfrp!RCT31nKaFA72V@=|?L+TKmz)kFP~(%kKNp&X4wfta=t(XN;k5vZ+d9Y~DqN
z?vKqK^axR(V>=4(<j0hs42-GnF?Z$Em$nY@V<4M7H>R5(-Tmm{M^8>iNoyZJzVV}%
zaGJe^7&BV?`jM@awZD|*U#0r_LA<*%k(cG9`a!Ij*kh0%-}<$ikWUsIEI5u+?8i{y
z!vseP4j25+j}byx>U$y83&)SrmC=5T5kA(hJr;q9Za;`JUiX<GWTN1Yf|L9hb~2Wp
zOjAUe>c^A5rb#w~!w<!e_yFn#;Pk`g$5lVB`Qi4%<HveGHuy2Wn#t=&z>lDCpP=85
z7k6Tr74jqO$6P;t@<a6_;>UD9X84ijN4}EAY1B`cI+u<w_M3_KyC5G@ILAyb2|r@S
z#?hR`T|Ca%DnmTYIlB0>AM^b9#gFBz%Z~+qEcRmwca|Ry_G>{FG3-Z;4F1<Nx1@0?
z8&KT%@{MtsA4CTH<+h2+3O`o*vBr<JToqg@ac1Ibai#;CHz+=79mAeB{wf6ru1aP*
zBcD65JsauS+Vq<rTR5{EkWt3Xg8XaPsW{_SKeqX?*N@-**v@f#YTfC_E<bh%r+K|l
zcH+fC*?0S~hdXPw@o;6+EfM$ekdHE6@Z+K%`^Eo&;2(Y*WR@R?{5UPjVL`?@?#B_G
zANAvy&QER0bVBDR{Wzub<@>eT&xm=}&x@b67BZdpBfVjlcm(<Jw;z}JDpT3SIBZ*b
z3+d4MSJM?grp`(wx$egeKi>H9){mQh-16gO*TjGPxbWF}+mE|qlHcL^aLY_`&yV|@
zCeef0a?<&sA1k(`JQ9WGW3D}&KNa#!@HtnMt{2&BeaU_5$7@meAbS>MdeJrUoge@5
zEDfMo0Pp?y!1WwJfq?cL#*aLW1IQP^e}3$I6ZOdtK7BIzZsKP@G6aw@fJ^~o4uDF|
z0I~?lE|^s?n;>(e0x-2pAc+<whpy+}5uHnTZoxeNPiJ-XXQEHR015?AIG{Z`lMPt>
zUk~aPKb0gF3E<inNhHMsC=o!#04fEvMwSeqOaNsAC?)2mW6`ApIN3abS>;3_DIeeo
z6HQWjM|6b%5;`Wc%asGD5<pA<u>n*K@C$j=2%x4EsU}!GfbJcW`4CJxzsniV;u|H1
zfi3x@nbeKa5tG!&D$IJnECE<`9w($$0JVkG(RKE>UI6t2=odhLwkiOAdTks)lK>h7
z@KXir>t=Bc14s-YiBr=&E;#`H^xr4|^WfSk0W>XLKa`Yw&(QfwbVAbrngzfwBEAlw
zc>pZ}_$q*Q0elg_mjV2d!_r1@)cPDP1BhE>Y9%K1*6Dg$9C_OSW}Y;XFtr!GLja$%
z$IzUg&rIydu-#3a0^l>;I|tAufUoD8$cbG8=q6_O0D1`N89-kly##v;(z6dISLZz|
zCQ@Oj)BpwqFgk!S0SpXaPyo-XSf*u)|CV8u<Y55}4`8rxnnMD-sNOg<fPEF}(<J{c
zfbT^d5y0DW#&c~=6i13eGAe*8kCUm74PbmI&J}<=z{lL+2buv)2w+M8Qv;YbHDO`^
zKL#)<fH|{LPi5`-xLnF)u8`Xn@{IeeTV|ymypUoGfT#pu55OV(l{q2Z*(oO7^4JnQ
z0eAzL%XtjI$Cj*43<&xKX+HhMKn#i*3LqQ+6(%)+NC0VUk0`SQrwh&yoGF-IoH(1U
z)s^(%KTFJc0sLQG^F>(@z`_6)@%_K}uM}Joz)~U01b-3y?TOZs<-%78veH#TsIL~X
zMsO|HjF9y_M!0K&NDN{lw_5;@0(cz2<^X;R;6eZw1K1M4)&PFz#BmAH`F{PiBP`2R
z!;@x-+XL7Uz)o&~W{JB3*dv5|w~#ZlQpxvnhc-8nOnnu*KY&949Of!*lXQT{N!(~U
zC`j_BkgS=_M*=t+;1w5!(*f}F$gzO-S>r?i$Hi>_HkRT^5viXNQgVXnjO3mbJSRxE
z^8s}98c8k%@K*qL1K^b>e+SUBbjoEeumFZ$surIi<|<cdHRGKCYAv!}3*fpe$QuFN
z3g8$_H^scz-o({N^L7Bs4_QOgO}sq<{qJ$yip4YC58we$r^AMaf>g+#aGV*ikg;YE
z&$vN&j0aIXh!+9;6Ts^L-URsAg*bk{#PpJbbJg&QYhZza=Gy??1rQxXjv)T!;U7S@
zAfkf!z<H@+`p9FS0V4@{8kjj&TizNzai&(qeCB??Ze+?3)JR6bOoEvOvj}DlqTXuF
zEqhRlrd78gw!$7WNzNb|955CQqVGLpF3HUuL>?h|gD4W@BO8o#%O^_yAPNX6C|F34
zxrKumS4ML?mfuAGh8c|$=ERi<qNF%P+Y(C!Q96ifK~(2}EJ!F5MA;yoFEf(!DvomE
zR$j1z9<yQ)m2_S?h$=d-8U%!I8&;n+@-b4KUT9U<2x9FSjTnN631WMunAjjJL0E$@
z2DPtWm`p*Kg}<7Ws(m;OqE=A5U&pR_hT1{Y;V1=BKZurpCR{98BtD3`!i${9UaOB~
zbInBR2|=7LS%hYTAgFYWBoUK>NDg9D5Tk?OmCPwYG!LRhkQb6^m)0{i4x)+hrn=HB
zh(oWmtS^H2GKir;G#+kl8APif{2OAw4We}rZGz|(MDHMS*Qwt&i1tBr5dM{5yC5pp
zsn4vhgXkDU*C4tD(Mhr>b_t@h@N2a-pL9<D?m_gBf(2%$Qm4{0h(9Y?(?j*)G6<rd
z6#Pc8WRvdwgGdcx5WCj6`+y*>RI)abvIB+Jn4L;xcBRgYz?Xx;K@f)s@~^4<zI_<S
zp|5p#5Z?tcB8cyUco1V@8YvS&GQWbk_&3HeK`i^(GAD?+L5$^c3gU+##s}dH!WG1X
zASMPeIfyAi>>H3|DwOlbAb2jRZ(}C~K_s6Vge?dqh@Y!frD+es!8t9IGgq?|%j^Ec
zQH~zJWi+EuPInNVAi^vdgf|FZ5J9fYLOGYY694TG=MN&lSx^iuU-!SABc7oshJqO4
zN?g6i7zrYcy$fP`5O1!T7?2K($*dVc%#v2oe`XMSI>fatZ=5ZJwNw0wZ42TT`UJ7J
zThh&)+M1jf#QY!@@cW-276q{+h^1USX7ggMnaQP(W;T+yS!-IRi!@oP*<YP`nym<8
zbr5TUSQ*6iVa6&S4Xc7!S2C{CT;p1jAT|ZH4`{J3O`p3Pe+^<ir+#*lvevMHF9BR*
z6^v7=nr81Z)qP;tES|p!ZV_a`twC(lIiE<iGl*S5+za7;2)o%YF4_>9gtX1IH;B9;
z<O|_<PEZj0gE$aGwh*F1_#=peLA>L!#+AlpAH<U&p0Yc?m<|VVfk#{)<D=ZhBSMY}
z9t+~QkQ0I@gE+-~C!Egbgq#WDtgf^jop4^~xjsZ))cK_#{tDvnATEn?Gl*MUw8F3I
zKG%d?58{Tduwl1#eqYEP!Mp6cuGe~7ge`d>=0m|pK|B`HzL=3&&vef>LZ0(gKv(_|
z@>1}X;A@WLJ1a}Q74!KUjlU-k;=dq1iCDc)G{uiRpmJ;RKZ}?#giIl12x();lwNh_
z5VC}jHH7oI%(JU&I<e;ojbsm@SH_s_6OB2gNOTA}grwJ-D+FdS<rb1haDJYc{2^2s
zZzvE#!I1XX{(^s0E)+uH5UPhzBZML$6b+$l2<1X37DBEJb+boXN`_FJ>!DU$i4bUZ
zu~ed7N^(g`hfqd19hh5QcvZm)Ayf>Zl9Z|v!shMP$`XfU(%59iNiTvBs)-MyQLGt)
zA%xl?)CnOb1mhixDFkx}vBFt}QAm2*EK)Eo1ZxPBw_6V&Cu7#q+rx_DL#P`<L#dr*
z>xGaYx#acrfDJ-m!SsG5hL99OviPKg&?p4zbf!akjWnBv&@6=6A<PM(c?c~+m=MCm
z5WWcE%Mb>I@NEb!LueJkHzD*5p>+r+23x)gp<M`VSXVHrt!%W?8DbiBOKcxP2QjHL
zeH}tq*4r(SsbdJ8bl#aQ(K+3^h0r~O9=g&ygr35C2}XiZ=@I(qCL7RCnvohp{}AZF
zAjIPhvkwSipeWWo29_Ee!Vs<vaUL4NFd?Hu7#_lRA$%XgNO2w!La9g;9|*-F>`3`Y
z)Tj`Mj7c-4f+=@e)R++H#>Cpkh44d&p9r)QCcWxAt)qSnVNwY6S2=wlObNjof-i)r
zQbY;C8G<bYy9^pD`mJ+ShxCX6T~g2;f=3i>NIO?$C|1WR{E{0K3<$DP=7vHD>z?Ve
z5D6hIglQp64`D_KGsU_78#5FAXNk$Ku}3sX=7#W72x~%E8^X_QSWU~a5Pk_^9_KMn
z{QM9Wu+3R43&mW-O&w)%BwH4Xxg>-;`Qk@rwk+k`mDZm1z#AR#C3QI``k|R=g^-mY
ztkRX$jGWo>O_XI_2)}X{hp>Z-?YMcp=)Z-qfs4PCmCD8tHc1xwW+Bgyn~TL*wuG=X
zr2Y8Cy0)=xW#UP8hOjGyGa;Pi`5(fb5RQa!G=#l8_PGKV#2g6WS?8?#gzpc*Up?XX
z&z5m3wQrvP2;pD|8Al}l8N$=gmeColhqw{CB^(wc>H5iXEQI5n#1Kw~a3f!)C37mV
z;Q7v3PjT;D&h?~(^)&lZJ>k1!X6ij|b~?u+E`%!~Tn*tu2p2=R6vAIp``AO#)0$MF
z8`IySTn=Gh1}n|_+q)63g>XHDk9|ts;EWtIljLYvhWgDAZiR4L#P16CyvxBCPM@0@
ztvzO^TIyRKgz%8-HjD~kJPP44k5GmR;R(AI!t)Sba4)wsE*+yis^%Ftc*NMUgykPj
zUo~@&1oLZ-L(ce@G!x9P1Rvcuz2TZHX?h#NyAb{rzJ6IU6{hzg{4+4&NQ&jZ5I*rG
zHH_?Gt?cIzdUrKt5uPE8j6yOAW)`FmucIbr6*F5H&iOfMMu(9jjC^6_7d>YfdBS+S
z(8#P@VdU1!u1hfH4dYY=b611bkpf{945Mfm#lrZsCDYIXafLVn1rrK~+3SSyRT7JY
zL2MqS#VH;}nJ~JS(E3{<jFMrL3L|rYg#ELPr6vB+{0WcpC6v|cDkp@w6~m|$#?&xu
zVN?#IN*GPTXd2c&yHyRt7=|efgi$Sw>S5FfYyac;P$v7EBgUFx#DozW2DyRJ*2R*v
zSfl+UH}+=(i8%~Q7<I#_7v?=c60Kp>3Zr%yLzYIxg)wYt6vZ0fr<lJ=s>7acHN=OJ
z&@hf7v3?l5d?+c5WQt)l2x}J_H4GzBbY`VrL`0Gj);2;TMxK>Aa&{_tW8pN59yWhG
z65A|{mSMCCgS>edErgJNA>_++Ghl2TMw>8thtVgDwqbn5!DOexxRt}wj(mC|`_*1d
zDjkG;9Y#l8=_I6c7+r*P)%9*+EWFf@MS4=HlfCi;!;o=_y~4Qp)N-<HT_Qg|e-lP(
z7z4uS8%Dn{`g1xK8kk6UF)GQxFa~i(IA~%1zKp?KB(qb8$e6fhr_P(5x_x%)v)QR*
z%O}+?pER5UGADI%7~h34B8>0D7#YUcFvf-XMNrbHFh++lM#?_Al9+Xlb^#R=%l^RS
z6viZuUiqX6Tt9PCCx-E(n5>00n&+gRy^?6Wn%H<wYO||}tYu0VtasR)RC^eXFn$kX
zUs$_C5kK`ST>N3U!rHA(`8N|a47YHPpjXf*IC*g{e;9!<f?=ecG=#zki+;3z^~?FQ
z@n;uCh%hURX<<wc<JU0OhcP3JnPIG^=V{|CLEjt$`Rp*}aFvGfQy7ayr}%Rii*!CO
zjQPSB=*q&d_VWkbnD{Hk64952u`JAcZ))+GRti}zxPmLHK|IA(dM;bChI?ncVXdyL
zV;jy#r<dIz;?6KO3fUCK<}iNKJ-2X$56qSBxiyS!qHou8cL@1P9Cn4VTg*Lzdv%}U
z19R;U<3Jb}8Fr-Mk1!5~ah5#4@z1dKH{m0Kf1EQP3gdEI!r?F$<cX(wRCGEV3*)%X
zPlR!j3oMM&qMXt7{6|bobUr7M8T`DE3p^Zn)0O<jOKeYtxWB^qo3)UKaW{;6VT`KT
z^J*A3xaPyS#%N*8;{PBk#qqA%<J*~TNvS(wC>7#Z{5BV1I}^!`(ur^D8SjVjfX5w|
zSr`v_`19Bd;|b4!OV({GQyLvI(%H1nq?S!!Ex(pc7_iUuJdAJ7Sr{#`T7A~?GK^PY
z++T$UtMHnK6_?pugy!OH81Hya&OoUd_&1FAJU`P=HVq$mAaIvOFgSw$c<^%ns#v7r
za~K&^B&cYhBBP2-Dypccs)84#U;id1vx+P#vZ~0YqOz*}Xc(m;yNV(zimHfKkwZm(
z6$Mm2x6YDNMJ^S&g%A7FkVgfPiT5QS<`pxaicw{%(k!T=kSK)(Gj%rc_I=cOr8;r^
z0ZTCzWmS|@QCvj{@kx1R=G`DmswgF9X+b)d5mGQ~b@K8mX1p;}5QVq4V6=+DD+y+K
zSp8(dlrOF(Kt-1t#_B3+s5tL5R#VaY%hDuF`9~(!RAEpNqas$t=+B1wDvT;jD*C1-
z$Ez@_u&Ai5;zLxDRYk>p-Q$E0KH85;Em26Q*AY%av#yGI;#O`<(rIfVF_^=`;0;wI
zs_3sGRYj7DWEJgHv{#X$qLGTWoQTYp#wuQ9u|!?4G*NN3e9>(ew7V8GRZ%ThQZu%2
zYFu*_ErgJNA>>QJmV&JWTdQazgg)&ImakOpwJGoOXkrHyU#sBHzTc?m$muI-?V_Tq
zicZ2i3zn*H;qSlYt0#0*aq6hKw~Fp6X!cN%p=hI?f+W2-ZW*j3eb}j-NlcA0Sowyz
zud2Nd?<aWho?(EBfhz1O99&3mEQ3^hr(%SPZ&fs$X#D4S(qI+DAu5J);#3S5lS=Lk
zaYWmk)bCY{R53xtMCR5rj#BZ1it)ln3yx7SR>(LN3%}QHoJcn!UrCwlSFA&;CjO{m
zii%&VCQjn=KAtjJ#qV#DnBE*uo~q*h(f&3So3h50Kh~dIQQ=hKR}oO*;`l6xaSLvl
zmWkXWoWv`{$4cj<&h48JR1s3~Gv`r7ScS^<sbZ#z!H*LooXt6@(^aIYn8xac)OPz)
zn6}PIZBZhT4zpBbew?^}e&Spebsi_qRxw9NsmF=;ze&nwO8iM2mQ`;==Ogc<i1Q`#
z0u^=rDKr<WSfZj;1lh(Lma15$;;o8z?6S&ly>LXuQBJO^J+$ao73)>3<Q`YCnlszM
zx=wVGHDaz+QLDV=_sxb*2ed~5ZBVh14k~6{G>l&#yGg}Cj{o}D&4MJqso0`otBP$Z
zwyW5y>&q6zGIxiVJ5}rwvRlvHBjk^-lYSSnPjJ8B0YR4iL&yu0`A;F=n9LN}jKe&p
zHXD8}V>+hdxQcrmQm!`@CskZlafRzv#c7VY%G;QLPa8Z#{m&FWg;0C)U`)b!6&F<e
zrQ&ZD7gg;sf=rj#&2?51KGu*=7`!tGvx-^y)WTz{lCG+_#<Q`A^{$HRDsHH_&HXzi
zjt?K?!wqk$xFzxVjKb%0H06%u(xgw;xv6}<VS{_I4^%wk*?TYcp&-d46_15K(Uqqv
z{=8L%S<iLl1-FCnm%8#w#cSbjRO}v^i_TLN<G(82^Kg!!U<4mjeB=mJu|)CwSMiBQ
z!5HI=?XjPQkY|o)N`?qB3dtl`>0)+@Oj#lrHa8(F7n100H)f)kJ)#9<ijE+M@SK9V
z1ak}K5zH%?PcXk=^&VwduuuerBZ!T_7}5UFR3w6;5fqEy<zAz5z+60n5)o96ph^TK
zBmBsZvJsSvpmYSq=cbm4U~#QvlGQn^)#s)*o|{@ef_I;iPTlTbfo_*ms^zqPJvX&t
z1eGHE`7)KMRS9d=2oOQ_2x>%7ErNk_Q@iK14r$c=RZc5I(P84;)S3|(A_&Y)jfucA
zBawtU(G-C>qP=%*Mm+*+1c?zOMGzOk-tSBe1jm)@Su28B<$BhRppKAuK`M14sHgM#
zLJ}fqvC6`%#Inf^BWM#-zrtioxw6Srk|RioppnF+NQG527PCnNO(SUi-nw9JD#hju
z!g=}E_(g=D5YbXvxT1w|l*ceB&A`?wc}%StJc70nd=){D2zo}e@88-*(4C{|HMWm{
zKU8(#C`HgQf=&^1j-X2f!Gehm_ZFROjAH5<!RmsEnf{6GCWQZ^B(ENuG`n3Dz9{#K
zXz%U&M$j*U-opC`ej~_7nQL$Rg%1==6&xV=Q@%LnG7S=Q#n|W}5e$vs=LqI;)kQEo
zf>B&`5quZHji{LK1xE<-xje`Ii5<!1$9uGXGBTHGOa%4_9PDER<0AM$JgH9<GG1_k
z;LSI&KSnSqg2@p~;R@uu|6q8R-8?k{J{h*)n>t_AHPu^TxqLZxv(2hVkzfR&2%HhP
zB5;f174!(!sbpeBz6ksg@a`P^`7*!;Y%m<zZ{eM;nH7#`Z)ImjphgghAdQP;jA2H4
z*)fJ`Von#l7_`v8%}e7fDKcAdj^JFup9HT});^iek6=LrXGLkT+qf`-B@rx*U=jBS
zm&a~ny=|t!)?^Z<Wf836Bu4N{1Q&Rp{G##8BOtC2Tq!uDdEA-^)<$qBg4YES*G2Ga
z1iQGuGQ_OsVzXu65<&KA#^qCt8zR`qso8H}+7!WNo&Oer=W;B?tq~;uYS||Gc0G4T
zgwOZUN-ZyKN-w)Rf<2<_ji7_eO7V9w_eHQ@$N|AW1etp<f<J{nU8+@mID#V)9A)Dp
zI76~7h3R+%Cn7k>to(^IPjTZE=y{rZXOW4@<bplbXC~@Y8mdX>IAt6V?ggGd5xk1v
zQUrfRa5sW`5!7mG{yTzOoSOZn%Mo0O;3`*6rWoqiBe*7f(iUU7azp%Y3Wk0(-Ih{!
z1X;X$X7l|B9z^&%tQO&61dk$k%46zv?4@hQ$29l%r%$U~@lV*`j|M)u<{2k+sp;yR
zWJZhXXM7O>@gL5}+*Fd+5xj{YcN+4f;VtJVf=p@1oQ7TVjQ>WEAq^MjroN~1JmUw!
zkAnXReiHmFNC!R}g%6R*n1&r!VrlZ}Ia$&Wm4-uEW3r}!t;&{$+{F{w>x#up+0*c}
zkg3*mL$uVDLolact~6{~WMqWAX~>rbK7O$z+cvg-{xlR$Ly<HTNJGIi>>E>mK!$jx
zLg~5V>eHua8j7cZVlfe^jLl*$AqxHXl{GS2DT!HH(0AWhE)C_=&}KT?PDh0_R7^v=
zX=pzUmC{f-4X4s@It^9QP&EyE(y%uTNJF(We4B>BX{es|KTMqkbX3Rt{vk*b+@ZMh
zAe-!FH%K6`NpLSv+$~7)0tHG-Db$d*ur7D+-re9<tQ0Fyq&P*3d!aZ5ij>0txi8=Q
zJO6X$Jm)j-yd!t+%&c4))OH}<feZ)gIAC(X=0LIo2@WJWkmP{Xq0d>f0~UvVtv_Rp
zwR(PiVkRF=q`g!A^7}6*Rz8@ct^<5r#qIzfPO0ZWefqyNJ=&=IG;knA3L!TXXe62{
z+Sq|60)6Z2cdDmJ3CzfHuC-2T>OfluZ*)g92bw$3!huddn|TSkwF503`p+&?FH0+d
zeNI!)W!5$h99V88w0EF`6x)+M<KVuHrcMqFSYtlg%>2Fs1NWIq6-nTp9i7Feivu4B
zumN2Kx`}od?IF7N?`*vs=*<&R#@vVJsBF^xS?0bDz8N0<#bJo(08y4RP+*V)gAI$%
zl6|Ofrsy!y;YR8R2mT4@*V9KiFxr8y9r(t9F%FDnhd409fpHFucVMyuA9G;LFimja
zBL^l*_QRi9Cppkyx9PuaCT?TVDPo(*hpZjARKYyWflnNmD$HoMpKa4w&R?ca9Y`Bx
zUZPo=E#iyT&0iKw_?+YXcm0#-OAZ5n_L&ZR!Q)jdvqTBA1^5u$R}S#D2L|3n`7H+_
zN4o<X9hmFDJO>syuuxjH=#MgunxxNn;5*h;&HTM6;RgZM<=|+XZ7#e%(dB@XhqKMZ
z(BeOnTe5o`@H*fVUhKdU2mB5MBpP%;bs#LPI1mzG*Uf&QKMtTdkY!jR0#OI{&eksz
zFEZ@+cIY1*OC4D0z$!5=6J0L4LNvyoeYL<^(KVt!iZXAT1KHOJuQx0w9%uW>flUr<
z<KW+G`q_ca4*t=ReJdx|EsM9lg)isd!sX}-)21!v3n6n(mu0&H%lGH#G%xKJ2YMu>
z41HnR#btpfg2UK>-46XxyFH>mEr@lsH1FkE_Qvkxyk495o9MRE8RUcFb5xXB4mohx
zfg=*7Kl9Q^J?7Bwo$L6u>4XC(9Vq5RaVJi(%xnqV5cZw}ryV%M7CLa&fj?=to2%Bb
zo^#-W0|bWi0w-VfxF~Q*^s<q9#eu5^UlX`4dPDT40|gH^W+As6xXqq%Alq8=T?g9S
zOC#KosJp3|(cGDq`&?Zec<8_*uE0*jIq}$mza4nvz*`5N@IbgABqYCZ;2Aq=pY<OW
zxX}8A)w=hT?YVF*o0XQr!OWKqyb|YsMPGBpn`-+{m?hK<W@d9DU$Qla6FHs8F3f0*
z6XV+?5m-(xC(hZdxt&;HO8&%e-RH1gIF=soL>?y!IZ@cDw<NC<`JE`>#D+S_`JBjh
z(yBSF9d20*I#D*x`r2#lY15-coG6oIE$YPU#N?BG)Bc@oV_rV{P{N6lPMDlXaH5nG
zpDi*~cH(&{>w8X=W)>FWL?tJ8?6sD2qP!Cog)2DmRh86GT7$U8wm`wua)r!vnAa!$
z%GK%&Rak=6TGfeaPE3ijR(GPd6Lp;WkM|l*K!99RpqA*aDb@dowT@kv!MpS)ZmFJU
zQgWgbDNZzW!t8{Fhde1c$%$kEvegM2KWnljq;=1z+1*^%iF%S$U$lWF(f-b%krSy-
zw3npDPBdY^InlxiyAx?nG!^G`CzR@WS#kzX#N=cG!|LjJn;A9!@`1gj6Rn(R<3w90
zTK|95Wdt)>(Yx%-)lQPKq_hrBbTmqMU!ao{7e27FZ67$%)rmixIO{|=C%QYa-HBhE
z=;1_9Cmc>V*)vY`W>-7muASD$iM~!ubYc?yUu5*-IB{Zv6aCqkOzQwAs@u%84|HOX
z6N8-?B5or@hl*y3(r1_x!wu$^A|svn(1}rE87n&4NF5`EGs`%`GS5`~Bl`D>*`TJe
z-nJLwSnp&fK6YZd6QA;oOG~CnMmkKD=>6vzpE%Jkm|5XP221<Qi5X7Ja$>fm()hU(
zN1tb~sF_ZDAx2igD8n%|ZRlm|mrfL^(t`zl?Zh`ueCxy<sp1DG<~lLYiSM0YYd;BQ
z&UfNF4%)1t%=^O?D~ojoGuZ$}bG^t|;KV{FXlGF;E)H?AZ=G1|#1bbwP6QvBd`|eC
z@UpkJni#$Gdu%}Li=6r=MNn8VQbQ6|MZ->L0?ZY0B5H7!6S>QqX=M0eoqeej%bZx_
z#E+a8Uz?XZv5JdK?t~TMzfyF4x&QgE<}_FJj0|g?SkGxL4(mj@mn-cXo%l(j$G_2|
zo1D0P%lxwwo5i@riLLKaHzzW6oA3v>bk98d%{!d<)rs94hdnJjIlIp!?GkO@Fm;bi
z%oCg!CFAxwvCoO$#Bx-0zi6Kv)&ov{LA4$fJ><k;0a}hY!R-SG$HbHK{dXsh8~pN7
zIa*HgQ^1MSVl1%NmT}g8#tG`B!VS(jah^+!3$<Oi;KW5I{^6?P#3d&#v%8%5n}a8(
z`HB-aoVe-4Rf%2`z0Nt6ZegIqpHAFjhd5C;mzg2%YEFiC{FgZ2apJDPJ<<E34@4h|
zvXDnyKt^Q{`oBq>w>5^@pGbjEop>g|8fkpNMixlO=0bLt4lgD8%87pkUULRz<E2>4
zE|kRZ#)-GWoiFBMG{%J-E|heklnXgs$mK$Q7YewL+l5#c^0<)Kg-UJH<6MY$;Ycv^
z$6zL-_k)?&+NL*Zn|?^K<a2?>BRw)I_sA&dLLnE5xKPxE!Y=&PBV$AEre)fuQd_i3
zFXlpV7fQHLMbWdzE18pfWUTI<!Dy<I`JM}<Sr@<3yHLi3Z9fk!??MF^%DPa_g=KBi
zX<>D}dStLDmdVCclqU62GOM^y)diQ52^XrlP@N^TO|2mnv5}+C_n53?G8b#9>B642
z>8zJU)p5b(LR%O3T_wSVL>C&n(8L9^3l<mZyU@S|zNjS0g=7J%Xu~wKjh!~h)T69@
z)UKquVywq<PMUfxvZqKi)rD{KB{URf35{Inw<M9UB*XS`z9hQ~X)e4CSX#J{?m~tO
z&3NucS;nkNqcSvgVaL*hcidc(?#4E5=|U^v)-JRWpu@j6dz4H|A+&RG>m^frm;U30
zp@R$euj^m=I=Rr9J>!Dg#cgo$feRnGFj3sPy3m&mbD^6H-Nn+wg<b+ZMftbV^P<^%
z3$v&`0^cX+>hA)#Umrph7$7>(g+T&L8Z0oRzWxw#rVFDb<M@QwVFJTNN4PLjfIc6(
zFv{T0-z1MQc&xxU7seZw2?C49WM?gtT$n4-$)acTnm=}7iVIU+m}dBY?ZPK6eM>vm
zGTnvESs9;-ekM9Y^m7+xy6}bYEEi_G@TCj$V`_XCQ)59)jfF8a95FS%a$&#&6SK3N
zZ=~>VMd!HCsJPzG^IRBKT8H^!|4#IK(H~q`Ah1xBJ`MpVr&tyJc~}oepbOVrxbA|_
z1wTi%3rAfDxDa$<u?tIFP^3%4E@+ZB<brCH)^cd}h;UStJ+moy^(^5<h7WgO=j(8n
zy0F%Tbz)rR!g3>Zg}_SDRW7VH>}v#m6rDP^_j(sLaF|JSqv&QAwy?n$Oh37>Nh~~^
zpIzA9Qh$Pbt5|*!-6pzS^z0G+S#pLQF6?w+ml%I_;WvTZqI*R5itZDo{|L9<!)uky
z17bNSdPwxJXz8i?BiIbbTsZB*88QCONqr{!ap4o9Cq++*wrU^yhrneQuDEbk`uUs-
z=ehoi{gUWK(Iq$aA6(1Ercv3?S9x}p=uPTyERoS0F5Kjr=|)~R{&e9MS7R5RyRhO)
zw%c3`UAQBK)R?GexhwqgUY>iLsxCZm;h_tEyYR$?6Sotae`J5;!eh?d_7>OU#A8b4
zixm4)7oNG$@;!6KJ!U#^3kJg2%GMVyymaA}3;#-)sVVxPs@W&|Yl&uaBfDE)7XEYL
zjabNU1<Ib%pSF&1BZoK?ouxM{r*JMeatp+|vHGn3Peq(W<3$55eW#K~C-dcVBflF3
z+?ZT2j+TOM6cUG0ZWMN-<+AKWC0az34yQ-xMHO?SxM3;bMoEKLUdi^JaL4)P(r$d`
z)(@nd8|B@I_aToD72K%kMj0>4dQr)Z%5Hq%L01o|xKY)OZEkFLqnaDl-Du@TYd31R
z(Lu4+al<44(VA}55~wXohd1~2?Z6V;{Qn;|H^ONtiK1pviyKL9d{o`az@%h1>bjBY
zMq@YX@v{3VO9MAj+^Fxy(C*0$#j?dSG?Zu~Hx_kI9zHdlZiRa!H*v%6Ml&~>yYZ%2
zk2E(j+-T}Xx<qN&c+$#e!!H!;k@?9`LJK;0tu5WSuVgay+tg(H2`iazdTHYZ?}69c
zXzS*yP|=>p;>P!G{NP4MH{NH1-N>qD?c_#hhToGeXXraCb#Y^W8w1&IZgh2{o6+;V
z1-gs&aHFR{FC+C$>l)14$Bn**rJo!9h5c9bb2LbJwCG?rhVa;hM~G&M4ig<N$}A<X
z=!?KeiGC<LO7zqI*~b_@W8D}hJl?QO5LoqP_K9vx;;1w1v)%aEjVW$S70V3KX`-Kq
zP8a=Dl=Xh*hP$oaA)kw7rsx-<vqbA$)sO2-H@=eS*KW)a_(t?wQ986Jqu*CQ*Nu5%
znJ@aCk=i~sZh;#M-SD{aUQ?UHjX#FjTs++$S_n=z*4(iY+-^ATSQ!QlxAByD<;3|!
z{h|Rkf&z+YNR*zcKv<MlS|e^m$sBTSY;ogsOu}L}mbkIjjdgA;bz_+ur;eFdxv^Ye
zwJ0qs1XjAiBt{vA=di31{!x@s8rQq=4t^5j1~)beyvxO;P2%vg8=D1aVG^6Mm1D9(
zKEf|<>~JH|1G5J^-Pq;E0XGi1@v9rV-QW&){JUmurIbBx>~n*#S9It{I{zlTU-az=
zD=mlIIP6Ag56XCO#EqkFoOR=z8~sM5A7jH<wHv>?aomj)Zk*(>ERfD5hKd!N771nA
zYNwy!0IRKAsDDUCGVSNxxZuVuH*ULeQS3DS>Bc2CK9otH%WhmT{I9xkP58R#4bhvT
z2li#q`Tt7(i^Ud9&*8xxH|~nVJvZJ8+;`)Fz(dg|ZaflrEXqRu=4un4pTO|cjc0EB
z<HmD0UbykE8?W8?=1q^6ZoCrz@9XrS8{14}?f-Fk5qpPFCJ&rO9z`~f-cbzM1!6>N
z=5I<%P7iW<kXtOV9x$n>aGVG69^~;LuLt=&e19Vfd5~X{3W)ySk+K=&!k+(i7b`6y
z4s1X%f#RYiJSb^oWD84qFfNq&o<~0xHlwTu<viS<&SdhSyayFLsO~`x4=Q?4$%CqN
zt7@IJ&{~=6zlT>0b>7#|dS{*O&v<M91=eaFP{&@gLZGGxwLI9iz?zn*r`GoH^^#~?
z(|TutmA6ULLQe4T#s*XSi8iXmqhI{(!b5(NnB;-g1DglQ9@srd^PsK=^*s7}K~p`b
z&s-jR0}oO>XgoTdKX$$gWxn;;8;ZS=2i<LH3>g=P<QSda*n@WahBonlyfT!T?m-4E
z9<=wMsRzwGXyege&Dz|91EI{;!Y$a1#q10%1zLIV(dcwW7kcb7I$0Rn(*7zf$C&gE
z9(44elLwt8<NF?Ld6mY}*q9Vs+Ko^qD?QjSot8s0Z5>-!y0LBS(wKzX9`x{_rw6+{
z_|>D|H`|My=D`3DHpV6O_MneP-+QR9D50MR+HQOE-01^7805h^57v7y*n=S+%<^Ei
z2SYu`^k4#;>cKE}%dJF)F#^Lq7-3jOdhnsaqXb5aR=97W|5)L19*h@wcdNrho@)<E
z>^05sV6q3iU-}bCrT@nQQ$(kFFwL;LpPQIEU80|Q@R`8>Zk!OFX?T7iz&B@p>A_bX
zcs=lW@U<9gE-`=4A!m4g>%ko1xuWw#=Zk(P${K49!4DoV;{s8_LJu6mPQ&8zz-_RH
zgYBM)ZhjBWuQEqH$Px&65EP(M5eSK@qG6s3BQ@edqb6p$Es{2bzA!BpSnR<Pqg6`<
zmU*zOi<yn2&k7HyD@9j%uv%b^=#QdIUCU**mW8l^L&Af&T`4;~_{oD!oKqfb_uyx?
z;Z^M5NqIMWaQ{#9oO|{yJh}JmTSdQHmQH5)#e*GUAy@G07T)Yc%^yzR&0%xc#5eEl
z@!;I$?i~)M@6~4ze)C|zhwt#jDNYIx4tj8cV{D)K5a&x=(h(1idT`i-wWl)}uAa6W
z^KcJP9GAf8kroYBzO~SE{{wUFIT?E<q>)d1aK?ix9$aOar_6t_Mz&x0EZ67LX&b+^
zT=3wc2bVm!%tQXt!hbWizf8-aX6Al9lz)Km?bhYh%xfN8_u!@nf69#GI>4EJ!voIB
zx@zVvG1Bt%X#50Q8jXLka1ZW!aF2cHMZ6dHJ$T^33lCm;@X&)t9{laW6AvB>Kg&w^
z;B*o-+S2mWgJ&$z1KlF}E{XbFq9v*(zVhH-uGn7W@Zz-x|FI=nLUu3SaAiod9_(qO
zJ{e|z%T=^zS~jn)`z~bAc<W(YPA_tK@nb%7tQQA+q~-SF<8ry^K+f66M)34VEA!Tr
z$BUv~d^OUR*Nc2!<oBY0S077-ynLOwnNZLRKL1tmwv}Aiiy~gc1`^1Fe@UVi^P;#H
zCA=u<#i?%g4c+Xq5pyZ}M9htPn`wDZxU{6wQqGI=UZi=E?nMPQ*sK4RvGV)B7nQxJ
zBhe~eRP~~U7x1E*Sm;yTi?7Z4FPeAiX%<&gk}?-ot>r~+F9<!#r7?BT9+Sz71TPZ3
zpqtr?-S_k#dUW`%V|I%dvtrCitZsh}g3XI$DW|TN7pL^bFx2y+zVMmOdW|VwH1wj8
zST5{MZR|y=7aP{-SBL-Gm%WMD?OwbZFB>}K&B*YgsTb?%<3%$sntL(9i;rmRZExX4
zOD|e^(YU;sPyV*{!gMXMy%!z4IR3nT8!y^=_3M}n?F4A-=*9b9jP&9|FFJYA*^BlK
z?ftyy;>8DEboF9WYEm(uy-}|kj^P!V)J+_^i!$0npr>drFM12~5$!8VpI2Uce=i1j
zF_44ggt?QNIl_xUk~&y)h~YVu{cP|sFNO=Vb{5j%Vg05XO{2UR?Zr4R#(UAtZXV;s
zSi|4rvp@2t(XFNUvr<MUdNIk1<zB4tVlr#@;>mrJ&x<KuO!dOyh0}|}8_d&q_PzMV
zi%-0m?!~a`HX0c|_2M%xW{A({qF;&5^x_MFS)#K=>Hnobxq`{$f3BIo^<s`#e(++h
zK;D=J?@FF0(fOj^iGD9SO0g~wSSb3gI%aWs@qNw&f?Mn!QLiYU#--iwML>p1P;{}V
z;zdY66%C7Oq7l)kXqG6)+alIdPv2>DWLoSJFP3uh=Bl;Ki$~KEyWZn~wAHFqj^B1x
zdNJ*0quoW!tGrn4#Tu>yUaa+Eofmw;DIad7zJoGf*$5k1K4+*Gr#YOw_}Po29DaY9
zHhZzfi$gq>hwNLqo-8r#5#1)r=yorDF?fd;I}P3?@T=%<(d4O?y#o70nfEtVVekR2
zQNqX1CNb%-9Pbg)Qz<drdzXzl=Ed*Qs^eaq5UA4KdeQ(ooblohjvudnr`cIA&Utae
zi<@4Y_u>ML9F|KHFNzW_3tSTIdBl80fKR@VuL)llbx!F+=Rdu;<;7hu?s;+Bi!n9R
z8SZ%Tm%-m`Phz0)z84R8I=pzyMfE`J@TI1QoF+?6cS_Wy{>|YkMkdwCW2NQR_@t*^
zJoEBfBA$DZF+7psr57)Rhi$Yl`bzj;(bqgXD-!+_eIxqTi)=oO%Vo~)Lrx!Z`4HpN
zU!##jl)$9iKExWvI3F0^r80>Qd40%7qaX2p<oBU~51Bp;^P!**g?wo2LlYkg`%uIO
z_)yb_ZI`kY^`VLnRcTCaTFi&yK9umGqz|QhsO;k-Hs(HC6W{aU#av7Bax=BG4`qC)
zG$p;P7|V&47p)*#QIwvQe0a9iLYUCS9BP)z@2*SUn5y~k#owkm!PM$LP-}?pIGd-I
z54C-0=tCnP>iA&d-%6EJl6^?<>5Hw!hm$4DghYv&c~BcIj3$YlNmc=y4>zwRGFsP%
zdOp<mp#jU8l-yxPY>GgAxwgxTv%KWWClLAKHD8iB)rV;lY_sns+I>j#p|uZfd`S1<
zy`zaueQ4%Gh7Y%In1)X^zgOMb+y}yiYlEp@owu~`p`}<DZ6&Z)No~s$<U@BKdic=Z
z_rFh~t^yr==qT{MXeT4Jvp^To4@57ni0fvg=I#*J(}!L@3>Hgo(L7`Aqt(nlhEHD~
z`U&?J9UwYTbdc!KdHUwXLxc%KeOPx-|A-v!!w4T1_^{B2kv@Fr!werj_hA%k3@1z#
zC5-lAjPO{|aiZgm)CmF~`7lvnlIUb3^<y8V7(7?aoaW=UC)Q6yr;9TBDQk?ke&)k(
z?Q91>v(FU!R~&&HFp_tc=xiUh=eB++nrnrP{0&dmS@Rq@F7D>=EumpNH*T0~9O*oP
z`J&&6e(%E%0t+VS-wGT)IDNR|!(AU-KDd3@@52EfJU)1R*ho(wd_MSn2>YP<5b%Mo
z$`AUWaHtGQ?vvXV@<FAKyvG0Ci}dM0i1-i{pAC}AckgHUu*iqSK7FfkI;`?xi8w43
zT_(C*bcN_j(M$5S|JA~4M1K@rE4of}z34knmdv^~`S3F<68mN!wg_w$<$eV8VS~5%
z^bG>G`}7NHzev&!(Ve2ZM1K|CElOu*-0Q<WiN4#0;5W{@99G)%26`XlsR@`*_&`1+
zdf0~}0<;_zIOgLshPuOX(SPeyCZF`-6wB0Xr+xUthqFGMk!b$XRvO!1wVd<eniNhx
z&zW`Aa>0j-0+&QDi(c{J`fW4ARf+a_6f^Kk%XJ@j$F|&HJAL@mhg*_#Ta2_9Eo!6w
zB~d;Ab<c<UKK$py8y_C{_z<E#h5z*-q$NHQeeT0!fxks*f8xVa;b(^BA0L8kb290L
zSYC?05)FvmhV<7QQJJY%=cn@TwYNTe+dMI+AKCoKx5k>?k0m8iV?+r#1kzt8=JMmu
z-z>RBV?~?ou+oypkGy_->Bm>h&c)x4wtlqp>n$(fM^!(n`BBi1LVgq$V{y?Uez@P7
z&sdU*`avxwI_8|EgdZivp_Ct0{CHi_@}3{1{V3zdnw_SyepKIN;k%*8EWez1mKUuc
zT2Zu;Xl2pP?Ml_i--zW@_oId%b^WO42mGk%huIH{AGO5I<VS)Zwf(5$$7d<}B?*Rw
zm-O%aiGFlgYJJ>C|HpgM^=wIgJe_R5^)}Ha8LfUiXlmJ1-#o=)PWFR(=Dw-E9}Ohc
z?#KJHtELDy5^d<m^{mAAy2hsZ(U^JHn9m$GHSyzo@pM(qWECTGn$!HCru&g0KyK<s
zGvVf<Eks+2wi0bEO3yZaye*NcXX$Nk@5f|6K4$y<=;+r!&ffQ<FHhDmb0>**_M?ly
z2Yz%FpbtObx*6Qvj~)j16zC<|+mAj1@xRA2OF!ZMehd&8C^}ShkRO8u=r%;4-uJPY
zehl+txJ3C?WQ-ppghv{lANn!M;L(2ll@ZKN&#``t^XuPU_^o5S9~1oeh?ZRDiGED-
z>t9G17>$$fC#C_(NA8%W_|dt!ZK@yB{P@I=>3$q2mGlLVcd+GCo@+m5_%Szo>c_(@
zpG(qA(S`Hubfb~VFw2kGV*lj6ZvWbkZ~Vv;;7WpT{g~s&T0hpY96#o9@b^y$`!U~-
z@BDCaocr-T#|*5yjwU+%_`#3=&LuA3I6sz{<66=}N#f<g>nD<&evCPtw4_o>&n>Cj
zPbI1klRSP@T$$+g!^au4C)LkMaorRU4vH$GObQ98qPwePXnsWei29M`$6`)lKNk71
zyHuTe`<pKvZz9;wSFYSTd8r>O{8;J7GCvq)ST1n0XzFG)bCn;fIq&=+udSU{{>D(k
zkDSf}Gx*X=s`=aG^?qFR<B}g6{Mg75?#CuSw)^o5PZLjZj)cvAZ1Llqnpwl7Un}40
zNAm;rZ88@|@3iq{n2lc~?(k!$AH3J-oFCn8CGPU$SGHET^r1xB({h-pd;HkTk?c0_
z6aCGP{T$50EeHHK>c=rZ4*GG(k8QJK=)-W>k0ata=0f5-%kO?ZbB9xY9Or}@Xrb{0
zSA+Sc#Vbvx#q$r*Gorlu@GjR`KavV3k<W7t$zi_0le^o*(EGXRvL9Fc_}h;seq8nA
znjd%kxXU^2#|=MhDdyXL+~jI0d`t9$Xd>-g?HdJ51ctx-C|}w}xaY@xKOTx3qwoA5
zaMg0^o{#)^EJ^R2X=Hys_2Zcz6`I@CLHaj}fBbmv#|uARiZM2zC%y9H4VMK!{uSeE
zQQH3#;JsVf#Eq7m0c01BF)TR(_%d52lX3~<7P~svOiP?_yy5vw&CC}-{s0;UkQzXN
z015_BD}dSo6bhhl0ObNGA3%`+iUv?3fRX{k4e47ffZPMCuS~EPmuQc-W*SQc_=Fcq
z2T(?gHxFivZI?P=V_(APYWA`L>~5O$YkC?zD+Ew6fNB9$51>*2eY>RY?wndBfXc#K
z+osZT_E37&0H}Qv?KN2Pwjp1<t&adA<191AS!zlZw6L@~0hj`)8$i7P5&}pJz#2fY
zcB$q7KJAi92MZhDAv+-{fC<g*EFpQB*%m;uL}~9_z6P~^0A-U>8U&CM!1|7<^<MT!
zeQRzg6~&gX@mYsdMjHpvB)|vL&@BLa0BHfV37~BN=>cQ}&{Aq_8bGrES_Hu6HJ9ux
zd{O7r2iq)bilh-}=kc}*ptYn<&d?j#E`a+9_VxjE2;fcew8iHwrT#W|44_j0odbAZ
zJg>fO#K$P;oYX44O8_5;k-1uD*gJMg<yq(+K(7FL2SDx-Ku>7{tIH~&|3%y<fKdUA
zW+w;GFMzF$llliRB!Hm-{g3?tq60+-1u$6P{8#!jjF~*Hd!}JxVU&+q4Hq6EI#TpQ
zQSU;%qA>xC4InhhJTHK80gMmevjAp@!vxXEq92J)3}BJ~Gj98;`o{qrbeX1z5~c<)
zP52Yh>4yDNfi-^f=aTmuX`z;BoykKEfG|sxFq>0A_$$NmHBa1G3zNQ;ymO4&=L+m;
zRpU*3!hD{E_=Fjjq#puUz%#W7Z5Cl+0FD5D3uAv6&H!8iybU3n3U>e=1_fS*0DL?(
zL39nmA3z|0rvdIug<t?m080Z{#-0g44Pa3K7kXL4Y!&N0sNeAt2_PE4si#SEE9;l7
zvjY0}F%FnNnx$4;VQO~Jv^anz9JjyfSF4Y$k69kTiU1!J!r1^;2CyoCy#eeCVETvF
z)ttH65;g>|Mhf{cfL-TJYlWG2oxu74j=!f@w2@IxnL)Nq^uKM{BdI@&ZVq4zhl=pF
z0Coy&7yU(ahbRjvHPE(8_*cWSI{+G)#4?-0{2NDj&~zk#g`@PJmiq%ZAf5+B4;i@*
z2XMNj-Wx{)IL5jBBL3%~>F@~a?`*C3oG?63vaf_si=Hv;)3#T)4YHjJ;6?y9131rq
z4&d&G){6mL4&X`vmja-}se!f|W2{#L*fz*^Er9C*3?F36JKpLYVND)m{cogo+xApG
zV(@1Gw|Gv+S>qH_e>L@X0DlE=hXn?3Pip*Rv~_N(eg0T$msC5OeLsK)MoS(FJQ95@
z`gZ_NjMNT;)BfShA2_;#XcNSX0A2=AGl*J2yb9o7E_y+f4&rqH|8Xe}qDT-q7MR{}
za(!vf7v!CXID954TM*fUhzb7he}h<o9HKdc$R&_lR4pIJ=EVuei{=rfF>eqbwff&Z
zSNVe|AohYrY9WEK7qb-&V)`9Z@gPbBQL>-4m_+yYu@((ymK2{-L6GV5!Og@`b@lrO
z%LIWSw%YZb#LEUzE{O6$R1oKCM)?&5Dg{y5uv8JK8pN;@)tIrmL~DpHtg4UL1EckC
z`?Z6p6GTc74TCTRkq|_^AnFH^7(}lFiRK_ILB!6;VC|*%r6$pHx4CW*R`%+?R9g^7
z?wXRRcT9ErT4^bAEivY<Y06zwgCJ^-jIFaY^~E%Md^U5VAb2ckL8J$f8bsqDngr3J
zzt!2tY7e5p%cR2nt?$37-=?3H*)xJ@CY{riC*`i``>Oq@Y-)36k@mL~rKMF6569_8
z(Kd+B;?h2xW9k${yCB*J(IJRM>-4J(?+4LQc*879kqkTU(B7H5dgmaz1aZZZ>mQG$
zw(RH9Er{+x{L7&dM2{eP2Jw3k$Jq%%^bW!ugeQnTLG%scV>a)gsb3KNgBTLT&>#j#
zd$#W}DUq~+K|Z^rw|0;i2a8tM(ld=VkL4LLcz6&a3?3Q8hX#)dVzj|y1S(vzjtgQ;
zAAKnpAH)PB^`jsr3QrQ9Y}l);$d&LsX^KRr1~Dzj+ww6zh);v~HpssL^`ZWm=<Fb7
z2z)L|`^+G|5S}GkX^4J@8^f0p{VIsB4bN``xQfmdSisY|!Za_4`9XXqmJNIKTbsT&
z{D0u=OVei%!@?jOVt0zV44?I%XY&T(<5Z1L+Q#)ih(HjljMQKd%Ys-Qgu?7Ur-g!0
zg9rzqiNlg0A_7sv|AW$TS;C7%7aMlo7s@s)mFSWV`m|jUMD8<bdyeU|Y^B(_hfbwz
zmes;*g1ogGYlGZYSns+`qU%K&-4MjacWhX07UPnudu|rpBD&Q`omnkrdl0__v4b<N
zslMX<CP_O*cZvQQ#BPB-qI*U6iPC>wy}13t2Sg8w9x_r73mggJs9`x4#2=USLpu?~
z$sn!;aXpArl6pFbGXl%kr~Sd@Zi#+&E(CFwgK&N7xgd&7vX=Iyo)2Q2J?-2?{d4D{
z_+Jve%y}e0`&EHG$#FM=;9KP%2k}p{)SF`bQ}mYTZPCAixD&)(VdlNZJ}eSXV7MQ|
z1F=6eQXd5|vSP}+)W3sx62wzUdKLtqUwbb6PZ00+JbGc|dMWTKh{f&nRpP%O-mt?J
zBr13tL^cIw6qHqvT|tbZpR5uJrcO)Cp&++{SmB%sdY!f9QgC&WnMpM#*m9POi&Ic)
zye(d`<WZ1UK|W!YP*@<pf&zx6pn^gM@2eSC#NeU|iWyv7!Pfu&H!n(xv6O=M1WFq|
z<7;Lwr=Yxo8VVrB3JR(zs4iSlK_!98qE$rMo~jCNe4-zFOMmhJ)%0#jWVEJ&S_*0_
z_$EP5wcaq-QD9<eX_mry(-<YxaV47-SQK<s&`m*-0;_^H3fd~LN%@TxG*OT&TvxQ7
zXnj!@+dx5z!3_l(DM%IY<=2-ohC4U1*%hQINEbW5X*WsHFVbZwXeyRw3YsfuAxwLt
z(%D-Iw=yiP6)a5GCsFbG)^-XyDVSf}-d+Kt9Yi~dGWx!PO-m99bm*+0i-Hdn{4*n?
zQWYyh{#yDq=<W(K6%13*LqSieqL*kt(cTLBDCjHvZm?1NOLTzfKv9-6NWox(hbS0o
zaQDQx;R;45n5p0k1tS%FsNhotpD7rnV6=iU3J#34-WX<WkgI{alYR3}%UA{D6pWV=
zCM)<@!35!tj4~%Gm?WG>#yM-BBGIV|cFMO?TBeER6Vd5Bw1)b4>oCkZL&4_?CabBV
zx2CaPe#x9O(t2xzl`kfprQmE!%WMT-D)>q=ey8Aj1z&U6Nc3BFwZI(FxuPs~p1`th
zu|GEZ-#4Nk#IjJq0)ea2Du?0kRQSY-J^>lr%KyGm`xN*UG!CIj2mu8_1$PwORiG#c
z@wgQ1QlKgbbM7eks8;%vUu~L#ECq`ckRuAB0;4wB7+tJjiGsBX)+t!3V3~qd3RWxF
zTf@3s!3qT{>2T7_==wqlo$A<btgsfWm%fIRBAodnkGGDk`@O#7YFH;PvYW?Q)+^Y+
zv83Q<1^GWt-N?o>dkrfyx|Zn~+l4dfwpqaz1q6l>;ml|q+r1hoKW#H_Q?OmZFKqTm
zbF;K^)EyjhL;LQ(RPR>>yA>Q$@VkONY#t~3K=T0wPwaX4S~iA#JnBU2Z=(A}-y~QM
zDj0Oda!A2p@jt=?>|#I4u~gNvW`mibe>C;Df)fh<RPZ3va#F!51(y_D=23LaIIZA}
zf<J`w<Y-LGSq0}LO8&Bo<-G6((TiLg*PCe{onpVjg;BwEPNfuka*F*LSA!J$*WpZN
zp#zOKB<ZH;lf33zoNmo*Y`|>=e<?UPIGOhz56iUOQ+QuDR^Cra4dH=;hg?)c$QQyR
z1&<XxV=n$GY*Oy^;>5oR-OW!FJXOFbnOgE;;@JXe&lS9o)CGxo-q~L&cqMNCioRCx
zpTHXh*+R%3(o1-&pjqp90z*s)abhIr2q9+(xg?r9gjj)v+%i=>TNSaz8=iSW|0^MX
z2n9l@6T+-Q$pu3wBv4hfa0ul?s32S<grXr73!%6~>0CyjL<l7XN{PN_q?Qh$Mi&d+
z7|MoFPV5afm>6x?#zw6e0v`q^RFb61qE$re)^1cSgwm5O)g?-w8X>^ongX>#sBKtS
zktu|P5bsvik0RNyn?tY&Cy81OyDfxv5xpgK4NE<N`l1a&ND*i#+DMen><YdqH1ScA
zJ%qFnPKIzQg!B+HLb!X;{BsCR*`*=$3ZZuh%|mDr!uug~3ZZ2PtwLzaN<-*6)BJUr
z64cfqgiqPqh>lOTv=5;}2u#X;Bco#o6>ntF_~j`(eZJ{vZq+iLp>qgbLim7%aG0I8
z_Xwd|2=rlT%+;O4U`5*X*(OFAdWJBgznSIq388NY--PgO2>n9nAHuy-=8r>oQ@}ca
zN3_T^JcNNPIhabzAh8b?9TLLO5Hf`eJdYnHK%a-TEF(e~DbWu@7#reEzj|q-LKrPD
z#_-(kt4{m)5GERy2?8I9Cd|#p)JY*sHd2f3ik}j~)DR*i&C|p<Q}h$j=^=b7@R=y{
z&IsXigR}37|3Y|{VVTX&G59O?t-<u16T;jO7KN}l1Rl=35Eh2u2w}eA^IZtv3;$qP
z7H~H0if5%4ikO{Z420k^Qr#hVguS9ZQNNM;?>~CRU<gVGp%7HDM@7S;nrK9no@^mC
zOQP(h_q2p1A*>4FU4JeW`!dnxqANmJDR59KS}nXLgdam#E6mc?3#=1mKW`A&Xr%rm
zut_v}Gk$XjTSC~%85+XD5Du~G5Pk_^ZwUKBFs&N0BZNI6{f&`3CAv%W*ANb`>APE)
zKsV}XNAho65+@}mxT_zKEc-+F_(yxy!x>MPW^Cx1aadAW)bAl23E^l6^J0>l6t^A=
zfj)!<=ei#c;e_Okwn(QZOFJFHnGmjoaFx?=vgwZymd{K(8^XVB8*Cq%dM<?XAza``
z@X4gLJ5w%&a8Y=F@w&8JX1DB2;k8uiwGgg{xbc?lNeDMWxXBs)z;Zi;KSTN_`-S|L
zTOm9yY9{;;lhmk~nW=w;a7Wzkiry2wFUr&h98toLL?4U(E&A0t3mu+v)P)lno(cRT
z`aFae0x#J)&rPp{{}p{L`k&|<QRd~vj_fL8RCEZVV;DJ9<Wy02rs)?Ixm4s<(NV?w
zDq>Z{srrFrsEAjQM@9NMlTAfl75P+@RZ&hweia2&lu%JpML`vXR1{IsE?>fip*DWf
zF%(wOYM9NOX)7vrCKVGXF8b}_#7|dPN~tKVqKu07RGb=^T;{xf)56I9e0ZTcd7ry_
zc@-5@)KpPRMMV{rRQ+R=#hw(0$||a;sH)=WrzWUifz?#~#)Imr{>fWIl;x0FChfIV
z)KQVB!mOg#z~t8M>LwKlDmHCPXY+EsG0|vIvDaOl%}!Eru9@C`EB!NVU0pHMWOkSI
zMm-gcRHUk?FH!bS1A!D3NyW_#g-;fZqrI_knrIVIyNcGi^VQB}Ntfusn<i%A;Wt&$
zOht1QEmX8r(VjhXK9Qjn{dru{MeLcj(jK<9owS^7X2aM69mL+eZjE+zYjjf4S;Y@3
z7O3c=;sX`qRZLLPRYf-ygH#Mw(OpFk6@69oQ<1zSwx^2T90qSpdOxVh9F&|dM*<7)
zBOOcVuVR3Tf#Sm&*^-Q_F+6eGq`QWw7^>n!6{DC}#V|Q3BUKDnF+#<UMdH~11GZVH
zpLXj>Wr57dr=Lcv7^`BOiZOETrcUY0)J9ukSp~ySMdChEF;T^rDql#BNh-g+V>+9p
z;$sz4q@B}La5(K<nn?etDvAzHPB^YV`1XmaKVWrjY2s%pW~i8{;tOf~=W_NV;mi`v
zlbDgM;+M2pDrT$T=;eXG>(Z}Pe4}Enig_$w)xSy35oIm=i^S#K5=+Z`&YG2p-*aB%
zNcc{gu`Qg*GI<o|Hpebx15`v*L{&IdxKtbt+5P<gU;Mp1WT(j^6HOhY|L^1z3x_f7
z0Tn?Nii(hmunJAurmCPP52|-N8++-%fMhnfo>OmsmWoB}XBBHzELO2Z#jB%<t5qzO
zjLTK5P_ax}*kFr^tz{uACAvzKQI2+Y#TSoFYxJeS9)BZ|lVY8UjclQc^(;r_MS07E
zB5|~raK&7_60=Fg78P4*S9$qZpL%T4@uB*c-fhzP?26(8OR(_m66JGqJ5=mcu}j6T
zTsOif6vl29dsJLkaf4G&#Xc1mR9uv9`Ax-s6$g0YoY_}TNoF{x;w<OjHOnD(ruZBY
z{awXT0e0gtfrq2?AN$8uoG|Ps1x~3rt>TREADkWX_%=P=Kj}}!o)i0d(NM40^MUkB
zDy~U1I3oSBiYqFvs=P*!{>7?vT58NldluEN$=+1)r?|z1aZAN*;T&Q7CGbGSLlt*~
z?}{?ZJ%Rh8Y%LG!k??C3j|Ki#@kHRMiWdUUME?<G3D4PGb@kdAUh<3^_J29Szt!#k
zNngDYeJjdZvW1a7toLDzD1jYI=bT}E&CeA^Zh=@)THbY0d>DDelGm{33nRb51q41m
zl(TRcMZ)?w+h$?@w~u0B*uqE-qj(r4!l)WXwJ=JCQ7Vk`VRU&^|GV7Q_rfS0Mwu{9
z=C<~}YAqW^Ip+P@l-eoh6SI}uNmNO(5-Ny)#V{%fR1Sl7mcURY43<Nv9!8BYf5svq
z421DG&RQ#s+F|g$$~D7qG^#<kmdiT+dD(NPt##P2SSuk>iehO=VVH$qo-|nm_<$Jg
zR^dlOY<0t^7e;y*8DZ29qd^#HVetJSDPc4Wqj6Y&IZ2~1@}}CE>&-%Is$_f@Z6c}H
zPnzrkbl~pN+^yrEWo2eGPHq~;oU7KO?aEX>X=^SW*dmOUVYCuvf3_89E!swOTc)|4
zk=kBhd5rb_Fgk_x$Ju6w(U~2^y29ui#s^`za$0(_J;&3!@`~gv6JI^oEsXAA{atnp
zJvb9XiQ&zBc`|naHZ$}VsOdBH3!{G+Q`w%5)&XG*3}bv)-%)E&7=yzY7RGRi4iU{1
z9V)t~Nqon=W#~CVq8m<_#)dIcn8ptUMv0CV9m6p&$j+oH`O1tFi>Fu`qZ7jTD2$0=
ztT)>yh4C@FI#=V#5~Zb5x}EP*o)X6Sa3-S__nW4L;ct-oiRkn&J{6$lvoK~D{COBN
z4gMmGSq4AlFZwXP3ghcAzF`}}SjK@g+xji9;j#~Tn!=bH=1zQ=AI1-1EZ{KM75iNn
z--ofitGV}sM!W9!U3|aq#BvQ5O2)=97Vc{2VEfB8U^yM;n%!Y|!qCEqgy9Xt7ltZ%
z>6Z4Okw1(;7<}+Q7)FSxQM)4LFqPS<d`VT@&-QQ_RK8C#8b%gpklVais+b<NFAC#f
zcJr;riPR-V-cmE|pXE(xcqM6h7%Re98OEwGHgejAv6_Qqm2FvO^7=5=gz;k->&7Lo
zrP61$ZFjG<T)or2UuElX)4G9uzQz{W5y!A8jGsAXW~coUM*CRn<}kK|u{Dfb!;*JJ
zV_4ueo~i5Aw}-JK#ad9yjGVC^U1i%5#!hx=X7bpTwq5Lj9dW-(nJjj97<&xfE3i+r
zx|Vq$jDtKuQ3Rqm6vkoJrD3avBVionEY?t0!?7@a=kV50RnrIgaeX}CLKrponNDzA
zaarDy#BeH%)52#&{}4SZdQSB19^LIC=XDr&IIY6C9LB3(hF%NfdKg!PuZq(6{bJLA
zT*)`Wp#Bxc%`pBHz9o8F^wr|D%Zt<K&?<K_^<EhFxyEXU)$o94Dvakm-C=Mukw;-X
z3*#T*$D)6S@kD^BPuYNzCIZ8>*!+#OOu|b^-LSdxn=qc98vH7Ze+~cFVf<$>m+{A|
zZEwTKrs)+iWY-WQoI^CHVb3KnCpLeahIkDXHB{1&M?+o>BPJx5m(+Y3ifSk(oL@r$
zfr1(e30#{WS6HBk=-K=A-_=-LqGdId5GX0iq*5B*6E1C7%4nDxwK1ujSl*RWK|{|q
zHXa4-k8fHJ&5x@rsakCQv6hr-8k~bI)iu=6Fr;Mi@hm&<*n|d?hK5;*<eKd5rj}Y7
zYHO&Yp&e2fW#H19pdnGi%O@tYhVEB;Bx$fnlooE`Vbx$0JDGtF^)%Gi@U4b98X9Ow
zVQCuLvmy<R=zP)AT0^Ra-?CX4T5_NkN^7j4iH09DtPFMyX$GeYWN2tA(9Ezm7igj3
zli3z#X(go*p0ti>BUP}Lw#*e{epJHRK|@CkUuc-6;e8FAG>p{np@z;Hx@hRFp^t_S
zG|Zc0@1gM)^r3{V8m6?#=*HvH@bQ%)WOw1}pO3Zo)bM9(doK;o+hjCplhId0KMk20
zhH2=pVF3G9!%z(aHB9ymr9-q$8exz`2eZ=ERz|yMnG4!vup$=aX<=t|McZZ!=lC&l
zF*-`aXtseTTEiG=%s36>HH>9PwaMstb?7K9ldVd*I&^}x`6CT0+GMb_i4vV8I+=|Z
zU=~(4jol@O`MDUUYxqp#gOK_mf6Bpgbtv1$gJqN@Gs{eI{zl8(zc-yv(#_WNN9w*3
z{Zh0Y9~%1I^tFa>B+7^E7@f;p8hjf38s=+wHpK4KFzCAJI}P76bTj{;fuD2>H7wBd
zH)a=`ZerA-p%-_9Jz=7{#GhH*8ax^<oJ;g_HE5i%vv9(zS-tHS&G8+q0S!S7ipJZ*
zu}MSo{$^D}Si^Gmg9c4QL_?N_MH=cYPmgN&<EXXZxESiZ3Q3DKEYYx3!!kCtLekUR
z76!tC(T&u&jBdBBaX*?@YFMRVord)qR%=+pQ*+z8mZMIJI{3`SV*lVvfa~-iFe6J~
zbc2SC8h+Anw{p_Prk2LHt=T*EA^*%d^^1v(+{_MnWvX@0v`xcyuE`Pn9>Fgfc4(Ls
z!Q=>bYS_hfTf<QeziQa6VIRjf+ga4MNXy(q`@@XA?7)b*{OshyXA@u7@4H{aA-cJf
znRGzILH2yZ21SossZVd%53`r*Hel*84Zm|xovk@Ig5w%aXeb^*i3m<=IK|~Ff_xDS
z9G-YuL-}f!KQ)};Fdm-xhlaBn&IvPmMZ<Z6FKD<Ze95p})=;f#GTp8kmTLmnHQX>P
zH+it@&GfmY;kJgqG~ChfxJPOpsr{~oR~r7+xP=z(OO^*3{?_nB!$XNaGRk=@?PNJm
z#q!*+KhyA!@Py)eEiVlF%Xjc7k;d1;xgz*a!y656B^o0Q$R<jk>=9h7q?eGxu;h%O
zR@Ee0a*HKaG|otkkDyOZ3sZM!nLM2Q5fq4E_{r`?BPbX_p$LY(%{Vc{Z0nKwu%o4L
z1eQ!Q`?*L2b&I6@SE*022>M+xGpXjI#F7z|ilBj%{9Xj5Bd9N2CW7hBxFL83YbhH+
zIWd-xplSrwBB&tIilUW7D~r;(N(4jW^_DYKk04R(H6lO+HHGVl)-wESN6<M=KX#L0
zNr>QJef{XnY<UDpVow&e8a}oN%tzDdQ`fN66R7#VrS?b3+yFWyf`$?9B5I;fqX<$X
zXdFS42>Kh<*&}EjK^w`H7D0Lh84)x!N^228GlQG6w@2wMY-w0pNpI8AHp0sg=o&${
z2--_(C(#a~9S#5YBY4$8FQKzox`=*Yq^_^0cUO0b_7?3CK~E#Km%y7ib05RfSD+tz
zM#>DNCJmrPj%!c^gDp*i<r}a|hwwy1kQu@1izSD#!4aHp9y8t)Ga`bK5loEe8*F_j
zIx2$E0(^LUi~y6y3yc*V7r~-O^=X`7q<$noBeSf%Sn}ftrbMtl!nFcZBbXM!!U!A@
z%w28$B!bT(c)Y|sU80|g+H$2nyqh*7g3lwE8NrF-J-&!w{ANqbWdr!_XjTNXBlt3+
z{{)^Z`jzO{qTh%z>05z0qB9P~&l8w0`kg3!zK`GsgBL{bw4r|cr85Fo1dAhBB1vwx
zws>+@1RlfFE8vU3A3;DkC>j=3A_zq=DM2qv<?;Tm|GL*CDIyvbrE$)}?28P(9JVhN
zUdKuL)VwT$<q}=N6BNOP@s^c_=c;#ZbxN>=HNroNt`!|PA=i>$_1p6{G8(~eV%!wL
z&k^j4U_|k_%@Oc%#VrwR6*#YD@*$&b5$uUzZv@-LpV@zjV2AKd(OsgyitZNG+y5ed
z`Vs5DV`JW4u=05C1}!XVzma-?^Hlgygtyb^O*$;mBcew|Pg`>x=lSJCjv^_FlM$SX
zAU2A)C{9OkCW0Fg+~nxZoAgHnmm;_v!C6jQv7BeOMD#CR9Sd8xl}x@U%;?l+mMh|L
zErRP2Ts7>U?=Z2PT0P5CySftpjNn!Te@E~ng4+@N6~P_0GlI=tOJiS}8lOD%sr6n2
z+`I5W1P=x7i@tttW@^DC%b+QZ9&zYKaOjwc;oGuFPa}91L5?VLM)6Ms&m(vd!OIBx
z_Ox6qXW6&h5|b^7p3L})ZCjT3Zv?No@<;GSqS>Q(E5M|Z5gRpI6f+O?A;d&=|0X4@
z)Lc>Ij`C+<;?K^+nE2!)T`eg^Qn}Y;d=z=2$R9<!arO9EMBXT#l`#{%_iXv1aIMPo
zV@XSaC<;bVD2l>SBt+4jS)=;Xorlw{6{DaQjiOi-#iJ-8b|#gHqNKs41m26Hv|%wP
z<)KemiIx*BFIpkWJ-hXtH!DSXbk@pIREeUhk*lUaHPPy#HKKr#I(vDUS_an^s1t=r
zpx{sX=AnsE+&N=4i|!q4dvjI4`^y@|7g5ZL;-~v2TNKGr)QzITN^89+Qle-WMdy{)
z`cX6x<IYvqL948dqDYN`+&hYci>-}W1%J10Pizu}J&Lp_(j~P^6d3|7qG%aKQ(@+6
z7DaP|yV&DfMbTQK9iwPt*xN<X)?oUyH@HI-*KDaQgyH=tIvMuPQ5^llOydWJrE3)3
zgu6%4L!hT<kv=tQrzO*KNKgCYBc?u4^o^ol6#b(Z8^t*B84$(LC^DlMDA7TpgGGmk
zGJEYlHHI1dVHCrKM~IFz?DQEWJX&;&Vdqh>gz-^Kj^g7eCP?%n(TSpyMCrrhnqu&$
zQT}GsGforz#IR52_@8N_{WHTdBZ|)ro*Bid$9i|o=Fp1b`zU^3AAW89DvEES_%@2K
zB}z*uF=>v$^P-q5d~=e8N%MujV=wi#^eSfVmS*P0xLs<eE{I}b6pkpIQFx;`@Z3E3
zy4e*4)g$VTqU)?QMj58xGXGs9$rr`L7#)I9DD1Z^jL1SL3YBv(3k9+ejzZ%RMUgEF
zktm{3+=$|46tyCWSy8O!K;<I<Q7q=!|IEB3ie*tOk78+5e`6BE#Ak^sqF5QlDzT`O
zO_N=wp-6g?PfzXmgLzF9KSr@Oigi)!j$%&~>!a8p(`0)T8wGw6eg3uq_a^4V*%Zak
zV%aQ8%a$m%8oVuvT|@QVb${VBS!dfJ_MJxRt|)#rnE(CmjiOw!d`F`=7R5fp{+qyl
zcA&sP(fl)$4{>cVe2zr%xMn}r@_Q7=#duNlL=<NQPKuu5M}WYYDE<&&mIc}4y*2)~
z|L-|5o{!>!ky^Z6Uiw^;=w;C>qE~s+1+I(Ir^~0+|BT`m=fytL^C)gd@mCZNctW|P
zM6u+rS`7E1xGQ|_dgFJN`x2ezwm#w^aCPM(AI0BMJc*)m&IV7}drwUBx|o~2GE<Li
zO^jSj?P^bXv^sHl#gvCFQ(r{!GKyDG{L8$(lix(~I*R|Iu=Pp4^tGLq(tVO6_hT6?
z+b)BeJqsnuTKGqCt}O5&wU{jA5XdPyaZoNAb7vto3vpQ}R5Xd6@mZk0<2+f&D^XhV
z2`rssDww4|?N~Jn)tDs<g|kqETExsyT%f3EG11|!*b-SNDO^glyy$zPrA5nRp{xK)
zD3`^Tjl>cvh^3-ouat$#23N^K&QJ9kt7oA`7W!xDvjADBnT4iVXqJUqS*V=_a~3RF
z7&FyWCku%z)?^+$&}_;=LKYhTm)LZjnMxxyDGSytG|JL%h_z)QIg5WHVf|QJ-7Hin
zRPxWmL+WK=YFv7r^=WY#ee1KYGWs^iLW)44jk<Bx!c=N1OO`^KWWk<=v@BGgkb3S#
zBNjXIqV?BXL(;R5kp%)nfoDn0v(O?7{j&6%wOVHBcYk%xLYFMePDyPg+FG<t7TRW^
zop5{64x+85RqZJ7zGx>=J@2%t9~j)1{qrQLt3<nHp?em3Wa0g3Rq57KjJ-sAi}n$H
zR{{$mEPR`X*#}4u4-_3F$_^i#g(3fssq27_qI$m&N(xAq-s`1ovYXu~0Rl<r2nwQ7
zl}_kgiu5jBq)C^uJF{(OyP!xFM3i0>5UC<fq>G^Nzw_~%bN=VNbI*PE``-8ZWV1W-
zMtFb09KivmwR5qg!A=Zu;)&BZcV(y(!<=wAp>Rf=7~#YMCl)#}(uq+{jB{eV6W8BM
z812NzPK<TppUpXAB-Fl3xyqkQ>b)rb*h$OLrcEbsBAl4w#8k0P6r3cuzGm*pLhS!K
zzFcCN=EUaDj9<#8bLf(cyRT<BG1G}z;**&#d2$ouFaB&N=7=&^kjke*<~cE6$cGD!
z&)!|vr7d#eb0?NLaXKM+u@g(2_{@o=Z2vy%D9u8Vsnu5dawk?evBrtDPONldmH6|G
zFtmQ*1k-9!RyDIRQC#Q5dN!4pcPBRR;_t+l9Ho*r-zP>)&wLBrSj8qMs>LiM6vvcJ
z+v<eVY23@f>?=`q!p$*s;twZ0+^SCe?8Gll_?+-NvCE0wPP8iE(46?ji5<dqj(h<}
zz=@y}At%DzK?NM!MT`hW1!IC=3DSR?6D79fkbKQuvnq4S%PjJ5DF(}J-I}!1iKqW%
z@g>xwZ9Sgl%G$$inB>^!#CJ~Yb>i58#O>ZpTBjvB_B(OPiCew89&loClH+@BoK49G
zo%q3tL&A>=QvA`0pM)Pal_OGwCZ=Of95?k7PMj28KFN5W`)MxGo2h3+=|3oe%2_8L
z-L;-`;=B`WdfF~dORJN|_Nx<DcnR`bFF5g=6BnJh#C0;;dYO~;y8YQBo1>_mq*A)=
zs@-~3Jn4K*$nS!*-f-fk6OYYRbW6x>!5Uj~?wI<YPTUp#m#N$na^HyuLLLe}GOa68
zb3dPvuU)IOzeRb<t>MHoC!Raua3Rfw#>F%Kb>gKHxm@_qiHdpCsJ!5XsCdTO4qbD*
z5a)u;g;W>rHO<K5LOB;!9I^80(Y!9?b0NPA@h&8|P*NNc1z&TakdP$70xlF3!U#zZ
zYZ42)P)w8}f<*;uWf-R7!b=D;`??FkW*H<*rCca2dKuGN)`eH4%8OFLg^EHdxlrAO
z8ZJ~eJ*&7-Rd_X1sU|I{DcL%LwFDtpTd-0_&AKksbHO56wjsrZWRt&&V3lm%hc%hC
zJgmuav%3&EVkLRQg*Rn{Te?tR$nC-z*+SA?Xdr}c4P9s?Ji}BP3u)p)rm1APz(+Od
z+|-3;A~tt{(OS6B?<?!rpN;C6CAJc4YZqvu($<A`RNQFd#@jBu<H8yRYZbJ2p#yaV
zO%%NALPr;FxNy^j_gr}2g@rCGa^V9PI=L{!#TVJ5vkP5ZXx_xeL$JFt8|G8T=;1;)
z7rMLfp$mP>+nGXjY{a+Q*xJr=^kmyy=<h-=7kaz!<^GI5F3hfA?<@TI_0$1#97eXh
zJ;#LsE=-*5AaD4oW1tIzT&R?oHdw;8Eua2vjYh77v|%m`ci|Iyx-i0pkuKyekp8g?
zXkTuW3un{P#|Vyg;n#OFm~Gy^9Faa_T^Q%Wc&??Q858)V?ZeJ=U@Gvh#a1b6k_*#Z
zn9g-xDQmI|Q-qLDbz#g+8_5h8X1XxPg}GwN+>%3a7W?ADDoX<<x-t3kee|gd^IRaA
z@4^BOpf8J@_=+rcVTlXp**q6Mb783qN7$DgDW9`RF6?vRI~SI7f4LBKVYdq_8Q+DN
z3tw><``L>uEkOLjh1HxyQP#S!$%W0r*SWA>$OgfUg7p8A4;S~dlWcKetBAUwQ_#nC
z<$~gZDp`*po!#v6B^wEom&?X$CGm?@`+q(Z0~}RRLN0`bM5O(%$__7*O~M9j6BGOO
zO5ZNzYZtyTl^rg8Yx12g>@xY>Mb<qo>~$fjNEYMNE0oQc`=wI{UHC!V4!H0=*G3V;
z#Q2A}z+Cvrg~KlVD4x`-)HJ%o1~3S%M_oAP!f_W)xbO>?-xzDNOPMEKIPJn27vEE#
zaLR>`w&dg;l~wOy{MQ#V*BnmynX70^4#`>ZKgU@(oWg>{3ohd>j%zOX^ETsIAHQ+a
z^-R9#!X+W(mtE)?pM1rIt3sy!Yh`x#bldMPw4ZLh?!q6O@#(hRn=FAht+%*yU3loi
zBd+H|nRi^c%Qe97(`H%!bfMu(%b|mozqo|nv@+cja^HmqLipBKijQ4*!mFi%GK%p5
z<8K%Kap4&+%j+#qxvArmNS?d!FE8B+5*7UC!V6x{733$MWPiz>r65j0E(O2rw0^cF
zXL3er9x>%r@M6A&J{4bDE6%ZzF!4tpV!SvoNRomA3W_NxuArcT*Ax_1P(%S=hWMg%
zdLeOR@mFPwD(Fx=iTvFq*7e2hB@`Z6Z@U&>@^x_|FR7rEf-iowu`H2wl~qtqK|=*w
z$J@&*sGz{E;AzBOQ9&gIRs}W%l@-)HYN@TDj)FsHtyL6M6{VUWP1S|eAeu@o1rW|V
zc<I2zg2cKa))TY{CJUx0n3}%<9a5zV)>UJKtzIC7r5p;<#OK|z1sjjBy`kVu$<n#L
zkaWQY3PxV8O>xM0dm{xI(j#{2<#2nZV$Ap`1)~*YDacmPR6#QZEfus<&|JZqZnh5H
zGI+ZSNehl}DJw~91#J|(v8!LwQOjEj+A8Rwpr?X`y#G_dJG|@*e_KKKa0bN^T1E#^
zI`OZ7g2yv09VJWCdqUn9{D5VTrBLjwpi00-(nUd61>G1&96l2KP;mWZD;=ul7?t)?
z&|AT9&P&zIW-T3k6!cSYxUa3M#nx9r=E)3-bnCAmN5KHjQ4U@O87QF!2@X~;M95G<
z`VTXkvGpzc2nC%zmXQj0NDlu6R!(M(Q7~4)I0fV%^AFq(dund`cm)#_EK;yo!6ynP
zD)>~vJOz^!Oja;m!3=tyOr3SM_7qO5f(PeoPg9Vdug>c&8<10<sbH3Zx#AWc`sT2r
zb!RJ>BiY{b9laaYSvfMD(HMlKi1QUJknBPhJX`yf&PtbvxLm;s1)nKcs^D`4%eaiC
z)U`ty<<})M(VuChIDa9yN|5cLzFIgdTBl$=caVyARkZoazCpo01>Y&y$bH1c@Rfa&
zf|!CIJ(kT1ws3(d`1WU;s=zJ8Dd-YZ6pa5bWpBF-j{>iPfP$a`-<F)8eEob1{0dIy
zWNQk_R%xaSKd>c-R%YoCQV>=U5uI74D7WO69O7?Va#-*y1=|$xw#n@ZzEQA4!Pk=g
zp?Dg_Zx!rRuv@{N|0nKJP&>C_W!fwHD_mV6W50p}ya=c$ui|?J2NgV2@JPWA+=&X#
zDmce3EBHyl2{wsKj%cwTQE-$zAwN(4Jf`5*jI^;c(jo`rk1IHmWp8>bmC7jvr&%zc
z{bvPd6!fyxq%%MHU(K?go1Og&*S!4Kz#!)p{HoxJf~yKHu$u}lD!9b#DNFCvq~R&{
z5-IkYZpURQ!XV_u`e$EL@VkP03hpbouAo+G(jN+V1L3}~VU71YZYa2^pi^FZN4Mja
z0^)7KJA!{IxGRMEUqV>jswQbaRxb5`+oxQq!FjS6=dpq(ybh}<pyF>%go2m6n5+0l
z!83(l7vMhy&v}XNpG{=qosHxN^4ed}y3K<8cJe1RO668DF4>+(MP3zgs&T(!K6ld|
z$@Y9Ip3KgC)Yp+;2z`vktKhNu34)0#jvY;4wxEjFR1{NDTty+(c$$N$h>F6(yQJ88
zKV(rAu0<88^X8utDqdGnN=0cEWBO*WcX9FdlB``?SVlFjie*(}7D&3}H|iy+prWFR
zhAJAVsHCE@ic}SL6;)JJRZ&lcMMX6g)m1>{S?j1F0c)zL#kTd&eii)dWc#RnrI@Xw
zVq3Pot_sd$vzO^qm>$)$ugz<J&^RqwMT!cmib414+oTsHd}xb4Bn}m=F5BNw@ury4
z1Z}USS8tLw*wLlFigY%hU{>09*$q?>nOHDGMPn9J(ON|l6`3lUsc0_U%o5BN<S4P@
zO{LAe6Saki@uxFe$^g<7EL)1%HljO|?d>=Y$@aHYw3TryVYMq3``aqsk?hO*UD}I7
zFt72&Y)2LEshFu^mWuaPe4t{4ijgWhaYA_yIcHx*XW`6t5z<w#n+j!vogzPYe59hk
zif5zkJvcreTbX*Q=p{V&UQ2HweN^-n($Dna6SX-i2B;XQ@>ijpK`I8T`1M-Nsje*T
zt;``RhN>8*^4FpqW{0cr2Qz#5GTU#>A<4SZf0T;Rs_}7Xl8QZhQ%`iZj#2TkC}UOQ
zDfkJ(#|e&Cv3P}r&eT5<>qOP~e~sD6DyFE$eXUd3i@DZm!qem9rb~7PCw*Cgn#-E@
zjw?7@#T>4DZY~vbReVZM75i1pQ!$^ls8}jfut3EkR;Oa2WI4z)PsJ0Lu#}KKTjH4g
zT*WdK8&!O%V!4VHD%Pl2t74^!RVuzvv06o9=ZqE2ZT$Hx^NC~3Bs=-C#}48;`Zu?&
zX9UT1dujM=P;umrK{lz_tYU|XZ&hqjG2yyVcDstL!kt_;LKF_EiiuAgbWl~eRSemh
z;}KJza~7`<pNhKo8__{ip{odp7!eE#(i9RB7G!&(Dq<@7{b-}<D-qe$Z4#Wy*DAh|
zehrM;s1GZezEj066?;|eQ?Z*vdd<-HaN#|1Ea=#D(G>gnMK)*AboR0Ed)YJ{;Kg6X
z9Tk77IH+RUjLc&yj;r`V#UT|xs`!cHz>!~?_Weog_}8-zt7y^J&Qvrp>&5iUqbi6?
z((NZyoK$f|#Z?ujc)3Wj4|Y4wazNH+o|cI_qvB_C27eLq(QRWM&j~-zwQ5=~2>DIL
zMN_$?;<9kQLxe?`uBn)vZNHz_xLN&o71zc3hu{sto3H!@Zws>2_I3qkEwkKJ@mK}V
zc>jz0beV<ep2}Mn4F14W9twHHwY?*O`t;g1;!|GydF64VjvLQZJXZm?aTfQ#D*odo
z*Nu{HyioB{MZ6mcZt&*YTyErXBd;5|B}*la#p4>2{4pWX-LoP|J~#4<^`}c+hHc?Z
zR`x{67IP!XjRL|8x>3Z9uQkVOZWMC!1>8NznF_nna#R{gQL&QD-<nfgij;8keh)jX
z#8PgQcB8TzRop1!Mp-v1xKUBu%DGYA4gSevOBj|}@;h7O&TY-E<OT`#o8!}}x=~I1
zYYJ9(Bdt#@nrcWbEJa>RkPRRoawg-er<S^IRQ)5pp_{+U<kWM+;zqI?DQ-Ae+zqQ6
zSI_l}Zp}$`^R15kZEmdJnv=CO=lIqfyPH3O<uLn(8*d6vccaH}^gq?V+i=u(<LSFr
z@&;mRw6OonbNzO;cQkT?m?2pDUinNnvfTK>i`8CayU~<YdtmjTncMh2e5o6syV2Z@
z792x2TDkF_8}GZ(+Ko1Der7=aiIyK>eap>rO3~g8^0scY<5xg#46L1Tv}H*uk8dTs
zIGJ&|WNK#af*st5Z<_J08+QxXNzOG+<*jiaxY5atX>Lq+qq7@b+!*2JY3JzbMmINl
zyU~aJ8k*f*(DJK;{6pa%3HETKr;uKPO?G9`q40i3U&#)4qaR20S4V$0a@-j3s>smn
zL2RMPTiz`{*yKap7;5riZm>9`jh$k|9OcGnHzvC=#f>p;eC)<Vj!7p+9%s&2H^xaV
z^kkORjdx>G-s}mSuQg3S;Rxr=rZ~xs{`WHJL!2u9mQD`#k-;lFb7r_P(~UW9#HwU9
zbmq)*W47>DS^oP*GM7!#vOaYi|8+9Wb7Q{A7YJD>xX6vgroP0D&xB9))MJrlZY+1>
zi5q{rvBHg&ZiL(jyRnLmbYr6%U%IiH{aSC~DUs{kDEgyqjT>u)-2c(S?0Pqv-L-7s
zf(%$lDki3Ha$~dG_y#~1+#=`{-0C)dWTeR@SrSEvD(H5@W9nWZJ~#ZPqPej_$_7j&
zC}ikTON6VMYiV8bpBy4LzH;LiH_p1T&5iAD9ON~Jo1K&LxqX+LFEBOUwe*b}JGi1Y
zC4VcpQ?Ob;<2Tkl!bvR4?0ZeVPsn$I``tJo<a^WlQ|$tWxZvFg*czO18?S%*iCZbf
z{!x-~`918$5$<$1j*0&%!Q+A_%m^pBu-h0v<1(EVk<az;--n;s?4RwoE%tM6oOj~}
zH`F(dNx2h$m0GT_7Z&>kUf;|(7lm9Byv(hq^=Cl;Hp^8vu8H`&>3Q9aKZJ8w=yTJJ
zTW;Kz_^jfNkTtr4eBo}#T^ZiL1n;?VpDVLaG6(#DC?pSsJaXf)sT3Mf=BXS1@M`Hn
z1rH{iu<(hVXKp;_1dXx$>qa8QJNEzhCqR^!Zv5LdKCcJ4Jch&B+6lQmh!dVikm80u
z@%e=3H<frH34%R-%#-9n0S^j#@R|q3JSgr#ArA_BP}KDQd`f%~53ZEV&tqrWJ98%4
z5*W6GSWBBeuX|8Zcqvn%TN&YH1<MKkB`3C3^kDhRlx|ZjRXx}ovsCh+GB235ZRAzh
z{_ISWY93Vg;Q7te8Xmxd+QMskP)i8)Xm*1-9@J$hXHK$*zftD2Ze*|LL6JYZFj<65
za^_^#&7gzLgH#V1d6D6T-2;aQXFT}XgESA`@L-n*yFGZ*gZdtP?7>(M(mmjTemy+s
z=|KYz8nUd%I3e&|(K9@lzTVQ<gC-tidXVKoTT!w-XzD?84_ZhzwlbmcURyKaeFoW?
zT6*x7nQi4kYvBylhWc+AB+0GPi0wpwTksvh_NHeCAvK2Dx2{a+DEvJS-uK`G4?21H
z1q(hhJ-Z0$D%d@2Vc2f3xZsB#%zw?Oi;14SJbZUjMjsFQN(Xxjwkh9;)_xxJ_aH|~
z`3BnucyM8${oqY2O#?j`<iTJu4f9~Q2SYp<>fzgL6KG`%iA*Cr80o<%aieLp2S;i(
zVjAPYi%wauINip1Fy4c;9<1Xc_uvz@!2=#2)PA^qqLh6-PX;+XCwnl(gQ*@&^Wbwa
z85MajSNIGMW_rNdXGwOB)H0jXeb{JBi;;F7Ci$rc^Ed(?ED)d1JXq+#A`cdOutXHL
zs`$f395=SG<LV41|B(-uiitYoEaSrSV1+2me&NANldlqTcC3B1sjLwa8fIV5bq?z`
z54L--!Gnz)D-Sk_H7-~3X460D!4~0LJ#c#9GIfs-MNk!Vd+^UdV@$jr_(bu0pbOCi
ze~=Li2&dbluN}mYWW$0H!Kh$N@GB30V$Px4*B*SsW$%GDz`nCp+V8b8Dee%T;x1#k
z?i9|U+vCAr4~|QAp9kN0aL|JvJlM~jm1F<j10LPU^GFYH*7&C29Q%mTMw^)q(Zu!O
z;TK={$pg;spRF=q4zNFJWjiX-jtSE92cJ>9KCbBrQBHbriYs%y<urG0txV1rm#cH2
z{TC0;dXV3XcrVU*aNdLa9z5{iSFT$Re)r(I2ful6kqe&JG!J@rD1B{>?UD!ghQyKl
zxYC-{GvTTStACEW=E1p$^}u(w<0+2*Wo&<VaKnS!9^CQZCNCNvq}^iiIkv);9HZ9Q
zo<B<^`O|~D9{j~<yqqqwyfP6F4L0Ib>tXY!I39ZN$b)}9_|JpK9z5~jDJPLz?B}?@
zIr7u3laD0C%3D+ZwLbHJrRLZYo^$)Gu~pk<XM2wCu)gr%B`-C<S@L?3%gY{Fa(fZy
zHU0$jZJL(Hi}xm4Up4GZBjfa{d}6vc&p59v!HYyMDtl4IizF`!cu~rW(q0tw;x#Xd
zc~RVpLS7X1qKFqoy+$ppnq?>Uv5!u1uy%5Gr-T=;dr{JhI%RB@Vh;9^c+ziJsg&`e
ztQQr$sOUvGuhIDOf;5q{Q$(gpUf$c5$kA>oU90LvH7{&lq<T@^iyCZ3C5P3Er$h7A
z^kVkUakV(75$orFr*J6XMQyg>kJLJXBz1+<6SN2>dy!&V)fvW2B|a-@_rl>tx)%++
zNb}+iFQ2tReQ6#W#{L%BYh~N&4dSaGY|Cp~*)L9kZF260GK`OOYhy2(crnR~$zEi7
zk>y1TFIw{RKZnbUUw=($=EaMoM)Nk<%W9TO<<ofBcyljLZ?==P@}jjD{k_QXqKy}C
zdGVnaA9>N%i*{bT?d4B+|2s3E$L2rT65rly9RAPLo$(K*c9875UUcLvd-1+xyP7^9
zc+tt^oxSKHyy_3BuOf6~AG>9cGfre@Y7Z}ZdePg<+mGW5$0eNkJF%B=I+Up3@Fdy$
zc+pq7Or@WM+P@@zfENS37|Bpx4Dw>I7sI?5&VPTF#1HXesJOK)?`XBh!XPX-`lkfq
z2+^z5F=`*}#TYL>@nWJEAA7-yx>PScR!CeI+c@#0+juV~n4B%2v_B6;Vw%l9#fzzI
z#;n{+y_n|3bT1Zqjn@>;kk-!PQt@J@a4z^ZHsi(~XXgTQxL{s$%r*5-h0GJ2FStN(
zWM|uhq@+dSyjXCF;Ad>MJ)03e=LC7N+=~_BzltqSOkOGNVMT1!qIpK5xW<dM977-a
z`LNE5^<2GPocCe_M?OB8X{#3-P5z~jO<rskl65L&3%BQ&sU%J>TwW+%s9qfM;zuvs
ztkjDb8{mc43!fK3FG61Uz3AFJUE{Xm?p{!lM@9#{7;wpP(3x}LW&Ol98SRQ@J$+d}
z>_wDY{*oiY&GoWA6FHORR@^o(wtKPHi+x^v?Zr1<JU^K7+1-R4UVO{XPD)e8*~tZP
z&9=Nw0~Xok#cnV5i1MMoDRrjn&YbVO*zd*nq95?$^wa)~GvRJRrOOWTgA(=!FY+Yz
zxOU0$=<h~9d2!f_6JDJ3;)oaXKd~M2;<y(_Ih6-2)jMa*(&PG6wQVY6OK+RLzNhUJ
zV{%WONjb~4SKn6bKMTb(Ui{2)?rCHCMaZ?q*26ul6&6^2<>lzU<B1o4dvU>w-@Lf!
z#U(BqFYbDA*^4XU@Q2`4!QTb1ac1u|V%h7Goh|%^7dO4QB??WqIaZ>R-{DMUWU|O#
zV!iLh10nakU?@5;J@n#{$=g0md@P(VWv1z=7yt00<iqyAEYCPfUX<~ntPlTs@gM)F
z`FO4uUU>16*X>`r=kp<#54nAKx*{`=5AW2jMUv}r|2XQ8`;+GtQYg}&S*H9xyfWS2
zpOWZ90UrwbkmNJ&^R%9_@ZB7*`B2D*!afuck#2E6SZE#Ru#yz@VP80<m=F0|S(%Cp
zDdEHGrczQ!DIZFk3S*Y@p}Y?@eW>L_1s|SIvQ+jVPdKHb@Jc=${XQjSyw&STsp3P!
zI<~5U)dZ^x))1tLWj)`gz=wK1SbQL_Em%jet`7`ywpxK?AvPaUeMk{*6{PjbARDWW
zRV%<s?NYTvOliVtdeevcKBW85z=t+Iyv3@0XyikmGS+53RNs}A;X^iSuU)XQk7orN
z%E=ok#7yB?f_YszO?_xp#@b>`=Jp#Y&3$O$LrXThcEMIYwDzILm`oO7n(=K@a$;K_
z+WFAahh9Fs?ZYQ!Q<*;CocgdQpOw75h#h=*S4c<G=RG0s`;c6*<f~GhMCmNp#fPq@
zXEz_Z`|zP;KN9R=mio9@O_uE~Vjmw|i;WsbU$-z#F5>9#LyiwKeVFCL03QbWFoB*v
z4Dw;H&-m0a#)nZCQ-}DB7m1D%KGcU{J`5Lrcch&Mr;qSqq|Z1(eeeYfk)=j+%*!_z
zJlJu4kL6<@#`-|QG)~BPA0Cah@RKJ!C;BkShsi$U!*k9a+Z3sEsvxa{DjA1?Pm}C)
zA7+^PrQI2`eVD@m^kFaC=EJ8xZ1Q2V5A%G+Q6!6eSnR`mZlCFC&r|ISSj$@bLN3cx
z`|bSpB|d!S1Mf)x(ubu!eD1??A6EE`?}RsI+xdgnGEVEvw0wE87;2>tt0d-B)xqo+
z!dDA2yGF=b{uL0iUT}kH-6&+xb$h>h_GWz@TYT8+L)eFi&-jhf>4V<~jgul-MNk!_
z)y<VJ+-oX6AxUlrZ_C$x2>5WJNdx}W#byVEhXna^9`&dXF(1D1VFw4zhiyK5&DDN9
zg}*Is=QU@W#a=Is*e^AWV!K_b-?E!tql3GA*lD)kz12{5b9cLPc=*XaAHMV9tPkgW
z*zdyuACCEO+=uUdIOxMqJ{<NTE3f?riahpH_#q$0)U;D<va>uxv0pqiriGGlge%0X
zrMc6=S9_oE;b-aKNgq!6z{6Wk^Lm(UALw(O@qxeJ@w*-3FXA(~p1t5H$9W%q_2HTi
zzq8{${3fO=#xizX<aMc^;}X|ZUk9_7ea0`mOux;}WE-w>pXRd<u_w)GXt(FH`x~cS
z_u&s8_=6qOWQ+Zl54X9UzeSsGamR;0eF#Mmj^M5jfB8@*fU*JH^WnY^#WWPxjGgkp
zhuVJB@f-XhSGW(4eR#qax>9oak=u{Ig+CSiN06pxT$958HI@I^Ym>k983%mPEzXZT
zew6UzbwBd@k<X99eiZTZFe}7MjRgfy*UFtBgl$OlWAz?uk{<;m@ox~buZgvgV6$G<
z`ge>c@{0OV%#Y%JusE}~3#aK9^Q6`>cuDc(-BY#vDCI|KKgx*m%F38!{V3<>owukU
zI*U~GqoT<x390Ny6;s*xB3Cux)dgz^)-<gZIwe3jTf#Qf^`o92qx~4;hsBR%Kl=F5
z*N+rGtbT-YJ9_wG^CQ)dR(`bh!|sQ}k4!(Z{7CcT4L=(C(a4Yb<1BCbjqm8%7EONg
zO=^8V7Vo#F`$67-rCd2A8Gc-U-sr-Sj0GJXt7@k<_M-{QCZ=y~ZzpE^(bSLTezfo-
z;heRZA5R}x1A`o0X508rL0sPCmVVrB;h45HgZyzjM;kxh^7C0Uct&Kk^`o61?fvNB
z$J>6qLu_Nq%Cxtrl=gAZTIiG|&sa;}of!>YrbhN!-t~i|dP?Sde!R~~A8Yx*kIq6m
z369Kd&y(e#-o=luesmMDyB{A3`OuF)N8A2hXLS}$-uXou-Fo^l@tc$-GqZa6LG0}Z
zzd9r7=SP1(hWK&+q$S6XQ4O<Sznj9J8VC3>(2sHDlLxT@@#%xv+VaU?S*kAY(3{6=
z3>E)jf-E>($Oyra3?d}9&O+12evI{FrysjGj8^M7Kc@RJ!;kTP+&!E!!H-XbOcb0V
zILVL6LaINif2WO|Zc`;YjZ^toeTp;vnB|A=N5GHSoKQd3`mxTBxqcjeobpRe+cG~s
z^<$nN^ZmG*luTu*kOhJZ1s8GlISZ?LEs-qUJ`<w0N%-6k7Gauw#<tv#6@EDXw7*hT
z`msu^UkI)iTx0sb>&jU#e1jh)J33gT*euINKXN)aNWS!AlOLP?*djh|v(#20PC=I+
zim9u9+?#3yVe<Il72PN37t{p93oUdAawBld_`%mdh5d;5QFc~Vj7x5~HOj#$V=Y<D
z*7lyIO*!kLO_uM@+qU_!-H+$XER$B*zV`FH9m_X<>=4i5!>!DID`Ky+w%va0@#C5w
zzx%P57o42TpE%Bb>=XW-AN&0{;K%oV{NTqSKMwkNZ*b1QI*uVOdmkl}e5BL<qc{gz
zJIL?1bR6;HC>!s`SwEi~u^;o}gdZn`ALsSWX@7XC`zcn+ul@Zv!zq|)CqLZU@iVvi
zkxa&E)Y{SOANx5!&iiqh3)p4<)sG8)T;%e8+e+u({7{|tmbIGFvr~Nsl}mnXtI?ox
z&9p1V1;Kum8`EiL<Xm+f*Zuf|ms1V-HQeyyCP$uYSS~@g1QS{qr_9|JeutY&2$j2j
z{3U$Y72^@_2Yx)1>_38!1V?nu{a6Scp78oF{Hb6*IeYvWC&G_^MTwI?BJ}*vj~9Nt
z6fu{E+@`)^Z1sHktJ8rgkBE6S)J?9)Y`lg94TUrm){v-ypM(z`v=-1%?_f%jhR!!E
z!K+#4=UNJCcum7Qvn=<wSoGYsB5N&0G!)ga>T(LxqHxNC<5rRq8eZ4%xsGKzN@^&j
zp@5Epx^WahX$=kyX&TCC#*s~BHI&m(UPA@8gw>HavntZ0p}K}j8Y*iz+&1mRrKZFx
z8mdb6-uKm+t)cNr)hwo38fpq(;L35iav;36U>%J&A?KWP<<RZ5tyvZgDeQvqWFge8
zLTsj<s===DuHBp}GyBo=4GnK{tTb%XP+vp3hTa<bXlS6Jp^V{s8X9TH(9lvtD-De`
zG!ea-hD;&Zf*j;54fjj_@5K0~8d^+D7=1NYbFsE~RixDatgSV))zD5u8_~y<&i9s(
z2PN~pEu_7M4np41@WhPyu7*vYBy`l!tc($7ohLW5?`!x#Lnm?Ws-c^Z&KkN1=~ViE
zHFoE4iNb;(3i<MrgdQ4tYWTHQL5fVhSSr<cOGRG|{WL7sutGzB4LKSnYnY;8fQEq@
zMr#<OVUUKw8ir~7MHNFd4CSDe%vVi1$d0o|j59(ru5}|dj1uxnWFKiFeym}vhKbUc
zaT>;Jn4sYk88<pG6wA_$(bz(gN#e;Y`BV+lG<>RIo`};m%+fGh!wd~GMd?{4->ZJj
z(J)t(k4xoCuoqxtCXU;D4GT0Z(eRmuh2pSC!(t(QOXVA3jycIvE_KnDX}E0aW836?
zQaYb|W5P=A4h>s1I5m7BZtFCx7qVKz8VzfOj~N{|R%+j%VWTLUHGC;#lOS8wrF6bK
z<_g)uAX1l0gQCH&LDQgWaEr4~(4)aCWJ;U7EDp1*_lG>XhJc2MSc8Hg4Pj2Ac+&a6
zXK_;}CXhrm#5DfwVtkfk8eJyec8&Le;1WBl;TtLYore7yc4+ukvO5L$aO(-#Eof`-
zzX*FZ>=T92IC=*(e9tu|%0Uf3XgI0il!ikZe$;qV2aaj@NyFcz^BvZ3MBHYT%Gc3q
z%oJPriX7+moa8tmRw}Q=(;CibI49!I8h+7mRs&6)LPoz{`4GFvu$(u`(sV)iZyGKN
z;Z#z*qTwp9r8?qtT+{HohJQ3X({NqGAKcd(9%#6s;iiT=8vf)&BqejKZfUr!p;zgA
z<l*{8y>~VIC1LMz!0RWx(qEZ~55+{cC%gn{c+A}-dzlKYe`|Ou4vkTe>zpFfa}6&<
z{MRh|pODS6#a;@}rQ_A?=h5-1RJ@S9g86jhH+A2oTnQ#m)R82d1I|*sdcUTlzK(Pq
zg>>U~!NNL<=qRe=+&`(y$6M?=is=}0Ii<Lc5;|TNz0CehTA51fD5aycjxsvR>Zq%u
zo;Z}#QAI~p;pKHy&{0uGCCOG6WZB;fH6=1~HB+gjqq^`KI%*2};DlvLX`?RasBM~<
ztt0%spEE2%tb)mcDT3}t1?grJp8Ee3hmJHItMVteztisx9lO)IFukdR*;`*)8t7=K
zqqmMeIvVN7(D4pUIvVR}qNACP<~lNU<Eh4Mwx@ujkdl+dzkmfDeDblWj&iFq$9C=7
z<Zx;W9W8a^5yiGTTIo3cd*{|V+UUj;ln)Xec#(Cmfa5L6R#I{(wv%Y54%c{F$KOZ$
zI|@2F=y+F0cO4(<=&0j83EqX#3OHEr`#L_*(MiYKFSB+=<2&m(ljQiMvXPp*nz9*P
zS#V`$H#(GcH0_hk2RT2|(L;*=R=}|$$<b3sFCDqQ%UnAsYfZHVjM<kB)-h4XBpv;A
z<mecwW0Z~o(zYQwhUyroV~`FuZ)S@`eP!lg9eY=1vUkID4A(J&eJto0`bIVfM7x>F
z$gJ1*GHW!~kB+fA#_7g`r5{V%uJ6kvXJcOTW{#Jb6J%hS<+yz!EpNUqXR?kdI_Bt@
zt7EE;Y3z8CW0sETI%cq`n`?3~XG%eaYR)DlIaujz9oKKBGA-De#L@Uv$9x?Nbj*`s
zyl^0qp41oWSgd0Stt&GZaV5Wzed1>7XF7;W1>aC|qSN{_(P6oc6*~UXaZd-I;a#a?
zn~v>VOFF*Lv0BF(9b0ucb*$B~PRExzHtATe<H+gw4LUZ;rX!#6eV)dfEJSjW%{sP-
zso!6@w)|!!?n)PTq7Ge0K!>Ws%^G$1xfF{xNV#J5=<w<|9L(g6+3kMq&s%LZF2Yde
z!j1*0oG+HjWAlSLLONnPt`^S@>xk%xa*hu4r^Coa8N`2@{;xO>;r~iUi+zUpwT^Fe
zT+(q_H*Wjcp<@^Ki12R(cM6`n*m)19o(r3!q+=f&b2H_Dj_-9o*pl;|j{QO?#@#ZW
z!#b$rCx$(r^#hmF80#UyA9e7*IcDD*XFJSM(s7jA?MBKm9W#}jeo79JCgMpQr?`c6
zoY!%hOI^n=I{5q-tr1_ppLPCV-H-JWDV}9#ef`LPl^Qo+@A8|D3pytB%Vq=W9ZtE(
z3t;{(Ta_G|uIO-WOS!4z76(c=v)6?DE_hw=4;?pz6mDdr1JiBE{>d%~xzaL$;$7i`
z4;%cxjt4q&2M`y)LmiK}*>(J*<1yR6!}fSr$`c`PtV|g=+448_T`A*IY|q%oxt0y-
z)(h*b&vpDO+5fmt14vGH(DXvbOKt?0g^!KY<MC#zGpOeY@Umbl9zclz@&=GO$&xRC
z`~k!V5ZslLD3~BvdUpzyB;h0lgcKBfO|Vb^g@qImq)*WRikY01z8(Poi6|9-bF!sm
z0Bq{*W422r?4<)pJeX3vQ7W-q0ObRy6Gq)IDg;n5fZs#79zvx6DhKdg0Q&=cSP4}F
z_%MKv0;m>1^#I-spnd=~0;m}<4kfk=)(W7m5D3<0SRo_+usr`Qm2UMUYY{wGDLq+8
zil8+B8^4ZQXGxVTosX0?iZ~>j7C`e@${WIqmbKn1P%b@y4gtIyK!X4p2GB@MO#^5q
zBqM;vLYfFNPG$gE!m|Ze{+B|rx$weUEGvG=XkmJ`6w)ey)<W6{z7^ozfJRT-1@Mj#
z^0x!VlYk^l?E}WkAV@lLaL%N5e^HbCJ@I^B@Ph#OrAjBk&VpS8DRvdoEr9Mq9{*^g
z*du_RQgB58y#nYRz--C(37~HP0|OWoK)(P+eQ#q$IRW$+EBT;;$;1J#oc9||8XUlw
z06q?2h{PW%I81Q3;0QrhI#S4}07je25?{)~wU)5~ObQ_Ts$*n#>p1o_fC=0zKUf}>
zF@9<KBmn9YIfGA9cu)1MvzEzH`;-8t3YjK2U2ulrOhLA7RsfMn#_7{@M421Frvc0h
zV15A0Md317AY@?xmrtaObf+wm>|((sf}aU475rR~0ha|}4H~n|^FKMoD+5>+z!zfG
z1F&2%OsfM}Bg)zU&Se_SSSQ)_+$;fX4B*QEHU;1nadQA$gs1^*72*<PDQ5szPaDfs
z5oL8_<B38e1>iA#E?rCU3HJ+Xf|E}go&n)O!H^)uFh?eUsAOXSd>z0y!oLb&o9VMX
zfJ*&py{c=6h`R&$R>)4%XBRj46{Br?MA>WV`vS%bqp2SV;QIg&MC~9B2Ji!~ML{G4
zaVUTv1Gp8y?EroX@O?437{H|fjs$R&!xg}JX1{VA3n0Uq{rf!o@c>Q)kPjJMtl96*
zx1Z$poNqrRcshVHLVgzfMUd9BLeeMMe+@vZo>k47eL<8?UnDTdZvhaeJ?me+O2%c5
zZ~)i1Jmy=kaD~i`Bl$gm>jB&d;AQ}S(4l(PE+wbda%+v&O}&+RuvMw6vX;!ZKdV*x
zP5^%f@LvEg0=OH%U%bu-@F;+Vvy3*}3*bIEG9O5d)B9$Tuj`xjIDjY8p1&nHmF|C9
z*}<nG{v*g<JQMOffPaP5pJk``GJsq`<P9QU5V?a!v*Uuu69n5s&Zg!mot2*KVBhlx
z!N_dnXBSgwWtS6!NDAVoJa(S_ULc5qLDUKwM-sgjM4=$c22qZ2eoQPJMA0CM1@ZY%
zN0A^Oh|76<u%kHZs$nk~M5!PT12H(o*M)3d)xY~_$IGU6V(B1=WrCn5N%^4h@J{6*
zstBndSTTr7L5ygYwYGgeS|_YXsT#z{u8tqxN+YipMD-wQ1W_{xX1{qOlQ^=wgLvXz
z1-7<M5Ost2D~NkR)C<BA#K%F54I(*+lpq=fkr71I)oHVfq~_h3Y7N2`M5-uXFSXf&
za0IctXoH@+ZS+YC;*B8Q45Gd`G!Ueo9>n?s7Ltah!ffLpnglU0h(SSQ29d>7!`hmd
z$C@p?MG%`lvNjFka8X;cAeu||Z~pGQ%Sz9dK?I(sv=YxU<x|@P@m3IRgJ>5-&mejQ
z@pcgJNOfHW+Y7!QL<b@73U(A^!`=(x-|sU>m_7)iljxmIYZs}Srf!@C5kCy#j3e=t
z|3^XeFg*|36MGBqE7-@>{hub#xu0bF3+4ndz_flfH(_uPOT(E%g7D3@40vXpQO??b
zjb&&M!^CH};0VEyf};dS3o`N;A-vCdT#&DV!jT}3a=L@~gex$J&w`j3#3ZgRiJwQ!
znas7C$2y%$UCo&yI5miALa5BRnZlSef|w~`X9><W>zX5EuHZ~Z;yhEIFJyt>Lcv8r
zEEaO<w6Q#vatj2pH3(-A%Yw#}^%SdKw=550MGz~4SQW%Z@&7__jo@lQdUhRLaINrl
zg6mCvLlDghT8&Vv)4t?PnfhiSTVCPdg03KxAS%zX><U5+!X3mmF8KQ?o*=wI#Kg^K
zmJJ5^*qyQLH9_6f13|vsz-V^JRKnbYCXWU&yKyS5Ux^YpWK250-rpX?*Flsnmi&#>
z$Vztv@vZQkg2BJ76n6))M+)xc6<)|bGxB#q>^J!VA>Riv<*w0^A58sF5I+k4$y5$=
zYkz8t%&{Pj2XP~an?aliLW@`~25~8flR=yc;xza8EMtPs2&t~-kpCRSFF~A@Q0D~C
z2XSt2L7ILw<6jW+n*^kOIS5Z1>s1j;j8D4~#O5R$2~F2{-7`yF58@A#^R)}Ng18;T
zogn_?Rj$0PWn4P_?*^>g)VAf8yFpA{Zecps%yvJB2SH2@VM+)OgLo7~ix66d@HmJk
zyat9)IfTE1cp60U5N{2&&MRjBha+$xvrq`nf_Tn7F7?KRkSAnJ?thYf5yVTgJ-I~B
z9YV_a|E;LJq9h9D6U-k%ybwl62%%#oW5$`1LMUMB1w(jE_zJfXhixbvLXi+&EbU*E
zrbRhaiiJ?ROaqdI#~dX>cs+!YQlyk%dBM_xWkM(`q?{lF-kY0H!Q>S~e0bKFvMN+U
zXiVpyQaawSRtv!z0>_P}>f&4@gqk7L3IS%>dLh&{c^x5jLumb$(PoQelTB+%2t4PU
zx=obS5bPm1LP!fC-SpwL>kX5?8A5%NFZ?v2fyo<&(8%N&LgpW~Gzl5M1~Pc2C|Mz7
z3u$V4He(-6UgOh*R%~PlNzJSuhR`O2w?b$a!rL+zs~e@Z4PpH~W5MM8)Amlt*s$$G
z#wsdt(mJYyy@SMgm(C%)XU6Oz<oysn5YoxiJG0kijM3;SN;kpornT><2_J>fBZQtI
zF!HbvhKJBAgx=!NM{r;WeTDQhOZ5*SNB98227Qc<4-!7u^cfPuP?NL2bQmGov4SH7
zM};t2$QZ$o1?jnTaKUlH$D7IoA)g3N6r2=7!MJ2PPYq#O2!}%WF@)(M%m~33f<J_r
zA<W{?g|Ik;*&%G}Yz)Gi3oLWYm~(}E8p1qNnJ;8P2n&U@Dr*#B;&NId%4Z=g4dL?;
zmT`hY*dXF^!POzG5VBHml_1N0!QCyN9LU#%u-4Sqg)m^QF)SNJ*%HFm5WY06n?l%Z
z@^9xRI8Ck!afP6m%F{y$Zs8tN@rI1|8ZfdJf*!&X-SR^S0q)K6Hh${(HiTdZp%B92
zzs)Qa5fT-Q34RsAewjFi+Ahl1A$%ibhamNlj>MfI><VGGsq7Q7CxpGG!jC}TnS6f;
z2TcBb2nS6bYHNEtYOJE4LO2}4uOVFEycDy)bKf%HfaORCM?<(e-*Qa+kB4wV$VtIp
zLO5l{IUT|olmE<C>GB79b=uhw&WV2Bv@V})49IUGToZ--q72cc5H1V3B6wAh*0~=U
zi{ZjX%O4@!2q9Paf8Va(3>oA}2)9DG9l{;SQn?qxpC-S{H94r!UxGB<58(k<>=!j3
za&3gL=TfdmripHy?^=ufmg{dR`!s}qc;ye_xny7Pj{<jV6Z?N=<dSI>6YJDsOs1D&
zVm5aeabezCiM(Nyd8Z~#`NGH_#%o~|3L`#@USFj!C54d?=4&f6$rD8^QY?wQKo|v0
zpAUB!o`u6G&o6Dl_~@*)NEk)KC?*cY!zd-Bgy8FDsghyvuvr#lDlKA}Fv^<Nazb7?
zR1{uauu>S6O`j@4s)kX`R1ybPtP$q_$d;O-)DnbXZPTaWc3ZtLEMeRZ<4zdKVWfm{
zCXAoMu!dm^V@VjFg^?PDJ&Yb<^bErhMw(3J`(gCX$@fMWjl*aX#+xG6H)lCrNCUx!
zVKfqwA=s>DQ;u+E7+GPwBMP(GVKf)s^p%gPf4M)kMHnq5+bWE=Oucm&ZG;zIXuR02
zt?+iH_3bcn)Ew$e?M3Vm#=EAqV;Jw5JbkZm599}7bPDs#H*^tw&$$W|y9)0n*j?~L
zPAJ#I4CA|HrW0|wdvOrL7#GI)F#3oO^+7`VhSASd`m;U42bju0AyZbx4-R8U7(-2c
zl#pRz3^$b#VT=_1W`@zz(WX8ojE{wn6>Q`;tP{fcB#ilCED&*`;IuF%37IT7C5)+I
zOkZXAcO7QD>TY@%Gs2iDR%Yi4nI$+|a88)FRvN#leJa^`g6*0c5z5zfEDU3@D2oKC
zP@kP(jN#HSJ{R%pFqVa}JPc<Tt}s@JxGs$KVXPFsO7IIo7F;c4O&Dv1yi?woCZ-Kx
zY!u~WvH$(@{-tC$g|S%(eYUW*!joaNSqVc8!xx5MM0XfoA)YY09m}Kxk*U@20-6~i
zB18`(AS5Ul5)2EnRIii9kG4_C#)ziAEsX6Z-~C;|Z^GCi*>A)6PRLHvx=YCJF!q?r
z-Y{<zH!hE3&l$n@hjAc`??w43jKe|>3jPqrAt65se$niI_bMC-<Af+j1&;|b)bTK?
z$WA#a$|=FqrnPOW_+P>}8^&*8Tnyt}7`5V(&kNRySjh9-u>Kn6!6`WxxK`h=F?&g@
zm$~-~B-4SP7Ear3SHid&#<ehh592yFc)hHfVf+zB)dbrOZjdL|aK$w8USFpWX}u*r
zPM7V^Fz#}9N6<Eczrwi3>r4b`5!?^sK^QN?$Q8lEFdl{RkF@zQuh`Mt^L$nR4&#X^
zJoGi!1Y<!ym2AC2anHhd9>%|6{KsqiKKl#NZ*+*KiEb_W7&k~W<&L0m1Vti<iy%(~
z?VhLRji6A(n1y^1Jg#d@ME(d)*yH0PNNpRR5J93?sV7BHKzKn@c`d^KD~-riE*Mvd
zq7f7mlQn|krcc!fN|^lh2uem!O0uORs9@@4A}A}ooM3rVf1)Q;6kbWNvS1ZKm&53O
zwFs(5a5McQa;6#))D$autq35zb_8{V)QuonNWBOw5iIB$&pXW1^QAW&9iL*BYCG0g
zS~kh1MqoGf0+(~WAv`^T1`)g|ynY1lpHGbMXXTq9SgIjoUdYo%OpPMQh@f!<O(Mt?
zB|CyDH!QpxkeDTW|L821Y8pW^acCaFmHLhrf-Oa9CD>Y!o^N-lOnh%(T)PO~j^NV>
z=0)&M1nnaj8o{s#Iz;ep1f3%296`qj-edF3vim3Hj(;nC#)Xs*M49#Qe^>P`5tKe)
z9TY*=2xcEQ?oaC$L3i=l9iRMR1Rq5}(nGLk1id0Wp3BlZf_|dV)F*<z!WVyMVYYt+
zIS~vHWuV}Ww`|luNK3t6#kfOwumm3xLBT>v%npxWM8r7oWLyLz&DMS#!KesEM{wYE
zqe=bG<Q@~j+CU0_8W<}+r8ej0jBpo>k6=OspG2@Hf6a*zOfw@)ieR$vDS}f?{d!iy
zbm21uXPWvfA+sZxBV?|rzwuV?`JC1WR!6WVg5?g!!Uz_Nb&=qhs>YV7eayN<vY$n;
zG=kF;bA4_`SSDn-;ED)V3Rz`ZzYuc#QNgtltczfC1Y1N|&-LR@`7(lU5^NiIulPv&
z#t1%}AI}$su)0kV-cDfDyH%W(2-FCi5lpX_=@KkDGL4)LTL0Yc2!{Wja<R1C6M<L!
zeS&^LO;8sM2nGdNw#UD@A`wI*_+UFaZAXlH1l_(u_ph)mg6$DZjA2p?U$c>%%@|&b
zVMheta!p3jK8l?Y?1~_76#1fjD;D-}VMlN^g1r&!ix`g&92NYIvn*uain#p|<1YPX
zxg6h%a!`=JDgO|`Ay&=9p9OysWcF|bM@+u2ZGmGE9OtgTk#Hh{f9_Q{7r{xfo-%z-
zM{p)0$H9s6i>aR#GO1v#^Fn?#^$QXFX7Y<dE=6!zh_zrXHsD$Wzq8E|yo}&F2kQ5@
zzaqF7!5<OCH%Yn?!Nz=Y1cVg16~S#Y+MNjg6n@uKZqJXuFMLPtL`E)uH1&aGA4c$q
zS7zZ)B6ud`Z^5U6{|K_k)m%ow=aT(b@IS%kTjFv>jnT^;<=+v5G%K8xM+kYzas@W8
zFdCUZiufpOQKUwZ5Jh4X)uX5pMN$+6q9_|hxhM)ssn?<?BxLzt_QFDnMU7D{5(N*h
zV=5|yQ(WAvrG${zqbO-ArG%7@qKuG5D~&dkkD{2nT=OXjY%{YJ#8fegN@l6bQB)CL
zRj``iM)Q1+no*=gVU40z6yMaX1+!G`DC(HJu8?|ymMD@<eU!Xh=7Vs#qaPW^ve~0>
zMDb=6^`l5Lecp&7T)beN6*Wu9fl=wAH;kfD6b($Dj8pcEC>l$)WfV<Jebw>ojcQJ2
z6j@Oo4wjQG*i^8YU~@s5T0{|5b4XfoB39a4N8xL29AMHWink<MTfugMZ=3NsryZhr
zH;Qk$^`ht)#d}dKj$%m^??>@L6qBQvBF>$n7$&516uF8dbrIf`7)AFeK9uahC_WO>
zTd;><PeHb%7p*b^eWK_qV!tSIOl$urHm``wRlC3dQ;BbpILPFKg$#*esHwc0J8`)1
z5rQM57!}26(>gwiF~UC<94k1^w5H{GZG!Mm1SbkkGOZ=1RGu2ev?vxuakFpD=~3hG
zuJ_s%m=OhED!plC_RJ_|iSum1xlzm!GXILP8ks(o?7S%E3t1qzP>|O7B@@oc$u^%w
zu{4UUQ8=UcJc?yetcYTzxP5gye!1z-Cx%u<@kJD0MzKl6dYM^_vs(BX!L?DW6S7`#
zgWyI%dZwPKLEOy!7?;&|SLzm1w>M05MWIBoLzF_Z64WT%QFx+Y6-jID-l*|NTEE}z
zTPrp2Md6P^Gs}jB=urfO1O-E;b$+RY2p6PeV}jeG_)5q&)2HZ+nqLe5##9d0tyNW;
zx{DY8C@w_tTNHbu*c-*cD1L}ypXqrZitnP>9|bQae6JIGcSCc0Z(2{OIftV7F^VHm
z9F2l64*n^M!z>c0+39gs{hP+<ksK5MQ&Dgns2rE<i6~AAS>4nK%cr+aOZH3@KMVOq
z@T}lDLAsrf;#c8cG-<%>#V9UGHZg|FQCx}Q2G>#)SEHz0uE6yu{)pmQ)Ob#i&cBQ2
z;!NWWR(yw4!)*J|MEk8MZnM8Dj0@VGC_0U5N|HZ@Kcl!C#b2U4j^c@sdr{mM@<8yR
zAd5WWF34ji`8$fIBIb_aAJh6@6wib|H<f>RooQ(JGrbV;rC_cY`o#ZFkBcEs%xF(u
zL6UqiRQlPlvW4+6<1a-*j3?UVkT501P(Z{Xsm6E~ilJ}}88I}Dp-2ox#Z)(jVlfnt
zp-K!@V<-{B>oJs#p<E0lV<;s)Wn!>2F@}h#bj+A{5?+YNNy^7iA%=>=^G>Q<DTd0z
zCwvt@$M1Nq@=Up$ItNp$#ZWzl0Tw&NS|f&9F(f1!p=!o>ES}M3W(($OkmrECHhX%&
zUPrL$YI{94Aco`^Qetq#kQRegg0M(x3^w6B$&=Y*tqa&$k<Z|7#PDVe=`l2j;b4zi
z4JTKwFP@7XU2fm2-%xlX!JXZk#x=C_^w)pV(wfAO8N)|0^oSuVhU^&LilJ=`O=D;l
zLrd{z@a8eJFnQHG@f*VBD7K2Bbqq%r8h?-4nAR)V_I5G69m5BlwHV%sp?wVR#?Vn5
z{^(JwgOGsFc<04?!rvFncISLKI*sDD6^)lAb&jDc^%%N{mCE;VS>1(mg?uPv#tHkY
zB0Xd16~pitMu^^9a1hs$kiLTb1p5o-2o4Y&D9HHT+&P0|7!t!!QyC_t`$Wfqt;PtC
zjA2v^6Jq!zhS4#MiD5iHQWj4CIEFvea${o{7sJFu{piV$7NcZ}JJxE(EcFi2rk4Yb
z+3uWZy|l?OOo?Gv47+2P8pE_0R>rU@hUqcP;73+}%8D3f#xN^}B{6&!!|WL5#4s<0
z?*A3!=`l5i*?CaR+!!|PZu%*Qcf4^5&HNY^#ITS-)>{^F?qD2kl$m1Vf&YuS@HSXT
zmd5Zo*R%KxdT1O(^WR|mGOnm^9E`~<4{qX-8a%M;ix}GNh;zlDu(La?t7FDL;A;fe
z#;`7i^};s@ZjNE2kS_)4xry_>%=rAj#Z<P&;1vF_Spsz?m03~TF?fV{V+abN)fa=`
z<eCsYhJcX8gN?``(;AK;BK-fDItwT%j<yTKB8$7bE*F^{U0{JFD+DJHTml4LJh&5r
z6FfL1kl-!}up>RLiw1W>a19b9K#>3TyXpUY=hV69satPVS65fpSWovM(KOK;bJWjn
zOg72d`6)m^5vA`GaHYYmIr;QCd};8f!EA-aia;8IX?T%_muU#4A)JQGX}FSx2v4pw
zoJqskH2hm2{xG?u<#-y7q~T~9PBxD@CjN<3wRH84RO$(yBP`;ITGI0Cj?_~Ua9S!d
z%K)};E)DjQmWyJZ7rh{QWJl_isH972IHXJ1kU#!v8m^_`krc7kA8EM51uzZQ)9@$P
z|1{j>wuV+<Q%tPOm|JPME%Dqsv)tUhG~Aa4*H4RL_UCC)57O{Z9M<B79<!@yc#?*v
zY4}^}KI0T>5t9+mfah8;>$1&PX?V>=)rulk{F8<^X~<(mUMt?F;awWCS&`kU_W$2B
ze3I6-OpAIi4StYzK62e&oXUVqR%Es!%Bl`2Q&xd2R{X9@VD>_)+DNoj9ayGZ0y#u;
zTES8dW^T!n8NmI`XI00%plE(8*xLdUkg=PE#Ao|Otte(i4J&F|QQV3WR+P4)jFgs?
z_)?-A0UlP?W#eV7C}%}^E7%~1u7VX6t*B~6jMS<mTE&XWvg6xjlpI6Ku`^7}R<i<D
zRF@s(VWLBydsoW}ozyj05i6zKmR{hLJ{z~iaWGn8vZ^!9Qp&=Sq!VXFZ7W(>(bCGB
zg&O02*VnP4t`+fC)U%?I6`xyC---rSd}c)=_oY|qH#tlRRy4F?{zToqOzKZpmG9_E
zmoz0=k!(eZ6|FWTvZzl;$H>lJQ`S?u##T(9YGi6^MH7v0<jU1d<K|W*Bqy%@GIuL0
zzObT;6&qsIJMgr&s<+4KXhj==FGbsmwi9J(dn-B!=Pw_}EK?^dI*U_#g^t;-Rt%Z1
zV~TW+>TX33D_&Xg+KQf5e9h1MR@kllVF<mgSZc*GEBaW`*NRbAjJEQbHRx|uSFpiW
zG##a`9!#lL3=oq%(27AC7uul)46$OUIKwpm8!LuuJVIck71xIS*V-5>rdsix6=SU!
zC#9`gt6vR`w_<{1CyGuIoh-`IDOP-|@yT13X~J_wr&}@j8}+OE8Iql8#Vjpyw!j?G
z(XG`Ed~d}($<7yDAi7YLrHiastnm^ne$aUR{>;m*SYbswoq4YnE3Ld?KDJ8fYSC*u
zQny&K#)`F){n3hFw7Nf8u}<UlJhL=jxk&BL1}ipd&L%513uk+xey4Y}SiMn~I}^5v
zx!sB#TI5bEb_wqm-J|(mER1e>%&?Es`<P+B6~9{XoA3b!2pkk;=^=qM(QY@A=)C+P
z+F^xa<rSE?VTIEQ7uOS>K32G`@W=!konY`<@gQr%h!yEp_^j}A{kI}0W=Qn)j#LH|
z-kBPfELpcR^{^F3tT-->9JTUZwfbYigf^=TRL<KI;t=9X#+|aF)a}HTnPab7ahm6{
z6=$tDXT?P;E=kdOu49tI8;vgq_MkHUvJ_nreK|a?{+lG42VQl)#$CA8?+;PJbt_ii
z_=>=7-L&Gi6?bIQw|L&IGSIwh#XT!>KG1)dsk_h9#GL%xiYb%h9&iP-;*k}Pt$4~M
ztBYafJ;Prdfq2ssE1sq4c?naFDAP}+4bM0M78qRb)quaH?hDZzM+`5yChSaQYyVjB
zhKr01NjAK-;vLsg8_L-5uNCjPTG~+1h7VSJ<O>A3kl_;--lFkQ!kKKib;gugIDWVK
z#E>jD9O`e$DoV&^Lw4Z}ri5r4atP<tN^{weTR4vmQ(v0w6%DMCPg=`-#+2U%-|Ge!
zBD!afOoePHW<zlsm@RBW5gTY0wW*h>Gwo|-EFrZ@il!dZv7e=c37Lu+%GyxQhB`LX
zwV}NDF*a1Qp@Iz+C0ogcDmL8A8O!*}HjKNjwougu|3(X;PDv9O<~7%{At7Y0ZbJ<l
z9$nYj_a)Sn>dh51!&s!VAy#6@dI5u|(FT*|n{BWN$7xP&8@6rGvr4?Q#-{4okZWP`
z>|fMJRo1tm0V8c_Xv5ccOm7yNKjRUZZzi|Asb@g44JkG>wxfw1jcoYbh88xoq+{a^
z?vUCv?zgn)rUI6ViOn=<F2K^*I>uHue8B@@Lz)e(ZD?b|d>a<n@TCoH8OCAf#XmN*
zw_$xvQ$HIz*uX2zc-?7tfsQutA+w!q=qy<lb+MtVa5v5Qibv36U{Md7dLbE8PwtM!
zy=>?$+()#p=JUF&{+yXv494fWYX|fLY#3<6ARDG{)J2^$OtxXL4MQY&D36-JFdM!R
z7;eL8ff1r3MY-KkHjKHgUZ*ieoUxkEYm>%nJV9Wh4U;sd>D(MsZ1|QFRh*fc|DC`z
zc1d$)2=KZ`Zeo@Vvu&7T!(6R2-*f%<8qc#KTM6~0e4!1CZ1~ZJpKRDSIL~4m-<26x
z*sz4NG>dv2$PYFw)oLxXVY$Y=?-^Ix__<HFN}ScAYed&-F{X{WbvE_tzFju#wt?5T
zte2vnZTQ884K{3)>^3calMS0S-eTillm0tidrs*8+G*Tw!wzwFYQA%Bj;T3~d)QPD
z!<vn`+1tI`3$1j&z^^v^CU8LW58AL-t{Sr1V6)+h4OeZj+u*R_xD6+4P;78YFfU8H
zHB;xZ!OfE*mytJ%m>Fg8*x=>*ptTm^sVW>04T^@e(y#zWGF{-X=n<{-s13)2c_#{X
zp4UtNZo@en&f9QOi#cV(X^qd=a8~2u%hf6uZ0d8CFUmya&r+A9^s*N7#+>sSi>eyR
z+fl)eKWw;e!=E<XV8C5nE<0{=6}91$#NW2z4%cDfyP|*D@Wh6DHr%)2fjHdaBO4xS
zyl4s@Ys~ASpKAPqi=^;#&H3AgYrF@}nz)xXyt3i7`2T37)sCu{hrQvP&#6wicjEsm
z`d;*d7Wt8#DN>Iyne51HSEomm9oYr4h-MX~pG{z)T=*SrM-Iv6)JkoZoVo4DV@F;)
z^4U>R{QPzlu%n0;v-h^Hpl~74!kV8dZ5EYmG120pCG6NdOYMItEwZ#g89T~qPB}Z;
zH&<gS+VMJfY-KyD*ujUWR<eVaUGX9=rmA*W?1-}?#*S)sK<eu4FxXMujvDNt3>O=z
zX-6$7)oJa=+QE~BMNCFJ%$jdv<Og;9nFzJ*s3S#*cGMMUC>k$XPn41M?PwsJpgDI|
ztDXPMjvm?-^+{5cY)6VfBhk;bcwV#D)Q)C$d|^jxJDPLXt{Pj|(bA5;9C|*`wpL-2
z{)LgLl^uoWsqm(vxs4s|B=So;Ht7v*MQ2Ymkc%uex3^<xWkUx$c19bfz1MZNqYKAG
zK~V)=?dWF5Njpy2@s%Cj?Qq%QW^e82X~#l47TNK&9lh)rZpR2adfU~v`b>lD=wnA;
zJNjwPKs)*ir-}{`EpS|Y%WAl%{$9^CSj-`!L+uzQ@QrA_1obMHk#>xd>|8rW3rw-&
zTY)ilj1?FsI$o4jCfG62j{FbRuRbQ(F<J9_eG@%Zc&6rjXU8<*>6$Zx1FNV#oF&d|
z(K%Y_vO3Y<+cD3M`I@u9j+vR&__Rmr`|ZVcEU{yQ9UJZV!H#il)S@5lSgOS@6IgD?
z3W1e&tg>UZR=UQH@^An9Eq*O$bvCv7Pg1&0i&-!5vmL((B(G6pHu1#aZ?am<7CZI{
zZ`GV_c5D~kp*cJ4*u|;)#;{wQJ(|Cl)2y<3@0b1J{3`mJ=m9O}puizc47pJ%gRSD&
zMD2Ds1Qb!0I_-E6&O-3m;kDzq_&z)Qb{rKBXp!l51nme(Hf%>k^Np`_v}<01)8?=^
zM?|a1SRE5SIKL9xKfz^cy*jUc=WMB>Uh8t&jx%h~fv^K-?Ko%0bO&ZQaNdp!c09M^
zZ#yp9amkLmcHFb$vK?3KxWR?pj;nTDv*S;m5xn`29oOwRk~J@xDHt*DJE?xXTv2}c
zy(KZs-sTaUkRv1Jj$Qp-=1vwh?7kgOB<6t~5ACQpAxDa$J_O;B9gnrTe+je*R(Wd2
zGdt`i^;_}B$uUz-nqS!Qk|%-#qaAp~b<d6#4zzUOA3NUIQQUzN4!pJFogIZ7DC|J@
zU(Ns8@qx?N3k&(Z9dDoKBz&~vlO35PAe#f(1u~09iDq#is{n(ajLs7+oL4l5Xif)m
z2^^^(ms=o@1L@B!Oz(e4$mc+Q2mTnHht&&6X+hD9)`~b#)PZ6SoLQXA;H6T9?GTi^
zDJ2~!<p4qFKxqfYJhPN#<oLug!pyQi<s2yQKn1PM8V*!+pppZX#i^$GRRpSv#)xur
z&`PUoeocW|ntxxq9qWMJ0fPfZ@#{EHSHR?eS&Os?#5qt~bDEbl$2(9@vW*?6??3|w
zQY4!onkd>(l%w&P1MCtZNt|TOKXADV%|;G<E)K((Z6exKw3#T)<_?rxs<zO|fiKv%
z7nTkVw3e}L>p(jPIIwNR|I&eYiEJ<9nX#K3=YDrnIy%tFfzA%_5Pa=GFKN7s16>8W
zIq+4+<{aSQb6Y(m+cU$I8PZ#LsAwMt`Z~~0c%W#1(Ns}ZA0Y7VdCoxsgEfDMK*lD9
z34i0jaDfq`BSqN)>yB|?tnAmf4vdrC9Phvc&j05*xywuw*@vB}lO<-7?E8qaJ!jla
znc~2K{9U-G9IL4gTo|3_I|rso7;Dj->A)-pzIR}r1G63K>sqU3aSKK!&Jk|AO*dDd
z*fQgM2NpQ6%YoevoLg#G=)lnv(QBl1k?3O4B@X<+u@zqSNnO~NIj~%^D@0d{(qAR8
z+JRa({<}7Btph(gu;!t96R@A8be-sW2Ywd##eoeDY!u$&z*Yw~2{V2(cVuTOfoYqV
zJ4ClTc*maq{GH;sdnWF2V6Owead3E)7a0%iOx@?eeg`^cQ(r)tewD~g&Xj`=91>pD
zH**@fozW%PM<4Z8$=Z0-UKs3bs=v`8jw0&hzVJelc1E|vdqlmWY~SaAUpSySL4nSf
zazwbcaG6pNt>7?^wF4g<_{h<A;Ftq<9k}PfaR*Lt&Ed*pPWWAva8}@?1E&N|YyKGr
zPVY=*0Mj`!&vPbdr57EzBz#$Ot~hX2<7=F6RSc|nU32~vxZ%J}&AH{kZH@2H59l(s
zb>D%fn*YFohZ;X};IYPkar}ih9#psTO!&D2e>?C(_>JgGQ3kvccrE&m=-tU`#kUT;
z(_;SRI-~Km_qtC!K<Cv5<gHi|mq|fp1;t{@Mk(s^^|J8oUrbqMvr0Cb=-?UAEaFd8
zITZEDGI<o_6d>mk$gN<^=4fW~D#)kco6XVr6%>@Bei3~EDJ2wAP*_SCoDpA4L2(6L
zoapLA2?Zq;tW>Z{K`8~L6%0}^SV0*DWfe40&{RP=1?3f7=#x-iK?MaB73dWh6jV}B
zSwU3=F$&JUiyrbgv5EpJ)4A#msMQqIP*77$DEPsdSY6>W6jBMFpX^slL97&!bqZQt
zPa=$UCbnIWVpL#KP)9*s1!e^n39GH3*SZ|{`y`G2w{M(+ERPe5{+`UOT%D3cjaRTC
zE*By5f|Pm+pN5cHb608u1qlioD)>x6l7eIfPwSiS9yN{qE-q2Q)@OAIDI6cWu8}Ao
zHcj($;l`pYTDZ*2`?WSx@HIQ2pt*t;3g4;nDMk27L3c&{3hoO9!}9hdv{rEMs)^7>
z!NX4GFBP;^&`x67E9fl1(hdS06?D>^uaYcXgu9A%(|kVvu?KfQx1rWiV^1-6Uoj7R
z*&w=M%Jp_R$KBM`p04YyppODVU(tS|%=TB1s__5?19>zzn`?P=jSQ9{3Wh3}qTpNh
zoYRBTM#0!Iy5R~&5ELvLVqhAnV3dM0{S43h85-|O9W6XYl;+bm#&HrkUf~ZPhKN*|
zs9>a9$23VndhLYCJQgoaom$2>{@PHpnQ^Lu?-Wc^Fr5_@ELJc>!Au476)fPvDv^7Z
zf_WVIO3A!6<!l9W*f+C<X|96rHRf#|nRp+_)M_aN#xGRB8$XhlaGEJtuApDldTXoJ
zJ8ZHn<=|{fT&Cb;9SgH7V^XLq6tJ}KuGG~E)^OT8QO1e23Vu{@ntP|<Cl1S{>RUKT
z6s%LQp683X`_G(X0_0y5G%KGt2PqpBY*MgU{NdG-SXA4UP%L2FreM1Qn*zIn9ULD8
zdlc+t$4qg%IIFXns~gO_6?C|3=G77B*P3VUN~N<;;oaKJO#2o5s_}0E2Sg7lIHdV$
z0#*fEJQh}QC{PqcIP418l#?gUa&uULOMzQ~htscQd?4QZi{4D|D)5Oz_Gc6+2x?A9
z!RXD&EaF8<Y-)+oe3<)KzMej8=7ax^C^)Ksa7>hNT)_$9-$hSq{wZmP0cRDQ<4cJX
zIh;7p#YDm13SKC<sNj-<`;1p`S-}+rw-vm3WS%i8=T!xND!9ROt-AS|f<L(9+05kY
z8iXsGc}s+wT&%p7%(=|B6nwg1Cf`vo`HuN6&qOY6HF7hIr8gd#4`newRPdJq?`F#*
z1&?`L?wB96D$RhHtmY@2fnLi~1<wT7GPBPW^{xwqhX*V#6}(mOjw_hLn+$_jaQ(xs
zDp-2Q%<D9`U0xTI_kiVJ1@F1MI}zo?2kv9{a+#dqbJjlcKrA(X5=~PqWbVu00~THw
zlfI*L7AM$;tWIPTu;ny&-EYb6RJ%$)rxUrH$nQh}CvrQH=Yd&GPL%C#soymzujb@)
z^0^hMGz&UW$cf^bU)YJF!bLP^+|`s~8vFmwSwgs^XerV9sd?B=S*Q90fksYz?nL#7
zuACF)ov7eMMJFmbQOAizt8|r}sNz(=)i*j(RiL^PhYHq?5vE^F0HU4l>FLyPqNY|_
zOF$<Y>x5qO4Qzacj=?4;_<&%uD8b@HoW`}Cs4-bjv#!*NccPvX^_}X!NSGQr(ZGoW
zCmx=)6sT$Bvqx84HGC$eiB2R5bTt@~1yV$djyJMmV<)gk*TIRA4|GkOXzD~WCz?Ca
z#)&VTXyHUlCodYo7f!V9RqoZ_4VXH$&(qq8X(=gpSLz<Fj;7Q5QkQm<65BdKZO2A>
zl~Z9-VtXf8#ITM|^=Xn!ot)_G#LFeRMK27@c5~t@C&ErdoapXE4=28NVxAK{o$Bp|
zQk@te@U;`Y*pw4}xZPTbIfF6%oaifwVRXp-oj5D^BN`}GCOI+Li9y1Hov`gn{XM7~
zBH5u%3={aqiQ!I+5FRT!Qj~3u5*Y2o7=a>VEHuXnj~AUFN^_z#PM9LjckH1P-#Rf>
z>mGZ{QtEUk_<(>JPLMP9Vy0A?<-}}(Iihn#S>@!e)cH;<a3aJVA81*~Ny5qIM4A(e
zomj$&!I{w5(zIdH4^FIbVx<#Homj^4Z<ypdYNjrCqSTD!`I#H8a$>dkf9O)^uW@3+
z_#A6FTXv-~%amnz>Q7FrbK<uOmi3~)i2f|vX@hQq6C0h_<iutt_Bt`xW!~b%Rws5z
z0Bdbyw}rQBPW9XRof_}osoO2QM{|Zf)v?w-$?kXJ*9>3ufat*tr-G%)IGvS)%vll0
z>gKd>ooshP;rtw&=y0OZO9O%G6vyQR%}Tpd>3F!LNPtgj1<1Qo{S5Q<Cj_M^qdFgb
z#d9IuiNj7japI{HN1W>CvI|aJ6gbN1bU4p3Cyq;&MJEJ)cjBbLDbdqf=^25uqUS`<
zb22|wKXYAj;<6LBoP4w{t~ha(lW>parsy>%{^b1GZ3)gw`h&Zi(|ldB_tUB{=7z*n
zuT_oQeXoUj$BFw+JaFQ!6x|c$^@^<iP?#}~IZ1?1ZjNI1FU?=uyT>ypo^yq9p|%Tu
zJMn@$8)G!N@Y0D_T>4z7=)!9!{^2_8QXlv5hU1wvKAVe^Dvs%`6Ytas7Wc0c?*%?M
zky%PVN|r^RoX8|j>BmvbMrn1k2xN7ka@peavul2|Kn@pj3gps!K7k^S3wb4*&xN8c
z@YxpmC0jtWpcYw3ps;8W(O%i|7858gT0*oWRiLyBWn3uh0-w^(p0v)COl2x3rR81f
zI{{`ZxzKTA9=`S&*k>22xKP!lzL&0U*F|42$GA|<1xOVJ$GT8mxQ1v=(OO!m&V>@O
zW`^lChZhO6Wus)X&WPhtFuP!J{dX_-3#SZqT&T-Vo=s@tLc9z0Tu62y#fADVG;rZF
z7ZQ1Zc%hC94PEMGIZV7ffY;dYHHChXOD)Rqd0+iTE`07nV{tn3r~Ga)Z?+jTN*Uag
z$9=o*{!ivQl?^RiXvv`tA$tg|T=>F;eqQwVqO}WcT-fBsW;eccp{)y3T=>?7b}qDc
zVFIgEHSiI`9bD+*LRXi1Ds^<BlM8|7#?CJFV;~csvl-Rg(#?gQE`066gC^#$M7z7t
zL#oiZloH*`h2Actx-h_nJ}yK(()DFGTo`>Z&&rQg`@1l3pfPh^_1ozw5gmU!9_Yd#
z7e=@+l83Br%3v4PHBT7I5qM%4!o&2~Oc*96{cl_tu5r_qalMR&Q7(*g;kyqhqg@!o
z4yWsD#v7h2iyP|#13KK(jd$UP$L50ZhB3?ICd!^p66G#W7Eq>Vp2`+nP+V}jFwKSO
zoJB5dabboFGhJBj!U`9%#u#R~Fx!PW!o1((To=A~VSx(^UFuiC^IVuOKwd7F=FYvE
zXORnwU05pq6840LQog^vcFt16qJ9J1At7#=ly+TXzHBj%y{}uznA(<Z*<x3@u-b(+
zF06Io7Z*0T@S_W-kM>{Z!g?199qa#-3)@;H^xU2LW6>_fhbI2)!kMC7nDys1TaWhN
z$Rp0(Dca@O_>@}{<COI=Wd4tDs|!0gmw0;4GHi44Z=S~O+{(M;sVRnCF6?$8jYrc3
z_X_nGG3}9qyH|9d=zbS|75Gh*F$V+=x^PI~{TKiJj$@Oo!v(v*=0mFgYD+BD#Z9=>
zk9B4@JT7=$_~^nX7kn=GxxTsZf=APZpbPh0xbH&9g)n!Y`{+W1sa4WRX_Jud!eMd9
zM+A<F9uqz8!U=)jMHy50W)eGaiVLZ`fBzAQXI(hw!d)KaJm&K*TwuD9^x{TR_GL*I
zUAXQ-rr9Zj7AIbE;WFpy;>0VWgsU!G)A$bow#?u^rOFK#ZVKEIy)DYpJ6wn)?3anj
z?{+3VaN(f~Ph5D)(<-cg#OJ@bu*+EORJoinVf|m6R5vqi3hS?h^%?Mt8x8B9yTDQ=
zR(Z*z+&Afsiw~hNzv4@PRGGLtwSSYie_VXHQYtSne(S<J7yjieawIan=hWR)jPOC6
z?9EcxLMAsdyHU)I;%-E_k;RQ1Zsc?$s~g$eSi3v5_U7m%Ra3GvTUWhbL9`ppGBwVg
zyeMnKTy9((pIp$5+-~G?qxQ|DnG=)qy1~xp6V302eRnFe1te?c_djkFcH?}-<RWeq
zb)$1L3z^y;aRhy<X!g8>8ztQ!lyalA8)bwo)q9q8qnsPn+<+TJ8YNEMm2|p#N_jUb
zxIw5WT1m9BD9tKvRMj}fjR(gPX>trXnAP2=;YLljdI<Dx7~Jac)^bB94$W9M_T4ZM
zjN<U&l_od13k<usJC$m2BaVCRMs!VewfxMDIvk%mhPtBhY<#YPsh%74g&Sy2f*TEm
z`MekgB)XC0MzR|zZY*+Ru^Wxt_}q=J+|ZAT+4I!EpSc^m(Zr3WZZON#TA-O5%>`PB
zwiIn8%9t<Q;Lq-aHhc*Xv#n?+H`)ob*CIOzbQI;~ADuP7i$GV=Zf@K@p=WE|-RR*)
zPmYQB-@4Jujoxkybz_(teYCm*+~_OZPqe@0r@Ap^uDT0M1Kk)T{$Q<ih#R5iYSA}t
z40mIK_#;HeXfY!NM!7LsbNHh_tBiGHoaT&o<B!6PGPW|&jY*n6SzwAAA7x*ry78SG
z)5QE<i<$1m3^!)FF-x2|nm?N_ra!CW$uw6?-Xv$9RyyB}1sX3DNS944apMO!ma_D|
z;dSA9th-Fw`B7q)i>`2ErNAoD)uL-e*NU>%XqWCMso2$}Tj$1lH_mO*u|GeH`HScV
z(T#5P`UDnjabqjD?!i(Iwz;w0jaU!#9_(;qryEb)c<RP3H+H-6yBjCDAx;=KY&>T<
z^WE6*#sN1Dx{>%v|En9n@hBfMJUnDrJlV*UNzom0Bh3vu%SV-9mSA<GVv-uew-ydJ
z6gR?dMBH$?;c~<8M!?NyRHeGP{=4CI!?HNB$%f>Dds5#nO7!uJ*ptfCcu#7O)4+|F
zUAi)WMT~hcqy+tRHx9dT)Qw|Ox6R^2rXy}pi!V+*?goQTaAdwuVZ~RYa}&6^Q(OVu
zyg0|gkF;mpIP1orZrorP7a}(<yK%*h3tY<Fxa7v_p$+=gGQH`Ue5-7=-g{DG%a>i)
zBe`DPxU1asum*p)agC#QH!IC8=k=Y6*1PToO9?l*3C>AZ!d;#zZuKd;CracoeYD(h
zqtqxP)6~rI_uRNIF%LLyTvTf{U}BXWzotBL<FT7}=S%rZ0tob<x$&IKvIki``0R{{
zYsKGgyx_>V)&FjP6n({|W0?BTme+3eUEDvSZ#WbJblwU4>&AP551QY?nB$WhnLNns
zQCo`=C5)Mnquqxbd%dP?9%T2Rh6gwQNQw3!hX;8*$mhYU(hYKYkXs;^=%Qi?9jj)e
zpGUGCs%FdYK>-hndr-oIf*us|ps)u;Jh;NUwm0u_{kY|H?H)`;J@_Inj@e=!%xRYL
zx<b7t%lnt~pp*wyJ&5t3v<GA2;zpgYRQBLdR8koa$_kLnc~D-sf@np}ujIjZdr}$j
z>1^jJ9#FF$F<0~OK~AZzNy(56k*j-<c*e}c?JggvujxT84+uI@Ldd2!cwqFPmj}H)
zFnM71ps5GVJg|5W=Rvl4c^Z09+XMRweLWBA3)B&<>*0mXvGE?f>lBx@WKsi~dr}#;
zVNqg&1Pp6qNy^{oGxouQB#-+1tVSMu?m@B#DUyx*(7Q(K9w&R78+*XSfF`01xA*He
zmEUITn|sj0gK<fw?jE%Cpp^&hJZR7H^q{o|Z9Vvs1HRPUMuR~&5}9SXyu|#fYa+FS
z2OT}=;z3srI!UmnVBD%1(Jboh!Os$Jeqv#kwYo{bSB%V)qAW2l-=EaOgPtC^I~u;`
zXgHE`zRW@G<3V2!W_U2ugMJ?L=cMvrxJR9tsU8G3=?8ewgMT;S#s40p@6ZhrbFk<T
z(V?P@9Oh9klqFm=Cywx7iU;3%Fwz5NM|m(>KsU%dMu6s6fpMbaJ(wUcQFM|hV<rn!
z9%-J+p}u9IGmW!FD?KsPJYD0|tqG<|hFKn5jZgaCgV~%m9?bRNT1CT-c7_XmyWX3f
zhdj@N`5r9rAj?hDBGHASr)L`IEcRdt_jiS!JZPD!%Q(9{xWRMEgB2dE^dQ1<@L-h(
zt3BB4;g{!_@waY`2OGFn@6oO0y!GHG57zP2%O3ZAr_AelXgnCdAn_LuzPe%gu1d?Z
zds3-4GAA$D(`%y#n@;IBiLPEBL*B~8pX2X=&4cY+{5{y?!Cnt`daz55%WfX2r<pRI
zAizfkkQ4Xl_j$0NCzJ<i67wtP{4({O{BIucK?8&X9vqaSN3C)&%arlNfd>OJ+dXi2
z;PJrgfx;2{Sl7vwq*(mfa`9xBuv?Vo0jJ*Qf!~7wk2{a=LZc~KO&dEJnruwy^+d-M
z;yL(47ZzPrG3BraM|gZs>&|&_)PrLlob;%_k2KFx;kXCCv#D(Lm`-qI+tHVBu69=H
zDfTwba@vD40%v)S)UwcFBAn+Oeqg%5qwm2b4=%IY9{j=eild#|$aGbJZ>X4<z3xGi
z54u0OEYDN3!<rkIvX(d8^58ay$cxXsxZ}ZH4;qcv74+hs2lu&zdXdwM2Od21VC-t$
z2M-?cEY2VMgzKc)@YsXDJb3d~N4`|ov@X?9v8Lgv2hU`jpL_7P2QP%*h`tnkCHh+Q
zA5k8Q>y<LU)%cyjzaG5ToH6Axm-}A#k!zzknY_sCRnO2UFP?1IT}oB|L6gOctYT&p
z%`O@(%F@cuGv)Fkw-<T6$mhl2J<)kYGoHaZa!+)AEnC2=KA4qGh8FUouop$VDC&jY
z3xikvvA&onyeRHP2`@@|QOb+TVwM(VOnEPVSW$z^YEC&XD&GF@SM>^H@hge;9;jy|
zQxz|&YVk1w)x3D9sI{tVehn{b3fIycofokh-za2eu+fXUnq%_9ENs!7I4^2zTt}d{
zbRgb~dXlX#+CVfxlx>!1ZAkPY$%|%QH232DKZay4dNob>oI}^coFdvtG`W55QI*Y&
zrL>6`J*stSDokkMMN2PUHZ@-CX>8@i7hZJr;(B#sYcD@}#dh{$_(o$J;V(toinbGF
zKzlDbXx!0@P8t{Vm0`s$QoUfJzMB^*m5fYZdC^_t9$xg+_-lb)Ui22|BidIhWq(q=
z7{Gn;V~8IEy%^+0oDa2q80^ImFC1PdUJUhOm=}w^SmMPu+_V?dyqNCA2rou@G2V*_
zUX1dpU%ZSJ9W9!8ugn-u;Ov%%(UwtNvW@ei;n<ke!={N+`mN|BFD832#fvS6P1nj=
z%9mHKxFbyU;yW)Im$eMeUoCxuYR>RtrWf<2)-2JvqO(Qk@PJ;;!>})NTD})&p6I#G
z>c6TN2#>5Ax6q5@>83?qY%62Qd)V}Y7fZd^?!^u-mT`00EkAj&&Wq(<tngx`7puHj
z<HcGp|GycX%^JPhi)>f(JnL-ff5h~o7yi;}<MpRR@jt@fmA0(+;$msbFJAr)8O4v7
ze)i(hhM0lYXvS>xVv`q}y?isDV|DkK8e?O&c(Ik;V9OB`177d>??3yyvRQU|vCE5J
zz4(p$o82-$+Ope=J+cdXz1Zi)e&MHX^&-YAC)JJ-m=1W6#&tkS4|;J(fPTKcsc+Iv
zHclZg2qy=X<2VyW)QfR?;qoHdha5h*z3^~7^y0o3UN3xJT;LvYH@yh3=h_Mr6gc8V
zNFXd45lt68EV@zdFvb<>sAP|E<OS%Q@ZxvjS2zE=lJ=BjPkV7j;H>C5QO2JaNIsqA
zlE5FLm$lL>UR>4qnt<n8)$5w`rx!Q8xaq|$aqf!V)=KYqu~AW<5ytfLTCN9Ng1q=g
zD}5yJ+>6JW^OwLA(WhQK)BH(?)HhCld+|bZUJAVO;<Z58S!%!=FW!3b&WnG&$nH}Y
z_V-$RCdq#A;-fg9G{2fd?OtXdqI}3AF<C`x4v5Moka_EWcN*+|EmKY(a`{ljhpIm0
z_92fCMSUnHVR?NhERat$zbIQS;6p*-LYh-*qIyTQB9a|YEvmTYmlY@>T2i!>52dxz
zGCpjH|L>c|az2#T{0agUeW;{4m3`RXTpbOj7$0<+Urhi$RM(suJ~UmYt0~!9KI9yw
zwjV25y{N$lqre!MY$hMfl4Y31hbtG<>zV8LP}he|K5X_O-iLZz*?bt{;|-bh^?m5*
zLnj{^_>ka3Lmxi#p|uY)vYPqxM4}Ik>A1@zap>$ireuK>9~udKuK8(y^=sl&A3WVu
zoMxKe+=mt#xAdWv#$Wg_w`lQ<Hrx34n;Q5-KeKHmpq*%Y(GH>ovYONO>R0DBb@ri)
z52-UPU47`|Lth`d`S6twPq*m0`!H&i?rY&5KJ@fqyu%PIWEfY#&`XMXi!!E2#4vYm
zTt6TBvnlR%_Sm)+%v1jCQf{hYfK>N=l{C<YK|Wr;XZUQnfjX2OZeU*G1OFp7%!hA$
z81BOeAG%I4cK=Oxu3pqgA4c;~b}){T@#kB<os*5r3S}PS!&o05@tHb~{qbRf4-+L|
zjt`RrCi^f&;N+<2Zw03LFx`i#!rzJVAQq??HA8ro=uFLbOv^M|WADexjGXJk_dd)M
zbG{FYw9*9v3waV9Ph{9)&8PE&4@-S`vd_HChZR1o^x@-~gyo!v`+KZzlK6Z6xK*6b
zjT1NcKwj<RleJY~S}X9Q=ue{SMA!T9v%oK+iD?D~vxSY^N^bM?Mu}T|*y_VuAKv+}
z&4=wiC_XrS*x|!Y9}fC($Ok^~eU}fv`Owx-Z?_M7eAw&5J|BMdslO-g=Lv4Cw=mYs
zxq5!Pg^#DNvn827gdLFhRSR^ib-tD*&BsS^<*@rew)zlom~EoWI>cm_d}OPkMlYj_
zF9AMyeDM147rW|%&j-H`r+qlXqP8&sE-ypPLHccDEPX8GkPl%WB0i-1c&C*9OvimV
ztnm>aj%s{NfE5{YLil$dP70h7W&12T>%%!89?6E-{&|55JdV}7FniI5OA>t9hwDE4
z$#Yz?S4FRh{vn#t+702mqHO%8z%3tc3*6ECPv4mD3EvleAo@@%-I6ouvDP1U<EanN
ze0b@@D<7VV|AM2`Hij{O^LPz2v!6`tz-z76KLT{#2xRQkzdpR@(&R_HA0Ig7_@>LR
zUQhDLhfIEy^rMs?nf>au93@1fM48RvM^-<w`H|g^Xg>;Rehz`We&iI$rTMu9@-W_^
zKJtkvpE&vbD4@j@^sA2~V^Lvoiij4~N{jhXTsUfwA)|$h<5ei_huIH{A7%U~>qj|>
z>9R|0r@S8({HQ2SHSU){B|j<)FrbP+RnZtf8rJ-;<?4RKYB4qZs3}}ab98*0x=M}I
zi(?QqYNaMWe~S9Aoj5<QHC1`RDYZX!{P;DGfyrH??5w&8uk*#$^P|2W4g5&(qoW_4
z*ats8^P{yNZT$EpF(uKDW_~pHBgv1@BqLL@A1T6(L_Zg8EZRhrF-`qA@Ft1S!jBV=
zIuly@aeYRAaw|XIVI~j%!}Nupw^&agf9XeCKR%vJU|2gp+WXPLkChU`Dp^b^^fwOa
zLGA2E7eD&?)%Oft{it)(#MDQin;&0kPIo_gXxvlaYd?Ak^cLm+pjq+oq$Dbv>gPv)
zX_K7l#{hl=kZiFpqX%jJ-n>ym{TSv)Fn~}1-}o_{lQV$Q0gUitq#uj?SnS6rKSulU
zogdTu7{f{UKtI-xaooXex}Vmlul3{onBd1mX|~YW%u|bIp5(_A$xaqMdPi5dxq8RZ
zZ~d4m&fso_zKvC9x?lbLJI{|9e$14jS)z0Nm@P11oMpoO26KhK_v3j7!@wOnDr?P`
zx(h@XimohXSmMVIet7-x`LWcGWq$1TV}IND<(vr{bSroi{J5r=S5-Hy@?*6hJN@{x
zOxzky>7ZdP2l<kLMfskZe)NOzlOOB+STDRyl;+O@zxc7ikBxq8lI#}I&00)gx^An+
zL;WV!+Rn)=PTj{wW_Pha_w<dP=*WBg*z3nW_R|l$9}Z4wKX3V1%<6~DkKZ`){CIFN
z;ULfSe#y;yCXx^N;eM}66Tji1VsyTHT87TKfys&=P9D=Q^0@rq88O;#VCmp(y;#xB
z`6*R0;{ARE{OZMWB?1U?p8IjnkNZ662NS|P<NQb$cGinN?8gy5?)q{5sP3pA$2jwO
z?oTis=efWY#*eFh{O-p|o|}H0^W)&S_&XnUr~EkWN23n0<jsTP&v4U&RsXyn7yP*F
z2l=8OBW_f`B+M+CiNIhg6Pvmw{D){p<ez@r@Z+W*w`hvbtuwez=Nh;D;I_zxqz~Me
zr`uy6`0>z>Q#)e+_2ZF5z7u`y$6uT|emwQ#wK&g2S2V5ll9SDkza{&^52lR%WGNQ=
zN_e0%2c3U}--x~yW!;R(2~qXl^Cf`mfcW_XFmH|h<VU6eG6xV9K#l-%26&HXWDOvD
zKy9C6#X-v^%xsyTVmV^b0X({=?oqA)atDw%@ZXT;kub)yC}UvrX^j*JpkM%n0w^3%
zN28edMFJ=q0OK>Z!eDZ7tqQXx1BiQVUa&#`cRO>L0LliiDuC4ilnbCd*MtB@22de@
ziUG6>pnU+90;n87odD_vP=x_I^tA%ucUe^fh>>ib8YY_60)S+zi_)nfP%{9Y%gpKm
zhz&rmm6`)EXlx9?B)p|q3?rE=l8p<Xwid&p_yFn!@Y^I^ivV<}S3iKn0FnY|ApJ>@
z$c9?{X8~~2Y$}<%(^S2CN#g)gw9-Zad@lU|TWk_QQ?0aF0L?YNn%CGefL4+{yhZ;7
z$I57Et(CSB_)@g3C^y<6fQ|ul4xo!TPb`K`0ynPfQwtlq2GEUT62QGr`mZ>)Y3ks7
z%>l1z=q_PBM0<*|wO#_fMf-^M6=kh{0{ul(MF;TUzEc|<B-!7Z7zPUr31FzeFi{44
zBQRVv{()gs0HXsa{@T1WfH47#4dA-~rUmd-@m%8qc)BccVgTa<a6D^3p1}S;Yd~Ip
z!89oV>f`{X1k_izZ$$}H1Nfz#`mFHj0n7+sVE~JyI-Qw3YRlEP@v{P$E%9?i=Zb!>
zwJ<M$`N9h{=W<Uox3xHcA7rCTMA;MehrMFaGCBdQ5Y5}o939dzyD|U*vugra8^Fc@
zHU;n_Pm>CUpS6~M3SeCT>p2g#J9THkF9B?jn2hY^0Ja3MCxE>HYz<)WHe=gOmhAx?
zd~De!>Mm;9!FldU+{tbvnRW%RoAYXkj*&~e2I{^5_6J}Oz<oV|0l%_V0EalM12{ml
zsEIMl{1!ILY+3*|p561*tyuZ;ZL`#mH8NoPMkA{`q!A?mr+|wp;0fT$c@qP?lJ$xD
zMFXNNVq`dgNB~uXhzTN{ZwyZAuLtmF0EYv3GAH3k07nBj7QpcUP6u!%fcIsJCGJf<
z5y0;Obl;o$p-i!p0c^kC`BVV=W*KwE8EBs6DS6m<E`aj^Tn_2JY;3*|fNQa??^fNF
z04{PSlruA361Xh-TT{c;02sh@P2dmFRdq}^0{nXyG6xYA#H|2s2XH@t2VBZ{^7b~~
z<!(;ad85jZ?*(`TxPD?{J?cX)qyfAM;B5epdAJvvc^B~~0sO^7IWL;r{Hg9~0I5e3
z$<H`dESBd1{4MZ8l+MclUJ1X}oPRhJZPljU1@LbG9|QQrG2v=CtO3)900z9%XK<%E
z=1jr=e42g6s{#B>%_k0L2_kC{*@DO(MDZX>1aa-4B|3;aLF5f0M-b!orsfPHR}j-4
zm|As8$sI(KEEc9kdsFiTkw1vSK@<t1Toy|KDJmGmy`nwu9WxaQVoC2LCUWOm389bX
zqCs45-lP8eF2$r-LdhUX1yLr5vO%138>e5?mk#351%3aE`Z`aN$^}tA2t(r@m4aAU
zE~!G0Z<g@I^u#yy64yJD8h)18;DDal%3@X#JzgidS`Y|gdk{N<s2)U(AZ7$HGl-f&
z)C$59L|hPyx?6NXm;_=)^+B{rG8=?hY7~ex%R$r3A?j|ayfLYE5RuLLmO*@KWvnAy
zSCnRa5cPtnA4G#762xpCM8hCH3nC?mMnPD0l@fzU3L=@kGMH~>GoQTD`-RW&v6Jyc
zN8{%~G!CL^5Y2*6rWnS?nwkXh_JywPIYW`X3H*C|Qr|io^2c&REwnAxtsUQryDXh)
zE!va2An;`nZQ19CHQEKyMS$Eshz=Te45E|9ojEal2@GKBDrPs)uSB~C(L;-@zeUd-
z|2l|XLG%uyPY`{Bm=MIoAo>N-KZtLF7#>7w5Cei37{nkR<ub8lbJmOLXW`D;D;fs}
zF*FEsNArmTx*@WIgkkK!UR}&29d!gbh%rHo4Pq4ass86<x}Rt0MhDf$E;Ee?>Z0%K
zejj3HXT}9FUg}=(8CiEy5R*Aec@(zjrv&kB5L1Krj$4_dHh%Dt?n}3c!^pv3UM7|?
zOw%Q}Q{OtXf|wn|78%<)LCg(eWe}@^_&$hvoW?=?5XAf--mft)6y<;X7jWuECGn3=
zG#81vm}k(iBxWnGG%pQeSrE&EAn#mm?tIH!V}*HSY}|?<(oE)opT(^XVoeb1f><xk
z+8}-sVCj!MQg_XS>H4_uqT_!K;+G&={Ak`3#D*ZYt~K*!&e?L9HwtGpnaAERZw{j1
z7nTktGj%J^<w?42qWp8mo5odk2C<9d5X8G6f}?ehqD;Gk*b~IwAoc}uIfyGk><{AC
zAkGDGK8UK5b-x7>3L+fD0UqB{rh`EoV)r<WgYbw$(<a~$wFlK7qiHHysWS+d#_k~Q
zkI}Kzt2w?P{K5gv2?jBxfQ2y;t*H}y70^l#2XRE>qd^=KKCU_JFf0Bp*^^vJ1Wt>d
z5j`u)m{#SAT@bz)#3cc4wC5qU=cV2Ht&0p-xd3tnlg|8|%k+o9O)gwPFw69(zzxw;
zGmWf%OJZ&ZaVLno9AU}QXKVL^co4)xao)&&J(7(+4&tvMo(R7XWe1)H@l50AY+ra^
zO#_Qw3cnJ4t;PH!&^o`RVYy<S+4z@7hu{AP@j;+_-ZCG9X#du<>K{W?2%m&Ag;a+r
za|mBlDnZB+0t1+`hVa)+6{17P5yG$O_$?hdL&z1v;V_PbkvoJuAsE9jg^@Red?Bn3
zVND46Lnsi!)DXT4p<oDwLKqan;1CLjP$Y!75Nd}|G=yRy#Dq{SgqaUb#YIbpP$Gm|
zNoG1FLwJ*9E)_zX6!kB4WkM(`G37)nhSV>#%L`Wsq1W^{R;d(1WpS#A7DzT%6=<8H
zHi(e=&!#134SIp<qBTOODZrvyA?P%Y4Pp0F{fu|H8E@b|hCnchnnf+5G~e9P@pE(?
zj$R0@L#WI2*cdNbFNBue4D~~35aLbe&@cr4tlu<*&jiSg1QJD)LP*y9ln^$QGBDtC
zaT<#@`Jd8e!p%inXnsrn3qW|*btCJx3E|5SdW6t3gtjdDI<|cX9R%8OpyG1Ud22Fs
z453p9oq6om8`*PvEmKl-Y?lxw{H5zE+D(+%uR`dq@wk-+-oo^2j(iBcLugmjaPFjm
z)%%2yD*I0E8$!Pjmj0po{l#oL(M%o?!a&I`zNQup31Mgm<3bo8!mtp&3Bj{BbyNt;
zHyOJ0PyDiI!f@_L(S#8pj1-``ac?SPMoZ)v(Xmp*Dv4tfCxo!5Xd-{uofyKT5GIE(
zC4_H7V3DVanR;VaLbqb^1pW(;gD{PUGK3#Om>$9mPM8p8g)lFK`5~Ne>Sl|6AHtjv
z<_Z_~>6uvco0I=DQqzJE7KU(buC7bjBxV<dz)LI^ixM~o`oGZMZfH2YC2?s8%eZSi
zDC-lVdRkTptmGLNf_s~>Q=(zY+C&zu4dKTS9)|EJgg#|re+uDz2p4#8Ls%a|nI7h!
zL)gz#Qur6q4Wb)E*d(wyge?MFMR$d;O<=p|4pFwVGlclJCc<uU_K5D)O80U8jMuUB
zw-645poHKI;a~`dLKu<X=-@dR;)9CxOrt*<tRdJWYZrC+OeH2)$ta?_#0-WI5^(dV
z33x>r;1lqN5YU`V<BVaAj|oIVNY|XhAsi7tDw<+4u#w}!CqnpL;A9AA1Xy$`gww+7
zhQ~3>bXKzGL@Q=*crk=aJcuFu5yFZA`pX=#?b$|TGhC4@ovQ-BJ*W{`s_Szk_wG}s
z>mmHfh2oTn>4v~f(OaUoMem5-6}=~VU-Ur;-~U^K6(4h%4dHbN|Aa7lOYD;n{^qPW
zqa!~J;aLdJ#n00$OM}O?Z#T{IA_R8eWe6Xa>Rt&mTkNgr4cD%w#-*h!Wx{wH!n+Xu
z4dHzV(P88W;{)S4OXnwM4`V`$6hrM?pF+qKM&>Y9uI-;iln^EGS&I~MR^e=6>|fiT
z*=fTQcehB%8Ah%!3WiZAjDK3B<PIYb7ymGBg_GHAzA%_rJ%1SE|LjL+X^WHsVXWJ1
zpjkMKB4I>Yq!bUMXc&LCNMU~%Q!ET7X1R$H5>PUXQel*qM%Xf|FkRf6%A-~`jB;U=
z52Hd@oqH9-*mX@u;FT(s!l)cZl`wdWYDj5S;TTbx)dV0~T{J0I_L>q|OO);C1Y$+?
zq6Ud%kvR-Y7@vpHIE=V3YKPGvjD#@igi)8ThWQL*-$ciUvFV0!;1u1_Bm<$IWb2Dg
zpQ39RM)Q1z(|%nFM=6XJf9n#%NDAZeBwf|h2BzdNsLux&8ig_9PXklVbbXUBnuf8F
zjfByRErju17}HoijFw^E4H5&xXcfj6VRQ+jYZ$G=>R+VWhS4sJHeq}j2Hzg%_Z!<+
zF?PCcY9B`Ex~a369m41+*&W@ZIteWO#>~>8qs^?+EsU?i=p9C%FuI4)cA&YJ)ansN
z&oHml(hVJG{+eCdn!v>NS*7xN-N@^vzF{!iPr8w@>HeIA>vgH3!!pGV3S)3sy*6xo
z7(>Ds8pdb|u3N=8j5{92R6Yfaqgur{T$HzKIC(aDq{Q&<4Wq(Ho}uGDjuD42HjHt?
zSJ#(g-3eh#l<Xwg%D2LkMW=9Td5gy!&`srW{MyieosNCxH_y|<m=ng_Fj7A1XM{0R
zfIKUV*}_G4=$QRJjCo<K3adZh&JSZj7)!%AmOtl0?%Ka~7l*M#V3Fv>dI=jY>VF91
z&EC|a`%=k~>IuujSRO|3TAm3%C(K)_Tfwu8Z7$V)Th~Bc9mY`@nAU``R^uN9eiB_5
z#(K^FS>PAZ4bml6-0;eDwVQc!7+b>F8pbxx-Y^b?v7K}ElVMjFyTjPQiP1LUrm@~m
zZn}jEdl=j<VSgA0+a&A_Bi>Yx{yxsqdhukMzjD@%FcRWgCKNO$9t`797-?Zx!w7J9
z!mx#555pUVFAPT*3MbyaRLj29>_v=Do;dqbU15+3Ozto|T0lmaU!06mwiDunzhMZ6
zF>GHd!G6?8h)6bF)bTFyC`Uewy%Fq-;CL7(!k8YxjEMTC_xCU!)HL^v;A9x5!Z;nq
z8J;pfn^!swXTvzho<tBG0UywCKFmK@;g7J&7ep_LUJ|_=#uWk2)0nGa_3|@@UFTvI
z#*;9fO3@9`JEAv5Z;9RxgH;%RH;j8>+-H|~ri(-KVHl4z&IqIaB~C{6neZDf=3zV!
z<8R5n2=m#{YMU=b*(>sEF2!0l!+96RzhPvGAhYb_dnx_MR{;UGpRtKgT9%DOMUYj3
z$yp*`J51R$hnypVoRaMlL9PgLM^HP0IuTx7hP)A!kDx*X`69?4L5T=TMo=Jvf)Nyn
zplAezq+;R!X)U9l#Ug4?ii@A&aO)XRDuOZ*l#QUYlroHdIjx0^EVW_;l_H3ZKp#Qn
z2&zO-EdoSPRf~-IpXwQhkL^^~N^3+=Q@EDq=pyR6#BMMdA}~f^lA?@WnIo`75GT(6
z_kl&^x)H=j&?JJU5!8#IzQiPpHi)2M1fK~fh-S2w7(tR`GxnM$Q%VGl#Qa>eu?$g0
ze^}Zqg60vlj-ZW{wuqpW)<R1G_JqM-$Ppxe8A00!Iz-S>O4~)yUW?D@1GSSlokjoO
zWFuW8=qBb@5d<dbzZUK;+C#J_12)96N-xQ>N^gNaTA%wx&_9CI2nIwjB7%{eB*nX5
z$=8eD0u78{kYopo4iRPP&<KWU{EfhH(Mf~jMzQnCSB#ky!DunZXpv(D#zin*V1npG
zt#n^>y~$E{ia6hjP8I!5begCsr4k#T$q8`NxFCXs5zLCHe?u63*EBnVIT6g2?DwMc
zxQ`=^ES)deFPo}da-(ih1m~k-S4H?_1pQ*sB@z4}Kxe7IGSTG`tPohKmGZ%|t0U?q
zPirDr8^Mne{1m~K2)0JBj&pl}@#hGBiQwr!mh};QKPI8~38TGi%7zFwMzBc&Jagk%
zx;cVty$u8=!nO#uN3b)3T@f&z73WrMup@$T!&6R{Fzn`jRc){*g7qmTwY91ZScNU`
zkKoq`W~XBgKln#*fM;|%3Z~;=1cxHH9Kn?c(zw`05Q-oifsKuG)<xir;M)rEjtHC)
zxFYI*eihN^!bUe&r1ClcxRQeovn=vO;OFd;EKBJGujE)$DkdnAzK?b5&r6I%kj@o8
zf)f!OmYAav9E;#c1Z?Wt$2!&`{Fki||GTtyA%crs|0SL=ry@8V!I=ooM$~`$oMR_-
zQSWq7)bm`jVxz{#M$u<eY=`leMEOU9s~k*@c?8e6xd^UDa5I8i(yYao@Tcr7Yuyls
z-(J4|V7MK@9nK<g=--nV0$aNu!Gj1MO3@S1N1|-uaRh&9?A{ei=hin>o=5OE*V}aD
zPFHu9=8FhkN|=6dl~)n`SvK422>yxSO$2Wv$dr!E>3A2xzvSHJkKD8_>b>v>VVX=d
zKZ!}^AVj4jOFFWqt5q^e89>OEj_m2`aAjnp(~(1Ba{f;wyObv#dDD?E9T^Au>V94R
zbnrN`hyy|`l#asb=$npy=_rzpqUorUj=Je6mX6}-sFaS%=_rwolIbX$j&kWJm5$@h
zETz*?CLJG}<fsuc@j2ZI!{TN>D@$$EGzXPt`E*b#q@$w5x7%W_bS$w-I;y6_kPc%y
zV$xA99Y{xY37B>~F{3GJ4RQ3+Ld|s4N(VQglPpVP)3LEa5+T#c#LE?uOzAME!;+4;
zbX?h)$Zj}qMH!psIQPs{I~{qxiDO;z{C%nM>FB*1J<`!L9re;tKOGIyk&uoS>1dgb
zhUx!(rTKZf`X%aTqKWB95}=bTkdlr@n#1oW8>gd*WSjmUQ)dC)#PYuXLV;p!ad&-a
z(p0HX3T-Lw?k+(u?(Xgv_lv{D-5s(U+sN)FxVv9m|L?wh_jms1%z4gdo_S|>c6Mg6
zO}2>z^>n{3!`^-7zq(bRiVeBt7Hl?RruQ2gThN5LsqQqhpt;WUwr5KVT5*-u7Ia`}
z!%7Xdr2)~oy#?QA7a)^TM+<6{(71~QLf*>VSXUg2>`H^2p)xt$*)bl9BJO2@*@FHS
z46vZLMY}QUYXSX-Q6FadXQC<B0{gK;MfA@{e_8NsdCUk4Mp`h?f<YDxwqOXI{_2>b
z-k6~l46|T3?Lv{28=i~aGd5eU2QeFSB({r<$sQFm$^!a6u?ZGTWEf4Iw_vOViRl^1
zr!<cJ@fJ*t(Xx{)m~6o`3*5_NrqJYE5wm$|%v3tuvY0%@6Ys=m+37U>mc~?5V*S@*
zW?3-Xg7p?`uwae_b1hhG!4jH#OM~Xo_3DtakVd9V)O^+jG<BB-kx6M0I~2B*mJ&y<
zwqThB%Pm-`7f~<;tl-xE{I|s_jwEx91#5MG9mi8J#Zb!|E!b+oHa0iWjAhtt!4^G?
zA}MXRV21^}E%;Y&ldA9Jm|c1#IeVD*am-%5|N9xJ8`RDr+WcuIi1;Dmhy_P!@ro!U
z;+O@;Etn->wty2BoTO_lppSr47M!-=z6B2~IAg(CT00ipwBVct=Pgia%(sP4dl-4a
z0?`61Pl<~bTw<X4aM^+@%vV{jv07LKR*IpIylpfqga{`MW<KpXF1rN|y)^&u%x{iH
zN*1`-akF|@y{s~;!b)}PC*<^5;OFeYCjr+j=rbnr&4y$*ee6ryuLXB$D*gzs{8am&
zf;${GAiF7Rc!rFRqwZPod0W)!TM-W}ctj&3ppbya7Cf=wD{aWM!)!J^wcw=%uV|86
z@SFy%SK7;osX?PVy`W`yDb>Eu{Mw@Zk=1`hr!N+~vEVId-_azTkhVLZ1{J+$=RXTR
zFp%?+;S(KQcNShw?Np=6poYocE%-sl{gE}FfS+8NR{)h#tzQ=WrafHH4wpedkbtZL
zGIExjK!!}LnOU>2UQSQU#t_1qoizt*PS#*nY9aH4v{0RM3COK;9)?aWl84Srd$G@)
zUqAsGC{u-UOUy%Sq>^7)KoJ2A1vC;+R6sES)dW-*P+UL>0kHxq3n(ej6AP(x(o;(b
zFt6-IXIff783ARvaR{iyP)<O3h6=0|S*dTHMkT_SO}b-XFbW7~C^kqNmIwinoTY0-
z*(d?goQ+{6r&x5AX|}XD0kuYTYFs`gUiT9OBr;dgog@KOnUi(r{janX0jUCN2uK%@
zCTN$~uB0|=nEd;9)ivHUYQOWl8hz4IYf}4MtF~UZj)1y4*Aq~mxq<F{u%$H?&_qC2
z0o?>N70^texA#-q@bESl&_w{9Q45Z5$=XUlYlb$g9a!56Xvff=mHMOH=t<g9Kqq!O
zv*z4yCNo2Ns@ay-UBI-o)LyJT1gvP1+>@1{!hSOqnFW-tk=m<qa$f=c1k4aHQ$T+K
z0|bl^v{wg8e+d|<^T&EYgLEFuFoboeKucbWAI|!)zxEyPBL$4&>}b~UtYZX>Wf;fm
z=ST{kAYdXp#FH2%3z)(%m35k4I-P-f^59X_vvSeP10x%+37;ciu7I-w&Iy<&V7`Ej
z0yYU)Kyz<tWXL+xkK^GB1^RF3=tTk+)5SH#ED^AQW^Yi;QUNiCWB(SgOu%xEp|CX!
zD+H_*u!?!L07_IuiN1AeE%Q3o^{g8LW2lH)?w1zxkATh8xHE$OVR?%{|LKOq0*(mS
zCSbdOeFF9i*dbu2fZeoq1eCiTy(2kx7tO%^=INfE#FX|3*vm!aH1b4TED{y?GvR=M
zg97T5j5$PoI}=Iq)K1I7T6HQtN`u4M(*lmu=1(VkBI=ZYlWZ1f*oi96|2Oq+$rL&w
z6`kRxsAX#BJT36eQC9_A6L5j~qJT>RF4H7=8s6`0%I-x`q*ny(At(Zi071ZQ0e1w5
z0;~d50X_jX0d@gy0UiMk0Zsvu0GEK!m1gsP^PXO*qnAZc+BrF8@_uvF!CqbgGVLJ^
zD^n?HnY>YofP52EDQ%7K=oj!O{)T`x`_0#Ba`x9+xJg60-+YTpuhdWOpRw9q0rv#F
z67X8UeF4oo#y%GCM8E?94+TtJ7*u><$|H`aLp%1Hp9;8gpw|nUGhNf333$%gXZy{R
z$S3oqfJN<M3El{JD<Hdw93tKccrPGOL?#i<&8hzh$RMKXz?2UHJ_`7x_x3x(XVxzQ
zzA}8%ODi0}59Xh`^Gm>QodZNPPEDb6qz-2k5qQA7LG6`UL>3W2B0l#^rBwWYIsSlI
zR(oY-Cz}Xj@>?D-=M)hvB9Dl?B0@yu^z{lAkxRr0wHH+xa=<+IfH}8_|I}XPeZ5HY
ziO4UafQVmW1qwE<)MBW$`;${h3yUZsVu*;LB8rMACL&El4H3mfl%P9}Vd2$8loUbV
z=3x*~w^>vv5v4_x5iu}d<?<pbh$t(foJdczWF@C#|72216-87ML0NDlInR8tVeCXd
zOu3(-vQb312$P5i5z!)IsGX&$4K2x$BBDgtmZnm6KRdA^D$^wpkt~7&;zT4c#EXdQ
z7IV~?LP~z3h$`$Sv655hd~(z)x=~L~k4+)1E+Y1IL<*hesDh~?s_m*uA7LzhRy18i
zO%W|cv=UKEL~Ribs09&yi^S9sQBTCMLXlJ7hSwEQuyoX?B9Zk)q<)Si^IhYZMpV}t
z-jqh{U<5&9&Ng9PvOK&Q`&86iL<{ErpQ9<;T0|R>9yZf{i><AQb|Sip=q94Qhz=q$
z42bH?+EGL&hU5(<GEe+WB&F1a&a|NBQ0gwCC&%<)Z5gD+^b%p<Dx`FX-Xi+&vHG(1
zW9`p6fb}m{iX13nkj{e{=!fBki5M>8UlDsmj1VzW#A*?1M2r$KTExe55u++*7$ee;
z0%JbS6A|M?j2AIg#54-K6fr@>mILOA%$M?Joka8PSIT78DXixXn8}&W0W(C*6mc$Z
zR;oBl#B2^Yoi}UTuN3uwnanvN=5l28hlqI;$>u^4i$tv8U}|cyh~?bK5)n(;{98mt
ze^j=E=4A|T511)SN1<R!D@Cl*>pra>xmLtFn!VS;chMv%5xJi3y=zA96tRJ`8(GQU
zL~|x6@gLUBtXo*OvTkGD&bot@s!%(Z-z4l7@%u`2wmXsZ9SD0x>=SXHdX>?%U&H|s
ziU?K2K@o>UToQ3v#9``yi1P$zqjwdJJu2cjEp}R)BIqBVvlNTnVu?N}VpH+hvvk%B
zr$n4)IKx_Pt%*u!BvhWzEtwiIOx6Co`GSax+~%#T(K$-QUJ-GX8WiCWL7!<}6CsEY
zMfzMI+CtZ~NNgi9+A3n6C7P0rD-sBw%ab}qNFqEUytFk5(S@?aQu{6uZVo$FT+7NL
zz3m^}`ybQTVzC7D|KmPt+#h>eM0%wtzliH17W!jvh`33SWJab_He_%t#Z(xYOnQgo
z?~1r5V#n~<>i43_qz45b(DHd5{!qjt5syVY5%EUETM<u1JQML!#48ccX=kgD+F8o_
zg7&v%sU=#(?kby_Tp@Mgv+&qXQLjaeS(Zw$zjXRL5${EOqFtA^P!S(Qy!e>&qljh8
zQvXyW=(0?!`$fc85#K~~k+ME3onHQ+d3{(k9fbm@sh`?@i<dUMvf;Og04us!(bb9!
zR%EoIi4{$)2(%)T6=_!OIho8>WU<0vh0%&2E3#VY*Rqh`ifmS7w<6ez5Gyt&#@bF6
z%VEXHhEc>h+4=H5a%@_*P%Cm-k=u%Ib21Kl7UfKeCCy_6X<k->^IbX>u%e(9#jGgK
zbqlc;v7#`8Azvajdn7Tjs1?6Tr4;f+l(3?t6=kg`XGJM1E*ywDQ6;vF6{W2pSdo^E
z^mE=A(o)^qmA9gT6&0;m5nhFQNTxq`Bq@EsMq0^=Fov+h5tI$L!em7iE0U~;;7{P9
zt%%`Mqtl_*qPR;LL!)BZtZYRbJFU}_;~D61loFT|Y3R7~g-WGVwIbOH3QOUN)vTzl
zkHD<7Y*dAYDAkIGRbwgbIv-TSigYV&<EUlTo(pYgMQyA09z|VhIU=SG4aL%!u`6QU
zW=ySTMSZ$t(J|c;%281R4)6uV6t5H0h%Qr9Ok=C|wnq1;m}XWqr#?`#7Zd0;w1pKL
zW@I3y)Y6Jp*8kmmZ#xpy#)`I9w6kKz?dVQcbhe^BGi5ti(a{R}?qW)m^=C+>H~*;x
zdTg?r72T~kPgjJFNZrU4J;{p6R`j%@mlb9!dRsBTiodM*FEYB175x|t!z%Y>sI@U%
z%^KC8PI+Uv`Bub0Hpf~q&Wb@+45qoaJ!%LInpJyeo_Hub+d?W+cDNNI*dNI{igh&W
z7*>jTdcDGUD<)Vm(W*V5PJO7pJ}Ulfv~VXP?Lf?`+p$xum}<o-8lto1rdcuFigi}3
zw_*nOWRVq%t(a-WEGuTSlje_HekgnnGqpC?ih0cQSr@P_)JwCTF1N&rrB?iH#WK2H
z7b2+&rEHfYzV3~ne~Mhrk*zL<ub^vjF?=QKD%RDkYgpH^(vuz=IDV@Y+i0luqinL`
zALh-vv&D*qi7|Ab?YeV}E+z9$D|RvLw&DQ8zpQ(xduPh+W!}e1)%RP`=b!LDeLiT#
zA>BXBaKwtEx>N0-`8e|l)|0xgPSvjaY0jRp;;a?tXjR5X(|al8U#}K@(TYoSv8;Gv
z#bvriR=8-+bNp3ShZWbXuvj7JZSKgWotns5s}(lgw=>k6oYl!7>3*|*+OT`9xM{^L
zE4)_7Ty*$ixT43X3_dIT4A*u4h81=5Xw!z$ZCa}A-_c9&GTdXm&-%cMMSRK>|A-c>
zBZA<m70+lz*wD*{=T^M1qL~fNZFp(LE85m<C}qQIE8bX<*@i4OWDAIV%dLH3eP_jc
zhX4L(Wb_AykF1|qKU=Z9j&_<~^_Xu~e7E9<6+d++gAKo!f9p<wO?x<yYEjB)L!eE&
zSd=o^w1?XXf^5iYL;i%AEnl_km5l>(v1Vt@!J3mb*oF`WiVU^k@I9@C+&20GTdmo=
z)Q$}WnDf~{--|^irGo4fwV@D0VOH{s*yw+Jk_n2jQ(X5;*zkUT6#1oXC}Trq8{%vz
zYwt<_{Z!V58flT`Y$$I-1&*&|LzoQ}nW48}+!$`qIno9rb2zI>_akiD)6sMkN>MgM
zvmc|E#@axSN>WiNRSSq`Kf#7X8>-ll#M$~bRJ9?QxfW|R8`2o6v!<|8^;8?e$7sh2
zU!PLLhIHMpX~X1mnqQlpI;?f|(s~RPQnX=gK-bZRM(kJyYJ=0*h9-JsQ-%V^wWeAy
zce0_S4HG6*Zl%YxwxNyAZ5i6Jwzr{!?ssH(nwH#|p$ltQ)^4oSes>#sFw?G1S+fnj
zZE)M*v7rxLbQ_l0u-t}zHuUGPv8?Xd;qgnt2QdF-!$2DbF%Pz31j7*4p{&DLsqx`9
z&_yR0$<8R&(R%3^8(JUGPWknRh;cTIr}MR8BA3p!VIIvc8eSWw=<zdcn5y$M8>ZVZ
zgR__zZdk0fLunQ}vsvfZkjbU_^EtbSbpb1x3mID7idxLDgmtN2`nL`A&Gr<w!iJSL
z?6%=w>S5XFRW@v+(|@5Y<kdE;v0<$Z>$uh?*7d9#SU0j#WdAAnhj}yW7Tw=!qhA2g
z#%H_k>|of*x{LMQu-L_yBKO#E-i8Y{>}7MG4f}04V8cNhPO)={^%(16)+4Oc_)#0?
z^6Vu(Zo>)oPwJ)grG=-N&#<1={c|+Jg|!(%Yy6@OmuR`!P-|5<Wv}QlR)(vz7cp2^
z1-(?H-E6Pc0wtRbcJ>{tP8%eK#vv7{)MeAYU5&tNgKWcNE>c);*l^PZm6-y341OD~
z>(1up6>l-$XT8mOM=!n0aF6!7rP?KXz}bg-=_4D?atEmBi49M6{~5gs=={QloTtlC
zz-t@c*wD$2&UU=D;T>(2b`-SZJw@7(*^VrBe4xz%kxgcWf3x8uE$~_4pI8Y#GkjtF
z%1Yn8M*epjesK0D4Hv_2)<8P~>{<&MSP3#RP_0Z1^xbY`7TFsfWJgvzve_{zXEZtV
zb@bWoD3qfraSl6ja&WL6x%GBJ><HC47ae6;R*KA{J9!!MvF2x`fI@Z@wxg;Y$#xX6
zqo^I>c9`raW=C;5=nHDX?Ap^NCG4nZN82nhB{@q@DLYE*T*gkX0$LcQat!6|sGvK6
zq1mY-xOye(zbS^k)x=<j(GL2alN_~E>1#imhsQ*4eD<BOQFcVy>5egCp*M)MQqI(9
zJ7V<KVi_vi5obrd9SL?M+L6TO?`qnwc2cUs*-6zZ6E`^#RLzd+b~Lx6g&iq&q}ox_
zj#_r4>20RlG3!N44Lj^3G7|iK1h=QBWZ7AixHiYs(Ie|J)U%_$9SxWp+R==mksbcc
z8R>|PX>9fQrgqf0uYCnQB`R%cN2zXTWk+i}Ivh0DtC7;ijw#o}i+6}^PvgVf&W`kM
znn`bXcCaJw-AGCuxrm^P9bN5sY{wHjy4lg)uKf|Q!j2wx^t5BF9pmiiWrx|0!FCL>
zqqiM>>=<CjUv$J*k$qYF*%4T@9A*1+w$`^^#Ixo^4zy#C9Si5g5T7oUe9aY0Jk*Y1
zc8sJ+Xvc6nmX=E$L8m+?=FR4mL{lt5QlT1?zV#xYTBE6jIWc4GXlaT)7MwiZjtO?m
zwquSR6YVIFC2Fc2)9jdJ$7F8gLAg|_IEBtVGL3k;9W&UUWe0U&CQZx8Gzy>tl`EZ`
zVP-5HXs#XesD*F6{-*iE!3$WatKUatOB@%o(2hmyEM}$ZOQ_pACrpc3#=M-*eX1Bf
z=zfircC4~vwH<5h*kQ*`JJ#B<j>mRA>$i#-dV0h2Z_BxXvoz)#?bt-8wj=5v*3GP2
zShuoL(Kb7_Gs_nuD7(v!-F66eh<0qbsePLHuN`~r*sHgB!j649@3-TC9S7|=q&r9L
zIIQy#hP5d{#~6<5{)sc0PTFybMvt8ftY=uy>M`f+IIr{K-r9#a7wx!Y$7Nb{>|bNO
zs>i6OGFf!C#RXaIu-Wm@jz@OwmzC_api*KSc5LewneTP9(+<fFmmO|9?r<%S9bSeT
ztTL;QRbf?GD;&(|XQ2LEXL#Bn!%c=;the>ju|ZiW=B^$0*tyU8KrgKwSj<+a@^(+^
z+dPSJk7FtFsU1&$Bz&~v8C~4G(H(q|&*{?pB460?l7aY@9j|qM!|>LQce?Z5j{lfH
zuue#dqAJt;l|I?=*^YrrD}S-$D~;jo%HQlL;Xp|TzT5G`j-Ph?vLnQSPzQc<0L5f;
zAi#kP4rFv_RVZb4Adoqe?zF3ujr=SQ1UZn^fj?O@o7p)ghaQ>Jfnc3|mkZ=#E~GoT
z9mwNAUI+5AQ-C!;D+SXb3hI%64pG>FA`Z}jin3o!FD=fn+z?sHfvzpm=#*m}DD6NQ
z2g>R(l^iIib9o0U=v>hO=zQ=)N|*x%2aLKC>Cgr++yRsBL@>-+s*OyP1JMq|u=9U|
zP?@V-o|cU&CODAjz^uSZvjZztaUjWoHjmKu5vn?nO#M+&UPUzrsyndAjm2*4covr8
zKz0c^B&0f!=FprPqz>$4PIsWD1GOBe?LZwmSqHi~P?w9EJJ7;`dJfcgpaDD0SgD1E
z42>LUtUFB{Xv+N2n~MU@jn6|$sigz0sgn-0;?jpX@{!q=E-`1@vsSs2Ye2R9f8skh
z(2>nftesh@s0%|{hJ4)}=;6Rh2UfAu(}7_Q40oUxT}KCcvpG<&)rX<41N|K6&pg0^
zzZizR*7`{)%R3DQIWYK-&pMPfeNzY(jc{P31M?i1&*mrx#yc>9d9(v#7{;=WW2Gv~
z$7CX%$k`bVOmbkd15-FVO^=!Cz<qZX3Y*SO@C2<2rI~bn^_bZVa~zn<Ft2nF1+@J)
z*8&HY>M;xHTI;-+VTl9pcWXWWTlbeSEN5N8T00=$Y6sRhu*HF`4y<K!odfF~NFV#Z
zo~+>0-{8PTE~N%HG5o{2nRUf`?LZ-y6Si@7J1aS@D@E*bV7CLEo#^7kzYgqi;IRWw
z9N6o?J_jrg2oCJ$_>&Hta^Qdi2OT)Xj_*Ur2?q{4=rg!nNAxz2G8}W@IKw<1Jv!C{
zPp;DroN?fS0~Z}Q>%ch&&U1`9K9~Z!jLq|Fb4d3&T308R3BN>_qfGb}*2}EM+l{X}
zaE-Z2|9VvVrg4Jkpr2aCO$Tl{U~|Ckfb4+6%{m-#GF+DaH;W|Bx*Tvb(1AP*UI%jg
z){d(>;B(;bvZm_}__@f!*NBR8|1>sU9CCxrhZ}3&cHqt*cHl0<eb#%dMKd;jSw8#$
zGu2)FE}rxe&83;znLc&k8EwB#<Z|M<11~u2n*%Qy{&V1i1Fsx-&Dl4sZ&|CfiGRmH
zjl8F`_($vWM+ZK!`Ne_H43WH8Qd^{tI%uYVuQU%CzB};4fu9a~8%o<@vN<*V&76rj
zfHebaMkfLpC}vNufXvKUSc6!zvR+)Roe`z%oXx?S(}`e)5Z0r8wYi$xi9Al!aiXph
zd7a4TL`f$~Ig#Iq0!|d-$bzgC-1Bl-()j7M3OiB6iDwPc$7OFtPEigh##-Eo5_)`A
zXGm%0NGGD4DC0y~Cw^oPFUO|QiSi5;^!SQSK<7$Mgz0Q>(&I+0=|Ggi*)*|6u>Qyp
z8tp_3b5$o|84_44vr?@%hIl7Nf7kX6N{Q@LaUw~NX|OOP*@<dSRA;BA?x!%MvZgsv
zgCSinZTT}xE#}&+^CoGdTF;64PPBHS4Vw*|XvNTwwGnG$)+Ve}r71%*Cz>;~(EXN9
z?B;oLxcC2F7uq_}iA$wrA?=)K&)h+e@5m5dMBDCYE9>e+H)?^l5huDk(Zh*(PRw_r
zrxU$sR7=H8b;8V5hB`6KiQde8oaoEY&xwIfTsvs)&sl170K;FbA-_Tf>Hc7bA*_q0
z1P^y&1oL<&M(Q!+oEYUq<sS7$vonTutX`V<IiyKdQ{8{!Cpa<dy0$q?<f2JVOlFwE
znySD0Omkwo6EmF1JtknL6Ki_>Z+vEP*lgB0PRwPX*7~i;w7`jlPONZZr4x(TU*g14
zCl)i$<hk)T^K#bRJ?bxW;sK98weaP0-c?Sl=Aw0UL<aKLI<aT;|91XbWrEhTzrl%(
z3{TS1H!=L<#AYY9=(V;nY^Af{*CuLb`=25wb~5bJBX^C@v&V_OPP}m9r4##{*zd$;
zC$2bgz=?xSoN?l;6Nfndq!Xu{IIPz_!f=%Jm=ni!|AZ4?_`C*H45dS#rt4KAsPEyL
z#FWlCalwg;PMqg>dXf6$U!q-NU@?06n7OGQIag_JIC0a7TTWQ?mK6rU2~l^fPS~8V
zJK<o*t@}<VB%NIhXSQgYr-#|=gshhqbZhfL<*d&MKf`s_8?1D3|Mc*-6L*}r%jP{L
zSIAqf;yows({*I?i4%!QCNdv#_K_2h8PdmVEj(o=c*gLYPLQw8D<@vlh&l1qi8r*7
z9x}go;y;GBPP}8d8Wj<eJ^X_cAFHH)qV?6MN@-`ak4}*OHM!oWfmJ?JA08(i=~n-n
z6W^W4C?Qb74<~*)kwL<O9O1v5`0Yf1gwwvp+YTk<NH*1Z9l!5glSAWbkwXEuN}C=X
zNysE2vxF=XrqxU85E&69VMlmeRteb{jvT4kX+d>Qa{By;xS|NpDIr)wf(wZ*gh&XL
za6!UF3ArTXmM}!ZPziY?<dslaLY$<13r#)=6(m%YFlv`6zk~u33Q8y>p|FIK5=u!Z
zBB7{+tQ%_<mylLJqL_pOb4~AG$KQA#PiI#`Lhnkgy1tI5fYK5o=9|h&C?}x|HFz!|
zbGxcDGKAl_l~kV2qGz6xPa9t=m*gK?kG>5L5~3yT*CHy>vGPaMnqmr*V35!*vyqZf
zLO8RDHG(ygHHwvDs7j24o6o{1#Y%V<n)`WZ?sz(V2}u&FN=THjXj;RlW~PlN0{(Ry
zt4LVABU9^V&66cmlaTLL0-b(!2`Lg<NN6dcX8}_xYXdq{2{oA0CDf5nS3*q*wItML
zv&4pyMJ-tlrY9Yo6jzTOs#{;ekzSby&esohbj#I{{YDZRGc;js%DQ4lSqf{$++2cZ
zfmW-Pgw_)JvDrpKTM6AI^q`Yvr?W)Q5}-XZ1$U6pQ9>vBgT)&{SxO7J&8{5KjRrq&
z&>uf`L&=^Jda>U}f?02&H^br1WvS1nx!ZjulrI%Xr$!a~OBg^`hhqk^4&qWO8q8UW
zBpxPVxP)aAmeY{d$v1+ID`B*RkrFzT3a6FjUKQeg7B)u0cnK3EjFm8sMzUCw$a+T7
zm!}dYN|+>Jri57%Ces=HSA}ZLkT8X&H}6hUY3A!ZoyJFB`=guZo-JXHgn1I?OPEWi
z)}~?49W^r@OQ1s&FQA?r(zdciG|!JEER?V_F};0M++uER3F}hUzgg9h+McjN0!^6B
z61GTKDPa{YpBPi?J(*TZSi=)<E$cegw^!oUOL*QoVuOT@v{I}A#FREk_=o)lb4q$z
zM{Jd_O~MHYz6jHHI+g^>v#?{-9|^l?HAy%qVYh^TCG3^3PePjt2AY|BB>JJ!q;h{5
zy5}$ytFGyO2}=eT^6xjLehmAb!ElJ?n}nkh4%1Z0VW@D(Tw<f~ZC_*cvW8;+g;B-h
ze4xvhTGHW8(t?_5Iz_vUgvGf6i7B07^DOH**7K|sa7n^t37;f<mT*PFRS7p}tx32>
zZAuU%h*UZ;BK44&E@hkGB&&p9>jE7ToDyt2o_1E+vT`j5S-U$)k|0Y^B)BBFB|Hu`
zx+)nxH0S$;-<=%iCG$Y~h;JQL8YS9xZgq9uXs{)Z(N7bmxbdA_tIZ+vbsCvN=J7d=
zw<O%AJ`^&&k#I-CUEaqYOY}@s{(BN0NobnckoF?%KFyZa#s?A}GHCoOEbV*Pimzc$
zB=r3f_LM6=V|~s_!~TNdCF?8J*Q^-^CBBvLPQrW6{?#h?2ZsMxd(H{?D52q06QyN0
zn|zV*mG)H^D!TAZ!gtzoUC8GGt%V;Fa=Ns+{gXzF=84<*n>C9|;{etStQlPhWXQxy
zrI{H<ZEqFCkd-wXYj)Ngtbf9S=_SC0P#1E!klTekF3^6}IBR_FDP3MSHGRw!f56aS
zyR$m&U_-);`CTaCLP-}2a3`ss1zjk_T$r^8Yf;u>ti@T&dQ22N<dC_P3uRm=>q2Q4
z<{UCp+EB7lITyN|H<ou{;~{glJ_!z&krFXnsN_O~3z05_xzNg=RBD?k+y#RR&a$~i
zma1iRA@BBJT8T#wnN2RFEj88OS}Mw=ZPBqVRCXbn$B>3Gh7Pw#yOH?YnslU4V4Mr1
zo15aPsRE{@fq6-*xR69==SE34s=AQu!c-Tgxlql8>ModF=<Py^3#l%2a-p+JdreHE
zj@2`^aG{0^=`Pfyk#QL7u-0O&&02Sl(eZD5UFLeM6jtAb2Fwjv8?iQKZQ?>xhGs4_
zr*2#{QhZ=aLihBl!+KV4N#o!`YZtCXncBM0j-d@};L#@SUG(*^)v2f>LkAbEhs@V5
zYL4e+EmJdN*>|QcE_8LFn+s15nWYp{nWA~SGxuO6v!@HanCa{&+sB2zF8t-fK$<pk
zbvkjnl>J=j@4^5VmM<}sT4I=V!tnQ6!yp$1Q-|vqC%Z7jg`qA?aABegmVBmRE{tcW
z(>idt3&F)qBU~8CFp70F>loIttm9a7%nGDn^WU*^Q%oHe2T)U!xE+Eu?o!mlDJ}#Y
zHn*Q2Fx`b2E*zi<?7~bJX1TD=h4n7XcA<C=Q<Z4bDw+c>%yofY<qK@APdd+q`J7$g
z!a^4oF_Zr{!(tbfFf7&mnKMF{F)wFb!Mai}-7F=orpfRqYz-^HT3Q{4%>)}<cuTKS
zF6^X9?!qP)4!x`X4^Pgm%$r@<LbLI|D&!Y0okSCLn+x0Z+55V8o?R~Nc440jJ?<L+
zb>YN<P&%VME|8vB97t)e3$cgIl%;_EG<3U+PY=W&a^bKGKVA6c!Vwpa^0B_=uYSyh
z<1Rd*t4w3kC-j619v8eWoOIz7&+XGRqg-&5(OzQCuyfXha}4KQxZuJ?=F6;?SShk!
z&azi@zUo5TJ?Ugx*b!V1X*TMmP8V#<c2<Y(Hy#lxF}qmZx<9XAKG_Au1)mFk7gY8S
ze+j$W#xOt5koG%l#_zD}w6PR3P@iwOaFYXWvEFy#Hp3lO>e5{o?&<u#O5g*XAG+{}
z`LXWY9#Hz33(s9B+&TU`ZI6`=FI@PKOJC|SuNYplzF~dK`p$*-40OcFQ}dC2aN(ow
zd~)Hl&R<;k%KS}tcFYNA|10zdo$Qg2gM5ectfBEYO?5XixRKF~+-|fDHP*{v40I#2
z8(G}Q#Lnt+M$5CXAh&k&Kq=UbtjyVTCp$w9)|{*f!GW;_jUmjTZscO1x*bvi^0<-L
zjeKs<fygPskl&30ZWMH*5Jwi)8~JlYYON@T71P@(&X6fJpp+Y>-Ka~YZj^DOtQ!$-
zM7mMVO<$n{gBwOSD$t1p2OdaE$oEgHif&9P(u5M+_~<rPa--S7gfM0T+T`imxu=vf
zh4VY}CO2OGY_#K9*zsinQEtS$k-&bm8!>LYxEvSDN>JI2IOf1o2D(Q|bfbzJb=(*@
zHz0{Ne>cuHH>JAqrf%G6M{u$m)!f>j8`a&Q?4Q3oQglw^V2ZE7knToJhFYw(_0kWU
zgN69|-IMFrccXzDf6=krXz0fEw)xt-(ZP*IZZvkIi5uUZg*9`dIfWfIH)SP<4%&kH
zz};9;#MIJ_R&EfG-`b5f>=U<T7%)Fz!>C&KT>&)TI=Yd%D7}XpMf;gLxe?SfuCp6m
z-014Yv|$O|-003gY?vEHI>Zyw(~Vwq37&_U-RR>+UpIOa^i3p(lu|!825>-s);~p5
z+G|+iAU6iPF~N<AZVYi_s2l6)ML*0~w4QO88)K;(^|Zg*hI2nhxG_@i`6!0bZj530
zrG!w}I5!sN?MZ1oS0tF^)^3fa@pLL3Ynn{c!;R_-0;aNNtY;*1x*IdxnCZqWH|DxA
z&yDskl4iRxhfeme`M}lsl%+K4u(|V)R`cChKu6)2W(A5#gPSd)my#DrZNF4s;>J>1
z3o>%c_}h(TG?zTs>A`XudAdpPpp*wI-B{&@#|^I=tKC@R#$h*(xDnPX(^@w+xUtcV
zbv#Pz-P&KEwdVwozDO}`a$~a_TWFxpCH><@%GOK-V@DXby0PDlorlerYIfe{2I+P>
zF2hdNU99BqX84zNj~jb+f1eu{h8rp1fOeI;9AqUp#4zD%`cXHIxp9gnup7tS+RMZV
zT6zUcoes8szA5%3FPVXBGu`}PJVUeBjcacDK^9|zJ(yPaIXBKz`+P>N$_HF>BXMxk
zi}cahzBrlym)*GH#)DDyhnNgk|ICop#^wzS6|2Ts+z@DGy^Isxpe!Y;8#ZP;t3&sl
zbU0?0?zm}lJDfySWH%Hyp1SeO4b=@F9m|b}Ztd0FPfN*-fO3X!?~Swr+@R5R<CYt@
z-KbG0{w|$+bJM010d%8yhuS}ECb-8%RC=FF3FrhL(Xd#n<nP($u^Ug^2#+)gTLKqe
z2_|?>I|iMU2bn#1$)iM5G|+=rZoH<wg0Jr<H$Kyx`Bv?%8}I0{UXOdvK3(+x7(Qrw
zmo^hN6l+8Jh545owa!+j>{nX;?0k3Q2g9wLLFE6WHWy_gp!Azg)1$SJft4U50|iij
zXy?r0L68RpJt*YCr<PTp9yVw7Ae#r-J*Zc>UJeg(dN8(dy>0Q$gFOiGAg>4c*rC!;
zjv>h9L2l+ex--8*e0~oy9WhgBp(Ex3%s#J?oWdTQ+H5NBK?x6vFc)PdvzP}z^5!O}
zTrB8oeiOmxM!}^$DC0p}588Q9)`M~$BzjQAgYq6Us-G{$qpk4@9#r(eSt$=OJm@gN
zK&g@kVII(qZO|PfLpZC6HNt~Py)?>$Xy*AXwdyohvDEG7VU<0IqeBlc6fa<i_h9?C
zumsi(zr&I|sOmve51M(9>_Ig;oCj$h`ZeeOz2mg9Kwt{<$xIO&`ev%(0o~r$^k{#n
z5u|%?=VU3m)2rn{Z5sAU;dMMPgoZbuFpi<HdLGo*xy+sF4VfG1PGb+6=sdS`U~?Xg
zmNXPw0$X@+$zxnwtcmwcax0H^KRL-}Z0$iC4+`v#r*v+1M0+}45Bhn~--C`Gbn@Ua
zeMaM<FDFD74+fU3PCs(d)q^($O%uA*?CwD~=FZK6$?4%ij^(knx+UCL8r#bQGoNN}
z5BhrOc`EI-rjG}KXUh`&$qw+~FArvWFo#<9U=VkEGLP_J4@P+~nt2H8P}X4{3}>LL
zFv5e8%-;)Ww?<=V5_&M+g9#pVe-}57M*dZ`;*$-;#p{Jnq+=a5C{^lC@*sc9@T=1`
zrWcnf9!&M%>)n>qJQ%VyeWnM~J$Mlw5mqr`295cenq#-t%vaVli>BPBnj_Qd4O$R3
z*Mqeltn*-=2lG8x;K4%L$vs#_X7whEJUArBuV7y6!4d}YmwNEG&dV5<dtf|brXq^Z
z(m0ONY7a=)u+lvnCCXM<Yg*5zxy=LO4IXTyb@x1sc#{YJFmLu?3!U}aOyqB6r+5A=
z#M`-IwQpHye0F)Tn}*1XabEoE!5$Cdy-4t4uLt`)cur^S!F~@8c<_iWx(Cbd);Z|G
zEvhoYc*ujp9vt!Ds0We<E?Q`VLXUZH&V%!m=q(^V&<PJtGMr+igPvwM!+Mt0);#2b
zUh4GVqBbYBHFenok>QG7dewt#I$Jytbl%<BNbyz=Z0y)s9eU~UETQM(47G|I-0a+-
z3s=zK@xaSj*@M{3hM%j9iXN|e;A8f)Uf2DY3xPMeE>+K7(9pcK@iwhZ4|=$@!Mw|1
z_gL?<KJefn!;XR4jnly92~RxQE%Z}f1rL72(aL?sGd#3xz)RZpJ;>-qpck(>;H?Mm
zXerUiFNjlS#gV@E;KPX4KRxuVgWBJ}|54V1kIa)k#eeeP`pit9X$DR)QToF0mGzqk
z-*x|o2d(<#r-0vdnXU(9@S?)DOfT}80=yul7P^0ok6CQW<i)OhCi()RtX^dHB8yjh
zhnC*G3G!<1gb>g>x7obN?xpvEk<$x<7e+6F9tH<{QP!(nz7Q`$y~yR|AAIqmpclEB
z^RVV+&BvObmFm(@!xZAWCD<wKMW2z0MOcfn7Go{WN{67*k{nrzwKQuP)<3P4<JQWv
zQ-Qf6GgvFJhOz#Mr#8bm%;d$;5!wxE1ZN{zqr6x(GBKJphBcP8GHV<wRiT(fFRFOa
z$cx5aBzaNQixe+XX=SCEs-8@5loFThMKuaYiKA4VVd~71X<pRuYA*^6y-4?>rWf_S
z+T)b9yr}I(9WUy7L4Sz^hXxgIn=k*;fQAPH?OC(b^J=dY>-?2SDK+4%`EfwaAAyf1
zCN}Y+sTV!ys(G~+!De2x@}f0eukInuz4U+O@hw<edhuj?UCMs%W?FnLpp6%8y%-Z`
zYUjne4FT=F$g`#7pB<(HO_;T&j$UoU>BQQZwF_%k)^6PG?yR)!^zy>&#Q-n<@}f6g
zJ1_cqwYRzYdjIzs%4l;<dL?Zzp(dSse;$FlbXSnWIM9nhUJRzePYvjL#7r?y`)hYK
zL%8Bl)?r=@*V`GvFw%=r45L}cu-=e^sp5DqCU|kyi*sH~^kR}1+q~HB#bht0c(K@v
zC0<PRVwxAz`9$byKI*C6Cbe@1%<y8S7qh&W?ZtdA7I@LMdh>=wn#}QHE^VPl%=5e$
zAKU!Q5%b?i%-fEb7qYp#TjS?P%!|D6ut`k!mP@@@=EZU^{`TVV0aLTWhUr5>S9rD8
z-+#Q=?8QpvRWxFm>aAv-xXZZ4i?z(_Sl6>szy^kmteaR{4{O-xw_%GHTWPd^8z^0^
zW}-x}!;76>oaD(st9Td9NiV{7nCMJ*)2jf_bK*S=P1_syd9mM%16~}Y9iT)!T_Cz}
zhp5|L#AT15?5~iBBYZWFvL0hS&U%9N*AeZFdYYN1yg1FrJ;Pd{RRB%M^Ilx=(sP@5
z;l)KSE_oq)p?Gnbr-9^!%Zn>~1+TJRW2Gx%VGz6!b;s(3O=r6o4xOD|9I4!ms<>&V
z>S0<_G~DY&=>jH?7l|ta$eAG~o$p&k^}<K1eu9yfq~D9{v~bEKJn-U%7a8grZ+dZy
z;nlLh+caWx1IT=OQ2XQk4tMpg7xx&*x$nh?rKJfTvh#@bv0nPbi>J)bbcfn`>BTEA
zetQuh<Fyx$iwC*K2Y%&%H#8aa$ah}6_oDfT>i@Cxf%PNnC)Urbbm%V(bobt{i0PXb
z-@PE9^uvpvI{%{cwO1iCgRH&j7bIiVfQXDT0%c^9alKo7W>$g%N6n;JWc-1wGP21C
zeHE5nMleGTR&sJO^l54!4k703g_cIj=8=(CMz{i#f_yUa%a|u)KD8;Mpp3pU`pGCH
zqp*ysGLmH!kx^7eBK1v1F&V{Wgvl_-C?TVyj3Ik6-F=hgm?@%^j50FH${;Sy8d5C0
zoJ@~TCsmNOy|Fx%uCEe2wmNA=8S8zG$pjZwVqF(d)+lSQYw<F!bPNw?HnEZ!AtO@f
zC>hZ@$H<6fuFM+8`s{j3szQw<$Y>FmK=5IkiSCfkMw^nT^P8&YdsV-hjOsFK$Vlhm
zZJKN<Iwm4TMyiaJkDI;wXiAeoTG~>vCU>u?jAk-w$*3)BA6O)B4OuoQPaPSvPSvc-
z0rh0mXVCV484Z~m=}u#YCNkda);?!!P92lcK}JUzEvZ2n?PS;wCiHsJxV4NnGRE9U
z7<Ih$+5wH*Qk8!7j=nQiIBIS$V@rvo&vUC6`qpw>j`)i`Lpn@~>m;MIj4m?B>B`!Z
zwHs@989f+o_6(r_O1)&5*&*)D&_{-{y)I?@%NQVIxQr1p{*p0}V0EUUGU#pCL9+H%
zA$<rnSO&c{H-wb{^8$v++Phmj)8c4&`zRqJWlWSYNyaD{qv=Fspi;yH88rT5X;>12
z$H^Ek)B6e4Uniyq6-ydg%H$YiS~f6Dni1GPqj55|EMuySX)<QWm?>krjA}>CgSzMH
z+RRAlb~EEF8M9@~r4x78YID>)hoP4gLfL^w&G}0h=NvUJkg-t4Ga1iiERwNUhDC-T
zV~MQYMExsckBp`C7Lbf(G_~p(SJJwZv7C8@j2G!9GXFVhUM*vdjGc6WG8@;jl7DJl
z{5qP$oZTSPrzhCVypeSi4c*)Til?+i#x@z-+25-B|5v($eah})*v(3{Xvf$qYqtt#
zWSo_;PsV;32V@+SaYV*ZI-(jfJjz7r5M8e*)8YTmImXUO8OLRu$X)*gXP2$YPhpfj
zCF3+Ze_A*v<GhTkvUU#;)3xTpSv4=nxG3Wit=0??lrA$|I%>WmBj1u(N@Q*fF<qmD
z!0&pAwAc%jm1MYNSY^-$Pc#{9G=QIK+gTkloV1k{sd=|l?MgXox+z8~m7`#w%u~W6
z!^_a_mw{%8B17es;*)Vl#$9GV>vb777;duCBD%$Jo96T5fXN#J$hpT3Wr^?89Fy^o
zokudBFg&K-4%41YpqQuZP?qYxknvJR76m~HUeV?+<Fkw}wDhRw&%@r*Rv?2u$fk<#
zWn}J>?}LnwGX9gbcfB6f38dcw$Wb?tekR}(ZJRIS7LBM)N|!HhtAMYxI;bas@i&i}
zH%&Esm+?ae0i~ZZelh>nod88E%D|eDHBdn&2J$m2c*l)oRgg_VaRnt5WLJ<wL0;O-
z735U3S(-~hZUw>2r`jZhDEJ&*J(QKQzh?xxj#n|Oad{MMJd#9^U%{0c@r4x>Q7}Bz
zSU^ER1@rP73n}!>K#Q0for&RTP*lPDF-gTZCfhM{`D5ngg^fZ?LP-VX6qHwRZF)p0
z1*I9vu$E;dKYm<;3JNOHxjYXW9v%n<l@u5i+-cP@OhNTy=E7ZT?n`N4V5ThjWujZP
zOKlLLAX0%>fvg}(L9~K%3eGEtQ4p)3lY-6)Dl3Rn&_Y2=1@Q_J6x3Bf8-AjKDhg^V
zunjXNDX6L-MM0{9WChjeKnmuZh<`RdkdzX=(2F}V5u_=op`aG&zov8rH9740_&^JX
zP5;-Fe4^FE@qtuI&DP<@>4}Sa3euxZ^_Bm9I@3TwL!BEbXw2M%wJB>ey|g)9rgvE^
z&%#<MXicYZ%uLgU7DE2oacvasv+TC41nm^GXYRn-ku_Wmp`tDdx+++pU?GoiHwA+f
z3|7!xK@SBz70g<jWTpXZX6nUktdN(S-t6>I&{sh}<^inzSt<C~$|TaiI6IJ)o}?P0
zXzx4>S1>}sPzAH+87VuA&G~DSkH?rsDj2U|f`U;BC`)Oyf-%fvb!QyIu&-H~74GyW
zW}<>g3MMO<LOqNz&Ef!psS2k3abir<8D=P$$*`_VZVI64v*{Xf{9M*~tmMyUDBdOa
zA_a>TEK{(Y`j*qUM8S(bJ^xm)l(V1rCXiWtNII>ZKRfdZ1uN+S<uk2Pa6rL91*;XT
zp{ZEUxK_bG3N|ZP#{uhEH?VG`b*dnwem<)Bpj9~O76k*2nRnAVO^P7cs$d&C#M>3@
zpf0se*vYz!m9j5R)TQ8m73|?!#CsL&(|JEb%$0yc3Jxnc!N;9`%uKWW2s0h@D8n(<
z<J4_;DKby$rKcE9D>$P&XBp^?^a~0u(t@R|f=dc6E09{`yGl!MZj~zvPCu$nr@!u)
zdEI=|lnG6C*2pU;5EVEnOhNO}iB?5>!J-e>Eau!c1$ITdD;V;onS*xJwE9gRR-v_j
zuUI>}NpMjlZ4`9#&q_D{2ju`ofvVt#f}aX}3j7K_D)^+}x<Wrsi3bWED%#_MH+iPr
zrEz{9c1yu+2I4yk3Y3c=xJLs^n?I|)K}7%Y!H*Q}<El3b-YR&k;E95#ymnsD8rhcX
z88a=S=M0S-<$XyVR<OH%+=Q>yD7|L?&@uBnMf)4=1MLY1;t1X=_>Y}uc@rr6taSkS
zpA~$e6Ibw^*UMK0^kBv$YXYsKNMAsDyEgRL6?IQIX8xt%H(gB?B~|VHga8%6Dne9b
zP?1qZpo&Z?a;VxTICqbkGph(vkyS+&6<<!b`g+XVrFgBitE*&FkzGaPadUy==F7!u
z5s=ck<WxZq!%*E&RU3^wD&|f#<WjXgDmUxkN5RB-Rpe7KaaH~NDhjG7L`5eO3edkt
zO=(C_SjFRh4JZ|5zX)ryDGkXfrlPoBnmDB)UD;A9%BU!-qO_{Lc9i;1Ei|{0I#6#y
zFnuH0<)aNNsHmvo>3uxA52&c5;>0bSyoE42M-@eHqS#FsRfMaEy@AR%U{VpG;<Ab>
zbb>0PRJ2vmj)vuVSTt)r6)_C4Dk`gpQxUJCx{4GP2`Um*R8^6zqKb+-Z^QbpH73zG
zzYV(?W|)}4(59c^VPC_!uEuIA2GlVO8*aEf#F(lgO+`%=wN%tlal5o3UB&y#J=e4`
zeEt-+ZMb3RUQ=yqO+{TA_7p?D3WlG(44)br7MC+j?rUfp7EXPuuc86>s-cQTDjKV3
z!r2xonyP4~qL(>ea}~977&;9x7%Lkxry5FBH8g!4){?_ou~Iv&8QRcj+|=IKY_Fn&
zim7^OM-{_V3|G-fMQ1j<s4%POt)i=nZYsK~=%Jz~9gdD$(lDp4p~1_rrvnXzYa9M;
zZRl~<6c=ykqoS{hzf=rVao1qzr=mZN28~;?;Y^C5;)S?h!G@}B4PS>E2dNmWVu*^N
z)bsaYng0vhvo)?^=Xl3Z<J=TOyAVTsZo>%f#yHlItfN$nRxyS~;8(S=G`-sy?R^ao
z1{;>88gh>|jOUmMH2tWDnGKUvOja?44iRs-wl&TjXjuF*Z0z%}qrbzZshF-}hKiXg
z)~nc{VwQ^8Di*0&tYQwgLqjx|I{7^;{;T#|ne*73&$>XxLWXXgL#b$TSl|-Qu3}xv
z`Zwz`70VeYYz4zg6)ihywN~r?8Wn4qA7u+#$I$Xd#f>U9sW?oFPNh3@IHC;ya?xhi
zEh@G$Y*VqDfg0RS3sdKvDt74{UOj?Jm7$qP_o&#*{<H3eeJb{=AUME!kd?BB=+NN-
z1mkyhJgVXtO>$aXhHzt$;e?8lw3d4t{*1{fZt8-H(+u~_hBGS8svw|rPQ`hhpNtE=
zsQ2d*!-LuluBy03%g~Q#KP)N)nt?tH_d!%)RRJF=`CwCFSMg27cNzp0P8APS<a!e<
zsc@;duHpvGQfDxonwy*TuzFc#R)tk%^|4a0pJ8N@A=B>M7xEZxa`qPMZPq)icUkYT
z-e;w{E5ZUFs(3`36+5p~yjJl<FMUeGsPl7%7b;%rPR{<JZ*>03@K(h;+7p=nQ}K!6
z1M5dtI$}*<sn5(`bSJu92>EH9Lw~5+?_uTiA=szwV?R~=QqjDN;kSwaA2P5R#F~*c
zkTnx)=0E&AEQ=4m9@<AOl(Mp!jWxRuIrNxir41p>1$`*wL#PkAd?*$X_@`EGAM$W%
zUOhga5BZr3=+509+O#js+0v{<Sc_6SdQ5SK5<ZmFol-trkJlb8E5lA%-7m*b-iHbd
z6?K1^sce`J1|M4c(8dR&58*!4_MwgsCXPvDjbM%RA&McIHQt99hFI3htZ}T=f#jQ6
z5_HZuEk8X@R)w=ktW|wT_Mw^&)j6BSn!=jON-c~I$W_CKbRTN6Q%m>PSJp<RoHO`V
zj5eNieW=Gp^;w(y&_IuD=tCo&8#6TVp{edP^Wne#+E{HJVQAq)OCJbYu@ZdWXKL$1
zJ0H6H(8GuJT+3O(aPwto2fc-k44qgz`_M)AyZX>gXGiOhp3L8?8ix3gGrOUe4`z0H
z`_RXSzIx<e4E=oQuR8;Lm{eXn$ARn&VjZlPei;}#l&;iq^Q)NfBbf~&d>HAYe`diM
zA4d5w+K0_PZ1G`?4`Y2;=EHIy#`!Sbhk1Gn6MUFUCqCRbkq+d;WZj>^Fokuh57QW?
z>!qu51kKcW7Q<}TIX+zVXs?yjVAI~l`D`xmVIf1O<K{&Si&>YjE@h=EfBVpu_xTm<
zZ2X>ilMgF>SmncNJ!TEVp8;9Ryv|2&V`>X|gC4WdhpNZ45!?Md>>nRU|B4E)x=-88
zxB9TnhwVP>@M)XCK_7N<t$%&k<I^_bU97u(pxcbJzS;uc>%)GI*~dx`G?IBhKUQfW
z%OM{QbM^?$<N!l>al=ts+LaB*SdX)wU_Hr7MW=i?-qb*F)`xRG{Pf|M59hfNrw<Zc
z(6?b1ID65DOFmro;fj7lkw%#L8mom>&`V?bXzRjCuLA7Yb>G1-LCoUv!R^CmAHMkD
zVe`5VHyFG=$a=iugUak<_3QpWTLN$TaLb2x?A&I3$$H0!yEJ;tk9>IS!+mDz&jTMG
zG6xRU)*7WJK0IURsUDLQpZmGaFMQarTzl$?(knJ!`|yV0tsYY)d(eC4|5!h;eq{Z`
zN_B4~Y7^tD4?ld!_#^D&VB<F~`p#OUmGMYlLr=5uw+{h+EfTC5{K)1<cIJ$%fuszX
zS+lSPv1VnZy0o$9@Wc8lET13w{m7~N!G47J5$eY`UKbRZi;Hrz=3&k2NB<_;$Q00P
zm0>98M<G87`%y&qOZZWgxtQ)0_iGQ^P+dwT{V1jTrTyqzv%w#~ESu$6%d=MS(>LyF
zr%b8EoPbJxg!Kpv(;b5!M&@wcG5Ha}9H~1aK4gjUBbIu89RseTvLA7Nh%^Fz#QTxp
z$5KE3_9M}cDt@%^qop57epL0Nt{*AwLSB9jqX&eNxwUGn)mc;gNM%U#qZUIAKYkyr
zPAQ$CCM(^S*5=YWtaKJtg)H^_sL$C3el%lfsFyZkXzWK5-D&El*OXF!MxZ&Hg?ojz
z@}spM)Ag7(e)?+{1N~_0M>{{-v){vyo_=)jqa$ZKv36zc>_-=dKQB++n7gyqGiwX8
z7js`$Gb@?B8T$CKs+Sf+sUM9hn*;QiKX(Fy{FunjU_XZVG1QM?oE^(LoOP5RBN(Wi
zk$z;ElIu^Kqx~48`+qjWahx6R#{}KKmp9iW=E=G<#gC~vPxIsR0c{thG{cXXe$4V?
zHkU5&L&+92hk33ZKhKZ(I=_7#ypVa3?kx6WiO!$C<zD8;az76FaoCTuEe$KUXoDXs
z^_W$DtY%)LJ8K!%`LSMiP%dbrADjI6hn*d)n_0K$F<brErt@|`rtx2PJN?+@|9?z<
z2b2`W_w~Y(!;*s}$y}ypXNkMZF1Vy6E-X1`gast$Ac&%52@*s_0Rd5vsN|#~Vn#9G
z&UBuhnI3YEhVORqoB#RF>2uGm*HzV3uikrIU7fH;%J;|iewvHDlJAR2-ais|K=OkU
z55?sBlmdryaU>UC=He?UJjz~3ax9kTcrH#zep2EoiKk<G<Br9jWk;eOZeQf$wS0nv
zdVag8>)PjX@pUZc`CNP>`2~sJO8hRixBbu(Kjz{my0ag`kDqgKF&Fv$DB#C0x%f2~
zkz6>rxWp@n@gg@Dep&FhT>LJ{9}@qJ)pj`-f5rH`@7&XRKqk#xD3YkLy_zI?E{vFj
zy0Rn>O0*@0B!(rjwvE^75u>^ITS~6v;;JOqa&bEscXDxECT~c*De;y>mYVWut-F#x
z%*7)~?&acsZ0`d}st-uGl~RkDAIszuiBDsBzARmkyZ*_=zYHl-80U9GVjhW{ujZ8`
zUShsy$f{Pv74)N!A7%Y0=f{VA5(>**W&9`-%TrX6Vty3&Bf*anF?lIJO2+v786`@`
z_@U$OV^Jgb#+CP@f*<vyyrLh^`T1vx|3&Fal05H6Wl5??tQy-}O_Eu)3s#RwYWPtz
z#%oDZNt${cKkCXP2Z#sd20!Y@a_;-Bp4X2=nH=ti&yOTO+WFC5N*YK^@uQ(6jU+af
z$a<RaEFgJuOv2d$<*9x&^CQiVbSck>?QJee3yCjCycDU){4M=x<wt8NX(KUHVq2bQ
zPP>n1aI5!cy$(`HKERKTesuDqvmaSf*xQdTl605YHI_5mk8UykFyXl#lJ}I@>;L3|
zQmnI&O!k%7Phx+G&y+UMk3llYoP#A9B5|n1VN_Spbrx<T{21xSi+*>uIZEyw?Z^BD
zNlW5gzs`}8F@B7dWSm6GU-IMGfhPJf$&Y{^iXW5xnBvC~KaTn_)sJa@to7q9Kc@RJ
z!_N;mp!y@vmg}CGe$4S>t{=1fU~;y^A0K-z^l^_kPafhmKVFU<YrZ54{CGu@g)#Z7
zettjSEwV^TUYGcW#KjVqNMr^!^^Y-PnIFqzk`;cel>AMJt0b<D?Oo$X&x!3>aGf9P
z**rhC`cd?TXM-P`{CKBZxs5XC+p+u?Qsdu|{N0%3JxMlGOOkvLlW&zVYMUSXq~t?C
zwo9@@;wOIWl;k5nS`3WaCHcn^*_aP%7u+4=d;IuR^1U%h>)oaHOMW0GIVi~?iJ$rL
zxgUomA3v!?aH4ybJm$x7KmL+K&-bTJ_;JpUuVtQ-5>NSYT9Pvo&r1A4;+GOx$yZcJ
zVRsbHOUbVizma&sk8l0>E|&8rNxt{vhnVC?KZezHqu<X`a#7+hvAt#FddMX|ev^{l
zWAZ;F`O}ZfF-eV+^>QWmOMJD8m_N3=>W9W?7C@<h8=!PQuK97@4}(rxq=YGRS`vd2
zZ9hVOge7PGs3Z|ToS39WgZL|wUyVsPJ-gw@O+VrT;2iaqAGhVMIC;c7e*7bocm230
z$$g2B{dgeBLy3<h@`yR7UB7-JlTZElJ0>rdQ{rFA|C9KCQ87;ddF6qOW^NF3H<`>I
zK!E@XN?u4}F^PpG7Liy~;%nvIg2e+!kjWAfUCGO}N(WFzCL0D&RuTkIKY((Qmk*#q
z02KpxP9|$gtR%6T#L59wk)*0b)|uyK@#iJ4F0n>T&Ud0~NnTrGotV6C0QF+L<l#PF
zU+(R8@QTMHg+iiNVj}MXNRlM6fkfuyjE)ZyHwu7@*o^~d+$51CIe?S^UI}1f0I2~q
z3t)Tz69PyJAU%NL0gMQsd4L~6@wE(~RRAplcp(5@f^qG=e~!oqxN(xCbpUNR=mGbk
zm$m_929O;<H+krG0dx$YQvmH{vV+9einyn8Zk+?@8f#&eBwbkNHuplFHE&P~bPwRC
z_JX{pBt5AAf`XE*-<PGZcL03?=o`RmJ>1tG2g(NY3*gR7(LaCzlH9%LVRBFagXP{K
z5{F3~DluBpEnDk3F_KEo5~Bhb9l(o{Gnrjd<ODD#fR_UJXrHgj9naVRrXR~07jW+p
zaIt;gKOQEpPi#NrmS>{u!Zc<GU{V0Qe4Z?kWQrtH15oz)n4A&7Oy06-oS2>^W(6=i
zfcXJFp6Z<w;8RR^nPU+zw%+o*^_+XhWL^MMye_$3LY%$Lr{%p10^lx^SK0RfJ`3P;
zdFVv}EDvBs0Ivt|MgWUxnI*)s0Cr#VEKL+kWOAv*z8jM%<eJ9H0N!NRI9_E0-xyuR
zngdwJt&Uh70GHO+$l_}QsQj6a8P>}Ky%WH@0c;3hV*sZU#M?BaQsT(u5}Ra_cRDEi
z^1kQ20NxMag8=qD&A&N-q_X0|6nAj91i-ypWmSLGh~E~#f=Bf}ltRk42e3o(oiWLg
z>E2xdd>p_hY)k;ooQ{VA*b~6Al493azJmdL8o=HFcx!2&#8G{``z4{|fFxX28kr{8
z$ApEVT~l#5fFl9;0|*3gG=O6P{2&`Ms<=4Lg9h+b04Heb#l=a9rzD=1ct#?3ot5N^
z0K6RplWUraa{+uGz^cB2R|H=NaGnNs)$<L<D4)0>@mq=CN!-xD&35~~XVtNsALY@1
z3gG7eYJ0`S0CpvazXJG0CV!Pk`6WqyllXf8f5hZ}25>pX&k2z$kIO?J+2s8wHAxA;
z4j>eO%7IQz;-&?l2VewX24Dpc_K6@zYLduKN?i0oGBXV7DE6Q5g#(BL5T_uI0w;iI
z0QUm8AHbCWt_E;3fLk0mbiWqB^#E=JFt4I`HA@gbKj0&2R$tt@<+)8a4B#$J^pQuq
z>!G{xo*K9G+nxsjJPhDz0Dm*c1W;m(cpShJT3TB%b%uB37rys<h*mqj@15}d6TrU#
z{9ar97r?AW;=~Bida$?Q$rK)iP0gzyUO|F_5(@Gu$giM?f}#ovC@83)kb=SrK01~|
z!z+jsBIj2uSmCMX!-t+?3cl$piYu=D^SHc&IdZF)yrhCs3d$)cub{MoG75OmvI^K3
z9(v;$AG?sJl;E7Lf`W<)o>NeXN0}jZ5AeSHk7qXD(&{Kac<L!P)a`6l1=ZL#ek()4
z^9rgfSgGJm1vM1Zl=2=5YAL9#AX!0*f;tN7D)1>tQczC;6nGQ}#eF}kzJey#Jo>xd
z&&rD5std1z=u=OND&niFE+#6jvlmTDY@lFY9??iaV+CK%DcexN2j@FcLX+b=AiTrX
zM8T%dd`%T3e$%PNe37c4nS!<oG8LpLNLSEOLD%9UGeI<GGX}-CQ1Eb)m$wUFP~1gY
zZW#*nN`j=7g4PNKR2FSG5DiPPk@M>aer~0mg7yls6m(J0K|x1$?Xjnmf)~rVaW!wh
z?ph&nU|>dPDQ{Cibd`PS&W2SJ*&Gp)o>@Fkt-s<S@?7tp2o&^E&|5(t1ydAERnS*K
zKOSAdKn2<uZ+``cPWni=@$ub33I@|8vPzFr+%s3=f)Ya%3{@~pjyM;l#z-<;!3ar4
zN_<fw&0v%yqb24@Jbf%@tO6F~_S_WjOA5yGi2U*!mGIOvS@MYzCrMm?#J8cMJ13l`
zV7h`=6}+ZkhJu+27SgnuidhQg9UCx*gFd1AY-tS4eElomT*?)^EG4ffxYt3<kL_Kc
z;ApBlT{*YaOF1i<ebdvbu2`gCIqmQt&+7`_P_S4wfNd)}!n-8KmrAls;e#R-xoZX6
zlTW1F^}Lr)tWvOA!AS+D6s%z%6?~{*yMnhAtW&U2!Q0XTIXVqHi}eaN$f2b1Fu6&=
zI||;VgD7BQIt@>y`x7@ScwfO51zTz1g+)RE@c~`6fJ-iHP38%7n}RX<-B|IUkoe2r
zcZY(VG+hPz=}kNwjZML)3TWQn=7^IW#m5RhVIw=be7Dp&$zBCLA9{+6bt62zgZzMk
zg9;8SIKuua_;_52&lFUhA+pXSyNj7K#OE@ZbkB2C!7&A#9i31xsj=X4)^P>j4ixWK
z5Jax++ttKr1!oi}3RDGW6?~!Kdj&txv)C{O5Cs<$oKx_%g7b=dqWoj&NZyp+H^xg`
zaKqE+GvBw|%Zud_Rd~+&PI4x@^b$WR_(?&o0>6Tv6<kzsS;4gGNxx87QT!?KSBaM-
zQuv#K-zEPeCh0v-6zc2cT!IDvVhh{2WOygheTta&wl_fU_}iUOX>?e+7~^?P`+NJ6
z4Fy33wgOZ7oh7l%U@zlIh%PoygcTHj=sB4w%Kqmm>=h9OtDH`b^j4B9RPQ9g%ofBo
z1=khaP;irxO~sokZYj9UoGMaP+);3su~bEQ755a}SMXH9-?Tu66a`N>#8*9!q;1o5
zmrX43TY`8@;ZQFLFC`dr{!#ER!?=nfD*jUtry^cOKGl7)B9Dr^D(vE-;9#+`pLcnJ
zczDB;Uqt~G1yvMMLEHYee&Q?b#E!gz0b$rp&!-}BY=$VRqL_-3DoUw%G@y8K6$vUz
zsP37U)wZ7@818Nl5HGe9rB#$s`Smj}7%m<oYR(f+-}iEGX*0hc%i%4g3My)-sHvi&
zisw{RQc+n&RTb4#R8je1w9?O?^Bo!@7$Nsg@jkC&n@>!L7u8kNzV0dhg?mEzxvZ$g
zq>4lpJ{5IT)KyWRkNT)s*Ie)nRZj&}oO?z5Hm75rFMXePb5A`&g_l}Q5ZrnVa8EQO
zNh%tsXsn`%iW|pryql66s%XSI?|bH^3Eo)g_n&7`GqKaD*i=QbiupC%f;_99o*|m4
zNK-Lb#Sj(gDw?b4rQ(}HqJ@eVRCH9)NkxW=mMYp(8!B3{cPiSbVEZdq6jz^j8{mEF
zp?Y~5ZN~vp!INMI72h39W;b^i5!-5tZxa)L9_a0?B1=VA71^r0esbxyCw;oN3;SEg
zoket0(OpFk6+Kn7IGRq$JLi1)o_HoS6#wo><|P1Y>#d@XioWbZXVG890NK=jDt=hr
z`HQo@fhq>6c<E>|%W^Knjx$2C>`)cMRLoE@Q^jx<BUFr6F+s&h6)&pDQ89+2P*sd#
z@daYE$}iNp$0Fw-j#V*EMdVcSODb6H&?g=aM2nV!-w-32sA7_esVbiDkTqGw6e_B*
zs}t^GX3nez_VZ3tF<oZJe>{iTO63u=RLoZKx{5bc%uz8{#R3(tsF<hXWp<5(k2Xyd
zJZbVFnQw1;SP#8>Ase9LH5H3Us)&D1_)2;bk4+KJAJ1vfT6FI!=&*}b_aUXFDwa``
z&xs`}`nPd?*)zktoX7e)ZiR~c8<M?AV&56x#Q!|2RIFC9nVxmUvqr^Q74NdYqr7iX
z$rHtT6&pA@)cI}CiuxjHkl3i=Z58j(`^E{n>L%(cznD5wFu;2KeZMU4J}{P`mw1oG
zz2e$r@ji_~1*dIWXf}hrdsS?uFR1uX#dZ}RtN2944i!69d_*^7o~NE}mE8Fxi_mh$
zPZHBAxD(5>-o)K1_Ne$&b)TJhPYw{(a(kMn+Dq(Hv0udj6$e#(&L*kg5FAqR8NITt
zJCv+y{=XjbeZIsaDvqi+#u3jEr3<-xvzoZbqnuQ6N<}#n<xQMcaYn@^4ew|;tKtjB
z91ZarzEts*itBVV`lgDnRs62v4;ANWinK!&KXP=qny2Dhx`2w%g^K({4?D%vP@59s
zdpcmZEb^ZiGn2)yDlXBLR9uwFUsOyiCHgfMtM8|CFRz|nF794H{l<9J&n17VxU9lb
z5mfP)id+?{3XNfHn((U_ILRAe^R9ZBRAiEpCdYGlzSe0NbgTJdOiw{HIqpw99ggSl
zYSCsR>9$416%}E2ZDM;qKIG8mIauukH{OShs-UpJj^yzVJy+>9cRkl6(oo57GWe@_
ztm27^+YJ7U`6}+yFJ^c-0pnTeF11lZyp&Ho;Go~|Jffao^gg6Y|8|{pWM|Q%kf7wL
zioY4{8A8)UQX%n=ihpG=CokpA;B28oX%VMk2jihc^=u>Zd>Zm=t^v=`P(VXL4I^Z-
zkcPq<nrTSWP((vf4bN++uA!KQ;u^|mC@ZriXkdgdsiB018404pAMVO<Db1bnmX_Eg
zpF88Fu$+d98l3zk%4<-XxD&hz8Y<cDvek1W8h$AyDoY%GJg16=sv4@vB%|NQ<puZF
zixV|8)YQ;OLt_oKG}P8mPXjd6(ZDym*QF%!J})b*tMQYqZq4;&BRl664K#Q(*QvP)
zNxT{oCGo}NNg7u4EyD~AHL!?#>-?aPYaLBABx^{~&{V^?MEADB?Bl(s6m{2RQf2+m
zZaAiEXs)4~hVB|#Xm~+Gdkq~lWN2uqA#;IfqoI||-&z9)rK)_^g5+!`(UuwHu67!@
zsKuJO@iQsJQJ$2J8alB_8nQHZ=A5meizMV-smy&olI?BXWuJ{#$`E^K=&50#hNa8n
zdTE$2PxP0S_hx%;dHQIWeLSbH<ozU4*#B7itF7Y)Xc!rKflqb~(lA)Ve~Ds<EI3@l
zP)UYKWUF2~nm+J`dp~!ih8Njp4Wl(o)i6y%j)pNjsD_C$^H>cpX&5j0IGRu;_YHln
z&-ly|yd}*VT=OU`CTXs1bDOMTisY+~=P=2Oqv@>HBltupPpnL`$V^$=EOtbaIU43t
zCu2*@)3BUn<s(loYnZQLfreLPp4T<Jp<$uquS#@#p<z*sSBlpAztz#j8kR`;(%9Z*
z8rog|-~H<qQn*sXn;KSWSRKo=UXnE$)=KhLOukM-Y5B0thL~idByUUHG^xb98s1}g
zG?350W)1K2SUTG4_&~!J4fi!X(6Cj*HVr>&_({Wu8n$aVuHgh7S;I~Z2Q(bi@R5dH
zbUF>6QVI0sisBOuyIJb7XI2wI9KFfAD@hP{pYrY1uusE&%?<KxlZ4W(C&N3>2vqVR
z4WDT^tl<cww>R-~%{?Q$I$KOAAex3+@T&Q!hGSAl&Je^Y3du<gr!;)6;k<^^8qR3=
zf&rh{K-8-&&N6P?cNaf-Hng(DR~pW7SS$Euj`lLS@^jx8EyOn(E@=2p!}oOO6TWZh
zbPSabJv{Ei>z*GpY%1WME6w_eJlytq;%5yPHH0-p7$`LSsv$sk&~Qn^ZyNs8a9P9e
z6rS<@K}*Q*w*PQZw+6=Kzcl1(@N4c#lT$BVUh%5x*>x5#YE%uH21`RwgU(>0!K5ay
zd8my-O%e-z=$<-R38zW62GQ7!W+4rnEG1-#k!9U4gE<<a8t!OV_SAEQy3%l6!wn7B
zH1yi+<<$p^e{?*jXEkwC!!6C7B;3}(YFPuf&Z9){DuVH6_C3#C4fp6l5Zue;Lk*8K
z)X-5=$72moG$iOKq2sBBzj?%czQQ{GVPj}fI`ZlGPeYuJJUa5~;C!CP<(lEMLFdH&
z(KdG`mS0B!9R+n1($VrI!Raph!kmK}B>q)ea69~xw}_6Sx?6uS-JRkV*YT*2-~^kT
zr@xXqO6jPm<2fCrb(GOjPDgp2bMgYza9Q0oA$F==F;PJW=XI>S)o{VND^*%aM`az=
zbUd%)>x!a^j;cD?D&}d{IcryKmvCbZ)phhwaZiQ3Dy*fWwvKci&2`k#QCCNjjs`mF
z>3|Nejzk_^hewCdL6z=q;?~2y*WBQCjd8O5j#7LA!KZ^OoV;Y9dK>C!q$62JijKxQ
zI5bUkG}XaNBo^TnMBQl}c`eK~r|M{?<Md>arh~iQE##hs5B=+*B=vYQb=ZQM)bUAk
zLH>f&YK9Iz!_WC%D;=$6sWv*=>d2Iwi(u?BjfaEYaI)y2qoa;pIzHCXNk?av)$y8+
zEFE2RjMVX>j;=bgb@Zc7bad0vT}N*neRTBD(Njk+9ei@0bt;|RMYhO>WDW$!ogeb;
zt7F{_&p(Gt*(ZE0U-S;(i0BxsV~CDHy8CQ7oAK&~>I<t0E}9M1F-*sB9V2vT=R0vx
zefk71hlv)#ix=vIU%MTpW3-N0I%ez0(J@BHOFG8W40z?JW1Nofnu#Cg3Z7*e$WfS}
zW1<dv;!HO9wr56?=$o1}Ne6MV#3?$aN<zsrNv7+VAxY)ZZe}jG^0YNa$6Ourbu7>^
zk2Wx^BaP%`-StF{DLYG(dxhrOS1hD$_w_QwQOF~5j<iU}>pC{-cw5ICIu`3#tz(Uj
zB|4T$)vcr--SsTfv7AZCxp2hd9PU$<1%tqwI#%i6h3d`;?TKB_CKsFJT}$0^t0TzY
zk|SH`{p9sJHqaObdAX>|pvPt2O*-D8&0i|BQ^&hH-qW#F$2J|Cb-d5WuVV|1<f-Ro
zvS{HIJRC1idJplQJDzj3f_tL>P{(#1J80x%+wUCgrFv<WZ0*?gSqyO>=^*ys>HS2<
zZXJK>xU6H3j!zi@bbO^_ua12>j_EkAW513AIzFSv={U&lNHy{he;&_yb-tjhQmcn)
zfuqC`9Y>|_f5ZD4gIvd_D!96JLdQuRr|1qkIOX2uaW|UK869VJIHklF)bm)^zgnGY
z6s_t`%emNij?S**C)%5i^Q>0K_d0&iaY4tow6v+-?{qgFvR_}Hai5Ez4QJO7Khnn9
z3SLifOnIf;J28<>y{O|C9lx^iQO}LzIhS<&rsH=Ve=w5F5E(PPHGOV9><eT2ue02?
z{iP#U$8{Yybog}ybcA$-btpPi9$km7<JNHRj^3it`BLu3LUourYzi~P?TUgcv6eK6
zpu}RklBs-dg-_%}r13;`T+zY1X%0v8sfQPgyXuRpIyhL@SXGYun#?zKTs7Wgos8r<
zp0K|RusZJRc)+qcGNuVGDBY6*lQ}!Ibzh@+$WTx|p6AC$j1TqQ8tODk{IQmJs^f1)
zdmV8GxX{fb{zFG#92g)L$GHWmHx3y|9s_v|@N8Ids(W*%`iY$U1_~HBY~YB2f(8m1
z7+_$afx-rg7^rKYo`E~%MNtFg43sxe%s_F&4KE1>N*X9-fQKt#xYNr#LqutVe-A`i
zS%ixKjBG4x&K8Fb`KG-jDj29};AC}C!@zR}DjBG1pqhco2495nRx#l1l*RmP8}AT3
zo-O!^30mOu2CB2*zP4;O^*L>0a!muZ416%sTiZY#*%)@M1_WD0CxwCf23i_uWx!)V
z7-(XkDJwUSXduZz1KGT}r+hvG)FEflthu3qMh2d=&1%fURdQqXqz}ARuemE=b6bmK
z11Sd545S<G{3KOkGs7LtD!1HI14(lOEeyP1AcLxFlt`~(v|)p5<#ElJ)0kX-a@If_
z16>SsHPF^Trh$$II>`}fXP`aRXyB!0?$Eq3&%I!|U(eM*XPJRxm&In>^@w-8KNl6@
z-dWiOx*6z2?HTA!HMSK!4D{sKc?BCVe4rZxX_-6&_A$`cKtBWh4Y0xN9XHO#88q0)
z8hMk}^%R2)3^wqJfrSQ!7#J!KI^Do91H%oBW5W!LFfh`<XahM0KPl`E0rfx1K#ykP
z%{v}i__7zhV`xZw<2Zj9Yq)+iw6{BjV21Im(7<E^Qw&Tr!2FYFY?HmzIZLrU{51Vk
zD)z32BQnhZz5bbJai%oGz)S<P49qq#&%nzv+Z+RP<p^>yhZE7#8Qr~yeDh_q7Z{+r
z=AZDfYaHC43W`?^yk_7%PO}XxGVr>A)dtoWc*DSA1Ir97H{8j<5(7&Oca4sQ!Gbh4
z;tC%0OW#Vi*#IkSej;a;fj`=~b3e*S64ocLHSm^!jRxK}u+G5KEU}(CY$Ry*%2cs|
zGkm@~aKgQ_w#mRd2Hut0Yj-U9gje(&=lUiGI)5+mKIH~JVfPJeF|gIZb^|+PU$(Ko
zY2rfzm*=@_9TyJy_Cf44@R5OC20k|Mc%b-vfXLs?9aauHE#zy?PHT!i20k@#z`#KR
zd+D%-yI!~7z`1hb?XGS&Iq_gmx%_^}z-Khb3#C4PW^$!m4Ls`tTX@vKF$2FExMbkC
zG=2)dHgH1nlLk&1IBnpJfv;G(fwKm_Fu>wp8eqiZV*ngbCOH)(GQw}2<tit0eKPAg
z&pZY$82Hw}cLshm@RNb>4KTwGw7|UL!@bFL4HjgRel~E?z@9<k7k0msYdKeLdua1C
zDtg>+27Wj2uYvzKOa}fma8qW!Y~U{gmVuywTmyasngN{=DJv_$0~t_hW~04)jfJ6p
z{wPtYiMX8P4h>iQ4EB+Oa?1B~gtzpJEMB_W20{j|7`SR6Y#?I5F%UH{{zT5|P05@-
z@$Ew1WSRHA+dIx$8KABixNhJE)zUz$nd~iCO|UkuJ2A-IGH{!5$-rHXBLk6vdj{?s
zc))nuGmAatcL4Z3Iua%y8h9k-f1Vh?<WqL%n&)pi1%pp5!C|E~s!YkEHb@w6<4n-S
z3Y*AdBCm;f6ZuROGI4vM;9i~@@|$j0E?|PKEhusDJKoI=M->_<=*vY+6g5%IL~#=(
zO_VZ`AS-;gn<ya(<IITG;ygrY6J<<yUQ|}f8?_Q#+vK40eNPH2n5bxCmF4=vb0#X8
zXm6o|g~}$XnAmM%kBO=#s+kyR;zbkBo2YK0m5J6SYM99MaOnU^CTg0fWumr;IwtCy
z@R+D;qMiwuZuFqqsSPeQ?<^sxF1AgW?)9eEM55_VW-4z@rco_w=q|1A$nD#}L_-s4
zCelqbGSS#XiiuPcO-wX3!G0y1?lf}I0Ux#T`*7DD4%QOQOm{Jv*2szUU%f^8IMLih
z3ll9_s-#%Ncd7RIUNDhif&)!cA2L(?(ZRL(JBNL3Otdx8+XM$R(?mNH*(SPC8zwri
zg(k90@O;tHL?_dYMVt+CvYqw7bA70L@zTXaR}&1F40_KZIY+s>i5@1n*4L8*G_fo)
zMOUPZ-czbft@vIhxM;)1_c77eL_ZV#O$;$H)WiT215FGvG1zp^Wncf}I#Ho(DV*fg
z9^iJF3LIu)IQ3v+<q7wq^;t}2sAqm2ca(|I+-2fT6FDZv(0EL|Y+|g5acm?tZ{j5r
z<4sIvA0K-rP?=-fPc$*fL|i#Hgz|0(tD+`nJ@HI2-4)J%3yL;1#dH%hOw2Yh$8=9L
zGfm8rgiYf8CZ09QjrM-?eQCC5F6B=>%=3>(oNr<QyVgi7Gx3Uvg(luGv6zEJC74)b
z;&p01F_9hNjj-Dz+%6RMB~m%mFh_^UB_@`d;3?a_?%_j3-fY3zmYY~XI~nD2;wlrX
zO}uSl6UW!YS`!;-+kd;h_LhltCYBs5)u?!0{s&~ei47dYhW~S39`}z;$;|nViFZwG
zH?hOSdnPuU*kWQUTX?|tzVw|B<Pg(sPxQ~?ssbCf&BWeOB|fBWOmgD@H}2hO;v+is
z-=2?6_qFj|CKya;r586Q$45J{)F<@xb3RT-KV@+fQ4?28>@%_7#3d8InK)qLAp2|L
zJU!RMXC_WC8kqRp#9<RhO&l}93Xjl32Y3$_cEk0>y5cy!?-kel_^J_yfSNqT#eWlD
znK)<SjES=*zA*76v4x-xxsh;NljPzXLtIzltq{sdzA<sZM1{`cqKR)!{PODaKbZK@
z#CImXmo+e)azyf06?CqjOmKnpXX$91T2Qy_EX)34;#Y=_vSL}Pcwu1H@2308Hjky6
z_`}4XCN7)!%Y@%VfUd_Y&=Kx5DOVcLvAxNxO5rVxMuN7@=cb673EhN2*Dw(>5jJ5l
zW)AQMP1tny0bXAJvi|WC-AB%7fy-ZXyB0CwnE3ca4mp=Md4|1e;u_7v!gCg`o4CR8
zvJh|Krioi79-DZ=YE9fRai1<sGnggrnz(1W7u_7?bDdo+v5))ai-#s2$(X?AQNoRD
zXirW2ZQ?&Vl;w^ToAHl{e`)jM+_td+tb~J=NA6`+2{%1MMu>bC@>?iwA;Cfc3k59{
zu~5_k>pcFVC}g3qg(Y)4QoT&_8El?ecokgC!dJ3u6qc}1(n47a<t((QCQ4Z-ZJ~_i
z24U`9ex(!VCskXCo6|*k%RK?nR4PydU-`}#aPQEud6gLaEhJk=u~5ZARSWek@HTlh
z3(s4qZJ~~Z>K1BPsA-`V>u>5_6fB+6F8xR{IX#gNN3ou|@}Twj@dpd3-LrVdjT@ik
zV21Gngs|YX(9l973yBtd7LqJ9u#mpZonf-6Y$pkC%8;|##ul1bXll7(haa`$E(*(L
zyStbn)j~5185UYvNVD+a$8pWseb#2-#Xf=?yY^*m_sOec#l#Di`wcx>LMsccEo53?
z4Q(v6wZOAy+9Xk8fLkXoPKlhawzF{gL=J7KqlHcuW?PtJp|d<=GE@$bBuio!3tcT_
zTj*w?yM<mBdRypW$xvfq<!~?m)8r(G$vI-G)uNAuz83mf=+8E<OP+Gyv*4T$H$8kx
zlODZ%OY&POVxX*ckcGh(hFBPCVS<H;7KT|EZefgtu@**H7|Cv07-iw%SDo3Ug-MCm
zPUO7OUoh4c?(ZFK;o2Qfjs?bWKErmUqZnu5B@5#%-2KNhzpOh+;O#9g0P@E1Bny)*
zOt&zDqjSeI#llnz(<FE2SL4Kv`<?<PbDnPZKAG-~)D<%=%#t1arj_VFT(oT?=31C%
zVFhjYrsrh~^EuGj;x!8kEcellS0%n8k;#RUth(pntz;$_S$N&T8|+$A;xY?-cw@2T
zOC(ab)B<lmkuW$cr#1=*KHsvER(dk$O$!J2`)Dv`)~MAM)=1T@wQz#<Sa{3AIt%M9
zY+wx*KC!UT!rL6s@nVaGO_uwB-#at_Huzu9lCBBw(MXP`Go*|zBQ{I^zQhk?5$?JZ
zDZbUhHX56S?G`?=+*_qP*oInSCpEA$x#Jf;a+=w;kz$wh1)lNGUGwa=u*bp?3r8({
zYJu_dkcH1I?6t7Z!hY$M2Uw5gJ{H1L4_E2kJVRX1>aeHO=N9JfC{?3|ILsbx^>V4<
zo#ZaOraNZgzeeJ?1^)EvMqC;4g27U!ES$FBw-B&!Mk?fY3x81O7QV3XCF6#L?=Adb
z;hcr9EnKkht%dWnvHv{ZSTH{GQN2xjy0;bDWM}cY1v<_OyTx~m24mc(K7O>Yx_|MX
zXaMxJ6<v7sdeOo!7A{%%%>o~yTir-38t?tp0`aA{y1!RR@DAyzC!S`Z7yhKrp3J#S
zyUp<qYb!Fj3S@z6BiwQ=@XH}2iUpNDqADzRHA%D3e1gy==OmW5p9~A8<vv)*&7vQb
zafMuz4pD(;lf(3yTkf+%5t-y|XbP`bxJt(fVqDPuRL(WFJc#B&T(@w8@!!HNnr;v!
zg1Bwrj)goy<PBoRujzMbIZ@9O3-{QyjJEeBKA_V{@<`%i3t27O4)`^l8Cc}01^$2G
zZ;rl&P)6H-IYv^_JCs3rT+rQ{wkMMqAH<vknT2JO@&)n3mP~H>gD4Qh#@92*3kFe0
z%9CrRGs$nH7YVvwN-rw0SP-|mw=EvT+oL*BSTcxGvZ{tbln$ay5Rl2TL6i%kP7vMF
zedU9w5JU~hD+cjg5LJVy7DS~W0+rLM1mShsRhFE|_j>r!^o)aNQioh9_k0i=>LgW{
z_-BKpu5&U5Zpo}E>!}q)ZK~^PTI1zyd5CF+(usA0_%E1RPiA;rwO#!nJVA&cR(_s(
zzPZmQi8qKuNxIcczg9RgDG2UrAdywE6gA%{h{i!Q38HBb$w8zB(JY9EjZ;&C=&-ED
z-Y<*ieUP?2y?C%%Vp<S&zbyW0sj{>8B=A3*ErQ@Dwc7@f8N>@gWCYPtN?HZ+=9Bm-
zAI5Pnx7I-{+39N|am4is?PQ+LL1YE_j+I*jw+?b|M>b<?l}@Z`ax)g`5=7S^`UcT2
zh-{gmM-V;PUs<ZVMCN4iUXrs&?;xHXcjRZy`UKJTb^!|e2Qff4X+#hMgXsMven=2Q
zgBT?1jC|8<a1cc1<TgwShf^C{t2~oz3D+7K#EVkSvZI0+9mLKj@k_(Cn9K>Ha89!^
z5)Y4R_EHezgXnA{%f^HtCI<01h$lfz3Sx2)=Ysf}Eu?7$u{DToK}-u`ItPf&qb~&A
z4}Z<3#Rf4`@>xNIvpRBnvPd*Y?Kn4xMM1nC#JnK>?3l>RF9$JS=3F506^RQaz8b`9
zl03Xy;L+Uz%=}hVu%0)hkjcgDk>pEbl4U_GkMR{jyuYJ3v#p|CEfMR2SRcgdAl7h1
zR*JPjJh~;`q91J#!|PY!N3qiGBtMswx*>>7Qn-;WL*q|M?evK#<*V}fQSlBHzDc|*
z>whnHl+BX7AH)YS$(A6V_IAIe%<aP<J`3V=xodk6JE-;`K8of1RFYj1KbH7O5W6MW
zBat<XdaWdJuT1U>Vt-72Ac%vKABstEIL--+`Rm2uAdUpFc&#`Z#MvOe2;!JbvYz8X
zoRIlX#!8(E;<V&vBtFyF=AV2l&ir2n@l`BmyA9%e5Z?r01rZG5LJ;3_5QDfJ#CJh_
zAH**~{K`Ni^S}I~@24Ps45G+S?r#Cd{qD<JFMj6Gw@ADw@#W3pQV_od@jFd=o0#%@
zhb<=r^YBk|e@F?1-A?A5P{dzBn6$t}BA0e`se@nEABeR|kwgtbi%E1z42h#p=1f@W
zcEk=M#7M}{O@j==UL>MHT#+Oq(Fx-4kRG3pOsch9Tn*wT8#ycPS`bWLm-t|%xDmvG
z!{Suq&Ig93v(7tg{26gCi2Fg@m7K{GB+!-~$T}YeQEZ7|@=*}`_6lxo-V;xQ_?uDJ
zMtvLq1o3YW<!w~383_?*qm1o(P#zn3Z4{O~-bOx~U-Eb5`EB%iLlofN6@rAn<Xf>=
zkZWs2A)6nb^^p{@u`9k~Q5(f<6qltEB(nJYc8Mh<FBy}RvQaw5+k6;b*2b&HstoCu
zRL;iVYsDMiii$R#vr)@N>-I^NY*e;U&BpUKZvR@Mij7H1heyR~RgKkfVz;Pn<7WMY
znzpOqyswEGHj-9|6YIqJ?*t_uROwRNMjaaqf9+6LB1t_PU79D7cx(t8Ep4>2;kA)y
zqoIvPHheaQHBG#`S)|y4zY9sSF=n-BVB-~E%F8En8rx`MBf|zQ=l)xwsf`rb9`a-=
zHsA``_f#otW+N@u+H@PuC2tXvydcSu-to=aCbPEIHhydtmuaJ&jW#yg+K6A|c4TO(
z8@Srr=wRc8Z`{f|+Nk)N=wxF<!{)hfis|pfZ!g%9oF7T<Vq?0E88*7w$hOhVMt2*1
zZ1lC!!$wX@BEKZx+eS~0EDx8Q7Wb*UQbfE~tqdjoYz$gjeIU_Be;auQCk~+gfA((j
zbtMkAF~r7L8{=#YwXwXWkDsg`Np(qny=~j!Hb&SW;jYU2GGDYY%Eo9Lrxtl<&iCfn
zm@>;-``zNr>U+o7pk(+8?@KnuGxFP*NZVNF<0C+;Pv*><>78V|Uo@R!W2%kGHU<nx
zx%{q=xJT}-F}UnB8#I7?D>7!<m}TRvjW2A>wlT-X4jVgd%(XGk#wr`DZM<w_zKu6*
zEVi-0#>zRF3u${CQ>tQPX2mHPo%>|JMthsmb&-wNZRjI2yEkap<YL;<rER}HnKO1%
z=7q_bOV~{tD{L&avCKx@?Il-aXYZes*>O(h>CIhN+Sr(u@+JqRTlUo^DIe!#Hgl5K
z*jQ`h0~=dxyk%pZjkj%Vva#L<^K4)dHm_$YdC4lB^VaRWt5WAjR>C_r-nFsW#``wj
z<AG9>XZe%o)$KfMLPoV7*%cOKUha`?epj!>+RUvsw%Pd5h8CA(%*qVR&YalGw{T?U
zc2+w*bJ6<D#3`8{(L-$<uyN4F$2LB(@u`iyY}L<cyKU^Tq1NtPFf}<eHnZcsPL-Rc
z^lFh(uvyA)b29hY*l&Y`+gV@6Ase4j=Qd8-_}s=}8^<|_lQWLk@N~&OYU7xVgwm;>
z&d&Vpy)3r#uO)5!_0FzRsWbD;>6LxT#u*#YX<biqjCy4sn~+g5tIP3;8FN-=ere+?
zdPfK?LO5sRYa5o0ppEl3zOnJUjX!K$pgq|5*~Ud1-`V)y#t$@LHbY5HP0HZsqd(eS
z@+TIVotbBP=E?~f1-oZIc(=<hHh!g-u@`io@fl@&okRCJ6-vs;)1}Lu?%7oAgT&5%
z+PF*wa?ox3Wh2*yLY>%X|8^$3;Fp~W(3W~+v%$pYmSnPzd(ip2-q}y@CmS~Y+}zcq
z^-j$=HZF5ez0RGsq}Vn>44WauhY+?Av2n-7T^kNHVB?mJ{CQgr%iEIQzTW>v<`o(P
zRsBXLw`-DImv}?sO^FlNX8!w6#%(I$QZh@8dB4j&8xL(fvQa6n<$XH%KN$~Lb6iW3
zwCNd-8JE^&US5+){=~*pxr=-M=2;-d|CQuF8*w4GU>=FvHg_S<7ef9Jt}XJWg-{>_
z`eW@7>V!}*ghC+{4xxw?J|99+NlJ%MCWK;=7nhhIv4q5u5=%+s=hj&px3V%>DTH#8
zl$TgRBKKAd;kg+9{v$Vk<q)b!NmYr}VteZkiK{MojhLin2(=_HRG|b5)(xRv2#uC_
zn@S-<ND84r2=!&sBT-27N=%gKlgQ$6z2X?JnwCo?ZzzS0LTD^W6Nz*3)Z(t>5K`n(
zQbQQ9%ge)!nd5CHC4CpV?N1M(SLuTM!pRFEEXzpB2%%*N{aPjsi6*xSp>+t^A&j}0
z)`s2mphE~9Luea9W(e)L@fTVPGt<(N+lO%DbT@9=$(&9hbPmBBpV=jZtPnyElV@zm
zT<^<>pPRXSRg(psyLS!Y+pX>oQ@VxFJ%k=1^bDa-2z}X-5PFC3)`R3NQ!*Ye&m1}`
zz2wYHb3-=c-s%aNms)nIurX^u2m?dFebm2?K_Ltd!FLTw*Dxf6p&_h_V08q;LKq&x
zD`6}QV?>CLi6R=pl@MMGVN?jKLs%2S=n!&3SQNtR>|h9ELzol7+z`fv@KOkqLzoi6
z_z)(9Fe!wUwS5yq=&&+vK-c6k%hK|m$|2{c{`XyqYw~-_)DUPtGeVda0+Z7vUaQ}j
zobs7+@2n7JOR`~VGKFh5yWdWq7sAUSY@E_;K3f~YLdh3|_|$hTZm)*iyH4C*3t{@2
zTKpyn`RZ_iH$vF^Zn@ObC0EcLN~SIjVMz!}Iea1am)YEwOS0uwaq@}BimwdeO<C2d
z5N^KbyZUDQAwDoOwc}c<I)tA>_&J1iA*>JKU<ilUNH!ycT_JoN!rLrZJf2N`FN94r
zq5R%=Xr-OJ?@Fw6%KeK<a-PJ^%*@~Ygz$kRTO@9kxJ@GWekjTI5O##HQ}Pz=%6$~u
z+xS$@Cn4+(VLz4ssjonscMrQ6!m<BEv$9n_4dG$&=KNC(ll$n=XA?=XUh8upgfBm?
zNAg(+pNDWdgflGC)V=OF%+BuX*X2~s5!vjc5|2qd9>NJp*qxJ-oRWAqJN|44UxaWz
zgl||gt-W%mtP$-ick+EVBk8LU+H~-pllZm7-laQVpfQK=LkK^H@LdQVZ>g#secy-N
zAD0~M;=8;k>Dh0KS@0RT7{V_hC?Tk_<G+S*nHo;@T?*khIYz&S@J9%LN<Q%K{8h@7
z;`Z!&Wq(N_Z6H??zr;WY{O}-!S_nEVCxl=K2F-YQk{NRU5i@;nKJsV(g*h`T&1U3h
zpjhh*h44<HPW<mrt#k2_5FB=-tncvi@gqBw9djz@D#I*eT^N<ZxK8g5;eH4Ys8UAb
z5N?NXC**!{y3|i;2}Kge>`%BG!pxpt{_u;RYQHCyxu=J>>cQd<**r$(u=|s#$22GY
z>LrAKLU<y(|L>C*p3?807NB|j8^V9I=P(L{5f?`Oq?CMN{IbrMCycydJZVyf5`M`!
zK8zPuckA$H*T1Ip;$Hu<v=tfMNear$g(UKSF-5{C8pf3TiNz#V2&1?plq7^vBF0OG
z!5^KJ3Zt}?l#y6gVmXQBB{B~SR+RkTv-QX;hfyVr;S4WfR1KqA7~NP^*maHP!>%th
z52Jb*HNvPFMlH(2?tjc{OZ0@@KiY7sBS~F}^}>K8^(EdbRFD~j<RsoO5+(OZO#1)w
zGz_DWOg0W9MUo~GS*mFm$ua({!c>`T7Dif3o-PUZwxD9!!Ka?NLrY|Y(K3uyVK@GC
zkk~qmHes|4yEpQ<Wrk5~s!O=F3!}Z1^Roa<c4Yq2qEi^1!^o06TOx&BB<U)#&`818
z7AV~GhVRVj)D!bEdW6w4j9y{%4x>*PL&9#f;np{dfs*%=*#DV4wwKX~c?QYkVAd>?
zLt}e~NkZYsFkTE}Vi=P+7Om4qh27s;jSr(#`5vRg{9gvfgfZ?!`>|nM9nj?^$;U~&
z^NEL&|N412vJ=8M)yDVs;9irds4(V)-M@rP4P#muGs2ij;af@kZv1qb(|{Ci^_C>e
z3gfr*)CbqQJg8A-HVvkyZ-1js^H1f>m1XCJ@p2gR!`Lx0J?>n&1z`*=>;4FJ=?VAz
z_-Yuhv4s(oj$lz3uZM9ijIYCZBaFpiydTB~VJrz_X&4*A*cisLFqVfgwOz_O4p!50
zG{O~B2tWQD#+#C?3Zr7h|9wGabr@@;aIM6*BnAt*kz_sF+${N(`kjeyhxzv(_s_GN
zX(wU48%E!<<@g(Do<ZJY^Lhw=PUqFGg3q69IF(b)DX=Ast+f9zK9Ln>H%{6X#)n~S
zXCK43xGZBA)s-)4C!1Y7@$*87bzW%uQ5XfUrBTSe^{OWB4kJC)$KMrwO0SQ4_JlEL
zbUevk#t>QO{xA-O@mU!AtBC^~)BXtu=^Y&fo5bg(KM&(*7{|gmEHm>XY)8Uq7IMF_
zd_0U3VQd>NPKLqv>G;sa2YtPKWA2p9d0OHbiDxCU$QNOJDfw41$(r8Y^I?1wh8c!M
zcMjv*Fw`)#u=@wn?_@TA7~j(w`+0r{<Hs<5lKc;eKXb4qc`iyM`6Y~BCBGDt{1(RV
zG2Ulyy!#6nS@3cge@T)nk@C`k>VYu$`+$Qd<CQStcjqJ5W$@v5<~!JZ2Q^4CsJ#YB
z{839VjOq7k-U;Kb^awkQ5E~puBn&5vYYg&XMA@SR?-jZLd9~~+6}{1m1)4wYcJ^*J
z%K5jW8}u56wd&ser*dwFQKWau+LGSevJ^S<+@pW3i2FN?f5NyQ#)B{#Z|_I<d?*k4
zh{}=f`IsXc^U$X;5B-<k@kw^E2#QDWA5Q@h<cT0}1VthkP%v?Ix8{|uro~6x(3(#o
zN&W~5NM2B4A&G@07P(rI8CbArgj33lmIV_Nq`YJVGwyp!NPcozTjm*4IPv>aIb|X!
z8^MSOMn+IBg7Og{g8C8n$K@3ws2o9+h<o8*F@onJ_~t>EIteM2BK&t%E&j+LUk_i^
z2%cv<^LwjB+;QjDVM2%M5!8^vnh`AfJbs5=fEj8<P+JP?NUST7@_G@j54agT5r_!d
zN6;aH<7E=P5hO*>AcDk*yY|J+7s2#|f+P(iXcR$fdBnyMG$Dx~HG-xrK0I;wCSP&{
zYp!`kO&|H121(5#IA1+IP4<29JHC&<NlBNSN@yNI3&~%Qm?5#H#8wiSXYYlwZRD}q
z#`>5kNjr)8$8~#BJ-K59T_ebjpi=~$Bgl&U?_Y{tA{dJF;hWvx9hR{Yx<yd0hi_m6
zgCyx5K@UlKO60CylJu6?M`B-z{Ur9M(j+OcA(feLM0zrq7i`&la0J95JeDNGA{Z{o
zGc4C8>BR^}MKCvlc@d0`ASZ(H5lmomrguyPr*`_rMKG3X|JD1e-%I>7E$Jm*P_*ww
z@<~K6C{2`|ofN_32&P2v!-ut|M*jD$$l)amPLq6kOfn;anUc?vI6Eev6T$9o8NB9t
zIfD5SEQsKh2wr^Z8~jr$4WRbxX$vEGHG(%HSRBD?<d&BfwP8vpl0^}`E+zYhr7}72
zRN9gVRz_f+${}A$ON)Sn+j2=(NNi#D^{-2NGlD;db=^B9drbsuX>Sg8I(RFBbrIBc
zP|v~o2sT8JOS6w)V+3zU@KproBG?qcI}sd-;AjNzM(`d@B7#pM*c`$85p0cM8@ook
z9oBZ|2gQl`$F$qRf}8uaACUSXHTHAwoe_LQPc*Z(^SBZGb1LWSir(&(yt_E`m0i;4
zbdI{AUB%NmyQQ7)i(r2Qdm{Lh$+Kc_1Z4*FE$~-5dHK8IKm-RP_>7IQQV&J&<F0m$
zPHS@0Ti5nZt(pBf9dle_hdSQFtfXVgWpB@47N#GIfUBk_si@Xvjz>Vr3A)(*nk1(p
zI32;62+l_EWduBr@EIWn|6%`lzKFQDdigeATfG~feB<BTDF2#%B%R`$2!4*>Vgwf$
z95{|5<vWQ#MDV>NPj6+9{3-iK$uB>j{uAZ=pyP?OU)Z(DS-s`Elbl8W8gb{+mm>I0
zlHVm#@`ogUO1v!buLzd!E5Tg>dR7DvBX|^n8i5wU?FjBfphsXtaD#^TZa!1?<w^us
z>5oOdRs=!j-<xVnBnd?jmOLWSiOHifKQnMz$XV+(j{bzC>k>)YpU$}{yMHSd8EXGh
zlCRj@Je77gf_o8EDCWH%!2=oDst2-|<lKqpg~t&*iJ+!~S`MB@@OK0i9X#jYp9ubC
z)OC=uC;PvM``bSL#jk*aI0p;&_?XP&Ag_aX2an|6U@6JxAio3t9G09|&_N*w6Bi~k
ze_;nj92AvhnJnX=n1kXD5~QRgliqfemypS8qY}tVIVc^=zvg_ovN3*sR05k+-a!S~
zHgc_aB7Y!W$w5^I)f`lI_yO<)N~$>Sug0%rCM8Yi)@W)Hx91%Yt2?M63HjPf18O^N
z4Ck`;fYUj3od3;l%a=%jgZfN580f&`KsadappC;@%t&;Q>Y$kepMxX^$@EkHI>$jn
z#|^Cw8mBaJ(3tuuUhrbQj5?(gn>ZjgrC%3LAGo;Z&m%fBnc_gZkT&&n4#P{D<DSTx
zJ4nCbOLs6TKI!;JS;Q6&UT|=EnlHmaOUIq1yprR2^K=eLD;8hnA!+L%(?MqkS&sWp
z(#Z?G?Hu=v+}=S42OS+;DeUF;%g&CS7+X%~e04g9NoMHcpf`(j@^)ok>U+6mJLu-1
zyMrDMdOGOkVBODy+pTbSaVs|@uE+xK?HS%a4#r$UUkCjhOt^&6)0=VY@3@4XILN_Z
z2X8w3bP0wy80z3P2a6mGb1+=$XMuwe4n{iQUu9n{mHeXA-b4qJBpJneB*~FDM&ekB
zRPs1UUUD!#CYd0~ib&VxPx60%w$Wq<U2b)r;$SMf=3u(qJI?`k&2TW6TI%VWDU-7#
zGCAA99LXP_iD$N*!}3x1a;*OO4p=h}%}K>84)oJG3mv@bVE2!mDIvb@;0@++u)=XK
zCl|9{Et78)D!4=@mr7illCeyZ-%EC1DaV>u1f0uFZ579HU+rKGRqeQ!KPy`Ly3MIY
zHLj(#IPPS7ZtV<W*&)95Gyn%19lY&elY^}ewmEo*jqmAOkuQnUOOkgTyyxJ*#cAZ5
z<*xS~d?3jdiIj7djF~@lu$?1yG>v69K5e&XjY~dqu*<=YtJrxJA3OMjp&*J%QS5fG
zhbnULgM&{U>~(O|!7&H>9PD@Sxr1<V@5sHr12o+!T@N`pNW<9cqvYFz@t-+(xG`&0
z@s^jflMYM&dUQJH2#0$`97E7?2PYhS>EJ5|Cmo!kyOoNkPEI>G<KV1=FF2GQ@6xXE
z+*WzK)!W1|`MSqjH*cA94!(A9p8n2`obT~U-K3{AeKqcQFF2U}=CJSRk3D=O-^%3a
z1%1k#$)V&&2R}I|9L4_f@jpAbD3v_taq=%x|BoCzcJM1>f`i{2{LT@V@;@AKN_kmw
z4%45K^jIH9{+EN?nB4Cm5aWs@D*ZGj`Lk$-A?q=v#BvaHU^@soxb5JM+!b~ZrO!$p
zk?6?G?blYm>foA`+@Oc9kGn3Bt>P{=<0i8?c*ePx^1BZ1Ik+#2{Qq+9dLV@lWqu}~
z$g1L^$P>j=2Y)mE$J+dFtj_;p&ET=}MqOKdR%d(^`D8M`#DWqFNPMQBLNQ(>id}Du
zqEQr!VsklP@hD12LY^Q={WCeU@28ZEqEr-(mh~we+gm1zvXYmRSUx7N5Jg4FnVFST
zj-pBw4Oupds!>#nqE-~Oqj)}wL$}g-y<8)T>TE67Z<EFC<T5p*d{LtB3uoL2e1E5}
zP87bVyINZ}3Z-3QJ&7cUqJE5fBoPw5Q6x(8<4M76Nl`2~E`NI+#o?VLxiyaB(uguG
zqi7XHlPH=--NpRmD4IplZA4}Y%SJtvq)M`Nt@~&5v?$VLlDv5oEn@ryNirlp-kP^{
z6m6pD5JktRd$HLzigr=7&6}JllLe=CbA@@6+egv9cs!R7J4Nx^3}5dk`b5!L@+^tF
zTXpXuN!KW{CFv%yyTl$6drIsT#o|86tfb1Oj(wx(7saTn7=0D}qZkl%PdD|iVqg@5
z*s3e&cm;!_7!t+LQCy5-XcWVu*cipzQ4Eh_L=^L)csYuZQM?$%q$nn{wkSqNF)oUi
zqVAPcP84IJ7#l^6h4GE{xIZJFQlcR7i}LZ~<>4koF)@m~UCVM3PWh!<#aES&@3%dE
zN)%J0m>I>aD5kNhC}wb6dc?0;7guj#e4Pz(vunlmsTDW7ciGud%!y)d6g_Lj@!xi=
zdHtb$#Pnm;nVip39Iq&rNAXG&3!`{FiZ`NoHHz0{0~T?lwpVA(JUVM;o%MT_C0`uH
zk|>tSJQPMMxa+8F8>?Lr#mXqwM6p)xeKU$xQLLtYE{|g#j<{K&z_SY9ieg<9>!a8p
z8_!DEu+`n%W7XOecdUC^;-)CxiQ-5UN27Q*iuc?)@d@1_iuY;8QEZR$A_!Ze*c!z)
zX*sO?S^cbvm2legN<zUMQS6N3Bl>0(`?gf)E;gILzNN;fPj-z5-5tfAC=Nt%FpB@j
z)O&zOQGM^@Ac06*LMQ^#5qN=Yf(S{-B0<O^Y=A)MO*)J8rW9$41rQJglwL(X*y&Yz
zZwiPsks>X#(`R;fX!3vO=9~ZXd!GB8=e_5id+xpGo^xh)W_ISs9Q;H{=1;MTT%DXA
z3ztA)cHEMKtvT4nK*&LXJ+9^1I&e;jNelC}oa-)@)m=H*or7aJIG%$&IoO+n135UD
zgMC8nZ}enV%eteJ_AVZq9Vp#)OMyc<IGlqcIXKD~Uzm@sk~<=4xfQNva!%y%Yzk+E
zo>MtEor5z1vnf|0*GSLdtj-BOdo_rQ{UZk#a(K><5)w}caVZCyo4D|24ld{5ZVvv<
z!CyJJ;#v|nb8s~W*K%+@2RDS0+)aFSu{#G^uR@l)<bQH-D+jl8a7W0zezy>Z=Cn&R
zC_x#z*}Sp^?&aWq4x}7}a(J~04|DJ+2RTBXGS?Qm3hCsubMDs2qDjetD*T_TpnK4V
z|0q+a>+RA8b6O7aNysn3%7LB3QwTiGK{yAI95^|6oP($cF=}I9{%qklm#dHR(3vwz
z#E$ws-?JP%&%u8=c)>$|Rsm~Hf!yHwc5l9l3*Fcmzc}AZ5(-FoSwdln=@bPe6p|1t
zfvvd?#`(}7TpcIRQHn??DxsK!;u3g|j2gH!Hs#J?Z;4oLO`L?166#4vkPt7Sl!Pi0
zs!Av=p^StI5?+;1R>CV1%1J0Mxnavf4ZIXdn(GPFTv0+L36&)`DRIs_`xY2D*By%m
z=kryQP+dYT3AH8E5Hhbxs42NQCs&5v%V^~*bReM)#by+!D}iQVD@UOPI4IZXm5?aG
zC!vXiBnkB;Buhw<@VbNs65f!|Py$s^Ef17&SF2JF4bn)ANY1eT>QP~;gvJumge0r9
zKPg>k-NLGGN@yyfg@g<V=@ObrcuPWa2~&bGoW`sYv2-2^-=0;1G0Q3WCA1XE-=?XB
zZJ9YK#yL<dAR$x22?-}9w2{zO!sim^N@yn`OTusoBP6t!&_TjG68cEUrg<fFlh9p4
zCkdUovl6-r{T!Y1{G?<hW)EXeReH!*Qi&cCdP?ZUv@d~1=7^ltb5AVSLi>-4i=}7w
zmC#Q@P{I%i{Ur>LFi65+2|tag!buLyvkbpgP5rbL7e)V}so#|_RKhR`9Eh4(*hEU(
zj^x%zm?~kKgwYblNSGjDqJ*&$#&J(2yeGM*dAUAGZSPCSbrsHvyTFUXlO#-*_`)|#
z5q4u*pyu3-E4tV{E^zCoOPC?y6A7P6_)x+}5@t&HSWKAPN`+kPq^2baSY`LmB+Qa9
zTf!U(-jcBl3Z?=UPMGVuTOyVVoF`$vgiR8@=alFG5|&F?A>m7RnfO}5Hxd>~SR_VS
z%vhe|rj&mc<>N7e1JMFYBrFxJ%Y>KS`o1c?oyxf`O0JZ!O2T>x-%405VU2{f64nWM
z%FsjBeH6n;<ZN>-xk18r5;juc|A~b!hP%$jnR6eRWPXtFqlDcO_HfrE{48Osgl)92
zgkL3Wmav7x?RBGr^0|9N%k&e6#qAPyh<WZ3cHSvw@}4L5hquyr)S&S6#Z~u8*eBtT
zgu@bkldxaH0SO1imeFq96y{GJl6Vz`Q{uFbNPNR5j!8I9V+sq?=X2ff;GU`jR=ATt
zCE>J$7ZUP?a7Mye2@fSal5kGKc?s7g+>r3Qgg+$wDdDo1)dl8%36})spfn~|lzSZi
zOTrZiS0!8%vszl#JxX#WTmnr>Z{fuLmT*(TT?zk6_(#Gm3AZKOp~DNOr79Mhg@&Rq
z3y+ESB;1$qfQuFDqC)x%3qg(qNkUjcL_$b{EJ2rGNKhoG5;QSMj!vB%op~lV_DwpB
z1Y5LH3D0(Nwb6{U2{};-Pb55*;7E8Zc04x$QV(07Nq8>dzr0}KsREg~P5DE7R34T1
z^Dw7wfe>OsC>cV02n9nZ6hhGuiiHpx!pk8P4xvcMJ;i0m+`hzIAf1Y9FCKy?gc2dd
zh1}D#Tx;YC(-}BPGE0R}I)w5eR0yF=2xUWfC4_Q9o`IHYt6ZHFCdlpnY6ulWZkUtF
zMUh!KgeoCa4WU{HHAAQ+W>r0e8X>$UaBkF7Ax|^7uG%4YBOunuDv#H!j@@3nZV2^4
zNC?3jLaPv3hmaUTQV3}w_(G^3!s{V43L#l^Y!Jd5Av6qufyQZ&GGQ_kawAfNKxzn$
zL+%+D9V~86fn<*x*JHB^GzsC&5MN`C79lhZAw7g<A-olGk3{L2rJ1-WmK$8;P;*8I
z{t#M*@OB7$`npXnpT}sC$~bu*1p*;thR}_t>mjrWp=}7+A#@C(olx68gbpEOiB)sG
z49N|Ps?xDJ5UZU+=o~_q5W0$K^9acE<Xl&0E0ZeEMSJk%KZL#^^b4U^2)#piCxkvB
z_ozxqQupSI@FI4pHKRcP5C#Zs14HgnGIyZ+6WtU?fnW$jMC%73yej~i?}ac_;9(&Q
z4`D<IBSRP`IHN)s9m1Fp#)|5s3!YrxU@t0X;b}jI7|&IRn0jA`O%QZqZWlo(3mSZo
zZ|8XLln|!U(*$RspwmN`5yFQdd_?aO9O|DL!t4;{gz#|)p9tosA$%6XEK06%<CldX
zw-A3G!aN~1S5S_XD>FZ@x<CLjzYO84JSMA)LRcKa*MhS~&~HLm62j6DmW99xuL@y#
z2rEKZDXQ#3<+=LV+IC9y)q<ZpleKxHtP^0ppcMWtgpDEG58(khA#4iaL<lEC_&&rp
z2IEKwM??5AgrCUdA-;Ly&msImuM1%>9Vt8U*AO-fFsxGnR=0%EzDt3vg2U>z5Vq&x
z9h{87yYe`@1z^Y39fJGl9-f2)A^b*n+8^8>!tG)SzfH>cWl2l&4~B3^2pkraoa8Za
zi+40W#xP7xobhhbaZWE-?{C|EfAy&lPKR(kgd5ENA)FN}z1uzYTnOhw_$!1fT$-HD
zn|i^cDZhvC2V<>zV(jZl7lh=+5H1Pur=YazWy)7@v&7YqdylE-=z7<f2Bo^AYUCSQ
z!+jX+?+|W=a91Q2{tW*oggYVkNBS*6Z!>weZeMUfBI(RaDdayWm-=rA_d<A9Bq_N_
z(yXFM4?}pwj3=Y4jGPdp5UddF5JDlyA$%}1(Fj2aK@C9<;l2GqKER_f{{#}g+MciH
zynL+kf`;~Qp<BJHm?5kl8slEypyTZi7L!q2MuZt`W@1!OCxpi#JPF|`6T6H8vfK15
zgnR-#7c&0|O8yH0CKQX!FIvy`iy@OGM#js6Q&7-Cg2w(oGKB>$A}HmH%E;~Ok@55E
z-nK`Q<7JeP5hwHgUG+-J?tkJ4SPrdDU~4HEq@`tqlG_rzBBPv)iZUw6nDuEAuj!SS
z-Q!UOSzO!Us{mw7EfUN3URIV-MTWgUxW<!MRYo--mLQ|Lj1BvPHD%NipoWas1R(R!
z{$Onx;2g4&>&mDj<IREXiAj~QZ<E%Oab<sy98#}PSVCl#`Z8YUDh$LKXdvSa8Anwd
zQ~B)xG?MYLf=?7A%Se&&K*mEEsWKYNm@8u*$CBZbF+j#Z8BI8%jBFVlWi*wMF5_((
zt+@88vCU+(kdYzdEg8*aY$?-atCYrt7dsG)zZzp~@%Ux5l%bBu?4+i%l})W>1Z1?6
zktHKjMjKj^Hjk95c_3IXlF%eQKpEbPr*L~2WRiA}@tc~S%WQri*hxlb89in6lF@}5
z#5KMf=q6+BlTyTSeN(U3@O78bLq>0JlG-@q^s7EHd-LH>TK?no{xbT==qsb2u+_PD
zGC3mo_5YW>^?|Sa?!d@<ap(Vu8zf_}j0rL(3bCM!;W9?Z7$W0c8G{yhhRPVmiIsFu
zMS30xj(s~&vXXbCj8QVi$rvwVw2Uz_#>(jSU4X44@3vpy@ln`kyEi-DlX>6D^S)3%
z_CSyvmQjr}CdrsAV<tC9#s@N{$hdVNID`HpW15WVG7cXI-gnaG9SCl6(l&{XbMAKj
zP{v0>Rnp_MCkKKZ*JXbq<5PO0jM*|u9Sl}p)o_iS_L+>mvjW5fb7XujL*MIX^^Jo;
z@=qJ>=gas)#xF8{mHAWvzj1(7GFHp@O2$GNOJyvRu}H>Z8Q;iQBI9crJ2u6%`_{AO
zS`7bVm|etO;OiYrHUHZ^lV2`lg^ZPAVyq@KF4KFHCnBYny&b1V($;Xx=;SiK69VgG
zte5dEZClj0{7VnZlIMl?L_B*Vo{bcc@uQ5NWNec8)=D?Heh{?X!QhaC!H-2DlV$C}
z;LoC|Zu7vtgTc*oOBrVv;4-$#*e2tEjDs?^bLKMk&>%8)%Gf32<O0ub8IxKC{yrGA
z9;9z+6^I;k_hp}qlG9^;ld+$>`Cr1CE=>w%29~}Xpg{bg;34jajN>v+$T%YN$(i({
zGL8w*cc|;k^=|Z|@StMt=bwu^DdUuk(+t@6-R_Bpg7w>FW*!P+XyBZT^D?f>xFO?r
z8Gp#QEaNX37i3(NaY@FXTu7?`^#}8LNvZsHb`$FV@z1O)GOo&eRSvp;=^>w!9C#?W
zF5Wxkkh_q-W!#i;N5)+l|Ioa}+TW6Kn>pu60x^fq1yueo7ZQ%UC*!^h1}ymt4+X=G
zI=t64lS_ES<j>5Yz^6cB_%n4Y@F<XFC^DYOc+N<dp)ty2gy~vh7fhOhv9{P_a0d_l
zpPz41;?6xS#mPrxM451^CO&2!Xclmo@T<kLuxV@Swoha{We}Mu6d)z@KN&A%6jV@1
zK|Tff6%<eqqo88%z)K3Yj_OO9bu0X&YwDxc)EII`t@Okycv*3Mrig-mwx{v(l7&U}
zgWAbt7FAG8RNt=SR>>@(AWlI|1+^5ER1mMAvVtlKN+~F<pqzs83d$(_Zcd@H3SLoA
z{q4X!BaQS@W=2p+YoexCQ1B{erJ#}myH;}QgM{3sTJ18r5Aw1sH`1#rsHUKX!cPF8
zI_XY#f$a(uqWtm9B;uSKaoH=}C%|hffP(r8URO{@L0tu21&IpkDM(Nden0-u0B@De
z0ey4e@S))T75*dz&!-e8v(AG!a$2{^Y@px`1&x^S6*Ls(pF_bWU%JW<p2|*9kgA|D
zRc-cEHhqOpXTQ|ked;OgbasK?0!<XWsi2pF-U^y3NLSESK|2M_6uhPI9m059L30Hy
z6!?W1GZa+#z`a6#t4{1lC*jB5UM1{igH{S!E67yPM#15in~}p3Q1H$iAH~Xk5YuXo
zE7oUHOqPO)RT8rmbX3q@;2JAE9Rw(9rF2rzSwVLNJroRlp3p@>R|Va~(5+wVNDYq<
z1<5DwDFn#LpX@&9Smto>9R+<9ysuz_g1&SH1w$1KQ_x?*00lt>L)b;ZEsuAQg2A-#
z&aT8S9dfs3j+I8h>TJ{Vt{5&sPfs`;9Ijx5g3$`bC>TkHvC_&sFEvWR_VR8rY}q&P
zU#qrb6^v6bUcr0rCZ>0*>KkXJZQc-AUf!3{$ITKg4+keIn51C3f*A@XEBJus{VQ&o
zf+-62Ztxt+S9+=#bo8>s_sV&zZcnX{6Ssayz7G|AL{l8fn#nGc;|abUmr0OIKUMG<
z-B?9!6|)q~R&YbX-wNg^_*}tG1-lf?RWOg56>L&4U%?j&mMd7HV1a@!6)aZpwSuq2
z&<hnTVqd-U=6cCbdU#1WbI1wbC|IIkse)xf?3K#NeGdmeI2@$pffs2fGrR8S>szT{
zm4fvOzE${{ORQ0_R>3+2(+*@&$?C&yW?+}yhl9ClU%3^xLBV$lHqyIdl7=-%rk>p4
zNWWL`gMyzG{G#AT22tH4mY)Q;D#sH)UF!K&!Da>9xDg79uJ&(Hu;pgfRt0?Abi$lK
z&zY{-3qOo|TB_98mDxLl%#){CyA|wFa9+XhG`oU*3XUl_uHZKX`xP9b>nb?Fy}lTC
zkj`^1ZqauCrq=F84=mc{hys>Af5#mac1S*$Rn|$19hrGT!AS+D6@G2pZKW{zr|4-#
zyRh$BW|(!Js^{a*(ciYaxhr43E~AS3{!nm1!DR)1DY(de%%95gr-DlYzqpmfYM%;$
z{N6H5K35c6Q*d3uRc4imF$+B2aaO`VljFPOt8uBhD{xc6Kg^aYVpQBxaGQCF@vh(w
z^O%AV)3}0v72H$sP{AVw_Z2))uyAuc=hM4dV%Hw-vF66%V2)Ut#5_=@6sx(+M|z5)
zKviHUFcoN`qn=hqr~biSw$}4_Daq1qYVp_mWm=5c9!)kC@I`2ol?|ULc&hNtU~m*X
zR*=1_Vc=rizkLJ4hiAnc2|i;sQ}BWbU&Vjii>IE|QBUKY*#`y(s(;ebv)P|t#Y-xF
zo9`iqd@>0Nswkx56&2-F#Hx5%MF|ygDhjJ8qN13J;wm=hD_vAYwcq2m<#W&CHr>wp
zAhnD~Mbk5-A4qA3?1WXVyOvZDucC~KU;1TUnw?SfMM5bRrBx7gaS|SE^e@<yMOs$H
zpIfrotGtQ|Dyplfq2g5)6;)JHQCY>`G42psD#Wr>QBjrSs`&Q2dsMnJt!4A>P1fai
zO+@;d%FDmLoM3#b!zm+|cxtNd^O*;>r9wp=6%$lUR8dz&Jr!+Lv{R9w!mHv<PFqEy
ziX;^&DpFO{SMj=vH+aIYqJioTwCII<%<b@N*7ZGEjZ{pz6i1v)t9}w7sC2~L&Bj8K
zz^5Wj;CaP-<7y@~$>V!-I;X2>rs8cCtyH|FqPdC;6@IR|T4D=9dp&mtYB!}NIm9hh
zkh=K8^wuf@Dl%2H5ehdAiyzw8`_Wp@f6qME`?!EKOGSGXLsY!0qJxTT6}?rwqoSkA
z(-L%3(OpGn(Y=d`t^!nA@1~LDBf+0*Cl9Wj+(R&Xa$HU?CaF}N<Z`cdq|8S(lUePf
zqOXbpDh8^ca6j%*fztgsr6WPMQqQGM9R{&UMNs8UfjCy##J<1wYBKCdkU4FrieV~7
zsTi$dOE2$m6(dzFectZZg1!+dK0OlLa3sis+VEif7!_kxj92j<7e3gHrg17*YS;<8
z-f|DJ@2hxrt`|Ylz0|!&f|FECR<TCKTDk%Eh}u+qredlJEK8iB;zJeFRPYZq4XSpW
zuEGj>D;O!HAF23Q#V0~+ri!PTNgXPuzWI6L!!}9l>Xsp$rDC><MJg7nn4{uz74ubm
zp<=Fzc^u21bn#bDu>z@o9SOcVIP3Pm=?heRsp2b@FV+S*%8}q7{-mNu-PV!ovtFAN
zVD)Pi->6uoVmW<pmw$<hA`#D0A>Xr``@@QKg^HCbR;gGmHf7(slru-O3hs6j-Kk)z
zx4Jj~`s{To)~ooHA<3Xnu|dTTDt=V)or;YrHmUetMT>X5qlU--kIwVN{f!xI<!0Sp
zlVaA)_gw!uW?CrWClx<4PPwy90u6qT+dm<O^kMT1(k&{ss@S7quZnFdwyW5wVwZ};
zmS=~c1l5na{-2dp=7%ocZ`XTvtLRhRTR%B@A9IU}11b)x*w6g=N8FsBJa!-N#70Rq
z+ov94cUo^o%n=pgk6V^&l+;S_pDzmBI+1c*#R(NpG(6RCQpG9yt%fcdPOCV>ETo~h
zhO;Wpsd%I!N5y#+zpMC%DO$xJDlVwFqT;HGiz+S&>s?myb?H)n3hbL6-(z@Mg4+Hs
zQRU>-*@@RwTxYgXaZ@l)UvtmIZU}s?dy^}h+*7_*Q)9}_Ouwz-4&AJ{_koJLD*jb*
zkIuF<@t+rIfv!~u-dyN8{(91V&gX?|a7sR;5vIoUIgl!;2&s6XBA*6Xg`&by@mPhb
zLQ`SVEyajBbzX=wXqg=;Esy(ZmiIoa=CfH<5mEUHdN(OGJ{n|GKHWXVq5vtYPw2oZ
zo-;MkX(z@!6OxqoO>dd2iejM)?vXU+e<}Gj#A<k1!%G?pXo%5JP(vZwJTvq20f~1u
z1%|$zajvrWpVW-Cp@hPkJ7`fs35sYqSGl9_s+&DJ9u0all+ci@Aw@%+hLRefp^k=l
z4W%?x)KE!7X$@sGl+#dN!{4htXP$b>YIsG1w}N-p;K1aasbwp8$*-W{RWS-VKa}yl
zv9e?ML`r21RW#Jl@S29I8meiiE@VcI2(+4<&N-AB9e8V0@Vb^zQ$sBcyROC576Qjw
zyQeF|jt2jDGeBHdb2r7SAyGp;4bG4L1i@L*&r5!ihWZ*d9St_p@VbTu8s5;*Q0Pey
zC!}BSeRecB`HjHEGg&MYBTmm>I#oks4R32`r6Em&PeW4;>2%j^sZBJ5C&audaCAZp
z3#-jEyrm&SgI`0pg|1&U*U*9n+~bCJml2sGJ_?ZEQbW&$o(V<0<dfN2LqJ1&4IMOO
zYG^}yZuhs-FzMxHZ3V44Dn8E1Vl_*{AD7%MPT3mB7L)HtXRGOY$g-aC`<i5Q;*x*K
zzE#WHl@rjgU&8?n-8J;k@TrE+IIf0X8b)att)aJucQg#v5Y*5|LthR3H4M<uPiX!p
zoKSLdzTO3Vyzc5-<QYiK;e<h&``?NRku1^{1$;v^ysKfDhT$51cwXqI7oMT?x99HT
zG&35wXTl>ijMVV>S)ubsgLP{quk7z8s4*JGYM7#7s)lhI#%ugGA|`2gPs95fCeR-m
zBz^ciZGScI<Fekt85!Gt@(=mNKbiY=G42Cu6U-SuyG-I~8m4QQso`Udw>}eQX!uaW
zM;h3x@}zWjr&u9>2DR0>7{@A=f1-g*a%O3mtzjeAt6`3Y&o!*nuu8*R4f8ZC)v!#%
zd<|b{yzuK?qT!*)hYK|1@8SKD@nt5ke5GMw9$qBCVnM&w@J$|{m-i2Lbd&#b#>niJ
zD>TgL;qKatqru8mli9Rd!x|0iHGHdKt%iu@d-_K5I>v0(WC99sMB)wfw^g3+sN`6X
zQ@UIydEmnAO&Y%EdNpk4F3<=Xe$}v9!%rG6Z_D~w!!L}f9N)5H?epjN_GzENa$s9l
z(y`zc?%n0Mt)g{%B_B(xW5FF7c52w8VJ~Biv+B~sdo5<S0Ph|PQfAJ}UG{0Xv(fV#
z_p5Mebz2rMzfd_P4{A81;Wk?}9M*6|!xarzH5}D&j9Ep)dEr{eHJsFNO2Y~ITZ_P-
zd$Q~G$~>*%3^TuLv9$Vwv%0_I{q<-TF|9<I-|6`pE@}8v!v*fzd^fl*3T-3rxtZ#M
zmUv)l{ACS)3Fg25%c7S?tGYjauW7hW?`4@1bAt&=!%c4Y>W0}HTqRq7iMzAd!|K&w
zsaryZ%wZcmcQyR0A;kF7a8JX1q4trW4+MRvp>1qwmVF<@9Q)mk${Y=nXd+%XwWXp#
z71f9aO@pq%)L=1x#+5b%|NT{-AOCez+}Kr~U7KpyOeuoDBj`Oiw;lN`QKmBbJe|Cm
z`{p-NGM{O9u3?Fer8@r8@Pau?=WF?qPe*<ob#>I!@sf@LI?CxNuOmiBK^<{AO6n-2
zBUVRI9mRCKtfR1wB08$|jlchGcD|)<`RG`Xl%s^d@f6qL(NTh$muBY*@Zdtc=2$RZ
zM=2d;b?m#J&Qe-O86DTuly?rfem+8W4_+*<=<dPgzsW5t=y+AfYdUJ`d@nsJ>8Q$a
zbyU{T@=0P99e)-oefNvN(SxZhqkI{SrnWq|$WvWM4IQ@*rq<I^SjexXqc+zyFTIYA
z&xglD#~hvl<<vbq(sh+WTU?x=!>c1rhfhbMjwBs#=xC^;zK+**tbF8K{(D>lj$XFZ
zm7?x%klMxEywpfXvW`?8jYU(6j(cyr7fC2T=X#cJQ#JN_v^|Yon&@~_M>8F7iPfEd
z&D&JRr0TKhqPq8(d)CxkM++T(u1+vBIE_|iSax=6GI?<zBi+@^jxE#6wAK;O@ve@c
zIx=;%(a}>!FP#s`qn(b<I=bk%vASWFj*dD|&evW?2OZghIeL(nO?paTaS>l9ofpkg
z&Sd&-j|*g7%Id14J3S<t)=dYiOc$gqJw)}@%f8+^Ut@^=ItCCd5A@N|k9!1fUmaEa
z8I%w9@P0fb?b(vVfn43o%?9fTa@W2I4B|{aPA3?m<Jq&cE60Kybnn*z;$b?5>-bd1
zXF5jc7^!2Nj`6|*qjZeX@kh<1(K=Q%39z^?71Z%%7w_wje5CK`cwfg%9UtqMpktzr
z4|RORA&PjtPTC~ysgpKY&<_NiBIr~>*)&an={jZzFd{93%q!j8zBS6abW3t_|L&R8
z_KDDWsa%&?I%ezmO2<Na5#340d>vni+0NB5k5#^9v55Do<ZE6#iMVIwSnk>a&Y4bF
z%*Up0^ZN)Ei7tzUT2E$DA0&UR;~P3jwM5FW=*NP~bS&5LJ1xNF(+L?kI)2l!O2=v)
zKk4{c#~K}Lb!?<I9qV+g*YT~64LWAch{=5B9#uOobyL=NI+}d#f`%Wb&-Es4((&W7
zgdYU`UQkxA9?bet$CbsNlzcu`f6?))j_o>jQ27GSihIeMbv|+J#^$-|v0HU);{+5p
z7ZpApB-p8AmySI;GN#7t)=}Ye56hTGabXc<d+C|cgquqfhqO)Fuj7D@)AZ6(-h(<0
z>1a?t`Gk(cI*#Z#rsKGdqukI{?u41>NSFGPSP0l!q-*9$I%-n#DM6>*bWa=3=s2t6
z9LJqm{JfZC(+`W2UobK0{x6;jIxgyXpyQ#AOUxTOt}^rJxGW?oc16cu0xxgoMj6YI
zm7eRgOhxZa9se+Jbo|Xouk79WVex}&J>=igaa+f~40*cxlEgbY?h5&>WxZ^j@p<~1
z57LW`kH0UNv!xQOu6%`;agd|qv5qG?Bpo3gh7MDQtV7YE>CnYAR6$>Pvy9#(gWf{G
zl2k30#nNHx2<wOlnH~e<s~iuKMs<)nx_kG8^XFZOkFU2Ueo7x>J~vR%z;h;lW@ZEV
z4R;^s{8#D)bJy`8%i`jhFBvGcC%%AzrRaDzf0tZ4u&I!NSOdij6gTj)fx-rg7$|C>
zP*RfK&wI1KcVnF-(lR5nq`vMcO2-H3s~?u|82D{mJe%$|N-Aj}-oRfbu9zrgptKmh
znu#(7${N^iV26QM43sm_$3R~L<qcFYkZz!vfmaPwG*H*zcg|4BKxG3p4b&1Esu-wd
zpt^yoqS|M6OO8%j!@z5T!|JoSF0*sCdx)uR00!z9;5%W8w~pU_!S#@5{o-f7D3xHq
zYarP`ih)D}Nd{i$4POKG4fL+)oxR$#pn#7%%U>UF2u?!-jSRGUp2pS;CoNRNOM$+P
zl2Q#cHjrk(XJAd#!=|l+;v?m~O$@wgAp9_{se!4lC%G3JJ7-WECs5{O%3B7S8)$E!
zgMm)RgDniSH1M{-83z0U%rJf4`GHmjS{rC%psiS7z(A$}#>o7l-r*PBvzlDm&Onyo
zh7vjJayqk&I3CP4(9u9o1HGuwKxYG84RjNFx)`{!-orm=v%FN;+ucA9Q7)|au$s$%
zw8`Jwz&i#C_{#Ko?s>Y!v(fU5U+d}n+|$oMe*?1&%r-E<z(51<8<=2Vkb%JlMj9Ap
zAZTESfnf%Q8+g~iP%&<|leI%;7Oz6gIv(8nj(3>t27BRn?+C-aB1HaZ17o;A1LF+H
z58Z^;={4`VCnd%kxb`6H`PBILgq|5MvYLB*>Aap`V3L6k4SZx^vVjjo>vRKCXm$hB
zXuVLJGbHoU(9E4N?WwKCKb=Wu2r+^wZ8B#X_}IXw20o+jU5<0cy8iQt5GcPkyTWDn
zw2idV<+wQpJ~yz=z<L974a_s}je#Ww<{S9Jz*hzq8hG5X#7|2+3+Qs3K%1li{W5=@
zoA~Da&Wj8zHt;pe_nuY<QnQPDS=Jp77CYthFHKx(V3~oH23Co2mm63iK(#|%d*1JS
zq(g>W%)6QnCYWmt>^bh9KU@}+Z+l2Tn)R)L4F-NR@RNb>3~V&;y@4Nu{QnG09~-}k
zo3$saP>yfSaQFO>fYs~=os*t>em3xnfz8|k1HT&BHZ;CexD+Xm_y>N@-fH0C@&M^J
zI>Yh+@wv7s<nJ`F%fJgU#BNT>z-<F}4D1!0BL<Ed*vFh;V84L_1`ZiGOw*l6*<UB=
zAenWNuGL8*T|XqA%$L6KG&!8_n1SQmXl{LB?+KyjWbP7j>VAAX?v#Pk2F?i1WkJsx
zIA`E|p3EfyemC%k02lK37n#t0c0G;dPr)p`(yji*D9Dq!N}p-v9t*DLac&s+Ti~05
z{*%YQC4ls_&|LvE1G<5K4crse`vyXszkvs$`p`hmj?_m2=LpInBu=}O`-~imBA6=U
zTHMni=er@D48gRSKn$1$EXLaPn5*I!&0wok#6Xmu#<;GZ<Os>XKL5YfjS+Voo)~zV
zH`X&A1@iEJ0!(OHJfDgDrkg8XGEvk-F%tz$#F!{(qL9g-S14>E*2KcU+*4ov#wXoc
z*^P_!Ydu9w=)ZU#S4(8IxCxKYQ&!Ltf|fB6CqPL-;{~N~DHEmh@Z5`q`uBIw!&zQ2
zQ7(^P-b4j~U(MrG6rhrc$^ul$<5xAY?yUP8q`HY3CSEg9)5J6r(@oSeQQJf(6P-=K
zL>&|9CYqV3YoeaXcgv%Ji3Ahp8zv{3ND{znVpYRr-dn71V$PwI7T%=E_fmsxGEUz~
ze#1mVA@iiGw_`7FBNI(c?5vrTY=Tvm6ai9AG!`IDP@kYp1f|TI0!%!R%8rAY2HrB!
z+(f2{HYQq_$T0D?iB`0KX25SUv81)6ww{4!S~_u;^4>Guy$=qjwl)zkkyg>S<d-bc
z0lk~FHPOyQwwPX)iS{PsSA88!aH_A2&-~_D*5G9Ua$+m`c+0FKN9^yt7ftJ8qN|Bf
zCPtg+W}>@^!6t$xdYI^Gy64ipOuSUX7ks&NkxOm{?#*33k;3whi9Q1N6|`R-zrTqA
z0uK~)P#*v68_7dVylY~(i4k0EmyDq%F6|Bs6Zp-lKH_PQ5?)-28!5K6+Z@l(9RoOl
zF($^Em~7$$6XQ&bH}SrS2`1j7uhvdxdF|~C(#O7Z(upP}neO9E#AT{^3zqQ_47-*#
z#l%z-zO&iH+fHTiuJNZMvSyh0ke*{=y@`)Z%rx;8{oKUICO$DSm&P~oDSav4JIlmu
z0X`G-Y)Zx)6H7m9`BrMi=O%cKl-Td_vRWr6fmdJWoA`pxmXol+#F_o6Uz+&3tdG_0
z6?|9Lr7SYB*u+ZHy*T!@iEm6S7s3=+LbWEAiE8WResZQhYB_MAmw;u3;OobOt4ypm
zv4)F%()8+{u4@^Fn*#(aU(8MX*2D%A`%L_1;yV)?O>8r<-NY}2z5k<E)bxIDVw0$@
z9g@Zuxi78Y`@zJIbf;VCl=;cT&!Uz17Zbnc;mrbUF|kzu-d?1@4ikTUmcEN?VIY{`
zh2rnFrIPM3vDZY&W7*7jb!#V8NlLn6qzw;x_nSCi;-raFoY=(lgC-7}I3n;NK`$jH
z9W`;x#BmcROe|O#Xx1^XVSKmEtNlk)GolY$hHE8}o~B_<{9)pPiL)lo(d|wA&P;V8
z*h)*wh-o_YK=$0_{&DeM(h`A;i*z;<f10>V3l#R=FjLNt2u#)!UcBbrnV6*Z_suWi
zy=vl`i5C{~*|=`v2Hn-dPz!&XxM`xIg-RCwF>%X8J`4FR+%|E?gknN9ao5DZChnVf
zV1m~)cz0>p+`v8h_Fq|zzxF&d@rcWuoGzKjVc=8<#AXEE%kNXmd5J@u5_j-!I^&v!
z)6-Zr5jEkMFie;x!VJ$DEiDtaiAw7OjVt+Lhh*{@k5ZN0qklxSQlR>Y;A4ioiT_OZ
z2G&#h(%`ITCY}qxpXa3yr55w}dM*lF=+@+gkoh%`M9G&d6tEC)p_GO12PDQ=c-cZ>
zix2Fj6tqytLac>mCxZ7XcU<~z7C{jUMJ*J!;IUB5LS$$ff8u?eQvCeU)EgtyN?3@q
z_*_IvNkNZRNhIbd<%R?ZN?S;*k@$**au&*1@W%Se3fl8Tu*E6gtsQ~#R9nQ$UKK37
zYPsJO;Lqd{*Rnp%@2za1iiL(28d<1np_+v{7V284ZlQ*SS{D4(yyIpR_g7Eu-Xh~Q
z3pFj=DeYw`e<!Q9Xoclwb(Zlbg7qvUSV*!^-*S(DUduhJPZW69d=KB3RbpFey_td6
zEjJUsVWEKqRvEUWeAyA1$reAnhzx4BkZPf^g*PoUwUB0^L(Ps&Xqoa}pTJqIGo;g*
zr{C*FPCAWgp}B<?l<e0ety{`l0(2SI(yjJu@}Ox3X^RrxmKNT&(A`20&dow=3vDd4
zwGgntA3H3W0&pf52YDlXQrlU`ve3;!u(X#K)!Pg3U~W6&4i-qW1?^~|lK|v&w$LRH
zcjZRZPa>1u%h&eSKAY9kLT?N2Sm-4-f_w3>M|vL%gWqW~#KLcJUV^@&+Rs9N0mvC3
zz(7F<k>>G(7MM3Ez>a0xHyLJOxP|Q&cF@x-jI{8Lg(Vh7Sr~0$nuX~W##k6@;e87e
zER3UnHcaMX-?K2@!o$mPO})tzx_X;Gh$DZZg-I5sSeR<zhl%+nTlm1jzJtZbXJznW
zIQN$_q-+{BK6A>MLNhFUNdL4j&%#F*W?J~n!Ym6PTlhryz^C-j&DmLpGh68i7n%hE
z@3!~056q_j(EjhX|C~GWi+iVrcxJYHB5m|ZpKsv{3kxkQ5`7m~_|n2x7VdXQZBWZg
zZ4@Tuv1zdwg7|9-3r+;7nRs<}#!?H*ENrmworUEVR#;dkBv)EkWns02HKKa)%`y|7
zdq~e-h&z#!K(N*V?>6$?Q|m2!ORGML>vhBZ!BS#U{6==M@Uw+qENo(cTlmQWpI7|B
z!jA&{w$j7%jY`$r3!6=|n_QV5!|JaVHZ$X`^K7FGr}VRDEA3OFbljDGZx!?2shM0x
zOZ(r6pen`fw6M#<O$uAsZDEgv(-zKH*h~9cIAY-_UB$wF3kNM6viPONxOWzNMg=nu
zh_&>x+y{COTevvZJrC?sq<xjG*~hpX3nwj{q7gp#u*(S{%yXf)t9x@hQn>xgrO#S8
z$G#RW34!w#{;+UC;NLBjRox%jOY4_eI5>XS313yK)SnhEi`MHF{<3hz!c_~`=zBL^
z_jqSy`vWzSjZy6hSS7f@Lx7N{Kx-r)I1#+X<ZnT?pa}jQdbNdn0^b#MmtE?<g$EWM
zS;(QIa^XYMX5Wr`^|Y@-TlZSlzNszcg&xU5NXYZ3y=Z6}n^X&$1=~Vc@O2A@1ykTR
z7rQ6+q%9VEEG~JU`;$LnA!^}?g{KxA3;kk!kLf>0Q`xk%SK`BGX@hnKo>~0x7FhjH
z(C0l9DUeGkmfyxpHa@a3(?$UsF*cHIq}V8Eqmb=p#TqtZZM<xww2d-03fm}RBhE%i
z8%1ptv*EE(!p7eTWr|bP`|*E&SX@)nc~MAz=(=C&r=@sJm>}LpDWQ;9ed=j`-EA#v
z;}yZIYNMQu@-|+zQPD=-n{l7K>YcREQ^7{+vH&G3+4${wyUI4I*!b&2aPtpY+ty{1
z?y2lLZ8aO!g`P%6+>1J8HpC>oW}~K!S~hCiNU~Ai25i)^QO`z#kgQ9EJG%C1RAymO
zpWY+jwUKCJ;?=m5FO{hOog3Huh5N~FKRK`4c*90R8v`1ZX(0M8UG7e)kqv(&j%9C`
zCNaNdrP^q0;~g7)Y^2%n*=T9wZ5vH&ylJDkjTWMBQya}}yk#R@RIgk}{~|4L;#YTb
z`Q&_C*)>asX!6_m!25sKB>(l5X=S6ejZQW?+X&dmw2@__y^S_D+HyPQ_}Xzt#C=2J
zo83~b)pk9tgN<w(!}vckAwv$!y(1}4kED=xvC-8=4;wvgjG7$N&BhP)le_c$r+#vS
zfNxR#WL~oFWuv#451UxX<Zp`k`F(wDJ`9ZaZA`GypT^-RHip|6Xk(C#pp79m28)i5
zpO<=lwY$JZ_d37JUG5)0)W$DmN+r!p{AqIF^pmFJ*7`@-7-?gyjd7fbjnOv7P_no8
z)q-8vkr#+6=JWAMSAw;XQsZsBN6jleRo@TrF`*If2Piqw#v~gv=#ULl&+iLNwlT%V
zRNBx6t5l+#2u>52)#(B>yOwqNQWmQpie8l2FeT<=8=u(t!^Q<0pW67$##S5KY|OGT
z+r}CjYi-Q2@wtt~Homqo*Ty^>3v7JJg@56hZ{rKGYHG{>B5PHKJM>pJ7IMiqvKHC6
zT)a!PcObcV`?^)!xCoxe{>H`<8!K$Aw6WC2GDhFf_~kU|v$SdLGrO7zJ@U0LvA`8B
z@<-e%8)UBLuH|b#PfH*!crv)o#(En++W5)Fw>CD|*kt2-8{gU3NIkv1|Fdy_N?>en
zcQT}pjP#dFc}GUwP1!Ie{s)G<kzVIy@Mlia#;-Oub7_&d7AJ!bpERBSbD1qRPK7-z
zo|YLK+q(z5?KXDUIB4ULjh!}ji6!s1vD?NT8~YesY;BY@?3<XqqUn3_c*d4$u^Z3h
zN!_HF0dA^4z_l!M=Wy7@5gR8tijAW-jxkss#hu{H|0}fbPTbfPp5rz$PPmcIyLi^M
zxYIVy*f_^cWE_bYIV(nCz*6S-Jp1#?RhOlK=X?AYZCtXEKa7{c_>)^;L$RSUli0Xo
z<6j&1Y+SW*&Bjd||Iq(!G`$~pgK3Qkr+k;|9hz*c-Lc2X;GgGxS!XhD*|=@vj*YuE
zDxb+b6WcyBwmq9TG^^c34Bof#z{VpRIZSa@+(YKon{h0`*!IVsc9v{}Y{*>c)6Vam
z44&N?s5Co+db+Q6H%POg+jwl_i4DVsX(MbSLX*}>wgj~WrR0D60}D?E$&cDReid@K
z=_lP^1dmF2$$V<#nT_W*{-cB4PdIx$X2!JQ1f(o4Y~%~O8UFCeVE;bu<EaJ0hzX-i
z7-hpK7)GHmiihC|BQ}he!zdg^kuZ1(h^5n%7|It7qtV=!#lkqV&~y8ZROf|z9RJ3b
zSR#zLFiHvK<dh5}Uf`Hn>EmVuNv{=kZx)oM{_4q;e<h4^VN?sFdKl%ys1U~TW*L>k
zcr}bl!T5@#VT7KhU3{9hGbM2M-^}>xUV<uNR1Jg7H=d>4ubcjNt>hYEycR~yFlvSQ
z{>Jnp-KyN(Uw}>2_V)d_+F|61u}j@B>V@(7bIg5?gfP5ey!{xh9wRY~B;p8KMNmJC
z*TYy8#^Nv<gz-k0FEz#cVKn5b!)Oym+c1*DND1=|hwhuHQUz@)D65UbNE6s6Xp=nt
zn_TRj;uJ^^qnTj76-EmIn&-*%{=$7bSw<NCJWfji-VS5e6%U(OT89x3%*;HQ%_lwW
z!pI7vcNp)4(VoKf;yQ$p9mb85!Duk4V;H|IO6(Fw*DyK>%xdQ_eyEs2@O)c(w=lYg
z(IX7vCntlaUK-R>;9gX<-^VKXEvI(s6Gq=K#)REBE%ytfe;7l<7#7BWFb0M(IE-Kz
zrB4OfrAw)HgTi2!iWgcpcsY59!0(2Ucq&LH1<H;eG(3!sr-CEH7!}3{P9`aiO%!JN
z;%UdxVGKVNWO-$tZ)_Oj!WbXMC#Qnj?xz*()Md@7;LcO-OTZ?CF)576VN49;+^OKr
zl^q|P3VsmA6k(hNVN4BUS{U>4Y&BhgPr{gy$N5lzkHVNKz{i5tznYKAKh2Z*ER0zK
z&(7n_p%>-hxncZVvR&@(%oofr1U-4u^Q8b^<w-6KgPTRkuLb9Ot~!iw1YQ!x(lD0M
z@m6)Dz$(Uqz$*k@DJYxXpXXa0#v0LOt)TxCbe*8<!}wN!4T4h7cLHn-<ApHSCQ*I$
zv}?K_!}uu-i6O@M(<{O_7{;M6e&r;?*exWt2)Zqd?O|*cm>t*d&bK2E?-F1qz2e`t
zxlN>d!q_YL`@;AwjQwF$X<O?5ZzVVo269pe4u^3hjH_W>3*%@Q$HF+veH49<hjB8@
zqmLV6Cj@P9I@pM>V5t>%nwckz)?yW9K1?bjw>=-m?_peGk`Ln#A$)-;f<AdVcxklz
z$5Or`GJ8x?;W0^<!}v=GT;UvsxJ`RUCrvvYTy{FR_jK?&Lne%S%ot((9mdTtZiR6>
z%%|GiX=K-pJH5z_!EZ}<x<mb^gLlLDHw;6}WPiToB4>ix;kN2a?Y>WO*ZUxhhhaPt
zeRCL|wc~1>aV^i1a<{!4h7v~Q2&zP&hN1Bw6+wXrbSezvaTrfTM>7mNj4=18Mx4cT
z`XDV=LnMr77!HH(-9ghwC)FsK!iBJj%X}KfvoQYSrZb9#67pNuiA@`mRK25*I9~+$
zBjAK1PaEZGYkDRa6G6cU;v*;(L7@m@BPbR@@d#dypm2oGC!=V@H9~A%cL_xwrgS|M
zq%{IBC$s8_phN_55tI}%qt66AUnNmLo9?VnC7pF9SUQ3-5tNUhLIh<acqM{9b>qrK
zKmqEZ@%7f}lq}Gw<*N}?jNrnVV5JCFp9!W7O1gfu<4$3^8xK>fMo=w+HzH^lL3J@)
z%?N4<P(#qy1l`rqS33ek;Ef<Lf;th@ji6ox2@wp5y1x452c3$%Xv883%}M^2NlgCi
z8$p8zcK^_N^}wWpXM^*H_u<4|JL|5x+1X&D2$Cac8bNvlDG{Vb&^UrLG2)7vap@b~
z4DXAeiQv2`=v$GtTpjt(7bW&M8*CQATM_<(aI<Lh2wFst5yAU)<2WD6gde2UJl{Gq
zm~`;lF08f`8pfOrwvHeW!7vBI9b`t(CW1#%<V4Xnf_BvQQMIN~WJS<Ef^89OkDx;Y
z*%5pY!ITI(M$jpO0TB$0pmPLWA{d;K+%Mw3h`wtC-6B}{cQSFK@$F`O?C%~yj|h53
z&`a>y^iBl51zu6dmF$zp?;CNyCPU7F@|pc3_%O`{gQz@$aS@D<AV^b-QCcUazZ-Gi
z!_P8OfT4m8i(q&je}n+D&jv>cFglMvMu4$`@>5gqMNqCw7H8Y;1ONLGT)UpkG9iMA
zd3cfllesS={A`*U!L$gLN3bG-=@HC`U{M5%Ia`{je#^N+?MD&J6pQ*;&{+|DBEYAD
zekQ29@Ik)W0?*0gd@jJGzmvJHc@fNy;0vK}fuLUr`eg*?>bYxQD5|-b^QV=*j=<wf
z{zg!OB@rwYcv&8&M;)w;U{wS(>=wpC1ZyJri6&j%X06b+Nzio>tS1nd18t08gTUYA
zarjZN{|VeZK9vIB=kb3K;736@v7hs7_=^C)MzC3cF?C!!(*j$?dIxN6yCZ^~ObAgF
zi((gpC4%b_+=yUL1bZVm8Nn%`bDxkuEbwnkI076H^q`=e%pqpKXj9ide<vRi@<$^$
zCctq)$v+`LtsBYo+tXZr1b;>#|C4=2c=B0VID+#6|IWN2z#oEAo*(=oz9_1m>&ch%
zZ2LyjwtwZ}D-m23_*x$4&&B?~Be)sCzY*LMKFp7r{UfZ=dwBY-2yW-u>W%<+1#Oq$
z?$rGVLY!U%eTz4H5Wz#SeUAiXYfc1G9zK<jqHy^UJc;0`Fo+gGL;zh-BhN~v09FKc
z9w!_@)ueRVjU_6WP6UthTDj6^5j<xmkN#iW{TD%uz%PVMK7sQK`cj@ufhd%YSyWh1
zaB_V$Hj0-;wQv+g@+9A@2Np^ekHQm0^(bmYQ6h@CC|)7Qm(1YeOX;^=N-i12$^riP
zC`v`aDober$_QFkP|lVSQ7($|QB;WH)u@}ASSkxpQP4_JNL>nCEfhz7l_;v_$y5{I
z(eU)wqL@A+_(s%yRZ&eb&stH`765`K30fzLx&qV_luJm6!kdQ^qv%vKlg#>p^SYo7
z1g$;THFd$S{SBjN6h(5>-Rl%V)1pWfps}Fjuc`}Q9&RGQn}U8h#-AQVvnbw*qInd*
zMzJ}H7ExqGF*1r#QTU^18O57({lO^Sj-pi*U8Cq0bu)HrLEA+U5P+Oa0ow2=AOItU
zOqMKBZ68Gk0kQ?{C}^iBIt#GoY>=f(6r}9ZUF=$aL3>2eQ-EGk^bw%9pxoAXsMAR%
zVCfr0Kf!N3!_Vq~Jeh$}49dfU1;|asL!x*$>SmImf({du)!|W$5SWRS)zMLmiDF?C
zi=r4C#W-R7Sy7CS;=L%QahHW9-;ZLl022hAC@3vIDGH-VIswZEf;lCMsRB&<+@H&z
zA*vq>`e76w2{2Po3Ph&4VxL6uX&&dZsQW=iGG|9IN6hE*D83MYE-_btc~Q(4fX75K
z7YO`iE=SN|{ru!Fj^b<KqTfgHO%zLn|8I!$5nMMqRz|T(fMtR%k79)Yt!iiH#?ER{
zUB_J$fXuaGZUpNE=i6L5zzsc???iQD6#vVU-^3lc?lv(@eh@SHQP7{F_*sBo1ZC^Q
zVg4;qY>na~LyX;{*dE34C{7509Z~F!VxPb}c@z*}x1f6jt=7_gm)CCs9~N}Kpa%qH
z(?J0aMe%f)`$Zm>BT*a`%wvL1%>2K%ft`%voZy@i^t7OqKNH2-Je-_a;Jm=U3;IVM
z|3VbY#7zE-;&K#s1phBVZ{*2b5#Xwz*95&TD5kjI)c8A!o1*%Uptl6QEhxWeNrAfp
z6Z{*+J%R5F`asZ!f(}9^1*9lKQ6xBgN*OYfZ4|{FcpM%9p+)f`ihK@qI&c(D6py1Y
zqp+d~M-gEp4)SgKEF<`3LpzGyXM@znFZV^GkW-S^k8bzRqO7!u{wGm17@7Vois!T{
zH)TY6W;FT7iGF^3^ZVic|Dsrs)gkk9fBl=u`5nCEprC_74xW7BFW?}?L8Y1gtk*JE
zPxq(S%p{I=@UnxV4%*N0&l!_G+MC&8vA?k6CfFhlE}RX9mbWR!>TG|oaa$fSOE`#g
zP|ZPg2PGZEJ9yPWMF*uEly*?o!7C2<0aKoYq@MMaaj?8%W}ED+ciLu^bFi*|Y6S=7
z9TcDIXBo91v0EhYJepj|L1hOGXZfqpVjpEOHkZ8Ka_S)8;X(eYR69JKZv?90;59M%
zIu2?&sO6xx1336TF@4Zb|CTTO{7fp#wBOTqPx9}mn_1UEJqH!W^=3-vE6ufqS&0sk
zxJ-x14fP$o?x2~2w;VKZ@P>ml2R_chK_drid~F*$NOsU`p#SD*e~JU?Y>+tgkw4V|
zY4@+%lys6$%=R}CQ)=oUovU{6?nw8&&|Al}W8qg~-}}m6eO5+u2Q3`5b`Wro;lS_U
z(NzE24wwnoP0u<x&)?F4J;s0czeMs|IrwvQJAzCHZ5*_7kmcaRPyKBjj9r+uvTkOr
zt?9RGWyUm49y8p}Ppt9_lGzSAI_T@5pMy>gIy>m$pr?bm{6MgSt`536;8$)xSsQnE
zrr$lWNl)(XfV5RVe=i5U9ng8+p>HH*@^h=)FLP9S9|s?I&SK%WQ2RTWRjJz`2ZJ39
za4^upnQ`gG{!47vxNYXG?4W}o4u(1?@Kqb`!kmR!?{W#LDV4^z8!*$|k=%D>kKiZ{
zesVC<!6*l#9gK0X$iZT+%fUDYA32!mV7!C(987gE&B6N)CeTU_COeojr}Xl&1tvQ9
zWubr7^0ten`9I*GpZce8r60KQn}1CD$p=k~o(oQQFoPDOp0E6cU(5WrWGcS`Ob1xn
zCTm%!#K#Ukp=BJ*bMUEy&#2kK=MFZWcTZ+!Ov{?(plVw3Y|?W<9t3yw@mG1PEkCBo
z&uGqf@P&f~4!(4-b&mUW;A+GD46Bu6{lC@B{EC(wo}P9txR8eW%)e!v|7!=|h&bBh
zV2OjJ^nVBI9V}x|I9Tam6`i48X5EC$6%K#5CeyF}oKXBkk@VFLMw|<-r5`eQ5430L
za4z`!i1b<Kg5NsW;NUw>*a5$3lQTM<pATjR_@9IQThsaZ;M`9Mb05EFlF8TX2SHbz
z3ljfK>p5^7Ja+J_gUt@kJNVtf7B0uZJ_o-!*hZP@Nf(Ew?{cu6<y^4zz@#0FnhVK0
z9b78jY~zY{Y~Af(kAuB}&)DoXzhTSY()T+!;NUo&&A~wjha4QGPfqb4c5rQF`VmI!
z>n*ucjg~bet+*z=;(_#I)Ud3f{Eh#lgHsMp)3qG*$(O_zt*?2Qy!&DD-KA~LIv_a5
z_0ILPdSPnT`E$WPn3^2?>)@V)i=3E)8#J|${L{e|2Ui8YEa+d{2&M(0Fyq6lYYvQ&
z{_8>^XF`Sl4ffw;L^!zZ;2+V2oCU+u+2xLdcV_UmK-;ZfHoWWb4bsU3_Z>WNpwYGt
z9x|NiMXzSc4svLdb?G&hGz>9g2t44=baJ{bZs=-woT%_9z-;hU8y4~n2WR{GZDzKI
z$tH)ckZC!%zc2m&W9mG>qo}^WKeIEtvkMX+^xg!{H@n#gh9o3FK-f@{(0lJIz4s0R
z(z|pO6;!&SfPjdCib(H8MNm{gK&8&s|Cy8DzR&wS_xV1bd+xbqZrjaf?hFHGeENc(
zy`bk(4tL1D8d;o$GX`Ezkau8{Dw`B~LE#tVGAW-)krx!@WoVLaS_LX5zs)wqX7YQf
zQdHA=nmtE3Y+9aUH>pqe%-Ov%4U-(~{8n;u-;6t_{7&Ih!@6-azez8dRNSNzCKWI#
z&ZHtH6*Z}#$-nhAD`Zk(li01)Bp<&m0zLh&49<)<i8XS{&nvN*NtY+L_+m}+_bZe6
z&9fy<DrHhxlggP?+9WoXG3nm^%pK{ewR-yWw=<_tODb<t1(Pb8l(jth!2Zm}E0Wjd
zW}IJ@yz6G>lYSXhxNTgcNwrL>YEm_mJSHWYRNW-v%NgS1O9oqdr?Io!qy&@Ntx0A(
zTXG*YJGsQ?H7SW(Xi^Q6$_&ZOcQ1wK_K3yFTm?JS<nEFziOZ9@uWpXaOff0dq&nPz
zCO?WcCC#M%=Tg#5;)d0h8hMJ&n&HbZY4-D!OQU`DOv*IrHIo{eG^2KEeUloP<X@M|
ze7|-ID?2wbiIq9aB%ewAR$mT(E={&9%afa$)Xb!`0M!mqwn;fA-8boPlX6Y#<9G%8
zo7CK-7ACbcsg+5?O&VcRYm?fT)ZL^WCbi}6{W+zBNgerGOlofu|Iw5ZSD!yAhPL%~
zGO4pkT}|p{68{P`$(#A0er^|&ew^g%+reM=e9DQ!X{(XFZG^9<Nxe)O#AC74*PAbv
zFT|wRxy|nEz9#kKuHd<G+RxtycwefQo||;q-_@PX(do5w2beU_q%%`|2Uq#3)z1xN
z<_<P#h)F|D>s8v^ykRDNJ=oXywEv^t*2m>YlSXm3nDmB8qfHuP(qxmSm^7A0c1-he
zCXF{~%UB<0oM6)0R)r?=ptn!sA1HP$@SS+lY?4WR54W6@nlja-X?$JW`6dObW%CP^
z`4jW#@<#lXV5Z4GR;T>gE{%D8t3tC)nq$%;lNOsa*Q7U1T42&b?$5!Q^Q12R9pFcA
z_I&OcZ+6^B-?Vcn2Nx83twXn@UYScwT58fVla`yrZ*@P?DtAPD8h^RnzSK8zijO~4
zzfR0vWzt(FePhy5lUAFw#-vRqy~m9=X`M;$m^7ev%6gMFn6&YEin1)(wI;cKZmW$F
zeOq)>Pah|}Ytk?0QaJELecz-HO!~~E&rRCQjWlVyNjta=Ce^;2`jJT=^WqxaoL^JE
zm20V;%HNClDz<TH3EAA+tUFEGWzr`meQFZF0DU(v>iD!<PgD4V<J9A3{CzCnAm1L7
z_?7gB-YYcoakIT9?KA0+Nne_@-=r^0I>6m%QqR-=v8VkRiK*wxbxi&#WzH1e^df0>
zZ=@VH=_`|t@Zg$M<%2@}4Uk{mzT}JaPqK4MCT7n{$bPkBi(@8zYtmhr&)@MrVA4gC
zE}3-Pq#t<Bm~_^p6Wr}4oigb(H??dwe?e;0C*ve<N24<N>+!PF{sqf(X6NL_SI^cf
zc06a&d6O>i!XM$=e%k-ImoI603vadThb>xMHtC8<znXN5uh*n&T&YPv^VB-r@|)BC
z>n7bWX?^Y7jdgN)5{@61`HM+6`SM3wmy<Bf_eGstzNpKm{kKi}&7?m}`jgx6dj^m4
z@4N|IY<kBe`#c|q-&W<=R{2U+%Pzdg_ZLs~bvf?g&AH5ba+#->CO<Igp-II8R6IbB
zO!~(pH9)q2_4=xRO?ttrQr^@0pGl8n{6yfXNzVkHiyk^%AkWj3Xh1Y58ZyZ!kQ5e<
zh(<*fsij@bf?9xd;liSJQKzUQK!yOn<%i361t?#D@{6TVfa1$rPbhs!q6I|bL<<I}
z#u4k)vD#17S>wf6M3i4rSu|k1Gl=aRN{I2*0F?|-sQ{IhXqf<&6?k;oU#3Reasj$O
zI;&!U$_L0_xfok21c<djlaxvUejMNbN~;o}mjl+*Q>z9D0ZI_A7NF_^6rfoLQ|mOg
z-c{rlOA>2<Ji_iNT@wT370%wIu@8qD0jepM>IJoP+ln1oX5~$mhSd^H5#3lWDOKFw
zX`7TDpo{>G4AQ6|)d^7D0BsM@jsVpQP-cK$572-B)elgE0CfydrvSYcpoRfz9-tNh
zY80^EZrL<I%>v{L@OfuyES4ssoV4>u2CE~n32SzME^pLx1C%4F`Oo;-xUPB;)|LTk
z6`*#pT&)G#aKo|+aw><m0eUqthoOCdIs~YHWraCUI|rysfcnJpb`|Impl&fs_W<RV
zZ^!;U1Jo-(y~Te1`Tt73^<hF^vGn6&1N26|c=q(i@=jjebYOr61^7K&v>-r(12iN+
zlL9n3Ktsi6cz{L-3}c6Rg*orYSl-bBqeNdD?;RsBHkLXrK;wlc#4Hm7RB)>Gf>#bx
z#5g@bQw65+<sXdeKRhijbw+?@^4#Fo#`3-?FgrkVVwSl9I&jvJ=RYsT3ng`VfK~`B
z3ee)1|B?VL<=L3&TNbl$_LTuz6`&0P+8Cg>0<>C^)`_kO&{~1I>i=5xhMLLMtrz3i
z;y&iLg|`Ig9f5a6*}h5OJ<<0?KM2s~SZYR(+z*9668$)4-x{E8!g;;4GeEm|l?CYU
z0PPOYCjmMYpwj{RRDAXa=!*dDiRJxF;PU|O71$@5*FOgWbWox{2I!Cgx9}T*FGUXr
z=qrIEqF;;Vwc)5R`yUI?x5D3velL1FmimLh2`*=k_0Av;Cj(TpvNhAr1n6vlt_SEw
zfX)TzJg<=eT@n8a0lFBVO9A?!bX;Dp_{P?x?LVr}RdIMy$yx>1gr82gme@}L`Z++q
z1?cwx{Su&?0lForzlyTMva-gtg4WP*xGl#0r`z5M&>sQ%D?oR}GGl3hKLy%W=#b}m
zPol-jTGj0+<a-dHhrH5*)Feoc0`yOS>_Kt_>0fbs8lYzZ`cL?AfSv^SscZf<>k=kx
zOy}&+1N0(5!2pE<WCkb@;3wl*{lLMqwegn|(%3WKvx1KlBP=DbJt7blRf41jtv$yk
z%Ag78qH_|e7(sFdDKkj*gX9WQz97{NQawq{FIqWBF9oSUkm7<=Fi54vSV)vhD-oo^
zL5dGjksuWnV=>XdvV@@(t#%fdXkFR6O2%@P3exnAI;WNiQdu#U6D`kGd}`S_R1izW
zAXO5`n|oD)^s+>&2I-X`)d*6xAXOI&iF$$rfdo-5$1RW;btDRSWA-G0u~UoG4AQGX
z%81#M1yV$7i7t;iQe&xU0=0vb9<%&#(Q0j-AT>~|C+A;2_`kWwqu)S$8V0G6z-vL;
z7D{EGCCiHVf;6yre3sbTOXrL}<8K<IW<eUjNkPgEQcjS1h(oSuiy*ZWXwKucIbq%z
z|LD<$xHJx}g49})+61YsK)WDy7U0zO0v$v<igx0Dj_sUX#L_iL-2~XbyFgxt_Z03G
zq}~F3MEi>N6YVd`x%@$TUHJc%JSa#*f;2QpgT=n#&HwGy!-6zIEW?8|vv~Z7bL}~M
zmQsp!bdbgbDJev+glKG##s%p@kS+#ke2^vt>AfJmAEb#vniQlrgETK_-Ql*cv~|DP
zWZ@}6ni`~OJi8>y_BRA(h|UbsEP*f1SQ$CY4$_>M=iDHju4&zoJ3mMZ#Q08-R#i<}
z7^KBPy40i*KTK&+kXZSNE=z*6G)T+DZH?%1(G{Xx$V$#D{8r4eI>`64S?BE5ie+8Q
zzCK7BV!Sa(Z^yXTWc}SBZQ=o~khp$tfnP(8)$XJZg0wkEKLqJSkhTQr!ytVYq|bS6
z=1cr2NLR+`JA?Gj8UM#p$X1?j0^3D*i1PEzxD9;HVpouMi)C4pj8FJlnq+($q&))6
z(3AECX<v}O4ARI2S#1v&*dOG3SJE@9rSJnlz6jC*9ua4K4hIDeiTdL+4ojI|i5>~k
z*8<;&ejlWx0>?zT8Q%(g7o_s?xLvj!w+7nkr5}UV89IhjyaOQdWRO0VcNLuu(wQJF
z>XLYGeO%?LDQAOpj(4q2mgjjXjn9Bw3ex2u=^?U*=t_{T2I)?a{@|TzqH;}qZU*VP
zzzxx#WLRwpDL)747rxAd6b@^vC;lp_T=K0T-4^~$^!J$kv+>HGLHa95Ps$`d4bok)
zKjQU1MZXvGxgVszg&)K$4};Wnf;9^Nh~?jy{Xc=nqEAF0L>$k8^gKu}f@B6MB*uVf
zP&Dt*E+33K9B=hNSd5V%MFo_Q)rV@xn(a1G22Eh*v;vM086hecqVgefhR7xM;-dLN
zR4nG7U*M$>6%dFEQ9*%1qJ=|NuX3>*;zLwKjLbzt|C{a1{N5|p5+N!nsik5*r9)Ik
zxU6V_ww7Ck5LFD3H$;EU&Z-om%92DOsuHpe*|EdR0{hQcx58EpQMFiU)djMG4hSTO
zx?`yxfke^U=dB6$=M=q0h-!xDOo+~g=+zJ<hiE~F7KW%+h*Cn-DnzYAlo~4`H$-V6
zsvV+qu`~%;2gfpm>xkA3QN0jl#{3(FsD6wagy^*xHw;mi8rEqPU(AvfqQ)_fpRRMU
zO+(ZyMDFC2Y*B_B0kw2SbDq`jTDMiVkSr}jbZwUvZ4;ulA$mPT147hJlDdnw7wsV0
zQM8k2XHm}BMWAbly2UI!tJ&ToL_NjQOSHFWpO{ZyfqtU>Mg1XKS;fm42Zm@+h-Qaq
zPKX9e(zp<f577|ep&=R;qT#~qJW^nU=pz}IQNp7`G)7>oD0>!JA2%V!GeR^`c#`Pk
zn0-o!rV3AsS*8n|JL8`zFe_$%BSbt^xY(Qf(&vWg%@B1!5+BdxD8sxE%@+&vhNg`c
zg=lezAFV?>LbN1AOGA`Y+SnYTWg%J~qIW{{E|2MgxD_E<$J6OVM*XcxE2W}UA$luB
zt3$L#qH9I-c3`fW-?p<}{5i{p5N(X{+XDPVQ}&5lTX0i|_Eb!HPxO6Jj(!m0pCug(
zTX@is_+g0NXqNF&h*rg0cdCCZ6>Sai_YG_9^ESe|Geo;W^lgZ~3(@WneZuP~M8|m2
zx|2Q)(GkAJiq;;oCq$ox=<^WmmAnT<*}gAC`-Q)VSq=zvkZwE_qAw+SIF|Yq7a~t$
z`C2S39(cY9(fx2b1DDn(633q@3>>}>(W#Ji2A27_IR6l$69PYqo)qO&-d9hDtYgmf
zPICR$&Cc;A6Qa&x>Jp|4A-c$0S(qw>=~9R;hxqY>q=&7`zY?O~Lv$xZSEU?&<I=Sd
zT@TR>iT)I#n<4r&L_de<7qReLneyJ*bSp%+L-bp$cFxG9v2w6pNEf0%xiLI3-0r``
z=kvnWy1pCpzsJ`bE0FCELi8|Xz4YW!h@t}jgy`Q8{THIgAqt3vQ=f$Bx$slbXEFQr
zhmIF9HhFdQD#*@3v4mpwaEKx?9#t_(;U3`k=iW<D1#F`0|H`(9$q}Z4Ve9V#ZkQ3K
zvtv{8hsi13<r2*&n)fEPm&B8u3xp|7_=^0cTqsP1!xS%`Tu$*Y6%j5PvlJ8H*EyAl
zSxSbflyK>orHnw?FqIRy9<(<3ieai0rlw(P7N*K!>z(hOFeQemN|;`jtEd{LXD!{`
zs}!py(dwck3ef~nzIJz*=G?OS${VI6siI++UI|l;Fx8Q0%`m+hrrN^EqTGO#Fx84N
zzY>crsS-^KQ(%^xqa4!1lo9h`d)+YAlW1m`8pQ1N1@cOGEo{AGD~}t6$rtm<3RB}4
zHxVe-D6_y;&(~9uvcr@Urra<!4^yi!wGLB@F#S@={VAW0WXmgB(P+ZsE*eMMgsJ}e
z<W7>kt#CWh_M)8BAxs^GdDGx%-fO(NhN)YariE#Gn7W6lN0?p@(||Db3=@~>kF}~-
zn0kk)k3{>1sejDgFKoRLEU!0uUM$M*Cq45lXJDB2*we;`X+oF=#XJXxX-JrchH02s
zMv4v>9U&TCmYi44DDEY(j0s!+^%yJ4FfL4YS6crsU^nh1?w^U`Hc51{=#(%`4O=f8
z&0DH7!gTzk)s6GQG&4-I!t~omZk|hTh%=Wno9Bk`T+ug0^XB~gFmc9%)eP1}VOq@X
zS1?q;624^KaH7;TO3T8uJWL}Z{OS{05vG-4ii9Z|rd45ji+7|jT@2IeFs%vG&M@r?
zQ`Sr`|GKy~OzXn5K1>_9x-fklrj4<=`k}zvVR|QKc~@YQ=zC#$U*LmS>Slp0VJe@I
zWX<rT^p<P&tzoinN!ZR~{ZT^2{EfGTiFNq$%pGB}b@Uz1Y<>5Pe|MNZ3DdqX?dO4(
z75%vswMRI;SHfpuKE0lBuA8-c><tsYVwK^GFdg8<C?j%^FJXcEbePTv918OhPRqjK
zaG1UlKEiz%rf-CghpFwUCKChhqhUH0rf<V^%h`0;@1F0%^nIArv;MriZ2TciCnU>{
zVLBP6Q@mrG^|KE<OsSB|YH!@MWqSPTf9su<GS7uc+3v0~&(F%!L(!{T3e)8<y$F*T
zrYm8($}=ZS_ri27OxJlqwekKIrW<?}VfvLXv!?fFUQ+@$MbpmuTb}i^{iC;fHtdu!
z?bQ~y!t}<0rnk8z<B~=-@%|pBJ7M}GY`sP;@9k-S3Ul-?0e+L({V@F<rYB)~8m0$f
zddM^3qtwS?dK9LA!t`!#%D=pOEXeqJdWUX{(mCn=^3MP9IDVPVFyQ?T>@Z|Oh3+fU
z4*i$$EX+^*$apTgEttcvA?ttE`YAXNreK)<T;9A*c3LP*;js1QG7gJ!TPhJ!Bh)BD
zz6jYOq(!K7gvvxnk5Hc-UVflZkqFr%<dCQlq5J|)QFd@eD4+20Pc)8lcqu{!#1a>w
zf)Oet94}f}lzrHF%lisL(FhfbQ1J+rh|tut{!$U@(IB&Ags#r-d?UwuZF3s;?dr4s
zhE2R>BUCQJZ#_<UEkflZR3Sn&B2+U%6(dwBLe(NvJ;HB!PN*EAssdF++48bL`ncN6
zbw*iA5%NSRF+zyYfDx7@Awur|&&?~G=iFv+?W7335+MeDn>_2Ql3Jg;=w3o{glb7N
zB|>!sQX`Zm@Y%T9wFS~eGh#-ruC8!BQ7$l33TJx*u`tAstKBd{JJ0&Zw(%5k7tD%K
z;|L9k(BKF~-_TxDQ<_AmX@r_ZC_6%(BGfrTIT6Z@P`e1Vk5KanwTMuIYVOt%TJ?&%
zrD&@N-S6f8u%i3sCJ!6iM5z8jZ(APRUTzNI{_bt}5;{cqlypMJ2>o!@f4YX7xmL@#
zE<7kLn{|s&_Xu^35I@?5L-zbQ)*cb+6`|e{>M8c5s)>22eI&}cc<1aJp?(qSA0dC_
zf4`*+h|uf8$0l3f>jnzveWmBQIwV5Fc~&&a92%ipXZ^!Ot8D7<;c7RZfOv7%KPp0_
zBlKg0PDW@<gvLf_2lrKk#zkm+gf>KIV}vF|$Xh;*|D!Z9LJLkQ>s~S@MQCz_rbMW$
z?&h#iU}}V>MQD12W=M2)EOlmtX2tjo9+Y!_&N4?Vb4A}2ofq?&&$S50X;$HjgcnC>
ziNI3c^JAXN1eWt?E^n3Bl9fC<5qeAPt0S~tV2$WnQFdDwq2EXT&%bdO_p$hl<98F@
zj?g<1dN*Qy_I<>iT-;l7dCn$Y9cMD$6Ma8I9|*8zv%nV74@FB4&EzZ}M`)|$-6qPG
z?L0cYw5k=gT@l(Hp|2zKO@v>Vo-oUw@kxX~1iha|XitPbllgxzLWg+nwefx~(Y>Pk
zBD7!N3sGJs2Y9t^v_2OO%-2{sd>Ns`vDB|3bR@<JE0m)$ACAii^7J?sp>KIWH>Q6l
zI&q@+`v|eJ<%bAmt!+QIyY~dw*xlP}La|d3Ivt^uD5XZ}OoYzzN{>=v)cSGbT!bz}
z=wgJ<bGV!Ec%jC6DMFWdbBmG@r7OJcMCfURo<-<dgsw;EL4+Pg=thLNw{J%1SAm}*
z^s~S(qMVdgKx4hdV-%q~V!R!p-vsiKIQ0*S{vDw|1^yCc``rlLi}8Jdefe5h{tXn?
zN8Izgix&30vn%7#z(ltE8=?PV{*MKo@K#pd!%5F0^nw?D<tl2FOi2pIJOctj(GYJ?
z(qPUK;r&F6O4PbW4xD6*u_mBL$u6MwtdQs9j8c4*ibTm3r431``Jz<)oIk%P!%G4M
zMB}1VP@qsOwQ!Ugob$6=(I^#*Ql%(Wj#BX`m59>t%ASf*>UhpyGD@YS#%B3F94#$e
zCQ4-m%87D2%L`Nx&1-pb2@e;-T!pKP5@%<AIZ9Q<r&=sy-c^u9A({{+w}39)?&Y?9
z;T?6(Un5FMQES(FB})9@T!xBOl$ud`HEPZI<S0$;9mh~hq6~}9`O~6QJ4(4xY96KZ
zC}nUnqV(Q5f1N1RjZ%{+J<alRs28QIC^eR7W|Zm+G!T7Fw4rDtQTF#mDH5ocm$yLm
z#IHOBnVU*#9)CV8C7YWOC5D}2ysUh$)T0t!-W*y)sb!Q}MX7a^+Hem?sZ-SYj?p$s
z?W6SDIe)t-9X;pgU{6ZzAW7Y_Q`n)i@Z3In_)>L_Hp))v7NzdInxb?dN<E^~GfI=9
zG&xGWqSQM|Bce1iN?mSw`tWE*`H8y)_~W~8l=?-ff0Q1aiR0jpTK6!#F3K<<N&{m&
zNMLZ3hD51Waqm#kVWOOoEj2F3Z9nfB6{XQp8pBnO^~}8FxNCU$o6PQ)y<?*^j{7{>
zTk%ethqFE7#bH8}Ch~~Db9j!Y&sfhC9<nIC9i?}oG%ZTgqqH(gtD-a`N;COeder&~
zF)K=sKJqS((h`9;L}y27j=)^eH$~@(vh(~XEr{{LC@m5Wp7V3kOXvMple|l##2Q+m
zur8NcR&bW*g}AzFUuV9>{VdaLZIsqTsm#PA?wJpMcO1(qz`QO>FQ50X7iHKGrHwJ>
zzY*Sz(xxbV$l0Sbt6$PbBfPwazZa$Vqx3<PHcOW_SR213O7~ozkt3~_#&UGTodO?6
z>60jZ$}_*XcWack32YZ-%MO8^qPs+QN2yxJ!W{NQsm^)--YD&h(r3b-i~jtNm+jmB
zZ9Qz5KIgk$`=i#~7dg}0AB@tWDCr993cife;V3<h(vv8C6{RClx)i0$QTkeDG7s)C
zo;Lg}f~fVk^HI^)m$<);(sxn%o>yp;PV>edr5~bnB1%6-=_If8GA$oHsH?6`pYgbE
zmRa{yl(?KLx6-esw)t^gc7Y2mIeIoq=c2T5ciQ<VU5HY<^Zvq5>$3f#Fh@t8XnBRl
zC`xah_dnoe`_OwWN<T&EXC9i;-s_?_MEeH$-7eOp-Q_Ng(x_&hn^78e-v6uUttj1&
zQt4dJZ#-|qDGa|y=}wgXkSM$HUv_^+=`V5SC_AW4J@<LXDD4fmN%}j=r+vLU+b6M+
zKP4aXMB=Wym+%jd6mR~*|B14Z-!0BB7JnM0^=B(S<0bq>=I#F0zeJx$=|z;v&2XEd
z0a1<y1wx`>(THd?N{Rwi0sGh#XadYNQ{sLoAIIQOU?`}npqc`w0+)hP3Q8-;ry#!q
zUVX(ByriIjg2D>o74VH}aSH0KN}jzmnYo~XLSjrpHb=QXizq0n;E$0Ncs34MWZnF8
z`<%iXT5$!eB@~oYkjxK|$nx^PtN2@A83jD6D<~+-ZBtNQ0cYXBU+uWN_}g7Y1(g&O
zpV6_hf}`jCFDs}bQMP<=-p`iBSuLw8Ahtg&)L8-d5)`~5kf6Y=z@wo1kC|Qt&9Ap-
zNMx|3GH^6WLE8-$^9M%_1vM4C%FR<yOF?4=O%$*_ML}Hw=2U?+1+@jzMKfZlbrj@%
z%G6Vksi3~teWDFwKCcNhRM049$;*-@QU9%YuBEAPdj-uD?pEYTw3UL^0=c5iMO!Fn
zDZsgwcC)^#wBajK(2jqj*s621W(DhmlEYV}3wIFDWAEr41v-gd`_<7!L01Kx2K%}x
z7*oSLkh@Dk4<3;|KK>@zQ$a5Uy%q3bA`blo`iS-wWuN{6eo^*$UBQ4@5=XhrK?(*d
zxL@DP%sNcLa0PGKu-b+Z3PvhesbZCiQ3^&YaHud;j8QOF!4U;tD;TF>yn?j~)+v~v
zV4{NA3g#%7q+qgw846}9n4+M@u*|6nrYX37-oI<8uloewbOn5lgYWBmblyLrPVOuP
zSnhj+J8iy?VaYJ-P)}B!+_?(gRIp6Jas~6a_r~}ZC|IaqzJfpN<T@_+OJDFWQm|M-
z18?@lnJxHc*CjlH%Y93EEu`l%a2D1Td?9>Y3RWvvC3!g`CvhPu7yMk^^D$PvYor;>
z>lJKJuwB6p1si$7#HYQl-~$D3D|m-nE|yKAZ@inysqZP^1~W8C%G#`8K}PO}3O-V>
zMFC$08@u04`B=eL1$(FY_Dr%au+s(qHp!J&^-cx56nvrJfP&o$K2h*FJ1h8<uP&$6
z9w~=Ahimzadvc)Fa@HSB?>=6?!+rauG3?oNMb798{(}k*NtVMrK*KV><mIy>hx0DI
z;P*}OvHw>J_)bwiH}nlJULF?(HxwLG@U4RL3N9%4PO|@?;Dmzjh515`3v9pO|4~Nj
zq=HjYd&KKMt>BCp&nn>P@e6*gg=;(~Ms7K`id%9~!DR*91DB*>+#75hn4Wt@!Bqv<
zq@A34=YpU0Cj~z%_)o!O1-~e`so)OpU<!Was~g^Y`^e1Sxb~&KTf8XxW!x6_F7W-%
z6LN(w#EqQf`%}SR5`C!PuE2c-e=E4hduH|Qm&;fu!uaND_T=z@+xDh)uk|AZ|0rO~
zzX~{7>Z0YqNl&;6Zo^z(K*2NKen({{k7)i}itRDm_kuU55zX0XiVv3@R1i`SR&efg
zdXJW^2EUsbkt8l5%A2!l6~#dnu!(9a^qAeQqWFg9?BG=4QsGmPr6Qk-{3@!bcv;0u
zDhjA5qoS;eI28p|lu%JpMIjZ1RTNQCRK?G|d>a-Qi&t^qr)|q=ReZ9q7#FKzQmYoD
z7yE`jx6UE5om*Q<MQIf^FZve`&z#V_)u^bK^K!J!C|@}h6;xE@GMD?xt9W%?F8k~s
zky%Lv7gAX)Tn?X+;Ve~ER8x_rqPB|aDo9153a^TOgM3gibymDbMS?`x;#QG;(LeS=
z>o*7Zs?YZ&sdz<2vWm7%TGf!Gnkr@`rvBEl6+67DB0e#d1AEp|k)k4%tC;U&2QGoL
zg!=f>Rb;4WpyD;jSVu)&74;<JkIQ_Xu|95arV4H?=c+G0+>E<JGWmL22AVZg(TKZr
zx{psx_q^zDtfGmEaVo~EXsV)_3crfixnU}DRCG|$QAMtb<|<mNXrrP955y4Pq>KKR
z0=MS)TB%^=aA%b7)QHTsD%z=NuUgv$yDhuuXM0{!Cl%~a{->0_Dmts^qN1zh<$h*k
zHy*N!eh%GL^bqbT+Do)|EVYjSSI1fUspzlb%j+qZ<LYbt{09{SRg6$EQpF&i4>PS3
zb3+6MtN3-K6&<Q#n2N0z{lit9pJ}b%@3_)dEk>z$bhssV+87>jVPDkC{yYuF%C%T?
zM#V%G3sfxRHmI1)eXHUP6;pW7Rm@NkU7hpS$ZpeAOjoft$y$1Rgz(t86i;6t!%P)<
zFq^9wl=-IUfrZ89sF<sQGqMjm%v15Cnt#5EopXHKUo>OSMJo7ICWoae7OPmIg6-_X
zN$kV+W!%Dx{^gQo1rJk$TyDu*Dpso~XG3`#)~Hyk;vRQ}igha1tGJ-zqKXYFHmW$H
z;%gOet9XZ}jf&4zysKi9iXB{_ihs&?d{4zTo@O^v-j}Z6qlh1<*v!M%*T-Rtz=tY6
zidjAu*s9{`MeE$+b`|xrG|ryyl7E+q-6}p&@u`YRm;7w$?akh~zB#Av;kADwW%JXN
zv`c=D?p3i*#UUPF75k<3)|dPTRD7X=?~3OvoRKXDxsmIeGaQ!eU#S>!$vU{osRPP&
zWd26QQ5C0EoKbO1#kVScP;o-VcPiNDxQZL)JAN;Dr*!aN8qqB;`;RJC%xdAenRb$g
z*vMjDc*%cC#hMBox$v_B=cRMl=bSjR1E-#w-r^FsP{nN(zwr>XY;{G&b*@FlRTbBG
zYAyHGERx275BGiYxY<uCZt~>heT<uT(9Z|`e&Go)!Z)%^_ARm0ZjhUNCVkDS98UdW
zwC{KBfziG{xDOvUyCeE}Vk%qy6#h%aUEW^Kq;uhXRN-$G4^-G}&}?|fRjUZ82y?Sl
z{LAyUUxvwj+r#%C*T{pV;;}@(D4fYjY=5TWxws8Tw~ivdkW@a4#LNx>6~&h6K@|s5
zQ}}@1`<MI?9;Wjtip|of3MUWx`4kSSSopk;ZiC&10yf0iz)^<{h7GIk)?wxjaoWHa
z>#`xA4IIsH!%G5u9+{&v-?Frz4TWqdZbJzh8c+5WwxNg(ug~;-KQc4khR;^z@R6dT
zHn0{G<r6o|C2c5WL)*HkWo=gPv43f4z>Q|D%Gj))WZ=R%se%m^ZRl@<--b#yRJP$&
z8<K6PV#CWec(_TUGL71)Rc&~~^pef`bgsrF-=XR@>ob~<OS2s|B-r2<3p<$eef;5=
zXoJ^=BpYfyPvIjZHEnpsh8kS*NFQh9T*fl}*ixO7YT1xtLjxOLvmw=nG#mJXwH|kl
z&HBjBu%V94`T~$H(Qf0cPxiVt>vNnxh4~YoEtxj(xt02ok^i&F_J%g_*NH6dG#eU;
z-Di{U7&lV5@Fq4iwc(dC9lP4lOn|wKK(-AzF-xwE|9-LDIJ6LGDcZ`0)-iilg<5T6
z+)kjq4IN^Zjsl%TJKNAj!j@*qTwu4DPj`VHqCIWsCD1#T+DD+T4gCbTI?nsL4FhZ#
zZ^Hze^|!-78;062%!WaHr8Zn?(|!FK-w+#EPaQ1DVK{&Jx8X^$f2<87Z5U<47#sGy
z?qi3;ZMu&Z=4E~|x7FwE3$bOK4Xo_Yc)l``XO0aEY*=W+WE-Z~Fx!SXT(#df)rM&{
zOy{-sQ_7_>*)wdI$@9d9u`6@<m=7OjXX7lMiuH2&oEk^jIM;?ZZJ2MvpO2e;l%<ua
zojZ?LYwcV<ytbpCZ((L`|B4+s`yv~1=lYi0u-JwrHY~N_WM(dBStj;8t}@fN!iJSn
z)GD4`Pg5>=viYGIhj?G&3ByZ9LrD$%tNS_|zO&(b?hqR`*s#%tw{4dFYa8CN;a$Fp
zt)8#MvPpE0=zF5?+wg%6n}xTCZWsN~hK~feoR4kT8slv?ID08<+!3?v6xe0MZh=o?
z_D^|<9rdv1XEuCp!(P7FYfbk_DnqBn-u=Q~#QYD~a4^P)1is{9idkB(QWj>W9pTTu
zZJw)rv~O%U%763~u<o2WCO+TVaA14-g>S7IkK6Er4L|dYvf%_TD;qA_aEUwFhEq12
z=bdCqrBS8Y1P^(p?DCxE9c-)Tj16aPIA_C_8=fbhrLv`UV)J}Ic`k4tHmuX^2hU}m
zcs5+O;f4)Yd7kX@=!ZR1yQeZ-vmw0CQ{l8{Q_-v{yHkJS+1TED>WZi8o&q;*_|=Ah
z4M7`j*>Ky2yEfdj;rUNZKRl#8T$1#g4ZquP$A&-nlYN`#FB=?}Jq&;HMsXpHfujuf
zZTQ=Ue{J}W7edd}2YeNoX%B5Ez1K6ZQQ9Mk{$qpdtpWw^Hsz$pyc}#O_i5^L-qU#g
z?@2wLQs|jnDf2Z)=F-R6och8Bllx?R+=zuq+w->x@rCeauA!iYhz(KR&owwTC>m4^
z4h`H7HVvAFR%M#oHB{V|u4~BrAie+jv;yCFcJD~vvd8mvJ8#jHLhR|k?Qv<yuVLy<
zPd*JPw>^WMndh#1UeZuN!`VxI?&M#8ZaQRV`ol~9LK;5$AU$3~VGSIeprusX?J1(6
zDA#-0&q=qAdWvaaEw14eU!88JJf$?0*3ec%I}K$tl+}=-p^k=f8p><%YDm&hfg8!y
zZS|0bN*XF_xEc0k`ReoyG_4}`>Kd3|*09~4Q&mGX0rux8>-`I9(2$_P&Bb2!do;{0
z-kgEQrQRM-qJ}DaJa6wx<@NQ7lvZ0q4K6S~tEPrmHEXUWYpBK7u3_tb4|f_{QpKLe
z*Y%y}-xHo`M?Fiw^Q3Edx3}W%8h`InT3rqGG~{Y%&V8$)K6hYmrJ;rfnl<ZcZ;HR}
z%Us|q_?m`PC5x+Wq`{{lOG9G~*&06I?P(&)aC(x~RJfVwooyaA=4e=Z%Tr`zI&%vR
zcXxPNYj|gC)0V=mMA<lMb9x)Ga}sw&dkq~ljM6Y#Lq`prH1yEWleJN1@@w8E_nLOr
z&_zR64c#<MKWSAo_}6CL`C6_w<LqqdrJ*->j)s03UcT<>qhaNuq(|30%R746fotrq
z@z1|mBQ*Fm{P1(r*F_ly2n^IPNMNw&kXY(a4a0<o$1Jzw+i*D}HLSSgDO@6JjE1oq
zCUfs;7^h)8M}PKA&``B_R_bMcm&<<c!--P$M+ZEUcpe_`T&iDZsto8X4R2_e##epW
zKV8EN4J{j`acg;c&y?lx{*gGo(%Bk%?XWJH!yFBBrMJ_UCh-EFuVI0PZN;#?7#3<+
zq@hRw6fJ<o8kT5iZ=i#Lr5cuLm~Y1dJC<{^c{1qOq+_LqRXn&lvUI$qVYP+_ygGRP
z@Ca%+rr}!+>oly_uv5b>4I4CU)bPHB4|s0y`7bU<;2qI2d;WLkZj*-h#KJzl1x+?<
z*uqz>;bRRSihb4Y|9R#eaoWm@LhRdOx%|1-A*LM?UAMmNZVjJk*stLWv3#mwufQG+
zpK(_RFE63&9qX;oD&_5I-hE=>68H$=0SyN=9M<rahC?y?mjcz#SqJFY=ZHkV*6>Xp
z$kDB%8or!sonGW{xKfAjG<>h&x`rDXj`K{=a9+a&4JS1G$h(bXJSlow^pxoMX+1dm
z8Q~?D{r2(RbHXLoTlHSla7m(9HCz^8=PLp~J}KxdZ5_zsa7`@r_7wa{!_OLi)9|}k
zei6OJdyW8m{>p1)LK}wLV(I_X>gPKe{@_I?mOo>je`)A0XPVgI_3?%7X}B**e``1*
zmtSaDTJJa09`P3d{u-d8l#YKj{HH<JVb}3k!xIfr-nw-><&5r3Q$s+*GY!vq=D(Nm
zg6H0x7R@}Ky)`^L<C{Htvw2WMn6I~{hdHEywN%}l2=795JRGjgYp&{eGP%(Q7t%Ey
zYZv6$bmS}6iY<p{cdj|FxkHDcqmYimI-ELOI=)_zQ&7i^*)8(v$gkri9YssE;^>E$
z{RMQe#_1?8(Ic1r94-HD+B-Ep@ls0>9bD1P%l>99sHl!&I*N<MyzDQb<LZVau953y
zpVB(Y=y+8}vW~Jk%IQed;pLKbRM1gPM|H0Eioc?c$~vm(m@>OXB^`&SHu^K!<Gtd4
zSw~ed{=KvhTjtdCu#%3iHt1Cc7EaIs9o$8^SNyD8om+=TN3-`bxB;w5+^SU1<1|kV
z9j|cD*YvC&TWru3|C}rSnmXPSsHG!CM?D>xI#P9{>1gZrWa#+vioZ5DxR!^b={hpp
zp37JK|6cLe5eGKbm3A^T+>};d2RH0B9VM^&8|b)}W*Or=o`yOa>8Nwn&r#OKI-2O{
zsiT*Urrb{5`X1OxN45ZSOMx66xjLE)+h!MSA+U9DA$Dk`qc!h5i;~*t*7wG?qE#O^
zWp1aVy+oNi2z1n~&(>j!k~m{$?&=10y6EVtqnnQI+#y$**1n&%`nHFm2an({o=M+%
zdh6(;V}_2II{ND9r(>XwK|0b)c>C-4e1P|LVZUgPM%n;@mHoWmZL$s4F+|5C9g}qo
z)iF%R81A<;uWLi{a2+GKv;kiJ-!4Z->KLVCv{={}Jgu-!-IFm^$2iF{UdKd%38IyX
zrM|MV@rfmkE9NgUg-2>i<EDMnrt6q0JWWT<ODP<l_DW^@h<@H#I^NK+NXKFwv$=)I
z-nly7)G<d#=W4|omGGWitk`OM=Sk8+9rJbU@8?}0QP-U|oTOe#aXE`D(Xmv=8eUL3
zmg!i|J+EVxG-(C*%!cH@-`6<sHNGXCvzn{u-Gh7S&h0kSPnKt1r(?Yo`wp-A?G-i%
zZxsD>U{XrD_idhj=~lN~{;~Y^H1B&l-sjn9N2VPg=-8~|xsDe)w(yeFaaqR|9UtlV
zSjTrdzSpr;$2M-fjxTg<*Rey#XWSAUJ9Rh|&n_Li1^U0MeWK%29eX7DK|O_2IUHT0
z{3_hFo-%r_zE{USo+0&=di506{ZaP;9S3>2={Ta}kmUVR$ABpRKhbmGkAe(`d0j76
zPDR~c^M;eDd?P-bdcU4>RL3!ie#`TDiB;o?TbZoKb^M^?q>fWMPU!fNueY96!mLbh
zldFD)hs`oi>o}w1f@I&cL^-SD952SDRw3Nr^Ey^PNa5=88h=s8rC7a3>M2)w0rI}e
zQ`+Xa&Rd+0+d6*J@sp09b^NO1mX2R^+~g~jR&kj{nrr3e#PKD!Q9X0t)sF8~IPdQ|
z?&x@^<B^U(c!BG<tK*(r{-3JvFCN5t%2Ns45BGIEU`w9@T-x8#m;+hyed>BUwoCg*
zvi!#rfcLs8#r~Bj*Y!k4rREx!z}b@&PxSQy&m?18#j~M;Vd@CzsAxweJAyj+U+TIY
zb~{2k!V-<>u-PqpREJ_m@%GAy+r?C|EIwx4`K$@E{p!?04m%7x3X8=ln%|C>1YCCH
z6W}ZrZhKh^*b!$(K|9{?mE~xmSn8b56pq&Km=$kF5iu4OEiPJ2wBUVj34xM!JYDYo
zb$MDTJ4)NZz@dylSv$(bEamN}Al%@I<y_g0Dv~|Pj+X_vMzW)7jH?M$7wum^kyBwu
zf<)ahACDc0G4|TAb4NV8y&{$xqBZS!)sAH0+M=~Y*)7G6RN=IkrPY4xHnVhzX4p|j
zpl&Sn?{?PhaP{qIWQWg=26k}tHPMEmvkTbSl4VC@JI32F!Hy<&G_|9T9eu^2nH}u}
z*e%<R9N}Ei=AtcPsV(hjCEQxHP0Zd_Ah$%(_I7lzqoYJS#Zt#tv2NSzEYU8aT}8Xu
z(Osa2Xiri0>}5x9;S&c_INDG6^;l|uJN&{k608d!AUsfXP|Rnr9YchNiVhPUZpR3L
zk#>v`7-h$3fi=UdBO6t|DLhu9<3#h-Ok^X6i4vV{$0UKtqEkdUb*dfn3c07*F<pRp
zhQLfaX2mRT2s|F_o+G*DioPj2&knw6_OniLtPAZ}WXClJt~;>UjwQSaJ5b+&rFJZ{
z!{&hIz;ZiQu#X+r?O18YDm!-D@rfO8*|FM=5AFEKjx~0ywc~9&-mzny9qaAbV8=!~
z_L-R*FJzwVowd|R+qAv2Gu7KN#ap9)&bxMOvSSMm$5sD(cD&C!za5+H2*1eWEGJ*&
zuySam=Cb9`FWEgtw;ngK{l|7}wSx~V?BGifVBXRwe!Cs#TBLL<S&(&S%)U!t(Ds6#
z+Ofxu<97UD$7gnYZpUFezOrL456a54FYGvAhkJSUK0Ef?G4iVapQ;_JZSeA~=?D2*
zjyt}z<B%PX)_cEtEA80R%!#Sq|DriZxNtj;+3_tetCeZr*m2a33y~a*ZTb7;q%QX}
z7{25E$C>ut_KwUPzPE$*YB=YF9Y5M}#*VXga78EWIAzCaI~JcR$r;&lv_qk(zIZO@
z9IrS#uJ97LoO;0y@6*gnc3fVSc9AD!E${D-a~?g*yet+rHe8){m78?CUd`L}^4H3_
zVaHE)Jh0=T9Y5Rg3-53D68^U1rgY0~JAM=R)s9;N+>@h97X00gJK}klm+JS~fAF|m
z_5W!HH)g?A|JPUjf3fpb|JGf(_w2YYo;^mkulRE|-w$@^MdszJ{zrEFW5;tlUfA(3
zJMZXRRZn|j$A5M_w&Sm-nIEoAD>SzCuBVx7e`?1w-sto+4t<lorX2y^*`DM?dH?5a
z-;Uf=Z<Cd2r@Cf^xxmT(h#fN*XLE-aTA0mIzG}q*)q!u4z5n#j;;z#j;6>_kAfE$v
z2ljg14hI%~p<OTTHh7X3cRL;U?qLE$eg|H1SQ}Rj2MRb4=Rjo#s)(ha1BD%k7cS&L
z-z@jMU_ucGp7nDVbD+2bMIGQXN=s6!u$FM3q<BtAG)g&eJkeUhWgM6jO(-oo@P)Oa
z%Zg7q2g(aL%!CR86&<J~aHNK{A$%S0ep#YP4lq}Bpqc=4bpdh!F-w92ZedT%k|^MH
z;HRBl&cX%0!cG0b!BEqIR~<-ppq2ya4rDlx;y|hcwWYd8-xf^c3n{5>EMeVIKeSU^
zQc-tWkAlY^CDd`Cp7=1=b>QEteg<Drx5scdaNsouPC0Pefrbt=;=UD6p95JA%y(dc
z1C1SM;=n)$2075wfo2Z0cc6m<pWaQ#cA%95t%Y+O$Q5Xw7xii_9B3)bo`-J~YvaK8
zsYz|cl3Lh(?A!Qu4y<vwtCV#w9`5ewKqm)!I?ziTI*ayjpo>6P(dxC6x(Rf5V0;Vf
zh?y0VwB8Q%;Zc^Pv;yv~Q{6*?_S2Ouhkj!0?|@%`Ew4K;AjW^qZ9CY3Ar4G%V4?#<
z9T?`oSV<kum($igl4n#|H^T@A+Bga_jB;Q!H!{U-T=S2Kl~b@_*>S?-dB#Q)$`10h
z8RniOmKhH8+nzEx<~c=RssqymzPX<;-GOl94&1Pr4$N}k4F_gBFfZmmhkKx_b$V{v
z#G-R~Gw+f5rX+FsnPWWpO1Kv~u*iX}4s7H7-+?6#yyL*Ty#G6}%z<?dtarc{=U(o>
zTMn$|(uR3fNC_()sOxdB63*9I>s-dY#(}l$f52O2kN4XF?oJKeiwe3o@ErIig;&tl
zHtvnWZ;RgkGKKBjuuTqZkwV^c;C+D)9M~+-&+oZ0)V(3mYCne$9r(z>f1*}r{#ZKp
zK$4ZT-GSW>eB!_k2X;C@V_I=zc1a1G`pa$l)PX$?eC5Cq2hvKoZT}_kp~BA`_?#DV
zG-0m;`yANM`$ls&N52r`%WxkMV9P;)LtJ&ta@c|Y##+u_OD#toIL2F$aO#DUTqzGU
z&!W`B-fww{9rp61`aW+3iO&zBCq#b~Jt?}kMI7fn<G@)5t~zjdn|JPJ?}+!5bHW@w
z&+9j!U2x!{1DC{jnU~(PzE^}9IItUsMFH&wZvqZ9H>}(Ie&$WUftL+bHE`2`Umd7m
zST{i4a^SWDe>rg1f!`eX-GM(j*WH9WqC0vk%zyBFi1R)xQ^a~k@fz!E)jb{ve%^us
z&A@%(zeU;kfddbPA35+3?-j!A{FHl4_;Jkh2@gkc>$veVu{?L+g#)Go0S6)uM8z27
zM;-9=c3^7j|Gi~?Ur(*sw-px`*A&BQ0|(Ur->}WVKHLD^fZae@11axkUFzX+7${_*
zuz@lA6Ae+P0ha(<@)^i4{8G$Pz(8D#3kp2Ws1a|V|GGpDMFh$nsKs1VxR`<B0wqLC
zik1>(pV9(lM0?q4my=eN7k&AfzgT%sMHvMih)M=33s(^xx-YfT6s?+p>INDa@EITj
zFz~8@WCN4mb|)C{8b~s5V4mA8>M@XW&YdVce6BlCqUkFJY8qhRP(z?gV%qPstfX4p
z2JW}J2^j{O&v$pI9hYh#%|LAfU!*3c8z{5N-Qrp%^QtXw<~ric{&fx16V8lT>I*b5
z@R~qF(TyJzVCO6YjSVz2kZoZ5NpBMa^{@Gx3I{(?Hg9yF+~z)V%56)C%aL54FLCD@
zU>*Nz)8l;qzk!xAds~UNHZbj2yEX>e8vLuBr^7XWI|G-mW{tS!Uv$mi(Lg5yP4l5y
zK6EzF#lRm<{OLqj1KkW<GjQENcLO~PY&NjPKu-g`xF-!vG0@vU9|I50#!WQP*FZm+
zT7!7hxbaO|><y;AZs4W9Uccz|3B}Z-nF9<AG*D|s$M0)+SqB>!VqmC&VFpGS7;WIg
zYyP9x{KE~5Fz_qGH%&Q=G!VV!=M#c_zF>@jaR$a47;9kA=CnoBqUd%11Op6N*ZrL)
z<|JPCU&!@NGOVA?`ALI(=k`?Y0RzhnESDBe=U?d!@ByM324))8=jkki?<B!&zQ7rU
zx?T6rF)-J_*~0F51`-|a6RNvTDfgS)wm<^Id;<#%EEEU!S;AGvc(K5dq3%_c+?>RB
zEc3nhD-7_B`fnLnZD6GVzP-6>T<R(@KH64gje$e=>#aAiL13-uIs?TT_1L~Pd!vE3
zxvT%H`!0|EdC$JW#ydPlp}G%trQJI3Vap~1?-_V{-t)dVu;l}RkNYSe^2HkX%D@o=
z9~;=p{rr8!y#}_igMrTs@Og?I21?9IZ`<7SsezrsyF}TzTi_D|;aTY%-D6;4a_Y@i
z9(MlRu>O?zXGcNr>a=}^^;K}s)Aaqk1f+Wp7%-lu^Tu+JuSG1(U-I&dasMjD*W6Lv
z3xCH~{a@v84CEH~9yP3Qh8&I==-46dTLb(Nw!6Lidmgy&mE#6}FmS@aj|SEbNjh!d
zq=9czGdI84^OOOeX%nyeS6}yY^o%&L&shWKcy$=KAeLw`gN+<68n_hmxoqHy@YR@w
zOSoa+C*BR5IOxRB+$!EcoJeruCQnG-B%N?Lam&DM12!iHR#AR4@VkLW2L3T{hnJ6m
zd%V3H_|w2&2JZ4euTkFK>g69=Hx%>Q2YDMd@pkB&`nQ4SM@l^~@Q~a2vDet(9rFzQ
zPAL9qdR$rWzXtv@@PtR!z+>Km_=bmtg-ZAIma``)1Cp8^)tVjEo^c7h7Rq{G7*L$x
z(@&;MQJ$p%13}@CXjn87ON|QbtdYp$qVi=HG#E7J|L(EZojATCo~Q16y}X7K`JH&l
z38&LqCLCN&<co3g-w6erh;yQt6UCh<=(J`+VJG4R3W+{x;x5<MeeLgrBOj*}abm#7
zDMg*&uZa8qNhsk&Nhhi}@v;-8oG2~+Wt}MF#BZJ4yRQ4WwAbx!=KZbQ<(yzG??eTG
zilS_(Bv9FDty7Lxbt0*#ySlWnnrOMdt!9%GU;S&rp%;bSd_~_XA2_ku2@hv<!ppgw
z80*A1Cth))h7&!U=;=gFCth`;Dfg`t$xhUAS|6RSIguhzN0cq8PNWIfj#<*3$cS;?
zLy+o9w4M{00`+654V<tQviiSa%+kmSUyQSyXdL4vPRtx{JsT=pEFDF2oX8bu?nIlI
zXA6OrqOC+*i}I75+6uH2<)Yd<(ILiL<Y_IPcp8YMOU&NYiEhH(MVDQ(+R)31-cF1V
zOP`qMKqvYN_Y>_e>W`(q&Z8gWv)>jS6yw1HL!1~YFido~==Ptjr_+oS9wj<jl#OEq
z@}Ac;-igIdEOBCj6BC`7BuR5cCyP#TVyY9<glCCz3DcdJ5#yOo{ISS-RuYFd#5h}Y
zjuU2^f^2+KqVq)Oi?VTnz(UbQPUJmHXQ@Qji!Kvg?!*cwRtj^jwF0Z0cq?XEEwILk
zZKbW5z+s&e{0`GR-r&SWad=zw9np71H;KOI#QOsLkT=e<`Lwddi4UFD$KO7-JMl4(
zls)kiC${p(`Wp8RCw6k}e>d6Y#C9h>Sl5!niR=DdlDb=z-Tpq(F=MTpf%AUq#2zW+
zGttjQ_lg$(gV<re6AJ@97haD0!in8WwBtp+hn)D*i8D@|b)x-@xWlr#f8=H8#1SXH
zc7jjFJ;_M<!HI92I4aSMzAb*g?ms5{t>|~6--{mSA^x@i=W@==IN?Og+$4sRPQJON
z3Sadp-c_U%3Rbb6I&z+G{&(UEXLRDc6BnF_&e1N4!wxfz_u)%UTy}z??WH!Xz4|9y
zbE4uF?{z0a*Zu21(QnA^!GEg!#Ge9Ayq(zM7g2_rPW&o-OZ0Zk{+koO3*U)Zx>ij5
z%Za;A_+5D2g?moi=Z_B;3>W_93FE|bCtf)5(1}M*{OiPjP6Te&v%Zb<5il;~gtEp=
zNx1A`3qKs@F<;BwgeOis6*#`k{fzgh)>&*c0+rdvbfVI9?fdC%15WU%s~}&C?CRmz
z-X7t8a6)leTfORnE?^U7izaaNh+>afLKO_B3oaLGyO8ceJ{R)4P|AhUF6)1hl^%Lu
za#?>36>uTWg@P{YFCY#j1qz84b|GG%h-gt!_9^B<ap4j%%iDwXQdO+Kn>dtlp~2IH
zvMw~NS(dM^oD1b$sNh0H7vMsI3zb}`?83_~RCS?>3p3u&?&QhbGCHI14gVoeCf)Ft
z>+7xNLUk9iAGINF@Po87%^F=yYs1mHH~elMjvM|&Da7MK+Z+DC=~S=F`ihk#`icuR
z1ZujFD)6dkvS=+)c2032`Jr{LFfC^JEq|d57wWi>>q2uE>bg+R1)mF9E@ZmUIyII1
z?N%SHzHkH4*F+nNvO^;mrrhu|G<M;$S5k|fiQ}Q+F91zkXzH@Q32<m8knKWF%#!xN
z(L#Fi$8~AFTxjV+D=tthU1L4mMxd<=?P8YpE_4v?DB4N1b1bzBclbT)MNu5O@zASD
z-6g4q3q4~#Z#65>oBOJ@w~uIFQI7U=p}#P{E|#MMTo~xWEf;RPFvx|$E`066H!ciu
zVW<o1UDzN~ZkP*`T$n68Ty%sBBV)61l)z}wF)oZ17#B+&@4^J(i80G>O6C+7rn)fS
zg#|nl8m3HhVJ27CqT|rx+0%L2aP7ylIjo$VGK*VvD3z1maACIiFwYT~>%yA?^F%*t
z?%||`E-Z3kt<?4NVP&zvTP`e#)xOk)Wiejv!V2M)G0Q5R9xE&H$gXzbc)?T-YXr9c
z<Nax$cbyA-?DYSbIuGckk?!qhNq~)I$&w}6vP}=|iJgR+gaimB)X;nHV0vGcvMhb+
zz4u<1-j)svEWLM@-a9P4!*_Lq{@;6!&U1eA%$?C_G&6P-S)#vOW`|==I97z?Ps*k9
z?u(hrJwGoT^TRRuN-*Vqy0E3u3urDcjb6yQh;?x|mM|=3UB<ecl_F0l5i7&7D%`w8
zwj&&?!?7kD8^W=ri+NRWZ8+A`w8~)eIy&|)rRN3w)ja-_A0ju>IQN@ZM>kPb^!y*z
zzgV|~V=Dvs+rqKk;@O)+XfHc?U%Oa$hhq-|`E)^YUpV%M<6<~2h2x)a90<ozKG^zY
zqYqMtmrp!QNjjV>LE7lc^AR>L1Y*7qEnOme;8-}0ha;mqa3UO(r0rxlPBEWmJ;QpI
z^&IPYR*Jk3j#0W<<T5X4|AymAIOuOiIxknlaV;D>T7}UMQD=q5T@S~NaNG>1y9eWL
zzRE=!mp<-!)#$i1ad*OTmzH!JezxIWIPTLrAC4#Cco2?<;dn&dawWKr@7KC~Cmq#H
zUws>_R_NqD4aduHyb4E~%VE#L@jU#;m6;a||AnJDf0n%t$D44Zwc+@HCU3)$r>6fi
z_wBoIP~X0{`uPLHN7hfQwlN`J!ts^)TR1{(<|(7?dpJUvf3lo3429`(x8-d7GbEi2
zbbvd0r2IFjQn(E^8?xJw!v?_yyA4@v$ZCUVgJgr(2A>TMx`2>2ptH(0&;e3XvBAlX
z%Br!FPcH%>b#c<oYOs2!0b(eff($lfv>}rX1%pv<dWYrwt$g1KF*){EzCS8DGc}`m
zRE624=H-vhW<!Jx!}3SVRpRPYjoXqxy7sEDoOCr~P*S7~ej9SxkUn=HH#tH8tOWVX
z#szGMvY8zo&pLE@e6$Vo(ifvGh8oX&?n*GP4f$*!$j?epfT5rbv6d6Z@ajsCYAa+z
z0#}%5Ltz_=FqdR4%9_MljI}sx30694DxS<-inTOr8P>9_^R}AbZBlHgKuH111yr=5
zk`23T*lj~)8>-mQ*@iAQRJEa+4Yh5kV?%Wc$QNCUwFYZV)_>2%kw0`;waawh-m&<)
z6kNVaV>$~q)VJYIzUT%V)`+<w>*uX0)!Ub*QcY}VYC|&{n%mHx!&<NgSzEHUVioJ?
z6yKVepbbM?8`?2U7bD2*z}%6w6Dyf_nud0@p_>g$Y*=bTcN>1OVWbVCZ0KP#KXC@w
zFwllyZRlx3WMWJ&HY2YFiF>ot$A;e+$mz@QJ8M7I{x--QJctWYg~M$a%sj+${;**v
z^DxVyQ!v7Y>&HVH^PAj9+c1WP3g?csVkX-#j(I%m1k0buFo`u}Z|D?ie3sI*->EiC
zvtp*(FvEtKoTPnG?kwinHq2p|Yemur>wFuw?5npezVrec7P7yHb+Hvw_(8g5HY~Sc
zqYayESYgATHmv8|l{T!Rp1c}dLuQ7!Jf91$X1~PMV1ui{wKlAyQ(QgzV^YkRtHDKA
z%@<g2pd;lbb^JSdvkhBq*k;3DHoW{$k+v-iVYb-qHndHuLS=U{?4T2RHAoKCup_bb
z9vl9);VexV8}{0;&xWJC=IpoO9~%zZaI3!g`Er0(m9+kSPtEme{-V%BHqceIOEvw6
zZ8%~B0c~_K;TV@aZo>&$fBN}P+AzGT|FjLKI7v=|>L=$6`)-H-ybTv@C?TMvfQwX*
z4G<71;Ia+>+VG54JR7dqaMgy}G~jKxM(5gw8#dguA-ugtEveY3LZ8Qx7k~5LqJ<?`
zwM`}e@>&5(-lfH#dcZIn->{^5pZeMBe_#V$X6aqtG#}dVh+F%Z^$9EaPZ>V#jD2Cl
ze>P+mkVU{t8(z`)6rc!rZNnQI(g{c};H?esZ1`xyCoWa$K{l%4J&m`@{txVYzLfj3
z4PR^s5%7}$`qchv!#A2otD~pKRxIAs|D9F_kNIg%|41dx*`Pui4hv-sV<kT=?W;?G
zfWC+SEI<-)uAM(zfK5P38owYwWFWRP46NoSKHAefQiouE(Cj=I;uN3?XjjPZ6U=|l
zX#(5=3}&6x#oEU(+v5@7<$|Z|W|C@%IG-+qfIeNz(Uws_CT9946eVxp&Ye|2HUSX=
zo^>okm%N&+4^!Kep;Fle<luU8vXYZaKyK!PSIz(D`UM08#0iKO5G5d5Kpp|XJ4F%>
zrF-S_kDDGFBcRzX^IvZioR<scW6dw1fK_KfhFI3jc_Ru5NDz=DAo)w$6Ws!dg89Gi
zq5=vFC?cR<=fGsc|MYz%J!6f0Tf0Cp0mTK3%<qqT9a%b~pCDO4DQbp*)&fckC?lYb
zfVu+83MePwOeud=0bQH>%L_<-;$jN#x`Kd-%gq~aDhjB?PGweds!%<Drx4Iqjm_!;
zYFN278EUcCW^JbCt|y?rfW`uv&>8P<{`<9ofQAAZ3Ha~Va&vb^ANv?d9Yx%f&TPZL
z<*UIK)K|>S1@qn*GLM(>x1<SmHQ0)^<HS0|Z3HadlWUHExdPhKkPy&bKnDSX1q>0;
zQ9vgFzX|9optFE3JSuw8@d|jHD|dI{$F;|90=mr+*VDxx0X^9KRX|UMzu%e{_h@rA
zck~vptWyZ}b{`tUSA%=sE8V6Beity150khb)iX8FU%&tc;@Ta}b3I7FsdMHC`9r`^
z0sEQ+CJGqFFiOB^hT*IuSVywbRY!^(BVaryiN`XG6OcwTvuK+jpt<0uTMH%$m@Ht5
zfT;pzaagXt{%HbcT4kp*%%D&9(q>ubwcrNLKikU9)-^C7TB8=u6W}{oY+IkI^93vr
zu<=9WLRu?UCDXQuy4vC;0+w1lzqx+}og><{9n<VsDPR?iH#=I}v0A_y0XGHQ60lal
zIsu0S9Hx#HutC5ycl2J`g@8>0wh7oSfF3ioS-@WmfkPpbq-~3Uy}6^evU%W=v_rs7
z0lNk4VP_ZX+0l-8cPs_}O)JUju#$6?=A%N$`It6#pMd=w^AGDm-tPecqrzg3t|>=F
zK8|)A5pYz%Sz3z(920Py&KC!-YAu}*aFUrKX)mNtM>|f_#G!ajlGFE;bY8#(0sjiP
z!oe2>T%u9Rd}y?zMjMI3c8xHP=&FEg0&ZA!US~KsBE-L@%71qgQ)6xmxI=529flou
z1>6(xLBMoZ=zVIo&;L-sBLNSnW9yisi>B>k0Z(YuW$?cf@RY|bjncQYf-yg5eZfj2
z`9Jy;u=o{y3RwJxR>J<~P(PB<fAvk|d#;e`EYmUYQNSkwp9OrO`D=&6j;{i~2?)3U
zm_gs^<Q~fM6DLDhr2`qLsx)?lS}|dEq_sF5LweSq?dDCw6l~+9z-nhDQ?#Sg4D+S}
z*$%~SuK#qrboI<>H*Xbi*`YFMsro%qXINi6mU63X3-Q?DwWEX`CGGIp@lTzQ+;+fj
zUS-N)M@FtN6D!r6*^VrBWaVTwJ0k4JZpV_b5jUzka@a9BXU3d%<f00jM87YTWJ@1Q
z|9PSB{Ped>B)2xsj(9u#w4+#mz^XIKj%Yh#?8w7TK|5j@^4gJ)A-@$_fGTgBK+T{n
z*R>#R1VdGSA+9{Z4&ruU{zQ(adzlK`QN(WE)Kru;iItMY>?qFMsJ~3fWIIaPQPGY{
zcD!_&x6qVkpnqqSv7;=tP4m-Mj-k9ADV9@#f$l1=YzN(0M2)FqM-@BjxT{oUhpygK
zvzwRZs<YN$t;t%;j@k^A+jD~X5|+Al)U%tHj_cdez>bF0pPeFUYi36yiyPa~gt@8Z
z6t|^o&fJ2vrRBGxW3;8C;%)5ae;Yf}AhDyZ9k<2=+Sx%*X``(@LkBw!Z8j?Q2z0ii
ziyb5F7-dISJ36N=*2|9Gc676&JI%6jfnV(CHzd%5Iig44S37#zQBaTX+&{3nf57!?
zppPBD*)hnD!FKeu<99m-*fEewaT{(Fcm6ysK#l2d2L&sG0{Qy{a*hoo3^N-ugw6<^
zK|6-oQFKg$5xoOt_Nx>&+>XM70=xPKa`X#~V5VfFfq~K7__20;?i2X?m%tc1Nbgq-
z8E40MJ0{rCY<OUz9h2->JRop?f;gGZ>F$UXLjqImSk^NzazH@*D}<8M?U+FhUEH%{
zrX92FIAX_9J7(K4$BuP0wCtE`$2>Z&oc>jI%;(Xy(2ji`{{o&$A8h7baEt6{{+oZX
zHCC6{v6Ok4<t(>j1@oVlvywWeka>6RYN{tbW)16F>Z`|*-O8EY0XEpN(T@EzEA7~1
z$7VaW+p)urzj(h}?4VDjWtIIDzbUPMs~y`YEUmwa*H5~W_p*;ZW$H+K?-bo-$8Me`
zw7WgjSDd?-HT7G~Ot1gX#(@KN9JHHv>K>wQ>=d9Y9?$Yeg=a9w_F)c=`W|`Aj^lPb
zwBwN-C+s+B$2ID%&E{=3r|kIGjw{spTh!AWe}?re>p9l*tQYLK$Uvno*>Tz8!g)g{
z`lGJeQU7uIj4nTMpW=R6l&;&+u6E#t9XDwVTnpaf_}i>^tg?6QxW|0oavsp|sAu-@
zV>_PEnnq)Q*1GSJPwjYSN3nM1aShHF^_-cKFBs_Nu~%FJeFJ}I$LKNDUbDWj<1H;I
z0rS>MQp$aA#|N4YX-)n}GwyBVp{)MTc6_1r-;Qr~*hB~-zSBY)pOi+#j>XX-tUrmU
z`A-TZ?L(@Cige)xX+@+H@w13<&Pp$$?X}<)zk~i4T=iP;w`;-oNwLKDZ>AIDlk6fK
zB24Dm$d^RaYOfH;>=P&=oFWKln{+Lxi*SiJqu{Ipw+MswB_mvhM}(KMB)BE`L}U;#
zOvG>z8AW6gQHa_`%Rc#iL!(8+h{z%$tB7o(Ic1_)BUmY!ogs&aoD8{GbF+e#Vj@NO
znFE%S)Y(bC;5IM9<PlNO^7As}6Oms;0TJ{7dHP67eTIB2XT^z#XP~n5+72q7AR<vj
zVG%_{bP~~7L{Sk*B5I4MBchmy;#7}_8X`)FC@CUEL<JGae2jFMogzX?i6||ijEFh>
zpP=$0%38VQ*rdA-D3Y`y`=ew16j_P6G6z&)t;+gW_o!-|Mb9#Q)G>l0YqC#JO9bT}
zN}Hyxh<YMgifARGKIb-LZNS=)i#K9!%u0K2BBCiXHJGYu&fJ2v!oXVO1ex2j(q39K
zv|(*a<0>Mg9V=DUfz6JrsXfp|L{|~Ni|8k!n~3h5)mOwX3{?4VB6=|Y%G#5)mx$if
z=Mf=&I607eDYbd2+O12W{+u<0bpR{XHc-SM=E2+~3Z`a|{|B2x=@-72<0&~p#7Ge~
z$sCQNM2r@3Uc?2;6){%CY7uKhj1w`Q2E2%cB38AoG(p595tErGideich0G};J?;SW
zsKZ_6(>te$m@8sqnmFR=B4)5Z)5@L2Fq?G_>*Ze>R*+*;<L9%p;YiXVs$9eh5r5L&
zzsD{Sv0TLT(uu@N*;ytc$K(V`K5A9T|2lD{h?!#Suis-Qq>CGpHg1(@UhE}UD`K69
zzeVg7v0lUm5!-2YQ}aY@60t?ZRuPAaB(85>X)_HTI^I8$hfGRnxgjN!5_@S$(l%<w
zwV-cEvVVO_(=L^Fir8~4xJ$%t5qBCU#&)l~@kY@sa_pmP!97%A+PF!j68DMNFXE_(
zV<P?$aX`dj?v2j_nxr^lcQ%PWNQ*;>#6u#wJSa-ZBb=myVY}-c7jc5t6A@=coD@Na
zb6Q0IHZiAYPRX&<hQ(bgKh0ldd`R3mn)2&Yx<xps0W}vUH7k{PQN$$?FGTz&;<AW;
zMLZJmm`>cXq$?tBh`1@D#o?r@yt`{6t}_f;R)KbXOT=vvcSYQz^=*BMr%UBK)D=A%
zuiuao*R~S%Nxx!=_eDGq@sOtcjiR)ry&fdpHznZ-jp|~F&!{ISCOoB1P-1B_zQ;c2
z_NNJn+gd#FrHEG|zKHlL;<bo3BHr`f-*S_v@$a~uE#=s=-(p8QVn2xZNL`U8?vsdH
zKPv>EIZ5Y~_!}+$B0_20N(hnglSDtbh|O?4m_{=DYP%duVFYs@6iq9E&Q7=l+C@5M
zN~UM{S;Df#NtCR7Dv5#x33dsh1WAIEXT-)l=4Tvj4hgb^U;D=^?5EBq@>Nc15_AUo
zT1Zd-HY9i?^pwy`f|nM53FRb|mykh1MhUSJ;v{5}kXb?=33;g{60%CjEddg;Nr;e;
zL&7iL{OgN^ocQJ^$Sxs&kq`n(=9G|20s(Cl5GlbgAs``&i>O6H)S^Ekqa{!>MgoPU
zmZfAqE=$P*9G_ppM$RRtAn&E!H-Ef@LK2EdD9SO*ii9LcNR%La_iNmw!j#++^75NM
zNkTD+?g>X}3B@HOfA^Q<`sqQUB~t4z5>oG*KUo4Pl`SJ-#5X^2S%%c3AU{Py1qn^*
z97(7sp^}8UR765$E=WzPDWQslsuHTPQ=Jd(^>mGzU4y!m_d@m10oIbRp-4z=33a%^
zw6CNhA@wCRkkE+B(&3QVkb0XBoPry(--MM+s;9Yx77{v2=)`7A32h|Y{N`^ZA;<-(
zhSr=#l@qt+!=XcKC!xKB4xFT{$I}%mMg7)ULKg{Lxk>G%%yi)0sDHQyD&Ac}YCSy|
ze&u~pGbpRKgg$hD4#YX|n}og+K1lc|;dcrBB+QqvfCjvT0TRYZ7%!QB6Afe?&N_&7
zFzXNre=tzYPzl2<rl$;%GeW{hc1E#|W*x&imQ@}XMqv|}r%RY2VIuP+3H09i$;?w&
zDQqgkG-~R+G?bi4O>Jd9{%#igXRlWyp3OXmb*@A=mYa>goFbAgl(0y`F$u>dES9iD
z!VU>LC0x%Gy;Q<V39D%4a{O}E6|8@<(!cMihSkiQCHy5}4f9&ob*vPyUc%9<u^VXo
zv$M(aZ|{{UcZ-DkgUtqSwft=owp)BNPie~9MF-B#Zp+^z;cw=>tgp&OP#A6dIr)!-
z0}>8OIAp~iVK_{~pq;tXqnwm|>4{HBI4R*CHABKF38y*hri3#LS6I(VI49veGZncc
z;R5qT%c-;`*JX?UWf(R;%~i{}#&BK24ThL$<}kR$e4F(S>)rp!rGN*Vd?n$bghvt{
zbCUe$3{NCHwVY=X7M3#a!+*iff0qA}CJ3Kp%6iS_8wqb2-dQp4C8Q3^PZB=U;^x4t
zsJJf@zDjU8;C7fp<r@e8%>11`1sHx}P2)f)Lzn~U7}ByHA7{3Qw)74h;kJc4VB;)-
zRc5ubiVjE&4%Yi?vQj~X*~v;tl|gerx15Mk=CCmw$m~ECHa!k_tz4f287$7|Kqlrs
z*L_rkwyX~1VkaAGgcX^cAqQ(t2U5>eZcf6AiDd9Q5U`x?DPpw6F%IOhIIjcwEY8nR
zz=47cv$#*<X|<^n+0KFX4is`A!GS~v3Omq{{UQz&b)XzGg(W#q%;M;M=Jl51oGjr$
zNy|@WD8*XZfijj~)`8R)@0NEUh0PhW!zwsXk-3rsHLb|X3{_aGvQ~4TIztUs+HWU*
z<!&tpYO_<vfw~U->HhH)lzI--XTO0JpZfHeMh-M)rwMCQ)@BYgcc2AxE7q2*v==HB
zw74}x8wc82PJ-_2;6O(Q{&rxm1Dzb`?7&I~RyokcfvyfLbzqqT-8g=j1H&EY?!Ygc
z?7`aGfnTlKdOFaHIklJi&_{p+eXZO<48ODXW9`p6fOR12r9jKU3`1C{{eLhFWu-S_
zk6@VKz(fZ|S}~&-MmsQuVJz!7*72-V&o3eACo#{qoXHMMabT(g(=2BO!*m*Z*UeWr
z&E(`PR^hPuM)Elh%ynR%6~EYl`OFI}XQ2a&EPl+7{aNC`OMdtCa`soyDP~ALn?w1b
zH1~WVs~uRw{w@dBGHhj~ovw3WJ@W?Ejh4TOVKeJrtXmvN!*5aFX2ooGV28y!t<k&N
za`rf|eVTb(`yANszyk*!I`EGJ2OPM-F$b;4V+@B_57S!2aMa38eW~<uPM%;r$$E<Q
zv;$`xILmytv-yaja}J#6ByrJ@^cR^gS<Yn#{&nCAO>oP(?Z7qW>#R3eZ(6yx95_)U
zma4kL&RxsD$8g^Pdh`(G()P%KCk{Mi|1qs0tIX;D%!>cuz;oso4*bXP(t$Tt?kfjg
zGpCMiD)^R@?;Lo~klG0!9r)xxj`?Livl$}e3j@V}b>JKGcgsnw>L;1*KQ~t}+Cmw^
zWTa(C$C}>CJ$kpOO@<&NR6&>my9`mrG#S%nNHQEU;$;+)A<Ix?#K_1a<JUiAr;OY(
zAVZZw?--)La5Wja43`YIZ2tY5QAQ>PgRTNGcv&gSCnEzh{dr<EO3W<N-zLZ<qinIn
ztX52RhHNq-7&ffQMFnZgAtR?1Q($i9_w^I!4@#b2BM`}l6D`9pqwBPa0olCgGfKwz
zb@7xeaXlDTExK{q_^{#;d1d62kzYpSvgq8SLg+?_0y56f-TpFK&yFuBBbH%VR1Hef
zy-c~=l}V71D5IB*-ZBcyC?ezH^ejOcMP($(s4b(8jAAm1%P21+MMeo3C1pJN9643+
zH+1-uWzau#O3NrE!)P8uw=U4nRCo69m!U(JK|otM2D<dOvbMj1j9N05b@f-|_)642
zUVmj)f+`GES*x*Dmr=vYttn%5>i~t(j_7|4b!F6((MU#P8TDoJmpGH^1scexqWTX7
z{S6uFU#F+m2bxe<XYe<p9(xx_H}5r-&EM&S7VuNDxr`R<6Srh&C7b{Fpd|HMYZ-00
z1Bu(pXlHSI86B8AT23b!oteAPIg-&$Mt2%ZR_@_SQNPIO!O2S%qH<h}rwV&=vPn(z
z5g&bI{3c_ljA1hR%I3uo>fymMerN6{qd&s{)<H4`GSqHVg(Ai3^e&ayAv8Q((X{=+
zP-tAj@R<dM%NQYJBsFGLSj`1#M#&g0W2}sEGRDZD2SgX&tJBw#^4&`<JrR4NOWE-<
zCdimb=ely4uGfQkzLcIMV~Px|b1<fR>|`0YGMAlsJvddy_Ul11&s-1AkTFxnei{GB
zm?dMjjCC^B%a}t0<5A=i8B1l%l`&7od}_0dMeI`+JzAV}p^RqlW2dKtE@oetQh-bv
zne@huWip<o1eVJ<K00BAj6Z4E(}9!{SIbx<V-@@Kx}VPDtB|gxW;`+9{xh;?@Xht$
z1{oWvkurA3<`2!LbSbn+#%38cAH@A7V=Ik7`V)X)LX7)HFmg`fHW?4vC;wD0igYK9
ztF(c?skLVUyJYO9PAeQomF(epM^kTF^N_uK?)F*dcT2&L12PU$B{Ck$I3(k+jI%P%
zQLB0ckH|PlQzkriN2A!IGLFe;+avP0j1zPs-jyP*Fgx=0v*c4U27ELhYjc{a<(kdc
znjC6M&Ux9qe0N*M1)82R=+%3dWL&02>~Un*kg($PA}|`#G~*UWlSA888P_=XI_nKq
z@^8`^WTqM@`DIk;J9J)3mA}h+PsV*(25$uGB_$`{2tJbWSjGz(|H*hl=RyX(k}}P(
zL~2Qg9O<8NFFog8N^qMuM!uBsO2$|2+t)JQ&`M6r(cP4{GH&Lq@<GN&8Skqmy_3;#
zO2zjysLll_ndhG>Z<oez&R*q{jL$MAKaHm(X`V`P|K^YWCZob6|92i6A&NPoeqv3-
zO36kON~KkhPQkAVdMZe-;AaK-6y#SBuE3@si-N2Q1X}zRXbN=2Tn|MBvI2TXm88I-
z;ESZE-uc<|Mo?kj$*Qta82ww8o-^iBkWn#5g<FB4;N*i8j{>iPVW*{idlU3T2Z2vP
z1_iy2Cz{)hU?z^I>l>LBkW$%fiuwAO913zOh)~QQ2A<CB&rVH!7rCgWKbL~s3i2wL
za3cr>kqQC|q7*b)>+~xqzrPMO{@_vn_mlog$I?afvE)(k>9{|J`BJfRpPm<`m}NJD
zR6_v;1r;<?&|E>Rf;a^!3MwdwS5QbnGJPgKj!aOHsGx*`k_rkdD59X4g5#eG7Ny|o
z@dQZ<I^U{DKwHb#CKOlD_+i4fZv{Ja4Wm~Ab(E?uijFR&ptOQA3h3vqw3Q<+UZX50
zM~#dvPxY6L9#t=~&FPSe3Mwh6p_u<DudJAJ?Le;Jpt6A~3aToorr`Rd7}}~U=+{4%
zfKCl*O$D{6@ztYiQxOIA71ZJ6kbz2F1|?5bdSht==BBI-6_C@2wJ~cG)@tQ7s^@Tl
zm=<)%Lqgjt=%Apbf>sKG)ZzWZXmMzxpz^aoYXv`zl_=SkPM>1_GM$E8>Mz;DyTnlC
z9Tjv^;4c~7nNI7OKo{mcH-cR`NlrHf-I;%3?P2*2ROzLlw}QC}<|*i-;5P-s6^u~O
zmv*G!5M9Zq9^mmq|0o}zpud6#<Fe8ZS})!R4pcBm!N_9KgB1*6I6p2kC21SeKVc}1
zNyWUG`Pq#iy`yTtO8-a&qZG_gFq6m0Xc~SugX3v<-wckS(_JKftb%bg(gsD-c4kY{
z34C5AawU@#Oja<3I>c6g8v9e3DVaKJrqe)eEYf+**eBlCJARge@lPWw?$l>1n4_RY
zcu``~`E)D_wkg=IV4;FV3YIHap}_evda;5fG`R-&`(La@buOi$UNNwY_FgeSTdAAD
zKNa&QT67}TDp;vtm4emOhV@}<cns4p9%xHX`g*IlPQiKw8x(A$<Jwefi-PmTT5eMC
z@KuY=bbfCJGf%Ba+g}P@RSpzz2DUO#Z}+<y+@at@Z+V|$emd+_uuH*iKHfdt4<p8#
zzsoj18WikhKjdX~O72(i56wY(^#kou!3hNi6{H;=c8HdUTuI~~R&ay^j<OzOEwm?;
zvQE-~EFAl;Z0IQ(ice$n&JR1S;BMJaGM|(UJx7gKa8tuA4Hpz#R8UhzEftp(Tvjmn
zGKM<wuYxNIzAE^}U2#>xQw7hMuhCReaD!@4a7)2G1^3y%t>6yB+OFpR-|sRLeC^_Y
zKpn-&M>J61q>Eb-v7x0(S&tPwVL$(B^Ul4gH_aPJp0o2(!3(Q~{}?LdiFn2ETEQEt
zN5MM<AL*zSytg7hC|Jjp9KUJam-1Ob=<{4(DECUP1ND>0$#lO+(arU~)7fz%)`>VL
zesUs>6L6ZVRw!#0R!W9Bk=BWHoJ{Y8-SU5SBHUt|6N1Hq9%K`pkeqNhAv@u6!p&I<
ztLlW)iX45!ytz)}q|SPJX|myjhdGlIUMGA`WaQ-N*$M?`U?xbP$=||n_AqUk*`)nu
zwQ{pL5y70@a&kD4lR1~=<Yw4;GZ^WF--&?b7i5TXBHD6d81gugmm!}M`56k(QNJ}0
zfwsfk;d)tryc30-7{CDuP9!?f&WZL;6n3JB6Xl#J&sjyC^dcv-w`ogqqG915|0^l(
z#K*MFN;px{iDV~ASutgtC~fiGK{}Nx%gF;b9VrZzov7kO1t*@RsZ)`iN~|}zVO5=|
z=0sz5sBCp7YCBQKi5l$GWUXc8YB|hT&ei2)11IV^QQwIYjU8dVHQF+@jG)|xoZE=H
zqK$bLnsBlyYcnUBJLy5$Xz4^-c3QEvVGXjjW;F}ax1BU~2ofLVBJIF_7bm(hbabMV
z71@~~HMpA-y`1RnM0YlSVeMf>{>spkH46`tKFq(dQn&PF_??w@+RurN!La^L^my~*
zYz}l{5a$lIVum>J2eW^cd8URrG2Dp}PK<P-xQY@gMmaIsi4S!8oEYQ8SPp*1I*xUV
z6XTtj;KW2HCONT;O{!|L6VsiT!O1DCQ=OP*<vwofnCZkUCl)xd(23dX&$V*rFnrBn
zHfbL7d?${6HwP7Mi`ZG>#9}M{LbovTmpXBZVYw44IO|U*Ry(oAiIrC5Dux|h9c!If
z$Gp*r^;Yf%2H#h6N>U3qIkDLZ+I8xF|6*_jqP9A*&57+!>~P||mAli4{Z9Pj#4aax
zJF&;|_d4l0U1kk)hdN3%a_qBwd-t#dP8@XNBsH7OLrxr_!*t@X6>~4#{DeB@#Bs}M
z-ythGCulM0Y~D^o+i54xa_$)`W-~v|>l`Or1?3A)Ty)}+6PKO1>BKEs|2gZL6@SHv
zt28USn|(McPt<kxZ?J~8_vh&6zwN{wC+<7(fX%zC_gK>(QWoDdXUan-9y#%p&Bv@y
zSSjmsFSDtic*0T-Jh%K84F5UlK0vd7UODmFi8og6J15>UXXl1dz<W-n8LWSD;xqMt
z3a^SUPJDGjRDYbKZ>hyqe7EWe;jEujq_JW`8TQvVSDUoV=~&aN_*q3bvyIixDzH{e
zUz*}+T_TlKIM^hXRVXT)DpbpHF=#4u2JbENgU_wPP_gLNkG1_ydWVm5bE|-g3@S2m
zG81bAYi8CgtXWyJu`V1DlAR$3Yfjc&th6H<Gm*^sS^ca5)+iOx3^6M5GEjUTh6L{9
zd@53*0GkC_V^zedh*wdFlSL_pAyGwPhSFTN$p3I3{yj?)JH=F_CTU+KRV1q@#r}|d
zp`}%nQIVpWckPx{QBFnB<Ij65I6U58UNvtR>*kK8+rsHCuL>$Es;I<~-`7P`d}Wm`
z+F*FVyo0o=YCg`c8Y@9{6*ZWvwhmCTHt(*xYJRb=!@PSySX~wMnCq)(prWCQMk>0f
z=&GWziY6*rt7yXkO;xmHXvRuM(VU?LD}8*lQZfHd(I6++^E3L|T9NG-u0P4uo}mM4
zM-}9BvSK<j4EViaw^WBdjOc3;uVcTc=%M0Q6+KlXYACFsmx|sh(rfrxLmw5tso0@n
zr;5HRepj)O2AGO|D*CIKL}#r|<N($YDn_ap$UI2JU=>4D{6W2^n%`Q7vVSh0M)AX#
z3C2wfq2H$cO>Zz!F<Qkq72~;i3o43ZRE$;4%Ltu2N%Uu9#z`S`pIC;8=H=fBDkjp<
zs%93X<YX07R7_PdO~p*B=IJVCSgdoY*^@$Mu``<vc2dY3)%+`uwz(?iG0#`AfPvnq
zLK|f*R<T6I8Wn3*ETyC1;(w}G&alF&zg9$uk6W_Ra#pEW%}kY0o7XXKQn8s~y^0MC
z8&zDM7?OGvf3dTLl@2Q7#E`Ab+gP_-KGn8M#cmaMRNPguN5$Xtt()pmu~)@D6-QJY
zRk7cS|A+fCa!1Gk6$e!uV*mOiv)>Lg(~gLbsW`6UjEb{#7AA(AP;pAdX%0B4qRw_R
zhC0n`80#}Gbxy^3?y(CTd4bJ~w8$|0%jOMMDtLt^3-dMB>z1Dye3SQki_P1tbfouG
z+*k2V#d{SGR6JDiOvQ5*k2v6oil+>ZX{b*Mp`N6@be|lOI!Inn!&JQDfS0V4ONU1K
zgb(4hiZ|@P<*}4n>Vp;eMa4&pKdJc4Opo)W;<SBL@l6Ho>${2&4L@n-EJ(*nkVZo&
zbC~6%)zG;}fU;<)kf!#3xCWaBL4#dGHVqLPL=6%b@o8{qkTs|pG!2Sou3ZDHy*oLE
zP6SP1U4vVL!H$cS-jGVW@M!RA$oHrDMq`>mspl?(hKw3AaafkrN+yP6roZ60NLHHo
z43x~SAqNM<Yskp}4UrmhX~@mVIup&k(>(QS2xusvp&<KF8uDn!%N(uIZT3I@8$xH9
zCLlG2wtQ^nXQghBwPI+L##x*?<O*p>upByfMKl!EFhIjVHj`NEX(*<lxP}rMN@}R8
zp_+zd4W%@sXsEz3r8Sh*P)<V`>H%&Bbx8UDsX5iGsG$<Ie@93a3Y%z7>dID3YC!5r
zQe8tW4Yf7Y;M|(5sXa_bSBH~zH7wd5Lj6gV&^W2Dp@D{m8X9TnsG*aF#vIm4Lr_B#
z4NWz3I5pGIoc+|nOtrP(WJ^|RQfr2Gtd!e^p{<qMo}q(gt}3bHnPNI?_(ekx&g!C}
ztA=hg%pON}=P(K|_cAK<R}DQi^yRQ#ti5UR*N{3{eq)CsX>9!8Ecl(xeysgjX{UoU
z4AwAR!wk(_NvI`5H2lH2Lp6-hFp_x~>u^>&u2C9BYnY&6qJ}YSj?*w+!&uGy#zp&0
z9o4DRhdOo=$B;kS8niS!rtmbGs$rT{Ed|WfFiXP$4F@&M)-XrIat$jq%+)YY!$LYu
z8s=NIEzt0P{gyi27He3dVW|dM@#t{KjJ&SVwv1=ZTz~#QHLTRIS;Jo%R%uwRVXcOB
zT;UoG_ZFC+cd4u8dL9y~^>5$+I;f2do2>nA(Xds+KC3<3G;G(fgOld$s1vzU!{1i!
zE)Bai?BV3}<pJ6#U@s@>VjyMh*YFQ@;~;YpppDvpNW)<b=c(};XfPkqa9qO)I`t7D
zM>QPdvZ-Bt((2gLnt5^ilxBWh(jceypV4qu!#T}db*b9ad417p)m4T|G`cM3Ukz87
zQ$Ojb$Td!0*Kk8KzZ=kGr>_A7w>8w$QD4U$4R@*cG~A~-tD~%r2O1t~2-oS=D%h$<
zJ<{+-!&?oHX^3igs^MDU=>O<kmrH)8;W;N?ONlS2Kh>!9*`w0DOL(c_m4??e01721
zXo<z+#GzW^<kRKW=8Sr$;TsLSEKyhA1m0`-py8v2PjujK0-rT}p;jd&d!HnfOiCt)
zwy&I3^Ip<-4Iw&y(ve0-S{><hyw4vWsv}H?Yivk=cVbCL)Tlzq(OIL?>u6m#`e)s2
zXZoiJImJYR%H@&;9d;cVb!5^Z>R5}Y9$x~g4oQbYhpa=<(Jx*k-|vX(P&C<9rLa@S
z#-hm$UnXceblQ;)w+<@hV>MVkI?Bx}@OSa@<a^ms=Ot!fAcwLt>&T+hFMSZJBdd;V
zI{Z2UIwExQsB`MbrK7^FV0Im^UMA+yK?h6FVo3SiI_U5tsfF(XV5M#;JG?ZNiqa9S
zBfpOGWs_s5{Wgs{Kd+8FI^B>H)u~W2bu~Hpbo#^JgaSG~zOS5NSW?+$<>R<*MRXL^
z5wD|=j>ZjB5_BZ$D6FH{-6U#uXvGv#+Mb<AOd^x2)sd{DxDID>azfU`5_A-g1NUNL
zW0I3Eu1_kZqqL5$F|qUJm(TVoa3@P5Z7l{SW$flGr=zltD!MuR%Iiq6dZvPoiaMyH
zDp}6iCka(KteTF_Goq)bBrZivbsam)C)S{D(NRmsUw2}sk4&n=P@BRk#1Co^RhMHj
zl`2n>4Rkcr(Mm^9M<Y5kuCS$!Ce#(5&CB@B*=fq!jNXTJCLNiywP1%H;W~J_8Ae-c
z9lz6%(9uRmTOIcciDVY2mE2B8dmSBgbkxy_8n5G5YKe|6I=bti9_Xrry69<ZCuuik
zg4Pw2f6?(@m1OEMbzo9Y9lf{@f1@#(HL<sjJ~SD#ByKKR-uAgD1yDEk)v@7a67@52
ze;ot3g^Ovw84?HT7{kdmzQjQ~2J0B2;}0D}b&Q}R)iF%RaN5Pw00q!y6pZOvFos~1
zj?r{F_QySa9jKj{Ob*5LELeW5j&VB1>zJU^<Hayr$3z{IbWGPl1^;|(hE3Knh09LW
zF--^6N%c@}!@Y5TWs91jW2TP1j}x2lj>xAXbErdf%-1oO>zVjC@j{i_R2$_k&~efh
zwNS?*+SlVmYRuUO0V+bByhO)RIyxQgwm50@(oA2jV+Aiq4~HieRJ2t(R?~UOfwnoY
zhUPLIdqxb+h;=&F)9LV_rw1Eo^3r5CklDZ{9h-F&aigdkf9cqwBfSehyRcQqHXToO
zJkzmV#||AAX{yrQ`?`6L#{(hm9K$Zw-8%NrJUXBFHyx&qeQX{(l5||he&$XW#D8=g
z&~Z@5A$E?iQdNg_{2Z>N-s5pJwIB`A(uw3y4JUMvo@70x<21t=R`Sm>(9I;&p7S~`
z&=M`g(N;N43>Ck`wO!WnuZ}CUq*!}=Kno!Ab=Dg?ZtA$je8-Bp%}};bmAjU6kH)#h
zF%Qj~QXcAf#Li>Of1+bSW0A6+>v+Lts0;t;c&X#Nju4mGb+6d}sN=PcH_UJ8lr5_;
zt!X97eaFsw9UmCTIq1&#iTN|@7t8;u<D13#dSvY!8uyb6c}kf5_GCbE8khO&kKDt<
z!dytp`%UMfZ!%^-m#$wawUOa2?04ZG&b7H9xL|id<Ycr9F)m2V4i{t>6c?N>WN{%Y
zo2m;Q2C7hVLATiDf}7c}oV!&cD8|c4p9>jW$jIDpjQJp@OfF=$BBw5k$i|$THNx_<
zyXb9zX4mDkoLnyK&F3HomJ{is8$8UI0Be-x_f*s8aUrh@zq!!Yg?ujLccGjM<y|Pi
zF^Q}Nt@v1mIM#U9LM|jQq~7dQ*o7i46lEuwHHnpWUCf2z7MEZs>B9WhEh&q(QZAHc
zvkYrlE0P{amBQS>g@!IvaM81KQHh=Etd&`-uu?r$8LH6<%4&9O4Hs&%Q;W5(3$+>Q
zuu{POF=6#AuJ1zYrsgeMv^8>}jSFpEXzW507n=TvG5e6VW}Ix!+JgG6N7huo6+1zy
zhhZO|M9OOCLT4Acu-Trqg9{xQI<Zm=Edr!nIoZ>NZVcUB_{D`DR?M#qVL2jFhYiK|
za-p}C+sB1cRdSR0y9@nXnB~H3&g$>NC@W@w3j<vk#L2-f3}YC=`UmS!R;ncRQDDPe
z7-2ahU1--prL55|jG_5r`BPjNXYqI!Cb%$>lap8{yFf#iO3}8lu?bUMn8sPttx_`>
zX1cKKMhXSYabYey>sjZyu*8L>G+M0q1uiVKcoD;5*4+&&QSoKWD_NJju!7-FR>~c_
zEMgV&YSuNDzm{Pg>#RnJ8(i4v!X_6syRe(hzgV}kQaxK3wz6(xO`WqlT-a&F?4r5J
zHv#Tp=Wo`%toy8(uZ<%PxNy(~ha0jRhg>-9!dDl*xp2gVqb}TW;jRnET=WjUxHB%C
z<$}juIKgm|^%U!AR%+YBF=4dUo#W(X*7K|vT)1e(T%tKXH!}tQ>%tWmu3G+07p_@+
zo#6&+wFwEg7;am+J#J;X=fZtjOI>)u<^vZVF*LgseCR^=ca;bpv-5=YDJ$*t8AIwA
z`_F~9oP25JzH;F;^BdOL$>yl0?VStnUHHJ}N7m0Sd}0u1n#b~mnSjpYcNaq3klf~+
z{fRZb8$Y{|#toYsOJ*pWVXSH0NXJ0_`!QkR%u5|+7;QFA3aoZFL<Sm2skxmBR#DiY
zWI;EaZm4c(Zs=^rxZ!eRc}SekjSOzMtw_TSkHubwDJhPO47uFM?M5ayGP{w5oouXG
zS!pjc(jqL*?nVxabGosKpWp{}0+t`i;CCZ+h*AwvZbVzTWahCruN(O+&hJJ6i)k3g
zGRLvTyUh>KLRM~q8;Q(?Er(`$k{iX`IOE1yH;TJa!i_m@%%wI+=}WrN(2YiJB)d_{
zjnZ!OOFn%;s_RA>W=fWIqa1U2))Y4?xKYu{t>#80iz~ZP#p0@N%qZTHidT1|h8s26
zugzMEHO&|ETY4QUo_-@t`>p3Tzn;~1qX7f)oHTKb-R6}sdSv5lH=4N7)Qx6tG<Rc=
z8-uxc3)VJt$ZoW9BWTsx+Wq6n)wCmeI&oV!+PTr*jSg<~bfcFW9o^{UMh}kf>_!(i
zy1CKa{r~@_=<3GE#-Z;rr~idxQXh0owWU5f`&Tw!oJrT)jXul+-1yCnzSOszq{!cC
zNBn^6*jGRPD(UaWkgVw`i?)Goycy^u7-Gdwa^nv-hH`QkwZx6lZVb0_M=*?JrRQdk
zvHbB2W8D~MIl<vFRXc%`6IsO?j>!yD+?eX7r|X#Knzk8kOt+YxYdw>B7VDUA=HFIj
zS|(EG&vRqG8^_%^;l=_t7P`$_RrkBii%yH&*vLS<m|+R)QmTYz9P<h{)-e3ZN|7rW
zR<W*TjXIZmt(CiuVZ9q0EQfM8xv`nP|Fg5h^0zQ-bz>XDcGi?hKmM<`(~Vtj>}GQh
z>s~khW=MZmq-M~zk78oX_<!6u;Ko5({M|T4gTWu4CVxt3yV4^Xmpe>n?LhPqH;%f|
zf2+UJ&W5D6k7e7Qi$2M<tzTK{v>W;35>L6YC_HXP(dhmwb-J_YoEzue`0B<tH!iqw
z(T)3VJmBuV#JcZf$YnSFb(;@7xx#wQjjIfWx<+TK8BP9mH*T<Vla-uX47c65!*JK~
z?=h4dCq8uJk=wj~Y{-d($8^TM(bSmtZai`0sT<GS<~@6_SqYvqykPy$jh76stX#T}
zm$o-<yk+MdD>+o~1I?z<As^ZKWW|4W<BP?V``wKY0}cbSf%|mxr-3j7qy7k_G0^cc
zLRkqWsp-=iNM|6ufnL?4hgXV~7=AVoZv40}+QuLlurr9P6uj67B|SeRrDt5cV!&xY
zB^_b5P&1$#a2xpdy!n$um%+bE<KH<Rxt2tZ!H$R3Yrw}qeg=k&2L0OC{M}y`16ip~
z4^$7b8Hg~j*}z{0vKz=@ptgZJ267t6WuSzCk_K`cfPp?UN)<Nf9UuNk1JMML0l$G=
ziT<|}V*>_+=aEqch&$E|#BgpN*1QJtG2~}0WS{^86)$KYmN||!-tvPBLK7@bG(brT
zE@Gf4)qf_C#5(F$u;;B{F$2X75YU#kXi~C)QU-e0kFI9mryEj8o0!rD${6$njPy6=
z#*{Ts&OmtsOKt`KD3Vyk00pENsK7v6k)aZ6W!4?Hf>jMraJ~aFX>|iN4AeBtJHYAI
z?${HFq_qr?p1u{VYoMNiW(JxYsBa+POPW2-{Ge}OprHZ!Z)PI{O$;<;Zfv0XSpVSb
z{#--+_fPtJ=8dO-76w`x=xm^if#FM|TN!9=pbhl^osPOHIgS6U)7C&c16$8m>SW+q
z>FVtbbfB{^JYi%~)$q{z9SxkC7(KsFE!)bP-M=+m^RaYS1KkYFHZaFPcLTrBa5XTR
zb|m_H(CDT2IkNuB+LN^xYj4&*tiKuP%Rup2&KmS%gnkD48yH|<pydxWFv#M;3`1D|
zFi^VjkJV`y9T%G;3|w;fM=~$yVy;*81ivu`=!X*14D;6<V-1WmFy6ofj-h~w)V=)d
z!AX`gnPCd+R2rz!<}E$b4Xo!Ue#|g1le1=7@$`6{xd!GLSjo<O0}Bi+Vy3+}N%Su?
zaK5~sw$vIH(@?R>E@fC|U^&AI)<3OW;ZkmTHsdM-tJzt@x|VgF6|<gUgMp0<n=GFm
zZn=d{sDYDo?hI@*u$=~&ffI(g(Csj=*T6mlJLxPNpsVq_4eX&gJ0NyrPwDqF@ykob
z{7tPY8Ix&uV84NXC`=0+G4Nnu=>ycCJRT0R(!ih*a@gXBw}MA$5x5<s_+tj9#K#k4
z+?#x1Xi{>%=nUT~ou+|m;FE#R2F@Bd$BWy28aZ_Rp;7dC0~ZWjr1NOthJl*~F4MYX
z;F^K2qY|#rf<q&-XOpCHRc=kJH+5NDy$Ok=jh4k-H;_0ok-*F{aL2%1>gS!#+jQb8
zR*yXyd(XhjSyj#qP1$#`G!@CTGvR@Ohcqe-JT~ykz-t3f3_PVXUN-tangtBc4ZNUf
zvLNY}o>HM~jV&`2Vq4|tmz>)?kVyQ7`gwflTLbTCHBO)Yu9ouNzy}WaXdtR?;+>=_
z5tYr`#phLwmKG#^p<^*1dLVi5&A|J7Nk4nc!}s3~e&=L}2Q|7U|Kvd$2I5eLFxIpl
zq+>{L<yIJH{y`DWmDpGXRy!;GwO;0SkWRY81K9)j@#;tGM=KtrK1_Sq>86?ox(9_k
zNbtZ#0Ul)ZAd?4%2Oa849uJDG$wGI(U%VRY^_ZWDhv+Q;9%S%<fVSX`xXd18@gS!M
zxjb~8P|eC=Ip|ZsgIO_g5msb&2C-pFr!S_$*jl+gfCsztCXSj}D$;|B#p0tph-UD6
z5MUs)&Fx@}2YEb*^&rlJydLE9pnwPTR59A7RSn7S!S^Cg;ssSh3VQH#TnIfwY{l3>
zya%=W2Yh`3q$gj9r$+@6Jt*v<J9g08gCZUjrFMEy--9GNMh_}^5PCjP+=CJxl<}af
z2PHj7_Mnu<TxPQ@@Za!D`y<Ldtge=3=U}n8LJR!mJSgu$d~8$&Hd8$C%#|sA%<bUB
zndb6a(Szyp{j-mjT{^c)We=)&KtNkn4?XVH<m#+7EWf4)wJfg9P{)J142c!Yf(<-q
z=s^n)w$^lBl@c3yaG*i;<{mUAM~!O2>dPI~)C1CHtWR@9y)=?2tfdEUmPFIm$^-gZ
zMbO5BwjOlxpsNQo0mrp1M9W<}58Bh&_n0erM;a>B+ccI&gwU4yAg@$?^*pYd2h)Z`
zclY3SX7i_ZzwoJl`8K+ThaQ`jo}6CXEx&ot*Mr{7eOPlxDAYN>d(e-@n-7_M=<mS*
zD(*#nF9v!r$b<hpc<I4l4~BTK%!B0~{Nce+Zq;-ThA~WHrFIVYV1x%FIXTLMah5-t
zVGQe78svw5+*vxFoe8WHJ(%0fT<0fqatiBIRx+nC(6P^8n8`ZJgV`R;v0~;k%=KWN
z<xm$bU|wiBix?Jru*7nfGWd_ATj9Z<9vtQ5N)J}iykK7K!N9}mHdyg%JXmY-I)?SE
z{d0tF^k5V7X4Yl5gMWFjg?TIMHdboYc7`3SJ6U(J(viMj7q*A_Zx8m;2w^^G<?d(r
zhsK-bqz;2aoIK2Wgt~<v^>)mI;~t#w;G_pPJh;iZr#!gi!DSClTQ!{V;H<^x7|wfe
zf#IU%Qx8zv{^jH~53X4LRR-GKb;}{XMLW&pf8fDG8k3fP$Ai1f_gL?<(nE3S>8y{K
zpRzt?rF}hNC{a%$e#ZQq^#yC1ueo1&@Y(~r7orz$Xo3srzi<}CzxCi9^LtuPx|sKo
ze&FOs4?bBjpBZRGQSMjz6rdH1oe(d=yhuy>IPxdfG_0Yd>CEpl={QLc?nQcwe`ZMS
zb{n(c{qZbf$qR=UCA=u<h3tjmMNThrag5Uo!wV0y>V?Ljvr_#o2Dca0+&}Kx^?H%X
zi_Bj5I4gq{nUR6^p2cz^7_zcv^TK?20X_VglQ~#Z51h>0UgYy4zZdW#lC%7*F{}aB
zC@-QJC_aN~-shZ$lX+QbzXccyd6D2nLFQOiii~53XFd5QT_QtKE4Q#0MJ!HjQj!<N
z*eP!L`Im+yGuNFHNb#Z+b7?OQ98=3Mmt`%-N_#BN(1#DXf)^FNsN_XuHmg}NRT!$W
zrtY^oa}6(QS~0b}<`>S|UevLix?Wt$W1fo!UNrP#vKLdlXyip>FZy}W--{+3+1ZOO
zUNp5zHS?mm7cFQ!c+tv>_Ld)HXzN95hBlT@{n?IrXR9CA2ReAs(aP<_p!71&LRT+(
zdeMuWZeDcvqCsu{FP!XQ#sBKXGyZnno1MO1(DPTRY#%Rv^O`?ECVn->oCUvok)ySr
z-URpWV{w2N!#RGSRnH(V1~U(_oIe<bvJSIG`v@;avNMWxEbC}5#xSH#ka5i8Stqbg
zWSzvCdOD_hG0ltfUR>~Ex)(FN*x<!RFJ^MgLN6A1G0ThDbY^*pn8W^DRyvk>Ud*?6
z0ZqW%W=}4rMvDFwUV4?7IlGszF7;v=!*W)7xFuy#8&-O;h8;?-@?y2cbO>vi*ICYb
zhUfc3HZkmF-OT!z7h4#%vhMU^8w1t3oneO;*H@drLfYlUZgx=9Y``8b{^lh8B!rUt
zyx7mlf4n%(K;{94gI*kBILvy)%00?(jCB|PA$G!xlbk%odYYB$Ipf7y=5v-qYw1NA
z>RzPrA=HP<Ui|CDM=w5kam9<PUcBJQYpm%T`XA6ycyWW1H@&!H)pLvCHY;`MU50yB
z?tL$I-8S!Xe`q<6ym-v~#B!d}=w*IxIrTa@{_~p8`+e!fD>h%VzGHpE`j(Z>)O&^x
zth6I?K6~+nmfSM_BE|e)z4*Q~nVtwrf8tT@HxB#mMTieS`OFcLz`yk~)rYj~7(S%)
zA-xYyPX6peID^7!^Fd^wvVsqGi&KZR#7Tz_vJXA@bBEd!m=mC2)r!;@bRS#{Zp)wi
zMe#6uS$#fKYvIqpoLYHiAF}vRCj;tcKvo~J`LM}{%|1l<klly+J~ZIq96m((5bZ-w
zPSX08%ZJ>|)C~9#$?Rthu%3=G2V{&7d3-46LwO(avY+TfVIMxeNte%u{5}+5vmk4{
z53vk!tW-SecDh0qCosHt>L|icinXW@NesnUOZrfpfy$PkHs3ZszmhE{^^i+*vJ7ik
zADXW+7ctsWe5l1{1s^K<P{}G)&4<bsSMi~$#hHeii$irz)?ls4N{dEqE2fSQbuF&v
zL&KA~s7ON}8u>8NN6#}yV;`FM(8Y(YJ~Z{AnGfxJbo-^hxm7C2(1NukYb)Q6?`f^A
zm^KV;S!rz0F53Ih!OHE((8-6+3`4S;=cOBSUmt$=p}P;iaI%LFy%~OGrLdk1y?i+T
z{Kt3iK0f@$CXQyJfPVDl--n^>3}78XUDP@-ka-a6VAlWZ=RY`E|4UjbK8$%d>j)Y}
zEzGu!_F;?<^L&`^!&o22`EdPkx*0x<=dj5>c)A28FjMeEA0}BmH8OO{|FI9#ES~N|
zuYwU2JkxS!Q6DnTu{v`uCuxK%U|8tGBHxd1VvE^X;lrOkEMZ>CN);|+SpGkwXr&Kp
z*<5ACtY%oldi7kob(X)LVS^7F8GaMZr#=7W!xoxl8IUUjw)(Kmhfh9y_F=mZJA63n
z!#NJ#$-0kqmk+xcs6Bgp_?wxA!CtHV`+fL_%>zChVK~Toi1jdQtsFmQ!BHQM`EcCo
z7OL}v4<|W>_>>Q)Ej~jHTN6ztZRcsV_u*e3E?Bu287^7%T=C&5JFk4WMkmyVr#?Jm
z=Y|ire7NnyO-`l`;5$Ct_2H2ZkN?NK=fi!j@By2&--lNH#Hj_Ja8~L}f6n}$4==2E
zK~4YCVv2dq{Kkj3KD_hcy$>JQNi9yATIWX}=wq68@r84L&VcX?`0B$qAHG|)g=YAF
zOnnD*6xH{Cl+ei%5}LR>GdsIGGoRVrgqmOiL?A4X1QLRwN(Tp}iXc@GMUXDNO0P=q
zMUkq~1?ffUy%(j*|1&S&{hj|g@7(iw_ucpAzWeUI@6BX0V`u&dLEm!XZ2`!!hY~oi
zp!vf5`~omn6mp`l6Q!MaM{tTb5gV3?a>C(6Q757Wr<fBl&i}>!|3((GE-qS22wF1S
zx0LgL-diTjQJr|#38$#KoRGtODLkekIBr36=j#c}cm?nYN}Cu?z=^t|Y6@CeP`{u7
zCxTAIIT0_a6$LFTXn7~f36Oh(RzYCSW!^MTC4m#doJ0Yb?cZ}EN#JBBQU$2uL{%rM
z30z&!6hYq?l%wT7D5&8?O~J`M#gSjjiICvb7PO9_xl5epM7k3hPWyWwl>ESndIHxM
zl*~*gvIK4*XttmY1$8I-mz4D9IQhWS-$;zvSWu3`!J9eJoJ~%gapFTKS~xM@i3v`$
zB>z?3kDRcaXcd-k?L-?VR?Se@x2+TH1i!tY9R$r?7q)hE@|TwA=ETQ>|B0ZT1nn$n
z7eRAp*WHOvo%q6ufll-ge2&o9iO-zq=|nHV=^f^OF2K(A_U_gv>_z>;t^J)C@c#)6
z5_pIc-#GDQSZ1&jUxo44;Sq)k&X_QNm;m28F+9u};lxORM};|~ov81%Z#u>b&Uaz{
zIOqTNqlr#Ta$<=SOP!eP#1tp^F)7NkOclcOotWmtbb)6$F<XF{f`0GBtgvpBXPnLv
z{JDb86ErsuEO6TIZdxcflw2ghVnJ!%ADsNu7k+Z$XTe$K#0CMD3%bIIm0VDPbFV_W
z+KDwRH_f$zzb@RmUVwQE@@y1flc1Z!ty`Sf8pgaa-^MdrJ^vq0d@v&77bmuhrX5b~
z7htCoyPVi9@ZNB*Jp%kH=x>7lE-1IxeF9K7&gg&>2SxRepoaw|Ki8KibHs_Gg88Qt
z#{@X;#7QSk349`KRa!5%u*+E|&M}p_5beTw+S7@Dop?s0y-8#1-%ea`;-V9moVf19
z4KdDTM#`QTwq6lcf~x{t6O<$06yTl{_XW7+#BBj6c}IY|g669Iz=_AA`Y<f>D4h2w
z|HO%>g8z@8x$92;b5V7;@WP3gPP}5;cOtI~`CN9k|BrcIfHz{O2!Y9e%k{r3ohQtR
zbp0<I=NFv9f))_8pbLcrpq~GC-6Db$749{8q5V>eVlKqEP~U}27h+u~?n2OoI3ZcW
z1-A>T3ng7BB{-!8Ra|(-g)#!aE2v9Qr;A^Uv+ockQI!SV*58h`TyxPmJuVo6?-i6y
zJ{Pp`)by}!<iiCsEaMj-KrxRUiSaJ%yJS^%;XT1GD`+_v$_r3IP>NL)pppv-VNRj|
z#l-fS<U&nRO?IJ*099RhUw~?Ya)cBCax;H*7ix%V?vr7*rn*qeg^*y@cA<_7bp_^R
z(*&RlZ%IhgUC0P?>bbB;9H+BfXy8I;!Os@7i3?2yXej6hg66o;NC1x0*!91s2gJ=>
z@V5516-~`u_)vfrF0>S&m9S(R7g~q=R{yD4?kco%p}k;saG|3M9}E1Epq8Lx|FX06
zCjxhJ*`MfQm4)5AxX{&wZZ33pVUQ3Y|5F$GxX{;y9xi+)m_1$iJlxt#fIfR8dWSi!
z58HpJ?I)@O1nnPo0P?>OoPk`Fa(Q@m{nCZOg7cLNLj?F*P)g2uX`lALaUmCc>%wp@
zhl<)NMz}DNUg|~}H%7TInr4yFO2!x$#=6i`LN5v5xiF3~=)y}E#=9`Vg<oCx&4r0B
zOmbnR3#(k1?7|cm7IMj4nCikb7iRNvE=+e}26c8}mJ2goDBun(K9e!6cH)&wR{3)o
zbKHT*!ggu<b&I(!tdRoqU0A^AcwB9s%l<Q26C+UJO2&o3ALK2Y_3D!K^C!W@F8n}$
zu&gC6J{ZYt=Ljry;nJc|XF2er3(FV_QGqQNvX;BB!i6)Pg84gJ8%qU@4-;2&d>6L5
z@Dt<rvbENQbuO%TVd(TcRAU2&jSg&bVY5(Uqo5Z&0eydH^{mhq7ap%lW$9Hk@Usis
zT-f2lP8WW0!GGD>?m|0XfPkN5qUIxF1M^A*cDb<Ig*~LD1D70ul|=#_3pJU#GY{wZ
zy9;|=_{)XA8J;fecj34TCtNt-!a)}fab7~1^2;i3j8Ckp1^#g12yNoRF=3Nsm8^)j
z8yt0^-tQT=R)lChXG|cU8psn9IO)PE7tS#k{S-RQ>C-Zfz*#Zc_L#uFMWN7TtIE>k
zsOZ3Xx=sJo>z6YqS-V)^f(zGOxZ%P@c5&gdn9&s%uDbY2%)s{8z%>`zT(<gLwo<;%
zzIV*F_DvUVx$w}1M=soU;f@P;UAQMYj=yZJxNLnmHT3VUjQcJ;5NcDyDMk1<@xX{s
z{9_lMxbTk)|GMy$?sVC@aM}8zi2WDRrM=Ui(GI&p&s}ht0bZz6cH+fu!S8+vy>j6-
zbC-k)68>}HjSKHea7u`f@Ro$45~3x%Eg_GD0ul;Jh?H<)YUssfE1zWhQeFw&E@m_+
z6UZ-t%kgG%{KMm+l2@!k5(-NwA|dXI)$Z4vE&QJ}2@cVv?iDMzHG@8OuXv!Cgcu1W
zC6tm7E1|e#e}1=wgf>?!PO9$}>*T@Eu}^{*4n~!haP?+J)1rYg65f&cKdJ$BWo6Et
z4mR$J<&q#t&?M-R?dP%tj|8s-MZ(f6mRo`<Vb2vS-@nz^dj5*#lko2q%W>7pC>7xN
zUl$7)5+ET+g(a902Cm8oh@t#~^0U!xw`G+2G|288FkV7gF*2*q9f5KJm!&u64ONs-
ziRwvcA|XLSqJ&flwIo!Q@ScQf5>g~2QL!i0sz|6RA(_@L6JXJ<TGg*wj~-WJJWeYd
zAb4LwbqO^jw7hCnbObK_l~_~4_cdB^t%*~XC5I%`me4>#wuCwo>Po05p*}BEBQZ@v
zx`Ye~{eB4b-jlQIX|;Y=Ew0zJt5&9jED2-pWqd!sE;-(_YQ<84GP6PrC0vUNd>|o5
z0GfryY1bsB5#69z;7Q-qPBDR|5}HY9FQJ2k<`O>SN=axdp@jsxQ!5FrC9Jt>wUoeF
z?7wPpA~&vD1+H1I(i0Eu&Y;`3lQ4c>DDsz_SzUu4Nw6e*D)C=;105xNETOZ6E)qVG
z(1{C_k+|bZ{VyE0Z+oxV%6Fx+N$4)2T*u(ZODRwG=1g6cylO}2!);c%AJTh>aXu5Y
z+BJ*b__>7M67ER2E1{2sz7jS_*hrg5=r3WigeejRNccj+a0w&0=n@7=_*%jcF4MB)
zFC}~>z+geiX>!f#am^wn{)T4BUwxQ_p`vy4HLFpHz_(ni<4GC)l85~o8Yy9vgmIj&
zgweF>($HAR4*W4kGR8<?Hlq)JCxID^vB2n_AYr0pC%s8D^8QeFHL&<}{dcFv(}rt&
zfvFOvNtiETfrRN2W=IH>49u1=lP)3Q#?hQvlAV_pU$dJ1lQnEt4&%b!3na{C%vO(}
z_2$tD^}tkD;MB~}LJ5l)uo6~DSS(?QgdZg=qZ>>3f&QPKIHrH<_G?zr>WNGs10zGr
zMPM@9tf1*C**Td$bMl(Cn#(O=orLug{wWdI`F_M-p9R;_D`tfVsCk2n$-~M7PMivD
zlCW9AVF`ao*dk%8gq;$0N%)DbB4N82Kdqj%O~NnqC08c<_WCV!OIUS>gujahy63OH
zb5e+N+%4fZW)eoUguK@+a(<=S(e{q8mrItf!2t;eCG3;<JP(H^+XifVuKmaRGWP!-
zBJ&Whp4epTi!AbwNH{9toP_fXa|y>JoRV;ww#}b;TrAcJF3Q1-k+X`HK3w-CO}#QC
zuL>#GEiTjGpmj#VSqTK$ie3GSdP=y$OvNP0j++}@l5m+p;SF4raQ~CwJ96OI9|qoP
zKyY+w{G{JQ*SK~PZb~4&PM>@yKyXXs(%VdotCGFlf?T_ea}txTTlY8!bCirY84n~p
zWb%{|E8~%b$IQ|)^2m51;i-hzOy*n>29bo95?;~l&cHJX&n3KI#t3F{1sh$rZkGzs
zK5brSZ5`!o_E~V#vSd<v;~PfVbt^(fu?HEGeh7`YZoMUg34tI|MqU{OWfYR_7|$o$
zNuz*_{4$RAPGzDX9lAG)Iv18vM215~Q5l~ct{Wv|K=VXik(jGFr+u+#nGc8p#W>&}
z8SJ<#JyBnoTwF#88JY}TMoAf^WXLiU8Kq?u*p*R6#=A0B)wAA_ar<d~$FUrz43})L
zz9eJ8-ke=ctO;%7=3Te4|H|<0%5ck2Wn?U??3J<Qx^;YY#^Dnok8J-E?Ck0KKG9K8
z0(a_L1}Avk3dlSy1nyn8Aj6d5mvPk_ICLZ94?W<X7SE==B?Iv?%F4)=(NIP?8Rcc9
z$ar5y1sN4(B+K}9PfjHn2{J0ncuz(RZ=mU>(5*6oL>W8FHo3YZl<$UhB;87q!E?x`
zTA=m9`c;T!OnOqEc6i-ASWSkc+q+41c9)SRBV9&K8L2WtGHTNxH|%^^OSZS*iOWJ|
z3I})ytRrLl$)x@Lv+DA?H!PNwQ$ratcy_8MqrPl!(AhUEu6U-5EEx@Cd+T9!@!$mh
zF7625dzzm3fefbBW->b6uySO6q&~BejK*S>o5*O&)#MUSjVGVrLe0eHLh?gFTL{XI
zE2oEA%V<MuD5#>Kt&Db@yNq2j+RNx5W4eqPGCq=F$rvo-D;XVSd@SQL89nJO97jeM
z8C_*C=X93AO={fS#1T7khTO0Uln8W_(Ot%;GMb-FrW$mr9x}eaVU>_<OgCGxIMho<
zKN<aHd@iH6j6O2R>??!kQUazg`ZMtW8DGd4B)W5>>9jLrpp5vPA%Z}$0QdbbMH5fg
zU&|OGW2}ttWPBrID9`g$duC{ujBjZ)ndS=&rxUhlJc3~u6JUCA{gBKmPkN(djF$0r
z&6JpTGB@0?UVRp1M~3z|8RO}VGNy1vVgeI{`%RKDkxP8tVyRy`aP)??5do_D=!V5(
z^HdqrWUQ-^$o$XhOsXg2M;Xgx%#tyi%k2&<;WR0>J7WR0DjAr|@cBD&o{ahQrNRN?
z`cvbdcL^?(u}H>Z#_3I~`NGh-BN^Ox@>h$eTP|g2i0DXm2fR0}<+L6nNXAxrk&Ne)
zL#t)15nz>!35)8LDiT;rtz>MJu}Q{yDs#Wh1{ptTfs~t8vzu10n-=lpllB?Fxi4|E
z&}0mmOd~Yu>E!J~Rkm)E@iMYG%P;iL(g6at?vTMF1i@|@dt^i?cuT>rGJcbBUB(Rt
zf{eW~PRKYZW1o!uGX9WpM8*M{RK_70hdG6tR;isK<_fy~wdEO?=ZB7z38cRhXj3w9
zl;JPqIKy^+=ubxUvgG|YEylb4cgB^Q7Via4$v7?JikQ(E8E0i&kojtEFlx@pICD7P
zdC~WvWqq|a^cP)vZRl@7xq;5p18;6xmt<U)anBtn-#s|7WPpBqm0?B4*qXsb8U3^x
zPqQ~=++seL@tFBd*#9oO$hadM<I#x>sx+vPb)WfP_#0i03O{6=DtWljjPxfmp2~PZ
z8_M`c#=kP25x>qVbIYnZxZZ>RvQig>mLHRzGglnSX?wmt!~d0x*E0T-?Ze4CT8GqQ
zA!d~~yzc6ZLd642?{6!}qd-z1D~ME(S3xlaF$(f2$giM?f+z(%pcYWTc@<KS^0Gxi
z1%2lxmM9wNsRs%x;FJj*3W_R7J)RV;fK|p+z46flOWRRKW~_qZ3d$&WSK%j_0wolb
zR`8C3k_t*Gpm6)SiM;Dvu`Q$GEsGJFdCTH?#!2~n)va5WOTl!ntt~O{9TWv_1px&?
z1*!rj4W9x{fk&~oA+O++ZyQg3{s{@X0w^#Q7`$|mz(UPt4!mXg6?8hQ(i)k2Lp&|V
zDTr5)sGzcfvI@#^)(R@I{86{O!u86mK%JL_SS99a&bVbI6mGzzl)!m)i>Gdr)~CLw
zaIvuFmc<a}c5f^Q?Y(7HRZvaACIy>mJq7PmNot~?x`G-Cnk)EFK~0)YL8gK%1+^4>
zyem{kL0tht3Ti7jb*BF1TUL)yVwz&_ESEE^3<1&=`}fj3ZPrszU%|epz}$YR1J|W|
zup+sEf@}qi6*N)MP{9WZUf!~D6zo_~mj}hq_U9Bika2NtVk5=Q8@IlTZ>nHq?Whq4
z>o()k3~zEm4wSrYWu6GNP|%XLQqWmJD+R3;v{%r9hB}|ohWVc(FHPnR0;}z~BDXD8
zBi{{tB={XU1qGIZ&~1y%4O>G+mt|BaoA`->aYX~XtD<XlQP7n>qo5bXq(C<XpDO6V
zYu&cG(+FEayutiT0e4J>cDIkL*$u4zx2?|=^rjyw=%--Fs&vkXIku02nQKD?Oh=#2
zFZ%tJjQ$EH+_qNUwgxH~q+lwYO~IE61}pfEIw<%`!PlI)f>9ht!8Z!NRWMuuPf$Y@
zT)k}#;}rH~?7MBf=p1BKtrkynz1|xdp@5Y4+M^Y|g9T$1@Kpa_BYW?z|69(-yF+x6
z&p!(qb3?-qWsIj9j3An8PH2*X$uy>HuiA{I$y2zvv4I!6a@uSU<$qLdx`G)Beo*iu
z=c3?y1@jdwP%w)&dGhXT1#=YpU@-QFNYc3qemj~mkBhRf{_b5luWs9?_k{`;DOjrT
z!{~wTJ90|hu@);>qM+OARGv=jt;%4a6*v)M>oNt)6|7URUcm|lD;2D!_bOPW;L*F8
z)ap__t58F$*Wh{#y0r>Uzih#aGKdz$1U4wxss}bQ>Wc*`-m!>3n-s%bx`liNS7<r~
zKPmWG!9fLw=%osNQLszFZUqhQSlj8Vo<Qe2)(!<b6<oiO!9&sgDfZrt#jW>njtcgQ
z!GC2WmJ0mFs4Nm_H`x~0r(nMVo=-LuY(U|w-Gc|X7TtpchdFBnXB3=Oz_acV1%E0y
zrr@Zk4!vVJBpg?8LX3QhUR@^e>w5JhGln~`_O}eu)1rxY#B=Ug=M<dhg%n&AI{c;J
zZ|1{j`>6|Ek>|#r?^u@<`=G^rhsQIfyUPj|E|+5$hpur_3jR~@M!^jQHx>M=;F*G3
zOePBM-mxAjxI>`e0rk0K-4n}tpCM2((Cy<Oufj)FS4##M5f4T7BY3RfiGpEj;HiRt
z6cqj?ba+*W2X%tx$8zXz&l%$k=NI+q1}{Whf9gnoB{;7I<&MVI2shqxqo5mw-27e-
z^0<-Djr?wVM~-yc*`UH*>-dpSUN<7|TF$%nQFBy@0JoR|ZaYHDZw?i9qlg<t-H3K$
z?xSi^ZaCcbAt!yAElE)Cu2sy97&nT$QNqnc6yS00jG7tiwv#YHNjFNlF$aOtZt$UH
ztEfQr_zoTKS|<+F<;M3em2soH8=t!QMi)qKbamTqFT0_*;dR63hFfr)zqbya$Y7J|
zhDUIi3Ru<L(A@~Q5p=_FqW}V?8-6z+@RKFU<Z!-pCsMk1oSUylK)M?lZj^PSoEz`E
zQQeL5Zd7oivK#NY@!_SEiX5|KAVJ_tZhU#y;$frr&pC;1+$?4vJd)f<=9KqjRC9wT
z5blyy+^8yg@e$K3A)g`yW<AMDC=;mRMon7P%^xz^&vm(Fq`Fbd4c=DR2Y@nxH`_C6
zyHUrDx<ZDllja7q(1H0O=gbg$)pMi18_lVb8<|`MxBWSr#w#Nm2y4(3*)&3b`zb*~
z!TCVY96=j}Wg2r8!nmm$&BFNR>#8l>Xep{6yU|L3_JXz+w2h!`1#Ktjn05|ci=~4b
z9|?{nXh%2ZO;A|a^oihf611}$e2-QaLD@9;_lRzSf1yoW?l?W%*y_elZhR*AJq2Y`
zFE>7SqqiG<-017Z8n=D4BflS?%)2q#js9*7puY+Eq2XQw-53<cU%D|^;IG{H+KnM$
z{x@#?>CMc&db0}|!@~S;-54(L2th}N`MkFs<HlGweiWSV1pVHPS#FGTW4x$N5Oj(g
z69t$gC@(QtfYdp5KA-BwG&iOT&J00k3hJ+6FW<4*kzD=RZp;@!N<4?r7sm7G1N~FU
zT;RsJaS;pMSR|SjyRk%oqU-apm1oqYqWS~pE(OS8StdBk-B{taZ@0-=>BcI-TrDU$
z2UX8nVc~Uxt`~HJpp58^Zfp{Gv!GmvEp7}wCK3G1m38B>8&BN$#f|N5oOkmt)Y#$1
zPB#v_@rN5d3T5tc<2O#$jaTENce}C2jl_2Yzq;)Q5!5;JaA?zAYcHc<cg6uX_VIFe
zt^I;B9vOEm2i-X2wl@M|iXCy|D1&-S=uak)PF82wN9dz>tz&K+cjJT`C*3&h#u+yr
z6mGz#Q*QgobEg^!KXwV8<*I!aynEL==eD1XaML6v=WjPIxOvXUnL3FV-MHk&b>^`n
zp>01`zU;;ok=%&+SnMj@G9!`Y8dK{%i{J)Rgd4ZqxJ@I(2JVQJ<&9+Iuc6mDiH{Cu
z+;xML^Sw`%7~}V>hvYEx+_SjJvPy7aR_Li4|G4q43a5&H-FW6klnRH6Hd{i^-FV|h
zgo>Pd)(baY(wH;|jW#!<{X3ceF&tch&+l1$*vsl$D&AI6P(>jXc~p$KXXO_(Qbk^s
z_vTo6&)R#>{wo84GBt<23aB7RJDPs+o>iC%tV%DUg4MV0Tg2QNimG;cj8PG*+RtI4
z1udpxeY(X=TU<p6_PTGqqoUWV7A1vnX@N_r;Hr_?r*s0J?NFwSii-EG<9jn)DkK%<
zRFqdCtKfqyO@&TPRJc_<n;KG8cvN^*z6>G2Kh|X3x0ppc-nV?Jeb+!>r~t2};`1KC
zzX!MA!#Y#NH}3|<{+#0%fVZDP6>&l!UPW0Idv}D=iUj6P3DGQUtw3c|B&kSNQAtID
zilse*<BJD^^FoO#Dytx9uqWhcm2&RS(0iPwWH<3}TSdkDDyplfs-l`|KkDSex?kJG
zrO+nt26&H9Lnu&FMXCU4O;WfqQLNyTYPEQw`5`_;s-vQ=io;&~;YFH?bk17EbIw;q
zJrzHySf--BicA%wRE$=UrJ@0?%IT=cR?$#JXBBJ4#(zM^P|;pR2NjJ}G*;1E#fK^q
z4+Wa2ShS>WGl825T6cM%fl~i+)%q<|w4`?l0m`%zptXuKP2!%dPTE^No|OEyD%yo*
z$oYuV8594ppahlx9R<z$IY7=Q0(aunmfO`XD!QuZMo(T^_fr);R34{oom(6Xkd7W3
zpXYca>1Qf>a*ku;*^9JQYD#Yv162%C(MLsJ75!8kT9!C~D_A|ApudV)CnBd@2z((p
z?Dc9_;7c*`S1P_%F_;$}ZI8yQ{IsO*5EVmJ9<lI^3RYRz^sS2FDn^QtQx+suIUg9I
zV)K#8Eb^hihu_5)9uq%C#aI;!R4k-FOv?UF#Y7d8RE$$`eN6m#!HnD%n4lumG>&6Z
zX0nPIDrTyf!bOP=O;s^Xwf{qQy0FQK;qff&Ldow{%oQWd5|o_T0?ZMVV&u$IF+beO
zUW-&LrdJ%TTyu5O5@A(Z;|F1crGh4pi6Ms_m#bKz;;f2u40#o+*s5Zmiq*7|ik%Fu
zWr=H5tfN6x{7k<U7Td^3RIx!|8jy1&-K=6um{Vz6fHU2yg37RIo8WI(u|t4g1Z5MA
zNikC5N~aTdso1Sz4^7v)cI2$gUse3ZjL|HPtz5+4X{!qXUTeRK11gTFI4UF$3MKy#
zl81!MVL{o;(ehpDzj0aOpDN73S!YxnQ*m6y2^D0X67-~?tkROF1+G6Lo>l5VuQ;#b
zFBP{{++qAO^PCS{Q$ed<P;pVkCBY%{3K#Ko;$^P**|f*1llUsL#J&I*l=Qla8=`ts
z2u$1;xW$xpvu@#YX?MkF4^=#(ZWjah1idfl13|mwsZ3=at9UA=`GhIxbfT|R{l~{5
zS1nKahr0j+d3hpL%2}TDLd8oJy*+$6Dqg90O<@lbJorz=8x;jSDCj|i2XA?h*JFQs
z>uo^^B0b0>@Q%F^Eac?Ud>-Tv%e>VwqL2rLJ#cv-c~HcIC=W__P|^d32Sq(79+r$2
zAjX4YVNTagQLzGFE*D44@gq(|loFgW9=z*8X%F6^Zh3=eE&J-c7O9h}3Xm%=3wgH(
zst1a|xkGt8@Ols@I6e<F4}t=-m+pZ-j12+cfhmA%v#kb8z=HweqQpl|N5p$jRtS{y
zprQcf1+5@x)ZV(ez1SsDa6%r`_Mox{?}=)X2UP^1Sh5Ekkf3UqQ_X`Ef!`Ojx}Y@#
zttlvlQw6ByLGBXN@u02;O+0AoL0VX*o&f0{WC(CnELnXIGDS5@&<{LlAONkD?Lk9<
zE6<49IXON@U|y?{2aN@OIzN(CmS!Hb_n?CZ%{}<ggBBj_v?AJs<y(5tO5oOE&dxs^
zZ3S*8Xv4h00_~DN^1$+-n+M$mv!e%{!tx&r@QDX4H$|-#YIpXaiw9i=zjmPnVp3}I
zsRz9Tvxf(t2|(q^?@5&=$LHeDJ$Smx*1WF={pg2Y6!oG%7u17|9&8f5zVKkY2NMJy
z=)oWlz7%+{2g5x0)`PD+_*!s=c<_w?9FTrUZyZV|Ul2J=c<gWw#)#Gtf{yfH6i3(;
zHCj~93Hch4!Li{Hz7t@a@GcHD(Su2Xv(|&j9!&9Iz6T3DnCiha!JjGUbU|l$a6hLQ
z%ZADEROWlZB$(yFY!BvmKmk_ghWYctoP{1N@?ce%zgU3ff-do3sRuuJ@af)&A3azm
zm{j;)WRR2^t`Ho8l^z_hB61^fwP3ChG&fAvd9YqoslWzi0}-K{J=o&GBM%;Xu+@W~
zJUHRONe_PZV4DYrJ@~_eUp&|@I_{%y3-D27@K*tLdaz4?-GXxDJp$bSKH@h4eh>5a
z3h=EJu|Lc?;K9K#J|w`A*rG=Sco<vsPY;fUTXWOJF;P7(C^@G*IPJkz53YG|MljEN
z@RtB*Jvb)-^`Rzzd(byBcrnbm;6c5?w(ngMoXdh<3AfIV3|{x(h6ne;oSOpN_25>R
zbK8SEG}qn;X2q6S_CnK`_Zb>l@y|CWKM-OM1?7y``h;29i%2h?dhn0n|LehPrgsmX
zg~xpE!3%+3hB>ePzx?)wIo4}?&Y-<5NZ%5e;B5hNlT}`U3kjOfi~Ir<5VWA6^!Z#*
zC@iW)1da0kFN;QdQOt{xUX1c0#*0`lT6y`0auoNXgcr$PRPmyu7p1%ico7tROMBt=
zLiOSuFUkncyMoGIIK6NQEO{~TzC~482o%8_BRC!}yk5Wy(`!eo&kM~9T?nvhgaJEp
zklYboi-hkNRSp&BMZ6ak!>wh#s1U~G1Sl_P?kYqIhp*&Cf)|NiI|Eb}tw~<ICjfIG
z1Bz=pB{Im%RrMm>iwrNSd6DA9`(9M{qK=TP;YCd^Y73m|Mf0E9QNETKlNJsMes<qb
zuFknOuPc~og68^jJug1+BFD?$pCi+YEYZX+*#b21g8FcSXc*?V*%Z~ti^g7jC^$_7
zZ6;{buuSTvsODZQ?AMNfL$wh6mV)MT+IZ2{i#}fT70h;CboAn5f!ll0K>&9ANB}Fh
zdf)m)fNoxN_o7o+rn47ayyz;b?ZxG4>`(sG3(}rm^b-6YUVIjoUo6({b1!-ePOe#a
zt$$BM^kee(;+wGK0586v+j#L<gb!r~dGS@a^-BQ;3rb6VEx-`2>C_lXzBnE+lnWu4
z-+D1zfZ;jC*fb*Cg?O|VW4zen#a1uIdhwkXi@aFu#W*j<d-1&&v%Hw##YE9%nxHpN
zM@$l6vY=DEm?}W&M#cVbF4Mi3A(%4-<%MRS&6@4S953dFIdgd}?han;7iWx+$VHS~
zz=absx%?#puk>P-7fZePK~#VAVub+91ZA(~UQ7v}f~dx7FV=XmKHQpnz*sA)>%6!T
zmfRpX8@<>hz-B?OZcgTaKY8tq=AhvG?8P<#e(~a0FMji4yB9kIXQ!aM1>GfR{Lr{P
z0?aF$$Z=SH=Nxl6M+1Ak*cZkOy#ryK>lKH*;GV)<eZ-5S3@#s1eSDgSV_v-RBEo0C
zV&%9O550Kg#R)G?dU1-9H_Z!PT=e3!z-MTsG5)gxpA(b<=LPsn(7&0=7DkbI$&1T^
zQ?gM6t5>|Z9hSf9#kDZLF2D^hZVGTq(3b`CvCEyX%v~?;34CAB2ZAmZ!#)=HwV+SD
zc=Dn+J3bZFf4ult0CJuQ@Z5_RVa`hdUeQlh#!%otD&Ve1(5+F#TRyz)gI^eg%IERH
z=i?8k9Facc^&y`R`9+f|XaOIJ3BbMu1t{c0VF8MS`B6SN!nmjp(P6wHCr^wIu|5<J
zbKVu8grFsTC>7?H7T_Hp%7i(Ka`NzsPEmCUD)}IXTNNMN0yo%Xi+RF)uMg9s>XM`R
zp!;A5z9}dKeQ$*SU$K18ZkG=D5cDBV@Kb1$asGIL%lc5xhw=h*s3ZX@2wG9lN<JhA
zkSJ(nK`Hs30M8!hOBSGtpjE@I)dYB5BkHel{`Y;T?gK#$LC>BjN?gl_kPj`x^0j?v
z;6t{k*72dP0BPaYbOADas2Aqc7a-GztT2a*+c1oi6CKp>15wTKp^*TM1#J?RX(~W7
zL7V&VVVK`SfN~MGVO#moI?Qh)KwBSw-)P4XOM3x2`0$YcR+!(>hnG2am~`@?vkzt*
z{Bh{wLsuVann*R#&4=zj+|+SP$EQB@@L|1%4H`c4p(njU!@C-K`S7_9yM5T>LvJ7Y
z_%PFl?|ta&Lq8uz`7qjt{yq%w;VU1$_TdX3c53m1eE8Cb7oB1T`p~Oc`q8U_!9Ls$
z#@|jf*ovD0a)$WujSs_o_|}J^KD>Dmd!S$Bs!?%E_$}J`wTAmJ!iSN(Xz|#*YqQC(
z(?9LK`f207Zrs8hH^zstK1}vuiVxrUFwTbwK1`aBUE-OeYo6f!tSaMu_Deno{E{}2
zd>_d9qC*-BnNxlEV`t)YL8tk!X+z~=d$LI<K1!M)ddcr3&+=h5-_P&EDj(+fFxQ90
zZ1Q2A55tQVU*N++0p|PA*qyxYzQth|F}nYWU9iG&(U-vLQXhWsVVMuheJDM}(H13s
z^kL8<hut(H?Z9GvM84uH#O02N?yG%R<HOHBZ1Z8Q59_Fy51Y9nK5Xz|ffcinLru$m
zm{af8eT(!!=k&Y}tSvrl_2DOG-N%mU%WC~rr(VW?NrO74OAl<7e&I^BjoI$Q4z60;
znCq(@(&OlzKJ4=0&X2X~l?iSu9eg`FxxE(r)ra4Fc;LfBAAa{?uMcN^IOoGYANDh!
z`*6&M13nz2(R?_<#O1@qNsc1tDj)WN^i|Pd((u%NXDes_lIN5adz2Bh(9!9B9Qnt6
zIN`%dA5PJFAKPzyU4J;5p!C3)(>|PG>KNr%+#ogafz{*NWP<aIO&_lLaNUQ$eYoJm
zB_A#`zQz{Mo>lR3>$Hp1vq5TqSMcq=kpx$KxJo6zulSA><lxR3wQkU*IYA%p`f$sK
zoY{^SO2TdWzn0KREDgaurh>=zdt&eVK<1UY^+-FFPk7|RV;>4>D6HX$4^QcqK168v
z$A^FE&kQK0i$Rgke0c7|2M?@kqvG~2$mTeY`=`AUtNGf8|ESM`?2#Fb=k!k_IQ2Y0
z`j&>bHRRQhPeUFJks3aIU_I#<Iqz3{rM}3B-_boizh*ma0SyI3D|>D3l0-@-X%P)k
z8e%lWYH(;Msv%lKkA<ndAIDyJ=*SuvwMUIB#@1001ng2=LkSJ<XecFyEh#{04dq9t
zeL6lZt7{Sg#YpolcaS<YxHNRs@UaF-gRG&3hMF1_4c9v+`85PIxHYI6JQ}<jbPa|E
zA2qoat%*x;wDk4at*#`W=$rQMOb0aD9H&3B7yXBpRkqHkHEd8Qs3A^6f`&v5qaRrD
z)JH=F4P`Zy(@^`Dw3G7^Ukph<`ZDRNlE0#ck<T5KG%T8zICD*{^E1;HJ+LZkcuzwW
zjlax65*1kMNY?OoFZ(Jx9$1ul^KVi$4JjJl*HB%<hmQjlYNT@HM(^44%^l<|BOz5o
zEe$yu8fgge(i-Y($kb3rLtPCS8orwANMk;H<wy_D?xYB-hl1AQGCj1{E=xlL4cQtR
zYPj4a?a)NWh|ab$ABbMdd&j(7Z(q0D$h5{9nrLXLp_PWF8k%WnPW3d*UF{xn*!ISk
z4`Ziak0x%RVM2@GayjnulFZf`+GuF6p@W8L17cnch-|B&orY0&QrPAFdG_E{yTyE@
z!C5@nq7F+k3Hq<EMevD+P8!B(7_XtThAtWgY8a%UtA=hGKG)D&Lw7nGbH0Y28YX@b
z<!fihQ4bonU9irMv|bw02HMPKUqq2V?owtS4Sh8X(C~$ZiysC1Y3R?jo9&4A1-Fl?
z@3@k)t3m43Kcg2ZaddCuFEtG2I#OYpRKwRAhH4nb`05uqM40Fs8c=S?!Ly@+qt7RQ
zt6{i?5u)jf_Q9>)lh{;bc-rJ2?LZhU_;tEwjul`G*Q;x0yP9bP--Vkda3UIJYWQBm
zBn>|ncz-HQr(v>&DH{IxGrH`zQ9lif3O-Ak&S`cC&JdJf`j9AToMTAS;4BTZHLTRI
zO2Zs3kcRmh7HD|dGV<W*%JVebxs#|qv}&!-TuA2>*Zr$`8kyA}C6X>CN60J{l$;*~
z_)*Yhf-cvvLV#NCAO(D_f~%=UtKeD<YXo@GGPrU{<~o4~7Ynj!qlQg%R2_A6Y}T-a
znM6mVj;$Jh9g0g_dJR8o*rwr#hNBvO(Xd^^J`MXd?9jL`W4DGq8eTqgTy*E(rJ=y>
z=r4z+lxUs)tA^h+{H|dy<1r_FagpS8H*D`>8NMa+zi-k~9$JAp$p<tX(r{SAK{4fP
zMU!)7{t(rPZ(>{im$~P8&Yv2NX*jFl9Nqh&bzH+q4W~4m(2yEgjpai<K5x_Xa&H$u
zt>Fyw%*{Z0&9t+#D}MRVI<Mg`4e@o7FEFS%g>%s_(~}AEWF}@030)LT1Y};(a8<)&
zI+BKK%uyQdX}GW9hK8FOZfUqJv}*oE)U^At?^h~u;ZF1&!MRHZeo>8@H}J(DSYP>p
zhKCv+G2~NI<8~$%o!}@i!QQ4>C4S1}ui=%3*PO*z$G>8P7aE>vc+L!yKgds9?RXMM
zc@}UUj(*9FV^7+vHtGLqc%xxix%jtr<oz%9=sZV+j<<A_9~K%^CVASh(Aa#*<P+!B
zkxz$Lhfha-9R+m$ULCTIf;tN6D6XS~j>0;M=qRcqT1S+Q!>2PHI;Ne9l*Qh`>f>uE
z#dO5zn0PWeR<}11GFhgJ1l6l?dPyCnbiAv>spG`O=+Zjg(NRXnf;pL6f6FGlw=VN~
zMAjN1?-G~bfE?jMb`_4M=umaMzMkyXadUkwa@H+!cy!ck8EoD+GW|u8rbE|JNk@XX
zx}hVWBdDYA$1%`h>hSCQG-t3xg@g_X3Bd{paXR94l%qj(EFTnk=~bYt=*W@#Kglsp
zMOM&JQOBSiQ3oDcCmW~p+g@x+)cJomNYU}Wj`wsV>8PTks*YsQmrEIaCHm$=Yh=5)
z$Q5=v-LSrLH60IDr@j5is;;9371oi;c<B%<T($%YK`k9~Ke5wwNbp}33X)m(cA&0~
zG#&G4A|2^EGB_6<{dCmRQD29pqoa;Y9a%bB>1eH^fsSk)4Rw4Vl&O9%die0v8ow29
z^KD9w;Iw4S#s(WPV82aitfPql#7zZgrlYw4ABOoYbp9|YNP&$Hl4@5<YonvBjt)9L
z(h-{MXs6@zH?i$?zOyBn!}7aY1WC^1eqTlsKbztBSjQ(idg%B}M<*Sfb#&9wT}Kxk
zlQPmtyXu%%Aeq?p$RgcbAo)`rM=rD>W+9+Wdh#kddJFw~30nD)z2zNQYzIgm!D;@;
z>aSyfjxjpM>i9y(KpjJM4CC_Y_)^Gxqhqj+uXKE^V+aQngY?|hn1fU)n%p)a$<ZTi
z+EhEemmlf)R>yGBYov~~rz4$ba>yK^WA;&7ew2>UqV>tAX>}H5pZPTHJ00T~4mzgm
z7_VajC#YjGV?oE=fsrib$2+cF3v6*FlTOhwRR<|?16MK&!3-TUb<CkB=qUX~<o7ye
z@pAOxzcS-ul37MQvf35SA|P{~;19SJ{k&K*nG1C+((${Fy*d_CF&*o4tk<zr#}7JI
z>R3hpyr1%;j%9RpfqTy7M+Z|@O?2>Mc`F2m-^C+mwZLlxC4a2|9ShnY9NeH|qmFGl
zei3uuq+<)+l^!Lk@ApWjWquO)XYLLIV#sONBDnHwCc$<cJ9O;Uv4@#tL};guT_UpB
zW%PgcDw8?vW#CsGzlm~Wt9_zine)inr(?g4(>l)RIH2R8j$=BGiwhmn@dq77;KMq8
z)Z%k{9o2DpP~@L9%L#kESUSFAZxbhUoYZkj$j={JyuDc>r+;M4y~)I9b(~`_9anUm
z*YTH*3py_9_*)3G@A3XIe|OCy7|UbccaBT6>PXuIe|}_L<x=XnE+k+6ZAU%J=TiO~
z)K<-3U5)E_DdDz`J39U~@XWwn9rqXr20k@#pUFXoVE_gm>UhKiYoM5c$2y+qc-uf8
z15b7QqvM5+mmEP{<z&g&=K?(AjD#nbcwl_>PwXpZNF8r<L>TywF0s(oaQgFD(mQvO
zeixsmc+0@#=doKhXOk0YAg_Ta1E0*QmCrza1BDC}Hc-Gooe^mT4IEmVHfmkvx-)7K
z{8%{o{?3S(v9Vn$#1}F6_QGV0NMlEb!8ZxmBXlfjEt*|1#z3qAufdz~gyIHD7;qVo
z43sob%0L-|uMXx9m5Ucp^OrX8jseGs#(xxRL=AIkkwKBfP6Nko1kO8yvSDu}iUGF(
zoBKzq0(b=7;|wx(K6WKPePsCzXa-*wA530fnMJ3atCt`!4fqYzHIQZ?U?6Cqih-&I
z;=~9Q3{*4_Z=kG!%nf!DE@z;;XexLir^I86YgfrYf`Q5g-ZL<^P6^5+8W?%VQO&Zw
zwDWw2bviQ1K(c{-hJA2l2|l)}8AvgZYM_>Z_YG7x(C}1dP1<dKy&48qlrPbCP0aqa
zO(;yv<9f(I$7QwZ2wIzq@+g+ow>`;&&G@LnQRxOU474`T#y~v-^$j#K(3m<K$TE=4
z!3}I#<w%+8Xkg&^a>tmr>?Z)kq#qc_5x^Uf#itO}UIdyLXlkIPfmQ~Z8E9_cLjx^@
zjB{pM{?6%RH>EY$W+%hwf8rWQp*3$ZbDw6k=@8S_KszqCfldb68|XlV4Sa0iBLn%S
zJ1hfhJH&i*Cv#BU#(VDNaD>{KRgA$=m225{>ujJ4)pLcq8R#lN&r^}CvZ>Z%JFDNB
z?&x9QGXq-<{A8df7u3K+1CtDVZlJe;Zww4I(8oYu1A`2FX`r8h{sz7<Fi_~ff1P6h
z*H=mIIy{vFjuBseVYR3pKiGiUH25`bbvlWg>{kY&%O#LQI)qMAF`;<j;4lN<8W_Wc
zHZYt{`^YiUz$gPJS35?C@%PnF{A*?QXafa5in-o7Rhm_C_CHDA85k#8$I~Xu?4V<r
z_0&!U6AZj+n6{`-y~zfq7+7Xtxq+#40|N^TEHp6PzzhR(49qn!)4=xzW*L}GBg6!Y
z4^3%MEEszu`LDKVRU4$$9FZKEFL|DU`HZ7u(N*6{W-FUm%1%mMWMHv@9}N7+D;5ea
z5&A3@^yw-4{-x(?`_%M)+v3@OL{ngeft3c<8CY*%m4QkX<5wG4LpLiIKX_L}+j8-1
zxs(Qo*^A5#1~$^i4D7aIK3L}1M7J3k+Dyy0ta4&W8gYYj$;-|}4u25+vw>{}P8&F5
z;1>hi4eYf;13QE=yEuY@odz~th;{~Suh_%Z>&d?w_|3qsSNWEF@AzFvc5fNn%__g7
z(>i^>fddAP8u-(|LFOd`hnYrb#^SN7(&Aap4~Y6^S?0q6#b<efN9ZTZGTHH%f#U{F
zaQQgLCw3bAs&<L~EvlSiF6t1otyOTtT1U@KmGxD%&Kfvp;HH6F2F@G!%fMv=R}B1Z
z;DUjR47#+mslt~gK5{fs<1W!HA31o-;4Yec)xb3a*A3h-Ah!(`dX;ZShZq8ud!22t
z`-S5+9d%>ndrbHO++lVSU`WgK^Lr8>F!?j*8+c;i5m%(VZI&VTV=Jww#T2(=wEL-n
zf9N>{lm8uQpF#=NjZArN;00X;{82q#a?zQzfx5tJCVy@yfC;=Y5CIeiN&s&GZvzE@
zf<PW%K;h&_ATLn4ZzM}TAa;f$KakWna^RL)jbej+-Xxt|n_UPf3`7IPfFeK?-~fsO
z83!{zxSHAPubj>QB+cDgtI?Uv#~-DU#=y=wvB0g<(Z=kGUv*B)d@C4tJ-H-M%KpbJ
z@F)5FJPY5@|E~R#Hv7@dl6FD9r+MFtYJpj`cstK8J-O`nH$Vo~cS+;@KJUu^jI%fQ
zoy#-%(@qbd0Xk4`hJ$|u_5nY>anx}Ie{7PNcUK~x%W?L67Dqq<GTGz@0>FEm9S{WK
zfC@lGARZ_Slmp7sAb}FOrQ9<|)!H^*b0+dabkRyc0+2{UiK&&3@ccL55u@f$xE}a-
zzJtQuevV28ssJ^Bnm|?HUg=;8@IFutd|QaUDXbk3st#=YCzegeJI3;n0zoQJ3pnGC
z4*@L)N0kwC?EWfWZD9M)QKe4juqh2l2f6@VX>(2)Xa}?h>I0cTW1tC;1vCH}0v~XJ
zc>WyiXqA<k%`qQay&qdSwEWw}Pd#!p0)A+aM&|S)S#P}+Yzj03S^=$r=D>$Q3w8m%
z{oLNy9(|t1o4XMO8d09rqM7NxK8<bzjOZKFmYR$TvGsTnd*f#509ZgrVV{pU@k%9F
zJ_bGkUoMf*Nl@SL=*f>_Njr1NhDVQoY_X{u&>a}gVS!J99zcIC1n?Qq6ZjnH4fFy=
z_l!vusesoi*e$IO&==?jxQ3+sR62QOfvjSU(n#MalGW~Y&KJNy;A>zAFbMb(7z})s
z>z11uzZ%+b_UoL!jnY;;ww~vt#cpc+4KNfK#)$(XODA*8bLZ@x%YCTvxcf=z+cGIX
z5*P(c0j5$JU<@!Gm;j6gz5~Vqlb1RAJqYkb)N^Utn)8{3XV+qNA~1<foW+Q=yJh2Z
znLWPGW|ghefa$<Y;Co;O<LkeCEC)xXu<%R1q^!;Y2%6Tk_p-UbJm4Ad9GDL*01g3%
zfrY>#U@Pzwu$a>XKhKTTz)~(ZupC$+=KdqFjMlDNVvkr*4*1t&YbC&N+jlg2(0Kds
z^T&vkHNaY61AUd6KeBV?I)<TGLAECDwe#vGMjWsi*dj*$R}AQQVzKpB#e|=MZNP3|
z5AX{;894nUX(zBlfb(r*s*iMR9GXV|XW2!~#pAVKf!~1rzyW5nIga0fz03*p_9|(4
zm(?PDV#LQiv1V3Dd;Mh;s|RTrrmtnS$o~WU*Iir(ZU9GtKN(ZNS>PCOoElz;J`J4U
zOo3AZ^x0YYNE!Q%fMEIHl>hpL-kru**kqjp&I1=2vtnL<0e=G*fR*2;P04Ib0Z;3+
z^e1*WTn4THSAlEHhlPUE1M!q0pM@h6AHA1!lQ|H02s{#_-3IP5GjNSgN8SPIjE<x5
zebID%uHym2d4#>nd~iKwq}}uwcnbVOyNz)?VQy(^KL&9o+FQfFq8EYn#Ckz<@g?_s
z$+3x7O#alzL{Ss}G5G`eOyoBaVd5<lZ=1+t;@+Hi-mPzW?1+g;Ufe%2(zKrm<Q4Q|
zvADmiZ(P7cK@){d6fsfA#NYlB>&unM{QzI}{`Lmc#T#U6l!@CO`wQvOCW@K-pRc%5
zrk(s_OcXa!!bGg7l9N3xITv?L@|2|HwB)kyrC2*7N}G7c#P;5iGwvm^yVK+wjZof1
z1rw49*@SMwFrk=moA8?OnNUsi8xj3#lEWhg$6k9KeZ%820wpvP_5Tg*9^)Xh%bi5-
zf2N6`i8vD}1Ec(+W5A?iB^$ddCwT3&951S6O_bw>c2}-CGOp#0^ppPuMs&50OchO3
zGEv1uRTBv&5>32kBFRK$6VHE68~ns-w8lY@@LT42em&hpZed4OtMQ^Hs+*``;(Zgp
zy@_eIKBoE!`%GADL**|0?Qmo1JHt`SM99R@0EPun+e94`?fhu(M_m(XG`@)oCelr0
zn3!T>s)>4>rim^lx|+x|k!7N#iB={W(6A;Nn`j~|)6m2RCUQ*dxD%b_&fmyHpR}0o
zqKfmP6Sa75i;E^Ynwn^4qPdAru1A00BUI+=s1HrF;Am>_a+zS!Dk=XhPK(%?*xE!J
z6PAgNCfZUx6YWiOplcN<UVDW5pL+)PIBseT=a0mt2_haOe#~J_bmD@RO}ID1LE1Dv
zA!~&VIt%8$X2EVIx|{qo8@@5|sfivY2AKH5#AhaYQehK)O{~xpdYSm#L~j#c@5t^_
zyb%j$(SN5MiOQqcekS^dJ+1Q>X?H$oK>k1zgG>xI@s-IJQYGBD9ZmYBiC=sT|9Y57
zx;C!F*Cxo%tqwIY%*0p|-<kN<#BdX%OpG=$!o-%<j+uFikED|y&3^GRlZE4xzA9Aw
z&2+~Y6Zz5_FB+aQ&ct{V6HH7rQAQm8b3<lhAN!Vel8MPe$@fbKN5%vTSB;xyV!DZK
zRLR5)6EjWxVB$v;-<z0aVxfseCT5E+b4|<>V2+@}M~3E`SRe{VW-*%t7dE&3c`*e{
zEEQr|)$Clc^`)a%Njr_tx*fgD#BvksOsuC>O{_Gr#>9tzr>ruunvOjnvgo?Xf2OAP
zD3Z*=E^8TsV;tmAW&@RcVr^ogFtL%n{>}N^5p+Ds*<xa=iJwgT%+cO%wDE~`;E8oh
zB+0x_ZOn1D(+N%NH*vtkP7}L?dcO<0+r%Cdznb6!<at$Xg`2gH`Asx2v5-m5UQyjA
zXwF+%2TdF@@u!JnCJxh9u|Z!<@Q8^&IMjul0mB-W-Ih7NVDeED%VLt*dfdbb6K71E
zHF46!Dbn59r)k@$<dqk4DEV35MjV0Fb0*H4_>1dUFqs^7UtS^Y&9D%g*yW;$OH4t2
zXntHaafM0MkGK7}YT}xSXUqvEuG6DT+&A&S#7z^oOx$J4Wu7$g<aG4hUNLu=*>2S5
zq`upbmL3uO`MHCbCH<M>p@~N(o|^cF))13@LaRP^oOj1<FO)@E?n8TD_*XCq$`7-v
zEt&*hn0U$L&&X{ObbcB6n#te98xsT+*t@Y73js?66U&j5Te}+P@gvd?haW}#_T6G$
zKl1xgz>i&OLO#KnvOTJxABFrV>_-tl?zW047ad%7J|8JdlphPNm{0B{tz9Ob68KTf
zk1~F|>qm?qv3`{Fqm&;*JH_x%NX7jq!I57F^7cvVlP7EGF1t%<Ki=`9_5(W~&T3Gl
zbFpOpwbAK^%MZ67svnXcvLA|&iGLlqd_8$^&9r$fgX}IpwLE@&bt;-wuOI!k+3}cX
zK+4=%6?H!hKT`a7-w*g<`jOzbjlkmfBhHU_KLUR6et?{YOC0lF6eTF@M>#*r`%%G<
zna=|1fJl9S9kaw0sl$NCN<!W}BJ^N(Me-B<sO-mke*Bsom+VIszrBYh`H__!*G;zS
zzRp+Gk7|B=u_I!15&PMA17Aae>VDMlBa>o&@OGxAA0f`pk5o~u8y8=T)~=k&raFGq
z^&`WNdVYK<C8YV0PRYi>mlf=%IxJ+?7o4(n>;2d#f=w&p5*qlC?Z=0HwD6;$A0PP9
z#E+(a<oMCZkH(xkZ<a^JCH72fKD!ow7{CjiC>y^qF20!`%~@vGVs(gRr;(fcl3V)G
z%8xc->q+OLTl=wcs_m{{=gT5(E1HVzP43{wM}EAd+xTJm(b139eys81V?RFeW3(S*
z{OIIIXBxzhfqr!HqpKgE`_bEvZhmz4^JA~*DMtI$j~<-Y2=_YfI}Z|hZe)_-wR-t+
z;&F6p@mN-S-A(M{M_;bHAN~EfRn*?mSgstgeQAIn$45H$OmM8Jk@ntGYY+|S$1p#>
z^<yx7#*eT47~;q98_~N4g|3Mo!+awyJyg(-e&=WY(q6qvTGBFYxF3A5Fw&1v0*vru
zQd&HJhrnkJyinIlCD=OFkMI1L=f`|M#`!Vck12jk6+=z%V<NlwktovIWGYs$_)o9@
z7w>bf2d4Qk-H%y*%=Tjj9gk+2m-#(y)io{qsYTqhVLBg<MRZMTnq6g%A9Fc{{I=!E
znYk*PbOFPV*YabjxZ)x~7yI$>x#Mu&;$Pm6<#U7o$JKj4Nl`WL!^o~n9+rhw$vHf3
z=P=#VJ+Oq`1!sYUB`J~=VTck8<S02KS)w2yAd+*C3<^pTB`8@ya?atau6f5lzwewr
zb)NfF-MV#S_jKRxS)7C=Nm!bMA8BkPijzAgTsai~LlU~jxbNH&a<oiXMzu@A(*ojK
zg+wwSvJc(-Ny6$R{F#K~Nm!GFwMp2Ugnda^mxT36*qVf&Xqeq`HY8zV5;i5F)ua6F
zAA~n2VG9kLhxr3_gPlU&z4y;Mq&!%VO37_W*g=Z`&6>Kw?Mb+MwZY@|DVggNb|qmq
z&7&lc*_`1iM84lCWAKA8IsZ8cza-(eBpgh_ey$oh{51&&7_V8Ias8{bNn^bBJd}jP
zN%);wI0;7xtneLWn^_OMvrqFisnv%h|B-~c|HQxQ;mvD0Zmn&3B8h%_<5m)GC*f2Q
z{z}57BwS9y-$^)~gmXzapG23w$hsgz_Gf91KM1?`g{Rd+<%^0Jl5mk$eu}M3y_+HT
z{RN>n3pV_n4X!;1UrEBhNw`kSCXG)T+v9w{jPqUNkjgIz<*VU2Y(LI-lS<E0pwkR5
zr0fsFcc@v|=4le{CE-4`NfI8?3_2V?f*wK%iNzm=A0^>&5}r`ed~d(v!*I_@p|bq&
z<-><wWwYL?@FEE>X>Fm4Ndd2tkVQZV0VM^zAt0-O1OfR4#0ZELkW)Y|0dES36Ocpj
zmc(oV@+|V2G&?6R@9{eERr`!)eG+nakIhY50eJ<)v(^_i)<>j#`7pe5rf=2GJY=6w
zK>yj^B40p2qJY8ziU@d10DbCXLMeYi0pTgWvxD-aU5bB);(1?OQi?u%;DI(J{J;AB
zMFkXN|HTE=c;y9i<<tLNEys=Vl@d@|fGj`}P)0ym0sGV4Bmw0FlowDz@NV=B=cRx$
z9()$}u7E7Fd=I6>_FWTJHW4Q-$q)pH)Cd>iDdU-SjzkyU`9->^s|wHrxB`L#bOD9{
zOMorF6ueC)ewM|4$fWg?j?;NWA_D>(0ow*A`)8z*D$%xytSF$8fT{wj2}l-DnW`Ta
zs|fTTLk&x|_Ht2RB%2g&Nb=eUUy6WKc20Yf$g;^Cw}ycC1hf~>K|n}Ax`4(4J`_+>
zKrI3F1k@M28(g&oWC*CsvJSUcRYm@&s7R_z0R)Qgw5Y5G0vfXReU`Lqj>tv=zUBe*
z0kuz4Z$Of4BA}^&mI6Kz@L685nSd7LM?iB<&Rpv~tswqmine#`!{H&qujZy^-EOs_
zJ{8bLKx+XH>!py{iuobEbpol{3TVgW693VSWRe{Pd@7))fL_dZBIg1=7tmQi7s}o_
zVSLy0t_(KU4lQ{Y{zAZ)0=f(6A)p&|#|vNTW1rnGwp1~fexzLNFB72TouV%NYh-T$
z0|X2d&__UD0sRDQ{x`8dwPdd}`lX+(ns)*v`IUe{)R<k<o_~}uuawmDMEqcZUZ<6a
zA%kHwglJTV7$#zbfRQx1M3fgXO2B9V#{~Q#V2psV0+tH+QNTC>;{|*xU@o;P4RQg~
z1bic4B8~Z036lg&rn$DXJb7-^Ibn)`sRCYViFDifa0_weO@Y940W$>56fjHhF5BpW
z&AW<Q<cnOw%@#0++p6nGFFd-0+gQdwPrw5Dc8-ATcZKg*&KK}_LWoq~3s@xJ2O4;H
zt;IBiS|%)^rYkAYK|5CqY_}tFS^wB&0+tKdD`2016#`ZY*hDQRV3mN?0@evwFJKK#
z;fL{S1q|+$u<vlAeCry`-eJ*J)eQo=uCaIBbv6p1TjHBTA$rXE@#@eP0b2#^5U^9g
zPc%EI9qu~Y1qk;9GA2uM()M-+k-G%!7O;m6C`s9gC+F20hREz^0l#pqkI)<!a6rIs
z0uEBW)+W65ef+PiisxTF70V_bqE?M}4>P&a?<Y)`wMPZ~PRqhV-}En&rG>sPPsjf$
z;5e;#BH~1x5O7k!bpbbMZVLEIz(oQ72>4sTX&T`I&I>pr;4Iamd+fIUvBe%bogX@n
zdw4%dE^tA_oIes*p;7v|A5$+0xGd1NVq6t)g<AE2&sgqTJl!|#k)xM&w|0-cMype!
zboz-+xyZ>)0k;G^5%5&NZ2@-#JfJZz;I06=rn)EKzJRrRGal@78#NBroSEA4qjcgQ
z(MUKE`<T|fT^W?5y=^3E-FPP8IZb2{Z-{t7bGBFLB`y9`(^Z+V-+PMy`3ZiTO83|)
zdsY!KB4Vi#T8UJI=jx;M5I=LzCVFRq1QGc~WEYV`L{1U8MC1|S6LEh-=IN2XzSDiV
z*{saQOzU8LUJ>yk@`?EM&kQo4>?BD=pn!-(5k*8474epculmHiBcdQptGor?W)FdU
z4GW3he&&0n{e@|+mHyxL?avRx#Y7YrQBp)H5hX;V^ogaT+@JAux2?slk4lRu!yd|t
z-aVhLCH;!ue`$wJe#oGL=-uW2j1Arukt8BRL>&==2vI~;5!FOUB4iPk2wQ|ALKR_(
z@Qcty+-{Yii!eAl-2|qGcjreZ589APGG>->`d)mIMxk*td;t-Th)N=oMYwDn6j4#c
zZ`tcqf6;($MAMfus1YbxS;Pf5vD&Y06*eQ)f~B4+MMSEIbP+X0q>-P;LJbk`iKxzI
zb>r#~6Jq}4zwv}~z4CT>QN~(qP@84)EFax2CRtZRrihP3d@Q1#i25QLi}+AP0}%~H
zyf5Md5nuF9Xe450<;3Axy&pa;+IzRToDakreY}g1roCgEh-fCFxrnABs^oF&4f002
zG{e_|T5N`o7)lb^Qp6`B+KFgSK1F{k5n&N+M6{-Hl9n={vj3NJ{+XrgO+FIWR>a(b
zA|;J_DIG*~6wz5k7ZIO|=p^E3{uok`&-kE!T#kn2>e|0&ri`f`(^bTGN8%_Wsp$CJ
zD+OPQ=q94Oh~6UlaNT=|=*fWQSH!XxCok}+t*?lFBKlJwUGaVzO#jw9@eL3$kcJ|g
zQS$89p+SrXvm6rT+xE#boCYL~TgjUdBWdv$aY)2r5u-(n5wTRnk0Qp37$;&O<q|Po
z#MjieB4&x0AY!73DI%tdm?V1pVG5qhm@I<!!`!^@bUT%iKZ`g`#5W?Qi<luI%cJnC
z4?<m@31m?CQCNKx{^}pka<+&$BIZ$Ri1?O#p2}GDz?n<6z9Bto8k%&~p<MGtY|T-i
z-NDQSB4+=SK^f~k3R4k_sLQ5FOK5Hu7o`&7V$u7RTK<ptA86cGl>W};9_o{@OvG{#
zJ4Eahu|mX35t~G87O_giY7y%xi-_a*<JX8-D`Fj;1TQ2nD&hXpI9PbMopCgy;|OV^
zh`K9$WJ9e)zn)0av4uhs@so&?zr`0j7r#wJ<rTi|)bEphl;u`9{l$mUG~WEMOT=Cg
z`?%S6i`Wxw{~{+ceireIi2WiC(3tTx?6AVubVEk_6~13-iitQ#bE<U$?N9qWR~^!}
z*%YFq<D>8q8dM@4i+Cd9cM-=#Tomz-h(AR9DdMz<GgKp5&^jcX67d(E1t>@nLmqh-
z&j*@W-yU!Dw}^j}E3AF&8+|EW8Cs9{vt9rd&QpmZ&T)j{1lkcQPD*fz7yHD{|1HZU
z5tnJ{5OGJu74jg`%O<!k;!%$*4{lYUh59Nra@~|yt;Nc8#u0H-#4UE!t+hDoQMg?1
z&^C_Yu84ag9?+UFD(yavjf$Z`C+j?InvX#LqV7X-NJF})OC$wGHcv%7qa|8GZVAt6
z@uyROgsc)?ig-l}_>K51k|z%@%b<gRdco_d7zwcw;v{5~@TNrj;>7LCQ`7s$cHLoJ
z9+H-wnH&;wN}wd!pQ)BYHsc_ZK^_UeZcNQ9Azs3+LCHP|$9)wD<l~u=UqS&1-=rre
zNH|!^o4>R(oRW!5nvFf?ZMJ-eWkCsrBovlVL_%o^Wh4}pP>fY2Sr(U2f&p!+r#<;3
z@0atJ2q%=H*q&CR<h;qDvJ%QkC{LBz?|!+{t{`F9rc_8M)hdCsoA@AJkRVcPsK}{8
zk|0aiB4MipMS{vjjF+G>cwfQ?5_AcM1XF@vLL~{w5-irbENzxloqz-<ioY%?1*5nk
zz3z0}YwgMssxX-$p{j&x65f*#VkU)U8p~8_@O9RMa&mPEH6+l*1Z|JZRnuF6)7hXF
z%bF~SJjDa1wuJEyypuv533Vl8N~p&MjU=>*DNtWR0|^b8nK;cmDIZGo*6`qz(2a@S
zde~UPhpZhXp^1d16531XAfXwPpGasWp}B+>5<Zgfv4ob)Q^w(s@>iSgc_`8%fn@6_
z-$p_>itCN_4BB$C9X0aI)Wtp1I&$)J313L~R6-{Soh5W(va5tzojh-J%x|0U8I$y1
z^K=>WrG#!0`bp?7p}T}05_(JMBcZ2+UX<$_uON4mSHb0Zy)i~dzZMC7*~0^Fr~!<N
z{1rct0j)@6^A+Pk5(Z0{c1ak*awyATEQhlk!Ez+a>p4WS9L*WWup~cY8H|&#mS0jJ
z=4%NPButbrNy20aizO_PFh#;t33DaPWBX|m=0rVwLjz-Qp6L>1M46ckW=WVGWfm>=
zeH+EpP~S!ILJ9L3FJO6Nm^Ws=k7^fDi<Os&`9Z=`39BTmmhdBMSFl_rVL7Sz=H5Ae
zM75In)!nn~PfJ|Gc)f%TR6E9>ZO^k#!tIAnl_Wp8-N@u7mY<%C-OPaawU?8BlCVv}
zH5u1sY?rV@LLC`(W$dJ-gVrbsuO#ed`(qORkg$jGUJ3gc{LJ#8gkKnt&;1e(MDec-
zeq&jFN-Sv)F+R-l2+N}^f2Xou#*x9Fv{*^_SHe{ZCnTJda9+X%38y6dCE<*Ovl9O1
zEO{S?PfOmj-EI5aBCSKUDu<*RiRUB?nd+m1T#>;=3IEV4B;ksL?N9S}dX)c?gvy8F
zNqc&`O_H+QT3wpJH3`=xJdp5E!VL*GCESs4SHijr{#z1?&-2};9=VZBNitqv%cf+7
z3;uf&?n@YTSLmF(;nz2kiGL*Fv4p1*o=JE@tIFN{7hdFFb-Tj8S}D74BtMrhbDWQu
z7ZS*rm_3sJU|l<lj5lPImQhAVRv9re5@h6;5i8?O8M$TTkr5{&n~dx-a>)4pW(C?;
zKcHV8^Ql81r;J>(xA(rx!c+>6j=pU(d@}ONh?kL120i;b|1dw@n57Gh<89MP(lK{?
zqd^VR3&<!Wqp*xb8E?sWTgE$7;$L<_8T7v1^;^=i_MtT|9KsdPW)zW8R7P<bC1jXx
zp7F5-4(ClQ#+FoQ^HX+78Gq(YEG2_-krVP?zGFsN8T3M@Bg2(ZUPc8OvJ6G`Hut<M
zLy#fLSjBgVlc*xQLv)N=ltEY5M6SLYFVTSH8``Q2jmnkbm!ZorWW21DLdK-Mbk(5%
z2v{;~837qJ{*0&O+H7KGc9B5DVNgaz8EG=A%cvwHSw=M(DKaX{^lfvoij1lZlI}Tl
z5Od<LbEsxYs*F!7=4skJwqf^JB5U6gYRGs`Mok&DWQ1g#OHSPKTYNh83+*g@9A17d
zgFtQKXZkW^oJmfs@i^S_ak$UpF!7l(>dBZdV}XqNG8)L}Eu)W&hB6w-XfLCKjQ3@H
zAmbw$AIoSg<3kxuWHgn%3u8J)+>56tP0eI9mtj54--64HJD73ov-Ha=?fxB|db`3c
zWqcwdETfH#ksT6R$!INO%H#01VG_k~agV$0hSgR^I~n~?$KN{<U*dt+fLV6ibB9SC
zslGD0%J@u1CmEe(bm1a!B7RaZ@$N`p+#m76iTLkYCVVdA3mH9R^px?XjBYZz%k-Zq
z?%={==bH9;zBVJbQ`Urf@cS~osMd$$DM@5s8T}|W8KWo$83SYtkug-p(=+h{Wqc)L
z5RIbq{&hVQNS1oy8_Y4RsGUN2hf&v;k&AwoFkD8eSs`tfZ-k70TPBP-o7}0GI9kRS
z8Q;j5E@P~WaWW>#m?UH6<M4PHU(1*v;{f%=os9n9XVNRN=O2fgb<UVf?IUBVjA=5i
zP0f7vI83V2b5dvQ$w+t-PI?mF^+jlgjF~d#$oN*qESi-)W6vCppG`45@!q#>{=~~N
zR|dUWJCE9dT84R2C2!9lNdYXRTFBTXW4DY&G8W6&!u47r;|CdQWUQ63RK|}oR#3oH
zkuO5a*kC#1{k=mgZ%Fhrr0`_lDjBQE=7!gywHtd)O20VP$yhIAlMG@u$e>(gwvqEr
zeBup1`t`AywPZj)PqxbViT!Vrv8|o6gU$kckmbRl(oWKHE>i8GsUhPp8Gp;zC*x;Y
zRb>1j;};qGWgL`oNXDy^@dsr5D&sd9v?p+FTc=_5Ms!=_n_Cvi!!nM@I4a|J8Faft
zEG3?J5++HQ?vUgyR&VjKj6Y=@=Xg%aI6(`=MVpSNx4adbwoIRr@%&c&D-Ma6(=yJ>
zxIj}(##x$)PkmLoC2Sa+c8)#lD=J=;@sEtlGOmzpoP3FvuiNo{RUZ15IBShf;9nV6
zX_{0J!@DeEg!T5c0^$uBH)$Fw=&0b9jN7zWDNq&Mk#SdsPeEP<_hj6sMO#5u1rKCA
zq`GsVk7PWS@r>e>@r0SDGFrUn(mu?$JEV-<nUQy6>I)hh14A$AoLg3;A1U<)hMv@F
zL|Up*76tYw@8lJuAXY&R1vwSGNwQCDoPul$8oY?hGsU;1XY7uivDp>xsSrIUTJ;va
ztc2W(xBlc&uvL+twoWLOnLe;*Y^S%x#eEXu735P;N<nD_2@3KnD5#(i+ZRyqmV&n#
zC$h}E=qK<FV|u-U&RpcSu!15AiYX|rps0d@FY-s^t5MSOCQ=Cn1WK}`WX&H!BnNhO
z$|xwSKvXbYlFKP5uXwvT-&N4AoSdg`?AAirDkz|tb>zB}#Kj2;I=qORx7XU9Bv<(?
zjd)2x`_Ds^T~_dqA(x)zXbN-%X$q<<Fcg>ysw())=lT^`3W5qMQX8^2mqNW>FQCBT
zB;gAc#CM*CX=KuirIi#UE2zRMs$gXW!}%TsJ=V+=WO|fIWHt6o=gJgny`Yq;pwXh#
zou*ww!Fz-iyssdnAYDOS1(^zJDyXF(LqQz{wH1te;iI=pc2-WTT`5FA(8gUCo<8-B
ze&Oq|EWVzC`n_WtC}>DP!S#W8ly|*Li+R0bNz(CN|JV-{G*<ADf{zt^sGy00<_cOU
zXsTe}IN!)O@;2k(>AA+6=^?7rmYKelHA1BN;a-K73O-Q~R?tR4D+R3;3=tFQ=z3MC
zw<<(Om*L56sUv8NE%UW!KOI+v=pddB3gA-(ofQ0}V4H%@3c4tmrC_##t_nU=FjB!N
z1)nSULcstU4+_3i&`m*a1$`8BSI|R2PX)ac(DrHaR;)^>OOaMB*4gwdVEAQ$a9;&k
zvXt(ppg&ozvq=?Lmq}*yyx_Oe@>dE5DHu#)vzDG6)a@HOGut;*!7%D61tTaVc1XDf
z782<o50sHSj8-s4!6XHf6^x}`P%vJ>*Bn)(ZF?{EO;9kAYhCDAJe5dJD7*eNeDty~
zMZq)$-zYekQ=G~+H|}LjS1>~XX=l>ZFlGNviw*)qHJP+?6nv{-xq=l6<|>${;0Fau
z6?~^)K6y~Ei0b0zS)gE{f|>r%#3CZe2w1FO3G-)0_=uqhX}l4jw_bjvrY<2ZQ&4HN
zkCMU3K1!}suu8!O1sfHtR<K6FS_SJObs3pV_X+7ZHLfuESx<AEx1&GF2vti?*`#2L
zw>V(4f*Qlq$biV_qtfE;#8a}woeJ9(`pYC-P;gPfP6fLZ98z#t!EOb66#SxKKaKWp
zeS2y6Dfn4I+`sYnIwd$I-NvP}5h&O&<$!`;Ig*14eq&H%wYQpiHrYhunRkVMgql&o
zNd>1A{7w_6toVn5KNTFK302&kSHRtOIjz?Bz9G7NT)_!;a>Xy7D{Il?@4sj`DLAX(
zoPyH|&d>r#KVbO>U7cF;2g4<jl?sYPo>x%fyHvtItPTC6;F5wz3LY!Ctl)}*o3yYi
z_*cPI1=ncy(ID)bXUD#9?0g?dI&N^e2TsP;dg`4tZ`0yW>%4-83h1WOU0VMY+^3nv
zS~5tT6l&Z${c5XpV#t61$tM&Z4RRH4sCcH}xq_Dp3dD<_JaTUIh<!or**?_oY4|cd
zq@zXPhfF&9J#w<Dh*2@+N?M!>{X%@KiZ?k)OslFXCvORtcUaj}WLH5+A{%rJ5tB<r
zZWW*D_*_RG6+RVBH8j(ZSEZL|uvx_x75P*osQ6Gt6BYSY6i{KR@T*8v@s^6RD$1#N
zTg5vnimE84qM(XGDvGG^cI?077FKbuVj}I;KkApaLeBAXJn_X<tT_^2N=0cEB~+AD
z@%dis#oI2m3GHAk!+BGt`}&oW$%ClK<yBOmdpjy*)!WwpE*l6c$R<gp&ko20C?k0u
zNbN$#@3@2&6{-r28brmofqCe*MolY`o(URJ|K7N|?o@?rsjyXgM+UW21XMUGs;H={
z!d2-{W>HB+vWki-Hm&p~TG>tsBUgDKoV~z2-hx$G^-ju@o`$PYNGfWmc#lHOQ8`sb
znu_YGcZO}gB=g4c3?k_eUo;4j^YrwN8&cCbZ|aiFKaOW~y6@Chk)fi#iUw5Ey;dC+
zbyZ}lpiSmEF2~nX>7&qYhA#Iml#O<t&%7cuR53H7`1>k8pyOh4BQEP%Or4*u##=Y@
zH)buBz9_5MR7EotU#pm)qPdC|Dtf5ssp2CQAFKFOMJE+4ReYkNt%`OuPE@p35mwPg
z^-j~LmxN|^OwV(*!NhABbX}J`F*Gq(o%Sj^sOYGIp23moK)Vbwo6skX<f^CP&MLZ4
z&#L%BMOPYTs&@gfF^_wEw@X)vz4yAp5221X^M9$Ln~Lr#DA)I09Ob4pYDXy0H;rt1
zspzd@sET1K`l#ruVgNZ&@vxuVPep$f#b5Xq^-WuU-TJyrJ*wtcDh8<-tYQeYLl=i4
z88tUVDvF%6ZQD3hk>M&vs2HtcjEa%mT%)L(zqmsSigPYxOl;?n@mT7_2l>aT7_WlD
zpuG7yI}5gC9Jy{?+L$^~#U#q8Vv&l;G|N=XQSq&csVb(am_co>;v4onou-E3ouCuH
zYPg$U)FM#lX51_lvsE<ADemW`fVQp9RWVP+cPi#n9|aRB3mpWu9Lik4t`^dy+v%+;
z^Z=B|#VVGlSfOI2N?!xOQWeVxHxb{x82_V+q>J(NVTTWziQS(#%Q;D^yw8PIDpspl
zuVMpDKox6M+&G%Cj%INnW$O3dO@ON$&x{diYnJ;C#Jd}5%+p++5z3pT4oNcDs^TYF
z6Eq}f*rsB;ii;}#QL#hCP8CO0{H|h`irp%HQL$ge9u<34{H$Uh*CM`GYy@Py=}q?K
zZ4&4;q64h@jhb3T)@R{gX;|tZT7;|6qZt*4RUBc4>_^Y}-<^tcL+Tw<@du3=6=ziZ
zsp7bbQ!4&aae{ip%JVE;K1tKRyhyitwl2u%=%moGyHB2GJM6z{B8*8c`Ye1_#W@w{
zRa{W<fUn~6uJqACy9M@-D}DZxgi-xsFR8e!;wde~Dz2#bSH&$Aw^dwKagAD!M#3rk
zIxUa0Q_m*mpE5V~NlA%rBvSGwg{R1*y`$nTjaU_rXeCr}pUP4}+w;hh4D7PrRz1Qb
zd-lomSj7`sG@iw+7UWvHExL%MT0d9uLPa(W*)_bR$w;lFAx1+M&AV;&hK8;elLwBL
zDwdQEv<iJZT8h=swqNX<8sb>xJCi|t>JIzQi^+3)rRC6&Q$rpNJ`K4v<kmnp!CLUf
zb^o)lJ13Ql^J*Yq|C}YB%yNp`cY1fdmffk7Uqb;6ehrp}L=A6g-pVFxcw56e8cJy>
zt)ZZXLK=!|pjSc)Ybc_jsD@%1{lkLWJ7>d73qwEMce15~ZnRCW|I8cDB{Y;|ZT*><
zM1J}#Tt-7#&3kw2T@B?ll-JPouCIdTy>CJp$xqrIm&_<{k_JJ8s6o;|B;Bf_5wgE(
zh_Kr)?fy=iN>ntc8Z-^M2B%$u$uSSO=QB7-PL}_e`o<XFr%QddhJc3Z8fuV=T0lcp
z4b?ORHB{74NkcN{-8a*>Wt^{`m{^&URamCH=Z)u~994>jHa%lgDJ1Hnv5E58^4IyE
zeDmH3Wb>YekcLbR^)#ewsHq`C!_7_^wKUYGIrS`@lV6{l`z%a*=ZLSPp)MOxvdndd
znEDzTX!t-wV+{>8G}7?ChHn@6I;>5-**DZTZ2$QzTw+RS>{jPP4fA6fR%;Y&qG9%y
zOaf#>vbly98m?=&q2VJ9A8S~tVU>oK8a~l5Lc>T6tu(aO&_hE{4PmO0hRzzg(9qJ*
zPD6VQ9W?Ch9!q;Cw)T&uEf5_we9BBG4YYCM{<AP`;~_2Wi=bL})$o~yZW_94_*}ym
z8ouOqBUSw04SsGA%JJOm&<1ZdwE3C!n>XTrIUe6jLvIZOHGHL^kA}W9{B|_#ui<3&
z%KgaIC?6$HZge(pNF^|UwR9#Oq+zfIB8Sn~c<c<(FjNC=7kpTbwnun3%*kdr8x#3Q
z4R@4=(HiDy_)fzZ4P!NYqhY#+aT>;Jn51E{hOaeD;D9G;SUNE@W@(5%9CYQjbv?I8
z_b7(b_kT1@)i6!NrMQO2riT38-lu}j^h+!GJUm0gObv6Wk2K7p(f&L<o95l{(Cvkp
zWJ3o5N>awTG{I>X+-QlC^EE8cutdWT8WvK~8Ww3-tl{7G87FVVAMfe?;-mM43v93n
z6S-8Q*Uzy`!*UJvvlgH)%xp+W8I`jDy=-3Ufo}!1NlFSalxwv{@1o*o4Zmnut6`ny
zZFr_l&g(U7(C`xtLTa&n<*7+GYS_dLwOPX!jsD-qoA2~m=!(vvgPlXp^YErw#&!)m
zH0&lP6zaarof@b~cWEGl@ip9(HL27Q^elBR``O2RN6k)JlKV9r&~Qq_UmAYZ@SBEX
zl%4WwIHci-hNE2KVVX)0eMt|6W*I>W;8crzB<c8_))`r@|2+IB_1Y*Y6p~L6)6qFj
z^J`ruC5b%AxWY@}Zw;q4T-5N7hBF$@YA9nRo~N;@Vc1abr|YB_J_3^mCI9|B?t+HB
zd^viFmL_U*s(b%fBCjw{HZ-tLrlnlfaE+O<X(^PKhW$+qw`ldy;p(`p;SSYWN1~3q
z8t!R`)$yi|`x+i-c&_1vhKCv+(L#6M_f*4Us{T^n6DqMo3hiCoTrp+C9HaQE&@&Cg
zdwNSp&l+x>&gm~{RnhT=?p<@f(m)KUvg$}{lR-E}$FH?40_W<7F02p5>By!dua0;f
z*>(I>!_BE9m+pORCx=e2c8X-2TgRY~n@5LFM{sQ_xy`-med4LOKN<z|u{OU>|9<Nk
zC+Hxaq9Rva*QLIt<82*fb(GWbj*fyl=xbf2bQIE2SVu7(#VN3R`HSf2{5)Kg<<;We
z6%ol2oGhu+AGZ4GfImd?*W&)tI?Cv{R3JZf`oiwXB+KilphMH4>)tEA@9GeBNV@l{
zDoMwa(IG*{2wFh+5XXdM9rgEw6&<SXjab4&zBT(j0wfI`rVdMotz-2HAARG(uX|s*
zpyP2KF~C{I{otdc?#@u&ouMGrT}M6gsiP8W$>)1Il66$pQAI~p9Vt3eb#z?ntEMBS
zdgAPql;WD)W?5>Qj)xr+s_Uph0q?Mgc`+pIeshuV)lev;BVEVYBk?tLWay})qn3`^
zIzC$FJqw^?)k~)?Co@^nR|-i*H<?M*Ku1FzAM0qTqmhpHIk2WWKG3mYZt9Ay_J=xh
z^b0lC@m_<_vK(Tcy@^e9-2B+3k5e_%(OgFh@=5mNeT%vzd_BEoq{IsCLZ9eprK1B?
zM@MTOW^Ht|)e)w4s}y>8Cxaf{rhVsYr(<(4r9F+JQ6U1?UU=*Lr#d=Ox9aFZ<Nsd%
zL6dx4zDjfRi?r9#<&$7nj&tYp@E1D1)Um?AN(0?=bf;gS27Cs3&;Zl1SI0gby>#@}
zF-ym69es54)iH)fi;jLe`s*01V+ea2pkttpuNZ&QHGz&nI!I0$;pV>Owd7D8!*q<)
zF^X!@Gj=#zj?h5{r2S`b=;TJvOsZ00G_}l?_{#?x?QIeor(?X1sXC_V_*%yVvez-0
z^G?(u^zcggv5dQGn@yWxy1d9gMaRsxj@ie%N%9TN`r8$z>zKjz$4<n~WKeg8cLjT9
zZD{Vvj5#{K)v-*+avgJZ%+s-0#}Xai>6ou$A=y*2Xo(ASob)I5e<QEGDw77)`oF!~
z+Kbp*9KX~3gN~(~{E;H$FV*~fDV{QtS!U<h6*^Yx*h+I>$0{1|G(2={)Uig#S{>_j
ztf$HKQYi9<_~DL*1kOGWSJ~%YJMGq6o4Sd*m_2Wyk#oW>bjKo++|n`OCwrTY?K*Z*
zr`#8I=-5fqVU*N0rog^_a@hgN^b&4*6KS`OJygU#>-qEWpraYY{H)^_9glQ8*0Ep5
z0UhUboTpVw$8S20>o}p~ppHX2e%EnK$6*~ubR4D8sLAx@w1u~l-+mER7Nl<dz@p?I
zv}#T8{i%E3Sfi-OX4<>*)DGz<Iqbi6oYrwl$6uVibxO+Es{%=Cw=-;TR)_H-OyrYl
zDO*d57j#^t0k7kRj(=zgVw-<;T&4wlith@I>czhF7vZ7xy|P-r2w&B4jn+E;z|?>j
z;TbQ&H+9@1V;%Qs%J+%At>X?g?=E}Yi!eRcpx1B+-)H6ltqkm+c>1+MJiUiPZlCCQ
zsw1c2EnLrZJlB!Mz#9f$=y*v@WcXjP)Svt4Sl&8em>tSp-k;S#jDa`<*$m|F9UE&P
zXYbfI4ea@ho{D;x8J+Uf(Rw9hH@toIISiazm)d!B?dp3nTjg?d8CX75%1y?q7r@t3
zrMw2>4Ky<FzJYuO5)4=dYy<fX6fnFmEWB$V(ZE{<iW?|l;B5o%7${<(sDXlp_xX-O
z1_~RXT9ZTisYQcf<FuBioD_GD_kK+=1BR0lQ%<CtZzT<sGEm+Ced43Efiecl8YpLg
z9`S6tm|S3o{cyWY9_S4naz*l+7v(EZz#*9)4<#883@8RvvZrY8J9J)?4DT$~v_pz)
zfX-iS)~AlkURk4cW=u$@at&n6O{GgFN}5di4g8W<r0Xb>L<S5v2C5sVVZbF<2C5pU
zW}u>hN(L&>178Dc4(B0|Y@jlCQ^#p;{o*2pM?V{hPce|ne42sAOMPQc#<uz`o<NQx
z-pqZ^K*&I*fqDkg4b(JH%Rp^PCMEtcG@0(=((9!e2I?5zzP`FF`#yE1xKi!S8N|>_
zrcWN_pU^M1zJUf@N<)&x-5%Krkn@zQ!Ut5Sf&K;t82HdY69b<b=wzU&fo29;8u)~B
zH8=2)fsYOJ>z2@hI_t;O0j<&r)6x-<tqim_(9S@617QPg474?{%MG=N7jL!q<cQfu
z$+H>9?g<^3r;qe@G!Q#4gi|(|Ep91wHqgaDcUsa7bT#mqfiDbvY2b5e-cs2P<SFpZ
z{rJw+Qs#|H?(oz{l8$Z$NG?lvdm89vptpfO1{S0yj_03OOIv5@OD*<id_S%N)py~n
z5d9$9_EH#V;42z<2EH*c$iQF&V+@QnFvP%61H%oBF!19f--14|!>E6M$)xR4Jsvd}
zNs$K=M;RDR^J_q;*^JDmry59)GkTxTAUw{%cmtCROeUY7Bz$dPf`N(Dj59Kiz6f8Q
zlX<>!3SqrU$`k|tz6ej{s3>ptm*E@-8<l(+o^D`<frZ2ym`Nktz+9@Jf!PM;82Hve
z$%9_@wTUh{Bv(`;lHYL=^QqznC>RQ<TlsqK%P<w!;AMD`fyGo81Ir97G4QZK@CO4+
zxoC3I>1Fu98x2RjYS8|PP^3!Aa%#i#-l>h;)=f`dWni^|x+XGBtTC|GKvokmCe|5P
zZ{VUq56iH@z(xbV8no14lYz|!c2X-D*kWKSjjJ>9+YOwU?mIr+_mhEb2F6|RE}nD8
z*f%<d2<)KsC&u19*V;|%iGiPKav2!)z_*tp+(#XhT^#W;JojaoK5j|&`<XvL!DJI7
z%<n5R4;nZ`r5HF#F}w^PHgMFy?*@(-c=o+-LeJ2#m*HbHyAAwl;5d7@`7(TFX6WIh
z%>LIK5FpPnufnGc{AJ)QEq4a~HgMX&8S4EO!Q!vNBq<9?=T*4IE$2L`W`^p&3SThr
zbY|#_uR^pSkijJbmkr!AaNocc>SY5r4BRwum9ACxTGwgh6!$J6uF-nfGkL=M){IhO
ztrju2I3(il7`V+i-*hh|I_`3^^xV(`>N~1tY4N#%M|264OMF5_8+c5^ENcNu(p45c
z@FhS`fu9+8uZFvzL8BK2UK)7C8MByp!$hrZ-p!fK|0L5V4hT>(*2J48VB%d9aVD~v
zc-y4MPsnZ}hlzY95=`VYk;?>q1Sj6amqYX9Hj&4K&-50|<UmS+s$R6)K1rtE0wm}C
z6QB25e6!KM{3Z&Rc*_KBlucy$_ah(ub~suwg?_W_1ASx6Eoh>UiIOHtnJ8?ch>2n*
ziksf)Y|RK?Q4@3!9$mrv6+lc06EzRV*Oa_uX%l5klr>S##GI^o-x{0van1sCls6H0
z<g36L6TS-3dQK~0<HK%}3Bg1~6O~MeCL|N43BL*1gu=!;%RRT^RTCOn#@IzOy>s`+
z4N{c9;tdmbnkN%!nXpYbCS0};nE2SAxa^Pk-<GD%X8WLtMk9Qbq`XzX3MHHLF&w;S
zB4nb9iK-^jOjI{f%|r@&NM$*rW5(3zm3*gH-l;Hyzk^r9#NBD3VEgoRsyp?diP|Q5
z(PphP@x*&(oSi@&6OX_1=5MHN9g_7-)Hm^iiKQkQm}qEXkcq(*n~C>LbTZM|#0MrC
zoA|^;D-$1@Xkwzdi5BdzDRuqv*k&ej{}iTgKQ1p*Z)IY`kEpV&ZAm`=Ngg*SROp&B
zzD8))b+6pk)XOH?nP_jK4TW7Q+vH&-+fug<4i(QKzS!m2bTIL4YGOwdpR%7}TvNKG
zTySM3mD0sTR}+0q^fmFBiO)@RH_^ky7bfQS&hw>-ZdAljiJmFYCyvQmxOduxs~J71
zLD*Yw6Lg1v?@u<}&;MeS)MicwY5SSzZ(^W{p@GB!)UAKU6QHAfJEv+phrn0VDeatu
zGYy82jfq(%W}6shVz`M(CMKI0VPd3-aVEx_7-eF#i7_U|n%-3|U85HNFi6Fbq`>CA
z3ctKzeQjcb2?7&29#X{~X+$ytrkI$@2GdPUGw}^o@N5EkAp3h^ktF$?VPYnG$j%?u
zuCU*oL+xf_Ayw1FTod!CK}^ucW;=cx`p!iDi}9(~6NY{pntw|ma)Alr2`}Pip@v$*
zU@^;vIqP`OH0i5@CYG7lPku}+XVqpCTTHAlvC_mU6RS<EH?e`%e-mqI<!9hqkxCEK
zAMCYA5~hdm8)-FIk-CYd@Ui&EUDF8DL7z3-YT_poyG-mhvCYJG6FaHVDyGn#fgQ9m
z-1QOu=~bBI?WrE#V`4AWt6usq)H35k`%L`INy0>utiLIhUVx>YhrgQm&BQqq=S>_m
zamd686DLg^HgSa3B@=&|IBMc|6UV4Js}c^}PM&Z(nYK0&ILSkfz;Wt@+sUbY6MEcE
zo;oD$l!@3a8Go7ho0hvg1qh#}`O-La#>82gJL&1aZq6X`0cWS=1rrkoBwsdh#l%Gu
z|CqSMZFp#Dt?}KwJ23mMCjV<f{YX5t%6FAI`edxO%BFp@x5xT!P&-hNVH^+RmWkW6
zjx|HMX1GJMhGtMY+Na~5iTfrVq~T#29+-GY-BA&1D&i4Ma})Q1xF5t56HjR>+2~~B
znTh8#KK&T&#|s)fv_SbWr{ue@Ol0xH@#Bjw)*F7rZHf!{k*`xsRzG6=i1lN77pqEF
z>)$Tco22z4n;+Skl>NxzM@~OV`ccY{Tz=$cz97pye&qL~fFC|T@-h=oZv9AL+@n_<
zx$WO8E&>QAGXFNqxBO_k$upqi9Y4mhaUnknv$lvI#Tbybs2^XlmN4D*DG}w{o(+`t
zql_OSGi6!6%d#BH@_tlcp!JHQZ?{qQS(TcQOkyms>=yMb`LT$x;)m*o=7;Ww#WoS1
zG8&vTS^CL_?QKq$uH)5Zco(bArnq`ttvp%U1pTPUjbF)+PyA@*M=~d=J1YB8#gD3-
ztj4mwA1QvM`jO^Gb!IaBsKKBn%lBA@Sf;ZiKb;m-s>QfAOaIh@MAA`*lXd;bWKfS~
z;&+uu)xeL2el+sqeLq?-{{hRUEE}`@kR=&6p+4$jJ-Qxf#!PdTx8+z;eZ=@<mMvM%
z;L=+&?&3#RKf;X3xDEM<;&y(tkKzstI<owfWhXy6Gl;nnSURQPXN<|iKtDdG(MuzN
znch*pn;+d7_lPn*{piK`Aji{(abK4GSoUW*fF*hUdP>2s{20W^!7S%bDL5pm9qPw0
z#>1n`2nHi*Y&7!PbBrH<zVq(4e$1sY%y=Bjxl^t248Hbb0)vSx$#{|<ll_?D$5cP2
zF*%FnH-5~B+D!N3W+;w~>6pnRC1*33!*a|jPdm?#@BHX#p_hgEek`E5Y~fAI3u&Pr
z`~3LXkMC(<`?1)MC7f}WA3yl9)Q|OkZ1CepCRg~elEE@RmNO`w;`v|2n7~>FtNmCL
zWlE*Qt$Ph`WV|iPZ1Q8XA6q!N)sLTO^<anOHsX0Zt9Gy?W@i-aW<VwG@ndfkQ{G?v
z*iUWZ$1Oh&`0=YBfBEsZAHT89Q9pk7<6zYO5QD>h9EmcK(vL-we*D28LLO&)g5^m+
zPSNr;&58s`2B(?7;KxNj&M-d9k|I3E;JhCZV`Bbc=Bgi;7+j88USaSr%SfTu{J0*~
z-e5pZZu@bEaTe~uyM8>4+T3Gs-;W1=JoMvHlz+nD@oUW+@&AnZ=PY0N@sbT*agqw6
z3ckTbWMvt{GE$2;3)w8xwUB8cyM-JU%2_CHA*Y307T&V(HXG-*kdHwgmQ;5igS-~v
z8AQTJu#lgV5$6RMCq@n4u~0CAEfiuveu^<DY@rB)qAVlXNn4zgC0LfU{@3!QIZ4_w
z49c>MWT{|5w_sS_hdbZ3kYquyps|4%&80AqEZWxNO`QMAQeR6_bxaF>3&|ELTd-K=
zSa2EG76J_Z%O12)F`Aw7R{Aego&{Abq*zF`P?c?}MJ*{i9cdQcvk<aSo%tHCY11v#
zw2)z;PL!<0fO6Hg{x`*_II2SAsK?r-7MfY8Z=nGv8(L^&;r*z6q`n_mXl&ubsJA8z
zBArME%`LRB@TrAP%ztDd%z#uMTWD$F6U&=5tt_;TdWZx-fwhS;Z5gz)(B47^#vNHk
z0-&-wTj&yPsIC@1v(P=7_jBgIwD1Kpk-*4#w`j6Q)RI)aE%c#*XQP0Pz83mf*v8ua
z76w>YY+;Foffl~9FwMd@tQurtn1$ht2eTYvVJHJCg?x^%Fftn3DCWPmFu}rT3u8Dr
zmgP8>WIvukq-qlxPi9HpCcUPbVqt2OC*$dizhgOr<xC5+EX<DDe9K@C%Sa>4Wjrq$
z8~LBl%mNDw84&Y5gGDSOxqh&)%ED?3OPTzU<uVJ)8LVI#34SGeCcMVNTIRP}SjS)^
zOY*;-!3LI*T$>ngX1RrBq}-pPqi#EsJ1p$9u*<@33s)^%v#`gaU2HgR;e>^K7JjyH
z(83`Lzpy=(^{a*bQG9?wYPT5Te~aS77LG9fgQearh768c_}#*>C`0zd|H(<hWN^~L
zDGTQ<TwwAqmS<T0ZQ=B5mS-8CV;L!$JY2N!Pt=AyU$StSlUG>&%Q6xP8DF<>!$KAt
zZ`ioWs)rUHS-554wuL*)+_P|>!ChJ?xPp;5Nj_kn$j26*Fn(d-DFf0zx9}{Ay*hGD
zUs`y@Bry>(tBn{Nd2IM>Z_$gjk=;fP#&6n)vysh4#FDgBR!&ysW=Tvg`~M$RURLF^
z5g)aQWKZBE;Y1s6*(jN%&4<jqZ6hga`Hqc(HVWA&%uI0`B^VU3QItV3mjAUwNlun!
zS;|If24z_O7jroq<!w}8l0Mn|?rYkJjbKBxA=!{^q}iy>28s>WM$m?8L!%a8($A7=
zZP+kh^JCetqsf2`hufsxR4dYA6<JlqMpYY?7$>u=%ra7!YK+M~g#iVY`kI#b8l23u
z@t%#4jdU9|nW=4~Rx}HlMM})DQHRO8(cX!aQqM+x8x2_1$j18&8b)m>?+468j2lP!
zCQLSE*~~_B8!Z@zZM3oR5o5~xv5l5CKH+35maU^B=fA#a8*Q0(Hrm_hz-Aqz9wKHW
zJKN}D;};kEU39hanT@V4eI^&5+xWu9?*SYOcw_ZT>dgR>0_bL=J3HxNV~LF)827Z%
z%SLY-eQ5EwG10~(8~tqbw=vwt2pa=z474%W#t^pu%EllYtEXDEy2aEIVk2@WtA<5*
zA(jfIgR~=UjIuG-#yB<@&2kJ&%IMj!9B<=m8xyFHIPZTdDrK^bDK_TXm}g_EjcGP!
z+L&eI8+Jk-X4se>aTv+Va<+{*HooO}{ww7_x8E_pz{Wxb^SNBoe$RduMZHlli=&vF
zEVc2Yjel%hva!s@a#kI-vBJhm8(VGsWMdUMWPT&dH8$2WSZiY)l@e_+^0tBbNPQ`}
z$;M_ITmEkgY_qZ5#(uWkVPmI_JvR1o%)4ytW<Wl@z7S$b?qkcJX-Gs=(Z-Ba{D6&L
z+2A)D2W=dRmKABANF+yW9Ho(C<Cu+;Ha%$a#?K!%j<dr*IT^7(5vdM$9~J$Vjk7k+
z+4$SWX*NE?{v+Y#D*Wzw8y9R`j0P5I3NLbw|FVrMHgX4$CxCx#T($9(ZqC@aX5%^+
z`q0J=2Dfe8p|gOETM<{ZKF=yhA>Flc&&GWl4>&L{NUnYaL<%DO$i`zEPuNu?1|px^
zcwr+pfHwnpY2y`Zv+~@@62Kb_$e1i6-bls-yxt@b7eKavHyv`aS@r;OaMH8n?k13n
z87~GQ))zqD0Lrj&d;s|ZC=@{901^VoAHdsD%K`x;2JjY@^4h45ID997g0F={WRU=h
z22ebJ5}dtQR2#`#GJsOdl#Y6f#P**o8$h`L%Ck)cmh{E{|JQomVuS$102Z@K3P28^
zO#p2JPy$c`NMT-MNj}{G^Z<+iOlGVA>;U|XBP|dqmvDfibzUng7(m4UDzR~L0F?u%
z!Z;F4)c~qRlmE4CY5-{gR1cs=0L=nu9>9A6gaT*~K*Ipi1E?85odD`mDV&!|uN^Hh
zBkGOF%mC^IP(Nzp`R5}NbE5#>58%T9ny|qK?4dDBGKkbD5@gfYJP_Z4ldS{zD1eUx
zXc@pK0kmS0{Qoa6ucBle{x7c(+b)3i0gMY^Jd+&)=+B^I0G|fXDS*xabPu3M09}~>
zEP&4g=*mqRiRTOEzoccK<D}v|{<Y!MGk`v9(<^}9(Kd<X?HfQpR*`+A1qK8#Fo3TD
z7{vU@00uJ{#&Sr2o)r9_u{u0}5yZSUYeoeynvKT<FgB_p|B;ZW+^++e$p#ZxP7GjD
z0Fwil62Nq3rUo!AfNvQ8zt)Q`faGBYyCsLS0+`Kaa{~A-fcXJ@8^GKE<}vwtJ1mGY
z-!oXqG7{3F2<{fMguxF1EM@Rx0J|703t)KwD*{*<z=i-e2C$0x)d8$wKtZkzU>&#2
z`Un$kf3M=*Vm1Y^Ie={eY!6^d09)DSC$^7tL_|j7*}<K=^S`F!@wq#IJ)CQA0KWvV
zpYcAHKSx{RKmfl6a4>*FQRX)`i1g0k0FH3-XoQTO(<4RyL1X~GIXLLxcmOA83^*9%
z;A8-&Xr?=~&%`@N{1w3E0IslyzgeCR;7kB#131S?vbo6Md;k}s3<dB{6km$g`riPq
z1`zKcpMz@wTo2$$08azB5x`A0z8AnP26tG}_`J<6L#=d|nMl3vGky@jLk5omc>J2y
ztDO-0EP&?$#5#D>!3$da*&wTfR{><<dcEOzW7wMl(FK8W#juJ19dQn_ImqoGkAv(E
zayZE8AQ$JNBD_*wpLgA2e4Ll~yips^vk;rWd=Upl9praVz(Jyew;a6VpdhQ>ju!f#
z&qB-;CO^?ZMXF*BiaU7ML6U<K4oW&G=b*fUQVvQxDC3}Pv|P_mboNC&L_Ak;yuW+-
zuM|=V4nzkklM+kWff6k@Vj1zEu{P3NrUSo&Rt{P_upHQA@1Qmt1RPXzkmA5`;5rC8
zsOX@wgDR}8#4?%vliSGpQ<cg8`hp6jBbCV-4$>G9Q$1?-o`VqMbO$w~p^~>qcaUX<
zgGLVCcTmScT?d&C>al$THm)D_Lza}KVI;}z{DFhU4nAh)LkCS9G;`3Lb2W|Tij>lV
zlOIL%dZn`m^4ZeCC(K9uhZ%Qu@R@@)4%%|Eor6vc+B@jLpreCN8AK`)DWx+r<fjY8
z5M6ISchH^rFQWEevbI|^*~39k#=RU2V9?t^9|wIIN1`Ix&q4qH7$J7xf4E!BV8^@c
zA)8rD4skHl!7#?dSx#~=!of%fqc}O<!Pg8%I~c=&@{V;dE{dsA6QXz`w<j6ULHuL~
zQyff<YNs=p=HMF!|J8a1Cuc^<*$(D7_}0N(2WuRxWqzK69~pe-V7`L|4i-9C!p!$9
z7dcqWrAKNP=`t$f2M0^p;6G-WgXIoZFu985%GV4i^3{=Kx0rPf);rk2$qg(wIoQl#
zW5gypHnup}>fk2_+nC?}TAxz6k)n4x*yUiigFOy@cJK>Z?q#_zYX4uG?00a$!LR?9
zk7y5Z4;FL1emv~ph=ZdJey5et!Al3n9Q@(n5xey|g26R93phAI>%W6j4lX+Q$H89?
z{&sNI!8r$~+3XC<NGTC{o|y};^E?+WIk@cL-zZO!&~b&MC2*B_0#xzq4sJNO>EM=w
z`^?{FNwM8!aEE22iSE6IA25FS8uOU(6P8aMJY(>jWn{d)a*)ME0oPjw-(VT%BAbh>
zjAK}mD%QoDj3b2-lifuw7r9;Jh}z_Iz4e(If&T2u=OSN}&&wd58{aeF)<|%XpX{Tv
zn8-vIZ@G9onv4EDl1h2UML~8OX_>+<iZEZ4WyBT9;x0<KDCwe<i}zfFT$FZE#zobr
zx3Vq-7ov-D%#>$Y!37w+>mrH4{~U5uk_*{|<HBW?;?fs~ypU8E8Ux*h!GK7rNTe=)
z7nTb<$_F@j&wy(kbWxF2m0eVd+9WfGc%W)liSiML)i{~rBGpA2<LWMIM6$3?FQX8f
z?xLoPHWA)MZ3azUWVoo~qLGXDUDRc=o{RbnGXIOMTTBBN4Wr%hzeZr^AF$<zE*dk4
z)RbhCXx?Tnn!9Mh+LkUpaq*Fhk2x8MpJXdewssMY@)1>}S=ut$&P96{9b9zeWM`J2
zvh2ixc>^FiTDmY#aV|W8&s==&;tLmFy68q@%*7fP-TCg&RF*wl^mNh7MQ;}qnCau9
zuZv+WhP&wJqQ8ql%nxAs70a=sw1F<Y3Z&i77DJ_!?jAGP#Sj-mnT+s6l4^vDkuJs%
z?_v}UyzVii9nDS%(?K4_agvP3vjG7*zJ3i)bTNr-CbOIpwWqw(TzunVx{DbumNGvx
zqGdVD#cUUIqV{tceCr|-_Pi+nos0R57epB{_};}L7mK6Jl4vf9?T0A-k+oEdWiFPx
zSP_kRrHfUpiWEe0Eho3IT*s39tY@%+<wh5qqWtElpRF!_Vse{{-BIm!20L8rWUwpB
zYu#h^Fy6~@AIqOvUgK_}5)Zh@62u!p{OaO27YAJ&qPmbgA2{sdh>JUnDS6bz6~@0u
znPV>gprPgBI5U5__?y8A7bl}Or(9gfTZposc5%kV#VCK)#rY^c#~@;M!Nu>Z;>i9V
z7nfXIj@m@Dr23bct1Pd%xX$1P%UdjOvfRl|ZZocVq|jXk_g+&yVEm9J759i%i9aem
zX8FX$Q|6zse9rO(%a<%)u{_H~WDO!Fh|WQD2_iO#H-pfE(1VBzB3lrb3cXt<i0nb+
z2%-chiOCs6fgln&nJb9gLF5U-7sLniE0H!nh`dqDH<rW^laG@LLFA9}zcj4$RuH9E
z#}#4b?I7M^P>^L|mW5bGJVazsW{R;a&e_R%NlunxS(+u01y;wE4We8S<)ci6Anq;p
zf}w-{nvvwYLA-lCki=35LX42t0}?ZG5K5F$nV~F35M~fHgQ&$Se-KrJs1}43gdId6
z2q%b2tRiEV!GsHeU=S69FtW5El3bBY4x%yx3V@PTf*>0LDM6$LQ9XznoJ?a$twaZD
zBaJ}dJ?29!(^-z&7*{)pj38PE5e}kG5Ost9A5~`oE>-ot{|gs}M(Hl4-b;Gniond7
zo^z&W=<e?B?o>n(B&0!F5kX2yP$UdG1qtaA5LEQP<~`r-@BW|XJn!>a?_PWDIA`_@
zT)2Z~Ry1d8Ju4a!q;Gvf18PI6Osp}X2~~2M5@eDstY~SKZ`?x%D_U96+KRSpGCN9U
z8!Ps63GL|1^2Ib;JCY@orF9|qP)=7uH)?n4l#Yo7_Ozmx3~@H`6!oSr1^Zdi--@rS
z*lxuDD+XGz$cj&_7{r8;R*WJHrVgPFr4F-VI6<n7u*&yCC59Mn#Tc5itQc#>I4h>8
zobgsnCQqPFq)t+;1$YbI*<zV$#Wb4JsWYfje5T5L*NXSZ_O?Z3M7iF#%5P@C2UdJY
ze~uL&$pdgsd&viKt`#3!F`rHIsD&>lo{9zJg;pFsmDmu;7hOzKV5JpH$V-*8%!=jY
z70P*Sg0{+v)mD6J#TuHQTd`J7OTH>MTCt9=+4VBFcsZ%LfjPpPRE5t7GvnnpTk(Yz
zTderfifyXZ$47dr6=&}zCM>O@JFM7g#jjReW4OzT<5v7&#cqaQTd~KAy;khA;yYQI
zJU><(u;P#v-!kDFx!0~1Qs*GU6QvUyDA$a=iQ6YT_PrHH<g{n&lpP6EuA>Z_a6a-(
z{>box6&J1eiTpG51UK`f6{oB?ZN(WY&e4}mKC3|Xxld9Tan92bzC^f6y-bx6f3e~U
zSzh41YbKUoB;Ncwod?t#qE`GyzE8bn#cjeJEAA2QTJbuct7Yf3|6bjdJ6ayH^%3<k
zRq8+CYwc-A%QGvUTT$GG67ugqt$4wNqBguF{AI=8R{Tkpf8;40Uy%#j5_jhxEB>`2
zi7eskHe|3NBg14Hvf7Z1oQay5YOx^;LGt~L6Axi_hB>HmH04ySxopU-_%$2;d;as#
z%uCHj&2K{iLP2UFs(H#4Auo$2Zfh|c+WwX%SFODk(ULZ3Qr3o2Hk7uZ_c@fYp(f!C
zsyJ`jP*!m{8_JU_P%GLJ-^D9ADK=D7Ih6>Nsa2>|ZRqtlgQQhw_!d>dR6-3Kp1(@8
z%9TdvZJT_fQzDe>9YSrJ{6h6aSXcR08*Jo-tn9GCX+tX;TH7#yj>`tO4IUf3HZ)Yd
ze1v*7=r;80lPU!bI({1hDkn$?*$^f~s8MRnhB#qdQWv?*8P=!Mz=n>`{<n%oHZ-Ow
z2~7x1ZD^*P<~FoY+>%f<Vre7yg}lawc7#bbOeVCqp@S4Bce0@eK`M79bfI>ocC(?o
zYE9l~=_%VTp-sM#79(sJX+vLGwGBg=(_c1<FoZhLhCu}BD8*mZFE`kRdL3JsYc$Pa
zOc-v%@9Ppdqih&WXS@w#2xF<zS6au}5=G2X6X*+1l$QqUPqASt&BZoMQ>`D`FkSHs
z!c6MBHoQleMSY(-n<_Owuwhbz#6WV*q4|*wb8VPM{@8{EHu)XziPrh@T&+*c{J@5U
zE~5Dfb?Jgy;w&KxEF~<XF1KNY@>dd8QCHjWDM8L^=_1!!hU;utPY`E=4I342vf(rG
z=gQe^!x!X~NMb%)ZP;c*svR}#_{xUu@~X5WZ;_N8Htdup4PR-AQFhsI-zNXgAG>Y%
z+J-%<+7%my=hODuu+N75HXN|w8yim8aMFf@%sEayME#cf9aU-`w&8p75gY#D%{^+v
zF*<Y9bN&OvA8q)F@H5p+K1Du9Jxx7BmC9#r_>%>N&(pj>y=cQFm2=sKUldP&kl4(t
zHvCHGn)0vPaD#l)hTm+sMZQbDO}#@sS0b^Ka@}K?Ct|tfOL-{yzLei>ctm(i73YZ!
zogZfqcxuBlIfdl#w_%QkkGRh-Y$&Rs82Kfu{Ym}HhQH<6mW{IEUpd}2WY>_SA%lj@
z8Y~(zYDm^_{ci0)*IP`@#874>VHPbhsBl(R{whzBaGUj(92#<J$giP*hFltQYj{n=
z>vGfcBt`jnNHwXGM?+o>`83D}e)$LF@?JTa*YSI`3$kEg4MhlrG{|Nq-b~M-!#Ybz
zKJ&#jl+Z9r!)Og9HI&j2WpZf^Wi-^*P)EZX8s4OtrlG8cavG{?sHUO3h6)-|G*r@1
zkqJ^+zJFa*CN`S&g)3{QqFOhvw`3e?5v@)qmHHNSz}ElWsTvw;(vjud|Dx&J<XY5s
zs8Ullp)NT<wQ8_w&@|XJcr<u5I5arf<kBD;B|B_xvh;P!PTsFA#eEud4SuG{KfE`X
zDGBmnW9z-zah?o8wu%|j5Y`aUFm^*?>tqAv(TZt^YpAE8zJ@Lux@u^kp`nJ>s#hZo
zO*Ays(3p;SwlvewTth3~_ZGaNEj5_;Mc(~oth5=;MP-d`G_=*wPD6VQomgRf-=fmg
zK|@DALV4|p16i~)Tjk`Dr?;Di?ivPZ7_6a(hMsKdtD%>GhCU3X*NZBd{@W9Qej56-
zNqB&Uf!rn8f7vK0J4C}!wvNy+OdgVmWw-{pkCH42J%WjQH&RuWnU9f;(lABCRGQ<c
z6RG1hOi-E9eG+*x_dz;JooVu*YM7<reGM}-%w)oQ8s1gC<mr+$^RSf)!m~Aes9HZD
zNGY@0T!w3@^E7;{VZMe1@*?e&x`yUL4U07_AupnSLN&WDC9kF~)3BT%Bd*Y}lDtYe
z=1e}-5@(CB)IU<Y$T|({nXrMnQN7qVG5n1Bx$LBdFUV5)OTrdr${e;bG>dPic~`?d
z4LdaK)Ub=gUDfcbhTY8kTEiZido}#1YVITK*Kk0?HyREy{7%DR4Tn_Dw}he9GJQ`t
zs^J*nNV;2dT*D74U#4Vk(NA=Krk>DnQo|_?rx{+>aE5SR!vzgzHJnRV&3rjr)NqM8
zvUYjnmS^er^_E}gTv5K5va8qRndj0Z)7+378g4S@H<fvdaGQEZ!zW3JC+fb22Xczq
z6OWBt4>kOu;f01rOnXdyLY3CvH9RFhqdr%@`H;V4n3<*iB>zSITf-|&etmtS{=ahm
z+mV4e9lUiis&O+BlI@WHA7rM9T2yNmLRM-vYIZwvsMefznD1q|?Rd?O*Ogz4kcXPr
zj(mjtG6bQZ9fj>ELM~*7oN_W^(?t~oiqe$OG>bDVVMj^Ayt9cJ%2nEqGIoso3vbx*
zw=d;QJIdN|pm0h#JIdQ}uuE#T)-8JME-Fq1J1W`%J5rb+PBl9!DXwfs6~$HUX!NSN
zB*<0Wj<=M*^`F`&eJM31(}}81q{*k9{<Yq=qm~`-*iqY#M|M26qmCVQ?bv6>XBT0$
z!)8YlJDS>|*<q&{raJ8K5u8*PRl2wd9y`3s`7UY^UuS4g{dNRYYtW96V)@r-k{Pih
zN+(8*tJZpi`qT#0hSWxOG$w3qq)GQ?b~Lx6haElbXhC1h4tBIu+{%vD<Tli{)OOVN
zRLS4`X7i4UJK52h+(kKE?dV4CPL<CF(nTiU%Z@&F^p)qTSW0g@zOL8e)@Af#&M-TM
z6Z+dRfH06ch&q@mMTQWDQa3NGFhZUUJJ#B<&W=%bjJ9Jjo5t8N){fbBd|<~oI@9f#
zVaIqoCNP{xoo2@*J0{yPh2d1{q^6x@Ah`rgM|h?kv)KABRh;)!m-h)~g%9nR!*GEe
z9}zyL&ZW+yN?%Eq%JbE@3+XSSenK^?Eg>(pV;NyNbrp35btUVV$*b-7)Q&Z(ra8)b
zrfs(43p+ND#otKSB&wXxSx1`W+G58x`M__-m#THEYTd4!-FECyywi?dip`mPZO0xu
zd(-**<yFS;8|pE6@e&SEzop9P-w_T|zo#Cd9<^h2QWr@$&hQ62ezfB!JASs~I-L`C
zoV3dqXC#&&*C{(LkWbrjhH#d8o_dbjyk>356uxN3B|9$Dyh8mYU4oe-`YX+AcF2P#
z;SD=(+VPtmx9qsjrrT6$x=Xl2l~VTz=AaMA4^@*S%WL6@oG=d5cHnnAp4#!uj^}d5
zI*`YaSj!)B^x5%>U0zUMQvam>MU^w;A3OdfXLlfp9W7L8%HTjo2a*}eU$bN)Naf59
zn1_#W76-D@&qfWgRAPDzb2^Yq^~&wQYl`KL=XD^T1J&u|cc6d+B^@Z`KtVc1sfDP8
zsYR&&ja!UiacT*w3|*Qaqo+7f#(_5+cvCqQ94PBRImiE<isjj47OY4{x^-1@pt9;)
z#eu5iYE*NLZ;?}}HK;YIX;hiR+YZzs%b_P>9S7<<u+@QW4p<$qInc?0&JJiQKjMJh
z0fz%l<rogQ$Zo2K>UF?J&>b)@`5-Oz<?_=HI1nU+sL~o%5OpBtK-__PbXq%5pCEl(
zI?%v@h721y(8PhJ<i^yab~Gb2r%Jv!qAeJjFR@mR|Cw!QwsoML1MSHj9f`~is;}(1
z*|CcQT^(3YzncTy9T@Mx1P6LJ(9?l|4h(Xjmjk^W=))Wt)VyTqz7F(LBlc(O099X#
z4<-+HU<6@^14C8oFiu7)jHEM$I!d*UcE}gyB$g)ESO><@H(!Gj9hk&$jsue&nBu@p
z2i|pHs_HvU^_@;<2Gy+g9(lIPoJDw_Y8L;%fe#s)`5!qj*MWI-7CG>V10R#;Q)O-o
z99T&1yP>Fri^<C!SmD4D@=}$#%mK-1Y{yDEpHf$;*3|?_SmVH2#Zqvc<A3k|!W$ge
zsPZ?NK>gf-&4e$gTO9aOwuQSV?^Dw8D+jhaaL<AJ4(xDXrvt|w_`!i)4(xW|d-nR;
zfjxxp9N0^cj^7aWIk2B_K>14+Rye5m5aC<um<1IMEC1f`3P%(lb>JAe7WGF5ev*6S
zz!e96rgNTpf_l<{Q-sshv(z)x_FT?6vXr_&ka=Eo;F5ZrE-SdIT5me=EBPArI`xKX
zeZH{5Z;EdbZaZ*?a98=`8)*+5c<4ZJXJS7eDgUJdkI7Hu@FzT_KBqpT%7gTW11}Vt
z&()s}{N=#kG^Jo6Ctf-5j|2b8;qOFFCvtJ13{GTnBC``2874aux7EC}(#zsRRwuGK
zk%g_MpPih8YTkX*&+Wu(PUNRAeP4GXFFB8L%(Q&Y#Ah2xkgEWj3UW{h3o|UD@{1CR
z$yD3bk=7DUl%!LN3MWcCQHK166XghRQYE>p^MCJL<&{%`P?0JhI8&5giBQ>zbNrZH
z&57zxobchK4{te<>cj;vE_zYJiJGz^5Au1C=EU1hw0EI{3$>hh$B7kAtaPHb6Lp+u
z>_ihM>N;U{!tX@D37ZpNMpHag%?UffL3L4`P6W4DB*)EApcz9iLmyRl!ceV}93;n_
zh!aB8Ff~GrI$;)(YW3(ebfP|?0o5F(kz%RYRJu4Z#EGF!G<Twf6TO}2<3vj*S~0D=
z6RipDWcg0CQGMGIWVjAabR>6iq7$Jr)m)vaGHzFz-O@GnaH1!}UR24E<i6yA)PB_d
z)B#j;{)5Pal_R}|IWgRc*-m^wbA%J)oEY!KNR>0niP27sVK_G3E=k`BPE4f#9(9sD
zt4>UFVzRnHQwWkdT~(Xu#0<r<1MiZ}ou5U1Kb`ZT6LXwc<isa5Kcdd3&UIoQ;bW><
zVF7s|)!Y-&#ZD}xvm~9rjJ#Yq(tVW^tDU&!#C0b=bz+SZ-^z=^iM39wb7H3xyO_LQ
zo_{AkcVdI;yOFR-E!mvOW+%RIVv966v7HH9Rle-THYdJfC~W5MU}*AgC%$I5pSs71
zy{dJ<S#6(US(;o27=Gi#LBb(*gQW6dC%$*$j1y;_IKo!RKjFktCyp^Z?!=FTA5^P3
zfuFdRpVf+_*GVRvqMlCYpQCfdiSzQpCtsvqN|$q)&M!{L<jwk5o%ofeOj3&9aN?#D
zWnC!e!f#I8a^i0}ex11O#2qJ|IPtp^cbR{mDqZdoq}l@~9y;+zRWl1dR-->v`7fM!
zruexNe=xzE%uD6}>BL{$J=6ckiGQ6a=t3bEl3d8(LJk*lx{%S8IGr-NklBS~vYBro
zXLTVPA&cvOXOuZ5>5^SJxm?K2ocu1l=ECbP<WqI>5b~<ftSo&63Mf;;!Y&kHSjL5-
zE)*k|q84|d1VPed=#pe}4y8E(liyG|Z>m|9ccFr?3n3ROx&RmIx?pu7#f3^Pq%ps;
z3snfIE>x9ob8(@1y88dk_AS@{ouxHgsF^P3ZFvh|_zqRR5~eo6T%)NrI&P}wg53oN
z*`+d_1al#x9v8eW_*~G{S_~KbE(BD*IWbWa!Y)KyXvNm33o#d(%7k5r)2Zh|eO0Fc
zoyOFLE;J&@i005T+a@YgxVc(&3#N(Fk|2Y&cA<?6ZB-~u?b2~a7dpA{)P-j*batVO
z3kzIW=t5WKjCEn03*B7k?m`b2db%)-elHh#yD*3>1^W>CyU>@=PfbilAE0<3o6N}%
zc3}v^q3O)w<Pk26B#fetrb?YL1R2Y$Fy4i!E=+S_0{w}qb&?B{6;C0U+dkce_gt7o
zXNC(iRnEI=dhgSj?ZO9YCqHyy4$Y6LAGt7B^^%(N6r1yzuX-(V;S)Cf<icVXmbkFl
zg)dxK>cTP?Hn3^A3oBe$OI}I+lq#!RMOdw7CC(Z;GU7Uwvz{R1ZdA@D7d|6@t{iFI
zBJ9FG7xvTK>cVcqHkbUP9c)*bI|)0e(rcFj8TxDT9;$?URnq|%zH#A*3rAfz=)xiT
zhh6wqZNhgd)7<>;U5Vq@+$gDYjIBRXkGt>#!OS#ses<x63n%HHap5fClnbZRWu7D7
za^bcM=Uuqq!bLjQsFz&0?7}Z(8S$zMR}`B={HmsUUHLa$xG8S|3}rHA+8x#U(1p9?
zd(`{Nf1v8fD34rtto$d0->FjVxeI@|Fx`zAZoF{erJQeWSl#&3g}+=V?nVhW{#Jbp
zyYb3}e_Z%i4u3atx)W!91~)Pivbm8=5Ys})M9oZ<X=fp1rT({&><n`#GnX5=$*;Ll
zfbhB-dEChBMm{(4(~(kg*JKp))`%9QFHRwM;{8ROBFZUBDCSO_y>gXg2scvPDCI_J
zH_Ev2h8q=B{+n);bE7=NvQ)ER`VlKCzmgl3-KgP4O*g8j3e^c!sns|i>HC&yO(jUp
zG{QS>)F!-5t;KoDLjGG_9r`kJacpihaHF9cnj3aE9Bw$>(A_ZHa4}7CJZ`wjGK5*j
z>xNIYis^SF;6}uasLYLiNVUo+Va1XeBiD1IJ|RvO->hs-sS(XCZgh2{u^Ua?XiBG*
z8?6b=sLiP@s4dg2v5gxYXv$REy3vl@o@$OFen&St(dnGd??&$BMsGK|lO?l<8$A`v
z^!m8b*NsVZ`nl2Hjp1&LU^u{y!76hgVGvb%4IvD5W0-QJviKtzj&WnG8>7ghsb;I_
zI5#FJXFNfAO;nEXWW`h5m`a|e9BG~D#=CAjbmNg5@6rF%jWuq}QaSItG24v~-1yLq
zIc_X*W2qY-xiQy`g(_#B8}rE@D@Q6XNXLuFpSZD@Ag$*7moZ#PT}~B$MY^0-Zmd?m
z^jho2I)*#kSntLLH@2wOjfBtL*hKhD`Eo-yEB+$gGw`JwTiw{^##e0Ju5$i+(ssJB
z%Z=S`eC@`0H!irb$Bn&i{KU+CZtQpCTQ|OQ<ACaW(2Z{tOPxbxbFqir_}-0UZXBn1
z#EqlrGG*1~gZBex_@kPq+4pBRPB8hT8>ihk<Hjk~R}#*W&!uzBY8TzOMDw;AmkHOY
zzqoP5jjL|_%J3T197yJ1!VNcW(*KQmi|2`ymCH=H<HlV#?zwTF3F1Fcb2f7xyYWO$
zW>4a*mg{#p+g0XMH=Zee?#3VF7u1)^mr?$bw*Wc$m6PPbKjeRvBeTt*>SrXFbIasG
zW)CbLWbq)Y2d}Xyn+MrF$ffdg5OPw@oj3dD_WbYD^6PBMqw*yuzXt_m4j%mLK|v1+
zdC<axmL3%Lpa|36@t~*&#XLyypc0+p9+dIOFEm35h9#+`sIn)e2{P`R9+V|l@ci%3
zDdiZJR|%3_kt_f;!^$31@!)OcSM}g6ay8{tXQsKXR1a#<mp6r)^0z=_v#C}(uI)*D
zGO6Q1T@S1t*w_@KY96>eaFgv+2h~ZH{qcC<^&lWi@W4mYpvs(ef;pUDaY(gBJP0dO
zlA~nvro=s{$FRN!jXY@VK?4sOrb{-{n#f8y^QP(gHYZC#8Ml=Otvy)a!9ow(c+l2^
zQ67x;pdE9%c+i#I+fzGGJ5oD&&{+*9b-H=b-Gd<>45it_gFYVg^`IxiUew-Hb7K8G
z=+AJFRAWJz&p>qth0V0V>ADQ_U^qjwRR$g5!ALsh29EJytOxI@oN<I19*p;30(qhb
zlRcQ?!6cO<qfGT+8pjnjujy(UX4#n@yqhk67WsV-W_$1f`6CbJ5<aBPQP1i;h96U<
zvQ(Q-Hs`;{gHJrT;K4-?7JIP7gPk7i@?fb4%RJcZ!51DZ_h5ww>s7Cn9<27@Qx8_r
zF{ihNyp}4XNO8H=sX1)$U?ZD0dGMJBpQ|)8^S}Hp9(={7M0XFiD&D5@w<~7{L5AK<
z_{M{S9(?V=9*(%zgZ(OVpUOO-9O-q)gKs@J>A@)vzVqNPn||=%d%{tbc|^_sm<Pvc
znj0w7`_Y4+==|)#34*x~rb@zT56;p*LlsAw&XLcjb1r#s*@L?t+@tx62R8{<Jh<w?
zuPXDp2iFu!of~9x-+m+CqTc3&@1)DTulNb!fd>zj^N8?RJ!Zdq@YI86G+%h|lJMMv
zKL|3YIozKf{7vUCs<|%FR}3X5$%_nL^zovv7a6@smcQTjqNW#_yvXcLyxkP_!a~U5
zMNTiWkh4;=QL|Ic%DEKhA>^jMMtz+sBj)uYpBMSPC_twWwV?O^{$52UU)YNxDqp&Y
zQ_PFvUX-9&jat%+QeKqyq71_n>Kk5^C&+x>^r9@e994>lSwXc{Bp}_mmFQIVq6(oZ
zReG6!YN*ceEiY1)FV)h#c-xDZ7jc@ks9rDL@uIdDbr?FRb*a+DO0apM5$wvBWjYnR
zyl|5}%8^#->+?dVV|d~BB0vs#5%waeGR<X1yomn)j`;QHwD6*(7xh(Z11}nS(a4L&
zUNn*2px;!rn&V2}=E@On<wa|T-KlN7XzxV_FWP$1j*dA8>D!TE7caVc(TUudYL@Mm
zF4^qTgO04Urx(2x_m<Uh`Te};@5K_Yd{Y1hcrnn6abAq~Vh}S&Q3rc5#EYTi5vsy4
z!f;hb>W@@BTIG!KVyt4B%mniLUd$#;^kR}1lgU%OnC`_4@>J?H^%Tuy_#Rb8c~^}h
zJWJ-R{+i+gFXnmiG1ETuVvfrH$cwp(We)SbSitZT>OwCT5zM`knkFo!DO<G6i{<1~
z)D>Q=@nWqPD;cih1f<t$hM#iIGNpB1toP!u7vFoa!HbPvZ1dtPFE)AcnHOJpv4#2O
zSf6{bnW5A%Z_1Ypx2heGG`Y5WvBQgfUhMZ`Clhvi@wFGb$TFx|Z4bk}RMU}~2N)jo
z;t=5*wTIs_{EnfSZ0^7jFOGWgvs&FTFMed^ajN9}pyu|Ia%7Yf<ddpNoYSiHj2CAW
zpY!58*&Okb7nkMf@?n@SaW?+q#T75EGT~{s^sioA^Wse(%KC8KiyL0N?n53QZhG;X
z7tg);!;4#9-1g#$s(**me#r1H^&a)U7Y_*kt@IJY$5ff^?}VpRnaMM?kQZLOq?y5o
zKMAi?&R<^qO*U(a{=@KJY7$o@l{5N~OwQy(b{}&1kl6=|4_Ro+SXou3a5l1(%Bfmk
z^C6ew+$vMbO0ryeeJJ8XQTq9)`Kbk{1$`()C`|ot?Zp_DrWW_11VO5mB$T4c5M>B&
zP|d#Od?@cj%!jxS6?~}ZLtP)NKEQ_*A8PuL=0hdsSEE*@R-sD$s=ohwSE^3)Egw<|
zHGKa&l+1zNR++U_-*<edO|C=zZwG8X_<Yc5YE-)q4j-Ik7uDl~n;>(L`rdRbj^RU?
zj^CF!Qp5=`4Ehivm{W?7qv@P_KGc_a`q12m20k=2du_2aB1oO4J~UR`L@iK!nY;|t
z!iVlY^zfmj53PJ?&CK>bbnu}KxvlEkj$lrsBe@H;6ScEy?MjgP-PBk;edr~NQhskA
z`Y4t;^i|xC&|mGjR2b;PAew_!&Jfi)+=mf9e08PvRv$*PbtQF_52Jk;L!M6^>%%x7
z#*^RoVYUwwe3<CNBs$Z5nBl`@AEq#z>ccdGj4mrR@9#`H@A)u`@GjMCGIvAx1J&yz
zA3jt(hhXN+CC~HW<8<Z%9~Szsh|W^wf8xVpvdm$LTJJJC%c(0=tBkvfyxNCP32S`V
zL|98*N0mD32^)Oas2p?tpZV}Poz2uQs9Qt{|Lwpw*=jo5efW;B!-t)OT|Vq5$SAvg
z_*(HE!d~h=s<{sbeE5dpL8|mRMEI5}vpP)po_d6OlzPmE<39XA{)ze{RVqlYpULJB
zr+kTjeDa$QS+CVT?ZX)#&iZi9hhKe=e{U>J=Y4qEJN2Ru3#w+iKr_c%nZ&uoj+d#w
zP_Iz0%1dK<A?bKc-U58M;lu9U$v4>~6{M#8FXoddBE#MC;Wo#;L%mDAN0rw5K0F{l
zRL&zG9xHz0!|yUNAC@dEDqo5r*L#C1{Nck3dGHLpZ{VdI{ywzR(O$=2l9?f;rj9gS
z{$V^``S6bq|N4+omoJ&cuNhL3bbOODNg#uc4~J<2Kjus-zOZU09ockb*O6I=gmPJQ
zWFcpz&TCLq%p5v$>L{(FjE-D7a_h*aBfpMlwxri|<k1oNy~y_dme+N>(;#(Hv(&N~
zQ}XJlVoA1TOevtFppIfvO-CUe6V9Qqjv_jGG)tY++EO)Rk~ne|)lr>XLWh<uVU}WY
zNts@$l-Z3^&pt$n-j+9Xys4uqo671arvo}tbS&*_DX*gf2bI1uv5GnlHcFN2dhrx-
zD(R5PRAI-;G9P<sG39DK%pzJ%M%VF{j^Q_wWeMB!H&4}3Lx+G|;nFE@>!_u}p~ER_
z)KObUT^&{(8S^E5bPsaX(b4%!>!W+H>G<Q2MI22>qx?y0>!;Xth(C6TrCNg&mkzi1
zIvVTn=<w<Y=?Lra>CkofnfY(tL`{P%9ed?V3Xp?(Vj#I>(1>ilj(R%k>yUi8Vr-44
z%W1$~4e6}1ri2S7%1UMv9Zhw#W@|GYGOOmYZ%;D#pJb5X2Gmb!q2u$%8CvRS#T;?A
z-AgQ?4a2t7c!8u2Iy&lj&A{shI?3{N9M|!KjxIX7>KLVCw2pr=q;%8KS4Te`-Q}k1
z=&7UP<=VaFS*_l@O7WClx_mulvvW7oPM<>`*?|d71^UZVdbasc9m8}CV3C132I*MS
zDs`}qUJX)*=vc8x6S!L<<$0@A8Rb~()Zy}E_DjuMJY|GzY1`D1I)rO<FEU2QSRJ2A
zcOBz&jMp(=#{zj0bWGGSL&r=Vhwr3K(s8b2$}}C5bxh$XQ{_3ItUY^{K?dsIH}y%$
zl<7KTM1gm8yr*NHj*oTB((%4*GMi@W=ukZ61DQWTo~1d2`mGWbB$QTJ>|C0%oPDiQ
zKkQlbMApOuzfi{_9m{kqm)lW1<r5uC2#cxWlo)CmaVKr5yp$TG3arqvQpYMCt92Ae
zP8pS2TZ)W+l;KtLRN2GLV~WV+*XmfOW2cT?I@ashAa_>BW*r-K+}c^>5BV=7IyUKO
zo1C&{n5BA3TUqS3eyLyR*rMYrdH!{Lsbi~-ZV$0d9=2Ag+e@UpexbI6O-rSG*&;RX
z0Lzs>Gs!A;@a`;ZoVr`bx5v`<>e$C#U+dVz7oE)QRBy|E9S0;q$9Hlf>8SiD@v1y1
zW3^2cmUH6}y9*rV3-&1cey`(*j;oDQr`=AI{Jpo+j<GfWowT<br~atpCpq_YywdTr
zjuSfW$i2{UQpYJB*K}OhaazY29hY_dqT{UGXdOj6q+XOKyiCe@9sNJDUeNLMR+@x?
zJ82U3u@<_d<5I?yt36V$$V;qlp<i_j{v}PGtE;>n0y~qs$UfX)k=s&VejkNwR}Sqr
z8L@cEEwY3S^EH>}^VJ;dJstOT{4Vn>l_Jgq9S^y>*=I}1<~$-lmZP|2id;`*A=#2-
zAD-%XrsKJsDmq^3_*2J)!rBL=QnDXQdm(4<cuhd2@s}L+vx=7Om|C)+Ci;(TzO7gW
z0~w9PuKued$v~5gDZ%EcvT4Z%G8xEjAcuj>23oXFwHU}^$nWU3NU7;PT4XhFEL-6M
zZBvD_87Q1X6OcLQG?2@HjIKS;Ag_Yl<he@|^T}f%uK~9KkAZv!@*8+lhBi>ZKtUsM
z4!mKYkd!h|!azv_a-J74P>dj4)JQyp@)jUm+(54`7J(J*QcJOK83UJ^q?R`D?dei7
zR@-5gTsbwVc|2osIRoVlyltSCfeHpH8mMZZngJL{F;I!!e`=9BWLD9CdnP}9h{^`~
zwMmt$ih<)fI}21d@D|f*8jv@dRPLCoed;Gi(`u0SmP|=A5)Z08f!i}DKi_Y8$AH~{
z!$55Vbqv&%IrK}l8EF2vsDPE*A|Nji&48%vmD5PP-N@xK<g4D3WpybTldPFiyas%7
zYYa3spc^m@L=D6YoS$#;b5>ykSKFip3<L?nA;R*)mbB6-5d-sjCJV%wT#rNhh7_;x
zI758{4Gc8oxRTJ=KqEDWug}+RR4tR->t-@%149f9mB+w9O9NdDbT!b*Kx+dX40JTm
z#=x@dT3Z9{40NxbDo;ht;hH$@jl|pi-^q!ytCQU5wyAOobtcH_<TyHb9^Isifj$QM
z8t5U*{4uTW!wkI$J*o1l?=1s0PrScJ_FMXK{sXD9;r+So1E|lEx(uQ(55Qm<B{@Z4
zn1SI2MjIF-`*S7j%jA^28M=&+Jt>|tl8YTh?fhq^u?EH&m~LQ(f$?G*m||c}`&60y
zL<8R!PnpC}UjD+9=_F@Mno3jBrpbMIm?j{D&NT3zOyEYc@VlJSyIB(~pE_nsXdtH_
zx%~Lhz#IcV82Hh^M+W8^_{zX`nVW%+4Qw*-nSuER7RdG*SZ*ZVVHZkrzNAHDXTGFQ
z3@kRVgrT$^%8(?wRJJr<0#+DUX<)U1PnobvM!AQ*0gE(sT4Grv!`X|hlZW$uqVie;
zukII-_j(D}8`wZ!c%zYc#~1kAz-D<u@+ZmXjRX0TzA&&&p6b#?rSBHj|I)x#g3M4%
z`5+;^b{N<xuSx^o8Q5iDw}E{I_8a)xz#ap8nJ<~<hZfOpol^V8QV!-%R5)PZ8@Umz
zcF@2fCeLNli?HRe+yWyp%5nNf4Ajq;R5oAIQHIC3*ar<YvvRR16@D`Cvw^z??in~?
z;G}_T2Cf@8W#F`&9tJKOIKy7&<i#b&jy&P_6W69#$^`>5rN{MB!ugVB$5SrK5b+d&
zCHL?P)2<r0!oISl(q*Pm`d5ZBy&DE@%5j%J>5hTlXx^4*GGCHp-r`gb<WK6{D5XZ&
zGTWN6GIQqp1|G;uRhDMpp(MyBc>{kMcx>Q_fq~UCK4X#Jsq#s0f9KSvvNUVy@eNXB
z)1DjnLk`mVDKDr3&iV=eFL_QHrKH4DWJCUD-&a(bVUiyi{K)1<c0V%uk?coSf8vpl
z%uIgBlq~)PXQmG1r^GB|=_{A{5m(YK-AK;i#|GZ7+<v^~mwz^&QZtCx{mA1-?EvZo
zkk^lVer&s*{KAj?eiZPdvLA02Ns+6dA2o}lTzrsLh)!WYiuh5~k75krM{$)|j!?pn
zl75sTmlh?Ip-Qzk{5W^5_Kp&kvUCowv6!Qj_oIT!spyC4r_iaCF0+asRsE>uM|D5G
z_v45kZ~2kxM|VGZFs+6kF+xp0()@UvtodR0qn01<$a?A2rPiU!1R7;c7PT_8`LTCm
zVpa}@UO#*UC)MSLo8X~JM@iQGF#HJ9k&b>skQz|cLaJ4|L=;B};>7)^=SO{p&8ZEj
z4XKG4`q9{rCVn*aqZw7q{vGOwn$W_JmVUJIqqQF${OIUM8`ZZR^V>3%zLMXbMWlNt
zhMlQWS(>^~1-de)n;()UO+EeS<;MqdJo?d_Iivg-?MEL!`ufpN()<`ke*krmAA|iE
zsH)YNWEql<rT$Pq#1t4#e}o^GmunJ^^dm}tjLM(l$5`?>>UcjU5GMNZutAZ@<Vn>0
z4V#-V)sJa@O!s4kAG6pbm1p|#p5k{2(%sB|pW$q(>CBOrk{@6AvBi(Me#~RjT0cG}
zEb`+MKjxFA@&dv_*(J_=vGSMtv4q@*{xb4%KUNS{`mvg@iYj#^?NdM2Fcdbcty8V*
z<yB1HNZsVeXN1rF*i0}-G3$IuXSW|;`>|DC+J1cH$9CD1k}Y<zX@?&>{qmIrMJ3-`
zznlrC?vaPqk8k`q$jp7z{p@Qd9AHN&b%;$;;jkay`tcn@sV0}0X7W**cd5txIPS*}
ze*7rsfFI}m_{opZs>FRi>&MT2oM75XKTZ=)QKfb0B+D7ascVZ$DCPw}F8Xnk{w3A=
zt2{{LUzBr&aFr^5AtN2Hk*`y4Q1{ko{u|*IRdQ|<?ocab=yFf__x*T4ekiB0ACLWb
z!tfdOcR!vIWbNrU;kh4wC|`=d^y5#4f5}-INWAX;_Tv?ufBYy&=U+dP0>}_RMuz#R
z$pPdHAXfmH0>~VIg{E}R7C;tqR^?n<W64g=LET;Ae<y8jhIs;bO=Z4Lko>&L$rpfx
zQdX`4iVFo$IDjI|F{_Ezy<fXn0L5vR2%xg6P%?m0<kA6@A-oYlg#aoF2T+zyxd6%s
zu#SiAu059j00C5DLJC!yWE!Scp;MJAX0-sS2k;id)BxUAevJTXDo&GX8M>HjsYUZ0
zs@&PS0aycA6u>6|*aFb#kD%HE=t_`|jsTnixB_qo;0d5%0FBt>4Imgmi0q^4RD<fL
z2B`AJDs{r-SO5`%I8j1hzWc<<^#Z7`S{o3gZ{q-(1kj#gQ)(+}Gpf{S9zY9nOR8B=
z{MG@qq0^Syj%rRuT01c87(ge2IGqVys8XbxY-5p>?g8`&pr^{|8$d6`y$OA&Qnp_J
z{mBCY7^-px5(ZHRQ-=f+pEP8+VGM^;C6p0Il1EWTQ^y1_mM|`W4+!G}m=M6k046b<
zNu3<PG=kKb62Mfl`940KJVUjL`L5#k0+<!Rkq2qg>wTKDsq&8eAz@Ac9|bU1<<BR~
zqkb%p0dL#_h6|~e`7kdge-*&?0G0%>l;JY!h5(imWW*H#tR%0Zu2%l1gf-N))O7)@
zCz$)Tk-Uj2bv`3}9>8Y87t}4(FR5FplDSRo{0`+j3}C0?T><P4;OhYP1mw>nxJiFs
z0Q&<t6~O5L4g~N`06)?{Nc}E=!vP!$;M;)wfu*(_2>+ck-v@9sfMZNMB9+zobDYi(
z%$GyPJZF9i;O78Nuu0~5Qk^+w>zM$~vgy|V&INEjfL|D1Q2CbvxJWkhFOy|N39qP}
ztICx6*8;e%{2OX+ztOoBz-_{v0PYj+QtwgC`VYubM}~MrejLCP!tVhj2azd=rvW^p
z^E`l8gg>a#>qP)B$$wJ+QvTnB-zHlAA^fZSq#!Z`6Ymijsph+U<{&IV6bzzJ5LxKw
z3?f$$S;^U`*{M0G=4XlALA=H=pM3r&<fTgSJi-5cdJ&c(^3yM%TFpTVGps}{5=7A;
ziUm=eVF{{CUb>eIqEry2gD4Y3xgg31@rJYpQI<JoeN)Y{6@sY9rW7iI5MN5wTBV(C
zq?t39{K{;tLaiD^HA3|u-U=d>EIBm@(#7nR7R1{@)C!{Hj#RmV!NjivdMAk51mQYC
z)FoSkuo1K%JOsPSaRlKcyQpsE%MY!*ihV)oiVcE4h=6kJ8M?^mp&-IRM1qK_`Lqrq
zMvezjFNpd<Gzg-lYHdhpL2VR-zh>>mK{R35l-i8ioVsyI5gB6B&1BJ5bOcPZO%QGA
zw4=6HtsR2s7(^$AorCB~=t7Ni!ew_@q(~2WFoM|I4Evg)R}j5}_#}$OQS=F-uW$&9
zL+BSo{~%5UaXN?rK@1FHWDui*SW>h0pdf|@6TkOKcrcwI)Q%at3?mGuO6!OqHdJgT
zFgl1aGGY(~7N^N?j~^RM{AT`fRQaX%<Aaz$o=9CuofO36Af}L~%B%>|Yg!P~gP0M-
z%pl$k;=>^31o0kQ-w$H8JUK&>X9cnNewx4s1nDI#mzW;~F_*~;f{@>4KQD-ngP6}=
z(rW&Gdr{$qK`dgX878_jTtZzM#IhiklUGp9QA8zwl{hp%4Ps*uo5*XZYlB!vkj(Y6
zKjb~dEE3A~SrA{T*3X039K;t4w@|kR@g-sM>O}rF@|`TnGw-KuC+`SiXArx{UsEM*
zx9rvZG_%W|ASB-$YhMuigE$bxH_SY$@(&UYQNIo1JHlbr`h5^b$X{{}$CQ7Z@Iw$k
z5`LooOg%w8NtL1PQOlVi&IZvsgf=0Z<5Tf~dY*cLdXai5h|59zLcU48LX`*UY7oCF
zzDBrCy%9vPvqchqV|YvD+$P+i-VNd&;XYM<nW5xA4B}A`kLe(Uln|Z-@w=S-K|Bj0
zdk8r~c+OTyP7dLZAYKIVlFmQWKdFCF|E9j8O8y6(EdMG_3MF0$8K@blzRs3Rgv?Y6
zRdTX~kX3OuLKiMAX9#5&<_aNq2(N|kI>RC%<T3N9c}-rNmXDC1+PsscAfXVoFjdBy
zQ9V;pa<LGKhfsoCids_Ttm~B6*wPH=awcz(-wdHFp`6MrA3_CkMe3joU8JL2l|pz&
z<x~!#N(faMRtuq~@~acxqNavWgJ9lMsgM@J+bXjbL1tb%ggPPA4Z#{hJcN27*h0`k
zFqmKu!9j3S&B-{)F6zZj77sz{dqeP%b>+z25#Jv|AcP>zPzVv#8V;d5w?%TIG-K3w
zCrf=o6P4M3&@hBX%4tmSH7O^3o06MRn}^VX(30AUdiP%9DQz1{{D!^TeQWh2w4=5U
zp#z~~2%SRcOzuwYLhVZJMwL2Jp$EAqRl;6`-qb!J^i{qj_YYw~-&zBx1E~@Y3Sn>v
zLqZrD!mto#hVX6(!`V7IgfWB>A&gY{qe6IZxJ5dS4PhM3sUeIfOrlOunG*?vm^?Xz
zDay~>J6XC<3t>8)8PqjQ6aT#s=Fpj?^4||(Hu-}PJ`AC`%9P3<(VrW_ybwMPVLro!
zqJ&hH`O7xTB05sP#A?fu5SGf)q8J;+vJjSs@F0YTA;|B0UlGE+5agyz?OSVQ2-W)4
zS|vB4U#-<4<my-J(-78#u$H_ogs(!_9>V$%HiWQ|<`>jW)X%7&Q>E`_ncfObU`q&J
zhOkxn+d}wul|_8H1a^e5GlcVO-4(*_5RQlNLkM4ouqTA?LO2}4-VpXN;T!6H>H(?G
zI>mb@OR0l24^b19RqOZ4IZ8MZ!rWCBv*R(cB>%{!6Cs=={6zg(Hf@zfu2T#p?Mw)#
z$zn=)R^9@bBWyYsLbw>hr4TNMa6N<@O#UT=t0DXv!WAxjkXrjSwwj^n%@BT*8==O!
zm9ABG=}riD|Nnif->=sF5JWfhtyR8va-QDFk3x7XCw~aP%ZYTXcKc$Mry)EGp;ZK}
zBX};yeh8bw_$-VUA-oKsX&BAI_%npR<R}ZHS{Q$a@G68i!zdfZKOy`ZLdkGqh@>zw
zgpoCjYz#Aok(rQ8m4r+tjJF6|!pNfh*mz6!Fmi-ZD2&21bB2*SjMu`*#qj&j5?x*o
zBTpFl!ze&AFEt-k{+4WMhdS~$*I~S+U>K4wSH_i^{GQJuOpxxy!zfBFMwMUTd;N@7
zLbaMhlnSFXoifUQgP@JKlp~~2%d6H3VN_HM*$^(R5}nG_D%56!ipm7!svbt|FzSTy
z7X4Ie4QkCW(g<&dQHvnkQh&VV9kMJ<y4MZE$}kd!EetITZy3HX>@+386^28xlQ8--
zi<{t4zBqaq2E$Moe&q+k7{vJpl_O`P)C@C}rf3*3ay*QNgnFW3G$5O6m;5s0Esf|j
z4x>rBCP`=>MvE{;hcPCMmf^&C(lv~3gjQj+4x>#NZ5eh5qa&dmwLP`KNJ}R|XR3Ro
zMJjY53z%W|FnWj4hh`6I&oFwaoT;^n^bMmQ!{K4{Ck&K@hcQ6qY#L!1taw-$L&!s^
z@>{b1xt}IuZ5WXldPEo_>5o$RgGX7$hA}RTSz){%#(4VEsT0DONSH*O62{~(R&2D$
zaLHWA)G!35h0(QdE%}|;Gngi$%p|-^eUCX}&JN=PI?KcOkg$k4CybB6m`naRjQL^A
zBTJY0BP<KZ3zf5MgheiC`Xr3SG?#?2ESxy-mok(GKw86`-ik0*hOvtNx-iy<u{w-T
z8LkOqEkTk;F}YyxWZ?~AY*fBDrulgoo5Q#o#;;*~5yln{cRGwO!`K?ecMP{t_ffwJ
zV>@97bx#;O!`KzZZiZh|Wx@xCTSQBZv+SiKAmRQn4lw+NdN7RQ+Y`QAhr;+)_02xL
z$YD7&!Z@OwpTjsB#<4Jt)A=EcAH%pX_J4hUO2?*of@vqiI7N`(EoP2#CXBOToTGU@
zj7x+I)QeO}o4P7d_Hr1%(78elk4Tu;!niJ{N(AL1xDm$9F#ZiADT3d^aQ3V9D2&Hp
z+>#v*;|?7$?-TA)?@>#Rv55bG{4fkN6z7SY@HBr9<0;`8^$+UvFdmM!n3p8Kl(&E|
z{$i7auLyrruZ~XC|A+Yk86wCSL7@l=N01yz%rjdA*(1mlL1u=Q2(l2&j*^fyf_k4N
zisYc5JA&5;IjOm*k49Twk04J3`BW(Ra^+=sV6-KF1O*~EJE@461!)S%`$CZjibhaI
zImIF<skk_y1XU_XekpQk>JOtWZxG(3%2r51`3NdR;Ex~>LB$B<T{SI&w<ACVDGVz`
zP$hz@5maU<3B^WRM5{5Z5kd6`-Xe>iN*JQGkc67b6qc)21a%{@(tL+nn_4G=yew#o
zK#RZ~frq}G>ZCd%crhw5sEc6|^Ck2~pwkid5hTq}j+qvWAQnNKW+;L%Awr!v+7gYR
z{ia0adJ)v8*^JsCg2se~)J9avm&_()fu<3J=rmVO3qnh(ZM3CL1Z^XD6v5*N+Q~o>
zOo(7&1RWyi7)cyT{ivNH=s^&tGocH$E45n$-Bs(&v6i0XUdrhmK_7Bo>MOpY`$sT9
zLOR2!Qh87WgB1^nU?{o!mZs7)oIE0ekr9j{kBMMx1f$6>dGd@SOY(SvKF%^?rS@c;
zWl{u_BiJ0l7ZFT}U}^*(MKCvlX_3UAK@y+y3Dc=Fs52vYmtcNwpB2IT5zMCZAys;P
zAhYGC`Z*EE_c(|n;XKv4I)aZQm@i=j3nN$@!4fttir^E1*;jg*e=1oT!3z4zsLQF+
zDqkV7GJ;hMWisY`K8;{a1ZyK$7r`c#xjur8iZ>934!4+pKKe}gpDTY$1YbsQEP~@Q
zdD)Y`wHhzizK&oU`Kt)F6LwH{MX-|~X{i$|yU79)?ulS;1pDZG6T!g<PED}vXLx|x
zwqqjgPz2vaaG1`w%n|c@hDWFpO2?xSTwkflKeLzchX{U@Q<tqjMeuV3S0cC?!HEb?
zMsPlY3sOh*JsZL42+lBEKEYCgbCV+Hlyi}AnR<yTtunV?RDy(Z{VEfnbB&shb#AEq
zn}p00EVm-KO}-PseZpPpJ!)U}dO&_i{bPJ$6P`ryyBsf3*rIqE!LtZbqluT;^9cTk
zplmd;>K75bl=C)<{89WF!C!KQN0B*-zgb5TGDPtzf`20TS2;=Scze7>E=iCpV-(3W
zg=J_<6j`FkO($y<*`mlv&Q8rTplFULX6;J!HB}&26uG#H*P?ixX?du5mH%I6fhY<`
zQG~4psfDPrbw#5nMlM4wPAwTl34(c#N<~pR3b|!6=zn+ZjVRt^j+oL^E{gI|R8UUU
zC@MyQC{pNDrdFcLt&uKORHlU0$knNDQO$M9w%3TFCig!rimKx*Z<A|9@lF)Aqo@-_
z-6(4DU=fuB_wa;DM=dIU-<Y^@!=i9R;f$hd6no|5kHQ^A(<qun;fcZ<MT00BM&XM>
zk0Qn#BMLtu97TW-q6Vo_M1G^`x=BR@<cdTQrEkllRl8q1u5#)T>PNBmUTrh8Q4|G-
zTTE^oMH40*8k2CEN6{jR_H<gR3T>ijrMPtzQp)Vxme4MWe5zW9C^|;biGF8l7uC9P
zti?U8NVh1uN6{mSo@^Z)MXxA&lLt`yQ2SB)QV(!q{iE2iD>1`?GzX<?8bTgQUBhJA
z?cq_3;I<2ojAE4H(S&jG&F@i+k78aFOUk57kehp~_M|8#6DCG6B|{f+rpPl8#e4F=
z)1MZFQOqK~T+^eNK~s1p;a%!iHCn$fFTlCAKBCU1en1uT!zi*xEpr$O%q7Upvc6M9
zrtvW+GoQL3iiHI67e&#nghgOU6icJ{I)*(lEMx28D883hgvwk&SQ*8tC{~j{jbb}t
zjXVHRtW%kr3G1mFs2i!9sGm_kr>>k^<O{+U>X%fR%+@Hjk-t)oJYYM>JEPb|*iAhk
zb0+MeO5eRv>{Gm-FnV5M2fm5oAj3n{Z&l8BgtaX*9f{(oykugD9|IkW;<&sRW2hFx
z4^jLWP5j5MGO>jIBpgHTPmBH>#R>W+slP{YDvHzOGg16Pko>cRbJX+H3)G8ITq0bi
z%KyNU|9f?XEWNHq@oN;<qPQN#4Vn+4xT#w2MDZK>mU3<r<j<#f<;cBX`(70HWnBx4
zN-4Pn9x~w(^)dAcHS?CHlJGQ&XAGZ5@h?HlKL{_VFXdf8`F|1qmh+$R57o<oq*oGm
zDMJhy3CYw<RB6pjuu!waAU`k_GaJL~)EqJ7j3F1f2vrht6JDdf9zz~NUTVG=@)HWg
zP>4{FD!ulcNfa*}gM2}lKvCrvBNV5Wpq8YTilH<?lI32AzQOQKYS|dd5z135P$j1#
z0o0TjD#cKlEPGysAh$!R$<KzW#}JMseh?<tTd~A9gQvz&BZitZ(_*L_gO&U?TWgWu
zq1L9>p~^R9+hWjS@W$YyW2d^Qju@N-7gffRpF)ayV*dkO`F?_-e8~yK5TqHR%0Oa9
z$WdyH8mHEy)~7azp<xV-$kL@r42=~_k*11eCe35`Ouqa*hL$v2#jswrwvM4q3~d><
zi(zaG<H+q}=nzB47&^t!IffxI42_{n3|(XB6GPt^y2a2vhMqC>iecAkOOF`LOJ*XE
z<y`gi$KI?qJa^}QG4zjNU<`v|7(jE{YK#2nP@3e2iP!6u6CNB({9sYOu1-t|hs7|0
znNoAO>M}BhQRLCoF*2pTwIo403XG3oLJUjgIE`Uq43lE`IEMN1G{!I`hS@QE5X00M
zrm^pPF-(tPh720RyRpR2G0h)qivGv)Q%>Po%zr<I=BG3n>%$o4NKO8{@}n5$#xRcw
zrX#wfSfZC1E{Ne1wo1o^ghf<ISWH+#HIpT0Im1t5SV34xT}53@mG9S+8LlC(rLLpO
zeoB!I<c-u#)X%7&$FMnuFUViTuswz?F?<=rRys27HrW=gNLc2!gZ?hnx>K!JT6Zhn
z8^b<%W*TB#L+p>?Kn#y#coIu|Y5O;F&ctwre2{vG`fUu~5e`!&^ZOW%C_Wm)u^5ia
z`LCRxOrVxuXZbmX6EVE8&T=va38nifc?eHyCQEoWhF_U{PE|M`!v*q1<y<0Mj^P)=
z73x*$O@5d9HS%@p4XRYWN%)O=D~8+3zZ1h<@;&PP7#<KF#_&kxxYk)7t<b6-E^?-D
z%I~rR^>Mg9p2qMjhUYQ-Ax}s>EUt$aF}#f7MjSWekjy`0h{sVcj=y5~JBC*={1Zdb
zIEuybZwyJy$xF=;N9H&zab#qeOqB|m;yCd#lYm@V;>a0Ct~j#Bku8qwDkn#}oWCk%
z%B}p@<9LlMrgYDvd^5}!NB%ep#8HrbVQL|&IbsoV-CBty7muSv9Ph+YJC2fZl!~Kb
z9EhVdb0nc`9A(IF#PO!Amm~f+^Kx;NkD~$;q)B|aQsSr-M@^cQ<ETPNjiYKD)#9ig
z$6Kn7)R%m-rpYy!Tw`7>bBMG!-j1VIx_n8l6Gz=Rd~xV;SeY+<9dX#mS{!zQWSW(o
zak%1e)AYpQC7AUk!2}}?KmAA?0YZo>m4oUogwu5tKguvhl{)p~Xb{Ioam<aQVH}O(
z7#7EHwl<EVT^#M>Xc9-$IGWLv3N7PkPHv%!$Yff@(VAf!YFjnB<V$OZI6B7BKaK%x
z?G#7XIJ(8rnPC^Inb|##9t``$(KC)-<lbs0&7F~ga`la)A4d^3`-%=^{t)V*I0h5M
zmySafOa2J*gg7R~F_Jtgj?r<9A&*m;W7W7)VLVN#GbxVAam-RVQwTHTm>S14^7J_V
zA6ef4<wW(qz3eVa?{$~nc|y~`3JXi5S?DC0Nivz5nE*=@0i}o_(vcz{y$J|N6Oj(m
zt4dcuy7b-=1O)lsyz?8*{?B*Loaa3EdCPronVW2qO~yFRnQI%z;@6pGW`Y+Jz4ROF
zn8c>Zj1)qbJ<@4jO!wk<3h`ow7c;%s?8O!@W_dB&i&b8%_F|3~-+Hmgi|;vnt{3yY
z_>TEJr>_Ovq){w%Mr7w-?8Oo<R(SEF7fZcZ=EZU^esFy3O5Pxa)3wrzpPX!z#LlzE
zQ8s$9){Avstap?ROehJ(lJh2R{_I#u*~)yM7r%J1&5P~a+~LJ8FLryelbd!gdzkNK
zq-=I!c2&Q!c)*L_9P54>ks9mtpcjW&JnY30FOD*|V=1j&*fB4TvwoKGgcqln#F8^P
z>C7Z4r&&3}Na5$aIPb+@+`Q<;B_<abDgR|ASDYq=+he)z#SJf7`Ow;jn_k@VqJR$t
zeYow#9WS!^klly7UflEIxfd_IxbLNZG>e_#PZ=LF{_VvhFCIJVWoLepsjq*SQ`9r3
z{(rrA=|vVF;(f7fuh=2ZhyUmyfVn*(gm$(Bb|cTMJ|sHaHYIV><~f+>Va(}6E+)A%
zIpk$ddGh&?pSj&pAs-6+P}_$(J{0kxs1Id)DC<Kp_9@9&+=pZ)DL$0Q6l-@)IZOFa
znsr+#=R<iPYO+Gs3O-c!p$a!E`cNs8XH_5ILv_c~<wG^!{~q8d)tme^oRC_M=UYC!
z?StFVZO>F6-tplBA3pS<t`GHmXu=L@KGgT&UFHp(3=Ns2JKa&89#-sBjeKbAc#_i8
zhi2S-&xiLj>2E4*&SFa+T4b_PPTQf451oDJ;zL^>+WFvRpRf<I4?gC89|Rvn<{`#_
z4?(Vt9@HoaT@vfGYIG^gJ2I+1Xg=sZ7(Q4&L|Kf`nog^0`eKi~_CgbB&!!HHwrE$F
z!3yzC>`$bt58ZtD!iPaVeB?uSANn~yAN$bDhflcKgRv(gCH&Nf-ahnoJo_-Qizh1)
z%KVvQ?eD|q%m?@|kja}mzjS;?`!JaK5Fdv6FwBSH+#Kb@2qq&L?aX%gSFBJ+)Ewi(
zSRcmu@U;)qSs(Ai1Ro~(FxiKRtbF4Pnf&RZNt?p@R3D}>q2#37T@cRjVJ7Rde3;FI
z`pR6uTv}g0e16RHVZIOF`LKXa6(8>Su+WD^KJ545fDhmMu-Jz+KCI;=OMLi|$x<Jd
zF<I`z3Mc;$bnmAnQAc#0_#kN|>p%Ih%7@j=NhA|}a)8{{`LN!Hy{vEWVWSV*eAw>8
zCRR54u!YIbKKiDGSd@)hS)``j(GDMWIm%8Z<hI*~Jsf3sM9%ws_{E1`eX-B3(DfS=
z@+3}p(1$}loc7_24~IF)F&~cmaD@3$AAYAD?!;2Rb|tZr*x@806I(yU+^+Df59jFI
zX63vOe=)hnc)^EDK3w+UA~)^fT=C(mGhVxRTffdeH!^wNVs7_%*N1yPl=7prANPHD
zz@{WW9{TWzdAuKwefXQUkPk0?c;drTAD%lI{-Njp%<aA?r=9kNQ^_l~(um^x_|J#e
z|JRxHEdJPI1cfIsiE$=b{r}q!+5E`vM-D%7`ccS_!hYoPBex&<{K(Iqc^LCL{&uzk
zeiY24P*rw?Mf@o0M+puo=0|ZqlKn_wPjaw*?3J|#LfJ~PGnvXTN%i9$Kg#-1&X4kb
zRPdvQA2t1`=tm_#;D^hP%IsOikE;Iv?La%TT^nIFKdQ5jt&o+vtHsLOez=*u<;2!@
zJnJxdGnTr3)bpc>A5Hy8b9~a7)MsqKNXZ-e;ql{LKN|Vb*zvRn_$FI3Ki>1Br5~->
z;e9`v^R#^6$A?ZHs+Rm)aMKQN?PP1~N1IG;?Ht{9^ZPNG6~PaYNx+Zpethgl(2o!+
zk{_lYmLFk1WIq%?R6in49?cKk4}+U;YNnyRxuSlwXKPo+4t`|#(TRCSXC|rs&a8BC
z6uZ1`ERyvjCX};>A3d3m@}rlZzLWq1{rJL<Pg(5iM?XJ$Gw;J_&kW&bethmI{dodu
zI}Kok(vrg<KfdJVa6bk+o<kgmp?(Z=_O0ztAtU@4>3CAXU->cGk1>9X_2U~yALqw-
zKPLF`wWE;dM2Fj{2q&>(k9rF8seVlJW4a$R{MhElc0XqNG0Tr7ek}E4wjXo+Sje8=
z`Z3p!`F?!oR7kbWa}wHJEO46C#Uekx=jLMeCkOjl=ErhB*7&iOtv~qjqaQ1oukgo?
zS&IG1k5#O!cKWho?aJ5rvEGlL{n*St8~oVl$0p|FX8TZWcE}diw=&u$!X4b)!$_Vx
zne1ZR?d%QG_xiDqMLX~}Klb~PARtkQomvO{I8M%f9AuwEjHDlCa)j}yAHO^LA54xh
zj<R3k@Z+i<*H}5pc*>8{OwKT#_2Zl$=b2yd<Dwsb`Eh4jUFwB0T=L^Go31b>@dhK^
zPJW%mr;IlkZ~Ae|kK2@ioA((h>Mj$?d5?)5{(v3@{CLF5W5y@+`cEbY3ZzQ@VTEF!
zF?r7T!jFIbc<IM0I`&z~!ZY^Tk2ogO#hYp=HeP_;%qpPiw7Tg68nRoGfNTP?GtVI)
zML-DwIR)erkXt|=)(Z>BD<B{9f{ghE6cGM5OO)0gP9Zkg^F~;Nn?(f_6HuIaGUFTn
zk^)KzcuT<B0!j-gBcQT?Dgw%~TLnhSQ%*p6=5{X?nOAbGl&z`&2&l=5i?KRmHAZ{X
zHJIBOYB8tGw#h9ZRlqv}YO`J^lPCGq<z{_>zWOG%A=4Zy#WrA0BBk{Rcvrx`0$#G%
zNWelSjRiEJ2^Y{zKyLwk1iUBUeF2I9Rlo-VJ`~^;;A7|J0$K@ZEue*fmaMFLp7@FL
zN?jWP?O1FpfJFPE-faiJfFN5*5d??=0{=HdNPxsjSb*$!QhxF$)CA}PIt%C`z+kH-
zASxgtz~t`8&F-tc6PqERgMg0Qv}>@jljGl2KsUDb5a>JHVzbvhlQT6xcA7l}^r9#M
zRLQ3-+I`sx`wHkMV1j^&0zMPaU%*HKqXc{|U;sN06EKj;AOT-8`GV0N-CzMj1Ppbm
zBGK0E<iiDw;C^k9`u&Py$1;u<Foua;&o}{Ja~|7ye5PK$5im`_bODoCoGf4pdr~h`
zGr7$WFjK%>0rLdR5-?l990A|*ElHkqV`i?+=JPrHJEutUS-}2eT_oUp0gDAJAs+!J
z1uPY?Ou!xidj%{P@PmMj0yYU)A>c;=>p9g*yB-0nnf%0P&&C?&Yi)<;iR+kDI+;qt
z-;l}eXXcv)Y~iXXcB_DG0(P=a&f5j-$mDO&-Yx;VS)|JCp^?5%z(E0r1pFf4R{_7V
z!+yt&91b{n><SMHI4a<G0Y@C2eEwig<hX!inPN|5;->_h7I0U<JppG}|4YCH0cV+?
zV?57jcXUy}B>~q3+z@b?b;^I0$rWcWUCXo?ZVI@?*4sQM<ZS1;<HS<)KJzC6o(gy%
z;2}33F+O&p{^q6~YbW_fz%v$~J3cgfFPuF<KCjsNj)?yRycQ5AB8v!@7`x-*MI?wQ
zB%-j0L=jm<<Q0)mM3RVX?2wBwJ7W$pb^}rrT{#_|n@xEb-&pPP@{1_IdO=28EFz*P
zH!F)MCZf2A(jv-;NM<obM2Sq!B}J6tCiO_+c80Pd%895X#vZ52i>M%?BKz3A+dkxP
zH*KsUqN)fuHQTAGaa4828X{_nsKwkZqPB>)M7-_z+xJ}^wo>L))=9K`sVkzMh%^!P
zMTAAjA{vND7xAHp<{Z*cL}Ml%C&RlU8Zo!4Z9-!a(TtV%8Q&9QXSh9T!Veth79v`T
z@QUz>XvHE~+lpxI@HS3hJ4c}z@G}=3MR3Ly5D^p+a&(FHH}j^5P(}1)t0qEc@{tHb
zM1*-K5vB-BL<bQaMMPO_&uAyHhmgU_o3W6ovxqJtx;lC{r=B-H-P!c9h#rm)MfIYg
ziTG4RZxQ`Pe9opmjQvFP&E)x+!>ND)4*x>LK<0LB)Yl+qu7-#hN^eJoF(iy(B8H3j
zK7_>~j1VzW#KIsJ1u;s*S0e5Q@F0NEBF2d59>B+e*iAH6#32!fMT`^iwTST|CWu%p
zVu^@}BEAtZpZlF8VltC&MNAPfRm3cAP7^U*#0=(?t<35qx@<C&#WT+nXN#C4f(Yrh
zX)c@QWs3UF;R~o{5sPRPjzS6T*rg(tiP$D$yNKm%T_a+xh#y3(5b>jkm9!SDSD9Yd
z4*7|jlwma!TU;k%JvTRt*uZ2HBh|K%3Hkrb#P;99d}}6U2lG9Q6t$DdF2>!?NcW1^
zC*l_ozp{Qn#BX#~tWMg`O(GO%=Re2_ak`F(I4a_u0O|(tyNEwT#0QWNz%dcWMLZDk
zP{axH=a3sBPKr1s;x7>wM4Yzsh&ao{?&2Kt^G;Q7I=v|3iioQsE{VA8_)`Hib=SCg
zozeEUQ{5DCi^ba_?ufYSMBQU@-|>Glv`4Hw74Z*~$0GiAe4g-BQ1WLYo{M-X;+2RO
zY_-G5^snPX{699u@s54%j3o;<?Kw;gAZq|c11J_iQUKZ5lqZ1fOmZ<&o*V(>Wd5d?
z+)guZ0QmyQ&&`4X6bhgKb9+t-GcV#eQ!2VBN$~)Z1E>^0<p5IHS}K6jOiD18WVDMc
z6F|8D$_G$35ZeiM2EqyfRAjfzVwC`@22eAAS^<Eq<XJ5Mmy?iIs(Ju50{^?S>^=V$
zTWbeUCxEvDa628@1=vV=Qk|%J0i*>G3?LLheU5Dwz<W#@1dtv;!vH)1yc<9h7Adw7
zlg3VFQmE{vEZX_s58#6UysUf}KyxN-185OI%K%z)(;g|swsI<I!@8Y~u$`m(Soa4Y
z1Ry#-flR$qr;?*<0fd>$j-qfL)ybv@U<42ezzm=h`&a=)1L(-SJ!1#PHx=3>!^zM&
zfGz=aWuI;Ve3Z%A_9W~PK+ga+v#D1Ap9C-`fNul%G=Sa#3=UvO0Dai{Ib&bOevF?n
z_Gh%`a{%*!j5IS}1TZLoFEh=6-S5x<#sn}nfMM)8Jb)1ajAZ^5<0vNsz3n)fxt)I;
z^Qnwq2QWT>2?6@@SWIT+8%FAPk~0JL8cku{&M+;2=>g1eJZCYP=~OtIn|6_N1DMCn
zbpgx|;JW~R;O2q=76!1KIptpzz!HalAHZUV+ubeY<}yZ7?93|y_%VQ$EUsq!iE$O9
z?X!mYT1I;m>m9x!fQ=5{6u{38r@$=%Yz<&r0NYu-5WtQAb_Q@DfP<{;V%!(NZYFye
zDgRz3l;Ia9zcT(7!2V1#N%bFM{TL%f9S-0~07vQkca%Sv*h3)y;{p0WBmNBFWB{ir
z6<bgJ-<)RyI2XYA0RCbtMbY^{8R#NzkNqN>E(LHofGYu94d4zd*BHs?W&qa%xZ$iL
zDHMAvfZI-AcB;FM|2-xoJ`CUy9bZ8p7<-QKn2u#8#QzT9NdQj+_$Pp8bXGh1^8n(R
zzX;&p0A6yc{{nc;<Q1bm199w@CHTK1)UF}H$&(mFR)>>+wji<xkt2wlK@<q0U=X>2
z$Q?vJ_Q}JT*YT%Rb~dUrfAD|jY9Ys3B#6Qew<{?cggvXpSx;t6VJs0u$skGvQ96i9
ztdt3&Y!DTgQ~q*6ly^9FYA3A7id{ox$6AF)N)9eoS_ILONwpxV2T>!4n%t}%L>(rz
z7~f)io6+seRca9L1o3VVje@8fM7<yyvV+}YS`hWQNqsd4B0ZCd6c0D;@iu1OEQt4*
zGzp@q<4m6KGp8|r7{mvTPR-`b$$>ast%B$rM3*312hoO2ZG#8~5n|ph2yYO+ApG1U
zf02pcj3waccJUH7BSD0NkeMq%s6lAV?N0R|j7&|+NwH=S7K_m!It0-%i1z>2CnJbX
z|5u@?u0eDQVkYY!F@6?A{~)>t@i8}hFn+?=ld%^gRq|;Ny@TizMBgC#v1kv$u7{9(
zK4*P+5F>&Z5X8VBz6fGa5JOr2l5ublLwGjqMR^lGEK|;r^yEK?Z-ST<#8*L#X4Ci}
z#so1oh;c!D?d)^AU%L`}x+VlMk^QMjI^kq)P7PujlPS(xOlLA9le3*?7Av!Zm=nae
z%;z&wUvq<)=lD~TuJ5?HfK%Dw-v^O5gnabpOb|<gSQ^B#AYKOXDv0Gl{6PLeoD5<G
z2d)WXZ4f^Ou`-Cme8m04`YJ}szdDGXi(`9l9V@$n*d4_BAT|WCF^Ek;Y-j!FAT|fF
zjrkTQb}JJ*t(}B$hhyF8^tdO8y+Ird;!qI#g80SJsncJB*w6mIIZ<|=15Q=sb2x~j
zLHr)Xk^k%SM-ayy<ya>F6AnMc)(b&gWOADEOb};-ILG|F<N23EXe^h4xE#d8ARYyA
zh25xzyFpwH;#v^bgSf%sZN{5H+;V*0%mDe{VUe=kV{+f|d5~%BkAwKf(f<zO3G=7y
zU{5LKc^1U;AYM4-k@By@|6~8GAtZ(Hnt5C(_OOzLkw|<93Ct56#ZH@zn>iS>hyJ%K
z$Ui45xfpXZ=5eg~xv7U>gis)af*}+Np>PNY!NsN`A(RNAWC%sMS&Wf#77rnrc?zRF
zMWmPFX2lRnGbs~7*$~PxCu;>J<r%5wH&K;BsO<Pu385-;+gdGz>LJt*p@AdT2%#qP
zS|QX9p-u>Iar13P>c#Dhj(BPa^&I^jCUqI9_cTW*p3eNe5Z(`=VF(^>z8gXlCXF1=
z#!RTNrjF9g>Fa|KJ`BMZf}c&zLueI3>kwLSv!xSACDGL;gm#Y7)*+;O9WI0*GFL(f
zgb)lt4#jTg5Q|a>VJ7yvzd?J(R5odhwnCXBA#@F)8;fQL78BB=A+!&nLkJyN>BN}f
zSSfR7hj(E@2|o&<dk7P_`Edw6=(QKy6hf~MJ`Z6)2%k7n{g`|jLhlgz*lv6%_2uDE
z0iQXZ{hgT{7{V7U4q+S=!k3N@^*)%nJ+7f43=3g+CWR7G%_Bn?#o|{XjCEp1Ga183
zKI52t?O4Y%p|lf2_=fqU5WZzHIfN-prZUb7VOj{&na>DeCKG!JsCT=t*(}a+#yFRo
z^Fo*(!gtIUGA>}WqZT=wQY{H#Dcz4@6bxfo2+P^@y@Ve^SV7Y$p|6A=Ls%I?qJ*px
zeqx8MA#4j_m6K<62x~%E8^XE})`##j>l+;FMkXt=#Zm8@=pOHrKx8wETNrI+dk8y1
zI3L1aA?##*ZwULC><VFb2zwl7JJl~C{2IdVA^Z`-Zz1dt;Seor2nX1Wx;W_cW#>QQ
z=tr4Q5?enO!toGJg>X8A6ShwXCmkQkL!NZqD(<3-Le7M6Hk0)nbJ8z_a501z+`JUR
z<q+<N@F0XMAzTgNRtUF4xE8|o5N?EUlctw*QhvJ(YTA9>3E?g$x#wiI3$Pu?=V1ts
zL-?Dmk9dq!*pm>RvhtkqAI4|S47^EB<lhipvh@|6`60wf_>Y^mPZlY5{>Mv5kYW|m
zMdjHS^^znZn*>3EC?UIq91?0ssL3HYB@~lTTtY4hxh3S0kXJ%M35BHCiszG%UqS))
zv^#o(g(VbWz3BgErNCqfDH1A4s7!ezl$20bLOBVgB$Sp=CQ}GG+tm`5mr#LC6&Y>Q
zn;xr3sLFaZ3E=Wv+_cxicB{^c&1*?`OG0A_O;~(e!aEY`N^nc4%}N~!shRxksCp98
zB&17dD51Utnmx+jfXSPBJQCiO(1>HnN`dwsBSJn+B{Y-JTtW+Wcu&FyOy1ArPf;K8
zN)c%(p_PPo61?otT0$EMZMjEEXjesP$<ya#@H4TyBb}}QD<4S+N(f1iB!nec5~31h
z35tXWJE#&go;o{9XVJ){*xi||+nu(T&`CmP2^}PKWIZF(9<%dwk<g7zT^a2pHg=cr
zv4kG1lk+D`dNTH6q+UK{(wmWdD6k)GQPDG#mCq#fm+(3BkrGBR86aVxgfAovlJF%f
z!zB#n!iI8_@(giinD{Uj?GcUO@!I8mCE;rc<0XuCqQ*!VD`8xwIiaWtY@O`*OqB4A
z!zVEzpD7ZiN|@&8)16tG;V5>Gvn0%RlsOW<l`xl^^CWyHVS$AC+_X!j%84v={1-X<
zko3h8mPlACVVQ*G5-v%&Oy@s!D&bcNztQ<GVWou461LF!FJYC0O`K=7gf$Y@J2}@f
zS(j<9sLl=C-01jF4L>{F9>rD(J0$Fsu+7o8Ga=7iO!i3F%Vf8sQ_cIB|KiN8ooc^?
z1FWBL^n(%(NjNOwh=gNoIx69Jw*J9QJJ3dZqK?1OC7hISO2TOg=Omn$aE4818Et19
z|B`S)!bR4pwl~>qaz(;b3IDS7nuO~T9!hw`%^MQ#FuCc(-jZ<J;gtNYgnQh)&-lO@
zm!0{sguf*`cl@6)`G@f-qwV&Lx&03jFPznRDd82J{1RT%F&;+FFyg|<5=PcAlER1&
zBOx4nAV_4SJa(!#qszv6_HgWMw@rk(!pO~fUe@z4CkK0$C^jD}`5nCwlhR?738OG`
z@+rckC}T0k;*7~*q)=MsB^gVFV~<d8N-E1DHG76pE{yVFR0yMD7#i!9!l)cZlQ5cw
zQ6-G3VWhH-FkE50#k`u6p$3!cjHOq^{;;hXMlEjYwNt1`*V|#Z!>Ap`8>Nop@J<+Y
z!>AWVS{Mz&NDsqKQa@9|hRoj$qfr>1Ogd#I=f<qqyjd9Uh0!LAwqd;Q=*`3Ufcb}v
z`LCx@R14-U!)O&oYc9<0*RHS~Tg5N}VR)JQ82w=gOl)VuAUCOZC5%uQQW#-JksVLl
zS>-0>r=}i;5k@2olf`afSYbrN=)}$Tj2#&}Fus|$3}=3*$Ifi(!r0Yu`-llyyNB^H
z^B#<L4W#!9;}cdsW$YbBA0~an=pV-CVf5oBd4A^fHGq{b7za95N;ru5m(H?MkwfXt
z-*D_J1=g`?co?(7n9Y1d7$d_N#r&%<CNrU4Ml%`1IF@l7<JVz~4`TxJiD67)@=X|d
zMi-+f>f%tNq;oYAr?5Vik@RU{On3N<FlI9UoByL>4)Y%vzjb`(hB43K^O=0dxFC#$
zOcsUleHe?wSi;R^jFfOGlUyZY+k1H!Z<;GuC-FxnE5rE7QC5Yqn)w<Vr`26cdyk)E
ztPf*D7`y15-!L|ZvFKqM@lCA!97YaZ>AEFlOBh?j*hU4<tV>7^L<n~hr^7@;9u2$0
z*b~M(3hFA@8^*pco`>-w9Q#?`U&1)V<kv8M3u8a?(`AwlhH-!nfg1_rQ!!`UtxBFm
zHSus5N5VK7#_wU=WKa4|i9f<P8IJuUKk;K>9H)h*Z_+5|Izhu>{_nupcWayq<20Qo
z^b;^)oD1W87-zXj%18X841ZBVN4XHjMb1ywOJQ7QeueQW<2A<Xj1*2q(q-ql6~^r_
z?u2odv;D((FO2)_{2+|SVf-D&LvB9Gl!3yZgz=QVGCg~Oozq6D;Tb2P=D%UQ3}dB?
zpJcoWqx&f|l;M%_Ul_0H{FjkMMrAps$ID2NQCLP18HqBo%E%=nw~X1RkR&6!j2tqu
z$#{?ux2u1x6Q{7bbjtEU#mJgdhLs%q*~&aJ^2#V6gB(g_bsd_Vlut%}86Ta(h{Mv&
zmhJ;ZJq2YHl5ze_>Zd2tXJpBsUl1-TqnM0RGD>q`aT&=nQe-r(lQ?ofu@W*$%J{uw
zu}5cOl~nsXjeckFDO_b_l$B9lMg<uyA41cM?amWdj;k%dN~$PhUdLjUD0WuO-6zv;
zUr(b739HDcDg!cHGTbt1%cv%!x{R7KYRRY}<F-~TTi0SkdKRO=N>(}z<SiL*%dz|^
zpVXxxPz~OH((1@al~GTQeJKR>+vIWLJ2L9Zh?cA0Osq-c9hlpdCSyQ8r9LB(1~Sqe
z{`q|OyD}QdSSrVUR<E&)ZI4smlkvWcCR9mlcT+|p&1h!K^sH^%AISKS!etDU(OgCg
z84(#Kja^1789^B#8Lefsk>Qi!m(f;6uS!bUhpFwTnNu0>)$Tn=^~&%*O#SU)Dxn}l
zq~2w$e3%+DJxu*7ntr>VyfRCMBqJ<Ck)g_vW!P3<yA&b^vSg5_CPSBD$e>jFaw<E{
zr;{n|Vd~&B=@w0bjE`mXkkMX72N_*tbd}LjMg}cwyOd5`!w|0FQkIO}kUP`##wnDi
z8*LTZ25nNh(?+VI{F^1CePgLme5}W54^w;6h-CDY(ND%FJi0!#zHL%IWlrI}WpsX+
zN~5M?uANE$Oh$j&u@6%}=N?a;NT*)jf0C-Sbt{#WFJugoF<HhG8DGj6EMtU>kuruj
z;~mCPLuF7ZN=TW9^ITPq&ln}+D;ZzQ7%yYAj4?9Ck+Y1kv?qC7%_=BO;xqcScGJvL
z>;xGTWqc#!pU0^UhDp62rH0}&TDDK8<|GzBjn9}WW15V)v~OihmoY=eEZWR6X3_>|
z<0j|Z(e%5m-48rc^VaS;GM+q2{g!%+&v?|<P0GUfjDb~^`7##BSSaH=nZ7N}J)w2X
zw1{@8jKwmR(EZZRy}hlQQoU;9Zr#RBndu^NnT+LhYu~{SwDAPjk1|$play{nVn4`8
zxJt%q8Mo*jp^~z?*2p*{<FJgiGS<mhFJps@Ei$&s*vJmwCB|)LvPnj}#JHcC_o|S%
zI5CdGx5?NpV~>ozGIq$=DPuP~?2?g|)wSwr7D95PK*E3TX4%Kq{W1>7_=QGC-6gqx
zqmd@Y70KpmmDNQ}@;pd40*B1V9t%7o<EV@a9Q(VBKbV}Cag2NUQ^rXd$LaQWCAB(`
zc7k?$l51IF+$lN(v$?2%vrJCYjhW;+!$^9M60UO`PR`WDUmTwOUY3h8F3Gqo;|lE=
z8P{c8<?f2c#gm&|Rr?BwH)PzTY25D#HB3HvAZ;2Ke@Dh$I&T%^R&Y<oeHrlz5)?e(
z46o?8mhn)=BN<d474}%h-)wrq_*}+QCjT%#W28<GCC0sA{;#9FWJ1Nfb`;`qN^C)?
zk}L{#R`O8(L{^d%WK)opc?})~xn)<7gO$ClJhYTKncK^hM?qc%6%|xckWWE=1tk=e
zR8T-cK?Ow>6jM-0!H~K#<tf6Xu!7YG(ntwZNVHeHI44X|kj#WUha|?)RPRrWqiHXt
zpbYDSv$;wuC^E_I%H}Gopqv6RG4Alxr1EU7py0nG7hSYol@(M`;AXw50w}2AWOgyB
zro{FqbwpQng}#e8kw{Giwb=TWg14E_2BQk?b*!zR4vQ;YNvR61@lK%GuBRYP!9xX)
z6x3I+@+_7pSgN3bf^=>+RNztYu7b;Tlk21<HKOiLp|OG{O6&;<eRbH0+KDNr%QRKc
zOu>5!-dFI65_^>SK*5I!qRg8!3N&OUEfln5(u%P)V;jb{G&BWX1wI9S1#`zoC>0@H
zBoZeKFd?on2`UIViliXSTxKL^g_EdGDxG!1@sB7lnOltXJ!X`auJ#H#DCo#y1`U}>
zC&tc<<kN*oSH^A%K4L;&25x8gSV0d~dNTH6q$kg0{Zv731$`9sRWMz_3^w&s@Rfqm
z3O-ZNpOw!Qe5qitf&mH!vhsz3K};wK{g#UTODjWI8Kz)3lc7rN$5Y5*1UE-AR#_bT
ztrNmg3MzzR-{&(%!B{p;RxpkUiQh2!TETb)6PQz~iA?AVKgnSdb2}R~r*LyB<1|L{
zpULDqM)H}ZV77ue3ch7!o}<rY^3LL<`3|8Gk^ce(3t3rYdonI&q;CbJ;+H8{PGeMX
zN5KyYRw!6Sw<Pb?q|dATNJNQ!S7E_q*H3i2El%y&CxLeL8YTAh^_GH}HR<~?%C1$g
zPQiKw8x(Bh<i9X(Qm~x~Rr0ff&CItr%2oy2nA6w9k;4v0->G1i!*?s#<M6#q_VIou
z|6jTJn}Yoc4k$QC_Y^CK7*8^i+hGMq6dYCXyMjLy98++dGuU?l?PRZl6TF}QR6tD%
zArp~P%ug#gqu{K9a|$jfxah>5SMV1{Q8-<89y{kH=N`Gj8Lm2&Tw`*brjE%?#zN~Q
z>hV$kDu0x9-Q{VgiM>yc0(>&eiHoE2flh`8O6--H*3}aqEBIT%JQed*JW=qJSLa(5
z|0sCI{QED9Jy-C8&J#7ZaP+s;zjRlsvA?!nDtJW)qk`88-ceCkMVyK(DoUy-r6Qhv
za;eCzB0)u>ima?qV0INr4$r3I?%-l1(v^e7oGPeOYUWXqmzClw@~OzryoibdDhjG7
z>;x8a2!&9pH`$7+D8?aglw=httdM63CMAAMD$S&lipna=s3`07PCn&SlxJ%N6&0D-
zg%MU!QB}p;D%>id!o}8_jMY?BS5d>sL(X*BHPm7U%KR1+5^FQ5<LIQMI-H{FsYp}N
zN=0iH>oYb{(LhBy^M)$kb^JX{D5{Z)#ylsKjhfV5Qx(medfrp<zKRdn`9l@Wd0EM=
zg_EbHlgF-^!rQ25r^2hEt>Z%`p9;T<unL*`5>y1)Dmp#^?$O>eAr>X421SL+N<@X`
z_!}y8hudXSFLn)<il~bADmt*kDDJVNiXJL@s>oomlZwtvx-fpEqN|E-Ji0e|Xe`}T
ze9R8SN$;iN6BVDU7(kwm-j7Ld6@66nWlr_jl~B}YD*ChdMj5DLu!<ope!)11@k?jC
z6g8BU;f%w$etV1~RE%WNZhpm_{6{kxqhc(Rag274;~k#~Dkd`jM#Ur*lbO$StW#7>
zWj>8@I^zsR`gVHig05LAX0tMfk(AC0J+x$VdEU0fXMCq(fr=X{ZmL+QVv&kpRQyWg
zQn6UY8Wn3*EK%vJa<EdxPb!wFSgzs+6)WfrxtZGYW@`Qi$b-b8r|_eS=UbB-#=GeH
zJ!?XZlCD)MR;$=sIz=lN6B`^!O%A))saUUKtBP$ZHmKOB;%B-m?`PT7)x9*}-lT$3
zk#qeVahsXvEaTdu;;%BU7PnHjtJtApH{GrAuAM5H^mOl15sG)c6(2`Y&t4?n|Jc2U
zdSr)vbWD{?B2T*3bxQtC#eNm1Rh&_AK*d27M^qeDaY)5sx@BI+SG}L5*Oc_OIpRL*
zl|<QoSMi66V=9iTpzpUhc^|L4B@mua5jl+ogR1;Vhd@aeadJMX;uKeVC_aOlXH}e2
zaY@Bx73ZmV6_t9pFRHjer`!Wjl0C66%Sp63O%5qnR9sVWU5#0<(oI(~g~-|j7tPGj
z8>u%=d2Xq=O{?%4NgD1jiPMlp!(A2kRNPnbK*dYehZOKURPi?*_$nT$cuey!(nEn0
z|BHn`rG=xFqFFkZ7Iz_yl;zj)OhvV8=zT8j1?yz`SH+zo9wM(){6~l9M0eI#cuh-x
z73&Ik&Rjvfh6F8^Fe_uCh8{0t&EnT%IB;e$!fb3Jl3k1GIW*+dVr3A|rD5S%50ShY
z=(V5}4J9<>(~w_70SyINOx93HLtzcYxJhmY;u9urDp^EBB*9fw!;$_TBBU2*hvK<B
z#D^6~F6sD}VNyy%X-6qJKdG#Sa@;J>Sdp;;V=p0=!DA*>(NI-Ge*>QzfCiU_FLeyo
zQB6a24ex9CKtl};H8s@Jkfx!QhPO1-;UtvdZ6>ufxS3F=Bu*=sm5{Df4ezjiJiSC+
z4NY#Q+IoEr9u4nmXu#HV4GlFcNlG{rpHS{a3i&i*ok$Z6jhVldHG!H<H8kVqdm8$E
z5SvfB6y5!yhUTPec&(v@hL#%EYFMYCm4?<dIt`y|XrrO621SFap`8Y=22n#mgHMB>
z0t?3eoS$+B@rB|9E%qlrUG)pc1vP{;$Xd)KvHn+~m?vFfZtf}+*Z)zLGINtO4Z4Pp
zG<4Tsuz!zsE|XSJ!)npBKHWuVaY&T0J!1#Pj*J<Ml)00J&dj?wN>>ftn5X88Cx?$|
z6VeQ5_)J4j)_ZCAgh`!3ai2O-eKhoDPQ@Q-nbcKq_2t6s!Hz2wXOjUM25K0uVS<J)
zGz`)(TEiIH2^t1#7^z{Dh9Nvf!)S}%rSC^_4b?#5M22(z5sWl-)KN>GpRZ^(?#5<m
zR(!%(?(}Po{{6u<PQ#*f*X@9d_?+$uxr@e4)bNdlIU2szFiFE?Ew%*HDMUlvbk|gl
zt(D<UshTv6Idw6#P~5gGaWgc`bVfQ$!)%B93&qXVFi*n|8dhkSui-ll-)mUxtTN?a
zKzAkkFJkQCtmzUB#Fw+Uln1+vk-FPcIJWLT(w$BVs(}=0mb#YkWtZfiH2ii4t2Au&
zxrmUyMgz@uBU*P28#LV0a9_hl4VyHa)^J9{&l)ys*stM$hAk9GukCBtqX9HD4LdaK
z)Ucgaxt)u~yWvTeUC!v@yCze9Dsrzz-(BhYjpt;ahPijJHA~zt8h&L?&DV32_HvO2
zH5}6LyM{kB9M*7QZTiM4Nk{2a;WeUVqBS~FC@$JSzUXru<Bm>gIIiJ@M&GgH`jeHD
z<X<R`9K8I(7uB$<aNJo9=QLc=aFti>yoP;V*98rK@hbP{{SfiHF4A4#cU@w<tRZ*R
zBx+vc%5PJ(0oQfrH=Omo$>bKDqE(Z2c68sN%@%O2^SbWR&6OS_52!E=FWBvohQ}KI
z(eR9|e`|QE(RVqzp0M?3&$={$<@zMk^_&%#*Htm#p(KR=vhtGg731yr4DyfDkwr%f
z9W8al>qyX1T1Ocji8`|C$giV-jwC&{(AjikCm(13<j|2@M;<oi)MJN6F6MNj<z<qO
zMf<+n+&g(<x{Hz&)KOeVvW`ORQ<$*`BUy{;DCTfl_Y@u96^<*(N(n|g8+n%ECM|kd
z9p!Y?((#s#@;WNed9I_nj*2=e>8PxuN~W4AysD0~-q<ba(gEhw+*>7yZa}(2>F5~M
z(OpAFO`U!%E5?g?U33?}t;4OuqvKs2wRP0dk<JCA>Uc*-eH{&S)aCKgJk;YJiKMaO
zE0|12BGo*Iw^QpvajU0PX~^O9nrb5*jdi@Q;{zQ{SfsnDDF>drnm|WTGv@E<=zUgh
za~B`74<&D&wK(N$uE%Z=BCT|^*3nf*Hyv$swAEqiuynN3;nfk+A#q^a7D+xGejS1y
zJGDd|j|CTzu7%<V13H4N6Q5lqF04b=>5Y%r;!+n1XINM!No7JeNS8-hXi9ZGcF-9*
zB1|e4ilb&!M|&L|b!6!1Kqi0e?tbvAOytv!ZgF~*PCEUUrR)2v3Dj3-8igL)@IO{e
zq2@=#b$qU4fR2xK^w7~yr(a7<>Zzlbj!$*a#wO=wkF$J2+jU@-;*F9U+(mC4ec05O
zM(1@k)YTT(5~yr){!B-I&QDS1t3;}qiW#Wm3q5vg-)YCIqvP*Faa7(A9Yb|2)v-*+
zFdf55&*EC3V+51QG#gAt>KMi3D;=YCjL|Vx$CC>Q-{=^p<5CtEU0*YKxjSjRjtM#@
z>e!d)x|`_AUp|e<TlHO&bj(k5T~w0I2Ck``Z5HD+9n*Epp!;iLQmZ_1RKQHyat&Pd
z^TZL()-gxND>>;~x<P2U$5)xFV;(zHYUg?#pD~~NB|^@x8n_m6PD-+fc0~i%_c|7{
zLVSsi9~!vGZ8;Ggdvxs8u|mg>I=1TArpKOmtkkhu#~S88F|MM!?0jnX*`BpJ*6G;5
z;`Yn2=QHb>6WK95_PlGOj!mo-Ovw0I2jOPMEsXSJd%NSmlgSRoxamo|nCxb3aya&E
zYM+i@=+-t+!-%cOuR5~Ls#(#%Z#wqtIH2R8j%zxu>o}z2u#PJ_uIf0V<EV}^bf@dF
zcMpHp@h6i%bR44_p-H9Gh3?}zK3U*Cq2u{)p6vV6t-<Lh+2<5(q{Z&jj6{abb)Tb+
z`Z(=^j*Cpr(;j9L_gp6Zk`8s2o8I^vw#Yp=zw5G&S<OAv>BE)oXH(qA%akI1L&r@T
zd$Q}5j$1lz(?Za;(Q!w|UAnDwJk)WI&f&gE_vzLv=USB`uJe7+H8?Th5uHo<;wSe^
zB7CfaO!S9I6U+Tn$3Hs$r31urKVu~Fg2{763LmGsuP3-(>PRi?(o{F;|LJ(GBhEk;
zBleP41q1O05)336$Y#J-S?PKq<(ZkDNHa|DKN_GnL#robWH*q*KnVjS4TQgS=VZ)l
zAeVtMX|CJ`?k#rbF)*N!i>9m55_diW`3*GOEfp|O#DHgkyP$zW2F5ONQ#f6P4f@&c
z`b3IyDk8-U6nA(slN3%)rnSpcOBo1mOD}JLcxlp^lr?a4Qp{S;z?IP{M5Lz0Na=AA
zNA`It8UMQ<D;ua{pel{`k94qjBzuC3o1|1Tu<m{;k(vf-83-AW47_FFZ38U~v@|d|
zdz{<ANqVkspf-~_22z<wfy8$V)MZ}JK$?O22I!3m(uZe{qc>I>u!&;Rjo4c)4QVQv
zyvx{#k@UvYFTWGfl>M6-c#lo=R?+)RJ}~ehlU|8&&8fmbV$CEMrCn$wwKCAofY(54
z*4wZfnc6bJkSaa{e&(WqU!3<l1OxpJr2Xhh3a}~2xQMM38#bUC(6|`cfWo9dzq6(r
zFbs4y(8WN6b*ewZfN8)o5H(P`gsX#rk%@8bIcFrRi)!vjlf!T7+3)pqq9hwiQ{dw4
zaa|33Y@mmMZnVb^rqT5glkSv1tBaa6Gd-F2HPFkzCk8&{Y?P`GlioA~{O(xwhRJqF
zKLeEcGkesDaRUqtH1Np6V+&sx7-Znb2v$b$rGdc)j?gYLFvP%61Ir97H!#e=a04?9
z%rY>7#$sR!6>vP6UXmSU#NN0WZQv^dFP71dtR+!%3~g-I#~B!J;Kuu|uNjGSe3)f|
zfr;Gw#=s=nPRutvOryZXOC{T9s)1=n?DgL1M(iyK`a$y<+{}3|l|GR&+rS(H^9;<V
zYA>aIYs7wbc`ozPo7{BKZ!~;oV1a=}w5yHS+fNG(Z0nwItZh<{rAgFWY{Y&HWho<(
zC3L^EO(K$YQS3)IelW1Yz!n2rX=W(gzy<>w4g6%pehueQ>$2;ZtYTcvxQ1>(y0sUl
zHhh^#xVEipJ#C3K(u50Xn^^yukxa&rQiPi+bEzaE+YD?saDc5l4D6&mY2a4_yA156
zoNZlu=nk4%<+rvjrCQ?s2Wfj*Bz>O&N=_MmGmxiy@_yFOw{?{mnL^e&FB1=P&O-(c
z8)!8znLO!gF-HE~z#p`l5zLC<n1SO4`b5w-f)fV*r2P{?{RmDPI7Nq;f%~)#`V^zr
z<SQ>uJ#B#SjDfREh@UfX-oRhnyuf(Nz(qPz3|yuurIlszs^fp%z%}Nl^Lr@V<~M2h
zS7n=%c-z1o_PNVw>kkY(q+9-kr(Oh)3_Rwwt`@=H2A&wm8i^J5)am6FlYbbWF+Qiw
z=~(||@{*Cp^&gYhjx{cVESxQ#F@ceiCq|GuMkbOJK{gh%N029iyb<JZd~!0$#h9Cs
zesq;W@<mW0f|3#BkDx#V1tTaFL9qymvrl2hq7f8fLjE*4_NbFtNpW;?u=P?Al#ZZc
z1eGEv!`8A9lw)E$l#if-6E)&#Jc)#rS#dE|VXPVfBCr+emxz8RR&e!5Y^v$1!K7vc
zwV1rc__kwpM^M}0b(o|^@J<AEnbXfS&}HYLJFY<lebyzNy_f1L<Vla9VI+3XddM?^
z=FHz^Y{b}@u}K6?nKWa3kCCF@kKhA`H%rJMr9}kYSZNtSs|Z?0(1ykmfe}I52=d)c
zqbnFeJLX<SAETd9U=$exjFi)k3UO0n3^U4%3Zu%XF;Yl`2?chDz+`SQMj6{P+WE<+
zBR4Y`J27@<?84ZUkup=-k0R*K<YUGjj6E59F_O<G5q#?K-b^mjH~&ZQSp)+k_#%R%
zc{*m~?bttp&m$NR!Ory(U38X`NQ4$>Py}B`FrFR=&f?2R?Bj@oBN!6FQ0BuJ$1)CQ
z91+1tb{@s}6(dEBX6u*;s;0$GTKcTxI5rWPz=TBF6%*O*n+PUFFgb!L5lm-gD%~l%
zGB@Oz#)O>dqUIA#nZe;iW=Ak5g2fRmiQwA^=0-3-g6|?|bSI783ZEANJ(>_9TtL&(
zqwbCKSQv@@6AJM~yg9#*#NM~1k4M&T=UN)UvIzb3Ls{x*c?7xMPW&N)PfmJhR%y~m
zToHlytW4ym2v$Ytc_8+iSRKI{s?em5rD1IZ>mo=oW6!VFQ|}REH<81{#t1e=@FIeL
zBltOj&2;}pa6N)85p0d%_Xz%oU|R&+DQ5)qnYtZ}dl;#?lgX|Kb~{R-M)F>V?~C9U
zhyTiCf>mt4qa29fpu-PEaM<BTm>gvsI956q!SM(#Io1;qoMHYa<4H$9#pHAZ)CCoG
zHiC1koM*hq_*VoMn2^J^Yp7n(L*z1Tg9)B1j(#<QW~|>JC4%R)ps!;CzZJnl$LDqg
zcbMO0ycfa!2p%}r6P;rPyz{;ED1yf<{>`|mb0yNBFn=1sKaT%1a+?&ZB$SXr_%ec5
zY|3ilzX)E_eR>56CgM!&9p#}b3zMD+8N}n6(}(R6&6rz}HKhstFOg&-CC-(NQTFIL
zP2@6B&_p2<xy}E*5K*W|Tpkm7&DaZi`OMhs2KkxiE*w{YoA&D!g-sMOQJhWWNg`oU
z6U7{*EWcWkY~mw+eS<bw2@?$y<A~7TeWguQH&Mex853nqe3sQ!j<Je~@=Pi)l3vk7
zB@>mo*)e<EmENUDq^qh4u;_9;t1-Dax>!vUwM?uxvBAV!Cf+vD-^Ax8+$L(9XkwzN
zi8>}yO?XW7o8hjSn)r^1x+dzG7?#Ub-|wFKQ>DbeQqxS-H!*vzTg~ZeV1oW6q(1=D
zX%r^T%y!fD*PPUK>7I8@<XN8D$i&k*?#3pHmh*hw%H7PwdnP`n+2FwUO*A*r!o&wA
zKBQ?cl}xGVO72~$rHNK1G!r`YbqY5(muPLGjfu7<+L@3{giUzqwr${Pw>v##!pGdt
zC@_kQ<PcyIWIVAco&0GyqY^T5tnkPt6cfu<xruk2=~n4BU*SnE?=eh7Ok|koL{l-<
zZJLOhXm8?XDUZd<i0rNoOgb_?+>}mkMFz%jYc)@26J1UGusF4g32M&I=OXMzi*Dk@
z%%p-dN_02z?cowLi@0d^dYb5E;u8~}(kcg%4y3z;vYzebTw_<bd($viruOBz>SN+s
z70=^}u70$jwB^dVN>p_vRCNvTcm|jlXkxU9F(xSd3tBG|!%Yn0sr!<`O$;${Y>{Uu
zEAMrdHa2nn&_<$pppP7nFfq!+S0+Z9xKJmVl#TgPlD2x5>`SMar@ws1ni$7{6B#QU
zPyX6O{z|cRA8%p;i^SJ0bbn)Fl8MPCrqHaKSZ-pfiD@RLo0wsu_hQez^`61sySrER
z&~`d9*FDq3EEA2Fx@R*kV4Opf!(=YwJjVHq<oO-#r6K7=7COoz6W=?0v56(jmpV$e
zG}jNb-`2TT&|Vr=;zV`V%ST$Hx$Yln@6~XvH1QJ?;;U$fFkj;+YniNL{5BzDqlrx>
zwwu^t;%5_^O>Cj{<<+^A-!*ebY`V75hKH-vIye3K-`kQ%*=b@IPth+XzO3!pZDOAZ
zx{r)?>3isSY3tcbldvZiyC|=xkUQ~LcCL{-j+6r?4$|FW;X@0DOdO^_3t253F>#dk
zfQg4DemC)liHr1TMQ30Z*D<;cnH;BG5pka|@u!KC%ug}SxsgixY34*G-cVz21k(=b
zUiTd1c@uvzA?1PzHRL8jnJ=5TZsLZCE1dsmDc4mhqm=6!W5=lbrioi7?wYt~;!$bW
zZ4+aYJ!dpGy&!hS#N7KRZMg4Kd8~BZmrNwrjg&_w9#cXSuTA`I;)#iWOgy7$G-L0c
z8x2cP*Z*1WbMdYVqWd{bzUF>K_Yv(?(fu!DuIs5UX_Cvt9LU<KnY8U%YMd3DjRXr>
zEWB4Pt*7CRxA3ZrYoI&r<bTOD<RlB(ER?oT#zJ-rIV_Z<Nsdp*X<_JRNd+tvv_S9I
z=dzI7LLLiwEksMY@>{suveKLbsrf9NE#V^4t)D^zEM%dug+70HQYicsidZPhWL)+H
zYF2FTE@q*)6(e*dGx?&VYi@gY2`l!m2jo-AE?96=*<~%1vrxxEs)h0vDp+vE$5o>!
zi(aq-IJ3|xNzvVvE&P5swF)DVsusE=x`>n%+%5~JuBcDqi&wW$!$M69t?r{>N!Qy<
zYSHMJ<jL)^b+?6CxjeNk_*=Q>pG|wmLR||DETmhY&l}XUFrvLXjl2FzPpZ$&F=tXp
zoEUI7wCH6zG_~Nd@UDeM7FPe6+Ht0*G1VOJBL0!!rvI&=VK$@XuwpO$bt>gbPjnG^
z-@@`TE;2Q@(89tl3%f0}q}nX>u+Y;&YYS~Gs1`H}Z7sC3;G-fr$*FQll)-DoUP#o7
zrVtk_1TBQvDq09IS(lJOCW+>=tV?F3X4t}%9Z94ptaR*AlDKZcu+YImM+*_wEn0UP
z-RpRhn>i1r-csD{X;G%6Q>VleRCk7jP8Paa=tiDJQYcSn?zamgDb(FZ%<t7p>XEH@
zcZ)t`=>C|MKX0V&JDA$b!Y3A{T9{_xQwzN<jI!_*?I;U<Eex{orG<Vx`JY=DK>PMf
z&u5JN$&|}OO`5=gRC9vsn=-D039c_JbkC*GXEO#{7-C^wkEG!g&KZU=*2|MZA$0wk
zlrX}=NEQnx#&y?YpDGz`VT^@I7A9L5YhfJSCfO1O9Z3D!!gvc4sm_wF3ABaM%969%
zJr=SkDdB#%gl~8Ujw#`p!U;*Qa6b#}DBsz%=@w>KSVqfjVJ2-hs>;HA3$rcEu~2Gx
z%3KSz@27qn8?~DTLYxSF#^zqc{hfsc78Y3`u0BekO+_E4Sx6f@K8`+}^1X${7MAd4
zBhykV_UV+qhf>enkUs1n|6pN-g^d<AS@_YyN(*Z&thMlyg;msVj^e91@WC-pTfdva
zJC}9Q$9UFRpbyv#*(YzHgF<w#rxh371!j3jsVBI9wy@d44hwYn&}U}0SU8@LvE9N}
z-ptz=X;<gy;ieO^Vf*Brd^phgQ1x)?9t(RdT(EG_!afVX(0yv*w1r<S{AS@O-OCpC
zTX>j|(V<3|hTkXTK0x6i_dz<KEF5NzkoyP?zod&U;xxm5&~lvhoZzt>qk5d#xHPaz
z(QfWPX-?=+>gJ})7j~cF(}s>adNp3L+-EJEvoJjDK2Nv&01sV%G3gw1U$Su7!VL>I
zEnK0KuwjX-981U4@UpIJ7Or!1>*+L7@+4;5vT&P<XOUL_4lS95`*dvbexMVTdLjLf
z9B~imjxOiwP%Dvk>;ltGhvDBAp3p+K$HMk_YT+MRo%Sf*9?vX1r<)>*K2f}|@UMlk
zQIw0~B^~K>K1Y!!iju`+pI!OS!fOk0QDlk6&i|az*ba}6A|Z;zDE%qtrjII-o;8Z3
zD6+AS(y&CHgyJ>Z%h{vI5d|Gn^f*OGJ1tif*Vd%wxtaRNOs1%UH&XIOkuQq;oVHjL
z#iJ+?MZsw7)GZW6ktoiE+{6n<V>|F}``9)v8b$R7u^TfviWKg#OcW*9p(G=n?c`jF
zd1*#!hK{7#pP4BiMTIC@MbSEnicwUGqFxkf(b&>gCXAwH6jh?A8U>>CCG&2&Tv0Uc
zk!15~)Vrh8;}=EMiozX5Z63l~QM?_+g%^o*K-H?3REN{PLnA8bvI=EQ<!05yjJmPP
z-5uMNrSSSuG>GB@Dkk2Q9!2R=E>9HiMzN9hc{H}5q%@)eqG%dLvnZNGLF-EizkiU0
zHVHj!y+^~jA6u9AqacxZ)5O@P(LSW13GU`mw1~zYAX-LapJe;{eypSB^E_>$Xd6W*
zGDXoY3U3s06iO7nDEv_bqgXU0UEtXxf04<INbGhFFsF?dibA5bdl2)adcs^7ah1xB
zA`*p3Q=L>?kHX*rsO-i~%Tgu3e^JGvm5q0`kD@~qQJx=ftwc)FF^Y^RHbvdfx+VPg
zBnu^<<4z0rs@o-st~BjYbf+cj;V#p)(m~zbEs7q?O41$uF_9?!sqX$Xik`d>y{LCf
zrgh(ExM>1E;fei8cPohrM-_M9DEiUPjN;EIK8vD%6pN!+62<3H42WWQ6eFS-$XjbL
z59*63=x!PmjXki^^(B)QqvRn`<n8GmN&`&H_$)DF7)|x9R3amz7!}3rDCR`*RTQJ6
zm=VRyD8@uFHi~Ic)XiPIz>C;@IxdQ@qZrTgb3E#<e>r_Z6ogGw_eAQNmRohxHHpb&
z#wk%ub@Va+#kb1aaXQ^KMLg#Qd+50kJtd<&vq*W7IA2NnmMV|pyC@b!F^|WRwQthq
z8>w{6&X3}5(G()pvnDL0of8G=opfaplZlBLv;7`gtff&bi(*R@TWQo${6IU?J_HQ+
ziYV4bu`Y@qqgcrs_@^jVM`LroDvA|}8N1?Rhr=40Tgy$)c}QPRZtdN)E*qG9ptzL|
z$xTkvisNVMm*;_=|5Q-j)HSVa@7M9$qSzh9o+!3+zdNGX$phI%3xq^E9B3Np0h(^5
zz0v>2)OA2fQFPs1c6SJ(f`YJ1Rta}d)WH=N)&Z3u3P?^%W_zY*rsE`nARwTCAVI_|
zh@gmMR8Ua?Ba#IJIcJoN0fGP48|OR!IeqTA_3BlARbAa(RgDeB*vJeN;|I}MUkq<!
z&yQ^15=!mk-oBNsv8foFi?M_Ku9|mCF<;30wiV;2Vl@-q%B=SFwLXXK5}aL$zMBVo
zNPcGT=;xz}a`yFGF?JT?L@`c^k?bnQ9@;aly}EaIG5n=7m~$3<ABO_Q&;B*rzn^1T
zXCGIt9x4WJc^nUq7UQt+Ba#;LpOPPwG4nVrc5D9H;r>&_IL+Z#LkUfdz-NkawixFm
z-QSDx2TkjT-WlgJd2>Hsj0?s1vlxFB<036&knfVjOhOalNOHMYP1vr87oC4|@aLFN
ztUmi*<>1fO<X|q9d`(*OUXPk=x4)Rn>g7x(Lxb;J=H%OR7-5!%Yz;SSxJ5&b29Ji)
z8p>#DxGt%Icl?~{-clMC*79)aFYi#lHO;$8<3hEZved7xmIQN@ZnL23ts2T{sHCB?
zrlvsUHQc7*c1?};R8Z+^$_(z%P*DS&yp~l}D|;s$P<i{ZOyyh+c^WvZRnbtDN$ga&
zhGY#jY}VUXP(wpa4P7;K(@;ypof--mp@zFO+94ibi8R#KP)CDTLw!xXiK?psnp(|L
zPmrs&C`_#exknW46ZyS@RBNF9=X<}#AJ=-h7>Uc?8j5dY4Fwt=)R3>?A&tL&Q|nu}
zK(0|bEEh^~xlR)eqhxIueVdBcwA{*m4b3#P)X+*pa}AGZc$79EYZR&0cCKegg$z0$
z)6hc0>MmYh{(7F)8XnisRzo`tZ8WUERN_fVmqmC&Q)?7SrVH|oS$ho~G<1|gJ*DyY
ztZEfgC&@q;4SW~J_&cXdms+vYT|*BI&uSQ>p{Isk8Y~UAh9V8UHE0?F8v1DHtD)2F
z8G|HjKgj^sM)sG41_*MY*FX(Ku1;ieiX~BIDX3xau`FFfh^^Mi+q{#P7}gNc)RIDK
z&a03?Vu;fe<kB5SgUf&#hG>Xth-uhyG%G3b$2A-}S(MOlva(tVMNVY77|&1*!!(T0
z@QjAK7c!q_Dz|40m+WzIBa6?MjUy#vBs2pq0UD)&I9hOWThCYx<220B@Un*IG(ONN
z`*}&jcnuRYOwuq}Boi5PJI@Om|5mA%QE?d(&54?uk7m87VT$NX736zS%BN{+<>Yk1
zW)(B$AI+kX%+&CThBq|4sUhpZg5?)8U)AuM)DlCzP6O`f<+VPN`<8~cHQuoBj;7M$
z%FLs$d1i@mvI4(*F>j6-5_3|qyZ2p<e=S!5-_!8Eh7+tP4fEMM%496ou!NF*_&~z~
zAs-4Z6kH@o-}Tx0QVq*!KN?nQSgv6O`<fiE@NduDk2nb2pZ&2YGtST5x(u>P!>1aK
ziSRQGpKCbGj&E0@*J=@N)bIt1ui-0Aed75soz@x+Yc;IX@U=+37hHFy;2R3h6nrcA
zogkz7L44N>GAEQUstpoh=5P6%G;G$eMSSVCN5fVP+cf;7VY`N1BHuwnTI1)nQ=C6*
z_(det|CM7@nx}NWjnt-mw}#yNvq^aEl~DTx_iH#Hgz|&5$u#GY6qFp%z>_GBGHI`e
z<Txv^tIF^|uK(9?npPUbGeMk@P-TL+Dagq%{?KriX2Y>Jh))mVyoL)LmV@e`gNqyz
zHLMEY(*Q1W@~@#w09^z4laqgregWJaz~37F(Qs1$WdpdX;a?4z0h9>fnx<m7A$VPI
zb|24?i^vEl`OH2ZVwP}E03`#+7M>$WFDesDiL<m|yYG~wOaNad10**Ga7zG{0;n9o
ztpSu1oeBYzPseb302ilwZWHHSGkY?~(xtf-#Ti|ddq)80hWefv?#m4zFMw+4P*nn`
zn&yk&_52?2Ghp=qYKX9A0JQ?RQ}|sga@P&@%~+Aki#oLfs1rbQ@v0j@y#O8vz!v}l
zh_v_K8$g2qyaCh~=RE-wuTr6Sk=z%+{Sq)GoIcjKcZu?C7{G%8G!CF3?VBIKL&6(L
z3@J5VPGJ)fGRVULG!<SbxaG5=R4RUPHVbeuXCWnz1n_78j|I>ofG6k`K+6DH1@L$P
z%*>I+xy*BG2|~j7+X!cJi!Y<Ca7NNzNISt5OLLzJV9*dBuMPop6y8a&b6U>o>J~uv
z044_TLI6Di=ox?$fEz$BiDW<k0|O`upmzX$MAA?2S|3l}0E}h-)mVQKUg+Z)#7ba&
zij(=#0tg16)Ass!0s$nha0837nNR@XfZ~+X$&1_wzzo0&;MK`>UzuE&LR;c-M)_)X
zX%Y<}CeASd#2HlpPX{nOfMfuJMLsluIg{%S31C-AZ_a2Rv72OXSO7yl$(^`7cSHcs
z1TadJshLW5B+EO>H+)&{=m4G-ujb2g>)1XD#|AJ?B+mu#ypU8r#|xhz7--px!bt&4
zX6gaF8^DVJObOr>mLh<u0ZbFMmjjrdj^U*MQekI^Bvm1dWM<m=S^%#LpB=y(0lXQ&
zEOEXi__koYpXvpvu&GvfN8~BV+yLeU@Ie3zMEIT{tNMK*3^-rN_Q`cW3}B(~j{{f~
zz~TUwNi!`GA**qzkdW<Ts3mvwT^_&+k!%^MBp=Z*R`(>~^$C0ZvfPyc_=l>>|15yd
z1NcjnR|oJ#09yjs%CRDVuSEEx;F<uw4&WQ%YX#Q{HXGslR>%*6-w866?}dEc#j{>W
z&1;#d)HejMQ6!tvnw!&_+XDEBJt%;qBH13mP8vx7I|BGQfL}!TTRPOQ=}=4}74z-@
z_KR>&0DA-2C%mwMvive5d(K&&dmw;=0UQe8Z~$jU_!=zB<wf5V9t+@j0KW(DhXgzk
zz-b{TrJhd-r*f*{&WMwRI?KV3BYXf?0yzIa9ZHtwUgVXQTneD(%W6E~AVB$_X*t#Y
z7XFXm)d2ow9~6E)fEz-VHLR2oL}n0K!T*N75<#4QRyAwcF$z;dS&rOyJVBHUqUw}N
z^FGKeC6f0JqSu~m-kv_PE0qo6<{&~rHA}xGh+Bhb8bo0b<$@?5#9cw$9mH)x+#W>b
zAaaAK5JbhGS_xT6uuFEv9YM7+kXPM|5<Js`UU@-O38IE5&{;JIwJuSdRH&Yo^9+ib
zLDUMWRf3Cn7|0CYof6gkd;PV8s1wBfK|Byd-5}}(ac>X}f`CND*y;!24XPtAcun3|
zz|`*vqScGJBuw$XAU>9y&^b7xgfE?9z65U=#DgqFNu{|bTYo5sMnP=J@iq?P1`86z
zkma@M9ClZB6A5@JTYoqRe-K@Q=o&<`AeyrpgJ>JXBcjlfNeA(05RV1HrIIZ~$fb-g
zd%QfKq_sF7526iI&+$_DP!;bJK`gA|<wDcbb3DvOJJI0@A)SI~AH-AQ>>$`tF#oP>
zE=El)G3^}u@6?NKL39tIKPxbZ9zpaBqIVE|g6I`Qk>rFi^ZXO$fvYQ7-c;*Q*jM80
zC&&e*1A`b8gf7nFAhaNY!UI8kF4dSqZ|&?<1{eb)3<tp%M3EqjAj}{vrWiy#2)^yN
zgK&aygX*=|lE$7W4e5Ecs(fqHN_@G|XG?w}h-45$gBTXXU{-h#x76~UF+GKv?>jyk
z-zY&HhJ8ASrT6C!5309MBz*sHqiLm)L5vFG-5}-$F*=B6gLo~7*Mk^C8)k}9IpczO
zE{I7%OqPN?Pvh}&SBSFP@j<W&cq|Fmmre}g1rbtCJ9#n9rv))3&8G_CV&LgQSf4yC
zgyuSf@dVYPVqP<Yct!ZDf@2$GQ}{+YhBukI$NOn#bvVgeB78fDSwdz9dD<0MZYvv@
zlhQv>Kt7MA62!6~mIv{DX4d;Otp~E_2SLkWXZb)<SrEjBY-o>nVGv7%ED~HSNcoc5
ze&SN9$uTS|B>vCXra^p^N-M|vaS)#bu~M9?IAslD)s;+Upx0g5^MtGp;)@_Qvx5Zj
zWe{Hl@g1`i#F`-1N~muH=U>TO#|9N^`C268G_7xi7xc>gK?q~s5X5@nKe9vZ&HMSN
zD(}W1HZj{-S>(K02eCD+|5Fg#gx_0VRp9m@b_DTr+V>YBOo(1=mz_cE;#d(ygD7?f
zu_uVPb<EPSH;8>f+@s@O9s7eg5JZNKOdSV<I26Q%AT9=RIEW)boC@M}5J!VJ7Q~65
zdcBi+M@@2^Ba-a#JSlQY_;G=FCWt@MlHb!hXM;G$F<IoZ{qlu3Q+=7e6vX8q{t4o0
z5Ld+aFTp<r8DT1kzk~R<zlZxN82`WGbv=k{LdvAR7iW5Jq=S^uk)<O~M-?5}I&yTC
z?TR`)I!fv&tK()JrF4|mag%t_w~P?t4o7{BO(lAZj$3t<*KwQpQpo(2({V=janO0Y
zjtaV}gm2^<E(4COrrxUEp`((H$`UG9klSq8h3QpQM>QRFMOa-&4IOt0r&moOcQOyB
z@@fg^J2A?~y`xHfw~pF6>gecMLnU#E3tuz6^>jdoSCs1uj+pD|QbXx8R0AFN=@_76
zATz1s0Ub~1cv6Q?M?)Qc9nEw+s3TuTfsQ6R9+DUswvmolLPf%>u?TO<(VM1y3x%-S
z`O*Ag;r|-G<~knH(LzT{kvyv7F(JH-vWos1R+Uk;($QK+8<D%y>h3jbKQ5f#+EQsT
z!nQiv>FB1TyLh$N(NV}#f*k~@%ze<Ebad8nz*Z*ro1N7~M_2JpeIM+>iV|mE!CpFw
zboAEMTRR3hRj4vwr)=dux_U3i82Y7S?k|L&HU{Y^)-goKP#v0%fDTKCts^K3VL@H6
zwN*Q$V@bVi#uL$D=rDDx``VLQ$<Vp4DxIUl)sYnaD63aUTrgFH*3u~wBDvg41sN=y
zTeFAhcv{CK9g}qo*D*rJXdTb$ct#YcIZDUKG_Sc!ZC~P6^f4lNJ}n<BWSovc-F(jp
ze!4M#ya*=<PSn+$=LJE&vYyb-^P-L^I$qK7s*b5Trit3ig3|?G7+v=z9sH0tL-5;O
znDKoPQ=duwpdzp7cwIE#61=j`^M;N$b-t-q1>|QAVuk)H!?Sg~qhpMTu_or|c$bwQ
zh8D(L9rM^vLns@<dph3N@h8nm$9x?h==e#;b{z|Je5m7N*6=|r6kH~_NN};>5<w~~
z)$#nS3=&?;b-Xv)ze4aMLCzIF(XmpLSLu8kgYR^Fs^c>qU9M$*u4A>1FLdNSS6FY5
zXWrJrm1T3jq|P~f#TMUEu!g;RYr$GUl66A9*6~eRLe1}W{Gel-jw2UP<67o=7JNs+
z)Popy9zW^|H|W?XWRu`#!7YOH-O5s5RB9D|$*-5A?_g!>ILz2|EDGiRqGJz-cOAdd
z)OBtp^Kr=yKe6r9u}fN(O}twO&y?6lg)HwOwy&90Z++2z_9h)9ybcQCrv!f9n%N`w
zsE%V2>avdGI!@^LL!2jdoD%Z8;AvgWaL(x9fN-Kz2Giv`{8mx5RDklcI?i#}so_1Z
z<ARQhy819j=OrQ2yZXo{Jf~JQT+vY?l*<?Of9v>1$2A&{j;oB8L-%wKH_asnXYu0B
zLE;S^86jkb7z8bD&Y*+}Tgzr-h1B*sUO7UtL)cwbt-AE2<t0OExo;_PmJXqekW}!S
zL%1abH-u;iw}wzIgw`QE9#U`2%7;)jq<YG2A>1B91rgpMSW)nYag~PLqh7C75@%(>
zT*15$stBR)JH<_^g-|_&8X?pSAwPtNLZ}tOogsKbs2{>zA>188y^xxu)efOfNSzQ!
zUN@ws<=n%?#h)X+YNiCyA^D_K#yuh28^V1d+%Lkua@bvi5K?=c9tf#t6VCJ=48a#d
zLvivsg%c76=ecvlMj<o~p?L_8&{ra98bV<RO@wpW%;yvyPxo*L%|d9}*5?=b9GM-Z
zCOnUdq(ulVLwHQG{l9r~s}QD1DttEKY@aJ&+l0^|gpMIR5mFl=c|9qltzbLB_JU6d
zet2^pbvlL6GlX6u=^R2AA(VFwp_}mTf<4mmde@4ILg*brAcSBDeOR}eZ%{}r59=F3
zzYzL|Fd(G9K@VirozLY=zIWrAT(Lt*{VSQpA!Wb}qJ{8h1^<J^KHkms5R4Ga5JC*d
zIJe|;y3W~tL^vnylMfg26Q>n|EfPl};R>SEd_ERJJcOS^_(iHK5yFchObH<w!r%~w
zgfKLOaUnbx!Z0?U=sX+3@DN6XFiM=8U-CT@!diJ^8W{qe#!L@!wD|t-B)~B=SCKp;
z4^7Xf4QXNs<3&D!Lu+;hr}S+77eq2CgvmnwJM!`2+^KB15Izmzvk<1UAR)XT!u$|s
zgz$0*Z-($z2s1-?C4|>Pcs-=%*o<wn$NMT<q@?$|jcQu^hQ!H7!jwI{9m1>-<}g1Z
zpUwJQRh<Ff5hwLi^Vqo|%o9VUlMfE>r6W-@{}2|0usnnnOp(=<ov|>)VNgAFGWg;U
zmW0$k#AOm>so?nR44%+PUtX-Dk3#r3gq7m;i6G@EW2P^YTO~q9@_7iWL)Z|)Mv;6G
z!q*{u6T+7vd=<hPHUyh2JA+AU@&LXr^xq+zjPP3t@_h(Dgw*Md--$C-MeBwCD2>9-
z#q&Q|%uQ@fk^dyPMUVlv(vY$<wu!TOj($Dr+b(>EAQR&IhhIbZEri@K^1|2|!mbeh
zrJZy13t>+PzlZQg2zx`=7sAmHj)ky49rjQN2ZZx^@Su>9y#j|rI3j!l>$Zxwhu3qQ
zBbZ3e2%Ze#ln_3-GvI0A98#DWUaYsXA)I5c3E{7hI(_s!huIJ=i`oUjiy~*vN3_eP
z!CVm`!?OPW7JfAZ+7E}Ce>f&rQN!1#*%^E;yUvl2BXC%aY1GdMqf{8B!^jMyL>O6N
zWQQ?dEFmYXMp0I8$uK-&)l+!UNg)T-GGW{lM!7J`)63&68^+CH^)7|2$r7;$w@C0?
z!)Q~*%i~pV6DPyci+H;@ncIqC+#$SD7?p+4*r<?7rAio8!)PAHBlHTRdKmS>Ko~W`
zs2N6W(WhoDA$NswXZXJ@v@Gx4BBV9ilIJ?&tQ*D?GX8tRs2@h7FdBz(PZ;-xaeo*O
zhz@&1gD~z3V~Df}t&5|sFN}s^JQzm4RNctz3}&85KO{kDmK+WKcS>qO7=>Xx97dBc
zY>&68Ajzv$)H^PJSiQI5?Vwp$y+L9;6h0cpV_|d&qiYx~!e|-BQ(<%nqg5EKnddN`
zl!P7^Y$E|vw>DaM+jNt)6T&!owGXQv&6qn%kWPZMCH4hoyK`7|G`35(FuI4)JB&W8
zI?<so?W$)Oy{ID+M#5I3t<sSChS4vK0bvXbgOxz9{-Q$#a)w<iL*gJ2vRVRR1jASm
z#)o0(VT8hXJ*=h>VL@(9GK56J__$OS<z^Tbt1ApAjMu_y^1xHL-7umoP8d~&H0qwC
zQxXqjd>9kLNQ9L_GK|4&uP}y&@vKOO362zeI*j3Aj1W%cXM_w0RpLb_uTdfyEto$m
zcZ`s+VT=><To}&_`F>S(Dr-$usEHyWnHI(i!Y2t%7JN}~ir`einu8lrdAjhI1nHa+
z#>>KIrX{Zkc{PmDi&R?Ns`lHfjaV&jgz;t=Z-w!87_-8d6UMtzZ?nVTArJ3_(I%No
zHD2$P%9<-)<nzOrC;UCZ_XSHf_3{9U4}@PBtm=GW7>mMq(ZCb~i^EtF#`y>?M6fiB
zW$bhj)QI5Qw!Y<I><VLd7%Rf~i0u`|Ct+-(iC)fM8OEwG*3(e8<$oH+XDkJCcrpKp
zEBT*?RoFFQtPbOgFt)VyeaX@0Y%YagiIWnZQ~iEB-`X&U>)6HGE9W;XR6F0dVSE=x
zrzi6oT*&`E%#X8$ynf)Yu-Z@ZV;CDme<Qt`_uLZ3CJskoy!v>Pdp`G5^4y4`tu&SP
zc>{kdWZr&~+-?tJ2W_lb&!5BiRV2TJ;pXU1KhpEe<{}p7H{JzAPR{eO_k^)GjDK0x
zlBIoN91i1%@cm&N5K{3<{y|o$aF*!r^Z7@^I2OhQ*44nmHs|t>hjB8DQ#5JnoXa0_
zIsfKOxu?VUacj|;Fn;IQvbXTL9Q}_l&ODiSHjHx|lr|MTSg(k9UesRttuQjMkj{%?
zTngiI7+1phJB)wA_>+c_qp!NN_qd$iJgea^NtC4Npu(#RJFu`$2_^p|M`yKP=TIL}
zb$dgahLVg3GNp-c9aKnX%S}aD5w5{PP6VEaYLuG=OA69iDuU7yLm83Wl$Mu`;K#<5
zsBlXJw?<G-<aeZf%SS+axGjR)(~=58Dhl$D^GXp^jv!ams);Z!f+`VIP3zzKdzEdw
z3K{>${}vEyMo=q)WCVjFxKr}~Py~%4xGRFYBd8rgod_C6@crfdx)Ici;Qoj@T^|vQ
zY?oI*f_ozH9mw-ib5LQgPkQszi+dyJ@9#+`d4q^L2jf0L3LlWL4DJ&$esd8U@xchT
z<>>jWigWq3GkZ6Vpdf;F5ww>KH;KR>L8}Y-O(WoG?S&Dn-dp&vc)3Rkc>H^_2%1Om
zNCb~Y(2|;>%!Ao^;QwQ+{Pw;Uf_Ie3YAs%mGa;#*x|i~KJrMzsjYWJ?c-x5TJ9Iu3
zLDuPl&JlEpphE=5PZe}zK_YnIzHG`fD&!HnM$j#SNCZX%-6QA`LEi}aN&Gz{=p8|s
z4!&Ly96X=TqwI?!AlA8<KcJnjPXt8fvp-1$nxsXwfe{poKKURa7Y^o=FFjS%v$!x2
z;j+@gU<7&up$Jar=ydW5N3f_?Z<2eS@|h7h5x7#rmY^-jQ}jKt-q8qR5yY8dd*3sS
zE3sN=!@LsAK(8W_A<Se1Ux+0Pi{R-9UW#Bw1lKMW43}zuK7tVuJVOJBVAY_)(Gff=
zzM~>sF<wZuF%ewckUKVlaUyqjXCE6>_#BPrzTVj$ec7<0n*S7xk6=Os6C-#bf+-P9
zjUdmXPm170T4Vj*%*JHt8uw-^-f)jH*J%+<kMIS)e%}=}p719Nk9+i&S^v{|e!$W7
zk)AUncqM{YBY2Ib62WZodOd<SB6yQln$^2owD(&Pyv=+z>$$OB(b|mO<J{hd-QEK{
z`a2QKiGaen5sbD2RA994GT`lb<ntt|Uo(2Y7Xk782<8hJSKNfo1rdB0!9q4c1fNFm
zSp<tCc<gh3(xb18U<q#ljQI{fCCfy<T#(Kc5qy;9A4l+s@N)wS>BZu#ig530;qJOc
zJ;&yLPP1pjZ7SkLAx)z4(?wrK@KpqBB3K*2sR+(?Y_cwbuUWbXwnXp^TTtwIeFWb{
z)Xxrh{lJc#=Cf|eIreaE3cFv-|B=>vF@FQ|8NnvulRY{m9J;r%dq%J`f?W|V<tqFs
zf}bO}zPoU{I4Rk|aifEegnuOYC8GXI@~hx)f`hYq?~Y(k1P5r$5$t6s6zvxz*(Zd3
zjoF~{Py~nB(IkgQBpb}b(Fm+xi%57Ki(sB)?1bo?6l}Yth`~=sa3+G^Blttw@tm~s
zS!t$?Zf~|M8+wgL|J9>kjNnp4O`n<>>P5|ETE2m716LyWGlIV&_&b7sBkGING+C|m
z@b!X!X!COmuSS4}^UAdKU1JSIa3g}1VP6S@^J-u9iM|X2J0|!t4P1M{cYIsHpO;Ed
zo@2mcppJpM21*(zWuUx)+YFR8P{vTZO>Y&v$v{~HHw&-X(f8eweBxs>>fU1D0om(E
z&2k3*U7lB?k@t236%150P|d(!JjcU8Wdpee?l4fvz#IAAUy6JCJNnF|FVDb+4!#o$
z{8bFR+tEk<M9U_Os=9$12JSR)mw}oFs98&r{w?2oVr^kgCw1o1-3IEn?^#>q_qS|<
z=H9Hv-p-x;^$fs3BLj^Mc&Wo28t@so$H2V??iYP-x@=(JJ_8-=cqaAe&3NWCQd>B`
zE|o)UC_2n%zK{n67q?Z3J|w)=ik<}qnizOkoRl|ZK0B%($M7l?;Ys-YLQ2f4J-<{=
zbGCwkM-4n?AY>qHpoM{!2KpH2YoL{Z)&@E-KL#E*(8fSJ1MLl**q-0w60Tmr69%3%
z@YL4Awt^&GFBLrfg6}B<{Xfp{zpa3p^+Uc+209z)YM`5ekG2<dF<_U-SpQqT`hve*
zy-I!0+pD{Q9tP%4@YOgEN_rX!dkGd9=q+UUrECiOF>(XN20mO^eSm?1hI%tRNbtuC
zif?Ywo4DPoq!|bp>Sb?Ge5?PJsT-Jfq2QuNPY(4(3>XHUHZYt`X}~fNH4rm!{xWO>
z1%GEU=TEQBcMNc$nrmQAYwwLgp16U8fngG1VOC}4Cuv}?fteRD#K1+%H&i%ZCX=(4
z_8%*F?FsJ)1J4+E&cO2qMjB{-EpxPiXAO*!db_QpZfz~hndoDMj4?3Qz&HahP0eNP
z&6t!o@mc{cVmuQ)kBJ6eFff65xdbb4{!n$&)bzhHCmEP*s0DlRO9e;Y&1bHrvZTzI
zi6JJYGd8xSiPk1&7<k#hITn-oH1LXnEe5t4c-6pb20k~i+Q94V4hB9ju)x5Zv=#&J
zu=s5EtLS<NZyT6psAB|XGpc<B+fHDJ9K-uAo6o@eyw>~Y8Q9EbHBfl9pzT{dtNaUI
zRGV*r`nSC3KXwBj8dzvxxq%f17IE^=Zhi<$4O~BgB}}5c|5T!A<q6~;$1?GH>^kNh
z!$$@_Hn7sbDg&QzOnB8lc6jdb3@@*zZ{Sn5%fBjy&m<w{p;4oLW5@fyFz_WU!NB(h
zzM?H1!Wsi>4g7f&OFH-(pTIf;-x&Co-SY&#7Mw86H>gc-9xS}@xH>T52LtOVzgV!z
zz#o(SKXUXqj*T2BI80qfm1q%>rzO`pgxDc$=9qIFFCE1;13wwqZ{UD|?HuUX(XL~c
zfu9Xku3rrNYT)WjKWmjIBu_Y|GXI+tYNsG8ocg;B>@l#{Q1!OYz}M4!E63ICa75MZ
zK?8>joHlUAz+oDyfnx@a8|q->qa0+8;mH1iMMsqL1P9W?IBDRNkVQw4zrUc{WWN$N
z>i0VfWnjca|B?y*i$^g0xC(OCz^?Ir*1!cCwt;#kVB(U2%N$5eR5Wpg709MBQQE{`
z2L3jXX`+OQe^@Av=WI#?U#zIkcI<VOpBQlHxH1Da*$pX0h6&#*{u3wg-ZUS*vP@)~
z$T8tDG3o{X10{9l|IvK~!}b-h{z*!jXj4*ucyB=&6E~SCXQI5RD!;7YErK_jplPuQ
zD8JQIwMVjTc<yZ`o|@*n-GnjCN7L>1Z7%Ef4ilA3)HG3xeS|h_V%K3*HIZwgZ%I8*
zkfe%<nMahQnu+Qr5+(H-CWh52`eK@YQc3;YlKPz{UZ3gb`4x3c+-2f!6FsK+c?w5~
zeFe2m4BcNqQr85VZ1*Jp`SE_QiTWlUG?8!O9uxPP%2b%21}5$^l}-9glv!S#4Sl}}
zeMTND=K)jI5}UH2sd^AE#`chjMkXFM;WzQkAv88oV4{ieI~(<*PE!*MQplRAk=OPm
zKY6OBG&AuiE5}50Q`OZYrZTGIQ&lT$UQxZ(4Yc5Qz488*rs^rQ|7+9zkDIC&@Jg^1
zOgv%YNfT{NghbxXM0*o`SYzURO0cJ32f>aeItl44*hR3bU^l_;f{ee15cZB<X-Scg
z-X?lZP)CmROUsK*H461NF+d~(O$;*e{J$!n+PJzzMZ_y$BA5=P3*n(CVG|MIhKaa|
z7L)v@3Co0?)^trcY0jjh!efFTXL=bqgRr5KBH4Z9zxv?^h@mtO6Hl8MZsOT=46OVS
zraH`o-QgJ%BTYqkjS@0iaD|xq^v`;ZGw~do(m_)P&zl%;;#Uj5S(spAqKP{#+-2bf
z6O&A=W80aSY~n=|@0yrvVhUT$#9OBNN<NK-&8|AY$L%wLdf6|Tc$vn`y8ye-Id#1h
z%6-LDyO3UE*Rwt4b{D*A@}yZ0cO<=Ts(tIc-VpMp;DJ3wZ=0B9Voi1LY*X#le23P1
zHj|$Y=ZN$C#(WCr(OgY@Vq&F<_f5<<u|)Fofr(b7d6=GWp@{{wF-}Wd--k5mYTkq0
ze3UOTvDj4G@wf?&UvQS1SY~3mskZr3`C|#P!o)|W+S<d5%L6DM(kIunJ*!N7A*p=I
zyWZyf&rE!7;%Zl)(aX1*-9-K-aImK5OVRmCkX5us$XfO|S*P)hiEmBZX5n@V-<kNH
zBc6%NCVnun-o!x@hfMrvVuOhtCVn=t(ZnVbTUi7Xn@wzy9Nsa^!yVrpe#<9e_I{!v
z4fAX_)mEnR+1_Bayyba*@?Y4j9CJ+U<`DFZ`jGmY1m7u0XUkdsJq%@Hzex6_<vhs!
zqZ^r2IFOdK8{j)^;)sbeCVn?@ltswSI7y@8cxd7{O}(@41Z`W6?j)!FX%qjJ&z*H6
zGq^FoFW1SO!yhKjnz+bLUCn#W#CcO4Pr=%|Ah9vI);CHt+@H_I22^-|oc{_3D-)$G
zl(z7fiN8(m21SO2e^~8|oOTr`;wS0tr7|v*&z*ZI?;5LGGR)Hn*7VA)ke!ifspiYJ
zkYk~Qg)9rT=J+c$C|aY*`48e-Qjlu=0#2-;6_v4YlcgH;77JgRS!FHUY^lA#-@oYL
z#e#5e;H{!i&O&($7aFTQ+DEE-xtXr>1+{vif`y9Ke`{v$uu#cDWlQZNu5O`*g<K1H
z7G~8SP{l$u3#)2+H#&`~T57{4h3jn}B{eOcrITCBLb<{`{wjhydFQ_6C%@Z5Z3|IG
zZlR8ax)wTF=xm{$1z7M~XlB7{p}vIz3r#H5N$;`npoM(l_ex<KSh!Ef{elk&`UF`6
z4J~yXD+$9sWTCO8mRdEE;Os{f@=C2yX=<TR<Qt~fZT@hThb<gElJ}YBYpCTmxA2IC
zb{5)OcvN&4>In;vS!f~7mKItIVM47WY5qs!@pK;A2;pG@Pg?lljH=SMmim3h7}NKZ
zgzAuvbHuc|9a+QGt6rY%-`u`;7Yki246rcJLN^QDE%dk4@|zwOdRpi!p?X<r>vWNY
z-t_I5OWw!A-buMUtAt0C@anTh9gNVAO+3I;W3yVORWPyAAPdEo8Ylu5G--YA4ZNw2
z>VP$S`h%AGSgZ?%1nCT0hzK_XO+ic07IXw%LF)7CaNI(|!nYh8EF>)qw(vGh#ljE^
zLoJNw5N%<Yg{Liyw(zWl4P`11w=lxOGg7FRdiX|K;JG5Bqyq2Wl+V&J&m0xmQ^r^r
zXW=<|S!#bbbN-o`$HAFLweV1a=V?xZd|bUVk%Pa5mo3b+Fv-GX3)3yUBoV%7VXA~>
z@F^DFG}ZRfY2x)}cXiCm3|fofTXHq~r_*_DhIyFuD;8e0@CKDFyheM@%6gsMFxz{g
zXKiMH8_%0GuR_ATlW(yLRQJxTl2@~G?raP1SXgFZxrI3v-nFp6!iN^-T9{{neeHb<
z?^$YN`0H!c0U#vbewjPpLMZO}K=MN!a>l&S!XgWcEo95+v?N{I%;Zwxv>a}vU18xP
z3!ht9ZQ)}JpRi+E_*A0e2*aYSwD7@jHHv=5`(szN5}?sg4~tL!1qTWX>nwFl#8(#9
zNT{_OaQdk2=dqUyxk%4NHg70jOEXdJ8+MSmhva)&IPEGYYpaFz7Jjs_$pR~fTh}*;
zxwaYGlLOsGHt_)8`*&w=79o$7*ka+=9sY7xGPhayDV0yDkY89o)%`mx{49jG2|76@
zbBF0p3%givHr}_f+rl0e#Kzq=_FC9yp_Gl%HuhUMVBv~|KP?=zaEL>ng|ik8Gd2sS
zC847n&6r8ytdQfZ8BZ3+ZE~LKaFXNa@qF@A%)>^tahtc%Got*v;QSkz=Y(9eaLK}X
z;TLEd=g?_n5tlMD>}3np=XiKTcI&Ize^&ASW#MmDPE|Gd@NA!d81O`X2^&{wZx*gG
z!)DeE3-r1!@o?=KV^gO9*~qjN`KN>mm}Mi|R_ma0Y;|72^ijDU8zpUZ;KS<TTyD3g
zR~Z{O+1%WR+imbBQq~3sxAHa*WmQ8WuUmxNDp<}|x0p30b^eZrq=Jo#Hu7v#5#Kum
zb8T>6c_kZ_g*^VIpLdD_C3Wtep3>h})#eG+zM8gL1y_wZu~Eauy%p6tA=4UrxX7fI
zDBLN?`3#k7+o)rspN;-D>e{GhqqU94ZNP@tMnfA9+Nf{i9vctXYFzrJi~n954Q$+J
zV@?@AokY%m?iXLPv06Ir6Hf9|FgM@ELpGY&Xe#+{WTQZQS!0cDbtB{bePDJLH=Y;T
zc-Y2cHd@%=?t8xt9?0{EC^uuhu}~ZHDOYC#*!;nkk4`R(X_-!|mCYa6`P4x=*Gn+z
zHa4EH(alD88&BG3Yojx3ql&+sjrKM=vR#hnKV_qX1n+iVHl4$=vqofRk+6$(vO!ML
z#a8#|MRWXJZPYr}&>JY~VWX$5j?{=Yt<=j#5i?_}`6s7IYfk3(wt0e$I!T6x%HgZU
zzWmSs&0`x4urbiaWE(Hq7-XZ^M#4tYhGrvR!?a=1v<fN(nI9YXXL)rSAsaE*M?;!-
zOqu<)6MZ5!3`Sm6{pN;F+lFJqwGm~ZOdo~Z_r2qKi5N|;syYoRZmT`-Z$>>l7lkX1
z2HO~7^X)gDwK3GjFdI+X7%o-8A(s;mHpB?l)me-b6C!zr9b8V;7-i#hH7~C&=Q798
zP;HF2F@Z_<_l>jhoR}^%cE-+nKFv7`nkcztP9|}b=<9odt<YDE^E_B!Rjq<4Hm2Hm
z-NqX>rrDTo<7FE&ZM-BgunREA4B?qKSEln7iH+nn8?Oo<bF;eXjFJBGCe4O6Y2#fR
zZ`+t<tDkUj-4yT3vuRo-yzkiR<Rxb2$piUx&I);U_VUf;koBs6o*)mA;GsJ6+2S@f
z+t^}bfsGGsZr;Ji_J8Yv7ur~4W3d?Xr9U#+g_qb^YGawL7631|!D%yx3*LiP*mz-E
zjRvEO60t^~*jQ=fOE$3tT*dxn)c#cXj@katY<w<ew%W!Q?1O`frVjGGZ}^7I_S5!S
z=Bf=HYiz8wv5vjo#t-&?hg^MQ<9n%}Z__pQoe)kndAnqO*4y||QrRFTF?fIeMi#9^
z78jFmqGmNOw|i`5$Dxjm8#H4Z+ijd;Tie({8?dpD!?=xKB-)*VEZwgxtgS}H!qO_0
zU2I%&?vYB^%gU6~qEdM{VB?^TqY{?NoWLIvwZk@!P<VR|8<Ye7)sp%#8^<M{6E;qY
zK9w1S3T)ytHh#D9r;WdC{9)s)jY~Ez+c;;d;1_IMv~gZ|PT9(|J*Lip%;bquDw9{l
zi*hy%oqtRGRQT7%Kf<p{t|;NN1M!;uU+FR&WIFIVsPCYJgDeMS9o+07+fhbE&5}ZL
z9C(CK$m8QmIVkO@oR@KMlMwRaJayBbnDE@<;8q8@4)Pq76W`k$-0q;fqk8V0163bs
z*P>?y2X{DXLQ>J;Z|K!y2!mI0P+5crUM{2;k6^0epsIsA9o*$8Bdq42hNBM8QKt_%
z>KL3AZ{^n%FZ$MUF#AR($=!~+!`5+7S7NK}fKN<}u$}|{2LX~R5<ZgW*7TO&mw%6g
zdmYZ8)T(%vv4I00gE;80&3~VR`yD(W#pk^1o31{Ncn><rchHC#5c#T{tcQf~=W&i4
zf>Ge8vy3?2?r2!RpJf!%m!)uVmkYmxW)9wWFyBFQ2ah<=90VLZ>fkX4?HxSjpoOFE
zp)DP>a@0{p<gA?54))9bg2x@San$RACmghO&`$W14o=llC*ASxGqazs)~<qedviND
z=;$Z|>m?C(a?r&=SK*x<{M1oR<{9~`l|9`YbeC%R+4k_kzlWn9|9c9adc$ADBpmb+
zg?<kDvk4q^&d*yib!3GPa4<043N-9NX<jUZFEoM<bO)myJnJCjAS`(p>>%R6a1eLE
z6H!bS)<M)kg;Qz}v#HkI=Q^mE<#il2Hz288O7~C6i;2$I0Um1dE|74Lr1DvmiKu(@
z5C=mY40G_bgJ&F!bTDJKf4GAYY_*zRa^720r`T<{UV@TQj=H__Cc-o8#;}YIraO4a
z!8ixcIe5XrB)<P)&a<<=>XbJ@5*ja2@!rbd6NS@vvV#{LoZL}^LS9oGq!gw~*dv2{
z(;V=m8hXue@UnwhG*<~blWo`A_qu~uB=T1Un|ATP##c{W{G1-Y;owaNZ#in7K+U(=
zWg2@@JTuYz9nohI=F)~8yvx4!Pd3lWd+TBzah@bW-}j`LO#K4~3)t~plyLE(gM|*(
zJNVJTA_t2dtak8)gC){%pEy|QV5zkGG6%~YtZ?v=I6r33+LX_g@U+Z+BdZd5e%&eu
zpR&CM_&#$~N9a;IWBsXolFw=9&3d2j?yJ91&3M0Lb30fk@q8t?#=*rS>fje%UyI~B
z!EYRVD<t*W;d_ak@&CYV&-0LMaIn$AVFyPXY;v&K!LQ7@gDnoWijDokQcDcmX~R+9
zPr_5DP41v6UdjB~QHOBy;vJc189h`=-|1kNsO@*Kn{|b3o;<V9!5-SYqh>zqgPxqN
z`K_yZIWy^6N<ZM>p!D}c4tP`}P514uJtTZuIqKkygWnw-<H+OSgw$%gn%>j26XB->
z*@J%CS-|%~9HahlaF+U4v#&ci=ioe3ba0KCWEDC1%fa6cE=e{n%b3F&8~RG#6?V@p
zYSQ?p5T2z&`IWxDe;l<ri`P{LbF27CUU|)5LpB%ev$AeDIJ65Hu0nPkViq63T-@%W
zf~$t092ccrly>29|J$}!(#3P<aye5i<KiaKDet1Ji<@25cDK4}3U`Z(yeYXmt9zR_
z%q`c?SI))dj=2;5P_GLZ=WUF<e;x<$iZ1SOQA;AJB*7nF=c(bMvWr~C;G&AFW{G?#
ztLmyBhR*4wIEUYA97wBstGk$ZGM}WTt1{1+`S$5<rz%fiyW8dPg_$m1aZ$%bT^HS4
zbazqD1zhkUv%Vz925Kbx;O=3zU9@)bxQhlZ?sL)9<x5fA@8SU$54mV0`aTyAy2y9Y
zkQsZqkk|9s>gA`y4nDeWxpQdjqQF&8N!4sm6IZ<?;o}2W#glN&{KFjlU3@BkBW>oQ
zxr;|#Jm#twN6h>qF2=v*=Yfz!R#XdD-9cIk?%3rgZ{^~x5q?@o8y8c%s<%B|T|D99
zNf&Khv|}aD_IGsERJOgVn*Lq8>Qk;d_KLiN3%(hnLMIoUMQ3npbaB<qg$l%;yVZ@L
zhl`#rCcAjiMK2dcE(W?7<f6BWJ}&yX=r4`c*Tt=k)rp|9t9kj_jR9A+s69Zuc=Y9j
z)w#tkG#9oDN17%;bP;h8bfLQlxv19J&*wPSOq&zx%umCG$;>d7E&1HTOY3_0w;J5i
zOD9{?brE$j!o@Sn9uRji#Klk-i5CVWTy?lvQjjOC4i=I+?u>g1hPil}?N!rDepA!D
z;jU^9j{kIyWD#n4CW>T~=umC6kY`<t5i(YAT-x_J7taeHpO#Eu0ZZu&_=3bUi2=XJ
z<xPa~Pa!XzF^wivB7;-7sbW8zo=ulpV*9=%WQO3&f=~0czl+ygeCy&n7q7c`!^LtJ
zD_p$ErgwQZDdxC1KB_J&{B0N9twu7-<*_!t*)E3X`T1(}T^D8eOy^=TTinGw7w@@v
z-v!UP{m@0Zsd;lUvgXq&#4x7R@+_cD)=<X=a>Bp|y@jI5S;P_-OI<bNs+{!j2;ybD
zS@ieOjQP@!_>qf`U3}r<OBbKGShx$HN)dRn*-EB6(6>r(LvPP#G|sd5oLz61Qd=#`
z<X?$C^S_RLvr(@#f@@tg*_}t{*EGVJh2IGNbTym&dlx^rJd_W&MzP+-j~ozO9B{G0
z#YPuDyZFV$CK_r#-!>ONu@6@BZf4)<?b{-_mA$x^k50b0*zT$Ue}}6kpPc*gB^yKi
zDh20ka2HE0e5W8=s(r%4w-&pl1@{Q<b+J##q*CfU#)BL`UHt9h9~XyR9C7i7i?c3{
zx;VzZ=Hd)n&BX~9r)UpZULKovlHIDC@0K1uKBm#hyCmh;iqw0s-z8%wOH`(<o|9BA
zy13-xyo`Z=d9p4rTGsQH{LAd-F8<{Bd^R&rS1<AY_%)ZI{&N5O&hlO<{VInSj^0s}
zjN%&W+(kwdnNc-!zTxsO5=E@2uS@BCVkIdNRcF)XM3EI$hc;&mlDNAH_LtJ>RVs?o
zQQRB_-##&+GEv+VRR>CQqRXi=Nm+4H^RH4mb;?CiK8ku#Ad1_fxIM~m^r%o;uMkDW
zC@Mu!If^@?YIE+1n1>C)L2|;Tyy?&TbE9fVC*hUHUD$nnB(%n=QB;d6v#cIf&Bv>T
zkeX5CtoGH4;!YuV2~u)*6t#udNlWUc6uSDVH>*kW^F~oWihFmfQHcHYo~W7%vS{~3
zaeowd4Z+<*@IVy4C`t`R>A`3i#e-2ailcEH`B6N?s)*ro42@W&QJje4WE2HaG>Kw)
z6f2_YFHudSXd6X4;e~<^M|o(H&o8{0VDl&*iSqx~cubrO^|+80QM8PrRTQn$@=DEc
z{X_M)sWu{cLh#A7@0Dwr?W1@qil?I(F2W8`3=q;WicV2<7T!Cp-$h7Q!ERA>Ps@9-
zQKIN2&LZ-8ex^8k>VP>r{e48(SFm4Nzkd{ms;OKJjABp}#ZhQcB+|YCA*NtZP>&+S
zCKkSYp$Zs@!Vo8UQ~8~iMQ2*#2yvr`MiCR9(uoTn(80@4N#TQ|7!t)$;lrYsEs>}G
z&ov^7XQFr`iZ`PeDGJjB8Fo|@qoa6MoMWPRJ}n;`#W>;5r6t8u`QxLQ5XD3hz7WNW
zY2QgvOcuUnkt!6gDdL<exMz`PdRp_PC}yPj%Tde}{)*tMg0DsKdKCQ^dR{uL{t-q(
zd@G6t=}>P+F)Phy3wbAsIZ?bD#oV;~y(s1h&swa4zaPc?C_dm&(7869JEh6SbW@G{
zp{OksTolFPbPP+PSeoX`qPQr<r~XGG{5gt`qxd9>mE!zP411OEPt&136Y{y>>L|X5
z;>#$$ieimOzK&uoP4sf+y0pG_Ig{}dze!8J6+#`#zZd?4;CjIyqu3C|#wa$4bE_aV
zHw)Rqp-;-bEiL~kitSPC5T|uMlU;_&zeMpX2Nn??No(#DvP*Ec;2y!fQS6Iie-sDA
zd6330BxT8mg|odHNt3k<_>M+#j2$`PJ1+QIv@ZFnC{9x|1}BCyQT)zZTMXr5_(Os-
zONq;wXQMb5#rY^MMB#}kbK-R|ia*mjmxNr7;!0Y=ZunOee~a^<C~icN5yREA@4rH>
zMR8p^Y%0TyGgBhZ5-bt>uLEX_Ge>aM&&o(j3MVNQL+Lax6T?ly%cdna3%Ml*{%DNK
z<zu)l27e6AVz^zr?u_BC7%B*_D0qipr5Gv;$&I195C+c^QYD6}X-T!%f2La_hMFR*
z6~n6X8B|W;-7)p|y?fL8wPUE0=5=GJCme!a!TN&t2=Z5bjHiL{`y`(G1u1+W244&f
zV|Y+}3k36Hct}Vi$wTA+mlI~D2`e*(LQ!~FFctqru?=Rjc?^%o&?bgQBo#^?jo~rj
zEz;?>jG>i;Z7rDXS7z{p_!h;`JBBBPw~e7)4DCgyyGWiA-a)Wq44q==EWE2ABk3X}
zm8EWy^Azt9Lr?MQC77yJ=B<xJYsSzw9Yenu`U@Wr!@w8@2@k{&jG<V#CYXwWDeB^k
z#1M)hESxF+&)0|{yH7UNEJ=tdj&GXl#t@BRcMN-Ch{X_(;j<V%XIZ-X6ETd4;Tef1
zDL7bgh~QAcVKF={WVqn}(i$1VoOCLqVi+C6v!XC2h8JU)B7CgixEP*`;rSTG$1ov=
zNg|vm$gIA=!ivrOFXqW<$<!F8#qdT9Z^kfP^j{HtDIIo33@^tpQ=I=ll2>DRP4f17
zT9c8#mFDln@OGNdieYw|QzsS4yCRt@I4_3xguEZa5+U;iKZs#L3?B+#B)CwJC1NCt
zg{MliRQR$OmdCInhL30`BKbImPhwd4|3alQ@V{()Dqf6jbqrrfakj?rr4Xj_Z46(D
z!WzM~>3G(~@U`%7(h^44&+&a1!}n>)4?@<*@M8=cgl~*tOWJpnkj;Xrdt9now#D$1
z2)7IFh~Z};zi>Pe!d(3-<hQgPQnE`V%)?$G#|8HZ(szGM&E*cna4;=7B;;@mM}!;|
zJeKz59fzS#i1Vc2DZ$f%X9Ry2{3C|5Le9l-UdV+QE(*EtcQqy8_2;32D>3}Zu`!Nn
zar_m--!b(&&Wds6`;RD>iQ{Sv|Hg1loF4I_@AVjNh=e>tgqeaR;>b$tWXF+{=1jVz
z@KR|>X(6oJo6?f9aojBYmbBznA>{<i$8lR)etR4hQbL*RG0%6zQ7Nu6Us*6Wu71my
zC%lT_wLJCbP+ryJxHk^&46Px^-=5ZtgIFt$JB5(n702DeYo{f3gw&0ro)Dzv-Z<(D
zzb7pjTg}rzVrCNe#c_We4~Wwj$Af8kLm@onH9swRC@m?7qe&dUC9yM!rg0Q9w@EZe
z;^8>_aSTadXhPi?o5iu6S50s8I2So6@@O1IarBPku{c`9(Nctzw~M1ynzxSQ@icD}
z$G2-dPl)r$INAz1a=L&)+6#Xwjt)XP#?eg(y*df$EZ9Y`tKcWs3%U!TP7fhH<LD)X
zQ&0-~#L+j7>2bWorir7!c#V%^KpX?(FypX9GDuL5qgaS07!YJ6LCG^oNF-swh@c^u
zO3@ZhwV`o1!d=0rU@VS!9EmuRtWS{)7Nq|69=SwLSBQ@+_6!sG({T)sV?-R!#4$Fl
zIWmsX!bhbgO#0cBWQ}KxkcxBt<I=v*#qqpw9^R`Gs_C5&$3&65AUH{IavU!TnIbqX
zj;TVZKV^-Fn6Xyjj5wBy{N=Ro%s5_&<JCA`i{te;-i>3fc)bzFY$0z7z7@yYLS_l3
z3SJ}H=pAv+5oG+M)_CR#|1ge)al9AD`*F-q`+g9|8*4ng7O-c{RmGXU)4wR~yF|$1
zI3`Jkm!{>*;@CSzDX)m*qc}bm`457h2(FA{RUDtj@mU;e)1f|(<4fVI(~>V}jn|48
z53jF8xJIzV`GR$Ed@cN&IKGSHd*R;-zT2=@s&N@S6?VOlALG~%$Hq7|#j#l=+XT17
zu~o<yQi^-mdRDIS{3Mc8xpu_yvp9c=<6j|%`KnOJZ-P7H*cHca;d|mZCS<SRzBu*^
zIS|L8I1URxn69xS;yfzItd?2pnIm~P&LJX>lX0Ai<6<0_;y4}0nK;hHabA>v7d$KY
zM;v_I=Cf@o{})7<s;Hw9+vPZ}i142{{^Z~v$KT?lK3kt71Cvf^l3W!pwmA8<IIhQW
zBaVy&G83qlKy?|BN(hz_%o5B_ASVHj@REY11xqEsB-kD9Sl~%z@1_LGCUCR(-jYDY
z1nx-S)&$BWP(Fd%M1H#<^T51ST%dANK_s`1^;b%uaspMvnJY-&yo4IxCa+Nq$5g6{
zd<^^M8c&S`Y9`PnfvySEO5n}}+KBI63EZ8)eF@y3K<xzTBydkUwz@*Rg7pNE03Uvt
zQ2n$HQ@J<I8wmMzjpu;`d<pmyXqG_31RhMFaRLPi<cq>X2{aNibAjqjjExstyh#F0
zMgFj0s_z#j@WmMa<nI2|@X|biM-pfy3XcjtmOzUHir1<#wp#3IDV$~>-RWmPZ7n*F
z3o_@$Et@c{ClYuvfwl>>OYmJKI*KplPYLOezz2Wir*g$OJ0;LL0cI~Hp?P#mpnC#Q
zQSOmI&jc*ty%H!&U=TAP&fW?1O`u-_eZ*Nwny<fbMm12#fQ0JT&+haW_oz*wmOvl@
zL%f25p#;JS=q&YOl>ur-M4pO`P6|ztkfb`Poq&^;xaolOjU^CIAR%5!!NCcnti6(y
zZdd|$<$6aX@QjeB6BsUJ<&iAPN78^3n4Z8(Y|vcq=mefkV8m7M?#bVXk4a!`0^<@m
zmgim9%Db$52FY^?JTDUR@d->waJ7R{cp-rog-lBOP8RY&A*LiSm1a|@)TX6<DcA4G
zresC}FDEcFfmagvBZ0FCyqdsk2`o%tQ39_g@P-6=KY=%e%n^Jm9naed%o093EqO=C
z#RVQl{;u%33Ct7nURvkU0?+(3{~&<{Y5rk4pNmEESpuIYutfM$!DR_7Phdp?A0@Dg
z$^-H~PKRBYz$a-=IWK15Q<3o8d-ByZ`veXoa4>-{6ZlHJeo0_W0&5f4mJYivf$tOe
zA%U+G_=bHyE&oo))E&8uinu<39~0Ot!VPJiO+q#b4*1QVQr?ol*0ek&`AMAH6WEc!
z&%#skRLsAM<hKNN3fU#NS8%uB9>FKA-qhbGd_Q}iI4L=lz)2AvPT&ZwQTVa68WoNU
zKarB>c^TU&;iuD*GYR~j<_${g=Mp%d!0ky?NGcP$zyVgs#RM)Ta9K1nlE_Trits-Z
z_)Ey&3H+PDHR1mxa8-ztp)-=}!bxrj*(JtFg%U|*N#q+vlAT1!BuXWbBSMcLLs7G|
z@SD<-GD)N&p>J6crkuA3zg4hY66J;5CP>XEpUSP6#2rc05lJP%YDrWVQaQ<=+o~ex
z304uLv#O9cG-XsZlBkuI*GwYSG<T*YcL}*$uyztD!>F6~t(OFZdj;zY-Xq9rXXN)K
zaeoq1l9-yr14;OjXqQC$BpN31U=mLxv7?oD!14V2q<Rc_B#DQTpp#dlBpM4Z5NsmY
zRIreb0DKVmCD)%sGm%iA&gQ~jxh0RzM}<F@_HB_w%QSD5MC&wvTu2+ivH7`ACe_%*
z;BAwjljJGMVIqlS5*?E0m_(-}IwuhpIWylyNKq19(~@pUbQj(uE$JzwR}#zb&Snr^
zy+zVTu&-dhB>FQONemQcKyZ*C^^23xgdgddOJ`8HE*MJd&?}PWh7dCeONgD8J4v|0
zqiIP@NL=uv4z&kMLp+nj$Rvg&F;tvi*jdApcshyUN!(P$J3@p<X5^7~HPvr8Zi_V<
zl~g!EaJ1mFNsJLPR&bo)bAr@-UdVXX$@7)y<TWvg7t+3ygiKE2#UxIjDWETLS`yQf
z_%*41Q}R+0Gm`iqi3Lf#oJ7T0`Ml;QF*Au*B<!n6%u2`hS`x1de?#z1!M6n87G(VX
z()w)S?+DIG%ik3;S8!eu@1^DM(-=zY49IkOr~5F8g-MWnmc$|<<ST?MPGX6WrGm=@
zmnYG?el{<v@%l)FA1Coiiah0ADP&a=pQa@(4itQz#A<PVk;DceUncQY5^IuJE6(+T
z>jb|~;%gy{{~K1C@bA)+$VWYY5I%ozUMdeiigU%@yp2h0N@BA(cck^V2-zyQP4K5A
zwhI|={1?N|;`}9vRGja0R6l%SW2NHXmBeliFG=hb`^g@RoWa<a#Qr1>Byli_rF-y~
z;Grab7jjteh#-BBa$rgG<3dgdo=oCYT7Fu{nIzt5kj)^x{z&4i2+s+g7rY>NQII;9
zlDI7VN?P(~5>G}e(d+ND<ewz23jbH|n&9=c?+qatgYkb%eFt<^#rJhc!lNtF6FP#h
zp9=aQhCqziP@41_kRl~0NR`{mYxf3JR1^V46f9W5t{^I6?}&{mAVuj-5k=wKbMkxN
z`mZ(XtUYJWoM~s~-aB_nB~2wtm#ra3@Z_v4dO5KC+dWDb(G;knVRhS5g6bM-XgIGS
zOGix&wKV*!VY7w{G+d}*w1zPnYHPSi!xb8?)KEu5T@6tUmuje|p}vOJ8ro=RprN6L
z<{DaP;C8k~8uB#cYv4a|dbyaYv4&w>^P{Ps+D$aI=aE;Bk<(20ytA0DCADQoTWRQ3
z8e2F#HlbSC#Tu9J6_R<0rWPjg_wKklmD_4)r{TwFE^iQH5Llw@Mg$aSk)3s!ND^PJ
zVezhl_Ch;oSahi1;~}vafBuTVtr|LMD9~_=hQ1oE(om?OCqw5A=K`wE8g9^VqvW<o
zXcrA#H53y|hItDfGf!6{-fJ{;6L782>x5n}^!V3#6ytH<-9=9i4L50cen^b&W)1$X
zf@cn>b&_wCMOf-y8hUH0n0<tDZ4ytyr?;Pm0U8Es=&z~!9JxA+XX6jjFj&J-rox68
ztCrRe(ZJ0GTsX=obi+l-NDU)2lxk`h2^TJM<qQ`eGIW%La))WfPR6ks#%Xv;!_yjW
z(=c8`oZ2)@&@fTM91WU=NgB#D%w(k@GMUje+^ON$F{O7<{y3&+Fb)-Pi5KxyW{FF4
zbE3Q`mIBi>Oc%)+Ldl_F%+fHMDUOTXrQx^9>YhQao#28Boq9BQ(oCiXOM^q3R9AM6
z;OZb-Q|sZm%z(=kxN_B{t?tX`LUCW@xn`bCpCs0BkA{0Sq=i3MD1!nGp$6`dEf?B)
zc<hxCd5vn6%+qkU27-=vDDQj?_i0$F;V}*OYj}WGq+yAM1vE$v3pG5f;jU_B>4C9_
z*odVuUJgs;+_lGbGK(~|Fk{1bb#pG;^brk@YHB40y|h4zHTx@nndE1M1}-grT<{ZY
z-`=raUllBuUPD01CnadY*8FGKt=MPTqcuD$%;$tshRa%L56^3OLBoq0UeeSO2wGI%
zeL1TH)5~?#uV{Ex!$%rE*6^B!*EPJW;XMs+Xn0e@I??u)hPO4W)v&K~3tqF!HQsA9
z=yI<jDffQ9qp2OB>{eXU#g%gJ(-@}2HfU&-okg%-ydMay=#L+YTHZ7GiH1)#Y|`+(
zhR;|)4c|!6<lhUv5b(98R?2;;;VS`Mj#Z+U3xn6jinwm%TMZjEe5YY<(|mgA)J@#7
zD*gu!1sZ<R)Wwdhjpv_^EZJJZMXg&jY}If;!$A$(SpOP!vBf2=9YTK*Gv-Z&J83Gr
za+a2=rukLF9u{B2evx^pO3q#Z4C0C@-Yd<r{HEb|VUFHb)ULYP_i;$WVfHT#e`+|Q
z;i!gV8jiDC+BdG!GLn6lvdJ6D)IQvWqa!CYsExpyx`6nU(1QgdPHXs!<Cup3G@N0#
zniXM_oz?KSBt*OVhuu6o`lno;KEGPoxlFFOPP^XOT<&+Pq$68bgJeA&IRYX&stCx{
zQCR>($0C=ss*dV9Y6!EMP}W{e9km44(UnnMpyNUvU8^_Z?!wvARS|0IxJU$^mMgF+
zQ&-2c)zs>#`Z^luXsDx+j%GTVi&&nHCOVqx$QLig8tZVsRlA;vD~6pFb0RGyw55(#
zI<EdGGWf6jiXh5x^<5hsm+1Ic$A3E7>S(89ijJu|pd+fIr;c7aF4b|FjxNltj>~nl
z*U?c&CmkJhT)~w;I%1MU#q#6P=dvf>8DV+pxK6%6$5lECb#&Hoo0t&O<^J3vrYMV<
z8H<ae$t-5}bX>3F1|21$@LC<$>9{6Sx^4o-ay9->s;%j`A>u}1vaW6t&|Ozd2Hh;)
z9@Lo~-6Wfvdh6(;W0a0tb=<-x&@o74`swJeV}Oo<l0#;DT9^ObW=>31cXrJmtYe4>
zbHmF}9p6;T8YbT1tZ-h@E0myAz(}F&zoT`G(J@iSBpqXQjFTu6n2L_?8|F8u)@VGl
z#CfphQLZZFhO%zgG@i06r%cCW9k=VagH0fNSeS>_Rn)e3dbyc}5%1J7O~*?*R_U0o
zV}_2nj)abxI%esxbl5s(>$ppYp~KWMM^|0rC9BDjE%};cgBO(RY?=`<f;-OUAF7&F
z;T&dOho{5WK@L~Vkun2x+@8kc3kZ^;A=FV$pd-yDJEykH1i~laQ*W-0c{=XaaSxkb
zVv#>@U(UTc=8M?lI_?v&ROlzw%I?=e`hd^{LLU_R5Hl};p$`jKBy_QkB?2B1`lwLK
zFrmjp=Q3UGuBD^Rllg=&m+M#|fSe}<Jf-7l0nZ3snF)PX$8&<87y3em|Dph{MPIGs
zWgS22_({hrI$qWBzK-=eUeocqjx{>g>Ucv}U%{LodrQZgg6X|tOUc`mZ=Fj%={q{s
z=^*Ae_0Q1=zdPO)$@g^i*;V*oF6jpp(DAvBFLZpU<0BSU$EWOudC`w`ypWD?zK%HP
zfzO|dd`7DXB0o1$oLS?$e5vCr9pCBLq~mLv*5bmAG`!1lztKUN+P@WjtE1n%($^Ok
zGN|p6!kN!T82Y`=H?$lI{J?B1DP-u+IyURrqhqg*EjoDY>NXwQ2|5*R<q**?64P^b
z=<1_j<F7@#1^gm(r;c4Z$aFu5kkb9iacpgD-{z8iI`->0pyMD-n)`os{4Ria)0u4k
z2)=S+?2wMbI{s!*_vjHFM+N+;<Cu=)f=}r<A>gD?idFnxC-_4+cc0ECKAj2uOUD_(
z{4GoVKZ4Inx)ndc&*?a?BWWOIAj?1{1N{vQFpzB^$3T&RE{2-Z$Td*KKvlt&4MYT#
zZ!cv~H3QWRTx6h*ff@#C8o0o~g$4>PR|ojlGSnP6KfOs~M+?ZQZTxR;q-)ijx(4bQ
zXm6+rsc)cxfmQ}CHqg*OBLmG0G&hiEAm2a}rr147*H{2cO-$M}!)I|?2yQ9#!7)m{
zqSUR0)7C&c18oG8e~F=12T=wFq6RJ(eg%i2mm0WCI25?>NKu8J4hF6;aHWA5ODB0|
zXh#uya8z!mjAk;gGPutjXIKN>qn!=z`_3bvlCB1d4P0m7dP5o2)dsF%t_HRtE+MB=
z(S7&C=(-uW)&RldM+$yAQgDNT8x8a@(9=M7Ls|08hO+IO46Le>MRR@R@9_lW_ma?C
z4D>b7o2@xLr%qn9kAd@zqWo#gj>GBhb?-;|8CY|)fL&&wfk6f)Fz3Huuw-etfe{9V
z7#J$d6I1er31DVegi^s{*n$Q|8W?5ZR)eRO<&7qv7I;AYY~9?Zgxba#>Z((M@dj>_
zSS%ygxn0s#&9u->6y_wMWd<e-xZS`V2BsL8YQPZ=CGRva+rVAoon~OVfEk(4nFeMF
zzGjHBw>g6KOsK{h7QP`I(|~2b&V=%6S4MgMaFHt<FT?jmCT<`hoQf-7(*^<qn+<F+
z5E>|_{jeGh%r!7i#GW&7w}E>MEH&_$q3#I2*T4b;4;q+ns5_d;xzE7;hPvIj;SoGw
zfLHnw&^=^ev4JHLYoURM1yFvGfva~EP#}9s9<NA#gq1TWT6u8vQEDz$fR`yRGw>93
z8hD&7$hNMNwcNl815X;*-aopleikoZrYbt#cl-<$_E+~)f6_LxQc`)A$sJaX*Cju1
z-~|IO8hFXT8&arMhMJZ7c6{Vz0jq_wYqKxEV&GMg;RNGr23{9T{<Nb7ZyI>Zz`9!^
zbTkQ0udOxkj)9L1d`!N9cMW`CV1t1lkoTT}_YF1GK-}Yl$a)zuUL9I`?#Gf3DRa1J
z|EA*K7q_LrtXh>nG4QE@Zw!2E;4{{$fv*g-I9Bk5fiDI8+c!e*8KJ*aD<l5eK(+6S
zi8mVfj@_*&^2~`My;kK-Ovu3AzL7hIl~mnRwBfDcKN$E?IQ0I+t|Ymd*s_#KZ#A%u
zV}gmxO>8%?gTteVTob<-*lFMo1AiLWWni~~W2{vJzZ%$M;IM%sRA^uy8?J8FK@J5{
z=dA7D418EmwF~j@1`bFoP=?+^BJ=#9D4Up^4uhgcC6vN!qZ6Wv_$1q+Ue>AsQQ}i#
z7?eM4;4cIJ8u-sZzlZY97~o~!_d9KQ)AZkh|1oe@!1lUX4F{^Lz|V<t-h6#t_|%qV
zDr>1EG+XHAI(d~%L`+<4qP2-CCaRifWFpT*H4{bkvo0`kp^54yYM7`gQFuc-mC)5P
zv8HWg^FWo)+9v9ns3!s!nW!URr`YFP#nJxtvv36UO*Ak;&`{_?VKQ#Mi6$nRnrJMs
zP7R9QazyEGW}<~~nhPao+{sEUGq{xr_7O7KFWQ*6#6(+DRU<j=Ox$%v_OH}W&_LDv
z*h#UdsaoVxiN5+kX?qhLOk8E6(8Luct~5~~0@Ow^x|oTM!XfS?;7sd$>Zi9eYsN$m
z6Fp6IG11k;H72@=OtFcpO_WF~6uzQ&WbDA`qyf>(<?i@vP26aryNLlqqSu+YUce1P
z)z$4oR84LwZbA8*Ox$c@^bzHF6+8L8O!ODEy-oBnaf{%-CdMpp%PYcp12|>+ndntF
ztI>BQ156AwG04QU;^+_)XJ08`=wMUT74yGqUk<NFA8uj<gI40-l_)ha(!{m}*uDUx
zOx$YXgol$JMpHk%7DihbYhs*<Qzrf}ahr+pCf=q2n3!N<qKU;OmYA4iqRhlx6Z1?=
zHgUU&q=}S?J4{S5G1J5>lUq$A)lTJ4W%DtJUwI}E>{4LImi)QRqBB^NJP+ZA=A^UP
zd=iupI!7os?`W*#?5Hl3zz|@XureImgd^A$>Sg%8iFgLDshm^mfSN){i`r0Vz}9T1
zzJIw}inN?X7#iDHFyd|#_n3Id#6lDInwW3m0TT;M@MH{%-6wGg?l-}maeoITE#!Of
zLE&=>=tQ+Lb7bUU@h&n^dye{8?ln%)M@&3w;&~G<m{@A!F%wUjc-q7=6OWr%p3!{E
zeUT?j@My0y!_+Lq3KLJ#2COC@4~vZ&7CSN__KZlbH1Vv7R=HV6CPkj3LH?(*SI=up
z%6-Hyns~{?>n7eXvC7116R((fm8oaGYF`#5+=;xSYr`jhX#Se14!`OqhY3)_n`}D~
z;FVZ(<dCjqC79Ss<1w+$#JeWGF!7~{_e{KR;v*9un^-TgHkkNOzz57mr&7+&QNz&U
zhI9mUpP2a6#Ah^YnZ)>9gvo#VqP($Nk@~&hD-&Ov_};`167-FUjV8Vm{H@RlV`G)?
z%vmdW+aw&GMDe4EpG<6Khn*a$_HQmX6#pziJX45Yd5vo2ZxOGzv}C)99VQN#ILPte
z#7-0YOzbzY%fxOIzna)1k~MNv*>A3#!{eLw3Wwm!<7x(g?l%*^3)7eRoH|GHc`OzA
zhlF{|#9;wPOdJ(Z@j+TOJ9?a*&P2oNStm_2yDvh=Sl7*r{b}Mf$7c(zE&OHjx<FL7
zP{YFCCjJo(5esKc{A;3;g=`D|nK;LuZX(P2-`QmkkB(FvVz%xw_3_J1<vA8|EtT8K
z7XGQ#h@o%vS3&n5&o4Nu?7xbIsurqQic=B9P3|=<)UwdfLL&<oSh&zaT?_Rr)D~42
zS*Rm`R>7Uu74FX5och9SAe5S!Rz>^fS;!Y=GYgF~p-n9GmXlJN3WsNKF-mg_Ei5#t
zo<-ME_}seH%2L}rYg8|5W8o4D*I4Lgp{<2>7CKodumB5D5x!FBr4}x;aJk@<r}Elc
z=wRUr3&e8=sI9nkv-T^S{9v3)G-jcr2wzlRg<fT$P`t$!I$J2R&{ez}=100%$`~rF
zZboAzT%}sp)fP%B(vmHE`wH@|wQ!w<z83mfxZc7I7J9L;7H+iA-NH>&LiwsW|8v~s
zH#XM8LQhdboz1GNX@MWd#`*|{^A)!U;CWn}h9&K9VSt6<7DiYYXkn0rAr^*OU=Sk?
z7U56F#LBl94HJB_EVAr)rRO`1U}&j@krqY?pWb<ml<hGIuWAn67!LldItT3?jI(f?
zg<EX&wK3kp1PgCjc-vA>%!w9eTewT`BnxF0CJVk@=yVHrSeRmAs(2}1@i4m6!Zb@g
z?ynkBLQ4J&5tu1-mQYI0v7oWVEj(mFw_sS9Yhj)R(}HCoVIgV37GYPYBb3^PE^O-w
z_A{Kgg*~nF8AO+|5N7yk0fEr9qw*M9Zv8Kle2ci-!aWx5mC%*@a`^H#pS{Dv0~YQR
z=0odMlm&vT$Xf@!FTYW|kQ@sySa{LGA`6QxJZa%63rj3KA_ZSA^if*x$x6#CEM=qb
z&tX+OW~o>D!S%Bq7l9{)lFvu{YqdtMU=0tB5<G3;84J%^c+SG7{iEyaXRWkA{yVKp
zjKR_8Eo^FC(x^@T;eOF*aXv9MyhH&DuUlAUVYR4z*@9mjeO2%)7H*#yn|CmeuP$W1
zAxxI#O?H9mWq-6TAwR!C)*1_IISO$AvG9(CbrycHu+zf37T&Y4(ZY8Y-nX#c!bcW9
zw(vnF{~ub|z>!McYAzAl`DCR}B=l<w->?)GK4W(t6#d-7;6c$Z1oPeROYzR=7yXL1
zR5y!&Z_z9c-M12bNWH90G<a!(?G}Cz=Fb+E503trN&P2Dn#I{HoGlstRsq{YxT5)X
zuwsj&k7eiV5`~O%$ii+5ztVmz?6vS4&969re%-8n77lf7aZUX!e#-5)FiXJi77nlv
z%G>fmQC@)$TR0*Lk6Jjv@kfG=v1okZXN^@-Uyi3(V-oQX3p1sRe_A*#l7Cr<-Q1$0
z)Mq%>N$6P%|5|8iqm_;SES%#gZKIKm^A@sfRJT#XR<%^gMvjeK8`<Kmc$=+kBO>0a
zHWp>x?W@>eaTukVt-48tWKA2jZ2YpOSsjtTz{Z6(YTL@{cK3<UdMVGYdXWu7UU%uO
zYoneB6W6!Vz{YSV@A-kzjT2*eHu7zro}^M?5{+#%vC-7VU6W$R`$zf8+RR1^TYWD~
z8WL@8tC!f;t@G(UG$eYljn+0g*(k8lM)Y51<8m99*l25`ovl8-FBLv)RI8t*jNb++
z`K(wfX)oov!p4<0I?xSL-_F__#WCS`wAG6@+k$zcqnTZ0qtM2UHoDvBY@^7=bvCZI
z(Zxnr8zrnR8^x01)e@IcD&F2JOtiw=O$4sZ2rxy?7`#_0>jqmTL3yTilZ~DtcC*kP
z9A>+g@*8URfM_o^oK#nD3F>2`;@hg9js7-1vhlHv0X7EOm~Z1g8-r{NwlUMjEE_{?
z47G6^wb>ZPR$v}%jIlAoRz}Vb%u*X0CdKZllQ&X0WR4PWtI+RyM#c(Yp2tZQv7z7m
zA;15?=mZ-RnSUEog+Iy0WE;2JC}WGrhfkZH5ym<&DaMbHJ6K&u)bz!jHl7#~on~V?
zt#n@wv9>>lVhozWCTmc_FPhmj23m-Xw2e77G#kE+xDB1HKcvL6VbjuVn3C@CAMzg?
z5M`{z1EY?OZwEv@8{Gy+U7;L@>n?9gCX-0mNJ^CCAoZDi^N<pLa0P75o{`W-Ijd-A
z0mbHu%suq}mrL`WC*He-uC1TNDECS>_?>>gjR$NzYx77<EU@vQjU_f7VGT6MddLO`
zkcVw7l-lESgefkv@p893g2gndV)c3WsEwsImfKiCd1>6og)S3Ht6;l7k--(;gHPIc
znmUE~l;nysG$C3P<yQ*->gAE=ZM;A`vGKNz7j3*`<24CdmC^RHjn#r_hm1(~iVfmd
z*?iKYU(ZOsVdG7zI;>idbd8O*HrCrb(+Tg`SZAy6aZX3Pn~{HyoXVA{@O>NnqNi&x
zHLq2JELQsl8y`wfpEJ0mXZ5ld2A6!oVZ_Es8>ei1X5(`kze=ILu<@mhO*X!_@s*9Q
zZER$TPE}$9eZy9k-d!<N(uVm^=wb5+dT_#l>Hc8jM~+uEcG~#K#?LmkiO$Wo`YzsL
zD`O)lGA3>nT;bg=jk1FsYDkn5DWr?#ZDE&<-C|eYw9coQ@fp3x#$M@?`)nMranQzo
z(a!?@X5)97*`VmQeo;2cAsfBLypOR<4u~F>Dmub0a2Q8v|4&2+)F-@+6QZHg5xm(y
z`iG4_IdnUy>EN`DznGST90zA?a8~DE4)r$vw(*aRxszgNX?w*{8W?eYyU01JwUOnZ
zRlCT^K_#4Y;$+dY4O`IaDp6sBEE-;}gUSx7Irvvbm575XjxqqcYwBfHb?}AY1v2ST
z-2tEbeM(DfIk>>V#SU6KxX?ju2MrxGa&VD@Iu05*s&4PwpF_&3tLvz0tS7X-gBp9A
z)2p-N7f16P<U45YpoN3Rj+!!Ul1ZHp(54QWIe1#^hnY`35t%A&%DlA{u~rT~JyD78
z0Bsyx;;1JGN2In6+BvvXyl~XW78T0ji<s`@fl|`T98_JdI2{~Z!Tft@<l#yOF$djT
zT<fBvgH8_ac5sh_0tZ()80}z;gF*+L9dvhalY=4$T`2G1S_fSn6g$|*1I;L~sF<fh
zaU}r1%6Za7i36TbevMErinxxds+Vzf%?*zFUw^$&o_2U6l{AgcoK(tF?{0R`!@(d2
zgB|pA(92QZCjA^W>CxLkAMr+H&A=@Zol7bD3aD5;(%(_PF9!%6D3l*cLmUisFv3ws
zEnV6&%A|*h9v)UdTr^j17G<nb2O}lQD51AH;6aY$laA%fzk@p*OmVP#aQ<x$COYsx
zjO<;SKVDQ#aKOW$c*@5l2W7&U?C>SCgugGD|J#M*7RcvD<(#Pw?xd+Wn9iDUkZ>@=
z!Au9Xh|O{^TXLm~hPxbSjyj2sCzQ^iKvM;%v+1!)h67V1+s-QFk|E2%1G|d}90#rg
z&jDAF`HuQj<O(R_S=YB<EhQa97qm?~2&j$a`mUfBa`}5Ybku^hatCu+mJ#Z}7Hwxi
zjkNlvn<p(xaIb^;G+h^sUEIg|aquH6Ka%x;g9Q#gaIk^NIe5sy3l3g%u#nd1;Bf~}
zI9SBytCqFI!6S}Zj<Q%%;V<k*9aWac94wRKFBN)jZw?O~;z3f(*n86=%N?v>kDxuX
z(;df?G{Pp)ryLAG?&ni;xXgojTj}6g2S;VK+j9<{XO{X!cs~Ew^Vy8Tl~-Jb^pb;B
z4&Gw>I#})CW!A8RHypge9-SS1%~5Aqac#+~?EX!nJWz<XdZb~#TfOW}hYQ9cJm=8Z
zpgs@RI9Ti8T?g+;Zr>5QjxBhwV1i7Gz4}k?o>O`6OY3lf1g&?ygEjJ>{nZ1}`?GUC
z<gno2V+Wr&_}0Nj_Gm|~3j2($;NbcijkqA{3kP4alg^BMF+BDaTeD5cH;y_g_G@;`
z7SVqa>f~OY_OoC`$#)JmIcgc$4-UQ;z@upjt|%pk=iGAP0hfgR<ltupvD!K4v7`>R
zI@spmfP;e$w$sKO{OVwjgI^r%bg+v#iBwJuk36;omyK`Oy=K;K2e;SE+S5th6}6XL
z-obAibL7&f{f@f(iJ^(wQSDkK@H<C|3!>>7(L)XnJNQckj<A6o9OEFy0driW$^15y
zY+AMQ2?;gAHYYi*KCf<)IwhPxg#Ib?v`_|p6sdg1!QbNj$HC<_v(7qL_eSicXA5?$
zF8FqN?3{!19H?Df=pxHSB^Om)RCAH-BF9Cpi^^oCRnm21xukRv7yDPXsp4Wumy&HS
z#b!SjJAF~Kx{DevYPzW9g5^rjYV%;d%FOnwtJ}QyOdD1XBi43tk&6bdQc}l7T><rk
z-pblztS4gi#Y=(LzAI?xqLGV<cjV;>bL)@@WiELt*2G0qSB>P?xM=30xr;&<on5qW
zd1V7Gb#a-CRxU1f(Z<CkE?T?lh^O<jBZnHQdCpY}i`%+r=K?Nxwiu6$=2ZebpP7K(
zsH?_Lg3DdB=LqkjlZ!3;3p%*Cz-#*ok7jb!@r+jrll+*gPFEu+aMkd8m5U!@MLdg=
zm@|i*<}Gs3g*si7xazp4t}ePgmQR}`E_T6VdkIP_t6s^I^GW%5V$rU1alMP@Ts-gM
z1{XKFh_hl{ba!!+i#uIRb8)ka9xiTmG1^5>7rk5zb}__7Zx?-B3~(_}vUH1!eggWs
zYDw+-Lq)Xk{?wUQLN8O~+EFg);o{Okl6iumtibk-N4O}Jh{IeA7r-S<T=CdIR&9-B
zep(j2Ju)(iS*_8Cc#Mm&A~uzE&NG%>Oknc~zRksW31V_*t7c7dQRd<fx`AqZp6udw
z7d)|i+_~&EUlkB+s+u*$#cMSiHS3hebFsKGhYy$OE@rqeT$rM2ri)pWG1MVfJUDvM
z@{-vu?s755#rLTaO{ngwqeSVY;{s8RQI-qGh07F=!FJUlkOb+0C7ugk)Us)KdKGi^
z*3?*%92fIk+$}+A7lDgV@M}|Z%3aKLF{WA;HL$#kyXIHS)!*adUKfwJc+|yw4*s-N
zi9)gaT`X|%prrnQt4>FJZGAqM8!@?uT<`>Jx`hI0W1O#B<YKX_PRd;(lnY9Um$Ey!
zc+$mFE|$4?+{JRyKWBK1L-7-?y3^zv?w+fbwZc^gi}7@5j)YIUc!mbxs-chn2q<$y
zx`d$&de&7#<#xN|1s5;6IM1QL!%Hq!x%ke-CKsz+yzJs*7oRY1E?#x<zKiv&d>5~~
zc*n&$7jH0b?~!lQgr>&`-sJdDz3eR)yvl@Lx-~A=(t1a#P>$H|as&uVSOZ*n^`7M4
zmBIf5>UlbHtVYR4E;hK>dZ3_Nv*?E|c(^DHgC~>omFZJvW=`qX5{pln&s==&;tQ9D
z!!-HQRfqb1#o_3;f)@vs@M%8tKtbE_dEbcew?a3vR+~gQY5YBN>*9!uqb`1Q@so>P
zE_S>4nYAR6zi==)jxDZwl5P{uR-yU(a<;P_<?UjJaJcMqrzFi4dJ6`}es!@&_y=9=
zb+OOI?=B7qXV{|r{Q}tNzX^DydKvYfIh%WOYY~lPT(abli^Hx0bi6L-n2X~s{^L96
zu-FNXW-k74@u!Q8KNp-5`q-QZ4>oULm7Hcja`BIgvo6liq`CUHY4mT7InAORrnoSe
z&&^jys6O?tgmSU>o)sm0nLH;AH+*YRB@fviYI>;Uu?whiDaS*uhsquz9;$lyQ2J~Y
zPd!*WPF4Mvry5rCz|$}3stc$=Iw3~y1s*Q+P}k$%B{e+O7FtK>MMAru&)(KZb+`H+
zPW@S_fu}AWqL;4+T&GQt=ON$2P!GdAH1^bjjpiO&cxWP+-lhVYdHDBIwF0E2hgKfC
zc<AckVh^o7T<YO64{bd4!O~XfB|_<~m?vo`UI>kP$Qu-W?w69wGcp}Lv=`jL!xf(T
z<Y7d*D}@;o8i__au|fo2<zfAaN}W9vikIU#g%1ym7BNfx^9YJPT<xL1$BP?KLWLe~
z_RvFwnV)VRuJv%8cyAQS=+_Il!Bg{uoP+9~;osze-+)&fXx>vey)*n?0;p|rx4b?c
zIFojZaQb@amyzK_+(1u#`+Tu4XNZSE9tL}A_H1Nv^v24S$*1FY;&2ZmJiOuIO%J6W
zMtYd<;XV(eJlyKR_2BXUuZJ-nrg)g@VXWw%;9(*a4v3Bu?`?v|3*|)Uq)Z;lJT>>i
z57NmVZuiuTC=1KS-yNQsnmb)T>rM~TJQyNB-NOt4vpmeqX!xRfS;Z4`wuies6?cvY
zPA_P*y87x#N~{ZqsnD4oEQxCib%a*T4EP@69s=R;V?5y@NfTx1j^Jp$th4~mcqAsq
z9;>gWP(lyo9_D)BoZH<V?(r~B;?ldZZdOUV2&V;@fqTWG2=4drfQJ<xp7gN5!-F0k
z@$jgJhdeCwuyb&9F|D*`gx|amiyneStj}muehbeZ5?#WY9}+#XtnE?{k4Z^6zd>VI
z=JB%Nyyc$yf_~h?6Ew3U3X@VpNrSAXJUs2;Ihp~R+XE-QR(g1ry{5ie4^T1TK)|0J
zFL-#-!>b-%<M{7k6&v@lJj$<@{Jbo2+tyRD=w6{o^pAeYSyR#Tx~F~(Ea)HQOxIf;
z-uCdNhp#-W@vxS8^YF2UcRciIko7K`L-N1Q1E+L2uk}8QIWW4OonoMx30Zxr(g*B5
z#nBDyyhEZNij`K_B$qRN!XfCEJi1Rkd?xi)eNrjS=5r5UNIr=f`n88|JnUlYc=*=C
zMh`!E_?g2CQ?Hcuy^;5WhfN;7_wf3?d2CI_;=~lekE~v4-_0Jjc-TS1uB(c?RSaO8
zr~ap8b<3mtb`N{1m$7sG!fc3Gg%Z+V8RX%Jhoh3Ey&m>?*e|%?5%p8)HxCCr9Acvk
zivI55fB<4P=wT77_zOT)T!TS+jHM=!AWm^GOEo6NPI>r)Mw><=jXyn{X5JE*oWNfm
z&agN6nC;_l5C704d=&dQ%R$mZbssf+{O94Eha6vB9DLqGmXAt4vc>zs$UNRD{87!U
zIa&_!-!-%7a(z_xadmDM<s&|xshU&8S62^L^|2y1T1_y$8*66O^ij)4J0I|IfsYG)
z<oU?=QQOBwJ{tJgpykw&Sal`Vm49bbTRk64vA%GqgsK{f%#qw^Bj&AgbYqujV;@a?
zwDNJW<fN&O<|5zB$EUf`XKH3qm=Rm}AZY1x4@gc0r?rnue4NyB+KBw=>SYwGQlqS`
zk7HRm#8DrY`sn1Nz{h1iF89&F#}%2(v=?wna<x#)xl+6xeZ(Y(-Ey;71KXD7kzVDa
zP(r)-=q#W}D3hot)OV#37L$@!OH~i?G1Nzik86B%^Kq?@-ah(Bl<R!l?4yT|>&1J6
z&>MYp7jTo0)Qh92_NSUz<GV!JC_RPGRC)<u62!Oo=<8!3&7fvhKj9CMJogv;NmW&L
zRvoi6Nb)mS_++wB)H%$@Z9c~P817?)C@J+ZMkGi2V38>~%EzsubF{?GtD)+4tl)7%
zkA79c%uMhx(Z>{tOU;vfv>25)u4}ZoYqZSA<V?D^3%J9_zhZ<_ecb6|nvXX9qFrib
z{ns@*-N#E^qceOk?o6Qsm)0n|%f}oa_r@_l4$X(|qkSA5;xK%eKDIKqJ}e)$k2ie0
z>BI5i`gq*O6Fxj2KI8hB&syDrxR11tz*jHc36`#9G)ZIN;r7ft@AYUI4Skdg|88IX
z#Q)`RKACfU%o8RtXOQmk)gjw-ob0;K$NfGY_OZyv13nh`Sjcqmig2Ru`)>*!q%mhl
zi68RS8Q15A#C~a*$8+)*`&i;*sgK8eJVMPfb@M2T_H`albpP^z`j}njtC<k)Un3p;
za~`v|oNd7>^0CUtlgxvUXMH@!njaB++Q&*-*Nnnvq?mk7<!-XW-xf?n<L8C*qEM=R
zf&I67BSz`mGQw}P)jnSK)rZ3?zB=HS3zO<}QtLoo_3;|3acqo1uZsZZPl(_0@wSg|
ze0=L;jgPfHKJ)Rpk9T~m^ReE?2aNS?!Mi@*^YOmmn?H*1>ymR>e3hl<4NOQf)3t_L
z&+w6thc=gf;^Sjs@>Q11PlZW7mq2_`k@Mfx$K#hicuN%BS3bTL%*$@*-6*Z|qmQ3_
zeCK16kMAYc4;67`p0Hwv&O=-Cf2J{1&EcozW_IL3u`NQmy^DCej~(m_KK}9Xi;tZ?
zj&d0BvCGG9ANzeC%B_x`{?*4mN@hp*i2l7oxn*f#nK}%ge7>3g&Y`AB^nhfH-h)04
z`8e#W35O$6pPj>e;+=B)%yAzlM9FCmWo*Z>u~Xt@CM&Km_`_FUwSNkeHTjp1GrpSA
zWath3BD|33EV~s)<2dr;_|L~VA2s8s6~}oWS#d<-s1jH9Un!29IC2GN$N#s_sIqw3
zOcl30@T-AksTxOh;j`_k#qlT4<mZM;;ZP4(50OuBK^zyxQ9F){;;2i7ab@r)|H+*>
zEm9}0zMYE~M@X}qM(fAXAdZG{Wo(>>Y!ru;qxif%hn&W7G>M~~=x-WFvp6_M-6oFa
zakPko6X~s(%5k)etF4PXdYzcNSNNTBF;gLPVC)vFgkqOS#I|v?M=p!=_OwF85hXK@
z%S3snb@^wes!C(#FOP%s5(HPoab+Bn<G4MJSR5VW7!$|XI6B2q5J&Gg`owWn9EEXo
zkK?8|I>%8IN4GexjiXB(Gw#gm8b@&)tJ~$$Jm{{Dqa=<=m2-%1xF(Mi;MXwXakZC+
zoa^GaA<m=1)io~H$JG=T`}mD<brBmKYvbXmIXB1gOZ7%Q<7%gK522jWSr#km6-RPf
zA;B$i^o?U^9K+)1C)GYs3ds8J9|wn;0dci;^vS6?gW}-szrhkZL@4Kt*_(z-tdVhy
zimTf$M$lTO=9I=&>s+uPk9RKIDvdRoWgn_?#UY48<+wO*i>tTsvN*;IAf6x~@`PFd
zGg0s)YRjyoJzX#BjyR^oF;7yT8poZ?VWnsyj%jgB=SVJIa%RLan}&B=Y^HE#W%#`B
z=`NN+yqYM{g{pg?cmi;Cj!AQh!xjNI4lfQzFt2`~T3>|Y!l{sF6!MdCwE;X8M>>u`
zWXLR!Bg|k%r<<Eei#_`8IPQt7u1!7n{*!xOTz$8`6vwJK?vLYvI2Mr8J-UMSFd_C}
z91q2@P||%Qjz?KDaV%n@QuE`RL^-9fL@>88QsGjXR?Eoae7a3*_*fjv;^6V`+)u|g
z<*vOaBpVc4p6R(y#_^OS^mH80#IZ6CY$~~AMdVpwJ|D*m0-lSbe0hZVc`>dAjTIvm
zK2$Hi)u58qal9NyorD@3UWwz?IQGV|FOJvZcs-7daeNoY8*#iD#|Lq2V1D9wJFYGe
zSs%w5$<Mkt-i>2z9PhAMk5%e<uz*hrYI{#Y-;ZN%G>`dT_Im**7<n}bcjk7oN<NI^
zBUa0h*jMcAO`{*j@o5~N#qmj|jND)Oc^qGe_scl)o+#ngZ&o}1-E3N{IxpjXEgHTN
z`Yi{df)ShoWzeQLw#Kn7j_=t8*!LfA|04&$rS12g#7}Yj9LJ7phyQr4XtM+ju2Hrn
z1GdN21$n;+-68b8sd*ib73_>-mw0!x>~ZW7yrE-5I?7Xql<DqgUykDxyEey=Dfz!s
z?RUcu#Bnf=Lvb}XPIrP;+AeySV;YTN*6^c3j|n|4^ramI<Wq9ts)9c_@WzpqK&1pu
z$MIJj|HN@Njx%hdg9Q(!)xQtAzol6@;rVY|?d$xH6~cC$9O<&Bn7QIGd!D0NPPC$3
zvJ=QjpjHAGB#@gx<pioFP(6W2Ld|}&rK%*<j(hfZ;;IQXhV&a6t05M`A39W6GohZF
zbo_61VL}b^+(=I0+6ncLx=17^)lk1U>n2byf%*wFNT5psT@z@SK%)dYBydFnc?skv
z&^&<_32@1D;{=){(3J8yQF=KxHe=r8DZ|meM^THG3A9RpH+V)9xR~iC07<Kj(6$Nn
z6lgm-c1Z%HG%9-ACDb%2v&t3G%=x7WT$WIG_gtPpdr?Jge4uE<Vgy$v5KEv?O2MmA
zIwsVwz>ksJi3tsh?K4XX61XaX#*dWH@s0@=uyX=MEXb{~hwD}*El%KSs!gDO0woDt
zlR&QodMD5=fol`!p1@5Btl5ptm7>=raD4*H?<u|^fg2MzzoCE_r#NXD+gc@ha{~8o
zFX)-Tj`s?d^ojOJ;MqH41bu%lnpdN&PXaS`<CX;aCUE?W!c`wBy=P@9!840v0}>dR
z!1x3vB=A7pDuWUjoWKy~XIkmW!v#YV7?x0D@3;hpvp6e<*DPuCSgPR&!St327%6m=
z&|8I$7CJ`gSenhc7=^!B+5WZ!NS~}x_UYV)6Is|;?qoe@QUcb&qS&C^LH%O4vt1JC
zm_(-}rX(;mftpFwO5)B0rX}z~0xu>ooh3?OCD*vFjm=D8Rs!?IOU`To_Xxc!fjJ3i
zg7pOE2`~~c1y~8B6KZdroq&^on}C-<B7r}u<oF^G7fPMv{C}FH@%$ftAQ~7N3bQ<c
zxdIsFVm*h-?-l`idvq+lH=&05b4Lm&f1ilmFZ2PS3lexRfrk=Un83pcJR{6SLLV2p
zSm=@j9!cQQ1ePZ7m~akO$)O8ZM(#aQuq*)r>w-y4;t3i|0xLx3DWPOO$!;sfd0IFW
zCQ~`ujBuXINIoxs!mQ+%5?GzU%L%MXs5+;6=(5~b5_pv@n?xju*AjR=fl~>!<CX4>
z1l~_zy?EbD;H?Dq{95#OCUi{#YX!fPz`6u({;A~M1Zuya_Q}4Nz^>O6sPKNkh$6W`
z=!Xe>l)%S=zY+S0P|AOrz-R1$v@YR%mEnKM5lIw&Eu0EW`ETh>;JXAiCGdR$TN2nx
zNs;+6fuAz5DEYH6H!~*}=F?k2w<WNhSxsQKgziY-mjreSW)c;tG}>H3;s2lFuM$em
zUIF`r?iWh6ztJ`lI3V7G2^`Dt4<&F|@R0<LCUD&gk>gL5wEsMhQI2P1P6#+Dp%p=Y
zB=Bb@^t6D#5;!B^Z=wGPJ)6M43H&EGJE_|4oZ#~bWQq5i!$owJk|1ShjxZUTn*^EU
z&{avIdJ^18S5-LGGW<Hz8rBeg*^hY)y&#DTlgLXVKZ)Ax-Cq~gO`@KFi-gumVlVQ@
zuP<Kiyla$11HoiA6u=|3$>%Z7bUbUQaZ+uSZIVROB$_4BJc%|*T#`hKB>r7gc;V2J
zmPznT?BdROt&+GnsWy1FPJ-UqA4G`nK3dc^iFP7<SrT(Th(K^us52w~QUN^sk=ia#
zqCJbyH$vP&_*V#}_eue=B=mRl=`Bd&sw8erVzgwhFo~;^C`p1la61bvN}`K^u0qK#
zPNL7KTmrgllDHwMc0qPas&_@YYXw}F#Pu0YVaL)NMW(yZo07OWi5^MxOkzk9LzC#0
zMDHZ}CDEUCvbms-(7s8vh4U7nWYWEul~aFn!GI+1-YOiF#6SV$&^tJZa8D5d>98b*
zCwZM~&PZX7NCI_Bsj5@}1?U|mNpO$n?dv0Bk{FxB%p_(dao3E(aY;-{qAZEqn8eJ&
z@vIOpQfp@61P<&o3nvP_^_j?l8HJORn32T#8HKkeLGK-W1SBz)gMSj!SeY%OWD=9I
zT9|?9g2|aUv+&xPg|nGl65Z0cHjTM63Ll+OI421$$qTazUz$<Kr1d0>B+MkNBy3t^
z3i&BGNw`UTnZ#E~cp|(giNyl^B;rXV1SeVcB+8RWi8n2jngapfuZ_%2VxHg!lejyH
zdjvlq^xh=qCvhJ$V?`K+?tbCZTWegG3eE!IOnxWwkbs3k8T7E&Ey0o`9!X*~Tbw~j
zEG1tG&ayuy;3=WYl6ahTC3txfPYPHel#)B2D#<xgMDR5GW)drtcs7aWBvkVw<kJxx
zNi-yQLHI8UeM#slp$y`H@QUCKNqm^Zt9%3`@p=+(u=#}lCJiQubx9s<i?@?llf>F2
z-brHin-SAjuJP*sfypeRA9+t=RpjA)!OO>YsmRX<tT#VWQG|~q=rf@oC-I4ZPlZnD
zHo8LobMbzWL`81D=J1uoUrC%v;#)DuZAokwurZ16lGv2Q_u~CAiJy}AA<1un2pvuL
z=Oi{u(AFe&#v@yVlHc7@p>$;K5CP&-N&G^ABz7gSJBcGnzQ09&O=3?Hzp>|Xd`n_q
z68kgqe<vaw*-j=R6l3%QNgPb#P!fleU{HmA2ECub1V@uNCee>4aUzM6g17lf`2S1(
zA<RF8o)((Fv>^rlPU0Uis+uXB6_ArsU4!o5B>qd{oG{OGY!`l3CUmQrpDnoQN@cyd
zf-9#GNpaItq)H0aGm=#WR7<JN+8lUmWcbR?1z(WDg(=h)TrU%PQ3`cZs4HG7WD=zH
z#oHi-hAGu+$Y~@T9$!GsjZ<in!uk|GNTF#8%~F_^!t4~9r_dsWn^WkKLdz6drBIkc
z=M*kZp*7`a6kZ{;O$zN&Knj<Lm;AOVeBwt4qA6UOLi-H=G69zhZD2(zWJo)tKriL5
zWF@4~Q3MKvb`r`U3S5=Jj8Y`{+7zx!p-T!~#ak@&niQ^1p+xYic!ZA8yJft@bl0cQ
zT{t%gCFe#~n&jc842KbWrqC;eaVgxELhls%q%bIj!6I-=3jI>(FSu`t)2fkqlF$I*
z&^s^%x}S!WRHQg0h0+v8rZ6;xVInhJ=m?=}*Qrc0)+q6g5lZi^DU24(&}p5DNXMo)
z1+9d~r!XOfvJ@t#Fi~VCWh9^TBXy?bQ08{wOikfV0e7S@B_mT&Ez?q%A)M*|hd=ZG
zU_J=$N+Fd(I)ynjo)qs;E7Vi4In<|Mh?g8wfR*BJ!3e!{ZVGW$ix=@E$j?ZU!_Y(u
zN#Rt;2PuRpEKgxY3gs!xP2nL4otMJhDLjygdru1U1+VXrdv6NEUskH_6VCli`fWA-
za{wfBfiNFrCRZz&g(*BNoJBPI6qcs2IE5uCJR(dUA4(Z^1k%S+SSHLTQtA!oadw0^
zBg`c6o9u?Z()MHuPo?l`3a_Q`bPCU;@IneNO01PBJjaNFpH1O-rZ$cVVA)@ipw%h7
zEMS$;ib`l8%3l!<C0|eBjTGKVVV!W^OyTVm)(C#<|J3tZ;q3oDpBZDUcg6c&3hxW3
zD1JqqQ~w6GNDBX@a4v<9QuvrTOyNXIy#sub!dEGLox-Q$CFe5%p9}pWg)cLFo{|1d
z3g4!%Glg9#Y)s+16t<+WHHA$nE)v6!H2V~O5cvme^(sP_<3xTI&Kr*6Y!*CuMj;0`
zdbg#pLpa-oZa!4hV`#}Qg8PX4?i7Aa;gE3lq_8)I-%|KJ#oZJC)4xxG_NS2jbO{wI
zm%>3|5>xCYkvyEj5n&!p;aCdq+L5&x4a6ri@@E8`O5u+T=g$;Q3;rv^;o<Oq3;svw
z*$n?*n#U@YtMe&jrO`Z%7HO{b1mBwK2+d9-CyiXe)zYY*M&&djX;cwTRiPB_O=}Ta
zBaNDAT$n~}392RZf;3mcC;_?(aFOtdD<alSqh1>I(`X?4CTTQGqfr`-#miWE0`k*b
z>hnK6jlBq6h0dmFG|Na*pk*4Z(&#Fji_>VGM*B26q|qjgON4o88f`Q3NTZ$LGj4<~
zn&D@O^2^e=JPmV3K7*Ln6=_^40-e){3E&HDCjlKZWh_YJD&Z8SQAd<KpDf`kO_4CE
zq>F&P)ANfnoT~+tr18Uy!fP^mu1hOZ=i~ck0oSK-gMb^;=q{kaw49p+w0crmQI9lw
zrqL^n-f3uQ=xOx^esRA@pEPb^!KdZ)O=EBxL(=FcvHGXgJHP;;1BKE%D2<(OsR!}U
zG=_<WJJT30V2scaX_N{WDRi{ZQEA*NfP*;`rQ?u3HjQy<+?K|83A#h*gfz+oP-dcl
zNkaR|OV?z<x3hrqmNiAZQ-yBskjp631QSe8V}{_FY0OGvw%|Ez<s(I3F>V?+io%aY
zkHHp9!%o8yF)Pgtu#p$+{Ig>DZW^omx1dfx4NpEF_%Pz*m7yJG7ADh3rSVRPbs^Ge
z1ZgZu<B_!bObgSvUqCry37D70eF7MIcN+H)^NV#m?iJ?zv^p+~93Jz<qjVogV*!<a
z9HGF2X*?t{3)5I6;9;SBOJwL`!34bO=+QKmrm-!+_5hEiv5ajUKo9VE8c(G0UmEAq
zSf0j;G`>q?QyNdE@l+aXS%fs6PU9I`S{kd;Tn3EiZi_j&IWGu!R_JqSJTHKMni%>b
zo4$F}%*`QP%{<T~vZHUO@#*}?D}rAa`f3`l31BEsn|vdK-%R5z!MsYCL2J_Lj~?Bc
z8fEL!c$ZnN6#YDn_n7kuu?=Z_DByje>xF)h<~jCF7<%%qCLb}~G(Jn??H19GX+>L0
zK1t*IsWAcykkWPUHS&uzzD(n*G`>z_$31!9rcvW}b<QXM2z-;qk2T6F@J5bfD@r_W
zhi9jw&8M-8p^_zYL2P>(Kc(?ATW1S4r?DlCtsJ0aW|&KAx6!1VL^;)5akRybG=53r
zNR6@~{DomPVF7oi@oO5#(m0;Ro;3ERaac6(OJjc;2h%u2oz0@ZacpT4<psyYzq3n<
zm%nIvIw;d^u`lN$IY*TENE$~aGdvV`%ZS(s+Q87*pRAlTPNs26yj5$K{lSLrSj2Nk
zNdHRXOd9{D@z><Y-)a1l##s)4HOsi@m;dzn19ZoG`J~IfD##lVTWhMzzRz<64$vS#
zR)9(YvIFD<s*UOe$PG|AK-B=%0+qMFj#gT6XHG;ys|2`rPcg+f%UwM{%>cDTrbeKa
zbF(rp2ykJ5ivrXUer=)L!$Li^tR}40x&ii<<nd1>e+_J^oO99kl1JakZy2CafUW_G
z1LOtB4{%w4%L6nH&?G>c0G9-48lYK#RslY^HO4;?%>y-u&nkWOw$c^>S_bO(1o3rS
zmB7V;TDH+zgt^4JZGd(Gu9&WFJZDZ2AR6#G>HnQze5qi1$DFRzK0t>69RqZtJoC^b
zN_VAz(Rw5nsNWw`a&u@`1;Q*0&^b_Quac5-;d<`==KRZ06rc-B)Gn8p!u)M<b%2rp
zBLb8LxF$fi0DS`765!eZ*9GVv;HCiA2e^TG%g(xyg&h;)uhokG;A6(;(b8@X&?7)E
z$!*U-{UCmCYtiES^V`gb@gDY-=d*hU_-&Ai)i*%D00RRI3ecbV%+4AR;Ke<~hySd^
z;v^d65f2V9B)~99h{xKjX&Pl#htkVkR0*|Cd$<&E?`^S>0Y(M5J-{8T)c~Ve^8v=Q
zymc#&2{10ehTHR4z_CoCxw=i8D@pDy95Erl!~kW?$#+WI?kTFVCW+1mmzGQp)RGC-
z`MA@SrUaN8U{-+HtjPe=Xa*BvGiXtJa~?lmi6@9o5AgNlCHxu9O$Res;e%q_fN+<H
z%?Z>370RofUrnQ20d52^1H2tzO#mx^9bjRAhXXhP+yM8B8G8Zz0AYY~X|;Hux>zbe
zB0w@w>zvuyFMha~b)J?Wh6YlN<jkd|4OAxy-xFY-V0!OngVrn~xR+VYQ8qI_z<mLZ
zO)I41zpw`+-35}|gF+t)P-Sq8qXFrn0E+{Bb~yjF080Wq65u6fZ$j)*rp_b+JRPX9
z^f8Y70iF;eT*l_$0_@6afy(j#Pl`?&=L(uox`g9Z#SyR11Xvm1ISHlZ)3lz=U=D82
z3w|NPc`*RbCue?E1y~*6<p8g+<7`#CX4v0f4e)GUN#A1y+&@L|x|C?!_`Ej)ycyuF
z0K;d*cuoAkL9rjFV{L$UL|{XJb+nKVBOEl=2Y5FCPvdz{D8c*e1!H5?nveWIgm0}`
z_R8@}9|rg+z{deT3GjV@9|C;J$_emofQ^#X&jWlJ;Hv;%&<3hyu}~~8OZT<Z(l;D5
zhN!hthqo88(zvdJ_&cdC*4QTLU*!DA4$j3(5`|(v1^79G*<ZF~>SQa;Ne(gI5#SfL
za;OH$odI@n%nXqeVz=b{p8#hA{2E{n$F~6c0{j`^bb$Trk^znfI1%9Y00#mb4sawu
z?QKN|C5b~qe>j(2t%}O$Q8wR#*fBDjMqilLg!tJz75^mrdw^54uF)}eRqlTw_=9=g
zS`^t@^jCmOw-u37d0OO50CpLg+~3m0lC|=g;eR<SH*4}AGm{gg_Z$a@-m&xSCSzkA
zcNS!Ys1&LoI(l<MR1R@bh&mx6p<0JlBSg&*Rix}yLsivu)dW-zF-iXaQf;je7YLJ4
z*dolvg`uLgg|a)>4N)(|<ssUKs2`$1h)Y7W4bd<}qYzC)Gz*bOncS@W5RF4j8y(^4
z!A;1|&6<`ujf&5s=8{Uw5UoPA$mC~E%`*Pmy*N~Bgj$E{6fAn%gy3)7DNadCx8#8t
zv34O4A}Ue1xPmL$E)CW5{kDSzmxXF!8{IuM%UF9ILKK9!D#R5bt_;<F)fls}v7lp!
zJC~Kv+bL8_UuZdl&Sw{j!lDpeLiN_vSty^~T|=y#5-VXHwu}}FzFH`m<Xj{Crdku?
zYeQTY;`$IbgfK#wA#M!OJ;c}$<3ijN;^q+jLktMfBSg;-y+ib2O*V;ge+_HC7lTG9
zFto76Eg`m*MK~<{zNMsZ2-1Eb*4#0YU|@(r%v*@zAqIzd>2|f3YDlPl*7G%QXb6r8
zOH(DAwik^EQOfLv7#(6{2wDX<zl;jiphQec?-(gHZD!QjT)vfY@#Jl+OtxBx=^-YB
zm>A;r5O;*wH8?hjEz9MFgJNYNCX+cS@6RXHb79fJf+>tu8k@?B6~H%^M@PoEGU2J3
zWvs&)A!dfqrLeUd-#RPA>=1W_YTMn8?C4967S3T4hnOWt=<`7^{cs*JHE%49St0BY
z4~JM3!eRS{xF^KDA-oWNh=9cj5f71IL72T;V@XzcPLz(jp-EYybO;`f#FsRNmWP-d
zVjkmuRWSF55>mQB-5QhLElgIz{1Eqr>LuYJ)`OpSzf{qJ5D&07HHp4kvuyPDB@YU-
zVr3&G7lx?HZ>T2G#UYl2c!m}d;*k)KhIl;06Csw0`8_5YxC(-GvP>|ea2Z&ws~ayD
z4NrzxAw86@dE`GOOlp2w02}(*5YL5J9pdE>&xdM_(`mcO3nBhGP;kSM{1<5tA=XZa
ztrE(<!$YO!Eh~8?<YhN_GsIgVUJKQI1az+pU@9EP-U!ub#^*2hwbj~+w`pu4rcTW#
zUK@gx&koXeL%bK_o%vWdAMb})&+()jRm<@~hz%kB3~`!fe*zy0{V~KxAwCZA3G1Ju
z2Q4$iXCXdk{p?0(FZKmH<_Ua5CF$atRf@k1@fF9YDhhucqC~*A61q|7cS0%LVsw`#
zUW^IR{UB*|_^;AWA$|_AImDI_2SXeRv6Y=jLVssT1^g0XCk4)62OA}b5$s|s{9UkL
zLJ4+@_ty}61dy{=z&@e3u8aK^qWK9t@z8M6K6>l`t#NM5+Ks~@j)XWK;siU+k)op^
zdYwSWA-TuIOU|l4aWX{y@uE$3@!nH7C79knBx!=bLbWpg?-2h8I3qOrcQ)7EoegoG
zg8=VvVMma?Hvb7YCzLyevdU4Z9NFdS7vvXJvTn<Z<_M-YS3qT<5urR>w^})>mm@kK
zm(E9xa?~tWKkSy>i(2Klpd1C|xT+i%3bREyT9)IRO3~UvFA`d(9CZbdU#}eX%h5o*
z4Ta_jZ6tJjgGj!B#zLD2Z7P&;o0X%v;7hu7ptn^yE-nX{v2wI7N1Jk7QjWHic`&bO
z<tQCNyK+<j(s~c(wRkY^(sEoT%qxXnUXBg|DA2wfwZ1K)%oQ0<hbawX<>*M6DGez=
z*GYo7vZb&boy+m^JiIawMdj#HjzM!VcrLn@qqrQOm-FhJE?1YMq#W^bB+7A3Il7f&
zAjQftbxG`6p*@9OSB~oi+#r;pHwx%3^rmv$ETBgw^owfIUK!lG9DM}elHv3%N52g2
zFJOSs%U+8OF2@kTGs-bEBQv=i!^$zd93zA?Cc`fkFjD9!p|_S}w1CT(#+XUEvE>+7
zj@!yHUijopD#rxD6NR?@u((39tQ?!#<W=C?CFqWFOsR-fL6^ktEXTAAp3XX-{l8RZ
zmSa{qW=qgrLalPl5ujz{bpb{>%nWD1#NoDJC&O_CctU-lJC_wC%aJO_qH-)QM_QQk
z%TaroN;(j4D75_lQFR_rRuk|0rz}g6UW8qG=LtQqz`}AV3Q9+*%hEwuiXt6E6cli8
zOLF^7F1`0IO;nnK0wRJGMMV%$EPx22SpILGHQ)35pOf>P&ph+aWHOmda_i*4O%UHh
z@KSv_@DrqaC2M%I)_M*$^~p4-0cwyMqK0!2Aw;Qbj$}x%nS*<Ab)z^ruyT-Ka&Zn;
z5tdLTU}+APk(X0fIR45Uc$TRWu$s;q$6rfWM_o_dKrNp#Sb{g_V1Et{<X{WUtvT2x
z<C*+6bq7@<cjjOhc{eqlu=gd~9wztZV4o9NXJh4e$VVLKU=H4O_`MvwPd?;0hjY*=
z{9kQHX&%eL2TtyXIXLd{3Bs(tnIGriWDZW{;B*e^xdAsm$-x=9t+-LxjZbrMHV1d#
zR`a;=Sq{$S;A#%O%|XZZjnC)c3xe?HIk-T+NWJ9vm*qPBE<*xj`!WYt9RI5veC_Zz
zayge&B;Z;Ou1l+O@GG;v%fSy$%nicL9NZ#&@A%SnQt);Te$2s7G=I*)9Vhn}8S_y)
zK(@OyD;8DmJGqZ@@LLWZF!?YCe-M6mavu@?jM&BhBuhJm|Dyh#gMSF({7cw1FXK>k
zC9fO#+z^m0zZ*&90@P&3FX%>}UM>kJ;>IuQ)f6{U-FU){qD&TZqYOc^iW5q>QPOcr
zxlx+DezhtAvXy1B9Q8?Rd1?hWHXP5$jj8BHb()o^Vpb+paigl^RCD9!+9{G%gHBDy
zuSKZsMjgkgD<ffsy=%pd`Z7Pek>N%IH~bq^*_sm?y3vTxnA(Kel&VsjQ6>Jx<#wqw
zH(EGOOF}C*(h04pKj+IYVQt+QTUY5$b-B^bjrL?QI}<ukJG$`{;c03os>F2J>=J#(
zjc5Po5V}&kxzW0~9nizc?Mdk6MsLS?j_|ykLBdlfG9<pg8w1?<(T$(n80bc(8=KwO
z;>I91vfOynjRkHDc4Ju?MYf4<3?UD7V;EsLbqsZc8zTv$s1iS#@PZq~`(@_VFqTd>
zb(|aHoyZApbZBeu;zc)Ja$^$xSE(<%F_|#MjhRmTRKhejrW0m3el=5_MV{?AuedSC
z;nt6`<~sbE8?Te+QRh4U8-&wEvlkLHH*~@x>RZ$tH{1jd)l2nJ{nVBpWaJ*N!DO5o
zpa!WSYM2^vBT9%-rQn3Zis^>MWP-Yay4Z~+PRvpPhnKq%YwnVQE8SS-#%lWOo!m8U
ztR=6bdWzWnEZYVqH@dNj(2nL-H@3+c5348L*zU#-@)7Dz>H#-)5q480@@>K%>RvbY
zIsSga;;E{{yyM0}Cf}vLM}41qh<cbRk<S-aM2|9g%#9Bm|3f#9JAA^8kH{Z8PWhIu
zQ*NA=`Jc|`Zd`EV4Ea+h=B!-%4xb~Omy_GKyzK6x<A3eOC5JB)zMy{T#udU>)MNWI
zq|`TVTy^7HI+DCexaP)n$N7$MgSvdHOJZ)h@x7D#1L3w@q2=sD{#oWIxi&rM>%kp2
z?#jICK~WDH#?*T<GkYLC^Q#;8-B`0s{mqTX1mOpShi?4tIFAT_Q2%t}+<sNU{&I5v
zcH<xNztlV)yF%IWda$6FA|N};&)p?a3wV%B5Wk=Yg~)}eMI8UNy=pNJip$fl2dzE!
zJ+Xubl{~0SF6lujLTL}mcu<yHfhv*ZJb02^-f>3t$rL}ugH$>dsrM{Z%qryi9yIWv
zst47WtWK@tK@Eb0)g;vNptj>k3&pSNK|MNfe8mI3tRh(r=`^D@qBf>Bp*E$eR0)<-
zCfeMCG{<Q{Xz4*K$C*%EX+wU>gQp1@9<+6GT^_V^xILkR2OSBM7u!vht&<1cotVyq
zXQ<D5(8ck)61sWdc`qZkR1Z2mJ?KT~?L<B&CyV^&W|u_v^Ps;6uX*sg2gR1D13Z}E
z!9?;v4>CO%M9%VH1Ys~$B8L!$QipjkoKRzjDp|6P^k9?+qdj=RiO(jC@n9_B;^O}z
z$1ypcDnsi<52Rt!Jy=;nd5J8^NgljRo=lxWo$BOH^I&#$mxRsm;O(iZY%@KWMV{?A
zuXr$r{Hh0YbImf!;I@hckKd@y^S~`#=YjBi>Kh)sNmxJ?f1wA9$Zt7Lj_jqBB3WJ!
ze9~9%WUTkV?|~*`a*3Ld5k(M=5DX6jgdjEK<c0|ucZW)3)PtDg#|b9Y@*q3IB>{^)
zSmMD_CuS94nFq@WD;$5N2M3BP5-;0onro<Qsp~xUk3l3$+Pr}+-$>m=-R!{@!dB`w
zszkmgkNqC(@?gFXZ}_lVy3vEE7cnpPc(B)l!CnmUVxI^5J*enKB`*$m@Qw$6$eHrs
zpa<`IaLR+z9=s><C6o`S?^6#^#XRi65r>Zwj!E%|Dp|69=)rNCC#WA$Kc-6VNy5BW
zGC%R)j0Zn@@RJ9hdT^Hh4G%seeCfdz56*dT-h<DbvX=-Ks28d7Jbc;7{la5Ehv&B8
zE1KVW@U@fsjR#j9mTT&o!`BJlQFoP8ZW3-$zo-5{m1=K$P^7SZfU^DU!F~F_Q13V~
zcM12XzsjVSu-o&Sll#DfhYtTvcqF5m6+ZT0^Ztw?UOeH&UmpC;<UiCTFa9M+Kprph
zdhJNr@)7cTvFMr1T&I8+$utW(F@*?)z36w;E+PkB)Qi@2l`>uw^V*YtacT)_Nopyo
zWR)g(7ON6pmZi#h@g$)<wSpHZUZj#+1}aIIY~?qpmA$Cq#q(bD@!GFts(Mk^i+WyE
zV^W;zUeqAhbevjV)ONUz7i0N?3tlK*bfaJ2iw0h_^P)YI4ZTpkXy!#Dr&MDvnvk11
zj=bH`oZQNbbV8aJEu7qzgeMo<ue@4&k-=meC%0zJ<hBmGycoVdO~N`jPUl?k;wi^@
z+KWyO%Y9jbpJDP@FS<B>S1-cWf3Fj})9m3zPeLzhZzu9ODOJjTtty-RgI{0z{hZwX
zUJP(}AR&`F$crq;fB0I)P%nmg5%eM??e}7Y7xTQB@5M+j+ICcm#ns7PjPhbMlP`EN
zfgo992xGm-CXAzwcXCI!bxF)bCSRn!M4d!^ncAn2GR2Fj96!^%c*Pk})4iBMp6NKV
zyqN8<T+4IFuR6|L!fVvmz3_$YyX}K*>Kk5oyeJz}-}KtAcNS0u77`Xw-=gMt;dXL=
zIi2ohDJkgl!tb!=g-$jcC*Z~HD`^rImK`ltM^|@6yr{U%HE&*qyk3wt#Jw=R$nQgv
z50)1RFFy6+tQU*DSmMR|UL5jbsqEJa`RmA?UMwf9^<o`i1$8BL6?L^2YX})hsZvC?
z^-OM|ZlG?YZlZ3MO9OV~Rwf0u5w=rzc+v9LBr$g}xtsd7+yV%Dy?BSPkGh|FfGS0*
zmQxOr-=)4s{i3ByvSd5##Yax$5yDaGG3p1@54|`}koXgXzuUMzCY*HqQ-srAeBwA~
z2rv7RKl9?87mt}d@5Sd{{OH9`UR?0vBF*o-xa5@jnsAx=1@%kn73x>igNo}Lg0$zV
z7vDO3&5P^g-R0~<yFtE5y+sxCd%_Pg9tdZj%@k9%pPBs4i(d$LsCTK7dynv|7xxLn
zcKp|S514#N{oRX41d0E{i$5KHwT0_1^54{d9RFW0^7!oGBwJn|@{t?XO_pQ<ACi5@
z@S&{_1$`*wvtOsQ@u9E}MSOV9R2%y6gbzi1Nbw<+PBCg3YH=S*5K2-@QKeLA?n0m}
zopO%<B%wUD0#%*~EBa80T-S%n1Swd<hbj(NB~<gFI$>UMMFMJ)YdJBseW>Gbxjn9W
zWKb2yukS+x^5y**QiE)bd}!=L6Caw=Z{b9$J~VT<xesX$|FtAdO0{INl@IBT-`a<t
z24zatz0%5xVv5U$c0P>tA=`)cK6LP5m=BWGk@~z3eF#ta@U#z|eCX`MGjw`VpQU#5
zp$nlaRf_K|>grDJ;W+Y8A$~6=drM;+KX`wr_<eoIbew*K{?q}~fj<1N=0QGWIgx{X
z7(yQEIIWIl3@49poRNf4K8$vp7kn7wusn5-^I<%bv#Aq&nBwG4^x;K^U-Ds+!!P?V
znY^~NeNa=$)12Jtgc;PC)LGOz6|!C-NRc@{yz1~=!fVvmsq?7I3n_2<us~Yt$5=lW
z`mo4{UGlig5&M=8h7SQBa-@-_>h|Hm^$ZWQyi~bld_MTen&aq%7po=9JvZpXMxXuY
z67nJJL&S$DldGsPAC?d#Ant?du;oL-;l%{GUr5YS@-iQmJGm=-Sn2S&63S}w8tPi=
zI_i3=)UZJghwpE1qO;lYxA?G?yv=d8`>?~|oj&^=2`T=z4|{z0*@s_z*z3bSpL_!o
z%j&xJ`*1*BCX`e@p}yn8VS+dZeR$X5_XzJ(4^i9u?Em{cLO$xlF&{qg;X@ye`*4z`
z<eu>1BZrrrsVL6JJ`5~vzgU*-ln<w!TscQ)eE8IdvyO9-@EP?S^}G+C6E0Bg+6pU|
z$d{>KIR2M}E7XxO^=qkC-v9C8st@0iZ&9yNCF?rjJ0ETkZaV&vWvb+U@52v{bDQuZ
z^(PK33Ap3KU736RXzRy4A6}WC@rMt8`tT6SuRh!-2>(WSAWHb1`iLsIT^cHnefZ0V
zC;cez$KO8uBUiz|%%Xl<|0O5+k%!5=RPpl>^80afr7Fn+OeXtL(2qh+Oc6q1KT>Ae
zF|s}3#~&ZNa=Dlv#r-J3n3B{o)KY$wCfH%wcB!&{lye+;0IMJs`q99ThJK8%sigW*
zlTgu*N`6!(SEE*;R+SH(wN#00RmUY--H#gdh2;~9T7J}KvW_2c{JMVBbGYqhRU#EX
z>O0Po&1xfZGiqbUZ{kN&hgCm%P0W;n&HYHD*@BwxM@uKBl^@r8+D&ThIBf{=uhLw8
zwDV)2AMymQ?NHnM@nuYX&W{d$bo4`<r~K$nc-oIngwB3+Av{BUmMW2P)g{{1k8X}r
zv!h*S4<>s`I~~6_;f)V6WM9v7kA0|psr~%uPZ&Uz7@5j4{TSp&7TY<TDh(b?7(yND
z$1uk~-oL!$j__lo<BalSw8JmR-k%&S0oi_x^F#N;klyfPf}DE4{Uj{AOWBq-(U0lB
z+J8Czq8~5$G0Bgg*QhW1F@qpH*^epYsnltXKizN7HWDD)Oq#R&nC;}g;>R5Fz3q0u
zTt8m(<8|)$E$Te#eCiuiY0{g71#%Z~oJ9orkRr!%+yZ2;<M{mWJFNNfD5^?TPnR7W
z@IyYlTkJ>BkB}eYoOdZ<KlT(=BGf2Vk}*HxWYcjhLc)(9#to4Gd2?)uU)Cg0PGu;|
z{8;YC3O`o*aaSe^KUVp%+K(fC9Q9+3A8Y;C>&HGn*7>pCk8OTz_hW+}8~xbghoUH(
z{ODWFmA|2~S<c8h*X$c<S&bCYt<1evH2YrG;2m-|oT={e%im^VcQw~eKOPs&maw-O
zQ+R`GkM#D9v^KDdOP%}uIN--2KMwoxjvogZc63a6nUUW0<2^s#XZ(kI)xr&3a=N9I
zv?01w^%i&K-IgX{$Nc!fkIR01;m3!59QWf>KhFAb!jF&qIPFIfZ)$o{{*V1Q>BlL*
z{r@><A7(Y*t1g*o|2_VJ=Ukuoafbelb*|1|xduPZ`pl1Weq8Y5q94bar%2d&KR#!S
zB?T`d-;B&|DOs2N_AP9A|7599%rE`8A~T^MxBU3ZkFWjs){kp`eB*~Twf0p%@;6c5
z7?N40ShfT!#j>ya@f~Zp!J2#5S3H&NW9+ue*6-yc%24#<7e8(@;731xl0&Fw=gKCv
z$tF-lRqilAnq(iBeE-vr`*bR6_|1<8emtR}sD_7r{4R62hP)ac$t3K@UozFp3{zV9
zQ|7(W%40v0%PAd-W&4k0NIe<#UH|y;ue4!fn)sK>D)P@l@~oIoLw*efH5Ag2B;W06
zJfeVxWDPa8x+G@93q#*3q>Ndr9xAKI3*N#Se%O*$M6=(SJTgs{SFigXWfjv<Tthhx
zPiiQkp`?Z~QbReV6t%Plc^9$YC+X$ux#a!!xzw^61{KSes$>QzuOUT4s)h<0dLPS>
zoys07YPe`*R?_U&mTKja-N}QE_*FE!yQ)&FX?S^_OSbBS8X9U6YEf%DxpfG2sr9I!
z7EoLbG&IyONs<~GX=tpWhlZZ4yorW14K2t`HK>GURB1qS4P&_mL`ymu8ro`TMNX%-
zrnaGu>1_XflZ!0SQA0a&duj)2??V~2*4wB1DGg84=|mN$vxaBL&pJ*Q4PD9I9H+a6
zt9p3}?j?PwVLbiksDm_QX?R{kA2~a#)xH`Ah`(HIxK8b-p}&SVH>SxpV2?UvwK`Bk
zrUrrFHdSH<3roxlwem`JsD@#3)N<<OOjUIa*Dy-MXbmGYjMN}+)0KV2CH}(A>I)iP
zTT*)r_ulvQ4DqXNR^Q*G=G~+=-l~q1p}W;S(ixl735=OYeUbVSwaXxTeT~WFxl)^k
zDH^6SIgL77!*oLbCF%?fGs!YT&eG5&YF94XD>Ub5c$ILYZmO8CYnZ1YuEEqWU&9+3
z3=IM41Pu!`RPUqe8Ww6;q`|Afr{OJ@J+nr2YsitWFILNvf9tBWJIzCXK|A}J4bHSz
z&Dh&i@oUiN7uc)H<=kMEn$@v(kj^Gcy)ic<q#>-K`BXKcAx1w+&Fv6hS$pjaOG84#
zW=;Ma(!OjLYgnpbnS?R&+6ud8<emKG8dhmot>HmTUBRrC8vJql*w<)St6_tNjT+Wz
zSg+x1TJp6!_SAQGx=X&XBgGf)Q#Y~H!8<9<EW6Ye4O=yA)8q$J>f0LjXxOe{hlZUR
zc1i!ws=HgmhwIa1Fx;A<rmau~YIaa0c&~>297WeoyY^|=w9?K!AQ$yadyH8t)OTeD
z(C|?J9|!QhW`Eo8h>oK=4rw^7;fRK#(qJ9ybR5(0fri#P+UWRDlOLerUk!P5oRH!g
zu50*C!^av<%H*Kol7>?nPHXr~!#NF~XgH(cQ#n`-GOg8Ls=6w<GN-Gdn0jZi`lEbO
zkWkNS_*}!CvdRU`{>G7YC2dMr?I<rT3n^C<>SYaIX!u&gHyXZ_u~AaFqTwqIb0Vq?
zE$O9U5&KI@TO#UJ4c}_GrlHO<_1mcZE@JnhicGwcln*O!Xt=52XPLV++>+y!NhYSs
z-R%brw>A8z;j(47r_*9pnpa?nDy{uVL*4gX@^Ql*4R_@N(eS&5dm4U~IbTk(23K4i
z5mk>z)cZ2Ke(L(Xqav+(t*9b3&$iS@G7^d?CE~UJ*6@dhKQ*kV?~?XB*6^2Rf9z7k
zR2R2#3CLTi|43&>?W4%6BcF~Zb(GibgUzp_u#O@+l5`Z%k*s4<Ai1E9LOSG=I~iuu
zOVaEyQ`Ir+)Rw0DgbulJm()>Iha_byrlUBy1a-j+nPQe=SZQh*YFX-*ZE59nV7E&u
zsh}f8M?)QrbfoI2sH3)yIyx%psH~%^j%qrZ>{Kfb%dDcKq)X{=G~=s?T3tsC9W`~-
zlCiW{l{cxRCuO~xkE*)_zFMYk*sj*qQBTK)vPyl~7Y|dRK3uBS-DiIsCI>FL4P-Cn
zl;vTyvFu1knvNDan(FrZW6g9l*P-f=+utXf)8s7$84U8_lzbc@Z@;(H(MrdUR>gE3
zQ;TJntgR%~RPJ|B8f{Z=)=@Haw3Tku@v;t=j&?fw>FBScy^an#y6Nbyqoa<ebadA7
zjE<+}h<?x4Nyn$l?XMWgDmjN%+r9m)4q3sci;k{3<O@Z&SEzE`$(40)mAZJX+CxWA
z9fRcKdmY0pb?h3omyX^#7OzpCV^tS6q|KkH*4vP_v{Pmu9edWOeWhdfsM`i+4$v`B
z#|t{f=*W~xbPU%qLPwU4!8(TM7|QOFd%>jcs;tP<eTBN8_l{vYep{km*`SW(jz;Mi
zt>YuP_SdKf@}x!$wfzQl$wqaoj%*zhb?jcDUR<q?(=lGh1nJ=wYK^t_93qW8`fi3y
zl|5FfFG^RhRA15|cb_)ZT$6Q7(czOrmcG@oZJRnr$E!M~>6or#hK`v!X6cx%<3;&y
z*h;nQI`#NWS@=nPMNXDDd(`FYRe5zeSI28Q7RcGu@w$$AI^NV#KdjD|L(}c6yTo?8
zpO?*c?U<<+88<}c1i2S4((#rKkMvJzB}a!_N2yO-4Gv`7Tc^rxLJn}@TGgvVE+`o!
zbDO&~9lCUdjwLz_xrk~i5gk!NK#qtIqF&smhIPoTP-0>_;yO$nmNfFKG`TgPmNK%A
za$$SgxqSH&I`-?y(tt4yT}yQ=lPhtbx?0C_9V>LK)Uis33^RH4nm#de`WDsOQIT8i
z)~#x0EhVM7vPOrz-1vH{x?U~;=|COZ<-8YAHc~h1*hHAyBPsV=&0BPAr88DZ7H0?f
zZ5c3xozz{_-Ev-vW#^XKOJ~21eS{u0?b;5I-=Q9)iutaN_Z)s-u37S7>Wz>p0mpQF
zAY(6p!2x`z<G7Bc29_B(Awx^16a%dce5~W7j6EF>bez(0TE{gV*L8d%*NBeKbzIO<
zcYOIzrLStIoY!$y`uv-;&vcxVn6;{0M{+lp;n8WSy0L?DQO6}6U+TD`<FX7SQ~iPi
zULN3OX1GyUk$dG=I=+@kW<cgusk4>+4ufQUBe$?s>e41z-!gvmgfU`%r{jjq20DJy
z@%HAln>udk_@32HU82g}q390v2RV>(%55F3cc^kz$|(9-=G!i=dpdrVajWBwj=MT?
z(v`M*RQW!bfYdCv6}kJ|m-%6S#;WJki`&(QI)0a_(m*8xk97PY6QhAr2L9CXSPt2M
zyiWW}$KNu^8^~|qAGvC_sM&in@*46lY|6hn@({LH7%a&$<y~!yx!P<_^KVt<S?=aW
zwSa+S!!A<LKv9BlAp?aC4BwMc#K4Ws>JyGXw3175iy0_xpajkJ6Emfw#2mCet+au*
zEtCod${3JjS!y}zlLlmEvGN8!tD#8N(5m(qR8kDcoi5d|zrQ3Cdu0Pv4AeDH&p=fJ
z)eO`&P{%-Z12qgJK5^ADP}8vAUzIo8<vu%OPUd2`<g;VBl;lPrvvg8KmCGCk6ayto
zDa{SkH_*U9W7$!i)P@EcT}z+QGqaIl&tMz!=96a_Nj8y#t)a-)lucEcY(|wCK22J(
zF|CDxf$}sZpV1u1NH@^hzzhR34YV<kVW5wJzH;maTn3&s(8aLtv+bm*2A(p|-arQf
zclN3Bc7c5BwbBZEggkAavw>#}%yKE64Ad&2NGE*RUg^<PY2HvNvR3VCpqqg`doy|(
z=($GiZXl;eW)IoXdVAKA;gl@%zk%M|*K-D*m&Pws3)Z(gcHi@@rK$Z4^f!=YV6cG!
zvb(M7Km(al!&-Z08^kj!F9A+$O<S@#O~!`&gkgxBbOR#{3^g#!z?vuWytA8c7VT1R
z)<_;{V6=f342&}HMO!7dFGF;Ufw4S;(wXvjnJp)Ji7L0+afbbHKHk6t0~5(F8<<RZ
zk@^yKl7Xkk+pol@FexyNFqJyKaDnNLFFeb@Yy-Lh!@w&B<`{U(K%tWvugXwqq0E=A
zFfiA^YX)9tx6BjXpHaE7-6xy3+gkHI*P8|w7&u!*k-LvPA}%zr$gtm}@-I>4s}8^I
z&&V<0W^s=Jp8-GFOKou}O)j_1t5l82i<MkUH>L#)1P#Ot#0|*vM#w<KK-94BO<@Ca
z8<mM&=IxXkF6rbs+tN$}mYlDF6~8P#IAK7ZaOCZg-G!CKa-;@QGcy;rQ{<yDY3*_Y
zE93wJC>+2_1FH;qv5ZRwR?Dd|@Q#6l2G$x_XJD6s-3Hbh*kE9bfvpBM8rWoDvz*GQ
zwJ*$YZP@9mQeWw`Jxyl33k{TQ2DZ!STBGii#_UxSjg=h+<XG$(qrFS!&-TmJw<SQ@
z&qH{2lPdR@y$1Hl2ydWBgKIaoztecY!26~u?_7z#Yv4VZ!{y=<)4(AEM+~goo+j`7
z95!$!Z$25H{aYzALmoBcpC?m}8Tfz!AIjxPII$-~;${11v-+`tlQLb%{FXo8DY<;g
zDrcytsgnG}fSeA2PwAYc%A>wG=Qu0Myma2c=h6~><Nbnx#~;~WgTE}JSI&;a%UCsV
z#lZIlevlKv8m=1nmhiPqN5?Y0;R#A>=(=V=p5d<>_>PC1x2SSMBBS=}f|9Ri+%#~@
zz>j<Eq}*IYd#7f}w?uA>DfcpY@@Jjm{48Vjef!G*dA>@!Yv7*D*arSJ@T-CQ27WW}
zz`#qJ)7CClgVWSUImr(V{4On*K_%bwDXct_nP2*<SoR-={qm=+Jo6V;B)PY)Jz)Ma
z@Ha=M@Qythc>>5AK>h%d0=T-#l`mj_1xT{`|D7&hm65I}5I}MOpEk*oN6@`pTm=J=
zC%wJJvcH_J775^q0Gb5QG=QQ36bqnI0F?tM9zclz$^=k0fM1K*doLNVzuH|YfYJf<
z>YOPvvpl<Y{5Gvz08a*x5<qGI<pcJ8szShiSNzh48S=y^bDjE>BJ-GV#Q@}SOB!}!
zn_4A+ssYpwpg{oD#9yV>2%u&F)n(Tk(xm3yYt>o-)Rt;DyXpmC)mNU`lTjytx&i#Q
zOqGW^c^0~GAOit>SAMX>D2zO~A+2EmLtm}kIDlt%x*7%S=RMh^wG-~Ai>d)M3!t;)
z2GBf!v;bTIv<skx9M`+9^Z;51&@zCz?UhymduDrMow`Ksqyc0E?3dCqfwT=^)pM>q
zRb4VgONH{bWP9nE0G<w@Qve+UkSF2c+tsI}^6%6Bi6+<Vpo9t*kZvhIO)aq5o->~f
zpo{cj0KH|u#T5T4wQB&~0_e`(>k+_b?UVtRQ>2JMPbTG2@VNk<51@Yl1K7QN0_ZFI
zRh8t8Y1P^(^@_Us1t2p(=HyIySvOElW!!$nlo`OFfc@Eobh~T<L!^HKhz1Y~U|0ad
z19&BXIRT6aU}OLj0+<-Ur~pO>Fh)i~0j1n8c|~P=fyv%UdBzg50~i;;c*iV!I(=-R
zJQDU|051hFlm4UtUJjr_&7|o8Ob%d50MqDCrS2(|XMIv0S3%|Nq&(eErOz*vC%u3&
zLrz(e4N}!C>5~G=YzB8#l3$hc62PJW-U{Hg0A3GZUI6n0XwzLik(5U&ks@y}SYSZ_
zZ%X%8wCm~5huDPy%-UI7k~smm126&z1mFq4%OZZNkJ?B{jwCDP3MyIv$A%^A0Zd9(
zWILIZN6cUV;Q$2IB`cu-q^Yy=<Xe@LClWxzJn{$YN<08luE7Ad$hZw45x_b*1r=P2
zWkdzAI)Fwc@+}QuSpdreSRuz!q=Nhme`0E~tmY~IP_Z(A123kolD@rz^d>3oPp1j2
zk?Xfuw)|3ftqfFIN^*d@Uaq^BljV2E8v;0fI&EVBn*#RVU&tnZMzJ-3Z2=q(;79=5
z<;vQTwkv?$0ql^*$eMklTkn)o57N5yP~Q&V=$ytf)DH!)CxFwd8ttXtSdz9c0MY%_
z1Jrk@2LpJQAi3|!yFd=#E|wh{o;7(>rEB*xj|T98Jod{OcdN(b7}K-z6whweDCu|r
zCupV=&z3CN8pKmi%E%93eGnUhI32(zGA4uepEaG4qn6uZ5JiGGD;GilcLKN@z&Yu<
z>WXYP2<HR%Tn0b+BK7M4E)gzMzo1I|mxL?Suc*N$N#78zQop52<Tb)|nO+DDdMD@Z
z@g|eEsNV<h1K~DR0)7nOCx?F~{1U($4U!~F{(Jde0FUMLr6|A3<a0XxzEqBs-^h}D
zKzJCy?}VYHvK|rs2;fh`g|hblE&nCeHc$UMfPV=8Qu7CGGfxnC3Hhii5-r7)Eh&fs
zbdss!6eJX)%AXU;n|MzI(K3ih^8f!q6bssaT2(xV@<CJ}mk6RHp%k?=Rbt8nQP$yd
zK|D#8`XwtRh*T!)Q!7%d1yPAmnJQsb2vwc3;#8+oBZ!(o)C!_DlXa<es1hSPsz*jp
zR{FME`+s-cAc%%RGzy}z6W=_DCgi46mD-G&TQDt%7D2rAFrQRaXMNg<uTonDksd_r
zAmkt5M+GrDh_zPBHq?wD+6Lhww+mtbp?we?2pxlXCWvRrPf?!^q7$JrRqA=aVsaO9
zZ^!8xM7JQi2hk&lo-}(=B~s##S4@^o;JF~4526pV`Z;C$29X=q-*F^4keo>!6hszb
za1g@?L#R^W&>*B{i62g9L=YnhxuyiX5X6|EJ!!lg#8|>OsyNv}$p7Tqe@8Db0ccL3
zPNcpV#7l%px!OEk!X}dirVyqEF^w>tI)gfsI*U4+D)B=GV-DwpSE+O9zZS&nLCgzc
zeh~2>%pl%y;<X^&3}OM33xn`D{vtWc<Q%G-dcBza5By%TkLst2dA@&b-C-k$069nv
zQNvDdB#5ZPF@pScv(#XbR|Ju8au)}&guIlx%<-4Y;q>O;`(MV&AXd>|?c}bJ^ODO{
z`5$koTqenlK^zO(3!rQYVsj8%g4i0wp&$+iu`P&;zo+a9Vz+c!5IchSru|^wgv^~m
z$Qx_Nisg~#oVSD66T~|~`)#+`-(~D2><dD8>+0J3gE%0)w;^qC9s8q-&*s)H?<s#U
zh<Af{FNg<oYfISsayasLXB*N)Q#V!lJ-hsoAdUv{V-x$iOI}C(xWn~95Fg4&ldCDO
za+Z1`2>CmgkK_`2&Gj+$B=r<k%+o=9;_w;5r_@TVQ$GvhToC7j_&jJY3vwxFFX=0A
zfk}ajgve)AF9-1jxx<ZADJWTA1@W~sCV}G#d=tb~=`<5tOne)}HJNiv)G~2Bi0^{f
zAIE_>ZUk{Ni0mlFMR6;L?}O+V!BY|Z5X9{u?uYPO2tNk#QxN?^=pRDO6y;~>nIIkp
z@k<bwucwQ1M`}({?gnv>ApEP8CI3eKXhX7?vi&Z}5Nd_+D2P9p^=A;tAruVZF_V7<
z@i*ZgYTgk3B}mykA?*Dwzd$}VBR^G=NrVE_$%XPaPf-eyD}_)vgd!n45kk=r$~nc0
z5lS(pcnBp3Qcp>zhSH8xCWNvMOU+M)AeBpG`4B3EkP<>_2o;@b#h2#gwote-3s#|4
zrB(}}I-v$tDwMF=A=C+>V+c=$P&b5n%t{XdgoYtBA}Ar$CrFV71ldvJ5SoObI(}1v
zRGV9~L^hKKhmc0UMF{`%TZYieDV1xsX0lBP8IIqU;G(t*p}pgG_&@bL9YRmX@5IjO
zOnoMVXX$sLcBOWscBl5B{;xf~nCwk`j`}>cPY8VpaxA$WJAlb$Aq)&5GlW4QWQ8z4
zgf~JM%&b?aL#RWk!$KGy!iW$?hA@N9s1QcWQIKB<VGQBL5XKV5QDu+Wgr>!_g~x|5
z!SN@CkZZo=IFkr3)0f;Sjz2YoX=JHtx|2JT&MYTpb_h~Lb}@(gDs?XPHR|hB379A2
z`KiGIvb`CCKLjm=1<YMYT||A$iO(UpL-06`Hv}KqKfsk+j~+sdj^V@vLI^q>3L#96
zP@|4Nx>IW@9uL8!V>x~zgvI0~j<ZzuUN=jEm(y7h!b-xb5IzgxTnMW}SVL!R2%AIL
zLS7fbdcp?kMygb@DTF(HQv|k#uq}k+^tXqwBZLDXyu;+q5O#;~HhC9yQ5WnX?4wEz
zdmWIf_B(YR4B_1njxkI8_d+-n!eJ)gcVfgpLg(oJaiqczXnsh|ZQ+R!J__OE5Khwk
zG=x(Gso@jCX_;I4W#tB+2|*eu$+Q2bhVvnO9>R?fZiaAy{x?ny7ely2z8u0AA$&>x
zntFx$6;<~2L`8eF<R-7u{5FJZgzMDroJeWFE%MKf^F85*5N;EGr2a&eV5wHNUzof@
zy&J+k!mqg|&(wnu9?Dc1L23lQ%e2p|Ps4WcKV(h|qd^#d%H&V~uMm>LC=kZqOiIi@
zGXFcAho$mT^HKAMaq#{B?kve+lnSGC7zM*96h>hNNDalpDB|!FgrZ@rN>7zda*Kyi
zf@Vo-t|@+*Fe-&nnP%BA%7yV{80DFi+>|gXI4ng{9j?flC7=qO8lquTC0C<Xr%Hg7
zs^xH9LhUf>5dPPOdSQT$;zUYT!!R0!v7S!jFq(uhJB(MtXc~qZ#-K2=!e|yo^DsJx
z@k|(LjBFi7n=o29^|TD56*-;SpLZf@RR)tC!)Qxzh0%`Cp4x#b!G{*wef|`aPg6Tl
z#gwdP!|1|fUuxGddJ?)hG2O%H;jq-!i`+Ym=LpY-(TDKAR^{%lU#>|VKpjZUq;@Qx
zJ(w^uj8S0>ArGYvqe|O`hcUuosdKc$<HLA?Jcc@!n(gF{3qxLMO7RI{Obp}2FkWKT
zj4&n<CWkR4jF+8wsrlqDX;Yb;9)={Rk!2x++^(C+<SZv%%sFAaDtn<bH;mW9(8Dmo
zc-@KdgfTCS`Aoh+eJhMN!&pFG7{($(Zb#+zTMivJRT?j*m+T9}AC|uk{_m>MXx>_w
z90(&A#$qNzPN`@ZVTU7O`AcEDRE$nM43l7mk#J&icb(geC1EV3zs$*9PKXVtz0z@3
zg|XV<HH5WctaBV$5otph8^hQ{=NNT!7+VNi!+4*tEsX79>>%%<?hIpB7`w^R;J2OQ
zm1SZixi^e`%-SEuJ5J02g1qQBNO+g}o?}X>Lu7%&VH_bJb)4Lz{(#93!#M8vC&Kv1
z;g1O?!#EYj=`cPCqi^x-Gfu9sY*P8zFg^?8To~uWC>r^1j{Q80+hP0|#)U90vdE<{
zz9U?wei6o(VO$}96UNmrz9N53m1@(v+EslU#x***$?N|o_lCna!?;EM-f?~)>>N=0
zr!amF<1d+<>HI={NWDY78^%4tuhje0-@<r6$S$5On>6EhCLdA%p#DjftjC1h_<zDk
zW)J-9<mQPWZv^>h%7~Tt{1GHES-|P5ImNRJk_$Ob;RuS5pKu&0TZ~*hf)WvwB$sn?
zOGQwcT*h(A65i#F=E(@kGg-mO6~7|6$^o@a1eGH8YlO-XREeM}{Z`a!)ant`5Qv~w
z1WoD4QPhs0KDiFHuH)B>01hjW|DN6(&}r!SjR=jYO{nrvtvb2Qq%q_)$7vBkOD9Zr
zEn9j7t?A@GU}s3nxu#y*2wV=gi=aKZ1GUb9WQln?f=&?(i(q)feq*gOb#MgFMDT0`
zU6|}k?Mm%NmB{Xd9uf2;^rH55a-SnSAF&tw>O*~fOLD&m7T?R;--#Iz!9a&IBN*gx
z7U9LTqz|&yArTCX*ne&>n^ZL-f{_u-j^LFDE>=)RMeq_qcr@V!>X-<|60)h|s1h@t
zFo8Oe`Xcpl{UphqM1EP$5kZ_OgsBlsbDZgf84=7R%%T?amY3i;Z0DK?)<*DZ1al*h
zb>&`*pxT|ZNCdAlIWL0w5xhZuD}o%tn-MG^Nc_SG7CAhtSOIa|Oa>$H5WG}h1pWv#
zvMk6VVY2BF7<2+uSz|8O4@D5BBS~4nB^p7Dt%_5ZQ%$NBL4qJ{UL3&^hnEtTMc^x*
zEm^Xyh+w6YyDEa!<dN6YC2L&->t!fLQ7eiK5p0a0SQN#h^0$P_rU<@`;93NmBiItb
z)(Eyma7_9wV&`tB?xXIAU}pro$h)a~sBcGbD3Kz;vh8(ve*_02c!vS+Meu$E2g&bJ
zbK?(@k5HxTVJGXT17dy{kuQPZTm<K7o`~QS;Uk$YeoB{sk0UrqXKJq$srGaPpD=lb
zdNzVj3IA*1XHN2S!dKJ_GG+*uBKU$JHD4yQFOe$zWdv6ukX^`5WoasLzK-A<23&RG
zb9Zq)f`1+7y9jPXa5I8i5quxPg9skV`#%xfX27oz{20Mc5!`X&e<u7w9X%vTHrdhL
z2<}CY%Zaxti*w(J|BWE#?-4vA|4sda`k4ABHMihj|A+q}=T@61io6^Q`KbA+vZJIZ
z3Ph32WWgwk5DG<6m{6=lYVFl7(I=uP8pVLVwS}dWfM|&*N<~pRijoYLZX72Ikabqd
zFqs-fS%Ns_qIi;A-f=2KkwR|43MHmu6qV>yc4Dd!szy<bP(2FyJfa4*aNpX(wWFxR
ztP#|@QS>25ZS|r+6iO8Jqi7IChbTHm(J+ce3}_vdfBZlba?2>15}HNPJPMWkzp<3Y
zWQ(XhFr?c5`K_WzXI8G?CW?$G+R~Bn(=H0v|6fmgC;3zqPm{Yx(TVVERKCiN&Scre
zGtvL9wXTlS&Dp!;%I<nZ(UV!dsLw^wn~>YK=l>5&d|xK}MbTeQUlaqQ$c$o06hr9`
ziefM!OWwnr+|phjv$G<7E830cWmpu$qbT?EU~&GJHIhX}MKPKn{tJXL)Ui~lr1aF5
z<D>X2hI27Yh+<+CFGlfF6l-Ew8^fe1UXG$_4Ao+o9L1C<K8WH&InpSmMPWn{h+=y5
zzm-XIqL>lIOeSYVF`qD-`U-Up^;POz>TA^3qnJn7^G~{Lx$B(15yhJ{CAomGFp5Ql
zw;W$qhLT)&6dpQWs*mb-Vzel9@~Am=B{&#GNao%sHqs1J7e^5xM5z)MBgCUH2^KX$
zmHw9i*_JT5l)5a6<x#ANVkMJns1ma(iq#Iw)Bf5h)<v=2aqgE$6;r}CMX{OY`_wH_
z>?drEVjE#Q_3bEj5TwXX!Y=A=>8t)OF=g9BXKxhyoXEepAn$=F-l22Q@!uu9M^zWt
z#ScYs*vUOYI7&T6m2N*C#fc~$M)5nHkEq{9@i9SaI7v7a#px(MA)krjLKGKs1EM%9
zgU#uab2QIK@i{?0r;{!BC@w{Dh2~}I7g2l}#p7McaxA&}75%TN-$Zehu(Wu#Y`HaD
zqjR15T@*K>xJkYh#V=9ZiQ@Yxeu(0>%v4eQ%q%IGTlr6N>8<{+KgGEl#XSc6M*Wp~
zUoMj^_6o()B!LG`4U&B1aQPViApa?imn$xczhx?p{dc|m6Ggrl@-z8w6nO}Fom{CW
zDTV?u6pNvF49WBh#ZWkgg5=!27a>0pL(v#&4*ajp6WB1(63i{>#7mJ<WNEgHy)q7$
zjiH>wPZDx#s1QR6ld05-)JoLKRH>&*%swvy)nlj;!&v$?W2hBFTXJnDvMHfX40Ro+
z9sw~Zg!(Zwh{>-ru=Ve(#&jBye=U(JP7^v;T2zyL$)+;djM|)<Mr{#8OM=9-iXlCQ
z)=ajEA;a-2L^5Q{t;ZEZyBONX&>@D749JS%DMEMZ)6`DX&M`bgc$V5NhAxDzF$hbA
zbKlF9O`t~%J?Zp{p)a8~^*QSE)I23q`@|rRF%sX8PJilv7zPqDV;JPrEUVqgmRtE?
z<_?KrC}CI(!wDl|7)=-{^LaI86jdr0eu4fNswBnCj$vF3<LO8;Ci8y`6JvNWhL>o*
zCiB0OJB{!%b#e?-2veP0nHi=#JR^pgG0ci#cFbOubPoMj$Py;bt90g4b0_fE$@5~E
zAHy3lycvTYgAv05`X1`S7#79wRt$;1v)pu~%{c^dWcyy`(inU(_!*-yO9FDUBsf40
z(+`qE)ZCZ|{U}wclK41Tz>L9iI1$5Q@{$;q5|+iV(#c&O!wTv1#z|62ZWF8Mucpd_
zkeKUYSRb<&%Rb9fvmu5PgpDz5is7HnU7KUr9mCr+w@|mnu#K>tD(7woVP_1x9OvWy
zF7fxo@Lmk>)7(ql7sGzS0qQ%{gVcAaxdjiAKcq@MhY3fhM`JkV_#enDu`yW=L}HG|
zaJ`zcb3oQd%>CGjIT^z#hfl}w3Hc25Q^$Yu`P$M0M=L1jWB6Q7YaDOIaUq6_G5i*j
zAJE}a%w9zAi<o@v&4$ZVSyS%{;pZ4GT(<qMV)&ZQH!)m|;ajr!w+Ppyg^u%G3^&L(
zsj@2HfEVl~^S+Pa2Pfus3_m*jQw+HQzr>KQvT`SeyK=2nSMJ5|YYg|L=Zj~HFI$%d
znW87}=6x8$?=l<2@pdnJwe&|Zl#Ktk@Z29U{24=;;aQJkT$xVRQjg(pIo&b*8$+JB
zZ5E;CjiUfToP31*aU^k*;$kMpQILKin&QY-n2rQI5l7Lud~fi-y_6snk3#|^SL%`A
zQgM`)WZYh++!aT=ILeaC#qneu<>ROjN4+=@M@k&2anxdNMXD639!I4(Dl=Inj%tLe
zR9VM7ca?KV)}SNHo!5**)b{Drq1JVB#aH5}A4khLTE)>Ij)rkGXKtf78polMn@}aV
zDIs@vxz#pvoHQq<1wnGt32msYom?rK;c#0*ZawYe$gQ?R9C9EXsZUX#rgoxsranV`
zmMX<1zAMjrw>Y}T(IbwYaZHTk#W;G!(L0VT=E}f$j?h1j=LvnNeVyEXaSYm>EMWua
z40QZV!k}E;ojf>>A#n_Ka$g_}i(@!pgyWASjG~UFc4OsZ;uy<hHdS^vjxe4&Ar1+f
zcF86FOL5GkImwB9nJ_tyDRE3CPm5!E95Yx-ipZ9G2%@tXFq`^H9CPA$l{}v+k#h;J
zQD2W^p5y1%@CK7_QWsDcQYANsu!8E2!xM*>9HUCjzPSAM*1i%o$I;_391g@0bT|}8
zm>i)-skt2`#p6txR4a}ILHxypC2=ezEOY$jPCu-SV^tjI+74bF#}+4d4Ph;H9d$i*
z19f8@n+Th!vKMK_R`NE-*&fFZhj$Wo#j!iriDOS3d!5{U&RCLqq{rTg<6vBtGr+HL
zyc?H)0KnxqzKG-fI1a^eCXP?zI2^~3I6jKw<2a7SaV(Ax<2W9-zwlGJdh!P{6`W3!
z#jyVQF8?=G?X{~;#35_V>?m5{pG@_n%n76H$dkdk?b}v7702l~>NZRNL`vmTGXKpd
zdNz*F;y542=h8E>yE}R7-N}1CpS`G-tTT0iJ9=>6UL@;c9I}g&cX26>v&FLozKr8a
z9Jk{5UUnMC*Ku5p<69OP@ru2o**DVKbM|tIvc%yh`SM?jLsXL2<Ms+!-^sUt2*NiB
zvd14-{HHj6mf9xeza7VqalCm41*#~bu93;INe#a+>`oka<5)9saPm)CqW9zYEsi24
zo-pwsj)!sNHIdK6?{Pem_&ENJ;|~`6Q-<Qy<f;|zwmp`)?#uMQ;+Qo|{hKOF?+HIH
zSuu}^&oe4Y%#|-)4N_eBO(dB}HtjAgKotlcsC0Rd`e2Y+&_p4cvh>o?d`e*{`%=s2
zucQ|>QOrb&iBuECO_VTE+C&-C?uwEowx*YtN=lg+GCWJZoh6HNl{Hb$#FHk<v$jQp
z)GM#r?X2MJ@lp|&tiJTgoxBxIR5DT3L^Tuf(giA;$ZBi1R@z_1#MIGQ0=G}6RA<2&
zCS)~C$(1d*(pB3;9TN*pEHY8oL_HG&Obj#u6N-uUCOVj?Z=!*T<|fiiG<5dfn9ztS
z>rx$?Q>h8LsR`A@PsOukYes04rM58TSI<Z{(OT;KtkTX!<*(mNZN>N<ck;F|kzt~p
zi4_xTx0Q}9ku8fh)|sNp8jCK|UI0-RcazrEOUmwO;wcl|P4qDFw24k8x|rx{qVdt>
z%`esNY~mRc<`;G^J?k{AR*7s$b~7<!OO*w$B;WirO_H+pH09s<@Vtp$CVI;u=i`cR
zd6nqtv_34`&qRMhUpYsqu9QLQkrcaT*@{gZoM~c^iD@RLOK(dfO}t=YjGR6bLrsh{
zG0Ma+9_(-vBji-(SAHJoT2$@7y;SO}j^?SC+L{!wuQFL@ZLEoG6EB;XY+{_8CKHoP
zdwfnXG10{3n|8|w4p*lPmtV(Vd1Xc5B{}aEU2h(@PqE}qVS@!~Otr6$sU~EVD;aw;
zOw44~>n3IqUNJF;Fq_&Wzw)Yyx#ZVOlw9GGQy?|SS&-E#1?HKUZ{iITZ!%_qiKvn#
z16#fiFS)YGrSX=D91}4ageKe!^GW+nc*tI=M9Sr?kpm`z1f6P__WElQ5MnYym2nj&
zoSQg!;fmy_4AC=brOLTX6Bhk7CK4tV%iv*BiZ3y-jJ(uwdN#=tf4PkF8Fsg<bo^C>
z)g~VIQ)QH{HL=dbdYT)l8>q6*+Wo16H<^$pNh!X0M%Gpn+vL))(9yzn6FW?NZ{i0N
zJ5B78(`w?3iQOjNHgU|v2PXEI*lXe)69-M~W1ah{J?7Pw3J;KFkwM{iO}xkCA!^y-
zsqYg;d|}TvhfN%jEBa%593GV~RSs9{pGp(`kTEArd}QJ{dFw3uNIxc@qMoEq<tSP^
zzwT+dz{l9#BHO1X&dW5#fV0%ksOP9lzfZeh;-ZPKOnhzP63s76d`Y-Wo&0aUD})L|
zA-5Q5l2rSRiK`~QGjT(j%G_uF$#-4M6N9hGrFYPkQrkWde>6j$-fx<?#jOJ`SXrP}
zvTmFBQRYkwsTO`R@w17%7V=s6#l#(%&rLisao5B>6ZcL0#$CuD`IX?CsCpV_Js?X}
z52bS^sW*4q7tzrn>K`WlH1W6O%Go#Zmkg)b$q#PWH@MmJvj&&QmecXCi98m*{M9xG
zv#-RQT_QWbg(M5bEtIfOz(TTx!WN2HC}^ROg@vV3a>q&ORF|v@I^aUe6Bc^3tyt7T
zF$<Nh+3Nz!+NqK&;2x=#v{1@IISWr(C~etCT~@+YCYQ17WdtSZEs-q)UZBtmDdibZ
z!NS;6X^&<MZaY%_WrSK$;w?0?(AYv{3so%Cu~64SRR-6zP|HF!3)Puy%3)T+vIozq
z3icrRcYfX4%rZv(cP-bm(7-}NHUkzE<`x;H)|bN^rLHcKEhARe%DjBo?y)8onp$XO
zA>D$?$TSNr2+d@tD_zYkoNrcM*3OoLlHIjrmcTW+(^+U^p{)g%?5k}>8SS!VSUAi(
zT{}k3USXGNPk!Q7T2e*VQx=}KFy6uh3!N-<w$R5yUklGzcviaFLQe*FvCxgsmD-K>
z#O`FNP=;$Sho7_1+u>at1J7HKX<5ShS?F(Jw1pQKFu=k{CvqSmlR8L_BA=3FVX%cE
z7Odp_LoNA#2@JQ8QcYR<UP|>OC3S#0f?*Br+6%~zV!;+8?4y%yjD>7EW2xfwzhw`+
zan^qiOA{@;D1$A5f(g82VUmS+EF84(vW3YOmReY5VTy&R7Uo!Z)xtCj(=E)hFx#@9
zvSv_cT6kP2kF4k_k62>LQoJ{Ar@g`~*_RyhT<$$+A!Ok-3$I(4XJNhtw*`-dH!Qr#
zvG<n1lPL=<ERqu;>;JNbyv6KaTKzD`B`Wv39A-UeQ{HRAXCYwOPo#3-ehZofUB>F2
zyi#`C<0SdXm1G$Vkg4E}L-x9~vW3|g(?W#xN2zkBj#-FX*m^omHc46*5;EqesEaKu
zv2c5^y$<hB<5Of2Ug6~yR#@036SZY8(%KWrD=n<Du$q;xx3Iy&8mG_KT3F|>JS}YG
z9;GFl2(r+soV(2ywlKL>E|a_VLdK#yEbO$f*TOyvyI8~97B*K;-tE-Tt8gCa;XRi9
zBeJ7?RG9(x=hj&`k37X4u<Ru@GrvfG*TQ=iE?Br|;e88-EPP<$Lq^Jj;$gxO)_;_I
zjGZjUdtzqtaSJCbd}`sWnAMbzES#3XW8q^9CmH;A`4oALaLU5&fAh*Bzw+pQ#)3Tm
z%dX`Zk4>#4{rQ<3MTKNZcD<c;POe<JHVfyGvHiJB!UI%U!}O9R|H*^<7Jjqvg-nkY
zzPIp$g)4IU<jNhYUbFDE^h5RZZ!BD;6TO;W{GI)>zGbp+^<+t2ml>v#@|}en(sli^
zZc=akAC;Kfmi%1|Mm)@WSLS~UKg+OOY(JU&V%h6@%O)|h-LddzK1H(bvHoAFd#9+f
zWbFeB4=v<PAYTF%o^bsx<KMzx79Kfg`41^emIqNeL4V88x@zAe-kj93LHeM7nEaQT
zCxI3NRLPZ}Ih=2no<9M3YLcOwl(2s@SRjF#RqSM;1PUiGB7u<!6iMKT1O_DR|8Xjs
zK(Pc;6R4Q5m!T}4Kq)CmE|EY<xvm#C>f2l0|E>Ka-!ch2nZSiPjmswZE762~?HE_m
z<R9L|ET6#3*Ya0jKuQABuH_f=nG~f`0`(F=0)>hzl@q9vK-C03?c2Iq0(A)06R08W
zOrTZ*&mT^$oxr568D}?UzSX3)gvlmJ@#{*%4yQ^|NuYiL&nD0%fd&aQOxSCVcS@j9
z0*w=BmO%4_{o|A-2{a`PO)gNrx&7~yY68*j_CL9$Nv9>yDuHw<5>Z=HON43*%de6}
zThkd?X|Qk`sXu|X3AkvA(;<O&<o1rUVT;<);inRK+F=RkoWO(9Su&WPk^axG$jd18
zU`p2ndL+;@fo=(OPhj|SDX!t_c&<&~D}mk#^iRN_;(AUxB!NB&^iAONmmv$6%gXXo
zE~NC6ku%(0uzSu+cEMa0e_#Tc2@K+y9ZJoj4yF#F=Dn1*vX>&Kei)O(sf8LPjY?p2
z0-*%L3A~WNm;~k}Fh3zHFCaUCOL>(!35-i%d;(MD<R&m7fr)aa<fJF?qV!||<t2^^
z`Bkj2{A5_PZk~LzPo>MxZzm@pKa!o2z~qXG!1M%WF!+@O{z+D5CNP`HL*p<@_Q)Rv
zODXw<Z*D!WCNMXF*BG<!q5a$B*U5(&`9=b7Cg4uMLvuj_i{!GZnY55e+1=EnJhGR!
z63C$=#pUP5UKx8W%4-SeG=0+HGK7*9`So$%q&)KbVk3b7v*bYJXUkG5D5r+U6_J6I
zz}f`XB@jy>&i+|0J(HBjOkgpS@rsHiSrwH8b<#<f)UYIhrL1#V0(VcP=bF;DD-u|l
zz$#{~PGAi|eki?`yZg3Q()t88B(N`m{RwPLU{eA+6WEo&<^;ARu$}Q+sYU^18{u{S
za`}yd%8mp+NmkAj_<vMg3Ajzw`@Yw`t}*j;Z|3<u880_o!<9l(ndf<SmATBRR8(Xr
zLhd<xpZV;4MiOOA5h@|6A3|gnnJR?*zy0o($Nzcu^FHtQu5W#7UT55UIpoghPnooi
zIILij4A%NQe3ob3+AKa&!*(@NH|Ake9=^)M_B?FP!<Ibx-vW+zuDVq!kmmS;d4+ty
zo3EvYQsS3+5R|Uok%vS9$JgvhiDvuAz16$(@J$}h={T?B+dO=iho>|=tzl0dzL%Bd
zLTeZH=3!qR_Bipq6Z`Y<Lmu)wk><n!sh*y7N1AyQKXSUtp|J;LMaWi@hyO`$OK0Zc
zS{@GP;fR!yhr6w7{gQ{Hc{r1Yv)sgvNhc&beqWV#oaWQN;MY6|o*<qi{zg1SJWU+7
zyu4(QJ@EdjG$H5na3K#D89_u*teAPYB)jOo?90SIh*yYnTGkT%dLC}%;qN@$%)_6|
zE8<^ykeEW`lG@(N!|go$qat_hk(z*&Dn-b3HxKt@rAU@Mq&Si4w0^2fa^l66&7@Cc
zEhjsXkD}=E^__@U18FU@(}WaoqM#G~ofzOmAtwqu@u(9Ooft0nK{!#&;tj4|LQyB=
z;Os}7NHQDjoY%Lw6D6FGw*)1fDC<NyCr)(FEagOL65(Y?HeEq^Cn`802fJsSNlABN
z`ra%_?YtyC!)d))vdv0PRCeN}(n;-|sNzIbC!TUbKJ`>{qPi2UoYv{aHJp$ai^qvI
ziDK4rqP7!toTy8sz7q|c0J($s7_lBv{I?d*6>R84Q!0&|XiSnxY(lKDrLXujf3JTQ
zO*>07@+a6WlA7&Ab1E%}Es1i%vLt1lLyi-zop{oT)%WEHlC)MI=CmOfB8_^QO>65!
zI}$mSTf}Fac=|+@4o*DlL`SFf^3;_m<T;Y(i7ya4Ini0Ab|G=z$nHkcUFkhYdOFdI
zq_@)hI3dqYlCX01BWYYH|3D`uoy1P!ASVVpF~o_XPAqa_u@l3j)lR&{)DcdMbmCPf
zR^CjOETd#rP#;aqC5|D!C<E%mSn}~sOmJeH6ZdW=KX(oJZY58oK8a{6Gv3ae?1Z3%
zmFpEIO>xTmkY-bf(}>fFGl(;ZvxtM2XUt}n*NCqZCC(d8%preMDcQG^-zJ}{lzC2^
zzJYg$?-Ji5&L=J)zE508taK}Ri4z|<5q2WNARjuh%85LuywkHPzf48`NT#mhE2PsD
z|5#SUoXlER)16d&L>Ez0KDrZba*tBHPR#$u>UO_U0wh6V$O*%Vk84*I2b0RHwW~&*
zh>>q~B2Mx-QG604tDRWm#3$ryomi(*KPBmRCwV=|XG9qw$+&?iWTO+C6yHp;g_t)y
z{R^dUBl(i}6>&Rphb;M9$zMAmohhMqQ53S9<QpfxCHYS2b2~WlPe|G8#C0cbII&M&
z0-X3kHh&orC(g*`=EOlKjyv(I6F)ievlFsw9d*i+Epf<+UucSQSY9$5X+n-rd9sIN
z*!ASC$w{Kfb&TTnGD#<t|0yR<l27X5_>E-EwPf*}(kP$cStl+yanXr$PMl}z=dIJ{
zUrd*z-<`N*2ayf!x|QX!6Ms;-BD-<vB)LTNb#+|h{w7?MKb`nX{9UN#!rwAUoG9wT
zBQD%>;<gjXF649J9|rlCC|T|>`(0UFB(hcBFJ(o(FMG8MA9i)fwW&-}iVLYO48DxQ
zBDQqoccIvg<bp1wxvYkZQov<xvt5e~DC9!<%a-^>a#9hBqA%>2R?LOsE|im07fQHL
zl1XKWrCccOLK%kox=hm8(n*p<t`YZA1#6wnszA4jE>v<^VbfjM+{2MU|3`^C>sW(Q
z*(Im!S(Oo9UTWUbF}jzdx(hX2XyQUs7izjt%Y}L_)OTUT;f&fYK<d-oalA}Y9Tz%X
zMqL+<mQFgiKSv@sTzHJZh3`yGYT&|?p0q|TG<KmOOOd*T&ZK0zAQRw54@aBQNjrKu
zf-F7Dg~wfJ#%g!ymGguP+2qyASbf{vg%&O>=;`SChc(tM$;E6%BF%r&g*Gniap8Lx
zo^s)77Z$p($c45pv~yvA3j<wf@4_=KbakPd3msf|R_gCUXBRrU@J36=(C&^GTzJlf
zsXcS#dY(k;R=953FI^l`^DZvr_H>N+HS7H3W@1XWcXy$;OqD_C;X+Rrdbu#8o7Iy|
z%O<7wa0u_?LSGlITubfeLYLgk{?a)IGaOwVa)~)eriTl!OX)5Qabc(nlU;b(g<&oX
zcVUbRFG`=gFj9u#Y*q`-kfCLgM!7Ir${m&2piO$N>g{o5lU{ORtPA6*$T*hk<`_rb
zvxmc8fD>p=bYT)ni>_8rzT(0Z7iPKeD#fY9=`Kto5eF%8h6^)YxUsIKm~tJ=pMN$}
zUn9!om)@`!*Blq#bYZ@<qHNMzOnry=whMEW^E?@;?v6!Vj1ui#j`DjlE@l7Q6Bf9v
zzI~tmGIbZbu*8MWUD)8l2QrIX&|Pr5u+)WRF067PkDeb9R}z;KR}j0EPWqTc${Jrf
z$?1a21$#>oMJnIDbdu(RpqL&Pye>pth%t-L1w-ZalLTA{l7xsdfhCto9wv$zA(1A;
zT}ZgF-er}tS_Zdt(pncjW$GHX`V-k+xG$}vxs4m0-JhSSXi~9_E^MOtjjUpluUy#f
z!WLOaG{11+OOkCw84d~3ceXXYJ6x!JBYBq#yQNo|D&kHT#*OVSMBV`ko?y>^>%w<*
zki4?Ge=VJ~*M)tu^JplkVZRGMxNymZ%Pt&n;YSw^yKqE?wRF-!w&Eu?q0IVPJzq%s
zS$e6Z<9{w3;?8!<mnQq$FS1d%aLR?#E*#^gbi##`E*xi}zpA?RWMvAKO|tfX7v6TK
z2|44!Sr>kH;ZNCWBufu#x4GcLdFB#Rd_=iOQ+jM{4~O*sAF}jh6V{Ml!&Miq$xiOV
z9T%?4WTt1;cxB1;r|kSL+?3^0I_WRbyE=ZHk)F~t`xYyIoB9b(ewja#bk~I>4au6d
zx8HMF8{NM$#Iiwgg^DTUvzCs0bV!k+xoSjD(@;P|5e-Et7SvEkgY>gF2%hZbC@lR<
z^U<F&9??)-v$phN8V+@Lyu?>D@qFTXaw!d^HPq8kUqcxUWi?dNP+3Dc4Ts%ncS|Rw
zYbdXwf`-xE9IM@FG8S*XiYcQrGc+{J&3sg|w!4ZF_SrNcRWwx9P)kE?4b?PM*HDw?
z$|he!!};sULS&yWq1SQuaxCiQsH0&*OGjM|N4q+NtUsLvaxonm9@DV5c<zPKnSu?Z
zI1M=(T5D*ep|OVV$|kkY@Pa2TQ$sTiPiSbOp(%^Y(y+d(<8ckAYW}xF7Alt`Tza5K
zS4Xyn=9)$1%3Ie`u%(8T-5sqod8~9D*-n>jOMg;B8-^;|G+T02FPGHhMsiyX?WA*b
zRMF91!!sHVYWPV*2My0^n6F`hhK?GZ(=b-UI1SHB^)w97Fi=A$4V^Xg*3d^o7Y$uC
z^wRKXiT={kZfx@8Qt86GOT|<V^dy<HExqt)%S~3d)TFO;Y?-8f8l;{wg8eo8-mkon
zK{7)$jFMr}FhsMKj9eqxgrS->Uc-pPHT*m}bA)ESObe-XJy~MrYDn#wF3K1U&U`7`
z^XGq&lj<d+dqRqY8ZRTIVTOj88YXI(q~T=^uSi3>J9f27pKSYIPnL-{g@sPj5SX7a
zRn<fmvILnfV?;7b!>i0PmpEI)91U-3cul5pxt!M-;SHkQYH6VLDxl$Q`v2A@z5PaO
zxn1?8&C~D>MKRyi@E*Cn7rn1xp@xKp)fyIQSggUNLDR5A!v`|r8a~!Ai+kpW8kTBU
zChh9t_(;l?p6pghdd6QmXN4@Wx>n_d%lnyCnzc6bG;HsbE~I3y94F`S)}A>sfpraT
z4Pgxt4Ib9Sr@^nGfBp(yHs{!xlmORqNP{7rBXg#k<EiV(@@BwPtvJ-ddU28F6fKh!
z)ezSp3sx!<lS!UGzv!~J-0DzujfPL88X9&m@>=O|t<D$ZpK4eqOF+YC8a|ix+ugBQ
z!v>O#EPe6W6cJ_5*`#6o3u!{c+(L(~!~_@1HVt3O1ncFH>nqv%o*5u*{940KmhwH5
zq++`??3Ojy((#R~N)31S=X}dP5hbZt&K@-fWV?{c@71tRwk8cfXgDCNtaOs}iRkvr
z-;c6&u<bXOmj786h<vAX9RHK;MYbaiM>O2i@UMnnWNB#lL&Fsf$21(*a7M#f*#I@1
zkhT}Geh-rCr0f7PXAa{xiEzcbY8FT-&@=P22Kgnzk<a=;>YVIL8ZKy%KP|kmC+ng#
zidim8TdpR{pE>0xgG(AN{go_a@W1)w=g6xXu4(v(Zr3&3(5#;ZZprRcDCtkx{U&Ap
zt>G`G{#eK=;--dgE@sKEFhysky*4!SwuWiHX30+jIg2yyNO#e*`}3Jiu4LWUtbb(`
z(@|VUl8$5@`E;b{kpBY|(UGd7@VuOYItuB?ujB66O!;*<O-BK8G1pYIYFlqWrn7%$
zVI4M+3KZ4lByp=B<dR>&<rn-CI!fy(qobsbQgT&v3@er2StLh(b}6e{e{C(Nqr8s&
z{WImqrsuDqf{qNj2~XD{s9jACUrm;b6*)#SOqFzKNl8Mg>Zqopk&ebXs_Uqsqk(RH
zzb98s9gitqi=;NO4zVr~M2EENt@3uRdOGUs)=jKcRyJ$Guf-bb)|X&8&C)Y<G|{m@
z$NM^(>d4YDT1T#q$8|K*(N#w`9Z%@U*3m)7v+RWCI$G#xspEr_Etj21X{94a$J096
zGPSjiHY86H<%=)*qU<Sh>Am@b)7r`Auj9j>na}80mty^lxcy49^*dwF%+>XWcGU5l
zj?TLEKey*~$deo8H||RXE4)BncW_!K9q%2q{@b&(ilYm|%5Qevb@b5DM@L^BJ=xE_
zbd>ldJHI#QK&_14R9Y@?*>_T={JPyw21v(X9sPBL=H?90A-}8*)FG2Wh~N+%Lv@VQ
zA=7V|j^R2+==imKhE%Ecj<m{S()S+D5&m5N%u%d>xXB;M#^`ua$1EMMN<bZBb-bcu
zijHyg8STuNtYf@xEuslJChC|(E`J6PMdq8JTrbN=RdmP?{VfY6-Rqw@RmU`Dm$fFp
z7*5wQgQoQ4Oz9=Aj@de1)A4&jYo)xd;|+1pF;@okM9Lf;XZvR6&dPaHT9o2=OXZa&
zi1R!h?<(aT8RZ_C6a8uLQJGJiSlRJy-^_(N7U|fg<4YZjbu7{0)8UuVmqC;nt3%hZ
zRL3$M8)sI`(-H2K`H^(j_vtGcWVwzNI({pjEAa(C=CWEkvDqrFN+C|VxrpLZ?Mkxz
ziK1-b3U1x{($zy<YU?GD|CI%F1a*8S<0ZqV!_X1ek&sT<m(}QKjwuz;5z+BZs$)&z
z+$hN#vvOjxpi(U5Zt>jJI@aj;lmSP+Qt=ZVYsuyN*ml*j3%y=Z26r8MY(24fRzK;z
z4bnhqX%)v8oSfxK<ZjZjS;rO~6AC5OE07|6CB40sp&I8;DgBPMi+-hJyG$e<2X*Yw
z@wJXUI=-jRP93{+>?S`k&e~hPk?;R?G%S*HuZs2a?sw#39v|HQ$G3C#>i9v2r(4dd
z-2?XN5Zte$-CLG<K!^O%qStFV!EzZt>G)a4N$GQ0@-oMC9F^_se!koj)}Pj7BR$MU
z9ntX%Nz)R!(z;_hoK3Qi%fLx9GqYtNPLM2}n<M5a9SZ|#r#U%g+K(HYCbRU6%q|@=
zfrYo3ly*VKMJd#SQy%=T<C2co-FU-|%i<$Dm>Uh<xFXw*Zv9{ZH?B$P=d$Fg?Y78u
z9XE7&l(EJC(($j3`{aM?xT)jxie|TT+$Q-)wrdg*?~r8vk#&z`|Jf7~lNhj=8^zs7
zb|aq~DO4nKVK-9A^AppE1ypK5Hwuw=mOeR`RfN1K@e$?IY+G6hH%hu8g;u6mikMC;
z?M4}rvP20|&W-Zq6_g_PoMtHgC`m<PB{$?I7s*mZrB-#L8hLeM4Ps4VE#gqtvyRQr
zWz}_KG8O4zhZ}NB$YXBIzJq#h)OTCA$p~M06ph?y?1nt(Da(z6?H!rKCT@IEGgZu{
zG=-e*oBp^P&D?mxjk6h!XNlRw=5Dlbqa}GeVk@G!<&d-{KIujqlBbB~A6ZYk(N=MB
zZcqLUu>(=W<Vada^5@)m-i;UB=;X!}H-gu)<?8IlAU6in?BYgOl5TEvC+R`#>qbu!
z@$W^_o7hJt;bkjGKbrlO&j6Bv#6!PZ4ny1+M{_7~7;(58BS=QNF@{7uN4YUt@m#m{
za8warRLV;vW8KzG+@i}h-i-+qCn}#wB$J6R6JH_9^Ao0$NUmvaOedeAl$mbKQv6kt
z*~Hh}c)LWdWSQf}n{NE<!T&sXOGGzryYY`3bKRKd#+Pn<<;FX1yz9nNH<r2ao*U_{
ztbzV~UYh&}KA%Idz>W7w7OK%%<i=vfmymqm#)nE--_nZk5luI7IdO#>D@i_fV--p3
zmdGP<5?w^etGS^oE<U1o-0-^LbHh)4wHs?l0>q#jAriw4lO*g$lq5ow2tPW~1Y>T*
zm69Nlr+j?k##%SFDg9G7){(a!nju-%EB!M!K6lHZ2G~etvm0C7*hFpz7w4^Re4+eB
zl=~1b*2=L{w^QHk#y2E8h+h+T5_b`Qonp23TQ^S86#ktXd))ZmjlFK{bK^%@n@rm8
z#sTH?gN)-_Ip;=LZM5+xH-2&BC>?$#{?Cm=B!`Jdh_<ujI_Aa+D#DMu@vBNbJtFO-
z(tmT~f&XbY&WLWi$=r7168U*IE-3$tZqyrTRY|VPZd{cOpGkiZuMoxIy7K?ajT>(K
zsdCwQ|5m9tNp2DAGHm6InRjGQbK{;YI$8c6^zh)m+j?wKrUy+tNb(@rgM1#Ocu>t_
z>8V5^6-e@Xkmf-F@`4^b;z2R;LLL-Wo<&HC66FzC#g$%$q=W}0Jt*ZtX_^PmTF>W{
z>spWWvdXg@NqM3~NLP9W$)m)I#7Z7iR;g7;s(LUmXgznax~&syDxX>&)b^l`2X#Gw
z2Ms)E$Rvjck9km!eEGaI2_g~d6K!szh>bjG?1A_Qx5cI&wDq8!M^3Q9;~q3)u9igc
zd4eR{gXT(UL9($@S}PB7JZMexDdLmFHp)S=%cEbP_Ta&jUE4G11>!Tr4jw#9(vkQa
z@p+=;l2SU6cP4frb|rQrii4EW(}P|fI6ZKA(A$GP9t`zhm<N67Bad1d=s`d7{=@-9
z`&mYV$R)^N4~8f%Ny9xDL36POBRv@9!2}N`dN7*e7-BBbenRPs<S!8=+E@?9DL$S=
zVovg4GWmNRyzId%9?VrfQ%GL(V5$ex$ftWSOQp^rnMss5uae9r+NHnl!5cK^$j(n9
zb$F9R{NGlJaM9;^@D7!CJ^wv0%GT#oT;Rd`%738;ixjsDT0-*!;)fnAC0XXdM<mOM
zAA7KZM6#?@WEF{&p6B`R3B8)fdJ5JKqV9p)1CIw@np-^Zk%<3l5Bwekm_6u0ge0V*
z86>6$VG_HNk}FCxMvQxqAQ9bmSmVJb9;~JKsRtWK))CiB^*s2T-0qeKF*j1&<iTbV
zTi;494f%p(n+IQ#d_~+&d=TMl4|aO6%Y)t2r9KB`b$IYC&F?(ePqK&jJ#jBlJol-=
z68?h+2dMu@wCgGQPs-<z$NCmXuA?M}iARXP5I@de;TVbd94GnJgA+<QNz%7{^V1%j
z@t}JMJwiC^!8wohocZ%XocG{@2iyJF;m1XJ^Dj%!56zED9$c2~#g7$!{NceB4}SFF
zpbu9)xaL7sAFBCq-Gdt*yz9k#Ui|67UmkSy;yEw=_TZ)m6}(9IT3=k;@}Qs>g}k`!
z!9O0{k#{u}9RJFOPjZ)d&x050Sr6Ar@*>%bRIeORf_%&_dWsh>OiQsHgos-jlM2`l
zRP5BkUKFEPgeaaxy?8`%$y?lu5?++_qLde9m0p^p3`>zLcBpb*lozF5>VM_dOU>}&
zQ7^K*c%1$fy{P3yZ7(W$QQ3<sUR3p>x{7J%s-|Mr@S-M@?D|V;9WUy7(a?)VUVurD
zc~Q>`$3t#XnfhKdcqpcwUG&CYG@+jPP^#!nS!W?~HS?mm7cJ=UgcsQ)pRQ~sL0Wpz
z%8RGHXiG82izmHkL*ANb*Z(QSZL=NC4#f6eJfl*jEOB_&HaQ&6OEtWh;Kf8QI#D0s
z#Xv7Qd(p*<u2gz>(bJ1=<lP_2+l#!97k$0xO>W2Ur+EK|oTV*;ycq1oC@)4+A3_{P
z9IAR_xECX+j3i2J?JL)dF;vDXPbup~DlgfdY|c0@#?!QGGKqYK7c;$b&uO#CUcBtZ
zD_%@dKGVFI`cQVsHT|LZv%GlSi#O=-DseXPHI+qT&hg@Hnv(ZTFW$0~xJKrZ&m+F0
zd|GCu&i7)07e~D~=EeJ7Ec7Dml|yf_$cx2Z1n9Yh6<$I9fmfcKkEJTYM<mOL_HZwk
zI<xsJz4+LRRbJ$Ip?RTu;iQ|3(QF?Z-BhH`9+g+Pm(D&f{3N1C{2+OVXeixOy%hB#
z=EYZDZ1*D0)UCvX7puKk<HaXlY@o7MO7!A06=9th>s76+sa`Kt@N=e04TW#?Vv`q}
zmH!r%WYvm|{lbfFD)md1y2FdFz1Z)?4^(z~vD+(0@?n?ql!CtX;yapqiF>^Gp5(v&
z;n+zj`)rZs0WW^0Df*9I98~-#)eryk;t<8dUL5h_7d!9&-wcm?@vH2>Ui{_72`^51
zafNQbd2x#5cj9R;&Xb%WN{MH^IH$N&@&frqqTO|uRO)3f{!m;zuPT0x<hmC(NbG6z
zw-+~MkM*IH54U97XHtG2{_)}tc|ITRdU4N-Bp+W3DBgc4g56_M!(=+xVN-laeaKAn
zp@0tseJDh+7_qPqMM)%Y5#N8aSNJ1#M%n*WY6+EE+J`a}AN8RuNd@Io&WG}f+f_>U
zA%n_;8dmh7lJcqSLlwot15>N}P=lu7LrouQ`OwdY{#0uFkmbYUKGgA{t`AVT8j(1N
zkNHr~hx+6Vd}v5wmuq8VDw)J4#HK`R?53qO^Wg~}p7EiB582dnh|(L)Nm>wF5?e`c
za6-2B;YliOd}vGZ6!B@I<Q2Deinmv}M1NMe51p9Q(TC@h&+{abtFsSXeCVz8u0C}4
zp@$FMl!FB6N#0BONG`ipeW>((pifH~;KM*4-t^%u9|rj_*oTQeO!8rf4?}%;NqG+Q
zVWbbEd>F2j5o+9}xY0h0p`NQ!rQcp8x62iuu|ACRVZ6#U;UP~+o$SLjAEx{8veI86
znc~A#k|ylc89vPP;dLsrl;>=cSBX;YYc^54#2Y@$QJ#|ewhwcC_{fLl6zBP{z=!vJ
zc!%b@%JV%R<|{6_7LqR^F5+Ox+*nK^mH)tp51F*ohh-1tk|b&V3LjSb;G_OA(MepT
zJo8i>mk%06-3O0Kb*mneXkO(h+)syq4?*P_B9RhJAHqIFe27xn?L*9mIQeE`!iTja
ztBDeA4ap}&iSVfp>wH-6!)HEhr1-h=+@R`XkL)IuMS^VcVXF^c_^{1~uc?1Y+)n(8
zC~nf9J09?QsXNJc5$%}Ykbg`3&WAldIe^UC-{jg)ve$=wBofNjfAHaet#I6b^5JJ6
z8vBvy$NzjdB>Rt$3Xa1*9PuH|j{<)D;=@rN{_x=nGamEdln<xLkNfZ|$qC{~AAWnN
z=cUjy)Ft2rlC#8fKAfkU-3m#)=)><!x}^LstKPdx<u4!pCb=e`0!VHs&p(x?#JNdP
z!rt=Xw(S2t-0>mFk7PgYD*t~;?mbk``*tpNQ9d?5)sGYsiD_3dzyH7esvz|eDz%X4
z(^3l4EaFE|KOXU;7|r5DyXWm7B~`9cev~FJLoBQGa*QU0R-lsZM}{Ad`caYQV}4Zf
zqcV9NKdSgqm9?trM>UGoiFSz+q=qtU*`!`-ZKX(RT|YomxI?v0cs)PrE4=|pLq8fR
zMH<q?kEVX>UFaKrWcl&9A0wFB%#SDhc+QXK{m54S?Ma&Z(ZY|Gezfu<hsx8$*2Fe`
zJV_#@+m(Onq58CCQahzQL$ibOf0m>pQR?=BAD#T@PqVY~=|$4TkFF%${OC^7!;hZI
z=fN=bR!Sd|zJBymiam$}{1`}OkRO9dhWIgzWatCWX(_`W@Or5u{TM}av>)S0a*1Pz
zFA`rOjwM<Rsh2w5j|qNE^kb4AGyIszq{)7~;>Q&7msOuk^<$bJ(<xegs9weFM$Pi$
zRVKYgoK3WRIN^o7u9P``yh;9+AB#xdCQ8h?e$4aZ9h&bF7x?iW$$X+6O+4SHxlrn+
z_MF93miX}j$%lR{^<x?NN5ls;k?bp}IGO!p@>PE1J!on3^xw1k$0jwC>8JbQro)$h
zct|AsXMTA7@X_@95hDqx)Sw?Ba)W3R!zwjG61A}(;v@;;YT_EAl=6umYZd?0k9Fkh
ziE`7BILP%m%?-qjerzHUeKW}xKej663zBWba6f!S^2%-N+ljCJ*y%?gfMCGdmUsE_
zogaJr*zLzRg6?z?<@(l-A8)71)55>^V=uE;p})K*l+=Ax_WSXJ9|y>Pl<!{r_}!0#
ze*EOe&m#J9(vRQ#IONA+`us{f;>R(PU;H>KBhFe$%(Uz@!Q)CfK_6Q@MJ}o5{5b8$
z8Rc_U>9*T>nio{YOMYDT<6l4S%lAJN|MKH+Kd$(3)sJgbZV)B%brQQWf2#PR-=zKz
z@s=OAA9A}xE<Sfj?h);pBn40~fI<Nzv(xegkV29gK>h&I$fc|YZ7-md!T}Tspj-gu
z11L(dL;xiNcqD*gG>a=wJ8!7~N(WGuq7+?55vi3O->y%E05Sr2G=OwENUG=+1E@r^
za^SyFcu*xfS5>A~3!r)cH3Fy^K&=2q1u!~*+5yxF;Q0Vv2%v5N2%u#Etpac`OXC1C
z19&WedNk_?(2zvRZ4f{cwTc@B(2l%G08QzTP0R|Qneu;}MBJWGik+o-04=CIh?WyT
zn*g4o*qZnx%aR-Mo>qCE381YMO4E+hUe%{V0M7={kx9=z<nSPVrvSPI(49%0iCu_Y
zRV#V~&@+I+0SuwuD}cTM^ds*bKp&C^(fZRI7{CA$=^05H^bi+iD9sT83{(1W67d|V
z6ydo6j0s>t0PhFzVgN4%Fg<`70gMe`9Nk_HU_8l0m3@M0^`rnMtNK5v+beXN62Q~|
zrYTQ5b!Gsw0(dKcw*z>UZm$LKdH}N-M7q>=dxJ@D1~7-jZry|Ub1A+Xz&w@u4v9Ft
z7r^}gU*f_576tHe0ILF6Ot+7SONbu?@FB@k;<AU@Vi&iZ`U>JoqEs?30A~Omnl7T$
zP$$udc3!utiI<`;0KZDL9YO&Z0SpgX8>z{pd&F=6kpQ9r!~*z-N<4r>0LKD29>D4V
z)&#I6fUN<162RI3Hqu9ed>W9`;jL)vlv1N@+GpgS2e3hwVcRsh#GyKIQvjQpYMWmK
zuq}We12`yawr$#%0el_6&H%nr(YBN9U>pe|*DfmG6L$yjO#t5p@LfP2HP&p8a<fYm
z+^gd3BiT><fp~x@K0lF2<ii2{Y;&U2=aBM|)FT1>LQ@JlsvJcBHGs<j{1LzjiYEj3
zjpS4S=K?q%z-gM|d4}XHQG#Dk`lSFa2JpMm?aGV4_*_vwe+K0LhqxBNb)|^g4RYK6
zuK@mj$h;ZAE#-Mzb&JHj6Tn^S5?suG$?p@Bf=CV`Ul1ulJQhT~AW}I`$_G&)i2OmM
z1yLY~f<Y7yq6Cu)5sMNF6N?1#^D|atxgH6k7)9Z!*=Z%o%MnWjQ96h+L6lYg4|0j8
z?Vlb*Mo<nzM-66qG>FP7TE!qLk=xGVUxjAXAgYnr(Q1;{A&O5elG;Q&V_k9t;UKYd
z)eoXUP<}_YW_80L8U@iYi05cF4x(ugSwUpdY(lg{Jsw1}AX*3UB*iC!Xc0uqAhLsK
z&Ng<R+)OTUZWV-(9HNvcTu}5jK|B>iyCB*J@w7^9E2EHY`PleO5FMEG>_hz~skX!O
zLA($|uONB{(J6?|tVwrbmms>4NTa$krVzWmLV7T%CsD*cB>jkeiQ*#_5bPhs0Ocm;
zAo9UM3<+W=x$QRWAwD9AkwJ_KVl>4iLFAIiZ)b~w7!$;cG+zp0QV^5L#}dZ{F`h&U
znm{s99E`Mmw^LtM`kO(#62z1src#+noTgHzlgv=LW(Dyo`RpLxVA5+ryiOu9r4$J+
zIEOw$-U{OFAm-BHy&&e3%nRZjl6Q%{RyMQq3ND}`8Q&*aNR*h1gZQ{aZng6%;`~7n
z9|o~Bh-E>18^m`(d=$j;AiP2N=)WQer;4*uGAh1`B#$UDT}s!2(8(pZo5T}@T_t}I
zfgm;pu_=h4@{f>&f-sa~1`#H=n;#7#7DPOVL=c|_v5rZrgIE*9C#q-c_|np~RP2oF
z>G?VFGorX{AQ4YH%jO`q1@UDNTc~d(enFHVw$E2IcM-P-v4iC6Aa*J@yEuuto27rF
z^gTg*AH?w>ex<TEh=U|n=|SvQ{0EW)LHtN!7y6SdC^41KksuC{A6AMK`V09{r5qy>
z{e)6Z1#wdG-_$5b>8B~43F0itIilT)3qf2A;&-XuZ`l<?s1&lur64X-`6GxcBv)nQ
zWs;;`3*tIO;WvW#Gl;)}_&bQ3vVqg*RuH#k(>|2*ZxH_|&$~g~As78r@r-+P5F(~r
z_k&1cUQr}$z7SGENL3}Kk>n>H<iqw0gkY0G6bmcQA|ypacqD{kArudxL<nU=C`Y{{
zu{5z%2zFUgTp7j7GbufUj1Vf2OWmZP2cC~o6s2+qRYJ%Np-Bi;r3m>0C$So_I#I+L
zA=Fg77D??8>L{gd2p~76S`i*odOec*#0JEM#74x%#9gD(nv%GyIogMi6~f~*n-QN3
z;RzB6n;k-P#aocHB(@^vgwUEq0*bR-Z9;g8%G1QQ#CF8?eQJrrGa*Q!a&-vdS@Mp=
z=ZMb}Um$iOif3n%F2t_HZXtZQB3+VthR`bnR|r}Ny+h~|!om<1h0r&Iej&UT!s{XQ
z4`DzE!$KGy!oZOA*XyAn>tEdR$L~QQ3=Ub3=8$U$$;yfj`8)I%OEN};FfxR3A&h61
zQ6Y>8;l&U}hj2#E$qiZe3rK|RMFzY?K9+82Q_|$F5cw~Cjh>kkLYPQ#W(bo))_>F`
zX=(_QDM~e74&jv$rpPGgbJR~ux#h5)>m}DTI!q5?hVry;jhPj~tI}yHj@c5qvZGVO
z)C>74yb;2j5Eg{+eh6=d@D{VYCrC1vxM?JB0U($7?}YF!`RIRA#hgzr&l9#wAOEsd
z4Y}Q5aR^I7SP{a?5I&F&4`EpdABC`#{tb%f>sLCzJSVMIZn`|MPHtyd9)di*O}J$L
zID}Pna}wMBo3C<_3V9*x-Wj>sLGEslQgj*05DrN1h2ROn8^X>Ic7@;z!5_l55WWl{
z5JE77&qLS{LMQ|ygm?&v5KM-Ru<N9_a0qtqMMKtu{^W{<tR@IqO`p>h9qUNegsdm0
zeL`Ft!lxty(o#g+IzDZE2%m)@&cR1B1SRsu5VojNHifX6<%(Y8O7hkazEBfMo-H=(
zjP;lMuR@UC{yK#1^xUER@8`1~z9;uP><-}@ia&(#Z3y4Vo)D4;wOM`MwMyC^CQ1K%
zAHrUlZ&$2qA4y3L)|;s*_DCHJ;inLOlg%fDpF{Xx2)~AKB4j;7&l-*p4$Jm+6-Poi
zN^)>w<}b4EP0SQg2J2V|$3qse$L^%6rv$(Gs6(FGcUtCo2!DrgQ~v)G!nqLs4B@X3
z&WCV;&No81$R%?*gg@BrzlU&1^}o#LoE7O;Lb%4>yQ<>Lx|5b(rzp?Ui<HO})1HSy
z&KFFYnQC?8E&AuXl6;%v_>U}YsZvG9y%7GDHNF#zcH({rNd{W4#gl81Y#^V3nqkxm
zBgH_ff%LHTC#d`e(hPV__)HWqP|(0W1N#jWGEmsSYy+<u)`}})psImt28tSZ#6U3v
z#SLT_c$BFn43sgfJ4(<ev!nsRQpD24{ln#-Q7A`V-arMzy4|Vog{)e7PP$>u#;;Fj
z2zFYWR#A$}%&u&pl7VS`GCR$xD37YEVptCWwr{ViZlH#NUIuzgTMX1P(80j725K9q
zV<6K&69aXnAOj7hK8E!uJcogLhV{hn#|-Oa2f6lLO|DPgfLQkkqDRo!K>4%%<>A=k
zAa~ppuHtBFAj`lL2C@x&wlC{(19DegGXozT!K?#ST8v3+nd)e6poM{Jhmm8Tr2%=e
z?o&t5%7CDMSf(g~t)<CDa^!l_KpXO>l=3u5TLbNs(w^iQ19OX1kSrYyJjWjHYT$Xp
zx~Z_UfwBEEUtqskoko(EKcx%xT_tiQwd0wTZc<wV@-*)r2IOumxq6bE^5*n0(AU5#
z2Bt7_KLfc2#u(^t;Pc*@0}Ko_Fv!4Ly)#D}^5D~KA%kfSF));57*X`$BqN9;4UAHH
zXiWO#3t5u)MFTGx7;j*LRL`(Bw`T@q%H3__$i+<Sn=_HskhV-RaH>S^y%M>T#ouM!
zJovJK;DszHNM_(v1Jmg_uW-&Z!+J`#kQoN#xy^FTG%$-?mcXlY6Y+HeZx{$j5Cd~4
zE;X>sz?)J}F{P6!E-^6Az&q^81qO=D&3RX5S3bvk>_9Pv&!;kNNdNZ@EHto4`tU+l
z-$PXvOA#lsgiCGZhE2KE@dKIOhIO;&*v;uu!;cIsm)aUw#j>s*%vnLQQf6$EY`Mx@
z%#zmS8E{b_*fY~9L(nr*CZT3PH{dqlG2oNAB<oZ<;cP~vLR#6OnR1mcnJf1nrT5Fs
z?Aw2NMox$k!UiG+3<D<3n-{G3o=Is@12F^J4eT%=k6srsZXjV`wanX|nQIMvYGA?J
zIcp4j!nve9-f!d4>~*qy(sS0!5|G7JGFQ6dbGpgnCBGusK-_3x6NyCFOtQtmR;7GF
zvdzGkN;%OpQx^E%;rN=Bl)Jk27}#lGmx0|fIun}7CELh1k~$(?$hXp^+(3j&QiD1D
zzc;YgfRIOu=A27${9xdKfu~KhHSr^3-Zt=$Oke{)$uc+aKLaNX{3dOeg<#;gA^$bX
zIbz@!neEja@;Kt7hV@|iW3r-W=Lk8_JF{5pba|KZD;;E8IAP%3quD}E88~g=qJiHH
zoG~D!pA{tW_RCyyE@RvBmgl87xo>fK%L@kNPFNwA3|yAI!oYPy?hVZO!@yMoox5ks
zO@CLY{4_I1_A60t80b_n<4>7>hIK>PnTGuZ|2A;bz%2vk59gdbKd|nMifdh2a{H~|
z9Rqh|m`v0+anHcNvR9j^X5zkqBok##lrxcRBA<yOCW@L!F_CH_O*VWJwTo8BZ=#1h
zL-l^X`h1sC(6k;|UozEE*hC?6G37P!gGrfkyPRB)m?&<dglTO=#Y}YTmnk={%2m=t
zY17(sN}1NJta8b|E$gC;37Lel1(i2Z!9+z9l}yOIl?U)%Se%}2BEz(nn@q?@O`JH|
zU*5k}Hm%bTs+iVGk6gl2dSn)AlwRFL4HI>#*EFq%IoFaVnARQB^057Hnv|DCQOCrk
z2`O?Ho^x^<OmrV)-I3>z&Z+2ljOZJX*1$xsLP<}U$Trc?L?aW8P1Je0S^WYjS*CR-
zZ>EVRBu!0}bmqt<HGJGev2hvAOl!UDe%-nOR_fN=L@U;(g=xKJ$>eNlS`%2F-kD>f
zwTUN9w2>N4spuY=`IKr=&zl*=CR-J2M`ebInI_tsc*aBr6VIA>NxIiWN9iaNeNFT;
z@w|x_OmvkFH_^$2oLSJ>wC-b-cjGHA^q2jxi)qa(F}urv$|@+7)YF7<AzStbxumwe
zO!PL<$HeennKH3krlm+rr7itslqHmjVW#z%)`2DlnHX&1i|{~s{guoAXT}g!^LB+R
z442YPj50Br;z*+X7Nz0Tv|JNoOuT4X4`;r9BwG}@M}7m}GynT@`ZyEgO-wQ|*|eT#
zeltC1f{BUJqFEJ-^~r40C$nMYjF(NkVq&WFrvw?6IfXc2RJy$K%Jar6@6VF^=x3!k
zrb|Ef&J;4s#H%J2nOJOMHY-y|-m9B<&BW`bwSwM|PTQRG7Wo_#Z<2^EqO7L16*K0V
zm}f$k(mN&=n0VjByC&9D%=l?&=6fdQn-C(GI4q>w;YR88{>>+=ul~7#OHBMZ#(H<E
z%Y-rUp^2p?mYMk2#3~aXnOJUOg^87{nA`~~j|Es$q(V6@N6yy}E+o%{(?pj;)?#s)
z*swdj+^if~JDRNASvhjms$$JFw~T(tT#w9$3t2BrYUY<UV&Zq1?IwaILMFa9u~$ai
zglS@viOr^Uu5{Q$%tV|#Vp{jqM@_u(bI!(}a}p+2%ThJ1dm-1zY8sWfR>pl|rsVpB
z{!2eBFZ@#zEjpzMS#RPq>f--7bBVY?W*x-^$1=p+Vp?BuY%}pC$yS*~B#}o(i{9Xy
z^sh|pG_5nT<;11!CU%(CSy5lpM~L|BGO=5Bk|F)Sk?Lin$*EG`3gKB)-<jA$Pcg-F
zpKue$P5dgmoRRf|%y|<BO&p*p$~%AO`^m)5CXSf+#e}<anjD(*KNE*cI7T#IeJrEx
ziR{DTa5+nU)V>zV%6T{ADDz%l-tw4<rgu|CKVjmei8Ch7N?&z${6>dJXX_}XQzlMR
z6i+GcoQd<Mb?UU-YI=d>B2knvC9UI|L$lK_%iI&U<0ufu6%$uY>ps(aQuC^gYqC$8
zxFvgqwD%}(5dS3pMLe3B`Zvizq>ICC(>n0(9}}XBdB?Ply}nBna=LTczw#1bA}NgI
zF!F`1o9X`NNRuO3<!W{>HHAtlF+VXaY~28B-G+87qhJ_?!q(R&g~KQvMwu{*gi$n%
zN5Uu;Mv1U>V{(gvDf+4G;^Y~pvgH=wlH@{4g)#R~PIkeRviy`G?JXZhxv<qtxvF-p
zT7mlS9h!UZAcOo-V#P2jkyH+&DoGWhMEG=Jt!m`ei8YAQB1x(pMjiQFlYl%6wQd*)
zV{-&sB5;K9SQrx{m=r<1FzSa<A!2>I(jaVMCQ(SkFdC6JR?2H7bDM<GG>oh;9uMQQ
zFg_2XSr|`*@k$s|!pIJzIh{v_(ISkN<h{da6-EwuCt_>jGhsYQ(k6_j!g!jz9kDI(
z-^N3w8tuu2d@vxjgW}JUbPVG;r92<T3*<7R#JRK5yM)nI@or&s52FXoo?-M-ddi6^
za!IZ}Vf3ZgFN`5FYGL$OJ_EuSsQ4g~!NlU1vnAtxW*<gnIB^6~>O6{MbQrlLW5Sp~
z@*+|4z7)n-@^MNTABHEdS@%m;<cSm~g)v#Bz8pr3-(pP-V_Fz1!}yp<)5CZxjJLy>
z5ys3gW>K6?d{yN=$&9bje4Y3PaZVU-DxU>81Ll&yuatRVyrcNLB<~UD6BnrZNNpE}
zu_%niVJuPp%Sb*Ten?zOe6dp6M<kMKImrs*hb41GSrvvW42?=&7*6GBH(U=RVk^>7
zVR%()FbtpKev$w&STZ-Hbc4hshQpAvfTg&oG=WMyjI|^Q;%cHetO?^2#pM9UPZeJm
z#(MI{S6bgIZU|#z7-wYP2xF5hw=j+}bqjG<7`wyRO8x~=vTO_E%P_v8xt;iR7&}PD
zb5e=V&M?N$EidF7m1}Pp-;#ev+@tjGrQcMpePQem<A*Q~$PN?6VdZl$jQ=VAQy4!h
z{{34yQp6#e@-^uZrT;==H}F^($7M^ooc*gxJwb9ZjNg=UisUqLPrvf#NbVEQhjAf{
zi{!V6zlU)tjLYOw`t>mWQ2YwX)iACpMLOgL`JYPpi{$SxZj$u6*I$C%CjUqI+zI2Z
z;`d1YC4Sf_H7SDR2=a0FD-uD`2vW!;NGeHwVp;?RA}B~+D1xgEQ^i59!V&A9eVacL
zL1~q@7)kL6N+_jd1f|Gprc|)~%g`(vK{=B0L|GJ)nogb(!J`pWjG$5kU8z(i){me8
zNtFnyl2ju~#_AE&h@d9TT0}%po1~8NsmnTVD4FX}%46~>pt!trN}Prfv{XtXlEx8a
zM$jaJrb>T;BrAf)NtzL7tw^srw|}<sX&ylfa(jDh6+un}ts{6cf@dP=z@#?Bwh=r<
z@-$I8*6yWtB<+a@2Bbb4K}YiEBapJh=Q*18?k(mEG&@DmnWPJGS3hg*$kmNz_Xv7K
z&@+Nw5%i8=I7LbA6Tu+zzQlgS{wj3<$-oHYkqdUT!4V9hI8^xzBbi(&Z3M~42u4LP
zI)dB?#wnjMBrg$PjL12FRx8G;RC@x9r#XSxkIQ*-1dAeA9I>9%@p1&OL@*^{J-cIS
z1aCwzCxU4aOpl<@-~lrvSD&2MBA6*%MCGqR1LS%&0>RltagghEdcL?N<IM=(ir~En
z=11^0!%F0NGWP}#m`fD%oe17#k`y7AWM4pYAyLftBal!+#92I-MDRfbkqDv@d>Fyf
z2ttQ(u|Uc)l8+)-E(@w)iij(uUGHbQiDIsd;A8p-Ull=~;?4+Mifa+*ir1K);!%0M
z5%|dcObtX36rw!CBnHuxl`=g=u0IP{b&xAYeFHHbK_Y_H5v+;elZf@aj`b0&jo?$J
zp6*sl6v1^gH;2;f2%pjXoc<zij9?R$-&w@%0x4S~_#%QE5&Rj!wg|qIokU8h;E?yF
zUrBGA%Dy6<NwOn?uOrwQ!LA5SQQ1utpF<IRL;fxCJEiZ5;Cu4D#C;L$C;1_QgCqxt
z65+>)_3lE5Tt89#IfDO@tUQz>;$iY5%KsOVqY)e<IZphQc!GG6_#08OFP>WGH2E2&
zoFzFI!Fi=zAh}5Vop>pN%OrmgCC>HEeCyucaV>&#_sd_8;BI?|TrYP{|0`m>XRZ)M
zdK7<0a5I8i5!{YgpF~PVE&L~fv?vNhafjkvqUiTzbQHf&k`zTUv*aU+Pf8T2QRI(e
z!&Jyep>1L7Lrp=I`bZRo$O|i_NEAiM<<paR7E^k0k`lya{A5&$yfm>)6lF=u5hY`J
z68Zd<5yhiX>#sQX<ER)#r6~T1<4zovqo@+aBXJaqqiPh@qR5P)NetDas1Zdd3L}b|
zQPhfJQWTS;s2xR}C|-!76Qk9QqOoL&0#P`kc#NWy(txC16!l5upW!0P)sSW*B{m_+
zj-q)KO{2();&CeC*-ZHef5PU|Qd&gOGK#08XiKG46s@CpGKw6P%Py!*6i+>**kZdV
z+DEN>4LVBwr=>g-#j`X!5JeX^(S^wMTolhgq<3bt5mAhcqDvHAqv%GZR}{UY=pIE6
znmvjC{RMqmN}nkDMlmRg!BO;MlC)(&6#XA^6J?+@D(k=g8N#Gt#Gz78_S<lkSIkl5
z<A|f9$feI1nlDB1;seiVDPzg)2vW*;niHa!_>j-bQM?kxf+*gPVoDTKqnO9kX~bDk
zyh<{iID<HoC~ce_#cSkmMe#bx9HNx<hV4@?^-Y_|EuZ|m@7pxzs&<LzJLK<1@g9@r
ztBg|Zg;6Yu!cApy6icFTl7A4zha?{pmlBr~mk~cA+9j?aUn!-i{~oW3BF}bEbJ9gq
zi$Z@WqbCY4P2WR#{ZRy>2&($qG0iB#QJjq8w<sb}M5FjNitnO`MG=qUvnW1~BEeA7
z-nCJzCSRkJPe|-x`czh{($}kUH$<_K;?5{GMX@=GuW4?HVrvv%M)4KRFNoVzE-A~d
z-u5VVFv&LUf^5Ev`fj55e`C9`TlSFu5XJW-dzH^VlKrX&4n*-Im4i_nisCT&PsE=E
zN$j$YMDa@$zfw6$JQl@qRa>c*xY>0(Vdr8sPDOD#ili8lV>lDVStk8SJQu~KC@x2F
zK8g!bT%;(i_}$LV;g*<xDE(R#SIDp04vc@D{D!SC%U`njM{zTXTU`G4qPWe}JH&s8
z5Bm1*LmB^#;{Jowda3zhNQt3j45ea7jUj)`+ItHT(}+^H0ye3aT2PU~F%*fRD9z%;
zM`9=zv-SadgOVU}m7pS|bPQ!;aK!Lf3}s^|7emDuD#cJfh6>D{5koqOI9r{}RzLbc
znU+#HhAK4c#85ScYBAJOsnuhs5kpN?mL0)Dc2sSp*H!+I7Y@d+r<8^<)K|O#iCuw4
z<c(E?rZHs25Q!lg!{aeDi{Y&p-j3mk7_wvN8AGoanlnr57@mxw1$j%N)Tb3m4$+R^
zCWdw~w2$E_<?}R2TiZuA{}?)ucOyO<!}C%Z@{Tb)NAjShooIH6q4NWs&Fm^!*cIKC
z-b1yhcMN@Ecrk{TV(1$~zZgc-r+*9sNQTBRP~{p#A~hcz!w|*oh76-QJcbc5j3ggL
zd{8%W%cU}gXy+Om!?+lx#V|dF@i9z@;T5J%Bu*wugh_T5HsNKP*GruevtA;nDj&On
zGibgM!^{|F#qcW4*Obp}67hUpDN>C&iodCPX>JVjVptKw${5~Z>W9R4V|Xuy`7tbr
zVG))0iFVOa&xN*GFLg1AC`)4aK#5|?wKRrhR6ZguSDto<d`we|VHHUp(W!h~B;u*Z
z;3oIP5QrfdgID?ZNc?JiLo`jIp&BR^4pR{#(PA;gWB4P6D={QuSRKRHG3<<C4ShZ%
zenOP`uO<1ExGskEN|!jF$FPCs#u&E7@I?%pXl^EMAwKA<Z8X0keyNhS$FRfZY6sXA
z!)_|S5x<GyPz;A-_%?>`sO*VhUkv-nzbEch&HRDp!5Dsu;Xn*OD&20iwB=_y{7>nk
zNYarQexd#=@n{UkY&Y&p#~*Oc#uG7|q$16iyr*I~E&G2AXJh!C`Z?kSmFv86ma;C|
zoN+G2aQUI6tI9tmj%zVor+FiWe`2^3!=EwyMdj}pZYj^3(h4s2+f=Oj(7YQ%Qrz0o
z<+>NczcJib4pw{VlT3$vach^5OZ3z@@>5KUqX0=kV&OOnk=SlU$cqxKX!7KTxV0)*
z#IZ7t5^<D_qf{KF;}{ypusF)ZQ8tdJ;&?iaa&eT8qedJxnY{wBA~BtqL3~td#Y$F^
zj{sDv5UUZZ679-VSG-mnwc}_IN5eSkP?WkkNa_+{dot`}<n`jHZ;Ncc_&189X&hM;
z8xu2$O>DP%sgILn$I(2FX5^CV36<I+j+SveNwXC(Cyv&3s_JB`$LgiFQKFb_<7gL0
z4=U~BcqWd{<Q<6O@I1-0adaekj%YXk1?AJ}A+bvwU6tM~j_!668{RXHUUBq}qYuSF
zar9N5{p0ATxYTe!90OHGyR5-9hdl6+JAdOCLGvBr$T()kF)NNyag2^5H;yrJOpfE_
zI9`n7r8vgN<(N*4rSmwV^|pbXFC|W-GKmw?>LvD==&w+p8pkw}Dat{7rpGaZqUF!U
zDCAY8yiPJZj@OhTK5vlEiQ`R@w}^9zZxikM%u}VjOYyxp=Et!hj`!nON<|7<7{}r`
zme5>e=dG9e0m+BT$8Lo<%e5?ykEkzK&LVys$10jviFt8si{r~UoN>6~(BjbJSj!}F
zc9WQKc;fJq`{D@15oB%sRHVd^@;5~1xJzCk;W#33M47sp7$e5xNRZghf@^3>u1{=T
zK6u8lE{^pyKaXPr$!B(Iz0{2);=hGt6LGUj6@6<QUnn1m|5Y5@Y5o$&4w7%<_%4pG
zmCw#Nc9HK^$~S66_Qdgh96wRtOFW=__QkQE{0E}l94Y-rng>;H{48c1hbSH)9wypD
zFaAP~#&Il;<J3ht7ss!0oQUHjmD5W9Esj(FKku11&Z<<Y!1*{X(7YJOr8q8=|E{w9
zp**iB#hNf2vTIbX$8m$?Pv!Yn9DkGFB;JbSHi_i2Gv1|nk9+bUeq-=2`H->cvfQLC
zNeLt;{(E)EN7Bs5$}fjUCXl@v%~zv90tFLToWPO<3MEiDfvyR3OQ1*sMH8r&K=lM3
zNuXE)WfLfuK=A~oluHV@(@G}LBY*x9;-J^@p3W+jfMDr_b-qj);wZOuq*wWbb*w{1
z0*@w8A@SeIR_O`r>?%1CqhbPkO6FEdpmG8|yE)`!nJNj$85tkfOqJBC<YJ0mBY~O;
z<Rs8Kfm#XFP9QUZCJEG$AAb|5pFo3zbv(_o9u6e%ciAKd>mU_)EMc8gQZMn}nM!gZ
zhKLQB+DQ2{PQX3^s%ZjQ2{ccjMZ!7+O%4HhT<TA^Clc1t9&!SdV0Hpk&ss-Lh)>Ie
zb=F3!gmog7oJD2Fc`|`E2|SxX#{`~A;OPXOVGzmNHi7nvw@aY3I%i7G3F@Hgv#w0i
za|t}3K&J#cQ?!pGc_Cq)MJ45K?dI6m&Cx~qOOWm|90|-!V3zb`0=*I#mcZ}?dMD5)
zfx!t35xi_2{LwdoehKuaIfxMkBrq_6V3{OwkV~2)c&(dbD7)0owL94oM<g&Zfr-);
z3F}CaQ3;Gm;6)iG#>rLnk;Aj(%%+b1w3iYXo4~jP<W!gO2~0@*cfgQ+CX1Xdw7qoF
zWagThz%-JV6L>|%nUa7U#wYEao<OCZj+Hm8bM%DFP;p*OV0Hp;CongG*AmwGZf_>=
zRsyffOiN%6>o12NHSA%Xm?lRN$w_K*hKO*jOwzmr-br9V0`Dg<VpC-~zC?~Dc{hRg
zSo(aaEl+}5@ltwDxuk^*wJ2d7CnUO@JtXJpd>~URf#Xt{1ePYSEP>Aw_&kA+#5sXj
z0`UY^B(O38X9BJSK4#2S3FIZv^l-+V>&bF5kyPfT>KR{+&eRgn69~{p;=2>@$eNNl
zUoJ^Xl*^ZZKVh90BP&8oA@z@>2NMX%Jh==b0aGR|TY<wF;RGVoqf&>L(nXi!e#9-2
z!0H6nu{m;L(V7H4O+ZeR`$Pt@n`14pX0IGM?&oDs9Z}X(5h6#tZAf5a0{avAA%RT^
zY))WT0=pB~lEBskzD(e&1iqDX0~6TBKD19UlgTWjCL_K*fgRN4=rK{gW*v6QFjcpX
zRT2jgzmW(Dd?)=wa}O8S_tNdmD5s~1&pu|nbuHOGo9qCS{+Ga^1b!qxC`~St^wa-w
zbso@FRPEQNgn**-meA1%J0K+xArL|b=^!-(P^v+C2SE^#qM{&0Iw-vfbK8{Li;B`w
z;HCH8y8;5=bN4u`{J*tk?e#nRJm)!O&dj|DVTNHx=&a9`OS(8lKDh&@2*+jOg!b!V
zrB*V_8)W1~b)siw$I4AoZjTDi@4$r}xGxv@4qV)UOKfsy2QKfxl^wXT12^ehrOJ>b
z&$S)6&fcY1?-p*c>Na&tr^Gx(vK<(hB)&x6-GO`bh2?U1xC4)N;Q0=`p!s+Qp6<Xi
z^54{ds86UT3ugXHkhb#rJb9I*EdEQ&iBXVEiFP4V%dSK<2Q?@4W~anltd#(Hr(PZf
zuPLaipqhf$735VAub`xYHyBe)L2(6dD#)iGzk&h^iZDquXW?uG$%UwrtuVnnHAR(Z
zfEgxQg4yKdVsT3Jm2l#eQczk!c?A_%Rff90aJI69e>)_WQ!uDuoWNTO-d0diK_vwV
ztbK=SF1XyXr0b)Fvw^)Q%E-CvDl?`E^;W^mcP*&Sfz?ouM5h6RYbr=q@ScKNtTjhi
zn*lNlbAQ%RqDw7()l-nFz@xycpuU1M1(`Bb1q~E5RM3mVXr!RAg3b!MC}_ewEfus<
z&{RP)1<mQ0`&<&XVDWuf<iqh&Y^|V;f(|s>QstFx?X230_p`TGqA&OK42-@JsUrhE
zV5gm^a`%?;cO`dIFtbzQPjcJrlGt5=yJ)s_8Eu!u9ty<Fp!TH7jitAO4;6f*phboF
z0SX2x=%b*og6$t9%8j(2g8mX9udi~Yipq^bPU2rhvwf^Y-zFxXZbLlrpC}ltV3BmK
zV2FaD3O-dZNx?7$!xfBGFiwfS^J|2HQ5>FR7^$Fg*F-T#D>&07aST;Jx)`rS-|RNQ
zij+xBRB)?#PnosoWCfqe>=evWFh#*s1=F|`pDXBE<iArUk@7yuFBD9d?cF)?OYXfH
zWcdtj*d_Y%$Jq+LQZP@!_X@sN@Qs3R6?~^ezca|B=EzyQoKw0Mp3D5wMBWJ~ndJ?D
zUw4X=uL1Mrbnx?H0RtAw-1#xOSiuqn+Z6n)V5x#-3N|R%s9?E*Dn+ubQm|UV3fUwb
z6IW)L<BxJW6s+g6ui@IRRWM><oZPYHb#?3L$buIslC8pz(f7@5Qm|RUlit|Ep~{lV
z-VlE)Gs~Ooq~Uf2I~3RzI280uO;nWVi~MX#^bKXtY{}0&Wn}zL1uiA}1<a5Ob7@7D
zL(&*8rp~FA;Ty!H=w_sR4EYrJ72H#BUqL`YP{AGH69_2?D>$X#w1S9&Uli<9uwTKi
z3Vu_tOD>#_i96YatmGdGekZ>ym?=fsY;yK@v&TJDG50D+;j$l4a8SYjWC{xYWS&Ee
z`HQ@)L!xAs_`^yx&k^a77x*!&uM-N6TRG(ok0;6U6-B<%$XPz4;G%*{3eGAxr(nX=
z=v`E{(|PWh3k;Tb$z4`(MZs<E&#MZq$?|qcyw0oA{JtS~j2jFV|E6qO2J9@HO^R~A
zlFM06(_QOM_&~u!1$AslvEh+|#|o}CPkhgYzZLu=t2e1yEgPOFc&gwn8{W3znSy^6
z6tbbPEm|8Gk@LBN7mR$VAeRlX^t0KJosff?lPd8sguXrFa@&x{hI}km8k_SqLS7qQ
zCmbG=Q-a?h3%p54nijWsTJ8Mg0yY#R+-nmf0Y%8=Z5VaEY*Dh9#cU{ULkSz==#-|$
zTeT$#rKrsp)|U7(Hk7rYoDGEvWlB+w0sRsxFd%_W0=c3Ml?d-pTd)c?RI%Y*8_o?+
zO0=OeA^Bj26sy`$jm0DzsuOBZrK($MpZX2^NJqjoZOAB;DUfV~%yeX-%<hY8%ekm+
z!}LO#0(EVuXTwE1F4>W4Lwy@g+HuN`G#eV&(8-R@b~Lo1kq!UIDYK!m4NYuVV8cQi
zn%dCJhM_hLv!S^SEhOHC&NjSn!^jiKa<nG2q_(nQ?(zgN+t|?7hIUp=M?!mQ2WqW0
z84~t^tXL>spbO0pZTQHBt~PYDp}P&~HuSWimkm8wD`6Qnd0az6<Cih<?4>vT>doV%
z%G5qK^riWU4gGBBPyX130ak{AS(-@KnJf;XCM{2uJcG$Ys8XE1JYl#EBW##v!xv)G
zA8W%n!YJx!>KN+a=F#boCx2$c1RExjKc!BlPO{<G7SZX;(Pu?8eu@oKS@k(poNZfE
zr<1?2VU7)7l4sa3lQ4_=l?}5A5<k9Z+Sg<ODSk_yNBz!<nJc@9YxO;y`Ig@&6u-!Z
zA8a^a!$BJs+pxrj?KbRSz)~Al*|3_tjJn*06;|7ogdAxZKicpUd9w{`2<xb8sWPMm
zD-zb*u)&6nbY!1wA`G|~U5XvHbkQv~Y_(w<eL2xT6U6VbK2@>7CRdFOzt~{6!C`~f
z2A>U18(a)?+n^G3szx=FO9sP+GUxtVbC2wBo+dwIq&8?nfV}QvS*Z$Hewc9ZLbTzp
zHvDeGA2$3(bEg%vWktd+@;=MiZNnZL_R1x&E;Xe{njF$xj{OYC*F51*8~&1O(1ufV
z4pEO%4^xlW@IQjIs?H1Km<`A2oUr`%D-urIaK?t4Hr%q|tlSxFxW?M^He4WFk*l6?
z$%e~>cS7;&x#c8t?*Y-hchv^jb!IQu8FNGKC(RRNC*NlA5%rD@cM12X4{W$k=&&|b
zub=VIjM*H$f*z9v{+3%J*ZHa3{N;{ekKQr<wc)u9iFQ=B<An_`<qlv+VLP(fk(~i~
z?Z{zAPCN3jC{1Drv3BGl46^d)w*R-ECFV6&y-vNeEa45pn|9<Q<hP@M9R<l6r(b+!
zbnbGli`Y?={#(>ycEs5cZ%1(!C8h*Ha+V~Nv7@XVrL5Z0cEoaDm9w1k1oJ|xKrXQ|
z^=&&6$nQ`q*-?=ow;+iGS^7G@BB6>M@7j@KM_rm#sY%po)auk4cJ$@i*0iG*on$*|
z6C}@j1UZ9sEJx0}`1R~)LMPRZ`h+xUBRd+%M*!Izk_0zq@d@v=Qf$g%Gdr5w(ZY_P
zwTntLPiV=iR@BziHq^G%cGULN4%CiR$@zgD3kzim$kB!7XlhqGy4lg)j&wVE*fEr5
z26X_nryafQ=xxV`EcUhIBZB1VLy%e2=al=g*q=JOb@W0WXvfDaW>P<)4x;v0kuaDb
zVM7SBs@D}BMjmd*2(y+t%4E4$7s?!C$5=bY*)iUZ4R&m_V}czM?U-T5Oon|*okpEx
z$7DM`BTu1Dwd2(~e{M%1?x-(VHJ$n;RYoG8N3-mhZO1Y@mfP`_9ben=y&dxz@Qoec
z+VLHEjvf1Wj^?sB&&m+Xo&RR5=!fP4I~LjTgPaA{%2t&7<YMv?E8f>KZYg<T<LK(G
zAg`gWv}2VWtI0pw@e^U^;NlV{cSX5@3#_Fnu+EP4vd6e-`<&0%WXEPZez)TfJGR)d
z)ef&6K0CJA@v|KcJDhfGx7sRp?67!T^8}k6b{6}*jFHSU2PC-cQ0;JAF`69)S*Iq?
zOgBFk&2#FZDci$O2-^{{BR~#PC1=QvtA+o&Z~tP)Z}fk)YUTDQF*{k5G3+AjvtvJD
zH+2tnuN~&4C-DdDI70KF9e>*K7x@rXYR!-G!*<B+REqzz<0z|+*>T*C6Ly%Bm2Bg<
zu_a!<+MSkhHcvc9J!8jNg1kdkOgYZmaY3BZxb!@`6ffIxMQ(!*6msCI9oOuLaUhoi
z*X_7r$74JGw&SK9x9oT%n`d)$js=Ux-R3X~=SsXIH|ku8ckQ@m$9?hxJ2o|s6H|_d
zvH_mQ2;5(lx@<}6KeDCSFq;EU2`}tuv@vz|=G13){40BSbLw-d1Pi}pO!g+xZJFH>
z{iMi2%}F({<yZ%DJMjC))HfZ-Lq9K7f?spU3#3wCH?>WYIBz(RemVK|Hc9y$P*$Yo
zcc6LEv;vI3z9v<Y6n3D918^YGfuar+bD+Ef6&xt;KnVv*GcwMBcn3;3q7#=?bK3Qk
zqoe~n!zlu_J7lbX9#h7FvJQN<F0~xPs@95^;BcYLw;VWHC^NwUY52AS!Jks^6v`Bp
z;yW}eQY%rVd1VKxI8e`lR0rO5psE8k9jN6%w!)d!9H`;I!L*F(EXwS}lwuN1DJDDc
zo&zZk)PIpun<JN1t>ch?(2RZ}XWJe<BT`kD0qt_+I`krX;na5^jlnT%Qe|Kz3uiWR
zps@p8BIp`H69<|)aKym>3^bF~bKs^6w_MTf)WU&lPF#25eFs`P(8__<4$N?3rW0)(
zXzPIPfZ;$p2iiL@*Aab}S-o2+9US<CEX9rvd_e9*?JS+jxpSZ!ivt|!Zbg1XNOz!z
z0~rqVWU;qZ+l!D?IP*gbBzYflUkCaT`coyq3?9hh$5aW<bYKwKtR3vY5Eh3zFxG)_
z<YBUsgb~z{4vcbOG+8o?A$S9^a!7H!<<D?nf&&v-{M3Odgh|xNvSA2YXZ+V{sso=p
zFpcJP>K9Z=C^27JY<4lzfmw8BQ@^5q?Z7t<NU$`KV~zvgI`AE<#7x+bCT-`jD7D`c
z<~y*!fraEn4s38>Bl!mh7CW%Sfu#;CbKpk@exkqJfmMX|Gh<gcu#zm<<OQ9gt7XUX
zwRCIfueWN~64p6jhDoG^ZL(?|4s3Q{3yWJF*iP7H)&4A7h&gx2RZP=HwOf6ewUX0G
z-$hj&&<JL&n_Sx&-G?3rLX~=W9q>8ecOc+EUMJpgA}GEC2jqfcaM*!e1Zff>{Nli`
zgx{z;t=ium_`~A#me@_+L)~ln`w07G54Vht;ZFzta^Q{wcOCKsv#4|2ffIzoa>ZG#
z{zo`UJ;t_@UxH6MaD(P42TnV1#(}dAT%mK0dXajbdVwmfr0pg0<t)xs@-@r3PB449
zNxtR4ZGt)Sd*qkY`wl!HJd`^;;Su#QReJo}fqxu$!lIc|^qB+yI`G_zd10-I8IaA1
z>`vt1nTn<6q)N6JLM~_YKN?6eH;Z|wuTf=$uRH%+VF`HCi6Zoc^Er{<;sQ<-Bp0F<
zrkcGMb)uLP#p#rHq5`3W6LC(&lS@*|I#G%snM*rS#$q!`xh!LN%ZbWPRAIo|P9zZC
zaiSuj5;f5YIAOMxDVQLc-*qC%iJFY5O0DKZb;9WWb!#{wY6jPG;ywDwG^K6UJat%=
z;zV61>N%0>M13dvInm#VG$$IcwjH&h6V07y;Y1@R8q;Y)ZANWMU7Hdw`AvP_iPkh*
zQd?1_wppiyHWs&a!VGTjL<c82I`M(5j}sYAbaJAz6Wy%HE`+X5NOSX$RNZN&Q_Va*
z$-SNU(1~7Id<p)@i9U495lVbtC%!4uQ?d<kVxSYBv-V>rG6|EM805q!PK<P76rI6N
z40U1{d5AUg;Veqd5d_I5EIQhWF;0wgV!Rb8{@5%r6P%c6wUxoh@hN8~VUy{9MxA2C
zOwE#K8qF`L)1COzijjV2IWgObD^6T>;wvY<X4M`!p`8-GapFfOPTo$Q<BYzU@mnXp
zW9?k(57c?o@12-Wkije<EOcU#<w&Z<7B6vPDS4R_%bi$3US-v;bYcJ(WVPi;+n=0R
zBXi+MwmPwmRqLqhsT-WwNZ3S`F>H2Xi^Z#E#Qtot!-?${?{GpP+bqW}7fzn&3o)He
zxM-?WuM-+Ury5kZ6CNidxvY<<96tJfCjxT+cOvA(Z%*uVBJ4!OiC>)fmGNd5W)qV|
ze`nPnPVC|sq;_|fVCkZNv$}hkf1eZk2?v}w<iug}LF%7!HzUXtlD0&ztRqgGqVqo|
zjuMVJaomcT$dAGkES{9z#o}ov&d@nay+A!DcaJUc=c$tRB29rygv*vMPRBes&3CZg
zaN?$%I2YE+*F0Iz_KE*G@tkm*dWU+KdXIYFi3bD;en@!a#AD0(oA8elPY6$`&!U%q
zY-?xin4@XZ>V@2bT+zN>vNoFw*<HxtLQWUpLL#eTT!<&+av|1*++=A|$b~!>zvja0
z<h;~3TzJ!keB=Vu{8VWry%!`4NKuZ$EEb^_b)lFQS=@yZ<T%SQo0Md+lnbRTzl;lI
zT`1>5dCN&~p@PM4x$w5dW`=iItVpfolDlYhB$ZiAwj!$#-lbNhR-;y@)^H(-APsA}
zP|IR7|9dRfcA*X-g<6+dk1DNF3H7OI))*SH*ofMg+QfyXgk~<xBs6!Sg$wVKKcTjC
zp_OECp^XcD=}7*zE_8FDy9@1HXiu|)3!Pl(>_SHuKCpT;=PvPGT<GfhZ*NFZe3?tS
zI4*q1<{4JzUM}<`ON<=7EtXavSuuT>N;34L)1NxPg@G=7OwM#+5WyUPM4C%C*o7f3
z40U0c3sV>%X@|Qo+J!MJj-ZaDj<RMk)`f8{OrklSI*~eoYIgA{S+Yq-lP&(t$}pAA
z=hSH~eBr`$@|P~muwq^fRg%ndVYUljF=h$%Yw9;H%prX1!a~A#)VVIqBYf||d>0mQ
zeI$<@lGdF2A_n|GT}(A=my(xR&T<!4xUkZNRdjx&uBJ*Vxvqb*SembMVZ95d=xm^F
zrApOC7j|Aq*(4k6Y|3UAwh(GAsV&8AF8s`}?Jj68=;R$PC<L38!R~^?Vy6IErJ8GH
zkoQvER1Z~p_qyOC`&|eSg4Ew#2ob{6hzq~C@T&{IvAC0JF4rslgXS)(WZq5KW1Tf|
z_R-nz!T~GhAmL9J{&L}v3x`=eX4M{X;eQq%welRNbHegZTE65zP4kQkXRX?EE}Xac
z0^y<ymk5`sSEyI1*Qk=`I^hOY7Vx$UcU<tQ@Ts`#!aWxnsc5X?zDxde5EWFsrQ)Fr
zkK~T6BBzSSF8uAnzb-s?p~lEk|G4nPg{Q9Qv(cu!UP2!ECC{RK=7Ojk6YIr`|3Xe~
z`IKxb3Y<uJ>B5dm(I?qvSEG+XlS7_?7Na7UijpeiLA9|ea;qq)qL7NW_a^62@w$q<
zDqdqzoC0_8hKe^On~HWrlk%xZeHIfrT2>xl<xWb;ucCS3Oo7Z5@%JwGDy*W2ief7A
zjI3Q$jSf;qXg<U9=p7VSqeVGN5aOuuYV_f0VwO@-T1C+z3G-g&D5IjRigL_gJ{GmS
zj3-CpwkOdEzO5obMQv%$fOk|>k=d!JsG^bzFzw79Nr@bA&IfUlys|29n~D{vs-l{T
zWEI0YCv6!TUtPu1Nu`oh)L<(KXf-9Srp2|aR^q=WOY|&mYxkrScG^J2CwEX+MTrrp
zM<-Q9eHAmyC8kkrkFpCpOT<>_oYs)RyI<sJqN1sa&s9uQ(M*<3#UQCt(L%-hDn3;4
zk&2coTB+!wqN|G5D%z;{Kt(4NZDl&LPwMoL2foQ7v}dOsRdgW817rIZ&YZY9`n0-Y
zBVuK>JF7T#C;P)YkVn9EQ_)>ThKinQ^uf02Dtd4|-!GI)0^}4oSQ6WdRXs-~t@*30
zJT$d8i{;)Z(TDl_spzkwuZr@=Q{<3m?hQ~eP{qe8GF2=no0umxe&WnDd0=42YB5sG
zdnH+Pu!<on#>pvGF;v!E)>Fku6~ko__C%jfDSN3|`RK#YMyb(9t#0m}G?p-0#TbHY
z9@FpsL#jN`Z-R<XRZLPbk)xW|FG=?BWEG#O(TC7ZRilrRmgf+PPEj$raAwh*iAxJ-
z%9;8?#dH;l3Y#=kF+;^F6|3b;NfQ-IR4i37Tg6u@=BfBzuDjkzU$cujD%8T6->A{&
z)5<djWz65I_)f)K)`E|8mIo})mqk#qh)W@-V4;dXhUS!q6NY9+Pu34Awv9|$tm3^M
zNyo1x%d<e+U&^^m#c~xZ<Sh4%KGicaB$`}~l`7;p!}7SrA65LMVzY`ZD%Pl2%N{qV
zSf?Vsf08z?)ct~S>&abe^$=$x12$1xb9uMQwu#MoBTu&NG5{4n%e`elT-!cL<)@^b
z9~L|Ec*+hn`bfYdg){AP$=}KDW?P2}rwW%$T!l`j&vD38G3BDxRP2jS6ENtT&s+A8
z&(<m~C*7|iAZuvgdjmlgA-P@XsIMceA|fN#uwKJ2Dt?uv&`?{$Zz^`m9YaHL4Zq8x
zNmZMqTPk*`*sbEYiW4gKsMxFGu!<upu3S&qr{aK$gDUpR9r8xXtX=71)~FUE{HKb)
zXda@9FXo-Xnadxi{7+W<amrB@XTovA8>F9jo^p&%tx6du<w{X;R>e6Lr{(5wG~<kl
z-j9;!6^b7jiCfezsaB!*^C~W=xT@lsii;{P$w*}Le3o%puGWLeGaIBQ_D@Z2mo(vS
zvI*Cvwn6$$6&oXQ5^zJ#^8FO46+V17S>||K#U1$wP;pN#Y8BZuWY_ROPLPUcDjwZW
zjvlfT$SvC@JtidINNIjQ`5zTeteB@NF4s?x;D0UWxr!Gm2DD2O^Ce9Q$e|&phBr0j
z(-5Qmmp>07mxfqEZp+VGB)Vd+X?R^jUYc)c=xq+^e)6#YrAp@f8j4!+1vC^S7t-*>
ziPXZDUqnOacG0oPk=ZY`goZc`H8jX{;x&}iP));({&h=fD6OHA252awp{$0tH6&=T
zSIQ`-p}d9)8WM|S?x~dV7UR2qpT4g_`od89oQCNO&&0dV#=k?qB2^MLFOs?WTymm@
zD$+&UqzBJaDr?yJD0%*)<ag;*rAk%bBAL}S984eRC>$>hlQ_1T)LI(ke0|m~DOp3!
zPcw==O0J_JMZ+i!qczmkP)|b_4P7;)%G%yYX`-R2hWZ-PG&G<iW+M#^H9RdGKeb4v
z?8e6QtH0e-s+wtNuAz;Fwi;S!c>W-zrG^j6lpZoY?tKln(lZtn$!w)zf6kt*HSB(w
zQSNEV>i=c5)6ibRG<4F?L4)2ewWEwPE&X!8R8dJHPG=1>r^hXrm44_<ytHaGGrgOJ
z?i%`O=&vDNLk}&wJ^E_M(9l!PtcDLY3_BMulfBX=sh0+s?Dp9ipYG3Sb0<zt)<;~B
zKC&N<rAjeZyQJ0mat+WhP{UviLo@^)B!8?SQ^O#+kdLO`ijRNyZt^D@L|^|UPBc_G
zZm0%n*tC7p2<c11a1HU#Q)WF(zL6_a%#rM(-i&k^*cc6CHO$p8Ps2D3<26jzu<cRu
z1Pv24Owlk^!>6)O8l_Lt(4=AdoDT6@(xN(<=4Tr2_DL1za}CpEL&^xJ$L;Hv`e1id
z$IefeC7STjz%OOD$U<qDrQvH0-)NXEoW18)8t$KsSKMhQ{!Evh^QcnKIU2szP`Fyp
z?=;B1l9811rp@uB^}Cxa#lIgUf3IPo2D$u&=WAG?L10Uf%;1sKMH+t4uvo(q4XZS)
z)*yF`r5cuLSk4V5tyXA|n}ggp9(IghNj65riSr|KuF<fT@Do+S<i;|%Z|aZn@xmK4
zY}8OdM?oE%WOy2mX!xIoEgH6J2x$n*(rNfvgP$wBUBeCyP7N*%iUylpWf~kZ@xt*9
z)6zxz-A}nXJx+K;+xW+A<5dls2Db)}23ZhYgCVoX-cwd)>X8gt1i4R^ZWHg7d)M<6
zpIq-pG9*lvNR~@ZWk814HYq5Vj3-S%?tT#sdo}EnPXP_T%Kcw1OxfNV>U4~k3I49(
ztJCp+$iC{EDzn?AMenYquV;wLy6xeL9Y2@6U&8?nhq#Rovg<!J{3W-MHt{kHIZC#P
z&(kqph9{jKmTl8E$$KigZbv0p!$S?nG#r;1X*j9jhK8FOPH8x;;gXyn4QDi*)o@N0
zs&A?s?~LqOEum+}eo;P8^MZzpgq=k)#k`_n7bCCAjjLbk$zB7mX^?m^uS=>TnF6;o
z+?JiG;hu&&9pmM^-{Ev*zA~`;G7J^h+eQ7x;pnG{oPtMk>(KB_!(-V|8vc>nMI?G^
zo@gl5Aicq%XpEerf4Ru9I&$mL)qbww1s&m+glsypvr3#CI&zX@sJW<5Pb5p#_eWCm
z=y+X6ULEf|NPbO6uzk|12I+6;sQbUvqG#gYq+g|dQt`G)`E=xGTVXlTg>)3wQB_AZ
z9Yu5$)$x{&xAo`^su;uKbjTg4xDL4nOX!G+%@l~&QBp@K9i?@&dYoLI`OD~#&$x2r
zvef2}q8}d;AcL&HY~$`HC+N}75jm}i5~HJ{j!H}ps@w^mpNW^=51)ybR+V)~WED1f
zSI3}*sd9zNr*L&W`axeqkACZT*eX6rM@>4lbiAjdwvJ>LCwvzx9~O0Vr0A%pV^O;#
zDT*m=>*|nug%sthf^7aY9Sw9m*73KFhB_MQSf*pSj>bBg=oqeJgpQ^<n(64NqZjAW
zT*nHzY3pdA<9!*SEQOA?I@;+tS3Y_Xwbs!_$0rjrWWF+&mB&-t>*%1PqaOVnmz$@o
zkKDRT^ArCA9i8Y)Ri9}YU37HS(M|3Tcazg~^w2S<eNuNB)xuQiR3Jmn_=^-_(X|hf
zrHkG=2I}}&$A>yTl0j<dqobdW{yO^VkdE5i&Mqoz*lu^+06qF)A$`dumMIIXW3bHk
zaf+5Nmz=Lpcv`dXjuVz|TtjpW)iF#*<atW=$r;b&1MXPrNFAeeOqR?#PM=5~tz)7d
zy_&}87|WFzr(*(#Jzh>q<v96#d9QEkR%FPSCG1ljlXU#kH#IJyXThSGQ*=y~v(_$Y
zfsW60Ow%!2$5%SO(4!wxGjzySpU#f{>R9(n+3I<F7CV{zW1rNSI%eq*kVCqV34X2P
zTOHr&_(poyA)kyg(<g<}DizI~t7D#y?{&<V)jJjqmLvbeWC@Vs<%iMJu~7Djjvw^s
z4S%s7{Wd6HC*%TOqGPG-hj6qghxoGhR&WQdmyQ~yucWThv0AoJ(aaxp{G?-zoV%i#
z_4=jC?L}a%j-;GD*U=nRG;@P&B)R|V*sNo>jy*cI=-8^mr^Byfn~tA#*mXGMLTi__
zUB?dDv}9QmId?W$!yXw&+eg1K%KFIQC%My{V!G2@I#hy2)#Vz$pDez?qJUe6hwL@=
zRH~Q(8PDywh>l<M=!bq#M@W7Iko|lwS#B3{e0DqguR4Cy@rP{nc1f~5c5(%N=SDTJ
z^e^_r?P9G2%xM?DSFUSWOgRxc_UkyH<D`yLIu7dilh@G^nf|$C`4;yVQ^`&~L^v$h
z)ZOIUca#68<0$U{$8?;~A;UP%;@3qpC3sRwanaK{&T!0^bexs^_meL$$vN_Qs+jU!
zRL<H(UX`Ib#V-#mF4N3cKjEs5J38*_xTfPeFT)!;Zt4Gh8^39RT-3M8@}=~ij{9=E
zc#!;%vv@!a?uuJGJx(t6M;u}7;pj)tKRTYst;0Zb15b54(^1AiSp)x?F$QuQcuszy
z<E4&l2Ks2oVIZdwy;Wv6qI*@gsO;nzI=PJK<t*D(Ou2qb4oJ;oM88ZHGVq!N8^|j^
z#~n${XCS|UH^@?a(}4U4AW(o#L8g+Tn3AN}$<)FIiWn$rpqPOY2I349Hy~d`Tg&G@
zzoyD<Io?1?_EnlHx9d`bxp$MLR*Eu=az^xKRn0(k1LX}&8jxDSz*`31HjrQ-(LiMb
z@6ea3iiGHS9FSUx3?sU#QmkTNf19LD?USk+c$X|;;*{E-A)C2|fh6(wW;8ZX(?Bf)
zbq&-rkj#12Hc-cies;WPpx=O00XfkrbT*%ek@F~DS>=mps(~~E4P?HPGU^+UFP~>B
z^lB()r%|-FkvLU)iYc{HY{KrEQpX=n-E|<Ng@N}C3^MSEbZVfLfe(%7PcE$uwBay%
zi1|3Vt$}t1+RMVWjgcvIFwoIJX9Hafd|+VFnRxlJsM)#rP_~|(49FH0=xX5Q+4yb-
zy31lVOmBERbz{*?xkl0%AU`NcScZX~270lh35DY&vz*G_2CDML{t-vg$3S0M0R#OF
z3^eeuftB+r%17P+IctxSWgGj7X1@9~%rvmBM4H@B1{)Y+V3vW|28PPE;VGVEU^sJ*
zG%$)V!oay*acG!6+Q1kC<0Z_%SOepv6@QR<wQb}lAlXIoMMCz;L<651(JvUXRU}}t
zY-R&f3`{lfg@Ne?J~uGUfb2ABC0_<4OpY<(^e?#^XUfHLCSIy$a8$BCC6%O=3+*cd
z-*Pp+Ht>xR{Sr9!Y<%0e_&ElS6^(x1`*Lvc?+nOQKbK+8+a=96u)x4_11k)i&z`u@
zz^$0XrE*dX{6J^1{KZ$5IH_8~qRA4o%)oDXa*Dswz$yc710ET$fgk0hEQ;3*{A6H_
z0f!93z*<>Y16vJjGorsPTW?^4fsJx~UCxlA{AO?2)0j;LHp|gFX^UJYBa;L=kBk<(
z&ySN|<NR!3yMY}B6a#kIfu$1VEl4)mB)yVGk4)-zBu<JC9%Zk{7k{|qIzo(UM1Mng
zqIc4urs>i}`ItmqPH5*O!;tUQb=#Ip^cwIP_{G4lGMGVe@-`g5fq>kOx+Db+G(4FS
zHV|S_f03i%-ehqi2IN<W0>2s9Y2cuNKMnkD;147E8?XZgb{W`hM1PIEpUxiYJ_CD=
z==<Hemx;beP9kscmr*w_=IqcdNq*ZV&R+%&8_{2K$_v*H$;I0_X~K<O_lM=IB<mxm
z&%k33{`TOwffKUGZv5oNNdxj={P*2x>5jrF1E=Ynp`Mk^NjPsHhZ{NFxWJ-BUNmq?
zwt;~w2Cf=-VBjIEt{J!~8^FMI7H?1;?f-iM|7{lUQSVUiQssg6_X(0&_>l~i#cXc;
zZQvjBa|2HZ&!|sjV=%46ORIn74+{w|SS!v;f|%JkHE|?9#*JKVB)U=AjaWBwv+8Yk
z^sf-}xKWJ7*W7sBjlAUi)HkSaQu9&GaTai+pjmXI2%#|597$0()C(zQzs2d7a3ju*
zcsEMAQJzjIH%b%Ax#jf`(Nj>CYPOQ*lFH0hf&N=rY9%It#dqAONT@`G6(bF+kn2+4
zb)%{q)!eA=MlzimR%A^=64hMQTJHar_dS}mt*SbN6sss>sOLs1i}l?|bEAP94c%x?
zrxCTW8%^B*ot>t1no-Spz1kZsXiBk_8?D_)ccX_JZR8xSs47P%H`<chQQKR72RAyB
zKd_wgi{d)FqyHtaiyK|t_$?))R@InpZrr$%(w!<GPKFyj-5Br21UGuQ(c6vTZj5l_
zLpMHh<6}26-RR>+UpEH0F*_z(>0F8Z<YeVa>`yJ75F^~3{y;ZI$7JhF-Vl>*kQ<-4
zG1!eEZVYoHBQ|lU*(6uuq&(3)&EAT(UA-J5Eq|;Vqa=wNpXN&3pDS?;{qlQLB-=PE
zW_nDvi4x$(4{j`W%NJBkcH?U|zG1*;viP|Zr^tNUq^0Caoa)BsZpiS2r@65tcj6Ze
zn@;_bI)gfsD&v_&nC-?_meYkZn&ZY?H|DwVEq&?bJDJ+9IB6nB_r%!m>Cd-XEpTHY
zc@g#bf+PuB;>J=pR=Tl@<}x={5SCLVpnYPj=#4e8RSByt|J`gk*0{0OjpLr^A1khN
zW4#;C-FV@~1~>9ljk9yxY^2I=+~me)i?<NAQnyimrf#S1aLZ4x(JM|48^J!SxWf&n
z8!owW-MCCsqyFZ`PJ-@+L6BB%g2xT78$Pn18m0!QK{rB#wAV7FNre0hRf@k7<PTYY
zx10lR{6XGD-A&zN)$S$iqwc4g$q%~mryGCKIpoGU!eKX#$aP1SzD~Pw)Qw}Zl5|d5
z{s}kar3?}v$0?dpJY&_KbwdKA>OA!V^`cdKi68-2Ea$2l*T~nYH>fw=xJ9__#sfDV
zx^c&iyL9fkai3szZT2PIJ(4@W8~?cRn6;+=#EqwJJagk;H?qbHOMn^k(v57M=xbk&
zdXU|N93Cw2V4(*&J&5t3vj<&Ro6CcDJ*etItOvP0$V0Ot^)(M(C*<`YzXt_8c!R|^
zsggOL2M@Qz3KaC9kOyTwDCa?84~lpY=Rv#&MXku<gkn@_QiAY+ZA)4)r9CKRv6;4v
zm0!9j@4?$vZ3Vdm$Yz+-CV22p7N-&!)I_SpRQ8}smY8ZDRQI5f2aP?bVa3!VBzaKN
zgIeTdY8~o(9@HjCwi>C?wN3G$?*DaCS*%Y@qc-rMA;E0Ygxr?el-i8i+=CW`_dRG$
zko+wPt*Fwxjpa9B@9jKjPp5<BcO-m3?L?JUT?rpkyLr&vgLDsicrcKT^pZjN$b+7i
z(~HoX`XTkN#MnL_^!1=0ivy_rsSWzXOA<LGX3~bV>j`O@9t>jDCmzfs4EA6MVW<bA
zJo2kx3}bOPRoag5V5A504#f%Y8H+LWKlNae2V=?OJQz=y;K4+zl|;&6_CDEzsUCdp
z!Dp<ULY0IPFwKge?!gxpi~pquGguUs$UaBYW_d81&Q~6MNBG)`|Hgwk<Zms<9PL~g
zw&i^9!F;m0CW}1yfyIyqi#=FERy|ni!7>jvv$&ipQ&{W43i3+oDi2l@PL9Qogr7WE
zV>xH6S+Db8Jx$55!Gnz!Zz4$877w<1u+8#qgr7awPS`<Js8z;ASJF;)P@PmUU4&a>
zp%HYdL3L9-9(X<Qkpome^%=(*Buk#-sR)xJ)L%UK)q~&2dpy`n*h&4J`iBR*JlIXH
zG$2+ENwSZ{zo`4E2dGkYknkt9%7EBIgu~P$)c;W>Qfftyd7}T%OW*`QRZn{4%V*Ll
z4^De<hLP8;__H3Iv-mvW0`;N?mjuXHJh(=Xi|(oi=0$2=^*89>q~4+~ot}1EcEa?u
zJ09GnbB}tT`hfb7`iN@I{T~mW$PV{niWg5kcqUhq7o)xSH8bg7x%YZeg#6rt7aqLy
zARCKP`<fToEzaRZPI3%2m*vM2a#Qno<qu9`rQz#VZC)?lAirrj`Mk(aE<i0vEkxaS
zGez1K^`e*;?|D(1W^pgddr^U0!izY9gvAp|dQr-9N)yUZ%X(4H^3Si24(Tl~Dq7Cl
zUL;ujju%x1^pt=~mIE&m$(5;9sP9s%Qmav`dr^as<V7ulB&lfz+)7EdK+HN`q<AsF
zi-9!j$|_m$^}I+W*Y_fg(7=l}R&7Hs8hO#!izakhSbkG4nvt7RAFWT5Ufw6Sv|?I$
zq25es?ZvTbF;Xi>TQAzNw!Ib8!HbUM52(iuNAq;{qKg+@t(ZQ9Zq)8xq+5OuFET9d
zN$BN8Z_D}6i;u`hx<+&M^`ak(_lsuA(ccSE@jtfWGYPqiWey^IV)=u;7-I2IFNTqa
zQ%6|-NP@ZX#&|K#^2d7dZ+e{cBFA`|6Q~ot_>?e-I+-dl8`h;w_2P5cCm~b{VVW0T
zNCrQi`!U^%FJ=Gx5#z@UFJ^kN+=mrD%<^KkoFg9^`|y<)UwfkuOKjl7H(t!~qJ$4|
zK78xNcU~Ow;xKFHdSUaz?!`PWzV~82&DCD~=*0pr7J9MBiyypLCS7>3*o!4zEcN1c
zt60e_YJ%{0j@T7mtYq_543PH|y{Z-X$%{2!Z1Q5W7i+y(=fwsFOWXB?tl2hNU2O4U
zs~10evE7SpR{X2T9ds1Smodm82_0TIy$E>`W|hke!-`P}8daxC6So&0FT5=Jy$BF|
zvQW$xWbyx-Z-nM<FMg5p<;8Da?DXOfE7ENEJBudovSzf$i@jd#^J2dje_8Pdyg2B^
zpNx@s^N<A;FxT*iM0)Yki)=m|WviQB+>)!wi{oCL@ZzKw7reOW#VOXF@!~AuG*yzE
zBb=vZoy#RJE_-pE{uM8-60T9ru3wEoTHUbx+g{x9;t7j)y}0MaW3t5D_u?V>ffX#~
zqbw}NzrFZ}%WHP=l(o-fdwcPm{DLZxuT~?wFS?oY`H<g-96sdqA;yPXG~e_gmhhSn
zultbOhdjRjwx~3bE+k1_2E1YUX1}INOaUK?FhIDV4~2aHo%+HwrFl_8F*Yymi@vtf
zT$XsN6?`a3E=4WvLm3~+`cTe?cj%P&p#tG;>RVJvB0ZX#U^x|is6@^>$V4A1`%uM)
zcYUbpLox%ZQIn|EsgkV*LE6@|oLZcY^zxn$wSA~VzpfAUd`PikBtF%L`aY!5F^43k
zfH@4w+|XLRCO$OvA;X8B3~uH_^DKE<Sp2>ZEy=BXXzfEAAKLoR#fPpwwDY0851m-s
z!H14Md|<UQyAyrYZ)fXt$QZi$kj}{N|2Mt|i!$0?mcM||+lLQ*_{fJoKJ@irq7R??
z(9ehdK6wWg2Kz9;ivQS$ffh@iO!6SAxf(-!80y1FA4YK<hOuh6HMS8}TN(CfAIA9b
zuyV|Jnqz$!XVp%s5@TkYKu3aQFHQ1cvJYR&joOFLe3;_H3@d)B57T`3f?Mu$_ABwz
zt=ccMY(-g|neq|f!)(@mW#t$D)k@CsVXhDJSoJOSJL{Z&&!PmI!<%o-YoX;YBK+XP
zV!{&YQtC45t6uC+qOaXq>BA}?R<r6yANKojz=xlFSmVQ5AJ+Mx`k?vHWJ&GyK5S>$
z2I@v1Hpv1$iP`MKRv)(cu!X+ll*~V8VTloQ2OY%+8^P{_(~5EUU=GG*Rxw`p!C>(>
zs@n&@4*{}=>h-}#Fxv)w2>I}<<%E5RSS-EE@e7MG7;`*3efXWuA3p3MNX#xDc3UiA
zdoA8)jqo6y3qD-*;ZO2kJ{%$(rk?cShyeL0^|%km2$J6%>IoKwPx)}#hci~~IUmlF
zUk&oS)vvU@<imX*9x&jt4_AD+>ccf3uG6{W!wteMs>I*4+TNzKrC0PU+$G<mN-ySk
z9{TWv&LgUXJtq9^!#@Nw?5PjWSp3(A?EdJff9}HzIxnf&Xqv&IIsDPj0@*ndnTssN
zxBQ5;I5#1WAFuiGIytW&r3r8N@una7{K)S|5kHFhQGk9SYC-Du+}R|d9EGi7F+x1G
zxF03_h$Bl($?-YO_>z`W$`3K6stld7mS4_~^5hCsGe*MR_9MZMcl@a6M<qWd`|%kA
z;76(-^~s5TRQ98aAMg56l}>Fxs`*jfk6J9&@FR&((+_hzSyg&TX6<|a=$qQ4SjUeP
zKkCw~M}0LOX_)3m13!BD(aVp9el+r<qaPpm(b$hBezf+ZjUP?fs<|I6{Afm&w36g~
zKU(_HDvKljtHHFT-`=WiM=)zUSR<GCPJVRtqZ?~G`_YB)YJ}Zc?BPdxmgdqbgBc{O
zw;vz+G02Zk81RuF{ru?fM;{jZQq9p0Ab)H*1FbP+T8?BJOdjdSC_jeyG1QM?R_$<t
zj9-os)_EUIbF3fZ2xBaNydM+%nCQo+^d++#W?OTKCRx2t@nfnVnjg9!pZhV*kBxq8
z^5YBn^6$qYKYsAzOZoEe$9$%m>BlU>Tt8;}@s%In_%Vmh*VdXyN7CK5G^M-mtWlX`
zn8)Jxtd+>?-2V$$TxdluW^tJx%Lz-UORX`l@MEPPKl!o7k5zuG_TxteNGh{yQ>E**
zeysCj18dE*AiADK8I0*{wrU-IZ1H2OAKU!+*$*52?bIE9C|2*%O7g$TW~VP*JFPq}
zKU9k)((uFW#}RS-@c7~NW0xPh{qXtW_v05oe)S{3_%Jo-N66~S>`3~Guu6)*5ybhO
zu+#GYAefWd<Hue<4)}4<kA3v_XQ?$~B*UM69HKA$mlbf>a-^@LejM}TmLIqMIPS*@
zKhF7a-j9=vIYT|=$7$=VNggx#SyoAg3w~Vm<BA_w{kY_ZtkPwxN`fUoj%(u6yg`)=
za)^JEMKk9e@<Tr!`El2edw$%f^MESBW;W5sbpG+<i64JwseMX*mc=nMzwqOwAAbdK
zC=k8XXQO@|K=uG~1dua;m;gEk@Ie5%0*DQudH^*7$Q?kQ07?c>it(=nkS~Dz<kzWr
z19*cVIo}N6t)|hh-v#Itwfuqs6bhhl07Wdv3^TP@0L23+5kQ<(8&8nh3d~kIfHHK-
zQ^hPxD73V8Im@XaT?g<sixmT?L`dLx-mzjps1m@t0VI-TsFedSdl9Wlvzp~dt(Zvx
z)C{0u0FA6XwFt@7_X4OLKpk?u08$Al0o1jY!c1O2fHYQ_Q*Mxj8wb#Y#Wn#nB}l*T
z6Pi(*2hhUu&E_owXho-W7Qd~<?Fj7y=wLZAhE4%=4q#va9|zEdentR230<k(0_aXi
zr^*<5a0=36FU#pm=pDd^0enO@XV-@;k^Kn$sRO9y8j5DJI3|EW0elj`-~fiu89^ON
zl?=lO5<lE>ghvK2DuB_}l8PgdV*?l$z<4WuQUDVyo=EtVDkGds_{^%ELYQjRP7C0R
z0Hz1<WdNQ4yaCJzU}ga80$3lwtN>;Qurz>W0els}*8$9B!*8r?-x20ezqLkaF3Y?C
zzNbGwfJIjPf&dm;EMY&87hBE}D}&5&c>t^Fub{4^uA<8HCE!Q$Pt-M3G1pqVcZ22F
z1K3F36u{;Hwpjjl!qxz`5q_qcBbPio0#K|-Tb3#Z*%^Q<0M+VC3qTLRV3j*dusKf2
z=A*eM0Dl010D>(3LJd(RCQOJ>Wf;E_exvRT;CI3w)ZGE>vbr`0EFJA-mE_q+*iStW
zz(K;FR5SQ+07s-4#L*!B7r@Z~-V7q2aEZiY0bFCG@bLgn1aLBdQ<igqa5{i9gtOFh
zR_%GYQShVoBArXr%hW4Y%vCGqdH^?Q-VESD01pGW#o}%19qL``J?ed`j7qwAM9v;W
zjvyWf@OJ?J(D|48g!+{Fj4G{~jnDa<{33vt0Z38IY@D*N965uC3I6BjqW>B-mMX!y
z33-D5%~71!gUD;uzCkdjpFfCNK_mxJfM&rU3I$P^Tqy_yQG{GHh+;t$528d6WrHY3
zGcJgdL6iz2o<-?Ja+W5Sp_*Noe)%9O1o3td39Nd{8oya9`VReySsF_7L>8-2D^sgb
zCH~zYs#+|O)yXxeNw0i@)V>!)?I0Eeu`q}_L8JuHKZpTA)D5B@V>(h(sm+6^A4FOZ
z4OnbUZAfiIm4u%xsof-qrdejuj8$@WS_JWa5G`4hakdMhRS>O%Xk$5TtybolZBM_0
zRV&Fq2%=LEoh>ILh%P~NWwBcj>6YJ}AW3>yAl>y0qE`^TgZPkUU+PCe^dU%q#7h?f
za`dAq#eswoL5w7P97JXigUFu*F_bWvDy@cO*;m784yQ_<Q9+C*&kSNr5MzV*g2iz`
zj1OXR5T6AxfsW+)G>C~7n@cgtS{bRG!m7`Mm`X4MrjgC@Pq*5B8N`e%F|&f0&Ei)<
z%n9P#AilODzaf~-zYAiX<<GVJ?}M11Wp>i(q9A?<VtWuf7_&HtO@t*uEDd5Ac@1@W
z5Gx2PgIE>BYAer=G=HL+UCZnQ)&{YT=K3Hu5KLcmW0rN;%&ILxY$a@?{!BHqDM8qR
z_%(>%g0Rzf1)&DvAWJr<l}!sm55iC1pn9wrH$f75EyqWY6$k_o3?gLt5klCS-7l7J
z4rXT%d+Gch#2-QIBAe$<MzTAIJyyJ!`-0fd;(;LkviyUDKdmuKt3yE?4&n%Xvlr20
zEZ(Iar=Fmm4B}J}r-L}d;x+17>ct?=5zbRDP$j>N<P!NZ^$PVW_0`C)2XTYWO{%oI
z6~yfz?yxB1F(dD>ct3~-K|BoNk=!9e(T}Rf^kYNF9m3y1{1e0zI?sc65yVsSGpYpt
zOZc#6{7cKp8A3MZ$sR(E5DHvLDYHHLrNY#h5OT5BEao8>puQHu>mlSNOZ=N5yg`=a
zQj{ZK2>GpAX<jfSkDW*15Q>CQf__nIF{+urc$WA$ay-=>RVi|5YMBtqhER_DHnn^R
z6+(E6Y>wZ|DVz|J=fOtT${ZU)NDQHQ7%jr69E$!*=THcTL#PtMyCGB!MgPpTUI?in
zRI{>G521#|Nrajq)CwV){2sM7b^nu?Iw7Qx>xM9DQ*<%S-{T3?4`Fx+BSJ_Ep#ftW
zhR`~MHX$@(QDPd0&?JPWAvB}&eh4iI%|mEm#Yoy#Wa&<tn7y>6(<y|`gmxjcx8gg5
z(9z-#tWk9dp=$_zEWcX_JwnI`p*tPPnI3|fU%KcSLT@Xw7eT5%w49HuoP9&+N3(wj
zABT_`!T>8~pcONSX$OZegjJtdy$rP?hY`$4NiQR%A)PHDj1FN;2w#QpHJ!24$<%Qn
zj1OS~c_MXE2%lQXUuF9&gef6RWq{0UdI+DBr%}JKeChYg5N3ohlg_LxzO<UnqU8K0
zggGHB3t@Q(-_rbn`W<y{2=hYtK7{$4`$C$Mc>$s8lG>7C5jizEdLHFi%;J&|mRiB4
zzk<c}A*>8xRS2tDTtoelDq%knB){-l@;YnHH?X*ox{11(YA(yx5VnQzvs?=y1VRXg
zup<N|1UF-BRA&gT5bR_JReF)WRI*OhsAf(hON>N%SoDVABlxN2P^C5$!Y(@D5F&(M
zLfA==+FuF3S*P-M%m2fg-R=<f(A*osL92G3#D{ReiZMs~Cu?Pde_3!uAcPAcT%>a}
zg!6=B)Z^3>RLO8Mgj3|x)HBqx)N|AmTzrWXxD>+W5MsiR%m0epRT%I$^&0ga^?C?5
z2sf#>sFLA!2zSVLsb4Ykeewe<<{{xx2#+nN{g60m`%ef@EaxfVSqT4z@H~VUmY*XW
zy(PYs`+peO$<jq^O7wmuM^4Mh6-F#McNj&&C`!&leJzaF!^lg1BaA|XH^azB$WJX8
zMghXB%+gC?%MmUXM)5FG=#&T}E{rN+yvt&I7^TA~6GllEWmKiYFxR1M80BatP|H)_
zqE@hC-eyr+Nt1WT6~m}RKp2T~^Ovbv^EK0oR%Jj^7&XJFW@V@zMh&tVR*U?eRhw+}
zSeuUItYbl4LcK6j!>AudS{O~NRt*S^s12#oura~xr72m)-;Colhx$IvWnr`=w6bDa
z6WWB)HjH**v=5_07@vnREsTy~e8AcfVRQ<ka~OTY=odzpFuI1(BaDnNx=Gcj+TE!!
zDY3%oS-58yy~6k?j6O7bhw-6RE5YU=O^&pPvOxbZ281yrjG<u+4CCW4GQ$`YhSbV*
zBurvH31cuFVLAR?96bbv(HzeFQj}ox7#YT>Fh++lCXC5pd=|#oFvf-PDW^7`Iw6dS
z1nEdxnSF^)qA4K$6!O$8jv4ty7}LX8ME}b$#QZjl@4}c7#>_Bgg)uvfIjsGP`gIuJ
z5X|98@>ktSFLPNX&i7%=Bb#%dAI1W!)j}&qs(!F|aTrT1UTUq6<XKL0MHnl?SQW<V
zFn*NU2y#X6Qy6Q)u!rGb%v$O;>bfx2hp{1yjbUt(8xc*(wmFPvm7^aMfAOxe)$&dA
zXBM|pcZ8u>wKjq@afaav<5(ES>8N3Z!-#~Tg`tOGgyE(ipn9mjFuVk5E{~h@lVt#A
zkHIiPS)5<O_%)1uVeF^*8}$$B&M<x_m?Pg6#%>n(gt3?KYEqK<Ko|$*R9gO@VH`5s
zn))QhOma936aGj4s8uVePK0qXj0bd1QO|~Pj&M3GPYR0OLd_|h592}@*Tc9G#>Fr$
zvFd6VmkC$0M4C;m(J}kI8OE(J?uK!X=It=<WQjNPORM`Fr&$zz7{;S89*6OF82^Ux
zoK60rJ`LjuL0U-{&n%W!FUZ*<$R3H#`X!6zFmgnYGZLMV*-BL6V<X5N!Fv(Zjv!A2
zuSHNP0z~k71bHJU6G7Ps-iY8$HY^@NK0?6=3K8;0P=H_#yD(WY7mc7u7Qa{)E)hXo
z1o3oAQA<+I@rahr5?n5V3K6_Tr##i1%i9sW!(sweTA6;uNOb25C(^GPK{Y~UY8C3c
zR5QLhxhAzn1W5#QB(*F~CdgN~I+oKqf|LmAMo=$;RC%g@1WhBTA3<6KjTqA)f`$aM
z7jsCGws97-Sp>}^ct3)c5wx%}OT5{n6;GeJs-kjDwTYl@1nn64ffe7L(1F^KbC+J^
z=oCR`D@K}ki=ex#*srMgE7BwAA?NWI<o^X35%i3}8-Xu^UJ>+;U~&YXMetz+A4M=I
zf=?po6G7hyK4!Ll)c%p^2dlidTK<qgbby2{sXb7J$KMWRMxwtwH2>saa0Ejl7!|?j
z2!=*5EP~<8Fp^IgmPhCdjEG=l1S4j~%F~tQKR1apCW5gMd>V;9Z+V>Tw75h$CJ@F)
zF#m8`ui>>P%3fXAXUpd3r+|b_iePZfc!4PqOpRbs1V2RZc?1W}r%aFF%Lt}L@CA#>
zTVv1W{#blDX3+VXIx~V<1o3A_@Rh{{w#Lezg?}U0f;(wW1m8yRT?BI@m>0nU#)$tt
zYv+q|HD%Dq+Ww<y2al#LWNph@QD<=kOCs_pu;|a8OC!-g*j^UF@`(JX68)2AIaWjv
ziH}{ys+II*7)pu6)e-zC9{~}piD0d)bAhxyo3So}^$~1{KmsNgNR!CK!f8?^{Ovax
zn<Cg8!IlWNM&OLV6~Q*SmP;mXk6=dxKS%IqyI3h+To^B^MBrepEdo2i%UaR$UE(C*
z#`|^E2n>!~i$IT{%igs3VwrQFVav@FcLbgYBu3^Xj_B}X@JDbgg5wbcA_zthiXa@p
z?g;islIDpK*#q+I%5Aa2zsP(e_$`8+5&Ry(E>`^^%}d9Ad@uX(S}79QsB^qTN^vi1
z#W@(kzs(c($)(r7?tbZFdE9{rir-AhsMhCCxoRRf6v5#LjxtQ*-37CCON=`r8;_2#
zG?zo*L<A=zxEsN}2u{gTmroo!vi5C(S}CWgXCgQo!MO;|vnc+>2rgLM=Wv`jmm;`K
z=L+?zX!*oz)a%q6)SJ}*$JBQ~IZ=K8Z)52KQkGrX()mOw1_CZDYoYg!EK3I=fFPjs
zrgR0R7g4EFMN|YqkRl|Rlu2eL8G4r{z4!M2%-wJP=XcIKpYwV5-FM%8_ucoBOeT|?
zf^FI)Qs?#|9J%QrA>KQL`#iK=h;!k=Av`>Ur-$&2M_;n-(IGrJgq;`TA4_#x^d1{Z
zo{Qw=A-oduLbgoyMtChdg1aNeW$mMEVY~|oF647rW^=d@(;_jq%X&pfbm1rd_Kkl5
z;6g4Jwrxrzf2)`?j|=5$CFFJeZx52QV}2L1_isTL3b`<hRVuhp*kx_ERxT6~(nPSR
z3&n&axzI=mb&3l~7EBQ=;X+9lN(nFRLJb$*aiNS0sV<bI4<fhGZ6Ot1sN_Ng;mwy?
zgI0E-iVKKJS}aAjoXGN)3vatn)rD#<RFCSg7uB+H;=W80y9?<q)OVpKBj$obH0!wV
zu8`V-?2_g}T^H*8A3NDbvPUG(aN$E~eb0sW|Bu=S|A#ja-q7_wKiR9XNa_`Hk~bCJ
zjIBZ}`$Ad@GDTYpY2!j$7upHW5~OB(7dk|FM<JbD=p2=N<U$u0GF|8zm7Mz{k-doB
zMAAJf?;)h8U@yVmF7$Dsukd~@402(x3m?1C--Q7#I7L2C@IrwU7Mf)t`NV}GF8(Wr
zH4w{C7d{oW?AC1g2p2wcVS)=2UHIH(ZSb)!>&PAH!YHYZ791n^SsQB$^G_>?<6Iao
z!quxSA-ha+;Y$~$xG-5PQ1XS4UoXc`bzzzdmt45)!gLpAxDaqbbz!Cpvs~zX#i8{}
zBz`4)lM7$FFkAQ>7Z$j%(1mZLN}X?Am@9l<R5IU%rEjFLX^{(yU05UXC4$Rc_+H3T
z7nTY6PO#dMWa|GQoMfd7KMG$Vm~Cy9@YRCZ`fG*%B)HCn^+Gnduu%x@P%T??vkO1F
zutns5xv<-XUtHKK)n5hwaN)OTuiv@xqddF&b{BTI@TUlO3hv@25}&h?W9@O_K(yE2
zF6<S)PjJ6r_ALH!;h+nLTyVMIjq1By@cbVgT2rDi^hI_2QH7uj_FIl)QVm60H71g9
zBPt0Ci7?-U9FEG5@Sqdk=$3;6u^e~dgh)<Cbxyf(TKE|k&bn|;_`ibZqdM6Wzu>|}
zku<!KMN?OVKW84g@Sh7;UAQKad(mFkUAQ6qW>j)Z$ZZ$yL?w4!XqYRW*6xesK~(<G
zg-22T*o7xi{?vtM!lyZ`EPCm}D;M5yqktRJk7c};rW|g>xUIyF6^s*%7fcXj(;mtB
zL^pD}kxPWR-N+kl&Ex*xisutae!=WDEhxOWU?IUb1q%xn5iBZLOfbo9ZIJ(;ImvFM
zxKToyO1e>22>mJLMrq+?1XBh7f3I?Glov?_!HR<H#Z$408*t-84;px2bK@;H{&r)p
z8*jU<hl;%C#`|tm<#eQ4-Hmi1HQac|4ZCoM8@1i2=|(N7mcJd#j(mb{9XH-}V`}c0
zCM9iY(o|QFt>I;f#ClToCC1kmGQvp7aAR!$tm1hyKA=l(EO29?8x7oO=*D0-K5?Uw
z8;#xQ!Z+k@G;v!G-)`kbYd793X>006o7^$Y+-UB`#geubVw0q$8?QRs-JR_NR7V>(
z+PTr*jkeOt2MFJZk73^qZgg^^vl|^nPD$?*_{eQN0VZW`GF{~(U%q*k(AAABH+qT=
zCEeWU?nV!~dcum;mUY&oYTkD2?q~1C2y=D#d}&ec??zuY`nmD38};LCe7ZOv<U-Od
zF@As>PB#W}vbtlC8%O_hkn~@cNOG;4eTW-F#lj3XK6PW58{^%W;Kpz_y3Wk_+>Mda
zI>L?5gwTOeuj5)4bB<ypMM6H>4dNI<DvXP2=FS<<XF*SNqhL?_@zORv_+pY9liiq<
z&-R5IU%FAzn?8m6LL^h&@U3vLOp_{!k;nE&y^NV|%yQ!^H@<e`8#lfc<Ff_lxKSh_
z#(O@UgARC>z=dYO=X_$H>&84L*c~er^My2vw=HsGu^Yd-ttW&pVa~g;Rg5fi<2yGt
zxUtcV<!<X4HQ&4OgEYO4E6%DdF6KvB`l6Gu!i|+;fksvdS?$IeA!`MHingwEV||qW
zF(iJ{YU_#9o7~temVahEm!xkI&Q<0^o_`VkZdq%I|H~Egn;XBo!G9s&=Ee@@Kv^64
zA8u?HA^EO{v46U;Q<`?Uv0KPrZWKC|!Sel{6n5Do!rZRJeQxaM>ES^>4-UBTj~nOR
z_}7htZX9w$cf)X7f28hm!^>50!|jHLnJoY3t}x**$MX;C=j89^cO&42D$4vfcDk{;
zTnan#@6?0hSjY`c$S2Da*&22u;>HO#PP$>baieI=VK<Jrv9DQT>zg<#cG!J#(U>cG
z#xXaD#|1mJx1EZ%o^#{0*gPYWvw}b0k7dW}U6bhB1@1>T?zwT_jZ1D^cH@>Cw`s?X
z|2U`{H>LYkH|nI@u5p_ej#-~>yY2=jb?<5xk#k{LkZ!a7j9!#!{H~CuLz4fz==e0<
z_P~vYZp3;J=fNX49=q|vjhAjbapS2Q&%`TsFI+T+(dc>8TD#|TsiU=Uv^GDvIR9Dx
zl^d@`lfoE}r8BZvOuPpP!t;1Qog5x;`VT5(Bzllj<heY^Erj~{io{fs*p9v&U+*UJ
zd+>$_RXl(P1w1I|K}iovc~HoMH$6!5pt#2xy|4#GJSZxB)5OY@6!Rc^1-U5gJKK__
ziJoVBo8rOQPPP&pS8{+6EA2r!56X*L8F41ngR)ZXP&kGLSt@u?Nz9U0l%~{s)-qN0
zz$bQW9=zp2T@UJc@U{nB#CJTfdr;MbY993NV5{!Ifc7><o4kfdt`;v|(}Rtd;%j?Q
z$AelPe9*zh;_#qjJBz&Q!Q!GZY2wnD&NkeH|Ays!x(D?=c%LH{vnG|{vC^2%yywAv
zGldKE<Lb&Eh?8s$U5an$K_d@7@}LVx38pm`Y$n)5u&D<lOC++Xxd$yo(o(RU2d#v#
zskM+c9<=pXAE;R<Y#(jyK%a$oib^^Q>0iwG;;n>C4|;ge(}M@GwyuI%+^|Jrx`~tB
zg%59Q>&38m&^OsO)Pp`G9t`&26A$`{@b;_NK^}Z8yuaW8L8stA!3o8j?9S5cTf0AJ
zOp|2W5DyF?#7{jKCThb4XL~ThgU>wpT&lAK*>|J|qdXWb)iEB7^I*L2u^ue#kwk?F
zQO&6yO!Q!qR404D@`do*s~p~SnO}M^MXKc4UQP30x=3aS&J?6$EL8Z)gRebUF{1zP
zuVRUFq?J<$E$ltlgLxiY4B%1#^F3HVm;9LE$3hPlG5LKc=EGv<3De1gP4trsI=s%0
zwC2HYr?AX}?>zsz61&`k?}hUk+7BM<N*b@8t@L1(2OB)rwHlVy9`J(98jtlqeXNqN
z_24I|@)FHDk9B!xz2N*}PU=u$GdHOtp|OG{3V!xriwD1Wu+@WH3UVv>m2S{~4=#D|
zy9e7m&^*vR_``$kJhwgg$AcZ*-8pQ3da%=jsVyt+NQl|x!CxNip)(%r_MoLa`-o3`
z%6{n6UeVw0!LK=Od=k_?kM$I$W3krrks=8(2R%4Mi3f@YF1|g>X>)ToCGw3&BA@R>
z9X|5N%gyV7--Cb$d}PzugqXI{q;laBZ9xVk(MB>oA%-NxwUbu%H9R=x!EuI*G2xC#
zh%r4l?7<Narpd#mj(V_KP1`8?j`9iQCp<Xm!N1&t2{ETUIPJkX4_+nO);x+WUBY%o
z=0eM7xtcj`E!DL1(%K{@jye~lb#g*X?;N(v9$fL@sRz$I_|Jo@9^CTawkTW^ye?S7
zmUzR1#EJ<;7uj#p<|6y65%xPC+~o=H!DF69xnl0|xZq~w77#zP!$Kb(df<)Dl&e7Z
zo-nV3Jon&**iTTbh`r>I=s}DEB{u$*2bE*uhL^C`B37}MGETufdFWQWR2g0h>$SA!
zP>`sA)tn-yFn8DFJPPtEfC8I>d<ya_NK#N-!5gAeP(dMfQPT=Y^&LKRP618PhoTA!
zD<~rJjk#h*-?N^PRZKzc5;m?26&UbjwkjyCAVop561EbG<tj-@sgjpbkgA}9f{F_G
z@GDv<E5nr&vs+5o$}8a1Xswch?DVTFP1(GPVm(8wdqT`x3f@*wN5Q*_m26cNR98?#
zK{W-8Bv*EALd-kT(XOB-mCGl5n$t#2I$2ABL$Q+lRk;LWZQ-8=GSU>(Rq&yL2Ar~j
zbOrB=1v<%Rh1FNAw9kl2-c!IWuq)Bp1s^b&GGapojTGxiW%QqNrW`vmmzr|=3dVRb
z){Eu}S|}*vMXDDq6|_=tO~G{qtrfIU5LU2lhoh~6cAS@jB?{Ur=%8RUyE7mPIw|O@
zpr3-y3O-Vhsi3QZF4R12b*yz8U5nYKJ&ns!&`m)P1wCo-8oG<w3B6O#7q!ivmtIwr
zdnp)E%+_15k07gQ=kc+E{tAXF_*B6F1x^K@aIsEXWuSt+3Gss!3=+wpx=9o!+_IX6
zh~z?&jeMB!&jp9mvXJpHF`o&c!pGOGE+Z9;ic0S7wvXlFD)?H#Yz5;LOyDTjFiXKi
z1(QT=s)ET1I7gN*g?u6S?lnvi;wqoTrfCYM%Y0`D-aCnzLKvT0H^J&xOq)VE=s>qB
ziPWE?;2Q<sDwr#yEEMH=3g#>5eKwuFZr;KI;S3HXi=sX=uuByzQ?NzBFABa>uw21<
z1sfE6uiyv88f&ds`>>epM+GYsY<(KHQo(9zS{3!G$Vp3c4Hr5kk>n?lKP_roCuIDe
z4tmS=-N;DZ#3n(K%{>2wf3-0EpOe_i!(YJx1^+1cO~LO9_9*z978Lx!O`+gVu~zmx
zwkw!&4LNeg5LtFA_)8?@ySQ`tmpUTft)S$hbaJlmUhaq)rB)TpLB3D1B>S0KY6{6g
z$vwY<fRIB9TngO6Jqo-+=)5AMllVl!B_n516@)|*6#OAJhC(gcOBZ4Yc4?3qQD7=K
ztl)@(3nFC39#wEc!AXXqnC+N?<3b)4v?9iGO2MvTwlfM&OU$`DxS*7rRd7z4&I>XP
z{uMGOXUs(fmlRx<RlX{{*yW0X|Ac4NPvsg>!r^WxxT#nltBZSaOTlf<CDxYDi#rPL
zDv0wU-fR6i`#l9u6g*XMpIhm-^ap|u6+BY#SU81_XUW7Le@}nL!)itPE5YXqUMP6U
zg;<&XUc)TPNvK2eT0xB0(&RtL$9h2|?=63JpCE(g@FLM`4VTl4{VUS*c#%u0xdkbw
z!Mt8%UU1Mu;`?nY=J(<aFAm;LE8s<)TsboLq!;w!$Kxm@_@)<yg%lB_yr>t&geOHM
zOI9W}IEiF0QoJbPMM<v}kgF~1rM)QSMRF}$&UTqZO45GGEbB!%FW%xTyeRLr-m>yt
zw9ShOUVf-YIL%gx6FCofQQ3<sUi@_))32rRA;uK)Rh2IU=XRvCOI0tbdC|y=#$HtS
zS`X>1??r|eo{f$gUcBRl-HV!DI9A)$bX%pBc9L3BbqLnxWQDw&EnIC+^P;ZsdV=YK
z{9guke9wzL|2jVOqJbChdr_uD#s^;OYQV;^6&VngT`Mzp_DX8V)+zSe!|YAGXzE3K
zFFJVf+iUB&oz3_X;6)3s_2kc1UbOaFuOltJSk*I$v1;Q*Td(z=zrnv~CsF19Rc*PD
zULm)Q#yfh^$%~J@=<h{mFFx{O#pY`Lyy(Jp^x{fl469uk=OkNSK~}T8=q9|o7d?dZ
z^rE*HeZ1%;RVrtm!o2HNFA^dPJF@gThXGzV>5mt~ycj6@gQL9$c`;b@Kk;IS2!{&t
zC58uD!Zpj(a4)hw86i!dMf-j(WTY3PqLR^G@N{LDabAq~;!iJjdeQX~CU`N?i%HCc
zwzh9`<e2QWE_2QGVxAXYc=4qdQ@oh!#Y`_|Nz*hhrVF9k4gOPGly^Un@)fs9Y1=m<
z`Pyqe_jtA-$s8~EkYrx(Vy|z#;Kde_!>`ijd$G`qMP86EU}nbIK5-^4_F@Sm@5M?l
zmU1oDI)30v30daFcS4p6elJLc3W@3ElWl8?Il0ywhuT+pF`-=AYA@Dso1BmT`eOWA
zFOD3yGGXC`w4c0K$NYcKw%&`aUi|9C2B~iJVv`q}g|qc%PUHtW3Ck8Qei8YBvR3ss
z#&EHH2RGnW$M0Tj<BUW?VTX&3?ZSV|pTQ~>*4k{lxVhNfi-;Gync>_!UMODt?ZsX%
z{^6P6#Xi}L`zd^kWshUI2M-8mwZ&buTa<Z-NwV8Pxr^K9z9n&cExdRSUN3xJs9prU
z7<U)Wt;tvZa`=S@n74m9xV5Pk@}kCF=w6F!%+H5$BnGSZv7QR|VR9k7$l*hx4@bN>
z>cs`Nik)LzN-s{yDRErzgy4Bc(#S_R&8>PD=e!_4BY0MjLYDK=`fs+*VEZL6E_?CV
zizoEWi~q!dhhAJ2gXad@?|X4gINiSP#f>Px$yWj4w*~JA-W9wjNc~MMY>dDIFKCA|
zVtFL?pUqBY(4Go^E}lFSOt@0!1()LvUV8D0SsHP?7Mym^;xRtN`Ygf{CnR1l!G~>=
z?G)zpA(sz@d{)?V`;f<n{66a-op&DjBGzK%^;u_ZJ|DX7wW@DOwail#@PSy+XK9kW
zDRM@yun$Fqn@_DANb;e$4_kcr#fM}cQhe6+sI@+n5JH~iLrEV>`B0h$eW>h16(3T4
z82e3fIiGd;sH|vq=0&p`R^Rect>8mNA(aGQ$Tg)W?<H3#90Q+qsnF)bThjEl4-Ow{
z3$N-!H6hgnX|0A2@AzPsfmp5S1FzcElGg02i*<a~MW=>7G!pWz4{1W``cTh@bm8v_
zQmwuZ8Nzvmjn(&~@(+B_3&(sY)dqt5Vq+Tn(8Pz1QJtnfwDO^9ds{P+G#6~)LrWoD
zUMA2W%~GMY4{b!VtzbJ*puD{g9YjKYvaPL?$U6(N??*m#iSkUYrf^=%VpBICy8F;0
z8k2E8^c3Dpbb9;HM@V00j*xzW?D(+{{e2kVgHt4fd>AZbpbzaO0-yLWgvk)qAL_%W
z!n5N;3&VWa*WQ+W5qJc<ORvvGXJoY3C?TVL7$an?;Jb3sZ@l<9K_nA>nB>D`AHMKm
zIR{F&eJQOoeV8R=ir`cqrui`4hZ$0>QOvqd%cal0Q2CV)i$wml53_xkBYdvlH-g^^
zQol;Aw0Xkk`>;UBLLb`6Wx$7Pt?SZ@DHJ)czAhEAOz=Cw>5{SE`|yKQfAnFs&$>>#
zLaHkTX=Ig<?>>zuU&DpSZ(U~mDcZV@=_-7K;6}ks5)H<7vyh(!_Y|=@ZuP<ML%@e$
zefZ6X-+2i5u#5ZMhd+GS?!yir{uKShRms@_$wv0wDRM5*ZXfpe;PS!k!{0va_2H20
zIO^;Z2M!AE7d#;Nj}N(vWl(`7+aPzS#|Om+AAOKe{QE&NefIh=p`ERIN84{Z(z_Rq
zQKdV39q}RPL&yh>Tgiur4<@_ssK_pc4`H8mz5V~&KkP&E^43=d9E(@Wk9Dve_2HNg
z$9*{A!{>gC^y8!tr+C)+@rEC#Wt7)~XM8v-Gd<_SEg|Ox{}sF-cv0|@50`~p@!^_~
z{{*iJDtE1m(k$0~xFM38g1mH}Ex*mG4|hd)&xa>M?h8H;eCWd?A-wecSO`1rE#`dc
z!!xNq_u-|G7tz+-y!bDiS9GZy<F^7H>qnd)@qX)M%PA6)1gYi_O!Q+xI~#?$q&2r-
z9zXK3qeL~INN8%jR15g=t{-WB6!fEzA8-0m*l%4!=7>f7)|732yd|WlAI1Dg@}syP
z$$pgaBh`--X(}m5<q|@&H-0JMrTwtJBDsOGQmx=eMIq(<C@+LfEk&V{9}r1p!774U
zF((yR__e~@B6&xUlB#}Gi}LD1Y6vQF?AV3Z^rMy^4&k*0{l$y3Zyi7O$68+1^`o92
zgC!=cru)&_k2ZeP_aj5}-}9rHkoW!gz>g1wQ?s!j4TLuoWX3j%k|t4|ra~&+k8K{6
zwD6;)@K#X?JJMQPKf3$T!;f};w3nt1f*%QX6zn9}*^gGzrHdb#O#T{iUH#}LO<983
zFD|snSEZgJVKNNxqnGgBf^6;MM_=Ln1V8qJUvRwN(biw8e1UdKIt>&YB>4T0$uz~j
zpZGB(nngqX_*D3?sARYwBcl8>A>6s6B>iIKL><kT-?Y|rjEpr_aGW4hWuhOG{HPPa
zy8%r0;|o7t`w<hsmwrs~V~rnc{g~><G(UdyV}&2n{ni!uMSd*yV}>6y{n);&&MZH^
z@q>5UekIkf1u35`WR4#LwkERrt?114W1b&}<c|0GB4Nh`{1za}M?6j7)&3<MeOaBQ
ze(TCV@0eZYN70oI{yOYCA<G57_u~g4Z2I9r+)7cV{`b`qLW|N@`LWt>J#B^#^Y@HD
z`LRwEp7^a>F4y~ULaH15*yzV5KQ{ZZkBQ3G#<rjR_?4}GZ1Lk4KPEnmeW$;jpB%R`
z{`?$TDCT!Rw)wHgkH7u+gVXdQPk;MPKX!;hn}@NDME_4euFlS~x-hU)Gyd|Uz_bjK
z-J(yjSB9g)$cM2UH|1!?0YConBjAVX$3X^4y!H9v;@0+qW=9OOb1aV^iWnh(^fJ~P
z<wNhr_HJwQ`$447K|ex%g#Cz!V;YzEVJy3FMBNWVMyDEuv}|&5{b=zb>#z(&$q_%k
z8)he=&M`lZ`$6(=F(>h)AE$W!`*FsPTYlX3V{YM$vwocO^KXePH9GLG9~WeZYcl#p
z(Yfr$C8;tLbmNNf|NQ88G=t@;5SqF!Ms5h+6nrS--Vy%5kB5HT7324~n}*q0?hDDA
z<Sdcod?XPlxy|v#k&MTj^^pwD;;A3cI9#o?=YD*aE8e<SwpQ8;YlEb{6!|N`YBPGr
z1`roO;Q)#R5FbE70J#Im6R>Uy%@M$b%kfMz_DvK?&H!==VQb))BX0ot0>~e*?vte2
z(W+KHFIbgKe1m=eO)C&U;<1c^0V@v+1@NX+TZU68EE+(u0ICFl0FnYI9zf{;$^@{Z
zjV(EV!P_(a{pzL!VCz@6;kmRD0T4?HmJ;mh&q@v8_MNnQOVTR`P&R;a0hH(0ZRgS|
z22gaPqk?c+>-JVcC6Pqxccc7F8=Jq4jUL(ps2)I#0KOVt=dA$VW_3gzehpVOfNBBj
z`?xvZS=Dy}*8RHFuSp}0G`nE_5p^i36|nZKL$G!LAFa(`H7$U;0fa<YFM#v_x(cr!
zKt=#90%#e)djTt?jp%T)ZN>D&_XGHV@$Z!NVF0IYIanG9X&AtnwHbBRXHdCu08Ij5
z%-N-B0L`Q?d2=D1bH#6~kg&B=#a02d4xmi{Z3E~i;~s2mYZpL=0JgWSNZvkxqaS6E
zY|ZFaBgxrGbUF)uB-lkTQ;^fycR4;wcsIfB0rUu<X8^qd_&I<r0rU=_4?`Wmf&lsk
z&@X@)0n7~G;{f^xFe-r20SpMh8Njdrh6gY(fT6kKhcW^IaDxxxS_>inM92_kOJf_W
z{Jj7pKX;Cuhu(+)J`3P;2H|~}jcv>~-dWABGU?&S04^@AbFW|BF#(L_c`kmA3t)Tz
zlX%oK>prWqrj2bv027&$b*$u^{7DLv;R|MR(8}Ai5tW%3#Y-ek31BL_r~L1(`)L78
z4_J5Or`~oDXE9a8_%{K3Eh){ua{{QJFJ(4INw#HeN*vt5+5#-!$}Hvz&J*OxvoL@~
z0jv}wiv!ltLCqfmSR#C>;4;DQ1eXg^?R&<2m~}M$7{ChYKBkQ|5#HgyDuC4@Srfpz
z0M-YvR;q0MDS*Yd98+&OHUzLSfK5?3H-+cT7~*Cw$GJ3a8SbNB0@xbBKLH$+u>2ap
zwgCQM7iP|~I=>5&w0hf`;PwD^1@ISlYXE-+u#<bFR+@8l^1bnu*?M4h)*BNnvRjgK
zPXK?*(0c>e7r^lgX)Mg-{m~pgAcPx%T@Eqe0eAv%NtZk864%y9P=x!qrtMO_!l^k!
z&KZ9ISBKXL2&#fX!9OM>YCM+$FrxbWHZ3eX5`Y=NVVTj{0Gf8mI1;e_-GHy2M*}z}
zoGEuafD^(`3R2;ekkj0iLYP!kJ0}*-3;rv3L6BzIdO3hA0W1&W`!N2aV*yMFVrmfA
z0=Uk64q6#_BY>N%s<@%z7SA*uk}7hlxD&wL03HYML=M<{f)4_?FN9kl`_|}(Qhg*?
z@tET&(@Ad5iBs{6JEB;|^MLjB?u!6k2Jng#bSAwHAVx*XNe8ctc{im0-mtEkZi`h>
z^{Hd@wDfq@dZV78S{F-Ma;W$*E`Hjo#9S(Js~ASPiaaXvs;HylT`H@{ui|ZXSMi35
z0xC+VD5;{Lib5)iswk%7O%;Vz6j80OIau;ew{Ak?4U?N^R3=HHa(sL;T~bk8be`vm
zq5Q!u>jq1z5lg8kt)ileN-D~zNL5izMR^s26KrKwT#2`}Kb1zcDz{^cB#8d)*a|B6
zXLA%*rUMBvHnChq5K&KfPaPHBlIr%?vAhUhjc%MSQ$s~{70XK6ct>T)j`nv{*j4N1
zx0)(yi!v|E*HS@rs7N1fU8T4B7KlqzQCCGL6`fVoW0Q)8DjKP%FTLJV@jks0UP^8s
zrMDlb*mE20hnL)x82_O(HIR8->1c1PqKS%@Dq5*Hx+J}+iiKrt%^2`IvHa`0<|<mK
z2*o*hb0Et>Z&qs+ZB(>Z(Lu$7+t^&IEAQ}Z%juW2wG%8kB#S(I=#DCSU3Y{v$44r<
zsOY1juZm0+T{%+~f0s_FP%D`?d}gWWrlRet4EG5>#3rS?itD9pyo<6YyVK7B$-PzB
z`e*S1_>==FyyD$Y#m6c>Q87eCe-#6`aHVX6RqN6;iIZ!6GHoDj_OvdQ4^r{RQ3pwt
zp~?M9+IVezsEQ|_C9>?yvVY2?;u1WJ9iieg6<byOs^W7MBULO`u|&lv6{A&rsbY%6
zZH$TuDkiF+sj(`?sTePu*2d1r-~vq&HIgrcOjfOgVFGm59A(BNPNh)AY!!1<Ojj|3
z*&A=0#U<-$pUIj2TAH_UQhEJV$5$$hQns%p0Y>z)Q}~S-T)+iV@vVxvD&~n~XhJ+&
zS>~(O?UW>o7=b$o<&I(GxoR6;$1P>1saUJxCl%kRSgvBFidy~b-;3sts`ZV7Eno2;
zRIp2)GPV_5VkA_Ji=mxWD(_vf6ke9Gtx@q;>24%tFV|crqi<BPN#$f6>jgKc;O)M=
z?RK-Y{;XmPw{S;$pQ+Y<tPvOUi^waSv|{y}ir-Zn=EAAi#${6RkBWmTwyW5|^iZ)^
z#h)s6GJ935x{d19lXuB_b-ZK!LF8X5cB>$n)5FeI``^h#4zWyg>{GFy)_T|v$Z!v1
zoJ<CObwVEwsR*c0Rk&2RRd`e=Dts#ZqS<C%GB>PO#c3`?DO)eu-Jeyl?pqFWBZ$q2
z3Qd#^hD(L60&y|f3BPfpwGcfMtram<Fo$=hr84)9syL?NoQm@lsyHFtPjfq5bDUK1
z_^RU+6Remu3il5EKO@uRRyxZg@pf#R+m3&^afaJ3skkgn7gSv29_(RXKQfUC%yNaR
z&vMkkmCAS&OLA4kHIXn^S-r`_U&V((>zl{hJp6fJ22mu4yIfqp90ZXoi2K~sJk?b^
zSMgA_G#?3)tj`zoILe=>cpBvw>)KwZc&Q>mEK~E9ikK*WEo$r=8<oTfi4UStl9S3g
zq?#x=@3zC0FDAF}e1cTSBP4GSC-cRynm>p)L{cD#f>E8L(o`sjH${@ISu}`ZLA({j
z+d(7+Q9OupL6i?7If(VS;!6clI*2~?Y$-vM5c0B~tz;0y^m;Z9R7QlUK{OkcOtrF7
zEm$tCbv;{!ASwotb4<J~h)O|Fzp}KF47%;0auumUkOny%g;j&77DU}3>IG3fh#EoE
z4x)}Y!{Ocu!XCs9`6t$zLHu<tzLs>qnP77SvE@KUmn0{RobQ(WZV+if3@VrQ&eOQM
z`K_3+S9%Z`LA*!%`D5x!$4XE6SEnG-fe)gi(87^Z84ZGH$oL1*IEaox{-6>~f@mtC
zYbV%Du#I5zAX)^`Ihff}u$3UIt%Y!OmbO9YvIOm=3nd+d*z(784&tLAdefyKx&)CK
zM7JQi2d#gn?HWXus4cH+i>Z@bKf#(y50Uf?;(AtM_W#oM63H7264|A15dDI11~D)Q
z<y`#7K@14u9-jgyp=10TEU!Z&ob{j}1_v=Dh@sN`6NwC`&m3EmVEZ(PVL^N*MyNkL
z8u<~T%)nAeYh3z~L5z|&QKJPX1u;g**dWFQF<v;|VjV1>K%5Z7M3H1yCr4Yq2;$2q
zzlh{%LF*mVIxb4k`rJA_h#5iaGvLf1W(Dz85MKxJt?0Z?OXhd+vxC+*@^gatCWzG0
zbxz+-V`;po&fFm81u;K}1ws52w7%9~7{sC=Rx>#}*%!0*wqr>UON02WY26ZI>hSNp
zdBX7Puw_Af7qrN7L4Gm%Jy-cIeh~aIh!sLs3R1pGNXM74Ys4~*uMJ|(IqQ_;eGWWu
zHUzPe+f7H3j!i*q4#F3LKZKu|x<QN#VN?je1hJI~5JJ}wex*x6yx?{V;`bo71rZD)
z6vQ7vY!Bi<5dUyRg7}l}EzH~<#Lgf*l@iEz1#x()eNd9~F9!dotfQ@M#63a$9mL)s
z_63nR&AwldP2|&(oW$C$tb>dpmpce=5M`#>T|u~mSf1n@yU#JWwapXc!@V6We<eA6
zLHMb27b+L%tKNYi44za;&R)~))Vxus$DdErG$woyXM#A()*!+`91Y@F5Ro9vAdbio
z9OW?Ot!*SnrrC)%pQqKIYCj&tgz5H^L7WQW1Q%<60(JIQ>q?#YDfVYc&ePIs;a9!S
z1#zAmA&47H%OEZUafJyJ#6=3fwA08X?qV%1n_m{Q9O5d~4yRpXuN9g0m~`^^E#2Sn
zIc^4Vi>E#JOAxnZf_Jk0yo;j6opkT*;!b)(3-^O~APVfoI6M^oNbs@X6Tzo~&jg<f
z{_{BYRS>UvzJ*XDgqRRwLr4mtcnEPJ#D`EIgn}U?gpebI+#%!%!O_N+IW{RVgwe%{
z=aecXxrBUvH7#!l`Itq$Q;zMlJjoxz8zF0H__3lv-?|5$q}{!mRw#rwLns<T!{W|7
z{N|TtAE8JHwVHJ;)hA>57(1)QLOAgdJ&QYS50M-~N(i7EeKJafP%?zFA(RWDR0ww;
zqBQM?Ft|By-bfi!+*#3;$>CB%xc?%Sq<jb!Lg2Vn#Eps}R1RUUC$mxr^NTwduE``)
zjS|kH>KwZ*gttO?n`ND&8u?&*Rq1$jPbSA=waCDfcS5j-@O}s%giupj>xA$w{bvxQ
znlC+>Q>ZPx{P$UDA=DKQGeTAz>V=RVLj4eU!v@{v=!5QAWzCa%tiBh5@yNk1%|8sG
zK?p5EXvsi@&`A0=3t?Go@x~!E3885S<2om7F7BLFJL{*J_A*D)=50xCPS2Byw|R*4
zhy0u7tX3hk4xtUpL(JWh%(2>r5E*E1M+?`|;-1z!eJHcN_}M|QqhKe&&VnBab`fN@
z@GJhTko85sQ?Q$0cflTlJq3FS_7?0T*jKQh;Kzdf1qTSGJ+&+k6h26Bu;3?xLj;Ek
zekwRjaJb+I!OsLg7o;^Fm7_zL5yH$6#)Pbsb1cIZ!uSv-gfNZMnP#6D!Xze@nmLt6
zU(dReL-;ae-4ODHRChg3Q;IvMgmAXFldVsSJ9EXQ{}Rlc&d^P_7fyCoPj=1<;j0kl
zhA=OLuR};3oHFuZ+?)`4+)A4*$m%yCd>g{LHIAx%6N#f9#?6<epC}ArK?n;&SQNtI
z5Pl3{MF>kmsP-~;SqR^Su#^dKmzT%mh?fW1mxu5@g_qMdZ*a8U;IPhr*#hbHyRHmj
zRS0WBSSxw5H7=&n%h=T+-0PFb#GnP<^fK%~0&jy^AHs$Zc80Kv85qK*5Pl2c_YgMI
zfhAd6c<hI)Gw^4+F~!ayc*Jex`A?tiSvz`VoGy}1$;hd8>TC;Pdk8y1_#=eo$xa^H
z6!QMGe#zFk^d}FHDRze9uMl>J;1b97gz$F=`?)2#4Y?vd2X*#wMT({Go@%e2WEp4Q
ze?mAI!XfVTV(GK}mJX5j>5@AHPY6l~H<o64L)bUXYGRiut!-=#grJ7dS3^Gy!4N_r
zl-E!}gC;S56~gNfbm2w_VeW+x%n&Yza3zGp^ye<l(!<9%!XSijEQI4CJVRmgx+g+7
zE!F%@Z6`%?N|3#3f0a&T8Q(YYTnOhw_&0<LAzTvuH=Eb3GbQ7qaOw<5&&*LNf#kms
zu5yidScPzn=gA=Z%@A%0xh{A^F!^EJ?GQd|V!JCA?g-DnJd={th4yxz+8>1QFob6z
zRBB?~1@tI{$IR_y=hR6_tUeL`lm|;w8-)X=WKivS2roqcC4+F>@!!J)3S%_HYAB{5
zNyG3qwm1#BHH>U!i`S5#A%})U4Y@Q_8Ea2!ZM(EKxo&G)P7Op#SW1|VJR0(9$fqH{
zhQb<(i1Pl{wl_2s(9q?Hqo9UDLf-F@QPbX)k~gI~^uw+*^2E~!trgYq%XIsqWb0%u
z@idJoR9v(6RI*@-U<tvJf~5pY3ziW~6)Y=QPEhYxv7&}bn)PB-PeWxoropbErUq!R
zY1Y~P4p9`UYN)2+ZOuBab8fTlG~-67uAzp8mT@uUJT_C)GfA>vWol_~XqFClF74MA
zBWW7y2zghKFMND;t1CS3vpA}yYpAawL&JL-+G=R0;e8DsXlSaTnT8KFG|<pQL&?eZ
zg8Ll}HNJDe`ef(neU3%5?Tv-AiIR>l;${y_A#bjsm4?>zM0&N<@cB?XOPK?X;a!uw
zFXE`vMuYF5<3O^LyuF4_8agv9pV~WU=%|6lDL*Q$A8}nYWHKhwk@CbBaa}cJiSd2A
z9aQcn)9EhQL$Ie{FTvh|eFXX1@v(;fn)TX|OUD2WP7Q}O9MLdP!ypZ-HLTGvSi>h8
zW@-3J!w?NaHH^_PR>P+nhG`g~;WLf5qdSIcc;{u@cW%d}wT`yq?4L7BHH_AfIv`^d
zSM5H^xh?sJp>!%-O?FZ;PQ!Q&(>2V{FhRpa4U;rXW>ja}XI)CW=5{#7*}u^6r3Q9M
z^g7sOitwo#?lq~%>NKe~9B8LPZkJ;wUA>Y<Im;v?{c8=gH7wS!M8g~n-)NYtVIFhF
z<M<_%{w?R|akL1gvpQeH0u2i_EaIM0tbuMU$Q(4zx@~WO+p3-#YhS8inT8)U{HWnO
z4a+rr&k&8XU+7tP!atew#@ea#)<8SwxPqDB${eLQR?5WZIeM<*?i*;2PjOOVt%jd8
z?A5SO!#Zj*dK!MyutCE{4VyG<X6u%$yVLA9JPuChXAN7p`?v&~lh1vZS$;|8Fs~I2
z26ih?)P6~I-HzWiY}2rdOR3=x4cnOyW0L>Wu!H+(S$a)9omJk^*XL#IP7QRJ-ZH|w
zHSE#wH;)vTL%)(XYOI}8<}B`vwNtWR!vPI`4FL`Ra4+0WJE-B1%;=AGC0!b>yojT|
zSA$zasT8M2P!XhkO6sIIeGFQ&x+E%H)p%tL5e*@x*^4+$gDzp=Scb+QL^uz6tqj>X
z)=q9M_lr0#jmb4ladH)yrAIYf=C~S;X*jOogocwE&T2TP;S{&+So;~l(}Knc$C7)N
zu-6X9c@6)H@FJ%#gtu9;X-bNdcuB*wdsd<FKMhwkJk#)8!!-@pHQd&4N5c&bH)S*4
z;sRAo=+P^KyN`RETbSi86H>z?4UaY4*YH5YL)ntt>1HsUyK>F}2lqI;JP|p`Qw_}z
zIZ_Wg^5(Kp?S+Py8sc^9Y<a~w{^NKp!*K|9kI@mUBTfgE3-_~zCfTvyk)R`ojzrxu
zl~c#w7jZPj+d<i#y%@3Fy0yFW2<8>cCzxOG4Z#9}1qBNUzA0E(u!vw$LB5MCt|M8;
zWCLFqNYPP3#||BT(rq23bbP8~n2ypq%INq=M;9HbI?C#JU&jYJ%IPSt!>*&IjtV*|
z>Uc}X+d3-gczPd|byU%DewVdsTnp$H+H`#WO*+Y}G4>^Uva0H+rsEwQ-$Wc-tm-;y
z=)4`mdL^QccZT)eCVU@1q&REo=sU(<S4TY^-_No;bkx>SM+aNq)$#54baqdp&*SYZ
z)n?k$b=24Ko{k5bQZhKB6z8fLcIxm&Ve*}{oKF!SAM>G(20Gg5Xs@H8jz&6~G4eVZ
zb6s{hn(Ck$-Dsj)?@R{ma@;PNN=XYHEp@b(IZ}Rjmc5ls%`w4F<u=0G>HtqO&iXz&
zh@_Kl<!477Oite1%b0YQi7*bFPNt5oI(qBq!x#>>XX)s!qX)x&7u}@$e-Q_*C9idG
zzCCsH(m@L>7w@63j($3vItJ?2>*L2diuX(;Vd*cD0fOVk+Xv|wtm6|ML&O;-5?x|c
z8E{61WT<2X$#5C^D;;0!7@^}cu9}XKI;QBDs$-On(K^QKn4n{f4u6Vstd2aJG84yG
zZ&AkS`1xTPi<g#lw0-QD#01lEk%zz-`xiQ{K5~31$af~>m5-%;^VCsshW+&ZlxaGq
z>zKh@nqi;Cy!tlt-)<Q*nU=Hcr5`(J{8fr`wvIUrosJ)vHe7lgi*zj3F_)QK!Z}aJ
zd}i!phrdt80%qgdEV{ue-|Z~aK~9_66G!6@lb7gN$`l=I=bNHsI=*8jmvAoU<(k$u
z&V{_;+N>XStkCh3j&(X#>egrBwGzx#I#%mgBT=HTb+fJ~AJ^kzG3FhdDJ1K4Y|yb$
z6q*c3*(7~`*0Dv$X5kH9)cffxJNxoeB=vt0vs*>~SHa%|e;3>)_=n(jLB7`S)Uiv}
zYq){GbnMnq)Ic!<dzh{|pQV8Rc!22Gr^ClJ(y?F10Ua(KZXN&VxYNvbkW2X>wnYgi
zGoj*o$06?SH)F^>Vpb8H`M~<v=oNmdi7n;#<bV!U$59=}bOd#TxCeDaL_yP`>oC~F
zk0ksxVhLxCNp_MO6D>4#9HtLTQ;HTY{$&a05$QsC88hv;juSf0@wm`&l9~Uv{j`oV
zLQV;;DB(OS`ddyoLM5DkiqGu(FY`)=Ev?%HX}!5RnL?IJIxf@TpbYZAJ0xD!ag9f=
zfj9%#b==T#pC^Nkn>udkxEJ;0HkT&K@95~zE^%~;Qnb)5Z;sssi_eaWd8p$NH@=Q%
zqV`zFxcb(J9nG{SJRT?7FPCsW*YQF}jDcxQ>%J7{sqk9JE1lOo(>Xgzjy;Q8*)f3_
zZy>=yegkh9$ib!LA#Ye_6Ak1vko<89CAmaSQrw+I%p=vj1|k#f`3z(h=|NIJgfw1A
zNI?U(zZ~DI>2De+Y~UwnMiB!O7bh3rV7-p8nq;83fffc@augo^2J8lE8Yp3)q=Cu?
zsu(C`ptON<2Fe>KBW6<#yprHEAgvp8Ez6WEY2^<~1p^fgIM-%wuai}$q_dLfcZ{||
zs@3R~fwzReZD6LfRyFWRNheFTo$3Z^h{8L986Im9YZ-7DsAnMEKy3qc45UeGm;P3K
z-WA^Oh=WU3*FfD|wtlmcQWs~{H;`eVp@BvQ-ZSvNs5LO~fshXcOYL@;>m1|HgGt4)
zx^+yX!Nvxf7-%XAB|b_xIl;d2X)G7CnStg8R+n^ApV-PkYfjm~Km%<Iv^CJpKz9S}
z474}U*}z8zmLE>*V4$OcP6qaVmcc6R{~?q03wB|vnbwu-Xh3@w$5w8`ECZ|Z=J=?6
z-5F+D4+A|7^c81%8R%`Gk74a!@9Jb?v%ef%h$2TEBNr$4Gw`v2{stI|$%oSh7%18y
zk(}Og^V0GlG4iQ_!Hl_qAyOSGNFTUcnZr~bCX(#<v)2fzekS<2;7Gwyf};h;2#ysT
zCpcbkg5X5KNrHUW@uh(&OtUabg)x;o#lUF;XADd?FvGw$1Aj0#49qgH$-rg<Um5t?
zz!C#X4a_z$$H2D+<{J37q%(7d{Tl=KcRE-;U0ZUVf%yg&8F*gO$sfNgU>dJ<EM)dR
zMZJPOekss{)y3QqrJPi#RLZ%`z;_1La)WTC418~3g@Ki#|AT=ag}nW$p82v~tugi=
z7ALP_=mux37F_na9{C#KMP6Ba9T#ziot|tou-?E1X?m}evvVoSnXFg!hL>{wEH-};
z+#<-Pe}>w(8u-<~Zz378F^j_Ah0iVJ+*HcB-M|h5hJmnwKMm|Ou+PAL19_jP?Gm-!
z3`k4cUyMxmME2cd;BU^QW!=UjGWIeW)9vn3&KWK19x(8a0l$HOfrADP8SofT#DdF!
zTL`<K5r^5`Yhdd`_+%j3e^Sa>ptO?`Ri+k_$X6=u3>sMXvflGGS)98jLY;>gKfLdB
zL=2b)PKad&|FD5$!jJIqxr?K+KpCZ-ZCcbl9v!_?Y3E4;r<kIpoeX>a?Fo$PSp(;2
z*}ww>=ehI-Zt(1ii@9LnqJgV2+$F&)2HqTybXoYxdYN>CSCjtZ$yO<Wq~2=BHJ&7^
z9oGeuD<#}Ca7%o?Z9sp9JK{#YwI%NwXgtTx?)R9ME$i~d`k{eGY`u$uVLUeQ#6Wx)
z31K`n@XWw#12JJd=Ri->UJ8=D5W?%~uY{mdcM54LHjKD1Ud*uG0}Q;KmQ8Ymkr+n)
zuoan{VdN5$S1@-N*9O}2kpG>@_Y8lxuKV*7<O^HQa5;GS{f#gRgfaQ3^`(H(F`;xD
z>$-O#QFv3ZuwW6vqJqT)lLU(kCJUwrmJsASjnX7xd>Y2EFjB)P8@5jSK4Fv#qkI?*
z!)O#ng)l0HQ9Fz}VN?pEau_wjcqfc1VIYjR!gxCjn@ofkaQLp36U>eSFPv5lqgvQ{
zb5&iC->LBeY|S+eJB{2$?`Lp?Q8SDZ4`X?uwN}`A(@R3N!4G2J4I?d#_riETjJnd4
z<G-}}Lh1>o3r^eX$e=$%?JNun&3+KZhha2`y2NX_lyj^XaWRd<Xc9)JFgl0PG>m3p
zv<aha7|p31M$0f-g~7|e*|V50SF5tGO0^Dy*Nr)~+5=PA+AfUtob^L=2&2bLJ00G2
zEv=)B$T#^Ph0!I9?&4l%7+u523Zq*XUp$YadqbXE*ROc(i(w(@|2(co7(JzLuP~NQ
zE7f3~qqoF|!)<zEy{7b)b?GPgv0#6}0fJ7!fr5hs2Mc~8I7D!$pmlAZ4&O>!7RGmB
zj0oeiFg_1sWEfwEF*}S=VT=xA3XkqE#)L68j0s^(45Q!6xN%{O4};$cvir=^&d_g}
zB$JqyoL3lMhS7MMeRXMP_2;oG+SH}m{K58SInt}l%c9z}FlL3VZwID_F(ZsKee3Qi
z?X>KOkmRc{f~B48b-A>2P8i>Wu_%niVSF3L+%RZ!zPL^O*QK5Fq}P>gjs;;*l2XRG
zFpM3C(`cV%31cYAEm|ee^1$s0waPeKm9b7~9$7pse+c78>Kw+h!&ni<O3u{8SQD$l
zSj`NNpmN0eo_b9f+qsLE)>#|IPhqU%pkZtY<Cictgt3u(Tz;6dDQtba&9XUc{Z^tu
zk(i&O5-PB4mFlme&u5PP7H$1q$Tq=01W#Xz-x0>2VeAZJ7te$+u5;DG*d2xzh91VA
zF#Zn16NVDT-Z1ust*>Sd3hoy?!0@h&q41xu^%KzrPpq$USPn_6D-3rS&M)oneqkqi
z!|;hbBzXRbWAk{sKa4;aAD3~e9Ow>$!oAJvQqoYq7@{>p^iPKo4kHqV$=CXOI2Ok7
zFb;=tM20@ftSIBOeVd-r(nhmXI3e;=VVn%(&4*ZC#>wM1GBy3n#|dY`I2*<}Zouj3
z7r1M}IL{OEG0r|o`<GE2XCMAn*Gpks<~^U>vyZL9*|GbTFk+{r(>+SAhVgqDC&`U4
zZZg^t#7A%|jN5cChwZiC9l<Apcf+_Rgsu05JP6~VkVk@#qpf^8%~RpeqLSxAUWD;7
zDtRU3O?lu?Oa!qJYfu(GZ6+at91$c(kP<;+1UVxp5JABRa*0lEK|b=RZ$eC-2=Yew
z6JV<^A5fD&g5~l&C05^vSWg`KLrp6b!JDE`EMh&YhYE!wC?b;nGI~+re6&uIkm7>u
zn{BE@1Z5&fji98+EhmMPj^NWo>j^n!rCK3^ibBc>mKWq>k@%D(K6i+{_;4ZD{6ub(
zDiI(8TLf=Ka4~{Q5xh;uBA6b*j0mblP(6aS5wwe-Mg;FfP&a~l5!fTB8A0s`>O^q!
z77A3zsujVw#x`#mrz3(U3)4$}lJ#x`r^`6|-#}Ufg&NutZlTG{-V;tEJ%aiXG^Sbv
z8C>Er&JQB^FoO3Y7}C)8egyj$q#rtyMJ!e*ra=US`Om*eHa-EPVFZmLAW2Ad63d-J
z(+FBb&@zH%;zn~p`m_2LT19a97T&tyXdOXE+Bs?QHWB>PAd{qh1RWyCil7@?Bj^-C
zmk2T==p4bs>o{D%(*G!eE2mJjPz*7pZ?~Ce@%f3Yu8jOOtJ*z+9uf47pkD+%Bk0BI
zZhIew@rHxXjp-eMp><12bvC_)8fOsK$o6pr{Ui8<bBtgBljKB}lkwSYC*ec}3Lg~p
ze{clN>!)%eL%FOGOo)Ishea@4CN(O8%_lKJaAbtntnj(;+Gl&5Y}1WRMEXBkl*dFc
zmP-@C&LrD-kuWR_!s3(3BooE*B*DoMe8E)bQ-C6vCX%@NsZ*rmR6+W{!Y5J8j9^v-
zYZ=T4zKY=M2$n>!G=kX?%!y!L1oI=jY>00o@SIJb%gjHInyJp&g|oQ&*{iTXRypOi
z6|{vB{Cf?HB3LXW#3#wzv?R+S_%4DUBKVQ}NYda;gG?sF_rgi|te6!M9PggBDuO@*
z+e+cH8>couV+mJt!`{Xk!8WPRbrGzOU`GUhMzBG$XiEgYM6fY}O;X*=)k$@7m8ZTD
z^D_f=#>%v<5&Rm#`%O}}NqYarS)ax4O#W2oj8y05R3~#jhR^?$QMN}w&Ovu_cB#(4
zBG?_lt_Th_va#Cvc-Ec>{-&!Ds1fXqAe`#lAHjhL_6cW|nf4Et{tP@3C=ncF-w0gd
zo?GPY+9%Vi%c)N4Fu}Z%W<HKv*4b-edg-!Ge+0y|0vW*wLJ^#lURne?XB5Ga2<A4h
z8PY4v&0E$vY+-ue(};-N6gfBVQ5o?VGp9{A>T}gdj!X3f)A)u}J;jU_<7Xl`&xMQN
ztW@dPIU$|OIvX{%vC48Gf`_Lqa+!N7f_F`%nfNb)t2|Ln<TP<Dg6k1Hjo_JVx*LLb
zxgB^uF#k{EHuq^m+Z}O?Rq|gJrr(R;KF^Q^=?@}!6v1PT!tJ@CHwR*xJ(0~w(!Z=T
zG08^qJc1XDm5EprFFBD0HZIod2ww3lI+68$1uM2p6$(k>Ol&!s9B+cB5Z5Ka#JIA~
z9D*baLM{`zO%yRv)I=T=c}>{Qrc*PYiToxCnRwI08zu^v){~uTpTmN(&h=%T1x<^y
za2AD4e1E<S4~Ok<SO?C5vd%6%^h_j~C@$ktm~0}&L<JKSO_VTkq^z@~iBi$l(k8Fb
zp`3~GCQ?nyCPyJQK8vy@M#(6N=X=l&%iXfhN+v3sc*jJ|a?UCyVB#$kZ=2RL!Sa@K
z+GwPl^ZaQXID@L9bFY!DhKXvzs|)VtFTcuJLnNJLE@j#&G*L^2c5rH<!`9trEwwr#
zC#h?qo{4rQ+M7r>QQt%}6U|Lzn0U{`2PQsb80D0vpYNNNw_K41CK{TkdL2zoG%~>_
z=QL&nZd&fOD(56=VxqSYuF;a-seIB-3lptP>)hsX*HY}Xl69=`Mob$MJRHWCbG9|H
zq?~m!cQAQ*2YpQRHPOjLXA_wwx|-NtAcJS)M~r-v)GlIVTVu;Oy~;AJ!@P$GyP4>2
zTHApcNbE@uMb1R(Erj~Nm2>tp@v(`43^J8P&a-6zo&2&CANAujt;dw<i7~{%T%Crt
zPfQG9+>U3F4>j?riP6%FaTsP|gbAKe<iky@DV|Eg@|lUxB~aueg^V(xlykCrv79q^
zff&BfckGxj&ct|HHZjq}`nzeFhcU^-WD_sA9ZY;-;!Dom#10cvOiVSg(8MAW(@ab^
z@s)|MP0TPcZ-R9*{4Bb`^qyRjcdFN`lE7OlYu<^SZDNjz1+-H)<r@><n%47wR=%4!
zm#e%kaULBjX&a^_6X%=O6SjwTw7>3dpZ7fB!|wLQTok^CH?i8pQWML#HB9`#lc8+l
zcP5rI0g^L#Yx=s&){i63b+Z3xf_L?=H1Sg(`wHRJ9bLQiwND?Cyx~sl8WU?dM-v;E
zcznF}ZTw_n9n<V}968IfbB>Ml!L)vYv6&HwkBRSSZ}K{h6Zu($=?S(i%+&<jFDABf
z$JNVX`BlhoCVm&PP4ExFrSmIO;ZGAgxw1UmOzbl8mx+@mPMO$kVvh;GiGYc}P3$$X
z&%}O`Bgx-(w|*%z=ScDa)B4fMKc@9-h}Y$;->@7MPIAbEOIpd@COlEDnD9oqkE#1Q
zjtZ)YAeUxHif$qlZLO5gdSbRl&r8~J=#CxnHiOIB!5$Wjm@tJL7Ca)z)}um>2_6?b
zAy~dn*V87>n7GJlm4ve<PWQ_?XX3nxXX8uq2NeG@dCJ&|4Y6M^@oKg8=<Lh7gF{nz
z$;4$7-TG&-OzLgF$|W{&m%G5kbrUyu+I*fkrcUBb6aSB{>wu4{c>W6rVg=E>1FqzS
zzJbWqTmmsl2oTaJ0WmZ^k|TGfT)gCnK~Yo`R8&MzKtWXOT}12+6&r%cy>~(UNwa{`
zL9w9!@65X+3G)AZaDCZ2J2N{wJ2Shte~Ub@MSh>0T2knIy3CpKX!h*=-4AjOUN1-f
zkuCD*7Ww-Yc^tyllG-%Ux$tu5F{avYK>PLCAm1NbWVeaVzksxFvJd?@<xl=tRpLZu
zdH3vpw#a`WvZB%*l_DzJM5QGvtx?%FD%(Zn1yR{0D$j_@_EC9ORGuA`9isBgD0SE|
zD$5Vb#er^M8+;7@%5zmp<~dP$wVHZfRGuG|=SJyaEBtx=UQef}T-P?Wb5w3K(~X{i
z2io9Id|w!q7ooQ(Q9N{(*i!3Eib_+@fD)Clv$IW6*)=MEEOjEs8JUb6AhvsyC}>87
z1F~wO(-xJ<QQ1E#2XKxWl|3<TRHj5_56=0my4|5)yMf}pqq0v_%BW0@(oLwoQQ42j
z-Tn{p%nD~_R?mRSOj4w#?)$V`T2x+)$?om$h|13`sdKe%1EbO&l_w@ScW$M0^f?v3
zn^T=pxw)gjhbJo2qjG3e=0>GADl?+;(kMZg8I?749R^2b79(U(l<ulr(Khu+-Q-J9
zZJhIt71`NQi9dgsnf+Yh<jbORNL2p5yPdhNLk?E}a^7@h4vWg+Q8_v)$3*3bsQhfN
zXJl07!w7))|D*EZAn{m1l<u<>Md|ujVN_PX)9pq}D(+!{+{IBjDoPiB@UO9G(AcOf
ziOO+NIX)_vZq2^DXW+hC@55^9<xx54hU^JZIe&V$hpL^GB~Czi1%vVS`0f*<a#B=I
zj>;)fc~w;UqVlP>?Ql16YE)hsrR#wm4!6OdrhRf+RF)wpD#KB_C08Dm6;T=BZ+}!y
z=MUpG_#k*DDnn7a4ps?_@kb4S=MQ97Z%#%!$=d<{@PU7|Tom+nsEf+_sJu5Si>~oT
zqH;!5-V-I$M?+Lz8<lrN<(*O47?m?oLCd^})9X0Bfz#`wau$D}^x?gkNN?mnXLCBS
zL)Ohvc?(d=f8G|AbNS;|P9r@7^Z4U-PGPsf2U2u$tig=O+2-?~%h#N7S5)53-wS#M
zdM_(o0NS~(T(o`?D77#u?~BSs4D-4Y=lq~)F@IwU_wxr{5?C6An}%)^cW;spM&(0M
zxks0Kb-5hIpQwCPlaFcg;iz00m6vOBf+in9CfEr~9+i(p<*KM`ips5^#SZy+RDKYZ
z9|D-Dd=j*a%BLByHBtEte*pf~QTZ%?Kga3woW8*6i=4j1>C2qH!fD^X+Mwa9{QY##
z0KQ*~%C-FG>zuw3mFw@AgnayalXKqU^leVx;q+Zj-{bUsPAmUxvo1>JT>SegDnH`y
zk2(E>)AgKw%IRmEe$MF^oPNpa22Nr5G5Xoae{SORYfd+F`VFUBIE`|uajJ6~;}o{X
zZ}|gV{RC0Q-`{ciKTf~rbUUXzINizVE>3rI`U9swa(WV~pZU){obKiH7fyfWbRVbt
zIX%GXK~4{GdYDtdb_{Fqx3<4Qbb$IC{eC<u|A0KyWG_wr8I^xQoNBV0CjW*IgM8NH
zd7AtuD*uIe*JKAx3Qe}r<oYSuXK3<+o&khnw$<d8o&o%8#~+2xiTis7DleFNrY1XT
z@+?iZKkk`5IeY8W>|f?NpP7?&Hs>Jo9F4*x@NvE-J83dWlZqxgYw`k3cG2X8n*8?q
z(tqbVZ}VlJ)r$t|(JOF~Ci5Ge_=iZ0tX_fjnG?~236LN6l=KR8*Q8ma7ztFiXws_5
zWKF6X-B7k^^8F_%lmg#qo;he@iY9w#6qx$N;z?z_0&7YJeUIKW*+-M<n)GV2uO|Cx
zvcDz=Xi{nvR#Ey<X{sh)yVm*Eib;sOz;x0y{E&@wXwr$wjn09ZL?EkOquA7Ak99+2
z2*OBQnsjT@14yzaqU{}{QZXasU)L*uKQlC$smWYT4g)Zn9IVMpG?}f**{dvbE|{9d
z;||X0hS4w8<Yk&1qRAXaAYwug_>q0h^u@gbD8=YQG5w-J=y|v%M`&`CCP!;BPm?1V
zwjxgRIW6S0K$DMW3_`;fdIgXcYh>hq<NU7p2IRof7)_4VWQiuP{w5Q&7|$Q$H2Lb3
zY~-LCkamS8OEp=g$!bkb)Z`@K{E)m-lan=akzf@}#aw>OoWg&?1A<KW5m4tUuIb}+
z8mDEPmUHUobULRMoCY`za(XqVm7K!AQ=`d{CLh$~Lz=AB<TV;uP3LPetjRh}-lWN!
zHCeC8h$gSo2&5UBY~YVZPOsHu<F)OO4=*|V(KFFplWpImFoWwgIZKl_aJ3sT5iFDQ
z+P`%3BqL4(_4|C0g=)8GaxT}I!zprZ)#TT&ce{=MJp7ht9)H}f$vZ$htrQ;WI}<hk
z{Il&{n!H<+_h@nfXD-p?z5KC=(}kM64@={26S|$3G!+37i#2&aR^^KnO7Q^KL5I&h
z;aSSx$Xv#w<6}AJ02|kwXtN?w`miQf^7kX0-Z_zaUIk{rI@07{ntVc&Pik@vSRLQE
zCDFMn(x>?QX-=Qv^jS`y<Meq>U*PmbPG92mWlmq=bTy~1atgV<R+F!5@?9($gH<&7
z7B;4?S-TI*H#PE+ZRizvn~U)Mjs^o)Cj3h8L+of$)1<D+4>h??lV56bgC;-H<i}Y1
zn*0oC+#!eE?)(H|N|WdI>$dWE8(?6rzq_|n+s`$5(HhSe%pup8b+i1@rhB^SD@|?$
z#x%JZbo6&e<xN}xMT3sWZ}@u)rzMYgp7D2&@;64YI?jk`vPqLaYVs#dZiUFw<aSN&
z;0oI``JE>J$MCH0+!bSe&-vf~nEC4?p4_8yrzUr4@&^z%-GmDTyESq~Ty~;O_UEM-
z7ynS_XHD+W<Pl9C)#P4H{-VkKnmhneaH7qxn%u`70$@xHGsVY2h={A5haggpl8+cE
zZWbJ781QjSlbF<Rn*5z}&<cMZ=T83MoLzqtu8{w?CQoSc0bMT9<v*JISCa#EY1gID
zWgA^~(`9#Ew$)`jU7oAU^K^NJE>qw3oT<x>{L!A%4!T4fFY<REk!R`hY@Ht+J<_Jr
zx$Sp-Q+kdrA7AA`9P;_P?4-+!beW{f&bqwo9+PvIrwdoU0BJ9Z&Au#u;)S}r^slz~
zR&+VS)D@A^U3F>VYRDY+bry2+O<m2pwCJ+8F8k=xs!N+L>-u)<smtxTYO*d<blF3f
zsxFspDn0kBtin$Sw%?AlLBRG8=e9@MOQ%1P*;kkSbU8q$U~j-Fb@|n?wy79yMK_f8
z=W)^J-y5^ixDKjatjls!S9~~h>BP4#{knAN(yhxvT^8xmqsw$%W@93{^y*R;rw-EP
zVE)M9G*g!|F37?Kz${(<eSX%vLnmGWE$${KzAw8V>%oxoGF=YQ<#1pCB)BjuN0+&}
zeB=DAp}PFHSKzJ-vXD89bC7vK??9d|ADC5|ugd~JvTD*uT~<8k9nm?fsdJX4bJqRE
zspU62i*-3lm!-O#sLRp19K+4W>2fTCH0LH~i7o+2UYD%2-U0kMUYD2aa)K@o-r~H1
zD_`0>fNzXArgvZxk2qDASL$*ye^22QlYL=U=~cS)>GFo&foZxt)FrE;cK~-kKUp~G
zp5B2nT_VL4rUOV_-lWT$bs5lQ5ERs9y)LiTWu-1_b$N|0tANQ{o#?Yhr~8uCoVM?r
zg`AKspXwdJN0{Nq9RDdb;m_-aPK*G(x@^?tOkFnU^1a@HYdL+lOBTK{G^TK!F0aSj
zXO-Tl%UOV7@^s(|)5o55gHF3!d6z7d&IWyNcH-j}UCz<v9lE>|m1mXS$_Sauc)m@S
zkDO0P#_02OdAlz0-Dy@Sa5Z0-2DEo`=3NXbasa?R+;#zvbuXt2IlYh5MVv0?^nOmU
z11<$WV^W9YHeEib%ZETO%nO{O%N4qOL6<M;@?l-B)aBE<d<IbI@=>flT|S}9$G}Us
zI#=m*rAzA_z&CEi?*4c1(4?#<fl2WBVJf<UZ(SYi9q8C6@T@MM!%FW%zHFq=GmCD%
zU@Gosy`;;Rb@@7wpvzZuJkuf9=<+pP?tHTp=z3L`=j5kqxBHO7KfV?OElyqiMCrs!
zO7Z8Lx_k>Ov`^q2UB0bLT%N_ay}D%K`YOJ0bt|h+;C)?wpvy0G`6X&9Ss&{1Q(fkd
z7_?58AL;UA41E)|`UKec%(Fqs8vW6v^^j4Yd+_IHSlSn5eXh&HpLuYb441+-U{UKb
zrpqQ>ZiKMX<rZB=b@{a}H#0)AKKJ1I*f$V#H#^Y@zVErkiJN8XKl5m)pi5;fUr(Fk
z#KpI*;DOIQ-!eSM-#f#&bXL-bT)^Kkb^gcc_ndC$bO)z9Io-wSZccyT^hZvA;`C=u
z;rRYVm%r+=e@qUD$$h%q5Ahq5=f_B~IiSlE5Z6Hd4tbE%L!2Jw^a!U%IX%YdZ=C+l
z>2Xf~;Pg*U|Kjv-PH}elmzfRxFJiK^Y!EJ1<GW3aRzzD)+i`jZr|miI!0DNscI5Od
zPS57_98S;W6g&)=JH?2Htvr{`oL<0b7fvta^de4^I8`_`aoUyBZk%@K)Xb@cQ^1d&
zZQOq{rz)o@oc7?fC#StQ?agT)PWy7&k5kEMDyN`DT1;LXlYhkIpPVx=CNGJ}Z2q=$
z>fqGLsf$xLryfqzIrVay!D%L^gE$?`X%?p#>r$S`wK3Tklb6NhkeJMg$)PbhH72i&
z$=sM67L&y>IVvWH$K;5ZEQ--?n-{|`ym<0sbl(Smj*LlM`N3770?sMq6h+m2Xp@~=
zlRY{n$AG>uIWZ>3#$-uMUe5iD<9<49&Ke(+bNkS}p-o?B;ieB-O^C@WxDIyb3$LZk
zaZ*f9;T(KVj?spW5Bz)lz7AJ$zCR|X^M@}crzL8Z@ke<~-hFO+RIZ50KuktBGZ>Rs
z$7GnlD`T=MCPOjOH}G%Gy&b9(-!=S!=^(#0CjYMJeoaii%+=~*vOXp|J~e5_#;h~v
zml`_BjF@cTKDXkbwjVNQ#^iM|xj81kiOK6@a#l<}8k3L3<P9--V@%!?lM7;Uc1+$B
zlk;No_L#gmCT{^?zh&MQlZfk{6T@$$Qb;qtFP-IF*@xnR=f>pYvz(~&>NAt>h{-!+
zay}5kt;Q4&TH7apSl_$3PM=v$v_+H9i<9n+$%QewG$xmU`ddBs#pL3cygw!vF%Nvz
zCondY{Q!{g;-r+MsY_yVCq(gWK76Bxv!j_0#^mytToIEG#bA%kJl-dO^kICjoU{^T
z{VfyKF6c|(JpyXZbRuUJV2H`r(SJ-n5tC2G<m#AwH71{m$){uTC7>}TpNYw58Ppdr
z-<W)!C)=}c0P}q|oQ-MX1L=!k8$bQ|+V##?@ZC4CHk6GKGy4XveQna3m_+_sq>Qx6
zz5z@e|B(4+OuiM9pTy+)n4Hr$@ODhT7nASD<U9N)a^8)}2m1yPjgQVh;E8-3lOHlj
z$XUl9AI0Q3Tmc;-^V698EGEB-$&E4jd7|c*G5H05cN&q3IvX(Az5#q7KpJp<&O>a9
zNkH{=jDr8a-XyogWHcuC#N^(X)R+q2#pM5DQjf`4Og3@OR!$LS55(f%w=ubmbBvJb
z?_+X%Ozr}|apn$AcXB%Aoc5@H=nQK3Lrnh2nfR`6L&wse_|KnX(m7}{{`>_X#pKaM
zoqhaqFedjWat?r7j?!WF5a%3D<R9UWTIR81{QX-@{vMOZu?EYtAK5}Nc>UT3{=&lH
z(zBc79oN!>0Qh%;rSw0X{>!OoqWm_Tw&k=Pr)O~5p3@GTp2=xPPS4^L(*B$#c`kly
z^{70riEwp(6IuW8fq$Jir!%J)aN32_3pu@r(<Dw6PEDM4<+K~8koI_b#oQz<cmfU&
zh&55@8eV`LgwdO%+9Xq&WRE6!ag*%TuIrL*vS*Y0?1#*>Ci&Y7&R&@HYuUXy?Zatb
zJP^kplG9X9QKvtD48Tvy_DaQ{@2Ai+Uu#CC4#cBaP14aMo%k)(;i=vxnE}Tif4ezF
zrl(1!C%!MZY+xpTXOHWSq9L5Zx;wZ@W;Mx6nq)R+(VkwCFXWF)o8)Cpa!8ZR;XhGS
zz#l_7&E<4hlN`<;BRI|DbR?(woTAmFcI}Yj*UgHWWO0)m)g(v5y51zKn&g-!Ikrg#
zn<UU!f**frlH;4?<v?A7w~MXAul3$LW_Tww$t&>m)^!8Rnq+B{eCt&YzNhlXM400F
z1DTWgV+yC4w|P<LN^W%(r#?=n;WfWM+M)<Omp4g&lf=h#PVrIEBm;@>oT0w%-8x*|
zB-^KE<82)LYKi|CrPWRJe&(Z(bV#+k>|#X3S5q-F5Q+$K=|8rM-Ww2d+r_w0Wn)M<
zGVN)0yUQV*d(`~T?VW`XyC*7vF%G-kD~3mmM#Ha3e*D?A&Xg01)YSWeHR=doy<fO8
z>>kndbW+h{ju5&SRq1Q=Rr`e3jy^M-=_2z3RrzTk6%|CnzPey#P<S0Qo;zL0chy_A
z4<tawhtaGqBAnh#6xki((Vx{PHrhjOhbRrz_$opoJ;Q|#?JhCpdv)<fH1dd&K(IPg
z6RPu5pC0NH#Z`~1*N0K;z~t)dL*XD=Qjx<eEIZW$hXG2uDDu@u{34y^osp3)c5YYi
z_=vk4Kh2M>oN4w<r$h98T)p%Lu0L{Sq#7V(0t6ak-8QxE4X$4hDaUN<0lC-hrb4&4
z>PfZW{(&L8UF7>}eKiT}Iz{>(b<*ed&7KS~G!Ut-4TNe$Mmm~^G3~8?EKc3*bc!6%
zs4`S39Ck;#U39v~y8g4&%`Ok+s|6sG+W|^Wf8Kh-7pa>;rO6AdZ{aK5Aw~z#vZlf(
zGMtVKyEw4UVx7YU1-{x)O$B9p?c&eREt9TG-R#a31tGN{QZK|a+14*D{Wsf@6R1K(
zbsQj0cRQSR@p_WY_9`lS#aLe>_2C3R*oAevwd5CMr(+hO8Z{>Z42$%etiODZOq!an
zras`CM%hj$HJI(UPCvJQ%h_e7d(eE&0;{qib+f|-;Dcp>V7*9ZY~1{ZRb8J-AQk&6
zX^4`bIxgU=uJ(m}fcW|MEw0yrlypYQ*if}_xCkplU$VxwV9HK(7pe54<|R*CN@upr
z$#4-oUp{ZSvJo9P&_8+%1RJQ^ys%}h=uhlD)?erMh06lMWzY18C9fqlu5j3a?7Kcz
zU-^2#W=Do74Eck?&69KVu-)@_>SnJ2O&%6SaRopU^Lp5RNdaD+Ku8dzQHy**;lc2B
zaoKpAelO<dCO}op9mPVpOKj_6$R%um1RgJu;J!Lr(u=1uhQ}@fcQf6c8KQ_*H4`E1
zs}?Q?5&!r1t?xPeZ}vJxsjn_nPkiR0p~aBx*83+hB?<_y1wMa`a5GG+k652iZbc)9
z9VMb^fi?Rpp5FL!v;Y}uFmvXEc^BC#)A|!Sa>1M>n4a57F#EdOs(u7ny-c6nh~FoK
zx1X(34|MNMkaVoCzAOM?06`%xdf(b~cK^*DSE6t<hyomXT@Fn3mqpeS?}LaLyf)N=
zDoiue?f^vw&bQo&)p6QRiO_a2X`S_q&iyxoIcWU=+kPP)T5J8+&tMn$LPET2u@wPY
ztPQF%)`uF4$}AWDgsf(GFl)f$&Y(UI+H9ruXpgDTaw!O4;^Gm9?V(-?^dS!&Z~xso
zrbmA}t!aPo>L8K$kGoTz%}m=dVF;*J8LX=JheT$E)9VpiKk4!AhK@UCpS#)V5o1F^
zby&S{GsVX5wGPfRC>HkBfYzWFE#xKbY=<01J}6n~M}b)V2j2b!WNw~HK~;nx`{`$E
zoem@+GZe<E^b0r3kez$116`<0t0h=phrX*IcG7v!4IOQ{>#&$vsx$&i9$uFR%WWS)
z9-yltU%&^7hp{|C4RP%OYiLk^l0qcD)CmNP)GSXz(g2vz0YA}tS_E<hn}S`;J#PK@
z2NYpL@IeZK2`fMwTChF-vTl5W*_}j7jc-~Ac(4;ozxIoDFZk07riuWSF79aDHfvG{
znRf7bl}}_c@LOhBRzW;rLAKynaaXdfqz~}r!kAUyJK&M$)b9`L%pByqkxybP>}!B1
zB3^bA^F4gj8o<mP=?1ZLB0iDMym!tn>&Q(QCDXt)qv4u9www!@CX9w+AEdYwQoP4q
z*2SA4Z!!ffpGIJUB<7K2)`1#}(Gp*My)O`~6;7V&In%9AZDS-*H^ye*0t-KVuk}TU
zOIHTL0#Ladi~um-U1Yr*Mfk!j06s8BV|ZB_+`Qa+?8#KHpO`(z*4f*)!U3Rxb6-^?
z3|$}?wl)<ZGhK|1)POs%vatJl3T)55-KPQqrXW;R>8r;w-SM-{aikx&23)?XP#9~)
zXuT9<E{FiJY9aQuNLYAis}M_%nDhQj{cj-?&wtQ--(M&M1N!TIRahWuK2!kV_PQ|s
z%?Hi1kDsO~3-GEV=A^$<mqP6r4Wbd3n|GV9IkW$1I!lL;7B3wzKk&zCI<sR%i?0rw
z51kH3+PlO}hs_V65CD}_Vxtd=4D2*^am#A+nR)$}Vy_rk8^S)}AW=E3zvZ#rsGEri
z)c`}nfrV-p(LBp_A0wOO07PhouxAi%CX`wZe8IJIFzXt%&|mATLz7HM&=JEe&#yz7
z7kh`lIuynL1k9m<mdk$N>=Hkupij7Xn=Tw`xqA!uG{PSWSNPR&p#~@&&>!sLjC{+J
zG&tBkRPR%Bz~B+#@DOVcoo=bR04O_^a+$P5R~|BV0&&m|TBBMNfqcMxX!{gL2U{NK
zh`D2*!a53LUjx`o(UfVHlJiiKF2?#I)1b)_1ZSOXInn`{q{0Mz6+tM5yl+<QFdym6
zmBBb5VvTSzSToMHeCj<VpIH2pvn<cKIDeeK+8?e0+MO(qulU!T-<3&^<x=ho3o-a7
z^Q=Pvp2Sf-Hdu^XFO02!^LyqbJ3~|A5Bsa9VOTHkb1Qb5E8C+0vJJSc1e6{R)=9?=
z=Jr4mpl?y1uyAOH`Ij>=Di|X;Eg~{mnB2C(yz+(tlvxmgJ_D3xy0GzzJ6D@Kjyffu
z=9K%Yxweq=Axndm&?z$0i8uPLH+Q)n`A#UfzJNM}wmdh3nYrIQ{<qU|GKAoBhs;4^
zMYU{39lm_P>_5gVl7o$>UM=#6>wQ<FS7KaHdxYf!@Zu@s(Kb_bz+8NkQJEhKgu*Il
z2nK?}k5)InWX>-%)*NO_obC3Ks6P9Ec_x-FuY)j_jKf8IFmj}2-lsf90Y;|Eyp+HC
z)%@*0sEnl?3fHT-!LrIas4F-i06zsy=C6%a-D*N8dHbN*2|R$rSZfu2Y>kj__dRE}
zO=N&_k%<i!V}M0O`Y+~=w1`{KmKK2HEAwNt0D$EP7~!P&@nGHc*>BGN{XZBX!Y|%$
z9t%`LT=I%42tw9Ek_wz6Q2O{)mT_rmrz@ql=U-`gluA!sa-abg%3<?cM7{qM5~r9B
zo7bMM5YoafE;wX9M)Sj|CgLlf>8n-=T|(^IZyw;}B|}SqFqGNG^44XTGQ@$u8WIGH
z&Yo`15X&u=T;!vN=Eazf9rVOGma4%9iT@*`?c$At=4VMpLxMLm0K}JRpZQ56za`md
zj&~g}Zw5P2i`M<6Ginc+2NL5DL9oFDRjLGa6Nf&uy>Xo7i7&Y=gd)z7Ag&XXD&KFu
z#b6*~0~#Hy!rToRvuua?&rUquAy<PNa4-UN8!oY&1+0L8MI-<!aR|!DBtdN{vV7I!
zw6r56-!;{;glKoln#A^g$9{7jafB0_?@7+~ioU;^BmZJH9#IUCXfw_LxF75`zlz+`
zV1Tv|tka{|sKBZDtfP2Yu0}VRH=E)@sK(bol=M2F9*U{k%}!b$r?LzSqp1hX(@&hD
zMtE@0o_&Y)#whd-ugHUfsE($ED|!a44?!h^l3hTDKp~FJwygUa86Gi?7Z)*_T|BtL
zvh+zlnT-p8L~04u&0vM-p*0pdso+#rg58gfWYExme8O5l8hVR!Eeo9Z$**NTi<C9@
zSjXeE;qZv@P;mIv2l|st#Gbp+TK`t-zMx$5`QRWlv3Ot5y>X_2R)iAgV(X^n5<`)4
z0t4;tweE&K)@pQGWDhK|Zo*;OZ9uE$;J9sv<|}Tz-I}uXl=>db?)Qb(FQLJ;?gxrm
ze0HZh&tUZUc?M_tA;91`7Mz9{w!Cb$V|=4O?BdX(#~iT^!?}X=Pw3io6ejvZ2PKT`
z_}1F#-Tx?rjI1q-t<|3=x-xV~Cg9f(T4!VG>CjO~=>&4chFdJR?nM@40?r4>xc?Q)
zp}UbmCj&l5XOQ|KZhX#iE>6uJ#tu{h7AQdFs@0rn9Ow+SlNkcoIYg(07PO~@EJiP6
z8hfyFMqnK=S}<@cU$U-v6Z0_+j-@n!BZJH!IN6^E0vJso$<!Rypr3foIvn%Ik*OpC
ztkn2wVO7DoiHrdoW7fgN(8Y0TMBV=!jd5m#F0U41T|(Q$?EcWLKbiVBKuMlwPf61+
zZomr7iPSdw!Qp8YP?P^2nDWz?$Yyg?1@s{y{En1e8fT3FtTn!BuK3fylvP_fx5OW*
z65^06Wdikw`T9dGGrV+euE5DKtqxcp)h(s}7pUeUb5{k<C*rl<DVJ^MoRT1|HX*)C
zO<A&ub8;YX0h$o!*;CeT<g9{VbuEsazq(U8Y(R!njKoQR>*QUWvS!1@ttmlse(P@Q
zSnwO<zhOie=feSzcje5pZ8IML!o6a2*jE;a_-ci?E!TR_%gAd!6(>&V#EWsRMhi$4
z6=o3O#p%N?dQP*Fu?Ad_3+^p~F@Pqr?tbf?r>;y=H^5F85kwHOpfZ^hJa(KU#Elbd
zu0?#NgN~;T1q%o<$ZGqOPIQ@|ewgsJ@NMhyA^kT)0~rF5)#$4w+YU~ZPPU|caF?~8
zne8zp*sd9h*c96XcO^K~5Dz4T<0cRH$%z)j`c)}#l0#vqN3BPG286WzL)Q4{qyu*Q
z@)FypkMLoR*A<R2-gL^3)LPr%Ea!GZlLsP0&`aukpwi*Htdn<feVR~C1o=Yf)z;~-
zp+STWX^hlE0HPbnQBZ2=Q`QzT&H$CRESUd%U#5nzuM`C9eU*)ox&UiuutQ=MeYaBG
zR}Jf>Q;e!3mDb}X>m}B;{X<pswui9I43CidQWt=!&P#>h(p&bZrQe{?fqknEC3I3I
z!zPZed$*{8DKN=GGmF$<K<Kzwq3P7lDL(yK-T#g~1f{t&R2jm7*e9GW2g<Mm?*Cpr
z>k}>;9=SSL2N_1%KFT0XzW7!xe2>ctkPkos3z>&AAR#~5sUH2*9&%xWLs>-##%8ke
zW}w;rL+TG`hB=TCkKhbp4g{#zAyW3JMNtNHc%-flSj_YikPhMfMP2lUy#l%^mTWm1
z`6}qd(6?>!HFx)^Ak0@meE>?z0R$vzx+pJAo^zCs$8>nd`Iy9oOI+r+-LkX~bu=VU
z?JwsR;>4de{mwpglx|VinW#%Dqpu2QJ+hP08P{E5du}DF+r@CG|M5QdZAcCc?OOqo
z=K8CEUvZ9}JonPR1lx#!Z)VVd%?{WcRCHnl*DdxpsPX!>TaveDbN$PKm>TF2FvFs{
zTSUht*QVeAPkJIWAM`zAvaRhR1~{HWyEBH4=R>kW*MeZh9*q1<w-__SI%X|nqqzY#
z+eCxruF(+;h>3gv55oi*2As49IE4A8<X_)lAY0~p68Y$-*jGXI-Q1C=dfC?XcEfUk
zrEAz8$S4IakJ~RWM63A%tMU1sT7uydB_0ULa<*eUyx%tKETA$Iy_AP=jKt|W!|C#P
z#1;Rut$dUz-CTk*GVFi<PYI?SFTu#gArO`fJ4Eo@Z;}@fZCPaDOzI+wRi+sFjP2+9
zc?3u@&W3^2@t^EO29T3rFDUPh1bd;QvA(M-VKJlg7FZNOWaj>dxS0u>w4xQAw&Fy`
zIxh-VVdJW?sh3Y?T3?Q332w1e+QfaQb_nG&(GW-cK&aM-rsgw}UmA{yIz?V%Ih1u;
zPvQ@&?WtPO{3O!d9^eHwHUssikja6ymmpKRD2$X<)`S|s$(Wl%T(ls$(<Vk_^Xj9c
z9u&vK8f3#<3r+zg6PB)1i_+6u7C{tag9u01=n2{R|F&``im+hDMJfVhHsFcQ+mw9W
z5N7VNkXrQ#wufYFn4A3mvy9S{wl;8Z+}75b>4CdA(*rR@et(#pHNjoUfwA0k0wD=h
zpwf^EFs&0u93ZIM^5peX89^<1!ja$!&>$bMR`CimTDU}V;WKEFkUJ#(pb5vN5A35@
zkR&R<dm{PxAO_(Sam01w;>Zw1)CG*&@h(8=5s`3(4_b?ZY-<iNcw_RE4DRX_sq08c
zT_E9dY!|RH*ZS(AU<nV@6L^lEO11S%>sJA&@_j*?gv$<A@`@K1ChHyhR<x2^kbRzn
z+-gzKBC8+-hvhVXd4!~#0~pvDvD#ier5ltuTC^DruC9je%7PIkS2kGRSo5DIndvQ>
zv=pV7eX}Tyi@Fx{K1oU-El$c)(1*#!(bsw%XSx#0v9*}+Cd34?M?+JDbr{A&7sNzE
zv90r)ysA&~B(&yco;;Zg0n?n@EdK4DlOm-R6M7Snw?H}xCU^<rQ$M8uIz%&0nn!I3
zON&u4kLKO$a%lM2D@e+E#IvD<m}-&jN@Qaetz`z_iOY;rB&aj7T3W3M$h$a0x5~y`
zPMgh}H0|H5YI`#hwOdO=uti)NHnVnuss95wD#rl_z4Ag0VX}KTu;`p()gIgT2YIJI
ziANlsnyGg(7n~c<ZDHvrqXP~|344DF#{dW%uMW85!rl!NJKQR9k$(zJGrgyyDVX;(
zuwcmM&g1*C+vCDHB7qd*-Gq+<YHV{KiTx0hKgsB=5DpD8A%<G?0S|w3A18apCUTlw
zsPL!B1vkWVn+e9U$eAD;P?nI@w0U6}$2Tts{;`Jea+7hzA)bHLcHXbNIV99Xl9Qg3
zYT`+?jg&MTdlE`oD<O!(LP7|Vo35tL7Y@z9+904%ws1l62Oav-SB@`KPoW@#o=v$p
za{%SQPd%N_A(Qr|<gQ4gth`Vl0EI$a{c_4Pvj>n#_rLaIRO^;!*-gHTW_JkGi3O>a
zwY%8T#a8&Cz8U^HL}Fl15QC4Idy+M?rJbBK5Yrm-FL`YDKE*ufMKjU)u=y6U$>LBN
zsSm@{hT~B>ju9EcyVtyv`lCY`yc{iTvScOu@k-0V{%pB}?-=JSa+=u175mJ~53{kc
z5Sf*5`w2T3-z$7ImaA6(XBYx|<sS1E8V09RxFBj8g8|qe$r3()ula^HFwi*!Tgllz
zo{_MR6Vh6Hc+jFI&yw^JMu#Q{VGID&A^2ZC#dn}|;V_FNQ|GC6J?Kkz@xMdnUWW6l
zg-e3wIe(WqpIjI?48pBSG)GvEU0j)BsVA=yxupzqJe?fx7-`uGb36kFA4!pq3=Hr-
z!P>HVm}LuK!!&cyfIV4m^0$fwd(BZ1w?m$Eo)Ady?lhOv$np8B2`>SaeekmR+5FSk
zDA}ev{E&GhFbXCoGkzr;h-CVAU`IKsnfJlV^dA)1-I;cgdf5C3x$ORHM#jnzD-N0+
z<n4n!*3Y3YZqjhXPe;u~Ms_Y)zOgV2Ut@-N{1BHgh789Y!lgj&e9N*=0GwOo!oYxI
z`Z(YSx*;9yQFrmz=EYqY-EkiveCOhCX;}rPM{z4(928T#sLQturv7LV)z|yO4RCk_
zpbHVqee*4^t>>~KjsCDYvYvc1Xk-`me9OJWDe&LN{Z(Y!7TY$ObCmz092;P>ce16^
ziac~;|88?<a$5ZdZ(gvSP!E|m(faa;Lf<r4NJNI0#MPC<EIZCUozudDxTzzD%|9C}
zFURkTOvj91OwYg+d*)f1l3Ol1I)aM#_nRNUq9fLVHVMOrzn=WQpcD2kp`K&Wn=sW=
z*of3fv3|Ariqo(W`2g(V$bR#g@Bv``kAuPuZyZ|S_-C`cQhz$YslU?0=GDepP6!1O
zK*#o*bB+K4(zxN1ggy_28sb(w+s3l_LPj^!ClAJtYQ%0)Pv?JVe&2(lX1A~14O7;b
z0?SHxUjM_u%!|rFb9dr<2rMAlaDLK6W}j`j3eL~d5Qs+dA25GH{t*|B8-}!i@5U}B
z1}(+s0{|!K*9fwJ<ph;GPqZx9aGLSijhJ)T{5g#eo3G*eD)1AB!!w+Y6OY|*xq~>H
zES42mE7$<8Z!+J|7g;S?3WrbFpm&%(?fbtEyXj-knGY8ApNg;YZMI!I2W%ravBANs
zDP9<ve1F@Ex1lWKyyQ*$(qI7-<$KiK>)FmUE(H4;2nRzGhu68qi1li14I6i`DNVzv
zCY`N5ZqeyS_3IcLgkT&54RA_#p~w#F^_~OjNZ6RLP!QW!7bz!m5Sf@Vo#L#0YS&HN
zYD6Q>_BbF@0pfes{He})m)ndBRpX#hk471pX^wQ9)#m-8uHS`56aZNn35TFCyU2=!
zh{oqWQXjq<CM!203}Lu|RmzTlK{Bx{IiwEJ+3-X@bHge{!IchJlSKQy>gOL~v`mpl
zMF8Goccejm@{0U#)$wDE9_ug~rVLFMhAwcz2glWWFl7ujvVn|a@KvQD3eq9w*ivr#
zjb}BEC*?u|GQ^#~Up)cDLLq@ChGG`5AgKgqvEr0YXo0W1U^v9VR|vL18G8HnH8uSF
zKpLh5KCv*CCkTQ7IDif^kNj7iV*pVU1d?2Apu_P{YnxK{1JAb@9E2G;ykrgp>m>c6
zjsrPh104lIkt{(z%)rZUSEtO!IJ8!cxRME#DH|?C=x7E;h7nJE-zMdab!Z6-_B04-
zOxcqT#Ajq=5MO-L2g9X{Qj+0pxD=E3sQOCGm!jQp+=f!%aHnOsz!HN$Q#%e|=t|&8
ztRRKK;UN<tbcnQ{7(USKl*m&U;D1)DH`%vAl^y2`HIgJ0ff30=|4gGOTCg;EV8rUf
zwl8i3lSB1JG!bm%LiD;U`Tk$iwt)l%et#8P?7t~Y{^IP5w}G9|4wcBvJF8D}!;Z9V
zV1tQ)$TV6WHx5a*?N56Si=ymh>l?qOO$Ek>LI8z*Rq%+{)rW&+Sc5NrXUp0-fXWI&
z4OJns{{Q<w+wHqJYg`>{$m#@w?8tUo-u8H=A0w&-09YL*#N*%Fdi`j0&;aKeVo(X3
z!tJ)jJ2-bt#1{@XV)t(3!SvmnTN2<-xa(#RFdcOqWS}s8Yl~ML>#vPe)%lI~?|f^s
z8|_O8gc5|_8PK8NfB_w5Ru-D!PmBn2)tTQJBcg8%r{;kfFk-y>_@v1%2B<NY_{<9$
zBG{Ta6X-|)jV@rLM#ZH&Y+o3YCXgqP9Sd3Uw!?ij6nG>=zaJAwpjx9bFu<wW%HS09
zJ}r*?VEfp>6X^j7>;b-bHTb&8@g6an1HL%1sKbI#r3wmRY=8*aNJND137v2mPbW@<
zQleuaPv@>(w&x9ujHApV$aZnrPTL#ba{CFW0}=$)5^{ckit#y>`XU%BSgjUuC#m1t
zYzB)I0={wax^V`{3#m9G7`e^7#1jS*f;Hee;2};(Owg!l;ID-pnGPfw%?A<>Byc%I
z2&~3%t3nnG`^)m;G`8LrHP(^2)dOt=YfxNa^+`6Gz$fFchVzN7d*iaLkCmTV9Sbd9
z9g7J-2g%UrAyv#R-kxo3+}@`%cEAFERaN5*m@oaX-^1irKUPs^JE>$u*xy)(ofd}>
zC!FV^eX+6_KM;nJoGM>gWj)1Ap&&y{8l`le#RU_v1X)Q_hx@9k(9WCT6xWPZMh3Y!
z&o|8<o*wj9!B=2Mk1rM|vu`)Xf}anzAqr{2{`|32-WbLC!+pU-0|z|o;|rCy4G>0S
z;X$CmBTHc0#W}^wKQ|d&RrzZgLLm&{g>(MSF-m8n#Sj{x5gQ|%F&F)obnQ+DO$Ba%
zGGARi&E5qTYkQ3{ekFG^G*nX-3X@X<``OSUrQL1FhKHvj0_%PQFzL*M=kbni%1|%Y
zZ-o=D*fm;7rEw8ag|JLN%=nquC~CVY3o^KRiGKzdG!J;ESTIP*2SzDLaX{+=aU8*w
zC1w>U*U`{)glcXAyf=?Q%4tnF2-O&ov39Y0v~oORz=YEXqC8RAA=E;p-7TD(3qe>%
zdoU2>71xYbKDeIqheQktIB;<PyHGiCGjhFRLWn}}NCU`pAe1L*-VVmwICN6sn>H;-
zY=hke;4@`lg!k3?f##OjA;%b8dCU=%|6W&Rd>m`wKA#GUr9nq*Kx34>1{#LLje=4Z
zj!tKWOWaVSq%37fOCaa#n~?;sSAnu|4i}9J_^}Ra%8B>jv;SbM;<>??9b(}_P*z%#
zVS>M|9wH8qVdICb918k1*C>rkPMx}4WFJksz?gbTV|fi`2>sF_<`*h81_#G;!7eV*
zt3Y}ERvvYzZ(5v9RT>Jog6UiqC{6<?;0mnAY=9z<o7nXwgN+mY5fj&qQF<9jDX9jT
z6Wo!`bc%D$&~T^`ltMR91F*0zC8h!Sa8ia!K<mVnj#%K&_9or<xxx9gf~NTq`+<Xo
zLwq_`Sw0_49MFl;BmgN-$a0F0yDB>kp3U(^swjLp&b9#9CFYM-f(F1taq{&~1CHVN
z_2Rljc8Sv4V8b!w!=C0RKb{l1n|P&*^6_9s4?;L=v76L0+=vV=&QsoR<PyZ&g&T3W
zB|=g_!(&CtS;jaMP?Bil#VVLLS~>Gt20RZl3Q{Z_6M1A;<=IT`3)YQ_y0}O{12IN<
zwZRzPHzUy#?r(@&e^1IZq{5JJO*!!%qzq<rii``^)B)hrBOxao@|9Qn;SeLw3l!=8
z*C@SLFmw~3V-sxYSjy`ZWv&5R^K8^y2vlO*79cusZV9vWNCzdZPg1@kO3)euK0!X}
z4K}AFWs^anB41-&f}0>;dlxGW2GYh6(&!{k7B%t0WToeQjDZ}G3#VsNV4O~bBD9&P
zOumOp##h7Ddury;(DdmTz!#ntBF`k*P&VkwrCYc~LjM{X0#{Q@T)UZ~I2Ul?gixc3
z|0p|MES{*0znio3Lg5;sj^CHSHEfr2M=GCQ$Hj#-dlFzc9{!W3tTT3*Vc=%Ic!Lu(
z?wl~-*%Or|Mwdk)?3aj6#EqZ~_)@MMsSGjJPGJzLQ*9_jVQsDY0}yppB(vZv5f{0Y
zGYl4l8i%bBCvIa9SiQYhD!&+bYqf2-#hS44)x!)iq<uNu$8_eIRG^q?MIn&G7bc}C
z5D61v$V8wOC`0Zr8bFd6`CeR|**QfSmLJcrsRW<V9!tjwU%nxbonjccp9uqvcZ%|~
zf!-Wn-ATg3f~*uMHyeZ>9fsI}ygzl$SQBM%X@mA9p$P39Fbj%NlTP+WJ3MwdVwhG0
zONb@tFXE9x<z_?pu^7z@T^nD>4gz<JLBbKCIv6=fwt^oXnxd!%dkqbRtNgI(P{e~r
zBsVH2o-?NHuR{1XZ7Nti`T5Glh8&$h=!5d?bi<5Wzf5th<=VqYe)=j&L%~G=@##qA
z4+Eg#p)gI{AFgYrA1;?oRq_^bLxf<L!A#2*-ZS!*ON~~vRX1Xt(7i3l%De()lEHBW
ze(acWIc0}{&(2q_GRT)3nKq4%z~Gz@?^M)Y-1`uy2*#Rn;neol48?3rZY)A8NUU5A
z-HpOIydpbOxyKly1P-Q}inwSeT!Fal4B`%{@?Q%{2zvvpop2)nxpB1#p)heKab#q0
z0q@#Qh<zw-A#Bft_e^nBnc}~fLBoy{VU?iO3dr$QRpWLd@BuOSWuekEk1Nx{V2Ba|
zB3&GvsD$t0!qK=Yc#`K3`cqP%+(;?|VrQ@uRA7P>yOvU>Tx)FgCBE`1e-Ki`fgNp1
zzEW+>JI_~L)d+=}#90{{F}USQfkCGUP#U0UkX}xTv6$~sQjB&Ju&c#)8y6JXd0}Pw
zavpuij8GY{pAZcW@#7@rv4utv=z{Y-A>WR}Gj>UrF;TjhQy+qsgW(<Gp-IX$2A58N
zmV>L5r_yQyIX|IVp*p1Lo+-+`2DHtK1CE(OWvRhc6m3JInuxk!YC^u|M5?Ml9S;~}
zPo^@;&<7Hd4fzNvXcopp5hPINgHVe@*gT~?e_5rUHUr{WAU2S%tTzxep5|(75*|pS
zUp>kMV?`GGtFRFz__O8WD@DK%PuG!|DfE2hT7#Y=pi!UHIlQ7ePx;gs0&WV}FyqVt
z`IvvDA`MK8ZVcm^DJ?J@+S3b_Tmu!*8pFoEf=C9TMV03^GhuQ<gi(-%c9d76%In{7
z_E>-UbUz&maJ5s6E>NB}dMSX`?8C-Dy9q}9?xa+PP$82F=t4e@4H-(vK<jWwer&I0
z*vrWmUR<cWWvJA-zFIP1k=)<oRQ4HK0YdQ*rd1PXE<$QyzB0kkkz4U&tMz+Qpc*^`
zQTn^F;>P*HJTr_j{{dys+dQ*Tu#Y34h~;hu&0zUL=PBWa*d^lOhOGiZiQ~+7@l`5J
z1@}D1VtWExz*>dNkB!!2-zDPn5*MM6AHN9IvLgo!-xOJjXt>q`JK-*f$Mv?X&$dfM
z8^`PCM(S|;)B*dBU4-tneucYKt!h*LX-0*M%r4$sU|ot)Pq~)mfZ0rZf4{XOy82HM
z=71s!(8Z(?M`#2zUVe-9(S3-!rK_gBw_BFsiYSz)lUHx4!=+bS^L}O6PTuyzA(w9B
z0c!{`r-Qhtn`gCubed6{F@)7f#(=^|rCI<f%ty{!AK+kS00d7I0u^CaXhn>sM(g(=
z22qLPY5zl|MAY<X7{bcuTIYOo3JMY8ED(c9_-KV%__PGBId{X=S4;&V$WS1RdpUFy
zO)Q>oeVnc$lE;9pE{IWuhZ{&jXLJJ(a~aKTRB{3%9+4I7Czn|>5lD{B4b~AjwxDp@
z#q)1+bSc*ASiXIV10rz7;lJqYv~kQB2Ul%>crBGS<Pnh|w0>BNp1w8t`}c6Q6S2T-
z`Xj5`p7AMnzR;g+z{S2A<GSb5lhn2kz}m>cpNXsYpN&@QJ|+{Sfc?$5SpN-dW^*_z
z&p(~)fd@*|d6VIQMU)P-BXs^?r<D3JoG}K|DfhuXHSrI1L^N#=Hc%LG$c|JLtO=+?
zgY_`py<oL=c&Gm!jFE?Z6CHl{ob8Mi$UtSEijcIEIZ#VVLbV8F4I;ErT=<G@iL?J6
zFiIZmN~1Y6T^xGccH6uC_uxE3nYj_#y~MGnY?r=-nlO<Db_CU&Uu)pMx#)h|56H}b
zg@KGpbO|=?UrX@8{(E4H#Z>_nR|#-2bdz;y=K*^V0+9<?7@t4xwXXcL{~qZ0my>C2
z99%eJ{yEk=H=t#vfLRimIhdXhJKI{7XShGQI?Y2Ic*lCA(||n)K|p_n<gD<Iw2o*y
zU=I%dt)~xVJjYk2jxg?94}Q%y^I1R(s|nUZE_c6vk*y5fWB&(Ii^*2_SWoMV>yZO4
z!+u{0z#5lY#o_*Ya9Sk5)I3b7&6Bo<S?G$cZpWeO^_K00Tfq)659546R=3IF9&<jw
zm~ti{c$??Fc1(|R|97z+mU`In3`6s=jFeR?*}ex;oncO7o8`B=ZC7pM{P@8HRQ}F(
zuVG3o@~NY!GO-E_gtLC&ibXI*P5=$g`R=625b#3QU|Kz!5~g5MI%!uD_21bB#2bRd
zWU_2&txQ;74F)r;ujDK!#eFik3CJ-5cFSm!at+>WKt6fMu<yWAKt)*D2hU9@-^aH2
zVdc<G;9PLH$P^E5asI3h`wD&$!_xv+5N=tLKLrF7OVl+}@RR~<F4)aszjw3i1}4Cn
zQMLah42AH?0M3F&+^~oIM^O6GzE#)0jUM?mikaj>z;#}DO<*A!_=WmhITsZ`IiTQX
za+_dZk9?~>Sjqqn4TPrSmShIO0Q1ASKdU#xZG(|0uo><d+%!&ifg|QLse(LM@HmCY
zQ-PB@O&03O+W)Dqe;;?vREEN#nKWOQ2hJ1+qFnmzQ`0Hp*}<MA<FO1U+#?xS@I&5I
zcWpw<HuQBE1Yr`ai_k?U^7y#K>mRC->$o9a((nTc5Biw(lKR-oKoJCUAP9`Z`3av5
z!g=a{SF47hHoP}=e#Vc>OH;y1fs5t+S9z{^M5WNxkel?hMJ7yi=l`re@CMu|F2u&d
zq9QN`BoAouzs+j5VoZw2ga&R0JUyA@E#9K$KFkeDA~Oj)xPXDl0QoyUQ*TELqFxXV
zuMnsJl2gzbJTo6%#i%O{VTzT$Ao=Suh#?@Pw)~{tvX#+S5JEe4+_)%soo-MaI;h_M
z1*V0tmrxyCQFdwsnZD~c^@h#dsDxO^<tB#{R`PZG)yZEP`2l)+#Kla4ee%S9mHkX!
zF%oK%8%`r;)Sequ$4guv7W;4nti`T64m@`PD+iCL&w;lPQB)iZ&Lpz3?=M|ExKEw&
z0nZj32@93mLmoWHmpi{wZw6<9$3_IfSkV08o`SGg`<?n*31*ThMwNp>h=KSG6A-m3
zrlzgNAh_!ttgOT=osKlvJw4*fE-7bzi~_G15vr$v019UT;GlQEt?Kw^(47lAIGkNf
zaXhF&eB~Bbu2X+knc`U3FpXl10*A*vhX326&H+PWUoL1wR1n29rXk`cT@2r-x-T|(
zp)SD*KsA`OD*+Dov9Hot%<1WXA`_cr$;axJvw2b_0HQjG8^<&+l;UhG&e^Sg`X<0|
z;Y=5QCk7VmG&~c7;KG;G!6rs5@CUBMwOUtt2IhucCi$59>x;&SA@C$ZEszg9`94%N
zv;hj?(WJ!!$~)P`2QWK*s}^H0tk03?jy=pyUIC!pU3=9|Uvt@zX+a>^3I8OnOhX+z
zs6M#`J;F3m15ckoydp4<mFa8S!*zip1Wkk-m&9VY+-uAkL}|E^7ycFGMHdY(tHTw<
zRHch6f_<Aam^78dPk0D{xEVZPeP2DRvoSHSKn*Puyn>RMhU*yY1}CDSAG+X#aB=1|
zx7hHTnslc@mI_}QHNgo1{Xx0+f2>Bc&|loe%dG1?#m5UxOvGRM3E_ZS5(v>eiH(R;
z?wp?j7dA-=+E8Gpz;<!mrB<K7(?1Z%B6YZF-6p902uOi_5~n!26M^M)(Qwm~r{+^E
zVs@_SM<ahkm9L!4H)wztdBhdpm`0LC$t~F6G7Khbj(dM`m}%2S&L2`&OO`CR9k{q8
z-_#KA9!7_02zP|B-i?qg@mh{4>kFeF9Hl}H0I3o(6YRV95>wJTE*Tc7j*uzK?Lpk&
zx=PcQPdWQ?I9B1ohq;cOT@Yy=v3`i@#J9%qF#qC=igoM|CZB1_7S1iA$B&>K)YEp0
zn;Z`DgVR*ImCMH0*1`rgG!()Obu@Hh$#+UO%`>_y4ux<P1rT^eX02&F9SU3G5Hefb
zIMnolk&m-FuBX6a<#xgp67ZOA`N|l9tP#ex<q^l1nSM5Ap6mBR$*55C{K1MqJ>8AP
z^k-+A{{5I+u~kfMrWcvWBg0Jd4TMerLeZGaz$ftl8(pqxQ4?B&-|5_4gV#fFqJ>N0
zC21=BfxCqZ6IKuq2oDj6*rld!uX8qOE~EjH9o9`Auw6Hs&Nhb119%lUXB%c+CU*-s
zP!MMG8eS-IiHu83&qcYzoCwToXbEIMjbD;xD&N8RMP;x|lUdJghdQ==r0GV3Z*u)*
z{@VIr+$?}oc!p>*#-tk{Ak?kAj%@KnJiDlOnFbrg8xg812kpq*ixRJx<uE<IoyUQ7
z2Csq;Q-R$M_cL{U#u%PC0q+G=@wG!7_N`Z$@(nr_K<riFq-+o($8;>taK123nvKv?
z$;^l8;7zJDQ{ngVX;#rO8mj=B>hj^HVlpRyMIvQo%xc*DatE8*8#po8u*6qQW_Y?u
zA!3E5qn{Zqs-Tj?9s^#(ZPW_WrC)RQSlA3;c7%}tEhrxB*bk=i8ly$?QiinMoo|u`
zCW}DzM#EYHG{S5#&h*U&Zb5fMjFpB*UBunbnl4{s<in*7vO92I$Qo|yqH|_$q=ueV
zK{iC*MPNK*!o&?T$biN0x6e0SWMC=JAD-bi0ui8|dBlTDOqpLA9g&-dmVLUY&Pl9^
z)`WA4m))j~+qgPK5kvh7)dE<OBM^|c<eFjzi3%gIn!->6G61u~2AQ@Sz>f1n5F;*)
z(B}~oYfXI(^byU}A|H6J#s{A-N?l?}tw|dAz~ZW@BVP%g2?9dYU0sK+b`be+rw3-A
zI`Rnk%7fTOnYo(mrdk6D1U;OmhKY}5&23kjW*M>uKK^p@(2|ylv)eM$sLy#`6B=u3
zi02$QMV*~zT5GVxFkeNLe;VdV^TF!j<=aZcv|9FXO2JH8uEM$s_z0{Fv3Q_qmBI5k
zTZL;3mledKTYQ#d>SwGImScvG9XLoAqSjPtaO!vvr-6KM3@)V8lLkFo69|_@T_#DQ
z1qWjc5}5{5FuzIk{YjV$gZ1P}WF{w5F5~6zt4voXq$WH)4FoqWFuPcnZBh(D2v-JN
zqxAY0WP(E+8e!UMa56oLQWu9hgJKWnbe*JuKoD;Lxg3%cn-d8*k64vz`g=EnmlJ`_
zF-Uic;WpS^ZaOEvB2TWC)+-gv0i_0O3p;FeR#!F^)A|k9(xsv>N<7eRgJVto3=V{`
z%ReLNZ=gwd#K)JKI<7Z{J=s4;DixYK7#!Go4tDX>ZC#tbV<yXinIBtD3tFa&UT#x3
zzRutd=4FG;Dm%|~w=s*BHhMQL;zLiH9(jua;Qhid8M-Nu3WRx)?9mxwcoqB^IAkM|
z-7TJYK=Ji}S^(n=Tw8UxV2X+Vd#}>@FFV!6y9ZT~S_FY0a%<lZW#4(Inn6*>@X$cT
zw2RyBSFF8_Oo&%tn$G#`b4{lee&jwSa4{DTsc(RkMPL^g@$q|<ON>U4u{G2`V$Q_A
z+ms1Cxo!@+qD_grxNNcVK^kWl!9oo`8!5LCx;vLE8LE-*!=0qCzg`_n4mAQ6XVpBV
zqyv`@LnKMucA9R7j{3!NrE4me80!N%2qI82#Lo+rcl&WZ%v4u1PyqF{dz1_Na4tf%
z!2=K~R3FM@|GCOTl1oUc7|Sf39#2_%vvSM;Yyz+cpAuwsIz_U$?o(_=U-W<#X*2W`
z6=pu-e&y2v#vo<n$_$5a7Y#+wiN`Kg3R2=wRh6;Z9J6<b9?O(330cthgEa^QL|i@{
zAW~N<i<6D&K{)z(lfvMjf9<_Wt%2Qq62JlWI$$Dh(PN(SjWIfu_Ht-n(9N+{o>-=|
z_i$Hv(3aR{1u>sa7Co_0Ni(L77+X>*(kb$G@e*ZeFK&>FJF>K;663%Ul{HmqFmpjM
zyeBvja|;;C_b*ju#9Ksa$`EZ-L9=j)^$#lV8Ivw*#6>>p2AiYnYUNrRcQce`fNoG5
z2a<`8D2w7KYGl;|vvP_R^OdaznaSP}m(4(_M{IgPaTxXC3Z#e*;EracEL2`ITEP1R
z*9*ACA@(j)E;T@eD?3hPl1hgkQ2YihQMo)gBS@WK&##!L>@d(gth@rd5Xm=Y*We1}
zA7j+S>Y-?f2bDp_LV$ikOiHxM6v^|H7Yq&}e?N9o;v;mE;Sjx-DZ2*(35epY53&=N
zx^LzOJl+Ub1YVqiuY<3uoO{3WuQBd8AICNz8++pFhn1zY?qSNpvkQK#*i-Wn^ashw
z$VaWoHz+wqebz74xYm-6NOln#)74bUedS{Bh)d{nQmgwnDt-%><cFXb#er&;IvKe9
zR|C^&Tws9f?pvl@8(#|0nf%1pttEz`H0AlRsEI^4o12y?Yn?nuDZQNL2fNUD^XL<b
z)fgMA4Q?bL3pj+B7F$15j*5$E?g(-#H`Hbf15Lm1KD@lkT_I8rH;7S&&JbmM;Zo&X
z2NysqrT_uMWy;I??}bWHUoL}z6Uqu!JDxlc>CY>}4bhj26D8P;mr15ru~fM+E-?);
zO5tzMJfO@p`k+fT;W~0HV^Mj;#-)nOfQW*E5SB#Ulgwxqi+Ruq4M0KH!7G#sga0^M
zfP^STi*#M2bTQb~z#M^ZNLb)}`V!@Q1LsAdI>h7}kq-#3a*DGTE5qY!i(SP$Jp8EQ
zr7_AC7a9lwzwv`lz`9+mdPI585I}|gy6Q-{oRCiN)-6(I8DhK;ihG?Qeuxu4en`oU
z;{zSFkfXbAQXVzNro$z?bY$g3XRTJ{kQv|v+9^(v?0&>>QJ~-{1v!YWucL#2nh%LX
z=L?c8Zs9Ihtj01Q3t3tnYGf%7#I3$hxx6*CK$K>R!xURxOQ#g$Gypl`5K9**za=(?
znleAdEv1to^xAin<6RhKSnPZ(#Tvo2nR=z(Abk;b1(rK-c(r{{*=mfN6KdvB7fKp#
zP^t$T>_!1;_4TTu1@K&5;@xG+Bx4(EMNEn+ZzkptsEzRr0Qq;`qkLxwKF|ycs0LwG
zkRDDP;PT3psRlVGz#!&VM?|VmvW^4i@Z}4YJcCC0m=U@pc|p7L;D?nuqoBlJMtgH2
zMh8;TCH%K47Z{~Doy6(q6z!KPhvR!Kg@C}Z)q35|`dBG4*6naeI4JnMAK`q2Wm{%+
zht05pLuUX4?ifF$ydD=?ag7CHzF8m+#co9G2}ig%=PG5H9ax3`Dp-DU4PYI6#JxS0
zt`9;Rf|rg@izDC~4uTUs<d_V<oK$<53rE&Kb?2Zi7*Ani?4y`haRGU&D-2_Yhxp)L
zRneCjC1eSJQI3M@clJ~|EInCY9R()D`4$H@w^)^;cppX)J=a$SvjhtPToJ+jfqS}r
zRyUAA^M!E)L47ZRoO&sJs6OnvjSxsUw0T_Evb2H9qNh0<7XaYCz*TH|No0|#99v;z
zH_}}zdJhHStG2UJ{{UwXLF5?@83ZR3tH*jP(dC>!3X*#qT*-zZ05)c~__V+B&10uF
zf|l6SL&-53LCYi=g4%YGCY8}fZZXAYt1Sk?IrYV!%AXH$U&E?kq@Cu6%86!9(V@Rm
zvXTpm3|VYU1!fJcmy$+PAwLq1`*e>6gRff9?fe=>63Gz?6a(NKNC$E_#DEk<HJ}(y
z;+t>?736qNWsO0k7NIu4SB4nVQ-Q6#nH_R?iw4qw;)qpw>q#!dt&%WebQ0qL&;P2*
zT4S6R^K3<}7WuHQ&Q+Dq4Yq?w0%HL~jUXg+jHxc=9D}v^!M#E_Fhf;<8?sJ(kgCL-
z48c%HrfJxAIAjZa;T8|~QhqTY$C)hzCI?{?s~M*nhp^a`-whClVOyMrtNx5~hxk(}
z>kS^E*pV`9rU;bs;Bt<b{biE#AfvpHl(I?$RR(}|Xa&D6=r*F7(M}71<9mTWkGQjk
za+T2+BF15Tq!?&C#g!rMlFFmT=s6KAC3P$<4xC5`u{*jezZ!@gRt_^e*&q>!=AjpD
zrlctC3_c-)o1rS<QVwn$_fjUGL|}c`KLf9D0uL_X>81Q=Fwn?wsD>>dc(>9;)4!MU
zT_T6J>uMYY=_Zy_6y4qJOJkWK?5iB%@3a)WVtp^=RbwU;HXZK=4C+f&UN`!0K~YTb
za8IR=0cjp7_{KWGD*m94^02XLn4ZNUMCVb+E6@T%V_tV<_!6cl?!x0$DV(%D<O-iO
zKsn2po?!wtBrJ&~%zfS2%Fl7605sUcj5P;s&#nwG#+nd-ZVjb`-e3`Xs+8^ZJP6cT
zA9mpxD1f6*goh|c7IOhSzcmm(BnE)P4|*!^7`!yfS7}HdEWlrTC)P%*HR}?61}Og+
z)mx&((LykY7T*Q9NiY+Kfm5&yo#o`hg(^I!mvSYc|KxeJ^)Y935UiRwO=Dxm{<lCG
zZ0xj!p$0PYVoQTcVdzd7ZZY?9r4#AauxY@?hf4u;)?>@{iG0&qGCji5Zp2z6YQ%Xm
zq6!fnp$3ET;494#*FB$9y%J}7FFfYh$Cxo(^bpbNmy^Pa*<dj?5Gn_6BQ`oibShHL
zqo6|aL6Tj1L>SnwhxLPwF>ehuT|fpCj~F%sH(o)<xJZGgL!3QOx&2XK00s~?^{|1J
zAMl<!M!A{d&+$eY!Uu`fRPqwTmkYjq`Guqt4>;&@)I^F8fR$1Bh9|pz$Gs<n4d4yn
zAa)Ybl$>1E{^D)eM)CMHX$6QG7&16{`Z=6eiU$!<X>4}#AY{Po1WgECab$scx9zoU
zY1<%0apa(2h?_?wzi=L!;lY8(wGhjqE;sq#qqsjsk*F|*qvzGX*xuXBH>!rfmjfUD
z`IjY6Jb+H<(OK+0qRX)4AC7aU@bg!|2PgLDC!0H6ybY+~vGK&25UYA7fBG$IdEwQj
zdqF}>PfGp+Il$IXT$iW&H;0mw8*zCHIS5_g3-lLSlNTZfQ$<g3Q4>IaIg{4{X3PxJ
zr>Sl^YzuEiCA<NIyCFdUQ1`FR+=Pyx7zBMd-w5$Vdh)&>xeo5;Q=_)O+dkTeDqb8l
zIA~BD?Ua0U4Oc<H07r(5`@@z*b->4%89>D7TYt5Ejjn+pyl@_<3v%Y_y|xpCBMNt@
znTg?&4%iyLK}$ICf>@gvZ;d0l-L0rX@f+~F5(pzZCcpSSx0)CUsfc!|P{#oHynVJ}
zbOznG7+G-CiHvs1=l;Wx4FT$W2s^m-gzY>)2F}e7`WkUf32rJ8I5&A@j5D!*kb5!*
zNY7<b)ptprtfw_VMvVhM81L`V`*^cIQ`en8kn)*e4UkEqR9C<4#(9W<C2;T6)a6N>
zfzzDvNZ&Kxs+;=`Yyh5feSUh#FLY3ypl}_$n1{#5@!+AZKAVCn@OaU4fAr3bcqJ`m
z;dgjO4-X~K<Hrb(*sSiNe&|)WYNGPh)R!ma?(H}Xf<k`yq)0h{LmDD+<SR+@jKw;l
z5k_G|(P4tG4pZ94*QyVWEvzdtBHP6!6{aW1uFGaLRsvxO;`>BPjOvKwB^wpl$uZQ4
z%S|CN_~N1r2dx@D8>o$Zqo}VD$qOM=9-KZM14HfVRja)9AX>l{iEJ8{_R_nDn*`ZL
z5nl^2Pn!yC$9NAmL%dh4G*WOP_7B+l@Y*VYiksF>vE;d=eh)$jk(8^hZE2qcVGib*
zhL9B&q{MY2NDPR{xZuF?c);qUl;vm&#nRtkoJBp@YQ;+f6N+43s1_$L<80}%LqEQ+
zkCO2S?;pIkwUGWGC$<YSZEX}Dj8iXxNRQdlWgm_whD4-m0@#RQ+Q#av9%!0E=1^c6
zk3`haRAD09oTqH3sk#y83qm2-0xy(_-!l!T5K9M~F^nycf*_#4btFC54Y3W68w}U2
z`_6;wZyKKAgLH;16gRvMktBr|psd+8=ccDMULS2rCL_O7G)MA7zB)w50^{nG2OfU*
z42-}F9@sd^Y&f@{ax2Mf5E8Ir6TrLy0Z4p_!{jFy30|A^HxMpbDQzGmNX%*!qA$E+
z+S;VQ?gA}Z=F|0pvX_&NALo1+c3>hx;I|P_kFa*92)&rJ{$ZvdoIie*9JWxR9O6I^
zr7!6VaOB1{9PE3z<TAo!CA+l~PUG7Pm9++%;T#Ru^5rFjGdM)yFq4VQ(RkE@g4mh<
zw1$A{f;CBN78%2#30`unC*~kbKq3CNyV8kNY}zKFSj0C_vN{}oG-(!Xpz#-_iMQkW
z5Hyd+lZ=B2iMTMdTd*~`4qtjDsonkD1}}Ty8BxBYNbE7DkMgI%WWx|~L%{{~Wc)_O
z^bUDRz<SWsgB27JOHb=U@1IhK{0uM$n^o8nLov6tcPNJwmJKr8(v^)b?oghNThHlI
zT|N6tAt=(thT+Ouy4{9I8|Y0G6Aw5kih0oEN!Et|CoqkhA9M$pZmp5`1hC8;X3943
zZLFb_&S0k(;s3F*O7I%)6P9qi6b6=pzJZYT7m`#WDtB4lnD7A8<nJjq?IQI7mnY#@
z;xKbBu{6ii^JT1ZA2=l8b4H9xx@fy9DfxPI=M|%_rL#G%X=RA2pORL8$zvd78j>4t
zu-M@^f}=m~W*iy`hY|IOEf>qlCE5%~czD_1R5yctgwRb+y7sX5N2<uBXq+Em;f0eT
zU+Fm);Cg^H+`q=gL?<4nDDx-{k29-a^m+(Vy42;$#Odv>hm!g(V7P|DH2|X>IZ0Z2
z`@NzN4k}>E2}S;+#Yy8rJT>qRz>QyVf?RZnzn(}sZv~f)#xbUb=<Y%Ujp*@IQuJx$
z)2<tap9%69qOjjc<tq{k5Jmo~L@YWkB>s@E{A(y)bZVOxDF>K1q_~$S1@1#98DdB+
z_Kh;bVo!&TrHhmkJ<}3lt}4#Qi0Wb2%Eq^?#dvucM*#e~1Su}RH(D%j;|W##9tTD5
z!bQ)u#f1-9f7_4PTik=621U<^jHTEH+H*g*{xkzW%tCJhR7YSd0_iFPu%6S8En%0-
zxy8Ed4aD=>QC^A0#v8@>iIpVVO~%j6ASg8s6^@8@@!dje7vsg`=HH)5{A>vXOpCBw
zappYhq*wT%RfH<j3pqHO(3ofD*e=6QgaC^r5xj^DNCD`IPPY3|8DS!Yh-Nj=zz`O_
zVLca-$QXJ&u33=-7V)9)_qAR84!UqauYv&rlcJg7Vt&xp{%Q_Gj!&1LT#iRo|1j5z
zcUU%)paKRUg*fQt!Yo_c_c)>%ilqt-18~A53pjh;Ywf;~OXA_lkf<mER3dth_4f^+
z4T7Z@p*Tm0`URHv5X}rvNULA)5SJ~p?!$}Q*skdag&!2)eP!r!%krl|OnSMuvfRh2
z+Fd8C?ZO}yob-twTmd(TP=j^CS`MH#CI#wOG9-w25_9h07qW4Vzz^ZXe?tTlBnFB2
zI4n4f3+mi`{P|xvgHFB>jjK2~X47)cU}WF-H~;1o?eHKOUKfC<CX$_3WP5WVp!Fg!
zt;SccLV*k8C0rri*l8VIgWrvz;o}IvsRbT1{#hMA&_$OeyWVZ}6Dzm)jVm$b1520L
zz%DD@h|1=dpGDJl>-!!1)9=;@5&y9oNb3^32<7ubBL(+`@jF8h6{LJ(5WK&|SJ4qu
zGTU|n4Ak<MxkTUs>yaf)L52uQ7y$$d{W9Nr>{CR9XF{cfu8WD}RHR(q{$k33;T%s7
z10~`^JtbCnF>QpDHxvH}5&4Op8KC<gP{PR*AjI6mwk!YXPrs@%zC2P(@W7eipeyYI
zzCZP?O)TE#H}CL90FHX#9SDECd?%hOv6-Gl3wmw}+XDG%`FM`in|Q*q<-?&6rtvpy
z0Zof{^+15;F<Rt9GfCuUieZpK^)P<~%j%4fbEvT(wK%)lI$?})bH5n|k`)f|UbXe6
zo&U$zd%$;HUH|`Y_rSenCg+W!Vl=D(YFon=6ZUXp79kKw$Y7~;D^{(WI%-{YFC1u5
zaeyeGB2E-=fLe*TYOSqW_4j<8^Z6vfe*gc+!-vLu-=90qJ^P${E)UAcKcW{yRJn(;
ziGy<9{Pusg*{6A`0#r%l!VD#|$Tsbkd|J_Q_rLfrhLw={Mp6zemG+ABIzF~=vytNa
z?4luyZ0R_TBwMtt<#`+OVWgI2ir&GRTPl|dxhZdusbAU(Tu5Eao0b_`z(w4oRr`pN
zX+#=aO7s2llREw_c98v^ao|ub<3MqE&s5PcdP*mB{Ns(A?Tr=T<!ku`u*iS{1LfUw
zvlSg%nt{;&+1$6e8N89>3gwJEIbk6q{c=`^hd*XwC3>o0Rwac93MkNp9XoeIhp#tg
z&w;sHjYD-JD#$PfyDCVgoz-E7BONC;$4jU_gO`M!;Ukq)FYk?q5=l$R%WJ;hyu4?R
zd^m4QWxG~oKj8tH_Esmu*N}MzK8Vl(6)<g5X_92ozBwmPU^!k+d0M?JZ`d`rK$2fd
zIv#xeub|xf|KognBY#?;pFKxT1yHrLL*(TZBm{A9lJSemI_^EdXC7TsUE-xzyRj|Q
zokKc4vy*q|3X8l(*fFii6Jc5FE`smJbbRYhUt$KCktfYH42c_zt!$)>Msnx!4rR+)
ze<ntn#d-cJoa$a8cHWa$u)66s$4O&+0WHI}6l3HKpc*99s#P5_bwYVXNbyZLPfuza
z_0+YItN-FZ2h3Pdpa<ZYFskE{zxg7Dl$4j$f<E+s&wY~1hIYK^Y42%O<eAlHi#$71
zmonxs>dBK0lqNW*<HpNdFA+y&>pG2;4w5fQsY-0H-Hsi%dWU-61iEn%QML9rZ98?E
zL#bI6n&Xb`Or>e{LM=x1|Gs0+diWCd24*3e9ud7B$@jxLsT{OS>dBKM0SUFLAbB_G
z^wGAyjKV1#q5vr7bHFX}uoj8B)VC$P17uW+@}eg?4mmqkjilh>&@LSxy5Dz>1R~t5
zb*KPq6`TtI6hrnOk&2#A9h7d##+N&M{tO=@K;X2sB;8O!L$gr@_;Ees)w*uDV9rrw
zs)y56NG2f*#4Vtoe7b+mS%>*gcpfRr?y@{|Qlc{yn&YSWNzeDavM;|KMecz#$?hc4
zcS{a_zSF)3`6gNy3~zmOy;~g}amXotaLIz5vd4UUg~KX_d*%F&&%Nm|P>v+$fEmb~
zyc#%vxyy%QipL9B*B+en?ID~28mo%`a<yebr%nx2HRUQbk3s5&h6pbCq%r5okGyz0
zh}po(vC=S0F-)f|>$Kto>dSENhe}J3Rz1B*a^s~PJ6z5<=wC{)l>(C#ozkhz=?81F
z;>I~86DPt4VPSpn1~5ZSeW(004^j#CBwNE9H#v%$DlU_Kq;C#7IcG{+%Dn2uteI$J
z4eVft8J(_~!Ju3ntD;UA^&<PAwexXPmrlps>I34CsbCFwBb3O76kpM4<~6^n77H)P
z6fcF7jlzDOB158Q?*g>@P21#LaXdgGaUF{tw?j{SMBS2m|K91n89of@c~KA^7$b)=
zcm%d^P2iuMUhCyZp-d_+n!<avhUb3nR8`OgnU@SHso4DTl4@3=<Ho(Uy%y(mSaGQC
z&Ky@YZI(2uBsqIcPX20dD{8Engmdloc{$I$=M7Z5B5>^b(m7}5To8>z^i&#;OI)6_
z=r4!L8!DBGN<aCXPW;T>iSA{dRW%)NTi*8_YgTfP0NG4P(Fgka^4xr`p>UMC7#B*`
zN#}KH_ZYYHR3uDG`gv|n@?lqZ?=`yH@T)Gl7rldTkK!N|jZ^VX*G%)5J31Vm`_&u%
zmIer`WDpqzR}IeXwbmO4>wyh_t0VKq1|S>?W>=S#HcrXo{z~%HrkrorX9uWf#piX%
zy-P2I^w0|o40ev?eiLtlXokviRn}rmxg|Sv%dLF#F!?u&tLj37T(Cap?Dn`ErDs-5
z_SNjNW$rZ_V>Rv?t*r8ilb*RgF>Vd5T2pPYcdot9mlW}1rrHvpBriYr!gbz=hpuvR
z$rNwxn4f!Wtde3WdP8K>A-NsYK#c(w=-*uRdd`h<f8rbGE)nDZXV=^|uOBuOo~Sxv
z8DKs6+uZlRrP1FF&<t#>e3#sjn|xzrOlj9ia_%cRAGdK|>fjnKqR8KR*de(SKJk?e
z=Fsp_#<X3!=YAkJEDFfX5{m9H@yNW~=i_}A!LYv3m-p47x%<cKDTNvJ`;)G@W8Y#a
zenzC^CCSBK=4>H|5a6xB)MXu$yX215KI5$v4IWRWXq#h7{7ucB_RL-U6rW(b__o{c
zm3xA4hwO$DcNE{%Ew_(eX@Q%v8bM~}PdR4>#*8S@yvH7qJ29SU8SLQ!N1>htxlh05
z;5(+;f3<vQ?!NzF9QaBmh>-b2Cs;v&zY22xe6I)e$i0)D(Oz7l)8ZMLqu2$6JG4Uc
z^}Rah+@<uxb!GxfHJ$cm&c`5E3<VgI<cY&`|HD4e*+*AQc3}K<r`+p5;v3y8ieD9N
zm%FQgkN-ylO?8Y*lEGbbzj-b@n7sdiMeTa#J{OP~Tcr^d6}Yf(?v8=)!nam?IJQS_
zadZrmL&*1aQbF#jXcG!#hdsGh?hi3+VSu;i!MR5QIZnX6^+FY1y*Vg%OTiqH_C52c
zj)>}}Zn=$d6hmf~IPy90|Jpfs2LYceZc`li!~dBxDJX!~MR95c@(t~pJ5<!dXBqsS
z)g^a!led6-0&K^Fa{u|YH#Ecg>O*sn+7L}uUOJEWQM=?$VIast97(_H`D0G{qkjaj
zL=>fszOpR9Bt`0~yy=@Bxwq;RM98h54?^2hB|<j;)*-nE1{x2Zt-3_9`d{*Md#_~D
z0(^yz|3jhbpM1_j{$D@bwSDe5(FnRQztTB~i>>RMyY&u-t5vHN7#9!Def#I;@1}`s
zaohKZ+(L7Xz^rw8A3Bzs<ZcNMbQZvO+U(?Zx!3>Kn}$|o0J%Ol_rmS`$6U6|gj|Mi
zm3yS{SbLA7zUSMV&v<hQ%;u;oXI2T@d;KA2j~CemmfNqfn{B8mnCI+Qa(aFR+v%2!
z4FaqFDCfcMOo>j|7^tAF{qj}LWBbzDlh?Qcm9A}*du2Os8G$0Aoi6?^=gOYmGMfL_
zjuvi{d%-r|!rocGBhhtV=IjBxhJ$l!+XG93-ptu1;#0^DS{y(<-^po5w26f|<;SG|
zS)cQp-rk6pM)djbk8;-Ka|kGfjhb=UzjC(y=CGmt@U0NW#!yq}88uV&-~N4%J=DFO
z`Y4JztsxJkhC*`{dF2&(cr~lZNblou`u?}sfd2knznVsV%`-Zf!s)Hn?O<;mM2aQi
zcy?ZOMIJXJ$kN~oIK<3L?e?+R-(g|!9t_t7xb(v{hkNX^-tC4K;=5BmS$&e+ywcw7
zMGJO5nP3W8VdNz17TdhPwOV3z3GQ^3swI}>)v{jMJ$;oFRq>$RJkCE|URzZ`PCm_e
zfnK`HW;V7PiU#(=CcEKv{{Z`{fjOmv^Yr4q_U9wKSvi7LGnDUwd6HbQ&Q8v(o|s8(
zU6X=5edUeZ^In@Y!hbPNT1dTTuJz&BPpZz%v$jWhSK*u{1`-&CEwRf^^0ol;WCFPr
zkc@z(R6W8(ECux|+5LXYD{MEE-xPHrQj%BRWp)McGLc9{b%twgPP<s9Zj+ET-<!dC
z3v`A3?o8ToIak!@j4mnFa8wv(>pd>Ao^$;t{m5zc<77ce&J~t7G)CfyR?e=ZQb1Ha
z{$%z&c0Q*7O6Z0~6C37XujHBqc1@MHj#I!4IH(qS^5WgL_BY-<I1aIAU#+y)d`qW!
zbL^L#X)?L<${X`0f<B5E&SG4}5ON;1=TG!6i%N3v?$rtydEB1OtEel-4b@XNT=Mh-
zc1;}6|DY*%`Q`}O7^~NH_VA%T76Yju3(%`UM`vps4eq>^m)UQ7v|84*k~zY5Z5%Lm
zdcgjZ;|SSmDcsTJB5X4EX?wD(|B@hllMrvBpcbg7`%ur_W9L@K+*Or8t(T0aWceC9
zZ$hgHxoDyCLV49)$T=4vu=hAyu;!<Eb|R<?H4JW4j$Z+9(j@a<u#uhp=MY4tjzUxY
z{%&i^OhvGulq5&uc?=`}aPG}^?Z{Y0P2(oqYyu$X^rw66m)Lo630N6ty43=^I|gFI
z{bV|c=qUM{pKQCp7FPN=!ySNrA_U8{TFztpE9{qUbgLLh4go8)_3-0%ooD@j=f4};
z=x|^r$ffNgc5}Hmw+8L6&vtm-45y=>e#30({q_m`L3lW+gt7-sOrgN&+&|lu1HHYl
zYL0l0+JWHq*V)uQ@qJ0%^u`J>jm@i`_S+BGj)A1d5PKZZf)m=x4p-Xa+DeuKQpuTE
zyk6D=2dirwJ^G4fu6@{!oY-zCMa6JYQ)h^z7LU{HHrA$;wi;k^qZnuzM^jtrCL-&@
zW=fv8(sGCUcSUl(f+3>awJ%%o@v&;&w6Es}O;EKWf;+xs&((R4E??Fw7VYae{2^OV
z;q4=8us0hkMeM4Inp}Ck%?tL&vk@9bJn^{K?Itk?xIdfG(d(v7uP1H$z>`t`OFx(b
z<Rggr_x6t&H!blY3iV(vociGfwl-Rt>AT(mMna%x+Xwpp{T<sP%l1mEoBRu$Iiv-!
zIMK%sOKieqA34UU^jD~3s4VQoB|1G~X9Sc+)HRhkV#NRlJZG210Lu|O<WFnY9M<$D
z_TAY&@EC%u(*!)6Hu=eo58BhY-rk=az<Q?-A<v)gur!bg1RaXO-&kI?QJlfK{l>ek
za!dd~Hot^bZx{~iUuIL!@Q%Q15R$XN)smb%&)yv1J^h+0>#+1H>hs|EQ{%kgeVC&6
z-(_=0`8OnB&B2yuk&sbx&!cu-KW`7HG&LYBrnyiSaH|`&8~i-U77y4%fxG0xGIw6R
z?yl;DLTdl{Ry%4i17WWV2uj2dO7t+hY!19e$wA`Fyh@<ksTb{)zIhu64p9qzc!UtX
zzvKh^E;!f-q(PNt7BXLPr`>sgFA?GlkZeXUn&$KQHa!kaVyQn&e-1o(7HiXGi1}CB
zF^I`RJSk<~+?TxX{N(D5_V}uny;tOsLP83@>l4ho<_g<sSj<aIi-QnQoz`4}1?9|I
zZbu;RL3y&gU9<(}ZJfc0LX52K!&~jQ0s3JT;=|4o;ka|>+uHbPfS%eMU@K{XvymlS
z&k|4J?0P0wF0h@0qm3xx=50+y<3ynthqC1Z_WFT7JJoV1{?(`x5mvCfy>GLcj^0;@
z*yqYVzfoA|+=uM`W4v98dQ}5-3Vw4Y_ph*BFNzMGNpQ@I=iAI9y-^CCQ#A~LuaCOK
zjtV?22D#am<9%=T^~(bL&|)0d^Xg|;&yXN$*_4tK8XmVVVpGT9Lv^_b%#(ZVfCB&R
z@pCBm0$YF)vC(&Lx5`smjX4>sS1L_u4OdmADY=IE)IIiPM)J7m=gJTA4+crav8su{
zMO?7pTATJ;ABuaBlPbz&t*}?N^!2T_O}_UGsHqa}NS&H-vAsCH)yybubxlkSHVDDw
zLG7K)dC-1n?;nk+X`I2Dv>;%8@=bPT=r_$epjgrU_u7@AVvu(iTv!U!>95!k7yBp_
z3=DoDaXsc?tB<d#vD=VW??4SLhiQ1vJK6FsJF##4kb=LuRN7b5Tz<RlJl30!Qxc#f
zFSQT}g=%kb=C>}j{eoxqhoMzWZ_LoMxY}FS+2q6h$FLg;qT;5N#0FCN$)fo-d~fdy
z%&kS0mz2_p;A@;#o`=e*LlJkH_gCv2vUOC2)B&l%$)J1e@z|3zLYHtrk|mYgZu^G(
zgxFD=q2yYQu-;Ev`{JARci5$|Y^l&XWRfQl%mDo5YwRCcNNjMmjEqDlisbwy_DN`e
zg>{vxTJH)o3q0=?>jrMYqI@?wlw@{3g_4t;v}gLm%~>e0qEH#Z8xqtqQ+B+{J`R-a
zKgp*o)f*L@ffoil{2A+A=mQKSZ>X_UWRe{BfIYQ;27Xk0zz^S7Kq<K2Mm79;GR*?W
z|8}+AaB}ob(piaS0mV_z+J2WtGxlAhSc@>}yNB!_A<wx8S?(Mu6e>_U8F`7_7cde&
zmBpg9Tz<IfVf#z)+BjLRwbWBAI7XoOgrt<LvAyrKPlx!tl;Cy?Pv+Cg1y<hOTjSSR
z5i4quxX6PvWPP~azHYu9jz)+U3TGjI#r1Sh2G8PswosxZt0qlVYHl^Gw_>9Ii?vcK
zB>CMvHZt|khEcf)PQg8Ml06pM!a%po4w?vb=%|GrTfJ)ApXxthPOQsX$z8Nru%OQk
zw(IETE_u6S(@k{}w80@SSz%vfIAl#@)|8^QHP+xl`wWGRC1=zY-v8l5r!27NLwAu_
zf;X@S@dm%+^r(#w^>v&`O9&&jec|2qQfLQ*8=Iy!O>4^IM(#v1RiQkX!3$5?{g5S^
zVZ7YKXuZ{b%K&@y5?{ao(#%l#5D+vUy~wr^a>`u8<Z=8Y6d(qC-%PtNj&NMX94?;e
zSVUZR+JzY-iK{OaQ_1Af%D{~u9<)<hX|EM|wU{(Ac;I!6S8%6Y5!|yVbU&2NWWs!V
z``Ca>qwf3(fAlocw8w4KY;Wh13i<-}br&kFqe=s6)$CmSf>oU7AH*>tnxP%XG}#RE
z@3nP7bev*nZ@q~r<R?cgw?zSmLIwYb+x*JL80V4!vkIJqiONTSlE92NTx|VAXGXni
zoJi`o_~_=R*nd*R)QkidQC@woeRYB_QhAQzd5$w^vr_i@sxJJv2d!6NT(PP}FlLCA
zxtH4`$NNvId5?FXK^V%$&U(|X3p#JL?@%2X4c)Y~$bW?v=c<USU+nw#>+OZ&7?09-
zOfGc)c7aW=_r~GKXvxXYl{>#<+r%WJs!C!%V#`VO<MwDMk}L|can)dR$y8hdBauof
zD|VkX_T{-gKDa8rPavhue5=^c+l2B$?Iu@Y_5HZj_J`j`9|G=waiO2cj<pLzo>^d(
zXZW|Ya)rSU3|6GMH%AcUllyS;xY(EBuySu;j<m2@`Iq2cLUP%N6Cbj-!;UIMFuIN(
z?wix^u(yJ72Kez1AQR<GkS$H73R*31o4sp8Lo<|8)S7zty~j49PK&9Laab~2nREi+
z<h8cq%eE~njhi<vFy&PuISenEprMOxJ3nSiL%2yY)=6Uwq(b-7v2sk0JZ8(o5Gk&x
zhh!ATl~`W(upPXwgG`jpxgzpqS+*ET!mygv);o~4uwEaz7=%>cSZ2S3wlJ(QgA~pX
zHr`=9kBfs~r{GrDdRxC{m!9R#1L`U!PHYOZhjE@*U>`^))r}F@9nK-~^smpekFNd|
zx97qh(d4_{wc7%7b&z$96DPVg1Xt!~OK-E&f=SUy-8N?r9N^lecGN7NJ<bVAuGcA*
zH$|?o+cvWvvZAB?qY+T2bTw&t`M24{StU_dBhWIP2gt^1cb%06Rbs6O^iZqp@$Ig#
zOF|+IZJe5Mq4gCO9{#BH2nv%jjoXCJTT}|fLBEnYq^yf%pl@bhwA_9Uet<S1=>PvQ
zB0fQ{2IW}=tJ~{F+v+f2NJs%>Y@n1T@Fg7DN8;p%yKL4wzFC10-8pcI@GBbR9rkD!
z?`xJ$LgU{ovJG*vVQ=XbdRRTY{LlB>7wrOapg-^W2zE@e_0u*zU?<`x`_mQ1kmp~`
zw>ja5lY=&>EqL7{msmSgXoy1V0!9T=KHIFYd%kI_))6I`8$Eid9LdhB>_=n_jpN+p
z^3*V1Vq9czw(;f>WJz;D3wDW185MVtJ+@V*12{tq)0&jS1l4g2*S}!{|Kn2xmY|tc
zV9>I6emdcOYae5dsUXu>?R{lao&1K4d8O5lNNJH?Tipce^SA(q{*RCC&b9sptO?Fd
zE90H{u5Gc5R-yoLI@qf0N~`?qM>hMQ?Af@^3OvOY_I||f>>LNfvy<+3k$*6G^eLNr
zaPzh%lF@`gO~wZhs(a7&*)h{qf#*O8dn99XIMd&=HSwdY<{;vSC)RPnqL;g9@c<qD
zL#$kWJQ~@~iA(L&Eqp|-H%_golb>5Rb_?XsUjDT0^H2W;DjKc<@={NK))qz6@z5%F
z^#oCg!}0Ii{=51>+`6EOIYUUJ8T!2Kv86ZT|G{LUm0ADrgnh!+IqCj&P257GSv9z>
zf62PVsSK<`pUoq291YCR20-q$!fXwz;TjQY1EK&n-!1uelO6TC4>baFfoDW@kwwI|
z-}`pbHr_F~rm><P*9@5leR<71dG-an@NM6geu5g)q*G-6tKP9cKNk>+swO>psmy%w
zYgUL>$!g`}DVc$7&T#<rr#`Tp0J;in2^4O6o%VuVv?)729E1H)b(0<3{-Sk$D>|SO
zcmLz^#=w2q8Um5Y(3Rf8yflBd!JdGbGB2(jSGEFrXFg%`J4L(XZe|?TQ~I3s-P$`4
zO`{0x$*IhSf49=wNO>dmQ`jk=zGO~s5>WD!Lrd-asqHlj$T>q9`@$&^{KgG-ZJeFp
z1R8?v4%%)X*j~|rvjuCY9wWPMTFoX=gOtT%7F$6x03b}>AJULu$xRzA=X-|$)n;a7
zL=+bz#4%W`xc=!Yt@1a%i4j#)=m)B_vx!$1Tc57pPK{$O_6lbhaf`*a^H)A1dE9)R
z2l8=|P(OlTj(X3|Lt|!h+JbaV^q}sp1}s@`7kunLMDEPtdm&BtmuzQv9N$x`kvV8(
zjt%Q=4caZOBO6JuK;{A-4(R9=w%=+Wf+fL@eOB=3zssysFtQOi-ibx(j+2Im?cA}g
z4-`D9vaYET(XOqFRgYg~gL-;5ZZ`NC^uj@~_uTjFw4J;IW?e3dplCmiv=8mD9lUu^
zbp^3l#REdFp0wH~9qT;<f`hsDUa^<h(O*BX4H#>Mq}8fOAgMj>*d6z%9dnlB0*~9w
zah@km_2C=#-iyA^W4M+#Z4PJBr>}Ty`SZ5+JD-Na@q7-t0hYI)vOO|*%elIzMzMpK
zU4HUIp0^r2Bfyh_BC#8w{P=oXw|xv&Q(wzI#oS!y`R6h_cfHR~Py|e?m_{guF6R2-
z6+3XHca3V|2cl$A6bpMRu!4IK^2$Ovpu>*~?Y}?!*IcFmNkSNvFSVKf@>XeG3Z3wu
z|2Yzp#(ak|pN1{AeFLpTGjP-9u|~aMtN-m|>AJX!J8*i7XKYJ+CK)s=t(e1+bBTn7
zUi*oi{<VKU23!cl4(eO9-i{4o9$r_8sans9WPSHqVQsN~1iZQ?WjP8NIEyXT*du#1
z&ml=Thp<A~Bv_^BQhM0<4R+D%J{i;yUno*mB8Jviw72z}SwMrh6f$V!DgvlU&zcWy
zZJa5P3sxt6YVK=xeU{Rjrh-OZr@ef&&Dw>fWToNg*(%pA3Br{#(LuXAt$2{*Sw=<D
z<`n&_c-y`U${91M0yi9j9`t|yNxM5_%V=z38s+yo<w+YCG%*l8T?QLR&)D0pu;CxH
z9okogg5oIisBI@k$=hwB+Vkt})vvIkDgM>OeaJbg6y}QCq8eMa(L4G}GlV<gwUp&5
z%vGE$KUp!|_W#yDk#WNpc!hc1gWNc>`Jl+3F15V1-Y-<DZu}IKp@(0dIoDRL^Pb^#
z)lEL9e(<*$w&}mlnu}yNCdGAjRnPWXToHat>;ez#jyTDFXqRct8BKI}MuaZwE2eH_
zZMfP%?t4zP@(%tHahw`%-l?6LFF4hv|L8NzU}?lx;$YZrynVb&e9mq7nmKBhkQzPS
z9@xX%2UX3=I2>`A@iHABNFToI1iNHg|DZq2zj>O%Qrnhk5Hc9b(=wrzCW<g{IYrC+
zajtzd#ea4T{!KAGsR96IvK<BwVaLG}CpXqNU~olvhwbyzv8A@Clm9e6DJQcI!wlG?
z?#cP{tNlwqMZ{r1VHb2!=t0-|;Q(ORjg8K-m~K>6jh^$9`nLNV`{Ez1)=*kPVTsK8
zPOP^4|9D?9zFnerwCm&^sJ9M3c{}9^P~<b|2n+}k=1;TTVpIL<uyzqk?s9M|lx_3H
zUnknDG3>aC*~Ib0b3lNC9(vyT@EWs!#+<xSNK&nv07H(qBR}=lLYTc%Au1fpe|4ns
z7PTWyoN%&aoc$Dsi?09$q#i8Pm;JA_#_#>hF_T<<my$-%eTH@2(g94CK{*qGv#^xX
zbL^NO{A-L6%C>PGM2sk}dSiVanpOnj0V|*OnPs(~`=_HQyg>{|V3Gu$JKc)E_71s8
zoU;Nyele-e9t|?2*uB11PQZx`_ULN=x)@65`i4$HC)9DKO^y>H!qixS490~(7r@&3
z3>zOb$u;QuSYbs&Uacx2Wj?7m-A?<L4_kzj0C@X^o3DFtMP0B0X)yg8ji=mOkdiXz
zm>tR4!)@Ga*=D!`cSPKmzIUk=Vt?V78`mW1$fHTHtxJd5?A!h8VZ@cga*P9;JlYn$
z<vmi=WFzW~rE{G-%+6iuJp&N`;5Y7S%_4}MRczzG@V-KBK#;!{2EN>wd;o6u8)*Xr
zdWa=nWMw4~5Zl>*tUa)&pD!LWaket$K1dhLBY%ZLE+TEdn^9^X22yh1d=_A0D`~Cm
z7pLeHSdll8yF1d^7@zJP${m@ZeT`q4K@h5<=zSqHP~0)2ZI|A@f>F46cnd`P)i1}`
z69I`JZN|kV&UX0CspD*ym~<T2UIERMPwhQ>jI|HHgxB=&M3fAvbJmhn`_)*RKnHhu
zR)fo0z|R-kZCNtb5d~U(GShwzB;+7?wLrlrFcJDZYP!7~BzQbXML606K8}kpz>)j4
z7pEI6D_#nFZ_ge%`CMC2<(q{23-=TP8F;$A42Or|6rzM7i>cSodVV?6z7F<5;RJ5h
zs+kj*d7kAY8A_Dqhyw^VhnRBmld~eW^Vf^4Fc{1zBpXaNCQHw-17nw=5yHhFWyrAO
zg*HC61Gl2iPAnol+kOn`<IyE%;!Q*O9C}cvo7Z#3+usNKV(^rqUB;;~T3MN`TjP5o
zNrxayrRO0B4*j9bHpUX@<N4!y`J<gFZaBd<Z0Exf-_zp&)XWAFTU=wO1%QM+a2aK-
z)Riga#IrQm0Dx(8l|99g14d92@!)jMixu_uX*5gVPK3@vC}#zOXbS1MIK&6vpbf!Q
zn!Rc+Bw;+~pK3kZ`r1emYly+&Z1jw;u#tg<BV?r$#}G1dG~7-OBw8}d<^{7L9^%?D
zkN~%fkGJD@4)E1U1hkS@610zuv7x(r_b>sS09qGx3dm811LA!2M;jO{Zvf(4jqK%L
zm)lc2#F+4gsqlti?0{!tK%E!-%1DoEQpH9dWMBvPTx&ah7NA2Iuy6;xdP?WnYoYOQ
zg$*aJuuxpF;1Bk@IA4zq!b^lP((T{4z{)@Nu>|i>aFPQq%IY>j#7)&TO3=f{o)LK3
z?$UGZ`wiIx1TkFeVn^T2wxK}?gE;<aHL6zG1HXMTsLG~o<y(zWIdy<kC%+=Ri+3ai
z|2~ZH$7)-+O$N>!fYUacJF>!-Ztu-9cL|UIEU1Ko*=e?o3@I2ROXbg4Dqt%MXR{)j
z^jv#B!%C1WPNR~RJ<qoCpHXjl;};kxDyTyfF7r5JM|%{(OJ7k<`9@GAIX|_pIT>2W
z=_Dz|*8!Bl=_kythb{M0oko-t@8M1eG36!u*qulDFu$4t&eUoO6#<lYi2E9B_|81*
zu(kh)gdM20oa>eHv{Oz2zIbIf%j@F3{a`qNIU_xAtMW8FOaEO@yR~cf=d6@rJ<p(1
zJG&FIWdnuPO=PZ9`(K~G@t@qsH~GH$qb=##VyYBMok-63A-6O5rXAPRZA3vV;I)AK
z<S*am-jZo9p;WrVnV~r8Y2WAG5Iu^{O1qHrN<qt{_rG!nAoJk0h)GX1kdnmJMO2O-
zbN8i7pvEm&4PDA$_XzXkTzd@;O;_<o?avj^>HC?Xx6(MMq_l2h<{Y%Ly7u<`j^2||
z{HY3}$L4zUR7&2&_LhK08Vmse!@v;0Chljew(!=#A$emxccYfSaLQ953|~gEb@{h1
zk;=WnR45w(i0&=0oR0D9jcEB|Gz8`Lv9kiu{gh)P;=xA(8B=tT<F!5Q9}p|+;7*j3
zF~mM<0gslovAxi}Ft>^#WfkjO&df~<?b~1c2aLzfB6JMK$xlw$*(RVzGEh+yRjA0<
zL3ia2jT@QCUAtJvkGz*UuC?9`z_sO^A9GL0EZ|FVo*vXc;k3Khp}7G(3O4B3Ejm;m
zt#cRq410uWM%9!{<_k|{!S2_^`gQh>VLncBP8Yi*hTy6Z=gV6?418?9{RrFU_tG2%
z2pnm=8Nkv1VrDt5Mv!jXdL?7$Y$SPX?qRktjRDBzmC%oY&pgz=i0Q_;d54YbZ>{Zb
zHaZSvILuv=o!ivi<Y+l^4;vA<-U5?kj~{cV1UT>tK`$C!BK(a*?Bu<DT9s0T3!;pc
z;o-sr{ogORIm}ICeh6DCI>=t#*MB%#>(Z*=#gBKja}W~(gFHMA9@!t4=h?g1gaU6B
zf-(~%YfzmTDW+_dGiW&6Zr>+{Byk{f!Z#jZTV&^v3K;n`TvBn@BgHNAllI+hhh6=5
z<ErqKVEXlu`)<1<?Tlz1jRcmqq>1ENS<urK?;ooKrxfyld2l8J_Oh2@p;~>WJ(;?f
z<)DnyRLJcjz7tQ~YfsxYaJ8^HP!i9ChfJXjb~|`~TL#PKNBzme5Vxt+FM-c9ds-eE
zfO=wD3GJ))w6Phc3n+CB3&z05C41QQs7-u~jhI319zA>0bIa~_2nrHCiWfPu_7t+N
zY-jBdPqd2@%b1E;G<BD~?3KWP-~rT($++|Ur<b;~N6_UonbW0UBJa_0?JNzLz;3E*
zq!rSmU7oR@eINW{gis3IN?AE{$~G$A+qQ{~4)t7a{Yc*3Q*vxn><M2NC5=cPa@HV{
z7`&^sf5TVrDzs}Yn==*=_UJvW2D5>6g2-8{=f^#^u%533NZh?CSG?Re*uJ~k3-5W)
zn7WNHf12eT*|e*x4Gt@qwUiBXNthHEwPAOgzA}CSFqBpSGh$co>}VU`@pfM!X>1&>
z|CkT7?H6~mJ7WvroRkXBm+b<R)zFzk{pl$mLfL2=D^YJCTL8VqcJ^`nw5S9!Yfz0(
zu8cG2oW1PwXZ$B*Tajo)MOYFBcw!vEf}3_vyKag1j;NSbrTX9O0Z32Y-B!MkS?jb<
zB?vXvv)|_)6Fb0$K!wGEk%R)UCw!ax<tP5VdUQB-@TGzRVd(8Y=e{4(OI51AC8?*t
z4W)kH=WhFEc4h3A=u@qHJjhU1Ht6Tv{ZPMzQUtTeJ=cDKZrxTkFGiEn4Z{(jO3`UF
zotW{TzRjH<!wyj4PBqKpyy%<U6|qy5mPh%~U4@wH%b#)^kP`h=MT$ICoN>wTd!+rK
z5t;@yp`R;m)0aD*$udjt0HJA*BsE2zJYk%E6#!h3lb(oDL_d3_YCD%Fi#nxO!USjn
z=b&d-6FiXgL-(}wb?-T5CeA8GpjO75-1Ix>na`Dj&@hLZwi1bX-O}CSTM=L-_m!n&
zPi=y86WJ#Q#kGv?$w`N&U!tG)ld~Hqq%uSEB_A(npZ*oM3AtYs<DpPG4=jm)ANIXf
zUF4q=OvTuUv@gbm9+g}}*=nX9^PT+$6`4UDZxsWf(pg2_XAMZ6u0PsV*bH<QPQ~j<
z4A%wJti96xa39cIR7D2BR2YitH^V-wcS=u0z~~2P=Q7Z^T@CkHwPm_1OJv`{VX}8p
zNQdDPQIf1r)4zic^cV632fyMS1I+kC(w8$w$8}arB3!xZVsq<q(`7J`<^dJp%qm;G
z+(~@b(diul(^0UQ>4G5zF<$AF=3$KRJ8>olq6(l>5wm@I)`#9vB$bZO#dq3vOP`2o
zz<ge#ub)Q7bT9WY?`G*Rv~@-zXi~2wOPO2QB^~*E3`4A6CYUOUYd8{?lKl=$Pe3~G
z8%}U~V^p=)c5cZ@-@$&Tqo@jt2i4HuKz`w%^aFGlnw=i8ubVfiO8ZcF&$RL}|6mNO
zmbHS?IhD88GnpcMg%*Bzn)Zi&8D^YzoX43lxnn&QAkOcRUh;m-?MZpbdEL^lbckAv
z&bH<1MlYV>BG)h{y>vI<`Ix4L3T$Qy6a(D8$stFli{g|?y(y3Mb@Evd>e@f$Y;q1s
zYcYkipNcw)wkkSHE+4ym)UWUmbg%a{P^1I71fK0Cv!2S9aMIXZt!K67OUfL#d)f{*
z#%PMk%7NOeuik?>q)R&DJ8xf(jjS7VnxA*UlWp6kdm{IJXAb711;WVVW(uionz7Lj
z4F_0Kd}x{*+=8cdDDtoTu0XLbj!yT38TodwMuh`Xv@bg}Jurhx6(ktQUSoRd-3)1;
z_Kbxo{sZ^;{J`|HIQGGKAsz3<Z@)e`U4)70<052&LCGgn*(u!?|0W$lM%mkE!hH1h
zT3;AgctMBsk=W-j%w*xS_z5Z%_#5nmJAFAhX>J?_p%BU1JOrcSQlc@1w?=hM-$S1I
zG7zUQCic;dIt|Yqn6^QephKoEoIx9uj`#h3=_#m;bPN&Jlj5l!G4}8B(<j79g!zQt
zP|@_XTz7e>UOXfnwcfi<Xq;V6&0?eh^FXYx7p8Y0ku+SBZkUuddtMzq<{p&p9(Y=a
znFGIvBJz{h({xkN46#2FtMybov<dW%IxxNDRUZyXFar+}?Gk*ac1hO;n;Ain3A0Cw
zR;YGq+w_t)fi7@R64T}E(O3mZhr`of;*8N+o18Q0l9N(#w0O!jwd;`f474e3YG~qk
zX_rbmxK}zUeo4I6kEWUk*Hn3m{MLddS5SWDf$0w+S%#xX3dRK<ES-Hw+8rwipcLxD
zmzo9okNT!}2jfvlkV9sjKx6K2()Upi_<B&2Op-XKgWIOHd-=w)Odkb}hq{6%;Qsyh
z{^{=}YN%9)u&64V4&Ncwf?#Ry<d%YT@8F5U;njf^-Kl<F*Ckz-!6yJu%**eqt?!-=
zjFDPNA?_5Br6KM}KtmfQ*qQ9!Bb|#D%A6qW#8ym-yyE2W?&&Qb#Dc0Ys3rUg6e3M(
z3)1ev0b!}cuX^=WV*iH+q#Lnn8S9vOxLx>6{JzA1{B%y>R1pqGWK>}9=Ep7el|dZ2
zllSSK?)kV+o|O&K5?f>g?;a~~GOdP-ge*XzzOxQYFAF)-4<sZt#MvY#$Pe%Cm3CO}
z!%?M2{zw-o)Q%dTo7TjU!|t<+2`XE1UYafnwV|+~K@s}E&~C{Kho<kxS!4;F`N<ea
z?&y@}$51>W(Ci6J4(^e@6{s#-RGdYKA{p_#rBgxz3ocL-bPHOoJ|r!UnVsY48iHr~
zNs}YK+atN5b9zPaDvCn}0&R}HBn;P;k##NRA(3@w&-AH4h|$WpAahVjUYbue4HtAw
zI|(yk`M^y)Kki59u>#Pb=YOp|dLG?4^lGa%dPLK`KDTX=-Yyx3PC{9jL~Z%W@a@vC
z@FeN;5_0myp<QyU{K-~GP!%Kt@x^cenx?j*fiSVkLt$U-mEJ+bhz~N$m?+Ik9D{0^
zB+UHVP7xSYa+wP=dQd>Rk+iO!`=&cfH$uc=HI!GBAugPBDfwC3GreS$_l>Wj?7atG
zfFc8S?2)!X_2*a8qUA_;NnY9brEFl>6yM|@ksh<yzZpBLS>zsbbUG-|xe$yA5ea%I
z7pZ_+l=zzuO2-AVg~-s&TWoS9B?{Jt1Ji>;p78LoqQ8L)iKSNuM=o;UAUn#W@HW-E
z@aRVQ#QE*gEfghnNyIM!;GFnKb>18W7j#N54F-s9LX~cs#qRIzosMlLz)+`@`ZuL}
zdb@OQK|B+mlkP}CgaO;6TLfntFF!;^UspoY$9d_zkf-Bu-D$_Vw3^=~T^`iRj(uq*
zrQo3AY>15>$+un88!`;I1R_Isg;Q;&-H)IOtT;0rNT}q2j_H|U7L1{+N;9@nAm-Mt
z>4+e|Ldn*QQP)}$|Ij|2g4aU_D?0Gt8L%SuD0LbZ21M>WD3t>+V2Qd_LTC>m%&K_I
z>#Uq~k#r!~ePcNS15Flm;8*t@k)E;4JF><IoCnmc?wBgV$PY#}HRwd;Ke@Sg+CT7X
z6y;;!2mjL^8VM)I5RV|=LoErMDbW)IzG{yi0TqD%&cW$`Py!%D_mA^q2%u9zx+dgP
z;FL>k(5IFuWk63kD1G1wUteo=N<{F)(P`UIr-%hr`sL^FQpCC5dr*2>oa=~+##-Dq
z8LqCkZudSa?GgLq$;r|R0+GTtwo;g;XORT}G~85iLCr#BN*>)c-6g=@AA*zW<C+g|
zQ73=RNl%YG3@MpY!E;ZID65<YczS!!^kmsffVYutXV|(9<m<la<u7?p5r!ZSpJ>CI
zsR~1|X<Oz2h9eG2M+UP1JIX6Uxy-||RFM~99~^k>(dn}RmE|f!pfP!x<lywYSA4G4
z?42Kg|5+X{O2UW_7Ac-wutWNJAU;VS#59}L4LPnxADHeM60=a~=lqy=w{JZ>y*EsU
z{#XoUA*p&K-MXab1mgE=YM>^KXiLb~D=+PkwIymahOFD}`DxbxG*N38UZJwQ)F-`V
zsc(Y1pwo1TjoVjJWt(jV)am5aw&@YU7+hCz*N+YtAv-fa{U)QOl*|BV;Zs4LNXrdP
z4Qu6~FjnDI4ZN4gdjfHmJWTL%kMzY*6^qHw3?&Qw0iYjnX!>lZtH5xEGr`iD*`$bz
z(F>2eC#w(2Y9u&iTJx86UDN-Ds!~XHh;InZu$sIReh4^5cT2yG0~K{;js2Mwm>&)?
z9yq8vENuu?D65}23kG;0Da9DN<)%Hw7^tvWLQ)d0O?Pfz{5w14L2pJNluQjiMl41`
zCf9a|F7mv!55HHs<F3~3H2(pfol@O~p;)mJv3hTBcU~3~s4#CSd0?1XUdfnz*c|)*
z9`6hm(dx==Lu2H;@W3&ne0#WEJU_dhNvdoPnjDy8z5nQqXb1S26x>1Vk~h)Oj*2Cs
z9HWy)zL-0$j!W&R2mCj{JKL$(>%r_Z+S*eh2R&qfVWF*Qw4Haev*!@1qrwp4yPozQ
zJw&M;hua|)-p&&a<(#he?3wL{71_WE-jm^c*vW7j5+P)dmYifG{@}g+l-8$6y3$Va
zlQ)OiRi}DKfBAGZk96`KkF|v-dGm<I$<2|fDh~}rXtckLs%n|8B2NJuVByg{(k>pV
zYw5%tq`N>e<R(XOk0rxz|1#3PIl(_e0T!bsvZFE=$t8vM_!$lqd3;H~KpOB;2y}Df
z0Q>B2dNP*<^Jcjw%#|vM!HMVE)yH}#7j?Ok2H(f5fi?Da*>K>w_H`}Y-I9T%`v975
zemCiWQtKtfER!mi2S-(u6R#hBe7{*sUYmfGl$~$m9`f;vp>w%EokS`H7Wp+<MEB&|
z$@Z_2{?Wi$csn@+YAtK&ht0GhS9wRX!b{-}&h(Rc_QqM>5hv$)JzBIp76Wg#M<&ym
zT^*@zwN+)hjzj69rn)9~vLV!1-Vf*6y-)i%Tojglf@0@{)pVr|JkQ4<enH+EG+miV
zn_$(R#QFINcEBV4Tik7^r_$_Wb$efHV>k<LJxCn}Kkz<tL*Ze2_R9DkHm$4#u!fAH
zT01gUI|vlhMDoH&DHI4H<df=bsWd^q5I30TG`uceGIhEgKguU5Dk)<Qzg)28Rd&3b
zB-G`@ha!Sv+43tUeN+)3`Quc3>ZT0(H2VF3-k#%q$6st9XvG}d4{$q`uv>35_+*b-
z>pIMPhSoIdx<wy%_>R8JcD~k|aWc6RPhV3pXP(_W)!T=`KKvkM2A9pWH=rfPA6LRd
zV5GtOMV(u(v_3Ov7FTPWtXNbxN!`EfVGjfs8D5TDDe#g3*Y9GpXZyF!ZgCm=q6+Nc
z{p^!Fqf-wLlNjxZ+o$YnW3<Z5^^-iQHXtBeh<$KRoh0`CY^DS}FDqytRMDW!CDDmX
z?bb_Z&Y}=8l5%c)M#PcWMmHDMyG*o?#J{@1as1*C%>X&S-2S9yulLM#?dj}R?Z3Ui
zUV;8w9}fPl1|F*Ato!tqb7Iu_cH{N_3FJ-sUB<@%!a)uDo@^&Q<Ku#Gb>b^XCdR$#
zLff^-e>BzudaMGF|L0^|`mle^P|A*pj}M+}l_N4U;Io0$ogfLN)+y-R%~RozJHfgw
z@Q)NZtRM&};*t9ntaVHAjZ<vfd-;M~rY?=s<l5}v@O&!A4iUXmYKkguWr>2V1Q)lq
zF^_ud=o)f~I8YXtyS43pX?!Yon1X6vQ{kh|Rsz3*j|XidF-i$QKnuWN@kqOJqIZr_
zKt?D-Wn0qe#@pRxt$w7q3Fj1?{LOK80|KadL|y)_LI6wYtmkzeRcIvV1o$5_%zB;8
znz~U1->v*wbSH&cphbBB-nr0D{G0b@B!*ZpeM0^Dr`bNz2)m)XmqLBOWb+R20gB)q
zS!4;P(VG3L;+%K_CoX3_uT?+>Kb&X1?s5S2=aJJ!Sd(AOo6yImi}_Lq3IH@z%z_H~
zbn|QXoo&@~-a|ZPqAn&P+ZpKc9NSN;?h#&pSE}Ih)itC`2<k$YkK5UjI8dY{p+r$S
zZZzuY9AGPBx*{%9AP6~AnGNr4Z?B6j@%)|Mv=!}2&px!1&5*QllIHzswJUu1yxE<%
zcsn_qzA!L%so7b7^+pLTba_NGgE0DIhuOvVc~1bETwW@%kZe=~=~9xFAHUVlmT&S;
zl*&4>f@(J&&c^jihTehp+3DUn2oAy$p!J)#v=Ndf!Ir00Obkv(uSCjM9c<Y>jwGRZ
z;y=}N$~&YsT9N%+lEI*<t~DWbLC1gm*6v1~0<$nU;PnEhC+?BlsuE9h5Z+XFSP&1L
z2=T2)+Wmp7RHWqIQHajU#@WhEMV<@OZXaxqp6>&olaib$O*tzyn^Asds38F&Y<<kO
z5)|v;{Hj>WzTT~}^RMxNc*jUPMlEw(?>fw?kfF^~F;&?-CEOe%p$qk|f|G`PSnlEy
zn;t?#nPPZ2c+OYleWZ)sKGI50ahNJ3DfeC<&+fRgqpe?=g>_cv6WUzd(QXf&Z=mkJ
zqNgd)w3%L)xrXVp@GK=iI)ApU7SqbG1ZIJJXwN6_T(kF1mY1QhqoH-9^f3OzMmq-p
zXTQfNomTUuM3*e4C$F#@LbNO3;q`%BK408ur6RZ9JiQbekPz|3xppMlqo^9Mc$U9{
zO$Sb}^%7EuT4@MLa@2`dAblV!GwPc>daLULuDVUR*!B#4VL6HrN-by2yJXC9{}fvp
zb6^-!>4s3B3g{%e&$OE))sQcf8o8E%=w;$t|7@KvqSZ^1;yJ}rErSXnBdzuGGwr-a
z?=9qc%f{-@h|wku)2zLeL*S>JnWo6>;0g#cc~;Vj8?5R=K7g3zPKM7rbHu^T{WAy~
za@(PUeHDb=N{iPaWKT46Pm4RRu5O8au!n*JY|n*0a&ydDdSYbyfh!Qvysmb?d>d2(
zrRoZv82lxiOe2v4zl#eBt~txrUCt-Hh#=>LilUpvAmGmP?U6u%K}f`?vR9|_g5=yO
z9|F<KDv}GVZ>dj#Fk}kY651EwS~lIbnd=>jrjn}@x(Pq|Wv=ZJnhbd@ym$(qrvx?}
zE^m%~2tjcwgXG{*g`n<E^LN+VM-l*8!G-JqmL3bAR7I6>$!i^VVU@j$*}-?@FGeP_
zlebdGBo_K6b4bZ8=8GQq@jbV&k83$k9c2GPyMto;ZFDCjHUTGdb+N4u<`iW@U|7MO
z+Wf};GsnMY*Sa|E;!?Ks`^VUKnV-N}`CO>}YA<`@viRH$WWG+$A7;M?ysel7QrE`^
zM0*uj+t5~m11V*N+-dZW7W!aZg#r{F7K+MgTK@-|JH-L0s(S)?a5vUS@dl|vVy(xW
zWsgY$kgtq-;Ldi5V6tRRw9Cff<RLkyW)70Mx7$xAPqZKAcx#~-b_r8hN>zSRRbv}!
zy-%7tw==1O<?8<>lWm&`-XWe3&qH^V?c=6PI>F{~^@Djld7rx#_y`#g6c|3)e$VYg
zy2cO?M}Yw3y&VVMm|&Nk?LAy!2!o=xr=TX2P<7)cdISlk*V{{OeSVr95wl1H))Tka
z;xx&5Rkm)L|3cn-aYF|a`H?=G(7Nq(YctC~DO8OgQkbA<Do_FBJFDyx^4M5nhAt{*
zF|KavzB|?4jKz<@vLw(GKw4H~F9(o{h-1R+<TPMY9L0APHfE-emC<^XiyQYa_bjvN
zF&In@qfXST2YNuu2T!o=$G7^GCv0KQW|FmuV?n+P$J*}PsbZPM6?({>-wJu|JlUom
z@6G*4L6lk6qmN9xyi;sdw8u(ZX6eQgmL(G>=bvb$$NBI23&<!RgosJiJlP(J=5eUi
zzCz`Zj6BW?$NJaDP`U}IvT&MLonS+b@#a>TCr;Obd4*gu5}%4>6+l7n-nF*NDW18D
z=TA`>@^&SFvER;J>xkS>7qZEa0Hj>#S=SmkBs>t0^&)0<P5hW-URYy(a`qe>Hqh5H
zfQONYQkCF%2UANZu&9$0Ls~b@E@NU~*ed8I&jH3b?4I{5oo~G{+Ex#3@3k{IU|rPU
zl;wqD*95-L8*3L%^ijreHB6x*jsgz(#Hn^^vA2(CRP=;1DsVIV{yNM5jgJ>+Q9%lm
z^8XO#eoz_Ej)3zukx`!+?(7NHxyXn6KTohnA2}9Vj<NY8In!Z0aYDbGV7&)tlBD4v
z;^yEf7x5-o<v$$ML(zjuk^A6dnJhw?iod4$W@eCdoMO)f1oct}6sR;77-F3b3H;!V
zS7^&U2-s5PIvhaLYleL@+V|3*dw=pMlJM?5Cp6laQLT1KDXQ|C+DRfBkbYH_Ee^Kh
zq(;JE#`V=lw+UBQ+grl};BbU8nR>jQpn3`k2IniMwi-5@Sc4r?%eQ=`QV3sG*c*Xc
z5O@h;1lm<NZ|X$*dkj40GjU^J4SM!H$tDH1kL4L#K}jcYQ=Lt0@R<UqrjqZc)w75e
zk{=heDKko<C9tu4ntgF{t2IiQlqoeERgX_(u--kznqvQQLOQ>r^`t5G&)6Jq#FHHn
z%RBaDI~%M8xdRoZRVh(ZQ=%cTi#p{m@vTHgpK-QJY;d%u3mjIEsMCqIUmRor+&%6P
z2FrooAFZ^8dY?j`a=Aol=XlSYV)vi!?O=*3-pFz3FuU*+`{`Kk0Xo?J?!XUL)8=Fw
z)0(iQ`#0#;8TBO`0HThqCgQ4e{2k-BjYtUvEs9RC3Bj^st5x+RTaZWTobT~d?8_5k
zF=!RIB5_o}%a6Cu$9QY}#NUs0ie_Io9dFk_B@zME;vH;D)?m_T^BZF%EDJ!W>JuC-
z>l#{Nr)Pwy7aR+GkT9y5WS<3}FT$6=qjfS$_?1k%9;aHH^L)TUqV*ZzJwMsDKP@JA
zyGXibh)57_YxVR}ev;HZdE7C3aJm*G`%{zgcNwo%4!Wq+33=p_`~Pf*H$mDw*ELCL
zE0J%Mse<W-&O`Ux?);Q50v6PgBrDUeayQpvlcAR`$X16b<U$9rBdWuIey6->^M3C?
z7mmQf^_o1Ui8GcTZ?ubsduOI16_(UQ7suR<AViKbD)Dsb)3y*rUd0}e4vL@l?v1xD
z;nw~|5&<f?$eY`EQnh2sq=99JU1x{l$D?mB_jCM3LO{XUmfvm#M|sBxn37V6BwStW
zIK)&LND<R39=E-5iD=)j;HD(m=4tCW)*E0;Xw+P=cX}cIK$yv|zFoG)22}bdh2&k%
z5%8g(T^_bw<VbQYd+-KHc{;SO$L-7R-Z2>0zb@?44l3o{VP_8V_5k@r6lDoMil{K$
zlpF1+V}J%pRWPS0P9uGSJ+HF2;&)J%QemPduzu9CGDvGME&(p#i#sOC-*2`hQi@p}
z3MIc|NX||!(qo^tv*k)sQD!(*lg>lwjtic)t>f7IJl*R`;US>@^&|HA{{9Qq{!~3l
zsl_k8Y@aGR(kmII!e00(P(}Ir>cuuTa06R_EHf0~o{Ff~-*4adig~$*glmzix*QT_
zlU`zHZNP5!5*vUL9?Kr=_xiyXDpE4;H-E8*5BENlG;B*;_FOtcE4t7A*45hwD7`@i
zePBn=+Avu<zJD?iRCB{2Lp4*zy6biu2~2T14?|t7orJ@Vf66ii)OtI+*yS^O=s6#P
zcOjAdU_Q_@3T@2v*3l)xEI~tdO2w0Qr97@#f>MSmDCB7Gz8Z)#ic|ghAxp~rOZT13
z_)J-IQTb`tg|;|@o%~pLq!j|d@JDy@svS|A>4#OeQ4W2o(an&7rm}!q+ut5DIXP(0
z>eD{GHV3q#)X|Gq*p@^6o1$#tXqc`XCa8|WMId_IJbO7HUF6r>lP&&ei$G2WmVbrP
z406g*R*h5L>KZ#cx`t(y?rgPf_p&`|3xh6~lUAnF5q~;qmE9H;6{Ju-yA~9sn46>9
z(+}H09elRv&FZZlSfF@~LsGiu#SdD|^vymj^NRCmbEt@NR#0mUOx>E|xblc(&!)PG
z>tLJl2EQM0=3RD25C06$0-CQ^V)b)}dT)BwYR~ab2r4RH1^SJ--$owVYH(efg{-k;
zGmI3tgK?v-vNiqvGZm7lsN+CDd4Sz^rJXk~W~DZDIY5#&+Pr>oz3C6wb6US{|Kwnu
zN+033{CJN`?EAn`92hV>kqR5$>k_LvI>zMYW^jK6Duu)BrKPr40Jyo@D%k<@>U)jp
z^Deg!gTJ-@sEhJdv~rHVJ!lvVKsJ|q=7dKXCeO2L$d6}Vv)hB9xmqt~&{__}C$(?b
zA7=$*O6pWi;n!>`b9YivB_0f`nJoqvEbHE<ZLMNq*@LA>Hu+gCpr=k8OeI^f%moU3
zFjE=aJwTk^Ns8DwpBPlVQJ@7#;OHGsTi=ElJL25`N6qQem)M?@TFswTF&zx8N(5he
zi;W%Q-wnZ}mZStHK;WD=?U(p{e>j?4s4aDYLGQb5F)`BS-PPh+5pED)(SrmbY=84-
zn-{o^vxiH8T&>}01Sm<Yc;Wpvc|RWk->JBSc<i!gZKvQrU{lmPbIu400;4*DYbW?m
znhj~DoB{iBK_RJg!lU*k?pj<jSyBL@amL8saN9XHCfG}1kh^@zAHQX#I8fM#;#}2Y
zwdK^Yb=jw@a#OFeS-<uEKs9a_C?Eig`0<|a*{e0)>53)ZJLhGhi|^*y5pj6POcWiW
zPC7gQTlbdjF1Mv*T(&eI*aq%*d&&Bq={;n$;-9U8lTrMP-;908o;wKdO{Pjk4$^A|
zcbG9uMQNv%+ib2DGGbJt-yDx+0R2E6tZE;5Gjb@GQ}Nd*jb%*?2mYjj97(~$wpU1A
z$$kkHfvD7dZvcs+{(RJng&*GnhbRRU^&V%fvE6~M>czmg@V=?k3VVI!ReLFzFYPK;
zh#&^si|?`yA&6D(f}%c%2NIn9_M#An-Ohf}ZY}i5q~CGJlOjHzaKH$h$&Yv0xkq|;
zb74q!0&28Whm4a%y&z!ctk!Eg0%^Yb_CCAO{O4pFZ>q0v0>Ah-P||@nuCm#2;9xW_
zmPvul7ULazr7iE1Sr>jXmd}MHqz0S)(*w54-rl8h>`5|uzWsY27x9GU+(hCKPz)Zm
zWeTo3!H-ZzJ*?P8Guz(lA$ug0!BLIyVoYezi66CFW{;ljKZ<Q-{E%YtxM6gVdQ=01
zeAD)ggB*fWP%G2x%cneI_ZRrDb-bvUlARKR58q;+_wx>JDN@GAGetzDET!xG>@x?$
zpuLQCEo3?OkJe6eP;s5nU<2;2*zRUKH_%$h$M*#5q&MhfqfDbeY;fs38y@fj@<e_E
z;*Y*+E9!h5keGaX811~xz$$in!#V^&V&mDYdL=I~yp&flje@Ie<H?x;yauf_e)^=g
zZF94o6!KBR3#Xy`z1XE<4=6nU4Hicc6%a*?lhOc<4fudzV!x{GdW?`H5cJ9??b2Ww
z_^!%%EuA9=1tH_h9<cZF{M?H?UeT?O$iCzC_Uh}tLRNvP<VGmk2Ke^+Z8k=xkh3!Y
z5LX>=8>t|KxGX<!dyCB-7e7a!VuXp~(ZzgsUSe&26ML5?s~#E4pbfV)7F&ayx3b<s
zu+f;m#5PX#MxH<?dJtk6EPLez`#IFQA|wt-OC6*hstvZ=tM+O@iDx6LLM_y8S=dbv
z+d0i}@YguBrR^5lRv}ju0T55{1K~_LkegT8sUb8)Uv5Te9)7mZN}C&E%1;}8i<%~J
zCSJ`4Iz#NYz264LhE=35!>nq*mBWc$vyU=re}!HkkwkM?I6vNC?Lt$;Q#dD&6$Kd4
zT|uEmPuPvIM-GTpk$9qVpx_s~oN=vn4@MSf*iv{p@;_Qgii27_z=7LOno6FcI&R8w
z*1WmYc&~jCYbP0!ywuG$CkM~U2W+QceDRb(E0L_NHKOHD$Q&q7`=HPRkY5-2uWYK5
z?~)lgyGtLkK|`E3lhXs<sZ1H$&0ArcKKD9ZqoT%+_y=c`dA6uKHyC6bsuVr$s*HWy
z!&3p~ylkf<V&V49Kb5}H^3&#Kd2?HuM>aMgQWVv2m_EANK0Mrq8Rw4#Bx_dMfw9t}
zDiXp~XHMqg)vwzaV9#_#;3~NQxJdmjQK$E9&C+bCG457YPi=C$fL<V#_n}RWLW>}Q
zDt!^g_Ch-CUbKmjn;W`NF64p>##Q8lUbgDPq6Y`ByLV;KdUg+AFz8M%*qnp?i(!Z>
z57A)G(ecv)dk_m%gEFF)F77q-JzEt!8d0qagOaLVzg`n^a78Pu@Bsf+pcP3qN=f&S
z8)=E+?0l(2)t6qj?Rxr`T<eKaZOK=w?fMv<s5NJ$0=|e{C~V&)wkh?mWnt^^9O~LZ
z?Na-o^^}x3`BfEB_TY9o3HQ{$V;Ao(wb$Rw!Z}L1Q94f*(W&SLh8?uBrQ{o493Bmw
zMvu<^y5+X|4gaN=0N3`*YS^JFzA2S#!%AC#r-B(XWL1}`RhV>MWyhl;H1|xV>?Z5!
zE|=>+SKG%2d0)Sp(y9hBFt{bbY;)Gwk+C(eCF!><y9*VPw{1=Q01}WA%kp$QwHs_}
zRr`#}jnuzv@RT!2AL=*q0mbaL+2|h>*YJi6jy&3#X@~XM8g`>=!8rj+vEJQYx848l
zpHpaWY7@mVh3g9ae7MFI#PLxJ5tapYQc(}sb@|Y0+xlJ#Ic)7j{@k+nEZNgrRjgCr
zYJXd<vm?8BD;PbJ8;YtCx;a3`pwwkQe~kyfV%Gx4ChQ_)8-5S0*I$<w)s<Sg%vB3g
zn&@qx*c(5_zQJZB2N}Rx1gN#!Yj*Z`-o@2Q?uwB+uH-E!-~)RjO1}!%YxFrA|HlV*
z@Yb>BOnFziKd4&KT;p{lHFcR=C?hkKI*dnt;o~Eaxu{5)Ik7BZQ?JF=7&E{K%A2Ub
ziE8R)KPsQKU4QW(Ig4=UO8imzFjGlZwFal6OcQ{Yk`D0MW{-`wKIZCAVNu+-4uH)M
zKrf<jfmOd?z+FDIZxY{*m?@Ga&g=HI_VFIxEKsA#YWuo7I^k0*j)e^&H0&qCq4$5+
zYIezd-c-Jk%7TKf@MQT~O9CALqC&UH^bhQw9Rq-9FYZ3q5m8s?4Lf_MY{wANOG&9<
z6!G@b)pqq(-c`swBJ#pL+i=1nE8Q~lgK0CGYM9gCa+vX!eW$v@P6Y(!1a7&@);?vY
zZs*^RE~#_IisWF8uRLyhw()l9e_l49&>dwi*;(GRc1`RImzNY!njye1p0vmJ$_&*~
z5G)Vl2V2z7SH|K6kK4EZ^@RjC5Ni@EER_S+zY@<pXt|w>?#^<F{>)(lk<n#~?5sdo
z=ps9&@Q=saZrawrrm!=0a=~Mu0gU!vYSp`W2N_h{puiW1PX=JYnGyIipRqsTieVNM
zvU=<x5sy?Wu`ca&;TzWPi0lWMGJrCfn#F}4US9T+-IgJHCD5W$>E{CC*{|3ToEwbK
zf-wQSaIh4;k#E`bC>$I>(4_=2SzHP?kpd`;0}6F-+pQT2E!kAf{V06r_|F`}z`L8@
zwbO%2N!3)5S<shrc;IzAE6{h8r&~lx<V`QzvN%xg)=@toQ@~b*S58@K+rJ-#MMYn1
zut}ULm4n&A>JM#Mh6|Tq@l#7DTNGC^W9j?ZI@{<ual|sT=e%M`N8h$w?qxN#oQBFP
zO?}$#+QHj(T~uXWA#70M!6$8pXb)&i$BHC)2E4Px%15_-WDjhg8MFrD)0q_)bVxLP
z$+igj1D7E&P_7U04B_NHi)_Ze{wpLZ7lg!3AP9E0-3wNo6$_2!jV@p0wd(V+JrV?@
z<QRPn9+a)JtEjikLsPNBtSbw<2U7+GvX_cyB^P~SyI^T?-tcamqeKpn){rY=<Nh~o
z1hxC=L&{|L#cytT-;Ueee^ab8=42RAELuN0=`EZ45C73Hk~F!KBZ#rcnrCfUFi9a+
zZ3Truc{5?DT^-6^ERq`M{#IbrfX@5K?(ZD)fNEKqUGR)`#&x3=!+59%DzhHsWA5kP
zvk3w4;+joTYeXE%hk=CylAjmbnN6+e81Tv=AiH3<)pluC_Y&{$EOk(T-OgKTIqiJD
z3?NI&8a+uJNcz~_<yf4z-k!<zuXr(=iw|%hHZJLK+hQw?s<`mrO@#ETljItrM4^>o
zq}Aj3VFS|E_IS_E4jzItGyEOYZ!MGilZ7f&cg+%8h_{s8Gg^fP3nqHoQ#KNYo(*tP
z(2vAS(26_`X#kUF+HY0f$8}YzX5${fghSh4f#1Aur?sZ+jIWM?1)1)P?ZNh~womqE
zgWh=#;kxIC_U%s&QrK8XOG%z&{stQt8<gO2R<Guk()UFY3`jlK3jj3e{lh}b50;3q
z<Q|7=J+nD}_V^Op5KP5ESgzUtUS#B+SF9=62~Kp^N2GS_`>uT$%5a<*qQf;m(aO~K
z>`%}8g25gyeIWxGB;dyE>FcdH6#w`gMgdkHPQJ35N@^tVl@edZtg$CBghUnSQO*&>
zDe|7N3Bj!T5p9xelh*M1GAoId`<_CO%NU>cp6$AG_8dWBmjU7~I*}WmvZ8Ig6Mbz4
zb)8+Xp8L9WM&f3ZsB((LK|wQ8D1p($arSX}42U0GioSx+pS@|v4e?e~@t{)AWV5$y
zW7IBYUA!datTp*!t);JJP7|?%#(*U#hN4AL@co%6_<gLdcY74<*ZPkRTNknXH=M+=
zAKMwBq03c`^2PojmR+B)1+jT_HM{~&r<Ldlpp{>xTED`6ei>}$U3OLn<UOUk;s7hZ
z$2SA7(l2=p8PG7`^&i^09Pb&@RIa@X4W4C>`M^u5UsS4g&qS|$ZKeArn~0Z=BOF-g
zalVKr?y}NG92?_f&{0ymPV14Gz3tn!H+7Yr>ZtyLCr3t`%;E!Iu&={XKyb{~h0^#1
zk0}(d^IuTqKb|TOfnWB4y%Gy`=Yu=s$t<DTvCvC+bjFLeX9##UIjDw|K`$*Y?RNmX
zj0YO}DG@G%EGIu>9fSK9$wj5zYn-a(mLDR%mGEpWH#rcIkyzYY%k99>?!X4_iUU=T
zZmzfcf*||VG}PDBaYvQi3EuC$Z+itNWs!;r;pcPVl|E~i<7)&^TvI0@Ug~*YX-7A_
zXsf~mAzKl{Rm;@H+O1!))kkMw4mY3U4tI_NQT^iU{%kU14X)b&A>#EApA-$=_lCXO
zTKsw{eny7sR1SF}US6PJrf#6gK^tB_Zc1=LJn2o5xL(Qluk7D1_}t5Npx`DHGw><<
zA}BVPK)GL3b%RNm@Zvl6vz%z+zfI-Ab5ynXzP0wR4EbZn!4=p8+kRxZz1Gz~ABN|O
zKo2@Th{HT<U$WOiPa9A&Rdo!ZB_PX7MDs#p&sGPQr?R#QXK%f1ZkY$4tg+|%W?)8k
zt|T45R@mg5mG*hO`!TqNe4xxC&RSu)!PmS*5h>}yQWZj=RQ&Vt4glIDau4?{zfrl4
zg|FB__(Rzz1_Ci@S2jdDCw*Y~A%6RnRO^}Bpq*8#?9pH}0XD24baPkbIS(FxI6gF&
zEKt4jihC$#{mu3cpFk0gDe1YJ1I}y1qsX&jz{ZN#eHfIes4B8b9_&zg9)H~`-toR*
zwiyeRefD_Y@<Nl~)I8~exJ@3M4`&W)3oD$w-kuN3c0|QA;;OFqD!UJt#gDCDMR7e!
z-g~dUjc&s?-JiFnFnPoPXAn?iMVlM)cwZv($5H#a*KNn}B4|BL6?v00T8u>eL+{%1
zprN9gvKrPom6`x9XJk=4^|ZZ{k+`TSHT8G~$OI9|O4%6HWd8~6i<O`rsImyRxgqgq
zERBvh0fG;_jTyP1?yrVrGWtbN+r&7GtS*@6ikEE6E1$RXn$_89P44cJAN$i4SvQMh
z2^S98yySVe_4aUxT67VfhGzx{$d=gYLAw39?ja^7NAA!k?UyYArCn1l$t$Nazl!ex
zNFe;d+cxRd3<J(6QNg;}zGz2e6?ciOX@T5=<F#w8SID?x7?Dcf;yDVX=9R_PHe=4B
zsJSgiEfeOFrNcu289_G&n~)+hKmekkXP?z}eh?C>xx8%tTnTC0iuhIrNrFCQ&KBH7
zpSRXN3W?gk2J->Mg*Y>?neo0o^J{HbrAd(EFW7tWC;}G(oEibo3CpY?1QsYUwQ71}
zQ?)BcDyDwUGq&(s2TeZ-Ww8RC)*qJIPhp=I^ER%0W^TxT^o~vH<bduE|8mtB*K~5=
z$F_9{_dpMHdNOT<Rk9`Cde`PP<M*^C_`Q69a>N5Nl?piS1^X&{JgTY?mW~_^AHHYf
zRs>Dr^2W*`L>-pqWiQ!t#3<n~xGcgCC<F4;C3YTCo0<+{R!Oq|Pxi~Y3}!TzH*pq8
z@7L_^;I*;X${H@*i$O?gELmkUKMHVwKh*gCl?D3WHP$sAypRT=OLO|A3MG{;wry7V
zFJoALox>f8_|G!igBkJkk96Sw`4I;{L#$Gi2vvO7Wao!!Di==~dM@A$?0fTBo14MD
zX76hh5&<~?!H~7qA*=wngP40Xw_j_whVFpS9jD^xWcBqD+yCWddnu$$5kbi!zsL!%
zAo+WxJr>r2UeN(tIZr5K$p#ylT^qsS5>iej*`;Ib{ej&QZ;DX+$A#kNUS!w`iI`c*
zu9vG|keP=y`qkB_^f!nG&fNL7{gfe0kyx3R_W{t5(WNh0CpmUnKW2nRyvdR`IOslJ
zAPQ%!QvJBv(LMR(bDm&v6!7?zD@1NC{q=qOGLX3+YF~&h?z6mRLjoG3apZ7Z&K>0n
zd})L27>*o|H|nC8(|(I{M5_7HRd(ZnJ{>ho%U~TqS)jS=WBVk$@XqH#sgp=-@rn*r
zvVz=i95lH261rRn6`A?<l!5{Nv@cp?!*`7tBC*Onc5b%6^O~I*geXUZ@(%eAzIn<i
z3$n5){_~Md3+1aHMmcX+gsFi~yRq5V2qu!sqjhW^Q$cly8KBeC!ODMp)fR8%3vraE
z?yiaivR^s!hCgjPhZ)5sNly$8mV4ha`*%1fB1$Ybvv2E^b#`00u7vX3+7sr=TXN%P
z_V?g+(t0D-!d^gy#p~>;=n0x*{%o!#R`1kW@#J4Qwmtu=p|R2(An-a)280?MoF4kD
zuF?}otcWe-thI}>a$hzjH$cK|qGQ|R1N(EvIf|&MM&7tygo2q2Ty6J-e?68(=8{Zp
z28B=j<pb*!bT~#20P>)T;4GY9wa5++$4LClbp`n#%G{IVTA}Fgnz!ubFd=!;2v+N|
z5yF4!1v@^R2m&B8if2e4+YG54060**pcUuH#N!v)r?Jl>(r5^ayDObNp101n4_(6L
zc@tUOVYoNGZ;ytiSftOTl?qdCc;5O(Oe=Q4;!xECn1nHA1YHc~6a&dQ+<RZOF`os8
zuhHjxEkDrXZ`+m4nn+_Mjw#Aiw-V||uAknqHX$`6>YRZyUf-3r`&u7wFiMsym`Xc;
z?R7i8o1-dcOtlswWSVMocRAe2bsqFVk=YVw+XR{Wm3Vfl*wuCq*vZO%aEI5R8in6*
zi36&E>#WVz(ZPLImMhgsxc9}g_EHE~-u>emvo=U`iw_@PjnciLd9Y*n-)wsLOOP+M
z+`|<LD-Gl5wRZYTzORAU=RDCt)y3-8@x*R#+D-v`wlRmjyNm%MQ1-%%3@ypQd_ras
z^O3<Q68bj@ouNy@mJo%aMj6>xerkI)`<)ueBIH*hdth+M6Lxp#kQBj2EC79vFbF=I
zHrf}_#|=E!eFC@7S!64NS^_h;XNn<*NWpA^1Rr|Nb`C^aUMC?PLg3$T+GXK8V@rhK
zGL8nM9N0d8z0Hc3wfaNpFf7+Jbrda19cNu0ffmtM+r{=%(3hO%P&z&=^hcn6-7;$v
zj0{6&Mm8`C>`r~z&J48C3PL{rN;MxNv)REZk=bI%kijF@;;&hGQO%@Amnf3F-PhS;
z5vh?xX}(<r5{hp5;EPvn&#)Iqmz8XCPh?2IzlAkSt`&5yfQ_eppi4I`b|fJv?QZ#?
zy;IlOg60rni(>W~0hQ2%icq>(Y&aj5y=L2lyMjGX1W|hcd@b)C#u1j_T7spso)+g-
zrbjP<yK@5d!yPcLPJH`{-8#TY1VM~$>?~3F5eKia9<A+hF8)sA{X(!n1a!lzc5S$O
z3d>MY-9N*mjjy&SwUc!CSbnS$pYVeLG162TdEn2hnz0VA4-mBX%ipbUJaHC|UiQ7Y
zgLed0o}?%HlM%PwV|G^%J)#U32|@+_^W6s9@Lra4N%EDTb%^Rk2h|I+?+JpPgt5a^
z3TLv^?w{YZ$Cvnzhlx!wr0QId!qPFcPw-GFFV6Gj*1zs0Px2PusVQsZI;K`3asJ|q
zc5>`xAZ0?OA}Ap7)dt%sge)Pz`l;?7QW2;5OYM8oS{Mcr@C1G>SON5NpR;?zgxc&3
z$r&mI=&r;7-T80XK^a3O0(syUXVDVPYYyYXT{yeXSKFy!*W+Dcm<TlK`P%#5u^~e<
zD}lBNMk#*TSDrUm<Ejk~n|`hQyTwmhxA1BXq?(+LMl}7>Gqzvw6=#chTX`bbbvXsP
zZ&_j|hnHkD>ZtqF#chsXViSVf3=!=L@m&LHd59D5uCz2K)XjBjJjKccl?o)beB3Lx
zV|c1ZA%ol#SxT5#q$E~}49QSxK$VN;dapg46qmhV6N9<*Z|xz@TW4Q}cz54PY38X?
zA$Lny9nLnj(W^WBDs<6&+k#01Al$w;^maIpYJwhA_|Xl#vCD1yFv@W7`7QU*uKT@g
z9Yb1>_20^bKK>nB6XuOa9P4Dm00PeVfM>0=+1-qG7W$KRf79D`c;F__oe^bo#=g0*
z46wMSBS%$KW@KQ|<GxSXvth_AZzxf^M@vAayYhn;Y_LDzQQ!@bVR+h;eAh`U&Gx>E
zeA4DdY3~2isGOixW^Y{SUyf4phTnxJ8dWPTR<zF(0vz!2&UXF{{?#})*<%s7r|6fV
zc2QUR{UzStvK4=mh+5@nkezM7AEQ^opC^U%7+z9%u=Tv&n@8vYD^dv~)|F3{GI9kD
zwW9OAw-9%#YD?w2Cb6--J#cBOsj^woWHM#e!>$g@wJR?3kH-0}E_T5>)*oQ~|KP1d
z8$Dl#Dww*NmgIG?onuVA+)6>`dr0ud9IJ^X4B!!6z5a=YqAOrrH|c0;TvSs4%_H|b
zqztiHTf0t|i~Eq2hfb(GG&0@vXc#3f-HY@?j+JLO0FB6as-^CsuTw61w2@9W^tUkv
zSN6Q3K)&nfcXzTo=XwW{lH^Q1R+7AzYg5ng#=)$eBkQBcU-H4OHcJ<hv(Mtym2eAU
z69rB1)RBU_udP1Qdk57u@nT+*yt}U*_xqObWyZ|X9kM=t9c_m_t*fr1$r+4iLWdz~
zSk>NU#)6ugMGUjsTmD7<b<5dFkhh#&23KWYw4i0N@|=Wn(ji74XuJQ}$7luo<db&x
zq~MN$8|&`lS3W*%XKexoR760j=OSVjJcB#gFR`x{1Q&=ntKaQs^I}sRB2V*9t7>Rs
zb`kBBovrgVK2H&meP9jpA+SC_z?NU(&Eu-dGeuJ5yG`!c*Dk8_jvxS~wEN{qYIspQ
zj%%#0;eD3c3f<4cYOk0*l`3AacI_8rd%2T+c5bT?TFy(oE$1}`#~4q7kf@(U8cvkW
z+ymn2nkbOLFI-d46RSO_agZ!(XIoEi8JG3wUR09bQ+bgOb+*6jilknP%o&4OiQx(W
z=xNj0PPo>43LCK?0W+&Or<2u8_C|QMmr;NkApaG+*_aH{vu{FbXo4U+!<^Z{>|*~#
zcnfgBQ|Q9+wqqyzd!V3G3JDG(7#61K8xOIoqf@~Vp`6G^IZ87+SWV!Tsz<hBhxs0c
z`FoB%kl{69<DshvS}^y|NGSH1+jp?%PjA0vlIS`2XCG|ehre=<O@D4`Up$1H+hlWq
zg#-I{AD3J(I=!*J-81yxbYADn`*bAioIJjh9W$cCE&Ns6nBG><{y6>`-7ojSy*u^i
zubpnqJ?_)CyYd$fudBZ6P|RO%j!I|MwcCfkuI`)i*3C2B3zE?dHDyyK)l^SaorxR@
z2PYSFt}5tQJVI|dRimqvHWC0GJ&cQ(L&v3k4ro_AqDL~mgzB|aQS3hscj@=j($kM<
zS3I(3G7!H8hJG@B6am=3PD!6Sv|TZe67;L0AOdv`>FGyy>XWn55<15BO1LIcRV_*@
zF6xoI^nJSaowmit;6n7gWjET2A%PcfN;jnKiU$(CK)Lq``VH&eJ2~=*^xm_5UT(~4
zl{w?dBdgc!y^=n4>G(bPk#CTiu^w?5T*SHEd{TO9d+!0jm6K|yE<t<m<k*t*l6~71
z59M)%8VX!BOiG3gEa;ZZ*pNQgyIt|1-c&TlLqHmKGGtWuq+wE;yK}qZ(Ox1SBc*(H
z(r*mqGN-(k?px7TFd99ns#aGwbB0gL0mwM-fmVTjxPPDj0Sg`N=A?h=)~@(ikG46`
zhaU&f`MzuacEu`-i>fn8(CRm=NAg9Vw0wGIf8cUCdniZ_I4Qj-*C8?<S45b-<3|-F
zbL-NLZ5f&>Iu(>VB#mR#U=oLhj7(<?Ygb%MVk9&)335#OQQ7y!8R?%`2<O>)6y8gi
zmX3(gc_X>Jifib6-bavrvg`kBh)XcD(;f5L6%U{ea$VId9sZb+y^`a*q;tP)t8*EQ
zFv_fPa8b|XrwQpvo!F;JSe2Ab(W42h5{Kcw!_%q9`vDYHlsjC8jOrt>yt|(-^4O|!
zT;Cv=Bg}x~LA?VT(+3&rSExrSC|l#5^Wp)0sO3cjeQGjbNVnvw*VCQBUl6`OM^;-g
zO&uV7uVnqmbS(&fOy5Me{wC#&FA4M;HmZA{r1FCFnEQQyW4I#8Nkb1Kig;sSeqMUg
zTWyO6DR+#Q<>0x4$NoRQ&O1J?>gfB20HNi1=mBhsv?D?_);4KHwYqF+)pljM0A?-8
z(xS3P#j;Fq0b^=trWi073<N?a0Ro|y&_WBv)X)OSLrEZ^^L}UUuDrW4@8`oG=I+(K
z=bkfX<~P472f4ebM!MRNFBTyQ0q5#!L+;zV<spQtGE6Vo0s1lwxON78{>Ad*W(=Pt
z?^>*XUscXv4rvw|_C#mU76Zi#5!%=38f$6e|Hy9yR39y8qRHlP6}S`6G|DJ49%ZN6
zmZ&HXyUS|j!ObT}n>hTvtIy;(UK4Q#94pJWogA&D)R?NXE)a32zRvIZo8{}1CP(Y=
zO%NHKl8OpeV~-o;0iKL-pdBn|z;+9{(!*sImn(IT!h<9hySiC^ch+_C-9E@&#7+0!
zIK7sxW^J;;5_S%g+BJ%5sfgnVz4ixr^6W{`I*Ql2R3iXoM(1myTthW+<=&Izk~kuu
z8e@<dU6>+QG9C+rT>rE3ZY|q@?#fgQkE+m2uPt@gwo8O}aG52bWh+WM7AtjA+T_bK
zSTeft=!OIxcT($JH9Mj@iCpIBbQ(Q%jds9q^>r1ru}TH;F}$tD>Y)3}8tG@L5FHS@
z9x8zBMBFtm$sZB&8N{D4I5vBY)d<I&H4;OnRNzyCy>50B+bwpReA-}7s7MZ>cM9mw
z+N&<Pt7>2hw|Pc(4>M+DAvLO(hbRl;dw6-7OT8k?g8!fK1zg!0`GN7xK=I&_lGTF_
zb5$zEjn~S)hp>`-HSLFN`!`p!!v8s0?p<itD*(JmWOFqJ?~0|e^{`!SAgY+^8*mMc
zC2pe&WT!-CC!qRKj;%ozo{g{1yEou&yg+*A=UqkFTqKvwnH+6|zvDa(R+a~Z-8PHm
zy_@X0HHltt=drn%t5f8u<;YXe)$uWCEVYD;ugsl1B-=4+_GDFRRJUqDG%?uA0ykIF
zyY#c8<=m6)?+pGFG<K2fz)x(;{|?AYefEd#WBr&`73s!S_Rm#E$y--?BkStmJlP=~
zTFCW`$#-`ky!5~7(gaj`?2L5x@T^idcBIs%SY5VPN;d(ITBsA)J~Qa1A8nFU!R|-I
z256^9nUAYrA8}L*T!?PU3Vz^krf8jLSHi^!lRP$E?p}{Ukl{DVd1O2+#<Y*M$wq1{
z#<#W~<u9*HLR*!nb_UX+%qtpMO&WavUk`hPLq-V9+5V2zB38b6a_b;7VvXgYSqtJ!
zn`><My9eU(2qt8DgiX@XtK&y2UmlY+V;E;EyP)U&sB7l!LqEvdPfUu=Hrv#l8gvZ}
z;Zm2pK<-1)MQN<8ADNznSQA#O{Q#Lg%~Ou4VTI}OmNIQ~9{Y&<X<<cEiY_!2<NmTv
z26i@S(Zn8o3R;cbGWj&w=TK&A!owqO(*81~!t|qRH=O}ARtYWiWcMQ{N3ny|;5TR%
zqLZ=N=&YvGg!EjUn)ZY@GwoFv{3B<}72WH4L&%-FpPbF`DVD-^u{SV`F~7b*F-6W*
z!06}A^6@Wud_Z*v`KyL#Sn#mhFf31%tm6$KN^~MJSZ;q*mrC_w=>Rlqrb|&P3zCa~
z0s(jRrSdg%l=nl(&Avij!_GA#71U%QP5ehp7G|ZYnvH+|$p$ra<M(yZ9SG>c)P~$H
zXUVroR0U2s4kPpDO*)HFu~hm|r_BLHc=#dRCe@tBxb#xFc}rFae4a$$O#wH+8{K+^
zyvNk$T`zH0t&o`;v;N4so=P*wfWjs2jWgxT1DHTwM9)S9uA;&3X0MVUmRxT|1(*u2
zs%C}`J70EX^2R?dt&b;sUM2Aq^;-34*UFh;weh#3df6bD1PYxE7Bn}Z0l-YFXL(x$
zIWPlSu86SW5IJUmkDypmw|Hi!V|x5<=p-|)c^~LrULjljY~n<5MAr(Ly7k1R3cFui
zB|ST_4*{g=58&hg8JioBpVz0z-22#EAWSUqpsv#>qjs@!;O7H}$~JdQiq7zR5G1|F
z8kv=<h4Lqi;vAIaD1ZPx5<`#7oGU-PJt;bi#(Dky38j)cxsH~bcc}EO0eFGxlD5k#
zqY+m<PZpg$IXX+v%pi?d!z8itP{eKCD<t1UXJb6N6jSg7zuR)Q-2Jynxi9p)DYJy!
zxabVEz}h-SO;$w=;XkoK{=7-v_`>dqSt8tC!>D_@7WU9YVW^;DWT?lrvr+fN%V8mA
z(_W4IFPdF<xyqVQ$Q?RYT0fhVyYV<n?UN>14x&L%wkL*E6RJpIE+g*omu0>Ene1#h
z0%pEWnx~>S*k6pYK-oqVVW~^C%bERoBQ0}x9V)dS*s?TRIcG20q`cHme;wKP_mdO>
z5hCv&>Q?X9Rj^c8rjvigw(=Y3VmKK=YHWo27?fQO=F>Q$4ddT!#l9>sj>-c0>h?*|
z7{ZrSUyDr<2S9xMguHbEZ;!ayB)cR!yT=ABOcdk9y!6O&1wZIM7?C8qYdQ{$>7au8
zF2Ku>Q{4Y_xBPvsZL%uz<UQGsAr+Mu$qoDs_@=rOqi7Sz<%R9iFfuuciD&yR01h#z
zGM9W(jy!8pbS7(OB3!P==Zp@y`q^mTM>a1yWm6^>``*=QVi&E)dAp-mZs=O)phE7(
z1#%1fF~{a1IQzHB4fr1u4X<B~>rt#!6PldGQ@p?uw$B72V)$R!ZJqC7;}3SrHf?}h
zEM39?d3z1||L@nDdIW}7b8yg*r9QIj+R+Fttp+kM^%QY(WPk#mST#Rv-zu*xnjDR1
z+)7KoE3W{dy}nzKdPj;&Fg&JFTY2>_kC(q(gl^Fi530KW^UbZL?u%<=6V&PKAaEBW
zJ~jx>>|8+f5^*nee>_;W`}ZV;&F!g_H<!~H``a_+!_mpnHr7{rr1l{!;F0P&;L?~Y
z+R2%8Wn`7mBK`;h8*rm@<aJa?Ln(6Ei9qmoW3D~M*MNL<(&~cL3uv!}2Hm$W-YCyu
zU7NTaee8)!JI3wWYviQ;vLP)G`07^q5=e{xVh)ncQ)PRZ`}RW5tH94fK)e^$u)#A^
z4oHD<Sdiq~U0qd~D#rr?IRoM5zuX|CVP%gFF?;2Aa$4?13}@uGasU@Ol0%(to#cut
zq<E*_*;6OjxsV#7C$Y3uoGk;g!@;U%Cl)W2mwAdBqLIbA6Jqs9$qnbp-;l;8PGwaU
zW0H*$-F%i*vlw;w|6S1CW@H+`?tea3o@GYzuKN`#e>)@Rjo9@sPm^m=Q+YQ>+!ja5
z1w2IEH>@q;OtOl}{*Qyi{<mCS`4UGd_r0a=x#Q$ToWT5V#WtQUH%^}%ok`*?8F<~P
zQCCZ6zn#95U7oY8OzW&c+xInS`}=Q_si07#wPDPRL=6h)lIvv=woW}kQg3x)np?we
z_v>XY$`^G+2jGrgLj*Om{ciL|*%47}!Nw=S<pVu14z99}cYboI9L2-&P-yWs$Uqv(
z!KVk_B^!T@Iz?+H?W}6<Epf#w<oNHgD%tl2_1@-h_;^KHeHw15phRNj?__zw#4ksH
zK3FQF@Edr{?TotsDA(z&Ut_I-!j<(Vy3vH8{<Ko8$I`_wlyi#EKz`TMXMRFcLz%nr
zN;#g3hzI_=dF3oOf}}uk9nc}*-aJvLVAemVgSa7IF2RPZ4+LG=#d6BtHlgJm9T}8W
zL1x2=zm?(1c{A<Tt4cM^RHX;|H40l6a94dT<!{=w<xaC-r|uyZAZNJ(?z7*@(L98!
z71$WtBI?e6af93eD&aEiB=lUb6t)b2d&5og%?@18!FyqM@e27rM1dKtS87|w?!Y2p
zcgL{&3G=4w1xp1WZ^V`S>S}52<RNHL?8Q*V9P*n1%INHgPYNk~+p+_rpuWDkR%)ax
zS>^|lGUZg(OPh%Ir#<(|3TAWPg>u+pdrNFM(Qo^+xw_1~cdX3g<rDnjQn&LeX~q++
z#aGknN<$6RmHuW|9hX@{rov+*!=?bDez#*(7UJtcT(JL#jP+~}xtm&LZwwK9wSoYf
zPDsJ`qOu1=(W`h=o;zEC5$$P`N~{Kes{*D9-*X5Rg*|a!waV2v+W>5~M6b>!3<(Eo
z#D!x^6eQK?3C^%l?IkYQDx(Yp07-J<;MjnRx1xdH-B~ui8CwB8*N0oHzGgEX(5gM;
z;g|C-hn?G9DB)07rInYBVqF}LO32MElN3shXV<{_+EaMC-|e-t{FkR!fv}SOtRGwm
z_xoKzL?-WP_d^8^>Pxvj?B*597Qda89wJ#ZgaNr8asSy-{&X3S(S!X)nb?Bz`SVl5
z_=HFx2L@g7@uX;*{RSOOh@)P;xq^QSxr;e^3mtvOdPRQ(n6d)2SVRGEE3H94lP~X|
z6pbsZH=tLW%aMzxT+w@&J+=*}@Mu;H`=-Rb_noW;2J?XOu|fWvhRgpaWNAcki0hLB
z+Hy_tOwgUZY0(p(+l{96Y~kzCc9Boz?1yZ;)Esv7AV6I_ChXq&RBn8VK|tC8yBE0f
z3VfI~l|}X2AcVB}hc5T_%j_m*r1L&e@yFqA7{ew*5jHS?FU^%sZb#ZpW3-QXdcUrj
zrBIyBU!bH(GsAt*fSmdWOd-I4EZHauq#dNH!dS;ZH*1q4dNEv_#M?(DBdtIXq;^%g
zICH9Im@m!MnXiN!lmL?!aV!2Q!Ap>v38Y6z5ti~NId35l6_=@8MV4zJ<&1F(DetFL
z=Nx>E!7ihI8yXnr73au5F#wgAQUDjnO#<(kxu5@4W^p-+o2rsmfDMP+goUZbSM7Ms
z6zoqDa~u!#nrx51m-|$|JMd*0*)SWfAm%6CDwnIy&ly0#UHDh|V*Q+3OWf7BNdmK3
z58DdA44p9FqkrPD66c<j7x@h%5~I+f7ZGsHO{Dd48r4QzpFkvs+y<>OuMkt9JkB6Q
zbpiw8s%ODS-%=sJc$IhoZCNNl#tmvLbsMad_Yni82K1T0a3#zs1jyqH9o#49CHXNo
ztOAwx@De$MJxrJcOVa@Y#V1y3h=jsY`4RQQFYSp=oHXEk9R1o^E}Unhx}W3<<vj8J
zFv;$SJLTO?3@uku^3#g}S6v9ADs!(~C+#7V=XzQVGAU_NtPcKo_MNgTrVvG0ml~lT
zC<Z>>9&~?fk=+<?v(nZa<m2Ii7&{TB$y^c`FJq6;^KCE#s6^$l*0BeI?z&m>ISvE6
zCaw_(Pj$!J*&UxYN&De&KiKZPUw+>toTU>5WEzw=`_M)-h1ctKNFj7`FMEUUC$!TX
zas`LTVTpCS5<$11M~-9&xiPSiJMRctQiiwyD3hFEJM4(v_;q9U)vWtT0rz>2%xO1i
zL6t#v8y5{F7IGigO9|4#&>FgkvWzOv=VG-b?$$0@fPd`8BMfXqmb&eZmAdOZT0?^}
zNMj72=JZaF?xdTZ9tPkV+OQ@G>A@L8uuRxg6IYBZ(WF6sE_I9M%P5o^a)O(LpM;b^
z@l4%cXeFf!*bXsC<(P{RuE9h4%RHPBb$13xW2vbxaoy_|o%I&V18}w2=DBHB$Zc}4
z6aq{!EfuLwqBP2R_}%h7<ytroqAxKBD<}pta;SZlYqLS#hWC-wLaKHIb^Vnx3U<M2
z;ieeJ)kD7?ueBP)PEff|jexWT)c|yMp@pi#?&xicF4zcpq&b>aLk*f2QW+1pJ|e7_
zBP%%NDtKDx4Wfl}xK>)w7})$6p(*xajHo2yNV7>BKIikXXR$2jMr6$+SkW@qwm7|R
zNG^FKaXE|W#T#O#hHM5Zp%;!iPiC;4a{?~`x84cz$#!-#@dTP0>Kaul2{L-FY*S!A
zc$z2eRPp>t=gZ^XpJaPm2=H>5jW?M`52EkxzDk;T6l4(-2l$LLSBuY)vE8|buQZ(M
z^`_G}wOBml&OSr_i{$YKSz!=nbg-a-ECC)6c6*&EkHI-c*|x)p1@@6V7gTkUjKO}?
zt9?>KP*KNfR)wV%2NUPDZbYMW>9AEDQIuy^NlPTxFDb<|eJwixP@tb_iGhK@T}C5K
z`A#PP8Ji1X#ja-|&F|&-K36mie}GYyD_?}Cj@f13Z8)_^1Jxj}we$t^m*y`BJfrZy
zTL1!Xe)?-!1^@vka5M2e1)NbN{K9XAGPhg+Qs%z+L7w_6S2^?@df#Gx<tRo*GIaN(
zyf<=;pU0T+M#NmDTy-*UEq43;N3I8;;VT0m7xPK5?{(pT+tn4l^l9!}VY+(0llPy^
zyBc=BZ{;J;iBn8JtmiiqOsa=fxP617e}83U9~+_{O<Wl*ai1qFHe#`|uD<@XfD--P
zmMzK-XD@^Pdhy!W%>mcDVbS-X3ZiK-&BsvrtOwoP(<m1MD{^!Yv)FcuEM1K;$)XZU
z+}qd7=z+Ow49Yq1N9hGA<*aeQ9q^rO%^E{oHt-qB>npekE8X@E644R@p5+C4$-N(u
zxd?ckV1(V%>lJn5RKiq|pV`yR)5e&Wu={eOqFeBux!;2tRC170LsdSENOc`t><&LG
zTKF%<ru<G4i~=IBfrn|@sOSq=OQTSR)RRp0+qSGA73ZcU7E{gzJDk{jmd6l-@RF)b
z(Qp<c!XlTd!qN~~6Tv!zJWc8?XwauM$|s|9zB&OttdwfjLZO!qkvo?%pGs6GJWC4w
zLypW3^2WDFAN{n3dOSat$Z)Afh8I`m&OdiA`9ZEln1Fwr(az_4`>B>wCsE+aL=zt+
zirY1m8dU^Q5^#f~vL!kL=1G%&G`_%O1yxoz*Z?$;7e@%X`<F@63{+SSGhgEF8<p#n
zmCd<a>iS3Jqk|ZwYAM|x^>7ZLZ{^qH(Ab1&$%F4frz2*4+ZWvd>yVob5pc81<U_0m
zx;{QK;Hl&SjSUfZB3EKcm3)1i*|qA#(C~Z<%Yls0<V#Cs<V5f9Qt7|rFL)2Z`WBX;
zPS1@_2h%_u1b{9ANb#B~;?So1h&<`#-yfSlD8KvpzH+)ZsF;3ND$%RMK?NT)LykBG
z8;6kTxgSWzl=)*839M)gS!xI8M0xoxn)cjnUlDSTm&wXAyg$<-bCpem36K~uL<lgi
zq{l&TUzhoHjqESL`4jpirK**&h08<}l&U7^;7JhS^tVv4YeWy-HB-*QrL~*UNZu?}
zD}KEEU^$M@&b~dQ*hZfXNJ*2y+S7l?5l~V7(x4T@2QH)fx)9)HGljz}^&z#XJ~age
zhQ~A#NeV`rJq*x?#9M|>U31tyKF2Tye^R6Fi&_I#^SzmJ1AcH#NRt7SMylfm9-yzx
zxfNSFrClB-Sj-@~m&^_=GbwKfyPFTSDFf*=5OEq}9xa_n7k4`Rj<%9CIIP6@Z7mWd
zM#8<h(nF}cR5m!?W{jsR-mQ$X={7l39y;3YuTx;-ZO6EB9_Jh&k8wXj#aori!Lir$
zhO}70xYiGN0Xh9tIBLHVrd!uykl8YpPGn>n?A!4(EOyWJ>V-q8el#<0ezxB8(10=o
zKhx7_an3#FdDvLJSdW$fHM_qy%RD9x8ml%zo}w{zjZi1+y(%q$S-zOwqoWy&A1BU&
z%b+<Z%qQs%3fi<g>Clj?W`VbxD}N?t5XIK1PGhnas##nr7IgQu$t&j@jhg;Th{RD>
z&8QKifAe>EQy!{OQlgIBmw3B8uz<h7cP22=wScUkVJ4-_6<i~|Xf>Fira=oA#=sZ%
zCgn`H8*pEhwimM1gJ^PHSBlbn*(oRi_i3A?;8!%;1Q^gYT)_HeK9i_liJLSk3*yWG
z!mS{w05p{LHZ%_oVf&GHseVrNWkjVCM|;_Pd5Mo)=M+$r6qn_{G3{Y=B>6LDU+|sF
zbUjZwg>??Q=?j%)>T%PX33nvri>nC6XUGZw)hBYvqd?Cf$B06}S*ns66edxLBo?NX
zB_{AU<arJ4u#YeY8v;uiZYyU7nwJ^Fi)BN$pJj%;iZ%+o4?=ou#8M&hkR&e2R+mc?
zh89M8dS52hDz3oirTq;w6L~Zm*nkX)LhkkJ<)B}htZPu*lM;m890y%)Twx|}Oi=}x
zI^=E$%d<aVVRiQ@4{4hN!sqDA<fIBBl#1f%Z4a?hS;JE>k&66qBV#=pgW|m~Y9OC?
zkCVeTGk4FVkU7Sy47fkH${9T#d7*)$Ayouu9$OSuws~JnOyRVZa@mf|8j-PdybN8a
zIRiG&B@EN!8nM_qm0Mr{h=J<Ls??7V^VZCDaBvJe^REVJg<-&K)mgOAOW@Ny7C6E5
z2P^%m`k=(U+bX|hG1qC$h&<HD@mMqcHOpp!OlxF4Ocqw9oO9%~%^%hwqM4o#C-@FD
zh3!~gQRY5i=a1RN?D$qh!(02I19NCizuTfoLfp-h>k?z5EW=QNsW#WD7=QLbQpRq`
zkGBIfb}5rz9O7-W2}xZc_wdQGb&PkJaq^;Ea14I;{`GQSm=%QR^|WxBm?yasUS5#`
zbQ<+n<2x2YE#O}HlWf(U|Fn>D=bAS~AUKZqNidvsZ_;e5Mc2ulMT`xiYsBbSVqX#W
zj~j*ZyC?@H7*C^WI0nQcJk@l7XGXM36JJj;>#*wLI*5SK!SYR~;TOO*ShC;a1U2(y
zy`N7&^Cgh$u4o<{WS-kXJEN&Z^|&qBp_-D2`@1XZ!Vk&2JM02ei&pw_?`HOH|6Vo+
z+@VO;#V7+f$+F=fa-<eIp;eZiWQrk2k3mhq6I{$RkYvDND5hjuaricAlNm>u4sYo4
zb}kzTWvFJeCVNMa;@BqBfH>$JRIBH~>MCv6DN~iI(8Q@!X9fYFc+g*p4iIW(iF6M^
z*H+W*hn$$yGW#JXKQW-`kecb0XRiG&*=T>jn=P3`6%3p@JzZwW9E3Rco45`}GIMPs
z^^7>8TXLxUMj3eBu!CR^&1}#~^XvTz_Vml}{!BuM-J=0kDM&!85e-unkhXo5O(3-C
zhf2??{CAVM8J8QG&)gjl))dS40(`RKb96c3g3%<&2jGDc#RHlYGtr^;YfM?wcG(<e
zN6~zQmihWBl;qV9NM(BC5H}tpA2Fh@IX`M|uUDI(Us6%Ur}y0=O91;hxf8^ju9E}z
zTGxw9-KST}`%^HnIU$H30dcwDB{CQ=UO4C7>iWVHHNxziFi+;MXJ*o9sLWKwNC{<j
z>(4Qx)Mnn2!lVC<OBGR-CS?{l7h@3AU<N?N4z4AJ(>p)G^1z<>-BstxC8+Hgz)XrU
zhcvd^NOCnWKoc5RA2SOX6IL0eK4rEnUT#0ph-qNhz%xKD<nCyfVw{8Nq`E4v23o6Z
z4Y`GlvfUBfu8>mGlyMvlXzSy%w^ylBWXi9SU#GwkjM1+NcAx-Nri>)#bzyf(yIjue
z2!zCjyU?<_cJ*kYd%hGZYjtaoF{3rN7;7*C<a3ie;0-*^5yEN!5zvSWx5_f01iosF
z1D<*m^5Mjhv^XYT?!l~Q(OUtxW1E!Bv+Y%{ZXGbS)cw2K)&Q}I65zm(8t7A=BVNN=
z5CmAYHIfX>g5$M1FsMW07Bp(dZq%Gru#!%f8l6KM<N;g_Mo;^zUbBw)AaUeuPKA7R
zm1j2w6Qe4Am=oGxR9fl<NMm+aY7r?B<TKOF?EvZ6g6Kzy5>v+5HEK}g!ddc<?=0ZN
zWo_F?ys1?43~wT8H6cqR;PyU7PTP%lB1(yI0vSi?v6!5TPti(51V;&3W$r8DB|*2{
zqw?U<c-9)AgG696>NbgoapK;VHOE5S8-@f{Q69w}^+y$&Xl6bDr+jfn&Z=iIcVCyt
z?|)`fp@j#YRjXow(OA0hP%bqIji`FbpWya(IhKSAHgtPWa@ck)n)338Wzihu$I{yt
zQa09Ipivw(Y_$#a!HOqkJ=8$12@AX1uCinbLW;<tdI$aB4aRFbNf8hqqTnSnV$xvr
zOH?T{u!>BIL(?ouMwZVPPQTE-M;>RV`5Em1b~1dA`~@Gblc+h3WHrNOJnI=?yEvww
zR@us#Dp3#f=cnF;-J(|cGb@3Q7E5?J<1kmxTp>s7#LN*RR4$yvCQi&sCnq8@Y&1<|
zuFSAH++@2rR!us~_l?rc)|{zXp&VxCrq6`t2~`$t1`p)<F~sGRGAD7lL;687Byf=<
zo6hMVx*gCYCe9kx99kwXZTTCCZJ@0b!)4d%K>Ej|kf$^eqD)Z(tTNd`pnVUkdtlBQ
zZ4;0Z0fVw~xg|>wkkWjZF2XM*?umOW+|SqOp&oj01ye@8MZISs(;6&$4q}kZ={ZnT
zIDrB2yA@TkR6SMVzA2RPFwravH^7br+!F`Nk+4d6g$3-;$Ih4k*5x7$sQW#?m%l!5
z8Ho_U=>)?VF396CIhDuY!&iBbp^bln4*q~%$aBj|-0N4#w>%o%h->emcS7)P8wd*|
z4q5a_g&C=yfuRD$3ZQlLs5jquM(jq_Fi2^@J=iQKsYce|+K~1UWHn>hO5UyCg{~?m
z@ybH(wMgV+3*>Dgmebb;MhNG32uH>1*emon5?~#Qw0)lJ-)N{0DruB}dpRnRG8Lsg
zvSS=Zcxapl!SOQ5fL^M-8}XRu4#}4>?$0j0p*$caZG1jM_9A?<33%%FRFY=2Tep!j
zyg^-l+u$noJg*6Ilq#jUsuc3`LCL8;LhhJ}3yERSS`<@~F^ux3E94j8#C#7Y;`}S+
z_3dpNL+)E>829NCOUBK+8Rhly<+2A3VBXV%?l&vsE1ph9in1oO$L~^n9dL(VBiC|$
zmP+x!D0LhSNE+gP;yV*cyqM}IFBgtV$&UK?)nsdq+#Esy`2S;;VAM!>?oV^&{2##;
zW$EikG6_aC#9wb~m*wQm<>Y6Vy3JeVU`*CJbL}GT_PO#<{@)-weXX+Rws~$Re%z@s
z*$8_x%hFt^9f5A=&3+e%$w~k4u9Fu-N+eeU?uItmmaAx)dYZ^)!gxXV(P45pY9kv$
zMBKx1nSs;C!d6%=cR>R!2T;^re$C#)62_H6D9GMb8-yZ`DAlBXNtP%ZcK;gMgqH#%
zz+3=$l$+lj)M0{)f`GkF0I})K%Q)lc&(WwXxyfFwX$O!xHQJAcUr~NEBp$Q~Sgt|w
zyAQ6Ei-43w_}~z`Q^ZayYa#*n`Yc%==ABK4B~3fdK*OM$oHQ~|zkqO@j*1W|Wh*l+
zzMqXsNC}V2fqboU1e^h7p$9BzsajAv`KTShHKf{xlxOwf=e9~O^NG(BODyik_tmWg
ze^Tl`OUe9OnGA?=cuvxZT&$Ttm{x1^#$2~D71Z~@qY+ovbZWhp;1T-qR&1g?Jz6{M
zi=wvunwhSFLYqocqm_it&Zsl$WR7M|5M08zR@Rh+TyL{%3^kv(p-60)bh&&`WRI?*
z0SpTbEJDRmXtV9+m=tz#FWf(?V0)?^f{hLF_9iytl?hVtHBdFClTJd}Ou2|jpOET7
zF6|{U890oA!DjL#EKHgE@qVi>qne|NmZZ?+i4pcE$+}OSC>p?R;$ZtBtu&mXJOb_E
zv<9jPlYH$;`5W*l?_=05?U&1wJKM+9vo1=yR1!krTj)Tay{k){Z<YKPkihq?O(qO#
z(x5^I(-x{~3o0<14GoAmpn|5BQEUU-0_a5|p1ayI>GM=kiRR>M)?VJ|C>gqHrM&UW
z2|r*8GW8R=Dl_b!zfAs$I?Aq703EE77k0>h3Mrx#zg;dL6Z*^xD3gDBwfxB;mxM~k
zYkGp3cwl}Sf=1rE5mCC$h6iP<!+89}>}|5Sy5%`AA6!H0NH;*Rawd@Yi4pms%Kjh?
zi3^&w4q2m@^(+bba^-W^VJJdw(*gMklZ3seUo}r-mq%P;%oI#+!XG;9h%4kPWSt#A
z#&y4Cb;L-Dp+s?g%mMkHQP_NTMXB5RJXwQo%v+XHclsrAJ(H;=a==({zAY|QawYD@
zH|0O*FO)@A&UncEc|ew^H3oND6e3eXRq7-xf1Ap)w1%>yM_pq@nQZ8X4P_!#HCpUv
z=&y!c`+2um5DqM>-3m#K<BrodFKYe*iOSj%=*kCV!T&IsKUM$dcUQkAp@{9I@`YsY
z=qhNM8WCRQIVt>N71%OxOkMgKnkVd4v_1ZBm69kHNmLVF1;IJ;gw>mZlVe>8LoxU)
zO)tr}6$HG>^f_JuqTU}TZzcFQDP!MLn9MAxZ>2vle*yQ#+tOUdW}>KIgcI&@(x~s@
z@|mWw38Ud+c5rh8WZKOO<k#f0@vrG=Ka8wr!V0Hbh%hgo7=hT~D0!}dx8?=+!kQzX
znaq&qbit(OB0K|CnmCxpo*-|OqqWy2RU@U(o+kS$^N{zLkn1~L9^(0o2e`;=QXu3?
zy=+<y1*E+^@~SxSGiYOMSw{#s<Q^K9Z+EiiP*6-;zJ=u2f>++TOm>E^z<IDT57O&`
z?r*c?yKPKwXNB)V?&+u;e=OS+hLjixNr7q;Pl(FrNepgQIs^HQAq({)SX5YO_z$OE
zBbKDu2VLh}`Q}dKpO~)VFBVCOjo~iBOL4`=EV~9{u|@4fTZk8_cgx&06XBqgowJ0a
zGm%Nc@1v?f>)TOK|6Ej5w?0TAH$sEs`^Q(UvW&#c${wvyOEXj?X9l(EOq1#J{s{Gc
z!)ub@2bkK56lYxw7PNMC(;%U_iFLZ8L<Ue7>-a68X7_c>G2R0LYf(>vr`VQKxf6~o
zH=Gr6gDvtl4j06B)kvRFfB0b*B-Nk^(B7-oD&X8(RetT2fkqdNNjtb7-Z{&6BNL!m
z4&ZOr>C{jaS7k9;QZ<?qn!tq=GG$L6EpuiW7^vo`5~3PG_tv27y~?&pb^$D$*6~uV
z91=kUubzbi6I6dTH}G{A?kc~$7sE{-hOq&%ma2hyJD(yOpNXPJ5P^AYEKM}N@E9Z5
z2}co3f`+2lH0-`R(lU7YYqp>^Loq@m6JuF%d0GyPD$xhU5Y#lYl#`cC$e}wfXEO-^
z017@muM|yBl14qKqq<T4($B1BdqiyNW_b=k)I#d3a*+;KbzV#!>@yOr0#b;UpK0=y
zMa3W~c}1cJyRLw+lrBqsoOJsp8Rp@vil#o3!eFU`6=<t_n&cBDQ&lBtg}UYl5~1h+
ziDhbp5QvuTq(|ItF&RwRCR1pk)OmdzsW`S?mi3xcWRnl={`QPWFs)|zsr{u$c9A7$
zgVEF_G)csGh1?6nR-K%e6Uic8x>(M}UZ9=n3#Yz65vwhx7in!<ZUT$@@fc~o9s{5|
zaG-m)ArhXvRSzjDD*JU>eCR)cu3|7jch`AVZi@147%!9#xkt~IQ-R+t44Zpx@@Fza
zDs8kj4D-X+WYX{bTH>N+)Od*T%2bH<+44BS4DKfAW$mDP0B&J7^)8vRnOTB5FRiw*
znp%mDHF7VwCq{spwrWGYs#TP}DhsJy+^ETNc=W4uIO!@%whMX*O{WQWn!t-W#A_wo
zTQGf~poTFj&1eN0yi{|E+LTf48Xicvs#@&cCToNSrTJ;7fUWCBWf6*3E1|8aus#RQ
z#cj5K5zUkH`e^vw-bsmXfdC+5i9TQ^eHZ+0qZZj|&;0zYpc{Ki+Rrp5RDBE5LLiw)
zs3_GW+HFs_Ed_&SwO6DCmT2fp^KtR~=<V5~1+D6sF=OY=mV*BP0kUB|=Y(A#uLE^j
zkS-K(LJ0$EQ7i<h1r>R?lB}$v%VoDo6MlfW^vZIvztKcT4~2VV_mNFF8&Cj$O2>1f
z{8<o>b7!P?{!RvvQ}C}QKXs0D4y4p$Cc)`q^O!Mx6<wpGA!8>su0)(xyD;PzLr_vT
zAe*xNvI{q9do@QMA(IPt%EKsY)9-`sq`hSs_&TqQ2O9TA*$0ju5u_VRSBIYGi#QNe
z`Mn&y5#OxQIZbF&mX|y?FX%$#igcMCVspb(8HL?v-^l)~xhdGb;RIElG{~T^YY!Ry
zi%mZqA8{UtFtEE-#{$%}#>mV@lnso}vpJ4M9y|%UYmbotOPj;IwPth%+^7y(r5#~L
zEAwKw(GvG+m%I`JD`>%}Cnp$8PO}Nh8MrmLvgxuS6Ou1y$rlI-4hOuuHXa7&#v<+w
zR^$M~8+qZ$u-o)JS)xDX<{*S!@G9A(-YD62>bSg=1pvdJR+{UJbt{KI_R{en_DeJw
zK=bkP)EV>n>tT6?&`j=-*e|d)T1S@m;!=0%D%lHIk$0UO&?{vU%$6b^vrF-IW&uT@
zEgpcG>@JOAW^g9GFW!^^aAsbb9cJ!$SF}E5T6t0X61V>4(gMGgm&_M(I~**}kv;hn
z4kiWSSIB+48s}3EO*u41)CH&u>9fVbvKV!f?U98vEPEUtnZ`Qt4GTOYP93Yc@6($R
zt6dh#M(45}j4;q{Jfl2~86KM@H{+SA0w8-pJ@0@!_AGgf-JG3747c&iqC)^+NN@w1
zwM#Rl5#f+Kc~5!eaoB&04;lkb@B$22ZfQuG9E-gn=3@zVT6IyZ+CmFtm5Z?aryjDz
zX$%u^q3KrH0r@zc4(4<uVyCUm#%4XL$6<nXB--u0jQ?PbDR6jPjL1dw1=$@Bg1`yc
zt=&fdk)gq<G1KI+jX`guf56b0(Tv4H${8HQ)L^n>WUP-Y#Cr2x2*I;Qn)%A_Y*FH#
zJ6hJqkwadqj7ot!Dsf*_$p+X>^n{+ut@f^lAkElK^6<~rwMhc5<9u0-Ly#-OMCck;
z$}ad<3}2T-Ie9I3#1VOGUpa(%W7B4ZmSPx;Pp3&cx&gJu7kEA*EK#xBGAIogEKGTt
zT-DQwv_^@x9)5SzQS!?_7-E8l>P)A}KqEyIx@e`BMpih4f#N05;2??v13y>h>|<XJ
zc(EBIP!>`E`oKjtvjlx1msmVX)!2{0E*Uw>dlEcVI!y-+M8GN`Ux}GJRG-y*lVJdQ
z+pNM!0lq#)XAEO|`FIlJ%4Osi_VFko&3Ir|s&EpChiTg$zP*ar8M$O+(UiJ9rivyH
z^AtLxT2Uttah22LYc?sn2=zbT;)Jy<^=(a3S7|uiLZU<*$q=vhH*45OkvbC&8Qy7v
zR7K)1ZiSX1<~$sapj;j!ZzqS63%cW54S?#>c-12;OhElO#SA%II5v(*esQy9m!>J9
zg_=l6hH1cUzkbn$SQ{p&H8q|=%VOaVwaByq@T_H`8ROIr0K&Xle<xgm-tqg%FDiBq
zgykTzC>T*(8(65IGA3GM?I$$F)a%uYt^Wac>p(dk(wcZ_+P1Fv6m6P5#R7x0@uF8p
zuN0N6V~OdPI$t>ZRJFHPMOZ*`1-0F3J}S`qAi?Ry6O=oGS+GbR+k>q~5>W={)5<L9
zx>9l`7?JB)ZMRC?>V<L+I13#<E|WShY~XaVSB&g@YW)iUGYaStOu7U1$WbTe10{kG
z5z8`EbPC>NxL%zjd0h03xW!5WbYB9YI@y!VCjM$hEh1>TQ<zT_W7vsb9wxb)+o^%*
zfa&Fj3ed%}a@i7H-GcX<(n3c?4z0B~r40DCnb`|jVBwy2k^%6nv{76hqZDx8Tq>Wk
ziSjaHO57I3MeA`LcBl?du4gon9PT33fz}Kk{9c}|G1QW!LzIBOA}X7lWkSvV(u@P(
zg2FY%9CEML$o*UA(ts3yTqOr%Ch{}SupcKFhlxpmcpsxtv!>@#u=Ujba`E9TIP0gh
zyN1#$Ak*KSAx}}v0i8_i4VrQS5TSqfZ<Y6mW#vEJ?;bos_COJ=gC1mAf7T;kdd@qd
zGu{&@<Q|B~IXz6ErWEAWdhl0JKiZEdw~QsCK}{{3We5ZcXfpujB=k>}+%d*<<wbfB
z#H*!>S=U4yY@V%a6jQh|CNGl#l%049UYIHOj&bi#(rgf6ugEm^2ke+eA;zp61CEaf
z=d;$=MQJed2DLjMD)_#)Wx>AOoky~vFa9iB0*SKUq<@iVlZ7`^HPXL;s?Z_zXI$G`
zvhP2!89zC&fP4OR*??DNLlAhNYfKO0rfY9VU0WI}_?`cFE3$#S)6gB=6^F?}3~T&S
zYunfyQOZUw-<ItZawE0UhZ2I{Z5-k7Hr+FoGkFZ91==qsr*bIhJ~>X#MRIZi%zpR3
zd&w*4EL_QE%?u^Kn!OA^P~x_qD{n!rjME&`_4J8&EBx!m1#;I)OVNocb7?lR8PrYW
zQ&l}*6;JegajS~bh?8UF#jpp4Qh*fpd(dt5D_KHks3_XbDjBkhH-oNZjogi`r_vx!
zx*of#mS6>`{p<b7yf~0KeTy|6q|9C3D8ApJAJh%iL<?dlxUh5$IQXx!tu{hIH}xgB
zIx=O!0`v_%Qd8X;weY)-PM1sGNaunk7eH;Oy!zd;<K$^JYDV~7R((@WgfQSDE%H2(
zMk0!>9ERA*nMXJP0r%o8GYvU6N8Ha_<gU%_=4M@5Zl(E02mMkg8v$pw4MD;-qX^%b
zBhTPX=KOU@=2c)QCBxGRG?i#FG9n^Z+LUJr619CN$YvM?+l+*oAnkZ14Nt%*M@bQ6
zCI(_{jT0@oyn-XR{j~AH0aE*5=ErJ6cKMAwQqB0G+LW-S@RuH0CGM>yax`(!9D8at
zzuRDBas;qcds%45CI|`hjI70wmYdLIMw9Rf4*+h4K^g;E*FajU*X1mR5_$d!`50SI
z0JRyPM<>q$B6Q`>_2p)38pS1`5GZQwL54@f9{sk(a&3|8m_?_o<|)=1b_cy8rO?k4
z^H^qP{K6cnChX2SS2mi*OyJ@oSIGiJJA@@^ZC0kCt0KsI8Y5ZSu~s6|7%Av(Bol<v
zKlU<tjd^**+L?v|gzC<2uv8a0?AEeHYo?*}G_q>g3vUGtt9=IY>{rO$GNtHV0IfO|
z<XoY5TWibQS8*wCLy@iJAvxFQBsu*QHX>-z+zi{%kW!`Y=pktxMvPb*)|Lch?Tkk#
zG~}-9m+My8FEw-&S&SjV@8K7}`(>AGbc6lUz%_nYFsx8HpfRCK@3Gh9v|P|epz0*>
zl1in&RprBMS|`v=&a|OU1m49eHTpCi+KAW3liWxSdhV9@&&@!RflL-Yj*(w;Kec5b
zj*&UYHhp!?u!bKWDi62wgXYjBGO5Fu<{RW$_-*8}rZ1@+La&xghuv`t%%Xvyhyu}h
zk;S2DB_~(*8YxG(p;A8_A{-bND>0fL9j*ORP{sDz3jCy}E9DG!K98Y?l0BcTNZsf^
z7McOfEqo5UEn8($H)te3QzPtFq~wSg<IFALMjxNNSmOS18fb8IXc%eadf&N13w|ZZ
zGT*DA1usiYYvjIfkj`C9%%+cbv}n|-f;RaYG(jp+rppT+sWP>daJX<bDusMlH7ANG
zd&}-3jYu=uf%Dn)E#k9TO#T4g25z?ZjKPu<2w?l7eJDCnZvm3HX;70@4Dhv<s6x|j
zd=ox@JS8UY^T~AfkI7ajJ03-zIqOl;8gLIqt?3a?SvzKpul7RHUAj{V>W~LKOD>r_
zaWXUQXZgdNMzaBT!J%?0+6!esgk2jqv+$ZIw(I#)cM{r5&nhEB$}@-Xh;C)6Oo^Hf
zZW!s*4B;5c6Utd5*0AyudxfkU`UhOwkp}&9i`Ot<(K30Kxn-&}F|eS5wxAZ4#as+p
zj&2J%{Zwxy>A@Q3esb!zIGGHryqFqVT+Wc4Q0`eFxS)G=seA`+$#uBV)@>Kdw)+{-
z8t;W$=63n3%nnXqdP>|ouBd~03n~xEZb){FBztktkW7kXl^iCDhm}d!jL}R<BYB#4
z4**Jcv2F(|^u}bzUi6;28KjI1@-+zQubz=-F9Ld@hO_!U<7B+HLbk>6$tnGyIckfn
zB7B=;S3_=Ivq5#TFO<cGxUHdVkp$V({!10CR<3K~D|ncQ+j@n(2DX9v8BfF`O(UI%
z$8OfHq6-sDw&L_S?&*j3$<CL04T`d8;gH+@GWj*$EW|m%z)Zu{2G)MNdyS=U(b%}L
zkV+$uw=~LQT0?I12KhheWw2>8b<+lj2(OiBb=e`u*>z$p27}{`_)C!5N)B>+ZaG@O
zm6S@`3C2>ijv41^l||$YYV-o50xi_xc_pZfXCrb7wpuUem#3DvM<a4DE&wPcHjwHx
z3#+sUTU}f5@Gm6BinG~)AkR4xV+U%+ky)eiOeG-AAJUb8C@wgP)WV?x%u>2?vNB2p
z`+$VJh`s^&qHmIY9@ea+7Q1Ii-a~4c-EwVdGDPbL_-Fp&*N@0q>l0rf9D#neepZ+&
z+Pb{_f+1*~#5Aj;m=#9gerP2X&_3Fks&*pM9M&>;MGJfjmDyhZ?63}3d$?hu@S`$W
z%+?H+KD9gCfzp5g@5<!DHXvBH9wqlwuyymdBCWK}mfzxX=KoUWK3pnAwfyiC#X<qM
zG%7D{z|g!br|~-Npxbe_e083E3mqRd6M#k&&_U@omD=<&i_oNM{v7!PmpgA`v0yb<
z$j^PI%L$j5`L+htTh_`+v+V2F)}X=R_sAKm8LlNJC`Ux|tbjIn(`>2iG)Ss&50OgM
zKCCv+g)Atj#DW6z@ZSO&|5k6Flo3^M3UAU`BU<-`ILAnC=*o0D)5a4}GjAigNFn{*
z@o1FAAYqkbW6Q0Oj+c8lsi29jwxAGpxFROJtnC>a^0-c+3%a3BSq43aEz>xXR}oiB
z68o-|vQdXYk%r{L9*r*5w(&Z+Imf)@vFIW9%@wjWF$k=3Ro9~A65dYmiZef>vf~uK
zGbdHOO!-#L{>G<jAa%t9<oJp~^%a#6%4?`VzwV_{_$xy{_(^7VU?RzB)h<8`UHJ-%
z%v7MM<ur31TY$FoyP3*hKr1qZ8(bn$)No!_52rX>A;KogGr<i0wZ+1*h!!E?TnO_B
ztB3^m2CV%nELkO8;<fsi*TSELl?l><c@`<B%Z7osb5`2wRdwN#K^BMH2ep#8(XQ1g
zzgwVLUX@Ub|Dea#Dw}xKY3UNhCQh@E1FiZ`S1L7MaV8N<oYDrF3bM-K5d&`LCTWV9
zbImy&R-V*`kvOSUmZQpY?hUzDT4bn|xmB_`HLA_B;Z>od!iqO$11%@C4WrI&m1RM&
z+}YGE3ZdG9O3HYVJdj2}xb<Xc9q2_)RbLLwS8rU~;NAJNqDk9e1?jalNRUzclF-hA
zc2PmMq_XI+-Oz2Y2_p-+pGH(+x69^5$@MVFn*GuTqBoX73q$(9kiDn{)m9YRq*BQT
znq`!@6I{`K_gHHQdi63M1+l!EqaD8dL9T%#;MEqJ<#>!PUJNaLQK;xbC<Pq#CaSo3
z3<-+KZHg{iVLcQyCxxRkJI5Fhy<IjcI)jYHyZ~>&ow9$?H1fh3d^|z6E+N1wDCGDy
zMb>+nO6xId3k)8{ngB5re4558V`;TDmM3iFR0Z8{pOH>Xe4f-&4tu4%s8Y*@qo_<{
z+$`XW*UEoMz~Y-M8e*ghlNoTG`xPm@1-hS!`oMEmd>?UtnQB2{L|K&-9(cMHli!UT
zB%9Nc17T}OlI8Dh(N;!LF<s)Lw&|J{Ym*?oM!Ki90zjL>@T+LD3$2t}vv0HMWX2tq
z=arUEr|zd4LC`0=%-yk{Jct=0C<MDYfC7ZKsWFGTi5e3GNR3q9Hbo_o2%)-k-9R(s
z_CH!~n2OM6^)Iw&nWiA*#p)~!`CMgwvo2_wGc3s!bzPUhpEU}ZoG-E-G#C!>kBxCn
zKb-U)f<vSc3}dv&P)~MRXkLq1S<4nVV{tCcNw2VFG<kxOnwS$9c1OJ-w?f?EmcVN)
z>LULX`%$j^U#n%7z|zE117pMpkVkkL&a7;g=w}F?rkW>))0GWcL9*<7x$RXbG3*3|
z&kB8j^L|ZdI=Uqv5Ys?w<Z^kCH|GK6V$GpdNzJd1pw#djYbOS_$O{D*yW2022M>fe
zp;HG*+}`OUTDC^6jaENX_h1cSES9ACLfEWnh!|XKD`!{tB^N>;gjCzBG*#*cWKLBG
zxvy7CGmEbX(AqtDAzbzM?mb9;4nWKGi$Qq5l}&LgDQ0Y2n5plfR4k-Kgf=iR<d*J0
zl}2Du)E6wErt;*@2iG6ENIn7cK-!UE<!#$|6;ETjwd+o9;#a`!&?2uQ8M*m3@DWGJ
zLD&K<xd0BZI4VkrY{XsMDd(fem8~%Y)SxLLd#{j5FvodYq0CJklmB3_vUBMP4z<az
zm}L+YNjU7OWQQ7>C?JF)JFT<NW~B*-x5@grs=6o~BCR$RR!jr&M8Z^fNgt)N1~~vE
zc9Q41Wsw#!z(cQ1!YOsvyexa*f@|@USGCMhzf*>^;|6+=D&rSlvY@SIY>+nrn$g5N
zeFw-=>jAUzEOWf*2YHXo2{;8jdK!8t?H8xa$F<5^NnVqcV;OQYm&(ltp`Y?7F<NE(
zRsPNodFir#_wPsKW+p9%J46UG<RQ;761qS$(-&d9A<o0D{!Qzt{S*0()*V`lvva$<
zgfvw}yZGul)0U2-Gd#Uo*IcGWzb77QRv21i{KywnH+g@fATCTvEvZa{+7LjyGL|TJ
z{2^{=9@)Ui8;y}-r&sr<!9QEwoF(n^`x9d>aYawaafmXEC9yTqRy0$SdV;6q%_!SK
zb(v?e>fje)z0?l3Xzg<Dp%47YACHmMMSMK$`-pXUt|TH~+#t~*vm32c*ecWAN{9{1
zp%p~AbWteNC(mHuKF~DUna5=k2b5}PvD_F7sNqkN^uIz%@jq$nRt_Xf(5HxT)NWK1
zBGreK(k5C&4{O7Wu)Acn$sQ&Wzq<plGltcN>UwyuqR&Ahj44A85xft(-ka=0^ZW+x
zrx%0fJHfC<6JragAEACQQ|^c(iO)11dje#a$z5G}Q|ov4JSlxmwlmB7Nc1uNSIKBs
z9cJugenL~gUDqoMkImh%RP)aC`gi1Xr-d<~j7XP=5Dit^mP1qlb56a0)~xcGL}I~t
z6^PHnzq5iPv-O!;%vLrxwXbT{bG&7$&<T(#vrUpFc(LEQjvM*Z(JnuLn^2&{_6Qp?
z-!xC!Z;m{zzO`4(o+tp2!#I|?P2=)Xio0Qht<V#Y-Waj&5z3%VIH3bxFE01M->D}9
zlYoM>#P)Vz)%vrgr_aV&0epnRDzG$Xl28c29%wD}W|q3?gWx}HPm1QFpQ<)VZ5cn2
z1`&GdMhUP1)z8oFP!x9a>!tk!^VMKdsSB<o$rqPTabKPWCcydJk+K4yrAan`#H4mV
zY-|P+%$X^tZN{WcfIX$|g8k*GX&zP|@iZ=8jC%LqOq12b;n>KvoY1Hsl6_3)&{D5^
zwkq^a?+`A!XO_9I50V{FlX+vp@u?b<E=*pY&xRfOe1%ju+9w-mCI~~<jVeePvJkZC
z7S<~#9ir6rw95W0Pu@EiRQiCcydMHV=Q~oKM7`$yfPGH?1#Cw{S0asu3&=^<lfgJ&
z;RtzJ2|0YboYRTQ+%qF`6xszn9_vkdUBs$*&pmgr)CjhE9(;z@a?r(sgJy0q*a!^B
zuI%RpHydh1FlyMm91DnKkg@sQSMt<d%z1VPhoHNDrp$(Z;vp1%SicmybA+{0r;Tr8
zDDeau(^6!3X-FTgaV2Iv+C}#$uUl#iYK;mK{UH~WpsKe2oxB?Kp43ArnjVsbn|H4~
zPs9_%Lo|j|s1eS<tV7=Ed!R)#O132iJ?{cnA?#j%UMfDv7;DEevR6&X)&cpyzRk)c
z2}{n<>!f{E!xDY+nw$qJ<9BTuU`=nENIiPkZ}rUJQq+c>q*2!f4k@@rZdzyqr(!}q
zYQD2fCs*C|yvYr?y>6B$zFSrUJRlLO^ip1kn(_FFf-1;1ys>&3n_;t5r!Zj}N=h4=
zD!3=|0(HVLKLp_Wq4M;^xl#?_Xvz<h)Sg(|mp|k}tEC&en|D2^Q>Mj%d~7R7U7a7Y
zz(dvy9ucd8%I1^ECUqMxv4j<LIT6<6Ae5T=h0R)wzjOzylg>t0W$uKyTnW0$b0muO
z=#$kL(>%QBetoHY&p2`jq>$U|Y&(l(B6cRCuv|W^Vqzx1YQI~3p<KYX{$!Xw>`q-H
zwP6z!?UJo=4djHb^v}vaH)0U!g9-}PhN)T7x7NrX7~xMomF`5Z$$F*sRE(U0Rb50L
z%nCm(n`zkHiuYATtHLUEllPMgXPBC)8tYFNXOJ^i=C+$A&6k-m%Fe5$>DwJPKuSx<
zB_md@PJ4k?ClYro;hder<l;ZrYgBT*MEu$|&WadmFmehBt4&egr%DC*3m&Zzndcb@
zATU>lyg$N1gme&kD2Ku&c5p$oi?4y|vQqGO(T=1FXvEK05gK@h-1P;r@Y)G_mg-p|
zglGfaPB2yjWmfXSEGS-!qa$e@q-QMgrpz%%M5U%nX^YKG`PytcI;~d8g%_H!YuE58
zHLC&b)28kc=D2l)u&Q$Md_cg>suU%=@>wU)X042@vH?|$dFQ?{4A!qf{@Cd~+e*39
z#U}-o$ziY%yc#dk+&@JzOnm`GwhGbBV+2>E8yWGsR{8{|a~6;)CjWq&%oEdo@4BDh
zC;e)Gzdy@!Kh~Z;XVvR}Jl!sn;b=7>_#~x<eQrL}d_@w67FtIUf5uT%)67^HNjkWq
z(TvdssXpI4s;cp$Mi}MF6J_vnn`<kAV?`k($R*bFDxOoLDT<b=N?gF=cG}~IAF?~{
z;E?!c$n~d92mvwaC%d9gNQj0gHK}O;7#OjH3r^e2KW>ikWVGtC<@A1|ePmpAJ2zi3
z!1`Tk6o0no0~MA0UY^pv?_~7kc2n}ZsT&lX&)JbU`W$qOy|YYe?fE?Y8*yvkwXy<B
z%ttz~l%KUs8ILQPLeL6cv#CD;_f`=vCHMAedHfI_o*h>Rxr@G+Ye-m*TYXL6SO<F(
z02v2*aB5`P>DFSEu$5+edEFJ2V4(H#Kd!L#0i2B$Ovp>7oynlAVMet3E8$oZD7e9h
zd*uf^AuS(z2Q+zD6aEQT;9h2Blm^_Q4iW5*W{hc$7r8HG?)Fne+s@}vm9*rUCM%(U
za$;w}Oil`@g!;m?|38!U=1fG*K7z|?*3;s3vEz6@(LLn<sA>m9t9de}S<ek@p&Jcu
zezyG!y8~{NzhnQ#Q;z`PBmMJ9KEjUgA<ORMG3jt?pVncMFXz`&y3{{X=RL8uokPg2
zY7^hm2_FUAEtg+|BiI+|^ieMy(B&cGc4(AOFA|l`yjjJiO;;D-o8pvH&_~9$w^&9c
zx)`PmA646@<>esSDI1#g#<VvLY0?Bf6?rtpZpJCHKgqT^c{D+H^)d40?pgCtu5o9k
zA?!{ll6`M5G0N$|6?8u)<eBC60?iakn-E?RbctoM8=s?idz6zfybSq}TQf@z#retq
z%Aou9QrUNB*0BU4)N71VQHPc~e_z=J-Obw2r(|JDVLlmMe)rO^WLGdX{BAkk(vVi~
zV9<`QD$-Jp?5>-{?Am23AWR+-pk(cGxu6_b$c>f-+@xb<466up1gEIVT+3S{|B&ea
zf|f0GOW%03XpB7B&90P(a1kI>#>3O3y1pO_vBR1J$fxiGFD-X?l;ewd7=Uo&|B7Y+
za|iZyp{7-mGaq(6AIgyThu9q5tOzqd(BS89QU^T&A(Sa8OBcpvowx*GuIN%Ifg=@m
zZC^<x=S47`z@-7pK2gecgu`StI1wq8gTU$prwsDZ<)F+RGe?$@^<+GomIaJQNXbT+
zEC1Fh%#|bhxSe7=D;qv1eF0}bAuD%5Z)-=pVGGTI>^OHgV1SoRT&}87;RE>@6qJ6$
z8Beg6_{3`2K-B3ogyBc2pHTlFr@J|^&^CTSH8w&4r=6@qo{IMW$zB57z~|(D(F)ki
zR*os9n%gTPtzeSL7gB~99Wj9+@w=^$mACjYuX80~qnWY*y-`cO*xKBcQul6Lmho;#
z&bE$Tk1_&31=O}`T8TD#1*HyZrvPF%c$`fAjCN_kT}A~pX`Q*^b-(+=&2lV&Feio0
z?_N3Hz;vFAR#K*5SlgqMOi$t$(H1pkKrr@;OUMftrgeNBO~H<mqtz43?rK1|<$C$`
z#(C-%O}Vs1&ciRxdpAF<S|ZgDyL9BvI**yg1Ec0B<=xNsRxLL4mG=XF{R>Chk<3|r
zL4xkJ4$<EKd96#rs#br*<Ic8w0H$q!kou>sa;qK1oaWT2i-jTCTju|MLJO3DmZ`o^
z8+8kVnURb^0bD&pN;g4Oq3$^of|eteji|Iey|`yffQ&<C8Y_vJ)T|q38UzxXBg5z#
zb{HwZo}WgY7A{t)ltDD)eJ`F`+ON*dSEZTUv9gS%&klq5Rp_-##KgTwgXKeHS4b5$
zY%3s!dQna-A^!FonFZ|0X#^T{D`rUwWQteQ+Li7Et>XFJMdAb7;=4pSX--3OoMq|0
zJx5X{h(``zg(iP@h3vT@cW1d{K~4JAqlmNfj7!`}S4-cP#!e_OPeY#=CElO4$PGhS
zMY69mtsw%A<RtA!1T3f6H*<hQEBgZOQL_|rGS`Oqp^|%K>Q#AHNghwi3qWbI>9U$L
zaA3*d9B}R-5sriKj;qv6EO>%>UMmEpO-a}^P^2m|=(hP%H03v!5No7E$a*wWO!4MC
z=9<m@vJ7EC)F-v9%z~x`1@u-TG|3+0s6mZ6Q?F+|XN?pi=a$@%+43cQP}Xs13uAgh
zYU(hL7>2yl5d-e91rnNTVp`7Jc8m>R9ZW`hX30m|D+0pCL%Zljy73=w2hV4d@H8A)
zDxE}+@@!s6&!N%=#92235KoiephFehXY+0t^m-XRiiZ$z=u0eAZ!$*nUka1-Obm6R
zpySm}(<bV%GTG3xDRd*v>q#2WOqNU;$S~D38nq<fCZxqFn%~DHRwT6Oi(XAZx9N2<
zy^wGK;t81uo}l$ziCgoiHMq+Y+K_vGg-rfAOG9XjbP(f0)#t}7>N%kL<h2#fL@IBT
zZ!lLAE8;jYafQtNAL^D3>GN8hb)a~$yZKSMyOUYZZMRn9&Wg)<DlIu_>7`njpc<a^
zISV7G=BFy08mJz5rXf%L;;VeyAO+x!oUSYZx7kc1m~y4v?;h`y4?E17m(K?_Xm2sv
z7KOAA@GjNf=HR$9%{Ws0iq9Hx?<D0zv`F@j47z25^4fIUVo0CGP3bdWNwaiz(gvq!
ziRm1RO&e~{a>JT}8g4z2D2V=oS%&%Z;`=xWyTaG;7uD7tOe0$*Zoj#5Du$7WqvFM`
zj-JFqS^&dorOW$)@f^ZVoW+h3ggu2Ftd)yifjrYfIc-Z!^%upt&9WsiFD6;n(QBpB
z&e`ePA1`0*<-x^44!!`qk~ZLzgKk~dX;Ik0qvS_sf%(*2T!mYiR9s~qD0J4HM(-ib
zw?=Q?uv}WTfmRyCCx&UahW52aGkOe{@*5+}oCOSOsoprdPF|d6te2N#WIxa%wO9|I
z(vHzgkMe3ze@surJ$i^-%JfWV=o)Yz#bsx<1o!74@R0jtzLZ^JugGaY9&!I(Ee}_*
ziIm3mj?Kgv(`opBz*$)rvD`PvpL4I3xhHRs1JDy>YEjndol@<YJ~;LgH-EXDu>sSD
zbET&$&SwdTR|K?K>-SsPzHR6l^H5(a4h%=uJkAzs0o-K{PXyDF^>ZGc02>QJzDs46
z4bA3$P-1-((ke<_@l~=w6B*YvqOcoUF8{zrW#faOJMw$^j0$eNfoAl4*C5eq>w#O_
zgNFU78XCaE7q81csw6Q?<44Y00fz=%CIkuqU32!8&6sK&kn~a2X|Ik6N3PXRq&=&i
zP3L_lrGdue>ko*GHdSN_#~_WudZdE|(}~ayrqZ1#1MaK_DFJ?xw_x!A3mTEoz!Au_
z=tE#g@C67$n^<jY42I){sN4=MoZm^46Qww|gZJiV{2`JTFO>_>7P+C(fZJ+Rw!%AR
zY<1-Fc@(oAGJEb4c^wJPe-Hu1)8+MAUai=BXh{9sc6yxD;Z4)sP30r~i(P^k*cWt<
z9-0_zpyp-J`~^*e8BEuTq7x`^sFd4Y%nlR53T}Ug9N9>Q2+8rI7!x~by2KUEk-xvm
zomN~nf(NM?KkA=eJ0#-yo3Wn60yLT}L5#+~S05zjVral#aU<7A<`25Z4wbvu$rwXU
zvee_NJaQF=oLsDpuSdG`Y6kt<({qzHCW!hgZ(V2sUg}=D%cxLwf%?+LyA`1__um1F
zSU`&ywU?b7Mtonb<V3*>xC0Ne29<ew$L}tlF5f5k1T~=A)&+G9>B8~tmhtu}_681-
zFhZs#Jm7Y#5MR>7(cYiKOF|%Od(8Zt^Pu}{M6Qb3q|{OCh9{@ZQdU$*i^nTzmmEDL
zppm$MJ5GLJmhcqgS~u;@c5MUx1a%L}QBcsT%68aNA+U|jtPw~4Xye@MT}`s=S6|C_
zRJF6D%qu2`&M~drJo#|hU`N}v8XxhRQ@I8VXy5_~;c$UpL20x!!W*<OWED~5mNA)M
zgeK#+<e<{hie@TG{VsK+9E*pZU1v}7-nK=rIpz+fJu=XpMwP8vR78EK9_7u1YeA`(
zTR~<w)3KmJUaGXrFY|2qJPm6H+~ZS=zM6#I#;qM0^hjW`UCK0pNE52DY#P?5#MNtF
zT18&LXJc}T&(teMj~rAz{Yx9-5jw6WY(U}#)q-U3sU54O%OS@-z40&}3c*4$vsJ@Z
z(G=*Ar>!XyXDfI~@1SFJ4=MZb%WLGxS?FF|8X~zc%r;LbnxF<Awf#>1L>0S-mPk7j
zrJQtDWIf;>C>7rVzQZ<N?g?J>mOS0O2dF>I8Xb?rp~m)Yl}#cDyY(ruGE|Dg&7pn~
zZ<IYrTPn|rRsj^#Eoew5C5}Q7v@$6T4W(gs^>R6eG(Uhv)gZ?)SYg@hCT!6aw;Lx9
zlffyJkYOR^Ftm*DCk+Ckb<Z2}0iMx>Dv^LY=LpN<WwrPaJ)<MDah2e_cB#DoOM^z)
zsgERZyP~RlSr@J5_A-;Iff|&>TaK!xvJH3yrzPvX*(}=<oX9Ft2)k=y5(T%wimg4a
zuGoFIx6C4VPWX{i=~M_RS*|HBNr*j!zR9lIEOs?V%4#SjT99*oBJ-v^6ji2;q?qA+
zYCI!{fJH@J*(keiVqhuD)e5^ay5(K817Fjm;fM^AtPxO6zJ)6f%Okj^c$<{<Xoe#l
z-NJ5%Gv!dsN4`>F14Sf(QpxwWC{cb{&N+w|rE3Cl(qXz;T+Q63r2HvEHYAb&s32CX
z6Kh<L3cvMfc^5wu)g8||iUOh9r$$aWm3^b6^!PDaXo8;?9f`@v?G#_?p4eR;QXHzB
zi^W~kZN{Ylu=qo0HgxTH1q4*r>N0tQhil3>gu-w^1K}$;EBMq#@;jd@lhaRU*MNiB
zXPI<2fI)Mn3=lTL>nNM)92;@lw8_@^c?cUMI>Z?#+R^QDscj`HfM|5wH<l(r=q?x5
zn6@%qfS&9&=wVmTDMhSUUO1W(qT6N0e(Z$Y8W$2dd64zzq+prI5+}M2bC^#>L$T)U
zM0P@VYfQRN`)hGTV*?!9x65S?-Qd@?`9THe$Zq^mo+<&%6pzZZsd;k8XB4zZ^|tuE
z*{SN-4bp20e#U6MTs76(+Dy(Ll^vK^7JIz?N2yy<B~M<*2Lr;)bICjT1fQcprl3Ld
zs>W&YN*_?5K;DcXIv-yqt0w-y-l<zDtI^RAk4=4E{b0pfzK*zQqlQg2PmX{oXQ*<f
z-2)R61A^}4+hjVMb3z~`=w=-z>+NQn0G&RNk$+rqB0bu2Ih#g`xE-&QWtg{oj7AOL
z8FDl{L;f1Dj!R?^2P&tWDd;|k$@$bjV56(&&mZ+tg~*->YHwdX;U*_>9YEhAE$~Z9
z+NZs+kXs^h!te5TRmi>jD>+>IPqGG!GQtak=XZzfCjVp?PH3-5@2;?HwU3zyV_imZ
zM@fl8%CD=C2Z(B5Rba{0n}c@s^2=gKBFU>8Pgw_yLc)Uk%W^aetUyE78M6Ubc&8k(
z1p<i;8_zC5@*r#PQ703oqia5Ha)HPGxH?!uP83pRHcMNVx&eBv!=7`kngm(GwVH!{
zYOBoZ%@=mgdTWvh6dHMVSsB}$_Szy(U`;WLIp0hdrYhN#T`&Q75Hpx2nlTMFBp64j
zAcO-^W_p1(8k)mCp(wjN)2L0*i6Lo61w71&Jvsc^@7t1aErTGt02bbGh8#>DBrj_3
z$}Ayo3Mw*I;L6y_%`YK%Z|!KbOZ`M>8gehpkgrwqYvxa;;-^g8AZuYuR(2%$j|d2P
zpqj~<mpp}&u~OQb3@TL6xt6bP*DR#7XUSekuIg87)n*$>`2cJ6wQ^(~P*L1!&5(1<
zA3OW8nR46Kc?(91m65pIw?q2thsaXU!Y-TYh^7^2BZcNN)dd9r!|`)zf7>b#9KzV?
z^OB<Bo99g6*+jHuj+S&2F0S)3@I4F$5(v2So8)7jhbPwVITV(>@O)I3f)AKAvO~dn
zeVTlr9IBo+FkYpq-+Mt!?&N#9v)m4gHY36_te!;IKI`s~9%yni&uzvclbn<uqXsIc
zT_P_t5qYIRG+8=X&O_PoQRxP59E3vIf}u5lfOSY!jvA<lY^MzsW2Mz|r2!5QeOB|B
zQkObHj$og${qX)W1=O6P=M_+E&Ob)S!t0grf16z-Z&F9e*O5O8m#9f8WLEha<PzvO
zh;c?$V1a*&WNRqqWDYaIGoXH6U5_z3x@pS}THpoUWkZsLD1>#=CYoNB1$-SRzAv(l
z#fYP3Z8I%uc@W5eJN_BD6aTqYBh-Bh5<|m)>PRMCnfIG#&=0WomQ>H$<Ipp$Zq9aa
zI9>JG@1%vW23v&VyHuEBO{5%9W?}8qa6VE4nQr5B<%r0?V3V`9M^-~uZ=2|$I>0Fo
zytb$sP=s_ob8V|2g30;T06MYA=E0Fp?dwIqM!4Bm<vX-&UY=C3yXs<D2yV;0?$64f
z!VT!P2Dg!7*TYd*IGcGlhukkOkr&_;)`buJZt0oQh6yFGf<E!^aTQHODTz6KI~I#r
zM$Z^6!W-brHd`*ok!zt{U9wI?47kl3Wrw9aAMObr6VDz`i7o<R?Vo=C9cGyzopkls
z0~$~+b${PW>Yl~kn3ssZ%#kiJ+_YQb(u%Nysmq6YS!tS0+Tj=0$vnHQ6Bdgi&OP{8
z`0~u5Acn#2fM&>vw1+dd;*!R_Ovx%75ke~3l1VvD4htCRTZkwkKty&pb)c_U=@bs%
zC@%J+qrO^G_|Bm__4!p<5A;zY<%-LS!Max-SNQ((JNB{JlyF20lbwLhlq)GNMnXGw
z@O^SBe^pGNi-;Au1g^wij1t?R$amA|PJP8%3``Lt2@Np#{1`4~&K~$zVcX^Q<4m5(
z)skYWv^IFJ@aa43S@h=yqau?DR}v^@NXKm9>paQ+K+S2=o>Wqd?!W)<g@<0}jhdYO
z!S3Y9kd7PA^Y_DrbKhXxDufB%5iau=bJW=GzO8rXejr}TE|(S;!~WcRUt#N4cA2nh
z(v=qb;oy4jDV)6N&V7tGo=B-HpKxW7Vu1L&2NbqF#c1?^q`|~|s^1a?)uhPqeUV@>
ziIqFuUAXjqdmL4{q>%7SL3siGOBatWCUy9PKNS9VJ9~8bqEsKxEnyAZciR_U`6z#;
zsic}GrSH>0KQW^)_OiW?r5WChGn^^k8e(!HJS^faxvg*q=78ZeYEjn^mv#6*-dcFj
zD!c409L@Io83C!71>pMm-k(!!wf&8S>)ptG>V>d}VWx}uh={xT>B0xju+hZ$%8rpC
z9i|RvuU!iN&gV1C3bKe$Wc+{(`Q1A;h0A}<ldLkFaEdM+P^jBi`sR)~R~g+puA*Aj
zUTva~wmZcmBBdqn*gjvyhk1{PWNv2S;)v^j^D~E#!0o<!uFSm`0`|gg-|D<UAlsjJ
z`>y0FPhg5z#;yX4Cz<0U-}0fQv__rldwQiktbDKoJ*(p>3AknbzN6o@zbn_1ZiW*D
zv5rA%4inBFE-s-jWu326_l!DlsuPyjr$mYgQ3rc{M?cO_LD$yZZGv1HECvBydw$^;
zwMYc*HxhlEfWhMPgUadh!gu$#AEK$w5jx?h2oYkQ{KvxAer_UEo5Y%SxiYp^$kjv&
zAAOuPP~gd|AR}QFxc@n~@ZNV!7}m-N583p#!i!W!G{KLKCcHFc64!K~Z%vHrYc&M=
zd-a;aujjGu#ZV(d2|^(yeieu9_w+rR;xgr!$cY|L?~3`<V)y=8g;#yXrxvS5DX8cg
zpr{QDt<^OJaXPf=#t#;A`1yAm_|7?>Ct$_<m}L5@IlcuUN$l!7Yajc8a}NhdvF}Lo
zOEGGC|03TGd)qInUJ^-lUipR6*}ffpHx=41RDnX<vGYrHm|Q<-(+MwO4vsAHT{4v)
z6jLU=-7zxAN+JOC=u7yPoo6dKE@M3Fxpv=4SD9GMWJe(_0h@{DVPEtwxuS<!%g8hl
zA#(VU1s5_Uv8KuQ;*UG_vGz6k33`G-mkat;NOoW3t2|^U{Ru@tew{-Sn5VmYe6PiA
zwJK7iE7J{ofbtstD#UCB+|&x+Tt0-qqV4aZ<WP#I>6d@j?~CbTYQ-7awxE1)D7hrb
z-trd%4PNc_ec=sydRk74i}AO2JKT5cN1o)<_F~ZPFOEcLHaFngFn2Gi_=XSnedIkw
z`+lRLT_CLQKK*dts*SSVP4jaz5&>j5`>$Gw2lJgFlzNHVq20IXp7uwz^qWcPRYdq-
z^L!QC**Z;MGzb^Z<55A)-M){nw{fyS^OL4Bipe*AD(O4rDZ7r6qP1U&Y+v*=!zxD4
zJksUceM5UzbCQTc0_szrhqihk?)&#8w%{tXQT9+OM=4Mgv*T>v&DYqYn-jX{114YR
z&h^FA-cTO_Lrtq8Bu^h1a9g+ef@mbuGW57ix<I5DC30<#?}{hvGAR>1NfS8oxaRp@
zU%}NfHVq`t6be~7AR-+ri5fe2(6^2EsBv+`)~3Z#C75l+fY^R?wjcDJ_=q>4)S?6u
z9k8uk-|buas9mnYsHxDgC+$y)-3v$f{^tG3Ows{Vbvd>n%UF}}O?$}xXeJQV<H$X2
z$Bz3jnvtLwYp5CuEy?a39`Ie^>0JAxg4z*)gU(l=n7q@OL%u(}Y_k~Evo?ph&VtfA
zt=ktxcOtEXCAD2Y4$uHi22}SJmj&JXN#8r~*ibOli4mHXF+lLk=5gO{x+kq>2r=;6
z*LLmYd+J8-Zrw6N01^Ix?c{f7AK}~kZu@C`E|H9^xul(k^9PCn%Cn~X{^u6EwURz{
zJe#dk?7rULcd{;(rrZq-W9CzAxo}8r=Lh@vF4_PIj<{M1)EDub5<h*I|8jtD)r<BQ
z*c*D1BwV;e#W7y!J7a6Roh+ABw@y17A>gjr&-cdb_Dz+kZWJpE#Sgr2{{ws*B0D^v
zlsa}giYul^?<Uno`GGHfckh0_XCLGiRC^Nal60X`th5^|_T4<6SD}rx)dyGk7<YY%
z@3QDb<rsGF7Wr;h4a^v|RGmMFFfvL9-YWdJA{<a5b`R~vM=HQU@(r>f-dp+ZIEy>9
zI*Kn+SXEr6O8u6h!o_QB5@Jd1b{94YJAZ3mIK;S=cORl65#$&4127-|yzm!S+Q>Ye
zr@OL2jl>e>8tjJY-rMK+OJ;@1!xAt9VQe1tx_kMK-GoQ3HDYC)k?0vQy_g1OH2@>+
zss|1(CR+UAhlP)UgP9;z9ElDxPbf3QE-FH+J<#VG_)+t^RFen5n#Jy}Uf&2J$<>&W
zfdx9o+9WeVDv(KSnM&=IZ`myk><~qYssX7v?DHM_f?cmj!Yrk{%>ydCtl!t;JrfN@
z;<JuHHvp#)_V```e5g7f1e9s~k)J}vB_!ddd?$V3$!UV#uwA-!IGERfF31F+TRq1Y
zf585@1_j0Mz${gMx+iHHJ?MM-Rr~uWNeZbY%yA$R0ZXi2;ya2zV+L9i9Tc-ByAjbq
zF&xG}>wRI*6q4ZKVLo1yv3Xh*3?v6zbP(ZW8}P7F_piNusheyNl}x+>uN1r*=O^`h
z-xzRj9_|Z!(-q~6Zj&Du2u2v<=117qqbQ)QfCNLJb=!?cTwnN3aA!rq&8hyRN*v!;
zwHqP{Do0QvZpIyj+pDiY?j?{-or^L=jD|+Vh1);EqT>0WaYz+W6psmMytVL!ySbmh
z5qO8pW!_W_!aQen;T!wdn`)CI=@-#%5b2{hpQrLRq<+IY3pY@~Ro_iPI~0MT3#N%Q
z6<to839xNLP2pF!+S?n|6VRd3qVJBvOK-AQmjlT$0H8tOt>2yUa^We@+Yb#)DI>DY
zbJrDxOAoLStwne2j10QdEy!c^+00<&>cWe!vKP{aV|bW70}$0+!_O?vukS4U&~qEA
znL5v@0a!tm-%|MWYI}9YM?&;BysvP06W$ELmK^C%qSI_20edRmC_J>yZYQZQy&ei(
z0dJwZ3QyhKAT6v7hEhL60pqS`6@I#J-e)kP=&gnCc>`Yib>M-uUq^={-BFQ{KIEh2
zg`>~$c{oui;1+1hK+tA&9xPOphjRs*RB-G!kg|J=@8!pkM^9Uuvc{^i*I!3j>#hd0
zkfo)73CHrteqZq`c70spal+CP52(R(su2#NSc7g&moHw#Xh=1JrdNeB%&yd(lD25b
z-*LUZ2ibMpgH=$`NSJB?opI7;pYK8SBs?3#c?8-3v_N$+S`LXQaYyXodttJ@p+Zj^
z)-4qBGi%cp`rZb8GY`$l1QMj$%3R>zxB1rS4_bpk68#cJWXj0zu1)$n(aiS60|ixl
z1<EXYu;|aXI(?VFZTGaIAJU2}Qs$O)`UcYOb`no9Y@Xt$KHsaqU~JiD5TVJ;>{`VP
zxXmc$Z0E5wYg(HVog>UDJ62g7-x0O8#w1}Qyam<$>?)SpG{KM4ea+kQD}*=ShXPl~
zQc&Kf_6h5R#U<$RS>dm)Hmp2Tw-=KWv=Ptk^>yrLf172781m$Q6<)}0*4fnbXdt|f
zW8bLnGJFcP6^2!~4uqlhvfQ^<z}qTHtD&EjW(c^Q?kzlE{hbw|uN4v=o)!`=PY3Pe
z-m4n`4n98R`=V*W<3pLp=f0Nbyfe-Br9c0E1S~V0JpU@>ZvK_;KDF*S8j%P6d1~Qj
z4{@Dfu!3i}i`L{qHU8>+1=RU!^4_x+Lj*Dy0#(r9`LEbup0(MNg=_j56nR*Hl!aYO
zbla6F=vWo-{pCL<O5+;|-#OLe`_L1lY-f-MrJcbXnghUo<!yx@sdiBB2LCW^&ajll
zZj&zGAJX#N)s3$6AY`$+{R$y-o`fxKzqN4o6+B7R<q$l8DPvZ7@$H3IUgOD%_5d_*
zjN1bXd=Jf9$A^(xKK@}@&JgSHUD8+ia~taT2cuUrwo>i+xa-98Gk0f+9J4Sj>U&>B
zF86N#_}y#w6mqzBPgSN=G1&IFZpgRgYu*m-F?$PDx#!`&Md&oeP+cA_E!AD}!B)O)
zx3W)EU^AG6=hZx1Af|!9ha$e6)fGhfL;iv9LP`lf`Do$&Cz|kNFCczU#+xVLL;j<B
z9mofi?k~E0m6sd1P(U-Fr)mPx{~urP86IbG{eKSu0)*rTgchoIMr#Zh5oveTFiq}7
zt}@0LQ&yHN$*M?NVH->{oj@R=hT;%<@5KRQn&~BwP!b?OFabgh5CZ|i^ZB0HRWbaZ
z7rrj}zW1JT=JYo5v+U3sez)A-p#MVW$Va_MyEi(*n|H=fI_AOHP|ix+xgFuIl|00;
zia7z^)|=H-;#T*Bi_uZQT*$5~2O82sRA^{MXvu+L&TZ_1oEG%98FY4$nu5OY-tcfe
zTK^#K1=<#rcw*Wea2LwS5v>|(pbawG)DKivlk{=CpY9fJk5)v#!9fF|K3_t$;b;QA
zCJF#tO&ND|OK4mjcbY>#q&tRz4bgDIoKSm)onzEDb5Z3P#IGyeQT5^As7I2{C+P#P
zuO#8JzCE1twtWq<BMwbhQVVF5Od$W~rf}Z-HZ9Vly#Y?IEh2Tp0b#dG?7Labjlu>{
z2wbUh9od2v$W_aAaxYW}h;t4N??rQyZd4cnSs*Nz1*4I8g*w`HX*@FWBALTv^&5wU
zEzYqyrkGjLFD@%_`EJ@8PK#zG=B8{YbYD<-uio(4XAvCm(0YkcErBePFZT}@{KNKw
zMM<a02tiEA&e`F{h<LT2V{_YJOCJXO!JKeewDkK37Vk{a{P41@GURm^*rFAf>^SYf
z@UQ>bb1EZyWc6k2Iin<YfFM-4q)aNdSyob3;ZQp+e9qR@j}NInd{AzQ+<G{RfbP~~
z!>=|rvd2A$quUM=`A>aId$|6YxEhhB*$Jo)C9X6VR?3hzyhZ_~WUd1mGTJS1CyWR$
zMLBNHBGgz;3<avf?b94C_^@w#+MK4@V_xX`cYbq1(2fKwg;p)#Q>p}f8q*p61>2VH
zkONy#qVd|W@VPU?8Qa^!p*@|7G(=5Q;!bM~XML0(vNfV63Rb!Mc~96idH|+L#n93c
zW9k$85u(DJVl^eMYHle0&OSA(up33iHjdk{#Npxi7B(w#m*h8<O8!C7Xq8)UM!5G1
zgL*aH)Lp3wsmkf$mAm3n`mC6K&Rpqm^JNz=j;3{$`(I_)@*aMz?kAmQ9f}{4I5Q&L
z{rcchn6RI}Pvs(Z4lY4NmoBhCHeFd+;qEvrbpF#u<GIly2vQE8bC2&6c6`ysgGQ-w
z$GFA#0tE7|{G~2ThJaD0`*0Jw?VpUcl6FoaXnusuTl#{{f<=Z+E1rd0jSH^#2s2<X
z92_ZS0yh(wzTeLA{L5b8IqNrCDct_aywDRZ(7vg0B(BpK8jveO^MX5`!|eB`Ol1(^
zpS)8Q?wHo-2giPI>f@kXb+%tvb+rvbXiDlbh=%NeS@RhT<FU5z_xtR<n4a8oa%E!Y
zb#xk{m?$9N)*UJ(3aIfx@YUnulkC8jMPaz%n2_f5cn3$+941!4jg<R%O4usm1~=i*
z3qnjP?e;o26#w2n7)jQj$sk$%BU;0sZ;s<MHTTMR*Y9Cal?R8PTyKtDdH-|Zd)fr=
z6UT-t<-VmIS-p&&wApTV9~HJ)lGiTshJ!>&LsK{@*pI0X!;TRG^8qgDEf$BP8hC>T
zN2a|f&2aeiDPg%(SClzy3%E?iWcUT?@Bnrg%4MxQomvg&PUoh&u&~m8j#rqLNw_%7
zEjDsyI1AF^_cL<zMC9i<4ocj&4dIkg@#h0nU1|@bs>`NGZAM98mA0CW_Rw@zT#azo
z?0?Rw8TQYZ832`bXYU(sz+tVOaKiy2MoyMWcUDzs7;lg1g<~R5I7u+F#MMj<U&1o@
zYpNUy9g4j%nyv8J>2d#*`(_uQbOSDF7vCHkW;Zfg)MZTq;Q&X)PK!yNdw8fk%Af<H
zfS(o~8<nk>J)BMnPTQRkYUbMa#1ZSUmIV?sS38%4A02Jqj)nV35^<n-3#Tp)H%_zX
zptkfDUO<Co?u~=Og#GQsH1+pGOxh<*a@OJDwu$zpHrr}e6<+}L?&dHe4pp1&>|}ad
z6dLw#!iVz>L`Y#!04kxIfwBRG4H9}UPYD$qFOX8!PuvX_$f6@d-Gux^#AKSYvYt2<
z#jeQ!iR-C!zv>K!&9O~a<Kd1wreo7TjtV2@^?f}q@8U|-(6qCs0}M)6NUqJE7f#>F
zenpJ6T^?HCf<NxGT-X!m8M3+to2=WVIc@T4j}2wJ*ss+t%B;EC9JU&MZ<qxmlGFyS
zp0KTL7e<JT!$(68;6AI*<Y3j9@DFAMnP8)kmk1R!gD37hHvDVf_(q_LC}Y<3@R4Ef
z#DH<za~-`Mi5Y6r4Y`5GoM!K+us?(dAW>in+CTZm4dG5{|G0OUj^bhc9MyC9#4w8R
zljs31D+eMR8+<`79e8Z`e388p@0x{WD5G?ydAAUyf*;{9l6)41;&z*nYsz^DCX~7-
z8^Q}y>|=mx`~U!g;2C%15n*mb@Y?J=g>N-Vg*#zUIGJc23mMfwJFLh`6?&t77*$cf
zf@vpmVfr!ovubaM&MX}l2lKbXLmSvSn6fb{@{|ogu%{LO<$O`V%G?%B;dD3+AIv~8
zZfYjbCyN0Lli~+o(6X|*@ZgDt1enYb)6FX}>DQqglUbwohrCMNn5J-U<X$S1m4c=y
z83YfX*l@pa3Y5twvehL;aImpKJT1aGyx>)?Vt%;c7q+HxSah;IVNWp8|1Js(PPJvs
z(4B5#f1o4oUnp@e&<G?Q*|C@s=(MeF>X~6w+MaTgLL=Cf09m_p6z?%$rI3ErlJG?_
z6P3xvz}FXfT&3HrDjXfryBd_GVp}ve$kkA$toaxU7RN4eZ<K~f2iQ<@v?&Z@n9OO_
zj|;1+><t!7{zyeEaBA9*31!i_tK5C5aOHulmaBxoP3gNhhY?J~S&bFS+&8Vrj4(wb
z;jELwrWoUV!wz%eSp>3?azlR_YQ+f(Ql*E9G!6FL{+Uo8*Exa6fUOa0`T7xIe5AH%
z%>?y~xfpVb7`cjaLRc^Q4r+3+bvQn9_p^P&rf~ehlVg9**f^B15lybkyd>-fiV#G2
z(P)c#iVUHt8k97Ab@~keG8t$-{Y&=_ua`xL_6slO%?mGKP@i`R5^e|!C4aCZ=Mmk9
zESNT``sTDlujNLu1H*-1nRYal;HVe}x+!vq3WECZ?{Dl4rjvOf(OG$pt&@(<unBDn
z)u82Bi0a#2!u5G?xV-UQ6t0=h#*J!C;qVwD8=Gw<^G(VV9_SKxOHXK#GDoU-2X=R=
zT>8lHY{*7^O?HtP2m}Qx-2)xr*-xV$SI})ayj>f@(x|UbX~tSJ_h!1XimQXW!k&49
zkwTap!2v=`t%)f@I5QG}Xxg3A9G;IVAdusCz?|F!NeYxldB9r2zH#`dgJYVYf0a~%
z#4B6F%a~&<9{o$|@Bo7sDe+QA@X;_C2~4}S=aNbckYR0M{b+SfZh*Xbh%LUlJv@^)
z#o{?d9}moyJc}}g+KAbJ&X~se5HCA?dRDkW`Wy=&)2<FgF+Tx@T~`<yZQDM*7HaBO
zsb@$(hO#+l0^$GH9L7XXjP?PqH{}-Lo7Tad{;_QlSwa(589W@@^uxl9@gxSgYB{<7
z6N+>>58F|uj;S@*H-(44wz0(5Aab!D<xjMAf<pX;)A)I(g|h`xd4{7cMMNj%j_eFu
z$l0Uh19Y19#W^U|!XkoUl?>;1XM~gD1a?$hl9jhHD&60+VVO)5(oMT#Iu0=yN+UbM
zkob58if_A!P6v<hr(5cba6rUa^ub(&2~vt&wDz!Z{@D3Q=VUIP=3FR?=0`PBmq1YT
zZL=@bqPGtZcdr{Mkuaxy#8?&X+V*fhIASV1%4MBGyKp}lcqMMx0bwX1Uo9Fk6Q;-)
zIB#Ad7|m(HxFe$AZ#;ED*gkLnaM?G5*=eB~k{Gc)!8FDhLt>kqI)45SjtjSJXiMtD
z5g187j`Tn6vmf!Q%_9C8tsjLZDTdwIOjO36+y^5JNL(9tu5Cc}2h$W@%qK;OWB;lp
z-1myDuWwGk+`kfphs;UykU%VD?)vud@>(AtxcWaBMW9ZKq_~7x=>V?GEn5)2jg*Yy
z(Jk&TfYQ^xAq<V9ftO6A7l^NNckA5ntU{V3-ep_CjXdmdr<~anM)Vr&M&@Jzn<l2n
zW2rmvu<&IJs?;bK0IndWqb>oMRigE@EA9x-#|dZQs;S3TD)@6Dw-J$L5s-^E4xeCP
zG<AlrqN@m#$o3YQl}03(_H-XhnU+<1f9(uyv#}xc2)(H~K&gNb%S{rl`oLd(39F|S
zO|KXMC|?fBlcn?zztvKEQ8O%i7}eUut}P`b{gIz{EMkp;hz)ksnT=R!gI)KGPu<Qd
z)x|NhF^Mvhg*&bnR%~Z)rZp2xhQ`axDYkOguwl$=LayTBVn47{p%dj*yG4(OLg07^
zZEd*f;il7f4sF9(TfbWviBND0leMiYOFASsoB2=?aK0Jwg1=7&CLypmmdRYqaeH6p
zI{xDSHGlA!Wdp}l5~1`5+;XLEqd)mG7;LRH0GQseZhwf5vwvkETmQ-mnW?A@`G+v|
zu?BQvBPqAuPGNkvfeD_ejL>YJbC6MiuwA-cSbr;fT`jK$xdLW_S8Q#8Bfvf&ISkTB
zZyy6W%7HZ8M_*_0n}6yL7-^%#z<%VRgy1aq00FXOSZI{iSL)2QXL@8g`$muapMUsV
z`&2boqC;?5@e^{ZF4-ykS{V!E5;xNA)3l>1Ti<Ov`*Tl;pf$`RIRsE0^RdqmLgDvN
zl+rNBx771rjyL=Qgm|KRD7+9ALKVCu0C>;m{>I5R)+pt(X-8G={P%seLP}^3&AnX&
zrR7cHaDF>C?DByzlWLr|&>uRFJQ`30cHbrS;mnw&fb3O*pE9z_-ILky$!0cKp8{?q
zR4H#kK1TuHk+KNbHzh(%Vb7R4hL|$d!d|51a{Oh~CQJn3TI?ca*vK1(jwr8={=ms#
zeV%cbxQdqW>ASXMFd*C7Np71;aTPsaPvG&Ub3+k<PDbdr+y-UQ#iT;vREAX5Dwh}=
zcE`-*19C2+>WWDPW5WePG1-HMg#Tf`+IWQ!FJ8L-5U);w+%L;@L4bh;nTF8%Gfoa9
zN9YZ-PB1pg-L;2@dv^qYgEDvfBHJ8`!iuCSaC+FvrLOf7KMB1LO2G7jv5PS6=-Wth
zFgu;BY^HTS?1*Oq#Fz>o4Ie69&%gaw(&RIQM?gD;%MqaG+~`|wwx=?%2;eIX06Biq
zExtz4e(C-5v#mKx@hx*<j9>4<_;^4LMR{MuP_7(HHmgEWEq7n+>_7fhoRjbozEZRf
zk}J?ZFT2Bc{*i&m<B)NPv4+!Y_zHimvI$6QlCGkYQN9z-&b>m%6DIJd_R0%_1D(`~
z6=ThZI5<Glmt{5RF&rZww;B96?Oxt1JcW}LP*4)0q!t#p=fv;^UPyjg3l*4{!e|8J
ziLj1;$bKx}n=%$l4T@FM!inhc#?HHO?%_tTOt3Pto5D#73g{|Oa|IC#;)GxvtFN)g
z{Rv`3dkSl`{GuK>MogPg>I-)$bcUN_$OZvOeqJPnN~9;caZ!AOGv7qh_jGntAfo0i
zG0y<#_E8s^NeTzD|9-dapfots`-OwB9HiauvqSOu{NDV<61Mpu8;Lm&{MN>)ZtaY=
zslKQxb$87U!!9;Lt)+5@R6Z%h7BeC^R0m}boEwLEzstC9Mc_vN)9Oaj0&VjH6B=P@
znE2>{C>*Br0nR6z!xd3c1<CT>X9&bX1iQpT@0$Ysq!5Z5n67|^xa&S)l=u&(v01b=
z&5b#oJc0(N>Yg#0x>k4_6X@2`ki|kAxH-UAm_sL=PjQD^(?qx{{Pbx960wHGDF5b4
zBegQ0LWz;oD_e+=0sSlw3)@82H^7hpMunUY3R<`X8;cxMHRHCgHO&D4jZ(l;{s1Xm
z<YDxL@p-o1XBqZst^9lzEq<DFmM6?@kG<jDwayC7qi`xw1j*lp$3&|8&{M+IB~U(s
z1|-(PWuqS58)n1<(XB}gP3$PG2uR+v8@QeH!0pH)Vh}8%O807WxLqWLK1|q|oJR(i
zIDG5au-ljRTuG7IC019dTemwj|HmHBlml1t19xPVySFoB;_e5=-OKwT>6rg8)hKYx
z6L?f_xR!Vw^N!A0IDM_vpnI9QOwySJQpp5O%eLD%=24F#(+&5dEeil)UhEsAUra-8
zd_E|4QA>C}9~A35lYw;+){>{!)Nq7Sxx4p}uw<PGXQVuO^C%=%L>11s%>B4KJQ6XT
zv^XTY0wfqW*R_Yqk45B^N6liQ=}H(=vNf!TLF!tzBh5*9eid>(opqsoFs_LTd5t5b
zeB$D8AgNOzISp}eX`@7Q6p-Fl)52xvu7&;O?(W&)k;~#JIGm$JXOi%V#_;1O^Dh|1
zm<{OFpN)-I4OP|FUxmSick`TwIg5d$3ghnQpVc@?&3Ry!_oa)%kgx6MgOX4{nqQ~F
zL0_yj5Zmn^sL!}Ut9++1?2-3PC}u(lgcO?+_hECG9r>?NDXL8{zReeeOf)~LVU#hj
zHaIOs>KrIx+`0x|ghni{#45Y;(C}&;k$ZIdOkco!L~FP$T0x`Z{xEb>uA(h0k26h0
zp)^MXIF9DnTJRv{ohgI~q%GT8<W>1+Yj`3$P-;-{E#VWip_HRD3{ygg(&d<5{+(ec
zjQO<t68Gcz;jWlht?DZC3`GN+h|9}$;mc+At#lLBm6A&)*$V50y)=bvOxP!rN@Yk9
zE+`t*3gi>+MkyH}F{=YX66pmmenT$&Nr*o1#LEbN?j4@{lbs(PKZ~uK={2e<tos0u
z#q)Fnw|SqWNl-6v8C1{4YH=7^f|wj0^2D2wrd7fkiw`bT5mk3t2#<qCZcu@7hH?T?
z3~(p+i-5ahLd`(-RXTuu)pk&NMcT4jsmQx$syLkC7oa?24Z=wn_K#EHe{1Ybzj8nb
zpdTmYv&JiIf)ox~<+kkzcSrMCG3F>7)0Jdle$^d@N0l3QjQlI$m-LU%v*8j=K^l?L
ze0h$n04QJ14i9W<>;&=D!vRSUAsU}KIMh*2A=S9gQ(ETks0&L*n?^i}kQt6rvcJ)l
z0Tc$nN_?pNp0%nfBV(DC*X?gnL>{BSVyh^)!GE@I2{*)0gHp%PDUc$BC(>^3uJ9dJ
z9zW4(nc-{R-9iEpe4lq$FAUesV$q7lbk*5r_`1@~pAvRM`<C-7TUUoG-4uP;#AegN
zB4uRI-bOwRa119tk(V!y3Lg;<Vn{P7@=gegshH6@w>3OK(8u1B><eZq%m8?9t`DU<
z#}%M3;$veb6Edfc3{PRr^92k{=t){AzwgiZV_%3c07O(4i{Op+@c9S^QUej7A9Y|w
zPB7hi!g3-f>;@xDnYJ-1P~~phH@vo&&0)4cBliX=Qerux3f^)POkKEY6#E_I+{dEH
z``20BS|L1q*sF<x@PhS0it?*iO&T##{8aTvhg^*0aU-<BF5@Z|hpptFKogL`J&&6(
zv|Y4aZp%Hs5CpNTN~|P<gyh#FO<@%#5HqQ>f-xF}aJm%kG?<jSA9aU0)iyHPt%b=<
z@4M%yFmzY@5|<G=w~&><5MxfC9S+^oKA_2h;L92bA6L3V&kpx}?=({Gords9+^xl)
z3?G17ncK24{DheWA3P+e%nB-5G2uV*c48kfq?~IArzt5FwM2m?F)n`1rR8;|!!d|h
zDH>9DgN~b(;;XC+FOIbd^1fF*Y1%c4CDk*}RoJUOibI_!OoFEe_0ed7mT1Pfp%^&+
zwnv7&jyD8Cvn325>lO4Val7ZjQoZ1oupH4J#e2={Eq51B5BF?s;3EI7oreB`7X0SW
z3qu33Vm542jUB<_rQNaD^TSzt$94CiHH@ntt!GHnG~%#y%XOp*DvHBZ*%l~GxeIDS
zHpX5_@z=RmD_<oaUaG{2j#H~%ZYb0(yWb&dNEz4G9*&9{k|C4yIanQz%3MfC-Evlz
zW7l(78dp0vhHU)3Af?CnG%6KSR&WLE#Ls34%WUA{5H6R!P7xPuD^bw&ak5vq4{Cx(
z((q2%KsfDaUs%wn0Q|Qd;h?Aq(K9<{p(0AEQf`A;;Y`G#M3FfmnSY@3krD}NdsL?w
z4T{D+!e~kUGL}F<g~TS#$pW%BjteggwWF==#KWd`xI(0K32E7<934JsvjdU5vv1(T
zWp0oC!p`{=;$}H^m<C@5S~2<X+rj9?0-Nz3Fb>|wGWXY$!~cfZV=6%OYtEY;KYUK8
zksEPPqBEvie*kT=%9i*bfv?4)sc_~}7h1yZF?>6K{n0TlX2nAQcv$5c70wf_=*HJf
zLWoGk{F41Vtki8VFWd|d;~nvjdb48m5qEL4g>RL_jAD@E4T)*0YEYS$qMlULts9E!
zZ0+d(y|f5tdE(EOSJyHotfQcusKSaA1Z#p+t$T&<lzxNg=u5H@RsN(l9L*|t9z!+q
z!0;C~h*DZg+>NR5Z_bESTK1k`VhJ>rE>#z9iM(WFmMS=qhdKnM0f}dox<_Y+eaY8g
z;2IuVC=GYfu!It@AsJ${6|QJpxM-tz$SPql@ndS<Yn|csdG<n~WK3Pb6YYFXlSva+
zGudMM@=PS)=n0Y!P(8IWFqdSyAw-q=m3h1HMo0d{c93i5#6^!KjAiP*l5J?tUK{>L
zL{;BN7;%6IhI04cqr;J)8;|iZ;R#o!V#Ejo1B&~lbHY*Lk_y<ODWi`{4`7EDHvIiw
zR&K`kMC}YKO+UCU7hY+#Vf%SuMISE|rOYcNFu?~Vho{%G8RR{aMJg8!<v;nP`~i**
zG-qUmrFg~wa$icz1hfrMh3I>X<U=P|K;7S?0Y>Pj0YR4i$UmGInWI?{3_sGSDG819
z!#Bh7aE|2_Iwm9p7HXc=<EFsBY61w^f!((t92X_cDBNm<X#pm3Ro)wkA|hnXvHGJ7
zJxfT9`>Mj7IW6=+#6VF<NFGLWVmi>orK;aBCx?#9bpw=!wNwJ?yZS=z)oN2KtDB?2
zV#L{Y5eXU`9Br`B_QaN0LfWlLh4VO3W-}RPxjE*U>?3(;sIc3%DCbc`3wdRHbJ9U!
z$r$?@?%1rHKdhI0x)M46M~4F@*;`U-yL0T?@O@k^{QXdST;1A3mA6nC1+By#+Z86p
zJgR9*c9U7l3-sV$_J*TbBoK=!5n^o=pOZfG=y!hDX}qyK8K?sN94|dAV889dLbL)t
znL*tRIyHeHa}%GrRe1X(AVGX2m+w+R-~=vt(i^^}*@haJ`3_kWGT*JYMnRpzsavIb
zzO7I9zd~>f2!z12I$!foA7pb-p8~vL(98kH{rww$=MH-@1*=BMg$mkKy4#-cA4^)&
zP>m{AnOvgyM0H&kMm#IW3@&%W|LZ4Szyhg}%W;0p&+fKp@o&mQAe|hTC17|Yxe>!k
zE8F^ppN6YXusu;;A$C<};^Vn(BKi!j?nHp(t2+nmhKGf)4tIbn<wQAj+~KW=8~s2)
zf<L_LkN=&4S_$9tm9Pfi%v31V|Lt8YX^sI=|LckT5$P}<HqO?`{w;rH_EUcDnR$Q_
z2dLw@h0V_W#BVr*=MV_>0|m8MX(tq4R)&vBRpIDK?2JmOqDQ6f!Vr=%dW1&Zox^y8
zqN6ZU(N&q^w~t~#4A>=Jxk8+Z)Gx^l<%DEOZje7lG)?skpsQ3P0?X4>rxs9`vI&r<
z%DwQK-vb`UkTu8$?f{H$P;5SX&3{Dd7t1vL-Zqc1D=xu^oc(_`w|#K-rV*hBt9F(q
z-hH*R)c>i^I3_CrLooHZVPT&wY)HD?%tIZNXUq|R1X(9+5RQy|Zfq_uiIk=TF6^;y
zsDZjbAG{2xkV3vHWmDa8hQIz1P}ss?^d5+AYaj;E2$PJ<5e@z1QodFg4`a+I&`Jts
zY!S9oC{I=wx&Q@R(ypw*44spI5f+{ZSO)JcUD%tZL{T9mR*v8<ac6wxOMh)YNA*X8
zgB{xnK>td&?i#=0CGlmh6+}{;R{2tOZ+ds0Eg&YD!N+@sHQ;=xN3KH#fb#iG!wR7n
zJrOmo(UT3By_gRPCmIYXl&Y2NHV$IN(=THcvN6m3Vmj!J`<ZqOf7F(wLqH9!N)Q3p
ziC7)CTX?964>E2)R0A->>KAUk&i_fiuKq|VTF*g$^`_Opgk<kQG%E9jrU7ZWJM|^M
z$9$&f|Ad1rP$86r@K-$#E9LjRVzgsPIpp^Su*g(sMEs&R6<j%$F~B5QlF!W6nz2Z(
z-ZivG##1{_IZ6l&pbA1y{m7@53|a%?fBRScQ3u;YNe7|0sbR<d+3&wJ0+J#wg|!7J
zf+TWA2=T?4h^Xl4RlA3K*JTL62XWG9fr>084p+Eus>5Vt3A-3;s;Cwk86-j1Pv7>+
zT^#@tJaqjeo0r|nwnMSE$h)L0>i}^+|7BRDB8Gl&;>qs^r;#P6pbkhz&1G)&o4%}m
z&=(AodC_kHQ)fS8n+v%(LKUEh8}dCR7!D3hlg^P3OrsW}C`J99&<S_a4zrA5P-S3w
zJvv{Zyk2gCz9vEh{VQtxmoG8{35uqdVGFq`G@}xCK-ypSdwau`ob_2^G`t~6ztY__
z$shiw_{Q7-((Mgv)N2N;uJ8?y*lVL393n)fjn+#yExeJkE<DqK*2!q;vw%hIm&j2k
z<(u#oXWG>3*Zb5)QrutOI{iNFo}S>(d(NKYTvyGuHDBZ{Qk`pWOMTNtj7CIL{xC5_
zDkFqAclaMKFT7B)Hx2{X`h9o#J^o;iXXfVHuT5uv^-e$PW_#RUUkpw3*B7e{1)okV
zpssZH-0H7@>X~*7mX-xl5hf+q_$ME-r|NV=@*#u(=U_GOuka_{9j8@APmBV0HJ~&r
z)Jm)WoBgp@+xu!`i-`$X$+j0Q`uh9)VGr9|><qdtYBL&@?o>msvged1>(?1tCAmqr
z_{Ll9Y5!ipmj1nP?^+LmSTjuc1R6N;8o%WJc#5!ve0Bjm<ni%-w`1}X@Z6@5R4KaN
z?*MQ?B*Dd85aZ-=(vd+HM^5mQpICc1OzZq`e1;jOLU~tZ`?#&zPsKdr`4}a;@>Cw9
zJ4gDTHri7d5~dDE4kf};_wZ+t)r{JSiwF^zO-NI>1V8JGL>=)h{-iJMOOwLJM+rR<
z@Hu0g|0ZV}lF!;y)M;SzJivjzv>!@`1*cIXhu`HdAvjIrgK4mHsk(Gg0^#4f%0K?P
zJ;xKJ&@70p{z_HquT&J@;LMc`ApfkZFgAASb$<A_wxa5JW-Z1lEoca6j!ya4pdqFr
zQ(`{I#M3hOr@Q^xf3r`FSnIO5E!YII>bkLhE^Zva6$k54maB$JxxF%exyW%qNIl&b
zQYV=<Cf7qqCVpKdMYy!U8t2!4#l{<lwhv)RJ?I+ZkH5?yCCdsEZi3oK#3li-jEwvH
zjegc`_LcHwh(x0tE8?GVXYT5Md3OE{6x-M=b43e8yuC8ikGj!@1(iu+M3&?afaU{G
zXj+{C%9iE77P)I{Dx)tHBufxsZt@rrQ|3ne!fz5$Q3^NWniudN?rIt0iyyUdB<k`w
z%{cu?NUMBl4Z=1$g^ct!9cDkr7uDQqO?m|Ga`*Sq{>%vOX`F$GKwGJBx21e`1zWMs
zjJ>MnV3U^FbxfCkAa;#Y<VX<}(M5&Zx~4!Ec)=vxg_N|Q9`DnO83;!_!9$&Mj5H7o
zx$0SjKA~J`XhevVhhXk_Y!hl-@*xLq@{HjZMHPVHCJV#LzRoZt!w_~s$0?Nv8+W&j
zH<?9AED}s5Sd(oIw{2|mi@6g%$3f87Nk)NE3r#EX%Tj7oV-lB$)=pl|4*3`ndD4Zh
z1f*sF(Rt&;mUN#1m+)0t*1M=8mi8J^96K!>Mn;FcVk)BSwiTJ|IHEqRjLEYjbB)T5
zv>DCOzpOhfh(M{v^M)@6Xc1*Cal0KBrjWj*=@3*R30Ncs&zc$GA6Ld%6m7?HC<JF=
zmMOP&TbLE2BQv-}RxrV1XW0Qq#+1++1di|*mmRF_o7S*<4F8EL%}v7e#Q(}W!fu2Y
zCD;cvFe3-6VED<&C}$y4lp(&$+)e9-JAMwvA@5a08_lXRw{Y8NR`Gik4%MOHpt4)L
zu;JT;r*L-<&_U?O->-wr%yw}Gq8Jzz!(RTL-*cq>T$+tMk6rSJnZUd2WxsEWy(1<q
ztTtZQSG6w=aKW?wo%j=E5(bPZia>15U;L=3SWZU5$xM{>!cA9i_^+eB6Ahk%-j#B1
zz2z5TfI*Z~7h9npN-h7n<QhLsk+cCS6&=p|n)6h*tK*oI*_1o#2|qrLT}TQf3E-W-
z`yCFoJt)#^%K%kR{gdB0I|xXG!23rXC1;}!K?A4VrZ4->s1oAIwZ;TIC!OX$&-=3x
zGOUe$1ze>gDuNKOzCU`<|97cvW{}oZ*{5~M!berb&|)B@^v*Z>%T^g?!1BcR^CC-r
zPb^NIE!48bHesI<hLtzXTDr+?s8lZcnECMZ5rcQsr^)ksE-7dyh|0KTE@#|JJB1d-
z!pLN_#!Q72B6dbRZR*?prct~lhZS!SiV>z6jQNs(_~qBx{HDrwV!SGxXYKjQg{v3;
zmbc0-1$<PENp<6RP+d9tp~J!kASSQP+Y|+Bp|z7_WB1R(TM-ot=ZD*+|4<4K>8$qs
zhny1Fs>Y=3h};J>Mx6wGNbc}|gJttn1<{BE7}pdcM+($LC7dLOzZnv<GOmNe(85gw
zywPjd+a$~!ZA%`Fcg2hZWoE)xcL_79Y}CT45E{$g@UsuJU(<LB_i}TN8v@iTQTBYs
zy}v^^W-ogk?Es6v%i4!*%iMcg#tcz#Df(SI%zlbE2<Mvqif`_+ulp^>O1EZcczze2
z;=$``5H8?&qULe)&~dc=mLyG_1V{zOtfd_r3JkoE8PO<eeiTys*sms_+sJIPgp98f
z;rMcUjD|82g^l0i1u1b;)(f>e4BB&5Uy3k<TFXU8S<sodPo+Dd*WXK?frwdY0WwhG
zvajCa|3x|yPp9N$9P<>vXv59^DMH3Pt!`DB7^i|c%WW=K`4RWpbF&({=`6}Cb4A_M
z<xjuQULh>HC~C^-1<B?cp6sttx{5i_5>q%dtTb!xL^oQ&l3!K01t<8`@mJ>V%n3X)
z<RuTZe(uce@!yfmo*zdgc+PEdq<>Vc4j3Dw*k;65JD}IMDJ?F}C}UNL@l-7`5FU@l
z-}sW~v{PaQn3WjQWl7w!XX%CVynh|9nPF#xta5NR<BA{fb5G$2=+en`z%c7RZzqFt
zzONnOlQFxHaJupY=(otdtH*}ne`F;Cn~5gmCyPmZW+#nr32(%7p2?P(ggIR1j-r>1
zcn>8oO$}`{3{nYo#&xxZUGBHXkTZv9Sp=0z0={~2_%R=V6KWBOPZgg&Epv|ur-^)#
z)LFE)zBLnF<21+346`?}x5`Z7H1ZOebimoFMp`?&Ayw#(0##0<pg%^9go+sO7k}x$
z-a9|lFxg41*@S8Fgi^&#cRVP}Qkn~4DEaGp6>~EGG{AdvY}h;2c-g6w+6*U(5dazT
zII-cTPmBv*LNtbN@@Xqfgd)oI9%7;h$TIh%ba-kv`<VzVpLQ@oExrIi9E*#xCWaMp
zLY3d4C7bu1Jlk<$2F?PDM_D5bGz1R+qAkMX*f~sXDO|1Oy@2{qMXcUNA5zR3*iXjm
z20lqSrcj?#K$FS1hugve<Q?y4Qj`F1R_LHy6%Gm=06VhCaCTc~$@dn9r3w3O>?}&^
zv882X+#7A7j<aMGZEPfgm-*RznJr4~E)C(MQhRGw2eBtgE?W_e7RiN^&z%zvBypY3
zN9X7;Du&83&@NZEg++VVGEfnz*-+RJ&*jffw}wQl&N6zs&0^Cc(T7`(3Nwr2Qj{Ho
zHjY&ap%T|152CywycV}$4IZR}usbut2zlgdrKS63)l(vFFYQLt)CBRy`tn^%Y<(zb
zWEd*iF}RkM4ZYG98WC+gAEk;Cnj9&fiW+_9;;=7lnUSWV+oQzeSHLDdncg{Q20TVv
zmbEH#iR)hLLUYUu>3<9w?KMAi#>cX{&E^(5Lx~E!mAbM+!x?e8kh3innC*L5=zx7Q
z#TXO@`(?^~G&ih{4+m7o_Ep^STh;Ir2C>K;`c=x+HHNAoHq4X`B7z22;vhwH!-QcG
z3$wje^MX%}9jrgX!ZR>|ajFIErlA@FMtTpa0A=pGCH^9;3SJM=dol&R2RrBo%u6Wt
z<Z;oEO%r#KDo-0b5pw+#v7@!3Zc4zhSQ1iwv)#ir(bY|jq>>Tforo`l@TERBqJ%f8
zC=>GGBMdIUSUMzJjt3GRP)#NmL62#i3__vYd_fiKgd@asRR}Lb&^`6juu0xUoR^;b
zlm_G_?k{ipRd@1JuJ7)k|AR@l68HJ7{uX6$sy3uM+h)3*IW0H-v)}PVey*GHq}wHC
zHN#7l;Kg7JGVNQxK@IP9FI!KxO+^@L-ArG;Tm4<%+6yQw=DwHp8R`{oiaeu09*%`}
z^H0BlVoG2ftS1I32wWi(?^!3Px`=hnf&?fDV!`I;xZuzJkOjP;><CNFT<L7D)Sdee
zKmB%w$`HY`SUqgPbuIEYs=Ny+-DPH>x&U$w$sPX4%NYalH!nM1u`iViRJyL4{Ps67
zhPYU3Gm)hPDQc`&&O|=s((*n1h~L@XOdE{V%N2+}IxsKurNP?%VXPpT>566!-2*Q7
z6MkXOt088pSOg|E{O`N{bXn5$U!-TSc?Eev$E?fm_g8*rbJU{uSmF=j0S312!+!MZ
z_5vMso&sRB7KBgIrs6^W{MYuz46BYrz6KW##-~h%mMPC9lMx#0mQJBXbGhL%f7%YV
zh*5wN+aV#&iFyJ*Qai{Jx69@J>kPjj46RAqu<YRq+%z2gan~@S9Ij}eifGAeQRUk4
zT1eYg%od_GUjU1&a_4U8C#(eMct=%4VsQ`>dO3CSO>mLG+%s<1gMGRDTWMqA1gxn?
z??_Bk30Yiog}eMRKYT}95gI8un|v#01LX^2y+4WxP$i@^vPs-cApVf+{5~((nC56F
zgsa^nUaq{_zq+~Yo?T-p;xduL&H5-AGFQ3VZ}xAkZ%rG;bIlz{7G6x$0+)#3O}N&#
zU2EI2bW4PQ<T?ogs9)fDB~9+j+_rW8txs7(A2H2Pih`Pop=M;<$KUz4u{${^da6W!
zOJXV^4C_FIrG%cc`3~WOg*Hw8ge(q^7^TxGW8rDmIiIz}@BBd@_+Sb0PGjwuyv_R&
zIgASThll+-?=u{dm7+@pW6U-7$_t*{K^<N-<x`3w$?sL_cG}I4IgRIQxd8fmnCs#Q
zp#W4;>b~B?e|Cm#hsJtYj<?<13=p;=6+aGtIg^=ny#QPen3`dcsNse{P7F-1a<@L}
zUp}7!bYo#Rd^~H4DZY#CPV@_&fu7at3_foDNetJycll4=;P+{KIGiJ9lnxjkb*(>Q
z0}hycL(rNuKVuAeDMc_8K+ppC>Hjl8)DY8D5rV8_PVCQqdt9_)Gw^WmSaBc9CGLI8
zpV(`^w`F5rX@|y~=>O3CvVWcs7hvtPuqxc$FZq9CVewFChQ^L*qkf_w96>lH#A>T@
zxo7+n64qQPVM!KbXGniiy&ZDtM`6Xeyd0FFgmB1bXAGA7(Di`+G|-o{Fu59@njAJl
z17Z~2?4S!RkWBd1D%=+%!+lX9p`(RW;i9NuQFI;{zTpc1Xlk9B6j)PdDxni$E7IyX
zMqJf$xha8Ar&sPayEg_Rk(zSukt6~WQ)v{%9khw*@NZBB1&Wc_2ol3kIEZq0=`dgN
zfDLGRXlzyje&gvE^dUBmcfuWh$yIjHI#BiSq@+uX3jg|L{s21UigOf_wa6;z$aSgx
zDx`7IdA?+C!-Xi%ER!Qo(DLuAS9Qv@g|NYPwqc|iU6)8F=ao7Ap5G}<{ROYMg9sfJ
z&y@_m3Riihe?y7R{YOqoVcyhdTEh~2(&pqwqO;PCb`B3C!6H_o#&h0aM0KPCTSti-
zA426e_M2HTnt`5x!}h~n!eX7EwZ&3~6(S!GD0qC(p5X&Lpy)=`G#-%`6Z4nGtu2Lq
z=#=OQj_4;Cz)SWIlVi~m$&ci1>-V5Ysk^B)92qMm#qYRa96Qaxhn=<}IuoZVhXv+J
zULrR01KnXuCG=IfIp6@kYsP`+Qha=DY^XK{1&Gm62}|7T3$0&1iyWKp)})HGGI#u_
z@Yv<imQznO4bJK_Zu742491*{GcqofL1QfeQttNFFz3exhkOFR>d_E{OEY2Ff9->T
zRWHO&V{b|(u2Ixqk`qASAU-A=&X5ar5Me<;g>)+TBT-+iNIE}VZq6vAaA6r^J;+qC
zGU>60gwu90jkGU`iw)!xT9Kn1GHL$;5H<y3V@h}U0E>u;&BJ2`7AOu?ObTa4E2LlB
zrcKw2jbX(8HoozHYr@}<Si8fHDJg&L3P0(#q4iU9jv_-<aXt;bS2h_s0pb18Vd_q6
zt(YrK>%&hc+Q$=N5AF5lJS87PrP^>2c*QZ(!Y?P;FO)-tn^ez%Jx%=bxlYx<Man(0
zt;`)bFD%251O$}D<{Pc4!%d0qGI?^W;kY7J*a+72N`5E6aLUj^_KLDTm>j=4XwG#U
zXNd^S#M5OljScup5Zbdy+A@u~(tVf+)8^U&V}Dne2;A6IYPF!@>c3&3i#;-kM7=us
zv?c~z*-_>EkHSdFC_?R=8fp>8j3J0>|IBlK-ZA#+I2@DeQ4LMA`SRVuE|I3kkmLcK
zL9ciuZ}efNw}A)+;n4?=paZsd{u929z=)P0Gt?6Cr0<ux4Tc2yrtOVH1PsD7esh@u
zMHGR1;|eB<2}wIZH`^|pb0i<hi791$zO}=UieL*N+j+-uSrI=lZPU&)ubfLR?Da=~
z=N85~30}gGE6No+yW$}~=1bNNL!F0`Whw@;w)j+E6J;&>PNSg8B+@2R?u<Y9w>-*H
zpYnzhMn7jx$4bkkqhJE|^!W2>6ATarM6XcbJ16-qwK4p-(k8{#xw`8L-@3EuU!>bG
z5fTRL`s@e&Jr~(eNu)$+gGQC{CHn)rbh-aP<3nR+uBiKVrF-ane{qF9oeWmn-7#8p
z#?89amuZH6{*8g0=ih*PI$;Omr`AW=;0ad42jHuDlUu2a3KVmWrlewF^V#xK!*Zz!
z>Mhb^{6lSWQtrWn!gCw&oXlHQ56Lt%D}lzhH^|MZwyP?!qCp}6&9#Tb9mdXJb8KJQ
zIY<xV?`9KFvH~=v?t_l-0KGi;Sm|`Eq#e%+;yAK6`bSK-%2-_9kQ2I-E+%gfbL?Lp
zF0G7=h4tXd%sU)_89jY0%0ejx?3dXK*8rJ5zy6r8KQRtAEBju20MGz`e`svuRE2j}
z=`MMOZlz@OX|#I5n2(B)#TKYtAQz`L<UX@407pqYKmY=Ou6u{`FW?2F*w9+v)0FFK
zH~$OLWcaz}R6_Xyk#q*~n#v+f)G8LidZ?2rcYF7QqjVJ5Ea-6noC7LzAMPFIt!D>R
zO)~&1TB2NTNq9(QstUxy!31uI598B-#j*2MzA9rzhYpV&L#RE6hd1S>BKMZqrw&iC
zY&wO^xW~3sL(05KUKUL{@=b_35JN|b8Ya<eqNt}K91J|!=^Q+lHac!YE|5DeoQ6}w
zP=iH@kuik@2AgMwRXCd^A0c}NYs`YF@dh(0?eH}1a7ef$Up7FyCc`&7yq9K%Uv0tm
zWsnfWj=D#?`OT$IWE{E5^2>6%vkbKC73HPUz10&AKER-v$EJQ5<@IWzRmPpQS9o>=
zt5!M|sXZk1N`f-nbLZN2So5q7InHCymsYy7!p&-}gCwSdjb+&jH8RTO-x|$>{hPCl
zc!s>~QV>dAU1xZPLO8?xM%8nIP-;J0>9W(q4OGH0A%5Ua;-6&3$HZ^AHLV&x8*hgX
z>YAU_&VZ2Vyzp0ozV?;zQTQQ<k0e&6G!TF{Y}aAMUu>Y390?^JTFGsh5}orw?OH~~
zUL~#yL$7HMo72BVkc^h{!0}+H6-R`>M#&CD@wD1BG=OLi$MBe~DW`#5*RvKPzoyAQ
zH!*yuD1%;Vovknhau_0BAa-iQes>ux^L{I0N3Fv!-esc=ZX++v-tvEpb_TZ3qYKy(
z;r1B4XBHxN?8sal+yu4Wml5i^d4Vsv0K#(7ITbLLy39TCv<ofC+fx?2R7QofL5;M#
zq9p`Uaye;&<GtBdim9U4Ipb(<uP`uJ6MeKbV6>%V$@Odc<9S2v+(u&8;ttCn+yAoR
z7{VDk5>YIhrNf838POlfs*#LW=fYbw%-~1;MXv)J1XYt6!C@NF_eY)h77sA>>-nz1
zecys(1DXp74v?~aOzLhgCuz`9H4&;X5g6v3g-c0HY8qY8&>qNN)B1_Gd{Gw`#E^Xd
z@Q5!i#G<2t9kN0hB6|SH74o&l(Ropg5r<Mi@J4xs2n~??pti7z8fO86h>yepp0#>_
zZ(1L|V!NSD{yvN{#*|`9qT{bEMUSsoUAHxr(bh}cHl1PX4{bPnOVNI|MM}W1dX5{H
zwb~89OZp2sVd?z^oz<`{^n_?+An7-23irgCb)12*1E)sHxEmJ)r;z|vA7T}{c2~Kx
zTf&3_Amw90ubU}57C^&rxe07(*m7ON4vL2hy?u~%<IMV0%aSs;s4+bCbNkJ#W?V}a
zU_mg`e&T?b1PRnYM|0Y$zzQ$cp<xcl4%o-$#CxRg%TR0!Ni;hiTM7v55k-u`*`_dd
zMpUXfW5gmah%-^wwIufDA&Jc>wkyZYsem4lFzPp9b6BM~AJ_q)kjyHhEExBCPAwEF
zt|b-WUPK(B)TG_E)!`Khev+-(F^?e=7IET9;iV|jP2!nQ%p$$vBNl+*W?OC>6Cn+r
zvagDSU6}xE#77k+DXM&hTQWaP*~h-BMa7MppKOVYdts#AKVsw2CP*F!q&Lk;r-!+l
z+ZP%SM6?1V?q(fb_&w?qlmlzg2XtVW5L$FTC<w^vSds&$r#@vw_|q7BVU9R~0F8p5
z?P)<6R%|V9K~N+LN5sid1fn$d!e-36=;uX<ZrnU5N3yoGaHSZViIa9a%?vw46Ne@d
zmLbPBA^3mp8xD?O%llbpaKN#s55`#OKAU9mDn^TJxmT)#@U-u;76I$z>hMi~$x*LL
zHbveECi4vK8;f4feV844+vfj5*>u}LHH=BU@$z!WxWK#A)!;NVnD?ViU)7o|Lan@j
z6ml!&E}0TG!`|b04SWc)kz(HGZxlFTR>x(+goOP_oHTl(?1!c>VwqLCYbJ(MwzpMT
zGn{^DhJBWHr#FSoB(?@=_uyoIz9syqH!i@OIw@Cvhp)SoPjF6yp@dNYfc$r`qO1MW
zo0`&&wW3QE(DAWNur*it>d)+xm>(W};haI*Ex*#&C+r)12AEvkHk`4Sv+wdN<nPtm
zRL3M4E!S~{>l)*)JDhD3%pk&nII6T7(H$oF$3NmRp2WWD49n%Ka9^$TmGa0DSs;fH
z%#nkNOJ?r$e^9n7PHy~GsM*L?sKGrp-&e+|$L3In618~ulurz9r(I&C|3uz-)<s#m
zI{$X!c$p{1HV`KtahN~rBzr#~=^5%uPx6nv_`T<})a!dbg)OSRxKg1r?x8B*h0k8Q
zRFsKSXr-p*UB@4s=%0C?mt=)@kYlFgWlLpSa;@*g-eaS&KDjkpT%RKX#aSq;vC=(%
zpWo_2`vG|g^=f+u_{<0*_4u`0<GvvMLY`u&+j+cSe6)Q*R;U^U4|elaxa;olJ6*<y
zvQ{akkv)xV2g6%=yI(>u1su++{6bswa_-!bj*Q?KrxtnARH$mrxK~@kdQr<S2v#wM
z&lZFm(X{!s5)F{r0|gq+9|T%o#}?4XvTz5s@l3g6Izw%2_Xx|5)ws~)z&nNt^Qktk
zUr$gnvuTFdZCErN;gD}^9W{7^MU#kB)?MZfX%AH!+J2DIolw0p59kV2<>p}$ZW?!r
z=?kzC@ODpw$z!XF#KgD`iG@XL<&}bNZC@$^-fa}Aj@5qhWJZw|Anh2g!>K8cgXY1H
z`lrA)U@R6es<i=*gy>d1M9Lk)t#kF93^kH?My#=V8E8=A{`{?%WdxRSWXK|UbSy0e
zXI+o)c@-&TUifZhBFuw*<L1Gcgf~Mhj(1|~wp55xsYhf<4+(e1bR|0B#J+W)af#dd
zabJwHgX5E>peuT%2hw@aUArJ0&9Sfvlo;9<lPuM0b_<NHHS9Eti9m0}O8ubf=MuN;
z_)v%8$1(_76~Yo|o_24Bk{WqKVVr7;A&_db8N^qV&rA^HMnCN}+xt|2(tu|evgX+T
z;3rBttH2|Ft+NtA$WvJ3i?uN^32bgP^~E_ZD8eQ-`i_wZr{Eh`a1#!JYV-U^|Jx^c
zj!Qj94{uJiKPwz4Hm&fxe$9Y`I<0Y&LH_<*i|xvdWuXSHhkD9?@f&`w=O|G5r`(8a
zPt%SdN)MaoAYxSM{Ud$u!?<1oeR(BNR*5>g@Dm8_%H#c$U)chst6-wqt!EtK@C*G`
zW6URnlP|itN$t^BK<MJr{qwKecBQDpkO^GkBt)}>EhB0^9_c45kTj^X1L}BxXNOT)
zEJ#F|a6AeuRxLZN)ScfQ{*4e9EXlN`pvwXcrS6NN{x6U7T$Yb<TY{Y+zmA5+h9CRS
z$&CTfNN`jMi6T_3lq>y>zgrg-!v-l+AUy)Gk(^ZFUOvIMq8~FH#NA^~Dy897xMe>M
zcSZLmMeBAk3TRERZ?nz9>l1-ym78EL9LO3Le^_W2a+w|?Ka&(3OEh~n9rlY#fSE)}
znc&3d%?rvU0-aSUAT|J-nu#9~!&p7EW-JVg@@Y^x4us>7GbrWS>%&%mh%86iX-9Dz
ziM#sT%!7<P^jsFV9;i8*`w^O*`{(o_=e<+3o^$U0#E{?LUbLRFE9-KJ(M?z|&V8L4
z^4WttWcN+kt_9g9=T_}E<goX7RN{1}Nke^tP-30B*~{0_?c6t84cYlI-ZMpmu+JSa
zW60G^p@CZy)y?hB?X~le`Cst_Qd@w|?cD4854rIJ9-xkAyXEzs)RZN^jM=W5KjdVW
zTo2SAn_D1k=GokuAzN+AGd^!kOw4u7cW&tHAt!xobIiyco+Z)EZ8CJoPnPne+>NGp
z0LxhS&>_t~>l<m&fRXs#-9098{lkg*j5)reJ~2Mq&35VV;*y6XHh;pN&uH#$qJ+7o
zAu)&eh;x72Kk?KfyeV}D&~uz#%+B3hnt1R@9--UwNZD3Ayn0%q^(7wS?97s|<lOd)
z66-x<A5N!ep{beQJUc4!w+DEn{kLU%Flm@z{@ldwkJ`hTSUE7IUguspFj2dTXU68#
zBWe)?rWz7&<=5EIMA)LoxvKpVbM!4B>Tas%E-B}yCmy)pMjMY6!tl2qkT^9C#he{I
zanHS4&5A=3+i1MPYWkt!4oOr$W^cx+4RUsoe*W{hi5=ox+zi71e>X4Ds2>4JWD8S&
zdO%`M{EAGX!~ufTusMmFBDklKCDVkVci7?V<j%Q?uE+UQIegq!;#~7Vi7Q^P3C9!n
zZME(G@sPwOar^@snsSVP$(+Qu`ilJdrVcxZ^Z|)!PuY_x9rGJnz?skIB&O+T=#9aI
z?E+i%{KOY=oJrZPmJU{xIWRFo13{(jWYv)j-r`*2+{CBa9@mc=+@3xzv60S`YV!g{
z^l%OXQ39$}Q3Z4SXh!1YJ|JVBx&3A(_KH(X?Mm4Cd3gAo!~(4Z3h8cYA>zUD>{pYx
zZG}xU8lSyjamB2}N^K$ICN+00%Jvj<0M4DbFme9#Je3pz;b=rcawdCOIW5usH~aPY
zY+Ostf<(=eiRI)`O>OILA@WQCRh9eXfubK>w$q@efdA%KiaM{gr#NwYvb`;YCo<(|
z?d~rR7G1Vr(C_ibxl3Ludh?1wPZiGXAEj?bc+?Nfi0b$Kr={@R+utZ!ddc8%3B&)u
zZ&~vX{1(Rk{ol%Y`vWUO^Z5Q#!j3=iRP8(a$Hk-H0_59UR9K7E$?Y_MEgE{*TC2_!
zzCd(U*JWFv@NxprocZzB6y3gHm*qUKZ4$%eG42xg?4v~+m)he|=s@jiv!YX@xD=)Q
z-W!U3(h$GNE<%dMm+tE`i%xHjkNbX&)$+jYMN9Xz#{*|3Sb9y-?EK6FMqvu{O!w&T
zin`n4N8K&Wi#0P!y1V>0MdL?(Z>*95V-1{xWVF6H*4_q{K%LhWjhk(QeeY%EfR~f9
z$}>V%+wMzU<F!Sb=eN1mx-lw~Cl$?(FTXctrZ6T9|I{ywMpJSosIN5!ls;hZ1C9#K
zsc$m_HVJ_HpOb6dt;)K@O!P#7j0v7RujnXmyPTQrZt7XoX)nO6r6&}<v-=Njp9pe4
zYzEHN2WULYHX6oIE90fANT1o}grd?nc3#e_si=eP&BDkse70mDT~T!3llEp3i5#sB
zy@pEUCDShU_M#;>fBz%M!Cg`G?|<#QoX=;fQW+n`BI2QCRXC^Ib7vM^c#3_6jn&bT
zTZ{+Y#-xz5#JzfL(fJSj@LQP0me&=19p4UK4A?c|_M&6rV%B<<8u03SGm_Zw|1%?u
zsQ)df1p60Q#LRwiY0(3Z**b9#H7r)++ww9zRh91TtBZQ?us74XI$An97v(`_`L&zf
zT=c<hKfFB-u75IRel)j7P!qOr+ijeD<8Sue%#KbD#~u66qRURQ2a^z$U2%SMqTlgu
z(VG{1{|zAOe={??h#Xh8g4yJLv3_z@9E$2A7)D2Ncdnj4^3$Vix+B+5K6RdrIgS>v
z1r*@8ZdqBh{@L~dZojBI%Vq_L6nwz#_*BuX-`l(Y$GD~LU+X7V#Bp&q#XY2uF7EVI
zMekf`pALA=4&HpQ=<bW{`Ji1B&g$P={ygA3i)@FOVTsR*IxiVGoO}D>qJ95hPv)pj
zB67j}2c%qm`)bk6D+YeRmf+9-kNMHN-3}iW{SiP=S3C({9r#XI37)HBCW5a&Pu}#~
zUG#DeQPhUT1+H6Oo+35U{racLm+rOKQk55V8X(GP?#iX2pA=oaxxJc_l{F~nmeV~J
zSIN4`(?;5xwI>8le%<7U%i@In+vCf0ISI5QHb}1j&p2HNEA8#5iyXfkKLUZw4U${l
z`Ge!ab^A9mrFn5vd-EbZg^h3~4UNU?&iqO8^U_^yqifF#h4#(6AJEY!II-N!uZs?Q
zB`!6~%|l)7oEmSypHb^1&;FOanLxftJWr-!jW2ARd}@eI!`*Ic?VvQjgO#|3$sDX#
zuiXSfX~Qpysuu6C5(2GhXldwLRIhxh1g7Rg<C6DZv%^ZP!5M4XiAFXpk~h)qmrE{r
zaEFx`swCUaYia6eZ6l#7oq%Wm=lJBz${jVqtcC@3i_}F#^DrFt)vlW)zihVeX1v|L
zx*NA-DnYlKlJk;>Rr5_Hs%=+S>jH8b$y`Zg5*($UnLMax?Wr>91YVT`k4rvRYEzAE
zUDQlYivn$WvEP?PBztJQNnH1hcRG~-WMifzlVfe9nTxQN*AVzAOMuTmJ2v@?kvpzL
z)tkk2-1KH5Opr<d$-9e_5ASCmOaTc%ght|sWqNb_vB~#}`GnX_*J`W!Do<;%CrwWt
zc)d+r(_G)OhO)v&3b0DG$BXKdRg3J^xHUZuHW)lzz<+j3lG+8q_{FXU`3BGj5)8f0
z(&SZ-^M(3vw6?9m)GSSa_0a34-T67Fksv5Wk`JKDxGVNfYTMZ3;*bsV^{PBmp@jje
zN4GXm)h<{=ADmQ0SpxiO`@E>>3_EwBYF8(*|FQ&^pl-cKa`f4Zq^1<@-JNf<4IIe&
z;`P=f)$ZE4%EicwD&R_)a0O3@pgws`YkTXWc`bmR@%Sn;Dv7^JuSRyQZfnZ5_K;vx
zp*Oj)$-CGMz^`Ez8!pXmXpy(W@VFartYvjqU2ArpwB^!@1R`|Z#^mhPHeM~}cmZKp
zA!jptujI1BZN%|_4F^WOf=q(Xf45Jzw(%8dnDJ=PA`-BtA-_uQ`!3JTjfJ9NI8a)}
zNoU;hGa`-w378hRPvv<Y11_yHl*M!Nb~oE8PY`_i@0jHBPMc!ZY9h>fLq<*l?zq93
z$$P)GC6hDN+S;@lLTabMDk~^=lMYPYy}zws06hT)RF031PrfI5Ds>|ltm$e&UjWbD
z!&fIS9B&9%-QG~Q2wxkhL=bag^3dgRoDObJ#d~3!7<FQDg9<zS@vFPLTd`)L*Hk4_
zm%58KOs;#Dt?S{|-qj4wqB7;$;%}!We?5&iaP9WyUhQ3w+F~09DtD{$z%amGy)@E1
zM+H-<TND9UVaLJTo0r)qwQDe#dRDhCz^hVbbKie-vT+!@z`|TZ0(T^_R29gK`*XeI
zMK{@2#=zdN`+$5ZL7psR@wEWLeE_UhIGz!wC~?i>lkZM7q@B$D2v~(>Rm?)E`ut?_
zAx7ff&j#i$FRv2f9s29!q!VoX{W?4GDJc25G=Wd)$qSM{+j&P((HPijE7gAhk|b<l
z3Y&TCYooA9S+&ZEkfh5{0@3m4;mO&b*gR7fwRF+;hR-TX5-5-}&q}_0g%M5d>fY`J
zYdEg*1Ol(KDmnaiTf;=|?-S`0z)UFYvn2WP9;~6<!Fjs!j0AD1HB4(tHh;`VmAu21
ztgkZVP;Hs3nw|Wz(cX+{ZC%riCk#SLyNzZihga~JMCz7YSFRJ{H_rP0hehX~XwSzt
zw4&HH8dE~f<-yOjaGGVm`g)}s03h1+3S-iTBxwOEB#1cPgdr`Y<dXXY$a3_N$?;ly
znX07PyX&A^aH^uz7)$q2$@O2fZztkXFp1L9%gNe7<wXaOAHSv*_FM*~(O7k1a%eIl
zkg9d*5HG~$Xt6i1J~^4oFc&_N1$YaMazWE`woax`VHWVJg=`rXFR`h$GsU+{ZCm0|
z_1RW9lx+$QbybaVjj8R14ViS6kf&{rWSGncxb>;k!3zS%#kUDrmAa3Ao4kty=ag!i
z+Y8*D6Gs;xmQ9ZPtIZ=A(JW(Z*BV+z6OSN|MDX2wRB~?tkzyWnMiOgNNEUYf=x0T5
zND{*nkb(w1zDXN`-?C@&!YRDNMUrh}?TXm4tCV|hqa=++gtFQ%*$Z9RLc-W8ZTN`)
z@`~_fcH!Hu9IgganQ(Zr;#Qt2^~!i|suD4ga;I#Qye2XOLLaJZY3yDDKY)^9$T!c9
z@>4?ZZDdFWDNJEJJjZxfg_}S<X=}Su(-QbvQFm5f#tyLrTRK`=N#i9+rvlajrfz*k
z@}nZ7;aRK6ONxY_K^b5Tpw}U@4Klc<>rGZ*Yb7u%mT#6cge}MAM`{L_Oo&=497y%s
z5nusET&}*i88J~&VTbza<;epcGl1coYZKuS;!dP9ZiCGY4S_NRNl=7D4y3ho=j8NW
zJGDWi#Zf~;--#Sho1~r8Eoy@ANU1?XJ#hWxNk{N55^H2|#9PH=-a03F_jLA2Oexpi
z(lB38i26_|{F)25KPlS&FdKIKnl)YEKw4i7bxC>&YQU*o?NU=p5+s0bx;VMrIK%b)
z5_D^&(6FW``KR;pgLEMaQm8wOvih5%o?r18%xyv7ifZu5Cs0JeTe{&0UdXOi@qAYy
zVUTif-jY20Im5p3i(1iAx^ndW6>MlUzDttuQ6AX|AGN_=OA?gFKb<v=08U|AhY4Ja
zJ$+Nz8a0AJYGR77D*MD5C$O3|msTQjO5MWK3W8(?t!&YRgc2og&vTNujb`f*+JYQq
zh^?*ok&O~b{*^wks3W=AUkqZ>6(rt-9Vu`+EqRgG5>*msoGKOR7X~QZgJD<o^pgK)
zVympmxERQ8IzfuWlP-h+S_EwgwMJw>9t&#;Xs`}^OQjVsi?oRCz+H@04U}1Ipdhm<
zz+5<K*BX#VLZjSuuTx-1GuNQ~k#R>(zUfS8TKg@Fd+OJ*K^qRVpcAlgwDmmKE3M23
z6wjS%+AO~syI^$}^rH+o=&nkrddj)UJAN8@smAP<2~b)Ij4RxGCl<tNL7_q0ER%Bj
zY=^C4WS2^EX-EvFP#1DSa!8sZ;W|-xGHRwB_-Tui1mg5`ZTSe`J~=$OspKQ%o2#e7
zN+Lr*D0Qi0lh;W{Aj?NR1PN&xz*A9v|7<-21dExJYlG>PSJ_-cmn3O4CJBW$N4Nt$
z$V6dAObLYGqFc>1d3DrOq|T+Kg&kkQOops=t7&UphCYXo+<sh=W^+cwrf8N*EYL-M
zY4WW-4f8-OMN?UHSyg$0^n+s#P11u)dqtrmAE3Mx94K`g_9UN@xQcm~a3e$yVwl{P
z6O*}4TW<|fj5cGR%z)NRZw|5I8K}~v*XR(x-Xi&&6ayroD*A<eGGfq9?wXLKTtNEw
z#5H{~CyH$Jp9z=pQH7&7w($WQ>z@A<ksz*})#9Xq3DPCPc&CXDFjK}4TpIPSMd>1Z
zN!`EDtmuy9>ICm3=#6qjsG>+Cg5j862pFy%!o|XyvMN(SUm2CG|A#Goro^@BXBo3|
zSo*lR@y!|(7vO?esdSh1CbzD)9nEU!vDyjLBa?S4_DIq_&6qCyz8jqi9+ryuciOi_
zr?>KsLdt$c8x@1j@Mk7pj*9kp2%txhM)s4m1P_;f2vBFJum~O^t&*aO1PM4_G({z8
zE#%~YFb|i5oZ70*q$4e>!T_xh(tPVo3#Z%&UDRwLv$rrpZo0%IkFk%qblUt2r$%j*
z{OToJ2gQF#SZoBc*%PoKEYx2fY77ZCo%B}|dsWj+mjFW^hOZfm5SoC3i0jXvU?eFZ
zA}C}<RO-RCbC8H&iA=|c=SV(I`GS257Aj$wh*)JDHdoIalB8*Xk<;6Sb4$T(xU!-;
z`MFde5U7E=5z{V2xbPFOXBAw4c?JOh6MW2G$q&T6DrpMRP09=wQfY-KbLTNhQ!Kg0
zxq!bFGOE+=hBK4zZ)WJ07YXSE8J6QtNp2!Tt6T^w5l)eXFp#MaE&l=J#1XR_lotI0
zlUDcUIex}A`N@BazLbDh_xcWz2#Q5{i97zMNm_R5@%T05Kj4^1NnJFT&5_yodu2i!
zAXBI?6jNOGRTSN9{RcEW<YK>uhc-*@mbBoM6qc0x;(hxTfje<^TX)l%Msy~)P|Cfw
zadPU7HXrwbz-&`e{K%A8Q)GGxClJj#Oc<8nPE0mO5R6|9_Mu=&=$RmeZ<*CqDX8^Z
zb+Dm=Ri``^89iy!i&tKlycxy~1Q2RXSr#NuO1XRae?=P|7a;>NVeVr+lruwx8?uQB
z1}UoTt3~Cc4+xLYz3E4zgYRc^Wu@-DamnLgb3CRmAnwz;oct_<93aqgH9dN9{Zz>R
zQtHk;DY@cJ;|!CqmSu`bvE|Z6u~TTz#3S=Glg>;3gbelvXZG1XNp3T=nflaJ{89xq
z6_%<>WI0Vt!9TJhIpSa@sX}DY$D~WyrBa2S+&=l+HIXf8<5Uc$B@$BZtCD2fg^VwE
zQNKMR{iVdM`c=}r0%a!WA+J7z!OjusV+I4J+oFO|SBfD+ud?>!v`xTf93&=w%u1lW
z?a1Wt@wOMU1{e)(yv$DcR|h9=-`$om&}C4X0RIc>0b5-_RuHHUFwdWxEX4+eo?q;e
z-0zmOlv=<Eo^y6`!|hD9td<#$rJt5OFLCb<Eg0b--ay-ncf(IjE=(B#z9`jxEh}*4
zk;#(1;0zEjG)U%32~aI}8!u1(c}r6pYJ2dUHHy~CrSE_tCnhi6l<|H*34mn2S~t1H
z@9j87X3?Z0t2LTlZ<4WE*eCfy5kojZl6!$r^;5RviL1L>--e+Qo6t;${Vti1GmK+c
zV=9mt%H{5{nMr!yOQOq7(jXaHie-&FeridwXCvF|tkqp@_0q{r*rNr#JAv(R-bly>
z<8uUm5=ehkt*dXaqXRqx4M2JqCd$+9g>rLzvE8ZN#)*s$H{UF|=mNt=w6I3=({Rn7
z&aZlC^73^6DA{+5baYfY>G4k!1y9&aG+6tf3_l5P5O=$sZ`&WlXhF8e&rBZhb9RH(
zoNcr<msi^ClYgHylL4`@2zjQ%$sn@;?O$dj>G>~^k$Z?#CqE#ATEjHx_(ne%E5vJI
zLS1Xx-~|{m<nV{&Lo#m$%O_TlmruNSv0JscC<w3)tWv`$%ve~N%wOrJ8R0Kp`<cm?
zM%!4j+_4Ra{OB-OFG`*_#Exd53<P8P=cttfQ<^KAObgGXxq^&bpbk?utv?MJvY8i#
zCNGR?<3OU~yfOobs^5QGiX<SQIwpBL{##%(ehrw3!Xcd!-yxVuX9Z#OnC{j!y{7Ub
zwfFiaDr9ORfJZF85^o{1>x1|Tn_12>I~y7yNPGF}hGg3>*e4vixeYDZctI-q*mnDO
z5p7?!f&pu*5SHcF#tGJTD0iZzqrsfg<<js<-Ieo_FMiI4b|HEjq!`b1>hVd5NxpiK
zWEjb(vZ^Wxu5S-W9)FunRAc=b#?&|Tn0f{5wwz@?UZ@As&eC<JJxktFp15y3F?q6x
zn{^B@X3(Pt8Z!f5rDUe(85u`4>+OX`+Jt>1d~Vp>7RZKi*`p{$F^Lz|tZ6wY8tUru
zdUF}%lM<R5yBsK%r~vI3OMT7;O0E<1(nc?*pwyTIk>CuB5+Sl|a#V#RCUu!2c8Wxj
zd^bP<Z@M`G#CKQAd|qVa!{I?b<M(AS+y@*(eM9~j<n@7>bMfg{W{CnG^pc()F&+t&
zv}-**xnv)M+Za#_z7uD{o&TTV#;_+~kwo)UI$<UwhVbzUroyo9k8&_YKFR^W`{X_v
z?CTdMKb71^?H$PS(9;SmPgRV#bx^>S=8p|Rir(acuWT&0I#X6D4Hnk|g#F9%<kA_8
zhxM5?l|;ha_?KH2-2{LR2HumHP*-OTl+v_2`n#fA=JU}Y^fkU)Kwm2R!QM7Cp{~Gn
z3amG~HhIB2W;VUp<>Z`@BNc?53FK+xZn`rVgc1GfGw@S5P-KpVK)67*vZxXtPyvnj
z!mucdW@S%Za=hRty>0;!w}QMyKR)o62B|5FV2nn7rC<dFo#{!A#|z0P13l7cPkE0t
z$NsR6$+&YW8c?X5uMmr10V6vWMz$@fMOqAAHjEya!I+llDn>e{9A?#?D{Wc(wW=ku
z&2N0BRMX^b*O@s=AVHFf1S;39M<-wXr6I{GiA%!|YIH;Ll=~T|6e8j9Ks8ClO77A*
z(|r4YYLa?~$jr&4%vHY8KFNop!xvY%FrmA+ceR98X%(zFrKo`Twk=sggJriz8!n}2
z4E-qtn_8rUNY#WBPCi?*!bmZEl1Y%-T?n5HR_b6pd8H0;)%If4nH}y%FDS%qOgoBd
zZYkC|_<<YbqTSYJI4N_a6`~bnlH(4SR~9m~jX;KG9x%(`SOrZ^e|vQDUSbu4IT)%a
zNS60ov&X5e9rGhgu$V-p+jK(m)#+@1keP~ILp!->rUE|l0FeRangp4qZV+8rm2Q<&
zTu32HZCeZK(;1C<KQJ%(<!1)k!NEqlhv$QhhTha7q1JYrCjwCdY(Ozn_Q5?46K&t@
z29vT&k4uh@!Ic-yrk8eF>To<`v+aRSHL8QO`urDUOgWqjG_bSd)ll*ZiVdY4MyrLD
z=vhIzSf^Q<<xyq9{YYzheKQ$EGaN_DLjJ>7&N?S<sLw+JPbu(d&I=XPj$WQu-2cGp
zf(6C|X02W*?=C6<OcPaUgFnVawY=S_f(=Qwa=DNRCdk{u+yf*faqFsrq~y)WuDA2-
zj#;QGAlO(t$0)M4&E9ky!@yEV;{~8<za)9HY^1@mjaLOP=VA`I8r!00k#qmqG>pj%
zTTG_ZzE6Z>UK+ZXU_mv|fdRRtV~ge=w9{hb+f;fxId}T_qK76IEe6b!@Eh|JzW?N$
zqH}lSD+-}oda^mvEfZnau|>BrOzciWfggF@G;mQpKxs)al?$%wDPMNnwzshi>X8zY
z8{WcsPcmFF%AMQwF2C!}+ujC?AyGP;n4<ehMmHp;(XtOS0H0@ZDeke&Zu8j*+ujBS
zSoXK-N8->|-{=3alMOxA(voqomlShHi+lSH|EpaX7hh2mIn&txd}FKm;|u<nT0SAJ
zt-QQ6seQ#Myc@^<!T;Oab4u~qZj;<IG(U=8O<Lwp9Twkq;2X9N^8-G1fuFm(tpN+5
zTXl$RFT-cJ4|cuNx0cxUYO-xAWma{LE#s1VeeqbnQky@zPc^-zhN`@RTYqqoPt0Jq
z<s2KPjUYOz37}Pw+gV&fGW+~4zj=*;0~^qKKBJ|w3y!?~e*fIA3`>iIf$$ugZOhV;
zR*<Lp7_(&D{g3&s_{%Bk^^&QmC@Ur!<?emLw*omvn9*DZPz&EEtL)uJ{BJoe-c6*E
z-acZmOqu)QasMPRfQo86vRHi?a%YNR`EH$8{DO>~gRN%<oxjxFg0Db~GamLU$FmPr
z3aI)gRZ>=*W;99{R#)<z6g3&k-HBNZc#(07K;8D?KJEV8pBVsZ8s0IKqj?wwC4`R4
z*j&n`9`KKY7vL^s{FExfV)JvpeUhIt#8zs}k%VkqXNz({s-2Df*o*$(oHUCXLz6Sz
z8K_bkR!3t3`vI#vVK@5$szmGrq<UvHUCAa!b>wiDG9Q7=VvHm=`beKm*{@Y%BNLI4
zDocvX(97;U(tjFwhbj(_<Q)(t%xbe7{*XUugn^nHop}3}&<Zn_?UlRTp76V;`A}T}
zN&1q*2zV=<Y2A81WHWoCOJR&A3~EXy+pxpuHZo+?MXGN$=45D#!T|X`m--vZm=0qB
zs-PO1n-Af%m{R;81sTmh*S|KLACN_@js@-SNSJClNT7)?`<f0WrSc0v@L7WT2CH61
zFSFeM_5HTx7s#kw*Ly_&GeA4V9b6AA^_LdtiZ7ZM=BF$LL&u!!Com;+Fy}q8k5E?)
zLC}ux?)IyMATV3Hk!LYSIp1OuYTT4F{5{3?W-M2tv;WT^9}tLDb<oTJ&Rv`V-s_y<
z*8wg0%g|C3#!V@J9}wGuuYbhf2{+&elc|X!Jgv_&f|d~X!<GJpB6~aSv)&HlSXcs!
z$<Rhq*H0?k6OZ~268r?sLs(*)HoVVpg-EyGB>979%U<(m3yqEC1|7~EPHDvQgfG#a
z)tliRwglqRDvnmn@S+U9+Tt|c>`NZ<{|CR}V=8^>sk#`=znNJYx*7IB94OHDJ?V=|
zZKT?cy21dJkX|LC`#yi)FY~kDrZQdzV<4#N{<OlMDWs$43T%9)I;^nWbXhUwRPNK2
z{xdiOMv4Jc#WVlX?1@^dvm}|Wq_~{7<FE3=r?WurbfS*EDO;Q^Zina75hqXD_n+aL
z=JEs8!EsR>#nWn-Bw;{b5Rkvb{rqCT^}hCt$&xdijQm9$KXJXgF7lh~W$$bm(>ikM
z-9(98aV5mD$$9?w!eJyFRMXz`R^;y)oSAPe^TpzNGLdrKyf9|Wh(pfx+d>#3wPpgv
ziuxK7RJvt{_#=MK8{KWulWm1q(Bn8Ow5ubI_b2aYuO{YTAg#O+ULnmZkMqm6Ga95b
zXG2apgO0b<{pLD9ZlnQ_D<jo-jR-n>LNorq%l(}P+MAker<fgZ1s^$hP_mp0U5mL|
z%boIjzvINXw^o`KiHO1K@g3b<f5ZZ~a5bXQKbHB5(fkg9OOi1pK@&||z{0Ei5Rj7X
z(7;`ts$jQy)Vpe-|I3E<%^3V8U8IetD}^s0Mde+7Tok}#&=Ek#1;D#9f0mPP@{JM~
znoI42brXD)orHo7ssDYeKL~UK>_&f(KP}ay1VqMD3dW?)^%KPfFmJdYqrK@rVt1mX
zG^o69uis!OFX5ov?U+SY(#?Sb6iKi`0rv3~eu_9kp41B(#yINQK;Jx6HoVXOVW1vi
z`Uy!RE_b`%M_Z745BAiBnC4E@;wotE;$Qo1g=_eFa`SQv#Gun;TOsyR?(N(BX9!nu
zMA0Y5&tfnn-aXns565RX=mPvBfXwlsu)cMw?||JSx@M9}YFNuV+rXjA{lsy6lMzMG
zyi|;+BF~6kecCVAx+U%xV<y8cN|}jyw|dMUCc(>q;%v&+K(-jrKe@u6$6P=p7Q92o
zk~&((jVt_wYQ9q2lL6`&9YLZj$&eOWtQ6O?U-J*ZANe6-?H%a|lAkK9SoDG)3*!SU
z)%r%R!aR`Qzt*1;4+{*-&R6*h-sHHZ&+hlP!(8}k3>Yh#hS$bd+b{RG#m|r~^mQ>b
zip`RM1Y}~H`fjEFG_ptWTk$6vKmw>dKTkd4w~^2mW9*uTMkp|*Oy>c3mmKW3-Pqoa
zk#%cFMw&kZV-Yp`<_+xK<gB`ok^~)R9M$Ak|HPI|ajICQ2yP_RY}&Kt6~Ej6GQS2y
zkbavdf$DcYm&7*7i#&5*{oYRzgHiD!QWK%IATB^WjXOTvizoRVC2Zg`l>I?t;wPqH
zB8d_?e?0OYxb>+s1L!)9;GS@~KSRO>G?f~kr!H!}i*cd4d#>?q(t1HIiFE)5)<G3+
z>N9?SX|???^2d>XA=I{d{HP1S`pSyw6y~xg_{+E9yQp5{wh>ei2V_U5k>7S!_2>8p
z5kOirtPbV(v&b`4g7D?dz9v#)wc0&{wuK{n;}8Bh5i<RM5nEZ43?Lts;MFvPdI!Bq
zQjkh%*VE#k0x0}450s9?47_Nj2+^+1O=$O3I&QI)UP_LmVnI&~_xh23&7Q2R(2|V<
z<xJ+0*=@2LxIA;Jzf8)x6a(WRsmNy5f6$+zb&IIzB!jmFiN$_P5iYaN_N(^h9V>rJ
zOKB6mNUjqAaTh+}>&k7wJWCQn;~OimBn|*kRnWCjslR;GZy`9~l!qabAgjfd6{`~Y
z$TR$Zv28dTUUk%EQPObnF&-A?$YcCjzu+AS15v3KCxix~I4f~SEb%uW0SkOqJ}FaF
z)ga-LBmFYThP*PveG>#}=-<Mu_za#n+Mh3-A?^NLM{88Z#LD3yQtpw3{wy7Yy1J1f
z{~oJ>agi44_Bzh5x21t=8chm~AheKD9NJ%8;BSF*@ww!?`d15uW_9E^sI(X#HSKQM
zHU2i}SwG5ArwhX;P{E||<x_6-FNt619wch;ZK*I!!@O}v_*Ve}pBWHD==L4mGTm`E
z`JJIN-r1S!4U?6z{abGG|BQM=HEmPPE~KNA85$p7<mWQkV7);=nR>2YFX|1o(rUpz
zsDlGfyC)m{6r`!}7#&I+MKmWB?_YKPz4&GTtAXWW!y2pMlfnEcgZ)3E+4n^LWGp-O
zGZvGa9obl(Y(Hu8TkH6B^+iMbVL7tlQdCcy6n(ta&)@n7-pQbNxYgI{9gbKT?_BuH
zhf=7jC^LNRaK9O9J-g3q+Z+|ih8-vfG--#Al)ER+_n$^pNLQ0f6De50N1x%-kz&68
zah_{mah~652PRjOksinm)DoXjq4uUH`sr~$NK%<-z|rU*$IPD>_(woHm>>Ls>QzBw
zWERgDRL96#`Rd2~$taQkub)uhQTPcexttDQA3l*>n}3p1%~LWsG!N^5Q2{cE!|tXh
z{nOE`m`qd{8H0u)$<GG-Du1>lKl}l=ZdUqLT41bzKkRg#Z;8lEE)T`T5zEo8&cDWQ
zs~58KxKc>tMfpx^qDTEdr8%YC)Lw;+wK3t)g4>LLBAC&&5TvklE)>HyDs?}9#eXAc
zVnOuFUs?TZahnzXE19YN?8|g0W2mJv)UTFV0VV=Q)**;SA5DgGN1OP#Kl-sETT@fO
zFH=tmZ6XIr9Qy7_zl%&=61K277LsEnBU#o1nP~37ll@;Lo$(3}P=2+Y6<7KWl;8i4
zu=9YAvPd8QC@Nyb22!(=c@Z0$UM#0+B#=VLhJ<2Ul1;K?lZ`20u(#8*+*$BY5j$2q
z_4G~<8+Jqm3-&@((4Z)YKxp#+KJ)G-y9xLEe?EQ$X5V+-nP;9pPvM-XD9UGjp0Z9c
zT%|@h4iEfLFYCiy?TGYhi8ZsIOyP=t;(L03SG1v0NNY#2?_@nVrWAD(MvHld)V2Pc
z@4+58xnS&<v-EjL2bff`uZof`uEGIJceliCkGtVd-qVw6S(@ldc*m@qbD;ysL5Os`
zWIueQ)4_fKm+#}g2FsWogn1#oj9CkbyLUdOzZ2N(*?h*!t~OtzcZ&He;ktnto4_ix
zJTd8iS*!<%dTP}gD|M`LDAIsypym36(e|yd*UYu$iCcEPX8&{L0{HOCIj|^AknSaJ
zPcJcc#FkFRLc+uG5%LJ2W(8$&q*eeR7|p$}=^T+poSoP!L_tT??VV5R)GE6&>O)#H
zUF=g=;Z0D9Z|M`$hfc<t&yrXT(*Cz)>q&#+CgW<zYwjfS9dG5CUcKRHhIq(dOKPT4
zOEPuU0dbSLgevQ7t!r-}vs69#mFM{6xXFN4sn;IUmu?*yo_4*w5uO$yOyW;NXuH&`
z;cL!GIyH}p$i=K%4@RlC_SG*=wgY*6A7cfDff{=BbtrY}SUq=$eXz8n89}H%h|>#;
z8Ng=VB$81r+D||I2Fu3f)gioJomi~Te0$_%oH|ARn)(i?LT#$jKi@NQGDcl-J8>rn
zG3qZg>g%tH>mFNAY09WE68x~(8rLHTsV2~%2h6mK@V47Ug!h9Enp4*yH852Fi}YWX
z@=?r&4yp-}QT2`I;$!1v0C#DlY^C`-&smy<(qYeEMcsx*#`ew9JN^R%sqwUn+Ge~*
zyH)2!JCY?1M!Wo#r|Q!dkDQFkQQF)|Ei1nFLY;p1J_~vaDk*Lhffe8@ZE2?_V?D=}
zpQ|4jY!9^*;pK1R3nR1jg2NfID+|`I7XZC5Ne?}Y)ncp%E(mR>kh{9FP*1&$9bpK{
z%33#3eMnV}*WS4dLZO?eY5_-6!CLKk*si2BP~S=U5~c3V(eIA5AFT*&$4*kOpB`C7
zez3j9?y3GSnhF?`g^q&(cj&l9dVMLVg~v>y69e^|z?{qUn~#p13==8!ODJilEbZ}U
z^eXU<Rg`qpH2Lc7A+0ad-!Es75}F<L?TxMCUQ)A9)$J?}Y%Q;oYO(ls*Goca7;_=1
zLf^~|Sz_CNbxQ&eAg(jiT!SC}rz`Z?m-A)n#B?wlFIBvxb8}d7x>|;9B75KOX??-R
zJOdYjVF^Gwppd8Z_21cVQfGP-l9UJk_K4oKod>zB?G*p3Qpdiak2}=TQE{LipBi!%
zR<~ZZSN4Q{^G7>DUX!me)UaNuCQ1r#VRMP9r~@!C<D4t?f#2JaJo*B(Y!d2w;70xD
z=ZvLV%wOLiXOVfKPQ0e)&8Sylc3DCH1;XQ9LIu(Pt-Asi2!)-^_0<080fU57$xWDG
z@^1?)*20DgL$kqukY&Cuc!#fWBK}ZS-6q*aO@l68$QUHCNo+&auU+55v0)SwOzdyA
z6nE}jI%_R}VT_(u+yk=NyI#~qmB6|8`j{fTKz_m}Q4{3h39sl|W?MKGGSVTHJyrZu
zdh1UBkPL=UhXnaD_S#kYg#~<^pv+)syU0rQ<!7E1Rgg8VgFx$g2G0D%^L(?Vj0zv^
znJfX_Sgw~GVR5+-t*Et=#~{Zc9y?U#tFdekDx)lnFhZhf)>F)mr{?78(}&uzl1`te
zxT9WRLT`@nt1>taY~;!Hxt0`oo2xZ~={k9kv2iXlUP@V?qQE9QC$H~+l$}%V{2SH-
z5pTA>`5=Y_!`I{GQDvoi)P9y(O_0f#^w*|>e-hEe`bjsFq8agDde#*&NEb|*r$bV~
zjvA>4eF}i^Kloegpl(Wf9HoDHGdx70Ltn6i5B49Wy&u@Y!uBSd(=9FXnRAcPtKYET
zT}qA97EcM(8}!MkuUqAL0w{w9T$!~uZ(`{E^Y!=*7F)10K?C^I+G+ZdB^(*G;v=Le
zVn9INViD!IY`q2!#bFUrZs}~($DR})JCE=&CXTQ%X=2(S%c79fjZg{DA#T>sOpHA@
zO~1D{@5$z+sMvbykE&3uJ`MzS&%lRbC>?6#6s(lAKFrqU4q+XLxT-FmB&-cI5A&IG
z&(wM|+b2P(se|ims-4E^0AFSV%Jw&47|MDQ2kHlRFiNcn0;>c(2`B1%eznt0ZVzs%
zhsJPr2%en%Goxv0sVf$WQ+3{Nyhzp7UG)@$<4uIns&W?@nmSusgsJQ}M&Gd8z9x)O
z?r+qbBz?l~3?URY*$*C`pz98_ujSEpgR+w{7t_m&vi^F@4xb&QAO9u1{9s3j4ZU`x
zKI9KOQGt}Cw89ETFDe5#Q@YEN_(4PT7jKSSLfAtYHE60SC^PPqxPiCFFM)yQN`^;+
zQlDKK7Z`5rNS&_^X8<yMcHE;Q7?N`KwG{WDYLFS(o@QSw2-UPvdFYUeIDdcp)_AGN
zgynGFKjZozXh*!h8mWqtb8XxegTe!WIv?eIKE6C|^AI~yScmb>yzjKfUFoqS6Md}#
z=FPY=Zj$>*R&dOW@YGF}anBxLpDMH7{zhr*r21bQcl$_2r5bv(ubt8|N*!~C=a1v`
z67Y6BaX?aaY3a)&&ur04z~hzqaRVpC3oyn}YMp}(;9|)k@1Bxbaa8S=U$TN8@=)8(
zM=YNbcio-wi|LwK5eia9xS1RQHFa(LomugV)2Q`@2oB906KWho(@uO{=&BhixG?_K
zzv{&VT2OQgyJ@D>xD;LU@8xFZMZ6dL0}Qd}hpbkK?jt6Iiy`Dn&}UfeVq(C(t%4M2
zZn)A(_D@nTRK$Psjb4n(HKCazLFCYnnN4Rn3G+i^B_DH#nH$iH5j$`b@hOOJp7G*k
zCR_C$XV0&{WQOnX$n#vc%!bP{71vk1qrO>Y?mfKED}>v0zY_fkZ0YXt3De>8Y)9_F
zSabWgrt)CDID;OKJ}{i{7cgeOY-i{VY=l4s+VX{FDI8Sk#Md6a&D=$e6E>LLZdZdZ
zLh4ZbxyhV0met_$lRio;Q$2f}^Y7;<heDDH_ot0gP}|-(u=bS|@vi`eUNDD*!!T$1
zqV_hT6I)w|v_Wy_o#VHd!_J6V5!HM!?gnl%|8!T>>lIo<g<t72Te@<#nAX_YFdX3g
zk^S}Tn@k)IA~G%)U^A&mAyo%FrMP}bB1+-9HBp_s-6Wo^1uIBkkeU@_ZLr^TO0uc>
z$H(u#(?X3-W3?eVxm7o|%g(5ro}%{JZDuCfofT5L3&zQ~*jJr@nuo^#K-ec3O$rj>
zO}MPl(3a*qoBzX+;l+XN*U;02>fv=nCV=dTs_kGia6j;qh%o7Kz*UaCbM*^mNh<Hq
zVm;6hV7i%>Zt&trFw5%yn6}-P3b@Sn*^^bzR+)X?g3R!~w9~4Y?IcnZ27CSPGUvK#
zi!qTOxIs%NlO+5@?-g@;krns)x~hK3yt|*Vd$dSGYD_{p@KnE??i}+f;7n7KW&=$M
z>aY=RKWKOHtQkKZ<e~0zgS7Y)OcoqTRmXp1KA7r>#bl6Esttzmxz9_qEBnZ-<Ru&)
zsLc&riqMTFMV&s;`TSr<@VQVb(brkn<FX=w;S{IyhZsyJSyvD=jPHCR*AKe8^^=kk
z#qLxWJ#T#1v$9^>7vS^jju*@Y158Z8EPx&^2gN&+f>Mx4s;f|)L9UgWmzt@c+mq=b
zS=lJkCA?A4uoSLK1$JRvprL$c?aA@k1LFH46e89|s68@IG=j{9@f%^D(J;c{w7S$G
zly5N@7hAm~nO4tqQD|&2zkTId4Dn=BTg+uR)Nz2>-Dt-C7p8{N+FV~pk4dQomgv@k
za)vv!>JUKn+H`_iu+*$((|g!iN@Qm-62Y>K1odQR{CByQ8c^Zuxl9*4N(Lovc-uS`
zXR){!5YxMXC_yk$?__qrv!`=Ri<~2iuK;E0eeGZkM=Z|qQ=c;zKWITu0dph+Y9!8i
z;p2Cl>U{mM<r}!|pypsBC6PEVx#&tyi_bhLULYmSU_!y!b(RQI5jN_n3}?{meesY2
zXD;8}6RvTm7$$TMt+36a2EHtevR{4X``w<tGK~d>Wm*(#7lg;97yb}$XThF)^%(Dn
zNH`bwo_~w~Y<Vvc8JP&KpJyX?c^KGmO;u)2zs&A3B0DTaQ3t`@N#75os=B|$ujB(g
z2-`@J;ZP%Y+KBrejO|`D@%d7qFF(o2*r6BqnGqosp0O|HB}Fg~wr2H>W_%Ks?SSR<
zDOTG~alU`4&q-k5{U0X*w+d5z_Yx(nAGoGQUhB<8$z6|d(O8a*dLCxHv8PIxfNAE4
zUH^maWJVT1z*+^xLmU0GrMx`ck0{A0=KJ&65$afTeVeVqC2Wjh>&>Rzcf#V{uYe^N
zOfluW(&raS_PLW0f8fQyM>`~LgEkjx$sF_Na1*U!B$D&oEzqN$r_C6~O!)ae`UHx8
zSfA+qaqc^sE6uG9dstRV_ksyel^Xh3xkwigl(m;RpWVnSu|I%Qkssv#yde;5LsC<Z
z2yd%e?lrG8A(CRYh#&|rnelSl34u&5b`QbfYrfyC`V$0>eud^GQLjWni%*27!Z`5y
zsZkyx+22ZJk_?#b&WWRzUvG7-Vt+O5AVpYMkx5Z9PVu#x_<z^iElB}8>M2uZzJ>i-
zos?waMW{mToF9=iuBewNLU{GF9p<A?oW4pN>kb2*^C)lgHIdYsEQR3`)rh3{4*_|f
zbAm1Oyb`Mt5>*xc34b$ctCZ$*wffAJX6Ef91x%#WBGCE(u-7pGsmL+Ko*$rfe<+?z
z!A@@J+iSVeC@JNGPn~0K+%dE`-)63H!+=g#UV@pjqR_NmG^{vFoF3IxZA~gS3kJHd
z)C|6GSn*W+DzlJkbh+|oafv_0JpI|w;;G`&pEaF;Jd&kz#u8&%Khdn%Ftm6|I_{o!
ziLK>vG^Ih)%#Z&WT3jqC2Kbqq>jL~=<t3`FGE>wxtT@jW$M84K61~owM`Ncl)52%-
zQgP-}6t_-RS(2BbuKU~^mSM-U1I?{Lf4j;p;KJuqbMPs{igSq2wdG55veVVoE#{Z2
zh836CAUe_p8`Zc{T$a0LnY;fntaz-fgpySZd-G}9U1v7QG6)0{%N<*a|75c{6F`(*
z=b9rQvA>ej??NnR0@AVC>|!cj!i69o$SKZLp=oC0&33Rn&_sh$;4&dqRi0~Zm}5t2
zs0KS_l4hA(ojBdxawn^lyC9od*PwFBlGT^v%<dLDTuGuf*g+BiKcuN+3oX2OzT8(m
zi@UNqRag$nFBxx6Z5&pdO;n!W*CJWpC6(awFXiT<hGE5p8LE=QvuB+LVjf;$(k=jA
zRMZUxr_&%sRpumRsba6GY__n;nm#?$+Ttl9MnYg*nVYKKo@%z$*dK8hwGwH~(dGjj
z&}l)d9Y=MnjeaLZ-dX4erKD(cwSA?y5H2;m-kj&N!^DqNx63@4YHPjuk)>vH%|w>D
zWL>C&(lmAIR5RyXJ3Wx_%cE2=pKhvV4=bJ|)j@1|0XfFJ0>lCJG{zh_thf@NLR%w+
zq;ThtEd-0HP*VKW(Bew2=6$Vo^o9rd3NX9KE%$Z~Ev^8~2qq3Aa$W&cLh9CV#Wx5|
zCEr?dSnGI2Zts+H-Oi!Ce@Ipx%BkAkXPf}FhjyC4I(`t>lN23mWl5>(y?)M?4!a_f
zTB-40SBurjnlhzM#5UG6DN&V6VV0^8B|VzkWgp2>!s+!N!f(M5r2vfVoapCk{xq9@
z8(N$T^+Klv`m5{$pn7qFS#;bm8P4|09i>IQ-0}={Z@T#yNb$oIe{0VVF!9sPAxH8<
zs>+psT=#{NM78riGq7-2@kG3JEv>Uc)OeQkOqES#i`*u&<b+|xQz(n#pVb6Xs`9bI
zOs_I~jo^)BRT(1ogS^p(CRuM~MUq;7k!f>4a5mZ23Us04JofkOHRjS(5R-EX&B73A
z@l0s+RLcD>ZPPjaqAZSvdfF5B1*!222dafQWYP(fEtSRP4J$5%siIrTXifzR##ur0
z$Z2*M*Kn()qzcZSRi|g!X|l-EYPO4*Ag<x#YRz7`E+)3)8nizYl*$iho49f&vb+P2
zO=XA-E-G4c-%X+aR^=_>(yZL<KL$!Css-^vx{-V@zX%&^z&YmhB({tpH%s!E;XE*>
zS0<UZlk6&J`b>e)W_H4*kDh9d=2PsE5EmGOyG0y3FPvp+GlvzkTYjhx)YQOtfptQe
z*&n73v!@9~HE}l0!t9geqeWeoQ4`0A$Eq|mtG$I+FbK{rHFs>|m6)060atE9TZak|
zy{&E4LjBnkxcs@vJju2Y8pZxllk5rUkgP~rxb<o~Ttq7XDoPMV0?p-=C#z2j%)b`6
zKedBjA|T3H|Lz=f^L=)>%-7IjDUtCc^=XlLXQ3UR*ybly6BUit1*%xs)xRg0wmJ4U
zVj{@ll5UgyfLmjnIUNqns`91CyWBgw>pHl^9Ph4+q$8QgL!KZ^5kZ%#E+22Yt^mVv
zj5mj7k>sjM@+qHmoe|_IU@oj|iI}TaMR_oSOU-!&U@<0|#oipD(ZAhgj{S3Jae-tn
zf!R$Vd}2i@>an}cZT*H7PY`xX7jb5;^rorm%gocq?vV~M)UZoUmWI8FFcx`cXDat{
zMcK8&1jm9dat;)5Vbda$TK#x)%e?^d#&^usIgkn(6@mUDX>$q^)ibx59s59v5~GH2
zXz*2sYE@AYOJ;xPe=@YVNQ#QL3;n7IMIg?U2hF1%K7)T(K4YoZi@ZpfZ^t3kd~T71
zIprhX58PqOk^8w)K^yK9W|-v@Y3yuF==-6tcU2l}ZxA|DrF`rAW6X?I_66F(`rAF_
z&D`_1tMZ8;&v7T4bAKFK4AJoEdcWPCgbFKfInBs!G7lTOJt70>^wQ#<h_{e6A9<&F
z$Nfz-8>=(qRHmvEZZaF;T#zRhbyk3QOZd#8rDiQVEKXJhf!eyrlCv_^t@-9EU^O0B
zXce3}jB!&YfN>wZXo~9WPY5m_N$t5s8B*j`NRQ_$(O*c4n=%1wX6YLyV-f^U)jsr~
z2s>gH?2JVwF0`kgQq`ixCckM|agneI`rXudyyyzTOq3Tky7NM_dVpnvM2~Q(QKxdU
z*!Mo~n+p#@y1|0mn^j>}h8p>+Ir6ok!Y^e>qzY0ak!QK;obisy`57sagd}XJp+;nj
z%FRzw>ED=1KiL<k93!7A5+x6Rji`jec8Pi9tQk#FCoeXe;2n(S)!Gg!tui$Uif@{Z
z^+SutOD8bSIZQz~Z8-p^400qBjGN55S)$RX(h0a}>XXb~u;8)Md0y(zLBo`cEX!xM
z(c?@xa%HSk_qX3J$VybFRG9r{Sn=Sk6T0<QvYvY;nva4&1*KC$n_Z<dJ5ePznpG&S
z&?-G|M0W@iyBz*Cm1Z)E6q;5p227Z&L83G@@?P`gC^)P*(AxzP6F}Ez9xyi}mcSLe
zH4nA*(N^Wxa$$EDoo>&CpQrdGlSpL?JQki|`~%@9vV))qcplH2%qOlr)hyeH*2{w1
znw#4_beJYGgPEukc&0hNzZJi5S?TN{a@K?Rl$UeMdE(^L%%LLzCfM25Je?*$jc9tQ
zDo|pstw%WFW=4x-FuN>C4KFq~qR;UxLWfI6S0omeXR6za&DlH-hs=e)SQRWci#*O!
zb2%)K;YzEE3PXoCrl}_i&0J<GlpcW9aDS;CA$+*po1xS)GcunwOBtj<g9tDfRi-ei
z&NKcOqe3;kVY&GgMzx12sXO$Jsf5XmkFdXXlzez!;WuXU>F{C+{G3i(tGW=^ajK{U
zIni;aX};Y4L=Au0e`y}ym~fp{iwh;79zaHDxfC%x?Fw^cz+z1$Nd@>ac!Q(7{xb90
z#eA6}3;tPjFF*#MT6}qvnE^3lK0wTXmlO7Kjo9fm{f@9oXo0WQWkgv;v>H0wya*A;
zO3=h^S&Sn)P%YGfhMR@7N;%7nUIE>Rts{NS+*8WV<-7RHJg8|L81?}Yt{G)bmFKeG
zul_K54+px|TJyKKD*w1rRJ#*f&1X;dS}PYA2bY>34zyelg*l?wWoI$fV|gYHwi&ZI
zXn&%)nZ3n~qJWGqGI=o5m|?JTn%9(o>rl;vAo-*XmTDe<zzl_yATr8v;u>pEP*{p`
z?lJAiJ>)DP_R#Ms*uoDG%=hz*??jFSmMNNFHoSHB0`u!IK4(LqT~i@Dmt%VU31dX>
zAoR&U%T>iH$1;AzBj&s`=8n};Gt`w2nz3GvMB?t?5r`T<pQg^5YEE2<S(+&qOI-28
z(R0RPiTq`XxlPPfX~pX&!mzGg#*@^UQ%vcv=tgooECf=^FnDlyrFjtUS&YmT&L`@I
z*Gm|Exw-w8Va4({VhW^`C>n&yF6X)iFYZlahl-6@8K|mvttKyL@nnVh^?Gyyv6G?s
zS=8I9Zs8Sh;q~Qa)9pix%M-hQqQC)AD(AxJj1@-zeP}TxkMbR6f&4)7^(*GNtB1;b
zInuADS*C(7ykl->DzDIy+e$XO9M{sTpP0cd_F+_fe&ALcbD<nz_QZQ;uX}ibRL&57
z32w*OA{(Ko&U>bM7ON6r-Rzt0Lj}t&C+F_tRVJar-5>%5jPPJPvfMoM+<wzc0A`XU
zSvzzk7G2Uye)U!No1d~FVM!SDv+E+(_xls(xKr&pOT{>NxJzXP9Pnumo9C0Q6fFqN
z63aGMycMaB89$T?i$Dtp6N5pImolvI2$EoLHMgA4Z^Uah)2Jf=br*rs{`;-nfKdr=
zL+ZA)s{BdfW<1?IIT@U>(Ui4RZQ!u+i=u*y_`}B`LQxQdDjP3MFkhe@^XwF;)K~2(
zZkGU4c_T@+Og8`EjdDVCi4;Nw&xKdw;=gCVVZ{|#U~N_Pl>f}i=C*(&|Fio+@SF@`
z_1r_EV&t;)ZE;TMXviHN(H020gpfZeMg5p>M)>S_CA<*6EbKRbQnDzsE5$zUBUzJG
z$~f~enkzqLkr|FgL|>cyNoY5y&COH7lOYsq1q_Mmgd)?=H>?(FDVEv-xbCF&YNDEX
z*2ul*9OJqu1hwQCnTEPd#b(~rUei$Hy3o{5x4=gUsH%s13zIIR)!bty50MA4XCdw^
z4VIQ6RTh}nFtmY`mynA_bVqEU+#;5-WrcYZ8lRY|ri3`cDHHJgrvJy>&z^WXw@nO6
zc`{WUveG;Tiu625ZMbL5A4OJKqpmJ^DWz;=CAmd_cBzR+yueg?AzPAK_mKH}BCHIw
z@=?XpS^+Q|b?&2P9tsR<G7{E@V1$!(E6Guq3~M^|33E<5UzV!9IPhHG4bnxuah(|<
zOG38djB)2K5!c7@bIh#>R&jkq8JvhU+(rt_M2bZWT5CzJsWLlVn-McZG)~J`uwA+S
zsWfW~;m;CWf<h@sQUto4S#4GVN=%d-*5sGWGURC<p!@7{^VQjG%<^KM@6p0B$Wx>t
z#wcFIDndtZM1dy;K>TC8oT(;VXx<Q$iI8bOsXW$IP{d-#UuMn{MFA~p7O)DC)Pci=
z`Ox+*H<i#i^9k9aLWyoIHr~5eS`D$607z9SPnedIkrmh{*lJWN@Q9j?HCZq@P5tzU
z6(muPhmulEqm)XMCq_^T4YqJEVF;(GKPH({RO<1Pr$QKx>ru@10_3yG%m4%?GN7!E
z3q-MwiEEv7mPz{sP7B1Ke&OAeizi4DZkwTQ{m|^XEt;>^VCwS|H|pb8n!_&OJ-7y;
zLOys*b~&;?u-shu510vZpxJ+cAZ}3+;C=T7Gk7=tr)VoHO^x1e#vrX?txG0ZHP4LQ
z7j)q1<`8V&1w=U};^Z6?xC9m^rcZEIySOCU`2x)C$UDpvYf$2)`4T(~dG48M9!G;J
z1=|R9z}hN837BAhILqpTBC5%n;iypvu_KoK#r$U;elW2QiO3;R6za^+R3lcI)z4Y`
z0zIt0s*Re~SXZt5mZrw6GS7V8d;N%`<@cDtUY2;XrSVgfCku{fMGRDoJ-EV*;i$(F
zzu*r=G?xOLp7TQH_XEIQ`t5|h46ag&0gFH4A(Mgf0Rm6Le!4)^KMY7<`{CcrDNqUI
zmd7!8iu@3?;5?r3znUk;@r%pZF?WzC#3essQcx7ZTAZQ{erqCo(FGRIF;^k37#HQ5
z>0Qe8f+P>!X5K`#<)<RoQ);yw5SoPZ^uL=E_^mVvP67hC%3dX|(8{|_?V(^av6yx@
z9&ej9{BjED-*MmVW*<-&n@hk7wil7fZh2)9j`^k+Oy%MBn9;sG?oqqP%zKO0V%^hr
zl0Fu*#AKQRJJ{=Qmbs#G7PK`spfZTj3T(_0(}8`}!!Xm5RPY7U5BAhE226f?%1oSK
z)v}zR&ss@nWhv^)$IZ9|mw|>FMIIF7QloHz*}z~lE_3D=?lK#|WjwOfnYONMJeis5
z?ERf5z6S9@SbXRH=Bnnlzy(UypZKTw$F~Skg3S>&XeNzFOePwV=uF2n!!?jKJ=Bi+
zk(G@`cGwu_*8S}$fgI9jv{}Ye)$1oX;=V<p_WFZX11M*S6k+}a5yU7lS@`wDutAhi
z9e5XD?d|JLS10Z^19w?>tF`#?ZFRei#dCo>*`k)a1=kNt8O2rjVW)}%rm=NQ`<SL#
z_?Jpk)JIcIIV*wzl@O#RcMI8G)b%q;O(onX#w(bjd}Zc?Bs3@Nkbo%h*8iW4)AHCh
zvjcs&_YX<xq1k3DI<>3GVzY`JDx3_pe~LL5a~)4_u4uR}o5sXc=cbrsbPep*Y;p8K
zz8-={0ip2syvfjbqB(H$(Bg3vd<zOgz`K*C9u1oH)A|alBz2L`3`VQqX;git@D%zv
zrWW1;V+IDy9sD>RJ6wDe;?OQBf$bmLXx<)=ypn#k&Gll?TE}&YEKYpNC~Ku{az$aS
z(6R#fHAeVhRaPjvHoD~au(*5#`-M}iJix#eg_DA1dDu-KPc}^<yI_(i!v<7=T!bNA
zQxSbp+Pnxqd&PwUd}FzJ@m4+~R{gAc>*Vlysk~od3c24wL4%>#t1P*i;tqzYCgUwp
z_5CSXEgEm8!dtMn$A+jx=k61~XQp~O+q5sRzo6KOqeoa5n%mCD?ML#OTIj1+C{Io)
zGS38oFZT%TjbitL{z%QtzuHCSfl}7joKwtF&ZshHU&aJsLuD35CD&hwMsCIST5Nw1
z`5TrX{F0<*)|#vSWq(1K%L3(vG<8s;S^cd20vw=<;RuYly-HJ8o@<6a;Qkt-j37=o
ze4aTI&{ur+8Vq(vvt*gf-tin-Z;yh@H>i~c&h-qZtA2InG}Lu)!&TMXTY?hccu>&1
zQx0~xX<=wB)~(2W+NJ5{H+Yqx4X#&<GDI+@njep|C?j>2r0BKEE=dzd%7M+UhRmfE
zOF?Z$Y~-58O8c-SVRC)K_hV&pZGxBjj+ri)5dC7+fIIad6fjAa3xx+3S|!UHYPFbQ
zb+6SGrW{<x?4TBcrGO&pMzq7;)L2xM5&tsJ?QMTXqi95B<FtjTXFPA>FsXShtJ{5;
z4I_k~K6RKC1^?p$WMbcol~i@*g=X{!SBeQimm>9CqkGg{W<Jn?ti5EIw0g2yd`&E%
z2)$y*TyqgtFiI~6fRvE)svK+8EAi~~GP1#ys(Vcw3f?$ty~-U?(C?Yl1j&~RV=l=9
zGxqz;e2YqseO4s;AI$=a&{LMpHAf+LtYb&u=_&Jpw){k5-hHM3^zQo;S*CZHQ+cZt
zrJPuE*2YX2a|3`5P%8>wG?$j4<~2NGPCf{lM&MBwP#AVe9<e)BUs&x@oV0DzXNf~~
z3Qqc2Pnh$)*zF>|<=O%TE<ru<smZ$q1rEtXKi*p3On{MHj(oi1HS^`ASk3f~!77%E
zV9a)Thg<9wW+2u#%A)Ir6_yaKDE7!yB6!w5XI6;Mi?|@`3$?^KWdgt8aFwfuSluzA
zI>u^)1de=rrx}ari<Y-25FzDk{@5x4v~ocqWA#NyKAc4&57C*6MB!?0X$#^RL4~=a
z*35hl9xrXFk+u+Oaf<r0#9Ri;EP&OJ)X5ZiIf)f&uX0n<Vp$bg5n|YcZ+q~4lTTY@
zhRlJ=Ani6fGly*wFPb9P<j~S7aBd7jM17#%ma(^mCDbWf%y;M6dSeCD<qyr2$}<vR
zJ9vv3Jl&3ayWsv*DW=ecO6xM~&h1^DjM7)p&qviQlMLvnnF_kZ29|y}nMBnM{nOma
zTo}G|uY!e;7@VN|Tg{6<50~<16#*&lnMB^8dU3nC`)vEwB7b!kePxo;3D9`5%Y0nP
z`vkPpz7kuVj7N!!eEAP!CX6_RDDNw`nv@dz9zvX&j$KsdBST!hyVE>(mVI-4yEWhB
zO^KA>W~xf<cr2h2rKMO8pmHf5&_!Z!dL}WmznlGQ_yjK5E~{j+4Zc7_h^IT*2HoCa
z<;}!$WD@(L<{sx<y~_^2AtJR_nn)8_cY^cG_Td5u%FW6sai0n5#~;n2;TAl$w+prK
z$w61Yt}}^;+b!jb=@yhOJINBidR2cXezN_+%bjPiOX6eb`lg=QW}fxh@d~$6y#!|Z
zH=A}2oiCQpSSzg%_-LB+dHiI(@xN)8lGiewl8iD8ZXNiG`Fa_{#2R;D`AG#0HD|pU
zArrH6+?=%E;ga&C-R6SV?dv&p;=Yyc0$67BbHI_I{?%zd0VsUc_H)G@HPhAvQFpE}
zzYDa)cZLhXt$AkyiK@4l{(>VUwLu&f<5`oG^-}69b47vusbp<SD=|n6v#iH|Fpp;2
z{g$kC5eVSiw8ISW*|mybqCN=qGF3)06#wLY&VapLC}Wn(LD3R|&JMqsx`XX-7SEHF
znM%H<`pa5FW2@fllo;W`o6SC86zAQIIa~!bD(ZwJsQ#xqpSWihwLPjGcaw%trtboQ
zD@ZtLjkz5p1Q?&e;o9r5nWQwFx@)_6Y@*$7A(w05UkVi_)U7|6smI%=C0BuJz?893
zV|SRrQ|({{(WG6x5A;{;Fy}xPLRsht>}mR10-5QxC$&^5x+f<|EdYv5;Bm~5xtHwk
z?B&9y2N~GTp}(5ir9gqJS7|v1$TH-k8H1d}fp-3IizAk3<CKrv$LXrFuoM|D6+o*M
zL1GEYf!sc_;EY)jr2Y6NlRnMPRTu&Q@OoGV_*JsoT<NkO3ug8pn43&agL-!_=VkX5
z3@vg1<txcjw1;Sp<zww!-A7|<9aFFkRd%QOHyi?#Wa}j5N%J+brd9u6&5-3RjYb4M
zx)CeeFtq+8XMC3(^tN`*6pK=25<#gdMmaZawE(FI*ablf399u-=c=`K)LY*rHwqR|
z$f^Smc9ssX;4UEEz~Wqn6i*v<uv4MzxVN5rD*D7Q%bQ0#(?7GbP)c1qxUE1Nzxfe|
zI@Jf*hx2OJa9kkB(FZyy`@8en22FKcGkBKuoqv#Xy8J+1ZdaJY3pS74Viv<y*?U=g
zi#V~Q!#u7k&l>ZopeybPD~~cMaG~DuIJ4co7f_ER#Ku|Nx5Jz#H`~P(b=AUkWNF>|
z10|&063kk#ul;vJ=c3-E1AcUi2fUKL<~kfa)Cx&ZXAE#2*w;Rv-Q3mKB732x1W7qt
zO|@VE-U8cSixRcOpnDwi3hR(ETH<B|(lp&mP`O<u(WL_vcD9!+C3|M?G#^*knX}|s
zD-(G3$z5j46g%9FCRlKEA<Q73qKEg7Un`|{n_zBG6|fz;%e*|^0x_@FGNCjPBp+`w
zw|r+8R6rXQzfc<WLkLXY%lTUPuGH9VuIUO|UW%vt^PkNfE^X6wy9M5qlEKx5v)ts4
zvrmr`gqCeFo}?cBz)X;DN=jCJOMMpsl<-7Yjr#f{Q+>MK1oI1fO``Uc+Pu{yxZ*R*
z-j24obyz9EsHSW-X)fuPku69X2GD2ytp_+a^$*WeO^0$=pqwMWZ2807<cgCpm5cb{
zTpsM_Jm-!_@i>@B&-tQlwKM_IwICJH;MiW-+cBsZEJIu^{xNku!WfJx+-iop{N4VF
zW$eRwLd^n5`VZ3uNedWfq6T(J&^t@}-Q4aHdbY2&WhUQ2dw?@EZ!`Jl*r&_e*aqR+
z32Ni-=2(`?4Ea)%*n&0<O891@xezAFIHb(i=m(|ZHe%{nU_h7C?HV}B{kNG5+=GvZ
zXA$M2e>MlYaw8vyoE4y{8N?nF*1F%(%*(AEDju>~>V-yxIiu2AvD%gWg5~>tW9A$c
z`#4Jq%YGi8B$#XECnXh-R-LADuzkFoRu--lBTiVI@RRu+BI4C-+j>ia<yF7m%pryL
zVT!VGu;Eoo<&{P2Om;u}(;MO0(;2<~N7E0+&S&$b{55<vm2Q73_h<9bPAkpjV$o$E
zQdMiqYV(+U6e-Uw26`P0TnK|&Wm1ONQE}AyEvnhHg87~1KS$ah%G#>KxJ+pi`dEH$
z?&b}|47s47e!BGkoj<@i%w>mEe5`jB7xdBu<s0A(`^Dvxcq4=$VB=I**xz|)l{*}g
zwF~RAsVN@}bUt{?{vh>lz(|^NAbXW_%a?YvFd#&mmPr`)u71ubAJ~n0yCe?I9+S<o
z8TFZ&y2bvI<(p2Nh>t>cg7WoWn~^`-aj7bbL;+{-_{n_mo*gU17a$8{*$L{iUrn~?
zL{dvM2s83{#mNii(#}v_zQH_MZef!xin}bH5b8wr@z-Y5N;_9YXohGf=m%)8Ys~8~
z9ROb*s%f<}PPgC$b;$ST>d)<Xn6p)pKMR)8oM59#`@?Q`d>coL_!B?~&Y!o{T=S=W
zC*O*qWV|((>@;&$yRamV5N@9?#osRJ=REm?9W8H`L`qI7gCrxh@lSK^ZaeO64Yffv
z>4JQEtNGBC7?h~)24;pRsuT8c_TOP&m>~C$%)$zv*~|F?j1*m?tHmBG3@};kzr$?b
z=q?3aNFYExB&OJ9`iqd_S_yE8I{{559dFFr+f4HB_J_|}TBpNo7$&*!yuF-qcmHKH
zViJfK?B_h=j$}i;t;k@2L5HX*@4Mip7ohAg4GmpY|6+dbU{dUPDlgfOQDQAg-8ITN
z4JDXWV3!CJPG@oIjFC>kCw7z*mV!heMS|LJl=FA=ZRS9IgOOzlkKN#L4ik_{Ne+}~
zQI}+Q1CMpqykmz8B$U`1QY678sB=$pJ{4S+;1hzC<$kHrW%1J2SZ^~UQNQ@L+=rt;
zmQTkWI^S(JGx|zoS=95J&6{CWs@o(K4fL$d<}w&5Gv$*}9G)rW`EjnGPQ$(P{3i1f
z@>CF8)NPz&D6Bjj{Mo#d<c^1$;oQhq_4i-Q1E<)r{4OiDQfQc}mToXB#@Nw<HSQ?r
ztSUN9{3JU%wvEtemwQP@q<Zj2Gl^MP9$$pV$WA3qR*bRZT-nqu+K~>3WWlg`dpR8u
z?!HzcdJ#@YG&Op+S?!ACv1>$)5erpv6cl}pu1d2Dpl501`|vn*-Bz<I!TykCNlCs>
zwM{|;{xoBe%1kN>k^KbYI4!oDi^ALHqCY$iuROQQoaK&7a5!v;{1uvWZ#5gww6m1?
z3E#4_15tJ47PIR#OCn{$o>T^T#_F0woRBEvwmm~5d<hGdq}jurlRS1*m@sOiAm;AF
zoHw>v?8(P14Cg@7qk^g5yGXsU508`7claqtbK?Hawy!KHOb9Dlv{y}1)!&%24`Xep
z(OvYtfLSMStn>ab@f(=ghARPAwA=)B-$Bkom!gZ;$R5-}<!m~F@1W7mh-hy}3@9eS
zxmli+AHue^O+^0vROe(dq6r`-i%6J4Ll=vo))p_d?dKc>?((;SF42lm8r8zzOg;z0
zIwBgTFu!m2cZTn0pCkZ`h>3_ECAR+LPtBdh_6;mmC=kt-V%zGLL!I|ro)(!%ra!vB
za|9DHeL>d@7aucX$3^>u1Cp%**BIbjCv$+Ms9Qp&;?4lC7Hl;)xK!7TrB(rjXpm!D
zj3333w~E&UyF{;pV<v7h_qis2#oA`q;+Ip-+HPv5x*M}1#g!%ZZZIQVji=n#gdWx?
zev}lXo{Im@oFEE8w-HLHbi+^PK_m~~D-bt>t0gn{Z@bMaVV?_dx4cQx+ST@7%zHWZ
z`Dpb|RugeGa3DU*4O2uj@&07yqCIi8B^<3^3^D*jG8ioX1ZT3y0YV|s{E-CqEgVJ(
z>YNnk7WXIQt?kT{N%kE%`_9}=_Kl)0tVOJDF$l+HI7@`*!=90ASdf{5?HQ*zE5xo~
zcCkf;J!fXXY<y=pAG_lPp*E}=kl@_mP7^XvCRi(r6C!*o%^By~M&)aoTX+?kSeD_0
zFq7rEdN`dJ{p@gCp7SJn4Wk8w$%$WH9%tHRXF5CB1hgVmTZ9CtXv-$nnl(siARYxl
zO2Q^~8%ScfyN;b`*9b3AFx=Ym*ko$iPLqjFEe99kCJCGaKy!B(`Ubg!&5hO?kwY7_
zpL2(67nDf@AQ3c4GRJ~l<_0JqgpiE>uwDwF$tvAqYL2zPWVJM|rHYlnseXsKI>Qd)
z-^1QZp=g*Ivd!G@a!J~6g)J08hig8>am~YMhY$-Ib}Gq9hjf|^hu9g4VIQEkRCpHw
zb&Wf3IrJ?KEqe2!0&X(>K{Zx4z8&lUev;v)?%iyrrP^UHELOOJtc0h&+-l;|?GHu%
z8F)7(rCF71GW)nVFNRWEO@j|vf-r)re)-XOv)zf%P^@1GFNxZ+#!Sp~hlxhxS<G{F
z(wAnWOAduJUXX4-{E!CAAKz)7hcx+8G4pS+YX|#&-C*8<hxa<<bi$g#?p9tv+of1C
z(~whg)sN;FmkbN31%u9Ibx#`Dp~i1F2Ujr_T834mP=Q2i{`x3qxa$N!%>=_?{OswI
zfzCof#^{InRL{di+`GP%3|s&dmvQvaUXSz1p2zd1OK-v&d=Y{blMisNKH5Hxd}~Ck
z#L61XYyh)HwAYMGwAaofo%ILU$Ftg8l`azi%sIk&=%8NT<g|OfSxD1Sf_F1S=8ZVe
z+2V>fGIWqlNEW;p2RH>nhwx!sIrdTTV&y^3wXRNBj$$2V&!hpXy#1W(+{eT0+4{U<
z*fWjW#J@zb!zA^=4pR+bfw<!dC}l&azwAAIn`w4c{fHBr<rQr+@4Jpp3Z=u}(Jbke
zx5-@ds-^oVZ(3@%Hw{mdRB*ro&y>|2e3J8$%X~`2gvb=DeDHD3+rPmgIK{5&`n5Ep
z6_5&nUq8^fex3cLd<H&Y205;m206=qwS$EW!o(q!3^DrG9qfF-ntNd(S@aPs6z&mu
zgIeYyOHHwC9>VFSX4%uhADZuTEy%s_i57GOl6jv$z?tx=-6+fS(~c9Ph2=DUV@~|u
zel@=thb_zoqXMgCU&pv=Xo>5q6pi-Jug!UHGA}}s>K=Y^fr^OSwc7kwhUJ7^(oYwS
ztm`mmE~<4mPe~Q4wTGufF`B~Nroh#ey!E!>kj<ujS2+c*SwM->FMd52uwc(shdKAS
zDoh!}VMaz{Z;L(!i|uww0yEcuBk=q&%30*PC!=_H3<u^urwdMtYcx~5VpEQFeiV}m
zR~za-W5D#-c;_cMO9ThH2Vg}SLBb11I!%JE+$e;N4X7qjEga!&6{r%fLggP$I8#)Q
z{NtU&l?7CV*mN>(Etv^NIS*pV@HBM}IWF<3{=?&>y=%uJXY1i2N`7Q9S9+XQu{p56
zD3lZc=>>sKI@<YWi5;yV#utN{PsR;&etW@=O$yeyCbEDe@nC174D&@B_h9G1oKZJ;
zoKxKAv)9&>rp=ucn367*;I_k^mt^`_Q79koxs-|quuON^A7+Z*VrZ=Pl$e2{9d_R_
zL8+h~R)-`hk6&$07vC@RD&~S!wA10;H-2fZbbUbZZt2L5HFL|?=0x{da9YHcTwuMq
z!gx|#st`Y%l=u;tO<HCCIL;1pWsO6aQBZozhh}zIN=j)fSMj4-DVNTlnoC`wipaK&
z%)kRxztSA;iY==ld9s48_9W!~?@vv;2vG<#M4X8zF*pVj)teui0@s^e<SJC^yf4iI
z;z&Zb!yXneBUtc9_3JeMb@!7WY-<n?S|ab?+i4b^5&N{dcCEP_5@&{7Df}txMytl$
zIe&v0<8H`Xzcz>)Qf?&J=<GG7)-{7Fz!#}`u725RR-Wpv*EiD|(Da{AQe7L&r=@l{
zd&XLlxLgpXVFBH=-ZY?p%h8DX>G7h~wOCOMD^Yi%&%34>u7zg52V-9xDk3xa*xNsv
z1lI!Ks07^*$jR!lHReN6iiwby?(m#SsyKX}UvK`2@gc)xTS&YhMn6go*DdQz4T6+k
zx;=J4zQ+Y8?I<XACa_P<Kz_aQy?GEJ82vo6^gQqSj(~KkbOKuNtN8*4YxL6~RL|37
z;!yjqO>U!@d)<1o$o0l#2gSk1JpeZ^{DvFu$8~0uyG~e$ydVJ2U1u)F$YA>H5E?1!
z1bi|<t=ecR_Of3ci!;^UGz!P5r65zU#V|+DVqD4{gSBftYfL6K-wofG#}19%0&KD8
zt+CBrc0Gca$F4CSyWYP7vSY&cZ>i$rzWzJ26IFwia#8966Z0eW2U8P9+n5{cM5$QN
z<BTt)9T2<oMB7)mdj8dy2g~mF$UJDVo)Yy-Z|0GZ68Rjsh-L;6LI9}MV#FNsyZI39
zj9*}bC>%nDQsDRIPBZr;JDwf#hhN}_B-Qkzx%Onc**wvGaib=wi+?fNH3uSi7L9#)
zZqe?nt0yIssf$;c6)sn(SSwwyU9~s^1aDnw26I^er!KFPTjVbMbK=n&Fw!|_k>$(d
z!_Eq8^_#;Tz0>mLa!%EvTBdaAxjx>>7s(+Z(iBCLds1r*nc>cl@;qLo0AdgaK6C%Q
zpYzPwBZ7Pr7cgNVl#n68e{OC3!`}=K0+v$l&M2cq7gnOo{qfi5kC0I&rm8YdA&SP+
za{zb#jCdNi$uy+_8V^eScf9=EM795^X$c)nOhv~f^w*~{ZH&O9Lv--J3=_ylW|Y6W
zjk^KqO;kZp1XVD7igMhn?vdN{S04|T$CMh~qR;(uc#vuq_~cj;$_^QN?eY6G+Ubh|
z1Y*se9l%19;!Wf7^~tY{2oid))Ue<6-1~WmA`TMggxy4msLRfY|NU;eMMeHr{P}E*
zTcT_jB-QiL!(m~m`TE3Pd5^G6wd9icQODc8vrr;bi2)RU1x4dC)aT9d2ek0IghjVd
zzMVq8uy|f;eN6kFu&bluGQ}wb?NB_3D6UP>{oddg>aMr6qC(4UDleS+Fa6o5k&?$J
zA>uZ`ynrx867VF_l!6dmpWrT;9b`=tdqTaCzf3dty==2=Y_e*Vk5EbSYzQDOGZzxg
z8dG$Fmf4l&A;OAD%E`8o&xit^PF7pIW^bY~D+mul$a@L{L5XYglOPGVrlIz`i)~H@
zPHalwk^zuQDoC930x`Hn$sC9c;**>uxXP>dn7fGe9WN2qfrb{SB)5dZG>h&v-w;AZ
z$`|Q~HR1T*WcAm(%r5c>VxK1G@P6|&aWZarF#$MkXp~$>fX;*(XQ+7(8*feT7m49~
zz!bOg8H@=I2~?yq2QjAmOf)AG8C60=61fK~l!QWZFC?gOQm^s^xKnnUL&-s*+CX+_
zv}DjrSZboG?dKL1kYSQ6!hwHdN!OjTx8whY7h-41P)n8b6gi<xM7A1?&JDgBONw1m
zKj#}l$}1#END^|UOCY2wB;1}Zebs-s@v?FfJ#n!#A=qiwlaES{gJj`)D%-0hPl*x_
zkk|23OuHLWigPGPJhqqcw|l(iAB3du;e`bCT!pFOHv-|^ST^Ft-2^IP;nUTeOjC8E
z8wVIk<jy7%GWj&K4lqhYspLF0keLeK_okUY2ux)vBH!Ko*=&Mwx24&PN)l`+Bq8Zh
zWap??k94*Z!N-wIA_bmEM?jk-Jx#AAS1kI`WOcz{XNm;&<7UBDZMV?b+}|0z$%UKP
zWlT#-=af{%xa8<d$pC2F=5pjq{tJ~gBmhuCdP9wLc&(A*mSB9QI<3OAkXT9<l7#C=
zXZ%x|Wt#aLvsFZ;6m&;nM-QTE9=XH(PI5M(ZbE;giraWL$RHf*#{4<WAueY9)C?fA
z0u`;&oJK%2F!Yj>DXmEfu|%}2&oHKuSTsZg*_te~a0=Kuz>#qOiHUZVqOp*GP=G>l
z+B`E5I1>ELEUm4C2ot*tf_$}_bxWoycWV-(M<EXG|8`NT51f*!^b#^zN|yV1hdYM-
zGe!nM9f30fPg0FZ#JS)QM*`sqc`NYYRj{G(*?jZJ3(Se5ZLlxlt;BtMy_r%SMPhl0
zs4cJayUDTCh)Gdz&9v287$+Xmrk9tLWvchDFq?^WWt6Ozni`8id7#_wOH9qJM1w*o
zZPK<Xk}wPBZ(C*~LWypa5KfjOFOh6TiK1egc0+Q5oH>DpHvAB5%Iq*J$jvK*$#v(C
z&|cO}ABjpdN>S-gn5mgI_BNZy+<Fh$MiPpjQ%tX>2hTGv+(4jvY!E$;)svk<k|iXF
zK4=k*V0rqsCpm8)Y$IgH606A?Y2qm%jAi-goN$_hD(v<oINXL*Qhy*x&021TPb54Q
zRB+=-xqd^gO4fgx`hApn`gyWWs4da#pGC4IIqUSZym}aHOaw%)bbqqsZZX;MphPOx
zP)iG0LsFoH(<d9?auBW;cLKDh{b}BT)sR3Z(X_OoY9+NUmt*%2a{99wq8M#>c(~?>
zSCYpDpJpD)<0JF~57}DV<0=p~3$mQEsLw(c3=!BUfyB8Z7>~Zsj2`Mr2;VF$mljY4
z${?pzvO3^O*#wu$afW%7BvI`l^qu+<HReXL<O&IY0jA=)Da%h&ca@qy%J#_Jl2oYD
zWRUe08}NxrblaV#YhO41k`gbn&}>Nej}o&FsXv64OW_wXdW5Y~oP#TdQnU3+04~m0
zo3&R~kfyHBGt)(s*}BJ4#K23?=%@2-;3-kF+1w5j?@7>XntI`Ln}tnwOC@)f;mG-1
z0^&co$(CE{l_ZDQe$?c-ncxyLfkMh|B>)wCq3Xt47IMsnV<9X;3pq%Vf*OuzL9%{Z
zdI|8S3;0_>mgoTQB(*KYj69KeWH%ffm5*v4pm^#SbHiX@Nz}hBKjKQNY&Lsaip}OL
zmgKQuppG82)T_Z?HPehCQ$?^doDPu#W$i!53?0BH`{a;Q9%`2PuF8@=y1os)Pgb{H
zVg^BC#4EdBm9%n{$*W9$9aFPQHw;#wNs4-g3bdH5NNnm<SaP-LMex)l_17t8Gj&*E
zli0Yqs4yOwq-0E3=crA9AZG$1o@J&Gx=xPJBq^&y95OM!lHg5xkgZCBQIBS7hkMdq
zsTd&KObUN^^T4K+6HFIcN~}(UQg_f@=8~*F87A=Xc5?ukCoxI2u!pn-CJm@b@dH8}
zY<fD$zmp-|8K;_Z(%n&3%F+BR9#A>#-&y80cH0ZN6IA@YW<x)CkVIEYE0qRSR?KRs
z4<?Ci=u)7R%#mAy&<1BD>2(}gj_ADMGb|=CkErm^Nohe9BzR0j7iIx!V3HcN*<7*&
z=|bW6X3$cUL&TY9lj(ewQR24!4ec#09!Z-k%|b(i?|dfdZ7D?P;Ns=Og)IKKO=j@B
zb{1R$L3G?8Oo!*w)x*2Y`HSrH)LD=!56qt~VQ0Sqf?n$+>iYA$&F!p{=zp3FA=GlI
z<uRem9LZJ@myjEUF-2A;sd;yrWuO6~Sn`S5X8}rA6pxr}a^Z}Gky9HUUSRXOK7PUc
zQ4cAQ(nE5x<?z`gICU&EHzyKUo+NjcFf($G%89(Z@eQ;32Dmiz<Zqk}B>k$q4Ahu0
z+*~}*=5&WM)X;$%P|I?PZDPl2GEQJB`8bRLj9--zCr$%nsR9NhQNJ5}1pK34Ny!WV
zDIf+5Dt)aS6}6#6EpHfWvPmtPg2KREemg}=z=(o7%mR|D5%4JZ7YNY3l}YOHiME6X
z=q`~yWW#{#8EPZAzGZ0dL@31Zdl#53NvL^Tw>CgHQeePanxZ!4nYn-<I;1_NScNN|
zMVB*3R%0J9&mY?dyGVW77wkH!H)Bpycg{EKIU;DjjFLti1@xXK3dhqh+Sr0PR45y5
zMiZY88_Xjc+~tp6P@27e4cT=Y4Kap7F9f0%#Jy%SSst+em?VWXHTX^Q>czd(2RK7m
zf9U-@k;CruvE&H<{m)&-M{+^0apcxKvw(3ja;$WfWGM=~h`M}RF}jGY0461TP+&6@
zdCHd!vA7~3apCmyOwoNrv)_ZXgtBYQ=SWM4fT~8WETiBOH8tkj)X`pLir87vJTnuG
zW+DRFDqg5qR+U02J?j&5)D@r;Wf|HmHkFp8t3MtxM`8Jq6i?|$SIr?Gh^9$7vIFr1
zbzh^WiqCiCTI1~FdRe$)vsck664(32X0s{_PeqKEI6B~uUvgn7Qi_X<P03y;?=p9C
zi_Rxls`YK)LdOyOshJ_sL<kbOaVF=}8wtYVrMEVjg%ZdD111C=dCmPEO4)i-_%a?g
zuCiO3yBNjGNL{>jW(TpQJWFhd+)TM1FkBhsYt5Nl9P>OLxh_vOFQnr{{nuyaPYE<Y
zr6mH;eV(8lVy};NHcCu!%<dA!zuDu)l3*Dd=P#bj+&|4r?)^T#y_kR%-*$5XJ|ob9
z3ZJxz<ZdWc9rUNU%k{8@qbt|Q9wfLj_YbpctX*j@XP8vtj(E~JBzwJVPw2O`=6C`%
z*qe2Z+rW2~@V<E}9OpCBKYfb?XrxF4-%Wp*^28CdK^)v^K9Y$jgsS=<X70HAnAz->
zTml~*+xPDm-)|ZNfS2Y*cz>zqfBVl`4Ps1~B?TLr!gbMUQSga5W*>fl^|jA#4{}OO
zSvny;W#*{a$QWBdU5df0l=IDL>7!@k*C{9aje7FUlFXzQ(g`5QFgkfFja6tc^YX*-
z8+~+xhueng$yB%9-*3O&9Ciqw!5byMV&?l`lxa^rRz{|_OUY?lGFv@;usPAoD7I03
z3zJO=m<h?F<tfUz!kpBB$C=0f%YY<FvIsgDDD}x}@s-!pYo5wdR2oBpRNRZLO>lCk
zU$~SkeVkhO1?dIwxPId0p)!g>g)0l;8{#L4*{gb3U-{pmIXH;8+~G3FKO^L!a~Vbh
zcW9k-lgl8kQf1$+>$bWR__$MM0^DH)SKzjMP9J%v{UwiH2tM?Am_2i+0*3ep^=S_d
z%>g|yTYPP_fskwNRCQFHro3ei2re!-PYx{xTKQ<uBN6>Swa`r=5i|F|<@&z2?Nelh
zN>f*Qec++vo9Df)$GmHQ5g$iLZYkv@VszC_EA{-9{DcC~<|BT?H$%iG9$;L+C6DQs
zcCgeG40CD2yQ$HBv<&DbW+viR?s!b^x7os?*hh13p?~>Y|NHgSA9;^bAkhl}bJW}V
zpUa~*5)4QqbUSNNkcfA<NGl7=NXb;I-q7d0VIPe&97d+9OBU&pdBX%k`QS7SMF0?V
zTourRo9u8djfUB_z*_BJr#H{CQ^c+#DY6cx0fPQU3DuNrn?z|7zrJn{ui#(oUV6T7
zW``^iKl~f7>!7<x6f^>C1mJRqeDW%N%S(Ny0r$hxfIh{5ntmC0zvvgit$3n3<3YXm
z>R#YPqu%#^efL^BTpFV7gxe`E3)HLHgfo~oQ`DpP>+#<Kamny&@sv^?j6c9iIc|^)
zrx81pqV&mX%`0)oj~J4ZibzExk$UBHLQtOFy3R0x#P(PFX3%XBCMEFj>n$}ybMUlM
zYmR~%4AU+{efgDs{S5Yp{z(Y|>5)f@6j+QT!5@8&-h5GbE}9uq?2OMONRMN+q*6ay
z-{&()k<Tz+5x6Oh7ZdEA@ry+|^9G)W$jRg)<`UPi4IsE}ly3jY{y;D$z7gqgl$aqL
z`W#39^1b~<HqT}xw*bJeGy3dx?i&>Ghvr&56`-5U$Nr~{*8l#w&s&M=TB9G~EsiTo
zxR^aExjE=upzmF8$4jIU2nzM=)($z1RIq%=z52l}`y&P1nnE57Vlr#^352;@;~VQk
z8W39qzmQR!nb$vEScCQU(;q?2c_r?(FOJShrFaJfL+dDThC<F<2p<u@@kCCd_iNI;
zk?gVV*OmpQ!<&=jRMk0$#NRa7zEk9%P3I9i(d9?PJ7er%*6b$SQXouHf<y@%c1Zj)
zBkd1U+Zv=lEyJLG%i-~-#M$8qG+S+*jlRxATnJPh9{=1){1A<cf_p&usaN8B!@#}h
zpZ18Ri4iolbP{1L)CCCB0xU@oy#iRch+c;9pz9oDoC+GK_vh+cK5>tY><=5DB`pe$
zcvRp2Yj~Jmwji!g7<OVprZNxfogh@q_hA1$wAY(lNj~2Lxh8azE1R6+3(%>K;8>t?
z-gj}=oo%;X>}zSF4I30HcQzcywa>&|I>`Q1-iFC0sfGyrOjZ3>+(Bh_TrdI_MxC}$
zL#Ip#{2yNv_x<!CvfwCu=@1T0EsYj%t{rMkA{Z}8^?O+F<s$L_=TYR&!+Kt47(%`v
z-L0y@j|`D}*^lYlf9s36$lD&4Rs=!0GB6V|xb|*+`VV%l=<x(~_1*d`cRWgJBt?Nb
z`tj8NF%4A*d!`2m%0jd4Sth}%wmqo(yL?o-83#KACIv7RX*(yXE9CT`R)5%~jcpTp
z@*s=7XhiN-n;+9hxoFadxRX`Cdvr09JqA(GsCp0ui9-Kr?qGziORL{;^L5r1`-c3)
z1p^TnB;2C8r`(~hcLilpFi=G!&(XdHTnGq}M2g=3xKdyI{;(VZhQ>`7MB*|HZ1L3U
zQ=S|q-_HSqH_AukV*LAuHQsrbQ^FBxDkggp7AW_q1VGSD;1E6f6}t}U<Q$eBnWz`p
z_vlYM`u>1%z2_hB*}6Z7#*J98bO$b@SN>Z+bUn1sIDDVGN7%B2Ra58UMNMsS`K3&H
zFiLn}lIna(Uwr=_9;aqU_u~|@#`sF1Wp|po^aWjWrG3802a81G;s;T8X)coCPSi`m
zA;=-D;NXE4)lsfQt?mOr0Py*u`;aW|^W?K&(%^x;B=cSVk^56Lr-JZAD~bqEOnRwv
z&3wR@d^C0c09~`l9zo0x$^YvIQU(X;THcVetn(4q=<@Z9G`g_dc&}dmp;ZMbm@YDO
z2767Dy_U|_6eyRM@?m;45`3BojyyeIht}A+qJ~M>oUbo(m4~R|ls!M48a14Q9#s{9
zHYgN@RR_ZvbeDep?cN`tk#)~^eL-InwgzIx4Ig||fBmI>Av=Ue7(hXYLBgKo>X|vw
z2X47fFa5UnoM};Wq9C*Rw&|kw$U-u4`nTM!?*LsnHhb}A6&;y$dRss!2lea559owx
z4;F^k>Or+cr>KI$XQD5QiiQev_DA}@w|FM{g!d$iqQq9LJ}be0r@g7)f76~tiOh|%
z!x;*7i<mudzP|PgyUuQuPmQ2Fdq)nmU>Q(ymNn6+mgzpaOj7_twA<3Q*%alJ=u}MO
zD>S80WxrS)zG{C}2bnmcBop`bhTfm=^OKjOl8)6b^GH<xT&W*@$Nmzd`{J<aVb|7x
zp~V#K3gu`#6RNF3DIs&)Z`Dn%$mrqG#KA?xZ#2+^EYMJTWP7>4mJ1@0VyU=guUQ+H
zS!<<Og};j1AyiQ!65xvjV?P(S$yEo+$zGQiBp>?O7veSyw}P$b(|FQ)7;IPz2Fgi{
zhgDz5;eTky(U0`ZNC~r^8GDAY*?WeqMFbn8-wzlKxce{Emw#%}HR_FM-f!(BVlLX?
zd&m;x{*nLIN4tt*&nrNs=Ofeu5)P6<kh|)-Qy<k^GP1Frhok0*UTAOKgshG|=_caY
zi<lBUGl3F&98QTE?pY*ppnF&(RMayEH+_PM%|wcbQGgBtLS6c}K9a40sj>LjZCD9E
zvleLJ0>MRL@Byw;1vKgK!x>NMZ7v_{Sve;X{wffqM2-Cx!CI&8AAbtGlNpO?`CB8@
zZ<$2wocNrd)`hYr>|0nDR}7X4c&f}V_Jjo0;TgF}-|)PhOjL!SZ#oWVdtS)zFYeL@
zVr%dr8nz*7#gvyXxrVvr%;}kG!5w;jn8`H<Hd+!R!bTl@r(Wo4DHvkVwM?1;LYLgH
z%`d%>3@#AfDT|HpMCmfx!%$OFC0_QBJM^5-?aQ&cMq)(QV6EBBB<Q*<7*EA*_vu4j
zE-f0hRigy{-B6ac^?NPQzp(>s#^S(6X=o&wZFe0Rzah;I5`hRwWBU<o_>=x?ytNl6
zkTrxEnT%(GB!h$EU&$CIW@ITAk@ZaA66E<Oc55dcHWjf(Mf0U}U)UN=#_DRTvWl{V
zmR-9v?%*N4I0L89gL&PHPGFLr;i3@Qn5+A-;l=mrrr#}yV$>kqL}8_d7Q?<q+#sA(
zq7`JmA^I<(`r^=Rn;vk7ks!AW)yJSjGMv*<jSVDEgOV*n^?u?tVN2)-2pj>J==s@)
z#=j~ycG!zkK`BXu5+~T=;o_3;fCL*ie&XADf$LMi<R+BHMan4e2!X(A=rVo!tH2E}
zegMN%ObJOG%Uc>ZWw2$or6fPLhAe(aESAf31)pzN8TaB8`-q%(sdW|bb^^}P2n(mU
zUT2Wbs4R%^WVO#b`uCTuD1kJJB%)0G21r^_q2AT&@GPN!*qP8#McMn6p4H#jH%fz;
z1h~IsbAU%p|40vueLfB2>()#4;??%~80NsWN?2GiKiX`Tcm|N)Hm5UqiT>d`D=V`^
zceded66>XonW&SiT^CUs_6uKcwqWogmS88eIOC8;=j#X0=8HJ^cr^f?ri(=S;uZb#
zP4-Bmod+pV&Vz!sPNLr;u7kwP3^g`hFLzxB6WcnmM+FZO2|4`G=rJzV6n6kL$Qz?5
zLEV3tzU>_sYaj*7GdMoA`Y?UWn=V$uNM^M8#Ta2fYU?ffny@4eHKPg&ahCgLv{}tx
z)PuY3)W>bK6N)cJJOk85z;$!_Abo;Z`NVvR3MKYP0%5KR>LH^KO|U;izrYQC_ys(_
z6hX94<CJPzqMy3gK3yD|(Se3zXUR}cdGvq9%tv_+G`7<aS0$y2>+9H$^`Us^g!y*+
z1i7y2p~h%#ml)x8tg-@Bm$|{J^ka0c%+2ix4rneQ!{5AWq@LuC_pDs7FgQq`JOuWF
zN=}mjadnZ+m##+U=;4L2!*a+Aa`hs2m>X*An58vjg1TqCzA-EIX#rz+64ui5%>-~Z
z0xiaAz{3K?z2k}3OAcV+Qo0{=Vm8={QUhO}vpB9!yl%qLkS$<?s6ZKN`EzlVBg5mw
z?FCThC7Bj3^<CUrKR@7DXBsO9ZGytgBlNlAnZ}Ny#Uh?uQTV_tmHDpztE=<kie$Wv
zaS2l1`mMgqHF8k*Lem457Pto`bz6v1!tR&7rJsF{Rl~6e9l-yF(GSbY$W$jE9)HWp
zd`&JjAQMPm(2vsFP4EB$jCo8-C!e`@`~}C^$FlgbS#Xp0QPs1LivQ{)`$LWo7K}8e
zKN+POlGWZSzK&N|U{M=<P|zB8I4<Nwlyiz{{8JMPm_wjYDbbqE=eNnd27V896neyY
z`~Z@o9su`@bl6Jzd-}m8b`&;I3Yo|<QTuy5%FKE98~TW4_95&uh*<P)US|pA%k^Wz
zO@%W90BeDZ$usaX9p{c?&ibm|7gAZ&t}pa00#p#r9~8@mN)v)Cou7N!_puZ8vO^Q2
z>`>9-u|(;9E?N%N9=N|^A!6MBW2t`N`S23i_9ljtVQIVG(=UEvxvU(6&yz<3SUkFH
z5{Vt)Wnh4THbakj#$A*zAgt2DG%F|`eefy;rbG|S<F)TPi$5`}7QG|lfQ)qkr*`{h
z1*g&K+CAfJxpWaZl8B&QjC&iQEVN1>jDSK?RTI@^C+HP7@*(sM0#$wFXRtw{6Az20
zaf=W_x6TjUgmr#KkuUW2w#VlKm$<8MsuGclVjv-pE8>QG`B<zLDT>dHZ|M*EUVcc5
z#}9AmN$xLHMxi@%TUZ&4!j7m31RLbCV<x&Q*p)0g{PJvl=UG;wh(8xBfFH3QQu506
z6SelZVt~muBfz9cs3ZtlN@JCSm+Agtd(AgJf>5|k)qwZ)LxP(yYuJCpYfYW*Zm+dy
zpS6Kz%V=%=g4++!cf1OKV_w1S*7HiY+!3+ZBX^>PaaweXqvF5}s1sKP>wNPdJxu0~
zg|mqE@Wx`;J0Fc`r_sks%S+dk<5-0(L3?Ud;cZP<SG^ava@)~4;A0VezC-Ag(z7s0
z!oUe}60Q&<)HBuaiTZq3sF(Vyxh9g*4qWoE)OpkOZ5P;Apbbn8m<j$o;U;A`T8V+=
zIY}cJ?$wK@+viGgqc+J2!V`X<rcJYZv~uQ__=$^8rlytpu}B{|IlLJ0LGgxYL(}wM
z+Bm69B5byc&zrup>ZBv%rzXY@QWxgP_*8dLRu<#Y2Sa*X^I4Q0Bo;{A=TLFYq4DO}
zzBt9zeGg8NOaLc!Z=2Y}lK1t~uEyw%#;W9QtRh?i_e8U_7lNZm>e`r3^j%B&N(MfK
zu=1V~QQo5m)1wCAja3v0L(?a*OND;W^N$5ZqGq7hf~)?69skRiNQxK}f<Y)W+#6Yy
zCa<x<UyWw~LzqL|JWpTb+D5&Nu9S$;1yYTxqC1-~dKd;7csPiXGeir%VR_v7>$ogI
zo;A0jN2OELMlC)fK5ZK7rC2+skt22UHldw|IZcskvkP`+sLd<lUIsgPlvw(WK3wmx
zf@Csm5>>`0aob<9KOx7fLgHh!K4N}OMP9CZEpGZI`?Jfa<@@r5a^!8Z749&>M790>
zxbZvwe~*#gydth-r~9#Ldo5snX8&3m_fw}G&EFY7xs^{NI=+27ZrWx$Os;i9pjJ{s
zuqWY+uf@Imsr^A5Gm;+24_wr$lRt>-aJQKinI4fn<h3~EP7k|B<cXk>PXO1i-idp9
ztDQ*<fe6Hs;0nDVmKDT85QtHU;gh(zF2tg!pu@eVK>CGHS?x;MLWCrc0zMD+V=G9@
zETRSHz8m+!M*Hb3>`ECGHnsTGxYa+0w>Cpeb~Yv)|AV;GyJ8>4@;vvYxbuHuG}9tL
zEIDRIz8x`S<j{)I1#pu?`1ayH?sDBFMvVj*)Y26RL5G$}t=IqR^SEnbd@5H^Y$nCl
z&lvxnzVyM^;RG&A=Dw@H_$R}xqOD$ZM0~i2#^g+zHx7y?JXzck-cS{t=AqT36x6eM
zrJCM`u6BYqlkjliZwUVBmYhLZb?d8o$_w_97(s+_9A+A*##uBovGSR!VDOoT3iZt;
zR^83U)k`Fw^v_OEO?i4qDKnvu%fsmV&HM>na<@t?!2<otpR8U?WREp5E%Am;E1m)R
zfr<LGgX|3BeVuSM-b++3oT8K6TiNbGO8A_j6Wu{(Ltz$4i5bDw0BBR9`(yS1j45rT
z`$!Q4spU27Ha!5wfMCjL6W_ZF0g!q9D|+stz7XKtd)TJXq{mCP6bW{6*U}i`5YYhP
zhs&4g@h@5pOPI-0@<8m==~BV(+e@_f`(73eCmChYaQ$3WXB|6IzvPs;`bG>g7+k3Y
z`idO~8J;{(6R<C$P2i1FBhY}ZD_X?ox9TU``z{@Wyl3e>F%WX}(V8vQJXGhKdZDY?
z;v16abg|Oxy*5`IC4JSR1ejcS?ifMNGJAH_W4?jp;bF)FpZm-}2Q(q({QH;bgFm+-
zGEdsQA|geZ`KDNZJ&g_ZjVZz2b7M*(bQY$qu)~1Gh)*W!Vm2dkG22@eA#S?|Iuf%G
z4tL4q!1CYG8{Y2=P`=so3W@?C62>{|YdvX&d%T+n^ptZ)2tjw1ck8i&Ybg00VFO-J
z`TN84J{a&Zfa9!s09WC|1Z{{Izw(KT@7BY(oa3zV%Jqbsq^JWf)>qWom0G2f%fac^
z)=Lqtr!IU+fA<8xCc#<cGL1VxW@Cfrf2enq^8=ozx<C~gv!z0aXe`W8(nJ&$O_<=s
ze){oi><*%Ib1*cboAW*wGqZVGFe2#yefH%%O|kI~oZe#UaVtuaOOg#K`*pWo)sAZ~
z#pMj`qLkw`p<Tz|_;1g*?}2^7G+<n*)RvNMKlZwPBdfMe6bH1bBsFnJyfc@_MKu;~
zX=@GyUeM!ivVb7aBOq5F-0RV#^;Ny~K8s&u{fWjWRhJ6R($lBdXT#V&riqRSqDG8{
zhbSD5h=!Lx(}(|NAHsAK;E6*QR+JjKTI`E!3Ej9RA>^=zL^0~rEr064!(Gn|ep)yY
z4rySt{dxVOFes@s?H6YmUj;iLxWE6yuDFaVJIh3HfhMTq$LcJh2_m6`9;%SBSU*;@
z1kn*mMUvp6PM!Ztw~gl+FNJu8$}%(6d6(&rU_iVpa<v8<UG@TwD*sFR+lBUPVNi&3
zGD*S%a&Fd(P*XuU0Lm3AkVdP8SKK{b|7DV$3@=Y_s6F?YJ`kwEHM5BJv2Kb)$+dlE
zyMEK*CD&cXEvf`rkv|EQT=AT4<62O#CW70121uN_T3;g`Er}5#;agOEakKoqR)3eo
zCn&^?0S~c>(7*y57*DGinWoH-+Ri<ZFgozYwHi{0L7)n#-ioA+U|{&>O3;c477vNv
zaKAkds&-TQ5bCydx0dSu5{V^-Ne#X+>^9W6i$93_Pq}rwKr}s?OlG>OTN(G6SSG@W
zn#9zwj&ji|FMeF_E7y4$YI2})wsnLQ1sZ@uGKJpK)wJ*Q731vBMQv!*DA~YZcK`U@
z6IgMkDr=K_f8s)uDLjJDdQkijyzXqb$S;D!LacPFessRwUw(jKJ2ocx_w}&&A#T7R
zk)kb)E?HuTqVV!wGOnL9HtQ030#n=H+<^c9YFHCeYx11~<JY1)#4s!B+D4dFto@Y|
zvA^Kl^ko+}5H)|;#?3eAPq<ZJwN@#Zj+~Zni&OjNed22_vunnz3bP?}Bhkf@rS8RF
z2gYxjKXeA^x%YK?woWkj^S6WMJ0}hsaX+j>3Mg206vgOD=c6x%-_O@7d>|5+$cdx{
zjCjPEkjSH?@sQ;JMe_UZYn^?LW{kFH(4#^Lqgu>7Cr+j$$*bAFh7@|J3in$16;8=9
z_Df{`wbXL)0aP=2zTsl${0;VN1%5KTrEpau6s5lTr{g<xgsg(PVcaMyOtMV%ubZ9k
z;~6En*N@nywg4?O=R5cMhRYXo;dzqpB)%}U>Kf;$Av`Ko(4c<yClx4@)U@5sMYTLm
zNH2@vdn84ogr}=JUUcRUVu_M2hQ5pDLDZ*g>4BNfSCzx>M<%1URQvH3NriwKX>mbb
zH4#PsaGu(i7xAF^!|zcrAW01!GwS}6Spj`e;NslGi8nM+ZJgtb+K<P@FDu`dqfI0O
z*~z_=Wsw><lb|oTan4YCO?9q%mO+WS77i6ulrI_Oj2$71DW^`bt(caa2%0Ro!nt7}
zvqsK>J6Sb%p0lr<g%qR<N!1I=38bibM;~L(8Yz$s*U14x+5Wcq&U>5?6Bm(C5};fl
z1#s2%vz^tuEVR6#S^y<?NQ)kGMjv92rodM(0-v)%1$p@aXW&S_M#u@muNo&~gOuG&
zR<oQ@@;q3UkL^1X+kg#q{?%Fd6%)&qUt<K=FxKWaXIClskfFTP0&geZsL`#bGk2$R
z>jn0QJbJ^l%p{(jU*w+W(nCfa_IHay92|x1>cJrRcyOL`?olK92<?n+q5Xda@g_%t
zc;T8TT11Ch&o8zPD(cVrqT?;&j?wXfOpjJ$HQX%X<t!y;lNTy{Pzs|wuuQLeZx3&G
zD}wNRxCi${v&E!Lgtx0@yY)aW=lI2veGQ%|31d!_Fw14@^nhghTT!T50)RjV$h~TV
z9(s%&j=tyv+&y!ZggS6`B%`5FJYbiu<qI5u1aQ!LtXT-3s*Q;%eZ4;9Nq(Y_Ge#@l
zl`_YvDrt=#CoZ>MI#Fsjc)1@9plnogiED{kP+{~8{l?euufD$}M*WsGyA40HgkklB
zi{Uc`^lKj0of6GWa+1APLjc17k$(I(>m0p8%)h?MZfZo?<+mtynyylB&?7~X#0-<)
z=MKm6>h73}m|@5~!os8PSpZwlFzM1QSXJQ&9&vL&|A>Cwy+iM%qB7k-@6ws>7Ud*-
zMBA!Fi{^*ks5cy9B}ng=2r_YBvcfVdqKvA5_h|2TR%hz{QgYNw#StA@DmnBlJmy-K
zJJ;?Yw5SNC<fs@St2(>E>0A+3bLq@QIx5h059sH(fMaz;ByhnV8Y2!qwgxWYFUQ;d
zm|np-#6mV2gi#CZj_Z`CqwNH8o?Sa3W*V4Z&xU%YAtf$6ED;Oh%ZIZ=ZiL&D(=;Uh
zL4X#HWw3Uh4=04&7x9FU%djEwO77v2!}uoH5x2BtxCnc%`%o`=$$dFy+RW%_V}7CJ
zVb2F+ej#0|`xm&f=mE(DUg0er6u&~Q8l$upa_YlcORo*F+@4utw@L-H?)i!Nz#1nC
zIhmq$+!_pue@SAyMA3}Sn@Co-Kd1L{)u7m4lK$r}X^~$znci;1)QB6A->6tYF4g~|
z>%0S_Dz*kb6cH=fJ`qs&-dO|{G;OnqJ&gp&LP!DuEEtlIgj7-}K?Oy{-n(K0?8>uu
zu`3p^VZ(;tQ^77qQN-_e&g>?e;QL3zot=K>^rAM0j+>IiQ|Dao-6(76ifYhy#l){J
ztbZuR`h(26=x3A7ud8BO|1J%wu?C)IL~78ACMZ>s2_JW=_w96L-U~!iK<Z_o%;Fr?
zYp!=s1?aC+@{5XkzwY4eiKy2dI;qMRm0}5b0rJa)pG^R#C7W3@yr(dxcJDy|qwB${
z3QDmtk}*Lh=e;bRr=Ex4t?no`6hor`uSg<I4I^5SUxWh^&=C~6kKeLIMPTqtnHV^5
zd4tB71>T#^grYEl$wyqHg=k@WZhp->9ipW|Oj*NRB$zZn{jjOt<IWbK4nxh&fDogJ
zs^+7a-VPiO9dM`>#U+#QkGh2(akO%39oi>C{5rHxAe^X|unvfo5*wD__7@KJhFq=?
z5J!WO{s#?WWjnm%Ef=}Gn=F(ZlZ9v?oL*{gk~@drU-Z4VT>O7|PpVCoH=hlKf$!El
z-iuayD|pn>9+MI<h`RU2y>+fT-n*GpC(gTBFA&L3B;Qow#nVt^0akM39het98O2Dz
zZ5Q(aNsXdLDQwL#pIuCx|HEe&1#8r2S1bax>qHKPOFHdy?}se5;J6-i>Fe-`QL$gR
z<p=KdPCrlYYg}!$c=M)8zRwFQy{j?G0B8Tx!T;^6y|baZFpzMwrO+NkWx27R7I-&r
zcJHH9JnS)g@-=(7cjfuI2v%0=_!v3s0{TYH;JmF<UiR*IT>Hjb`jcXoerQw|o(8+Q
z<BvFJ&~c|)C$&SZBP9eXn31_8)(d$bKLH9Fnddz37heITNK+|E&h8|0$NSz}|ECM!
zE!6&r?o}2Ew+A0DhL=P*Zt58A?L9xA%@B!>rtkZD(Gs)A%SyaeDRl1k&QoIVyxS@v
zP%-6`T12oa|BJCgY;{}SJaE*X=*_#?0*ONJ<U6}4;7C;cnz!?6-3aeSytJiuRiZg$
zsJF5b9Mx6o40TAIU0z30>~#pB<NrLjp-%L}s((ob&E($T4f#wFN=9wz%vQPURKeP(
zp5h(jP(Uuk6^UOW#Hftc5h2#avKWrDETWhxXw^)1a?Hz5_bO{*xJPiX;26?$ntpS=
z^$rD(Mt`B^ovxZU^de?_fA3<4j{p6UV*hiGwEKNghuYy~kX1gEUo<318qGE-*GnTb
zL+=6UM-*CMNl<9?w726Zl44|*q2lf#DRvK_m9C^T6eF0-5rG;-{SQ)N{s-H2NQrd-
zxH=WUNihX5H`kr+;$r1|Ch5V;#Z6f6jq^VFG;ff@>RldFQU{nqbufV=2!PQ!;p4CH
zHrYXv>5K;gN)g|E@xj4Cb&^jhBFREVzFjRLqj|{s&+$i)hYWE(pWIeBXQm|J`uc2(
zU%G{qWdM{EaO4?_@`eOp$!5XH{)v6HLoOK*V8wtwG8+TS9K_&yzvsK8JyWj;^`EW=
zdMaz7Ik4Ku!@19SYd6vxN)1V)0uc-wf}^N!pX}jpx<V6`5$VDe!~8H|g4t)9|KMny
zP#hnat4*V`B)ns{T7T_&rc)pA4iq-3K7a<Lx>EHm04+M#mFfP(t(uNa@^P~oB0zcT
zd5gW8m3)>=5^ZgoU=7{ft0((I?$xgdo2@9P<e8Ee@MQn0yLGZ6aF8l{knLC?@xpr_
zNJ=zLR$`w;8;$7j`2IdR8a+Z37#cAYLbYx_s`204U30T#%o3k(0&gfRKhwX==f_eZ
zl%YY1crj6fJ&bPG%ntcGlA?~wkR%Z3EX7bF7sa97JJZkkiHj1qN+RPpX>u|I(0|LE
z6}X!N7RaSFY5qSO^*)Qp;i#Ag<;HUj{(#rrSB$^86-~3yR1>vFM|Aa~%+d=uZK{7)
zFP(o1Y6nqqiCbhri@)}#!J?~);1^uc)aELuk-{0Uy*11BzLiE^jF_V&3n{lyP;YCW
z<|{9(tZFtMY<NtTw@6t$0A|fmHurNHrLq^ADkAx%@(;DoXf_D}`=pFV?t}KSs^%6z
zCd|veu)lrneeF}!B8yNB3^mkXPR~8iHk_qBa;7zxH#A8BZxmf<iS!npO0m>c(beMv
zNIuRqI9O_h7F@%}R5PKX1#m#7hxz_?j@_;I{_?c|p`)#;U8@v?Q8Jnv&bRAd(hk&q
zA_r(Pr=4!*pJ9tW<trJ{2&}1W2g)U9BkSFCoju}NT11_ziTDWbMlq9$Zx`0xgY36%
zNw7VPr6vB7rrRf0(F5WjdKt2<NzJk36heWoJ<*PMN}Dnps9;30ShAOf%=DA3w{Wm%
zbx5GTmD&Q_7uq8!FZpv{wt*JES_(08{_2n}yQgMG*sMRmUVVp-N6Bi`rKlrto+h{T
zZR72RCuv9{MH0EW^iClA6+`T%>-2MBYhxphY$FIDE$_HC35dP^5Sw_n4mo-&?x@T}
zCdxE3^(gy#1D}C*+<e`ZQpm_@-paNkzt)Bb=@jwR5~T~7Ayds`$@cMQbfm~uQWXf<
zA*O|BzzSP_GvCw91Tw4E!^&5YBS9R-f7{JYSmw?FIafRal0wN?@^`<>p7||3lyJ*X
zKwuL3%vAHzWj1+NJ)x3PKu^aK|0>KTLEC(v&N4-kZ8o9n1UAf^z3m^T=%Pd`E*B8u
zVNfG@b*oNLSW!g=lFAXa4P|9g9uGz(Y(AJ{Z}^O6Kp6uGg?mWJLqH3B{b&2z9si@l
zaiQFGOOpTz&jYIuc>?T_Uua{V)`}wojZ8@8Ewj%Fwt5atX{gg%nrFjWRWt=M>H@jw
zV@xWw5yR%=9qfy8SLD7TGX!g)#1E&p!__u?3!lll##}mEDr&4`Gi*Qm^K05bx+Yl0
zCYC6k9Iqd2tM7N?V56rh5Zhy{6rL!#v5vlz^CtIELzQj|EQ>ZZU9$Lme*)*qj!WfM
zWyd&Xa~2B^vzy;yI4Xsdwi5DF<rc3u2;;Y_J^wCRQB_I_m-?D&DPYa6SqZdzg57ey
zwn|PzUNC&1c{RoMx<Egc5L7s=slC>OIQ5XZ>Il11-~{ax$->a&;IEUI8kQp0z5n1l
zzCeg{`Wms`!G7#~yhYb4ljn$}DMS=JT3%qspUYPs5z&Msk0c#!2*1r`$@VA*=wsTU
zJk65JO2C9NZRzHnWc%u6I#eNi^(>0)^7bT=aSGr#G1tCum20f1YZh-%X(6J^TszX<
zBi#_3$uo*7J^HjLs|K)SU0`Q_p#4hpsgMX5yl37kuvcHnXY91qpfFM?DHcr*1LCGN
z-`>q;K@FrJsS%{en;@UA8N1vztk<b>+o|o!c1b&r&idO6?D<0#^$GTw&4pw343lo$
zJaK{DJqpFuO*#+gA{9+9*5qM!hfj1c$+uh0o&w{DW5S(_`S2WsJRDnR&lg~p@>(!E
z<XtOm6_HG;Rgt8>zK3mIN;Aognkri9>hL-i%rsMfq+KIGf#gI>lLJ7q#1aO1u05ll
zKHuUdlC?P6l8S;RWcnL>7Px@FBANnNRn_U{_kHYrZ|Hg8bt%S*C^iUzKqQ^k_d<_I
zqF3wch)T`96!T2TmapSGDVtap(be2pZ70rIavN<xtZ)KA4W2h?X4nk7;U@h|4R+>`
zhl{Sw>^j9Bvxx7)SHd80Jf?4(J?Be4g@Adsr)Qd$X8ssvFOlOGnNx8}6q$TB$KL9Q
zrsQyJ1219vGW+$lr?>EHNt|A-)hGmKi#zm{``dSK)E!H*RAJjl1DtB!TVoFvI{Gg!
z4d5mh=hE|ZO?eH|9l=5uoo;R!WQ(8EX~tAgah1}sq~%CAGp!wZsSXy|S}Q*fWQbo=
zQ=qW53bYM-kZevYu-=)`b!h(Vj+4jZXO|WB#Se8{Ibp#TA;^8YIrwn<+e2<X!36q<
z+>{R<WG}c#TQcVI;;G<4Akoft@NB*bZ^#R-t!gKSHyaLPSr@=Q?gtt}0H8F2WaW7u
zm~S(`(Q%4Mh~pk(NIfDUc8gA@MG{NaVe2BcG;GeDWTy&PQM(lFgf5d;mT{<seRKpE
zXB><b@GA%_h=wblv`-$W@2N=E-&CjTLGpX}9Gmcw4qt*~D42u7mno7yH%fQLR<w?o
zRw_AUIcDnarJ76n+xhosmvNL81KK2AJn_@1X3r{nHJF&S;!4o$$Qb!7!sdu0?18f0
zaFhk8Y1%6JGwGKIf-v{w+Ka1bhC68}uOt->35viKmHXM_-{G@_G{9li>yyKajkhqR
z(muVrKDk1&`v}W0qOKaQGfIb3aUwGJ_OzvdoV@i0D)Q9>q!i>0nRP+?rF>UrP|Jo1
z{@|K-8Ezk1s~twx3RaMN0Df^gN-;G__7#W5DRIaZ>3I+{4wrKLNPFm4I$lIm$SK}~
zu_43d=L2k=fH#sf77!c(WA8Z$8L;sPd-^Zhm?JD%l*59((^OS|Y@tc2+%!>tUTlo8
z5FxWim3{PK8pxVUR;VZmhd`R!hw0rjQwirFzRbK}n1W>U#UOjs<3I%>5aZ~&`3xrA
zeTltcEN95#<ap65N^}GuY|c)w8Lu!4sE!mypeF{y0|s*5bB68hD;z;lP}N|M6x1r=
z)_c#f3)kp&GOCDsmBGlEpCpMqSIY5VtR=ZHyk7@a74MUIIrhsZwAV<)i<;@JO_Ye2
zviE}3(Junw2iU|nb^Q}sh#PAm*G&>e#D#a;cLym16jfA+CRMpft{s+1i8sM<TXizm
z#4VZ+0(Oj0ZX7od8)Q?|xDJ_yD!WmLf@sW<U4c#EHK7OKl)69t|C~b`ET|k(t>c>=
zPWy4Nt#eFF;a1KfilFe#G>`A=o(Pb;72!a670h%YbLUld)o!dB;@(QGEXP(L0{})}
zB-m%pa5Gg1v+K4LhQ$$HK{!f*WOCFtOqbO`DUyWM6xN3;93__J7|q3pC)GS%V2|BI
zTdJm~#z%x)oLVpd8k;IeV)zyI5n;_VWo^f;q^Dyv9gt<yUe&(E5?G>)Dg;}y#SIgX
zmGCm5ffVNjFcXNnDmdO|a!V``q7}UjP>(tN5PN}>$4Zbb>a{Gk<aAFrTj$wxU#17j
z*@h}b*8+X8QWp=m2!}FM5&3QvyQik4naM-#@7M4dPExYt%jJ<WNs_(kQ;`&KFjy+q
zC4xGIpzZRlj-Mmqo`56i+s)Ux_DG?kgjF<<MXFXb`Qq)lV5%KAS7*huK`wx;am_Gf
ze;jCsUrkFosRSKmgtaA8c^?~rk}yyf`R?7u@PZ{{WVy|_m<D(7D(^H$2>>}0KE23V
zo&)<7W}$_Ox<rd`96N+87X38DK0y_15oSmTjR?}vO0(Ztw(fc$2aN$L2B4iGz!ayi
z^6xr|ZZH^IT~<!HEoyPW<dR#iY7e@I+Otj)wDUUN{K$W3t8SCmC<%}8^R6N|1==OT
zE27wY03p0I%{8z<@NzKI;`aK}SbJMBGoj~{M=TkHAmFgrCSRA8iGH93SzOT{PBnmF
z-{1U8vvmPQEfvCmvk16FbN74x=|8gwtRYyN1mRPa9Afmq3%-}3gN>3B(e-UGN0c=S
zar-Ts{CTJ9KJ&#NQBgi8hx?G(e6TG(h9-PcsPqB8RE8!&b8Orkw!<2tD?qt1U2p;A
zdLT)U{OZr|p}h(Si6mwRhgL-49J~Jn{hH4ivtlfQ2+;&fa>8}Vc8Q1+Byoefiu_EW
zRKQ}NAN-4QwNnwCO%-}20`O7Fgd%q1ypDx|-kMuBa5)?&x|?BR+)U6i96cnzQy3Io
zo?$5pAXC7{Y1Up0jRYqj^sE16l78o2>PwaJ)>oFEgm7u@?PK@k78n30GMr?<?;*3|
zCTohckHhcop3_x-aMlj?$ZgyJbw0rS@@!DwXrZcP^TJzBzaqDzsGo`zT-x_f`T|Xy
zgTv!B0-Th6OAEo)T$EzNu)q#(;4eU~N@<9fg6nQQjAZ<}l7fo5=|WIAIbrjk{LA0B
zT*pLe5{erGAF9(~@H^7>+M8~Pxb(ENIWoi{@g&dR=-0!w@K{)jM1rAp$Gs{|*t@EW
zbS4HYk0Drmaw)I=`G5U$&SNs|)LviVUKh4*4$zxo7tkiJ3m9q%NYX=h!-<qUGZlU9
zi@UfDfDh}UiU5KekW3eS><fs=uu#Jq@|EIw!Gm30YyY@PzsrLb%A!pn9?hjQ?UOg?
z#yZ|bILtJMz3w0DPEpDLh}jJ@TAH~u&kn9)B*3$xy0J|{Xn>%wfY1(;byfMLt<#MF
zeAtxjV7DC3M+helV3@OoR#4#1<n3(3BIJ|1lF!Xmty;$nb;>@UOCbtrn1a4SE=M$J
z@aAj%^_fg7hK;5=_p0!gWBqs5*|)>AAS<*-`MmV>Fh@L~z$OZNfWIQwDU58pqhsm3
z)UXNfVHXJXBbD7&D)I?SnVygWTXSR&TY9JtSU^%S;kputbXFl*mOzIRayP;6Ao^3p
zHYFYF{0qK}C94yuzph;bbzYG$a=hY<akNR!=cX2{$@MXuAnAwztK({PP%ILaj+|0H
z6gVwh>+d{GTL3E(HbDZ?LP=1!S3mVhCMl4ZC#n;vCr%|}o@U4#*27*Q3JctIM4tyG
zN4VeexSx&;&jKJyQJ79hhqp4%B-t@%>9R{0z8dec2KBfTKIHGIcJ5$31wB1w8-M^*
z=$ntR{ZG_|6;|VtEb|~~qzfXgndr7sF}<k*<vo+|t_BXa&pAX&c@0V9DCJR;&C>P0
z01V3_-lndOLO##{iFHKBVEzo-vjm#R16*1?%~4WLnk{~?)xY*#c7sbC$Aatt?M)Y<
zZgGSC0Q}BRrc|`TL9iEKmJFX^h_g){tt-n`%pZMB5-We_PySW`63R_LX&o4ZlVJ+X
zZol|_|Ivve$OoclB7+@74nWs=QcSj>W2LqDC(x49W~&d;X%J7@3c?Eyaj<VEMs%Nr
z(D+(KuQ*+$3VPM6CkYfJOrkyHeW28VFt2*gU(e(MoT{djJB}d`PMhW3^uB-2RGn;0
zbt6oeLIDA*klM!Q{XzY8#tcV&NF9(WlEzSXJ%9~t5e{)6Owu)A0^jD}%3U*CZpE}_
z(N00>;G@H4>oy-hLb;^u2KZ%YNf>ZPLwwfN`ukB%E^(71+=b24FZe6+v<HTf4p5hD
zu_!N3uh$l>)EI+AGOChWDARtmNJr#WN#U;Rrs5tdp8nhXQ3W)CLsW0(z&)G<A=;;p
z9f1JC>fkr@#ql>1T*y+?-eCk(FG9}{JJZeV1pD}rj3mgB9HUTfYBfUx!$?OdLe#H(
zQIDK@tJob{99idG!K^>`hd*sNLrRkDrWPS<38|c_xn`OTfv%u+Fb~`w<PkZda;d!w
z9LbV%;By_)p%M_n<&xk0evj&ka{zY-Jo2iN&C|!(!%x;3GKAsB90KdU;$-^_u*1bj
zi5BiebaJhK`L_s|5&bRB<uNgU;=uHH>_>maXG|c-A%-WhQ=t2Mbev5S5`Y(MCtE^1
zxg6I&l{y~2*n05bN61j>CjU#}uW{ex%%j(ZP8slA`J7bKkrT!iqX$fo5(OmFRmI6E
z;XnyCsoDxC@jNB_7YW-F<ay#RDAukj&I+9i@py~vd7f@jlxre#$v(rxBxU{PU*iZ6
zxzk;S0*XwV>alj+NxED>rQPWQxIyUcKi~MjASkfI%nDxSY+V=_D9tR2*e}^4E!f+l
zY@}3XYRa}JIqVy005^fUT{TRqkfxaXHu&}Kg`w~#HMk(U5b-+Z{dIon(Yk_6QvAai
zS5$vKP4F$%*s)>(NcY3*vr`BXp4b8u!10y`tuT%9q}!Xyqk?RjW-?x|$^YFw*uql4
zLa`wF7BhN;y}eGmAcAt7?ILVBq<+Oy{(BBP!A}ADE%49cCIw!3W1-y(Fb4#*%#nLb
ziONy;n`wK_(gE|hfexN6)g0Q#j&;m2fYza@qDB#!q|gX`{hB{Q&=LN*A|~PmD*SUe
zT>=n(ebs+M6g{N=#eGh$8#HNhPq$}=^u(iluucXC)@55`TH~~{617LhiVysr`zf4^
z0lMo0g$<PsSa`$6EVDN_&XWS%tbnSZu)N`){5|LBT%x<Eu9U0?g7J1e$Sy48JFDTH
z6SSqO18O#=nYE|dv{ZM64UN;I+#Du`M6+^}{|MX_pq&BwQV}j)%YlBMW|dMT!2pu{
z7)_5#1R^Zp7WJZ^c$6-Idht;uFA;rU4#>p`m*`B`9FW+ev<$*TH1>MG?sGj>jEyRi
z;HSdO&;8<;IiYh5uM2GK#Cbs>>E_Kp{L7pQMLbS~je|J}nTKz+&$**1P&HBvdnLij
z&Fp7COJQ{^9cN@IE<_v*xVmJqy}*HFeglssy6$uYtaNkZX8)!N1r_`N+Gbb49bwCY
z9)IcoEIb2`jGDUj)6{LA^9Jy~9BRLT(*a5{TPrK0hsqU^!udu222oB3y9X}e!H_UQ
zc)JuL(aeHx{i&05NG#1U**^hsM#~sI4NuOHm}cgP8gY8`l@0pNy)w~ViV4rLE*J&y
z+KAX|cGB^vcO6y7!0-Sm$h8ggX%XEXT3GNYWMK)^FW`2{kA-RjhC3f<_j7zGsU!e)
zCG(Q8F;U+4Lx<_`*-h=jW9a75_g{|!i=l<X9@CCq*-;)!6PiblvgINYk&#EmT=y6_
znsoCbrk7T2Dya}FfnyK|sZ}-F?M|G9apQ6XL~5Ibu>i7COzBo%IW(d-MQB#3Uj%d!
zL;IX+A3j(2L|5hAAg18dwcGsO$1|IhtpwZ6mWW?bs33)=m?Iyx*s^E97)oAn!ZP;y
zG4R2$b_S<!%-??mzO3+PaGA!uxiK&)-_Ag)G-k}kz$N$kGl(W7XI)hl6?4qM9^Q=?
z2j!D7m#qmLuqZeKyiMk9oa)Kgy&<sIVmgxt!Q>1HR0iw}Y{*4b)!5x>?l;^!a4ekx
zqUxp@a015cJ1=ngg5V5JWPE8Gg)5AyGv1{G><pAnnXSAHuF|~s<$+#0pQyqL;ggXP
z{x7g$I8zfU8T*?HaIMI8RmR-*VBm>m{tN&Ebv8~^bh_r{z?9GY8K_H(ODPaW9`t8N
zdW#mZaa@|rcTItBCfgbC7^Dy%>MdN$FH;G?BO?@j-|FZ6`U%5f{4oh{A6Rh>JEOpC
zX&ZYuYC_<z=h?MrR3y(GMeFW9@P|EFo{Z%dFa9c{amy!eMWQlN&H8Hp@CsZGP!YCK
znxY|)O%@mu-XQ4nY_6K)|01n809K<=!&wBc1iZaqr|vt#{{^oLd^_-mkeoN9_T`W_
z{pCGDp*wCLp1zu@EI6GI6`f*+?&2SE84X~{)@E`|5?n?Fy;SqUeD9)H)vqGALb8$o
zUBoe%w~qFgQr3@i6Mt~>PKaqA%teZ^QooP5bx=R16+aAJlDHtF|9QaMYwrWZMS~)K
z)gT~ou-Pru|7C>^L^NzEF}@9f0z4~FsuR*s;!pZi{ZEQp@i@T!BoT;uyTm_p315Y{
zH3>4K3l4FhNh0p4tt^Z9=MC@Bhd7upuN>O~)5GPwwbm;w1@d9rF@8A)4qo}fsrFR#
z5`5<QeXj2uC0Htwo3VNJ<T3g(v&rMq(#GRN))h4Jdyy@7qD!0%3=XEK!<H%9Bknu!
zcTm3F&HcWhy{Z|JSxSXmSgX_KP@({36*+8By71d0Gwsu&*%JI(1u~Q=dF&%|?f=Qc
z)uJY?qVgxNHeIBq<qf0lgQD^wYOYn(AP)7zprQz$H(AAUhJ)v=uBarl0gOUIx)>Pq
zj<KK4)~O;5Wi=>^#A_@?*jf~6BAPHF@TiP6@@3ehO|_RbX@~4~j$YO#!8f67JJpSo
zgVEhtMi__pO4$-ssen=1og|HMBh{=v!G4N7CVK=|W^aWPmx&RfrcJa%pgK&P!Er+^
zsm3dfD4x?zpA+p*5N*0m5iZHGcd`KLnk<^94RPnryVx?uemhY|(}Q8_=mYhj(Gpcm
zvIVerOjU?~E&M3w4|#p%c>B0hx}jqy=9Z`GE}gx+<sc=asx~UZV;V{}&lKB3kjEJa
zK2bO{24a(Arr2d}@;uZnP7vdU6U{D}RwN|W7iV=#GONefNgJV&C{Nq*(~*lDfmVo8
zR9H1q(L2JW4X_tDEj3ahw;Z)=Fxk8@_P6h}^S@dySmnCGwo+6BBK)+rv{b^v5efyP
zZIZw7w}_(-v6%3<te?nM^rcf%Y;~o6jx(*}KRn)!K>^J(qjn2ggXu7{yndWB63p6{
z?TNp48;Qkz7qUqe+GUL75+F7Z#B|$pc1}-DA#BD_)sOAs=0&b5Gd^NZYtu2ZvE`ES
zn1&Seie|?`+tXPH;(cF|&G+SYitrW^e}`r{gutI}?wn$`$d5%oT<1(4<mIB~#uD{s
zVD&{UrDW^TiAk@Id<1V<(nlAB{3nulN&-xhxh}_!JzIx|(WWw?tdyu!5Kvi_O?ioy
zI3>6wQ9A!Ef1^kTR9wN!-6^opSf{-2pD4F3`r5iiVV_YQ@%``>{;@j)J>sf}W=;*F
zq9jSuIa=?x`w2HpYr7tu_>cBpWmhAZ@e$UCkz$Ggs5lC`{qD0zqg1E0WNwXEwt0tt
ztX2;#zU4uEL^2YZFIh!TB@-P!5AtgYzs3Z^Byp)Rbr0B<E!rka6Ym8=D!FS(q+)XJ
zwWsZ>D~lld2r>W_G1dJmY>P;3kTTvi3rG=d(%{!@<9`_nJpyiZa=N5^hs#XKu;r*o
zyL=Y|1G*96n!A3-V$k^=zJ|A1Bl;pV5(g*QjbK=)i|7+MK6qt-sb-5m!r98lQ!t}m
z^*+2oB)?!^`yba*qFRM$Q!;w2`**MhKft}Jey!H&Nx}dFUKhXnx5`Ulme%swIJi`i
zJ4;lWym&LHw|(we?S}7abSeV%adq6m4tYTv@Vbn0@+oOBo{4|?d%dF#(4J_IbP4x<
zu8&={(#@m03E<0_jq5<cbXf7|*7|Sp$IAw&bA$2KSpbL+0Soo&VQ&z78Jy_WsJMZy
z0y<H%vwh&Xj`^I`IGiFZaQg55uHtVY`~n4*qbe3mspg;Fwp3i5B)XT^?v4pQn6vF;
zCkirx{Um3-NWUm2QcbU)e7R|O7ImU==Grjgj>##uIe)np44Xn#gpI)}H{0GPUI^-n
z*365Esv2lTYn0Yx%fF!&^)B+D;wNY6#xdw{=dCkRRA-`ImPCzkZd7%<<4+xs3OQ{t
z$w1u4zL;p|8Neh}-ho&lSpqIy=7?GL-QT){C+89aH<pIQQkf9(EZOrEd+<VqP7Kcw
zs8%RyA}Q$1wORJl3m9MgR%&AwP;o0H;yqw}6f-pa8-@;{*WED4o-7!eUyxeH$%)_@
z%tPTJ_F{CNw1DDJ(?;b|21ZipKhVA|rfvefsQ`(kSfsZhTmA1B=*K*2A&SX26$nTX
zW!k1I^*bgBl#bJ#QAHHhX=czifBLC3cJ)y}6Mv9RUd(rPRb2s(glRMxap9fA>`fx2
zN@Tf~@sg*Y{`5Z?=Mm^MN96#A5G%oXXcgfjuI^!R{uNwU)LPpn!q5o9-=jKAj7SK6
zU-h<oXY!Lc1WvLTGEObEXFA0wS}Z4gVnl+TT-(py{5PxVs?LYYncUM}I7}y#`lHSq
zi~t3@_RpXG!3WR+Xaeypjwqp2Gib2wx4-^AuUfR5rMRL=_!%zdd)PCB+A<LjPyu-?
z3CIGw>}6L9<p8x~NpRnBurX)uX;o{|bxCNq(|Xu~gS10#`{yDIJB|&1eV)UVes-7>
z<V&b%8pFtlZ@l2;fBOeJD;nghu30S*7_ZQNzxbE`IO;>zfZh)smwUtMl<+1_zK`v7
zsJ4MLJE#T8P(Y~1?PLdvG7$}<s7It$oY=!KV3}`!_A`)ZWk{&7<3ms+q8WU1qyIJR
zAuZ@P9Rx8NV&?;W?cG)zB53Bsy&lI=c!|9S*${{mqKWzxB?!^kBmpsVTkYVPydzQ2
zh{3Ic*@I~)nQD6^&_<!Criy9P<n5)T1KGdV+b`PmJ313}?Zyg3CjSdnz1Xo2NGL`q
zvMCU;-tO<~MEMM-Ed;`N3X6N%CD^#>kzXoB%^XWd7l_!9U;Rr(lL3IDP|~Nb$_jAv
z`y2gcH(Jc}4Wo_Fx!UiSracNJ-;aX=R3GVP(vSW|7R*>39mENG<U9UY$0l?=c)+9N
zXa6%%C3IpPvZtn-<!$yqXXt5>aoZt6E-Gw>x2W0$?G7f47C3pyF$*BCd(`Qs5erHy
zqfV-Xit@Z4uCY5ZH#AyIi)bnYcj8tE20Q%~n*mLdCJ1cQwg_Xviu*ijSMkEQk<5x(
zG5ir?&om6ySjPV1Un*7tbHp<1iA`Hl5N;L1A>IQ(PgqI||9%-g#Ot9&%7}?0AY$bg
zMfRn$c*4kS@lK%N=lLV;^OtB#PSg!G2@2GEye&Cbze;6Or8IKl>E@gqo97zhcuR&Y
z7-R3A({&htbA5sR>U{kgr{_i|k91gAXtyogeul7lGRHo9jy6QvrTAujB@wr()q%NX
z1#Q{(`6g}eT!En2srmMj+4?<>$xJl6kBseHsH~926cWFLP3<WAeWU)oW8YlF*s*r9
z+g>qlw#~TGHsd&gHa1Npp6^?<L;R8OZ0^pX7;=}9<Y|0VVE5hrppwKz_FcEk5}ewd
zHx{-SbT)~j>?3ZRE-f7H-J|Ta;(aJ}p0V759bxFfFi(%NJ=|EaJtTtVhK{%Y=Vp$5
zO$NjV6xl7&W33RcR?shOxYQgtV6@%r#DduGg=hb>z}_aVqjB!Zu%?T~+k4$tBrlE<
z6=<UAnQKFC!Y&Jk8YPXgi!RhbI`2w|oz1tA?$Gi-fKL2CFCA%To!4!cFrZMGZ-48y
zf9`O`cw6ayoelc0Eft%ORCGu;*H5t3^Lb`ajhGJ+E)+bpb8k@dm0(2D!io}Cys^!(
zvuygQye5~FO`pLC&TY1{WiTvJlc46cZ}{S-O7AgqRWq3gQ%Ioe`SxbfE66Kt_<S0t
zP7g3G5BQ80d#ET&F^z)b9eTu@05)pfOxq0qqsJ~YiK{(QqgY2Lr`cm_^%QVGaHeS*
zK(~1z`zZ||mVD#_kW><E5g|FtZ5jd&LuE_haG^fv6i^MFFwU+%RR`+QkZv9sYmcR&
z%RtzXZokhi9-zm7u!873P5uk7EV&6U_}V`cl{rV0DJoVL%zDLCnrgOe^gnt+n_$k{
zl)a@7PY<a$>k)0hCewn9ARRzn*av=kl<y>&L-~X>1T{%CH=SmaKz7W4&j2JtkrB#h
z_SNgZe)89Dpo-R(D4xQ6iKym%>T9qMdXOfBFGMKvvZb3FF0~6+(F32eMy?}fE5hNG
z1s}SX-ETRKxV3JFc|`U1^+>x{^Z#g10=yo|vER+q_R(V27EFUjx0#e>hqeBXZW5Yx
zT&}&)A+)&bNQArvi|n3&E9((vn?mt5;$DV2nYmCSsZSy(0Z9buS#%4D2niF??E2{n
zj83;80teKg3nfP}(2i6oaY|`s-cfd+C?ZCQCF3AcB$?BWu*1ZSq~o_}UL=I-sk8YA
z`GgpfTvK9B#1UfsblbO=UXm;o`(*4gpowYb==FZq2XsS00-uO#AbN?AQe>3>`un>^
zL^a6^+7y5T6WcL<XJDMK{Z((fzT#z4D%ekQ#wVJ;*82zJ9K>DXVJEKyoj<Q`cYC5>
zGhSVLBl=d^5#`hXuZFMuSAP2URivBj|N2)5t1oO6s~A-$`U0F<)b>cBG755k>5q}=
zM9M%Ya)KP2Pd670vAN<C>Fg84Z8%XbQA#-6c#ysB4cCT2PRSS+U|v|!!S;`pG;|Z@
zurtSmxqkygQ3FiLvHt*uAP>yF!ufLnp#4#&Is=TL8(h#(#_=6iJbaP;4ig?184q3%
z%wFT|l`gmli3-jUcqN1~%{*FUv+G$IH;>bIZ7D}f1NxfKM7w*9PCS~>Zx{3i-y!_P
zS<Uv1+ZCbZ;|41Uqr`s*ZsfQ7^lJ`581-tijtW>{J0#HOYVE4!x;BcAR4R&si{a7V
z8n$mbu7vDD)eb>ow}G)eG0jeJBqdKQ(bEZm2_q2PlWJF7&Z3jdC?ZKw{0an-jRX$o
zl5hOuok5at`gkmnU=I4se^n$$&ZY~g2%Bva?8?(<5u-v^oR`#r^TP4gdr7MhHh&k|
zBb~D-nsfZiD3p$~DjYVe#3kmgR6EUW3j!3?EsdB}+e(3I+@pX6_%4kp5YKwJmF>Qc
z!7e$1w?#fGl#D4bGNgbgvcJyKO~m?$yv#_w=jm7X)_F3?X86%|qNCKYAOl|5>yz!G
zJN1{yH<%lUwE~>JE7l;3I8GVMLD)>1XKy%@EA3>U(IupsqffDyb^9#-4|mM71@P4Z
zN>PLZ7%e*5z9qb97p^^Q+TZp^9U1@IR5Zz}j<N>`!s)IsB1J*FKT8a}VRgOc{9vS!
zJWA~UEmjJa*^Z5w$3fUI=yK-GE;f<C1Sr4cCy<g}VBYca0(gT`3I>%0${f^nWtI$9
ziVJWqjB2R}TLV}9;7@yAUx2!~I7tv#$F4W<RQtr03hU@l!TyRLXkrs>ZMNa2u4g78
zDw|HRcL)>Ed6Z-nz-_9{9w%1dE}uiDUz-ifXOvP5-Rzti6G=`IHoGmdi!blqBiSr$
zvqx|zg3{1P$DB-XaU$wzwg3BXdaRfuYnz+ESkPbzcU<?2A6P+)IHopyPNrO8|6?{<
zJh9WwwwL@vM1TWCQ9Ov#9ekuXsi%#yPY7>F0<`LiMqIAjBq|sF=$O-N=owBeZbwS)
z=h?$xb>ctE6MCS{CWtK7`Rinf+}!b0J62@9L~gK*bv3u5kw(QPDdGO`7Yit)8d0P=
zBS{k0w2)bNneFemlaXk+AOxtp@hJGs-_?N*2$aL*A>s6%Xg<!jJw;k!X3-a;5X3I*
z+-8KzC7I``)w)f8pcKl*BcsX#(!FLY&O!85>BH$F=><&AtF=~Kv7;UyjuA?h9R6pn
z_s<gr91}LwsdX9(248!}xi&>86;d43TLat(wRA!dQ9BULmB-pQkQKI<CGn+v%=SW-
zq;vLGi9Avx2QlhGFY@dJQC)F$oiVO#{Hk)h=4QTk)uzBMHT1F<57k4@#-b_tz+(It
z_d`J3tNx*)e#J!#13N`ZMbRUkM-L9Ng@-AOL_;UV%5ZkbKI1TVw}qvfr*m!V{C`_>
z*nFC6e~&iBaj}S97e(w3!o`ZrtiDA;=m7`#+aLWazR;GaE?Egn81sFKdFXrp*-v$*
zJkiM$)R+niy?CsB`8Mq#k4sDoZZJUTy6^lZVGKZF*qTHdR1blQJp0C6?J+?jGW3vf
z=m8NR4XCAthsxt|d@n8Nc3ynbe?nBG&KVnu8=ELZ0F3$KSO37(jMz={lVm3Mwfhdy
z!|cFaz~aZb80Ppn@ep{$=nf?nT$1^8zTHiBAJ0XH%#71)(?5#2#=#xLdH}izo-dtk
zUlTD$#Uj!C6IcN6g2sBQ-y8EA3(kq&yYuUBT;ty@e*N*B7rrL_?3J=2e%;(0<Nu)M
zX~zHBe@S%U|4TueZUTetB2jpD2U=e1F}ZfN008HrI%+HsU>h3nUnl>8%$Grf80@%w
zSgyyu^!Ht-9mc4bRM$Y78Zj4;(e*|DM$|t{Q&=iqGTbt_i$fbQ2DS6{^QRz5%p7F{
z@@V47m8csAzvXv$JjP56fFG|6HT^o7KSuPF%N=lxEf%2^9MxQp`vb8@U`LWfm?InQ
z;bI1WlgH$wDw~k_=sjFwt0WGFBk2Tu(V*e`{++NU-Oh^W5pzbK-B-2|r!a#2;lp{0
zT?Km{hf|ZNs&1a1V?P!Q9B(?3n5(F6K5ol|?<JdeSNT1TP&kRH+xQ$dn^*aBML#FL
z88N+4+yX>>Z?-P6>m3fnXHB_a_f#MLL7yt8CfpomAALwLu4tDh&9^&adS+Y~>k1)O
z)dwYRLgtT5TO{w#h4&C|4q1aqA6aO(5|b0R(F9^-%(rvx6KwR~0T44DmfFGg@K?4w
zZE)Nzh4xdxuge*UqVKF6d&{M|x;R`4H<edrce{y!I>CiX*Xib|)&3dBy3OEd)M;2G
z)ExHdgF+h+)Y#c6LA;b6U+sVISfXy~vygdbyd4k)*f{7wwGe|2#ASHIsMxJVfu8$L
zl5xn9bueQgv+QVlxMRkUccfe!##8jPAv5n4|APV++|?i_F?)qjux^&QZl^=gSC&0W
zjEtQ`9HS)0uzB_?#}CHAbOJ)?i~?KO?U4z#-uo^8*>n~WcP@B2n2B%sdjN=CW=)Xr
z(@gvO#d^qb25vY#^GuO_?b>da2w<4`nRel2`$q~vbxoyYvYAD2OlGkNrLS6Ya!1A!
z=7z^pWtDs-G0^jNP1C^0IMkhzCxwJoWi6&;WY|1*yL};ZP-G-=Ie4@Y{fRxh+~iK+
z88;qlUoRXK$&nY)B>sU}5f0*u6KtSuP$WwfK;>n%)sh$|0_nntK4|cu$XK!nRLmAs
zOr5E$%rukTXcsLS6q$%{ho~=k0V<l!n8`S#?;L!7>%hoF*x=HpO1@>lSB(18zVSHg
z6ofuoGRc|Zk+2GcmJJ=qAei&PG-VB?E%JM$t@Ae9$WsF&C6e)}j&uy@UUKpX#!B2~
z$(<h=g<iCw3H?Kr8C!@?)&iS*C&R!Zl5@P0E#-1HP5)T4s@sX7ka8zBUVLlFNlVQc
z(${3dA*40i0Yf<exG}L$Osf#vPF5y3Y*VA{KYvhU0;V!tfNSxp;Zkz)ctdZPAQc27
z;{k2<6ewz~$6`mIXjUHd@XG7#qdgfA*N=LVQ~>+srX&LZB$n|_cAd=~b7;&pqPAiL
ziunqTHaichvc{ek9u&y~(8brQv4Je;`H+_*ZniI&K>`~x8%ZB$D{Lg2eP6cEpUSBK
zlq6<#V{&<k=HeUeM+dM3=H!jbvWp9W(VW3{?44Xu+<Ec!>TR~_&8}a;rC)8afAVz_
zPC76mq*tnJAQC2PBwE%}r`VBO21cgfZUm!+XbDSSPZN6|KF)siGxvuA0-I6GT*B^i
z#Up-;9q@rpk=@i<hq(=7w#fx~ez?uv`^LaXE{?d(ReDmzC47z)*pn;tPR3SfP}*!Z
zUS$e$kTE`Qve(WU6q$kwhZurp%JLLtB%6OG*aJTr7?~{2>fA`N<S%WZh5h|8$)3G&
zU?dxdb&3Ji*EO^<RPlHWQlE^lYknLU8H*nvq3aOCxu&=Xs?)mC&dDAms~Ra;VB`QR
zOja>`$mT2?T*~u85rz^~7o1m^BH>A2?4;|>shtb(p!}L;Hvv17AQ=Q4aul+bG_%u5
z_M6W*RUV1hvQh9fNJF~$uG9wC4vZ8bvJfRQmsbw5xaxhIIJfJ~K*8q!W&e4Lud?da
zCUQ27DPb?4Rt8V_ZeXNX(#w-=%4B5XU3p44`1z1QkuhRyDHR^i6y~CS8f%kB4~i5>
zxGPW%$2Qj#6(pIeEc?%hK@r|E)#0!l^ECt6G-0w`{0#F!<x6Y%DGwFD)OOor#lT1w
z`YK*<L%nz}jHIkaMRT*s&)^DAdBR@!7pIOpGT<}UWaj_}!_T#Qft`37(HFpr0k>XZ
zvwIJUWXQbiJs|n+OePu@0&4rRATU-&EgmI$+(qM<eZg^d&ryRSqtU5~mb~6%k4+bh
zHMvADAs^S5+6qNCau>vj|8a&kfcS9ffZ^eN<GomKzn(oP5>ZL1){M$c$MevhJ%^_T
z%St9NFfkXOSuEzdPZZ(i!sDZ@6{SbHDK1Gf=M>sWHH?jM5F9aWE*e85PH0zF27rXG
zRLdZ3buT4T0;aMufZ}1V+AZJe^8ztqL@h@(I<^4r17E(ipwTQspY(B&p|Grp+;$~k
zX!LQrG;y60HeO3^@+LIkb4P%IN60e(bcrxoX*Y2Q02pjcx!hoisXg94_#uxHM_QdI
zFm8GPF{#NEWH8}|tv383F9)mxNY1UBTMzLyMU#=Eo6oeXw`mip8k(yVA<>X%&R?L5
zggA_9BmoS+A5}m|W0k#b8Td_trts>DzB6^v&)w7wc?%IZ)84(LEA~cfyw6{D-s*vo
zO!a{**K^Ly2EG^GZAT@593>>Nq8uPAVjZ~;*wM*6N7hc}Z=jG{tFM@AGV&=;b-bm3
zU}Utou2cbl`8g=gZ(nF1I(kqflWQdS2f)e951F1z?5%ru8Jer>x!k^Tgl;Bhj!;sQ
z11kI}#m@bn%K=vt-hw?fZxWd64!h)VZUsk(IlA6)lhDzgWPi!yjY-N#5=;;w0|_t*
zi|x|A21UlfWX?r_UNnY{kxWS5=w$qptI1T=Dwvd4UT}i-et>e42A~vwaKe&Hiqg%{
z)9i`E2gz0DV}T&`PCfsVdrUIV{%K2}9~jBQQyAAj{O=WI=I5{%9>B>gCIU>!rJ%W!
ztrv|$!?fE`cEM4Dgpy@eV1KWa2B=uFIqG^_-2?hB2Io3#KY-F0*u%xT*ok;P5<^@C
zmO<mN?3m!)ykF>nKu`;gX94O_BkDjB0NQc(JCH0Vf$|3*U!9@^lzr-rdKk=*S4xyc
z05uOJxd>#15$w_+M}jL%O$9bCL6HgOy-7Co#X!02EU+~zn%zJml9KFXX_;EiRi~J&
zS`@_qg2@!{c(lMS-cb<?Zsr8(;B-`HG6|8KYj*~(Wbz;y1ZO!=&CE+QXQkLRv~;7W
z_?O&lKRyr;NrED@*1G4K2{(jgYq3A53))UIe}7^tjt7^E&$eJ!q1HV49aq|GFBllf
zhv})SXyNj}Lz(dPV7b7-N^JmCQ#=;rNpOQ;EM5``cq>WZ4FMky_zklwcu34EDQyBJ
zjG#M$0^yY`RIv+##6bP$k_H7Z6nkwYM7m@w$%}8cPxa#)^suV51!7zWRe(12DzG2t
zaN}XT;$d5qabz{A=Je6_LXcvY*G@KqDtqT*z6y^)-b4}+k~AHp2`dvai{7(09K(%}
zNUnkuQF2jZa{z|qFKx51IGwLJWa{s=ccpRLk|(jgzO<@2Fut`ED#|cBUS(VV85qeC
z=!7E@D9oDxKp*fQd--(U5#fTwIM-KUiv~j$Vc(f=pF9+t!odj}5Mv8@ASq^u3Elz8
zVjKAl5);udy#+23iR<7ww)*iwE+e6Y-{XE&hVq%zh9UD}*snc8{qH5|AY>7GOAAoH
zccy<-SaUccuSj-7+|mhLYxFNk!8e{m6x&B>8Hq_H@gX67Js0`~Ij)1GM2$K7llzR$
zC|*dnTkfBmrJ(@Wk;*D45T#)Num_Kw?r(0R1#&BaU=k;w&iL?{mHxwf>ZlX(3BtJ>
z_c%a*ZG~SPbnDPGiP_ZwTx_Hm6^lVQn|`YQ;6QDMCd}c95xfb-J@6Wz%mxypz;+2z
zV7OGt@c7tF|B&p?V*vTFJ5E9>7MjB|{j(SgnYIv(HmMvDlgRUQwEx3cHx#tHk)H=}
zvFDZJh{Leh&BCU#)nCAo(33!L>WN9FaViN&d;<#L<NRlbyJ4%#%48Rq8N}iI&k_Ee
zE+!(gl}ZQhLQ>3<EPreozbC_5M;rr7kBeg<5ie?Zt_eV_^uwRUq8lW0D4`9gK#r}}
z)8w3~ibzfwOuwup!Ten5lS88;FJ%Cm3gs+`5YrTq2!cx+{dM2F@nW+ex^~VoQgZ6M
z6rkjkL=`=)(m%LeJHRn0EZ{{eArWuZ`KVkq?jkl4`l9Ga;Q8W?K#6cipoF+0YUl>R
zPIwF6li^LO<Z_`+Wz>NcDT>G__@>)aya!)#z#@t8iQfVqs1pMnxX|x6k;4;=1EQ#w
zs4brUQ}=n^1NvEajI);nVBiLpVh(-E`)R2*O@um;wz?XuU#@v+>76LqLic#etGr8p
zq8a)LIjnE3Z>ugPpSYBQCH=s1@6EeesGtMhw}2EDQfx*$EcT90C6GiU8)z9RRW)Gi
zmb<+}|JL7UHHgQGRH2a$$VfMM^V1HHk;YOukJuAFbIr4F_KtF&W&OF;gtwsF2@wA%
z`~q59sd7>Ep11f@U1k=kM0MxMX28APoQL%cvskZGJ0fNbEdJWz-cK*YPNZch^iEzW
z+d(Y6=n*e}34I8?A$zL?-Y`6=G!F2eIJ?_te*LeX!*QP{G(nLYNSP^P@9g`dxl=Bv
z%T6)?Lx7Omf>VF!a__}=^fwtzjioG^>W^@E`#<5`uv|aGSrf`DZ&ZTv5>3T@UhSjW
zGPbl)QnjPQ1Pko^pm(iYEn-77wg$%R_O;%YsqBKhYz>6BNYqaN|D#!;YV7oU{&pYD
z_8Qj<b62!i+(&qu?LVTE?i|0%1_3T2sW=7#7C8RF`}<4Mb!mc+n*^s+2k_J+0E*=B
z0(6t!@bI9EUp%(>&Kbdiv!bhKa{_Uc4+7ix|Mf;sV0%*75H3Z-jCjFEf9RQK7!64u
zn*&%+a$Ip8um0@qdaHgPM<r>wYVc&Lx$=AO%R9IGc}nc(Aj`3>RDr^wUEXQWo4q$A
zr?1{A`L~Ou92O-pc~4rXp71HW$yRuet<xW6l}dKuCW+e;NW8z<o3j=~Ar@M6KmjOT
zTXjPKa1~T3_0QAHB_Dd9P499T;Qr3TAfa&!{D~wbm(^eKyoW=+;tiPN=`t$mGK4aX
z&G9Zijd2joB>^r4+7wAAnv{|LBdNM!=pEz^^nfQ92rKn7@AE}E7I|&t#Z%URMPDB9
zUb?#Lf|5EGB-$O=H?sPGcasF~PH6NO$sS40j6PZe!LlfAEf1UkGRFJsc>m(}2MfWH
zP%#OqLs|Dpg@12>LvvF1Lj&z_nwjKp<A$+!YB3wd;W3OLxr$(c+VZ`^kNF9{s%W-a
zO5qui7<osyZGdB+@Q&o^1L}mZB28=hV=iyZQ2)IIovu(T8%T0oLGhLK{_m6Z`xHoX
zAQSw?@km>`=~d@vk?0uglTk0#dc^37Nc!P(-iBZKj4V+mPN|KJJhE0$U9}{hmI762
zW<ZU<Z8>Lx5G|?Wxjo1t59q<+K0caqdj)thRg))&5I3_X&s)EOEx}6*&B6tn(e(EC
zVg4A&GSY?CKqWe<R-}Uhb<i?SI*!pu>R>cD9vsM+6--D~s3X0>@;uUokBCx9go;@$
zezS>wW*LG+G{3V(^pX7f!XNdn#nxB~RwalC0)AYh|AixnWTXW!NEDr5J}mJ|$iB@4
zsPP@4=3JF}e)EnVPGL0_ya5S9+j+0M<oP7LmER-3YqTT@@!<WoR{L3f^t;14t-LT!
z6spfj|EFB+C%TK)W-18k=LEBKx<B$m{fushq8+S>tPDwJWs6_?U%ulQ(^>|u5O9?k
zNYLP@B>%*Rv?&4y3FMG?12S<=hRaHgNF!n1T#lsRP7_1Pg9rIX-lCIamXe8@2*@nl
z$4Z6%V%MbaQ`3C%Itr*LX9}E?EIdFu-8!j7Nc9TrB)^XJPkK4}o9UAMQSy63C|*9v
z-+Y69@8Bj_e>Cip^~+gEkcgB35)KbmEb^9HOx)FkVpqc&3L2=k!ND;;v|`D4f79(c
z{y0>JL}Er;NJ}xne|WKulrJ2xGFTFvI=;al__6!Wt$|NDQl9r|ZT^#A>Ss2|uVHf7
zKiTUNOjV;#Xoy@6EG6fL`#4STR#XD4_lN!3b$hV#vF(wqrvZ$l91DCl!3k0;Px6)b
zDD!Xl+zp8yOBa_)=~m&(_x)PGOI-+=1Tyj6O#c(kpVJx%mVg1ur{uCcQt(oWIXBg>
zeM(z9nNbcV#*Ct{fYkv0<$$^E3F-db!e0s?U?~S@$-#%rH<|v2pf^xXK{bpqxdzzC
zV&7l78!+2Rp3&EKBJ~)}X5pPQHG{g5^4u6htM=Ih|K8pp3k;_mHzY;*tG)m5juXaF
zFdQ`}cs-KBG}&xE+$W?aenxb?oin<EQ7sVTYQRR{I}i%ooJV<+qq_9Nu_M+GTG&v=
z3yni?!gLb9x7>SMLVNi^2Uo(8o_W7_|IOV$Q^X?5taSNx2M+^+h3SDEBqM*KIrM4o
zuAN{jyZjd3$_>G9p$A$yjba^84qQ>dX36I7|9E3}?beM`>6}>!3L+c1>ZQClA<_?d
zPu`?!1wBcEdA!b)DGmuYmbgrtGBDfVA*Ov;+^UDY)Z4V7017DbP!Z}-M|{%F=*PUW
zCl$L>DF~K$8iRrh;Ok+R-$?Mzf6g`HAp;VI??bLl@jjZVU!@XSog?S85Fj|rBPW!Q
z3b`&x!z$qcj0UTjWQK*kA7`)-5rSG;S_NJ4KIryDm4A^72`_4`gWL*6Ocd$igeL#N
zHx+yfgt!PyQw`<_2|0~JP@*P)Wo+cii>u27TM(oN;Yyh4FX#+F*Z6bzp4d|n64D6$
z0~sNs!A>I}h5uqQ8p!?6-OA@A(|?BF$9+Z@$oZ*!95(Mv_ZRe6A`AmZrAJ7uFbQGP
zqsH%9qz#$X6vkG<%pMoc@xMMnKNrCPFbYChsu^16?}sefMf?(NvBs$j3M!q&c?dS+
z1PQ5c^$&PM&qM0hP$N{!LI`3fwbW35<W022&K{{r<S;M?VlTILezw13GN(^FRSH-x
z;xrePp62f`ML(mtq&9&_$$|_<XZVLExu1g}acFh5tepNL!Caf}7aXn4g3}|C$vaRW
zR3ut*ftb_7eWEI33<3`TKOcR`1&+61QK)!w{YzOC#6Ls16)7EwI<v%2a3a18E{-{Z
z0qBPwk3$B3KV9b^Gfn#;Pm`;QG<|FoZ3ia}8J(G{6Dyn1!0PZ>=d@y5-k9dU%F56a
zNM|VEMEDvc7*Sz>N0LtQ?--$DPl2W9tMZ-w%KR@5VpJ3m4Gbj=DVY?2(WmG8mz}N+
zyauh8TpMr|dgTYK2OZ1(r|5X_RrOl)jO<v{4y^NkBhLbRr>?6aQJ_NE#lI{3(tz#&
zW<v-gYoi5rqomM(L5KrfS0g->gd_n=U|w7=*JS!v57Azd`<@#2!j7pB3z>akvof=S
zu4jpe9-vIMfDreMCI&pef3<&{uxwb^q<4UHsZnW6;0H9aW4eEg;9MyYC-qwacH+E`
zkaQ+;DsodiYrWx-i24Fa>>rluuKE6@vvi*-PgIKFC6i)^I(51~_E;Sg_5}$gpLj!M
zj78N$fuUpl9y#$R*Rg62zuOrWRMVHYkKhJM6i7ggQS0xKul+@pKxKCHL;z{4P;~mU
zwufix`UU=)s|D}yna7wr+y6yWK5`hHkAfm!9gl(mn_(sO-E$ORn>88!E5r0CK(n*N
zqZcl}TFwBs^4(hfqeWhl7u`mLoh*~L8yE#6j$0hMEzTnWqq%?Q-ukmFlIiJ131159
z@j{VLLT?$MgLej0J2~o6^#Dq%pgzT@=$ohtAV1Hjboc`wRygn)|C9~-Ig>IaQt3oF
zlms)N%<lnC<@XceFS*_%B*_$$Sm$4im?V4{Y=T3qK=hCn|I-)r*N}5`t2}++kn{+`
zU<l?;GBaxZn`FK5N;B;3QREws?~tovc{zxfgI?%03d4tfa<?*nz&%|#E--cH?-7j3
z(K{&Ts{-YFC;6oNmK8_AxPu^Yyni?NC%)oFYigi!v}2@!?lg09vH$6^xPFRwAa26^
zQgBSLQuUGkWSCpdNDmv-A;KhThYd6RNshf6R|_401I$7Lpd2+Z9AWcNvwztdcU*|!
z%9@Hop`_M->7#B(#50c3CwFp6wUBUP2Zwi+=mmsbC3O>LmyzgLD41(>&rP674nqWN
zf@OiqJ&yH1dt2uQm0+3zlMWSanlSs|QMA0#qBglgE%b_ES(8OX+26q%Cn4k&XAoLD
z2&_U`jBZOw*}6uD!UR)`0z}mx$!5e?-ZesA#3Lh4Q8tQlOYk))2#}(vd;Ny@<vCzv
zL9VQQmV_u)t7ax-<_z?SH;m^I+4VsmcoRysLt!Z|NLMEL9PvVzchqA~|738L@|&|r
zt1rcqM9+gFdXP`T&-l^6#4*m1MGC(nyc1XoN+zqriTW*%tW~-?!BR+5jE3WVig|sQ
z|JBYqn&@FG0w`fn^hw?5Wb^aq-k5UQ!~sSR7X1Y${^5FW?PdBIg=j6RUZ>(oFo*ru
zd*xnjD3Sz%Lb%Ck#%tU6XYcjvU5_|b5rsNBR7H4cG)NpjtPEX1oMxlfc7v`MG~dwZ
z-Y&@+87<FO6vNS|hfhGWZJ|L1X~L@W<U&LJ1%tG2K3RSo>y6{9tcOiw{2y?LPp%6&
z4%|tgXsFOI4Tyu8e`D-0xC&W~sK648x85U6Ow>`NFDk<|fRu`&rkZ!3_tA5}rqrn5
zx!|uT9e7YRAA08rwgj#awt-p4O>)f~uDbjEywS@&L4OgGN}y2HYrHo_*W4+;AbfV-
zZS0qLqeVZm1(<kfsL~De%&nEWY$D^qGFwLY3D7ovBq8+_2ot@G$o8c}{EJ-!9NsiM
zO%=Gn5S;A?+1djg{;Y~Xm!~5D2*vy>;720-hHQfHRiFv1F=%P@J$>?s*AIDsw)|F+
zU__5hmy6%<8dhnS4v~XUE+=y6IF0JA;l_CJ2^|Abq(CGM7?R>9YUjYwiU=WZ<3aDo
zJ2)kbnx&*(zyKmjTZr*zw|Y0h?9+f30K%Jmmus4NkN5av`aRPDGFmHM(#A);P)vp2
z@pF#t<-5Fm5h(D<ls6%YVF9B2iZTvRl<HxVextWJoqY<cDmgA;Ly#>1PeL_@cn3X8
zZ%ho5V+uVX>?q`KxOX-Rece@EV+DF<_7XC`-{*~yHzO`MC@H0~mfNJc-|OKTv{+Yw
z0_Ux+c)YZyn@=C~vfOxhUZUa^MO=dDDaDMz<OOm9Xo_IRP|&T+^M)_b?^&!AEjP+2
zX8&fC*K>CC=VcWlG{K}}z|8bE%flyh8jGJZ!Jsf_{Cl49?qF4VXCfW}(DMGt4+8L<
zdYAXGyZnw@PLm$VeK@HEoNC1$AQj*7M;+kLIoqu#&W4cGVM7q-0H?N5q#G?tCc#3;
z5Wz>hMPIw4L`NnxP_{1@ecmHp^5e89wI?MO=i*WdK7O<Jl$b}lo(pBXJI;mq>Xb>>
zI~Qn!`4r78N)zk#x>P$0A6{P}hbmgn6&c>Nh3=U6E-2dF9@stfi1(1Y9XQHXb|Nqe
zTajprR(My7{x1bR2P`<wny7B%&f&3oF83b0Qct(z072+0ybE^FCxuETO5x<8q?@Tv
zdefZnts=QRRuX~nN?3J@IpbCDb~y{YdALHRNSC16KBeA8KW=vr>0J*Z1~_m*(F1~I
za2PBgrQFme2sB{(+ou;(2tQE{>qe3sQTW3@q2t|emVcEnaPj;TekL*IK=O5<%~Bo%
z6$H3+szigTAPGP#lYyF+h~w%0nMjPRU5fNF2};&779seaaxE<5kqZBoXY?05d+e;D
zI6xtc+UlMPKj-0YYXCcUu7RSqn2d#?fzP4L=}iBs58N7JwnXgNox*G;P87m%Dp<6)
z`kS0$E(c3BxS#ifOboerq|yKG4`o?0Tk#}U^(g6%%#b?&`)~An6uP65d#YJb>yLM(
z7P)z%FQtK}i0IYo|M40tqR<fPX>t2h(OWXwn0Np7$ek!BoY^4ICub=NhD7uEQT|zu
zG0SXfMUFwjg4bfW{lh-FlY}B<w8}lA#Ny$;74k24g%R;DfDPu|kl`1zH_7B%JYq3~
zB1HgK9vi0)iG#}<zt$sxbv&&Cy8ne%rI{t4dq17TFR>KydRPkqT*&7y{qBA3xPmN%
z+ft=9SPday`U?~n{Wg1h3lkuwSAGG{$0f1$hC952#r8o!rCfGkB#LggFrnf%ec?@l
zSPSh{6%M*2(FY*`f+61g$y?pPkmTX525}>j<Kv>trV{$K<9tdZDX^(@@h|X(Y&F$?
zc!jg9sIkAROb22>FaKVMNyG;k>?u+?L=Z#rEx4Bh>SSXotC<G)qluAp-@Wd#6Uf*@
zOD=A3xFHcL!Tp2m%vCqqB`(htz7(^g$^3~PCk_lt>{2_eKfcs)p8Nz>hs>}gwp3CL
z#ebK2U2B%wpCs%k{<|1E`!BT*O5jO?k%SodM!T$-Nm41k<PQ64_db#u`->%Z%OBmw
zN+e9@qh)rmgo4M<A;mEYmfEBEJ#!S|ny#s_h>{AK=Wnss?AY!1nrY!ydy9laxWr&s
zh@`ZT%hd^{Y`EV}+2T%&5ICG{T~I<2;pky={p~K0Fm4Hmw_&sA61$(o_QZYHBrvDk
zX#eK8m?}bv9WI6HI_c)FW%dao>SX~GZ^T6^IzQ3zDKf=P+*sG4xcOUewr8>GZr`bS
zdyD;e2OSLjsqqs@n1(SQJZks&Sf>WLMN^m(rVd8McTO_{#4VQautam`t@dllD}ubQ
zX;1N@qWB*BPBlN>ZXc9HJn>y58`ALG?WEq_zK6lA=Pt1!3HXTry|5O?EwyCL>GGZT
znrucdwXbyly?E|7F0;ekRRN>mWm1EI2-7%mv(n!BUH2JC7xU5*JEGeR#M<G)!<jok
z#Lz`}Qq<P*{ll76t;<4DOqsH!cALPa)|&~G5N(L>66pey5~*`$UcbrqZ|^p_ROVc>
z#NOy2u^Y4_-G6br)nWm_J#qXb>q`=Y%H*Z7jC0+4q?pg{v?ma6$bIB6y*NwrsL7CL
zKDo;U2*#Z*Oan<ime`BBouY=n9&)q&qOV>oSTb70RLX>>n9a9szY)o-cF|J%0;kpG
zSfu>l)wkILn1LnbY1$b;4Mpw9r|dm|T9;pof5_`g?6p0&pBHIl-0gNh4p7EHSA>a4
zUoBbAP~qI>DkjEljs!YkvvkS!OO-@-*DkX&m?VC34kK)?TVii=OD&{eO|&{wJp3~`
zVWH8)Ok~(#!RNng_xM(Cy-O%5H-7!)c7`OaAo@huLNo-D!)=encF%|Z<@eB+%k7bm
zY0GGFvf=lV0(;96`_kRp{~oe>-(_}#8^7z!VH3Q<{^`<U<Tq5o^Mjqi&qpt?=ehAS
zU?*@#O~Mx<gzJr6eFGDq;Zgl38K?N1V0!IspYu4Rt|6X4?5dvjdI|BATuo98P2%V%
zxqui*MY<(cTOv}EG@6)G@^yvHvVH6%*A_obl6ie^`$1s)Y0}J9z3ehKO-_7Xt2FaQ
zAG^0iH+ESth~htc*=cShoTeq;2v~?$pS!F5k{qu5d<t0y72A=C3z^}Xo_2^^QJ0z{
ziRQW<_T7WGTN2oAW^X&dHDom?reoWj)ET}#d;5X7p@)0gRc@t4jWAMz3?$`Kf@$8#
zR=K^6#S|G$gav~`)#aXcn`<f5B&{0x#(I&wGke?XB}5kA)~%YDA0|E7?7xFO+D%^A
z@VQ<E>`;n%$=EBmKUR?45xwj)E(2SaV@)xq^tIo(JZSO9(Pc@*QnWP?0*Q43ra<<>
zObd3jbD}fF?}apIYkFDZ(wW7N2ukRLpbXxU8;Zm<Chc#3mwj}H%3efUq?pw3ZT?U0
zB;$vIx}LX#J!Jca|2=uSS=iI==MEqfVigN=Pf6iyK7Gq?BM~tCM3-o=Wb<l~{Yl;k
z;ULs=>nOtrM?y4Vo}G1zwuw7LO{t`g36YFH$t*0fpSl)2s-qFVR6qbQt}eIPE^mzZ
z25XL%G$|haUZGuhmyR`x5~Q^}UI{k_edmp}!<K48UMUyASA2`i&tvR4ZdrM;3Xo{n
zr`U#N`cqOrxV3Ogmrt}e-l|`_?*R0fXK%e(+v2t@`0&~y``2~<)(OcqKiB$hbMZ?>
zM*A*eFLa}IE)_qTadyr1|2h=ataI(RZm8Hc!0ES=5!f9?=P+UOV#H2z!vKqt$%HJc
zu#!(rwBua5tGFE`!Ou03vBdp8t|6I|E}3B0xvgcx%uB}96tr$IpOfu~t8|?t7S_{)
zn=#LvU>_4C+yyWs*UZ#Ho8oRD{uJ<i?MGpZCEA09mXm(~WtW6Wn*QVLBLo&QROh~k
zbdT6lx6UF;#<fVw9+EnKH^Kh*!7jhmkjRL=@5b2B8pwcaDEOgnhVAv5e$Q_Or2Z$A
zQsBx#C_#l2ZL~OS-0={iYbF=jJEO-V3C-l7DG!@u{%^9KEEyX*S1<aUo)J6E?MdFP
zTnw9){6?=7*tKq{`INua6v<LWG{Jl}*`6Z_Q}HD0OoC`W>}^M!!B_H$qdagqafk>F
zna#cIWn|G1*^=4})JD)Yaxg*6Z`jK|EO$d2Y_V(&&xu5{*S_{c`P^-+bkpA3?h_r0
zoDF0dYi-j6fl|Vhq85AF*#dUmx+R;k-uCO~bQ&BvQ8RMB_!3g(*UbOJzfAz10yCU?
zO@rjfCKCy0zH+PosLN~Xmev^y+p)&Cwp*iQ5nR^C=DEp8tSO0rb-!V<_N1B}|MY)<
zTBjRR-;M%EwoLvi^r+YU>6Z&@(Pizz$d2E^o+;II(DzUjjcnEKXhBkG=Ivhg9?2@C
ztB*FY_+)eKUw$7M4UGwMi0gs6F>EgCYoC(vb19=qZXUuT(c!~vO4&R1g|esi|Nial
zxvQ&s+wa}JBwvQ$%eGR~#kv9bwc~&D)9z#BI6e+hiO2(ZAYm<|sktbBBZZ8U$d8j?
zQg5~IzD%3w5EQ_uF9<X6UV~lwg?`Sj#wy@SvcNtAOoJ}BJHM+<d1Niuw4PF18YR)H
z%k8Eh%xAJG<d8%+E?ne+V{F1{PzCrndCD@e6rP!Lo?Rd_#4Q#%m=ti!Y=y`-q`{NA
z>>7Zs)yUINw&QB(purGTwIgb`YUw(hg;JUOm_zOPSJIkjT(*+Rin^@?E|KaTk^Br}
zKX6INw##))N!T6itQBrtt$@Qt5VJ(lKs0{`^tOLJu5H_OOf>iRvIn`_h?LGL*UaX0
zLLcAT4tY|Sk|#rT)HH($PwHu_1ji8Q0mb21;r&Q-jPf@9A3w=05g3!`WYC6WRAL=4
znT5vAf5xqYGG)+R3g}Qhghp7y4Lxi>w*k^s@LAtaBD`;(p0?y!?S(<3p6p>LBc!gi
zq_CON$6g`N0GKAgD@w*$3g`aNHh+PDG)}NsBSa#VunkPbX%_Dn>C$aqspjv0{1t9r
zV=AQfnUOldly3OPpDzywH?X)I)1A-QxzG;pZ9kM{#$^^r1AE_FXy3U)r|X*J9kX#X
z$veba(#Bw#u9q>XtW@6$Rtbq}^o#v%>kETdz!ed-3=fZvEx^i8y(UO*uCAZC=R2+m
z-nQN6#JJD7#PbTmN(rFJYC9`fG@C*2XRE9D3jHx(Q_KY^LzZ21zzS};2)T6@h*nhT
z$pILR2NwtLID{sW6*M4MN*;Lf<H~x@Ief_Q%V<e8FV@a#p3#nNHxxiq_t6=_)v0`s
zUp_B6x=!RE4E~zXzj;=54X*Q{0Bq6fNx@hC*?$EGNo1(l5CZ5^FAfaZ@d*|yc&McU
zJrzj_Wp2u$=L8=bt!F`;Knw294eXF(;_MTy4&Ed??7kOP9NSBpc^|6W)Gj_90Wyot
z%LyhQqoZ{mIFI39Pc|X;S!{4}eF#8_0Tg<lo-yQ`mk(GW5Rc8arj{JANOGx32?5UT
zpQD4DbM>qyZYVEr2Wuw;Fd$97F_=41KNpdusIh(n@n+-$4ZuYle@5`fBN#5tjBc;5
zX_w@5px9J7tCGCn5jV43v<(eSO)VR0XJ|sE08jCPD}x)y>wvjU9TUN_t-mt(^htUr
zV+atzNJL@0I%ri|VgMYo^O?cPH|l_S8+e{d^kKaNaG&cJ2EPdDuBcm1h-PY%ZuY{=
z;DAg%!$GzyA^55p<zjMxQ{Vs4;D{{@)&XI3Am}w^NVY(j=6H~V?R8?4;}qZsp1dUZ
z?O1K=x*r&u*nS{5ST<mfsA~hA3BcA~TN^z3a^?Xz&>%NAekBK#5)PnT9yL4ISN0<=
zob}~+&dE(smMtKPvFu<@@%}5AHe;5IXTsqWf#y$^2K)c?Z+&1WPR|Zfaze%{s%f7k
zX%$lv10bnkCkOYsg0Z9|HrmSQEs+{4fCz9~S@8YMKs5eExTWxlfdpWBbx!c+33_rA
z4X7(6jaYh00AhB{;NZ#a{G8;~81kBHF!rIZ4Koj^#diu0{E+!!y`aau8lgnV+)tYM
zeUqeamUHFh5^KmCHE8Do{Pu@4gWskp1Qo+IwNlg=v$Zs^g!#Aq%W#}rY&fhvHKp(v
zOp`8XgYPMI+J(YN0@%~A3(&;k?%XIPRJI3HQQ0~`#byv;ud(Av;T)38kW+(S^*&$)
zZK75|6Q2~|$%Wg3sh|NM_I<KVWB9@~J3tiDvNM92E186#)>agth=(=eHV*PiG#?%n
z+%lH6N$4!rnCUIxHHxzZ`0(JsAy4kd5s(H!@EYg_{3^G-^5Nh<f71sYdM9>F?7)s`
zqPMAR7uFY`Arx(DuxLu><>=cXS(`ljtet|zPcl-M3rGpcq8~av`0WVbT4H3;q&3%w
zxB<^oiS3qCO*B)l36A_khoz)C(5M&=ene36%HF|i|D$b`Az_WcLP(z1w>t%i2NF2x
z)(7vH&OQo59m@n%XY3Swon_KZVho#gJis*7T(WcUs1<s%l5_*`!fck#ObO=r9fHT-
z!(F7AybW@$NCWj7K(lgx=rK+UzWNvas3YCjh*u*IDWnUZdu{OSVeA@`IAcQ-9#8;E
zSYF=p-|eH#^x(!fzy)Bj#g0Ns8+j~yRt6s&!(5VqT-8VN&?#FgceUHRA-V4|An8@$
zcx6Bs%>ayEbzYD<XL9s89IlAc#3BSxp7vN6{0qqMvbN*^>_&8LyvbtKqi+yyNd_a;
z^2p%95uHVMJFApxxbm3L@&r&h-&q-aDP8B1Lf7C80Vb3%0s@<F4!$K_3A=I%dKQwx
z(h2yUAN=i5S|rp|EQRiZlN03ulx!q(gpL^hayj{=*vn<d#nti%kWS<vhL#4G2;LVH
zSZ!T9+T~=y9LN7^_my*nbP9DQ$!`FwLGX8bb(`K^4mIUjaVz+Qyo3RKZ8Fae?z0tO
zKo{%Epb1Qpe@<TDfd>T>rZO5pi>e0@5*$S#O5p`AxjeWD9Lej{Lr_pob>Mn>Tkyh{
z=mvZNCqgLFpz9>qTpFAvi<78qspL!;C$$M=H!ocf#KE~+559*$#IA<|u>b;zfCEU}
z&z&87>TK;XrW#%_H6+6vctMa-aw}k)3g<S<#L3`h3^UgU-C<GZ3Zq^_QzJe(DYE(e
zV}rOL3BJOG1}<PO6b0Uh?e!iLTn^djN^(<SDiTdYB-nSc!e>4;ZQ+}E{IHe&+#z>;
z=zylZvU!7&8Q_JrX3q$2j<D7aDwr(PG{$EolMHm4Scip`;&sAGeSV2TP#i2kX~7Y{
zof#|^Se9%NwNjPC!B8kk2>0c^gMmtBAtlKS99JCnPXoh|$aGQgmUPAbd9BSgvm^pX
zViV-Z`i}~pzf|{G3~vqPCWV-woZ`aZ#AmyI=jPrk44%8)cQF6I{+_4wuisJCM8C^J
zmW*%B%#4~lfE+z^Z1DY)bsus22Z`cP7Db}aSYZxgG(@OEiuu2);ItpPm2PcGg1w?`
z@`g(5VSuXyKcMK52YXgskYsR5&o>avhAkUR&(lCcJb7gBNr(yHlpz=y{(vecg1x>R
z5`1qtheH;T7~R(IQMwI3LCS#g85KgB7>?520{-VM4W9J2&NQJMFH}&6puEHYu^F>Y
z3O+mP-xd*$EkcA|D4HN$@=?nT-SuwpuHU<#6MO{<yE_&-IDrn;w1Zh|m60U6j01#`
zTvw8TS0e;S0*$exkQDk!Kl6>geHQGxE~^+kP~GIx2~b4=!dd)`S2n8uyUTW5N1nF-
zrh9vzw<~|F%b0?95Kco{fHledd~u*p+0J?McUf0F3GsmBwPZmEhb1oSc@yaW&8{Cc
z?zC>~XkyMufYPM;D(vQ<tX>az)x-L~&G2I<n;eYe0c=*1DW?VIB^edqRm;7*6Z^k^
z`;P0fGGxk%GJIFi>W82eSyu+quivR5dsi76plGQgZjVxInyo=<)g+l$Z}slmum1+R
zkIFY$RXFG1`ao$+B=!Moy@CO|znZX<Y$gkXZ8`2qx*xFN1%c-2x}Sm!Q$WgsQbgcJ
z@%Kt3oRb2lmw6{_>v#42JFbglkU&NJgeg*ozBk!awtJT^=|AnM9oLP_$FEd~8y?UE
zPb8cB-#KvEZv7Sw?JJull}unV72(AxR|v$t-k~G<f5Jhq&j{iKM+n^`iK*$A>W%)Z
zZ;xTS$u^1IB8wAshD)3AAw_*6n)3u)Ig-pbS9lK{qI+f0IWWn%UWlG;uMJ-R?0&1h
z)D>ly&Xo|@XvbtNA&~#wf%yabHL<QpHn@;VgmvPXm?SQ`CT*5?@XP(Kds|PCIu|v8
zLQQ~!*A!_EPy53Aw%_ibC+#E$fm@hFK|tQbwE;EAdp~&l+}MB16FUmf6_=KY3u`)#
zaUrwr9{-S6`i6kH+zbT0S|oI-J|vE8{ca5mxn=h+d-Roip%UYzffG*LSzr#(GUo2t
zfuZ*+2zEb11diq2Q^WNP#}yh*hFcLhOb60JX5T9R$S3;ld)BV&MvWEcAY7wL#ZMg6
zgD6AMj<dX73U*(!OJ9MMaiukZ{8CbP0VvS?h3|R6y>>5Vms}3w56A!|1KvD=a{{w3
z-|6OSc{&-)$b_|X1Eg{#!v)aC*=OAyxW8hjA2I;Z$s8>yhp@+TF$A8ani=<b#iRPq
z2RJ#rj51j(9`>NDHNSWlU7|1)8AX~D{ClXy$M-LG^BeEqea{cHL#EUgp$FH5bLu8<
zlRN3GaVEP$01^)_)(HCdMm6p7%B)@1P2`4JN~i1VBeN>{rfn0vy_fb&S*5Qp9w4Dm
zt;@aj?l9>WA<dA4e<G;M?P9(_7&<$}tG%~h@A-Y@X7XEI+=M*)RIt#{y#r(S-R<#9
zc9zCbKm|e>j&BGmSI-Mvb=R)tXMqqnlGf>z(83pp6uXJ0s*nG3bH5ut*7Xn>R2djW
zg5~=10PZ+*MVbLyy?>vVcUb?6I5Y;%aA~qBYr%uQXz#$m7wkIcft|XxfU@t|Cott4
zZDGntbvZ9RIx>Uu$V~b}-ogob6QDqscu6x-5tPd%e)+8TXTIV<x)--1aa2)t4Z{~o
zio!>|)06vOcSrXl6t|y2%e{Zx5z-HjpaAveYf5Jmgf9u;(Lmkltqmz|6Z}<yFAdex
zP?e>b-|qEZ4EA5csK6Dvt$^sh$~2(^MSo$tMjq*1_-fzZ|DUfjkF$FE|M<z)HcR#;
zx#!$Tgfjb5#I$Ie7E?-=GR;iWXqIYbs;Q7H`I3|tk)lYO7AjhhN{Y}Xii+$a5=DgH
z^L@_!+`0G8`2F$wJ$yTJKKHYn^FHtQ>-~Da-Z$EXSM3k5C#SSDz1|7^gHH5w5?KU3
zZQ^C-wa@At`LD@oYIY0L=H1ZAVLy*0JJ7<63A=hWbsOw7ocKglyQLZZNu6Uog7+5u
z=@eDg#8iIc{d9JIo~X^ZuL~!YQ#UukoY+?9i|pXs@Lxuewxwwic5B|n#mB$gn1kNM
z*}}4PxF=H2>hx<()Q&p6+;y`Hv2jABOu{|9ZIS-)(Yoz8M0nM0N?EAli~%pI=8N<_
zm36OZV@I+|%aFt%SV4F}xRwd(zJ+>SaoxYz+Dyzu3rDc;45^Y+PduypR@NQMOwIsQ
z?*~y#;dTz4kpRXPovmN{JLbsab!5D!(EKTBp>{ysvetLj7cq0Mu>+xpN2)r!-IwYP
z59V|)We&tcXa1!eCQ02p($~FZY>Tt(Tx6w2a!tvNq;2%=`O>?l)GAqanWmG4xLzDh
zX#`t;f8_hHo;{klI-*@7g+wF(u_#@AvDdfhL`-*%hZ=u5LFJ9`eV*q1a^&M;W*VQR
zkDd`5c-$_9RO)kUaz1p-^&L))eJR#nIXHl~)OCRGl9t{;2R>Im-GQa@i(`9`@7~~?
zYVUy~>6+obS2Dc230_nP>N&p46TOQPgp_0AD?n?+?c?H{h3fL*zFom5X<b?=YEHqI
zEX^Trzt1<}y4W3ks~?rDh#xCVzs>fj?9z>0D+hH}DLSh}TavR|bc;EANwhz!uJuLm
z=V%__Rt0+O_;fGyH7C|aXLrFcwh^B9P-*RmbbF$D{9Wy97Te()jEszMf_R3QVc2C~
z>2jYP?%YFllS4>srkvHpMsf<RD=<Ht8oi^i?!lV=0Mq$Tp}Fex;2%J29BwNpQq$D0
zx0-E-qi$p>P6cIB_(*}@hFVA9aq1+qYFq5<bL+@>mXsn`v@-!jFHyxmZkBxL4Ytlf
zgN(9DzG2Q%lXfiDzr40g!V2gt6oV+n7TNb1kD3)*?3@}+A5YuDT<1(5hvN+-j_mg%
zr!EKNFJ{u_m}gg7yBV=%31n|rpr_~A(^#%uUXdpf9CEbK1&_C|@kKppK;1(%Zg}WQ
zlNRYd1>T0I>`-ty_B$c=Q*(5KhpZ#Ybt8V358r{G9q3IIV@=Xav?`>kmb?k4NYiEd
zx(S{U%H}N&l*&(#W8F*AP1c*hhdDA+KTzo1e>)BYxd5s)uyq&fAvxZy^AnI)SwW)L
z0I-im`goq6mg~*zUX)V_v7ExaY(%=G1`@sOx%y@IYH-Lh%UMAZ@la1r_1YZ$^<?Xi
zF_c|eHXHy$d^L>co%8jwC+$$ru7stCWTJ8DnL6ioooWVMAM;Fuda`u!vLQ5peMw&(
zV5*|+`UbyUxSZwkVlrjJ;qK6QmU!)g<G$5JQERr?13e_FfFJtGzrJl>+o+=YOwjM$
zzxs9#@Mcyy30(8Hi}iVrSyvznj}01f38yk8D&UKfiN53_-Qw}+^@r;n?AC$Ppa`#q
zY)mrAbuht6#`k_qtE=kBSZ^G3&)Fq;z%Bhe)zshN4F{qT-iY8v;MesAn+qO}S-n3p
z5W#Oh?GsaUz70ggAsSj*I;e=w9_)L5^Ya(YKUX;yAtGb|Pgr8k4ulLnS<UdhU0{XJ
zLiyi%v$?DFS@11IA{+n*Us1f-9zU69rZ<?mwwlYrQay92`8w#bAg+@;P)-Yc9TApJ
zeZ^dw>iIeWH>wvV0X7P^D_wryU2NJ0qP3o$38PgsR{4sz&2ybRAIftzwHOrIzJS!E
zsZZ+pPx~|WhuSte!cm2A5OmVu)TgMJ1?I`7_FZ5#B7-slhwC0QkN<0fGTbSNW1R~R
zKM51q^A)39pjpFYeDSv*GoQK1;ejIH!st)U5%+zF9B#o<1q>kNrL5ueCz<E7Y~0Yh
zqZmk3AqUY#hfX#ury)`PSL?^TJ*e(M1|_IK7lanPDQNDa4SR~eQH&jwwMLUdpkb-k
zN~SkXhI(MAdH6AJ!H60oPQ7)$A?5*;)Zc5?)rvWTkc30IhQo~a^-{U7_qFyQ<j3v0
za)G^+^HFtD*T3-8nC9GCX11i-zyqv*s&IY4nAUF6`}#)zJ;nO(RXYfO;?0ZnmKxk_
z%zfFpy6Xhb0dFf1M;Sgpk)V3GQlGmbs${I)$@Xr0OSlehD#WhdL-lu4qTadRj`kcV
zrJhu6R7$+SfpGPG`j5pnUckn{DI^TXYXP}PRn2#5vnu+5&30lJX?ZGwqS6v4L%ldo
z_g!PBWoE$&2}(*PaYIS!!YTSli<sAE^7N6TxVKMC(OKzsG(5(j=f%0Y`J?s`d25+P
z`6D=K3AG5?c>b96ddJQ7omGFO3?JL5U&?jEk-y0+y6_2oG&%U2c~szXB=RU2fsJ?T
z50}|T!DdlgRnEafy$xIWrP_Mb>gf6R)btT~j{m)-<NMoR?9oPLRidB;q@RSF{lWWs
z)8Ux(g>@wSmQo#D5llKA1=XH@dd1H%b>6HkLm>wNulwR>^zGAQ%9V2jNgm|n3Urx-
zrbDv&x{*G$Y0N33>d8F7yOMlPpbAbAIMW;!a44ERtCzdLUi?U~GmXSAASP~RYI?G|
z^-bUFAIEgV_vI<YLg4>W{Ld1iAcPk6b#<zHRAvX{cCBi<^HfDiQN8@K@9(|#65;nw
z!1VJBedZJP-Z_UzU=yc%9xxmdFwEm$>zI<*^B=?fL>yGaW79v@uV3OhV0;0dof{|f
zC1qx+(;xcA&arQP=Uy2&5llaPD0ytch^yx7vZw7C8E|L>qvG5q-bqzoC7UT*LgF3H
zZBAHDZEh(;J$RET-B71t^+<}#j%;dbeeMN2a&~%w5RT}}SDL~5y)leG(&honLxhIn
zeev~X{YPGe76?3r{1UGg#hVi!dvVeY_?dF2bmNFuS6pD$#n=5eJ=zONY1admMuTe>
z+Rejsr)hQ1b~uRKOmL9xU2C*n^+erMp0a@wooh)ti>_?IuZEyYjIr=3{cwein0QGR
zE+AN?8xOVEGxVBKb&Fkm7U5g5>~2}8-z@ZetB7Hao$?p;3qjW_ayUtyw?I!Qv9mjL
zWK|&DR8dqx9zUHG)Af~09_fGTz}xG~19y>PRS~to0mfwlJ>j9B*KH?TuMeQAJCHz0
z;RvY*Bv1C)Wc|Y(^)`Tq5(#t`ZP7C4Xr@A2NKlOn&AvL(gK?_6b;dT0AX&jeVx3hS
z)pb6KT5^3oan!Tuls7{BaO!T<+JUCcDb_>BB!&1wOlotgKJu;S3xy1kPH23Fj{2g8
zA-3BSr|IGYQB6y&?Q~lK=tdfLycez4fA5Win0|UaU!cc0>sQ_D;)TpP?mL<5d0inl
zg6BQ&A75qg9wR(Ga)@ase5u9W%&MORLpkMqUEut+FjEXHsxQ)yxzi^6^>ZdSdPE<&
z*}ndp@QiSN@B{{Ntca^m{Vi7RvW4cZLG^ywP+vgC&~KNjlBVdies;1r^Em~i%XC-d
zqG0c{BDs3nRGoLPU6D0jo$c_~GV|*Idv$KQoz=&{r_BJmQM<b78EN%DT^jkr%sTgR
zop!tZVeSe3N#K5|6G~FYpVGdb^*&}nb?wDXNnB9C>6)G)ZBj;^)NdZBd*1dMp-r~#
ztnubp59^|I24r_cdT0<-rVEe3JU1cc?9XaPI=rm8{E6n$_dJg_+(BX4oj%w!oa!8u
z8UR&Do&PhZ_Oic<dn51PDhre6A>Nt2)$I8zrp`One>GWsIN2lze^sc_uFpj>1~E}3
zY&X$$W506~t8x`0ag(e*9&R3*Xzz$$>>|Ag$g$9*D^<n5Vb-6B85#J!a90bot;DQ*
z)Xs}E{b^XHUHZ3+T#V9Hb<HUo7yxpxi4<o1rOPvFj&9=B_MQ5k#@@^j#|2+^|4v=D
z&N?n~P}y#Oa$IEaYTliq#~z6}<!I#jOYE}wc|CfXJ;SOwEgX=mC+bTxtOLPQw5@<3
zS<LxF4o0;-rf(?rjyASKpp5|70*mL;Lwahwy-RMTvouF6%NfqS(4kR%^@4t5ygj-&
zb0dKrcJ<*4^vks^uoE#?Fs}LffeChQ`0XUAJAc(_L%iDw3klhn-9FYg8t<eH8)QLt
z+oP|(%nnw20sLar1pR)R^Psvqr^XA=sCML~|GPuCe#gFa?kM6APf>rJ(Ain`5U;if
zXtugbuW#gi%CJQMws_ee`t6o>5pY+%2;N01hb~QO&qMm)W!@JFdlv3?`X2p}KlZk-
zBEK_kOz})z-}x$dyy3r=p&Fdjy@N}xGeANRkP%8M4I2K`ZLag4BO7RoW+$uz*mY{j
zFM9XzkQa}-g-up4OsgOD%+LC-0y|voXOq>4lltXW_93x~RgM9X)!1`Q^90W^2t{2J
z)ybA7YMbXx2&1lYm|$(VJ``FsZDxAy^_&!2NX@}Ye?`<-t}~532u{PB2m^sR6uxL_
z#{M_@&DpTKg=rPUr@Q2rphsolFn*b3dv|lQXs2_!x&=ZX{1Ngc0@}|RYpyM|`I4|q
z3Z^o1ocYRSQW$X&lQ%70-807AS>jET_+==9PC*wFXo0Q0Ki}LjqJFp0cof~(^+Wj^
zDYNI&vmP+Z?($|=rEjol%g32d+;zKlA>im=F{C1YDF3I@q0It0?$VRf>VF@LZ`BQ-
zn$ACx_Yv0bw!6$*BdcE$b8y{*MwQu->X+oS=(tPIy~?|!#V?)3<4%bS7e8jQ3%$#>
zqszK8>-;8n6MdhVHOw0fc?@_B51EsLYZyVu@*(qj@O_886f$xTnkh9s0j)8|nXlc|
zc!F#|JO`P{J7H(F{8T^D+<SnKyNFl*2h5r7$-}-a3Eg)eG4BUQ1lvJp$^w}@H4fX~
z<IP{eo2=>U^4=O0nkz@yugjrd75(zUGe+t)%e?5fOMcmq3ZVhA=U~RQsnmC`a?$P0
z>?@n%kvtii-4E*BOTAek88nItN9l)O^yUEO;iEH!wR_K4{n83=!0MfXKQTmjGxsjt
ze6=@Jb$9HBdZTo&m%ZPq8UddFeY74KjM_78b7ooaK)Wo=w&i-&3pQx4(F@{0+VGO;
z)8BeQHU0&!?4K7+!5#K5K)#%BP3%wTB!Cj+0n-1kn@g{5a8tGPn#h{`wAd6?VO7B{
zOeip5dw-1bU-MCHQl-VE+tPQy1|4K{>1hp)f5v1p@_UOw^UEF_C8>A}+A~W`SBI-r
zLv+&Bn|1v49ioGe;gab9Hj<oO{-AmP*_gc@EIh~>2||aQYF|8VzJ14fQsL+laoi>Q
z%%JmPrUK*uOv#;yL;yw-sVN+c7hg4Zr^Y64tbGvIEo3ud$8ZRmcQnrri0OMy9f6lH
zbESZF`S}_y7pNLA5BU5WQT{JZvoKHiFO#Az-fuF_x4+z_s~1t{R1`rj77zK1ZvHOU
zN1uJW%T`n|Cs>)A_nR}%v=g}|7%CJv!W2;@RnzyH=l_ZpSV~+?lv;B7(>|kIx?m+E
zx(0(b-Hf_DX4u&_%^pI?0Ka>CpD8%kURGXhMSrQb23ln$&75l1zinS%<QHM^j(YwV
z>v=F*$QMagD<3hlX4@}9rl74f0Dw_0i2}GVKbmjejX6l7ApEtkQ??&4f4C3AZG?Nh
zB-(oqHC-opuw2OfbG%-%$J~0M_gaG6MN?-$yD^eLqQj&*eP!;gX9*M4J}A%fM<>&!
zulGR-+(G`q3Mn)>t+v1RU(tfrRhveQQJXI2$~-#_uoo$ZlH5w+1;DTAame^)TLwm0
zT+NMiouQlDZKD|GNRtgfeU2h<$y-mDOQtyX0T8*xqeVX(@EF*z;z#q;)7}NcB7JWE
z>f!p!Cp;Jc86ttOIQW=0<5~UEAjgAf2aDs-2D4<BWpQv@0tMw+zkqyYqPlLa9#&De
z3t5=1?HEIn5dwrT)J5Af?{%~PgQ%guStdqAJWpo(tc5x;81CNy8$7@Op;iad;v5}4
z(qar4Xo}0|QclF1f{*{qabN30)gxYTi6v+1*oQqxlSBb|HA&)=prDLG_44V7le}bt
zAmONYpfN4RosJ3Ad0(z;-4Sixw=p&iQzWBDj16&Q-dXze@4R0O36%kUU#P7c{ooCS
z|0G$4?|piW3&E?SWCYUd>*zODSwN6ytO}%gbBoT?gWQv_+xa%a5CO$t-A?N0f9cBT
z>-$=ey0^gB&@=72L$J4wzvVx6-7yO}`I7tqX@(*%PKY&q{9QAm@54w`AI781ywN}M
z+UOr|v%}qsDqZg$nMzmVoBYqD*r}lPw$%}UpJ=U!q6(=5l!tEgTM7i@;%F3>IXeRA
z&IW$&X>;u*mh1#Qr8g{sKwmCsBrq$^yv@{J9Q!fE79qXZOt-_n8D@$7oMSpHvBNbb
z1CrFC$IJ>x?_zp3)mzwAVJ~xSH7~*3`+{Y?M3SYj4ihWP8(VA!n2BUaNOnOQ6OKOl
z5%p?<xn-uEDv6#D=1ZCyc8dSZ0Q02{?SG1JKWy(MJbIA)(_hx#PL2Jipw7Xzj1q%-
zqc|tD>?$yuR>pqu9{C*JBtnENL%VHxlc_LJPg`j|cc~9<%7!8N0W=DQ3)akCSD3jg
zyxR&r3wfZAmYI9qSy=6tacpK5n4jD)gD<-ykCOo94^D!%3-l-F#s1p6rh86P9}O`5
z-OTFOg~(N4*1ck%DB}Hd%=#0}!*lK3R-c)uY89A{tL)5hnj>!EzpMR+-?uc!@FCvs
zKd<>SKCnZP#4)0gVTJzKRhBpwK99A~=rw<%t#)2Vh;yY@HyUNzM77QD-}qYHJ&)Fp
zU|SO0eYVzL$Ng6L<p6-jzV2`5h?o&Ww9<Ip|JJ+S9ZI_-N%6yM6V}ut1O271+Z&Xx
zASqTM4+_*TspW@9=zgtZpZlp=oJl>=GkVz+izg7i_sAJWy{*tJ5<sR^;?4TI^J66q
z5E%^O0K9t=*1ZRNgvOXj>hMwBzuX3q1jAiQ`_qjK{nu2Cf&Vgn&KWU_M%V;F6;Bfj
zgcCZdm45e(*gs&z2q03GerDc+nfj$CJ><R$*I+-z|DxL#c>$}$h(JXo8weq(dHF@(
z?rsr77-C=<%B-v3`^Gb{@-DH2SY^^817daMPu@rsCW;>#)j+@fWpE@sQ%$_N`fp#e
z((3pnX72KHbn_re33p76#B{36lhpfn=r!Z&HHeCefFLoer%ckF9DWHB7&3|0ll^tu
z|Jg}ARtU0)XZ1@r{X$L1B0mMBStp1rw#Qgj=ELQu4@E|bx^a?joo$iDu-{@=ypgM0
zxEsW-bY=!AIcziZoQs#5pDuH(T^OlFq<8|9VO~9@LkrAL4I4}mpS_cC9uc#(MxA}}
z%OW$PDho@}(ejL-g`_0%*hSBpKG(&bTyH0mLAQV*HjH!l$yH`<bMF^>=g{|%TLCOk
z+tAmGbH_x4BTvA-)coiI1YTBEWP{^;ccq^6iWl=#MNs5=@6)4R^1>whWaOVR@JrOq
z4{86V`j;H7E9t2&)J4)mLC$$e{M}z)w_WL-y5Z?ftmHH0y50;MDb<h`WPNYa=iXtH
zbOf^<XpI1@3-dZ&{adb2TUr0xg*HpjvjS~ovIN54`~G)bvdd-(c&;|k)`vP6NBS-y
zkT_VEFA8}C7adY3x8`15=T&c@>UFSmP9LFFFa#9;W;hXq1de>`W~21I>+LN3#B8Cs
ziYq7u$#F-_&$BI$AiHCr$z6{0`-Q}qm=2|+-iM~sqYYO7X4$Ibdufs;TMdUE^!TDf
zrhIIJ@lb>D0L70C!+3aWbS1eu2;qcdN2HXlH1F>5up{R@L|#KAR?bT`7rqnBuF0v%
z(dec9GEyM8s|B~3>9y*%ZW=9tfW(QwY1(x+l!zu(6@O$7*RhFqVh@WNYSy$=;$X2G
zwDI3nJLbFSYIG4c-Mtfy*;zx($2EW5Yp!+Fa{?0)e3h0}$t0bURqoGb^cyh`zG?##
zVGKAL7w0r7)=$h|XIdIE*`e+^l6ytHCk+&+kNNv#l<>O<S?ID_)L*=I;!>eal-*}8
ze$GZgHb@*oj{u1cNdq=*;2&Ja#)jek2rFXUDgGCWJti&<MT<Pr7ZNEcs_08I=<(PK
z9Z$C#BoW9=?nbHD1|&Lq(sXs+3~L4%<A86*vVldi3i^qQAox{*@Ga98;082ge?9+u
zFU0Omvm6i>VxUbjvTQuauxS5*XY3$e8|R!5jvY@?NYiNOK4x~!i2d5JnJGXgeU?kn
z5Nunk<n`S@=Iew8O|-psi1)>d?R$!US&8?wp+mG`uH|3ohN?w_Z2S`?rqkm#8e}Ji
z92oIxP6Pet*Y?2R6WbN)OeB&J5V`6dHPLTbo*JVtgFSZ-%>@FLp1+#QU-w2OS1o5f
zS|A`ipPe+FZ;E;LN%)6>%jzr)tSp|ibalxuX6$l1kwY6URiQK-<ve6H{(4-Wboi|t
zuwglBUcloo>NZb#V14hL5d%p9kRBlM^yF5(^HMK8(59kT?o<-n*r$%mbks9;62BI9
z{3feqzv%o#>mk&TIba9WJx||sn#~-*sj)l(VY-#blcZ4}tNhoSj%UU6JmlytLYITF
zA5yj;0NGT(e$>%QF(K8s#0hG4bJKEraQElXnODRLNLeGof`n#Y^Y)=SZ(U*Y+3<D-
zqf-jc4x2|K$!2EhfuMQ8IC;5s?yO;Bb6Qy5J<M=%TkF%!#Gv7#u{#2w#U%8TN$IO4
zS!T&bo6yJ640Yo$cwZIzkG)~txJXDURqb73Mmjf~Bb76vR4R+)EQXxE#Pqw;tDxyY
zP{GR*@Qe+y@eT9YWez-JR!$jK0rGkfkl<wH(-$r`>zaBeYc{pjG|;1<BpnLP+4IfJ
zv%P~HJ5+{#3tflhhk2HpmYZ)b_BiU@a)qiPniCX8fGzERSbsRlD~u4++^K^9hd46D
z6F6$Z8%Sjz?3tq1-|r>&dpa^ddWo3sp)>Wu(H<cnBG6~!^`DFD=cWBohPO>}VKVZ8
zM$geBi#)1h8;T^LLW+<FzewEp;#0cRQM2XTp%@8LjK<FL>G69Z1})Yray=p?-CN4Q
z9#GTFzti3_8OUFs&|B`aw`^laoAq}9c>+{(lC9IsxFa67wY#`D;)^Gsj*2?wX7kop
zvHtCtpib10kSSt40*!H2rKhVV<IUi+8W_ilwN>syB7tTLHnwSs>A2alVws7|kT|-`
z;rpMQXF6-I>Ia$v5VChW;s@tHX%0p;kV++PH!FWQxj);poV^X!V4g6$*V@a9RmgR1
zh=JT#JOk(Jg%8`^9pRB@sK@5$UmXu9e27JS*E9N4m!f1S2!bXd^@`|LiLNs?X6FeT
zQrOPi*1?m2DNPMIru#d8y-N=-)ksA=vbO5(eEr>u=(@i{A?+lwG0!fwkLagbNND}z
z=DoW1wegd|*M^A#plS2G-uI|y*KBCyu}@jv(>~Q##Cb_Q3n55zb%;d3$IX7$J$qUE
z#YO2^RVjWu*CZY}|2e&Ep1o#u%mc^fgKYnAEj-L4z*7pKsziTZ_4Z$Kokdld3<FoT
z0w@eF={>#t4>$QQD1}zrJ^WoVyvue82V#hy7IyWoy4GSid}fK^Nzu`A0ttY$BnqV0
zKV<g5<q@#~e*jYiVzwv4_UY!_rQVobu)?UaJ~_T-!ZRkWjrGap&@IiO*%FHuHx6fo
z^Jvu+GoYQtr)4*UIrJQ4$LE;B*52gS0Kp_2tv`eN$cMdomf3&3H_SO#Zr1|~9=9`T
zy!mvey{qaB8p(SVnIy-csXol6s8wWI)w2W}JS8{;14V>dG-FVR&M?`}M7`LjUJcY7
zg6XLx=52T3aA26<ykNh%)Ol^<Wm%1T+1fA+up6sZoB5~23d0~0q6S6j8tu=oV<BpJ
ziG1^bdL+#xSWtbQHcz#*?@-*Z5dJS3TrC%ynO8T+eE}e=Cnh`)_an_nOw_NDf7_i6
zF8T)-x~D?^QTNEHbdDcOALBadE%WrC26>lShbI)*;aRelnAO4DN!V|us#h19Y4IM<
zR*D-f?G*ol*HgO2oV&?du>WG=#jAH#_!c`NAAeH=HI=V>-4I{HM6X7pYmRMa3JI9w
z=%aF9(LXT-uUd|wB;r^wFa^Cr7eO?h9q)Uwm94?x`oRJZD%O+oeDyN^p8^kJmY*wp
z_XG<(f^%`5ZY%U<CV6wKmz89w>=C|QuDk|UF9cA4U2<bBUGE#qvWl=>scKDu-sEgo
z_$+8d18V8MpZ^D>z?RMa(-%9)LJAQW7@Kl;bCdV1he5WtXP7-lsP}`E|MpPRcu8!#
z_bvFDUCMGpc#eP)sCQr!)3{A+-kWs<7o|Xelt@__LIJc<P^WY-g|Ek6v&~KmrY{&2
z-#T-EnYY{`rqxh4rZ&$v;~eS+CfYuSX7iqBE_al!t|~P<7khUU0gEQ8Pnwx{2a9qf
zleNr)`0XMvsw;p{&V5FIGc4!|1WQba%5l}6-JtKUwAlhCv&bcwsA3j^er}zvCywx3
zjPR5|ihATZeOu5QXk9`7!;(Qb0uYGRIZIID_8bA(vjsWMc2RJ_I=y9?uITFx_o>Lu
zDWr&tiZZI(sWQoV+AHRWa9!X}cYj`Y4!SOxMH0ur1IUnuW2(<W-D+^K<ctDTmlvVM
zK)m{6jy`Rm=hp=3VNelCC$yibADe2ah*+&GYut&L*k}_zHus!iqgUbu$08?I5Z%a>
zqvoe~V~)NOnE@lUyJw&28AuFvR8>(J!3poB*GZG*N^B$(MU^|&4DYTamuLfH$SOn4
zsFnG?zs*O58&QtOzxSF4Tz0L78Yx=U++x04W^1G(Akaj0>TCYLgXn1YQt*)e_+)50
z$E(?I`d6;6^X!-?fm<d1#X}JKQwF)d6czWa|KqpqDA6dzon+&<Qwc^>)ab)z{S2GV
z!j@E3;z90w&3B%w#AA}RLo6;gPc*{EA2z>ExAP(+Tnaks{bU|+#ke>u&Lxw)kZ`QY
zZ18^8y=;EH(7Mjd&Lp_@ZV0)@!{!|q9W&IkQY3DytCJvgMzc<stUz6GSk5j{J@<!c
zGtJA{QMn9T6&e!xJoeA{zf8*0cC2d$)oz54rfI?>Vu3SH_qU(Z;0Hh$`xH`q!+YV)
zsPn%yQ8O*J14Fe6d!qOI30>zykD(fJvhpqq(#+;*_GD!%W`-0*QXx27KQi3g!svn!
z0&sgs+Op>3X6tCTuAw%{_6LG-M-BpNtoytIGw<rU|Mss|XPK(DJgZ|zd6(@@w*zX^
z0jStbaI4{8y`YPR);-kP&W!Z+abC_}tQ+QgdpL`ZIPjgtC70bORSV0P>1&F-@l3ih
zu))DhRimjoXF=WG9qe`6qZ#3LDFr*J>Wjttc(FGpV)MiI9yd?_6s$n&kTbko<hkWd
zz@bOxSq};B@ancKUhSH$caF5SjITme#gQMV;)Fhot(*CWeq)RMIM!Jknp5g3+{N8O
zY-g^CX=&XpcBN#s_}tE<5eI@IJ+al~o@3!9d{dFJqyw=-Iq^_Qpp<m;r>9sSQ=ky~
zPFUq0QSQLGPkz_z``2T1cBse`e;Ln+!)odV)2*)cjKmn^&<|Qutd!68ghxWyGije$
zeVPZbg%!}?FYm4Eza`o$pvlgmL`F($U_Yow|1m2YSnw*+;et<9QQv=x;{>o2LpW&|
z?l4XoC}^dl*^(>ad^{`7oVMA64B8b9^3I`@G(i4yZ!|yr>>&p9dz7*~fV4E#HPIZY
zRaXQW__b<4M53B_mHFj;@2WWFwxkNaJxi%>qG|YPoj_f(#K~2K)JZC)rBPvp)L~Eq
z&r;FS{2YWDgf}v@ilUC}dZOBtX8zq1dU+4X;MM-r)LdO7$iY(C+0?AD1q4mHbtO|7
zr2b^3by44(@9)t*RtBU&S%0jp+pSsg-PO(u{fAoHF&jG5*o!WVDl4U@s&D*P+-OI7
zQ`tooU@5OHOWk^*|L9frpRo$~Bc-ZKN-y=B&%d&d{a0j9#3*H@wNss&`tQn$mFkQh
zB$bA`&z4AdldQ@Q>92a*L=e$h4Yeof>Wo>sk;AHRd~T_rH4-fqP$#+ZJoCV7vB$dE
zyi<1((_m=^nBsI~k|^;pedfd(;$U2~S=05TNnU2kRs0d2l0J8}A?S=|sDJ*}_nqg_
zF{Sz|ubBE>VO+xfdHRGNUt#Z?)2E7}PU#rO)*aD$#=e+C6OmU4t9t@sx@ot5V!dUu
zioYf0D0~L`bC4R3S6lBi7ry2>TOb!C^>E@6z`7d`G%A=CZv(cPGdLe!Hm`zTRDI7j
zYd*5Cf>$I#-cZ{tkzsg|@hUpsoIlrkfGl!ZsaYUCc|_qXWW3pf>1N!n(3KXpRzdt`
zXPDJ*S7{1xL<`)8us)5W&o;k&Q|Fnv&Q6B|bp(;U%<n(gZO3Vf7{&m5N=Z?Ws<pz@
zzRcqY1YlHai-jYQrVc-8iketxgqh+N1Rh8<7BbXJ%S^i_-ej!p0AY7nsFlnT$JwQ8
zOt!<fFt!}2^0QPZbHAUg)2~!Sjh<{%LCg%RRHB_iJ>A}MFvt{Tx*9Qhzteb3QU>2$
zqjPVLKJcOCgjA)TQdFJ$^}gl7^o*78aBH0W6NlBvyY-N_Z2pNz0yByowOfNM4ad$6
zckALM!O3KAc)2VwMs`)|M$2ugEAZWdr8&@Y5-Rl8X<liLeAM6|GY^&PFD8eud2qNy
zi%r^ZtC<hzOT+NJ;6$8<VWahqDIr%aryi1N95FAA)D33ZOY#t$xHkK0NjM4W*MEFR
zj(PEr#3ltICqrdSniM#9zDPIPAGK<TeQhD(7jf>OlfHe2y&{(?mJRRv)Qj|z@4ZQ#
zbIRpnl4fXHORxXb{uKMJePMqNEBU$*1KC`$D}9~6wt5K|laN$2j@{dHbcQ2l%TPFo
zo}!K~)ct1GU?~Wn9-pcAI9Lqx6_PM#Xv&Xzyd!0YZ*$E1x?TE#wRW2exDug4L@@jD
zL^JF!Tky(w!2aY2XAC3~fOg<hrtL{@80-LK(ALT&z#NWO*UU2AUJJrL5f^8X|NfXc
z-xb7KUxLk35ZFFk9U%4mC(Y5{f;eZyeBRZo6U<Qe>k+61`*z%7v%Gmw_(Uo}3E5Br
z#QQ|Zg$RF{Ss28$L(vHqLLWNk1?Qp|>7`CUL$Rnw=bBaZEMy&C*FyrgswhaxYjObs
z%dD+PhkuZu#!S{Noq`o!Xt0u<0vn8hT6J7E`_2~FL{{J6h{XM+4}EC|t6vwXgX#K?
z{{LNy#ETxh$ZW~8B-rqfhxc?~jelM+<Z%WJ=6431<P=r7)_>)$ItRx@HEG?(Rvna9
z2&Jo6+RbY7N&gv3prK}Cr+GopL<DBqo$XI}$q68ZOJSv{6Q7vEK!r0=P+<u*ZdHz9
znrg7kOmlfh7<s|lph%8S_3AovY^NpUNl`^<QC{Hi1H?nRa-aTSvOV88QZkDL72uSj
zzBxhVr<jrXv45_!NJNN{L<s})l5~eTeWg8Y2u!Ht89);#n{}pD$q_TcMkeyyL2g#B
z)IRFB-~H)}?PG^!Rua{s0{`?kJqAx!B^A5S64R+WRI`5euifGWj-je(079$$#X-7I
zwgB}qNeYsiyz0;1DQ{lhaOh9r&ov$Bf5atm!apWU^Nh9r*Mk?#tY9nJ3zAY8w8VeQ
zZYzcraY4+(!GZqq?t=0;Lzrv`4|43bjrZU9a-Gv#TBR8@DZppj=kymFKq8SZ&@SJ%
zFwKLtLWNY))zCq{jsKq<3JS`z%6vPn@nAaZpSZH^Br0~3RFemN&93!uIIwI`a<(xp
z6u&K0(V1g>R|j#r5RflJC5-U({@Vljf+!rg?fQIQ+ZNvK1_$8hr{w#x-9TnLb;Dq=
z|BMtU27AU_GV1Tx`XWe|E${|xcWAGvs>KJoL7C%JL=^K9)}`;&n=bZn|1NMznCD#B
zBr;EFYSzE{vBfb>?~CLj;b@jVrFTuX9v{X!yfP<It^8AuO80UGnB!avu8}n0;7gjT
zSGcnQj+VtlMfw1WmS{+=`9R;)D0UI@F4fAKIQZ|Ltj}**V-*qBF!dAN)JeaDA66W4
zD__vPoHj>fK@&#nrjK<;S7sIP3c}nqcHpR%W?nF~s20;CsSQ_~{yS_;gGpq2NH<4x
z3)H7~nekV8(R#JgV>mh2n=AKvrN`m4jx?2Xg(<G0b>NPK-4%z{dl@D#cvmi58jvG}
znUq^`th6?@LR?G{L1|NzBXEFiEL`_0<NLHKs~egR##tQD$29rPx|xKjz4$l*xKD!A
z1a<wVW@$Yeq!RmfkQ|gOHaH-hg!3LZ|7`Mz9s%}1AaI294SDRIZ_I7=E$2HN4&#B2
zS7}Rx8D)|N>7Sa3=Quh!>2=tzSWjtbPFCQwiRPx>UTI}8%Z5q`VO_^brsr0BH{pmg
zk9dA9ebnL93{{bXF=-3V*LVC^VK3Lb<hbwD!4`|gqm6KQxzlUw>&dTr^d~~<fb$9b
z`1?>@7OZ>;am^Cd;<NQ7hpcPHC9}!=igyinBwqC^*7a_R?mG=SGJ!^wQYD8*0^CV=
z9`XR;JSz_P#v^sp`IcwJXzReCAv#1*BuDC_&)cDD@HNNm_JL-8kZx)dfkUmtp>T;I
zyY)4{F02{)<^x_a(DZb33B{@?u%t3l)dNG!JFh!EsJ8IWXc&@P0oo2Eo~Zt+FnfX^
zJ&hj=XoBmhG9m_rd7XNWIpu&Ck6}&*lorutF-fW{cAjTi?ed0#Y0W_1mtHkIQ+a#y
z#hBQmhwS;<0Zssoe<hN`7VRuB4d&Yil2f@VK9QpreZ79Bl|%X&t>MO!)wAcACqMRn
zJ*X8X*G^UU4>5D*c-Ib|&M>FRaK4#r8a)3W%-s}qbbyI>FA{UrMQ~*zPkN28i2l^y
z_KmImgH22z_*)DUQ8@TWsS(sZonc<zZm%j&6GSQ`ZIP;;$}@ijAEsR~$pPUfC#B=K
zEIrfApA-A|U3Ct^Uh52C8~|Yv3|AFf&4>VVEm9COMa>#!ehF~A(F&}>M&LwXgEBMy
zUv{!dIe}D3covsA=Y;^A3gzRbi7TzZDYmGx^UL`*=$YX1*I8>WPqPv`OlPODExd%Q
zi1(1O|Iws8<pIxCMTk^n0eF7*oB4EtMS3wbt-)A4=NSGi_txrpbNZLjhr2koTH(-K
zFCb2~^z^;=n(jMdUPIrAGojlEITi`fg%7i1iT<!%-TiH%rbBv`&<qLzG6-ZD#p37q
zW?x>-7vf<L=K0H=;wBr}p%gZ~k}jPaPx-*#WTW-G2rsN~XjwiwLv%w=P%S5$r}JX_
zZnCvoJqq)nXfPsecD|fx5-RLS4Y~IORo2sg)-^Us4$@79hsPhIgpYM}U2Xr!2^Q^k
z5lP7iUb+CE->)!_xrAp;hasD3Q%lppi4L;H@Tn`%D~Hk#1av6TJo2_(eM}93_PE#c
z63w)aEFx0f=5QtqFbh{(qI$JazVZVD%mKF<B1a_!Q#C5L6DsLR1wv1gIp0cpGG+_p
zb4IXJgelZ6&ty77#t>_ZH7`~dD~ESld51||=6T%Vls#0jelqXP^cGzY6pTtqlfl~H
z-A&$WZlBtq@v#U=Qn1wP51alj3&K)%98DHG{8032={lI8uHI#uZnhLq{veDWiizv}
zy=mt7p`nQxh-{C%>ATA%W<1Qy)k!5$R+FSYTIDM}E%sw4pje|yOoDpsWnXKj62m#s
zxe_7-)jaUoR@T!ioJuI)k`%Djcf+Wqs&D4&@_TGXkCogG1g|6y>`L@i)r%YawYS<}
zfT7Ox-mwT0V>sV8t@A&+!;XbL1JxdH_`dkclVqggCYPoR)c@1ul_HS^zI7*K0#CpO
z7tvvW2`tva6}~Y)*;!&dpfuQOBgra>?Lbp}waH0w@>~FAq*$EcVdtl+ev8an?WkOV
zxnl0DY!_^;dzYDile~D`ZbpZqK}$+f3m-AJoYvri6;>{+M<reVDr}!?Q6>56bpMjw
zw#t%Q3LV3P+*jAXYmYZ}6TPUV1-3L0J{jfz=U*%I1#f}nTkP&Ll_ZEtTx&+PvNB=3
zvS0uJmE@Ux-#ab<V3H6a0+U1rYWr@pxt}FEu&^`B2HH=+VMdhPu!XtVojGzn+8C7*
zc2SXl3{r~Pxxx45<*^BuVeldgy6N~d#(Z|CtymUYI<z#07$JYS<Sf|R9X~MxV{NKL
zc3?<U#%99x?vrDZ-DYB#fHQZX1zs@VShp*$FwJsp<ja#tE-bJQVQWD=dTOtEr>jTW
z2ss>5I6zNbWrn!J0i+?AcVgLNqHdY0Pr8x;G2S8Cr&QuxW3JlnpxJIVL?`@(ImO#f
zddNh(V(v&YBihbS3^1n!PGs0>j-3e_f?|2%n`Vg1UjnRF6@f!2<V)SN!mMfL5en&c
z;IfMBFt|}qo0l3`sunkyS(JlLI?lO$E1O%G*TQQ4y-WpuYy6ewtS_D89x86kvcBbi
z=7cNT4iA5z8DBnEPjTT7LDdb^<J*iV3X^QiQ@85dFNjGW|6f{FN$R&*dcjN==!LO8
zIRA#%(p{XOxtNats7SDUOzAH^_VCNDRMV7|l1WU%wxp}4F4Xn6dERbT&VZasX+<Md
zf^3xhGj(#2S0&iG2nwghiDneaAQml8-#IpF+F0D-UXn~MK$%fEgLF1zeSdeK8QwN_
zA|(^7v>H4?*4qW`%|j!tCm0@muyHzkYQA&059}fbAj;NqAh?w+%(=urzR0>WZ17NN
zb}ZG%B_=1qS`AY9H@NSdY9pd^dz<+SqVrHPWue|!L4HDVs|eqv(|RFE)qYt2ucV%+
z#k21O-Ya(8Xi*r5S1lhi9|vpgMFbjiOCu<oD_%F<{1j9lXd9HdW{oVr-yAOX1O}>>
zr05bPszYN;i{W+<XCqjZj87rK)P@=6@Ae)G4Pd<_zd)qZ@w2HioNa!*){Z&LVnG``
zU9555Ak*J@x?D4;k8Srk&K5?X_YCvsD~`d|R#+5+9L9kA&)`)hrroltBu%9I4<Py1
zdFFfP{`2M~=JLeiS=&Pvn<=5}E$7L=_WWbHdER{zCh=wi1Bq(>%cgCj$LZ=p=xcW+
z<-WX~$?uq6KUq$fxMCq=f}p=+?)gE+n%rnLY0HOxPeXwYNuAa10{=hPHjp%6FmspG
zLG^3w-_tuhpO@NR{jB|8-R$ytkgzRRH!C$;O>gX<(K$A-a$&0@$|fNSdCS`h%<a!x
zZv;b8T~|FpeX~ISF~B3kv?HUOk4_Up`<x*lPZvM0&kv49B;onu_s!Gu?)1pRSvbj(
z@du?rLh>1nDwoK$v$sRC44~;#|MB&6+n$poM4Fiwn6%y3EXIl_hg%__oyD{CCypx1
z0)p{t9WK-^>1}$Md8nhMV%d{Usy6N7Ar*(g=oh0$p70c+Bb9f+{hqi`U+?(ySYQ}(
zg=IO&#5&LxGt3Hm|7ElND$fk}$j`;gAov7d$5dr3GnZWv90Ll^9au$BVY+&4p}FG{
zkNJ%#5bi*LxhXJvvdW%gqR)4kHQb4uB1arfKte8E{V&R&@M7%NR2xQw<&-$4wv5pC
zxP+6Os`<#ugIN>!V5hEm+pN66o~aDs6b(Y*N(A^tXMgx%^Gl3HP<UC@*m>OWt0R5O
z9j}k~oNc>IXgMMAZs`uL4rH3!T+uGWH;8_+#i7||JFhS)x7*X0u+w^}9CR?hkU^pX
z0*_2}*sXir5*zcFm3)?dt$^6p0MlbKQC)Mt=|0PDWEcNSn#6qu5?(l!uia@HuCe2?
zxuj_&JqbjH0?GPxRs5F8{@mMokr^Ib_6H}LC9V)zW?MhQ<pjyWkomf8x`}4z!Wait
z1eKC#u|s}No~N6dm;vcs?ak5SE{)x|&WR$E@YR7gz#zYI-;)|)&YA`Ga5}m!(&svX
zJ+=fBox-NbcAhg#?^x#*(RFg<eTp}*jkWIAr_73Ki^P98{T72#Ki%9i!;*xmVV(Gs
zOP|#7*Ek8Mn}rKxPa+X8p|bZb{lP0X!x?7U=%}~cba&AkTcL_lLzxW*JoQ!cpiA=d
z;fV-ypd<(cBN?!_?=T&mkzvdR<6Ve|rCQr+8rB_XS~({!(mA48r&=_?+^{lsj3Zg%
za|TZaI-nPs{NQ!17Kd&_OB3QA;xLZC^#jarOFfK4;3n(JvQQ~|xW0o)3NF-8`~**6
zSF-ur@g!Mla3EMp0sapUL?3Q-;7;@JO1swhR9OGvo>FZZIj(qhq}X@b)ToPB)jill
z=9gBC&;g|o^5Lm!&PD#pWl{NOp;=h1)SnMmtEWG$rH!rO+X($INDfL$!Eb#y#=rTK
z==o{&gi2P`nu0aH>#)gu#tR<#1Z9C*QQk$mdhl~|;gdFe<l}Mpf-C?7V5OK?Ip0i;
z^V0WDZrE-elKafOcD5<L+#3x72$&~4la#q8?gDQNy>#jA%bCt)N#;#>+4Kt<zYzZv
z+R(}wW`DHxPsOUD#e=qqv}@q1oB&z#%zYQxs}kyEvy)3)0#UL;32MPI|FnG)?Ag2&
z%@%A3rSu8^mM;UQkfSwNfyDQibF*n1<P-IfrhRfcfTHs;HeP4W{l)ft;Q*vL6M`Oa
zjWBfmGEB@7I{*+ZZb3jf3n-dfY%taI|ImWJ*b8zoED`Z?fc22tS&-yN=2Ag4INu3=
zNb*xPnr(h@kIk$svb?m(5)%bK4;Xs7dB7ErV0zjAqNNzBn$M}3TIL(*6!*E=FlK71
z`f-MC=9sCG3Y*kuuexMSj;F9GvZoSQ138Hh=?hzR)Bumy3r#|Jc|^jZw;r!H%+aeI
z?@w$Jb-2XiwsrtH4?vkW{_qVuVm)y_lucXpD2J^^piI^eBG=Db{n;PexV)n<U8H_C
zJ7;hqF+F9-fN=fynS~>w$E~&<N<v*Pp7rvjW_h3ztB)n!OIgEUr+_VefFD?DRO<#&
zv?sx+w5=!}Ak8Xe<MW>1>tmh`0x%K4Ycigf8T7Je7HR-q6IJqgX3HK6yz(g!=SF@t
zDM>(>hgSP$e`IxUEhl$GAfiM%f)Jth4d#j|G0(NNix4M&IGx^vAjz7Y@SI-i2$JFM
z4%@v)E&b*pORC_ThR%Y$`kX#k(=761gKFyyzt}gAXKxn^kT_HyN}3TthvPBdY$>YW
zztVdCRsK7n=(!J>l|wxLy)zL*palgjmob?Kr<rEsywPy)9u=wk%p*>hjpb`QcvxIZ
zTC7lAz1wV95!-rpWDx|-Rn@i2%tOs>zo1?{1-lQzg$R_Ss?lxy&vtR;6|8E~Naaw#
zC6&YrKhVUiafvGLFmlel^n^)QeP1!1Yw8IjYQT9*&F60Y@S9a|HE#!>?WOwukFpxH
zHm*b!!csA=3exJ>XLZJl=CxLCVR^Ay&!MH*Cive}OK1D<F0?nx(um9h^DswpeT!Wl
z7|Z6sI7^ik(*}qh|D5@-ku#VPB`C>i$^vt7;C!WdjuWwgKgI3#-(<Elw)KUqkv0|f
zKyvLA5F?{1V4j{F^uhzqixc^RUz>pw+qy#g9UF-G5pFv8VB6>QrGq>-y+cl}Z1Wua
z8z-m4$HmhhF;DLr<`L$@oK0?E&fPj?s>egBYTJ~ozIaF<pW;;~3X)b{h@oUpV0q`i
zpgWg&q~Q=0JV`|_){k})6kPD}h}*?~?frtza=d<ae)#Uj*f+>EGXji;w(KW<(NWX^
zU*X7pRcShG^>kyx=dw4x&oyVR@GL{bXo~XZnLpfUq@RL1j5?lgK6=%O!-R*C#4T}4
z%yJh-B41)_1LXjsIF_ebKGq-gY~A#s(UOG|C#5h@2gGT|r<?bt|60pF5k4mMal*Do
ze-Z>X;Wz!!t(Ne}ZtNf@kacf3OrWBl@wmC{ghv{3=vE+N7Wu%3pEgU^{TC$(>r!X3
zc{Jz^M|#UZ!|TVJr~mS<Zh0yLBv*lyS~_`(POq4~)4i-h7D_{odM!7Wrrw)w-l%KK
zB&Due2&#Oa;98^df!DSCm|5|jt(cIa?V&kktQl%4@PvQ(&D7iGjSxHJ4iYb!nr!%^
zn|?9p%(n&o_`*uvNM+io(bCQg#sV2paWAM|2b3DQUBB1Iau(nggcS84bx+9u+74Z3
zqve8yyVU&p1uf0$+18~-KmtAkT&yA_B&5Fc;N5y%e*LQ(*m&03V@KdX4iuzr@hDyI
zX`2-dza}Q^s&v!ERmnx142i1ADY~&c8OYp5cF>>{<r4k;1lvJF_-qwJ2LSvyPLN2n
zBXxOL@4LaWB*OV_JV@a#9lORpBgm*t7`bdgs?@pOwZ<g3^cq@(7*67iWYy$|Is0i_
zu7LN+iOo881{pX2XJXD_GwaDJ7nG*sw*CVz^2sA+$ur)>E;(fb2g6n5lj22uvE9sE
z>7^&S(wISnEl3B%s|$ZHQB&Lq=|L%L#1X^?hY+QHywj8}w>~&l;0B>IBN$c*W`gP*
zPqDDTT=s}f&j1yKN$$|4{5Ji=1+i9gCmei8Q=Mw*IM?n3^A6R9=OZgXdNf^4``q`-
z*|vEfLm{{XuX_Iu-}-aBrcNP4fS7YX@SR$>rlDk2d#CS?C~wFf5*GL-2f=ENeZ`mb
zeK2zYo)L^eU>uRXPghTW?8|T9O%M4|{GX%SeIw4U8WOQD7b=5!V5+`}(HH&eVIH<N
zHczez-0;pfz9$=a&lt=K(6hL#uW#2?mM;X*7$W11tKpxfAGpm^({4|PK>}~^$3$i|
z8LvkaTKqA57H025+ig&U+p+O-o`f+_*fXzYm`?vKJ<9>#zJ+<kkx=*^J%tQ0kf4)Q
z1&J3UveD=hGh^mlXuYuzq5DKN{3-p;Xd8#)#L3SN!f>Kj$f=Z|c4wJ~#>BL0LsLXJ
zXK3*d5KyQLh3)ZI_2g@;+2HqDm*(c+%ZeF?g9Ui;+1<X!gB+~jo8v={F7kaItd$H7
za1@On;7bfruxcp4WR33}=Np{v5x;_S$s^s-&(|!)eh#b#r@~-j39>Eh8Jx}RyYw0J
zthM1_=rM3;{&1nAqRxTzQi7WMkojw)hnBVl%M&kEGLwmFUAbxM4oA+KQ1UDkwC{EK
zFiSA3MysOL_;&qPLrbe-UJx6X)<d{ckL}W`N@p6DkPW`5Hzd$LdyQ@}+{&%l!wqND
zBQ=ULR>NbuPFL@M3om)*oWEd>X%nnz&cyeHTkICOAj(La%{N~M>#0e8k;D@h8PrIQ
zDR#lP%S_S~@0bd|JYn2*b4^z_9S6J0fyUI|h}`-J&qb~x28gI}qRPG3^bN|}w&P4L
zkfH&}0x>i5esjeg-pmjM-gq@>oayXv^YC9wSL4T-_aE}+RNV*n-(j4&F{qMUHNuXZ
z@UV#wy7(c#lc?%HXbuK{r?;~zwoaTI#5=wJQFE||7d3=TOi{`AnahF_!Mw+6s>@^s
zlJbb=Jk@2SA|RFLdc6Q_gN|3mn?}KlRNXO0z@$ga<2A@K<H#JFU<!jTG^;dF3Pq5E
zMQ%UW^eM2n%Xu6j*-V5uY^N@WxAMf`oGwLe7bjsNI~`PS)_&9BPphFCp0EL+*ty^I
za1yBu1=BH1<MjOXQ*&;VM^WP_E5i-I4iL)V-+Zx*BCB8#R+XA7JFnxXW}Zs|f&1|C
z<!GUAAjV^0GymtKqpw_5Pbf0ohteA{&y^J>ik!n|draGjR^Exznz{^^=aU8(YV=#?
z{d}9m3|P@%bpR1r8Z6PESANrA3-RI1BbPaNk^X0_S2)W%DJQ6xE<w`b45IwY`m5W$
z$~v3<6#Z-o1LD=`FY1+}yf7fFOE7{hlXb%>bxUh(Ac6<bc%g1y;AIlXvGmW;S%sJ%
zff{%R|Dq-`#w#%lbb}E7A6NnzxFmJ#3H`&EAbJY8YH<k3CZwp#XX|%^^@mlq9viZJ
zhW_9#JF8l(fQ@)6*Zdpw_dAd)1VEt9EK!wTZuW1DZQR|Fro*^Si7Gwc+!~B9TGRBR
zs*5i@*N2(Su8XfACPm1-4%H&NW96Z76^7lb@11AS)o@o3SK-|j=GaW<UiLxk%{3nO
z!rc_mm=&*^P01ebKt2o}kN8T&XNjuqt7d0FDlQ}=#aXfEW%Fb(tPG~A$gNL%$)pDH
zT(9!hWxphQk)*~gGc8<ZgAm%qvaQ2uSV`)|>-_g*dGT;nT`&C%*ZMyC+;d=p11zt}
zt9)_Q2iQ8x*ZX>Z<ISi-U6Npk`_?(s1?#8+jdsPe7e|b244N}IO|UD!+UPs5&$~iv
zPIlqqF~qMnT<z=roi`NbY^9~EO|Sa;ed`TY-D|w6_qwml@kjWYUWGr<JE{4m_v$gT
z?J0|+&?Tp$SjwJ=FhqZ}%{%(D+g*eas)t9KYR7P$@RA4Rw-u+wmJb2{b+}uPc7k|Z
z&!vdn;o?5BTo}gmCS6kCUAW3O=iFzlzdc-cc0%FYY+x>?OXTIq7Uhi71+Kdn*Kh5T
z$fD+zp^9JEQ+jz9g$G)I{jtx2ZhD5gf3P0B)-Kqv0_7xi*6;ea-JUp}XbteXk?@ng
z0*!m>U%st>GlF_}AcAQT)(Xl=0FnKu`8ODt_O3*+&>O^GTsF!4@uwG8M#i1^gq<gu
zBd*kih^R*qR#MdSXtI`}K0jAq^;Y!%?sW>l^iVFzr(6;q2}mX3z;CDM=-<3TB-@qB
z{w$qNahFp{e7&k`Re-xRDfC?ubkV|RWvCXVzIH)rjS&A^#6;fn`CXG&tWH>RAw^vs
zZ<1zvG|D#NwSmcM_c`VbM>wr1^}wN)QEXbQvSAM{Q<X?3#w`1ozBJf;By(^+Y&5=n
zqH1wSZ*c!!<0U~L2bqkTE}5pr|Ejm&>6MjKM@m_>ThBG`@3%-PVOA9+C;~pIs{0iE
zhZFFzdZ|v8P?-3{6C3nJXIhuB8oxh9ee{QJlIHRI!-R(5W<9U}3iikhDH<an8a_+6
zb46qF*7-Fyzbx>0<tsE%K|DCJ;t~pPo>}^Wg?)HKJ;@+hA_Vmf6ix5B*BpGoy>EzD
zr6fFcw~^9w&B^P~PCH&TdeOWTWOWIQP04}9V#x3U2`0W`ehw5_bt1(O<moW8<8-s}
z94`;jMdVrRvc&vy*0x?^S_Fleow`9FEt5fP{MJ&F?WjR`1&GI37oUxe%RP0oxjoZH
z@C=Dw4ISwSwo}0c)b6*<=wgrd6g&;M-o}?rSI1~zk~{<g4z{NpVG+mg=3Qq0t!`dK
zUnCx5%pZE{w_e#+SWOoPQ|vK4=NoS@yrUA)$ZvY<7j_T_2ES6i8R8y<qDSWGiyyZ>
zN@OV*26pf7y7T8XUK1lpomi9LV8D`wG;)$Q6HS%*^lR^DyOeT<Sh+d?Ikhg;)K<Y7
zbJ9!B7-pnU2Bg~bH>pRx64_29sHxwwKrDTs$pF0nqWL@^@fMB&;>De_#0&`LGkEdA
z=A&5P(F@Ib*L)Ov*|CIrOjKhDV{och%`qJ^J<?1VXCzq-c*p!pZv{~~gB(za{S_vz
zz}OUAU%J%jcDB<xgYrECv=*W=_4;DdC_rnWURUVLL0MS>i(W689+!Icx*_WoEt5J=
znKtLS^%{0j5f&?d$qaKKKgf6Fy8&BWY~FL(Ks@T|`kyq5*<&7e`kxWrc%ssunyB+^
z<5olrdkQC7cgU##a7?C-h_bU0rlpQq@ww~H5ZW1(h^$pTe;+3a#oUgF8<LxLVhs@N
z_-4BvHmTXR!~?J~q;~;_^>c?!t@mv20zOM-aX?&C(tJtkss+a1!lwB|qam~j1xM{f
zvtYAL4l)J+8feuF`J0ny!UJaPK1=@QqU}W5HUSn%sv7l$d9!8g2Vb~OU7?~6tasXY
zU8G_IZM*`Z3_2%6y#}f13&*R6rkXo1iT!O@wZ0e}8+|644X!Un#O=b)Tr<_AzU$p?
zch{hREGObC^QW6Xg0oy=At0^^eLPWJIo>?+q7^*F_@hQdD#>jY_5ugeoaK7RVq2!m
z-tL9jtB^24js`V#g?_fRhwz7G6EI)PhU<r?dgaiNI;}~BZ-moT_Pjn)?8Oja`Ggde
zIal9S?&T94<)3)JGB8^@m3~Dd`CtUnjjE-gbU-Gq0o=KBp&oU=7ZKIiIx$0?_q4vE
zJQ$(SGCHJ9Js#%k^YoTr76o%1(Z(=MwSPgM<=PnXK7?<lT@haf@_K1%>$7@6iFf<G
z3UkX#1L7>Ab(E;qtkDlosJpDjoCuiqee-quU<yc%Oe8!(_O#b`I#J#Gf<71&L?L$^
z2nXe$Iq;IM6;xoNSiDOiJ(c)WoEYiq-skia752Wc!zgt~{TWz?`u!Et{Jpv#Z>WFp
zCNDVXMDZxB4wUqfuAMc{JeK1%rRiB(nvZwP2rl5Y^G)*}_3m45XJ+M8ip^()VE@Ur
z<_*`ThCE46c=G|?1Q0vF*#3w){ja(cpS1J36%ZmbO;r2$ykVl;Pcf}4yf?Z%p)$_V
zbFu&L#a10&Y!1{cmY_;SgbT9fBj&(Y(HDM2$AoT?;DC6A>bm~s!}*q4DXCuRF7MVh
zbYAw;@ho%52`>?Yv~l1gp@#5XRC}X~{<QEaZjX~(^`beEif6TPYW&dNlZyB5i;aPK
zD4L}wJZ1T?OzwdUtf$e#OgQ4c`*lG}I}-)8ZX>Lhk%ayQ!h|dIwr$bV-j1x>$A`J=
z3_Urh!yX8jaMamP**ED4d#$5R$Phxq<12mnk8jnN!D9c)!BDvfRS;~TYj0iM&sFt@
z&%$EF)X`&|)*A0c7y)*fLAYmMZ{FaWbkrl<S4COL>ettNCqMJTukhH6v`%PjCfQ-j
z_Dw?Z2I}~8zNpV*F1?lmu#@Ft)6SdZ0K4h33FeMdESDZDE183${DBl`qx}WA({G`<
z^0*gfK%ub=4cO*5260cClLI_ZkiMYkm*7CMlx96@E)Q1Wx6MaMnt>!<M%H8#d(697
zm9dxn1^r>CnEFm!k=tO<@mS!L;TBGN$~5}Zss`Y7-ZXfy00j`SoTQ0RZ`8;E=AJjL
z?-_v=B&h|d<~7Ie!q>%96Q-OvyWq-?-eE?~_L7)h%qpsMN$Te&rgb|@h2$sOfF0yl
zdbMmcmyK87+-0_G^0K3$2AwOj#2(8v@6EDT=4qs?R%cg8!H_KJ$0wNHH{0`&8wwFa
ziC2pUn5j+-g;~~vws9Gfj9_9DW|>RU?KJKvvp=~&TRumBs0@{Omr2}Z@1|P5760)4
zd~>BE&676`sb1uhob#r?Rj`^rWC*WFzwGZDtPKxV*kjO$A9k(rC+@Bz<>uj6<U7`0
z>!0kdnAus0PNHP7NeZN>eft}4+jiQQeQX1Ys)$?!(UR0%JN&8N)DgKfI60Yx`PkG{
zsSlg5_L5urSw0TG)TXpT;CqR<nFUOI&kp}X>+CGSH!L*|{z)Ru48l`JUC{q?+e_LC
zs%g7@(a~PgC%C;R>HclCZ+Z}L3ArAw@?X1r3(l-IhtO@=tG>eEmJBUtPgHXXeZx|{
z(s9miXM?CwN>X{B_#O;iF7%gB0@>}m-i5?GR9Jlo2T=P>zS)g!eF#2SRs|_=ODsW&
zn=Sd!RsNeg#I$c^g(`0;C9(>T@uc(~*$CBSzVH5jJ-d=QG&ctyk5<=|KB-nSeV3hx
z`FJ(bK4`g=vdIK6z&XiKEAG}mF0{A?naoU(BB5|e339y3IAQwC@HF1Kq9jDpJ(!{<
z(Fw74<PYYWCv7?tud-848M_x}R2Z<aJ<W4TR#2OfcC`BN&JFlO$l$d$OB>nI$Tcko
zSyjCm9zv*tlBk+5&`&wYmM5tKjyR~64%c5fNGaUWmxo-k)Lh|$4)z{N5{W%6Csq_d
zw=6I{f&$7CA%wKUp(z?v(DU9fm!`x{iMREE5iEj4HRf3}$gv232iuW)8&M@s2%!z5
zxvjOo=tc_;^7B}!yr8lPpCC<L|BN}sk^UKWnu%niaEK|^NL6DOnHjCDX<*a=_w*H$
zLA?6tC(O3C-e9NFf%Fix4+cY$hJG_muTsy5XA)Bi(w=}&U84GJt~qP0H<S&7m!*aw
zPvzJiHOqVkMcAoAcgQKR3qsVJsayV^dF54)FJXm|bBY5JFR7^jrF)+<*Nn4QWpRh&
zL`adB`c|Y{ZHL}{c#ix^Y5l6w$;2k8PhK;(SJbaR&C;~O=~hWXx4Ob5cyLjOT=ECQ
z%dvR@is*Q|_ZFLXqOJBWY9T=Bxur$Yy-Pgv<YngDl~G@uUSD{@Hwc$78!0aeNmG%E
zQ<s;RvX`U!w6eaBt;luehs$D;oAx*FG^|0=m&*=HGbf++5b7$uN-2rWP(MZcH_WzO
z1B93wf)iW8%^AO%9d5%g>eNzLpn%%7elx{$z0KA;zeETwjL=}U_wQ!M3wETs2bQX~
zb}=JzT`M+7A`VnZCaZ|L-{0ozr7=6{?0_|~NJbE&hebjZ-|kPdaks}J3ATP90ftL)
z(NS~J+g?k6kZ_PVY5Wm$?<N}#a^0$^*|r2hFaYiZaQJakxzU@Bn5p=-&{N27to_lP
zy2jE|*rqn?OeRP77*dgAnP<`u@xsNXTZUzx;m(MB3Q!dMd12GS6Iy0obsb$m%z6}8
zqSP-E+SH<a|Epfn+QMa0tyYzQCoCwRpnnY};CoaI&M8!)j}D#dFFmn+y*l^W^gCr8
zZF26k$cxnQpF2`NH#-=Ag~vIZ^c&~v^YXnIEG%|oU+x^KKMpEVWeXfps$t1tT{-)J
zP!d(0Tg<K#p15DN#6RBI*)7duo2&H8BA5ZBP~J{9Z@=rQ{CS?W+&xthsmhmXI(+8o
zUR1jSj$d`<ttR2PcL#iaYjYs|vi6U*G}G%@@CTa%1+Sbc#(@1!5X!5n|CaH+W+4}L
zIvED`qkLjc8@}I|dA>HET6dH|(W_zC<+9-!P6dJgc#CiP9!nmTVG&!#q~h+$Fr^ot
zyy@%ds%0ZDjc@Y)eBXf2?4>yw0#C)u6Ulw(sl<CyS(BKGvp;USuKR$OC#%YZfzq9r
zq1)bLN5BAt_Ay+R9y^9}Y3tMG;JX%;Aj<2L@0Cg-49b3aHQ)T(!AgxVC_PF7=d+9^
ztH1i1)Yjf;4{Ce{5+TYyOv^RdZUA_|lS=gf0^#Scou}u|wE#f`-ylQv{aLSeVqMJb
zP5J=)PO6K0<q^+#QQtSk%?l?{0;4orYz{irDnh<4(!N1DW+sz=ob$ekiE*l%kz%`~
z<^D7uIk8>#c9mt5O$`U{glW0OZfb5O6mw2e56#p+IlZxJHcIO6x|oJ{S{o&(3l<tV
zdH7BAi=oA%y0g?Yd(!Ko9uW9tNIK1xjyBC_dhJfo|0}2nB+{jgB5j#}_swwGjOy1V
zaxFKd)4j=UVN*d1W{pZBgs#@decg^b;;?81fEj85)S!I}?n;dC9PJ1udPqnF`4Yo1
zXo3FF0S$!xnfSq!8?!}Ahf;HxEWp@Bv(3u`ZQL)*IE*I4N&4<xzAJ(>nHoqhoQdiY
z-`MLc=_Ne61XK91wmx>i-h4zrl&FrUnZKsnqbXt*b+V`H--Bu_Lg}$iGp|F=m=nGx
zt_LI;B_|9ykUt<1OqK$tpz#GdwN-T89X68{9!I9A59XVdzk42oeHh8-z|@k^5SVrI
z1as42J1$&cSdis`vqCI7(tb<KN}t7937L46NZnv7E99?ArSe+}s}t2_SD5liUcM+a
zmxQ&=OfqTnf@2{9<b=&vm{Z%@P>;QJgDZn|drw+)CaQb3>jovZ*ecQymCVic1I_m3
zj?7xEgL{&+#cI;g5_7n=^~}6x4_x?_-MX&pV<WV~NLpfs+Hh2V+0LF;;;t6vV7zhy
zFb^fGcyHg=^S2vhdjt^@27z*6D5a>o%FIxgU1!W@z;QH6z)&&2<S=RvF-JCgIxsz?
zg%%m01Zh>>t<<d9Xh--I?Q+V>k&^U!U~=YkU24v6Y(E7VX8FyKLRn}6kDByg$!ptS
zF)Zh6-w7t)F>SbPCY29JB=K=s#m~<-wf&ap9p<ld{45%-FSGvoY)ngLv8<Ood>)wI
z3F@lyxNd0|3-v5K_e=b(9(hZT@9*)?Xibx^38qQ8!apN6KXbb8`D<dI?`I>O5F`i3
ztlp{m`|mB1!*xZS*+QZulsOZgeOHgovlj(!vP{sxBEcn2Q75+OF^6K(7g`RTEO2B_
z?E03YhBk^bb)%qOJY^;M#W>UgsPdFs7U(5IEm0)gwsTC5{6UwFvROs9d<e?yzL0z+
zYp>B!eL=1_4DFR3%?=X*>(5Yij_bWo#*Q9u+ZuPpsTDF0-N@B>2aP_{Rxa`>dX^TK
zaroMhE*-n4uAgN31r$mn(pQ{sdr#=5frJq`zKW8PO50!urZmg(-6dx0)wZA)dluy2
z;VZm;r!TIh7YA1jph{lkORGM>@AwOS=Qt{$tO@5ifWq-g>O80yzF_P4*c3LL5jmQ|
za!7kgB397j8`J$jY_~;LL%svNd@*4z1xe~3v)uYybEA8Dj;OX3MdT@^iweER{+O@t
zae};f4%PfE+`S)LnA;tXQVx@lOa}4et&f}b+iTFc;%xi#R6X;cT~)YBZA(%22!vpS
z<Oyo^EOSg*nm417nS5ZAArs7bj$zIN2RAt-<gB_U7ny`+UJ11qZJ{WHY7Hw3jq@#L
z!aD1Nal;|)tJBoY(~NJ6y<JY@s%$j6*({K(Vsp{sF=u~9SDerY8rM8$jBdZoLIE|s
zB3{Gp7N(U`LxZ0ch&F}TOm&62darpbAYlY{K@tQZdD^<*^{3->Tz-oGtS4d)@3vJ+
zSv&&=F*Qn*B|p>G<hkNRF=gScCEx*+n)nwj^v5W5!DRuL3+^-L;IcucXoVf+hT*p7
zifSY7FSpaFjp^oO-*`DT`5DOA5Zk4xlW&=0r(1R!i`k_{ts@##6U5bQHPP4T`f8+8
zJnQ}geZw8_Lxwm^P9#}<v&PJIaw6OjwI_tBQbdLh2?gD&b#Xth!i-=*qH*DTLGF82
z_x@kq0AnmHlwhY9j?g<MdqpKQ052&GoSqmMhHsp!hmWy-N)1(%iOTf!?{HO=47V;U
z&~ms-2Oy@7&GT=*+;#w}e)grQ76Z-8fkF<VF!q^11f17o*e+jbW}Rh^2_mg5N-iV?
zks|#6R^xS<Qw0(3LC8s*t`0Xg+pcq<tGKc(4weo$6D{A4n*B2xm^HQEgUmGe1O03p
z^ByOD7B(+u5U)=?^M$T^SRY{Yx2AEEeEI;GBDL)$h2>D5up77l1ON2DyUlk1L)Eq<
zfACQ14bdhaRz^=kGG_6r*FOL8ZTbKU18WHEAgK);`uMmF!+i(XYh5Y_(cQ3cn4*LN
z_iWSYaaU=smI1paXIKS61x6%39zI-L#svO7Q2-1M+=0xXix-yb>K<`7UaJpqly$~&
z8pOY+a$jhdogdflU;aIV2)rCkJ&<{6cNMSZUmEwzIDR`35uf~Fya~3E>e4i>n@_ia
z!j*LytpRe1q#c)JOSgPwX8qDo21LMxBob<YZS!H&p;|ojFn^Q?D%$;X^TLsaBX~{M
z{o?!jHUEYD*XJd^ea+%V^I!X))qnq_U*W%QzSWo9F>W6JHF41;+nY8n;lJV&^_XKi
zjsIHKFfM*!qt!TOJu6{z0i`6S2+?B0)s4R!c4_#(%R6!ZekC*a&i8Lyd2u2C)qRXs
z&HaVEjn+8@1M@fy)x(eK+-v<s{L>9NWRP>Y|3WBT#X0imxDZEvG>dvSvg4(+C*+^W
zFeRxe8>nBf|J<>BXrcYbcy(~2`FdQV)qL#iivHzg_B*RTvg6L#f7xmvg3csIN=nIb
zaY_&3_KD8o)uq!KU;9F18SatK%8-AiSY2H^u5qn>5&ukC^p1xcU%kBXULNIz)n?z9
zzP+3+9Y+=y4pnMh4|DSjUzhGMkMpf?ZO0OwDLrIVYfRFlA#v9xHtf=#C6z;gCw4Ah
zb!ms$J-t)hiborE>7LFtzwR9Or*624Wz!ldCZf+W&<)smth~dm{9A_lR`JQZ7nM@U
zNtDEDkrj4v5C6DQpG@k`>Smx>Q9kxApVSOl5_+7f6W922D}1Z?0X^Eky}kY0UL0gL
z!)yPDBedo9{&UNHt2nt(jw}a?7e9^9_){DI!6M%(A{RK|?sxfNmS=J||BTiQAT?J6
zSG8jW{<(r$j?Ac9d$+%`0b{9{7McM_^bHY6)_wkb|Li2+DmGb90`rPy#T7gyO-z}V
zqMn}Q|1y=qB-JsetWbK|f>^2L3;cI1w*N}vwX}?lhnkHelteA?`xf#%PzsAG?rbK^
z1=OA7V%*l*Px<wkH4mnGgO~v9D)rEX6|{4pY=j*8!~Uy#G7bJT`;7N2D#sYN=Lh(I
zdxI|kA*`^!{5e1(b<o|*{ZBWE_;WI--k)=s9u>J#^eY!iBTJ#48tq^CIy2}BNB=Fl
z99q>6ZaGyoP4VY_WM4L=UjuR=49IupSm!dIcJrsS<M&fk+o41ScC6X3BD5Sa2B^m|
za6G}^tRH`ZHOnb3Da@_V95pmVv`v?|@jq_%pM5ps>44|<(&XR}fmB~T;J<3T{r26;
zSwnW^$d{DT(@{fwtJ#K1jsCpxsp)a6nXJ?wz5Fu^&1xP-sZnDZ4|vq9ChYE<Gm`Xn
zGJyyv)IER3oqOEBn(xO_D<~}h3z83m2cvHJ#{X2NKhk2PdX|Kv)KNI-SqX*6dJ7~O
z(MeXHKh=2XxjJGdUw@mw@qj*;t|rUVwQ%IXlEO;ewRBhkM`<43FD5-*JrLWtb94WH
z{sk`Z6S0lYaevWvWd6{R9H?R>2%A{X=SDTIeW9HlIhL-PM>Sq^!GB+ww^()M8t;xs
z!TXCucpycEgF^2ggk8ei*!;$s*XsYgf0ny<jhf#9ezNxth#@$oXx&+sGqh5vL$w>%
zUhEH^P+|f@PN?aeP+jsz(9%XxHpc&`D7j=vuc-MvR(F^}m}xcfql-_yDb~l9?vYc9
z(_K+is??wZ=XdLKPIK&pz;J}I{M*yFows{QgJ`k-6|g@bh!o1^r;7>;?6IrQTQ%V<
zk&13zS|EZ|gcriLzv-%rH#Tjsgky&cNZCk0ITat@OxiKF9UR9wwHhz7OKDjy`CTan
z20=aRMBLNKW;ORpFxNjHc!%_0d<L}ws`T=>H!d(m9QR7C9O7R&_2MG#P#Tux6qJ+}
z*@Kh5rBY%o=Qq~&m27{}TK<Z6W@%A`Ooa-vIVQQ*-{zSpjv!H@ED+-d%#Vc|(Zm0d
zzmc24_GLuqkl=|N&E4hj7BeXYFKVCi4{6K=xVD3U(G9`@q4J{MF#oiYMx!x_nR%Rt
zw85r}ky1P6=pVn-s|l65SD;cfsC1azCK}fX>Vd!Gc3x@Pumj|2$d;ChACOg=Thae8
zE_IRsyQvAL_5O?6@c!kS=&T}08`k_&y8ein)9B*WJTPub{~YHcQ3fPNso{SA@w4OQ
zRBc^YDSHCJYj$zs|Kg60y*&J%Srz4@;^q&(ypRRi11-TyBr^*u<=!(E>#aYTc5K!T
z`9-+vgE*eBKJjYb+{Ufi`Glv|zM^ELBsc(fK&x%B`GI5pM;kVp%{s^y48<Y=mU{I>
zZroW-FP2%Y3;D=J5XEru(U(tGZDQk0twxdPfmqP;xZBd~9Bu)+8lpetluw`*jXz=H
zzP-MYT(9%-yu$L4{Br_|$@!PYHNL_AGdS`fT*tf|7=#(ANdWzg{c+zX*)h^GP_2pl
zX@&|Lg130~zy4iU*s-oTg?MXRjYZe~(zs#rBRow`9+}#aHr)!|l%jU8^WV4I-di^c
z1cj|yz=p%CR{E^CUi<9G4f%Kl<@OiEA&cwQ%wDUrJ4HsK9+^xG^U&-5%>Dd*0zMXt
z=j70#1M>@ExpVp?sWZ3wN4|A&H)enSnHh1BUzk<Az@q#C`9%VipwFs)9}sueTU;P=
zBtyMl5I41k5n9bvjR>xvqXi5ZkW(aDi;z|EK}VFv{cl&bi>7f@c~cYAM*{^{=i8(0
z$2vLZg#Xz?_CXM9DX|X$eOLP0of@}egB_p-Us{Zp$P|%_n)ACq=QBG(Ti5cD_Mt>5
zFjZy$;s5ztI|6T`C=V55rbte?$1ncRezOCa5|+_f1^H_A{vrRCTK4Vo6Zlg0*F{)7
zQT_6j|Fu)?5Ust3f7Ks#mVsm{BykRI4fW)hf9bFGf>}AtbYGHsPf~KH#yz~*{ZvtT
zQN?G0N5U4U3;*_CztIla-;*LyzCZfO>FVWLaYNp-Lv8a*MoMl$?lJ@1PJQ~GKVgv_
z>YYDuDE~<QQoXy@f69yYAG7&^5_t!9LMqpKWVJtg9%Cs4Q6&Wh$I-(e0_Ax8?#j5W
z?=X<Y$`nNaW+dB=iJx?e+cee=@JT`M;IgnLZ|@V=VYK~M5bS{!#T0kRg1a$0?y^aN
z%UAT5okAlMOvU(Sait%*ixd_?@{zZnf@E*9YM&lAf4LnA{at?H<*c|P?sugjhkeKG
zi*oYpMbYkqO7%{wxUV0zKh_(6xWBw>Op|QdCJo~@t+p4XKq{B^>uwgEc(}#u;?7!O
z$J!E3AeX{}Lbb_IH@AsvCO?=$=~?LIQdEA!xO8{9wkOHryT!xOp)RkaL)<-gxvPZ^
z0UfF)9paM4xa+ag2ijl4Qsdk-%ZeK&8x%#alTuYCoxYP*UW>T<@2h?(DJuV?W89v*
zFOD#11V_qO7B@2EVu}7ZUdr>aXr!w|z3G$1=7+~^SlF?k0xuS}B3~0@J9e8Xdc_V<
zm^Y*XA5#YKKt{c1PI;rDyQ!iguy{g`B)UCPdpN``4cKs{EHYV>8S1%z{Qt+-c|b>1
ztPgxFC|IZ#NV3Vja|5UtO)rQ*3J@THNJ16FO|nTgZDTeIB!C4_tXQyP#fJ^Mg7QES
zvEc*3_LOH0q7o2MQA7m&|Gv2!AQAt^b39~bXYQ15zFrnvJOcJ$Jac&D=xnYGIwx&l
z5B!ukQYq5|2&jkt()+bXD8f))NvP6Lg9X;S-nu(@D3?Mh%XN1?l;y1oDV6Y`{bmoR
z3v_3^&)+0+HxBzx=$KDDUHDDdbIN#Q9e7Va@tdK)I2d9&B7{{KU0C(LHQN7c)N{-}
zc%qg3iS-;i9|m)()JsFGMJuccu>DHysk09}9=(DmI}%J)3)Bmb3aNzZsf<m|v^%4#
z`C$%~NyUU|zPYtVpEM5QPW4PgY^9Q_^q?D}ga;6^E2ck-#rW!QoMkC2eM61j`@8vp
zc#6Xx)4_$4<hNXp{4=VZtVf=AqU(wV>Y2!EZN)$sXHGCNQ}@4wE~u;QIe>9M;RY{-
zW4eyjD{nGPe2%xCy~6QHt*tAD=xxYv?qnitAyL4E6GY!S8G=LRq2%kZJt90!jME>9
z6x2o(#R-+yykme~8f@Q%OEVuk;>xLDDEf)RH+3Y@w(X}RCM#7fKVKKHU6{IT+*VQB
ziZ_bHFUPByQ}ye^+phxk9~iLBr&`5mw#6#KYlr#D$7onDPPZZ?V>)@_JRMipI^V%_
z;wTOsx;cy1E-Kl;s2%ZBlB)dRS%^R_@>;3CJ|y3gfU2r=BapLWcxa%807-OStOL#O
zt%LM4(^}Wjy7)w1!9RQ~6~QP$MGVplTqOXSgF{P{t|Koo0S~6bx(fVwXo<{EEI%$~
znMN1zw;REZ626hPUEp{C@E<;u#;7)3t;@p=8gkkOnp(TqFEMLvMztOVG6C2%+$B7z
zmyD9gX^3fP0dCP9Z$W-OycuB5y+z+bGoovjST_m7<2BPBcct#}j1j2|{N4t6N+go!
z4nFRq3rC@GNJr-(?bax&L^g<AB({VTAJA9LK5{P~4)^jcQDQ-ou#(^cwd;QUG)sU6
zAJQra8VG9@XwMQP<Z4*JtCA3Q=xmK|V!JU&BH=OUqJb>oF4MtHz$s5+;;MGPCr0sz
zzn5=^f8S;vboQ<7tO;jvV%fbxZ(PtTsc*$7roQp(6;JS)zv(a1RhJa~)<;L`N^0$5
zTNpjD(D(!7hJhl3uBVLC3%8q5`3RJVM;Y8E*OQW}W6_5E{X=Q3v(Yu0U~sfCu-%N3
zm*srmPK9aJi~pyjQ!)qx-O8{HZkMmLoI&y(GQ1HgmZrPCZF*3bgsi-f-y+i;fiV0)
zq;EAhS)aENI6-L@GWrzpPJ_xVyigDRtX;dr%!J$jzVMX87T!krBi6)!Iy{d2pSs!{
z(hxjNG4&b&Bwj6w*Dt$Q0ry-EY?<v6o1^0U=ymQHxg)H?5TX-e3*_pXbM!^-k&`$Y
zVFzKC9^o9O_SbbEf{I1J<WxmJN2*6jI<zT8|GJp>a0HcJlDgn#JwNqGol>hl+zCh*
z3Pc1AIm0s&T&>=mr(YVx*&e2D6ZeU*x=oq|Zz8Iqh)a{Q)W-z%O=s}-6ClkJ#AF#Y
z9Wt)`03SOUI`*`7GeTJo&6w>E)`F+S41x?7uew}fRC~<WUc;GqP{Wy^Mwjp{U|Q6e
z3FfGJU8lE3uoBGIXhunoBEiXO?Is<0g*gf8i1~?YP5~?tw;r0KtIs*o2}#<NL&uj7
zBJ!888Bi2}^}ucV=p4QQWek<0e&*8x$}fj>Y)5klg-FF_MF{b#rb++Vg>M*5gSQx1
zfB}##UejCWCevXI8ZiFSVL%&wv#1IoR$06R3+dN&h2jc6U!|L6GGr%kFA7Le7$zs7
z+l*J+SLl^)Uz=e<MbCTL=!Dx`C@3a;{1B=<{Jfb-^82tdr$qmCbd0DKQC3yglEsQ_
zsBoVD{nWWK!jbkN)!t&M>MF&388G&DXNuohab)db3Mq=z#Cu{lb+`WE7ckDKW*5g^
ze9Axl0tIA(nsaw-=i~qB7tE3P|IZ=PrP}sTY~FGI&m5#_|NqtjYm|1_UdS6AK$(W#
zPK{j@d;ZbZ9C+JTkB)uSikX9$G!BW&A41QAS4)zzHagE=5Hkl(D6_h;fo5X-fbYSt
zJ1=OOQDyPuE8(?JhT$tKeQV!wCLd297A$W_YNaAJ)BN_w&L>ecqu=&pP6zLRf03_R
zoWLv5Z9Z%WcKt@D+nBZsf};fmY;@4JxA}dlBoW!W$@!?DO}lISF5BpoO=#0D29i`2
zvB`PS{rxbgi$6&5Tl^)=ium%#wj+!i>}~HkO|l{qUZS0cm&Q58j{_*E0=6V+i-U<w
z)-|NshvEl6IZE{cXQ)>{a31a-^9T}3eh76QQoxdKF(+5VN(-!akccg%in_-{mC=MK
zL_%WkC738X#+3Gt-Nof#0z+|G2D32AC)Ko+($lTdO;(z4(Dk7PT&sEJ2^Qa)agMWX
zt7ir3X%yOlAclu}(ZKOWVLnHG?tB$}#_N0oJ^&-4v5cfAn1NB7^p`!ND|u}I!%%zv
ze7%|nJ8rAEr+kC=R$`I`D|7Tsv7a39EOxCRrM|LCF_cS`mg+q__P}u{(K1w?FBBBn
z+7xQPwaPhuWK;>0)-2ccQ={kduX{Q>P6bjZh}ZX%)PrsG#?^&<#Uy<R5eNiR1&pZ)
zqwOmnix`n93Ss!1xXMsz0H-=P8`;87^eO!!M`R}9@Pj-__H`T!N&EAue)`GC5m}g#
z@HUs+ono<jxQDalqsSqA`H3a5Q-{P1fp+G4>npJfRiigfl)|uT-utnMpG1qgaU3kR
z7uMFe-MsX8>@S%yRbnCWHC8cXXO$?L)kTAPpWyVYg7?dk$_6BtMl(YDu!7$EqG@N<
zJ|ZiEvW5ipP<ro^vrTL6v_N%m+8)H(dOU{{)ZB#L=Xw7&57Orm=812er|oLsA8s1l
z`v701edO*s=rEEB!AtRK;h^4`w6pVq;@;LvfBQv(iXPN^t!3H|-yhg?aPJ-3tShq$
z$1d3&^SwW;_s>0hu8=^tMzP)WRg^)N!or>n&I?!CD}b2M#R$fL99B_b85_TJ#-D6&
z##=YDwn~IgmA}C5(PW**sbmFEsFDEy0heFy9^!QD8zt>ja4#peOzK3aydlmhy`xU!
zWKrv&nvrG}^4&1!Eyw)02=l)?i7asANavn()1Fz|K&luB1a^Js%%K5N@c=Q7b|G{x
z4|Y~EKWCWhlQMPWO{X+Yiu2$Q(>S`W9HLPy6(Ev`cTlC7&cqAcpG$5uN>>x&9<M$c
z;M_LMH0Mc#A+Rr*fKfPIoMl=kf$s<=Cz)On#bV^=&lj+%L^TPY2Y7hA)rfsl&Hc?{
zXvgv_;lI+(A)FU(=Md^c@>waIgS!XqS6b$9&@6g=^=6$$?Qm;`)2L0)2ve`4&Cj{L
zK!C_OmLpMhYG=B$<}}usA(||dFg_eR(j{~2)#o{D_eDxao`m|;z<<-qmE5)4w6dCV
z(tnB8Uo9Ty^#7Gsj4NcqMjy!}gkQz0x<SsWPRx!V!&c!Ad667rprdIc<q@8l87L9d
zk{su^NYj|<MK^9Do8_oBoO1YRK6Pkxp&*7@Kc$NxGs0a86fNs%em_ZM^$e6M>cp(p
zIWUsqz%1Y676uP%Z6<t*LzQOM3#8<D%nUi`K4d4RzAv1;`SLR-(kCXaTCO>r=xg;r
zn)BC>;q&l;_#`ZsOS>W0adyxQGk6FT<)jXQVz`5+$|?^vQ(b^W2ryQ(0?-$x7*NSa
zH)h~A0aT~X9pKc&n)cCk)BTkoB}ppl40Ilgh}sNqlv(aAA=QG=itfqwZTH*Kh;1Eg
z$%7D>U4Fj(+ERNnx@$CD!bOR1#^7V@f_awwHU}#VDW$4l6}fcweo>}9@-BX#4q0y`
zgDCD9{V%qC&DLgE{E?W^p@taAp0=Bhw>A?TUP#b04k3N+vL6aCELjZ~({*vE8W)Zg
z_S0K%g*dD&DLD-sQT>uVsil1fG0Cduay$KR9R$IuxRv%zcvY|j@v4B1h8NIwZZ1~6
zu-uOMK1MK+2#sWULd#Eh@QwC{S*-UUej=`&<6U}_-L1~rEIuHC+D5R}-2?4&s@wif
zF8P%O_P)k;&CD8ZhCF9h`-=%!P-nhq-*>CE8J4k-P$!~1)iJNzrAKoxkmV3HFuce|
zRJh<`t{Px3eJEx#KsJhtK|@HppsEW8+qbWa*(@4H*j^O-g5vpW*Ln7dyErtQAcA!y
zqGz?${q5&0OXe0h4I?BfGftUecU;6zTYXSqKY7q|3+;+_tvrvr#@L_S#pfu+Ti=AM
zy<BGZtL-0W14?a{zznTRI5e-QGM5(Fmp#ztYw|+>8g0*8%#CpmA&@J6eex(y?QLK1
zpTk;P8`|9?1SWis;B<Uh*=s?(y|s(p3@eJRMl6vCF~(I(FSFwxHNaE|s{?Fith93h
zJ6P_~^`&Tz(_XT_8Q2yyi96xk$Nk%${zc3Rc)22Ds3qqyOe~KkULCdAsX5B|dl%2>
zq{Ys+9i9B5416fDlN9AZw6^Yd`bI>elNR!Yx(2*0B~<1#IYo0la9$X48yboYw=H!y
z_fB^1eVF#cevW=k?Qe9}U1ok>5Rls6kOd3_X=>m!XHKYnJ3x1T$oXknn`sg$(WMT|
zbk4q}O*5iXhMGFdiJa4>*+j$rtI6p#yG=8aUWQr|axRpmAGSnDz1q{{OrF=aIgRJ}
zcB8ZTa+*mpjS&sK8v-wQ>dSg(!*!<l@C{|CnbVx5_3hhvgjUFz7IfQvVrxY<!Q?a2
z>y$rE>!GD!%K!{!IrlXFZIX0#a>!XMr_%P&6V=&MoV|~<okrxw>t;FEwcDr!dd->X
zSnkywwse58rNQYmqunfMI9|HcIlJw-fYme9)3cmguJBYMw-jNBlc%*|yEP%tDT6o1
zi^W@E75Oj0ZAmSkY}K!`g!LchpVrsgU}a*OQS)o8C*Gwsg;3ctOfu?*N!Amu(*WD=
zMezylChX&K%k#cz%l8M%y@-2XH(8CJ(1O(9s}`R>-06-fu~Pp-8ziHt-d_c5srjR=
z2VOHxqkPkl6KMLmzx9zU1EJeTDHv&5GT2IZizbW#O~hO&HOV?b{zk!32HD^jp@G(-
z)utt%TSM`pejjLcT5rZsaIlfxjK;j7$}Y6Ne%t&mGgxtnPjWx1v3b_>FVhAqROYR>
z3cct>)WnOeA7rhGI8c=O`|_OB(s9;T8%z_TQP7%%RK^c49%rq2(;bb)N`}i>o_4Xd
z;T>AxFj0a+D?a-@rc#!JaikPqK3bj|YCZdkI~~ZyVE)W9>o<3G?waFjP+?S6fKOf+
zWnCkO&d~)cN^u=hKaH~fdesc)i;c36!V9g(<>2IEn$U?fR9M47>3nK?gBA0s`Ry3o
zIdM<V^Raw0=zrs_^|JgVRRr~*@@r73#2Hrn*XHL#U>U86z6z=3sopNJPLe&r(=kh(
zeDYkcHBT-gnFmr|g(RS6R#|w%%8!P@%A>6GSIK$YcA+&()|RL)K#L`wIU`H0pWNBZ
zsZTVAdB4y4PEH*Yh`*fJK5W-DKIGG;p!MI6&G0<g`=s&KL>Y^Qwcg6aah3Tx)>sqW
z3nSDAr8xY%KxWYd>rpv(_+K(%vgDbiR<7GHq`FZKSGM7|X8y-|EhkM}oP4#F_}XFz
zQ)gVOFMGq&Qv|F)8G0#53Uc2*yUTGgJw;y+7h;@wabHjgU)U#ijp+%g5icp%T!+t1
zyqf=&jke=zR229@<68n^%Fn?^h^~r<^krYfTn9W)*=#@Xesq6SPK8x4q>`AN810_1
zw|^TYjY9*Nmtcv78$0u~*n4)G);Ee9EB02xDAW3B$JnvQdisOFamb%09Id4EzCJFt
zZio5pn8rX&`8NpA>EbT9wp;8~-T1XA>A%I{vp!S@7Y+;f&{46^{t(q4o@|`25~dS5
z1V_6coTSf~g}@}qa8VAY3mtyrjM(OVX6{UHeFbF2Fzkam#Xi)*%$&OyUt>&SWOKpb
zd|YhNU*^Z-@K`AR7BvBqusZv=*!;Jnn&6n=&Hb<wP)ZbNwRiOqi9I*eLPCJ*I0@!P
zMmDGUT0c9hUt~5OPB`R?0|&B6g4%qZ{XkONR@VJ?s{K}S+g3#GBekZgX=!%n4D;K9
zkQARn(JoFnsFLLquqZbtQvTNbpa=&r9zM;S<emNPn+HTb$Jg*`#DXmL;|XJ}!T+@$
zgjVE8YIEV;CFlR#na<B+jkQ(E5@Bq$3j8>HqZBZe@Qxj?Kl{+w<i*KmIt~pIT$+SS
z$;;!M>whpkLqia@1`+MhD<-Lv@|_7gqAo=y7MV<d8+X(R+oOE6gkvj8;i;a#)0ui{
zgm`A<H;OwqWqu&)0CSqk`^$;Su*FSnWQD&5w<p?hR#7c~I*-KB{<k6ND&a5ZJchs>
zVH5&Yq7V{$vY16w(H3WGXER-^*Bhxv;03$>?%a;o8`F)%?~(ji#*&R<x9l%x(*V;^
z5DHcpZ#Y&!jD@N`Cbnvz>B(yhaUcyr;%P*=m!uZ|;;bHQy4vk0v2}3=*L{SI9$XpR
zPWlm6CMSbm!@YkwEk{}zY<zfShg|!plZyEz?Aph-3j#P$p_f3pgfOhKzIV<`Y_ogw
zjg*7mI5d+uoy8wEQ`-&lEL$&3yzCA?u+)Rg;!@ij7<lZgJx;elM>??7g9mnK2?UZd
z<j`hZ$8`Kv&4%D8lGS^EI0w!+(%m4MAG{mh1EDWffktvdNVEaz3x9I%&ojdgIjZ{I
zTg9+9@E2#v`Si90#d!7aKb?s#D7M`f&p!My1gdcuPGKmfRe76Gdzd;xQ#<O@a`lQM
zbb{yppU$-ZrxT@@J8~a5d%|9w-aB$1_vLy7<F_XTQdFa97q`Ho3dwax{4ZK3c*xT#
zor0LC)i7e?wwgHXVm6<eXz@VKzA8495N%vm_JF(*P>~!yoZzfOcL^RJEvc3XqU2k_
zo5%qfDUA|yGa|(QOiV@nZhjz97Xxm!Z@9!Ds(j%B>UT@<261$1U84QjpucyJUp2}8
zJUdd<!NZ$C0qWG>qSp>H8e^(h7c2E;kC^NU=I`;|GWwt09=)-Eza^5Pv{W$Oz;B~3
z9BUNHg#lPXM9_0%Hpb9kB1?i^CYdrVCg&tG38pWl@;bzv>CQ2{STuEa?2JBNRMM$x
zSVf2yCY{zHMvtKhL__j9e+^%rcUH{)z0M=NDLhR0k6-=OCHk`$X%g|5pvuF(USdX;
zdL`~aWT8ZbFVC|VN4IOokoCfH{UGfi>`B4qn&K8TijqkBiI?=$G3|d&{+NBsbdLNS
z<$Tlra`eHeAn6DHqkC7H#^Kl}8mIY0e@ucA^}u@lfY)^7_ya+RD%eu0HRZjnOQ)Ll
z(e)MH>VRk)#RqJIo>^m>1-+6Uxg6a{4ICts#jA)7`Y6BYU5DBR&Z@LZDmI|L%uo^U
z=<z<&mn-f+d;}ZcdVS86=n@cz6kLHPLVZmj0Z;gL{mU@ZQP||G3N|&v8lZ-YSL?4a
zn`T5-bAvb7#9`q25wC{N)g21WfFe{q_!ANZrP8j~{c=s?qyXklu_h*|SFh7^^GstF
z`izQZnHWm>$$Wj{NYhNxG?e@j*?Zo6-L;4%^X5s>#u|*Da=d!+eck+#X&>gRZV`=e
zat88H*Y|bu)^-;nUWn1l^(z;(Ymdj)cFc?VWsbNl93W|LT&CCl4GvI{0|!t2?e_q}
zvgLY!3m?M-v*SVzUXNFo{#zGR{cZYm)$>JtK0n8zRU~fNa4E)MaMgW!l4Y8Q?JjSw
zMU+Y>d4&4-A>DYIX)fGf;}d>~M|{m<?Tu(RwPa6dg<#~$V6)s>!=CDf7O|9pnigHJ
z?<r*voD*iZs+tyHlS0neOK#K?WWQ*bFg`(nUDKMn=vKYF!n6+!P}zYW!&j}mNe`c7
z8goKKB#A)><^{8{GdbK^iy|3?AAT*o9ehXD(ZMbJud>Wn(Nf>A8>1(8TlbpIeA9G{
zYTQ}xD+dyA{1W?|fc}kd9jOcYcBl);=UuQ%ao|i*p^bX(I(Lw_j!lql0UWvHE#2+i
zgHsg;%1fKY94lGFlh?O)@sg@cvoKB08eO%4oyhC;^Rlo+`)V6;Zck$jmZ?`CGMyuR
z!KT{A7UABKQc!5@ep}Cb()48Quc~S;u9pd6!xGiAZ|H>k>4DG(N^4rMwU851z5aq8
z3b+ev3&(~503Pz$ReDp_!M0*%kPZ%{aD{$kC{qZkYeiU+sqoNs7m{9=n}BDYvPgFm
zV8>&-F;E|>#FH5h6CBdjxvO<~U$ev_Kfwt5DtS>{wQ;)SoZfrN^yN2KH==^YGhco8
zjy`z_poe^eZ+k->yTvaBPj&Fw#)tLJeV!6NI5JdQ5|otxV)sjwAgPD$W)Q1xB54r-
zVw6=AAJ+xfn`ZOzvOU$Me4ZgLH0La!FBuy|wHJd6u@VC5;uQ1aJvyzE8HaVZp^VTa
z(R}bIZoZM$wpb`#Jv&$5FDMy5I&T%K3xrN{58|wK#RmPxGj3m?%3F!K2q|UbyZYmm
z9C?Z=Xc4SKP?73>nVvC-A0B?%IG3r_%k><2CgI6BLhup!I}>D<70;QT(com%p~0pq
z=>nXN{ZP+dWma0?t&+?W?Dwu)^)KU1TcLQ*kquOC8oZmJs_)XD30R;P;20#LB3|9{
zrao{>yY)yY(wm?)kheTr-dmNgrUeiX{xJ7`-D%d}1{|Vq?mG|FmbFka#eH|;9;Vct
z`rntbF7ZG^DM1#~#y$0WNd6(YLss9V&+@P`{9T&-<-P{4sFs`oRn@ztumVT<*)xV<
zxyyk9fOFE+lAH9fa<j(FDo%#SpNcDl>V1d48Ct||bGcQrxZtj<((llZ1G!9<gV{!Q
zgnKi`#l+9AX}=vH?WtvY75isJsE>H?hX3Km#|BJeW-;Ui;R)gd@LfL7H0Ctdwpn-@
z!1Tyc{e8XZ&Gwa7x8O!AK0}B~&&VMnDv5J4r8Ds=2mke3qknv%ZM*95lFomf88~`x
zW$C`!=GtaRl05U$*Uj~_#&u9o{Dx3*KdV0y1d4Vo0G@~7rb3G*%+yy8HdAo+HQuJy
z*J&Jahpp5DR<u6>fa{JI^}irUAlJ-F%m|WtM)i45_kcD6rNf(oyLtU6Ka$eG@_Rqh
z*WG72M)|5*ngpxC3qxUW?y0%WbbQc+1zkjX2yFUIriuFrnkR%`ks!JC5Ar=xzd$Ie
zv8A8!uI?omvF&3?R-2aTRQIvu`<eno`%vBstis%<uhqjBwHqO>c|DiwfyGRY3N=&?
z3c}_@dY+{^uOzx3(&QvO@9@Y59b&0|Ru6b1>Uo&#xl`?d-6NiY2#>E1l#uoaY!gS2
zjhdX})OCyY@e^y2GjVRjQ~c|H0cYP6(b>3t<b{aol4}ObAFq2BL>#WU#o-5q?o8*j
zIi56>uh|uWnot974WKFu(Pz<F&bm3C=V9;i{FF3u)jn~utox_hGrLEK8@^k4O47Y#
z)>s71qA4+6jxR+yfp>5>5NB|nz26&GF0R-3ii-pU;2))5JQ=3}Smyvi2>uz^4-6}j
z<YeuR^r6HZkEgg>3~&NM(H(WpCEkdB04WAd_%3*SwshP)eL;ED1aMwa{Z8~n@Xy}M
z?d#S>kH{1vR9i|N+$3Szns(~hpF|#}4#)v27vAmk<-Ec{Yn*7CkhL_3Dn*M$XyI*I
z+~<Rl&V^5Syu9j3UMeENyyF%%c$>!y2^wd7JFp&?n8%Z<HZ0J3pN9pBpW#a%@+15d
z#G{&sPpChcFyqyhO8wqR(K6vkEK#UZ5IE5heL2I-dgwbG44)?yZuht5W7%E-Gx?IV
z&%IWE$(I0ykpXIcPjf$D3_P>u=!G4ly_^&QKMatJO?-BW&c2obv=aP9qa6H>(K_K)
z6T>wrAQ7E4*h2vvUR?JIXI-DD{A}^%68{w}YXw8lf&EtNoLC>(1|pN=5;(PYa-7`G
zZ9@LAlft;T%8wCQq5#|?Zun@GLQr#ZdTHPFIF=xLlc|6+A~-r22g!!tB_RY9_K9!w
zzyHTC#6&7N-ek#C<$9VT(@`>RlrJP6DRIG2eO!=u8ZknPkofNRx@BYJlkzxDv>xc)
z$H<V9Ux3sD_>&{UTzs3oa2Bx^*fQZ~k-%`rN507FXJ7VJL^h~^GSkK6l?$4X{X85N
zxqCwoIh%BqwA{Yt?g*I{uheRhK*!Dy0aS3y9oO1Ut(h8%PV^gRO+7gPZ*eEP?4^io
zNg3cRC84D7J|MXci|zZqZH@dpR7%bof$pEnAbSI!Sun-k{bZzs2WHkcG}9<Gb=F>K
zN9;3=;`V8c@itV-66u85y8J5p>OYO3Tm-)=PBXGhb|Nb-^_K&8*tM8?WR3k%wfSMD
zAZBwIiJ~Q4f1{ljG9CD-;lJefRhr|2l)ZMny^TFWF7g9td(9yg`f!C2y`WgUUmIed
zl555mhR9tlp-DXdyX);<Rpw~IT1LY9QA*>6WPHl6>}CJ^K29HLjkA^@NjC{Ny{t3m
z6g$K19Tq~{Av#EP;$XYscQYa%&o~G*d2KV)n<v?kuSK}4<AI7=l4Z#o=rGcr6lX$g
zIEXRLbrSpz7Y|ssyl&t9qFLH7fhkG72DitWUrVr`yw-dok63ZD)oROKKJaL~F3zw^
z>I~3G=%(?<<o_HtX&-9Dn};ko@#^d4cHJU#&E_=A*msHf6$r}<sY2rB%v&zEn|GNj
z1$bEd3@p-!iV5oXIrf|_=ESr8J_HGl8Ct9I?RDrh01J}e1ZvUI3uI)dvGeUu_n6%X
z9OFGFid?dka|D4XyPq6E0xV>`A9j~eUXaq7z1A3(hnhYI`v^65z~9*Ig`oXWVdvh$
zaT<SapBo1YTC+~o_tMNnz>TkdC*PK;1gd)<d+|B$w=4Vv+X#X~4H~b8cDLW1X$DB{
zHi1;Ug&-!|9ec`l^O&+}M*B}77C+DM+tn8{Pm03bS$GCFLWc|!EO*cv`@kkM*O&mI
zQb_7@;G7wY5RPb458KntEF!E$m+nLB6q7-Zo_5Ec<|hmThO4RZE%9dPEV}lyuUzJ?
z2tPRPRIqeBY0)H9$!;nOzm{?^4$3MRK?;b4><&KDj<yEEC%ZPjR+Tr{KLkw&2BA_;
ziC4$(OZ@ifb$p%5dK`v?yTE^?Cj*HqPtf-9X21{tO&olx5h+upSj)VSJ(H)(k>`de
z5d>lZA)?>xYp*Lehrx&;m42>>Q-IO9xtl${qnT=qA9H<ufCo(YCfMQ2OYLqYrUwsR
zC^XFi1vk&OZ=B2rP|tX+(U|Etd2ud;eJT7;Ow~_4<=dioGp8<~!^2#8z}odM1KGoi
z{eUJIi?#0Z+h;#+09Jlq;47_nA2f;>o+PY4TIP6l$$9oCg^?>ocm#Pg8g1G=Gh>d6
z(<@;>^1W46qU1VnRrIgd+R{?w^_M9Xvpo9G2l<;Y6mM||pS%0k$9!<2y%Jy&|834*
zbxw+TY7Rev$dZ-SAH)khSV7Wh^p;uCllL1n>`2~Bja-x@@J~|jeBm5l{I?De_o0rw
zP*nvLrozg2L39b5o$*y>Q2Rcr93SjE{7X>mLlYj}0kUyB#EsE}RJ#GH_>^-#`#*E-
zBW!3tG01o*Nit~O>-b;v+nX?tVE6Y{m*PYuJsEf|slPVpu}_&E;wdGYMJaJ284|R2
z>1X=+KMwX#aSEqXsVcbhW4%~HT}k8vGm7v(ohijT43Np$t*geF*xFHK44^p;T1#<<
zFLehu1Xe<tWeHNp)U7P+yruJhfl`Aac)?<9PB#vqo|kl|E>R=0aCQ?TEPi@mu(RuR
zX)=w}p+nu-By-5af_v|Db<_w%a*8;KE?rJNd53<Y2(U?k#Je~BJbVpKDJ7V+K_Hw=
z9A}`$ziY465zphvFQLx?B#4aoI9`By|26xua}V!;ZHN<{*`u%6Tlz#i4;Pjf@Z;5s
zJf4^mC#6ZV-?QJpfF8`hqB1F!H<QXBmh<x}yUSoR+fYB8qaS57A4!QLx=3CAx}BJA
z`k>FE$%AsoNj%im>+G4arXyQ?y3z6^%WMhiq*v`b&W`B8zb1i(A)cx^ML&=jEiF<+
zpi&%nRqPph;t<nDJPh0)ui%qZJ?2c)G!kyg{OZ*+bhq?qH-ipb02vxVu;{el2zl-&
zE{V;%*Cf&*4+ti-aOxdgqtt=BWAD1(bcu8Gp<$BmW_(iYu*L0$sax)eJ<DyJ=&KSY
z-X9LH=43gdL9wwrmmhIH;`@_gGZ)8tdER_0h-M*~N)33y6>ERzXfMxVbkJWZZlQ+#
zEA#973k-KVhNoCt2`4LbI(~xgdc8+}O%ZoY*wefv3;;yc&?<f5C<eeO*8^A62-F~7
zGOysw**fx1hT!-Rzz8ffA6A*jvJWoSUp?u0j%APX7FT22RbP9pi$Ad>*-Bw!RYN0&
z77}HWw*jb&{3<qr+$-Y0=9+v&Ga!y9y?Vr6u{|~%J&X3<jh<c1I&uS5RXC<0FpB=;
zq}yXJ+!wW&WsDA@TP5x(Ro$^DwnL<6G3ZNZB^)^fvE!4mgHPcB9wvU_t|s}|c11at
zyz}=UWP-cvo#E+GM<_+li+J=g>)5JJH)Ni)j7PNTm(w4(w|hVMe$h>sykSC+M8){i
z<NAsFqx$h#P&6eDhz~b%?xjm~+JmM&uQ3RhBkaqm59`NorA_o6<z&||!Rq+url~2<
z>3^*-zaHfm=cGjO+CBYI-QyPX^E~2jizTmui7&b3S^d8k&5!YA01JiFPLKj2Rek-K
zUh*$+N)py(Ux-3+1lSQ9^{syB2_q?FhGxK2f<25y7A@?;qoa=GqYpxHee_M147|z_
zN{CT63Z@4ZIo6;vR=}wX@K=SJp!4!-B={*!efGF>=bAGHacVzKk0lUcHP{)LW3$0M
zvVIFFnSVj-We<BykIxi30JPGQEgsg*{bSQ#_lOm&P|^Zd1gLUI{xS=jYs*!!F-g&@
zq3F5P5vU3Z&ct?}EK=yQEwRgbM6X6d9$LAz8cQ+Gz+_F4Z@qAAY{C*|1dQ=Gg?F;Z
zk@f0zv4xkJMmY2;tSjIuizC1I#@LDlZhOcSk46`s&KDBY>^oyg&}F6}5L2jyY}mqH
zu;!}RRacpwao>cqA21o$ebfBdg^foTl5lWHn_Z@*SOnAGdu8kiDbW%{KGIuPMgjmy
zr+|!;qRxCl-}#Pbo`B<-vE;&%2!WA-20;kMx#GNMV~Nw0)-it4xYcYGgFQS*yt;K|
zY~kRTA<Q|(TN@G;uBf<jukJl@zWKd8qN<R{0mP56*IAFmt~ozO<hO8W_-<oHgy|_D
zJEgF0f{6FuWf#ndM4in_{rDpg#DQ};De#b+AiQ55?W~f74H?1_RW(?{Ys<w@&q-6&
zMiEy}^tqTpaZVrs3f^9zBa(@fIJpk(66FKiENTWG<6|M`wQOE60+mlHJwU->`k%eR
zIn5tc3zf~Rk$6>=H{SZ@XKOJ)nB}@kLkyGDu%}`N4U1YV3xUc>dQFqhSUvf3@1x)I
z2+Nk`6`29F1OOIi+mG)u+#<`y(}R4YEp$ml#Va{>%%7$U0SC_wVVZ}vh`mF8z=hAb
zz<#xpVL&ekAxy(CGbe;(&iVG`f0==j>W*ap^?`EneohjN{n110ReMb5h}}dj(kdjp
z?0kE~FA<x02Sb8YoNk49KO-jNd^_LX7lWfO5=y<dn1Y2$9lgRnbw19phyPd|e~mp&
zes`EZu^|LE+n3Ea%%2#>nU#Ce?CE7V1t*iW$6F_sVF}lho_SB(9eY`uQBKn%tmA`G
z_V7>Lc`N+IfhMKK%&})QnZbo#Fu(X!4SdFKj^IZ)eV}cJtvu#F`-~G0kG`M?8IZZ~
zX8Wm2+{vnNd_!TkW`VtVrg0d~tPYA02w{VS;l*BLzj|-XW&)CP_BUZZCG|ebyXbj)
zeS)<a;+RERIQSnycUM1dhw|EPUF;|~F0_9MGIbkgZ%T}+UMuZ_X5*imP3R#6P(A*#
zJ?2Z(a?n?tn*=<zF1N>Qi`fi(X8Yj?Bz{qSz0m%QHs&3Qk0K2Dvn%XZWj=7Izn+i)
zgcNKl2IJ2E$X<0{`-!O<q`Ix3+-Ca@iRgZRrG4gC?K_CSR9~#HLm#*AAWBcoebFB2
zuII4Dr|^spjTpKAyZu$)`KoHf5Un14$<Fz-{Y+fHs(8gdeq;L%gg`ZWmF<xff^Cjc
z;I?3eecb!zd?1ISPcl}iQ}47N`j(%=(T2$R3nddzj0_>$&Rcf%()Ke6`|<k<`wP6}
z5dn)xgoW`J>PHAly!z=i`>ubR5okcLK;YRSAb0l5_O<_w5odLbb8;<@B)c;oas?+#
zp6Ygi{W#9#94u-zKPyyMUufU;F!Q0+l9X3U9XsBB`cBi}=0^nnSm@t<(?wF;G{)X?
z55D}#YHSct6*&}L;zaw$-7E!lRD-u+KMB;;jlJxoJ_f80&Iw`&&&irI8xhRlR|I_D
zOtqIh+2;Eql$<rjj=sB1tB9oG?J$ERnw4Nc;t43e!IK_jH#3WPw+phuBHQZ8erWH>
zCX%*koc+dY=H%Q}s9VmrS1otfk93b8B-+THb{^{on`HSK8$e-7d9Jr#o@Sm?KGAEY
zDWAxO?W_^ESm*&80&jA3FPv`Qv6@FJx_to(b^cv;5O@%zLMk^e5h4=g2EhF>$iCq~
z`zK1t)PIP_-~eu1W`DJVPeO&zrO0Db%73xFV5>DEGXv!;TF+F86jdMWwO`x;4<z(R
zf^|wLeCCIXOHCCpRD12~zc;-FEts~@2Voiq>wMi)|GD37M|~u;3&`AW4{tGTL&bwn
zl!fdxnQRFv)KhQm1pCE>il`HetAXT*l1m7yI>n=RN0{F1&<ysB;s+4AzN;>CKaHk^
z3}RqCW)oPQbgI7oXY(OR9xv_CbG~wNSH1EF+6h4hQDau5<__d(hfeyiU2CF>+M(yQ
zYvnjM@6bIyaDN-{2ZLClj1$7OKj_hKVSpesyE=gL5L}c5pcB^jhpzS+>2pND7a|1`
zMtowk_vvB9Q6sWN@G?qNNWXyI8Q<yMx0_$%YS2<5iSHR9R>IxC>keMiLyC!FPMPUB
zm=pid`R?>ZWLKzl6P44&Tx<W*Usae9`J~0-_Ywhg({K8gO4B$Lp@QlW#L;t-XC2UA
zxYK01TJIXP<x+i%$_h;N%0B&q-<=98h}5q$`;)FmSb+PLB6P)WJFi~dxKCf~wvP|^
z>*^Y1y==ViZ#r1sW>L)X+pl`6``ck5xPtKHZ2Fi3dZqi_JdCQ-nFK}yb#Djf&Ix9c
z%$nMk);){LXzCyOY<K!>qU^-Mh4NDX-r%F1F&CK;q9pa<mn-KgXy}$>oTH|?3qm>I
z-)77O+W<fJ%tR;n`Cc+j{?kuX)$jTn_mdQJ!kEFdyo$a1bboi+Jl_myq^!8wf2`Ag
zyqPG=TT6Bgc}z9fae40C4x@VQ(euNn6F>(T-dVC_cbfdWZgM9a2loyiB$J9Ie&+8w
zO*%xihAyt5!e`7D)!Wc?5Msfh+|^U>l!#iQ>O;IZWE&VpU}0;dUc1z^OC|%tAVHRp
zm0r4++bXIJUxS&A=vWf2$%F!Q-bkJBlo^=GqYHNkjlap(Z#-@~itwy91slX(7O$?0
z)=Qq|)qvN<>68py?%v2=#};1QrJrBTFf4=K8oJ3*$@P#Z8+VTc=jEN|x#gSZ7Dw9F
z8Y(xy$dY45#25Y9XJ)92o5bMLg1x6Hu39ddS%kf;N_0x)*^^2Fv}3G9lxCB6*rHGQ
z+<nal@j;qe`@P=%9<8v_Qg_XLhKVLaMYrX8&m0huAP^83*+LA{8NX9c`6#?hgV!2a
zLmcLBoB?V@nk0~hON`&9m%Yhq!<f_>(f}UiSjC?eXfM;NG&d>g3dR_#6~zSrVr>6_
zYGyyD>PxfNOa>9pCGAj*zH!bRHjzb=W;u0~VLVLCEGOy@f%(I69d~#84z0rY3z<WJ
zfwbfN`nB)%vUej#kQ_hDi|$O2zu^eq>!nAZ-|mFcm1n2^@O`rpe63;3<BD5Q>@x=Y
zD9YD5y)wyc1P6m)oUb-cV!C|D!CVJ`=Sh%gOMwRBC33yfgnRwuSSK{gY_8CU;$3LE
zq@0Xb@5ei@3-vi1Wyh-_-|OM-Hkcy6#RoXZMIZa6-XTXJx_u$tXncf%J-Jlh(%;M>
z<_tg#Lm(Mzv8nCU9X8TIW)brmD}6l7QeRxPH?AH{H~@sp6L7NbP2KZVGr>4-s017#
z*}(`*Wqmz&=-K}<rw<XrSSW*lT)ui*cbz%hT!0XvV)SOD8IfpKwEa7EIo}ohkEc4;
zaFhBG3P1vqX1#HV8RagCXjBN590kz+gMOY}x57^x@5qmJQ_L6~y=XND)agqT&1jCk
zfwZPItccNa?BjOozdkjapbR0VY(rP3f2WtZR1Qi6K{kL(G&5z_Ia6Yb)p5;wiaQK$
z#ak69E0e?HP;$5Hp7KmYOTn(=O8at^UM5bIM_s*L?^thoN&9Wy0HZjsq844@j>^My
zI2NBD3FT$F=B@fqIY<~X6r}Y)z2U~1tMpR|W=9m91yuNXitrMhck7;;&ADgFx&`bx
zSs0;yx|aZ72Eshv!1DOi=MCDQY5)>902Fef%LTsx0Iw%Gzy4xYDJDbV2n-!g+o7Yk
z(tH?%;%&n0cLSy~`6~K47r;{RV?rNxu5)0!Y0mZ4Fttb-$0a(Ocbln)g{VXBVi6VE
zrnBERtpXI%D349fK-^viZP9ry9zjG!US~aIzl>M2x9RR64vtz5EsxMA0}>$j`@h%k
zhB1$i><R*vGT?;mdI8V*@P{BMCj1cOmHV;VNF1Kact6`q&vIW#W&`0ga9@N!N-Q;a
z<Qu)zg%Hy0W3@7?#is*NdxviPFCP(K4`U9j4bxB9H=Hn-0ia}!&js}(@h(XFfDl2N
zLVx=1(tmJ+?G70b2_G`M&4FNv(}n04uGpoYba!fKh!7BPkDP<7rOOX`VtZ~aNgdds
zFLTjEp%~lDp)u9uU9CUPEU6HZ&oRqF*YDC@xg0qj$);{drJ4Q1QF`IU=KROCRQsD6
z<K*jJZm*bhw@R(wrgsDD!u^HFwHM|)*y7+8T?IjBC+=eop#G5Uu;9mb>M|FFny$lW
zfk1JX7BDbNa5@htu2?=91|x|SBG2G<9SauW{LKRd$B;8skg%a9L46c3&t9_ejcyev
z0;9DmF&h#5fTGi22l@Tc-|J`G%LK($&k(GQKe7-R6H<S7P&cNTon+OASwzX0Ay|Zi
zJFs0h%T<zyx57(-IL=e{c=S$v3s0IgWY(5f!(!kzMe~AQ+8)5VQ3ccsdct{-*71Mn
zf=_6L3n0Kjl-)F@pXq%6jXQBYZj`cG^U61G(~CYfCocPN@zx=(O%g6BvIq+=B@q~4
zLfCASDRcViS5pjfIA|cE-c?X<1Y@xHLqb8SfKI|D_sgWTtq`;(5=7-rJ>5lLNWoAT
zAr%4)U`y=%xPAPn*Q_viLMbMHQwzr@C-M4B{pC4)BZ*QeAsCdFV4SI=hY?@4`SUZn
z<YqH!sISpbc0>E@fIgMwqEgQG0yx4-LF0bcvntKP4#O+JFX$tTTm<(?9=f36-TXly
z92J<H@mJ&YYXi(yxu=>sb8h0~0vBrTQnUoI+x27IL%V0m)?0C3ijZw~&#N(DIQSji
z^)j;{+NnJl41z%F0~9WHsiY9*ZY}y3A+*G9NtPk;Aw>o7uzo+^fM}Lv;$T9Qfe^7l
z7wA)6Aa!3&jh7{sa@LZJrG-aqIFsxa{V!Q37BvdN0m>A?#{FGT)+3AbTE}cNGgMvc
z1zzDr<BH)Rd3*wa-~6DTkg?=x6w(U<5SIZsmxr|y93u&+U`3&3an*oT>s3)?MU8ky
zFS~`Gz-?8KItUw%-ljJT>cRPpq{}p%@`onjg@9f*q#58a#7XY?&c3?0oWEq_7Vf{r
zWdP$!LmU{?O^`_s<&-Zr9~g$ulHeCIoOArI{-}RG3}M8TutEv{6@e1gyIdc4hB-^}
zjR(a>Wj4AbUngB;0LyID@M6NgkOGq%z*IF)7iXIXkuQMfBdem|Q*~xg-`t;e4njC4
zgJ>oDC8p$PU9yzr5mFIi`GTJ%J4?Kp_O$+DAbZ1@Uhk_hh>==Rbd-Lo>yLJU?hyAS
z(r)YzIuD=_@FpXY%LE~i(^GJQ(>tAIqk{DtR74dQN!VmqE6CfzNNwjaB^rB|O~YXZ
z!g1|VUFk{#A}@k#%}&L0Hbb41;@kv91Og4Rtal$r9Wo9c#B#Aet=67Wb8DlaEMQ%r
z0uKegmVT0c=ECp>YKjkk@@c|}^xvu<a2cdwc*MxrW+0k?o`2LWU{oN*y=)wl$#hsN
zcfhR*!jP?2?9>lJb6^D}J~7Cx`pU`(b8{0#BQ_E*+pJGpZ0<G>3puuEE?1bnrQ<a&
zb0e})?t80!qA-yhG@#>U7wYU6%&ix3LELH_>Ak}Di?<0w*I%OV%{2Eu8uNuqs^wwy
zx<r2q|H#2(vncd6f)&)8C+L_dX8Q;6BMQ1@JM?xCA-J9Amn%>%+7}bl-=jc3KiO=Y
zt}G#1h|_o~3L`2^*Nz`_8OWQVObDwPY6L;CC63xE)DKN{XZ1p!5aH>NExnM(?XV>g
zbIUPIiyB+zI&h{w{S7k!_S<Nb1dAZwst%*|YZFY*L>`tr2w{Rp7U;1)(~A2f{1P8X
zG%A7{M(OY8nR_TG!?zSZ5d)S;ySZz0{jD5{q`rg{*AQI>ZQ|a4NpjZkY3`S8j^SoY
zgjEr-k~_Uo$RR^2w($Cm3?%QhPFP{LV2YZ%OMhaUdBwF9l^1-Y2=wcdoIXfLayl)f
zH47OIHe<3Lw2&E-h|DJ07_6DRteS81v%+_f--D!Ngg6+fDFJWhlHShOznirI%rv_s
z3Xz)C6*cRhH!zCALNJpe`wOE3Gy)d~e$<=SguheWA~;@!-qiO?(;>IWI%X6L1AuPs
zX5S7S>r#Ig(Cb{85Tu5|#z+JSLY*SE=%)qgG7*@VG({p{V9_eyq1TGghW{ceEW`Kn
z>th0XQM!RpBCmxDktc=IDzyORr|y^PA#?7FBHN|>21xnPuVaM9x8higYgnFn8e}n#
zSF4Kk4KvKg1j7@R&NXL<d)c)!bwl4nQy=8VaH-(T{(X_|#=8JjW#Ys49Sc$eKGk10
zne70PU_ll9ULVtJ8ivAgpbBk6cZ^c>fgSq1@DT|2AogT&T*0|*r%vKdI2)0cAd!+g
zNw8An_xcf`NI2_ze;|7h25te$tS5D(tA|)Ot)6f1-J)+3?k!#AHX4RjEjm$mc3Drr
zR`TUDVKNiKD4z+A1d`fuBCSjaJ?`O_G~)dV<)!wJyiZE~Lb9LJBZW}`F`J5@7#ZV}
z)y=lP@N9#Qh1a6S4`fjsZ3#(wM{n9<_Jub$>_9NiOG-5mRR(K`SHHICYh4tXjaEn~
zogBuhpY=pnMk+w!#D<4mpA_V5d(gLr<K>u!qkDBVBs@wuZda2bAUtNfPIei$gXjt)
z*MGKaOQ@$f1s^V^r>lA0^lZd*-rHeJzYw%A(+{v6WEOGZxI_nB4pK@fimsp>Xom>P
zi2wNY8~qHX#I4-b-?<_RdKx3Whvntg&B~ZVn{`iJm>s`7Eh>DV$lk8Ih7Sl43os5q
zJbZB^iI5`{nm1*;ZUR6KUuB}Ys$TyJOG_X&$rR8Q%2MSjQ60)^Ni@utmtL+D_nVQ1
zB9_V3agzAuiCflzYCU)`dr5<r6sZN5UdEh%v~%-=kt@(T6~Z@>_boLMPCr3?xH0zh
zrG1RE3jT07_u&a749|$ku@i2K{Q?u(Xc#yw7<gb}D;=~z@9RqmHgPSGf@g*-IA=Mx
zQ_l@wkpiN!jE5lKOjcKPbS_)fuFjhYHL3Vj-~9byWz)#}lcC&MdJ?RV6=<SZIDz?+
zBR&y|aP|TF@}pvUVz;KA*0fUUvKfYY)i?G@14%IfCBvV=uuUub=$4~ndg3vV{)fGc
zv=odP7oY?t#Sr8e#&5G{XP8#<b1)ZPR<hfB_u6VO&BD<5>+2wh#(?t7cQ$#|dt!JV
zC;lMhPvf`cUG(Y|{1#0D#S}y=lsj47O`p9mW&%c;%$?;Vlvm^O?GHYRo`8)FyGS!t
zzOX1|+1^w5jTqwUt9I83RZ@yb^xn}i6WAt8D%~jwG}PW1_RSlkCm@y-G=NjUl~~r*
zr%UYaZ<;C1^J=z+?yiyy%<9H;dp%R&={(e5->lSI9qgAUm=BF=!Goa%)hmh<MM=JU
zPoSCPBs(Q~c*<n^(O8CIyYg1mA1L<|b<59=U2LDd-F#*UrAC4~#RR@H$G)<&nUSDf
zN{Y(wt{!G5M6qyug-znCJtjr}1Wp`<PlK$ZrP@Ag9-|1PZfIc^4BFpqF*D~kqwl5V
zyrFjb$t*z<Auy${r=9Vj`3%0Mb-QUH6XpKX%$j8@nfSU(ME1t<c1?GN!J##qt;P1Y
zJKbgmj%$|eXrA-!AA813;32N54ft`IR#^+|N7qD)heu{LagO5mDty!Rb#`G{q!bo1
zk{6!m)J=+4ol5m}kCU6iRTmi-ZW8NeTH~a)66_y7VIQrqM?T^C0ymW$xJPjZQajh_
zFZ<i#EjbF(B^q&ZgTP8>sCSQc7WMT=MLArWp&uB88&!5ulKME;d1^_dL{*SX6v3{x
z9896I(MTLq<7}K6c{M4evTze<LYLrIBuYt=P|g7_=$XwiSL2FfrjwF(bRm%@r~_B&
zPhO9y#A2OUF&&$;dVZkg+e&RO_-7(r(LYn@1JM?{<}(wWuP>o682kj$O=7P%j_D5!
zbpD)e_vc=f+VQ=!Ajc#5PsZ#mMYl_x6Y`m=-&>sA&7?08H*?ZFx&<>5C4J*pzdLzT
zJ=t7&QAi9<SRRD_58q-hOviJEvJxn-8p4iXL^7}i0$Er8$M~KKIul1GY%El30TY`)
z;BY7{C-qZ`)|j7-+*9i>4@#{RYj}-?H_dcvC>Y07cp+RumTc6$Up2qX+f!B+o+E=i
zvTDT}`ka?dkMQhOltU2&iIxgafo*!fTSP`C3|ER7R<j>L4GlG~^UUo!^VcZJt}+H2
z8(F$BvM?Bfa=N<t7k$RhW?o?@p?b`T&(&o==mEzV581Ieb)_5Ey!cP_1^dlU0h=b{
zJ;%Kf&vo24x^a)`pvDgjv5_OvP`sq6*LUhWrKkz$02<un_E0?~L4EMO9_c#UN?ls)
zb#4VViLgshQ}*fA;S&=FuKEyMNE*d@(p1S$`ZD)~sQVPIyaRrRrTbN%^Pc&V;KzeQ
zK+gwu>FZXz>qe7KmLRT4ZU(pFwHx&LZ<sE0tN1-3Ilv{-n~~19X1%Jjmz&;UKI0T;
z#w8FcJ?1SPD|Kv8rngRqep+pQRWEe?m)jIeN>m+Q){nZyk^my91TRZSPnT>1YOTJk
z*-S+UP`Hi{rIO`w?$90FIzDaA4kyXlow~*SJV{t;Nic&6PHHcq&rMa^cIa+jm<ihs
zOHymT*F9Zu9b0T%sN<&l{E`@$Lx*lZ^_#AK+YAhMhug3IO<(1<=TT3~Em9O$0R-Y~
zFD{MzjHj(;?9rdO$2=4jn_v)$s2hdF7c)OD{P-|G`h$MSUD_x=rJ(9-<M!}eNR}xY
zX)NRLEJmyP?h%%ss7~LhJGsjj_v~C@WeIgCme2EOt6KCsE@0%6sx^Eo#I<IqKR(tM
zOU*01TE(MW94w6dSth1#^hvye9$)I4rTA3>aagimc6G1>5*Zni)re-j->vwR!=BCT
zR;D=G)muaAQNR%K0!;7!LJ!?)rWub~l*2{dNTm9J3VflTaOcn3Q{0L|h?S$t!B#!w
zV>4t31qEHu#1D|{eP81XU^?=A0oSt-O%r~cm$&HY?udUzI!LL9kWLoK0>d+>rvUWC
zfvSyW=EGk~B81_xpY;2$m>zPpa=!>TfCh1={r2c67ZlA9dHZn~SQ=muK{BbS#9l7k
zqo+&JE(wPQx+PT7KnD2(KKex$xsbuNi{}`Z?iJU5vZSO75;fJncuOS}dtA~(-e`hl
z8r~<q-%Oe5MFbMm1P5?<&8&I}_pJ!;j=EVe1lMfQuO4eKSAIww2+d<>wlp<&yWR~N
zlt+6cJPA5)(H&eomMhh`4pzqkD(^VTF;7Pl{$eBvmkA@3g>c{#oPW8`Ln=B|^DYqY
z5+G9l-QNnYlo)Eox<mqSIUl{IU)$v_1uP~&2pT0jbr`7(sS|Q4J0^D-MeO(J5-DmX
zVG-pOTd7-z;A!fq_xMA<>DKd-CxIUigIrtyK}7Vt;aI1myXEY9^d+u_2gHvH)J=Qz
z)5=3aHnr&``^Rm4+SPp$mia*n*`=7cN!<D=np=ts2K1dU>^dj@^2qihz>9?q4m!N{
z9Yh9RInBvQjgmOF5g|#vZKA%Q(-X$omu5#wduDYxj-9{;{x_t1RP~wm$0H+OgaR8O
z#TQpn9iZSKu?p(4VLfmD!I3UBM#w~B0#a&gPR}meOsgx^xGDjqZcde7i}tWhJDE)Q
z{_y!afDRL*mD@>>0)?1^B4pJQABNvJDKk+8t<qPYX%>UtMVu6Hfgjql;yd%XqIz@-
zmgtj3siis&k`Bp0K7u%}7Ca(FY4ph3dc^>D2KZW(%7`ZLqh_9E+Z@p{i5M<|w0ykS
zkJe3gbzLVNHJcb!5fw|o5FA`$oUrZ5r#s_si<XXI0dj<jhAy3OY6|t9==6O$`YCRM
zEb-NW=>Z-nQLRX+Z#ie|_ee(}(bt43N;?B~u5q?1G8R$#QqmbxDGWP&vII}Be-fy}
zBnCb=!8kyq+ee}3a9^Rkb6**#7=NGEalPGf|82moAYhy#K^jv0?fl2ggya220nYF7
z^xk-u^Og7>Q!N&v0fQ;1!JUe7+rg&*CtR-s;$SRJD{wLMM>%uGnPw6-8HF^yEI{-H
z&e4BsCf)TI=c=OizfM*2E^u-SqrQ;HYY0)GPUI}u>I8NC@y?8?F@Nhw{D%%?$A1`+
z`cEB6|Ih)U2u}qMoHq?&5v~@tqHlNSC;M+J!b9)SheuLMjld5n{H<>MU2m%T+s~ON
z{BzX1x$<kmzi{QpnnqRBFZF@?zYT#0X&sWPhD)A13H2m$8;L<=^F%f12i-WpjLQ+h
zm+Io`rk{2CMKLR2uo2A!&6}upDGbVYfA65*U9P3LFP=lZ7UM6B{$0H}RL^?Kew{BC
z@B)b7hm{de{$)SvlIIBeNdix~rGC?hSsp_ukr)9|ObvpIdpa@8JzoGAZh|v3fWE3g
zorpCJO}gfO>qxcNAf#^XwJ*SD;b<30aF&8PJ4GdYq$mFty#iv1?rny6_^>2wh7!zq
zaraoV2dscgC4=cSy#G=qY2>U&^b1Y42x)MV7AY?=5{S=vp%-$G=^Q+cH}pqYcI^b?
zbdDT-FrXUYW3dUSmVLHXH^xgaA-v@e*!(k<_A_~X5IeA~vb|~Y;EC_Fh;Q_t;;i`5
z?4KMZa8&^^6)9C(s9#u$YD4Tz<eeh&fTSfL^^aqnmrtWAi0jTNiEmQHQ7rdKeckm)
zR8mihvf<Q~C#oJAJR%|X(<WOEU8z~o&W+EIXn_N3jnjuMPfoNDvYzeeoHW3oBQBwe
zD!EAsARX$CM>><|7;MD4tENi~SXyEn*>=<~FF3w8Jd(U%1PNdO$mtY3jg$N(R;APB
zPUb?gBrOh%a+<+YB@3M8qnHXM0GeF(pO{KCo1`Rn&VPV*@|5EB&b6n<#|gc^f2}iR
zG}Dl)MigdJYt_utQsUfL#qW(Wx(Pg(O4L7iFf`Sfw%05u&xazUR#0a=LpYs+X-?y#
zOw}fL1>hj%9PjOFwpZ9x(u6xYG&=!tHbb5HfYaw$W|NFOCDaqH4a7A8M#Ol5rbXwT
z=A8O7{RpB>)HC3~663^muDQFDD!XCxjbZ~%PBM#I<#DXZX3>ZiVj@qB6Y2EfS|@+7
zX~uF_+JrD{Nj84KU(y!(<!3nWtI~jT<sMLfDrZgd4H=&#iA&XFpR-=GF}LioWROUV
z!*NhuS?kPW!wf(}8JO-T^#UU#clo_joT2BMqbR6v^3}*yr)0#5-nes-)AcKM1jIF#
zmIs1tn;fMC2oghdi*rUAg9z}b53x*dDP3GPE4btV=iVZ|#KRH4B=-!HGUBlCsdqij
zh?nUTn_DTyAt<v%&~U&EERS{G9&b8FU_4<h#eQG-h?A4!B#mRism|B==BrtaqMJxh
zk0bq!8ZyhdQ<@LE%w!HDO{M2Jm7ST9aun4hzyX^j5Mqh&easWi+B+CQgsL1ab!Xx9
z<if}&s=CHFpU<Wf9b$b`V-UWXP?FR*F_z5CclO+4y2eYv7EYH_hyKO~owJ@YA1WaK
z5Ft9|F19Xlnm3qrjm8jY!X;DOc|Ol|K8>aa$VZ<orQ92VPKyM(lI0JumS?bbvU5}=
zKVsh;1_9kJuMm%J?FQTVX$Id*MZCf5TA)HKu8|>Ujb%n0db48AxIe=A_uS}eh|nmY
zMa%`r1_%1uoo}HeC5jvP4MY<3#h`TRt`D#`U+VdXaz`nN2$tc3NaEezT0xuSN@Q;`
z6|^g%{A0YROwr5rwR?7S49kHOZe&`*_HYP0w!7nhIm%RZCIT9@Ub1m<IC)uY`F+%M
z7Ul>it3Vwj96OonTjX3aAC>|Zh}zS|;^_uZvx(bBJ0Hw49b}_J71GMp;P0A|s``$1
z?!5LNdXrV>an5eHmk{KJ8i{!XHc-5-AM0$r!wkc!28)8nYMP2jb^2Uq8eytR0~I(T
zrb`&_UBk)MjxL7G&iiXis6;Gz$tjYUs5~Q_@oh7Q<C>75j+y0jB^Nrh5dVkP^2CxO
zuH;zfJ6A`N2Mgxb-;EP#i0_4^2dT5DrhKElZXMV$$hIPUhGP&B13(QwjdRkZm@YgP
z95Xox1A%hjR|>)|S?YZFkm;iE56S68v*j;`&lGdtn1D0AyIEIZL#Uxalu9TdlF?`+
zZPUNI%8nsHGU$gTFoZXC)OY%lEo}Z!>UB}WtLvMbv*-V9ssvtCc&au7&?^1e<a~2w
zo2==iok>yuZE_l~VjdyrFxZk?SCVgCJkr^}t^HRih}Pu%KmvPyeWVmX0Iqs0()sL7
zQ*nq)YXm+Jr6}PCD|^_X%_gOSIOGX8FTr>aE_m;eb|0@1XM_s~r#(SOMpu^s_O;_o
zngW95$V^hYQ^xSxz8Yp1OhAuIY%odLC7Fq^R`Dt>O51aIa0K?@^@06aoUo-2ajGg>
zuf5Fli7*ndxLM-8s5gM}AK?4n>3ZAsrW?PA60oBvJY*<fcBR&xr+XxySC*F?3UD+?
zL32$?Kt4s@J8&>Q6PTB{WQwV+UTqRR4c$#1N-4idf~&#4==?FFzzsHF=<y+ws;r_E
z<^PW}^Tvqw^=Y7JrVh=kd`FaJUi=@BYt}v%8C}qi1mNm~t0D%z-p|zP!GWG@!!t$}
zN_`p1)bz>9#)Kh0Xap^&ajCiD>T=<e9h-;d5#L*lsn^Q#iNt^v9ASLX<uTv(@ABS7
z9Xs>60$dj?`JYn9kL*=ddDQVVN+#EFa+H`bKOPu8`IBzPAv+l9&l(Y^sO^ggM@g#z
z$9L~$rl_t7e?U3Ko`r99wcr;~aQWB<7;D+wn2w<?r*N9%`CHUZB$p3)-kRFIx12EE
zY)yCy`5X9Hf{wo9=+05XeS^cQg&?U{O05TP?G{a&3rd6#p!W{k(QERB-M-`VV*-fv
zMS<!3l&pehF6!1uV_{tYO{MtltZIrrHm{3>VhXrrn#@B`Icz-%>f>V1`+s#N3SSZy
z)DuXm-tXV@gwu|pcCGpKh(Hk8lyni49{VF|_2SNiy|6O4e17`zpV8lb)A>AF;8PJr
z*=dLWdR~g^J^)=vK}euJ+xrtgd|+(!lh<_}2(7*#BxzREy4uK3W_9@wh67oW%LkL;
z{z?yfA0~^3dYQ9-X<?694|N~P^BYA990HJ6_q^kp)KTUr@Kdse`N&TWp!|~Wi9NCV
zIEEs652H32V4%AG=(+LK?ibQn<OLJUv1g!kNl+zMc@`~5m;~l0vkpGR7<1j@7at$G
zpYxpf$jMWHE_eC{bF^Pw9_6{CdogRy_SVH!cz215lu{8hqmK@Dy_oYVA|FtRAA5ft
zTkd$DXW|*1YnVeU&ptrR+{L2Y=m!^e39_WIHPgMATTpVy`Uj1T{9|m&LOxzl-B^Qp
ziI~GXkBM&C+wEWcHnY}?qdKOvlE_s*Cf`HLs6ePjEKZ?rJ(E9Aet<U#-Y1C{O<OPU
z`0_h1kzv(ju_t!wrk>5$9CaTJBRK-tc2+&B<LT>9PnpK|7)LG!^~o!C?W%KL;78Ol
zxF@QMihq<X5li5$37?Ic`%%=)qAp80dnPui+qZ4)^<8D+GHxeJlF~@(Vf9()^oO=|
ze~iJnoMKE;3FW;O&FuOFJ}0OyLQ;zw6r<+t_3ZdO?ipDnk-{uWp!d{&o&M#$$3IJ>
zfQ95bCRbSoi@YH>`UG#c5T7;<d9H(k>KGaA{ifS&h>|#@S;NWM1qiOZ$5VP%_iuQv
z;qA)ILuPn>kLmtBGgG?K+Yln}q*_tfYvqWeR<Tm@=L+rw-y9c__hr&LC<!Kdc3w|7
zEXKAAqw-Jcv4O91SSTwv)790d&mC<2k8_um4n;SB_{UFw>gY*1t^2!thpc~PxbTJF
z<*pZ_C*IZdQ`*OolO<Hg=XZ^X=(aL-i(H*R2$f^8p~4jKo6mcnR<gBwbIuSh<Ij2a
zvD>@w5BZZqCond~ghn!RWSkG@+o?Zx`Qh2)oAV3d+Dod$vyl{*T*>#PR>cb^clzyw
zJ`BD;Mz5dLrMWO$+~&x157$R&I-WxLBi4t#y6hg`v3XQBzZ?Crb%8Bk+YW)q!`h9z
zno=L0-s{)slyAWxWLNS+DwL||=D8rV+qWz>kE1u)acJE?-1FdwZco$dD#}{5Yd!AP
zcd()SAsh>!4LX6=rJkjizuR@!gRDJAj*DU-g7irp2(>?LhP`}km%HDib2w^%TC`@c
zXC!k;P{DonQ8#s-Qpu8ssL?fEIB6WBxbLa2+r!^Gss5Kv&7*R`s-@VHN`-uK#J3)+
zzq`Kcj(;EDj#8wIRKxb`W1eNM9FuvX)EXM7C$A?3#DTj(Z|DpDb<*dZPi!v8L?4V^
zLtc-BDW|Cay=51E-$ifg*#1=M`|x2aFVdXqxFVzyH$+`Z*Cr^Br5BFx8u91x&Ev<Z
zuu)5jIVJ;iPhDc4F{q1WcWNG<3Ec`>#1<K!ZNmVa{jPoPIVWFu(FxK!5@H=FCxDg&
z`6+7gNA@uzPu@&d{wVk8p=c7;g1<kNf5zyVoRfP@>2wSj5B!hL&}-#^eV7BFuh?y0
z_FUwNFcW#aI5EU`jgB~bmZuXNDIy;=x|vc_g=N9RwjQCoqolils#4&iE7sXZeX4u0
za=|`Q<fGS&n7-#ar()&Esqi9&fltYdbZX3hv(Aj=hVqRz2k#J33%&G=)8mPlNR)^a
zDngLvO?(@Odhw%3o2B5xT2og+(|eD`40g_RK)b`d6r&J{LS6pC>4B;khY5?waYVW=
zVDyREr;{t%!{<g2Mu$?CHp=zgdf;qnBd!hJ6YbEsQ70Z3cRKoz(II%X(g1lQ`N;H1
zo@dXCj9^h&p-P^I<aJY1cSl%1$J7IH1r@b{8d5sdf|XnPd#-NmcP_0Hy#d(!7Al)`
zj*7|fB=cgj@na~3bMRFIlxo+@o)w>+ekKUUe4f}GJ{5|Oy7TAgjjVlC-%{~@6iQlE
z;E7u65hiOW$$D$ct)X~_SlPIiQkdqeUK{W1*O$KWnD7M4aY>Y+xu=)+{IeQ>D0U(!
zY23ZN77x^CaNpoPjz#<|ayLe7TkkoW>zL?;s>lkekk!<aS47#5MWo6iP-O?f25R?*
z)<X-d!R#yB>zCg+ovjPcx5mq@K_3MVQfhDFyHQ!JBr^zZWKhbxo>MFAK`f$3Ja~|6
z)Yn(XCY&FW1DA!<sboJ;btRtvoMR7XSkdl!7B-Dvy|puTXKh3t1M~b?XQn|1*=ojB
zk)_+Bihw(UUVK%YF5j3q&$D<(&(V_mibw-2tT;A*WN*#W7ce@rgh#2=Nd-}`6l3^A
zHt3xLg6G<2?RYq%5Trf48b>T#e4q`-AK&MUr9CFINy^m)rTR$hP|y6+dW~h5l)%PI
z1b*p-?NRql?Nx~&I6PPec44yb>#c1QojMjaN)D%(HN*^wEI-wr!6!$Cri0VN{M!{j
z$CR(rm#{RxP*Ft^AN9vkx^Q!!nIN?y-b95o{TLmsLjC4}P{+V9Ks5Wt;;Ax=Rb-J&
zDa1;rF199av91u{BfAiZFuI<;>Ghb)c`Q&1^o(+4uhm2)yw~eW%-X{$yiifJ4Qgyx
zi-I7RGH#r=RM<q)H~+OgY7UybLO&=$ipq*smXy6Jmbx}K@-M3Y$x+n(FM9nuXJ1De
zjzTm;)Wk85_vJ6`%2m<V@H8@O8;HW^p$o*$I=bh&HTn*|L(mV8Z93O?{McSC_gS~&
zjR(Z=_c0Ms6Q1gGy_^Nep$Z5p^?6<$7;y_Q3IpS<LZgK@t9msfI_>yg3*eO?#KMPv
zwONlHf99=noq=GTzXY}>Ys@g!@h5BLQ=VI)P6vLlTAuOTW<0X$8!Y^B#NYkNlAihJ
z$IfRMXXF*$<2FbCc4yQA5LDs*iefLY0X$aP&Yw&B{mjp@P{m1Zh~Ku`MH8a00%nKG
z8GiVv_4D%)ceCySoLt!K-dVkFUt-_D1D^;U5&miOanWm?vlbyYj`!D=Rs`fy@9EI<
z*6z^{F)t<^Z&h80Z>3)wGj-t^_ksdO`MDsVYtVepu62?314?*jice5sFzVYsBA=uI
zt0^)HDPGV&B`7N==HcgiKWCQNP*E-QjVN3+N=nTvXK6W<KH!K8V}=wts901^CA>-q
z;ZFU0p6Bk9^jRDy0(n!DH~hH1+7vN*z31N`(viZX^1~m`ioEn>YYl^o@J55>wsPS0
zLb$u2WZ7_P?H#?|q|b2Za6+g+)%<?CZi?p}fT8f~a3U2oWM1TuOQYVBC4uqTbI}W)
z9`E+tWfoqIOSBl{_T}q!w@1GLfQwY*a(i1}iyBei>$M?N0<OnqB~ZShNk6f~^EU92
zSymnpO}lz=edLeZ?aPuRDRe!Y+jJo+qBeW~vZx0h>H7*2I0^3%Z>g80&iup^U2CnS
zSN!Z7eW=eHg-O4otnbdvp7oq@W+|JjmmGWfA!||x`vaCl-g{noF(12pqP_Ch-k;-R
zlZlim=kW6Gh=i{8`@po|@G7#OXJF~aFm#jWv<+vyhxChYUJD4VEb7=tBLB-H&-Yf4
ztW&AJTda%vdOqS@sNhxZEf)OqM5euYYV4P29Wf@<fvA+ab#CN@fc3TEBtfcG2DuNM
zXMg@w@2x=k-cRjYr+8YRh`9j^5g%cx7Rq2`#iu-;<6iE!Q=l7wW3Cf7dU~YlpSa>Y
z2(%n%Cr__#Z^!Irlez3#MCyU7d+tiII-pt_Nh(2105`6*R&?mo5tT)edEH7adc&@n
z9euu-TWdw~Ac2k0>qmRq4?P_98;2|69;Mo9IN5EBW3QhRJ(!iwJ<0mEzqNpWS+n$}
zS^WfdPzxjZ<dYi9Z{+!v{dCh5kMyADClXI|BI>-e^aB^sNRS$NgM#EU5|fi!eU=_J
z+5C2>mwcB3eo6gw!&J{!hL1yyfifd}5IsJ#U!LOmopzA{tkGqBlC_n-;>>s}VlOL-
zI@+1hJ#sHUP|7~WQKuMMF$~fpRhofWs721h5x>)Y&&$rL*CX2HLBXL+&0cAb+#2Ht
zHgk<>TJ5W{whh!r$Ti0KU;daip}Nx#nI{RamQ6CGdTS^Y623AX2PJjdFZSq(C(mEe
zsd;RX8eJ|Gt*JyRpt8oE>OJA7*G?2CyL>!-j0cyf(#Y7bNqbT}SF%P@MHO_3z7m|y
z!$pVBTlUPddNz6T3q<iMWq++<I9)L9`0T_im0#$LuaE4+$X9Q+yN=bJKra)au!!+W
zeQ>AUHA{yb9_j;4;*%q8Ut~wz@Tcy6Aj)Xgy`_+MRGG#q(a_8Jd>EQy;)Tf%Emnz)
zIB^P|c#d<<yQqpqRa@f6IWHcaKTl`DRn93_(oVe<m@do;>Bd@d(RioJMvo*2AID;X
zZt8mYe=t|oD!q?N72wyQ-cl(jf;#KM1$yT=qh<n8Lgo1-rUH~tlI$IgLpaBM*?w&D
zWD!Hc81SHeFCkjI5_uq{n3XE<N#yuH9q#O38ks*-B)?MJf5n79WE6+8YO*tUdSw0u
zpmpK3@B|{LB0CqI^w*1=<oyx(69H0+A=i3I*<Gvh^00k%T;Lq_aYX)jG$g3H7=xn{
zvYZ-*ZuFtwo!K8o<c~tdj8q{a%$QuV`Q$pOm67=)sEI7H1`6pyIJ8OkIIHs`^9vyi
zMjKs=x(r0L@=a&UH4*u^QX=XY9U8~`!#hs$cvd648J-+u=o(ePG1iTD&g~qTpWCW+
zvv9!+i;Fo!SkB4woqpMo`8f!(_^lwF!c5bVq{^>yvIj-x7l>~LCk5xC#*a!>6aVF$
z+Jz;d3&QF`0%sI>_^)ko2G3?i;s!NcP`MPbZln*iR`#w_e^Z1xaUVBSGzx@x#R%uc
z%OXwNbOgB)iE~#unH=|&0_Xm@re~Ds#mcH74bp@2c!2|5$)A7;SlHcADb>?PP?w@X
zydm=PKur(c>1^5(kw28|nTUDpGVFR%Sdc0Oj2}9e?Z9}4#H+tl6&55*P3H3xBlAZA
zDLi0CfWcHzA&}E`y)z>xGJgmmm-yYe0}5H+y7A7m8@MRo2e)YgnJ7vyY6u4SQ$Baj
z?Qd=nGY23tY81S|r8Aw&E@u8z9B_i7<P%wO)DTYP?T?+K25>KKAw_A<A~uS&dYgMj
z=8qQZ*>nNH@tLr90NREK9A>d`2O5pISvZmhF<_B%bFBGs5rPr*UO91opQ7ULbt0q8
z+@piyBib+>QV#c(g||w|<Id&17zAlH9{MUD^?L06W~K>nym;iws|I!w)b@$aTL5@A
zS$BL!_m({-T`ELR2u9`)2U1C+8NjVia-t_u{?qYa$^nbZ1-dF;R+Y*cg}D}WER48x
z<iQt}{U2ZF0UcGfJ^Z8cp8C|kPZ32(VD32+Q2|YvG%HDf1d>TY5<sv(NQNY&OiVI?
z1bynm-Wyi17Zeqgr-Hp<$A%3Hf@1Gt7xnw?eJ3P=@U6vS!8vnJ-DmfL9jqFV7tlP?
z-Q319CE>j~+R7;u6{nm2m%92HoEmPYu^Pf&*j72)YCY9GI9&aP<$C3&@(7&CYH{mM
z*Y)J$M-cG!v16*m%+hMcmBO-L)#?_Uqu-5=&C#307b(>|UgvO-k?C`MfG8?v8x@!9
zHdw{DE}KW=mcvj1s1ePwCJk<3_wXB3n0>gJXOzmZ%I)hD`s@rh@9@FlNuu`>_cTeb
zSZ(sLL%e8$x4t__o_j@nNyYgrX~)alqZJB6VP1tERbX;73Nwl8mMP9h;Nfhh7l5Y_
zESbL+jVfp=%RD>PZH#T%oN10c+FigAPmp58B#BqaGPeT5<S}o$0skEo9>;C9afj$f
z$%pQPXSk5N*}dL{rwk6~h}&8dzCfltpVnbD?%)O<1&<%M5fWdtfj+q=_|3n82|=oo
z&k<R<!-U6BK&H^$bfF@ba-O+@#ON{L$Ke;c3r7tOPZWI|Nv-js0ayxgw0iV=H~yJH
zU2l9Qg4Ik6Q;-MVx89AMS|MDlRQ6_)lB0NJ2h_Ojc&d}-B7L6=c&&VFznMD(2Rt<>
zTq=t5HUX}@Nhn4Dm=`lRlXNo$RBNV`0Ha^s?P@23)j-NEl{_V1`N&D($MA~VW6q#(
zIe9Q6vzZc{M&a`Z-QOL&3_?zOIJkvODC(x1pc_U8Ack_b;4o9p4AbW;ItA?)RKk#G
z*2DaX;Ehc=?v1H~!&3kf@$ki<j|ztOhcR-xyZkTE8QcXigmBxCiZJhf-6RE3PMa6V
zKtjM2m3?<7P%eS$qLbo8D|oJEe^<F=P<Sdbd;_Vaxvz5Kv%IP9v$b45_HmrI<tfRf
zCWPJ6^MO|p&KeqtwTzm=DO`L1J%SVd!HH#V#_lb=El3gW-YZ?vwS&Twgi27G0vj{O
zT$lrI+W4c}?cqT^j#*q3?svzRb38Z=_~=%CJ-UdueeEmm?GR5M^*eSUtQ65GK0uA8
zumW5RZT`Aeakr3Qz4+W5-s%<O+$s++A_j!&P9)(oV+&IZvAVx(7!;le=OpRDX+p2G
zQ}7xn1BY4~ncWIPDKE}8u_Ctt<X^^{B{ol(QMQzB&Rgl$ojWKTPJ`fA`_1KGkue2s
z`<(`dE07m>%GD9@UXHjlHXa--Oro7z;xUq|BqtYwSbb>ljDPVWvehlA3Oh&<c=oM@
zZr#q@HL0Z=W_KVVx8OVmXlDxcd=!oW6fX%8r7Tc+MW&f^k*iHq#83SRfnUhQAD6pq
z#()ftj=(sPXsV0$&0Ehs^EN22M7m0TUJQlX`8fA7Kr~wDKg(n5qoH;KuXl$PgJ_6S
zX%y|T9QEj8*fMjoBI~IDMr{<If0H+svK&i_UGa~DX2HZF8>|b={mOQV+K{YnNUz(C
zb)Dyt`xjkCv=Jv7%8iLvLBZa^yr%u7xsceVh-7D$*dz1)uE81k`>%k!OoWV&Bw~Vm
zVygUmY?{0F!{J-?K-j@<1HT#Gz?J7n5eH%XCGaEJe0GiZLpBZv7+}}}mNk$vNr?$o
zNj6Q5_Lu9l)+(7#Ne_Wa0<k4i{Ne`8u*+7_h4~-5Ddh#!!1>kt-rqHe4Y1s$;st}<
zGd&q@YxXDJ374Sx1T;HhjS^||^iuDqVRmQOek|W@Bm^|CF7@uuf`?W$hbVavR!%;{
zE2_3DSag_*$`WKq7)i2edEXs+V^Eqw;Fxeo$tqovHRR=Y+!=Rj*OXW%`o(z0X~~vN
z?=LIeUax2`PE?T&PFn2nB4e*}SFPQ;gA8)(+{6#GBR7htJPDim1im?BBKNuAN7}<8
zNd4!#)P;!M$3NhQkKHA2Z9QIUkMW2efOVBz;u(_J>YTUSxo`9}oTz%2uXk(S?6VV<
zYj@`qY;H{e3fzakHOVA4_%(OMYnzvXlhW3E7AIPXM3S8$%pbShHNU4{ki4NLDo*2q
zmb3<`td=VZe(p|P9Sloi1N;xD^nm>%&X?o@uCq@>tEc=*L1hPFHr1_!42X#WrX|yi
zJkoi`gQ!5)wGm!Tc{tT1husNLUXzFj%0-G&ItF8243@dD)vcT6<7N0I#ml8dXsO7M
zmAqQnVxmo{zbsnp@EB0x(c|3i=MD~seWB8nj{yU&Ep-ba?;v+VrqIMzfVBP&xI^!S
zR>BD&e$4D>5grQc&U-PHZuLup!UY7NM<Sr=qVf!L<(=-cY~_<+tX1wQE(5nuo9kL{
z(vfkARqS0+2Ex2zU-$hTi~zGuJZ4LC6wkmSu;3-vxZ)jEO!D!)SSri&Q_-`zMmPX`
zmnn^mElyp&i+P13k8;hN%_Iz`IAPVmN#x^0KJIUK@@tR{-bSphMWpi*IP!6mGR)tH
z2OFLP`+{&QTiXJoV-31iP9fFwo1kn4fnt&%q6y|(jH0;(-03bEE<6&fhz}D2GWsPD
zXb!M^(@b~AE51m8szcCRX$fci!69z(SPnzX)SDT(Fnm$zb*{zv$5Gh<%gjM%np=jt
zvu;AVf#nqu5H?nj@t6X1K9nM@{!v*HvNZv^%HWqsSRxxwE*%^$0!h@iKy;LBl_Q?L
zIM2Pli!V^tVRdN`VKUpCwZQEUo)+?rQqX5eON)r}xINjmJ*NCeSdur_ptBU~<(bQs
z11ZW@)dN|%e2C+s;r>OkD3cO9L{y;*hh<4K4?palMGPwkU&JtcG)bPF+zN5?S>>u{
zD<D$wL~{B!iHw$Ms&m}Va05tF@G{_4oIyC$67J#dTz6`&vU>%Uv+Hr+ZEcfJvdqJy
z+_PuHQul%yj(eYl?m!rb@i0G<u3pK_loALFeAI~(;JcthEp#x47=3dq(5;Mm%I#PJ
zc%yfN-ip(Nur6HDz4h+Ym4m`#kf~%{zU-J^1kr`oi8MEkV(B0eJ@Dd?xpSiH4``Ml
z<8iJ472`vF4tc?S1eu?JfG24xba#_^R_`~u&Y|$QsS1E`i8!|ywL?vYJNCcasKiZH
z)l!*0VoHQ}dE^$C4hPUnqE9!UjdgF=v1iub;IqEPV@Taz`lWj;i#4LVR9B8bp(L(o
zHE`W2W_hjqZepLE>1Jt-JM*YM`?AbyHEsj!E3*1z^teck#i^$0diUENgOypv<yW^?
zA`!P&%y7x$;lXfSk>?X2HM&CcQK(b*8RdkDfU_I}7{sOL3UJ+(W8J$QY!P5au0qrl
zm1KEYhB<4EyD^9Nf+-HJ6J$^%Li}?NI$;<mhe(gsA{r$)Lh6ETa7ioBQ1}9TU3Ej0
zeV0!GZn9>(yS{{F6HSUpswgR9HJ}SKIzQ74SmS<t4-Q7s@d$m_t&FZnHS;oEE21nv
ziCguX0uu=~4`5Oey9cbJdA`JbR<DmRS5Oia1c9Q-len}SI$b9+HSkd`0?<fe)yd(3
zG*vFZk$0{;Z9fhP_DurP<*Fx=g915cy=ZA9D};td2|__EOEa-^U9t!eKn)?BIM8Ce
zQb0~Kr#$0MI#f~6<XRD!$fO1&i+sI4-yJKkfXfT-H2yA%%Q&i^&US%Yv<I)FHkDZs
zWkEM{-4z#a^}w=B;{taB2hPQzFI8FECn$1v8^<`Z6{=tkf+Aguir;DG^&{P104UPb
z<hr&d7(>7#+kADbJN^g-+dN;AYiey4;#V=6UG_J@4h{`Oh_VR(3h*P>((!}yc4HvP
ziBVmR2P(XVP`?Ufrt_b6dxhb6Rdi6#C*Ck=AZuLf1B(AAi=LoxvbY@uZ~l{G65K(w
zEFvjN0rYSjV*z~Z(&OAymE0GyNes<?Q}>097VSe|p8J%i57Uk!8p(&;ypsyttbgj6
z<bcUr^$>a1uxN$u_p?--04SR3<1(74rM{|g&m6$DYkV_44TAAT7eih)UE_W&*@B7@
zao8_-+bR{%2&C5W%fckLpX44Ay@Kej#o@KXl=4t6T;%rdKR7JeKoEuFXoW|gX?~sQ
zPCrfsz+5t%@gjwZfM%mh_`c4)y%8}@YA|f3*{SBxdG4pX^ic5|t&-b;)@7QLXS&ay
z0Hfh{#Pg(nA2n!lE5Nc>KIz^)iPP>ugHbL{``hjH0;?CdUwKqy-{JWpn_YCg`}g)N
zbt^K94_}5`G(yRIE>b(1xiLJTRY$pYSfVh`rn0G>{g$I0e7)R#f1c{kN+UB6@lhY<
zm9USQZm;vV3IKx&O>1+nrxR?GZ6@*#aYmJd@EK-AojdIaf^9O*R2~n>o#5`3SzlpY
z^sS+i*B=|u=E?<{s#!=LiEUB#7I<FhhCvb}_Bd`vf>0=f4qF)=;nimkmUf(1+BhgA
z1H9ParPD&*1Eqt<AWsv?*R+9(me@u$+riRJ!KJGyq=1+cgK4MECkru^OM|g@hipAk
zT6`o~U=g04vB-=Dt#p=0+I?}cV1e-TnMvNtTeU0zU<+<z9XNdeqq7e17Tu^T@4dq0
zu5q_oduqH#q@<!q6;Td|NIbQai@oKC4e`VJak_+QCyy=sfV;y>T;co9VsphdDq)q>
zvNA8fZ121u=UrYJ9(=TmUR|P|Go)DXAHL^su6PWoRUk|9Za(~ES14v~%Z6B!Fhaar
z#>1=k<Y#Qo;|US<{1r`aBaFvb78bt6U7k5eO2HKUD#5@~Fve{EXfT|bcmpReIwq<`
zoMVYoIXQUy?i7MSTob<lVt*uQ-jSWb9e>ayIC%^jBZUp&lahYv$p%{zN|5{pLQNtK
zVmyixGY=w1F+@Ncaz{>u&3+9D5IHv@mZ-q!x<DSrH)tL;xye05ZK8bd(svRYSPF(i
zTp1<X2Kpe<Bz&Hx&Es0JRY`gT$cDI<)6ZwC8f|7eQX~-zF@%RohzHaIsKd|r=*iwL
zoAlefy2eV%h&M8-76pB!)$To2d&)&jCFcnn`7>f0hv1Eitf5{;BtnyvW2VvA^a=it
z#o>_peZ*J5?8eIM%4~j*lmKT*zEz~qJBL~v(8T*bNAi@2nF@O$VSjXDBWAROG2R(x
zs?RSba`Aj@p${+-kAN)sJ}M5wqCcQsaOKQ8(rA$S2`DQV<vrBMPSp&HKO>F=d`5f#
zm-9o1eWQauN=>v@ML1IYMImdKc~hRH6(lHzI?b@gH-VgnfMiofu)z%oTSnF~_LtAO
zopiX0I?UDbEO1{YHDRWG@j!p)tVZ5B8&5WM6?*1!<DfGCK5(1^{zK-SV{Bkqf?Q*9
z1j{o;*Hi`Yah+Y_u`eYUa(w}D=9VBMY;Ngh&pW&$5_mO|u98BLVloij0S9v8bo<u_
zsyi547Xx(gCQAlg{Qj2r@?5qC?@44mrY=J{ZV*IXw%y@zoqjZTC_$Ja%O7~L9Y3Af
zIUe$25agAOJC`})ByZ$1y6qfFC$Mei#MLp`Y*%jg`jQT*^@cP?DMRs@B;6W{v^E=l
z4`3G<5nykNA_YqLk*F@d{LMRan%=@Bfl;iZy#6#fu|*Gfk3Ot70e&GYnUGbqeMA^@
zASqRL`Tx<EiAfdM<yaVxnDb<_<{OXlXa4<>pQBU1AYl1}CVSC8^jbK?Hs7-y%n3c=
ze$bH}ILYpEg!bpOh;SxA&v5Ho?RgcP0@Y^gL_y1qVe&MC8|=>a>XES}WM+J~<n=KU
zn7h&rEZ`Fndi8CKPRW0G361u{3>GK8sFJ=15-4w3Q^`}tGy4}^cu|al6~N&h(#@0Q
z_M(BbqwTMW@G!)ufj$ryC56)Lh~t<_z?*l0n^|38^f2597!~5eFUZiZPhBeR2`<1E
zDyP0jnZ05ngQ~j|lrR1y_MKysPl&@V#Q;foK{dchJSQxNT&KUkk;mD$M(aXLXq1P6
z+ml?j>eL2D?J3_Y9I$&7mU;vFh>xtZp9wxg(a%z}9VJ+r$!@m~JqLKO31WJApsZaH
zPTB}to)ABKG$aAct$49W_Mt4&ONhOG_yayDN+HLn__K<$04$%s$!E&!yiz^6+^8tt
zq_CV`>T?t9llwDp8cJDTQwOEwgzoWfOyohy?LfzMD((h4@YiWx#n(F0SWNw`(ZEEZ
zENzNR1bherE4No27GEpiFPaiz0+P*~nRb_@><)^D@n7JSh(rX`oLjva!<kGTg+jN$
zRysvQ%}E8eMxGewgmw)_1n@o*5HZu}2C0IYZjNoR%Rg4=3ybdq7X#)=H`8nFKI|6|
z1a%Q~*s5R$5Ik_a-8;nM#O?}pgJUEDl@0%WwYLHtqkMp@z^{p1B9CyR-FJiz13IlH
zSFR32$H@(LPL>Wc4#@&7BNY&M3-2!Swtw1R4X4jNuwEVuPJlk$7~XE*ouWs>Tg7mJ
z=NLyrq}Zud_S75nLrEha2^7OrO7+iXa^7$uA(K4M?lD;*4am@Bgy29K9bkjdC7Y8b
z+WU6ZA8?3TOFLDF(gDZYAJ%e$Xs{X;=aa`#kk`s&d+sJ}FN(^s;kC@m|0~tLv_j9j
z6o+?WR9GO<(wquD2YU@=<%q<Drd3wqn?(p27;VR)cH!Q1$P?#?n!tn{65%$fX8l~7
zcW@l&B+)Qqfw0I9mt%*g>Zt<8KK+!eiiI`yyI{PTs5s7y@Q@S}n`!?#YRg||n|C9&
z!vA#+;DF~g=ftmrXV|*1{<^fX8m}`#t3c}}V$aFf)sLlgGAbv6Y8gCaDwFI52k8<8
zPN1bC6-!hMS#L?&aj>0qtbWF`<`%(4IOI~O)I4*Leea+2_;_5Sc__HZOr^hgM~PON
z+%Z5Gs%i<2z4cx1HxN6AM?qc~cR6sf5<p@v+r#daOOHCdaqp}mkY7ipX9&7JM3C0W
zXEUBYL>K`@kzDt4QE%uEe2DCihfh3j?XpzwoSSIG_J+_8DTW*7Igpv?VekAu83pe|
zyrO)Df$$OF;Mse<CAVvj9KbMkBC2<(=?(*Q;_cpJxA~KE!Yx{@RxmDkf)HTbc#rrD
zSpu4xW_0F+5JKOvKcsmzk7<YaatdEV)^echkz}vsDQ)+8G2(gv^05)IX=s!o`zjgl
z)q!?7DxoIAq;OLbei%O3;-V{C$g8XB-a(qFz2E!C624&5PzoNq@&qYn_ATDZT@{6u
zY3WPQ7wq!Av%R`+bxX*^h$#LWlGv*9$_9uNTgxDW&M5EtwQ(pCBq{_j%gl`0nliqX
z*aAFmakk_AK|z5%sC1?Y{KqbtqhIA9g;Sxy$0P8sw;pTv1dl+til88b!GL_Rf(##T
z^WbV|9*rL(-q)~AJfx$>*_x4Co*#Gh{K4LLPii{^40_GE;#Y(eROmhZ=2q=gDIV`#
zMmw-m6os9Zy@8`P7J1b`4hM-N8U^o#*#rK9i@nTy{7I49<SyZ#(#%DJyft_0uYJ(O
z9ZU#a0L~2qfC36&JoX-M&aL{Z;!4u{lie1am1%Cj$Ghkjn!ycGu9}#2ct(s2TxZrB
z-l$fl!*v1<Lo(Y!q(R&t53rYjGiaZLR760WJQd6)s9clm8W0>kJ>M`I#`qfsNh0Nv
zbwn&g<Wop7Lr(X8coS@<mIJ}j9D2Gr;dAc<*cb$+oa05x#GWM&H|-m*>J(jT*TZE4
z@rMik8`Dx*)c|KKesol=skhZL`LQT%rN|1&wtS+WX=c^i7k*T62Eh{zKXampe|54w
z^+qM^lIfm0Zd8%ZHg^PViPbIPOb3fV#XNQRCoBIjy9%aGo&hHZlc;<^su_5o9lei&
zm|O?NR^ucQ+$H!Gs>M}8wLaLF)u|JayfH~32>Wz*fsJmjtHwVGMFiXf&z$tcHFlp*
z73<^i40@p451v^f7Yv?l?|4;viXyE@KhRwK0cJMYS3lG(l9WX(Z=4@b_x>sN=qvQc
z<&}**MH!#nXPU<v?Z155S}L4J4N+>qft(}`O0D*Z2G%5|68H(eA()d(jW*fZi+ba6
zM5Z_%=LVF?o5ALgB;|Pm*lSzu51@W<a*pH)=e{#Yg&>(#@~WAk2S(m}v4BG<+QJsL
z2ItNZJy+n3IGHiz=(<tY=BEc4&F9RqQ%fjs$h>m6z3Fu&+amW%r80q67+lWoi)NcJ
zs_Uv?vIX_~B)f|t03|MOw{wN8OZ?Sl5(zDglSp|vkrwjH!&S<|fvDDh;JsI(kWr3u
zzDhKg%HL+0^ZsqG610KV7ueu&!=>xv0sgM{eDck~RaOCOh&CCTVSUk__NG($NJ7-A
zgckGGSl50->;tE>t`HhkX7HsO5Cz(pJ(qe-575OiH_X5XU!-bYfuJLp2&99r4zY`#
z^x+`NFBA?4yQc(Tn{DQ_d;vlt%SgEZ2)NPq%d7Mdd$0o;T?8KZktD{PDmo2_&I$H2
zL;!ghJ+uWNV!S0as+MIyqM<@FQ|<qD(=A}4X^ytWu@%hQkN0`2?_!Lemn_`gJt^Lg
z&?mu+LP_*#fzJfOp@&TQ!vDO^>-EE)P!sBc8qh&mbVhu~X;~;!Hb(77ye#0gI4W9c
zVNP*WsJC^+%p-A#EuejQD9WtWHrwUz_z%%HoBOZu<=OTeUs^zQqWo2AMi%3g&$Jsp
z)6pv;A`c>yK!pZW*+YRl9bLl21T*RTtgE+G{xcWkjq*w&omB|9Z?5%TX5Mtdf{^SG
zbo|2=8Hp=OHV==rga7T12_(wV;QEfL8~6exa56VH+8@^F%1eo9f<lyO=%Db9>1JiQ
z-TnYQR{_ki&|Ua1iT45|2>9YefpdM(4H8NML#-zMWHbC@@7-GcFo#<p^(U+cVl;W*
zAM(oX)z7++HOU;}$Xd|7@Nzy-0=)!n^K!CG=6bJqtd5oo>+fGGQ2D`9@9zcL9F9;m
zCH{tyyP<xM-RouFPan?{iqE<^O?~1ZRQSX5$Jx7l5F^?r&Xe#)@HAfHy|`T0M~Vk5
zDx3#52Wk-Fhhpg+Z%&(bW15mNMG)XPc!lMwyrF1fFgJ8>LNt*LBKMH5Sjx_l!eHY|
zUh5(qflyXpRr0L}c}penrS}+2iaZd>oCjl*9}|v4C=UL#L0cK1w@d$^BO{^6(x`ci
zZ@|uW8r-(L4UI-u(T^b-h(i^Q07tw;?=sGwA>_(1WQz8JO%a54s0iSwuBz(bri7am
z%PYhLwh%B#4S9dA<OjH^lQCA5aLVLj#YouQhW?|U=8K~_Y>iy<Q-^!EKF1yjRghvt
zY@K<sO#9{D85?Pq93${4ah4b$U2?it{UM`Z7OrgI@p5L$b_fp)O5OB;w|ocqL9ASe
zlFEbgs^QKT-{G}^4&>Pb0N_knJc2y3t1MBl9?oY=z5d)NyDR6Sxim?a0atQtvUgNF
z?c_<vHO^NJQH?9+J^i+l`|{0HL6i_#lACw8gLL&WNwKCOBWWx};DJ+ERQ9pq9Ittu
z{-m^0)D+U1X^xrWo%cBt5nx7EF+6Zpu%`3|%oNytRK4yT#3foT<$)P$=rvwzl4kfo
z`_(9=uY@jgya4Y_qrE*}VH(vN$u*0hF7TOU`n~0S7}ZUQ7O|BV33NdqQ_R{XFYpK(
z6O)=K9tCRP{{nw|6XX=&j8W*t*>)V|LuT0sJM8~-mf{G)EHDZaKIwC>LBwE$8fY8f
zt9m@v+j_0{jc5W;K&Z+=^l6wgi|muIRB}PmswV|Q0|4IRz4f>buJ1_s@k(O1*#)@e
z$v1sb4BfSSMl8PU5Flcr#0R{MpXd&Sp8FglwC$0zy#8<Ly%j}C|L2Pzx{t_kpCMz(
zRmaEB%(m;R6#0e0RnCIreExr4%Fdj(uY?kek5DM0(g-_wKc>SI6GX<N)N{)=r)~0X
z76b<`Dlo}=P+s(yZ@up!%3T{~<%()W7no&sUE%#pbb&$_B{m}$m%vt0yMjT4k^SEb
z-XF8{F8uzSK(2s<JaN$_rI^40_R>MRn2H$BH$Z~bKn3h)9W+4~mXU1^{Xe^#@KREp
zy1KeDFb@5%Fyri0;21B?!Pcel15~Ea;kZnT#}wIiF6w9Jp2Gs;x>}*6qEP2XzHju7
z{hl5nd?YcKmxhzXFu}Qq+;ARgX46#ry069<3tt9#(d&Xk-5HG~JO_d}p|2zc6ZU~G
z$a0)()8Q%@v?#748YYn`LQ<LX#8!Jf`Va6HysCtX2#}C&N?x|lwjMjlez3qNT_g;b
z0@C0O4WLAW%-wC8WCKDRWqdp_R3|UWWyHEAlk7UE9)k;n!T+dCzdCF;-Kk`m3#ifw
z^ROP^u;^=(k2=pjj{pJ`Dr3?Vt%2JR)_}ttRBc}q)}R+V4CC9)4u`>QszME!wkCTa
zx-5QNM#PBZF_e4qu{jbc@SJ~wwZi*q_yoElL5ssk;n#z%tC%6m8!E5LLxjx&_nvdQ
z{fX=Cy$%4pdmVY0O2|JXyJF=bGjpna0*#vhL{!W>G70bi%eHEJJMChHC9)vFoxwS$
znuXThB&3t<?SPLwS!qpp&-)KFL`XP1C+G;8m}QQ7(d!q}0k(kT;}5W>0m-}*pI=eL
zoll^WU_im!NWM$GQ-oUiCxEvq#1{4hAn0cB1-+s=83=J=D4&68gfkPkRZL>;_I?ry
zff^F!5r^c%79}G{fFswBKQ?GmsDem5$!7QCCB>(Ffbj;03K%ec^<J&L+J~gPsIN?f
zk3;CFI@%ubgZ^6Mw*Y!oCtQB2t?H+<>RBT^5a5c!0p2aHF-GV~Y_>xfQ{X!~Lv%2x
zG!?R;<?D{ItFK{P;neBkOhn6<Vul@L^Y7F7ls?YDT}~ewqTo~YcJF`sbMmGIU!q+E
zQs+*y*?;OMS_24%M%Ds+!$k@YC}QO4v+RASV&$R0?1(r@jwY121EcmdX_v@#vFnN@
zh?|;GNq#Uv)dWHP`k^-fF$gd!621+L1A{;(%MF=>9`~O7ge}6+)S?<gtuG`XfUv+%
zP@{3)1=dE!#X$^o15lzfVA-%cVlWW8)CGEJU7*L2ZI;jxIJ+ctF{6W4seC9>k6<A3
zOQo1IEA1XH#1EhvAn@gVJcLFy+tW8{hkn;i%1cqxv9yrZ#rnUa?UW&Uq8N36K8|i2
zS)2euRtdC#qkyBhH2^f+F6l@Wju6{Q+w2Qs4-nfZx)Z%Z$Po;1z74<PgPur}J~G1%
z3uJc8Wx5((gs6x>m9h;OKwuV_Xl=18p>V*&XdwxkB{vi{_!%E)x5N0xbi|z!L?mDa
zl0=yL<7hkSHh=q-_;|qkE7?HkBETCQ4X(ka@i;Pqpfxnakp@wEgS<1$;N$ENl&|0t
zVR_=uQ(j=PU_Ou;Cde#vUCjOmiyWk-5H!u*Vm20ex8_`*VM6UAIJT*h9HhX9d__Fe
z({t^-D#lg@-DkCW8#Y)D$})TuKvNQI_GXPeR0M8uHy5uu^%|yn)|cMuE0`TIn4G*m
zcPI*2?5zXr%_s8#Y?8JEdk{&eI_jHmymgbbD=vk|8Sb^t`va5<$mPtKQ7Lhx5KJEV
z8GG7iFhmO!S2l<S2;zmafwP16>^VdV;U-;z3_LigaCwFzhk=#}kvQC5Bu5z+mjoho
zEy;#L5X)s>g2}tB=p3@DT=bb?j@#fH7)2pQ=3(~1p=6r@uX@?&Tp`$T>$-4#JxuHE
z`CjLH+Ako^j-ckCkx#3<0h_cLGa}-T5OiTyIkdyi@fQC;7g^)ra06pVEdxlXRyo_G
zFZL?#pcAyocdf!6NU`jYIs0~RuyFQ*&LP&cgMP7!4ZGj#e+x&4FNYvM=mpP*DmqQ1
zTM><OvbjFh%YBM3g|QHB1b(7PDLMREc^i%dLZ@Ibc<05{cC9bU;!9dBx2Y7r2z)Py
zmtu`(uMQjj$bWTk8>-k)E@agdJ7_uWnTEv8V08h|OtbU(_BY|^#WJESu}^w0?6k{$
z$Q0f{-Wo;)!AZxa*d36t_}69&1=3TuW~&VLo?nCC^gvN2fe6lMwi8Dy^o)&FsbUmv
zPNkQNoZT@|drHVOD%>$WYSL=^-V-%4$5}2phD9^Zc>-VNcJDzE9_5_D41PO^_P%?(
zsISH4oU0&caq{=l5-)qPo_{Vv2igib^pH93Q12d51mR3ri)f+d=nV5zwOzUstx_bV
z0i(D81<Eq~n${j^e@Bf0cHu;-QC<nZgs^<^;r6aYT{sKZl5XR6h{#$yN=C!5FB}DU
zNA?H3;rQ0nTasDGi&Fj`$xT$hyem-Z=L77B!SO9(l=d|h8Cl?y1($pIYy4G%<EUMt
zxE2@+cG|zuQuZPXq0M9g^aB|AdN5ppc<70lcEApt3frNcs@yNA6887qsdmy$x}C6Z
z*$oMV9^Gs&|Hj{>iu}Uyf;Z_&tGAbkB~EO?=mA8_N;*3wEbG40_Od7j-zZ2!CgCGe
zKmNDTR_~#c7b#YP_k?E%nM<bG2Oj1lVU)po^88Uwb7fosqHg{X_D7#=Y$kn36y2l`
zwwx!yP9WS_CS{iWLdXGrU^qSaVH$rNZ@)lUrz9d4XQHV_a_dAp`D$J4)VdjUFrq%H
zuf)Wv*9Cp3!cRezTVUR}{f0miuJPGVyg?UmA>H~}$ZZ!2>~17SM!b;=2dk)-T1-RP
z=IaA(b4ITb;5xfT5Fl?-%@M3ziuvS!Uicb?<(?`$d|=~>UxXF`aY8_l>F^JLx479G
zH$?RYqE=|s2LNwL&kKvaoEH_yx~(1vVE<a?U3rr>a|m%g6uetyb4-{PNE`18?K*G%
zA@85^L)=zH@{p^==muB+CoCA_$Mu%fToIlQV#=uxsJ9((I($=J*U~6xPTyU&`A@B#
zH$XpwPEof53dsk_xYXMzh1xDIzf!p!17@=MYN{>h(h`d5O86O#!<iq`SEYmmA2*yk
zRU3!Ye%@PNt*GkpK$JtMind@c1A>u}s-O1;pGTL^Wyf`0qK3^fhaY4sCeTFy4N1pk
zy;<0ylFi$VUeR7EDvRx-M$m+OkY?tERAT@=m?XR+juXb5*5REcG9Eggx@aA@85oDq
z4!bQTtyEK6>UlrvrRwE1M4CBcCSjlJ$9k8DK27qp;HTiLZ8FTjWN+??dW;0y%Zn4`
z7*eL{8IT$(;jw)}hjt@c<Mo4@ar!0L(1kg}=_1n%ZnwWZ%AzuHosc*u#1&=!kNL^_
zb`-99c<M&#&~7vmo!&xaYjSO7o9Wga86c&lL~3gA30`yA6q!jgL!4VZSU)R3*GV#u
zYU*%N3<ZgQKX=8>+LKd9AT7bAQqn0zmeIq8IOI2(O1_cYpiGm(iEJF;%9FJNjSxP>
ztz`6U#W_&A!7Zl+T-o0Kh$MZ}Ozf26#hqf-t}gX(?HJ9?6InT%AYh#=!+bQvVd-Ci
z-D*+;j7_`bk0ySMb7ua3?_w{w?BKpSxybI$V$$bCtBGu)d^1;PZvWf6_TfH1<E|I)
zVmq(syAy|mZB7X0+IA-iuD9LE>)UoGh-=%OgoJc==1^CpQFfRK(lP_=S2r9ixo)w@
z_^ECw{GMfo_jdzM$8QrlNhl=OgSvyfK9mJDIltK>@1{#q))QOUr1yhA0*S>Jzi!VN
z#{Gy(cS|QpS}CIg>|DRSyQI?}Y?Jt<&WK21LLQU=$@l^8x=XaPEFzg*Wg-f}0Jl%<
z;C{T49+BAMRY5Z{0MhgR;U@h@7eF$jhNc>^%%Sg01J~aCgKf>!1(a9fT-CCvO8h>l
z<pYz__`6+tW><|mYB*>mc#xXe?hCu(wZWefj`-QQA<M7b<7@tv{CFbOeZ@<Zgau?k
z5Ia^{Hlodjjv!uBH*nlx>ecbsME=<4w&210;ZusEFIH0E@?%2CB*)H9vEWNbCj^0(
za@2bi$073$T#otaLN~l(==J=f93)2i4$7}dzTTl#?gpEn`OiE2Fgg;T3qE?iEI6{-
zThSwVaSCrGE1tY~i&7U7x;CK2J)M=X0xR)U1Td-N5Ur+;vP^F#{_3vY+tXC_sFX=n
zGpx#fxTE(G`=$!Vs6&$^nr3ROrdl-frhTK={*DJCg~@3_yaL&qrGF1OZjarC3ZU^q
z$VQ}$%e~~^!`LfoZ_J+bm&~>Y3WAO6OqDPO#-KCg7h=7EgpRXk?e3EX#s+_-5mlIt
zSHE58DGn4BjE)G43@>`iWIJzo965?natp^c@|e`yQ&3nai4yKgusWt^xT_nEwx^EJ
zsU%cWjZ*3xi~d0D4zeBep9rQ(&p5k(A7l5;)eeY?`cSefKxS#PeF7yJpqYzqOZ6Qv
zK4~VQ!Itf)yOmH6;fFBwC!0^hmZVwob78u=OpY0*K57%*(3N)E7TIC9^Ux&p)!1|8
zP?Ro?nQB4aG7vgOU(82PgQ2Xp0}=CO1C<Sktw5BTovB^jZ2RNfLr+O-GtJ6u2FApQ
z>_I+}QPa&8$J%*^>8Oy3%0NDZNSqTzj)nB_gCl0y6Tf2pgi~N9rjUTBH^BhOqClqv
zhb#!KB`!E{)hGy{`pSZ!Xrio_OfJNdOcq^G@#*n4Fi~gBgKw?oMDQky>jr&lckV2E
z>@V>n+pN&w<X6|(DqkDr({Yj1QRoo+D#EOMn<cV-f@tKksTqqlO+rBE%E$s0)gEm-
zWG5<$5tl9oB9XjcXQtWjMCB(}DvIk~EFuCH`H5!O8-x``Q$YP7fk=T99tMM*Xzy*&
zk0<($fN`y{&qHU`+2?-MV+iBDrz%$ogj6mF6$=)(R(oX?B@Mu~JOOGAq-JCUKrzqm
z<Gxs^?Ic;}6=Rr8&BzQu>Zvxd>00e6gl%b#)KiBdBTK${dr!Cb<$e$GfU)+#=yno?
z$!By<+S^@sbz&w+v>-Z54D^E4LIG4W2mfXFdqh8zsvO!AA24$dH{uHILB5JL%0!s~
zi1<}|yUCZ5XrH_bycyE$6ONgksd;)1C~%YNhDf$t&7eUQ8wu|*V}43}bhkY(q8Yd5
zHYqSO6Q++fn5XVe{7=%Jl3fUffB+j(E=J7cl!?aAEOb4{r+^e}!df6ErI@{{-Nb1G
zc!&W&IhdyU_6UT7gzPEiwyAD$dV-YXoI+|laZZr@4iF<z1d<mc82sYCpzt`P^QS(6
zvNC9Epg7Y)4!yE;g@11G`J!a0AZHFe#NkOR9h2a8r9fSFRyz2hKGmUBlJ<%S*?&m(
z?GN-@hAT-)?9Ykk)=_<gtd3zD`Y5qK7}gwQr)Lb&ihvT>KrI=dI`3nb`|rd<K<GJ@
zEw!=MK(UyT(OT^syzw8D4<rZkuf#Nxp;QWdU1)-nbG4O3MI=c2q`nouB0Ql(nJ~i7
ze&{le(B84XLbjSn5JA1qbV%)vzq*@J{qM-Bg8&vIRlUTD-|&;`IE3lN6H3ZT!SLc5
z6oNeM^RwG$hX09JzGcBANli6xz3i%TXorBwB<OUik!@M$o}apV|4xt<7k6lDNMdBJ
ze#u=cKSy4{+ZC@ESuBAO=7_glWTbY4V^nnu<jz9MB;`p+%8wuWt-Ci{JGrUWk?0<!
zCzYMN`ki|!O?%4mUyrYgcWf5^;s~gaiO|!v6QhgZ5|aG$^WSyz%lxr^#keE$!_Aln
zKX$Jd(F|MDS|4Hf^bqFMSHE=?|I{B>MC)7IKOvmhocXbvl&|F~0nxe`hBCBC>7a`V
zx7w-{Zw;R7h4=?Zp1>c^^>#fuK-C;6al})?&x-1B0VX-|M|(*MMUHx8d&i|E4aVWs
z1b4v;3A-~M5GG1|T<4O_uW#6|eo7oJs<;@|44@y8(j0$__)|+<QDKadK`5x80m<f!
z-IL7S1Qm(vTzx%$45*)_z4rZJa4GFDA@#AA7>WQXhkU_}!4bP_YY|!Xd2if!s)P|0
zJrw*XW2n^CrQW5K8N=uz(KMG%w?*X%!n2HyGzAJOD@o8VrOv*sabG5G*^cV@vO3r1
zx095x%I!3a_e#tzEL&8l2e0^@6J6fH+L}X#X7XUb29ZxT*|;`0IF$~GvgNYssZN_g
zbux3+Ot(RbD3S6a5+PHcW*`F`Q_T7EUG`M{qPT7r<pT)o$wG5~RMZ_D*0q&sB)KwL
zqSC*)%4M)1VZfT@11!&AC@f$kE}8Cb7z%qyCYpHQ5y3>}%BSqleigV19s&lW8qqUi
zi!6TFe*SgBK!^ZN;5FFT;qN%}jo$D@LkA*Zl0l;;8fhn5q+0B9T+=%5ia&>}K-pJR
z*Q|9<(=d6{ar=MV=O=r+BX<-;;gUOHI(Z~)uKX4I+G&Z>0k<fGj>&NWrq;<?`-|U^
zLm+=cCzdTaN4^5$`@Jr{Q|pVzldPp~CbF#<EC3F?Ax|6j?>83h*pE4(y2a!ZB(^81
zd}#R>?m>Z`%KG}sS|P~c7zq~<5hb1Bp$`rD>1=NWcEw_3(pK~+EhI{iEEL>z;rnjg
zkp27W<QPldcOPz}lV`fEFQwqk^KZE8lKL7p1-Fdu&O8EMBckI%R;CIgP;VL^b~`2a
z^(Fr7+n!T=r@I#fEw0urieHo&`kKq^do2h6-D}zMaQL!&#4S2S*4_4(6m{9=mjoVe
zyA#EVdE;$oy*~GkB(%+8#r=Jo3lcG8=!fq8p?wa^)86K=!YIZ&Ijf%avk`3k`q^89
z71G1D*COngKjQTwSyZA{C*Kiqp12KW8}ASood_~WCo7ET8Q}rIoD_33^AB~GPN4_s
zO)wjwh*TRlIj6W~wc47aECy9wum+y*&Y!Iqh46Lpe1O{5xQT*({Oo;bCM4w(mCH!A
zc7{8;19XBphp1(8-)XUzG<r6cx#oV_Gf9#J`>~86kdwK6g4=b6o)e^*pK4rzUnFi=
z>qvkaZ&ajZs?|`6PO6eNOm&xx;S+?qN_3%uE+tcV`D`~Kq|Ia>K>VbYnRn@QFQ#d0
zVT(wmO?Bv5q0we&r^`ywj-F^24f}?edp?T}d;rNxq3V@c)L27pWTr>lhbOWPDN0l=
zVSV*&1b?BDx!`oSV7fndB+}X}y4e&{-Qvm*(_c#(QVt)xMTS{E*WGrU4&MVur<%{3
zTzWCh!js12rqZ&Z@W<4+emUBjBLekIQsWWDE7gPNH@FAKF*xB0WSbH8jp2DouXMOC
z1lLQB1U_N26gxAkW3JU7rzjHB0C1>Ts<HL1dHmMH;|I2Xll#)|p>7(9{FpV94>rtl
zd*<>16s!)$qNSB|u#jkq0!7`RQCoL}%==AlL|;2dHBUFVcM5d!T&-sl)m>*o5f?_?
zS?mqImK5J)YC}j+y`#Cm#Jwe}B5i=?1J;fVu;8g>?*G^|9TO$G9Rd!2FvU%SQg8X=
zOcN<{pB2&p4zHVqvXBon+3YXVT!uW0Ek;i<2TyP<McP57BI<@U!{h-$!BY1_i8f;n
zYDA`FV#?l|=+W+@f`liauSK(BGa6=z;0lD2HuXO?>n<o5uNHC`Y0{#%DjJ_X-)<DE
zj<1{by)V^xTgt~GoMFo(J7%#RCNjVH#PXn{RdfX^@QfDjPArwEWp^E~3^&D{+9c!Z
zl)dcwgN6tTjw(7@Ul$+%c~*p^?fCGYzMpnT6)=R4uLjshhYXS2eYv7EloW)Zm!B?h
zFU=k-)v8LPozQ!ekuov^b;Vt?-OjrW8O~WzL|H=bYs7DX@Ug4ymFFi&JHvJWf7m2M
z`L+KgcBgZ-d{0h8Rb|8a06qj|lDjfBEdvsM*+Jg+YX?b6(-N`g&klqu5u~VeMoBHo
zzTppM9&U04H<JxjVyIDRrcghO`F1<U#XcVr;YErKwV{&gpAl0Aq<(h38#HxLgcrf(
zRFMG9jFA|RbKFT|X+_aZ`W>`5Eo9sJ=sdU682u?Sued9c9hd{DJkLFvt)+!>#Hmya
zG$_(xKN2Q*$5&H0P{Ja_DNwXE6d!}6E_}}W_(ckYirZrhA2-UXNouI->s>|({4N$@
zxF*0PJ0yYlw|;4#j3!cP*$|*YjY6^B1lZH{gWb`0puUrA!i|bU*(ukbb)&oePgpWZ
zVNGcbWy>hu2d7v+-u?cKp03yrDq&<&vNBj-$zbn~uLcPdhltc&ha0qb&G&ZLV+qUP
zb0iHaw=D{tktsL>QcrR2o_vGlm)&U<ovidsRBpeow#OZTlm{HQbw)_W4dV;En|tnd
zM^e&>D=)xU|1(%Y%=l=a2gcmh8@0R^MX{Pi5h~7aq|GUE8>b>lqcEt&4M_?d;;Jix
z`P>6twv^q1P?FOUJ%;=|>2bIF4vAYNLrXC!dj~I!Cqp9&T~(tfA~Mo6BUol;aN!uu
zl-8X<jThUUKrKhrTl^X;k$L5S;J^i2{2CaK|C)D|k4H;WG>YsYoDgMCIdk%@*50qF
z)y5HDL5VlNOY~yox83b^?ZSd51$rXFl2I|5&q|xzjvsBEkqx~6=d?b0z}^I{PjmH~
zhOa=iTq+T+Qt~r{Oay>R%6Rw9o+Bi`TS*hy{i4L{qc)@?E#hwdVe4rC{F|n`l^<-~
z1DN_L;bgFKGK4m5-cl<3;A1o0tt+?wip3o{(LMkB);+ADdqd>FCix~w-DcLh=@0ku
z<4}(uZ++M)Jr28TC^=5%*s0ms=eHh^OYPoGucUbJcH8JdGTg>q*#9=ZLGX+BfLwZT
z%ACtrueu+D$|Q~>cMVlngegzuo-bbI-WZ`BTXF2EJver9;WqfJJUZKSlklp`-K9^S
zQ$+5~;zQ3hr1V(B7CbkO!aY9PvXjT&Jz`!h*&#C0U|q1`z3a;TMN~wo!US@VO;KjX
ztl!`+o~+9gMH|URNGi`uOa~2YT;r}dK)VXb@r3Ju$|sa!Nj7J{=SFX@T_rPQB;j_a
zzUylC*0u^FV0`I{Vl^bV+2EG_->^QUE0ONI`So6>o!)iYi27P(3L7qPn3hiHC>2xE
z?6`gH3i_r<bX!wf401ysOtN|CVEdo#v~Ma3tq7$_+oK`}(T!(;X-Tv9?x@{zcsxo;
zm{-{$8fx_@%dWDQukvK*;z(yhbOxz3q))1>n}w<Nj=lYFNxgx8Q)5S~KeFs(?pXWq
z`}!p|mv+B^EG5&$g!<4V`{r7IP$q4zYzIL659P@(7-3rjI&6^yOW`&_LELmo{Sl*)
zYCrymc9qB4MX}knR*IuSeA8|HZ#wL_PKs_cG<8TN+RO}en&(y76JGbEMzCxX{bg&N
zWJyd*=Q}vh@%EfUwAU~8Oa67b)Q$3$N%pZi?J9!h#yVBW;rVBfmI;q^*O?@<*v7!%
z+wt~}_`sq~U;v#I=8BTPrPkiI^`zOnEN_Z^u3oz;VwKIJ$w<dBFxf;>?PZPIm<+hs
zJQ)!b_1p+>EnkZ6ZBUh+erJ3#5?E5x8OA&v4<r)z&a{Uu(k|h(<VeB3^pRQ83_8L-
zwlw}(Wor|4{PbXOl<%>|oF;LD=O|G=niorL<^lS}mWxQ~u?S*#QAWul^3Q`8X1pTX
z?>zl7r=<}+o6JPfsZ{f6g<bKmc9iq(WJ^S@W}Bmi*qzVt*S5vkW^|n`{ys=79g<y}
zXjj}!P*^6orDWcuhonJdyb-vgOR8u-cZAzms9pHK5Rfh^9%d4+!l|Fwt8%ofm{g@C
zQT0FL!(`LBuiK$U`*37}bO}QnhfC>4EBV)tcF*DZi{7irG?@vmG}6bEfO>pNm~Z$#
zu4N>7t+2%a&>FhaaEHC*bS)Sy0L@8K3PK-W2z-QTY?+-jU%Shthzz9yDakCX`$v!1
zz*X82AGWDdhK=dCppx!!^JAKnmG6+?%*yBN%nN#c*JC*h+x=NQ^J~2HGs~|a^otTS
zl=#FY0iN&8#dg0M9jR9jCmHYIks{*u1X7|*eINztNc9e=FzQgUA&IeU`(<{-opuF$
zj*y{x5Fqbb9R<va3~N91q-!E2!>L2c@sS4zKAi}Qw>E0e79XYc_$a5PzP6)NKEZ5j
zc1W~KpY#W7#o9qS(wZ2CC>fCFkegyRg3_3(A~HjCpNK32?PqUj6HF`a5S1N1&c;^H
ziMb?u{d<6KDu{JvTckrwc&t1lRRS-}gy(_-FW66eJLLSNJq0(AYkmkWJwB=LuabLw
zRoc-uvV)7)@c_ZXhk|40@3(>xiYjMxsKQg~dZHQ$nO$#8y8p@~=?h~5Z---&+B?ss
zCQ*$?T8k<5Jwxdib$40$vO!5ZZZ~WNSOp>tL8+6H&?)erDdx*Ff-l;jboq$19%~MJ
zLZX6WyuCcQ>Q^V7Q(~<|wPvJb(_yB!2mfB9&E)Cr&_eKauzx9;)EzQYyx<8BkU*Hc
zWhB@Y0T&w_WPSO_pgB27+NYAvn7Ukk0eK|46ucu^_6~k|jqa$pvbv)YZRqTzZ_n6I
zrq0LbP3Si9x7gj576zaCXVBkddq+oLqS_{z9rp)zdi}Xc5AQ!r^6^e3zY&Sn+pxT-
zPHOBr_sBUxxrd(mFB0eZ`mZh8DZJ;m^R5dOSy3Jw%!2OyYd0~f_lc!Z=FLjQVDZ6?
z!SknRYf*=|4dOzPO7<IajJ_F^eQ+r~Rw@O)cRVxcyoO=29^MC)oJSG>=#x0U#8c25
z@^tXVzx*SKZnaZ<I{ck7FcxR97;0%b1o?8WYmz>?P8ZYX(8*mxGj~`^oXcWG7Vh_K
z@U#BIwt^to@;C%BTLr48=*U*)l<7n~9ycxNfr-QVHur(pjtmCBzAxB!H-cDqHx~Q$
zt}My$LBf$F?iYM<fnHjlJ4x-@NnfVM6wHP@y5O$=)49udvO>!RP*X#4WsM_)i`K>a
zI_24+O-sS77<`%J#|&6pN7m-LjsQ51yxtl3$8-A+go8IM)b5JPc2EXi;q5BkA!juJ
z+<-@<rme&09aGaVH<<4egKym64=9`yqzzM{pTU@gWT8Qto)p~WXa5(GcA$s%XAU?#
zIO<kyD~qr=JZOT$S8F0<>}{P;M}7ogXEMQ_{|sLIpmy~FdC<hP58W{rX%8r~XI^N1
zkDC)Y_ef}+(IcTX9uf7mO?V2Cv`G^(<Bw@xUE&TrS%)me_f8&{I%$?X?p8de%@sWp
zIH#G`<!+&$z<J9hpa$<w7hPW2rs=G~+i7OX`|jipA0@@W1z11?@rcaXIwyG8ONw}a
z6{H$U&!E;^R~kHZSN;7K*e%&yct&u6r|ar{HpyLQBhOoDadih+4}&WL#j+>d{Lx8*
zLrQ$HTMin?5B=ua9_aHpp*7umDddXVKw*3(>`Uku_b4DJ_yuhuthz#A7LF3;px1-j
z57&1}C6LW%6mo)=q~Ph`;^wW9In*=$6ni5kv`}%x#Im<MYScsV<@NDS;5~@Rx52M(
zQ*bMU?4g8`Gl%EpL8LYW_X2P7C3sN023o<#ZLMrYet}ic+&n7yKhlqbsyE*Xrx?GL
z-gJQRo;W!8S-aAKad3HDVrph4uE+cD7`%6n{giA(XW$edbQPauJbjJ|ez~4Q!uHlt
z-_}9ebJXjaW8Ms27aWx3`shkAC#(zZ;CD?#f5K=f8QJL3P3VlI*@to)YNEx@gJvOg
zd;JldGFV5N2<wFoOIU<d^XCCc9gBK3W5&mC^T4D$zc~)=(UHxt#u(Oh9=xi|wL2xv
z{+G^ELi!Slyt<@^p3sr7>DCJuV!nDZDSUVz8$+ety|Hl`H<*!4mPhmT*-5Y56kLJy
zLoO?klu|%S_#5o8I{00#m3Co&G((XtL=)ysDNXwA7H`W=)7`9r%+YG3LH&pvUHB|b
zNP6KM{b;ndBVMFPYIu^QZVWD+qH~cnzN50UmXsuPk%`@eUkhd|(ypzB<UlS7Cl#Ke
zLkjoXJ)H<9uN5X8bN5zjOhLpDc-_2#t%t>-ee<wI!cfHD7s^Bt|Hl+0O?bD@aoJ<{
zxLYnLxobhl;%J0$-azUS<=PW3xW;#etPmA0d~1_%YbuS<Esz>s<qms6yK#LW)<8v1
z`BvoMeO`7qpQW8~q#_@2F1J7B2CUZh9#ip3Hcu7D8ZwSJs&uY(JG`X7@9K~wX<6o%
zwQl_?ZKv8tn~KVOLHL{b^=0?eDcVykIeBy-DEfVGyOuY%Y{paWJ-5hTPdTTFd!ItJ
z423GaX^o4X?N5$h1@J;U4iTpOefQ-`zumtBf3+E1tA!7OQ56P9wCB96bQAkCY2LiR
ziY<G1nA_?hBWB;<z!i4)P|-{81nyQ`OPilfy5K5*8j|ZG0O)p1(i=%tbG2E?DKWNw
zd*VO$OFMh(RRN>hm?6Du2EeUIa`g#s%P!5z8asZqIwvcv;QuKF8xSPYz?iQdVh7!&
zofBJINdqK`4Z7s%h4-^FuI$sP8S81c5Al{R)|^3ir#QX9M=+ncemi^BJRPo7GSJ{b
zDT}*%7hCm=ww5=m49euV@0#i{_Q?meeG1h)kt<})=EfuJfH$-?rv+6NGLh~BA~h;x
z6IN+YUTv%fql^Cjl#rdeL0fydbK?}S%bs@bi+zlg-eV*T8wiUe7-mhGJhjLE&nBOt
z-{4e(xPjtH7Io)8>~oK7Jqgk(`BYo|9%T1O)5w+%=m`ob#zS*!5(@2vh58|`l$!zK
zk@IcN_gfE#KUnvg%f;oQ4Saww!aYLoeoMEL?$ocgxDRmvPTIvjG2b5&j7P0WD2pIj
zq5mue8_Dkn*;&`?FM1zra*yNab%elS_wI=Fr49%v7%i8mJn@*%&N88$?9dN%Oguqb
zQOgJP6pT4)7h7?gc2F@uv+Jgk8Q0`(Z<j1Ocm>)SG(5hOvV?~7|4_2qe^;>QmOUvw
zdPq|k>k!Rla&~q$7Q}#iAzwcMr*;HNU~?O!PZX|yr@N&`XkV|7AT|MarT-CH$Ce&n
z5jJXeEOf^o?k}RQrGpF8sR&Z5vhJBIG=~TzV)hXWAd-B2Fj)S5Kw2lkg$ehLVo3Nq
z@D8>UTvIO^6%0PCzv%id8^m^OFu3TuUaca1JYs_{_ihzT8=nIl2AW3)fUQX7wWl6&
z34a7u&<=@@wspu$OT~SNf!bEO(qFVo(Gz<}CF;{0e!tsmSzra)?J`Iys2P|N-PIc}
zx+~C=(JrK^5v`!43S+pmY_<Oky3Y+iOZ$6#N0?3bciruHMVrJ`?tiCk@q1#4%<NU}
z_*1pLOXJT3c-j(D?RNhk&hF@Lc!?y=#1|3KGQ})-!zGPZA0#Ttt5?x*o(N&{f?FXi
z;=XqG?RMA|*kRK_h)smUkX$<*wQK(Ec8|*w<mb6qA{$^cr9EW+x!C4hsXs4iX~r*6
zO?zhHB75JZc+U&hj207M!axe`z>SZ@k*5dWUdg#h#4vsm0Zdbv$JAVjQ@(K4<K_n+
zNeqOG(DG>PjVYfDUp%tRecw1(jM#pJ5~@k;+ZZ@AO}``Uyn_>u0>_qqF8)^7U~|1E
zb|0$S5SFT`trnAUNPKXvTx_4aRaZ<XdL1D!(hlLe<~IAG-<}(5^Q&xf{i)`>#rFQ2
z_4j2YKk|Q$^>e`;_UT31TtML(zZr^k*RA&0+i4c>G<;`dQf!fC$bGib9|Q+ga?XqE
z01lj~=9D|^y|?Hv69qeKFbK=ZG-ofeZ_&X5rXnm66#)3a4t#ck{f2>Po>bS`OdEiB
z%^7yY9oklmt4<3!ZYB8U%`<KJ5^cqDk1|m9e$ttCU%!p`j@FSgNlH&UdD>34UoZl<
zJ2~1gQ#XT7!Q6hQJ<C6mVuCDi*r{vA<CR>fX8xV_wHtNWB`Dwg_H^`!)9$njZeUV*
zUFsl2n0$u$V2OSFHXnGT?2cZAu=8gvu}}G<<lr3ZUqw1B@#;J5t=H-AOHf$HeSVNs
z&GftMw>N1=zQi0ewYc<RO3u8~W?$>iK%9twyb|AW#1gwN*C9|IYwFZfN6}@DUt;%T
zK|G1FI#E*Mw3=pazEh&$1!N}c1qE`*0U2otaAO>kC^2W<Vb`!;M#JZ`nUmJguMh@B
zGn<LnI3vO;ZHBiV!}8JC7^*)1hS9y4Z|<~5_@`1rNIZ)m%*HHSYHt_#!NXNRAD2~(
zWZ7mR=go=8+PDckq5NUe0hAr@v|nFO%%+4O5%ewrnG*le@s~$ocd;7f@K_lhW)j}z
ziA>kO8k;-K4gT^uJ`nD;hq#?;{r1g2$3FN%hI>Dv&E*8s>UrZy1@t|d;c{jr{DeO?
z1zGtc5j~Q+NRYXp<ex7O{*ak?1M`$o>6s{b_>JwC1)t1FSb@_g{>bp(#3T}rlx!BS
zajVlo2t++LO71AZyyyntat~PTUYV*rQ{aD;cBeuHfaJopuC1+)Z&G`F(|fe+9zDHB
z16cbWjrZoSK+dbI7G(-idm;5&UOd6Q+seW8@I(&eG~#_CmQ7-sNV1UV4t!pJQ5b2U
zth@-z=@L3HKhaf4;{I)XiiM~m(dCM>>^6P@rEE%Yhdj5<U!)U|5KVBm$n@emf&-j*
zY^P^u0Rcn8?$rmhg9vqX!h>?Dx^B(U?j4y{5(wa74(#y-YPg&t_wf>KAKUUX9R#59
z?$WdHBryHT+@rV9*Y{F!UN@g5x)+|&uM2-}V94ZbSk<({-MjO8G~&RLY1$5R+2?8_
zIRW`4AzdkC*LPR-ZUnjfBi&u$H&QMXlqc{7xubdVS-O~l$~t1}uv}%rg&dXc)=Cit
zlq{7kcuGs`Wrq5}f4Y}z^pCNO3KRYvp*A7k_#Q6uN*|x3n~i(Ao1diz9Z!TZ!v32;
z@dd10xt$x~-}vadh|;qRc#BMP++J=~UxN{9yNCN;29pFA)dUgyWgL*z8SQuHa{YT6
zjaQ<E6!>*2cFA*Pr|^;ZTftkPs>05bVlFLnjTiTBme{|a%3Q&P+T8oPDJy!6yV-{j
znS3<fSYR#*$bq`;d5oL?mVPxUDg_onPU8Cb?qruZSDPumg`W+!FKitrPI2#b(5lfV
z{vg;4C=Qk37W!Ze-&9pwD{li6Bi7-iS#G=6^^08QoK0$JI$%PLH_Dy5ZO9LS?luf{
zo`1-sGev7NGalMVI7!I3fo|X<IxZHV86drk6eLM=oaZ+9fSrqX5SeOazO)P#`dryc
z-B3AxmPBWyr3&)=z1}T(LYs>sjRa5Q#6T{H%WK@)*R)j*48474jFQOgi7<h5v#8GP
z(Z?h(E?KqifT#TLy5Ks^TpM!l2?%fN;bfRE65K)ojvn_cp(DRdaBp6^MKkQic@x|b
z{`FHqNXSV#$%n8`l)8uJ>#xVe5MH<j=|UNiZ4OFx(@)l}shdbeE>5yA1KDPIn(G(8
z<QOzuOL>Q=`kf-RKi6EKUlg`PVx91YShPVY=cl_D+O&N%#l0CHUtwGgGu>)Ik(s8u
zHO)Mo<?irXOB#Fvo}Qh}kxvP`cl;xt+;djW=ecq2h4XZr@+u-+8yeXf4l(B1@ou<(
z5Iw)ZJZNSWxJ!MQ?|va@fYZuc=0ywy9w6pbX*UQ0C`e3kpWml5^!Po|uoGOp9BJQI
zlm;I9D8Ze&O*EWN0Ti=OqWeGqY+GYc`z6sm`u`gvWU3Ne`qR3+%@`Dx_b?Yat#@O(
zsXNRqIJIXZZW?CE5pIG1OPKI@kaC(F;K3Pg;+gvEF)cIOe7uO3karZyayR;*;m?>N
zNqc|Jb_37WpXau0s%-$11NdfTmiyhGGN&cZk)>y6a{YD1j&wtE{lsZB$4AdjM~Is{
z#Wg(KM^8qN9>S@`A2$tSPo~+v#l7M`ydKTjQXA=l)r`a0HvCLcBcH^E*z!jMUHfBx
z4{nY1;x5~RI)@-YHxF^|`KO+bY$l(MtijxfTFgh>=^@bFk^8vAWuZ(!v1l<p3tGz=
z>E8KXTj2sBKFW&WJ&2Asl;Wm-qFu$27`TZqQgEW~f1vyJ8=85^J@F4(|7A69)stKI
zU|2h^+Ex0OK2gG%An9mR_N#CMZ`7ZUj<mrmfyPqBYCE9Po%ZUM?VR-dYIm{U-s^HQ
zdt6R|QWkhB<{Ve--jRs$EeItjep-LGmmC)&r4n%fBHg@wh<p7UZG;*?4&b{5C>Ur-
zmRoj4@1JLzM-O$y0zW7kNWtMV!q|Y&A(DIGBma?%0i_cb0OH1(3Jp!7+g%PpUJox;
zVibI)HADU61J=FglTVI&B+9X7kxL~9LZ*2%=nCXyebP!?xqq)I5Fqnbz`Z3b3Eudy
zGBE@%EQG8i*>nV4i9eyl?USV}hGs^%m~lJ0V_)DCkQr7K0)=o@!48>it}J(dT%}{N
zhQK(H;e?Ee-y2@TgWS_TiS6+ffq^Di?lKl^Ih^?0Csnw9*ZCcr<V+Py5tW;rX}%oe
zKK6MgAwRiNV_v7iQ;QEfb6o#NbshOFl**#YA+_J)#{sgxW|+IuXFBEMp2v}FZu4A$
ze;il^d}!uYu$YZ^?+En7aaWx0gHR*7ugGzv=aD{i403*eKZ4aug$}x<kRB&>popJB
z?pq&mh`}W;b!c^&C7JG4AGMF}xm!u4@oB!h<Rl#_ETWz;c_Avnq>F=U<MrAxdJ};P
zBD|reF<(w|i!RY-7<H*Q5XzFsl8WQqg#yw5Zi`R&iTnaX3@&!_Vzi^?@TGAs421sc
zKJI-VEg)xceu9Irj_?BTtv+>y4m5`Ss#u1u=a@40p^rkj`Id%gt<YW3mpvJFJKfal
z=Q!jVuhd;2KktE1Sj$rfxj8;UiK{|{y#{k2=FB_Dz5Ig?(_{Hi`w?L`aJJtb(FhT7
z^~o@c!|wOvwYfL5mugy%b}L@go&qSkt{=yL^WG%a;xp3WO$~wtyM*4dSS<$*Q<Y^V
zmAd6Vzex}STkql`h@}NcR!($h_?O$03Jcczt-y`+xrLrRAT0A)f!isLIC{|fRBk<1
z=+2IFF+F=Y|3AjLwf<;Q?lFcW0qe;QKCW`)#FGn-??6_K<eE_G{wZ`xYHcZHNW+gL
zMXI8{`<?#WkA!F**-{ysBdjd8a4IfVxZQnrsTZbZ^aVBUNFN{f?!kId<IaD|KibMh
zm=khuq?o3uZt3mX*yH7=!kg5Vxmy<Mx_q4q(ZZVYMVNlD))4pCgW5Z$p-qyJq8S!H
zKXd24uH=9Ics*Z=sQvdYa25XjbU~)zr6naUDo=}4G|`#<%{Jl;5o;pZ6UdeO`DCyQ
z3rgt8U$Vd(Cb-wn*X9DWPH|ldi%T~j7P}k$E9jaC6Q60H;2!rcvxK5I#A6HPym*xR
z;WnMUn{opF2f1&*)uDSFN*dU8`*Qbg{Mdngy)Mazlxc#8yEA-V6nxj+kzpP<+%-y0
z6c$fdvtV34AjD(8Bi;A@!w3@tLM*m01tJ|Ln@5w~n`h~owm^ZnH)VTnk&gl=BaB2E
z<&1EKG(qcDKIE^s=dnvP_#XK#_+RY`Z|WOA^=K#e%zZQ5VjpkyXh&%MA>zypTaJSp
zU$ol&EPx__y?K22s;{fviCc|>`s$`CH)ZSgOfzq$TPQq39E)$s3&9tUOLQ*@8TGRZ
z;tAOEO=R|X6Jft1F_J%0b@l|;?^gW^{UV_(06sPh^G>nr@4u7q&-kCTqGC*^Kuosz
zwaoqGLvXGN3FsWq5C2l(76|E=^r3AknEB!W_*1JJiuyu1L76neEGl&;`IF`|biIy^
z2C3sHcdrn8evR{vswa3fAl!}#?pqPP0TU^G;YWm-J<{CHKGyD1G_de9LT;^(3VYEa
zp$fC}U8BzqlTwwGDNIYIJv9A?xra{I(R;!(BGkrm*Z&$ipf0}RR0%O+OS<_sLHLqz
zp&Yiv!AaHHvV8KCPtfYid2mNs2%SpQkl8;jcZ>T`zf^MgkX4UD*LkUB=Gt<19aWU`
zuw+Z6KCSPamkXu6quyOUk7}x@2~j?ar;^Z3wC4r!Ob}akO->ox)kDQ}RE}*Dw<94s
z#l=XjZMAMizScR;CGkmBtrSoV7p9pt5qI@eohMw`F_U!4B%3Jj8i=Z~W6<)paPyO?
zNV~%nSKFW!UMuRV<Mmxj;cp9EQbwO8lwpgvt8?2Ot(DCc)5ykisIE<TOf|(#se&yD
z`<rTT(**>|^0}hd^4*3)ilO>DR~;}b_1T4K)q^FByG+h$c9c9mB$>eDVY}sC|NZ~{
z>diZfp`n7x=7KJ`jf%;s=FL(!jpD)_WcLQgcWv+}xjUj?0|kI4y5aI1l&`hNx!AiD
zY43ScIp*VXWMEyfRGKAS3coHv^a65r9Jgid;7oJXLihFdgR4-P=aC@g^J*ZOFfroZ
zQGDFG*m`q@Q~^`Dv1+EreG8eKG*9>0ua2Xgq=22D<BdBrQu}#J`}!6?kbd>;cKTR)
z(XB?CNe@H>8Ei%K!#3gXL{TS$R*|wK+3LyH*?X>56?1;9u>tj&w!`>bXXh`_b~M{!
zE9~`K+)gp;sY)M_lG3_2+E=de_1E;wAc#paBk<PI65L|PE!3{@5<1D{kvC29znGOb
z*?fQMF)gkB%p&cqxy62qQlC|pQ~0OVR}(?qP2Np*6-E#MMHNf&_bxiuW%jtY6Z*pz
zRKz;T{b+W|v(ZuwR>Z-CoYtfgNy)R{j2|+OX^pw7pIbXUVQ)+kMbTJ0`l*o(l_PPQ
zBkP3*LxCtRACAVlZ&Q`<!M>?VeqqeItAZ^90(XH?%Sq=#%_s6!q>Pm4*9Wh0<##7W
zKuDzC?J$*CdQX_|c0OxRgmWpz6k{esQU03mR<{g_fUGE)?w8z#V|i+U%Rfb1M-vmu
znAPa#0#~|6|2s&MOpGQIQzSOWpe{#gSk`W@I-C-{ICW5&f+LnZ8)S~L%P(bNWZV>I
zc?pjUl=C;wr==6`1+sgRcm}w*@DTUh{X<qDx!^$%!`qFhFx;TCOzStnjkyPJ)sfz3
zhosZ!(UH@E;U57@D$wG6d{)x(&Jk7M^72l}T?wTXACyz)+b_>2VW4=S5sQwo0Uu{%
zge<99(RQxJu3}ClrvnZKlKBeA->$@tmjvPDS~TlN`6<oS+)a$EB;drehD;T6?Z4J1
zJjx3l|8vvFq_#lPOAcVEJFPKzWWOPg0<)Mls_+Fuv4nj#fOPiFslm^)=)!5PsjeNZ
z0Lda#Bxg^-rNRCO(UD~eW|7e_6bhgMzxkNpaW^OGK=m71WE>zK<|TlxVA+3z=ce*O
znwi)b`IxMQX#u#Sb3;itpWnL`HG5ZUh8e#>l3(M@D8s)!H%OHS9sXyO@@*R$W=SA=
zsx0)9lY$Qo)4mE)?F+AlsW&5lA?~r0g0H6dU-j4>>kW17PF|11cGi=p86h`C!YF?_
zHCS?2q8wIvTgwK_zZ<xoP<j9^^RCl_Xa1W3rAjKz?NlQrKVwP&j^u(s(r*=Xk?nmB
zLGpMN$yld-=YDP1V=0Jf6?9n}rx-G+rvw+L50P0);Jkls6=52IJ^+&2vp$&Lzpt)z
z^X05y7G2Czu%VTtJbGa`=?6gNzw8t=7bS)Zq+U5hwV4oI15)?VX*dsj4d^trwRD)g
zNhxMVyF2JGYHCZpyvk~=6`ngf(+t1EotDzOt~i0Ef4c8p85GVD)eRXrp^Z=ozAWx=
z{~D>)=ex3lP<lSaEILc^`c_5h&12`dlJSr`J=sdXioDc6f3d=?Yabk*Ovx4rk}}09
zd1gk1I|QN;29}Wk^j0Sqr<;M-yJvSBEIC(tCSyU?@Uz2&3$QsyBGs*?s65Twd53%c
zkgZq*)UQqMpt+Q82kO<vgT=7gl$WKLpWkx1IfF~E?UI5HbZg9~uX>lf>Pbv8r3Hw=
zB45u);iMLy=)Rdg<TxH}0j9k`q1gA#-R}=M?86c3^KvliHwDH^zACsrK=j1}ytVJ|
z^xcGA|Bd~&yrWu*+w*$U%@5=EKJ~2BEmH4^(eJM|_i6?y0;L2EyttTZQp~qICw+Q;
zuSQTsyb(sFyt$)V!axWnm-xJ0E({jzkM$8ZaJ;&ztH~@b^bGX@d0npzQe@4ieGOR9
zQ+S-;Ut@>)G|rfBua$yTYr!gnN3_<p2QU^=ZXg{ni>|l39^pw>1!`z)t@sj|v}N{+
z(b|ZUJ4VWmPSB?L`&s*aSX-x{MZ#-H{Ep1AtL=w{94U5o_|(eT#5Ip3;M%N-x*wMi
z6pyefb_)^z#rgcJn{4|fL}!P{4o8MI5Fef=ocrTby#vxUj=Zdn5PZrVwGs%8V#dsR
z)T>%Z56O3^Rx1@TP#`gjpx9$Zc+ZT`zV29W$;|SF^N#&O>z?PuglGhED`!EGBovIP
zlDyxZp)+L0uWu(79`!Io&79#~a^m1TG<1^8NwO?U^mqM?!BTuZr=cc>KMZaN$)syG
z%g1;%W0@Aj(NMLXAbpJLEDa!u;WI;#bH@9+!~6O-jhH84QKW88B`zE!Jm%|PkMqJ)
zblAK|jAXSkW~#YotQQ-jThT1Cng&fWC<gL2Qp%Dvc_{N({DHaN-79rxcvCfiA){<d
zN<o{C5Aa@?JxEqdZp=V@VbCJ+Sxq(>hj<rFVt9<cnpT#P8z@N~!Ig#5E+P>eG{w7o
zUOdDfw=y{vbWp3Oco(<nvU13=Pzx%gj2wBma=bY;x(vMdh_UCgNZ3r)!C~I%*J(S|
z$*b$;0K0O#Is1FpZPMoAuV(>!#J)r9e%{O5=yYss%otfTVWg~_`^7HEaCW$N+hzJ4
zrQ4!#1mf6a9vSY9^S`5%FBPLujFEaU!~A-nx8!tw9U_F4EHC0l!HKn9=3V=tw(7yQ
zw8W?}CI>6WR5FY6<HCT<(pIk&n33BCFxLyKh=Z}Ywa~kAl)?p>18ZXu0E48ztm3<|
z-t;n7Pi6u_n5dD+6{U%u?5{cApdWR@i4wyFcZZ+F)199Cghp~lR5nyLZe&(`2`TNi
z#+&;+qky~sc`c+Mahm4F54?Hz=;);=i79&!`##z!6R@MkPH(?{dTu3>cZ7MxY25s^
zuXpNgJ^)k(CN|Y=lq~>@=CP3XV}$~ol;qN54wMsl#+U37^!LOVZ?6K~qdcQodO8#+
z!mVE3Cz^&VbM82=o-ufZ6idLr2tJ*yRv54TEZr3$OdLQmSzQ2*HQs^;2TRrj($3c*
z4yraND-#jLJo$><eNTKi$n!9>a^_4CPr7=sx@~yL-m<&)qO(AyhrIzDmz5b}1t&ag
z*ZN6?MZ+z+bM4ARzq4YMJ<ZQ5Om+LVu8&0dwERBFO}!j+n%5AUrJ<OhhyGXDz#c=z
zzho>2LfTKMZiLpdb9?(>Ex#rz4G91r83YnC6=7F36-U^)v7rxw!E-q`@>3E5vtaJf
ze~z>d^7GNSsSqMo9~gShZPe`UPGXUvNi2>_bQ5mdGMOIA^kkFtlbbaejv~cO#GnLZ
zC|ia&61+0F+x|m(=A^)va-`U?{hSm%^S<J9f-tn_Z*D=zy8-UIq*W?Dpe#0*Umg6%
z;KV0jCMmd00^4u}>;%u4qHt&siA^odf&2Mxr{LoI2T7hwYW37aq%N+XTDvA@-Seck
zlpHH9)L)2ztw2JsPOFZzgQN@upGegaEvb@)O7n(Bn?i*@76CfkoJu?_Mbfl<NEYcc
z%$!r~lhmx|<1%tR)=@d2vY{&0F3CE{aY2E*Id&O|?dhk32i`b?1!<hDJ>FhLQhFI4
zVVv4LB({b#oHN_L|CBasnI@hKwUfxosQsMnrW5Qq_5sQfl{QchwjeXbY+ID1S+aAH
z>lq0sxx3RILOpCIAkIO*7k|0aIxNPVW%RQkFtQLy@hlvf!fvi?^Ire=pk=Jq-*WDH
z3=WbmH4-R}%+Znr=_4hr@qGbr_fdnEp*JEMk>n+T(@P$ihQfKj<Gc&@&>>11YCqDN
z6w;Al?n?B28r}Po<m8bOc+~v~8V;?K;J240dNXtQf?!8#+K}ZFRHYw;{_8z;5FJu4
z2yHo#Miv7W26yt>G;fF9b$YODY-U8<D<#(?-=&zn1Ky7z9gtNMMU1pTSNcftZt36V
zy*gBvH<lC#AYxqI*;R;MnE!=Gd&l-4q;aMaxCR|2dzJX;OKcw_pZsL->ZD;()j{jp
zf>xN85E1;%mV1w`2D*r_;Yo1bc+3gnk`hV0#m4Ks@o)RxAOcR9h@mWV)*^4pv)W4O
z9H2@vywZahyJ)@_eqMX>;FyK9(+(!<ywsbvDn1S6!s@i3RFs^v<k3Y-%&CUNfursY
zFZ-cHL48ni62z_t@o;*$gh2#$^>%t%lgboPOQY6g;%Sp<qMzH>#QH(<kTx`5WZ!L*
zgp66KChaq+z$87`jk<DwWnx~*G)JzopNq<pX?|`ZJ+rELNe=*sefWc&`;Om*gzI;W
zlv1X`NF$Ml#A@w*Yir)+NBHh);!!d5WoC)pY2Qa|;Tr#Q3}x?uJqg{{53!kNnkDP)
zr$1?T8T^Pc=ZuLFHe}|#ZxcVzE-Vqg%^?#{&TR9<6ShP&v%PmHCcW+*;@ZIGeP;`t
z#NZG~22N^V`AWsKmKgj53FA>AZv4*Xi<b*7NTk}0XFAM+nxvWLCnQs{biuCp4n6n=
z0k)?+XIF~ibj#7w%#GjMLNOddtf-$A-%)lZP8sHw9o)dbwX4_Fp!w`xIP@F`ecag5
zv$I_w?#0*a?*3G~@%pwv5gDXOJ1c2>p8Ug(e1-v~W))I?vm~7XWmIhM`iuHD1v(dP
ziI0_@LVC3RU)%qQ*%dG+MUYOCktI3ms`|N4AJ>k_f}I=UY54yiVdnu}MYXlzZG}Kc
z0xBr&%$^A-YBaroEsf9ufdmk+9g;&5Qb_?4u^?4N5tJebVh0pKDT3u<!GZ;Bs94Y-
zsGwrO3#h37yY^&467c@_@wvv?v**n0vi2(9`WB;rL3G-y_V{m2W0UvhiyFUoA>vYk
zltNt_t=>9h7r3+6qz~G~u|B}M+<BD*f><^7s69_&YNGP8PQ0@lSR7#bl)ZM{52kSt
zJ}q|z;r~riZ@pq)_@QYSa0r!N_Cb;WuQQ&rpOZKMtNke4<z~ql$Y$v-`z%?JoK<7S
zxDAOwOQKcBFYKUT6aaxq=UKz6D{AFwi6omvs^zcQJAZe7r4V9Rcj$m$voR+gvOnL9
zDFv`kashF{@$2btg+u)MAa+?=pr|x}+ena2Ob<B;`@^%Y;C{?e*ky~x!|DRA6>aQ?
zZfA7s+Amok;k8H|3_i)29Cg56^G>IJDX7+dD_bb(_(}=L601TM=T5VSJw>yW`M|hk
z*dmGp5!8C7ySShp`^7%+q0#Z^4#W%Q0RjKh^4nK>)Lzp<9b1G1Iw3BZJHF6~-<YeZ
z;0Evy)d{5*U$pQw9sY)CkkV4QWz3MI1`_>^QD^Pd%l35IB!1Qc$dZdH$z0&DMqh^1
zBq$u1v3yoG!Rnd_GJGN`O+-1#*pCapwp)GNsb8}2=T%yG>aZ!$eX+eBv-?hhAU__T
zTnXY)lp?{yi_y912|IWyZMZ1Kk1x0}mBgt45z}s4f7nULNizghz@QW6j#Q<u+57J@
zoTaFt66}<a)5UMtiyvmf;|)yPMXE>~9sZ4K=hChxXdwk-f}`A)jKVP_Iilyn9h<0n
z)HwNPbUDuaj#b;LozghS>6($ma?1PWIdiTw?E09*WtF5UF*STS$K>fL;T>n`O#G2J
z)0pc%S?CXIu5p5gbsEcYlU_N-PiiAslNHu?Bb>1;v*d#D{#vEhUS<XM*kk#8QW9dU
zhj)gL<*X#3fz%kK9{$re>w5QgV)62T>&~{EkL<^IJ4vl!ZK&iR-~PVgawQu|+nRAo
z?ds_JwI^4gSu4z=UX4<B1^M0`YOW;L`U|lSRrj{Od#*KCGLgF#qM<Hp>-%AhxiqAD
z0{)Me!+ckbfvW&@lk97ZeNJNz4<Q_X<R#~;ozUW->Q-|?vaTh4<-X^gvRLvinsN@H
z@VcA>Xhi6CrT8}8bTwQGvflPDao!+b`ounF*xnM<i2K6dZTD{p6D;RQb<3jgkQV=X
zM>IO=|8oaB;eXx%8Bmn^?xFAjr~lipM9XIUpKr>?#?|}C|K)2*{)lbxsN?mosl~z~
zGLMTOQN47xbL;2!CL*c*3k;(WiTaWxN8p~2yUM!JdEqCw8DS&w{P<W7BmaEoV5GAN
zvF8y2;6-*5rLbaz&1ykt_?Z{k|8|Gefu9x{-oNo3Qrqs>Glbr=`5iS)?+~rH;ThRd
zom&#x(6&%lrs(h#m~J?=j%QmZOi<6SAYXm#vm({1`OcOoM+T$OAhAWeFLQbyFr$!-
z4+YhfC}<>Ti0AHc{_bq<=hbn}l?2H9LTO`^V$d~O-RC59cQ%PFM_RC(`eX_<6fSV~
zuD3SfqLQpA;VvLy1Th__CXR4&#_1D?P^5t?LZwZ94M&J8VrBo3<%Y#~R*UdY*4xK%
zI78}cIGmd|;A1}4FcO!Rn@t6`GYN*(&O5N%;A?M82hDB_z0o;(^NC)Nm#=?8qU=MC
z<NCq0ttZ!E(G4AgtQhctGxJmg0p?&0{t#h}C1-*<px1`q_5=x7Cwxj`!&AhgDxCL(
zK=6klr<N^ttjo{agv`q+D<_KyIYtw(5%R33J6*b;_b=N+D5C!N7K2ZmWS;*eF4%;W
z4mE+QCMo~uug8cO8i)W`U-ei2Z3AI_|34cDt+ameGg}<DjhQS!@u^?;I(L73B3=e5
zI#b`+FvNy6i32?83Huk=nDFoPm3(}$lkg^?=h_ucj{ky93{;j|2^Xsb^EH2-bJ<Wh
zi<;dZ<K5q^0k=o}gPJw4%#Jl=3%{Erk@MpS6AF)%IyEEU6g*C?KmgP)Ii8nHongc7
z6Cam|D=}rFvv%MG&0mc}u>OY{A2KYS`a`DiRlIQZR~Z>1qVhs0Oq@d(6@;JD8s37&
zmpK+6D-54;W~0mC=LGzC!n@H>3c_3PkP}HLL2$SvEmEXJ>dlG|f^2E2p28vj@C17@
zH8g1(OgT9!LQ`!7(ysAPrOF-b>zGozatLN6nS1{6;-SS4Aih>p_s-DQvZ7DxWtUK8
z74b9_cY&C`d>{VSKP~&>>rCft_{&UPPfO}uALG8oRY+v;QmS(^rNDKea}}2!Y_?Kv
zMXC)#zbc{TVfyy(O(C&txSplfAjKzvmnEr(dg#*^(Sii@n~EiDR1C=J7uY*{@Knx~
zGV)%f&J2MHDQNrZ5q;A<)4`N0E2#z+D4;M_|LGUlS@J66m;yU>i`;>*;|u#n*fXy(
zErKwCCQXP<5tJ|Ywg*Yg6r4)(!r~bcrxHUuq`$qL;3t|KE%;OEf}e(9&9ANPSgE#)
z{%Q)cf@+qpp^<M0?_>|o>GGQRUqme*PZSTr+TaWAnH0I<SF)vAH_yVcYz;xy<%%+g
ztV74(2;3vjWu8gQHr09XuM*rI6>M*)Ha|!W8@CiWKZdn;evmyz>OB*rh8svCvJ~Kq
zRrXExo4bw2s<+e;=EnvZCS1v)h*h1+?8WbS?kOBdL{bHG-8R#nyqZo}j^nA)Mg;^p
zzSVD+*hfD%&k}#qxf14K2~q8((0vi9S`)7#uCdFd#xPm}?i{Z+jl3+A#ydr;-EHi%
z=JKip_Wb4I4#%ouS=1N%W9o==;A9{$ZB`G<t&CL&M42%i`npayVEW<)&K3WDIf+5W
zosy*Pc}Um1ZW^<R(@=G{zU~drN7wmooxYtKfg%|Fc#GIRtj-M5k8#rzXW{yF>-6hq
znfipsUJOa&RUw24S8D4CM^~h{EoZeh<DJenk@z<X(DEw#kuS}78jn7jhu>mhQlq#6
zhAq+G8OEfmY|vKX$;)A4`A9SBNorR=JM{@Oyu4p2$))06vQof|@OOR9;l&m9qi&h>
zVd6gEk!F_Lm)ddb>T4HCttd&Yk@q<|*^ZNfR^mTJGca{osS_Hn+LYQ;>dXuep#-Ws
z!H^|hVi(B-i&qtwFC2l`NM;MfsE^a^#j*uJwn4Lu!BAT$bpe@X>H_wk<}OL`ON%#5
z)_<b9<SaXd!b#l17~~-|gqcjnE>YVl<-C>vewai8CG10Sfzv6ppZ!9dY3q&em9T^8
zRivZFsSy$O6p>z(Z<5U<bL-9qO2mvp`=pahTPnSH1-FGWin6D_xTTWB9;h#|jf|w^
zsd6ibr?XH>16GDBad78ygi$TJzDPF`l#*E@>5A*COrem)tI}e7&VDmlSwONepx7lW
z46M(ai|r5pF)agO@x-uqUj^UB-a>n4uz5*z6jPv!J&L9I<TyLbEs`rjgaVepMp!nL
zZmllk5vKIyym~(}ZesZ@F2||X0ecj6TiK|xBUx+5HV(y15x{2WVt@9uTgbX3c8h06
zXtE`8Ba)ejqAY$+{~a53ZVNymau57<Qn52pUH5=~JKU6(>@9IHYF<huOo$f4?R8SA
zS2A1uIG2dUh(eIRL+9OWE+g_q@h37(m;w==^Q}H_l4%h~HSa1?l4C1Tee++Pnr>P$
z@LuAwmli^$CR+2#IMY&J6gmp0l2?q>l&T$LmI$jIuTreaue6_^VGh6?hK{%=r;}8f
zXNM7NV$xnJvmdye1sSc9Sv?F6D=tb=P4%Hi86312PD>-CNzG!3yf@z-YV-T-d)W@e
z$62JN{?>=r*qz+U$KnTJ_ahP#)SL;X$~=!B#vy<wUi5-Qby|-7&N7~lTTP06l4tA=
zy;PBu*c>irw(6u^`oWFn-Q1Im6(T1IB7-#*KFFT)ky%sb_liZ}pn)Z*OUK&>sinqG
zg07&dibVQketP@uD_$`Zjw?^fd>bD&o*krn<$L<fy=GX&Sx8WY{mLl^c<_)m<BblD
zbfiLWq46_Et3xYv=gnqd2XeL$-5`X3_+<4os-MTc-c)6$XPf&twaQ)5&yqApA^~#*
z0b3w4jjsedS|<25vx?uZwqJI5A&91s6H=3ma}d7_UcYN!&~xN`7m36Z5!T|-IaaWm
zA6*fxvtFXNoZ1u*78-th@vvkKwkd;kLQP6O*0uG1VysdEE*q-)Bh%hGAMp>fZDF-J
znT5xZeE=KFQN3z`c}4vGNM!NAOI;V|3EgFr`SDDmewDIz(Iv3T2K0AJ8dG>)U}0<!
z7EZjn@GlKcM--gi!VxR=!~}aCqx{|M*=#5p%=8yivxyd2wDTN$K{o@T!24Tkifj-9
z6sRx$Un=yhw0l1c<O(?2o+?o6)WArJvsk^8UkX3_Rp3P&Gx#wpD{9DJijTI?UoY<v
ze$9)fW!RpHV-HE1sK9}Ox`jWt$zX_v?J-CgDojPu1NHvG>EYD^aKc$sMQjwK6+B@%
zYY?<jqI&x`$GX00s4y<p;-Ig&H+=eerrWDfk#T<vPm5M({@1yG0{6o_f<v$P5TsFw
ziSo+JPY?fczIlTt2rK5uMObC_BSOXClZrJkgW8FAIDhuTIY`z7Qxd2yEN<jKB*1{k
z?f<i_wwPPs;44H<6L<hrp$hif^IqXP&nv`qCqyK01hF$$X?tC#&QC&mNXld_)FkX;
zLP}BUx5u5#1&BfuKpca8j#HFFmXZg(ZPFN|VF-oqM9t+ooA!?0_K~ODy$KxJobrsx
z`6>25$~$wngnW=T=62MR1<CfK_nQU|Dzp0JIfP2@x!msi*l`6fc)+QHowo*b7Jy5R
z5KRJbN#sqF)Dz`S@V8x`glJ$8G!H-{DcBhuA<&QU9i1x!v{3f}*MHdri^QAaB3Yn<
zON@^<xWqnF9P3SL<w1r~%zmq=87moa5#n|IC*2wQt!e6CT$Wc0lWJT-ggBaudpK{L
z#DiIEQt3*ZZgk>#Ea-1Do!@+vgun$(avi^g8fdCQbROdzaLjwAO1&`NlqF4cF;e|{
zx^vb%^SI$)JBq>X#6?BOew&`|Obas&DMEcGH34}8;f;AT(peT%-;(cV-jJ-kwa|F1
z?B%?;*}OH#6d5P33u5KQOPm2eaGi9eKouOqj1klJ<QdLU86!jAS<2nKlZe#yXFIPw
zX08Lnm8ZlIh9vFp{7z2$$<3~#l&N3Nc9!03uFD`7=GNjq<0s@`Y1P5G_Es|@*;G39
zH=YFqPK=3)K2++Yci<ia2!q&0yh{-=NQy5yIFmAIz||SRX5gVoW&p^hdhvPp_xxf{
zND3uyjyd`=tk4h9BHZ`IBD$pBMU>ihzmuO~F5}FR%L!(UJTuLC>^h!LWeJ?X82gEl
zRQ7-t@nxq&7PkW=6kIFDIOm32Lb1zS=ex~xX|iX80%gGC&TR`!9}j{R86jByOUj(?
zPjDT6z((^6USd?bb8<Txh_507`RF9x6+Psu>zqrbG<i^T1c5shTkM?wB-fd&idu$4
zW}QKn5YMj8&gJFiH!_5pZ36KXGfu0nbhaH}){nu$+)?UU>0G|T`~-SKU~Jh0h>(aT
zOMX$8a%buWzVBFhmB<Jo3VCO|v!u0|iVT0AP&>KRPSQi112PlGejzp@8cFVyJ6qRq
zo!Aa9%kfSaB#}9#s&Ay@w@eReZB$VioxMz`n%Ta0ymLCMj-NJ5#akVDWzOXtxeRx&
ze>4vRXJp`lH+FO0&T0PBg!Zm4cdRvC1xKLNdHtQ!Ml=sb0GeT5os9_ynkE%@I7t()
zb)Fd6xvuX3JW4D$91gfsId5lvsu!Id@<wEkgv%(2C|T`^l)QkT<tO{bv%1s`>cg2_
zTunBpK;|M@A5YEGQ{E1_?826H15<e#kXU1WK@5yaaMBLzrmmrVzG>08vY^-tVei{_
zAL=rZU+GWOp|DD+$-nyYx7y8KiQ(F|Q@?X&$h_#Fx|}OT*CoRajRC_0!yjF<$6?<c
zmBG)x5mc8vfOtg%#*`Bfxq16s>zc%n7nTGy!s?@xxERG|zs0*8+^I)(kk8+V8jK=6
z8r=i>N`1C|tGgxFQmadZjj9IvPqna>&L3&6@<x8#a_k*I<m#1<`mzhTPNwsinlfDM
zL`P5z1>`1Y%g28Gh;G(R^r*D6^>g9wb<9}vG>PZE&`Mu6qWSGeip}Tf_-@Uvi%i?x
zL4U%#qF#X=%B!Xl(b_~kslBz6Sx+9H3w8)v4^n#wm~PZ-Kk>=+zCg4|yOktVs@JHF
z>vie(%^O6>o%5W|s%zeW14uo)L7)4LZzsDQosQ7Y+spMUWxCm;Audt3ZPH_T0>7Su
z!NP2DhVo=0F!$>Y&o_T`9E*F`CSCn;^9HG<HtShE>PvnTkA@jz)G<kKz2a`&Z<5vI
zvSdR4@Sq+u+1kk~ypGdRL8+ua>1plckOqdt*&?!7-s9=PdQMjJH;?5#Zg^gI`P#P=
z#W59Ilwr+^)Bl;LcOv@GnE|sZ)$?-w#|wI=D7{i}L9M?*pV!4UuabwK#xj{$*wacq
zF-PBjy(JGzE3A=aMoy^Ukr>LwsrrpMdM7hX-6)W+N*#^V@BgBk-K>UPp)(h8HHI^z
zq_Coxs9eFfd|2T~t;aOKn@2O`S7d140v;{qAZbdY1xajj4XV28zk1Ms0z*is5G`Is
zuFxYEvS@@OTjKA4y4va6UUUbxiuwtZo>O6S^?+JFL%`5LW$`Rvo&w5a1fpi>uWf55
z@*%mn+)u2NCp_}9KKm*&2WdxZrR?ssr}ctFYZEKb(43)Ra5e!i6uo581>J(z;A4$d
zjVWxS>nUud5*#H!i%hPXL8b6jK_$-68;w?#L4c;BiUb2jIC7}dS*r1|9mzS$qmUbr
zg&6uzD04o(w(}OmXa7C+k@Buvu(>G@CVH@yRhDOsM16sOj%}N0VPlQ{*?x8?H=!`2
zU5SYZWu@r8JwCMKFGeM16q=+8aK^cb5DzdODA`hnqts8xmG1+}a)<NG^v;72I@#4l
zu+T8(ZCludoAe+w${~hIflC*CuUnpH2k@gpTS)cnB9)AHVc9z8-bp5<C7XmW5bOPk
za!$M788x+Oo=d#?ev$KsoBWbpMTyEvajc~wHA@yaGpBZx47h<n-ofOHpP>k;MjBj<
zx~kZ@V`8V~^>~TIH`L<=oNy$+x}*q1uz<7->)gq^oX{PeoAqK(LAZX%*?nCXNiL&k
zJ&^QLH?{2CeCLTkr_FpXCruH^6_O<qO-jhq3&RJ@G<g)bL@NuhUBqg`0EtowGsCa{
zql;JwIaIE%o~RNGv~|fZ_5)uUayw(#;{h}5c4T!&O3C96d02En0C7i%<BcL0iR!9x
z_GWRI;Us{V4rCy_!d2o8L?B`M@7||d7nmQyKp#!n*a!hDl8yyX1G*(dN}XN&2^HEn
zuxmsoM|v8?c}{C5ESCd2Rt+K4Mm+&s;R#09em2>;ZJaschZk0Iw#p$d0QLm+#05^(
zfa4DTcy-Wm%7&TiZoUyIgrpy_cTf&Q`#)JbZwxZ+{aCn0UkXIj;t2wN%G)3&m$!Fb
z6WuaKo%jxL?d_ds+~4kxkIj8LdNA5UneE(kjp;k2W;A6J<e74+kL>KU>{tIx79b^h
z&;`u<Tw^(}6quGY%&Efqr=i&Kt~bXxr|>Q4N`tT%_yjaD&cg?yo$46VrSZ=TCBx~C
zbE&AUF%U#H{5%g@(AoK}kGY;%1Nzh(4>>ItTFy(OO;bt@N|y{1ejjzD8$4*o{f1=W
zrfVnvDq8AAkeSD5G&oe0vWuO^r}Mr-ec)OLC}gOJD?2&W)693^Y0eX~A=XvbXT>`Y
zxf)zXaiRNG%r472!Evq-J)2!zR*c|?O)%!if6jOAx!ir(KpwgyZdtQTg1R|>xgXK^
zIeeWCcSgx`5=ei@bHAH4Cu?!%8O}qZ8Dk$77gbkM10>q4#XgQxUTJ<JyO3i7XNEUg
z(knUK`H1;#q}9e4^X{>7Cv%m#ZdNcN-AwL+K~AgHT*m0A$;&U3n(H8$BBZYUygAMv
z3H**&7{*RZ#JB@u75=7kdcUqxSbX4-JeX3*1d*JEl(6vC?M;E}G%$|hQY7#ir7rr`
z=@SPEhXg)6qK0-xaV9cuWc`kNv$G^jAP^(~7Qlj~a5X>pR*GJ9Ri_IOTj}L~1HS|A
zE=bI|bL{7??<@?i8P%gr{h-JsVY3?7&)FSiNL3qOk2>*nPUOM;owQUfF?=faiAeys
zPn4lcovUv=?lJN8j~T}B3ce|MbWMqz_>ceE<-0T6$<++1laL>&s(<W~+0I-U5U?`K
zFi=c|`l3$e+VTCsa28fZP;syDJEKD!{HDv=P;;-L0S!dp2Idi0|I(#PM{_yFUl^dQ
z2AFq>h{_8**4A9lpvnYiKS#B?_uDR;+n9?3h)D?!)!aBDtl<Hi3-u4U|F<q%&o$S{
zFf6Q!aBEMh!k@h7QaHSNVnl&|H1UtpD!w^(f0yvq?IasFt?*zaP%eo%zWcO2X;fFa
zn8iA+^4Hb@{HKYHb?9mP(;RYbMRoNubcLN1T>Vqm9d|wEgx96&<KxfRhp#n1kx^4;
z3SGiO__Te;7@on}-B+})5=RE22WbAQYs|$#==lY8wc=l3ic;s=w=d-ZMEPn-wI#bQ
zfeD{A)4p?B)2sLv_Dr)+xxLxd7`5dVJ6x`U;PB^5af7<tO0q;FAr@S|$-ePQ(?qq=
zO3YXp7}SxkUa+4W&C5{Du`I6yL?Ed|{tAirb1L#u`Lpb4b4+_?T}9PCxl9#Bb<%A6
z@GKt34y*aGVsstaix_4Y4zJidKIVP`38-cHbYLA)z&1*q{g~Y&lP;Jum4}#i3fPK#
z=Bq!k&1H0fT((lv%O+{0rld|L3z7W$CVR(7Gj<s@g5ipjM~t0k2R4|CW|VU){kXLS
zv>}f7iK}@yX&Q0>Cvm_st*a8u3#Jt2R+5MwEn%9D8|;~b%#Ea;)t1P28lv1Co9(q}
z=K7F*C^5Jf<5ib+wlBt96Oeo5nCe=<VLTkI_2SL;TUVHe50fPji_n_#l-+i)xjUr}
zN0a#YDW0r;d=BuEd)Ysh=Q5`EJa2xBp<{}2EB~O@a3nu>=6XAWapQ7oWnIyDMuN*R
zvZ8;>sDD6FS!qpWEo4dlDl>DuW~?e&Z=d1)g1MotqNol}0m$?ywR)X>O;6Jsk6)f7
zSV5StdcEL1Gy4w)JdtSdqNnV;7%oOo7He&>`vlIZwj1otDW;)6aL;{mJ5J9X8|>}w
z?Lv4hNOHkhVjwY)fmHYQK*hcyqNV{!U<UcCu6@RS)g8|q?-ePSDpP%3yxXIU`R7=b
zLOUw)MY}~Wb2+7~NLFzocmyUjoN?zZU&`eNlYqUQve|x*?&!Sz>MCn1C2P5uKZ*|$
zI>ePVc&>fH^`@EEFRCU-2OV5|^iVj?vac^UP1(edz^I6i>y0_~(-Z0+S1QEfOuZ<F
zlp>sApFh^Lq|}K;XVALr50N+gx{QPQb%+h|?DIGf>FTb#?U^HJr~Gq3cB&NAP7pBh
z%`ME;V`=|Us_q4Q%|Bh_UJyR4&MNBp!fq9-20v^6e5$#9*dZ27U@Vt8{T6Mo|2WND
z?u|LZr19w`g`zamj_Jw3zSOGgF3f{8Aj1`9<zA6dAzB7F^11!%b}K+LG1ZDP#yyL1
zT{zl#_?(V{HN&Q0vN<{V_8%T`2ClN2Ru+#|EpKr;6;hKr3NZvP%Y;JeX&V~&%f~qL
zI(0sABn6x8SXH9qKy?y!cOfe$>@E2EW6dZ|<owmw(7{L$g>?2c;jb<;6;+OZHZu8t
zb&mXBog-0W{>OVuBGLb7mJAd3r+;R&gr366DVu<$C>!APe(k^O-8GMi=;z0sL-0|B
zP4C!y%LS{D1${AYOOSJH0Mrha*<$PPeckH@4g)V!X%W+BH4_qM0S-HAt=k*a{@viZ
z<o-A<q+|*zkpj`jiki1A{M7}gem$afUGD)f5sMo|SY@MCn=!s~dxg$z+j0|@pF5zq
z3=Comqn^Ugr-Xm?V2`yNP{Yvgh~t%6m_Tf6lya6)L;{D<o)2_FSCfyE=_lEfH9$U5
z3=I?V_2sQQdd@N8Pol26-Z9spMGwo90HlR^8#OgN@sh61%P)&JRlT9-ztyQd12mxU
zJ3ficO8_Ct`6jD#CV!;_CQ?(iID!&<mE^$Y3}nI1Pog4-NwCh8(%ylp0+pQs4aivM
z+X<xekrN<6Wh`}}p}A_mU8=gYXZ6?fOyH?!1Jw0&KDnrKDnW!yKje12D0zZ0YQqEi
z^lv*(;V+jW%3mtw$_GRU6P;Sz%6X%xGg&YydpwHD_!`b9^6i1)w01Bo+cWzq6~bsG
zC>Cavnjjg@>kcFrra`#cM8D*EMUvA;cW#GO482Ca@nLRVu1i}xnHiknfD2Tgq0wsg
z3a1xLD90}G5j|EqZ^OgV=o-Z2E1iD=jjs{>eB7B^(D+iUdUU08Zj+}``WlCPQK!sw
z_Bi020t-<C6>SYajs?fBZ_I7{hy?Z06V44y9)a$0V5PI+I`a&nSur{7rhD8<2lAJG
z$&x+-(*@jY<i4t^2kj0&a}_^Qpu9?gbogS0i29u$?JuA0B!MvMYUfcugCQi~B{9a!
z?A3R>Au<Ub8`zR*ViK>gUvisLAQ><nc);$ScH5<H=!_6Ca1FVeWs`B44KLhrrQ#D+
z)DY)1w-9}L;|ldu^?=ybZRkUq3$bQVRpQjP!Om+r=0SKyU{e9|3}aQSI(MLx--qkK
zAfP&y!iYj^!GHcX&Uq`zWP}Wb=|ZZG1CIF2zW6VbS~3(EKn1aE+~rb<LhX6ao_#8&
zj8sdkj;J<0DC(wwz0dgD^k{sYdQtV)kspFm^D?H`b$8d<dw(^edZ1Sy4M`e>Leu_|
z@cSP&k~Fyjc|i~k1OW^4?5^R(o6U8B4<D1hq8r~66Q2BF_%7yr!1%)Ph&QRY5ZcaJ
zu6>O!qK!AZh~~(-*sZPePZyt9XvbL5Iq25JJ1qlzRRZzSK$WE4P{oy89Wd7A?)lT0
za)A?MeXeuFA<oHbxTGx6cpT8BV*5I;eAjg>??es=m=$JA)$X@i6*{Ikf#7+5MEX9F
ztoL;EUCDIy{}HeQ7Nk<o)mbCX@X2kN`v8b?*RoU{*}_~&CLmn)M`a<2RO+5|{qx!M
zCGvo#QBqz<&`ZTm*KM|Ry^=5NTTxdeC@l4EFMa<3E{W3$s8<0Q&T3L$UFq{RwNR+5
z;aMVR)W9Fh@@uM4+9)X)qb4q}QzN?OBAiKGEvv#EZ<2H(AF?l9f@09b(&3{cp0N*J
zjrQc34HA8bmbynbJZuL|qJyL=6&D|@tUUxpra)%@Tw*6xnFdrO4x!50I#PJhpQvJ@
z5|`T17(D>3GHNgjnClqz!?X5hyit>%CO^pg1Qu*I1>*x%qTU+sS&JL(*Ds<2%$))9
zV@X#;yfg9_yk!5puGxbGfOvF+eIwRalOGVQ*MX<)Q~Z1zcJV&s?mm2Ngpf!}729m%
zHuKe42XiY+P{Z&OU=t-Mz1fbGJ`#*6GWJ<Q9O_A*o9*FUn*W3#xHi~T{4`%VQj|z+
zH>0FeQCV!BlC$Z;te2IbdP)^{_45>CB=Aao{A2U}Kye=}n)N}!$B`Ak&ffDZU6Ako
zu?#uNTlqfmcE(8E!DrsLZ(7Ey;pHnUDKN@-JYWCF>-J~)&0Y;YRd0AP({R@ZP!WY4
zl6l^~&AxU!_oIILMJon@7mefisaNfxoq0OulBk&guTZ*0O&~$>iEJ}g*@phd5NH`E
z>$xx3=U^o>Gg$|V<m1sMiS&vwbony-j1bc)jWxoO61>ESmG<^Rb1|!qZ5B<*0QLDA
zJ7T;UK$aQKz*0=AF@%wg+vHLEfh2SPkUFToaA8Qguc}>P_Yr&EwLeP=3+jq%^2pqV
z&{s^2-`_JMNR%D~0d_E3sTkJ{q=j+nhmY-?^)$2DQKr$yapkH7Q|+`nO&=L`87as-
zNQ{(-;W-b{(0I=Xl|;RFz?;MZe;x~k83bC5zP|X?W?iH*?!6oB+c34|ow3ekGT{B9
z52-Nf;2U<}Mf3Z8h!~gq%hAK69>A5a*@Kohe-<0C<3{^IhMlR*IV7ph>{o2t&5zl8
zCo_=I*gQqJf5}97X}Nv)Z;S`m5GnUpVQoU1ny9RK_H;JA80uyV7Zm1=-<Qvz<D+hI
zpFJ+wOvo_au)Ja)Cy%U6mb0;ZQ8di5F;*NC!W?4eZoR76iwc@}!UlV{`=Z&kb+wpH
z#!5w(C21&9#jSD8`NpFQRfl@|8N1Z&m4)qBE87x(+Vl2wp-fA{KE|#Q@2FTbc;_*@
zA3llE0ImjSG@eeOun8=;-+I9ekt<rvRuVhtpe#l7s-<ge`&y$|ipxxJhVn1ekZ}Uy
z!D{7;|9M+?y4R#5<_PrGK-@qc$Et(dbc@&A25}9J3CJgL{7~!aBi(W(S&GM{O^AEn
zEeR>Ro4RmN)fN^>b#?gR*?OrfyY}Q`k}2wi3Q#(l7jiAkcXv9wk8}=Y#ll^I^HcK2
zCoZ>pd_bn5gn#6{ga#jKCvmi}3O?UP6WjuY0b!wz5~+;j_~E~%gQT5i6uSx3q*pTM
zLRFfx)P8ag!F=ZSn8K2zE*s+PlQ<Tb-pUAozofy*tHH`BeDTD&Mme|jHtmhNQ9fd@
zbI%Yi3ueAl$kU*zj#Ysi=Z5P#3sjC7q%PW6rA8jm4?Kl;7jhnw`H_VaEY4=MUGWaM
zSfh65I~gIq`cu0mx7Ke__qsSRLCB5d7C!DY$N4_gH<pc&EjUy)xwYOm+Y!gDFw<03
zGd@T@=&~YJ^!0jkJ`)EY9Sp^SrovGaqek7MzZb%lIQ7zaqSc@#<ZAKbdevq_7;`1r
z1%UYAsO9Z97wQPVArmp^?6GAvWrBT_x)o~CaIH#t5VT_~Bc2bSo81?^SND~l#huI0
z3o`;g0Ho<%edla0WBfI6-~i)Od6(<=o`-crl8uT1T_U#Sed1>6uAg$b$?ZJdyS>SE
zmcnVt`lgNM{S8=FK%$bC2Sok`eM<qq3*xPi+*>#RSyMNDsSl)@r$Yt=+KY9C5{d$>
z*8gD*fAF~9jq`q&an25a%l@%`j1Sl944y8RF~H<Eg%s$N8vXkib2S4E3x$e8rksqq
zg}Otzxtvuf)(=-1fH4I+w89Jw3B?0`EDZ=$)Z%ZT?74yRT%mqJH)Jx}9<@e3YQ8bU
zpyuScsLpEIP3GsA(E$N&79|x3)M3412_IsrQH_x;EmMIgid8-TtLImnCWvFogsMZ-
z+Gw?PgTC$~b3GYVyN0QNhBr<vdslz?+;Kya&}c|ldWEoT(g89yIK!&-eSAJEz%`VM
zVK<O8=}1aU#wq_>dc_vgnu(0AILKv;P4(A1`h}0o<tFln1H+X+3~S?=Md;MeEaz_)
zYNkoi5FjrF8UE2>37y1j%>pgMS0^Und^@s8pS9=s6_VgRhZO>>Kz!v?jEz=zwYN8q
zG+*6xiGXUWUm|gwZsQ4el5{R3D@beWcim+vodf{@X2nXasIHaS%n=B4;TY_HHWglu
z?Y@CW&z2YL&CV<aj$|f>wD2hP>3zEO*BzxT14&C4-W~z>)Dm5`mnVZT<cQCw5~N^V
zIV;A!um2P-A9f*=%&VByQ&wro%Q20(;_-e*s?%T6{~f@6$SE{j!du1I^Po4G_k#EJ
zbN?})+Rwj_^}||=Q}^}MQM?Bm5T-_VZ8Ny>>gEgd_B-60@zI&DW3BcUaHouecnIRv
z;4nRV1~<j=wuW~|JS9=;*0=QsFhDVt^$X*mRIrk@4%Ae{w<M~o)H!-%b*EHJq*VXt
zKyAZ4z=(+r@zv^&cJ^EE@p$}t{=yQVf_PAnGOD;lw{n@n(ii~71K0>V8@>U~=OyRr
z!?Vr64!~zrN{oV$Wf{#}sxM_-FyM`^M|szI+4N!(K@fTbQPi$X{lzG=w(4CXWEG$!
zo%Wz!DvVI#+R7`0+X;UZqOg^|dNNl9!XiYe!U)9)#r>{B$LvmV!-%*dB+6V|@s*zO
z+HtECjoXuBLgoPY0-=Jr&RV*(y}qD>**9{w1IMov8$SUa0kv?iew8gHJ4Yr^h|P+v
zWI(L!N3hZe52X0e8G6KUMjJRhnP9RG@mn#*ma@-DG@bj7mRto<V%l7#zqzhcDy9m&
zS0!epf$jm7jqoQsl)*f3vwm$CZ-X!T-&P0I=b?JQbTe50dQ)7(5<=Z(!RNx&C2n1{
zdb(Z^<&OVBkR-;5gbq&L<WharSH}$;3)veuIWfhPC?}zi#3iVO&*+mDnVC;6CLU8K
zYZ1y^$(Cbn$nkg2!&(XZm!Yf6sura{ZgMv_W-GIRdCHAzgY|1u%#E3KuzMm8Snx0?
zwbk?9G?$0%D-P5~lz5F2%-M5>ZnFc9RFONBcwmZ1uRs*WtG~~*muA4mkf64Xr;yD=
zff3Om`ByvkVelMiLPgZMVmpBIwD^#9lf!@N2`gnh##eF4Ug{x1jS-b-F)XlBCLK0F
z^N+;aGP-7TMKyT$*hmZO`QruQp}{5&J+N#-jg<!0z{>QanSi!HD>1}Ckt#63nYGN^
z<snj|Bfzn#OG=$LmJ^f4C~u&XjU>Jut>TwD6IX*5l>;faRsum$;2ogl>*t*Mn+b3a
zr)(w|Wr75Tw2?aYH#&XuOj8<;Fu`97<d!wJ<$mXjbkiURja*Vtq=C_x^N_Pqg7x@B
z!BvwD$<-*e;40^{GOh|c1Y8EpHOOUQj?2z)+Wgc6!x|lt1RQoyvD0A<U%~R=D{891
zT0}*gAL##pGs=z9d*97ZaNnj1r{_w3B2kS*^aub^MoNBTVudpw6_3M)@pNC59ro>G
z&XytOe(yPv5mH!tV7asHaqd0_k!6%vu&<AIP6;tjITq^|?!<Omodx~5PTE2(#)`nH
zL3kiDK0L>H@BOY9a2OEQ=Rh$u<%X*7kB#;h?|0sW_{iWe$O}j%U`cXhE?R7JE_<@8
z6u^UthYas(80rb%tKhZaL20n52-`Mz0zfa~Bm(&tt2W;gekKsr=AL(c_s1hvs`0#M
z<|Kgky5#Ke;q5y88)bpu6p!U(r-5Uy1uZ8IcjA*w>{-F#EzTikh*!mrp-Z85*73o?
z&Zg1ixU<pW-!W7dE)ecFCmgbYrVVDd%+=vPE;h^x7(DW9kzlLC!k0uEG6mG<G9fvD
zK?Z8ooz5L+n9GPqWQ6#45@bea?stxKKdymLN8|w~s1rm6;yEeCJ|lGr6r<EppOEjw
zy?lHN3G72lopD=_Z{fB6r4K_;-v`G!*=@PZIb4g-*r>4Io%zD$(daq~ELQyS*9{!b
zC6tqzs{_hL3;GqqQR?IAQ^IpE<~at0LoA8iO2k@Vf&{s7Id?qhwCk$tl1Hj6Sl3G-
zfs}<6tG=FNO}x6*%Qv;I%T7c0Evuerk$i~jp3)68M|ZV9ULPE2*Sc;{e>JG6*k6Fn
z11lFf17HIY5wmw&uiPE{$PYnv1Jem=l)@1zBurA2cg<6J{QBVCr?u|KVn8<#8pFH@
z0(AU1wA;+e!UFr~d7WRRS*cf6bn2RQfk*5L0}@zkh!+@&trM*+3xZBw6zl<TYW)-B
z)NI6PDzTt`{@fyPXQJbvpE2nP3OMihlS6-=+p@0jK)B=bB<>>_NusigOJvCmojo{Y
zN9&fNH8kh}!T@>FBl@Q=J2vxfN8&2U8t<GF+j%S-uP=v?Qt|g%56!a2GWTqkq1K--
zJ7e)4gHYLS4eag+gY&Sx75RvAl=IjGi;s>N5`IOINdZbP3J`x_`3tr1izkPZfhL(j
zBS0DBXG(x6IZ_?|-Z?ziTo#Vr0HvC7k((}&YTc>fVU@H=%J@W=S2{6HI^8uRoY3_N
z&XMSbbA&AQ8pca7zKpW)D6bjPttbn4CMn;N<U|@|OpJy1JaR$!U&>G=r(@zmxKDUk
z95NPnrc4h%>!`sWW`Osj4`!1^`0cHl@S8ey-OLp9DFZAc20I5;q}qOYw^t5y+02Q`
z(VIuc76%+20D0#Q&xFUE&d&(%^Z3HN%CRKTa~Q<PtDRHR?O?7!j;4*Rt^kE8e6Eoe
zgT8!9I9LTq0ox*FVBsW8NMtx;RozqJ)*{9R<z7&U_zV(a3|;i%2f`oOYX&W+VlT;I
zLJAGNfW-=EGdX--FBhO{XsOJXMkPgCm=w!rhF8a$wpZcyHgH<@USh1!Y_Gg6{Hzqy
zmbnK(%XQMwkRUDY3ZEKjuH#Z5J*x7M`%5OLEAq1A$23M@vh`!itPZRxLfZ4Kab{M}
zxheco%RDZlzJi#17QqS`zClyNN2I&I)g*&W67T9W*vPM=G@rafqRd^!gz&q2b$yNj
z?-$5pd8(H-cfF!g%LPiBaNw$5&v*UrZTdN$K7>p$-1_f?cU^d?y^B{H$vz_7R6s>>
z%JdS!$lGF1-f8V(+xN%k!aiiYMM3`0JbUywYZreFt%czdARxqHayks(ZC|;ot2AW7
zn2%zP<V{S1;6fFAX0JTZRiZ4gcvOrpD=jO)uEL2V+QOsfIzRRB?ZT4E#^?l3AxqT|
z1CB@Gl{>x*ads~;cl0kPA?c?O)((oPqsZ~zZ=B@3GtajRsY3ppG>J|lko|%`>^HX)
z+DYPD$Ab?O4zVcpOr-Pj1a3z+G2|b}QXUc%??eve7mUA*<gM{lV3wp>EF^b3?AwcZ
z4C!~mkKtxlV$w()X_pNh{s}=0Qh~+=F`Tej;urPJc=!jAY{_eruZ1(~^*inVoNMjk
za^Kn#zl65nA;7d9ZGZ9wuW{^d^LCftY5(Eg-S7}R65c}?lmY&{8ac!<gN42D<h^#*
zk9?>E=gj3O9*#Ah?Ci*4PBAH~OGxBFccEnRCC)>y@g|b>3C11IlQ1q*c)F!?)AM{b
zn0aOs3Pnz9^g$--;%sN|rL-`WP<&OhZy0m#J1^XM{4QRe5Cp(-NtI?Mob#ReK7Nz)
zjYTBhM$y<A=T9$ne%av@3eCaT7S(uOVYD@AWEc7M<~Amn4<2zeD-y>LIamye%hoD=
zQp*U{&?Qb19U&CDR&O}HKK?K9vN{(5AWokjuG9Ain<nfSU@>$`kl%@ceoTKBWLm`h
zfCnrfW+whAX^vBUuhVN=&`iFiF`->5PS$<mRr<m+Our$8#vB3MC{&%map)MOcKh|7
zR>%Ef48C{o7oh_XSFV-jN8N`|0e&BzPK1!r-8@P!mZvkRFo0s0iaRMn>SaAYLnjGA
zC|~c#-N$KYzF#_hd5!KN?<!DlY$Q}685sI3|Bv3?-82jcd@Dy8*Trkm`$ZjaU@0XU
z_H`L_?EIg3nLNW+in7UoqZt3XPWQT?$#dmhI4F-jH+ek7E#gdLk3|5HQu#0F^d9Cl
zlS^=O7&Hd?s4_B{ew`iCv<X$wz_{D_^%HJWx+EyDBjC(*C*s~~_0=s+FK<1d0T~?c
zvGpLznV;ha3y#POxa%a<cC>!_jE)cTvHdFw;dtP16ipgJt7!Gku<*y%bgso<Q!0O<
z^IV(mo7jC>K-pR3BId~C?-zdBo4$1BAsu5~K=YDjv*Xcle=o9RqUjj-fnGb+C#Us*
zvDKVNutf^I(jrSJG!VY=LvvpCksNDDZQ#5#C*QIs!?QxW*76HOE2|=kMBA(9ds8VL
zoYw8mt3~E~1YD2?XyV&D=eIkrNpU7rV=1KK@9d0vqjR$qBneTti98!w3#srb5|JXN
z!T+ee-qR*9ypg>JAu~h^j0u~R&y7_xlWkq$s~eWAk}C^FS95j|2La4Fr&u3(IP~Lf
zP14&$FW>gQJ^#-xf*BqH^C~DcrFx_}_YK#Zu>3N~sw0WaCE<!m;Aog}tCRAG-i*lT
zP3+aEJaGxp7Q4(z41fNwF3s7EhzuR0QEJTK#3DLz1B&>uhQ<s^4D^KSovgtZwCC4T
zSR+Engl$OmXmwALbKa3o-WZbe2VEc;T&s8c>N1m&of8;}8V*c|t5FT$p8Q9rJsLLp
z`4)*xIxHuku?cyItLKYaCu~X=?@9H!W>nEtMbGK5JwDOjd-EKtPc=toHHS1XahBHB
z-d5jbt-^vqOpR0{s!QZLb%)igYU|Ixg06hMb(8B51XNkRBj$Q)GH$UV;ez2~lHj~2
zxS69j{?>BK`EA^nH)$^{+gM^gTleeB7KSZ(u0`Fz5%OKuh%)k<#7CB>9$TgJE)4tp
zkrvX8@V-#-h$;?;03s{=Cmpji?DuC|h=$+CUo!zSmQa`gExX0(vv#x`HY8X&4)9NK
zxdGtE0Cf7*AA0&?87XNag%@0kuzyRr!0ey&#zp3dG-Xf)s&ouyJVlqp_o5y>qT_SJ
z*7qaZas)u7vQk*@VIfFVPp{SEBEvp<%zQ$!kr60tXbx0`U9J0G>^AjdZCAl|fIAFU
zVwJs7f7m5#$8tJRoe6h0=pULSg89QkdWjRZhv#MXB@?$y5?dv8eer+wxvzyRTi-&`
zF{u_JL<9tiNy8Ct)UtD}p8o`I9A}a>GpH3MG@jDNQLk<5_diS<LzT)|hjbTO?WAZp
zn$@U#tu{45x1<KkK&B90t|+dt`Y_T&78&YjwRweQjR`uCY;F+$9-c0ONmUXsNAi5N
z*lM#bXkmtFb`?Du(3tnkvrc){YiQOFALyi|){Psy=2U_0LRV4jnu0t4S$_30tNqjF
z4w)<7o3G`K=sWdCee?a^<jawT^N!U<#41j0zTfInAg_BDI}C(=xhR_b-{|t?x~NfH
z!Ql!=m$);NAj6GPMN_*RzSFdf5c)5<nAGTEliS%C?(Lpc>6Hti;VrLRh_oeBNCL7n
zMu=Sl^2Pe+p`dFQnGwQHk+U^d0=M9<lT^ucD}8>@vU^Rdn97LjGD6qDw-VLf*;eix
zuQ8o1P~+|aP_78h?w9I8+ss1eH|vWmu?1L^4<_n8pSS#PcB7xH3JAnj!aSEnYrVbY
zZuUp=5N2Gmdflf&2hDt+bc(+7tTv&&TFIB7LJ+SgEVT%vPN2V#p8R~F9{sWDpE-zn
zZKYMUZg*h49J7-~>t2i6<Yflc(aQLjR#{*NQ3~P-l1HhYSL?ki+Smhv#Kb1F&GeL6
zDFLL9sK_`&UaIk}xiqwAyOweT{_q{XuTKu;4|$uuhyZkH7B2E(^&%_%=Ae=^zHyLB
z3xG8gTsUK@&Yz)YR<?e9eCwty2-c3%bjR_gB?~zP`vqIo5F&M7qDMXx`obf|vLEgT
ztWm&;OkqH^;Yt1TwIKsuZ6P*)YB6FB+Z!>2mz?uv%8mMPQpmhEMl7H(;v!+FaH>m1
zBg{Zj5m)II@tzP6rV>f|L**kQ9&|;tnz2TYH=>~X;8cbiLi&9;aQnn0s}~FGOD_!*
zK_wAC@(mG13Aha2{6)WVw<p7-UY;kXBrE)pZ}gI@jGXE}0!?iqVnX(fRN@6CkgA8@
z9r93GOBooUI0m&S0vD5+4f}PR{_&#L`4i2s!Kp1usi4mYbR_6!y0;#_t$sj@EkQiG
zji}*?`kN%LQ9dBR2#D26U!v+2(K<5SG&AJM2yoUL_+DyWqU4pX(0hIjwbvSP+y^6>
zj<U=7PS{$$)${KPn}vuU-j}nxc!IyW2&$GiJU!9s!It)yZ9-lv3Tl>2jvoBeE?sbz
zNnB?I<*=jt)Wb0(FL+|WEp)anTp04;Ic9;S76<$l6A0E-G%Ugde0P`p$Jgq^kU^K2
zX_X<iQv9Q9@ac-1jc1HprBCS{c9Sdg8A7?km6?Lpi&KBC(r-k2heD%sO)SIfR_oFT
zbFT4vX{02Tnv<N(LoI*~ulur24GrzpQVv*>`b$A`O750;mwuULb<S_q2iICtuN%9n
z?`&)DDC2dbDW^JD>}85Da2O8Awa%UDo#e+_@F4E<TNmGUd<z?VaKL)+=Hpw?UFVlt
zk+*s+h%pJyp)ugk7&O+p<wn!OJ{2M7$wmbE`4Rg0&!m)6-M~!Tj3myYzu?0`!;4ev
z##py~(dyzbqiUp50LxT`gzA~SQ*o1Zc4ez_zL>Sszq+c{T{=m^;{EcYI`~_&bZE;0
z=IqBKQeJ>z5|u=}P<?%u-m1bDJk>(_CYOwsaioqLOXuK1efD3W^)2asrVao}S#|we
zQ8St2e(`g9t_ri?WggPWUoKPXiV2<gC-o#H3V;!dV9X)V5lssKtJ=O^*T#e`k|TWt
z3JFz!ah;10NPvHJ^HaLEzqei*uLpcsSFF)f8`gsXpf@bVD26;R#`o(bp-+XH<=TKx
z2QaxL-}iG*)6ks%0T)u*XI7VP!vAn0PbMrxo7!2=o?<+inQ5Gf#Z`sak{Fp$a^fGE
zsQbPay68Qlo%F}KTTB25ge{>wJls8>(7klnJ$&e}95ozbtujHXfIwtl<R#lv2ZVL}
z+YAC)Qdv>4u>L?sOl{GX`n8M9o-ivU7wD|W0%2cAYdveEo_fG2iH-Fu0_JVk>c1M4
zC>Z4AxFT2@kNtG!Vx7}A3~N}lsC0qNne~Alh1Plh5?$BB)uYk~S)k8IN1QY0ShwAz
zyS`&S5Sh+0#-&*4o?%FJw5cm6>HE`-RA=qfD{d0}j8awW^>=BZv9Fk)>_gdP`AvBr
z$(Or*iryaLzE3JK3V4(RG$7@8SAA=}R1?}^wvi|Gj%7lM6nP+DPeewv>ato#M!Cb2
zgU^VPpY>v$3Iqx2{Vn?HE5bfN86G$cFA3){Uj&Z;&;X_+^cH<fWY9mO*<iyY*IGPZ
zAhFcu8eJA^uJaw~@Pk(KYwWrtb=sr)&tLv^_fW*)ZvEI%vqyw@L=fc$oE}Rhkyv&3
zZ9PYYw%lrTZz-^ZU4!FS6h=w3YjwXBH`XYOEKI5#h%kz#ib9N1`>Z$b4xKcsWgV-I
zAP!0&u1}E#q_**u!R0z*O=$W%d}WiK@hbL5>*!r>&%P4PDg`Udsb*s4U4GMVzHBt(
zrX(q%3fwqbx7}t)QV_NcyN5$`R=)4cL~mOe69|@7cofXpPJR+v=Bz5;O}#u#q@gb+
z;JJmqh+d{|4$G&y0#Z1DY`Bq#AIotW`HOW+|B(B`TGeI9kykE7hNMu5xTEj~uC%5s
z3fX;9OVe7#xSA%kBlXP^>zsKZRm$vjbL<$s*;9|iayac)-%po^zITnerFn>gWq(b3
zYi296vH9RE_cRvG+LI{^G=%t}R$d!(6CW@TUB_MgEJHEJk6NjT=Iv47lu8(>=ReR!
z6tL#^a+aNZ#JVZTy|*tRDRAD_06!UplsL!6+;dnje$GrxvonE>bjZ=pUUMe!*#4zu
z6TMfE6yH~Vv67w$=`p3HM2X-p!&sq^B`3+e->nZm34Zd5RwC9KrUV?t$9~_3@&98w
z@kO?*_NB))pH3`46*|VZ+7+aYAIfs<eywkEwD-`4Un8)*HsFhh^%_#Bp=Avb>4OF<
zyYc!-zR*j|6rsAwEXvZT&PRSmA?j4hetq~>qt@Wo7(%mb5A66T^-sRuzCyejqH03T
zAc1+~7m8AYx9N+zgcL;*78}7_%vhz@UKA#i(nR;=$Q&_E-&JHZTvv`ZNMH`WZjbAQ
zt^{U#LCfy`G_kcPb?Qe}*@K~b2BR5bGdJDR=tJ{XSQ`UoOS2~Wi^r<cwbTI3p*h}F
ztrwr(ro1pndduP85N;!4({j9Z=iNbPxCV|i%J$8rdXLy65}M!9Q(v~V<zdtVl$Y#W
zSd1#oE=23WzD!tXP0ur056{N8QG}$ap{Mvzhh3&~8w{Z19?gb|>8Yo@apFhgHVK<&
z-PrKxEHuGN_9C-^4aJ%LV!UqW+EAGT>kXMKAw#F2BKz>pA$Hp<+MIE<v195fZmBhZ
z6Ki6v@5-Yg`Oh>xu<?vNFvj<!yGHpE>dcArP0Y0zRd%`l<~?Jsaga53btEPNq2IM!
zw{L3>T-ImP)rQ9S*^R!vy*z=?ut=G+g=2l+HApzq;K=}Ehz%?BS(kciI9-++;wvVJ
zC3M4$zIXmHAAq_hBsUUo<A4JzHrjgOwAS^yT26tV%GyRd75(S>8tbtQty)et+9``G
zUm`rzJVN4qw8IJs^O|x3CFSDgk_3dIbF3S3J&jh>B4Q=xft&_v@*~y-SGW2Y<qwBP
znyB%Wio=u*duEMw`Rd@(Ta2@#QA@14`v&X&HNkn)nzdjp{$67pUhnl0R2h*ys^U?d
zbh4Gc&U6v`&R<iF-A+9v#$oWC`g&i;w69LICrI3=USWM-6m*B{7a<&Nn8L;8$LLq5
zEV8OLdEO1zUt$ruw6dwMg5yT+BHDQG!`4r0yt{H3%MwgKnh-I)@3wx}>^1$%1ESO~
z%d9ImdUr`cnmvUZlnj6+);G_Z22Z9nn*2!hdA{$ghRJV!im--nKFfOhXov*5>3&>0
z>>XXLgUUN)*mz^aI;Hd{!_xb6-?XsM8Rwd=#tmpRhZr)!q49p-ch2u2S#DzvK^=iq
zNk5`IpZTu%$21McaIG<`hm3M+i@%}Id9c+fFSV|tp{YM2ksFd!;z@Qzuhwz{FMEQc
zoKtaYg>OlMk^P*=a4i{Ojh7Kpil?mC=X$5H1U<Zy8t?G%<<{_qwq${%lUpc2tVH$E
zQY&P(>DE764KFAZhUsE#2)F@61q!-LKe<0Rd2^5$A2`J@<Vdx5kGLo_p;$HMe*MGA
z#ys&Rh}{>(Zokd%%W}__=9)Rv+H$;}?`r1kiDWURWfkLodU~qWeS^2W2LvV**8do-
zh=N-tTeU0A8b`k17?&hV&j%sk=Knmdd)h|A@Yp_Od?`|pWE-Gh9scoswJW$snfVge
zJBtUCr2aegc`qA>318UU{6dTPdbU3QA5Xyq-z3Xkp32wrku{6;hJTED$q_ju05lRA
zgNK%Pedag4Wr=YK%jpRKq<|w5p+GCJlZSrMzb<ZQ#dI&s#gT#nP05AdbzVu>{sAq;
zE+Lp(Visj&9E5c0@xS$bSz##}#j~#>IS=>{+@-PV;$QWWjYdP^#~Qg9L0lZr7r8D*
zTCxf`lRPgAXSKTWSAC>U*b6@6NJ$}W$`G$JEWK~lm)#@BZ&PnhY^Iu0V859d*7S1B
z5cOAqJ-R1Op5uIF{7Rpzbk}v_E9*XJphV`x)=-&o{ZwzC{qu-WQT7KGPGnHA0$AkJ
zX6fonjkeGEqSVbRtSgIyjE=w<Qz=|D=A<~HSL)tez3RWNv4u5Jjx$P9rKRl5^HcP?
z81oE1+qI4HK`_c_FUYk7mA*s&`i#+DP_{+Po3+9zhO4LdBpv=i$n!7~B1)UXV_0UN
z&(zBdJf?2=Frye*1EfqX*dGphW@G3={r&l&S5%|+^}#&A8&nUj;f#z@I#<u#7jo)S
z(^_w|nWS4h<S|M3xvS^vN5eyZ8}HuWqN2$4LK=4r=r&72Hhs}T9!#KKO8=2h0I#h&
zRHMUH=nq|kqzNYzZUVw;6*S{3idQ$?p`Y4iK8bCb1DqT!o(!uvwc!O{(&r(M;2{z}
zn>aY@4ai8zLOt47FB=<j&6#d%V=o+gH91WWz0-K%=vr@Gq6lHF^c$^zSr~H0mo4O>
z*sLYuq7#@hXT^(G>q@t+srLta{epX}N*8n0Se6jlz9-*zsjJztubWB*)Y~Cbtcu5s
zR6x@7seypH{u_WgasD1I&~rA0w!|14nnT0`TNTHpL2405LHTO+j$VFEt0{<G+6Pg<
zQy8vsEwoswrxvyP<z;i-9O$y|X=CAyc~~E~*0dpqb81-8AR`ztVqtTw^Id`3M5C3M
z(+vI2%m$6N8p`BipqQ{PfRz19Zz>7B?^EnW8Oeqw!l3V*VxLuNn%E3OgtQy3YuAt>
ztijj6w#<5=A*_M!L1GqXFL?1NwRXLglpB;uNQCihe)_SFw{@^e+|v&pPjo*oG6j(*
z6Semvopx%->F{O_M;Q(<tb&Qc#{raOgPpdm<>@yQnQG>BVe)rP&@;Chr-U>LBHQIA
zB<$MzX8q~=rimA7ssVD8tiQoG&(#3MTj4JTPgheq0gh^McR@uuSFb;6Br%=EI<tlw
zZw|%^j(|U>`$}AUl5a@{FF;(J??A&{{gICOyN!GYa%MmiN`)Bp_V3o4yA7p6-!#>i
zLb+x2Fh4S>_{~)v><-tpdU1}?-Q?s%^suIQ>Qn8l{5ygtK5a||*NM^KFi)bobb@+!
zm6bRqXn%b`3d$s5AV~r^K$XZRt!;%~Q#J^H&kX|5o0XFEly&LwpfB8cJ7zgsxMDy)
zqiCR@Q@wh&@7c>dg_#2eqo2SE>yRK|yn21R@4?eN^(6<UZA@BEX``?=c0tdVeW!eC
ze8Y^VD6Il*Ky&4wg7`Q#9@lE=tG=t;TT*jev)C05;8=0d|FuJ(b7fdwH{%R4bo`jM
zES#BP_O@R`zi(kQCqd4*wlpgeJk%L=zCnkLdW1D11l+`Ih{#YvjF?IPSo?$gHdC%5
z<}y$gJ1oeYr{qka#FVE%dt?k1+T6$n*ylJFq$=%Y>mskohzHrJv~gmNzR;dm(dL4U
zt>lsJ0MrL{X-8In)y2Mel4-{|-$xL^u54fjpjEw>VNV^_CL8OB-sv?|nvut{R%cvf
zpOo8XZH{S3lVFN8;34xx*me1)fl)ny5+@6}$`{oT8A>Uu5iPDktBu8l7MS8&-ryTK
z(KDjdy_LR<hG#TbOSqwv0zN0nm_wpjVWEnNn?>A!bt}a|zj)4PKOEenhp{YV#*J1h
z4Ct}yt&P4HmUwL-p(rS7n9;9&&ev;>cYR3NXpTx@Ho-R%sUBYIyWkG54Wh&HYAosk
z0|?;`tZH@D8sE3`%^i#gF1QL4t7erlzT@Bb{d3f;1~H1ktQp}2o&sK-+pTNnc_G8B
zGAavV5=daJ>?W(_eFA$GBfWm-32!=6zzukX0=HQYEipYg3LB9PV~?mQv-PC+j2{gJ
ziWO#bt5~YyM5=K=>p?Gt)Df7LZmw<(G!-|_o^|@vR-v`{3GsBK*6VS=%o)yZ=WD$(
z^wgWo9!M<%LX2k;RWw0W{jI|i!n#|iR`@|d5*pPoUV<Y_x9DkUt`n3qS9WeGc#cZQ
z<H0_oIX<CVryD0ba?nK1p)}=*nIGw(&7tDUms7%DW5_shy22T=Wwjm}XPmBd@$}Fr
z3U4K<vzO}bUl_5;a2@AcAaJ)WQEzz7_!jDK$nuZoWP<AiVP2P_?|a*XW^uKUUjkqZ
z$OdRC!7e=do%QU+#yL-;Xl4_{u%Hd!Vqmv5F4AiggtM3yQa9A}mV&QWePg}Ta7WWe
z1CQNjb-K`Wmk6Ka#k!#uRAlNj+^YNEVNOyShx@DG<}-RLYTd~*^cR!8CSt;*j0*Xd
z#OOYnp|?!;ng$Rj;4o*oBr094+dR^G(4_jPAQB)4U=Jy{bc<7eOwso)G~KX}GEwmZ
z<eB3SP@i|xN6!oXd}J$e?qyWh$O987&KIrLx6^O`-ulBQgX-vFWE@dr`as{<P512*
z{QT*yr6s#Y@_yhhqz%3QzEu7Bf!6Xo+S1B!oY%XiK<-AVJ-u|hIP+`lqCq4wp$A}b
zl3A}>edznSg(vEbxS(DP=~xJH$qTG_*jE)F`tY?azY`!qm6an<bux_(r*vI>M_ajQ
z)L$XkQR?pty52G0T&&;30(pkOuD-!|)#T_+FNV`sA}s<9zyr0|%DXeDOk&t#?2xNp
z;+O4+2v$!nw7#9|wHcQj0C9NM#LX_dtKxpEyfSEiis=g=L<EF9Sjuy%%Odp!KNyb^
zpPgA)VytXDb)zAk?h+d18sHFfN#R+>pYw+mefoF4;oo@HdAgk1rW>xSbHDWEsn7<y
zy<QDwmmGZ7m$=)g!H7*WhOTl!!Dl{UezmoHN$}RGC&B{o^$%RFPg-rT0BPyWoE!#G
zNl8fht>g5i2SN`JyEAXkXNz%6P>*2P-UgpmBd=SM>R02t-gR1u&;6KJot4=70qc+X
z#;Z;f?jkwlVi>|Gb?0l=^jktceZ!o%sJIAd417`vqEtzHEAyt1_fIpP=HY<}5I5uP
zBBduLnj>D#YGn<c;58csz=b;WD`WXk%OhUxJJl+!^6ns#O8}stOlnHX4cww8hg)w>
z_u|kgI1k`%GzSEYH23ag^_%4N?^9N3BrZKUM7MObl4g2M$>nH#knWNwAulIs5SN`~
zt-ir)7bC8`3>b!KOjPSnvmUs`YlKb>xk4|*<n`^W>CbrYLz!#9pYkSA>Jp#z_(ZRV
zcV;5Sn>x<T<Ts6>;QH%1-Z!TqhQdJw^HU>rN=VDDy}|cqgS*saQflU`MA1LF*teu<
z5VYao7yt9<u|D51cNWDC<WOUzh)dVr?fb)Z#<P@86jGra_8q>s2DRZhy@J($%M{;#
z8#Klfd?yRDU!`wmLvTTW3^fw~Vet-9@n&6_Z)Z>AeZq8ucR*6~#04r=)P3`<h!Mui
zDP~;&gsH*WA%Fh9*Lq->*J1!$I88ZP*37ns7kN%olLKRM>Oy#rw^fK{mL0aXk2Ky^
zbgw~R8{keB^-D+|zr5JK?^2^E@@odJLMn1VvhCs|r>@0q)~%)H(FA2u$qX&3w+P9L
zL_S~LT5q>PK5N@bLP5=&Bh`Z~^q>0QnqyRtApPmNrn!lpz!&AL)(^UR0tYnbVZEjh
zMKBf&Kx=#X1ED(;j6P7W_+q6?5g_8+JwDJqM;KjN9*SiT3Ll;VjC%=WcNnLyy2rEo
zUH@`!0p|^9Tl@kEs%xPRYVZqW0mFk(fn9`o%cJ#Ny?duI{dp@_ouKYPq&oL6J?;`$
zL1~OTV&AQsp%+(sCuJi<5=zZXedY;T*ye$0y1U!b+{(hU`TQZz%5qf<LGH1KfN3Hn
zIo#B8>!HymEF(rUgj1zJ*ia)_SA);h7oXJn*|yElQApkG)AfG$7ZKSqi>yaEf^i%Z
zM|<6>3klw^+Nin1IULZwL|(#3ggigE)!KQX*P4kVpZW^Y5uIkl7V9pb*Tj0nrHB8Y
zZfL8;2d%90y|zpWn!{sDo=1|f_7(27b~s*JHZBH=m`L3vAs@c*BkTJfUfXaar(ihb
zO^EA$X)SW!1hX|AzAEE}V*PU_oxfY3(LUr$3|HE+@x4mb3}Va_(&HP3@7C3)nN~jk
zSnz;zVq1-M#nZ-ziedtk9U^nlOeFF4n;)&e?=)Fy(uA;u=m+^Ijfv`+cdb>^yv7`=
za<e*VA+`MBPpodYdo3CGa&Rw86TY&)f3hyQ*K3l2HXo1>n}}Ujx8LgUnAgVstTg^A
z`k{0s|7NwH<Fzqf6G}Ny=*DVz=2L6x<6cub3<qvZnnt#E|4*%HYrV#-YRNi>J&w18
zuVcIQ<^r!NlZ0p2;R<?)hw68%P&eYrms0{7?L|J1Jl{n1*T>eRjb6ue3grm$fM=p=
zuC22^pW-!<>mqR?T9DO4_gT{)^jbuN8dF&5w&JT+PyS?`)-aX>%Ruc&H-2mH2iCy*
zy>299S5OKBt1<z_B|#N_X%+7<VPRfU_-mMS0uuDZ-tY5)_1A3E6Pf49QS7Uk3#_-Q
zjj%&brW9ABoPh*^)P;2dxZY<McWU$X6|L(AhzB1Gq?tP+_&9l6Td8Z?EWgQYl57Al
zELfw8UeeWSw>h}i9i~Cb<*}ZniJ<Ve?W~S32Y+1;&@D7(jo6l=_uB2OcUJ}XUuU{C
zcE3Z#{-<yDPsaVuYL%*s;G_6zFu!r?nzq*8pLuPri7qWTF%E}V*X;LNV3ipy<{?dl
zyJm)1SJt^r1C5VWYQ{?5JFbGQr|K@fO*9|71eN7jMHx==D|c95S;n&9O&Yx<^828&
zdh83{SsqlEohodvx$Jx*GiWM5ziAEmDI{^Famkv~*E0iIT<G;*P0+FPjethL<y1?$
z0<sN%XSDkGX=`VZ@%5k_q8dvWQY2ASQX&r44`=B3pN)oyvmdvuw6MBZDAgJEFPR2{
zgh@95!2n@9UPgRjEU%2&ddQ!~sN<n>Ah6A4yGA96M*Ywfef5v#p%NzX7l`c)<_UFg
z&I-K}ygYb69(r7~BUVM+rN3%`lr?YXOdfTY{=toRNPu^O<X#xO2-^>b&<itkt0SRj
zuLDn$Lv#W>BK0O%^dOPa{-Zxh^-SI-M<Y+IY-P_}YK}%uDBy=?c&Ln?sCu=tJ1+2A
znsfs;)hpOOwV|8w@u$E7iV7ilRP4}KPqvrd9(vBFEhOwPh+Q_pulh%4!DD1E+#lLB
z8jBWq-}TlD4Utth7LtI6JV8~jw3b~TyyqUYf6zWuFs`!1!A^QmWISu*^Zt6~TL$cd
zW(EauWnoE)D95paf{)zlyXaKUHfsu!B;D$DpZ#~p$N1il>lve--|Cyt#_QRq5NYN&
z&|-FcF`0C6UdS648Cqh!Z%}>}m-n*mzR4$heLYQA7$4(veJO5G4jGaH#b^NrZM`!*
zp4#y0&<EBJe+Qi)`i%tr#JaMR7yUl2FDw1G_pFV7n!bF_pyIqru>o-;;-r55KfZZ8
zjjvI*e=gr*&Qu0>#m8247jrf;_t_MFbuklI-URJNZPZI+T`VHNxIC&>3q%c{l!|*q
zcel(!CPafd%mYc0LexjA)}!>7eM9a!%S3NdJQojuV``2BbWM857EsRg%JL(FOdlBE
zhwHO@n?87WvWW5JQv4Mq7T_ZW0^(+BH@#?;@$<03o8d}O(2`bKPrEU6eC5MAQ^Cnd
z2%JD*lzP9&e*dkOGp7cN`^X^ptW^9xgrW#>Gj7)f^nuj|F2mpq$NwtEg}ILc$DB3l
z%g3yLD$D{zo}oBZV4Pw3b0#?NS+_;FUY367K!sz*h*QW5iOQ+*)>B$XguMsg&Q-k{
zL0Y2J@M>$td=JuslNge05nC~sedAVHlddyj>jX#{*h{K)mmq_bp?QcO=LaS`APFYz
z<<a`XHeORI!q@7DD6JADB%WwxtU4=P4-IN_PMoo(a|+94yOXtv!f^B|{mOtgza^QL
zet|L2Ix*$-ZV=!qxO#`_83k>YxOWVr8ApvE_N0HT>XM_c$~3J*37ujg8_#q7`UcdJ
zq&lwB<41czofF&v1bMZ7E6=;5Asm#bIxNw_4dI|nDE5r)Ly#ar&03+qaJz`84u}DZ
zBM)Vze4d{Fu?a38C;QRw@@MF(?~Ryd4C}))WETjB)Kd}q*R5^-delT0dQ*xK`bLtF
z(0cb>t-t!igglR5h=hx#F1HSs1^o$_LpB=1h}6kKcL2!B!T-MTi0|#My(3lJfyv^2
z25&(%G)~98hkQBXOf|Horz8HZl$KVfhMvb_A?W_MwYSckYhodEN)?`Pqm-d9#H($V
zm9)WAC9?cvr}0biyh!*N*7QeAC!|GMAW&iA(hcS?)wI+PwZ7$-cu2Ps*}Ob{W}_fT
zQ$J9YI&YuvoG(2;&;Y?Uiux>qnSz*~`}Q93+8X)OSYs{T_gxq4NzZ{W6jzr9y!XPk
zfb_b9^^c29WWJAK{_xVG*e?4*`yLIAf3T&2Odyurcsq?~PhWkaZ(bLg@_=bH(Rg##
z3A{+H-=cp52rlm3OzbpCY8XT?0;hNY8bc%!K2EVi)RogHG;YvK+z5pfN)gr)Nf=S;
zi5snv?Yt&4ySaW-PnfxgQa`M<_MPXo5}6Z{0rEqm)$0FP*G0D87ixg*nPR(3Fq<~~
z8f)LS-s*R(%}t|0i!{wJ^*n2BP4=3BUkM}*%OA3&c(r7Uby0@fmM(to1`Z4ewASc;
z8-)X-89fFPE9ohHW<wMHeZu<W;!<GH6b6obUO%=bxZ=0wyc+ym!IQdoL&xFbr80de
zdA?b<*<|{Nc7|-O#CwX6EXJKED5ZGy<Nemo^&bAH9;MU}Q;5cb{rCavmM^^<Oi0cP
zrir;3t6sd%I<)}-)z>g;SjHNXAK;@_F19{*v&7gU)G2}{1eKoz&{M6Y4Z1HreK)cK
zJd8{%WkvsPcB*)h@nK+kfXcyhJ~B(+@O$ukz!Yie4Vps4Hci;Q9kcZhf0-s^N?Jt#
z9&)6vWZQf_Oh4Mnh-Er8WE0X00ai6eAKD*0*nMC+o@a8Lk;yzUN<Hq^`wn|QHmDLM
zin>Ucf3))5{fFtrN4!?^!ES_*R&tJdT&oWqG|y$DxHhW!KvWS-lS}T<2e)|88-Ol?
zJraHi$u?lJv8mVSk@G{Zd9`KT@!~T|Ju+SY<f_g*+&J8THMrYJutE>4(jU7iIn;He
z9-4rK+;`)614|M1ymcfbBykq$VL3Rn(4WglE5(b5Lx!C?=tEr;Fb)|e%(VsF-U)G0
zthLZet7MhI9B`&{ju0z@A&<xIKUep=EHv*$5EI$xvNBv4*zxhP9DE<%u5a2MJmNAl
zZ`uCQqOH;tN7Eg%^ooxgnqbqzHzF;GYRoKsWV_eWhk%`#8IU5Xc&gss@HoOC1yFm*
zw17g$xmADmyTNVo7RKkpbri$WTlJV<&2@xsb3_0zks<A^b}bAZuBrDK;qlCUR{m_`
zea1LK6)!T0LfA)A+_UpLR?yj@kCUc>`zlSAF`)K1VcwrJQ~&m0$j&|{5vVc6PNK@4
zYrT7&N%leY6C<WRX;$0{x31Q6F7lF#nkv<?D&q~`6Cp-G({Tg@Rp<d^uSi(_ne}>i
zq^B`L{3N;1<eQO6k*MBVqz}0|Bi(><8O#+m6B#exE4s96*idpom~A`&1WY**lO)o+
zX1Miz&(@!<Mp7Yd3;c*9@;e1cio()<logX?8UeZt@_YHhvB(4pn1pHV3+Ww7K&Lsh
zhE%6XgY?h>1Fd1G`vl4hYNY}r4*f(l{C>AvNxy`g{3}}9Ak<AjsO)kAQsT)Nu~7e0
z;(F&yKo4b6yk97dMs<r+7j3i__zmoXH%_ZACK7}S%K$7rQ@3*EKdVBlJAg^<nMeU%
zd|1P8)n5+^_O~$6DcMo7)WBKAs?%@R&&CH&9%W)vt_ehNP3js+^k;vT9-C`oQ?lmE
zCW>@Gyb&0gsP}bi=*Ax5GDAB5X5FWq_d9s#-Je0^y?(v^?HaG4e$UDqV7ayp=<U~e
zj~Wt~Xu=3QjxBfI4Z7-VuPHfSfFB9*NUk4l)4hj#PaA+w$8EvMH+HhVGtujjO)#p!
zs+ach@kz*zk+<rwJg;YRm2rW~tD}D1s;_8eda}?>a<wZJV&e$xsMF@@;5*D>r!~0(
z|3Nh+<QO6dqvq(CIi^W`5`N?i88ryO?|-zMaVDdNvk58h2P?%?OK2=cl|E#Zlr@CL
znxWZI_8zm|DKyF+eMQrTg_PuR!skgUWU4i2t_gy(ygYGVFaJQ(#H*E$SQ8&L$WJ<p
zs?dOSXQkLTTmRha#n{0F_d_nTyg=k8s7}{gm*4HRHU3pnO>UTOT{heNDqBndnkGUZ
z38bLA9@nXEj2c&m;8iNiKtrOpC#h39+WQOKbSu)xiCtpFQ@7r@$H}iuQg6@Jm!A?Q
zo(1HV><2e0A^aR_?kBz_uA$6tn#@|rf3QTDjzc;u-(aWs#jNV8Qh+VsDEav3TG%mT
z!k#8yAMrh)20xoo4RHXY4XN|>75>maHUq$vaDTn~$itKY@`_R6sd~}G&|mjsNMh=;
z?@f-F0FIcosXKLQYXh7zQ(8&L*qBvfzjR$?m6r#dpBnrXfX2xMUBkYP6~hd9bL_5Y
z)qR!K%iLum{f*Mk(8q3Ft{1v_WQc|o%D#d7K{AM)xZ*B-FyE65&5TrZjm;~q7hNxV
zCTdV%0>w|wc?UsUyxMeFZ(C@Raak|Sj&b9PTR1`edat!-s#z%velye-!IVk9eg7+{
zgwb`{c;78aMvv#Dro?id)wk5@gAOKU67T)&-Fl~MCed!RVwsHs_?^(5)TRgZ^%<c@
zUot)`lbhq}5Q5NA_uip{2berIa=?ce2LbhJkQX~2w1(xkDV<M@=SnuJQTWg!jq{V=
zj8-9)R>BH%g45GPz+EIvR6LEn9=5vrO>fjFd~5ZS9}f>ioJt7O!@9S*x6)Xt=@SDI
zq@zU)!7zQ6&$MtxHj)m}ATbiu!>?Jle`}nGX2&&79OOJ$eYM{At1;{t1Yn^c1FSyc
zlEvePY`*_?J@TN3Lq5(k7prcbtM{DbrHP8sPyiSOntgFJO8WM$dvxI+UjIIVV|FD!
zOsed!wxo^!r$H5?G<|7hzG1!~>l22@M^MS1H>QcKRSCjEvuYN#aaG=yum6v(^8l}^
zXx{jO2nnQ!9Z~P@wfFR5LFph>KoLPdLkJKE1V{n|?26bMB7%S@qS%lkHdHJq_J(3X
z6cCgmSilAf|KH5sy}1eepYQQ|9^IUC&)Ks(JM+#v?|kz>QgdIW?=$?G-lxq2b>}C$
z6F=7~d)}*eQ8jvK3K?eRX94i#-{iiVmA-*eA+R;hYZkLGp=lC|%{*wVdtz=Vqw9cE
zszyJHmP#}@`_I1nN&3HCh?ZJ&Vk1E=?v#&o`3v4@T|M{e3jGUKG^9$U_Gjdh=s5Bz
z``;tp^mU`1qBfMJnvi|{$gOTyf89adR8jzI3Vl4wbUZDZ_Gi*@H>a%SzqhOytV^Yk
zLp8(f+TgY=OWIJHq7EOd965bhnePsC*LC%045xpIWZiuvn1j`#!t`|aey6n22gSlf
zabR%8^Gw>)?)UR_LBmHwfrK7UP}v|2WSW<Dxm$Ono=&N_oGwElovJ8Mu6b>V>y)hg
zB<4b(Vxbz*9F7v`XOi9T`=@`k-d7@$5V3JsMg9Vc|0Vmm7m~tX^eP`9ec0%tYnIn{
zbLyv89;Fl9u8drl+FS++GY+oj9&40-Q*#|e1R8m2HUVSs9xq99^-{uEtzW|<__u+Z
z(j@#^Pe3w|OI>JOOQx)3k9}!pTI@$*lR@h!rPdP-Voulh*VykPfl_o4h0-!W%x$_F
z_sOnsRjYC#<1)aGOW$p8ua~~eyQT3N!@K|VRd;@UKV!9BPb|k{alIBvyV0Uewl`4{
ziHi5#<%g&BA|c0$;sIc&LYIVIfSE+Se7YTcovtd(YXS$qz%<<Ic6yB$P}laQWx^Gg
z$|16Nhu>kZ8m!41c2?)2L1+lZpa#StFho~RwtcQraR|&<Lbd`QF{!?7{<~%?NEWpm
zC|*=PWqY(|OmjEwOi9aUosjBENUi0V|5n>uo(kC~a9FAIAO{9Of9H30a6DJntE9MU
zSValKD>((A##>j~x8eyoIx`Kb@|m+7Q*WJZv^ai067bBG+z(Oqb@t(>b%Y1!NT=Kl
zhgxJr>JPPt<)q{`SIgY8KT7d@uY4?IrpX;?8@ALT9LX3G%61ar$(($5_3V_V`sh^}
z?I~4NHlhY1<e<p1(~@(%o&S(hb@<&Hl!_Q-V>8=&q5@7#OY17qqU;j9R8H)T+wH51
zQXbu=GscPU)e3kKoYnQ4?CsBlR}`O)gs^1fSYG2d*{w6;LsY?W1s36(x9v-dQ=Upv
zVwh*9@b{qLMfKc?52p0msy{=(18}3)0E0LF)((hg6QSvp!_eVw?8D1R9={xZq%}63
zJcj%}Kh$B3{XCvaRMRR0tg5v4?KiW+HG8R(5}IsWZ_oAFS7^_kRvbe~sr)4kWTUsg
znEci48VGc#!gO&UsFyAQ$ZIX#{x<}7zg5*>+4=+m*!m6~+<v!*k&eTq_K5+k+WO9}
z=;kocL9`-tfM%-ay3=nB11&wFgkA#t%J4H?(cSvNSqomLpaTsKxem2+GwW>E`p(2r
zY2OBLAfx$a^ZD+s$$D4BS9>ziBvG+xe9b2pyH#`c0Uu#r2O)r@vaI5e_3~WrLh8M<
z%u_S$2Ui7YAzbC!^aVcATw7V}=?ffj!1vGsV7~z*AOrJ=omdrIcxtSrFiSjXDVN-O
zpDmk`EUY>8mJ|6R`R2LwX!lwBOnu>kyp<B2GJD^HbZ1D3&U-KnDr_owW?v8nZIis}
z(xm7O)5BlXPOH(7COvv*Jgp`S2);@wLO?jx!si-jq8C3Iu5DQctDSrsi40^pce;f+
zN+`iR#;I%Q92J^-X4tPhb*&8r@#IHhNl;NvgMc~M9l1Dt-3J^}=X;vDq$^1!tbNKI
z?d!QX*rdLPsgr{u*Yr(tT@OirZKIxRt)z4DC^(5Y4%q!1bLuWzxid}dzN{UnG>XX!
z1rv?HQ(X7_u;Rd*27u7$0;YV!9Cw@>enA*)S3brs?E?Ib$SH2)se!o(ATf+y_uLR5
z`<r9kUx(;5tecj@iw2h<?hO)*+wkv$HsUp@#IdcT?E$v4Ws*DJr&AekSyno-suZ~m
z{9f4rZ_ITgbJY`IkO!4)8nt6s{-M*|J-f8(Ob(6OVIk4&qB-_3Ul9^KF7Y98<kwGf
zGyVuZpzyamgP4G(z&tzIP2a8e<QsVZkPXjgU{*ez=k`A#sC;#YR9hhmHj;{y9Ms&q
z+yWn)aV3KH6(!Z)mSl+4Ge<w;8lS8QC<(QM?k`~-J*wD^6@A>2;pxlfs~gdBM2QH&
zO9b`v&$hfwgJQfw8jrxJjIr&=xsm`kqs!gn&xf3A9cdiG(3g&|tshhhATbhCN90e{
zOh9Z4q>Z<^XpkE}F0g*Vym5$mVcbC0$jIy5{iT5bl^A1XnTIC1dEP_h*3v3PcnpA*
zL}qhFyX)h?Ol!bMn%|HE<YN|?>rZeOc<C5O8oDBjd`(y`VGMO9J)`+&r~d2<AL<Nq
zqIc>V%{epmyvv9<dZId54a{B^f1PY5q|j`;*fxDSHTf^<99Z%kQt~$0h4O(ahS`qK
zg&}a(QA7PVpbt40ZokW3uqpMb_IhE+LQy}>G~PJKwt8MKgeP}?`CvH%{HH~9kaf7I
zfxC8H+V^;Yi5p(k6URMdf109bAxjjzyxa=T1F2UyT`Nv=jeSV4*I=eueVTi2g~kiS
zP<%T`Pt0%@FnXa$ddl8n)3^6dlAum1RWR)Go<xxx{bycnNB9b8Mr#;R9F(t)vn}F<
z)&vs6Xxu}5i9dobTT*G)HVghp&*9Y)PcuTmeCZXoZPPG9142z&%W-z-c>8iR48&|;
zKJIpg={LqMy&#OVE31OhMeNV*aEz13+wU8MG2X01&c}SZ{N)(i!!GI=hUl8q-;>93
zK$^SUZ*SSy<mlfu+LWuTEG+^~I)a!sz1;2=skc=sqMYC`VLqniyLvP9gv1KqZ1|uV
zo(_`I(_K*`jTPCk{%D2pItmYsX(To|_%63HNzoRuJf6iEUv3gklAxUIZv0tIiR3QJ
zM-VYec9*4m=25PBie`7Qy`st{G6x*#yh`75-O|bWNPKrv;P}s8VXF|;h-}k&l)Z9B
z$VRtCSAjGNBzI6JKK*mo+oe+!S;8xim0S8{jGhhRl)r6u=QmM0T%8Sus1dK+p;t5-
z+h85NVpuE~BeI})`ggbe^&s$3d$p4HJjGr0nJ!34R3bGh<PM5I3d~EdM0VCskMTEJ
zBFJndO(TQM&=2z>mp9QtUe-Ge0@HH#EBsJ$vb#KH5ZcthKkPc(sC&!Z4ex2098>7I
z{IOT%1S>F~pY4us7LKBxBM|<Ij{@Yl7VgD!^*F-K6#zk&Gi3?%WI5EG&>$sNmJr*{
zdWPki!I^IN?^=5xM@BUX9(-fUm^t|Vc+36uL#R4QMCq~9&E~tlUh;_@hpSLkiE$U;
zya01J<03meTe0y3z8VYj`n&C4C7zsH8*9%qXLYlU&JCB;h<xE&oYBv&xK(Aj_$A68
zs}vB=CpedQ$DY|d^~Jk1G=Lsagaa>h&U|PL?b_SQWlb)ALMdq%fpU^T5$cJAC{53?
z?_b~K@29Ez&;*hQd5HgD9(lz6c%%AdtTjjmh-1ZK4AvT0%pV)w>3*$oVaEa0Wo2V1
zc@U=#qY;^D&webqcL!gd#QKNMie9_$?e1J?|7fdqeFX5x;@{<t{4h-loB3B|>3B#6
zz?gj9%IjQ*=?WOL2s&T|aaC|R@`wt|8E3iXn^M-ppx^<8#!15@VpIvCidMN%ho`-R
zzzUvyS1t4<4bS0!|IyK}=c!K*gwdgB#E9y6(ILK8p1EOQbmOw5!zQFi-a1y&3X;ai
zgeTpvH)<M=5db(&;|dxb_{A=nIuvOaxc4T9KM~JjSh)~FXc+|t@x)};aHHCay3U_?
zjS~jC@19FP>tlstTb7lK#ots}W^G1zMX`Hwv2tVh?Y8}KSrn+Hl8|F@`W*MtNc~ko
zg%b-632|On8=1HxB>4LjiFlr*{^^La=<CQSyL80wOptFWh$+kj;WxKDX^*%vxh+09
zhAn8R_*9qBTM(2lawi?4c~lNPW$a4M2E6Hr`|SL!nzI2=Y*!?_PHikja7%le98>j=
z{rq6nqr}_qjDgqkY>;X|nB}R_J1P{Z20KU;PC+9UHIQH22{VFBXkC9V-`qUMzVFij
zn(tBCBI_HwmOaK+e5RBw0PypR5JCs75ClBi{M9(xrmrdqFr-03FZhKpSV3h)YoO4)
zn-cxsWr~sWywHy&DM<qc@%Ev{n#=!lTh35#pBr!__4ff7=Lb)`sD1RSi-LYy8#;;7
z*8@K%+pMY|eZ6uYmCm>+ch-yUDAyseLAXvaoG?!~56xG)Ax{M21be)ahNf{9QBk5G
z{XfmU;HAD2Gc1|rtu1!D&#<sc+TwhA)eKS+H28cXGH*@Vapx!lkB%v%{RlDGeypzK
zS&{mFOq884h`yd)^p-QslSyvlDs_GK;TrM0yX(1`Kj}CxBVk{43_{M#Wlxz~X1klZ
z1>e4IV1R}B>~8l5vVADRad`(`l_D%sJ7~J$&7As>`?YNV#Kj^@od&x`&~%`L-ILub
zs{)owkG0C`fb@#TaL=vo%6T%{r5*7)Rflps_v}Xed)Rr$+;v`a@vMa0r@Z4_DM!5d
zQhVr@l=Lqei?L}_LS;dJY>jj+Ua`u}`#E(fc$hb!;IB0$BNRd7s84vtR>zB={VCXv
z{!&3bhD3dax%Cm-EnWcDjuXV!e}SsynnRwqhg_&8vu+|3?!o=;qY>(**E#Yz@o^_k
zxG<V@j`ykCP(LCc(8hS1#H9J=jq&c!rFzOrU=r9tsA3RaPAPMQ(4t^P0MZ*qQ~9WY
zLifbf^}fViwM0V?h9J=-hz;<*bIY9bqs(I>V>#bknra_et$Yq<t2G5np$3l4blk)C
z6F&vw^s+)F#Z1-!kMg)>w%!+-HQ+Jf4-;<;^B<H&N*VWnlih`{r~lDSvsIWCfQtaB
z(qEy#yxYw!xIg{hE1@p;5Gp`brRL-c;R9!w7fPek-dCd!Z;|7%xV#GMF1$s!9UX^7
zo4%>MMIM-p1O)36`cP4qrwOn}Rs>;Q5@24-3e9aZu(f-4Lm25<l$hlp4e{(n?(bg%
zeN8fb)E0sY;-RfS!OcB5`Jwz&N%7IhO%^nYI;{6EHbmw&NgqY6A10aVHgFzI8EgH)
zq#~F9q}JZ?kTo(r+><4JTnqO}MsmFqQ)Pj|kRVp@t`a^NuF~8i+~D;|56;n}x>Z7j
zK4sMNZ1=%Re`L`s-00<u#R14Nx370A(nDoN;`y6xGFQ3o{`}=NYIcJZP|?d`cw}Wx
zAhacNdh^WGA(0c}oZe1^&|;IN?uw~-C_i$a34Gsu)NMgP%^4LL=<CzOWrRgb1_<9y
z=*zdB<c{2?&H|HAE78m9m@&qhsln%#$E9{q765rrnvWmuPX8;+PhA%lp25lP7VpBw
zZXBdi`Oce9bZ33*rBWe;XmuVbN_^%;^`l$wJ79~~I~N&ZDsQmfyh6qy?ys!mJq7x)
z<T=CbI2*Q|<a({v+tvN4TyyG)F6Fy0CZ}V27)sm}p#{2J9_Q{%ct*k$Iq3<RGtEb7
z?wpM^Z&x#vYu2W_Z{kCma`a&@YadT)Rkln2GRRfSgCcw$6Q#!4$#hFU)M$Yx?Ofvh
zAoP*(zjqlo>h$n}9TKG8p}XX|ALF;A`nZ2paXE3GR>P49ATyGCzrAvzCIYxGnGtEV
zh_?zl`OYlcX@YvIjC31Idq1|67Oxz)z~0os8_!xJ*!pMekL|;V|FUdw;%po?iVdIr
zz#esQ@_%XiDY{8HmK6Gms?ia%?5kJCp-@#`X1W=rriY#mbL^gBN=RVWNLrl5D$5v5
zj$B63C+@<7G=0KoZ-J0#Q^}Y>Q(yez&W`UW9)*T&uti`;7Z~%2d+LyInFMF#MPrJi
z`~fiP6Q8*~O~W4~>_*)G*S~YKo2rDe1}L-(EmOJ)fC2c%wO85dd71)d)6`M}r0p!S
ziREr}!&IT!adE6M4E`g(_~8Zi=r1&?z}16}K#+x#CtmbvZ*#b%{&z2E3W5<N{^?lh
zv(Dm>QA^M@TAiav4&^v<b_eb{fecCDzR7mM3#m6>t3L_JSgjzx363_lkG=ML{Y|cH
zCDo9&2P|`b81FOB%sSHEcxUSCTQvwuOcYUFSI=JlvnGmU684g4zzXcQII`$|m1uw~
z*M<UzP%g=V2f1scy`p{EcaQ0<Yj70|(??g@NxssIJ15Yl_-gYz*@<m5l;dMl`^6gJ
zYcZ==zw0WR>DS`7dRCVe6{9bV&qX0)hPig4P3@ZY>kNH=wRG_^Y^LD!(e|PTG`GXF
z3$!564+nNGI@k8(o;vM3NX;YSbx#^=tKyGXGeQv6>}s35P`^G>5FzHx0jVi8ckCA}
zE>4>@Re>$G2ar&h5t0vC=HjdEL!YHRH?J;T3@dhbPy11>zBf;j@EuT%y?uXs_!j*R
zKy)o}a;R8l1815RbL=PoC<Moph_t$}eVGx2=*_k7+PtPpQ{;XvVKDN_5QnnNgF7P2
zw*_}1(Ohy-vs2vGxJgVLW6@7P!L?Wu%q6@Y<`8?x7wfl!r%-!{FVL%~m=b;*0TBYd
zY)-V>8%ep>=s8LLQkpr)36WviMBHzi!_B-MsR21M%{eE#tZ#If2-jnIWOFIe2hcfW
zvP<%cwrbK7{RASHpZd8Qx2T`MF}jZ<k7fCCW#mn-g(oL%LV*kgMWvBB`FddLy|q(;
zl!x)qpm&q3J9krfXmRXg#vSo3s1E<xFY71Ad;$mwiZfvMIl2aAxXe|-?k5iAnO&Lg
zz;ASjps-h|CSy^-BeLt-+HP8s_Vj-HsPUmE^gEGhjRVtM5da%Ba)p&~T}k9~UoFlG
z^&FNSMI-0|XIQ4Z$mtEDvr2WDGTx@7k`99CeQ8tszkYFLAFG%N+pjG?-5|J-F?<Rp
zD4y!ypSywHtP;V9Cd3Hw8LaSdrBs7FAg4~hZT7Tmt)$~N5{HnkCxDWzjLz$MpSV*}
zg5m95G@!!EYl}tCHoyPswtA363_uM=f%Ev;SFUL@waN@>#bU<_wRGGTQ}*^}Bvis}
z6R*rNNh{r+gY`<jImk?q!patgjmdc?a%Gk%U8oElP4tw+l!r_WM4`jotsiJb1;5z_
zdM&t&fz1N|Tycln{9|gf^&Vj@66Sq;zjHB*V#h!B_2sGOysdws0tr$cG@S4rL1{`h
zB#Qa3h1<P2^*G-zq66?U`Dx8a;=<7)=_2>aquNbEe!dDJb{Z|h;r*$%J9u$w53b_B
zD-%&&Thb%I>pfh-k}yU}#?xQ&s2M_*u-HBPypG`$*Xd3{lCHX+`{^n5ip9th*Lrt4
zkLHzT%PIEn{nMTttAKwiVMfX4rVyKs=R>S{MFIbPoG~cL9%0wrp=S&Rtas_4L87}t
z$7)jB&z@nMtw}8%&_vP??W@WLD!3uttn<y2N7&=mrtavkV+7zqVh&IeI$_fecIMZq
z?|!L|Q|roXGwmq*&9~voj>@W6bqMIJnP$S>_O*vnx2;W<%GNqZDdBr*BYW&CTHMML
zbt|SoEFO09ScEsrkFZDm>~G#t4pe~Zn1}$)yg8`a{_J*+No#w*CL20{*GP;bto?k`
zKGk0MmD=7qMjp-VCiaUT!%*j<;V}^xDZa@zFKmu1{3I05a$X9O4_pdu18Vk`$n3Ym
z7@~or{p!WogUIJ@iJbRO%Hyb4@~#rA`Y?uEJ!W8JzAZU7^|#OU&`daTK-{m~-!An>
zKkI;sb;uU9pA%W2Z;rLU?MjtZz#X}07+DGmo@s8sEAr6;>VhzD7jZU&rb;3SYw-G5
zyXVE!cI24kDT)SqjEn22fi=SqwBv`Qx(_u+)sbpTOc_2Z-5~I5o}XmL&(m+kO_}TP
z0u=djY04t|#4D-y$@UVwyBP6WC?PBlYHb=@`@$!w$=B#uuPS<3B6}kp7tGlU?ebqj
z;;JWGR?;a9QI1=>*sk9ghB{XfWERPbW5%=0O{dwJzo#aTYb>&MJ-ic9h(Rng*E|<p
z@I}&EjyXV=P&i1BNzR(__qYXDDAEYF)T5|mppeN(VG>0C{-HhZ^7OPjRgzQX1!V{4
zkQxP3-R|l?llIy3+5;)UKr{b$Zguy(s|H%mb<Z|{YlpF!(#)QGbG(|0M<3;pR<M6i
zjYp5RGj9o_HP;bdoP3bo79SC(h1E(NkHq6a_UNj;FCiY?(cJELhmJrtqwhCl75b7;
zC`Sj=bE3B-rEN@A)F;shqlmP^HT8W-sG_7QQ_3dDrb#229P@m&ThLcaEV}}akSB-9
zIFu%kB73*+!Dzq3QZBqoonsBEeG&#u58~8@=S8Qs@ZxWzXtd#uCMlRpikr-^M$t#_
zOv^3Pc@C~I<@-S8S4N}HPfvU6OP%JH@NjZC$urG04Wl2Ih2yaU1s(zcF-B>rx#Mql
zWrc2Tj!uk6Q8frUm$4DQJuG^1aax3Z&ybcCvyGKf$Aj>OJ^yvv?n%3Jh>q7im2u2k
zQg$3al{;a1htY9dZZ680%eJ_F1H<ozY%3ka0G4KKcHQp#|L)6rZ`x3vOPo^9zS=Zg
zytgZ^h%7D)YJhw9Bg!&|jE(eb5wM5a@`<1}W@6+y&*Eh{;;CWlVkU-am>hHH6}IXT
z^}IQzMCy;YUDEg**chOXK6TUgPZJ!lqsFEfFCAs)u=jso;ksU#I`PH0sCq5kbXH;S
zLbq&r5FqPbR9rexU~1{nL=T1>_x<t^PWKUNyuUSDnd<o$db$bk2jZ!qPy!lZHt?z2
z6}qvX250TUp{0~o;4|U7KV0q}cr0Agj@ZnvL2>bN%!{4fE1xHAKPgpGGV*gG3yanr
zeI5C-Z@=gcJ2AcS8L9#RO>7W_!m&bKbPt6`w%m11Pv3}89G44LCvy3;GG-K4@U>4}
zNlF-vNmN3q;nTN!%N>@cbi}=XmR=o8+^*xp&-PT0o&FU#51W>|J;~vQffI+%;irfn
z<!@Fmcb9HY3y;K^Ql@<kazwxF^!MDUf9V)29Z+5BiZNU)hoRrP4KJnL=nWS*M9icC
zHzsXyhsH-*4yS%}6m(v>j1As-vzz&3xU6Rp{sCMy_9(BId06zA$HE>>Fok@oDZjeP
z<!TCf3<#If_HR%;#)pK5*=zHcoBKi9@6YKL2aqi*8DM1*b9Y=9Gwu)9^(C)=EQYK|
zo=J@``*qP4H}=hNdr@%4e<f4RyVTp^=6$F)WmSt`D^iq}J`${JDW;qFl{lgzz#_;>
z&GI5bY;~6V<nyq+n4t1OMczu2$YvrAea04D76d*$j$>QP>LupmF91ARK5sJzYLN~`
zv^Co)*568dX>FhECPmYRt;h9%c;WkZbF>M^zwKt*b6e{6H&n-3gO_dt!5FA-1HB<P
zkBw<J*`4ucp!w8IF7R4^PIBk@jzSm`@wlj7C@C4o0SPOO0P%49*J)|>$E!mooj1xW
z%Zv43%{Hy)+wN=Q2dn1{aI69aoYuuQS?%4pTCoV5>e^pj-}l1@&|);1ei|SD<p#VH
zK3a{9MK;46waaz9TWuj5q8FqGcmT*cLruK+6W8t8w7!?9n0;%a7Fn90PpqS79=5j*
z3pBh|Qija-)Qmjd3-fa9llIgxQhOnvGcY;%HHO}N%C4>qL$z3XS?0RQcEO#Bui-=K
z<Kre#U2^M%woyNYMP#$Hvl6J)RK5Wd54zJee_h2Uf$qVVS*{S}I9xmRcP*aM^a4-P
zIaU}ePARIagWcDEYT%2G67Gq%z+wM<a;3X1Gl*gbIZ1*ZhK4-q4)`!>;d!ZvU2}M;
z0XMmn)ASN<MWGJyosV>pF6Vf>X@q+lytThhN3SBJD`Rmm(~Rc8NY@~m+zLy`BZ5d4
zOUREKXvUxEmj9F#!_;NdNLY<0Z`xny9{EZigSVy4o)BO7EPUvr2e=dc>oNlUMk5YM
zv_P63;;x*lGl64OD`|>%#Y3ikXa`lOcg0%mhNh2X=W=knuKp=<{m&u28z11aJh3sd
z?I#@|KeIP?EYmC=>W=i>G2V=`XdGnC*fIf_psH%Q{kwbe<a{!~pn|1k;{E1=B|dbd
z?fYr!y;mi#WgWyrYTRk5L;0btEy~uQN;ua-gYdLM_{I4J=A?h@(@!WLmuG4T{TmJm
z(lXk>`NXT-XDc-gRW~~>3v<yx_pzr&a%Bg+*h&flV8Nma#>tsg>9)S9*D~6EOf}{h
zGbMwBT_eW02j0*@NkNi6^v6Obs1n?V&)oR4(mz_K39i<F3MdA~O)gjSJx2_56MZU+
z>uJ=E*p*Nd33g4zbobY}n!aQTdq50>&>ovYe3=51e1VI+s%I>h)+y-8GiN{K9&H)&
zm;Ts^JsRR|d8X6D?x{{Xj4L7~oEl0J2jNSkuZ!gUs6o=+VJ{&Youi+er(y5j!@Ts{
zm%FdLP9wu@O2#VhGaHdwV-9u?EeU!Hbu#Q2-RB>-ua|}v86M_>=m{h)C8utt-RvQ8
zjxSOu0>KpEmCpFv?YS%XbL=3YO~kfXPNDEBW_5|q8JyO>g*uYH0*MHdG4O(+t)oqb
zgfZ`AdfIdj;Z(l4yHRv&kKo$&8q6etHpmZ%n+eqT+jnkGNpLfJ&;ikJZSGC1zWAhQ
zo1wMuT>~otJN;WfdZ~9bd7;`4Y@zAA#qB5#cit;%&N0_-anr|zaolwJ{>9u8oa<~e
zZ>Q@rEDU!ik4GbBd1r_`=H~v<R@a5+3IRX`m9g?tn2~1dTxz?tt^a61UK<=H(?hw`
z_NnTk%CZqD>o|1GwfDspJQ+<aIv{!&Xj`@l+`Gh~JoC;#+vcn=RQsOT-5*BVe6I@1
zJu&a-kZ=}J{KF3TXP7;8W_X(3AnL@Y8Z<J@r+;a*ExR=g*PQ-P3m`IV{-1q%X3Bln
zX*}Ojy&*Z|q^c<299CiPnH{c-RXdW+;Iye6XBR!Gc(%M^t;;gam!oaLW8t#egFNgg
zJMYnb57Ldj(*EXMe>tmalZ`P@EgrX3L&DamGt8NM$6Q-oro%iGG;~4I<y|Pj&oT4*
z+Nljwg;~I$Y%8!3%ILDp2P5n`SERJ@?Qhz_%!Qi8OR|NhPq2B5LVpm60?R80t3V$(
z0-|6;?K4k=DUdQz)fVT+Foz$P*^2t%$7+8|g1+0v*<a(|t0qlAI9_!{P}9?gEFO$t
zFVDhJeaO}J`j^75^)4C<!>D+$2;=2aLulp=vRC``0?8%)J#7gk3@*-#Z_ai@O{y@s
zfKs}XSofQRwrfBzmFL)tFH8N-13FS_FO?$lqxg+IuCnc43qJ}L4<yS-9w+vjm3Gy?
z%G2OMN%K??MPa0P8XT&={cO8eQX+L53W1aL9dD0%Hq2<dQM4!KBhU`Z^zLhqUl_lH
z?uq`x3GDyyOndu_DZeB)mZK1GKx$AuCn1}eL8AK>`)o%|<1pR<w>M-@awS#u&N92@
zY)xq}S}Wa=VOA}-?;IM&I+YINtSlo<k_%<qRLr!U3({U8ImC6XN>Fr=muHN~tNA3`
z>@*$Y<r69|MTUn}IMH_aAiPQqXu=XKYi66=9k7v_?@pei$!NRw=`b(t!FvLCfZB3q
zd(<qu=oy^?&JvtWD1gA?xGb5bUtjm;9L0KhmV_;ebm*0KeSCd(mj+>43dxtnqd9Gs
z?Yvm;C<`ryXE8*0bN>|k`;stJhxZK9d6n(DI4p_QQoJc&U5dbW-)5)#HOMVH7g1ix
zJ_0+-H76{Jyx%6}hLPIXz<1ECK@KI!z2?72|6fAV(DQWwDuLHb+f@7XhJbKFfQbeB
zpqQ}gPi<`7+X2Ny&%~cQGL~Z&u8oZUI*ir)n!qsyJ0pvBgnOb9A8XUd58~xi9d7@L
z57tITF>Ko+n|3QQisMCoj8~V`g?aNJH@!$}t%Qvy$AO~j<O?AtnY6F%bxoCv$L37r
zP3M^R&UBwYpd@8(*o|m=5YPc`9Pn**LwC=rAkQdyF0w-aW(@L!#rwH8*Mz}#MWeuz
zm@Xot*BiJ6t@KIw2)&>}FlDkU+33?p+r!@0FDH~W*zA}y5~W#Gk&!N3Y3F*OLg55y
z!)8(2U^Dmn)P8@Us%`8gEWxo<)y0i13c?cS7Y$`yW<%(qelp+Axhn0D^R#@?#A<Sc
zeoFLf%=WKc-@}xR%D>ib213R=<12T)Zw7+Bx~LR96=x7@1!J<;xpwkZsh8cS2yIvG
zr8bUV6sB5P2mAcQkWV0#EJi+>igm7J4I+<yggx&mg_^l3369YMuxAJq+qaQ@-~|Qm
z#XR~9ddxzyRSM0khuV*)Y9@kw8!0QwPvwY&h>0zD_$HgVF706&Qwnh}u_Yr(y#06D
zd2_WTBUiQ}sZu_M%Y-lX^LRVt`?RBfYb4bSy+H}cZIH;KhIXPo??)weGSI%Xzt};M
z>3~Rovwdc@{t_eciYJB9zj(yXc|fZ{mF)?j;d5MmLqI^oEX|$gBEFPgaBolxM7x0k
z3(P6S_Ge#s!RzB>CFc5BYQHtJ^CpKpjAoe>_+rk1QI8*DZ(AIyJuae{I%b%udC4%p
z7TL2N&_NzJWWj`+oNabLXy2cv6&qMr%HN2!=!h$cd1=>q?+x~~=E3&1B?AmOD_5u@
zkKJke9jF5`1-=}N%qK_x%yu?onr1#3IiI3jZ|opK@fltt2|Gonhe1FYso$crgeH_o
zu@{&>%k6c~YKomd@WQL%5TSunra5b(U3-h4UwSY}iPx~IVqink4VbsPUUADSeCT_=
z0Rku*M&6l~1O7kfIk)~Ktw(}t3z9?`4kFCVdZu}2gIhjDdqVBa2f>=2I?^4!N41Wm
zG`pxuWLHWRFeh_j?(G^q<EqqMG#bI+^eCrl7!Eq+Oa<ordhVek)Y$MUh+?QZniP=o
zoR8bn{4}rv0>UIIlLAxygx&tCCPi2S>_;9megXmPk*RKIznzr&;;)*Gsk=zXM;>nP
zx;reA#57-)Sx{uRE)CnVjjFrGb7N3VIHI39#$J5CUd)eE90gG)X361jWl*Lasdtb5
zG>=^?XP0HhHM0kNA98l&6bK;tv#e=VU>1$Gw{J~duu737$=HSULS0^#8T*nw@P~jc
zF{&F{_(*0+iM@QaUWW_X8$EJa?lDF_Xc_@&?mYX|rHZ#<V-p<4Y?FPXJ$OMl#uE-5
zfWbrS+v)2)AA?<n<HNp2@d^mw(k*U*Z<@v#5JW}E&9F5Wtg{Elb&K~ZttE=dTV=1k
zH`Lz3WGchJa4Gc$lU}pyZ%nyjl9vDKk<_}pe}5TdL$q08Cyol2q2%bvEqH@ev#qte
z`h~LLy?zoid*}xH;Uv9QJO@5iOS#%>`Z2L5{uX&|P|);i#nhEhk$@Y(qFrQc{oX0Z
zzptT2oh#Y(kL-x#jR;qUx-)H^MKf@~<;h=1&O9ev-iZtx`~%oZe6r0K*b80@br*GR
z%u&>1Pvnsby|H{z!Ok=YBBUnIm}yo#ZZpOOI8FkCB3{YI+lb=Ku!oNe6g2o?!!)@^
z<23j~^Ox8eqZC!$J6K_ozkI?T=$Z0NRE@WXv)ik}8t(;*#VrR-#US}N#a3sUtIKW4
zDXHJ})`{v;%%Lh`GUB))ST|8xa>kl<_K>2{N~QsCy}%rNg-ux!hN!caOGK6-{Std@
z)6^3#(VkRslrPh?zS^aq5iq&h<XJ+IH5a*KJT}PN$)wgu_T-zgYwdyeds&`tgny%p
z$b<2XaR?UQ>=ygFL^7T|iA6;zn7&DzB)_~8z5hLJ<i#CpiO}SjJx|+aBlRQHnk>Fv
z;TXH7#;vTWR^#lQdAHs5vsSBd!!G6M154E(^#qw_WUkxaC>fVB1$KTFs)nQZ2XQKi
zP!@e=f6G>}K>c(an4!y=BzxCTRWm}%s5JrW>-SLZ;~kFp%{H#^J;^0E8y}+5W9rX#
z_?RHBRC_w{M+aTv#%xunwXUCl3HbRJ+igzp6B3Sg*7mT6Z2bqqN!hZhe-)_)N^JN*
zO^4efhNfNicO!{VTK4ZBi|S~!#|xHsw9k%CyUM#?33tRD?K$0^I5pf6cc(Iz<zo9|
z+%6nu|2a>AW-w4?3Be1_<h=T7NThwdn}iyan#M1jAjOYKF9)H+2zFZ2GKRA`^@GU#
z<Ul;~P)p0IL7Ih@G=S8(%-YW`IUuw~g^xW7XFiaVq{QRZYa*Gx+XN_4-83kL23IzU
zju{jnDgq=y;{kH;wM_j}qRE#Apr<2LR)MXg)@)5?boC|i0ZbUFT(Gn}laUl%aE0EC
z#gRZr%{8yivd@nX)}Xej$TvCD?GA4$IC<$kQao4>6>3xpOy-mJ)p@}KL1uCQ2LRp<
zZh4kD?KIo?wY1#Bbmn6D7w>+85aS7SXl8fp32kNL;4{F*j*XH1;zdUZQ;sct=+j8s
zCSl6u@Y8N963k&pq}>|F&fAeTUxtoszAm#3rOQHt$FW=XP2}GCp?6KqGJrYqzsQo)
z13g@gsaVCDkHrJ0+!~o37isD?qR2}95jWOzX+>G2#IxmCCv`|w*=ELqNLse8BFq3X
zS7U~&4h(gx98D*6vVZndfQ(Dqle3Q#J7{Z|Yp&WIX}Te8O|mwZ-m4=Cu**T$N7}}l
zKJPWrdFG45ZN2(o5$apDE+>)Cj1YR5OLj&U9H@l>;v<F%4(UFdZEo#m7td1fQ_M+`
z?NHQT>hMtPMzwE_oiQe8GRTBUPLxtqs$PWXtR1x)JZ=B!5g5{~7#|fAas|fZJb32|
zds#b85^(z-BGeCGyQ;Vdx}Yk*Q*mj|c-sDcla`Y4HvricBy(s4%=Sw<(3y<D1ow*;
z5glqPw7E(5quuN;_CZW11N~3BJLIP@q%cP;drjPsZ&vTI8NY{7H~`8KXEtal_Jlq6
zn(!!XrMn1^k|~W+2Rv<u^beWJj>89)p*@0gk0t=$@1r^PkHI0MwwF3hrfGPeZQ<2v
zctcL;xb#83x$z;J<TW!e5Aja5kVk%Vn|-F1OXLjeUNV4=-RRwc;U>+n_mqa;^YhY2
zYfji78Rp*C><7mOR(d<hrn2DTMT}ta1tw*>-8@FE0VX{(_Q)=fmP_}1Y@^FkCoEU=
zsM{FAJJ?<v^n@KS7l~$M)g1epZP?DUZRw?eVP`-k5L*3Z?>b(IkaFXqSb04M7mIw4
zz5DDi<dG8pQ3Qv`GM6R0VR>N~a*DLD0s+i0gPXY5PSrj#5{QTo)T4YXhY1>WtnMuH
z?q=8f0j>J$N_nU(G5!X?3n?Ua^jrH!%{^L2p;wa-mrAafQ=E}SKHjAM>`tE&dJOj@
zNiar2L2gg0Au>Q)+=dAn>~I6=`Avq8A11iIbdwwYkp3_u$XQbi?0=ZNU^X;i_tW(%
z6eo`*WlY0JQ1et$Ieuup=+n2yp9&=uF7<|!AH^SfnZlWg{ztpvZz$D6P&0lt>0)=^
zOhwHA)Y^}#>hG^(5ch0m7kAu@_#jEgVyFrX;nU?`;_iD$ha^s_&8X+IcTcttJg-QC
zZo)d*zFhP1+xD=ox{(vBlnc$rciGbiHSR#ycCM>~YZKE|J!Wt6l@4`QevZkUW#^3!
zCsNBY3K`V$5PoNxO|%m5!hT%Fp=t>bNFzyenWU@j%6o#WqHK&B=MGtcv9`suP^KeQ
zCBv<k&7yLiZ~1AJEqx#i*SeM)H>|Q>`)liV<{{9#=U+Q?z4kxFy4OO?5ttfbEBD(s
zV$N2ZKgMpDtVsi2B`&H=3@eqi+2kWqpRwy>rF(v-W8WpL;eAEh|CR^sln0YzE#vC;
zK+QI%EwV543HG<n{1fv0_qbgW&&Y|+Ih<uIc*zjCeI6mipHuAW>$F~m<y5P-1DW1@
zb6%A@GcHn31|IAd5?ZE-T;#5<3i|Th(KUd52Sa(_KvtU+4gGYWdvdNO3b}1toCduR
zQpMNZ+>gD(g>?wI;G*we;<haenaNf)a50C$Gkx5mI5jxYe&k`&vdyrYT)p>{o!pax
zZh*|ewr6R1)mR^$<btFXnm#++ORuD?o~SJ1*j~<~N;lISbf>#(Lh3`mDUDA;XP+m8
zeJnar7nivHaTYNZNtLC%rl^7Kx5xH*O9{_>+}5xzrTCAjrEDh0j5^V6`y%k?Wwq5J
zbO9y(c9y&M-9YHVwJOuk0$NmPk~_L(9|!go29`i~P|+|BT`<%P^L&<zz8~0LGzy2D
zOd*7HJjoPCZ?Zodz*kfWDqpwMhg0p>r>8a~lw$w0r3ROROVU2hOdV{GzfN&UE>Leu
zjtj}P@CT4B%yDnppYpY6gg=0aOSKLolAX!A-(JyK<sTLPP+}A}<!d}J!cHy=H}zkm
zGkQ;D<X`cq42L`J{Ia+0j$*wrP--`2h{-xZ6u8hF)7R~O_5UMoQv`R3YvRipIcM4{
zr&S4PoMCtrcYSKzTY84E`syq)w&X|s+>!-hk##5<S5l^DxtLJeK=yY}dP+Fgwt|Eq
zD!nLG;O(Zn)R)7Wu5(um?8^RbpmuK;Rz2NWVs+Wvm4N%FE^d&|bug$V306J7mtl7H
zam{9{U1ky_K9B~W8c_>_J;R)Lxf>B*d;V9+2McNjL4kD0pZ#6bU(cOe`?JrVtK1*o
zWMn^gr?>lz*L`Z5zg+H)j8g%$gioFeJ++(*-C6gBqomGt1h5D7aW2jg(6t*AI*_Xi
zOlco?{M>ML-KQcLZE&f3@6qrHTB00LhVmF2k#=jn+|DP%e6%Tw6{4b9$5MT1iko~`
znpPlyr*XW2jDc}Mx`J+Q7G7&_pPVYR>-d{$uAoGxibYv{xx3L@koX^HCwG2X<OAOB
z>kjc#0sRK3G&mBhM`E2DMz|X$q~}oT+`Es66AF4kOrFK=GC!RZZPBmEq{mhJx<_fb
z^`5Ro?BHhyePu5{JxKq1Z>^n5O_OcS`N?+m(*GC`PfegPiI{%2mwn9seS0wdeiP}s
zl7j<qWYK(kcCosobq_2;?34D`-D~y0;=E4iGf0)vOnXPX&tQVmIF9kG>2`U)(1I{w
zh%oo_yKO(;bG`#rU`3@v$@mZ_P&!NL^tDHiT(IBZOPfdly*H;e*IZK_Ikg~gY7<M4
z5F;8KX&MizAlR_>3FQFzvkN($o}C!EVtd-4=QY5rJxY9h!GuVUKf@><0_*`vIp~I4
za&{#1@DS{2%wM}#B@XGZQIUdp+l;!AJ3C<dHIXLgC{>u$gbEjzRU;FNedCKi>853B
zBjLJZxn}>TU6<3tSQo;u(qgXSOfUl$xXFFAV=-5Cpr0Q8qR16Mp3gAbpK>G5Iv|Cf
zQw(-RBnIU)JXpNN$uGOsr>g2YIz({KIoevHbAlfVi$BZUHpjJ!YL6chVEU?3zOOm3
zT(jvT`+h`oU;siWvc{kmDq`_!X0NxiR;3+GyDrVEN%^t&CPkGk(|o<!nv{LC0D~Re
z*4U2UYa$ZMU%SL1(~LgYZW^W~4meApi34n#9sAoCzYN(+Dg6<A8uTBmFUt&VV6Xf$
z3<`5qS`8xNl55icjXe0VCo>T}#YAOECGvy~HoK8`s-H}%L1P1oDF&beE2s9aheZ4C
zmnJ%}gjOsMFf`e+H2Vc)o_}xj;G@$PRwS+EO6F^f)Y(Gn2e`;HKPN?7C#AjZuk27I
z+F5>HU==aksa~|QpQ0>WtI?$;g-bzzFmSuHiDvAt1py4kPHsU{(5A&2pZAYDY`1FD
zGTK^-76>(H-Hz!4**_?HW0F2FM*$sTRbEI@Ti|UL-M6b<YC{#wW?Wdk_7b|*&>snU
zBh@x9{NxTy+DElL*5JGE+>nDpC7Bvd>Wf&++!uUc&Nr^QQMfNY;81QYoON;JM!(|b
zq<GGHt@1QZ*)P9!UE(+OFidwM#SzG#$P?i?bYJHxQo<9pCrs4aibn0YZSL22)msm#
zrw7Os@?H5DWfk+bH?DJylEcL@8aQAH%XaZf*Kk*AL*dbPH669wDW(z!rJX3~wj14J
zUDCd2qGhQNC&r+F0(VzJLlTm?9P(R`7k^wqE!>BYMaa%a65HJTkNtgy0-7yJlnY>i
zkSi8hd^)rIqhn`HZSX^%CTkhQPz@+2k<JiJ;kUkWY=?9Aj}3Jy5iQW698HCCp=rG7
zm}QqYy1rDeQ$VYwSMU)H0aT#!%(W@UKD(u1>@Rvz5yU5mC!6>aUaNbDV_Scrf5PWi
z*8G?twvdbQ{{9PhK}z_F6s#g-$!Exc4Al7}x28e(h8}J6EJTI@J<2|DP18ahA>fg8
z2$atcyV3l(-i?T_DP3|G3H&3Yz>QR+w`-)Ih>hNISkWlPNav%bhb+vOcH8zQ(pi+;
z5U-5FKZi6s?~-rrA6u0Gz(ra@K?m<pPD%4b;<R?op7ORfL*m+4gF!SJaG7VmWH;QT
zxgk=IolBv;a8^+F&$n6OT>k@upjU0yL4kR$o;x?rIsjduFOP@-W0D)X1GWV^LLEXX
z1f9R_-*ZE@sr#sE82nrYw0}^2*UrC0ZDIt@z>|5d?}I_TjSN#M4Q}z<+5e_jEBD5_
zp!rd|g?FZT^GtW)4`Hw;T=Jn}Hjv(9GJk00=I#h&Voj^W3s2zO!n1$lIXB{#q)F#0
zNm&>(q-DHU#vO9-r$<z~4;F-g0%IuT7wVar()0t|mumwWCSgj@lfcV+?>N^jUIZQT
zt`v^oxwJgnt@$u8`{lri|DI4U&7J4EYu^m9O>Ml47-f!qW02xkI1Fq|A_@hZ={=Wa
zsvnO$ygq0R?c?NT9?M2X-pLOBL~RfkSEcXGk!9!Uxs6Yi0D>2oqaL*X#8YB4;4120
zR3SPS+Cg{sllJz$0pSxH>GNgE5q^H2ebqOo<d&eM-Dxz%Q9>3Dzp;9*y=H94!qxWS
z3eAO&*%xjNKAfIV2^qW$)BFj0O#Iqfhy?yk(rCMVN`NbB-#AwUbC=y5Zp<TTr&EDB
zXy`H8p6UexNw4^Fa=3p&QIODmzng9I^E?Ht4()@<fBz3V_)%~DD2Qbhp-2FX4B<H6
zJa(7;u2r~DPH3qj$|l2^XYSo%XFeS+gQ^^pog&>Mao(_Edtf(B%<Rp>DKyK^cVj#c
z2Yb-A3V@D-pK7W?^T{~-Uz~3V_@EyIh@axz2E%QGO@YKmYF?HPgfjrY0XN%k=LAk<
zP41FC^7mLf(x<rbS*S9hqp!A<g<?`@ruDU3&kBi4+8hm_)=f}E$wShCa+rPapYU@D
z+*fL=s)yRv=LPO-jesyHDdfg6)9uf`B_{8di2DmUF2gK%z^<6B&k8>vUiXjQDCX>@
zyX}e{n&#(eiI9q_V#IW~)O@H-&Fu{%)W>2AbuAh#^*UOZLf!t6c44j-rf{VoeH}5A
zLPO$6&M@PX?bW07Lb-2^jvOQ<e)WuV>?wVfQYnmuB7_QsI*5&-&v<j&@>eA+a3O$Z
zQPo&sA;HcVnPeY%Rk1_flBGy)L{d`u;K`Y0*Kd*OSB2a+X5N3QLeY!f*vDS@Ye;@4
z(C#wL2Tw*0I6qFi!zLwU>WLmJ|A|Z(rD<^z8a;<qGdmpYl8sA#*xqzc$W|p1cXG{+
z>9+YyO&)UQ6IjNSusQXCKWG1GyDW*PF-h<V`Ap)`JhN(+ee3q%D_}WeE;0+BkaFcu
z_8Y%nc#>At(rW-e5AWsR3fq5P;N`?B!?+)oc-DOTdHfL*@|&!O^4a#V>H1S_+}hiS
z2=v}T_QcM98_}!^jc+njdCG*ow9K9RjrP96JjF7tAU9m|@(}meze%z3lscK+0&{sE
z*TrXcxsJ*gX(Pa7i!)nDbxVf1yTYA+Y;xoNdaTsG9BGOv7rBnxH8G52mOvMk75Eiw
zU+MUeZx(KI^=2nY#|Q3S`(nP~X?<MtU-V-6?dlQaeYlXk6EWc|JG3$&!#-dpX+lse
z@_^;j?Od-F&2_a>@%iTIr)|-wkczJ{CA`Rnv9^gfC0rE~a*rXyS!j2dcW2nYeL{qB
z4o;ABRxk$x@yD|-*ru0-612MRChwU$!L9G1?xws+jZ{;nNjt)QRFIIrsySNoO#Vsk
zZ?F6$Nx7mi5b26T9vtTi0Ok>U$!uK=?6+QnOZ%4(@LNvyY1w{u-1Ja=-Wk<PqC#1F
z_!+t8fh_y|CqXJens=&OCMDk}{VcXad^I?C^{`G1mh=%0ye4*Z^(nUT^~!7Fm4v%G
zP`zkLKd~dsZ2OKU888Y^qG%NBjoQuY`ncs^$Jd+c9;w%;byKpaaE6x-aJeV!dr=`b
zaLpy|m*3*+0zC|YQ)!-N*4-|GEK<HDhz4a?!%N4~9YWNr=G|`(_Z`w|4-s(H;1+;7
zH2IPysN@lVSWhf-S&#XWsy@DcxhInIM1h3eG~PpO?m2g6H;vXYYYEg|@_7f^;`Jd`
zg+_(1fTjoOK&igTGspiOS^H}kmX@8~+h!0)f9vkZ``g1{0?~@7q)9#7c3t2S)0;->
zOodCFWBxwK{<|UN1-gk#WT;&t$c7WWk&C-|mAf%DxbLk?i&6VvM93hIe(g?;3rWQ=
zpghV}sWhAK&iWvAYZt93=mih~(*@Qa2IJy9+i_aTz+05S(|uqW%1JTVTq%;zFqa=`
zKZ^G-O`wRw(L2PRbh}c-dB!fH{|m)LLQE0R>$KS|i$@B|gxCF^FF76a;$nNy2`OjK
zCr~F@0M~SI3;+cnMIX1wUGjK<3gtK>t%$fCpq)q<j7)PUd=&IbI+ygP#8e?<V3Rg|
zUDg{4A%j~dpwG5t=_re1N$=uTMN*}J+rV;o+wNE56{$$Mkv|~n^IL)+V)<Ru!0mWD
zls;kXDk|a*FJ*mnZZCH)?+PoQN*1b&{N)rMf_;26&!sKa)ytmgSvuC|7b<Mm$})Kt
zQkE=pSv>7uaU-WDt!t4YpSrG!ECCy<;pq3=k%y+;bq1joazSwxxD-3*nor(!H|$DF
zqPChJA|0wu4mQ1nq6_w~^kq$*ZS%bFJwHKzsdAn*1caF^{O#Ylh$k^K?n&=$%P3No
z1xH=fgzw$C|D{T~?>@qB_IIZ{+|d`RJ;XKXHi{(NfY{GNM<AyB@R!KF2L(Dp!T|_W
z+IE)x*~_706cdI3DMn4T_uZ?<H)sxoWUL`jj?jZQu6B8Cwcd#la6B=DR6;SA(H(AE
zd8ne&)7i%Q*Fmsh8zk>>o%#pv4e<cHf929Jm}l<a?S^}O0#LVJm}j{!MM+@P*H3lz
zn;zhh9VPSYf!UT6Ych=_jU|9RW~aM#rY3*8(9yMI3~GULF?}I2Oqa~)d2bx>%R`MM
z5#ueeL|l|_NmUCKn-|$Z6E$^$*}>nyO;sX1{awt<W%i+il@G^QuWD(#fIo~$?lsh|
z^5Uc1l+`H&aS^9IXHR6>j6falM6Ib@!H&!|XQtRM7pT*Qrx&A?D6P8CbR2A-oga9w
zbyCI5TKgos!l#P)tv0xp17J#WS84KIb&6ehc53pcUVud)ssO<=PSm(0)y`?5<F$Vk
z7wqQ&cJQ<Mt1KG=N<Ggs1)6n?U7Z~&tvi>D1uN1)O89ck!xQY_7d+~Z{xcqZY3N@}
zt_;||g}wc=a2B>4KB!9J3wAWF>G-Q`=jnPWFVePZIJT45fP`n}9c3F_s!lSdLpqg|
zSc*z1M^M_+goSpY@0rGRu(73-gexh^EHtNdwf`&BID#v?RTOJS4Lb9{e;l&O_FIxV
z5M~7n%IkCb7y}rWsj2t4yZ+z<?xnY8KovFKk)BqCW?X~lieyD38I%KiXpAo)!(`HS
zyTZnb95Rf6r+5R%F$fNtW0p3Fp0q9XwP9+~JA;A&N$bKPi(p<JX}|IuMLp@I{}3lj
zVNO1w)S4Eq>f;dNOK@5%fk_bZdVy>6P6+bhUgI(0f1m)?$KA0)!3HVGpcg2%L;3;c
znQx!6jncF;0j4EhUl*^a<*?w)E?(!-8!N2DN}wNtu!Z;n{s@K^f*+V^wylh;^WCR)
z*T+S@xc=c^-Hs1KA$_6*3dGl=q7Cm?c?E9W4#$QDB^o#hmHeG&BcGofh=6GE@%8B7
zrnxvQ7w@}lM`Zl|>6`DW%M@g;_WL;Up{K235|}4Zh8Jx{EG7?o?a%I$y8?+sPyqE7
zVAI1-zkZ`jpQiK^prkrYgeacu;2PYhs1|2qo%}pM+i93P%lDV(;&=tI6wd*vw>sIq
z(m;#n_HixWVz_JLuO-^(j&3!ll7CsMZjqxZv$tNUBu#8_O>io0_RNT(_U&uZKKn;&
zKs1Nu&pHll*3^t^?6DiPLIf+t!BZnb4^=AJRvo4y^b+#2abi0ew0O!OKm;`a48>#%
zArk-uoKkI<EDV{wI+K8<9x=lGlN4Gucf$$`G7&q_&^XC5%}U){4OF3$iNJ$LXq*3&
zoH<45ILr^0xq<0=16HL9mI=Zs+aqI@dnE=n<9NlSZ#jiAtv`R^UOX`PT?zPfmbr1I
z9FU4nYf85o)iyK@Slk3Rpa1M0^qvsEMGI})o$3hqfHDkv_}TaFw$y-nQv|^hl`DlI
zb-?$oWgPxTXdFwHaBh<duKLckPYc(!EE`lloJKi%YGVj9e{@^^^{2L&*Wq+Lke3vh
zuJ7J=jsHtkT^jKRM#<t#*phO-jQ-ATIzV3*H(JP;a;h8X1I$tT)7`R1(i>d8cPfQ+
z$f~61quy|NQy|s9^2xKbKKs5gc6*!j+1nbemC=MIChVDaAGLW$sHxE86cqxoE0KSq
zPwY<n*4*?fZc}}W1P)(;+5Wga{3@?Zzb|0}niQ6~MT^theyBZ>5^5mnVa3~Y-ekAW
zPhWq5=EOkRWh3hYQ=^t?-d<!sy(@k9pnZ)}`SP?~Hd#lRr4HBtJ;ZQvv57~HaR1KG
z{4p8?HLsc}F7D=0F6UL1AYj8Jv^Bvadi@@I<|ZYIGgPOfG25Jfm0jvvx!?(EiqbE8
zTtVWATi$UG?o?M0LVIU%N#Ug8T|;Uw;LzChM)cT*$+_32NHU{#rX%0H`u?$IM#yxu
zrx&SOERq@2Jhpn{*k-Tl7-vQsbhgFA3)Y!95IC**Wv*FLkj2>R=-|CN7P^%8!_g6E
zoxn^QBODh%%vVlvOI9k!rS8+Q<MZD=_M8X9)75%(kcDeMJoec8_BjYH)BK}j-<cK$
z+ZGKHMv5o`XcmVW%8!oydcF>m<)@)3j2?3Qc<`q69=EDxlTM3K=Oc3$uR(-&%_?v9
zr|UgIH4Hd^dlbRnl2oE}%KUAoD`~1HGY3wc4os}4TbtWMrfUZ#K5q?L3CX$5HTH3T
zF!Otf8bPQpHH)_J8bMq{=~`vE!h4zpx&GV8#wSu<yh9Ir%nPD4xQN2P{APr$cqY_X
z)Gf8oH+w4Vd|zr$&ZXmkBD@-M9a5w6)kAjso|N?$t4}BV$k8#W3Ca-)%rism@DtSG
z!5OMO%8wpdY=1jLM~M~K5o$INBPO@-+sE$Tqtk{;2aZ~qMZW!etKFkMv&h2jSW!_l
zvPyKRNJ{6Mx1Njs@9QK{p96Ff)gJU$Wl2-cN}*xfX!)$9{m&wJ>Kcn&G$D*a9+Q38
z3YXqB?dV-}BZjpq6m4Jghaww?#9OzyZ5=dhVU+l_7~)S3MMrdRe84?kmNq$6uWRec
zLgYYjXMULOCS9f@9HGi2vT9I-CQBr=`hA<*GSFnvOBx(IC2>A8%$A+D?O95A#ZzoK
zYABF%*$9gCaU=_wp0c_2=hn)tVtC&Sssc0l9sAnlftr;N;u6zl;RsbPv%CB-^GH-6
z4hh*tC>yJ1N0UBMsai%Z0?buklNRqpTCXgL&Y7HCQlXMIbtr{=(x2zr@k9SVB?B64
zJz<N6sJ1ohHlc+bT1I&5J$9o+rczS)D=0e(Z=YgoYW=ZSv(ItwE(j&XILI6n)PyPH
zt$dqp^oFMCSS)SnMMp!cSagmsSgv_*fNSLGVyr@<dfdSgOeC{l-mJDajr4W55V|Nk
z!l1{#5)3LVevi@ajN4O1k(6hON6h$8f`>da+`aL#LaXex-bEs?AiWdKY3=Rj4+oqi
z?#N2wg27v>Y!j~{!BVP=7~*d{dy{+i0$plA(Y4kEQOVlBZ0{^x7i3GimyaR1qO_k@
z8~9`$j(3-yoR)Sr<>+-TB!KvNw>`7aGpNC<v}Y{dzJOA+b1`rI6S><nHh7Wl*e^o1
z0+A%$Tp2lLe9Dn8DB-&&n%1ImN%8`Z<AGCcMI%+~;hL_}bXapf`8b#Pre9;*Hlm)K
z?q6x(CG;Cy3T9yVdv0AlO*wOTOL8|9Jcv3vJta2V6-S2_wKc|+f^Kd+^$UB_NjivA
zAlr$KxrKZTGwD71(k5;3AU7RcQifz)R)Ii@Q@^!uHVF4?&*#@T9u^C3<y9-~JBNfZ
z2}Yn33yn$}%i~Dwu+I(B+9!UkPdR<5C?3b^{r92GI7o>zoaI#07twT&j4{fR>F)NU
z()%q{c@?s5_*kR@v9W+aRD6B?La?zlkRj7QEyZ5<!#-d?cIn~9?)XVzKP+$WlFF)K
zcxKYnl>WOb?Udyq|GZa8Bi6Ux8k-ugqU3ntf3jo9gglz;8hslQ+w}F}5&7@Aruj~B
z8A1=&axes`tYq4|?XWNVE~%&!CTv_94U+x&beX$yjH(l|q&t-lrD_5tOUb(reAHcd
zf!aVpqtu6^h#2u|?4xhp)Z$dH1jw3$>A{eg+e2<~RbQpO%n)lU1Zg7So@u_j*e0zH
zd7;FiTytPwd(Vb2l#nvYGao+^86Qs>LCqLZMd89=F(MFMp-*I*n-@k-dO+3N`Nh5e
zLJo+<k^83UUtkpzDgZeHUV16|!3SCah=GC7NLiz|KY%vapZ&A!HJ5AN3~OCe#GMb|
zgF?tJ_NZB@_vOL<5CU!ga>^dDTG{5p5A5+n)O>SOO%8X7p}xfYwD=ote<=wh+79JN
zGx&Zm7WDvl-1Ih7)i%xxT#!Z2+w0qeqhR0XMULt4mYwbyw>(J~Ipas`%HTZ8Httn>
z{bhOwfhY<0Yf4Ts&8ahNuOXr2#1mL;3{!-Qm~Bp7Ved@Wq7#BQ6319*^2T%lK#FCO
zJ?2x*WI}9Hp-@lsQQljQ`R8f(>p9AM!*}We^98^QE)~QFb7Ed}z`v;?uBvb#vrhD{
zIMV33)-DN(0`WzcoeAB>3@@{*uGip{9StrAS5^ZK=}F(>W$V6D6N2Ivv*ZsMZT`*-
zygS7`;}rq<JsvU?Ww1XmB>P`$=TFsyjLc85$dc4Rz!@NSe;(~l{yH!z_V#Hr%;Zzt
z8Q!M_0RmQ{i78!SGibAxX*MiyXB`=uhxW!kOVEKR8e8_V=iKLq=umJyOGcNI{6G$h
z^X<FKqW@HcVnE5l#qz{L!$7URezf1^0pgU#C2}GNjV;HVUN8Ea7ssj%wz8NGnQ2Ge
z7YAD<2K9?w<a#sB(jQ$%uWhLd1>Pm%AHdgA<U9U&7yVL6?|e-F$8!Ce@M{q_{?omD
zfV#qU3<byR?f19=AE*Ri?~5cl6<&|k=2j+4lSbE%aE~=iFF49$-r~D?tRe^QV7BSh
z&%L=Rt-(ySGw@WrfoF`*R$k&duMT5vAn!A;sA}NS|8=8VF;iQ|VdA@2kq`(XEre{O
zm7X2xKARRoHVV^NN$5l%8z=P!lg7GtAJHh1y<6Mw<<?_{+J}!<zn3Wrbr&_{-CVP0
zfo(8A*(QQ^a+H+|Jq~P3OzKBVBWq4d&!m$N52o6ya{9olryp5~d&vs{;sNv=Bkksu
zr$9QIsJQ(GyXM}s@@tdU;yY;ZmI~+KJaE^m&U6coPs`g#Xi$gv!D2Y?FZ=gXngG{G
zvIISh*e55HMC@{zJ7YhUP!$SC9D)Ts;blj(c2lOL&2FPYBDLHZ=Bec_d!zSC1n^O&
zADfs3SYTf1WRLtHV6%xR611d3)9VKN_?n<|kPxPW-SRR>_Vk<_l(PGXa&Qd05(<o2
zS#5ur6Odg^K&q1g$|5i{4Hpi!cY7F`kB7@QAhy17Lm`)pZEpK63CYzSWcS9Es;(#P
zJm0dHZdb7hNzfOS71M55d?l9I<At^=IW8A3b-eH^$+<GO|65`o|24cxTS=E<$4NX1
z{VKzJdb#biF{nMncBmL-A+;BnS0~uJru;wZ?QGOdN%nFt03(<g!O&P9Rhl}PP7&K+
zebARs%3+XXLH;De+;x$?_1*xs)rd<;eW9_J+NNGsMQI3eHFT=Ij<t8}r!UE}Mh#Vx
z^3s`O!XvhGyt<gFu8g%f;9%k*%NE!Hag|r{3H_<A^G6rsSg?lk>@D3x4O3$BU0mho
z?Hm6KN(HT@_Skx+Q<nIkk508|)mpv8^9T{lhcRdzWSR?Jwda@Vl^EMtY}5`AUj$CX
z{Iz=4wLDg>D%aMOonnkC4s;XH5cM6Fx=8J#_|b$7V&hnu_a5r{uTwjZv1$)`0GyR8
zVppGB<}TWu)_r=CD5K-JAnK<$JO+bWsxR($<KNVVbNnFb-C_|(2QbG<zuVF+{Ytri
zVhuo4_=?o$qJ=RaQkfNK?C}A(GcOO0w9VXW0H1x<z{rU?VW6fZ9xIKt_R1xZ3*#lw
z`{345wKQ#H<nF>aw~pf?G`b*cEHFn`MzZ`U?@%W;<P|@9+#cy;LvgY2_e#f=2d@P$
zOz^e7pG2NJTlqjNt~&ZTP^)jZosJGNIX#60*`NFp{9BG-4#{1U?fjW~1j~`7mH5K^
zfrn?FyT=~+M^GQCA>0tK_I$=px=%0SNFr>2IWG;BNRDvFC!*152c=1Jgeay9B_G2_
zNn%}UcD8JF2kuc=R2-8;ia3Diw&du=DIp;PW=d@|2P^j^S(Ba;edymn@~(9u$k@jX
zqoittTh1%AVm%UzQlkr#j>r+x%(M2g`}JX22_(wN%v1KBCFXMDG4|O(X`k)iSjsHU
zC&ec^#JT3TQ|+is&5q&j_~!4bG*28OeZ_ZwX#d<9f~J<W3IH<A6&q~N@8Sgju_Y<w
z|9rFZJG=e_4Vy5LFzmn%YQAJfKKSA0=C<04-|)jR`>IH(6seh4$JpCEv|IaA;Y&A}
zWXEmSPsN2bhY3d?>-Vll?Lkcy_TBrgd1l^~wsC6(jJd0HV~L4Ov7evguHWlji4I%A
ze;y5%0=b9Etv?^L@87Jr>|Q^ZZQh)1vk&}#elXiSLZ;ro2GamtV;J!j$PY@}e@C`F
z6b=c{cxclEs%R47x9+^(&Yu?!r_Qk+eKh0X`R}xoriPJ3!5|ScqJ8h3_SdJwu;%fC
zhsikK`rW7O3-9YmviIi6G;MCQs}2vFCkSqkRme02bM45dbX74o9VGc7KCwUGv*;R-
zX(oSb+pP&J!Atqb^l{W8aq+KhlAHe8M$+A)0tdr_O~>=(n}6@IAHAi|!;+K?DVspg
zF4%a5ruXnj4_{zIfl@n2fwGo)PvX{3Zg8%1&|K~j<eRh2+N<50UW*y~A~6W`hGAsk
zq$G-3BXi&+yZwe>@OzV|&}}E&BUCN_=l=J7U|@(NENNTivcb>KGo?lD+?|0~q`_7#
zPMQ?MK6$BYzES@K^TnEvOF3qm{xj^eud1|Qt<!>#;)GN;JbqeW^M-*h1nM<%1MnRh
zxZ}MT0of-X!o>>oka^59M<3^s&P<(JvA0`RSYZD8-M;>ex@Gum?MqOY@+S&{a)j5f
zA<uVh+S28k1Yx!k^ndcqr8Dg$Pj=>I>f*fxqU70jV#>QW_^fb^I1Q`iuKR4I7pLJ$
zJtg82vFzTdRrcYyoNMh-jO~UBd!8Q!%m8B@Dn)w4{T|56F?arHZ(66Y1ov)LIw)pS
zL=Fj0;HJxMkAFjW-wE+&zzJ$T3eCfV?aBVO%wbKbD3efNRu#Jw9@L6KY(i(R5-xT~
z>^r#jO#9Lg!Pq3Yk<tk%*F61}{oe+)j$nU#r4IRc`<1vAzPTM<MB72=?W<_M?Iq|j
z<{3ta<iI|vcD)Z)MhF|TRVfNjKK+}WD>&?wNp_T1<Ye*a(u;=zSm++l*p-(A;yK0s
z<tPOR^-zfJ3+$C8VW=D5cNA(>oOV<ojGSwCP6$#J67s|p+~KpD&*s@C7l+F{+mSn>
zb^u>$w!Jzo9RUE_x@ZVfC5<&QO!u+2aAx3}%jSc9QY<YZ5xVC1xxrp_pLUk#CE^H#
zCXDg9IWO^(TEu%~%H{FOd{+73D%)k>gPe(b#@gAwE??0T3I9MypsSnz*4h`IQ_e)~
zZAV|XgWa_!2Pf^KqT(WN%`gRIsCr)DT79eiDS#X_FBU7^<1omW=ic<?dE8P;`2&st
zYL;#Om|^F|xsA*ZfQ%>l<5IVH!d_UV^iu9hVP6Gcg%Qq9mWlL?u5Wa}n?*@N>S<p-
zd>mF#f(^0~X5_*4nJG%9WXX$`2C$`Y0kcdr$)@?5H?FE9O~?26w3(fHdr+6dL!}tW
z!cnA(T1=weJ=@GZ)ZRT^{|MupXdyUF3rve%wy7u8FpAGv;yLf6)$!JPl-Z0gL*${w
zG?h3NC=BHqQ)rvbNG<$DMf1AAi!6oZ$S;c4`kW><@@!xZwc$i0o}&&i*9=-}n{5iG
zL3h9!)-re`ZVLXu{O0zs69X&Vw+!)L4Bxmg%N&zt|0+|)4R&KMq!Xum>}q@8<N$@X
zD;mqHr6dSGRnwPjpJ72Rj<N)fVP>8L41A5n_KJ!y6ljk03q$~Afjw(n7@<7^teC+9
zgy!PDy}#JrHbKYuUM+{Q=R#FehB^Op`^}b6)l|!<;)Uj!uh!Ws2dV@e=V9HJ5!t43
zbNiTg)flcdLAX;dA8nULb%Ml5ltL+`+KA#ECTHr!Zo`YAc*om$r~v}Gh^KY%g>KJF
zVYGF5b-659raap;JkGuOgMu-vuP(Hqh%uaqs~V=+#e;OdSs1O#SsDIoNW@xbb}h9d
zx9gYm*nXvCj`9e(P+XtjhQ1xTz}2Y>$6`I$*R^>fur=!pb9j{Yb!RWqVQyUOEToV+
z%hbEY-TJQHoH@7%>{bFyantQhcFZI-J}i&!LYI{9Pd!<lIcu|>^l1RPTa^r=cM$^w
zrQd9^(>~S#ZYFvL@nbo&kS+V$82jgZwRYn9!?P<9LIpewcpsVO<K^zCZGjU(f=qlK
zQX3%oFTd^%{3DEXqk?1%BQP&v^1S0l{1iqK7$G@k^h$U0p1=s{SxMkLO!MiIEy_0w
z*0}fTYvmrzP(9z$&s_JSsxm`uFoEF2?$I@EQV+Tmjx3IVpnMdWYmY;EnZp*J|5S8j
zR_eG5D1PT2FiIdU(N>3$M9S*Tv4f+X4^4fiuU-zmHoT+=rA$g};hcgSJ#%5SUXJep
zF0wsTfRZ+*fPgEH%#L0jN&VqGz-y`wB|9-f6tR@l3PtF!9$JyW$xC2ATx#*5m}Z+F
z@36CPP=}Mb?^sJNDaU;ANGShe&_mUNdsKUh0TjDDGjpDu9`A=P%GjKzeDYwbv!p0z
z!F2mTRVWjvWvU@uJz?*RH!7(Ur!ret&Ji?wSIZO$rQ%^VA2(}Qq~NR&J?|qxCJeiI
zWMq`@r^&ie@=nZ~L!dd=bp6!5;}c(u3imq<N<Wileslxl1RY#OjWpS(<2SmQCQTW&
zolVEeB1C0bZ0Jszm%nqV$+|R{;Wo5MDl3ZNa(q>YiY=zuOK;YBX1vv?s^Jx51fqo8
z%K6c)(Ei>i{qK9U4pvYwvhRTMFrKo^H*eX;;{bY39B{mSJ{>Hgw{Ed_-x0rM)j&Zh
zxJE+PCv4?h9pRX+n{Cc9N4;qu{a?sH^r+%^3~*|`gp{V!H?~pR)Su}2%Sx)Pc8=*x
zS!OF*YpxuFgf>ehHdzodY}J{4?H|8{a|%#kIN1gANDQ*laxb%=Y|%k~x*{vd@v7PR
zv=O%cwBX{#AOZ4pobt_v+iO<_p>x)IOtXy3xZ{oGHhoU~vP6M+Vw&6f*_E&RE4$WC
z-QsKB^^a}VB4}9o1ZB*s3USnoSz}*qqe@mxfS10F4HL&_nRDK;haMN$0_}tv7cQ1g
zB#}?;o9)w9-GM?)SJHDRM*2~jypYc?Zs(doM%%1O+}4yi=<HGNN9pT)yW=e1E0|j6
zz_Aj^Z8%mx*_|2sM1&W$kXt~hhySy;<a&Za-S5Sv)o<E=<J^X}WZ6J6V)-eG0tMJi
z`r7_-f!-X<n3B4RK|}!<W-|SQj&v9F)jT%wXn?|Gkx<w8tzCPX;tm*xUMSy)UJQsP
zDb2&rfB+ZT)VGsb4o#8(K?01=f7o`5SMaEsyvB?y+cDGZyH|vmu~y6{*FD?Ub&c0R
zVOa5EL-Yo(Ki8}p=?d!AFqsnj@A9-)qC*p}Rv}9)EPmK6rd3zB^si8`D>Od;u^7ZD
z8&Txm`a{D^mU;&|aDgwv55$SWTm0$+d)-T_T_b09qUQyI-`J)uR?myEy2NZGg_G@r
z9t>uE)pW5Wus!d1i!^|Av1C#^vv@`od5sbYtHH~!xz85(u)0lKDJ_@qMNZgEGE-p1
zx42cmrEgoH$`sw@Y$<_WDIE|pa{%Mbi$A*Y3)2TZ1V0AMs;I1LSV@dF%ZbUJnf{5(
zYOdr#VkpslsO0#Do=iF#D^>M?TYZ>@PI%QYLZvCN4`wL61@q`zFFGdYfa9%_ZvDwt
zTZ1#lq$k-yDM9{FGmKisF6R^yahYb%?#Rprfw$Ybycp#Y5-osS!#|GniE5&Sb09{7
z*Dn=2Xi$UTTyJ`)y{t*NeT|G|w)tv(WMRCyl49(!a$|m$yZ7A~X>p_$I$)YKXNqe=
z>{e+0OtMp>%AH^&p$Le5KJmZE^bMg1r~{Q<lAzB=*v|}aY%l*!DFjS&-7<cd!k@UK
zJVlc%A)T+(aMQ^T-}#Ph?(jDPAv!KHm~Zab?keN$;2_-aW%%fl<jXMw{&Y9{o}By|
z_!cZ)aQi`WE`h`Rxz;@rXR*>FO#FOajK$J)g3H*gE}UHF9TBpb>RE9qoyk_a;@$tB
zdIPrk*op3RUp^wMsiq+^F7o+n+`>b>j0J46n1Bd01U{1~_$biH>Y}x5@=KGV{XANW
zcND8y%FRW4-<;{9NgYxb^};a%QASu@*FDL3G6*-XcSB|?Gkae#iPX}rvUf}gF-f1Q
zp&FA&F;VLu>>;;>fjX)Jxn}jh_V>raXxjnGi4%3}9Fx7-mQD>LEk`i~Ih~J>y?uM0
z-8wtvsU*#X*FNd9%@=3dpX!H`J^>d8dpPAzJ7#OZ#d{WwR-O(Hf^5v|``PmkOHX>u
z({E{|K^wv>0L%<?`|EaE+w>Jb#ztz$w<MK0>BrdvTLju}&#GZ?=)HY|)r$}G%T>1M
z%mC6R{v=L$^kO^U@bqh6R_1u(lNOqTC)tW$;{dLRO2%%Aj8cyI@>iR@F#wdcaBLRc
zlRpafD?&B^ya0CuZNlRbQrR`P*&7c@FaBNGzT$Nd9)|l$gq-!Ao#ER@pwrj^R&<3_
zyo-2bo~cfbzIM0DG~)2IDyybDk-rph0(WlAulACq3Qn+g!1;B@vBn9lH*RpFZ&$)U
zCQk)d1cnh@gJKU>^6IDExyf4W!DgikMliUvX$05%<2P5bR6G8)?j;T~?heY4c@#UE
z<*&FAtqxc*M{O~AWB)u9EaDIkneRSp9pr_&S5*!NvX7l*XwTr?KJbnkl&wNSm>v92
z!a7nb;L>c7O_$mY2Zquj+PMwVrI#z<Mzg`T_`gv7UPDsFB()i9lj3cLx($P1$lauQ
z_C+_@ZT0kS``S8uv0-cM6Vt*<-#gyVF(3SBw|lX6iTFrO6!`=%P%gXS=%((gNB>`~
zcc$>!HMYThdVgLuF^C7#oA#A0+8Ba(N^iyJ5&Co6U*5704h^t?L|<`dfc;4ncFr=J
z{!n;o{Ki3|YJ!WJWA1pz{?RTxP{KWlv|qIcj0pFHIpm9P=u$}ne2;zLa=nN=KcpFz
z`IGWg$RveB-0DZPJhgUBD^}u+yX_PIYy1Y9oBN;_0&dj5!!79=3X*$P4If@TT0nUL
z-gC{;Q{4Kmf+`_SaW$uHLd#9eUd{`4NpVQI){foafjwf^$E9u)`zvOf`=4@Gf2<{r
z81BTwRFDIf?$n8{^Flot_$1;J4X0{(5Qm%O+~@usIe6v1_;FN<*SCW=#!p0a8}xf2
zW1DMk{5NuF&0$$H1ky0t*zC>wxC%FY+3rZEZTlEv3mx!p<djW1#FmDyJc2S2YIua}
zJ8_*GG~|HA=c|{)VW|ydp{wKL5TiWzh0AOjszDM?Ej+r;U%Ix<g7{JlX7k&Y02_4Y
zm(6Z+Tnh=hG7}Sq#RwID=RR(tAt0tCp$?JKp{>(g+Cl0%;nu-chxHmZJgzJIvsHmR
zWo4+~YEvqp87?UH{o5Yy<uwYBvhqYFQk!kiafDN?<q2-pJgw)TQlSm%Ny3$+b6TM}
z{sMRJ2k8r`oWNb`gp4i>Jo@)YZaLr7?-m)Et)a8{n6+`$T(jT9_S502B@Mr%1L+3L
zA^m=H@Sz`E>dH?EeS2eJ8f7V*Ph%IlPn&4JU!q$qS&jC1rfGYk?Y&gB$0e&$Swh{K
zlmvr*Z~EK5@|ucr3d*LXV;3QwEIyw=N&6jadwXY*W!Oo$O@PhFapagcuC#q;Y2a6v
z<ieskqqXZj$&*}ayKGtJ^JM$k=J?u;yKDrt`z71EwuX_`WmQ5H1^ERg`!UjQlh-s;
zZ8AZp6iSCCjl;HXr<?noHbiH(68gI4nw-zvl7-sWm4ky^1O*B-@GD0~4OfrJ-1w_o
z@^NtWdh^AHF+ikjGIqG@pATJR>zp`f*#7RizM`Z2AV(RocMhe-dFGV2+zsERt)QHk
z--|b@61P9kEIm5fd~WDfthkj2J9r0hgpS+Yo;Sk}(z*uxnn#fZziqo)`CjNJ+_r3}
zWWYz)2#d2T0L8|xamV-~Kv~=60>D8OFQg8yz&t+69vK(Lshw%am4;+j$1@Eaasx^S
z(z&<V_8LqHp)ywF_WNCH-8~*q?7;FtsUXDDoa{*MUFSYsq3l%V1KP>pa;hwNe$mJ_
z>mG0u|IooY9%_bJ@`Y=2nC^A?aQrg$S4<>S-lt!2z1|5QF4WsfNAnyrev|7N?`Y13
zqak!rv6e9Bo6_&ygFUsl8CO6<8v*~wAi!h7kGO8NOTO%Y0mqR6>?N-;YE*^gT#Dft
zY+8<k=f8B{jL^T~6V`$bAz6aUT(^Jp%K>SVrfGl8-bK}#Ql&r|_R-rr-KV|{J8#-b
z_#ECp7GyBP9Pp#NX+MRncv-l9boA5;=fhuhmA*}P?~7pNP*WP~dIyz{L-zDa_ecY!
z^5Klv!6FHO{*SLS53srV|NlvnWfqCzqq^tZcB#xhBVp{7eUzkaFc^lhjiu6}Rndl$
z(xy$4(4M4{Hi>MdMWmD@g@nrQ@p_$m?%Wx^zyHda_r34?exLJNp0DTY`8vI8v@kEZ
z<(10xyTmsLg7cy>w0)2}<)^^p^GJqg8e=N{xJUNAFpcHx(vT!?3!+b&S>jx?CsUqj
zt=zzJ{vSof{WrU>A5;Dx*RaKi{^c5Ov9y63{+M2ajZlowPe@dTLY+Cb)vnNz)d?;f
zK@U1CIi^lWyYKDL6M#^zpvEjoJe}RxX1*AfDz*z`o9t0`(USpiQqVD8Z^heZj<EOo
z(kBOj=xdxe6hgAdG(|b?+IR;pRX|@3Cq&9JIZa)+_~`9QMT0D}sE2FuPAD26X)GNT
zLPp|&{gUm@jynwsDnrZ2=Aq#O!_fDbZT7Zs$E{bgQpN305V`UTSFd46&|)GAlAo~)
zyL|3;oT=?Tr1?6;E7o|0#wA()*>Ac1XL*gwUWh#UmL|xiB!sukbE!>KPm>2wvC@}o
zekyS1eWi{J$`zv%r1&FE+D*(UZ@c_<I(%2$0NgO*dVCdpkTlb9ZlvgY)fmIE94fw&
zW!61qS3Da)(AH!)Y<y5qX-qq7uD#`PU1HaCE$qiM117Jg%b1`>C%R*IC9il|=Qvb|
zfXGnEQD+@%=j{*kFfI}`Zc-<JA0YT_GiF)jBR^||J;$*~puh?)nPW1>+Ly-%Wvh5A
zN}B1?&Yt>I*jtb=MwJeUh063b<(MbO+7BNKyGx4CvRlD~mUgwd&xFf-H<S-MXba&H
z?J0>|GgI3_xE-;v`O>QEhb2*UyW;Q2<%7e>Bc8&DqA<8k6fLl`m`v#~5r}s0vyt;A
z2I4(HJ*qvl(c~d=Yua_QJI<^1^*p7<D^c?jfJDto7!FDW>ux)3V)Ek6;F{eN`h}36
z24MW^c6()y<lCmxP)|%ju*MCliZm2I@J;BjRipEt@iP0sS`t4f9hQKN;^6t|(Wf`5
z4g+Xe4=h`;R6haepc5~)-Oo}a7UD{GVP{bX_Hz{AuSmz{Gksj|>4Cq}qjYHLFgAfK
z<(a~6?yEU9u3C8**(0{V{GRUoINaEyus?udh8XFy*4jBORbL-y4<kKJh)v|Z7{t20
z?f8M(2EbB&1;s9s&|b~$iI;2V!C^2#xTn?a;5QXAWVa@Qu+-H4=l1mqAnawufH)$4
zA#|W7ru90z-qV3N;}Tz3ERQxKvvcnK&W*1blqM5mT`C!8eCLkv{*UXVc0QmKGbnWq
z5L~l$jl0x0M#HuU$BsrTd2Ih1<hE=}>Q)R8Lp-OrQA`$tdNjet8x!4M2a~RTN7s>>
z$C>+X2<hSGIovzg)jIb7ZUWCR%lf-DM`{ze*n<ky=`2&_MEmAxp*npCVK~e5scn~?
z7j!KuBd<&WtzobAPnnk>6INm;iAfM_h-`axi{w8TQw!V+=Su<!W)N~T*Y~r}e)N9`
zZNO?zt6?8psP7KLSIL5BnDcwOZ{G?Q9M>P$i^TT3R_><10{q;%R4AMnZ)8nOQdjre
z+j<o*s6%Q0{uBx<@V#_s3ATrX#iUK{$!eh*)v<JlhU!v|$~D_JxW&F4C0F}Nl)OCx
zk?AYl_~U&3gSr}KSj;|LqAxyikDd^^JVokJ$}<!Xd1Fs4c1=>XM~vb_Cq#$_Qja9S
z!jL|{*8csPg5Z45h1m4aZA0!trR3V7uE#u8_EBeFRvcnC3J4VFE^zIx(7~R3Zjc0`
zJCtqRZ@=BzNlO|Mo{cD_uP#ewbDlQE9pfVbLL|?e(-s1WsyUu!%|3U`QXk8P%~`G-
zo^39_%2j_(tJ-2KVe*q00qBGE^7@afV>hS7vEF!gK$PDs+0OVqo*jhFshnIwFOyou
zc79V61mF+eZmi}7C7fh=`(pd|TZ#p;*s%~ABq2x!+EeI+xHoSIFhr{oCXQ(OhJWGR
zx324kKdOt|X2&AnD)4BSAerX6jrR6>Ninh3azv6hQGc6#D?T$XvD=M$%w=V^;0^6|
zW7k(|fq<(x$S!H5Ef7Mx9YxnLqhz|46424zL$YE<wTd=hp1g2r%|j%Z32fFJ9UT=H
zJi#7HRY2*rnP%0o(FsXG>?EPtniTyX_i~D^bZ#T48o6l}`zg~L^KkTo7n8nC(J3Vf
zlAw9!hR5vHe*O+;tQE4Jh<gfnh{^>qMA{Q}YP`gJh-_RFbJAn>fw7?k9XjEOla-^D
zWwM{OyRP$61SC($cFE?K>?qw_z03XkLCB6e753$r$qInwx%*wgO3jYgi-^Q}Ng{1?
zY_r4Nu{h<n*O;4jnGrq<GV)naTuq<Jc4MEKGKGaV%MbT29nS*%^t#=+RKYHm5`i#+
z=C{|_8J^9;n#Y1<LvS{4Uv9T-)2oQq#NKIVB+7=onm#YO?u~1I0|ZI%<Qr7uwwS6k
zg^v%Ow1fQ6Q66gRflRVx=7^Fxv_#Ngg#9KyrKJ_WPiP+KiZFt2q%C_SFwnXef{ZHx
zg!r(|&9>t#&DSJ+q!2z3f#hL~A2jIS5V3b&<6b;h<41Xqv{&>gggi))j5WL>$4&Ed
zHpD40j(8{=gNv{v_x$4i{UcB|)b101ON>N@gPU*pi+ev_ut(q~;M}+~?y3G-*Xt;c
z%+RP>NYLsXsF<ih>+Q?OXc-erlaIbN3?ur<6}-Il7585~g*8~iipJ`^EK)fvdd;=;
z$rJCSpqMEVM2KQZvdzgS+IkIwC5cNP0x0ksoBtd6^Uq*Q&^hvhep%yXUi53^wx7a4
zX-yw#z#s|~x4V9@{e7}VhjF(Xw`}Z?UYEK5z4U+4c_86k?uPl97d&+jHS?x@0LT1j
z^6Zs!ZEl>%QE5IHJm76V*yQdS_FyD9c>RiE2zwS?ESaXkiP7`cB|n#wFw!A@cO1|A
zu5=~wK_2nawj^8`=9vC&`4#`ypqX^j@e22d|6%NjR)PX~m(BDMJntBWEWM!)hTYa>
zoItk9B*tlDey1&T|2B^+^_L%xw47Y?zj<!V+2L@sg+}8AZqguMnx&KMgYRh5BHt;I
zIGi*2Xx)pMX75*SZ(PU^)PIObTPxSI&oge!4=UHkiHj$`bUR|&&KPR%xIw!ec?A_=
zH{!7`AGI?*?8a&ZQR7@wZ=Q{oC`*)RtXxl&mzH1RUfifn@0cKCj{4JGu~<i5^S^;x
z1S8NE5aSazV7I{48trmNuTr~(+coCE0oyE3FB0$0o`^vQ6!MAd+kRsgyb~OJLI?@v
zrP><zL#)V$`ja0U368-&UT~9Z_CY8uwlD41e}u#myzDG<X0e+#Utic^wsD4OdAU0)
zPCFwW5^=wngXek>rIQA@?AOEf?TSYZ21~?vnAeYW)fR@CFKQqB?+?3Bn(_<!xL+R$
zvreRyio^~sHlH93dkg!xZ~aCi?DQA=`7K&aWrPcICI?=N+`l0VG)$BUCiWooUHxCA
z*$-hnVE(XDC1B~$qc7J*%BtzGL}?TZ9g1GnBAwo2=GGOsN1oIkM*c#o4;V3tP0}+&
zgJXAX_xtCmd%7TJ!$691npHup=|}2H#CG%D9c{I)#P$<kMf^%_KFvHm*8b{;Ph+bj
zOBf@<bLb<a8`sW${g`H##0F%S(18SDfb7ZBUY%;YdGTT*VmR4Ad!VzVPidyvOxyUq
z(C=1>63dhNwjm>Y110tXpfWyDxL~vD+PdvReBOl?f4&f2s`Oo@nY|I)ZIE&uxfjqe
z?vZ&fc_y=ieJ5Qb6y;&~!U6<HY9NE2vWvDT0a8MnzVwk3zmU%Y&SsgUgOSpQwDp5m
z%GQ?91Xl|a;)+IgxhHt?iOM@3D5^U`s^zy$>0sMDr{O-2OXeUABN>n!nPBL;#gW^e
z(Hyz*LCr9i%(ZvL)yF*)3J{8DocVH=J?hpPIvlKrDOU)mREQ}$>rJ<>nU)F#8x$>8
z{XQ0nga<EneLBSJh?3k|014zRs1)*O9$w;J&Z#{EF*;6fh1u}DzGZvu#j`_GLOxB9
zyu2KN%@+M;r#ur>l#$@qUR$_hgdx2?vE3GX+XsCKvloMk@e$atDK5wBVH^_AW68@p
zxtd-eoN`wJ;SSjr66b4fb?e$|v8y{C1R$CDIpS(*#Nyi3U%C(OtNq4qRcgF=Y#-lD
zhU+KK>9N_(xkGETxM2>Dvg6P%!?Ap~%$@1MT3)}1bm75^$dqJSiK=*=S=A1n<GX(X
zg;8I(|5bcGHmUD6ciWgC`qoN1LW^UC9ijFiTejC-Jw`<$`CZzX5T1!hFW+{jyZCDT
zT|ATSh5h=%jOh<NDMYeA&v(D~P8ofyLYmSa46Ffk38g&K{CB5o`?P|Z{3;Ku`@#Z8
zHp7%oa#ww%Fe#?IO;KDm4^GMrJKb6DYvll_<^QWTz?;rlWJk7FuAhWsqAMA=e$w%o
zZZ10}`u3XCjBywiM%DnX^rde_89)5AlE>ZGb+l{+X4j_7wkjp@LnDjN?f15uQkHt<
z2a0DCcgCDX6OgPlGkvvdQVw>jxNzV}izon*=~r%azkr5o`;;%qQx}5Bwai^VN*4ij
zVjK`sEpY7hH@I`Bg=x|qW$X$)4+MCelD;n8_YCohI>`{n@G~>BMdoDUr*70KKD+Hq
zp&nu{I0<9g7*k8UcJ3P2Fs3&I8yrn(1(As?IS)BMxQA+oB)k0N5?EqzZ~e**@l+lO
zPDVgV@H>N5e0s`P?vvERlo|oN(!X}Cyl@gOy(f1ffo?VwU-S7Wchd*z(knQ7!uh>}
zT>cvG?8$8zNkgp4ls{n&*SpF!IX`*LK*d}t>F(j$#te2X;==(eEmJMLsl@$PE2!$V
zEh)aHuust_7)CI^C?=ARE=_aq{+Hb7S%h~gH<f3Y&s)1j_i4RN90<h)whzKPxU>_>
zY@f5$Y|BdJ8RY5aw?TG_Uzd$sM3Fh3o*?y3gz@`E``{4WycoA~eo8JgXU))c_QxYr
zcD<+7hqh&$Iw@1imY%rMU43+_2<vjNDyZ&qPfsp)cO7}yMR3ZWK6GvWN%@&8FUAln
zwB;K$OfH1-CZ=A*EsoZ_`CaPyZTLab8qU2C+dUqMZhO7Pmy?+*7E{i+U}OnBN4RA^
zcE?;-tCPBAj!~Dfy4BN^6MN-E*JER96n$Fge5iDcfXFBIId6h1-R6mW7m_9x$H>W)
zJovJ<FS{44_Ct%y<9AElm%9K_dA*)}aH(25pwd<dwbOt?uOr2ybklRPEl$^_L!2SW
z(<lqj%FD7|9R$A!ZZxBzZP!BKwaU*9cQR(Vn{-rocKL&)Xp)&p^OmW;$nCEd@+AE@
zWr*`S_})pMx~Bif>tI6kr>@6;s(e@Z`*{72uW*l458sD8dJ!d3Nz6>nEAAnyg=k@=
z3TaISsep*e2$qIxZP$}Ep(6<D4ys8x04;5^Y`!hNMjaa#wLJ!lyVr3&SKl6;bwZdh
zm8gUP&FgP>ZXChLA4ZR_>~8!nr#tVw=wJI(^Ms5@y@F;Q>|5SZgZ!vDT8B#!C3GMO
z7L-`p{j<#z8E!(H94iRBMVVGucc4j_l$k%-PiusszyjxYBy=Bo4HZ>ha1+xw$6e)%
zMf`MLASF9Js6?4WL!bWx`l$_|tV$<^&z0!N2B{jm%9cg+!N9%hURu<rOf)hW;GAvl
z{?OL>EA$?d=;C2Tu}Or2Puy+OPf2aEO=(%a5muf7i;yWAZ?{YSOIZs0jPJV$A3#wv
z;P0@6DFqJw(!SzHlZjz2Mr346A#_jdE?N7xt6gq)uk$APKJQQ-6X`B5f7)_at?prr
zC%NwZU%Dn9yQVG~i`0Dsh72)zrCW4G3vIw4cxxq%n1q9QQcAA!i~Zlfik0xj*ro)E
z;srpfNP*2a^`jlPsroLfWIDs(S`@~r6c}dg<b4IvD{f9c@Veq)q@tz8AY||l>6zN&
zhJT~!FOp0_ES1p;SfiW1aW&>Aw;trdvqC>;87vb=o>DzJa)n;SCeii^AN7dXLbkbV
zfj$0e&H4_<%p&xA`&)Z;oYdF@3KTImzAncs-)G1Bej2WfFAyyaK49y95jt?%4#i@M
z7+;1-KFW=_C4iBKaJ+zBSAK2R-4~}*sTvP23fsoHDm>ENK0B-(axn#}*Eidx)AbL6
z;i)*`kKfvJWTa($PLSHBuFNwbILtr+hiUK6M;d0U-Y<{0UEw$igvd53L4CtP*JgC`
zwQp*7Y+UaYsuIs(#s0|j4FPK5eaGc(IlV>6c4*xI(P+LHO8r1Fu)4bc7}@h<fMTeU
z^%3VToDlZ(2m2!}_J+@eOFo(?Ssn+BIwpwijAR{=JiAnHD1kA|&sbO0&WJ-l2}@Mo
z_87b22c<I+Na*dvhV<%$iKBjXYvSlumyu&MS|9+)FmHX~hQt(X=^2nQbso_Mq2j$p
zKXmuTl^Z#`B)oFExXaT%a=rdmIE}4Wx$UNjIr&+eJxtqf4&9mHx-Z$Q{mx|7mpiB+
z71Ij?&cW9{_?%tTCrD7S0&)TcDc1HX;CG+dwn=<yba_lA!!!w2X4$vmgP2;ylzc@B
zg&NsBTYFGwm#uWypqYg)*eSkQi2KS%j+z8R088nP%9>~Ij(;U*S91tK9n(#56ZhR`
zDqzaNPqhE(=KI~QYpUYZ0t5+rN6I&XInweydb_)6Z-68dpb_lwG2ghYKD^^j5`ROw
zY5$^qr&xc3NS6&m+*jaF=rXxx<C5s_cd4Eu-&U#Tj_o{hqPyIqDu+TRY=vukyR-eE
zS6rze!J%Cv6AMpNbicdkzm%#CHHJ(4aGn7<R^2=|d34JA^)yrITvQTQ9iRluu#eZT
zbGK{@jE+lGJb>U+YBI1{C%fu1Lm~rs4s|D!^e4xh_Mt1@r{NSHSMI14bEgYS(4*6$
z+UoUgSJN;KK+{D<!<h(xpL^p^ckw_!5kUM#g+4eklMX$i(Pr8Qhc63UyL8++(u)t<
zo%>RRNBn=_IDoKw7DQIXahx6$q)Ch^fM=Ss-i|E)F6HTF+QSg<Hv>W*-!GCKS8LJE
zaA7Kh*oj6&>L_<an)xxLa)zO6%3(uX*4+E0d&_4Dg1!LD2=qcM`ePe=f4s0?PS?dA
zt{Y=_EJzwUL6uzFmGU;AuOiuv-0#V@%gaH{LY`@Xh#CqOl4r&*vfu1iECf)a9DO9B
z%rd7vXs7Or<0R!lBL@7OdUnP#|B=ER)8WsaM#8J$E8A{&`^SXg42RH?vd#Re(T)9s
zav3eUdPe+lr;;gD@|w}^{lXt~BH|(P;)XNLt$(?rrm7k*!2w_%#CAYRTEcQo(|g^`
zmwM&RLo_mT&5(a0kH$4JJFu%r`LVx3$=;A`4<2r83qN$+zmb-|sgdQNU&y(ORU`4?
z1YUpcbE~$fH)fU5C8{aG2FLE4oD@x7t4oAA9q8LD1(qiQ!mjk$ZtJC_N(4k~Phu(k
zkJ5uH@qN1KdIxcV#`nDWSSpMD7gp}o<81yU9m2v2lFy>_0m4MGYPwi^>210M93)kT
zSZ)lGXQr=r^R5nwbBuy1LRooc$_8h9`mDK^55>eMG1i!y9RIC5@@!voi2+RUbUl*+
zJ8f6GTP}@%C=9=$qxgN))p!q0*1P#bbd6}bW8nZeZC>Pu8|{6Q-FBl!)L;iO;vgvs
zJF(yM?$P?nnkNEjQ^rNWXD~(CY*gCb4HeNI1F3t4QVrb`T)Fm9oBwpuH#d{kF}SlZ
zG<(wm^Nw9rT+YsxiEv1xBWEYQ;JIe`Yj$RQSuuHyPe>F`T5lU2mSB$QZ@12V_nSt9
z99aNUU{~}a{oWNMgPFEFT)$1p2fL~4P)xG|ISINwa01xPX<OZE@yV$;57dWLxm(Io
z8K&0{Zfo5D9%zJT%iE19AvXKcrT?QXHsUA3xF8wofYekAR~#Se0O~bT=GA8iQSP}q
zZgo~rROnPnhar3^k_!Uz)EqafO6a@;f$WQHFNue=IhiSc+i&v1Ws+1{cxVcs@cfQq
z&i7wIbft6AXn@`reJzWrPUh0FZo*NaxlRyKsssYPVE*g&bq)81D|?moDZdT|%Gtx*
zgFgqUmyV_VU^gJZg(`0ccglX{J+S>fAv(sy$Q3~v`)8#6)p62Nu?(A5UK^v_2$mKZ
z+w`h1sm^Dz`poIr;vk$q%5IL+sMPB)0dHu3TpH(#*?DH_!AR2^!{w4;B@m`S-fr6&
zSvyL<TXN_M3L(6)>G#?$=W7<tYS*F?IqReV;CYWtvX?duD;2wD*=gh7we?&1uG!e&
z4?WewTF5g?_q)BG)LRMcgH*V~JsTg9;fWCBRdD$CxX~YJS(>wlwgXWXa%tJT$+up0
zKQ*qsimESr3R*2PH*5e=s$PAxoA`Z@y(FJzw5VjA_*+w&?8g7BOT3Txyc#ymzW#Rd
zc5NxazRA2&_8Pbl+I>U?zdh`3{Y}lAR3+%opv*)x12RqGbKN4hAybiQ?juBj@^!ra
zT}QeN8^fKH_kdy-XFp`?+)&;FT1i(33irMCwYaVj1$?<3Fm_?EwEfKH%&hTJ>m=!{
zm#kT6gbYNa%jca-qazw8-%L}!W}$rt79%Vc<8ecJY+{O6yOeCj2SK=E#@}y9h_WDH
zJ<fDvPYRNZUD0$Ev16nhi8nS^bK_^Il;a@?Jic+4edxJ>!2766%UN72Eq0@~*($zs
z7yHwLYL<wXiAVu>d7t-OmlerdyU<6R*j^__^!6{^-g+q?ctv(kRI-X7i&3Iz*ME~+
zaZE5f`E(DJQM#m}kJ#6(?%%yynIlLnkY@)In9V!$9apQSA~@pww8}ugYf&G`Z?U06
zj*6bOOdTMPr%fTyy~zYq$u@tdyA!@hxqhaGjq#8JO=05IdndaWRs^Om2T_X}lAvar
z69>CvrllOa@o3S_EEpzr0JNj|NW`I%-2Ymp-hzgezKL;xF~p|IHobeh`Y)y&_nks}
z7Xq95-AEh?jKBP5w|!oSL-CD;2$O<m$4a*%W{gzaov!BEa8F%}2gd*s!Z#l4W9Pc1
z-|LUzt39sJ8p(QeMcC95Ca0Mexo+dAl!JuHa=3~|jVK!#AHab*<QrbR(w*ZCDWE1f
zPvL;lvJw()WCy8(@3VtutH3aq7eI$9i|s-Icd|_D3ta=RhQr%QU_j@ZqbInZ;|%D;
zXPIUm9^yJo(PzotzM#^OZJt@xyWQzNl44zPDi6*vH<EtDo7}_#4YOoFC{ND|k;3Fd
zs`&<Y`OK6;UK0;QE2*(F!O(f8;B|IoS1EmqRW-v>f0D`vG2c5a-PT^Z$nK4+9ueB{
zoEe1oOuPk01mK1a@aeT6KTXVuYup?^K83axQ8+6aN!3wWLSQKja_7ufF;^@l6+*}=
zur4z5Wa3@@?C5!2gTC%Xg(ZbUL~T^*`MIX;FRofi2x3G2M|esYzN|*{-@zd~RlO&m
zb@@=l{LHl*+@QO|z=#S6V5a$BZglS+MF6>(?xo|{aQsr`4N=M7?dB~DyrByT3^eRj
zIn}3*jDCMb_`=I*h#~sp>%^j7ctrHSOLa-kVFf9}9Ftrv`a^P%GOV!3$!=aVYEuro
zNM^jWTJ(R_!=li=ZBKZ=u^^BN0;Xuj@zEG1i*NQd0{^n<f`J0Je!u&&YT$D9l<A8x
zy<qT=ld4C19ud}L^pr*ia$UN)wMz8rI6W+Z1D0hb{o~$_s|+W!vZJ#}RI%_ncgkGd
zdOTYx>cv{k>3L=cHQ(lTF7+j_iX$d7%>7gB)}A%j!?3DAy~4BHZQu9QE6yI3eQAFO
z9q{_q9o<tgie?WEo(zhVHckTWci(b9wG8Fg5dZoIlLlhm#BBe<jmgp2nsl=(R%b{o
z0HVf6-t|u%`(nSK1zCAH*Bo<<o!m#42`BPL6!sCY9=m$~LVJ1}4HqgVBcKG0YDG`_
z@-TS{dtk}Y(Z|>55{FKc)F2i`+Z0`q^#{1`j!yY=qjttgh~hb(BJ_Y%^pd?{R$!|V
zsjc}A5-9IvK&7MH@A)Z9nXJL<NaVU9X0X!@TdW(M3?ZM>8q@yHHg%r14Hs#CP;n*8
zJT%LmwxoQ80|2v3SQymeX4=>8Nf~9dL-+!aXlV~7=-csvO*>ZAA9>F4%$$<N<5xs3
zYm$0FYQ>ZtfAD5e<k&pzb0enl<Zy{xCCeg!I&hMmb5BUX%2P9JOu<R^^>}JVNMF<s
z9s;fQ%nsWS`S|t_IVSMq$rCzvvBxx1emq}RDX8Qo_wJ9}HZ%mZm6mzk|NI^4J}fMk
zBLQFsSB$rpych-*1Z6BLo(Mtb*i#<~Z2@sqA<Hbj&=$l|g;p_n0XSroVqPC-?|CY8
z7(g8vqA_TWPK`e2dONde7>`}C@g+k<;nvLx7bYN=1eK@|CvW$Sm<axnivUAI^v1~_
zJIFojw5-U1t3-I>fjwqV8LoYX1hDyiMivQM1&uz=%<A#(Km#p16H$d71=yTn4t{61
z-laN<?5M=4(dp*?nKu97uy4@GDFTi}Ixr{KbbrSteIAM%6{<yi*Y0(8vac4A+9yby
zg7>GJ^k3~OO|_gNUsu*gk{;^NxVOH8ZH>=$YBaal72YJF8z@XBU-#KMTk54+@V6Hh
z_3sa;5hOfmpd|qr+10(@H)Se81Q%Bjb0PIP`hdM4Tba+C;YxhBH1kAHcjr4wf5I*h
zzfoC|G@mGqJicnx=mW7T1OOCyJTzXR$Vw)QaoFx&*{qqYgf5l1o@wT|;r1gh?Wb=G
zCIyMUmZjiP<e5El?CXOABHWH_14}1yH~3J|Y`gAGCC_p)4{4@h_SG@AsEVp`h$$Z`
zGLys@xJe=W-o4Fb%vYxDVa#Wm8F-Ant^Z-nX8_)a8L3Xxw~t<_e{`4#h&R%2vU}?y
z4RWOL<@<s0C~ObPI%e_&`$?9HAn?Nl%_g7_A;olKuCaS&29hhnS26l$o@$MJHO>zB
zp~g$gl&Op@ka?vH^ktE-YU~($=jyO1$33pF$fNvXq&?0*Y4{EDnp8Olxm7I8ut(j?
zLjuDAr^qyC$<UbtW(u!&53UG<X<_>p+K$DDxXMcaN*giT=1d7HlL^$L46|*fT{W?W
zQjY``Ck}!6Su{v)Rk*58KVZk)s0o+cO(A{sMFU6+bJ5($HRt_nU--VpalS<+@vUc@
zQ|8)Qcj*^$em#L5e4G<Z_-Bs3)1@9+yZ+161uu-1C47D&73@57-a_}v$$o?a<?@mt
zBh?NO;bTuS-*QtjG;JiOgi<kdEcqnmLep-6Tb|*&%erv(hYHOLAtE;5<2So2%W8c%
znzB5V?O6N~+xm!arJ0Mrb?3+HC*ZbpSrE|+fP(<U5AG;0kRl$q1QJ3}a{~CF)I8s=
z?WB%amWN8f$$10YBd0%Zh8=aK3O0$m<=6Z2osd6r%<XI45!ID*j6-ORV28K0jDgQJ
zE85#nrw7xWI5#E3^t{wA+Z2RV6UGLJk<K>b2ivPo2}WA;X4>)z)ti_aV{P#Z>L&=~
zE07+@?#^HCmQ~lG04&A}_n5K8i`)@a$_w`~DH@bR=!pKv<yH&V^q^cG8^MJ(L5{H>
zxC1r9b&LX`3s5kB?qktvH#8+&=G7w=FhBtiFF9+GyZMyRL5|L$G}X~L#XG#{bJxwc
zOUwO-77H0p)5J8G;?Dd+lQw@srJ@VGN?!kPT{r0b0BI#mbVvNJp6i{VE0}I=$4#)`
zIVMtS&sd}OTSJq0073#c`w@HAG<77HD^>TxR3YtWMjjR2{!&Vv^_qNMOnDf(3Xyx+
z$iegqkbtI{sterbOG4|gG_-4bFk<S=kNexb@@_~6Dzs-qMLsdQ>xIysozP-HU)(;o
z_w&$V(1VU&Z#Sury!5l1@}5S(Jd=tgG{i(_*;e=Jkw1(<<Y70x)s^-Ll(p95hK^#I
z8RneaoWnA-hkI^@@_7z(F;LNYce!NG0hBjIcB~z|jPT7geLrU$oWA_dZ8`Q}mee}3
zu?RV4<C|{xYe^$^gTUZ@02ulfmsqWFB5kPI_m+3vaqE(v+fzfNVLA%Fi-8vQ{;*eU
z?j@;TzoMfY^D79WGh%P6o$iIvd6DH5Ax2@OS5(c>aM*7wX`Z9vpJ)Dg#^xR$6vYqu
z18Aaap0bnb=^t?VVGJ|DPES9~7AQgXx6@Rr3(uwLZ^g1UVO_5gk&N?Iq91RKor{4q
zG731|d{I5xty;*MB$efyl=g*OBD2sgN{`m9r~DC#{}b~-C~5c9iZ(CL=1Rs55r!Qx
zfQ*FLb4oN)LuK;0P|;5nD`7Q_4f@kj(Kn8Ye`n&y@`_$hihk*}mw55QK&EahKUZqW
znP&4!xAmORA6789bTAzqSWr^6^ESCU$12){rSs6SOxfaQj-OyByc>d7x^gtp#a=;x
zn{&P05+A@7B02C&Lf&idvS&V^?X!p3fMi^??smOAW^tHx9_-|aZf+Od-K@vyqO^<V
zm^;?EeK)3b{J?`tI`?6u$2+vQ`S}!AwlL+i3EG=3-j@LnF|$WNn`d4<#@*t(&DG$`
zgias}NWpKcb|1wN4LyyP9l;Z19a^nf^tJmm#uMz!X^l-~WoRLZ_mI2XlM_<T?w}A_
z*J36pN?jFW-*LLT-q%$HeJP?(MqUQd7#ezME?TC%QcgeRSlhX59B~4>KFwVHqW!Y3
z7MO9Ms%WGzKj;^4am$PDlbq0^U8#ajZaMxrJEk}u<pH_(qwpvawRxuc|6DCUOM|1J
z!A=Z2BVi?fyyrSQ{_KE$S47RRsS~Ez1s*l$lu`%ji?}i^gv0_FX2C4GCq63T;-O%x
z);FJl&G5|a414;=nkvfoilLSh$aiL&>f>#sm3}9mDl-P+lACEcMDJr8*_N}s@W>%0
zWFn?N3ZnCU37MDKT|O5L*X*=haIYOR-BDFj8f<}1=?_r{C5KDfSFYLck4sq_Y;rF;
zo8+E~C7jL6F{6HVBVN&PmMgo4qsbb^<n$e`!Rxw4*q_iwiC<j2(*C(byDY#%<NE_t
zn?sbI?#iB4l^51RbVFN!u;0H(b=BV1wgA?!A%%mBhvJlEa2XeqFddWa@*WNs^WgiJ
zB2XoQ-5~qNxy*IGr2y{MP|=iA+$$Z1MwYqsH#=>-PTM0dg25mlojmz;Mq*}}<M!Bx
zE)G012Jet5D5yw_8yolWSM6iBh3UG~EXraL6~Q_nM4fY7=T@oxmZ&*Tz<s!u8~%5m
z9pNYQva?~w1rCP@?7aViT^Z+aBwUHu0~Te`qxQbRfpyZZv=pa?(j_mpFGEK~(88>G
z*uF49LtVB~mun<7qUcZ1(z=Z;>z{IcOD*yVMi6U}XFEvu#OhC7>!*|37Aq3pN$^Tc
zAKh%I4}9tlJQr4C<yabEFyL#SaXsJAPN2hk2f~^&hDRo4sds?K8D6YBW2yA#n!1f`
zqc=jOAK#-7Sn4?GW_^(@^mBjMWnCDcQG}ugPXXnPov!%il%itAX)4$1*}ShG5k0CX
zK#u|hN(VoevL7DY>Y5b?gtYRdgg>pSM(>GVim0c$2AWdS&Bt5Z2_y7MF^ihCSdS$u
z-H2!fwUtxiOz55ifjrqx;yxhN{<Out<twO&12FazNdWOTzt)Q0ILS)_$krag;4OC2
zfPpfoo$u`Po9jGDIr})Bgh|X?`RG);`S&3EQBVYsRZ6m#L&Vs`%q+7ne^%?cot`d+
z$zTCSI{5G{cJhOYaIo(x8Ae|8Lv!pOCBZOO#4>nv%VyethbWeD=*1AXJI}WF_+dNL
zw99ML7`KbQv{{}S$BLqyl*w~(@vkhi<9wMMBTm#(!V!y^#WduEvrV6u+$ZU3$N|X(
z%Cj*6IhhbhU_ah{wNwXHV;U&}$~;FkoD3O(AozfNd7LU^aKDnCN&`Q3Ug(p}8@Ul1
zRd$Rk$%mv12Rp<uIIe?j@>t5;BNetF#T?<gMslzS=8pZg`&_Ma;d5p4NQ_R_#x}og
ztvj|LkUSG;QgZG#x*y{mWL=9!lyR&inf>TPci<akRtYE|aJ8?-bS#ruzi<M<?=E>V
z@_44_1j?p^AT$bIscfkX(`}18-bW<dO}P~&-OVtcEpsnk6mG|t<jZf07A4bpyE`v6
zgfm(W&<Fu74$PwKWxseT>46C~HuXesLc9V4v`BlgFI@Uxv0HFZ$4b%Sk}y_^kx016
zBR_M$KA<fwY*~OA$at7q9>c`x_S^4+$Z>2JWXX|y?q++1@7rd3#EG1^l3NbgJK|F6
zZO{Y*p(Fy&Ge6dIZ?6pu&(?@tU`<#^H-j6voH+Hf6FE!i0CF$vCN}rIpY7G#^&;Wn
z3ngO|bPZt!)8l7X)J{%44=L!&@L6DcqB+vU6y0Ob>#u#xg0h$OmEs0NY6(B47TVYD
zs#!ZJNrv>sI!z^9U_a1rM!mFWb2n^e7#@s6mwp}*&!lcdgmr{#@x9&(&&b;l;q?$=
zjX2h}E1%0sOEuwXq0Y?ZwcL_yZ(QM3x@e8iGFGe+1I~1&DU7<N&2(~$Fy_mc-drXv
zV&vi`ub#axTl>-Qa~u?SJ;bhgru}a=Z>aZwz!0<o#5$7FL^9c2zuhhVBelyM@C^#z
zwC5KM<YwrNL5d5BoS)s&cTz=WSIo1-(6O=^I$g|?I3oJ@Tbc>-6U(t)sx+g<*zvC_
z>x-36eevaxQ6#^oHLm%ccKE9rN`t5n*NgMw-?1+3=DK4~^Ft@Q#0odQvMr4-S>}tO
zE~9#o+lUP~q}4?5izf!V(~eT14G4u7z(Ar9>wB^QaKS#Bm%7qay_EF?Ba%%<kYR?8
zb024fo|CSn(E9jy?zG1ZuIh>5-{bWMz=2$oS?12J9qy$IFbty{sNC^Te(LA`GI}dm
zqy$1hy6H00ZufovI2Uv@i5#(n3TtYMRikfQYRt7j2G?GrFi9K$YsDJ($c5pw`x=0-
zYsF3wT4ny`x*Qei<ov)s$Wck@kFFQ&-MM*g@doXB@or6YiS$Z%En7Cb%RI3MJD`}d
zl%i$4oXp94`BImAWU7ppV|&CT-1LK`A0*54f6?u2rEST4a7W+HMjin)Si0K%<ON&U
zIa-C$Z5-=>g)G8tov_E9@t*D<j2o=0k!ZnUX*nXp-*>lN;eV`%=k`IFl@(zcZvMa>
zf4$~Ce51^Ai^%}P6?k=`3{TTow~bitI98pWCQw!OKzG$TbtL4I9m<$>A^i_hqB^!m
z^!F~w1#l{OWg3KVs>paiD=Cz(9O6#?H4uL)YI%bnUD@6B_+2?eJfI6HnF)EA%}i|b
z!dy2uQym){-S->#(?hCB#QW)E?(%5uEzj!7ll(TOcaR2N+j^dR?Cjcivj%Yvyir~V
zr6W?tN0zzf;{wAiUig5&#Q`~UksHuFbYCh6P*AK{pGvopM~vIx?&+l$^YA30Qj5<E
z!%zSHncH4pyA=2#ayxOpo(!kRFxfSt2luD`dbIKdDiFLf&9LTfdYs^;mQp}jNN~`m
zI=He`D*l2KCip34>q&u3j>_<7?TjhvyjiP|OVP~xj5RZLEp|IW4T4*(Hs2la4ezXJ
zuUc%>4j!Q19G7)&c<AvCFboWGlIEg0uJ5Tr=9}N72{My92cA120c+O&q-~cSGoL2%
zQ(B%hz1uPJ+(pu1RB4IG-r*;Pt#(IVqR&olXdJ!;G?yM*bM_)P*vmk$p!l5nV&#a)
zDWS7>p(|{!T~mB2i_A+P_|tg3V1=tcCgFAV7i={ia`MeY!k29fVtRZ*;ugy@yXU&)
zev84A?No~Q@jFadv^l270{h0FaTcwh`e8Xwv|09K*)#6bfjeB>6W<@Z779Y1X_05m
zZDATu=mTN65DvKAS@y99v?0267Y^qLo+I$J9Hb8?xQDJ+_!=)y--GB(<9~s3a?P%-
zwr^aY`jF-dTwBde_IA&1#9}1$iBg1kf4iIbsX~Of6VMl43<n|yvHWavYIl2}W^$9Y
zn$lEom^2b)nlJBgKYr+qLKkdIoGJhkM8sa_QrBjR_R-@`;b!AAq~j0z;V+}?wDYv%
zk4U1@;0bm^{rBzHmuf#Bab4v~5wXKL_3iMgS}BrTpD5Dz{!6-#r8;4@{rDV(+rdLT
zM=9af07eKd^4q#G1C@5dCj=5N6ec3(q<3w-+<@c<#EDRv?LTCZeLqW=DmYhM<h3ul
z)u;N|qr9~dLW`8Q#v>Yer~9xZ6df)kDI^CIBc5T}EqC3jt6Y*~1I5Cp9zlwxGlIB}
zC8OM;X+aJuUuTHG{pI9~;+?sBlbxKb?O!}1QEqKTvv=V*GET;f(L++bZ)A_3dvb9P
z?V>IPh!i67^cn8BlA3?Kr}ZdeX$dcBs32I}@Tfg-kD|fc4@$s-!pWL|Ps?UQjtym_
zN@)*2rTc9A#1Kt;#QNhJ8PzTnzY&18&^wqoST*{?(Ml}gvxVd*?pazc@Pf1F+09<I
z!mmlox3*)j=ljmJX`^*Q7x5$hb0~6Clyl&QGD&x$ol$sbY{{<Oc)4ADv&NPnDBMWD
z($QE&_>j5g);0FZrHY_%EHw;J$OfHULXzRj?eB|p5fWp^BG`XgHBCcvp8?M=xgUQ{
zy>O+P=!(NCh(4aQpL*ROqS-FIM0t3z@PimC$Lt*F&h=yG*zx`#si)6jLJPxN{;>^@
z)9{%HN-|@SR-kZ!3P<}!E+boGQkE*5Ktk3WlYO$gC(jQXBoLOcrbOZvl2trX$@R8v
zypAs)E2#uFGuK>sf^GRj((A)@XlcI8I`zZ~lBzm0?6nVQU4wUtUJXCSYAnQ?WS0!v
z;~F2S&@f((Scq7Vm_5e6V}o&gw{CHL4k|~47fKne)Y4=lE=yQcuQhfzuF)<U!V)|o
z(Fe)83_WRLcILZ!Cx@XY6~RI5)YALxZcm&oXcIrPY+O>N5obr6%t|V%Q%khw@PjIO
z8YkQdE}dbHz1ki5e+{xCh;^5{9~UN{)KR4#18*c<sM7r-^O}YULSX^93A3muQa@W4
zC{+{`mzIt7@igf%zw_@u+zU&SI^0o12>%648BstojS5k&8SshQ@M~(6twd>r(J!&#
z%1|tM;pe~Q>iw5;4b8>WH}H7Ey@8;>uWb8)J@GpwD1hSWXagy!z&@jf(exNsWlu`S
zh9upI9RwgCRqET1?+yeO0j>PLBgxG%T~D#Yo=X~dm%<#e><h!sZlBS`E<ZlG!)1P@
zbi}YSjx?$n%!PsEB2|;i=SNmP5=0>LONI&B#o&8hV|ERD+uTr_>{^0!r2p~4%FZ-(
zH%HoxP;!jKEPeS23fC~J2;2SVeRjd4DYqS=6OOPGBT6x73=JWIdenZfKtmQDi_#Ol
zL*>!n5q|p67Hrl>!-r~-B?fZ{x=CDDYIB~~G9DM_OAm#(I4%W}nEIxz^G$fFdPoA8
z4>Std^0?Dnz4rok8WW`i8WnxmZYR1sSLu=@Vub?$kg!~wFpkl&$Jznkh2}rZ1@$P}
zwrMz|By`Qe$fIk*T0WBh_(g)&G;`^nk&!!eL4#Tb21%Mhm_oMr*PCulBjszeMu<3|
zXsFL!S>|V~dd0ou>D+Q@;lMHISAuu)<G*>!Ejm>%<k|EbsC__4<WNyqV7J_%kCfZj
zhZdKq<rLQ~vwuCJNSExWAq1DPsd+d;yVlOyq5Tl~7cmxZ<fy{YWw?qwnS^j<;VB*8
zsdjTQ#JY>LCmm==+6R2Ydhb)e-(GcLp?1cH7GT>!@HLc0am;7bi!NTL9rD<YL?%I&
zS@pdA$n!_Ip*E!2U`PH5$iRbK^XH9rMim`VfUjs@tR;GJ75JxhlkJ!R>MHouHbSHn
zKPm`yjo<8pZB?%db0()lLPX#t;henti<`JnnJ|aYTFD14=;*HQ7ig{Jj36>%{MMRw
zZt{a#9Od-Ke<zwuCXKcp<Za$|Z_&_?1&~Mr<Z2*nmw=r^ejtFn<t6v!>Hd9JRBR)D
zOnu2!iO1*!tucNxun8W1&kt_wRjH3`IC>MEgYAlBHV_PFgnaUdNJus2MRPu@o^@lA
zEVsqF3yQ;=;|E``EPC_j)i=o!b;!ap3+y5-EVMQAx$dIqEjMagGci*|>x{vuJ>5=k
ze)z%;;mR9R?YDVhRpfk%b>^HXgaApNSDJF=-)P`<G;PcJ)1i&ChKGiD|0VX5(P4>u
ziPv<p%!F}vOuWCMf`UO4bM(D7JtKUXWU;s)nXbsO<VP;P!`6&XBu{XCoXfhiY~vYv
zAUG+K!NmX>{0DdQ@FlivPl^mzA>`8IQn8Rr82IeS$TNOGa!=8C8N(ZeA_F%e&CJ;3
zmer|M>jC1fE|jh9g<!G7h=jvU%wy-fs<Uf#xeoV5VkCZ=4tYa@$4CA<BKpIRHDA3`
zuM1gaJcr3eJtocEc9Z+)_*#9&)!M|@GNufE34mTMo%OU`cZ_~_X00i+RY{QE3(z9L
z6VabDtA^W0cZ4w@@n#OLd7;Q|_01fdG&(LhEuc#PrgLtx*US%vT95<L>%#i*a55&@
zx1QHxEU~`8tg({`(uHJJ5Bqw73f}U0iS^wyGwNEq<F)XK35-FC0j8?`+xI$iRl*W;
zPcErqul!!^B<H!y*r5_G!O_OpoiNYV=}_ZanmgFSA+U!y0_^czji~!VS+9Iv>v6-V
zyGl5e2^{)NP5WltSQnHH(DrD^)~wRN+xDNxgz_%J@}U#}2Bw<r=<iXYGi=f*8<fPP
zD{Rn}uFZm=wnvXZ;TVw;6Cp7c7j$>C9@X@S{Zv^bEX}0-8@Ye0iiDA|6(Au$Q~(@p
zCOqr-=pVC{2tp~OO<@orLTWY7xT?|PXKFo!M<bYhdwSA~rMCyVbhi2WdD~`$2GoRK
zV0l95@Pi}494V^j-032o16Rp95Vb6emVBYsf#(+|lBStg+uKjPTs4=-ghU_r=20!m
zHmRRPJ5SVJWfmdH4n+cp<UTJ?IJ_foi8k+0BkQK5P2k{?$0;@jK8^c1cfI@J-XQd(
z(m%=%f<6L*GiZlfJEQi#H&q3S$yxM8A`wlcEyMh=)~)|o3qF-T6CZicIyZH)erD|1
zgn9<q#8YRwi#BUL14lr^5ZM@ZQNRh@$9Hbt5z5gbUh7ndyhl8?6e*b;^T<bTR9x|d
zr&^AX%6ghP@go<hq6#H=l6c(~Yeb!MLQ{99=h5)tor{G^iFyfHOsyrZ)v195RX!k!
zD3R#vl=s{#`!!1BsyJ0kJj+{d#ZiHBm5<n{Hd(`M`^5F%rA^jcP>FDrY0i1WJ<v$M
zizm|-(v4_%O7bUkowgHfZ9l73PFr7j*oeu<B5}?MciV=ORL7GIg|Hg_BsMz=^p~Hv
z=~H({B+ds(gxqBoy*V(^UFZkIl8?1#w2gufjQ!vN)O*$@PfvbyT1|mRLr*v)bb^d3
z)uI;<S0BgQ(w=Z{Z{XC?Xpk_olPZ&d_4G_&`e%La&X0zB=}|1>>jOlL46n)l+?~bD
z#dJj~<>(+aQY3kc^v2$u?tWRWc?-v}LK6pp;K4uLtsg4Z%EOhUdR&YSLa$|-x#2VS
z_p9Y}uMwkc2XGx;4Dm25-)hmHHtA>(i86#ZBpvf~FJzeyid`$;vct!=rbh|8D$389
z)K>D$v!(9m`%>QcR!J)DK*<Lb4&y>u8q?A}u`+ZhB{nxf(M>Z&tz5^)H8_!vmGXCS
zU&`PVctJVR%xh!Zz~wp(L(+_RRDzBsk1)5$O<Sl_jMxhR=$JcTD6B7qs4VlDb*HTh
z{dy?G7D_x!pauIU<p{UEMWEo7x2f`xpVoC_&J8Q_*yAKv9>M#gZHAYY6{B5(7>#re
zlHL;4UDeOpX(2+5yD4_ZaW~mruV{gUNU-a`Qo3r!5(x^w?2M`QvfessiO)+I76Y6x
z-d^E{#Rvphju^|$w|vRn;^QspZsdtUH=sJikCSe>Oj9zI0zvHu8K}rpVZ(Vr3C>Qg
zdHG3uil-a!dK1QZQ&8h*-O|aG+?&#zSr(k0fC>9F64nowXFcWaAD%Leh6?UiT>B6y
z)!~fOO^b)@u9uU3ub~6v5OL5^3Br{@jAy!?F)Kv&39ggS@z$DlMZ7*Hym5{2L<j{-
zelQaGNjds_Swd?n84WniSB>nB&59YY8tXbEZ6WsiDarnKAgm;O9i@|Iwd~rT)l(DQ
z5sM9`K+R+UEPe4PnVv(S2P!kE*nZVV=MHn6CCKSZ-bd|)$Z`J`_eCA8z2ITHl@S_=
zk|&je)=BP~msH7<+euVy!RwroYNys$)fNux1)Mb-VsJ<d5*2kG7yY|N&~hq}(Y9lS
z7za6iNmBG|6R2+r^J|%iMG(yi4WjFP2NQW@M-q3<B8AKH><xC@`G*^k2iQ_Rm5<sX
zT1+K{DArKwg+a9YeY^Gk)X_bv3rf%x3{dUHK*aN;!QtO0UH#^%|GbNv>mpD*19%Cz
z`1#a79<S}%F9<@WYI1x&jM2sFHq3J!-_cbfS)qzbLxP;&Pp+}^7icET;TAwm=DY$h
zU~Z5h@9$PV?MIY>ik9}l8S#QdvGk%-?c+x&iIMP54o7gh*l?o1MoIRwMaj?Ipo;iC
zi;C%a&7<CL-kW5Xt_v8s_&s7th7YTX$@P6~^;c9plXu>Bbj<n7q>nUHXR{kpFBII`
zFs^|bv|vlQCVz|T^^fmA68l4?jma=0`lIqA;Ca)}-J7#jM2X!dQ?RhKh@P>@0D!K)
z+TL?Pe3NlVWqO~KXEM#vOWe$Vli$Jeb1$)`5b3UMV$S@?P2Qy|>@q-6?c5_*$Mek@
zVpsZLm_uKYTAOJW&a!EfYY3a3V=o%A(z_~V9USMwL9XYd(1{6YLk4l;^eLibn5`pS
zhby&#3WK0EhtSvxUntiMzscQnL15&@>YrE=VyR2B-38C;gc~mGtV&^iLxB47JFc1P
z9*lQ)R*w5fGkQ;SS9!KBKc+(w;+EcnA=-=;>T<c8_G-YQ#YBg|35&Yq47YoO22Px{
zSS`c$p!u6>0RD*aSGlJBUbn>alZnbJDQYmQ;eb2&TMf+l1U4%vN@3qXt;)=k@r#>B
zM{k;(vaMzHN?|>vvwqd1(^vauHeLgpmQawSpQ7%<&2G{)$+y1&34_mNBsQK3UI^JN
zd;Rz>(J@1`EXiVwzk)5}QFQ;u-MC6WP*+BkifFkgd*Q1)Mc2lay%HsW7zee-jqq)X
zoDknWi*b!7Y9#&CZCga`)~P}5wnF<jFed27Lk;ae3zf^ohp4zV^aI!s<_~ADzb9N+
z`TP+oCfU5V^!y2BP^Wz{kC6Q`<xiXPYx392fblwu1>vp4>QGq0bW`|~Em<FyJ=Fvb
z1zU9D5$^N-$;TdpPB(bAFvl#j9)uzXQqJCQ_NkrzUVzatX^a$-6>`0^Ke4y{ocw@%
zqhMkqDBfdy00#NgfhjigjQ|YFHp-Wb-jATcjST%G^84`6-BwUEpiFQvbn>&zRr@2~
z-l~`(yHg{x;sIr<S3tXf8SsZ~QCn*vfGPY6@ez0x<S1U6<<?lO0u$+o{qa$v0Ik_(
z>$|SEZ))I(`XA3x!n5qT$TgX%@e$vqEjv_66u=gqQb|kq(Pv=<UwqgZ0g&v|=>@Lw
zpF!jz2rE&mCHc6am22{~PFdnpyB78>?qA&3`feA*4g>{Ab_>4=+6o-7fiQdtba;zT
z47L|}D2|^|F?PpGR9ozN`Pf~;IS-P^xV?0<=OxD&Wr31ei6;r1nL8J|lYNpPKOM(1
ztf(*4Kti}Yb9r}{=1XJPLXrO%B5nRaVxYce?)`3aZDqV-WkCN$G(v=U(#@Oqx&vL+
zGV$Jfj-$?{VT!_XO&5g>KfeU3u>2}e@D?D-_lNL}jEgXxgUM|_-`nneO?gh-fv4NY
zrv?im`_<R(4xf&(4wQmK1&#`PjpsQ1Blq0KV98nY95c+kXci+<lM$yEc49`BP_pnV
zq>bl)?bgSaJOU7u5@Z_a8SCBBy?(|q*&zc#pnwc5q?{s?Pclu%C9cR%K9M^DMb!E<
zzJ*6NWTo3)L(6=ubuB_o8~^~=CeyTmk@K-~KV?@dC57Dv>P=ikwoZhbHQOE-so6Sz
zL5&{Kl#a!|nJbqa+<2BfGd}C0U>q~zWl#n6L9=b4-4<8r_xK`>X(j#_i;#bs*)`X8
z9-#bhf{S(_i1;9Y3G8NG2Uq`vpno2`A;?3P>3N(RStGeYmQHV~RK)^5{KvLDAyly{
zm#R>#JjG3Ks--GQU?Cop@{fT-M!MJRXPf*#y__ACNY%_SUp!zlepIR^rEe*w!)pSa
zp`@2)@{e}QE()TA7!(SGz&ac`q|WBq4>qcZ5D1HIq)K93X=cowku#d6uDVj=>q;1S
zy18Yvo$`ckQOscX(y_uSq=1hCc^iBAeHy%Qvf2(ACMYSy9CDATPrL8WOx-<ND;QX6
zNP)y&oUCkf_7wZU!T>KOAddu44W6{4d@~X88ns|ji@57xTNB!(JZevztQU*<h!s`5
zMu^xKx*PM|)OBiK@S?($7$&1xxGkFB(oC&CT?_Al`GSISb!YA@hhEetY~Iu1&XDFp
z4OT=IIW&wmpJ!LS5qhvIz*In&Ip*>CcKwUt(s-nauYCSmd->c@bLojMRAe2tASZb6
zXSVT9t-0vV$1{^A;$pLn>*SvKFhm-O29y^2)~?T&`U450Ra`{FZvu>LbIB%~=i74$
z{MwMrk|n{}CZH;AX5SmCoNXRUd7Bn-!_m<z7iyapn?v`7%4)+JCD5NbBeEkyS)+1;
zcq(jNNhyGcj1x3fo46*QD;B^`C4pwfjNk59Hle)D?r6`Q8T$4JU;74#4*LdLv}?G1
zcy6$WdJt@Qp;$l}KD+V``{2H$(|z@=(ymN1pN+AT9@Sk*;gMqv!x4`srW2OZF8A(c
zEjw~+-Ko5Y4<#1QH9s`9oqkd0%a&!z%Ru1B&_co1#b~@X$$e>c>xv^`fJRJlf`-#{
zQ-IE@Nj-=!;fcU8g^#J3eWrQvA3M9H=I><NcznPFbn<9BAn=<u!S=hd<_uI8c*sG2
z57knz<eYyam#hy%5W1kGjbi{QASrrfU1aC+Is`$Et!&~Lq{uQE+8t{mXC;SasZ3kG
z6!LMpU`8`GM1GAgmYY1N;uyAvN+X|SDwCeyP>IFB(Y^e6`>5w%S8j2IQ1P~L-)sym
zuA)Q*7fp;Ub+pcJ*^a%#eC3LyZ-C4ekK5DZr0@8QduSEh?YtN4Mo+7#{EZywO?&JG
zKgPeYRHxygoGEh$%~STS676B&EmsPp2qQP3A}~?|DK^N3r2{>#3jP5U*?x`d*eJR8
zl`wh$>M{FP<nTLTD*zq|f3fmASGb$c)IZ@d(G;Xf8y1?=G(69J_JsyNmA433&DWp0
z?M6{fj#>i8h<#A-yPNZ&a*S9)Y`LsNG9KDpGR=yuZo!h!3X^aZH`3x4*EoI^xPqr+
za6tJTxwE6=b|x<vsfHW3DGJH#bQwDIQCHg}C$6y|kmRUqG?1kDd?51ln0Sa;DFRJ5
zf9;Rl9Me}Ij%HWIf@Lb#RAPR$r$4LQb?i?^e>S9%CCz;QlD%${HnI@5cP|<V0!s8l
zjFV}WC)?dmX+)3r7prW`LjVfC`{ufRpM?;h(vAdo8aT&h^b5Tzm6i!D9)7`o<7qc?
zCSls^Od`mN1Q%yNX?MowdRMxX2=K<)_R^9Xlk;_`VTZz@YMj9p2yi<XcT%>VXLd;b
z(7{D8`-NuCfWfuy_j7b(;0`<W)frd#LlQ*W)HZ&>Pr@KBEN9$M3LU)Gp8SEP3Wwo(
zrJE+pY~dBk_2SueD2%;hXkr-3cS~*WbCo7WwAl_FO^K0+HwAKd=Qj7)hyaYq;1G5I
zTxWPB;IS*8vD*eDZJDY`NKfK^&}_>Gln@!<6%fsO!VVt#fB!+cIqyk3ahU!A(UF(A
z@vt0hX%2Pu5?8H8pgdPvCYsz`=2}$IW#J?OmtYlys{t($&)9L9yK%JA5;?tes0;s;
zDjKoOFL&7PPlbt~Z3HRehIRT;uhG_drBC)zLR%&E_D!yLTszR0py)pryo5JnO5Suk
z>IIUS1jB_0_G!0*Mv9r{y9M@`K0zzj2cZe=R8mrVcaB|J8iG)yX<#G<?HXcV4n~)k
z?Ct%+M^pqta*Tb(j{ZM;i~)2y-RXA3m8If%Bn}DG>6QE4foO=OeB+)xE3xH7Q`g$=
z4~4iSzaNQ8NNu%dv-}mi@TL%#NE#!^v0TdLZ~vfudy=lPk2}ypTwLVQ4iTNBBHhd;
zf0_L8`kIo$cHx=P`$X-GM{!BAZGK8ngH8ZC@%efGMKXU??38`1EDK_Wkwl}C!2@wF
zu5H&%_PkE1l94<J(JzAo@<*CGIXSMyNRB?zb_6Dq&L{bU40CE@H{w4PL1ZshDl&2s
zZokwmoa2j(m2|MkaR<6z7N`yuaG%f{yg`H6g7;aO>mK$^e;lt1D%Ao>dUoFBZtbKg
z9mc-12vCfol0pQOZqEMHWyjk0Q7?nP;C%!b3F>6U(Uf<pAAhTsU}H_Ldh{s2<GU7i
zj`qDoffsQhW#bA5qRtsRoFXzuWcH3579SH(E^kIGdh4z3K`(E{we3nN7fLn-LdCmj
z{EoZhZLPA%=f+Vr4jkajy{?;=m;+|*2u~NuKUF7`u>9QzU2;tY?^!hFhkIP3gQ@(7
zfUcE~cDA{>%x$R|PQCzp3B#c%XZLZ{ytpzJnLM!s_C-vSQYs`+6Ql0c)gj5RFn%%3
zOe(YIycOcYgi--QL_{ago?=U;D36QVEFhkav+mMzg(>~@V=i@Hs?;E)(`y{NI(8nQ
z9};rEFu*N;OLqdOR=d)%>@j$PNZPY^Yn~WwxK$<XF)rm@PRuGZ_pNd7|4#=%>t#ck
z8(YSu(tj>}Kd+w>ePg#un@JEY9avz>u`vr7oTglpG%b>{BjwaLRdz}LqH>QGeY8(T
zK1>TeT8ZDEXSS?$jT(dj)CpY-P0VXcTvOl0aA*v~R@t;SGPguMJ#RunBq&qD6QIkF
z%B39hVRP(__XSRCtPKJo0k+G60q*yIwJAZkRIxz?TJt3OCl)^P1^4_(DqGt|0R1@a
zSqh@4758`Fy_&jtxkk!~P1n5sO)uJ~ytU<~6QUOO@BVJKXRbyq>|aKtGVe+!SwO$d
zF>aEZS5GZr?AOEr*gP}%RQLBL1z`EiilCwh1)F_M?2T)aYEM>Ym|)J*%@N1i9j66z
zCWQ$AaVkNCEsv(yT5Aqh(V-cyCdwo6iVn9K%&xZb-}{h#JYTst+)R7n!wHK5M!bov
zi+nvjsoTeT8$c5M1{M{gR-H>Tx|#ZYWcdAI?ULfY{#<h%=A_Yv$X&CO-nd(@6AuQj
zb_CYb15Ds%Pmi&`&Cz3n<*hiilzs5uK%04Th#^`F0&0ERxX2Yi;rqx{iw*n{xv+jE
z(hp4XDA*0P`BiS!v0=CbYIf97Aa)CSm1)LobKR?Ije=iFL6?>mLF-U67-t8?MX<`9
zIQL?&v(4uD#w|f(3;V_6OX6-b?H7AjfhszY!{+z%!qOCwp_z1g$!<DRDeb_x-bu$g
zYk_Nl9nI11lC8-PGkAwfFDwMklW8sl{N~}u?B-Mb`=BhqRt*uYbZkuj$6j)tej^{7
zP$s5#4cg1rwf4SlDPMyD^8-0S5<-b1B+)bv{t;QaJL%Br1=yjxtJ^WY;zy0_f}v8c
zB<UxE>ao%;_ennsOvMqFQyk>rPjH1}R@yW6C@#QP>P&g57x9(wV(;A-x!rRkWlc;?
z=OPj9WI3A{yjM;8uMK-Sw3Bfq#jtl%>{V5gh3w3g<q~e(>%H~tnUmF~vUL!$l08L*
zCfj^*j-9_G`GT)%O14|EEs65_SH0YQzAXu>7pDYcWT*9uoYv$Jt}tAtmO~=*n|ZFV
zFK`M8H%=k}j-xoR;v2W#>sexID{6Vrs+ueX%VmT0H^euUboj0xW8a?dH<gg9B#-m&
zn2?gA_5O5wz=xFlMBHNk!m%<f57S<yz5T2}2aWR^<$(s`25A6$s`+mFM>kCa$W1RP
z9svOfP)acpG^p5=FOGHxk(chHDMVt?JICbBvgZy8c}vB|hkuV=;;xK!b<rG4T?Q2?
zVZVMj&b`)HKals75M2QYJW|7M*rG;9mc&xU-J4jKOtbcn$kvzCf)H^RjH2wI84bOg
zB&H9&<9c@vty`hWPB5<Ao^@`3S4wABdXBurn9K;^DBpOGJ)%~s%n0CXE8#E_3fRbW
zkHf?iQ)8?TL|mJgzGGZ&NvPzti#ZVuJ4j%#_w8<VBd-ebBbB2sPVUY-+=FrXlJb*_
z&LUp*=Hc#{F8;#>0*8>Jee$9Quz!X7{eOYQQh7jYwwbii4!l?iue|kEGK7K2gS?dM
zpRzN@>*V9gPy~DI^#ANTzbF&|dI+<+AE6g~N^s;X^Uk?8ZK=v<@PQIk1ac71;O%Sd
zzQ<G<4Fi)vD3BU;wmE2AvuUb`9CBmn6OdtI!a7<~<d*sgo<iq^6Cg(hSV@}xXFO;x
z?xo_LkSTqbZ6&&;=Z3a1^W|9A(F=WXyZPl(le9NKZ3p?Og#v??jVVN+S<qR&Z_I2v
z#B(NOskCn~tl8GZBl=1WoIl7ik33}8&)2L0Bij}I%HkN|9~EYZ6|UH}AFpIpHc~#4
z!McgK*~|xQy@NVvqJsIs%4}_DJ55ycBRmyqW!U_p(4Y@<nH`uq&5rkKq})|Pe=!Cc
zLo}+9b@%&c-$M*IgoF{&QO8Wn=^NaMu?Yb3TC6r@Gn5&e@4GSfd_R<#8>$p%=9)83
zvtM{wOHNYPvQa3N@{!CfHAj5oj=V9n(}^eUqpgor?mB(vp6wl0B#>Y`#?Bw|xaOHp
zT!Y@VS4S1AiPPVNbCR7nd<WN7JV4}_L&$~twG0j^S!eS`sG1|@R!?Ci;w{>Zqa)kA
zg3{stge>a2QIRou3jQ7bPspUYj*J|gu7AQS^eF`C1qzS6#i`HPXv3f@8dr-z*AURU
z!E2FatHZe0L;BTn%x!gT)g!fEjU&=U`kSO+B@M7Z;n%y?KdD?F$e2I{vF2I8F;*|x
z<#xX8n|Lck=ENqAzjsg7)5y4hct6&03v-+~BDJEO-qLOu0GvvVDL@~8xpRDD3ahaZ
zhyosCI(i;(FZ(5Qx!M#CF2&`m!Dsv^kXz%O?ykj2b#B+03vrnNqJe+@u|Ijy0JaPX
zoBw@m8vM`68(faxG^8cyek$6*{59UlizTksd)hP1J_IzX++)IYmscZ;?hidC;Boz_
zh*C+;Fm3ACDH9dUh5;+SYoy19_!XGWX*HtLXDbI5v(r{)XKSU8-9!-f_qX<jDY~0j
z>{K?QKk`Lh+zG99Ho+g;?eQ0BP$YR|1=1Z~yk@wYI9*A1Tph%g82$l$u%B@qI_ZTJ
zRlAJwzm$qHHPufpaXW5FdC^n#;H3x&+dm`{UhL$b_1)JerL;>0lm$MM3@XOxM+g+h
zc*Vu;i~%YH$|qOS*UmGoE^y!U4UGs1oiUj}%vt8Us9SKRD$=vR3Wh;!C1EBWqoE`z
zdU|}^O3!gbS~?w11d7tl^;_Me%Yq1zLdcM)e1U{07argduE~!n8|gRdQV{^aD$VU5
z9lBTn0POl9t@xSd;cwh-KNp*mm~g|OkL<F~PqgR0lJaDO>JrPAlaMfJAD(RA{x5mX
zSmlEzWbp{SAdNfMUEjjb@J76|sJLIqewDlSQ5CnOs|pcm@{Arw%*>+2kRv>wE|c7v
zC8=*et#eADRD%|YabpmKY4(xZov+aYCb$O_W<9+$7Ez1%d7SONT8mub{7NgRq2g2i
zK=Rb%x8hR@Avq1DEeG(0%%k(w_MJMZ(oP`ZUilmuN%d<)+j*wCIL1V36m`H&?oUsR
z;v0L6DC|pLhx){ia@@&(C`!ZvnKJCAcyx^g12OA;mmTqfQgu0R66&D)Dm6kWyW_y_
z8)YwFrDb<si?3(-`XZGIAk!Z|k39EX%9l+wk=MTPkod98IK?%Qwm<1IAKsQU+gElO
z-;-u`-x#SsF6o5VwcC)od$^ER;9S#tfxY}y#qq=*p>GH3i9N~$fO`3Bclu71`r|Vz
zhF`da%dWTI%+&DfkW)cCGrg0WS*)jmV@yC;N=rrT$U(`b&G!R$(}BQ;J`4;+$Hrp!
zQgvldT-?KWQN`FNNdFrnXy&-5`qaFePFlQ$Aa*0lhDfTzW}Ls;p1e)-7yw4qDx+?U
z5~X=<nEmV9<oRD~UO}<CxKvc9ko?ax9a_7TO<LaMrMD^`-~$>WEDXR6>)Z#s0{x%^
z#zSKvAvL6#24A}DBqgWoc^Nut0Nqql4<oz<T<mW*bW+mWArFbq{jQ@kUYeg*URiZK
z(=@JYdkj{=T(*>8C;@eV@6r2gcY){2^KN2#&J-G{jgK#|-M&)We7Ig%*b)~NyPJ+w
z5f5HXr!r~sE64xnhRt5=TKgdrQf4UZqw}`myqdBH?E~K{osgf}gD|78A0o75x&)%;
zxO?on0?m=R*;qd!@eXj##&NdxGa7~RE92=JP~^Y;BX4GDR>tQkOJW$VMEZot8o$2R
zR&A)6GoL3%yUR!^03#DYh3PBXu(~piFsg^u-#|qBFL$R`^2DaMP0Uyb;n_aj%iNq6
z8p87{69XC$IkaJh+8%p!qhK9+3`A%?w)cdHnr<FQjh^HOj*`{I_y-i6ct%;fBE3IV
zDj1folMEdM_GZcyRpste+@hU2h6QBvf+2te#JIxwpiA_`0=MsZ<$U16r7TDsj`@So
z^}xIC?>1`w*p~@l7l{=u)4#speqE&nEc`%wnHOgA$WR!MQ#*R^g6c<|mn5kZKv2Jt
zL!dQCEgFMxX)pWor@BQnDWw5YMdQf5K_mY=!Pb0LOJ-b|kOs2X&pQ|?+!iM&mv`du
zM8;ROpZyq?;uQ??3=Y9b#$LQLVDklV-7$Ias;JY{wVMa(AbGw@F@@L^6rwr_l&f1C
zhx>aL^%12@K_dW1ZrT^w<YzRBQ(!`>ATEjvEqTJu^V%A$RP1j>Oz(bs-BY0|0a1w7
z$ruNW$^?1cN0aUNCqiX{UlDJ*6+QzLvov${iT20!$-Dcgh;b(XkfEG)5Gf##pSHUm
z2Lt!XqeM~x7YGHH4H>)jN;j^7riPVq%XILEa@>+yL5IR|L#U@ARzO_}=kP$0yX#S<
z2Ftc8qHl;zMLEknbhk_2qnnDu6(5lYxA5TN$gP`oL>~J;L`t{{HrvZn+!bxLc839o
z4LZgKVmJqmcc<N{;gtkJg+s_N$d+-!SKaJVI%>AeX%y>NP$uHOI5xB4Z@bOUB;uN&
zk0+NAOiUT?s$8O%Vg3rlFplIWp~!;Adi5liH&q$4tieB%p^X#;V8IdJ3_s7A5_KQ^
z-ipL*TFL%;(iOK-Vm5ap1z*wEPLp%X{K%!1W?pvHjz$?F(!`{^W;b4>?P(Ye0$RZ_
zgrb9zr+Kq(bi(qKTVK~k$dI)%D~17TAJ}<~gCqrMo@X&~q@nt^f7&*y69B%h#RH0n
z({PnCd=2zB!+f#b&UrOV7K+V8^?pzks!&l~V^3<C^7Y-Id_p)DJqUdaT#czd=RZ4m
zNf=sGK;a}{L@bl|JomfZwaAym+nO#z3I_s?=E{((f8TYNe6BLS?4>|95v@t~+1cst
z_xpp^WE@z6!H+AHkTt`cS=Z%#9a^rj%W*YIY*+(#*6Pr5U5@2((e4KJQ$MJIcj7q_
z@a35c!RQX2eD~IF+k4gbc1w~G+Vqm5hD+olW3)3&gFD^3yTTZ4*n~x7yof90nX(()
z*xjk3PtIp1=teVJEUp{PidYVml0xQA5fQRUwX<A{RZ0@#5l8`2kT-g0*p=rOxkhvK
zFp(3r9#}MboRm!v#E{`NC|?e8r@gGD8hIs1m<@zzNOK?6(p{h1QH!;h&QhRekn`{Z
zk6v#Zf38dV`=u4J1N{PUmx(XnS=e5#(<gyh<*kD}B{?vC(GHR4Bm=`v&UOnw*4yS|
z;<-AN91g{6EnUWPWq+`H+tAN0<hD49N#a2Iv~#=b`d(mqR8;XN!Ti}pUkY5009!Fy
z5HvFHA9u!N9iXGPpV)krZca#ZZ+;qXD*S9=q~w`1&vzGibtKGfheAf~DKJHZl9Fx@
zELLy?%TzflC-9^qdwey`$}#>_p2g(}l#B{NhVAx%^0&BBIvVxBQ9+U|%Avu7Rl7FQ
zrMW@{a&eisSzI4yh9mdW5w>BR$J~=_PCuEt3KP(OkF@jxblhzipQ6E>$fTgyd4;_v
zMUw(P)^B1i_6%t<s|WT(PVzJ7Sgsfl<2>B8_8Q;8L^z}D)mZ$Fd;sH>J6Wi^l0D&b
ziL?8~<cfrOo@>r+VBhd6qO3}THqKSZ2Tep7W^csq@orMwbz!W(kGeK4`MG25u6wnv
zP1}_6iQ*&e1%;aHPU@iIOr6ASs45$cnrYaM#ecY$AFDm{Ep2Y;IYP8nVqgP>!zSkE
zK5q8?8juL9EGP<+9^Pxu@vZ!FcBEY{78ubL$*IdObH(p^9WoxUR7ppd5t7jPo@tuC
z6)j#>UEABS5Jgl-1%=5?<GsA{a`c%M)vMi@Bz-s{)aPe&@@P!MhY)Mjx++Udg@`u|
z;{S3O#yiPX*{A*wUxqwHvF;<h8Fu@^Yu%mqt2c}7>5ekMQ#5=yktn3+x<~zt_QNda
znLau0hShr7SXMcUnC@4)`LDf;uF$hg?C6^fgvy+ei<dD=r`nTWP2RCdhr%+zV?^J9
zA<x74W|?an+F$x<(8I;RE?5eo^&>xTMt)*X+NI=uT`GZRD<Kceer(VD_iW?0b&*6(
zM>|nJrf|iO?3J#?DS=a_TpUFTvcNXd&5|$N1vh9H2JvGYRHJE}By4>TH+-RvDG?Ve
zZzP5tN!M(eiDbCO^VLIlKvoE$kP>)fCJz^rZE{{a>88F%4!nXmsIxpBkPZ0QjPXJW
z0#N!B*XJzl^yHujC~f046Vyb^SGU+VXNPX}^5-Y4qYN{3kX;qgiXqo3lVgnTPT^+K
zJ=txF{q0?CyJML~P!L=FwItC10`0E1|1J&1$j*hMgnC4dCuJ&9+8pykNBe$$_;8L=
z5L_ir1rr!~qpk0!`0&ahyl@67cVh5JJhUC@m3j8Y0v|u{4rnTZ>58*Tm*)I~n_Q<U
z+WE{`%SRK!V;FQOLT^7JI&W6(K8rYPTvw`G7&JhLf{xhbrac^vAtKDuUzUOEduWhr
zG%Zd7r>vCF*^U!`pto!Ll9EmYq7YtN1!9W$IrGzHZl*`@<v|vXB|PA9U?s`dAaD(^
z$({v!D9?gBZa&z#xE^JjB3pn=pNK%R5jz&UI{T7V71M3jg>6wna{}GHc--q;_A!B)
z(ROTKMtK&OmV+St5s}FWW862#=^tUQ^u`g~_lktXnHalS^W3*hRO1dSs=9a?*$8Br
z7K3fUktwHcs3}xd={Aj-E22J*!0T^ErtQ#Zm#f;4m&RhOY$+pMJ(hQva__UKqsr`%
z!ah7Nt<cIluRYPe=%q1u=OHVL`5N+992x30w@eT7Wx%GOx+!b}-JCq~zx(Z_H-$-<
zJs4-C-2+%WQ#8!Fxq4kE;s{X*E%dGa)Rf_FoYpzIIybrHl{`j}cYVVWsxk^wnlPGo
zkN%XOd@Qn!hh7Z4(zR>!_VaYGHWUe_N1>jqzlo>`r*QQg*QkyXB=}8CLo4H+JI7jf
zs3hcw9!MvD(}(fRe0%l!cF_^)oAHzEWk|&kMn!-s&-CnV^PWiAv-fCe*5l;~w(H4%
zd@`T?{Wq@XF$#?H+3|Fr{P*5|kp^C{iG?o1=%t`!M6^Hx3^Su7@=2~@0mL?n1;o%I
zj7^R?b*H=Pb;aRXRWDbb^%K5JEAI(=-3flanFL2N%a~z(bUgtSRf#_JbeP)#4F&4L
z&^R=QNx?Pk+~|HkFU&Zn;S{%KDO3_)iRv~`#aCP0#*6e1c%piHeuxZ*o4tAGOZLG+
zW#Ea8jW^4P4&l0u?&aG0G-#b@JCuo>)Kob4)sA+NNuh0`U{o<6Ik_#m1L<b#SGMra
zAg&v?n<4|ZKC#xUE@_+$2^u5xMOa}Sr`WTe4D`jgLIg@#9c=c~8c%V1<@{IP^OrBU
z7e7__fOwXYLP?>>^Gn?ar+mgYc0pGqAjq#O>?5d_^xNc_<6d`XnZRn4hMB(7#*B@G
zrDsli-rjwapE%T7f+XQMtA$1n1z=*)2HRs_O5NvGS6;Dpg}o_)f)up>(w-en?ZB9B
zf_5VFk%hyGgeL_u&9*l6T;~;s$xAR-E$X{oYjp`QFk!41K-p6J%1XroWkmsakBtHq
z@{KosVtefklm}d(AJLmb_iPh0KE?KL7&r|Vv2pyC6gG0M*^*?hzgT<X<OG&0@5^K*
zYSU9)-6Wlj#<OE5jh2QPU;_Nx?B8A9p8+OlTS8r*g*47|yG?HEe(kNrG{#yY396{^
zes#cokx~0JtIw=E2@=s70?1MbDB58!za|U-093{h_yGWbq-myPp{+YTNc{7nM9+%}
zr);I-OqYFC>i&21BioNC#$PE?0mUEN)OE9ceqQR9Zn~O3jP7jYmT@~@{cLX>rr#zz
zDb~0a&p`Nn81O1v++;t+37)n(cVFJ2KLG3S$sU{8K0cBF1Hk=?4^7V{jWWk9xAiVc
zJ#H(qvBK;kZtxpOzMc}#gS+kP{>QRi%WLu(ysS*~>OQ+JFR*FYSOn3r_*<)T6SmqP
zn|V47<R8v=zKrnTEOLH-_|xW}9@Z*+E-$+Fzji=ws4GF$maZ3?mf3XE&vubWN=h@d
zeGu}Ep~-T(2|a(a3w}s`taeRNd4h!2x3r8Dg=km0ms$*sR(rSl9k(QH!n*b-?l1WX
zwv`xSLK}PYtE%087`w~~*iqO1yDw$u{VG|_`RG$RjtR-wC`kn_9~6yF4}(=hvj<rr
zS>>@mx;vMK#IHMz?7_G~&@dnEa`*V&Bm&Dy^-4tEce`otYDWwE+#_vrzie|}$O#i%
z-buBKk@6)tC!y@?Ju7yA_+$5d?u%7g(>Vmg;e<?i!hPRTF&tK7O%lQh%@WetSu@>V
z#i>_*z=Rh8XUF*VZNd*|vsDMUH-1m*=EIMIQREn)9<;~7#68BfJT7@vQ@Uo+cw+do
zm9$gG95RWiznjz`L?@Mar64T_2D<y>@lL+9-V28tu(XN!aIm}UiKLr)`;RRe8#`gd
zGkj;^FgNTpmC@!-L4tjMp$t<poqM<%A1A$hzQ#$FzcI(u8}5#%r8mTtNRt(bE<TFi
z)Ei4&iw#M=n(Kv7Q_AIR_)db@<A=C|b$tw#0Q+!ke_!IBSgx=SiDKn8<#cmnEqmG<
zicPb-x&mnz_7#C?JQ($*_4VyPr=(Q5*2h<gi@dC94Q<aebdd<ElJ;1JIc}<*lB*aP
zs~rLH7%z$Iq@O5TW<azmvQISE8VJjYEEL4BGtJ~B_WGs@u5lRR4QxF2F4x(|=V@(E
za|jDuH=JBjs4K_?{TVs???8a705>zE?4QVhJ#n&9IZ92^yYML6@t1&7Ct%xD=QbT}
z50+D$%C90V`|&{JS&v_HCka>KBHC54pL^PQg(VSz*>r@Bc(7c28EW>tMy6-0?9L-S
z+)wwWX0A{_=k?B|DL}wpz>PPDx|^o|Kf2C4KC0qt<D()q1w{Q>*_pNX^nx{^OO;UU
z8bSzxKp-SE3n-x2K?D&5MMV(1Vnf9Ohy@fuMNveoD4-~U3X1RdoY~oI!1wd<ADP_U
zyZ6qV@|@>9M_2bL8eu^fcXp9dg+|G|DBsAe1<+-D*}Qw)p23Riva&a&35e?9+uTRK
zM;LxV94=%W&YCyfU2AmTkVJPc9Yv-W(;pDc&^+_^9j^H&VH|f6wbEce=n}!;7rApL
ztB49$w*rd|0z|Oqv&_;P-I0FWH~zQtC=qswMc0fCql|dZOncZM9UI1;1zcr-oopSr
z0N@v6FSl=xROK=jy9Z_iYe3?I2G~Y5x<+FQt%@U%*uxPJuy0#sAHH0BT14y>oQxtZ
z1`-Zr%TMk5Bf`pF!pC^vua?;ZE)LBwA_yPgR=$z<GJ1qP<H~S17u1wj3%OEmCeLi@
zXFFUFZl--D>6l6_F{V-KsnWmzT#;{Xc-^*c7rvmNs)R=grGk-9P}eK%@8@e~TKA?i
z&5djA{-eT07`(V75MPbYysgH*(LesxHFQ(Z(MxAnu1OnbPcKcrVY(s_93N&j>FuVO
z7FXM+O2RME{2XV_xOi2`;A1KNmW;5)H-|sr@#4NfNQJtXZ?Z42+fEMmT3A}zhXuB7
zhS{{*9yc^RUnC#o$59?PqZivZ{+Im2T?&5H<p|5Z?QeIVq#svTa~mefjqa6Es@_Zu
zSQ?Kh$PjfP>ZkJ!r!I8A_E9nA4y`HZalWe2u|!3}T)f-Ow~Z&=(_|xby7n?JK_y4?
z7#NUldjDmg{W)~@)oLNJ0iHX^J(L!-kP-xxC~)Q1bN99jOL8j}5}1-7VmqE~;8vfn
zYj}G$#$aIu<mHhQ|NKa_`V7@y11{4FSL@OtmBY%Z>#!lROvX63;B&>x@Ph5R$^IzJ
zkY*7lo^r37vMjjI)<PHPBhA_}<0ap0zRTr2uZw(cVR1!uxlZR05H8;=tZ|nt(GL}j
zPFpdAM@6E8YD$&+_hns!x#KG`BY@8lD@F7x&unfQEqPd}JBi5~5yZ76k>ZR%t!>Se
zGm-&XK8b=hZ-_jfl3I0w?=YZC%rZBTwS1h)nJ-5gpOBi)8X;}>%E1HWKN1Y2<H0!Y
zecCnes^}!fv$mMPU7CYzi6;ivS;05XI|L<;Ag5bcL*a)q3*MqS#a<TU@(BPiq(APP
zia%_Ql~LO%Re@Il)o7d@=*#zls%07Xg#GTp0J#BJjt1_f)F*VTzizZOk0iJK1HWHH
z1!0udili|r-#p#f_L&mIa~M+2i_@0_Pmj`d^__0NH&m7#JFNVXSh$s&i!Xhs&>eoH
zsx0%dMKy!_F*8cgh&<^MeqpLDdsx9k(#3s+<Y6#;ZEuPR$#*4e8X{sFL_ZjiHqQOh
zM8yF}QDaO#bt>SbWZ%>8v%M?-pW#OYYdh!KjQHT-0%$VQ9RM|zddRQ$+uTt~P2I;G
z@j`Cz?AjKqJK_~HvjIh*pdAC8#}lsqh<o&S1$301R!i;SAim?0J+%kVk*NBR#TdkF
z(`B4{c!MgTiCe1iO-^JlJmU6)UE0qn^=2zysKf9|Kja8~V-U}FZ@E6@feopZ7T%4p
ziKGJ1{5^O6`O1alc5ydlivDBqsO2?S?N*<qGvc{Z1|;+?<E&y*2$DIfx4h<7cho{W
zS1MA6)*C0|z<=CBd77MY6%t_zK+Bh9nd6taesSV+0%AeEh~zu6&h5D@+$X7<hSfQF
z_~SjVyAg$fFx{<q1fUWnZtg>n!JOr;d7K6c;*HT}1;&mUy4)r8(%;6NP+}0=Q-ChM
z4wBo+Yh9;);p-H6<KiLyOGSif>ie#;%&)V564)lV_|+%5MeDW4g}p_yeuAWUrWta&
zyW`_f9crakSi5|{v8Z64<SzeIuO!NiwSp2?OR^9CUOGo741w4b(&p#U7EH=vTimlf
zbW#~FJ}#WXr=`E*iW(><2)mG|QIToZ-eZ5?rWzGkF0bx@z)P%V1lpZxau2sRHx8f{
zg1oWmhD<fhG*$Vw^Y<x#l32l`;Kwsdp3)?HuzBC;yQ`H<#{w^j?9U%&mU%Eo6-Q5c
zS(mZj-5D;#j-slGjFzdH?UrxU$^?lMIGMbNJQ08YcZ~b-AFXPN&6gr{U}QlL#_n{!
z*S)>Ncan9Waz9w-N#<n{zBFnOJ$t@tCL{)Mc(h(i-L%yqfRo$z({52!OfzHOc6Y8#
zS%Y!_&x}3+P4mIK!D6<Iwnr>dv>Zd_9fkCTi!V2sRjyfY<;QRt<Y>{ZXABlP#53%y
zua&0;mQ7SKET-xM3XbE=`_?sjT=8sP10n{+Rk0dICK#3Z<;BQXpD9z9YYQt!p`9SP
zB(EUbJiFDsHzACQ(?%o8-2!dN$Np1dGrW{Os@An&X|Oc;sDh-KpVN*_yL!KGF4EZw
zb!w*>rbU5k9IKu3%~b#o`pq<4BU|>3`*4m&?y<<y<QyMLfQbJJTea9b2;PQ35?wWr
z0(Imo|M}Yu@Kb&`7+PgU>lHah%IJ*$?BY6p)^Pht$r}mj>eT)jJHVzpZkIJy6<63H
zJgY&Tvr1}>UETj?ciw?In_C~1e^3y2Gt5_8-RS#NeU<%_z{4bQre*4G_iGdFrre7d
zN?iO}d35aSx><dB$qSz$6~{AZGuf`$t=uk*d_rM_1Q<U)_%e6X2sQG(_nxD~wFeZr
z=z%&%iH9I?AR?rk9~HIuEy=yQK1fo6Z_~Q$flJXZWj7&Q{NsH>irmE18e{gH(&Dyh
z%{CJ41xbz=KZk%%pwS22U4u2?qaxM2xV)lfpcJG8I+-`G#jv}yAO#r1si`cd^Rv8~
zNCYsCK}SE^yYEq|1dr1P=bpwvKuBPI{kN`7Y18M<Zz$E-wt^A&m2?75NtU_3qkZ^V
zjf9~t6b%|hA0tN`Q4e$GaM$G*B`!z<L9NgwfbkR4ZNcR#bjdl;QZXZARMjO*#CA46
z68WDWi^p=ON~z6ItCD7jOr)dCx|<_O*(!^J0o+S*3i<I@-6zKfwb;51-%KW%Ylq*~
zNR;o$wtJUW*9;n>THiuj`*x^3|ALT-cNf{k3e@j~3{Me-nE#hWcF+GpF5ZfSz+;IJ
ztMD!tO|yqTrrap7IXb8X&m#W-cF6nMzIwQ#wrofVawXvb$l-VXa-T~Zp+F9ivCz;6
z4h06wpd!9yY4pSI8{SXRm)8yLg9?`%FMVl3@ys+M9(4sJVOWZ&@d4i=UMyYY=K5#t
zZN3z@*G7lTkWvwC=o!$uA%P=AK1`?eF3WRy{|1__pIhZoLi&UGDJ93amOrSw^5zS{
zXt5JQI!H5LkBhu^MC#g?R9h&4bcUAn96Q02&cr`fATSxrfoW(3Br3hq^=#Ov5JMo2
zS?3wYHXqagMqI3P-(Rktmu*x~RZa{VI=!;xF)SZ$j~LW=2r4e5(9-j)X&U)4Rx|xE
zds!DvpSfWM(a7!AcD5n)LTx3ho*la*<?Ts|=C+0N#7>iU2Q}La`N}@GF~IQ!qMRxV
zxZ2CUvbTMq3mlmC#Zq_2P(!CTA8d7>mgrfbG}S@&fj^^h9GK2Wu$EO_q6f6m3Kk9|
zfuWjj@{8>FPvcTJRK7yXoHV!Rnxv21Xg{7@-X4WMifZ!qcs(QX-35Pyw+E&o->v(F
zA`L(0<oR}Dzo5%fC{ndB4GHtpP2tIQ%BYYw)MakqktdF{UwfS?zLENk^eCs3mYa3+
zY=i4Vk8&Z3JXIB=bh}Uxma4BgZ-G6_e<L7IkIG`Mgk=RF@Xe|24?pr3EV52*7N$vt
zv6s8=AJh6R52rTuA$j}mDEpxA|B<RoZ7qqVl(lZd!CFh=A_*KgpS&;H%khxIM@Fu`
zLrLEM(J7v7Mjjg-yjwfPSyuYE-+}O1*+pF%MK}9_<2(R>LkW9hu@hBJ$U4_dw-1lh
zDks|v8GBR(MF^Pv#kp9yJ95^qDkX#;<7zpiGV~C{@o`sttj=X(1vV0q3DpZx2PDEc
zae;fTQEioSpzjhPTOk6xX^x#bRI?SRlE&QK&((WgMFFIypy-r<L{gMMAma<0dYcv{
zcn9DkGVN2dF|amJn|3|j!BZ7Y+xJb79{%qlx5B>(mc@B_{<hy%)Z+0`H}`kZG0C&?
z!DILJ9eJj~H}1E-dLDRq-6ia<w5@7NiU+}Y7hWRRoN4u_J?{qHNPNrQSa60pqQXTz
z`i#+TCDRf}Y>6*G7@w`M<2tI%PK<@Q@jWlQpX#Sx{+`xK+N0`D62#e+&~w8kdwf#r
zQp#vxs$PPXgoGoxz<&0+a{XnWCq(L^c3m5({})h~VNRcI9~i2ZhTZ4Eu^9D-xRA8#
z)En&wOEj3|!^vyoex6yej0k$l_V2GHQt=)&Ra*1O6+`pQPJ2(KzCM0nZ4gRLR~YB+
z)0GN5a#g3&@)DoWV4=WPHvV9<Kk*g{45V@dI4D{RJhHw6+=H(vflr((K1D;`OelPr
zX8WSZS%0LgJqsmM?y{DIgc*MJ_2{;hN<yl;L<lhcrRba$VX4!o!G5+NMSdP?!IJ0&
zD;vgWO-R)8+6e&jglPN5tI?l6(k0$QYXp=Kl!^IUT8@$4o^3z7G0>3{6zN!6GShx`
zS4y=}UlU^4SUn2^l4b5Jve!0EmHw5zYhgqmyLa2Od@XFRC%{?X{d%OSe*)yOQYRZy
zER`@OVc_I%f6YzGZaQN=B-pwU4J}7A?HxX%k!_A#7!6CoMldZT&y0A$_AXQFD@|dg
z74nJ^u)!6q{@ab18iqs{if#x&KX_EW*|F6<=3`lo76q+g)kvB8p9xz8*V%K6+cr~!
zT|QJ=EMuQa@u}CpuE{k0RE!IX4a1O=S7(6ME9vF<C)|pYbbt%@TR@_V&4%TZX}&(n
zm3<jP(%PaG9DOKJFD$XgmZ+E*#jrSmO*DXL_4vu{nD6C{nWhUdRQh2vpgWD9WZx@k
z+#Uzb&e8743W;QT5J!sEwCs~illErxKEF>mKfa$u_>R<K|8{oTOm$A&X`7lVsRZR?
z(=*LGkGlhJY&hjyW%1W0VHsw|J@%OIH3<VJlJ49gm6a7ToR_p?)^B#qD&-IGaS3cq
z9Npxz-G!@^)21GT;Z|NXA;U}@WAkSwy)$0L_YsvJQi;4;W)@H6pT#!oFm1Nr<Kk3o
zNpWCut!d@9ZqTk73|EXwo=F37rg?3eoqd`1gAh@(%}9WSYfYB~&th;RTmMz9MB(H#
zf>pmjpA!_;{Z_jHepn}82tiKte?g*%46b{?uDU^ETULr7c4-oq&)dl|j}*FkziVh9
zKdrWY!@(YVfIY_dCU99nMe!izi^CDjV91L*)jtpnj1LE8b7Dq8)^FczhZr@Z`~+iO
zKFZ#3d$KCi)X`Vt%g_B8*+kE}MJb%9I=By+Bm4Z3uJckA0|x>r5K5YqkV#ni{`9e~
z_jct{k%1etaH3myL5h3@|Jw^3StfQ!MlRDvr(Wu^j!Iehm6`+*`GQ_d-B@gQQ7=3F
z39TE0`1U};NPdF~j`tnymM`;oFC&oYR`4@Q8KB1Dy0c;QrTbDp%T?$$PSt@%_xELy
zud)>FWqWa3U)g%olH|6qW7Gm979<D<PJ8<vJLVoWQ@wi;3u>Py)dR}r<43t^ccivo
zsj!2<NfgKfm6lXw&hL>=D}xf8yc0@3Xcp#}TdE_&uGKh(_o!XY0^SMNA<t|pxBK6s
zo0PQzt;FYYrkTJq+&0Tk%05yVUfpQ^rh5zJ6Fg{6mT6IH@9Pn=o^~MjF+_qW6~8pj
zw&<<gF!{*QJW;+1A2Rl8d)gHJDmDgh6srzqPuP-Swyw1=`*cSbCFP8`4ww)V%}~nd
zw#?qJIWSICLtNU@K#f0o+oo*~ZE47SQXnNb%{QYK*}s=7#2{N2wcp@Z89|U{rX6b^
z@w)%A>3NWQDd|wEdBPS<(cmIx?Lm44(kE--C4Vs?67>?Rz-%3hdDO+DD<Nt!A12q#
z+U&kAQ>0CfMywzOC5olO$LzMa_$?F$+ofid@E|Ecn|4pyin!#M+>=z7G-{?T)3kWZ
z_8h8;Wf*4kH-!c)i~$JhwE4TQ4p&KNQlYLDeMuck8P)5D#tK|@<RVvfw(oZmbVEKF
zVMKwFP4OPL<!z-R2vI>sun7yWu%f0P0`&MVX7&E;2EV0$A&?@Y*3j0c+ZIRD^Vn#Q
z%aj}uPr<a$f(=4Ny~F$N>|)Kpv_=r5H^JnI)xVl$BljsL&m!tL1ATPKC=bxzdk5Gz
zW@{yYMg1)?2hVTGG-Z?R2~+e^-pu(mL%1W5ep38gv+~YJpL2uqt?IT*Z#DL|sDs^5
zph84lIupG}#jA$6#}G5K)7O>QHK#SX@d;J*l)-Hvyt32LTBSyHX(TICkFA7D#dwk!
z1qOBv33ubS?b$`juECxqVjzTJfGb}dZtt8MM9$kF+kit6S86g&v1fRWIoHLQ{IbM}
z{QVSr?=5-_Kd>8agA9lbTC7BU;YYkQI&!IR`^Ul8x_%D&#I5f8*?x#n$dJeoq#q8K
zxaSHtI3AUEET?AUA8QW9y>#=@bl19Pa>av6kl=8N$tDqDdtF%K?upBTCH_Q`7~01E
zI@Z1GHIRvYx`IwZI6?L{&HVU{n>JPl+OR#~_l+p75WJoCSyTFo`^bawnD3(g#Un(s
z0-lC63J-Ldd(?VkCJQSEA{vhUkPT-Re{7F5$#0$2SOyR%i`nm*EEKf!%)8F*_%LPK
zQSe(XqFNOO&!c^lVcyDihuom@=VWSRd0t6{L<iS+Ve@F!?&Q;vq2aiS+qZ4>Y{{5_
z3^Sp-D_RzBG2v_!V+NUb#VS7P`kwCd#k$I?Vtxd<m?*x=%)o!wMBZy2BwbaDH<a-5
z&A68$Lr>BY9$(ohPVtdwDa&kJVqdBZ(yL+zI@OfZsoAG|*bq`^tXI0J`P7b14dDY7
z&OzK!Y=@9S^L)`>zAT=!!|en;QD2asZ;q^qTs<!Mf}X<>KH>3d?zrdI$lYfu`wo+-
zb=6MA!;8TQs4G$<8U0b@x95^ZRjOQ1x6%?~KT+X@R(p<JF+X%ZQvc9ko$b$Az2j*6
z{(S9w#CEh}bPhHPb|^W+xKG_<t(E*4dzaFKpphn8MO3%*4tA5Kq#S>}A59D4Q7j>(
zv|RJyL2g`DC>nQzU+>G%fEf@ax1Qk^?+jpu<gIXc*~lz%0Op?PUOlkUoLnFyTrN}u
zEM&1r?xT>FXAZs8ncr3Cp0KMkBlap_X!oxyu7IQq;*@UsEwlR_sYo81wq0dkNEz@C
zsb~=L<hYxsXxRm{&JP|ZZp<(rO?E4mXi1sRq_T*JFo%se`;2Gp$psq8?VCW8GSs`m
zo&UI}qVHYp<WBD>bXOvW^OMeXZB<!PDSV@Rw)wpGA}x*!`%1P>_u_u~19425W>RZ6
zajCY8@$(fhjx}GTnWx*i86SjQ-ldq^BosyD;k{1o-<9Ft6T)78+P`PI9v^Dht8RgZ
z=}CvwO>qtBJKW5rfn404Vk|@)N`-`}2kmqV9!Yupd5vKdH4@!x-Aj_9ooJt&se1|2
z&-hV6Z`m)1n)k8;-%+0+zDC9Yiu=<ppgk+ys~5*hbmd-@TXJ)n%-?WVT@WghpeO=i
zFo}j4xM}8tmG1tNwK9oE74iWy<)}`AvWV79&w1`_r#@8@At-OMjnYU>a?K}G-O&+U
z;+*t?_1Lv)5YZIfb+q|yjf@-+La>C>m0=3DL@qu%oUU4Q3Kx9YVfGM@PLb(!Lp`#h
zqGkvQj%?Y}=SLTP5GGst$;BGgvx=j<?A7SlR~7B$O8E)pp^(PSFskPDsQE-wWtJ~0
z9#}qz_X=Gj)09k({@SQf^5vQXVVWV`2(N_p$PDxJhmi+v2?8aFst0gYj~E@9<O4}D
zTr`lkqgzRHKysx0qi*Tvit~aQK>>ju5_jw(36g7CcX6%nSJ((w5tr_?GNl*kZKewn
zt1NlcJ=ZdbUXYwhVrzW^Bh&~!Wc&_Wab{q<wyBV)9C4~F^XG26yNCWeUr(qyxKc>Y
z>cNsvayPb3?fW|V8zh-ECGswrcMtg4cYytCqK?((2kosam2b9vZolZL%2K_23wb{o
zrAkypWqU-M=s`tIkJzKLGYP6oVgxRL1R~5;r`taVsLlXC74%x(43#$;9(nwoo^q!Z
z=x^j(TSM-X(hj*fBV6X%WkVFB+gq{<Z&SA0zV^LxZ17@5#WgYIQ`{Jd)viOMw>H)x
zPy04EU{NAHqPx!4<_5X8nsXpswc?V<EJ&!fbc){DB4txD<XW%Uqg}_GF_wWz+q90h
zYO2ee_70?vnw5xbb)Na-_UOIOC7;|wFYN|YSu>Dh%U!Vr4{jX2|6g^kyp+~8gZhyx
z4U?8pJY>I%-4Ty!%P5ssB2FN7;p<VY$JcMU*L_fx^!0&|jfA)@r=2L7hj97<(N$M#
zRDtD;H__n9)69YG-SD~E-$MqR5H}K6fGM5U&-MIJ8?(4D#;7DRLZ;39ZQajLhQU*N
z0m~rP$(On#p7v_AD19TXBkj#H8s+!HqcfigT@YR%SD-QJo`Au0$6xNUMZpHPE*&Xx
zD%4?q+;dx9qXkMGCc`U)hJd!eRHSKs!MpD%cl}$YTBnXytaw6}$IYI*GxBNwpaLpj
zwv=JW<;}x4xb<JD>=L`GYsIKRLnzjV!XUgHiWXJw#E7q%)S{{}Wow9o?7s&ucI&+p
z<TDDuTP5b8=`GFVc67gZ&&tlcxO7PWQIrV~&_(D@nk|<Na3fC&%6a(ls+wW(+6DfV
z;?ly)-T3%N_wY>-3_Zi*JVwYDZPd6=k`T-A%N$Q13c%X{bUJ;Q`!Pd5nmToR8C`_F
z2<5JPQ_$ns_gB>a&$-O`X7J_5J^Q)NW#%$Q)6$0^m+^q7mL2>4_u;Yv!IrC}x|UDc
zn`QP}d8~P$o)o-s<;pMdL1sGEG248-$Q`pnha78JF0R-I)0_`}@-esW6F&mE&b&QQ
z$sO>xJL=S?U(D6M>&}(6^|LH9G26YkpQ<I3VkER85YUg>X1iP!S`lKCs7RS*6x4Ss
z?au2{Q|@Re6)eAL8SY4mF@gg|4-F$1X4s|2sJ<7U+lu~hg<+r%=bF!du(w_tJ~!bj
zv9DMEY&X{E62Qdyr2|KSywLwjXbUhR*M5*?-)x*JybeCLfbiU>5kME1w&vg17dC|2
zS0QodKpU4n18>5UAN0Nb_6Pk7?z@&rN9j7>eDRP?I$G~o*7^&NLxD|(sgQ{LSZ%9X
z>p(hI3y}lTumV{_)`s6?pKGYHhPpP0&YChFgJ6^GZ?@*h_>yF{`W*6QB&#j4*F{p7
zyrz@swFk-W^|g5>?JE1!dEsjnPYpx5GuWT`rtcCv^qkZ+R0cRRZD>13cA7MRA4D6(
zm*Z@n*5YMR4s(1GB%c3_tL=_^8tp$r<tFPavbq1f*6zAn7qMntMb?j#o<r!8ZN9qN
zowLr9;h>IdCnwfJj7Ns)T;Y~Jr)G}JLdOCYkaGT8m$?5e*CoMa1_3X`#-DRK&t?4i
zk2?OGwRoRXo~b$C?w+H4PW-zvNa{${W|_XjZQBJ3>R{o6<`Y#SHp)}oUB?Njmu{vm
zAPk3Coq;xnEc3&BH{{gR^J@NMNFZMM@OdsX-p3&M4O;h7{>ED5nWb;I$I?^pN>iGe
zF`uk-EiY**I2wVW4u=&c7z3Zzx;YmHYL?dqXh*4lS07`pNw~IXwQF7){%9|D7i6-v
zt~k!_f+IUf_ZyKV2lJX$?$MYQp(eLXJC|u<K0aXTJIKIWZsTPkEZvLwMy2U>SK*m&
zdnL!&=H*wM^XfD#)$(7+oY_yKUw2Wsc49_+L=t1uarn%r#jaCZzeWHCxJF+k+fWq9
zb}g{K-V$nM9rkX2$TRN@b>AKoIyuxA`$V7lNkmXt=Ia4&)*+#>f|hUUfu7<jG`>7@
z)^K--Z(k)fLT4o)3z+XT^G>?^VWuWW|HZ!~%b2v@&YO}ncZ-Vf?L*K6<f~b48%)+e
zU=y|$kt88b;nmFnHMZkZK`9pec33%sX^3Q*X2_4e)c&$q0evnjsu?815vi-;np@1a
zZ-1^U91>~(14B;~zlQFeP4BwJhp4Cw!BD(>Mza<#p#8zo8^22aDh~$hUMyiAQ^`m-
z;cZ2RLDQ7BPYN~!;WoziN#dTg!QJD>_wl_F0PB9Cn9f?kR#*8&^1m1O(SDw~DD;X<
z(|?ca|6Q2g7uRke!lD_#BsYrwZ$p?g=nrV8QpsaTw>V09|F|7Dss=@8(La<!kA<p6
zF)s}{GWy)lh(7g2(_iLj7q!f3m!O@+^gN70&mC^{-P&T!;A!;Nbk4P4)H&wjkK9Lh
z=-g>>g#GJ|k7Y*`-R`EuB?k6h=lryv=IZ<LvgB7PC+1x~*_Sk>J?TzAMe9u9D!odp
z;`kS6Fxu)*MdqHU+Ul&<8HfY$`*~&L!nkZ^T`(`x{Bd#QyY#@g)}B|7%mft-^4bq?
zj+}g+Vu*aW=BKqJBlcAN1(7Z3`rTAky~F5QF$lnr&R9~MG}HVYcfucW5jM0M;uDAP
z*_+>SE$izz87Vw7$=dpOQL~i%6>dm;oHg=prKOBcm6AL-6rtIkH{4svVe%b=8qxgW
z-!sjfi{0Af)J=XO9<%a12Z3?h1RWQ><c>c!u$ln%hD%aL5v?2>h{r%ihRCkZx$eZ}
z0T<{jW&^zulvCI}i__hRWr2o@gGxlda?PLJUFTO69pGTc#WTT7+x}r|e6@@PxVHVF
zPI4$gxl!zE?#3?DN}8-y(%$A@Jd=)yzJ71&K6^B@@WyA8QWncJ^H<neJM==Bf9J!<
zi8Zxwu(C|st@fi?$<uOt+hDw#gZ@We>Aj!X2Fq1Orga<Pn}&YQbfUpb^XW})>^3Ew
zv6B<&rrG9@2i*RiZpsq-KXinnia>6D)C~9h{z?mE3-@65Z_Mg}5@7ZIn&s9v)^1g<
z6>2cgo8%9X%EgbldAkCMm4cMtAn;hZ>ac6w_IjS7h(=l!c9s&Xe?Un7P!|25WAvGR
zp&>CgT0Nhtlv)0ntLPeUx2{ovmMjKD=bP;fq642(hAX)nXrl@%i$V=*V1K(&lf897
zyGaC{ZQuxs{lGT=dsOs?@gc=&TR8&z;KMyJFASRa%U%AUqB%aiVS^Bu_0b(9Wi<2V
z3pOn?K$V3xw69pPx1_t06O4Pny5UNLC)N~uh<!q=PRAEkJ#05#9SZp(N+C~>A~dLa
zpQr8kw^C+2qE$Q2D3OK#RMJ4G-dWRa)!kY^qm18iaOKEY`5;&38V>*6HhVINN7Y@-
zH(h?SU(VG<As0ZO)2|f%L-tbp;<YL3-qx=~4!BfyG&c$g(|e&^dV9E0N-Mq^2nPtt
zQiq4_Yj@SI#RTx7mcyvH+fH7j#F4%4k_Yq0?{=Xd%(Ty9rg`!=``80|mxNs8xy9Ai
z4+0`j!#sXEz}*wetLtPT!Y5exxVy?{A$TvfZVB>tFg?IgBE>HAMP+*MC(1UCHC|Eu
zl!3(OjCaT16__CHk=rX3{ZD>w29@kcNp3K&bqq64aB*d%|5++8gke>9IhJYHNVgqo
z`rxP&=0rZtQR@m`%1DIj>e#EJ=*Xavf%e6Aq3GC(FBV-SayGQ+$J^|)LboJ?L;$+z
zlVtlnH^??QEnHH!$&#nMZL<9$D_qv8oUn);MuRHutFJZ9!*ya46BH;JCDGrW@A*S=
zn>>JFQZ)0!H7N=a`c9o<m!|6{bNV}%3@;`3l1^OE;&gM>L+-`tp$n-aJHCH06mb}C
z7>A!<aqaF<a;ID<^UuSD6n=Ky?+#xbE~M42oFQN+#o`2}O?RXH3g-}^{fa(S#bmS?
z@ienF)BR8@e^pwlv_p~Z%rfVsx?j#wEFFJTmlI2xvEdbW)Jf_+s56PT)M$l0kN^K_
zr<*h>sIMU3sSW3VFx*SmP432rm9CDVZVg00)J4jgYtH`0o>HhCYn(1EvM7oqhc?R`
zdyic+Qx7dy704T8geLFk{;%we|0$uH(6SE8ix#CU^Y9RNRXr8n#0bY*6g*`GeltR?
zBi#*0svTxK^QGV=)j>Rg4}ecs<2uB;w-T9lc+Y2_aE~6NOgj!?qG(yZx%or;<{Lq@
ztWcB+1XC2H=4><UTYHBeB+O;PDX1LIc4Ud%WsSXlsa^)Wtu#;Em<XXkx-)OyW}kT|
z)I_~t1}$bZN3p?2R@qx0)xN2^w?bU7-v_pP{8ke0GTkg)ZRfrk?y^19bXa~e)EEwm
z8Tzxm{o61nxpQ&s_GyUtc)jiLez>SLwpC9>UIwx6-2L4RzvxVkx_80p9=OK7<?ll4
znN?V&8m(vMo5-<t%ne%4<g^sjR5K6_#9tZGWNMk_=K=P#v%*>HhChr^vT||>{mU=1
zGmq3oo>*`Ep$8&Bt8z^1L+y`ilJB}!BW4MtY&$y4dDzk<n`?@8x?Z~!dxZF*%{hVk
ziJ%hBFLkxE5fxP03y6Ro{LTXVn+GDmINGWAmUcfFXs}{FwIzorHCvSWE8z|o!`ce@
zQeK*j`5IL0=8S04_39=vrkF8ySP<ek87yahc*r$5F^r@nU=PU>HFFZ<r^dUogLM@v
zSxX<uGMAS|dc>Or;|pZ<mzG3M@B=!uWI|b&H!RG=Kc2Se8Ohjc7K-}U^x@I7og~b7
zrpO+)RmXv`6oWl#g`3da;_=;nmtC}2x1+qaYVC!@Xkg~|<k{Xw2idh=<(0~KqUw`j
zS~ai>UsDbepW6d6WQFiC1aoWjlznlt_Cl~fsK8<og||fAHv2$(g72UQ>1_?gt=u45
z#Chnr#kFqOwCkggF_AR_R8f^v*7yN;edo5XOO>@c86n2C={0tbpDG6fzI7Fn6;;yN
z$`;L;>n`o*J6pXuv#m?(jET%KYu<P7pAb~P^icTNOPox)c_b;?^PJ@To{i*&!1O`?
zh@-WjB<Np@j?sGyn(p~qg&Tn4;NMh{s1hO&D9u^!-b-y-h^hm5d%OZow+11}&mX(V
z9!ubJi-?`7WqerJP&6dt`x-Qg7UgJ19F++F#u7{MxD`T*q=Tbv`!#(A{W-Bb{YCeZ
z!9ToocoVtifgkOM9fFugoydoMw{yEa{E-kAQR%bYwHSsbCLW~XcRPQEE^29As8I3S
zBL|@*IqevC*r6)P&Nnlfft;;OxXfg8Ii|->dthPsVhuWwK^@XZYl4ja%rp~IT%Q&}
zE2I<g9J9>WH(8wjw?4F2+OPzRcVMWp5ZW>V_+PuYTvxd<=&Hir#t*}OK~6;6!)O0<
zKeY*RB0`M`q+W#aDP5fNuYI~8=#UhR8pIFdm}j9`nPCPT?y`3#zdsikz6(zrVn8gu
zmrI!_`kO5|TQ9}0bb~1v2=`pf!=6y-X3YyxR1fA3(4?b*FEA&z=YRpO{R?54l!T#D
zgQ)Kl{1RkQe(ZXkJMV5?SLjTEPzwo-8UgC#S!P+atDLG#FwBH(nPChzAc*2+m<<m^
z`fW-%?rdeC#pP?cr|pX)e|)EcUR<<S9~n}Diy|kk4HF-HXqM20OQ!&@`OD`b*L@uR
zMohIpF|p8F)K$$h&qt!4hCk3(tuYMop-7N?Ju&j<KPhD|)aAyJG#6YJ`M{HGxHGsL
z;`fLsX(b*Sc`hC_){Q99V;&sYzh#Ih^~(}9r!(OMnWn=d^*tIO5RmEzXgq}t;T7L~
zt!;n1VwXfsUXlxhmK=H%&YTK3&T0RS?%8-{Jh5>i$2@<gJMT~B8er@~iCE-&30nHv
ziiKfzs4xWK_A!wr-5k8fzV%mfa|TdhR6~&xawqBJ(Kp&thoqctm?(m~g8C(=hZ^<^
z#(i)|H~~-^Xa&HBqehTzZrtCsPl+$-uZuZWpu!x}WIy-*0V(ojYUM{3522G7t`sB^
zGPg1IrZ3eX^K}JE7L;rmA?u%Q-!DR7AhQ98P)Z^H#q0rf5Hn|gH|!w&UW~aa0+uq3
z7BN6@&GYTC?Y-^*%^R?+q!vh-haa+Ngsa~|t51}9L^TReg{R@Eyfwz{Ob^AQqC^fV
zR;!iUvpvq}C@x`Ar?m7@l@gZC<_p~mzba`1G@(t!z!;X0Nz<}<d%Zp9{D38Zd6xT{
z6ZBCsjep;;8U2#3p3=xGt_8)YEYowNTe?RTqk!ln=v9^?4U;6p>({z(8mlfnYay5*
zH38ZAVU7FXFzq8@2{z$~Q2_FIjSO?aXYP+?VR(^mRMIU7gNTPx)yKX2W?)z_kP_Q3
zuncinZd*6f(=|8~ZHf^y^I#F2dn)mlyb@XXk8<v1W7iBGJPIlgOdb>)GtBIfwu7I#
z2!2^->=y60reU-!S;ua%>9rvZw1>=&)Odk?^QyoxEG!--I#RLsE*f}g=A_5mIfrU@
z3BEN!-2z?*sL#eV?wYd3<KEDcEo2KzLJ#4MyMn;T7ms<)9q)PYlA}n?O<<;MHcjWV
z-RzH*@yw4YtQpo{gFGpzAw2T2z4%)#Oc4KrEeLlvhhf{9C|<g>Csopim9C^2a+Nnm
zLM6*I%}QN|12s3`4+8KZfHiHT)o%UYUT=|yAVt(6>{EKN_?5@~;PU(VUM$dG5jPO#
zIlLv5oXtDmx~uLEh)F?38P&)Vpb|MaZ~y6v*Qcz00Vq|kQ^v5!2;`bie|Hxy*HSQy
z`@}i}7zujS4Wg?i1uB05s(=VB&>@deU~c0_?&Y~nkKNH=@1Z2z=;H&TOO|NwDf|xD
zqzQsp^d(kCk6qGG1hMw+<x4lS2S%@aLobxggUJK6P(BxtMvj?W-wv3d)Oo@Yd5@mZ
zggH(#J)U)4&d@3*SGGwQQJrn}?`B`jSB@pG7j^=(9?=Pv%?zjg#k1YZaqf|PV;H+Y
zQZ(pz_nU8or!e286v7{ME`hGh`a|8jsVcv~O83e#vSDxEgyNrJI!0Y~tK@rzDP^&f
zVB1^=t=k-!?(RBRuj4KiYA9rEBYJT<STD^i{5=w>mn@_HxYZ8vVLC8lIIrCvwuk#E
z)1(CnECQfsaO)@Dwy%7vd}FW|>Dci%gxEYgAp1mj*VxoMuW2Y!dtKQ2qlRh9O!bXG
z_q}sn@*tImV-=p9>I5Je%OgJ^;vVxVeB4k$StU}7ngj_q7?8;nJ!Z{?K@1U37YDp#
z%wC##d7WF*R80)V=X`!D+efx}jyZCLJENXg6@)Dz3XWxrrqj<n?R3|F|0au?`QjrO
zh7LM_50PztOm>xDX*UOndXaefm|G!T%QqGG*(bf=Kb`{u5J8uO!T2O34$aG(Y|hI8
zLeqg3v{68q<Y$nw9dMt$e^@OZR*RJpT=ad=HoqgR6_oh;5|{B#Dju~*+!mG+2LhsV
zNw#I5x0gH_mRlpJD@1J)5;zzS+mr7PD{&u9V<RK`ZnfF-bcvtQv9fRRK=}nEXvM$V
z4GZ-b>|;H%%%TR-`AKR$_g)06Xmnuok0xQU2<b=m91I$C=%C3qh_?Stvr)M)$S%Q>
zVV|FSMD&W^byzKH5KLl1Q52lm%#R-#UGPe%{-A{s)29>GPo~K}A$rR}DX$OGom?wI
zCoQtj5w3L4>{RE-@u7@bQiFvoWugmwU@)%NI=l9ddAiKrBts(1Zwg%fqr9X_SB`TX
zv0OsA)t9=BPk2sDSdJCW`E;3QmwSa9KSw{EF9$oP!B)^z7P;-gC9e8bT@*7?>)V*0
zhK>E;&&cD;lD=WMCCM{!YC;Jm-3(pn`q!3F2GMmpOe!H_fM0*hefwj)^wPh$j36q8
zjPeHpUB2sHY@(%-&OL;-52cp9O~Z;D-UC)gQx9l-`~%t%tm1ir_5eJ^p_nkt4nHT*
z0RD?Az*Bj0w4G8|_iqYn%9w~DBiCpnH0MpXSv%r`^8llSd@Ihg^6AJ&V*=}rN-}X%
z06$^p@&|)|i+pgb@&_>ywE|0osN<TudPGlop4KY1L84bM9z^Ch+PMb@^j*5ENY(u!
zHhK0pwz6?p^u-<gKp6lwx6AdU;M3RHLyy)!5z|~g5;Z*rc4V3Rj&^_K2g@s+bTVo}
zj4vDgtn=KDjgvQ)sZ|C#<#)(c9PkGZcjKaZ6%d~{=YV`N>1u*;4@VW`<9iYmcrwkp
zh%536JnR&D3u!)JlMpVC+~1z?u5J>|fPxwov$3fk?mEn#^MluP47*cjjIsS7f12NW
zyB&U{HDBk;w4Qo~waGF2UEs<e@aIAp6qP8nV!*S^|E_SCza9u=dz}dQ8t3(Nt79iZ
z$}GeaLieI4$o$bTy63eJ7<8!_ECp6VJdWVkjicZ6NV)$W)t=<xi<%hzl9$snJ=%D5
zsPnW(o0Ov)3vRNIb<H#x+uZKAwLOYMQae$cm(%hVH)dAKXYKVvmH7}W2~zFKG?)M8
zN<A|dv)2_1RazC#<w@c2@i+frH{GrFk2t0sZx%|tXJ+F#vdvvv+?3apye7V?VhC9v
zUP?~T^&@TT`9aiK-c_8FPU+8Vnq}8k1+k>_iw7agELzanW?HqK@lgCSEizs-tQdGe
zC^RI8ciw0R&I>cX61vcEd@uYPd3aOM9_&(FQd!nFrcBNt!gRB>ot=}Eoc6Jf`&Gg>
z_nHg8FvB!$YBxWp+lRd<Pu??NamQ(<;WB&F%;bK{89m%x;wlTk3!(rX%~tKQ(XMHx
zTa`scD}A#JGE_W*K~LC5Lz4$jBfpc6EkpH>Tvn2`Ec5P7w)*Vk`WNfR)>+FmFWqG4
zpQCH!G5b&;*j*=Xu+h8!e~v`9x%zY4=idMK4{(yX8*Tnn{R2p_(&wN=Vi`V~XD*vz
z|GiL$kFwSk>qF2^6_XgcdzGDXo9ZO6!hjl*Oz4kXMWfnp)9qPBdKE`7vHKyzT(K(h
zMYGWT5JxMqD5?D-Pqx$&kw4F6QsWf%x6Bm$;~G0=jp_}twUCMvJ0x(5skqU0nxb0(
zDAyl7vCyK74~wVoyKZ6&1#)948}p&!ds;HLJd^vWyUow%<4<~0pad0T003{S!8BL1
zU&`U%DoWb3TFxenbCT<km)fKUHHYU_)(Y6>(rl7pE}Ca&9v|LiVR6k!x{%l)qJ%f}
zWxFmecqmAkuM3H$VW!Et%8nVQx+mh=*z0oO5eG^)pD%P1Q-Tart8$=v>DZ9guMWE+
z14k?2lWS_rb+#2@B7MEIWs;o8;9B$87<c$9D(*$x7U!*G%2WsRJM0VBr>y=<>B<V0
z>zT%0lKFj+Y}c(#`3W@(GNsPt!w{LrRYNGtHfsmEkLzm^g{=%t)4~d(7#$tyu5f`h
zRHrtRCH$K$Rqplr|IadU|L;|9M_e8j7VIcEqte1jcSyY}-F?2Q!<X*;!5L;<m0P=i
z_+Sn%viM?!0KIwDXO4F-cTn|MuI)@CS1e^<G2hI+$sKTJSOk10K!`D9`9&PFvH|Wd
zFQqRzB@i#oN8A#&B)gxR5z83E7VI4BAIYY>B*&b6S@fw>lgFVhPbJDjO+H~qe}kI!
z;=A36r)bvzcwu2FAB<$4OvmBz|5ENIJgaCQ2T4;7UhZ((PrTqI-5rv%e&5iZut%L5
zN2dpU&=R}I;DL1WYmL47UDXM|WJ^{;=B`_d*n)z^b~os?KtwJo2J0vufoo!_gem%8
zbj!R@-VgDyutL(!Yd^XdW@x4>IcsREAYRQj&P2!D7!uaP%8|lSsR0Kk#D{@%$aXjT
zHZ2WO!rYtsLlpMqB=@bS2Fa61)LCRxOdR3Tmj|6iY2b;&t{Lf)DYfqJ#(k*k90vHM
zaX~ib!LZ9;t8ty?r4(;KNT0VPvQzjVn5(e5@QfF&a<_F(X|cPZfIbQM4gTQHPu*``
z2V}1$bUN0$83zSuM;ohSN1Ck)&u_yQuAWc6xT7B6z;HiFy$FHFtaewwm~zR*IO5jg
zV{q?r!Z4~+{6*SGcYLh&xR0)PzM1)#oz*IIG!(&Gt)zht5Q0})ubF%DE!AdclP4Ae
zH~~Uyb?zG<pJBW9QON>R+-^_vDp~tp4rAn%s9Sta2=5ZYF-~4Q90U35RX!ZIiFXq$
zb^d7E%mw{YMNMM4y3~G2alW=gGqm<AC%RntxeC^+5kgRhGC}hccUX4#)>Z^iwjGm?
z2tTMKV&{o@2A|+MtPDK;?v;E-XzP^@#|(2wclYQ_pL1{wNOqZ6JxG#4==wagcMpyp
z@l@FC-qgd?C*u2Tm)rbq%5U@}fp}n*rQV0{Ax&myyxb_d;D^-AQL49@fZrjtK=pO)
zdoDK;x`?E};F+G%nM;E}&K&onZx!N$d$0pyG=MbeJwN0X_f3ZCLa<msc}}Jpf<UC3
zn+}MUzO7%m7w<059Q}z~GFf?doXSpuSxLXMd96wG@;P3&0je!I0A23Y!L-q($%kI?
zu$%W>qqT1;vAqCl3(ys$1BqI$oaa`J38Vv(4<bHqG}DOzm@_up9e!zQJ(R<-Y((@Z
z-uq=-Gj?gsIQPmP)!q}sN6Sx~BP4?6>E@mr-Lv(T)5OtgQ=z|;Z^cqPw9b9IQ)hs3
zC3;BcU&NaRxR%)P;M?5(2k5of5|!BTI&u<klEK{Sj@YS8s{gPw6g=ikcGKewEdlS*
z<lu90P5p0jll?toapUm`4!TZ!;xi^ul;9!N&#^1+RVFmSNga?HHK_vkl?SOY&58Y%
zIc7#p<coN}WrAc=mbsya-L*!0-MGjPEkIa_H}%e8_9d@fAr>W;I8%*)0W#wn_q`v#
z#L|V#YbTQ+7Grew1h?`L4f<I~NC(o)H#fQ;?$Z@aqO@AY8C(p@OEcHr<lep}<utMd
zE=;r}<h&fY5tH2hUTT`<!WgX#SD9{3d)Fl&qRBKRD&daB#}i}w(#^=*+?wN+;mw5-
zV3P;R&C1Zz%~!dHlT){}0DRYKp+I!RFw%%@Qa*H<XKFCVn-TQUtHWW&i=_b?FMwR<
zH<2MW$m41(Q`?*mp<_bi2;T*cjVc6Crw<bMM0}>B=sq~g{xmtXWOpm2v}V<)vz#S`
zfg|l>OSEN`J=Lk0DZ3~!a}Kz*kMDIQ7pG<|(E=}<aYU#Hrc;y4HLp%~`EA3p+<7bP
zh@jsPRkF<yFS}E-b(P1}8(BIre{}o^1ET(2uHQ-j&4wo?`Ejm$$Ft$N(nl*X2gKDx
zeJ@XS13Z_WQ$)j_P&qI^9Nc#EUE3BKbMTxQ{ZLGV#XBGy&on=+bRYHfzL4@JciWyo
zTq0`HYxDjqZpE0CPRkldFLmAN+<a_OC-+0Ypq8$bdny^^3VkNJ(e1-z%7l;9NuD=k
zyA@^Oq6CTcO!Lsau4;%%taGsH_D|%P`Zw7n(>3zf#HhNszYs||3}(OY?ZWQ@k(7Sj
zf#AcuV~`$9&QJF9_*(B`P<oPanFNz-{@!kvZPLqlT0NM+Gy<DI6qR9;pL3six(_Sd
zzR(mA&LS0f;whIDBLaE6yg&l?*a$mxod1m6JUBFc;vpnem)>X`@$nbgkG~0L9G!z|
zon=5nHO{~J#>lUaB)xRI@AJ}FrCV`d=((|O8?-whGqxNV+5SN2*G@#-QHkzm&-949
z<Wl6R3AaVQ`O06BzslmbRYEhDa4zy?e8BR2J1l-%3C*av=C@|HnFs&({Y<dm>^~zr
z{j@$dhKPcAM?km_O55QK_r->kYiDT({`sYYWhA^|2}^v_aW3hL(3}tb0U{DB9C&lt
z8SdH7^&;Lr2DemDO42^@koBh8@1{2r-9<6Em5eHoW^HNQn0~bT>2pP>K{0%sS1Y3<
zqjrEXR@>!Qro6V?OS@1sjaLsqd9YvCF?Y-hMeW7NAm4oW6F1y5GDxJPv6g@Uv0yGl
z$fd_)_AZZ8<IieG{}5kZ{G|KxT^;?y3L!JW5eEZEx!2on%0tO*${S1I*$r4SG>bBE
zn5^W<=UmQGe;t)ETF;BCC7+?$3fDgSZP#^*DkRZUP<IktmU(csTjwXy5%^Pf#LU*F
zzA}diI^LIVeETqFiAGwYf65A?xoy@pbNl--v)DS`3b{SrS@h6_y1U=K?$B41ZOG9B
z@Ejzu9`Q+z8NAj`zfYkA-ivS8gU}0u+iaU-zZj@`Rju2EGsHkrQo23kUA>>eK+@pU
zV26-|ygAbykQ%7c%1iKo6^uw6)W3_|xno0cvQIjZX6jFIjrUU;Ham823@FQV=xFT$
z0Ruuyn<$zVUcnG^&CI_e7k;f%EqKj6DoeDJo@pSt=Dt^K{Wk)`xUOnvwz>aqJN(g5
zRH&0?r<<~Yw(l5Cv#B2KJsOEh_j`7cm#e`mYJ|%Bz$=Pi;FvM)(HWY%@Gcb;CvJsz
zXWli@-V-$w6UYgD^5U2}q{+>YCh><~wK*QI;=(X{7!pdl$=NSD-Vf~NnAA2>5loY?
z4*%PxoEK<0`u61wQv(5*obkK;Wr|{eyx}m^Q!+}5pajgXKVm1{7Bn0?6Qx_^tvIz9
z%M7#MJexjIPc2`HrPl|}i6l2)y1_PBqTE89du{85^(Z66wM?`;%$buSpLlg0!JI@D
zt=O<p2;2T%YB%(6-0(VR{xSm*H%LKCAw8(GA2zgqKatdNq1w}eL4+K!_BM9<EuYv!
zH^<xCU`$gt@EZXlNVaJ>+P>h4AZ!HjXo8K|HULo7fK!x`ux^8A+ZSU5Rb<>G#3q}Q
z`{In<vdFIKqW2|%Xn8F$3>mF-)AAvg)mq2$@aaO%6`C=F12V|}Y@gp#TKuYntvZw}
z;)!c^*rA@1#a`)B+OHqR6#d^c^WmMYJQ_kP2&UEQaOn8J;e7d)>)~~5H7Wzn$5jb!
zNMqPB<J^SvQYXEE6dm(DaQHF4L`F6SF>|}E8lycF*!EViMSVq`>CsSE%r8f{B`Z{r
zqo=R^Q%9s_BgeFv;V!9ES{)18Q*%BijGY9Q3`jWn5jV%rlVG`PnUF~V#c_Wl-gHM@
z;^}x$m=x&<2@7+sK}^=X<^KFE`P_lpS5C!4i5Sv)pJwJ~NALJvl{cYhBApqF;OIJJ
zlg<3YF1SR~W*L1!iHC0_27?Ye#9e<{lRl%G$ghXPFS2-^)&l#11M%lhn?F6?L{eQT
z41X&7$kcDJ8$6?zC$lfjjOoYLMcXOOObnvRt3fWTu*AKb7@9WC+Pm$ESA~&=f+@$9
zpYqJ3PuN~@<)@B>h29Fo)Px&zc|+IWOs(#)wS14ckJQq2?$x!gxI;JjmSfG$Vq@dL
z&DmZLJnc^PQlYSo5=5{vv!(H+*Q@rGR$&A;?U@zBO8LPmVt)6n_K~v#F}{Gn9iA6U
zP*%*33+(Z|RJnxDtjnlpGxV8ePxnN84!DRq#==SwMaVK|9c(`<RZ#@4rHox|JC}=a
zE;v>u%`J3Q_O<(sO}YF}ofnQ4Ei`bB3YxsR=HEwcW|n@h>`u~{D(VZqEI~Cl%{+9X
z8+(c}5c%v*6v2e)lub#>Oj%)z{HSsA0noK-%!yD>bIhXpcIG0bt8$Ik#Lq<ahxUun
z_L773_hZ6(6!#O-G`840xyqh#woVr3g1QeB_rGb0{pUP=pd|Ei5^$zW9+B}|ru&m_
z*I8cHf-O`9k+A}X5PGh_e}w7vPSa@)@az*)Fp^}l<j22tD?A?s^MP1W-%*y<6qTvN
zbUir9+J)LiLYupEi-K*-Y*o?HH@hx5?%=K31CPB-D4n1Kbkv?mkB#d4cq%MmzJXYB
zvdqfABR%G50>nb6;(oCq9ds^W1UELfiz>pPUF{Q%cXta8f#}ogHgltrj=8#HF}{kR
z0oHV$nb6p7x>7F{8!I-8d{7XUeDlElwue`|<8fow+g4&DMcGga^7ING=+1ahC$@70
zXpF0@i51A9){_5Zz2H_eu6UIOdhtvXqs>~)L-zAYp~%12uy;(%McZtP7u3!1#dTr}
zDTU>j>wdKFdpDRk9Dq}B@DjJsPX(i5pO^|#PT?2~k3_e}3;JE4qtYUS<zmZaW=9+B
z2$l=kKW&eI;Y)-xY_mO}xk@AcN9d4ga^ANe{I1Ls>E@^6T7myT;e<pl%dG#z?sCdW
zXR%fW04y-eT>7DX_XN*ZXaD<pp07!u8iC*ZVYdCSTAQ#iUI}U>RB;}%6<&>`?g|EY
zuHEHVfb&8$2mVg%+~_WM%^6{On=tm#cLqbJ_unkOz#ae9|2u>&(=@Jh$0r9|A8>1!
zrE8bwZ!I@~a`$r|rRp-^d=F6qrnigUAuuf9!={xkXNOX{gzZ&Yti2`FFfjbDm$@2W
z!(hpWz%qvp*ZfmomvN`gp%c7+9}ZbM8HuasD-oO^J-5S{$4<xr0SOLCJ-d009wK&T
z=Thq66n8@mElBw%)7>2}#5;E4N?$U}k2q(Fo9vr*AOxXtqGG#(6|^pQ*W9PdC;}X-
zwt4Vy7!0&tM!2`$R}h@9)p|kfJ83*jH($(lD~l9q;5P|TAxJ4oAtTKkew7=`cr}@X
z*MY-E*F^2`g$(I6?%{_ou<8>l>C5wSFL`j2%{3d{x;Mkz!>$8y%fuzL1Z9~%yWO6t
z8mD5S(L|RjgugK&6Rc{lBDdx#oqbI}Q(OEZ;@k6#yR~uXZ6)7Q>rJ{&4%qo=clwT$
z(Z0R)e4-%II4zo`VcL6q<Q5zkdSBy1O~~c@yyQM=q#wu=3KNKdamdEZs}H(EbM^Uf
z8wr3tLxxtn?3Wa<mm5qZp5VNiyz6rJq%`D4crvX^F+*%jsl|hrZ+4HwYw=yHLWd+p
zhg{>HagY8J?!R*}r8S~bDf&r^#`90RU4HfoHc=g7S9qQx1da}_i1uZeLswW+6HjAh
z5}d|!lEY@3?epxN)oR{2_TBoC-1uM*@6YIt-F9TA#zEK<FODn9Ae=<g`F-2rhhR(E
zNI<HM#`L#vUB-I*!apgZbj^pxc9*mv!$)LC-~YE=*+D;*R5qc8!moLKgKOJd3ne&z
zohjxWG>YahWNZG8j9jjY=JD7+Hq$ECEO<4t&Cj%A=X9<?;unocivKX*Qrt6pl!cE8
z>cEo~wt)yinWOHtov%@|MKlM@7x?$YfE<GSt+v-yT8QV|A`>LJG3W=4#QCOkUzwbC
z0)=>Z(PTv;p{}~2p#5*WWgEQ`Z<@jO^!Eq{^=_yL17XPi9Z1vS;gzxvqlsraVVm9m
z-{kFYYQI2dxHf3g5;jN$_w0{Fns)+(0=|&IvqD>Rz$o5WVLy64EO>EAs?S+~>bG{b
zr5m(EhppJAViW`gVL1VqG+XW-_$9EM#2a$RVkiuq0r{r!GPmuouwG{q6Z0Lm(ly&(
z8_)?+3MnZSS5zXb1gdI2sTX~5unH^HIh{lilb&=VedjqBfqV}hW&N~nN+A4**WYx>
zr)UX8F4WOz6mp>-VW}RT;#$6|V&k#~?!hoZzzs6q3_^nHp|1U{DKD*u+$vY{a(&ej
z#$2A6HO)OUU2$vngydU%aj+($5O`jWd*~Adj>IyHxD9CzbF9c@Di5%S{-tJ_O(Qa8
zg?I`9Jp^!C+rr&eKd1n<FRtik(UbL3Sfm!jTi>4M#`}IrKDZVf<I$eg+|He-%vh`n
z?eye`z1Th+XYenq&Kc94?Vy$gNU0V8l}S=iV3)a1dZ-=<X1TkhWiVhc$(YoSE_8FY
zhw-Z(hl$&4Mwg_U@=ILD=D{%r{=+atnDC4uT6Dn#cktgySH8vuqq_(VV?taQFa&J-
z&4@0zqVZc#>--*WNj5CSWsqq}Oo*%BpbhzIO-w*NO>DY=$f*Ds%TI_6O-9iK%ym{5
z7r8v;u0s^z1CbZ<5TX*CRZ7&R=45wTj)dUHca_G+;_6|Z!)eBS?=rqm5iD6sQ`O#?
zz}U+&sTa882Kz~8b)=7oq3+&n53ddqMV&MqWd{)NNX)nO4ZE^5wZ-$QLDa6i4=%x<
z0nviXH?wxxX5H0DVZwwx72B|^a`AiH?Tv*#K}@955h!#!)D1g5^ux9-9}JX>A<7n3
z)Z;I?Tb}X0fjC>9qW@Zfm8mU0ztyhWrm!+coUNhBDn^4|;L)$xtOHW6ZP!?;i}FYV
zpBkfh&{MAO>B^_Zsl)|AP&>t4-qj>JXJ8<Q6_x^vQpkkXlxs}8=&)Xa93~h@UmKGd
zA;#opu0Jrkwy$2vJ7s8ZnH6ms$|q0}_$lYja^IfnwGDYAm4gP!L|?`S;!tjS#w}^D
z;{(~jpk;#;Bw;)sn-J}*rRS);48KFuR8O|&N+RNc3*F`pdL<Dd2`&f<CQIm^8D`vY
z_x4yF_5e{`I3x;KARY%=^xMQ}%fd$4*D1y;XSD!Chh{1OMIqx&m~Ve9YqYx{X|LG=
z9H^bIM*F|70|YowttyEOM)^IELt!h|42ZZBze*Z^Zet;1BP2+ksbK{ov;3G}hq`}n
zQYk_*IcQuGQ%LJ}j(O)^d&@Z?_uVVOW!B?ec5zNv?EzHF#^iUBX#&J`eZ!U>qzNF0
zhe(^f1Fa;-^jzhVTp%c^-H6>N-ETQ&#f9$Imp!kr17V=<9O)>a-d!(x;d_BNSXX8`
z+qBv2On;S`X6x*|2?!$Ju1_;y*gl<k#X|dtWy~ap>E_O==m$6JE@GFo7sjbfFP55z
zJfKS!x)mp@1PhO^hw$TwOi=D)o0y9(cDFpN@hPrcA)i_-Pcb}%SSLn$pB1E-6EaUY
z>8Jb~S@KOF?ZqZIh@KCvKxSq~d)z-sF~(lPFglFu+^M!|i;}}I%Q3T?3w)eqqEFbN
z-IBh&OMyS0gp4zQ$c?@FalGx=Kdk7X^@T!kb*PZLs_f}rpPx_U94MJYt|aW*(!-uH
zAZh*ekoAD_D`j{!7zJ>>dEyw`v_a^8CGJQpFJf>DkFr1BrsYLW5Cu~y^NHOe^p+g&
z6L(Qh6`W$v)()t~^b`(s+rRjKb0bCu40hGt1>n=jazooN6mj0xH$z;@pBu_FBs>!~
zMx3E7Vg`liY68t?n$sq`>wXWla>bFDA5bBZBpkwlkGh|JO?~rCLOxI=2oOjzvtP7W
zPC$5rdm<VplKTpBK<Y%!GRriY=RVmH6ivF8AOY?78Nea?`=M&r{1Aor=|qX?AflfF
zw$<&V=u<B>Jn+mU83NNOJ_Q^`8czJwU)_@FDkA{Xp*x5GhtyjmkcNCSF*W+*JY_ua
zJQ6!fz!N5%=x+Tij8;sPtxY%owsaX@wwB9yQ2G#PvH)f;d)^*X9E6tz-0^SD8#&Qc
z2BLr1-ZDt75m(d1TI?}q1S<(hhdyP$>ey&~t0XZv|Dk^hXSu5zHdl=fmv@!vz=RN@
z-U!I?z}4>5UxRuh=WQ@^)~tWn^v}^WYCc=!PJB81MW@o(7%kR#fhdaJ`C?cr2xMs1
z2;WYA&@Fv0tciu~3@KIPA>l@v=cc$jKhb4QL61?8H#m#Jw&~EvzPTkS74|HVenDSf
zSY{Wq-A-Tc`Zdx<IDSZbigprBfSj4~d+enTD)uiJ20;!bS;PoAP*r!@MQJMSC%;|x
zh;KN7W0+%(ooJ^{)+(>Y@&xKA9;KV7H`|{c3V^IY0T6y9$`de-0mvKdDaUFTA}*K1
zjd>?{7Nzr+{cN*UO5Fs65|0ZxRlX1;if(FiV6x5hlQOt4kltwA#NAxc&klP|uVe}T
zS54EMq#V*VPs34xJ!NNdqtQBYnKM|0GL=Ayn8a@N?03&Al*kEcQ&B#;xDR<8wp0oL
z4Igt49H)JAg5YT{1v3r^XG5u1gcUQ)gDvfsNh+*Zw|JIr?z_R&|51x)*m{hL7!*3B
z2v+Z?A3ZNF?&I4mSV4opG~DiPU*YFxNIM!099XIzJU#%7A@VoG!Z+`5omVOGiO-FR
z_u2NP1WeVE)Jp<3YrFgXZQr^k<AO%U%o&jsZOV6Uvu9>&Bt-x(jv&r0fmNJgil@7S
zR%!IlJMUJ^1SSbg(R0Q<o%*=#Q>o2{)CIs~s;y!Xis&+_j;Ge)N$2`%fj~+b<h>XG
z5LHMMXs^?5ceOkBPHll^dx}&PlZ%C^pUZ6Zj_z>pQ3?MN)h)Blxm)df!$VXV#5ss5
zL6950XR|t}lt1SeiCn&Mm_<PV^cVD+qTu(f+@P}5rB5k+Fs?8UjTjSn=iTnMLp_bS
zYfLs&`PDhn+-r_*<L-YZ`MA!+=g{?Z10;6Kq??RV*Z2`-t`Q-zV>Pctp^~%FeO2_f
zDLU?&f!swy%4yHgN5xcbv4c0i6Fp&0qr9r*jriikPH;T!sSif#ZwQ^>>i)DFn`BtI
zG;Hd0)9SiN(I48A%{$U+NQs^#f-{Um(zkZp^^Kmwrm^ZHNxhaq)a12K-fz3=M6pdI
z45h7FJbP!erx`iP%r?>n&|O-vNYqBRZqf3RW@1F*0j?<C<(l0;xy-NQig(4{z`zzD
zFZi}`^r}xn(-Y2KN`UCyA$Kvie)PH(y0X^?a@C)k-5KA650rBs=PS#O$u<966did{
zauF0=P}`#Z<(2R;MBx}&9&=M+v~+tI=GLu3aak-H2+o9aqA#pWes-zWp>&f<4G&2_
zo)D#<#?ddo)7~v0WL_%8lEIbeH-KG3eK6zK*r~$;d=r}fD57JAT1~PoW+-^0Ax0gI
zAw&`T+o4^8DhfFvEP2cueUJI3{c@Xob|~Bw#JXkKXWY#X7}85abw-<%JVKG3MF?PS
zv4<QHV%NHnEpGawJ8Z*TUFB7aLyaqyQljWR%0A?kN^ufC*hHR*y$BLYd4>$N#!g(I
z3}naxaV<E0<=MOKj!!f(A~I<UN2el&R!HQ5mw&|FxH*I+3F>S3(_d%1vJJY#+v<v}
zD$`v?RF?4EMGR_Wljx`&+E2$Fk@8kbr4|u(P}w*CjtnRb#FuU?$V8?*vT*a__mRcr
zL4>_?2>}qrL3lQJyIs|hOGX8r&E901T+{rY$h3;^neAmx7uN~%GJAXEnx5e!A*=#o
z2+4*tYi^c(c5RdS^F6<(E<K0nbNOG9FFcioAF%fq=9|O+iEOM2U)V-~lVaH3bSxmQ
zzc}(-$E5K?wF<u1m3Z1`e~r`(3|H>8Obx4cO3;6`nsEL2?`>DFwn>bdI9@v6bjWdA
zr>m4F_l%r3OcJO}L|jX@*%h0#zRrgt%~c~I0b~&lWxwz2rPuzyjVU;xgTA!u?$JNs
zL)#1<tW%Mt@bweWv>&C6X-k~+l4m}j5_u~>s5BOpBHa&}j$D(2Jm!%|K~kzrqvI-y
zuwaRCgC}9bH)A8SJUx*0Zj#7*gWM_TkdaXwd|za4w(5`(#A|}%Yp#Oi<e1S*+{HZ=
z$@z~$4N=|-yL@K=SNB!0PdBIRvLn2LJtj=RfLJz2B$Q^(TIIg{Q#rA?R25LBOK>1?
zniQg2-s!IUD8Ok6EYDoibfW8fujhYu6bcbms7zh}uzcI~_WE1>3rL*&ohkZWm)8#<
zIf@fPRTRNM_qDtIywvx<R#;AilPa|TJxk^y<g9jAHB!V~T)GgB$ka1v3N#1Jv1V!@
zYqg>_6%&aU7%Ic8n(Z3D9fHty+@Auu*%Eh0qHf)uhBB4|U5E~YO9)lK)iAN5`HMgV
zdE9l??)?*0AcE)$!VxpBi&3(o%1!7Mea0D|sY+26udP`ESRe7|PuaFdpOkCQQ>Ll7
zAOEPca`U+G(uwZ0lT#*qg+GTx22X$yv&;p9)nK;QxXQdRsT+4$qggpqk9i5#q}YB(
zCciYPvE*9aOGnY;6{xT2*#u=2*4-x+fw3e~H`>cB;%~&XO=i04MOqP(SkO;C=G_u4
zEuUi#pX_Uubq29>h89n?n|=(rZ-FGE#H6_r`kQs-cGFopri&0xwyI()=*&|azIlrq
z{Hm5}IF%}yDO&;$a?7`N*KFMq>_Et<lEu<7o(_zC*gALMfg0KqgeKD6RqMLVHLlZU
z4MfG;#VaH*?y$StSKF-<g0JH()n(j4`+d?rG+uuoKOOnH{;IaakB0-6Ji`u%H)>Pf
zuE4ZlJ^(0>e847+3s*r)k*X3)$k3WmPud&&MQld=y|4vj4osSP^aQucYqPN8MWtB4
zAD?uZt7xR?FFzmwrRUR5UuzdERxn;Ncj?fnka0zXnollwrEx{(qS8@==)98QBUqD9
zmb?AB1(j#t6&#<ah)2#b!#;LT*J#F18f(nb`q89GL9SXt6#50K2?zxrAdkCxwY%&R
z|JM+2p(z1nKvu*Xw*ALtWj8(Es_b<Ssb=`C3@e=C=bNkD*6w<p7%bA3Dk5cu3(I&K
zbIJSeuOhui+6mgDbP=+5o*^ZV^H#W~6SSqEmqg;y>8<V0{uAgYp||y%Xz#0Z)&=pa
zV2J{k(Y1jwoS*9Q&k9`|iR1-3QE;p6PIP_!bSQS3{N7HC5g#e)1RRvlR=AE$RGomm
z+ll~?*N&P7`x@?NUNmWdqEmQ<1m1kMxu>U1U9X&4GKWrtTEZw2z_e_gdv%}+kZ>>y
z#J6j<m`)9bA(Zpo>sv#hArVYWT9Q-AyB|8oZCe`Zv?%2bB24iY3n{{^nB{u;IX>J>
z`x<FE2P6aa+%wu1J(wgT9{G8-Tu^@a4UfAHD*~spU~sX_XoArxEp_LA=hokxeB(=8
z1TtA%p+qvso`h(RuX3wq1+u5|E4bBRA|DNMZ7y2jmfWkWyoT1L{Q%`?AO~aR$6s|B
zD%-yIrE6jf7zqfm$V)9<`^Pl_AtNHAEvc-Kd=NBUWZN2Tw5^*dLjZ>+6+b3fquP;f
zj$UD>Z&g=D2zGuk+ADt35&BZTxpkM@vC)U(*iVj2pV*#+4i25_gfXtwl}ZQaJ23}L
z(iM3cbIDe_eyFBkd|R9TjIFK0mZQ~AuSm~vcG}@#WPudKV%idHR8Gg`%WQgYMg4&Z
zkc5?pD4l|)S@p85J~R2ByR_|=T+s7JX{%&=|L}qxSQgf>I#BYhcmji%Df?pfYj#e_
z|F@iPmcL=|x<Z$M5{mj)(U7JQHIod;U@C^%FOCUKPkVhfwtmP`yYtd;F|gV&1UR^3
zX>)ib%hsz%{_>+n8|8D$`^fl5s+w$p(SvNmGxalL6_{8X0TDb9#A$c90iG<+DuPEm
zJgU&Vt1R>RM=tFmW%RR2b)<Rdz{(SqxfeD?F1b1csw6*3iDx_>eNj6j9Un}(;2jNA
z$%%*5Fd)yX#}RSL9Iu?`A`54zIsq{g)0ePW)p6_sARyDU_#m>|S8%cI_&hnv%!|O?
zm>DhYxS2XglO?SisEfiHvxhD?**5w&MTSYR!>|vU;7f$h2<-nwe`%l-ZSd>e5s9Fv
zAQ(MK>zaG*_HLT1@KfW!0>wYvbI*SwA8*s*ANjIQijpQZsz!vi7q*BFf40%5w;{_2
z|FN=aIF3dF8101lqiuB8JVhg=N+HGrZ=$r-tcB52K5iHrM;zmx0s80D22F+fp6E3T
z8{R*5AE6!YrE__-;58N6*-L~6Z+Sz%=wmMj^&Tk-;Mc_5)2zi&AN*r<_B;BiK%-&s
z2mTOG&~Tgk;0Eol<YjcH@d59VNoGim>gh<^Z-T&EQ4KRAWUe0Nch2~xZIMB~{Ep-6
zR6K&VqLNa5+9I@<Wm<n`pY}p~5=GSx%!Dh*cfR$OefC^UIk}pg0-fi!d@?v(hMBs>
z{(7?FaFRF@cxwCwnvbdb`c$`RwF-!PT-qXBF8b5*Y$+&mbnSd+I&008zvv(;U8MRl
z2?{C41@3_oU1D!^q#<M2K*USf92m6gkBol3pKcDdOnyEWOB8;xnnzzbAS}fNQ>>Rr
z=1&NW{yZi+IaOs-xLVz%-m}!5=_=dfrp7-y)~YCDk|3p;k$KTce=ABLfEksn@-hbA
zi8z$xf-g^sCf7@OW|)>oV;y~rPr}NyI?Q!HGo@{+jxOAnL7HjKJi=``Um2uQ?Jn-i
ztaGY;86s<v+QPlJRVffGbsfP2^s4X~!aQ!?(zQ4v&>qA14K@Qj*mIZIZ(0VJAdyU&
zZOR_EPqYj$frQM%q?j#LEFSH`7j3)Da9t;QJRum!`@-h4#|kTLmjhFdTc-+ko$Dwg
zgRm5r+4<cAY5|ca)_lzk;SlbB!*1;oK3FbAt5qo4oM|GnG2`v@xEOPRq=EXSIufb*
z4BI;nYt%(9s0=NeYOih?a1BC*SSeV_d1<B#m$nOw`;PU?Fe8`RR}T$$)fzg}5a4lw
zPpXKFl_|H)lEd$5GYIreo>Cf(f|2{}wQ2gfoWizMP?m<k>g*>;D0Qp`&qm&=uSqC2
zuMqCCQobdQduEpHG)lu+PD{aPX~=>$PvI!*3H!!qufEoc13C<9K^Z}?=(NKD-NRTN
z9sPyDi{<389Ze04kA3hyd*a|w>1tC^S^__o7)4^?*XP+wuGA&+`9cOhj-cz^_uWz-
zKqj!nCI6!AgSs`TTyxA2w`GH`Nwp^3r=f?IC}=qZJ|$PWvz7$`%i2Nlh=7#2cm1Gv
z99v=KC{eg!a#y}N=^Xo8QSf-Z03ew(!5SDLLSKz+#{J2YQSucNl88OQRK0h&t(qG2
zLE4p9h$0JJK$M8yJ<474lh%32mD>##c)5QKq)4S#@znm9?JjMUdhmO-vj*ekKP=v~
z8ascM#%?^*9-}0ok~sq@1MFjYnowc0MHa>%H=0<$!8Q$y9`L*xZ9-|>mBs=DkQ|#O
z@41yzHH^kIB=Ey<I~Qzn?Yv|P$g(tuRaW;Gr$jFWj`_MX+-I{=>y6P4ObL-|wPR_Q
z1c3Z&jB9vkPz+{r8D~`*DM@b^jB!~Fw2>0CESL5u9$l*I@K-74FFMc-e_ENd@_^*9
zjSxZuUz=|(xWgT?EMN)vpCN2*K9w8VGTgnpzkaHq`sEcg0$?6_k<x0)m)_u(F9@xs
z-ODSj;(@X%HSpb~uJv~*^=A8aX|T{38;-9e@qFM}_tGWG5+HnuS$lupn3hX6an`Nw
zlHM9Ka&9^o6BelvplpK#?)`RboXfix(#mG&waR`yQnOFYWNo2>p%Xabj5cojBpm?D
zVi)XoB?)E>3!o5^V|t(CcHW_Xz-I7CQ2SC&3Lpw|zcS1zJ0e@W2nX)5u(EhGW&jat
zv;GO&y<4yzZEIv=fa3mQB#4mjwiO;z<tmA8U<-+50g60ph<(osTLWpF52-QCKP3j_
zhF^Q!O*u)+@7!<^^N6dYmyTXCbgi4YKX2Dg3|*??T<QwNpcMD%w6LPuH1w1Z9-=&w
zZ9Y$RC;LSnt)@->_mfKV`xf12ix#L^g504zJMW{@vVkfGEpqw3Qyo4k#6CYj3vxON
z@&nz@B|)zN<5Epsi;X0M((_IIQLbQVSQN<_YBW`Yh2}~|#)PDy?jt`(osVseW+whZ
z6fvkfbR6R9J)`D@s32jshO`W3nZgg<QC$?E;${KWHH^W?(5g9Qx7%K+EH;S@V@)GS
zY_T-;p-AO58pO&HM^IiZ&-0k?BfpIefw3GS5?s2L$N=RJa00*XXLnu|{-CWQhC!ng
zq?boK?>Kw(+nSMLzIr5xo-*@%guB}Y(Nls-x@MR-NF+MeU3|uWNuFZMA8qZn{2rG)
z4PV841g;y>#?6QW8yD5|iA_(ThD>ebjS83gt+D_>(x4_tsuSnuiwXeZmJhiJGsE{H
z2&fS!b(K6b^?FzHbwKEf622AR)TGc2-4X7H{E9)NWm1(UIvMwfo3>mp!`^%LAE7a3
zgiP<IOYLccRqcj+jS8Nq%Fwcg?d`qRp1&|iEOjhJQ%Hsc;IYlnO?K%Ey29tN5(t<i
zN4%?(O6}#bgi9u$3DH3g6g%8JooCmcro0SFw;d~om6S_QuvCO`Fn^4(W8e4s`4`GC
zz>;dc7e+4Rn+IFiqt8z2{6EF>NQ{Uj$&LooxsjK{R($DoSG-o+3rO+#N*Vts@}g<x
zt4m$G_rs{Q5K{X?mBVD7d~@TKuE}93zim(`Isw3@Y}a>cWcJyCA0ve|9S;gWm8bo~
z0NcHOvJ~F=B{1fw*do|MwGS)z@{4xGLO<8Oi)k(MA$0T8r-XO<dxzb+Mx}dkLHkaR
z0lMrI9nmL%Dip`?c~BFx%?*9*Z+=o1Kp}d?eXGhxLTr<XkP~Oylb0tw*08a-W)E=H
z>M-Y{I+S7BJ#KF=Q*}z&{*|zI1(rbYnYFL)x77o*Ar#kFP*FOPBu==jJV17Oejhjc
z86^^_->((-CGyQQ7hdeH+^YJ8tO8o}9ftElyo-G>>mPer$DnzKQdF^!%~*maam9h|
zmveQALjZG@0|$_3j=svh{*%gIK#|0T!E7ue1tPGgfC0N`P;|wiO`gA5Ybw1;2iI`;
z;pk_X^9I=Tc^W0)v0{4|Vmc}BqjTNJe%iN=6%xA<czxtOT_1OY{hSpXbF4(?V=j6x
z33ewN*E`MkUW%5_NWwjh$Vg$?t^55R`Du5O=#yfpE~qIVOzO*<64|?BuCec}(8*<l
zolI&LrX28(6k|t5ZrdFSxm^bom-9TN8aDQ2JGPb5QrN%oo=MMY5zH~i6n*BdPEq+#
z-hNj<d5i)UUSZ{*wtA5k@9LI<_yyClT+TgVsv8Vi)QBWMr}dia7Bp~w_fqL)uH(_j
zDa`>g$uh&*xaaQ;mvtS83S6vfpO@NllU?|sejE28)j1^;un%P;ee#|?cbzWs!~d&n
z!y9?#zR18#E!*(wsT%h!m-+z*@#kw@ny(+Q3xn)7TIpakN1fnqYpt_^W7t<9l49QS
zP11Yz(C<Pm2ev!oi+t-0z!}eW?YDO6$qJnDq7qnc#GdQ-vmJj{mYdo>MsMNzL8S2Q
zix=AdT>|73<DYo50b7JT>Ad&s>HWj{UJ`R?p*?DU8KBH|`7MMplqPVS?ENg$EZb#1
z;6urd6ay-td_uIs+$=cEjog-$lB*-b6QtU3UgaM~IyY3QHcnX_OA(SrraAcu+tQOX
z033^oQ8SfJCJ1t*$wTgNz4s{Rm>1F&^CcX5I@Ysk508{L*H7dQd(n|jMh|fic<+~f
z?gu}b2$;HEO%RpJ$s%oU@|Ih6ML^Ouk|+Vc7GlQHtKESk1GrsO2@7bLz~$7O#&2*(
zmg@@l$Lj$^0ZbLmE{Ztmrqivi*{Rx!#4V~8ZGXU2g+zd+OzF|~^ZQdCI2?T@X@BPp
z$tTF{JHGUfJ#N~4in6d73$z)OjYv%W^K<sichn%V(5A0GeL^;TbI(Qg`-!2_3FJ$!
z1`dcd48jYm?EFz-t$htDykcH6&9-^=%<uHm1VH8pp?wUn%<Qo>?&KX>2dtY;z$P)j
zxY^5s^kZ$34F=Aee&JoWYO(T^#b}Di`Vfj0#NHeOSKuD;D$D@Sb%tLEefy4;?u0ZQ
zegR%vx9<Z}ox96k-qus9b#`}*P0LteEJ(N1=**d^pXDm>A^qSbpa~)omt!t(=El9K
zF{z{=xCXe&B04GE4E)SHKXzG7wVqff`Q((GTH(I_Jji<|G&xC0Bg<Tv;gY%~eQ`15
zw0#o^fSR_qx$iI3M1u7$l_U}&+@}dD!%UpwZm!KU$}0p6#aa^3-#fu({~ujv9;ajZ
z{qZYNgdrK)%yV5s(t_ES_OWkcY!Q`uFlNRqk7kT9s&BjYQe<iKO-f3no%C%}QP#3V
zi!3EcNvjgS_c_;d&qBXHdcAaCbKlQ>U&~oO=X1`P6@;6r(i8zGC`9>~#k?M8*e^Lp
zR;7ai^l_fMzmbyk*%(z62zGY+-|c&!22wPdfam>hO)?zP)m60APZ6<4BZvYyw0z_2
zlU<X4^w8FPARFy`TAi=g2l8<sfMo^Ys4tV2NjgD?+3w*!s+bt=j!~_WIVC+4y!D5L
z?t(Lvij4Dsh%5`U<<TLayhO8Z>g+b&p<WQXQ4Mx*`w=3%(Z{qX2)j8;1B0hltcQ#o
z3P#-J?p~p7X?gY#$~oa`LXJx_JG#5LYhy0zOza9wfM9ZInMdd;<Id;ge`)u1)h_D{
z%de^jC0*?jO^XHg`Y}P}>nu2#)c53sNJ4(A{qEu8W40z~?1j!h5$NV{Y*S6#PWS7N
zjo)H`qjN-C?qqZA0e9o;N@(L7vx>?f!=dOAb|-x5>NO9#e(HuJZ$yAU++|bQDSm8Y
zZGf&?l&ra)u<7!BuOiA8qSWbBz00K^)ZPL3bbZS)zX`!fq`+)m<R-S&R#FH)a;>p2
z@sgyKYy$bouKSQc@JX4sg4`mS%p>43OvP506b?k6*cjD3ghcc0GWX2j;KrzFh7^-n
zqR@Rl`q0G;4Ths6hG=jc?~CX~`bHPJQXgL1fRW%$mxZpZeT~F~=y50HiB_C?z<v3?
zPNB${+MInXktgTcaK5r+(TcsvNREbuux*&6sb|=8LmED3S9bz?tU8+59KcaOpXkon
z5Lf|&s5mNw8Y*EYn79^hTeC*%7wCd_h5=1px)nl}YzS<N<9EAd|LD5&yXvP^!96_p
zwh6Ywqu!7Muq%p`l@(*Pa4QI{*|5sBXrXJ5a||F1rXH0Sgd(8+4S(EjdQ-EkS$>h6
zh-xAzvhb3nuy>m~E=IQ^JHJLE6EsE|yB52_55%10YZ7vvh%FMaky^ZOPj(vy1qG8p
zG{zDGkR!vHn0>M9Jzf)I_!hsmLE?n63B){=Ru7vh?Zr>%SE0jXkvXim0yu+P_PWl~
zlt0agq~fF4qzOx%{cg|f;Cd%;OT9y~3DbXYPt0n1U<oX6(y@@#*wmE7=ip!5ApYrx
zf`X5Mrz46IaO*#RyK5d%MJdjBgwAs$w@W$+&cogpT>btE_b^s7>m7fy-F$aa2hDnC
z6Ok>XbpSBp@eIh(e8l#9v%!q+jU;JEt7TPan`<c=gp#}OEcg2+pZkS$50?c=de~QK
zrtTp-;ryVki3C<a9i%87j67-Yu=iU#rbo~;MZII&t6WRw!#rdwq#d-cchTELNy>Rr
zkS`UBFWrn-<2FC75!j=*7|N{NE}o@}!6_#kI5Iyt%hHu#$VS(#w;nf%UV_lF``|eP
zgk&DJmQG!CFJ+`tX(jO$M#L@o?0>euFD8q1N+Vh^HzZaHIBnj2&z`+KuuTV0=Fpck
zk@ZXhw;(O`b9>q^K`-`xxy7suXN6EI+?Pk+wQr6H5~yUYh4(ED+EYzryM6LAf17X+
zq^%lMb;v>F`J|e@FFBK=ONwWMJ6z(^xnyopfxp{6nL2kUdk}sq1p*67iTlRax!Kb-
z)sKlgf|Q1ey#CkFZ&ma<Ew}(?gD2E=X{ghq0cP_rp~-YJ^OaECO#KVlMnVl55gx@Z
z5=Q>@lk7$J2bH5SUn7zMiXJovXV^QJsTak2k{Zgn3%K^uI5*LpwZ#3^N?RX_n+4<}
z8DympFjI(An`ftoc7Gr6YO6XdfvJA9IMma3SmL?W8P1%#;V-&YzPv9ZRhi0c$4}pI
z6Y44ni}#m_2|8o2fGy8(7w%Aen@RJaoX{=VF*jD)Mb9bSk{#0zt`{hPx)(qMd$!vA
z^1yw_9yzi!QYwUcp;R~e%)WkaP@cLU01=v)?ZP0=OvPt5e77Pm{2CNj4T({IfuPSl
z!|j)z-6^X#vfSs=!geyQ(9V7*;C&7pS5TzrGb~jJJnXf$UgHIqC|w>&Ur5DU5UH%u
zBfy75D?V3b@93bRZce$t4*qrMV#UO)xWN5&nnt#;V!Gmb1O{BX*cywwxOKig0oxGi
zHZq?XkRBAm6S!fseY2;Q>0q#n06KgmJCyBv?4P!d)g5}Y>cSjf^|XE7t1gBw9jk^D
z;Tdp%#OH0FTeRd6Q_uw{UAT{Av1Xc!OYJRwEzljrKOv%OfDRa!30jwDQ~!#o|Mv0Q
zWHfN0Xi&(ehzzsKnm3U#PPeB20`ewlhrX#xY@_{pxY3f5Wsl!QVJ5`Lw6AUcGS!cK
zoDdllHU;m;V(j>{Exl9gSpb{Xs%Mc%5(ebL2i-bfdY3sJ94?{>Q<!>zs3WodKL5xq
zPYBY~vRMu(f=Z?oLLLgyqgz$Aa-+oXi$NqfNlf;<``v`L%A)fdn9wl34<}GUxU(O#
zw_dAB+T2HBX@D%s5DH;|=*1gr-L(UbD92lseIP|7$vIr<MxLU2S<YcK+>vaq93Oh$
z!ySy&Y6(JqUxq3BE0nS`$TqL(@Is$m8|v6l-BZ=|_#%Kruo3WFVP#COqZt@H6j~|V
zM~TzmTeFhsuY?+ORCIx$F_1i(0XrZ9UkV!$!kwAcIsT^AN)*RPz{um21WYUJEi}{W
zU9Qtk<)^cBHOOa}0*`OBFZ;?^-0N%8GV@6JyOz5vw(HFEs{tQRnu<`G)l6;}KXkP+
zaPXd@gzPHnq}1=uFnh<iSyi<!`sR-F3qXqj-e=d%?)hlW*+7#;3!ox68!#iO^Lv-=
zG&5-ah!t$Jv39f~3k*>TtG2h-G!Js%1{Tpd2EQ3@B!~X*7WS-nw0sO9kLtuZ?Dad&
zw8u8^0By~nJ0>MQZQ22M!JBGQa$7ZLQpy6+Q@zrjHY%p6FAIcPsnLxWxivM<w(FxY
zS`p?EwcR9Ch0XWClkSbjeW+@HFqC|VflwZ2Vc&@O1FvZ)kF(Nsf~ZZ}5n!|oo#LMT
zL78HNCAy+fqD2mqI76AH^|kKhuQjH@?ukNM$(cetu78oeb9%sY8CVJ8qxq&F4WN?!
zyW1Vl>LAuwHsnHDVXFa^Vy-*r?s`}asG~&^caE87FE0wL=^6zfIUS$o*hkW}<&ucy
z+6;3dnFIERW{g)Nc(zK4s0~lWL003obK~QNHhyW4VvJop+l4yi?3m&^?8>=~y4>dJ
zKt)0l5w<B7E4FN&J+mri3b|$^4do?FBJ7h3#)s^rfI)w0i8%S-vQb=<NDGXF1EG5=
z^o7(5^7bz7xP(wPxi>vc5<x*oM`0Dj5?kYc>s*~yDwde>0hQ<wVTOYKyz{c%aEFgs
z_3{}&ls>}Y62bH7EVukD&2dJwMw>nc&>icaZq8U~6HjRJoUd|$?Ok0?hb=JUGrKW9
z!1Zd757W%;eeGYHHPmx7o}FkCN4cdQ&*m%WLyb`tEm^=%CYde+-FsID>GQSAs^Y%v
z?&-Q-ttLOhN9-=uKJW=x>1&pTX8xk>-q<5-f-b)4tcIrvhD(9@A;aD5LyDH8OhxvO
z)zBYFtLBajH!nG6{7JMHq*Ou;HnZ4BRcvOQWhNfpK(X-6DH)w)UjNDc^N}J=d@UkR
zvsnqzB@)6puh4xtSFwAR1<HRuC4gBNnf!%IZ2rx@wK>iUUTaVW2#O<ubfLACyBfVt
ze;=wUQJ$SI6?H<AIo8V)Gu(H7Hk>n*;75)}p;W&?Ou-MSo9ntY59%Ns(HDT7`&+Sl
z(03HzJF6=<AkQ9aVJq&_$_<E@Xn_Pmv{bJ+?JoOGvhp~XS(IK;#6#oMf&kd+)xq8D
z`AeeQ$fvCcBsyAJ!i~*b&+Zy*5cHV(D<!!6XmIw>fKTi*hXeCGDkv!Q#P?sY%WghV
z3q7fbq;hgJ5~~RR{_E{;r|1g-!=a<aVy6<OX};5beuC~v#9TG^A4&G<t#0CMm2&cu
zhyg6x5=fOKd7_4a;Y`u9_Nxa2<D~{pO}y>de?oWc4zjU5rb87CF$XS=v30*wA{~6V
zY|*_{-ws>?W&5T0HJj@TE3Svga~KU3sC}g)r@R$6X4tX$S2h${Y<4&w%$6cfkgJl-
z84tVt2NWb?eIY-SYKY_&E^)efroHRq%hn?wgqEZxsDKrzCV7+VaaDkXRJoEOJSZi&
z$t7Q>V~BE<N~KbD8NcGDcU)dZlc@<x@gIVt80DVPCQhuAE8Wj$#k}kj0D4Dg(kiBq
zNXH*%yODzwLSwSC!(u<;$1vBW6I|bi)sJDW1^S=?nv@nHg$Pl7hI?#_+Up#NP5=bt
zrHmqp0sX+&m3Opn-4m1AQX72sLO6g`W0lI;{j`C*@p0v8uyK!ebMSbp8JIk}3YO$Y
z6V1bq+E=D1ELm$~U{pMEmpk~RZVV(!Rh4sg;Jm9tm#1kL76K(fR2t0n>Koi~J}O=F
zdZyWaz5BAgj~Y|_u}BE;lHAH#Q*N6QwEY7VsdM?LQJ76Zo<*XhiJCnhxfLgAff#fj
z2tlQ|q4;M^=i}eG*TULskq@u7s@by7jJG$v(5U3*24Wlg>gc#$AjZoU*rD-C5tf;V
zcGm)x0>OLrL3{ddF?IH<Jxv=MDoLnUKv)pJHg}3$XM-DoCk36uMhD$VxYn-R8T0A_
zN;?fSXf6_EJLi{|O1*JXv&l2aw#^^YtYG$~9%Yh{1!PMw=P!3-x@%Dk5v?_9f}<0W
zABiQQH>L+V@dypgeE<DR=$VLDh!T4lSuna_B;p7DSy=QcI}xpM{j+x5)fz&LZn>-)
z6*8!1GS7Zc(BNJwWN_A`0H8#YtIcTWhZ*MgVQ#2Th~;lYAa~;Vg6dKN#(Xx|UA<gU
zT|PnBNgBr^-6NxR`RW?B2NHE!f4e3%uswp7F=7Z%akwH>I6nC3nnNU3T^s6I9t_bz
zl<J(4ZZ1&gop;&07pW)7JN7_gc)3sKlLRwswL9qHIi_HM)M<#=&QK(=5~PVJG~;x$
zdx1UqHkEP6P4SC@Dn(M{F5O)Ix@|nA$)P;07~^xvJvfu3I;rxI?bThw8_*82aW?%R
ztOHz}mBVbtxdF`^KebHR+VDD4%^PpnB_jfgw}hCqObb8~C*#&UJMuoIKVY5L(pKcZ
zrkWGRy4R1_&N|F{4`^KiPT=5$9<m#kH2SH*2|`ka(n$gU3}u1SUg{cu<DvRz+^O{v
zs-Ziq(rbTkH$AS<9k1Vs*HF@3swwPb$6TqTJ0w6?WKo6WhDaHG9{1(fq12F;(Pvh(
z;9?@>$e(9l-h973eN?dJXjZ68A-j<zo~P}UlAr`a_uNXD8(w=+9F%9?d$k+#e9+If
z6NQzk2KnOYW89cIIw-(=4QWgkLW-Gl&^`RIPe$(oBdV;de5{ZS8R<XP{qa_l_UkyG
zUBuTDs4JQZE`{#R)-rc+k+Ox3GRklQx`*B3m()-JD~ZzQXgh}}$vJF)J2mL#6%b{t
z>^&e6sWCOKj;p+~@$hmDo08YV+(i+1%rcCJw56fhhtw=X7NM(00jCP>9p}|Ne~xYS
zu8Mo6KF4A`apELEnqo@63T-&Ksyh~W6XX*~kpVFr%;a}N*R^euc&4vg9x1w}9J0Nr
z5cc@F8MgdxeWu91q7ihe7Lq+4+5J83qQ}&~;Mb(krSf@kSrW{vKZjNwugk3atXvV_
zbjf}&+m5lJ?^XFD*igo75YK3ol8WZ+x7|~HRJJjCQ~&{uHW;1k0|*FqNfgYFb~Qz~
zW4Nd9aZ9~$XMYV0SF<}PsFY;74tFhn3D_MH<&Nf^lfRW>9_{Pi?9kwtcG}bMh=>u2
zd-|7lXSPO+I9X&AL7<?N7GG=L&38YWpj}n1GY5a0E?D{Qq!ZMDJo-qY_79b~Vqfi%
zVM?u52!CGu=wy>$=oTES59VXKFuf=VOlfoku~n4ZfNYofa<I1*HLWVE$eB()=*Ic7
zigMISp|DobCRuY<;^+1DnHE7a#xCU}!G@u;z@h5$v;CuwT9}yiNB9h>=8WDh+4~G?
zO4jm>Q)+m|Yzl8OhNCadvvD~d*%KOkif#?|Q;+b(qFmHo8M}?5{bc(Nuya0F=!)Ar
zMMj4008JDm--r+1ab4&bpGWJJqK(#Qvyfy6w_3EhM7YSAG#%Evyl!eDumfwVkrWfT
z)V_6I&^5TattB%5m1b^Ef_^yfR;z~*fm+`Ev?;dJlps*sL(;&iA~r(KnsmFp$NM16
z_z{&0=tKKoJGDfc5u$A16hq9U;)R3{(@edc?uWlLipQJ|61FicYCz+2`r96tDb9e5
zJt7r|&}or9sh!6%A#LGL2Xc|4#M`dz<MtfT>ZIx!`V>MMzd`BgneP&=P_K}oo<0Mj
ziW3W{{`8%0cXklU)>`adH^CoZv}KWNnXWc0^?$pR6LUa95wm6gWJ=!0%oke!+PKb+
zp;`crS~yX83|TkHyfDapzakLUS*27!QcD)$wWOt6x6Aiez$RdFCZZeC)1>23`-|-J
zF-n(X>V^r8ju;p;?U#ObYkdri>os#q>AJSXJ?L{v8A3Hjfe6WuOg1woxwJJw)EIA2
z+yPDm@u=o4-OPhQ?Z;Yi;S{rQzMWARaL#BZPWZRVJE2lflKE+l{c%czpm)SkP7!u<
z>-qM=$!aiQVOB90lL#Fon+u+^D^FHi5sMJ)O9a1$?2{oBQRe0`TeeW)F>(9g1Xh!V
zDDrgE$2N6`$8LL&-(9Zx6IhJWwuET+QkQU+h8AjxWAPuB{uBCayNY9Wm<Zg8Tp@}u
zy^ykxw+mki3e2egqxEy7F?*W%@CA2G3k@$5c&=^%gNQ!-lnb>|9E4NUna%-)D*h#Z
z76V|GUGS)S4h(k5rR@Y%5r)u09Uif%euzUbQ0ib(j2CQM)*DccL!A?`mt7kpwYvXh
z+ww8tN$!N+x^0=G><EoHag3>1V)i|1=j@I7FIGAylLaprDcn8j-)0*0aK-C`4Ouf7
z!bZQlt()>iP}Hew8PK(K7iSxjbuz-evR-+wJQ4XqwKJ*A!yp3m;mh2LZ*@?DYY|eS
zs7{Y)B6AQIsqJevB{K+?sE!M8S?H)}n$4fuIj?9?gn7s*$pw5w!NcH9G$l{j_-^W`
z3z}PAI$F4)9{DH7j||p*wxqj;8o0Fvp9bK7Ep)>;`|8Ot7d@^8#`^HWl}xZ!!RPUk
zVX@^6yUC|qaXT_qypk&Bs(=p^G96?4w+*sWItkx^<->nvgI;N`F`A_#UUpF=QtV|0
zI6nvL%~RYxZ)zVkf(v5z(7c!6I~2TYf3n9_QSf}&4=xI?``<=xYaNZ{NMs@E0orUz
zYX}t>Za?Cr+cY=+FAtnb#i3xY0q{~B_Kbt>!KDiDV*Aw|r0d^5?ii2$awe$VoL3%n
zCZH5mirM~0=#gI)iD0<5kA*;$O*K3J3|0Q218N6Q5(}E4oc`jA+~ot6Q^OtAekGW9
za=E?WCG{)Wwzb1beE%(--LO-&>-ABiDCu_H+|HId%90$BhLmWUKWLYx>V9A}O6wDR
zV5}S%Vs^`~wa*NXnLJmSwA9Qdc;L%$;r^tWtdrcYzp2D!e!7aDMca-oU}dBUNV-|`
zi#zEaEv_tIgn=iREXnC<X5OCA$-|YNj^k5HQ4;C}IhnE6eo)jT=6*&0x)JImxU7ib
zNh9nTyS2a<8@M|B2KIwzp8A#T@so0i89XA}0s+}&t-Z(Bwc*GKF_PnkA(~;f%(chg
z?A<U)W1=mjkQy>@9w_s?-v00JAd5-B6R+?UKnAA#qBInGIB*V!gkiyma|mCapx5Eh
zwX+(%`Vy2LYLXxsF^Ch<Zr9yzpIaupZmB!ey*yl55*`tex<f!FA9jh`f3+4QQb|${
z#K-`)@}J$~)`X85K#cy_Id1C+9q1Pk3Nz#-=>IwCah>|;)$Zi)>f@!)^<`Octw-zS
z&g@q-r_=#UH(3|Qec_*h-y|D(A_Hkeho)Q@7n^zXud?U5#@*rXkc=-}^D$C6DGdt8
zYu)0OT^jufS|-6hWq_<xv#V2FZk`Sd4UfQBl<Sfy)HE}0cm9b|O}7sbdr$i!HJDm7
z<J`PQ1K0{?IJ{>l%t-MSDej#gtC;<fQMs%m?lSqJUEHL#^#>172F3vC!45V?B1wi>
z+{8_u64UnPXc5>FjDF$zF|qNdxw>nDE>FN%5;6*+w)p6Y<}2%RKhg@|*o-y$ltOl5
zqT6h6Lx%+rpP&@gWG9-hEpzu&k)4ikRZ>lxw_HkZbybegWRy{T+!jBqN{-_(u!M%N
z>^q6gfvZZus>@Q_dTx{Pg8&A)B3wwc0T)WkkjnTC7rH@%8r@nC+v(pNAW{c5y5Ylv
zH_no(2tt_wtA^9@fs602>??7|w3-;~flM^{Z;yuF&Coa^C#z=KJp2>H#DHz~o36@F
zK{!+QP|+Cbx~7<ix7y_=H2&ZMfPvmVky>meI$L6^$3JC1e<@(44hrWN<pNeq$XIfF
zzxu^4KTu7nDkA3)I04uAmxJ~fFYYnS`uMT{phBRr=HqFuV!fJW9Pl1Qddh_+$lgFo
z*6reMT%&t~G39@e_auYD0ZBjG#ct4)Uj!A^4W!G8S8SYf$UAg&y4>D#Porr!Yp2|x
zc>pE+vC00L;R<~#C=3}I=}25awibo>Z+9W1ogkUdeqb<RAFia@cbbWuYTLDrsdKG1
z`mR~mDaFjK3>`O7g$n)?d$N*tLTqFy%ldAH+YlSG`l$v&GQy-9MIjX0l7UN7Uh-^r
zc$)51#$+!BS@@876HNO{-JS{!)hLjGb*M<SgfgK-9B>_KwA<y_LV^JRPBYJb<1TnU
zXq~R}R*mFwe8xOu*Nssmj{`g`TvcrWb~GF6n8|Ly&oOmRYaqv4s(AQ3K+24znX!}I
zxV<{Yma4^vg459GAZ_B*4ne1R&Fh^2YC7Y`eVyZ0`k<6-M*t$t8P^EF^&9L{mse4x
zv^=U0X#$z0nh&;Hcd3qYuxb@(24RM{G<{4Jzo=$-jSp?M(bn<dHSVkxdt?9PY_k1*
zD+_ixnq_1mKoJ{OlNtWA);@Y$6^)w0JAvg5H-Z3T`X{#Ny<nJvB2uLbCo9tof8MTI
z9%Ql9G%PufzqfX+zfr@I#q24jev!B+?2=4~>1J}b_{8CwGb5q}J4|34`n1xfp_AQx
zg3>oQ2DSW?B=gVnw$l42oPq(73h8GeKqvj<HeGL5zo9@UL$zs&1VXn~+5t0_LxvB4
zT^OMclZ4h0NAaiF*#Bv09VG~aNe3K4p|E<B%yC)vqmQ**yjRCW7Eqh0w0CcJd$wwN
z77V-`n8GD$uTg3$$(;GNOHK9-Xa^hVRYu<!$(NvG^bKzOMT+-hK1#f(x)(M5u810C
z40PL{(rP1o!x6YPK;H$wh5C(ETpK_x8!|Y@m<#~CpEvT|I}1D*C&ij71%@UNhkO0}
z9D7S<5QrNnaxcIt@W?QbNa4Ed!3K362Ipp<)^6>bY=(T|p7pJrkAg`sN>1$Ke(^8~
zYpCE%KfYFgI{f_`+S%7vD5%EV)pjMRcm;IqUCHMuf+&uEdC^!v5|#uGg}I@reJiDL
zgLRs?3@%S<wa7?*@|<BVcX{B-h@pqe!3ffLNN2ZcwMtJOr&XE!al~n0yM5fpPP-<^
znG?!Ff%MXXp@rCa?L}KTJfLrZX(*qHu>|Tih5l!IWUC{?iqx=pQzd_TgtvGZ@gWNJ
zQZNFM^M8!8+rL&S9Mj6z2MxpEC88YLR=N|iwGI}eM`9D~yViHQ7Y3-4CsR|qJPK_O
zi|qch6cZ5uNqC_FM1$f@GHzYy&+lSBJ5Q0$ez`?rNPuRt7Y?P`UXLr9i76c|q<|5P
zjqu7?+csalPP|G@ag!Lk9Uvwlv`Dne*mbt0_r7akgP8A^6u3@@gAOsZut6e>Y39CS
zH^d`+Z2DTmFp)A%voe?2P@zNF@{)xTT{dcoWtwkKvoUWrI{#is6FQC5Mf0U<C56<y
zebD~-j*sujsMM;}z!a=4lwRer?z;D5ww|VeK`_OVYEK(3Lx#z#;~KxCtS*s=xN9Q|
zij)K_>K%pCV5i;vRiNIFVpOM^Ma`V~M8^@g<Z~BCgP_<y#Q1y6w|Du#h~PE_B~eFF
z$in99Ew0nCS`18NU-<|z<;mN_puD2QezI0WW{mU-Ya9oEnGHN*vF-Jc2LD;~nn{lt
zX84rQgBJx=`}#$S$CB<6;E`JL<xoXv`h`u-Yo^KL(Rw<4bD<+70?g4va-o}<7Ep#o
za+V9xES2J(=89+BoZIS8xmcrMy|9%f;7sf&$sD`dmDJZFQ+m9S?<0u4A|J(0GfU^%
zr>@a(M&E2C18I1q?_%hH?jzxMjj$8WZg~3w1<w$3aNEQa=SP#J7fR`ec1g<swAHMZ
zXia0WNoLQni|$hZiW%xwFm7UAE&`hhHqdAjOy9nC>9PQ?7kJXM_$UIEX<pnMit_|D
z4qa9iD^k!&^W+qF)+h~3Bj;)wkHVc#HOBxmdfK?0W(5r-qK!wKJ<omQvlSWXluNIo
zC>@4_j!K>~$&K+;basKK$^xF?dmlg5y>wXZKuF;P#scsTyb7b_`s3o~+#e9bH8M)a
zH)8r?wc-&eyE*Fzw_v8mrdWW!k@5JpNJ3<x+1bOr`d<A%`X5y~2f(ylLHrGGD?LjP
zIN178svVgCsID(VHuLw!zm90ADY7h#z)}DoX=eU4_KhV$1!s`U0;wp&m?-QzMfUig
z8!!4?6KiXhYhsw-z|>;9Z@Ug7btICSkClb<PL)FQRV#ZaCde+PKm*NP{BKIf%jpl<
z;xDu<4B!a92}4v?r-1<-il(`18aAE2NGq#%CM3<dCn<z7fz%Xu+`ZRQ>#7sh(y~HT
zOfz9atSNFIei?Lm5`7gF8sJu}^!bzB8`~6YK^)bfbTD<3POw*f8^9$4@%P0`&>l70
z{}-w=J)l!dgF?zTFeK$GIv)(>#VU#*CT)HJm9IM&(P<4U2)D&-Z55v%jtR{m_X(O%
zuAFy{0jmfQ_IIoJ>4S8P6JJG##*|BYJ2Y==P>+aefu+Q2g+na_-X&{8Lk`CDBh1B3
zH3*vA_Rz}EaWO%7j7<eN&zw=l2&aBAwOzkdUMHKWcC+Yo^TuuV_Q#a(%_hdKM8Fi}
zflretLFW53*Uk6}%_4&Vy-cdcnr;~of84o^FBuNDzyO)wxnU2#BUr!>Kfg5os|y<c
zaD^5P?n*fj-_%4Z3MZP;J>!qLTq_ErY&fb~HW<b<+U@ytclOho=_*5|g~TU<EMNHp
z7%kR)|D4bJg3zOP;;j){UoqG9sULL1>OnRg{xuy|Qp}3?-T#{F0LEOl2whkhh{p5`
z({zE0O;FLu(9j5+s?svU!3I>l={5I=uin6rYT;<>LH5|t`EI0dJt#`8HiHl_<Az^C
zU;0wAERve4AUdEj3ZN#Fo0(<?mxtc>BAbm7&F_oiRziv~wqE=tx!Q(;LuJg|srL4a
z82%x)6kHIo|A=3LFix=c@+Y)$g2+p$vH&)$)@rimt<=l2-`}d8b@>c9D<pCjg#n0w
zV!6BVpRQ#_P#&>sREYsAV54;1>i!uOM4$S}rjVkw9HEDI*u~8ny}D5I#3Xe<i;du_
zF)`O|bF-HEE@uPLd?O3J!Ug^ZKb<_oUb;fhJF=-u0sGUN0>~y#()iQu<Zo3rNnC+8
zXu=-CHUa-=`K~QouaN;JqpCG74mT7n!db(#B$Mvlf{}DBM}wsSeoffw2F7Y%EesPH
zgb?eLBq1}q#HA!^dMk@p+mT?uHw8cOr3o3W(Mkh@V#hRlhi|398_FzK<1{dxkxYNS
zWna#2^7$*8u-7klgv9fr!A`z0*`zmeulx4fD3jW@IC3;&gX`B<dEIOYc+lEdRHhZ*
z_y>2=Q$h2%8bxyWn!LSkiRT)M00PNVuNmh3OW(UazKSWE@ZU1O0mKTQ2tAOZm<roU
z-1V9j{}at^4eX7tXz+vu^9?EjNJ8{Us=342g+J(;@j=}qW$ON=34`ak)$YM71Cn|t
z0papSXoeHk1r}1pr>?NB?}U(pZC2!YnZd)Q5PzoGJ<44*v0=`24W*%4jdJu%^yHsx
z-Eysk$kL*(@pSR&&^YX)W+iUsB~^_Si8zxQ>di(%ij?9#aj?5%mnO)vz%?`ge(>;v
zp}XkuH#S;b5R}0?EF>E`+apySmfAP5HiPThXLjjLkiWzfswzOm&MiB}6>L-J7P%{e
zqEl^-VXFCizTGidfnWZDQCOV-X_=6u$Oym4UE;w+#>fuH&n=+P9T`;=0DQupc%x<r
zaO``Q;y|fh#mFR&W4x`qT#Zb)@5YqZkI!qYvV%YE60YD}Mb8~oYEsPj#r9OvxsRzY
zjIp3(9+V0WY|&zS&fj|OpfctVy%;Mt97;INOr9IR^bIYv7yU5l%004x?#{fs;3FTL
z?}|QDBZWU8xHK>_g1?~iCXP4q?b|FD@>m#RK5B8n83V{`I>5dEtjc%RHd<pkQZ6A1
zl3t-wU*%RTY#iSQ=|hO7iYddUBP{jJXt%9@<6kp92fJLNSy+Z(fYZMV(Ry8KHG%>m
zTmqDrS4}YeKX!N3)$VQ#dJ0sKYn{lap8c__^H<Orj)YmtuW1%`qWNT_yRcQzN3r%(
zGflhY?)pP|8xtT<2DY6InnVElv)?8?ZU0*t)GmwG+yDj`HqMRtNo#H#C7>{K-?+|}
zd!&Qsip4RmfNhFoW>)(>WltQh@p+b7edK6LjU)%on`(#63?lzE&@R0BOjCHC-RKQ#
zxf616&^1EvqZHHQUi;mgm`Q9Bgo(!cYPT-pxBK1~>R(kLT*WGhcT)ZeI|v*<?Wxes
zzQ_dItPh#|qemm%g~7IHfqkZ}FJ4+((Xxv&=efUqwj<h01XNYAkaY9p^RB-y76RxQ
zw5vfU@~OKQyDM9387OY+6)p~=7tr`AY>~tB-7hJD#_w4stHP$1yi4l!E^^=Y@kx48
zuD>ciO<WPnB<E&(+iG?B#aE@sDvf67Hbd%%V4Gcjv|n%5zz?9e)cPGwJ8uQGQz>8U
z=3lO$Hj+%bAViT}$s7br82*L*Yp-Swvff>=yV0~-QgF*S+rMsAMH?cw`BK{(gB>WT
zY=RB>W-Z8OzapAblMLrA*{qmpr~jy`7QsG%FsXbe76Y)C>0<1iPbwb927)Mue}!X~
zh6XzG6n8pxMKhE>ginitBkPDZKNu|cF0}bq1<V0Y5*1NI{OR|{?O~s+#PdYPRdqmM
zN)yZN$J4Y59iLt!nhS#iDfZ+6Tj;xDGKwi71PtkznTq{&%zk^?=%D4uzzBUIDTe`q
zO3}W(wkTRtfzSk%EA(io!%G_zoUeU<*)emQTzAjECeA0D|E#y=eLM|nXi#N_3|Vo^
zE+6a$Z_x}{nx{Yr!CtQld!(iy67MT>(`RV=6xIr{M&%D=OeR%$O_xEo*@XeMv&Il2
zq)UzsU#vq}!$_hIQyCJ{yUCC=X!FD-+qUq8`ZuBHvW1;iehq?){|srRxFsnY?HL^#
z?rzd(8~64vXH(*A=jIj~<S@ei_`B?#B`5T_fxCP8+5-cWJPjccjHBlw_n2>GPE+?T
zpuUI-DZ!F#zPQ)@P}cCn@%ZSdP*IaKGGmOqeRJdE?wkqQ@trZ{q~P%gBU{?5QLy|D
zH@7&r)%$~@e2A*zg$%pFjV{+gj$T&jC?$PD2ju{zE_R=Ki<-yc?|BY89VVEBpYL}!
zRO)ST;(W0Zpa>!IqOmu)A0KYo=C|XwQ9ZC<xMCc3r4EX^u%Eksruh1SqCfc#Uk{d?
zWzeUuw!85CP46K$Tk?mr7e-}Jffud}qT-^pZrh9c7Z{M9FwOg*6{dadIv=CS>CAg}
zF2NtD$+)KbAFy4b6MockaZVPmwOx{Qxv<A-m}>0krhDDlzTYiFeQ<09Q%<4IQnHzF
z&|NuM!_*9^Wta!!RN^04EPHpky6*?^kF26FbbA3y)6H8Kx_h?N|81bQnW^fm!x#ow
z{|np`evEafLF9r$%dD+@#@&3L_Ei^HLx>Jha0_-6viyT$_s+$NU!oC*3hq-86<Ng9
zsb-jN-n`T0`D%vHL$XKa<>o{ABM^tK{bGilHA&%CWDj#L+02AY*Z|G)?X*G#X)%?e
zxfmel{NS<WuF(ZSeYF7smqaY0#MjFO$R<b|f0NC8NP+Al#SFjspNJjssEQe~&$Dpj
zV0fnDP9~fF8{7vSv^>jE#amdCk?UN^xqkFW*B7*YntSh%VmK(h8oo9TY|C|_9Ss6s
zyGEfsh^m=jSnESeLdr#D!_r-<LRwL99EoBitatx;uxh(jl@Z`ozS`?H_%Z@$U{oFL
zbs-fA)BO3#w$ojzxOorV92MZUmMrq|q^sD@C8C7zKu|QxLnGVh4|kC+1U?rz5k_0G
z8I$i){%F$S<NDHmfm?}a1PySd8y!hlbKQNur3_mzYdpL~wx3j%_^LttC!YoF6n%~*
z5j*UZmVdd}RY4mpVPa#0!@A%-I{fX%k+%2h@zMscYdP7IL@R{ra_#l@?-M-vhg74|
zu|lapqPHGp7yRZa6~d(_-lEux1k}GM55-nd-zhPVPbG;qz+e*_lj|GcH8l)*7T~Hw
zq3PeKO)g$xBpgkrljK;+!7p=n9n#cLBxaVl22kE5u0aYMzD1`;T&r_@n@_5d5ZKcZ
zDeE+Afjj<;fG$Q0TuL_)W|ioa`RP@cSz`!BsI=K2_+|#ocB{`g`f)gD3tn)IS~ng1
zv|?P<wIikS3H7xWxLaHM$|n*>4qC;LCGfC);IV+9hjZy$Y*7Azy*~OWyRK?%ATU&3
ze!fJZgwjQ3(vw5n%D)5ZaBX5SzgS&14$amZg&@Rh>QYG>bCO+rPovRy5w0P@s34DE
z2Nk6Og5fpp{Ky>~>0|j``ws|@hJ%8Hq79ds-pOtArIXmyL6QXJqLHt=BDU-{1tu8k
zOm}2~USQFI*4{tE9zQqO@M>tXhD0i0-x3J=<M+_ZCn@`u;}9hbMID-?B>et$jqUmM
zn(U)CI`|-!+o(AL`3xBX%=z&UxA9e_ymN1MO$s^eub8((pZL?mATS?F4bqybpgXsQ
z>NX30(_24&&rku16WXDvU3V}>ep0@rD6DC*B*}n?+<%pAdO+F0*lFD<5bitiNd?9C
zUbmllBaIms!zoLgIE5CahEL`1q4W}s1|mnr!Yd-VQ3Gh1=HBM^$Me-6m2V8%%lTK5
zH^Kt!<L0l@FGXAi%rn^tpn=;ib*I-;nmCb>8nw8R&28V>Yo}`@SYBxyt&*!E#Y)e(
zV-$($%0XZpSR1}9eKh#FYfrXUKctz04Ag{8GEJKq_Vc~kg#}#$mRli~almg$7wtD>
zihCvH|3l}~%y+$Aibv;#a8S+41I^*+WnSWXmMN)#d^(>3ZL_U%FG;Ht6Jc<t(6^r+
zBWZQKThDRfGDMs7p-44XTxEOD2|lN@daooJU<p5(Z*wkh^y8_@jHvNBZ0W9#*c-ps
z&tYQwK>oFT3MjpVF)X%e!gAa5eRb!NqMkKI`2jZ984cn$ER1Qk$#(}Tr(F*iF-B*)
zId+Ykb6mCiS?1eyN?9_b$69ypYrcIlN!q26FgcIH@CkYi(z-m|#J=yoF@YOeRV0HQ
zG<}JC+;=Ks@4?G2k)GRRV1Sz~dd{}{A;97=n>3&dV~&!(FWJGngOLGYDA#xn(8kcR
z%fhyDo(2gxAihoq6}shIO1aw(t?l?Wo=t*(RNcuPk-Kb-z4DEqVLLQac@6M!5T;vf
z+5X_i`hurLD;J|hGR*&;vlsoUgIFPKHrPOd=(280-*@LV3#xyR&08GC118>(Vtzcw
zt*NVxYPhF5-4o-Z>m6=aG^rgTNVwP+Y{ZU2;1pl$=J}55tSL#k5{i%vDcH5CrtuZ-
zfp>xw1rODB!sDRh3MI=k&1rSx%U{-oWyO{Ej@ry5Yx@t^@&jdVvg@iFgr=Bx^6ekr
z1`R@M#M~0i^DEsJqcJx*L;|^jeTxicV{OW?`4b!E-|e9dQoxApNHHZDr<Jz(@0GUs
zz+lH>K`C~nxppZ<wn>4GAV;dJEJ2QdH?iH>ve(oZRAWuz*wNH;a#a(}h{K`l?rFSu
zpOP<+px&Su-ha*(Rb@2|%FPdtq#Bb{&=ec<`cLimVRf^rfE+2(679a8Y;tdRUmey;
zi2QVya)EmRy>R-|o7t;IH+HL(wTOcym@fHYY#Ev=m<FfVTYU_R+XhF&G_VRNUeV09
z>F9+b727K%06=?EY>3;gwl6QzeJl8JRaat8<=1Ce=erVPDA0V7cOY$r-Ex1vd;C@3
zT^fLrrI6?+5R{0kEe%|!*OUj$vC^upRmL&ZW|`F4@7urEYPDHjaR`;<eC&hz31F^&
zWY~F^1qI!+pooi1mttD;&$O$(U(V_usSeW3x?e;0cy)j)LxnEFt#EEg2t|^a_Iup&
zo7Icq3$^f$CL~Gk0qRxU5u`=~z4XHtB?=(OI`puMR@!$q1=-d#P73N!12JZrom=d=
z$7t%b*3c-b2$vUP<#W!2a8oaSc}&a)g-YQVAf^WDiz0<^!Gt843H9XWGWYaf0l!=k
zH8QUX<)C8DUzF))*HInB%u8t$4Gc=s2Pu9#-7kC8LgPq9H9SEx$uQ{nox6Kl;3#SC
znT35J?bJAp$c)7e<Fj52PGb%CizU7LN7u+B<@_Q7V63kuCqGFa%k6ISZ<@WLa=Tnp
zp7n$$n@<|Vk9{t9rbi@|eMP)GMQa`BG>gA<R?Pdzc2>>@0l}jL#DR@^L5W@YPhi{j
zqchJ)jh6_fly2HivRD1jXKw<a2d&SkvAM>b+{V|GIU<&wX!=fb?_aIj68n`G(Qa3g
z(2!yNc;0<}dSIar;IK(Ln>5p<Ch2o-LcBK9<t|Vk>eq<ziuYyiUg#41T}Zzgk!CW>
zySsYtD2R*G(1#3VQ6TV@v7{P4;YO~~)=zvh2!2s+9&D#*sslt{o_kVjyKtE&cht5h
zGtIzcyZH{aD6t7NYN2)!rEv%j?49Cn=%62n;Hb&GqpT?&`}Y;D{&e3Jwz`=Bo-$BW
z%2rqWj(W=2VbY6?%&c6b0Qv3-=7~A>z(Tbu#Ujc@tN?w9D-8f)9&6*iU8VF(@fe`b
zMdL^y&aF4O?^<dc36;{PfLsO1NfD03CkxyMZ8Rr^Ck6;4oPM09G3UGEJ#^1>OWtgO
zI0Vvj9N02F&M!o5Y%)RC=yQ)v0*Y5vg_5K~XoDl%;(D4$$5>S@ImU?MWfr-!_64md
zd=SOQ-Q?C}lXSH^&J%c`mDMbL%g41%az8$)rEmFe!M+u?lt!~uGT7^G+^ThVfDiz~
z#(CltU=DuGg2nEaC=0HakD~QKHVEpJVs^afUTUxKD*_TgQ%ndYi6X(lbDEuM<JLEx
zO4|zNW>BOU9+H+eg^vXq3KH~98+DkN)T)p<))j)``B!Y=<e;yvfIZ;eVk%$rwA~i*
zbQJM>;eH^;l>tBcDOY@za*<_SNv@FkOhUGhR<uY?0JdG5+^~iki{ekRN&_SWE&=m%
z#w_>y2JJ_NU={NnFD2@1Ambq4zho1$wUGe`CL|$#fvUn8bV@XDzhg(;r>WCNPJ6N$
zn&e)4MyDN*O67F`7o)BgeCXz1p>Q!rtGXTsaMqTlw%~rXve^W+xK^-HlFfC+ZcSCu
zqJg=>fTQ9as<<fLbzjlw){C{ISRWj;N=z-$I}&PMe4;(8(5u@VxQ;-~M5)l^#M8vL
zsnf&VJ)m*wI5KWPdSD_@|6GVb0`{bur)St56BO(bF#v*#BoHl%R}7}{)J^u{g#l+%
zKq#?ZMJ{qe))d*YIv(5xnk?740-|5j%+t-?6|bs(WkG^4X;Fj|#8;9&e8qmZp{ieT
zuiVk2SrdLzx~svss29I?uQnD2w(FN4AyH}q$epyKTmOK);>r`=1uCsQ1UgbZ#AkTj
zOUqq8QqzJSxxf~;(cHaS3xZWP>@-{FZe0*IYpq~RlDY6{8&|Hu7{>5JF_^=nXaEI5
zISzgeaB3!yGd+M`u+7FQvW|QaYayCMj~{~iSarK=)>6Be@RUwu8fdPAL<l(&W>SB5
z+6!u%qS}4Iy`Z)OSz{R3E2rA4e~%eS))*48TcotC67B;WB+RUbZn7sm8*tI8YGVL7
zQ;|_i_HHNKBd;W26JU}otAKyWCS|f4G(!tyfRaa5p^V}Na2R{^cW>8e((h4ixu{*D
zRJMcRfn|QS)^*5HxB!^~uUuSgVW~mKTj+)*1uV6}a+16|D?tYOMgQ0KzFy;<OhY&I
z%`qe>rD;}$+})cr0|=)?NvghlDe1Ooguf?+ihWdy@9z`NBQPT&6r>cnt~c5h6E*UQ
zeKUmS75LX;-f*x@$C&uUwLvHCKwXmh!Fg$PLVTU|I)tepfpv|o0DNKcOgSdL)eSKh
z&Q!in0KkEkVYhDi&0Y9PP^t?uBW4l~BR1&a>2`jX029k0V^q9T_{3(KvpWwrlnx8L
zUw3FgxIls)Fw2;WZJWlgs2lX_qC-=mBt1&AP7<!_#80ZLwi){spm`+ViG;F|c4=l$
z#3sBP6pSG9TBx<^Ao{%L_I%cOSC01DszTs#xA^4K<6XjJrS&7wyN&`AgQi9tiV1F$
zYfqWui+sog2ciYniNm<+Vt3kxDu7!2YXT7T6_$nscwYEcm$-{|*I#vZW633u5ON`>
zgFFK`y{29>_j8su|HAmd$dergrG;V&ZSQkm{;4D`wr6#{NCeJfFSxEJ1RNl0%;c8I
z&PCKq+3W=K!YX&@1of2JD;#t1WvrxtFpd8ReDvqZ_UZmHpVae75okSDBMsPTes`Py
zqM9sBY7Mv%F#PjFp=m!T+=w*q3d3fCfMfX5Q$KL7Fi3P!Rvn6oA=YT+D%af$c@9D?
zdQpbi{j9s*(~B^Ga;&sq<J+-*nD5U=x-(}fg`5pNAeT(HAehhDH2a6zVfz$q5-TB>
zK5K|^h(gI`_5fG$n1<C+x^kqIIVtH+P^uQYA?K>TW?Iyt@w7^sz9q85Lj@NoxfE#(
z7)SnDpgpNaXj-p#@lCbVAk%_?8E5_Rqs}h6^{om!|KUc`=#yj11W@=)?0*E)@OEx{
zb9K~lXR3>Gz@FOwgB$%{B|a+3K;Ko7oNOGaU?zFS=Dd}m$Ie!mTZ93uU`eBsLX{@7
zxx2lCMlgAsPRtvQh3xz^>T;QrbL>57zUMDx|0wl^0SGIdxFTwYC3$^<z2U2X=h&&B
zC^Dfyd`^s=Ur)8~du|f1R6C0%*|cwE2eeb%11xSJWhYb~5GvxZwHf8=z7gP!gXAOV
z<3qNo6#O!Obq_t?Udst#1Z!+mryXV~uJziR-EaMrA}%pwb#eSc6CK4~ZLrU7i3Ht1
zWjQfh^pFdio0bl5+nFDzU&o>`L%u$R7zs&c67&0!nsw^(R~0|NJq6=g(}%Kv>YlQL
zYPK;4Ej!QUMSEA&#8v<lAG_ThJ4+P;U(&T!(NXNZyzcJcX`27Za@EG2S(TPoxTQZU
zD$TtV17WMPBBY<N_bwahvIYf}-=x@up8_(C$iZvU%sstO6Y3-br<z$#JRWsY`I&9J
zULhyuPdBW@mT^-FA`>MxWq;a2A6}Mi9ie7vsr8w=%o6+hKR>x^b_d2U`B+7T$Prj`
zsW`^_*ShQ4X=Nrph$A83Ujm||-Tk)h!&OAeBP(qunT6lGCBD)&zlkY@wh{ZCQcug>
z%O~m~;=t4EQJ7_%cgg~pR}R^~7ppOZh9^N`qFB9B(ur={^XyBBN}S*|R7)$mBN2PN
zK{NCjyTh|fI1Bnv<sX84vVU?*?Ll7v`>12flgD0Ti+x3AIY!i0=h&k@i29g&yV&Q}
zHu~uv#i0U3pMFj_*lmZ}4Lh{RAE!iY;V9XcMw&D{{w1_{yE0Ib^gw`QOhV4Yf*gC1
zD@_cl?0FMrSh=>~&~D?a+uORU8#N_EfRC)1EyTw9dA{B4vxQJgwMffEn(}PtAN4SE
z-{1l%8|^m_W)pTu|D|^F1L{eLr-;tg7KMpIFdb83>%8jAS`nu8*?ry=!O7%I|7W*r
z_Ce4`0xr3)Ja5JH5H-UY`rsp%wNI%(yjLffpNJ6>fXvV?cKjm&ep<US2+gR&*M;7y
z>TLw<g>({A085&>(}zOC_f-Y7iVC!q7<4woWrtVYjuR9#RE6OCs*8z-ck*+IUGPNA
zj}#k_pdZ4=PXR$?4De&;xJjFXf}Png+r!iph-wpwA!M5K2f01(sPqy&8!00CR*ovA
z`#dd|?{n{etbOn}eKpubfDNf;+W~uan&!?OxiECT8fBO752UQR{?Y7zDGg|j$+pM-
zq#0R!O^s4LsV1$P{d-PO3bb2ff>K5B{=lLx+3pt3Q1t6apo*1#{P_6$PxU|*Xu`ix
z4e_gf$#aj6_f*3pIDB9<83*n5?aJXJYV9{@O`4yk;2yHq?hI&tL~(E(puhuHV#Uq8
z%1zp@@(pndo(@41O@#z{;3V64r21X#P-z|OL-0}Oi!3zuTK2>CukqgOJ*v`Bx_Rj>
zmzb^TyT}u9-o->heBnbj-S7VST*Vhgs=jnobZSw=*Y~-OOVk!cI0nVfgpI@|UA)~c
z{3c){^@~&hl2GUuxC$fU`&qW@x1IupT*!@zW3qABqSvkoJ#e3r<nffNs$!t463vNk
z*_#v8Nmg+JV_3mn_HVi=E~(K@vL8x!ob|<lDewoLcguaY<aw>C%6=dQ5cQ3uISf_A
zrr7Q;1c(k<ablN>VTt<emgaum6y(~9LswNFJj3L)bxn5$^#-y3sw^le7WV7M_R~`B
zhse8XE@ae##Cm3{{eH6zt<V|38y4;n<{?b#B(v;YdugF2l8Fef$y!g5g5R6U+)Cf&
zgcH%P99bj=H1!ls{|wvsQ{C|d<N84WRZJf_LhsN0_RMEA8po7&B{R85`DP@6rI~vw
z?B~8^EP8=%CFB}<S`ZD5@ZdJyV2|(A<jEf)zT{vCVh2Y-D8hIcvuBTS!%x(#EPk|;
zbV)=vQ2mUM8qKmBx{8l|scbs_p^7;4tg)Cg8$w&|(lur;cO_OJTN$O0-Q0e8xo&0l
zQ?yo?^hnPz$8EMbEfqsnb0SESqF{cSxwWm^<C&g9s2fRUE@2_4_lf4kKWwL#nj_1H
zcLvBPwRCldF(ut2GfnbK_M%Zr`bN>zND@ysf6NG-;giIf=I+?4;`fN~%`jh_XK$X;
zIP)i8R-N!pku;GN=sn%cZfEPg<x@nd79B0X&q<+);g@di8;U5h9crdXr<za3huZiQ
zY34AeuqaHu&S+mjlJ<G(z-@NUWL-WEIPL$$E+pMMN$OMQ&$Wl9Yn%|#S{<iiVK?0A
z7R^*!if`{u+P#M6C_bEGLeJWrm+5!wIa2MA24&&3Q|-QZ?F}O4so3CAf*t{L9Q{GN
zLm8(A<*I6xTZ4FXj!k<{vp5kU9y*L>vQf2;(z|!NGkk9ve({Ky1Xjf2!=VzNu*!4`
z`h#&R%1(TrtTy(q<&7KM2<4U_bNT47gmB1Mzyck+#o8})gE295|0KmlBp04O>y$Iw
zemp@%9)?2g%3bX1SF>HGVvY7<E%rRJ>QjbUdAIBC&1R-TO46|d$WF)L#-luKXlPIy
zHMkLqHG%^m=P&Jb%a^HAXDDc7N>3d{_|wck=f_W&5_4ge76T#fhQonghD`a*jkf9H
zz?;^9T#yJTrP>#*b&Y&LPi7YlD;kt~`v^sh^b5as@y98{?5HorzfbDxri|7vW$J4?
zR^TDis=M$4pljZd_@qpJdSV9j@cQn$3snI#!-6TPPeR3GjDi=3yXL;K4=>fP0E(lJ
z_z62c)4cqGyRc47<XeJoL>{!lm)9I*{ctjG9UlMsxs7kR66{vo610}hDFVGkc}RNI
z#`Sjgz3P_8C*@LEM!%Qv7UzA|>8>(Kn{~@eu`;%nGmwtB$R6hY+M~*nV-b{Xml{xn
z&<Qu*;2KTUavU6unm;bBu+z<_Gwrj!6*jseXM!TCq9~|@^RRW#1%wia+EB85K}Q;#
zW}2&(hEDn{Cg%cWz-t{-3~azRGwxkG{MaTL&uYnz+FKFe>4#pfZEmnYRZJWTw*i<8
zZE8O|RZk?JN;LMU%9~8(AM@?kx2gz0m}ZR_5ol9DX}XCYj~(DaS;3|dW8*bBljI4e
zY5KRWq;JgL14?k!B2gVlfq+!n5iwLuM98vXq|+#({<V#6&`0&R6evk>Xlbr6dR6nD
zxzP=MO9$BU06~>eJxKT(7ogX%@i%Q#))!w;4V7Tj2p4+8Aou#4iaV-zMexrnZG0<s
zLHzIbzDu+!C_9X}h_{|0sB`Dy&)t6S>To~@6M%`@J9zeN>+K6dZzKiH0&>do3&|;=
zO@PErh9tzt|E4|UnXV&pRalKi4eTec28F&5;l-NjURC*tf|q0*p7Mmdu4NEgIHEox
zXhpp*ZERnSSYs}CDb1ab8%-Dnc0!^px!*l;Kn-R;CDlY{WN<annd1s3I(96MnvcRz
zgp|8;n%X5FHrhe?ZscKaTI>qaMFmz+n^uk7AGd4Y$H9Y0*tqDD_&V85CE1Jrr5#}r
zDWRO)6!U${`1yUBo_a{*j8zl{_yMTk<NDGEU8yX*oCroB5o%SEF!88evP63V9c>Aa
z<`tLghBZ-3K+jYa8bH_p+qYf5-Qk-AL_fJ!ng{06hV$G-D>OpLCh8q7qUwY+s-Of!
znrYW7e$2I60z$NSQMgisJVgN^guL0`ZY|M#blC;rqEapDjCM~kuPzRC*b`(w=8TNs
zB$N8c-nih?(7t-gx%?MhlwwZZ6B^@-0`thDvZOJz&Y2Lp+NazhTe_1Uh_Of<4?OAm
zx7?yLHI66y)#tg`ZqiRoVnotv=+BjISFAedP?!JBi9lfgIob`mUY!Umvd)o;u|CX>
z>M?89T6fUHF>EZ1v23{dgpa{i**ZmQ+}3lHgo@n4#V>;NfviPQHk)f7zE$OxIAFEX
zR)AHOyYa^=Z%7ctsFRK<ieucgZv0tg+RmB#dIGY`%u_`H_4?vaH-ED>8iy{`wIaYi
zVFTb2wptuF&le!)K8c@7&n?7Jnlbrq^AkZOq=8a-UUCL7kXANyyV4YK!ys0n9<38k
zAvj{Wu}f{jY%K(b{pZWbRgoo#PV)6n7P;I0*75@EPmT5xc%l!m**ne+yQ=YHB=d-T
zqEaCc7n^}>671=;;qmXE8ndObb|0p^$O!rlb4ZiTJ@>gre+LP^&<d4(j9-H?ZfQ5}
z(E9nTvb?F+Yoxgn(s*!+JJ?dwTtzA7MkGyFN;#yPlb?0(e5esX<c`J{INjpHU^_}2
ztL!8@?jmKKAPOlV3qL=|V@m?S$uJW)+U*ZDxq(VavTp^aDuW$L5i)?Y<UOI=^OfVr
z%~kOu95GO)E5EV@@2DfjexmSpF+fvAKwihn2Y7y^)ZTZ#TKPP>7Y4MrBY2%4&llPI
zKT<yhMGQy*k*}I`#|ca|iJjbkMh5CjqQU~|vrUB0nq>aE!S;Sl?HUfgH2T8U7Xk)-
z!fv#iUQ&<?;C2vE6WLo3^$E-seBqWpsziNm0<^7UL^xDn4HvpLpK2h0wHy$sgpn%@
z2~-VG-QoRi%!h$DS~Jlv#a#1?9X&Bf^y>@X8KNDeCLG)b7rHZ=H9jR(bM@5b&BBfp
zheRrRoz%*nd%I@E@{+z1hJs&`TAyYH?R9R3BFq?(Jt89n<fmx{7DmHWZq}K~yI?}Q
z7Qt>C6)7Dp-VZyq#Sfv2%XP6hr?o1^q1Ygb9lFo1sVc2n6WJgL58!``eePGSvi@(D
zD>a;MbJz7%z?Ugf5MJmfywkmhT)S6wdUWohor}Pta3en2?oyYjdjhI2j=YT)|H2AM
zF(1uxDW1xFl!3`}C-rrWsR`0tjfgBM4y{Hw>K(Fu2e)#a(joZNK1#mA;Z89{uUYeQ
zAdsr5hA^&|P%gsfSi^UqhX(oHw53Pw!gOx)gv<5SG*Nv7+UOX7`-|@53(^nUC%x{2
zpD*~H-Usgvd%Z6F#V;B?^P3iXtY%1KXkuG$Xl36uT3Udms%;-52KruOKlXtKChe&F
z>J0PfG4W$Z2l>@Cy)4KC^Xy!oQhcP)1=$+<k-Mpm3SAB*G{B%_Khah!&^h<n(@tz6
z(N=!7Pr-N(WoIOkuhr#8*YhpEQncpF9ig5nh&#t-Vw3poPiY%i1UWEHw9YFIH{$23
zM)6bstAj`7FEHA5t$WI6H^4FI6sa5~ONij*T_!YfU*6Ot>E8O=7^+b<Jc-n+bo0nn
z?)5vHq^v%E+YsWg`MH$>IvaS|m}ouz=U$o6u;H|ZZToj7<7oGY+>xex;y}~tk@)jx
zG!<4gKuqwK6h!8hTW@tgz9B^yBCsh3MG7k;B97aWE|h4JcH3SbB}CX&kP9#l$S`66
z)sgV7HD@I3=D7CFE3f>%#F!udIQ{BH=gh?P`R=pRmOpXseJJNki^7zD2*cqnHRkXK
z@e4mZXMPuoc!E|6@DBMg!7N$SDsFH4;S@6*BuO>455;3GvdNeizK%Qnt8-<fa~Sui
zf}TtgeKd={jJtEkx$;td!+Bxei=Nl1`odHi8gIw;=-8C$#if<h<?1p{9Q0)K?8~vw
z-kaEz&+aZEqyRD%+Ww5}7H>{Uk|8fvyow=YLxGpUEoO~RdYW&0AvM<4O?$d4RS%`Z
zqGaZ2*TUtW#LkPaeVu7aH|saYc5_Eu7iz#qU&LN_dhP2{y1?AMDYnxYX-{{jxedmn
zM-|28gnM*$?7K(&0{KA1emBLQbmVnG5r=Gy9m|tyzA3$>lg!@FV>^e^p6*6{xpJ1Y
z+<-GAn*V$l`)Rw{e+`&}<l7Wm$3J}#5(*M8!L|%@{3o&f`qchwT9zc49UEdVI<59~
z_E?hXur{{YQBUXH-`*H|S8M(Ie$W#OBeb!GE0kaweH2@Crhi9rH3|FkyV5=Hlh<OO
zxuW*-$(knhZ$s>d_Q>mynFel*z4OS~m*&lrHphO<95BlQcp-SpQNGH0`KNtsjDJ&#
zokF%$>XU{8OE$-LI^s99WOLU~Vw3zlv#raSQ16i^CGlRDd=h(qTYd)*C|popsB;ag
zaCz)jp41I09j%9a#~0FDlgzB~vCW#){tUbTLOL5_|KTw;my+ugNZt^8oqt(=IxkXE
zUSM#wY0G6>l<Z5Dzo$lTIaSV>KB+h69*R9Uj^|_|HKb(ANZ;{;<UblMeA0aTYQ3j=
zV~cb+Ze8r_NB?$``F&$-GD~#S6egNeI>Zh*tM=QnIa18yn__=Dwf1$a(*$$ohS+6o
zYG3Daih1Fa*d6>mlQ)PCiWTAF@^R%b;MpGcJsaC1BQ2KWSU)y2DeJ76JiRvvD|G(y
z;<4qWh$)1jN&Mxsw13W?$wy?7pn`T~AB{66ru6iCUOfBgd)QzJrrR&4UH><ONkoI8
zOy=2Mlr$xxDI~;q_MUdrA7?j3lL#t9lgZI+8UY%cp5EfiM-pTJ^HTeY`ZznIKokp4
zZ*kx;9o6V6Qr;>ticzeqRqb1R|AdZK<(7KSQ|~=HuEkT2>L^)GVTGqCuUiVNhyx-{
z-j*|4Oz{uz9Ue=87eur`lvkeL;*oiJ-#`*Uq`W6lqfB#4>lQ5@*UOMtq^xslD)zX^
zYO&#3y-Kjbt8hu$>)*OXmsxt*$G0hn&2QqN+}^ImZL|GTU}%-(6+pZp;$coUEiQP=
zU)M?n8deiWiAYY?nJu31@7ae~2W1k}fl4yJ#kaWeVZDbqtz56lkKncpGo@{d$K-|6
z@Mr{T6ts%UkaTSOq4};~kmG5A4M=^N1XKP)^Q`@Pm7*<>b(NP)8Y)_*b?oBrjvgU?
zdvfd8nR|3ZDTc*TuZN$2(Z8>G%1=7bB?99s$R(z&S+comZ}a#5(J?J{uGAhH+h&?I
z@v*1<paYlE4X;#QfH#(myW)<qH@>eUn%^SIK3)9FP3On9d6etv-XsBY!_g*f+w5Ny
zoBbFA84_7w?nyX?(Ko$C%Qo#JY<P&Sg=j@+4hb3PWDd+{$GCo<qO8+YF9LHCO>dtd
zRbBVTxL@u`kh^+^%gT!j@<gg~V=6bIq^|$l{`bp-2q$Y`c^)NqiwoK#t03k2=f1bw
zu6$pI2ZcxStKkZGUuq$sIBwi+yS}M|@R-6-uZwwfB|w%mGV%A1-D9WwKj~Q#&MROb
zkpX5nbC+HAZbF1t@5ys<Vz^14%XH1!ZnHM=${a-S7)dQ>KeQ*SFv*lQh<~hpVg!7o
zXGyvK6vj4Bgmh5wrA@tpCnoZtr3G?wGx-RdOS58?J!?46%VcsWOhl%7YEpYzn3IXS
z)6RHJzku{O`2s$^w48=0^i`Gjgk|}Ib<1l0Mb$SZW@PdwXqxZ$*bCp%KN(16Xv~s|
zu+CwMd@6Yd=Y4C(uh5_G&D`(<d}@lU8;`$fi;ehc=*vq>zFUUOJl0Bsz4ofF{p9Mh
zV49<0gvHG`yW#uq?Tzx(B*Y)m96t|A0z)7sCmkFA<32WnEO}wM<Tzy{w#QybH3K`j
znftjZ#aznAve3kv*(SVX@~<{^v#v+q2zTHY@+>l{l7F$~s}mwv^*yL$mM0Psh8|-a
z`s04GFUu<s@5J$r@OH#?8RG5Fo#g5r!#Y7{pwSqdRX$d3q9MR|*ZO;Xg&fG$vRODG
ztOkpF&0)KKJD;3pdX~vXBdW#A@!IQmSwumEm`JZkF7tqQ%G2;Q%wFrRn9S1>Opa8l
zPnREIS~HGuo!`(Wp#|kZvfDXkFYL9&PwUrY<-ue~PLox}r|SQ!{qa4$PV-q=K!)T|
zvdMq5FS9~SfSjMgF!f2P5YHI!($rt=)tJaSRzdY^b~3Z0JBJjVy|x9jBZK9|><XE=
zG?^ae>y^LkZr+cvZslVN07!V3R9Se$)%>6BHShTQNPOpG@tfpTGR(L?Y{-ucWFJ%Q
z6@#oj??{r#FV-#9X`lgpCAXyO`AwxBmHTb6KCDNiWQ=^V98CP0#}3(3Ue-GX@hml@
zVPY}eEZ%K(-1O&lEUN@^rOYc^T{PC#V_f}t(YvTD$TzW#7?%0q#x95L`@A5l!ATgw
zWXVLPt0>4Y;redhd=*hDzGUGuWQc`td4d~$rw;X`{wIN`)b?oP6cGeh-k{g1K}W_c
zrSt%&cu9l=A28)s9UE9aQC~7cCZ1{98RIT~(2wL7M8*`93LT6Opb4zWKTvfSM}s$z
zsYOcu@sE9HhThYgws=S!j15LWnE2#X({$ug0-9XcnN5_L?aj_(PxdW9cCh<kXCQCb
z7OO9IUod|R0l+iqq<Hhr;Mj9h+`(r#WavZy@&cxS^4K=Kprib4wjT3xOgXMY6K+p#
zRFe59<mx@6&&nchE6<89`N!wEM_$o^oG~Kp2ujQ6b57ei`;-o_Ve<<r!psi2T`39e
zlcYG%j<ekrk1(8qFoayghzJKvR@1tdyXkiw$r;7Uac(kIi7?p>`vyb3%S*kqrU`6&
zfa+B9!_}_o-+CK40k9`zQKf=&-7B3tE>UNJ&EO|UUJ*EAewOY^#85XZV?PrFH`>GY
zOEq6)x^CaHiBRuh^pU(gB_FsE*J)m*n{}886lb+UKqbP1jBo<}ndf>Ri@-@{YFR+;
zNtTVmd;Ge{eTOt;gyM3rM&)_QY3(x-;qL5t#+CD1jImNB;)76Xg{=-_VBmjAwoQzH
zSilOPLmgW=lU*cL%gy{j?$>RImlQLU7xatom143vF54xF5KF<QMVE+F%*>SU=CH53
z$~9P}V>uX@EKKyFfWIX2U+!Mo!Mh+bWsdc@BICFd0kx~rb=|0gS%sn|a1GdN+_i9$
zyZ<w0D~TDYjN}84LsaD;&;!uytRFwJL86THh!hrv3y>I9inP2z{KF_x#yE|XGv~`y
z=YueAKkV*mu0vTPr~yC_L#6~_d&_Tb>d*RH2;0(f6pnls=X7vPd|S2v59`J!kC2xz
zFE@>U^9Q|_RThp~4(toj$cg61Hu2LF^e4Ki;b2UkEpCnfj+_w%d<L&7n@{35FCQC!
zZh!sb-m+J8NDdTO^Y8WIcl<|(2IVqT$XW<?)t&%)idlb3{E0W~;H5x?%r^_4DSCs|
zJ-b8v_;LQ3qJ(5behr0}(>DHKVPXWAOeR#tA6b!de$&i>_wAl|q^WoavI?Zn$^@_>
zmf73R@B@gV0z=rJJ9vk){ukUah-8{@AThyu<=2wUcT22or#C9dQieq3^g~vZ=cbqk
z-mnYW>M(nkC(CcDjzjzY_XAsemW~Y#!yxArBd=0T#aqD>5hxMNcGYq0@Vy@fuhN^&
z<j4h%Pbzkm?#xFP+hao<;w0S0LMrhkva-@UWy8m|{<(TxPAd9M-w%(-54YQ5FOJpW
z-j%dZryT{<NZFdwmwwd;c1{QOECyLYr6@8AoUr_|n>X6*%c3K4S02bRsHyCACbM7@
zK%S23mJXK{2tUt{4Se6OD6Tn%`uUeZ0f!39wGvALsswN)b%Q-VtTztCNb}nW?3kyb
z74G=RURJ7uSt75AF3GRaZ)2rBaYWUxG5OT;WCU5cXq}xuN=L*h$YaS#DU?l;ZtmTr
z)+V3L$r5Eux;WB?vpROQZFRNYlrw_M-aLg#x!T@xrCvthu_&;McoOftZAD<w0?n}%
zk*;LgF^1G->{q6c4a@gTR563&%NVK6cdoLVrs`NW(vD3avYeb}ULE<`{X-kME4Z^*
zb^%lx8A_L-2KVX^hNHKGD9gnd00J|A`y?Ifi-MZS`^!2@WZ|+;>>G2d9w^o$)G3D8
zOoi`QRd}l15QUV$!3<@LvwQJYyAG?Iih=wXM=&p}?+FysK3SMquYF}78LH##Z!!Ax
zP9ZZq_q9$w28SqXlp^jhDvaaARQ}YP{g`Yp7|L);kiIz6Obb7F%bWJ0K01g^$|+?x
z>z#Za%8xnA;n&hl7vyrm=yHRCKvr-DE}LpMg*(bnPiC4Y0=LR1B$~!E?TPt1f?5=}
z0ZUp&Qq979?EU_pp`z(QDVcuSBqf<k@3r&Cpzt{r%%j>g87i<L#+@?34)tSd49IcM
zP=gJl;<d0fS9Xl>kpo4_frUih;V#=~s9x_$Iz2z6t_7am8+X}tJ@}ziEQ?BS1W@K#
zc2BbT@KSsD)~Ye~R)lR&sGUdRNp0wB8&-6T;A;2gX!81qBwE@qi2dHIhiyNyV+1Vv
zQa%~wmXLxSz=u6>edw(N9b}*{E6H`afzNDT5&C$)Uhm1HIG30l>K?L68684x3UsVH
z`;=x33?<6rNZ+gs{q$S(ab(C)JdMZkGn;P<^*_`h0zf?oQOV*H&XW-$=1c7SUA!5(
zJD;Q=eC!lic_!etXYC79b);tna-pPvAvwr=&IQlgd9!s$Rk@n*z`hL9jDGe4yJZrC
zvQ~JuG8N<}BE+N-@s(R`#danh?*|dUu9w|D=OMi^RD=S5n<*wKXO6!ew2~R6LbB|2
z*_$Lc$OLiextDGKJvu06eF3y%ASZ^{vTwa)m+fGKrJ76GtqA7yOiqWKft3&0oiFPM
z<|nm(;b@6G;V!e{Df`oE9fA<Wx`H_~z>Wybv5Qx*>Is}1+5E)*m>*n@_S0<6CSDxQ
zStPK>h(s|67PNn!op_kn!{*}kN;&!*0lERmGZRG%T@i<x$L?Zw5aR@w8NrOGx6C$a
zr6U8wQN2bH6O2$cdc$@0%u{r%M?rD!7-mY{T5JqN(4TcNk>uCBI!Tew;s9VNi;7}o
zDE)^do+zKi_dfrO-P}?K21>*0a)~rD!bawnQ_^*$cljuE46~Fb$3wV^*Su&yMYZy{
z9%3fzLDWI<Y?=2DMJ=bY@MXGMB*5}aY`B(dY+0Hg65B2{Ni-;X?AcXz*M)k0V6LcX
zWQ3+eAy{rm(d+oTQfYzHL@pS^pySDA->3GU^Zc;NI2A3Zq(@iVN0Ja$8Js4hH#Br~
z2nNL&?^<ZPa-Ge>rex|==CE6_C3Z5zcI!)^j<BzoZ9qt~j&n16A==W^+GaonH+!lv
zxfGW$1#0TZ<WM$TCN9;?YwDWi=}6CFWF7-*W@B!i<Q_qda!cRJ@`=Q4GexZkuKwF8
zPIM^$QqlWw&Kf2;5kDADgp8K{6<4<8T)8p~Q#a3FJp1*yZwBkdE?lF{6o2^7UvW9>
zqJLPP&-a>ZzKr|N$LChamMbZvMO~gT2TylzZSPRQsT>M$ON=X0(w>cA_9eKvpLD3;
z)8%?4{~2>jH+M_Rjup&h*4T(K3;(uR4ftQGa8}C0#)YZTXD&b8&HG#**d3`9F4U)W
z>F5S-^cTxZBYJ6DM>m)s;1uIu=amt^GUh-dck0Jnqb61PSbe53*$HmYD!sL9d5OQM
z_b*Oy!#8jpsV+ZWCSRQ1(T&=xFHL|?P+9pFuAiChrta3?>ds!4U;6tW`_<MC6&%A$
zi^i1uzslQbyPm`Mq+z2<v=6M&6s)v4d-yx(VFe{)n3q2{*!%17M|2V6K}@2)%)IsX
z#n%2-4w(D^X5qU_`N<U1T|Y$bz2YbPP=}5c>>p@={`pt6a!r2le+I(Hv>&inH{wCS
zOhsd$OPQXhyM3v8fllL;6fS3q_Z+q(WA)dDVD_*QGhVWDR`V2rlL}>NuKvLGecNBq
zt<Ye#z3V+D2E7lck8#c$7JYBGZ04H0O|hT<<LbGUzxqq0l!tSTxy!iSKk}eVL<d|6
zZX0;48}bcT5GH(Ruu6+Mx?#){S6TJwxAkxDmTl@Fwt8pTsMjE2jA`^&Xu{%i@-Pv5
z(9?xBX>e6Z3KeN|pjF&6W6#XvfOev=ig0JSjNFL-Hg4{|c5=(W+>xO5HSbC`J8j%E
z*PJP%gYh*B;h}}cVelFA%-M16+UsqD3nqs7>F5P0K@>=(a`Pw&dXV8Gu-Df=$E|p*
zo&0w12$U|wko-7vv+cXM#9!LwF}3~50i~sACJ#vM9rxVQwt2D(V7G?ZDc}GIGjsl$
z(3Kfy%0MURiG_5hk-FnD^6jcnOn2TBGl>o+1>^vu!l){-DRleAM_h(L@NbuSo9Jck
z8-y(2b&&7KsY`O>ZkgFO524$M_^l|^%PtR%I*a#UN5H@pBb%>DPcq}Lh^sS|7l*CP
zOy=wN@JcJ&#C@|`F9*-%^++@E&*iT<PeSDNk3okHk9%TT+u9#P0#^0w)%;Z|o%>&{
z_3h}nfBQ&^1pnJ*f+7EQ8LXiCvQQ+e=N3gZc75pUi;kFEq7BhIj#z76KUnKbrje)@
zHM)t>5Ju+M6qL5woUMDa=Kf$}{-1kT+u$D7zV=o}BUf*AYA=l>j>?inpM*kWvOy2g
zPpla_ssH#^{a<4(k&1v~A|%S~*N5A_P3R_zSX*|)_J;dtmd-zITh2MEVDNWJeZ&FE
z8hVL^FFVO?C`8E+-bIh1nc5cu@PRprdII?#m901xOVk&vTFmDpwZKqMkJ@^e)(C3g
z9IzFvpES|j<a7S?oc;B49fD1ZFNYnUuAU)=09L|T+ZY2a6G+BeZjcuQV4<HtvfH~8
zjZ5?BG7dX>nnHHyb&S&&zqG%<u0uU=u`pAUQpG4iv;Xvkoeyxwa`ZsPh<hfelbEAi
zn)sCK9;3K<U$Hg?>qz9=rK`?sGu{66JP|+&d`pd)OuRu_+e67X*Bt<KLiu)<CxUnC
z^JwV$t6h3G=7qrbB?1hqcYp<U>_HFJrZRxZhu(oEhQ-246(8rW?-#WrN+Rkefi$(x
z5Y+Y36P&n7YBET$NcDeWG9UbAV>jc9ggngQ&iNF#kw^vwdidN$p&7l{bC^=hZYkyp
zo<Wj17~d)!RuR)(CQiebrpbZOZ>eX>Gq^ahK*g#=!TDyk`#%UC9+MLp2N7g)N~_Dx
z;ZN~yB<zaMDV1a>L;ihS<{SEVU6CQ65d^|`i${}My)w{Cv~YfSl!&`hnn{p3&R$ux
zDYPcpze^1{$gzmZLAF~bHX^NbCH5hYoBL+yj;E0v_^$A;;F^F7Q-qBa=VL-QEYyLl
z{9^E8Q4I11gjz9VHr?G;zF-iv*?hV#B5Scs2DEDR-2{E(==I<V;<s0Rc+40GG`y&s
z-<BIx9&+X>+gU0N4<WDcI&*f%ZAG`pqbUI{fC>B)%tdp{hSQgK(h2PYWd#q5zGR%o
zWYc_dsL5IeQpkfv(MS<sDHw3cRiV&0v`tO%4!76K8nG;K2r(0r<hW6OgD}hcT@prN
z#Bruasqynb!KtV2I7eVRfymIku?enWuXE?4Kl?>SK)jL?p>Wlb&9J$xn*ZEh9AOi6
zd`02VCX*0=Oq*&PV5?Q3Nar(^36!79Pgn}#Su6%)-uyi7>MztX>``7Yk&2nd{CqIZ
z{GgY5!F<ev2Z-^rJMMwk^%^u5Z)awI5jXI8y~M*HLUQM@hM`kCh`(>T3OZ!WXD#f{
z=bZaABnMcEN`E1tlP!@P>)NJC+%k%;6DpH~jh<QilU?x%hY<6mT#QD*1wDnx>UH+y
zfqn$(qDMD1QS4^cZt8M7sHct%Dg)z4l&NJUcD-jG2gzW6*8nRNr(w-NTqa+P2*EEU
zcL|5uV`uoOH*L1}U#=rPRkjq1OGZgg9ts@+xDGzPMo+~L7F0-sCOARdC};~WpDi){
zM8sw$lkxhy0icqlI13LFj_;-G>@A1^{@TCYxPL)Xe6$s_i132M&6|GZK|jHJ@W2)4
zNn#$)|H>W~R1D`cTo}ba#ih^S*byh2njamLI2m^_+0q$p%@$iv0Juz(qmTmD7ZQr&
zbov(_$jOw_8z>Y)etU6c_`~i6`2r&GcTx=HH3T$kg6z&lkK`kuk#Wp?vib6BJLm)M
zNW?e>-Irhj=}$72CLk(LlifHJwhx#t7TINA#a;i6a@7bT*nTK7z5LYHxP+a0xi2wy
zi(vNK)?aUm3?!YJ<Uo?Ie4+)ymsHK17O}!a!#kn4BYfpbP77M&=k6`HtkLU4K1!-m
zK9G!uZ#((FUna`)vPw&+Pf1-JzJ>kxSkD#{Z`WHoN64SWinAn|V{Qp~vE7X=@0aI6
zhASu{vNTGRmvml!aCVFRZFE2^5vm!E5V`{0!Bfr0V_PhIOdr@4)hyk;NcT@LBff6=
zY%{&1x=59@^uBILizVar`Vgt0AfEzjD#iRCUFRKNRnheERa8PtqL24Rh2-8n7euM)
zMIVJU64D4sX!bNnAS9SV6DxK_K}A7D5b3BO*b#fL*dF_%fDIdn@`#H1erNZbG<g4j
z51hSc&z9NQDZiQdHP0V;z3C<sF}IGxE(SyDnrB7*{vY%E%xbUZ8wu~kdfS}u-*JIy
z!qW_xoHQ`x6WZ^eR%RY%fkm-!3)V1E9X86Jc7<s$3F^$6h|8UnoBgAH`HGfARZvb{
z3qZn>v?NIlONg5Exp^*=mQuYUBXZr1h<g5Q(-YNMo7rz-nk12f8a~cHV2*jAumymK
z5#~+)6E$o|ROr9v6(YzdRnKSu^bn7ssaLgs%x&g5A@*QhOzPrz$rGNL=U;uf>C5EP
zBEbcbBV?H)1}GzH-0SW;$R4Ej6>gKFHkA6WX*ACT*p6h(Ds||{#7ZGkf$}ETBs<P>
zttf~({WbHMLV6<6HZ|Si)t>UGA73#~%UVRs#1)mORt$_9zti-ek5ykNBOYLT-)a8x
zJLAPlq+Fv=Bo_tQc!fYn@s^^ldBnHiDo7Cv1TL(GhGvQnk(Y<~vPAz!_k!g~6~r%z
zKbl*k?TE)(=zng&U}<yX#xZEbs-FY?swSRtzqjC-ljSlDHA!_F?9UO@6rdT&LnLWH
z;`oGbqpy6q`8Fw@P5n^}zo}|}AO9bV&96zmO5PBv7flLE6oFu8NM!n;@9jmrC5Aal
zA(N{LsA!sWmVd2z%uUl=+Xyq~Bk?M@(Rai$^PC(=h^xlWv~;yE?PBvVof=hWoFwm~
zh!ch9*ZNBDpn*aH)nJN2vH&kaQ&TSu@%4V)ywNr&84oM}pzr&|w4{1D6HMw0?g{b?
zEb=#oSP{9KfwUR=F}T*hHv2xh!Mp=@UqD&1A0`Ya_ZI)|lgulUH<8EgTap3o=C!_K
z?>29l+8h{|nBF4)DLLl%`PGDUBkl;#`}rZ?8}s=ku7(y{&<)6anyT31TXH>*sSH~_
zom1&{&ZU>2P8{U_dui+>NC^YWO@R->kgf<fhRvWd5~%=h9a<C=p^Gb|q+yzfIHKFd
zsV`!K@Al<!B2bU28qsa}m^A!rcHqDrXou*0<QW%kEeG_sDS?={lSB+uWONN|9Dz)e
zqDm-)Ch{FF7J2p2H)A5@M^KDpkKuCf`e4jyUmCfn6mbyWpnNEv;ywKO-EP6_3(R;$
z$3U_KtQ>sxG&9unsep8v1kwC`UU1`1hC`op*(C2LrkNn<?eE9@TcK-{f(PbiFo{${
z77ONEX9wSBZcG8Wjxqu;Tq8|x9Us`$jE3i82<_O_Tm6H74dJOAH&=G#LM|l}B{CQz
z_+wo#c{}oC0`0j&f_=Nwv;6krsNmFddC!;<Y7T8nkc@bYILWH}`+tdkZ>xC&PYm6o
zdgIxYwRos!%m;@X>%%x%CA3K{P}VeFotGT*`yJ+;GK3?n6|8FW_0cmHnrB7WDyAAK
z4yjT)no=CIp~C${RXJ=yoq2C`*Ng0vmTA*4btF;C1qrsGHoB?KJWt1l-wd*maUz`3
z$=eS`Us7cIFRughD&xeRK}*)rF?ZZ(T1v_%m)A^1ooEF2h+abD+VGfNKeM5t5Hkbd
zNO()lR@Lr~&OO2%Lt{NRBwsT9ZQUMy?0GaGG(fYcRA$K&0LQ>-`X3%R{{|!DV;!M>
zCW+b5o%qnVFB$^|XEhz!iq#S^R{eZ&%)WibDp80JcQSWfGQzxiBP?dg$5vBdo}wj~
zFF*HfOwuCrSg6O)B_I{)J+pt{zRSJOPIpISOQX$wCFagqritsZf}OZ(Z_MBkZZ9}k
z>6}o;Bz4*efl)KfP^99pp;^#|^nKWXn5TNOM9E?}!uZ6Rt3_R6#=UC#AR3eTV`l*`
zCBJ^^shCev+>x|Q2H|5)F30bV<4osy?2cHIkeVdubozZUUqJSBo>fCxb*>mg^=nqg
z%=*Igl2u+q%n8NjB;aE3FERPAo5#c#l1zogHHY}LCEmgml~3mg3aE!5f+Y3e%9tB(
z<0PVBAatYHQ<y?VdGveHXK!IV@tldrmj-`(&2&m2S3QBYN*%U3=9dJ!Enth-EV=Qe
z_Q=+AVty6l5-v}13(!CiCt9fT-xfXoAJc$RVJ#^lJ<e(}78bh*YJ7CLSgb_IC0H5K
zMRn)hZy$^P`9<?C%o5U&cze2)adHsM+NTNI5?D6xKp?2Hd!j3|E!_ful_ay0$%lrX
zFGaT`ng-#h2>40lfa3Y=^P>Nbw;u;6K`nYiwKPg8s8i30-W+Zk@pp*650JpjswsNM
zzwC3Vc*{39-m&V_H=~<&n*nE_kI9$_AdXWr<6{hS<SbRQ$&?cS>L9b|u`{~neLF!8
z1>geH5e-w`jlOM{X((%%iq64zVcl`6{*vf!r@~Y_8j9eJuA!(?1ON3bNVtZujI^+f
z@CQSzVkn*WT%U4m2V6dKaPaR|;Z!n5s#l-rM%fcAxMbqMP9@njWy}u_iQajXX($s+
zJa8SnduBEf$3)LK&a@x^HH%V0iy_0sKlT|a#LOT-B(wZDLEC@ade(3f$_H*f&?owM
zGe@YQ9K0ph9~Z4OT|m(096SAnS|m82SQsnVciL9=jlO}YFy*mqylEh)h)rpk7F~U<
z9Tqpe4A)ZKYa^nQeq)VgWtcpf>>w7}WSvjUi0*R0njN@wCYMi_*X*eeMo0I&&U81j
zs$~jlq&i}MpXcPuqV#fCV*;02q~u$bVP%bszH_A+mau%(%SO<-$Xa4;Fmq~W$*>zF
z_8#?a@910Zvai)364rntVHwnfH~WmKZ0(JTC}v!yANLKWlMa`f)-oG+a<XNQG2iuh
zt&h6`5;E^jRn7%qG8O$4jjWsUh=qTX1+tOI+;&egJFK__skE(lo7K|jDs41p2%!-T
z6*)8+PK8vr?LU2n4>g0y6n`qV26w|Pbr^yo-I*aJ1|q9gUkx<ete83b)vx!dDKQd3
zAt()W3-DP;rL*P*R=i+m*)UuDz8JFFQENK+zRg`ssbksV^Iz>VFV>C&n=8tkAr06m
zww3pH_St$8Ul0S}<XU0u1SiT%msSM2&O|7}wncfe@;cK*xgVNt86DWTm0KTjs-7*+
zB`q}1ms}MXzU*Xqp5HKqtBiwA6M{ds@rwc%op$mhW6W7HFD81v5rC9ha%u1u&6aQ_
zBD6F^oVcUm7;);X69V^Foov1@fI{46MS-X0@)|IUsnZ~1s;3SQ40?l3#a}IMQ(iTz
z_DOkQ!@Fi2N_CqaSU8<-QsJJsyCAHyx&{``!5C)lZe(E+dfV(Y`<4ejI6wnd6TD((
z^s4arm<d-J0SCcq3N{gl3c0~7!*Llgi?Yn`GioFt1caGzbmh$t7p&-NqU_^h7r0Bo
zIe{K?%qrlFs<3N{nOUaWcWX>Sj_Hh~>ryR}*^s1`mT4cy95%&%rlrw5#u!KZ@>4PS
znLH-BMhk^9U85KxQXIzrUHt<Ccbgqbho&$ivs@H57C-bI8G&E!VnJf1WQM%~01Zfx
z+lPw-{hwxZ^oRk*-0}B(7Beo49|N91Vw*uH_Od<T3v^v#R+xIPViQN0reKH+_n9?;
zs=a34Bzzm9HDDB)5>;hO;L)25N#(#YvAr8EJ7HL0euJ4vMoS|(NWo=bAg3pPm%yse
zO+%a8fU(t9)t93xVT4DS=V$YF#ys?@`5Ac%@Ov8YhNQCZ_Iu3TztIqfT-R7TO~h8p
z63H0-+hX3_WLkJdj*3KAOUCUk*TuXv-ZW&2yMppgDr}LVR*0HjC^5`$?Ug<3g20{$
zW)1Qh8nI~e+_1qx*9UI<z${}vbXz{j91vXnd>7M>3>BFtpZlZ+tx-MqQ}h)da{j0@
z$6AR%D0X6gyXUw-;u^DsrM0BZGe^l#3REwrOy1zaq>F(A1I;g)1;EN`tad~~$jUT#
z3FJR*8j!f8_%lj3#BO*(#N0sjVP=$BV$(K*BsBqVE$A7DV33HQxwsm|wrr+#^LK&W
z$ik=-1uaOtkPa%DxsF`r0+meECj$(Yh&;NQGbSK1Ebkbztw`30aFVuuV87s?&uPH}
zTvcvq4M)J+e{xC15loL{iykOxj@0fU!KESx$i3ZMD-43#DAM`PsNg*TqthVQVWSqM
zC!S)Wh<rzU9XNL}?_eaGj3o*+)l8xJ5;GiRh@1vEwb33aJt&=>bA6ykEK7xF7b3L!
znwob;Fz}agIO6WDt3}^ccg_d|s|`agZK>n@m{XEJEAZz59&#U3UmeMcsB^;*uLuwP
zHkO7Ie6f?z`{maZ36~G{I4|bDKh5ZKF_b~|XnPDE4ehEQ%-|ViHU+jY;*+#b-bkAl
z2wZ8tG6tK!vD%pDAE|(mQm87^P}5BGJ<b66{YhU0LMOuY*+*nU*)OFJ1d5W)qjX_E
zEG5wh=<VMeAG`!rl24)^a885_<AF`m%e>D5B8Ny5VzHQn@!Lql%(a1MMw<!baQayv
zrHZ=*Q>L2{dg~=+=NN#uYJdyjMpy;Sn)f|LEcdeJ5}zhjFwN!?9v!C+PY?cv#6lZ3
z(@ApoQ)ELvd)l$V3%i-EEhW~?lnAb2U+@Av^PZung7T_*K|_>n2z<27Jjnx6FquDi
zx2)FM``N%<`;qqBdoj2UT#qR?p7I<W>|CocfO(V>u{BNN1Z#H&9!W8)LUsZy1ZKg6
z<`Y%bguvy$nnfrfELmWmGVFy(fw0e6d3aF`o67i3Iy*S!1k*){H3G2U0)77G)4+vn
zGrxp?g3lG(0AAb0<AbL<=I3-!#dT+70e&AfJ}@_u<0>0O*s{@5a7-?)iYc@%@ODmW
zSi5ynU(9|=x|69DI1t&PSXF#wpT4X3YzJ35H>>AL?}!1wB<lLU=%}bcf->MZ!s4>t
z4a{d#JNCnKw;wK`HVFzYPa!|+_wCStl-DZfckBt{rsrnwU=1OqhhT+Vn+WO^tgy|u
zEx8=qG_sCOL=Cu29q0jLuuBge2Y^@08$f&VVZ{&mbGFf2LE;n}3`6Be;M`Cf=fw0}
z0KaR+TyP!!znF^@Z@oK?25W;in$G@r`f~m62dxHnM9<UTemlTOw%?9Y?3AcA#3W&O
zDmy*;o+`E#GH9%pv{k|Ua<OYcpF;Ji>Xdf^R}SyI@8sn0X5W#1Fr0W8k`4q%$c6U;
z+L#rZMOT88d!lp4j=-R{IbrkcO@gQ;N6xh?!a_uLMy3`T!O6Ag<lwIZ;2<4AFyP}X
zG$9r;7*A~raSdLS5P0{3!Mm`G2w()Gz_b7BGit@aT>|jOSXux}-Tg?+hocAX0$Wg4
z(-O?WkyFSmr>69cp1yV9F1ZsieBxYHDl01bnTH4Nf>K6<Rw9o9m$AD3$e5?!8Muob
zu@8$xReg15bhiToci|!_!k1YlrXr=D9}}Gx9JGtPDrJ&XA!vTD)MKy3jJbji$j>j%
z&j~W@FPFqzu!>O<Vj{y1=KjJ!A-CslH=QDu$ioI6(&_#_gLYvDr?_uDJ}Akp@XA>+
z-`p~A7kiXh-ViL<DHCswh@Q8Q&&V{l*9N`B4v#(?^Xd{hrCfTg{0uYRC%2maXYnSn
zN(}t!2{A*jVcrNm@{JsEydsw$7qj(QGw}@G3})HiR_%!XT`@^~eLL!d89zv$E02u6
z>279&wy|SYu*iI8O>FebtLc*%APVZL3;u{cZ-@DW-~xlW%nbYE*^CTF9#x)#c;S`0
z@QIjnFJ-G_SxlfcOZCden5Si_(o})$3A?IP^y@KKJZ)YbTU*_1_vxBPVg}9QT>ym4
zp-j3v|H+t!HN5H)N06cvEUNM2fzD>&_eVz`1r6X9$dGkxfCeUHn@xaP%&Z|9xeE5`
z=y#qpG$h25DHqJ^1EPz!4BUk)HKUfz&fUwDfJD6X+`wHhtX#;<UB}?QK0n`Js0w<j
zZjn*Q@+KS=b3AmFlBx>q#?q!#pP!;{{2xD-{0>A@OQ*2km-|8icw-sA5S3D&&o`rl
zpXPF+Y==LujJc9AvYxqw(wlGm`>~iQ7c)j!HNEjVuXb4wJ=hr}^qkvJOXVoAbvvW|
z{}^h@mA!#-l)|tu=h{QS<A55wJPQ#SkxAq|Ot|P<DQel6n1z>FTdbH|CXs%bqXMMs
zujh>+Hmkg%245P;7C4f6<)fIb>rY(I1%`LNnKOw~iCj|Znj=rx_e0!z&UiW%3z>iI
z<tNl7B&<i!#13F6bJqG3=06-K?hKM^OWG0RzLJb5CvNuLa!cHOutTPh6<D>o-+kOu
zN_~7q@YP38l;<3vrWzDc_2KA%{|lPqY5w|{;M*Jf9h_8vIDl9+esAy010*64??;ok
z9xiyG_YtE99^%)M%AQ|8At?wz7qri5kSI1I_2v(~Kl%IMMq{d1$NbW}FW>3>CPq8n
z+`hN>n}=%Tf{s<+{;&6eKMsBqW=dmlZ|`S+rxAk?s*&hYK{qP`9ji-z?tP5giakh(
zh5#9!SMToq;(jKLAJF()$Zg5fzrO4pa~Lz1kTV>nCL=YEfBC6*SDDs9pGf8!Rh#zo
z{_uYTB+f-5WhDX=OE$iE<cU*X2}%T}*kA>sEiy`y0b?ht#h(OUf50@IAt7T3yPz#Z
z=y?C5;I`*t+g-{GH@+1J*;%aMcK5^zZg+{95(k!)x#0FasWxWH5_7+&qm;>W2orAc
z<*1l7j~Pc5H~{3-_&}eb$ZwtdMvZCfyPXWj1>jwgonL|Bd!kGl+4rizNFuKrJXM0A
z5SA@B$_z@1r~{%esp8WE*M7&f-MK3yPVej1PJ&fhTsYD1M2m~+px@)3x4#$Y19{0T
z5Qn5A>aDM1c7NfbAGjRhTqOL5L;cf=ipa%=H!FxWUl0JQhsoe0-IRfpnBii1`1LhA
z2Su_MWYi?u$0Pv-9g?iN7Wy~Z)I69EOoj>rtKX3CUu1p!rL(Fe$%SZ9s-Vz+|26T_
zO+hu*OSI~$W?IN@!0)dYFhsm60kMm$00v@Yk=I8yNjTlUG2>*6^8ZI1@?e2l%SsV<
z58|N6|L$DV0GfkLk=ECXG?J?3<@+buFH^XL+^nKVNf6@2BmKW!()L}0@yH$Jf7VVZ
zvyt3SPzh5?P<`|LkJ>4fG)TDsoc%<js%s1U6RtKrWMONb+8~+8nNo`SvcSL9PKom*
zd8usj5Q^=_tB>>j>n}AgNfIqLosmRUttj+Qzsxjnph;3e=!o=&cR$~MiMv2pX}LY5
zZbCdYRMct3{=pV};VpF>H_X%me}wx5&;(Oqz(M1ZCQTJK*HQi#n$1^6)=#Rd26M|C
zlaRB5IsOX-H$lif8Ho6P>vs~=b))_ILerLBS3Ofq>-hGuSdhaa&wsgHT*BMo>w<$I
zm|4A>?ay~NO46b<xL$D}BgrbEz@KHml!rl7<U?vLlXGQ+{}H=|#R5+y53Wp9U?y;s
zh|&J*Z6hhdX4(u-lECxJVt=H?TNIN_UmWSOGI8piV*hBnGB`<Q*agEFx_-3($=PNi
zHtoE(Y#k{SIxHts9fmH5f=p~h{{Hscpilt_PH{Jl%~9Xx`R}rO13X2l0ts!1!#;Gr
zKXa-1Qdv1wdYU12$#`=6S^l5rna87M8N!g<Sxg^)`3Q?OL0H4HB@jZWlzgGN{$BP2
zSq*rBs3ayYNHG1^`Tm6KOjlA(vk7b%P?JP;U7r6zORKq9C*72cd?8lt%JHYTRLmBd
z66%m~oVqd3|GMp{xEkAxyd~d`Ra0~QE9}I_iQ)lJNj4ogP@ex1yXlw+nh@PuDrFC0
zO(i-0b6vtOuNN#0yhX+Zt=^FDUvse;E_Xs>xx0pfVmNlB|BY)+ivb0>3<e_F(%Qhn
zGkZC?!pGZQfUX<Mf&L1pRbqDF8yhX@oBf?CnW{k%#jD#!`McQ$GLXRqE6n<eB|6(*
z?J_aR>d9b5<q6C8_ZA=&!8Fw~Odc6Fn*qJ(-?OZB$;tm{P)Cv)q9NaZi)97bjZJv!
z-PFUpm7sR#`S;qk(iWUH9$AZd2Hw}-PQ8TNP=MNU@az_I#W@B38*OtoI&~G@vdr+K
z`C0y<mQ~oC&9EOpP=Y{ePvV9Xid-OTVOSZ>%<Kto8|v%44U!1{Jw^U!?3^*TR!Qx7
z?`D8_Qq<~^{>3h9Y-j*iC0l{-GS9z8Xh(#o83b@(O5?W^j`puh;VH77(7vSt5G&+A
z+w6<DB~BKW2sn;78%xq5j%=)KQQ9oCxS(i)<ACAfbD?HxvA@Qim;z!(EINtt#H!Pa
z{Rd=O<D@>0%%0F_^-7dKJ=t`E;Mr^dKhQq)h;#ivTYi*@DL*KGN%w|@`fT@w4NX&#
z!Q+WiSCb3<J?)V|IiU`Kfb+P<fX){A6YXA(EvMwP<OgRRV%4Am|02717&y(n5t~AJ
znqvPVmpf1=5qp*4wdB>#_Giy9qs$g4VH1g{;Tll(pltvC7CU^-k68h1s-yhB*uKY6
z8`@O9ZM`;<gybvjHHPj(8V;CwvV7n@m;DJIV+NKonQnp#jq*QXCzcN_mRFR6isUt!
zb(+d8^jEmlNY+)6+Bwwma@@vQYD>pY)JR;ftOe<Tiu@nhwU9~~?pnhy`TbXxQp|-8
z4~?f%l>Z{jd&neR?y&`oP>+`Sud?gki6diRIit}3vgI>SBpL!tKsXTB{oMur%iI>A
zqyVmE0$A?H_!qkDhr>)7e4fLNWm#Pjqk!~aEfAdCQ9O0o8_7Y*u8AF#84Doxr5tZf
zOKW&+uN#uJsUI5s_upyu2SAtbH?MBEVQ~-V`yac=w6>lgd+~NWKOLABxQaOT#N$oy
zIFFsNjZVH_+r!GOH>KKR&G=PXa{PPjdK#WNsnJj<iy&gn0^2f{Yp>juoiLuQ%l8iz
zLLmYJuE`0LzXgDTGVsw_U*SFGSi&Afm#|DY4kOQ!QU1mD5-1ajA<2?iZSLMNCH@+B
zwHqjvRomRs420Yj8^jrK$|(PHmNY4(fgEDQBT^XOQ|O;<=}gj-0@s831!j8xSbsMm
zG!Qj7WUQnnCg~KPe`u<Co`H?roG!_0ILGJz%sws?=%SQhZqIy>CtD;3tDOqgcJ=Kn
z{}s2I{mEr8hQ4DlYhGOH37aU9Zkkn4x+%gDT>?iMoY5345^y4<pQOGi^xy2>faV*9
zLU8}3wF*84ep!J-kx3_rb-M2+-}Z%Oi3_R;NS6aCWyc^wSA^r^k_6e_He}oqROgmE
z%y179h+@?_qy3jzhBl4@p|xJAlJ@9gL~Rcv9M8xOobO+6X_uWR3`7JBlDWNfzJK^#
zd<D2%HK-A8M{;FLF@-PI`LYD?2otYu6ojM)&g3Gz`yt<bH<`A~21Lk7Oc6^I5XmmL
zny2LKs*%*mbQG)JyVvU|qhY2c55nzJ)h`eDl5LK)Y`_9iMV4+*2tZAmJAx%Fmvn9Q
zK~Vze3zBNs;Pq8lE4j5OMJ#E(yKV9Xmzpn^R0FY?-cT#9Cr&a5$>Q5gLs^4(o}?F2
z13ut8Y>^$lO`<L`4A7&5IP6~++~@mTu%YO+h}%t-gqPD7xADeJzM7j&!${yI6hf6x
zq^Ykr`~I<=b@+X}irC}}EHJ-Mm!f!{IRnd3^Jd=__7(2G+KO2q+)&KC3-TGevPA@C
zxRQGU06aDLUf;Wtc@D6rxjOS}>rku{;xG&y*x*aEv+UFquf}imCD}d6C%vCnv5gLi
z5n1o+eV6I56&=pL#Hq>$yfrIE42AK^N8;228+|?PN3swfIkz%oAfxK4_1@xV*BN%h
z&lA;E8+=dM4@(whdvCK|?I(}_O`Q60pahk+&bLKCuW%<}#7GThc?~tVJ2(PTXa-{*
z%z?ABCsOgIVuSBv!4{Jt16Bf0bK&eX#;T+ZzCLz>rVu@gB}oeRZ}4rLZ(bpoubf1^
zvhXSDorio&1gq=zG}4{})Lan92KdVXan)Q_DM>xE(YMZ$N%pj9Y_1RkMT8#pEwMX`
zr4ta0InA^rs$q}#ezVIbjF%OhB{LMmKgVXOg)ZCDyx_Jy#v#X<?Ql;ODch0b<SpcU
zR^1)eSPGd+end_J?%oG{-`F|3hlj_w*O`PnE^C!*{|O?bAMgc4Dg&QO8YYx4Cc_rK
z{GhM&cJny5d`2@jp-=)^I3sd9BL#4s&41Z?fa2whdd*&m0+f2C@AuA?ErMc|QuuOm
zJBrI{@M^1K0ZUc=Hv9Tn7Qww#UoA;3Iim?GZi8>3<xR5fsOk)uty=W3?;$&nVyuqV
zdWaat0=rA!o&iy>catx}_FlpUx}=Lx`|T#*N_Ru5%gyz{io+>a`5tz2LIUk*G71!Y
zk6JdHy&YoH8(ko_<PGM-F6~-5y&ZX?*Wb6ncaA$b$^tZ1%V9<$EnVa5)AqQTY`2EX
zVHY~)USFJ@HFrgo4Xa>xQ&r{$Uznvu%-E=)a9@vSa#?k~-&Y~8VQ8(bLq>0EmHAMV
zyA}E!dlzF`ckgcQE46c)KWdqKEx28RsplU1*ZsatF7Ik1B8iL2-{d<>E;#s;B+#u9
z!-H%K0P%-?BQ4_`QQJJ*?iS;EdXsO4<q#-Ya>4LxObYup`nFjPC_qLuMYHFz>gD@=
z2UeK=5$!!NJ#|LO_p#jfo*j~Bwc#iv3%@pT2i$|TRh4*LMa*D0!2*95k!TobrE8sr
zkEO{6+;cb%*`u}s9S6=}KJ11Zn3St+Of(ivfeXgHEhsrlNdYuYL<O05iaO^JUtdd(
zmMxno3TYFd(?h;XZZxyW01_>C6VGAg>mK&4w0k^CPBkFgj*FfR>jl)`VogeP2DC`M
zxZXF#WuEOsJEQk;se!LiBk%QHxYB$s6K;&?DxX6y%6ZUtlpRJ{_0(xr{E+qLP(r-!
z%-j$K9y8&x`+OH!KGu#;iE6}hueIAr8e3G03V;&4L1h1ZzEyU6a;mB0C#+J;5!+Yz
zPP@q6PpRAqRZ2B4BLZYS=qs`m)1LE?dUKO^{kxRp%~7fzL~iz_95gcFJiYJt)z}kd
zb&U1{NB)KmPqu`cT_-k~dV8|taJdz4@YUKbu@t!{Q7#J@O@h5FsK8NSYP)wjyJh9G
zz=yg<G;_fuJ?wj89`hwaT7(Tl@Et;&phr_;XM)@hEFGi@r*+p<T<0|nSfyy-&OL9f
zZ;55|fC)rkx7@4aK2V?1PDP^ch$``pkBJNNM4klTO!FW1g|0MPk=|5;JZCs3U>|k*
zM&D$617MSAnjuyozE3ikCpLQ5bw2gyp%*yGCd>9w?LE6M0vi?%*H*-}N1U!}-5{V%
zEvolle>>+8Pc4^i1&X#nDB{$}5mCFg+4BjTMR1aH2*JQ+-Dnro14hC?MGC-l$TBUk
z!^~>r)|LB9%HDsn#PVfwWFR)wH%Sdid>g=^)Wca(PrYrvT_gd{1f)oS=?A${Y44b)
z;s=@9BpH9etjDWsMn)ZOe|`o^l`#$SJW;L9i<)PjqfVEjFym>6SDy}#n)R;frl6&H
z#;i(wmV$g&y>g=h_Sa&uv&@$Gx_C7*JL)z2-L{pGJkm#HM)}<C*<y2{@qt8j#pzM!
zzGuhD4Qpj9CJ?6*a-;mxk!wpw^=^x~lek4|yv0)^cH$Q^qn`QD^pYhZh%gpWm<eyA
zn8EO<VK$}_jjNK3>%o#*Lgr+ZQq<srsH5ztOlbw9__L@OSu&!IeBX3P`WI6rj?PF7
zo*6aeRr6S~x4S>b?YSX4D#w0b7)FES>;cx6q&8+oy(s$+*TOn{(1>6n6*xI$Nr4UK
zMXk1DDV5R@O|Blqa8lHuVNv(m;ZQ2j4ZkGnAy&;Oj(WlFkLAmN1f)Q+q}LA1j@o7?
zUVs(W@X16;8o-LXQ_DnOmG~B>M!n3;sFU4wqJobIVeDsu^y2OhrhHLv@i)e+ensAo
ziPoy01;JCVB@So*#TikxF4-Y`c`9@wjt$jkMAYSWsBM%XwwKruQM>JjjUHqp{Rl@T
z05~`5>o?8njo?Z}DX*&b?0B3m65Ni63U`T+U2mBhMC~I`CXt{6_1EO6bo(`KWN!y~
zXLwH3-|mh~6S;?<OVsJC;Zd7k<Wu6(m2`EOdf{3L>dKA2Xkqvr4t9s3iL8-RK26pf
z%VAE`<TuQSvk_dd2@-`FG?oA4up%J8lpgiyL5sloKC&R{L_4f@i-U%7)$pjLw!^mP
zqS?Ke9d)&xI&99GOc+3{Iyoom61$irZb3!jF7oU;CfM`+jHrLx{?e<^{3@%BR1fct
zQ(p~<I`v~S_97goLY4CLySS)dJ~dAf3Wy1AH=9%;%V;|a(ZdClmjop(s)(8)M;Z~_
z<>sCQhgtBG2YlV^{oelSf>nA(g%nhM8x=@bU$tr)Sr}LCwqOKReOLJAS}qUI!v&8$
zSu{APd&vWyCYVVu1X4DvRg`fE?UKhmsjf`W#>ibpa!3<)f4#lVMA;YiVFh}#0Q+L2
z-jxMNrD`>iAdL;vh-^S3OTO9vkwi)Y(8goyYB`vAV%5A`{oNeXA|*C3K=T6h|Jt?w
zwelF(U-eA!QW{${7RF&>VeCL)oZb_%qu!H^#9@t{i0K)#w}@L@L#~gZsJaF5w9YlM
zcd&Z8iX1ji;;xGQJFI;LTB$Tu1+ej@s+v6iOX3RaVBcx4rg6PDmroR}p&b!H{Ba|r
z(k!teyi>}~W&ctD;HRvp&n$fz=Y+>0<JFs4QQL&@5f?rFkBKW$J@YUB%rx^HLpBiy
zV)#l@760-t65BU0UL2s6NV}}LDm>1AtbK|&UD-fU8u>YFd~uZjZQB4uxRHy!gY}G0
z3Q!&+k>qLrBhvp~lKo(Lowx?%F$sag{ZEOVU#$Obz`XR0vg`Nvl)l@^0uW}`68~A&
zVB8MhLHtaTc$8c}$mkZisa=PqAoq*&{o}30S}x5BzHKdJVmy03(?3Ye+^FWBM&=o*
zFdyS<aJ50)RJbe=psXepCnhPQm|<x|=#;sq!RGGn<!`amNf!kj<FU-;51;=*I~NIV
z!Vksd342tDr~3V3oCSGFsW>PznUnwbG5)s_&BSr&umdv6iCO+jWt53TWWy(Gt2~w)
zk2T_@p;51WVH?G~P4*E&-{r!<o_74isOM$-Sp>{uFh%S66+0NFN#n+mnU~M1klT~<
ziU%%fvu}kpIu(d5#OlBp+Ys2?<C-r5k9$^=&|bf+it6FrKBxxp+*A%;{Ep*>J!E)z
zZuL||D!JLPVjPnbwa>Dt(rL1y9u=c89y=mxwGeoc8bKV*Ofh|cAfl^@ef=lek`>vE
zh@)*kPW)+-I>zyr*isspvkccEZWJeGKmXJAac*^6p?P`(1K-!b#P&8uEbtQbN-T}`
zpXnCd5c@Rv@YZjns0G^pFWXr<B92Mp$aPGC$A12J2|x!tBn3>T*CNUC^(1vqKmYr-
zw@i{-;rMK2ZWK+8Q;UQC6x*CrHw)_NJj-0<1MH|$XEPSk{BOvAvHd)_PE)>>LCdwj
z?IeGtor!n}K(L8)&ldoC1^shu=@M*SjiPyY(}7dw_4B_Yjhrn&2W{8_1kAJZ{eH2?
zL;JJp>#dgs)PIWly1)OCW#*kx<=6*=jUun%<}glrz~NX?P`2gkWJ?M9|8@iO8-P+Y
zicm#OZ+2Vc@H91jgYS;(jJCjS;W6=qG{nZnRaWE1qSPAF&pQ|o+oJiolDXu?)+=eg
z=il$E69o%cRdp3U8<FY=^v;d?-M!f12F9Mj#mZVP_;=K@56p=e*@|93#RLu2ieBK1
zN!dQ+cd>8Bsnluy$Hcx3wuwXHp&Ak(*bAolZ(T}@<bx9v2jO&5TW9z}|FHh{CK3mV
zxH{pZ$tv|`|5x^gBFf83JLY-WE&eO*b3R~yjW+zie1D}jy;##v0Wm!C1#uQ{yUjnR
zpSje;G&(C-Xp9EJRnpW0DgGnne&OaMeT01lCba4{f4TjLS9S!o;gLoDK_{ATwC9>8
zzkpuopD6hSNb7*>h2x8C#%NR3vp4(eWL%P63djlu2C9b<l6$G2%>43u(#D9!MOZvX
zda-{-Uo%jCTx+sP#G}iq^UwDmkTo?iLB{vNyeLn)*nf%57s2&wv@;5;C#kpY^v|?Q
zku5Wly{Gqhb>w3IUKze&Z%wVvt@w7%+Ho~l41~nRq}7arM+)388|`0d{h{sLGRzJA
zt<b+f+%lr-OftY55g?P)vf)w3ipYgpR6U8k_U;!ER*?)`?`9?~AWuL(+S3LSAWlW+
z`?p#9m;hXAD<BC80O(*jW44Cd;Vq35@8@6ETZ*;=MNbl=6TuYu{)_G75w(-Vip_Sj
zHhq%){pXmGk^Zl;rUF+jzsCyr%}D<S7kh!2j-A?g-FV}&eE%LhAZ)d*aF8@LyuhE~
zdWrclg@lN$;>aYcxDqQY0aIu2RvyG>jrcs$f2;I_{SbUgHR`c!J5%5UK)Z6(xhtm1
zxmROG1~!BS%A+g+?5L9}18bii@D9Ed;^|tNgLn!^!=+H)Ae)b_iJtV)fOn9VK=n?V
zf^aCwgJE5ZuJ7~GD+AuawU*mb&eZ`3Z_9bnA3ex#Ap+u0DdS1ND8D>@L!ZsF%wwfa
zTia*C>;dl}3y2Y93O60*2F~w8H%5oO(doIk`PMFo-oSHiEBSqpIWU1)i=$uL%cmu*
zg>*Yv<%DArFnDwHLr<D61ezTzDi2D=b~Wba=x*-~*o93HtTq_w44ySDkJ-2$OtDmz
zkVgg~J>`a&ua~>P=Gx%+?SQ>E#QeI>Vx~nOK+KfyoOWV#!X}`&0xA~FwZKig9T~j<
zTrZwBixnT=vV-;5xWCW-n+!U;OwiN7@=8C5-hRZOU07p^WsC?RtdbhzM1Q-F-(jPw
z`87CU7q1e?c*I?NS^`R$3K-qDYGWer9JqZ{30T<6YMtb#!uZGbqC)=O`gSlbt_S}(
zj6Wpj-Zp1oCPx@asTp(x8TusEp-~*arC2hh7zwj@P2c@;Z}}A<@0a!9*LxS{fg=@n
zO^|p?Q{1;Gn``KYPeW%6>wOSZQTEJ26$A9p@Mo0z{MhYO*&HWzyCgeOP;%xdDL0y;
z{(MZ&84&sQ%C7Q@LNx12Ztg}J<$ip3lit=h^8Gb5PCx*HuX7O-4?&$qwP&3!jEnrw
zYSRWJq8if%O%nI9<9_}4DUm&CD$G)H=Xx*-iNgP9mj3V+DYz(oqW%U=@)gF6l(K50
zzItfnrwoQl$gVAyoILov#Wn>~idU1uf-|~C?71mS`W8Hd2XIQo!g$kE{pF^J>^IDZ
z)A6rNBQYJ^jNAYTs=7uOzUF;69Y!MHI)PHht6w+h%ZHk|jFpO$;^ej(ja;4U&(-~J
zH3cW7HY~eP4Vng7mcy2q2BUavxL*8%DI{Gq7WJ?xIF`KeO{5Et!{WDLZ?OLl-Td2n
zO6}~j7ScIL;%zRPhChNu@AkZZc=zq;XCQW(!K5Z7aE0eA3OeJue{gXRQ>b3VC=`j*
zWbU&rUj^?uHsblOyKZMBW6Ai0?t#|8<$KcV;Ioz8eoF7To%-LBsL52XCv=7UCh=<2
zJ^Im%hy%}bJ#kbKRe~huPUXkvtE(%W<=Z3VA&z~vzCjfxm#CzmvwB>_i5Zz{EIN2Y
z3$mmdo1CE%LFeBeCeK^lm}8U2s(JgJ@CU-Sk4xt<rYmbCOG{0LWu4yaT=8Vs)tC2N
zgcMd-JyS|$WB!Bf{52)!)6qRUd^xE=6$G8~Ga_W~M}jhjeUNyll6_BO_Y$57EF2gS
z*FQ{3dkUR4?gBZVn~<Xx)i~e$J5u_>$xGhYsj48ML`9tB%seYX3Kypv`XP3epj&mW
zFW7Zn&zYMj%z6exVmqix!*;wiKR9Gk_gog8LtKo+?E=e?wg^%g5bwO%t6RTodRBAg
zK>}02G$*KQD?$|mPbe%xgpeEnRtqjIBmrAtsOtRQQc;X^L0$tu#ZL#vBn<618kGL|
zzTnArG#$nXC1*qh_t_S<y0jTO7lKS<tV!z6biMY^u)|L3C1il@nNVsZ9;)B4u&Ykj
zPrMN}wxp-D36mk?S!2s=DVhW8Kfkw*{y1#uO0PATCuL6vp@*3~*k2$0aoC>GP-+R+
zca@P@Wcnm6Np;@)EsW`Jhr*Q_dm#AWSKauBd}9PbqGn`NS5W^OtEX)V>s{K@5H+6r
z`r4UNofOCD%6Y->&Nd6oO9c&0n5C$>BIDxQ&HeNd_S-ai>Zi1ENxs})-|~qW7j5ll
z3sF>@u6MlIZnnV=Mc!H9wj%HHvK(t;zn9X^3F_I?^`~E%(#{=LpHmwi6%5WbRMPoK
zL&*L92oC$&9O?EX6t8Zb7d*G#%&_xIn9A&$2_NX(2-_R=d+_8>O^=L{+#ReAzGmvP
z2GK_;)ge`kIp<srm){k<y~dpL0+~-s6aIPXMkCJ-J|Xz-HKuNKCsxgfPgtif8R)TU
zb4txBVDjTy>w2G7ZG61C%J^YPSBUrbludehS>(l*#ka51&OnsY*Vbvz9EIDj8M#-;
zfVh3gY~^LT`}sXyn%-l3VUff|i)bUQNvMNZx<)u(r1$#Q+1<7uRNEPA$q@y5M1`sC
z%)8k}Bg0fCw%sHOD`O%pcHT+oHT;}zh1_zOH=0#h5sKF@*`fRey>EmlLm$Pw{^}sH
zRVdYOlW&LhIN|S}ZtbR!R5adhaq1wx60}iWKe0~gpo)<+S%r;=y7aC1?S+O8E6Bu&
zH6HntvwZ4qedC>`_BM?Mu38@)BYGRz@&rH4+@QFqA9VI&?^lp=yDo@H`bn?2%WKSV
z9ST?z;L#iY(!Q0E6;E(=nFC)>Hr=W6Wl;KO?A3oPiCnV9v}H7KbxGZFf%Y{0q=($?
zbvUk}QHnk?6Lx{gE!?HQof~=m<L0%phG|WfH}gIGpIi3pzAL=%WfDFJG^m+gMUmM5
zt=_Z7`yN(e_j}xhNxSr_wh6S21Xc2T-O|=#*3G)H@P4xCkNj6Zy4)KJd>Z}47MBHL
zk)$U7qK{o|K3J5CFp2zc35FEi3}<J!^UBi5@9jLW9Frpmvjbv^Sq0d~pWo}4CEhBe
z8(f_oGL=hJ?>+k0+r7Sv%F%x)kc7#V@Q(w!@dmG7v4$d=!${djRGe|&>*2SW*I<Vk
z4OmkIw3<d{gj5wa!`YM2ZSXlgrC4?rCJk)aXw;^{&5R%P;1|QUKh$*y^yfd@KWjsz
z+>J{8_i<<S>qag_#t_*A>yTi!!C6wVv`Y8i5b?pAUGvi66{ruG3AlI%*Od<jjft`Z
zmqzHKEap$ny>IspK=HyRxm`%>GGTwz{kg}=#cb>Z#zr+ZE>nGQL@4ZyZk;Z2uGv!$
zIQur3i+ofQ1)ku-YRO(_;lIsK4QwT|;e3G3f*Bf{kfDw^;5@a({Jy<Fkgrz#=>+fX
z{5+{lUH_-E&k72*d^!G+DSRXA7iVRq`34qGFz(Zu)Y$k;wPbK8s&D7V8S2PWLtT1w
zdK_1(h7Jjxd5n47ZY)W~>cH>LS9VTCnEFXtrN*X}sKviIL$5a@%)rnte#5az8RQ6X
zF5YaOj-&8bbx@>8H8wF_y|~v&ddyC!R;*#jhhx(+)bF1<zc1<hI8!Bk<lNo)acZer
z^RcsbmHBnMIG(ZbWop}Ar_1Z6!HV+jCXiC34*c!xvJ+_cJULwrJm4H*pXcM#pMh6k
zY}^DDdu-^_Q_V79_qWG-Y~omT+VP=3PB)LeOB8>ik>AqBsq)^TGYjoB+T^;VB9+5-
zxnFLbb?O=Fna`Xbmz$rL5xs;As(w!ny_Rlz7koV@Wh`>m5Br_Z?3%SLajq)*!+Cm>
zdD;7EhvjX3Sfu{^%{hFl9TkWG7~9x5D98!@k$KQAm#F*xaDLy|c?!veYUUr#SC$gn
ziKgS#oc)fngjfXb$Mjtwr{a|brf*82wlqy6YF39fUf6M7<J3F<bNWAOJ|#LzR&~8B
zqk1eVwB!c!(-M%|pcooZq|~%wp-1Y?(+*o+s(#z+%zLx*c$3DfCw_Of+JTAhFlaTM
zyoMT?eV&@zvv0#urn?UGnW0MeIwwBfxx0ij)XaTOwcP`6VG~N#q+gxD6XwTMTLAZj
zE_+><(2`rsBM^ZTr((N6ZASCG_{h*RH<;%o4VYn@J@2l%?Xb|S+rv&w&w$&I>#T7W
za&M9PEIqWiS9f`en8?zwFlC9ws(WK-_3`F$wg`{Hfy<Ke)bq<j&-OEq5o7Dg`f3<=
zS;`q|;_^_BV>-W3rry3gbYZ|eZu{s2_0_4NKH;5zoUg829!j^p8&oZyWh~>>X?KL)
zKgs;MppN)51Q2sCmZgnVgBOK*tnbu)zIrJ$lo@HBikHnjHDz&Q)qtU)^eEFXwxzC;
zD*&5JsBWlv0;`c(s-7o?PV3#VOW0<Y%uv_vot~bdLK&g8|8(oPq-CmNcqq}%&TKha
zS0fWiDODFf9vZo=<IfY))p=Q=g*{EzhJFew4O*PtNy}9m`}FN{*&*BVReZ2-$@Gpx
ziqBJX(n7O44K)4?b=SW`=lsk3HodkHuTC`!o1tdshi<a#)V4V}>XPB1=j>BF?p3%|
z%3=%E(^a9td+gA~tZliJI=eXZuKj5{Dk)Sq+!Hz`)Ny19#p>Fe(5K9^G+%Yt#!|NN
zo<*VJ`^^jO`pH)JuM0iZzf(UYYD`Y(y0A_^hPVE)JXB(-q^*zSJXN(c^q;<+ew~!A
zwyX$cp6qr#l^Mx`j8&;Ogq9BL_`&#ebxwNdJ-c`X*rfz<t?Et>JsM+vXpeg_kWP5&
z=FqS?_FHvRT)d!qbYm#>I@@PMU6r-gl%*A_<QGF1uQJaIFuc2xWf>gf$R431GEGBC
z`7EQjmBr?(XS#$w9BZBuu4)2Dt-ZA@HC@Fn51nU;m{_z*?m%-*lyQGu(X;RK@JCL!
zISB>A=ah=5?z`nS^Hfaf#)YHKJhJcbiRM`$a0+9-oPT29t(V(9Z)F(8DlsDzZKvKw
zG$pEMdg#OmJ4^4k3E8U0u+Sep%+q#zlB?404CQp**If0l^iZ*-+;%@MP?s(Z{bTpl
z2q1tQTos}$b-em`N9d{XorXAGeRWFc<4$y)P^g|bCG?ry#$p0L5O<Xt)EwG(Pxl8<
zK5|;hXCYHadYLp#uxF2m36&o$4XEA0Qc443wt`=P1wqUDEi>lCVXdusl7xWQz!7g7
z5%Xw;X~4HYR7#cjLQp0E$)w_KiCHz=G^SGu$}~v}vi%<;W45Fo)E|08TYuOo8fIf7
z!8eAypOq1lGTyw<e%yEsFVBv7{k(%3(1f~=h*@JB01RSjq8~JlkCS6Y=9{0lKE<su
z>Xewv3e3~8hVmdNaAa%>-zTcsSuv-aX&Pizym@2qUzQ#7Z28fh>;$}U@9jZdVYFy0
zStSirIkJ(^=m{+Hql@)*dm^08UB%8t(i6jfNi>am7IlYy?{lxIxQ3{EoREYAVB^CQ
zm!{I@>uV20-1dNZl~ajo$z3;zR!KYX_|>}TYwzt5)$AS74I+n=9D~f&9CjisFlz6)
zP2YJ`q}vPbtR`gmsnUi${KbX(qpn_C=Mf;WzkHK^#Eu{<8@xuHrxv4+;U@axD&6=~
z#7}m7C3vdjK;falU%vG&t-tgJCz-oR!C@6W29JI?W`SPwqt{L{dvk|dyC`de2KCnx
zeg9A14?2$wh4|mM=%&NHk>k=dQ2|Vf4Bn9o_40qbWfM^-7jU1#7l@f;-BP{eNbj|S
zx=mFV-lB*8<-OavoxMJLp$@e!CPFdjM1whCudyQkc&ol;zZo>kl||eY8L~*6NKxNu
zI&-hLQn}@BCUstd3Vyy*hyBs|$#SVn!W!{X>CO7~y{0$p#yRX7k~BaQtS^_(&^g~2
zyD&7B(KxFf^X?4!mcV6Ry-8nZ2Z4E<RmV$gUGb82IYBkf(>EU#dEA4Bs5;LOYsJ|&
z>Ir|F;qbcT6!9QpoJpvua-;6sEAkexuji>^oa0SM6n5jJ3^{m^S-Rr5NDaNq`&bi@
z&b;;{G~ZK}>Gj<rYsEr?eP3clK$0*tG{v{B(HsAXkfG5ez&|KP!f0v5FZ9NI{Y+Og
za9S<Iz_kvfh#R@befsHuHT=^|QR_x*Q6_*<ic%!1#2LE3&l?vOf;w+dWLr}+XXzD3
zczt8RlB>b!<4ieGy?U44(#w05!)1;zWfrkh-E_O&8sRlzB(R1D#!FF%>$I<%*QYrG
z8Q=xP0>EU+2Yjs_73MXYyUc!2FqY3O(C;1TwPjEc09=UCk%5(S?s~4#%cCN{v`c6_
zcV6%g?MyXkrGE2hvquLx9OBiJb^75}hXWp9+yca{Ls(M&`{_A)-MyYSLPD=*(tz($
zrA*he-!K$Mmt=bca$>fI*FY&<Hb)oUZC=aD#Ih{FTo+#@sQuDfz2m`%9j{~5$$}zU
z2zM3tBj)J88}zg%?0eZ_pTZap5vSnZ*m9Zf`JFj1yfdoK=8BLKA{(aZiy!nxD6l1L
z3XD;}r^7GQ!{7JDII6N5?wwiNEODD8(pDc9>kTUM_SeF;WBw}zf(o1uSC%Ctd>`b?
zN+Hxp*PPg+Vpb3Nkr7lahFaQ_un9%ptG{mY+9g*Tw_iiMKB&^Dx>o9`vwMu1WBNeX
zts=#NybjAwT%q4@@m^<NCBl~`+y!dLLVbLtF+lQVS9b%y&mw(rg<fP$leB;WtH3ia
zW*AB*(fY#qddmri=#mR}<IVc>iC&lKjne@p@G;>5k=N<b4PMJ3r$IKxO5N*1ZyJaC
z4bI`nI(>EPZwksMmd_%xkCDYn(VYo5={Zx)NAQkd9By#2P0SWc*3tI`5)vX-oEv8R
zX3bPoA;yC!$t1OUN#MLxuceTrU*r!;h=<A|CI&W~67fI;JD85I*-emvF^>D@%u{v3
ze~n?BHcA{4jVi|!gS=EjJ*PyM?GF3pWaEBd38&(}%$SA0v>K@gLp7=3NzB<p-}{;I
zG+;i<;>_WQr#JuvTz{@J^MSCaD~z83ytv7~0hz+hzN~THc-d<bLlhpMDqaH%p=L~W
zy1jU)Ho6>8>!d#GwPm+}Jdlq`;`OhGI)APWJMz@dALG(oILUecRqrLY?nW93If0dr
za7JwkJI#);U3aOfJi)npgV!DYZLWS^Va0Y9IVWr|osBHONl|Cx^8|27=>8}AqVVvt
z_-@;2E2y5~UUHyBI7oLc(+v;z`mwP4_K`&}+PWq<JZd&sC2@dnt=IaL@aKDlNuviN
zp=39*#;x1*yy);Lv8GeOC)G9w(;KN0EWnpIHTeU*JhJthwOr_R^~UB;;4Z*<=L_BS
z*znKokg^&KpGB&~jga}a{`c|Ti{ee0GLe0t*F=s-$!j_)GW;odt%&RyEdWIr4G#0B
z=k*su&1kqn^BN{jL<PhX4BviineLSsk@#HK?c>I(Y*d^aEU5+=nF5oUGE>j4h?xIO
z*X^TnaUWI^%fyD`NrLZwx?DH*jretXn237Wc10}<0#nbs>OtKr)%47}8Q2p=oHA#b
z_u(AZFViU@@BNN0QLts3?$X_diA&TtOyy?d)~B8c-t8n7Uu9jbj~QWl7omVipjI=#
zc(_T~v_ZcT@3jLdnc38WTU9tK0oELn?;qAfCP$p}f*HL?YbHR1cj0^2t<lA~t?zbl
z)}j!+b&u|z?v0F$Sz<}y+Gbc_VHRAcOIn8oLWvTf*2OKOPEZ%!qIJRl({q|yu|l6z
z;PpJJmh23|(2;>4n26W(uu%~=uusevUR~uiO2(K=@6+qX9=cmj-^`VIMYh+iuxLn_
z;iln0y5n~J)A`;ih?&*;osyD}Kt|oDZ$8hoK^a7vfqAx<AfE12^~oiAYnGu5#?x{4
zxVM__(TCelVoNUuztt#qI4Z<}wwZpiUO6D5>gllUw6#K}y_*SEA^_QV{l9e)M_g=v
zBdVP^+0lZTIPRW!!1d72V4ePu_nTJQL?|OHDQA%WafR2$^=DiTT*GldY-iT#$~9uj
zm+$Ah8xKN`W6~{KpEoyR?|0_21&G-a0|agfrb}hJA^NcMBK~;FG`5No#*dGaAdxlk
z7wFBa4G=+QCSDSV!}bu5<4v7gs&AMY@%%>9Ln}+Ccj$dhFI`sV_1<ANv8pjak8hm~
z2@nYHaK|Osw7*W&XU2K!+5S!RibrGh&U?IdNS`S(7b8WoUmc;V3M0<4lL6pTJ`GmR
z%2LNLQO%vC|9g`+k1_QeIx9VrorjatrBJ8e9C6@6GYi&s8V))Pl1BERf(OwMb$ZTK
z=5_okqv~ei2I1Dh%N(almOHmR61MD;p5k)hG7`5WO{fiO`4i5jSHh06O=abTDauQN
z3%T+>XZuTGNwx(hFv~41mPReGIJNB!=j3gN=#ts@d&>Fm8>UNKm4&r9X<WQX5}ci)
zA7h-JX}#v+=cHMT<8HtBF(IKD1<q5aiXT&2+gXH?s2&ujCKWr0!+QO2mTAqD3bd5C
zNCL^JrWZP4L%jFWC(4o|3^DiQ(ayR;<5oR*G~Az8jB{=~#T!j}y(!#{29coh&T}qF
z@)|l0gnQ<=VrTmB)?V30;z>*n3`T<#q0VqFOg!|<fGQp<bppd$U+%a-T$*>4I4_*$
zO|sMaaTPJ4A*cR7%@`uCALrbYVm^&4955<w9BzIxtAh_$r_KyMKfBjCw*vDhfVqGs
z1V2RW^#rvl6nwQy`1+aMMN}Hy!qrG@8@bf+3I~EM*M=`Y-Uv~08DP{R1_N~`S=}@!
z_~7*LcaH2Xhq}WdNKx|=^`KSWA@E`nII?g#6<ww;v_}>lmb<^YNpx7?p?{vM5C11(
z2m&<jUV&>%76<V&r>UoQ>upOtZzh_Gg?`{hWs?u=&?U=^8#S{GxC^Pc*?+=Ez-pzv
zs5h5KzU!DCbBWv+XD+_gzrWL4R(a0can+ayB?E&vmQ&TQ-{|@Gcx~KLCODcVr0WZJ
z>sywYQH(7UV+A-Wqf#X$B2`{@x^qTx<OzQRL@EO<BbucQBLVhz)Ehc@L1a}wGmM-%
zQdU_@1zu;Uu*-h^)4j&)%!@9fjdwi-5p_IG1zywj7q|9+xFA(Wg>l5H@BgRcF7TYz
zpo7V)hLMZOAU>+OpXt%JM)uuj+}%>C*IGN74!6P!yYzFd&ifM3pW^7nx<Vm=KlM)Q
zc*pllltLw!9}Z$!?c*bz>UqXNOjA48ajaT!KtFP$X(<`0Bx?pHM(-A3IB5|7!VmR*
zH%C79Ye%PjJgXP|qyBY;x4~jgF;WXk7gxkjU+QnJ_cpkwTmXWUEoE&b<<x&))2EF#
zTg+G6yUAhy$!hcaI&Y!(L9x_ixL^)Jj>M|vZ|fshc*|p#UUqz{HLsDdf%|&?e!c7_
zZ+%P2lOo#+2scF~eW`D=Ui89jf@CCr77K_+ngYQ+oH6%B?!McuyGTkH-=IDcX2h#k
z|JJMS^m-J%9Vtz0YqFsTEO+hGB^P<k9n28m@{-g;J9T_j<U@Ien2<(A#51r6^y_%_
z{CE1o`5vYK2o~wp1u+4(N8PnsZ@SGR><moUjR0lXZ^V^-`}8@h%_kwjQGy-Cw3(cU
zq2Tf7^rRB+1OfWRykK_*3W`%deW#;ZK?W}4fVQ|I!oJs!+oQr+=2~aX#2~27-m85p
zyg}F%C*gUscK~I(H@u^(@AfvOn7hn9oTQ{yKYgsf-e9H&^?7!E)Feil5axv4eh9)$
zP~m^;A1uj^k=dc3aL0k=9=}9?Q`i0HXMyC5gmFmLL-vSt>=;!ezSDtA!?PE$$|I4c
zjQ)|DN<N1X|LAo~!hd|9ogIm-VM=vy6rdz9bBS0+Ktlhc$IS{~w%EK!u6i8rmC}U$
z=&UY|n&CB}T$z%$z+4gqSF!%;@YC!|LJ&sB13Lk_WWe`&-IL*0K4R1XyI@#=*;vSs
zk}U|wC%mAe{to~474r+CN$^dGibx}3YL{2_iGP?zhKuFDsVQiHuAnrb|G4k<TX%(@
zJ=u)b#!)iZSg7pS!<_JK;d>vpol2}`MGKk@YF3g8U^RX-{PaOaO-^sI+8Hs=Z12N;
z^q0Ba{z)}@a2eQf>hB7gj(dh&=Dqdj8D68E3c}?SX@ysB?WfnA>a~uLo2FS>n8U5n
z`uPN}B@@_5Q}rZ#K++0NIV+_7wl%+0aXwKvfRZO;$5fe9^o57_db<{hVH6={7^YpJ
ziHb^`!(%67Rqr*8W-hRF6MT-W#vx2q>nH11mm7f<>rh9~ED+Ag`t;W=Xf~T*6FGn=
zgai$yQAb<-=X-tYrXIJf1*)1&C_o((!BIdP%=5#Y`uwe?tuzbEDJ6*5MVgR(l9Y4a
z<KAmvR%UozVy2(7Uzgb~5#dCWuAWZ*Yb@jdx@xyL!S}+pU(!>&QyFzcg9&A**XM>J
zx*9KG>5STm0;@IvUR8=Wv@sOQJfesEzMZeSMD1?~y?lasrMR{l)Rdtj_5CxUs7K6G
zF1#stJk?9nLnm!FPcrM^Z1{gJofx{~)E?rJ%!N+a8lDx`hxAnQjIaj@+$>EjQcDMf
z?wV`93}53GbmgY9l=0&DF7$O5#HxwGtgkXT3RGNIXYE)6$Hh%nEl$INluV^hc6Q{L
zr`V6>VNr6fy5lJ4>t3CZySZw2&`BO|o@N0Bb6o`LvZI_Ij_cS#h8lU4Q+IU4_S}(J
z7%3b>S>Uu}Y740qTVmFp(WT~W_(Xg2B8xwxUME@eA}wtZRsv8<RAWc$ygd<O52R7<
z9$1V78NeS=reBz?zp#c-R6Tr=f_-WzufZKuUn!}~2+>Hy7V_szU3FVTF6eD&bR1xH
z*TX3pFB8<}v-GaD9+?^gZfovG3NWeICVl2Zo+&ezXre}I?q&oW{>-_0(H&lEPI;|_
zExAfgY%1Xg8RzRR4|wev6gX*^=ISJ5WJ*vy%Jdn3dDAOIBcCKDagsW6(eWt`QY!50
z>htxL8@*1lrSh%G<A6O?XnvBewy<|>Y94+(f!gfKAFY2o**o$D+&P#>@Y*1>yqv8E
z{o?_BOWT2fIbOe~>#}{O4Mxv)G#g%L^(2btp(*rTuh*SxSU$fHyLWT#L|o3?2iPzA
zK1fX}ukjGCC#n1I)03;rFGgk&+=L}a%<bIiOeS@^PO0g>?CBoc5BYJl`<WZ`rS@%p
zkxxzwyPTqMrKs4)^{NW*;|0}Zr{+0qaq3<A$#U<xiPbY|pWI-n>c#u?rt`bcea8Ey
zx!RI3F}-$^?o;o*b%?2uM|Hh^U}D=ZNSZ^=fi^=k-zNLhQvG{n+iyCrCpXug^?Gv6
z|Njg87Y+C6+9~E2I91wYU%M$dDiDBY&eM^HS!cuq)DIJb>roM50eA`X@7FVuEm#-7
zjd2c$=Rlkh$!f?N9Xj4~R&WR;=3U$`5;`K@fn_)9@BE$z1ukOJi%KvD@?pQtx<z|F
z9X$3fg9w&MFC=rOixkA~C+F*afyg_p%gGr24R=E9U|Wy5OMf-ce%}UfSQ8SC!esT;
zllq9kkz-tE7LKZ#U^*NUxr@UQr(#y=FSIxGHV`r?yU;d{dsGiO$%{fsZ<aU#IDVpf
z>1usePtSK_WLhu&m>-BQ@SYXAxVP79hJl?LT_lwVN_F}L`r<!57nn)E5X^;(BcIWE
zs*0McSM@c{GnBJV{@7$S=4yS>ZtFBjxA6$|!BKEk6cXe+snhx5SNe&Go^;v@%N2zF
znLp~?t+FD;qyX;mj)d+_{6@c8<GoYbVx#vE{Q;^*?$)Cgc(QP->`nqXM8UoKh&FK+
zFoVg@hO8?I;I@6Er`>JDOytDe7Ca<OkhBqTYWZLKu>~H$wUczsD8JgNS5$gqX_Z?E
z-}zbZYSjwIA@+H=Vf<yP<rf`T>V3@!HpZrh+l4*8A;Q_e*po}KzhIXmiVPGlm%yaM
zop)E6HWW%xq0Oa_v52YHmO3Yt8-0=~q)!#*j5dsQg25c-e0h!6Wo~)B@dLv|P_74r
zoXc7wOaH>dnafQIPL_A5-K65WJBzRI-m#uzK@!KRVc|~MO4ER(ZqJshKnk=x;S+uS
zDl2eLz^T>HIMp&Ovd{qt9{Hvoonpvaq<lQYCiEXIhwJ6iKlRmjcshkq2VFW#CMsBM
ze@_20-qR}xBX75R)CK=WKW=xAZt-bOu@K}GE~S$`(&LtT`VBeh<no79prWsL>IGIy
z<Rz2L2*;hFd$QRiQ07JVKF8bGQj|!<Sy4%nRcJ51MXQoz6M-tx&<4HC!ckR1<@R*e
zY%r=ED+()x$BM#1=7hhsvKz|>+Z`3AkE0Kj>Yv-a>C45<)mu5G)zzIWNr)DFrhl2?
zY4zD)D?m5I#wB15eC0RYeX<!X7MU{Cl5zt^mw+#^Ppt?9yDm0n8B95)#K>bq!O(ye
z_ui9&(f{;vO*x%kOjEDwVEEnUMNG&xM8S##94YqfhO70CO%YpH8VkLRK|@kVR14<o
z%bxO{m*V@vERFdc`(m0}`idU+Lxi)<wdxyxycHwjsE<o%<&ApDl8CRc{mLh04J;jq
z6a>)V1%35O?`;D41XbJmHq7<foAufi-j{7Oa~|xI9VZ4k`BuH`Rj;vixXJ3D1$x>`
z-gDgiO+-w|U{ln0FY4^?z0VbZM-p@`iZhbd$xHNSZ+I`^odehCHgZTd-mQl`Y#I-;
zOtJ(^#yG>WJ)2%fb0I7>v&^}*)#8U~gAnH?6S$F}?jG&TPi{3_Ld+=T(!`QSpX+Qn
z)w3dYG6ZrXjvV8xvX;JsEt{xlZ<RWWPVwx7tvWO|SdR3vvCahvUeBFIo1)Gyaem0~
z=F<7Q$*Qc>X-M%#OiUQb^^HEspiz#;<~p^l^Xb$zh0aTz1OIQ=v1(S4v#{0rD^bBn
zk*$VRDRtkg$QeJ<8(O=CWWGa6oePt^VRafc3e?HP&daT%E^S6Quwp1yVvgaWan7Uy
zuip~F=o`)cz@MKu)7d-JTdI))ceVp+jR~g%Ob@+_oFQ3W2dH%<vqLNt+ccpTXE{$L
zdtG!MS)#h*Oy~K3d(9nJ41eCBF-~%(*KwzpF*aO&rV}yDd%06HWa*SRL;qi6ah&Qt
z&e`$*d>Z;IEp@)LR0{_}O~;yNv_kQrb8dI64pa{IeCWmuLZppkvE|Z;RlTnY>=_pE
z_BqCET--2q8s`ktTe%cP$2FXwCeI8cof2`%G3E!RcVHV}6^w03>h+QHy(zHj-{vPB
z@e1+k$IJCK%^tWw)M3$v!9Q@V?6_C|HO>PoWY<x>v;tHpjgrx<dA9!aGVi^dS<{-R
z(G11`;rsM!bW1BL12M3+xuK;^7KTPhJW-`DY&2*EYzeLLEn;O(Q~fX2Rficv0z>T(
z_{EEdU7~MqLsuLE(SZ{=p-Qit=|LfiYcVPnHP?yf4O<X{7x2J0Q*_=e?<eh$9msoI
zZq{3By?Ie%9?Xa!B+$_=xLiLq+iS@#pM=F<CQM3<%XIBPZ=FP|fbXzKXkM3Jr1LK_
zub^;Zxkp8UMM_!7cy+-@-8|8ArgaPnCaV5Ceb()s2a7{M$p#7Rx8ef6KHh&fU7vTE
z@%2Gdqbkema3v%ra+Uu6W1#n*@Z$c)zcmgBDGA`kh%HH?W7X~)y}QnQ7FC(>wub4z
z)Pzf_E~E7){|zs`)4bQg1%YZZREMoJE(l`ICAhMH#8bd*FpGn<d?A=Tq{prZLJtcu
z(p0pZ-%{PkADSiU*VOlecPDtwHez&ywBf#2G2aBw9ObpO3*<wdV=unzsyFTJE*<A!
zQ!;VdlCw(0@`rB<_SqMH_};Fao08Sr^Mc8?DZQjMHkTl%6s6w`Cf4`*>z3~F5^_?L
z&9)|@Y>ImL-eA-H;X4islg3fy){`t*VF^#&7`$Sg*Ob#pfIA!s`5$6icU^GF9bOZn
zPP56W#IZ!%+`l<^$=l(#uQfepl~+oXWdfv>rmk5PT-n-Tx>zW|vm%QmC#sv41V6kr
zyjhu-#6mvJ-r#%==2&@SaNYIhb7e)U6~IF6Wo%`~^w7DP;Y%aCZ>Oy_%~S%Ce}XF7
z9ZbI^{N%X+J#bf%%FgxbCxh<66WvdL_G7OBtGk&u>l<cTI!mDBa-4eQ*Wmw_nOEty
zRZXWLHNKde_Xc+-nNNCrtx)i^@FkH2PrfQ}#vkF69x;5WNL+igm^^T^rv*~~_F6K_
zr%7Q3lKseg01KP13XK1s*V^_TlEX=}19OgwaC;QJo=A%HN)EQXiCkKARp8~ry>`P1
z+s2ckwp<>F{N3xf(^nHz|7!zB|Khch478TWX3we5r~wupePLkPq2`mQ`ZNU6?6|N_
znf%q*e+B1;&~@e<z2j96=axGQm$7$@foR67npz$9m}k@JXdDH{H(AG9n-2YUem73-
zs?keY-*w}pf$E`SA9KF``LT$><Urs>8$*i0jBM1x2e@U)X<nhjpZ30+E$|-KT!o;S
zq9U)*#p}G*R;++n+u%G`Ua04<^co9DtASU9PTBF<wYvXS(}H~hOOw^yQU#LOZ>Bz{
z)o_q2sVG?pgU4VQkd~Kh)|dD6kgA2AV@ZH`>iz5WQLTW^wtEOnB7+&cUJvZ+y+=@*
z7`FhJBG>o7QJ?8rLh{69=qj11q7tmXL?^UDHVxX-bJV1O98?=N>SD*UWC)s$Try(h
z!0!Iy8a*ax>;WQyw}P!i>`hcDYxU>LJh8XEXpcc`)604U7-~d&7%!Va$_aPH0hcET
zDD#yC#x_a66mG&v;wp#eW65gL_4>LGy`I~Hw^P*4JN4OLc-U(X!H5dNTYYcTZ@uij
zCDx5mGbf61omOljh4XaQgI;Uvx>_(0`;4}+NN;}8`vJ7+4M;$V2}||<)~-!dn!BB1
zPl!{i=jjQLdauft+qo}A!=&!P4SM1G-Y>AVO9mV~Ml?c5mAC3OpPEJ_atz1>QOd=t
zlCWojbFXzMru6ce-9!t*ZeDA$qY3tjtU60{vPJG3q+D<pwTy8twP*tq#9mw8X!DgI
zrU3ioyb7-CNgbaMc{^q%qV_?P8Ph$ZLfZd&PB8z`o>f<Llhh)-;|4Y3O62~0Zlm6j
zYLb%BC{u3DJCdftH|a2&cSLToHipk4pSLtvyx3#-?V6C73+@hHaC7*ThndK^_EDRe
z>aqh)_xr<Sgju4{qJF0&!5}}F5#0Jf&-%-{ZO4JzZprZ&bH>z1dgB7)z!hxjA*3hv
z^|&fM#EM2EB>+MaWFQnaDD1_o%|+kpRoC^p>alJni$yyCCAX{1OCz|;&KU@Bg14n7
zz&ed9wY~+1R9p&K8{b_WTzo;d?5v*RE1<q5?y)*?7KmB=_(x;bmm6n6r#2i}!AD|Z
zDh}1g{krwBm<i_{s*NR@_ejhx)3%HMpd?H}B6I7Ec1RbJn6Kt)=b|%>V*_Eq+CK`C
z%T&*hb8V4%jF@20L;)_7!%lE+Ei{iu3Q|}kJr&vA$?R#KwIx8wSDy!*xz>%+dQIo2
z6sp^koz*Yd&r#LLg)9`L6sVVc&RO{pl9vRFEbdWGa9$!bHqrS!-Q*={mDVUc>ume7
z;|CK<)me^{d4_pvD$>a{&@!n;<>SA)?-Xax+)ghPtG66S+ZWo+{0uce<P6I*KlYNm
z#O12QD(9{5ZRbGK!KY(*DTpI)%Sq1P6&-s{E>Z>BskJ_+)-DRv@QKbk+eO<lWvXAa
zbD>=((TUvfz8_C__FZ9mb@K)kq_HEtotH<Lhad+qI}4zrD85+v{m#rd^W6IwQNp#8
zoPNJ_co+vsRy(QRnTO(K<YK}%Mtt{Y3C=9*8*3X_o*Eu>{;>la*+?KeC8?E49OcCQ
zZaQfFWkQj<q_6Y8vW`#FiikdTV#b)Kh&}Z)gze=+K-uG*PmebH+1dqBf!76{6D<+8
zpIeT~KhEhlv}4zadFo~DoOG7$8sm}8E>V<_twu*VHzpqR96w)_^G1SsF4APMu#%iV
zc$$?e$aiW-ng)-!Y*<P`Vzyd7&?&X^FRUe<AQTCVL=_~BRar64Y4&L3f~7Ei^@7v_
z_14kOqq&{G9!J^(pL1!Nc`oieks}I{GgbBgC(_QL9r2Z_=R(e}1)Wd98EX7Q=j6-|
zr@$L%rh4Nf=NLQCcEcH`ZVh)v*x^{mxnb0W@rA0opL6U4Gaip#V$)TxbDbyOwS(+1
z+d{Rkk28c5-yvU6T#ov&&Y5~@WXHz|d8${9Q*fGj-0l>QS1TquZw<G<t|jw0(H40r
zd1~P_XX6m_l<c39hbSdq^`GigC7Wj@)mZkLYbVvuQh7-eRDF|kEK9&R$azC%Au3Sk
zr4}n+jWhR0GrY1!XmoI6?eyAjMOe;BEmPUoIqz26&%)$wuA{howY|<MKHWSX-Lk8q
zx>Ds3{rTyg&T)&)LvJwIs(h+*U8;RX)KN=yODzLW%vE32I+qSJ&#9|Mq^^0MGFClM
z<(xUN192B5m8l-u88F%mv7o$(b5N~vQ%ls$YG>mq=C?()<wS*-y9rPV;&avZ?#_>u
zc8l7WZ=pKxIA=915|6jF`%nQI-HEkmQUyemH-$T+&o#~9B->bPnfm=0$7e~wlbniD
zC#c*X^td;|&2>;+*)p}Mx<(bTpu>L9`?s0LsN@C=R0P|u-=i<xZJr+D(`D-Do=)a@
z=F@FoC{tU%*Mr|OFIf_lF!|!R43%|_b8ShdUyoD2ey8`@@sz@us8&W9uIeeOAT>u#
zig1qLRG5iVOru;CrIe|>Bb}UGcKmMqQ-11L^=+K9dYSoY4(Y%q*^r=ulpHlC=v<L)
z8Y~_HlU}vTXTp~zI_p>4hW5)=qHgs$=h$U4T2{71Zx;}j9M;A8eo92Api6Yq=Ieql
zpJP)Ob(D=Tj;*;@zdz9AWa}(9;A5V*KluC(leq|?3V^p4mWW|2S#9d&+;B(4M=4<@
zdmLzuas(B8oTvqt9Pa$9KH|=gaox0i(E3Tq1cwV}^?kZ(P~_}Y<_GOk4`GzJ^l&HA
zzKgI%vCc^%UrDh9B8o-?e|#r={82`arYvJ+xrvCtAft}>Sl2~`zf8acf~QisWsdXj
zUi?Fl!s7cfx)2r^-0pWj>)iOJz)YmAT>w@Z$R^UgJ?xx(Y`3IKdv@@Blk4TNVEuo)
zOOFSeSpa<6Jb+>>L2%2e#%)W`0pu_Fuc)lJO|Kl%>&$Zq11SJ3;|-knB6r|53Ekd7
zM3gLtZem8ny)8FHm%KJW;`>CN%|o>pR3iz^2sm1#k3T;0>5X8T+U1>N<uCs;c=g*R
z?_6QFfo@_63XUZ4jiQnYlHifIITNCej+h!IAsHPIRt&TBb$yhI2m^kFWZx;=Q4A+L
zZ`1?+F}ltnTsiS-Sf60GJH#W?fUk+u*jx?>8w2QI+|vna*Y4oR7h~HK1QI`pZ#8_Q
zzI<@xRGWrM)b}Qr;gA7|LG}8VGaq&oG-T!p_AV_^f+F6fCCOBXa4XiabTEHn?T`ph
zY{N@~Nt3&soxyesG|pmbG4Vrc|Lx{HwXN5hl<u9Huyr?db0+=AGyy-hoCU}r_+!X7
zMWu8PHf-p%=HhOGGA^SyfNNBs%sWQDr``_i3ra3K!PS)jC20^O8Z&)QITyZWkZ9n$
z3aV{ULGWE1rekXLiCqo8i|=KCV4zfl1w3<H;#7Drc>a8o{tE)iMbK*io?@aIC3Xip
z$I0*OQ8proQ-iJ3@J9?`sG*xy2Dd(JtX8ZKm@{F(62~Qp`iA@!yy!R&oRZlB;<nLX
z(a1s<rgvtV7AOpDg}2;EVjRSxu;B>3^8-t00v<GV=9#8go*Mtw18y`>JU*C#@JNie
zq_w1HDR;2_vta3{ZVOXPmb%W(DXQ*2!Q;xjW@8*ElU!LOx)Y2GiSUwf@2lf()33f9
zwrRLU=fNKF#sRCr4Xmz@(~FPlCi(N&99K+Dh))8^IjCRo)|0~zzW^KEcvcZvwNhS_
zBzOs`e0Si|-+HcX=yos}Nr6*KMxSLGYbXWCSw=A$N-)t!<-wsl!^567*3eP}27u*K
z1Wy94A|?dqMMk)71+%CcB`?8+9y~Yr-nZr@776WI2ooS2aW!db<yHEnZ@tM8Lsu`+
zh|C+CcFi_@;qzf1*P6u>`Bmh7n%I#~ZqQ_-ahC+c9j_!N!D~+)rDwfqvi33S>^fBW
zrUsRgCK29CMhAb%@A1h7!Y`qk+NrgkQx}LIafe?&5S%csn>%L`*G<K0)WG=TL6vS^
z82soOLsh~^tQQpnI4H&mn{@A95wqbUxEFBg*Vk4cLJ>&DVXU}9Up}|jk-r#5*c!;2
zOk_x$D!N|(^k%Q)zcev#V;XU2mj54L=N;cwvHbl-MF^yTqF9ieU9f|s7kdIBAtV73
zx-}$$1VRD{5u(^GdhK2nL<L1e5k;gaRZ&r}D+(f36s%kedhPvr&+d0m3j7}a;+6UC
zIeWIu&dz-1GjJ_SU8cI(dc}dUB4OXyi$4)H(1xTEkz_qZU%one)R|TY4O#`c6fAr8
z@c4<k&Bs>4J{(19XYuq>#h!$b40Zi~^@FP{7*+hWExfJ}DgG~bf1dZcwh$7F8vaAD
zd7%~Z<vCQZt#Sy}WHsRpz35=8KN(JMxHAj*(bPFv`U1z?$g0ey#<^^9A4ie}apjEo
z@6WJ-CfPMr<HiYlBA0Ykaf#0R+|DbXA^b5?5zK`u1y`G?R`1nOOC7Fupc*uR06W<)
zPD7@{0-T|4+a1ihJ$m8SQC81Y5ix`!7{)!aAv4tdZB5tqvCmJ4vTk{cjbn-dovK^z
z4Q^i_y8xejVF^8|uAN49DSIqY?K~<t=+l@V$8?nQtQlSaUBrTWd6Pc0t<NJ26P3ts
z!{1U35kq$D_Kwzhk~I+{QQRBppc69H#an~-KkK-98E5za)gOfeSw1=CNvg4(`Qg#n
zLv~o8awtI4OpG#*KW+s~1sGjWl>mET?pDLL>9jSm=Zv=R$*zTa3f*lnR4Y_)VO8|{
z7kNtw%k$#uNIh7b=J05IT@nP3#6<nlL3V^-9mM|>(X{YP5F!}#Xi#&0)PGR~WJwOM
zkeqPmNhJEi(ZE`L^!V6`pW<j7pt2_6c9+{MX%*NOx2Kyc{)qW9rh`zw=7IR2X_y@a
zPBBR>{V<sMS!|cZ?RS-Moseov&ci{VfR(WM<=}^1u^C9&$yuQ#P1R@Oh2LBh)IAXW
z(p7dJ2=FxG!bnS((n!}IuMeLS{lVxCvV}$f&*5}dY4~u{)f;L0;`^ePjIyEuLh}p4
znUHKP5X3K|KTWlVoK?i40-Dw=9g4dlzMosOfH&ajp2$1p9+?a;ZHDT8TM(TRyWt+2
zrPET%qC90*@I@%KcI;q@meCfdsybv%kXaU+aU-1?#i8C%6*+u3dk91xlB<VRSQg2B
zq&U}q@2@wWXQiyp$RJXa0Q@!Bh$*-0_!q2}VGOfL?U14>>F^UIsd=4(ihC?AD66Ru
z452F_kwQTa;Zcr?bxN&74QN2eBxhiWsi$8Eu4)r|S+1Q@Nr8-vKvD+r8@2kCVD!Ma
z!@t1H?W=@YhXhzqvpB&MRIn~sR2J8LHFgb)0m?kV(;`V#_q`OHKFGFWg$)p@+?q({
zSqfR~*l^eA)g$a4k~PXqP9dC)wZk${3l{|or$qf1Ye&>_a|Asb?9DCuleShriO?e9
z<=NotCI9gH$Mpxt$93pq14j9nVU$aVC@7MGD1LBn{4AGi&d71}OlkmvUMZv=RSaMX
zQ@UYk{4e)JpLik;+Tj4QYieOh7Bc<|FV_e6iTY;@ys-r;zqB4wO{N*2u4=eHIN~I`
zL|E_rD8V6{B?&trS@n4>c;Oej*b(J(@A82g2wiZLz7U+yK2Ej*W8~_+LDzyJM)PN?
zhOK%~er)$Y?AXGa0aXk%3WR17Rq8iE{FQNC|6{+>8FntViMb9W38o75WSiieILkpT
z$4wa-in2}FErJIaRjePo*={6BJu4&fD{)1e)kick=<V0L#FT-QhzN6K!2F<7x)m{H
zWW!2=KX*=0_AJS19|lK9Mg0|PZJFHK8d!bAdL_}G>VX~f>EGK#dsfM43JMVov0p-l
z^tZu3Gwhe}%whq2)&^mKHxoAPM0L@>f=RbW9WW<)7glASfSO65liI*jrUe`O$Lt(o
zjUBQuK~3_Bfqe>|Vd1HcTOGW9UR0qoc*Kh3RFDMNa~=!Ir`S`0NroRl+BqDrWcjNf
zC+XvQ+qtI05$`y5yxiVC2);cuE)RNZ(QWKJJJpg!K52eXd_>$2BdpewFm5>2EE09t
znjq_}xc66CDI+cpGV-iQnEG&IFssB%BGD&_&L^ms9t&2TY@f&!vW3KBV{?F+MY)h&
z*Hd5ge)LsmSv4;MW5W#4eREs>=boVK&Zt^k;+)ijYybkIhi^zx^S8yn)G_WFEPGa6
z0j#ogg%o)pdoMn#-wAArJdHr0hszb<Bs%u5KjVM+B=+MddjeZ!mo-JeQw%{W%bA41
z1I%^*jd^CGHGZUm0s&bJOt5wIHgAO9@j*;+VU$cGQGq%t43G$kWcEZr>NXKll!ya|
zLMF}wC+!WUx3^^C9Hs?OpW-7BKJ!F1>VJCJY-^tLv?d}7E<|)R@$ev{I!3={U&ZW#
zf+T1uVYvi#_7TCd30B5}YsnkI3%8!Dr|)gQ>7*FZ*uw~1pjQBsr>UJO`u1M2v8Q*G
z@yxC*D`lC<+=H*d4y(E>{-9H>*@I4!>m4t}1<Zvtg)4uGI{OwK^I+_|dF@4a2$nhG
zePPg1^$>5*2<$O|P7(^LEU~Mq=y8V7e$V_qe$*s;)^mwLrNL9m?FE#~+@Auy)zPyT
z;{%X{5=NAxQhhc%II$|GW;Vp_#j0c?p;C)vgU$ehxcH`^-Qbvi-^q!F`;^%)W%%nk
zNr~EWzHe%$Up^!z?lgP92<<<>f!Op9{SrU+!{`&;^`fwLJV0f(xMVf=-5R_+$#1k4
z*M|hvV^lD+o4r0Tixzp>bk%}ENImkGUNy_kCDsNdB*D0dVMp;W0LN#UcaDq|YeOuN
zYH}J#GR8fVs8;2eIo+&;r*aO6gj_Ku@#!!0n*7*rev8nCT!e2O>^Bd)bhuvmMf+^W
z3X)6FNI7x1kx+VQrv78AzjioSBftq66y%)bXKdEpU$ZwBu_8+w(NRLjV9#_hCs|kz
z9u|E4M$D|s9NR@%CH2#7hB^lt6`H5*(pR;$Y!+e`a)?Gs&Sj)?N<4bB8L>Kcvoj4#
zN+msKDpn&sQv;4LZ5CP)W`KLC@S#ttlv@RGh12fPGuqo*h1{v-(&qFS%pI8HqnGHY
zO_sTXm6b>8mn>PbG+83^|BC<YljwIRS;HtxGI3Dz;G;9tgTKYE`^au{8Wl83dOAiY
zX2REB#j6Ut5V>vGGC+YP%H%dk=o(~INBzd>7Rn(;sk`4x@lA~1hbn^QyJA+nZz)9N
z^R229YZ|=o4E^tOttCLSew5C{x)AV3vf4N!IOCa^{@Ag+5S3boIU|L#x$7pWqdMwG
z*2LCcX*H@_{oc%!G7IBp1$lqOmVxd;QD*_+k|SC4(9%1CUsaq4WF{nHK^h(zK4PaQ
zfP2X7V1D^Hb}I>f>{SX;;mhItOT(mj>gC{|W9&XfafYc~DQvhDHSbY<#kAOh&Fw^~
zdZrH<ZSK~*^v8+%pZ=C5g+09Q?IuNy`7C(d-EO2;<V1>%1+ovD`0FFgU87^;Nqr0r
zo(7xx$Ju!OEqdOou{FK-kum1a+^l!MY10DnrZfw~N<m+61~&xHuCOPdEF4(<=xZ8L
zd7P==>u-LI5eAig)e%sNu7Ag$U1?VVDl$^p)(t!*C0SS_bMzgP967q|W>NzKrjB?a
z<14H%PyM3bc{+Cfs(sTVaS=W8vQGRnR-AXdyT#>zLEJJq=;1C0vM>o5Sc*qM0wk(G
zs)OebjEUQBwN?uml|v^6Mas*DHi~<QJP~Z=YsUpCUq?q8HEj<um3OrX;{R*62VZIP
zP5n0t#ozW+z2)-Q`}^5p&zc}(2k;P^?XNX@)xq9vz#)JKi`1($zMS0W9=cPPm?OE0
z;8GY-F=k9;r`i&0FZ9qmqpgthY&5`3A+lwoGRGZz1~=Sf-DZedd)44y)IrirD{ght
zXQ+p_#s3^-PkNN+p!&)QwNi%+C7Gh)dYc`4?JaJ93lgjU)}6tyTkUn5b20}CFK!E&
zSTc#~pcVSstJ}{!%bFI29FaA(lZ2l@Qc5rUHNNaiuR9_)w1^`V3>lZ*OBV*)Yob4$
zWfvFD$TG14;6_Yks|6=?k4`<>k{-awR$q#dgjLFEpQ4Tnf~!xkPA_zXH~P^MDcqwL
zpBfzST+B;5{*MbOca0O?4e~y+7gBbD96%Fsys!;8d*Uw)&e|Nida1qK5M2=siE@{$
z0!~9<Oy~X_>`aS$=1bJYP;^ivBAF_*9IE<XW)ak{3py5###c-c%X+w_O0v?`m{C23
zesq+i2u4sk5zS<)s?6x5Ps_EuBPf{u-1iwga>OXYbyTpTi_kt;I`k%<>yc{D2d4i6
z_QG6TRV(@mJ22uK$&kE{t^bOjQx)B9ZB&aOPKmnWU~|Ohv0}1Vur&4@x;jOYnGX9f
z{;NH)@0@CjqJZHPcZ_7Pa^rpQ8Pf%b5upW9^H^~amPyg_99B!d3gWuOzTcVQmJAdW
za*g=rCB<1VEXiubV!iuVn;d4h4k2VAzJYB7H|~x@^|dCpKa{FP+1zTyErBbH*~m%F
zRc8+{_vUn#PYB1kAfr$<b}|p=*@`O`*UXVqhO>%N)f@t4_r~{&iQ92{`(30*H48~W
zU_s{k+VgbBpDlp}Yj_~;6E_Wbjj<BW*c+skN4=OCBlo<)l*wv<R}R-N#`Ed}b<d}w
zE_eg(e6Yn_P36wP@@2hrDbnrc$CP8m4kG|62;RV&3z!3vAc&8w?L7U5OKFr7o8=V2
z9igSTc*K67FLp#*(q52e87Phf_4#I<>k{|KWE_lrIR(Rvt0x+h$jgCd-QW(-+}cq>
z8j|)~QP0f_dygy%(PK|+)VD$m`bPWX3bSG6x8zmDup1v9)8oxf_S%$FFWICveuNo}
zl214!IPV-WgImU!p~#+6Y1U<Sx|AT%t+yX@T8~3y6<Cm(wPsiYsH9In4yK<fYrw5H
zF@=VTzph>tr4Cko|JJ!(?1Y6CYW*FYD^H?&{E7IHr$}g_Q5b4%95E217}n~l?&)A%
zY?T0@)~MCt3E3*+C-Wx$G%#;@k{}vk8bpI93wKG;rvf;ZFYgD000+JL=FlFOE(bz1
ziaU&qh1)5l!-25swN!uU%04mvDv|;!0WrW%eNnnxS{<U09Ia%P_oCi&jYT`b5C=-E
zY(lAgBzHs%<<trjIJUPDcy~&L`2kF_pcqw$=k?)(J9eCH%OhdYj}^pR5~d!k9J_<Y
zQhVX0e-r={SCf1w^smhH^<U`scgGES#D)|HP37=J0LPCy;xm2HTVBwrS+e?Ym);&W
zYb7N&;B$TH$F?m71bhnuR}u$fn!0<dzU2w)U_?da^LgCm+#bQJ%2|KZ5y7lB&WQk6
z4P*}c7?5JRTH0G5@IdT?ecQ`DX(%2qsZ4^!st!3>4}HW7vSDwJBtV0HMU9`)OLt%E
zr6WpfDlo969pz2?=&=vP=4IIjq8JDal}@E3Hem+Jah<G(KjfQ*AVOrU{qs)HiHod^
zgUm84mn&|^ctOAWBA9W9oM5uVg<Tp&B$_BcF-P4|VK!XeNt8x2$FFeQW~xEg>L|zD
z%B`DAK*(P}=FkK^>7VEbe?dV7yU?-PalnhqWz;ym;800Bu)9Kbep8e^N39~tUKIB(
zpEH1a1)Nx5m9ZVkELyM6`z&6TYqJ<Ki*L<==7EVe{+u-s&I3Fnbz)3F&BMa4d97#m
zod<m~%CZ^^npj%NH5<rknmX=T-T%$#x*wyS#<WKLluf9lmMAsEk^}JM-(J;oPe%6~
zo}N=bsn)X6uw17u>iNp4@q)*5C!g>IQY>?bxoeg11<I2E0E>#J=uauR03>{6rUb0!
zemC}fC8>LB*d1Chgvf~@7xADFOTvrf@P%XlW$}Ma@587nHi?dO5o?8zSCfOE%@*Iz
z{MOMr_!*~`LHrbTaEy8XUJ2sk`Qj7caIUT2!)YX8m%IMxcEbI!Qtq*&5tbgvLB+Ll
zQ2ya(U6<4%I_|UtE<k=-vrNyckR)jddRV~vSRuRTLdMAL>egf2%iTmBg$jeag-sF*
z2I&hAjFbEaqVgq^Ah5z8mx&uIQ4QH(KDr^QqCTc&usd1Z_D6833wG~=T}W%fJW9<K
z0&HAmfssnk;49N_>(TOog$>}XB&9}JE81@{nWr98I4nuL5Ujuex7bw7P}MItL(SgN
zqyLLXJ<MnpRB>5`eelTXtK#nE69-JF7|$Qxp4RQ&-;VyA=^jk_#gtm&GdL=!%%xTx
za!h$b=YRtciXpICN_8F>zv<z)f1?X9aVYpm{RXAp&krV^d6bMG@M{h*4n-U?lHhUC
zgl;$PwJ?z85VS(|M^|&sDGnYY7eA{gi;|1gjWK3Zy8SyYu@HpTR~>eQ`C^~HCzhyR
zyO`do_V*)%&;Y7M(0jwxjYpcAllOUTk($-j9MIdnwstDkpi_DUiG9`XUgqH`R>Cd9
zQdy*qP!}F-4(($9=&s=5VOOkf`b!r%k^g;KuA0%#<i@plNLrS9=U~&jv;Ct-hEdmG
z<^?9{OZ!LoP)bpU1CxfT!^W7(-S&?~`24Vr1}0^zxns=qFIxVxK)rOKnc}MBHN&|L
zSKGC@B?4u_2NxODR4^Tfnd6VK&)|@->JW;`j%KGr=}Dw0GSmgYus%NC^eeGHZVAyV
zQeC>6+uh^+mn0UcH!I9r4*r-k1v0ZTQMHAXba}^^(;OVB`OIgl!;dttCD_M@P(|46
zujyerIc#V1rxdF^V|u&Jgs&`CCs&wP_qfj?^laBo0i{O%ljMKPCLlT|Bp(IIqkyrP
zt0@|YeHls0DoDvyZB8*qx<7{9NE@s+1SUQ5)A6O#z@nC@O~;#ImA19R`A3!vU-)(}
zGe66BBV5BnRcy4m-mOVbu~>k8wK?6tkb8{8x2#oGkU2{2KHIzsl(8iiaHRTZyqVxY
ze{zX;Fgpq(zEWk{I+z{gsMQ!cz2QCTO+q->y=f{hGfS0Mn&f1QqqD2Fcl92qw=qQW
zfK9$T!JJJ&LOB`5lU30hi<2W#;s^PueFbW_*VQWwhdWn&J;of!9&XV;YKYuZX{OUZ
zhSlOfg)EE#%Tf=WVm4o4hXp+ufx1Cw_Z{iU7FTBZ6|AvUlrUJuf3KJRYX3g40-UrP
z-GK?YYWHyS)hqTfT*Jv79GIS`x(+dW-?D#WC)Nq~Pyw5LY)5lmsr_pcOs-hH|CJu&
z5O>+Qaw;pTsD=93*E;wyw&j;3jZ_`0%%%H`bg?>dyt%-EF+Fy%NZmBvT<EZi%_e2E
zdbQH5Z~cUnp=$m(b9v;~AwaW8y*tr7c7mOQre`FMQkRW4UEDLokKtjFxQ(hzXNU4^
z{&zu#m^Z+1GcAlWMU??`CKsrMW6h#G``2tKX5+>)AFiI?Yt5U9Rxq6W&W0N5Q|71x
z#+hWdn3{EEv?`il%G{T?hJR9WYTC6X?n3(@x4gKn*G>fRzycbmR!=td$6I031Ct8C
z6PR}HJwxH}f*DV$hUKS?RF_OPN4XKoZo;RJP{rfS8}6I?R_=zvn*=^0PWco-xunco
zk>2_R+3L~>CI_GugCR(#iC|U1!e*&|CYtL~TK~F8nepZ<_v@x!Ci2$tX6Qbn0U^@_
z^KENTE-L)_DznFJrDhKqs_G{AZ5zU1N2-cB=9yWo`jJ?m9;r4LImB!D+YxH>U8dLU
z*1yeClWWZpZb<MHHvp??RJm-4x$l`i^X;z%ng>N2Ko~3N{k}=P*9wR~QZh}3B$vuY
z=e=((yTksy*>j3i*RAHvyX~JLdYD2b-@4xQ4RyWc2CQzMZ%$icWd(c0tDc)STwOWW
zd^jia7!*lw3;yPgl*_2UH`{!8o0Wy1HBfy$*PQ8)z;4;>A@D1!AeTwK>UML4`(!7p
ztDV>&SGwG^5o*p|CZl;fF$;hs%g3OvKQb5JZr_A593$xETrlI8d~K%HwS50@wQP>L
zx%oTB?y0USqYJbcs1|-=Qmb0F$Wcq~F@xPFhM&<_T{+L3(EPh4xQ#Z)wGAa#pIIjQ
zX8RcT9h2&+2tDRz<f{(5%%+J{+Z%vKrddEw_?*f0Kf}CsdCVVcI|%->*qsh?3zoW)
z0;zf}(M+q4IoZjrGsMO$B?wKX>lx;XQlFbn9k%M)apR;NuC?k6^XvGS86i_^q#6Z6
z47!ddnES@YJT}yVPCZYiyf0Pd1m@dHE3$adGA<za4~2VQeSD}nb!yBd>uvs&m_w5!
z3<%K(%|^bfKmI=MBrdVID<m3*F>eoNh&Z_ZEO=MH{-qalS_Ij(AhNikWKgz2)x4#*
zT3?1Vw#2&u*9Y-*q;ON&y<I;;Z52mu(ck7{M{f5p{!?OMn?CUeFZQ)6oP$OlK$N!A
z+j`b7{uelCJ-5D4q@=5zuj>)v<4YRq!JSfO8*l-AV}3fkufKKqck~S?>qIFujsGTD
zRd3P1QM|<U%Vy+=TTi|yP0iY_U$x&Wehqs>0%;JkdQv`$AL`M)pq&VY2+vYrZxjp%
zYiQ;jJvt7yqC!{qQng*x<LW~D7w$Oa^^>Zgb^Bs=k1nGLRkXe#CaH#3dnV7aH$;Rv
zz}~QC>&6CIW5?JlWSZLcM$bRz+8^Mj><1Yu@p^75TrRI4uRmBA_uCepJ6e@cXl074
z6pzOZl<=vugDqtih|P_g3mkz?!c~B6a2TxF6?AVC^Ze-@x^NRCc?^_98NJMzcFeZ(
z4(Wn}-vw&;@~@{I6I_6EN#as+QFe^I6f!19?(e&Tb#Fz-lOu<?SlE!50z|}NFPj@=
zy%@bW%KG``m}lW20d=(Qjv)R`--zT}&O(t8(E4_E@X<?NG89zpq)ORS2yr|V%nQ0~
z^}+$b9;pZ{BBnc*Lbk7ZQ5MRuq0TKfc`S=<K`{AaFZM-35CP=A^w!|dO<pvjwtB4h
z)*?+)hu$0<yG5j}uIOng0q%h1*YwOt=`JHbw4qEkRR*4}MD<*0aQ(F%Iz?N|Bmts&
zfGL@H<I>byu{!=_0lCVlmt9&_(YyTkhPtujL1d0p%gfEKK2{So9ZnfVs@GUkby}xZ
z?@vq#@Xk3G!2$wLgX-}>CJ6fSj=4SC9(|0Mc%hNZ!B=&xS?AJ<T3!&c)g{N6rGu>{
z);t@4a$g%xHMc!z1^roW7@XqzDoW_9Hl>?Qy{rJM1T$5s)n}VQ&)L6F#A!++-U?ER
z$UnG$s(Wx9ncLD@E$n0F%&~v7A;PKkBqDPc{ooAKxXJ!mh)~J?6!e!;C#9O=`|O|L
z9kJ*$rPgMeAKl*wuh8_^RFn3MHFTZ&F16K)l&YC-(xy5~mkE%4p#~=8sP2Q!;2-TH
zv+8P4^@O?xrkAL{E6jUu*gqFHP*??&#lVzeb@m13x?k*H3$cI*k~+&wZ5d(?{LKD+
zP^9=dsWg+un#o_gKTbtE01?8=UPM~q3H?k(<RS;3Mkz@=>cmuY#>MuxgDJTTXEY!3
zJ-6#K<AhmKQeUl)UiCCRj&-FA2TiD@He|gT%I(Ia_88)-h&8KHRwz}<=D8m?`|}9(
z$vr*pFtz|%0Z|$%{!nJFKs`CF$JB22uO(C9jIY4`5P>_xU*6+Y%GJS0iAtYBZzoRe
z@y+Y@w^>xJmEeP#v$4mMbM2oZ7%GqB9f~Q@es+%qUq#6SEZ~-{D3jUe^d8kGhRm6`
z@`S`pb(z-Vn0)&(SlulOL!DLDqfNYJzs#vdEAh6ob9*HJVIwUilS-XuT>TW&<A%MU
zi3X7*S%J5+#wEW2n&DvjdAfc+-%)gAsa(P~0uCVNN6ms2!Q$RgQ8BLA2o%dKUofwn
zt&cAbvM-K03HT8Kh@u9HbWtK#2;^^=AFOfk90aH_pOk_W1<~oQpwAo&-a!gO9>xQN
zwj9=Yu4X<M?3!b9U6Hj+6o6Pv{bzCTaZS`8S@w<M3hPhUgVTZ+!#_aw?aE+9xdndG
z9GzBC4?rgqpLL?@y&%|7XHj?dtz4WftW}6olhmkX!L5TViW=c?4lm;Le7^ACbyykH
z<#|yF1|!K<q$n_@l(=BvvX%w!)%!spU}OnQi0|VIyz1WIi-xFwx$&X5@Fk$81a(6k
z1~1Y_4+VK+Y$<Wx3gQejo?jG<6w2z31wra8KT`YtAXU9|f3P|n=vKo8;%WDT!RT@R
z1+B!)U+hCcbc@l%CYCF7l_+0IIV7la9tn=S%}&R@88tYQ3*HLOPO;=9zyh#WrUaHv
z1-zBG?k;#jKjJ_GxSIRnpl$@&CCHwel5}5(W+mjCMM@vwMBHf5v_%EUPuiS~eUh`8
ziNyEx>RW8M0%|nkYJOGWfWyhR>0lFmi({M{B`}-7MMq$J$1$5K#E|95z5qMM4NgUZ
z59HD(t0$N1E6((3>D<q1Csd2&lPEQBIxp7$>+PF)xRAvf+vjGeV;<FA!{@?1TMKrd
zG<+P=9CimT)zL}5wZq+@|1Hm#t)Fz-D#(OwB0X;3QMEOahJj;Omg}C?dP1TXHSZL5
z+_#VDXA<PGE#0P2R(x%q-Foz^cyarc63Hn8NTJ@D8DzB4cQV~%0F?bM02zFiYQ@s-
zjVZCm@V{*KPiY;6gX*e?V~r~%(5qCNv~Jr~ZwpfZR)eEcqC42dU4ytAE&R3!M$*zc
z0yrF?%=LizX7}>w4`Vx4vn()(iJFVG#aoldne?6A^0PC<lUiRPh!cW7LXhz6A?C~h
z-JZsTY39gJNEA1$JEdDi69k6TZLR)id%PUg-XEDdTHW2&oP4M~8^S*hSMRnnn<Gw5
zaS~S6)i#p(m#g};HM<UI@naHdi`tq`o%1rZ0PryV9GIm;?N3`+04bwY5O1CzWF_J6
zaTRswY4V-Lzz30R7xAHyQT=!?bBoKaZ1JSjVs&?S)6G4pg@2OR>anJib1VXFU{Y{8
z;m$kROsTQ&&25m<imHh8@=e{$RcZE*cu7MCU5OeKZ92N#VR<w+E%IoJQcBdd(Ps9s
z_V-zhTzlIbVwN~hrCer+P1{Il5jAdaJ=}bBg8iXm^NpP4*R?f=oo)X-l-b0Fa}Dq|
zKGDX^bx+Qg6S6*n5rwA6JnkOkCy3kdNo~!Qo$O-<kPHS!6%(Qe=iC+T%^UG?mWBt7
zf(ZoJi;(`^59^h0x-v}#KvqCzT0x3RTcrEF>;)LA69rpD8-OeqEYzQFaiZ2?=Opz*
zThqDNhMfy@SewA@x!1#CLG6^JLi6znou?*|RgvQ$ea+-(h1vphL2oZF2_jffl%KB@
zhh-p-0vUJMXj9kA{}cv0*tzAK5YoSX=bE>U^+F6dOFW74Oj9=xH8YHt^y7x$>3eAi
zh@tloQ=ja`1VLa$x6kCzxgg6#AL&IFlRb%Hlox_wThPzUJ5GeMgIcE!=cuSCGrS^B
zfLH}wh8bZ%=fDs$U)G0y<0;>pNmA9HFX<1y^%8%T0WS>}qVv;wVHb-P;&Bo9CLngq
z?OUGKMS%seV~X^r=A5PR%pmn7O?@#~-&rHPV=b)l#F6T%<IQQ#`x)*yD#?xw%=BS#
zg3fQcT0(WngBENJ{?-=BO!&HQWksX)!VtgaRGYI|uf5F1uL=GSqV^U+B$B}(gn`O<
zTX4mtu}{AM90hm?o?TA#T7Y?oC0DHBjbKtuC=Rjvw8e@j+7aA6!wXAl%gY<N+*j2D
zfJv83gFf#CyQX?^t4DKyUA!&WTkFMnRnz2hL_@-wM{W-`UgRaM8>XqaH-nK4|Cg9L
zT3dqLDgTF<Ao)XEgWsq9A7XU*O|J*1P5wW`+!C+Y5`1IdUCz10Nn%rD)!NBN4Vm6c
zP7g6!C91~&WT;-p1i$TxUOU-FkR>Ssi=Y5+{oa$z-4m=PC@Hg8I?KILNM8LBJ<S;x
zT1j|q$X9E|nm=9Ee$%Coy!Y7gX22PpB+zV&RXLZ80F>2UYBk(10n}D5@!{(1D)Vb=
zpJ(z=wYbt;+0rGRtL9EHJ0j`)rH*f)K%Fqr#HZTpXET3qUV66LSZjVbwUafAE2fr}
zQepvfF*ObM!uksR@b4Cajm=lgH47FvB;cf<xj?T}Q3Bs3ZjUOqW&{QM(p1IOI`>P<
zgDi2^rkYAvpF7u^MX%ZdNFWse&5WUJxl_|Hc5{2a@JPMpVT&KY$HiW2EGJHs0vc;g
zv?&`DlQ|4LuK>jb<C0ZV50!w(>CItX&Cz*YP6mDx)faNUBQM4*&+&3es<GpZ47FC*
z-dq#5ZK4Ae6{MDRGAVt1JG*JY88|;*f?zh@i!$>{ynIl-Kmz2UiR!*XOm2}EV2MSL
z7a~kke;j7c7-@wJgUy2~r~>}XRV;-fC)7a6(t|d8h=sV90AL6&GL8-~oj2y{{x8K|
zc8^785RkPzzCb!Kcrr8fnNRwL_$4qp?P&)>olLo(&erLVdubt|On|FkOw-g2+4}uu
zR)F0sPBDCZkO2a^Nl-^F4nAMmam!K*O?KP{)^u(nVoO%Nu8&{)i=|p44nMG>u^#_)
z5{o2FjhU|VCs-CN@C?l=BjTj%V<s+ll@Y~p)yNG+D6T*!zZa~`iXQrn^*1$3E=3a#
zEeyUq(<YbVvbAYgf#kfTrho=hPi2|djsihn0JcS``!DMG!H90Mzr;?6P&Y}wVE1ME
z+g^^Iz!vCr#buzzOHl2X>t9{vR;h6-l~o+3I>IzYq1yy?)I<8>Zl0gaBCbOz`nc|4
zJ@9BRrEhL=li-a%bk9xtU&ngpamH{$MR{QF&t%}Ekkz|4>JB}8Y2Ly3Gq5ru?J2a7
zsqTAJ*L3pFMwgJYVUb!9D)tN>@$fud*v-FUXzj%MrWfE3{PI@)dJivcI{l%V!ZoUb
zWje2|f4of$$ZkfR4l|~@dVx+2pUxo#rJ1{12s?U``uS!(FRbF*N{m|TcC%g?Qncla
z8;9*CKxDU@U=iikGy8I#)}@JzKIDE&QFCtAr?>I6?(S-mhXp3&1yXYEnp^eCkWtQ#
zX*~t{L<sA19aXf$%EbjF0ysw(LePa1ZqdEMmf`6RB?5N-QM2`tq0I6N76OIBi^9!O
z0Lt<LNqJAH)k~s%w_WAi;Z>vuB4trsRi_W@?4`06bH+7J!ondBHCcT+i~6yC&S9gM
z%1tbm6gB;JJ?aEMS0&T|!`!6DEWp}p^<&Bp1>0X>i$ai>sy_XX?skBecps<~O2$n*
zM=y!>o#5U)0mmzoS0QdY;TogTjyh$DP77D|AZ&A#8J9bZ*$<cL3wn6^yjII9UA=pY
zzTfz+7S~pckvO`1AExPPv-K(AdpTXpZG4@9VbTs7uQS78^K{ct|1&Jx7wbDi@<5l?
zV5tse(9+ah^Yqh)*+B!;Nm{yx#8Sx=l|At-eeeOX2fI?G5p03fIHhji+xo1(Vj>c1
zRO8ufm;jDQ*s?#}s*m~B;_Pke#>EvByTq+1Fe8CAt1Wu{VZO?#6}Xj;lm}n(y8bMZ
zo-BDGHRaUqBqs!_`V4i@R=wmq|KJh=<P~-Zq+yB*Ueh17v3boT8swC7h?Yk(e@S0X
zQVZVEV@BBA8N{rP@^PSJNJJ25*~||m?OF0_=rGz~qAdhP%^y_g-c@?seK9#zHYYw;
zl({_x5OPM`v|4|##0ojm?NwGRe94;0RMk0p>;HU>5U1>kDUezNq(~68%;>_E`n#~~
z#h`HxG%JJf<J0=KP!P6q+gpHKDeAAK`qc}4J&gW!4OPOMS1!*5QyDi$&$`K1>mVjm
zTIcjCQZz%}2L0W6VN*&7v&5v^(l%8sT&wT12r<EsQ2<K*j9)K!T4#p!OvJPkyaf>=
zJZ~R8uRD(RZwtSIgQLf0y~<S-A*$5Bs)lXibTEKbTs|G<>YdrPuqh{9VQE#l&nx5}
zmZ+9otxxG|YmgSwm|%=oze%J;t5Mtah<kkLuB>_tW}q-qi7rWv*`YrPiThhMOjbL$
z>6v%?hOMM2>gsKJ_Z%x7PSqCf4UwUd1iM6aTO0H8pibGEyCJhp`8HMpAZU4tQ2Z0K
zQ0M%jbx8g%Y2IV2D{RjshhWPGI{igoQoyZ<p>?n*)A2O6&855aPn*0Lg>Dx<BI2Am
zZ|VByt%!b!`CQ>fqp66GpwSZ5<$<|kf-U7h4<i|nR0+VJnDwikIm=fGfT_M52NBsa
z#9r@yRo7M7+5nVfvu9OaX?Zy@CdBw-8eh>DPw-;29SRAF`0~cQp(mc}iwcN`heZ??
zM4{Wnr?%?H*M?uzC}b176@5h}^j4j+!HWbIP9Q;Mkoc@pZ|T{~z0CQLEnqDHgDzFA
z{7vte<|}n%O#uWdW6y!T_b0un-U|jylA^zqTBLeWhPv)|{jw`Nhj(#k74+)%CZ3eR
z)#UCsw3_QH_lY^{F3prDgpBAn-MGS!n)8v^3MN#RNLFUEK5mq+EYYu`T;g&-FtOC?
z_vrbqUY}ICbF`w2CNI1BB^?y`Ha@XJ*o)KEhPU;DciOerG!JzS;f8t45&GqJy<?1@
z3F!=4Y>HgfnGR<7y{&q=n-1EeGpa;Uaj28#m!V$&NMF|1&y`HF>#U^QU-Pd1;3YrW
zQZb>af?%r3|4Y};^J6N5W3>$V0<87DpXxIf+Hw|b?^acUQ`O`5>&1D#FmX#M3ht~0
zx^rJI#khtVf;c%AJ-*{5y3eV;-m%*TI8_m4s>Vfn*8neS`AjBx!-M*}{{ERorBDZu
zGw6?H9zX#9!NvN!|D!}Rd<nA`=$x>Ya?8haNJKrLSBKJq3IG~JQ8=6_{)|1i@>ZQS
z*mkXuf@{_=vO^{1Jd@PrGjwg8<^E-;3h_wPxwtd#EjIo)*XcW}e4%F0l6XnUgHBaH
zzoB269QQXoU9>8J-lftmO@xfa({JnRFZ03yC=2}79N9_gq<K2G(DnrHOT<AGxfcpO
zh}wOx?tHv2%?;K&a;>2;VT0a_^*Hw#yfU9_4SJQBy*!yzzI%1v5I_9h^W|y~0k}w0
zFU{2FPx9YUf{z}(Xb(&IOn6>r>Gl_SF;0AxMc>L=u5&zI+<a4R(eH+GUzHURs;1}`
zz2gesRF=L&3`;v|hRoJ|r+J~+6XHHeOe3vDeRaQH+2}<rXOv^|hWUC-xCmQHv9Zsb
zufGpVfnzmdPg>{$SzF0!&_lZPbidY`p|(lVPEn(m>fgf^-151ojjs3WU&6QMR*j*z
zM5<(gr--dKp`Rb&RxPQh^nkuE+rPA>6h(dGLfxsKms+AOe8)UDk=sVQMY?^sc5S)?
zAbDJaNI8hVpQp>ity)+HHdvrZ^axssyYJNpW%?eCsEAM`Q;sD;6))DupXEj5kPsi1
zahJ^QN1oPKj`ju3v5Oix8*CYMp>jIwcHM4*pOnanBGXI?$$#`O)mDN<&_u{V-RTr{
z*QNT4v*H46aXBqNo)^x4KtC8xR*qQWjZ`&gkW%Q9n{xM^TA%5=S}3;-{?3v+`5rww
zoT<FVnsTuT=?h2h>DTMzuzI?+p}g%P8EyZ*K}TH{*B>B>Y-q_JX&TT(HFKW+X@H*!
z>`Bm$rR)Yf%M8FBck1XI+Z(YOU2u@mldvP@!qu6t1WUVn!ifR^NVR1mLBoxFCiw6$
zFDa?52Gjw)6kZ4Tv7Qc2HKE8p(*oSdsX*_2d5oU$p5>`<Z<IU&aXwKfUTr;5um7<9
zcSBrYl}a_t6_78a;y$^sM1Qfy(o@m0Z?$CGmkVkMDaK;*7=6nsFO>-!3#K?TMehG6
z_0`8c+y0lxV{Ps~P=Ser7gOW{z93sKf6j}YE#%9^+oX2xH0#dONBqzG%lcK-G>nlE
zl0@#GqVxr4S@tvFWUb4Qu&;~FqSJj%8t32|TuN4oRQJwQFBF@D`+GQ99$$+RmohAp
z0=O~H?9KPGRu5+Uk1sM?nyR~4&zXNP8?dI(9G2x9w|p%__3aR|AaDOtuD$C=no&)i
zYLMU>9Rg`|j(IHndtu88;P_y7k21%&3OhEmUt2pdV(8;TNLCAP)`c~`C`Zd`A>4T`
z*TwZ-m{oUCDI{jN9=Q6Rd!s(A+Dj~ZCCMTvks-76$xZb|7`SSzP>C#&e9pDF-E@8F
zRNo8)IF7^e+OSFh2}qo<*N)Zgr~BF>Kn?7Thud4Cn)7enr_#43>cKkWx#G?r^KWg!
zuV_|uBt?pjyd1u<sSN<9jaTc$i~Q62w(2SlfvNh#X<ppakZ&J-t^TskOIi*Y>3!5P
z35RTWDWtA=a&U+~HbWn9y039!9eNG`kK2!nL#pcdpgz6U%f;0u=Lo(QY}Rw{*IO^$
zpNMj^_vy<Ty=cGV376M}y3M72Ji{KPt0!mZgU<AANqHF~8JBQ-CaSLn>*}j~i>6QK
zTKL#CI%cB(bW(%F@rYXoi(<}y^rj*HY5RO%hU&ObZ=3ApP0z#`n)q*>6Bf|16m@lx
z`>&Yn>eyQSP=oJGvu;vmX`ntZEJA|@Z4g)?-I3#J?nHe=D8mpaEvsz6Mv;0msp|Yo
zb?P4-#x%m2H^}DU5@?XGNK+5qsTUUcUKXIp+=ZE>(R6j=z52##FYCwcR<6U=S$@#J
z^sR+nvd_1tsSM^eY?)nJ&kbLCf{SwbG~J+m%aR(&#;GUEOs>v2gZK?&-nUM#JJ$au
z3rr!eMUbS9uhT0|@`7d~ldMJ;>5-T3XUxbn9Hu*6;U)W9Ft`n}D)fSj{(ry0UDm8d
zkQ`4GVUxi}ag&gpqBf4umpdXE4g}}fA|_%Z8F)+1J72f?)$8oxT#WII`9dMMMKE^%
zJ3#Mt{ExH;R%YufLr9jaW)IQd#9L-aBqf}h0>lw2P<3Emebo_Gf=|Nw@Wm^EAm<@H
zHY{{nK&(!@7*J=bk#FgN72YQyT>q?p_@Po%n|t+vlfCo9h70mZVYTfNDCgL1vECTE
zRUnV3i1<`_9V_pZ1$y=6{;B(M%cQC~OZCRkds0|B4!{&mvFr*T)!&`#-|I%i*%Ne&
z<NLpN=~t(OV(%tua`<GZ+U5GX@&BJ+PzK{s{aN_#0!P**FUQPzQXdiyQ=Xvn#Lhtm
zBy0OZ{qy<Za|L1OeMQM^r=#E1CLG6-M)sN*PqgGB{^EMQGxQ^cvqIqez=!l2*AW;>
z+}R!p_sFfAY6~2A3oZ^$?;Cgjx0c0Zc&X1|Pa?fNMfIN=oO4v%+@~EEmGJBZKqW~u
zMo0~#y5RMbd{fFL;M=zjO{BnH<1Y<LkGIkmKvO(QRbzwES6iTIOG%RIG(Om|9|;EH
zx8=cCH|^Vo9ooALJj}ilmRQQz;EQXlgwMC0b?c>+&S$EZrUVb9`_6;7umLB&nw@pw
zCBYS4{Z|hF5fBU-%SESpBIsqn?iBc(7Bmj@ZJS2aBA@vMubwzPFlXCe5DY7*D5oYF
zqXR_&U{^J#yZ-IxnAaCVK}e=42~iPm9LFy^x6i5i%HgpW9crWB`L&ViPc}^RVH>?I
z+0x&D_38)8Lau}uolN7Y&*&$Qv&346B4jH_810(PddLY*B5VQHaWoEahVV<be^+;Y
zKIW_m)~7l+l8B7!hfK~Z^$)LkmeCySTX8Dk{Y}DW@boVIMHkC7B=0Jnh|gIV<&qh?
z1zYr#WBkj2!c;lmxHyJ0)bwX{u5%1WplXrZut?RXH|s;rw;VmVe*0mCqk?g#5OrL)
zU1xN#zHc1He1MR!MOtPGf5zz_>mT|$r*RRmNie^-lkwwasJJ(D&kHTT9WQLfen%;g
zZTiL{Ck@%A1Di4?{&5b4(QoOJL%e^yq_M2jqDXO?;Xlg%Sg+XYJmC8wA55j>mi~04
z{~UWS70?x<jt^+UPQBven16;4_mw0J?&mgKhYyg=T(w^JEo{{*`Xk7ZU2p5>j*7kA
z1px$dTn3ttXbg<WH|t*4#@zS4B|j3kr1(Ra5p=*=+w`^JjP$Ra#usAJMZoaT@t~tG
z`9h!A#?2=yq^t$6RFbONtxtARBHtuZh&MraJg|Bzo-q%+**-!MZhg4c2_YmODeBnu
zX5daQbjrt44<hAOw`Y~P_$x2vP@YT{j<6db<(kxft*PJTrIf6<D-01{lY=&xKi}~p
zu;?V25<;-#-Qsu8ga$f6O@GoX*<?fV^qDjm=o^LUC6nZkBz5I8=Kf9X=U-uo&4J;P
zcqD5ZAuY$PH^*=ELYM5%HHZ&NQ(K=iZ@wD7x!FJ@sUDlmAK^eWLkHkZjC#iW`Lgc{
z29%J}Wx}_>M&E4u@AR)KVH=fBgjQBw#xgi&y_pt%<^U3+86YboZqsp{>G!VhNVB)$
zCw=a5Gw&7uHbKU-5X8gC8)+ExnYr^N|3;g%XZyk>@%C@czztr43)w@Rq^Ak0|Ep%z
zR{z3cu|Z_Gr0P}SDl;Jb@a6>aP`qY6XNJ7yTQ!$q=iRr-%nZrpA%~&Pjx7v6a)sIb
zX8Tk(H_g-Axod7T$GY@(L0~k?d`BTYVRCM=neVMc=_>gt^TPf_m^lO2o38)yt%jC@
zGM5#?S*)&l#B_VX_adu7q6^YLtoF2Jrf|!CB&4G+GY^J6_g}<nD_&vl*zQ}nTm^xf
z@U%4b!dmn0Ha|iwS7MU7Y@O-!q@R+e?y+}<K4hMJDSTv$1<XzK3A6SY-z*1vy{sDV
z6YnD!I&_igvB%4pe=76#t3s>Q$i5L&*3-+(r|<e7P&X(N&PFPA{kFbs{s|x5Y~A4q
z7_`>3-{RMu|9Y-fJs*>e5t+|XxE**@YG%6XGtZ<y=U>$Hah#lE9x)GuA2%E{pId9J
z!g-IG17Gy-Xx1h}eZANm|Du0OGYQz6N6oU$Uec_~4E`-^%@^TT5k3%m4WWBnTL;WF
zL$3AR^BzzJfy3|b7fd!uSZ;+5tcv73FnnC2rfx8U!hO<TD3434K_o(8%J3(vm}N%2
z5_SeX>h@78=I+%?%#6kUg%X&wmI|v8@c%Opo4>+u5U{=T`)~)yP;I|9e}z-h7nm?c
z2L0qbjoxdLLq$dc0)&6IBT|~|>V>8;>_~2vM=j7&OwAQb&CrcuH(Tf>lINZ<8$!Jl
z0r<F^Bt;Q%>Ky;1F?ab*HMpUXn@7VWc`z8CHy4}bulffMs&1S(NnCAIX--lVi%iOL
z|NX!$DkW?pGK~FuXPK0hUY6Zd;)CyG%sYN$5?=GttQxklq#V#x>iJcEVBQJ`q1hWT
z8{6Jz?hoJCTm)O>0<%2ad8D7<B#>SvtHcM)mFxYxnyoXa*B>=y`&ohPjJ=PTlu*)Q
zX2HfjZ0>x{4@lGV*r@}Tnu#xaNwal}<#FR`^IEvoim)Cf`OybInFLO%P0yNnSNTaG
zQBAVnY_ywsfLrP4#b(6T@ZmMJ<W{<a2l{L^b(3lLwqM^(ed266bcwlUlW*31QzWWw
zFPWFZW1!h!vduCUnH_8Vm^Bxrt4AI%lUI9Dt7Vv^Cao~)S^qjQT(HF52`{wAyOx-C
z;UaCZ&QjI!i_AOWI%^>#=<<;HWB;-w)n<wL=XL+arccL~nYP4S5^k75Q>yBNLGW1$
zumN<M1p22uZTiplBQE||pv=|fK~_~A-tW3HDH|w$UbaZ0I{OKeHN*e5+1zrYn!nnd
z7wV*@9v~@s$ow2Gh!$xKtn~C`5=YI~FZ!|U*Dy%{*vvLvd-*|A_{_dv1*oL+qb4U@
zn$6ypqPjk8x`Yzv?R3F)UdBqeZLhiEZU3?YeBa_n6H$Wt;T4k=_5-`F+1g4_|9!!X
z2@RL<lpv9Gr6~zd)n-RKzRvManUvf8U^TNox!C;jjG5yW9WXor__^f)DuJw<apvS_
zg;_`_hhXQ%<h9C{9G7%8eXQxV#tJbPhLe#|+aO-f%#1WN@sf#V$maIfUS(T01NSAW
zl?i6VG6(K!0sA9FakA;XKM6PRBvbOJZ<9}nd1ye%S(5~{%yf|0<ei(EMg9lPKLU5<
zRh1^=iT!^>hWci#sa)@cxImy26jCM1%M3BUFY{kVmNr!^_%gJ@4_BIY>;0Dv#om@O
zT*5TQrE^%BY5SyqT8nOEs-@%2{B`@2VKB@ZZ?=T(BB0M2_s|SgGsdiV+BakyaLtL_
zJAl+Ow=ax04=?d@TcyRi4-j%#P8e%;J!XabOcH^cYBSkQ5<=i&WDW3*Ol`j!v+ZU7
zjl?JM8xfdE7jNatQq#{pkR?%A2H3`v_3^$8_2{|g+lPE-s1Gd}j|?b>$b|l;{?Ybl
zxV2O=6&MLXIg;&>k|l85>1Og%R@%Cs++zmRnzx?z-D#SnWc9!>^P^*;qBBk8((>sT
z$LE`jrM@dotvH#7nZ1@T%Mxjk2U;`E`G{CcoD4rF8ohphYl&cI=keyGa6>eoV2(n_
zD6V|QzpuFrSlY00Cd*OKwc2E;fwFO?&8GcM5sKh~$>!20?WZ#?!t#WX?=~41k%Xz{
z(v4o&atC4y)SA>6{Gc`O4#=Gs%FR6+eOE=#T7p*AFiLv(c$4~~mqEObH`E#tq)p+i
zJ=>hLaDQWiEUC)$3ct}~_LyDnH&<tyrR)6MH}4D9z!%l#O1Jh~&pgZG(#ht2_l1nx
zAj^p7x4m3{7nGXB&3@=c)Vlf^vWAITf6!>o3l~lEcVZXhjx{sG?{}fCJfawYo*4r?
zQ){N0^O{yjS?MH_n&sd@n5K%Sn7hIq5J?9SNwR9!U=DN|k>2951~yR@p?T&9STSmv
zd3(P)02_bzWOL{K)f8)T?O5|lsHVgQ2?o_$(m|d}Y(J*LbapC&F@!?E+Jor!qD7<&
z_!A}%?*P{nhDXo|a~7EoZ}g%pHh4L1Ns)m@dw8B%d4rd6*~Su-EI5R?cKa+gpUm;X
zW~U6t#h*`@w{P>O4Ea&xnv9K9E<R&!H{0&=Euq#IAfL4fiObJ>z<jsJ%PcQL#F@aM
zeav%aPv~iAI$%)@|6O7}aJCdK_Q8OD3Eu^Sg$^H2yI{;OEY<IKis~@N27~cmV-GVn
zsYH9#$2aH$_jo38Xl!f3gjJ|G($w#h_4Z#a1$hhaDqY<}0jBG%Ka^N`c4;}o2DSkA
z(T>IXw9|Z49^adI4dg3`fZzt3yj-7@Xr<s-vS<aPqNS4TIY)Qb7Qg}^y+GVbHiaI5
zJ?`IAJDOE*$0aw~dSs+MLJdLAVLFhF&%e|^zTt@`^Qg@v4kc>CBYNX2y?I{Txch9Q
z(94bX=IZ@sd-K#g_JIr;IwL4*Xk@f3{Ihgvpek(6F+GVWZ(#9U<=_5Q?}U~ouumje
z8%L&m7=GAfb^c%ahGV^Kcx`Q6CFlX?SxihyWD_6zt6tOF|3Hu&T$RCUNNsZU^UwN!
z;e(sKGFjdCyOd^@S5gmnAkoPNW)2)tipqPU`;3bHR{VuKaBcVN##k9nVaYSDtSH5+
z3Uz#<dSalyWP{IfaN!OCRU_n9^>cq+yxI$CNbJQO3Z#_dX{k-q6QX0&zO>F}n>EkH
z3K4*VE0gq*QC7sna#%{X3t0!Ky}M@XUZ2H2*~_v|=aKDFX$5IY-KOh4_X1(pjW}X0
zb8U~?^(#BQ(0csrEmnv?Gu4rA=v9sgR8|pQL`l@Jyc5@4q(A*G_Mmz8WtKOP<Q6vN
zIZJe#`(jJ3wtr{p;M9;N0;RrprT*~_FDk4mFXsX@m`Z{Wnx|6ML7litpF1n|E4b2!
z!VSp<2yzeZlCbPI#D8~%&=`w=PzktA0x-y^4|QQfeA1=OWw<M=2)BteO>L-)?{uq|
zTGDp5PdW(M6!pNVLE25xW3RUlZ7!nRc3SXkC~B&&#MhnFF4#LZ`nXrZo@6yE$&jF~
z{~^BnWXFU*5{<l16`2(9>+#+0wpC>K6ySLzE{7mH=~srzO9_s?b$|UzZ`m(7V*+x(
zA;cz4jH`OGy6ds{MGM1+H%L7*ivO^LUkHNvvuyUUj4UUtG$Ecy?n`|zc%3afE^xPI
z#tEoA{5s|qee0vPKn3C)$-gEq3_CCFM*Z4D{_j*wARuNTN+L~H3uow4W?N~C*I~5W
zG&OjBsVyQd5|HgS$SJ)9-Vob42xj_TQiTrPlb$YlIA<IZ{M|if-7S{frBJHU$SiWX
zPgGN<#=qR?C)j&7#443%;>i2`xS-~0|4dmr%_fXv>6u^R4|esk=#PkPt$LtXkdNcW
zQKNE$f^3`SgS=S=5Ju}Sg~2Ch>_^1+4;>hMah4U4#KcpfFBn>ZAx$(B4`PPuIU<NX
z*~%GJz)=@*fIz;@HDFPle&M><bsstsd}0OIyBPdP(Ti&QB>mW}R*J&3e3lnc`9yS^
zR7#usr@j&9Gp970>9!QL@^_uK9|^bG<Ue$mG~dRqC@ObxN+u>@oT_*FnA)sPfB$J&
zhr#niGRF{NmrP4Ez0dYSsy<M>#BFB8SmvX98FiKyqu{D=gd@Sm{PPrZ_L*LiHBr1@
zf|r((FH`|&Yu<q$&V59FZKXu81p3CQ02M)$`T7Vij3^Mt55!%7*(~U2%0kUA2+A5*
zhDyujbA)4l<UhLhB;ULrDkPGOAm>V&+Vz)KCt4|!VlPFOWs0Fs%S=`um+8v2v85l`
ziQ)P$5nv=hu_jmPK5M)L<vLc*VA6k4G3P(0r~l6<`J!4W$BnM0>|45O*r=C&7`u&v
z2J*H@LI5Iwfuo+(pT6To7Oja_f^#2LiZww97ghQD0{v?{pCb%r1Z22<s~{)3-=~j{
zjqCD?t=K43NEq;ZKKVM&KN!5e!j?6J@7_j~tW%O>fXROP_8@Pz6|%URF%Glazin&I
zs`V9bn~O5k<o4$3Ix8xqB&)y96NqDPJ{p*ZpX#*tKD&GdfSHEB1B-!)dU3BF^>W;Z
zi@lj)%@z)vbk#G*RJZB$TqzPLC@0Z-K}SHk&BCesAUNum7WLyIkzon5bzBjQ`PNs|
z$|1Joj#FxTaLGuUAH4p9FZyA#^}?2E>iQ+Y;IJhIc11vLOer}DtXBA=j$a!r`N}`o
zCr2V;5>MD16uj$8)>-_Xtpu8mZx}+BA;Gh+d9Ek+2PnrWQ_#8@IBWZz5j1=joj_Fz
zV%!*moP;t2JQa`mY0m_w@32p0NXaRZ1W0179PnFunHQJa0YxG?!)Qp>8AJWVAalyk
zog#VnHa$n4M=Ok}!F^28Bfgac#K9pT5+b)l2ARdXyePY2TBH%{{i(ooecVfgoP`RW
zqyrETPEnuqG$%f0WvtyWI3gM9iR%1k^<mrm;tkCL>SjKwtM2z_|8M}@SXlC592hLj
zJLc+LxBBD6MICu3k#`F-oitCc`A=*@jx{MzLoV*h@eZl}eR}a7vD^Avk?a*4kCCmJ
zL2gFd2lQ97z0_}MNo`HWgi-Hr(Lc<xB<FmFRU?yFzX%iY;w-#DpXQ3B2nxZLo9CP^
zE%#Rp!5mOc>w-WX8~2<;S~xV1MQkULGev-7b}%;H*6E^LK#5>OoZTg?;F+q+#rpg9
z!U`_M1O{?95fW-dEc8*0x~8)g!K7wUQziC919O|K{@NIPQX4&erY&M67;{b*K@@N$
zMCIJjF8I6Ama*c%B9xEvOHa$-gWgXME-s2L>}t=@7BoiboRcXkeroVaY4o>8IeA0f
z1c{&76$>s5Vuwe9m<hH%2h1~tM4uYug$PdS89aZke_>M*l}y#XBKY7-TSSHL%dZ$a
zR+uUxUNjOwSeU&==@-Vt+>>dIDQe?@Ja^P=X)0@O@X4NV^8k*X5Ha!LQRAK!J11EA
zYxMD>ZOeWYcHWS%vu>Oj6n|wKGIUH>b-Ao*Ap-#6wKDi=cJz|=9fWEdohvF63F`FV
zCBfx)c?qomE1)#V6TtW!{zCAdc0yez#^->Vap1YIEhN|L=D46{kT(VgmzFn_amJCq
zh!OYjgTd}oqNUm=jj{+CvGHLhQtk4C;Xm1p&)=c{qCRgbhKyP<DERVwJ6Qak;>lKN
ziv^RaF6$NyyUJQH+@P{u2~%oof!ZFLpjTH#Er%tEMt!jaSp+yh64l3N1#5P69J$yo
zEr|>JbtgIIkI&O5{uRCHDR2z^pmMWe(u`y=c79xK+HH!;sEe`H!KPq8lGTpNqTW`5
zx^Zo=^Kx4{Og4R^zjAR|;eg1zMW1%Cy;D*;tgo+ehEJD;wQh6JFg50{S+?d_zY1&d
zQKq6Anin1|43$4U7j*lVeKb7^FXQxy5-ro$n;GkUpPUDM08rcXL@C<1c0({S%{F9c
z$RaPVof;`wCfD&KwQ0Pr_{Z1vvgJx`ohT`<m#kKg*RMO)02<>xvDj-0DJQFp8eMmw
z<r5eor6q)oO~w|44NGrAiO&B?DoY5_yYuB(TZ`i&HIW<Un?v*+e^|M|gdD+J<hqrV
z1X1DquKKZ5sdOTfHUuNYtr?(w;~x*+J=Jb88DURcjS9qKteUM~nducI$$s7x!)j!Z
zuAHhz-LrqIk!x4iTK(M(UfRzA+W^YrBN%*x?r^t%YDtx)!RLMG)g5>1TkiD|Va$!(
z2?aHH;TF9!Do%>l(a)ym;gPufI(^eUzEzF{7+f<h1xf1cn{>Ooyl_P6q|ynJb%;U3
zEiP5%KBTXk?^U%MRtsnlG5dp5_oG8S-xu~aac2OiOj7qfsB3TX4aHSueT#5!%05`A
z4}aLd(jHXap@|%0bMAvWdYP9?I+^GSv<OJ5C${LL9`T2RGqvTw5-C2^A+PFlmsu%^
zf{_Gu!Lv*ij(M`!Y>CfZy5j>)iDA}*frRzmX}8||pw0ZE^-#=Pa-qsewUczh1;6R~
zfBTHFtolmuw+Q%_<9^q@uJnTJS_|v~9l%#Ke4_`?@ATVxDiHw*ok%i#J*j}em6OyF
zdv%AZPOI|U?;1`*CK^JB>&Z)DRs3+AIb^WUbu6LV;y$98<Sj>iucyxN?~>zKTCsR3
zWwBFlav7ey%OR5GRdjsZ7kW^weH9Xi+8RZ2tW5<bx+zcHrpq__0f`J6R1(fk<Han<
z-@efAO!Ggn2X^x-DKFyOjQvz!HO9Y)%67Jbp$s_{pFY)d7x{s8eHc;E==+d}Z9V#P
z{nY&}ej$lT@(FC+ZM*dBbM2F%N%P=B(g?Ul<{V^xTI4v=Br8m4u{Z{hu{Ni-GtVyc
zGGC&NibtHr(+@Tq?zSQZ#ePrU2<5p92}#b|bY_@5C^%cka>RuPISTHhT{<Hivg`(*
zKM43cL*4$f&N`>r+)g2(z-6YRF<4}6%&Ql6TKR-s75y5fq32mj3{#SNdzW7Ss2v1W
z#o*e8>M3G+uq>FQ@}tak1%6q;w^-I7Yf0#8fB0Q*yxlK~Vp&Q;qs0?BQ%?O{r_A@m
z>ZhISAg2c(0x)XQTl%x7{lu1(RZVGNryxsUO||(_&sl66OXekOE#k)n;h&zNmb{=l
zU*=OU^Kht&o|f;(P-P$KLE&^erZ*HLLV>yFexnb#$L<Oy6U)#pGYo0UL#3(G_U82a
z{gfe`D2^EViZET>8)Y7ILMF|w)1g$JjO+o-x=-KJx%c^R$@0VQ^O)Ht5asUF>u>jI
z($1a@e@OqRX|1l^sk??hDXyrj9RoJa$}-iH@9IpK%WC%$P&b#|D=y{<Z|m)I-J|;v
zp`id91!EJ0r{Rr>`h%x!mSiCk+-mTBH%tt@OQ;GqKvA78-4r+H&33jDNfRRufxYGH
zOk0O}qkT5O;3|upOv1a6t{%Hc&)#g?No8Ohs#M&pU`26h!|K0zY%snscIP4ps(CdZ
z0(4J$h3Km>`n1h)D_?V!`y|?n&QB-vFj4itI=HiIOvH*~YO6yVFO555*~DOMl$UZA
zz~v@h9q!x->V%r$xmYg?ZA%d{e+#As4;*5J7@l_1Iobw=kfr#2XWg$p=B|2c90{2=
z6>?JL4z=-YtuKm6onq^sf@YEOWSA>*Hz(sD9rQiQr;WbwvY6Rv9i<3lj>N`rnGvdi
z01G@`%9+9S=f+-kHcu!}1rnZSIVJ;3%~X8{1tSaW2q6+p%x;y@lMC9)yx{zSp{!I2
zxr!iFZ5|p-9peQ)zsrR&<*6JBBZAFg%YKYI!%kOd+V0fgnF+otIRr-K?^tU0We1lJ
z^M7|V+D^sVccNa`UJyK4?xu1OtB6QVX*JgpDG)n1L0{U@7b+})7`h6CvD81~26uRY
zuK!QWvD81q0>rN=_YMjUC#eZapD{y5OnAvqs`e_S3NrFkm(J##d`nT)?9YSMvz<(R
z|JHvlQuiHhW@p(y_iOMm;3BF?L>*|(7}EOZ#cFnE^XooO8K`E)nZw;Xffr1StT#0;
z#;kC~MRLLROBtgAN{(!dHHogYNJyNPoUi`wX}Y@KHtTh+DvvWm3R-u=7k83R7sUpk
zhXmV-34DIO>K1E`D{S3j|9?&>R_QV3MECr#GpU2samHkfvV_E3scp>$xCG&itZ{WB
zaIV_o9})nmSNZTeH`JILziQbaPdzZ!+~gXBJoW|Zmb(o)s1@&5iTb_D9O#M~WZ|3?
zYPbMiJ9`1mP0Cg4=9nFh*<W;ot4Tr)nENM~UtQq@auuWzy-6Oao~<>nWVe3DDD`Hg
zIl%oo?9Whj-W+qUD@$O#j1(rJd<9HRd6~uPj<M#Y<^@eEfYg!JBqbh-)pXu{ihW7=
zv?4WQuDQ}Ztwg%x4D`Irf$Fac^9?RU7_+Sr+PkufU~F|GhgE(?mJ~Yp?c`P+&Y<w`
zSTiiM)t{4ws{d4(+SUailKQHj$D3c>uLlb$ZpB!Tob@U%W3(DL&h&95IEtmF_mrw}
zz!~x>5%j}kv&oh6Xc|_=?~`$6t}9b9w6el-9e^s6!Of-C&`Xz_-LCY3ghqY25awdM
z+1>J4y=$ZlT^=l%S5%w39DSP~E9Uf{IcDaq_Up218yM9HO<I0RwmPobEOHYF;I2{*
z-@FXY@UbS|5x%)G9M65$7K`8_1%9%sqCw>+jZ~)8n1S}WzG}p%W>q7G%Fy^aAS2X6
zlg!PoXOU;_srwN$M?M8Brq`Q+ZpxYlCn-nG8E;;7E%1j~IJNrreDm$7*7KCBipHDk
zTF+DR2$fiA+IucLY#9pS*cusX#tJj@1^X1LB3y(e4r%>GW*oj_R?YB8c}};Ya?^&Y
zb1ye<Tw-Om=M}xDRPL$!k~1SeJx85dW0ohi>QQou+EHn`x>q-SQc97!x5}(>D<_)@
z7j|opt*Vy1@jNPhOsO#&9H(A!=~OZF)pwVg1KmV$epW?Rc|NKQ3i8xK`&x+xqVMvd
zZC_Px`kZV3h*@zl?Q<!J_vqcGaBiy(ri@V4<IHWYCxAo-lQF{Msqa#(Mpl>vSB0by
z8eO|y_|So>XT6DYW6YwL%m79$bDFOO(|ox@OZ!!wIVkdwP>Zx!SK;c+R-^7QkGaYz
zz6j4ywSByq;YOmM0+xg?;haX{q?M>+OU*PQ0L+vB@d)+bD)XxQakH`Rt8N`<R=W=S
zpO&Z<6U-i>C82VVg{@TLeDlu2=704|bCkM%iuuFo3;1rvj+JeepH!&&SD1n^&0188
z8OMm^F~?_BnT3&&J)Vq5^4A4?#@LQf84c#YZnw28dNWYHJ;oeQfQOD@2HU~Sr>M@P
zQd3cC|LQ-XSUou2G`IyvM7osIy{?gU)LT$D6^-sHCIdC^0`rs`sHQ<l8mtD6H{Upg
z6aG0r1t?UdiT9;vuseH~!DJ(R-t?MkQ)T9Mce>;XbWLio<TIIT$C<yV(G`wmGo3wH
z&Wl_WA;)F`Z1KXCG!SjGtin7GMZTTA0AAVBizx@N^m=o3to_KaOL_b@dYtL(cF^n9
z6}{o*s-uv1r0~IMuJD1FhTIKh+>=MCZk6UxH{VXdG|fqg>QHGGxq0^kIaoa~!Bm4J
zkj^wyulec#N(VXh3e{pn+sO(0>K{!XThV)b18R^nFh{*NffRN7oFV|da`z$8Ks|MX
znR$@?t6%Dg#cJ_fGw`m+D<M-Cb(^0yTD?<aGTZ_lUfRG?Z>ZwbC*UTlCVjY+>^kRU
z%kIhAsF?;!Ho-)7(MtVrpH4R~vauOYMgms1YLak!<5$U8uD>7H>2mo&K52N4^$j*s
z^0@ENpZ9bmYXpj9;aV?`5JJLax?I0Kz%_$CmK;<9dpwUCDUa(JC0^h-m?CC5?gQL$
z(NE}{R8QMY<)Ko*u%tTBIuq0L^HutjTHo46t||p+fe^#}z%}~vQZFQKV9TmH1&k}7
zgt^N<(5o{#4SUFbY+l7wqAdhXA*z6&W3j$H!&8`xjn)|0o22xb>(U9U^mRr4(M{u*
zp{{*Q$0T}!a;W&R_2q_0hw!ZoUZuC6yH6{U;x?|-PldGR_C1y2YnGP*wm5saK5m3>
zMjnR^eIde8aPd-oYuFEv<J2k_K1d;dK~8?`YF#_jH??=3JgTJ;D6xYiEICV;=zLe;
zmhhfX23e;$gFsyQ$VW6)-J+RmZs7LDiv=HYC*gif*r6|W+(|43`*;htl6#DhL=mM=
zQ3u_lKRnrU?`6?LhX{Ztk14wS4*mV%o?K9P-Xke{31A-5RIl}V&q<x$TxjQKaD#xf
zIUnH>#3@s<UO$rV*9C!xQWh~a7(@#6==;_By)-YC_)lIV6|m(642;krO<tyFg!9X1
z*H;G4Q7rWKkbJ6yrTU8$H<9@QhhhUd-x@yROm+Eky*b{|4a#yR^+C2LW6n*yA0yh&
zjd{KwwTL$g3ePn4-3p!A-M8gF4HcivG@%bQ@DWYLFd1+g$oJ&eku{q@Y)M`6k}f^Y
zui1U}OR9=mr|%EH+`%*}u)%EK64VEe>8l3&zLBiziV4E5!)W)}pdZt|U)D<|N#v|t
zU`d0X(0^C?b;MR`S;QLvN6aGqpey1{&$(a7rJSg40vI=S#*=zvxP|fX61^3A@`z`I
zt;mL2wM8c-`p*hC6yfJ7EA$cJhRUw3te8l!TlNJ7iI(Y&k;R|y!q$NVcv*L8?5S^8
z=^iKh#Urr?=0CDCBuLVEnZ^u^40XQ>**9)=q;s9WVVOQG*AEl-Ih<tpKrLVO(x-IM
z;eM3*S2x%>qC?3zhp$+s?~kmRmYlA5&U-G?^}QXZt5tv&-#&%o3L{&_2{`Qg&*=?e
zg@VDQQz)nqSykj0^0BKUdJ?@$2~`FW&Ek5^7ZX{oU#oL_yD!eiQG=6#u!c}_a__(S
zT0KVljb_o=R*Oi(Bz5#Uy&>FZ*k|<+R+6C@jtGi22j<OeKU^i1RKmecAv!o+y}DeN
zjr4;ho_4GD;Rt1a-#Sa*5IGZ25O%GLTQyyRYopicw~qJS%`J_PDH2Iw54C$-4?4k(
zGE+;8+~zyM0?W=!TceYY^s<tMGDz;Y`4hTM&mfL+*kk&*L%kFPgxfpFfIAI%T;CVA
zwD48Ri80O`)Y2Mv%uQ?b$6b7D>!8B|vMY)_GQCc3ImNH2eRW2vx__yDG@So%5u>Ib
zeN2Du^gCXj!QfA-raAmDPEy=f0Emh&jy?ZZ>SqZ#r=b5ukfQ2pgU2rtftWl*z{)Ur
z<ajSi8m+EKF{=->egY!Fj?PncJkk7er2SiNEh_|r;qVj9_lMiRjHs)fRv}>swfO{7
zaaiP6fIx)LuP8lBozc@I|6?m^5`?R;->qs-Fq2#vhvF&#2NdFYKEd32kZbG<CgiB<
zZf1H$oYX|;PKBC;J21)C#@?n+zr&IMB8p&?k>DIJ*{;_+iJ(fFl?Y+-zhA7gPVr}G
zr0NlCO#&<rJ)#c}D~t529Ww?kBDSjRAdHi&b$WNWg9`2G%V<ecI2V@a@tJl71CkII
zv`sJ(L`stSATTi-JgT9IX3j^2fH#1jIr2DjSqNK!j2^1TM9^@sV#Jv@SH-=OW{VrR
z@Is5{r>XPe&9LzKa!!tsFBaGY8hxiR<xlvRJExmlbie^9)qaF|=^-y|@z`Y5#h7ct
z$D*bt0q5nR{8Rn&&0YWVz>j8eDtwM?%kTP{%=hd=MO#M-s3c3hv|BouW#4<CZ!Rm<
zA!Jk4H(%-H7|sB&7(PJ{RZ5@(SVEHe@mMo#o$q3E!g<6j;zPTe0qdQ(1$$<Ky5cwe
zMI>~P6NwGMDpV$w9whFv<RtT8h&9Ou7m7;+lOG`pZOBpP<yGzz@_<PYn8!^o0kId_
znm1~l55INg?+n#7#&ouozvY01go%SUg@Cd;=nFk&lZPr}o{GI~MX-E)qDQaxqG2_q
z<>L4S{4DCC@*6$!HxGX9%V-JqMsmb()e1a1O{IRNhkfdQ;o{W8tLnuD=LwwnvwzV?
zwCNNV<uKB)?qJ*oqM8I0$Mml`&CEW*gW~d`jPa1>WE7UFXls%`@Uum?-I@ln4L;z2
zU-j>Adn}bT-kL$Mg@dlTgZcM|zOl6=>TR5ex=*aiJ35-lzs7yl&UMUFln8h`UFEkk
zlO1@QQH08d7)gD=nM89wD~;_v>}2!NdvO-7MfCtW7C1^i*)d=z2DCQ=R@fcG13dHy
z5nK5DDD%NmFA|y$IcKP@m!QVRnImqFI}+YT8Wlja03NHNx?F0BGg#m#)F*H2PY>}%
zgjjtMPIVcMnn(432&cOAs9{_sUi?Y*=*UDe-I7)IHr+PKx9!V`fQ5oqp%%M(<tg2@
zj~9)AT01gMNpcf-V2f@z!U^*g*hA4O{!oT9N6lTU<07XVNN@{ocF4s9s72I>mvzxm
z{?X0VAQnp3hxMvnUJW*vvB-NY(UU{jzV>Z`YP(FgciN7@@&~9t(4~w@>O*>E<jRq+
zh6-HB9?WSd*~Z89iM{+eH>_G<RgsoJSkl$S@9E{ee4m?-vh-`EzULHg<%HSI%nqmT
zob5V4u6aArBK5LlKu}O%>1Dn5L@yqMpDDE0Q@B6&UZU>_Z%8F1yH!MLMkRo3Q6Ijb
zyNAP=H3<)fcpYU6G6Oqy>4$gtEl7zaZqqIw0unAL2M;#SFP2gkRwKY#0SGP;B?;s4
zC;Eq{{KkjT)1L-JS+QQWA8P8p_xppRO=?=Qf;sG8`cr>*onNO`^-6X5#AHa#)T;-X
z?N9hU*BAVft<*x+17o-QU^8Z#M^l0wu}UIEDn|yL%z$g{6Vbhc#x+P;UWrOlhfS^N
zWCpG9%6Dk(B*I}<F9UL~>t#-T*^6W=1OzwaUPjt*g1SG(baf5g3W@NRfHuIK|Fe@B
zevcm&`wdq03ZOVc9gT|?_o2h$7Q%E|N(nZ9uNHvYssqg*A$r&yh?Y4swD`%dSHE^P
zU*R)yPqEcZ9kVWwT>$2fbumwc??9nW!L%o(f%^#6Xfo8MPUa;-0j{yL(<}^w4zkjo
z?`%GecV`vIhx$r%h!4XiCZS{gy<4A|+i63*o%8<0xoab4q9lVPslVHpd%F9F_pPNq
zImii%HYQ4*rq=$UUuo}Ec3*O0%j^w5MS|g*|EG7_!YHzun(15N8bGrh^RAtHX3=UU
znZZmoEXMq6sXNJ9wV~2PdvjZ;X`3T#6Vx7M$|m{c!i@_jn&>j>%c@uR>gaH2o3-M`
ze$RpCm=Lm?%c)sk!P-m_g3R*2b?jY!&YOsAgsvTIXGinF9519osV!#7dPf7k5@(id
z@EW_Y0s~cckko~p6lV(l<<>1HKgIZn&?gF=LE^W%e1M;T7Oz6@1u>=}JfkD`<EB#&
zm(lhZllO+-L{y=G^cQbZavJ8#o4Mwq_6{b@Eeq>KI2%g1%McObSmgG-?oiWnhi}|s
zhEmkG?adwgm9ZmU>}ZPJ>@l-_A?4u;ET_GFY`RK~GD|=4k1eVw2lp;pp3~!_gUpFx
z!(mgTSRt21jIej2%)r0A2FYs}Glu0Iey5}>PWVTk^^^U<FyUvDiZZzsqy!05SULyd
z`W||tw!CSi6BIX)7(sThluS-lJ#G$u9oex@r|4aX<P?Ptg&c>L3G7nGAVF1M9Hi#?
zpUOSCehkhb%5Bj1AIgKPZ}PINYT%tfi>VDsOEkzy7Y8u|ofM||3aTH&pss+bGe<+Z
z=<A|89R3Cv#3GfCi6Ed#kb8Xhm!Ae{U&j3KY?MH``!&>w!h(<lo9_3YgPm1zUH`+r
zY%XE+yZsiNGSN%28vv$IzJ;=TnQGzhL0z4f^e=6ckfYN@Npvz%ne9RO#JE`ZOzWb`
z0aV3-#A><Vo#33IUS^r+8wFC1SM2p2!Kj05u`7B4Hm9!IvU8z(zyW^wZgBmvUYHFr
zvXBnB`y9Fp$Hd?71vBIP54g`oIKz1~7U5T)2hS&ZVKJ9If>88FN?`Q-Ht0Fkehc7Y
z2YAFG2mCt~_spMn1;6EcnljkEP-^u}sN+<OuDfmxx|P{q&}kMFu17v66?fH7&j$aG
zukQ}8s(9XC5HOS^bP@F4yL+f2l3qZ8G!oJXNlXAmy(A$7LK0JG0-|8Uf?xqD76hdC
zA|QgGl#et)ic~2o0-}O~favd?*}EqNzrQEXlRtLu?%A_v%j`Qd?+jbwJ2agK7I$7|
znIKPgOqMY5-q)^U`SviB!VE)R8cZ&6eUB@q%!uw7-5{}GpKIelmcyq4*Vt$vyA|k3
z;U9pz$On(eNlxQgkv<ULsF-{%z+KU{o*eQ5OW-|Bszhp`8#d2Sz!HcDY2|wAdG9ZN
zf%6CwtimnSonMH0A=tnt2T4biX)z)jK_u`u0I#l}7?CDxG$I#ix-r`(aeo-7TdBXF
z@LkU78Ao6u<D!Jnk#KQ4+A-(J22>tbHUzc<Tt1L%#9w^b+2Nnh<%w>@Lcur%?oN^c
z4fE;Za1CNv1oFP-^`|;?YTk@-WcJ{43K=5%cfm+*54-E54?E`Ouq?gM?TT~{0$>3Z
zFkHmMI`%%!0wm+HJBCRV>3H%9F2|xQWY0!aKo*?Y-5vhAC3*^nyg`6H`dW-*Znl0z
zaoHf8hlMV7F@_YAeOeU46<LZDF$7nRq+X-FaSuE05Az5(s0hWlw$+Gr)KBH&?&vJ7
zdb~WYN)JUjo_U(fQ(z-;yC{wc@F$DmdNS}~N7n)tN92}yE=y<-r@^nWj!(i_5``%M
z$1*erC8d*NsUH7IuNf$&c6VIX{f%-1yQlUE@&6#!G5pTo6ZLVdW3hhwio*ic@vH8R
zmRX+XqD%Y{q4-5~bsX={#TCXK)9$Ni$6`J172Cnon%Ld(v70MY6yO#1b$5JvM@zV1
zy&LV=)z9<b3SSTbZ84572C$&wTmX_#J{KxJ0uGQPV;%AO9V&L#UySSSIP)Kq1PW4&
z<F+2X2+U88e8hNTkB#i?_^9t4Z-HaC{4FXy8;V-2BUeAWkGqU6=Wy!`6I;R@qoVF?
zCro_T-SM0r4chq%^myalehhK=J$6S0xE|$qcf4)B&yX^j7a=%6mUVY5*X_qav%y@Z
za;(?x-5q;kxS5J;FR04eGphpDlk)efG{L~DV-L}za69Dr9fAqmvYTVSS;XLtzy#01
zk&VfRW1(%VW4`{Ph+KnLCe0-Pbz)1T<9vDp()lVO!a-vBQrSPy+~IJ2ck}TN$K7C|
z7R%ZiEClEmho$5>`vD~5GcDfYy4}?$?6o?ly8|&qH-_j4evb+dc1Gy_iH%%`pY+*Z
zv(9P6ZSmQrBkcnHDXcbQq-)_bKKpMls+foi9*kSKoa62iHp=y8DdUZ3oJrWVgK}UX
z9Pq@WpE(yF^y&Gq7om}4JS}(W!x{C&0N1^7><5Or>23sxBhNU;hr&|~aRlMuD{{sj
z;`;c7R$EdCc+^P?@C@9over6_kNy9Cg9&+NwR7QjrXQ6D2xn~Om#&t2fQYQzxB=pH
z01p3VSM|`bdgC6iO`hnG8U8zjLqqvoG+i$I+~>It{C*Xj<NSqhnCoN#JHf&AABZ&I
zG(&L`K;FKuzVB)`+@zl-zwrUcACAL}@?nD=dzLHtX_F5dQCN&2A!`-3j^VRiUw%|O
zGmhi`(~+9JbOfYy!6h0}{03;(kIP&mcXHGQ9^QvwZ5;#)YJvbfUAPy!K3-|$RM8%G
z$gwfD{LuB<g4$DK`5BoEqlE`T9}#nZa*ckZ_B)~VD1sgHz@6veu7JWEC??Hzj2UmD
z*c0*w=HyX$JMQDVKX3$0HG(+s1`l>~<U84HUv!+`WJDFRiBViU)bl4DZ>%!X6gOh#
zs70Vvd4-N?dyN1#2v9j71D_u#ogH<*Hswif!unYR2jX#a98b?Qq7(!}A?Fp-?SzEl
z<f{9b<6u7{O>hq^%P-^J<I;a-uA}1=Bg%9`L2!dO196#%r`YItKi!Dv#qv=PGH7R_
z&00qnw=FYW^cPo0IBM>;%PZCaQOl=}i{-t@al?@T55mdbz0~o(eqU@15s33Ld7Avm
zH1ftG`A(EEsa1q`a5lZW&_=+K<uAugsp2qMV7-J{1^dvIS7mrRwyDA}n+d{^{yOtK
zc1YBowoSgD#@TQng;7|erpQW!R1jatg}qn=gDv3?gY~L}H5Ll}eecQMEsT*U1-Lrq
zsK<T+H8NN%n<l?&ZY=!K<X}%GH3Z%fgafr~^SAPkhYf_o_LUTPHI@v<_Duji=0>A!
zvYl<_qdPF&t8G_gG8clK<V(3L$k=W*dZ2A0Bu2367CEtt5obdAa6^BFK@h=-KP{B&
zyBZ^v@r&iYg^9i2%3dDS3V2uHFgKlK;Nb;z_G($jW6Oo57ic1oB}_p$&C(A5C$w25
z|93wdg(xdUApmOJ?ZOCU7hlQIzxgUK2x2&)R%y!@l-E%4?<yH?+tfU^b4^Q3z5t=(
z*-z!IV)OYKAuab;#@k>+xVT2P?qz-fHWl)Xg7F%fRENc~xoy0r&yV{D?zc!g0Z4d(
zJQu3R07k&F>}(gK$v}$%n{;0#oB0~^7Joppdtox(vsMnh#|VfjQZwfQzK6!wdc7Rn
z%m}*^z)9FBDnj=;xkCO_-^fyJ?|&HT!o}_t^2H`bR@u@PD2A?)+Z!682F4?7suHw~
z8_%1o<>ww#ULRayi#Ww#d2TMuIh=B8k8Brg<{Zx!5BoD2C&NVWYFRMI3?ke|Y?vC-
zK(X{w*}6bWVN^vj8XS>$XBc~uHp%7sn;Xvtdm)7eVN;c#$>%(B^i4k!T0J;S@Lb&T
z{8!0cIp(=^G~<@bq|^}O+dhP0d(wz`cJwOq7<<EU(D<yB-)9+dh1#CepV|l$2`l7y
zk9!NP<vb2B$Be}d^~6fqs<l11hS!4<7b0WET-mg#Nuo)|yRncGO5Sg^e7f8>!T1FM
z6KlUhUhp@H40bE+Fa)>xBP(SuTf?cijRC~FF<-Xqpetcz6=vsQa4F-F?<!f+PInI)
zlSX7c_@O^tF{ZANty0bF6L>ws<)IM3!Uz*-Yh-eU5d$d2J(ti0%zv!ALrY~Bk3S2R
zB)M_nQVHTpvV+4bpm2ihaND=pDmEfi>@KEK+eLDHNAr#hD&mXwACb>(Q)uAhOXOeO
z&4VkiSr<7)Fk*`?g6M9w6rMN0Dg^#ZptHx~4zO1&Stl3Tdk!`+5CW5x8AR728~pDs
zGdKxuV2i|%fZa1hxVFmi;b!Zr*m>;T4=#|KY@=y+goEl`7yB~!%XiCeerAmzq%qs0
zI#9Dvr4s%pXWC+di0Op`f}!mF@U=Yjkg0fw+Xtu<j(;N8v@t_wPYbNw;1x2`?@mFG
z2wN^s*@Im19kA$jERv(N3<np%0bm+(<7y8b8+u#2O|nt9`Ul7xh%6Qb?g5lsHI(8$
z=B<_wdo1%9ZV=NVMx1Wy;iA)2xz0W*p|rz1jpj)4`Rafilwk6{VaxL@186GYqQO4-
zdWw;ygZ0p@eSe^Jgo?5I<;9*X#IauS4Y2TTE|gBs+r>j|C#{!|1|U`b!o6DVYGpnw
zRFVQ5B-n3gF$as@Yh={ZW@>4-og$##kWyaWrK@B>jFGZ8o+};4v&YX13PILV`BS3)
zK|DsTsI-jip$KaU6y2xEqk07RjKYNsa47nOgub|azbpUs2>Sq&E&%NeS-nEBco(de
z4FdFJBf}Q7RdO3aqXgc|Rnlc|?c`cF5Zg1!036I+Egx!NZ$1cNWQ#;7xb{WSGWmh0
zTIHbw3UzgX+-6VUG#K`@{~I*l|E-jF+lwiM+*9(h@GN3JXunb}YGcMUGACPGDUh`>
zL_D-v4(Mza3-EC=0w6*U;T^P7!22(9q1^5{DPd0>0qSwG$&<4Hk|ZybMYj1Y(LKy#
zr-5r=xY#mZuC?n?K3+h~#<L8cxzQ5Y&_0|i?jHf7`vO^Df5u8PCqS%RD6f>y9CGg^
z=N_$HVPn9q`O#YWxo2Y_k2DZn=G*Q+AeIt;t(ITd^2`xgg9{N!jjDLnt)I%k*2bcj
z2~-B0XzVRX^9w5Rm^HFxUz$GUez!%ip;3Zj@ok<O(UQGO(*S7Y!#OooG#;a5PcF0l
z#N$M9w#s^v3+Ytx#CXJu)A`Cr`}tNVjuD53sFRibs58XSLF&Brr)4e<c01NX8y}P*
z8Vppkv<I#2`x+;TW~!~8fDHo3J0RmB!2WC@+P|WzCv$HSVe_I)Ht~opLY&LTunfUF
zH=<w=xC-L@D|XQ1#TyVQMh{jo+M$^|>Y-gjvw_!atT>ggu2pr+56A=)gsP!mGCHSh
zcn8wekfkIC-sPbcBTY<*iW{7Kh%1Z>j}cP`n!plT(I&DXG)a74qTa9MRBqhI<Hb8g
zYMBmQDIe0nC}J2*(eW|%SBVuTv(@`g@Ec>oQNKjIUyN`*rJ@ILDS_LFCW#H{Eqte{
z8J@93GzTvSjG8~Fh_cn1G5l+Q<mG~7k=9>z8_9yiHgNgmxStMK5&seQqrIouGd>p1
z$xWuHDbwz3GFI%!R?ElMC)A@aF4(M4gE|U|?V%&i0X2MIYU4$+2<*pTuR-i0lH*)(
zrquLJ(E<vcVN(MPVSZxFCFg<KzQtOkl>tJiQ4t}5qR(;XUDfT1?mXlMLFgTz_)xLx
zobyO6BZ@)T5RMH<uw%aSy))!)BO$&%wk;Op8c(hfu;$fqy?o2(x5=iP?$R>2i@>)A
zpibTqXT5)YsHcFtHE1%B_S8`9xWM?Hbv+W`eKNB)PtPHsM~e?n7dhXnL$9)ncqBVI
ziFOy%%@?=;`LnZhT1GMVtg1Dh3o+Y?gb%SNht=JaxCr4WdDt|wggEn^YVbUlVMFYY
z-3DVAAD$u}*rSe5<>J)BvJnLo_k;QFhOCcxX`gy=fT!gGAno+VLVR{grBCKk{auIP
zx<v6i;uW`Q-nBl#=~0EHg}8fgAS$3oe2th+j(y1t-4Q(JCboLQphMvzdOXZ=ycdfq
zfzz;3cX9Z1VnJ*f!Q+I)!BbB(3Uyr6FmT24;0ooyeE_yGY>3l9KH})wjoXPT1jtUU
z;D+Mr<jBwDQh?QYSbkKFv#(9CW30yHkst@o)F_3XG$q)vH$k`I?q3MCauBx;2=jcn
zqmG8q)7*?1(gLLH?i8ymc7{8q>t_?Ps#(!U1oxiZogCvH<|ZKmnBJqr-5+}_o(KH6
zMu=nIqYX}H(4~_p5dwl>-xXyo<<=D6?9B+?2l0pJ%mW1=`q84DT$64@T5;xCFHjQ@
z?2_hkbF2|Z4J21RY-}0<AV4utOn1p|{LL@eO;oEzARmNR_1}%;>#cns-^3gj#BXVY
zbnJf`AScxF-SIMatCC}KKwuay=db$68gKbd9t{VwXpvetuow%~Qy(gGxS05ijDDZP
zl+$}dbpi<xMTH=Cm-G#<bk`3j4ev{3p}#nl?Am&og;2;~(+1!KTQBT1&)t;cb{eBB
zlt1@S@*Rd%FihNcTh88NL~te|AEH3=#(VLG?4|{{>}&Lr5k!z{QV{sP|C8gMF<Ca5
zhpe!Gy@Mf!f-`oP+)}DjZ6dukKp8hu*lWiqm~Ifg{O~FD^HMKLSAyoF3d`s!trfkH
zaNzu2N96C5IsGg^z(``+0sMy?HNb3F$?tzOJfTT&9A;XR5-|Pc5Wa@a3pGzp^JSLN
z%JyLBNinax24u3S7Wvy^;L!t<7Qsn?nqeX7{*lb+!)eiAXa;l$-x*Kpa$2?nTFEZ0
z+02Z(6;c|4N%b{(?;w-gjt7I?Bq*~B+?U>$hfBFp0JJgrx$wt<_5^6oJ5UXFdlNbf
zfgWMXn+ehYXkM5|)(~~7k@t?rSRM(tBp|Gm$25!reZFYzJ+5DEN}^s)zyfPHR@n_H
zt9RmVl8-IU4viFo5eJZ1z4u&w6MZ($<OuA_!Z7jnJFfQeMi`mL4nm}}1_o1v`>iRi
z&Yf6_hxR}m0P+vwfnnlnOQyN_fuN_s^35({&Puowh6IUuhgIAP=BI%vHyIPT6xwIr
zaH8^phgJ1OuIK+?Dlf9s!T?O53YlZ!VlJNi#&zsVrZdAr0RI%&=*Tw<PVGPj9_;S=
z?lWeA#9Kz>Bh9Z~L*Qb9^x5&Q9e0^Gfw==#Cr(R2(oj(}!If8orI=i}@eC{@Mi7J~
zK)LMopga`9xj*qxO!)qAm)9imfO25IbV=8aG4<B0Wa6T7I;T)EIooyUH)bdT=WkEW
zCj{^o*;A27a=O|O$2`1v9-^~LhG37S>5LCDWwUI)*Xw9ry>g8+mwg)$q#E2ugubm-
zKcy85w+lNwSndkTaKjJ>MyfAA)_Mc$d!|x_8hT1;Pl*yC#uTZa$5yQIbN0`L1r*%Y
zA2Dax+{Kik>c^!Oe$gLW$mP-w2!q3cAg+#4m*!WH;wpgB9i!BNWfe+IKVlK4Sl)Sk
zIQ~2oM-kQ>Jrfs{k`W+u5NAiIEBZwuh$uNWEK*!LrCxlA+e|G4r~xNn6hp;5sTMuW
z#nHuOoSsX6^7w!ValTa59Q<E0zbNt2P&Gm8<5lZLiQU6gwOp=eobcjdBM%y^c8)|y
z7=;UtfEJ}!5N0LzpC%_<%{TC@q>T%Q6@dhy#4k~AzkF?zZzO1bA%T*aHJEafU_XRx
z`4-u(&}^5P$VaZb4k56)_%CJrvqlJ2N{1QJMj9@1Hp!;t`z)g3aAoxe3=kxqTP?3n
zrdnj-XV)~)I~5>wK2oU0swaZ`q1~r~qXH~id6-OzV(d{h=U+Xp<;BV3?IUV;jRyAo
z%juBMv*F4~HL5ljN6}ecC}RB*Mg2``=+E3ll)DV!5hWlSWfkkaVE!qzt`6?94khj~
zsMtchbX3*#XF+-~MdTJEe&{>}o5qIq5v3E<JRRi;Cg{RkXxP2Qs3+AgrQAMiOt7eD
z)8!#JNyH3QU+E~mG$fuzARuL9jD=$O_1o%NKV7A;3|teQNfDeOoG+>ykFuod)59ag
z#0jdiURio_qRT^b%Ag1OrHXSy)hD1(#`v);rvt+6u%bDjn63`!QCO5{GDc02m420d
zKA)~vk)p#$6S=D!AH@55hwL&erYt-nSvd351RX$H>2;FD@kwfyzNeUHL(#18<XGGQ
zJN~Ac_VIkN|1(H6U5t1_WwhlE+84zX@x^qt;vFuGAb&lwtzj9DEl}@gb7_>js6!S=
zc!ZerhboNcr;w672(B0SL}}u=eARRm|Fr6IiWFtT)s(FI?5C1nh!CXGQqW(}{GWfH
zd~lEV?YT@U0$y8ioX{DEL~bqR<*$q&A{&Gm*oh#*F&^TQ_ituVW)BgI`vElvUM@7Z
zq?g)$%lo`{ozoCS(X1*RNg`OT)<2;R*6?YeMKrcFbs@rOb2~w8`o)_>NVx}Gla^;t
zI0c?e#|N+Hv!VnF9kqu;2(uSyx?z-ie~?=7qxZ@$`B8~(ppYcM@$}MQwdZ#uh{;Eg
z5(GgoE?m!1hmNrTkLdx3*aI;j>k-h2J<qE@FL`?&6;YN;R1By{A*I>z$}!RV)~DRR
zXm>7;A36wK_gJ3lc(2b<{Z<};9#2Czd}CF~TGNdvc;O%sH3q_8G)z{LZko4^!ai0C
zd`2H-=n3Ae|8r{TE$RtvAb{=-^GJsHpRc+<j$>PF&!O-P@t36@Pvz3`ABU!iHyWu`
zJ@k(U;>N`nxg-Q}`?XfJ!M#z@{RmTcqf}FLDdWc4_9E8*BjY;pZ*2fFF(g6U*Gv^B
zb1}jx>60Xfq=?1U)oVUnSl$h+=e@ovKDN?taeNNGTXkrt3n?52LAoM2C{w&^sW$g>
zaS|?sbSEs!b&JGca5>zkO7%P1ZyuH*7CO|1NBQ@$Ce|lb__a`l;amv)6b>G&DJF&{
zi+PRJvUv8eipnGPoo_#3;;n9uBPr&JW4kNCb8kkhW0ZCjNi2iwpmy;<B(azg<!Dgk
zxo0785?4iPi{kS7M>)>s-Pu+^B`1$u<KqLmNZZGUossDB2<<~mi*{THv73pYvkc76
zkion-vxlRbzHsWh7}tS$-6zh``w^~#ut`G5@pBk*%Ay>h!CagOA5(s3+$-BfI5M>J
z3c~QPtjIG`zXUw*!@D?~eYi>n0`$m5i=TnJN3ZUVpEBV_5`&uoWo<x&5&SiPDel`P
zXU(Wr{0CenV-W1(;RFqX9x7%mmC29Q8(*_7i4bG~XCG7|y!@Y~^4+Iw315rQ8U$y)
zme(iLJEN;0AEOHi=*zNE3t1dQ(|2Y6Ax3CCXxZkDR^j1XZ<A~`&a?_H<+2foIi_yH
zxbprkdCw=Nn;s8#NU-MSACzTdO{>U)T`(9khn@)M#9!Z)UQe19Ss6k(>g=B)zfR_I
z+&fZmRF=RO$Kz=NN?E*n^#^2ut8VIE&PrWjHip600~_0LdFpuG+~IXkC#BPXmXsDF
zik+??fnwS)6&+A_%><Ugy_|J25`~J(BUMNsi||;TRxi#yjIK&S*sFe@Apd<_UwI;+
z*OT5({u#I#c74s2aIp5WZFODPsM89{a$OWhgs~B2KRH0(;)07m6l(+;^Mw#cu6TUB
zbJS{I7pylrCpxyNVwiG4O@SR+>~c8eeqR@qWp?c$w^cFe73a)BC=0;Gg>aj)V&efS
zdOzm8?<-#yfEV6iw9QNSWjUYi=Szwims0pO^ap5Xa8Lm0(_z{DMZRs~2Qfo%56vqB
zIu0sgfbP3w+>1sziy#Dy6fknv7`0CZzs|MbT|*#)hr9@c!vJQk@0W)izUM(;4K)&a
zY=2ysv}yu95_j@#$6PUsjUJhRm!<d~sC*&f<*(!qBl(HMkcoB&!cqk$U|=EP;%F0j
z<71!J&olI3r-~smJU=lQiQ>b3U9z^mQ{x58t#Qy$!^GX&WbrCC)03+e_9l-b2Ar&6
zaQk?f>-fENEuuZUX9*phA`uiPH`=Lw#lGY~9S>y>lOJ}LKc95{u)OY1U{Fo2?DC8e
zyWUui^<|f5RAI+Ua+3}aXD7Ov>AN?1DnX6HrHwW_+-b3|%zR31(sx=&nK5((-GecI
ze;J}4^)mNhLR+*t4*q=@C~lRhy75McoJk%B5D0NkR)f{{&U{Zsn^8z#MzPOmpajnZ
zYowU=n3^Bq-3a$+$W!3uk;OFA=ny{8Z-Z6VLtGj2pPUP5jvKUqyvHUElJ$phvUAj?
zPeH07`b;q_yPaxkJ@2#K>Yh#m$m1@`!{$Q%I*8cEzWYQ+RcCqKjSE<+*$N<`QSgpX
zU3%BcX~+`X>`4tl${s(l?_uS5h6Q+7ntLcwu2DaccR4{l9Om8a34V$0g@oN=+;B)-
zEK+NfJv0@pog@ZfZLW&;Wih62I_kmmkCIw|6X08Ubgkj`ESKO@xc19uR^KTBI`G+k
zIenRtL>3OC0}(!Bl*9&*8QwW(hkRkB`9Xz7kx%A;EVUaYAAQ<O;2DSs`@%PJz2*@`
z`ecn;r@@v;jZ=<bSoNHf<hl=Zj$lH=89;!DUgP}hGUHPtio=jWb%O*-XW&e^Wxe+=
zNt_@$wXDSOP6xpEiL!*eGRIU)a@*HGR0W>lH%+eE<~>PQ&B!YToC7QkGPp_)e^Y+4
z($q|W4@HT-$)Ts1E)mbkM`zknB-<&$<<VHS&;Sn6!LQ1Tn@xIZ09pkj^^O546uLgI
z%f}X)24J2>lmx>}Bn=b2CdmWkQk=G&MH#~|_C<O7EmMu`7Ub2AI^;_ChK$~2o=4sn
zbY=#Cs!v$c<fog=2qht|2@K64{=wLtcF&UQwirnyu0>P>6Cn9L=~%<%06BnE<l_&i
zeGpM2E@#Q1?|ZdKV~@Nju+jkR12zKoJ1~Cqk((Bfj5Zz4$tMy+B1EgUs+HEbD#p<!
z;rgNd*LjO7Eu}3g!N0F)pRGPVuN69=d4yRdhC~YI1L~WnxYSnWf|A4}m#Y3aml6RD
z)@-&m=q3iGiP{e+skPIdrtu7M+O2wl6OJ}TMEe6L2H8%8$jeo&u5xMlu9NJaE^ahY
z9YeW1ArH(2Oq87rx~-c{)#8VAE2ilrF@1o#e1Quw#)a4r2czvIF|wbke~F9jj)%mE
z@1$CtsefEaYfTitv`~GZC)0hkqFpLc$Q<>AzN_hbC~V0v;E4Gp>RU~3m0So*a0kQ<
z=__WDW~##d7SF@|*26xhD-XyAZjALTlHXLLCh!f=&J-IL9xvt$P$x7yTRiTHZ2F>R
zfDpCRtW3HY96Q6Q6EBWXA87`nN}Wy>Z)B_HBe;3Qyu+4;J9$Vdku~Le%zzc&F<u1b
zsP&`y=jN6R4!LJ%s4q3^m44`dQLF_<3fEI=N1T2X_HJ#e4NMe+2dU!l`ear}fwvNA
zXaRxY@TYCpM*cX=_a<<Eh+rwt8rYu*F<^6mt>m8vWbObXj3J&BT27E*_nzNM=09O%
znZUhlive!OVp?<ArYV~f&}<Bh(z;ay*#wCx+47BHzCnBLZk?P)a1%SzijVs!pN|_*
z5kk-g=uILrC`F|9RySsIIgDh?+#BhaB6?@2Y433<Wv4X1PNrXf`2m-+e(ULzSQnwn
zvbY%58+N7=JA11ZQ@Mzo=u8W#;=N4u#&j+Rr$s(nN`;8&ttNb;o5i7{3nPP4#o|mg
zZbk!INBm8o+`$=)Tq{dNVnCXhQcu--lBaj(2zC<^$-qheuAwIV%47@`Zib0sSyR<T
zlS3NZE*U(7D=$gcUjA|U)eyyw2I{34ZrLVJPXOgw?J(777Z<Zm2+bIA+rTsv10lOh
zh3c&%4VMh;@X4VW;&LtZzjNF?{J638(B=bNvf6O<>>^)svDODR5<NhhpSWFiK1GQh
z3Ssa}a+j7MYcTLlgi3b+^E4deK5`9N*O5j8M3LBfG0hXhV~O>0RwQ@I-htA@+-$W@
zZxiM36&@vS_^Rvrz3gqmKT&K^D)<TB3`oc7fb~73KaNz`yTf9{#&N1`V|&6^6#Au$
zqc5p1ny^qWntb5HLOk=bipb#72mtUnBd|MQpQ}-#vh}h{D8O+~b6tGWPwmsz^a#W@
zwSoQ)Z@d9QeEpd6)hk*zjF@sn05JBPi#rhc1cISss4CPD6!m)u+y-Ec2a1<JO9ig1
z(5tKw#e@Z+6Me;`5vtK3mPH%qKJjyjYNT!P{Qg;Vl>kOrZK6TaVGrPv*3YQs`MTkX
zh+>MkG*PY6h+<XT5FC`VUQzkzCcc}ENhFD}HPvR#Bw`AKdy9o$>bnNM#3Kw}*_;yC
zfMHw<hb|l{W-d^BBH1DUD?=i_4kx0*O{8H<SMI=i8<(?r;STdds9522ttvL=2cFHW
zEx|T{Dfdq+*VrPi42>1j8HT<JF=*f+ff^Q=Ef)-Dr4`C~a$zoO^hCP;<J+zV8OAb}
z3B}yAfx(Cc7&?9h_{EG7E71-Chq8+s--bt2%mZx5N{%KEDKN<eGwaR5y=tkb_vjc7
z-bl-VZVtT-%+xUQcbn_X_VPXauos!gZR0Xfzr;|-hD1gMB7k@3FdJM9k3~3cY0GjV
zqOdf+0M_LY$8>ErW?TdFLPHzD;?FpTzYekj@_>7WHXH-1fU1%o>v*guKcZ6D5e)No
z2pSovP3#QxP#rtN&dtV+9MD3TSTRrjQ;mH{ad9L#6i#CZ7!44s*2^I$`KAQ{yHEng
zfZ|H3tv{T4L&@9vx6Q_78a{rsfMC&wZ~EX3^80%1%Z0i)8xdZcT}Zx<NL~>ljxLw4
zA2KZ)g_oR{{Kd2-@`Zgy1pdFWf?NuPhQDWkaL<vmFZ-&MchlXldp^>=vP%ilM4-3s
zkL8sgj4-_npnfrVhoDuQP6wCDIw$N_HAsk80PL{-Q#oamk-!20Rhbo1m_wk<{`;By
z<Z~m%NnScq3&SZ8bKPvY=mI^FK0h7v2$yE~Cltot0U-|Go_tVHY)Os>K1~KNfA~jv
z`ylVYw3teOHv+r<=e+#<C>Ppi0r0@JKgqwpu3Q?HA{JeeZ|>vLicO2D7o|K><;TgQ
z|3w+IpG(toz!YAR1AZWI1eX`v&kO4<=3SI0^z)FO#84|F<9MifMiw9UIgPZH5ksMD
z65LJ+-~&baB-hl`I)|SHS9V{JAr%rE5=3y?6N%GZ-JYtm<xUYoMc;L`c+7|pY>b>~
zfT@GTw-a6O53CcXtHk2EIs!KYdJ-(O^(VR<z5e4#aJ=|-lI!t)|0P1;<%h26j~Nm0
zcg){XdRTa<I6T2Mbg+3?g{}k5oHxn!fZe|+u=jaT5$cJ**!Y3#V*mfBh~c<4)%DKf
z{9-ss?aWC2;`L>6*=&;;DH>_3*hGN)A?`LmZj-N0;Y%fOd(GCZ^PL4F^eaHTcS}0F
zd>$Ii@lR2>-j`>KLtnltl|M{2c|R&k(Vc*&<tJ|%DHap1$D{`U+=0iG&sTDbon9<r
zFkRDwz`5fme*H{-VGE$sdv1V1AkqjDu0`_g<DB~mYcL&7(l|}A%8)-OP^|x2KG~N+
zALxKc#R6Abq$h-(oXKEvACO-Z8~rgZZy0<(DIOX(>rgSTxqPK9yQ&b#0R=C|6N60{
zM*wjzZ%Jm11DkVX4xF&yUx2R&FYd)E;g`C!I}?6^rBqU?&nQ#`*!J9$YEg`-NEz4&
zK?fXx6n#j~xnKFu=DIlE$nTYR6KoeiZ(rN5p5Nm|t{q6bOUZ{QPdulc#xe6nl8Sr9
zB$kdYgKak-XQCfGlrL>ke#gB|kL8=7y|Th1Mb1U(Rb?f^U-01z@=(>%STX5m*=={_
zg^ZiY;Pdj=omEPs#L^4$x-R8|RBN@#aP>m|hvGy0b5FJq*2j}!0x3Et9r~ew9f{gN
zB%GF!dP6Dia-6t)US8L~i@}!~j%_1Jto>1*Kj1^Lkv;O+K|T;!w#2%cs%iE59(tjq
zLMS3|y#-(rDn6{KZr^Pr3>Cv>4oB!fNJWvC>RZhS85YIkJ$7Tz7Ws=w)zrp+Y*Gcv
zML>Q%*p@r}Et?%SbV$T=soxtySfazOO4mLkOvia<yrRGk1tOKcSLHKXjW`i9I?qWI
zAQG?1bvukG9o+XoGXoKbBcAwI4zXz;pwZC9P&*&N38=bq9<ZH{+<<+Vwt#vHbmBsF
zHOj6T1+WmH0VFs*%Dh#oP50EZAP4S6kPw{kW^Fb1l4-G0oIbr^h-m4h#+@|sp1HUW
zYp*Y&x(pYyW7MOU4O<hN)b){tWCH%;fetGBj1hv-G>b7}0A?Y=yQAuK&WO6hx>@2P
zR1eAkfS)k2_91osCnK&%wSigxyqDT}&~yk$0;<8<L9gjA4tS}n`;Dw(J#4ds>!=fU
zJ<#p|V5e&SfT%L-sO#U@)o@uReVN7wmWe~P)wN&Dv;Y(XYl!v*Bgg55HB`qRO+{>8
z`FY$G@PvxtHI?`GMpUUQ!6Ni-b)%e{rO@V(0jWl~Sa`3>yI~#}hkFjD48I>#nVpT*
z9J`_?fi`i4AWw8Nb=&qztNbAX#hH$3hCQ6oIm7AdL<1cpCOxF~*=$>y&xVE)U-o5C
z#Mxs)Dyp7>A>zB*D#D%+-QE55D-*JuTurSyWnLM1xl+r(a?h&>`1b>U%jM^cu+n${
zA*-$Yjv85dSrKS+^u9_=W+CF~P&N2|!(;}|IUrD;J2}b2#fC_g_<)gD3Ymc%4k#_U
zs%`C!yyByA{M_fI=Gse!w*}mR;5o%JBUE&0q!!xiCbm!~;D7-JqX(y{shw5uRWnW5
ze+7mRY&bA#`-#u$tJJrc_a+GnEkaU^!zJa$3=ymL!z{sBSCCBxQwP8oUuiLo;k7uu
zh8q2*N%MmnQtl9T+5-s=xQ)g2)AH49lduSvGlWxuHjyY<{yZw(3r!}ORQHGix+qe5
z7=#U;kS~5<GRSb?Sj9|67)I~&vUs*hxub)aD*ggnWX{jBmi`6$3?`fMK2z-UP4G!g
zHhsn@k~1~ZAYsdX@2qT8VESv@@Q|wqOFi+d{ArTuF&W!E$}2jJ-N|u4{_M$31K%Nl
zALQIgPCKAg1Yp1JvP}NKB&x!i&e5-noNHqCA$fk0X_t0U>J9v`K{N2JY;TVdx!ZC^
zEI(kl&I|IsT+>e-KN{yoCQSqjv7hzLpJkjq?!b$PN1Ts%xLM+kdi19JE6Y^x4wogY
zTt-T9`NBu_6Ca+D=}(y-P<N>uN5RC4@|MnYh3F-MR`}NA7ee8Jo%YF{SsXKzfskAd
zL(=CDv?^>*Ga}Unx5=)gyG)d{`d~x1LIcI9D>BYbZv}oja^ipls>RW(vh$OsKXGml
z9UIb9bT?d7`&I6@#c5>}ys0~eW`jkOE7Cj1R8A`;UOc{$F%j1D=j8U8JeM$2V4}<#
z=;;wM$pnads;NeLcH^CRvx2^WPJzlcL|C2FD}DKmAdJi*zd%U*;QraZwQ}lrg(Q{k
zc$_Z^RxLkq>p_+Iq&*I7>osFQyYZEC@)i5bacqod5V15sUH-k?^0t{Pm}LyF0CK{V
zn0G)fvGZwxntYgEq>%ZGTL-1zHm*hqq43$rK&xXlF|*Nbt6J*0dAuUf;b_D^&^too
z6DetG{xH+q$im^!Qz%^<T}g9p%0(ZVq*#Xaj}{U!zT{n(eLi9#o=DF^Z$P<(r{QZp
zQC)dY*Xz%4Vj4`7=)%H8|N81LowgOVJ@iSa3e5DUx+=y_P=#Rm{<sX$BQdax{*Xsz
znf~aPq|HMwG-TZr(~p{rV`w$rJzzjFtrt*9A(URIA;Y;x5Fv{?L9skX;Nuw}X56j1
zj4`7V&up@ArGUi*!CBo@K!%wE#^^vYsAJW;D65YdJH+-5M(_^rG>BIc3(iaL*ZGrR
zC24w67a4>-Ups^}n$h3Mc>_&|9&OC9bP@Y0UIvWmU&^K#9OjNsW)k?}!62_2)Jru@
zwjW#u0z&#M6s~{ouX62c=Cd$k1<_$*LGU<)iFMUf!YKV^a1;Q(L*6w?4hHr@+;P5=
zFYYj1rmXQ8q+v9f(4!#qX#940U2gz*B|4!rJ`5p3TaJAx-_q}b5l)0J2K5OCL8y4W
zk(#8}7$jJ{Sxg&C;VWX7x7snue3n?mdU>`~CjZ=Uw;J}U=_^p!Qa7BFkt~e58;VU~
z=YAPD-%R?5GAvwrA}!D7YN_P6O|ucD_%1v`AS?A3ZwWQYGdFQr%LNdOV+j%I2&+9K
zBkbMD6IhOe!B6!1S-$%&KM3b1boJ7K#f3$*?_*+hxh!ja%=<pZB*sSG$VCUA@VJcA
zV}gq0T@6?tgBbuLuDI~6ynl@uY`wbl)`OiVK#bTe@9oJSA2qwvuEqBl7`}0y|8Y(B
zdER_vzW?Z{OsLl5cc~#Cm_cLX3~+Ip9Plx~&BpI7Jz&IG3X(AnGlFk9`g7!KIm_lf
zU~W-_SmK5Nw-7K=eIwh4a||tM5WK&nV!2~}plNayf9;wa^gefqrUu1~nwP<r_s(9~
zFV(z^o!*gn<<4G`jovqj>@@s}t(`Vt?9OlysHWc3=Qx%Cp+<-p7*d3&3n0vJI>io#
zuz<u=6;Z;A0gsLYP)QRHbbn!D=mFVmunuzNG<mEN`2~`D*1JtqbV>cR+wky!{y-d-
zq{`v3<WlliV>NS#5z?`&_ZS>Cf#T2R>OiTHRZ;_R(Fhc8*H@W?N!&UjlKnqMxY+a!
z#M~7JZ{8e{9+WN)lv=$m*QTGOm0~`V^O1O=#F`jWhs#Ff!``jc&h(%(@qMxNwGT_!
zlV<=J$V<=+OpRsMxaKS%2PishQJgGZE3_sw<KmwBmvN%b6IM&z1TH_hAd?a4h_!P^
zSWD{h5A9N9R(UDPn(bY=G%!{ii?$-_R4Gjs|BJDHZB)4wfrk;@tdkA7l$aC&+#u{0
zPO0hsk>YX#%X`{?iK4`S7MA<1{}M%rH(OX=PGJ#VG)vnhK5AiYpU7q9ozD;(x>!L~
zUNj(6OnAh)w?>uU#)(>8t!DMPG!khw2B3e5BDK4<=Ue_Vu-6SCh%((jQyh=9UOnL{
zHN%%E+Q(RDYgTDBN?h(@y`hIB-3`<Y^<#xkee1Qp`bm`7i`x~Oy{y1$x{#34p_Cfs
zUN39+U0eoN7wEJ=gK*0qj66Iwtj3M?v*7K4tGy83b*!oXaHj~ohHk>sXkjnwe6((r
zLV+<+{8PmP9j%SoTo}V=MLM!G^_^|~y@IQgdmm>UNrwYu$92}&>Yks{lE7k04~Y_g
zd}KwosahN(wtQ$6w60nlDW-m8?P<%!5yfDUgpVd#fd%WvM^->EmjkjYb)~sW22+Lr
zq?RQ)^0Ljh=J>Ikb}oXYw9igD+_E>mZ_VrQUoyCrZu-dj=0TQWehj1CM~Fo$taCyC
z^?Sg&aUYwuB8w?{34}o~Vzpmnt?kS;=w_#LPo;<V7C%h4TD;EXP~M@kQs@Mp_}E8W
z7Q+djXqbYN#jaV_AggL|oT!KAwc=trHS?hbi1g4DF=oBh?H(?U)0#s%43+*fE#DXU
zyTrRoaQ%e!>lN#RV*RCn5Yin$Y#44msHbis)KZV%RJwnH*i^^*s4F*FNf0OI)w8;H
zV*&4WfZy}+%8T!{aut`t+ZtK|P|XrFKfa;$p>73%hWQM8r~4;~p5E3yadlcpMj^=)
z467K1BQ>nD^W3%aMHoZNCBA`vmf3CKQ#>o$+KjhFZOm!DtB9~a)i+CPQ&B=5n^^E}
z8OVEBt)BJCmt5YX05?hiV0hN~_SVWRT$qZJhmwC5VhVYDDa9~9tJ!9jk_)(2Ofvi;
z#rC>Zy@OnCyu2#c+tktu-pTR^?DF}9wTX!jnkNx1Xr4d)0W0Y%e%A`09Dv{_R>SuE
zTC5SlD^z4)i*MP;`qQ7=g%X>kU7JLduQgs5CcvsS3_eX6FoafXWZfOcKTShujOS)U
z+rw8uT$&6<^&y}SM8~|WsiB@m$pw#AX9gl@n%1x`>vE6`Vbvm_ZU~x=5o-diq-fnV
z?rWGmg+g@hWWDn+m*H3NC#A#@;*WOLC$U_JeGiy}SQKonjNyVvsDasx0*h0ftW8}#
zzrs9*8)h*clPqf8R(qe<<@mH&cn*ao@JxNAx>foTi^^ZQw<v0E&5f#3nkl>*Sbuk_
zQko(1np!6w(WUMoU?C|g!8^x^&x5QO$;Ih#e91>YQbow0>iOrm3~9Yf_=ZT45Vc2h
znMq$KGLWKc;4w98wiivk@?uz?_8n6lXH_YN>FLlh)oM<aV&K>xpHwG5tWq47N{xIz
zmy4lcyAiG<GQ!iulE2iI*SIv%ojsxiR9XX39xLYjrrwxb<=5$A#SQi8ges-I#nme+
zRku;za)$WirkbgLn*sEOp&^kGoGEf|s#{CA4R(@XmYIS)JhYG4cvH2^XAxrBvatPT
zgeQuF=hgjFxG)MnuQ1**S%zrvgX%Gzi_<`40u7d@9Z>Nnzc+*B$*-P)J^aJ7>X05m
zttWcw2r=~s^|xoR%6l1_DGL8pN%M3siONggk1`O^z3{fG^(+f|!6l9J{c7&-4CJyr
z{*M|ql7(<sETL74nYOoxOE5Ntu-fZ6+xV8s9M8q&9~xl+h;B;O-#-clnLJ!F#l@>?
z^_x|HnJF$FRXsevgs(C&CS#KdPZqW7T1|5J=TYD!7>=?eal5Yd>i{lGGN~lR&%V|{
zx94}|_2b1fZ!5a5E-$w)i`?4Q&MYr>7$VPM&GjKxWvI@38_;Y`#Bb5pmdd(6MbB!T
z`62@p2X9-JyL08jNHMR4^>8mPWCa@Gx^R}l8z7$Jk$bJ1U09T0R+bnXU~Op5W!k6K
zur+5uGpx1TD*TLlTve7Vrp~n<U-h4|1TkZcHGTDe%92Fra%;v~mf3yCfXCgk04wnx
z-3`!hBB~q;Pt9P<yB(LYZz@}@#0%F{$H%x3zU7Q-h~pis={>lpe9K7@JsVq%<7&4~
zOAx6!aQt+OG`KZowzn3KtxJV5gr*F1kHpx1>2G~-mJ6|qz^ND*pSYB6wYgn~en|Tx
z?CYXKZ|mwo{uQ!Brc$m2Oz~6JUpcy_c}8#1>Ot$NF_jC`#jSSMwkm~b;=Q)k&$>5I
zG%(RTYe7tY+Iq#0TL4nWy5Ff{YjhBo^eD)NQ5EcS0AECK2kWajT%43cjClwId+cQ^
z<vA{bCqDw9aQ_tF|EY%d)9rx++~bm+7L+K)x3wC*!GiQW5Ry}H*{YYUE$?!XUe53u
z#m3JlQ5yEk<}X<8-+5f@QB4t_x3%K+%jp1beU(XrDs_0B^}@x<KhF@i+FC2e@gqQ#
zo(oGY9vj)-iq}1f%*&-?Ce1HFbS}0|{LQs7SHJ}Uz4)z1tsNJ*F7Cnj{!D)%pagf`
z$3FyY%(y^WP@H(Yt~Kd>{%w*wkI_;*=$kjKPj~W9X$Iilg?SMnUc9CXHuF#I*XjcW
z(Hc6M3pME<ej1o8eu}lGf2&)~$=92gIQX#j;dU<590Ke<E|S|>{U_*Ox{-&-sP@h#
zR`6EtK@xT?@}3joVTbj@)w-wQU<78<p*eh#;o1ssmijGR^?$F|u8^IKGNB>sM<Toc
z^aDHExenI%UiW4ls_9W5Apta&(9t#KJ|oG5x{DzV4I?h%tA9H$uBvzTX}F*R<kX-K
zeC&~3Ay_mRrf&RP#}i>vNrn_P1!~MM|0xR*<4RTG86$%#Uj%JF8*LJ|$YW#F+jc#Q
z-}gAzhm+lAL4kVtkf{hWEf5B(M&_YnwW0<`v?L>a1ayqTe7J5StlM9BZILr3o46e9
zp6JQ5KoLDiPqSAZd&$Vjb%b{gis=awlefv+9~l{}PPjwS=>{R-`KNZslJOk81GX0A
z0|Y2dLKrLk!bPk3&KAdfT0O!XDFh1PvZmoXcx}J}dUb>IdqGZ8MD?P3RfRz|Q0!Rk
zTy8VSCYB)%5_V;vcqv<)v(Na<(RDp5oUp?ZSZ-(q1L6l&di_tGm-ZX}SyLO<kKeaA
zSDZ4nY18NFgI)oj=)cjq_L`5USFr4RLMqT8T<bqy?Od-(bJ68=V7lOZfsGUnUmKmi
zCrpc#xpo1OdVl6@aoF@D4oF81oChgj0*^$ik8E<@s9^?zA~@ja<za51_XrTP);b3r
zG4=mzq+mGvdX?ePMc1HPf)=Ha1}i*7ytUqW?t<x@-D}vUK3wlyeA);ou{xg2pAW7V
z;^<lDr5~8a1`R@UhqCGdoKpmdpS}TD1h+YR{bXvVA;B$$K|zF1`@lx$yz{n*Lik-(
zK5e-8WwmpzJt*b9!i?MKJapDnhEqBj4?w#UhN!I>yPT(e4LeY@djuvMSl0Cy4<N#i
zKQB51S{N!IIJY9e0oMY|M}Srz&T$?-W#%K|_&{ck;RSa0`8wz3Z~uS83xux0YUiNi
z<~N`w!R3lVv+%-TLk<*=ZFXjAHe|#er9-pVJ}f}I5W{k%z%`;TlPN=(R0ezmq!ZNJ
zz;|4)JY<L*DpOLx1hDxn*E7K^#RsS|r;vl^bLU}u_yADg6vpcy^@5oHsdL~hGlT7c
zh0n{)P0qlRW?-YSSj{9Pe;NNh&YKr}j&$PH*cThph++zM1>q4swx5{tm2=c(yDoU=
zXyd`V1J`za?!2d*2^yIj!L^&iLmMjm);d42Wp-b%Ic!_+oM$h=J2nS@F?f@6(!b^<
z;-Eg35F;F(2>)X-`k1rn3DZ}y3b6K0wg+5~(J7#iuWfVI)wI$WJia5-&7JB)c=n{z
z>qk>Rwh-4^2q<~crEi?8YMJ>}Vd??;zk9#)sd`2P-L)7IFeWSy@kju=4{vim-PYG1
zyiYh=Fe!;7pj5zF5D0%WZ`Y(|=5&EJj7uyc!9x)w5+?Frb@lyL6Wc_gtE{c)8yk3?
zaUPuB?;8DpNhOg4?E-KRv53(5GiAT4sI`%S@(nB^P+~}kdA)9r>s%Kj#B>Ec1!LsY
zY_Mo{)YYV&ktV?R9>xQBL7}c6;)G6|cAaQrq;P=(myA9~18^z?iwnQG!ktEpQyG_9
z^I$}t4Lagldz+*G5FMxkn^HU>LDV%mRZh721=#g<J}rKwP;vXPtMNldgsTUXDXcZZ
zl!%=>T)eW%mGZXlKe=Gz?Ssg!0@x>r#R|D-;95ATmKtRzzJWafokBok5E7b+RrS<E
z1)NETiCkz;B2#k?h+bd-^cQs&s=_7A<pLiyN@RqXUHnII1lcV6hsb5Kd}}<b4=Y9?
zw9OJT3fA__b57?Kvsw1ca^vWQ0HfUFva{A@7J$4R8v`sYAmt-`3rSKSzwnvsnaMu0
zs(Dd-OEUIs@Bn~(FI`L>uU2UO2<=r4YmvK@xJ77I;Q_#=o_$%hYsoI&7+s3=)?X+#
zBvC9Fuj-8l#|M}t%5WitQ)XBItf0*YxeAt1U}NhfM%EFGL8oOZV#ANtw8pKer_15H
zHw=525bxY?eKV5_u|x~<igI#AD*EPZU<J>vTAU)n8(IrKs#*-bKOgJKkE<3Z5va5D
zj^aMz{`%JLs*L~}yRV_OdJZ=N(#XMi#e+pEV6eaMw^lCUQd(~%KZEQK_uN~}tp*#b
zJ}^-{)W|w_N3SDAc4KSp9mP>%Pcv)Y9sR)NripcBF1PK8mKFI;t%Xlic^a;QTN_)6
z`iJF12T<l@BkK+Q9u<nCL}3%_hlN!dflc9?M%Lo0V-yf8nl!ck{G`gS0pfRVV*Pl>
zn<R^xjjUH@RsD5}@Vm!yRQ+{8vbgMPWmWBWV1g)UWCgrmrIEl?v7(`Mt!gnYrxWk7
zmd&sF>v)mT*xL1BmEwRt;)}-C(yEQ%iV=9P`Q#ObDpma6#QOY>50fEgG_{W0F|hHX
zT_bC)9;zPLN1{pbqNp`QXf^b<K3Kq=NzMa=>baQw<z>AxuSysFBL4G31jfL}%X*~h
z_X*4tHJex;RBa@%w{SPGF6&~g!$p8;kG67=-rRav3y6ibh)l7maK+y6m$l_(?hBo7
zh>68D(Uqcu*f9MO)O(M$Vi^AbF1)$LIY`?iM5BAG4ms>*nm&;IKp5po35^s{zp8Kc
zdsA>nWl4kxKdv?&{SQg3IQ^YUIdq3aeE*$#>pNXcmu8@*Nx^X<#icU)a(GYW2PBAn
zM^xj3-h>WllLq|gL>i)$ejQ-F-o7ruHjyw+gN9jT;KmquQzd9P#4g1S_0LVUX9WWx
z<)sk<=+$@)tE80yz$M%!MLc&^1+3$rR>b=<ur;WEHQraTJWcGqp&Bo*`g=t8x&KyU
z7IV4n*pLCs&@<Q6PYbISM~Ma3)nQ#+0Z2<0CyuLF4R%&|Xb9ftZ&hD6u7QIJ($G}l
zE3AN}{EYIqjS+q~RVV$nnr0>=C`R1=Q*~Q&N9X$r=ih3SZoj;Rc+vfaI;BT35sA$R
zfzAkw5W#;cwfT-VQpNgP>d1mBy@(Pu{#M;}8&QQsdV!Q-XeC}OxTW6KP*sI@35gfa
z+)~FE-O+lASbIa=cgOHXh?>{b?W)CrN#ekDbz&vAV!m`>UorcddR2dEyD&p6|4Y57
z`;i6{{SeS(1JRBY3+h?JbvJNTg;$3TS0J0iDqS24eV{+gIeEN_JcTKUFw=Kl0aM7j
zJEv7&aqFf!q&v(pzVM2p1mzh4y~Vj3>a{PbzIkvTQSX-OcIQM)62ot)>UtvDUk6E`
z1Fx#UEtTIqU99;_P5YD!@0>mfqTj#B`>3VRkIC=?y_^s{e5gdR{RVOwS8lMkc;-*#
z(hb605Plj+o&ZZtK&puQLp3?dzpf;JdG0UO_XG<ne(z+Fd{aH77s8!gOBC~NtCVHB
zxeBu<Ml8Lpc4+Xl{N4MAN3W@9J%V;A3~jrwE3wt<G+6hDnwisULI;P7%HpN2$R57O
zR<kT=1l;q0a`OcdawyYlXS#mRH*$}I9ck|&qRuQ=>>wjC0U-h5@Fx=cXS)jP`CiTB
zM)fP%jtx){!R7BK`i*gI?qbrik+*>{ydlLJJfW6vcU5=$I@T~RCK4ILzTwfQp#_GB
z9;0Oa8BB|r6fNSg)q8SLf|?NCVq3<^l<7u_fW+bDRl~%@;d0JQBaFnx>e0mgiO=oY
z7&+N)H;pVRo+|)ioWQp^UXK3AR3+;l=%A4s5A6Jb;>NS`@OvzaNTv7*vPkOtVko><
zgT>Q(U2>-Pfb9$zryz$)sS6qVK)@_u1|0D+qj(X-iX+7DZtMK-To73X<A4jPk#Q+c
z3yl*;23a#TZi@p9xH~}1D6vymJ6H41lk<v*3=K4T)2(}_a#12c7Y2BH2<z>go~J--
z2Hp&F|Gx)7kc0G^Z1Xf0Hl+8(2Y76w{PqDuat}8VxCiIM{nwA2j-T5g{XGQu*dWno
z;;ms!7T%!v0HLDWI{9o%L#>^JF~+`$y14ZX*(jg%B(z0-hC=d=Pu59xiS+9JnexHb
zCYK6jH}ZJZfsh-B#NL&1b)+GDk1Pg5WGUO`;X;nD7bcc3mM``&awLdhP#Ge8I^RXI
zw3|tSLQa0T`||Q8TK8~qV~uR2v#Y@6M;im!u?kp)zo_|{{4!iq>@z>RC(A>i_;|Uz
z%TB+`cWNk0o>oEBAwFFvTiKZj456h72Jj09_HbpJ{JV`AWpn4VKLp&U!bQ?Sxh}~3
zBo-zd!1yk_JZ+h{(qbhx`;utcr_JN+4eTe&S1pVRzGSdCxJ5qDS~q}n9<b7bHWHtS
zChedP<!`O@aD&Z02flky_CSJ9L`i4o$|8r6!2t`TM&z6oN)GhL7s$RXOtuUF3PhR;
zYFXeuUo4f4>>L|lP~y=5t1#}cBiG8Vb~*w$i($<|tHIS8DB{*taxGUQI~8IM$%Rl1
zYpYrg;L!1i;#?3a3DKgp`f3oD^nu-?unY#z$lwU^Y#TM>DK1U|DFJSwysi=h)W7|>
z)MLZe-0tF!j%wx;`qxOnm5V&RF!cqgr*#>@Be8&^a)A#;;sSDXu&Q&Oe{GV9h!$?u
z@oO%Mzyu}x0uIbb+%wt^Q3cf+@++`uyntJ1Geq_HS@)xqpi0Jrsp-JM>hGVl067n6
zqd`wf3)F+(b72aZ<3S$%R-t<K2QEPj4#0{?+&Z$e)D@WTFj$GOJY|jG2g!UDaDfZy
z{PHO1y9cSkx^^_4>=`p?FdxUM9b5Uw70PkBs2is`e97f$BeIETH_|^v^m|S%jN=#6
zySWj;Q(*a6wY?jQ=$7t6Mjn`hhN}sYTxNdg-v{Zj)Z~cDg~{UZIF;9<a$%x)Ym6Ef
zTcHpuhHfB{{uyG<3u;*R3L+GyiL$XOJ+>ijWc2YkhcMhPvAWhRmq+cq+m&RYV*GMh
ztE0)u4gOvjJ+YqrLlCm|&pdfa=b%HA71Ps&h&GGlL|X)2DuyP2s9<+P)j)A<z8qa4
z?@Lb3$nqpDAqbUR^@$v9CjhCG6)#vcTq<YVbv2EM8)i7#<!FPWl-CCq$sa>Z{*VeU
z1Pn@yUMz36=NG!eVKPkg-6LD-3|HFSk_{FJQh>SU=8v-VG!q(;2&7UIPQWn~!oAnz
z(ie<}v<@fK^NKvk14QwD*?EKUW7VgK?U|1Kc-mPRGl1Rb;cZE#B}{R06DMMw6<w8Y
zzVSFFl+Im*g-D?fA!5=6nW&vO(c7d7@gr~)4-%o*<Ub2cpNLuj9;1{~zTcnn(yPW}
z6r4i&z`5YJNx@^ij>$RsCeXlhnauBxkTrBB2#E9aB-J#9JA;mTf+HxvjGUuG#F6gm
zSgh%)UW0gjcw2vbN~Ub**GILOf<o365VuA!FscGyYtl<?eatkB4^~88YI+>;3yS=%
zpQ=t3@GtH}tpi2oMrU;!wYKqK4DDT;o%d=}1m-A5yzr?7ay*2F<GcEc$FIvkBx`VK
z+z&_@Su+vh4>4E=#G`H1o~|Zv2$o#ndsGwg>S9rSwHMSasEOf6vu>y=gob(?-2H*@
z3I8AE+3uXH8r_DbneFQ7Q2>A^!<D-6c4rp%Z!~syLM0hF6s~Fa7qx9T8YeDBc|bAI
zzX}ok_Wh$;qcA{3yUU6wMZFj@{r=t$qR0<?7$xAKb$2L6G@ua6-@X4p8(!)N0KzHA
zxk(U%94bBySMlx4`=q$b@?Bbe!#fdy-^{LRrpt&a!}m~vK#`eVq*YU8YfPf<G)RzQ
zP=7*1p8-7IT}>U?WCFN6p}(k#s951&R~=fwVNeKC*0^nkcAh{^MST6aAIcBD_xbEW
zFQNlMbiQ6X6dD{T&b=t*K9(iL&?XL@4AUPy3Kf40P(d{s3=6>c$Kb#orYABZ`8$zF
z;8uN)h&Ei0jAA7I3Q(V3&>7RYH^jn0AhY(>4}f0&hNa$ptNt?|vyXBQGB6_I7J)jj
zs=?afuMW&GLRkC3Sp&@zs|b1qeu39HD%It8%r8u^4P4;E#2*i;^;21b9^+OBV+Sou
zn8kv{@DMe34|fYPAX6S+caVz(!E;PS{m;k@{VA$pf*p87x%aaOV@DREA#T!m5L|)v
z`tfJ-jXJ&~civ3{TW-(>11ju5)*cyqm#-IuL~h{GPARY&R-0%3Czr+gzOj`nrj^3p
zg)J!;t%hI+Z8={$YMEBkJfX1kz(5haPL93d<9Q%<qzaMTA>z@c^7#`S$xYLsk`UDR
zOXNysexa_Ct=KaOkbnjk3OrE@X%*)W$s?Wxjt+nIj2!s6Z|+CDdJ)tL%m^X`v_LVt
zBJZkE-?ui40LhQwIe;7ph&{dkPx+~rE%UHbpc+gnQP<@kHH|0(3IfPJAi;ON=Zq{m
z;oEcJ-INM54i08uBd5zy*I5q#IVQa$LRg8{kuymmpzfEAj;|kQSwb3rar)q}jpNI8
z$daWu>wS|~o9xuccY$fho*&503T3+41FpP6&dy54J#ESG*wqmFj(pSIT&}^KZ4~3>
zA%Kj-M5o9AEDprhd{8Fm|KoGXq4St#VPk_G)^j@yf=fNZIA4&~ZL{to^UHFy1pz_~
z-|z|2@0L%E7F<2H%-k!{Hg0JnN@erwrtL^LN)#h>86udhv!9p$tM2Pr%t>zIC#9!_
ziHFC@nb*zJz%>f3R!=G<hwv9|cF4Cj8>Tyie3^u{u*;#*qAl|1RwD%{0OX;#6b}r8
zjilNt*=VBA#jkj-((R%|Yj4=Ja5BHzUpn{s)Oerw779_LYDD8U>Is>-!)M0HyHA5K
z5<yZ(gb;)TuYuy909iWS=i_Lv(>;;}?HzO&i6CVC3KoT3Wlnpa^b57AlHSSEusz^f
zhfzl~Fak}x%hB_=Hhy6zW%NvDgyn>a;7A#|(EP%1kw9y~M!6+TZa?fZW~LW4k6ejN
zHv$q%e}5bmy)tEyEd>8w2^I;7aL>56x2*jg*TYn*U|+;^{$Rhe)HZFWRkWf8h~sOV
z-v39gUWCQ29pv&#Ho1EL%R2zDNQ+g@$Fv^>abs3WLku-6Z=378D3gY`ily04B(HOJ
z)7}TD3m;(I*I>U6ft|16PFG()t_R~5Q&X@n7~<Qp+WJj)m0t9zeuWbgdz@X7m>Ao3
z!Z25-VVszlmJD2#>D~mo02~z)wz=wcHa$sm51@n!<%V{okeRg6*+koQvBSjXQ+86%
zQh}C$owPwcwb)^_1nu!OP#>xkjC<v>+!|`6<=0}U2{8T^*HNvy8DTn*z?>58--)dV
z2Xa77H5!EITL17+c={vlZ<rWxL$(Ss5|HK6nOh1ERvgt7-PQA7*|wt*vufiZUclCf
z#2jM2m+D-`hDp3qBoG9+CnrJ!p}C5lVVol!>LpwC!2>{~0QCbxe+=0hH>984FSw<`
z6zE9`h=WJ;za^_TGY{86RJ=@}e#3m6;iLMDHjl2_b0iDDE!X>*%5Xgcxi0#a2Co+k
zHnyI&cdNf`#VQ(G2;F}%CLv<%75RHlR;QqHC4$WZ#qbxZc2TA#a4}vr1zTx_uSeuS
zO<Sr~f#!kmBXkckuL^pVP|>lPiU)-kDRLlBhL|+$pm5y9UrSV5kD7xw4OkM&!6hx4
z-KQq4G35wUg0_z34_4}Ss^bPzUXg^6s`-f*?pHlOV=;y58D%Cg0AK5Vf7SdI4sSvq
zh|e<*CMCE%v3>yZU@^(5HZ0@1IIh#&BcKubGXOF2q%7LTltDCg3*k!%7G9jx{-Wu>
zGI50tKaYVM6*8cbvH>o5@ob{%ag+5U)Ik>GoWc<%V+X3@1((%S%|7I+_(3K`nd&W!
z$Pz#%P+ML7+30#Pps>>@3tP0?c`0w3g}^3=DZ|x_^Jmw&CMTXYlozl&;c}R3vuT9j
zP}&--YJ6`3>U-+2Se(B&Ft7e5*InZC7kz?F8<7;$Dh&T((P??#ej~CKD}>O&r{LlN
z`G#eHAvzyi2sEYa>;6cbjl_!E<$H~cxWf7i6))eA<3OIM^?L-0Xva*NalvBKZ*o_P
znQ>{f|LgDpYLy5)s@;&|?J2CmfCvyqQWSUq=x4sTDLeJj^B7;-6FL_}Q~AAM<yfz$
zNFU*W$$0mpB@2ENry3t<>*r9~Jf8(SO#p?@t?O>4dDUeXCTa`yxxHb)&NBqAh*)sg
zIhS9TJ9Td{vQ;Yvh>Ys$j|cy+c7w$>kd+{zoZi7WPLKu{iIR}=zK&|X*Gv?fb^(#1
zfWW@-QlHyI7OA+-<Zz}MihD$O_zC$?fcYxWwX$#yqfLS+SA8!(xoN&N&SwK9V#fQ4
z=j*9fv&_8J<4(TBbP<8tx5r1d-e9^Dms31A4-PYEmK3TBwN+Y8Lk^QT0$41qBB*c;
z>!?1T+83W9G72DXJyZg;i7#E^t%9bQCxTGVEEG^1foABMtU28X4J`$2XP5;zAWt8a
zzm<c>m_%5+EJdt#khpnHzW1YfQG4*<bAqiq!ApH|jNb&iK`NMPXfwbA`yH2=2h3(b
zTNym`k%t3)r5kIl-=+1g@2{b(5=Ru|626VY0w>tJf5}b*dB>)kiQYtLOA8ZiEw$g?
z>HtpU>rh%Kd%#>DRCV>`1GQqXk9&fakt`fYeyqx=X|8AB1f)F@c_YNwIJN%=vq$zE
zmXFhr1K5M;44>eqMqM&O++E?70&oJGr@wfxy$W5cR|ee>Na@0bi-KgYbWx8?G1n@D
zUb@nm9)fNwVt9sf>zxj|1TJI1L7-+J>Nr3&n(0cJ>vN`>*J+3t^wjz{0*FII?RQ-n
zZyRB3F&G)iG0iUkheGJfu77425mfJi%yES_q2xx*bZz*^$Rdcu0s1dOqrvtuY_@CH
zRG(6z9|wLTw1z8Fn<=hA(@hN`cOZv5;3j^e;}n<wd!_<1+yIxz#Z8R550(TmeTi${
z3UcuwWih1~lr(_6;gSQVL`>&>?PW?spOEvlPlE&+M=K2d;2egRl?aKGW43vxCb7h`
z!;lC#_tpsc!&WUyCcoQ}2=4*z10|-<SouqPpH<&ODMoXMdF=0DL5J5CJW*$ll<5}?
zCo=SN3?vgg2jRN~4V0Hp+Rp<XorkAUdJYjQ+t>7&{4;li%tRU!gAfyWYcIL#mbXW!
zHEpn*5CtXVID)d$WNTkjnZjkXc?#(Q;Kut=p=`U)`-=o_IThP3@L5Q3cdb=~o22)G
zAN0$EOC-;;gMyD4`o)eixn{Ge7y;ikRD*xCxYR-3ecbzjPq-R<r?J6>FvynlynMB>
zkNYHl1Y{r7uK>dxV6W(ga@TL(d*;AnJXu5&0Ec4?=UDb%uFt>sKDLd^QvuF{tAofN
zAcZdf!%f%zb4IG!*|bkD@+SZetSKKp;XNH4L7U_mZE9k7`|`SL+|Q<FdLHF~)u#j9
zYr}=8CBycas>Eqa+A-X>0!8oJuDPe}iXKQFy@8AHraxTU&aeoVAsu`|^>7=)x?7hb
z$KK1gAqXi=*-()EVH*Zw@yAekDb?p-U8qz&p^I}qUU+un!@XQr?*5Du)W86U>ksE&
zf>jFJ)3eiDr<;4%>dT|t6E`v*e<DcuZlXN<lRdxkiZRpiWhmoD)EGJREAz$D-N?7?
zak-(12|#zO?0VQ#Bx4}e1HZPI`=Z=@&Il^7lVF-a3CVj}uH9~0O)1QBV~tY|4lEN`
zih5<qO}ovEjzeG^Py%Y$kFu|O&6Y1T^||*PzXS*`SVG>3qHmP^>IXB4qRU)J+KxSi
zrh9<c5GAX9XJj~;fFeQ?4qWZm&T__SBZ;DzUj0#N4TXy5<7FQ&vkcNT&m@S=@loG>
zM{d7|`++YI1#`+^?g>6?sJQ2D8LGblJ{&CFBeF|eu>bbQRWlSBrNx)MWYFV2Z#Us9
zFzC(@5$#GOp6wu*7X!rl3^}ih7UQCo#q{3nrinh`M4ZuGF8RasSbq}RYE7#!T<k8C
z!}s#=0=%d|n+l#leA0V2$y*nFC<z44Hof$X$q&gM2vD9pMK*fWH^>7|=_8pTuVAtI
zGkN(}MxanRW+={Mjhgraa|sj&m&ujgOhx<d4UU~)v1p|{@RLEO;2CUOw*YKG-)p^I
zey*D(xP@}!*Z>s}I&s$qdFVmkIvqKS8G$9ndI>ZwRAlUzR<!S)GyFohvSK{3JEBJz
ztlY(NaWwac`isjM4<wclCQRpJ@@!{Q4`){aoDoYIJ|>tBE55-#**VnrvLAyRePHO$
z#Y9BZ6yQ;8TF-wbPqyPuq0cas6!mAsfXEodt_`wAd(&YU*eQe^9Rdb1Ww~4*YdRE>
zMVbXJ<v_ot$o73qIT1fG*(s;v8@)zeO|V7K$jbH7aN6)bdrgi%%}l8{sX$;&hDQ&e
z2qiIGtm-Mx9cB0;GlNkCXhJkui2(zdF;e8YQ$8s(u$4qZ$>3=mz&ts-o|g;G`cC_X
z$CaaxiNeB_KCFn|1@mOYV%esP=@>EsgNVJbC?9VGX`r~eRPKF*rDzx+C+J<_qyWBt
z@%=d2Y#%pF9byk>z35=g0jBhKk&J0(Qid>muD5+u1yr!`75Qcl(`;%U(fzqVzJjL1
zq4NDQUOsW0o5n-6f=YLHk`i6sbMmp%=D|>?U}R#yYw)y%h{I*_A^lkTo=|%cG(qgh
zz_YMsi!<ayXBg<hL_&xH5Da=x@N`^VEUiQ{3UPVa*gS31Ik8rXOYg{C*O*2VeM*4^
z*|Wu9FtFOcctN(`WBNoEQy?cpNcjSF4UYG-$@0}-`Sakpk0LgjW;Tsd*iP9ZiYF&7
z6%pAQj)5ME*Zlsh+_{iZThy^L0oa=aW<PMaDTn2>u4eY*iba%gBQ!!u?-eShu9q)&
z<@dsPcwhp$_lAj6OXViP2sPT*9&K<wf!e(IWx4em-`)Fp#w3!t)N_9Vm0OUQxL^L|
z&poDYF<xo_Q+!%nC9h1Dk?Ce65qO`6)0g;7A;lLs{+1ln-AL2i!%c2ibT&lPSR$9i
z86jd~`qSkrn2^t26J@hhBQYDD=@wCRb=xCFI)m}(mbSdm5MxGc+%6mTBndfRBJB?)
z<PyF$)is^di!ZyHPbb+gf(YdXM6(+u+!Q=Ihj<k9g*x*B-p51Nnhaml*J`U%(a2we
zPlr7PDa>J7C1}TQnT)h8vt+A82rm{Cu4bX)<`Nn0k;Q|Xmz=$d^g4&D1hm9Wi{z?*
zeBUMqjCk-7G07+VV4&8#v_<Z1Y}lItp=*y69AlxP`8K(tPW{MF_>)CrF%6+T9Xtpy
zk>a33phLnJvQtg-3uId&=R<$^^oNNiJLTAa4V!Wr@GZXZz={(ls_&FxwN0h?ydf^Q
z$QBpTH7bCD0g%%EqNzw>IoeYXtk9V81uNt`mwn^+@n&!HG@v48-qz*v1hzUYgCWul
zM?q>69zF5PWc5=<lu!m|ARXe0M$w<0E9AphOrr_#in37=j6$IJ-zs_GcT*X*6DH1p
zix&(>pG=i&cl&Of!`+DneH$(OP|D1!rpw&#jD+C_jU=!~Tkv$*^0*PkfZNASmXlCo
zww^gv);eNDny427tlLvl<itZp0CogWGgB4pF$3R~f1mPwT{C4vb@Ob9V9^d2_b-sK
zzZjzIIGjN=m^h{A#e>Cyd2%~A`B4*d4e1KVO5-93hwxy`D=3qfmq__v=6ni9X}45P
z?4bP<;$d5c=PB9jUCg0RURGp&e`}Ro?(wLp?E8RA$eyLLjqUq@R0Nnjp0x*xMrcZh
z<Z}%T4#9EU32xYE$p<0;5gKCPDOt0Fk;BfaeV%~lVIr*UXj~B30GmGouT03U*tS4k
zZ*OEA62doNI(mY|Kg;E&hm8joUEFXXgbN(ot0|#!>;K6I>+=(_8+0c)E7NV~T*e`S
z%Ubg(^7-4oQ<n3P!mF$_m(&@;jVZ?Q+uibcX}TO+SVFE$@PNYpH*>oj>@X7KrXVdF
zb#P~#vqv8G_(t^sWeDpTB%>TfwNA+O4{|Ml0I&#a>x&-)!HF%^^^N8_pEkH~*g#NM
zFt`eqzn7BKjDtpq44OIcaKkYHHIumN0>pe@wQH%7+olwt0fA797lo+$$2A%Nbh~W8
z05_6ifusw@qWl`_WRXFiJ<}H;hrj6JrQRN81lkS5^R0t`TZ`;J<a_0Sd4(pS5dS0V
z+f6doUJ-bLx+QwlRcdx6q{p)aa3Y0^`PGzjj*)sCq{@#wKt%y!bWL?+xq+FOIU4s?
zy-vVQ3@5sKl+PJPd@#(mTNj`afECAEtDnCxBZUucK0yE!%x^-}tR4R~P{=|3uk7Y|
zD<~8UHoI`_F*zh))j%;WP)+{804umM0;0pdMR*KM0HsaUi!01S5fjCGHbFJu<!-9J
z@URR5Ue?+ILDGmOZluCABPyLNyng_Y4ia_lQeCH+0fLnx3px?)W5^1JM2vT-^TW({
z<Fm{2*)S3O#F4wy=hqEcZUtu_S_#D~<r3|^1jAUxxJ_)S%|3F@KW*YRZJ!Zre^=K#
z!|Wj7N|nOIGw(as>q=OCbi^Sx4h)oZJch#}Eqc5q|Eyl0mL3v1VNgmDM~Z+>M2sR;
zHktVLt#wTZtbN<Zo6f+9vg|TSxd_7+^!4XnmusrmZ?=k$M>>uQ2QWV<0_Q@+kFUyh
z|M-%S8ZHGKN*XdeMWJ})M$7%bdsS=eO^zr$K0I&yfHeDyewXE<X`1OR9w--_1N6ki
z)(9OcXoc+XAUmL<S-|nI1t91x9P8Ro9Bd=I?DIO4T93L47gXqcxj^^|0mz}hVWQs~
zvcX;4U#N{F&p{{&z>&cMCNtcGf6bFWtz%bTj8(-=3hCJW#pNk7Hq59!yb0pmCqN(B
zzXL@5H{^>~%$Wg_2k>d(puyDIHd$UcY>psIbp)u<E`|F}fOvh1JYy?h<&^@2?__yf
zA87FTqA6lj49db8A~x)kQ=-`I2_2=aRvWsYTm*^dKbI%8a)I<9aSXzdSrG>td_Q|3
zS=vy}=lCf6p<t-u%bC7#!qo)m>F}lUx$HW>Z>dWdBi0sfO#phxqfCq(@2aK|MnGz0
z%YvSW%hJum(mLn;Z?D?)p<{-_^%7an0|RhWEfI2B5@%TleSC}?-(N3-aMpru&s0<Q
zdIgWIN4MtaLek<rr!4KICuYjgg6Ab}{7GP*ft?SbskD7hk<E&H-tlJjf#T>rhcnnh
z5hwqqe1Z>WQZOlEp|}tij)brX(WzKHy_A(nL|`LRJXQc@9&%S#(U+M8KA9ZV@Ky<-
zsp88}mA#IY$x7=JgnujKJ-j~cw9)WkDkB6+#DNwgGEY?t=SV~o`J&%AHY7#(Bhi*8
zqcZuh6=!q0=R!b)?y}(`4ixzQ1J$%31S>+<Bo|m$#E|}l0HMRe0ET@yTRtg`19dDk
z%ABEyHU*{+GzNs|KI%#sTQoBCe9`;@<OGMjAAzb(5__Uy3rhhM3SK0b0<eY0)>OA_
z7b&2X2mmJMV?^?Yi!L41`CpA$3wK~+Or_25yPxC{+kis0zrtaj4K9FY#E(D8Wx6+b
zU=(mt9CR=r1d1ycW#9J3@DiulNO4|c-&=lOF4U$gREY(V7Iq?5xuA%GYx|u1e|(*H
zU{yu){#Qk%q`+$hk(}MDSkd%iL6ZQ9A%Q@EP((<%Kp@Q&5Ja(yUqwZ+V|y*w6{T5_
zq9BS5#e!l%K*6rBf)#(C*}Z#70{;F>&fMLzyJySn%rnpIjJkUU3-c-47hZ)F^~=xt
zgJfSLXgAIRZ|IO$W~xr#>yvu=9|#dXDmBSjEM%qeJN<mLIo1pAdm&S4(T`e3rMY$W
za&x7zSTVM4*1w)^>m(mVK3~C4Y_t_Dbt6wPAOGajR`)M!o>bOMd%1BjG<Te8p8dzm
z>?>_l8uu!8m<?x|E$!nZ-!;q?T=pz<45R=yh5tOGpIhwNC%hd9Y!lbcs^|6Ol|BtE
zJ;Vb+KJH9O?r`H;z2-$LqM@a<gk&nTgsd4^>h5;tgk7<cH3QiIGB`@ch*V-jKwg_C
zcKSAwq(anw$TbM>O;T$z%}LRe++dVYECrKI=lB>m4L1iJ;*)aARZCQ3UYD4~mVb!3
z;MdsYHTHGvW>cg!6vR1{sP67y9_|>odT$v#&{WQ?(Xn^f935C=a&~87Mq%TA*E~_b
zbY<K@pIJ0b#7Yd%j9Ihz5&g`<xbsi2#-^xaw+i!vIHcaL(<#x+AFZXRR@KeA_GbT1
ztF%f)A_i4nib3^_8r^S>f2rNss8!N!es!gO;p(^z`SzWTm;p&Dp7xk4^tE?-NjBN>
z7#q2z^5yyTqi@pn8$H%Y#+4BlxLmU8@vxrpikC!94+2r*19N(hZWsT{WcxbnuCpE?
z!61>WbGcp{P4HPNk>e5Lff(B|RgW3E=sutN1aC2zL++tsJxo!@uhdg_S)-)5YGh0I
z<}dL{%&OMYF894}J#?5BS2pO&+|Xg=7z{fAYuVa56V<7U^}c`GYT4BD;P$YN0`yH@
z`RV=omhpC5Csw{yP6u{4PM?q02EFU!<F3OMNCHF`*dq5EqTx}#RpAH00h7FVkK%;3
ztP8e9<-%`<Ga17g0Bc5n$;UyvQ+%lXV9W|&vz4%HLj(V9P&+05F!$Q%7AYq13^jFQ
zFkrZUr_hE-TiDD_-4L`p-#>3r9k89-z6<^rt<EM7b@nohJ%F;m31*J<?~*`nG*k?2
znX>0xye7DFb^Mk=w)=g#9dX+c+6C!C8fmtRRs<^+dO5dJPsspR0EUdU_XPt<Vk}$%
zxq{Us!W6F^GESDkj|J<aGO@d(GcfxQazYGxJg92)1q%p-Lzi%yB(FuG=(H+$@4ooS
zL);pRG7zC6GY(r{(GCB2yLexV)JZ4tkt*AwQ%|>sGG<6?D=?eEjHUYIW4#r409Qrp
zyH3Rq0Q<%q{oeN$<0qM7fk?WxV5CQz`elsX{(|*#;6Ol$C655ZM{;3?c7Cx=ek8UM
zAEF?%Ec1*jDtO*h)#>RV?~$la6SXdk+8Ox)nr@QHyEr)f<+w#p94O^I_6rPplDcqS
zaPczh)f8Q}4mt}L8iUC%OLh20S6}R@n?;qtHrwRx9o8cF#Rgqp;%U8+5#%L%Em|Hp
z!L;}FkU?I^N26YgdxvUd!zcQmfmS3h6%(huu}2hT5=^J5RonEj&7BYKj}=;eQXXlQ
zxSx;yLce&?Zgjr|2!QiQV+^m_uJ!p=gu8Ax02fMrHvgP=g777A%U*%l1LcaXe`+9@
zKm5BH&>*RW2k5C^#(j2#6%)vWItN7#t0+<3)luhu=SB89Za*qQu2{_-_3BMti19NR
zOnQ3EbF8raehhAZJ#NNB?KgptbFopbAb`<C_5Rx6>alT$N7@r1)&Sca#vz?Sn1jmN
zUr#?d?(WX8T;b5PG&x8(a@3!jf^`>4S6cHrW{yzHJ~cnwXCDJVs<nVddqfX|#&Fr^
z=6y#@=)Bv0k*TM)nYr_9AzZ51T2$#bCU6h%fVu3NM|^8eye$&$DUbv}p^`93sjtlN
z+uidC>`GO&K#x?)_vV6|?ZXHcpDUr%=&w!9RS`jLQzUcnFp?I1`G=V`(+cv+z&DBE
zP)+^KoITq<!_3Au9BuE>2ZU~$WCg|6HN=pM6>b=M@_t=IUtVZMCEx{#-pv}RzWC4_
z<yw=CjRmJZa6{tDOI6oj%*m_Wk0(@#DN3ov4JPBd$fL3;wN;o;oCiofwAoyDdkc~)
zqR5)LTfmQ>tS)~k;r`B^RmNdAqhibv^{W$>M?s;2HHSjWUfkG*3G7+6J|R0QZUHC7
zFuMA!gu}b|id%>{aXxxG;o-x)$Wj@}_khEOE$V_76Gk6zIc&Ix_hmDfV!48uI&6x+
zevxo|4^OTnq>!Ksta+E#fOGut{R9<l4S;(|T+f`KVot|C%M)g}ic9d}RMj<~7YRzh
zHNh3Nw5$34S)UoatvF4kA7LI`@NeQ2_0<vPw}n<LS-`3qIpZ)+u^X_(O}g1!+}&nr
zY%5Dr|J-3Fb+s~bgjs8maG6&IC_da{!EUf(=B+VhkH`EGLttqiFs@N?kUg%PR|r6A
z)fzMTj+js4+Wy3fQ`Dwc&4T-^n676tVwI9NTvjqpnek?Loo~6_&;(~k)_4rq5J%l*
zetyiC+-)xacSX^mB_`%UTa?BRY@v*Ed}pfqa${D;tQpl|FDcqnRJ)VSCok9(?Q|+v
z9OIFAW5~NuuMS*j{+jOJ+a|wzl6p4T9J<8kcOOBptW}el0hy|<o%!=t-==KQ^XMqq
zy%SYIf+>7AW<OHD^Ts}M#zazvrg6R{sf}-$^Tzr&w*CGYs=kN0XTGhMAslA8r>jL(
zWLIaE%vR=uN4&IcVRYK=W@~hIV3MztM!|~@o!f2Zr!IbO^ueI%(jZ_+rAeFaHp#1P
z5;$7yzlub<%(&BRdCImG0ik@6grF&E><1=uA3vQ&Rtd?I=zt`$=jeKDoSA)c?4_ga
z2Pv}2vw?+UDdAQB7}M>Nf9U{Y*U;UBm-tZ?vZV=v!vf9&_9*dAbMyi~J=uia;my3{
zLNjWSx%_V1(1HB{7Eh{x%aT;A+>O&!(F4Jx*J2)P-*FSNY$TlhR+Okdy(b7(T2W!P
z8pwPVA0h*d58(Y!u(LS!r}Z5+A#&(ykznRMC<shJY=?DL(kBcnL@iOA$k=eIj|h5Y
zc$wSRQBkmah#Wic8wUr+=U6$%)ezEliPxS3OYZ-Nwb!>k8&`L+JzR66G_W`x>g`#X
zsy27jE9cu^&=c{EVZx)2XieAN7j#+S`-t6(uE58IC`G+|PjK6dRz$c*0cMsarjt|4
zIhwf$jjqz8pNSdK+bT|dh&dvJR*~|JvXAElJ>QKRet_fos+)p^hQprs<=+&HzAUEC
z<(7G}#i^Zv(=uJ1aYayem6f^(6S+a!2$N)$J3#mNE@luBCYXdunk4?XDPk1LAoZ8p
zI8#6RinXO-z+-c=zFoc;&S(kCy5eG;{FZh6idl@9IEeCbqoRksc8z}Vb#H{ru8JUT
zM3$_Y{!gd8=_@V3eX%>1gK7!9xbPDF-`BkdoJgO53gnGkA{WijE1ch*dy>7*H`hyu
z16BYtLVx(S#R#C}f_5Y3H}YDE^WZ*Ms<&_T?(cq_l!41>Nu$_p|8J%~!1>5ZhtU-Y
zm9&>>T-e-&_Ak^od~IFWNJXWDtt>4K<KOHYJ@-2=u-m8wWU1tIUWyq_zZtSH0E(f(
zc!mV98)+(QvR-wh7v{om$dYx7NZy&LO0xAeKl!Sy=}<yV<h|JJhZO7S(FP5MPX%Q{
zBpGUYo*w?KFD8~{4nyy)r`}Zc>R>(K8~X#s$=SV%ff>1|mqb-NRPXbd9VXjmVYU>r
ztJIFSYt@;0@D5*C^lNu9bb2s>br>bSTBxfXaD@5`o3Yb#8Rc%H&U{=SyT#*YN+9&C
z0(>JfZn)<?r-|7ht+z}>@k;N;=cBhLshbw*OHQ-4U@V&=4*;izWhG<VM2+tHntAr2
z_L3YEIaX@xo5w6_x1)xS%;PV6Avbzxg1utK55Tb9_O|J_+W)}TKCl6O5ksuh4r%HV
zbN5OwFR7|Vb+gxgq<qNf%gj|vz0{T-f+Y>3vn!sd{=3$^^=zvj6gF34!n3ufslKbt
zSueH{x9nSr>blmX-_T0lvUM41{6Z5f_i~oYI1GSPorZh+=mn;Ep%)FT##D#tJ`-+E
z)pddC_>wgSGhi@0SY$OKzQsw;nQ@DJp=?r4;zgjgRQ1_>vvi3U*p5o#GnteW#Ntx-
zni=temzT&^Tq6<&`0dxt2~T+mmwFiG<P?<*rK#$w7tHKW+LNKweY;8Fa<oFq;Vj91
z!i;|2w~}%e!#Q4rH0QN9g!PDTF5Gd@1v|<z7@d@GGmU~52a|L(g?rjyb*476Mp%n<
zUbFaQ)Bw_o9DamZe~P1y@`O?_3Y^i?l#YtGDPOoCFx%W7J_K^C0S|`81U7|&^4TMJ
zPf?Zd;5Cw|p-dG*;C-MmcMP)C_P0l_MD-0I>B0Q&X5XaNuS*@SVzl|n@mD#(j}5&q
zO37DajxryX?#?<7Mw(#5{FGvKZk1U~WKOFd=BT*=Y0>P@3(F?UFQFbkqS`#~emRiX
z@F``ge^Ra*I^InE(KaIj>L5XQfAxRInh80!xV;hdVpoy-ky1s^nFViKGrKs88@5Z;
zse{$46U=KwH9;Ua1a&-&qYAaVAbo_IP;ZK{E+c61`#hC0-qd2prP01Aa6Q~nX6A2e
zGa@6@kAWGv=ZGX1sH&sQvwRuqaD$Ydqi!P!C4<Bx?>{L_?XQx0n#N(R>xIi}PGC-R
z^|tzAX?@iTN1AaZ@v{FA>gtn$k*gbPfAv%Pwf8)>!e5qTl}YY!@+m&9JAdHCEEsOF
z4!s~s+xPSIf~cR0$O%HUJd?hFMKaazkLuzm_yN_XiK*g2N0~xxa?OMK@4vjKi-`zR
zy@XG&c9PVL`}7)MC=OL2dGM;k+-a>aLk)jaKeEFM0hmz|7e5dIEDKNT`&alT6DtHL
z))^cD%n+k^=|a7Hrx*7fXU$@Q8BJ6ri}jiRi%MiC6la&@J5N-<-=dHG(!UQ@*-D4F
zM#yp2bceoSixrBy1=Ipy61tE7@yF-%<xyx)e%Ul<{st05I~y12`B6wrG!+-&X=F+#
zb=*^W*h1SFag}04lRGt)a-Ppxtoz4%yif^76I_#WU0~SQ;;wk272pIkig?`wZj!DB
z-KWR>Xt5DYg&}q2Q!yNf`vbdPx;l2bUcit#^iCm>dJRnsDfZMv74w#^d)kXI4L3#x
zG(8J*SpRqRgoW`r_gWuXj%XHc)KIc-yiccZ_M<j9TvaO$6YI=GX$jBOqd&5`l8l--
zb&--44NO#`N?xi5b@hGp#8L8@lGLdSb^0$JEK~w1N<*{sJq1<z&*yc{Z@!(@G~~ub
zkd$j)(${_w9nj|S%>*~w0ZmrtzNjznVqZo}oPy-E6&dezHEX$kH!j+ix@NlIaH@Q#
zRCVS`z4}N0POG*>R*2}Q53bU6%x^cQ=oI6CsX9*vV~#sw&da)H_hhu8d!l9HGW+rt
zJ#3lRG9^Px70^RbRs>I#sCLfRmoeph#f|4S<BXE@f+EM9)op?PXsegAuq+Q!bm@to
z<kBVjpYQ!I1juCrM*!1+AI*TlT&;deFInS%Fx2Lx<?9N4OQnQiW@ce(X?{>YsX9m2
zXyndo<C>Xo7$`<Rpg)eT(vcjC(G~!?QQhv>qk(m?z>7)*+J{rO947`qc{~c!mIay1
zVs9o+0Bc<<V=+1rR_Jc`1Sw^4Ki&z_9P@;<Yg`?dMov#w$l5NZZ$Zc9vpb2fh|G$@
z|BEa=mALO7X5oSkAI`F}97*kmKqA=}B$#1~tsr|ON;Vl~h^6#cQNa7CL#fMxZ%R70
zzqpfJ@K8Vj^G14v;eieDt^ep5Z^k@vX2(q}s!)_=xvyCkygbmBr9-7*@ii;D0&?)Z
zJA=E=v0Wi3U<l5fhDiecCoF*L^!wKb7aV270w_jMhD)hVK~(qnJA<pn*n$ioNE3&E
zPsx(>x{ux&eENIrg?Y9qMAiuGTFC`HQJru}@a$^a5*a!_0vM`3>TVu>-j9F_%D0FI
zI>21s^>Xmqm_3W7tHd7WoEKcNHciY>m){W-R{GBb?ypR~0_OY!4>x1oVB?-dF&I}@
zJqbr+1_L$cbA9fuG5@*J-uPM!2O55gx@=DHYuDIgh>~E0#f~kyCZ+}S_wYNxVK=z}
z9*H$%3I;@JIKjM2gQ`(hAlLHhCTyaF@iR@XSQb<cikW_+okN4e=h>Nya>f|VJlagC
z@-t|FC8ej~93S!B;ZgKsR8m_vWn8s5j_{iR*Q{C|{PD1F0)f=!A`tB0SGNW$Zt!Dw
zRwWS?5lbC!Lp-mW8BuB9#)p(_$AP2QOUV**#Hy~r;*Vp0Deu&BR<)d%L@2EYULIoW
zA2M8tp930f;RVZ|9o*T?4%fiJY9N3djJb-O4XCE0lT7N|4o6>S^F6d4<|OspwL#bo
zGgG8rgQcUat(0%a*0ktEGx{Do1hQ`J)}&IhBs5{;X@Pzuw!_YjvZC{vtH;%g(}`Zt
z$EI$<>`!eks8WKc#KJ4CFXH(QHs_7D-RGkcpl(krnXBpQ#irn$=lzIcg)GO<o5`Ty
zAkGbjKGU&tOiasBv1=_&g;xdZPPe6KM-j(W;I4r(o+;|HBZAalZA+LB5-QKG3Q;+4
ztA8Z8;TdbeXtgr%-y3t{bGFN^1R3h99ws(A_r=<YGYmCZ_NYX){+8hRQa|~LyOl^q
zjxdlhSO2X)-LK>Ix4BKo0xv}Z#-RQO{YW<}VJwI=sI6=9r6DJowkoI|;J@@)0{OHU
zWa8AgDn7S3Va$JHjysMC%~jH+i~-{=FoSpXx-PLB&f&`pRPav_?E<9(6MfoEdgAEV
z>ibB<F@Uj`3xN>hU|^HrgmVU&{rblqgn?~ODR|!@rhWe2rS#;JV$&^W?^0BXErZS4
zs1$=A;T?`DozKpTXP26oENj{0#a7HoJ_)=50FN~F{UCFFO6-~E?5$bsN5f5AwtsPP
zHDQ#(0Y|-T61|3+aEh<DO?QcfA8!7NHmbE0D@^~PrYIsUVRRcSNC(=?ty5-IhML$l
zIPe!ct5|}<(veMMzxZ#!DdVg?XLfMi^D#ekut`$-L39sAcm{w~LL;{Z^LBJv^rSn<
zqT4Y6rrpimOYEeBa-2Y3Yr%taoXNlBy5Nk<I-T4(W)pTVz^b({d!(leLiXTPU9=-+
zOPbvvfztq5s+%M`Bqr$U*Mr%Q*tx?j#^q6CcVi~%)Sl)fx1y;Idkxir$ih?)TsKXh
z@};j&?2LB0vEA{J8XgT!c+@XW0n9k9Np{^dwcpFZq6#krem*52a!B?`_JT{E3eI)~
znWxUUY`ym+aG-NTf6-~nWAbO(0g3LtI0et_W<Gh;4hWXg(yB(ecye-c(YU@e*mPd(
zIXBxPZTD9)EgxZS9O`!SJ>CcV!2k5)EA0C?VvDQ7HnpNXo0HYJ`-3^-{SxLrS?NB4
z<e*SDXw!3^-xTsADSu>r6Y#J@U)|NN;sL|3*)#^jfc`>?kG`CwlKu$p`>MmCZv!pF
z;<g)A$H*kBH-8OgZ1=)eCBgp<`zu(mb+1B>)ZTvwKYY4ZApoRSC0o6di5<H$SoO_b
zOLDpS?C)Ud7hc$^B!|eFoxz%Idlg~~ZB?zi{I~3oWJKuucQEx!U%sVKJg!Io8JrP)
zb88{#W_AX*MthqhN;z&kJBc#01j=*f&%wJt@3m%h-|2q^L3EH?^$B%sce9zCLxHbK
zKriSb0{4^EmFx6>kBc3}KFaoN&F-M%${L#^uePx}gPsct_V+V?ufIuGPb~=^YXATJ
zO{ywg7IZtn{su5)QCUq5Nj0qd6U!ibce=VTMgK9R!;j_m2rQBK6&5tkfpisqJ(yeW
ztKThQzaQ~xaC4QH46drdm@M0au+RR!BG@>|zb~hHDzUjLD><39{MnsB_gx*vUgR{8
zvZ)pX%7&Vx_I)zA;UZrh4t!$pIKO4T;mXzZqhRhdE9B5|+i3xO1X!mqA+rq>&D6{O
zi5a`h?p5M~Wj$xI!KbQS4+gKg;n`csOtomH9<a-nwCfA@GV!PI<=K_$-U$ZouwPzI
zP*gV-AMQcvBp>jc=YqE<_y!ljgfcn2`+yZ4;N7)B@Mj0n@hL9A1X1B=QkMn6rgQ(b
zGs!KQ#Mc6K5P&|Y2BR!Uh_CL`rB}4S@r)QT8*y^fhq>rfDD}x2v;LAU@{owO>PA?Y
z3V?1-JI#E4lYMH(tXF-NSfF}w()YrY$xROvz1sJBv$4UNp+;c!C8MoU4b#o7rS=h<
z7$w|ptYT)E%u&%_;+3l4yQ<+=n#z&(se6e{g`w0%Gfk39e=*R-Wvh;r=6Cm^ob46D
zMbX@#^0M+(&#TPFDqBI6#$CnNnJb%JrQ!OfUf+umI}c-8Vh}oJnC%fjt@`ae8?N32
zd~i>TUXH^t@fD|EugYd%unf-g7n&5;!kn_IaIXrqr?O^>jufWtqq^9ltt4r=EhNsP
z6B&Z7Uz(xc*>-Ugs;ccp0FfokR9WYlEyfCnOzl+(F)aD)YA!HuyD{J)TB`E^6r`7^
zyT+Iok9YMDFvQfz1GjM3*XFU~Y-?H$dqHBJ`gyvU?RpUTM!j${wfs(lK{NncP#eda
zxq+=W8)6cbmzk?R{nY$2)3>ZeBZjD{=a^x~Mj8Q-wwCL{cBQf}H-8UyRS5L9+)fFB
z3cr7WIp9L~^Dx?J7{#NmncHw)W}bRsrCIuaR^}$b_9lWvYr_^yJicKY)2v~Zx$$gQ
zdV7n~@`ZYRE|iNE4RuxLk(cme^XrTjHI<7YynK7FS}{JUC0CpB;Z`b1qXCsh^2ZgB
z*5Z!y%wgkNl&lcf2PQ4@8eZmSSY%ZCs^d1B`>wD*wpkmt<B1@Rj@aAPv32I@K~`iz
z2e|Cm6~z3bW?g1py{p9=CQL1>K+k0r6eJH(71ieWVgDj6QJrc``ysofK_AH&(=tnp
z8#v$HM){hLpKD%mHHsslR|R$g)}zWx%TZ5s4Gqe5lRmmYTC9%z?P7IvlQs`~{JIa!
zfGh3WTTb*Av)sNt+zTt7d^GtU_1h(5oKkP!U^csDYlFyp?O|SL({X1qNzyIY=FqX`
zlk+<Z@0-6@lWRwu?1OdXv6lS;r&nu)Cg;hrX8rzb4{j|CpBJ%35@wACa7G{9<wnmY
z=dv(Gw0wAD@ziv@OeYPuL<!g<F#!@{BN4wzIIvUHL#y<wz2oO3T6T#(4Me|Mq9s7H
zoK=nI=oQy^*r*G0!a;{da_)1wbbrs!xEpka`<Vmj_O<%|_O+~!xL6D8ntgU3B0ewx
zO)Ai76>;YrZ1IQ0Bt&4UX-T}V>^xn+IIheggL9fIrZ!+jz`uuvynMdy`=*Bm7lm=I
zksK&e7S^X!weUv0W06PeLQPTclm$S(ScoTHr?c<&!dC4?8T{}K{Zc#IUh(^arNETs
zY`xOg4E6FX{rCHEy-&0)wk}$4w*~Ku!}Q`i^k+{-D+fIwXw4>zT4pqEsnx?BY8lk_
zKmtDqhZATvA8z4^Cgaz=!nO&_&oo#3?qzu7adxuGPzJ={n`-Lzx2SW@ZD|k^bRuTa
z;OTnmUorK#<K+S>ke|tdtrLX_@LgEH*D+RvTujJIC9!un*BJMIR+!9(Yyv617<+nU
z#NGz77`N-JG@W@`T-<5c<MN}kxkk7@1VW9IZS-tC;vqi(b|C~9lLhI)0C5kWI!{k|
zKl<&;T2gi<tBar1-9GnDU18<Kl+Jb|DgmYOPz<<7fBbL5o1qHp_1qghCc5>yq3p-?
z`sr);F2#^!8g%v?FNLNU-Hvwx`cbj#^~PsC86>76F}BNONK`M)(mR%VaCa-;H72NZ
zl{`z||Ck?&7HD$V_OH|z+~*~PuL@Z?SaQ&{scPH#dY}8_lJe{fvwl$m_$;necw3na
zZ|ED}i8d!ZWjApfSaiPMwp(@YH~b8>_yKDjN6`XS+JCVwh%&Ug%_w5&Wof}#rM5q>
zs{;?;1!RD|PcGcx%7J?Ru|m&vE1gSgPFW)caLX>r&FtlRJ;t$%A}TDKBGym2&?aI#
zcyEHf#^FMck)n+pcy2wWGrURaj~e}uiWOo~#C@A9h3J8TD8W6)=>vbYfD$Cd7NduN
zTUqZ~{rNTvYe6ss+!x9i)-Wz1`%coAeC8ztVOVRbNRrh_ll1XBEdgq&TmnG_MrJl)
zs@N<;GxR;P;`84)a1&zUN*VO=fkmqcJVOHRkG@#HGROY{_%cVP+jJ1KxG$NmU!DDL
z;<VP{9LT^pb*DxU5AF>~>f0H*-Ar2r2$}o{4H>kJxF5d0Oi#YnMz_&CpK8^iYj`~?
z^UL$~yjyHp62BE;&c=UCy@|xys)c2G*<JA;youc(pj;VoRd!>?OvNVr&@g@E#~vW#
z@CcD+QCirDl52JBLi=h;Lw86dMFk?Um9LznQ=YJ*J|NSvf<`vWWNh;=&{XR2i{rm|
z-M*Ie-9U^8)x$Qne!PBqr7cEVvn`*g>>%8HFh;Bm>jR##joqV8Y+O6W>p4q&ozYYj
zgm+_}2Q@Hflumdh{%O7<Z7pnWBoz|^Hs<+*_24(W0E`PaOyPl)f<%3%sOeMn!WaE0
za2!`Q)-^=1Duf$>5168#TIS?uaiJhtW7!nN&JDQhx^4Q-QE`251*?4)W^kKOlPv-c
zo^-YBTRnGG+@^)J=PYq11lcy-CPF6bRp08o`Ege)wnD+b<Pg(G8hN-Dg(D_OW&fea
zyc_rPBKrfOtO{IY7*Y(A3R29Eywv4uj^rAqUHDG^{96Cn?Ary-2uwHVupt5`5uX#4
zusB!l&^w~9Xc?G6FckjF|8+EaVB9^o*}fG?1_<^l`YqtHjZo1Q#U;3Yw~`TN{~wdQ
zcUiJ}u(O#u*q3v3;J)4Xuv67{?aYav#=YZ)<t$<`!SBd$^2(v#=vB-8a0+_e5p*EL
z9MgA;&RgM!6F3&gUT1}t;Y{X^Uizcnf1NMA=MTUPey?NS_CK(ge8H<g&B=-R!Dij-
z&bZMN?MM`JEXjQ`RlEu6>)-X8E8^~PAGy^)utH+ZqGI3KK3sPqdJ0EvqT2eGerJg<
z2x88zguo{kpmGlQ?|#)+z2?7igan@}v@}cDi^l(`hYs`~xgU24r_1t%uq1Wbp)V`(
z!U&L+-e3`1^s%nFFK+2b+Z%@mwg_2NtSq^EryXd%9_zomVAL#rjTWIMe*c^P>nZ<z
za>^=$?DJ%VB}DMIqs`9O<5qoOC#*fZBKZXoW3fH{B(w4jFYY6OoK+yjY);2_SPN_Y
z(3Ae00|W`#Sk!O-)91eK2cXsRf^X|vecMW3s-K*b6p|p7OFEbXpN{*FYlzQO+H&p-
zkm%(d`jTh;@cS5D`iN2Y@*Vokr@g4SYCKHe)QpQqRUKn)USa!S$&Ups$6i1bG67^9
zO%HVmV*if&@dk^OZ|y~8cf&|~Sn%L3D<>4iUM2#Ggt4ehcsXK^58h}O|C=jbR8~;|
z{-ai4?d)!<$00$?5C2*>(ZAh-i&Xr-yqnFaM~|S-0bXvWcjN?w+=Y$znRgPlZt?kK
z3!|BZflw|<So^Nc8jQKNZ}T|372<FaX4-v*2H8_B2{NPMb5jGPeRE|(hiFdbLdg5k
zU?i6)!8q9)6OP)n`!&1MR-=Aj{bItQ(X`c(-N^djX(4N2+1i8~Klka2+jKzu$?Fr&
z{&aWEf<Twl$N;*RBy3&p%c1fUs^bCzEHC*7&n0w?ro$HNp`Gg}s~F5~c`@OWoj!qY
z+kC=FDtUFn%x@&0aBFlD30U@>WC~8}EUxryIcu65#m^3cmLS7ZgAdO1d6ZiVlT=pk
zpnYF299R!J7!Nwco~H*(i{!C@$n0`u(nV4z4#^y*mVXf%G`NEZhscCv8K@us2%T|B
z2MLfF2sV-(RN_g7WLa>o#i}|T3>5(7r*N6xaE874VM_DL332%n5V6mhdhVO;hY^>L
ztfi5Mje<?JW|%&8QTroGVm5J>w+J?bU6whOc$7Z>0h@3Zsl84L-2<_`%#j^2`iH#u
zvzJ*Ii;Jd%^`CSXc#0F%4fpEY-1xs%SP*9s7qM`o-RuFga6e2}``oWj@9pKSOM_KB
z{vJK$Oe<xX4GGr>4HuXIPU{JG1s7asgT+v!7)l%71JM@R%>46oagGJiqCE8D0BN%R
zX-Ga$W|my4ub*gj7D4jZ8bxPGve)Wg7wV-^wlc60RZ-9tfgu^{$ouu#WuANh20uPW
zWaUBLOJDZ8Rj1TgMl9-<OPuHcG7BT$2*+}=dg3m<W`M1Pt5+W`fyDBOnVj%cUeWP(
z-SenuEUDG+tSeZg$->TeQOHWYb8olr4<+EG5$4W}fAP`5&r@Wc?d`pLZp-oxOTO^(
z5_4bF_t(a)$U$=V2(#c6TQyzF6ScZ&8m6Ws@aaiv{sa23snLF8y7BrWqlyvt@~8EH
zVn1wdH?WQYCIB@j&C`z+cqyh1;6;K+WA{&1`#+}VCV80)o^>D@EC7k>vRS(DR4;8k
zbx`v=-lu!oiFYrTll~1=H4y#<*|-<`goDB`m}vp=HJ68WoX}l<G1&5dL$=KPqRp37
zgw`Chhk)OWt_WS-v-`a)sBDN<1oI2BE|Fd9{^n4JbSoHHCVDB4)A-ejDWPwZd7Pp~
zHaFEz;5fuNn6A#A6l$p2qZ+11O;hNa4Ey^bRnV4N2AVGAp{o9S{1`0H<fhPjDF}#Y
z3fu4|XzP<y-JsAbBka%n*O3{0A{5BL1yuUQp>q@W=n@LoR~4amq)TAah2{-ZEAtw+
z4bhKZ4hoIxgD6>H)@ddZz#15EqNp$CgeH&Nqc$97x;!+J+PEHId?Z1Fa5_VM-W>Wa
z+x|TADctx^C=VTYBK4<meSn>+1|&;rx|&}Zx^R^3K+7=(CUHPh=xq8cpG#UQeh>MO
zga<U2g=X_1rK0+9btPdb3^c)BD!n%JV3{paQqNFu6-J+wgE&=XjSU?a*p?QCtEb|B
z0jB{Au6liHXkwwQYb4yH@Vaw5mT<IlDnc77-P>DEmUOkVBJ|s_6i8Qnxp7QjU%;#*
zHisF-p+QBqBQ53xl&e!h=gViyP{qwKPoN`#GsGsQwoMHkm1*C=?lOKd%!7bHV2owO
zh5pjEM5_@=R%4q&r>5Ex!>Vbh(Dd{26w#x<D-UH*hGsC`Wu)9-v0g`&hZf4Hw`p&x
zI<YwPs%vk{*T8l1Ph%({ZI7-?_(?_R-J_|BWJ<7B2#$`|!}1EMC>*+Kh?PV?En8&&
z%FvY2dsM{HIIJ=hdz=-t`A*>c$A(7mov1UPE><&3xL+oz<;|f`uRVIfj`GUD(7e6$
zB1IK8g>GhvG9s2wY;qkAp=xZIOb5&qzl{mK+tt3NRp+zR=Z&E^T(M&sdyQ`pt(~Ab
zVuDE3sn(7TP1$n?!9zQ!JT%j76fM4eiuz+pXt?`eEq5H?kZ+fVN*PHS*9U7|1Ljb^
zy<q3oo)dcNWY>KgWzg8n)*_5mAJm4PJ`({Q6IB7r2@rs?Q0>|O(nazIjtTX5U2HLu
zFnBeEmbY1jeA>itD145ss%1;zUFcLE8qMCw_h>Ot!cw%UA@rD=z5|;pak*7Z<SN8o
z$Vj0uUN|NcI?DB9_h(E|CpCwX`Hb|t&4<rW$BqqMBeOn5`Moe%RhEZh-CkIVDgopY
zYo|J)A(VR>KWw{AWvNHzgz{x8X|cheL9Ypi?j7SQ20mBD5@dz5W8FJ8v@T3r*iRv4
zYho&c8BJB+ObgvV%vRqA6!-*ro+T!ZYiEb1@N@oZxlyF3gv!t`Hj1_bl&U^y2tA!;
z3k;~5SOf79Yej;%^2UU2cN-pBvS=0d6LY`2t}b*-wrx<0EsD9Sr-c^E6mQ#M%%gKc
zxw82a4n#B!5F2Pet{oTp;Ec$ZWCL%gnutXyo%8jqaiMv#dRbX5-wT~dU8rx4ZD@4y
z^49mmp<ZKcJ#99dOf|70bdX!4E#`y}^^Ir_y(#lOok<$qWH}J7oEGXcAkrp*@4Ay0
z3vT<$&@R`e{_KJN#FjP0fy(A}(Rra~<UnmT`@~RwR#PaC+1FyWWT=|5&<O?Z$JLW+
zWG4sZo1yN#C{&T;Uf${)$yD!-4OJdbf!13iegAAw$n0fPNhWF`)X(h>t=27Y>oK9b
znAkM5#Rib7ZkQ5U%z(&@Y<W_pD_tAfx7-R^&ZZ=_v?6q$J9bJiDq-}oW&`5WpeP&@
zx<7#;G7Tn8V$wjrL~gp9L$`7?x1Aj9F;CwVx=SRj$Bu1dd~@g}r%1Fs!9dgBTpW6k
z&m^t&2Q;e0LE(^QYmj=P!^#3adPZoO(=hhjU(qGTgvt)zOS96|*EfY4WcsJGFNddr
z7)e9*7+)A#C*5wTM?mY-9NOR}X6y4Ni|bD4vl82;R);ECA*Y6lSah_n<vzv%GOr@^
zuxKi61nH_%W$0`tXtO1ytB=Nn()XO_=tEm3hw7OI49V`T6|L~x=Fk^TFX6I=V=Rp3
zNvLd+iaRIti5tRJ%_UROv{04o5v`_8lDc(D=s=k^E$ipCOPWH3Zj!ZJcU&Z%Kvi<n
zvdvmeQ++Bzlbm8;lUX>8AsMGn+NjWmL+yZ+)DbUS-Ds6Z!m85L-)D!$ceSFCQ>rFH
zniDyn&@)aS6DoBlV2-6NaiZibzTx7rq4iEN%0nq@sH;aU;;heOQWevew!2q~I_suT
zqSGqdye3)QJ0|p}98zrxu{0mQDRcqThnX@m438&(CZO=B(#JK1o*cNhHmAv16qe6I
zQp6TJdYVd}9okgE^Aw2bcW=;GyvBs?kzKX*w!lh=9~}BNvMuah2~Zhc82W~l&~n*e
z+yAyQbP9)a+ohkTzOD_mcT2z3o{*w0stc8r?eSjFIOT&v3(!&9%w5i^A1XtSv{Anq
zqIa7@Z|71^>xB<yt6fv*ziHh!P$MkjLXdz}k-U(HysN*zJYfT0_bl{cf`m9ppao1+
zW0vT@wzL%p2CCBwy8G6I4H!mXxu}{}P1gE1PtoUpm9T-AjwqYlJWZ(~J@qXI1se!b
zc!fayvZ+9CM$OWTrv)4E=k_Pd1|BNT)kJk<hMqDm*uY8M7oY|XDv9-l$|X^ax>Em<
zu&0EUMI^18EFq?cFVdOY6E<*k<b})GT`*eE!;cr}9)H-zW#gKx=GCNH;??GGoqKf9
zrsrZE9{Ie^q=PM6${jS)($;U4404w|tAF6<tp!A8tLi0sB+X$EvKa%MWKfQSBu%_g
zKU{CeX7^)y6?xpc8f<pzs2B99-`MdkE~{ytG^q>|f*N+FUb(Gx-FOq#i`VKurUn~u
z9F7F@0^+Z15&)Ig^a+C)$=x3eClki(`%l+n`D!iOCwB8wuhXZV-*#LQNzBsgIo;t4
z_xnkWVUlJvSq#cgv-BqywEexf)(1VW-`ku(#1-DHs@iFSm!|qnhlPed-(8;O0RFc`
z#UL-vvxLRKX&L|A_MzvN@{43OSQIB`e<#KY9pkf~%#DMN6cMC#==6{r$yF{5KlS{V
z&B6>TD#Z_NtIHz9CQJ4G+DteWLCa<&sV5H${q(GTNnW^)6jQa0<7@sxfrWLA>*uq-
znOlywl?{}u|Ae}6q6u<wOINpUHQzT{5vH|@36U2`_)2MP=(J<31Oi1#dyc<`0E3dZ
z%#c&<V==uC2uoB|r9?1epJ)h5%H(@yWsns^{d835fBV~C7D7fPIw|ztiLiK^e)T-g
zgi~h%dSrSQ_r&y_=J0v8{r+V_z^C?m+jMfH(7(C5rW_p>e4T`*4D24dGM!4YP$2AM
zB8b=v#_kh3;c{EeFsL!gt6Y2so`DSY^T%e}2wQ?SHk3E~g-K7|E-v8j{xGX&QY;PE
zG3FNRKw+YNVI{)L^=SK0+DcnxAvc1?3E-~DgU*ex=clIoVAqeT@H7rb=pt18F`;*#
zw7>3)`L|lGwf5)4bbM}}ke??*mxl>^LIVUo;i>@2J<FLdFi5T_x4dsY>}`Kl^w$K;
z0SzE4ag3*^1J|1|V~-S;T7ZK!wOFwfb`H+VlFZQa)waY?A+{N}V}c+?s4fFn)~a<T
z)>S7A6vWNBA%ylZT|E>NnwxA34hvT`HBQ*!zdm-JEcIcRQ1<V(BmRTH!^d57o#~Zj
z3khLz`Cn+j0M3QHjNmXbSs&3kw0S4Rm_Aj=Vf(>sBuwGAe_=Mh-u(wQu#&RL?2W-N
z3>0Ag>I==OH}{a|{i}es!N#hNs5MW_;SnQ6mLH}R2&=8<7=5Ar*}w*3X(mh2X+P+L
z?y}E_-Kw5Q#&e|>9B(S5Y@!<00QN<x9{Fa`9rl5(EQb(@$;3se{w3zp>+JLXWQ=N_
zNakOvoOhBL_>g^CBviNjR-T$O%-eVS-&XU}I;9Firq(?xhM^LB_ct--^6l<LT+G$o
z2bm3T+J6U^O`;p*2~ed6n*A2rXT$2I5#K3wk1sTb-eRAX)P%7N*~+)%nf1~PT-exH
zCIT;_Coz>~(v3YNdul5NGC5w<i~9t}Y>)fAgH5gqubY@|t&v@BupF*yeoff<gOx*&
zDV|=R4xOcR=zKjrN(mlyIzruzmN1cU-V;4_cagaC>xqOXeiTdqcc;g6L$>GcZdofO
zuX|d55vf%O_Z&+Yd11hS-Ml>*lN6u$HN?LXQcW67czB7-hcu4-Z0ewogAv_4ogU5-
zK@W26BTx*EyI+I1QsS3yvqkfPbUFtsQnA;r|6g#|nO;hJtN|LPIgYzUtAbCS_XKz1
z#I}+C$Y|>IuLY;P=w%W(C&Vz$^34y}`A>N{xOBPy0o$bTrIn2zPkSXXWzY4&RaKs^
zZx8OkR5k9cpgt-Wc<}@{EQFXZg$1hK5Birz3pX>iQvoNlg3IWWke4pn9DGyfS^Y{R
zi=7CtY~^naUb?~yEV9jRb_h|35BNRUais_)j+}$3qHL;lA*%Os%$8|3jvQYtgHRiZ
zN)y4sjaD%9ya+s_FsoQ?Pco}2?PI_!m5umL`ok9X_^D=@`?2tJMj*FmCYcYOu|I`C
z(BfXyu2W3MTKlM=45F6E4@v#pzR5lX3POw&bNjhd%v0CcM=}#+_R3}}`&ePt0QE+a
z$#TK(t;5`N)wb?t+dx}R;&7Ql{Zot84d<9~Kg9POkRv!1;y^1@U!E?y%p7@F7a5P1
zi7JbdhN(?GP0>009?I;dlY)Y}3AM*Gs_dj(mAcq0t~tn7WW%IHr1~Zos>jEe56ips
z901e^0yH`Ge29HcYOY$`-_)-77inL$xyUpxwbFdas8M#F$^nzwtJwVWN|&C+eQkIh
zh7?INk()F?-Ey_L=6QZzh;_|+(VD&?iz$sN;rML8Q6rH~IVm~nnX^pAOSWDC4*{LD
zzusPC`mMCZ8Q7^r234x;#BBA_qb7e8m5_;9;39-#HPGV`>h~AT_@VYWK6fEo!8t5@
z&yfpE%}D#a6!xPCC7GJ?j5(svK85-W=a?KZY<<5!Yci=sFzzrwgL<`S-QzAX*<CtI
z520C=EHUD}%7sK?-i>C{0@rmiZ##a&+@u_J-(@E41KV`BM-<b@YFar!jah8QSMgr3
zR}IaeM|08(RczSAy<@u%ZjT*<9eI4E`E#wUm;k4SYB7CVz)fyawtC?T^XP`X%D^XI
zWtypqmU>EHQ1X|X?(cLFB;(+4eRFwrRRsrr271~ZS`SK&y{*xr99z<)iax-7>NI^@
zMQmD=73V-HQP&iqpn=O09clXr-Mv2cPTZnYZNZ>e^axo@Qp>vQ>1n=VHv+?47I|LG
zR`^t)A3Mg&g+QNpE9avk(2s0|DeB4Y`n_8Dg-m*!{F5f&+bK+eOZqtT4ilcI!=U&8
zy$Z=kfqK2Cx!n;@5Lj#xm4&Q<T_>7Cx6}uE!i{1zJ8XJ<Z7YZ}k}&Uo(&nhq@#67y
z$UZ{ih#in=I4mPyo&1j(_Ke++eDr{eZZAyDQIn4~%N&=9onBK_Az%5QW6g_`>`PjZ
zj=*N}-r=V9<j8X%ay9~}Fe68$pJ1LJVxP1BxUHrzy+B>w)y#HVgt*q--m6~7F>`0w
z-?rXS3e>0F%#z~x`BqP<4GIJ|pD2o!Qu#eTEAJu#mJ9^o?9d4C;Jn<o$KPQ)UHSqT
zZD_>#VdwR|H=62&cK*sVVwbRItIDPe?Y=kHKJXuzz^nx}#tMnpQ@4&Z@4slLa4yZP
z@MoKPF3TJ>CNi~M0=%5mY&EsOoW0yWb&>iw-nkC4qbv1kzByot74anndrvehK4DJL
z90vQ*0<-@M5ou%tN*SOY>}UGBO)I)B@!O&OO_KX<P8h?98`T_s{%T+If_r<5T`0L!
zjm<abueOy7CZG8VHU+H#UhtfhJk_<Ina(aJ`(^~9X%}Qp@<?@Rfm!!zn^xtkHT}#D
zZc~f4DrJaD>0?&6*+Nr>sew7>9@*+7Fy8m8zuK5*-fH`_SpC`89NM<tLRFn-2Jl<f
zMIl-M8S0h#@?>*aKRZ!|$o>H-Y>iUipJX<l<z|m~$txr!CgBLlrXbVJKfunO0Jf0h
zvgSn7p||@zw-};n)ZNMEy=?mgH3go<N%+eOi61FQG`|+x=k^+BRoYb<=GU|BGoj3K
z2kT!w%(ti6XATph)X!<=C%2|s)R;0{%|F=$?(8gSu0%tas)|$ksySDf4Lxjm3zBl!
z*21hpbz-ua?iL-iO#t52m{ZJKZU6=~L%0}$4alinn_`}D`vq()Xs&W>D^-|jmXEVF
zOMsIfvHnMy(S7aHvxLxK9Emmyvr5#nS?0&c+T^(6_%2Qvp<-v5A&1!Cf<P4yM=@L0
z`L~+?>(=t2y6h%1^T_CnY8uDcxRdQSn6U@hr@OnGtsc70T+qGE(_Gc-dNa_~x%;<y
z>a(lO$!&j|qvEeK+uYkk&n>J1h$xI&#fb%K`Lm|*6kEAvJ9oR9`tNA7GS0FC<*-*&
zM$Y5n#KG#K8_jiVZO#Dpi>kUNR2}F9iqo=Hx2sL%$5!H*%o-}1>jiyYOs;{oo6J(z
zTsa3A7q$FqGyin^<{{7|%K9!&9iT4QXnMuD&NhK(0XY`Y@rsjkpsO>Nxet*&RlMA4
zKw7?9|F{0=2wTF@k-{m)=~-q@+Shh~n;tG$Ij$jG_ut0Oo4(cK(GCVA=Bp#mGPQ@<
zDnQ|ujVBFAST5^@(7z_K*Sfh5tW{F}Ds{(krbE2_HJ{k3H3OLZho5AwIov)43s+f#
zuBq-i*_?N%-HmgrD#hdk#4Ssme|nG6=h&?{4}DqKsAVh0z|}9e$6aHsK*$K|NQjh}
zfvxb|-aU3qu#bz#ZOOxQ^ykridu%(!>4Oq|VB7We>E@(YYzy#MRMdsl0On(@GFPYD
zhr364u)1rbxv`Ud+G;|mC5ud7H>IPu4E0@a^TQlht<B89*hRjpI)9^|ub`e_>E#$W
z`fQW2j~n=KdAVEfS6^YC{LRjcLR={z$Cc_+Zf^h6R%$^{5=O&Wj(T38f>TVpE3JsU
zVX}$`Bo(P^jhT^RA7<~Sk7pk?pB`jimg^E3VvPIdf95JT(a1|BfuF@Gg=*N1CPv%h
zBs0K7;!;jw2ffzZ<USe{=AdIHF&%Q%KAGl@lkBfat{ete%(wjPJhOFEoE)I?)wt6N
ze;eNdlyA4p9>?~xA8437tuD7;8pBoNsXcBRYz5gQhMFqh8ER(LJH5vj?ksk2paP6g
zh_Zm%t?bj|(Mnr_bTrZP8%uIbzaG6Rx=7fF<cY2h`ZZU}lom)Jf&L5hj{STLk))27
zv&+g-)E$rOXQQ%~Aw(qj!8!Dd?)D#FasZLRAV;Mj*U{|9b#62;$?Xlf+)_v@3fvLP
z+Y@@=UzW~38p`5NMO#6-x)%J=zP@f+?b@4x<?ONfIzAdlVZ(snR0Ll@oCKE5iHr2y
zA9jbaun?V=B=04E+@t!lXn!z2v2`==BCuehv@+CBkLn$N_?DG066|2(rEZqZ*^Bf`
zQCT!HghW*7>Y7FR!*<eKIYEitAo!3oq)IYwh1m&;)a`|S^U1A~JH&WqYqqLA(R_E6
zohwmg5+dyf63qT>2+vaU)XT;k?D*0KRI$r6lts3-La5gs>R@`flSeG3au^k+<f^j{
zFxQN+weNn4!g+vsV61(b?Q<^`X7yLk#hdoI_OYGJjkG#n_3mQ2yF7xpiG+r}FtteC
zd%8KxEpuVbkv;8@t$O|Yc8TWfPBKxLQLNrP#4K<pDB74K>?zF5Q9BMY@4CmWeqW-V
zJIEYSU>hL`N9-gmBr@>9Lk+oH_lmzPRj+&=dViS3U$UW!9jw>z(8U!Ntw}66{L^-4
zX}T<QZMA*aUzQn-?s|Es`#Ae#NSzCMRh#b!rS-FqO8J0T>ZY*858*rYxhC}L@m2sU
z0y+zBky}EybhA$gD=!!N?$c+49`0bD$XzEwqdNp;A!b?V;n^KUIU{~7N{F44I!yg}
znmO`rrxP~Uk^oeug&KUSSv}9`a_oT-wUZxXc$mT^o@$D)0@g-$mUg{O=LhW5sQHRp
zuBpD&K9l7kiYSZ}EKSul+q@g8y1ASvPT0xR(tf6JzWuR1*0^oi(=O!%v(F8Yx7lbL
zf2;oEOq2GY6%3wGR~aUp$ZGgXtvStn|6f<aeQ8yjXg(vfyOma2pi=V8n@<1iTV2y=
zL4`TVC2G@9Q@_goSlYo|!s!M%Xl&chGFQK4MI{rOaWs@wKx0F9l1oh^mt3h|tX2cZ
z1?XMVrujRC>Tm9N+ZBTl7h4FbhUz=g-2b|L2(MkmgsC9@#l||Tj~VYqL5?(+Mu%_u
zVXpaOj{P;qay10`Oda%jby~9NcDsGvCoDIArTz|^L)LT=Qe&Z4X3uD>ryCG<km^9)
z*bvkPv7eS&YGWH)M@zXIK$k+WPKLT^-(btLu@BAYAcljI31v(>VSn!>0k(NqqQ1S(
zEEwHc_HVX2bRst?fS2Or?fQs5!1$=K7Ul(F%Gl1neOzZA>817}6xj{|Os1;UH|bR?
ze7qX;#+445P0~zYysPim=Ug54Za*85+7DHqoCUC`SZ`mJdgUN}*EXB+oK}$_r_rMH
zQ-mAl`nPoW9v>y=sQ&C#hZsA6UT<Bf&vi*ouz+GDv6y6-=g5e0fPUq%_`izU3!2%c
zvGze?DOq%7WSs6hJwADs&BWm&KQVrSBKiBr;Gq(4{LE(4jid$<z~EtD2Q$y|vO<a3
zbEAh*6%R+;@4<hPymW9gxj_i?0fK{+v3+q@a9g^UwlTSqsPm`b*gjEdl-UF;Bp#CR
zzPje3`03ZUydfBl#K%Upl05auoxweWY{3#4f@(OaL8vDKPfAxuJse!3<NsG`%SCNB
zSWL+(qHg^#c;9&QFzcOYq98&^#XxYDU-Wmd??B%qLX07>u?vj%V$0q2PjG3jm*$kA
z_F01}uI-V31{-RuL3PM*;31RcK7rp8)j?kyEV|BePM3~QrC5huGztzU{2a-j>62?Z
zb-KCJCWM?|K3*3o&cBPl(SxqDQYy9K81}QkWsUv(lbONT>7MCYpy2M6l4vt=deCKx
z7eNYD0pobOq|eQo6?Av}*HGQc6$@QGD>IYhw{W$2^Oz247hC38%-FJp!7Yn=^}r2g
z_Ur8<e8QaP-~dIf%gPkW@rUY7&6f5@UT%wF+K5PS)a5mqPd@RIzSwb`h%|eu>O1q~
z8@@(@{hUN{iA{OcJg$8!BvPQNDI7VZg};~x@z>2$n|;w@HYBUz(onD^|GB|z|JuvM
zc*rdrZz2IY8S13Z%`IPuOtgzA(_{aPLUnbPS@VWHFxx5x1$a$Nzp#}#O_5Y&*aF!;
zINLE-%#1bT+^xAECc_DAZB}VGy}dcZJ>E;H!Rq`N^W5loVcg0MSC%ydk;o-jg_*o5
zpX>4G$6om?6eoi@rKXO<Fo!P5)I?bGM)1(tv479$C~llK@g=x%zI-d;(9eAU2?pD$
zN)%^8Pe7!+_HshP`#yvu0)pS2S&1+cJQ1UwN!a#*|4lT-BVNt*&n2wfEMX$@T6`DW
zcVu>uc@W|24<!u!#3zQ#VRAH7b0RPlz)R5>Q`Nf96HfUeuJ{;RI+AydMzPC%vo>Mz
zNA`shlfVSFGZ<$)9{ZK|=uZo61O%I-qt)<QC~1>ahn4!+onFUu_Cl^U66q^J#@iO@
zWiE>k6^q&3g-YT*!YB5{oqAU^TA`?F+&GQ{t2PLaYN~2ntgm{;vRJaSWLJrom;I3i
z{_gDH7!_af^MRWX*jSK=!4$brpDn&SSiX<lc6h0blIsni;3QSNQNP+0zw09#4PtlD
zV6c#ori%^u!w+@RWGf_Y!<k9!W{*<LDleU&3pd!vO?+>hUF<mMoZzN2hz9AlSwGp}
zbA1+)?y5RUPQwp?2u$6sW6t$Iz{x?#p&Lx8fcr=GHhq~(7AhxWgccX<1iqyc=IZ_4
z_2J=zn;RqMJ9ZJ!5-Vov`?h%DK-5|ZT_dVIT_s(mL$BHck>KXSaG717+-I1dZ;#Vc
z4zQup@CUdX2kGEIT>Re-UEVHE(!oI{aTcB%u2_!TjSB@{tc$PKFATM`53~|fbhwt-
zC<(|<Rp;ERtKahh`7Huai9JkHqps1pF0mQr@m8VRsrazf88v#AWf71)p|6mMR!GvB
zqRf$MY=YV3tie$uet#~e4~{aocd+-}v!YCTs`F5D{r-_lu*(6c`eQl%VW^3Zw~xK)
z8`saPV@=a0yP@o^H@&}VC^b3G+{2#7{_5<^#Yx5L?LlTAcV%HpRfHqHwPMJ+&l%<o
zdlE++Ig*PZxjwYqeBy2=1okx$q%9n>s+g#*rR8P^mjHS@RIsPA?H1!gDLvbq?(FA%
z;XX$Fe@vT3N6ZcVb1g)voMq~xG}GrETbN_hJFNPrqgCgb2e*^2k}T#DmL|25rVgk<
z?}hrwo}MNbrBK2Qxq!3P%zaXyb+nT>hcdQF4kNH1Bt1am*uF@Ao7(wya-SDTG&n{Y
zT0s00zUV7|)c?7@bNLGgZW=bkGHQb+6}A-Uido!SGR*_!Hr*rz`v_@|v?e(N*!Z&_
z>eY92KI&Inr>LkoVYfsPv+ifTt&e!XiltuG*aWNi2QJeu)kFHPE{`>X2Y1fV?KhDc
zHQSRcgY!sM6W-H3s%=&*)@gPH!w3Y0Ik@y|oqt^Co&nm3tlwsM#9?<K42**?Lp{A&
zuW;$0k)o?`ya>u&G}_7E>HT{9f|jDDPjiD4LuR3_{9gYGtB<R<C`|m2yiq*h%YV{e
z9^)nM`cf@PFv%5*aYla+A(1OpST$L+Y#Aa+b`7`pR$Y|VxrXk!Ol=|x+(KmtIe=3C
z3~oyE>W@oG=v6@hXT9=6(5|-^OCC78O^V8fK9KuYaBq$m$_XqQB3SQ(_tmk{I#K1s
zr->>Cwl4qo;AmF@ZPsn_(ZnRlsgUHVnIXNkef(oHZG)YcE4!)zD1gPZ?bAVDdAxsP
zZnaCnC4O<D7{3gPW_b6vyQ|1BP>v9)AC&%IrZ3k@7fw<Az6tvE_cBKuBw;L4kQ4)d
z2M_deLOZQx!jtTjrLe4nx#t<5uNqsOK;Q{|LGS9`(Y$tDd{>SJW`JD=)_BBL%Ge~w
znQeFbM9%~9&<Gu?)R?6pSs(eRuMyAwq$+tC@e!HojbC(fivP$%Fnq~#&_!!^>C<7q
z=i{?DvO%6>;Y>mcRbzhBu>(6VO|Wwm!rL<I0c9?+X@C5OUKY(nn%9hJHDaqrj6OZ-
zPkn8oe;4_t2s>mEGY^wgcpsDKGL`cAN~;>c97$GGvXcb5PeFX;a(hb=02Y)~h?23`
zr5&bce;-#!8aKilg=$rH6Y`$&t^eqwXZ~%|ZOGlmYEC)T<Q=D^U|2rtuFw1{PNo9l
z!I9HfA~loL&k1^;UjBWNO1ZQ;N-t2p1Ok75l74wy{2v5!Qo5ubH|x}DGIGeBf^|<I
zMt{9_ZhR^f6v)N!ZdVNp9D7;S(YiF#S3dywu<Z@Wqtx6O{YkUEZ=t^Db4Ou=%OLX&
zp#4t4L*K?6S7$kk^Ce;-BO?uEso<cX>;ADz&UM*qNN-17Nci4s4hr5lFm}xi9cBBD
z(ES&wm$WHzcCHpWZL!*wY3^NZ_v$>3(%L#W;7Bc;rw%yP?DwJD!^`Xm0E3)b)Z0Av
zmVMYK+$eww@m#%~W<rbHFJ)hLtGqvkq*qc+%){|^|7)CJPX^)!v7EmCv7XrEvjS!}
zqfxQ(qADb*OTW@9T*f~(O<e9Zz-p@n{)t<3=Sn@Nf9H1}AW^sEgs!bbcNA}?q%%rZ
zcdyag&azS_ti8$E?VMUO)B#)d8!lNOCB?cKZs46{EQXpeNyV(!>F4{_h~X_vV}#~$
zz>oUM$@ci5SSf&pNTCewz>D70|D`d;u8)D|xy})Mk*KcPqU(1jEfgz!<RGSpXhZjX
zq1#VwnQ2kTE+Y95(?KPv^=tLTXZnuVT>~bb@$l1CLUBsNP(}*B(7EF~FD$S}%kJz2
zI2#CUT)$2?xRym)&Gf_A&&U(^@Ytui*EHYP5}Y=>+s2C8uv!0iif<buA#Qwj7@N$I
z2#B7a=nX?`Vfg^ozkme<b2#L%sE_OQAeZZ#4`8ihkzVl$($$Qw^wX1l)q){F1BY0m
zLfVDacEx&qQG>7AFLOlPPy4UaJ<s(`7Q2v}UyLS-^z=<S_iCR8vLq~YyfB|bF`uS3
z{t)bZGVZubZ6c}`#&k>q9H!~t2M_<(OWkR}jTAsXrMWSy3p?rLk9@92yI!n;NfJS(
zsHq3)Yd-hFTxMvv4qBd+OraI}^YfrzV%*1FY$`{B&g!5tvA_X&FVN=igFog*-y2N~
zN|RA#PX8`A`w=gs$-=)R#ZuKtUk7Ekcu7GSB#+Wf@aF39b-_R5Y_3ZQ{{|iz#-<{-
zOB8dokm;`mH5bHvw8oA?ejNt#DWEB(t+)-kZVuKRVcSYs(I`kl4<c2HGW|!q9Q2xL
ziwb`O)Oz7aUMNxdfyF-`oX{Be-+kIkrqRKi(E>u1qL^cnUkkFP`JzKOi0B8+Nl}?E
z2DiCFWDbMVe^O+(NP)^C9kX7bYy8-ekFqhMsUns8$&bNJGvX$>4_d_51B8(~E1<hn
z)&9>wP4Oj%;MT!ZF7tpdeafG~q@_L~8M<8LJ4&*Png0t`ukxaT@VIeSBaMD8w3I2o
z2jiZ%;|?Rh!1Jtb37{Gs?yx6=FY`Kll54pFa`3A*;A<v=1Nu~m+0^+T2j3TUxGBRX
zjc2}N8p1avdrJ~T^yzBpa$V#yM#z1(xt65{Vuy8_#N5qL`@gOai{|g>gNY1+BP47O
ziL3SJpZd%RLtIS1<k(16?OxT%ySyYHleIHOA!L&qw@x1(O%@SJj}{qS@{FL5q}{1!
zZ1d?fu<2kBwKq$o1PDyMRo_H&NvFV>Cd&b%t$@Ed@?arRMFaE$PuU|+?z0j1BJJfW
zeB}$e?|R>=C}FnrlH_44^**0lSrKGSb>e{VZ0Z>2*cLVy>UWoWJ|>IYv{yu-2uW9m
z57O_v;%N#7*xf{~WK_*vZ`U$?!YBT<;`YYS*np}c$tBoU)JstLkv+!cxPZoh?^6x^
zJ3`dYAD-8@N7Gk0ld7FHkSZ{T&v-%~_i?n<0sz4zFQ-4b@v_vP1N0HEdBP_MyKt(b
zy>fNUQqxlO@Yg*<L}6V8u0*#~2_7I8=aCfs(`#OAxq$_mnZiv*)uri|UJ;SCSPMch
z+zY=5R{6a2zUtsvX4JjAc_c|cB%cPd({L|L+d}W8)P?nC`$hIQg>_Bk7`(TMhazK+
z8Fhhu>MUz+YgM6AQ#{E&?gujjTTMY?UscX^bi92C$&3YUsio(bn=iJHteL3SL`%Rc
z?=6Q;6;?F$;gx3pdAolR?iH?_VhOoa#%Po4=qFuS?D}?fsi&?p7th^Yq*wL!x>~7H
zf^1|%RQp_KUVX~_U;+oZaFD~ciQjp6h56R?k(48xEutJ0fWX5Eas4HoH=$RFqc&R%
zQmDp~ekEPa`8#35<e2BySS1QOpx7Q!ydbU0QayJjoO_;^S@tG3J{g&keZEJ>VB5Vh
z=RF-M*-+n%a|T2_{GybHmr$);m@xQe%b3rrONnc!YVuyh44bxN(tSZ)eax0QwhCxy
zgo#fMf<*QA!wKR1n9I(!2^1phpUVgroz+u=UQfl;USi7(AbW0v1}Os+Ao*w0f}$H@
z#{Hj_;{O^yo_rLn!%Q{zq~NA2d~-|1iDuK_BE;325ffZ~p%;<@OEgK6d8e!P7YA|6
zV=7&S#ArKGn9Ltc36{?H?I>)vep@QT%=^WzgtXZ)i=MG<XfxvMMCE@ZoLOr}mAyg|
zp|ObzJ6ocf|EkVB#Zt4_?ST9jterYo%LqqN>6h!HKD4$iiVY6ej>C0MxkMJ^`1$(a
zTu*WVf{%&fvejToBC>zJUOzl4Eo)$lvF9;m(f8w@)guRbsRb&F+K7xjWacw^ZlRYI
z03b$_f<;Xli`n6Iy)e->mi9=dpeAejCpk4(%s+0@lLq;c?&gP)Px>k9+aHVcWJmVl
zwmq?<NGCJYYnSP{AK6Y~ys|j}-Hd~ujDbxWuTOi+rWoY<$6c+t-nr6Ym|+ioeUqMg
zZ~XXs?R6->tcEWl$p^Xqj~<}YTt-A{b$4U(EY;Px^GeL1B+GhDe~qL6WXn(!-6|Od
zLJ^<Q`KQ~?$TTjq{sFN8f0h?~d!L_c0%K#lLOtT7ekwaSJ1W6=)n;jM$9?9hgju)y
zr2+N>GqD{$@`7<G9XTTS<ik$GAF(rN&+_Ode?OD(;jO-Wgm{b7o>Sq-LxN8)^HX`Z
zgxmA=hXlvX@)Ejej}oRVhxzJ%5~kkbr)+k^_^ERFvWn^TmjzGWXT2jR0Da3E>V>tO
zpx-MW4|cZe_!P%KOy2#_ngYl74HLNJW?J%QaKvAp=)0{rqlFk_qcgF$ATKAz@@l=t
zQII3YrWHA<Np#A}+wVG^+a*?*&G%L~Lv^`QuijVWa{G${9RMiY95MqPybrsmgXnU4
zbUWT`bRLM^PxI6v$C}>mx2-Yk*dIe?9|v>5${0cKrVm%Y2j(M(ROEtHTV=V1<PP{g
zm&1qb<&Y0q9`VzQU`o0<lFK1eIbT2_ZlWg<cm`$Lllu5G_7?5IQ8@2$U3p^Xjobn$
znFnWBkPEDfFcGLN1tK&2R9BF+UuBhSF4&dW)3GIr8|=2{^x9)Puam+B5}e|#jA`nd
z$MqKx`{M{kd_rA4V1DevY!UarqR&Y0JQM>Xg~Ub{xz}V!uw}nTb=QQ>bDYrLBRHL{
zFCBvkUd?oM<pMqC2(e$v=g20zDj4XD0(Dh_x!2iOTMXj}H6p=W10(~-G$(S^l(I=x
z(6;lDt~TpGYnh-hqe#_Pn`d1XLB|aafh-7vd~hVA#+y@<?Fk8!b&-IaL{k9v_t^{P
z)s^n(WRv7*#~Gg}37yrFp=Q%$D-k#ydYJ2Eepad46*iwF?RnnzSGy`qnbRKdR9jeE
zLGl1)#+tD$Sgm_a3|rTFLocvD*lnxA%}`^PstYSjU7o8|^qF4uP_6Z<Jf^H1)jfi+
z95~L5bj;rUF<4ogP3zvZ?stFn(>U|x$+k|p9=LRiS-I-131*b*!0yK&JO++8BQS9>
z)DUlja*zxMc_~F|!OiBX%UiT;Vwv#bgWX7)X2KY$C}7D_*+S__k-DSYEOaE}U=8ZR
z08R^1z}HrrRR#9Pg~x>JtLoA3`3MDR!&TqO=7TeL*B|aRk<(Ma*-EXLW`1>_)G0+6
z&nGDL)obP(kg~itx1p@O38;=zA51fSvRhU%VSDv9N7M~j2e)8H+dt|#GwNOYGkCnJ
z$U4>xw>&_H1{nW^XC3^@3+9?%?JrojHiV@BF7XbP=HfH#Q!)*RVM!iVR+!VUGRxd#
zczZS4?}jH60|q@K>*l<P=DkAu1K0e$efpGabws)OEx+?796J`#1goG6AWI{0R)$*G
z!IXR)`%p$l`GJ7+S*D_c;{IX175}4y?_<UNgOm#uh)j~N!~B(^7I!tTuJQ$i_q0xO
zl_JA0UDe&J+!VXK#un>a&F06BZPBo4q*jIm@mO<Hhq#D5A4CbWfueHJTYb1W_$ONw
zLa{#0)h^#pCI+eeJI(ds*lB}0N&=%65~5&lH^Zu|gjSX`b6c-M2~V>rdvCwN^q3Gk
zsiaLQ?u?J!W6rGKvp!rEmA9Kdu0G!6&Wqe?>;rHG$Yt~TDzoy)Sjioan3xCXA-EuA
zsL>7PtFHce3o<~gl=L~j(!AZ>N*y!=%K_{o5l1CqaQ3=6Z(Gp&!1$NHWb@0#MJMJA
zkzgUI{Uw;Uzn8Rjzw-mOlx{x+N5t44-~?r9$j+CXC8)oe=Ym&0kIQ_dy|_n<!`0LH
zyhu3PdM*zh-|QuFhb;ruk3|A0{+yB}!RuSBl*ZuG=86&6EE+%&x#`FL99;ZU+`&{U
zE(ttAQQG57j(N4;=fOX3{F^vUo$^(1{OewvTMbf|j^ayK>%Iy$N6U$c-yK!SKp|4p
z_N~G6Pi-l>A~wPXYi7<$$;?y_tP0-w*>@&~=Vka-;8df|OI`}<cUcj3kiOMb)5=Jm
zU>#6mej*w4{`&DByoG5Gd8$g-PjCIk%dKhKTP@Pjl?x8kzqOD`+@otVm7`@I+)>wW
zwS~FNb4ft01%iWz9{X#o9`K#Dsnf2a3XtBB>jiZ3T#Uc_DwtmG%`9!qH)K8kGZ;Q8
zDs5%H!SXfY$KZvj-h9)hY;udTVoeG+0y?v{Bv{&C3|_m;+L>UOEV6I{$SX)5KuF_@
z!RGOChreP?Q0$GOLt4WZi}U)m!E4TXMJFRsF3v8-04J;No%Dkr_yM$j4`@;`_&mR_
z&fge&$2?R|Vl$#C2ZS#^Np;#5RQ?|Ozm--PVPv*8I?3y&R{Rp={br@W(on!_IFCV`
zNe;fv3BffF$6j@@MWhYpmTV6*0X+e8Jw7<};n-(?B<l~nqTw)SIE1+bs!y5|^vQ`^
zN)}24yRF0sG4_0QL-0_F7Y+ku!rQQTr3vrjp-%@tCfmGHj3s+ybREc6m#R*^G`R5|
zOA9IAxRnVqN&U1fcrt1i<(RXHnVB}UXJ9+sxZMsJ)eb@3mjx|my<|21wcz%N-pW`~
z!{#d1H%Xq=_*Ia7j-L|+VwCdmaVq7)I$$52x5-vYu148KDt(Iabn=^%*>aKIdS1+B
z`*+%e-0ggpkr62rv?s36MRiUJ&Y}+Q1%{poMg~U%(YQGWXnltThOs^YF_G7cb<G+~
zQS06bYIpiI7**XOwpzKxZ9h<t{nNJXEXZI9G74M+tT9<}J>Vj8;V8XnQS9KN4zlOi
zM1W#wqK~-wvgAAc798`XMcL8*+`4HfTwrY29Vac)*QEK5<x@F#UBc-|GXyy4VNf11
zU${>1F({B~E!0Oe*s{^%z|&M>+B&hnxw^McV7J>#h<Sjj*Cv`x!(*QrVh=)V7aM?6
zZM=B#<b1;3zTsN4>pXuxaa2YWXwD2;oltIa6Fq&V6nFayjtv$-S)TdzH2>nZ{Ft~*
zMwtsw^<_)sSoi5jXc|U{@UiCI5w>acN}TSTWE1Q{!ClV=^5t=6Msn<>XS-8QKmgV@
zCH+cO;S<fvqkUogx8Swymn1_HWDRSEnA5(Fi5!q*ti`V$fH&co1m&;h1!hHtFN@oq
zE|=9;u?{&!SxyhsnuFarNxQ^#!Td%f+hytqbIML%FG_G#Ia+KJd>!Jfe)AM_EB)PD
zdr5ejYz{cbzcU+0sn8*c4>ct)M<-c<=to@QWtE9$1c}eD`uS~M!Lcf+wMU?);E)>H
z#oYOw*KqPUsQmyyEt#pl{6#<cmsgvHU{{G;QBbPz3ibI#_fr;A!#nd~>yK>uNV)%a
zInW&Pqc7VRM772H(Il)OWA-smeCnGt(582g#&S>V-_DGE*GmS&c53%L(c^4-uDk2Z
ziSNZe^Rm_Q@D^1{B)sisq8h$ak6G`FqJI+VAVa_vPo43*-t|MYEoEe=^wSe87bG52
zP0x>ft%M7rR@;K9YT8bH)wj0bUTtw%q^}P4t+lo|$zO=sGXf=qBOA@5-AeQ29X3@6
z*ZmRApvQ>kN5eX~DL81qj>BK+ByhKEa7fj4U`5K%+9gLyGKswseu~23u)38=QAB*O
zkLD-DSwiJKk#gAo=OxT`NI9C@#)igx9{qDdRa4Y5+1jXyW_QIe37Z?OSj<Sgm4q8Y
zIa2Y29(hk($>lDk3jj<Z_Qw^Js*3N@#XozDmUu{+bfmOo#V>qPzuehIhH&5Jw7|7O
z9JF9Sl2z&3dPWqHB7R8RXK*ajf=%mmyAGYx)>)K55l0hBDPtp2mQC$D`t>gEMm>VD
zX3uwNpGjDps7`xLAKu9eJ@A-ve1*~v^?{we$i||$)T<b4v(nWGYxJYNT1u^HIAT}e
zG+<7?uHQP;|DsroHhrfExB^r_x{CQ&w>!xTW&0^6MZq-bDR9xc_jUa7UMOmwbE;C3
zFS&G+e(#v5kX<RrcUf0OoTRS&RG%FcTZZb0(^cM^q%Pm6k1@Wqpq^#Rb9WPZjV^fo
zoBEsRfD91SBr)xR-{1gM`Xhbl!M-#{g?MbEUB-|+<zsz%H!l}mImiK?XM2^dcJTcY
zyfFIeekf6Rn{Y{Fsz+Aq>)aP+9=dR>GKoRJ;=<dRiTj=s)LrV0fbe5EcqD_(^muq$
z!m{Zx-Iv(2F?&KC5gweqBnVDa3zU9gkvkRzlkJQRh^TSpKKkgTUR2cFfT7nZ4HU%>
zsJa}WH!kq<i07Tz!B}+LPwOcjsMD9+$rfyrEc{l#1$UQu$q4k}@sUBIATy`%*WiRG
z!pFkcBKxiYfYQ_-zXzQ!w53_(h4OU<Mz&9|sQ@$%ekGw|Hv@cIIr?@>d0S@n6xC@}
z!rfna$ZT72veK&)%y<7LPF4SXC81}ubX%Nny1M_Zg!vmi&bO@?>gBf+?)=z`i<;$R
z1Q!A71XZ}t!i39zv4rsKBBkQHlsy3*L4CAB&p*l<i`f%ONRoyX&QZZIZBlSH6wK3W
zdRj6U4ip?4q*7zwhh$wXNi#?M;1fJSn&GUlnAy1eeU@te-sNQ=(d~_q(+#Bk8z-3+
z``O%2`DcO7tS>85S?Q9BeCvBX>U!=sVRWZW2nwqv0A4}Ba(-@Ij}AwBLI1kyI$HvL
zyTe;O7HKP>TgBlpKpRp)K)RQxW>@KJmia_nrKGfqs2E5g9J*tI-u#S}V)5@Q&No1}
zcsSQ>(c8|5fAb3q*o{6<R-LwJVzJvk&s4W=*7xl3oEyviU+T|u{O<`%5xNq54RmtX
z3jN+mQC|a+dcVd=W=6)*m-VqHd$C3S1I3GA5ye?S?)aDV@2C4;fS$&@$4QKgP4(7Q
zdR3B_6_f9PWoq9`&tA}XM1365o~5cIx9Gw%ZA)9v3^0Q$H9Mua5s>Uo1ch38`(^s7
zxjqrpZV4XKE3VL&M6;B&m}hC~@Rd408f??24y(NLzz}Q0$&|ZT|MZW=b@M$iE;DhH
zNcokaW^U966#Id+d7-?=hr>>_+o;>+`^FCw!<&VIbDOAIsc&^qa62=kLejOPAASD5
z9)3vtwpS07UWupFdrpM%`oyPnpD%0(B<A?Gz+p6mT0P38AKO#RH0?b_AJWNYCu=oe
zAOudmO5YeAFm%>3eAnR5*gS7&(E3~J2ck@V9eT8+923vdmV5Q;ZP8=ARZcdpug5p*
zS<$p$+)`|o9LdGSV2*3jbyxYMVE>P<^A60S*xLA@bW%VC#6or^*hSNeD3XwnkOYWH
zq=`xhAqk{F3RO@<#fDh0Aa<%0kt&GoD)xH4DmGLURIp=j`2EhzJ8y#e{kvypc6N4l
z=9K3==iq{3{I%yd=;~|#U5fRW+NAU6St*CaL1#c*i!%UOE?EZEMD%1IPgU^^F`3i+
z@c>AK{0%{43T^#sUj<)<@Sgx3%f~vP7e_If*Kr@||0McDD_<z)sGB3d3bl(;)W<vY
zwSkxZb8AXhjmz{Qy*$s<KW{*%U#a(>Xm1dUu|>KN;EU^421C1A+&(fFNgFhciZPt3
zR_TN78YtT9_XKUGM8CJmy0=0|dl!X3&NrWRU$Am=SPr-gXB&bv)o*dorNIg~X!2oU
zC)XZx6_^i}a@G?uzjuh9OKyZj4MBc~fd8Uyy*Ec+caH@fu*kBT>TQ)URzxzj&h=CG
zMUKTjMN)|J0QCXRIp+9_!8&4<mw2Bdu3RflRecNf_61(tA2v6rUW6SkHdm)z7I~cO
z5G$@cgvTQ8#}ORUS5I1CrI^fNFF7_CYSODi^u3#`sf^4)u7(oy=hFdA!&L5As6YEO
z@?=~u$Q_ax0l(iRqx9>0e8a(|KD$8TbBSt3q5k-FE93>)v)!)=urCdre!Nb+)4zi?
z;C&?#j%{3+Q=;|2HzWUC<|c<!(`iIvL64x7J${v5aB*at@A1<52wlkRxAxSFL-k9m
zBTYdEsTAT2ez(U^CW}9`^6nsIe21?ysKPCQoO(ZGAb1=Yi(d&UlO(U~AKWjj`~f|;
zxO{UkprvJ{HV++e$o4)x<Ey(k$EH+dcRCo_H2>eeR{E4a9%o!g&6frg_`pR~<%hye
z`NIC-+b|Tl*{vn{e2MCwuY-|c40EPL2}DhkER0Xz3s&SuA8`C>CHUGyST?fbnEJRi
zfv$}{P+`}3_PB9)Fi<~bEfY2Cv@!?=`9%(TOkDURzi{9b-WO!W`JZS2Sp>F#9<5~4
zTO0H(^sRCUS=3h8j73TvC#j{2f{r7sP-YcYYR-dl0f5VH((bF^{42eR2cF!TDMIs>
zuI}Fv9G_zI`1osah)f8fZqmiR>G49)|ETCyIJgnAeqhZM1Bamk%6)ZXa94Mq9ta7g
zgw)f-N-y{zfDeODC|{(gZi>@2rL3eH_-L^9g6N)`trwc}z^A9s5b5S!L7P);L-y`W
z{A-gz4uKnFSzJ`BQ}4Cg=syaGVnuAs)q^X20a3h*PCF7?I$1qERd={Cygh@!b^b*#
z<NQ6vFX^@_T$i+zSc_1`NYxC$80$;)i?y~_p2==lYk{oP_(RKkC{B;QCTdxKTR6*~
z%e+Lo8ogh~y=?1Lk%Qxz1Z-XuWpvnd+D+2&bE0;CV9(2g4-?|>_4T?#xOQa*kju~v
zB&fs*`ma0fd(dxT`2?mLMqRd*$wT$RVNnaZTD8JyHtumKhw<vjyY$d^?5T&g2|{!V
zE*!Q^f*fp()oo1sj#1ALFyi~dxry&4fl`0z>iY+RetrE?Yq3Cyh29rTO!5oV;oRI_
z3y*1>s=F?@>VoLSU$@)Elx2cJ<on^|O;XpU>HOPmL0UfT5R$Dy&W4-_d<is<+n&|O
z{2UchBMzPxPOjgY^zCk1I4MDg*%+08cQDV7Z5OPY@1YBScL&6)so%srGts*P#Gd9~
z1HQnav3hRs*<C)lGt1!!!C~^h9E9H?H9Qz3kV!OWUhzOdFn75(>Y7{eLo~PIgtA7m
zSkdCB6DVeq1ZnD?i&^-dPYsmZHtQ(%UJ>XUQq|rSF?YP}^8i~WAI7O^+hg{G6AQzw
zC4Z0)U9>#ruid`gK|+3?9?N5%{Ll-BSdJiyVsWy>sdlf&jE=BJC!_X9orKRgS<xu&
zrL<LdFNT~1Q-Qh_pg8)y6w}>A$8+Rb>-X<C7QXqH8)6oPaV$c00CAC6#%zGMrv#hk
z`AH-W4?zkGT~wcRb#7D4UsqYxhmKJlnymMp7#6X<OQV8uM@4SE9sn_}pNTk5JWz#2
zd(kn$&YAz;LLedW+nAafzYwy=67Izl#UojKD=vyT`7-~=Z0k7_zAU6^93k7^i5V6f
zar}#6%vM%axmDCSC)I%sG5@RcU>m#x<C;(%0i>o96iHSG?u?0?;iXWfvblufxyW&W
z?Rg|-=EYu~U5#6%0Sz!67rdHM61<<#>AkfU<<@c<nERPb!_jscC?{#p?gH`+P=V38
z<JEsY)z5|tKIWH7rsH%1!3g;%o4(RFR{2_hgGgQ|oq_`q8Q*&U=X%R%FXP}Q6){~(
zm0cKXo-6Rh3lHuP@a#Sv74Gn0VVXK`pMGbY@6ox$L8b{LD^7Jj(tO+))pe2GLeV9C
z#(%o7`nG#t-!e1mELU*SC8;<AT`Ch2>{d}!j~wqS6QV^3X|%irZulSdec@+XG(Bz~
zw<D%ghewSqFb~y5<@B}B72K@2LgYmg)ZzpB?qc7mWB^paAxp0uF^|5Zn`-=<$Sw;-
ztSo5}^R?37*DJ!aAl@_KW<W&9VcTbVM|eEvG+}ty4}~uL$xeO!9RHG;RTbW~&KqK>
z&D7@4N<U6wf&|J#maSBEq!>d7^TlvGSdLi|s!OM!hsrOVuHO1QxTc4XF0(!aMo5%c
zu#?XRXYcf3SJ;&%VjZ~mK+YaE`^lisUMr{5lG15tAl@64Mh1o&vOl=sa39zfY*HPD
zpgc5D9q~o*exw)K<XFmiHkC1h$eF=4e+JL}5!HCCMcZ2*yTIigp%|cro%m^R{C7Tn
zD5(rWnBs;e0mgI{|9-IY4|@Yc%Z8;%^o>M#sE&I#C~frQtp&71F|zS=+@dM!#+^ZZ
zZCKh=#@~Qel*WHD|FfWYzUM^<`E`kEa|)M#6!dxBg}X;!sRKWu5}Tw2rlT>PmS-lU
zc0TY2>J1Ls^7<yZ&cB@7-&}u|y-tqDFu0{$2nKpdCg;+<`aPHULVU1)9rV?WHinBn
zeDX`dtV?}-FqBmldT*!_lGN;vgOb}U5Fd5gRqe%H!=|66*6#^^`K$e(QIWd_4^;ze
z%XoA0mYD%reQ8i~#H(W)^<^h__-l-X;tM1UD-$;mNoUDw#p+;Ub%%Wprq9+R#}Qq_
zIh>+8-W?>5?{Kn{Wi|1GNh?xp)RU`&ucvs);HrsrHFYu^PU53q3r_6XL59Ofvm43?
z=|gW|@f1hG3jbI8Rwvq#7Ec6Q)*u4}vwQQ!x+>ldkas8|HpBH~D6V%e)1RdJ>jcas
z3PcNHlerW0EZ2fmo3O{hJ9WUuv$+i4p&w}Qi7}SAVIo=&!)K)}|5V>H#%BmMx6djk
zT}@JMn6;R<^|Q6MIf{{R+BW|rxag~&3mP5N!m7nAI7tQKUHOObg-v=Qc<%%MkNvH2
zihAI=;E^y+Lr%pYOP0A+yM<pl9WZO|PeJ(?-i^x$8_Q9;!Pk>I@m=ugJ};4Ac}QKy
zVoOtpJR2M~FM4u`O?`p@E>uR32e>z*Z*}zRIyT2A6N!(phV5UHl#<ltuj*y}I*$de
zC&^La<|4%qTKr#qM6PXUF#~L4bwK1Qn##R*Gl4wv6g4hGxB4~u$01h3M;o&`Gj<kx
z<O}ZyUzT|*1R5wo2k<AdC9i6u)9$f<B7GMF2BE4F=zduqJG$y8UbOx3R~0om$`AB<
z9M^AstursO`Az@$;ZjuOmwL;kRwx@8dEjUfq?fXZ;mc~HpX%vtLc7(}<G1H4^H7_6
zvFop3bZ38qOHc`!O!9rZ{2sh~gqP+5K$TVu_0B`|o!#tp#sg|gRs{Z8R^yL9>jBr;
zWH}_~+WY`s0jCB>_2{eZD4Fu2x~V>ijzQMHqW8KFh2n0BdfcXff{GLQ##ZL37kwDe
zW&?R{QRM6l&vi1-Jn!WNbz`d}e27BwI|Z3v_SXyRfB})dhzuK26?HRl%~8oveA)k2
zG-vx?+tsvP<(pg9BCCH997l7VQfD??Y=h%sYJ`%)sUpn(^vZcAZjFyU3Pn$86FzT2
zf5e|_hCkyaXoB`#7!kRs@v7(X=IZ&8*KfhmkOBMyb<ak%CA|&Cg1!2OnRf1mmI#tV
zQWJrK$E#M!CcDz*t`AfL8!9JSQ<>9PBKUjfnTNYZt#7cWzi{dc2eQaW`MTsPGd|tR
z2A5Zq!h|KKcp84GlIu<19$sd#0R?VPN}_H8+370`HF-kaLjF}I=}L$&qH|W7em_Kp
zL~wRB)xa`}h@EKVYIEN&UPSPO><Z~FMZJBy$^Fv{TsC2mvrGx*;YnU<?)lb=LBBX(
zhTYa#8mMu576t25J^W>er1eVz9;Z9?9cqJ5Cq`ZHOFMzh$T0m0OGA9a%Y(7078}C{
z%&H5YzkGZA<Zrh%HJkmnXRu}9G9+Z3C{V9QlzIDZFB}4~pM_ZR6<PhWPBxvdv0ssH
zhcuLxlbFE=7HHwe7n%=BB8$(rh>Kz3T@g-duLrS0*s+2>=IN*X3TeKF*f)_lRxT!R
zFJpQ<9hvI_=3e_k#1gvrSo7wqc3|uS!^&|Dh7$ES>B%|%d|wdtkv-`d+ekSb>5{ZA
z^$`jFKiQc0KYd(mb9ar_^VV4(*FVMhgcn?(+ikF7o{DxVNq#&KV<P{H;17qx;|sJ*
z<0ICVpnhE+<P42UyVl~JvdYU!(Ln(&2_r+N$Ac;HUWA9x27nMT!PQ%XfyY^qC>Q(*
zD7CWrhy#E=ZwdC#u#l#IN>fzKEy3rm4lYuT8XwjX>;s3@j9|ib7GK7D$o^#AKM>!;
zx7-HrNc3xtRf?1e^f44zS@!IPC>L-47R3E!)jgVyWCGmwg%Ee=YpwL_e_Ej&CZ!Y0
z$qtgzjBKT39kXPP*HItYU7uN^n3Vr$Lh2Q#CT|VS?Bl1Rm=seAb6bE{GDyZ_?hS5f
z6SXPZPGM$U>2$%v5!!ldb+G3g+sJxYabtl}0j2P3h3@-^ccA(>uK<|XEN&>(r#$cd
zrw8Gi09=rmKSKZD7J-b?76kzJfVMYpe6S_Smv3g96jz;i|Ja&YJIfaYbJOhqiTWUm
zgFP6X6pUxQI`CSs*69x5&qTkL;~A6%1AXMT;HQyMcXzhQv+#Lxe1=qWkteG4e+I9O
zuyXX$7O+Uk$`MePicK~P`-Bx#wo;q72Wtl>FsvP?-t9>}IBi%4AX#WC+1{yY&ORM6
z!KzHad<2*bS(=d83xX(JJ)UI>--`%=c`}-5O$C5Uedj6W<<C71$Rj;LOtEWZk1~so
zYeqelQl43WMM(gQPPxXs@>j$d2iujx>fucRah!@?Y+m`ni-E|%?G!p5L5QZQ=@*-M
zfBI(@i}DKgQ4mY1sza?=+|A>DTlza>w2A6J6U^D&!{SPchKS<GaAi#SW_N<eaAi97
zE@l8HV^XPk_+$UPX0$WE!GuNTzA!r3#iIf_KBP-l*xkd-m@s~-xgo#6n+wfpWft&^
zGF@2JP~*WfqHB{c`9|<(q}R1G$yJA61_fPs0#05V%o^|2dYhgdaxkS6Filh^H0o~0
zcgQ@+YUz#-)mm%Q$lejV^V>&*Ew^-#>>VC#PrB@CHf3RLOs6JNf{M8#xMF^Xx~zy@
zcpvbXP7{NRgG)G=J{xGBx+dzZ3};-2!)TnY$!gB&#$4`YE&nF`0hpfoN16lkqn_RY
zuMDRTzF!Gk;cG?XU)A0`w<YQ@Cn_eU*El_-uOTNmxvsVO&uTBnl~68!4P}*p`!0($
zS6uIV&4%Z2s#_;XKqM2?@}6ep172!*KCLsrRvfB13eFHOa}mLCQ!MG(xn};OQOSGl
zn{ukvadglr+wsP;%{LGEhUn;J6vMNxLak19RzDMcou7mO%pAG^ZZB{HZA{w-{5#}W
z%Uj$Mn1Je<64P#;ZvzIeIs~>X5A5zCccCyIeXTkDwy1sm?11_c_@i?~6iHI8Bh0Jk
zd%s2ornR#IMHsKXZewm3*({_+3@?%{No@BHGXuBzS8QR(@V)rdM@E~ujlNwDf1o@~
zib5^!Y~t#@fTET#_*zV9=RfpM7y9e4qlin2IGl=9W>lTO?qXj)P{Z7$Vc2}%({z~Y
zXVmLmmQkR?U%KZSKWhZ<1pvfhBGJ+$jIk8;YQ9-N&U;bpYW70Z(l5?53#WM@ho2mp
zG-ETpx34)q>?9gcHIAC!^3x(j6Y7*@E}ZI{**-IBZ9_i(k~~u|%FEm$A6P*GjkG0m
zR<*y#oOQMTN@%TPaBzx<KYryEX6M~rlp!T%czZt36J5=B*Z8*|GKI{4W-g7~RP}OO
z^T1tRV!dQCLa=_%3^Cu2_M^yU3!?$?Lbc;KbLPTugF2}gWuJof{!}~j;1Vwy1k?r7
zR9XRY?9tssgj;!=4iTR6r;M3>vu`yJ)+M0nj13iNdl$1H{5!LFD#TNSoj`x-`}Nwz
zQ7IGbN*z{S1<5$mmzIW=dABxgFR}e`qz)tJcM7|2q9sOoa9+@ALexipwG&PSf>9`+
z?tg?ol;!{6lHjW+J>>#>fZ$lsfaI;uT@mDMw<59Tp~tJW{xGS^ciYRsMTbU9wgsJL
z)>W{z*hUHJt;NCDTf)$KP<j=jhTzC22|ig>j0v7D@F#re$Se0`7Hq<CYUxG6(2-Hs
zFSmL~NfS)<74}sm&=pe|3?J)T7fXJu3#<`)z>odt6T#HsUcK>r76O}9&)pOJdYsqn
zLuw@&2inaG4Z$80?h&lv7)F{b+x^rz!PqcTzND%V9&#wA*l%xb4Bm6E0EJ~SnsF7b
zSs|lLf_u(fa8>&dQ{|8{lGN}_LyIKRI5qtSvo<Uh{uO_`uvo|~xW=@*+P4j(l(B@^
z;|9((8~S@zN*qq4%ZiB<uO?q>HWhV<ydYxNkRl14Sj~jJ58eLoT(jru_GdwiiRvNx
zrS&Mtft;uo4mUL?d;NiM;@GNbb(NU9)`!z~q<Qgoe<p{J1`fW*Nsr0aZ-yBi=}&sB
zt58Z5kyd2=&4_FZPsT3yJT5HvoHzB}4C@3z$ASpLqD0&(M8`sb|1{6+b2=6c^U9~7
z+PU2bRt7elIj`zj7rFKa>(gxCZFIl!UY~~Ip7mQTTMiLiR!r|!x=*#23WVF`G@wnh
z)Q<fkc&Dp(_YUHGu(4S7u>|$R(?Rm*))$2ZZBe0_K!vQc3M-n9yM3*%nd6-(EgfaJ
z!>{^Gk1MxY9~O4OG+`KU?@C&v81<QE-&AX74+aA#xX+N3+=gUTlVC2J*}3>n%P(hR
z6u^-9Yb&wRC5wM{oax!%Tf5I=9VV#w@hZ8Gxp1~^%rp{ut+5}S$RuI#job9_vmMou
zuy08?m!m{<7pmR;C-~+{ue;<@-`mEOkg=%SZwXGn!OMnLk!%{;KM-SPKKy8~d%hPJ
zH?b1{iyJ5XVpQyUFt~ehhip_HbfVDu^s64G1UB4TgQe3t)Nlh{OtHwR4B=)2pCzAY
zNU44&#d|X?0$rS$*bwiJ*IRpg|E#n0?TJ!SS_#qsjg5&uqEe4Ku|r3ExO6T{m}838
z%th5KJ#W107N0oWWnyN^0kF4~-W?nEQ3=`D7@|+sQI)FZ?+c#j=sopW_2pB6Cd*1n
zSDn5LZa&mX{^p2FRc}V=q{qEuFS8shoO?fNv!Q0)^+Is&?bh{(wMPVgBEA7I>tG?+
zg3`7IgYL9gh<_T(SOMppuYU>K(nH02P0$qQgMe)as82dqKX;o4sz_K>Dms9Rk!@d%
z9ihvv4kK=4-;-i30#iv-TQAdJR$G_~79Ykd3|?aM;ptpGR>y7iHlJOaE!9zM8m9L9
z5qi2q<S=M-4p4*ELx{nR8Gm86{;)VQR8VRVsZeZXV1C&;G8*&`lWZv|o+`L+kkZ!H
zWED)Q(6#QlgfFvf>{nvZs9H;}3ih~EdL-he$CMVX4R{z5Rol`a;hKnBF0}zjDQ-|5
zz|I#4KnuJ2^dPT(40nQgrpj|ryD;MU%PdTYLV*N18%rz2nnjDMK3Ctg-M%%xj*=;L
z%(AFUxMHNn=c_5^wIeNxRGdHMwKcNgBf^4%PJQZOUQ~p~-vU<gG$o#79{SvaQh}mX
zu*S$qr5XC8+7xG!KlIWJOOuCBhG|%Nl8JoMyK4rQH&hZuB2g99B~GQCY7V^P8->kr
zJW$NT=k3j^HQvc&bGHC<*u)5C@T7L;mdCv?qal<Wla$7%3~n^3w|U28hApEYTa63`
zi231WQgcE@X)UA2Oix$CI-6%+@%>r4auHxa28WybVMup5xFOWARgOhYX5;<Qrt`yI
z9>P=wSxrGP8O72=nmX%nllGLqBbx+{(8h@r_rQ;T>M!2*Qd#dDvEnM1`60M_mg)F~
zpC9N4q&y#gqBzvj8Qjxnn?K%*JUY^)j*!GWA+&6Xx-%2c^)nCr>|2KtXxwj1b6)!E
z0p^b{eRKS@B>LN)QCx35!~D9_i>T`&daEP>r>m)5&G+H#nv%L2795U0zGa8rX6*{^
z_-o<yO;oR+Ykqyj`}79YVP1-njjK3WZO$|Azu-m1WfaM^%uxtQgIZl^Mu*#3uR!QT
zr)7dVd7Am~0pAqIyaj(s;ub~NE;4<t@`+pWe}&u^LVZg%`sgp5q9BT8H9Ms^Yf$3w
z1IFypspFmJ!{&pAh(RQh6sOMGqo1tzLVLOv3!hw=H%>@&j{ib;%C?-4oWNO4mePfz
zm%k_BW1Zz3*dn293{F#?3b%|>AM29K?5T_!$o@L+D@mvn3Z@;wmA^*5_l!-oBqAuG
zF(mj?-}*VYt4-A5j$jQ1QKI7HZlZI~YOOQ&`rJ(nB`EYm*?ft(L2r8}=usB6?RlG$
z;`Tzz=^_<IQ5BbM)JqCFU%cFfJO$O#B0NOyD|S!QdVNcpr=@U4Trn#Xv~;{6&Qmw*
z0mb1Sh_nEt#=f8_!szY#gVQZbEm{?ar^DVN!^^+mSv}}<hgr?TAr{I2vDzqy11{~#
zrTW98JMWgU<tc|0$gjl#DijmK)xUF{e(5Mrp6il4gcV5$DA*Hk+@OcXcxiFzG#}NE
zBZU&8&&B$op001;Owz1+8s4<{1bh-5?$@h(d#o(7+Nr#a<jUNzQ9qdA1vW?Dhi3Q#
z`FfKd)lsQ7%qDMZsiX&&3%MEeg+%q&>1R^>JX*%#ke(r5B3*TVNWWU*=aD1AjYkTR
z7Om5do#7kG5lMB^dUBW~S0z=Q^@MH}O5n+ZRUhIlq9t<lsPi7uyH9ttAEMI2joKt*
zkzixnhxP0k{$X;IO_aDY10m^P%>(+me*SUc*Js!NWuyKk-oL&($LWoo>!Xdj-*DGk
z9y&F<o&{wPc;FxGxLDVp;J+dZ*JV;6BN)=-E<N9PS)t?CvgWvaV&LxTlP&rZ?LH!}
zz`7b^zp&(CC95qv^yldw^bFj?Gd%MeG@Y<c?>Wc6;@>|Or^<+jbtgxl%<94r;5X!<
zV&67x)B}(35B=L`OjJKUsC%aR>G_+K0P=%6BP3<bLXu`RU$Vav)Q<IfdYJ3kCaB`B
zan={#3yofH(sNGoG%aA$WFzx(0r;Cux>Jb81@;(XG&tuPf+4l!UBPz7>Sf`lsJbos
z^LY2mK?Y;#Ds!bONiE6c@^46Gq>DG`M^E-EL-czaon+pKfo@u-&koldwrK=507V)i
zKCYrQdfu7t<?}3qJNT2(D&~u_=9VthC!Xs6E4yzFo+i(gT(u;1*CYDH=3F%)xoGhN
zq2zzRRUeUJ$NqQYAW=Q_sIETC^Pmo^s}|c@0@&=S$*<|_ODroX|DD|^96LB;MmlPx
zP7Z&tgMRfi_168mSGfGL<vO#jarq-tRnZ1rk?&U!Di_&&;XfAgK=r^{-EO2`_HvvT
z)>DU?EgP2*I~0+WKUeFQj&U?OBZyZD9?5-Bnawmc`F@=l{;{pHis31sLh{h!u>#bP
zb^3(!{RoPt@rSar#i{Qe(hJl4u8Ni=u{9!(j2h3;!|U~5gZ!v6>-g<i8mtUl8`o{t
zXC4#Y63a`a25y+;7oJ|;Y5RPgdXoQsBT9w8#qJqAHFv!}d6*weN$JFiSRH&;EY1II
z)l0%TgivLbm5yn$G(s$=(c5+2nSQJ;ob8eVconRR#;0^<NSudD8U?u8#;q9*?$JYT
z(65C@W4#r&Y%jCN7Cv{SekwG3dCIvm9H9y;5x+^t+jU83CGsb-8P|kt4{9f{%eA^y
zSN7;!<qkdx!du4#Q;6BJd#!FY)W4}!0IN$S*22CLr<QNfGqSA^v~CL(4@@P7^^#28
z<LIc8ePHW}l-ttVQem6F4>y?bA|?N<-}tWw5g*)~J)$u~AL!<r^EP<3gMk7?!@HKI
z=IznHJQH=rL-w$CXSvOgk>vtizxrvl{v+9M(1L#hp@oDaZR;AnDJ+p6zS3G+B8*r6
zTdm{6$C^`nt!5U8wJRf+-l?>^N{>nLy}Kd|fwk%E$&rMPdD$BMLii4}jM6G}Od4|v
zoU&S1h6a$Q?AhTS;f{N@zc_W|2L0+O;q4DA(GlRVblF!T*XwI~`yH!A*PN>ftMuyd
zu@pY9fR%MxuXo1T0i%ThhykiEMg@B@{+@3>(M4h9?eDrB-kyDW{{YYTO{b-7f*7F0
z+XU%-dq>kF%q*W<3Xg#N3m8->YIr+yN0`hWur4VH*1t?TI?*I$Oj4RhnB|m$*(Q4n
zE0L|Dz3CGs5g!JfKLrb%A_YfYn!4~e{fZ+dXN$`~1>h_UZ6##nV*&o6+reBEST)b-
ztFqaI9?dDOhWw&u^znBT)(PIC)<1w{z56$PnWG|ix(if;GFu)b!timA?~O1`$+i!C
zxGj~}WZ7Q6y(Nf@_dd)lat~|7Vie*I0;)F#MG01huTQ4M+C6v`lhsu-%*KzrH?OE}
znpoA?M7XCD)oGK>`A2$BUMA(W5hPQ>NKHD;j5^oz1)x<lV2l$71PPO_sv^w=A9^zj
zy{8^`3lbE#hkw?6!`K-QAPuB=qCf-U)onlNyMM6I04(M3Q9)b&l10jV?l3gsbEq0C
z#}7&$JMOwK^o~~}|2oG)9c&E7*`RUwb<gZ!`u^^F#M~=)fpi&Yih8=Ud4HWB=m6^Y
zg)KVR;nlSx%<vP#wt173-Vn<c9Yq~;xS9BKxYy<y1=4Mj`sxrfXQl79m{<|q1=5h!
zx#Vy&`Y+$mPMiBDu)&BtUOd2jvcXzexOxOZCabI=7$C(h@FMX&vOW!#9qn^UG6Zoi
ziih||6I91-!M1m;L$V+P$l};?;!W-_gz*JKt#z;9lx3a`#-?L)9k=q`Cg}R8y^aqI
zi~~J7111gZWxVP(Nxv0m9bvNOTnM_QKR#Xsvw}4vyg%O2T!d^Y-~sXKx{X2mBJXsE
zRS*+VRwetA(pLpXr1*F}6<L=DZ}f;(N?BGDvdujNPmY`2uLO%1Mejbxru`iB>M82H
zt-*%3?5neGGD!OeM9!3g*F7AnjQ70Znnj@|f~^fuW#A7;P<=a_Yu>aUik~7MSh`!@
zcr*)pn@;C=o{Z+;F-qV^x0%Pr{R>+bis@o=)Oas(bxA{c7(hv|6Ysymy!CR#ZxPhd
z5(+X~MIzaf9ZVl;BBy$+js#fvAJD$zRoXcw_QA;C1*Mfu45bcIcm5Uld+6?rlg*|b
zoxi!4psrBVi~(>?03r_XYMknoXfA!m%c$i$h8IJEF&TZj8Mxg`JO@6Hic{yun+qPd
z5`50oR&t!&aWG0@MxJEuyQTAt#r9dEC^>us*;w%7pJSTN>M|vPkW)6G-I_7=LX0c+
zT8cWU#Qc%uWkc9K$SV_m2Q{qFT<}}xP$TRL=Y%GclKzU#<%jq-h-?$$hPy|Z3-|jb
zHfZdy$UKR~Jtxcj6ysYlg|^ySX!^N>Be-jxIZyjL&=m1tmqD4}SaW2!>FTk*=A~}_
zmW;8kv;!hE_M9y9q46RYB5To>@Y+*nn#Yc?H!yu6tg&MD_^rF0Y`WcHXAe;*QQC?q
zMU-s5Ug$+Gvy=F;oJut1OdfN(xi;KXoGWr2P2|D^GwL?quDGh21Ie8=h+#oF^CYwM
zb}vR(ALnZ2A;buHuBW+hkrnd63gA>=<0fptpL$-hX<X))z@RG7PR+eye0&&VPQ2Ck
z>e8Wtk|wdREO?3D(e}p}lN%mc=q5kOWJaZ^v9ad(`JKOb7$r(79ZFjt`(W$|YV)xs
z=brHJsv65GLuvz<)j0K3k{R-%U%$kaJ*bMEj2HOm40F;e?ga#>Q&T0-a!Dgli+Ag}
zk64;oUb+YedUL1A>c=z9|6cH&N@YM|qjpk+={_^vw0q49ojr%rgk~qdTD-a<)jYJx
ziiuwo$$;ttrcTUxXeF@P58M^px1qyrIX1u{<@2})8J-;v1-A*CBk+XV;#eV%1(8`*
zu~zR7>2tuDtTLNZMWUq?bHPWi2JZ;A_4j#_l168<5%>y8YUa*hWRGyBU}?3K5}}n8
zv{?9MP#fl}kUEyle03=Hs(w$<ua|F`!@mw~wPZgC<?))ggAWh)vZCf*`MnP6HCIj^
zcQldq1+PqN{n2cn4-onT+z~;H1Eu`>XM)Q6eT>7I5?E{D^k&jNsfoQLcx9Fib#OQi
zDxE54JW3Jo8vj%fHOi(wN)XzzkcSiJ5>)&7!K>%n#5vj(5+^Gog_)+<DCz2w4}+(|
z>6@TbK$A%QMxiD>c6adp4bc|^`If_&x;8TDC=CrC2Jv}*(%A`Qg782~abl@Jl&Eg|
zIruu+2Z%xik)W6X2$1z-Fu)dI6f(<_%JN3p_E;^@lfkH-tKOewmS69fE;;zidsi_B
z5P<&DXySV{6JS=CHUVsd9i3|Sciv#4_gjumNX{lTS$g%H)MC~4J@fJHEhsVJI450%
zu!qXK(TuOOl5?8&jwvrwISKh{_MPU-o9#tw0yYZEL|$@<x^aqGo_o;EiP>txUFMPn
z_M-T-9NlSBhMHMnR-xbWX0{KNn>t*5T4nxAnIEALMdPf(O`n%sq=uK9ILAclhY+8m
z&cDlSz2%@sQH$)uyUd5T9&|B2Qw_Pt9JtM1EEbS_Et_Qy%(nC2HP7E^FBd?BBwo1O
zv?2ntW@-B0u2Q0RoH^HBwN_m3@q6oksF7C&INE5Q$9|9@{{Y>6gJm17#+=SgD^^R!
z`QBQ*`f&B1ai+vkx;9^qAF6hZH_MudOWi~<{wHe8PE3WtnGnOdYFcXK67$ovF7nVE
z0#7yokVlE=>&KZZKDS?&JXlxZ_|)m9Vul+Y3=BTJk;gaOHOkC9-%8v&)k9S#1oqaU
zVfk;>4O7e;gX}GS;;FbcgwJ{7!566vcZd1jeU0V;!SGu>*2L|x18TmUHdI|W!Tk3#
zd)fD!n5VYgY5L8#{kB}1!`0(&nMF4o{Jd<nVUgK((?J&@*6)6Y>Fd6J^V2B)e#SU+
z@oxJxztA#NS)IA|OxxaH%T+yU%^4~7T61&i=3P`_UUP$W^Hf$@Kdk}cEifob9Y4Yx
z<Jt_7;zPLQLih~fncY)m((?}*WMaNrbcdPa{#n~ydGB#`tVg~+WUNQJDQvMQa@En*
zW}90pxMAdf?LD@sH>9c)VM;Di_dI0|d(S>1)LV^>G%&I)7noT|Rw5aTmC!5JaR%k3
z3|13MJyCM=gWv~VG2Se74|4B05oVhz3fn97$QaY)NPG+2Rw6|XB;E-v?+xaVtD2wR
zyF&IMwx9#^{r9o#3U2RKdbAmG@j(+3KSDJuG@rUp**xtO*M7F#OmfpM`CxKT<*{;-
zCYV1zwck?A9aKkGRH46mxxzehk?q=M`G)zM`2%12-8Kk0UDeOy%!kK^h8*4wa@2kA
znOEI*&^#;g{Z;2Wv(^2R1?9phMJ&B(s>)-py6HkQGuHMq1W>;kUSUpf`#{U(TcVzQ
z$Go%1-iCcjX<qAT&r8cuPu7{zV?yHqjL{pf#KbCUM)$bUtaA&*fkf)vLK|g%8*T3n
z4=*n{L%5D_#tXnk;9wM0At*pjO0ha|rumPXZCL>m>-Q=ZyVSH@W^eCb`LVo;``anJ
zan^n2uY0V-|B`VT>XQe}mkaGhw<P2w5qNiQQjvPT(!B65wBGDOUsjsq+{z2BNy*yt
z)i&%frY<pame_tXS(Ih$YQP>;?%igQtEge=(#m@?)4e5Xj#G;zmHoXrwyoXs1nAUM
zPTe+@N8$N1#+w^6ZD$#^<LjDKE`=m7sW$KZeJ4#Ete&YdzlQ!LLi#mQTO=<vQ@vYj
z{^w2|n|Lo9s!~@hGq-KC-J)QVVhY<t6Z4cc+1%v#vYl!WTG^3v%vEl#i_wpSTDwrq
zn`yeAV|yUhMfe{)TVCogRaRzldfUtLC3}-BTw1Mi6N}WJm1c||orCx19yFWb51*Tq
zuliS+uiVCyOYvp?4t2&TGj^u!7oOOv2EMG_F3=RxhN+3yn)ges(0$3$D%rh0nrcdh
zw!BImbw;VqS!qh2u-7dNsj0E5rs{8JW(m#)j0B+r&r2Dqewb*UauXivzo~+<G5Fuq
zyxiC`FFVYhk8DDM2d<E#Hg1rLo@8Ei$GYExN2rZerXfTL-{K?ZsIw=S?rsZeo`v{A
zbwRbc(rx3-my>eUjB(~yce!~>;cS1X$~^a#+dLd6c<6Oce9A=cJ7^k0gU?CKXfgig
zN5H<`eZ09N?VnSWukL@_q~B?)xD2Te!C%oFak^hk;N{TB=r?V`yrdXo%TQ~B3=Tr=
z7uE;ge;*MN=CfH#42E{tw^Qna*N%)lVWcespGB$i#t=(#UR<&IV1$WsyN)mYsnkf5
z<cRHu)JrZTj&ODSNE7AO9J)^Ln!QpriK1pXDJ=d8rpj#z?#tCkJc9)sSD+d%@S966
z3m6qCwBM>W!^{)7Q`vPwZAyVRRH6f_-PfB_R<)2w%|ZMp{AjA-YO?_~jOqf`oh&wM
z0dG)uh{>t2g%@mJ!9n$?3)N>4=D1QT4pju9Ss}%8y392X5BtaU{;K>c^WWjr@+0jJ
z>o=TXo36fF9qgUpq4+H`Y;h|czb5E2(dN<O(P~bK1&Y(05=)PkkhHM8l!RFUs>Q2K
z4+gK@<gsY~K#XBKlR)YaW0Lht-$kLMT97=WFV<~O_h>T^5~%i|I&HC+isia$Rr~e*
zA_Hu;;>PlcltU9&lUfrWv+djHAP!Qo%BC?)6~Fyg!(vWb5FKEEWR_Fb2MDMmn^YwU
zF_RWixS~HewfdTn^+YwHH1!5#;P+V17zn2<ED<OYQZU8OY#;Pm;8`1*Ym#8oz8@W=
zglm#CONbM+Jt|mwxo^XY7S|=gY<xN9x?s+ImeYf>-?>c{5+$PsDpNB4rC`#^$Z^kF
z5LG_a6Qu=ykA2q!KROl=1}*V9XiLOq14OD0eIqz*ogcIOJ=RkWMi;l-6K4fy{@UrQ
z`)z;d$h9Cl7zIC8no1oPeEvy9%;g=9&!m6??Czy%Xi|T5;m_ueP3>D=8>Bk#H@(-|
zYdKIL;5r$~5oq#bi|#(CalShFM^m)U-B>k-55wW~t%_}b_d)#?sQvp*#)I}+e@wS2
zfHswC_jBx<pV@28mgUg6;cClYrhAlq%pe>4oi0Dqg3n_k*5W1u^alJi7&2XOV1VA3
zs>ONw({nB8%|hEyy4(lGuZy$&&2#mQE|H41m;xNyPVWFSjO%IW7=6;ok#AI5J}C!U
z5et`|X?uEq-MP^AjMp*bVqmpdC|Nvlhxl|e{!fovDyG16xe)PzX#z%*oM(=1V?E$d
z%g~ncB$R9?l17FR%%xZBd*85Sw2}JH6vA62C8h$6SbMGh?)RwHM|ThcJMVIns@T8-
z%9rRlPkYX|VqDc_9@a^|HNoGf*64?B^`x=Q#C_P;S6!)(y2n%ckqj$44<1qe?#Ow1
z<x(#Z-4?_=`IV{av>Wu=o4w#*3LG};udDTz+rm6XY>hw?(T8a(e1DJD=)JdiX)a(-
zrdDY0DA#<wKI<d@3Lz(^kJoSq2#Gsy(@VES&F<|8gsfK*A8is;{Hbci)q2~je)@!X
zXACL@N2yG1syc9$p7yerp3COWs}MnmQzeV^&QJV94}KNg-49RHeQvgc<!cLvaVWe1
zf;UY)(%#Jf%?BTZ(5y}nj07h5ud+IsR!(L!=UgQ#*r*7h)ZP}fIm5G2*%-a+6b}lp
zxU+Tz%P#e)=gnYa;emk2s<poLX7Be20s3st1Y%e^F8Mx~a;+CPGptG56t(%M;Fs&Y
zFq3o&aoMoZzWaT!<qH463>2KPLVklM2;bF$*Mm*NgpoqdGE$z&PZOOmeIzUq<}%J5
zf5eqjt&aSBs~J9dwfW;Ad&Z%+01d}(wpHq;Y%ph2p~&ju;*G%+6SqkEP?hqa88_TY
z2G?;G_6C4y%{Vf-*c0w~*nBy}N=x=i@sm=?QB*4CHWNKA)JWoQrF1o1RlI3ZCjRZ}
z2sQULbA`LNsIF;RZErgMmlg-hRO>g){gt*WcZye{vx%ZTpwXN;!oD9hdBmKg{7TcS
z=D*k2dk2(`k<(nQGJlS=7nrt^CaK1o!|-};G;yPBTk0yi?zV3<W$xweW6FCsmw<uM
z9i9jE<RsJKg3tpS8k#~|nR;rfX>i&p6vs>^@o^rUzuR2mK1>Gn>hWta;?-MBqAL#{
z^5G6n%v7a4&9kRk4IxbMH#i|r-E)-5>+ST7GV99+?N_M=p-issWgc}ErU+_HRQU<R
z#PUtt>27XB?+R^J`3c49%?r%4yR4*;)KJ2^e6oW0Vd}@@O>e%0)KD5v)$fA%5;fx_
zbB5D!1_@VU0~z-frK$ky?Tcg0<>%O&DLhVTB8+EMkd&uhI^NvgQn_)pk@4A-A7>^o
z>+~Kjn1zR8bd1?ma`4skB5;f5(qj9CnibciZ1ws$Gvx0oGro#@E6p}8(=)+dUoNXq
z{dAo9WKgtVBQncz2a<L}T9aUP2hTURZ;d>;gh&(RZ>ntZ9n$lOTjN@prhWcB&|uHZ
zkCbp21s*RyE-a;LxL|B-pK<D)8_lt=`c!)%EvY3+g)9xI!d>-d&B?x<&7`y;An7zg
zEo?Lg+InGb)0i>hjhB@FB=zI{=J#-3zfk_*JH?4fJAis$HJHkdzFkgrsnBK1jtWL5
zRZW{>-abu)GAZEb9g|%_dZzk0%Jdq*q!cU1stK-Ba=%wR5`6uB<Sk%9k%UwTqG6~{
zYaR+ls;F5xHUY`z3lq;2fZ|!#1iwVscqT#oLF^YG?g>E1E_%H(i>624;fkn-@WBd_
zTwLcP+MDG+MSs!GVh1cR&8GiD!HW_{HPP4a^!3$U3}C3EuLQt@OFny(zBMt7?+Gyn
z0}EomKkpe`9;W!VDhFWevZ}F?w2agJ^i=cnsU8bq6JI!k{rQDzfF|}_d$W6rA9P^|
zk|5RHiQ}w8lV9csmS5g9L2Blp&`>j;2zi^IbpQ3yiPP*mIbVjf!&^V5t=ST8=Zt_7
zYGC2aWJ?qn4QZYo%&>|6v4gAdq)=DE!I1&8fKz*?quE#CZy10fU+VeA1rIRdM}0f>
zxWHn7J1La^JQVDq?*uh`zy3MbBTLvy$n0ncY-o*wh8O`wUu(0~MvC}`KB*d<4!V2V
zA?7+aE)GdF9!aYgO^fN|Gu|>K_&&=98j7>{y$Gw=C7lfP3lhl==A`uzJLlS}D)Iw2
z=ez;!8BiG<nrCy&M3rixCjhT0yGh^piq!;!WWdX$DpjJoq$=n*JL>gcVUf(@P0PpD
z(6i!LCbV&Lnn~Tz>Cu&)gpeYO&@m91L{d8v)aPdeYwMzB_3I#+dBo-<bb)Sx;k4t1
zV8LfmhwQigp_G+UA{^RwI>g}Z)6W##Wjln<PI4&N!#(&g(Q?Wsb_>=Hje5OJM;VSM
z`I5%TYII*SbCWbaelYHLOBMm{18iGnQjV%EG*3R>MI>S+5Dx*ZotZRPJvGdHeviG5
z#%=!zwIajZw6f(TdI96E)Y?q*$#N@@3OT->uR8BkbN|iuG8KowG&%b@Wstf164#4_
zP0H(u`SDzVHmh!Dm>2G{G8s&crSX}jGUJL=L$>LCi<S5!+K{&>uaEiWUMnb&ypM@>
z6gE<qoNnT7?Q(o!wuAn1c&h#wAWJSa9X{t?$79Isi`u8uuUk!H{^2qO88vu9fhc6+
z__({t%v@zV#*AS9RO-A*X2$)t*Af_Jf>3&S|F}%G@J7>iv%Qy;*;1>hgLM&SR3>Km
z%eiK<dt>68RpU6yGVyv`l51{%!VV^@DHMcN84sAczIG(IWUIvk&MAFCFLTqSw)5tT
znQ<k`#G8e4?R8EDIW*;WP>IKy2b*Ax9iawPH(9PEP-s%OBJ%;=lxPuQe@lW&S3h*o
z%bxW~P*O-&7@Gw5v-yKy!(`7ghK?YiFVO_!RpGAS^(L<gVirkV3G_hFTDxBkO0Ki<
zM0pM{s89@9h>zmb3&-e7w);m(;nrz{@~6PA0gF?*`tNVS)1P}DC^F)iOsbmDG3!`;
z^J(zJZeOj7%0JdXcX&zwI{bB|2ZF&z``}+m{WRGfphF?)bw`lC-&gDsp9JAr>pO-(
zf`9U@=Y#KlwFnjrK=CBi0mUS{NYv!AQF{0XKBsDkWFT^#$a3u{z3?NSbws@luuV3(
zi|iW=tdt&R!6plC!TKgGLHz$V8I8Yj@gcg^QI1c^(+s<$1n86nz|~)Go#AXo%5F=I
zKpTAG0OlM`xY$(W`%Ke(z@o%y-QJ8Mfe{w}ndw#Ep}Zk-7s;<9s3b|YHHrkf!qS_}
zpNHF2R3yXr<w{9*kQ0)QaS1eBV&1Fr;uZ}P)U2CK>u|&DiIw%GnEmNYO`>{ZjoF^+
zpC-MLJ!kt%RFf|@b6n=DJdXW?=?PW#;ei~T*Ij9j?C0O4#RJn+?E<qP!Vjew+hdx=
zz497hgBs_VFHZIuwVsTL0<x^gW4_Q+Hn-nXWs`05g&wl8(oYV+Z&Fb|(;GhbH^`Cf
z`UPvBuC^U(@~&*(rcZ=SoCC}gR%S<+<Y0gir#G3KzHWak>AGa{;^vW@77}?ugG3dX
zUQ63|mqgwnL|Wl|$pL|YVMHPkFg^zM@JV{%i=J}YIp)H=(%>faD80v#>hy=m8$H~S
zf081P9&})iKDoZrvy(eX?^)$+t#Y=}aXjds9_Q(YR(iIc{zTFmNujgpFB~<bJ-$?+
zKVEH93|ZF#scCj>aNgWqq`!aFuk8M%4dtOit++kVKF%JcPuOOqJXmxK3kQ=Y3xm~|
zGj;SbpP%RvKawfP-&9_$KOJK;1!?Is*3jvIIrSQ&Z!B{n@=fdN9nwRJsH^RJ^dl=e
z-?_~qQzS}I2Pv!Mvw&Lx928}iUEy&nlC>tjSPRohR<9^?)LmX?|6aVb0>w#GnXS#u
zw_6d)2$*2&b5(J&6RDYd^!j`41ChxW7Z@ud{`uCQ=+l>Ykt`H<)JQvgBk$-_7uy^r
zAT+?;>Z{19A`v%EWp^-BX85Ny6K<3Kf?D<1cY5$b*JqY>r<PY!BR(GLdo{LEAG6t3
zfac^D{--b}4Cvnk_0@@{WMf46VVy#HhFI0O<M;}v^*4P_wvxeF{L?Uk$q4{R9u!jJ
zT=VJ1h@DXsQOgoN!zG4+!cI^R+-I&>WknW_N|H`_tv#Q?o$>|MDRWKXqZTV?n*x-z
z9#i^dhsnO!9J40e*wz0bi5~=P*;sR0Uz@cqDp=jrAREUY*h|nC6e&+Ji=MFh3(q77
z2?c!U-;~DufBj5VzRgVMnXqtGScq(zcruUPXWpD*pGdzFzm#|6zk*o%Fw=djeSbO?
z{tTSsbv1xw#r?B$togkl@^Cn~WH@5NyLOCp*Rf_pxLu2wDuh(nTxX}64^HznyvS)T
zpG>YG`$w{Bb%J@Tj|V2YAKBMn!~Zd8n90nw55yCkAr1?vek7%DAOd(R81_}C&1*Y|
zk`XFTfsxAesOQc#P3!F`PVuV78e(*nDl=iYsvc-&J#DXtm4<{7>c<>&sJjX}h%|87
zWipcr)zV>R`cixMFwWF+ce<&)!_2bR?NvvxDcQ&Bqfutv0|$4USgbD3F=vT3Qq1nw
zJdB}gc8*#8EY~?0C(40qqW~Fkc_jA7Ub*Wqt6~Yk8LY$feaJj>-WJ=-z*>|s>_e2g
z)XU9P#~dbIV@}%e+TdK1@UXotLl6?B_$?C0o2yT<H#y(G_}RTmb4#)5bFIBSJQZMG
z`sJAi-H3DQ#*IU1O(;=Q3(asDEsqKr-fH#`({C1+sHa#5GF7dJh<)`mR4nxJ^70VG
zE+Z{N{qJY<#s&sZfG&@71o}hucI(*x{^Z6qjm&oxQ6L-ZE-}ycvlk1S#?(rJv??>E
zyv9EDVC6bn^&4bHiE_>CxzK~#NiwLJ{K$vq(<|)r+)8rTDW!V9XO6tuUdMCN7}}H7
z`TsLpXWFYA9WI8u<P(!R#a<df>LQt|O1-$${P-=G_=r^%09iBRhN^{G=4LmzoTh1(
zk3)Pk>f^CyUN`p`p<M_mpcyz)o_x*p>tl6L5=W{kpc3TvwUf*=xgGmKlwtCk)uJ9|
zGq@QpWz?6!lV7SbY2EJx^S~JU#zc55XDtC~r8ahqU2u$@b+PvBW~2(gGZ%J0TviaD
zTtI#5h^x*0Kie)LRRD=;lQ`51+2*Tydv#d(H1~t3^UgHUW9?&dNyeGxb@7b2LY2EP
z_PPEHH4{6D@?;HosIwDt)xt5RXE`l0(eTP9xbKjiRG@yCYWgg(y}Jc&HMLAas=rm4
zht^p^sN$5`KFQqVRyT@xc?iEM2E?uBnESpCjYjOBuw_9R=gWuM*LHvf`}e4MFPhR(
zZZc$Fa<-T{a=A(U!F~~(7o6o1Y|MzuR^7Lnilgn_(C(w)-+YfL`P1HKtE6}%=CcRP
zm4_dGd`2egd};_wuQImBu2|ARE=ru=QlY4n-m%}b?<m(wDoOnho$Knkk+DyoW-n*r
zsF)CB!Tu`Tq9p_`JI2SJaEO%^mrrdFm0qb)dt-Bkv7ZT3W6c=W!#kgws(3ffrkVzc
z`KZ!A%saVU!nxDbFsZ3-Y~7f;suuJ1ZoWx<%T952sECLB#Iw&a_djE=lA448z;9Qq
zc9xiJZsWr(+2H1JS&`Z9{&t(E<W^Nxi8=Cm`z>1ja!d&MMB-Rfbsv}!^X&Y|B4Z2S
z)1YW%@SewgV~$>AMZPwTy6J86^EvjdnpIKCcbOSyx>w}{4CO^<#PyfEyPoatmW|vZ
zwN=tfCQ)VqYD&j^*J6R3_=;K5-^vOl|JWW4O6i@Z{rOzQ^~D0QYgM@9q3KZt`KHxW
zJ2}7~$$YHmCm*c-H{5*xk6l{Dw~l@LGhU}yc!lh}YI3o;Z4K5Tg;$-Qm7pJ|`n)&v
z+e<q|+~P{EI_92gscMWE<?N;p^^wc1n4>Mck_f4zRli#q><EYAo3W<|NnL+_Optqs
zjnfY!DHvOyT)k;3Eg=E@^QC=y?6gjucqW|+Nf}{A7_s5&+!~WwZQ0{#<WieuEHEpR
zWJKBEr}Py!+jjVC_{IPaLc3QIe6I<r-@W>i6QX~Z+<sRfsqK)RV<x%3356P)_W67C
z+W6?Cr);H)B2psw1&Qy#+N@r@T|ar8ZOW62VN#K?Le-`gXPLeybh_z&(g!F`)Qo&a
z3RA%Rb4<IQUK$FQi3CRb0`pm9r{b$^I~LGbi$6}28Z7GjGtG=EZ7V!MHXQCU*W;*v
zp$63kr+ghX^fA<7@peIjFXb(;Jkg~VejJoNX{}irVkD!USqwN)FI0`+CI-Dejq3Rw
zbjM<Om5-G`ILPy-U(%yrZ2vCi5iY5sa@=D=+(>Sn>T-Q>XnW^41(P1Ge@wYu3=lFZ
z|97^nJ4<(&AgE!y3fxX9k$Z8k4VxRByS2kT3jtXV;dq$l9DY<wM|mB5ijIit^l%sK
zrd%d&iiF-J#>kr5tk*mcb>7H-hUend(KqTB!U4FE1l1)hDizt%)I&{r!)_mf^I1&R
zmWPlRH*|EZ9=g;=49^w*KpVWneQ@C|dh!F|IHaQ&AVP`%{e(IC;cLCbsUIyIjNAk3
z%9v~PVH@l{1os9tO_+k)R1#ehfw-$%4l$2~ORYkA&>*&ibe*OSv@wr3!d2Sg24f{k
zsunr*YSxc>Z+l;YRl@LaFAD94Eevyr*&i;?YO`Z)!D@sk=z9<7<6XRv{}{cutgafj
z1YavvjohGb+Um;)w-8Bo=7YL^gB9hYgHrarK@3S^fz&KW(YLjVcz<NaU5J1eSdM4t
zv9V6O^wQhIqGH(@LKY@T!tv^&p?YX%-_X^s3onioGEvi1MTK7fU8mXS*{%!9>j>@g
zO!kxo!*qr6P4RQErQ>tKU74ze_Sda{>C}2^CmBvL{syx5MTFZWBTf&FjCiE26Nx%0
zM9(6_j*8b~kMKQWwu!HXN5!f8`s>@n?;u*ATcHTC-;dAHF&%uXBI085D4_|6?4^7C
z+{sUh<XqQ`kq()Zhja9d@F?K<D8m?)MwGWWL9cJ?d!xERwPXC@NhvBbTTlDcz7`u^
zzGM_k2Q30zBU$Y~GDzucD_`K=wI_kAszFf_DdqddXE9H9kFGzVy*q9N-_K0ss4icc
z(Z|};qlAcxJ>6PG#D1A-FIf&u>k?e?t?7Ow*F^OJ9U0`+Ro0>t4OUZ2&94>qtjw%y
zbjRnZKbx7Y?a`CVv^TgDY}GK+eYJIb;+A!np1I82@TEP6?CNBTnm)a}(VFb)uYo4<
zzg8C3*Atp8iDFg4F36GV8P?URzUGoO_I`VgyRV~`rJ4F0?Nt|f;cOH*hf=c(%~M+u
zpuxk-Q%;gzSl^ndV?SGC4{$q)8BIa|%DSqlN?n)~d;Vr?t)Nwptpc;9)R@an&%O4o
z*w@fkdZX8}p4g$(?#oR!wgsxG-3VCqA?J1N<!0v_RuHoP%0VhOpuur8&%D+w+V?Mw
z`p5TIO;?z<JFJW>cZsM8its;s>{}E!o@PJE2@NVEK3lcjV$L0JzhLOKP*B{cx@<Q6
z_uKPa*fM$b5EqyFHN{+df$eKZHA(iw(ZMY68na(E14rAg3WQ2FG~pm`spYEry<om|
zLcCTaN`@|@oZeb$weswmY4}08Ghwdj_)-`789gwT)eiZ9+B8mIJ~Sfqb6YYYr&mig
z&O~)xgWfsVONW&P`CtV&{iSJwI&6Yooo0m`aCXnN>q@GO#jDKa!Q6R1-9(OX>s%&>
zPJQ=C(0YO6+#+rZOl};GMJ!G4On|32Uj6c_IqwDQz`!pc!4l#0flrXaSf87T?|6xT
zdB|-R5u?543v<#w5ruII&6x>#>e43jJYg;H2*YHnVj1QnWU6QGH19dMwOtLpD;)?j
zFL8wWI}WlL?mI}$0q*PYj;`5wSVMZt>-QedhN0BGtIU+g?8B^_M2I>Z$b5*ROHKDH
zLIRKjlLdvYMx1ZnbST;uy)`t|w@5z7!*g&(sd*_o)OK2_B%g>0dSR?Z0b`g8mV<dx
zC(JM(9B%LX2lREQGS`{~6;>$0kG<s#xVFrp*T1>ieCBY-h<a04L;^$lB6IO^p@#}C
zyAnPOA<F~G5tplW)tc1~;NV71schT<yyyJu%unSln~}U&zgJ+-4Z!!T3*ph}X6_1m
zOD>r-zN)<X=p7R?*IpK<GsdDItP@A7y%lDTi`4T&*G$BN$mo{OGbuHlr51NMsZc1`
z@am#we(-3_`~$WWF7hn?7#PdRg-%ruZHu`pT*RBuO}PXGU}l5w;n_!HzI@Zy!6J=w
zq7?oHz^5*KBIcf*zM!wQH$w0SDLj~@K72E#^+&cOFS?oC1KodwuND7bzahc6zMcd#
z<d7nmh{thba`5YUHkim5GwLfy@8!ghl0Rpj5cG1<KzTc+BGe(F!X!1|)ZppiHdM&t
z4(9PD0MX3jja1@t&TGn8B)xh<@cKYI7W!>baf{>a;g@0-w)G{ooEA)E*cC>nk{6UB
zU&VZRq?}?cX52=t6AAt#s)=vJd>d)oJ9~gb4s*$2?KsAX#{Tz+;E@Y$#VVp(WQ7r@
zvYH>91}HJ9@9N$0VMd&3uzR?WIONW0YV{7?HY{{!t80qKFF|d5SfAK}M#zI*p(bEA
z>G`l8d4i{AD3P>-%BqRMka5IMd?^xPmO=N-+5#5P-U)+?xVKBG_W_+B;f}f6^sSke
zzy-pc0;vIHk6ZHDQ5yc-pi>XG)FfiDU{O|=R}vPc8X?Nw2dnhDU!u(hS85ow&5fI|
zR+8GeUiW-4+Pr2>9Rap*63Pk|w{o1CbBq4#@#sgF0t0}rh9ysAQ=AGsl$~_ZLprjZ
zrDx%xsBSfNqA&^fOM<#?t#13Q?>7T)7*1Cj!kv$+_J@^v`VV$M@+zg{N~bx}66k}{
z)CZ5~Hi!9Fap!g+j(l>D<I{w#vguJ>%-gsTJ2?k31p(#BY|x$8=~*v(Iq>CD06vqN
zz$T;#B%*AUKJR-!7p~ucJXDNe={;R-eMDdTvv19(!m^X5GO#n>)N^0*qCw@A6rPgm
zy74TmbT#B<{mR>3IJgvSC?7$d$<K1~T7CPk{+XidpdTQ?D13FLUj2uc0MG!+;J6fd
z6&BUd4LWC&@04&mOu^C+zx4wf^a+3YhHMi=580-81&-8b9@DX{J7+@8!e=R>A{+XR
z`*&%JlKaVW{q66zEwgX&74Dl_;^f0t=*4aQH??|MF&=RUlH8ghvl8;JEqcZQKP)@y
zkT8yb$shOVC-+C+y3Rh`eI8kl@_CrxM0Lm}eOW6%I&mrlIi(Zjt-x;VU#H&)FVtbg
zzMHJSh3RMgw|Pr{{)T_5#P*>oaPu$J8ogiBPlneqV+!nECjGJ)H?P+>x;JJ<sIL>A
z56h$5Wr6PYuwCSw^_i4J89QE>awSOh{$_Jm>&Ot-K57?kd`K?i)qrW{i8RZrA@P=~
z8Y%9OOe~N3eLc+nOMF0Oknr}~U<2v5=_=+<Gia#~d<>fgzX#4FI;2qRabwJv+1B$<
z@B#!yU1N|jZVZ7KI3Copcg+kHaqcX@T|_>_)nu0tN(TU=+nz9&Z?pOcLn)BtV!|bC
zv!{^ve5XZhpmDI1U{A^^qh8);ZWw2eH#>iPmz=ag>WME+dR2?#67G8Ix>M12n<2BU
zfC`b49@9hsAP0onqJ?I$QzQ!5qf5~(a>(7eVuy)c)}kMx`k#wi`S)kct`AyV_x<N2
z7O2Uq&CM=Z$Egbwt%Zwasa}1>)a-51%4#_r;e;VkGwNS3oxctZt-i6gylEV8#9K|g
z>x&2w-%C`U>!+L6`JHzS1MgqO_n;~pXK=hae~g~5q6_b6FA~cnBmz8HF=KS_dsIkZ
z>Gs{<lfXHfpx&+5eLF;_9os>0|IXtcuum|v??%SF^=Wj#(aDjH_EH|YKK#6xW1i-E
znmd<)XWH7&HeH}*e$12=7Au&E{yf%cqDl>%V_Lr&B}liy<s|NujwQSi#G50JwzuY2
z)lU$YQy_swRfrY#>8nH(tc<v)OdrE(HQz*Ndo3F{FjW!+Cwky4GwWh^BM~$o9a-JS
z918T5$MtWjpB!RzSAU&tcFnd|htvQyr1h3`vwM29oV}z~N$Q!D%EbIs89QSJwvR64
zT(-1L*g(QEFIBIG9c9MVdcO5REFsDHMFzrLZ8*}D<@xG~7MLQfgzEC?o+dpkv9a_@
zvF#C}+W*|u9GM?(hG}olK^_MvE~=*~tMjr@QHc<(J;gcInr>$B1TTi~xi-v*p9*8l
z7o*J7S$?d!LTb(v69@z@*`s$+pTX5!<X-|6AmKo&WJ00Ih;EKDFKmx`9bze7-+DOQ
zijkK|QsYiB^9T8E*_s-s5YLdV1vT*TapwAgendVD9%_x-FkY>WFkK(>eGil@Y#4CG
zUZI0jIv8DUhRpZ9hZsSmzynOjF=pO<o`JsEDaVj;%6-?_M1JVIEiSD9v?b*yrAFdS
z-OP!LeLDzW{AfTqD076F{g{`vY?i8?>uzpc;YIk3+*g75JV~wSW&R5HIN0W@dYA!)
zAvju3>0?gV=-XN>ql^WGug8fd|0-YLA*T*!jV(LL5;^B<efjym?BtNf2Aqn_h_L${
z`kg**jF*V&A*MPa&;w8YsK<pH0rG88<q-~9Kyni^&FLfkY!W+Q%cOt@4z6^S*uiuS
zS9K_^nri<(p(PWBm8R~d?^G$-8Of;uf<S!j#2v<>w4|^spGof4W$s}jE2*mBKjdPX
zIy=2v&6QkC1{O%o8nCs*vE$U{Ro%v~?h=V7ZYY{_X+St%)KGzR$BWs!^7L+3T}`u8
z&{_P`><%bCoXQJM>$X&`L$u8AURowWGbrNH)suI3D_u;7Egqht9!cp|bA=rdp(07K
zoGyckQ)ef2n{<`EJ`&U>T}b6>wKA*Q%tm_^&j55?98kcm5PX-{E#?d>0L)um!`I=k
zPEfs1>h}Ik_Oi^yKu|J-`{+MW?MdqPqI+rgcBpREbzoAcMwCqPGWFo<Ze8xSgJt%4
z`=RV+yr4J(y2f`)nR8eq|HJ?a2NCh5kUObY=XdMV)jo;}V&j_1Bx?koj70V2V_omx
zU<FWekQ6}0WsG#HoZj5E<Pv+`jX>U?N5RLM!pXiUzS|S-{W;bODAI{DFCN5-x-GHW
z<1)QC)=TT%N2wMZ6S$x__0h_%Nox@{f3wLrKxqgw8Q<$p*W<x+k)R$)>h>FR!7>LZ
zL{}g{pb31S`;J*%4!TI;nho7wnbBfRpd{i~Q|iIfyG2}U2Q{R+YH}U3FGDR$>^4(|
znig6?pzbJjMhXhP_Bi!>T{o3%+el=H&>@l23L1hx;N#yr+lmNa!<Z2-n(gkSZZ}Lh
zOd>2&lhIcyCT%Gt_+!4UR1Aux8TJfp2BhHAhnd#*ctlM>De61HUG#7Mg+Grme_ZE9
z&92lq7?Xj<M3|Ru^+NCK764Czs*5rCb1d^c&x1z=g+|UfgtXh+&5XLqw+qqM0BMBX
zLo_1kAXz<hgjuxE-_sITOlcO_aSk)nZ}!q`s=o>*2e^(J5pAwt;01g_A-oAa7{K7B
zqs>uQd+8w16k{c{NlP@=`(n)Id0sYv$+m@Oq}OCsb)*?P*UAQ=L6U$Xc}c*S&=MvN
z)b0Koo&7TP0R-PG=Os0_c-D8>`ls#DtuMwJgW|~n;OUL?_nq$Mu4`;>wn=@XbAU?K
zqImU6ygv8k=w5{!&Y~d_b*LX}HGUq)Nl-ml$2?;n2Tnd*S&c-#RJCt>(BXr~b?>2g
z7GtMP;mF6gl4uY1uI0hgZ+jVzJE=P2JreAQDBWv=7r%)Vls%c20%obGYv6z89GCbV
z1%TsJc}IQ4x(*k<W|J`sN*jWq?A22KRLXOF)=FRaVTW%2B4jb#@N3X>-@gi3#t$6`
z4&D2&LNNYA{|Gkj`Bx!MmV<=Nkw`{Mx4-`wZ2$6KTcRR#|0DQ0JX)tBw0t2}x9Y^O
zKK=Lh2`Zp;rX90rVcAo~C#=*RN0=e)tp-*Ay#r2aS<H&?bafYdHQR>BKRlpMKh9}y
zcKNZ81_M4=ahTcI#$86Wv?^iO7}K$>y~MjUh(@J$b~h{9*-Q9o&?@YG-HtT_d)kZn
zr4uR8A`tBgRhT?jEo>E={E1aeao6*6dG~R_2s85!+roOyv#U`kNQUieQX}kDfozbn
zuT;-J^<{tA4hRldm)KyC;yV+~r#(oH9id1g!(J!FAs%$-_8;`cxZE5oqd-)wlUo9S
z#ISHrWVJPK8<#1N?d&>X!lGzf-QgzTK~E$_x@3J>rPE@_Zr~4lt%G^sW}o}uJ{Fnv
zas&_oOj5UZGKbz~#e*!c1a%KFQ9xm-N>gQh&HVQrqm-b@NQ@cFA4<Yyx{A0$_go_X
zl6*x8E!Iu3ID<iCI#nHKww~vvNWQMbTLngw4-L>qeax;o|0c>;nP-^1ORWf#R|-qw
zpDTcc=Fn42^bBS!i$Lr&SiQ$mt$?5~2(!n`qhTZSAYD~V*Az9S(tP1CW*Czw-IgQ;
zb5{~ZkI<&aA(5Z->m->4GT$=Q)H~!PX;mL=on=!M5M}cZ*Ef*uWreBg=Sjg4bFC2l
z*M=OZ!C<joqOA$*YteX<eX-Z83Yw-1uuD`tPOIVB=JG{e#j}-DgQ6y>dX&UJcV!nd
zdyQ8N^Feu+PGK?ImhtKhZO9i5)kTx=gf$Vw3jd(3p_=DCPGPr!ace4xKAx&_yP9R^
zc$GV|sceF?R)q3<V5T`x=7-5%A2PATwn$XJ9cI1_7gi??Qb3KoULp&s^)GsRSml&s
zRqB|^4qASM*>b*pRz`l9$v&MFsw9;@ve#cfww+T&f=50o8^mLdb&QZ{vYPlpuRCsS
z{mBR`EavmpHM0IFamq1p<*Ht*8oey!TS=!(ZMv#{s@J|}4hgjy#xOYdt7#<#48B*r
zE-PsldR(E6Ia#j_gTZ~$<J4Xko#CZ;B}Ma;$6>zAdAHX^OZ?-Cs~TZfkv7R{T1>CT
zo&E)E{Dr8|w7{*o;%aJZp<8e-S?22XVaNY?^`RR|-TOdITMwv!w@Feb-rMWNHNJZ^
z6&RPLe?CS=pI-aF^ZjQrA~qqMj7Wvm{qRY>o*aE>=v_;APc}@Rh5lbrecXa04jJm6
z#d$Lp-IiyerGNKkFLPF#P@DWZf~R9RTxo^k`P0_prhRZoXoPGT6;-7W08k&3s$6gN
z%GeklBDihIl`6-2ZUC(w44xtn7WJuhT(3)h@IxA0I-!=b$w-*qz7u<GzSc_w?Bu?S
z@T^}Kf7~rut^Aj^!BrGYu!FQ@vw8fRUK_9VpOhFkbpzyKoa$S8T{O`S3ZGU12>-BG
z7j@`}Ejn_m_mzc0oS_X6FKC*2^Fh6Nzjq%Nf$-pW7XKXckh4Yq;vAr8d|8|k9LSKs
zaX6+=2|ijMQG2P)>kmsr`|8;c9JSU<GQwp<L^THeKPgzeEJ7-;wCqp{!t9t5Ji5*|
z3wJ1qCI?CE%em2mS>^|Bb!o6~WyILa|JEaV^o+(}%4X?N_Fw0G#LHz#RQe>E-1F^5
z8p;G6sgh4JJ*uK@eY0w+b-U~f(y1{XPI)Hy@pfB!p6w3DpD=XDUdRp_r`~uzm~@vd
zfX38AKv9M}fcP#NV?3B8k{Yhm*YB_nMdSmB`ODWv!R9}hv|iVrVUa^}*5SmoxuoEG
z@#HOEqsN}w`TeC9RfG>v(wahpf?k$Q^o_^#QL)h-Psd{gfCRjxY|rrX@#6pOV7i5C
zvPi!`)j6KoD#;JWL(%b6liAu*0SNo9zzu*rKzN_1W`C<s{=~BHavlgU3mSI({Os*g
z3@laUPd9bpf}z7W>ez?K1H{NXe7;$+-&Pv6!<kNf69URSQ08bwl)3L|Poi6Zt5bZZ
zz>Ct<JI9*fm&hk-EZr}8cCw#Kjg>?-<TP{O6VGM9Pe6JFmb;|Gq^O^anfH;Gc`O=_
z0?+eylqqsFu#BUK=%4e80ZamPGaJ&cX`Y*PXjOfkgaRbl6Bg>D&5m1b5f)-CHlpUV
zX2LBvUAw%fFV70|<>Q-^tw;3pI2HGXE^hLb;wif@4qv}dyyOlx;_2_|pQgK#@Dz+k
zQ6j&Q*P+0dKwf6#npHDxfv=&qJ~yStMS@{ldxn`a*-0c>P#lFELX`fM4A?IY*N<$p
zc~9V|I3mS;7d~dC8drjv|3I*2p=Ch%TY^@KnslV@_kwLrP6cN>cC{=^b|=2c8>RY~
zTYV)d8%Yhq`6Vp8Nu%{I5BMw*u@{Aqma_q8X<3f`c%Dn+KpCRfkmW(3CsjrF*JE}^
z-~OUouw~=0_2qShW;sor-p(xBVOI$ILLoSp&@ax~N>%GG4o<i-ylIH1u~t|~aBfVW
z8}wUhc}!$GX_gRzyE6E5iI-$lPsV?N|3x+-6tnTc^80LmU<K@%0GT2wU+9Xxz6koZ
z_BFo-mr@eKs@Vh-`H+Wv7fk!wW|PURxzf_05^)r?8mlj<^*JhHaq_of<053jO6qmL
zN-rE##|~5tY5})1<zS}kE6<PoA>FclWC~+bP$J|_k`{v|F+D@~UGCFjfHb-grZv~N
z0Yl@mcpbaerUC(nql$&oLfE;JRi_vAtaTO-M}Dh?;JPy*ftphZYRv1wsP?v?Bhmp9
z*5<GY2G(MBrb}tV2mTWjeQ8tJBxq|Z_*t4~Sg-F0UQD;>K7KHgv>dfCKr#x3effhv
zW4|S(V8!|W60@0axTKqY;z_&W_)=DTN9DKW-&4^a(p9@Y!HFX~y|>n)H?zgbMfuLu
zbSYgkswDV5&5JUK_SX?;qZPl%F~ftZL@&y!hZ3*lZy;eayi$h;r_S;$I8@-ak(R(!
zH;_^xFqWPlL~aru8ab52FT+FdQSf|}=yY}O4>51oMLhhR6|)n`9z{boQq?yY{GfO}
zgsjHeI#95}8#R=W$TxqQuOD&@Gi)<e{JS+=&s44dFpqDu*X2u>VnPpvaPGzDV%O|w
zC*6?4NS0kASNp5gn`0k-(_VFqH0Z+QXoxIN{rW`g-3zSD=0wVwt!{cf_T^~XH#-a_
zqSbR%_eW!A4zQW>oFmpqY$`I_8tn0h7LCWN67Lq#1A2HN%j~GL5<G6yDHCAN{^QNA
zh-hIk8iW!_Sq}W<f={~a<d}%Nq5}@ALN@fq@`ga7X|RfY(zEM1odc9Yw0}XPb6_%M
z>b%&Ph@(3PXuG(!$>pzhjNs~~Z+o5uB`SwBg}TC~&>(n3J0Az6$c|<J!2(CYK>q8H
zLrrJL<8W|3c>(DZ9S$|$Od$V%uqvz$f%~CxN445B)I5`H(}^T`jTj{QIv=0oJ^lvW
z<@v}SyKOZ%IW9xz5K?~8Hgol{kBjv9L75Va1D}EGLaAORc21uNx#*LDic&LF-!8Em
zQvP-|Qzac1dw;UMDmkbjk9`pU@%P8Yt~$vI2H}*$>!-H;Zf=dTR|c1tPvq;UB9dbg
zPLF;3bbGa^37n<O@~<heA0FZ^;R%=dh0QHXMeNEa)7^#z-4+UA0sqjr^YtnBMRoh2
zorp6m0URzyL<#Dh3w6~p5y=;TDN~-AA3s7pJJx*jxt)A}F`>VzD>K^;zKHqxQn|VF
z>x1r0%2Zv;&B&h*x)?u99Xrm9|IS`SxsU{^!7175KZly?!w$ZfuYxw_tw?*Z1w%-#
zdh<wAd%C^coPjhrzEGtcVK$}M>wJw6MFyYaD{XGgwU?bC5+dsutoHUY86&LVAl{Fp
z5$d9z=7b_E3DbBaLn#uNN8SD5t3=wGdkJ4n$xtW6nk|kYBz!e#m|CRGV<W9sBjk}}
zR}Gh^!L!(Io&MlFUnj+m)&kh14h@xEHtCacoRIn}cw?pbP#g}d&MS3w;7ZJ}k9)5o
zxNdq}_-1g{BR;>`Cd7wU9%4?jJ9Y+t?DXQn@C6DSoK0=?XMy^~U$;U30r<89oVsLH
zgXTz4CGP|;f8y@QRs+xvu^l<lti{mrHvRN{9xyC+8kQIme!y8b>k+HHB$JxT;zmM*
z1MkDT^ymd%G$fFmMI>VKf4xA@UgsqPP(;xf<UvGWR_crI_7cix<I@)xlzmvDid(5S
zF7Z;)x$rSam)MxQ@6-Paj}W&E=dqO}s~4B(UibS(*+kcDStNN}oH}fQeruVRg_xs|
zutB8Xs$UEbo~i_rFlR@>@pP}gd5v#WEPHnqpp6u2F;Ly`X8r8NUPcT9N3lF9O(ibV
zC0irvf9N1t72uu72<4DKM#yUGB0YbTZ<JwcMIs;!v3-eN@rZAPW{by7^bewYK-_QF
z6_0sYC}l+YBYbrG{rZCNvxF?iVo7PnN9l1d`Op4Y9D7bfOiN-n`RIQAb{P5%niRZ=
z!h9!c+VeX7!TN~Ob~f=NyaP*zpo{L%QQ_%jIoa`Xsyw+$zwwZNP_fu4rDS%<;87_L
zxm^!<)(#%?DVI|NmI|9+6OS7Pq}u|$=o4?dh7df(O*Nzxi3N+P5c`<!_@g&|VUvIn
zYJ!K=pdQ4lpPtnEJ%2+nb+jA3TN*46E;9YJp7@rPbEdSY9sxnj?WU;G)rc7ADDi}O
zSo~20x716!^|O!K`a-zDs5u)Hl}@a}F(;MBi4>e8#oTlH+8DW&1fj^Z0KYyRWRjY^
zw2;5S^_wnKAQw$A4_)qMx#BhaKfcZbJgTDm|D$3D0cAIo?C#yYNDu6$$DYthLLvbH
zl~<P}B%8J&$pQ)3MQMVl2q>rsVxx)(*hPMJrHQC?u>mUjqOT3*|2cDa)A>J-&tsU`
znLFjonRC9U4BxbFdUPDR&Q0+QueFj|>IQs4o2Nx)8F{&9MeSqg5>74Fd2E`AD(WK7
zx(6Z%S{9FQNjW@b)H$C2%)cn1M2|HUp<M@EAVwytZF!zK(<6gH=BO~T07@iDzgI2(
z!d*Q+VtIv*!+5foa%0uh?w%WJA4HezJ`=gYWc=~!nAdZ5Z53X5THF`IYO-p7iRafE
zF|11TM-J&L(J>_)Lv+lqcDkQlqvc)J8$l&E9~py6fRhw8?pn`>x9D*qn8IAg1@WZA
z@`8<ST$DSoLkp%<MNSSP0E#@nAUlqlV|TCoGV%-L1L4aC|0k)14qpGz=?;CQ>$B3O
z^HTIwQu>1cdv+UVFKqeL59f>Vh71#Bk`Wn|09d*0rS9wcx6XU>Jj<?Afz*h*2`4#d
zy3ZOCsSxH$eh-6X&|a}55JXl!I@Z1Exz@Ws0UJnH!$T#ABT2gL-G3X?wzph$%?09>
zk(KKQw&Re%qdq<6`s(M4#3iFaMZ7xmsB7L2x?<R1$?8}8<XWsGdH7+sJ9ciHO~0Od
zNNW8PtH4J^Jw;dYDszu}{{y-*^?F8;D^x+W1x(w>HO`rRL7SF@23^nlO5F5*fNI>f
z@NF7C*H|#@g59@WC}YpUa|OG*-=h5_vcAQs7Y`aO9@cBtU~&m6{ZC{44n4W%T7nqV
zwUnq6(u4^U(a%?I>E>Q^M<j}3B)6`JTA0s4&TdO|f3~>giqWKhy592Euz~^cqXc@2
zf5?c<yI>Hbr8b+Vrps{tCoqOdQk8Y%1)HhjYxw-2%SxZv6x7pKxPN%o>T{T->u3>O
z5v4_d+qrv<huXGkeYuWcsXv$`b$h(~;G?=Beb%pvSINolebzXc{dM?#u;t=vI{vT`
z{a4F(u3-F4zU5P|>^0I_>u*t8--b>`M~JY)x$f)ik!n^9jh#*8iiZv#{nz-lZ>#@=
zNOCkx@hVBsUs{VV&>BwC@uV@URit&j_-bl7{y+TB_`Y4F7F;Y0UQvm@eCfIFxg8^w
zb-|V_5H^6U&x~zRk;=%+z+ruj)^X~OUyS%m^bZ;>Q=&Q==l->JnYbuOMS$}k$-P-F
zc{lRF@5Z*zPfJ8#10@HH_vS^&uL*r}Ew1^>=<vX4e*j@@IACm9aM~Y00Mic{C#+92
z&v6ozzrB0Q=Mj!Gkc9HNmTZFwmvuk8xBHv-v<bH%Gb1|e+z#%mcI$>5SWDzhN6g~-
z5I<eAwZ^Ld+v<L6jy|@TniXQt3VWfFkAnNI-B)h+;x?Us(`P=CW7K+0RC)k<dg&u~
z?xPW|FcQ5njFcf9rl@=0cki7QsjQc+$4manB=zZD_vqT%M(ie8J^Y3HmHQ)Yt<g8=
zK{D9=u-|>J)kBl>3K)F*14hqWeO?8r6;A_<QgX}(-D1qyaM4Sv(0?#qqXtWeBjRTg
zQGn{78{EU^)CQK+V-H@nBi?=H5`7|t=}eSorG%1jIof&3_<MJR*J1#`$tEcLmWP>Q
z)x1u|$Zi*%Ir)M^Jl~b(mm8V{k2p&v>C{|TI*sS%wtDNwa5V-NsS#68Wwi0-$X4!;
z&zFXvD`YRE23KYkFpO4<bQ@+6(cmOJ#jEBgy7xXGVH?9SwP2M2pWuGBmAZHCX*v2T
zeF4?K_fpiqQSPCiMrf?bt(K_DUGC%$BlTk6^^-zOt}oKu#i}<ha+h1J84ag<tiT?L
zm{k&0V2JzFQxRs%@fB$phdNkTg4>fHsi+$!r!uj`{mwo;Ou)>6LEL09D-rIPr2cu?
z*yK6?pNm>a^eNCxmAID@g$aPn4?qChKVwXZJ^c^j)VPgC=Xm`C2qu$hFb+v8Gj@*Q
z$Zv+VbM392YwWdHdqb|zE_}V%2wtzRFRJP;J&5Rt-{><Va_JEiVkJ7}Te#(&nr>7V
zM!r?o3gl$lSR=c(RlN&_WB%z}<Hj-ig5l04RgYwBhq{o7S9Ua74bapDRvm`ffM^MB
z0F#!KBZv38O}|E*VFP`U{<Qqa5d;p~|CxK1b^fIeFbA-b7pi#vC{ca0)4gk&K7h?#
zv0MsuS8Q`XK;rpwzp?#6&HUg^sn!E?7077h0D`(>{q7}ewcx^(#IR-buLOx95++t2
z@QLbVWL>7`B||F&{y?eI;s$rszCG?g?ujr5>#ni@4q-|h)cx+4t)bU)zMR}ZRY<(n
zgz+V*%fE2HU;B$jyeCo3{K8#jNi($9X>FxnpStEV_ir;JpVc>&?hkA3uAS};QzJED
z%r_i1MpG<55AAUmTU~ONaf-od4_`Ss=}G7ZH5VJ--K)=Y1CfkJsE)cu*UD<)=fEQN
zbEG-M;FUkRa{p{1&4Kv;@uTaj?{x*#nPy}foF!5!qx>4F#sD-BY``LiiF3;wW8IJl
zA=e{36o|llo?z01*O2@H^j>|yST?G;sw6f1L1XZBkq+z8xK|za8?m+G;Bd(lYl(`I
zwrlJC#-k%5t+cajt@s6x?f-}oTYE-pQR+dU3it&fpe3vC=Nm(dA}343%9*)&mhoSH
zfHtw%_^3Sc1F`St^YX8VqKWF=*+#|S+Hd;{L;ebp3nisF8KOoQSImqYXGAds2~ds#
z-PEgQFEuW>@`Cg3&~jm4!aK0~=x&Lq2tHv{Sa%T1*KkV6YacE#HrBF&Mzx8`G1K^Y
zRAjXEb_GIQ@Sw3{bY!&ksxT9bdDu8|Q)E}j3ZTVlz}U(v87^)h&p%>(e{H0#c;7?>
za*p(fdB)kz^~>!s<pCq>KaqaxwiFZ5YkuRv{gKtl302_UfeA%E7EdgI(XRGm*}UMz
z@uvoB#Y+zxiOrA*fjAAAXAXg=BmuRYJ=qQDZs=g+*{37lt2cQl=-2||f*T@(Y`CB(
zek~p~9;u~|1_Mn|#scH6+JQD$l?2swo^hg<E-^=hUx8yDj3$4+acxdyIUA1_tmvEp
z#_vz*(SqP)mHG<>>5$9HyV?ENjtCM{TLDxzd5gPrYtsr|vwPFM^8Kb2iR#if-0FiS
z74XS(-*)?&b_H|4V~hLs+7<v3lGT`TNlLJ1-*&IGK$gMU(n!|y5+lt@l7Uo$%v!bC
z{rldQ&-|uAsk)KJD%;!cr0q?{0lm84b}zH$%1uyfy9(Q&L<d&=v)m6aYaNdo+dx=L
zR2xIa)h}pajf#vw4FCv&6$^;;I??#wibz$hfCsHUG10iyY6G)P9m_$k(^d$s!j;x(
z<XSJIHZOH2sza^aq>cV93v{6w)fBma^yrUUms_(xh*die8hcK!JV@-oe&e}EBG+Sm
zK!Bs))xEWEMDMR(m8351=6*R%SIOMuDNDIS5d1c`Hv-f39fEXJ_oO%1JVM9s_Zp7b
zI*mqiqlImpanLw<e?(D{8<hm|Xl@Mig0GAgPep3#5Dl!=Gj<#H+6jooi%=5DFoxp?
zGS&C(+^=ts$c&9@lT@7DJ+QV`(me}UhFpL|Q|5EuyjDB2vN;+4viwPi45YD5QAc{a
zr@RuWA*@gww8r5fFW`$0v1^LY{mSM@eG@S@R(ag+@s_2Vo}1JsDQ~p<+)wn7;nw<o
zkHCL$9*$F5j&b7d2<M52j~I>Knroy7BAmJ&Z%k6%#~4))Hg18_+{`(~__9cg`s@b1
z?fQAf$=Z80@)a0H^jssqxVbhQ$sY5Jp(7()2+u=5Hcg~XVZ)Ls<<ZH;%Yh5Z!6zUZ
zFj^jL0y)*`BSh6mQvL15n2=UA8ea3_(^4yXQl$e6#MPI6VbwG4F#1foKsA9xFm(61
z-?*&y9;%&1ocesOac1qESC4yhDpx*iw6v}m^oUG9XI+#9m_za9?w98`)oBnh#}~S5
zEM<Wvb!r4F{Bf!Kf&E&IXjl`c&MI}EtZgG2v0!v4Pe>4d#k+sHEuxi>4iGq$$C+`{
z+U#`q`K;yLS8JSRs7L_%5lrI#5zYq<bT7X((yDF{Y^A&0?fbHsL8Pd?0ry9>gTTgE
zQ7s1m+#J|pUxC{=+_V*Ed~m=$ZFg-=elEGN@-Y?QaKSUmMebQ&NnH@%oGgt0V!Oj+
z9)oLty!v;t>(<|U7r^?5qmJNV2>`+>U6b#;Yhf1~;^Gj}=}90M3N85QDd$mJ_cpLn
z#3&IRSOl+{b-AtG5?>pb-)LbF#*k1rK0hvr`1JgBwyf2<mL%x%c5E%r)lT|vEwde;
zN;OX~2RZGiD8XX51$IY*YYq&Idgtp{sT^2cT8^s_-k4r>a(vX_w{_`IbiA^Hu^_ml
zUsR7}M<suv%O(GU7GL5ep5m<aQMWxsc`P|}cmSSz0--NSJ@BV(-s}3yqY2BPlp7#P
zC0`l!&=>m0M7D`mWEr5*J(AS;{`MV{be;B<AV5U8nke2kjIgiCM`KLJ%idpBB$n2z
z%H0!3#T1~^<^+lfjX)*#LbK<ta((numjbwhJkC&FPV`AB#Drgcf|}XY@#w`}o753^
zkM2=hhsz_LT#<%2jr!D5(=oAq*8*VQe!L;%&%+xwHl8pXpL#9I7;}@Z8G+Td0>|va
z0Cg!?M%4dxHC_yMEdUiA;>U~+ok`Yn<o-?FjqQJT$%DSpqa{&d=Z89OTGg|F6@+0E
zl|ZyBfC(_qk-r>=-|Z?D*9D6F)sPkdC#tg--V;3O7`a8)X-yZuaG9z!WWhc<+u3ph
z<03;1Knoq>zAZvrOu1{#+g)3;o5S!27%KpKJn1aer+Yl#-0LV{gW%6%{F7-A*UYLB
z!+-Fqu1C1dl&W6nQ2*^IE7+fCs$#q?SzG`IPGibH(QP|*J;FC|S1Mq#YL&xr&TBo7
zFjSHt8N(rR_0KtuFJ9<*1jQ`vAYdf6_DSm<Yg_g@f|W?Av*tQtJiU%cl2?q3)E$iO
z|0rKegs@7-;%Lbk(U~`Ibe{PTdtATV%TbunTsd^rY&l|UUHOQTLVqR6pP(c4UA}Y0
z6T0_$rShUTyHHnGHzFyo>#2TuLcQ`dWbg?%Bv~o}6Oka}XU92*HJJzm(tLNxk#cs)
z+94l<g56!X+jZ~NP(uA;_*uBP;WEKbn(dv-sIENCpU2q=u^1V-&dZ<bB6Kt~7=ZRP
zO~k2wJ6-qpZT!W=$QK(7g!ON3e0;Cj@xg8D#(|?O-;~8d?3_2k`SX0eFRA$cVaBy8
z;?ya>Gm}+>IizD!(jj29K<_;Cz0-H1n^f>V8>#%OF#Ljofu5<-AD#Pt(N*=^aJ5F-
z5Ce#Nig@?puI7bhUpv8ZEhh@EE(}}#a({8L&_3%=$*M|+d!4SU-w2s1+^FFefP;jm
z2;~eSsYQi<tVD_P8BWii4(BuF`dH_1(MVdT+FB^%Ys2}>cwO7DAp%2P!$wufr>(+H
za=KRR;pwUX1x{CmIs0@~=-sEQLe)QA6^7W;RpB)qscJy@wdVn%9a!kE3F!5Ma0RA?
z=KdMTPQ~L;M<}Uv;w$#KDl%b~32HD7G4LrYj$Zcc@t>TxoZpDbvE?^M&a8igoKxWH
zTp<z)ieD~5fKLS~9AEGO1g8d7@{Gx8s=R<(;i@J?LREO;jXRV<pQb}med|@_%Lqdi
zl0ykj1m4vA2)!KB(^UaMoUV#pJ6#oF8>g!xq2cMO5GPJog+g??s+8I(H{eKYesf#M
zJ=I(>YusEha#FY$GQ;cBU#9uxsn1=$fWCJdk)BU}E~M9x%J`^7W#SV%iiFFM4zJ)n
zV<heB<%Lg;CW#Z-qoylk+$%lBcs7!!in$u!cN-Ud*Gt3zN%O=nX3ur~_;W8I@ga!T
zHHAF%s%9j)*N7bIQ=^cY3aWMAqt7#@O^6X`&B8UU*ms?h?#WF1^t-hD6%JdM00eb1
z!~V~mx>Pa(a8X(>Y>=8EMUC{@Cr`0jh$D<PamB`>GCopnKj$$jh@{nFM_hdpo5W_F
zT4B3ou}^A<eB@P)Jb-6*q-v>c#+?)+MB>OOY@Z~IUbVBoeZf@S4;pC!ev*=cil-&L
zYRod*POBe+JmvR*Z1L*$mu<bI6eD*b0R$S4*Fm;RGVFIww+4jVi3f{?U}Bj{Qs=*5
zOMX;0N)I9epn~&qO@exNp#AE5bQ7$$B;TlFq#Ur8%WTVT(GwU+ZmTkbG#qHcx+?Ib
z?b^w@$`ZCo7FbM(0(Y)^mF@O9x@KU$I7Jjlg9P>La@(YEUjTymaf4ujZY8LNui9(@
z{d+C*TPQpJ3~@5p!Uw5g|02#81mp71<Uo5+Rw@=Jhst~$s&Hly;o!Z&_CKwO;}%jv
z@@LD|$Yx+CdT*8OfXp0Cv;+@SdA5c_lfK?s#3Yzx840%}%CuUl;?*zfBMl;XI`y72
zGNhI@wrgc%(hO&2L;RJ1-H1*lN6-_t-{<SP$S7(D5MKIJNJOv*VjxuI2>bfkdM=r{
zKz9;pX+7FWfUH+#WZGBBj0lYhphDm-B+Y<K{u*kZa2plzO1sQSwDMT3bonrBywg8w
z+IA`v$XQ!5PSPghR?ccv5vM2inpWNH=RDz+UV*eqiR(kvjJTkPd-(^~+hZQkUmZbO
z#!@`>yo_{zy4^2h0i>w?nwPJg*FWm}4=E?_9jhSog3qe1?d<JR^cZr`Z79V~i7DN*
zw|+!_83aLI|IoSom}-iem}TE<O*Ol^lw1pZ6zTZuZ2PQx^+$(u*8L@<B;$F>IMrrA
z)H|Q*@{zbeTR20!4*+H7)lnOF>WaQt34<k75E_>przmYi)OR225pf>^u2;)q#Ht6o
z*yqY(#1jWc*o*d0k`$)*^^3B}BI@aCuP4!Hlho%KQN=qbk40)CgO|=U!32`j&qM8B
zOw$#3*5`>%0W6Z8ZXY$1Lf(cVZw9tWT!4M*j*IOVCg@TwNz7<CY9y*9t?Z#BT{yVX
z@6V+)kyU@Lt-W2cF3ligh|n#?vFa(C{r{wxQR^5Z7Px`VnE<R+Q6T#bweIg?-@kw<
zilE2VRR!{mepu+K70<Dg9qoM=Qj1ETOD4att2&%2QQh@~?S{KGDGw6z;UoI&CoZ!U
zO`#b20^AR=FMNld&hpr|Jw{K-Y6y{Zc_euOi54>6v%o&Gvu4D@Lj?thdFZ+ls&aF#
zJ%28<NVc2@##;Lb`JhM6x1W?I$tou_mdu$!5kQkw|M~VZlVVh_x~F*(WaERqtbJrq
z#A#yWqcmB~?_>8Y)l)~3uE2>3lNp(Vb&K`A?5{pfov;_3A0N0PUj047zRaS-v})qw
z4atp(228S8Thxhf8Eg`9w}e$$uYbT)xnkGa&Ur+yhfW_NPoe4DZ6Mk4YJ%H7dyyW&
zFy0%5SR-|4aV1^tw=A(nm&b#f0njwsq^NV;_Isoa?1g8P;FZ8BB)^JN&%J1S?moU0
zuWg2r45VmmJQ9}}HEW-y2$E(&X+jYa*_Cun)M|^4(}QE>T#3Y|I%G#>zR$1g<_?If
zz8_+LOir6H2Ckn-o_Sw9MjihUdz_GWGRGW%yhw6gu(^q<=23fb7riAoZsV9F=L+UM
zu#5dpIqJCObMv7U%Pm9|2F1OX+D$of(4&~=3Tl@NHgK0|w+jui!Bqhr&1dE2*y6JP
zWGxk;avV~Nr7)UnI@{xAt&;Hz&|a-xCbI8g`@~BbQv+Vb8M|g+)W6&GB1!D3<<2L8
zJqNCg%K6MHuj6gtJ-gDPt`MHVdXsphL@%oF!u12A+F4A10}PH4;n}zps@~nB-nNh?
z$-@%4eYF#ZXGqjSt2?esUS=Q5LBJyf;9-1JzpZ=+(-RLvl~_m02V8ify?w$$?@}0Q
zItURkVjjZI@wKkwle<Y_25NSdmd5^G?V2}5mkj|rDe)Ie)-y$E_?OwiV#FCx2**3F
zF9z~MQpK=WP;wzXUi5;ill15lrpBlO(sr#Y@s@5C=zLsAyv?H2+F6c;4nT@Vvb~ph
zo72gq$c|RkL^$wh@;?;ud@3KjZ<ldj_dZgX9g;vhRkg!7+_jHzD-qyGG%(b4Nk8O5
z5%TiG;@m~9my?0P7-R?pO23NEZ5*%8Ti|rukA}+)gyPN%Z~=)Lm74kUo!5nHNN&mn
zS&3XlrB5Wq#rH*;4P_yahOkF)HXy?F)18wlb%(go5IYB=hcB$~pYkuAXB0QB0USL|
z4XmuLCbg^}RKiD61TlZ{Dg6<kuQb+MARoQ}jh_3W^UAN$+tBf$#lkX;PKfg$;@j3A
zoCA(`vp}*+_88@y*lhS&98D9{Gd-N$VyuP8ui&l_%8(c|=yz+t*`c6umFRxHdR20x
z@!FSeg~sMp(Z$XqWx7=kl*09^s|b)LbnP`~+(12)bTC993M_X_Os#&*u{4k2i#S01
zuBe8RX`l7p|GM++SGon^Rp}v!AM6;rQ4BGFJ{9+qyX^sQ9=n}}Hxc`%*4@={+6O)5
z<PC&pif1iTRMpprtg#nyGR<EknA(N}*W_<v_QD!Dh`9kjd1-DM<Z7dO3lmE%AwCO1
zg6D?R7m4<*Wt=dP(u3h^8xq0fxyH8b0az-$76vSyE5d6TWN4l3rU!gME)jB`u@UkZ
zS#nBB3;=qZa%UMa#eMSl2w{Nb=tKZWH(uKDy9;AhvW3X?vQof}NK;=<H9pwbCCI1J
zq0JhNna66(JWg$F>Go!O3s8taTJk0^@8Rp6)0TIUlGMUdkY|BQ;=o@i_~$R@?wPvk
zI)V%H<TS@YGLZSG{mv(z)HP(RCP8~#GLMvbRkv@Q7p`pDfPJlNkV;~h{K`T(7D%tM
zP3mpuwnwbaBr?nb4hRC3I-{*??}9Enpx!|tf51qm9r8Wm5`7lVbvU>6*a3Vs%wL6e
zhls^FWaM7;({xAN+8)x3T`DL>Qvji0vpe1A81YGu9U!8d3<D*N9UXqVW81z)zlFS2
zzlR(*>}goeDaLp-&r$k8j~(2a>4l<gkT^+?i96A&URmV$dIycjOI2k+!XVJdf=DE;
zuN>;yo{<qT5#BmtOjwo1%y!)UagQA$Fd_``nh;}3bvoO>#?(LqkqCzKO1)aRz%lPt
zimacd3*l{9;CS^hW<xMBlN4@StkmAe94{X1A%JBXHzq40Kqg|w)Gu9MUIpL+cn@4!
zAdorXe*#@RI?46W?Cw&-g0PMpVf^J8&(qhqu6crr`VbI2A*`G814JA6pHK`=h;mK+
z_^~V47`x=apSA_h;5OHS=+0(fSI&BK#fXh{#dQd~OdD?%3t<;fYKUJ94<gnGds_W~
zYxj9g5QEqVE`@H+{Z|H$l;{|rn%}{7@D=^@G#-}cwZnKqFDdWT!nI~V<8nq6DQ6cT
zvPyk8Q$Qho>d-Fd6{?#+6><Ve|H82)9WOP+56(OW9$XJ9i%&u(2t#F**ZZ~*bNJgy
zYD8riQl9pibI`wfI3tRRBq))~UUu>e<vM(h2FbA8@I{<X<T%_=>3HD=t2jh{QPdr)
zhSw&l9dDNE8qzR86J<DgNZPOj?ge<?lmf@$-c~hEp;mwJoBop=BXV^yR*5<g?Ei<w
zL3O9Q%DMecR|S7<z6vrtJ!S>I*nBG}<@CcKmg%&u>Vtd3IPIEu$@NI&4eG|J0>^u4
z*7{cKi%H(sWu4S0hrfH%b&{N5^*&X92?f0lSHW8b1<6;gr2F5mi*zr5WBrcdN%e5j
zh*Tu9RNX+8%FB1W+RqwEg9fOVbt3`B5AQLHTW^o+wLn@p9m1#yrmnNhdMklps&*xE
zxbHxSB%!Nl2KM=mQKzs-q~L{GiZx7TS9ZJO{LAYGO8^A#2SdqxdU}PUQ+{MAG&(F7
zLH+)RB2=+KEDGOXd!XWrCOR@WyiLSQJ|7-0*KI?<ACHU(Fy6Qd736eP_>G^g3S8}U
zRfw{utK#yBRMltB6xXrBIx`lgmvAw7s>oHGWmHTA99|sS=~`6T7>943(P9(`cLPTm
zD6b4~hagyr_I&wP*O=r+-GCa^eKxg(I|qSRjo;|<`y2fdn`Lw3#?D(;oE9j;JsnA1
z7&|u6ueQ6orNHVMSkK5QZduRZ_c`D<!ngqa;<$oU>YFaHI5fSse346tzS0Ruk~Xn$
zURdv%6Jnng;RvWHPaYeP{2ZJD*Ba+dk87C)r#mirUQ&|#ukUlt?;qC1{R+iihF}DM
zm>?|t@2T31#uXbV(1HpH>FMZ;8Lo`q5O|ZxM=ugDNwP4b$tT>uIS236HR*ny^`e*-
zDXQz4u1m!5mVmjwA|w|Jfr(g&)#u&xQEpU0M|BnbFxByOd8-!{K0(d8(9!EgL}#QG
zK3xTLC7_2Fv7_|_$4jeqP5rO1(RH2GH^;#~>uh)ye?i-2aPUHO_7tRy_rHl=d8_U*
zJCqkHE)JqmVE`2JVHH|B&J9-r)`;LQL*bAj7Pso{SaN&aQ1pyhQ)sttEHX#}?k5mr
zPBV^vqRRg$x^S3oR)5w)t97#`tqenyCfxDhw0}ph9;=%Sg;ijLl#C(5v1JTe$6%pQ
zJ>;Q+D%{m&azGW-)8)2@bjwr$xhcor9KrOv;>g(hhVt<05Y7b1CS6{U=9uziGvm{p
zg?A+@ScSKaC?Y;}f4pN<PyPFP3ojuAbqhZfQKNQULFbayuojL1qjaMjfqSau)~N70
zf|IPVVuD2>*OO6dWU^z!L|tBg%b7&oGN&`QKye7Hk=&wQc3`q{Y?`9mplVdZrb|WQ
zRGVIio}8hJ`yo!23L!`niRMrV*G87I!8}sx&7)q0D4BH=%!YX*lR>?5KsvQ?e3P!f
zQhy&ARoy=J4F-g;^|BK|h>rMFXUFV>+F3TB8T@@}X@;2!1!{Fio%A?_WpPZ1pA6*{
zhQhYZyziqG;uGZ!Ni4P=i47G!pFL+2ed=9@BX7BG&~RV^|JDtxVI5Hokvf!*R1yZF
z3>++TwRxtyd^xPL7l=ZP6N*sEuA3cK7U-{}75XKFlnS&dpSnBI@z%B0=j++uVZL=M
zTz@4wd-YbbUJGQAx)#@gvI!f~Cmm^%2aN|i+Ah$asZU67$2vl4G(|L+y6LC;OErZ_
z@M)Zi`YyV%M0eI`rgH1o&9qU6@X5Lkf$1RgutN>bP^?7oOvfw;l)*Ok{h_Yb_XiK{
zMvw;zWf<~cFA$}R{Y84^#lHYM>L-SCb%pL0uOu=DBcLE`064H>)pqCble%u8;M9_^
z$MPs*IJSQrw|}VXxJ{}FL_)6N={_WiUN+~z#o>WsZLgItWv64+@ynbWd>RrFRkMV%
zufK*;*{`j0`Wa!|rh#)4n_4%)?0lG#wRenCc;noQo%2rV@1+MPOyCIM*e;s=@2#D`
z9k<GXc}ivI78`5V!5RI6u8_@U5NNM&-RIc*fG+EA*}<)=Zoyg3<lVZsp-jbH9T8>(
z2i78*wW`AAdF|j&$E$DYcKFAF%*cTfOA2>->x-Q|#_6gwL8e5s<E=zA&QV`GCcmyL
zgl80k`XWEF%;8Ch^Bn<S!VW+E({aO(`j?GKA-Ud4HL7E0>Q=FdF9{+>oi7P;r{%7I
zPdHoM>UqbB=bHT-krlO+*KmPwWvpAE#v`duu)|3@p(%h5os4$wZLKL_D0(K(OMsV2
zWUp%bspAaG%_SABksDCf46}kd@vr010X;N*Zi&dI2}$T;Rn;uV#ChRCH$D<nM~;Lx
z?*T0aA|RoF0zUQjPmZad>(&jYMOEFjAVu~=nj$r6550I5_m|`3JGvnmNrC!tF=9Z{
z<-r=q8`E{oFbH4t(>x6$3SHu?h>^GIeCN4;H}g?syt<EqgO)~4A}KuR7!tYkd);gx
zW>%qp5l|A<A1552zNX6?tUt0ShM?MQyDq<!<nnN0d6bYr6ndPGbqw!;5FCz*`fOwB
z;#)2L>)5kO_eppqj|hsPU5*<tQu>*Z<Ce-h>u5i+d6KkZ?P14}D%~bk&RXr+m9d|H
z${|x09Jju&7LbGGtA+eNFvx*d$+)EB|B#vL>iUirFtHz6fDj*tRi&SFKHY-bMJz8B
zk_rx~8|hP2Yx`NQ<p*?|VScFzvh;F{1TF^U+H}x)|1L{rts8>i$l)P?ZKCIKAOP`r
z!$`I=<3Fwor|6HRlOIeUZtX{wK(v=L=f6!l<LHGugEb8DkF)wBdje|QpF>?^p4CVe
za)%(?%A4%EZ;37$7@7!%0Zk_ns>0OHpWvD|p?d)+$WY43)mDJ#DejtVsXF%&SMuAs
z)o?B&4MMA9(_EL7Gfor<7?5_lmGoT<;>M1yReAc?NDYBfvL_Y^f+hhBkEXd+0IfBi
zHVi5}ZJP6<isnQ(90R$lKZ;!Ix9Hxi2w@UeL8W?)c^`!ZYxTHm_0H}`FyiC{b8-EI
zVe)eDPtom{_B;Z@G5RQgA-jUAHEp!>(7ip6U=yT(yp6*Pzrv{UYK?R2f}Tfk7a0^h
z2z&_&tx@3MGyD`#x|-hsF8+L><L9;f45j8Ezkz*j+84dz&YnkbY#T%(&>*e$t#Gz@
z3@=n4Q0SquLSxW>;r?^mJ96&Qg&Bg5jtW&D#k}%IOUJhR@J>zP#^sk%rPQ)>9S=Uq
zS4nK|FEz4pXi!NjoLRe>2->yZzy!}U^7}gfc$^|)Tn-uo#oLBgzfU;3Pw9Dts{@yI
z3PVBOXZzjeIEGU!>I(xg(teP}{g*k<ozYYL$A=1}E+8o$<h~dU6kR;Q_0n&>gNP=B
zLdBsVoF~~Ai&GC%R11vtWBTYS;8J8re+)@$srOP35p<YuDCz~Q_mk_}!s?|CU%ZP4
z88Nwif=nwdzq~x8c=aKMxae4=W*Sf5OGUC8QB@f#BU4*7Dq^fOLq~t)LU+|xuhb4F
zgMXj^WivLJDjHU|aL;?+8{}di?hjN2V~R-{tw(|qH{hsI_#w@BJQlkZPyfM1k`idg
zwyfA<ly=v3{iGcgiSjK%kTx6dcGDFYQ^-(3jgK1E`0Oo4byxkV)Z(xa!j~eg5S|wt
zHQswg*I}L)cWkr=q-*h<;0KK5svnH&U)MiK$6kP@M3x$<!d$iOsImJEt1V}W8gc<i
zBkUtT8Zj?>gK*N}EVQ^Auv*|Et-m$4f3C|1m(@U|=yfqfXvC_P$Bn!%_27qdTU3R_
zr#mr)MlkA!-qRDKvq4Bpr3{nxh)vYHny5w`F_!P9B`%605(bN8-_T1K2r6v9Q$~ju
z^#_qbSxGjBR1Yx#s0r$mAB`_R^#&0-2V?Im4Dd~Wrx-4E9;x`%Xm!Y%HE~%~mIZ74
z`~W6P$B^S4M~!{#EQ1=&ISf?GdlIswxcPNIX6$2<?5w8Gs$em-z7$y++@#tcGlp+&
zRLh%wbe$}}fO}ke%oxBgpb--5VMnb9Qq81*NMiJh!aS&(+}0O_t&jFs%3be`A?=G#
z<!v(xl35CHXb4<3k~*;xvA`E@H##Kgx<P?ru}|q%@kG7Fe{S5J>J7>rBNJu2(2-*B
z6yPAfYUK6OyAmdj81l%;WuC<HVoy-TZ$&68i_;_|953Hvea3ukeE%MkNMRB1Nb1VN
z=Uk!)B~)`3TO2fozoS<H_n|^@mG-4bORj>MhmBbf94%8hQ5>1rcv*8!^t=PcKTs75
zn+|=8caQYOI%Rxk-2ArHq}nfuF%uvT$x%IhpK;Y|OaN{MeKI??5GF2TNL1ZlH|{#f
z(Pax|g-Oi~;lvABanGOqi}CWuy2~8aBqVgBtH2l;d(SZ02g`~XNdZsoaCl{uoTzh-
z8Qnk7E&GoJP+%~c-s05oeMaf4RK&B;ax3z=6lh!<BSy!$-`J)bk#`x+#0w}oGC~f$
zFogZa+&6Xg^|Gsae&X{w{gB~&)%&SvkyZY2Awx7bKLOL~!R{SLcRoWZ2H;9)WR>I@
zIXHBbNZu<hjAiF_{BeY?9txK%3zl&g>}lPx{HimS5AeZ|SS-W`IS#Sv-u1S$QHen=
zI1ZRBlu}Q;W4!okpL$_BAWu+(6{aJ_f;|!OKs<^R<}B&*CL<Yw#a0;of1dC3!w}4}
zmg}A6tEWxo^Rq1PCnB@)MohzoE4eUW8?UahtzPPr79+WiCA5+iNLF)w_O9YiiA6@>
zG;wysQ7{Eoe%~V7)I~JV78!(0NH(5zHwN0@eab8SKy@V2B{^Hzu@NuK1l6J3zW)*3
zA1{SeRx^4`DoJY13-Wb=B?l0fUMTlAAeM-G{YzY;<O#@F$cE}-XeThvbpWl1V!31`
zdknu_SmL@N2_umJl3Kn3%#nlH=?>QqoAi%)t);k(v@aq`!dKee?`plRNd=QTO+{@B
zAcXpG3ltkx?Kxca<50BW-ikwM3Yf!0!hkt{)iYATpCU%81nh5Ndp_xup?wvnTp4IW
zwCG2QbP|V=vY)Bv{^68BB8t;P#X>;5DkWL&acbyw0P7fdx5TLv1|+}U^n%mBU;jF@
zkk#PraY?Ec{k>DnU7!H<&{@1VYSG!gqA}pHBCf3*eGY%if1Mp?U~fPw;?~gCbYGH|
zw+>|(eLC|AJl`M<bz+Qb=GboXL*9WavdA|61|v`GInc7$&@Cwz8j=yNz1cZ+zZF_h
z0>5PBY$WByS<d!A#muvwV>}}cTl*N2K*&NrNCDDO@(fq<^?It}=K!>gX&G^Zn(iMs
zTfC%easqj>V#%P_glqX++kXo;C;%8`fn#9<Eq-vWa4^_7m@Os|tmedU5sH<f&hR?6
zbkH?@MF5fLX?zM3)PpCZ9ai~ZL2kj5BzBbG^FN~B21}zS6b>D(l!8k}oa(Y8+R@eO
zM*t{*R7q-xaFM9iU+nm`ZMX@a&|hG~>b{T-vdW;S5&a-eAhT^zx<M*g8hP9TckGsq
zy&bLY>xPLSR=*Q;e*M)XmM%rLigr}6KM)=8Z9x#3%t8tzQ(O6;j`1KYOh;S=>P%*M
z%hegJ8dcSq{Wv7(t(Zn7KO~D4uVPL`Z|u}ef5?TA{xG!5`v+w*nVp>+gm%dqGCu}Z
zql4+SqV7Bz{b97O5+xT(L(&oPmGDhTv;TEZ$Ds@Kq=trSB%2*tvk=x7=QyiA*3Ht9
zU`oTd7Z5zt|8rmTG}EdR{GDos%__igevB3>XB@y<^<(>x#Ovbs>h@WDlfwJl@XQOB
zvJBHKMtz%mY^}|mV^ZTsPr@989HeP`ylZ_o&F}DJsnO~XI1T~QYDK22d)sb7j{V>o
z?jG(R2$@S+8ytV%YFzL<cRXw|I4&eHOWc6)ikrSSE?LA)E>WF<8Y*JtYJ?kJ{=V_e
z1AH(Arsoe@US3gK-OqiFkQc8qP|<M=`^WY9nC|-D1g_N<$VJe<G-T*!yYZC;7!haT
z=c{5xVo!xr6$@7<_ec!E1<7janeMw^_loDxXf85da8{dBTqlmk2$x`z<O`FxwDIs2
zr|i26olECwCQ&cO4dSc|*Q!^J4%KWqcVAsOAre)^cq%|*a3C>C@!g^Flo-AX;tLb6
z+LSui&29WqLJ{kA0&uQ@0eG2U)Q7LozCtpC+Mq$P#nrW_SI*3vEhndZU3ou0VG8W1
zc*1ZK#W??5(r82ycVG8=JbmD<0<n-iRgUko7d0~^_Sb46n<mLkKq|N?u_rz=-X8ln
zw>EC5B+o+li-SngAGFW4A}!E`BT48%VHQuaPnfTNEV+EbvPWGnE1-Z>fHkgi@oKyD
z1Bc@)wpY^@NQMT%w5b_j1UtKg5mGsjFjF2v71tY|nz-F@?isqcA%}sYBg_K6M0l#)
z0|}f|+I)PTb5M(}E1(*sx<BvO^hHeAd5ez46{nutRwIwDgmBf0{^*JjYd9q*$3|T<
z({WDU-XeIVk^dPtq9f0Bx@vgO3NVc9LKIa4hzj}a$YqXc)jj7h3iME1<JFYUogaPB
zOA3_S(BZ!&|Fr}Ms6M-;XhlD9H$zfIZy}gKEne+NJ|44B&*0h~(H|e~vAn;mnz)MR
z>i3Jp`!QB^{=D6tA0<fLFjzCGWhD<}QmmSIsNGc`>hg?yBDuwrNivx(e!tzuw{&rX
zu0Xr+%i7WIwNIL<lL)e|JKL>q@)_Dp-P5kWRW4brdEhX}gy(<W?(+BO2<P=llBa<Y
z5!G?Sfp#Ze)!o-0X`C|lwtH-A!crDTz2>@oP`5T5J5s1igaE1T)TA4uCcPNT5mjv}
z9owd8F?XcAA1rdKp<TK`xse1i?VsGD36WepRTFXFD#Wp0+;t0w*x$V+Rt!OMan_nu
z)yEe(=FIIXbe`$2B+W0n7F77kVEgUjYL2H)h2+vlu@g}7(Mk4pPs2vz7)Zhz<MJr4
z)ggeSw!;c47^k);InH);oyf5s?#~yO+ThQ|NP8b?1~Kr8a3ao?yeLIx-TB5x30iVS
zQXzFW2P7UZnm1ZUeftex7awVO-&mc36gzaXD)L6Xeo)tB29Uns*POm}y`$P3(v!|0
zSTr~({8EARH1*=Bv%a%>0&N!MgBDPCkEm0Jbqn0UDyq>c<iqk1YSch+khTJs$f7Gr
zK5?-})^$X!{R##yctE8f8ED3GQ^c!_em2&B!WDwPFJ=wU3IQMZ=fva2d1#58WRj&b
zSWy(Y%0$cH_7Obz*q27~TJOVLHzRo9XPh5XqEe3zkH*PS3I||5%;P<64o^We0l*J)
z=!W?#t)jOa(RWxs>xZISXcfBej^6l~{vB!J!)-r(y;H?1-5-eo(6ag*>2zX^{&#vP
zk6cd^!oMp%&<W=MFyx%+mpCzXR>$a3tGb9DRL|94B!CCj+7{3Ei3ET`P$8P0D0)Y(
zba>9`Dp=MaojgjEc~LS~&oXw6?;~`Q=@$=fkb7+dRFm=?f4u;ih&N$jK91$cI6d7z
zZ|yCrIH`-Z`mQy5E^6B`WA{gTF>{bNi})zZsKGK)XMJfbdKnkpB>e1)d5KUjqit5F
z&j0Npqu0s6_2HM~1gh0?Tl8Yz@&P!s^8&cA1bGecml)f~AN9Gc%i~CPkXY5Gi><|h
z1Yw*&;-no=>WAab`_^gKjfPwk^0fS5g?`W|#di{C^@GdodyWIE#Iv8ENT5No{U~W_
z?$5@PATk{9{z$kr1W+LrQ^krb_{HdZl_n~58=Axm2*hdZ^oQ{`0Ea01;sOP0kVQ^Z
z&z>}n3oZh<1Ep!qft)db0O+3|we<AK_bp=TN`>0CkKY&nJli6U3jhKF>7M<4$CaC6
zp9f$|#|X~OS3TBo%FVIQL!pG#fl~7uo2}zgk9CmnPmq&JmI|^o=0%;kOBeU|7k~)p
z5Eib96t#3<R9h?BNw^b_Lb1|BeI%%|tE2w10v%um1vsp7r2`VBNBt_LVo4ycKM~iM
z5)!>gDpMBN+jS#g0zMiEozt&sp+)0+M(iA+Ys&|+;+W4k;lkwcwMbEabhmBtBntn{
z_LqSpf~AlfSl#xS?e9wy8{rX@n;UFzkD^?(MqV~Rrvd!Mr({CAHj@(uaBbyqQj|LO
zLi?xJBo1IPQws&^{$qBBev=brcWdb~P7p?kZ(&nruJ+DG97^RK)8qVjmuHl#`)sbt
zAtB~C7Ucq>e{P0nWY-?EAqWC`fa6(m>{n{zU7q`PQOpfmna@MM#DDSQ*VlW73R$B)
zi=PH}y%1?v!)`nVUj~g<=VZElUwLhW1!39%RpZ1asg`!v<i6MnILkz{ODXywv!1)#
zby+g1L4Dsa0!1umD(NG$8fZt}Ih434X8rjUuKpPqLx9nEmrY!N!#OxEjWW`2)=EZ0
z+Z}yaX0#Pxm{=N4I==ojW(CgYSd2uC;`xlPe{x**P0Wh^GJ5Z&j#p~5i#%~Cf=S8S
zw7ZVmrbtLxtP;eDhJ2Lbiiho+-q6KF+al5sg(d(lFKB;fJKxY1V$rXJNg3C1zmU*|
z>Uh=ph;3f9u9n<0uo<`=70GJh5!)F(bp@GUbPjzq{$$l-w*A*vb#cFt1o()6$YY9S
z_OBP~(*Ah``PSnv8t>UL-acZX^>cqoK|YQ-y7Nij*jmNtV(~X4vnPbgZRu5>$@U3W
z!0#~Yd3j?v!;<$<VtE->{W{TpQi6DOmKy!~JfBY?KaBnPMX?g5GRP0}%mcVoYd$q@
z=tbxXK#9MkGC!!}S=Rn!Y`mn82yEFvUlj-oWkoE!Qg1%n>7$IE$5`}@!4BmQk#1aA
zKY(kf3c@Zg?+~1)#I)DY5iKt4h^CJ!`RBnX$se7dR=(2yQwJNDjGYCHu7YIOR6xC>
zpO3nDYcDy!{diT82v%{iTXewoT{%b^VRMz`IC4o=C7$u|sxLF`Z7<f{45YY(7g^~>
zob0z=9Ci2v-3Xq{>fkg+_wd2XGuz*v4tpR_kMf{Au!*B5R)li<?W1(Lq~Ag$Aen|d
znSlLKZ5`9T=6+q59wJCkQs7X5cw*n$-jUizI!g<2JS))ENxr25e*3M_);H)&R0JX|
zeCouL_RspoOoV@vSEQN<A{O<N0q%~!^tR+!EfrN$Y>Cex9$t0+T1VgG&_CKUX5&B^
z9x)t7JXzJi=N!9#iV1SE2bcP}!+?}6>^fQf{jAaVE#xO*(88DEW3>K0<962tCwq(X
zniGP(^3Zo2SiksCU%t!8e3qL9(Sv*&m4NwR+O*;M=Yz)5Vbs9Spg;g1gcb3ky>GX%
zaV#7pL1iJPaPWA9PfTB4_1!XK&y(1%1O=ihY>VQ#pct>j6yNl=vEG3QC*tb3asDcO
znh+t0p013#@>vL1Y9tal3vUofDi!a=U-GHGQR6;F8-jcZljedMf1kVeMKL>&Jw?GW
z`VlIjRPh(lqaN<DgL&ve;7~HFW0mr%kJm*1vaDgu1t>X5qLw)3Zi$pjIEOsen5gc)
z-(ml_M;;q1poMJI%&R*dT;8ibn}kCDFUr+2wfjQZQT>EgfxPp<8nitldfhoa7eZD%
zsTeGlGXzdnN}@5%!~{0rSI2+qH2F6za_9@nz+57qA|xI^uZ@xDb_|$2Yb>FgVgc+l
z)b5@U8|0i1Ms*PRF@<{@ms?(|80dcBH)H_8dofvXKvG0-fIWY8(3r6W69fL;mURvL
zAfS#GxWEy27;hpwAg)UqG4Y3n>9JYR1vUmYODure9#+|$L5z(a46ufjo+$Dai<k3%
z#_xtDj9{x15m)SB;&j9fcj*g=9atL~f|y0|g2ZaX3CBcs9wdk;mnCKlZKq-ct$#Fv
zFX_H=P(z4kiWga!u8?d*f`Ova{WT(9%WOcsTmNO;yu~U<td#UId|qriY|^~{8LJSW
zv}je#-AN7dP_pPa{}^X%)L+MzRmcNYsCLpOPUU}V%n>_Eyc$*=!Zhg@@hW2RLG0?j
zM^_H7Bn?DBTOY-+gDjxV|I<j>%h6$kr~nmy;3Dz}%P4tvbD!}ih8F4u5CF)5L;0r$
zUNh!P<0yhFV@%aXF4!LxO!&Z$MkNztfd=p?Y+T9Gf|Z;6y|Eobkp2#l#JaN-Omtk=
zm+mp%z&yy{EmIsakdOqY_M8723acZ%4VN8)w&e4q-u=$Fg3j2XOn?4ZSqrvEYc8Z#
zXyMLYt=ot&S;i^Eb;KH6#S!B!EJJjs54}G3^(~dG@KNI!L*W;h#LJ0m4b4*oJws+Y
z_Z#C%t9h6}#VsE)fCKRZvGE==ezYu4nR=0VrVomO1Ao8MF#b<>+gHq=d6xOlE6a@C
zb=DE%W;Tz-#AXY_i%SqH!7p*cabwIT-OLiQ#RBisYXJRz`kjGITw<hhwDSO`lALbh
zzA<5r<H%b*cEFD!`~{cEx$_)<ABBY=IO=<b6~kcV6$s|N9zAy;T3X>;Vs@mDetjJ&
zQq1FDP_$4XYz<D|BINjuXfeS&g`uVU^EDO1C!*InydP4dziKc~rLK6x;s1!xE*&gr
zaQVQYQhs+B@5B5sn8Noccxa@v;0p?biRBwP=;{*E;8j<*aNc!Cgi9Lfn(5%`O;o^*
zt(<Wid)Nr-3dj9%Jmb`-zdN^&>|USs!PpkHceU@^urN+N-`=$*twAAteUsgFC{-7R
zJ4M1wR3CP5b+<}u#m;#3oZU4~I)#T+mq-R{=#_^e`@1fg(x{Xq4t-rpN@cqEaAE#r
z&ZrVZ#2s|rQ_~#+P}!j>9fEt^Kv&c(AqjOY_k@*arLv#v&N;elKxjM?mQtQP*PW|$
z34y!i$TU}Wa-|H{1=q`pTJ1iLcl9dPg*oU6y5Yl<TrUR%oJBTj`Il?brk?UC@kBvB
zr!2!Yepp>M^3tACQ*&JJ_~rIxyCta+MF;ZS^X<Cm`od7q`r71M+-<w-vVndcKn&#R
z`HY<Cez~(Q9nQEa<(gCXb$7q>yUry8trI(})Y1#x3BTx)41P6E)5OAC-Ant^G8QYM
zd~@6l#wR!S5?jp3e0*3St?piTc8A_lLbm^E3R-k_-;lv+OHkJbc<V}yZRhSVS^s;G
zczH`NzqD~*{<|(3jjG3|mmN07&CmryB<qIS)WZFVK;e?iA-w)C{%$;(*;C{ft}86t
zB16c9C1|>DiBY-<9~qzcMCdqEUN((M7O)6Efzj7__i{Ceb+JJ2x_bDivtmcgUdSpH
z%M;&!+vU3J7zK=3^dkYu4|`p0h_3}+8Ht9Xm+bv6u5J4XxdjLF*GTaAuZNvQ$B4_8
z%nPI|3m5`sqFZHGI(lOVqrARJlk2#iw{qAUGZD}Lej6%x<j?5Z1bxI-6|2tpwB7h-
zAw&9qXj{9-fCd}sr*bj8-Q6}D{gj%F{0WG436cpU)Zcb09;FqBd`XnXqpaLb+z`uc
z7vG3-DrhVjA_)W(6Z#cF+ijIv!yPG_9@;$jsc@>rD{O-&=w61Cz#zn11@MU!HDjHv
z%T4<CqOp)a6J4LH+N<t;-u7_?-6twKLMN->DiCvn`s7Uew{4nKzyW_g%if}`^=Y(w
zOZoAp05)X(VEfI`74o2>1w@Ekc5z$#tLHT7iAnt1!v00;CKX_D_nc`zctQ9RKt?<T
zOE*vdX?xMeufaLc>_|k)Kx2VbyLPY-I;Fu@!eR^j76Olf$E!a0%jTzsxe>8b<tH*5
zz1ORr>}3D!TiqZP`#3a~Cocwg)n&VE-Cg>twdD*StMzu<sjj-*5@t#7Qw;RVCBwCR
z&o0|?YtprixO{x-%3ZdRX2Z_t%cpvNW_#KyXMa+8(TLe4QeOGF?QTcI-_s4bVRzfc
zHY!KTCvnhcwvV0q_u1n5DO)Ewc)S8~9JfZxGoKhWg1`-iqzfSzO1$#yveh)2Bh!dg
zXYI0`;cobOJ`<-#eP+ATLQ)0^Fr$;dGTsFB!e_Ssb!yT8*nPKcB_CjyhVzD}jEikb
z<O?%Dwe_?HTyLQ`B~_o<#x+_%b|Y4;+GQ)UCXTl^HqDTwNoiYi{~fkifSktm0Dv`A
z)a~uu+ccWj5a1WQcIWnX(>`umhaJJE)_>71b8ADY(5BjFciP%_Za7gd+L=1E-?qNd
z#=tG&RPLv?bFKBSohNV{%dy8+*0E7PDHxkN9kj(Z+7ZN9uNu3@)}zq^(|@A6cBd_+
zTf=@RPgb)(v%S=_VL7KVUX^`g+tXf`vyKJ%U}3n{#HlNH+HSV!FpC5<oD5zPQTx8K
zO|r(4?q|ux%^DRIAu~=LIcR$(s&V%y6VDv9ZD=%nA26nB@ulsNUJZYbU5ZD7KexTd
zb~k2<h)NgrvUOoZO=^-<+upXtVRp%@1{KC2<ZMxEQ`Gr=Z2$Do)CSVXSS$RYQqg!B
z*heY0Q{8oUBg%mpY8xf1vwgPRy_<dr+PR~ft%6e^e7V7gc$2=DZA6!*ZD3-Pd)Qi8
zCudMTd50>){D&t3)t&ooFTt^ZA!|v2L*-LLcH6qS6WbtHkR~Yr$|2$A>YsJCkMH+M
zDY>b}>gW9^PgVu1ZTn_Zu9G@o{K6usA1h)X`F#5<`>j)BMNL-fvDVIqU+A$CsWHQk
z?|>L?M1~sF-x#nBgDJSB1kHgtNT@}e`mTd<JMr1f8>d=H?M98fs_s)STxR@>YYa6*
zL}kW@yF#i2+x`A3<9<SJn^yViRi$&kNDem=sr%G7rg0h03$(}-+*(rbQhIX_qw=`!
z2h#-K5Zfi}OO&lUdl_$?sT*VvM<wwr)IdCV?DjS~i#LPZ-3&`iDttzKn@B>^)%eGn
zO`|cRSk#U=6IXN$Av6&i%!2O5uRSoV3Oq*qx;R0|+Q_n|bup5C&3y^hce*d3b%(#y
zWPoCl4L57>wa9lk7@ST*=E7^%XQ;6?F1%*eh~r_3*aoZ->$Qx`M4*Ja@<x;Aagf@{
z1EG-XL8<s|#!wtx=wz6`NDMNv@Urcv9L80+<WP}1mW5(NB*r39oor*A|GwTU)EpLG
zLWoHBCfj&zo-y3otJG2+4v~x_J}VUQ*brmQ;YcHlx~kii#*J1%gE6w)^~Ts>$C+?=
z#~IRq{EA>rz9thKO*sw6dmGtbSQO;XEi6P6)ic32KSAy3ZM+fH^-$j|$qHxX2*dAJ
z8qIO%hc0|~!i7>tk`&%!1XaR4PTf1pT{&LY3>}SmXriH?$wg<u=V|R4_x9dx_C9s4
zJivsA3#zPA$dH8Z?P&M%-_G08qtz;b@hYmv1t%Ig<Z=L6NFXVT2xQlo726%FFi4K5
zL`=i~%$pFy!Bn%xnS)n4SD_%0$*(v#Q9p1ByvOj*9cvExSGU2IROzQlYz!&a)w8AM
zGtWDvuT;PooFb$z9KY1lHRguRx-ZgcRbvZ5J&Ylvx$1PI`E7e$kyTm63vkBBKt3O%
zsSJ@Hai~@K_2#d=^^ej*c{SBEM(0M29aU})J)h5s5hK625(1ST(nCf5iP9RUZ2`#U
zPBZVhRu3w>B2-z!Ok`BJR4G@f*>aigH#=A(x&%(!yaA%ln`EB2P`8Lo&liK&nc7%x
z<}y8gkzSIIyF6js+Qy}_=9)SG(g4O5%&P$fjfsQ#pE<^SKFH6>>QxfZ%ZID5$iPo_
zHNENl9Iwxc8vIi$<$=t&*chNXHKwiEcWR?C$$?J_nbR+zO{}`!Ki1lf@J7N$lVZgF
zvD|AuA<GdNg)c@P037xo^CxQ*BS~5S3<h{AXtvqiysWt1uVZ5fI#Qj-nEfj#B`+98
z;r!ehkPM**y1zSMJ`X)mh0VCK*vJG6n;6K?Wu^H=9KU$9)LikF{>AlNHQ*eqbaITC
zLpI-JcKJlt)U9X|`}Rk<IrceSo`t7uWidYGiF^$FC*5?h)H06zT%i{}LADb0eTjL;
zCYDDpU9OBHXk5>>6RZ-C-5$VUra65rq=|jdPX@d)p<19HS)a>CnRm&INwnv$fi<%h
zxctNJRgZ<{?pLivXG8Lswvd>lLw~c<{N;LTG)hsEpNq>>jM(*G>}NhI<4aT-p|LXV
z#ALk$%g2~MzUh!dQ%6$q?1FQWc`@4uEy&3bCr==3P>{0A%%w&21AI>68_MInkbJT#
z>tMckhb~X!r8QYfnFut3byjtAnk7^8BJk{NZcQ~cc=!vG*m1x4?<e~6>A@NR135wR
znKy4T&vNVThO<_3%4@shy+4O}G2d!1W^4<}J<$wZNF#~3!qtlaepr|&DbNFZdUKw+
z^95a9x2NO@P?rbI&eooe3~&sqpbtVX<YlqL0dv}e`a@ZyA<(==PB?v?H_|Ncu9t_z
z?i~GK4133IhabE+d6l;{``^T;aMD2W1ZPi*@p0GxZ?>t1QY`v;ut-=JJWYHk&P_LW
zeWUpk;aI}epp=-R{2IJ(xU6OTY~gD~X4x8AM~+K8L;@=vW3DP~Fe_k3K+HKo^UYNa
z%E1%awpKy&#TWHnSjUTHDkV34CB&7)L4zWnUum{{g~4EC3L-Y;2J$OwWG8t?S8Zx-
z9(#n=V%mWHNl*YR0$Sa(%>3fk2A_+KNx>m+b*Xu#45L215ErfXw>MwDy}|DV-bhi;
z1<k*qQ-~%zP$Gw!KnJ1UHg<E|M*U&@!UOq5Y!ZPWGTd9=G;iLZdm<wu$hpvbBJ46=
z-95@Ye>H6c72sjUVg({A$Ns7J&1-v6&RG!dC(IdAoLp{RbGB6)DCfff;}X-_H`g2^
zR|mII3Ea4v2c`+3LEuwY#F?xA2kiod1}lX^`7(|yg5{rSnz!cCmk;JwNxm|900DOd
zvDQ8HfcgHJE@22cHMty6XkIX67~IW|nH^VZPSB4-4Z(}WR)1+qwt4r%OcA6Qk!m95
z4r|fJW|><*q#O%DMScz07v)^Tk08)<rkb<&>4P<}ERZh?$uxzj+%nm`&vcR}L8bq%
zEKpEMeqL-yD8MItW^_-7RP?VH7pkaI#MxmRop_a5+SSn)BQ^eIn1*@9gFO*H%%I&f
z>gSGqS-R`Q;h!V~xyUluA>beAe>-n?cfYCAkhEl;{wS*=JuN@Nco9dp%5Qp-`a};&
zBQA|6WO9L^;t6KKpQPBc+Znw?1o=|28N+%66^K)-L+1JM(fe7yp~S|N`12=-EDlb*
zXNjlFXrr%~1W*)?FgB6J)uYj#ZF4&IMbyApotIxq8b-`d@`?C`?wQ|p><h5o7h5%K
zg4TsZ4pl1E>pu6=7xjcvOLBuK_+(^@RlRR=Z_4Y`m&8K-(Z2Jrf5az~cSQYgvFC}i
zbUE3=c%wVukKslqh6Bq$Rp1Z?X><jj@?PTE)t#RqVvy`fUP2E_ZskNY%&+#jCk*Q-
zV;{<ki6XRftHO7Z)Flp2=uTZD4}ozAuyn8icF#GF=%Hr^f;CtOe4NO4m%2y%tqT!&
zYk;kI5Kz4L*_ONRa(6nc7l8x=*ydRQK}^nm(*4-Cw2+9mP}K>vr9}DlvLo&TJ@q#;
z&}%C|*yAJ-gL?L2PwYZ|?&D^w%q4COi4=!Guj=A)-+LPsa>L`lz#5_`3b;Fdhx_m0
zo%G@hVHo7ZF@XQ`WDCRvVaX!*C0limIiPj?f@6cJL*3rfz4bo5{-h1YI7)Ovq9oWp
z?;iK}H+0&_USts=L|$8250R7>hdj5R;o68*4<vOg<S7uJ=xFM%O3&R-I5)!G(?U2a
z!qK@^kV*#j^`tI#Z3I5SbcjQ`7zaq_fhAi_zR9y?uxq2(D^UvN(Y_e=tH95X#5a!b
zC8(#L_pG~$4?^+~Pgx+q+zc^3L)d^ad^qJs4=<8zga`C32^GcQkSb5oQzOpfmptMj
zwcbXSC{0YsT=o*`gtn!oyy+p-bt8ulj|@Ngj4?qX9e7pi+dO@5(gV&6)R3<e%u6J}
z4I?~Nw=)ntYC*gZZN#~eugKlA*+UW=nFl^^dDM}Y74qU!vAn@d*wjW(`A9y+TLON)
zG`={I|JA9%o<74FoB+P^+PJR6_ADH;a)#%vJ80wM{Q=Gl{x<M4y5pX?<T}s$_fZ8_
zAIiluNEREQEg>aYb-da$JIEmM=i#kkKQ2EcnUXW{<13zJlUy5N>)fjqh53OH$0j$#
zMUzV`wxp3%pWo}5mP5DbDH6ypy<+PY(L8mb=g*e<gEBuE3D=qzX8zFCp4^abl3Gqo
z9(NNhB!$<xi##XoRB&nG%`V1WNyC<1<!KSngUIBJ$<PTl4TNL_D6?Mm(R5Fn0_u6_
z2r|G53C%N=w{tu*JLzV_kc6x9A^JFcHi*K0#FIB#SM(K^T8wlJCMCq-yVv6w?7EA;
zGD4H`p;(Ej$%rA55E)v|H(wkVEy7EkbdrP^x2N2k6P8ZGs*6v{Ciex+xlcE^KoOs@
zo^C2P2RHnE94?e(Ag?qZdbYvuV`HTMTT0BCD;kv34~On(xp@WsaCu_ow{B1C0#O@G
zV^re`@l!wVCG-9N=!*1-0j>5VBcrq3hn_Xx5SdiWn<8h+oi0?B?lF73rpt%bAY+Iy
zDUy4FO6X`_x?NYmigH7kx<r2RstY=q5A0#AP(5EjRMvN~Y-VbT`TJk`mWCIJT$RkE
zy(;!fbMfE0m<GrIc{L(NN+k@h_hse-|K*BoFf2}KQD<|yr4{55y)N1U7GucBm|@<1
z52GR-k$5cNi-hbW+uD7jSyDrVPic{gh_yOZ1ICc7@7<O&&B;gfI;RIoCnMb^#YkN3
zYqyz457JuP4J)cbHPs5^wJgttZ<w!KMuo)ANs8qBV$m5SQNi{1nYX;pw5UN+5NTe-
zGn$NxGOt>s`^pB17kNjPEqAN=TVLlA=pW3v0H+I5wZhK-TW(h09^IcK2L3OnQ(iRm
zs=cc^-=FU4&##A*6c@S&L-MN6R(0;N$0?;iJ0yHUHo?iqt8U-gIc~f23+*j8^ji0+
zEVs;LWPTBRA~=!IZIM#FYTJ9}C#ia11M{jydrTJL&8ND(XYNgR@(>ntw49a)aNzoE
zGGp3y)TO*r0Gx%jQx&~tp8UB(5z?|!+rKt0S!|ZTt8(NLN4iOl_W|vhE8LDvj!jH%
zXrQK0_%k;v9)Lldl}IwoFQ&HcoZj0*HUfHi(rxxGbI9LVuEvTlslgqS(aG%kABV^-
z*GU9oel`3~x<_mo6X*Fl1+fJskIOnHFFz(X#4jq5Y7iCFUF|$;GNL!34Y89X+$WV4
z9y+iSrWgITx#9fIQkNF0Au&iX74RYap*}RDKQN_Y#5g!sf|i3acAC>#=wGM%$tRC&
zuKIm!&iYROE_G~PsDxxNV{tl~fHaa2Cw7f>bIs^+)(1FaW5qW}*gA5`Mw9>asBjw~
zhXRo~I`53CyxSc7m##@;weX+}4-4!{&3V>@{-o9L5Y9PJrHq$_&H2b2{H(6XA+S!*
zFPTGg-<{@HMf&sE#5IS)BLhfJQXAKpXTK2s3=Z(pk=EybFu(p;7vmD0AF7d25rL)p
z&N6R1rOQVkPg*OeFZ<2rpVRag!sTlCo94plktuUYRO!yyM%0CMX7tUvimWQk3;ia5
zcjUfT&DjObv|#;atunvL)>ZvT*i}_6{@t=0?A?K%%=<qxZ-qAcS0bxoLPZWZbu>CN
zTS6Vn$}muCPpzB`Y+FN3q~1)-HCY%UwFhlZ7M79=)6AO(b;`_^tPuIotQs~jNsY-i
z=Vf+E5=BHtSb=Moq*gTGnMd21G0M3K9F{ONQO|;K5->%$<E~%K$1~i`RN>rtx+?Nh
z=_+1a;iPeEYA9Q+T<=-;O0*OX4FDtH^H)g1y^3+vB6Pp9&a=^~&8Z?XSsEom5Qkpy
z%(RMYdrDBhzvwyevhGQq4iB(S5*f$AU+=kjqb^SikWC+<9)(9g5>d6zbICet#B-yP
zEarqFaVR%=Y>(@ogDeY-Lijs3%O=l~XRS_XJ`pj9#0jzLKPx?NZ?K9hLIs5P2&egL
zz2`ft@cQ65c7RdK!*;4{m1pTnt7if!@~vJZI5Kmc=SxNiU&*S<F9|nE76|KVx_aH}
zpSV4%3BjN7>bg~)pH^E<m=ioz<VF1{$#SAPuk##xOIK&2^e_PY-V)W$m7ag!)1}vw
zn2q&eRI%!=wVo^fPnQycQX_Hy3O(DaeqQZ4`bnc-$JPE?1PHv0Q0jy?Po3hqW|#i$
zpkReen6xZNs4G1k-)-0fqI%u;NI%1F=xt4whbit_?fKgpwe}jXsMLf&3bQzM=Zl_9
zh7RrF<SW({sG$22Pmf2ekMas5tH1`}Z6B**S9>Zx&_5nn5y~&iFDu2B2Ol&(K4Yop
zzsnj9iS4f&Qr*HNG*^nPJp5ZWXJ|fpBf;L})D$ka|4GlkQ=@xQkroW)RftC*tmpD2
zo>6x)mLxThkxbwSiQncqcYCfa(4|?t2`f(BSZwa{Jdw}P!0=_vuyo<tNpn35C+S~i
z<XaD+qT><57H*cT`b_nV9@nT@tlD+I=h#HO1iTR#kb|S&*|=w^=frIN<BU)hLj)26
zu$$u<KSd9`FaEH8)FCb_ZJ7N13C|)KJlp|54gF9q8UZ2iUF5lGy6#6L%}ViM(6;53
zb3MQCSuW5FqReoqpM+Z#BKp4PJs<LWX3o=z!mZ>?2%!$y==t$6Dga#(!pp|x%L@*2
z<dDBNdR}~*s=Cw3uOg>Y9Bzeh;Mua{k8bcBUZVRKCoi@{y5~-~cZ27>rA#eZWpPY2
zIl)#E)%X`YyCDM^4^oOO4_2~76}Qf_CVa|+Bv-JGIkTU)+S6@A^h|+}@aZg*I}h0o
zY498Oq<5V&QxVXun~=>V8sMP2;yLF``b$UiLOa0e*sB)pb-(#lq!g5*L9qywBLTXA
zR$xt_G|B4gH1nS}TGFgnL7E74Wj}K<6@WhJL@rq%Ic~oQ@Vh<c7!iM=pz5(@0q!|O
zAJpVloy;wRbvZyd;u>qCWwlYA%|D0p37nw<fQK4lOF+oTh&InDYWV3mjsNxOYyQ-_
zVFmu7@aeYw%omyrRs`=8Y3BKDtxw}rtp~)_{(A@W?`-<1uW1PEb5VtPwn+Tk5P)T@
z5Q+xWGwlZR*th%~t3a?MG&Uv=P*7|dV45QQ9-V9Y{d!b_gyN?n;<Z4#=f#=ns=;UC
zVp7PMnjJJpf(SNR!DLX6%^ovhOoJA&F>$CUxn<^FR2SsRf%tB5$%~^k@>c&h%{wyn
zr-vXxAXOTI`^xu41PESc{`U|<a@{o1M(E?JGINh0;dSM4B>VTNjpNNWf>g@>;f5yj
zlWu%-%qNQ*eO%%j)^0YFhUsp|$rY6MdSc|wpV33jf7j|oBx)N5jr1?Qta;o_-l~61
z6keVm;7=?KLYXRLp4iu@AC6|nEc3Osz;xutLHm_s$=y#3vNP4(H^=b?d@iF1@Iqn$
z;(Z3%Nru^Z+kD3+e4R6c#2!wBtsxka7U@rOQ9RN@{c?FJH&QO1nL*$=87uL8EbFAt
z%!@B|Z-Ov+%7$noDs*yObzyYps59J$u1iIBzHW?r^~%=#Q38-a5QabenhEH4vTD)V
zGrXT8nOlNGQZrF5K}mOzg!=q>3-i2X(e0s+Y>Z|cWyuww7Pa&IGtt!^ND5#ie*$mI
z!UM(m=Df2!gK?&$&uo0%D)Nf-xsnC_&i#Kev|zVz$RVK&A|e65-8`?BYP4i%eqk_x
zBd~>{jLi2es6jW!3M0CFjD#@pE)w($c6#kx&%KEnP=Fm_r3GvN`ol>BACs#*lYtay
zH!QzEax)}|IPX>edBoHE3SB-(c9UX!V7-Fx%<1R)l~uWBVkiEa22m?jxYTpoepiX8
zPWimMf$k*!rhxpC6H8LW^t!_R)?$bJK(raW#mTY(4{}`To>S!52(4k-qM<P~-(QNK
zDk>cWa{O`6H<Mig%MA*VgIAoDKs!{AuI~2>!Wbs{u^?0OYy*IMrhDHFodm7z&vOG(
zN;)64p`Uvu&>AvLU(4`7>P#6FSAFXQ&%3)^*T8^NOL#dQ<QKI~ExOF`pKtVKVyQ@r
z)j<KkxNS0!-?`3Mnx(h6+e`r5O9B-f$7uxkqV&5Q_rfV1honM<GN#Iy5`Rn)fF1jW
zZw^mK{OtLCQzxm<s=&TT1V#+W)?>hw@xx1rmxuFy|K9WTm-;9DEA-oSyt=^^{lm|m
zs;!;gV3h{`uS#Hk99?~h2J<ZM-}%KM92G>opw1k}yCnwK&z}6wi#O|X_#9U~cN4N>
ziq}A$J*%K|>PL<@xIzbgU7*EPNw%G0pqCuJtMkDGXXC0wX;oL1Q>9(RN`S3>aR!_7
z)7_nqBs(`rvI4L`@JY#);#FI+J#D(XMfWCVhp1E>t?1{rr#f#*acv$Vm<#F8Kw7nI
z^Wj`i<(H1lfH=c&_^1LvAuXU!#Z2;yUgOxD8i#yP39Lavm1K4K49}1!9Gm6d4oYw*
zN~mGsnF2%djJ4W)k0)z^V>34v9As<>#x;yMa(G;~diJbzY=$xN^(xA91vbUK=I4h!
ze;ubnB4BC)6-9!-GTO1zJ#W3?*qoKZ;mC#7jI6On4(@`yW-UL6Rkuy^9DmKRc_5B9
z!LdbnPgVpZkpmJ4KadyxCf?!czTL5TD6~QftqB^?0cnj_$7gyLJkBhT5K8jN*C6-F
ztQnsBAJfwnhC898NZ=pl>{Sm<_x#M9GtpHmYB;21nI{VP4o_cJheJ$KBhX|fgQbn+
zrE@%<@AxrNLx5t)UEadmHP5r_7{3;&0n}IL^#GgMKGm~mx?{6IM0CPZ<^;z=OL9aA
zubSt1=qJbKK{!<eD~ibP4M;>vn_E2Fo^os+jFk=tKY>-$MGtts{L`_yAJ#x#nq=gn
z%0arl@AUM4+p&3wWdEor4o=WR<ofL})06Qn>kSzQUW3$!7^j}P)AKMB;(p4^uPPxf
z6`Y7&7**z(@G-?0e6bg@B(bDdQn%jkx&4)fn;e6Wf_z!l@|9aXN9bz^M<alR(ZFV{
z$c>Pwo}b_uzs0c`!%R+ba9j}w+p@qj+WB{SqLw>0XZYAnZd>ZE0~kThBfWFEXTb)?
zW{f`Bfe8$Z%-%`rwV>zSC63MM6b6a(1C1$W2hep>rhD!`%({`NBwvtZO}enI|IYHf
zwuqe(qmazc$QGNcY!JHH#0NYd|Hdc8Zyf<#lO__*EAu@!vIl*!reT7S9FUTTRQ)l-
zV`pWv#8g_K=`IZeS#UytcI;BJdUuMa@)_&wa0s~KAfz}U*sqsz(8TkENUw5hz2H50
zHJ*Lz9Gf8&%+x~vvWOSm=DB1yh4@heG0B1u0aqa8fx*(J+RyV`@ddk{B-3HN<kYZ?
zPt5R4-^|buAgvK&0^#forL_oM$#SwC6FjRp7YJYJ0oZPCKKCR@M1uNyrYGtkeL}pv
z7KfG%bCiR${2|ZVzdAN&YdkDWNLUMBp5?jt7rkY}0*Is#hvXAgN5^|+zQm#d=CH}u
zL4wKoRP|)f(?S+0>?5`=jPVS3RlsvSXTUm(nxBYSSO}Y=8mHcz={b*MiKHRyq%7Eo
z3lL{A-SfiB*cEjyF=3C$L}CoT>1A{6P|780P15s|>cT$`IVUzw-T*kU*&N*2stxk|
zP_Cq2AR_`kRd1T)x|Hs))^k4yy(3i?t}$CC>EeN?T;q5Etc3S*k}%b&wj0g(JCQ~t
z(4~|>L;}%p*iTaDE;C>LJ6d`I#K9#`)FP7gVrV=0irH$i{`g3LVF_At9$$}>U%vW+
zdHif$(;s~d??{Q9hcWJb&V2l@=my^)|5=iHd6_wtZ`A)b!AB|Ts>jXAfADQWjIcBb
zCPyGD+($iSrk|(#A6W4}0+woIIiSobFPlqEU7lU?Kh_B7HBk!RYD1xrYyCO1llwQA
zN0~GIqbHZ16ir_OeUS*&u8rn%|1c!3IKWkFa#-ZK;R=H0uuEAen4mTdmxz*AVWgHC
z{khPXKkO~L+<ec`<Tp(!(@y3gv(|PFE9-`@jdWgb7Z6zDROoT@<CBe62!CL;;Bhna
z-$vz<v}ei^^E`&n%m@UBW`ZTG5jQ@$?Y5Y<vzmM%K@~l2UMl-cA_Nid#^#6gvL+$~
z|GD0*>DaIdX^d0UE6dDvzc&0hh9qXc)U2^So{q93-{r@bZZY5DyRw%UPQ%m^n+)Y8
zJZHMk&^3{tvz7DSG^bfVN3Dk?B9$bmJ9e5s?$%=@|E#!$TQo<?JD)0g#vFP|*Rc(i
z_@T1@0JuOT&zmQHXj+k^K6}o5;1^wi<)DCsc*MrwrVNFV`|vq4)1t6J!GMMFPyrMB
zb-8)<1r67NW0Il{EHy7;gP<}<37`w!%=-C~Bxmu;N6jOlhHW6SBz5a@b3Dg^HUmiD
zXGIGWLxoN7ji=2Qr|BiZ7NKVu6Dp~(P9>?*lGT|j%|r4z6ycL&^#bvFaICszwYgl5
zeG`HvoMeL;Z*2-`d2vlHE5@|T-Uuo_<0W&hbzbZB7O&o0ZC*id4Tup>QC0JV*@k1;
zupD0HT4Dwo5hFRY$n?6@ERlJ7)d)<172IaR4>)AsKV!!K+^{2(2?9MWGZU@790s6c
zK{2#|doEsX&KHg#0G8yh&`aV&I7wFjd&CU7m^&;sls6Hd4IEK$7)^o3lzPPc!`pBs
ze2C;0%go0ZF(ZqR9=H35x6DOn>P1YIxLG7$xsp@hM~ruktP`IQr*?TXejLm&9`R}I
z8|H>ez93E}WPXcG^ZyZc-tkdZ*~7nf><VHbl*zq=oi)9zjWiNSg@gpGOp+l9nPkFD
zCXm<_yRNv3uA+;gSW)bP6<uA$-dGE^2nYdjRTNQC-tRfj1QOQY=j9*rx%Zj-+~?eL
zPcIxN(!;&(KdbdE<N7RzGxI)Iv%9`%JJ=!8wToQ)j@OOcIy3KXmn~4C{4h3X@6$z$
zNj1YBbku6w0UI(*+amXuLv*`ELbgTQ<!LPSx4981`gqxv+FHG#SsWjpj5Xit`cMD@
z-bF^FG@Ih-U8(wfQ5eI%<afkxUb=Y5Dj(I~@u4MKT7w>vBJgCJXKr*;_Enfnpw@6N
zp~H>{>Fv7Fjgxys90A%(d^yy^RCDTOuDctgK%;^<Dv0?BF8S;J;eOk1heISL!3@5`
z-M$0&;J7l)Aq(86a=37=zTZPS;a%?MH2t0m8gC1kqtZ{ZdG=Yir*{jAVo|DufK+Vf
z=2zUOAL-%cgj&4aNP#TzNX-yh#Ok81QZgA%O3FgEX<O<Z>d;Rs*&-o+Wai57_^aHH
zN9$YroOYVIc9A>!Fot(r2Wq#}ecG-wg_Q2by&-%T+P?D=w?M}GAZ?oYX{p-;(gL;0
zASPTiIaFP#UzBvKqxc|}dekCr9s!bKN@Na!X!@;gv&WD7&mrcR=WlmUZqj4uw_v9E
z{#N&B9IX95oRab{xW7Z^_!R0sklhhNh#?kV*Xq2<gGc~V2k*ylfV%K@#BKUX-%%tM
zOPDV~1#r6y+g-IV7MSn$adK|g#M~}Bjte236m>`apl8&3jrr+>7u_818utz&IV^ZV
zxnCdHp~FA=g7bU4M(ST-qlXJ9eVTi>TLFFI=@QX%<ENj_9X;?NM^!?Z$t7|zTDwII
zy8Mdjtmcx3+}cmP-3KK^glQG0sAEY9>r34fm>v5=-;_K~IgD&Vi_F`z-7-(&s3fvQ
zWSwlP%9sIHyBB|EwLTI75r7m!xx+mu^n3^GPBqzgxo^O3!Gv~vSR6I=EzO;Gx}`n3
z;W1oaC23Tv0(48=XfA!fr%^fYa5t>i#fi)mUpS;AQ#69T7r4_nN#44HFhym}#qRuB
z-XZrT1DWP;H@f}y*9p=l)#>Fc;H(7+rF-ZeH#oZG=#p%=HWtO{1D)brGVgUyk5WX(
z+fW~eVp=Ap#cp2ep7ai;k1&y*23U5v$882&91J@rI)}x!@tU_i9KoIey$OwK6k>)A
zO-_K{5*v4qqCCH?!MX*F-K55T$b*D{K;e~HadHu2S|S~r5JA+xpJJxp=63s3;l)LY
zOYcHC2P}4nSLhey2mzG$U|TJ?+x@VSr&);_JDw`ey?!v}Dlg>W?ZZSdWt*XAxt-4I
zH%#;vwJy$bZI>`iun`6#)E06slc_wBWllWL4L+Zl{+IzD-h8K9EOd_@(0ClRUJexk
zI_w^I@~z$vxX~V*nL%<n?{;_0Y-WVi#HAp(FyW35xJy00N#!l_UX`VD6Eh4xY)Y>R
zK9$5>DA~eW)^xd9bM#mWw}d2yg|mmz`{%jF19kl|D1W^tj3vvQ@PRwp!`H&l7WhqE
z_Q^)09KGC~h(O0HCI&-7Oc2b_`m(QbuMhIj3|*o3W~E}N`Tj!pJPehuC=DY|@PpJW
zWas-9xTm%WOQ^;5?Y^;e<|ao$-LI$=@XE^;JIcHY%qRrZD{p9By@ijst2`Nv&>w1d
zfD6<)NHfcxcDo$JKKfi(xOAo&c&}^sD0E36u24`X31c<d3{^+ud&IKpiR#D=Ddxjl
z-Lq>HXeFTPDCt2?6m?^GDtMF$#TfI9TL_`yyK=X93`?Y~PnWpS?=mW?pSYiTMI?l3
zXgc*$^-Te)8o?)8_2jZae{;`lH%Io3yaGi7{e=MGpW5kaSK?8uJ|~)G{@&#_T(7$x
z6A|w&RgbeU2@L3Ro%3|KQ0gCIZ_Cc)IKMl`C0wUlrK5#FDhnd|&ca?|{2#4&%_zz|
z!pt+GpvW~Ka*gYRkR|+z8*;Nd)02App$jIz>i6AzK-CxM<WOgrNA7Tk#))cOqxd!>
zk|?h@Lm;B@{oQ>j3<wLF+-Wc)E0b&cpKINixAY?j%48UA0#Pz0lSbNR*V%69t2$R6
zZN*gua!RvmEH<x9cPBimGi27_i9`z_EQK{`ag}0rp6@owY~NRbguSooi!GV3I^P|x
z#FLqcB#K|X)C|bMFORw}L|%ZvsZbzH3H4Ki5F`+6dSKM_$6VG>MOsi(MGzDbWEsfR
zhST)7HN*|X0ZRaa3C{Pl8m?3uxU2xmpq7%k{U2`20(RYZd(znL*7@#BLFPW=gwto5
z#`(_Y!JG1zU{FRTTYlySH+pUyWbL%#j-k3u#ni>LxDQ_byL;s}56!pfGJM3D54$G0
zd3{wJNdL5l+<E^a>t>n1EOL*Etc&3un%^shCLwpdKCk!N@?taNCqiUymbvl)_s}xk
z77m532DvN<Ae0CohPl~YyHEemV>sE|eU}^LsjB7Cb|n*@av<eoD(1TzJ$VB*C$Qy$
zHTkv~Q@}>@wr+Ry6%pL-|4K+|{FQtF^c=hg<!K~k-kt9r_k>c61>Am524VZu34FmF
zhW^T8{XUH3%tbEp`VNOiKWp>hU9NtILxT*bo4N%q=IyGWbGyV1F`qK0_bOJxFr{W0
zS$65>@3*+WdX$VP79}7UYFYkPwaT!cnpkLRe4OQrZrZjAaOU{Esnq^25TgUZTB7Ug
zYA4L~e$@xVn8-GB?sRAEst29#mF@G$Lw_tD6Zk^?71YGR<#EsDu8yDVfUMbOzdKxx
zhpg3`5OU(%g2RmchkJN$egNueLT+VXX1JAL3G|aJv+t#@^0OVFOTdB2Uf`}Xx-ry^
zP2@5V=r6Y)(4?5bFSvI-dqS@;3dYnfb&WfohXj(;-RahO+_e(QstO9hYm|<D*j?=L
zv2BZBRo*7iBG*7J;UB0jv~8w;>eG&9a{ay=2THmbc$W)%>-VmM^s#-NG2majCm~8s
zN&Rz<R*G`7dY{Gwu>I+6gIQ+K3+__yXe5HQxfhi%8fS|1^ns_+dz1=X!jFm(`(^hA
zdxTq&eAm?K8z=b@s;LsHC<enlPSn}Ha#gz7X|WqHLC4{xwGje8+99?=w(xjEJK)-P
zm+bI6F^j$Z)SryQCgv}3-K;05iz<ijneAaOO*2Pa<~AYcGeP?a;L=cwd?%8Awiw19
zzSKSBS&#@H2jk_VgcP7j3&{9YZfquoB?ul^Ez<lu^W1ITogF8sHVkqeljgfd8SIPd
z>A+_20#^XL>o=Z;t?7paZl$NTZKEy}RLeA1-su8y>eMT%>?qM7!gF*JEwGVbQfa2q
zKp3Q0ds8!svuSw5J-Datysze!Z05(@FNmysQJ-;a=kK>Wk*fQTBT~K=b7y(uo~6V)
z9JD?-=s`2xP_#IXm*P6e`=Zw3&pGc!cmKtDW|e_2TGe_+r=1LQ_p7ex%KlgkYtJ%I
z-O;Nr_1zM6Roh+ij!Gheu{pBC?G*n6VVt2hN+f%#FeW#%d4bFHtPXvIFp8p?iksaM
zPoTvQgX>gPIov}O+q}u`zQgg52aqkiF%wkpdu*6R@oV4V4ujnA-P@5_%xPyWaVtbg
zz^284;5NWwE{H67Yi}=h!-_mik|w`I(g@O!*J1X!$?b`8g<~uU5I`2+7lC)?&Rg8i
z2*S)rT1<1V@F3Fc@lSe&qJCSzl;8cNqxY$7K{cON#2PdN*#iRL^-s7tIXbz0-*U-r
zUF`0ZOD2efl`O6TV{SvEzC$T4Q#%-HInUyIdoAm|kQOA(M~0DS<3`xzKA>k6k2Xx$
zM5Sx=V#QRfPGX2vsG*{6yZ&OyAu@V$@vz&0Uyc~?rlQpoTbG60a&*YOIF{5YZe~O}
zY@mdsnd>IHr71&i=ZD01#;|-*<)zt|Lz+^4u+=wq8i5mX<GI*NgKo+({eBML`*)42
zOwx3$B1$UP!=bUOO2k)E#69vCU6;~22p5v4MdU|{`KHcI_4odwfyN0`q{K0rf$Der
z1#VW3w-<Je9djC+p_&TfCo-@ZFx_2$IKPyVM<n@3ge0*J^38LyU1TCNq@qSz8-vn3
z0oM0K&@Dbgmpdgaw$~Pw$}%}}U!&VPQlBrTgE|Nll*oC2WcF!s!8&Hd!zfXH^#P1Y
zBsoznromNJ{K;=9^Vj0`tmi$X#kGq31;ImDrrdVeC0*+6ichTPle7?8hKYq;#uWVl
zMH->oguNu2O<gV_^1r(!&R}GdyIQ^*FFw{)zK*P#WOG-@Ett+|ns_4PA$!@Gc%%#F
zxT|OC<AoBfC!Ga^yAz(CY*qx^0b}$f2=`NgtHdeIo9aeb9XujBiohD=b|G0PT5$Xq
znq1ZhR!cFHqaL%tI!KOIs!6}b<ySHzx{Ab<`pVmUr%<7klq{s`CnvZfe#hYm9u);B
zz1w#^#%qXEh{wdj43kYmgFAuDKAn-8$1^)P0kJW#M57xvidV&x{^%zy+>RDz=IrV2
ztyKL{NwBFUh7&`i4h*yJw7R#CV}eu+v=~WfkX}Eg-F<MDE;O;Jom$_Vh=eqmBir1I
zEW@!+#C;)nMUGL5Ik4H;lXdlKp7qEKA^G?|-MU0wh7Y4sFhYkE_<F3veReFvspgbe
zdz%PAWHTk3okQ-FCRULs%}}Q(+j!Es3Ga2egG>HroO+O5?hwXzI9bjDYthgdx}9wY
zMLM7GSE<V1In}*%n7+LX9kvbGi6}TWn-g<iPhvdVoDwAKNNPq>L~ELRGjC`q?tP6%
ziB3gmsW)W>D9ZPL>^?X)K^lY6f-V@+ucikgKJMF|vZJ4YxbHB-F%&*+XFjbnSXVqH
zGZWhfp@GlYDbIU9AqyfJP<AW11?DeL*}J`;s9_y$BqEIbD%rFzu?v>+t3LXoFoch1
zyZzr8iVM`Vz2&Po-}k6!9*{Q;F)H0i^A9PoiiOCeUYPjm@F9=#n-bCvNzNc)jO1aw
zJ-)<g{vnSdjpT$HV!@`!O8n*|XK6LKFKZL;-)qRD;6vrgFcA+V;lq-Al>}~}T1wa_
zF*A!2*B#FS66r!k*=droC`CBAN5`L;`1qmvQi;vsmJo2p1m^PLi8ICwS%Q6nToama
z(K!+u4N-~|8kc~mRZH#R*Cfh(Zh(@8-b5Bgxdr#w{Vvmqc+xjN3wP+eCY1fS#7=ug
z=aoBkj3OwiUW(fgK!gk&T4=AkM5pDwkPhktM7`A|F7x6?ZSx%OwS;AMYC3#VJ6?OL
zfeNKw^^VPYNasmk)zk_0D@S+bhj#bbI#H?LA`ylZ)FSltMf=u#oj65OZZt@b#iT06
zNw?akZ`G;laHxSsa^Cl2gTtuxq<w9*&i(Iaa0|A7M&H+A650N`|NR~Gcl+=DWID6Y
z^q)W{vk!FsWIC<Sw451L0R#qF0R7Q>?Zitx;E*69XMy^XV*b6sUU|d+@r@wU_PrLy
zi1Q&`ODxoBX7(F4$3u-u!v5fvfoAM6`ZCFrJ?%*wdieiX6*S(yYG249Q+SZ;6Rr<t
zZx7es7G#g8^=F~?WCCo<NucyKkvNi*Kn*H$`eXLHrNoyL@Y0*XfY9qb9p@CGCQ9K+
z?kZ^_lig|KhMvqdr<k;aK`p$*AAV`X^RSevj@7GS{zRH5`PlDE$M|nMm7qIKbdvz4
zBp*1{`Gb>&!(2Voztu!*CZ+k{7QYtwm$VJ@LndZl?db1ON~!ajrkN(M9Nx0J&V4aI
zVLsweW%KIx&7dyfrRJcBpKP7}1cyiddabK|Yv@bh;6&n#Itjt4_nku8Z$~&r$YHXN
zo!7l(=bt?MB}i&6k?l><kc7S9Ba^wk-mzy5(z#Q*JBZoGQsyJh;qou+c?all1@Tz)
zPGTZOGJ39CZl5}Acpc8EQv#ttpskyfR*)cBqDHd@4X<NI<iHVB-WtX9+uqQ*DbheL
zpyY_XdxIU2pg$dhGEaY@MwZPIiRQ(d?YV<>rn(!ueMo*G6@#m8m0!$4)uNi_k^UF9
z4wsaq9Gs5gi>j;uR-cb?!Q;u#m+;8ec0qG;h+(5#+1B4|*MBtBvI1HcMc|Rr3}xTg
zyWdMF9S1{bYM|&k5&FpNx%qq%g7o9V6PCb_yu7<kUlsj=Ldb8hNaB!6{qt}2>vWKg
zJ`e{<#yW1S|B}zVQBBtC_oIyXkAz_q1zV(+s4x(c{HXK%jU9&Lk{L=}#S?b08slD@
z`-eSr(@?>g0y6$GvV0K2MeY9Qi-rl-=ErK|n!9ie^VlPH{VPM807Xuumd%=Pw)iIh
z#cD!iSaR;P(VLmL$p6j_<U^8)%;lstm6sm8<~e`MKpid)$2y2qBU?<8E!Qvg-+ZNx
z6JCQSLJ~bms7o>*-|c@dZ-nd`D+;oS+Pk2TT+SzYY~%W&Qj=g@cLy28Not^fA&|JJ
zBcZeeW`wVhQ%f-`iMKd8K~lf4pR~m&M%bYu4zknKkKDXt6X!#W%A*KG6mv^AH_r9%
zmN0BSXGanlE+d1Inr?>ljI8*byjSum!qG0`k%244YLNGno^hT3B@h|?iYVQHPdFW+
zX|XU^55yoz?;d7fJ$G1$kC5~>ilR{S2zHWTMz2oHx|9j36kt!|u1F*z=~d)WH`{f)
z>I_A8!oJ*CxE1b8NM;?}6<Y%VG(r2onxXPrEW*f!GA<I=>-F~X^+Q8gYD!U1!A|j^
zA_6zs8z$<4gribHBOs+ZiAG2=uTHVJG;|Z>gHZ^MmB=^8+R|v}zO8S-cNW1|UPp;#
z0t_{cmB4y)&=gz$l|E32nAz0TMK2{pUCD$D2kgBE>7ryzA=MHC+D2S6fu~G961EG!
z85-gh1mua^Nfr2aYwWB$SdFr3s4`SPC?rICD&j_ykLoz#27(&F2mt=sNw((XVe*AI
z9lH?sz%B&1RMRxgzIV7z5SLwtx+Fp4Tq#1uBn+F7Y94wcVvh}ZJEO!%m)BWKPO14K
zJ91~8sNhqm*F~C_&H`5AFHf^gKk2uMXdj>iEgA<`W^|kV@;k;Q%$WMp01jKk-76A*
zITMuds6<d247AIsLlHQk2S!-jE)u!!eHZW1;8^xhnVWd$EcQSZZ%GQG$P73f)TB3Z
zjGsun@=ksyRis;e)ig;)A(doZ^(srL0x3pVe}CdHM-N|uL83B%;SQ`pr-(c8XxlAe
zHh1_-cK7v5ZXhZgJD?^#lorXp&`;5m=^0g4$op=&(wRw0slY)fy#zQkL#K#~#9er}
z|BYLeA`yBTL=>Y42vg$Z*!>`X^<Cc7j=v*b^Z)u?R-fMyq}{6PX_oc#P5v=A>Uw>~
z+28i@VuBv&z(a&1CFdnPFD2wZ=t{q2i&jfvEV9fyDd3LJUbxH4gWdRz<TB&uh=yw=
zBbw&SJ_$D);C9-5xJ-<bNK<mf;}bjW<F49`iFEQ^h@*s(U?!8L-X82W9Hze@aFy4T
zx51S7sWhj^_Tj;4*wg)Pc!1*V=%$P#*ZYXkiVbkz?={@QayA}0=zuK=OE4r>hXVC9
z>fs|0(9v=R5AdIKdt$$tK4YA4EZPXkgbz_4(Tp_y^=IqTRGY#ng&0eU4}HNU$XH_L
zN$2_9{rHJKLWnl{DZ>)x{p$Dbg6<uMQ_SH%xGTKjVp<+be|CA5P=K*p-Rmto`~b|m
z=O;IOUE(;6JML_0B1a5mn}7lO806TSXC=stVrOtv18gcNDGQp#M^*@3)8x4m?2L0@
zrlRg3S)||wPcqNEXa9Yt4hp3u=?@z`j62Ev_O?BJsjdp?K(i0V;7n;a8mX0Wvc2#c
z?}a@S;cE@lX^sSOFOrZbyW;n!X4oUI(1&u7`ZZ62U*qrkFv~u5lTIkRhgwnXj^A)q
z_a9^T{+mu=b4C`J7A7ylTkfYMd&8AFRY5y28I`P@ktf>mH*Q<2EzBN0xJW8T;b<E;
zi?au$U5#>yG<+XL=?CY(dX8Iy4OQeEm4itWl$7s@t#0}<D>D_OwW7*&V9=nd20<ka
z?xr4{A*DV*$caoOaW21};sSTtB^V#e#l$1FOUSi|Df3QuSAF4RhD>{kxA1-<0onCo
z7rXp6eSZPMM2PA#5)DnT_yo7;e0@hH?*P@AAj37u{H@A$oUIf6Hq51((cscwq>2Cp
z9_5PGv)GrieQ@%g-QD`U;hFg0NcJNsf;*FuCU>Udds`!S25*4c*@JZ|Z<Z4!K}>pj
za;6VS@V6mu*B`jVnJmi{mN<sgv~0PPNe8;SrBp#0&iZgmm?|Z-IT7h*)&S?@vZBA2
z#6V~7p5kWpLFljj(e{kuom4Ww?uv*jj$R*h?%#fwbq}l2kEXc;s!YYK^duj*)edn_
zJ~2#sY>>%`22Hq%%1}i^-A@nlgKSbQ+t@LPkgT*~ezNPnjtL_7XdcdZdJ;cKHm@J<
z-usww1j697dhBncqWQpqO@4P}<1m3wuFxoKN%9f%ezQ4Sd78s)6A2rH^`R!bJIIYl
zRXUR&2{a-DDG|!dO7%e+e%!-N7^ssTl`0W%b&^h$<%0nL$@K?v4wwkSEkdId+GHv5
zw{&gbp$v1=kM<<KmhYxZatH?Loe5nUxTk3zUA;KXeenv<NS3Cg@1UC?LLE5Bt(eIu
zrx|PQkWh2lVp8DLoIA{Y`ddE$Cg~T>I@BGrkRJeX2}I#wv6l&;qKCTc9%q86E<Qj2
zn40Coa+@;PrG7n3&XqUBsc#mPp6Was?UjjqxY%hTp>Rhhc^DBioeZj1;Lb?wt!a@%
znW=QuJO(7X^DFh`D7(lnvI8=9zy{qy{ctz>27T2jDhtX&2+P0P@KK7%-btk?y1oCi
z9sD~>Z9ggHK7$T%ifP-2Ily%D%V78S6h*+|NGE$FSWtkJIl|q45sPp*aDMFA9zy9}
z8%Md!dCZ}dMTI40W&4opKReJ>?5_(+uB`Nd&GaF+Cp-7_1O1?#rMp}?-0j3T2Rjk*
z3j)B0a=o&Tb93+R_qf1^lHiBArT2Otg_x-bC@Nc$+2cSrd9=P(QXb^JTr7b6<i760
z`TZ730cMDb3GUka^u2jhWg&S+PzK^FziCc!r!E|J8HzC#DFP&Yg-mJwDDWxCY`n!L
z|32avRC-FRalNH@M{*Vs0q<X8@4f_uTl2x%A^D6GKW6;r+gVrYcr|UHH2*srX=tzW
z?d8|%Fxl$lf7eRAHR&t#*ts@SCSXC5?=As~-51+|mk(Wn+nMH7zmME-k>>POMQE$X
z7La3wlwWst;@Q^@`5eu(9RDk-PX<w%lpOn;eU2_^8~`DL;zGdDCE4<kY*&=nuY^$&
z8N}J<ov>TDaQFta=p3=&n#i<a=T$>J5oD->80+wfcn=Yh{5&9Kc5^SR0g5ze40lDb
zY;`h|;=^2V|88#A?{p>?ORJ!bUTY*d3G12Gim5g|TTdvuhdbaqE#i_(fw?Hs9Bh=r
zzOaE5zy0+eTEqpa(kA(d4F273{d0zn%aH^cM9op?A(5U@=(wZMmn9L<nBa1I`CxrS
zZt7anL`Stn)<#EBbg&cEO3KtFnXV6P{lU6;PSea$!B!sO%1K8qb7O)%w8Wc=(UBZx
zs%4{1*+6^tcpaCl{U-8<i0$S!Q#)f{TRuT&#`3lD4yw$Mr<Y)Ryec&4XHh;(%jzLr
znac;-=ve)MXl_Ud`VuLgl5~juKG%CWteRjf$pnJ9?0b-{FV%5`@CewaZ=tl8S$n7*
zli#~mpSO?@aDZ(Z_rEisL-9cSP_fQb2HV=#lE~?S5GxW^4PGhmKks1sX%P=4qcZ8%
zHJR>~GwnssAP^;MwLs1wI4T5i>#@N?E3vU9o7oT9$;Wd5;*y94TGudP)-JTwwK`S_
zqG-hfEg!b$lXl|;j7wWh1Tq00sm%c5@fFzAcn_k6maXuri{po2?v2g%s0CO=q-tj@
zBz69^1q3G1;da3ym3OLvs+db9!I9%mE4R<Kd4f<}Bx6G0eQ}vR_Y7V`9-ZP7Fh@*j
z*OEa*g%gQ~4kuTvJj0GTQa8%!Pr&IVx~x?D3_W6_*RmN|K?FhZ*^s7#>^S&zdu0^>
zWG2{2`3JT$s*Urev!S{Ilg#E*?fnyVQCb#2wnUyuGQTXb6Ytj*y;mVlk(_~aCLMMr
z1?@v4^e2cUJp^W9&X6C){%z;Iz=sh1hw6s}j;td4h6`PFAkU|f{Mpokb&eJnsL{XK
zHxFWK(p#goj%NWYa^PyasZpP;YHFokQfwxV%WdKDj|b}G6>=fud0G3E)pqu&I*i4o
zR%CSIFBzY`*+ypRcyVitWIrI1j<<|zcz@V+U;(d1f+NZ~hBZ~p9nA8xr9TO^6x1q{
zFgb=56F!=6uloUTNaaXWGsV?W@I@gu*%{_9)+PU@(-SZNgUXCcd4|bHxba&VCpIbE
z($=(AF0#3CC%0jB!Z<SO3J5{wbaD2gil~F=yD#n4cd$9JZm2OWl@Lg?Z>v3{W~lyx
z2s|l@LkB+2;h9hDrSo;1^tNbkjX35w_~(AGa~{w+W#L}=IC%*oe7AjjfliGLg)~5i
z^#rGTKDW2ssT0ILQc^=R@#*SCwW?Qa`t|*OBJRPdq~M7Y3p(vB@Yv^ezPA8otELcK
zDE@82xqj=mKY6dM?16L$>B`Wfy5fEN@~ygfp(x<Q8Om*<1OPv(``W&Kg92n(9TWf+
z8wYffX^GmGl66>`%!(4Alq~}WMwa(<d!IL1-9z3ZHBUey{9-J3L7TlYU4K_CKOpB^
zeypldH1H#*laVce*#8`Rs8@2dgf@a&I7clg|4viXfJ{K6`ur+W5t^cYk9iN2enr};
z!2kv5f|uD(QhBAAFN9m*_k&W1men)F9t#N}kA0iv6hp?t-`KJbl;}v}zxQEE-cSgI
zA&%e4Ex%oVMRj$GiiKO+35u0)iFV|CL6_3i_QcQhiM)6v7(zDrs{6mOmw&3`7`C`@
zXa$V6ueUFKuA`-JznQWIqtm~&yRFgDeA?#e-8c7rZr}5sRNyHY5rZ$aBEixB+FI|W
zSf|>%MoCe#rdBx?L=JrjI+eD@e%tN63)PXRF5(!>2_M^;>$VR{K0l(I5U-au*ymqk
z28{?GZ4+f-S;;G^Fy?Jr`nLXvu9p#y!%7hVm=C9jNXXkB*kGr;q0b=sw5s9>)k7Wy
zM^eADx4ooul>zkhPRc0A!GHd>-SWEk6Ty$Rh@cLuagH~wvqdlKUCyCyFf<RsfY>qf
zAb04y3`?2zT8#8cJ#&w-N3u*V)^FlfFl3R@!*$);t`C3-S*EB{L;{B8op<hS@0zN3
zRVmAw1KzV2{2bq!APf?PfKqWF5NQhtlgq~Con+>8+r=Ibaw9z|@+nSAt^!X;)LP<K
zwvyce!DU$0+IT0w<YSIrVNdcvLq9wCV?*B`669cptg?T3fBPmPogTI;bXl4uuIjc=
zexy$z8c{MdB(KD%uyvLF+j1Sxq4c|cXEr8UF4ebo`a3!yvJ2KU>=jg5qV)+IJ^x#~
zLa;uI#4+Ut*~%KHeQRI#oC}~~8+a%<E<pR~8$13heZCB))rsgJ1c}gJmIHGl>+Pv4
zylF9tguLzZdyperx$#Zw?R#E@2yAM;3Q7@patE_)XW<5W)W`b!>OgE7dj)XRPDwI1
zd}|kZ3+GS<RKJ>7Hw2X)d&Yb5{os6PS8&DOCsqja<~p0>fop6>e`qQj8@A3idEYOx
zRX=D;saCpt+e8nldiNA`l$Y}GLk^q`YT3b0zP1~Hn6MoBrM3yH^v)KRFKrV5&YPR;
zhi~a4rA&8<<k=CN30ENio^PM>v)%hyozBO4&`ND*_0muM!TP)}1gCkQ;v-$dko9F@
zG4<^Kon7aBM5P`Is&RCbEI~<S<XSEnHS%z7d}oi8D}$IYJw^v|1Yi0wLwhN(o@QQ3
zarZw4Bq@H^D=dp#Knv#=L|B$m%v!Sx4$CWZhPg|(@HDOjD)z@h-nMFcx|CL=rh!E!
z_h4K5ojwEN6$+MM4i(yp!9;4<P(WFhW(|)*Poo942wxpN^%O0@gU+5~!|ap$=ra;#
zfKmorbq;|2XQ1u;Mb{V8Pb5~Sf^02^BTvXKk2}<Uzq_&>`g)7tCAmmf)!45KS&|02
zy(laa1qjUh25qnxe+Z0--NKYceMo?e{|`Vcy~x&0)1QfnP|p@&R;j6yK3G7ec>%8%
zq?(^=?O{|3xq^Jg1ba`0{uq)7`at8L%_`!Y-(%+pv6X(ltj4X;6K?rarclx(NQ^bH
z0V^9jhGHD`t-X;8McS^XP*SlL1Dxutp&EO)07%LT;jE<Cr%*6Kg|}AQ&2qn?o?QXG
z#gx+!u0Re6YhLhxz4vlHBZbevfdsvXc%nYq3g|?E9lq(#m3Em(jPl}`T;n*xdsI;D
zoTq<f-+)d64XG~9xrlVEO4Difcu)3a&)7g)75osl_21g5fS)zD5i#@G278`Izoc-9
zTpVFIabhd0J+#Vh@oq>Sa;N|XKN(im9(xJHd_)m8X-^Op(dNuQ?4mjqd&q$!<HeH#
zISX^}SN0(!CEmVWFi15ouCrr3lAMbo&D;Ck{!A66hOD=*ez^_OJslCA5sr=xZ0a}m
zNsnTBSkC2aBg>&(c(VkCzW;+=yGnmbvzItW<!WNe0P}bv%`~sGzj})kN+aeorNog9
zcB41yNeTp}2t{cKuSeBHHUI*x8|^1w=+a`d=xKm`GD8I*vwEF<C_V!d=HQe|>(ZRt
zQUA3^$<h*n7im~a9W3I)88?3Gh5{dTcGlxA6K5ap>vf0QpGN9<VNYuhoxB;Bwi$KK
z9-FA+-lyYj7Q8187hs=}Xv_S{mA%Q9z)XA)uv;n7E@~f@y`_aJ%o<v9)1mgH)AVUD
zM(UJHY!&rs;Fx>c645I_L#cKGWFau7Y#;mc6dgrQL7kCO8K584Soq1kd)cmfog`|Z
zR{?IJ&tp`o$fgSD!u!}yT6rX!LMpKiMP0}MBxS$L?AjKcklKvU2I?}JD=)D(wdr6L
z-5L>5`AoJigov{JeCz{P*t^<?iXVcL2vDsSw}5;k#jGRKu|A2QGe5(=cvW111x|5R
z1FDDUJcOm6W!9W%-}$>fQYG#LS)boBG5$o`evwY(hzmYVwbRej?dx%u0WgD<39;`t
zB`3+vBsNl{MTn;0#+$?KWBYlh86jFsv|y@d5F_NX^Y`w1nmw@h`q-$cq&XV1HPLo6
zi|Cb0+3dKLB8v+86llEOCgSd3DzEV?&E%ja2i4P=W$QC;wKMr_W`)8-{{?b#WY{7I
z%R~X~vLj3Nfl@J-p!3fhRST`^2;;HJq8|~(Nv^eBm-2{KeO6(W>Rh;3AGa?Bbhs+g
z6AE<oNR}AmyFYH1G%)TFc?g=oFv(=iw8tS3GF%~yfl)CZtT@XqgIqA02M&#D;BpJB
zNWz1q^OMVhI_V+tGz{!i{l^sq`rjP010j(7QYZ0bbHPQ`5piv8)J{J}Cy`%0l2+Hq
z-Qk8R>-xFf77AK(LWnhB72_$K!n_V!(d7LO45(AujesuVGD)N~RGVo}ZqRvxQoXOB
z48Qs4Y+K^(1q?+fAj~x635mRp`NFg8Rd6@?c8Lhpk7syur_J|Pqn=UMD7>^DT>4F6
z;b<kchUgA}c=rrD$b-m)SPS=ERuai~Ylj_qW}kf<(=pRt=Yd;r5U$k<o?|@$=1Whv
z8z<|-qGsxDMAunyw%tY6P*ztOlQ0@7Iu<$1J}|=@hARl-P$>lvXAQAWhkG9{!5zce
zK&a$kyIyW^7NQGnAYky`_<e`i907r>9`zw+s-nOlzjmmt_AW1NO@v1hP)7dSL_37m
z8C>Zc1QU6!XKJj)jjg;JahE+~eLApC9}{06lvElvn7vN1(bIL*!<!bB7o}D;u?Rqo
z<K{uYwxZlFXz%l&CnFufBSK{n;WN#RrS_Uh@khi%!hI!K4DMTP5Ap0?d9m6qeO&A?
z-&NWNgZg+*q=UlQLXdeAOuxb&7t#q&)J3@%ReuCQFuEC`eKU*gdA0gP6?9e%rd}hD
zwo>~Cpn%hgiO54{h^gjmX)!+YukY=9U~{h@c2o-@UZh_5)imsmY{Bd~-VQuf*DgZr
zhndM&0IBh(*&n(6{IUdE4WckEyl7N~-8~N1?En{2`$3t#Zi@auK^q)3HOwUmcxsC5
zSeVAuW%kMQ^dXI$7M4YP1-~vWx5>~dd0h-4TOQ}bt19h?X*x<X!L<S~$ve1UqV4d&
z0Z*zDp^n?j?pXh{@peD&e6hZZk^qPqKBK}`dpIK~wu~zn)zAld4QRi4k}ZjOyF#RH
z@{SA~`li&*^S-qgTOdJt&QgWgOt!l>_WlYND`>~&cCE29JTT-1>d~b<bm?=52suDg
z2zZ@PW$+p!JDZr)Zqqj@ahwoVo+-i<9emESgAvvdGjk$PVQffzC#}{x?6M8K9ABZJ
zE%r3k1Iwn{caS{gX*?xpj~Qw#ziOI&W>0UCSgnvBd7KXnMeK4k1s+%Z6u6t$rrX1Q
z)NPbN=Y?vD>~>VMeJw>7$iqk`=m7hPKqH7G11qrUM(x}G)s@O<=12N~yqfyR=IC~N
z?zbunQG0m17>CFm7P&MVMn#D1YCFVJPLajyAzcXd8D{rxd%CB4df=ZbdYD*H4*k-O
z@*d}uC2qu9<&4$#W>4kpqcb8MLytu?1*r$Du>(A<a(s-ccib4!*rGiIlA!hx(vxH^
zUu947*6x)>r77X>>uoZ!Ff^*PpIaf_oHfv9{E5LINAm9n+WAG$HE~eQ>`_4-30|;t
z-D*2pm;(1!AQ@GOgpjd10UH+=`jg#l&k%AhR$Gx*aLppXVDk@Bs*cT~xq@t~zp|$Z
zN!7|UVqMU;@K6WvrN4@&Gzd>zxzau$L{^Fpg=5eF*$NQ(ZjF5jX2880+ddPbjB}U%
zxolwBAUk0+2bw8vLhNDGOQEGN0BSkdPB}>@Dg<|xgWogIZt$)`ktB{lZZi-bQNIS;
zP09MK_Z8Ao8jYs@h^7ePhCC#c=BC5!Xm7#XFa`!>3_?R2m=s>pu)kgI5l1Q&dVUS+
z(K4~qwpV&f_bRa=if!^!UhWRIXJsf#_6h(>g8or&|GlezF$f9EKx~cj3qixB`}I=d
zGAv}?*kSwW2825i?H3@P12Lbb#B97P!Opk@m<mI~>Z(2*7}N>-+ZE+H+z(d>fCwIB
z8@IWjw!4i8kh@@@y}8(13c|092uo+{RAesk3~?SP?Z=#`Pq2@C3Hg)jBz`i9vA$uj
z%@S`I-IDt1gh+@1a)`uepK1>EyP>~=!)f%g?}>o(0%fMi>6-1_*+zd}P97$$W*8S@
zKlf;N^-uAiG$DYIAHuJg6i4d=N4U#(*B_C4&1>3(Nw8jKmU-q#x8Ke>MGB1f3!(le
zj&vXXrpx8Q{-lmDUQGf!-#^lg@m9)J6`iaDSqE=kx*LHG$Chj237_8Hum+laQe7E@
zg*l=a&{tRr;NO_+Hm-~BSYygmX{`_b#;MVEhf^D!=Gwl|Cs48^w^Q<pcpc>g_DyvS
z-qe^#k4}l^CUY6)%rv*WM}Jn)BgUOLl%(_S#VKx2`I)HuF}y=uXyO1lIozjw#7QIU
z9hU+OohC&jD!x`uv~svzahW$RCK@yW>CP?JIyBS{_7JP0ry-0nL=cXvH-5PN`C?EP
zk(fwH2)wdzlwCf2{4e&=X0To223i}|a#rA@-sHs1b`Rl+{EBbl1Y6qJqN?%`V0=xS
zOzn?$Hj+8djKicL%5Da=oRZAzU)brw0g>2a__w^DNuC8u^U}k9uveYoO+%WYU-C}*
z=Fyw%QjvjF&w(6)(ef&>d>+2p-XlCc+l-wmk7E}xOE=kAlaA#E)P^n(3$b~8i_NUp
z31Lvtpg2Xn%@Y|R&+x9yKWtb8E8=g$@s1;UoA3X_?sT@dDCY3(CUftXLV5oBhka_Q
zKH<@j#!hce3{ok-*}cx~T{S{%yM6+N!#SUm_i_jPRe2gNHMxl1B$jrF$hiO7&)$en
z3gs3r#;DK{=+qKrifxevcG+l$y{6AB6U&+y3Z)?1&)?gkWjZX9xtd(W&r67Fi+ZxL
zdD2gbiqPNL)HmbLiJT7Ufq4Pj=T_T!VtSD~5tBr8xyZ>x{LS;b4DP<zcL*XD?SQIw
z!1sagZIYNKu{gl(MefpXD6F#&<96q9YEbF^NIpeFU1^`g-pTSgo}vgIv+X_8UGE~?
z7e11hPyjKz$<Fh9PYT_*K*;xmJRg%l^5g0DcH|1|VTDao6}vjAVuc|Avpom&{i<FY
zUA2H8U1f)7xP9-hwl9ixx0h35&w#hd5f1p;_K3<RrK9B}L?9B+8CN=0RJH?Ox1|#S
z3i`2F0O_+rs+{zyxpZeYW}Z$!!Iij}0lT^rWr%Pwb^;rVW1(kZ*AUbv*4a0Z96U>O
zJZ_N|VL;-e&GsU!Yw*$n)iRI?y$HftsrJaL<EuufHVW4vZi<7vtj9j$IaDTK?ulFY
zpebBy5=KSeO9<Q3&+mh~Au4OX_>=v;M8`@o2*<A}_;Th?_CDlWZ)Y*kjp$I8SUkX$
zZPd5J2^*RS)#B~){ok&)YdrMqwI32K1G5*iK$7|LW4rjvZJ-F$_Q+u|Uf6B_5ZfkU
zTng?uvlk4;qAS-|<T~K~@CSCo7y2M7hny=Dgxx?jzO`S=)sg1i(oC`UT46jemu|2t
zA64Aj#^JbEDuj9*337Bxx|{ujF1!qLE!z_7!tY<%AK4ZtzU_zVI8*nhnJ~jH6dxwU
zIY^auG1KvzYrn8-Ki7p|wwRsO8ZCOZ`Rlv(3eRdNu`^0cxk^ILxx7iemr||M3NXRL
zzkg(}7EUFZ-dL58f25HbhynhuwS#g%QKFl0y-^Nc!{yZ3?fb=!KYQpn9-1sQInzl*
zOfu<P?cty_C`%zkYzZ1%D%QG8Lb0JeySRhzP*;0lELgkEqb)di@4xL=v-M3H2H^R}
zsVBtLw_n>YuTaA*1p}d0BG#z`b-#6X>fJg)p@Uwxz0mO6Key$c2fH#H!z&(|5$xnj
z#7(*ar-3W&T?>@CX}AbUQmQ7rvA6x;3>CgA!a=N9Shqz+Ap%-W$CSF?4N{JC5zj&k
z5rvdhpkCZ?``*Kf7X1)QELM=lHk3Sdo!{|@&7aeYJ?)sQ0FazCQ6AhHB4&Z#>5teK
zZtSyEq^AWXRcI`PffEp~LzXa=+rGA?uPC||$rVRJBsHC=qods7wTc+qd>Eo#K>49o
zC$6`j$ZxP+_RzXiegyHwQW~}AOH2~Xl_Uvq{NQv;GRL;ti6`iZNEg4jp<JlmPruvK
zrZOQeEsw?1pNn;l*s3}ohoA4M6S{NQkC>NLq_}GrH~BVppu(z{hs4Grr~mK0?1<A@
z62C*NE3PGwsvvC^0Syu+0lf+KNTAFv$?~9(kt%m)?gSfvi07z=0fi6}MPesQ?)9l1
za3s%*dee#mO4lJq|FzYAiE6`rLS03j(GYFCWlWv+U+ee0w<S%&&oH(3pr;6&%%nAT
zs;9b<(g7V*Aqtuuq+A=R5$foXq*62GdwUctk}vddfv8uC?qHNABpR4j9bzBL<2!pp
z)$mA)eI9I=%n~54O&nfMb6rp9DNX=K6!ywO1=$v@v{x_Jxk~oNCF6Pvr`qK^Z}+fP
z%-uq@pf6$u_-LhF;eA#aT|R~CsBvJGeH*R>Dbr^O&aMx}Nb1wpoX;(@AqfkR4CQtq
zI#5NVzIpZ%=aC`_h-yRZgB<hf#I^R87vozJK1QTHc;U%np3_HcCHt(j&9HJHFGQPL
z+)4CZPgL1A&Jtm^t8HM7K9L))_1HS}96Q?v`;!oE@jwz(BS%aD9T0KSf9>_20$!?4
zTHKnVo6FR_-`N?T=~{W)1xla|jB%3y7Q!sv@q#blq5mK6T3i{&uuQ;~a0#4M=Iw9n
zM_+qyz;lCVM_w%`kceN(Bf$mHTCsDg75|nEcIaw-d>KL<3@FY#GO5mK%sP9Qx7!?2
zjUsgP(DPHr!c#r=4GtWX;nr$6rDWIdbGX}zWdvvz0~6$CdRW)3lRPUd3DAc@>+B5A
zIVGMnm|Ful$hGF0K8r6+z)3I!xV(*vkqXA8+0DhyPmrKdi4~_k29%E~Y)R&;YwQPy
z_*Rlgid`v~*mc3kl_b1W1xWZ1qkuW?<;1E1hf8WmpG*#F^?I2cBnM0&1G7=67^zv1
zXv!)qY;%u{v`er=<dAiZ-AD3{DF!Wlz25l1zI36^ozfa;!KUTSfFuLE?Nih35`b3P
z)Z7^8B#2tF{gSXarby)YV+W8}pec6sVS1(0Hz$RTzh>G@*O{R+#l(?&-R96fxKKy@
z-92@k{TwBgnn4|;@5ya)N4pzFkedW4!{=TfB=u5TtVkc(4>!2wncBi_$2k%;yg9&>
zODZ`^7^)VCVfKIB9d?KN937kP!~lVfnQK3_m)4OX4C$g!A_4WL_@8djb@X7A&eJWm
z(h8FfG$PWNYuv{l4nLIdg5u(p0b@yU<Sb*$6Q>_PVhKUUWl~a&D*a+l;}@3?u^Wfm
z&xtGL7m{2qQOVNZci)}e1E>0=9d!xm%u?}CI|02$r|fPz*`$+?D_!1+fYvE85oS(t
z_q;Xyb8QGCNsG+j-69~kXRfWj&L_ztg*Z_p^@6&}T&=^a{lm|9+N6it1<;QqT81*-
zbCrAZV%{M+zdD}neO<W0t-fBn==63^rP&ZWe>d#v9~i!bze)q0&EYl`{?V*!D{RKi
ziAz{f5_<t<Muw8DgZA`)viay8$Ft3bJ^X*$eDwC->&c^%iR8ZK3|A7;CVjL-Xdo>x
zR^QqQl&EP8m`aTQ;UtbiEB({6TsohorO>g7)YIeL!l~K=DUbf0l+~m#6d1@PF3)o^
z-Pl^4r2h_fBI4$mK*QNJ-Tg{uC>G2OH^fLr_S#P|Ng~24C%T0VOrmtR2PkVA@YP6C
zDxFis0r=Tp+#4V0*^Gme&G40An<DW|+F&Vm{FdsT{Yt;27(yUlAOiTy`};=@R5Yz1
z1(Zl;L13&IIKX%F&l*mTAj<8KMJ4A+88-fzK&Lz6yTt8Rfyxdk@vE?X5I<<TnUdi~
zru#nUHPv(_>uiroGN#6nH~wm0dwYaF-r2-;VvY3PHIk4#P}7?_c%C*4!c=@e*k`U8
zA^nO-NAvQEq+t<BEQb#FM+a#qqy95V@tMzYah%df7F|oHv`{1Akq&1r{Gs=5y~-3r
zNj3*Nx8@Mv=TIvG;m9GDoL<U2lI-ns?+nlhdSP@Dc-cY1DPk0fk?u_I7uzQI1yreb
zqL)-Cxi3A+m5=b2L12Mm0?(vu9N^}i-P|L4=uB~d(2P)LGZRvFWa~iJbqo{S!4BSv
z6BS78KhWKi$mX{X5`F)_gQQQz2O&k8SQjR=k62=o%C)e3{&L&u5|<=V5Ti*(F$GH9
zjXTbERh>tE&e?HdTK|Cyn@z$gVSVq~>o*UVsfwoh4t#cv_|e&ydGu|2<L2SVaMAL}
zxW)KN^&TkZ?3f+!(NG~=L^o?i1hjh~J^e-Z{HIFLCUgeKhn4C)(h+#Zn{N879mb^u
z;_^4#KQ2ui0ESCeMeBNF=DwWRa?bDpQjRGcS;N4(dlStairP8E{*l%RaCw&mBi4WC
z)(%g+5SoZ*QmlBG5+siP^f%ob!$)ju8_4riAu}&sWSbg>PUR3Oe~3vNqZ-ATjG0;P
zGjGv?o`7~qE+!Tm@=S7bD*c!U=*v#rGCo22E>$!^bg^stkgmv<!gWHKCTYV&G{Z@W
z<0d7@60p8HFToc~AD)*uv^YWYnFDP|h-6P|#%>@gxzjK#B+iI^xJQ$DONo^Z5}hvf
z6JWl}FR&kPh-djC(l&@e91=seW48IQ%3kHAG*?0@B>4+*;H8jFAE=$hq$qbZw5da!
z_C8W9gCqQ8e@V|V;*K}9L|a!;EQq{1YNPmw%Rk{z|NdS}GQztXqLI#e&GwRSKg56e
z(qYf@C1suPA~BlyV6p!h;h(ok*CXge&Y0J5^{zSGPc3bsy_Lv*K}~MYz!1O=R<yd#
z$;bT3RHjVb<4ujFTd_yVNzKkQHsY!R`kTHJ?CQ@Zc#AH@TjqlRW2SlKRB5k<nJ3GP
zxW#|Y5yR#~048*5`7kjoJ#>lxILWT3{`hKY6H;$U8gM;-um9U)bhMzUK1yK#3T#PG
z>3{F{ryR$)q>EDWSyHH}nQT6~&;Mk>P+6oz%>?a{%~EfOZ5G|?|MYO)*_+T$rIl?7
z{TVdz>Ig=plsi3P%>^&`2OZz%QR&MP&;7@-L(CoRO(YbF)bdQT)5wwK`|1XBzh;G~
z4;wM%%xO$zp1j3>(Sf>0bzNda!bD}}Jna8*jBb&ZcG1=11Aw;PHrM|J&u-fu7J_Z>
z?A@|7f$!Z%e2mPNOw%^k|M1{`zuop}eb(FlTS>?uBpMn`<hogOt^Zj+yUd0S)^8?e
z7whWfPmjEH5i0`SW-(}ELQFPG&+}6OeESw9LT`IXgwn8YtZzbq+)aW-Qq4c+jC^cf
zzi*dzkMZN#5sGQOP~5g%X{Oe@wscA$!dkXL=~%P%djDs;u{UW?6>f=chGasadk#5#
z(W%3ARLtK*cSs2lSjXH$4?pA#Z$ciI&ccM9Nq*Ijhv*DnMqY&UBj6;6;Tkm8A3m7%
zsh2%%bBA<U%Hq@pKj&Y0s2+1U1-ctnv%K(b^YtA6?Zb4uq%#_jDl9CLVa}TCf0RX7
zyOOrKL1l;t*=GM6{rB*A-^ID|@x}X&N^ZCJN=9>=B8V0Qe4DD5{Qr`p?z_2+-Y0n*
zRWSvhXbdvf|Fb+O&9F2B0V5!X9lg-MMlM;VB$(FA*P&=<nUf#&7l4!7z)wlIKHx{D
zi}Gc3J(-GKi#tNfX8F_p{QO}7ARvVy+bR7deagH}0%TO3{ylSOQRbFOHvOkz0ii;H
z7P@_jU?9Hha61wBJOdGo0XMdRJ==VfV}D#QEWn54PNTX7LXs4<;r1Rq(>ConTwh1R
zEVKdf0u4LC?)R%MLWMR>ou{x8<BRL<=}TBfdwY=?-9*fQ+Cx_DVZS_*WvDI|tEWO6
zS<We91^fA8n`eg0F3EnCURk8YYk#LC@q{j(Za1&z8$=0cKw=TuhDYHQ^cAavl@;KN
z=|Qm6@;HRyj=X(%9WUqBi#<bbPny~F1AF4FI}DRgd;0tK%6~FUO_3f1O)}`RlMu&0
zd&<6-;tg+_*1oB^CDs)UOhc2TTHA)jcGUo#E5JV85GEp1hAWrYBfMc!v08DcW=oAn
zvXoMHr=pE;bgGj~-9j}(jM;E_%8*6pQzu7Ks0pA!C(APHpR%u>#294{2ob<+1Iirr
zh#lI@>m&iZK0tsxmJ?wji=VI$Px+tmWOMBjd&QZI3-G(bKtE7N6|XL7B+Ajy->Uo`
zW|1eTuO@s+Q(VlPzuCtxVxO3srXf+_Btxpa+eSy~ZpJo~7S5sbLB~I9cMY=urU&_;
z(60p7q!XNZ_3QTC2le6i>qxD{0heahJZK|R_1WT0a9SRO=-;%=-f}MwLfcRz8#<?T
zOF$G^==WS>Z#h;cigDUTJGv!wjBP~el=l}MFX^t8=qc%C^4&#tl}`uruoyOMq)9Y#
z{4ST+lc+s}CRWi?Co8aP$ssXgFS0pfc^sfn{wf@jO{1Hfz0B^#UgY%2lkF0cMRC6~
zpVW;oN}OrC)It(jj`K>`OFyP4+!6^lAQnhb%kj$<puD3PM>-gX14o+3{kYI3&jX-b
zur3^b0sI)^!x0&3=|VfnXqBU!P*ZJp>r~)Pq?>u<pEh$J-F;;j!k8LL$hB`g+a~8R
zOwE!&^F~aOEOFy38@N%&@-PT?*S8_~P^&~zkIbrzdoMs)prJF`)zjMTd55L&k|H|{
zNKT$GXSOVp7>~`YIX3S;K!p9I2P1*h9eMjLd*E9-R3&L0#02tTN4{laYZUU8O&h05
z<tEXsE}UlzvKXZyF5S<fpg=81kOaa2w++=gQ`Jp`6!e?|22y70`Wil<A67$F|Mi3|
z5bW(cF5R%=*v|TS(M>Izs8|m9Hwzcrt3fb+mqUCS2ty~kWYhMdJ%1K!h@G>cGZ3lW
zsG#H<E8Fd|ae5o`nrbmebj!7nc18cZ-DX~;r&ZXwi7>iN(W!wDb+ZT#HlIFZ_uLAd
z(Rx0Fc#&F#p&Lvggm1BZPf%9waEo@jmb$r@FSb{V*0<;tnMOw+3JJhb&$-i{c7;xm
z1+QhXTDn0n1QW4TKX8k^_8J!Ji=(KZaU2Cdssb(DsEHbu{Mq$(dJf-+pcQDQC%0Z?
ze9mU_Kkb3?@nTP%wlUg8!E7)U|Gz1D)y}?uN6?~u_Yx8uWh^7HYLq5K3R`G@Ea!3X
zp_}w>kf^m2#GpnrHBA@V1IO!JUbLGgCB!BWVkrI309H_tRmz;z2c}7LV<2+PB74rs
z+ac1tB_i=K)Yp3SpSIz09>>wrR2S`mtJ5ebS^62?p3SfnXlU&Wi@Pe>BrUeNM>0sn
z1RDu;*X!{SiIpleW#0v?Pkm9$?>((L13{%M*iCl#Jpd}2927x}?vSPPY&%qzmsU14
zhc=4Q77V_*!`_^)XUR83yFez|m1PNZPB?*wajbSz*q84FI;qCoZ(s7DgNFzT3(W*F
z$tL4LyHk~}T_HP>55gjBTF&uS>5JBKIWBy{&fJlRiz#M1x{G<B7HZQiZx(?H>_(uH
zn^xLQ@g(YMbdlvx_5}27z{@r?iMRKA4MOtXPud^&P5*K9&2@|IP+rek!dsdHAwHb9
zh<Nj~t>+#xQ@BYeKi@!k%muYNRNW0jNA)s`Ua)_Yp=6ALk(O>^%Lu7UGsit|U%6g~
zg#{6dMByK}Gnv3LC4`G#RBhBNh5?o=n-^^U-*mJ9;T=nMx@_QuOLgd!K%~1>M>EXz
z&)EG1U$Aw?8nKv2FEtMTCt+!X>BWFWpre~|mQqw@*kg)yJPi4&)7rS;LF{dN!V+(Z
zAk-n+wGjaUs@L?co%Mi@S9ar|2+&IQ*J(<$Q^lK!4|VR#-gKAHO^^v?9{0&RcFLnV
zK4wc-4}DKt1fvMZ%rxQ8?d#8im6TXTvVd%Kx8dAjpL1@r$yR?;6=-fpYHjVIUwSr&
zoA!p?<1uEksfN)O6Ba1hUS`5mcKQK2TtxCoL$s#>o&=}b@U*4qkvv`<jCM84EzDMJ
z<|%vaKpm%hcDw=~6&Yn`8ou-W^Y)hEdLJvh$kroxN04#yeKu=0zaoK&qDzQ7Y$;Q=
z1iS`u+Lg#&d^tj^xo<3~`NO9nh!S2OYz9LKM64T}c;R1N0WcQjPy8n$C}O=f7cKB#
z|G{vXfrgQIjZDU|6Pfn0|FFZTF4uQl0ukyy_76H_#1bKe1Y1y5gN~#aZY0hQd2rpW
z?$u7e1lkwHu%S}}Dl?rH$tmW<o!y5gY4w=urh4d@3`2eXv9sHpt;6&NkKz%iZ>4fs
zuue*|$P*c6)y@w3BxO3JseQ1KORIHiNS(a(0LHPXXagJAixkHAX<t_(6+g1fIII|T
zg522Wd<biM9OkG5CIw+2{S-RE5UUkM7X5B7-OMkbU4dpKJBWgqB2L}g9XnXpFBQ9~
z56>%~gQX%BOGT==cYpWc*}7V36Z~E3iezN7Ub^_UE<Q-hnM?>M2)u$;GMQo?|JJ_G
zs%)aSIFJ4escGU5wrns>pXuchnYKzo_9(jpXX&}bPg!v(S&3$f1kUMEltfEU9Q(aH
z_8&}9SBs*1t00!_4fD^+Ietn~NdM?cDt)%KuA+D%W!HQNLZ@En|L<RimrfRUN|?&n
z%v9ze4*opV?f%%1(n6}SXx+xVDh~e1d^h0kgwirX|7S=EzE)FNh7o3>TbP_sS|oAO
zG#L)no0_sLGx<(8YVU;7QgO4y2uE!-RXM3<<B4wOmLa88QgenJT)3^2T{AhkeDF<a
z{u>WTD6Nq)$T*nm8Y7*iq6n&nE%m^!hm=m{1v5g@1g6Q9lz=NcUGA2=#$w_PmHvQ%
zh$)2J&)&;_>T^R%OZeKxNN|Q!ZR<3ZlL;n0*Zsb)z90uSh+mypSYCinWQhOMFZl(O
z3i^kJR*r>3wp=3Ue%^)dn$!4d0TC*()PppI6SK@e$GC49uRzR+1ZIS&Auyo`TKP$y
zJFG3Cbdp#<f*4K(N|QN~Tf;8r^C6`<NH$GW(hQo?Vl?!t8{Epegwk@V_(`2Ucu>`t
zG}C#$`~2X9QVB$8ipUG`0-9XPsjTdDcLD41TF5HY*?_UV)#O$|jgEZPJ#_t$(gLX$
zN}@b%n%QPm8HjuKiSElw5=!&3=tIMO_EG9?24`(53((cyEqBMYCzMW<3Y|o>n*2fp
zq&-)-1wXS@F*nZS!y1E##3rBZTs+=AayDzBdeqX6Ix1gXA?w`R;@ZMg=#-xj!Q<_i
zvd>v$_PSksJA5HVq>Eh3paj9Yq5!~_FP|am63CZg*44Y+7Y!+`rduHgMXW&t455$t
z+!Opeu`kMiO1TOmzJOK@M5e349n%a{kf@{q#N=|s&E&^i;RG#ViAis&SBAQhWB6#U
zTU5xYftQrB3!1!Y2qVSF?>Qks(2`t;dSWhkA4zU2^86=r3?<<E_BDXdsJX6WbVBJ^
z;`Z9xC2)!;frds?HUUNHDOx!FGoiGaW^P0jb3mpLR6XZ6x9*K0rR7=L3j;^Lsj1Ya
zVox8FP+CZMOjE?$V$B##0kp_FFFm2OKpI0t+S>$w3rhg<raE^#pzOOggn9WESMc7D
z(uuHwSPLYs*%ar%Bl9=7IqwW99V4%7SInx(XL!%a?$rj?mh$c#tC)kEgL;m6<r(J6
zTDN>o|2II}rv2geU(Q8CstyJTR*IT}B5=3mN4MtJA%YATXM^p6qj`i?Ozd#$&r6UO
z(+Ltv3H}$RnSaze@-Rv#6Fed829t7ASS|(?j4yDLIn`3W7Gh?~IM55K-J{cWlZ0Yo
z(nkA@n7r~#^G(2=3v}s1jp<OaIJXFzc>G`8#J>Q@bUKR6z^~c@vZk7UmAdg4@-bd9
zZ<@ZCvDMI-wru|a7jsjj{Rm)}J6BkeX<j|W-N@CV2RL4=sXAO)1;Daqxyd6FN+;mG
z42S8_8J;0G4k=^Tx7@P!A*D4;ggR-m7eMeSgf)Nkhnw;`-y@n^3ptV0R3I8V7iV|J
z$!^u5e3mFXo!)s@l|h8tPIkLq00pIXY#{2vv50H%)J^WwT|jHf(1trHTL-chVO_rb
z76m)>mTEwhXAv`<$;HF|?mez!*p6So^4DDIPECM-Ay<q1BH$TYfsnYq&AoY}LOEBA
zFAC1QQW*Jb)h>OO;y0)x2ROEZn{&t6`gjFSRt^NJq^D9@lU!p;D_u>5i$Wcq;0*3$
zwz+@29ygVLs{*uOhc*_%eqtr=_F^b7G2IgOWh%K^uT;A$0tux=#t`ikQes^)G1GL^
zx*2Eu4++G#LNm14X<7@olF+8!yEnO<eIN3yBQs9OCijLJ!X<LKlJrJ7h-(JfsFdpU
zd=F2jnGc?EKSDLg79@wMuDLCYY&8ZZ^Vx%Lfq{S{SO-8dOrRwtFj4w8$$b(oM2Ex1
zP6;`wj|9Mb=Am;duW%zj8X{08y9?tfzZ+Y@YoLs;+y#Z@ddfF@<w%MN`QiG^dRg&g
ze2l&WzC1z&Lf{EkV)STt{Xi}Ywmm6kjDbI|D8u}Aqr3Vy<;g`*cwZ6GY`g>v$}pde
zc7JehVJ;MdCI3m7OR5>#?4|$@4uQsDzVcQdO)w?ip+bOlTc(>*1YRS)@`g@A5Fuf?
zRap4eJm-erGNiPUdbh1qJZWZ{_vBXLPNn<N1LcbIgpdi3R*t)LXMg5Pd^(P2VLdYf
za$O52a(VVGb-SIeyi+jSN1$6U%I=Ec*$0%n>znl4^=oQ6y?at5Fk3Up-B1nY<7<bT
zKrT$p1h$+o&Fwl=FZ39~On|1`XvoD)qy4W#pC<8sc~}G%IDQVO|8daGSUE%}buLuY
zr%_G5g8CL3%SPoAq?!?JZjb8}M&P<I8%&@QzET0Lo_c~iq5{Oh`5K-{1)7k_FM|w2
zo{ygf3z2ky8H%tVH}02WHxaIY+(8C*W4JBKiAG@$P&u@{E_cArii0J=PJRQYEy<Eb
zp<|Q!5Mva`7C1&8wD9|YyY6DWw1Q5(92Ja8H9xmHswoKx??)YxXs5UjZiYKU*=Vr^
zXD&gXX&mVWyf~yZpU|qNse=3!CCF4ir??~E9a35hD-Gf<MOK(l2qfz#xF!G(?h7Ov
zf>T>X*1{49?)~;AL{kE^;-X(AvJqWgMqQ@6tU;t8ySttMJl*8$ZSJ54K>G}XywTq1
z%jGJGbXib@E{hL8Q6#Zck|hEW*zGCM#I^JNp)vh=4><hQZ?5%iy(PRsJWuioToQBD
zICn184l-Vdgg|h-B3((U>73%ew8{+1r%n}OS1JO^1>+Q+e86M`Kjl^B+2)7_S9dj(
zSBSgxI*H<TD=AAeBmVBFt|b^<6K)ph6i!6ON-A-Me?pUB<n8XPqd8rPDGaws2U^)>
zSph_RE8<VKLNuo(G=mERG0_IX0#0bShmxhpGXY6Tu9%Q&UV6}F?};>$r9v_V$2dtr
z<`cKLi4Sx65RfI-T4YyD3<vpthY63>K*3&CSqjzra-RF1%fc;|tJ*{$68}kR5*Im5
zI@a&OMFx6RLHb3hgh3y`N$xd32kR1!j!KxD1Fn?kyR3bb9f;`2PLXud%s1ycgE9b{
zr(G$*JHqCPl?b|xh!<SADoQ^q7ggqwaIX7a2oxDok|iM=p)AGBsCFL$X5_B1tsE`F
z9!b9@KOao|(fO(CURp$RnqZL2T2jd&Zhp|sKroVYZ0cFbrBH0B#AQ(7BFK}lP>M-V
zpj?P~3DWq1^W5pXDV5`{N*b#0$|~;tHP5=>H2@$LBImK<GN4&7$sLK{fjCS{9Q-&`
zI24gM*_`~PtN(F`2>TQYo*@`5D3N8Bo#fs*a|hVqBRbz*0L|wjq7un9Op}neot{@=
zsR(t5os0TZQ2_1En(3Z^d5+B#a^h{#H<5H7UzJ3dmK9{0+E3jN;1J-I&TO<UBHFuM
zgnRRFuFDqLp6nAsGyn-Q0%H3^pSuK342}ocgM<r|ltXS^>MExKCa!T16;<yHN)9%O
zbKEg-1Gty;L1%l>8Bktf{766%7rs)3e!N>PZL$~}&oW;`oNHC`NF!dv;7%cr>E`YQ
zZWvq#BvP7B@CA{c+<fJ1$DQEh=2t<x^f0i(H*g?`P0!N%dlK@hAhKr4Rsw8yk{d8e
z*CO=|bAZwp5v7<o|1jPSha~NuDY<WD9MrYbm93#r6$d%&PV^~6vJ0FD@*>+w@Vu``
zjHgjklfw^Qy3MWMTNyxMnA(_;ID1@_<*LRiCe$=aOCO=w2<ipzs?G^#!rH0#2F{c&
zAgY037t3YyhRY|(aDyv^C4k=^r+~wvSYVz@_xp~5c3}%|4Fv#P(L_+5*7b5YJ6vV#
z8MnJ`uEGwIX|`E;p}UgXDr{FfDi-UpiE39|1-V!;)-B_Bcu6JkC8EFyhSQIEWf>B5
zs;R-s73}nJlZ0qj7Q-v%-0WUqUz`EGV7dN<6OospoR7j2kp2t6F@<y$+ywDu@cufC
zD#$t>WNBJLf@;)M<pbJPTig*tRN)@Woo^@X)}vVu4DyR0GlA<Ne4M)5pa7<wnw9RN
zsESZy+oZ)qBlwqPu4r&A^Z88l15vX$X&+Icl@gWGVDc%nKI8+JcCvDlk~ot&g^&L9
zPJh)n-Cr?;HO!9E&6z*AoxmEX6Zr_T5LBQ1OQ}{`Hi1j}*ro2)dB`1z3lK~4m2lDL
zR-p-=_8&L+LWDm_MkEw}2BPa^Xzcx6ZtV9cq{w`PNk>5}e#VtWN38kO?fX|{2_;-(
z5;Qmf7(%kyWtH2?L_TyA)dRt*azd8*=3O_UU<WdiZraatpFu|Ysc;D5aTN~kY0NJV
z_-EznSB@pto0d@=G;5-trI}YYy4Y3}LupCTBv=Xh6~OAcjlT|-;ZX;H0<Gdo0E8+M
zC6JHhOI-0miUxAw<r1m%{&umOQ`(;-6QF&cdy3ELuOma%CeL+m=6lE~)&qzZa)uyg
zn(>WuXM*R&Xr>^m@`wUt#p|kF;!Mw;(#Y9+#0gO~%Ph}wUr$t4&oxs01$8*hJamRj
zMV*4sAU7!~tIA>di^jOSzT>kssJ=m4cS6Eb#SkGP7%VTJ>f{h47ReF`Q5FH^y&C@>
zFDRUd;Uw>5_q|*d^oC$PT}PmAld0=_mb=!kVqQ_47}iw7B=gR8eqe@XN(Vjyh$5{%
zQIjA`mEdsJXm>U$7=Km9M5FRm<12w8f+(kradnPuK@l69RCYj8$8Llam@Z1GXoiqw
zTo)psY*XHjZFh|~gE110N>n*9zPzc1Yky(63vunydh>aHh9D$Da=ICv;}0!U(;F&6
zq)BZYSSA*n<iAR+ZesiD#CjJL>p`}8e670&c7?1_8f@a*<>C@_c$hy8^BtpkM6Izz
z1=nxM{{Bn5;cU2IBTbTAEFYbh0}jNNx#Ru|qG87gA=t*R0Jna<TbjidlZ7k_$sI-N
z84ar7{DdhE@{fmOLo@LNsO*pJC(Z13oWEcXRl}v`76hwAi1*xQ++Dl!FeOspi}ljJ
zEhiU)!2T)zV-f)>Rg$=_R1CvaM#^Yz8D`UN?A~a%FlU11+Q^fK;+H^vCysQ7yw7(a
zP{u^>QH`6KER#OUU5<qX9I2E(^l>q_vK(kn%5&u>Djy;jS5X-*lxAq**<9->Fce4h
zP`PG8x_P|W-HQcBP>OuBNPMMy%wQLGxq~3`FqTRw6^gFbPNN0%o-ETi&HEAe1?Zxs
zP`Ls23oFXZQS_%To0KpGos!K@MXpttg@hD@5GZx<og()i=w2c0i4+8n;8&Dm_&P4t
z{aB(WQ4*-{R1-$=WRT@w2lx{q9Uu`*rH+9A296rIatdO^WWOkl#Im%Do`pO+<TQ61
zHdl}sfdl(c9@<kXHw%%kpNf%gb{+4YuhNs5K->i~OtKg#SEGWVIAKVoWU((NLRr^J
zUeYqdT{l31LYi2heg-H4yG=1~Hn=T+=_Qva7X_gfxfsxJIs{zgPP+w!){EE}qUlf2
zjDgma@8K^(k(h`K5JDDKYv-8aWNGwp5$KCFirj%111HQdNw>O-4`-1Sl8PEty5I)n
zfF#FmaZ6CzVf2_7R78T&Cz~&;m41`tk=GcU5kI@!O008}OWoNAc(fF;hMQl`(b8xK
zyA}K>&5g|9HQX{ThbWkGp+@YlI|BIn)t(StO+4*}6o2AuPXXv_Atzhgrv~gDwwo>*
z!^~HPJV?3gvhWO=91(3Cr8QET2445HxwAG5dyrBPRC5<gG7gYYl7HrJa;4pL=}Ch<
zH%GcUXAmxgkAZM^j04<-bFS7%@Dj>=z@(*&?<fhC7?$e3E*oB2g!dZDEHt1XFS)GO
zG&BjHL|ClId1D~aizm2~p(A`NrjOR9UL#HkvTpJPDxU~*^31Anbe&v|C_+os*~nAy
zFwRPeYgr+LI{ONjjS!CYBM0$R;i$%S(B#Z|ZkwpS>Vhbk1kSH1baLR}Y9;QNc3kdx
zrD(V)+%?yzJwj>)ac6y`FZJ%Mr~<+fI@OIu5JC(GPdoKk^2stfy}~t}3vFju3U0Ui
z3emD4L^XLS(%@llWP3O`Rn{80qu5~0s7a1`4yEM~bum0Ci7tR>Os;fEGx)kb08A@0
zmsPs!qWV_sk{*e{<U@nwJe5_1Z?KBe+;VR2o@coC@9e)w>I5^b()F+i`^dw(Ev&2n
zc`AIWdzjtHt(C^w+}afL`<d<tjDlmtL(`()IH5GfOsaOroCj5b@RLH$&nvO@&8t-1
zhr2+xT!n8rUJu|XHa;9fIU(FHfvCxs4pw+ku1wV(kXj)5kx*)sb+%gwERbRQ+J<&1
zcegZo8>3?ZEl%NWl`QhNiS7k75e~W-)2bo>2c04mQVx2o6h9PWgP00bek_19a|SCq
z|7WpuvvHzZa%q1^rIeZ{E8SZ_3i-H5y&jbaQkedZ$@8EW35!F-hwWTWn5Q_*g~1(G
znQWe`bXTzokS&A(2RmnoRGtSQZ#mWFT%i+1SmmWTrmsTiJ(j;bXg1(@=x^R$d6S2m
z8D{vIuKXf>Kd7Z&U6T(6B%Y$M>xVBny%$c=Tcn)4QcRtbJTna`(rr<)35&(BT{X_d
zu*l<ODZwsD;H5I?vDHxIBMbanH$ndUI599~gpEJ&mXaS~wxl7E&jnYIT#dbdVw?*A
z$Bx0ZO0jLV{_K2QGx+!zrNQ|4u+aY1FB$>%UE~>0BrL@DIrdk#2ksHJk`H>SiJiyO
z&9i^?uMl^kup4BSAdOff2nku{^`U-|<*IR;;!NulZJc<T=uZB9K8D0|v4Q|fE@2@O
z_jy}g6~>loa10WwDjxP%LaTpqA3ec1R%<RimsS!XVF`FecT<leA`PSrc?Ofes?{sp
z=@{f;EqR<OmPX8+JfCT1?c-mGHLaQ#Q}C-32V4V^He%G3zq=#<&{wn1+9pIek*_$r
zEt^%oLa72l0#RI{@M@GM^VCo70^}TkSrUx41ZbFxK@iJ2fi@f6T6iyp<f2%_^A#eh
zNwY$c>-cD3gsn;oZE=|kiK^hs&-sAY_c=$n=RtqC95^AbphZ=qGO@x;!t{Q1K@8Xm
zjz}{x7`R6f2Fy+a{1blX1^v|snrrRk{|dhii%)=gp~s7rxRAJ_8-G)AiG|d%Tdg<1
zldD-T#XPpF|F(7f5N{g>e}1HAz4b)Df-2dw1vQH%gSaDGNH+WK>OW*-{|_NRWshH6
zArc!eip!CG1xQBK;4T7FlvUE?RCN*3;_%F>N)G^&jc=pt5eq58Iagk24bGlX%T>Ap
z+9($x(zlB7C=K}89rN!Y+uW~EZZSIIe@!vxz3fWnDU`6RfR6<j?B6h|=c0+o(NJ-w
zm1~}lGwj}V&a42hMV+M1lPX@A__9pqcWybWuy@aB*MMQJ7}xbJ1N4e9o`W<JQFsev
zsL!#t|5Xes>=O)YK}nE1FYbkZZggiMsfZpxtbJ>Mrn6Y-+EE5FQqA%V|A<%FEk12D
z0sT#3T85y&e+4u6=s+maDc&pAqAUA4CkFnBLjGH7V^Qyx6z<_q!?=!kFZ32bV5>?t
z1R;oR13M<3;HiNqMntSVO|QGNu3?4vHl<vF02CvF094K@)`rf*C#4zxe*T`#y7L@_
zH_~E7`vAmKlKs1UrQ`T<Xx^3^7i5c24{}EOKY9`es|ePCR$*{8V^Yo9dsI5#0d;}e
zK3m=KsKEX822iu*IDhd-=!$d><+h6EM9|V`e>&j-o;*hQRx$pqy(jp;;4(5s^e-W>
zm>b7dqw*{s?+@PvhKMX16SKWwN4ELoP1kS{fR#`MS}>R*%(ACW_J_}5Oib{~Jqw8>
zhlB~F<!(YmfCyKg47-i4dxJNs5`%CPr3p{}q(KF8Ffy@StW7fa?CyVQ6~95|S9gRU
zb_K36+>^+J0&?7kLOFXcn8T96dnZbd>;~mBeW(IB3`$U-vb|kRqUmPv$0|lus{g1t
zD6Xq24&sx=?sa5Tv20U5Kwk<f?DmL8gRn|bIOK7|{K6FTk1yQ9waO!eqkx_WPU7oN
zM`AnKzvqFR1mZfL9%&&7#?-*hD?9uXh3tqovz<D(SQYRoWD2Pj;>?T1U?&z<dAXP~
z+|%wMmg3aLP@%Kl^T1&tA@k!mCy^!GLl`ST^insM^$HPvciP?m#u7c?F?@!Pyi!Wn
zwSb7&j_3LOS3IBuqbT6nN%Ohw+3!n-Ot~baWMXNTOOhrxcQ-z9ycATd2TY0(+sFmn
zQA}WzcNMEmPA+FnOWG_@5ZQ?D&||2?`-nm!BFH$t4x%H<PJS65{rv525^@I1AP`B5
z3}8p7S&FCAL+C^<!<K?O4ihV?js(oWDqw_YlA;<F!q^$V9md|5P4LS7jDJ^X1SpPG
zi^dL+l^XWfSnt2=Ta0(`lqQc0<yNuA#uwd+^LSdqd(p%tW}_Hu3ABC^l0>D-2IOZ+
zYz5}tUU~q&c@#ywO)w8qDSmSwiWV;Cjxs1WxdeMJ%ZpEh%@Dl^y}~qD4I90`*#9UT
zU%nsatx#9}|F&fR3phUtxJIEsr^t_G1*orepSX|k9pm#<`(A4R4#QF!K!Zmle60dO
z%VbdsOYle33(T0}UgRZXTPdw9Fi!b@e4Te-l*RV<$7}c6D<uiL&uqjNN!c`Pq(LAF
z#3b~(NjAx*lVpL!F4z%KP_ZK-7En-7h>f3u4Y6J<C@L!03!-AV-s}50=Sg5Uc;A1N
z%<MCL&Yb!^LP7O>l2%<z7uZ*j%ZH9a;$!t6yPK<oidg-jq?rO(){Gyl&|IN)n(YRb
zOYYuoVH;x1Gsdqyq)s5M5X+Hn?)hEqZXBvo0Yu>wWl(-O&=<?)mM5zQtVMbdEg~oI
zLo@=yyNZFhI7qNaE{x!e>+Se65Fz+=y=a1`^Pix}M+<?jemVN}!K#m_sFQ~BQOlC7
zP97CL1%H5uZ6t#<b54cI^H|49MKz&18}S=3rDYh+=h&OAO5`Je0Me_MD@@Bz&)XG9
z>WD%mD7TOcIp+CD3D{7@CXY@V80$)Tvs4-X%3Z2dW~BMyN@zh>{`h=ExcVjbcm#-H
z91L8*WTeA~pt2?`TeQ=3pjLF(+bcU4VPWP{8#qlr5Icl&;N;;<ljO}aav>C0bpbJP
zPgp5pZ{2d6#NnWCH6gX4^F#kKm<{3?kz=EzMVT4gEz-^OhwNrFhq*+rs~4LLDL0QH
z;g_a5A&iQUOUW_DHi(9aL)@B94`{N1+7hLInmK%#Jph9lWjSmlODA_*YffIK?7isk
zg){f$a2=#3Rc0nerxDz>R?&wiV9pK##Ul2i5xBDSy4wl~8H_Opodby{<at78ly0`X
zX&;igqu>uzzzmF#*M+^f!-*VLidpiY?T?9@7aC^=r9$XMh^d0!^hR?hhKqX4z3TSF
zkdkCEM3n4u@2MuoW3{NrGmK}N6=shw@*&~y6Z{<O+XHIqkmp+Gh61ORm1Vgz#dA<}
z;fN5~O-*92D`ayx7@>W1({`H!*{6r?X{;x$40d(Qa%E-D$RTyVUIn^^UcwdYiR>OJ
zaHKMzZl+P!bjyQw=A`Hj%tOoU23J)t3gDp2!m^G@;`?*^*?LxxoUtJ2&=CYM;cP^q
zgYa7fn70tG9MtrjxV}&$u@2SaNWccGb?D+M9V6R_=dZe8jVMf&C2l`Sw}=Q?P7g9T
zk90PeENfQiK0(xm2v4g|6}E;%^ZsW0VJ0?a#1)~VLS4jZg=Nc`Z3|(gXg05+LL9e>
zP~l8nsKY7dNfN$Y&TWxj_jbW?DtX9@S7VgHKu($bMb~p4z~+iJhSOXKnKSp=rTghP
zVLb?BSF21>6VAU3R?nzNdZ^XVh=~i3hcge9QYor9a!LP+c9v79@~n`4v3oN=aT%3j
z*EJ0dn{YbWIF)f3<g)QBh($Blifc9RLZ-R*S-XjE@XE=SHxwHN6HiSy$IQ2D-&L(1
zzD<>Cs1v>3yLYJaUWDVCpiu2<k;?H#4%kiTH_*?cVr9`)K>_p#VdE${O({eVk0#MM
zic0|d!kTp(*~A9A+oMSsyS^2^*Dp~sR=!LeQj8rd-L%!HVzLlLW2lmHU3ZjWhu&k0
zSq*g6SRmA_n<_f$g6mb$Q4|!XO`^g$Vx>bkV#8|e!RSVMSP5Z0X-7^O%ZJ|`UITnE
zcr4J0k0@Wnk>rW2)?<cW8-l|ewe_KKm&c-_9ytKhcs}&&tW<kys*;yna%R-499@Jf
z2InRh8V|pZoTOY-tC+MhL<E&n&*l)C6>O|VphX2NPKbri+2);kd|=jjJY`VDJTO=x
z|AW1hOl*UB>RfwzHvYHFLCm^2BATijsVq{dh~)XV*pH!UP$YO7(Mxr+|6OEhTQb|H
zmQeX*G{1vnh)tF^vXB$TUG!j#hZ3Vb-1;xoyP{;w3iCARkw#>?a*b`nN`osMb}!d3
z#Y<x5EwiuFI`+e?mO61?%Eca&a*sW^fW=THt$2Sb6@l!4Pb^C$`i($W_GfW}UHqY*
zJQ~U7%@oQYtppcYF;X&+QuZENr#bEO*Vw0VZ7IM^sV9Y7r<As=G{qeLihVfWy(HX5
zQKQLQ1b;2w63jX$T<I=nDa_Q$dz2+bv!3O0l8BPqF4FU`=Mf?(|3P~znxMU3-4yfl
zl5P(r&`p${6~WY^?iSBVwh0yog^Ek)AR#x{%_zH>P9ZEfcfOQ_AF?004B?CQ_7^dg
z$R;&bd%B%NnK902tL%h+%t}_%wK(GMkz(Fhrq2x<QrhNv?(u7&1y?BZz*>sePWS3y
z-cFV?dd!f$wlLWowA9wJhw^Z-FZ#l!o46Hr9)?J63>>arm_nSBcz^bTu)%1E)Lz~$
z=26~Rm-@p&q?<SA+UI$pXsi(L&Mx;6_J4Pad%e71(7t9L=bId~H%;}Zl|?_iM?H>W
zRt~49%k3r$B7t&Nyv!g~NY~=9<dIAokOEZ{qR|sYA&(@)x<R~_kOsItF-9j}B;FFN
zdtoWUC(9+OS9~SJBI$uBDMO3`__9{D=;BB+78nj#1egmP$;F~9u7sjvm8&L%C(}%*
zw^!CF0faLb0JelM3|)c<BRniPVrPgd99Vd<<nXq3dE0c^aV|lHgo_J47PQFgG91sF
z6(8vK;_X(9%@j{r99x7PFNH6vEwKp@d`twTf#!-P_|?L^OtZX0R~{lPP*a2&48g%H
zKF1zNulON%O|2L^Li>4kh&ZH+3U9jld$DzXd5RN@;XCDmR^r1di!=n|_0Oet7#B#7
zf|ygKT&O2Zp&W*D#m@vk-Y!pXyfKr_54YIW=pgA~M7J%1BO9J=6G!XS;N5fOBj^_i
zmT%S@iuIW@Q$vU@qL=G+EUYE(3-21lxdCoE&CI&aeIOwgpvKESic3N3EY+;TJ&#2P
z6sSyS0Q5}xEF>ZPUc@p-9zYR)yLgo%ytFwKH4qc%{}AARp*v9j-M%9|UJ)v$-)T#E
zjj#k{RW=0l5S4M9QQt2<rf<<WSG;QrOy?y>`H1$rXp25|yKjg(z2c(SaG#0;98ZiX
zylZ&JtMjgBNne2qBKp2baD)ixN)Qaaq+WLIS8+Yzm{Pmon53K|im6GV6E7a;yQ9|j
z{BfE&ca+b6vF$`e=jwv(BEW;q3YP`W0<rXFW|i-U-g|wR(bbC}T&eZ7i3_5iNt!Mi
z`@wm86v#rz%^*3!?Eo)BE_D>;&+l(f^YjxuuTf3)9X0sM0+}R%@QG&Umrl6Qku<ki
z&BXm+DFrJHJRwv3Lj3IOz|Y~_u#HVX+iSG<+41(*OZ#;aFoeijjU`C|#{@e};UZyy
z9lQT`r|S<;Rk%@Bq&$=;))UXPIY$lnn=0U}wCW=Q#c~_TK-W}BL|g}AFYTt1(Kpp(
ze&lR_1~8<*{{eIS|NnrQx<3#Uq%tI7@|zIypJM8KzS18RKL`x{fTye#tPi5N2-;>v
zzdzDma>U<OCT9G9D!E7Qmx66pfaI&G+=(tGD$r~=)Yp=ukWr;5qeJb%X`W&r7!`a%
zkPc=X?t44m`w@5!1vSvxCIY?y_s%p6Pq35!VgUeY?`Q|tBn=paOf%zmC+|e>-|TFv
zalUfm+1b4|9l79%&z;Wn?y719D$?`7iR`L^6@c5XK&elb3qO|Gqkp%z`x$mrIf0pO
z`Fhr)Bv1=}7swrwqIkp4PGE%EUq?690)f_LfE84jr6<}gleDS`2;C0yY`ex;K@44U
zvMnf&i^ON**mOfNVdxD^<48eMI23-mJRW4~9iC2BwHVDVfNxD;Rwt7nBGVjjtZ&p3
z-^1*7X$Mei*oO(w_a{(m7945YXUFBBfhrD*T;ajDxZaQ=5dO_M#M^pVpH9RN!mqJG
zf#<@>b`u=#NU$}N6aTI*#eAG#{nWAFx#4o$vDoZPg1i6*I>zc|M--DDQ;XNLm-+Qg
zpuI^3v}BTCr<m9eoaLv-bz&3&1gDO)wLxL?@rfc&bz%nW^VVB^EysBz>~9!8>Jm9g
z)S|3-qQ`npP=L46P_VL|HBHP&5SYC?>g<@0;yU?Pb_=Pvn2%)Jz``85*=~Q#)3bu6
zURhwzetho=e?*0VptZG1<T7bJ@x7g8Ys&ZjA~B+m-1dNb50V8nTm`c`R_Q0h+0}Ll
zb|xkmU---IhfjF!=AsX&4=F}WCLxvPh<SEk2kE$z%~0?{AuC8+<mndJ#GK20)1U7r
zRU$f|D`{@lDo(*=m-}{Y`nxLqs+lVIv@G#sl5G}z^)%x@&mMWM!XiahKw+|H*p<Ui
z?F2<17bt;700x4IV7}kD;WR0Bk;3X=G-Q>{FMY7MCwv5{1Z5!vH724Px`I#|x6yfG
zkQbC^Q__Yu#4`#KP+7-iC-fTFBY(1lYJPdD{orf-8}M?T9^$3vIqtegNeO8j{)Il9
zF^;=}tpXOFBtSgCX6f6`1y^w3(DsOv6L54HKo};O84G-)4gf|_v`MWAbv1Z1q7J~h
zi<oP9*HGQRvK06*Id|+VN;%G*Fz#~jSQvQN8+~z(=YRi#RdIho-vkMw<L4I0r?_~|
z^UdQ^sQ^wA#T%mnawEkYd%Z7hK4$>kkyw|B5N;=8T(&}Tx{`hB7uytnnk+#MsG!^u
zZm<BI3_r*=1eAoJ+;ta4YLJlqhuNhets&n-8@IlT_GmS(UWeJ3O06z~@_>dZNMd}+
z?k+yW9_JzsmQBaV+9Z^zgB{Z^@gqOPo)7?_5$!7HuSt^VLYo;XDd=D+&-vbIKeOL@
zR(c$WR_HZIP$jpr<3s1V%DAX<4Ub*1)v2%0@`9Eyp7@|Yq-k)h^PcnTWcuMWv53fE
zTrzrKF>1Fs9oIzw@A<)f>jwRU?dk^Bgne*<HTR$ia@)Iq`9Jm#toAf>>8-xQ4^%wP
z5iJTX)|Ai@7A#T0`R6r!^jEuYz<ak)EtC>9r0AI*V5Q_GO%Y%67gAzAg37o&jZ$fF
z(^%QUkDOqIM}n(`N&{vm1V1e!-GeM}*G^|;j0P4LhMMKA%S`hi5!QSsSS%86OcXki
zw4ULCO2TsRyOP`_nHjRQ1T61})8Axwkg%;nzr}oT`VQyq-f=yyDURFK_LG<Nn(n#1
z1Z#HPUY?NQ;M%kYJcaE6p+*Yz49;waZ}#InBk=drLj-w4Jd+X<xx)SPZN>L-ojlBZ
z*HqVycM6beVrr&AO}F6LljJ$*enla<+|<S$wxG=W5l?VwxIuU@K^>ZMroHC{Ph=s)
z&n*;uPkFxr1TuRFy%vy6E^T6Fg5-z!q0J5oL-M(_BqRZCnk7h(V0X`SyK`NvAj}$b
z&K&2D{+>=)sG>l96WArf&w{THJ`lu{O*vzW{pCOfM9mH{b$DsQu2U0I(vr+?*V`lh
z;<||HPcR*mG85z^zHqCZ^rIF>eIYn-W}cmI;53Q61wRBJ8SJ_2Y9cZF=_c`LU&~~e
z70$NAO9D3!fuauNY+-vIXxBP~%dkSV%2%9)&ZB(m#_Agy%}Rk;+{H?9<{(sr1(Ov<
zh(Ol&_O4*O9MoJ4vs^~7J}@`6+MLXoyZIME-B7nm<ZFc=YpArx$7=;Panbz4K_r=~
zdfT^WDG*8Z_FlIX0}tr*_=^)-k4gOXiT2Zk80{0+Ks@)wM99pN%m>%li;}3xG$V;t
z(GLJ;F}-T-oHO?t4ou0IO56WLZK)7zAA={qf~jw|7w71&$4wXHG#$OdgDkAIpAFET
z=QlM~Av3o$3%G{gJknxcJWcy8Z9<?%f<YQQzroJUqa6a~p}3+$1QChjxPP<Fsnu41
zU(9a`Rzac>gyJr;uh6*uT*LUtb4Lh#v#q^AOY_9i6huf&PlYp_+-RS;m~t?;2=V~N
zS<@kcX=L6kwqN{%=832#EK4{Z5Ngus;MQV$VIiMHZwdoCv%<E@LPrnOZ`L*2;}|F(
zjBXNFS^-Cd0eLQDzfIH0Ml5oQxwh6$bQc-D5bm|$j>x%AYP3#&ZDe?uhpJT<ja^JK
zCrq#_eY8VV2r&eLwSePig?(zgwmmM0k%5JzdU43s%7&zxannVU4L%5C%I>g#RPs{^
zTh>S|#+M1ys!6}e-aefQhK<Sz!w^fB30uAMa+}@|vzhH0%7cveJ83=TTAB}6dC&O1
z-)5pP!14+Rn1EzDCdJEg?`QjZdVJt#VIO?T`^q=^K~{aJhHu2S3(hVa_lVWrmVG?Y
zZ6(5Ozq8zX&B0oZ2AK#-ECIOcKj<BJpcW3T;r=3^81wWp@6!ExHUJTP>LKsiLwb})
zbcoJ1s}U#%*dE~Lz^|O={kgU0*i$l5?LO`O;j@05BY!VYgavcF>pMJBT#VKMlnZ8*
zn3jaLV9-48u=8mNb4@@zvds<u@htwgXES6RAX~^cA}kY(P4`Z(($XT}z#F6#g7@z;
zy_eT{HbbV%f*6b|1J%a-yxRNf1O2*|6+~g+L^PvL?9<-EK4)Z*SV?aPiBSmekym?H
zz0JtbaWr+{x<j!L#x+-aH@@H*fy|8KCpkpfHS_HT@3JB%K-oAvXn+7x^t*FYoU1p2
zbBB0RkJ!!o?<T3+x5bG+1=zYsU^<5U*i`4I&lMK0BvcDH3i1yyC}w)O6Z0Ubc<2KH
z(+Kko)l#EyO4&8e2bWVLdL@zT<$VMWl_T0Q+nM@nY^S`&BymHy^d~|xw-)>G4ioWi
zcPZWtXPxWYe3(xpguxPD2z;Dy0s#NrWiMY1-zFaOfi|FlNvxIu5#02)ojcD_38^Mf
z&Ql`{5<4ku@<AUu#m6T85B`H3*nq{{?t9~C#XD9OD?xdzP#2E{2#L#Mb#RBWU@y^B
zm|u=`^8Eex;2;Bz%+f1Xa3?65B)LGX3uHEX!)cvUW~ZGG2)XLQ0V3ob1r09A+;N({
z=M+yTYlRP3xSe+n$vTr`d8^0XGQ``d&***!IBz@-*0(bALB+_8<mLC0BQm??h)9V!
zMG{?gNzz#CVbN<ENz;Z5stc8@xM$&YK6_&So`~GZ-H6-_m=Fj->Nd~hIiKFB<3m-@
z8kp9O77k=t);q}n(cYV_fafj-{Se_;L;+2gJYcqO>qD@48D<<8-i0ZK#UpJclHWgk
zPx-)uPBM9Q0Uif89tUP95zuCHpwIX9<36b!%NdNWX7|tW`M!JH_mPmn-I^bhJlgr}
z85Pk@*Y`d~2c97(11v(xmRMA0Z*J-L5$j)2Lu|PqUDvgPJPEl=G%xLAU%e3tE<*1>
zQmEvvRh0ce`r$MvnokBg5gaK$cM6idK8SQaQX*GNuN>J3?zcO8)6d_r@USlK@sgKi
z6c|_#Zeb=&-zq!cY$g7qo5DOdc#WV66V$q;A$v#xH8^1rf+bH~8h1}Tlj|mE@o3?W
zHT(`xN&!0jZnC{PSD&2%0EC+*gaH4rT>d|_77HFYxT5JAQ(+%Jl?GB_-tx||Pf25N
znPdi=PA@QdicfZIwLM?PC5W5{-ehCsaluQWsR^@|nAxX^4-as{ndajLTgW(>mq1|R
zNP_kjLYQPWPqs5*i0Eik5Z^(`5(Qpok)2+{uX(9qGl(;X!3SXq9qOevZj4rp3kG@e
zc=XY;B$-*QcJ2tuQ;j<boL}Wt&Pe8%+<Lz4KbanI)nJm@@UJysMnc@q9c4r1RDfe8
zYzPYl>&g}Xq{7-D<&g3E0O{--;Z$i1>?D+!m)bL~q%M+=;$=Oh)~27MpU8maw+tnG
znVmOF3ym3ntzF3KFgKF@ip{T!c_O8U85FQpF4vaTAfZ{p6DA2-XK9;#OZW*SPgrZw
zsLLKQ!X=gVaQ0Aypl}GeL-b?#K(*M1rIc0Ub?4}0P)OAIHE!d3ewt+bEp`ix15Jq(
z6~rrt-)E4s*d))kb(3_UWx*DX25*Jn8va^uFL!ycl7N`n(dqK>)nVISPcvLL$;J+<
z7fHp;oU83@I537?*n~`^&sDnVS8l&!>s-ODL4aT3@H4s4vpVdqi0KozE)z<ELBFNN
zKA)<e7;@Cu5$XI}j#pS_2NW5iOtoE~MJZ-}$@kSP80hTyIQ!%jN+sy;@t|G9e4;iC
zett}?eN8qD=eZzQp`eQq`8v-|Y}TpELCFvBB*XQlo0miO+BhxW&6-nM(O{jEv}=%N
z*)^GG64KS@S@!MmF&T7@H60!q+<mIh#nWq_yY1u`snbAz4yd>{ko6FHeC<Me)pJ^t
z6UOVo{lt$@mAu>@^Riat2OAo=3GmgV88KBjZESJNN#w)jZSY8clFwedOM@0}xy?Sd
zL4Pv>_LxLz5PA6=M(>+t_Q<VN?LA8JB`mhR-BDs-#6z7C!Z;A`dbc~mVg*4c|5I2<
zCYFXB5L@nz>$Rs+9IvXX;AN|%itjMn`eXuo^#pJA{5|$ax2Jp!))xAeENNZDU{v&m
zHkd6+83{dM=rovSF1XX)_qtY%mIanC$dxA6*B{oo#o_waJ)>hCXzUet4YOq(!0-_m
zFo8@gT4H~8yBQ(U7@;^aZc@G`i#_$rx3oQ&aKb>a!?6$??{{yqH$B_4|4j4a1NOid
z++s;ugp*F!HZnMZz82f3SGu(*4hcSmKGL3_t;oI4KDkV*#-Z<GMajZTevvzD@8w!L
zOzdA$m?@r(Z$6=gC}y?Pk9!?1O#kQp6wk{ZJ^Rf)i)`RA_Z#w8v~YD0x{*<JXEr{h
zH6<9YM1X>?Vpqy;wsTi&`QGhinu8Zv>&_$_S2Xnum%*jV;Hp=2eHH{Uth>o%NFhy*
zSfzDEJi4-HI(3ds>%&^C6qrrHAY}f$$zHlmOEEQL+bIX!PSzzU4H;|dZ8qt9t;C!z
z<WkRtU||1uf&G26*5uUxDQ5<H>3*0lXy(t~V88oVt4B+!uIV~o&RUwhT&bJ1hQkX;
zSkSG@5M|NbH`$NfgDt)>UB_B_!^h&N_w^(3VCCrO#nMGB{8r0{=o83c15AlSjS=9(
zIo-EJoMi+SK0TQi;fX8kfQ|YIc2>{0>Fym4)W|AHCegh4cG4s6_}b+<qD)OU1Fp6o
zcHM$K4?JL*+_O{XcJE(lTewE>K1GVA^Fv?NRtP;s0fsxXZg^UzX_;daAJnQ5B44Y*
zm9DW;ET3mTT%$FJk{^>&15=;wUQ%YdnRJa^+^LmfD|aucG%1SO1vlHT-9sJSWU5J?
zZ?ATn%xj=CelK9OxH<K|UfbGJ3Kw#l&2UTUo;R~9sEZ<ypu_I4H4F6vJPO@*B%RQ|
z7Tf=u8!@IpMTM+0LsI{Y+*{o`7Qm&YX+piYYa{Q~iY$!8um{Wm;$Ror`kP`h*rB1K
z^_Eh2v77F&4GVhwm`82;Li_sdU5&T331|+#_w($Wu-NvxPb+X}6GRGL6%zX5dAJyS
zF0BwxFxV<7$L|oD)P9$i=Szw<#?Dx9KJ7bC3wf_P+;d1prkbqhYsH?ia|Zsxq31R&
z9uCphqb8St=&bod_6al+-z_2EVy7B1-~PTsi{%Eu-gS3?%>&=HZ`@TY4dWfw0<aga
zS{MC_SSESYNLvSuK|<3B;vACUE(yk4ae9}jM2<L5ZfOGyh}6(k(>-?KEjkSRKH91w
zO45?MB>!@kYR~CFU39y>%iZe|ft41rhFokey2T!}L|fUjB2oK>SPWBF6TpYd9T86y
ziz}>2Bm>5Y+0<r3E(0PbJfV(o1cVjk&qxblR(9Cl$$SUH#YC7Ou&qgEe3AWXu(AtL
zDn9OIr9I836=>!}7()M9k6SIku-t%&Q|#p4dkunXc3_*`ESyh@8POc7b!7r9Z*LOl
z=5~X-n6yVTOfyt&KkRCT3&SH(Uj?vwDoTPUXV|JlZ6^yi<x0*Re5xb^+S*{xhh5^F
z7ZY&LOlq27i9o9*+G3JD=M;BPQLW)@-ELo!)_~jyla&VcM~ufXkg*+hRfhXX1UC!C
zJRxkSyWDJK|8PwIY_b;$gO0j3VqgsCtw!71<>T^roG`}_e^g_?D&x1PYXbQC0k@pW
z`B+k9XA9>m9`8Z)3@Tn=y8-v0(k3=`tvULKMinJecxTKVlkK%=IB662Ge+-fMU#cA
zJUC#FL^Ic8Kqx3|lieqvy+>*gIVgXQu;07lP2`?K2X|E3bZH778u4S1BLWNYc9A{O
zRiuinG>t5-h|G8xm=~tl2fTkbC`j=X`<px7s4jpX2--H;qn?vbH>)b`(ZZgySac(D
z6bjE&7^3foTZ;mgiXx;QygNHs-b9|l1qJr$5_h=BnPm2p>x^PaoD|L&Y9BAwx)J#C
zQo-V<!P*Qgwa;)6X>17jEjfo|0!lLPl-eWC(wRgKm&^no1nd^!o3YnMG?Qt*DzO{g
z^BnmBYPX*%t@mU;fPqAsfYg(zQ^Zh_D^fGe`vLpt@Vz=hnSWit-pPXXxYe1d=8ZOc
zznoCqi+Bh0-ol-mJ4e{n<Mj9A0zBO!gn@2u-kM?i`n7m8o}w6ak!Q`LE%t{qC`9ZI
z)ppC>FrgzR+kM<NA}I+Nv2kI0O9~$l8q^X%{m$qywkMf?++fQ@))eq8xkd;-XzYcI
zJkwzh5#rM0f?+=FumuBk!o^&H?t_cwF2%ew*|wjq!^&!D6cHPZXNtMK%BH*bi(F$>
zHM-du+<@n*?98$H>xfCfti2Sl*{<>+k0BwGlZsiT%g@er+ZF~^m!DVc)C&8NG#;%~
z=P1RN*h#Ktq5zf~wV)h+v1!boXy*^nhPZfWo}fi&vk}zKsJE9$57A^8;S<VHC|jU_
z({1IF2U*%;F_%uVrLG_xv1fpyPPZFmwFTTzTruGQ5}`o*gl()CBceOt44v0zpK&|L
z6|&gH0;Q#)8y{3|=gF0q(<c@oRk83WnJ1>$@uG@AQ&UeT5(vhckij&`>?*e_J^IZk
znro|ZWpuK5knE<({xwpoMh9!iaxA9F-zx30klRJ%f+U-J>+F!OC66SG$>zdFdpe6w
z-?<S6AXxhICfRQ}08}8?H+B&g@>>{Bz#bE;eT)mYHH(Od-$1JQN4;HE6Eg-vncMOS
z=>O)uXS~TL_8Y^=987X~@}WMp$~!AefkX|}*L_FHMQgl^e~uf2&MY_BTK7pC>gCQk
z-fuU=kz$$~g(F-mArz+fbDmc&@sP0zm*SSj0H_FNz$>0@3n)UV-UMbhUIym+XFV$}
zpa>0Npt+`r=1ZUVToIy#*9gri-WR~?nJ-@VbS|M#bRy!cRxiIS+~j%SS_*kL@Wzpl
znXobEZ}c?Wtc66TP)fH;HcGcu^g)u08sa{Y?GerdZP+ALdzNjW4&sUF&OCgTXV(|{
z=MV`RXfbByRL}39Q6kh$-d^+R2+yo{+@GKvA|YmKi)Z`C6o_XmRF<Cvt3A_Sp#(=o
z;#)l!vMJmU_T2xP{;VX>AHM`tf~I(iXVA;qRw-E<I9<kk-{IN5nIashJHqsD#(55T
zQ9nbT@Qe*iBWT0yEcX2IoM$ssBC9P>w+kio#e=+amv}d$p(H<nWSsJAs*@w)ysMV<
z+sug{jQ*W0Xp{SR@9=pxqg)xn=q1@WD%?-wyqBEH$Lw){jBpsESR}v*Q2el0Z=`t}
zkM)XG0wFzADYh8Q66h)~dfJ=ybHB~Ja^&D?#VnC3dD+Z{wcgaNST^vGz#A$^prSE{
zOz<YJi!Kw$b7Y%w-h`(;GQh0zO0aeU><=(sm{`)uYGqD~@opG^ZHLvU(-fOvrHgI(
zl4|d>kN4Y*Sd%SA8Ill*lhGM>cux}x4uPgEBp)#+SnoaM-YAQXe4I1ad)f@vfYqy%
zZNO%Rq}O1*P48gML50}Sz?i|{X9~ZJ@>br~Z!@O%EDXs&SwK={k`ImaUcOR)ogJw8
zLM&tE;ui0*b9?+$rnsfp``+EmU7ElircW@%SFZQg{7!MQ*&>!6v-4^1E&aXncNPk0
z9Ku_~ioy@qKjFO~!7EEd*114iGfH-2=JxWgJke7RQ5)P6#&d`pA<q?o{Vxr7rfhIi
z&0%grQ<qF4^>ovlRH|QSF_1=DOdhlh^K_&0$2$~*%7y(0FZ8?y@|<A0!d=5}t{?8y
zCdRs%?L<Rb-Q>ybk4rS_6SbxFp5ml@A0wjx>H;1V<2;@RDdwbMPU4eVE;)w-VneA2
zcyNZn`pJk`72fp?h0YbX^P_ZB-TbJd1CJKTJ;RirywKTr3jLyQCkg`gOx!y-1Vx$7
zINIe^#={sdD<qAS436!t7H9v@v^+<A=~@Gx+>i%9JtjhmT!#1GNzOi7bei}O5Dx?p
zOHv{`G9bgrakL|W*aN&NBtcOK-T121WjKF*?M{NJlafNl&64Gfa~ke;I}5bp4bq0|
zKHlH@CHbS2C_5i)biZUt8%f5()^Igfk9010Nz1dt<>icCRx8PTJ;WK}&MF7*&uL@_
z)L|p_r39RJ-G<Qj&<n|6+9WlGw1>QOOQBP@nUN3=2fS7j&f?rp)-XkezvFx-)UJDn
zYKtt(@)?Uk&9~zmbZhnMbk-4u(U-JK?dLn?L-psy{FDGXL|8tcAL#rvr(!>?E5&Jn
zglzS=!N^8Razj#APIbnxQ0$7h&ouBAEhd_S+nh^3&@~?{<W8~yCql8_PId0=8!Ovh
z8U(dN6uI*2Yi@S_F^)b2`-VQqRxI6<gAMTL(aulby6p$6t3x_2jwgZ0)1Cjms1qUa
zX^_pM7tbhMxNx|KNTnyjcpX>nJlRj%%^`tX1=>jlqSnT9hC11$3`AD1DnP?(eBkso
zoa7vH5}zO>i+8bXhr6W1XE_~HbsdUa?U6VzzBk6X(%qxMkOB7;vpw)#-gBK7{!hov
z)6o&A*1V3CUt8jw&yZMu@GLq=e=UoHM;WW|(iG>$EUn@ogM7psxK8&?bdEkv=TM4A
z1I=Ix$uR3moy7<0Z^x0voNFS#MsvuFb5eBp@K;<b9Ln7@LHf80ozvU&ldP7Ca977X
z+v#ROjq`k_epD1@DQF9$WU9HV-Z|)ccgASjaMe)zD|7}!W{dOJK`b9m+5!dKfy!R|
zi2m8&WZkcOLVilg`7L|GZ5-EBA;~s*!g>9xo%})CDxTnN0Z$R{5PnarGw!#jIscgA
ze0RJa5%gri`fB$&Bfdc%5@EfHE^)3uoq8oZcn}g>;Q>uqFcXCaCYqX|PP1GLHGx;i
zAgcB7GrpfDIbTsFgi{hx>lb*d-C63iyL**GdSxLjTus#EHO?Qu(vZYO(Se>Zp+#)U
z5ed%skHJxi(}?Jw$h}H-tQ%~<77B?WY)9Zik`_&Vnq<()J;Q!iK~<#X2pz)C8rO2f
zBPvEHUhY&}O-*ow{X%S0c*K`ih|LeV1IxzAQ|<Ij?KI0pw8m@6Z!Wsb&J<S|qNR}t
zPzCI5(t|r$S7Ci3ClcuzMEMtP7d>nm32aUFP}??9zaK90@$?Y+jpPoSSDNfUMT8PC
zH&iBMSrK}*?q)kxEIB;BXtS_AjA&+ify#kjz(Q7HAHrHfH`!uY!32<GdYxq-Lek(s
zm7)l0lnw-v9>za|paJvIW%lq&ZICoa_-ZvHSfa4lF~WW>0w-L&aOIL|&~G+hWcL-h
z65n0(XNfJ}Psi>406lc7xuMEl;4<HYCyLSnF_EX^jezYvN`D(EUg8^<S80o_j!mtb
z_2{tp26-gO47k8vA@Xx3{xY?7p6pPqCpQegp}KNhMsN!Y+V@130i#Ek0`oSd-(75f
z5iv|wT5u-i1kl_+&#+5Goq<lx{65mIK3jVQDx%8m5#oq!x2(<`WvCWdPu&Qlkc+DA
z;(mOJ7$(-9E-@sXbNNWnp5-b;B2^Nsw7=NK7V!x#AKeZ^=_ak#UV^;DU~(f&T<GUR
zc0XA(Ml36hXD<mnhuHH)vV%?1Wz2-w8#~8dIYS3B4s|#(GA{~QA<ONJ?yz%J-z0i#
zGqBnYcK9iw`XV2(3izXwrMbmEJ19n6KcLhaxB+ZC1TamqLBkLZ^A){grJBT-#6Vz?
z5Swh=NMGJiUzEcLlG9e#VT2!(c#QimjmTZwI?$JSlKKb~booK!axc8pf}?%IzmBX(
zfEkhu+wgTgf3dfF0dJP;ULf8Fuu<YaAl{m#^<<!gDWVCefH^7KS28SKev{Q&E>3Tp
zTUNyQPw_2&S355WPIG^bvxWK1>wEUL|KZTU%=Yvc*;-;mYor;6j}?#B8X1D5x<A9~
zJNyTCo)X-nez1%Je#5*r(3f<#uahUg6o19Aj4lJm0JG_J-w8`kl=6b6YFscIjJfbv
z-_4t}2yi>J7BIP|f9fm!Rf{6Nh85}h8n>2_Rq#A`m7*JBx2OJP%kRW_N8HuP{1<@a
z;&b80K^1M+nosQJceFAK&q;Dt)#zuKpf-JP|NOtd`%HpRc5b)xSV!6fj1LbV_cNSF
z%(U-q<9%)o>BW%oq^mSC`<QLJ>{TCV%?N^ebO>o8kNbbOZBP7NN5VDk8DBv_QUS}H
zpfDZ(wd<bJZ^~MlLLJfv9waHIb&b7a%ipz?#FgJO=$;F~wcpbbmAEX`;ekhI;#2t8
z`!?wzZL~;JM&WivO(tAf&R5nu@9(;kJjPuu!mf_xeZ(=P%ee<`7z=ugFYd<pP7Xs6
zpoQdSlGNUiC^<Q!|84W`<M0YR+%&QV)CW7z(NK-fl(j!=mz{mUiBerg{EtvJSVV@o
zCc$Se*3U{qZFneai?Ew4@gYa~V&2r=aFA^a0ISF`<tWnGfcI>_!oRCZHdP<kck{Js
z6o`xLWk^1fq^f6qZHHZ|HKjEmHR*w(Dg)L3@B91860~XvXRT5LO_~s{q&sf^G4I)R
z!FWC5057+-Cy3jnn>syNJtqgg;JfF)`h!BT(jscf?GXQ8^M>!tA5RqeGXmwZ5*oQo
z=N9^YdtIs3ZjUwk*+Z7t&Xz{d4B0hEQwGZRYOn9YBbAWBoe2@ZCx^{Ew!d%8PP;po
zInRAE8?|<(Gcy<yRSJoGd6u&|q7>;uR5=ICa?Y*R-$GYgn?f@vX1HlrIKNQLgFq-g
zPk39PvQ3Rp8CV6)oco>rpYjp4<RzC}=xL^9p|kwXm{Z|RO4vvBEGWbH2A_q82=r>+
zDrf6!TF;x;h9X#gMM`?^-^;6=Ij_^4_=B{y@lK-AK;NBeK3(Iqtf4~O&0w9eLWiq3
zJg^hVX8xm&-A<h-qg%*mnI!hWskb_D*J&q%gQz3`5x_8?fv93eJ?iv*Rcpq%#yVKS
zG|9Vp=JPay%0*a4+zerAO{a6*UHa3!Dg=r)cc4ttytUGKdPDTj@nLd*4%I3QLnP!G
zq`i~xb=Ew|0*ZU1s0Jy8!_2zN`Irgu+YziL4xCDRg-?9I$y=p;<`aTU9#k>-aW?(t
z>W7`@UZhU~d(mTqPZG6l5d()m*gfz)b4=eoM-%};aP!3LhZkw^WzKVzbf^@T_!QCF
zNxY5OafK7Qn*LD0xoZwT!NT}~CYk!E^X}s4HDu^rYskjCzz*<;Es`;prXF_=-l)GH
zEb=&3B{n>X&L4ZkS^1JyWCg<jVUh5ah1&U$^T~5sT3khXpsr=->NY&$tl;QGtuUE@
z-4$jAV=)Ly1d-m>nYTKv9gH96IyyyzSc9mF;_Bb`IG<fl>v(_yM-Hn_SZAt9o#vEn
zq7)Ps@M1VciEutg%yl}>(}5rZcMSv1@$^;B`d74g_wsTDyN?j^U=2b&#t#WXN?@*-
z=uj|an8)TiZ_Hx&Y(GE~jUBMsa)b$`TH$Q^TpKJE`zcX7jpZ_4Tq%jBd(>%oSt})*
z0saM|BP92?-%NYL*&*wcB0it>TtMOSiAULWv(wP5Uu1`YDx)27%b35~`EY%Y^ON3v
z?b)>Mxrj?y-b&}swc0}TR$?|>?fl7B$|*!EQ^_P1Yfq>JGaPW4Gq#Euib_u+un<s%
zeMJn%8Ge=XU%96!$eQ^ID|srKwtMb#ma`kQ2Rt9h3v#Tn$PJw7oB-KjYT%vX!7YN8
z$nyDfoiS``k8&W4y2|BAB9jC<hQ=y9KLyW@H`i~@nC4vfu1=_XnxeG$Undsr$L<r0
zh)J3{J^O42*hr5$>$v)ipaiXyTo$}e&AYca=T2kdqLsk^gIn(B7sZR6DI9M$QEs_j
zAJUAQyw%QmP{^p8oV<G{<RZ%XfxJunLaMp!T4ycChK0*Uh+-w=$u!s8?-bpjGb#hH
zMB2`fbgef%?5u;3@!7}@DI|L)Pu?o$@GU($OzQ5CwszCJly1_o_YTtb+LcZlJ1BK+
zr|;QYYP$B8J0)5Y;l|0sX=Y#G9QAgOZqvHEjW}_l+v?g1&PhH&g6coO(~0)-0p~=>
zCyNPaErw3sTmY0M*Ei0I-(K(hexVKstb^77iHSu&Tes3#zg0^|6YV6Wl1AIEbY}m+
zVCW#s)svVHSs#?N$tL+x=URv^Pl&1#TUrxHo}D00s2sa=-k5!Eb8@fMkMmFy>0w9}
zn*8nxr`KxABbJc2zKi-2enF-gxd0pz(OV?k=uD8q3*`w_hoHbhd+4<IBInwFF<`=^
z(8CJZ#Q9PJ8b>U3mfoS02cXo06DRTTa^i$Tn|XutIdf+jvjfC`Kxm-|S3lw$|CSc+
zKIYu!J;%I6kY~uLAg4tfWglDSoV-rwMc&wYmI|gZ*(5G=etU*eXaZ|q-U48R`0J*b
zq(#m%_v+6_qP_!vwh;#|d5CE&!#uUzS>%3(P8nq=<;05n&5`q*!x!;Y#KQ%195d5t
zfK-Th2y~moX!`MwF{_t5?=ICDpw+=#tM9f5s+kWthe32Xd}!6&lZ^y-&7;n$kKGB&
z@sKn!`d|`oWR|XQGI=mLI(W_qU>{U4-BitS76}m+bfeZ*)Jx=yl|=13);Q*UZNDe!
z0w=2L;G<0eu1It>>>=sUpZ<agNR(K8*J%<C)2v+MEM(Uh=@3*DLg`fWUG<oA#8(tY
zvIl@Ib+HE|5kzv99}8=1etyhZzfk8j8nb_+yJG}6nnRa4AM+Y8{Gu>^3M_=sSE6mr
zrpKHW@9+ul4~T%`k|2<nym$mKuW-)1S=YK$9J){y`sL~U@KMST-fOVEh-S^qxW)OM
zUWL*K|AK`y-JE>4bIPrBh}sM#HVukr@w@jpE3VWj_E;=7s(Z2ICbvw7-Qjj`zQ=iw
zTg+PNsD+Od-j1mPBeUAMgicu(9LnXcV7ucI-{B1E>`|I*ZdmMG^MsbFpR^uLbv;Nl
z2Q6_9kuE?+K&omC%8P_xdC{d#MRm-Rw4PO7gW+S-*>QLL<Q0S6@IVKa0o*dpQ*E9<
z#b$=+ik9*#&sgM^DlCbmo)Xs#hb6I+3z#oR_QpJ4=eglkeoh1dz@-=$&+#0&T0b8f
zXbev?COzo6Xd?yk3ZhKrlMlvwet+KWAz1ZEi>DN^)0pF@cwQCbA&{!%5XBUDa+@bn
zK1`-%HPjti;<<9277W1}DR?p=<myLiJTJ<?NE#<th!`y=c#f9uzz_`JoGO}M(_Zfx
z=vpRmbVU4-$^Uw>=Y#k3!vaj3Vy`Wz^!zBl;>iy+dWHlmk<r)ZctRiQuZDygI+~2R
zVwA_f(IYV{WdXFQO!<|gof(7r56e!$eDqaq&`smUTZIg@A<p@HLtoYI;qi#HnZfgz
zJ<1Ln5VMH$i!pZ^0jOjQPBi;>_y+wI6J*Ou(VvTRaV{FVnG5W!^ZIB8UC98UNkwqy
z_HY)zpXK{1gMeeAKCm*eu$&YRe;xP-s(1}VCM6IyWluH{pm^dDkeu%Kuq^fqr>P>Y
zli?K+yd7w-S8>)HGtSw%l}Hf@BSKXlBDM)dx&(?C&qQaVTLqUm4V@x3X{myYA2r_b
z>>&O%&5R2G$VB{0M~wvAW+vhxH*%fx@!OtGsBQs4s3Q0x6LAg$2mAV`Iz7svcmLei
z7f$L~4oleedqn235*8|98Nw<4@T-ljJ4rOt`cerifCJ{M4bH*)#~y@U@QpRzi)Y2j
zQ<BST0X^iBN!04gE1dfu;&!lwun_w2AyAsk<xZ=JA&BDyb12X07bnFTk2qyeVSYX&
z2x>GlL3~P8FWJYOzT8V{Alvd_NPNp>k2)QX#B@SMvE))LQbHnrLQl@O|BbPtcHH9$
zf)cvLzF87e0Y#AzsMe}5W^l39K+Z{n{>mV-n<M81s@p@=4WEb~WF}OCl-_q|Y7JYA
zeTz3;vYz)#0X(2PZd^IU?zr)EGlDydwS(Y&i1LeboM-xjg3|q4yn(yJ$tA>i&u>u+
z_57_u$++##Wa6Vk^=%!dFd;J)Mf=Go*k32b%w&p%;TgnO$U|0`kR&0OsR!FtRaymJ
z9&wS9NF~9ai6if82im`;XbpBbyi24QUzpAV?B+=^g5ZyXACad7aS;W@t~>Yo#^z~0
z@L}!Kwh>rVzYPgh93jry<qKC*qrr1cja&*Ahfo2C{)gLq%eQM)LAVL?BC1wFC;9Zq
z_^FTd8wSp+lJ0~GGWu1*IAMA;h2J<uulAKX1PZJ*^3-Vr;lwYTE8guZKqLezfkuFz
zN&>-hrf*++#$^O=N0+CV9ewP&D|?iuF{Us2+V^K^IYg;Z+DRc88)v#+_RR+fMCUOI
zfa<{h5~9oWK6%4V2YQ6^+%O1IXebG(@}ne8G%=6Z^tUu5ycBZHtw#q-mBeCgf7~AY
zvtj_?yxNpd)g%d2i5Br=hQr18Yip0zHb<1B36~Hqf>k-KGd{K>57Uaj4Kl~UNQ2BJ
zAbxlgI%jPXrD(Ew9Hm#8Mt2Veoy3K#Kv#{gSlT|mnmny338F@urqTk&>v6x^%(Jz8
zXe$c}oj_)lT}%JgmJ=wB(F13TLr+}#?Ma<D*n)hC3AVBWwG)1f8dG-hSI+JKH=q;k
zc`@-oZCEu4ze5QMm4Z7Vz3>z#HcTu!;q2zl65rL8-cA@<;%rpWi={msGbZxi6yGt6
zLBzm{t}rp?*PwlL88LUnowuO7Lpy}>nRD~jZ}v^v;EtC8D=pa6+;Xl~vN?2-{rn&+
z5r(<Ket}X;_?{fj%Rlwbd)w*cDxhhrt0CAi1!4rTIqNy+wM9%)VHlyUf{4TD6F?n-
zV<vJ=^yx4zv;lPDtYs;G7mW!-yc>-fO(RpfXk<jRorb$6cE>F8b0ayIKDp&2S!T4~
zfc;9Yde~2ZU`){zU&ZKC1g~Qpd?rxY00EPBMHGN*Pqo)JD)L572a0(F6-nhnWioH^
zMQQfVa;?k_;O0C%;2~6vBa8XopF|dz6!THMy~jo8K#;>~(3F5#9lNVPMU%vgJIc<P
ztPK<p3h1H@B_;q|WM=fU-;a0uC19e1dqazGai-d5XHL+HqW0DfxtI(_x_a+)8&^w(
zU|zF{oSLKrjTH#nR}a$<NS!4gC~gt`!_=)i%*IdAIy^0icy7lq5nwOG*&!hlrgU|G
z8}IfOIY7`N%tDX-+^s=t1wx)I2|mW_Qtf3UwZ)vsaVMI7K0AsDMbM4J1R-?2``X5f
zb=WyIEjV<Tv=oNTDF{J+`8_uQR4oKdCQ6PR9^<9)_MABFVi>nT@lb*Z9T)*?Ii6sm
zfPi|Oy|thx&EeSI-Ur8eEiaV=;K{}tjVtD&r3eeq|8SeorcIBgQ%O=ay=z6ZX@2oq
zFWWy~n<(iBf^Wg)BR>yU<o6To?F+P`n_hB&;C@<<vyWaARnE$CS)IPN?Q*)p5Cvjk
zxRouYEm8#0$v-`|&juYvX<bu=ZhlIFXuqc&VNYgtWl@+n@>8ZBqwSgYPOrAbprj=z
z0<bcmF7>hp|10ho<pEHs)G||Y9Xqe5Y1uG1Ab8=~L!1}<T7ceM9Qf+}PD)P1SMa-e
z&g-dKGPtQ$^A(x8)0`WV-LJ@0R0q#^eS$OcEG@zAP#>tpt1ZXLAE+e-fjYW35Pv7(
z3@t&IR1t8Snm*LIAe%ygRwY{zKf5B&SwBvH#%swQ;XHz-(EL>34F87~kHT@HF5n^B
zvQpj-Gi-wM;MQ1~XpRtLIQCNKz|UhZh21I&bOb|np+E?cRU(YZ|8(!iapE>Y+v-Yy
zqmBna;YxV`xti)$aY?ar;8{2v2pTX?Jgg!$>flgV;9QjxE6#0$LoMMB@uh=^@LrwL
z>3#Y=jm6KZ+ocYCwg2b+@ntPR-4X!YR6W~TpYoP%p;WY#VvJ&~;IGdt@n+yQMu$ac
z14C6j#P|$w7<R1kKJ%&T@5XQi<0UaYk?!7z^Bx(GKUow6gE+-r(doVHYgz)zdl$h!
zn9XSA%XDwfV(l~wjRF}Zg|(&pgOT2N>9*^~W<#d;)qDFzU(+;<5GVDvZ(qvElYIBM
z&rOF9S9V}=i=BVJmh*xVYtK>&4U|E00u#+gm)cL>;%I_8jKz`nGb1q}gWjHb*3KSI
zxn!&e3hGyKYC<aV^CbgqzdQ8kM-m(f2>a5pSwbr#zYqkIrh#^+d?9G+4YZ|TH)#pt
zS@J-F_1xRz6A7@{InX}mev%ykWR1}#rzrr<E&29+E^$;JLZp7nuu1L*dqyju1QQ0@
z9Ll3sB?Ce;WvX5N0OjZ*+AFJ@T7kmB+>wxh<M77o?bYdYA*RSZBwt)7RynqM@5dk&
zGF|7jYxbtXNr(Z)+S>r7iyA;C`rw0G?7x>pmBV#GJ1=du$H~C<Y@<*wziDl-Z#>kq
z94LWJb$0N>QRRLZS9D*^)_F9locE4b|EeZ?vU?o5k4Z{GB7AO3n~huA<M*KCnEl9O
z{a}xB2_D|3*|yRStMvCTYod8Q-Y%-<%N|Rdm`QG=8|-gsQH>@iWb*DG+hF^x=us{f
zXIpP?SQb^z8_eRSHrmwaMFB$zomft@-5EV-o-!sgpxF+Ho}?^#y4l!jr^=#}$x9rF
zaMw|)J*mKs2PiFSFH&J3vm4=mqJ{%-8b@;WR2!CVqnaU>bA(Oa5!DPg6Z$Y{svQu$
z6;e(*x2g6aDQ6Sm3;}3r2g6IBoiWw+mMix<nu!GUT;|wgUF^fiLo0|TS6TbTL|Tg!
z2Sn%gMqhg!Y=4hqE^wdkc<tBl98q7Sv8uoJwWqj(LiYoj1f{^EsIQH21&-oCE0<LS
z2zlGyI@oSp)T15ISYFlF9y62j$Rm#7-Xu2I-qFkIKHO(E*t?>4nbQJ;LwTbd{XH{F
zREpNSk4?TLsvJHGDjbNh%|apf{GM&&D()X+^Lq+RqSpJduRY2wC*PeQRw7_QlFeOx
z>=QEn$aVyO@}$0Yv#igad9glR=@C<HUpZZozn3uZ)qU;s=yhQKVRkQ`Y8&NhMN;Hs
zIEw4m+5L)olqb>ZkmqcMFjJBJO4Rz+CYu&bN;vJ%<L_GRd6Y-B@5jaIwDtBMLh+^F
zb^)-<fMjqUuYAcK5#4?YFH0gma`x`!I<IkvOU<H~2h&b;<e&WM^p=^yFJP&08Cvd?
za84(c*n!_hU4|465gB5+vR#{uz8&F^$5ko*2QBuv)wD%af4JOz3o<j5^Z&HaUU()o
zT_|Pn{fG<N$?Y|^@ZG3R{0Sn2u5Yx{qlqGP1hwr$jrIyUhYSiPngX7sbCz(Ud;d<m
z^kG^evI#pZ*o&(t+r(!mAQ24-r3An?HJMe-H1o6U@}qP#<9OrHFv>G4nvR4-_Q+dl
zYd7&3Js`i}StL9Vqm`Gxs>#lND^~DSF^a0T8NX<5=(pRPANneoYGiq$IeWWvaaVbh
zs<Uw7%786-*JGW6y}(!DP)Jetm2+6OR)N2WwCO>YAh11hJkN}?TPFb9nrMaxtJ;Ef
zVSpTj_rP>z{s}93uGVD>Mv2O^TF0>ODs(#hT2~0(55B`l(kZC`5hR(mWasDuv<l-1
z2thRhA}R2TDXBP3Wt!WjIKGXpj*m=a1bQ@zM~Cn`jOUcF^Pji9B18kg-O?VGuf&tq
z+&$S@ajI58e*~8ju8fLIg#9U_oNYB)Rf+%z&JNB<OnXY4lMZMlJmrv(c%*d+;~C0W
zeLupPIA6ahCM={5@M2d|M+@pVKju4&uGY$|mIj>8rKe<pOjumzEP7fi%38veP36Mo
zikyse%rNnEH*+RCe+|`6yWn&PwGyehyx2**Rln>p{6zEXNayWFcPNC5VXbTLZV(s*
z^TV0Wx`(xP&*ad_?wMRJ_+w!mh0cKK!MaW?c0RhRYZwf152_CfTd3}atb6yI5j8o7
zS2{m{lt(>yu3?nC0_NAfDBw<;^V^(fYV`+Y5)xD+z__w5f~a|NgLAFB17+brv$$##
zl*pz9lbxFy^qary6rUjNRIfLe0;@CtgvsXQiFRY7d+D`Q2od<YlkDx0rCd?AcK?a?
zq9*<A=um58s7uI4&CJb%if50vn*_@+;==m%!j8|iTMvuqgVvA|pPFEox~&y<jYnKV
z22QkfZfQwa@j^4x5%=)a9A^J9Hlhs(KB|<{CfOGE*TtcxHqck6d&*kc%W+>5w?y>c
z%3Ulfwv%OG5VqYjC&X@|4Z3qI2)AL3%ye0imL_|BUDS_(hcR;|+BYKyn}k3MA3o8(
z8(Er|Ag-G&6YVdNi<d;wTECez$sXDq(Jn7HirxQ=v-?JtO1mg8C)$GOb_H>wcA`ym
zOG{DA1Y{30AZwZCkx}-sl8C11P_%TD>^_lAv)>%OO%rTFWYh4ZT;JLWc20DuILFMH
zV7EuMz-}^;tO*1KNA#A+{-m4ui8e2~1rgFu8E^NEE=^**D<{}V(d`N=dEW$kU}U>I
zp{U4~Ot3p6TS#QaDdx3__WI~jaahTpXfKE^6+<WylWW{kaQi^?<Gixd+}nlqc4sJJ
zA}R1FDW-J1y}Bi;RP@G&jJLfTv~);_j4E=nWHk>y+dduHBTO-?`Nu@NpOnIeuuGz2
zLNNjYxUr6Hy&<A);i6K_uM_O2k&RHw;vY8A-Y2DzyoT^r<xO^z@EYBRSvamlbJ%42
zpq$!B&Iej<F70EV6i#f<uSN5J#U%S)k28)J*wTsiWwwRKs2GikCU6EaUr5f{qwGuH
zMzkW_4FKU2>^65BN%sst%H>1B01pzZaPOY%R7aUj6xObL09+9muX88bpQ86#kQ+H~
zH$|R{6j&UbOU8Fo9ryNfMVRn^Cfae4i^gwZgkKwPpNcF+9S9rdooFA9Zda5B-;B4P
zxxXC(K7|kf$QZ(PAZW*35HVt5u`|tG<LwvCal+2${wYz<YMKXc1#0*GP@8*6%udz`
z2<U1|ViK*{_ebwj)p4Ro9)%l*Ji2I-Wi3bjXiG9w_YJ-Xu)(7HhJF(%_^z!S?5&5Y
z!7@|@$|V63x&xv+GfkhvoLLp9U<BAqVpTwDKr%dTyZ5(gL~=-SPb?n_(wN8*e(nJ0
zsq)xG@OsY!)+=Bds5g?$yuW-8RmUu%5dnz64U_%xn=Old+fIyKgfx;Ds>I_O3l0u&
zC@E+A#t)zoVp(~dq!9(LJp6XwF{ko#?D(P~O6J8irJcUTv9U$jqF|StNp61M?EDO~
zBh{Xs*mod@C0|Us=tj}s<Nfflef{|uDF(40KZ;5NZ;1EoZ}z|sv^a|xX*9&Z&ZaWN
z&aJjD@n`JKU>F1mis23uF9T-#An(>Otbn9w#3uu96Nxl4haK-dbXaUr4i5h$ZGkH?
z#bP8n{(SrKg=8yB#^8lTxWSYRVQu|G?JFfD<bYuel}pl{;yhS!0AIeCu6ZR!(`>6}
zIN?^FvKon23rPBR{FG+fwgn{YNCiL=G%igWe#UAmdGW}v46H<D^>jR$T1*+aFwf7m
z=aE&g82fxXC^4EGsff<W!L|K(QhSgRKr#ohKxL(w=Gy0NexYU$l)$=rT&l!xP|{u|
zndY^2@HLv~$W62*W~$;61wQeTNssIsxXpHFeIf&gBHH|`za}`rX%;cpXpWEgnVJxY
zL_U-@y4jkzrH9>ZuO+u6Yb3es+?-OSBZ$~}=WKiHpuRz_UN){5^-bjLHN7vk=d|{b
zveCgAn!jZ%G-pn$-RHbML5@fnzNg^#jAF~bX||92ySEgQ%^hVAUZ#@&dB=47%zk~u
zFg&WA5K*xg3ryh&U)mL)W3q`VCX{`5aRHES<pIcyd;lx>_BZySpY;Qv=*8cedu4vy
zVds9~jU=IB9!NF+ZM3m_loqPFPJ}KYdYsv0Ph1wah)29Mh$b3LTyBDmjXzm#2x%6Z
zT4)?6U{w5&(HAcFt;o>}l_iL5xF4c&ykLRv)x-HU#`a*#b}3F5&+v)9_+44CV|WBc
zeT9bxhcs!4cmDfv5*`E|Fy|ehCUKSlL&GH9Y%h^$C$YBH;w%C*oCFyZUv4*tV~Pe#
zEU|2)XEa$4Dos9nNS>rmYWs?8G8o6ix~g!C;7$P5VH#uXz?ap{AO~3q#V(pjJPne~
znYY>r7qCs}P=cWu^`T}{z+?0NZFW|BpCDaJifs-{39{LkE9}aeK0)p)nAhMeXySX5
zw9v*hYblAc%9|u7U=}79kgV?QpoMf(5@@Tb;&91T%S{_?hTmd0U7|h0uLCB6_sM83
z(yh1K6=D4V2Me^z;4xRib+24tCts+=D3{$-s^TDV{Q|r2A}uZqqczt-FSyM<d0w9k
zma;^wp*2DLL@=N+$(z<YZxqMo34wqxL#{+J?(@E{?&Y|mh;-)cR^dpyb6Vei%&`P(
zv3cb86FRpXD`y8wfB>GOJr>>r2#RJqcWGP?4~@h`4<>onLqojMx*gB}qc8`ra-Mu1
z@`Za~xVc62>n)Nt76%lJ!YCXcKG5l$4-w<Ui07kFeVj0u>Z+riFIwFS2^g&shfWVM
zLiPO#oz;(Vw>#LGJ2zIq9t(*O(X$C^1%YH8_T55`P#1cMM-p`q2gie&YUT~M7oVeX
zOp^60SWh&+c<H7Hg6k0z?a_Vs4iBqPZ8thL5dh}eMthQ=`CtJB!xHlVx;y&$q|o-Q
zrkF6Z5O8BH0?Y+-kZk^q#xR>s(g-I<)t$n^hAy__z(-*-aD5PH48TkYKW??hpGONl
z0GCtD_?zrVqNVuxZhU4=%jF<@RPl46Tje}g8n+{G%UjCrSya%Wct`Dqy-YT9FSScX
zQxOeN4Xvvxx6}K(V~@n$#x1wSE&^1MFG`Vd@#6tz9LHR<rNZv=vXc=1CPG8;DUg85
zv!3uier%isMULQgA_!XIC}Bnxk8oanj_^llJD3gu**O9&IfcZk!tXBrmv_q58pjEd
z=Ld-VZkT0?si<(w>wGC`$0|dx6mHZl5pKhs(qet_C4^X_t>F(KOa~q3+`~IaS2>&!
zVn)d}2dmp8UBRXXUhoD9L>00oq0{1`ibD+t?wDBTmBFzB(w{HMCqz?{smWjZe(PLz
ztRnN{G887J6DC%G{Sia@f9>QR<yHxl<n9{I&iBr*N4RkQxHn*Q#rr7Hcz$>OW3*Hg
zsEDbVhS)!To^cF*OFX=U_N%{AVy2`8$oj@PsTclAEI&?EfH3onApeT{5xSGW$-c85
z@%6ZWbOj^g-oLeSlSCr~t0B!D`GW8E<*{q&=N+M?%FAS=Bzaigv3=ubt&CmE)@F%g
zmM~V7lSAuzpDmAF3(XzgUbhP_t(w^+c~B7yYxLc91h+rQjBLh{8(xgmCenBNExyZ7
zqJoQ1yR9V*g1bM}!&64$?0N0<4w-GQsFN3-SHi<!<{sjk|Grja;k3rJK{X%^QU1^q
zYHq_Qr^JG_M9IReP8jT@r^XH=nPD+83;}VkPe3n%DvKZqF_104*vVbkceis^6RugZ
zZ{n9(x!$>Cv!|BZlpE}*B1Fn0)p&m1>>R<>86}?85}{8Y6W?+=cf}sT;wWkykAT3u
z;~22a+1f!lHnv8AYcc+G9?Y$qo!M7vX}&<B5#32RFJRJWr_3i$JAdA#b-2-23ND`{
zX_26HzdWl2Yn|=)#|rZxsp%y%qUmh1GkH<y4Y(9cfsJrulFjmxeftb#FK{`hajddy
zkM$M)6(idQs0J=qyTp6J!&UrcmhYS^IOqb10%!sr(_A-5K9BXa!ySO(ByOA-WzzL<
zu`x2k7pI#S8=Yt2uK5ZtkY>Fee1q@E`xBghFX6rmP)1WDuKvUr<E+JdPS^HOXH&Wx
zh#mrW0KzU8TtoW_M}T0+&FgG)@(7c6d#z+RRG<yup$a-jpXyc!EShJefZIu^Ih%k&
zx!svOmJx9SI0HjM65kDy3w|ZY8y~#oU4EzDW<XjnFft&5KhsP~jC1E9It?RH|4%Mr
z<l>r*#kMkx?NcsK^$lLYJcUq{1}a*bs)Q7vGGl#S`pi3jqLPqel1$(Y$AoayR6j!w
zA22_kdVdPhyd=`bpG)Lu$XvR4A<0|tyq2T-1A~M*s+23673ZDOsYjV*fpL=QBfQ~a
z*PQ39`#EMaMA(?ObG#>Si3S?+b3UG#<Nc#uq2o)zB;%#W*N?-pbguWPW^BD8T=U$a
z4h6U7#uvS}-09hj*!&{B*FjFe1Zlq6`+pbq3$j(xJL!%|2+ceypRuvkuq|oC?MlW|
zK@rbG%J|O=`(Or)1#$7PCfKKmPswNN!>jEb<@}z5!;wU|;jnTBNi4kL1kS4B5KPCv
zIv=yzfCcu&<6wx15Do*xB6)JmQ`gzRRDLLcS@2GB&_`i5oPMzlok%e{Lclnbc^;0h
zD0zM74(`**gG;=hDE;tz<c5A9u%G><0OtU6%Yy*w6Mpav)}LrkIuy<qy*Y{HDMitZ
z8f~_{=QoeMo%y6mRhTHAD?et;a~ti29r~)~?aBPWi}rP+?K3N;6G(j!nJPJ0TxDpk
z_z9$$Bme1KcN6Yb5;yMp9SLVq7J^4cUL+s`Q~fAA4qz=#RwN_9;y=)A4+mwKp+t0u
zy5XQkyYo{0KwQy<ZNLZ2^qXoY@oS!kNLVcp!Kb*eS{UcMQ(<J77wYY;gZZ(zh>@#a
z;Q~@50PeOrdkoA66}x|(X7+8cv%zg+I>LSk+(8NiJ*&+I2kB2o5nPYocmRbxs2T*1
zR@*dSv1w#aLJHWq#kF<;!RL&yK!H1jo{@;pd|F{YCg7es8yO?d%3f7rx5xKr2k!3I
z8vB9Eg$=<6QABCh?z1X;M<Tz4;&k~B(_UzleI-d-W;2P|tV;l>BmrLxOc=PEfhS~s
znrznyI9KFYc|RYnwQJ~u<|OF=ESqpKGe+5sE*P{6_szZJoZ?P|GQP^jkZeOXaW^!!
z-<;NBdkf$l0RXHUX*Gf60!)IYZf`({)SBqUOEz~_+sy($z}5sH<np)?tk`JJk^Mq0
z=TS#ONkzi@V2Ujp=N5))2@e%(4X@AbfN=piz|c#Pa0%K?0%pR_k)V87N{OLE0Y@H?
zv9{LbDI-sp-~6M|emRrhiVq26Mk;`R;9l++Xy0*}K~kjDVVwc18UoDA0_kNmF9z-7
zy>zW}_r&;fOvZ+6FBir-qMQ}>his=?9=YpK>4(bg3n%tyNbcW+8k_9&D3{DDw^Z8?
zx*CcAFGx2pRomkL7vLB~bPVz8AF{Lh?Ny#+{;aXTy5)d<1%p*cp!j%Za<7+^+ZQ=o
z(JeuN_Y2w5y{5)NUsz)kKt1d6`xJ9%$lm7uUU7%J0NMmz+Pqg~2f2us`9acp!3k&3
z&_Ng4TLjS|8aWQHg32~qAt-$u&!*M}h&G!lLdbdJ?X~%o%lnSh0^1O(ZALW46#d(c
zcGBdYgF>cR9<o=t%M`f}DF4o>usZ~yB5M73>ZgQktGiB-A3%X$tgzGMx=NB)Iwx=q
z90}}qhy|^-s8pLGK%^Re22oSMJ_YdB#8%nI*>4U!>34)2apXB~>uPPiP(P0G^bkhB
zmU0wTK<g89dEfc=UYet$LP8rMNF330X8+Gx`wmB%^5Nme)@ITX<0-_6IzMdR2M2^z
z0mU{f8P513L;M)l-Dr2Y2q6)dfH}V3XjjeRizrf^V)~7;J{Nxx7B7f`Opr$K?l%`r
z+`YJw$av^5C)p9MK%{UjY=_{*a$Sa0*<S9fqeug<TK{@`z)+p|ZfeUT`%~C93Mq*`
z3P=@w!q&;qwauy*guUG$ED$cjZUjBUUvE!1J!W@WO;V$Rum%INC#_~N$jtC{a@A4L
zm}SS?r+)X$V8Kd>5&Q&C;2-*xyy|onG=%UULr>c;(=Eyka0HDh+1YRS2K`MwE{%f9
zWsdx@-=tS4lBgr$i|RaC^_~KFBYf35zUg<r`+W&<XrZ<mZS|}j{Z4dCN$WwPLD+x`
ze&~1b%i3;1AOzoKOx2J5-h9asFWhmUJK$~HooW?rEqz^gsPEmUPVVUs56RndukY-<
zev8;uV+K9rd+#K)v>Y#ZQw$Ah9EUG&^3{KbUJ67ySPNIDON0~pxa)oX9a=F8EGVYN
z&oj(@3w>L*Xz56RHF*3a2BPi(UvQ(wtiXYyI3VsDFt$0qeGZ77$%2v&TT(7n;k=(F
zE~+z+u<tgK+mUgwK;qm6pC>McFF$EBv3d8b$S|)xX}6Ep&=1X_5^DDh2Wmq(8vzhQ
zk9hMDzGF{!<gCD!%fk$dAo)D{blA;j!l}Tni%mH4OVIhn5_v?>mvt6lDF5RZup;g+
zL}!n=9iS9*<Tu{L(Q!qiaLK^!m%Mmph~J#|AG_m?K1HNG&mn8QXj-#NGfeBb_Dgb)
zkHBlPnZ2#oeBG^vB;C)H+QDsP(iU-ghWs3DY+jlDtCgJY<o^&fOHWpXR*YuR?kctC
zH>hHEM4%GEurQC*m>1X|Q2h=`L1{odL$&;v{M}<rQK=o>!jB~#5D3$aCNC!`tE*H%
z`nr(xg3|>1&b%?l+X3^;jf+T1B~S41)!xltMCWM|gpZg7-VI}v+0H{V6>Jq~69Rfr
z%71sA_qVB9GXnUu21><S`lh+wvD5ZypUs)M+FS6Y`gv|?t@~3P2h4^}@0jgcR2J?)
zU?!&9d(w_5{6PYFOwq00V;LEgvKy695E$m(;=POZc)k?a4^RmjIPfv=;n(R;vk3DO
z+X^fLFeMAU$A7Diov5_AsK8v}p1|x*E%x4YnO1b86QW=<Ge&#+ETEN0p#c~j8hU?@
z_v-U>#1X59OluB$#=DiNr~^q0t;<a{xes{nJ;d3J$WqpXeh)eJrgZP(;~j}4d07%e
zwrfCbD_j<aLmWsz+5W*<{$}4#vI=-C1jB0>D)lxn@GwoLBiXDT5I=DI{wo9j{2#fN
zm~EPQ`37G@um7FRldZ3x=lkw>{Y9~$Xh0Vwn<p%h`)QBUAt@5ZKIzTd)=%K&vL%C`
zV2*(=mt>~g<^+ev3TR9u01PlX3IMYfj(bFTIXW)PGAf5(IUxSyxhO+;Lz~FuAQm2}
zVNB}>#CP7HH6t5>+XVo?!|OfUAAj#0Ri5Ov*6*4Iy-)I>B5VKC{%|4c8HR&S1%?>J
zLUK-~ndQIQ)va3bd`+0A2!#>^<D$Q8(!G>o#6`;>=qvCHj3>!lAB_LkakS6bf|}K!
zZWsIqzX$E>l{0;}q*IllC`jAt$u;FiZG<_rz_)T3ts$U^;zo-JdHQdG?}tGYr<q|*
zh?IckA$N$%)5H3qe<;h)d6XfHVWN<vGq9Z=1f<bl+awf0(h)imZ4L*`yx~6IU@aXh
z=;2TS?H+L60^izvtr)dUBxhk!@w-OPfkOVJGT(K@Zd*V%bq|_~yNZ0h<g0YyDOj%L
zG!N2&?^k<sM`S6B7+D&*x?GIz)kXV2=-V{HMA35j*}g=x@($nqr|3e$Y19dh9}<N$
zw$Du8zh&kaNkR=R+fh{{dH7?)U%sNg`um=%#f|S;Ey(dZEkS}t#0uy^Y4Wd`zT?-T
z855XtPLJ4IAnP8;dGA=?j0PqmLII!_0w(9dmBd``3#G-a#o#$?S7VpH4ybSsej}sv
zeFGOpPCeO!dVa43p)_%KDXmAuUUGoac54<>5#o6c-8U7KGf@_H&hh=cf#J$wM~-jB
zn@{t=p1;a>?oTKYBeaq7BE8@ngEo>KDp19uPMl0j9yq*jzO$FzOiMjAm2lRHedB+5
zR6oPHykQslG8l5Y8UK?#!MzB3_B(C&L?V@xtVa57B_*N$+hA=Pt2u7~!+FpioOU^(
znCw*KHyoaf-QPr3u;qYWc4<6$<GL4}+&WV8@?788qiIV5D-o`0wn+dWXO~NzYJM5-
z8$4Qdt9kh7kmv+&9gG<?iAw)+-*JCZhqnL*KFEWpN>fbl_W1MP)AsPw-QJ4AA;|-K
z`$wLyvzav!*j~5TFTL+oER-kJtRCv?rWvR<T2RoYG1xS7*g?L}q!nb|UDbicZIBZ#
z8SPwqh;L&+n=jf`FP1ZS8g#&T%jEd3E{xiXbWuL;*$c7o1T}OQ##OG(HUF{S&fp6_
zC!Kq<tG=>T;(#+Up$wQ-`o*7H!t}`ErB|I9qQsC}^^du}_x{6ri0-I+jmf^{Vaojj
zz9E~n$x?1QU~j0aFvfde&U*jpJBUliF>=+TL<Wg`iwmL$Cazbn_-}vF(U%5bQgk8o
z^quvmT{o4A=;M!08pwMMJ(eo8-a?656Nto=!;{I9r<>f_zE_g<0_KNX>!u;_6Nf3=
zonnq0>bqt!XBwU;x+=N5iX$gyS~Tg29-f$YZ}uG~nsi{bN#I_)OJp2bjGtrUC(APJ
zwTLVgim90RFNac#CA{l`uqhakx-JL-pLM&Yi3N<O1<G>q6kqOqCL4XK!A<-hr<yC+
zeX2>-(XMmE&cg}vo8A}s&hlv2`Mc`t*;rl|l9Wo-uiw}hSyOi_kQaCH9;9RbNH!Ti
zSk&WPv<&`M?*Vv^vS{~T=?nXHJz*MK0vJ%ya<igp&p0X1chH?Ky$M%_>bka`*NpzI
z{?s?&7(R@)HZb@uYXbu*!#xLoovxiv6vD^xJa-yH;o&5MXuUY6a`!mw5aW4c;@3RD
z<Zvcw*j|rrhSTRa+uD6&s`)}e1GvMGXd>Y}$n?)%?tAKTopE+;n3p__w+7e21AJdJ
zagd>Z+h(w(_$+!5fe()NJ=v+nS(2-WcLt|8`TeKyzD+Kb9IK5BfkgUm|JKIL(={vG
zCZ{hWUC95Ct9(afGU*=g1@0By?}gtC+eUT(?f~nHwd=OH_|h^xO8MJb8h5qo^`Hyp
z^ZWks$FTGq^=J}_ioA<NG6?`lT6x?J44{~74)yqMdxc?vxEw(#sOY8?0Q<SzPMQ$y
zZf+;~qH$ijWBj%Ezzn4zXiz+;i<eyCJ1tkwSoU^zMbh-GY&ga@N?yctT&^+8x<p4P
zdWt#oP~XGuV_8CUyI5P3h1#5Xqi?0Olm?UonlbVC;UUfN3vGDtYTt3$aYBFB*H7bq
zO9ZqM=JDspi_sgoKFT1*6uS*#yPssn#d+&`l4Y%GVNuvD+?C})F0{Tk<c))rh>3?i
z!Q|m#b@w0O`->w5p%~KGB-b7vJt4zyru#Nur;9sy8-S@@d{AnJ)E!;zTUnrWSu>OZ
z68$T8Yx87Z%2i4?0p@OP-mdmLCPMU0z3-Hd`6BAzrpPAlIk@kT<gC74hAmoI_9fZ8
zb(rs~3;0ZD8F^V5c-Li>s};@kF_3+~R_k9Bnc-DU?IttKb`)^soIeR%_j~Y^xqhH8
zW4(6u4r!LqiZjzhGjzId1{9V~vRafwW}*;^;LrB`FcbBYk5ex#i_C={*%aSvEx(rR
zy^?N199AIYeiO>~eL2FNM+A$LA@lE|@eI183AR>tES<$vgXEVR`DU*pmcILl?M0G#
zpVQ2j{ak|0j_zu6d10~{dsvL-Jl`spx0VZ2@AB8O-5KWE9N%p&Yb#7Vwr9}_f~X*T
z0B_0UF^q&o<DtYrHMnJ$xR1dXCo6ApOpfpDp)3b{btG>A3r8%G@)o;O=?OTD<l*{!
zuKi+TjO0)#Xh#Jno;fdn;8{M~Bkm+a@VCcg!|@^IC5+s8uRHgq#MYrDED5&P)dr@0
zM_@gBc<`Y3uROi#cy9`VRoHzfCRT_Cz4DCsLk{TG;{z_m_CfKREFS=dRtNGjfONR)
zB$|CMh<|iduR8u!8o(yd0=^{G0@Gx|7sVexqvsbXCU8Ogg)7}J@I44u)k;cj`2=ya
z_`3M}=J(Qhz>fez2p@(gh9ryHZ-et)Nvu@mg%FggbczVeWSDuyId7!au>Q?RI4mUi
ze4=VZ2L$HOdS_6n*1Pa@vNmWs)6LWC9Gvc?$*hlswS*fHkc~fHb_Ny3io5<`cCu9s
zMgn4xX<q-AJ^PE89&3Z*>*{mjhdDZ>Aqb(Y!tO~CgJ8x_j=$>b6MBB-H?IzgU+CRy
zrGaP}6h9%pYe^d`xeS23V462;&Wz76J%7&&c+;Txt7I!B;Q(wCLBQhr{??HAoxOVg
zn)3Gs#qWyMjR&xsvC7U1O3EMp_-7BHTr^OvZGeI`27>Liyy24m;Jo<wlF9m!=+^cO
z>FG1$Lkx*i<en}%FAt#25nr=22F71`pxaSEH&|3A|2`{z>OXpnN}O&VJ3D>`D;RZ5
zfuuGco)y2E(J}-&h+J4v0nM(6-(1jJD)Xvg%jJ<l!6`1QPuIu)oU1h$rSKTS8$-BP
zymw5}xcGi$z3aHQ|NA4kio3Tk9ZvkzVEjv^`ceL_DoOW>h9)omz<7$HFBTw_S@Bz9
zn0Au+e|((>d{o8Oz(*g5i1<(uVbb>Q-B5%;dQnkAs3{~SfdGQCNtR?u*^p!ji471G
zdoNE>pJ49@7OdE4N>Nc%P>G-dRzwl|_dj!YQ_%PQehTcFJN?X=bIzRdO6eD@1ZWgn
z8~en~eX}zq92FTmxw}yd%HbSyoICaVh{LoRDNy=?=d85%jk>5!v&8nEyTtnP%a~PI
ztfAPdNB7!-V+#5Xf`X^0;iuX^<4nO;5S3q?Gbk{jG9S9o-aF6AV(Ma=iT@Fny8cp;
zZ5ZQ@o2`OT5m`ui@^ZevwHDhQk-=HRfj?RYDos&lbqyXq@W_;45v(q2wJx7wO7H_0
zWk#Z?tVVok1r{18<_f%W<D)N{0a|+SDeJmX5kdsVlCCR6R^!v<+S@$Zs4O~jSy-tX
zE^8Ia3k<cHiloSd2#@RI$*LVFU<sZskIncV#>0T8YLBbxZv|}JQ`&R1|8E5lh4zB>
z9$3Zp9@@b$cMiBOVl{_mj=vF=UJ6l^Rocn!zNg3Z1+jC*;l+=I8S~9L$=x;2KnqCw
z1|5R55fkBL_qKGP$c)X#3P<#I3;Vi>2P42yb9|U$fX9B63N(ld&%=I7pz^^|Y!t}d
z#`p34-IWVs`XbVi?!v?iqEA`l>R#@$V)OY_OgrRjwq%#b{ncWlch9Lm#KRCn5q~MQ
zbD1abQ>5637BymgDi<y<!rXsv%<-g@P#_^k356zUeJ=7W-%C<NETw;Ml;8vj=_CkN
zuRmr_$$>_~EaB;dR-GuWNN<-dv3tyn%Ho+Nt5stE!i{7IUBB^U>&ch(VQ?@h>v(I-
zt0s2T7%{Ygt4oBl$xtijdx#!nn3oQhK72fO1#N;I3YB)gCQ&%~FkjP|O{H2&$7&r~
zgpKGZDv}e3Rce+vj)sp&TkPp3nzp|&o?IRw##8vK_6Aeag}Yy}$U~eXsfJyA+Yn*P
zz?dypdMf`uGX%ece;#6@;WQt(*wNB;WLa6J5X(wOhwG})f`m1De;Wn6(>{vP!Z!&=
z?aVn@eZ07>tM+-Jy5XX2U;2<NlO*cMkSxRL7Snj6bVx*kN>c~U^q_(jE-WnH(n`D1
zq0_=8zzl`0QANbfbeJT(f`q}m{q8V2v~^7T;f^~u#BL{b7-@&iNq}4Hw91Y`PPl*K
zXgUfxmU3LM+$8sck41tbL-u^n!zurOi=4smg0#;NX^9Kpk>KI!aJc4@brdU@q>4gt
zZIfs6_nlS+Ha9g~=kF}JXaqxg*!FIaTRT>1UtbP)SbxxYS(1f`4Ue~@3L(kGLvvV#
z(B1=LYFHH^Rvv{|=%WFaz}o7B8TOX*Nw}GU!3)q(Y(T<j0J(ac{oQAj$<$#5$|~am
zm7D;BU{D^MO9l;dGMl1l^ONA!37ngnCQ&<AA8oId9It73n>tC$h>Qg(yyP_dK}l&$
z@&^2&B(fQ~)sXyCZIj;>Jq@9kh4a7~o$&7vi530rlFLjDlhT?OLf+@FU^?6G{fX0%
zTpzg4BQ{CIJGS}uGW(4ODdXjtjJ%CRXGtR}!0?OgdoBmcL#nr4tSTX)<f?!I{&u8&
zP)Z16ZJtT+<Ye<M3)=fnfTfhEmu7JgxFuHncLVJoBuy|{6<@tEog%&lz0Rq!x32?^
zjU(BT2r>i@(}>`i%!}29g?7v~QwJsneSSSjmdm+IlHfV68*l$2Sz0AyQnTDJOgl}*
z$J*tRKbHk$Eik!ijBE0j3TsP{V$md}OJs!2IcAyRKSqlE5kcV+lhd&Cxc3!%`p=Oa
zoezlifiC`zfW5!n`9PwFBx6>dqFxQyE1$sasH4AED)LF$Y|;xyXR!^$Wx=UL?1Z=j
zx-PZu{6c3jxZLVsS&erVxy^~SCrsW2*04PhU1+k<+hAU*d4iUg?fYlOELI*VkVokn
ziFXqQN$#?03Cj3fcFfXVp1es2GRzaZEbQJ3#)0g|$9azZQ0Gm8m=G_B_lO$#t6Akt
z0f*o2>G{tuIvYQPNj`6oOfN)fl>k=ij7Q!3Ka0p7nIVzQ5cb6um5b_xIqp0=vNflO
zZfhGDWtN|&h#Ch+eOACabX3o`{oUpH41c0(QV3zp_xV0|_swuUoz9_<^Y(K{k-s9O
zMMGSSSKY4l<PRpX9!#8QBqiccIEfxN?Pqn|km|1Ou7XQlqEzgtMm4Ge|L>l$5z*#-
zUhLi5UgwiiA)=>s^K|`Ukht*jY#nIi9T;ctun#ZB?(u5!Iqq-$)`_rXq(1Rg&k{>Y
zwJgWI#b?N04#$EUI@Q=nFT70dI3HskiARTs-)M8iN#pwe*sq+Yooq)~SIP^bScs;p
zTZ8Tq=QzoTFiGX5OZr4xH{U&?Fv`oGfaQdW^0{(-s3S2tG%rrPF??9%j{KG{U<P4&
z;qZA$0BaUUxL-Q}I9-je#_ms&>ZYofrn?7KM|&~P$R`#%I!zwh)P1MBAAUB<%e)AX
zH3vHYViJ*13_Xr<zP6{iFHfP4^Y-q_4G_w27KUeH>NRYnJO8n${`nKclST~K$w`*0
z?)12CDEjx|h7RC(>Ajx&M#YH9v847MkHL+Q7Y0k9!~s`CiR(&cV`Z}{WV)wbW#2Rt
zb4ng)yaBP#y!I+Pev<J`8ja~}Lzz6jH>)Y2a<3M<Pm`8&fO;G=admN7%<$jrF5n4v
z9Yw*Jfgnd?es0WrpV_h4SoH1}-S~CS!%$C@6)CFcd{5tz(Jrtu6T`efgR2-%LZ#qh
zFZj>Dzhpl+Vq>BQ-F|%Qglxz#HajQ=cw)v)=rL<|Y_Ino=yojM{P+2uBbp*^Wt|ZS
zT@!eBt!{0=oLE+mNYlguL%W&+M;Ymh88_%ykv@vp)LFO(qNB-By=GXS&5aN+NnWuH
ztmm2DIP%{&*>cyn6*NM|1hJ%2sycIqwf%fthREgQ!-+!dveT1A(=dOdyROU#^2Ji2
zp0rgW<BPj;{zmuc(x|)~@eUCmvj$%6f)$lGttBY;n|7D65qVj7ClSR9yJWFY5F3Z(
zm@O2DD}z{1%XGwUsU$0LT-c^zbTTTZChkOHL}p=DanB5U+7f)w<SK%SyZEz?Cs1_E
z;|dbgchl^l<@nu!f0+6h;|p=*Q@!$SPhmus5g`L*-@u$_5GFtk>+LSy2D6L;2wPQ5
z0x*PTr?39Tdi+bk@*-ScX2M7)=qhwTt+Q@^6Uj>=31fj?UEOMSf-E&eP(X5sPbZ+U
zI)9CI_d33UZjdf*zbFdj(6776`USGgPQa}CYRgb3;XVvj9&>@UK;%D&6b4`}43fyN
zDKtA>j4bADu!gTTrC_>OVp>Qypmq5M>zK{X2JVIEN^6oipn1Oah%eMysTUU>HkE@x
z^5sp|ed|pDj-nWMW7?9KLRfrt&sMAKn!opeIkeLQ>yztsP4b(RRAR_Z4m)w8<0YO~
z>Z=c0pWmjDj3KerpoBzG6no+{7gIa`B>Tq^(NZ`H{O(YcruLm=TW3<l2@dd3FBZ|^
zdc^VQZr{~2S_E*O?+BbG{*R6XE<Vcd=h?G%St8^hor*VrA_E@5AnzDp{d|oPenk8i
zIAP*BX(za?FZY_2&#(7a2GJ9P=cGSU-;S^@n+jftU2b)GD|mq^Q-*ruG^?h7s|jXR
zogM8y{c-;7tO4u~w_ZBSMyATU-IMu>C4j{J)))t)Q;R%E%WQVz#qP+TBRZwR<oJYA
zVPcY#SxX#2ap9H7z?-kO#<v(dnl`Z9khk4p-FRbXu;|MAUS<8<h<#0aK27l^xOB2r
zc6TQ`7KxG*%Cd=h3WoBM{tKNAc?x%0>$j5p6GQSqnHNJT)=v`O?0nR^_Q=C6cQRll
zw>)WCSmi)oGqImXtCC3m8Jy(?Tf6qhm}`u%bzWC)Q0~#nT=%X%gr7tFuID+4Y-0KD
zu9HmQx>2NaB5vKy+3qzN2EYaBg)kCBn2Iqa?y?92o+`czsF76f;qKX91Ih^yl$uM_
zg{P45qW<}8_b1)(kwof(%#bo$GC@U8v8^$OTQw5QXQF+_@W_raZdoxWZfzN)6N7wj
z6%hf^{z;}RBI@2-8ZBfQS0S(umsC6qVB8Yb&L^z5`w3|-<BGsMjI3}C5^^6l_1UN0
z%V$LAjpgwkqDUqD4~rAkGx_$g>WDtD{+P{(cR2iy@HzDv_Bbmt54<93F4Pjj=NgMq
zE{0)Z|MhjTy}mXg!0d2YKIEzz5#LL0)n;6th~_FbfT_8CMqQQ|!=;5&qL86%u5_ZI
zhW!&`7-11tX_;4;w{fi}Ps`}tlh&>o*5{e4Pk4s~z}}^ziVGdK8FYT|x~RuDo>D>I
zV<oOK!zZ{!5*?kkIc9qLfc_JTs9ZkQz4O)MW8i@C^zr(=jTk*DRkQ!({#m^{&r$p_
zT2Hl~kBw~2D&{t=Z#2v}zUf@e&u+7BIk#7N?9oz23}6#wl(PVdU9sLeP}J*Pw<*f1
z#DvBVZ-_4>9C*LA)}l$_vQfq&h64DK_ujCc%5N(O*7GPTRbY}n+F*^J5$;LcmR&Lw
zc~s#8u@F6WC&qo@54iN@0%9Z((%aWq)g|FZJCvlWf$OdOwh}UV_!?YepbX7al;9D+
zueZ*f8*Vb!N4BJT=}n}G!5ggCTf#-7e7-tYp&z<IDX$+Yey#O&Ww<meP|Xd?-R6{%
zQgxFxwI*CT5w{mKtzeF{Oth%aHdxDo;nI;lFCIxQ$tlC7#@Z#R9qX;~v&?M3YqJoA
z!A8invny%wIAtwdZoM?9*W34YlU<pBuT!JHOj?I}-0_BWW_`GIQ#-f0#&pg7@y1$f
z-t2H;zPE~7$`pa+zi+Tg8^T2>eNc+xd`P1tbW=;WS(Wp`g-CtE85ov<5kqtye%sp9
zwi<-;4PWSt2$}7fcdfh&+bRbF4Z%7y)?_tlt94&nvpiIgD+ne<YNe?kwpv@}hietU
zmDTymj5Q-jS@@Q<q&U3aMgAIjkB}`D>(-Y(vTmN*RuA-PY+HOJIyGstbzK`0@hm@+
zfLl@%omb8$R&H*%W-eqVylIl)^|nu}%_GBw!cvG;F&s1T0b~W!U?E=KW<51J{7DJ;
zU=X<NEMYJBp0#g!_ycYt*kS(USkphW?era1vM*d*NZ9yh7fv|v1lS3tsrm0%AGaNk
z5)LB5y2CbcP&xZ~Tdf`K<r1<Wv?#dZtCbtAwT0mYBg}3XT~btVt@Y4(ZJi2+3ptc7
zQ&j#=tFka$MsNx**NF@@U9H?{#f%G=z+d8YD)<NGRij$1SF*xIFi1Y<d=pgvO)I-D
zT=2K$L3efI`_}7i%TwazK@CG5T1_I(*sk}i+%_EIyaj7;fTaveLbdT-D>4vnc&r~A
z6jKYyXWnLOP#aEDORTh<<%SmT-)X&`AFfvHo!J=PZfrYMkImLyZG=H+TljD%s-^3!
zPb$Lo%seEE5D%@)A11KhC)Rh9!^N09;}l>nC8m+ACTz9_I7nSMo?FIS?qG)~1JwKL
ztR)M3t@_b9)5glUy<r%H)t_3gO$j$#6o4eS<UZoWI6H<Rlsfez>zCSIAKQi`BdN3%
zCcrqIxYauE9MeGFcr{Amnvt&oNetAx{cB5YIIi`nZmnZ-)mYB2FLY>#OUQk=@Q;|f
zFOS>Vy?bk3KAf*)Mam5Xk<W+%13|N=TTxH;bmy94Y^<3v8lhx)BwA5u`3LpfTG_od
zD-#L2f(XUldPh-!Q75eN?k8MZ@9jQ%)UombDW!0tgy)v*iIlS{-#_Pi^rr4lWF6a@
zUx@laG{@MJNz|VAzO+7Bb@b<cQ<4Q7|6*4GX*0|RT*0S&XLWzdd_dD#D8tG`axqGZ
z4D1RMRK&a1-B%rb!<nW9S?k6IR{>t!(gC8?z8|e$?+JH6U|y_kDno=CJs8qo`hM%(
zcfub`!f+o|0LdCa*Q4Uxy_X){^)zQ}<blIh6`ldvNj~82{L1at%fla#N!j25-NO7^
z-&i%zg<H+#;;$A-m};<nul&os@d8s;k}3HkB;0XEIueq~xYE5Ox_i%aj%_WTfT=4N
z9S{E!J2dZm*ILhU+mAoS6!@?i5;qw5+M(~dzKabP<ORS}7f&-@UgA);rHis{?q{yN
zf#EL*e~z$Ei8#Id_NS}=o}Sy+beBd6vcdB@B}qI&J-*cy_k$_PD+bAY^<avSNHY3z
z$NzM>J9^YHUo7a+N-41p<%UVgz#&#mdD(qk_hb4mH6@rXaE7G-ht6l*D~}BqWRhJ*
z!e2;p;N>s#+-IL^nk$)toJTMd9%4YMXNJ44T768><vm)n@>MP(r*pLB=`TTLG+39O
z-lJl!>4|_g@GJx=WjjlEx^H;)m`#_MT7nMc?H1jVpb!dQW1YYEn8MBf>x(3nR%Ly-
zEBpm1gwQBqNSXq<>0fVc*y)sT61ZK$<U0eFE>U&;*mcr`?l+|!+nSlnK|v_0#n%;g
za&hrj_uuHcH2t_2@8~Y2qpR^=6(<pifApVP*H78UeRBUXa&kxcW@7J+XG>9?m^+|9
z$sXXEQFPopU5^Q{EI9~+4J12HNG3!QkD_z;yLx;ZAK)yF_18*<c9fWS5#zbF$F*xi
zd;m>GCQKcUTWH;C{BafJ*hx%DmoRY&YSt&NO^;I<7l$S<del@xcjLB#Rqk@vzoV!u
z%EwX+BGM9wnuVg7<T1UDFy17^__LUsUfndz)ij$vVYzv@4d4TO<5Jh9R$M@IF)flV
zL2TDE;*g5t)vL;CnjatF^b~t5P?duD#Cnos!;|x^UcXU-o|?$}k{n$s;h>$MKK#+O
za}lF4**FOI2l{hMp~L0;Z|m>wnUoM<W2c}ZL6^#AC8npzcv95XFJ0&Eq$2(RRH`9*
z0SAiyMD37%gmuyK_yCg{=PwtHBx)K7rj?@3_`!AZ^YH-`y7|~0nH59zOfA$d8}4?U
zHglK=3dN-63SyRoZh#_K4>~*hRHs32gSe4m#?Kzn;FUkRrmZpKm+)L-@<-%}6cg_)
zQN41=y8DEL04HHwuqtRK$CD##!Zu_+=i0SpSb!#Syp`CWKu?J%if4rCd!lt^5lv#d
zWoBI;Bq169QtT_k;i>58ORTR|LIAx>zG;+Tf=;7MJpL`J^30~b{nXW+k%2vVC`D`h
z-hla*q-He2rpyG1)|ruyW8CF%Bq+%x-Y^Roz0F$tJ<E)R8M%65R<9Z&PSE2Zb`BQY
z+Q)U=Mj4CB_SaSh5nN8+6Z6rt1~LK6#tu%MbChfBzlJ*Bc;^CCYQaF)vAfMjP^*9g
zySj(##E%V3&~7fgG9P|uyB^qKfF<NGG>G@>3o&o)G@!yDAK{d>GN#1=oE3CFY56SX
z>f6jGGE$}5M@cj!94L{WH^rR!n)5}dPE4H3w*iPCEm?L1#jC1agXE)RJjO^oi$sNi
z#6_<ASHzWb;XzHoLqLy}>7sQ*>Omy}1=hF<eO_WxUYQ(qQPbdhPD4Ruu*Q{B%AHrl
z@(jE`s(kd|daxChB5&r9YLbx?VJ~X@JA<2$FSC6Z!qqkVSOcX7^tQhGc4!lrNGMFm
zj4!T%!5^7mtv+R##5|eI0+2YCFRx$es_)6>p!j2)6=jlUOBD=qKXUWX04hr|+;~Zg
zjD4YC4(Gu$)ardd_%E@`gXo=71r8|~`i1Mj2OvutVYX_FD_w>V8_}K2yD(<*PqYRS
z^ODsZfa2hH0F@D*_!+P3ky*p|Cu*44W{<nXxGpb}LXy`zW2`*iRbm^+xFBP67W4?^
zI%AOmp2cJwSoyzP**6+kNwAWQ_&m+^)zxw3aQB%F{(3KpSXKU`9`^09a@HUh785n@
zD5C44-S~1xMAK!bnEingluF!C)q9%0@!=umNYBM|i&{?>?5jok{1*lbum}}PDI`p(
zfBE%^>jsyzlQ}+IizNG+a!t?=O&ubz0`gR#D->Q=oia<$P6CR718L&~CeXbuecUky
zIp9v990I#NSFc#km#DNvp;HezRLg7iWfud(<Qi>$HiQX#1DxV6(PLhxdwGbNMYI_c
ziAMc!uD<)SArhjg0A-~Ny-Q)l$7@e1=hTlB3<R?NS3Q4iobyeymq@pzqEo-GHp24`
z-(e}qS6pP~+s&6p-1vimN**c#{mLk}E{<qDX0SAX!3HaS(yWNwS4|hANL;JbQQac;
zyh;c1V8|ep%J^4g)uK}bfI^oF=X8mD_zLs8z$f&X?PWW8rXe5MzKEEcIu)Vr-yLz!
z4Ni3i!4O>Il{%(JWS2_}kkD{)G9VxFr&8NCMy$Wil#r|l3lT9J9MC0l=t6dy=qzTJ
zyH1IWKho*OtdmRfkuuWh`yz&46N1;4VXLR!+a7V`Vgun-h&z*y-uo)z!iQ*#^M|89
z6JDJjv33mTA+{=rMqn7jIIC;Ku?>UEIVQQ@nmW#@Qs2i%^f-zwM>9v{2ka+Vi!Gn&
z9w!(yV)4*@s9VSC$zY4vhhiBF;EONxq@#vOEfCF1XcTGckv;mgD7ut2#x#j1B(-RW
z?%EnJAl!T;V2*nB1$}*9d^xuT87o+1UlSevaIfBSo*8Vemy|YU1dFl;mm7stBg~0%
z-50TXB11xd1$W502#cU9qaqHu%^4V9E#9@k^Yw<`_zL@N2Pa*4vPpYu7U{oUGX({{
zS&$O5ur-(JvtBi|i$bW?dZE62vw?sVvK(?EBNpkkPdGq%(^Kk!pk7HmddWdbz-9&Q
z<w8ARE#DC7N%ZJk)k?i}nVz=P)XPH5fsaz(UZgK@Dvm^WU>-_+y+GglifL<Xu-0tI
zWf$wmoKcPP)k*(N7wPHGm``%O6#<s8VX-c!Gx{fHGzZPqM#%?Xq91dnndPtZHk<bL
zT%=d6alQsw<fOYCjK6Q8-ui|aU$z%d&7kDRP@}KVk8L%;0;~(*>vEXIhg8Sn1LI0k
zVXEw6{YZ|XMo2iq=#anUJneTTmc=WRxF&!Owe$43w9ha}V>nA92o1kTe-;`Fq^MaC
z>4Js&=G9Jr!TP2!A&F_ynLA8X2t*K6m1Fq9e0{z%ULHL;RbW1N{^SCE?#H23#=(p`
zf>vV|=#lKB!2?n+sr8rY#dHj<bQYe8etfa6TyH*swutSv3w)I2u3M}h34JR^ixm?>
zz<gHE(NzqJMzVNd5){O<v{{$FWLn7*A^_xsi}fmJlwblBkkQ<|P_KMEG{ib_#)Y(v
zTcpQRQAXq?Frf_ks%qWT)eu#}Sjowd=00AitH2MwlTC7_eD;NU(x;*JWbCZXtJS)6
zi_;u@`7A?EzM835eiZ5gHM1~#s>fvg_&x)Z1S*0IC?e7SUa3po4z*apgM7WKnBL{Z
z|1-b7XQwG4l%G&e#x$u)zwoVrp`asMyxE6Mm+7g`8enKbWq@l5?XA>`^YkxYIz_PA
z(t^4`|F*Z|$6O#hlc*`@>qnj8Wr@K7JNKX2dii_i%Pe%hhW3n~tzYeC)(J5~h*;ZT
zUz?|I2pt_x3e8=h-+V4qnM5>lrJQoHp0v_{a-7!6FW0v@<CY^+LpmNq8~PXMhnz9f
zFSC~aA@CRJTR4i&F?Tk%;7a}Hz2QEf+hEYwP5NhN&$uxw<O-L%3ufzUoGr@a9I@!#
z8udD7f3o}{FDZ5M6us#$)0T79DiwE*UccQy^1QP|Cs83ZG_6{H@oTtGBBS_-hNBLa
z>urA+V6nHsUsVH*lLLL!6n&TTZ4Q_rI}WzY)Sq_Y1WU*Y#?oYt>+<>9?_eoUu0b|q
z&vbp~H>N?Nz?ms5nWHb-6Y95u=SXJtP*88$W<aA53@T@Vr0_O1`qA!Yha>}#%=M2&
z`Uwb=oE<h+Mj`LVs<B@83vW=BM4eL8=j)S~n-6(Rs7D@Z2I!in=lyAb&bl}lH)6J4
z?5tK6(OH8eQzMTqc|xb_?Y}r53lqYX#<QwY(LUX`)qpdb*k~ag{U+<Xem5ZJFf@ja
z@QYr3rvpbkru)^i^uf=}cg3uf7>Tl1LuTu0hfqrIHFa<SKv&My>)tY-<}u4)Z9TUQ
zylsg-@Kd;N>{`qMkYMyez3)u}7ODx$qtwm@{Vzc<Stl|Z6J%30)$7q;8<0cxWCOpx
zP=BC?lnWEi-7b(F<8_w_EIB+p00&!p&(v2G7}zLp9f5W^5$BcaZ>tQbot)T>y61TY
zRsabmfFM~?rO7X5>Q9{NIYClIK^bfGPczJinS^J9G-9_mO@GzTfSjFy=c9A(+Y((p
z*uaVYD3+}IX6ehL!<`^YfQg8u>i$W3?0_(szOf-EiB_rpqRasrbea;-k5ro9IsS6F
zM@H7@ADj=!Rg4PIAoX8U^x&fQrdWCA+r3incYqx+r)0K%=R)%-N0I8zx9;(}WT?}P
zM311KU6uN%aRwqezo8yWO7ujR^GVxbO03WgEE9V%B~StH>afD6kJag+{eX=R0Z%T_
zcQ^}(`BWR9P+g>#oMIX%MwKor-!xV~?^HHB0)3vThgX<>F*XEyX88@%+x;wk?eq}X
zcsg+)Ym4+!XUr%P%^^D@TW={bUtzP$nuJEdfLW79S<jd({Y$R-q6BG9l5Inx$LK!g
z21c?6x&)bN{l{~3TDF0*^0Lu?&eWGT89=58<>nCN<?3_YW<o^OEB8VElzJ^&e^F>)
zStc9>ZGDoVZ=PnV=5bI_&<V+2QlL-v8X!^)4)aFb=o-|eArS`IfIRXvctyFs>kRWD
zl4bZq?`VCrGw6}XcL)be<c|V9)0w_mOr!|xh}6`HI-M~ZNvWKvIV9!g7X5<^3BiOE
z!*Vn3JypMbqxmiyMptJ1LQqc%%TqF8S(a!0y39f25G64($CBAPsln7mAzK<SSh}fP
z_Xv#;tN^9@mFXwy%tt(D5uMI_b&^j<3ff|`k2YBzy*Hk#TkkiJ9AE7$VOP0Vr|C~0
zF)+CKP|f~cedV17#^yFlz)f?Fcb}!dzsmu04>n-)14_b?zE`B{A2RT4WCY=4Pfph_
zYza5OX_Jl)<?Fl$9T+)}4d~T#wR*sSI_%TIbM?kc0m3VC_i!gopQ9Jb$rXcCoEwBL
zv7}@5sux35YtUsw;|BTk;B5|wp*fpgSgiA%p$SE+sgrBu!&y4}N~b+!C|GD&{HLH(
z|1rP<iSP?#d#Rp%oq-5ug?9YbBAqBpASV4HtoHHg5wd5DO^$mQ1-eereq?RHnL?r(
zgsTIK=1<h!!%M(T!;buxqx&G%N_~QeGq2HJz0_Iy9AAwg4~V58#<k8zhA7tw@ApQT
z9&?WY7Wq*JC{<Ca%Wg0Lo*#*eA;b|Joia|p>@1Y9RE8$23HseRPF0SFL$~Ifp|@QF
zERFb24X6SbN?m~-C4@%OopQ3!+7#=|TMS^V97*%hz;Rl?Y+%xSIXLFk+XUCethItC
z1{xZatKE$T#GIf_6{Upff-CduY0{+#@KlvA4~*6uTS6dF6L7hg=_@WbkYaESJakCN
zu+#Ny2aM*ykea=t^_N$h4>4Kwi(HqQr|*|5N!sUufdj5oeujSfDg(=eC^+YJdxk!u
zCiI<jYG{6LxgPDT`2;Ri#w^48Yr4Mg8S^Dhm$I?dvWIV-u7`;p!|BJV-m5_GxWK^1
z%CI3_6ZCaW1~7r9W|8(r#ZA!XIdkBY!IGIH(Y;*%>>#XAQC#ux##HA_)m=j9geRHP
z!>$Z{pR@l$ALXr6eLX>MyW1HE$J+>*XXpcu8b|@By~>6BER25l>3W~ji8<dP?Ch7S
z@7(8%**SQBRO%mZ2f#@LxdrLceR{I9KMsj<hO+bwz0#QoLzxAhKa{QS_}Cc;7$-xk
z%GQHEG7uD1Frjk5F3Zq;UotRExMZ4*Q}s56W%w3&4VZ;K3w6X(NJiw=h730lE?B9+
znR>`Fr*WS!R#Q*YPu~{mOe8u`jv-_g=q1jQ@p$1ZZIe$g`7gJJByNVg5zje@ZdpWi
zNt^&jVjF746+Azpug?L|X;q!KPG%4@I-+NefeKRw6;kTNu@Ou14G8l(tn`E+{Bn83
zu$jQn$Iu=}T6p;b!HARkGeknl@L?5$gl{X;`|=qLmbxsO2_3{_*6-Kf{N4ddiVG2b
zdi<mZ9WdZxK_01J^|`+B58C7{LKu3C;MIg9BVV}Q=z<K3Da^+OcI4X0fTS0>p_F<t
zPXBZ)IxGT|2F+D8<bD0sQA5kohK?0I6S1XO<nk*cvd$PP^)T-ek}DkOlv8zVH?%ww
z1(o|Rbgw>CqFvnkC`1bkl~^?*!n2zdz-br(LdJFdK%H?Wic7vghavI@xcXSc^B2>r
zgkh*f3P2!S9?@+f5Fs2@JZs7d&wWhCJz;91_-5(al@xuJM=Ya0z2t#n@c69g0R8V_
zren|$(_4tTM?ZcB)y>JQW*;4vHvKXE4Xv{0#JY26-L!s@d9#dWZ)~*@T|r4v`IL2u
z?1wVWob5*TXKR+;wbZOS?k)8)9G`I9+xtbn={LGGlt7MrJ9K}<?F-Cij5Okh`^?BE
za-83s;Gl3H7ZNQr-82q&R4QtNgJ<g^=U^H^$dwZW_hi$i>PX;5&s!R-auu*b%y`_9
zkr!O$bjvhE&;j%9FC)@#GeA*$xUik137*c?8Q(>WLIWwsIiw{*cDX$kw8GL$h#ZxB
z)JG)ba0J<RQLZqxue(L;&NoL8O(MUim+9VIlql75L`%cqDsPLppw`G1xk$6jBC$&E
zM6^fE=AgS$pT<Tk7hNEy3`!zooCuhRK<v?H3-wu|Z4#ss$!p*=-6~^}7@EBKqy2ka
zzqy#^@fKl{vkY^eevSTRnQ4zSDzG7h_qtTy=g5ZiX_&6~^YtlTnQt<|28>^v9UZ(_
ze<=MKy_amhjAf#r5bq(2bWb$j5TF8Y4f8jg#&uqOnWzH|)|=0bwqxQ{eakS$De82d
z8H7YMj?sx6X})9(&T0G3uV0TcAd*Lj8t3O+J-)&Kgdu^DFy;AWdM|ea-GV*nc39Jk
z=IM7{G?UKqH~Ea<bm0|xE;<5Q$MP#s1#XxIN6ymk258W@aIinCOY}7k3W<2&+;9)h
z(CZv710q)*Xfo%t`$&E5duAjkv(4qWWsY`>M8t&;UV~qYCg|ep9e}sYJcFp_Q}t)g
zHR}kHAp-U6Svuujrhpq8cL#DJtC`a~V)A$K?F)yxoH*NZ)3TIu63v~uc(#6eu7MSx
zT!Pv<3df96-K)TW!`l5Hn)RD!I}mg@qE-9`aZnowhC3jS$buuM=!3%aI(y(Sfk%6_
z?X-nekjRFc8uXZu&>;0(A&KzB8r|fG4KSLxy%1=zOrPk;P!94x8r0jSnARs6s>p_(
zJwyKx-gHQe@Ve~Zjxv2#r1=nrT#ldM$M}FAE{rVGchp7)nsl=d0MActg50k8`XkYT
zrYT_n8sOwm@|Wvnr<saOpn|hcW4G7paq|q)Oz@Gx*xBgC7wfab+Mp&sQWHvWua0(9
zn-eO$P0Z<-N%{_1aABuq7o3`Fs`Z|Q2Fks~Js_;(t}K0ev-2e=hzF8+<0v1lQ*JiU
zQLK`1`@AfrE_S{nRCTEgkpZ4RO@HSgqO6_MOGAO)=U{r4zm!d+a_j>AY@5~);=pyI
zRIy*Td|?hEY+7h;Kg`y8R~rmlA^H){>fr|6?MSl_BfS;jkMH&AKiZUF9B!xk-a-AC
zqk58;!1_?bCr#D&qTCXSfMtLjN=Lgb^#9UJ_0>E^aWn<pg<5bnOZ1OjOoyWEbI$pk
z8a>X@7v(xD03oZ@UgjW}XjDi_=_WmMD(l1}8j2=PryPOsIlg6*-V@>x5NBAJiyHJZ
z)6LhT7!)M##92DhLB1R>OcYZeHCJB~Iuaa!8d2-7s?g(IP9G>*1^48``F_1E#XzA<
z&Dc2$<CNa0U-7pCX;EavqssJ);e&^rgeYOwhx?!^=N*Twv-H)TP)%VTm3qaizd7B3
zNW675{cJsBtf7u{=+Mzy#_P(^S%Qg2^TRo;)`iZ28w+7KFU!A`>lv9egwQHHC)`8%
zS^6`FXviTclV|0+@w&F3)4Fq=D0SK>J<U1N2xcMSZ}WKltTQOi8;WOo95zKSj&Gl{
z>^GPE1YVO2u&5rHh0g{~)W?NRsyQQq6s%a$Y(3N&O53dNDbeRwhZ@8j$&pSjnWPJ0
ziI{{#Bw<JW`T(cZK!n>PgSW`-zn!MLtTNzY(T;Lj{d)bi4nS_?Du=;-+OPZF<kYSv
zs*X7#>qh9w_ZwKY1kN|7ra(`>#rX^`5cV!(xW4&C0|?*vZ<guVPZ<b2a4A8f>P2!s
zP_A!SWS}{12e_TpYCp(@5P>Su>ZVT7X^%J!lMzY!K6|D<?ok6V_pHq2t&uwUU8hwc
zcg_)9kg5+pZ-7O9Y`o<<QmTKpuH0dOxfrNahL6OXQ?&bmP@9I(bgk0s!>cH)eyN}c
z6kwuW8IlOttwvBubk_T)==Z}C09qj#QB{GS>j=K=i?7k>S5{8Yy{`&&!eL=kCYR`(
z5a9}6<HLNqLfAgpP<Ex%+eEh`XX<ewaf>Brko)3>B3%*MC_wm@AeK+j4>)QBSa)gu
zylFb~4v-gqMidgPCKu(j6+q-EkRBmRj1_rf^>~<6I5FXuXdG|H@~(z$Er1zD*DD-H
z#C78ggImJ9Yv3K|@!%W!ns*IQYF3C@5>4`O_K2Ra9QK_6%7*`Q6&VHgYoA7B-*5QE
zcE0<^_anM5ciz@PF2j*D-l_Yo3GvdrreS~an0}Jxgt>;k%WFHp<<INmo`a8;=V;*;
ztBNC5ykdSk&xM~hM!YO9=m{7sG>H)0yD(x|lHvN14IK9T>|OelRm>AlEEZ8{n9!jW
z{q=$q9ErqRD?;oow!Wq((;;9EVwT~_77fzry{IV!c9!7jx>$X~X?z1mV>bJ)0{tB7
z8$Kw6OdEz_<3RoTP*X?vB@Vi%f|ZKLh#`-fNJaQ*2|M$|Lj9S%3*k(KVWtr>pEy3^
z<ga;#<|+*_>QVdpttw=cqH{Cs?EB;Oa1I<72;0wd90aXLm40gjRtET|;@E?FRjGM5
zM{N0$RlqpOvE5bc&(^>3h$Z5kpac<oMRh!-AaV__`|@<;MTf~aXUx}Q9t&MikY~h2
zK6|)Df4ZB>B1*|6=^VXRb9DLT4idxgRf55XCTP3GKr(qakp1eFpu27~kZj3C#s)Q?
zrVqViAclEz9zB{$^*i9OIS+CWn+*ThQmFeo&<W^i5S<aPt96eB&WF4*gVy<F`j1Nu
zz(GQ>Y!F^!)9HGXqZ*Sp1qfz^{vfPWL8r)hn5_Fi4A?r%YDII+<nOoiR*}giuy>sZ
zi0woxYM_2L4(t>UX7nhqE;Q<!7}5ImFp+l{phLGZE{Pa|1{f>`VQExe#?CxCV()5@
zRLojfd#Ty~V?BMK!9KP_f>^5~<MjCB4f;(i4Wjp&I8^sXu1286@{QGHuB8u0th<;>
zau`G?bcuR|zlp+qQsk}yh+>#o!38zCLbAzo7wZ#w_BH$<ImzX!?K4lGvSzU4$ieY&
zmfzcgd6~4ZxW+o~&mj^fcbu2}zieIhCDF}!LnKKICOV=t_~mNrVa)QRH8F<5<coVb
z$93Z_11ky6WfuN%uA|;DzbAw-KQPtx)gA+yf*4H<Cc(06T=%|dV3R|JVl|JsR+JdX
zSO#RopAR2${rQLiVLRqnv%Pk%Yus7`!q&;?H~+f9Rd}y~6opzk{tVZVpBP9kVa%ns
zE?KUDD-9%@Iu*?_nJXr`hQDoKj4EVy_j;x4=_edmsJ{nCxE_DSK!|RRD#|o>f!Ecv
z+yHZhPzW`ZUN*ku+7}v0sNWG&UGshp)#ekbJ74COxQah8@Uu`XOWjY;a?R|9F(1?c
zJ3?9g>zZ7HpETbT1!tR?mf!0dx-f1Bz78XUl_2obqhg}JaejNT8WS2nad^yM-^T60
zS!fhK=YDBt=1DQXYzLI2it%+fi@$SB%yECk?EnR`K&uKNhS39J&h0jI2V^v}Rzeym
z_0liVzrMvs$lN}x``Fr&^q7~vFp%OvkSGm^45!76*%$ssEFhJtPmB4Lk07FB=*t<E
z{wn(8t-z9u(oGtFHYcX4>rnYBOUx#@+V@1yeV0)hGeO5tBmev8IR~gEqx5^5{jMyr
z(MAAS-y^13EE?04m_o|vS1pc-l>H^bxge(8l1qlf?3`dgpt%|T$h?@=iwz{3*x=0P
z-qe_B=f_oWZ)R3u+U{@W5=bTN0@j_)eWM;baeyfT6`|oAHz||E1|zyfT@h)@iYsxs
z!yrvcB&YDdPl#&jO9{@NSksD6r^MmL;yTr}VfcUw2t8*V8g~8TF<E!<TjYaA-Yba&
zB%h5qHzuZWpez%V-Hh;$@iCWl8CroIU_n5<X;n&2^usUo7n{$p^`$XVHAw()YbS{=
zik8?DtT#8szr(pLVp`CR1j)XmUc5T$xJ{?jV=Yz0({OD-Xz??BqQ;LLTw%z+5G!70
z2>L_li&WM1{iw)i`%A_N@-(1=s=@P;*^eu=&piXTMeK?FNPox`gv3r)&);s(kz9`w
zRI)=>2RM)gH`$L&jvNgB5t1HXwgjSgt81@x$5k8P1hKav?-S0VSGa$h75M`*+xe+g
zHywXTyp=j7vq@2#D(oYi>@-<k-nMa;$b?3Z!sOFQ0z+sau8=L|_UYvBVCZc*X^2Zw
zVc$3`(s<%}YpZ|74#br!Sqz)e>*1Kk0zE$1>bl7I<Wd0fu5of<$;+VV6UimbNB0c2
z@|v^+2FN0X4Zh&w;YmUoCNOB4+j=T$0X}H(bd4}rcxe!j=hjc{@B79`4qg0cBul!a
z$`!-Uv90#cLro6d9QXu@yC5a_0jux!+9xFZLrHvxl1`1KsbH&}GR#!LwyY9sW*#SK
zO@hx~{h^(Bic?e{z{@98LO*lgw@-+5N>F-9b~+gV{tXAew4aVQ1$o$|OL}=qh)#kV
z?sxXJ2VF87(ge3vq2SW5?a!StcN`f9x_xBC-NA8gjxf`*1o(4Y`?<Y{QDd$xasq)8
zC8}Kp!9rEyHv0n0j6hUaCcC_u57zn5zGt7~OtoWAC<ogYG#8N+Y6o#PJ>k%F!RL05
z#D8dyV|(WZ_L3q0R21K#h$k=@eDUk`n>GpMs&3q2AMuYBGeQ*)%h!Tq%!jk=51gzs
zBdZ~+CMyexS6K0x_S}JyCR-prXyw%g9SDRXmgL<$o_$Yyq>M+GIV2}0bRA*N@E>CI
zQT;t{E%8VIgq&av1}7M3NsMHOP5)2ak%a`_f@y=_#JOKh`^iG5Eio!aH`I~WhWKeX
z5wE`2bLW{c5~ySh+IqO2<~VO~ZX7O$=)_3O0%{N6>)yNt*YZ>ee<-fO;$K6b6gBp>
zZw!Sr!4fYVH!6*=PUQ2x#B(NLl3-`Y;!(wG20?Nprqi3vo{I?W47?a$JP8CuQG$tT
z)w|wP)t4feV#FyQenAAv&LBQ*vif|w=e>`KlGHI$5lIW%A{B8}jUuV1_=)0~l|k^7
z1PN`?^I_^77L=M$SVx9}QWJ#}e=8XpL4=dkEpt5?KU0DHo8*y3^MI$5gox^UyC;*t
z%n;|y`cjDupGcHvRMsDaKW_`=ixbdTCzLOZ7+<bXP-KFAu`A&)Tg)A06G`|aF6u_F
z=iW+s?G)b`vN~{v=R}F`419MZ$_gkAqfAiup5ggsngfRfH4u-PT~AIX@@krTVUiPK
ziy*b~umi$!A10?{xJc1bGR1`B7dD%4s^p9#-U%ZRW-#9KloOveQ*60Iu~u29aI95c
zo<+aZ@Oc9rnefg7CV1YTL4*yg=p}=I6VNF!BbgoPd!2pdKvR@iZ6Xwbs+`>JGwtUN
z5;!i2Tf$%0;>XuDS;)<6dG;?;i5$lTX?$S05E7uAM>N|R^E!bED3zkRTxeeln0~Va
z5uy1+AXMjEXuooViT9DqLtJPy>9m=kUU<%3@e3i4I#$R~w_IpjPK6S(JUQ8R2^T}+
znb+K}oDwxzv}$_=GgRH<)}Ak-Cxg&qcw!)YS1Z;)ZfnY`z<6#FQ=$XJ1rYnI(}q|>
zKZu^pKIeUd-<nd#CR%rWOFH^w7%Suzyo!mJmzWwSuDWT%?O(5;41p7Fo+F)(7Y*q1
z^DB0*Tmy$co5c-790#0>xH8^(z&<vX@JjL!!t*QCGKo8%;1$E|XE&L!OWA=I4h`{`
zQsPLGq4u9+C$2OFnLI6{2Oz!+{inqV^}T<jUGXaYaMr3x;?5aJic4k74~?_Cq*Dpk
zrrJOge)*V^tMv3Z2~aWV68p1})Peaz?T^lrtmlb@e&S}l&+hY9l$4B>L^po=p+xFj
zbgw<;c}m1R345=mfXhiSk8U9~5yzT%^~hX1^+<Yz(eZmFW@2g@HPa=AN{?Mp5>ARJ
zP%Q*<W?JH8`c$<&{{g<2s6?2!5upMiVOHq)QTCV})JTHpVH3w)$H3*bJ!hUBoorU3
z#8)AUfS-;GZpmExgw19`MUZ!ALP<CZ#jAa{*%`0VlzCjJqDB(V9CB15?4AppmW<ww
z)RS>(gy^`Z*1qx);IO$UM17|3)VM^BYqwkM*nG3lL`Q?@<J=!;GAU<SIxf5D1@?*v
zQ&Y-KDsSAdB%Eo~rS{Y*rmrHg0VP{DONVlvC5m_E^<&U({e&+-BJV62C9YV)AU>aI
z-`dBt$t_u3gL@lIlAKU&z0vM5fdWJgzpspZO=Q5N2GPoWc5^KeED&Z1e}d$Ti?veU
zWx8jk8EAfai)fAKPIM2<ivFh*i$sTWQY^|Eh_oTGGQeEnK99N2esY+ZNJ(hXzzvS=
z8MXGK1QLT88R_>*>Sx~G5(IZiQFy(*`VVJkP|gQ}vl_~XXaY{jNjP!2J#QH}1(OTz
za(2>KYT#*W?Ulz;Nkr{B6Q(7N69RYnl6^!E;7Mw#x3r$D$GBn%Kli@J-cw?huOx)%
zvVKsgrY!sRUZ$arhci``ylS7EbJ#>AhwOrC`^rawo5Muh4~Y_H5X{?X$3MYHg{>Ft
zXYcTZ4dAe!%v4|`pB!Y*m}FWkk^re?Exsm12D55s*4f8jWs1gnF@l5u%eIq7mm9;r
z@73u4ky!_y=5)2-HqUY0Tu#_Mq9fN6w+8l}fJUT<hq%6Wr0u`YM2njsfs?pDQiz+B
zsNQtj)<Od(!`I=}@V7kDzWu()*38j3E5kr!#4~~6N7}CcMt*;U`jGnA0Y7VfeugCh
zfhIMGJro%cQsgdv_)qr>DbWJY@l}_ZjKg?OUhyyc+Mx!@UCAqb6(LW3Em+`S9-Eeu
zCKW&EVxQ<#oGL3IH!@H%GM_ytT3D>YN~9y)I)&8Fu&?k$mLYc(wd^fx*b4)gBr!~g
z26fl$Xn}LXl%X_BOodSOc*FfnO|*oc%Oh>Q=w%2l!7X&{V(Y-(2!V&i00afn;nu_J
z6Zi_R;&10!Yd(pPoVuAPZ;%h=W)?Q#6!-TY!*gZU>?M9m3eL&uh$GxL_eZeEfM>36
z#PJbM5(Fe6M7(M_(LM5r2nmcgy4p2b0(@}{Bn%T&@#Y7tf4xsV7&Bsa@N~gl$?9$C
z=e{V#$SDNx^};>Xh&gX!hQu2>r>}MD2FgSij8KG09V|=|X>1bIuP?_me&1JOJ>h2t
z2cD4#so%ET%2otaLS&U!Zthdz%~J>xb5){s>~mTI4oL}`3lq5o$*7QrHq@8IA7c1l
zoMvq(G4*r#il8o3C*}}|J#6ct-_0ONTMO&rw9BP4Jkc8bsww!W6c&UVOwc)Yly%Di
zoyEVhNZBfamq=#>4L1I&gyB=CUc}96LO)@Ez{(<u$E#;Pu)2O`fD&IAPD8SrNNlwM
ztF7x+nu4)BAF(|myd|rIPpx^M8}KAnrWGh5-P9wyt(Lb9G_!^<_SL3)oCu^X)^yKG
z3w5dly&6l<nowILV*J!<khX|xd!W8NfU+9u3WAlNX}$e|nP34N8{86E3CN)^(2Aa~
zWuFTOA0mFX8PL2#w^=9cHs5w=13o3(2A;XW+Sx(YTUKNoyg7!KvUSW|KW;t!n`sgI
zv`|Pz0<wleD$-Fq7?wK(mW^%?M8!hQ8*FX9%4y{Q#8>!wh6evqa;G(Br?Y{r)#$B6
zv}SfokGF0T1nbleH+85Tm^s5vBN`IqG1=r#u6)OO{w31|<{aKyjs-nHHWuG$4R<D=
z*VY3^F5JW6EzwD+B|6Wn=XH<G2ItAN)Zbcm=ix(*Z)>R2P@(MqYpC${;SPv8$=hc<
zk%73mwp#Ced|2yjQFxdgTbDr3qlQ>FU2)j9fO-G8{@`ACFbU{7FrW<~{ur^Fl2b-V
zaL&w4f4N>@lVsi!YTz4&#-T}7!~0l+Pd3CO4;w?mX@oQu@^Hf<3*Pm;+Zz5IRS#cH
z2txb52(5s`pmZ%ar#y^kG{M!GztkG}4NZvhpTy$OKvK-Ijw4TW{}crreIzNAQT~zd
z8oHcxy!*E<p+S*)jW!@<CHGrtKbbZP{k7PGC8iP3T0I=;e$8tJSA^-L6DttA5Fw|;
zF+kOx)5U!or-m+yeE9zWMr2J^?{#yxM4NbWAX|HUy5w+tIu32e0_3pHf$N|w@KQor
zpuvf%VS_b)qdDMk)m#p8#^FlAhxRCXxdSQ#4JJ_{+I68$hegucyT*EikadUk%qq9{
z+^KPHj`qfjydA>drFIB^XH3x!Fc@(f|6`-|;`?Tpg~8Hq0Fq`$^?1vAXpI5pqEHZe
z3b&Q6zT9G6?F7mzZY2(`9A8Auc-7|}>-A;kb0XuF)(a(t$bn)nJa0|=uPG364>nZ$
zgMXVR8@Yb1RlL@G*Ks-t@b+|h!6s9ZCqcMnm8xAr4E7M%$pp9iYNNH{AJ!QZYhMac
zy}{5ECof5YRg}DL{d{lRusZEqQipxxB5Z{CmlHf#!bqhH*?#afYvAjlkz%;uY$}0U
z!?6PSBvkEyXdq>~fB%nFKm<xCeTT(N>#&%GzMw3a#3<bRl6Aq-zi)V2c*AKPfw@d>
zMFQ=K2YKXK*6eaqqjSHh9s14lHo)o1hC`cgdeeHrxtE+hk#HITb4oBwflw3Y0JcB!
zeQU52bun~%vDN4*)ws>p{r8*hFp<NKfR{W7W-6*q<yv4h%`o%KBpf8iiYOAY3mdHk
zuNZIv+Bko!?7v)tjE2(gZ&~-eYf1@winTJab0n|2>hg(IzP}S3wKtlS5d42IQG%on
z6J_Fnik$-v5Xq?`D|i=K?^T-?Vb(xhMhEo3F6-Qv&3y1Ll_c@#xVQ!{m}LDlIlK?m
zTrR8%Oj6`5>q0MWB+8p8aTHNn7#;gvR=3>4!AWXF2yEQ0+bDnphFiAY+UMXbCSmLh
zrv<9I>3Qn|=NN&n*lZG@GMS)hNh<jj>jetf{LzFxmm$i0imav15YbwryfbiyK6$dW
zc#4^48(t-a@d_Ml1IDW_U$Pc}Y%pV4;>d%xM;I`aDg?@~o+~hI@GJ>)Age{{1?7Iv
zy6q(c??hZk^3oPtvr|D@hXPitUhHM1DMYjbo2+gQi5bbs6#m1c9q9kAHDb5v0a}Qk
zWEfj0Wn2TcT9sdz5$6T#C4eYL0BRVWWku$g^~tO*3lKAkU{lFz=(*M^=VV}r&{`1`
zO&2BH5b@_&BmANDL`VTDXYZ3d>*KRSt+XF8uB6ZrWAQpojuc&OvqlKRCP%1&<n~Qf
z=e}t5e!xrvgXVTJLDHL0NKuG^ufbIqfDLP8@*n^w=%rVzS<gGmOA-tgihxS$nh&kB
zwuIJPq6wi!lSL7R*$^dop3`2lvR*JFN5=MrPy}qrDYVK!5f00E!sUq=0^V%D#QJHE
zS;K7a9B=hEt_eZk9N2lG4yt#S_4L@#xNDo~N(ci1ps@8459#D22@ur!n$_<q^AXYo
z5t_;+wUd<5`q)>j*cGNMOgG}wxxvG9gEj0(;p1T_+o^Oue4@i8!>1r5ifJ>al#|hO
zlQkR~@;^^K0sW2WBt#ZE!f+1A>LH>%-fF!?kl4ffMZ*^Amt}&IiHqL>L&p--+67h=
zhg=GRV%FCX5TYbnolh^cewk@XauFrj>r|1BYA&|6oEz~xyPjF?%Bh5BN5Qe7Ip$)Q
z%?lo4DWRE><w;bwbf<gq14zMeca7q%)Zjz&keY~kb?T4qPhT-5SUXlX)XP&WN#oJt
zyu9E2_KReX7JWN{9BDC7&G8y^!Y}rcWNS3oTnuBzPN8!ZndhO8Jo`_KF%hG8*YMDV
zYztNrsSL8yYmKKkkunK?j)@%Ns>~|?O;6&>(H>3!A!pEe5b|22nrEM|PkbciFmQYb
z><0}-*W)0A<@N8bDMQ_UuA&_C=sN9J*OAlQWk_pE<*svIvo^X6#ZgfUw4D>}uSG_e
zAi=#abR&LCQI5B);Q+Fu0pD|h`_W_rp3oeu2sAcGJzsrG!(I#!_ylZ^xyZdI(P<PD
zhKlCO*7}Clie?H?$S+&q&Wej}VTmU;R5k|0B;$#4ch}nnNTAgG2Gsr%tNEzuwm-k~
zTVA?aKGR+{EK;&a<nrdgGLT!MJ@F~fgIIS3u|s=spFQ!es8!rXVv8e=#xTi<oKWRd
zm9fR1b8ECbtBmITR}y5E5>C{4S4jxHt907U3{gEgyV(iOD{pETj?$i!jlC;D=jGXq
z+$tGJuNO^lkCNvnS?YgiAti}OUm-YcDV23rZ1fe@FYGxF`C^TW`Rj9b%sMR~(IU8t
zNWY7c1cltNRrcUDrXU~l3NZs9U3v9-1HlZxL5z0)T5ZpG(?D{)a|Q6?i(x>4Pi%<z
z{lLrS17S{J-%JSb)@SS`uNbIsAYy_-XKAnN?2$5&J}0;{$48p5!UW70F0;Oz*un@A
zD4Ag2;?<%S_r~udvNMrxkX$9ra9p)7PTbZ}8<V=2`|DPBAcd_2xg>rq?i{!+Q$3yh
zmI;!t<ncSBUWGr+32<^GyI8z>a+W*h+Nf8_XI>=1;Za+QIQ)8@JMN~aS7~y5i|8Fy
z_gU_*u8fjM+5|Ttnm=rg6HEKX-tM$*x)1m{y1uR<u8KSeb&?+oL?8_8#DS4=By$6J
zjYFB_*d6_#r_eHoF}s<Bp;gV*yLlxSYWLSq9$gxfH-)zru12JA=3ee9fvPpA+))XV
zCgJ1*dKJUti5E&qKwJWEQ89m^U0Le-TLCdA+X@7YTAE7<MJ<&iA$;R`_Pvu_t3ano
z)p#w`;O!s_0+BfBXwMmUTRvzsq2yt8eQE;XX?ovjCui!JAQYFLIOD%j;CgbSYZXoL
z$Rlr=WGf(d1mttBy<);(DVW&M7{?=rNw7px3+VC}1)lS)!K+w@i4B430nHLD347m$
zssJg=sV{N)KE2rfd~92NvFMb#TqX~>Joe3|0Iw;~7&{V5ByUsSfL%}$suHOFUrlu!
zN<w%jp<xEFN}x4(&_wmaBD+t6X{`utxAV*{9ijQyUTZf`F-0iC;cMjyK41pUlpegn
zE=uSyivM?R1gw-CTFg0(F2CvKx%$v4vSuU2pwA~dRCK$N0fL++sp_0d?2Iha^!R#K
z#8ku}AYQra?P71J&(4dT5uPEOBt|dtV2Y9r!DM5F{nmyds{rHYfP{dvj&w$GGXJS!
zZI5k^GsPGy1Q`Nwj#T7OJEq)$|GgRpgl*NtdR1yA$!6}HWJhM1S`(oIrZE{dk95}E
z|7#2=x7!+PA3105{~bAq*;b1zxg2Fe0ocLkO)tFP1ezOVGU<ejM1`Ae4^w7XXz;zw
z_~3;WfU)&F#{O=4oFoD3kfIAkXIpNtb}*YB0&`lhE0d>ZqB#TZ+tu^Nr6w;}+t<RE
z*vEU)f`@?-Ubda!xpdY*ITobF8i1v{U{yjo*;G>0k*|5aIKs7xt65Nk+=u=u5}%=U
z2Uk_eOnYE}iWHg~0&o&PmYr`GH#=ZS^MM0=Dq+#t`~Ti<yUsKPLJ_>x1h<iilR}I0
z_3;wB+Zd-7k^KX6cnFgc%rk15?9-JgA$K36z@F8qCTib>*>>Hw0cH#xJ4^llI!o)=
zS%+FI|9!XHqnsg11~SKVL9(93t0Ql-Uvm9zR$O-NRi>hMH@KXVA;k8#2kouZ10`Qg
z-tW$<Eb3@frM>g*&o74WBH<4P2)uTaIw(V}I?JB32q?~7@`w@2l|$@R5ay{K_D}Dd
zGB|rz&OuzgO;lFmB_3x-gtF-HPA5tOc?Ty5vRXXT9<qiy=z0$}avRCJI@~gd^;5Au
z;x|fAMFp!{OkN>Y8cAzOls)5h(~Z0%O9~MlbvXaNSi9S51IO^Gq4M`e*hq>b2=g|V
zJ>zAHuoObTC9OxLi*L%EWJQ?9q^WC%+s9mGz93L-O+dz%m<DUC%I$x@W8j&16*e@Q
zJZnjbA`l!bwI{yiG>UEu9eo9LBog8oKKsEBOhFE5N_iiYBu3YrX%CZU9v(Lh5Edpy
zJv!VT<fKRn0VS~V*x`2773NC<H8?AhOsw4`wPuX{ic?S$tmAfW6oqVJ5-*{V+4d(+
z&LPwX08`S4xBB{I`w!>yFp$I5XNvvDm8S7FV4_+##r{qvPr!L!V+-kZ;i6JlwjFWy
zxYrDPZ2j+!xdH4IpWQgjPI~We71Gt?adu0ng5US4Y$e=Syvi76_t{`R7sMclu(;ev
zDL9p;B1hSeZ>Lle;Szb)tS~7!xU|#L?aFIR3EV*q!{T!!0z1P#HZ<GcCGi#S2ACbB
zsZ-1B#(T`?<4bWYDE%D{h!j%EJSaa{XJ6wKVTj|ahMd>2SrT@AcF^uB$)B)5mLyp`
zYl{f(o^B6+*g!}AF2?I5wn4BMQENXS$O_jmvn^{Dd`yZO8f7ovWWLV_5kgi$$UwXg
z++So5SzwCB9h@tJO#&Sf)YH@LXFqp(kTi;+1!3RP)#533ty7dw2_}WSbz!8XHlJ><
zy&+WPpRhPXoqUG9*;%k+STOVE#WR(9)@P5t-&71AWr>e^DBu35Bk~dSo9Bt)_Dh$T
zPeZty0VX|onw@`XCm;*={%Q8hLJ5$dJFj+z`l`;JcrQgFR@CzP`#W57GKPYLA+ED;
zdeUhLqanG$A)*ix9u^2ZtM-kt9}k-1yn~MAa`=?;_{2a4jkUk5Gv&lV#pWcm&?GT}
z{QRrN-nN!Pc}sBeknsw~>@z&}lMeRr{_Y?px+!%|oNcW)pLald)T$kjKKywS7L>tw
zd(@kz>rqGp1a{!H1q00t^+%z7&8?=unA-^%AbThh(7|N;1HUQQA%rHbPE_ZHOr)S2
zW?ZM+^)pTRxb}2pG`OnDKH!Wuv)W1DR=K;f7G*QkEE!%$opPLglrzzh1Q>_QCSh)d
zvd^%4Ve7+wOu|akP;B1p$d{6BzwE5p-`7;?4IX13tTpvQ^xu^!7M}I4!eAvQ3)U)8
zT~c8G>0pH+n<PRL11E{;JkegixMO8gAwzwgZ})L7k8ya_hlm)j-D#3<C&@w4qOwY2
z+SeE=mXJg)y)VbwJ*rJ(qkb2gH$w@?ISP&V?>PIe`4mY?3`sI4sTjz_kddLzh_EZ4
zF_lIV_PU-#CU9bGFByaa4tjPPGD?<7_LB}Wm#{0w7!JCEp_7VAuy1u}V;hN1P|0W7
zo17U6?aFfqj?d2(My(9k(wL!k%SC1YOo+GPQnNY?j>y_m?ejWcq0CdwF0gw^(mF2O
ze?amKHF=CZarXZxm-JdcjJCh3H{~5SI$b4?xBpWYnKv3saIc@t29o)tcml>s2w8tz
zL&_$3%@WlL&&Cy)btEEn4Qh2y7F0qDK~`F5T4g{C&Bct1MSsq{^A8F!>xKN2))+A(
zoriL6(bew2_ok#IP%Sr6LlaUcR#TKFD|?Om*>6oLnbjcM&i1Fl2c@eO8{L~fCEZFY
z=FAdf%{ND^cHs=S-|g-{#U-g@MpsneQXvVE$>yh?dCRsThQM>#Ur9U&9Q&l;8hguE
z22L6vQtOqoAyOkv4P0k$XK>UoW^zcIrY$Bkf2}=vpDD>krE9)#Ye}-rnMm`#ID!;n
z_af1ddHZj2&mA2p`F`YC9sL!{RF5&DDD;+{;{M_RlM5)<+klLXZ90lTtnDcKqrZF4
z8p<+wUnew13(ZN=oky>7UzZhmG<p_7YSw>+mLc$l^;m866{94V-W(L7=x%w}Mnrsm
zy>;@tCg)qR@yvpek?eG<FY=^e*VEa42lF<jTX2JY!=I)o8(SbOUobav<)9i9+bE1^
z`HB~w;;Ze1zYcF8B~F6Gzj3{N<zLaF1}-{S!@DQqUPgxK{Qt_b^An<$LS&0)9U{30
zB6W%yeZFUS&#0wf5qiZsn&-hXIN$S5Y?Mqp4>e#ZYaDN^xHksf8&5UH;OIrO#JEBf
zwVAc$d(pFsskc18WM^1oD|vi0udebQD<<Hq#Fzc8<#V<4PKvM^>{^XF1FbAH{|e8_
z?omrQOT^%WCu(Rs#Ia<VetgW+m=(DK*8;rKc)4~7FVB;Dieq{;cA9lugkHfJ%`Ybh
zh3I<{$*F-^R=j$m)H<h^UI8b@mSd#it%FWr*2b1&K}DjU7;ErYQ!aWTf6Xq+ctwem
zSCB6(>!CrW-7(&ppTLHMRAPo>kE1F}t>%B55?&N)i66~zNyIjXE>l#u8CK8ZoF+jd
z6un;b->8<vu$YFCRuU|04GlA>%xZE@lUOa4(W04n%5B}Bq*ox|7a(klJqQ##p6yIj
zhu*PH97&yIV|~nxK$nEskB@_N%j4!Mi$at-7&yz8Vr`dzCidhTt(^X5pqaeyp~@u!
zJ7YjC{7tR3rY}{<hr(NKy}v~`b<$HZsOz7$UK+wE#J>c$EU$SqBP|%lo9NF$XJbS5
z+cK--OuY)eASXbg9a$Z-Sy@{=FWlr_1)o;fQVB&Mk1>WIs!LB#_DW3OQ4Y0b)6PhP
zNeNzPA1JY;ok>U_*snotIje82^SrnVogdHGqL9K2geMKP=a<+Y=ebrv7*N$?l_&2~
znA`ZSwfB{}SAkwRWVc3JN<(qA-Z+W8j+#aEP)X|3I6L{=c=J&u^FrPekxpK!<JHk0
zy9;{9A3m7`6|==N?<Thx02BsFQQHfm^JvAxY#FZ!EGMZ>Gl(tk-gMVtRtpftu+;+F
zT-(?ZlxdLVlZAQl8231hvK}GU1l#1EMT}Jq*I1{1#F0r<6D6lNvW7f2t{`h0Z&dIY
zJo=zVWUnx?k#`KvQ0++TDS5}B3o-<<#lk%^A5vpybT>T|1glY2(L(~l%!Wl)&-cus
z%xaZ*PPj{O>u#{D<zMNgh~;C@3YqmvRL^bm96K$t6EHpu6q<s<j^`}a59VmZZqHG(
zNOCP^5+Yuj3!Nko>Z}hv-DY-fB%wniV-A__BopBsUwG0^GfiMyjmr>L)M!*_yU%XV
z_R&VESmZZW_b`|7YWAa^OA3wlzlh*cjefDlm$ca5FY}b2Vw8=eF?b+O7)HM0Mx=5#
zd5&HiEl&dS63M;^@RvtDpZ{rqg+VlOP$)U}r>^v@+zymTnjj<@Z82=aP>%%S_j&@O
zP2<oC8YWpcHo_lx25pEQ&EgdY>qsq_0hb!DBBsaom}<sXD6YY~r45r+e8~#W+%qVU
zM~EuI1mWirpFpQS?exShjge-G0*%B~*<C*e`{#L6WAB-3n#l=PVTvxsBa$z^%R0|?
zulahM7m7BAcydHNN8zEijficTWX4ErS3k*CL~2SFd$@&1#m3c{wmM8pk^!G}pQmD!
zsgl=RyW5OaoFn4ZN6&eD@0jIje|iyR@tq%fB2P9gu?};@6T-Z&{P!_4C|P1ZDc!5k
zF@dH=DYkUG=b${+5W_hD&k_uZ`vWaq+a>m2N4jKJ#$&5ywkuU^N7Sd?V-M{yUE^Iw
zD`-PWZ2FexiU>2%oIsWE8(@fx^Tp)YGi4juu+C3Gl->A-r@?s&8pj(3wdBYGXR!N!
zH+3e-nL=5O%z`THVNd#aGqnzj#Iw5k;(pJ%F{Xgjg2WOx{salU`?G#8d6tx!VL>B_
zI>m4kg*^zq=6U#Q(?w1oI7f!dAq00nUhO&QGN+Gb{E4b|?*=zyOfNp;xqYNl&}kmB
zNeyp!HYA&}(d2U74Yeg<5XM_eJa6^@3_9(`y-#951(8^Up*iC{Pv7e(LaP@<g({>6
z=#5W!mVfN5RXcJ+`PH`jJ%golyxuu|s7Xm10CI|Hhx+%|o*|1(=baZ=8tngur(eA3
zrhtUP97LQCnB==pcwYL(^wahhz${*Wz;lGhbTXco$Z9&k5RpT4-zl-n?l6rMd7*D1
z?B8L<!oip`8w}J08ys+Air6kb@`$ImU=*q=?75j8<SkxJU+MYvJ!(iyG1AgHZ-Oal
zvg+A;Jdb}$1(d-4dhnn&SVQ+D`-CIDW|`;F1XBi2Qf;oA6nUrSn7ugJse}2igU~{g
z4dpmij&X{bSWS8u2)kVF>bCbiH*7Q`ZpTo8uSkiVLkI!%OgRBxGp?n=E|9NBeY?Sv
z-D;Mp1HMTLsSED+yyM_PJAQ&w^B(q`mhFtRefvbz-}-=Os6(4V^i7WZM~``2N0_g3
zu}Npec^VfbYT$9tH_Zl~&Gqig3&k0N*1%Ui@##(tZzYc3nBcP5f4=UiJI6r7o=@^R
zarS+lLusA9mBV=48=lJ@(v&YQ?3g_Q{JGR2hbdhCJdUwjqLW_yq$hcIbTv<`!j6mL
zgv$qO71*E2Z&^n?8ddGEZ5R%Smx!zxL{x1)%iVQHq?8#;AYwMrU|Kv(?2?J@r?xvK
zFmpbv)KH331U{U0wtLFwrU(fGt9`HqzWu}&_qwi8i+PRvdYOCmj+n(r5aYQY#4}Ol
zjfxZ3RQ2<J-KE=O=E5lvI!qo2FZe!Y-J5O!WTOwkTbV2*-^VO)Kt<k}5~=3;A7T>M
zyT4=ZnEhc14!^3d-EYl!Ir>yyjEiuOZ<IGyW5@d3$)2<SGOx6w@Wq6pR|uO%I-pth
z)~Luntj|bdeIrB5sb`a%l#++JW#LqW!q~WF4TcXKizNg62`ny2{VsOzpBYIiPdEtg
zERz-$XGCW9_Medl?l>;U=UGq=*c<2Fa#8Q-@q3T|9*#_Id3m_x^CYCFlQUPxe9e?H
z#oa~in%eKHkw@G&mSqT3))LUs$&<vhQJOk_=t+0DQwK9uEQql!4l50Ca(L%K_kg=1
zrHByJVK@rW{SUc!{nx+?$@7l)Lksj0-`dk3aqqe_axjeb#6}*;86#pNkJ|{Y54h)1
zLQ9xWqk?o)4A5Bh#>4J6mzWYv@ybh4$eDXEg#)<ZVfXa5=KMx+Daxp)?sl(tzy!88
zsw|`~v0FexO6J^q+`ikKF@RUn7OukBquk>jK{pI7kHmz0ZAM@+GQG9TJ^gkgBNf1(
zcwG~*7sT>35!V<5N87S13>(G*x7m)0xhjPxA8olEM_OW57}se@Zi{_|ZJj9Didi>q
ztguOWRsd^NG2au`fa9S?AL$MZGHs(1MrIS*lp*=XmUg#hKI`y)M4^`OrtIOee_Lg1
z0pb$Xo*6l<Ei*D#IWgqshzW>1m8$hmTQkI_{&0I(P^H}-Hm{>8GzhT7iv7ee$C*fq
z&BC1HkK!0gx0NC$jsr1;qh<}#)F}h3_09@)H0@4oGwn{`=<NkBxqma%l2fgOU5qLb
z?-a34LN4HDVobB&v3@It3uYSP8GwFW<bVg>x3=_&m@7vU-}ZX{Ok6v^i%EWq6D<+>
zQR=xcaLJUY5-;qF>AlhYten7Li#Nz|GE5v4==+;u#KjtqqhJ$mlc@6$jFQ#nnf4FE
zBZWF5%ye|dNXa0{dxA>*%l-DAC}HzL)KPA&UEbJZr$I<Nnz)D+*ntl{o)Zj#?Ql8Z
zDWNXB&-2mf!%bFFLMAK1vcJJu7NsUELYlhaFVCYDh6zV(!Dx!NG2y*lJ>>c0dIQGd
zRJeW^YxQ0C*e|a(z#_6P%>pW3s@qiT%JV~PJUZYxpYs$Hk97IOub#4r2HxHwYt`Oi
z2Qchg+c?_6AZ$CB;bE15T^nyna9k>Oz9TzK!q4A~Bt?C9WbE_J^oXE)2o@7ohgF+>
zzvqeZW*9uy@u_4Mgr&Z^Yiyq@9WWDwS(MYY^#@NyxdBe(xr=?1R!qLi#lL!<Iop(c
zP;b0#(ebEnfAl=$41)NG*nhDeXi%T-68liC`82$AZ0#G}V?Vsc0CSu1^lZdbhOA~u
z>X8#-kGjRc$6>{RT|d3Wt6P8byjto&XC0CUgV3r%Aiw<8Q|k<|eVq_^&r-4d{H8`b
zm`k+7@`Y!a++mjC0kSRady6?qqrn4l?)mtT=Y6L;$A$!7N`pFrXm9n6{q-Kx=OkaL
z#QSY<R+pj|j*R{9Ql|(<aq{2D^Bl79(fd8;78rOYSGLoX*lb+&y~kgIfETX{4<Xy&
zaweR}SJPtihNAM}YHIsh&S?9r+9!+2NjtdX=N)mV{qwd~I$Im@P8zZm@~~+Ln+=Va
zKnZzM`Lpb+dvmNr>5c%7c0h;`1+HDtUY8U|OjZeS2_2U#l1F@I4|(6zARQq_T&6%6
zzL&qXpV)2+^6LrXVdy^hbMrd8I)a99Hw>6qtdr*0YX=&@R4h-p4iQh%<aC~MnceGH
zQ$P%XW(@7}OYKwl(;|@|7=myx&^~%<e8B#ppXq5-vlq)VQH;qw!X3QU{@~v<A==Ic
zED;duL}YmA4*SiNnE&DXW+=n>n>;T?x$dTk%o=%-lkgSXO&O|Yw*6N;=0>RqS_tTr
ziS2iW3nk62i#<DWR;P%ElQOJCs-;f43km+)g`U0XPEpnFdMPp0(!|Go#RAWjiJ`JU
z#pf_M$%&#Et(fOI{q(;zm+V5P(4n~wJtd2e`~ND!tSnqaYQ4GWgHcJj;4Kz?Zy%b2
zCpg-Bq>+QH99<-+vk%xOH*^9s*t8Ddwl<hTdmAHzwN<{E1m|{inz#{$`iPuu8f&YC
z-alNc^LnMZQb|_dzFr+BnCN1Z;Ub>#t1uHxOiy*;A-C{YPex1BC$P=P{5VE(fD+V<
z)9qzzT%VvX97Q;Go>C-yt7yD<e8eL@VTb#N&907h*lwqeI1Go~Oq1d=P_He*5bLo{
zUYp7InDRCrum>&g1V<eSk2Nu1pCi7!?d`<JiEsGB0eh0bld;QelJFrdMy-w61s<Cs
zXy#70gI9N|m=Gr^qI=ibIS(4R@mOv`kV%Q-DkhDG{o)gyDkPyTO;Z1<vyTyf()JM~
z^L?s%H(;OHdBh2Ea#x%iu=|Khw0P;%8)Z!#a)avGVBhd~r)HQScT;k}KDF}%6XH-?
zs!M0vt@z`1=$4d);K;Z-dsk;TnpRHD-2waTht2mmcln9hMIbw7CTFcNXis;F!h6A*
zvlRUT_63K}fY$`IAz;TiU0{ORWCE+ul1PCq&364O&Y(oJjVGff_^~`-XE;k5ZXdsG
zR^rxr`_IFNnu;(|3=YVYO&}JIFvgjVFY)9^+f`u-u&y$W-U)FTTw`}f*nchR1V=rN
z^-Oex?VEoXT&(C$?Pr%QH1NVe9Xb>ow4wOd9&L}5jpT&ly3Mp&z!rMO>REM<vfsb3
zQ%ec>{br~mBkZTe#hg0L4dP6XJ26#+E^j&BK8qsegEekTGX=>Y4D|M;<LyWCI<<uY
zogKO|!mhr^z{T;srOb!L1DqWsL<RvNKiJ2<>axQsV(*{^_Orj5*9o40-aS#>5oy2Z
z3@*G}EDLv1Fv4!^{5^j0w4bi+t`~P|NA&mTMYa9d1)bo6YRT$mZJ+q}_EXgL5q90-
z?TcgU+P?PU&fl|rV9hPs9&pKF?MoKhueE)ttRQ+K7J>y#Od-K)in=4iUhsc>od<Z7
z#n#8iiVZ6&J^Riq0%9b+pjS*nC!r((1nZJ4B%~}P*+8P$d%5=ByVr^h#V*QK1jPah
zHUt3)NL5h;_4}Rk?uI0AKOdjRIJ586GiT16@;`UB{XN22&n|9j+xBtbHaohw7Z?vc
z;hd^!S`IGvUN3i^1my364S)mi)H<rG8|g1YQC&@gALXB#2GhWT-rl`6O+P8B3{8yG
z!c=5)B#Jw$r#tBet>V(G5<t~dsGL3zKhhlwm1CC}6=@W>G*V59CTPFuF83h+gGh}u
zl#!uyv-J{}vOqx?TKpakSTMuwO<+6@OQUKU8?b^f6S7ZAfZy0N-N4WFlaXW$q;G0C
z!Vuxs^W8)3_$b9RN6o{9U?0B>aF=(`)+VsFC@%uY8{(6OtuMoPrEcqD5EWW|CQR^*
zJePZPtH}_Z&(EgSyE%unDNlzt9b4}TcPnSa*G64u%3F58s=$jz=efucZ7W2IeLc@j
zmoWcb%Sg{?Tb`|V1#Mbl4qR2Q<hYfrZ;KCvn$yioQFo-QV~e?Qyx8}#x$fR0+kAk{
z!E~76ire(SIilj`JogzxYS~gM5EhwcL$1r*tpfd~smpV-4%06tOlH%=mEjV>!w~Vb
zYM>kO-_}bG{UA;}o$LO?H!_b(5~bIQ=O6>dHE(g9dxg!VhD>I#blG;9N~(Ekn(Gn!
zrkUo%5$WToJC3=xS`&$)7(K&1x%-;1x|z9dldMTg<P(h8=G3`v$w)2t1->jeJ<;~n
z3*DTd6yxYrS=(3#4oI?WE1?xnyS+HFv{MwBO7I82$5+(cJ<mOz-==vWx=e7c>j;Z%
z)om){Y<kaqGF;0?k=&3QEQ<w)p&$01du?Ew--~Xj=3O@$2n`tzXQs9h5i(Jp!FkWR
zq)+wtdH9mlHo~6;fJ98D*r?{Yy$1Uq`IF!RN`~XXVJaSVYi@}3(?9}inTMR0N9VhL
zhWO=(8PXK|g5U4Az?Gk(O%0VSpNO3FfPwW9S5X~nCXOc~9vTDRbJxmnWwqnYixKat
z58R#phz3?pB*q&*0&c7%^WbZ4!({!vZ>?vJXj)hkxqmvm?w(B5%3;ykMs7=8Es^6>
z-*O+tS3TYh4tHkFhi<aJx^W~8Kx_E@+_~;{|Mzs$i0=*Q%gM70NALcQ`+JP`F|v+y
zxj2Aul_7I=eb<GDY5BPFT68ebZ0w7qx$fa&t%>)+-Gd~${ats$C@sfMDRd6IXO=RN
zo1S-nolO;n(T0*TEGy#Z09C<4Uvh8OwrMN{Yv}s9t}woi@%5EqWzBUb_!B8s@D9c#
z_%TanyAd)AbT_y@fFjHWLMUPye)M72{iW`iIG}LE{Odg>Jvo3D@6rx#@vLr{IJFdu
znZF*TjACGXcZBPE4&?v~!BCNcLjh982%4I~Iv|Rf-`cxn`)ivMV7xNXl+4rsu6@@!
z_tL%kDbNF@Xe_D1z!89A&gtk@eADeg9#}&NZWI4RoaQskyi&LSX<Z9&0x2r1kyK`8
zKr!pm_hdK9>ryZZLm@^6+QKWK0cA|lC`BM5CxbfYgfUB~KPBb?=34o??ILct$z~)<
z(QtVc787vk%!_~8mw(Xmf}LgHa049;;D?;*yiGRpsn!4#!mtEEL|&9-8|+o$??~!n
zw1Vm_i)$`As|%a#iWOQh5Z#yWY=@@?-X;Cl*hg{8;giAJrV6knQ>2E6(~qlduJ1Ec
zi1o3$R%3r~7=oR?@~-{ecNiiBvo7ZInu$+uib?#=mVB@6wfPFbjd$(sKl`JrLH$c?
zP8siJ-+f6``|rGA2Q_K^kVu*O-DPHqL);Z#+Y6r7@*Hv4VtkoI6PmRv?HqAU^dr#f
zuz(X(MfhX3NnLBVf45r=!MH7I2BD{s83l$`1<(+b*G@+FM@$xbe(Fbd)qnK!_>ZIl
zrd;@ueIyq1hWojEK=?o6?wJd$@s}e<yl@0q4|gq*@V{SfUlYGuBB&&`O4b%}J;`|A
z*<1XrE#4VZkmHbzh;j6C`@Xm$<MyMesN@UGCE4b>1vW_>znE=FSq-7-;<v~t;7&JR
z*w5e6szPEcq$1{K$v$#7EL>y%+@#fbO8c&TfiV(@7AO|ax6D+0mCd-7wsb8&%En3?
z-_LYx%I2<3_WLhljaRW<sPBY8BpUkIb@uF^v`TzvCq~M_RP?8qfsp#hk5>G^81SGy
z>~@x!{-(X#|5^eF<J%|ClU>_~`<qY1sRAH$?ixGGZ*f%RPPB;4v&?`Rpzu@uJs1(G
zYmC!z3e2Z&m3>;K#vW8w3W~8#K)lTN*=&#A2ShYM@GP%JDj>KqH68EZ>h<<m!9(K{
zGJW}9q^F?yI%AVvAU>#^mJnWVL?IB`2z!z4=e?m7Bf@3ECfI*oY{z_KuUY0dB!&%G
z1;0<_f=t+Gcg)p_RzZ?<alw}OZmL7R?@+30OgZE*q8*!TxlakLXeZ75^S!;%?~G`b
z_*USxZ}wVZ?PuEA(7NW+irx}q?H{)5Vy(%Uh&r>5;qkOiF@OGI`>fP*#0-B6(m44h
z@Q;1vTP<(7X&F%Zu1y<*S|}?UwqrIev$y;Hh#Xv|pbq|kZXleWx!5lESJ=1f$XP;Z
zk!>FO&R(>)?g@H#HW^z`d^`C8{6D<h9@b8OK+q;PfPBaPclgSl>o@3sCq86sC(%C{
zX6a7*L)^a+MZWK(OP!#&EZbp6f2}hbD2XuGIUK<7!F+RXcZt8sgF}MngF2j;%w+Sx
zKlZ?n_4kDYGsM5h#Kq?Ko%W-7En7;g=6r?XWa>A2!ai=Q-|X1PWcAL(&C$JU-}}{X
zvo)tpGqc~dv;CnD-zgMYD-;I^K&m<TFIy;HlgbdbRm=MW+9KM^gtyyOA8K>0_!rXJ
z0(-m9zd!=V|1xH>gSm-_x4>TXq<%%5e6?OfI8|{&jNjKC>ys)bN(lfa+z3f&v2k}u
zR0md_^2+#uBeGtnGyapV{UDc-;+ln-J=L7~gR`Bx_2VUjr$Trl8Z43UbJw}OMs^cx
z>0rWkSo^Fr#Oun#gNy&^+BOIe@nTmHUdw<n6dk()#&TMO?cpG~>x)(uD24raKGrcG
z{}~jjoJx^k?)$GhDyi2T2oXHfipbQ4uzHXo4KSTwX1UofXeCMq5&F|{2>=f93Ag#%
zUZNNMQdFt6Xh6l6Er7AA&(*<>x!u3#WiXc5<?=er^W4)Mm$E<YM~f1^=Np2f0IdKW
z5tbp^kfHb5m%l}8mw}~gDyrzlG70@7vNqY2zHcvDMpYV7y`qSgpvN?GV1`Q?lkh!K
zZ+?Awz3AMzst!BSJ>gN9Z3@flv8;%}lBZdcn>#(>d(379<&9+|48^X^9V?odwf3eH
z7!O`LqRd8UGWUOJlXoz7cpb?GMAE{2p1W(~c-Q$6w2tDRSBujl(kBkw?BQDpuIpMV
zklDDVF&2v;!F~GHt#;xx%9&ezsJdK2uyAogDsd&Q{h5L9nKXKadK@*t6Eg02cUwY>
zLgY<;*`^REvF2a01mY`-_f3ODN#OubPp_r9&OMna{*59slw;vUconDHzC~{IzZi`K
z5K2vb9gbDvn?r=z5_?T0AGMx9c6<V@);*<p-J3@*+KBi-X@Y=lQnOby5L7F|y!X3p
z{~Ysbxg%-u9bsGp#Ab@rDy{|}d}2pVXQQ!)H<p!&JpxHXUJzW<r+wdj*NU+YDe*pA
z4qI%a=E_^_Ra08;N4ore^}Y6>T3QF`uMBZTUkSc9*n3;;IqyORt;v;7V&sZ=Fq}`&
z(LsI$ath*ArulF$_wlWKMd&{vnLI}zfA&4g%&{)=l~%~cN2U^DkKZt7Zm*+UXx?u9
zKxy$~Ax$;V6jl+Mf<R(TA?*yUK}sd=Sg@Aop5WGXV1{y5$iEq>6Z+3e<tRM(t=(Rz
zl&)P*!pu(mA>;uz9{QyI8*RhM9FHU=ohYvI{wk=infb~t8N^QQI#4Wa{6Mw#gXaSA
z{ouc6@39Zn$;lD8AiR4HcOSi~`%TghLD?g66c_Y-S8_Qs2VtO$=rnw10Lw8spV_nb
z(}lvr8b6RS|B#?VLjvjKzFx&l(3auAQNau`a<W4Y9P7^hhq>b;LGFW6PN-DDT~f`W
z?ymihRN)|B7RD%`QICXB(tlFGCEwZNT*yb93r<t~TnN&12=6z-eZX547Go}0V~3}B
zF>*wI5+g?xIX*e=#>EIRk8v@q7**w!F|=*mz>>`c{aoeC%vIvq1<^WOSIeFOcxHNc
zb=^zZl=y+dX+5KvxS0!Xv9M&kL&P_tT3&uUBJmeK)UCXiDG`Vlv)tjE&QxFi-9C32
z<-9H{L-ly|=zPQ>{Jo#;=Sg0hbIzR~V^l3R9z#)l<AL*%5K)*HG4H(Ez6!cGkKq)t
zFLaCXtyVpu#p%erA9Q(Zm?H{Q0WpCm3DGSZ>>?0doU_A$;q5SBE?Gjy-?Ph?1YU>0
zhX68YOwp4G3%>APhxg&AFf3Xn(dqwrulsM8G42>CumWgzk#KjBf|7_|j$p8-a`8=%
zmA52WPDQr4=m2-Y8_><3>`8PQw<oo^nJ@vyZ>Baa5|Zq<*plh-o7go3>nM!W^X4~?
zoM&e?u~mEMn8j}Hc$e{u$;FIct(wkgZaPjw#C63P<oh%~q8z)O$xh1-&_dytc7AsE
z_aShJTSs3ahZk(d07vMcPwlx!QI{^>B4`U(Q=EjPX4@9K^nu;JO6IHV=C4|}n5NnX
zzr|(9{>I$;fp_P9fnf-ZG3>{NM6x6#R!7KFiGathLci;p?29EpLkLnO&<MDt1MMR2
z++5dRJYZ|T?jpbv5_TXU;B|>rIM{_Iix&lwOp;j|vGZ5)lS~lFX*X1Y3?TNdOGnr~
zezQc|OqT9&az@Wv^0__lKLo&t#~a3b0Ll_8Ly1+PN&%yoj2I`kzbRQ|XO(vymP5)D
ziNH?h=|$M*+jjHcormRcM%NMqVip}^FK)+=vITtvVontoelx|hpLNv89P-^U5%D`U
ze-E{rnFv1}iM|973UDUU#9H@!SKFycD@K)17VSO!lhMD~&2~RXn;tBql3&Y{aY`S1
z%mG@QC+O?d$R2dctS;?nOE+pW`4K^ImU5ZLw2s#94>E`B#^Mq7=5utR4N*$={&%|!
z%L7x#ytKmBJWiwX_w~<NeAkBosgX~F03j+&K>cQph}sJ-_d9^YG*3Y`DKWvO9ixMi
zU1n=!5Ab(OGIKiFk^ivP>9qXlQ}&*I+CU))zB)jOt=Ye;9lV3$WHTRr$5S750>1C}
z+V!1vNTUdALbwJagjKogK0A9r^XS0DD`RDV?xgCMsn!mI4Dh6c2oT;ia_8#r?2>7^
z*+W7=J>ljrJ1pXw@pjncGTLG@h3pbZkWm!^l_ZoX=p`7_@D@rkCsf$?nH%c?Te`^J
zR;@$zzo==#Ld|&j*_J!)&@_G~3NcNdDX?ux=Ck(py|XBmWIR<<NqkA@J^FZo_FizJ
zyMYa(`?28$6bChlrBONuX(vq__aoEo^^6X}$DL8)hoE)|W#3V61HUl_xOAwIar=IX
zq9?+SxXFfI)h7M%H4zeqv!J?)5s@^>zG0OTa($sSl_=vRbMkmQ9HO8jl5*DCMVoYs
zK!EFRUpkZ>5D^J19|%oc_ma$_r|r-0^BWvXkSfC<bm@@})w4;2C$Q=6C);p0zmTCT
z!e|5Y;zb2Jl2HcM+QYu^X8-_i*;>3-fP$$_oT?iwzI38<$zNu-zo@^;D_beo4&BST
z{PK|fdA^qCG&T`nDmz(ln?2zn%3zzilelw`uC`hh6lD#!ZnCKGue#Ir5ZVC@0vC3w
z%j7@s5dm1hwKU1>bgpEvt{<@gIO-+>SeRIkFOO!t^G4Zq>AJ-O<SS#INVacJp#ZH)
z`D7r4*gN7SIE#-=vTuK;V}t?J!9K*hK@MY=MYi?@t&p{guy(*|P$vRY`5OE7(_Q3=
zn1ipes79G>_x8crpYZk+8pQ)r;+5s$4y-_`sru8-x{^8~_R3K>R8ADnP?MdRhO1X{
z7Z=^X+Z^m;#ZxppVMYp}RVdo~2G`d2n8Y_DB9j6+sBGC+lUW?-@JXOxDEK%e^b)Cq
z(oqAE`R=*KeRy@3g5gMRqP-J1pOL3=b@x2o9huvuV00>(L~)nm>0dQfJ{mVR)BNiK
z_j30x1p{zbz#l1)6D<Mm1^>MP`P}hme(bJE?NTrVpSOxIt5{o0M~Dw6-s&E|q)Q0N
zctU70?`EW7P#DZz^>*lnZXxKNHzI^m&Jq)o2}*FieR4%N-EyKB!!;NTvV{vg^Rc~4
z*e0Y9K}A_2z}2ES;hvcAzCBM)4ppMW69^)yVO!RIX|MfNYev;HmH1awJ<kRGFvI-$
zp$%+9p-n~`N$f4kP;ojanqwuJlVS<4C2DRmW|J&A+H2<6Uw)^CbO;i8DWU!%5FS?H
zZjgXrqSQd8f-ov^6_Ft3wa#6898l4M=_g^+*y<V8eto^y=c|uvp)fAqAac1}aHLoM
zjFtl1$wLDV9cqM;)^_)X&guL<BK!o=*NAh3qGONQZdVj{pM!{re6GSFvThRM9N19V
zXV}9Kcm|ad*9v(F0pV_#Y>t?1&kHdk@g76JUoG)r@o+H(qXkz4|HIq7<qs-+QUQA9
zFeel(%94}aWr428AV7dQEr%PSmvL95xN(P2jF{IjJtTy$t77gx-rZfSe&GWlVw`-%
z7A9^c8?s!3r9yC^qulzndbHy#jU_^<m+T(yt>1D-*7AI0smT?PYEJ6svJ&V_PA2G-
zL|J5-M+dkAdh%lgCbAfbqKjWE0@Kv~?)E-fgWiYznjFU63yvyNS>M)YT`nizXZ;vt
zCL$mRXy@WjN6Ax~<J#r<Q;bT0DN)5hucf;8Pp1%o8`Q3%Lda(6@h6d=BAfYLsy95p
zj<<|ov|LGC7ZMf?`>bP3pogK0KGh}eM|;_3LKN<fsiXn|M{R7r8R~x7+NDjK@Y`6M
zEMz{}u3$JwF0kn&b404Yd>E$7D+zs)OHTtrn0HlBmoKNfPB5`pDF_%W*}?7uM+L(Z
zh*?nz5{JuXvAAA4D&VbAR9?c*u0O#&Bdd{W5bEJ_xYEO^dus!1LJl_}R;@a`8~E}3
zQ(XHreoVp?<^)@(?8sAGV1#bV03z$<hb;X^r?|^brVtGQYf@85z!tfv@Oes8YGKE5
zev{}5x!QUScYXT$8_Sl<J`s;e)`kq9I#N;CV{_x~g+?W2w_h(e^)Q_tAtn;}CzO!Q
z*)^x-xgYk?mPSTP6S>vs+V`hdLcJzYhlF&EjxDjWrwoC_efa;OC`oqdvSu2mO-GWK
zYh`a&C5M49NOqWk!Q2V+Wr0{op?bEL;7oG*anDFBoD87%w_RlA2LK2yq?;{{agbc(
z0R8!d=?qH7tCGM2nJ&5=TENargjbB%K_<i$d2)QAhI2Owz(tB&%Jkcz2MuXjS%2Pw
zoXf8dJeXo&5?O1ASAwzjI>b$%pc5V;5z5@%^0LMssjr@VAv8j+gveOalTzKN<8<YS
zlGk`xS${cJ@SQxCtHCIg{SVGfJjEY?tgcK@#AYaNfE+<UDltMJ2hkOrhpu$E#73cs
zz`X>t$85^S_jLQ6t-XyC*#ZiYw=<h?id%Z3-+ENc8C?CSB$&CJr%_$>i)J3C(^ejq
z&YM&&Tx=!Gq@Noyi0d9lnH@E?iA^;~0Znu(kJ{H?uscF}g9tEcqez8<pVe@?eF~8a
zNhqJ)43|t31pvDo++eFjh~ZTuoI+MGGc%hHUc-#`gI0_esaGN}MRXay#y+;Rg<x0P
zP&E~H$N5hz?HLi-j3h^F*TO2hQlwC1U{oliSj3|rEsgNX>&orO(JIdQGEzxHO(LHo
z-Edqbm%y{{*`tu__?B?(ns9UmVx#Q912gSFUNby|axfUnl)*z`sBbMH8wf*1u^cUF
z5&?&G82yc{oTYCu;WZ7sHt_+LN7{(f?N#@xl&ReZ#+H|$ctNo%tfKcsJDW=z$&3he
zBr_4m==q*L?vr(lhyd~?avnfss$aZzicR{MVsyKqa+Vr}HB*1uxN!#}-SQN}k|o0z
zzCfJoHk*DC!zAO62q`>HK(<FyDGV_EPTL>pJO_g(%Dl=-|K_j7L<X5@tXKN?c9A@{
zNDU=d)|4m#7TFqenb%|^NU<!}0A367F?%3na!H-tn8YU%#T??PO3;n)qItb-=M$MD
zd9y?&R6fBo929&y!;7AuJb8e-^gWssuS7r;LxPSe{#{8|+xjvkiadcKs%<$;=!q}y
z_}PB=5nqbLy|PXb7|9Pn=FmyK?Ghmf(VdC3*_5aNy^XXi->rYd?q9`sa6%A`IdnWT
zarYvpN_RW_CGBz~_oNUB##zcw-Docn;U7CjgsYNi`0tNw5KofKvMu)Jue28T0+G83
z2L|kVz3qZD%*-LITHbxxz<DN_dw;hbrC3B;$xTSEF=;ErmBK<Y?aZhxLEdI}kXsP&
zh@^)oF5GHYCMby)$c|7B>C^Xh)%MO5eho%1{IP@utP;^5pB^^4@4s!6Ji|l;l6zGW
zWhBA^YQl-(x<t7IN<_whlq3#)%6@K8dw#9{vrq%w$c2g6JMk!c=`cFsaU2Sa2=jc9
zx)f6WpoaLvn%kKV(W|KM<Xt36N(7>Vd$_$<=&BS&5iU7&#M#MXNFr4SueEuo1#}f;
zWQ1n24RsuAC{^YrfItb=c9_tPkQ4|8Qp%(bn`t}tWiW`PO$;Bwg_8-pFy}9|%Lmh@
zjGy2n(26Cw7GE^<w0+0x3s8d%3Ht|5ghL1b3Op~(=H5hn5epa!<ns`XiU^qnUo!m`
zcwGe_7`TSYKrS97NS&;eFur%oynQ-!k%0bYaA%qGmwDdl1$@B;hp0{Ra!`*!2qKX8
zc<+?sv?)1I?5iLVkWx_+$iZTx-XllEIzpz7Nt{LUFk~!(eQ8b|;|=JkEz2B$4?tu=
ztz$0j=Us8I4g?;;!2&wjyffIVKe73@^w;F$1Y~g|+?3^YK3wbM9W9N}|LuLfod;1U
z4!YtvPy@$PJP?+IM}uH(;}(bf_P_-1iicDR9~Bj>+eGdZ8H!3iw;u0ZNtO#%lF3Km
z!J?uN4L3PTu3tv;LL!o<gG>#;Gh<axGJl@u4cVXo6sqT%jJ$6$+Vwd4SSwzo#SP*=
zhFFB}9e3g}?vF3<CQ1U7f*eueA)1a?V4B%+tQ+2@f-l(H{~qho@kZlml1pACoVZvW
z$rlDmUv-MBT-p5(Chs$55Y@vq0eSx#<L%>2hc0t)5fsc-!5ZXkDdBemesFhv9~2c@
z5o;oVA(%cHS@)0Z&l8lu^5Ja6<)P<-yo5Jgoo%~{`Urmy=sYUtS#OL^58K3jplu#S
z#Au@^XW?m0gu+c9*}G=Y8Zt>Fil-6+5BJU;SK7x>DWT9J*F+@`3<>sPj!ztEADFD=
zLqfGv>709;y`pC0(RR=P&I2JJ<aChDkb8}5gq+QCyX0`>*t{%&hmy=Sb@r)e^v4C|
zlWUszv0T8fpKp7g?Uyn>$u|m3CYFX1tD1!O!_+_qfxN%2vd2&8vP-kiEs`A9>^H0X
zRSS9kaqg$iEv$d3$vAq&jcReFuH3-86=FQx)#fhK4QC*(!Qb^c@|@qM1i%alhXHdH
z&><49W}2-H?)no+)GAmdlgki}$@P<L?i}Y1C$B2v>Hu;`R0*$1F^8ABO_L}@Jdc8^
zBo{QUAic9(&YAjCc>v2Rp-}*Yu>z)>$I9K~1=LA!5L;1NK1FOSkj|Uexgn+6R3UFC
zc3Wb|us$3-$Q^MG<%Hve!@LaeOT#VuuhU&$FrOLCV3E}68GN#2^U_(aA(tTIbkqWs
zG%O&CZ#25OA$}^lc05of3V<_kMVaRIX)c_k6$7g)%A(~|B8M`vGcR_725Of@k?O#}
zYH^Q>3i?vIc&q}`)o}#1WS$W9N<FaL+?rVJ-DU3bh<-M(l1C?kBsWu<nLokpf2wu^
z99LO{4+x+Id<beYFVwnQll2px4~z}uBY@>V$2VnTUEf~RV7n39kwoKW0H9;szuW<`
zwxni5-uJyPvIWO||J&U1=^9@>j`b5CCG@}P=HMyrr3?_q1qm4hKCJni;abA>kb=0n
z%#1^WONMyMutg6Q1rHh7`A#T%=j-0Ps}gSExa9&Rz`t-$lRLc7oVO+5p6(_Ug#gUd
znZn#+vu1PPng3|n1c|y0Pcst=N1LBE1|IW&Ssbb%AgS6EpEkneZVsICtp1h|U!F44
zD+5C-6DN|arv^8{TyyR(f&cn#iGy#*6ciPkU$+F_c~ZX_q&Z#&4K6g1&4EO}oeANI
z6Qh&OgxtaAg3W=`pYj{Wp>kTeDH=E0G;9t0;E$t#Y**6a08_9fu+uLaOeV3A89brT
ze7+@+{EU8_1HuJjQcm#zle{HR{#3WaczB`iRP=S>T4yh|!+*nX16wvq5FUegikOdk
z1m9lXRSF3Y12aV4&Dj#1@_X;#lD+iT8qudg@!4c<H9vL>9<xrr81V-|z1+F_YB;TX
zuyRvZL2<@<MnDrM0R<xDeRy!lJZ}!i91A5FzcIj8Zb&w4?2*CeZth*eaW5imX1EUb
zpGXzloWqbl%aSd*1Y*jKmWBj#O2{wO-2aNb>+Ck=;!yGTZ2KR|86dt{C3yX!vghIc
zoc-;IHoq27`&Vb%=g(<dj{n;p%bCT#v+b2_dlk1X|MzoP-QfgbMuEoRc0?3<reE-p
zo<S)`ZCq20aabJDQN%Fm$zJgM!^wL~4i7v6St*!|yqAu?#JxA)lkze3NL{$MAlZvK
zWWgl&bCXu=`ao=@yFS=e&R$5l_mTb{04TMe(~wZW`7_<@h29H%I*cnGWod_sz~9RP
zud~Qxi=P+`3<YLc1d$N%VdZt;slOITxFnyWCN__^i@ekBPAG@j<c4Y?KU3X3ko2A{
zM*t}<uc#^Kl6~&2K*+O|oODTChG+<u910z|w#U!%9-j|zgs?QQ&F~L^V?6$ixBYAi
zaqHlx2zX-41MV-yOdsuyT_5{7Pd~EJ3H&$j7?|Leb>8%10yrcn9BsO!@dO}CYWD5q
zI&bJ+2@&MtJc5RbHADfIZ4R7nFUiMQSZ;q&TtVRhCh|-tx8OZ3=ILG25QtYM2hd5k
z>*Urh>?RTe(-Vc9c<=CDl=Q^4_4d)*JgFOnPC~5ik;G6%8I9;~z}3nypUp(T*5Bkz
z#mo%r^S_tp(I5S7+7((iyrw}=$?+&B1BWRnv_tazau^kFF>wZ`PQ34G2HVmctt%wX
zRFIi{#}kGmfjHj|x9>cq)q_!tRhKrFNmLD=LO~@1>@|a8-N_*Y0FNrXXHv|kW9>WT
zT9t!VJT?**@Q#u8hoM?N2JCb;Ggb+lD~^C?+6yn!O5c4VJ`j{7$>z)wyLz}*l9P>B
zl6uE55D{PcjkE`z<@bhJqaLRdMlS&!LyGN%Z+df(8%Dq)Cdx9BmqMC*v2%}hd-ar>
zBCHo6PQ&D=k^|7;z8*h5&_k+5MY*!|3$EXNM)cTnynZo;TNb!&sgP7t4_@2j&0bo8
zHfnODR4XvJnS{%GRINO&O+#3jnj0D%ome3YAUNm@izPU)phqX#LIE}+JgF{Bt_W2}
zX8>BvaT+~8*zx+~_FPNE_^#Rpc{S4}Vtlf>Z)<SYv>x&m*>@p$DHkRU+|Amfw6A=z
z`AwB)6E$4M=F{NGTaJ@t54jQKYz~lU!N{R4(Vi!H!9zDG6Uu4MlB<q!Bpzgk7tRdM
z>Q9Po5vDMHfkuU4#hhI1-naojK(0!zcl0KNw7s~>4anp!;4zQvjFYD5>;TzJHOFpq
z$4*oaLA(}m{4B4i6$PExj?zrOZEoc`dWFm*K{}=S)O)c{@U$J=AM9s!7^E#fTA4r~
za{uiUT(#%c@XCv|#=rn#L1T$$8?Jn2Y?HHN=ma(HA80viK<%g$WiF0+oS9K3n1WX$
z*BiG24vYvr=pX{YXXdG^W9*ZWSXcNxRp;+?3qRN24<c<H{EINfdM-GQ>|ZAYvsP#o
zU<Q?ch?a}vGqO+c^Cgr@_cb6(q9=fr@7F$9GGBWbRPzT6H7ZFv{&3H|t-l;X)7ZoW
zit2}>f>(X$dtL5f3<Jq-O82TwJKhD`f2`dv6@SG*4sT@CNcgZ~r0gDC`H{Ag8!n}m
zQ3x1f`|sT$-{@0&zUYdWy-G<hH`o)yTAYh^MZ6GDtBJ{QL&#pyp9%#OZa}pmI*Rtc
z+QlE}i+^Mz9tm)Q#7VL;@>szMk&}?I)?To@i=bqnDXD-4xwk~M`rL-#=pBl=G!&>X
zxUR@|Ty!YVRt3NGYg&B4vQ_*V?Ekxu(j>``L)BA(;7Y|^o{d=@Oc6XL-UzS_ao3VJ
zcJ_C{f}gs70Vf}gh>YT;4tPp#rr^K4gSYiqQ80kZrlcaK*#H?i)BI88&3OK>fgiV%
zGc!KiIztMVQkv->3~rFL^hDN%NVUw%d+*>Mg{~2<pEIp)n<RAEFX+}JadHr+aWiIS
zavsDmn_)g)XRq{qu*azcEJ7_ch}v~O+q2emt>h7;+5+B(5xLcHsgQT@=n1xZcGo$`
zv_%aSbq%;%;zWmr8o#41KLk5xIk{Aeu#8rcEsoUZl2$A$O%BbPo4xIyb5qKl%idR3
zM-d%b{sy+2d6)O%2Q7XBJICT64G;)1?;h{+x4X%}MB4y(qXhJz?aDCShS~M+b$y-X
z$DK*Ml%^Q-$#Ds}vurHc(6A^e3s|D5;}Tvv$Z26Iu$om>Jhsfz3lhq^I*Ay~C3sK5
z#xyopWXM^^x}GJx`l*6sB-o1l$0Dyi@~pe%Bh7Q2+fX{0_^A>=I8g{NhuoXorZh}{
z;$;}s%MWJEV_DvsTeiBQA)1E<`8$@QNWviFIcaccg98$0k8m!U4OC8eTK?&d8q@Y8
z9_ao@eIPY`ELE$&y6RX{U$(1Ocb$V=?TZT|x%PQ`5I;$C?S{K)|MLD9d;@ML=GxnX
z2X+ozhbZ;H=iSe#IQ}{=icz7dQ3SE9qq<)jrho^01=k<IH&=J>^+@mQSo$Jv2;pa@
z;^Xdjc0K+X?lD|=%LtIe%p#fP%&f-)LradE!~1y5B*C&nO5&J&;jY{_*cy-%DvSYg
za_5a|#_4468MnH_$5=_+l8bw>hye=3m}wT=;ZB(ym_v+EVFS7)Il-(Q=EQ~W4g?r(
z+u>1_d5DREVm5}{kN=P&qIoFfJBts6Ag{4F-BpJh%V-7COEER$+|5;9>p>!G?s1R=
z5%^%Dt;WtS?J5Rkh*+BH2CQ~zk{D8;cAIXpa}cb?`;uZkyU%7(wSR7~^R?a_#yo=a
z!kd3$ghcW(6<k(eedfq^!LMK5!?)Zyv2W2k4CLs;g?X2XP7*fp+=W(@l|>-#fx?+s
zBCvHl3`FTFSqI)b)?PIn7K?IQ#A9+uf)UR>mDtgqLCzt{34g=463j!!SkuwwjM37<
zi1-&!%#k%K1Gd)?E%r6QQ}N1Buai;~?c&}+U#!c6o?YvIjlrfEcn_AIN0g5A^e*=1
z5!yt4w83v#M1r3>+4bmz83sziLdgxs?<FJ9Pu4y@NMGt`Iw~WRSm^4~TGb-}91bU~
zb_pkR6}L@RQ@x@8`qK6tjN7BQ@8OcqIYA_0jV_#HznzV{B9eGbd3~gTZn&$_gk+lU
zueJ7hb<S+%lAIRzBj$9-YpMb$Q%*j<2id0m-tL*x(LAB_hxv)WA9lf1b9NWk)Nc2d
z(&H_m^=#P%gWTn+oXgXTw*ZKIqL{w-1o!aq47aW0IX%W5&v$pPW}tER>K0!AEKc0(
zKd#h5C`CQe#!ViF45Fobx;s0yQmLWFiTx7Cl4d-S^k$bzSx|A!ErC07zC@uN_|@)n
zBZE)J&>C$lgK6@bAou~1@4J=uxD-#AzM62L40OZj>7g^!sa$R3Vz06f&fRrk5w|01
zdFUL8<BPF&=UrMi3jZ{ozFZlk$RI~Xr5*7+6<FRRT`Es4OleTo%hT)`x3$0qtj1Rv
zYpp~O{x!vp-<!*cgu7smlOVl1A_{7TkuGuLtIO>j2U5+E5l1H3cm`)qv=2WPZx4tV
zqDQ&55aH;{JIDU9UF)!)<Cvoz;lQ5OXm340JCc_~0MiD^Lu0j>=835`*B^#pl93Y%
zV+gkkQT#PFZ8K9Mc2ywr_y8V=z<2Boc1T~EOZNv>MQm9)uSE5)&oFNl+YURr%2RYe
zG#ub&t>Mhbql=Q-b8KLsewkCryDF>zXq5kZkez)rH!)5u=o0CNsiM2Q&gLKAO<I!B
z*bri$s5qr52KP^;9XW`mFbT3fp%PLPBa>0_{Kd9+gSM3?CRv)|NjvLmYmU>V#>#sX
zF$&vmiuopNi-Y=G{5tAsniK%!_q@P<mZ_ygqlm;MH|l?C?b2Rah=NgktIDNEt@^#r
z?zGytsQ(1!Q+yxzrfjNx=3jgx7Ap}00|UwfV{yAzO9)ahGDzOh_JeNxgy0{p2o?$#
z27Z6yU0#nx>?9T$?sa5UqIYC+$8PZ!+^sDRLd}k<R&eE@xtTrf<U}nm#DfW8NwAtF
z<opEB9-8eBp(MmpQ9$S99>_9}pJ;ze)*5z~=+=^Q!D3-l@ZZKxwz#v_jSbg{C!~Bu
z8lqJ5t+CTsF%FVg7clv7C#ISAzVs@_QYt9nY6@krndadw-tgOL1p^tOgmoevF+nVl
zjH}=N_Sajq4oV0?`e=!GmZzC}I@nigwF9UTON|&_&ADHAYp>S!#a{{>JXkX)c)(6?
z^>q}B_oci614wK6k_Q>WhaaYyrImKj3Ox|HtVt9JNh&y71FGzaKWW97TA~NS0l@J@
zFr*f}?K#!<k5yVbD#Xi*hT#yU;=P4To@s80*yOcZ4VD?MJv7Solxbe8wWqDrav&x}
z$dDR!gKA%Gzy4Cs1SToySn*%r0jZ|bS+;#1Q$Q&%QL<u9gW@s-;&H!|>^-A>@)zwp
zmAr9Pv%?-`nEj`b>QSq?d7wxzz-d-u4YUDXv^Sh%&*<mVWeA#=hV>MVDY0e4b=mSG
zB|3Tb#b*d`NX&r|o4#1*!MUr4ESQE0%%O;6UXb<9mkU>mIWN5{?B|=bIHzP<l-nO4
z>;PGn0(oVa&3H<q5k+}@x?Omv_L|2|h*FD2Ihrp_xAWl_G@6GK2&Pe3DmAn_v&z2u
ztKS{NXOr@H<S5@l&ePL%_h(vN0Chq33Lr^mFpSg3+NZi`XH0=@uL%c;GKJyP2sA6n
z{<6(kQ*FoJ_46XuPuLg5sDJD16@SNu)7Z#h0;2hbWl9i-GH#+UEBxO8PY&!l2V2e?
zdPYvwKdH8Ir|$GvG>wQP@FZl#KPTDE<8_<$*fg_D1abtHBZk}0eIlTr#?VBjL+)gb
zgA&0zC+HsTY7d>)#;|RY_HalO&nGAsM{yQ2Qf<p_+^sxw&*hx9`0r!nN5Aj@^tjy4
zx2M?S{UQ6$E2b#nH6&F$)e`Vn$wh!V6xdI!sp778&4J==sJ9s#Q3{v!$sZN<r*(Gf
z0)MG-OYI5ZCZ3y-0DK4a1Iy03t**0a>-kBt|45XDW{-|u?SY0Sm-Xl<ax9cBc92Z-
zSB?F4j^0dY1Vz&&Hxp{mbMCf7PSxKRm7uWEZDGtn=+@fEi@Gi1%p2A{9RUYtQXDo2
zrliESgH`jF8jX2ri-QU0kO1!r+sD5S<W|)SCDYt-mF?;2@8L+2!#2`<{Ip57Zfd!`
zi^0U3ERnlGZUFp0kheLEEHggmlkH0<GGz3BAuOumyn!AV2(?@7X8&p`Bu#`~=Kk$O
z`qs?!-L|-SE9ov*Rp^;Q%}h&Lp)fBLL3ac>$`)>~w0Bm~hTiNoKKn&i%|$|n;l<}^
zO<Y@@ozkqWMh&Jf?Es#drIAW*CD=dug2TV`LSg2RYDSQ4iMVX`3THgI$a=r#tvwV(
zWl<`ysE`D1`#fYi-RM1-t>s12qC~UDY9Ok&AM&<mY7J4g2um;uK7m%xz1=&;|AgSf
z61;*%6+kZ#Sl<`D9=|E=<wsy-5S2nzoO`bAcaRnj4mC=;1Ib7(*J!`f?59U*MV`NR
zx#;df1P;gr0X?RfLu%|vO-iyO!v2K<v&s~asH@MCK#IX{PBv9KV<X3f?aw|R!!IDl
z-grRV19S9wCKo*73r8%FA1TGxT&A3YmNUhK&$LDB=uA!&<3Ky2w#{U7ZhzbGH5GC^
zMaT*WamshX9Fomh8Fq_f8VF*#FO_;xVL4=@`31E5{1E#@lJ5T?;D9CBpitl_gcP3?
zSc+<U@HzSmW%d%h0s-r-wQ`!hZiH6l`s`kKS&C^_W`~`@Zj0W9p~6xP#%$K?`C4xV
zVAt%rP6L;~Bz#A{NwU`*-eQn}T=qd8b&L^NC(WGS&mK2mxAssQ#M(p2RUjgsq(Q;|
z8OmAm9qsWj5AnK!Us2B1eEEtu^&6VOx<rCT#BU^oO!L_|d+EcvkGW#6mE~vA<;{xM
zbfT~^i479tKmH?x^}$=0&#))Y(@!Sgf+EDMj08m?NiDt^X-`6;fS%PL3JwgpW{@eX
ziROfO2=1WMWsi7+GrEgr3J&St_V_|@2#^2J>-CNvl)~twNimwoN^|gyo_DI!JR7OZ
zgxudEsiWM3{Go9)Q7?I^`)i|vN&Xtab4j99fzlEFHgdK%=n>tjvDkmmhO>wI+D|OC
zWAn8_#yc1}UC3xCW^&ON#bjyjvm|yvI;osWA*>_C%rCK@z~Q);dFg=7Du}RhIQUg+
zjXmo(<)(u%N+>5|)8Ug@o%90{WmIZFjfbP<*>+Iuo)!ZoOgWH;sh*kYDS=HW7mVHI
zkdEBCB2w|(y1B+4^P}#Ctg$bliIZ<6B)}soi6HvJSY?kGUXo;idnRO4VsPvND<rEV
z6&ljf8!?P2<uo>mAb?ekR9@3<mE2BP>A7S|VbUxWA-Lk!KoSeAonUCq^)7mzjl(D_
z4;l&3#rp<b4&*bwk9Y7xT1S)<0ecA9jogY-nPHkv@Xo(qD|1T9S#+YRkVc5%Ms>zY
zew*r@Gf%7WVx~#a*y<52LeyjExQk2o3;TPw{kNNVNWrMYjE71E-<cyCU586s7h`BO
zs~TL^MXig|nDcw*x)H5^O>`v>*9Ld(C9QvrJEG~-;Ci-c1Ot!>HoEQ?wE8uoTDDoz
z=ti91syGGj5_8_UuH7}Qi*Xh;7dN<3m$fcVLh-bAhP$oJ0C8$HFW0+2uWj{ffCth|
z_62T3n?}fBU>>V?v)hbYq5wuWy5X&hVZG_*`g5JVs#V*<kxc{RzOq#@msYaLoas)!
zyj3wqB9eQ~a4Xu3MB<ts1hiqdE<xBl&z;n!OHl?)XVcnDUgW?24bJUWOv1?q_i^h@
zW4*J@qvyJASGOJ@Hd6CIy~}ProwOt(m{-kkJ7;tg<#kbcnWP9<d{M%0oqTP!sJ+o~
z1M~Y)L&7BiCz?&P@DLyGxRCgeaYtmBZI8N-O;9RvL`TQ0q0Wf^rK)j}AMu>J<S9qu
z_C2<MKIk#`gx`X%KnslI2<`fu8}!9T-1~p)=Qy{BnvyB88SZDdYV)33#TBEu)fV5N
zaccf%Xf4{_$vkc0lmhAxclf5t6?W3O#I(txE01ZDnIKN&@&cfDaTI#(V|US(J@<}F
zg!aCSHo>!Z-tXUe0=H4Hs)iNfosb^jb=U5O;H633x6%b1#h6Qe^iB_TFTgt#k647B
z!0@oDCkuuH$2ZxnJzXtP*cuh@8h0*)yLms^Kg9VK6&<<rc*3AR1@jel8rs`FU!&+<
z<A6ZodBFQf@GZnd2lUM=lE_hPIDoH9?t%;;Rj@ApWtRfP!smkk9IO!76UZA`jl6cf
zwgR$@!|XQFVpeQZ;4LaM0<`z=cE^KVYXzkn<mv!p3;ynIZ=@93+65V$ks5#;nl29}
zq;`KB&iQ_2Rhh)q;lvbx8J^rRIOcx7K@6%{<=2qhHUR&N4hm`?;zU>jlDYVB;w2m4
zu{t_GUNv?V2FFlfP|Y^(DsCnG?gG5ZkID<4GE~R+zUZtK2b#kYz%l3KLxRs%Y1P2m
z%59RDJvo53p<$=nbbhzDS%@6+7_ns-JY`PLJ`!BCQRh^=ip9bH5<n9^_^RMx*#JWe
zg<!6zU5!>;+Q~FMM+Cn-N1Ny2P$gK-DFL23aV%$m{IEA*JO)KBCBRwV>yqFOV5wP{
zA*(n8wG&qXcqMCt2!89a!Iz%u_BKb3tU+L4V{qkRBM{S_x&>!22?VM9Xk~acv4iOW
zRHn9}$CFEGjPNFm#@K5lF?M#cklu@z25*0swm5uHfEe+(@&UO{G2a~=%vq>4BUX{^
zGQ=zq1_H2<8x9Jdy@Z-9Gi+P6PXWkx3V%IrNU+}nOcQtVZIUGndpEwE0m2ri4h+6D
zteaS_@*7AYg;d5f8Nrl0YSLD>wLfN*-KvsfRcce4I4x8@4FgbR!iNXLm*n;><**Fw
zm~hcVFJ_7x9jcRr30apUjOm2YjgZ=w1~j>DzPQ;fOTp+S=3V?|eQ(>0RFHWIgDG@Z
zCgD^oIpd@f2VDVJg|Kd&>27#&4;DFe)Prtv^V0OA!AMcOzXdg#w|+*ZA_NzYbA{h1
zMyCL7iXU14|4GrHDNteW40qYO))1cH6pHR3&sDcq*v|rhbnpl!o1oa4zZvZ8{*+5_
z?|`Z9hNtxJaoB9c0VpL=GP7*2at~0>9OH1X0yzmHQ`F5Ah)?_^c+%oG3{-rwG)sKl
zP44c0y7xgf19`$eU><@eclRUqo7r8%6c0xjVK+tIFlAHRvD-U^aa}^ATOFQmOz(@`
z4Go<IH)(LqYB`dk*~7TF)E&N2P4eh6pi|5r;(Bo8m+t5znKT!LLec`SP1v3}y~;gt
zOZR0sROApbX5I~Yzvp<%p!e}O#G!jNW1sR?Y)lXz^pQxelmJykFLOJ37jNk-!uv=x
z=W%l~YuI<3-T%$51Nq4iO=T4dhtR2NGOJmy1kaKLMwkf2J&R`|?oj9=(W=f0j$MiP
zjd_6^3_Ej81XyJrN(K7B5h)vGZKio>vG=@)@A^9`RVO6EG+NJE#5F=u`5ortZ@e|{
z>hEF_CD>J>*Qb{4eC%s)^ebAMCzb-d4|$WwhiT?NpL-j`A}y=Tl9GWe%1c^4OE!ti
zydPig){zTw0IA`{+eJ;YM|HC^XD4)0Z48zQPREzi6MFS=otS4q6w`H0h!gbljD*2S
zlx4v_sz@|j9GT9hhH4WMPoNaDuH<#W)2%L{OJDs|5+EBhV@ATpWY-p86_~yE-Fbpd
z4R^1=b<+nFm2)H4^-T9UpukX^iDmrkBSw))oGcz{U<AExmoM(x2MLbMxpj3odE@&_
zRET-tMf>qQQsiWlPZE*7!cP^O4#WCxj&1i<*Z<+TklpOK07gc*9>$LskmQN|!wbH9
zH~tLC7~&c+j$)k)@HCWq+{SPoDGwIism=_z0imx|{~cT|I87I>uy=mebs3kHF=r0;
z{yv<9i<kzZ@-C6rm?>&!JB}hcfJxxgSE3KZRNP{c%z3YQd;6Ie0Z<QBH)&cK*8R%+
zynn6Y3v?(eO1P`BX(C?`L@?7Edp_kYn&)j9YhJvYYO10dVUWyrn_hjq_E+<3%;l)D
zFjF#}6b+~<?B;ctr%7#4KM<Cnwyc!qjE_*%FEyo+i5wu&9kfVWGY~?XDylV-@*uHf
z?(gM1OAmtNf?}RP0$7ZsuBo5mz2V1Uj0o3Ek)KOanYBlHYnSWKN0x-Ph!I|xK(8CT
zdp1(KTUMU5cvc=}fTfkV3xH~g5UC6lZa}uuu%&iAy=s4soG?ZpT0adXcsl6iHEF9T
z@x&L0XDN5K@PmH8dACJ7=W%%#i>@4O6c!&%nhfUF4tDcWKI7CXkO6~KkNyk$c#E#n
z@?83;tXhF4QCES(Hun(kp7(V%<=LDw8RyUqlD4`sz=`HDTt0*Km2_zXp7wV7V?sxQ
z-v+7>S*(9=@Sgjr?QWpWeaO3S4P6p$7Xp`qPVs0Hf5c3)`kjR1yLIxbFk(!Wz#Y7k
zfEfF2QNr8XJIeUQ@&w_i(cSEy;;p%HPpg5)n7<mtt_+FPPDNse%P{yrJ_$W)SQuiY
zcw8r&d*^$r7k0^m1CHe<c$=~`;=ODRn(19!MvRLXu9PA2ny-?53XlPcT$q^CX#ugI
z_9O42kM)P#%&=?*O$Gd`^ds+}Ma?Y)1SpCqMk0~m5V;?DgWr#RL@Y<_E73Wd553zK
z>|Vq1iPf|jD%zUZP}^1{{jZAT78Rr~#YYnLGq1H1&-Uh&cFE%rB}q*ySIA_CKoD|L
zQ-~`{HMczCnP1!NDaRzfr>)5=+w3B*mSmR_FQ+3Gy_A%2RhoKA0`_vB^zPWCJt!4V
z`9(+$VnA0?*{H;hr8(JLcBi*-<!%Ixhe3>>{ap(Ti$J=3kJlAyRR6SKSB7XeE%DxY
zQ<pg(Q<Uy2V<DL`&Y0x$UgRzOL~D!X_CTEkS%@~toc*TP;R&r7j1w2dl6*PcWG?sa
zT&=~Tz0#Fq%te|!i-;QTwe!F6ZuqI~hpF)o+w2`OW^7aC#SxiY6WIdW6~B4YWvh4X
zvD(fciAqu~DiCRA$U1NHI<3f;n0Ah_7&*;PpL+kko=wHmQ&iH3{rt9Mo44-)Z3mOl
zVlZgkP^6MSI!+#JO>m-@IY}ea<U~XQ@5)<3j5{35#vHG3xHia%MmHqkC%D_73*@r@
z)?2hy>v-lh(>iFYrrW1p#(X_|FxqJO3><jGv6JmN;X-f46s>_VmGeTYf<{pnna57^
zY>iH*<+5bPmxXoo#fHjX&=Apky4iWBH)@7<p9Ak`&}_kQRd$*N%{7a>FTd7W2uu}d
zlq357`l(mHTn9io?!}l^cnm#xhWDP|mJkbZ7<$+<(a`+-f%ocMZAbLeK7YZAVY)By
zMt!>5<VBd-b<i;a)u?tC(&RY*@`=~(zs*gRK=gs30kBJFfXf1TGK}&C-m9=2pJ*z%
zU%}>tL3EwsogdQTk)niXz!EAo%;t&`kFc*+(T#EgcF*&=`n&f3^0?#{JWgf@aA}h)
zV`V^Af$kX<ovi=Zdt(v4pu*YxG?h|XGcS0DpNKU-LXK8AI)X=%Ipm$-dfyFnI3B%X
zu*L4mWxCIE!5i`Q<N(BSv57C#(<MD7`iXnT3NMDilGKVwxu=2?hWOGfphT-yRpKzp
zg@kJK^We^7$iz#KKtp{fTw6gB2r&n6RL%9<g4_M^3|m!Iy9$s&0R{y_m&;&zQ*iqT
z&EPvcGzAw_RG*m=s(0pq9uLl<BSD8lZpJi`Es3W3e;ph*T~omgBQtQA?j?3V$&|ht
z{P9IC$I=-~#Y-zW&jvGNDQQC?boqEN^W*C}_E<Vsom-1|vJ(N5p{Z229o^%~w<)H}
zC^(E_<q@Cey^iSd&$BvZ62i9dlBJ={)xir^>dFlvEo%8xB4-G@hnk6(E$?yO82xGt
zVhc)QJgy*~k@JHohiNh6l+?-MV0O{B!9(8B@#G*vM0pW`evEc{?;c$b&^Zl{Mr#F|
zQJ0NCam`P9?-g37>!6;yi1J8+Cp{m0b-32#!+-1XWn?BO#HhOH-C$OGtwJCLD?^~_
zWjz+n4bIG_9FNy%Wd+s;-i*>o@72LKKB63K`w)TgqPdoz|N4CJp`{Er6_@pBSu9B{
z@WQMWp7U2kw1*MVnyOe8S36&w^?dMv9Np*`l}XU->){^r#_8`{WcCwRs{F@;@5NF~
z3+O#>PBHjoXdwA5i9JS3N?p-0U>(4|#Of-KJ#%UB1*gpo)$Fy<EX(`hQ^CU|moaGt
zV+nvoK0ERG;1A#GEL!LC6&d}G{{|0B)pjJCaIH`|4=g?+GjZSI_#{|b-f}V|UWNmE
ztUXn~z(2F1+)s3!B=8^mJ`uds&r};fqCy@+=LPTfGs(7?xLn3nj|LaX#8WlBy#zN4
z4Sw=yu<;~HCD}|l&=fqW>sb-rcJOpa)bv=@f%MTWGj%Jn!M`32ZtkBTXhH=zF)&(A
z3+nvFi`=2ND98|j=n`N6&8207FKG^FbR}2#HN>V7g~KO6JtvzUGu*OkwE}OWZ4y;j
zR;yY(0@%~c1sA(5*J$maojku0V4^gb&U5IwMwjrg*5t1$6Yp$B02<@MOWYUt`NbI0
z@eh(~h(Hf)<}=;$d$fjF+;HViaqQt6X1U}-ci-JwQxvV4PLe-vR_yQQrEA@1@h>22
z`89fm5tq3Y*Xyr`i(gy-6UOpb_nD^lQa9i(tsE&>?Gq*76Z;%mg+({JxdOC=W~N+F
zK+3DY$N?dpH-GW%?rFjG7G)T&d48HzvLm34OSs8lpVO-FROVj_c7=Yk<92t1AZH^S
z!Nqv5GX$wYA%BNcFnJ=qW&O2Wn(A|d>-(dAk;8^*c`{MTX6AkFCjq$z7)rvdX(mIw
zf8M;+?dz{EMlmuuiei=6Y~IMv+~z*q3k+~{GZ=^BbA-E^+iq~@-Jwn4G_O7IV#zY;
z7rAkNYH=YW!UJhixJ<jjOJL<q&fV|Vg{o>RBS61oNH(lHZ*=4R?u$?kvQnUrvr><`
zfFvo%z<?~|Aj^Rlc(Qr!4tL_dI;L?FSp%*P9dKo(m>=(UZ~mm85E-k4#WHbU?!3)i
zyh_WFrE0^Ih&GW<@Ec!ne|!OpLJ%>)9g=lWQ1!36$0^J`b}M47nMkZbDgiZo!2Kc#
z7BWm>gbnex9vyXt>3@?u%O3)%=LsSqGEz5p*N$*ymlA->`IAjV<?_|Njugz&7*7qg
zkx6KRUzc=`ds;#hSOi23edfdNfkc>di^CqM6$tuJY-|j$ZyEZhejQ3fu+hl=n}}K>
zRD+imYFSK8ymG2<bDs&a8>-yW@N^_NmNx?w0#ST)dd_cI8U~(4gHAzWn><U4hoJh9
z0m3b_P3FH{<(pcZyN#13rO@RK*SUqy_&=6_Bzk16q3<2<`VDjLSZv)>pvHKN4ZqAi
z@Q&8yRYru#=yd3r(8#;5a2G!xYpj~2jJn?-;b)pA4()4NGf;9XVqamX#L!&f?s-{@
z$I85T0%Qw5)$)to&;GB6(7(_)eIo<IEJnVhKhF)7$x346^mj*+Da||2ja{U*f+iP6
zZ?@|&b2?%>7vF3F`^hrzmb*73-GORt5%tUcsrtk?<W5&4IWwqi$u{6N9d2@cU)37O
zw3!1)FxL}TIZZbr9;2*IrSK<kyv*dw{h@QY3XQVRKq{KNYu&e!Yk*U}&BxBl;KghD
zUh9V6s>K7VcsrFT^1N{DG;{m;Zt=xhC1#rD)t59QdtK$qd^TT*Ue7;NaLi=$;MMN)
z2mR&%=7S*8z?4rnfqF;gR_VNGo4hk%q^$8vSHv0eK$_=Sswft}KIQ@s=x-(dL|8P2
zXY)g&JJ;u)1BFA%R8d?ny~t^9k_;j|ST}+xV*D->J;SuC+zUSW3;-@{GKwD=_tK}d
z?VQR<&FfD?hdk^mBzXhZnQ+reL>PFq5VSmd%%X?gYd(t{*`Q?3aRc4sdN=(mK0-yW
z4%-M_lKtq!8{JSLj+Vvz&$t`hzdqG2#)TVj`xOZdv&MC<U#n8ym)O6qb(-jc(~ss5
zb|FX>ru)C$SJIy#_*Da6h@FGQ;ch<bLU)f(tOJ!+_0pjsvX5NiIxf&p5WvJTB0NMu
zd11+CFX}3ZBFVvghI=YPKn_u>;zTi>w-(raWUt!p?n(0mjlY0U4`LEHIP4PvognWc
zMn3z5>+(}CK}RSq=gG%S$D=O8Tv_b4pG*h=D!P_V{^*2aPX4>qa5{bWe`<<AgF{bl
z{<L2e2j(z2bk+c#M*zN7Td8)j?q2s{LvW9^Sl9l)+N^jjq7|BZxKmFJ1_kg$@@;N-
z+8zJzU;?{1w2nww<REj?jE?{PzJn-IniY}RsCLHP=MDOyvw&8TWE0PZGH`{*1kRlw
zn8bSIqMri%y9$a#={z!EKA{-62qMYESI(Gmje(UbDHFqh90>EtX@L*rTak!y;0@$R
zG68ebnSr|h>Ze5{udO0q_DPondMwtG;_@m%vNCVf1%`h`3F@?P&v1?OD~5)BPYxU_
zpGsIO(fAONdFu4QQ46$4#)qg;hD!*5PG)IwAk(iXMuiu~PJo<6q_Z*k;{vyQsNMO)
z8c#lN`QpC1Ky-<AiZDY~Ts-I)%D%$_{pM*0yg{Vk;L<>3p%&l_SVk6O29`4^@VnpS
zP~vo$`VX~%4&P{7LkLV_*3XOzRL%=LsAdT{?8=kmAexkjJGxib{ydLS<<v!uNjy9F
z;57;TS+-HXRg&L9-lXQtDZ$sOG<o=#I-yw%vZ8gLH^u!;=5RFgH~?uR4^~siU`SWD
z@Nr-z)oOs62hV)GKshLQ@?@D?-br}xYqXVns!fa6a-fg`@x^Uqb0sbZjk>WtGrDv{
zG#N~QkeKCFlYH>r_WR<5j@)2mxFF0_Tw>(u)9FzA-D3$IIr|U<VcpoS5ZTW7%{%q%
zgpPDR3JtKp2cv=>^}F}LNPa42Wn3M}tsqu>uKz23@Q&)MZ4?0WL8*ifo79c^b8KhB
zBaM|n)lU&9YLI7p*fGaw+Xz@Sp#Tu4V$|a?!oy~>_v1OVBv**IAqmPBzN@SM?mmZ6
zwTP8skKR7b&A!mK;vV1@rpCDkGsO`CMSWdJuzF1T{r04*h_1u9fxHu`PmBN;ClLnd
zy*Xo*PurU>|6jp($>I_`{+{5cM-s>;T0ua2uvKvZ`{}WG$%{ei|NR9o#<c(c7Z?o*
zGmG`YwpS5BqJeZ`X}|;Y3-{>+`fpRi3o2FvXB@?mU}H3%j*Lc-$C|!2_dr%j!s3DD
zWhHnai>Cj8zuY&)U_7XkVJ&ZcQNjsK{)cb5m-=djtRG5M4V9Ey2^HM$Rd-Up*5*h^
zI3`UhQd!k&KXkJaw1VeUSY14*k;E`NUvk$csfpSL@bJe68Vw##=Cd8{uU@RX1agvO
z)6X}89)-Nl#jdu!6@&yC2fn_w<z!>zNTIa>mTQ>3rk{@yAjwE5W>Ns$b+?%kRTys$
z+y$}J@Chi|f4U*SA5d3R#t<u+mzdE>G?Hp=`rEA=NZqchh?q?NFLo8RC?_xuspjzQ
z?l!I{+8WCOshFZmi-{-Itp3SeduE%)B;|a(u|0g0ZjN5-y30p<s7%^Zi;APZt3}Co
z0f<0Y)2#5e!)*BEUcq&zYK!>|04oBmso}1;4VdG%xg*4DpyhPaScX`8yM;T#S7ITH
zyHz1i{jVwnwp~?)4L$$_7D}>2nZ<>{#8MsHZh^HK=Keq38fcTXXhpPXaiVQ8Zjv+c
z{)>&96EGZ4MfSB+DJ4^MKH)z0vYmVGDLLK~MpRrlKw!WOrg2X1zva5_2+V0+4p)wq
zLzG3$WJh+Y7}-(mlXwgsLku|QjJ2!Elu%n$Vcm%%XE4n+8<f3=4MKb(PB}JFm<`d?
zSg9491#_bWh8*yn9n~Re4u?YyOexTjLXsKaU8b7Phxa(+dC)P^pw~)b^f38}XR~-V
zOju*@%4y9<!7n6y)tACrtTj4%?!p-9V?P;)^eL_=rsR_z2S3=W6*<8Wn@7uYr<lkP
zwQ_JTRRn`YTLKEC#xrskmI#!z3rnQ+VnIo<s+Pk+f14E_PMh+ycscxS47ZPllnM)j
z^xD1Th5@TWO>tBdZ7c(<`JOjigcD6^YyJf&l+VAYY0D5Xf0_edc5jW)?^^dmJa=<H
ztym>sYr9w_5i<%31E+);23~MSr)yiSzQ}C;f?)1Cu;n!xR-Djy{l78Re)+v8yPi`6
zvlDZQZaZF0+(@H(Y=10P$(uV?882qR2Q=bz0Mr(rNTeO-{OCi1?K;^xyVoI`KC)l%
zr*3<y<9dwMwLTeyfcXr0&)05h^R>IDTNw)TZ)JiBF(!(x35^Wc$tac5%-zo2ySVE^
z%v(G$h-7DX&8cq%2`-evq6&#+ssVSHTp$EK-WS|^v_66*IU4QMi9QP$c=P4?uAk)g
z<HjH}v#*W;hk--cb&`ASJ*^qMQ?7c^5#jH{rF!o~_ok#?<R+;@6X(O3i0>mF50l(E
zZv#~Zyq;(Q@ahIWJ1IMZpf)!xQ@x{&DR{wK^)T)!049XN{HVnRn*B#fyy9fr@ov5b
zCR!8^hIE4X)>gakrclUDjs5~*Od?MX9p(-j-BqkNYT~Rf593OJMF_UC@l@}s32MPX
zyAv2h%1SXwqj*JO&s%7Schc!y3I>WQDFmD^ki&!X>80dMxB8ea1>@yP!1jbUMooh$
z8ZR%BneMtBoeKu0@z^Cm4m3BDH!{;aa*o^QUK+|WV;E{pAg?l{sP_ZY&CO$6ezZ%$
zX%goGN>2@mDXL9T4lDOn*gd+mb3q<HHCV*3EzkpLkN@ow4_07(-)U1|_0!B1<J^n^
zT?$~~nD6ils{kCI;e6ZRhSql}7{)UXC2NHlF(QLh4Q|J<F5>l>A1xIvoTdRBG765(
zyf)=``5$5%f-1=Dw+7$p7VzEp#KTW5vRLZGVe;?;gPoUldlmZ557$l&H<n{UA>%2)
zw$IzFs}tm{P>6?*;Ev;d1F%nqIX>j>>=TQ07ZMZ-5J?EW;*LE|EAj;(A3+~PBXdHf
z+t5P^M$qv5c1Ze>Y<5m_=VVfWA)URbodhJg;;gU@)o#d8B?zGU1fMTO@cD)pP{g{1
z%cnpjJS(%z(tI+l?KTvy@OwjUeNa1XNu`{IK%KiKZMO;(pw+eRvGm=VLKr<R><;eT
zbs2kGz$ir?<ewxn{aEjYR|3nB#|atYRfBJgD1_L|xdHFm6F>w5LK#;^NWb+5c;pa*
zD%LqQ9yl-ZWuR5-@@iRlq?hv=t%DnYc7Tj_#@x`woAIr7SQI87Sp^=0yz#zI@Gdx>
z&UmB}6BcU3=drVw^t*mqggS)h776IRlCQO7P#D!XmjtIObh3BURxOMVNBX^|v)7eQ
zT1^%nyx|D%pE<35EFjEPv9YU<5gFm+P5)QmksYnSmk^q&W4!fqDJIT^_|b|w&V_mZ
zHSd*G2~swATSeVYsLL#U+k1Yw7PWva6j}bsH@pSwcdI~JFM8YCcg=1UT>Afc)2rLP
z0=ho+4ewOHVmvnUifxj?OtLfX`2#jO_?maej|s~pqyiid7#Tn%*ro3Awyubez82W+
zG+finn%BL;y>*@~CLox6TVM5V;O8wG5hKv{yS())X+)AI;NFJrR8kxznHx^_7P!DN
zxMa?x22OzK8}h~n0^<D$$Ez%l)_`J?p)eI|op)cEw+yibYdxq=g1<@&3wn7ApY_Bq
z4O_4=-;VWuI@&Hn>62Sdrc{B+kjKREBJY@0-ZBpVz)FZ1gNnBK&*@&ybZ;3-w44e8
zP{nAKrp{C2D!l0@du?f6T3XrNyQoj=mV}9{AMY)k(Q<V0fpNd#ZCqPUB0;F;=^XFI
zKOy2YGYT6Gplpa1-pd;kmLd5TgiA<0K(0u$w7?4$2A1IfSA>5j6tw;dFS#3&#Gx81
zFQepw=Z<NAqgUU+Vo^+t4RO-OEdRHcc7EVW?)<!nDt8J7ByyV(b9RM&`pbkVa5>~^
zR7y`?nlSNYCrLX7R#t*<3f3O*Yv!`A?3jbNUGeA@mh9W#U~mL^bMb$((DwIhk!tGV
zy3(u+fi2nlb9;Du{c;$-^{OZo>wthTVLzjF9wjrD*}o3uH{!KCv1Qw+3fC>N^CT^-
zWDyYuTau1|d6a7E)(ez?l;?+d`^1NG<3gK$pccb9xs}jPF-9c2%RjQO9US{TxFllR
z2;@`+^3meZqTo{4h4zd<xBe{3SR8NF0B#PrJb2GQv_MiOoue4~`jX(CsR;+N&clex
z1xUl(c#T&Su?KQ}Lu;YZMu6Ti)q2BoC?oIk6bU~ANbx1_y9xF{RvM{VOTM_nJ3QA4
zqO}jwLXcOrfM+4cNklHb=JJv<y+5;Kt%C8Q4E8gD@gkz){&Vf&1MmP5_th<E|G@P?
z20$5<Y+ifWyY>aV{CEvWoRoya^8;bT^q<kmzV;wqQGzgoZktCr+TPTpL~!ZM;uYS#
zy|hlle?fJHtcdQV&5t*G`y8iLgRrsUjOP2uu*^7qrD6#Ih~sDPghc(x2+)LA2)cuK
z&pfu;iza9>l82y)`B2w@AETOA43$H+ddK-*qIeLZ7@DLo(>!3r82;3|-a}vVxtJqF
z7cU-12p6Ka5{2%W%e=w9Q`N{yP0+wO03#a@=XqY{Tk0W$lT}WY9|DQ{I8UE*pZER(
z{Tm^U&{={&`Gh4+H;os29f7PCmovpVZjlHk52sCWm&zhGz#Mv~ck=4a5+64Z%xevX
zRRvLPrTu`QcFN&Kz(~aW1lg<c_T?j0AVi<30g!^A0^G(_d-(erASj|-k%Z2RJ9WOu
zVZ>R&r5MY9r`bCuX}ln}hacO=!$jlyU;LQf(g6d(bph=UdV2y=iKrfEJ0#E@hE&3K
zks#0)n0u{#q&<aX=OPrISX6K-;1)M~*MUjESi~nwf^At=97(W^WSPtU<JA$A%y|=;
z5kQdITD+{YvoN~df3`RJmu`Y&or9mFgySI{Ae9I##FF3bpc1g!g<Xp#Z2&h7UM8Bq
z?&Xd4MahSS>&|XyaWSAc9|T`M94&MJQzur3$Idw`?TaKmh^Hs0id2E7F3mz?@BVDp
zk~1RSW#ZJDhWe&h79F(ZJYz+b$qyfzX9vHd{Y$JY7<O_Mm`B&x>Q5<+okc}B#|L(8
zeHhs5T0gIrx%5Z-og}(~0fVPBLjje<(1|XX1Ptf`kO}&&wx2EHv}U2qq+Cr(pzpz|
zbl|uF!~&BL{9z$K+cBSLi&!*p8=yz(HNzNEHQNawK3DL>COcEI>1E-*0(Liva`1-*
zfQIA(;=X5Q{%q$j)X~c}VXKl*A=11jndI+n*P;65$htE2AX709Q-8H@E!W@soM&<*
z+Qc)ThZLR7UTn7=$qcwU<qSYn3<$ve#7aqgArBVt+uyf`UCnQ@O`&FUWBT&+Mrv-b
z&!y^2b0zChLt+i?uzuPEyx*mN(b$Y%Z?9RcqblYUOBPi!D$wkRt#%o?E_8v#2T)*X
zveo}-)D}CQTxF7aP@FtTCMHP*#nFT24(@MHCZQF{{f37m9lL-8<9H*_!Wo~~7jI@f
zf|)@siFh7Aj$VrSr-v<)bR`lAf(?sEYvQ=l#o)g8EPDmn5Sd<HnV52PLu$%?WkWy}
z<X-=}!aghM7w|=gmvdgqN$4iN@segm=&8>J`<T#^WRGP$%)JJ1MIf+I$S=2#`<uy;
z=grIHMY=FQuCYy$8$oe;gmiGE5kK>n4tF1r$cs!1v1@|I0t$GU_}%Glnh=}3ASRNb
zB^=d!3%FHcNx7`i{xMj`s1dV~UAZe*m;Y?GGa)=qFFXgwy2**tkv#NSAsjof-5!0p
zek(K(CX5XuCwDazwRn?F^oLo{RKtBpUbb6F#-S<5#MKd&o-E#nr#@vr8>nlTFQ75x
zjpnHi`U_3$eWo3Iy0)HIrbJSOc}619Ig3m<agBY$KW4l*<#EZHinMrNll_?4%9`?P
zXo)3AH>a+*n?CpZ7hWSNUNp@EsQ1jX&#m?!Pe(CGC`~g<s&nLVmG)2I&1kF`SZOwg
z{5wp1!jCp%8Lee1!;A5c5VXM+j;KS6llO6dJjgGgL~vGWz-LR9d}k&nV2?XOlL0W<
zI!zQPSuL=4F;sF+z#9@zwdY;IqB8*@2viYKN!nMBgqEer312?UW>3~ZaeYY0i_Z%D
z6fO8s(EWsEcJT(<AoUb-563`c-gI~%)X>+R_p=@YAC*w0AC3X^`qo_g^{v|QK>11>
zl(GRZBF1rxE%)hkEao;ukCk=oh%gqQv~j;%W#5ov2O~$=VJ3WsdYt(D<@SmX83uZK
zQvEQ{T4C^5g~+qjWPkOyX;>smE<~~hfEv$)<tVeguWzxx{8!t|D<l0JY*|>`xOw&@
zKtx#^Tu&e(+~8>I((d-uf3baO+;CCgFO)k<nnE$0a0tZ5s%vj|2pL5gihz~kJxGOU
z{LH`hb`LT}Iiyi;M?p8u6o<?Mf3nw;Xh+I@%sf^WKaQ2_?9T667RO6yxfs%^mMH*Q
zK+9VWa;bmNWsE;a+Mx`5L6S^LjjhUNoq4zr*e}aPtP39$yl5XLA5d(JRj>qQDf$am
z1=?7?&EDp31T05yQ&~>7U`~^LOL#lHKT=ywG8|#Wn&%P3ZqC^$KilOklO;`(B&>d%
z>N`_ycS$KD*p?H+(MeFSaE(iL+N%3>seOi0QpRZl&j#E#@s~ZJul=k**E|PEBS9GE
zO=ik^xzBu--AtNDt7TkgQzOK9kO-1Z%>2Q&=j0+x=hU-{i1|na7|vL+Rrb3aW+C{%
zP@i&kc8_mH@34P9q4S$BcWH^zo@~=&KiIM*T0uUHNt2pn)gU2BI<)^Uc3+=Ej15KQ
z9!{LvBne66ase^-dmARJ6pM}i2$VLtMF<+B=D`EqUK}2B><k4q7quORGIR8DOMWi7
z@APVc{Gl=;u#luo!7cXwA{{nk2u<Rf%q%J2xXE7nZkJc^CODvf$G|VnC#LGjl6?|C
zLSGb^wAxN&ln^g~)&7*pg^CX5?QZV2Uvy@2c!U#hf10HA_AilOTC%q+bMDV}k-wxP
zqwG=*CU^9WX>wa0z0-PCv@dsCWfYV%$?j7kf3W|u=$mWp>7+wq(P2rFI~Rqh?8UFP
ze3nki-+w<7sk}UR>MAN32`2d6fxp|2p7DPduHo>>31ZJ!|8IY_p__E5;56(?iW(PL
zgo%$_YdZ;9qNs(+5mn?mlimp@%iQjN3)g^1G!+s1%8WkTYXAMQ){RAfrW;2}C}?uZ
zx3>3}T9MCTs})AiW(#b|AwSyra+~r{hL1BC$#N-s{nLl`DWj7wj7}C35N$9o@^yB}
z%{nf*n0*EhhYHQmtfyEH__Whs_MdOHH_b04xtfr;Ft&3`q{x%Zt+n%g76;mlT;SrZ
zE+S~U+>Av2Mye&^OoGW74hbugOj94bC6nR6bb8|Gpt2+4H1*<<Mlz|jHZ0c|TIy&?
z8LTQpgw;L=xY18*lZ0{LX)gSayF%P?)4JJSQOH(AbCGOHaIBT}H7Ry4$qvh=<N62m
zJbTLAWlucg<~*hI!VRN34DW>;>AUd<JKJB~QNoaMpJR`|`O!YMNq-Db3VS?5IhKDF
zaaZz-msi^>{R5g;#t@X%ld+2l3H1zIYhR~UWE0X)vR~-?D8A(in+@bB>%h^iX+luL
z49k+<yVX7;w}LEQEX|glYd!R0NjB%Nv+GE=MS}>@+F41Yiij-%AZMvImfH^{g|awD
zMH~E!0(4a_G^85X6Z7xC!Y&Y2Dv*5ay*P}DER~|s06YJ-k!!Shtt8n^Nf`nT>M<20
zt7`209Bn>Fyg-FRb04sKnxJpe3cFDtutECag$qVb%ZnRBE)0J0a=Ujs_De*@fOLVZ
z2rpqL&pW|(f=vs*!ox;!vxQ+vB+1gh?f#M=4-r))ak(#GFJyzDZr&Ys^eA0PdCvK1
ziDQxi$<C8Z{bu{*Jk1a^2(H93=`@Q5+WonSSZ6`?L^{!xgtJMGA}~=H&tFY;kW5Bm
zipcpTv-Dr-A8fZ@JmP<=zb73K2-R}&BP)=k_D6f0yzJO<u4rQtQtevFC5@zn`w9dn
zY>92SpxzEAzZbtN;Bi4n1QL`?=<N=+Zl(4sB0y;(M@W`g&Vs!D{xGid18h(#0nQVZ
zbx4p1E4!tOU3484@+=bxuo2A?0wO$IfoaztZN0I&PN0M0gQQ{=cNYprA_N#bC>i8T
z+iXLy9@!p(&`~AI=dwF*9BkKz^mBq=iNWO1q|0evzuE5N-^*kvlXaq9p=A~V;rekQ
z{d7|_Rnpq2%rNK!n=z9@Za~S*C(;B`PKI28hfTAGU!dzM&o?xV!cx-Fx|l(m?FP64
z&Zh-Dc9|1SKpJAy^ECTtNY`ozFSl6lSOl2Ke*3!B_h@Sa0U3-hAugFjylk=)=Q0M4
zkggPO25tpBiK%<6%pN^XcPlU4(8yy#f*(~T?tO`E?>{7Dcr_887b21Kja_FSmK#oF
z6UoRX*uj|`=0iK%g^(r>vVtf$61Yx+i2jZpd>iePRSoA$k@nk4t%N$1RK$f=mL>jn
z^Rp4kdbMCd;#G{hz_-?uZ0gwQ#2ToZplPfbB|5=O4Rjd2ms=tdJNhnhL~SiXiNy2C
z2D?-45ILH$*PLm7!QnWlYej{;uuwF@G)boTneDY%r!G=M4W|-EN_Om{L+s_Hx{Us3
zQ^FyXdSR0N$tCZ<e@2{Xzc>Su%4FFvV#E?LLh^Fuan>Z7WbohiGQ=X5R&Wp{_ZGrF
z>7Z5S`}`RDnTVOph=U+os5$M@ey|n^mL<*$truBAa<4PLO=&KR`z*fgD9<Dw-<UTW
z><5k7%vhmbKxw#J*;{n7VDoRXbL2vz4@vP}1wMnm-(}yASZC*QH_%ZI(2cnBrE3bq
z0X^KfZ4{$QiZ-BAkW8JZiWtE?$J<$Qx>`RM(&ZL8<Trb$uyxv!cQTxh=(beTJLo#D
zp?gdN)smPD*J)@w@PU2oEo}#aBL%zgNeL5r;5S>jL4REoDiMVy44-aKU20P$Q6y$q
zAgY=Yt6561RHke0v(dlXNR3Y4-zwO;=qeC|X22Hw45felA7AGkUPZO_;cbOLLa-|>
zGkXp;jHVYAB?Sni5J&(iDkp^`q@0ijiKti*^om_n#NMzMY}mP0Y=EeU*rK3-fFg+4
zzjv+4fq>WVfj{!hK6_@@Req~|Wu123kV-BAl5yhUAaV+c&t4zQ=R}%C1EbEp$hyL1
z8Ot#nZSZ~?C0TKEDFqQY00?Gvp*Ej=gU>Rw4`S^SVOP6!LGcdmbiUIy)6M}u+BQfk
zUJ#<&z;RGCv^py_*O#Gz=n;}{``V&VO3vVa_VZfrVbF4(1(y)1D3)phfa{!7ju6ZK
z%i;DN%DeJ{p~%Qe;$?x4Gv2q)DZ!!QB~LMw^Fk88&z;WKFda)>jYdTogu)8^kGt--
z_Lc9nnS$buE~Yb7?A|P+S+&U?@5=!!2Z7&m@JOR}2iO1~*B?`yvc8_JX(k=I7O`(E
zWi3UynfHtRjVhCz0xb@VBCVlh`@UnF1iyk62;@urVzSKpi`Q&u3G*h(D~Pt>lVmft
zk9`txS575hzbL=5jNBupJIUJfq)n9h#(JfOak%TonG1*88PWdsaO;&Ilh244!*%vK
zpHy&lIV>GyKT)uTk2l$gB1WOCRyBe-3TnwpkN(pR6vm%`b9Fg4Nm8d#d`>uFzwhlZ
zhz0AK32T>B@KAX=B4yI?_${{2aviwR-3^cu8Mm;?oNjgmEDuEsZwLR@Qn`o;C2q4T
zo}v%833?2OOu06)iV)D~QQS~Jg;+?k9--iTqk5x#hHt=N^43ds8>zlw2Ibr0;rbGS
z=onCtV=VPTlPUX^XihlZd&<B3c_CaZF)-1QCj3P6Pxson=JGaNQMmp1QZU*XS$0OP
zo)7<`ab3zbASTM5?fbpGmE*xtSX#dU{R4Ln-TBEo?F~2StNcEVRN^CZjH)<6t+iXq
z+ePr}HOls^(zkb@Dsqz`VzR&;_lGS}3I_)feX)*urDd``q75Iu)4mLD!yZuCwnd>+
zcneFp^h3KzuD+D7tO=>WUc!#kk6Nb4-x=PY0*wgo(<-%y6vCn9PVnUuHrNNhpf{G%
zh7A}OHyCr{llI_pf1vPDk>!NTGlbK(+l!a-+eBnyN_>jeOrA(i+kyx?@kw1AC3naY
zEDq0CZL>Ec$jdGxk#M63gTW8^g=4&)GGeYNmt8U@aMzj1n!fg>leMxWyh;mhii-_I
zXwnp$C4*E{RU4E7VWMI0%yZ}24{CK~kXR*iJQlFnlB&{;!dcK-I6jALw9}wZ3}i4l
zgN1g>s^=$qBLotJb)e!1)`W8;MZLeZ1API$pre+oPw#?)tK#FpUVh(VDU2@iE@`O6
zQbcH~sPvnkx942spWY2MQU%$(yWVa?{Nl@;LM2EQAzVJ;pP)j#DeHJ|<XRoWZt+Yd
z1CAv;Q<lDysK!uL^dkLn9U2g5G~-?KqkS6=$Z~cZ+bSmRD{cf5!$W0#MXY-2NPF@r
z%JY@80v3j~oy?1E<0ut`h>e<t^@_|#qH&%3rER&J9?D$HLP!R}*yGI$eeAGoo##@N
z2>;d*t;kk=z24qVwPfze@a8t36-(Jr^V^TM=4G8H-}WKH@Il-IR%V9Os1|7yLme9I
zRy*i<?KT|Yv7^Q^DU4*VRHk05c)Of12tMNz<bq<Ro;T}9e^oibBBpB0=9k~uLcwED
zUPB;FrSKuS_cuj&TQ6k+LBo&^5iwLA5GD1LUUrFekb|d6G8ihysdr!dhEH{=YOT64
zo>kOyZMW@0BZU1xibb5FkWU4taBp)02TSBBV{ZE1ejvKIFpgFcHc1J|mL~VH$^Loe
zCJ=RjKbRQJm>k1h5bsSE!Up4(gCxWViiixHYR(MUhmX<yqTdjB;Cj^$WRmAb*<9b&
z6)r|C+i5<(*;X#*WgX7sqRglz3)e2@KjUEU@n7^)G7g*+n?yDc{fMJmJ=Jy*8w#04
z0p3y28k-wpJN8DDf-BbAi)8V_=MrB};8h@7DLiL}{%CK4qSGoIJlwt3w<c++w=Lh>
zWPvw)Bd4$rtXu-Bf;&<QK^(s2YP@!Wy%`$^#2n%?c`{943?u~N_}-Lfm(0=0NwQpF
zCdmQ|_5a!C0G@~C%vdBb%0VHz0xdN$7{p&$=ay<aRRBh!k%D;8)rj4)5rY-A4@pL1
zZO)?%u0u2ccoA8(GdSfR;Eg}ofvm3_YhZXtCNt%1i)en<M%!PcKJ4)#*6REKpG28E
zeW(5FFTWQDs2(!B$Ko=$k>A+m!gN`_4Yg#fmpd*tiz^SdeTsBb<fXfmk&bN<^>@Fu
zTH#wx=?3r#-87%Z%Z*>K&8`x9m2O7h(NY%_gPEL!jkD~SVitpns`&GEvg~n#aHXAd
zocDkTwqj1KKs***0{B<?5HdFlw%?ETW&bo}G}p)?m~~t1Lq3q`(=Ej665(rV$&@W-
z!w6{R<3l&u?Z{EA)KX}T9wD(r_4~<=^-=#U3dm|6McmD~h}oaphws(V$XWL<G$=L8
zbK?fPN|sHcw#9smSk6h^{=1zdh(Ow|lPutM;|5|#q3rRb>oW1{?AiXA$s~^>fg7xg
ztmb>o_C0tOA|BkAXeV@UhAjywNs;!UZSwJ|F&j7^;p2DUb~|$oUlXTtq15>0iS-u6
z3C*fSjskQ^Qmn=A?`4A|Fs#B5ZUKT!`0MfTCfmhFj&Ze+lICI|hgkOTp4zCt2N*!u
z7U4<w+%ezV^L+>adws{2hix^&wOYThYeh`mJ$){+{{wUW5BAZHZEL6xPT|%;cv<2>
z?RLLq^uedBp;Ql%tTVcWve26!vui-1SZ4g@At<{~8J<6kXw&cZRiDKU^QBg5%d?@A
zLN)|N;qYZKP}M}SfbzA2TkR1ktTKLS8$>gbvhyNSHT+@kIZUtU7|dzw#ng)6Nry|1
zuphxUC?l;1I-%JjL^j!*I2Md*lwSy*dK~}?2Y3;f7?DwVhi_;hNhQk?cYwESpe~Dl
zK1*Av8Fvgd>1Bfmbfo&p1{)!k8{CyJW|RL}mViU6@^s29dk-c(RyE8G8e>6JkW!}$
z0RR=q{m#BAwxkrQ4v6UL^HEADa8Uan=sgGppslDJPcl&;MFgw;)u)NVs<0DsNV#H7
z)H#<6&VI*Bs)(7N+dmL*`Lc@ZupxmvF)FbzFMnpg6{HS&6co1wR!qWu*^>445K+Fv
zjG&<kC><O}+&_}d<$b+k*t#GkqFMP7X~+nSH1cbE=mO>`W(+m4;PL_KebWAbWj0J>
z9g^j+aW&<&7}7AjDws6O;RiTIHP>zMkG(mg-Tv03y#VY*jnsn!NJ7DP%mS)4CJnYb
z1%?E^6Nf6KM;u}KV)_vKyqL*Vn-nMDR@sU)fn?9zXg_<6Nhh)KP%k`6M53O5n71ib
z^MwnJ7iw$s(^!jug#<6u0W%=ikd*s`8Ea}n>PJY%OKe5yX6G4p@k=~T$2UikhiY*k
zAhP%e^|xegY(r0Se3utw9_fa!TYA2o_`bT{6a`D9jy<+zNu7>Z$q{X;v&T?VgJmr)
zmn4W-q@|#dI@lzeElu{uI&GyBj&zI#OFa|3VXA$wL_KdPxd9}G+bZBT4KI|~LhA4k
zX)`_)PD2l6q7sQFJs0rZPwo$$Aa!)Y47-r3GkktLj#H2^@!j8lti38p-$969g_Pxx
z016y+7Ny!Fm#9-v1_`n|63q)BY)Y%_J_+hZBxN3;<VayMe_R!}j<O&4wU`R4q)Z2n
zni@V(Uu0*#t1FkM5Td5;=Oi(S)dhC;9W;ppgrrtPx5h1k@)T$K<vth|2f_D9;ts>A
z(ExCPLM9@c?S-~^n|2n@B~GuuwH$e7u>B<4+DF%oFmA~t==bS5)8=jJC@wLD#iUzD
zMI_`J0(>hc*{jpEo4iw#gmYLre~x97CUy_hh5gWt;^FVpY|eP?IjpgqK1@AbHeKp(
z#G#mS_Vg%li*Ky7l?U-t+~$bN$GwA}Q%HhBNy9AJd;R3@yjlFPI`aP$^A&GqOt&>T
zy7q)jqC_~jq2N=%5o0y+l`5KS_jy3Qu`&qkBUhMqXN0g2(ovKRwT%Pxvy%HuMlN4X
zGjj_pNiw8B3BzgTY@^mntl_sat(mSf%J-2$SqZ44Nt<rTwjtLhgGIpIg%g0A7+ykS
z>?{UA15&tLD2H$stUq!Ipf-pKjkcI`#m&kRdMsCqAHQ8=AENFSFBpcq4++<?Iy2pa
zD(!dvc;SVO{^lYGA(Q-CXuo3t#o?W;$i%k`sd10hV3lW|=~v$pA(cG!92*1(Vn?n_
zu-Ez?a-*dVjqC~u|I^LM&GyufboHQ6_|CIznlt`_LcfRy(Wz3vMCpVq91ug1J%6i?
z8|$XzSOXZx;jyDq71LpKq$uTNlBj-|IM<0(FTbKQ#Y6^D=1Pu!vuHBt0NhD3tH;}k
zQttwH@?Z_PnCue{KlnB_eBy4ILl1!i8iJ)kU=ON2iKZ@BX??T1=u5o~nfN+rai|0{
z*|Sd_N*C+^EEFXLaQm#oxlhtLGBl)SiJ>|w(OvzT{wf1!OTH(MIc_QL!si%?xc$^Q
zT7re#IYd;(n}yfABp>#RND*4X^&*)y*XOORZlvVbhclMreb|KHWZ)zahbMd5<dL+9
ziK(iYJqCBcP4K)f_LpJ$ST9ITb3JrbDwK(;0zJULCdFLu*&F)nkC1Zk{1iGN?u1i%
z*-NPz!h&?JZovT!SECToO(rB;AW{>#op8pL)ry|xzPd%{mfx)8O)g785D!gqY3XGe
z@{~JDrb5*|UJ*|B?-!yY%``_Q-dwTJJ-t84Xh|&!+EFV&G!tg^NJ_FU;I4UsFZenJ
zQFKTU90d73=l0smT>B%f#PBp|og^+CPUuH`;BJ@VSz?$%{U%OZ+{6+qZ0Z+%4u{m|
zg$M!>DOu2gGqSwZ2lE(dGgymm!(!orbG$bpnTL2XSK&U5DkUB&r=0A)T+rum^m|N`
z=u4!$lTmC=^WfBn^H(-m4$4U=qLS}*=^p+Fhck+d7OKzsuE3f_s(Yq)z}LN{!`NW3
zu7Uf2<qYTglTP)nI$1|Z-D62mjBqVd+?-RqnTPNk2LwonXu(N>UaueEts2f_oSFfC
z@&A?JDiQ7m4fPu1X%Le#POWMi5`pc2WbeD}y=4W)ib-3SKmgDB)4i=d_&t~ebu5qy
zApX17VE1fMp+t*sNcVDFew~cx5|WNMC?=a31HI{|=|i}aSSb}ynVaL~4B;t}!QvTK
z-b4ytNw>}iKRkfv>?#&M98M9xV8>L6Kh~=au#{NLIK3zl1lYux+f%(SV|3kzO_#eb
z17ZHG`$`!Ipr9CX#jJt63if@HS3QyEBwQ5%4IZMq{NwTZ3L&<9QiA^DMWWy>X}p}V
zklLD6RMUmX;GBUsJ>Ax!<>gH!l51XZ%J!4JnA82iqm28u0Dwj$zvH}Y*>KJ=j(Eri
zgcFI=!$Zk_2XXbPt7``37Wb*@1aHMa{q<m3MNFfqhJ$g@8T!dQ_%-nZm??Dn6OZC4
z&Q%C6kb4ny&rb4g7@$8T!3<|hHa`(bL3U!`3A~qZln~|?<U6zcB(G=^zuk3iSwN8p
zJ9d)iqf1M<a(gT`5*AV=_4eXL2{<UxE9}i%v7(jY>&J;D8!qYWa=g2a<1xm1Nx3OD
zNG>!7Q@58iB+a;0Q%D_84ikB__fDQp1HzdD3@kHYQk=@*(K_I~D#5OC7EdrW@!q$E
zJQQq$tr9;Tf3JG}p$8aGWZlN{=4sp!n%I@zhwA`GH51PVr{t55XX+L*YAn?J9up=l
zSewl=Bm65uYz3=_OPg#I_pjqv!ondO)5>ewP*!-+_T#);`smv;>YB(EgDnP4j)w1s
z`d^U9lNy+~uiwban3mf`XMkZwd>2TW6=${$_GWBk22#befkf(J(gEq@O`M)Tj^+1q
zIfcJ5t3<i^?;WaZChX5Y`T{LIo9Hb_)A5kjrly?q5t4yQ+(|e>dMUssP{L)EgxTmo
zPujqTp=b?+gHSaTXX$LujN&c3P<1&j@uqLQclKEwj~h8ch;%X=D$L4Hv!ytfxFJZP
zgxBJ|AGqM`BAF(Df6)KXGePA!HE?b(-b>~RvHpG*BvBazm1JK=r1D${6hJ(*DbDmg
z-n;7{{Vjp|VQMCGU6$+ZlR^U{7jrY}G9(B4MOlW|CCfk6a7l8hgq?th^g)&4b`uQ;
z$-cUu{)pUOs0w>h4#}Sl<OUkX)~p%k4Uh|oF^UOLcvG-ApsXahs-dp5aDkDxu%a?~
zc8oi5Zmte&C}e|`W?({pic-AdY+aPXstwc>fL>!x*ApSLhU^#fYWcNXWQdz?CDtai
zKUqDIn2;M!^48||iPjsyF+uJUq8z{6PX48Dw5+K7lw542tc*7&y=<R~?AM+#*kn-7
zC=Rc&bTepLZ~ni(pNU}L93RYbq=#{DaDSd;rTQBAiwSE0J)pE=>UH)=k%_S)k^tWi
zSx{Mez&w?sXdopDSzt3z`&0tMrBM1Jt<d*=k&f_fkRdgSP|wlRR}(h*^$qq)A|@F7
zsH#xCK%7V(@>L$pw=av>0{gDu(*EOpV@RyUDyd+GmyA{x1yAHMg}+XDs;li)2ztDO
zYop;n`toG+-<xc4A>Z{KQ3X>+zQ*%6)oeb^ul6V*M`A@F->xKTN7@)M&-K1k!C{n~
za#eB3;7swm8aq!4V6t_TG8Q>mdLW=pS?Iq1ohpQ&@+jLJO_9(MOV1rlPz6M|0o{Vr
zAzYQDSvZiL<^|vGEkVM0<$67-_>*j+^SwTW8WuW2sJWmSM1$mdlgITbg)e7w#Ywsj
z;}=z9z!Ll8ll@AWT2XsLqd3afR#mnGm#0aFj1%s+3$ke4qZeEt+>3ieve0_vu7IiL
z*{AK}llozuKrX6vMmwZ<B5@Aa+kr8_ko!#Sn@U21LSGJwPm_!|3wn5^7w}jl)EZ$_
zI6F8T%5#qPu6;<K7gN78BxRZtk`o+GN!AhGCHK&hZbp+lM|3IqJvXcNX8%1kMCCXr
zJmrl<1i@VrrTx2Oy@;2z9r{vN*4ij!E;Z4C+g=;vt-qZn$sAe>39sg^rb?eKM|l&Y
zm=8inb3M_Vj38c~A9JL)@NqhzDj@fhzeEaHBquVTBs2X`Z}V#X&iLRI0`+K-UL-q7
zI@EjZNm~4IBixoD_m`B{?ll99rnqoaQ*;y3F~xs3cV51W7tsV+lVmN%5hV2zV4E!B
zhG;J`n}P0H+c?IF$7Pf^_M*O>vk)b-wm7}^_VhhzW;8x5GOajAC|qyvoTqi@xhx?E
z6aPs0?54inx?B1#Vsb-*kd>;^Z&1bX2aT2Tfv>#fHXPq;kwo2vN~D201+jp#X85!2
zn*(|+;$#<=OYVP?9mGnGm+xn|YtwiRAc9D(3MtV*I9N$!6q^~#Hk+<5xpyATk5ttW
zVo}$$T~fd%0J_D>DL=c$efS7IE1+FN(>GFnBQ6&2VKewLckRi&7QvVciPA48*S5TU
z2{{i$G){_(jVCaF<!x?1e#EIP7F{BQ!cRUpCdA^5d(5?GXj|d7mJmw2VpUvWLh1BJ
zl1TKtN8ND~^hZVIj2i=^-}x8nrw`}3Ady(7G4U|*<hWRoWo|jg?V3m%<s6%Fp5<y%
z1&Bd&?pDljuQ`$?aYGc?MM}8FrZBvPFS%dKI`~RUP$$HYa2MPtQFusyv2iR?*K6F_
zDgMtYztIV2fpIcn#DQ2ziua$n?wC0L1OB84z(5Hn7BUG}OI8%6|4nz3qZ_#daF@6?
zNr@bbAG|4B=(fiGqeb$J<}Gx~Xkpy>kaQx!E3uA<b1SQyW;Va<e&lrwzJ{d2PByk?
zco^w<M3UCkp4#T-9IU??5^9sR&LHC>E3H2ejpgNY+_BO6aquRM63jxgkjWES&Vfoa
zA3Wh6$=sk)StN?qCRhSXo@Cy-$(?wjHtAW*s{95{DWgL}y!Iyd-ei3-EJG*;tD1#9
z)StJM729%;JM$#%ol*B4JwYgArJ~%#1#SgLo>>p0l!EXlac|}HaaESMeFy$OQ^rTm
zbWE8OS}eGRq$6RAVnNAF<Na>FoJ-hP&1B&LgaIY9PVpxCziyU%Q+&@#NLmA32fNlK
zY`x9REYYSsD2@bmY7-pF{C=w&QLC2$#E4mnv`sQ4`Vp}>{(kqc9Hyr-TM%9=#!W;;
z|E))T;6B9G!e-PnRrXG@urnme>cxux$iPqBSu8GtE#k}#!3sZJekJ0iY%!TqS!gDe
z_?%mJbT7&5^N(CmiQ!yOol?2rSjy7)nP{ZuO}JK1d@SL^=I46vg8TQV;gc9EK*#0=
z@2|a|i)MT9RPXhN`8~+gw5l>()3lV3$Uh5GyeEFwQbI*i*of>GQe;T<o~usxrv9>L
zks(==6jPezz0gx%HkK+kHB=Bvj*pdupPy!VqYu#vLZlR`YHWib#ESej;7o5zIvtYH
zT2U0GE>S{~ej|RkH|jHO$!jiwse>%Uie54_$6NO;Z$hN$D7KWy0YGjTbd;C$0S&Bn
zTWK4NMdY>E1g_^bx8cK0(HJ2fHKkNxifyBU@D!LBcYs_-k9gUXOcL%^Ue?Co7(`+^
zi-tw5k9W%(yt8vt0=<w(mz?N5ahZ-|c#te8h@-Kh=baVhUGoCNhNxq@Cxc8JZ{m6H
znchoR@$+Q#e(IHj(Q`%^(bW%lci+J8A=9$Rl%B<Hgi}gagk`GUh(^8PQg79VeM{v+
zwAa_P*Qp#LxJqLium%2Pq!Y9^?uQ`KS>TZBc)q|<3I!wwNP8W*9ctPeN!US7lr+=4
z%-%M&pETm%)XLe#s=?zIU$y&(cucawRt^99ZOUYVC7?J+uig^-SuP*K`W32ZFBLtV
zAD;1s9etBNB{`)cK8y@841N+X@B8F7-WP8QLXB-LK}~s=Z0>o}25;DV$e^9~J!4bP
z-s`y_cn>^nOL@+&3}*@iqi;~t8_UBaPrqRA9{59E_Kbb!EIv#uQm`7APxv^*%_Ki2
zLfD>bMZC_gwUVR_Wx*W{xNr;bcH&dE`^0|vBXoz#oA9tH!&@i81a9+|^y!_ShrA^Y
zbtG+p*U$3YsNQ$7A|vEX0J)}{8*UC9(7W&MXE;^-<C#>V?D!p|>~%1MB);(b)d8n(
z=bjw@z28Rm&+s#P=GKHJLv0muzWI*8yT^CxoksBb-o43W8h%D^5HIm6APW}YeVjSx
zzCdOF&M$zvgkJ!Q7EPO~EZ`>a#$RUyrljott)^NF|2DiBa^yOmK`O=oy9r{H#Gy)C
z9JqXN-^Iv8l1!?xid>(PdkK||G3S2nebw(+Y0M3gRZ{ZP(IP9BzuKF5thVgk4ZU}F
zx4jzw-=4%wo3}smZtwrUUMn>z|Ftm=e*UlDl)|z9-pC>O_eN;MzcvER{XYZZ1pRAI
zfo}i35!U|ijj*$SZ$uaV_eLaxe{Y0{{c9ue!v8Z*&hWqYM8^5|Eknrp*Pdcl-Q5Tr
zBH8n(*bv7QH?8ot2ma>?L1X;a&tZxG_eLpEyZdu{9a%B<{Cgv`_+J~vLCznLRLjgG
zD@t9(4k})uZ{a9#N#OcZC@u+Q!;B_XEx{ih1d?IX1HDe_XaHuY1I`dzRDvjJ3+Duy
zle8_TxlCRss3nyj3FN#W@L)16m~O~)2?G;1HRyB&NM*VMkvRLtz>v?h#N{4cIc?#t
zpr-4{ZjaiQl;S{w7GDwg#OlW~L7Ey!egUuqpqeIH>1!7TF7byy3aOU#3uKUGR;OMc
zSd`uGWu#q-bvEw6jV%$a7`3H$|DP#L38ByMOL!tiiSkx`f4~gUZ{$sBhNd;h`Xo8X
z&HuSPa92Uc*Xzpsgk~h~bVx)qhm0nvI#-AiMH-l5oD6u<m4O%Ab&BMMVIBmlIM|XN
zn;l4#MT-~TV-Q5CNhf1^_5qzA94ZfNvAVT^%r;og9B4^pS>TMd`lem=K%tc3dZ5CL
zLPUO0;0drwYrbx|IIw{NpR${~n^MvoM2iKpv?wY~IcxFQ7pzj!O3TQ;xhU|JY#Ic4
zU4ys|P!W_xnQ&oXMf~0`lQENmbk}zfcS)fmov6LadR;X;Fu?CLnBDhlkH$HOwF@r_
z6#GL%McH+p(o!5W&E=N|Dy71y9724tU?++Nm`egxDSHnfCEbB}c53o_@EDDA_v7p-
zxZ(Rtlg5$217~*NnvSKRROvcluL%w!Ma9g(si#uL6x>P~AL^?@D{ET=U3>F!o;TNM
zQCES3sMCt56mdoX4+N=|`Z|gPUd{6D8L5FQ3n`OIE=<5|Uc<Dt<ZAA|ye5^OQn7(t
zUn#olKX(ZL^xVk_Er8u}xv)6$qq+wJ6LU0qUw#PK4PganyZO}sb<gkQ%{h2&32z49
zPc@J3=wJ1xz5>c5Fs(vi;~xo}JhablQA3iTb#Pn`TOPjJz(<7KB%1@;0)zhUb0<%W
zngGoN`V(u`kJAE_t-lj;`#R*HM%~yn9w>Le{<H6*0qsib$sl$8aBZNrA0wk0iKtDS
zC{fgx&j=in#8YH0Y++>@nuPr@$?Vg=|A;6?j0qmlQv?UeMsL0=32c7P9|)jR`Q#}g
zUI7M>!}8p~m;-g@ys5TvCvMFMz{8F@I%85lS-bGWalSG;9}09E!o($c3VHdpOe`t1
z(#_Zl1FHt~)p_pm`jlO--?Ix7q)_hp$LYL^#5hnAtd@kKkmvO?1M>qkbjUNfBBhuW
zHwVr+RNr5`v#tXYB}bbny)f{u%$5s}u|}#Llf4cg`NqHx$YeZ*Y=GIZXc8Jd|AxR&
z5%fr`5S}U%+;GIvk51@!r>KwU0_+e0sm5UtTbQXB+!!5BTpEs<!Yc>A6TnI1PTp74
zB+JMW15l)x=|}f}&fPt3EVSgzS`cVBdiOJ&0MbnAg22?CIylZmNx4j$6h)@y=D^v9
z?fxk;ZF2Zf@zJ8{W?XPYAsVnCFd=&P@0b{s?dJt9U}7Azf}LUo-AQPuz#>r>1ZJ{4
zohQuSyC*zqN^>>FWDTSlJU{UB8yvk(I}XP`{E@(l%-u&F)hoq3vmlUuj84Fpps~bU
z9r(Ua-}^YNnUWAp^1^@gO~0e+Da;Av+YIKyH^iY}ODq+)NnQy9+9BGeTq%M{kyujJ
z+511z7D<v>B8l}=(?t>-^tN4lzc%FWAe?9#QIg2B7%`C8PI%v*Ce;q4G@RbfH0%Us
zalY5(7Jcg5gi)u(Dp6J76-u2J(2_>Xr6H=ZB%{ewL@du+FI86nI{;DTl2gfxFo{&}
z$#Q)Roj^;0FhOii9O*rC&fY&pU{CgDmFnZc4b@l#sJ|1Jf`4I5j@NsZKF|I`OhA6M
z4O|40&AOr9sWY{S&_2Lkt>QpIZ1(;6LEf{M{f{Pc4q_r2d#N^IXVPmAodU|m{^VY)
z&v8;=3W<_$^UnnDxhwRcR@l&w6Ql_R>RshmD^Z(?GXnqCjxrKtEW$nMxO%TaYNE)(
z)-X6$O0vm6HN-nwY6DRT0Go12P{@%K0ZTO}_Vq4%UR!Xw!6g<z4<e6@azLcF{>|{4
zIGUR4h@<)41TR6VV*u%cG}cPhag<op#^xe#l+-2Kqk)hRb40PX+TXw3+XOtZBE{=g
zslU&pP+G_FAa0h$Uw?}Cx8Fp3Y@2wc>dxSc&Vd_ovX?E}n+#rDDTQ$4>L;Omi`DF&
z?`e^{@0-Aq!E4P~v7XzJtTnvC$>z31FWq0^OsR4cst1C@5#79B<VDNA1Gtc)Q;@I}
zgt}SBdOf9>1@OTiD$}uiiIht-PkG+)YiK~`-$6~2<hXQL_SYwS1#|S*e$fWO0C13c
zCD;39{a%lm&m+UV_zn7)EX(8u)M`Kg1Gwf*8R6CXZ{NLgD4C@x-i>AY(HzJdt~1FT
znZYUEvHoSqK{Xd6FZ_e&PJ?%zlq|yKen+Ffj6hV0X5uN{+x|X|U<Eb35y49g^Tk2l
z>2v8IhEiyfUzr!j3buG!oEMOlB(v_9k^>M54-uPjlDAT-;;=YaB)~~a#At+MO||tH
z@2Yq8<AYT)m59qEv;WBORVXBsSB{+cNs&(fbT8%t{WVY<j2{9`+H|-DCgzZT89P>4
z_N4nj@B2&qUzb)&-AN$;6rD{q-D16rCT+<f6vO8_$ruHa&87_R5;;4mW(0zF$IVG%
ztm)>#k$wT0y_*ovCKP+cGA;q(nmeut2~<tf;ofS0;-iAi9d5P+Eu@>ZM|!n>Lq2G=
z%p(P-npAUYKQCYEr|fY>gg^Hx_8L0w4$kpPL@@&+fu$6BU!AW#@~Y}7s3WP2v0h;A
z?l;aGAZ3eE&1kX65<tfMJ}>sB`iCIz57tAHB2tVP8o(m<80Kw|QZ;*g9GYT&D)J(4
z&<1~XA>Qex|LNXRpOO`5?Wk(WSta|C#zv*2dB;m5JKjKMiRvA?<M7B7GcLwkzEYbg
zV2(3oW7FC)5vN&Wb|%j8w#x#Dzm60~V_Eq7`o7+kejnK{Bnt8;QppY;4$)lmql$cE
zs=)Iah1zIQz}IdG%>L77dOK@DlDO!JX4;j32jO{e)6T*M_eF(`I#JvjN>~rGz0SG&
z2j>eU2hKi@lh8s!G|ih=*q4rR$`Q4*s2fF2%2;9%8%cg*$_3AA@*W=DtDKc&W~8eG
zE*pg%smDxj$An(eshG?);t(_#-OIbcYa7z*5H8X9U<*}5C0n8~Q%<+(r}mSl7<Yn>
z7|BRHVoc$9+xB%|c|H{Pz&22H)77;zChAYI+LqxPSZd73LVM`Ye)+>BFR3QNfh?PR
zG|Q82_a5roJ3j|^GLW{0`VfhC@+cI3i??~--Z~$!R`G-y3~GN?lQ(jBuX0uccf^|3
zDY&^emf;Xj*271=wP*HPOy2ZSt@ubmR;B(#lKJRe??&n)?DagY<GI+oNz8`F4X`QP
z9hZtG+xw8doin>*r$Q$AAIag-W8=eF*E>P@@mkG0TrUAzSh&;=nK5=H?(g(_*fMnY
zf4x5$8Tx;`M?<c|zbDf?USE<@9lb}gDBrooyN3D_oj!ng0%ZL!9mr&~#k+OS4sc^u
z!tbz}JBPz%u$3e5=8<mbXr~&nW=KtQ8AmIP>wo^B{*%u<vKsc2!}cK&k%0>pnBbUG
z`ag8aky_M<dL%fek?o4#uV3i>_}Q`f!_v7%U<~AnEH?$CAjOm!JnE_5LC9HA6>ipI
z3|Bv~+f(fDPx=P=MJ}$SY8Db?|H2BJ(6!&m{5%_FM5-Bz<}Y!sapustz{m*oKQJb@
z!ruM`o~YD_HYeq{nA^o6G)p}zuxUYf-i@?_s(FghRNPX;IhYIeaD!cr+dYU7&cRRv
z@yw-SE1bK|u3gOw#Wn<WXv2FIJ2&GZ@SZn+cc>k4h3b%lYy7;b$f5D7NyhaG^la27
z>PU)qkG$+~JC__Dc)jT#&r>=*M<Bu(3k8uR_YMT~sJ?;ewc10%i%MEaZh#7;??Zb1
z;qX9nJ@7)R`Iz+DH8oS3sj<nlQUsP*5fyOH)5cDUD~MrK*T6S^r_6QwDJnC{@9#V$
zFt=v!!BH>LAGDO0DXI)sS2juBWJpnp+4p7p_D$|$6sQqWzfRKfLnqI<$_xDM?D14!
zX#XjTOo$<6QbICAY)6C>$9cy_a*WZYQ25boF$yCOZ3%kc@ER7apcT{z+Ds%ChxOK<
z0*_7YFT{DoWNe2@hEZ;D{i5g)NkL`f##f0xg}Z7xK4Bue?ssTk$vmHdqevOa#?cDI
zgfOtq`}piWPcxGYipvLETltDfEsEK{kUYTg;)=&xd}%WkNj}Yx!E=CAwxdlkET78~
zvyQ;Iuh;u+Z6X6Yel2+LfzO$*|FSpvk8{dv5ozHW1SUb%O1pYJL`V^bs%8>1`??BF
zAt@&13p?jaZ4yakw76d2_nQn}75dyx{nr0JdP+whECMN}YK0vq5;d9+S4z7`R6I^m
z@7c$H)&@=@iVaoVC{3`+KK6h<9K}mIW=QTMigm5Dhu^0yB6?`WHu~VYY$Ct3A3UKg
z1aj0k8MO{jhOCcHir;{1EnQ{L@_#cXSVidtL}FYTusAn3gX_dGQ0jrbyTxYvs#uX!
z7+?$KR?{d#SMFMSw#bsqBUIj5g~PFVtsN}VEy!Op=#y$2Qo{|F_LhD62W=U~zQfFe
z+#ezYQAA>2v>!`FN)8uxwnqO`G$ByTdCq!Uv?-4r@TW>(F@pV+SMBV-v?T|0E*zRf
zdAby{^-nwE^<AChbok}*@Yh5&e0zWIZhupUQi&nFL8Kl|Fn4}!?JwGKaHp0yg!4)3
zZ2V8!GB!j7J)}g^%&;Dm?n^g!e`DL*{h_eq9V?Xtbuxh+_QEf;h0tG}bQvYiYMoq)
zw}=Ky+0qnq-f#BpZ}dmQY8tg1C%z*<Y3FRSHDBrT!3|}#7>qimfu9W^^}!^|kz$yv
zw77brDpNQs-Q2R-9!~vC6)kWd<a|g=Dgx8tKUl|K<;-AdH5ntN0W{2H{$SUBr*F#l
zb6Cs7NKleuHg2-7`x}iRy}F`7tJG?1D);fG&31>>4n(?_P^OMsPM|#a+TS)Hr2s)n
z8h0--UbJTTdb_Vb*%6IRlf~s$FS=B6zV};ur9WS?bA<PWidyOBoDD?o>g$S{nwuz0
z-avjeu!J=8(?<J9$2BDAeR8-LxLcZ;_m$1{x25w&lLV5|uOHbN{`iIh_jI}ec#(1k
z$id8lk&kQR0p#SykGQhNSJh%`|EL6{grsqFB}KtUFWc+<F^?k272zrJve;=MQZa>Z
zKG>r9`el2y2&?g`ERZasR`wn@r_c_&z$X?yp;XL+Jcudg?9c2$QZ<w=N<zae3Fh<9
z>=k|s=4){yMkyd48>I8K9rhcDD}4(7khtWIBg!5>_O(61-+Uzuqlq_aa56L|!9OCz
z_otg1zp-|+_7|dt*BUQ|0Z?n>8>{tSp{eCn*zJ+GIZ_<AgTJ-w)@hF%=FEMN*n@GO
z+a5kWrTAi-oc97st)k@7jPpa~C-$7Tv`=x+*V#Dl7%Z>eZYOYAIJ(q{7Z66ig5sHO
zj(W-F`uktZ_U~F*sV{c#Qv0~SlVgPS>TxG!CxueC+hcy!uZWXw`0BtE6D1Q~guk(P
zed99Uu~2yarkk@i*?WKMGe9^OFDsE%N99g3x87|N@8CIyoura=q!*VYDJiD;N&Cl(
zeFg|}2r$)(w}oWiFn8PhrTS|G{F-UpH90ZlG&Mb*wBz_aa?a?grmAXu%kgeZFgHJL
z=P%L6Ljf_HI<N?$niI@^i|x2q^$YpUAqvOfS0EorF~8kzPg|}HnUX2&9}RqilrAin
zeg%$gW-qdv-qc|g)q}8!MlO7dfu)-Hi|m#c`v@y9Y;B4q@jpxu*K3%0?hAn-*B`x@
z+g2PZ!32YCPAWTNej6P~+1&qWF^W;w+L+lTF$qQ9(`+EDdMxTlD-|$KpAb_%%6l4|
zn}i0)i_pKuN(UhY?>%ESH^vMbN~>6k$TWb0+a}0i*{GN=i@X5BZlOqqEw~ea0U&TV
zUwM76ijjt)HDrpdCUd1W!9<U2_clDHO&CkGpqvDpGPwHJyekiPq>tG8h~f!}d`_bv
zIxRnXr62k)MBZr$Qn*8!(6LS7r(SVKKinJX7yKXnD9lm?wnJqG!50sD%$rrj+d#T&
z3C)$@RfJ6%&U(`ueI5-GMpprPiOE4?6|iDG?%i}GgTp3MSxucNo@+qiwimoJ<>OS%
zW(8WCDHg|_puRmoF~c5xvzIwRn^E(S=6RfqboJA<-k<6EI5Skzfc`J@RPXJb*LY8F
z(gEa3X>c6?-e<Vv-0vk6Xczn%Lv<l3;AY%;UatHa<d(FKOdZcb&0F%>1Ky51wPAFd
zOdFkmcieTGH|$n@ieagv{vS<}A~1WFcf^C*l+VJKaoa?sr;)b5U-3?r%|!PPNh(w(
zkCcXxJNrfNx#ilB&F5Ja8PgXJd!Ik!f25{acOrqhe@Mhvc<*(5p%pYzhbqVR=a0Q}
zuGQaT`e~_Zqrf&^`n<jGJa59KG@xth+L>FHd*&DabD<W3|2b{U7MW!sg<kK9d7kT^
zk7<H2obp1ypD%NtXT;-h{0s3Q5Yu;vD^)TPL?x*ZP?`89-5zDn>e+iL-^eA%teOQh
zOMY@+sXe9?our_3GsQ$2C0_ufdD;7R^GaN2xL(a|jT;&SJxny4R@skM>C<5~lyXi+
ztl@_*uIVQ=>G2^#d@^ycZ?f&&ADA>m>)YqxDo%l1Qs-lLAVJeTfuH@t_q%`3dX0P_
zaHsrULKX=*qjoPZ>G^43*}HqbTa?Z@4+Zwm({~p)H^a90W|HjOxJLsY4b$fZ%@P;I
zb2;ZG^P#{UC+NEi2mymJ$;p(4u8#)}T*>=IYYf%nJPW(xaZb<vcRUs|7~+r{oI($Y
zfRjUcdRG6J7wP*Ei1DiiP2{W1uLn*D`oD(RYcw6Mk#Xkkv-*E|rhXM?)@r<`h~y-7
z(-VR2U+R=Pt&8{y&c81(@gEB&2Ed|)fd@16tDSqWlD!s&dkk&_5y9C=-ZT8ZK<1#m
ze=egRd2b-Y|3EHaUKO|<)Zb6d9K0{ke(D|*lMb)G7Fff?I`6DRR^0hOAbI%SACQ=%
z;R^$Y<nG-d>-p2Yfd{j+As77uTRHCkFyyZu4wU@k_u`Rw&%J>$|5yq+R4?BfnB$+F
z@Qfv*?&rG$8wT$EU7?~83j=-RyAnzYgyyGVS@=j`^Pjrs`Bl{@zJzs37Jd`|RiOBG
z{qbOpy{05~ya~P&u%GB|jgX|U6rtcyN!Dg9s@A7mw|zu2zHyY>W+<ym`tLVEhY}tj
zl8SkKVc_A@^l8x!B+F_{%5qJ_krMm=oFZ-Nw7G&@gzgJ0@z<<VgV;xYxi8S2LoSDN
z_i<ygo6hP##Q${X4xG;;7X~78Vk9Mk#H(V@6#CCH$C>w$2U;~*0%>JS;eGXZylD!}
z|2}N@uhtfEZ6#{ZkL{DqjJv~@*K1Q|kQAw!T1AqENLRTIJ0G(%LYlp4R5@iyIxH?}
z5~cOk8}_<+eHKHOGD!B09ftg8h`r`8yXnr8_H@US_{6a5B9Uzy$Sl-a*-mi}9Qabr
z_J?fuy&d>OXYqS1hEQdp$l%e4e?*IL8x$9Ye)fA_%{%?>K!q-<lgLq0sU(;auk_N3
z2?hc6WNS$0Q{EQztz@WPmzQ{D!w3o?Us*fqocde-CO&H@qc=ZnH;=&`k#Ib)PMDOG
zjcX(V3~bMwd$;}J<bGcW5+tRg**GBQ=!3n5Zp;?|8AZey!_=^Ii-qy@-)%{&KF_U$
zY*AkuC=7D15!-L=<Gpu%%(Ga2$KYm)t(6lcw$9J5v)4Zn^App`BCM)z3Xp2T4{p_X
zY644qc4H+jIM|$1fSJt+*98iCJ5m-;%69~7B!C~mms#*=<xIDIN^fb*z#`ocq#_rX
zB}XvrJomaPZIEzv@`*HTLmzkY%85DxScOp#L5&(R+x@7fw}gNQ)I}C%!H~EhBM<Rz
zUZJrP#O`aDiT`}SA>K53&cG|_z$d}))#qell-Ib17Gis;d%#I;btD921ji3>nKGLW
zGU*R}ya#{MAB}1iw%ww?$*n7IBUp?d>9@b>=TT=x!%txSNcq^1)YoTWq_=F7-vI6;
z$w8A7lV!A@9pxReN?%*tN`yMqcJ}%-JaK$KFa3LdgC_;PEv5R4B1FR$`LK8l;WpFV
zOMYK}QbdYH3Ep4=yML450KQgq_tr1h-{b^aWOU6fPNtw*L~h7CqPlqpeMmb1WXHlK
zr#b*NKOX8WSl(Ca@8luqlX;X}BchQnxx^j#U2mzs17InUJ?sGN(-hq4dYdQ#L^`q>
zBx(vXL+%A;YnkG{a3VE+6pM1OK%&M=JtK{zzU3JAmn-RocNla^Qesf(j8m34)g>RH
z6i$L9OeX)jeh4y~Xiomwo!3kk(6b-{COwEa!|~)@_tSYiPBD^qgGgLSux{pl?xuaK
zA1~7ULi`$5oN8tcaF@;1?{<Ek(CK+G$s@Ue{9d??Gr&FUKl=MT;wH4*BjFPSD1;>U
z57R-l;Fdm<?cOtl&*9UHe=}PS1`Buy5ixJM^WM?poh8GQzJ(!b<Aeu#-ns7KleH(t
zk}@{DnU2C%-e2L4S*Z;YG9fof`eqYE&JRciY5soKrCN`CQ#@T-by%WBNHYk)`^(+t
zPqi5<2NRM3iDlM)<j(g?FCmn&@<hF}mC3^5=B{un=W7?D`6;7|QmIYAUN^6B&$>yQ
z3Z?LDyN)5vobj$3>5pO0c_)VF&FFyao9d}e-XH^D!-?y;_+@?79(^F{9cx7&>^c<~
zS!KqcFY+<2!@(c8qrd)VN6z5xj)QAB<lHwt1u%TmGIzrZ+Jj(?pycqC2FP*5`|iC<
z{pm1G!oUSiM_^y(p7Z|y_yXL+-^PyVfU`@$a8t7^s&M3(_uOUg`tKtde<_BCb_w)`
zyuI+Fd(D5fB~Q{)aOF9<AOY-f-_>r;dcTR74(ydEg}9}OF#Lu4+h%QH?}@P7Olnw6
zJfxBM#(j|nC9w@aL85*k@S%@Zmbh0}YnMG&we!&ZoNjvd63NqG4t>=<=o#&kA<kVe
z7nzU9xOMNl-9OTnES|G&TnI7<G3Z}bxm(`T7Gw|1dvITwk*s%u`RF~j;1z9@O?QSM
z_cY5M4sG5%9pzc(&1WxI<sRVAj{8Kk5_eOzv2!1HZ~u?>E|!Zg=aSdLShl_Ic6np>
zYqR8jNsTNC@x5TBoAHU?Da2?xMw$YdTJ?r||7+Tk7j%ls8OSjp8gd3e=^!;-*1J6)
z_1h((qwI=gyI;P=t^Y|Mj|%z0NGxbOLlh_WF0Z(KAM5?RXskhk9GZ;z@Pe41kMhJe
zBMuP3Ix<?pxWzv3UadW2qoz$kE|j1hYy^lFKqPS4?ZfQT2VxeIqmGn}?u4<3sExNT
zwD(r<TyP-CzvECpB1rC1@{5p!3`6!X_kcAToLW>GB9H_6BUEO3we2sFv6{9T0*v)1
z-Q2gv{q<}$J^35oQeIjL2}UcCc-AA^?3+um9f|#t@8E^P3eYjptgf^X_tPQ)gV@9!
z60{VHhmIJ$Fnw^?j^5_(LrNd|vd?5s!Jl={EHkWQC}?k3=o_uXg{C7tjIIo!v><9S
zT9Flnn3A)z34IKa1M_~*PuzPd8MkCFL5#qA0!LOj0HH!RxI<U-U8%H6Z8)TAV&0j{
zV$Xf~b)D%L*i5-(>VXA8GMdWmSs!)`LYz5j$|au+Y5_xkYm$9+J8gJh65WixAfd#`
zX8AySw{(%n6D)!a<%~cwpCBs!@Tj}#AwDlrVYmfIFpeb48g!1m>R28p8B8JElXSdS
z%=TIC(eLP&GfE&m<hj8wQnOU~se%%x+x32`AP#_d@M<i?5ku_NH`5EJ;*e%-V#PJ(
zP@j+8_x{5-kU2$cAV~$E=MMAH@<-eoVkiWcZbpMpl`(bAk9Ab7{pDlbUk&qyW6IRg
zjq#c6R%rKMq=S=_Q6*Wo>dKuF%C@9;qG@TcpRDM!hv^o#p>SdH7cpR_zSiscpFN3M
z6D0%)T!YpKbCg8HOWt#noL;PsI4DTUE6ypgnPz2^x2(gIptztjtk%h>si{~?j&^D}
z;4k))9qn5oa;v^X9H*uv+zcPr|JpIX_9<s!WW+V))pZy?Og1ALzrefVT<q}DLY4a_
z5*f78kY=8^!Aqa54II+4Rt>1hX1$KO(d&0H&pBQ|Af}0<Fem8EAAs`#NL)i1*?B5W
z2Ap!_J>I-?dwszVv%!JzriMH~zT!W#KP_{<;EJmFU)9niNqb=S3FfYk?0;$yvG;C*
zMRha*H0OeViBkYBY6+$y+1pkd^96t9R)I@_B;c6j9q-MH;S1zO7X<@QsYNypq3xt1
zZ{$D+!x0w`m*|E+#QH<{mXL<b-|PvO0{Z%GNS%^Fk80g<=ITG~@8@aDNXc)91qWXg
z+N7xcqkr1FFVnU$J8G&s;N=to5E4z`cRS!BZOS3}e1~Tly^wbr|FS#9lL(9q<fnQv
zDX0bN7B?M<bBFl6+1I=L9qr8OS2sCh<$wU*l6x}6%-+w-xKbMjQ@&dC0ht83i_DM4
zE1liZE!aS|j$I?dE@+PV+a7d*wif=e3kzqkI44Z|!{%H}69M$<Bnh+&Mh&ICs;8Ge
zvriV@)54Rav^GX?#fZ8LadQfw^b}p>F_{5~K9;NwfDiR<-+h$L61yyqNvME$P*~(%
zE*(gwsO4c`7|@vU8{NOQk%ohMqQvbB3J<-IN|dC;dF_kd|0Qw?TSeUz2`>l7nPvB1
z*mp5^q%cIa>lT(v3n<?Hw|CQ2s>Oo`ikv|5vPzIjiR_bVGaQ9?tarfX6Bn}zR0pW=
z+TS{1F?)m~L1o~m?w)9)67nd{2guCmqVVx}lfK+*xv}43d<e#sPeyPPWf0!LnHYDi
zH*=_#yDt`KtK;dc7rf__F?AzSnRjms>>qHZ^Xa0>=4rtyKyfo;YfS&Q>~uz%9U`>U
z)cq9m;eYK2&NomjZW*6^;f_tPiy<-Nf__#b)JsTYwF%gZ^?9x+0eFX!4S?a__=6XG
zTAvpHPcva)Z6sZ0%@4$6aB!Evr%&k*xC(xwWK*QLY_gdb5t#IdT@3V#wFY5`=b9qs
zh1K5o+w2@TNlq0hA0#({)YOIYnUV!I?!%Zlj0kPI<GDa|TVJv1&&ABa6d=L=(xbL4
zma@r7=EZw#(b|}o`3qE~A?Ot0*@11O72AC>F&F4!Gx|TYT)`XA&gyD`Za6K_i60gP
z?i!$=3s7stIw}Cmmu`PV;I0!H%NY16!V%CvLpNX69)8i>o|0aIq}b~zg)JG~seG2^
zo%NBXmdGY_hPy7#g=X}4Z_*$|6AG%P)Rv2Z1(%k1lRC*;G?C}1TyQNcnF4%Vd4ZR5
zexJPpHsbKzNa%>M5S<SD1i~aLoumMobF+JEd#^hnse4o?PaqSVceh`NJSP;Ys70dY
zprMetwO;D+eX7`YEE%}Q81rb2)6{IMV3h@cn>a-sHO|RB*;esR1feocsJU#eQ#z2J
zh$9$i71eqdf8~slCtMha8-fomT~nQ3Po$f;&({X0iG5_qY0iF=_!ZWH&R=5TP~7N}
zT;xPNKzqjndUQPDCB>Ch&PZAA;%w)jalBU)wh}2;URviYJ<W<_r^c8PL|ds?{^8gd
z)71-dxzT$_mC7Zipn$pVQhVz@{erwPyBV8zi@FGLy@4lxb$?3l7i9kddgLTg%n7*)
z<XCe2)qjQe5Po5li5Ikh13|U+65Hp2zCpQD#FIOtL{+0GA@nA>!p{3hI}}wn)KIJ#
z2fcXA2WETFp8W`2K-dvo$!-B_lDLX(=i05G_mz)lHsCC$UrvA$?P#$}zvQ{N(UF_G
zL<Bu(z*AH0wr}<4!-45r_yP?ifif%GZ1-<?Kg<e`7iy320i9i!OYPQQbgb+Uwh7$n
z5W<<n)s;va`YI+tIvLiAcL|U?x5>V{weS8c)i5!<Vgy6j2-XndkDrc7DTrD0y(fqB
zwVIa3Da1r2Bun7a>I(zQ{t=fGpDKY@y90wd1t7(zNzmB8HYIjy`bUUYiaGMa063aP
zCjmKy1JMAIkUVw=4($<52CpK5<Ml*8c1SeoaQIrh1Nqz?zBXp9$ZM5I`4~clzc`pL
z&z}*<@juvU4k-jtC3Xs;>eLjU;9!*7J-yD0mC$Li_KdqiVh+b$X(pfA9ms|Rso_w(
z%{v13FC;QD(Q@q*5*=*AfnU5E+WOvsKrJ98Ik5;gCO|me3>)taj8=_6v+s#?EfPoT
zUv7OVLMi4=$e!4?c%0Pn_z}s<5^9s`oGAq7!-5u0^EO2igPtfp6QwYHu+j8b2}~J(
zvsYn>T1TyF3gWX&>^yeXSjnw(W~t|$+>hMBNNY_^CC$j!KrW<PJ=5!dUtckpXLHTO
zX&F9>0QqF5H~I>m3mOjui940xR}7K7R#}ODLuqC0jvCy|<FGcRNJ6fn@%koMOf9fz
z8zMXvN=<Hxx4mBLlIMgbL+(ZM*%0tv%lXHTk?N|`yh$M%h{PdtA0Q0n9n#H?3Eqsy
zc?IBdu$H6W2HeWsHtVkORuAYa>G_6YpF_D$me3Y+tfZ@24Q0!eYllK29zp|eavQ&m
zc?5RGvO$7sLep??ON<r%esgzk=54y9gyx^?ZJER(iu+N8Xk^oP0f{+Ckp76bVW%bw
z2<LD}AR__3LUmsM2XxtS3>EE;HJ2=W`_+3D5&HX4)J$)c0?p)%5sKusc<((<5BPl<
zPRVRw9QhS+0{pM{eSy9yiv%yzxZq+aCs#v~SvlQX(Ss)9PBDU_>vF|4^TPXgd67@^
z6;dXKlQ<;B3i4&Ly|O48pl)J5BufH0JrEY&J<4miSl^V5N*tP29du+xAf)l}d<yCK
zG4JCW_n0T6<1$_o!Vas?vztrX#74+$SeILxyq9DIz~{SiKj4`nxgVZc&vPkYQPzeZ
zC%;ZJ!zOy`>iImkgG^Fwt&-LyHC8~&KacgU{6yam4ofx{PA^}O)NP+sd5_*r3kRDl
z6)Z3vIPd$HdvA~mqVv?_V~GtgJqCMqhw7WiT-XFe%$w5v+zhSWB{h7Vdw{<I2@Xoz
zWP2r0r}`T2q~G)-*+hBN$%>KCLDs&t#A{ha%86vDGKyG99YQ@2XFTt%tkutCHZ+$Z
zwL00&ZLRVtarcNn*Gq4p6}hUl49H48l}26^M6Ug=@$O7v6rJ}U7}!kzuXjSeJ}13I
zQ15SAA{lWgRq&EGHBUdq3Y1V&i%1l-cFte2d110wEc>;`2_PY*$sFvxCzL{RsZR?!
z!-FNNnzDMLGew@^t^A7BLqjK#1t<&?PWN|WZoc<NH67JxEss+eHlFKc-lR+PvA>}l
z7YIbpvplEHA2gm3l>8&J2?ERMZ+Po-`7z}V%gZp61Tj7}0oGST-%?_+%9%|gyn`0=
z3kVqpu}y3O*lzVm&A!pApP-$`BY`zmfqkLefXF1r3VJrT!u#MMZ6>S8G^!mT6~>a7
z$eb|Sd;eJ)l8s(DGAxJ6Kz-G_LANa8Ebp0(%4|m0Q`e`itTDD_ZKDSKB{`g&?8^i1
zBoJdNPVEvd+bY6bvV+~{jY9(yFVmpW;gqQYYLKu|KDp`K!1@i!19I2lD!qdaDKsQf
zMmeyv1vgtR0-k`Fsw7w-L2L$dk^}2z(}m-_D~J|wxFaN%Z|C8Q7-|8O#9|=KZ255k
z(&4_$mKOUSujK!RRD+v{_<7N>f!JSpom7z{j2jIdLKv^Ht8+8e)mQw6#i7_K+5r;P
z&{(qrKZ*2I3FwXg%X@P^(~@9gLH)!f8425A6tijrMXU6^g+T5SzX%({_Jj5{#1Eh)
z{XE;U4jOBglm_zO)@3Ln7H|h<w?uU|{^ffw3BP6rS2SgZ1hf(wA(F{$`2pC4u+E_k
zm=*+0B3wAZyt&Q$s!g8{X>Pz)D{M6>N!aRLzj~}EDhsk^8S<U_cj3uI{>a1xj#;nQ
zty{i_pFjKu_jKRuJ%0$-qr6qBahsw-X#N*Nyz*0eM{u{sk<qZ6B)w&A>VY)JjV!Sd
za(%#`jfs8I%`CHm6$2t8o`_x|)N0m5H#EApXv*X90j&;VA;q5!1o=10qVy5%worti
zDeWMvVud<;se9t<y*r?wYW&iG4<(hEKRk&WrKUruOjvLtx~h45ZeYV#giLA~Y%=uA
zN?-^ki`$$)#bAvoMFhh-EOr|A<v?%~&(e7b_<(qhV+cw%KaL5ExqtUd1b&S(m!B1Q
zyha~pHnei7NZA-~=GO*3FXCYwnnrCSu4#-p$+YD6&rc)rQ;4+$@JalR)=rH+v;P&R
zYN#k$nWQ2^8#Ze$2|Oh+rIOOP97U*FPZR7{W4HgX{_jPz7a)r{R?iLWjMNTA)l>ZB
z1AqakCUIuq>=OtL?Hql~OV*SGaQv3oQe-;z22w!!sd<6J3-$;&m84YH+!q*=%XEkh
zYpiY&FT@n`JeiwU2L3u#f1HCqFA<u^N{b!~{FuMT3nW)y-a~<>WR+1^aUK(t4aHcD
z8}GITejd%w1s|#_!-y;~6J!?O(*KSZm`XT(idg@5r%xHBG1P2rLK0kL<NCl3iF_3R
zltuNoRsxO-o(jB})u%l>3yRn%K84s41cK$4XH>Y&Pey<JZkMA+6ach<LIUUJC*+yx
zfL$;?TAq%;Ng3vt7eCxwe4OoD7u{YkPO)ca9MU6Kfy<WltGnTu=yy`ON*hUY@sgD+
z0@ThlNng9|OQT0TxaSv=vrN#jcaM*5&(B7lCFM+6Ym3qX{4_aXJ6qiJucGI#=prx7
z#8TcOq6r%lXD&O?E}9*E)Ti1+DtSR%QD^XOg5qy*pSwM};tm}LVp<vSv@{_$Jh#<-
z<)v_wfUZp%f>tTb(87<mxq*km%^d+#v|zCxw8braMOtJrh()Zbk>$%vA8Pvauy<xg
zw-*-xc-Pifg6K(|o&<CJht7l-qGr7r(LN>vTHM@J>EsB3fOa7ee1EX}_?+m3xn0{w
z<ihzW;$tWz3KmxSs?%qB<cw=0q#+9&(!X(Fgv|Pkznu-QL_RX8TYJWMfO$%tOKv(S
z0ZAwcF2G>2)LHdsMAr+t%MUn1*e1{cIYwF_`iiTZE)R6;Xw7UD+o;6M;?H!EbN=1h
zP<(~~1jiJpcQny#eK6*#qR5M<c5kO;d=MJ|X(=?~W#%<86Gm%GRtDNKSPi+?ajHu-
z&p+&3J~v`;cI46dnXo#<b<E<X_BWebr;qZ2r3f>Q1Oa1X71S(mnKq2YJ4_;{N2QE4
zRXc6ntjIkMWMYP?3fP*7dLWJY-LVnl^lu_+aLM3Eb3VtLcaF9DRqAueUg>9PDo89e
z-Fn!4()IbSBc43i9P8M7{Uc89rpbyx7sL%UN1kXeKQdY-P!MXE7HoBL{5q^fi@duo
z)nOH25(3PSz&Y~XQep`}C@-$ajM&fioUGRa{)Kt8p_#lK@Y)13_#}J8`si1KUEA}E
z3@HV1mJyIS4H9lr?s5)W6LsFuZnDlf<<qFbhto8EwC0^G=lMG$CtnuPJ|qth4^hzl
zgGBTR6y)GlG26HGC_JXCbS$n45xPV66I9>c*E-`KjXboQzHw|N-n5boL35*U(*L@}
ziFhRPhX`#Qib<Mf2gJlE{p;1v>L;}&e}oxZSsuiB0g?~&E1u4o?i;C5H#J7I(>My!
zhp3{I^0^E*)Do54qzywFh+L<I^zCWpp%nMIx1;{NS6h$<;q(Bt(D5k+?r$wox1?*s
z82sF&OL8)T>l4G>q<U$&5!8}uFbx~<Jd%-<V9NY>bH6S}NABH%o@l1t+V6y8|Is22
zEUh>9Th;%cE%e#ApkJS3{@KEvxPC#u0|Sxm!&r3o(O(0>fz2<Uxz}uodO0DYJ&OfG
zszLb@{6H*F^y~W{cWiz4H(R>5=MMwpk?=*JAK@nF4zN?l^cZ>?`#%i&NMxlJ!iGtb
zZ$8~rcy@kKkC+>~wht@7goK3}a|TF#l6hjDySTW=N8Poh2zvuIWrEa!>C?@|dG6eT
za9f6qlN&1C;?46nx!cC{xIRj|4HXL?8mIK5;JSI@e)rnK9v?^gUn6=*co2SAsFruT
z-(`opVMHe@ZHkbrD<5@-7l)rCSaB3X)BM+waN%xu>$q?uG*@f_9Up^FUUawHoTIG}
zwSw|#r9m+eLGj`+R9v*mdG?yfdp0S>8w-*}C^q2-ax3DOIn4`qH}OI_-q4r?Gia;R
zt1+^8v-T>k#3KZ;f(Z6>^VUY^(aG8}Gy^SNXC~gCDdv%o^YhI;w(RWEPRpneb^z9j
zCcZST$vNh(9#22gr9C4L5t+N9uJt4jPBh&gagGS~`0<tqX_Ff$GKtg$HTyl}EUnO%
zd_ILb$nt`(uw`FucH3_2dHC~P+H=S8zUkrR02jf}eUSU;^*!#&hWO{0!9+F6t{}hT
z*SOH#y1d6Z1G);+$k?@t;*g9ETkiH*6us*GE^;WLtEg32v$0Mjp+Nukrh94k9-PWO
zNM=%jY4+^aanPeI5r(l=C=rl~<OycXPG{2a=vUS&6U`v%Ni~0w1G|0d9yPG%=!IQ`
zs*DQ-t07|Ce}aII{yyfQdm~3Kjc6Y`jKqfJL9oXr2Uc1o)jKhmK|(Iy?q>Dqabh(K
zHXdCV@*$^-%86(t?th$`l5RQYD~H14s9Z^I8sYWH=Kd_F;GS+hBO|3>PIIudvbmJ<
z(1JqB4^qqlBb-0(&>t`?p~$k}M3!+L%Kwh3YmYoG6mj&(EVWrTY`|9|C%(wMQf+@Y
zwP!nADvvy`XnJ9m3AaL${_uI{raK}Y%Zij=6jlnmRX!GP4tv(=ec3--fZ`8$*17(Y
zT`kz3>XamFWi!U|>SE`ai+44b1C+yq8%df;fkNQQn&+JB+9LA(FOFykImA7SX_oPj
zWaYb8oQtmZJC88qnn|(>yM;V_cCEX7S@)9G?(Jj8iG`J*DzE}J-vo^P{M7EbPjy#<
zgx{X_Kxw(&jrcs=gFw3`U$zo|jbt--i~GQg?(aaRcpWSskp`O>c`_1A^HTT9GrM=6
z*S)=9I0`md8e08L5R{I39FMsD2J~EUkDeM*vjZ~eWr4|IXNW1b<%jnC>kn<s<-h@`
z0;naRecQUEJsQIMAnl1}ZK91&47VffsZ7S_qPDoV+#i<7G6>ldQ#C>v_xa0p?r}Fp
zpM(%tm?8Kkr%Vn6v0>o1$9(R#KO3Ei6zDgyt)v}<EZ)1ut$0%#kSfu{`IK}*dr36k
zZgsC*6Fs&~MMpGKyjE%9pSkV`d)ueciLJhH%eVZC#Mn`EpE}hZn-w0r<bR+dDY{dN
znV)8l92{=Q3r+KPAfCF=spixEcK#L>2V@)~b2m3QLy+bqDODPT@tV!<^)H5J&NXVH
zNLvNF%c~(3%SYJF$LXt?-%y#nNV!r7*4*&9d&DczcDYV{G+ESS#nMQfZicRQ+un*k
z{y|7cHbPqk-~^>A*qz?i{$1AXm8-jJgOWysLz<F=fc!o>+%&9=SmcgTN)fXZ^Xd^c
z==U65OmsO0OlCsZ5CkpN{ISw)9o_AsCA_u(0*NRNr6cZw0M*g%mlJwicbE#)MNLv{
znJ5U64n&Ary1zZXLS?lMF>BYt5Fl(m>1HQZM9Y08xxE800U3vdBJ}(@+&yA#*KNl|
zNn<W%`O2n7ygKS6JPvqRl!|*NyW`utX8J#Y3E+^xy-gPM`_^*z$aP&`J6?N_4XHGU
zSERm$yDP@NA2v8Altk=IRcb-*`!c2~Eu>^w>kO>cds~pN>KpzfoFMR5B41O@rK_Cl
zPVc@UT07#%%9!|SI@rV4v)%10x;`;TznT|n6-k<xl13uUlwafyi;3tMY^D?hRUDm0
z4(p6d-LxJN-Aa7QC4O3nV>BT&y>qF1{$b&M1XdI3(;>miH-QGHyCuJb7lBdY{er`?
zw56JfbKLUv;qesKK!F;af~Fb=aTWnWe#AnzUFFU<;SV4pquq$QF}zu*r}D<?bKJjn
z{UZFDuw_XXhTk#NymQ>5KXfR_1{5d}t_=H^bg^e{cOLyo)g7eG0y3e2i{asBrgnEP
z?GbfUvPzDS1V|JsMjQ7uA=<rQR~tL;hkZ+e7?Ty{J{%Rb;$*a^Q6{?_Cz57~`NQGO
ze7>)HcvMvMDcwY_^_4Y|?0mAvi`k}YySsmO)sM2j8Mv)CipQ50T%6J3ES}x{q@GBN
z1%}Wy4x4|J$;ZTEe_ZK)aaxbpI^?hrt~kt)Ch+q8r@No*YRaq$0ls#~O)%&*)7a!5
zHbi@>0^Hh2>KBl7@%7Dk%*{;h`SE>S9tSUyYtX?&(C0bi+p_vitvN{Kgb~4NE&y^G
zoPwph{zEtMkRHW|37J`xzb5fmqcY$zNoSacx7%-*`uDLEo`tf|Tv2KA<HwpoN849?
zwQINPRBX<5>>EfHvSK)uG&y;`KMNuNY<{A<Zc&uYV~bFX$pKj&BuoqCI9bCI$B(qH
zrbZ1qD?&7T1VU$=n3_PXV2{^7>OLOZ^E3Dh@^yZ>gkclnoM867*_}64*%`8t(n*H`
zs{|2a8`CI(GWW~JRXjo%E2^v_LkW0!JXn>vbcefjPS27Ty8J_|0&1Bt*}eKn?Z<mF
zYnqjUiJc5jvma~SS=U7;A##CGs6PTuS`yMH^4Px3Zrhs*PtZ7GdWR4|PuYPUrS3h?
zL=S#%7jNny{X~qWn7dzcZ+u$`G>cb=7$?UU;Wfd;#Jf??skW3`MA6ztie7;IrEwXS
zCAk+5h<xF|?(MV;FK^O;(8Q)j4s|1vBR?D8t$kPq0xI?mXH>AhN{Y1O=a^_#e&I%(
z7d3nF|Jn>J1CNfj`y@qen#g7hHlx54R1=c`Vzd2Ow{BA8#Rs6w6sRT~67O^(L(<IW
z!|i&jTS!wj2qFTwV2J4^_B8wcsZkg4K3b@F*-+ic>4a}fVK=0>X99LWdeov~ZO;j|
zPR2qcZxv_m9>?2j3$zUhZwNl792q<$U}}wZj<YzjY*vJbqy#Qa7Uh{HPDV?}dH0QQ
zQ<ex*g51)Eeq2%SOnxP@?!pLJ8@Rnx>=aMx1as=w?jz^wsvvE`K=J<sNkh^U#uYKs
zdF|9NR3hC<L-kyDvJ0h~>o0W5&I*gL>e1fTh<YtOk<(6}?*t;kJ*hJ*HU<%2F~+`;
z<!qR%;w#(<ZyL-Z@U3)|<PV0rXTRF@mywZj&X5IIEvO6O$mm@u)7^}R^(4`TKGpyj
zA@d`04di=Pn|s20dI&+F1~*lr8)Cyw1UDp;=o%;S=pJhhLdjRqsvg`=bQg{wHAdDs
zqdjdD+9G9QYXm@}zLL3Se>)`<y}$?8IyKR2?Vs-AT5VzqLh%XV#WR*d<|HbOZ+709
z7qRdBNCf}|a&QXaS@2glJ}Vx0&iy92=X|t^y>317z}=5h9zkzC+e^W7yfOfqByr>C
z2RRqaj-394ZhWVfM03v(&aZw;C-qCBV@+U-d;e`ce|?U7yIV11jOnIfvwPjG|7?N4
zpRmQ<_ZDp#HOve~L*>vSzfQvzK)8gUhd-@w-79-8-p*T#K?PuqB?9yk@kI`RsrHO_
zyFGoG3gKB8QHhLza0!u5IL|%5LJ<K78s2K+t15oc$F#YBm4=_=;j1tn5pg6gn&I}F
z7;edEZV<;`@oyys`D{01diTodd<K0c)aYb@9?J<Me-T_^%KgrSnuy;sR3yklUFJ-q
zM$sycQlVR&k@XQ9Gj)GDQ(ZQ85HA1z`olD`tDt6Ls$nb-f8u_zEb8x(Tp+a0a*2^9
z^cqT?YQF!%y|PP>13^L%L3g9d4i$GPSdYYoi!*rOcMIIyZar^!oNXVDfgFE9tN@A~
z;Qvbqz{3~0^A7BJ<dfP?Id>vqC{@Pqux{XzYUW?!M*SHr?aUdksSa%fase^1Y3}uJ
z%FX!$J}4Kp0yCkp>HYRub<h|d6^6v&H1@05`YO@e&6!*KW*mC3{5YcmVHIs2KiTwt
zV^$rsr{Y{}zHx09(6k&?AL{EQgC?8ry4x9*auN3EmRw*KlcV5_y<o;%lkC`_4>RuK
zpedQ=CTmxWjcy;CL0bA!APfqkNlMp;9<i%m@0vVQse#YqghRksI8CP1eQas;6EGIY
z0hpyq+tLJ*GRgh=xiF>3fQtJpS4yU(o7GkBkaxn|%9q&uvq4|Z#(QVGOO|S1*bAsJ
z!GTawsXHL{=Fz3@EuTe>J1s((PjRSTT%+(4MUVWx#=YR9aLd>rW=+ZSg{LTNu4%G6
zdX2V?7-h!7I?xjl57F1-P1Sfib8*)rW--SRyHt64AxVFJtlL%>1{uMGCFVhZ!8Eh7
zm;2(SiZX(QVgjpG$8%C5q7M~35cB%yJ^Bv>UE7OQqeNai-F^6VojgZ~q9~jbDKkaJ
zJsLlJ)Hx$RVk7!E#~3{sp5rUD1bQTzSLeIOzZCuAJ%BZ%Ak9Ff{+(kU_z;>0#@g$j
z*Lm!X*Z_8Po9v#sD7u`zQjw*Kg1OU0S^?*Oq|BZEph_KM#|TCu`P6ii!Q;uUF~W`N
z8eO=c>y3DMUR2lbjtP-M!x5XQ7}3<BC}9yqZ=SltNqMKo`3qHW8v!CTEogERa&RoL
zL)Ym!%&+1$5~_jnX!4SCOz%GS)REEuv;=`|ep2O*d|E6)x`>3331B2hm>iNgGriKy
z+jYQ3Ndh)KBXauC8>-yM=k)|J*|BJ=4Juh8Na3y))!>@jRFKLZtg3p4`i%CBd(Swx
zb!YU6?|?-@VnR6X0y`rkr^J!v(ER<0`{W-{&qHO9t|@a`4@3xN%87_GhrI2^p3$S<
z?}}myMH71m7ID8F1L%kDL4(8XM9@gd9YLSXB}?2s1>pwb+XPhbqZm(E;+{NITi9=i
zyeeblEoKfA?O#iEtA$0C5mqUdOoUcbwl(J0*2w4H;(EYK8$x)<;*BS65}yus@0`@*
ztV8uw`m#{RdQ$w|Y;JOIebB$KBNTPSca>7C%pA=+(S$18*#||{S1I(L57i{?Tp}@V
z=JqpV#>YiJ9^F-J0vYw8dafgOYBuod)iK?=M9;<?023<|F@i0`4F;b<yccJ!a!<NO
z85rQ5FSL`(rdC|SDJKeY*QeF4Ulz6KwQgd4!t0o;Od=R`r;C4g=B!Xvj0SNa@$D)C
z(-IE(x^v!xkq>q4CZ{H+Rjg{hw9CQZK0h<XJ?~k6mK~O`ux`Ps(tY{&ZqeMHm&2^N
zoP?E;S{H^TKI}(5;QTN;VoOHkjVxt8C@PUV)GI*to?O@O-ZB5+V@&b#N8M>YAA@j@
zAp{Ifn=l0GBY@L9{$Dr##Q!0Hz}?LQ54+t?PyqyRI16)~Dx!%(k<E-kXZD;PKmVe@
zaW-a1|MWsUkP5oYbk?j<=$O;n=_aR;9ffGg^W1Cq>v7cD2+`9xXykmy%1;apg{Ct5
zWz0NC#95e{7~?S6W4_Fs?)<SxC01HGft=jGi}rB_Zj4-Auc8n_1_daAKP3qLm?NC#
z?;@X_sx9zXeCS00W_6#fcYb<Wgku3lb<eR?QE!&}H9TpoB)n_R=qbYSF!AG2u$5sz
zz3m6?>ASRs9Ku%M=z61*C6}d{-(Y`^ih65;O7Sp%^l6draelul&VCxN@;`(CmW=6G
z#8r$Z$!21iJJnaHxXi=AWzf)lE`_Fy5q<oX?wg~+<_ruktpc!s7;&^$40kt=6vRmA
zfFIMKiZqICyh*&(y=t&p7?80tnH)t&RdIxZJGZzq>r`>1jX*Dn$V<a4L^Zo{Zp@JG
z6-ZO;xlh~a+ko#LdLs@oPdF>5^|*7Nt_u8<tx%^A)d%P7cbW5GnL__!OYm*@l0lBT
zl`l9iUaGxlDT3%Wgn>@lS=WzWbXJ`!?IJl4Z(jjGZt_wx%(=(dw??bYG2chZMy2GN
zWjpQh=R^F@fNFvvH#b!Idz8x6OE=H|9y4^Upx*L>%wVfZRh%sjUhKZk*5AWT1&9|F
zW#YXrr!1YT^;CiLXk=8}M`{2p#`T0)0b1~$d3da|;IOEi@%ql;q2SbJ5yeTx3h*+<
zdAg4_Ayy*``kEV-X?#uo_||>$dcDQ8jg`<S#T_N30_DFqx{uEcH--%*R83CnFqDjV
zeor|nDZ@<k?EYu&B}e6(8$A0r(iL{u;!3m&F3qU)4Ab*|@0@)jeI^Tj+8Gxhv)g3%
z?8n0TJ+9lnC?#ZczbWo94}=i|EtRIq6UpUa(6hI=kNN5VMj9Vn_E}*Pd?LxbbB}xa
zuRYq9b`cxS5P-RQ5i~L5kjlU`&2yLajo#kUwLPm?RS6DpoP+?G##h}nLwl|S+z_Zp
zy#iG0ByyCab0I}!cX6dmHd|6O2*XM;Wv{u7Maq^i9s=kPPYhWn+zEIid%c@BrpI94
za=7P9xpIS6x}g!$Q_kBEu8gBa!8r+qEM59H_V=VHY0BoZ0nZku6-bT5_`)dBon+#u
z;IhR@=4`h3THQqid6_f5Rnzd@m2CWvJ?>t1f>;IQRhgk_Xy-l;FxMY%FKym)BjXFq
zk=FipR<ttw=7##pR-d906pB1>)yeL<kD`vhPgM@p#P$G~5TN4C+zIZ%PeqN&*WU=&
zZxvycor^bjO>nz?tW8{sEKzwS5HDHsC4Z9btc=!Ej~F6kvIA~Idlk9+Qnz|@^cEBq
z2nFt#LL<pmhCJ31a`P?}LLsx;Ey3rT1Fao9#-Cgz7)W`8!!0z0se{ekpV%8$MeU{O
zieWzVu$$&H8pvZtP5E^23W*+-vBSVi-BusPV(?Po&>7YkECKoi=}Ap93mamV-xAs9
zS-qSB`{f{~i?fE*<~^b{=GgzE>pZ}tD!M*CR*;gY`0h>FW#>i|3ut;kMGYhnNJ0yU
zs0bUfAxp}J6hfjXzJh{c1;q|_5$pv~v4Ra0djYW*P_bYyuYSLCZZ-|S=Yi+h%-lP7
z%9%5#{Lh(XvC1(F4*P<<hPDz7{^yEV4I*x9$QG6C+^c2>hg}q_r2B0QM#%2dVBPDz
zKAoj*MR<87$w5p}Mv3tqmf}p+ftPeL77jHx9-8u8NNe&NqNN<!03(VApJaYJIOVkQ
ztT?8Ruvn_`gkmmP{gRvYL9aW0W*wn6xe%M95Hk$50v=fJp8t{7VwxILEletVki_4;
zyxvWCxmVp!YO`vqfDVs%-fh{e6`aO8e?yxAG@;DOZ3TP1>TbBFcYdUYtc$l(#-rck
zvnca4PE1B9^S7*aFUk<(YM14cz@E$Rac^l8FiM&whbMj)kO^t#(EHt=PT0SfyfzAP
zPLb3kheaxBe!$&lpzIF8EpV)1ktbC$k^oo@cr`bsRUNEMzTLioNb-?m;}@&tLwJnP
zLJ{wXqb`#y6Itel8{C9taqks$zY3mH93jlRicuhvW0ApnN8w|MeILA79SdTs5%rj@
z02&OjrSEFHX4Za33{$qLr(UbfM)EYWI?r;)U8eFnWY|Fn;rzPO*ePGC5W)<%p%EA*
zle2V_TkySNBjk*h9#0A>43MPAS>}f)-1TS16>U)F7gJp`(PBV(EO3AC8@J%2?pL90
z<~BzK$iTTT_`@Tw?whiur<8*~!U{(@W;g;gR`gB1SIZ|<g=R*p8>^;A3D&Zw{P9Bs
zO$P%QQp#gj_C4-yeQ1PST*-qtJEQ?1bl0!w`}=)8uL2B_i|YhVfc}kAmuj+J=zGOo
zyT6nv*@0fUq3^5rsXMF9`CTN?pUiB*#~ilV&6pb-p$GAh;|3Pa!TP{P_nSOr;gH8k
zq>!xuXCO8Xw782dboc14HV|~sVPJ-AQ8Pw!^0o+bJ$12r=5O&S4?sR?q;w&vDU?Hk
zo=kJq>3sudfM4lQEZLOTPVKv`Nu}mt5pJ+6lX)rLq4Kj_;xgDY*7Ti){49GUG)KCK
z<c3A(qnq4qDy_;{I$GlUn?hw#bXH)TWVJrZJ?HcIpU0>&gO##Uk5Z^9&De9?liO_J
zoebr?w_lUn{e_t6p;d*BAZ3YtGtHda?EZGIryiiVYidnuBur!F7`Ojl@z<aiiscj9
zMWzso7xTgcxC)LfbpP3*4`9N@QcxCcvg0M{822eB-@ZF+=^H&RJpercmkpW!<>EgQ
zw=!FClkHwd_1t<7tDJ>c9wJwCL)FJMc4W(RgjIrt@z121zi0Q&D(Q6<9AOx$a9y|=
zM<e07_yMmzJ$QST){wRWlURM*#v{rP(Xryc!MR7Z*4Nn4a6xWclvNO$-3S5@#6}{y
z49dg7mjNyD2}-AP3=n+_-(682JU2kUhjD<Z$ye=If)~dGboWd4<j3Ma8;38Nda^ay
zqVUWxv4>L6W}5hfO}Zm~_5|uj$&E2pRbneAcL5sSt2eq=AFzJ}9<>`1l-dR5?gyU!
zuf~ol(M!Z&gFN)rq?DhYRqdB55xzuefqtpw#Yr<$R{qg_2<9AW(FRb|s6fs<yDH_I
zxc#I8D_5Z;xdGpf7jY2czUezVW&eM=2gC@pyO${4Jacl&DL4|Q?6-SgnWAgT-4R}2
zyN*QChj=5|wOLIs3V*YbtC3R{Ny|K6<vwzu=hw-_!s4NI_#t{g3`9jxKTj6jXwO&@
z*I>Zc;mq(LHw0FqZ!3f*_f@;HF7C<a6@CW}wHYsv@&gP5tkjL&Z1~Jxhi=s4+Vc$B
zR!o?nD8aFIv%Tut9^l}E0??T`%qKk&ymDc$!w>HYXel;5nbINq%MOJ$RLIs)V)ORl
z?s>Py?|rtCMM)zu2$F(HJdhLbu%FD2|9gg4BkCAdB%v0;olUsSjy@+=sktmdpdRE!
z?o7GG{xBz2H#&sL1387avdnX<Y%i|{i(qbjg&x|tqmaMOIM@vyr|u}KhBi)@kacll
z!LCk7ck746s)k`lY<rEHN7CKHlVc7pOcxE|=@N&?n;hNd@P6*fg4mnzo`!IXU}I>O
zZYE~9%Tr>NaxpPxGVhaF=A0AVb^WytW+&n-aY<1^pRg@uo77j`{y+5=3pQ3rZ+$$S
zh6KHA&RY+4_ZlpgNEQ1Cj}Vj3*vzqJ?Y5LhddG{AgzbeJhXx@B*7J{jTz9kDNg$UF
zfM6un5pUXu*D4^G*D!N)@oW=siTfx2V|(a+y`MWy%`WQlM3IDxjJVw%__!KYc%?9c
zg3b#9Av*mTyXuWze*@p7BEPD#Rb(Ug<{-211DjtIL&gzaEliqI4I@s&hxXyw0;iMV
zv}vB11?HpvDS0I-jEfB|7d$KDL^46pI()2~^F&O}26`V>^A&X*TJM#(1y5=nvnTAg
zo*;*8%^P?0$!`Dj-fvdu#1_H12}Y4B7|HT+?wiN-Ufc>5C7`4ktPcsu7*^Ur?j^aN
z<#%M8CsNRnY38rE6lb!cBhi1bM(DAsH-W5lQs#TONw{HNI9v;V<$|?A*$6pj{m(Aw
z7Qg-rBr?IhBX`A6Ce&l9xTKrAV4wJRKhyf5xZg3GP=mz(%&+$4I1d{Kj}_zt(<qH*
znY+8WukN8QvBo78p|a*S1wTh_&AqXQ`^|50A0~Gfi%U_6{3xg<1*la6%2Oi8?k}a|
z8h4Zuu{$Dll$myIO0TOFo>n5C7ikhS3K0(noaSc7E5rg3tT@zMi%nEADT~I}g6_LA
z=J6ylu2c@a9Px;lsmtujZ+iCKrNGEhC?fz3klHTT*Dc<ow?M~*Xlt=y)o>@XWb)>|
zzkS@iKV!zdd`SSPFQuETZtf+2_G+ceya<=TdCjGoqVDdazs6pfMAG{*<tVhrCRp0X
z-GA@iaXHHM#tKkT5P+KdZjed;z`B3;eE1$H1OJ7`z|?F3<{we`_&RsZ7L^r5hW0Ku
zVq*!Q>rVHRl>L|DJw!wjt&jyFnLo$$3wOJ({3YU%&~;~P_at+5Fr};*ltKyHF;wQs
zxEWYLGR&v>_OoTZ_xlyIWeMv<-em3{7%ae(;$nN{w%#wkqXx~f+{Y5LXJR!PWUg*@
zgU@Ie5zB{Fp*3rm3yD70yFE6?oq7stzZg2JQJfKAnc$D^7Z1ZWWNjfsm<WBhSfaw!
z291!jZ2a$bWtLJKT)mj<n6MLiW_J<Qn<DOm*Thf=GG!rXp)%a++Y{?MSxTn35zj58
zt`Tu!aJ7tF@?o-82S<Ibo{=tYR}`Y0d)%4rZdVwm`bFegvq5I~`}V)z>PkU?xgF~0
z(vH{dtKY@yNVp)VL&8!Bc^UefJ@0$10b*8&F&_pAl1wc5&1a{a_Tqkn>Us;vtOSV*
z@qrpt&<D>>`F6e5AjnN<oGy4C6jxYaeHm~_^_drm;@Bif0K-5I$<RvrO*3FWd)Fhq
z?>O5t161HSME4P3G!dLz+$tyTg;WR)U}v}*zK@)q3g{E8HNO9q`(F<{mz7dynCCag
zA%y(jW4X<msSY7(M-Z2V;s81dU=;zmtL=_Ttz)HfJ0f&3AoypvPu{Nvr7m&=_jI+%
z5l}Cn0l?o%^|(mkZXe$4zV=%@F48E%`|!q@k*HYobL2jIVk7hZv1#|FM&X@^<XneG
z_-12sh|`b2?}2zoGtHlIZo!t+DE5Q=QgWq{ppHOHVte4<JyR~<KTT>_CBRS|A<zrK
zl^oRHC#KZ)O^d=ba-(R$z|Au=x$d5&|M5+G$*Hu5bO1t#PfDQNK%B^2G4p}l@N{Yv
z^^*(j$R}df0Cqk4eP{y8teL@PFwI}}9rwY&_Yt$XM|u{qA7}p7cgQOP-$yLVQz*1C
zU;Wg#U@IkLR0vI%_l)r+2S>g!@O?fpw6O(IouX$GgFk#oLlk*IBxf8Sys!6B`b=mJ
zwqs)s@CU#7Y~Wq8hZtK`EgU0)z9k6{4!X?Vxb)Dw7|uvyB&$Q@cw&T7Gxu7Xdo4A@
zpwbAh@rqiN?uyzILt4?HHMv+O%{;%%HeIh(NP(5SgL*1<@Q3HxkylWj0guKV#vuWa
zo5bC>*uGU=i-`=r$G+UC#U)KB4#vc<w#nyt&!K^8hA#*$)x^JG_gbLk=mkta31+xl
zbhSNUYS)J$*!wovt><{<Y>jXQFG%iXvS&YNSKLGesfR*fxg@`Is(Epl9dMjJ?e&52
z(Z<A8cBI$FSQ6VXml9^#c_ciJsRJMaH(_kE%UZhhM9gvvUbIgxq8ue2R1=4iTopkI
zxMlX^|7vkTs72x$5N}A5d$Tp?YbmIRvWOi){urtNHJb+(*<NRLZbwp-rrvD(&(-4M
zMh<frZ;s^ld-`U3_?@xhNEzE)?sG~t+s4=n9@FxY2=Nvm1Ar3I%)n~vyyKN)xd-{9
zXai0K-Z^@-eQ~AMjgg&Z%za1LV^(WHVFlS#Lv)d7f;96^nOz_gmT86}Q42wsm#5qR
z2`yxDTkK45NEBk{B6v8}+;NJ1e4|$3;qvH*a2qz^M>RJ2=C1D$6vR81O|{3q*tLr0
z=;d!^_VMT2tI%r*2TC<qK->*loEIW)l;KK%cYe8Dyje>NL)F3rxp+q)A1B*eUh3Ee
z#WX#q*1q(V*M{0eB&h<y2ea(vhqbg=v=q#o+*u&EKGT?ltZu5a?!8*i_NcJM5rz+@
zOA-MeIns{tK99{9X-GFBaBJSWeW*>op|#cOMoZ?QnY<<mo>I+SM_RK)>&WXLBEMaw
zEuljsi#a;YUMqVh(~Ls2fKLoK-d;AZLqUcT|LMi{>C3!Q7SdY`k}5JyStr<atF(p*
zVfVvHvt{}=^tb&k((=);O1bq9PGVlmwa>h)r5KZIB2W?Kba3ow`@gHTe0-=>^4@rl
zKRm|XwM>gU4Ogc2%VGA+<yti&3VrZZ+3Nq~*vl{0QnUguqC>_%^#J?xG%d~}Ar_k>
z)Dp3U;w<8HgZ{?#wpGV#{RGl@<EiB|;I-OA?2r?+nB3$7R>Y3VBHUMCn_j0FwvE72
zr)yyPO$sJ{aflR7EJgm|<mA3Y+>Fl#vy!!mf>3#+MW4k1z&F1<)n54!HFDE0H8xjx
zsyNHYmDFP6hUrT}8c=>M=-O;?k(zsd42EX3wpULkANmRT?Qy<6U04NSw9<;1mJ{sr
z2A$!02EnB^c%Ox-5L0!RP4o7M@M{Z&)znC)U74l_{kD(CT1KIW!BO}4E%@MY{Tf_F
zmmLz73Hz|l_Pdn|EU?6^VA>~$0PJj{{pMRfE5sBA(uGe&mTKHw+s&i*37j-+V{(Ep
zHG%8xz8+C_I3NIXu|pcJwl7?+-<1Ob^9V`1a0m?+XWXyztp5?MLtlV`59nzp_VfNG
zijy-LqY+bb#L4yrStO2p(X`Qg=*jix*c0#9!VVq8nmE^{uF>KG;WhYP$=WLvyyj7_
z6d)((nt9l71KvQ|=t0I;kZ*^-st<y)jJAYjwalG;?2_BGuq0FwQI>Y(A@&h(hsIvl
zJ-u>-E%NsCP;Ql}lefLQ5w^QF-DA1LC9~I|SR!zxcg)_617kypHO5_$spii-d)zDf
zS>y#G{K+N2=SyMYLeQ&**<RiNJcf+>nbKbd*d4d)J7XhtwiuE_c-NXfhugd6dn4<}
zZrC%XYM5Pc9aUtRf^U%gA4qhn>HB~kRIa6@vLH=4lL^bl{&>ypc4a*ka(cGF4$O(y
z*i9$vlkI1u(3bh+Ci_8+R*V-8r_-S~ENxtAtEGw9dFUzX9EuRkxi{D;9_1E>DjFqh
z4}4duNn92?fH*{O9_yCJN)CTI^g>%I>qGy=5*4w?gFrDD2-XKe7U$V7#^}e|k2?W4
zt&iArkAab)OEQ&myCqR?T;Wt1I~Yz0m6OX)&amgpZMV<05kAbb!r;+}%@a-bhD}-y
zc{g!h%juE{ZGTg42W`^|?#tmWnX<^hQurj9*mxC~V5&K6O6-Y$J3ELrtF@2a)wSP@
z=kXdF|F+i^Bwn(Eb7GQgC(AB+(|ek`(<&<(nQc~#sY^A!e)dukuQEk1uds!}tBJAT
z?t}t+pZAG&%H#PhdG_lVYnQ7K<j4|-%%`b#@YC8(+vBWrhfO2mRB5P2KTWqd$M;RQ
zh2H#(W<!@M_sUSA@{>P;OU7$s1sDUk&8!rC0y#%q4ZZy~;S#Nz1YhtHb)C7~?)1)s
zQOqU}$}TwIGP|&W2g$3-fdwu8H8l9^8s%G)I2b&JF2^2twwX5iTx*-+@?bY{{klYE
zupE%XL(}ZZuW7wXDF{W-0%`A}_LucqJep`*r3Dr)^qCeFNjt>??L!>k;lms3sUjr6
zya{7A=7!>6eINZ>M~|2Ums>I?IPXh6Ubr0?C!63ecfK5){2zUA1WDgXo+7E^5d_u+
zzw4pJvYkf}&Je{aWO@t^?s`jGfVLn<ydE+cxx<1pe$`@-5}aBp1b)3RIPV=TB%DpS
z2+$Zws<8RC;Hpox9G1+H1fU6KJump7S2#-OUZA>iz7<^;y!&&Wg?>Vy#mcaR2#$+e
zOs3k?y)|j8F!N8dzg|S2yJ!&z232-bwN{Mc7F}cyIo}A{f~8zuX4iRgZ82yJNwO##
zw0gFE&O7ScT4z5~(cu#zT(3e5Qe3yd&Wq>=x}3GC9nRXJ7&KT#Y@{j#E=;m_dSXdQ
zs4P;ceKNni5Pb9qZwN8bLr7u$fi_q43`E<GXSs+@kN*%HP^wkZ%&e}>2(uFIhhGyj
zRo2_V5hv)wCviW$WS^|=Wve`)nKVD>DF`zelKw97+gP)?71g0KX@Uf&tjO&<f^VNh
z6T3+TX>C#gxjseS;HY7{6Pbas_WF%>zMQwBl(i~Ea&b|rx%)wT@r7DZK!4;jDD^0+
z({8szuF{^y%DKIZ&-;(EkBFq0!8agkgiWuVNzdDxM3NIhNX}UXB4R%G@vgKbH&Q{?
z=*E^1sCsYp1!zjjzXxpLJ^EHB5vSvO(qMbXxPYm(V_nBjU|zdaG>Xy7p+g!b4GCsL
zbH3~~%l_c$2zY5@eA4tBZM%7_trHI;J0bV89Ah_l>H`~=xe?BmY8Iv0AB3|3O=C26
zDBMKs0aydf-FMoTg)7m!D(D$^rR=zz^|nPei)4h1lr>s-ab2XGnM+4bY+7%x5ekqq
zxDH?g8rIm=c7_O5<a2|bID@7<XTSD#iAYfmLc|CP9MyKAUA^K^$t-#bS2ncT4L-1g
z#tw|)A1=VPMB?0mq&7nuCgT_x@X}3WFSqn-wPlRP`&}L3S_`h=#sUJ?ZsZpG*28L9
zLG=)S0vuaxE?MTU9_|${w%J?=oInTRm?0+?_1GxxNOrG!n|f|(SECAMtbyd6OfwC?
z+Edr0M)e4aaM><rbLv2et1$QOwAb>A)R0JL2F!?_cs8Ci^Tc-h`J41I)8J;|JE^Id
zTbM4II~U6iV=us~O+PA0UBqoG`~p&kAqOSW#C>CzW0T=!VYK)^7(M11IhHbhvg^Ll
zag<P@#vHWcbjF{B$>x@Q+~;1=7r8JB@mY2w@8L2!cby%QrsLzix{%tVGI<NftLguX
z{qwohCh?q-^JoUn4^zI&zI4#hP4K3YaCG1dY(5j;uzmVdl5IvrD{xMtre!^8i$6W8
z2`DWO$un0S=w7_-s3s_HLP-9;?R9%mpQFL5Vj-J}u7~n{N^oTHkzxcBp?^jTqc)>{
zwLR7hkVP`)l;7=$w`8QaPiwFm(a7GB;9EwEhKn7E5)PLIVh+n-Zb`?WD&v{22S4vm
zSvux6%-7Pp-uA=wT0$aZfdepxjlqxp)S^+5P;@4{oWdpV1pWVL;VHB(Ou?AkyMv`q
zXxW4iS9!@tGd~DU-K9m7BTf80_50vcFY4cU*tWb+4p|kfc~;AYMdmQFy$`gJU%hwe
zRMeP*dfVH6)B;T56(Jt+nk^G%BKxq;7UBQZ*&T3m(q88uS;neNAp0#{oq-^Rtr%J1
zkhMuW7aSRcDG4S6V<zrrlk`Q>!B_sLvuoAn9X0(Zp(~<c>u0z%YZMEP<1D|tTy$^A
zM8(ce1K{Vj{MZ{<t3U`mbk<nz6@hD$YmPhyVR!78>KSSch9%gEe4>J$#{-Y)78mTd
zc9>5CVmm^6psw!Ey8T}A5Ik5|<vt<!Bcwg+6L;E?y-z(|5sP@D>IK!618&(I@O$u=
z&poJPXQ$g>bHS^2uZPs>##h?>P{`7xK)KKT^x<BgNNn2}jtO9@G1s5m9(wlSZd{?d
zqOkLpU~Iyds`m@@b=?D>RuBYHq{b{-Z&OQqi|ZJ>dr`Q8U}2j(o!$Y}9-IUG_Wa;i
zd&SRKqdtKmLV~$x71!%vxh%pQz0x+#Rtye?<~*`#;9mjofvLRvt@eH|REPN$NJF_K
zr2?4)b|dFY_m>YfB4^S`+(8g7i+Lx&CFYoQXSoYT#$WohVwZTc)kQ3EkQwH$UMXeE
z<KN4{5iC*vmEk4{=mX#l*Y5MFJMA<L?JCCVT^A}B2McjN7=br_>1Leo0sqMQglGka
z;Uzq;M||Q2ChAL=wR1u85>-L`C+oZIHh1Ru_{?V&OqUm~5rn-!F9w@87r4{B3@Km*
zavQ5#yASk+EnPG^<+w)_W`K`iXjH<I2XRwhx;ejZO8k@iy?YVZ8z`;;(WVZ6Bk}{9
zbB4LC(e1NK=}{cHVtJI_1G@pM@xvhZp+j{kvC2;hkpY7ENRVkb5jd6c0=`gZ&wfA=
z-1ru`3=GH%_vA?w=YR53E_ysJYe#nl27myjQIWth&Bb?Gb7tHpV1vO5=GM&)38+}j
z481OJ^J_GC3uljH50WVcVGiEm*SGCn$Hf<T?#QvxDi1&dQXtE`@v0qmj8;KbTvjTP
z(p+;Z*r>m6vM(OkdtU&#kRpVNAc)@x`HBk_!|w7+)iWfpA&p4Gm__b4ChXcJ?$V7K
zxFSIb%$B5TN8p6M%oN8x^wZw2+{*R^&j`RIY)M)MU7}~QHNH60o!>9+!H<+oBoNwj
zRd8tn?%NISSVvQXu%mE{@)F=KunyO)bfc?vKT$CWz%k`wJ}ZCFZM;g$wU5(9>Qmnx
z#-U8JWs`g73Gv^ig6i%HLC-S3zV4noPeU}>T)05F&LLg=X`lD9?sIXkJBqpxr%)@T
zn7i&#H*+tyOX7O>XTG}ZdDioO_lmW#K6YRSoG(8;;FjO_Z&icL*8ALQuS#&CBy7WN
z#Tl7uCarL<J5!P6ELsN)9hWn5?ycIxU6tDV^v3-ZT~0s?#!?dF0<-e1wMT7;yJn@5
z6<2HE_mxzo9ObAh_u9En#Ngw@$WH)~N^sZMlkFR~wZ$M1nq39>nOJM8PR_IQUXMF@
zUyn*9hd*}|&^<TDzWZ3*U3+Pm2;u`V`Wl?hdrCb^_O?T}#qHTcI|!wM5&}|9AU0o=
z5Uu0v{~plSnMa9wDD$ir*@VNBLf{#9#x2UG*;N{{DkG4qf%mw{PP<RH1~vI0h+3Vl
zcn(OFQD%Ez6C1{Gwt)I^WgI!?t^sz?&vCz9u6TQL`fx8eP<)~o(oE8s_P%4{){%pU
zJpc+)2nd4{0i6d=buYMEeQxSotrDI<%0^PvT>q85Yf1c>i#3_fNs&5|tdWzUHRuhW
z&LH!e&pqu!<>lgRCQ4od>;;hr!fUY`+B=5GQ_z|>3^o@~=wp_+@vrFSf@~$Xl2}6|
zMccd|-IVRU3KlA!wFC<wY!8(gaXoK~yM93I{F(roP4e30aPd0W`BZ!VSG@#`4_hYR
zyxu-R)E=8ZVV8T>TxGC;4MxC9B+o}H$HY#~2{U;w_n>3qmhay~c~muSPIx903JYi+
zVUO9Qgdt90xx%F;+ByL!S3nYvoD-ZjB>tEKl|qQE5<nMFKP0qS4Z%0})^kgkX2)1w
z78xM&oXhM9FU82z%S_R_%m|k0X2T1%@9nYbyif(nVUc*1#52rO>+J8hXeF$CScrQ&
zVAUw8>89uR?$B@aXoFXb$6qgE7<bok>RoYzd+P_{<d<QVi11HWQ@PE}EL(4<-W>Z@
zK?Ge8Os;Mxj@XQs?6CV|l^7AKu*z0gO&_4IXPB>^wJX=fp2#EmU%(#P(=3zxgnjwp
zSRJ_C8d3GMF3r5~sLg4s6L(aoHF+VuLigSCQCqqywhKT+mSHoKH!%VnyVhnu8f%ri
z1c<GPttf_ZE=9b_u6;IEuR&um00QsBy&oV);M%r&1+B0sNX^7ct$jf&CK8~GpS;c!
zX^3HhAN5=39yhhe56|@cm|7qpBu!){G{-mL2dU=m%iUXNwbhe`1lbalftP<NQ_inr
z?{YIw*C*h23hyleWL|+)W-v!${Rj5g{WXaOwc<9{lP`xz3v!h_XfHjgcg>ZWd*dW-
z%wj8wF^5!iqh7argnR#Qsa6%lk~)EEz=`^b{ce1$N<-g08skNL!kaeQu_I%(8mo<M
zlkLWxJM8V@@7jZ>YAxsmjz98%HAqf9S%5c=u!-07lAL<fO(1eWf~5#DGQXGGi@xa<
z&qibjMI_;?3VVQ3l7t{wd%|98SM`fBe?l&BeBATnjoTx;_m$wdpivD`LXTk48K)U|
zq3zMEYr|e7NkNlHbgf$kM{Bk*2ilXD#od&s+;2QFd8MFPb@D+hz&WqG#V(zo5l5Y&
zWgGx+zhfVNTBTg1AEK`%9U{UHSvk#!q3+yL4VeY3QWToO;Y)r1yst=n&phMieiygh
zi($#F=ce{jc8B`NGmYKiPCYojwXy)gJr?~UsrDXx*`1gWtAtZ?VJLf;Rsnz<@`n3H
zTb+kx@u-k$c-;*zxpR_YuL=gHmGrTP!dB8RcNh2aB4^m;q3OWgCC?m?D9IN;=~Q>w
zx3L606G*qo^5_g9PNQ|qSY<z{S8*DxqkyB6bD9hFNTAnX=RMl<%$55I=7<vsIBr90
zau@F|rAHgw*-v`$!Gw<yL_VWlF&~^*P{kK3-4z#m0c1#7WY+L9?O-s(YMSiUZtcGO
z)?U)|P%qmYZL&+RIosXeg9$+lW24M0q(DE(12Mu*yIT)dsBBbddL@$=BWy`Vm;Itm
zk0|N#=BRKvsRU$t+57-v`mM6Jcx(sS9Sezi>yiUzjC6))*+c&9C8Cd1;&|aT(nx|#
zzha_&_OV_;FMS5meJk{m^N0C4dAPmqOFe&h4f~Vi76Vv``QTi~ZW$B9r%r->Mp~B(
z&5N+!MSI&dd-Y!F#h>M3^A9(H%ppNgra3fhe}1{=$#-g3h>2~g@u&byKfLI%^K8-<
zMX7OqwzC;L3JkHwS8m2$z3o)ZXCiUqBJ0a3idLGt#a-j-DXK3v$=;P~uQJV>JyV9v
z=zYech<(W22!-T7knxM?onsO{vgaJD@-^=v%!F$+4G&p*F##O4$=&<r-os{k9}JfY
zsMaGaJPt?_!5`eC4%Lqeki4q2aTZA_`Hw0qUtaf`O-qZZvhZt!6Sx~vF)Z`!Tina<
z{TH#4!|vj{-8m1%s=Tx<q@O7-2YN}=QI=Wyy!+orRKfxsEdsT)3i^{Pp{9>Xd8WT6
zUm+zSaZGIlgtP=1EV#g4J4~e|IV<T7=zr0@CD0ek5>I@x+@7*rVa>n+i2<hVYV-{}
z*d)V##Qrc#Q_v!fbV&aJ6We3ol#w+mjdZCZ%h8@GWwlyGi=s2MQZ(*V?g9GQ_TM*#
zJ`@qtD&m4PPZ(>z{@Q-~n_>xRRN(Ab1qoz<*a+Jl46$Uq<i3^SsT{-F*s9ljI@dG~
zGMm1!i;ERLhaN2lrkBG9uE6f?zuNA1j-;cN;A{;?Y2{?85<yvcq<h0fakmZYzFVS3
za6=d5yZbHCM2%itw*vQ2p~Q6dMWXwk_7~-LLWN=@w6US8bKIR5>x=MeHdIH6Ez>-+
zk2`$4N^CUCQBVq~4YL$9&fA>-PYiT@OJaS(!@&Yd&_FF;7TC<@L);Vk#>E}iQ)J;1
z(&E=QBYz5UV1i~oTMFH(6*0J=pv}vgkv)KW!^}uIHN`#QiFip&gzBgJ5(!-Lc<RNE
zBg@?RlQhVdu9ZZTuX{6%LjryO^dfg#t;VxU*IU;r#=*fda;fPN?$Fw}*?m;%F5n3j
z)ipEcqQ36BS5@4GS7J9u>m(uqW`yzs&xG?;&2w*iPx&y1<fxD)IYi~-9J{TrUHpow
zd;+=zP)trK@qBW|u~j~<cMo0~w|1LiLm5=G((5$YD6uKL|D^k8dHm@cbdBW-T*5%)
z;_-B|^+5N8mbfdCof%G1L?ZsAO2CR2ALhO|FSZCOgy|6n!DX9=2fCBS>k9DNL?9s?
zQ8I<<#NYEc_tdyJ(XFW@uaGp_HbYQ{nUL%j{G-Y@jEXsw-3ONv8Q|9UY+-49+$E~X
zwJNou%W<vf;r7tG;<8YA;a|etVp9uf2SDSO`=vZIt@n#CKdMzS@whF%TNvu+>)qeu
zd%uV2jM`zuYB!5bjg7NoliS=gRza(>R^s3rWcGi{P0809tU+VL+yN&ycWOSZ4D;dd
z?xh!KJ}q|a7%sE`jx2hkM9*cL`K#ULbd8=XqAyj%F#*;jS%xX^XY0@J{q#;%b2=~<
zr2EJAN;%(SEJ!e|OC%Ys(@om7Zp(p+Bp1dVwv!|^GU>+Ajjnjl9e#($wuM1@nDFeu
zMD`Y~cK=)KWw#ZR2}WNSlAaW34Ca5k+>QU$lR{QVlKixC1X|57rylCAnW+Sf+FQ~L
zbvB|<Vaq`78MVs&(X&m8jiXsznquY1HglJ{8`dZ@7fR}s@HNeRQsCZnxv~SsFcJ?r
zdKiKh0tD2#X}x>*(R#SRtlQs2qGy4&-e~XLsFniHklGO9%2tjYR^6=IX>*J8*kOqf
z-%81@BBmjXrPvXwe|I;{)it8o_C(^ML6CjqNt<zZOoPY+^DE4UDwOaSH`z<t><_uj
zsgxt=-2I3xZ<9N4WLF9~<bZAgCo$iS8`|r-fRa~XI0}?OQV0w(Pd?{9P^(nQ2_^|?
zJR~h=7z=ys)Rep=O(1~K(HfpOT`vbfU@@2NYiBOd*hewwAtqvZ&JqaV@9A#8c`DGt
zT1Ph$3|2*)3noJPUi!VA9Ejz#%CD*hdV*|@r4q$_?q}{hQ({LKbvQMsk*pYvpSt&Y
zc{VvcAfuW_AovJsgUpe4*n`i|qXWaBXXS<y;C%-<giMvcN6N+z;$B~)tTY$&rU=j3
zfYr^@ue&?X(l|g~R0iRR6MPTq{NiJGO-tO6tJ%w_0&+0d5p-MCSgNNY$3MXuz|3E9
z%MX%NeY$D8W_8OlGe30QCN+-fmM8j{M#Q)*1_#kbiobP#F4hM|7YOP+wh2fnjc&E<
zZ?~~}|F6lqffW|unMQ_^s*)WyCFPv;YJz1x+Kj}5$pFJu;y2p<o?RLp()*gnX+_0^
zwLR><RHh0dB-zSOFn*wp-L=zgyhgKYL5_MNdJGDQ7?aWQgY9>>d!{CGp|Ys03^NUc
zEg8V}N%4Oh%e^`j8B?&+lCo7iMFZkf2EM12G>nu}#VxgB|B&@NG{@H5ugy|75f=nT
zT8V_oFz-yZLq3k{{#0v5k0zC`$@M{E>9Kaj(%3u2AuhecNX!8KsIspwjTx@mEX;Bl
z=wS2q(e|EAamAM^+vWn#1}tg3CKlQeN7zf(DBq?FGMO6jL>+3|N7;7h##mjOobSyi
zALXccZkAoLPA$`221f$EM+e)!t79F-rxfZS1u_!Sz^2;c&yD-fiJG1(w+bFEws{&h
zCoggb9Idu_%q*kB)yS5jsERQW9eA<ZCtoW$X+5NREAgVCWta;ub9cq5hDLRVxO}hM
za2~962VCvG@p;_i12h5c_=tqHz?`t;V5}cxLXW!RC&pilXMnHgS7Rv9)g)bfhPnJ{
zci!0co?+PyH&j%S4~QiCyqs=!u66sJ7JIp{hS*ffF-NX>+Woa8R-P*X^^6D4zPS9|
zk0->MEU6+vm{btL_VGG5ZBpzN^mxphas`0Y!XoQQB;&n?D5AEG;%3GnZXMXu;pYcW
z`6Eu;I*ef~UeFL`S8jiRrw~Ix+QG}*YxeMRo=q12O}iI{aNe^pW8J7;7+9EEP+HeK
zCykS2-7b69G?fk!(DZZ?(UJfJ5P}d*<9v6&>{zDtQAiK1;#;<)>G}OqH|IpD{GRh+
zEXEK-tdp?njwc8km;x8AvBu`d1<obU1?7=Zpbz1o-s&iL=-S!Nh$pp<+Y}qPF;ueE
zz^(gS==`#wYdKL$?d2oHfgt8OOnGMNna=uu`vkLN+CL!-gp4NaWz8qIaK3Zrv-*wk
zoD@nixFXZd(`PvGk862{7sL$l?gHmy?}aV{!Ku^!6#^gRW<M4Q_lL~Vkh7di7$Z)*
z+8)kRHuybS0v;v8w6M8w^{xb2fejn!3r*^~`z&FOj5W?chqJcc>Y){6nJ259IV<TZ
zH|~V1>TB!Z1wc}0t#PRXs7xxvB*KNdx*x>I<t%gxf8iB^BS`oG*<zbXGpS$u=4SAG
ztki0hilC7On@_&>-6VCptsnYvY}m2)1Y->F@(W+VQC7x@`66s5h_s5g3e?&t-}d1Q
z68{2vhRv@MxG!6dGl<$A1-|*yI(Lns9Jj;wPI`x~(J7w&XS?rGufy>DR*EIDcdE%d
z)>+V9A1{cKOc8!6nHaKu^9?yj$1s#^S>9|&H0t3^9^nk8Lse1YEKpp`8Lv4Zrikuy
z-CQVAF5#c>D{OWIN)-Fb#_KXMv7+oifY4>HbDYv=bRi@_Tau6?JG^j{v-a>V(~u)h
zm+pnWz?i<B=ZC<oR1+HIyWN|g0^lJv^(1Ym1tdYu8~MHmj^_i!rjTER%kDwGfNq)N
zOns43;#$J>wV?)xNi#frINJBwWF0~K0-*hJO~+{8b0fNTKg*1m=Uno1m*-iqEHh@5
z?_4^>RN!x#F}o^4ydZ&pTpyS3>s_D~V?$n`Ae`pBalSdHdE-KU7sCP^WZP8V=7<)S
zkjRS(!(0Q*_(b2aCu=F!p<y@aUvDLqiPrVX^{w#gVlj$b7A;m!f$r^_=i9<Q=|o$g
zddWXu;QQ9=QKvCyn9@<c+y0&C1aie%oH$j7-kwD$ThOnYCite*=v1kOhhhQS;LLbw
zp;H5|>D&P(%QO%7z3z3u+gaW|#eV}tuh{o?*9GSlY>1<L7kcyCq0^+O=s*d(?G&ic
zj_?&t(RD9`)u5zcDGOCIhq~1=v3Z$ob-u~B>La@~fEF-kr0-rDkab1l;L33B#grVj
zQ0=XSz6ZzY1amKWq(+jJF!PwD8V38;o!)ikGmuq!pX|#W*|kD^v8NXLjxN%QuKW%x
z*GS)S-Xa%sV<U{PzLh$}=J3Wi-(8St=Q);%yt&x7zUxF{RD>+rIE!ZRX*I@yP~{Hf
zYTwMYT^CHga@#mxWVf$KmW0?g+>PULjJI;U&Rvr<`0X#DP_~MUnXv!7M&~SH4H(BI
zrGxN7kO!&et!~Z^R~glK5|qxsb!W^wsm{^ew2adf(ORM)8(NfIDL$~*556>?*0(Wl
zJR!StNP#jYd>3Qs6RWGh?7}x8i#4D5o*L*eLK14JPk^LK92q%g?HuP~ucJyap!jMz
z>|uzYMj77ozEcDLZ`Tm=cKPNcX?+{t#m&9pS6_<oT`nPPXe=cKdMP3?_fnX_t`nK&
zJr3~-f(0j-oE-zd@%?s~R>X!#4ni~QTi?b^EuB~`!T)kCGJXfidx%EZUR&JI6e6mE
zK9jM-WWDNp>flaoi97$U&wNA%NS~Ca@p%MziO1P`kTZRku2k!%32+CC`?ZhQp!TED
zo5%J>^2N`|h1+CH6f9EaLC&O!JPr_z_2aStQ5^)s^lFpywkJKH{($b23S7!ChX&`H
zC-`g^Y9lAfpcu7LC#Y)g6?~AZ=Q<BOrmqy@mY}%RAR<BN>(6kKJXvTww(M{%nO_hJ
z#72I0vvboU`WBfAF+)UfQH#G55}Fux0*`9daPok0164gV0kyw;mUG%VEr(B3GEmMP
z=A?ACQ?s$_mJ)w^jMs8ZwV$(ag4j7rmT2NMB$s^}x$I4Hy|eUTn&)EI2<Zju`6>xB
zKwCQXUs9ZICdeH;64ycimvMgbJ(aC1fjL*^!aV<z?-Or7K&>d|)^oRG8A~-u>wROA
z^=U?nJA_ah37}*P^%F`G7;g<bz&qPf3kRD!<~U#8tDl81!YJ1QfBN%tUutLZL!5zC
zAIE4YMx}!6Y2S#&rJ)vt2_beA!{_pyy=wKFodicj*THQo+$KR~O2lx#oj!1|G6TEq
zMaFQ@b3WpbWDNNr&&m1Cbjm(B>p~}QOV`!Ht1{auVYPU?UC4&I%sq=7pPXc=W_%;|
zsv6}pnB&sTb&H+wa;;GlSXCKmi_<Q4wnHL34f2OX@gUTQZZp@`IVYT<jZ0cIWcXI!
z5@~5jqB+aCR1P72MawYx%T`nKPR0GsicM5>kx#MRM;1DRL_XzOcw|;oAea>NOF9`d
z<pJk6M~B^kxRA?_X>xw_D86lcOh=9hobP=5p7xlNjI{77O{L4l9UG=N;P*SvhyaXR
z)eFXmSFV9<NyJN=&o6RjKG@}9sMicx>=droo?;|Kl9sfeaJIMRI|Fxic|4U2D+?Am
zYec1yTbtV+&x}2;pNxiymE#;FGlVfGo$my_-P$%PjHv0R;(TZE3tiez!w%Z68nN#q
z6^-2FiS#NqRD4EHpX+=kyq$fC`L|NQE)6k#K~g@oP8FTYud9};+9klnY@F#d_s|J%
z?}G5v*r((^X0qwCX_?ck#@)v)-l6t~JB&Ns+&<qKu-h~t#?4#k+$I{K+>FTv^$t?f
ze-NE;it{FKFjE+#MLKRBpJa^QaHVsYOiGR^lC*-JfG^RG$l$V7cxg;sr2rnmN`Yyd
ztn1(T5EoS9^CNt3Be5_~op-93;bXc^$8D4f9o%<;bGXm}VU5)!8xrt1dvwgLzFW5H
zjCW$goQZ*E=Sk!d*}ZfXGZE^7Ku%IyoR-!DB8=`Y3@%O5_C6hPp7nU}@G3N9j7o&w
z5hpswNf4IJXGv{<DHcaN!vA1XIM#RGByGRb7}8U@8MA#1s4q}j7`A9O|JPZ+8zE=M
zD3duYASVF`BH=PX@~WDhJ&Z>cSm9Nm;T+2_=gx6@dgoX>wMf2<%N9EOiju;;yj;49
zE{Z0>k%%^uQ01(C>0f#((q?;4JB@<7KRc@QU5~%P=8-dErT}1#5u62<%l^3dTzJ)Q
z&CVNZ_?|=x)JI#DVy<5&ftmBpL)wvIy+XmWK$&OGc7C{1i`z$(##a7mkuyOitP7Rs
zY2My%Ik83Bqc~f-b*+#!x6^Y;RddYXD0kxpr#Rc6q6$$lOzJE-10mNhnw@*!p>&Wb
z6bL>iufiMu8tz=*qqUtTaxW-P!v{f3(~rJZp4NH726a%=yL1?nVaJK?pwV)dajQxQ
zE3Ar!t1Gzho})R{3^>6NeW~l%A<6c$jLYrC*Vd@_K#{z3rW5vri%vaLqG_M5PIYS4
zX|I!9D$ypzNa$91u-W<3+bV@zU=$)#wQAu#<~je!BtvO%0Z%4UF=j`LbB0Hng>{W`
zsOYqz%_+Tn`hdQZ&m~)GCXuB02rRm(I~oQwZtb;qo#^-aJOL%16oU0>!aZ6P13YT3
z$@d$*GY&}*Qx933VGSOMG&mpqi@>Ksc>9>KBMA_pRkGt!ATzzu*(E0kkukC)G1-Nr
zFI<zhk8|&A?L%kT4t{V&_+O`AXRQ5mA`Ph$qM}guX6H%~g^-dOBh}msV@&;-&e}D>
z6XBWS4;+SHf{1|)z3fH9tQHa*+PZBX>ut9Wu_q$)7Q>~HCxQQ8mto^`DdP(9ZzUXH
zR!>`f41ed4ErX2Uf^##ErPxoW>oaoMEWBT?bui}5UiQtwd;@u1lKYUvB4Cf80M18T
zEt6_?9&U%F>x+5ON`m~%4ZZ9vX&qda2IU&_N>6*Jlw?xU93}4B9Ql24&jH%?;t<F`
zV;1jc#~!CIW!o{+NhTUYWti^!*&mML(LrK-iP)0HaJezReG%L<TOZGz5heJ_m?L`I
z>*N~<>k-LW0N{;i2z#7e)`QYCdRqmU+L*#j`{Rj}5D-*WNvuZp@%9y;J(1HY4^jp<
z#xspW?a$-%EhO7I(BnY<2isM{c}xO&;P%GcG(R|@m}dsTSS1wJm~Z#C-!t>TfyOn~
z8?&G?cu<r6IkFz^ZHAWwKdbSok-`aWX$;=ns4Y$i0mot@7YAR?*Mi*2is}fn^!EJV
zs4;v)5~9~c8yWZbfSrG|_MYCdAgnK6%CIv7`WS<xp$87JKOe1UM5k>{I8U2S)9LWV
z7?N%-9OZjj3^iT26bBdAUAGyEJMUm*o5~hvktd&Z{+9T@Vy}^uuDX&dFW|1361aZp
zR^PNE{-uB7uZ_L4TQ@MYx7N}3m_<VlGqszXTIB0LR(p>L9J!@5GP9~y-PD8Gp9N)l
z!gLxmDLe<60r|eB(Yp_t^Q!G@Oh||G2T3F*rixXrsw!q@YBwx0mlLbY$hrqrFZ|y3
zl_*VJMuXF~?Hr|3g;k;2>P949bIxdA3U-;@pND{BGt;K4NC<oftw-fDn5&31+&M@n
z_Se3v`sv5HdviMJ=n<(?aVC{r;8Y3!-kp=BnVa@;PH$A!(|M)YedbK(jel8bq|7#|
zqTgKYE!V+_{Df#o4y7jNMb1~w)Ui=4q~Y>b2|Ha<CEPgOdG~7lS|{SsQ^p(aj~MRF
z%mmxh&f~{njsC;-PMXJxPQpNg;fzgln18=vNwrjty&-wUFn1ikp1Q|x4^LjsuaExc
z=MS0Bj@|^aFT~{H!KlQw<P(rd(-bWmwm4VZuakr0lEhkyc}0y(HPJ(z{2jsNFutO&
z^10=+{Cyn16pTckfgcym_V4j~@^Yk#kwgItOL%*kzad^9$(<2KL^R8r{eB+doiQ_`
zWw4)(E&i2%XaNz|gwm7oWVV00SCU&B;vy<@QJsIyU;4;UTAfkXY|NLl{2za*MZ>Y(
zgr<9@NAr8V|EyoNm?$O|ypAvCH2SN(=J+B(boKt0pY)M2O~g}kLI}(LakhVw_lc2}
zluE}|HT%aH|28IZT~$)tY<C-4PF|?a=GR+X^dS*lS5zlG-RN$Et&c=N1@djSjYxW7
zhuy}(LcoQv^%dVI-g6%BW)ZCjUV%r>{W$5~S{{*-`o=20)Vw~)jkiC@5)MpcrGMo0
zp<&cCFHe_=^pW-dK~F1*O*EBXCz7J(3dq3I&w;ve{nU6OLXCNHTVg`repf(Tq<qG@
z6q;_#YZDXx8PZRlM@yc8FhkaO0z78|Krr`wo3Qe-epjHDDBvFELE%jm3EvH+FcWuP
zz2sgK)!9rrB_WvGPl$;$-AI?7_iJE_GjKz20Cyi1$}M`;*x1bKU;Oukl0-Y`YW@}X
z(1cOG|C|nqA>F8*(Gz@Pjt`MJBXVbhUJ)hI#pee(=O6zsnsmCEbh@WWck)1`L4W<1
zI^Brmg%uS>8k*?))&EU=b$w6@Mwbb6!K^zoaot;5Ac<}i&R|wul-O?#Wmzmm{jkKP
zuLKwIJGZ(N^TBMnna9+glTi6k$|6>LLX_2Hr&D<SeF-DY!TKly0l*LJrn4cnaZ3}X
zuHj(`%&rKL>_;eM+yRMaFHBj)7ueRRH>dRE$8Q%WZXemVr}P#d8gHJzB=MnMeS1PR
z6L-q4*;<@b{%oKpOt6SpE_q_FD--8l5a`J=%aI4Sq3JJ@lE$_KuBE|`k`u<p_q`U+
zZXvj_YRP6$1rFVqJ2oa9d1UZfBv0~-h?Fyv_s;hx#P{lZA~T&|W%EL%A<9N&*wR;!
zw=!w%m=qfvZU>-j=9WfygFU)(xc{6jNdu@9_VPf|0L1*EAu=YIdk6UABT4cwSht$8
zfu)jIS&s6d{>;yl2H+Ac*)gMWhb+Odcl)oXqevu=(om%y-QTbC4}FQ|Pyv89h+MY(
zZ~xCzprvfFT&O*9rntC7qk68{$$dCDjtNFwCCZfj_RtmnWPkEFhzQ6uZ{I%NfA#F-
zaj@T^(JCZNZxJr_2mYRzEHWG;)_f{eA^d^1u(4Fc#k4eg(;)i<qf31{z}9;LOdgw+
zWG7Vicq8EM;~q`rijdzF1(u7_3&zQq7YYNfKkHx4(Ux0EHWRqPHvfH>_+=7L3C+L=
zj@0y@6uSu-hcBNJDR21Ln0@=($Bsq1%VG@S7Gn~7*v-{;8Q{g@kmQ#OhZ4Ilw#)e3
z_8Ex;$oE7Nm8@DdGpUU1nY8ZbKu<O=nIstfr-vu?TgBfQW;C)~DNo#fNaC(>P!4K9
z$O}N9vN`eBJ9uUgYAF6_kg%K*iJO+}=J0?X+Pw;0R9%cVo~qlEkpSys{qQL><QX|h
zZ*Qh`7$Emq3-_LORMN5=A#TZj2c;_GFu(Oo`fgp|2U$51uyK+Z^Yf;JIRk?7T*t8#
z$s&wRK5l5>3VwZedP30&Ft-ekuM~$GKt0KsF?DuAQ@=wN^9Xcrwk9p6^W=XC4aA4x
z5!Q3(1TJc(T+%!UD2<d?bZ*n_f!}vf3c0{@8Y>%M#~J(fjqH)U81^(m!jf0*3KTW+
zC)6)V=PM)vJT=<)!K)~fApT~=3iIHqz|D^&Ze!RJLR|Pm%Of91nm5O8lhr~v76JW-
zgOV%Gw9B#cC{yHkosRU1ZS#XPfA%7OGMzv9D}TSu$;l7{fpR-g3TFA&Kb73dSx7y^
z5*qV<G-2*7uoa@Y0e&zH!WE*lzgK#~tlKC@F(D9|xrRt6{!O{i!3<Ha!VsSTW&u-u
zTte{9;AWZLrvtT9`fi3w0q$3$O(19N@_)WJMQqkk9jQrHzwe)%&);wxat_Ev62?5T
z#oy<Vz&Iw<m@7v351*PWzs}zfSo^;7D8G<E*g6L@jqt2c1F%9f_y%WdD0qa*LV9G4
zj>;X4X72}+-}x|b1Wgr1g(snq8Pl{bsctxhgG}B`GWjqXW8UkNe9@Y~5z^_g$@KdO
zI-TFdA{{v~`KU*=g}excd`hl+Cdtq1d}~bO4lOBoI642TKy3a8f<bPb|BurAix&Bp
zA@UO2MbNf%X-!;W?JHfq=NQM$#3FS!GW#)KkR+{%`G`KGYsg_IPPWT|=#h}B#^0yJ
zzm29xO1f-006wlw+IlMIKRQimnEVXps^p~4F0<G0^l5h|@X-nUDqIi<e4lU*zqbG4
zTlng~2&C9f*nt=iu7JcQK<c^=3Z^8C8pOeksM0@7en_0!re`?e%@g(5K1uS*AQFgW
zIm=|9@4W4K+=fc5gPba*Kl?5{X17seT{~iwFRQTcHLww5ZayrrTci7Lhr5Il9yHST
zqd13U*|7p!g8vlm-C(c)rkeM6IfKN<$i^4R(!<5+#b`UW_#Qe}UmVRAidMH8h>0)5
zh_}}H=UttI4z_os*mlQGyNV)EvUchAB#h8xas(%+fX^Y%tF;Tl_8k8m{Qk$}`fe4~
zW3U<B%r)X_2Jhf4IGB-htb(99m{}-}0x?786|ty!opbAHNDX)sYKf<2Bd$zbKTP$G
z(Gf1J#M;OaH#zDYyE%9stw0={nCD^mBfc5G77UORew3{~KIs~^Kyj$HQP$$mc}`xf
z9l{Hz^l=C5N}kBC@B0N1C`FnCo4`)tW9xoQs=8H|4B-@D8~PyOo@VA$UwXc>^dj*O
za;8gSZ1l^5nZCPnw4(iajGEr_M+=vZHtJq$`i~zra2O?p(W<5}E?jftn~C|S1f_^H
z%p&O_u%mt7lX&DE!NX)^P06p02)@iOY^#st!~F(v^3}9Na5y49o|p9AEZ3oS|M~#j
z!9j02MZ#3;;B-%v1{UQdZ-XxKqGgPY9k?Lr@vrR*JdP4G_J@=g*m7bY<@W9hSkzI^
zCkIMXma~$rhwTAd{0px4Z{YcYXZ_tDPTYXBR2U^Ci!t4v^7nZ)@p`IG+#Wz+xn9g6
z-&Tus@#HamA9<MqBB`rLb5)OuZhG$Dx8h#^;S6(3DGPDbDF5f@1P^CvaLkqN&>UoD
zS-}72hk?Uk_(;+<<l-^8gZ%q_8aSMf+`G_!>8if3@r!T0aZB=H@UUWBG%cZlH8V(G
zL5~L9ne^vlfy4MLsewdPIQqLJEUSk}pCgq`0I5vP{Yeu~+Fcb!fNobev1ipqOVM-c
zE27a_2>{DB=f^pJzt*=%h%{6gtrT`X{i5Wp)q%fhe3ZDr&Eib|>XG(uI{09wf5k|f
z1eYA&2-ZSmP2c-TSw9Dp;H-t*Zz;>3^mo!F2iPR$gUHWN^=x5U%YIGj|5s4UuoE&%
z^L8f9|0g(!Hm7Y!X2m8kU)Z1<IBE5!5>8$GALfN_{!8BQuVV}+MX+)S<j(APCMj>{
z!P_|1|5d*d-Faj=DHx5pV3Cu&Hi!*Ho8|^LI*5q$T;Q$`94-AcYKL=r)H05ObphCh
zyxi(d6WGI#7saeK1Ygdm5G`E|!3B5~Jlkz2MVz{r9V8jXkXuUpY4bpC%^=L1Oe6LF
z{5O)581lkzlQ`>=cw{IOtf&3vzmw+t$TSKHt){ZEg(*7g_oPRxJ&dO&ix^rhDRJMs
zBKgmB<!mKUEb8b~l9S+wMyGjA@OfIc*94|bNPM0$D5!D=v%5BM&VE`j25_g@ac|(+
zUiv2oACNlOjXCncz?pv~JkO_LFi<o`Pz3Ojs=%Jz5~Xy6d>Uz1#FT+&2KFe>Qg*rU
zlXGeUc}G)_Dv$AZ==#7nefR)uU`H8qCiL|2>4An@^qE2c-80B|!&jTH4%jRn91L%&
z6yS!r?25q7UlZijF<h&L&?WEoEDtPf;;~djR3-twaMSd_2mhr6*{LG3o&CoUH-5}}
z6hvl+U`Nu}aZd&&f5D(6CtQOl6vu82te)j{B7{Z<*3SI3JaFq?v_zgF5`5Yc^6oIj
zE8Yzp5T#TYStG+nWHRRKrGel$eS35SwbkY|qCaCrIqlNG{&75<MiZe*`Ob`o0|#y5
z!(5NS@R^Yj?*(4`AKin#cZiT?UJR7Yr759zq?&<MdNsWH-}b<lyY#WqGICmq{uTJ^
z7}{pDd1vB4Vk?=saeoB9KY#{AH7X<d60@{&M&J^MM-hJD4-8_Tw`EysnUlguePcC`
zoLry0dcA#_o<bQA9dndh?}T%-sHm|Scq;UP_oMh&iZEYC<bq`2RN`;C^(1{PzooH?
za4Fh1wax>BII}t!*U)QPAqDhod?Z{N4p$DW1fCm)$jIlHW3D^Rw@-<lB`4M4JoX%)
zT#uS%UY+IpE2~wbs0wRjreqXddAx5;b>C$6@7QQ5Q@7)M|KtyoWotnpWs*j3bJYL9
z3rN5iyQ5?{7nsHEm-zpDUWMW!2#W<IEm4bq%%jQk82bp078R@JFZ3V3PtrUTli?ET
ztxz;`+))2@!;<Fly+RgK%p((K`#=38QTPvPpY%X^&pOt`yFA$zh3t5O9ZkhkNj<+m
zSRMq`(WsXmNM|m6HtE-|wOEDt5mh7xMt6BCRysk5hX2O&UY9iJJD!Bahj611rVlN>
zoRssIzD?$SwNCNo*E<iEdB>Eu-8Ufv!IAXkYz-D~`qln7;?#OJnH4ssPoqElCo_RX
zRs!V))<nh3a8852X<PDn9O5O)BzKkBsyO6}!DhUuW#k{f-F{xF8Z-qFF%-$Q>3CoU
znMclY24M<ifkin04qOopbGZUZcLhxIcSz5lcG-#)Ev>RuEgT8citMj#xyd8)+*)Re
zY+jh%ILxY&lYg^PQWzHTk52BaNIvI1ie#L<-b;FHJ}=05E<yw&ixqJ_NEO~OaGoZ5
zq4$PTe1z{@a$0i92AUAL+9Q7H1UYbzOaAjvn&aq%rIC1q_D~P%`%nhk1b#y%spjOL
zvh*1ahN9%p;<PRwl@DuLX>z}#_*+zD44%@R8R6s^(nGvW_`>=2@8!wYB~c(`BO-_~
z-3KOLW?Y?hb+?3Ta8STl9<Q@Kk4icZ^ir-oNXaG1cD`XfL{Y8}ah(<6lg7+hW>*yR
z983<jF9|Enlb_kLTXo^Yb|Kt(*)4W<B<Vb8h`VZl0@q34quG0>J!uKAVw4~&T%=r{
zy!<|!J)1H`=teB4M)W_lymFg;wticjTI61lJ9o@i*V>Acyl;zeNFTrb#vZmb>1dc7
z?Dt9kM=gP)h4Mq?$}!<x8;kt?;{w|t6al%(7qh-d+;NqwmX%PGIFhpZ2R2tHUjv^t
z#$TIo$P0D|YgNoeL`+!?K@B8_V<efoZ0;G!|58O>xSwpl|561zfEpzhh3BI??9rzu
z4*|+Qft|(W3wjBi8TCWozef9qAn+7(1C#WKybL@(^+W4BGg-<fkOW4iM=LVT-5=QQ
z^Yy!98pCC3?WqWVM@~epbWAmu{AlfYTC3i(Tr^PWZn~-Y-QID&wl|_es6$)JHV40J
z=gw{Y3^EemhGo6B#b&o?VaGmk6XQ1f5Pjl=m=I|pW#2%_&j6l5Q@oOVui-yBkP-|;
zG6-($`qVCu@<JBOM_hiPa!vD(`EQFIo6BURLf0Ig66uPClsFTT1uhKxhhW${g?M0b
zdIC3NDfTt)Rhg6%OdhGR(3O`;5KJ4_+Gm*fE%w1t9cF8{>H60fndaxV+VP`xsSt1E
zOprW0qW^vIwapE+juiwV+Ywen0A_~CiFbD$=$ApUhbn}UB}-+Rne&2uG$VNk$3sau
zT#@xc#!WL<y<^|4*5dJ>)XQ=eOU$o~Y5Svg@+6&|G1&OaY%xZxM&K%%F7%d{?0P!J
zS0)fgHysy=e1&AuFWCio+To!jU8T9anQTt_jM#bUSN0d_v)GKjLkN=Zb7A%K*3S}4
zzq}n@WyxeI0?J-*+jK~><MVuB$VPhxtIYFUF-z7t*(AMQw#8GmH>1PcfrLOMy~#AF
z`4=)~09Ax|wFt`sVGFfo&9{^9;CYB0y-3(#-);87JGE6v!Quenq7|8jOtWN@Z7R{W
zOG09{l<}vTwa?qx$I>#=>UZ3`5*F@|$^568#j|bGG+JU`?+}%oOVXs75u@x%+o5=1
z*-W?u(KFPN6sEvF6{MD&&IBC5DH7HOVedoOGDD+(+FWjVCu@<Uvw5tWJK}Rl6Ip@8
zF)b>P%=+3UTtsIOf(dLYm#bBo?(hDz(^qwVQnHh$n#Et($rmyrIRGVd%}_LkG<H^o
zdF?y9Bi}EL>*gJ=Qj)wx{MAqP`)gQOIsPQ^gnA{&LcYIy+D@HG{2&<a1P;QE$T0W4
zW$(L>uM2~Kl>jfOVw#Wo!v3>PAD3z4*pj6J-kW9if5$$*w#yjO&2fL(L+<Ka$^f?f
zZBJ)pbXZz}$O>35$vG!V+saq%?^iRGA`U~f!=q)88Z$zl?*Gf$2Xs>5=)iVcxzqFt
zAq-8u@phbh%I}O4J(Yb-9vu#LnVKB4=`Xu^xL@Yj<6M=M<OTH_9&B#!<`xR|fbIcp
z#Tk>czx(d3Ok^uj=T^gLm4~px?=G<;O0}g4J8GbF>07pG+Rr_kCO|Y!3$+buCi|Ui
z5_J9T?e>c}cD2Xb$lNb17e{@4FSn+Lu2?HMfV%LgfzGI_wi@yVB!@Kf`-isI-L%n0
z^)g|p=H=JzqLn(EBvq0v4$uZHGdDhdU_ZH635ZQB!Zo}^h#||ozRO0I@d^eK*|Sv3
zImmlNLK1Md)_yQpS3o8)FI*0_0LAB1ul{3$>piO0E3-Y4ex;lHw2-u1|57%S3ycAy
z3&}0n&%OVx);-Wj*4s!W#x1FMsi*tXcAakhe6gOMpc$oWhaBiWzd~mo&7zKsX2Q84
z^<|Un=_8nRuCu9Pe>aE95Q78P+O0S61;lZtnmuMJpSGF5Xo-;47!(=F-7Z+XG;`ob
z_8C44vF4VeeQ<5O9BDtVv`H^$DXDM(N{A?U>2izTbO`H4-e`67T+-8R+65uYer`m;
zV-E?*@kEaU-KM{oOI9{iRvr3|*Gms{SH*Ky;reINg~6S?w|g5UybgS<3gEW9n`ufD
z-M$n<W?bdKO)=jIE>ZTrTV>DK*ROQUW)+seAx|2PrNPT?)OCZ))rY}W%CW%&4Kh7n
zvuj7tWe)lsWjkQbL~EhQ|6^Bw!qV^o(v!fM^aFeuqkH%M`sE4id(_oB$!{gRb<li!
zY#E<ULp~YP$DR4DzK*0MMmy<Uru5G3rY{d8VYj}>Sm#W#>ql~iV(S47Bj*-WkZzLS
zv+=j-Q1BgiN01CA&43f#`yAy+xm7cWORR?_Nsg1&k20Zps<#^2B$O)6ywcnK+Q-Zy
z=~b|Q*uQM<RC8fB_f&?-xF(P(t!@VSq9rXh)3V1Oc1u*did9M?K#4kl7&6Su&2~B)
z4`L`p#aAZ8N>L3}P`&30yOs5ZvWRQ1*Sk$hQM`nZ(#`hQ?Od29mBqlH048a9hM94f
zbqsAPjgAD3$(u@i^!K?(?4R$&mQEy3gaLRhA^lhtU$je3P!h_k3w;7VhqYFOh3}aW
z2f8mFpnRh^Tq#_eX&@3{e|Kj<#g+cTY`VxRY37&r>}w*gVD)1M52ce~f@N9WEc3H*
zABVDNgm0-guUJkY()IRmNj)zj5E~4JC(HsG$`&c>u`x_8Jhe31s58Zs@Cv&JY3{jw
z+&^yh=sz-ptn+Xy`bZX)1b1XYJI5P?ZKqMHK%Ad*fIACW4u&C%%YNchw3THx#Jky_
zDJLPqLC8(neo4H0x)3q4N~D%s7qplh)V<uTZ!7%>M?ek``eErVKhRBtXqj^vNO?Kl
zc80gEoBQ%M8j+(>q@l^7?+C<$9n#hReQWVX$dSWkkm4*-c9&tId$@<aqAeAN%NtmJ
zp|*5$e{Xll&-%E000@Un75p*VEZ@VOx|S}9dcl2@jW87IWGkkdcmA+FcW7O!IM&Mb
zp!rPm;U4Z**cL;?z9dl%I`GCgx9n3bg+;aqcksyl&Tj6okF*1@Jzz}4u=4pVlk&G+
z1jEH-E*cLg8VJVB{?LxRnEi*rNqBw!^a?wSRQ$j(k?N3g4%u#ZmMUlC23HX`g*9cF
zZx3+$?5W$f3kzh1CxlqbDoi+7$igV>k|#gS)P8KQu4KVQIkkoLB1*{RL0sXuzl#BN
z2q>@#pgjbi=H2Eq{NCUngOWP1Nuf|I412j_AVfHQF1%M6vPgYd;N$Jrh)Ke~A$t72
znAO>>tjLZVY{F~F-}5bUj=)_>4MzCfY0muHu^G16YRDVFcK*@}+7N|^po~asptJet
zZ0F8ZJdM5{t*xb)Mqt<VW1O|CDei*I!s6L(UPfuaM^=ONLh_vq22Su!x$~k2rtM%9
zz*z9n<xU16oV3;{?kK$t$;!oxouYnFRQ?}iDD15xmbc4mBp-?VE1(plZAXxNS2J!$
z@cBv6`YPg*1fzK8EXOaPR=S5fr88_UEe4z0eU7r*dzgVC8}FHLc@h!8z9%`gZ)%Gj
z1Mvn+7)+LU+gJu%OC(o<xek^n6(G&Mm+K1>W(tr)Pnet>=C0lu?jd_Sk4Daz7!)uS
z@Lb2}l1!nFvFH6udxOm-4bFG>X-#1#95SrKb0tdeCJ_%w0LWlTG~7SkS#V+Sd(m?m
zB2_WOujXA^e!BDNVr^?oX}GQ;TGay6C+dcf{#i~>iMjy_*Xb*4-jcH%@HO(4F<1-B
zaLv`rDu98{Hr3hA)<yc72e-yd0ul*pxW=x{@?udsS787ltWB!uVW(+;;k85SI7Bda
zbHYd(iuGqZ?|X4DCE@9$5rK(GewKbSoy)({ueZ~+oWC(gBFaL0E2JJc%L#ZfKOJFp
z%wv00e}{G$Z>*h;5iaQ+B3wGew-L(VMNIMePLWa2$`cnmXLOCqAxfjIc?oi;^kVMJ
zG4q{$?$#m6CC@R)zhpzXu-S3FaFq^okScSq#G8Y5AUUSo?ez*Ir#B!L8ZZLadmkX=
zE8FzEz*|uPtTo8BM9k)3^IMHGRidamAxB}Kv03O;o}Fo~xZD}+aSsxJA?GxN6uOEa
znQl%#&q>`a;E0uvwT1nx&BJUOs+?oIu$~Ufg?`btT<HGO(L}KfdE{{MnNGR4kX^S}
zM`qH#mT8DUtzYI~7}l0wASZ`mR2TSwaeWU%?}~a8?oTZjsej-3HF0i(C^*0idG6RA
ze7+TZ!y9V5mjHE%TNysaSKvi@=aMc&JT3b5iUQyNyg2CM5Ge_e{Ro`K7_lPHmo}l*
z6dy~6K-R*J&ErvlClTw`nra}ENVvL@zSkrcY4^dvX{FD*4~A2>L!U>4qeRe=$Ou0I
zW6%8TUmGLkU~FbOoo8v{dr0jP`bgsKZlC$C5NJ1ND8|5+NOgnYjLEVv*qrpS?;$U;
zHcuEV!9E~xu>)THk?#PnoIBF6wSs=pdm2Mu`JVO4+hT?}$#Q@3ay0-h#Ipbhzcr{+
zS~}t*->w0jog@r-(O13+UTLda#{(6}t&Ha81D&2zcq7XU$Gr^GM>W<f>f+b>evmC9
zFcR!PIQ~e9mTiuG$M=s1S#GB}$$LEXBBw;?6oX(Rx0#b?y^g#Ua(kOOcA@WmIarA7
z)6B)=BeO;RmLSw|*EsJmg`G)`+iJ|R0^b!Lt&EjSv3PFKEkyY=1lfR9$oHMlT}hSL
zeojS_rf^nH8Q}};U=d~aa$z|PRa}+z4bDps>$8BYSrYg;8K^LYWcw~ESF+<o5nO`!
zTFFS8WzH_~y-1!08M+?1f?+p{zxIWG^>zpOxxAEynpolP5xx_kcD_2SQQAQ~SB<e~
zu~YsU!<I-|;@S~}UtQ$9O$npzm^y$Bvw5&@CaD8pOcTT`g-MWjPEP7KotqEPwaG=&
z<nk7-4<s3i+1~8Cszuu&WIohjg*RJoRv~7x*XR43t=gl!#u{=Qk?>w(td4JSt|P9d
z%Ve_(MD<-OBiMZ>i5}O^7RcLM*R1Gu^TsIOrWHDQF`$1eRZFIMY@~0gq-sIp^Wu;*
z$T?*u@A4%|0Q_LMG}cG5@M$!W`DU~8yCft5JsE;-DiM4{=O)^8_(G>hND4$OsxAwJ
ze}J%d#1gaqFP}zUqBg+P`6v0lQ_cCe`mQFZu*<nb#x!%=V&_3*7{=~p8DKT~=lcdV
z?#6adh1$7VVNJ6HhH!BKS&H+0|NBEHsV(b<q*CDCLslxcS-A~ejm0~Yn5Zq5nkeOe
zNmqcA-J23R1#lF#j)C2k<C}M@E?uW!KpNX#>2%)+mMRB9aC%fwAg7+5aQ1Nuq{e?I
zv5%-6zfVr61%HTMGdkKxj-jfsRZtzSz4J~@cucBrZQ?_#iOk`K)YB7cfL&9hC~B4q
zkIY5W5(dyLh0^8@j!g5_l!R&Cb7Y_*D$)*><lA&%_0)tDyl01Tzg4Zm8XlUGaPaZ^
zzWOBr-D;RpO(<c_u@q+rqnSPn*HLN0Bl#2{xsY^-U5=w}MnXWk2wF7Eh17OD+(_=S
zHfKZ<*5vB5W65EO*<3U@>A(-+1m{F5;I>tzlDfz|7D|{iSfS+d`GJD&75wF4A+M+S
z95w$F8GJzY(Zb4b!cEc*z=dqF8gjFSX4FI^aAD}=gpy(X&V#P7;BfCzgT-^fm$5OI
z6$k%Zk|-Wb?7+<J=XcmYs?^~nda2m0)L)NfsnnSCXY7W>>dYEm!yabnYreC8<42=q
z!INOA3bhFSa@JD2Jzsrcd1Rq%q-4US)<2FCu8I-p?VESlT>!Jx(}Z1HU@m7p8a(T)
zM6anzQa=E$NVb3O!9%SU#*yXXJ^y@H@Pi$R*TW9;qFkGSDoCgY<;9BwHy#AK2xEM+
zfa8t1|KY$9*Ct;Nw+8wIYXvTNdEoH3c}7e;oZ8y4xt9h82}}v2Tm+w=9c>Gv<aJ`6
zFAq%0qe7ItGVfX6^?^O7Q6%41oa3g3K+m6&J(L>Px<UH@y_v;f4>>C$L2<1Y?!e;+
zjN?lGEAOLRb{5BCVw%JB<H)E4jwQb6ieZ7x70HftDOwsGC{|abN<ms~Ju)z5bCSc1
zfbqdc$s}Fx3*i2C@Jr=Ic3@jk)X2>T2a0}6x*Y4<y!n0S-IRDajHF~o72q&#J}?hF
zADDD400%+;W7?FIW@gw4$*9;u2cB8HUZ{B93On)w&r2F9SGpc{v;A@&OQI&smKw$2
z9lG2unMxVJUNNkgrT5tDw(u4X+%S>YP-f1}_L3X4WCTOOfX7qE7TcE|Qp(B4rpOYi
zyY%vt>`5<q?@9zQeb~Ffe!h;@1!yu;tXV%lZ66<i4<0uOm_}B0;Y;?ouk;BFCZtJV
z{>N^#EByM*=ny_`AT4j%_x4U!G8Y5J<dE1@%)=|}dH8&#r*&d<GP};RFJ4apM1;*t
zc7Pg|%+}@h=W0G7W(!=3GGYE#f(tjWadLRH0aF||)Ce@^v*GrU9356sNa7ErH<PZh
z-KT2@2_O&?x)gr!roCb(g{V^!Sr;i4yvwRHY%?7acQbsAJUQ*&X8atu8(63xgBvqj
zyCNtHcMto@33M5Cr;2;p@PSZhhuFgcJS0I0tS{n*Ri|_q#=Pwzd*v!#Ab1gvl@RCV
z750utbs9!Ch;C^vIm7O}kJl0Saav36`&O^D6k*C?xfsD;Z`qCK=~G~zP+DQkU)a=@
zI{0Gl@G~a3!zSLYPsHq_h2c_JvU6UsOD?4X+hR+M6D_~cPEFIY4g<-*!2Wdvh3wdn
zq$?M+-fMt`ztOT&LJ>Aa<|cb~FBW?c6oOGMx0?71U<vow{a@uN2wws%d2iA@yHsER
zBu|73YS81wp9V|6O%x7;x0nexX7oQn|DRei633!A(~a3P(LTN>FAjn=+k)uyuoCbO
z@7M>n>0n1zW6G)%Mtj(s_U(_fYq@NN8Yyac*B<b<K6Xl&b6?JWX><OY_P0HhLJ7te
zXJ67LJ4EOKEMS<6JcR@8`-a{16GiywglG%NXAC@`+r75%DsPg*6=lLXr`=~SuhZwo
zDF2oA&wb9O3nj}Yl&f(7r{BSy?FvolDBY!-GZs4yo^;nmF9RGCivyHw5+O1wl2w6Z
z@#fJM=ST@;@5IeGW@CzC$8zrcl2mjW_}*U5p(Rpvs-)@Zwb*&ni}CK#flfL7Flc+(
z(6GtIvY~Y`r~#R2v)0hJPOXv0qhr8l=Tr?@lB!{&m`kvvgg^{bfX~DMhV6TDos;r!
zox@BVo1M;LXcorr_Ox$=C?L3KVggkt(?<Jd#k2u#s6w<S=hh%NeQ3BZo(i4PNVVRz
zA`UoHGRHa7`+f%-7y1#|SX33k3=yg-Cyx(=Dfxso*n8dCP9M=z5ZEP{O3cS{&Bo%n
z&IFK`BBeE}8sdE#q1pUPG%kr7I+`aj7f7~4)%8>ezxqsPmWSiaML3hZZll37iF3o$
zw>S&D#22{SYb0<4@sjK$Y3AcbXReo_rrq$tzG{!4@3d%`Jv!20r#fsgF}$b@R8TB4
z5D`OlY!R|0%4#xDg1oBgTQv$zANKV~-=SClcq1PGRRv~zadk@C<E>3jHrXq9iI^YK
zUn10F1;CLL!`>lUDAfv5anc>m=oLD{W9r0wreIPMAT&CCJ)3PC#1wM9Z<aF`y^U{l
zgw&IJe2#Oirxsv&ZB1O%N!W(3YNURqWHub|jITZs^`e7h4h^<vB8tiD5)B;#6LL&@
z>1_bmbO7W|s30qpH!Ilv#Ms=Y+&R!oh1o$F#sE`wfz#rp^w6R6j$WO^#UttF=DE(r
zlA8*%EapWd{*cqF{cklZnWZ5o#oJeH`xlvbeX}#-Wp6?VZ-uR+ia|LT7A|gZay`3g
z=f&negxGdt8avl<tx|_N1+{VL>-SN<(#$>$&Ym7Mc79K8n`&opZ3~9bc5H(K_QKP#
zLdaB2n0J`#yj-8-<;5#*jI?-~yq6@g=P=(Y&ra0QAcRY1n5RGz{Dy{Q+mh9BTF;I8
z)Y96%oRW^deK~UxP-lq7ko}D>dMN7-je|>*2&9<th^($Kf^(c-v9coI6-Mi;2{TP4
z@lA)d#z0fYofNQJxGg+7@gnCZ&kWar7$L9L_zofeNR?={Vng6UakFoc??aDeb+DO{
zOEjikLXi1j;)(ps7=-TeVVrYeo_05%46yj4(JElRnPz#^S>f%1PRjr<>ByMd$xm+A
zXg^RSvj$4YY~m43xYqgSE+wDB(2NLjF_|nf%t0+qvZQw5Iv3f$TvQ`jQ1>nH{U2ZF
z0UlMg{q1d~CZS~}Wy(22FM;%;sHD)+h$K`+nG}+cY6=i62#ToJtAdRppchdQ?AQya
zC}IVaqBJ9*pa=*ksHoq&_L)gS`G3#jy${)Y&N;iTzJ6=7B*0?Vq4Kl0)+!J|*?>p^
zlcTJ?zLtW!0&9b=awkVw_EC}z5P6$Wu5f5Ip<D?&JQrLkvI$)245S{x>zbcq%N?T+
zlo*JK)W>o|n1mltk-cr6w?t1g&-=`^qKt!jbc%hrMR!wbNW|2*b8uxWO*h*^v5N4r
zrn8K3k$u&)P(r1M0963>B&hX|*z?xwRXLA7&jt0HI51cM0U~}TscoQP`&>WUo)%Lc
zMk0{K*^jAKic^<6>`z&Ys>M_|Z=?Z~@hQ#~sm<&l7z#{$*l^o!3k+c}^-f3uf=6M4
zj#MAqY47)mo&=smW297}<o(DT<8QN1ws>0e`vvCSZz4ViEQ<Z|fkm~v8z||U?y@IZ
z+(EoR<z6x(HPUI%G~0~=nR*`M5xRcm`E1J6)o8i~<bjnIRa;gc%yqHKF~#0d=;2xP
zibBsVX&E6?btU?ia1)4Zn_@pG7*K=-RC6dfEa(N%66fuTx3?dv7ycao8H?+KonY`;
z2#;ce!Ndl>kov6JHe|IslNVa%6AMH_)h2|0bC)v{o;IREq{`w~!{4}^zj6DDwux~-
z>#cvKhm(OI7Egcni;!xd&M61~n7z&M^G%PWFh5z<c~>F<A*9G-NaKG$W&ikye(VhQ
zWnv5W<ymJQ0n-0I?g{=;T^@neic;U*XrE#o`7@spX~*{rn|}@(M6};!MQ0X)+@L!U
z4l0E?x881#@#@iKH9>PFK~M37QtemU{J?JW<;zhT09e_z_6Y*OeD*GjORIU<XAKWE
zs=2R)U`M;(d3nzJ*h~L2XJ8dkm_k*qx0mc=c&v9z6lj*)kFs|Lg~5IMe^M9>Q2x)H
zpUhDp-GbXYXUb76o;{zXP`rPBd}cIUZ6DP%<%6GX!!6`Ze|lsrCVc_ABF91mjFCVz
zOvmXfo0(+)MPvtGQmCY_lDD~xR7#qfWFThP%u0Q&V3<Uyy$AhHjb^45r~VDJmkHC7
z^I9%Y`VtYvudjK)-f@V2v#y{7A}DmW{0E!Y@|KLQX($2dOh-?v#h2MN(oBm{kagEQ
zit%JUOMIN#d&1Vv8t(AgQW8fo`A`}WWB6X%1(v_1X~591W|zmPa-66FK1#sFjos{1
zQ>=mc5=vtU_h?$N7Gr?mHIJd`#heT)1wvLWxx!mV{cpj?Sk~J9g*9P<`AKC2>rj_;
zOWkj~QBFBzsjePh5JGcIB6#(M?d>;>puL4N8!wa3nN4dd<=e>^s#H|rrJ!h_y|V;D
zh~cRP>_n6RvTD%lb75kr=V1X}LF3MlKbkV;=@?O8h~-TL9h@rggyJ!_>Tl0a$yp?<
z;)1EnbC^6Kme}0E2crsKg{?eRo6*Jlig<@Gg%^U9*c97<ZD-rpMbBxruQyrJefZTl
z1EbSy$4BX>&dAsS-6f>P_D0;<?~`&?|M&agj4gq*DP1Pjf2s8hY;C%2V}{mf&LA?R
z9XH)%raBtu3BhEOm?|H7YKm>|K>ZBKMs-s-LPZj|=EL!Se71dnNC#(;AfVb>!r!0q
zwdhD}X3cb?1&fBL`e{u9(nJgJ`Y1nmJ!hYYMqE+8LYKPU)5b#knsMhDgcNdX{!ojU
z08)ROz9aw^FiwzKgkOjN5u+;Zuvb~LYB9P5LcQ*^&$R?%&KI~Y<-TVG@o~c4_KAZ3
zN3tOUjL@hKqyR*!t5(`OimRLhD`KU^RFg!iydvFx@(y~y>Z+=?T%b}`M?|U%y6JWx
z^O8jl5>NH%4Yp!ax8?w_S&M-$Q6T<`j@k|#(fiXpR!KeZuOu~MaM0D(;5^YtLfgKz
zU-UA0(PZ_PP7y5~xfMbA^gAIdOWlJIr13vU%2(wT#<MSgfC1Z+Y+#b#-*Z>>qCq%H
zO`Snj9Tvj4fyTH(8Zm9wHV}!cE?n%MAUJGEpp8u}D%B8Uk)|<Tve?ciEouL}IIU%U
znhI?s$(1SSWq(~3E>VpV(kEI5fJag4klUX3ioO$mn0XA8%`o#V9iCC@8_VIzc!rhN
zPa()pba=?Sx^}fa?kZyuTFa<<A{!vKps?Jv*0~5(Z$y2afD+wM6yi8c16cTAB@nFw
zmQvf0uGa$Lk|de~@O|1ls~Uc{?|RlLt)ptaB*W>PbP^mFA&-oxES^f_KGk{EBWpvt
z?y){lT`%|uvtJ2Gd(iq7-T+eJ7zICS+(8>Aaxw~waHSld6EdQ&OVD8utg7n#DxLae
zddQK>XvcI>R3!CYtaM|wt;GJ&<t_npA`OphC%%0BRLA#!fmngt37lT6vPyOP(f*g=
zna4Wk6-}ujau7$4PSU#KGS|zOhDt|r4M%}JjZAcnYekFXmPrt-8lzlC-@sD<KPV#r
zdosUyd%CN5Fu#%f<b#rl#mWJVGLMDN1D&R{Owy@$X1IpSbGSJR4@!Kty80JauQ{PY
zKU$n#USgfze%Ni2i}R~|g6PKU9IG~KWE$}vN!slv%N*~$1gwqtl*$Ed<A>WE={M3K
zE)L1U8*+`~^m6`=BI6yNS|&NsX}37OTc)vbNa%~GK1c=#@tTp2OX{@Av&BGITK_d7
zgifoK(<S;5bDtVG-TvZQP;TPYID)2_@H;<hOdI%K2GV#fEmz;<2u%!6!nHCj(RuVz
zPh;|6HG~Q{l9A7UH(#ivsA^hi8FfL(b?EK9@vy0JyC!=}8@Q8Wr#n6Zl?wrN1oeg_
z;q8Vj$9H!*mU8XKV>B-IPG!n>6*~`^Ivo+MzG@QBg*7-PpC%zuxE2Ik?DoH|a+I$N
z@5OBfR9lkoFTObZP`O)<Z0=N!EI@DKi5+l3$ZyX%_i${77JDVPapuhMtv49r7}NQ^
zk}JOSHs|E`K_DPU1vcPiYx&)SRbijGz+i|%>Mr+I%jgR)4e7qfeJk{0JQtvbZxZLd
zCW*YyXxx#6HUKs(rUn%-!_nuh&|AeB>7_`FFD6PAmOCE)I&>z@q;2VR!H)mfHa)Gq
z!GrS;2+?Yo81mnN-Hyvp*c`23syE*X>1_$w%^NA8zy6IxENM2C#W$JC;@BlW0@hi~
zELzw_GaosNnKiRc_VVmLziLq@(h#mjG1Uh?7n<9_GYGPlJlz=Ym0ZVPK6O`r=N9ls
zuy6VrG2Ni3=xM~jR{>`sbZ26ap^|A8s7k;CXj$IVm~}O|d??FQZyY=wzXF^B+Y|Pa
z86C|9$92Mkc3+?s>U4@1FEPhGO2{>?6bhlSy^;dKHSc1UK28{UtV%DH3=%X_TGw_l
zZyQTMZY-cT5*LXjf+Z(gpELCSMdq>wLT2$8P<BWudn@w<p}346*CbMcc8BHTK_XHY
z>UsY*W8w9>JH=Z^XaTJlYt4Pe!V=vo;kBd%;G&|3mFl_6m^*>UURbFHtX5cOkWC-_
z*oYgW9~hxSswD?Q(kTUkHCk<W&G>g9lVc1Ai4vB4(aUxl3s=*`X%;VzUIvVVue36k
zEpYTBI5*Ra&yFpb@rEPjZ%rkV^97s1TT!Yhg_`Bq@FML*0Ow2MHtFl^mU)X~)nUkx
z*oo?yjvCeINWL(90GpExjX^^m_jULMkxsd$+EFZ-OZfsT@YV!pLbzio8b`9^Vu>5?
zhEE)KeFQocp?U`~n)|V77IQq5x@wN|$Ohcf$mkZ~Eu7)pP~a4=bQX?q@nuh+@BH+C
z8cMLGj?5NYR)0J5#YxT3i3osR&TwX39&U$xrImWC^#ImoJI!}A6jwIoFy*J9f*H=)
znXn5XAk0X3*Kfl^_qsq+i{i<H#Z?itoHp^!2hR`no(AxPDHT>3Bd~6(4h@bi2g3(I
zGg7>iP8R-i$@Pwci=6{FI@!gnc_q~UAegNWIWR0pYaZ@qVSYPm9q$x^i^crJhf^#m
z-*;XX8r{dWlyj8rC45fPysV9mOU5}rWMMMvD<!5*))AbzrHGJ&r&IQXZ`Niw20p^d
zN{o#~JTo0&77Ef(3T}HSS)cBX<og``h|~lluSEOPS08YUU1YJCgP;R2q>Gn1u3F3)
z5ST%d1cX=odAB2fXP7`bC1Voeu+;LhjAbFq*K7Qz?5f%Z<UcO$F8gC|dNyGj7wm;X
zW=u%I>}BEd#Uc2gIi*eD4X1u_j9JBJSTtFmQmy_){p{G$5GJr`d`KjcaaTJwRECQ_
zBC#u4=OP>{Qnedy`^+*bw@`c%@R|D51h{YxaiCs6uwWTcqA~yZrTt|~V{VEqM#A;S
z7DtIS4`mFKn*IRsP?U2KFa(At!6gFEc=Z(L99!tStgs~!l32k3zNOxEad$G1aUHP>
zU;pd4%0>`<G#NCU7)qOQm*douHO8`i;R2n9v7c=gDsu2Yp{HiC`KW>jTl(D8EeYG0
z3z`)|1Z1zqE0^_xc*nlz@TF4N4l5=1@zhO@YX&$a$c9uT?J&Q4V#q-ON<`oUMpzI=
z)!O`!x`7&QX;@Ju-brHww-QJayylbb^*$qMb9oAkR-aC@zx$E<HCERGkf`>G)Bb2m
zNcaz3r8Tq2$RjRC!f$3LhU__FHF^zSL=DB4j8yL=9d6TbSxCQMb^p0fj6@?K0LS_{
z*piI3Uy}cI`pX6tT=g85C5L>zPrpXD7YU4-7`bN*^}pU4DcdI3YhPMOm*4cya|l7<
zu<1~ts39S*9B6(?1R>w@&F;fOKs;!kZFvzZ+vSRo_pHfM<y$7oD@%UtD#rkCKk3iP
zTjX5nAU=c;GjO8>MMuPxb>8r4hWR<yINK`BA~<{(<k{6_;9DRe0#hXM2!Nb-983!v
z2NIbVz*FvVnf<;i4cYOGsa_$vO8r~mAVXF(mMnxG;NbXKeY;RVwtnSiWFhy`u=c&s
znR_$_4G`QSx3X8spE-AJwZr<*MZ^(bC;?=DE0^~@4NJp;l$1<C3ISeqDSG&D!O~}%
zKoy<tg@_|D5tL<w+=)GfpDv#s*0Z%sKI{KtIAji-K{=TH`#9VF1Z;-TJ;Gh8w3t0V
z(m87@(L4mMVnMb9*_e35uBe}EZ(1gtX2i1Qx-~+`l0^V}^Ge4>k2oG@jnb+J50fmL
z3eg8+R7_FVu@#Otxa7IsnyM+{!w?{d{@-+cptD9`8Y50#HSZh8@r9b_2yhUgUt1mh
zmRj(zWmOnxz*Veue0wBZBo5#&Af;Ucjccwj1g0_zq*uM%Z@n4fenDUV-1>Z`1|t+O
ztQ(4*IRP3X1$IK@1RZ*rlJlJpcM27`jI=q>pc`17T^mD=b}}@h$S<lY(+A+5dmRoy
zV9~hzn6#2@nnkPv3a4b7B9iPezJ4oQ4j2eb^$kp*d`S3zg3NogC@U6bwP>j8%I7rf
zpGHQ2%5nIK-vV6f9@!l!;--TnU^cZ^gb5;1PK{SoTEGq;|IQw+PZ7k<r)KOL;#~Px
zxPW-3dU4$em!9Ja%bWpe5_Jw`Mi}BlJ43eY(jbrWD>=>;kzsZBX!OJ^VO>Peb`9PC
zk4wM?hhmiE7lT`ce{j7KP6GjH0%A31rsLq-;cqg#VL-zG_tGhR*T3#n2r;N8Mvf$>
zOEsey%D_5T9En(py<7mcsaVMCT`A6K=}uA9B%m(aE705vE^|5CgnleSGvLa6a_F1k
z-7`IMVzVVdi|O#0i`#}R|AyPcqRQ<-ab$z$FA4p8hFkdTI1R=6*lq{*{I0UjcyxGb
z%v1K8MgaxM)vTX_vw`t<PYFGB+<67VA`pj*N2(S1WoYA_P50Z5-VB2<6OIHazZj0#
zmajKEcKzz=%?f0|jF8}$I;eUlfL*d?a9la_GcIx5pXKT*2huAC^r^`qC)>E~DD7!Y
z{PObaoLi2BZROyAzPWL$V=J#nIVeiz_KxPkUHq-blmW+4*{6-+pE|a}r>Nb>A_dsY
ztJ*rZvaEPipo~gAci4E}=9FI~ON<+D3ALM*m*^H46w!@Z=Ki^pS#hazE0-@rpzbw1
z$S((sWf$ll=8+051g495-^I?YtO9e#sfkp_7rOmq#D?%FIszh5l?MFk+{V1@3x~Aj
zPVy3&n!V0=Ae>hbg=nP)GxsYlG3zhlZ9?ekB*#s4bD0~DI=0I7EagS~rg5pUtebDF
z<x>t89?(#U!DcTefI$ZtR1aZZNAs!+^{Y~FNn^Hz(DgKrpVBKc(hDdcY?rAo3N~-z
zlOneG(i7F@Q%2@~ekZY2b%;UweRFR%?g-*{*d@FgfML!5j90Ct$Rvo&3-XHWX16Y8
zt*nO_#t53sAe@d_eBH{dbm&%a1vOID)ve4I!t^XgdJ6^5VP<FZ@z(rAvV8LKG|9_q
zel%8e<wu04dM63p|MN8vaTysPYDE>Yao;~|6l~K|Vspt@R_Y_Wd3!6K5j#mfGvecm
zjD=hDLun*Bat-Ghi+DyBxu_Bi-$2Nz0i{a5IM-v|_M3j+cy9@NE-KvUE@lENDc4k@
zt@!nHF@_!f(s=J6uOSSSgt6K>314gTi&5cX60&lWCBRiL-QZu1u^&1HaRG&W@iDQu
zS>+G}eJ+JiWkH#JYHaw2FSrJATUa__RsJdmLLUl=%}p((SiG7ZYW(ZcDkI^i*l?t+
zG0^xV!x+RV$*i9yVU3p*xNofCN7|kzp<tFhZ#E${kbOoV1gceu@#Z>bFK*sYjrR9+
zT==>};NP)#Oq?Iot`6VV#gHG!W&#{{cQ}<p4>M*N5Qe6ip?k)9<nJtT3>Hcft_r+8
z^ymc7VeabjnV}C{<7t*M@{#fnV*)_3dH!TqfegkxQ72LrAb2l2qGEL%tgb-ok0y#y
zcQ@FVyu+Y410=(uAInLe>vANla#^^D5E4OEKKVr0(T6lHA~?jw^$~)k#}H5U467dF
z7Hw@v=_E_cB!wS2RTPn|q9X+I$<My5cWhq{jIiAGLapWv>E!%!fmXFL8_3Skbv`1c
zQ0m}2>^sj_`bBbm{dNN)AK-buAR<-$n{As1i|9EP1I&K@Cvd6x<JkCJa~xZf$DU0f
z3rwO<gn~5T)FnyPC0}OVS@^(Q8w(%!oG<I>m*y{@X~&4-j5POYXPl^Y5{HA)fC#Q<
zCHoCR15|u|eL<N8kdDVaPK7*c-$-ROR@NU~)RZr$!*X@HI8*`RCJuiU{In6?i{M+L
zmZ7*JXs{LE&o%Ng2~hN<6eo+;FD8Z*E~F461d*qV12+-YC{d^qSN!ak#vMeL$`csZ
zINM6idfXUT*s_U3<7?w2;l`2BS{^;{gt4NSS21F2ZUjWi&3^uFV^_8gq-0Nw<Ps2@
zK)au1OuSbAQm6pPwUZ}%Cu1$0Vkn6n6^L76ObMUo+)p>ASvXM1U^mrBlx&^X7~8<l
zpl&dn%1Va#ZLSee;`_>EN%L1VQ;kP%=0^k<3a28MSuWw8e4~>@y2=n)yK!D(;Dyh%
zS!CQlwrP~uJcv|A;LA7e8N|e`=;ILx=rmq7%y=wA|CB)zhc7H@%16c+;z0Exl7WCh
zh9rp1MyuEK!$@*S%kVrvFNPYw88jlIvVSZcWKAxA`~u^uJpIy40qm+3Q*rzQ#+V#_
zE8I}>;KAw<k`Vi>(RM}HY*grB!oijva4+BQoQ?M!kd2#+km=6ZGG2nX^Gk(Reca1P
z_^)d=c8k2K{2B_PtJ|+NzIMB3!;x~m`9d16c*GsB(m9*(4;F>US%Jv>a)J>)$0cn|
z|7Nepd#CD`{%?v=S>im1z=NjquxtMdeHU=0u)w_>-aV_|b^J1~wzR^?E%6$d;(6WJ
z-LAdg>ke2;9iS78yxmUM&HHp46DcOLlHKNackR_}s2HWj7}1K`?Q-3`U$<p>t(F&e
zxjy{HdK=a?37AzRFhyD~8&YL(EU*-R?{C3yQcqjGks(mm|L%5evwq1K`R=$<ENB8C
zo%x+>*mu@jOXSBzzVGuj{{svuqYC=?#xB=a`}##PXNHL*Nb5rD+-u*^ZR6^JK^FDv
z{)6tPtR^()VykWLT=$SC`B@Ss!^-L093qh4F~=Q`SSzar{f5iI!B4CV-;mo^+S1V&
zq$n*q5QASCekffxr_`4b5sy_+<`l3h{H9FZtjEKGuUHwLm)Exg$`d|y5^#udqZTB-
z_KCL39*UNB!sLpLbfUI>Jqg#_ettmrq)Pcv?fQ(4N0fi5lkLOHb%&UWB|Oy_Ext_O
zbJtI_jh?5wu@0lmMMvYCel6d2{aoEhM5E7f$M<8@v;x~Dk3{ce`a>XjvQKYycOTyw
zu@j2}B_bMlJ7LvH?!kv5cEUh1>#ZfaFvC4k_20>%Pc7j&Ia14A?ss?dBO&&s#af`e
zBh4Mzp}%gD8c4|WSGa#{+h5Kj>ODKn&~xO{u%!<*>a89os{jn6!KTsi+CEqH_x-9c
zKjuRGMEM~`Au=%{QgRj}el#B15Lt|<n_42}4+xYeoQ;&!1hr&~`??`Li{U{ObqD{w
zuo`(YQSjafpZV3bVR5fwmR!nc)p+5&3S+IHA^hQVJzd@N+%C++zAhx96oAnx<bA5P
zyX%dAdld5^UjZ@`)+4#A`|FLj_Vy@7)X?Nre}Dp?j9HO_w(URX>EgA`U9y`{0s^QD
zOE{$1Ho*}~ly|H8A6*9?*3XYdULb@X(1|2$#!+%pAN!x~A+w?ossMtMJgEBp;aYpw
zxsPyHnjblHocIBn2h*}ES}KhCx)?EACmFCTYJvj1d*$2bnHbvI`5uV%KXArtV*ITv
zU9QM+Oio+rQ=joqTO2j;F;WQy3WMENzn*q&>7&2g{0LG+^CKLNDp=Ggip9#NL2u@~
zfA;UO=~<s>9uHOOD6xCqX+?vN=ARZ~X_~jpDl9X5t83BzUd6m44cy66>WRZzi(DO-
za7HAdsuIHu040KBr_%0q)qQ2Pi>fH~i*-8slxtlVKIs3wu%ZWQUE}7_073_@Be7u<
z@}X;w!$Sftbk6kjluqzRxgESeJ~0|-4|V%Lj&V-ilOqC2rMIGv>|G?|_{1csi+6dW
zV?lrGNvhExCzhA9I`LGwCDHueOPwFvb!RHscG!{RrOf$((++2-ZYN^MTg`g15Ag|<
z`HNEj>FHe5$@jwPC0JGv`{N~&JW;Lg@7#N-?t&A@9+0W^X<OfK8B>G2B~jxAF8IYU
zpj*#kgs~LN#Ik@pi`+k7qFZ2JCGtthadeORp@;k`-CHWVDtJ^Z@$>WC+gj`2X0YXC
zJZr<tAKC7k+vwI7zeYg!{aQ5mdP;YI^OF?K=BU*Rj7JW#;ut$PZD4kYe3-=bBO>kv
zqv1Oak1l42sX-1uQ5NmCx#wKPeAwjX&Ey)j*v#g3Jh=XLF&DO2$M`t5w8c8s<J+nb
z8J^HYSxd=d9TDZcp&g$>kI_Bg87PwcrE+Cyjq{tV^Q>x=@~!GQ4?(P(A4(>wK#m8;
zGfH*4&^gd`p3mSw@;{-qV8$jE92o&Ja*M7r28Yo6e|2HM_jh3}Z$52|)qmOuc&N|k
zC{PGpDBaF4oV7>Tp0if~`Lp>=d8IYhagJlTTbs@`?R^UaX=N>wG$-h>+2QP|C&_W)
zj>yrRkmr0o*_yZ*%$jDG(7e89f0$Y_z7InTu+eECU<{kWQ5p}pqK@|}KC6RSG<T$V
zYZ3A|)(MhRAFT>bxdMJT=Mlui=10Vuq3zQ^@kc`JzPa0-`P(^<!1tRUX*n*)&-ptb
z@68<q|6uYF1+u%#efwekdc2q=mGzpAE@*W1J#x-Bp*+oRX!>R>1<2!CbR<(rR{SKM
zM%SRD`W<LZrLZdrO4A5@d+v6>ah`RH@xSEE8yMYm15qSON~wp!)fC)Sj{XjJTrm5I
z1W^iBIn98g!lO^Q^&Q8JR}WN&)Fe$%_r2$SEdlm_#_f)6@$PY6f(v{cnSf@ICRzs>
zW{UOxDnV1!uZmIYK60;2I_p)C79XL|k`#Q5S799HED|@>-{>YJQ4E>oUh?_!(Me;3
zl0WS-zPnO?fdXa#JZO1BVSzq05TX`C#1-7fTO*r7JvbTDpF@mwoOfaZQvs%`gt^cx
zwf}H)UHzKwki2K^K}>uSTrTfQ=d!|ceovH6^Y1aoKzVtQxXr<-`pfZrzJ5Z3qX6pw
zBm-x6q|<p|+Bt9HjyJ!l>C0jhZ~n4eSP99KTMIE~7Kf%e|9zTyQ^y1jM!2$%(xC(8
z);a&k?0FFLA_?sXjM<px$s-ML2EW$#AQ3Yu^?*ucq3o2@OXUP0;ZGdzdk~VJUCbO*
z>R*nGH~Jn#{PjJqTi1N(9MrMjLE<~}zQ<x+@+WS=6ON5f_dQ7LP6{R9tgmc&$+hE2
zUM8io_;fN-s=I^pi~IWeq*TO7?AN%MkROm!p#fk2XyknqS;cgTKSMzPgEuLH@P-8S
z+g4-ImyuP>Be|+H0*vF>m;|1IJ^%craoYpBC%1HZy%c35(lvrY+ezxK&y8&l>aHR6
zlS?bBDntd0jnYDKoceLAadNTl%_eq-_!y2CuS7^5yV-c_sYn?m)Q<F#7#SY=c;W%0
z_Or+;tVp<s;5RT+86GFG;bOCFw|>_+LgaW=v^>J4x_pDNf1Ym$W%YuC!nk3OF@hp_
z^-SF}e5w}~Ol5l>fq1_DzH#xbx&ukRf;sWFSSG~V>=+y8>-EVNkric40vr+;HWhr;
zuSbodP5MEMdps(0jp9L$!M~f0=U3>iWGronP*E{5)fjbnld<G^-7yp(kxGo80JX@_
z6V><M8gD+sD#R)-GlpHf+et}$3N$qJZ?>K<E0kQuam3X}ass1Bh*q!uY%F_~H*)q$
zs&LiD#KzOX-2sPu;yT_(ia)#2Aa@a|EjCg{!V)gqW1M`#dak}$O5jjCMaCGfKL1^`
zmnx3;FcE-sNC&UvnH}4WH$Jd7idoglE6It1QpCyOAdofefYDRFiGnJfc+w;rh}Deb
zq@MoSxPQI%v<wGpNYn!N@ZM3f!Nd8roTZp383Z$4aoUg_<|q!S$Ea6ZugD#Xpg4M>
z`eBK2-^2mZ1?swtFOg%x$YWK)W5(+xx+jBjDb^EY1*qR1H5Oezpb9Bygj7&rwfQ|#
zkXdamzaUDloi$S^X9SVvvFd+^jVIpHW5p<2)=(u^fOvWt8^Y61hWSb40xl3}5(E)&
z+0tbhNbo>`oOvw#(Lei0FU37kQrUZ2e?1(&?pU7%Ts1WDdIP(cnD=lq#sMYBK?@()
zvF`%rt$TC4V2`N8cvz_VWli{_(O6CJ6kuz@*npr7@1w>hixH`g{1QIowEo(eV~Hh2
zPXbrNKmT3#B9jTy3C^nh;UOo^`v5|W`sHZ&%_q;-8xJo~HAlmZKbQo;K8&SI#l(Q(
zN5r$^!~J~(@(?QwU)X%a{Zn*rp(?pvk~%p*iEOH*{#E^CICn+LB9NfZ-Z6X0LCM+_
z{!$k`MP|<{WOXLjW25HcAip8R{1v|Ks9wBeK<Qb7nyM1tv+sTxKDU#8_N@8G6X&FQ
z91TBkN>3-XA)lAZE|GS?RLT#A4`i2G4n?Y@T=_-#=?-j!z<yNK804y>sUk?z<tcRh
z{4r0Q)g>>RKgn@y{kdK8!s;T&{PR2|JG;HW@q~0yin*HkkbuVT=k;|Q+N&FLK@j&M
zFc5qZ?)ds^-Ij+^A-gET6*W|&9k*=P?HN+I$iRnKEP*<5Fd~&Xz|noT?j`72EI_iN
z$dR{Q<yiL_?YJ0=s^u|Rbn;FGkWu}S;TZj??o4TcwiG4bQ)%greKOv2A4G=vAluRV
zlRjcVNiM9w8eA?8k~ep`9{;`{Du5d2bAaZ3VC;TYw`A5=S$3{2?;EF<>ZUP8rP^RK
zaF0>HTeoE671d`d{8ppGGTnsJmVl>eVxwL5p)sUVH>Q_*t6)X|&ulZw-qlUx5is;x
zk&<a#`-pBE3SSgId4~^;=+(4Pg^6DkPm_3r<JWisPxbEr;T&FBEa*0px(u{wqI#f*
zZSj&w=>h$zwz{YQY#xb5U)s&K;!)k+jG`1t7S!~fw#EO`?a)u6fdBz1fi`gdN3^pI
zTWY-tiBji2*2*{HRX{J>rH|2r`_)@RT@vDfxmiQ!g>J7LAg#mzN){;1taa1_p&hGe
z#x~pp-z1o`TTI(Ei}mZthx8WeSWQM6qYien{U9BHR+Mw3thYS-K<G`@Td4h3P^Qgz
zNT5;bGPiAy^_raWhKgzlN+HBBQC;k@UAxE{J&L|uUxps14)(B(wU%dSxxlbgtGF1L
z*oc8P&q4ib3Tfj+ooeXV|2T1UoOIZxFVua*(A69KRzmuc)Rzw1D^_0~0T6X9o(gl?
z+F9R+n3Vy;>+3sv&8OCtka|MQ4f^Mq^GWmiM<JP;3k+KVKr=)}h%j0#5xaf68`q5O
zD@|F5z}C?-(~S69+Hhdhi`b$bZ0(->4u;tnwX^1Q#SNUN%X)aaZ|Nmbp}8fclS{qR
zOGNkse<Iy%6tgb+qga2Xn$1)FJwcyP>?#Q(`1{+;?V0`c*SrN%a4~<B@x{2l61$Z`
zbh4bv5$(*z3A7NY&e_$V7AIbGXBqt@IhIO+FB(H^9OMN4eM^k{s~d&&tE&+@WdOkB
z;O)83T=}Z7JIu(iD$H)ZJQuC+FPAdCv_V@#Pi!&{Ji!}@N`Om<99k4*R{tF#W&;Et
zk>3T3mO+%i=nA<D<w0A)U|=MvSVlnVQL{j&esOt=wFN6xVj7_USn@C{-pKGK#=AD&
z)c3!fK{5Lf22Ta3OI;uS-21;=Lo87Ey5xb!HoImTeV!a5>k~IK*xM@p$-xMrIHrjv
zj7&g5x?orEG<UqEWur4oEL8jT&iYs_kaIFnjs2zv?u1|QZebK;o<8dt!p>m90FIXM
z)+qJtbMC&=dOivbBb@UfF{gt<u2~u@v&D+)pJ<f)a>qW`<-PPolPfXrip5V-#`gc?
z8rq}BvzqgXvR4kQnvi0S)$5qr_}ox&ns~*qi_u07271@uL$L>+-Nicjx?ng%A>C{O
z@<kkf5e@S7JK7d3XfnQmNkI(;mNnGX{y*ng3CNYT5>D0?l<>0O`&B`Zhz5PtsCjmP
zcEn)#&cxS5I3LvTJF$B&K!e9H1}`QbGmcy?HKx6z&A`5A+mjOgb|aP+3WFn9+cKgP
z5+NsxHaX^}Yb}vWKu8kmHL9+da#mbuyt4Idn^lru6=gm1sNAA8*ElgTm;CDvL3!k`
zlb+-=agoyJH*rBO2`KQ2euEsw<S05gA+hJGG*Q!Z-bZ{Q*KYCi&cq`TtB~$fi}LF&
z@4hIZs#RO(hu8H#Yihu=`b=VH8A{kN%bXyWFSq^%joLJIm^*Vw#KSBr-tLVHdx&EK
zeuWe))ZmtMce@Mp2b%2DC{5N;?7+U}HWW&sI0hfDRt>i$&5jm(KURYZqJzbr30=k5
zse=D@c0Zu^f24P^w?wiEY8vQ7u8C1A0$m4xWwix4g;-9cPnJ4KdBa>UY|zGAbVFVz
z*kY@4UG|kM|Jm*aq<71wFoTIu(J$vK&S$h5trK{@nr9ijTW$jSyR`|MiG;z=x7PVh
z+rGt69HDxJVm%SeQI2PV`m(3-H^yDoB^iV!xgk-4-5#%cJB+k&O<62My6?JyRKQO4
zywH8ay*+~AWa(86kRy?f<0LU_QHJ}Qpx(mBQ@kh~A}k%7>$!OLfXxzF193Alg%G0g
zV!%?5+~+*Dxlgf<a)vmHaEbXxrL}V>{NcCR)>>c%C_{3cFvNa5Oq;m#@LgbDnvMf6
zJ~1wiAi%f&aK!iPDUP=kKsSv{p<bg_hPO^<>Zm3p>Ng)#wgYHnj3rO#pR@R`{P6T6
zv4s##;wnnR!uIw(4-L?F!ABlaxKo4*V`&C$7-Gxl9{bFlHkQ4Sqz;Ms7f%kiX3+I+
zcU`Y4G=?k`@L~Y9k-q`)j8eaK_B?P)l+dTENuH6?#n2(t9fY>i?hA%Nx#CnN_AZ|#
z=aSLxar?WUdEwxjz6*E8J;au2H3##rG|98#7INDH?e1Gr*`Ne*Vp{IFEqU%K6X7k9
zq*)Nfpa;QkMX@52xGGhXisq}V>8*8@P1b7K3U|qn-k0#NoLh~Y{O;mT20jwD+~w);
zYex1v+n~v3d}hBh#>?vYrg5gJo(pLi--QFo9*PJgj%d^^7WCtp!RuScpRX^Hs-?l{
zmuhY`%u6Z}#|xcF9V-v+9dy1YP>4fr368liei=t%WPP<5^d&@)?3<bWuso8ghg>ei
zlG?lMOP`U(&Z9jnJy1w2u9jHP%p(=ioq0d?k$I;Omw|x4eStggckS%)+x$8HFmH>H
ziMBh&TZX<Lhp|Gm`XRp<!#_k05_XV&hpQnAfg*-~-?Z7izh{Jq1!-Dt78+LA-<<y+
zqzOVkNea*xZb6~@nkl>~US*d0oUp(5bEoyv@^zNPt0NJ~vm4SpYp)m}#<ihxDW@^n
z&DR>S8~KFXg3DH#{gV)uqSZKwf{-VYdmC$N`-y-wu5>C}{K!7{caca#=o4r`M6Tf6
zea4*G3u%VrGoiB9kbeKcb=5k)FG2+Bh4T~sEwek4YutIQ7LiDKs4#E*M}LlynMUA`
z{6<bGk`pm|<?gX}i|K`juKLH-WsRN;H4<w)w|}A~wkBDTc@x}r%ys=gdSIDoB9`2^
z{5{jWl95SZ#ENT-3m?%-iH-wk409XU(OkKVCd^-@H!zXwUN)X`Xdx`cN6EZ+2WleZ
zBnVg>ZU&-t#TYcdw{fD6=JAM4erboCRyJ)-g>&Zjn#||1f>^%*nqmNhid?rX(2j{S
zpFq&Go(P7XQFj|9gUP?u&fUk``;3c(>4Voa+s`FeQ^GDWvH(gGjVa~R6R!LVd&}X<
z7GoG?CVw@mUy3}7okGF=9;P!qQdrZP*(~1DQmpL=R8eY%(>;4LXPK-|$S<Cj1k8WY
z>g`*d{r2<_ft#$EMDvNqv~`q9pMN<fyoh*`B&>(YSf<$oj4aV=#*@y%-g?=xNlt@l
z;<ka;Ca3|soCi<p)kz`WhZt+0LnlT(vDx|iQN5g5a9TWZ2p7<SD6UFoflE6a#iWF_
zPE#=~J=mZXsoW<z_B_bYsJZ*yGS~sk6Bzcg5^uH8X<_7?#{~6sA6Ksk?e9m(!pfx?
zJQwnwOI%MM)-quV*M~5KXn=os@rifcYnr5QpAQ<=XE}(^AiQzvHM`rH()%Z_z2uEV
z5O&SZ{^$J=caONAWMr3yzHls7qARjR=_W9;yL;2#h(ZaHkfWwPzajjInm)39zLNx#
zhE4lVQj<6h;g0f))BLzevOy-WBpcyK$UuTn=$>ol<!P+~PXcNv)C(((ytDVh9);`#
zw{=q3e{%Yr8=-)t{C{}<W5Hsvx(@ODQ-z^7_Ps!!XWHltg5}5B#qp!8buMMoGCOt>
ziBKSPAx`iFp6=#;W0vk1RXG{{9s_P2xhY3O+!Jr>Aw+~g<Vh%qgo>>*-aG^;Kn~IJ
z-o8iNcmCV216PB{yIMY{aknGYt7-N%n~>hliL;1pISc$XU{zS*6CWIK#m(;_V)ziR
zFT%u%CK5qb)Ke?Er9-iM@vB;)1W8RN77V@8bAJ{3B!2cPpwE=Ld8;|$Q35xGu1E+D
zR5QT5?VmoP0cyHSNm3g3{%zL93^;3ln<)jyKzpkQ(}9KvQb?~-SJ`5HOEQS!C@zxw
z#YI7^BS~*ey|XT>rwFkcEn3Hssuge98p6+6g=kbs-zq#gL~>lP5DFdPTE(l9*MkR+
zhg*VQA&r%U?}#9#Y!icXBhdL;955nZd|KQYXOz>{d`8g*QBmPq*SoSF>`}#K$R*zl
z+jA*-{aBMF+yUL}rkVj_c26$zlKYT^3k0Vdg&_u;<90;;m$#>QB@Ta-!(~SH8Nz5r
zqw^Me3%Dh}t_%5kZM?LNm<mPV9=$d<<WwIeQXywt+kZtU{7;TH?h^8eQBguFF=r#J
zAvC-gzBr?=sJK{1D#^9P%1lIM_ie#%c;aO}vE)>hX?a~lBy~lOE&QJ7Gfh7t-*4<?
zD-g>PvOKnrT3}_V`9Ol{NZZ`m(N7Lxha?<9tg+(W;6*#G4YrrC(nR|qtdVymUJo$M
zuL(YMy>1@C`jf!L&H#6pq;4(<PP95Go+Os!TJc;&li3wKrIwMR!xPz4L}Z1aL!EfQ
z*1u~+Ax0z8555g^zaCM87@r|Q$9TP74|Z<7wyzK@SaPs?YfA6)lSuAaGl@J81&#K1
zBcinQ_K~^g^Y%$1a-kQKUwi_r6Tv6TdD$^UeG)cBEi0118|bn6Z@F{8<Cb@@N^oH)
z&&^E4{~52AcXQqwr-f3<Je4c<W2kYfM5qv1>}Lun=Fq_@&$_<r)>Cv3q-cXg2uOk`
zA3|kD-skMLy-$_akj6|gs)yl^5X%!*%gDrd<a0tOTDd(JJsh<YN{HbT4;uG$dmH!q
zEfFG^TZn(z*bgkhJt0Z3%>PVtfA(T`IS@J?9z!EaqPplxTi2f=MRZ_<Tml{Ud*Djr
z{(pOjKCIF2M&e1pJA;Iv-hbYic{HK}-vxe&uvDlLPKm1LgE#DplGY4T#>EVXT`yJ@
zejL1arfw$u59}w19-?uSDtIwC=aDE`6~EZY0q5lS8UES931oZvjWc+f#IP!u=UAaJ
z8GPz|%&l4VP)SKZtEWes47h~<jnr!5XpS2LrCJMCa}uYjpXu@BP;z{5OzEg`ZO)Eg
z9sI53dB%2EnqS0~o%p0tF+4(OGukuRS-K(uM*~Y$Qd*BHGA)$);wp3Jvs!k^ZZ>~0
zF3bEijO#;ft=k>xi(<}Hjx2kQFW^QXO0?-raH--XS}JWvk7sz693C`qC<^R&?sFGQ
zQ;xS9cnMhKHJ^lh{=~(_cnZOwM5ROGOW-&WS+ew9t*WOBUDOuY_$VC0PxWw(yH&5p
znI@_@pNXoaRKO%V2fOE__Lj!HqRBp631hp(?hZ}qEqqK+-k_0GFGbKHeB`w-d+k%v
zqB0LBqlQZn%UR~cEIsU!$fdJ5T(n@ZoS#pl-u<7!dr%(VQ=)8$^ID7cr{m0rzlvA|
zi6XUdIx4o##6T=eR4={ceDY|-42&>YWQ)`pnUdg%O8^T9oI7Tg<HVC%eoFHKvLouU
z$a!7Aa^I7wo3p6A1;~ak5K)X#Y%Vz#?_EtdiDO<QI*wL6Bv-9}&~@U$9#h#`Aj~7o
zdAs_bAsKVV1xM8ireQq9p<o&plOkL*US0N;yW24R%`+{3EH(Nks=X|_W!*HmP9V0j
z<8f+Vy1n<8(dT^Vyiq#{q}<9DvN_r?_#+~i<H}SoA9GFg#j9X7$IZ{JkuD^?yc4dh
z6XyiVum#Q2Idjz9ZEMsukY-KIan=#Vh$I84S~tr1X;oig>O&ERG-1#YGhf~xe9PmS
znc>9{G7=pJV_4nUwxSG9hWD$IvK;_Z;Q~v-6*6gF@ZB$K`jXiI<<elaF;cbV#ixTu
zK28VrP@>#x#bM!dp^ycUpiT_2eLjsB!t1Cl&mn?vAUSi02Y0kz{2e_go>k?AMk+-P
zq@E=X%Of%Ne|G6X;E*I}-Xdl&&SNhIXDyEUKiE=K6W^h1A2Ahj%UNqVL{ypD^j8mY
z<dPdGQR8@V#jl#WDg63O+?0eeXjffky$;mnGSNBVMED%>MFOmkTUh+NWS`>uS2c~{
z|GT8Gknzm=mO(j`5w(JHw3R@3G)F*;1UDxcF9r3y5$R<#l?L!1LY!6SI9CTZZ$VR_
z%njDv1g6di|J>j*cIfTL<R&3bdPoV_5xI|~?;JU01wetUQ>o{u{=3)p$|vU>m@@*X
zh^!*74&{W8;5JmV_qtN{^pb6cf5D1i7P9a^JsE7fg}oFzU}*s~r<(jZWQxc{?r+$3
z`-#2yw<Lmyira-Pdbt}N?+p!_qI+}eNdEJAh_t^fYHnzL<p5!psbI6pQBw;Bxj%TZ
zyY?ZFH6y%`<A*i;_szk3`)X?q(tS0Pr_con(p2MvIKFWp_|Z_y@zC@Tv`r;#4qo0*
zx2KjDO({Z>##&4J(M`eKBF_AMq=;Xeb_OSy@!O#TX*$aMaIdgwkM$R-nZn=jPK1fi
z9(V1W-$RaVW@&lDq*7f~MW8oNX4rb&sZTAaCL+mesamThcMh?y*{mh&7Lmm`nVKSn
zsTzy$3@yRz8l_@xa~0j+V;claO%BQVK%LDeW7Q`w1z#H%e^xuhZ^P=~52T$)2eP(n
zFpc1Vh*b+BgKK**Us1DBe5m+PPjM+kTJ-yiw|3dFF;2q8ay8N%v0@T>ex$##^zxo(
z6LTb=NHy(c=jT}Dp|HvM7&)n}fG?c&c=k<a(O#`CwlHQyw-E1}nq`vBQh&?INBbr(
z(Fxi>gg1SiJ92by@$!s8N8dgqB>eB#M_HPZ0U;r;$2MkV3z(PAz0&ck(8*1`Jt>z5
zyqwo2l><Grbn<bSgO*cvg?mC5hCR;VPOgyJpAygkdx}wowOxba9YJuaA?zn1JFJeT
z0~xD4gAO}-jK~Hd8*2+>Ix}XpT0hv+I5tSP5_F7aoDrR(vI;!&emJ8sHb>37&NJzV
zZp;&?8^U(7l5$kA$1^)Gs7H1#;*Wq5Pg5x|gH@kQ&w$T6%3CwUuv1<IEm$+z)90z6
z#?i@Sd*Jl7O66c1$2fdnS95l3P~qCv@&s}zW9Bi)dV*)pNc~Cdtb&D*8Jn$6T<*Cl
zTQ_Pr1W*|2kTG>eN@jGHnjh%dGf{WL&E=Y8$7iY|7kKXM801FY811c@UPQvOcyI+X
zMt!tC#PLLz#_Z7u&b7v9@))Grytu$epEg$SZ)4lo-pyi;#&1DM7p-MgWCy!Z=n#{<
zaL)SaMjFs4q@xt6M6B~*NIq?Ueqd)e+o#m}WV<u4iyLZ*C87>%jr<sBHb@>+QqsSL
z4DVTMd;FhHZf@&PsUzeqH*z6~x~4(vZ^B}0g53!3sgk5Zx;+6CKvYGlcj7|cis<6z
zgrjLtzy>tAv?8#BVx>Z;S~)wkW**NG^-rm`Qh_yAF1!8n!wk$f7-KZSS5g#$A?ek?
zf_uSuTUu^sHxvXvYIT({RKNh)y%(+sySbZ9+D8@@V3UA)3=BKf)h3@8Gfx!(D@5Ni
zp*V>XxbRTOEe*jF;o5rIMoJ?l5urKc<S$c!SF$oj@9+c5g0AGpnQR84lw|_!)ir$X
z&>$B-h};trc~8dx<a?#ks%>-PJIMxOU8_d1Vkh2vA;cKQ(lSF_zDxui_~bbIqwTuL
zFri%JSE@MVLg0TB!#af9-2UOf=|}+&2|wgyG4P>*Oi7X(d4Ly(?3}<G!2ziC))vt6
z>~8z|+%6MkH19dbrUg#qx-;C=BAq<EVUP2%#6bC)HB0|tNX1{pbdmZ=1RNCB`qyA<
zLE*{(PXm@PH0+W~_0lE7vZ{Qoxr;;lEDR117Q%2i18gWcmvwA-v}7mrE3ozXv!nEb
zG_%SUv8rQ#<cb`<_i}bqy$l+(se6KR3Ocx<Vjz$g$&royCv^Koe2x^(8k{e3_0?;E
zp)-5xg-Z1z{u2vAxdLk3y2HNN!|BGE3TPZW4z=agB_ZEBx&*Lz=+Co)pX%9BPQL^v
z>%)lN#Dl-xY2Opj<%|xs;SPIQkZz-r5+OyBZ(aJZz5IA*Iq6dDxM;FCS=CRCVS66o
ztP<Z;Q^a{>n3bR##DRnvr}n-acHx(L0Vy@lB#Da>ypf~vVRKdn%czhysFcm!W24`W
z3GVk@$AOHrdV*`qa~(eAUyC1b{<=RPfSt?ZEQ7^{*AFPq4}(`%bLCnrN<uVgLn`#5
z&=*4V%A|YqtGwjH6D@dISgG5#f|q^ySm>x%gQB4b)|MwTeykw8{K~%^dzJ*s<-(q#
zLn!g_MXI=?wiT;8PlPE^=Bus|xd116VG2Jay{xJRoOTxA#*omAEA=<I_Y%J#Tht{g
z?AKR<WrQ3z5g(-S{(#UZL;o^4zov-#$q*B{+8HTf`?}iZ^JA3pg7PY|7NX-45ae3V
zbFcWjo!pX?stO}r(%&kC{2}jg9}^|gPxa_(58Kz-4I3O@Q4RS4gj>?)mxirR<Te2P
z%_=~SpL;NDi=A79ucC^r$YBEol<%*JVL9D(GZ}nE^&lNAni#gyqg#>z`nC*V>+`~v
zceRa|GxW7{=ZgVy1aiCuL?r4o{2gH*%wsntm2h%>gRT{=zW&fYes)J008U0O_o+L>
zV&33z%9a&Pt`f2(Hx6i)8DV$4%hP&OjC5Q)+<Uh2vX!<j7j%qbrBh)}6vAWUqtxwx
zhuc5V%s|#3A2I$Yf+f_Cc_AO)(FKPUN0Z<tiCB@y2A-Hw=D6obkkFxBeH_p9=5h&G
zO{G_W+Lrwtc3U=-DIQN+jUUe~ZClvYHWn1Q7dqmlXqi$^JZ*m^TT|AQdfYC;;l()f
zg&FqtXH1Iy0lx#f6n<6s?v7m^<6|9aokwp8l(&p5t+FnKo^&oqMTs#|PuRKKKKzI#
z=%b6!gbMgsvQ+|19k*?}m3xNvOr0I}PYzF~+|ZLH`YH{D7!#>e$pl=Euy^(|0385|
zK&nN<9f2WxMrq=hEZZlr16p9QKSm>XRW<C~WVU3}XQ89GoY0HmbtLn`h9%APx5q>7
z=@%S;xRzI60O!GVAy+P7qP_EN>?e9xo%e=%{wpddviAQ-qkVNDq=K^!+u>_XjHm5{
zu;2d<9w>G;i^{W<S692LU+f^X7zdiB!Sl8DUTb7YvP>=Ex6zmaKPYm)v$d_PK_;eN
zmX6Rm=!=9Ls{hOg?Y2bEdblvvBJL3NIayK_5K^AX))7zz6_%O;35ki^qdjv%Z$8OB
zbH*^pOZsc}27Bnw))F&!jUn(<TxhQby}(VZ6$Jyv&%VI@p(IO^!WMSXd=$<)g?&-#
ztN5^=+MLl87bmx}TU^*T?R0w%nR9RfkfXwubl_fLm#>-z9t>dhEbHdyLw3W+*aJ>b
zm4Owu6qALRbhcH5{P12Ep?sO(Js{lF2rIun*!JyzJI&YUd|GLN+zjmOsK2k(7$0Kv
zV}Bs-GT4H?A-!$v3VwCTo-dR!ly(kzEKGlGIDtV>D<u26kisuCO~<4zQLci1TYG<4
z$Vg~9ULdZ8p!!pHnbE%bLumH5P&GEC9)Q)sg@U3|W$5zRC0<$A<4Zz6ny$I9Pgu(V
znhQ~%FFkq4Zj97joFI##Y&>D_ceQR3-r>7|Q6N$itax$Adu?@>aE@F6)i58+yzbj#
z|L!g=Ir;Vmq%9;DQDjx{jL^b+^uZui*gEByJLwo59dgUxorJy*CmIeDDJMONI}9-Q
z3EP0z^(}1fQN3w=O*iI|s*L7OTqKi={@wPu)jU|E4{+hXy2^g!CVkgrm;@kWC}Bl}
zx`_xz;K4Wceb;vRp2HqlX<PfV7K5^(@IKOCJvk)rBR!i`Xf6Dc&kVjZbjd^dUTUge
zR9j!GWnPUl62rMkRDY&~{B<pxi~Chedc2Wu^=cb>yq6x#NHJQ16JX?66lK$PduTqZ
z$^0kd97#f5j#R6=+BaO;c|I~)PJK~67HUj}tUO+ioEzJV&;#`$CYQ6yN@1aUu~*oV
zH}&o}T@a+Hs>&NU3$nrQM~7~?oPJ151$bDxZPLRb`y=&SlFQ*vunc}!dVk2!AcUnT
zHA-}!YJ^7w15mojJS_h)_%?ed=}RG7k^m-Yra;b-;5)nNW_BIfw*UcLDw2>qFu}BC
z-G?v$>4)}UZIso|E-GgF+V2~uu51_P-Kq!9u_vCJ;~YnHgnI7U(9XA5Vm60GSD0(%
zwRd>F^L##^j06Swr%*XxLcz!6lBha<;p(*m_$e&#m=MIjgJ+!|Pe0`twjxlR-NP`&
z2(uRxR+KvRx1;uP#09)+-pXlo;Xo4g<iiQ}Pp9gOn1lSv_7-to$WCMTW4eWmWNWpM
zB3BD!AzJ@g6ynNf3WO)It63z=6(M8tB(^axM_P_eK-fDSZSpM+?Q{_EL|BBJB8XA*
zcDy}$NoSEiMc{|uVB&)4;A{KvA1xBf@vFkW6(`!s@_BY+PUrqiKvo;-2RbU}>!LBX
zId^rCmn5TpO#;M%J;1^qtNPt%`*{W8tq?c#OU6bNm4HwZsUN9&z7>2|>rRas<H*<0
zrW8_!8B>q`=AK@Gfdkt~4;NN2@NhEW)GzO2zHn*a7t7m7Pp-G1N#UY|MzosM&rIv#
ze-4NXV3%uj8Zx*PKSi1$@qzIN+B7DQ6cG(DY>d)G{UaWd<@K#`Q&2$A<!u|YMxaSo
zRSK|Vd@TN4^>9z~-u3~ZacvrhWLghWQ>CT=yHjiu-iU&y+;_$WJ#l^O#@tjA@21JR
z1G$<+9<iGAv9au{z{F=-%cDcRqRsli<f7v_(FZRug7*i0*M=cwqJULk-j^U6Y^>`Z
zGnNkud}nc+#=Nm8shsQbqJlC|9b<Xx%|EzTZ*9N#hBl3<$!eI?gP<SZAoz%x1Smkh
zVlm`L7MPnpXdRy0zA*zW9xc}b<Bq3H8G_Sw=6%n#pLtE&#t|7RkN65gH3S=slthTU
z?Pa6=YwcIHZY$#&jLaDmhvi!Jd&P*pJn$%kVx}NzqwmW^k>}NK9~k?G1?_mHbz^2S
zA<H$`vXD5i*%1zus3w;fhkFF<9@C~VYq&s%h_{b}V~oMziej5cu&jFFn0f0*fseh?
zs&ROx8sW8~$KwIHPgFY|Hq$x>hVIiFFbq>{gAOexDS;Ecv&#KKe9&c`TFXjFi8L|N
zfqqGmtoJW4mhEcayGoxGV7Dlu#^sCQEPOKD47fXRSz7DH5yMoPRr6Rbex!Qh4s-qg
z0>2ricdUg8H#!L)McP{Tj6Ok8J@r<nls6D{tVhBL5{2b?V?ub)@iF>Q6mM^xq#sd9
zD?v5><8Gybe!8FUWpHY%>&vUfW-i6?B2O6Kf71TBL3$_T$g&q=G^SVy10A~F`1U*9
z%erO|zCOLlbeTZxGFd=QW89Pg^Yb=(;Sp`L`GG$2(84<zlNScO_e)zjeG+<>ThRa)
zf){zkG*0ogM0ISh`|psT8m7cnV_^mp#}BDT4mQ#Au^Ws*DS?Uiw3U4Uk`kzj_{iA!
zBvrV{JQ*CA7p;$IOJb0aNMx^?aoRn5a{D(wZqqm%(^PFik-*d8TEi}MXp?y)FVOXu
zJ}h!#L28p4a%gaIoXzw=<I53xN?Ex`-`GWk3*bRaz@a&Ev2kp9z~M%YQm&$Abb%Ms
z8I|G)m44bV7Y9825#z}gTa-X{;c&t<+V!+C@a4eXx9RVt)>KUu01>{$>G`0u@zixq
z%f~Zy&{b+(`cMV=5%=xaj>drIH9qrjC#i1bMxaL@ZthuT1F*~ZhU1`o<42m`PjA0-
zd|Me%MrGAB-#k#?2)R9BxK`*fu{?<Fq8o8GRryBqV2{AENS2MOhh&57i^?KiaN-<P
zzt7EkR|O0%Z7WwlxsJR;QaF-`{=r4k+iVPM^LRo)<50RP*vbOfLrhcxAvsT9W6W9<
z_}j@=a!STe<qC1YqGEBF4#_Zb`|Huu1IQi65+i%G@}wJ^$^))@Sl@LrNEn00^5?qa
z&q{j9STa;!cPIgtamn+Pa^Cm8ZA{4XlL2D<U|b+^TJy$VPUheZ9gOOE`b=_N<xIj|
zWH%(^U)|8jc;J}-!g3ej2wYgQ^ws^H&FO0bd(3JrWZ!22q|Oy9QtdK-UK#jg>e)Rp
zYN2Va`Je9LQzICQSIRH&B`92eKV$sy_OC-iAplZLTHH%w<r3l>cZ2!ItAXA<t%RiL
zgk11+6Jxk7SH0(c`R?|;d+XCD$bpzMq)bY@dg(o*c9lMT*10SsaDg6<*zPxt`&L@#
z@(con$Lgn6#-<<q^F?teU?pO~Wr$Ya*vu?@;E*8B&RCV#fRPe@nE;=9v(y-Nw0+PP
z$i*;Ozk(`u8kz@+5c#J(`R_vWlZ%78e5wbZ3Z$9{_?DwHA&IDW)o+q<phNq(aESXz
zac<`m<IbkXvpK!*GM=svxMRL1wEnt>G12nc#h<zBx&+OEPH^y0w`wugB*AjyRb3a;
z5!L43!~p35URRqI<xH}Y5BD(Nck43=b%FmEiU9+)9K!YGqsEHfeh$}6x267i;{}HM
zC%r7(4Uj-;8hl(cR&+VFZJs&a6*&95)<Rj539e%k=z-5X@~FAJS760H%?qTaHo3|0
zAc#PsTGGL|A~fKQ``gO(5QKe_#UX;oG{Ck@FgkS!YQ0vknTTmxY~Y?Un4upV3pcfU
z^?A*s)5XFKf1$(*UA>1IcXS9`IZd<4F{QdD9X+5yztqP#aymeI_*j;=Kpr8YAwex~
zFgCss`08`5gekK-QwdD9LP^wpmz(!L*nZVGz2(gdBA6Sm|LG33&IwzF&0H>{$Snx%
z59}~fJ8QW`sGd(Q76hI|b!3~d>-&Hm7C{{Bh11fG;&#s#!}Dpt?Dd*uq$849XCFug
zaw`h*4M(oN_nfcXx*Cm`1&@v;{Zqa6rWx5csO<pFHZzGY(4|M|<Axr4$$Y7szYnEM
z<P9E+M=D$Yig|IEzYE;za{qRsohGWy&zPfn>Rx7miAHP^oMZ&A?!Oqb4h0;4U(+DV
zEuT|f<gG>VhTg=&JQHs;rlkihJKU-<I~C?%Q;S+o#dz{V6QE%ucNtkb1G^x7ar%a`
z00>H)z9g(^HOq{^F<O*?%qIJ(n?WV};u3szVo^d^-fPZk8@LA!$DOvS)`LLAIykC~
zw$BH&If<}{Ji{ZF=*pnuRrw#LdR5CY^jU+(wTD+g3pxZuU4GJBw<+-0s|Y&TiWms^
zt=Fm-5E~zjO{?xM^N+ECTiR(^A+Nq1Lt+AH;7O|eU&ei#v@F1Ia=rBhQnwk@Ag;uE
zk8$(vfD`%cgenl+C$1xFOrUJUtJR;Ip9cmV*ube92e}q82oDVv2L_l6I{1ZYi81$Y
z4CqIsv0q_MP0|80PmKXlhhjUzR>c(ovr;F!n)^I{VLKbJPiZG~;g3FMtVO%zYc*Bc
zZ3<cA_z!TI2`)|6go+?`LjEhNAtdn}<-P;VQ?Z&@Ac9lt05y?&6CWd5(Feii_gez~
zeo|8=!6P%ov*DLyVqy`$Hr?&+Gbm`&b**K$a;mCH<nl4xB&lZCuCMXxrvYtl)#AYr
zfM9hpBf%ZyAgwuJtm+%Mv_o52AL%1?jKCBkC6Qf+n$LOzuj_K=cCb%({%H)~>KEKb
z;0Q*BM(Gu7PYE@SS0C>+;va0k{E$9A)=3zF-U?qxlI@(8V{H6bA0kd?wznRvBO#3m
ziE7r9##*N)jr3r3##{xZB1I%pb$`_OuDic0-AjlQM*wmfqkekAP*xAqA6aD8kK#)l
z$;3+I@DlwcZWwG;%wJptWc?@=vfa4+roc7pE!oIh4k{etGjVuv>Z5WabD|~%h>xj7
z#J3t5Fev;2bO!z6p7TXuPS4hon$NYF>YXeGYf=j&qdi_F?Kk><5}AlXC{+o|Ce@>F
zC08I^VSbG#Gay!Na&*1#Q^!WE4Wf5Oc<ZM{5GYppqgUW~Z$Hx6-oMA0eo%sLqSV^@
zu3aM>;@tKpH%ai&fplBNt<gPFP)p=&WMD9x3K<z4o2R;U?)qC4(o`Dc7I6_j0i2vi
z*5!ECKi6jaf7|IU*r0`fDV?NW5Aodcw7(P0VTzmwx*+-|273Np)znqQ?UZ(C^bk+|
zOaAu3UJ`!whvL=u-96u~)*aBOlzKm{0rf#{g#B-0`?#RB2Q&p6=f$(@6PK{JKmy1A
zY247;-wm^t+*#{X3*<|rO8C>b*!1^nTJGz`0T8VM|1oBH{JkSl;~_+dRMDKz1oio0
z!$|jc!o65BpKieq;t0X@?lYd85@f%xwGda}8RgK>1KoIkxAE0Y{+=P&5DgSI+*w4$
z6OOXm_;9AbGY2da|9BGtA-S{B_<nBCj6CfUZgM!sja8Y3$2&eqly9w->zl8W<nt$(
zr&0pGF5woTn1kTzyVdB=(5UyXH-`-kIFY1#eM}P*3!O+G8z-5Om-!#1oJ6g6s`Rj|
zx22oECk5P7r={!>*jR8&i&ld@_;vG{69GSt(CW_Ma;@IcgZA5IgSp_6z%_7#F{4?I
zCV^OBV$`GM=E>9`!_=LG16ff?bS0=?Cz+E{{9U*gB=AC}hXnxLB6No7j`8<Oq%9X3
zutK=zYm?3Frk-4K=k+rZn9zQLd3CR#oJU(rY@vWzV7Al9C)~DxQ%2dKNF86H^Uj2Z
z8amJu(;hCDsKPEqVR2RpV<iS6yj*N(>I=@^zeF?+Pe!H6uh(7-j9SrZ+6l98alnml
zwh<40({{z@s)>fDZuFT^132k-boUG&$0p_>q8C!E8&R+p7bLhlk?NHRo<BOZd-d*i
z(oKPSjBRytqBv<#*^Zxh7S3+h|7JL99<0{u)0OCC%maS#d^}k?dt8l$1qxDE6oD@c
z&vIcAl@KBdO1`JgdOcP-66VUT@m!bGL4KKyyVieNRLQlT4rv`k5f*A=;BF>BjMGHi
z1){3j`j9*0P+<2rweGHsLs{TLATdEflhg~hyW5=#EPl<>?6F_q$3U1xPT}D=b@E<!
z{BQDbi+GFlq;z%JB+ra}K{6DacXc%fakiz$jaNU{crG5KN0<wOCYJjjN<9l^>4uSr
zgPbg?IHboUt0yLTKKm=EF?+BYQ9<|(@gCyEa(rN}|Ehh>i8d`aF&Z_u^D5`b;}Q45
zd2&yemE?OdsN(sbY<B%;W#4<b@Cc6e^_3A&Vw}GZdlJ|7I}WLXA7GAC>dG}CM`Db|
zF|h0sDx*@`S;2S_mA-q++;U^Pb`Q5}OdCwqy>c-W$ytm_LYh>q?=(*x4LbZ{tBd#p
zT~6o-=D^?0wXcMq9sLulzIr+MoA~%^p!s-xP@fPHlK?0KOXqgy$$O*P(jk<nh}ahr
z3DtoS&Zy%Zw#m<lzGFVs_@>^vBIMS$)U}*-#9c2uM^V={I6Slu=QszaJBOpP3fngR
zs<*=a9_;*t8-sbm^3@!#6l>+`*TPTEcSxEXiG{qFNH~Bwx4B>Vpr^mlDs?dYAvfV^
z(gqy6WZDqaMufsl_j@1rIz($G(7xsTkL0WIq3efTaFz`U^T{)Rxepx|UFLPxI;FmV
za|eeKo3SK{=3VKzvEJR74RaE<Y%MIoCXk!>)t*1cwci!kPOJwUSHgHIs|15424e?E
zMjMT7HJWdq+YNL5|8=7pJolxs#rO1BiG{_0XbCRJA3%fNX+(wv^c>%&M{Wj37n=_b
z=BX+-K0`VBbX_vGUDG{;V;?M}CR_of<mPzZ{-1TK<%UK~F7j4#Gtu3upg|QyYH0j;
zl|0|mZK3{AW)V&zVll{`5O3w7ZJrf-nx8I;0QI4S$e{GNbTx98$9_kLv%<hpRje@Z
z^pqrRbphy3e7fyxJ)yCV#;n0Yq9;jMCWR|8XU`bq+3-t;BagR|uG}J+fwoW5iTGTc
z?D_MUzcaa<@-Gy@!Uu<oJj~PcIe(9qfvtEtYIs96w#9i0wm0>HN?uD2C0#JOK9_mM
zeB<vD)>~CxT_Sy`*^vpJk2d@J@+3r5o{EMWEJ^g(*7$p}yw$osIeqB<>c|70?j1S?
zRUqGT54{4~4U{o`SaB9E^aM2ZW#Y&vpaVa&nw#ZWdwIvH(fXmxBD7vv5Ym*@njBBr
z(GI>IRCD%B#z$%fxPYFrBmS-o0@uLwF7g)Z2MIyE+VlD`e=nRxtg4J2P42^ZPw0#O
z(MwrK{NutpdE-FOpr`#kO%f<ejPUqKl;_>&{e2|x3VqS?w=7nyx-8N2@t6K?K#}B)
z<kWtc;wfM2Zw7w8*uO6b`zmg<=ks^{ohY$f9takD%@PNW^E~;Q?#srKR5aDnGB5)m
z@f-{Ad{i3r=(h-C;{>~#2uW>OAux+mlF`8v*wo9G)>c(mq7B_hrdM_Fyj$Ua7*P$|
z19hau2#%qRd0z3W+2*C7;>QuE#$nd1E%84b$1Lyp+YEj#=$i!Hnafod6J-?pL@{RN
z>G+brE3ZL(DDp<E44aOay<hRaQLA-?3?tKb4fH&}H7KURdRYT@C8;R`91kAf&~~1R
zZ~c8a=*pF))9514P{nohT)$a&WhHAeOhqnh{)pH(6x#k_c1-W^j$6MLz0D^vQ;Hjw
zbELKBlC%yz4Bct5*cvQ*ygCs{Z2pht8$Sk(Sg99Qt`RmrLlbNH0UFrqU(D+o^$$=C
z_2a_;MMiB#H<T%@TWQ>!-ey;7doeO$E)|ytbv03@lA;q?zfMbx{Zrb^vidXqQGgU`
zM6bN(aid?IzfTO+SaCS**spZlZop$kuSeTdrRi4><CAsLfu!GYv9V&Izk_#5{siBP
z60>{Bvqt!gHiLOcY*6L-+ChbLI!bN-$aGf*W`3ys7`TG8DJdRUn;2z##(X%~k{~hW
z3ya14Q$~JR47R}Kvpjp#+QiLlFY%(oxO9jgA|4@p#;RM>JX?)`+pa~-#ma-U>Qlva
zJSn^SNt&m=SHPg_bpK#PFCzEkSt*m=v5)8P&)Q$q3BfDdlAc(A3fzLcn#knuB0LF~
z2J9WAyR%9el)%a2??J<VDa|wRtM<Onj^QW+z@~XWZ|3}UH9TqG``?_5yH>)@l8{7(
zJ3Xzgmhe{jB-Rf!N9~xxi;FZ>T<rPB2>AFKYcdoGmm6<LaUY2V<qZ&w{k=T@r1&SS
zb!V80?<M4eC8^i@deZ;&4=qI_OIZ{^CLO81>*qP5{IhDZ??^Np63w*1o>#;DFV6#L
z7@bHKBT+T<^vnzJKb9^c9zAFb(dx~ip3njQ71luV#xMeabT?Gx^@*NVA^tg$_Y4aG
zKm%btNiC1|%s<`Ux4>Ax#9~XAq*@I#Jxf~Y&n1u7nFLLaJb`LMEc*H@Be`|k)-$zT
zXAIw~DaUpb2dh(0RhxHx8u)fUZHx0+7f25i6E?nw{pDtd721T2L1<`ERZX!~shD15
z3-=^5xv4i3p+bzuTtv}Ew(j-6)NkzMdyuc?W#-Nuffp~)-xH7YR8g8p=|Sb2IL92*
zD(J)%-8Wc(BXFf5)d$~i-tvwAb-EsiwMR0F81=<8^W%5?V<hwo8<`A)4Z3l*nYhpY
z+z7lJdeZPfqsZL(LExjiTZx^^G6QicYbz`~1@L5I)E^Vg+dlS>Ggso`B#nnJVz;xE
znG2uwe{p10L79()@m2gz*)vSF%l}nTT;&cid1&xM<>tJP{9Vv??xsb(c`r`G4=0&>
zm;2u<P7TSGkX6w5Q$I~LJumrtH6*?-FNZ@Aul7wehrZ|U9YX>kwtg#!TJ{;#E3bL`
z7XN&-@zggg_?1~@zQ0@dL4^jFlMW8If$wvHPH!}4j@3Rkx<=F%OEq!KU_cj+xWW9g
zCU75XNRQ7Mt9<}S8Q2UujxY~I2j=~x{dSp1oD?s{mq8~K?B{FE2V(<QTc&rdCXJEe
zuY5BR6VyF#nNQtlk-jsB6R-AcHsi+mhl4g$Q{^)YU?5J2QF~uAH_h@tDUsr6p%SPo
z=HnQ3<URB68~nXk8Z2)|0?ViR6`4ES{sGBkgz||m1UGl0%75R?n`S+jtVR@KqAVvP
z5Vo4A%tPk%BkhOX$uyzG5TIJ&xa4g?F(>_QKC;o@H@r}S)`ZjWAY9?lA@kB7{GB7<
zap<{PcIH_a)$gr5J3jY!C)bu}I?QR0R%<(Xp4i@gBXpQAg2Yh=5w{M4WQ)bCPk%Na
z++#hNZG{;$tu0q+*SqEqb^fUk(Xr87-amlQArU6>D4I;P7xsG+1=@daz82MC)YE!<
z&)On<l5d*3>#f(MsgZ=(Q{uM*LzTGMbJlrgJ>Dj<CO|9jrTL`%#wCf5;jgWpi+8p8
zhYqZ0B&)hS0dKdFZ;P=RGizD%Wq@X-O*i{K<v-Aw^#$Ih-gv6WEY3F<ec?aOn$e5G
zhom8w1(q}DR&(5Q+W*eWEjl}<C|~T^auuPp6AR1^-!#8~t5_w}Apwu{b(Q9^qy8?O
zE8vjh0R>HhYc}wH)A4!Wm5|Gp>NMdSaqG;vpJ;VDMM9=vN8(Z@Coo>!^s>|QO9VM6
zaCmkLLc(TazSQQku9tLO{F0+FM~g}n1vOBwQ99v^@Z*{f%mI6YJR7xB5?QYnTG`~d
zM^@&Z<+{y|HwTVRX+0L=3aFaPv~6>V0RiaOS}DX*kFJ-A0rM-5r+<z%wPci%7bA%T
zDmyw^MTB^siPG()XmHGYnQNH|L)CG&=a;l|9!XV0?4Dhbx*gO~$qLDg8m12R^X#b5
zjZFrg*ukpW^n5izw~DyNQOJxUSERQmeX?$Z23nbSnTdI7PLSu=upl|sei}r4Ew}o`
zZDv4pz%|!lOT*<>T~t}X(1l<|sh8S&)*RD^9TWEu4AKQYA0@U_F4_20W3*d))_8I_
zDO<iPMs8H3+Ple|Gb>=u8`^lMUF3eF6{cHE(-$5yUtAt=Rhf2?rUDs@P(xH9heTh)
z8_dIV1K-%i{lGOxoDXywC`CkyiETZf%n@Uk^bqObtNTbN0_v!?9_I{yr@mInb=YdP
zh(`KZtZHcQ`EQl~2V=bTWg>u~`$Vgfj-DT9Y9m^53OQ@}RQ-{tB(<q?*MSLbd(fy=
zloGPHic}uUT$J3kTOZxwbLDWzrDv>qcTm^3(6(ad26&Kf`v}PBsG;hAe{{XW)y8^T
zspTQ0BwyE#nQg^bjwMdJVQ}0;s_<WJ2R@I!8~X+E_76LT-W4Y%mTU}(JvskU|L2w~
zLMq=<AJ962yhrAlk3|S*oZ&s5^@ObwO9oj4;`Nu5l-o}^f8G^wJuhoLq4SYBJ@CsD
z*{q`s#R91FOd4#i;3w=0VG>#1X{FOJ&RqVLUF|d$^4m;|Ufe7`n^+aPm8#QXNh&GL
zuSY~zzr18``;f7aPtsITCDxnU?+J-|fM3Pp=HQ-GlFj0+DS*kV!iVe~$LSut_7ZQR
z!e-hd%4h-YP-jDTQ=ykX!r$P16DEhp0_LT5za0`2VoFi&<nm%nhGgQ11CVe8bMw*g
zE4ZxLUTtW4>u#fQG8MW>44FhRzDa_t##8gR8QUwucOiCSry-g}|36{9&x9?z)7%B|
z$z^&1m8?SF3R|_#*u`+bH^*J1)YAjQ?_X-{g2I!<AZsw{#jyF6<}TJCqqMeEg0Uk<
zhrKeD_ekh61c=`p*%AuS_AVs3j4DiSz=6*Rd#|2{Bzsw7<rJO>d#E=Jz!H=e>kqAY
zJ?uZH-MbJ-Dc=Lw4m*$<{?paGMJ$5=6!4n6Hiy0aGc8gLf@}pUINcvsGKEi*N6Hon
z3K5N$90<E&E<@JIILHT*V)I9N*rIrT2+W3FXJ+yI9p)}%Lvp|KAvOBRfI(qH(+w#{
zom^R0i$#s#c3ybXg&`Z>^E4Zk&?Jzbi2uLK(>A%;C=^k15a8?d$V|2RTF(tvbZ8uv
zCqc-Bw<dC`qt(i#=F5}Y{`!79K{y#!q;vC^k9KdH+b@x|8zy-vc)b$w(yE@tT^k(E
z#xankBF%|0LrOH%?l(P8eb)NYTia{8F0Lfs4aC}sBCD3(XSO~Z<axQ35NaJpr6s3~
z$aJ;4(o^$T&>0RdoDHaUD#p=uz<S3jjt9u<QqTkxh-h`;D(BpvBP<)P#uCKmmY^<t
z!ujf@{RO!OghuQSWnhsL8Q*4f*qwd*wMe~3Vo+}z?(0%}3&<N>wyd&hD#wv?8?U<D
z?+)77Q^4(Vy!k9JaodE{o9-^by`_!_QB#;PtLr7j7$aAdx+2W|<*Q&=oKew1<l5#G
zaA9u5K48uuaOnRLcHV(e73<$06ct42BukRrJ!JzZMAHk{Qm83F61s|;WJyA**#u0)
z23W2Y6}*aI;R-gyUJyGL6jZL@Ra8V2r3eC2rCi_7GiOsk@9))r!pxp?rabe^Q@;<-
zFqzBuc!vJ9Yyq)=txw@DX3_D7;=jh^1pZB^wgRO<I1c1-N+hg%xOc%0ode9l0bd7h
z&G^I#DJsd_{hk@lXEMqpCn`w(uI^(d>wovu{jQ$`mqmjQ2zC_8QT8#<<L#L&i5k#t
zkbrjLJb52qJFwr=%Sllu71(L#vQJZwZTD<)>NB*Ia$uf35Sk7&mEkV|y(W}?dTXq)
z<Gj8So?jTK!3s>SAeS(QX!4t`v#nmDW@VBkA-Xh+%zGYuI%>z1uJXXB03t>imfSR!
zQhl+=HRdQ$y^tuHC}|8>G9|g~nZk(Y_Uk-3v=})MutOpq$%lPCY^&M*ekPaK5ST{V
zAtq%ixC`u0lAzgb9(tCSuM<j7OcTl3f}s$r#{V~b_D&t=4Q7wd+3L6{?D<8+gj1%w
zp^jV@)*dE`>kn^v?{{1`eL@tnq+(Q#cYSQ?za{Y55Q&eU5xM~~LzU~>B2omnAJMWT
zxIL&H^J3%%1EpKUuZMIH^-w(3Vmbfkr0{Y7Jt+*m4n2!1oP%851~9y2c<nT@HFab)
zXO%4dXD5f>aRyyfEUh6}LKyw`J6!MoenO50!XcB~8`rzBfiFs`L$RL}B+ze?Byv4>
znCr#=5Vo91S{ZSx*xCsiQh~-^!|S?U0P`)V2_B*0jV90YFLix_NmHEml8i3$CP^2Q
zTTIZ>!2ME3M!M$oB>O@tnLA0HBg8^ZoVM7OoajM(@{rVdRpCp^2<s=0nnVN~hJ0c5
z_=sL<Oh({&C=X7gAuc!~J;B($-1WmY9r(?!VaLKTF)}l&pBh}dJL(8;uHfUnyR|1*
z#7O{>BAUALkD6NUy6#P=i0mus54YsnsklWE-<IkXN#_8E(z1*}t_>fs4H^@K3)Bfe
zQ6*=E&wYRqNWPWifl<ep9W{ot>&3te;fzaDgPsb{x=61)@ycQYMKk0QRCk;bL6U_e
zb;;;idGY(DKq8&)iTG}X4)Y%cGa%K3GzEU&C&v{&(OHKYlGE5!>}ve{;s{q3Nhh*C
zp?39jm}}wZnoddn#7-@#vM7I8;SRs;n)e4igfU7D@Yb1JpC0}mX^V6Wr#O|9i)8f+
zKh}}N2ubu{h_!4P;qsD6DX!!s_2$nJedqCvc#B$QPjwQUjEpWmRnS47JQ6-bc7lXn
z4v|iAdvQaAO+qd=EeUE(q*g%88D~VCJ-nCX!1A+35~7GYPz$ZdenYy*S<x_zoPSk(
zy!VeJi7{DOv|0i-^}(dN^}5kLFXGY?1*wKWm8rb+g1pG3u~1|Jk^)&)oI%o5Sjn6A
zgyoQ?B0>q+L6l5q1kwQq85A-92L1X`1a>-`EFezIBf<6Mzj=oI4u6A@)ff4RFB~5o
z(fxp4d!0pSq&Lak^I5X%ilm<B!3reZQ-1fV5%%K!WXmO~!K6opi06hwuIMU0M%Wa1
zN3bKJ(38}_((v3j^($dV;PGf3ioF)sBC%`X<GecQu{9Ow*d-A!laS223ni1$kc1ee
zV&?XKIYXZST=gWLAoA5TOp|?4_jZWb{**IGoU9ypwLjhUvBgHiA9Xejc6g|UpU(Yn
z_?|2DN;Ri|YKFxg;R0oJu&nU|Bd+n1oJDFC)qz`1#(OtLY&u8NhNSFK#mE>L#H~Qc
zgH9szp6Oc96&g>3aoil%`?_s9mxmd{<pskFmmR8YTo>1u3m6x|6a<z-*aR98%Q-3B
zRryc744N>5L1e!4!4c1sh3&BMN?C#@<6W?h6a4T=<5Vxhx^be`$V8RlSLa!aFFr|`
z%Tc{d>-eR*6+rcdV%QFfSaw_n!kT6LraQ(-Br(b_s%4>C<g(fi(9MJEYl_%&ywtg=
z<5YvkN(L1G*(VDIFVS?$cgWniv$HhGy&x)HNGDOM+}d_b|F~7J%vWDoR?UQyU!9gI
z6Z!Z=On|iU>d_0W;Ul#JJ*O`hd?1E{TcSn7bBnFavD%%_<>(LU3TXI+5>@hJ-uO+O
zqc7C1dI#W2Yiq6U{1nO`doMcD?9LBaIURFef-ZMA)n#1uN9R5FbXb9yQ{b=Qe@gD`
z?P#ohz+A!h<@=||>HW_!@4!fF1qV94(!g?F;-?(uOSgJ{T*<FexW}e)ZIF^^dbY(`
z@sP$3$D`De&Z~I<t&|`Oj<C9Wp8NPuXMarZ^*y3U0=taA<_wIQGp+kK{I$pDuI<-7
zkH793<qmZ2K8U}j|Jz*=*}W%!-P`D1;qQJ8?_=|e%LsnxxxoE=f8By8g&Bd*H$KqZ
zq;)YPy;|y|81voZ2Xw!H`>>GwP6_x>4`1miyuE7??<L2&acbAk`0Kk>o-=Oi%8S+E
zTF-0eb&2Ay!BdR=^Sa&3U!Y3P`J>zE{FT+s6Wg)-If$*fMgH9tNI_#eN9|AYWY9;3
z{c}@IiM%*zBjVNUS>BKJMzqTQ)gaDl=Y7Y`7Q>MarXn~1Xv{I+T5GOy+{fGN7}Y~X
z*04nVZ($ag_atgzSW3DouCZ>vKzFb*PUOX~gt6+*GHdG~=l4YM2Mh;VPz_C;sMh?$
z$_jMtlb4~_Qml4^<1*FH*IBN)8t_7l%}Bq5PCP%%`r$K8!NQ$&l%<+J+zNiB+q5ZB
z9?y;)23o)M`<uF1BN9oJze>K)id&=GT3(qQJ5>ER*7|j|(_B+IC18Zop<3VKm@6DI
z#bAgFv}CVY^?9?YQAbVb!O)4U{pvRJiZ7Zwkxa$3DUPIH%_HlYoALURtXPlls^zsP
zt84a}abGw81h7EI#(~0-qORF(p7}|07ZLSXkmR+o>evtFIcu6ba{SX}0c4P5m+dpN
zKb9WNA_!nB!W334L80W6$69C4bmkoLo#(~EA$~EBf2lc&SkemvWEuzYB~$4*&bly1
z|J;d&GGqbCJ5RHYJ1nq;&m`oi`)sRlO!K?3nrW7&4v)9C9MY|#&<OGf+T{BeTleR5
zxdeeO&mTlc-Dn%VBaD-g$WW}Bk;qCoHY3ncDkP+gM9=FY4zBE9!;wc3f5{mAs|LYr
z16hZr;>0Qp;TOhhuGs#`H7Ep>fdA6yKZ&ZYAjdTzwAI!jEC72I7iRopHrRnD=wpI6
z<ESDUt5KZmIA@{vq*&4qtmv?mM`NX@O|Ax^dMRq9C+t+9X%I(IWr?>@N8UG<eC9xm
z5{xJT&&IHTM28ciOMvNl;R82=5fraR78AiC;nX6_qeCR9!|w3KTQr8)Ulq0F7DX+N
zwV5i~B_0DY$Gx=Jv-n>qY3NU7NKAyAYYh(aU`7k?@VMt_Wa$>1SB&VbFr2NeEhQEp
z(Uw*OG3U2!RAVA*)Z<~^xqyTtjSgYXf>5PCxXtt?X?+_xv>cEz3Dm{Tlc>IV&b?~S
zUwTAmYX6-3*q#{CurYsB0GX`e&B;f>ga9V?oQA#<l>#y&vlXab!b;T;&&Pexy+JMZ
z<5=Sys1Hx~o;T_o`Q<pjV8jdhX@dIrQcu)tpfmw{k0VM>E~2r7?MJ@Q%RevfYsh0p
zzlg#|&ifk4Ypk$n&85@b5tH8r@To0YK00>@dR&x}hUvtLVa-V)T8y7{oaUW3jj#U&
z96hxe9G&Uq)rfgYBg|nRSm&MNV5VnCj$aX%u9OYrZHa2>CmK&3t44Yq?2y?2F2~FY
zzH+a8O(Wj6EutG6i&-^<-Ul^jNi_vc84`;?aLQR;DwmWZkz)^NEwPGZpV+1}=wMRT
zDxC5Um~M!}NIM?Y4Pbv!t90~MwV(4%k_ho}7=VFc-ySt1nk|R}Kvd%H(WKxWITv}~
z1s0UCww_GM3uy(Dr1B;TBaW0%+0B!{WHD%;_k6D%<CA;g`W{0#mR#T6F84N^eU6mZ
z%h*|6W)znFP|dfldC$GL^8oo)mY*``Iy*n#bHmGhB!Zc`0`-D3ejvm1XpH_5c7+hI
zBX(%E5G3e9iyd%nqNlL9=$ap}m+@{tc+;$8I%dyc4Ui|KE3sJqp5Bgc_L~FAsE^$X
zUIH>x4x3orm`u*4#s;e6auTKPAWMZrO6oM>M%V%$eNT!T3c2Q%Ym*TBoUGO#^89<8
zhEUBWQHB*Eu2)brLHT*$X-)I_LSsV9+Fx7K=y`X&Mzux-rn;=SC<M!u;|WORxKA`b
z>L?sC@?ET7!~sus2X57GYTXSf_tv}{ZFfl`b6VS}T7Zd&Pvc@{NMj!GoD<%6JGmgh
ztsHS*@gv~a6d$M}yi~(~is>amy%gy&=J7eiIanr`*%I<1kC*=>WiX}k8~@#JynGoj
za42ZV=7_vRmH=zJDeR&*;smd9%+#q8y^f_p@|QL!uN3;F9XA?rh~k5iH+DJQd)u#i
z!oqKx3sQ0uww8q?w*kdQ8@W`@H22z<^zO9%IX89l&jH~NP@V$B05QG6JopCq(%O(F
zK##&qCDWWsrpHomEj3>GtF@V5H#aB2l1fQju0b13CZ83TU%{(UJE#={ZJf|0^9Xf8
z4f)hl78pq>e@*b(3Qy8KdgpjV4zm>UfzdihrUHqWi3JalLZ?tjh-mC&*E@aV<-7us
z>%?2)Lt_Jy)a3DQSuC+Q2s9YxZ4687Yof}z+}mk}#ud#bRH`0LFGXNW$Ao#G_k_TG
zrS{r%;iysxi><9W<{tMx2%_N1kk>7YhFu{LT;Lxz_3*52uYu7a4N?`L4W0vYjXS96
zPxosF^|E2nb(WJTmN>Pl&U^7^?4%$p7PA8)%&&RS+w&)CCY+4A2r+>)voG?oqf`Tt
zGKXXn$gAQLF&iYPbsY_<I!X`qD5XP^?2{$v;L>)+fjX8mPIdrJD`pTey?%a~aqoq?
zos}UmoOZrJUPZF;3GGZ03m0rpoE+v+xBEWbmf?rCX#$;I=w$pB_tkId?QKh31VT8(
zr3-pE@LuG(#t>LXUh2>0U1K!nE{xn?Qmv^}aLIVx^H+Fo{2o|!CJ*RFqgcfZ2`a|%
zGAkl)B`1$6P7<hFLb?h*PS(B03!Z(?aW9BjPfTFgJPFB4Qg`1a7===Ix<GVuJ#oxJ
zEY*>xjO5MSi$X^j0OX31xV0x^!;SCbx1&aDz2luPbjhFzu&4SelzzeZV1&k8&zNFX
z4JQZo%u@d}!T0CTP}AopciESG5R;eK^2nQ!y79X53YQs0qel<a3za?%R2-fEMHJ24
z>F%`WXojL1N`!UlTgIu2lr`MFV6ooP6E{1qd9(Q_+)ykYM3O)|c#UP|@M{0pTH+aw
z#wZ6!xiUO+AJd`$3GourEX%~1Tsp7UyN|`mQsfbYOLaF#OiLmbFReCw%(@fdT&doe
z^0#oVlsCY_)M}O2!kfU6;JQKYYc;U97`};zIpK+x4%wl$m6lH|&Yb!`iZf%7cfP*V
zkx$texFy^5?N#pg$DOxS7!kR9xRT(mViNCE=YF$@%6XvRgMsdcmy=2;&@V+x!}mN7
zD-qNy>L0*-C~XFDJvYO1*4>oD!tn^ykuaq+5oXjgFL}=1>Cl5*Of6-+*wN-P*7%}|
zq##nY-ij}7^}ILjZ-iBFJ>uF3t8&dj%%q(OR7T{Po>RYO|B?tq#!8RsBS~fbjj;Jn
z(Yqm-ekGhwpe`YOJIoa-I@g?`%I}j^XDe)lQ_3$J5m^EQkp+@ecPlL4sR>9X7(s{{
zJO%4=g6h&Y?8S${l!mEb3#$i83+V_Cxf)&P{t8TTSRxEp8<^v99HgkzKJiYDVl@QW
zAHhy)gOhL{uUcz^x1Jg~jEGV#r>4ylSRg}B@GTrKBF|&0#>~zW1G;$Y*Y)`uAWwpI
zmapqs_3xy=>0>)SUfXm3=Sjjra;5r|gt<%Tuv)**lN711Q~0CME7dx<Z`4O_cgd2z
zl6;n5Q(Ftu!8{*Jom#@4r3f+QW*sgdyG}Tfwutg$XV*nG913<6m@o)P_Z;^0xqv%G
z$}*Hl83*yq;720$;d#$Es+`aRDjVlg+66Oc-GiQc9fVaDtV(i><KwYid#b`3A4GT3
z=3E_;;UwN9u*z!Oi@iW%m)nGi@NLjTv;^|bLT|&Xd_zMZ!kHXtTkN+9&9$wBowXrf
zMCboiejcvhT%cVr<1y-S5sHU_EKn+e-sQf0Ep>g`$OlMiE%Jf0nKCjoGnV+#=e$cr
zaBTZ?j$}xj;K6j<w~`Zqb5vh96vbWho4zndIHwS*lL$zs{*i-`5Aa0=C3bZVAm6Zy
z+$&#bxuMuA?k@<L3_&5L@ugbcWV#w$Urx3>isV3NGr~UdavLaPajmvO8D~j}6#O>O
zOuTw=fN}IxeNB$3t>w<(5Q!qU?-zF@DBXM{^F*Y6gs^6${u9Je;zUE@D2t6fn&c6o
zNtlnLg^5r1L>)6eq)C>bZ%7d}QNw>68S(F{28eDc2m?$Eag$|F77re%;ZnE*Thm6*
z1wRfL&0~dupyWfS38SON2P35=k90OxL#>?<HMczSCRF|Opve0_4Kk`Pj<^XMP@%?7
zQp?F!uG9_brGodxZw^c}7X2e)4_~ADujCXOFqaC{VLUvqT^&wEcWO_HEl-S^NEqKX
zMy|fZvxj?_bP$Y2q>O9S0EB2&SQb_>O7~GO1YJvWYq{*2d-SB4BL0pG!xtX)?18fL
z1xSP_f0c&!NR4)f2VVDz9|Vmv=&z!PfCd|yljnMFE6_wz^dao6ursdfE^dx=L|7tW
zMXR#UkJ$Dl#(zvV!~qbIOT<^5l-78Aci6X2@}$6eRucq<!y!>U+dnMk&hCOdn&S@|
z3_%R|0@k-^X4w1PzyK4c6Al*xh+RQSoV_!AUouvIGRbSm-<TpD@C<l4o`UD*Mht#}
zPXir9vJyc?+-Y1o4DX%Zv);uS001e+1AnPt878I50PdL{vHJ<ot%$V~DuACrH)_p8
zVHXV4Gb25iMIlV&qKKV9FY-I>am7HOomIk31aL<ZqQ^bvYL~3tY8eEql~Ye1=0tY7
z8nVt6{V9VEIgf~1C#RR{J4QsmSG&pbwLrYG4r2+3^c!Rg<0Ij_YtC?`zR~juHWkR#
z`=hS(;I86W0I4OOK$#5_FWAs~=YvcfT97DpX*t7{z8c2{S7{YH0D+}Y^8^)XcX&fj
z?fgNi(ykE1HHb_AINpeLo%6N!H4<BgyA1;e;omA%I{}|v6+Q*D+K?mCaj%MJS-{yO
zJ9x+4;YH%8LN~!3BY<Aw6~yHP3JJE~@Kd(Z$@oxrlu9|pwf$#Checl8LAYJ31OSaK
zi9_wZyDs9*t*oPvSTl&JIB2-X4Q3<WyuG*gj=f8Jn3(F1;g^qRb;YGyj75gbOMrS}
z)xlrFb^)Kq@xkkZ+aKeXG;cocTK;nn4_q@xz6?#h_Pfj1t($ld#Tt%|)P%nuvcW;W
zIpX%QdR@~IdmH=`9rWiP;fvbQ#<qqWoWONfN38!vySF5Fp6fjnWF_uQ2SQSCj9z{u
z{HFHWW2Ir>z!75sht@RK`-|~XvW9m=yH@qnpJPym!-L=RV@jhV;`%{84j5wvDHnGR
z6?nk{-4uQ{IF9@PSW>-u>W9-@j}OvKSPsOqE3S6YT#VtaQQNhb4FMk48t4A0gosm)
z@GY!HmD5lggw`6u!+kS*2)HLWXHqR5NhC$>Tojg~z>>sTNl+l`qaAm{wz(cj(13>_
zcsIOfwLpkrzKbWmKJ2|)IlN+75szUm5()3GINh~vIpY)InQeC<az*s_<L|5ydoYI9
zXL=tb!~%YV6fh(_ZaP?Tf@u$Qlm2en4A*&C0Fb89|5Q;}`|)fX*Pgg)#hH%YbENkm
zaCP~%ILV8ew*opj8h*~{dd9MG0hS*|&;a@3w3T>->W<;l7UM?eg!3kicDkq5Wr3^+
zWn@A@8rU=Pmx%A@@D^buHAd(h;I-hqI8hVhN4Q1`^0Ov87_S^Xg5YD-_w9ODf9Grh
zK_#*W?_3n|8i51!jSAE^M<a~w5b^7<UO#f+#ZN*=c1Zx<E4P`t)(*R3i(b||f?GmP
z-t1%H=YGYa;=yWQtpR!zzALVNpheW|*%7W^7_KZ=(oWY0L};+Rcp0$y!yZ9{gOD$M
zK78G{9xub0Gs~$(RsyY6k_jl=@zFiu?JWJw@M#DTVqR3oR))WSH#2nNFa+yG2X!P0
zs{fgTT%Wo?FvfZjkfh~m0+|{4`#1Iq^wh|8&D7R%G)NsGNbgwq#K%HzVBDK<f@F!m
zFuO#|TEzMbxGS*)#X3S{-egx}jz<0@VO4HJvBqhTh8xU?ha$qL#KL6LFN~VFSG(pl
zDr-5+Jtzn`Fwe<W_}%yQ_=O+6^K6t6U|0@!5$+G3Y40m`Ylugs!e{h;{yt&`9IX*{
z8$x7LGpZu%i+MRZkDrR&jEzuP*esVVK^bIM#j1ae5ASsr+XA4ctb-iiOu{UMTemwN
z{{1)F=?r=`+aM$;uq%`he&2N}aYve!RcjE-qd$jjeVp}Ak||ZWB3J666>?JnL<l3C
zzT0)z^_oJ7a`6+x1nY{EV2;Z+MWhk~!ALZMu#-W_i6)tpssou3XM=;vUpVOkSYw&^
zug^w|X5um@qO=K4fIz>S6n+cA96~V?$st#rTK--5_8J{+GJ+uLa%O-YD2m|Zvfg9e
z`jXA4X;F#@fJ#t<Cq;boJ3Ttmhr3O-krYW{5sH89z4akJ@E0&z5^kA9)98q|C9<aZ
z-p((_M5NxlBH}bN>=I68dS&1$C_ubMYQaFm-_elP;V1^Ej}nP+!$9NW4#p*Nn8a>A
z9XV^}3*L4E_+6^Rq5LQjl@Xnd%z?UPA_P^5T}>@I+xU2(Ap&R?*FX4;VxHru#H-so
zxd&W|!X{gf<SSNvNj0SBf(txPeyv6Af(F30wbDSD4SYdr*z?}V^=PBi5oD~QhF~Vf
zGH`Tn&%sAduBJqBc}JENooYNGTu!;mr@I;7t&KUssgkB*!@a?DEa(yri)oo(QaDy}
zB3SD`YmLjkXFMmFrsG1UX|Y!ovd!9*j9oZRwg27Saitc<3sJ%dmezJWu&<KU&4+b0
zYThNY4oc+@lmQs|#9f}F2ejz~{lW?N1FeIc0H;dU$qqAa_g16F;8M7WlqrEbz4n<$
zN<i{~wuTLuTI<iV%P@xvH$~YZcY`wIAAR|kC$Lwyd7`G0FiyU~U5*ag+L6&vhs94e
zLGN7Hsoo`<PJWeCAPPNkf=<DhLY|$!swZ%sX7xloA^5qlyP~}%Q;3em`tql!H~XR1
zNUSZ;2*kzUh`TDN-7P2BVadsBvBQdGph;X^2-l=Jplhp_&U1^M8>0aiD`HU@GF%D1
z7Jzd&QzNt7eY@&j>gyteHtGTBxXDqy+!U=8^^s!Pj<hSvGo^_B>D{zZ({B1yBHK|n
zvE3!A`s=+5zo7!B+#X|wd!Mzj@QI*|ITM?(NY>%wz4ku|cx6iEP5$Y)Khl!1;HqQ2
zyk{&tsa;TELhT%%Huf6Mg=4P~)hnHI8uIEnW`&Xo-r4)H>WKu5qMP-xwhQD2%7Vh}
zsN*Q-#ONk<9EGL{e0F=DsO>AtHfFVYu@j?4fqO&r_`UAQpX+*;ZCo7CWJq^BiTa3i
zbqGMJmXL-*H6JQwah)ZosJGldQ?-PNp6oz{-Gv;eG8dt6ygE4DRPTk}k1l8JPjDWD
z+y*r~h353B@zuy!as1#R6?-Ei{^*b=rcy`EX86lX8o6o3jfnM-*^Suiso8rn*@{8B
z4WT1vXycn4SCr@BKX|rrTp7eLKU@;$1<*kWDs`VH^LVI6X$ig<JZ_~8B|xMTg(pVq
zPdj+N{zbd*nyWrT68j>&4`opG8B2@~LszQk4<l_mg)1c#4>((F^Xu}xqq1oc<8QUp
z0uFoM{9*!7wE|E?f>#;Rx;i(_T<3`qJ6u-4sel=Fp1CV2X2}qEw3Ll1rZ^m~2+&e^
z?%d*@Bl=-%kQ?!(L&l=q{^C;23h0u)BPMxox*_HcE)1nMobFj^pDW`l5D&+dQnX^i
zE5^-{F%pbUTd0KZgLAzP)iTCdYRB+9>KN<7WF^m=uTwf0vYXIQJ%wkF9Q3?=*8oY;
zpiZpR-v}jYJW7iopmGs$z2YkWE!VEUBudBxxJ4=;YukeRL+|kPnC0-N0&WeK9vn6)
zW9E9)ezA{zLVE(4$!f)1`@c~qx3lVP+8diV!tx%m%M{GDSAAz~Alz!W=)Tn0!I}lT
zP_te&v$uIq>PRJh_M=zK!`r<Z*qe`PB;za&z?xX~*%EWWO5>!Ti)YyPx|zF?_Xzem
zK4Y=GiFb{heDm-E?*_ceg#l{dlwf-TeU^^+Rpym1p8R2nXPEW6IdBsn=6qBTluC>m
zT7z8o56&}39QAG>=zj=g4)j4XOh%2n+dQ?_ke|c0Q6o@Rkr<agU=I8F<hM&@y5JjT
z;dkB*q#CAIZ1w9<#b=_;ZmUlIt-ygbEH~4B(jCJBjank+$`c4-w4#^H(OXY`M%-OD
zzG^P|MR#B}lHf)#k5HZ?UN)<L^==>}V<^QNVakD8z?Wo2-!shH2beOe!9l@bMqt7g
z%{t`XZGO{eoV0TCu8uF7`yV^`+o{aR^@^FwmNC4%@=`IjjL0x|ylZU0eUuSs3{qMg
z*Trcm=Cygo2Jo-4kJbCj8X+};8)DVWY3AG`C%;t`yldVt-OehsAsryz)Hf?ko2ha#
z(j~5jGvL3`EO^VC3O^j;udKk4Ur!1i^}G-g)X{V8=@Z?l&|>bfvdXf6pysDSBI=IS
zR{9rF(vgmIC0-ZNhI{{N&1$EAo*!tahg(P<UrIc{km}BjR{lo)KtXZY^gumPpE}7e
zRWeWK{b}9&q3%Td=Mxh9ug?F?D*RSAVtAZhUK+B630bMAT~^^H-8Vc~-6-NYJActz
zR?(k-`#`)}w#&+M9sp3;nMWc;>(uvqtyjO(&wxC`<flj#FYvYCHjz86YgXwl66b0v
zo1CX8hY_zn-C^af)m>a6)A>Dcl&a4!*3)a8SD|i^ZdoE>Ec7wK+qYU5e4zW7eI?gd
zkX+xCG-AC~_)2U0E4nKmprq;4DiJvvZvNR?>k{Yt<1hd<FD5m+!MfUFef+b2h6JK2
zB9zJ~rlEI1B%F+&tU-HpuQ*h7GuayI_>WfCgSwd|D1lAa$J7(#skbPN>fGv<71jl>
z=^rr2n%XJOgf)2i!*5vcKH)se0I}E@`Sh~4z#=BA%U-wkJfeH46af}ZXy1uTPf^QO
zSRLNbeJGDprf7Od#<{g)lXbN-1;VLuu|h$y+>*n7wjSK4e?D@$9y!FL;x}7G+jQg5
zgSD7q^pK(dBz6DK*0-UlVx(d7iu9{6HYTV`cUxb5q@SX6I|*#^4S*U5D*4qqb-nJO
z=3_IBib?pg|5*2}(;Z^rtUFc=L7?b^@~qxCY<>T}?iz{y&k+ex3KD;;8uPm~{wLiz
zYKqi8aRvd*Bn4X!Tet4eUElFsXcH+LgX1dWU2A6OL|_z<#U^MJosv4k1o$>dWH%nj
z^_#4VI_e`erjiU|a50nAZQoeIW1(?!g<=_l#Oe-M*E%a#xMd3FB?_bh_6sYh|JAze
zkn`&Rh6k#3{LPnOf)Ldkr|K^aFD-3eWC;X%bB7iEhkgNyLVX!nw^du@-8j>rYr=$t
z4FH?J&HBTc4+d%p5s#@lM!0O~P4E-)!FE`aog+QClugu}CZ;kVW)BF`uc;$h&}hEg
zZxz0+-wPPGsI9UKX{y~3tJFCXn*4YkXffF$+16frthZL^XLA1LjU5kIr#Nqf8bpzE
z9uz3ix_wrmv$w*UwiJ;iTV@Pp@SI*&Fiq{;X1(K_95U1;$#_Z&)gZDA`pTN(utKQ6
z#2-^}uo`AnRwJ_kxSo{_oMAWp9$G+ZB5o-r(=&AJ;JW{Q&0747Gj4wa4;5*XKL&eD
z!pp6w7j)M!**XDpE5(}_2X`9T&i?9?=BH|9PvL?B9@}@FWjnhySOB)=JE@2UajM^E
z79m@jmpiAPW@Lc#*H|w*#EYFdlzI(;BHeEN#42z$bhwoB(IdvTl&a?Mw!U}HiDo~|
zpJBuhLezTeHiy$@9jn9U&}Ixt>hsU6#lPw?6o{|3Wg+n?l7RHH_4HS|6IgM;l_YQ<
ziU;dbO@!hP=&m7@DG9BR6aioKiPh~XXHr<o0A?r=FnlR_@ZcV+_b%NNB1cq4SiX91
zhjphzgD1QyRo%PVy5~v#!0=LzxL#8Bk4xf__V#jT|MRF0;IEsGSyOi-YICJV@3SuW
zUOzZSfDvFeIFa;KNo+=ny6X??MW=gMpbjxHv?rWyAV@b`T{`G9he^3f_(n4i$YnY*
z6GVsVz1Ad$hvaapLLd$+BdtyC-f8vyMSuFFI}#!Bv|ZLBXZuD?X=vF%N`fb-Dc@PI
zIeRqN*>OXU+(<{Sg3F}fWu=(eMr+>>`rUBu<_kt5)Kv0ztJi0`r=XsoN<AD5WC^O~
zeXGB-gW1G0BeGI{f}~N-$eYc)0hI^dDd2dxY5?`SbETE#aB#WFjo~oC%F5C$+T?b^
zo&KMCLTL4>YBS=yJFSh*WrfHFthijYSY%UFm*1>mE2AV8m0^d-7E2rlb<!<%k3r62
zbI!}jTou$3P1bP&DKulJ_1XqKEg}UqTfwv_EN=F4r}ZFl=%EL&F@W2%)w*`K?iz+W
z70#;9JU%(3tKnO$42S$Ec3NLA3@1c@t$gyto|HBmG{^5GYdZ%3(fIO>*22BcC^#FA
zh{n-CHMr>;YsrzQOqNm{1lV`DLX5#h=rRQKv5n6kF|GEInb1)IA>n?-wFw+U)g*IX
zWn?A}^FkDt>S8KmI`Vq2d(4m8MFwCDneZD2tW|w7-+pX*L_oxK^vFiBPY`17Z?qTo
ziwLmhnS_*48IQM@u+FzEupgYE+a=z#492Chp~nFa+h5<rOVY?{sbMP-%hQpi7C&i^
zxQ<^ZXqAqLHZ@iZT{oaA>30A+z@jVh=`NaYC(Mipz!(cqW^2?C%xaz9wm0>s4Ldi3
zK&nayr)}{<`=+a%r;iAn5uel94(WvO9>3rI=4Kv{2nc;DP*w7HQDBkn8z1^2=0}vL
zEXHx<emlq~nIoZ?0YuF#7~>5K?5@m&Z>9qehp(6L@N|Ti*^k<>&cw4sl5S*v$*Sgl
z`@k&`0kNjkRRI2~Ch*#;Z?q@MAmXs`;j^Py+2eLb9pAxv+lb>=V$OkA$znCXSZJ@l
zM)wHNe`#425(XU!%2;UM$tZYaI1h-Xs^;8b<A0FR!a=!vVTY|RTE4(eyq5Kk<zP%N
z2C@(6T=m0zJKaYk#>T+(&~}gGUr*1q->uT422ZF_N5BVFI%b8g_uA#R>W*>5&d7Yy
zky7rv-Ts|c#zKW>Mv3{{nf;9W?cZ;X7?0Uy6m{{$Qa&KpykwPUIrz&HFu&B3);=v*
zfhCp`7^_xC`CRj&m*Zq7!M>Q6V@QO9sP2E*3lh!c$b#8^9P|*YAnC`duTy-Zo%XSf
z!LsV|MgvzXMa;1G@(Z*|we1pL)tkn04l;G;n?Ss*D3=IkJeX*+uUV&^5$n9Ql3v~m
z)Tr-<3(e&yX3ZnuG-F)r`iFgAqS?e431I!zRAGIVa|>sa{^Os9HBPG0!!!xQ?`rkF
z*OD1<RAj79WCVtvB(>*=JuKa9Vte3OM5k0^;8R-@>_DZxh?f;qNX`{C=P`X<@0<Ty
z)FNb37-=cUF0d)093_nM$|b(-+3rQ0#X>}*5{D&%xu@DiM~^)FFCAzYV|>w_yZxnu
z6={892sTZSp^$eFXaDJmUV4y^GX>-ghD3lAR^es7fkSD<>{C;6n3BQtm#m0>=Sg?l
zwgh#-is*ZuXxoNi=JyrR7e37hP%+7&t}CzLZYU9@A4|aXz6?uuWml4sEFIi6@>Q?^
z5lV0Heb8Tb=l=}dv*`%VvwTw{PiP|t^G4r(uWlnztyYls371KM>?X|gJ$|n9{<@zl
z0(FNa8vz;mo$GvK<hvwb1c6c|Fq4Tt=sQhb44Oi{97|bqP&QIj-|4<r$1rz}D+y8+
zgv1fV568_|;!8fCxsr<!2s(E@?Xl|S$9$_~)I>nQ6$1pdiUBrW?7Vk<;tTKkH(fBb
z$JY3sV*}ZNeCqmWGlbwF&bZ0fw}bx3uo}>l2&qPSn6be3dr$pauHXuSs8N7p)uY$@
z9_q-;TWN`n3(*pdL|p_+>l&&dGJ)Hzy2f|qo~RRk-9mY7UICM8eMK{kGTgsuOl@gA
zkvcIjhiDBhPN5Zcl8C-|wYy{V);k$NXcGkBQLVqvcY|9`mynXuG6^b4<m}YW^Zn-0
z&5%7eji|dYhd9jKz9~`6`NS_Gj5L1{J6a_M8pKVWka(GK^L_K=JT!k*utINs(06V3
zwr%WU)<WN6whH@mI+CbF(Eu<RueKKXc73YPCR!qw2eJ9ds^eR}`}^wQwWWmk7D}KZ
zI!d>uY9z+BGkiS~`C5XSAlP=WDx~e1zDIcjZE{Z&_*)@?LV$s7gBSRmnfnQgaVE}+
zzWh($H!Kw7g4w+!FlDOb?qO_*Q(dp|jXhoW<On!_1+B1w)0%vj{2BGv-^0^eet*K7
z7*uOd%bPG1w7#jOmDtiyD?Cf!!}SSgF!3t>4c`z>Anh&dMY>FAz1lP;{as^fOC$F+
zIr2unI0&$h#H;(~MZfg$3Gbyb_bp#XIqoM?1EXl=b#2)ui}&{(%)Plo%-W)53*6iM
z=;&@H-vopeQ~@F=C4`ymi$8tOlxmI%Ab0at@Owasp78}Tp>Tp8CC~yRA|4JP;;?tB
z{o{P8FKUiT(6($7`dG4hWLvZ{Jb%M02}Ww+l_#-LQl6YHI1wjQP7Jw9bA2~)VxSae
zTopX5@I9od?csf%o#c_-7+i@N9x(^3r!*CO*SB?`Ud%Sl$<57e-vJK`y`%L2aqq8~
z@4H40Q0v#kfBJLJKEI4)GOew#tYY)?Cvl|Y7LG*N=+wiqBI0LJ`&RgFfh{w)Vbh4j
zBXcH6ZCm8qp1|i)lyC`WD+K359h&azx?eN3w%iUCvX$Gl?O-;c4z9C;!zgbh)beA8
zD6>R3`qRFCgIoDiEOqKyE(xw?5&F3^F>R=2X7u-G{)O)F9X4|zJQn_jT74=cu}x)d
zj;_C*2b!4>p#CkdZfQe)3EfF71ICvMxxrxdXq82?eJ<y+C_G#p)P@1{jucfq)3@fY
z?eQvNmM^KZ<_T?opW6I;=pi4GP=Yuy=>7bl?;l)_LQRJu5lylLpT??b5BVma=X6v|
zb&M}M0DSjCU%%+TOuuzq<W0~$Tgn$Cc;timzR8e_?5W;pGS%Xh>p|a>Txy)IuQ9Pn
z)B{}jxBb4Srf7DX!B9AI!ieJ~4(5h;^%dSmP7!z5<4b*;+U{9$>z*-zHj{_7E}rST
zT{t`mWcd9tR^SQ5zVYW=-^SCJ4V+bM;mj0O9KW*qa!~Y$)W3Gbw{*1Z97o^TITx2T
zDps}NCrLSEHR4RG((iRKGlH5yHj$tn#${NObG$BGz1fYT-Vva{EO|g3+F?Gt%i}_n
zkrjl0aK5#EzV9=WBq$f8T|izjCLIF4z}VoCmH#oHo5m*y#S?QR_zJputm?GdEXd;t
zHX|?%_<I?W_-MX9(|Rr2D<d6><<4&q&_I=yX%f;w`Y2n_$x18ceG<9d1ZFb6S26$@
z+99)c9PPw_@Rf>k375k4GYzL6(+i$$eRQY(T2>v9R(b)%JC=32b><|V!d)z7TEslX
zyPi5?zHv3J=ytdn1@!@rOZ#2%)}%*x3kn2xic>k1m&a^2uNt760d)iHm2jIx(bmiM
zncf(tLjDOQ_C%WI9SdTtm-l;QJ;?v9K?z_vFkU{t+T5S+oy!k~Hk3^DtD#vV)Pmi{
zN6)yWjnyV*6UZlGP6~1|m2Z!+&*>S8UR9)q=4Ys{4;jN3>0ggV*jJ--($)5ZM)H#8
z7Z^i{NT^l?L-W+yy~gsTx}CuLs}LJ<$LFi12aOB=<ur1|lp`pr+?-)*%|2tu6QOs2
zpiD$#LuKEfL49ylFe*b`z0dgYN!?AD9tso#9Gh9FE;wXd<GgHqV0uM46B<7*Tdg{1
zBt52oJRaqdRUMz7uIdjN^-kkxKj2I%kForFpYixp`iG;XuD2SUpR3;9W8CEodX!&q
z-bOLO+x8d>opl)IZ;ELO6csg;s)-px)pdJ}Nl)t+Obkq|r@YNXAoIW9ZR}g78(B}_
z0aZa>p{hS<EO17eEd@TSRCZ>rvJV+YowbB4z`SA6b5*b3jTJ51VGJ#=BnU?p6pm1r
z{cfD)ba1$?61{0kX`Q-dj}dgfM&wjb>d-OhTtV00WAu1V4<j2lPfe}L&K{-4?lyWk
z?-(sCU#6U;I_);jaHiZ!04(K+6rhV^P$`{oyXwBdlLmw%$ypV@%3xVu_|14ZG^Q*4
zWWK80(HUg;8&^1AnJ8^_EMUHRa*uKPvwDzYv9iEj{c0LOsyFX7qMa9@QF8oL#>71J
z;9lbwXR#5g5b4#h+<f)tp5{f#t@qafFqm67M2*>NyzEd*j?hHTh;;SPUSp2)uwEvW
zn_r+-?J*i#RvN;mBDx&5g0cDPg1yEPXRriLNj^^2&>R)E$LQ?5HqU>R(6i8x@w-v)
zyqMCh^*^Xlg<wSNHKsW)&S)qF?UZ*y!}IqU=RV~gkE&Hzwprkc)cR-5GcNRw=SCO_
z7pX7bEYYje*O+(D@{Wh~X0w%IJl#wH*c0a4hdk0aYWoxko3DJ@9Qg+gnEbZ;4Rq^i
zn;E4V{i?Y%kvDRdE6VH3>6j9%fg~EI35>Y<<UX_Sd0u>d3QTOY#e`UcpFSFCPg?2@
zwU+q}E&*^v4Tg0_r0t`Jw1m7yiGLUAB-KF3S?je|yr(-diCeD;62~p^?glqWk8u0z
z#cnAQngje69980d(hOwi-W}|YfAUZgaRznO<p!}7fnd!viNP@t3V86HJ|5}T2sp%Z
z6Cx$!JENOD;SxFsbtak@I5DxX%JABqWs`j=9WdhxB5|?WfFp#PF*U*9uDhiJNg%p^
z7zRJxk(3}0zSF^OcdjP|qu>bmZlFl_p&%OQP($0>Z!Kf|X=<!E=_L3c=TsAcEPRw3
z`<ngMP4_bk2^5faLKouV3}NB}>?04;!F^Xw**3<Xl$tDGyYLiy*9JNg7(Y@A6%>ed
zFu22SO}6XbrXvm;0j#$?SWz=g3hg#=MUwk2&(3q(ODE``h|O2JDREAvEM9=*bB$?l
zt)LeJK^^rjSWEJU^(W7_lMm<)W?m8~HnQtTQ4^%$So)cSVgGY8{mF`0LB>Qzn6u+=
zM%tGj(H-2dSOf%WJWY0IV>f%%Q8xfv2nc}eOO|m7rGp_)F+$72sr}ZANgnydSjx%k
zjh7ytJ@|*UIF@}tB*s_DI5fGWuoa-6yY2TM;DZvZ4U96QZ6pstPr~xp>psw3xonW$
z37L)Tm=pz-dCoe|p7)miNoE<T49?R@DF)W7DLw3_<#d5$S<N;<6?iV>nJaDk_$)fu
zV5AWc;`IiiLw*-y18LKIIsmSTW9rb~r&0Er$4_WaN;3F;WtiRjN&RtFw~ApW#~avm
zZ|`bn@^fYcfm5lsQ7_d9P(9frsV->XvSJX=ysih4f%qX<2L_7$-Ldwdh5Au2qS!TO
zjoAiyFeSx6)_c-tU(H83UOWiESR8YTRmLCIaRousS|d~>)5SO^(~UmeZtl_#BtVlS
zP#m=GJ?Oj!vnh{oNcHO6{HJwWJNBy0DU4&IT2CPzB~T!iDg%XXQYU-k`TFNW>KaP|
z6){z^J(QDn)|wM~R+jD_g@{L@f_PGSHpKu`c~*D(s$|{CNvg!ODn+8x3^a)4o$ZT;
z>mGu@8;ud=0PXUWJ`vA$u)lMj$`%n5?xA@>VTAnzN1AaL;%?%M$*W*GTRPd7jnYS*
zSG8dg2}~EF?eV*n4vlfzrM5O^S&$IZ*!4Jd=oI^sCv?v!yjvI)(o&@P(&N^CIpwHM
zu&-i_r>rubw66A4Au4S0Wkj$@lCp3hj&ID2P&0`>(<InPmhEVS{cRQPI0gbTH%x8@
zdReywd(WdZi|!aGDo0=yvW2~%n-4nI9&+DFk3elRlkM;25z)3AYPlLHC}JS)PENG5
z=AQ6#4otlIEYWs7;xsoDNz5;kN>H!I+Y$HBno8PE3AW@KIfQT$Hffq+KP^O#$jt@Y
zXcTCks0R!)JT1w-Zi(*ABnF~Ls^H30pwqJl+P^zj$1tn_kR->Cbxl<7*!D-xz{YUp
zX%f%z7m0ux3s2K)0M?XzFf$P3@Zby)+kt`5-#^}N_pUP*&Mox{$O@4?*>%3{|4g?_
z$s6H<EE(;04X{D2kXLCgSfM|bM~T7){YDIhyHf3=EBHmSY8ed0X(2b*9)~$jUE#8K
z3L^y>2G0UZ#)cqt3s;-g+rD-aUHB1%NS#lhU8Kn^F|m)mey{G#h51kugLp^jVl3ap
z+Alj@Ic1=WaVAO(E(U_$nUL@Svi-bv_IEtZjR&Y&h}mXIWn97nQd4D_(j)C3x@&r$
zNKQ$>;7a9Ca+9LVaxMJJx%bdca5jh`N0z?Rsno0HnOJ?p)=bmufh}0`mn6;+x>%sS
zy=E()mJDCCL+0yj5lIuE%?b00RnH!`TpSuW{Y3Fo373bos*YH4f79B059_I6!L0|#
zpHrWlst@ET_DlWr&qm-3fd-RPp+THJ2dvW=9FK#=7-C`a2#2)iQR|~{#!blr*as_u
zYN|PNRR_CgZ#v{2*Vmg6AG@|9$u4<_NuWRyFCk>k{E4LNZ@=_3&22AY1O;krB-oF>
zL5Ijiff5YYEz{PNDZ9c1AF%8Wa%nmM2|{LUC~DVN{q1*t*X?<7I54EZ-xx*iId=JO
z{W;BgM)^4%WQI!Dtp4_8U($swK#M{J?17vS%^u=ZcaQzRRJuXTX(-a`&zk66V(<oL
zlbrUpCql0XFvT$3sj|rcIB=G4JJn7_D3WU!`7ua+C7>vq$bf^W!M2nE$F;Yw5Ee>A
zza+=Q^%{-BMl{DnEwAi2&HkX4uY*5?yj9g0B%w7$-z6D6>>KveBO%F>UE$nNndK6y
z1$oFiQ9Ucxu>bf<|B89b*YTw}lL*u|Om)ryYj9Q{y*xriB@{%efPC3*)_L6_YlZA;
zo9$-S*a=;o>??$>_06h9N6Nv=awd1R*T2daQ+ZW6i1M0uC9C}&d%f(p{GPj43L~;H
z<im&CjlyCOYY`bjLaN-aoGYJYKk>{7mwh5rk5&C5?Oz@{p&cQGF~P}azu4R^!gCz<
zBu$(T^|tr$CWsTa8pSgb^gT6ffPKd8`r^fXCtHqVPNs1FF>7iU=7w+#wuC;ka#K^E
zysHiJQ|pB+97ygqME^CX+Y<)su57|i^iiY(+2_Zz?I$m$gZgDmn<54>2P(4qY(N2>
zW^$|KO~ggZlEW!Q^kK`vuf(Zb?VS1+UKnQpk1?mW{nelR2=3-Dmb&3Y#>i`X#oJG9
z(d}~9rOppMkZGJ+d%pdEFq3#fh>Ik@iR*?~jMbL?GzUg=ib_W=7ZDO_-)B9O!nhN#
z9|_EhSdCNVHp@=3e_qXt2#Y~xYa(g_f!FDU*}CKG$A!;JVk#PdB+hdjQaPMy>X)AO
zS!eM|VWkXC7LN{Iw4k&7vUCV7^C_-!nGW0c*!lLS+ui-46RcHJC?1Qmf?r*~z?yP<
zRDbcr*ZWa4sm2hmo?L33vL;G?OCS^u7Yvp7&Mte{I{Tie{=AF$MqKDRc!z|-1hs34
zRs6bsi3B8K)F(*b@H1BZI^MyH;U4_Bj9^@`4etAwRkeU0OQbeBsGmeB@S77<$<<cv
z7qsJ`#15fRS9d;X9b8FMyc~M65OKkkOBQ1)F}4@ZwkFTgeFD>n;aEhO6gBZCYu|i6
zn~MLM@cN)6$i}J<AG5C7pa;W|5!)b=$2pH$=gKeH1}TGrbCkN=%Kw73><wO<#MG-x
zC18zsS|E#-Sr5I>+<|3j4xwp@ot%P>Pw7Y2?Z}(f%8&S!KpfSAm;x#VJ>uTJ`Dv^3
z=e$<?iKyycO|V=rhRk1T`C;QHA9lWV`wT`SsB;Y%DaF88u+Vz+S00KbzX36`v|21T
z$wYXn{2A8jFZF!#10<bdH7pmmqy*c(y3}efyM!Vq;6;o;40G|gAEV#2KKWLUZel}|
zjEv06M78{7E0$J9Hlz+vvrv^8AQ6+)f_tqr#>Dco#5(>|qpZ9;%PM_RKOs4gF@S}~
zh$9chB93!@?VZ+Z)p{a25@{MayhK(es!5Mn%a{xkBvH>_Zw#jR6_El7>Wu|f<u?7g
z9Jp%p8znXdI}<OB<tF>>ZY#Sf^hpeVINC60s>J)OPp;Qfg?9D$B<)2_e${$&D_<hN
zUw|<I=t@&>&$4C(cmXKTm6du|2~t)4U$p*Mty{rN5>zx|nZ(RE|5@wm51k>k4uebR
zz#Qx8tN9=XPwbRa05#RYy0|v*O1x#=u}TjH5-Y_6gyHy$<<_Q+j6}?|PNW_;4zME6
zSu0=FpUrOosR(d`)HtN-RWDgVXpAvV6x?9S+$W`_s#(uVz_Fa8!ZLV0Dsrs4>H+JI
zM`)9vd%f_I!J0MK+I}mK$BN+QZ^FLB!6KeoZEdiO|1dIvrKpuzk}6p@1%DS?{M{qg
zT<7HGHy}}Pa${BOGgkk9>rvzBtQ10F)JbaZv(}5RIKyMNB?C<sD_%7{XT>;+)qD^^
z5KmNlAFy&}>oJa!pje0DuqJ0Mu<{rtYmzILQcf->Ptx%2e9@|6D12!g;)y<`u(#kN
zRt~3>BSo=h@fRY@ox9YUy%tA89D(*YZp4j1eZP3M^by}^LpuS6BGqcI6L4=T`&r+Z
zi`)h5QC>p>>4W7N(PYRj*Y_lOR$5Z1X@pP!fx`8kmgU?3usI?l3G%^%G$lZ`OeOU-
zA#;F+ph$4NIMIWbSko_wltD~@HyeYiLylge9Mu(beU*I}h{WRHDuy>PJT~GAA8|3-
zF-!p(X+Aj$0#`9&g+x>kAFOV>#a9)teK8|zYh{+i=HokTAH8<3b~d(kqcV=S=SBbP
z5%<NivVM{30XM$I_sKA?NCY{JLC3b?C?$Y%Yom|psOz}$MbMOMME4|!tUc^a_X)u>
z5}X_gp2;1B?g4hcRDjAHo2tr!_LhN>5=JA&ql(J%n5sYp1}F)o5eLGhiB`|)mh_X^
zRt5!Xb8Z5W!1xo}pKh&v#R`K(<dkm%e*lSsjP?ZEm!r2BufSpL(7`<wtGX}rjln$y
zxr`)<TJj>#U*hYN%c646U_%pXq6Ai)vbOjlhD7b=uw+n%0d)kav06-w-(7CKUFngI
zu@v6GU<XAUxZH}k+LN1&9a7qeIjLy?0&&#fB%lfHndOnWnPl@3MJEwrH~~`CyXE%Q
z>5;kV&NZRS(-aJ4GWBKlmz9xklczgui^QJFy+WdaX#YRW^8JwHkuI=l2#wK^G4bfr
zsp^(lz6Vn1N>XFD@JQXyu*P^T+n+MW_w{l2U@@B_(_wrQ%&}PY(lTE~u2-6KYRa$$
z$EHex@{p%|tNVGsXPGJ8MVverf<)t9e5ZA!ukiviF4Qpd>a&3H-FHSNi<s*#BVLfe
z7&_zbFtglIBZ!g}G{4e@?L|6bLn3f{9JCfzL{`cgYhQ}&GW3*HPPQ;(lDft)(+u<4
z&)o0Jg^x-t4ws^uX&hP79z~qme9Zdu5l`+=y30uLFT?*^n8#W9Jlih6Hd2bxX5x)O
zrF1Tovi+R2SQNHc_4Y`sFfmGgks-4R(k$-8@<CR<S2vHW<DxE(sqE_)CzR8>H_h_<
zbZ>ewH>7@u!@Y2n^^&EV<)+zQxm`zNC8yA}e57?{s_x1MNFVOzeEq^4Yf!9i9^of*
zm^!f-fha;T#JYpkVo=VD0L0<~7GMgsHq-jjd16!@%Ojtb+x+Pf))(h$_h%NCmuf%T
z6UY3!Kkic(g*=he0T9=vgvg_*M?W6xUJl`q42Rnd_N3itLnizBm0L4dW~#SW{YaW>
z$|J_kpNttCAfjD00LKlBjE8?T9%aAM!R{a^iut9fJA?MqO;KI=T^2TdPN4|UDeA*d
zt-w?6Wk?md<$;o>MtmN{O_V^15%2Dw)9vkFxtF0+<)Sc^b27Nj6Lr@Ox7r(4xKGTD
zlX%(I960Wwnu><TA_Drv2F2%CA50~8+YP<!O30Xm5yGG)X_Fw%FRHCeE8LZcQ3!jL
zA_{<!fiYjw4L+^17Q7r)2@6+>`a0x7kI0Zrh1(jeq9-DSX7P853`pEMj5GhJHS`iq
zQ*!J9K%s&dJDgr@?e7DH>rewp^Ckg2fzvnKT9e01u+>tT8B%g&8U`UkRWiFBt8Ts0
zT5y0ja^U<$!leimVw0YTv@UruGB;0W$a854LmWCr<b!N`{-ntM9Cm~nz+&sFAUB-d
z9Hw?lt<!EM0GJ=uQ#Tx}2gC&;0n(DxhcoQ=B<fna4i;C4!Hv+mRJG+go9tw1&u~&%
zko36NcFwjtO3D+=hHOa@|KLFH+-NVAMy}C7S)C3lq`)TvGiuULlDR~P3ESTUo$+!w
z$aORAZr|v3L|eIh>a}EhtOyBTq6YOCQq;`r?ZuLGAUc7d*yuj}4$gk+4Ese9BH^~>
zHRPO#NRQ(4@(gRzx+sAR9*Xe+IMy$Wf6g(MAq9-9t0^YqpZ$u7<)3e7+MT+3Dj`x4
z7SI!^4wKg)j%H$7ShJi8tMjg?Wnv<5f{5dJ4wdVb;r8R(JSSXJf^8YPrbeVouqt*s
zYU0YleEB!)#dRT86JP-Xpupk(5IR4l!ph9l$60#>k<1(L+jH%g1Y#=vG2qV<t&xg=
zt9}hyuMO3|1fho5e*Fg6QO0O%#01Sg*>TN5c|fp|o*idhUaTJ&D{s_amDj>Bu(MK&
zH&!hvweGx#pNMlQ^sIz20+5+&y*br+7F`ZhiBh;?0_qRZ>}A%nk-CezA5^=klXn&Y
zkXJ{Fu*kg}9BBT<5-aUuekO!#z}U(I*t?{_jmnL&KD<?vbcRrUKvO6Mj_9h3wl**1
zM8JEHc%TQusJCOu6u6{MqO2=3cr4UML35#O1Q|Ydbh>rh%r<>N0eU7cfo>@>6j@^>
zHtH`r0q%?uoV{3eYNU1iCVgqXUpXx}^&mGUo(Qb@Gku>Ydnz!I<_8)pa2P{%e$jL2
ziy0Js;53)?We28UX4-`lkLHPkqQTjzAUg#1K^B?h6KKtdSc>%MXZz|d!t&~;N(3I^
z-pF8_<3Z`s-J^ILyr;Z^*tFb6Qe{!y=(@)j{p=i<$P1$g#Fj`4)qa#UYoTYE#4y*9
zjyxR(7DK6Qb&kt+-Qal?DjtJKDB45<NEvEfxxML<sM#<t+`a&8=8TQeV2-Dq?|bQC
zq%&5sL0c^n9K!=%j}Bty<Mr4;F~VZOiZdA7dSy?#R(FUB)uhen<XFk=x<_ftI|hH^
z#igDsWxJ$ZonkK(+Xw+#+82w22fnNHQ0h+G@Y{R^D+?V%C{uhLk6?B3Per?&rtM4E
z*D|}<3-5JzCrE@6WmozeNw-%YKVepPvc*GFI8D@A5g|!y5+?!K5u-5u(3KgOT1;!Q
z7<W$HV?Ehfw`SE~B!Sx5*N|sNexbA64mr=kXvjFPcU~B$e*VQewX<hA+$0@7E1~8f
zQnBZcHQM#AekZr5s<#^L-(39$a|>qUJ;Kw8)W9|Tn(w#&dZZPXd3}93DmB5_Q0MNK
zeV-nn11pUrfY2_gC+SCz`pQo8R&ujZgrZa+S-HjFF`2!ro3G}+63Z_30}dA~5m+V^
zGzQhbxApLJ-HUUG@Vs*H7U|)AF;SK|Q}+z<Q`;CS6bPm|G#O+F`3*xm!)ra~{04zb
zdV!VV8h2jZ!)^W0)aJwTld%E_CEeU@9_y-Wo%bWu*AssuiXfj(RQtkFnBAEeGX>mA
zCovI*D((`9b75ce&|MLk63v5<2l!GcT6$KX(va(T8&XUv(XDFWYV)2|q?_np0q<71
zt3lFKG8(RuOS^&71iXnV|H?e)JN+wpm@nu{^!Q4%#}l-QrMa?lyM&_)F!X=FH9x+X
z<~Y%Nk%~pgl^Vh~o@<`fFEW#}tffva9e6M}!|^J-xAoYM3>9i;^-w0L=9P%XL^O4G
ztN$s@!>b1YinYPRP+QLMC8)69N9IEx(Vs-55D`$EtORZ}*Ux6-s}VZ0hTo?PBq>*z
z<kx^JJkGSM_2|+o(PHa%$qNmbDa8}uvcN*K+qGTH?jPv2W4EdMx0%m@TCZ;Y%)Dc@
z{u~eFV8p583J_;f9Qh>oylQU$kA4WCD-IKjgysCEcTC@_k(mfYgm%fV<y%s>3_2y5
z5BKiF=I#wVmO|Vos6|2KPIcLM^HbS7piCQJ*nWsgZykJ7crR2(LBtjP^)&QivU9Am
zz)Q`IG$;4eSw;AD2^6cV+$a2(Ti~=s=I)zy&sZ>sFvv?gC&>Glx&9w|gkruYkfp9k
z0{K#LN2rUIn$h1y=+U#11?a?BCpSAw2FWoVI4(J!(A%kxo9%Y!pX!yY#6>6Um_Siz
zV%!tvm)|g<IDmvDHU}!D{x=uWkZ3cPr|3urK#W>{FdV8jFp=C|<_F#N3?&^<j;|DW
zQ<-t*;?s0932Q=h@#JO1s*<7RGe7AqheEko3BBS5<M(G?W6mtov*uVA@0-H%GHqmy
z>|4#5S4N7~#2)hq`c*7tijW=dFul9@0#F;0J+-eMglL>Id_7iO-_^QZ=#l(kK|_*w
zc>oEZ7+<)xmSirxVtKT(w*m~M_U$x#he7i3+}6N_NkKC{9;co=V75D7ABA+#8uzjl
z68E2?ZgN?hf77$bZK%J>kE{>XiV*%zfjM9b51>?|_e%T^Y#$D=G2E)To8==T)sFyz
zkw|Bmq0ljZYA=#6w8{L>ZF+%)uY_uv1&s8{;>{2iKU1?hn3ui8FGTqag4T#@oE?%e
zF|&Ae;4QCrhpUB;kaYwMEs@OR`NXTVP3CDovK}IsmDEYD8pz>*8y+)%_wh=$i)JZ^
zNl63t^rp|uw@34Ha5JjQ#WEt)j5&7U)#jFXO@e|8SxjY8Q1|3qj^LkgQQ~>nn2N<_
z-7Y;9j!-^zZDF=7HMt2KqX*76@4SOf?tuXDg|ZBCoY4G$R2GYD`wz@)m;(DP;*Y=n
zDz;nn&i*%;pM0t5z&S~SDYXEJI_GT{Yy+!&tO}cI#=PiI3yGLQDspH1cD?!G_qvt!
zM8ec0#J4)!Zl>;Ko<P|Jq_QAqFjkNq)zDSus+CTMT$A*0L`bh^ZMLp8uUxCUa%;+e
zpfQd!d)?P&>c@IvhWaUy00ki~X+f~{L;->TV2d0oxR>1XnLSNolcpkxU8+9<5C(?<
zz!7z*$$X@gZ$R2rDD6d}H$uRo#^iUgJ~~U2B;pjn@=zpKyc*HPx*yiesyR%%5zd<;
zrRQ$F%DkE>vMp^793&Y!aLj!OxHb@?h-BPXYS<2Q&kjB=ct~~FTS5OqA54>Ju6f!V
zengXCdg(FoLnCR4aGt%~yCbr<a0ijKF$Vy8+Ojc%1V(wx1ap;~03y@NtGCPL2Of%A
z+TZ-<AGD(9q60!Cv62L)%1h1Qb^6DJU@o#?yo0$<Of<9psehfhneZGwPY^9EE%zF8
z?6uCjflt^4uSpYe`t^?H{Kshy-K<=i<@(ahtby?KehMa6zxC!%&RxL*5$x+PrB)p2
zOjHq6KQ1zFTFe_*3h}LLQe~+SM&mSkVfM9V^cgG_dntILC2|<)AmwDAxyPeNq?xRK
zlGT)rXC5=Uo0Gr#3lrpUH17$R@($);en5<@qNuCBQ_T-H>ahre$RyT?)Nrh)XxOo;
zvB{j`(tDOCzzZO)63r`|ZNopz7<mfx7-)=RFE`0-m$fBTziJ3zgve0bXfSUA0{E6#
zv=#)-)o^L(FSC4m9f@2*eMwmEXZEz_{Fe^mH?&3S8vsyX`6zRIYw@Sve)}{BLg=j`
z&@fhm{&iYoPFcs;P}bY*8t1=d*FauubC9{u7~_q7%`b0_XyK$RtS(h~M!1#p76TCe
zJ&hACHzBJlmo@OjB0Gv^Gy4wni--8t-w0fwqlW}8L`lx7vo-P>*&NRIMZL^5Y>u!>
zkuRr7l}dIMO-sG9$DA8Ym)tloSA8ba(g>^TX}!>nGa0A!Zu?7*Y0e)jdBU4AOiv!O
zPvdCR>ri9tsaOemwzGP5p&cN=N`uS>xyxBb&cvY4y?-2F8L^5&YdE`|>1lXg4eX@`
zeCqx89)1z}9vApj4kNn<Dji4uwt?mn5e7v0@RtOp!tUdf#c{KDry1<y+)i?X2-B5y
z1sz^}5NQ>2Jb7lU!wuwS#GZTFPP3_pek2oziC;7Ok=48OcJQgCJ*{7s>BY*B+5t_x
z50?r%u%(-IS+XW^p;jtRYFQ*5-3huubVv{h^v`^A61OGuNUxhJc5O%rF@c_kGR*bJ
zXh>t3gfiFGG;!7N?sy98z#ac-ezsljZti9&p1{V5Lu*ktbKWO33)pTgq5|wpi2aqV
z=I3kp2u3+Xawoexi-nc+Zn<yNI@7mRzikZZyHdM|v{%}XbTMZy((Q8H!q)L?$^qws
z<b;^E+33i1W4Gf%j;U%MNec9^tcTfCNC=NWb2Ha%%K)|Q5~?bdjS);ab$dt4--|H{
zq$-0za_8tIrmD(M&GmA0k}y!nj~Ops=|kp|3we7Y>bVv%;LUhvetgWl86xBzoP|+T
zZ-<Gc%GGe?cJs3Lbq5@%6sd%zK}<$*<|>>0w!RzKJ%GrNc}RnezRRqw;rDQA7EEq#
zSU=2ZhizVl2ndyvfau)ZNSdXB2rkHY$?CnqX3t?f=m;pnx`-r!Qjk!AZ(8G>v0Kw@
zNWO-r3-7+Zzxg@x0Cb-&=p5w|&MF3!i)+ko#k>qeH$U8r$`Gtm#6j}|zn%)z7!Wmy
zQ(q^G#S@!9H+zcmBjba{s-*A-4k}4%*py_x^|s!SHXr9w3Vob4<K7~=MT_svuY^&*
zw#IyCy?$jTk)n9O8FHLj($U;^gMORX8$^Ob$l`Le&6;_dV-;{`I;WPL5`bzG;EvQX
z?QX?Cz+=RZ_=%qurXrVG%@*@^w|;C4)l(A)^@GAYTb-R(4K0`BEA?OE)W%4w_k8`!
zmR43h)XE&vgT?#MW`qL&c-t(#gMpvOb%=dxXKm=L7jPtH<#05xbm;y$pP6R~orP{n
zFid4_gWThSV<i{$mXFLatN4Xz=^{-7>w?gJ+Z*0j<lYyCh`<3V9{$jF)~jdhPp4M_
z!66DADN($kgVj|;auI>it4lOr%McWFMuAkFpu&DN-;{Gr>LHn!vam>8oEz_Yvtct&
z#tDLX02hIrcsyJx@pSV-xKFdDicH*~A)zw>tCscE*lmMd)~fF{fobL}MQV95A_<Wr
z8Rq;;HFFzDGs-OCmmIKDds%z#(fd1+3`N;q*^>>?=9|w(RN~aucMV8m)TEOul{7te
ztlnC&C`x*9&^0%9sIvaCST_#E(no{|zh#AP30hfm0oWj*!!H3HI!j;TKjN>o&z<0w
z4!J<lO`$k+tQ7T2lU)Rgm~_<C2Pr#GJ2-ag{RVqpgL^p_Gnzd*-ZY7r#0!kL@Y!nn
zfnGidMIA<598vp5o({2g!haJ|2!V`KQ}<b$pLRPgfoiftaA1RAV+@x-Y?%hhKS=!(
z%B_U+oL^xvYHDJgaAJezTMm!c?Gg=vrfQ(iRPj`@RQkK4)_N$$EeCrr*+s(g1@!#;
zTyx_j&2m~>6aS_)j!j*kWBxulayf}cjyY622^|o#IASPR^$81nYr7M{=42oU>yFg{
z%(Go~|E2iE$Y-dTw%wSxxr%r&xV;1?efzQX;{~4g`6~nMqFmw?1@alUUz|E~t#x$|
zkJN%1OvP%DV>K!eA}$&1JFJm$C%IivE<$dX5gG7hVgr$-fJ@&|Pfi*ImDGEE>^^@+
z7R$Hx5nxJH?nL!<llAZjkF=49G0VF163;TE(2SbOU{hc^*zk!l@yz{`HFnB{x`$W=
z^cCF<Y};x(X{cv8_ac#c#L|_a5Lb&9kPLzq*HZb{_LH~t6YvB~q{wqfDH!Yk0Fo5d
ze;>7v_cQ+{l@=elHO9AMS(F5Gjgb5viLWJ2I8JTrZ;z8m<Wy*tW^vobOB{Qg<auD0
zl%8QkITD5fhc=+Ze|YUn=je8P269wsCN8Nw(yqIcW^Q!23ZT{Ean>)orH|cDLU@I^
zOYn3_<SM>?`3B*0y{^~ql29zX6SZ~qbn+Z#Sr8(-+~q#e?2Gwo+f=*s;;2U%dsd*@
z80IH41yw#-g_Yaa8d2g0CgH!h0!t&OD4rnFc=gf^zTE@$wv$>W5g@6tNSkWi=hh<w
z`8rSFwy2UJQ;Exfs)j|`RGbkr$2f_EsGf2VeuYvExER{V68k`$?#wwR)pSZE>VrLH
zmEFs1>cNPCVw7JJ>ZOOv75=GSvCkU~w2qXATUT#?{(F>IL<a|JsdP+99Qe=EPx$T}
zi0?Uxs$u0+sjt=s00aneqPBb1w|tW}qLOM2BpYT|ZYs$0oyETHLwHK+fYsE(j0uF{
zE-LF1J#-l^>v)w-7Nf{CjLAONzRzo%(3tRdjd7vIN^a0XbSacJnL^`#%||9-03{Am
zCr=n-&_rOhgsLT}xHBzcP%GI7@}lrgh*F1{4+-<a4i*T!@)$M+Z8U|qFq#$ZtZgIN
zUL3Aul;9Kt&xF_<fp5EUu$^BLC0)D><rGydLEV{apIaIwq(2h%uAcA`v>D8d$QT0-
z+U0#sxj@7(Tepirp~+*Y@R%JUBR7v5%c4KtV6IN=!XIJ0Hbd7zLhT0+KmsWS4YVsS
zi7F-{t6(#^QFT-|<MBSvSjO2NX+^aR))eD*K^Ot?iX7Uft@VGn^#eG(>PxW)mu&`J
zAWe*+BOkR6@7J9e$eRMCJc9kE<OQqf_(`p?>YNv>H=NeYV4xP8j{G=Dt$o3|xV`@L
zSd#Qa6>b7CK)#)%-hIki{fGMx1~{bVD%>f6)YvQR?e9ehUn@9>e*{}E@pU+1)6|@g
ztiy%S9Wj-7rlna*vZ=E5)|Mo9B}WiTr?$Q0O~fCx#SAXi&6sh)e)1#U@P1TKHg@G!
zGkH<ynL0oQ$=5OfDH9u!`~orThfOBYu==g|X+XBq9nj{?U(FwvxCioKFk`vnNy8O4
z@8aF|zt%-b^H}kH5{M&}FfKb}M{m-t!wySgG1zsu0l%?3uGWnLFaj4Llu-aRcWt!a
z*{9nJv6s~~)DoK|C;pH<=_B2Yj7y~+(T@K7#a{8X^V7rH=q->ss>cTV!GG&kG9rRM
z<Co?ve*dL?%`dufaIlCm@G(K4=(N+`_%S4?(}0TzLPn&PKpZlp?)OnzPp&e3iIvuH
z?g`&uw{qwE^3Tvce{;$4EQ>SW*ZKeW1tb6e{Q@uY|M?Dy-gAB-Ypqn5U+vtp-E9I|
zWPK9VM|WCp^)+%KtO9(KfHV@`k)9K$-ni5rG&NEJaKRdsaCc%ABs4ls{cz0sz@x)u
zPYNv8X>6fvy8^Pfs9HnBIl;L}>iN^{3p#mn2jjf13*ZXLk;=b8m6@BM#!a?sZi~zv
zMZ^ViW7!l?<4aWjP`0`2Nc*R}$lQ@Y)N*REzUSw%AEWc__BTZ44o|~#Rxg1EdHHa>
zHM8vK7qtk|VhqG*OAfQ&Y(g7_n<Ai+Jt~R_d;MupD<U)__YHRJca%g#d|Y?ESy2?3
zTL`i<ergGi%*tXn{_y&0T#+X@#}RMiLl8`I)P{i#ig?Rm!$e06#R_X-n1)p&N0Y-@
zk12p2$aMUN)__QTItQ0l)=VL)R@)Q-gByI5m;iC;)K%1D-j_>AquQmW5Tc;sR#_9y
zcJE@R((C<KQh4!M_rnV;`FEbbv4p)dz+EB*TWt;ZbnZ?EzD1Fk)!Mag`&~=xP*}@E
zAIBBPrL=v6(bzt+2V0smwSfR7C|f<+*_!Y3NLwNPZIPo&F*i`j!L}k@9#^795Rr6a
zAoyaH{}k)(3%tc}<FUf5r04?sw)<i0=*tL066V!ZQx+%{KSh%4#&x$?rH|>Ju>=d1
zHkNJ1ZG_{I#LwHTNlSDONsMUZ6-TtV1>VSA)@=`kI)Y7Hu*8&O2vn2qw9Z}(U=|^R
z0if?8&`=CDP<$}=8!cb2b-v}Ww~2mnA0vLKy;JQ8LxIZ@2;oYCJdmOU^$L1m&}SLG
zZR>r~DUmklzm*z)3mauTW=>!FBHv8pkWm!DpmGxnwXu`0>kf~!O~hJ(^9n;Xbh4_e
zul`i;Ob9ERSW3z-@>{M%)^p!4_DU~35+YqEF-t^<YR&W9Q+zib<V{)&qs)ZVA(979
zKgBofJI}`uH%4aU3Q)6Zsg`qD)Qa!B-w&Bc2`N0C7>HnL0GCWL{`FwT`(eDWac&4d
zUU?J;G0-bkaP<qFI-$s<bA3y7sV}o4(x$r$`3wPcQw5-Z<!tx!yIudFh2PKy;k<oC
z@AcnWn}?=DNTNjesjNx3X1tnpsWBqFONV#P*i44K6iO!{L88SlRK=+c@0-_-?OGDu
zVRK#<;K}HMvc-(B<RNRy3ukTY+-Y;}NPG~$uQMy$Mcg%D8O5oKtIg;xXV;c@+&nx_
z71T7;ml@d5C4?X2fttC_jLPfmIoe@!`b0?*4RSOEbU9v;-F*J7XLdd7tj*~;Y8dh7
zAcJAsmw*8j&}}P?<Ck<!z5UG11(`Z54y(Vg4a~_rd*5_pUsjiY{dUIY+(IM-9YiY?
zWu#2-lR<0mwliP3wbSPGe5eADSA%R90OD{@Qy`J3LfBEw2S&Hzvyaa`^GnVf<<GIj
zh{;mTeay_?=lc)|T|Cp`(*ct`#-jA_=Db|EjyQW7ia8j9^8lnwz(^a=>E>mf?&lww
zW#wSJ3(ULtpMaYE(mQ!*r~BE+v2d7TDcF;S9GIpq33xiKIcvCP-jb|OV2yfquWxQm
zL|-`m;X8YOdf~Z`@fRGeW_RKQ=XW(!NDh)({!v1YGdA|RpNV3h;#S9+2d)Di10t))
ziZBm&hP`m+wFv*jXN#{yM=&XsyHvnReIig1N*5&V2!#GP4)@J(+OMzmmWosgwV;L(
z15M@%1#8r)J>6g3)+d|qkD}6UIY?x%dZi|(c<%hV+cVINj$r}owhU_^mM^vBdSgPr
zKEL465OWplt;>&}HNxF1yPJpKbG>lnl>aVQ*O}cel_f*a!DFuO8SDP=PgfRmrsB;b
zndav#U#=K|@P-g#ant4Q8DF^jF)7GiGsm>sBM@-UK~kkfe2th6qt40o9OD&7Q#~(#
z)$LjSdS-#esXNL9WIQD}^eZJqC`bsSx+>md{Mc;}+u`&HAce~P#N92bd%aApp+4xZ
zqJpbZz6HH!Txe}Xa-N7;wOkMm)MYnCY`D_=1X9eyEX}sudt+qObmU+xp444sQ~lf=
z*jkVe3+?(oQ9~IHA=h)JbssA030WG%h*rz}s9w9b$Bch<pF_J+*{j@}UW)sbzsKUM
zg&$BZqONzzed;)!qYK^Fcj|T~f1Oj{-m|;wK$PK3s#;N?M~BiT6OR*q&<-!s0S<+@
zo;fd4lyYaJ+51(@C^+((8en{!c|pMGlxJT2K*VzHy)i+8yUTS%2~}j7met3a`@s3q
zMJjknIY~u8vk``(<14y$vhKR?Z#%gt|92<5^*=k~*of#()_e2L7kI-0{CxG~oHkM&
zOL&-2q&TApoq26jtOh`oDy7J*w8ORU-fz9XQMYG<4n-!Rz6OL*r>Z?McG={=>x1tf
z8es2i(0yVcldFSEo!jRT(>`zFNzcSo`(vO82sl|@9NYHAQV%4A{m3v;3Oa1GM)izs
zD|p0GGbObd`;nWl8Idub_OzCEoNqeKTi<c<*a|Q&gzvMf&OH&uk%;89P=w!dl&}J9
zpFp}#tKnWGq#PMMxWbp3*LOL$U|xAsSv8>(crP4mN@Q+u_&)cYIpTlyL$nPmeRiM!
z*`M}*_rqU9?{7O#sRPkwo(04{$qnCP7s0Wds<wCZZI3)*u0Yfi9qC|Ze$NVKV~*qY
zDI<*mcPq4Vc%Svg98~3#yV#+>=_1ZlD~wK;m>@>fP*nro3Jd{82#_LD)q&Z*!c-ln
zPF_^$|D)@?<Et*RK0K~iQ0$$0GjkCv!So`wBtR$$U=phJCb=Xbm79c+fE~qMRCMjD
zhy@D@iZnq*Y*<l15pY!`iUqriVvG7d=gbXBfcGChVdhTxO*wPw_tb9F2n~#+;=_Lb
zzk)MQ)jIhCvBu-tPA0%>f@LYbxJ{)IpAdip{BC-1yYH=?wj(7ufJC$Al3-nDZPnga
zK1Eb2ZNBmYiQ*TWRFbL$kXrV+DhP$!O?e_Cfo-HCosH!gT}w?ZuEoYYRUh1VXs@$*
zFTf%Kc4Qj_`1%>a^2NQ{pav3&AdizU-xpgnfN?y~Ox}%+Pfjpj@36BE_ZS2UG?0Km
z(E*vjm#Vt29bQ35VyXk8>hy>c#F3_WNBE)^J89pZ%GxTjD_pbK{4}#=cK?{(-n&KZ
z*Hz;7;}!V)N>mkCrTEl0vtkCLN{0VH6o^W|^0T2K^=}b<%Wdf~e}1k%QInRo<Om*<
z5%b|@UtCdykE^&^V63C&LG0q*R+PQH3f72XR7ECI5OWD;em|7RBiNr&XFvnY)|8lg
zmuX)k!zG@1lh1&%G^WQq`K8wI89Z|GK8u=k*{~Rky9%9U?SNy3LempZ=O1Uq<UOP1
zo)0X7#}<=`@PQ|u9upHC1?I6>yaUiU$C=Oi$E<q7k0Ivrn(&YCC+*e%hWg)$F=vaL
zm@v=2GHNDbHjs&FxiMw?BOeho2(v)=B_2o-vN^$bqpy*W#OHr?g9miDklcd~1ZxlN
zW_(n;*%o<HAfWiXWS`gBA(J)mBr{wTo@mUOm3I5pT98j1GrYy13AXno{ujioR0nvQ
zJuHaXT4wLM8r-XNw4cQgG-$urrpA03Gj$SBTR2-l^?~N{*}xa9jd``dB5)0;C#*-@
z|5=SqC)zc40jPx@9n(B=E^kMidEtLCrC0V^Au<8#(CQMAoCv@H58a$K+deZpMyl}e
zAdmt76MdDWUUr7;3m<LJdZLFK2_NICsv`*1Z1yLg*iP@pNa#R*QxP!*xB;ic$EHB%
z#!Yc29@0}n8_+w|A*yo@z+=IS|C{XKIm=>puOSz+c_BOa^HKyM{IEh8RSbGFNhNsM
z@9vnLwnMSJPJ1gxOltYnUA_CSd1KmsEn&EF4CDnR(1y@i^H7Ux+M*-mhls(J@EcbC
zh<$@kp5zuW)Hs+%cK7A1z?18vK{kN)L@LR384g6&23BysGbDL}Jg_MV;z2a%kYH%g
zNqbZvH0`~D(9FG8z^L!NBDq}!78#fYvB;Q<Z*@06ev+JcG~D`;0=&vc%=pHA7T@up
za{^MMudFCIv+Bzx0;hvE-h6bP+jc(O9{f}#Ix;+^QDBSL>fm~}Z^~{OZ&Li4qsrV>
zPRlb<QE~WSd<lj~<79nV<dPG#uOSmF>j^&<<u#j}HN_o%igJ{qJRiVAL=8DGcwEQ1
zzC*M#P#YU$QkrfnROKpzG{CVlTsBdrB@INy_P+vmb&(D+9Ow6jSfsuxN&h1umw(r|
z1*d9fAf0kck=$^;NH$4@?wn*TN9!Y#61ryYu5kCAsHJ&j6M<?Jfq>jPpdwegr80P;
z=~Ek98kVsoJOUjzwyk9$cSX5=%82^nSX>wCP#`9OU12U9?e6WZ{f(&>PbKWDN!Y#D
zmbp_Ie7E&QA$Co@D@fIf@hlabc3oi@9BjT7g2iI4YI0wvV&+2+R90VAR8J@iTp|t*
z=vUKI?6n7=@<atCJUbFNruPI>S7nJ7d7S9r@x}FWe*<HLSf!_7{E0WOjCL=K$I*Q+
zwOsJVF>d}?YSTRK1~~jh3=@l+wRx+=eSHH~Be8omgaY{$^)=Xz5+vPxia99Vy)z#*
z2>J#<Sx66oy%5X*A~40_meUx@wu|165%wDe$ieo3+fUm91sETyQS!|1;KaGj#V^|{
z-Vf|qm6G=VR^e;lTmAo3Ki&NOt9v7h%K&-8`y6AF=<gvm3FeJ1!3Z^&n#k=e5tGm@
z>>hEZ$JpS?JG5dPtgxt{B)Ko&l4|zP40gS)m81d7B#b+uTsV-J^Un@G`FM;VC6WMC
zb@r(&fa!9o-RC|Cbv$0$;v$b|J%M;z<YyLr$o}^GCxJ@@ca$WW5Kph{LK_ihHZ;ea
za}jhObq#?Rm~C-U1)LcT&!;hWWfE!74*e(&V;J#EUEFkmutJep4L~#V7S2Z$pcubz
z>FnklLS_3_%I3r$={`L}E2Nb`O<@WMa9;j(v}^FVNI)z|axW=IxIX15_wb;eE1;Vr
z6&ynRI9QtMQQ$B0_7D^wDo5mmKuRPc4E%S&9hs-?UV$B|tpfM5x>`7X7Lup@gwDP5
z&d~-VtIMOZh{O)YnU$M^gHPGBtK{}wg(Hm+7<^ReEgcN}LwW>1zqH?C7H+h7Ne0Lh
zjrD<RE9jd<EQw>o#am-?<GU{A<8sOXDd$0It(kLC%+w>Pk(*Zcd!g`l2#&Fdn4;^)
z#@x}Zt5{8mrbBg!u@uJw^W`J%hY$NMXFMYCB1K49q1d7_@L<qPial)2KkeZqy`JH(
zj0k?LjR30~GvxGMhu>je)GG#)Nc@|ke9D_%+GLBb>+vEhEcg_1e$`2$Wvab*MvoVB
z#Ee*3BZ01zi?Y1YcH`%}_av(~t;vqMu7{kc48;2ASxb^Yn;Bc>NF9$}S~VxIrkY*~
z|Kk1L&|;z%#q~!s=i=1$-g-Tl#ytC3Oqa8I1(C9Is|hy5mnc;Xht;L-k#DtFc!I`y
zt{pEHm2s%zXHIoL_Y16Iu}7jJRQi-8=k59Bz5hI**D6>FVtIvni!G0uG;`DG!L*lq
ztRgfG@o*<J61E111cB-JcYW~QQ+ljIWE$RBzEhG=!IuzULxg!%aL!>prMqlZBV+!-
z;U$0*^^)XZ+_kj9rwN;;Z-jPO=Fle;%zmFLqD<h9Io>E3Gy*2xES?^`{c$GI!P1+Q
z96(crrFVO5&sA*cV5A%I9>gf0BGdbJUhwTNXoMJ}7Ss~8A;F3SSnHcR1p_6%avKPm
z5uUM>_yCk?TZ>y;-D4H2n!l596Azm&pltN`dZ*x>3w@)VsQR|Sji-Q1f@j1*!8IWo
zv3%$V(TsudlbRObS$J$%aK&<(V3w7SlGWp^2G9b%a82;pYpB6n7iF}_0tt9<q{s)|
zm#%9!d|R!=a3!a*rm&7#!LdvCSUKIj=*lrXt_t`ZgJ3O<ct!gT3<BM#3x^?s-f(H<
zbtITS07M5e;PIKP9Wrl-fQqWHn$Urv7nGh?8-inhpedC=ws0QUT0EWZJ2Ply;n)gw
z-iJIg_4N1v>-@;I!TKboj!76>guL72-4yEhLu_!(s687c1d!~bjTk4RB1HT*j>Jid
zUNdlbFk=LbQq4xJ#T6A3AuSx_G&UDNh(m(gFVV_uwCS>a_<}&!0y|viD|P$4Kwd^t
zw_3bjIIzhk_26K`dX|vWk6*`U_>b^OiDpSv@1f5j3M1RfIN=Femlz+w?0fUr-pl9h
zAtpoB({~BvEYN4P!es)UR`IAF$O!(O>p!<mil;w>;3K97SD!(D5=vE3NZKnXJCW;H
zC2t54j4N|PwJ(SZ>6~w-bY^YuFJGYnJYu9`Cn03AqNHZ|$^Ex}Z^x7?+j>mn&8Qj?
z-vu@pnLo)i-Wj~6FJ2M2JHR`7rc3gqRXpfU_#O8pUKL^xQPHV;gV=25FLK=uSN8_Y
zxZsQ@6O3UVe$YvVIeso$6!JWxeBzC5Sm2(NxYqW)3(Xld*KPO*Ca?D8iLk`o9&-Kv
z)@}xtddG=`B=Q)UTb8+B$<{^p1CU2`E{YAGz0}P;V7Goq>ua8S$o2b6f1jx=<^(K#
zsFFzmo@l;$!tIb`P#wokH!Tmj8~xa0LImK#`tCOL;1DS=q!&UM%v}$=IevWz@WeQR
z?-PNa&@im<*OTo?r&`(S7LtZytp8K)?1OaOhJ_kS(GIY0#B`V&9&?HNX?Z3FZTYxZ
z(jG=X5{rfOc&`8WjQa8j@I6e7W8M6eD<jz#1Ceg+V=R4=3!Ey>(P=B(2LCBQ9+5>P
zOu8>=lwz(}?7kq&9gWZtPiU=ao3{vE*tD>Sh}WBm8yyI3RKaU7IGa4gX20wJfyTMx
z#ey6=*5!WKHFrP~e*=fs|6BbVh@FZ`yyn1o7&sO>a@rX#d283)F~V@h|E0gm6t^hQ
z2A_!SCap8;i^?a!1NcS-=OPUNyVme&R}qhgp;U%ZLnoIc42(JHA)D5qg7I)3U-Tc5
zazQMUYDv2G<BN8|9IYnBO^Jj(X&vZS$>yD9_R#JBPg7Q;t!XCwqG+t?6KjmAnP-z`
zXgls9%1+VO(lN2V#20h9D(2gpui4daA;uKw9A3Nf$VwLox;2m5uZs0200-gKQ;oJT
z31fP?+4z_}u|#V!KtPq>i<8u}hwYN4_Co?{B(`T6k@MX)q9X3eRMP=(Ni&abw4dGu
zdo4ze5)?Y3-xgL`Xvx;bgcWckAVD<30C-y`&{M4OD}iA56`FBZ)^rb40UV4JRbT}h
zGYU>1Rt_(|5aL~PV2!hHoU($)NUWI51HT@msqaGW)4u~-_`YGJVq*VbK(Va~vj)e!
zk9+IZUQ&td87iAxSBsV9k8f<jjamo>Fz#76EcuwyOyh3Ci)mL^jdazhU16hW>q>we
z(CrKS2@UbEHCOKA8vd;feYPVYC8?1~12Ou<zk7+0G!Fkc)G7g@&d~56#W(k}`G2Ac
z(F-y;BI+e1CzdeHJUiNM+@e*QFf;-YB`;z!%>3;|_NExSf}S&q8%x5mz_1in^ua}v
zpszS{Sbux@M=`mh@ZIGB#OBdx1`dYqKmU*5HwSdf9RuGZ=a_(L{wX$thQZygI3oD{
z+OD~y6S0fppo>8{(r88wMy^?UYLLjO++q0ggp2WkDiPb|h_M`s_rq>|R=3<y_%(w4
z6|VK369cl@wYeX;bAIodn}uLQ=8b5hk>X|+YIGkocFP?YkCU6YW={YZ!i*cienRJ0
z73lpO16#K1LZ_Qs(%ny7`vUPtl{BU(xp`8}$PBLE>~GxM+qw!6Nk(m{BDWL_hcEc(
z9QW6)d@3O?kq`k=q&mxpH>dvSro76m1Z@MCEi9m=*z+q)7QaKA@>bVwxnt47a^hgz
zOB+e)Rcvx{5KeFXk2_#Z*W7W6d5VQna&+YkNHm`nx!<<ys^v5ms^~s!41Vet1ULNx
z0RprE?;utyHwPQ~P2aiYpEFZVD87&=pK{oeN%y*6_v@BB6f6iq_u?rokmO=Res_VB
zSPEpR>iP=Yp+to{U?30KQMb6wNqC0<F2EiV`9+RN_Hbkd@9_i^jJv0+__&O$$JIm#
zqWHITALo9(rCaW3$)=$4T}CD^-?Y?V@lPzOI39DoA`DEP>R;Tq2ZMlt#tG*yNy6&)
zbjV1q*r|2yz(>2~4i>{seFfjux_s;_*%q&If7db!$X2|^tk1x~yy~RZTKiYm+&sN`
zn!PQv06W60l`cF>XDS}|4MJ%0^OMZh(e65C%ED!6hFtWQjk0+0=7Hbby<c^0-JJ<Q
zBGfdHkFcS!s-%&?gPa_Q$^o~zxOcneo-5ep#444;hs)xR$%EAXG|^piVz*ssJ%}+)
zZ%yIB+%?sd=5MOGEBNFwibymBhiG`^U&R!kWEL(79!vHLxJsTe)K@&ET#YWz1g|-j
zUnAQ`ekC&yngvAp_iqZ$IF?d=EB<8&MUwye(}#oC4%j0{1x>%`-+KzlE0FIB8X@G2
z3gZkpnE61kp@AVKEE;Qv>devvzh~RF-p?G^v$Ie$OxfZJV-`Ig^Xv%dfq?2r3=vM@
zAfkzSCMnMK?Gm#`4QH%>oI9Bs2sBJI2|!4}hUmlyY3A-5gR29<6%ZOQ-yui1qVvd4
zz0n2#4s<AGW%g3a9QRVnF0_>n7t4Jq`BrgC7=E4G@Kwit;WVSaWj%Aq2w5!Za6pgA
zZ(+LK;QH0@<md~4cOefXQ<N;HX3#iy!k2-Lj{|&{e;jrzPTN(CWbKtNq8SqZr;5Xa
ztKwo-uxnYRVZ7XNa}ixJIa)ErbPitpIEm!i%%1T8|FnXXv@a(R2m<BJeX4&#b1Ng@
z)@W8A7VLdw%wcSLrm(<-d&QgdyX>unJq|-+$_)`oq>fi~9cM0h*LMGo3IT`{H{wM6
zy$fdBoX;u4DUh=P_#aaD`rGUi_vr7iHIS%SA_$J3Ydde$G7fH;q%Tf{iWJ;!586g4
z9zXCi;abW4DPC`wA(BL=cEOKSVlSs$BrAEs?tj<*xl=n*B)~{@X~Y8&{xshveFfqW
zx|8Z+{6Z3AC5EH;eD_z4suRZ`S>mH1N)zOq*Q(uB^Hm9%2{aMN^mx!G$BGjEUl+JX
zr>K?@=V1v1Pe=xtDAAOk?qb2`K%tRU3g8K;4MnRZ+DGVomn7HgKU&G>;h9nztxb)U
zIj=d(ZF-E_L^Gm<JJH1Fh*~o#Ay#l&R-f#~`YGntV$-OWhzZenvTC;24Z2+$B9!_r
zlj33}p#MVW#-2}&JYP++Hfgcq5PHV#?%b^u<B16drYM6FV?}o9d9h14hH_j|c70Sb
zwCaKWuFE}?3vR_k-skxESV`u${t<WW%@h-)hsT6WR3PsFfX*Jxn&ICeIm%J#HgO!&
zV#R0l;ok0`p1ZAc60zi$SG!8qS=4=m003^RLvT(%oA0iXAvgrp73H{}gC?GqpnYAm
z$`w>~=qo-}z&THt<d)9USrIl@+eBYUiLs)heDP3MIYKux2b8Hs0;<x}W5oiosl?rP
zk+v8gLX#XR;sKUbXFDUOxZyI01}8{b8r3u>r^lizG#3qZ_iyAZ;S(GJyh>gefKtWU
zB0g!cVs*UxZuhfju>mxx$JoS`ic41ntMHAk;<662Pl^?^$@SH4>*LHt5<`)}1~9CI
zSaG!Id!8F{)*io)H+NRM5BR+xoq&cf#$#YjBGnDVnxw>vtoPOp?)G~-G>nfGe54tZ
z+^r8&-VP5bK2}m6eKEjYeFQV$uEHQgX46E02p9aayEm5x8dk9jc_!Vwf1KO@3Vxqz
z@<12I;K%kb?tzcF*WLxaiw{A$D+V~AyP#1?lijc#EE?hVxF_=RvY3L|_|O2CzeRsP
zLhN!4awcWh-Wlt*_hVS3{7^AICXA4t8Y@1*2WPstYF(-k074>>G6IS~bNK^qL}$vy
zT-SCT#J#*%jO)#HV8b#h!q7=#>#HT)L~dt-Ip;RFuD`CxP~4|6Uo>Dm(Cd*bcRty4
zKi!>t5Xu1bE`(y@(uvK$eA?4J@DTDc@DQB#TJc-ub0DS7r@NeLbx@UL?{#G5E-!;m
zLze{Z5<G0>2K)JF^=rj3tWZ>eq;Nt{GxA5fE+2sxm_ubby^tK2jwiOcw!f>Gu5I9W
z;DfxWhwR`iClJ)*hS5%C8}dFtsfAy~4UeY?s1P%|+G)pt4Rgp@Vd62cSM0aQWhK&1
zE_an=Q%4%+>Ea6>9N<WgCQr<;GMsh&U_=S=u1x;kHYDj_NY}v4dTm4^2Ma&IO7}=y
z$B8fl;VKrFx%bGO%oKB2d!KJCj#oU*%*l6G<>@3c#QT>86JIH$uQZ`2tJ8HBK-vK*
zgYYAZMOY_H<Z<uVfQ?R37Z*nh2^mXIjz`=Z(bN4gM8_)#3yUU^d?|PunZL8#!#P@!
z4`K!uW}5g#V)Cm7QzL*$#Q~U2(2>dsmB9PkbRFno!_?tIKr90uz{GP&3|N=*UE;&q
zTP~q4y7G*Zfc*7Rt}~3o3g(ESB?2Op#BUG{nr^N++BK3sn~}(@C)_Keh&VlCjAS5@
z4C^GTj-~(y9vIM)AFNrc2a4<|5}H-0SvbYp8NZ;l_VPn?qyb<}MjuER5LmM*N4u|&
zqY9TjV1kgM$np+OCFD5kK=<@YodT50$J!Bv$U_xQbI;W9MR+)o<XTZFd9~BQg)l46
zaWnhqB1Dsg%TtVx3}igXjE%UKX;cDt$|rHuiHYDI9-1X8M!6%yTX3jF3dLKQ4N5bM
z`@6Si^G$*n$7vVtf=k7Fm2-;Q=V>Ys19nD4>LHYj|IEDH{qq$qCeV|+RN8{qH_A%M
z0~#~l-O*W>AfwQqExbOV!9VS^Lj#o4l~_mRhGG!mLcBKK0oE(i%41Qy?>NCtC@R;*
zxy9G$v<7<41}z)g-sfO<%SNvrlBg!Hgkrj&0<Cn@w$T8wla%1H$?1GwqAB{*UWE3F
zwI5hki-@DSy&)WI3oxf83w88?qBs*mn1(v5d5HU7Qj!C#hsLp`RBXxk60)RcUgpyO
z)SAo)2z{&x<#4@^HM#8l_4`P+4MD|mOSGVuxs&&y6n2ppiEL~1!zo4%7&OXVaH;l#
zK|yTW;D_;XPc*s1Zq;JJ=&OVeQes6VZB{n9Z?E^2_}NPciIk_AA(yzoy_6FGM^Zgc
zs>t&oElzel=W0zJuZS#(0Nbhk9m?797deuVUc>+@c!AJv-TsI+l^|w3{OYk5p<|CT
zB`3Mf)IdrQK$Ss-F2)Pm*6sd$`S3{Zl?l`w){Z{)Zt{ED876o(EmpL$$;k;qS&nwA
zpQ1_x?4nY+7lDk*KrW1@h7zWmAC7ldazFSw_%(9=u!gZ1M)U^J1&`wYj&=_&>Ci>A
z=>aFW3g2{~T!dXs$WeEU+pttSm64j53m~oLkmFn*&U?ErOGx4%E}Y^P&R`dbmk<zV
z2#DAS($V*ma`H=?T(5OQO4vqEThM`{5MKScoijzNSSNzyP_$FQhmzO+iYmR>5+W4E
zkR~7thTx!l_j7lD=gA1oP;IpwMkv`cy|gx?p1iW08d~ut9zW8>Lx7<a11l<oHcL5H
z<?*B4>ku8vN7WIa+1B8Kk*>0*R)}~2dkC?nC$usJts~@=)ez++F<P97uy&YWI-Tpz
zKT6yAeZ-fzv=-9DyA<u<=27ll2^1ledncZk0Q?C8-ba=0jW<|W<S&#ARh2aJ!N$oj
z1oaU&v5_WV3(!Q@7V^U*Jn>X_v5+56mnvK2T?7G)yPj@NKgl&br*#D9lrcVa92qK+
z7#iZ-lxMUu*Kb(sqc8m?nUa3)T{fTFJODvP3`@8YL2&<-;lBPiU)R1o0T#MALjp;6
zD~H@KI@`_T_iW4<Tqo500Mo^4AKKtH2~897fzebZO$=nZnK#)D{z=OT11eSVi3V)c
zlsdPc==&k{+zbpq$Y%Ib$GV4B`Oj#nB6=^nG!jFac(OZl4OQ}{$+g{ePQ<go{Lx~6
z@$Znoirn2+YKS)UPanzyO@c3xG@Kf6k#2V6xgK}XXNL-6rOloB?vMXyg;>F1HDU=F
znj+6Z63cDADeyE4&zrLF$E+qon}8vn=7O*5?BO#?N_G;Xg%rx_kd)#0H+_X1RSKb$
z%TIN)<z0oS@Z=8$naaOIX~f@|uS0Gf$Bs%7FIfnEqF_G2{wsE$`6_9b&0~xngENpW
zF<O6mikvMD8SDYr;V{}ouFs*`mrSdbkWhzsb4`)^y$f}4*E=il9*RTHZ6=-JvOHXC
zZi|F|px;ITZXO=t(y=D7W#qB1Widc6;XAqyb60$=#ZasIR(_2p>~i;9HM__z%VG5|
z6fVm+_MGI-hsk4c+Sdq2PBxK}Sf->YTo?yFD4q8MY8m6^oURqHRlE`!q>oE59M`x$
ztt_MVhO{JH0Cg}tTb<i4RhzX&7~@SzSl(Oq?zG*D)6KhYS>p%Ej<i%YVAn$M1G2!p
z`KG-%$`1lSFNe#QC#|tjJ`p#f3B*&h9!z2?_`3IBv1Q2&6K{r0m>^Eua6zd&>nJV1
zvSWlG<Eq(0q6oZm`T3O3?155<;1_Cy*M^HuhYL$KeU5dn`FVAyNHPPDbrG0b=>{_|
z%hCWxgFg#+E#~i6?2w235F8aE1W_f(%ZoP$1cllI<*5YQL7w|oia}FeSSni{^b;wg
zQv%>hSPz*D=Jkuay0`(lcIYke&Q?mK_YK8ZvgviaJ1<MCJIs|h_G8_+GqhrG835-M
z_^n8n5`RGUm5Zr@UXB3)L)5$;fq{88);nT9qzcpkIgff7WD`@&tCQWd5IsVCi5r$P
zPi7L@B%R}GZfE)+2I`S-{WxlIss8gU_rV=nOAsITi(P@>Q-?ZdVWz7T)-V;_MVNho
z_P}8_oaqwo(dEbsDI71705FP4=7<;VsFD6#2^1=?l&z!&k^0Kj_8M4v-AdyA$_il|
zv=uz{cQ4yA&!A@rw<E0xO~VY5U|xU0Hb_*k$h+bCCKc>bg|q5+mdkxYCzfA^@W5py
zc{6Ngn!C&Mb8W>;_=wZpkx%Nc^>mS%fop=%@3Q$60?k+DnI^;%Xbc20{c<hO=lp~S
zFXebchB&2E&A39V(4)#1FfcV(NR$4yhYCN}N;=TO!DyfEny;f!)VdW-B@&@8WJprD
z4=i^#38~q=if8Emt%85u)hY*UXJNWQb_Ol9-W@JXDK0gwumPz!({^8HSIA{(SFEVf
zYwgieEC@@y9DD+>F-TTPL)@J;^dcS&b)0gJ0sfwn$^|~^oJm@f2`y2Mn+gVAf0P?r
zsTH{r`KhdjG$E_VajtBNZ$gb<DQX~`q!)~KHc+_>Nl1Zk69L#-hJz(cJ;Gfd(YE<D
zVKK9DjwPN>nv#A)S-}=zAa!!Rj&UzFM1KuMFAi~fqz>06nZ>!&v`**e1!S5rb^3a+
ziYhcLA#q*iFap>aZ+=>1AB7ZCuEdj6>%z;Ox{v!JsHMYOBK{#x$4Ma33^ne?6FdA|
zJUDOP$KBprOY_3TLYa~5Jh_h-$?nWQ?GuP^jFC}a;@wE`g@r)~Z?v6bv_dtel}MO=
z>3E*lhnv>hzd&u+tsOhvZIdm8F{DCd`btqD=q~Z%VN?EQlil1`YX`N6CIaV47IV?Q
z?p^;$ZKW7zJGqyImBev}!>_tiEd5B9;tIX8*8M)oSE^kv90`!uL@H4)+ez-J+P$|-
zYi%hL40HD<$a<$I5ny1h|I+rq*nbmzXln&D{^;-R@C&s9hh84o(w#Ul_*RLg=_`8)
zRFM8gigCSCI^*Qb``Y%qfMU#;MCr>3_Uj-rT7tQDnmfZ#8x=JLiBlqsmP~T{345dR
z4A;RQMHUX)-esD5c7dLf_B%yiuWYs}MV{@rg$ROu-nRq%R&;0)XYSl=SNIkKLSiOE
zc_IgB@cZ^9IY6SR_pTLU8b<5+eS-`9rPCTC9%95-!$o47HZ4<K{SK|j595I%L_mV5
zUW&N;TeP^1=}bX4c2a|T;pg4T!4x#J>s%>r79ur<Kh~EReFS9j{{7u6!aQRxME3P^
zmS`%H&Bgn<zl0yh0>J|+B&{B&6&NCX6jRM-rLGc|6af(xQFPgPA8`PB#C4Byy<uFB
zg@&W<hqswD+x_}G{ei5ti$)Or%8QWxzI{uWG|eMdXoy-xg&F&SorDk}FLYs4EaEAk
zpU%y`qJ2MT3b@S6w%W$GwTbBZn}m={U-8n{!@_PtqlIwEobd34ZuQJ@D<*11?oQ&Y
z5Fapx>(vDfkf(IZ0QZoPLQ%9<Mu{YfMmDl(kTW+@1Lqkk#>-m>D{lkZnrHrKeNcdU
zjlL%GyCKHuLnDCv999_rQjE4}8qiH)6?nic5~;S0dh_-sn`_tF8J=rsrS$+W^02S9
z*?Sa&<G9vdCB<o?+JQH(BexX9k#mu3=J$2O<lIB=Mbs2JOpSysr=H}Rgd>pnQke0b
zKr!i4CyZyRx#?85^%kuqUjQURGzMq}%%GFpE55&x<Xk|3NoQD%m-TV``Oez^Jk=zh
z?Di9J13xq{;=&??BlMszJkfnP$9Ip`PauhPTAaU!`?{sKYE7=N&tw>skr6M!20B&v
z5rNM~8j8M9AR45bpH6b~g!Pe+j2@bfZQ3m_!3}1|+jdmPH!~ig#k~5qy?OUyh}R8o
z+dp<M=CwHXZM%SCuEK~0&Ir(e>Uf2r;3ap?cX~&luB>-mEQWONDki8Ee?KpHJN|GL
zkwvGfBs%3J=A3T680}K!gvr_4y&53`o#o|Hjd2=D5&tmRP@XT?s15tLAx^2)aA86O
zbp>q}57p<t+KAVG4^qa}E85Uqp|k-~{-<1RBu@d?r&XazM(lV~Z`=UE2@<0WTxi2i
zjC<+CY^IxSq_rI5+i~gqV@dWS@rQoH7A9!T$Zf(IitbyWB~Cb13kQcIqVH1LNO*R<
zNq)m_K1Hhv>g$ACmnLZ7m%U;?Jx$BATL9RL)JAn1sW`)$AxF8BJyjV9>+Fq`;AvuU
zTXcl$CKMGRuq7&Af`WtA{<Fi}gg@F=4&^t`q{t@HF4a7Dh<j8B*lz8T%o~TfJEWbs
zNf3i9IP$Qjn`XOV2kP$Qlp<6B+R3>Fa%qN)uB@!e{z-VKgKm)H7B*_{qKc|Om=g()
z*FL+ud&qMlTpWxfLQ%9GG6I@bm@=FIWLD$_<My(p$s*xhc!C=tRsm2X#5;s?7-QJ{
zUy|HaJhYVO5}<+)1?AWZOl+Dvm3NkMA`FG%>A3;$jya=9S?;$I^1<+WR>2uSteM-{
z^+1Kh2Qa%`;u3X8laC$fu02UtU_cmWWX!UH&NcRVcgt2i{K$r&v$VbuczBDW;6)#_
zUW|rNAv-7jfXSebm~&oszkTE%7UAt!Pu1c)|D1dJ6W<+YPXu!*PZd|hb?Ap#7q6ot
zqfUh%3Qs3)5m^M@9Hi@ps}l-4)#c&lonrcaWv#FA!h=dy(kRKe?Y2^?I&K~j7dh@@
zVRKV)a14vQOHLg`#&mOYj{9ENOLSLA&7_ZJWuvqoB#=aN%K`4pb<92)zgfbObSMy|
z5Mh9LBEDVbKa9_9Q-%Vkm}0tia|dkFkCRG_7|BSd0HEm?qyEE(ha-pQ8~jd+d9J71
z`JVoI1j2%s6h&=GXvfF)g{giKB)rL!3QbBeW2?Povepo~Nm#I|_Q3c9(cu&O?<Q)X
zvh~FcWhJ~;QVBj1I@pPw+^pvqYR^i9qqjS`w?vU8GAri@x+I^a`hJnkxj)ywY3qgP
zOUif{MA7dcmUGI_dBbj-rxl~COX@tYEHZhrx#BHbc^@?pa6yNbj!-6UUt_x?<hNJh
zVgxd-$?g9yPGp<T8r^fMIb)jZ@lX9&NStK*k+n<1?K;)`Z<W2$9|m~?k$$;;TE||W
zw#t5gjyB8NsfjT4iwIMLAtn^ot6~6dPB8sCx%2z!FWbuv*eYuFbuXQ)6%YyNO{<<a
z6-RNiri=T`6DrIGWSnSKqF~+OfUi2*_43+1^lgP4Zq(vf3n5kHm_5iX@sw;3SDe?g
zq0FnjY0AU&+fl9${=KZ3e2}oZ96p+gLW#toYPo@7^VUBxR*)cx_ciwdcije-nvjH@
zpc-)~qyk!tj!kuZs0=yXD#B60@&D=q_sEOdLfFJ|EOov!uF`^WF8x*AQIMPb+=aVL
zGq=BEH_6%Nl!&^6LYS1--nE7Q)k42cQK4HZlT6uqD^x=jYODc1PpvjkPCrOeY3^L#
z;b4e))QZRK0Epdg?_aOI4zHgeVg<8<V`O$WePXYEM{5uZ)vBg7T&8C~_ADc4wA&&Q
zb`WjEnacare(xKNKp&0<C7KozyxA1<)*AaQd^tBA8VVba!V`Om*_iCU6K)o*cc|3c
z!zfo(#jC!YW33l~-@}0nOmio^MK>%uyqa24anRtNBTioCmd@gEQ-$=Wc2p{GHv(X4
zE|zL4GKIe*IS2Us@uv3`?gF_CavfE%ge3@v(|@{=qW$h*Sf!Km&Ug1bv`2Z8dHMo3
zTnw&4btcqD#9l3y^TM-SH^j=0#YyJ%v)q{{?pDl6PdeLm+M_t#j6B<&jr`oP6Cwnn
zorqY#LlxlViEem&inzIbeYyMU5}IMTl$)UnOT<(BU(?M;*Sh|GEyVjDH67)m{Tejg
zb*a-Uk&X6Fw0p5Nz(ura0P%~5zb;#5ACJn=ibYS#BP!t8zI@6K<E`UL<%u53Qz)DW
zkO*Rbw2MR=mTHCoFhVAH#$zK3ymlkr5ONwNy(I49{oU^i+eP>c-A6rL6l3iD+%AP_
zl-n1ogn3tNN9?RWh%yt!oE!&AMg9$sbCZQ8#$)=$vZU%&0+v(E4L{qr<)*N5V&c_n
z50)d(&C@$=WQ*2#I#(%92BdfssyyU(`>muB^Jw~d;$vB$23)+N$Di|?WIkA93trHl
z6-3JPJr%|#P0ZmRE!UF|brl9u7076Iq3daD?WSk74IYmmhh>K)e;Wg9EiG3^Yl}*E
zdc`v}T!X%E+Z&(Kb{`6pD-H$H2!Ltx#T$MaT(n)vIXu^RlKKvFn}p;fi(y#U0Vp{&
zA~fS0AaWo8jyrizr7*?J804ztI=2%IfQ2!SuCu3~sXN^!dBN;FxYq9QB33&&23=v{
ziLThoG40DiM(yKz_;P`EC8eZ_F%ntQuaEl$Epxj^3U{qk^YJwI+T}W~D0c`9;^^TP
zm1Iu)*v5JmT+N&Mh*N_qFZmNYL)4~TAJp0eZxWj9@J&XG$AGxOh!`+yvo#_Hq#{6J
zt}558w#kINCYlG%aYL_VG4`m6H$P{%<7enPwFZgFGb9GMcaL=~o@34qW4DumsNfSv
zbah1{;Y77-o}DGaG|60htlRkmH6&P;qbsX|_ME3=>16l#%sneo&B0ULvVUm>#|sw(
zk)zP)U=IyUcJI$pTA35(QsSZke<0T#ynrhmxsy8VE&5pV;oJ7*vpN>1@bU3$?d(0a
z9Jk@MHr5x9M?;66ozFwQNj0IL>;+!`-H{mZ^nU)MeRc#RfX4=-(G-0m&_<xZIAN>(
z+TXzeyA&a!ivh4;iyh=$8Zs;NJ=aY}Kfs(Z5`6oyu4Q(0h1XFaZ!_!jj(44;J6Yt2
z<Oh!O?cnI+Nq(ez-;089T2VD2=6l{>)UIM(rWuje5CPBZ19t&H&j~IEtsqr-F#D|)
zZEc{qg7=2W0rMMu@obb%bTj8FEoOJB!jNNlI$yPKrRyy(M;kLn2z9FYqS57D*0EST
z$r>766MhBlevP_`Z1j!p<10E8lQA#VJm2JI(urJk)Vg@Oi)sgE7~Uu&-A$1Ehk$^=
zW43a=QkP;n_jhxIgb6@cF}ZyGa`N&*A?GK%!7u4@=Hl8RI__4EOHwoTILWQ>4lg2g
zV;%+33sX9;k?E_!R4iI%)MylyDTS|DaDr2)MKNs^%R{!SPd+r<+l|>@ms|RTUU~i;
zQ-6xN`y@B%AJoBe)f0FuoHEGV+~JbpZlBATW`_z%@tiQiJ+()L*tK6D?%onZ2P*KY
zYSB@P#EZ91nt5o4ed+|Az~E5pep8Wd;(oQJyDqOxdj!ahV!uo`n*!eT1_LHhm%8RD
zxSL7N$uH#X(&&IPd?#2v^0|o}-puUbj^uUWktaE%IGUleH;<q0(zqrR>JyJREM5z7
zz{z4!#&dVL)``u(NlH2GM<%$}ke6tY8Fg3#&r~)o>dOYv<Y8&hjF)<Hr87-1Jd3MJ
zvjP!&8`NAG4Tj?vsQL*0dU=#C!Z7bMSgX1dzZYEFcyr(Zu3F5QBB~+kx7NT+&D__m
z_hwc}&L}&mZesX#aos!Z=RWt6yKFB41YQW78KAI4s8_`&Jpx<XR3cJ+DtZF3WT@vw
zycybpxKK!N7K9t7p=-$9b}8Qh&x6Hn7te#IR-!pzqMMCp1$6}+OJVn;i9cz|W{#NX
zj;+$_p#aUb@02i|bG;DQ`qXg|lFgs%>=_-EjIsr0<~sYLx5l>nb%J?eo&DP@$3_Bf
zK>tD{S*wq~w?B^8RnyPs5%<PGm?i{c9PDJ{_}!SDVyr*|z`OC=3j513l%mJfQu%F)
z8TX^zc%J??cc<46iT5V%M&H^y{0RDM61u5qHUPkWQG9i5I#Ly*Y=ml;I68A)w2yh~
z%;4$?dMV)apx{V-QB(Y=32LX1;&drq<0UzuQCrI)DetXn)oTH<Ehu%->xCxd>F@0K
zo(7K;cNqT)VyR6wB|qE#aL;@_+&^p)M;hmxXj6GSe)-WJ?TK_IS6`xJMahTlh}6da
zYc=!8ZgbC~vJ$nN_nF_@^Dr%O76wMj308s@C$q3$PIlMcsKsjTD&5Isq>7+OUQyDC
zON+cV_;9LF4IVwk&AUmfQ01_*Ucch&zG-lG&?9t+TZ%dxW|RAcdL4_hc`{SYg6)Vo
zDjCSfRCm@i`fGa;(8UvGG|k-y=hMD8nML|+syjlI7r57y!NhpMPB`dv^N$KQOXS}@
zs&E6Xa9O@e7z`9lDg+3J9d9;Nxbmotq(hI~@z=}U3oS}kb6Rjc5uX>{5;w-3<n7|Q
zg3v8C5FlL5O_SWLclF2ZiWAL>N$vxRp*8uc>`|2y&a8w3o#<-OaPrq6%v<6!OPD>@
z)86hcygsA>dSc*&IJSZnA#aKr7BL$m^^3+)TszH!K7?6qNDV-9<MxVT?$-xhYBRGD
zE>QiH<*Y!KnP}ut_ar(sssMYgK+>fgA67H^1otC4I?4x!z<Si*%dKlU)_v(&3UT=i
z;k@CsN!(3Vz4ADB8<d<@d(=XO%yI5)Kb8am6P>EZnU)wK&pyVz_P(|p2v_cJf^au+
z=FB5qlC%=Y<cg-&slfGqeY9KS2Wzcprz0a&rS%8xP7Pvss`+WM`$&YtwljvqPP&-c
zeup7!SB%#%7qQ8mw+Ax<z-W_ub~k234r-4Ecl}j#(%y3nXgqUDhAX^&_i`>{Vx}8M
zId^0j7FmuDXMxSe(X89ed^5fwtPwW{?oz*80@c$+8~fHxRAYY=wGHnDdaAxjE=Sno
zG&2f)4;~u4tqEq`X|C?y`ctxiRD~x{EO9zl#=F~g>mkvcnB?vhK3d-B>Q>!_q*F_f
zh-r1z;+V)o9KGkFeoHg&{$dw+CU_)ns-AulqJXIXLaTyx03U&%h+TkWGA8i5-OoQ0
zgE40cA%<X>wg0oH4^oOpsu3_x#XgPo0qB*(+=D~3g3u(+ThzjUFmGmeaqmi-4y+FJ
z)8N<m&87M&?Of3k%+>weQ16PCD{mzHAa04WoIN({j|ZzdMeN0u;*N&i4(GK?Uemff
z6qc?2GSu-7u(r9VZdtD!e2i3~gCCr^FWwCiw>A{_J6k;-a5097&n|F35*$xWCeDDK
zTqr_X#b~z?Qw4S+t~riv`Vb_b0VEFnLD%V5+O$IeAfPVU95>f}B2=thIp&yTvv96^
zPOKgs%9-pfbKM9T8xS@f8NsR+K=Cx_mHGH$H%)X1qHhpkuu#M#)L>Bj(>}F-d3}MX
z7uYN!H#q0{pV`h|Xm2B-K5!vOJ}CScb>9oz0C7k}pWT9{H0qy=RtBQ=>v1mQd953)
zd_dHu3=f!WCUtZ9q9~L(c&8w41L$(l*x6s%gC*%XRh%Q`k7MN<q7MB02-PInP~2zw
zqhZx>qntk`)9-8hyGTvAn~HLzDli0XvjAlw3(yQL+nd{Msq_u+iG7z(7g7hi4`&`u
zaW&%I4nHZr%2nlHq>BUrh4{6<oBXm?@mMMi6iO}<1h5)uE<rxB?Q(KsOOoARa<wQ#
zCBcG;|6Wp>=$9W3yPmgb6?eTj6f1^Qc`U^Z1}_~B^L-b)rf2jQ7{;0e+d!*G+G_47
zbg5`o=r>!qLB)Ka5nAyLMeZpPWUvv!>*=ke944*HMQ)m(U&kik^c8wn+TA-#GC9R=
zs&9isW^EW<vQQXFB${US54#6t3hfRY_|tgG%yH%WayQ$RW6Hx4{eW{`Zb9=P?<g9|
z1QRNB>0Y}q2)P0KG~T7Sa$$=H4bd%nT)!ko0NcEL1ULq2u1*8oMT@jbIrCCP6mj|C
zDM~l5WxDjm)QJ{ZoMy2L2tdWR&)8S*)#99;B=?Ymj=2oz-)C&){n}N2OED1uIx*A{
zglSK`O3MeUtSIwEi}>e7?igYcpmN;Uo!D(;LwQkQmr_eyS_ZVfUFeTS+yHG<?#f}C
zsTr*IENZTlKpnFDMcgWpA@*w2MY<X7dU}eTFHVALVd5-8q98-+dxgH9&yhC-Br<ee
zDXvqAP8`2|d8_NG0A0}>)X$l6DiC-`<cT*wmy@-;{1`WH6~&Td4G-(6MkXE7(W|pF
zUL85CC3>Gp>wyEx<b&OSucJ+>KSmSIoosDKB+l@I-IN_vOXNEy6<o0dWa@=O-JMOo
zG=#@E(}j~tG3OoZ*4ArZdDY}{s8oj{Qb@z*9sP$@gDJOIUIsnO)Np&jaO^Ar9ngOz
zHY(PEj4lFdw!7>~`rEw<+3Krox8;gGtH?}mZW-bVr|(%sNS9ff?fUGc71^fE7uoLS
zs9@cG8Y0HFRjFzY=qd3Bd}O5SBd1-sd!BcZ-O<;fEXn)SPRing6d*q;D&RMX;`W!9
z>_0?IRqJe2UBjCKW6In7dLeDZ$=oZyczwC(FOGEy2WUBOc2oqQ28jem?V?UvGeE-k
z{f(ju&SPr6+ZUU)bOx>QWJBY5;>NiZzJiEAgb^?;*(CAL7B_47wD-<)3;b|7Ero>=
z(1v|8&2;~l`-fQdiF4<Xps8Ab@Yg}WTKJ(&5rql_hlip~)6TAQfinx-fBs1=uO*_P
z9N`9V32>Vf&$)wZ+|x(tJa?}YzoS~$c=%o`IkcN<+_^{Yy)wbfs&Vi6O7W|NL4Y45
zyHBl;*#i7>C%6;xKA_ULC*5Vd&HT_%w7!54tYq_7f}1VmTG)b8^ciqa?B{;T%1Fo)
zFG3V725X_FZOMqXa;4i(c-eNul1Axf;=S%FQ2=?hnpl)nl~3?Onz?zijem?b2y(Kf
ztu^olLpRvUN3^D$5w)FBl&Oi?uTUO5iICy{tGl{{l{)G6H6%4N4|jLfqG;dE!7b6;
zxY?d8f+UfhTyL?|OVk|DE<h`0co#qtq(JC&X22$J@&;$R&9&NwlT%kJX^+U9ZH8vK
zgCl$<CM4ZvTqv-;!u`w{<bM8}!R3TtaP)T{yfvu8x5L~I;sgXkQzI{8saPbrUy?BL
zj~tgETrc;l1?Me2#^h&Xs;~BPPx}joa~cc*XBbpPSOT@_CLm?p`?9@e9CHyzdwzix
zSV|9GZTFK>@tm#_{gt3AVQb;w$6f4xUZ@kv4Eq-i7tMI{Op!Z&i7&=`(zA4UbI{ku
z5;sZok7&U)ZmQL}Cy~>Jj9BdM5gwKAs;ftj)B4;?66mvw+?&1*mSk6-qL0fea|y4~
z3hfWu00fH&6But`;ST)8hCB<$RT0gQKPfm}LUn(##fV*8eByD`3Z;w;HewCuAPtrm
zR&k-%(~6WQtokrldW6=<{r8ZpK5Pie66m2dLn{1BfC`k@u2F7=XbZtgYG>+Ykq+Hp
zukn^y33t_r0V|J?wxN?d7}CIcj7QnV+eOMT90>k6-F>x8&yOluCEzD2i%3c`kV(#T
z7q8H5%C47J(yQXI<xoegq&kOjmUgR4Hj~eG-`>M;Vo*d!6J0-mVKEF6iq}nKH!+^F
z3hGutbPbeuOSSuXrXH1HVk1_!RCsn6#C31k)PUAN;AvARkY0rDv4=71>_ejeN3SKm
zfoj^7V>kp!j$a^b<*u<$d!r5RU8QxEP$ChYs6<d+`}Qui*skW$c9`FKjOwu*mr;R-
z0~JfMJ4!Omq!AW~#^vmH0Z^f}Bu0cP0d55AKRRM-mh@cC2|^c+hP8}1WYRUDZ#csi
zB=lM?Uri=pEXIH$fG6<Hcw0FOoFdYNfSn7I7KT$3M16FSQ0n*(?f=#Sr6l-_lPf%k
zG%p@xx7WvZ@()_GM?<m_w`;gZwSWS&^}9#4*vftNfpAfS>T65CHfHEUF+FGYJdjfi
zh-CF-O6JUt`SRwTFLI#B_E(NGA@~ad7<w>Z+>i9g&E?_{Xh-11z^sJP=9+vrySAGU
zBz2z<v$pJ!yw(s*1Xgo*ch~qv_vNszV4>Gl1EoUNxilW$6!XbhcE|W$%OMSe@Rfq^
zVLdtesh8PhxvZ#yvT!C?YP2)BC;T+Rp4X|@at>5p2%uKfbdtgR{1m(JE=nc#8LV~P
zPkgEbQR}!twz{@gd%O_I8bDf!-`s6UF}ocA36k&!AU8vR8$<zHRay-Q(I|m6a4&}x
z>j-o!z8-1~+7a#}Kf2VHy9)9!>}^>M4%wU~CY2j;`^I-4i+llOSM~4UOqk|DF&`h&
zYb@tBqar+|nJ9h$eog;JV}Ad%=U65S_gOuqtm0cBL`XL>JLWvckMSxei?{r6^&K&#
z@AP~hb<Gg?5O^UmzDmaLH=d43{k+$16&N_o)lbFTzej~I3{NkM>GOFnr81((mv6z;
zh-D!0OZ&RWhA54zBSh8VJ_|kA{~-72%I*Ux9kwk}yRCAY07ZZl7H4*(_kJl%W+>2E
zcZi`v(!ir)k2e=RWpD3AJ}1I9$O}anC%%(r##44?_nt-EdVn{|YHORCtLk=us?6J&
zztVOYN0lIqejBL-<BSIi4G1^2=D(C9NRw@kj_|8aG1pydZ@9W+DJsdkZ?f-S#h58F
znGj0AY6%#}b7;|Yd-mlzZvGBUIYmGgm@$j(6{B^EnUZ3uTyj@Jky1_bN_+GP{2VvI
zP-J2=UUEd%NT#n@<o@KW<~5h^C~7L35UK#Km*a#;{*ax0JuSdV+!@))hlR?U)jc}J
zY<j?&m$Yhlb8&q!c{R}MqTy&*Y>!%`<ptYIDw@H<#1m9B;~B4LX?}Br6GEw|rWV=U
zmzk+#`kJ_-uo>*!MxK3KM_yWId*7!u1FMRN78J;hft&2=h4g`=Ms*~zgF@c<olC&i
zqmV6ZuBg~i8?KzV9l=d>8tY!R8SAtvGgOYezk`9vcu2}Fb|7Bd$(rBOYO?S(kzA#g
zB#LDyb)g|UUbAPcppG1V;Dw>}C}}JVO=Q^#k4cb3iVK$bTI@A-b&WfIpU9%sQwyP@
zw#y4zJ7}k<q@@kY^~dd}(j(g1CYXo1O74WjiE>J~A?(cGA!_|8sgv~8s$0g7p~o7^
z@l9t6p}J<yv*hN!eY$<12YZIjLJ~>~y)d1hvuS;G$@F__&=s?s!hB*2eR8!u<?&qu
zRMbm?V?f<;@OjQ&yn&v8^~Qie=EthKvdJ8cGz3|5-#vC|7h3TqhUz5yj64~JOm8t$
zv<cEUPmJbbF1y8!Bqt;*R<IpBO{8{M=_l;C7irGvsjh4$Cnu$8Chh@y{3<=3WO%72
z0GJPp?9c?3g1U3uYWo3)lnXX^J6y7si$3qxm+ZbVI+yImo#1xu<W$J-Q89jYh5kOT
zxzK+=Wm#!6nQghR$>!x1HYq?gYRl$GX>%RngzUi=)9j6-w3O&ha*9YPR-Gohf1Z}+
zG*>ki)$Rb=G!;p|@)CPhj+W<Emo{@8`E`;BU1swOC`G(PAwwDmj-6y;JLLuY1E-@y
zIq3sr*;dJScl>=q>+j{Pk*>2mR7UDd)N*1}?6JgNv{tX?=x`IPe<QaNH{DC-+F!1t
z7}%7Fzz3!wQJTf`?3$pK4Fj*3(0xEnQq0GX*tvb${}Q6tWu7gej7^m@HK9d_4>>Rr
z<PaYAPb!F*si@siwH*LE;RWcNjoeX0H$b@4q^6m?+G*G?&9XT*v$M8<h*i~9HVb50
zc{51Bk}tu$yu`l7K@lFjb=}yo52o6~&ehWVrVx<*>Ls#is?8jxg`>AuZihak3OQ`K
z!Zr-2lxVlQMu9jLp^IMU=QAjF(VdYh5a1C7;?2zE_RCCuD(K}EP$MBDN#?0{?DG%s
zTPD7vB+^`5j)YJvKvncJX0`27p_9+7F9wdGwu!G5w>3!od*kT}tsfONJiDYc;5OX2
z%+_8^1EkBA+M1o^XbU+e9BLFDtWYm#Q-?O_@y+sO_DN}jTX@+H8Cmd2PFrjv=TYc)
zAi^=1xEVZ)U$Ap8-MtewCfZ4d&f{R^%yN6wMcR38bqRD}2mJ&7Z|;5CCY9(~$hP1v
zuJXB=@n3s_ECy;Bo+7||Wb(34)z8^Fj+saf5V_jQGR_)FZJ8-V{+o!7Pylg`_?Lkw
z*m!vv9;>DX&5lq{B^-YLQIDY$+~<A!+y`2p35_HaFR}yZEYw`)@ONze7djfC)|0oB
zTaK|PCr8<gddd+d<*kXXF6Kwj@9wkfp<YxCYH14B3c;uh5mX}D?&BY}2gr5nuv?Is
zVNcu9vN))W(Aw`5NnVu1tmT1sw9Q-6)E4Q@LJtlN++Z)>qK!s3S5`C7P6@RVu%541
z+Gim%d@mvZd2MONQvt^{Z=Jn(O;6#H^Flzj6x9dvVXiqcKnio(I~Ut+xA&UP>zXSo
z9x^$jW0SBJo1a{8Oam1>>LKtuV8%uReTJ}+-a9y;r&i!E8>+3r_1f3LD-;ET6Z-X<
zE~gy7Qtm#D64TkZ$Bqmp^zAjBOCh1aK+I}Q9Mdi85xk@;H4@4Rk1FK=w<MX>*}?QI
zZ7~$kKb}9|g3B809=!G#CV&=!2qESmH8|R!<>(u1Iaa4OjHH#m30_Osja;zP$;^vE
zND2r#>d`^+@5#qy6o<H1{@aqwE2jpB$40-co+#&#h$z02JmN{gW8$?Eei{hfT>~KX
zZRr=Batd`EH*giT4b(qgQd^S7a=J*b^%ccsfE3XiD5mk|s=mSB*7uywGc+2~v}+j?
z#RYu-^x)(dXeAKt;TmA%jrsoAVCwvy(`h)Y8k;y5fQ~SHCCYNF9Lvy{P9^b;j*Y!7
z#T<1+u=8X-8r+`N`PK$Nqzx5EH;j1~_Y00^VQ7p=3*JzBmFZ16H2CqqSbi+q^~JCx
zG8&w{Ipg>sIUT06rg`M|W+qZY!Z4oTV}m2^XE+#V9veSB&Jhh>A58=JblBZ`zwwgm
z<jwBEzMu1vfTgg9MdUPK!^}C^!IhjK_`cC0u+hZZMg|aUw4AepHDl-r7Nx9&)r{^t
zWMI{4!5NvFoWVqMB?$f(8CJRXpmODg_!nqAxM!fi<Wc@=lsjTN&|R?GSPKNd4=gi8
z$}g(j5sv}|2E$j5-T=_z>R3WHQL=C|0Ob=Xs{^v!=tmS_%p(GVcE+Ln_I!7ZfQ!+x
zPDh38>ri*~bHkqMFjQQuD6OunaTfHxc2h`*mHf>&S1Pm}EE!BN$Rh&jmzc=N2`1$@
zmm*EjSxMrPG{E^-7I(Ev>PsmG+KMvRHXzI(3EJR~fa`HnhcUoNLqvYM#>FmRvfM_&
zev={65)~To&Xul5LWdU2iWNVg%Jmgs!?p!W0Md>~%1U>G2RtN#1q#gAfaHlU`MG5-
zeulQ-id71Jp6Jp%03rCt?=RIlUa-ahAuMRD*dF41l35(G&rNgN?`MLD_GKX=rjRbl
zM3O?s@n-WXcjg~Dc|oufyt(vP$r;t@Q8zV(PLW2@{i^s3sGiWcD{ptbDz%2p6Qs@(
zusu<W?Q@&^wXtV=dpc&RRP)zV*Xhb06Ch&emPKG{1LUAGq?ZVswmvX{<1LtmAu_s-
z$_Xr9NeQc16)p>8Gzx65d3|JH{>xgLS6y3*`ngZ25s}<{cYYvmjg}8o^aL|AKVV<e
z4vFg|ZzJh57i0!5d`^F}tEhiopyEaSRdh1h&~DRdXyEkKl;VLJt`!wG)?hPYMBwpt
z6oSSG`4?3HqJd0wZY1#fTUvpgsgdK%VKxgZ14Cs#*nm(b6-x(a*9WFak;wBA@LtKd
z6IioZ3($QLNn!483M|~D1sN0SMYKM6QsCM5{V&RRL>cVBrojH6>`jY;5*HG^VynIT
z9g+aT9hHGe4MU3H=T3IF^=j9qn2l}nX{hjg#!{EQ#eVkO-hbeGX!`-0UeYTD^6)w{
zD@X-Bi^0%yPcEB`8BKH<haKr2iRtAF!B(XZD%Iym_alXH^}7RXLjj|x*gQC+no2$X
zEWm3p<YPXuW4H8_uJY@`g;kB5MHD6p=Is`{<gi{_pm{JC#hiQw$4<=iGwEnIW5cc*
z1b5b;L(Q&*;i!XtA6*#kHhT%oxTOE!<lcLny9hjRXs1L7XqH9H4vHTe_{r{j(_S(S
zq4kL-A!5r1RF$C_^UK^Qn2jtmpVzvIbc?5-WB?|69pdJ5x7xx<EI-J_Xl*OYM4KjD
zeVm!zZ0BUf>}}mRo2~06N$W_YTv>)E7b?9tv%<RSO>6<t1{Jyn^k+I>YnKH1CZw@4
zNd%+m-GII2%I9pc;iA1%v0c$BNKrJs9gHImLQLD7WZdG9_qGyvuV^|Zxj*@M8Q_*>
zO#ZonKjrrDe32&?Z2@qdfrT$oLQZr~2Sx~<Z_n|8{;yMtC#u-2xHdn5(Bf|r6Bl|>
zzzO8W&!`WSzN^3F0TM>8E&vif67R07k9f?z;y(XAF7WcJ{B#$|$<Rb?*GviA@lLb{
zG*8AvE(%o2O~&uJJ`zAa1qRN1UK}|1O>I29dO{h!9ncU+-k`r?yue@-`+QB-guwT2
zQz-PSwn8#eZ#^pz5o#k^W1_(d>L<(GJ|7-<SiYKYf1XVmUVmBO-cPk)d>H3Q@*ZCr
z__I0Mt_mBQr+WvU8#qo#lB7E(I0Zw8Ir@@7-hX{pl4;kNvn~%DBL&zFL*z7ogpLlJ
zDT@ik5wGGZNEzt~fWa|WT^hK<liTQ`k{S-%F$%gR!vp^m0?UWsG0g;jI4f|JCtLZY
z5<4YJ@J@Z;w<w{ir~vFUkWokmNAp~LpzC{q7l)IfOT4X-%@R;PY`MlJZUy`omZ1y>
zSixw(pC2yaReQ-l6%?3Udv)ThmPR0oX?n!|ytD&?uw)pFU2iuFt}qeu<bi3``KJl!
z8?x^?Us5GYisKw2kNE!+^^`2Z{qKFGRoNugjsR1wbx5^|X8$$zs2$Yd+#tAbD!iv{
zw7C!J@5LI?Itnpq38E8P_%~H;z{Zm83u)$?pF5Na{n)<FZu+UmDO@ei5IcimnRGex
z?d{9EpCSuOf+h*6<A#&EWU>8u8O2HBrXj|Ae9@B4nick^`zYlIi>X4~4S7<N&Efai
z6aL-(6n;VcN;H@i15K*=d#RoGLiba+^EuuJAWe`6etXpRTCZc`l#hP`ZY?b3Q}(Ha
z{8XF)v3&vHCCQ*Cp!}BPoIL2qJ#0U{f<ZVo)%92?!0TeBNoMiQcKQ^0!#NNuJh;Q8
z+BVr&*<h*8bco=3iIH*Q1NOb^v?vQ)G4b~&fH#F^Gat1-QXwOU13=Kr2@%sk;e+<m
zOIyFHt_;N$TnE!{USvb7C>K3kE%XwxRM?48P4>$7w113XY!l(WEac2bY%WW~A{8{S
zc@)CEZ+XbRb3^M-L7Nbu+7*x3=jDflT}^0>-UCzySI8&qd-HX;(TEaNxcHM?6X;d*
z&@_983>c4RoydMwbz<6*9h4l$H$7>WJ?X!yjEGO_Sx3oAgOHpxlL~QLDk&*L?JVbR
z(p-E0^IDou4hpP}h$M05qj~nYB@6*Bdx#{{0c_<H3`&qVv-mE1=P%kl4w_YUv82+%
zsDLVgm+;jGZ2xO@Vm`tdcN)MGB&+=9MRu+nE9Bx`Yn0HsMk36FrtqSnBgvU*^JHL6
z?G}zyVg*1!DY`!Tzv4c-@h+_#kAoW<BN1VW;&kEz_SXMUBciBao)K)63`by(nd1+R
z+7jj5U>|wx7P~*^hIc$07x=PTRm_784dXH2KD$Xb9)inL1-LP#S3POZSgobv?&agl
zaE(hc|5<F;uymY$j1m&0%WOC(31-0}JBZWInvWF!)+vn3r+qxjK0Q@S0k#*`J+`(!
z5{r*3P{W)Wev@FrH`*@K^f#liFLR~=zBeg1*qg8P4LSd8D&?Zvd-x_hwjnx9WsNT<
z(BG{8x1A92<(!RD;L{bi<*J+Q>d6!%Ir}hB4A4k|OYM%QbpHny>QP7i5r@6Xc3H`K
z%2{dk83cubl-^5i_h+?YFq94BxF;Rr!#QM;&GZxn?+FrMDh6_@`D(tM=39)Z)+l+@
z-Po8G+PP0_KLYevD@PX#{v!L!A}!2U$4co!JQ$vP!ghK>%QIkA@f(U`xT_c0CeAr0
zWe79$X9OAdwEOLKoDohrBniUC<>iZTk$cFV_MGqA<KGFY2ceLQ?3w;xN`|6vY@|Mn
z^SWfG;e0&*fbDg^w&4M3(k~LA=*Z*t!KEx@Yal;nd6br5Q<$@_w%<NV1Jo#3=;UyU
zTS>va_HQ9Tn771VE+TY^B{=(jJL*P?H98(DDby<2Y@BN^kstF;3!t&MI3|hRFMoku
zus}P(4FHWZ0uo=__hx&b?;0_vh%&zPrJL>bz6{p@IYR=&a`wON?_7SmEx@~{47Xbj
zR_QXkV1*VcA>nATj2sx29W#M>Yngq<S4&4Y{3?whIMe*J)E2R)9HrrkCnHM(-3PpC
zsXg*Vt?+SX`o3{ll1=X=_Ap<=i-}oEz-Yz5%uY^NY!7=?8~L-q?^DfjOYM(bE@%h8
z$15IJB6R5dy4#cXlV-iX85Ni=c7>pe8|X7jY?lw{30-s<SzNe2P^{~(wZms<VHQrY
z`h18J!Kmx))ahD`MNp!nxTfOYebDvx^s9AI2vQT2PLGbjCM1~SAGg2Hrw%eE1Sopw
zNQ8F3?RqzJ0whL4)KNOJx*smIzdfcC6(^FYD<^b@tX1>v^Y3amo`zxshiL;N1hoEn
z_A*E)E1Sm)+1f}vw_aFo*T1dZ<>4xed`+J|DID0xN#?Po_O-8c+8Ol?oNbVDD;~24
z`6E97E2~}w&OA9}7ulZdE31@UU0+$via>>8CyOH}lmcLjn{KtMppg7vU=bKGJok{!
zb``9|E&w#p#uCh#i*3x8430{aC1cvU@7S&q%%7aGxmq<Cya4sd0j?TH*Twdohxi<<
z&mt6P=qr9Is4JFOViIJH@w}t~u1TCe1<}B%e6Ic1EM1-vh0#Y(b^li^u&F|d1>*?;
zS6*jHc1U+WOtYtL)bU4%`p}batPv^Znx%F%mz5ci<yt|809e59aj9KS19pIO!7`H_
zhPO{((9GZ`?5A(i7d#X11B(nn{9=LqjjJFBN*`mnLV(+dYr+y+#iF3$1GhjI1e7_1
zsC(=;uW9i>Jl)hO1#gf9)BSFH((5{IW~83&YP%sRX5L~unKmrvVDI#qE_la{OYD7L
z`{}6nmYfQB4ZWq3uWae#_6Z0wUor}vgR(KA#hJdq4t|3flWTbb0TaGLjL`>^O-oJ~
zqAsT!Wn4X4C+OXpN9{)WY)R%(R$HS^s;pp=dHgB+$~*>06xOYvn%4}@4P-n}dojKy
znRl<ZCtsx#5bqcvlXB%rC1So@V8@CtGr+#oM4j}B;6Z!&mi_Ng@2S!X83@ve`SBe)
z*8AvdNUtti8embWVpTb%BXB5@R;gy<dVB9~#p2F((0cohkNs*F5|(cIueZ&<`(4H9
z*tRZOZ(mA}y3I(`(-8IY_CyW%BAD;Zc5$Nqpbe`oS->@p7nA^0cf@cts9y{YLlXIR
z_z0J^kScY#l~1n|jEuxIp*$6Z&Jy26U29COIAT(VOXvFY+#^;8%3zn(F)5AZB1~kR
zLVhq7j#f2Tb8%r4Y+M4!e;coJXe*c4%4j(&KY(*B`@uC$HtROnK@#1DOHQ~}QV`;e
zP885=_st>x`=gsdcww@+ah>hq!wYw<mSDiN!8+!XGg*kc_!cz2ZIkgHg4M`w5s=;n
zA+zZ1mdtmr_z^KVczOn3PJVk-3A5d`f<Y<nsIu(&a;_!ZG7Xq7_@4FlQ=%+7elpa*
z?bCKmOWf9q*4t{?^1b@bfI>wogKq9i394Yc)-#tv6yMyn_Bp~K8OI+|d82Xb;?f^?
zj@vG~C~lA#IJ`TKkL4SInV2{=iQOg1)ZI_$ufQE6T{B<KvkQ8`CGN6^{+|g+OA^l2
zxtC}e-6WJZO>k6vzqmOknYRyfkBR$8hv}x8SJv9=BzhA%CBX$4gn-X5_ZPUcyq|Vk
zDOf`V?ieZU2$DpA4(ix@Q{D4|VA{TW9MV(P*(3d35GPI#6i7@DkUj6)D>8Mm5)Y%E
zVccZAyw=#oLwnrEBH=*|9hYqEu<<yg7rHO|YEtr16%(+53rx>Ng>FR69;wCY{pfo4
zL(-lV@us}qUAJd4atOjlb?yskLA(oMk^1eYa1PguaOER4r+GFCkje1t+&l3{JTl~-
z>9NNMP|af|yQ9;zMQ$iW3N5CefLl-8h0dPD@8RyD)9i}eUK6Qtlh4)C{2B>}7hxcU
zR7PfXsrx%jh0ty(og9{fEb%&BuXD{8Xp`Y&i^mI$o_MjgSGn0a6yrbNmc?G2*-neN
zyVJFT2y2Pg!R$xSGLBFrjjnYkGuMudMCy37&K==DqQfqvnyNxq;6H=7hZ;m#KBDUc
zH|1i!Sd8v?D+)Wn5qh)EC1ld~?q85#HqLY#F4US4+=GeXhU$8;^&?i!oaz315jFTr
zYP37b#RQJ-+H&_y8O7qxEi#bg^<~aS<++FQwI6U1>Kj6en#IG;%Xh2mI!<dkt{%w~
zX1bv=!tS$5GY4GfZuetnkQ;(@^f>jyx2KwImF}`o$Irtmer%oVp4GiGv&+WFhl=Tz
zIWb?1vje&JgSS<(TQCi96D$R9?$xgZFH7nr$^S-@`K~;KTAU~rnEYXzgYO=u75HA3
zV!4*YNu(fy5Bw{5&4)d=zz5{lS7PMGZ;=#zXSfGmLCM*w83#`zxm5wYs}Ob<JG|El
z?<!0KGt~Si)|DO=*gcC4fwN{@jQduy*rb}QQh+4|%^v%ZxaoY?(}gQArI3~v2V?Sw
zYci;478`Mr(R4>CK{w|@{Z;$?IO5{|k#+r~2GvkVh#4j?5h5Dm-5j6i2@ynwBcYN&
zML&6zJB;K;4A;IR7SViX-Q<h4W+Ymp5-e|(Iu&V&rozlS+Leve`n<+M$zGb2gvA%o
zw{GsOp<3>ZWrV+lCB3*f4#Wz_U6|-@DAFGc2;rvOpvlLv4T+N#YXD&_2)evd{lzGG
zi^Ml879<w4=@8dR(o*5tRNa7$DpW)m0Y)-*{6C%DGjp^_j>dyWvu;U>rw0;T;<?%?
zgUg8KUluzlR&;LnAL*W+s8wQx@|%zXdsE%bojE~!6OU=JI2K~_Vtx$9X5V_G+vt}D
zJ9xOZ3U>rLlyIC;2f5Sekmby-DATlItV+Bbs-RmpoRK(5YP)29f$^b2c1VnD+^<-9
zQJy)~-FdM8ifYnq`t_Esp>t0h;*KrWy1Y<P8FoF?kEz(@iA?F{rjl2R<DG}6gMLOb
znX8b=y1GN&(I&ZNWHHlRt+6<hn<ox%TR9}m2Fs|L<z$-h3?pLPU&FLTW+T=CId0$u
znOVKv72~2~lhh1{9XUbNG04|_+|9mjBx-v!x{`K_x!g#8TUlGoH<3_{ekjLRtbfRT
zr?^?k+8_2pyf*lhcn%d9i$Qm(Us>GP{Ybj%!q03u*4<LzC((A`pi%$m=DzWB9*OIs
z9y9TWKE02d9nzoYgy~5fS1{SKM}<Ay{l0?1@u!mmp|ch%^whK54QFdBb_X?pOiZ}$
zM^1EgqbLWHlhk6el9G3fOj|wNr7!C5M~Y>-ZOb`aeO#QMSAKP^Tw`(n;4>Lz9ym5v
zvNmm|+jtVhC7b<f+(nZ23=LaZjm%2-KFM5nu=}cz-;)TFUi1JbXh&Ony8uRW&RfR@
zPao_~_21b3T8qnny3e0Q3ywCZ61pnr1hTui1dbO&pm&Tk;Vl3`!ZKvOKi-}APaUE|
zSMY`-V_dVR9eJ3H^)zyZ59sCY8K}Q+zk-S8e?fN@mzROF8vXep$rxK6*Uud+--du!
z$AXiGFEE0Xv_dwdOL33PJlXv<Kz|}N6qCz~H~Xptw=hwA97OJUe7%G+@qi3C-u-$}
zPr;1Lt8S{RE+><2GMT^=&7z*JZe9<#Gc!tTY31R-U`$gIQp3ZV65uM`^po9edy+l?
zy$+V8l(>Wd;|G4Tf0}ls@rhFUQj7imlO8e*mf^{$=OsyCa%unqG4Kd?{^LEekjlhr
z`(rc4W{?6Hcii7G&m?!t;yoLHz7}2&ux%V~(Bp8HX7`EtWmeZL?%PQGEJA?+;Q$tv
zis}en=jh;Jg1);v=9Mkove?F)P%ZXUoT&V-aG%DJ3wYBw^V{5*1GaXRA%=!<YZc{u
zlDYfznD|e-W^wg1aUrh^Rl-&w=Ay|;yENvv3EgC>BSU0S6^R^r%2==e9dmdpQ^g(^
z0+J<=RgDj^P6`H+Y12a-9-j%O_Klb;-s&cOXJ9$xx3~=8u7a$5Zp@@&x{f#F!e}T&
z2MndY^Sqd)!}J^Imv}uKFzd>ig)K+B&qswDMHQYVjxGB>9J9|?I_r!IgkWBMvH{V>
zFHJGorA!SQa(D-y$Yae*|4Yog*?c#ud^i(vN+YaDtU#xI8#A?87erK1MP(5dTr9Q(
z=lvcSb3ZkJ4+C#f7nV7U48x2DhKDdW;si$s2urc%hL|P$=og}F*dg2px=JX?%7U1Q
zqxnEQzR_8Pe#B`mU0%5C<Lm?(QJ|0_c)atn@w9W7CcP8$M}e;Cz}gx-YW?=*R8->(
zT7n&q1?5Iu|7y(o*Sh`x=YaI0{v7bFnFycyrLxO6d>iw`7kYrQ@W(D|=G35?Huqi<
zld@Tti*toxTAwTV{W)7>X1u~YWs56dQHeu{GoNjV8N01p`!E4|VOBn^=x$DPh-G{A
zG=wMoVW~~Ka5pDA32EEg@5L=ET29N+1PaPs61S_BFWHs!La8Lu2De82C&><*C|<nL
zsv%H?#=4yqc-M1uury1?jo)yzr5OM^%}p3S;1ls$FZRBVctBUOy97DF87;PlS29oZ
zzIY{8SMsvrDG#4F<SJWvD}AIJTq2|H_Q`v5x5rl@>V(fjF{lLsrPj59589*8*=+$N
zI<NhQ7S(QN#-J6OV;9@|N_YP?q@>-iL$%n^71?<66E>MSvk0R|0FS_p<h1MwyXr*B
zAm!@c9mn2$^R)dSwnJIcUdjmV+~aqtdzNt#T7QS>p}AJ#Jh$_#a;bIq&K6%sZ2rV6
zM9P0hViZ>H%&YAo;$beZ!A;e)P>*Es4Laa%`_cT}KNz07^@E8rh&pZ8gzyfAZ6Ji@
zCA)AMqd;NF+=ivOh{zY*J8)NdLA_4dMM6yQ^`xQ-&vz0GCYT4Vw71{QNbGP$Gs3UN
zDriCueB!UZNsr0s<{~jSs&Dv%g<6!)eB}_P$*}#$Y8i>!%Voy^!W94b=ou>ri7!PR
z9oKWx*vx6q+p!_vFRr3~i;0w9WDml}w!?u+Y<G0zt-w<pD3}y+qi^;@{&ymGmXnPk
zQsP*8%(s74>4FZ}J~=cQZ(@jx&{aIVvmWg!8d)4)P#Ah}FJcM-u=tM+-{)0~qN)`&
zDGquI?RNBqoR?t|C?tv?Zs)s8?47TuqBKunha$BY4PqzCt04IXOw4?nzfK#W_?F~e
zQjh+TQO|nJ{)WPmzw%(I<RS_}OUvW-*4woKX_UldgPUQp>Gp)Z=q+E$exO~GJTJ`Y
z$|d$_nG?H+wjaAcynh1PP1ET~y9SLi_bb1es3K6E63jmyu-CuOk43^SE3OvHfLN-Z
zoMq!L*Wz(J%3`t;qxRwdv`1lHV0Oa@i~}bG$pJJi^TZr`tQevI(yk=$fPRg@DBrN$
zUi1mQpsHq9;1R^C%kfw`)jqp{-)s1+|2<?X%^Wt*)`)#vUS_qpiDv{zi^(WCmpo%j
zw$hh?Iip)`U9u!||9rb$l*|ge1HmKTpqaG9{&6i6mDts)Fz%PURCu3Gx965n3hNw3
z3kSo1X5zM`cE5WmY-dgd;%7yxIn`S&YU?X%gfoHkCYvK}w3D$#audXvg>%JAC_3n^
zv+U+8DUTYG(E_lLL+`RZf6*VeGl->_+WYK83}P%hd;p)y7GcgzFwfm(H#M;WBvD24
z)M^tEMOX4;_F~!X1Y^umSKFs=(~(B1JqHa{Na9mS>pjcv_dCA=`OaK8&3@rm8T=Uz
z4V((M@DV#*4EwT-bu6vetFB&RZ+fwN1&xMR6MhME2v<}Dzl4ndh9u@<3nrmdXAwE0
z+?F`DOIGdo%O#JQROMkns19UQRP<q=HHKKs(#I6qL;7hw5mD4<5$_94smE7Wdf<}h
zRoa9TdsMJ!*}`yWzbR%xx&874Ed^zV47BPH0IS8-osw@iTJ4hOwydd1SXsK_`Hj8M
zl8{p-lY?@j1kRIk7>u|=`(c81Mg(j~Y(EkvAsMs^>g+*V^usf%O3H9H)SlwZYZut(
zPt%@&X(%BGNxOnWxvR{ca<WzkBS%dDA7>nHbfhFRD`a;j`fB*GaD{xRHf0t64BN);
zS_dqZShKWEiV0k3mnNV&W$|$|ZK)7f35lqivBBN7p0HS?OF_AS=mRN*<u%c~{J0y1
zew-G0WkA}-qO$?3lUzLHG~(mWc*iZ4hB&?pA_8}xcnI*U?{!}iwNEkri41~OCEfIX
z!EGVNo5IW%vD@iyakISF{dAoEc93{m2r<Qw0e1YrKlH~MMqklV0-mmnnP{eNRLm{<
zfou|b#gUHAX5jkP8VIv*K*AUE>st5W2JMUVe^GB5z8f0T>23Eih(I!>NLV1kJO({S
zrR+`DK)^CJ9@MNnQZG3jBwmNCqXJVw6&^*!oOOzM-$?cFE5JJxlSrgo++lnJ0McJ{
zf?h!l@)CGN`X%@{wj0D_7AgoTGb57v!53VApuA{9-m)r;v10yWbjTG|G5ctDOuD>c
zFTJseq>J>%Lcbwz&T;!5t!)Nus}gWZqQj$Is<~ygTk{XC&X8PawV=W&7(YwY{S8+x
zk>gAr^()b_yNrhT)xYSD0IQq2k&*x7>pZ}#D$@Ty_KG4{C@J^MoG6IV-1NAXO+p|*
z0+<94EO?V#lACs88YJinVh6Ec!?G&&0(K#+E{dXJ#kC?>5D=mw9T8CfpLfm;Nr2z~
zdG>L`%$;-QOnuAu{k~yK3?RJbUQY>(P+J$9&0b=J+#UFPWw8+$&7ikGQ5=-8i(^NW
zF|<P~4LBxp_`Mg@jc|wv7JG_$dTCSzhl*0w%DJtV5t}U1|FEzyBZ`~Ez0DN+F<f@B
z?~3{Fyasc$XVK2JHcP);Xzmm<?;LEF3~*K09yJ*CSblI)q^WQ6P2!2(qsV_AKz+cs
zlB7moWe(*HocRL-RTE^n6Tp<HX1AE$Rs34QuDxu!;4M?sAEV6t^C(8s4;P1s3r7<o
zJ6yoTPq2^950!Ga6bFT;NPHW(71ZX*=G-)DQ4@G8z$D1>I6CsoU@>)bmk273*UCjW
zv&1|*k=}Ii1MqEX<z=SVsrKhZviq#Ag&$zmF#F@tSm-TnYa*JGy1L9f;@aQliglR8
za|CM<LX)gst~aFx)QCwr$PGw2(X>hG`wPuU`F7w6IF8u#DDjNvFBh4rW9<v@e?=_l
zFh%k4<IS08+2@>AACD5>5N3fCb3((bASSQ%<ILckeLq9SFSf+I6GubwyVx<Z^mj-+
z!yC-WXV@o>vwVZ>G{yw7ZIq7-&9A3>y@2!~Hz0{vQdk@PE6ia&`>YYnbxQykC<m2a
zJv-67;4O`uGBKO`GSP6yfz|>r?N{&q%iJU{q6gvdgi`#IwH#VhTwiC-K9dUQ--13)
zAwZ3(g0ecN%=9X?<vErY+fEgF{pTSweUj}KTN8J!xI854<nLm0wc+;|{=$$jS0g6T
zsXjNGi@mw(>{>v6g=!*RCN{Fd$+W=>2-o(j`|3=Je1}AOOAf|hqmX1k!01<#$C?4>
z+INo&3+X48cQ6s~5UaP#&CC6wTG1efHxu}YSsmkRf|@(r-L~FHF{!qQLB;}y#pH*P
z?ls4{wlv&QZhuW0Me@E+c5@E*%G-a<YUuRqNU7ZYZxy(I_3rvx6oHQ4df;P_qac~3
zGw2+r7r8h8>2-!^jTS@?jQ?p2{LqWtc|F`#7GySuhz)XsMi83)73SJLX5Vt~KYPoE
zhg#q#_TEDJ7RikC;5IXMylu2!CG?<PB_ie!h&e3>g6JJ!t&BVOF4IcI=x{?NpbG3+
zuv4HB%^%?UUbZz|nxuAW(zybKrQ=zhEBMX>SFlPV6^Qtwg)!8=Tx=G~|Cb?%x)r=h
zkwh0@O%mzp{?|-6*^zPC?-TuzPu$n1AkK}tI5Vs`<~x>L2X<amVh=lCLC*!~9l|Wc
z|Ka0NlYO5TnO4?(CSDRkhmZtqE}n$n%u#){ykZ1)I*G3l8CMLvnC|Lg%~_tIc%;M&
zNuZHbV&SH8mtzJN#<U_n4@X`E!Aj@_UyDau+$696Z0dXPU34&1jV+laFJ6-ST=$&Q
zZE+F&<^<6RDtka*_r)9W?%2C5Ea#kc;LJSSY+4!9O4l-BHsBTjI8V1>1WHp0J>0tS
zj?@hcS8=VDg{+a0ex*rt*Hg`obZjJS6f6L&Pr!Pao7o4uOV2-GD;pCQX$6aSr~z?W
znt|8yt1GvfZ~NK@jwl5K3ZaEph4AF;F#kA>DySJmxW(m-sf;&!HXhrDaH-f}c@{m$
zQ1AR|Zj%Odu2TiOzN2Cs8z)F459b<NTF{SVb7FA*-f7;?rs+N_E2Dj7Q85lTX{b#4
zM{KFc?f*T<-TuCAMcNu&A8bNiwJXw}jt-inW<Tg&6G!BOghwJEAjH<622xJA?hk%V
zuU&+{4vriV<sjXV1Ow;K)VofjL8nzGIzW5G2IXq+-w<<ftJH*ScnHWS{JDkZf^(T>
z@aYmO-i*T-hYX$ktJVx&AN`#@C99Y+u5XTE_3ma}cotzRa(K2Equz8X#@QWe5|0^H
zCO+{$zv&r$Y=eQAu|yrR`cTd$9V6i{U7nNH`8gerZ-1+p@AJriLv*byM}aXU9&2{L
z9J6=`@>NA6E**|*@@yrjNw@0XH%2cW#*8*JR-jdIJl;4%pSe1E@n9~Za4}#jTmbZZ
z#EtsM_bE-WrD5B1?7qqB_B-`qJE9klz|2Vm4vuAU^Hs3Z$gZNc-K4*~KYB6O8-+C$
zAq=a+`BFl>9}0}R^FF<KQ}kkV1hhz@c3>8!U#Fj(8@)J}1rd4PP~sWcZn7@;l-|?z
zMbAbr=HaA72vzYWx<P`2yY&0N(+o$GNM3SLq1vlo%k|vXqZbds<JQ<x4HXAQ8};e^
zdg?FHi`mkkdr6LIyF(wB%+il<j$S+xGXRmW=(X%v7TD93`qNvY7Y{<iMmi}CRU*d<
ze*LFedNl(zNPyDyz`;ubz7fT~!Z4i4j2Q}D^}n=UL055mR|RTOFo_e#H=qX3)RWgm
zFXjduQ6H+Zo;N~`($s4qUGfSKl=KBnsAgiKPU1dHsn<U;BqG7Ftr&VsK!Y&+<s?1g
z$>_y-gl&ZIzS4o=0pG|l(r*PSgz%*vew+UK17^n$%M;Q7LK@nT#O&X8qdsOm^N9}v
z_m@P?O5c*yyj%38eAIBlJOuz-A?pN_-|eIip~q~gy6P~NR51-C&d|9O4rhPDgpVqf
zh|B7_oAf<vqFWiBQI+K=mN3}Lk@{!<xaKE~932dKGu}p0n%ko-0U4xRxfiB-=L!Kv
z_6WdrAPVlF|C!q|oVQsj`B<6)RV*F+3Tb}v(#&6{Cw~(2HlvbDdajz9Hi8(f`{v0F
zI^#pmUi82~bu(cn2y&PXkXv%2%=4wX6>V}@0FMh66dd$e6lZQUGhWql!&vGedPWvO
z39-2DAa}~qx)lVXwWG-LWhoX5*2_<7DWMO)-(A+jx9^$A=p47vto1wJp~dB4;+NY+
zP543goXFP@i`<B#xd{g%CTt&v(;<KB??!STbsWXy5n{AGR-SpRft)Ii;SB4=uXx(5
z0Hna`jzsE-!QO)&NIyJ@r-fL6QhRj!g(H&~;H5*IdB`QW2xTuNdJ&ix=a@g<!h6OF
zLWBel5--O>^M~dbTy4A-uRn1K5}N5xju)!Ft*@IYH+JnQ-j2jhm&QK#4E7iAo;mO!
z0>4a-45IB_V{rg+9>jtNaflyj-fY9^M}S*RO<1h*k&2{|<|!(WQwxI?a?hmNdv{u^
zdFHU##raqrxLYx!01aS*ub!dPUx{AM@scTt1-Q5&oo8A8(aXs@)z`IL+yRBXoRi}z
z=lY(|jH8>wpq!jz;_?w!q#E!19k)+2F&iJ~aWXkAu5$~&=h_;!ry)=-azoZ+r}=2#
za@6vy08#XKeS}O;^_c0L-)xJ$BS?ywkXg4m^Dei=!-DHVa1s!+b;#|`i!J+fLQJ2t
zPjO0OZFzQp#G`CBrM@`X$>{G}jxTCNU8#_H%DJ}v6{q|k&T=+TCPI~TD(4wz_iy%R
znU(7T4MD(#s(!xnQl_&U9k8gerX<MOmTFs{R_{D_owJ-(NbG9a4oIGC@g1d3=uu}m
z5WoD!dZk{w%z5BLewBnj&Jw`@&EeIRW1Lk#JIk@K6(X7Af0m5pL@X?F9#y;x@JG0k
zF+pJB$A>=b1iSI$L^TLK1Vgut{CRt!b7g$jM@T@>*~=XNX5Vt=d`OGLHA1&c={tGO
z(RV-y#l_xOO{T+8GmcC3+-~2EGrJD9_@b}9#mTzDw;ZV@D^y45ic(3ZI)k<`QXJio
z64c^?QR;BzJQM8NSTM02GnEa*gNTb_I-!~-IX!Rf`eV6jSKR6>VG7xO2r+c%@;S~Y
zxA^98xQ!OFDFSL(?jmG7>L#Q_&*A-0?O~9wZ`dhO0f_kX+=lEZX)vs@&T8NYa2cxn
ze)qLFevcPzE#P3^5N@Tao$MV!Y^JxmGjgaTmK0V3?gJ2a32OE6abw<&n!|LCfCYwo
zhkNS!``uelwvQ=l#w<=0933JM39RfK_vwS8=OAJM_aKjbBT-XOBKu*yaWCIQhu}JF
z;L#+_N>Ceaa|ev4jQPVh%QNb+I)b2s%_2=zm%4#>crS-D4<S&QrOo}6re?qHlH6nt
zO8X$3-#b0S`xW21U;o2?Z*CKG4ghlLDd5+#+3tzmxpmU9my4B(7-d9p#6b?79oc%*
zAV=yr^hMVaxt%%zhaNXYKR3bF6(LIyDHf^Z?!=K@qR*J^H3ZYbg~f47J8`BKm+68l
zY!x>(cQT<qaD_;%aB2)5s-HdEYlxc}VVHx1D&fq!>S8^8oUIZS6H&7LjZi9q{hqAT
zkpAiFSYZs8MqvF^_1*f0;kG!FJGB{EC<NOT^T5hpHe7G>>V`E|;;s(Kts?EPT-<So
z4i2&H_8pZJRWeXd_eLcX_(7B1DIiL*%oOP<uiHl6MdEcnf%{M`8?E06c~xBpBuQOb
zrpI&)h}EXrhnY@JzCri!8t&5(B-OgXx-@gY_aP4PZ5{8cYZe7wzM0X#pg^bRcug9~
z+9;Q6<YmI^@}Em|b&{>!J2!xGq%FDSI?YXCRe-o!+Q!!e;w!m#VCdjSBpg=9jn_Bi
z?$@UTiEHcBClGW5eq$f!Ktj}de1v{#iEWfw6X1@GbV(wy-X5vT2iU5y!AM^SN9;7O
z-mp|0Xwk|?*xuQ1K;i~dG*+)@JwW%^b%$N3zq=&zroAi3ub#VG7kaB?|1rUZ<E>W|
zxgnegRxsmqK^S?tzx(2Rr*)qSZbh#`;?6m^LXCLdF*D(SRO=qsulTJfms1t2MAo-%
zJwLd0e*54q^Hb3QE7|@Xl>k5x4+%~XRl%-xRA2!geEp}HI*j%mQWB<E0QVgVD-a+K
zXisUDi#PQkx15#2GAk?>!?2w%HNB5}Q8(L<LKJxzyF1>(=nnkbJjAZC3WoTS-~qtb
zz;b-xZ_{=T5?#C81@fz%2%wchrDA*PU17b21wRa0437P)H#yfA#Yh1lpORo%JcCQ1
z^sLR!_+hp<i^vU*Nwrkzo3HXpLKQeX5#mL&Q70a$Z*8&Vg|&?>O1-qzIXoECiZ}#^
z3JU`M^8~J1q`T~zeo|bB^^)^}3cO`tTl%<1hHS;&-`ixbC%HYFx)zIT%6rTr4quQg
z)jPO*z%lvNMO)1&_0dwCCx^F?WC-Vq-^Y>g@}H)r%B$Of>A7-8twil`(IAQAbN@rQ
ze5K`Jd<ykdJDR+9N$Nx8uB)U5!J1pHxY@ckU}*3`+}rIs_xzNY1H6y#!w}V2>$L;3
zS83fwKo))6RxeL=+u~yuiC2M}gpFOX10_1a$J9)G!aZjZt$@=)J`eeALvXDSFp3(H
zG&b)3r+6E(*;;xI(UgyKdhJDV+n=_j`?Np`nRQ{@f~R7JW&sJYVYMaAbv8T{C8VJo
zM<^&04yo1G>B$*U@~iw%eH#HaxTdlHuoikw*8fPdHQA^%0c^xbe<Bw_aH3N(ZB1r%
zv27C{tcfpfEF&}!^EGXUU!kALwZ9lltSSgC*5$u$&_$)T%<B)9>rj1sZMYFnp|q3G
zr(3SoZxq|#3<sOli2RGK7|M;S^^gLuDR?kJsoO6h*cGV}^cI`${cH3=!|YG;fqd2k
z<cXZ5>exwoMVc+Q)DuMOQ6Uh7w2AtYQMMwx5u1(toX0#eNuM#!dkiOr1UtjaOBWJU
za)WLiO%38fRa+BC63CuYRQM15UPaVU_(X|yZfS%G732XOUZ`K`)^}*8AUu#pWt#CH
zVjmE_7QiPy#ku;Yt7w>t4JQDmoIugi)5;rB0>S?=S~DKfPPy$!RvTe~WI>g2l>2^H
zlfLGBuZzJ+66a@YB&v7DB<;`QnUWj6-Y2L8;ntF5gbAwOciR7R-;UKFqu3_FRmDG+
zp_1CQaL{x;;cV}n6m~@Ld9_#GpeLsTYRBx*0?4JB+>9z}fivP_y*LYdQ=qt!V~f)O
zG&y7RFFpN}=zttTxM%}S*g0^=sas0)f1be5lCA(F<Gz&GaP-QT%k}GzMz^B+j>S5S
z?iyi?M}(J@jYk;w*q1SQAD~)nhv&QQhF9GjRM<ka$q2Tdz!OGf`#SfeRY2(Xtz!Pm
z*1Jm&P$lH3i`KiRue7a3lI~m3b=WCz;PJretKH+a*(y9NwE@ujRUuqeq?Sxj^VYjL
z>ug<qsFDo~QW}z%1oiJ#?t2eYF0tE$4_kzP3edm=b;Szzx1F}8D1f}qi0}h^P2ykf
z^O0M($ky>yA*f}kM^Xi?j9&7w``bMGrUJGJaz0E~bV5|cv76mX-;G_&6kz-;;cjXG
zYl@jCS!G_WZ~r=aai%qk))GEMF{AhTwfg0+q8H~tvVsF%Ok#46s7t5n^WMZ}lR<G4
zF=b+TAqP)_+IgiuWnuK<Y=)E@36Ckr)L~(aW|%x|Jj37{_5VJNUW{+O00ar8Vy;$8
z|E0&jhjB>2s=*fdF?k*7?j${!PH`>*5=Gx9rUK8$)w%>D-XJ19gm+RNo2-tTuGKOg
z%ZK60wm+84ZmFtnivEyCa5rZM<u+m)C#td6>PIjr4Fy6YcRTjJrik51#6?jpY1yMm
zJ2My&PIvBCF;}IF9jo$web~>@ixIFG!dl1<5LH#6M)!M(@!*Q){H$Q76UTyY;Tk=k
zUNO8xFwh<+hzd08M9Ol+;ACITPZ2AQny&x*Vf12FaelBAs|N!kTVm8y-R&7ne|ESC
z^AJlwvZ}vHSIv*^e2Mdl_P7m+Bdu>hLgR&;O>p*iH~0LFtAeAx9BmjjD3PuKW%yNs
z&-iD@%HFZgk5IF(C{P9rDivr3%VlA{JLdtrwSakGSxLnl${F)+fxE)nar?JoLwc?3
zStvS%oIv=JIBom?tk>1pLo&0mw6P|hQ>{T_apkn6`mICE=JB=~d5l9}{dcRrrOXz1
zcLMttN@Jcy*9y1mzpk)#nEnV|l`t@NHN9K0UO#oUt;v;xQ-asytJc@YPiU)Y6YY=t
zk%T+U&QEQ6&~*Dl(rkO(kV(tgsxO)yc`|3D_guEz+MT+k$@@8xr?45yHIhOyUbe$e
zy8FLuRW?=F7YL<@N2Z58L4G3WLGlilU2cDpPpo2N6PHvOonfBoHA~&yttXe*`b_dm
zNh7Y`@-6y3Z@_FoppBU35+SyT6JU=X=RFXgyG{Cn`9VFkOE)&#$K(a7y^L89wI`^@
zx9HZpZ26!-T^oW*{oaSkjr7Y_9q)}98eKh>C_05VBe+#ZS9-0;KUqgHx=DiSwncyR
zPg^{=u?;>BZ%AeAuV1hK^kxN9IUxrrkl!cBW99|y@3YH)YzPJ#<2jS?RZ%S`;GaM1
zghpG9fN9??-#&7)p4wnb^N4!eJ8iH9@79Z}ZN;E)V^v8VVg<9n5cgZHW2V`PVZ@k+
z%Id3y?O(<#gSWh{%+*!i^DxCr8xbiUS*HiI*wWFmP`QRD*;rSpB@_I5{qD`S)?0vV
zZ22bP#f#dg6S&&B@N?<g-ocd1bZVRKdAs*aSOG0{Jzb#9b${t`wYFj;GE;pqYeg2V
zwE4$+-RiX&9)f>5GNK6b^Z(L6i_C*bWA7-CDn-pY*yMZV1soRgr94T3RqsB;eAwQx
z_7xyV^Tk{B*qiKwU{H!|7fIW_@^^jDmA1T~4d<G4Na8pCy-u&5VT%ic)omqo6~<9A
zqC(ZOQ@ayv&8QOCwe5D2bNSRib%VECF^t%0lyRE9Sw9xCzaAYb@#He%wdJm|<G=JL
zJ=0sSne0GJXg1f%t}Xi4TOy5Mp5UjV()^+Gym=qZ1H7Kfl3%l1ulJ@9(})BZGosAw
zq=U^*LHi8hb0~+&N8ZW3uQu$^Kiq5MP06%HjSWi1rwJ9?5Bg|eU~&zu!C2z$A1+mB
zicU7=lB5c^F0sK9tuE$1$)o(_u{OmrHN;+vVVxu`oH{~LPFdMeUTiDvLKcMT#oyD9
z4E5pRCT_0x%z$SH!dM6vCPO{<r?#0Iu=Ys8Raue6*674rVM^zg^B-fzNX`v}xkfmj
zpj-ttk}7`wQPF0Xms$t>1)B^fCe(W68+5A|hCTxJlSqC+n1i_&8-CG}d67pAB3%oj
zI%6ww^L!pEXWJ1b+WYXV9mNc~?EywFb;BO*m$X+I1doF!tVEE*VTBovsk&pAe$h+1
zm%j%J7CaP5s6?a!nsTe{^C*Hn<y+J74)i|K43ycxpTMRN!Zv_BR+FNhi>dwybMala
z9##WnWt{2QH@MbrJHrIzLk0PCSuZnYA%BxDPF3&H&wJ&z0oG#%jaR`cb-4M(d(}AW
zGUH?7!6}!+=7Q*iydcv&MpEuDT{3v&cbAcnj%27c2b*gju<syCZzOXY;(U@i<9E$>
zwSq?)h%*$|kJVi{UD#cxALN=_`tPUI!j-VUQY$b?PkWWH_#C3?WR>%N{5!zI)D`AL
z$@PTcfCM@c1#HuHO*Tmqx{m1)>#IGxIBWR%WAEzfhv_c%keZgrgUIv+7$<(Ap8JTc
z8N<XOuYg$wC&uSbdqekr%GO}dud>m;yol#9-%H=tCp~KG*a6hq%^?pYwccy(uR?mO
z2E1yaShg2OysJ-^UO<kdHb$At-{)^Z4b`C$k~cY@LAG-(yfrE6h+=c$7xouokqOpR
zll6!#1xOQW4M{mR_<LJBMoti+hq2H~;ut}N{xHU50$JqgKsfC<a0*cV<E7?o$^IhF
zq3XyuWY~l3jqYaKW?Li4#v`;VBvQuYFt@uYk_1s;s`k`*JtPpG!>{CEb8mlJkt0sm
zvb}6DmK1$;j0po5q}iA~B#)BgovR1H$!p!su02t$2>D?8Ye3k0i-cr7Xiw_r2h4lT
zuGA8j2Dq;h&<e&;aw#Hksopb8)NQT=XJMvB4CQELK735<-BIS(*P|uGs}RAa1>Y$e
zQ%0%}H^(I#^i_Rr;8-?$v)L!4rR~i~m%fo^tWFqGf`BO$!z<5w<ZoRcM<a9qC_e=U
zoSg1sDYhMNW>*j%hHT2Th_#UbC*CL0H1T78b?Pamwu~Q0%0FgHS|zG(N1K0EdWFH3
z(z-?~){`UD$CjCNqIv6b+w&2!$^=%Dnk?aFi?-{gJv0Jh!I=i(ES*cr@Zs|y3+B8m
z8@Yy;0AfUGfGDj0)W`q%{|STxfVWlq354TwhYMCg#wb0_hnX+5NzdrV=W>PPxF?Dg
z;a`*%iEt8wOKPlneHDG--5kPIfnrg<?Dx(~Fu#0lyFacbTv3guHO=qCYWva8`mNt=
zxvcOInvc*s@ItED+@rSW)2U`A^MmzLjxgoJ=-SO^3g$%%E@KR4DT(98P05x0@2kxP
z+oC15vXD3gLWG0x-{K-f-zl#(ITFe!S_t4Taq@!+0(I7Cl8>|=#k_De&<Q^*zDUdS
zZ!<R%KFbea>t_=Xo@K+6FC1l#`H1q4=*<M^mQ&RmHRd8Hd^?pV$0Meyl{My-7wv0t
z{-Qdj3QsS{xH9wkAc{r%Lep<(M%9UzyZO{-%vnME`+*=u2-lYuVuqaDU>-e~7o-u|
z2mda5v;>IC4%>E!d45utR}*W^l6kG#<O>%tdyAN=Dp-|Mh>_%?@0)F2J&uZGa(ZDK
zwFoIjNfi8t#+zO@QAJb&&QCA?oP`5RF<$v;X5?3Pa7Q#ul!TIy1ItjwRhoNXRAwy~
zwlLx)3|3k~JmG<A+r8$O`Lqycp&&(@eUYBn0M8Ug4!hdwf0|?IjWm~>b74L?jX6Lq
z8vCeu?N6HHy|!`P#Mi_N?Dxc>X6-uLVq8_2h+M2nCDKMbsRzw5>wdN?1Dr^+hq90n
zWK$kA$voM^4y{DT)5w0fR3enTQDL6g#Jj8`T_T*5{KT2!x#?rduC|Se2#jSbGwv)l
z0XO~g7E>YJ1A8Jt#^5HJYvL=zEpmMm(oJU$KGnQTaCWCfkwj0pR_jglGj?VM0@uM5
z5Q=BNhbs`bY$W-@)6Dqa`3P+Ea^6T(H}E!*6H<>e?|Sj<NF`yc2qi>ihN}dw!(w1G
z_Z()rb)}e=VBtjdV2xS%RF|$K#7ho~r)tb3S-0R7;Ge|~N(a-`Sr?ln!k$e$SqP?R
z3<-X}b+m7M)f~Un_IzkyA}3c0<kBpG8JXsxjliMg(%P_8e}A?kWD0mQ0dGlEIKWcB
zN*QD}JqHvEdKK|EOkjOs;lgT-+{a1&;Rd~A5Slea+ZeM!-=R+@s!G=_-0bU8iZk;7
zrM%B8{f-+zg08L7j$qE^G<%#`c!8xDw$a$4&GSk~8eTBw_S0<zT3j8*E|2AwN<QlG
z)6B;H2d+$SujFHL0TzHj<~rkC@3BMoIoATW2+pj>YbU^Nkr^v@>p>Z@a`RvW2{o}t
zkXwDI4V-`tN5xnw3ru*VNhK*1=_uJ&kGXdav<9ouq-F_XGUk30%_r(@*Ecg(mTG=8
zgn0J6Bwkx|kflA$(yJ`Mk(0T>x^ysFu;mZiYGw{~<h~i+%(&x6OiJ)!{6-ev+2ozS
zb&XtXvPXv_W(>u?!#^v-#NTifvq9+R55L=Aw%4%{_yiUyRg-tw8zoEpNZxIctX6K)
z{~BQLAMAJ7gsI4|w=lmSLr68NYlL{0L2GbQ`aJo*D!FTgA8S3T$%$qWR~aq%E@E(l
zB&tjEG3856GDoDr+yO$ViGYZ5p;}?p#N?Thm9g^s+^R-<Aju8uR|9&Qug<g285k^Y
zmM+P2knk?)X?{J21y6{-7*dkb*c_><>O?d5H(OfJiClqIUed>0^1m1nVB3+8?J{g4
zl9C#Kw0qUB{lDXduwdd7B6SajC^Bp!ZeM<kX&uKd*uRcNa*X+6oKGmzaoo%G+E@{o
z$XQ9?9ETAZ(QY=Y&WmYfq<|Nq;Y%h)$tu_DVe{sD{iIxCk(mNHq@Yb=;u9W_s?OJ*
zKRy*?(1R0=ubVyB+OI>(Im#{r#(wO+<?N`dCz?a}JzX1WuLXLCEX?hJ6VUdMBb(RV
zInBJQnGX#0SeP25mdO=p<d6sSD=U3z+`omDjSU>w$l^X8cTEqo;%BaSz*!s@jY7bk
zf^fy=y#5$-=$7bKj-yc%WbH!)<yR*xGrf*=yIg8=jijnjwpr1gsRcqUl)*kMRKy{s
zWTeQv-?vA{ZjQE?(q_;^z__67VqHDD&@KNaR<7Z}rOiU+k?yyQBJ<ueX~SYJ<mea{
zS_Rd;8a&YXbt46WCTJjF4B>)bt1E^$<ZhDWX2aWn;03ByHAwN_Bb-gWVlQM>!hRmE
z!KH%_Z=zHAj{PZEcu*C#kjEZ*5<e8zVRh|Rl3S>GHO|_3F;bLSJpty9lJX5aF)`?L
ze=+7l=DMhE1B1#BFHdmlR(U@xtJ_e+dmxLx$obcQ>`Pc6jDL9>ZJ*7wFX4zC*<2Nn
zr=>pSB>my_g`d$@sfV&1e^jh|$;cp4^1((>JTY0$V?8Lt49XQnB&%AK;GFO=@8sx_
zunRjh{U$nhy&rQjql}tkgGm7t;NKZyjyx^uWHw8dI41#@ppyC33t8r}tf-R_76)>F
z)B@l_QX$i6dMv*cabBbcVdstZo40oLJ((R-C?vLcN5i<cnnD$bn<$q_>V|)q?tAPH
zGD+54hCvUuIcyc_=9$0x$_on0#VBmExU4$cY)|6_$>JSqEQPul2LRGIylNO(Ny=VG
zrOYh{EgW8AoFVt)`Q0f+EWs{V$9ZUNFoICNu)j$?gKrQ5P@y}<DTGs)TpSr@rxRtj
zCnWHAu@T;oj9HwotT(G>+YLIba}5r!j+&926o>-SN<FdCRNb-v@7aePzaNXTWVg8_
zL)`egiLSH_h@WCpHrwa|#+FT^PI%t@`qKVSV~{(Z)}>zv8vjQPXRBA!*_4iS-EK;6
zcakSc@_MgO#2>y*<V8<d`05Jtd4m;2Iu&E=m~6JS>{E<Lzoyx&o4ijkx9*<FhFnpS
ziZ2sDhc%}#|02R3ofX#-AKQw+nu%g)4@vPGsl2Dmg%$nf%odkLO_)G&@tEV9<t827
z!+ma6f6+s;FmFiY8PEo35Hr-4A9e6(Pea8_B^s=(5I-hA_4yXvd^}ZR#$Y#iRj@eV
zAirm=wnhd5%R1+G#u=ba7-B|DiK^my$+i|C8*S;!!XhP{T1+XEhDGcC6ZNF@=%bh<
zr84hyR-Xmk6`K=<7OhmS^oFn9^FBau02I&&#uwq3BTfD5IhP0o5hwBjm}!Vjl5?)t
z68G!zv9g)QO=LI1v?7~`wa+U5=Qg`r5M%Hz6tl|+=o3d25+&;Zs=3(n2?v6D3r#EX
z^^(r)=DW<F6R{Rb;u((4_4Q~lBAqNc9n><8QDoNuTP8p%6YKsqr|TJS+HyF;>&nDc
ziijaD9zkrJov!EK-?x+3%wnpUSkHSlXsSK|@7Z96Q<OA%50yA}<Ei?B7jS<fQ9^=3
zS|08^B1x~%1^02ISRx(qv!$i@#kr3$tM{qg5Xm@8#dR$DWTfi3!_9wAvsHxfRiaZ+
zkt9F|{}JY|{`*R2GR_+xcb^#&JBR3R6nG8|?wX8bG?jVV<2L@rP16ail0ukK1gw%j
ziqvG-jK$DVu5xk-dWlnR?Up{Bbp)XaN>`J@=B=mkK^-7%sz~VV=}pBUhsg)GW#rx$
z6J@eGYKd+-gFF!2K)72uR0wuT$VhJwb>JdxXFB80eVNXPih_tF$_z2S8g@ispgd5_
zA}sQ~xE<jHgg)SfdMFc+Ir-t_R5RyqHfU!pEt!Q-IoNz4S{it41O=<RTh5=Nv&}yq
z*mpw{W^<+K&-O=T8-l8ev;-!Zrw@GGlzXSbm`G-zq<A6ypIB?|_w<%g){#q=8<E+c
zs4z*W&m1{$NP)%zNE<Kv@#2~0jXQaImy4ctQ?=A|6P~8d<&qBi_;<}CL-#39rM&-p
z=G=YD0nn@BrDov}`+IC@r4UhzMko$Y692G;TmNfTL;1$KAu37uaL_M7b#uvA`OIIh
zQ-dsAMV>J91%E<3<`(tZQ|A1;V<s{FndPJb<%&LGUF`KAX<Jg|!zl%kY^XUvs*H8N
z#m;%p;@i<;io=y4mW2t6jh~_JI?BCl9>G$goKFmvut!joNm`;}?=!RiLVJY^s<{*z
z8B});(0ECv8JuMXi!h9+2GL&&pJI&=^!ASiv+D#~GY);EzTG@Q&Hat${2pBa;z*|L
z31&O*2Z@JF+6&(5*e7H>!7|zo>gp&bOp=_62Ph|)m*k~?nEMGv1GY6BD<BppF9u3v
z(Jgz-<E9I440{iPgNLpUaK;YfKw}vT9A*Aly8EW+05=QCKP6O!$-|Aojr;x-{lif)
z0XE|3P<;(qdj*M1ILXTKI{g+}5Fa9G3}Lgj7-cl+9VPnl>C|urhijo*ME@o_b<-{<
zKRHGq9C_g;bTA+s!eG8?ydL(beM~-@LX&`^B{*E|3Xq*3I>68l1Py?2*;p^}AHq?q
zHcrx;zNZa~hQqJ|bAz0FvDLc#GeWP48i1PE(j{kPq;vB<cb-W&I$Fdlq@OxmEny61
z;;nw7pQ(0<y0(#zB%^~EgIF+*kMA<f3E}<CvgzvZ6HNUcS};sD5jh<apU1{#Q$NMt
zgu)Nb-GN%gCqHzUnY23UB_3E1u&HceRKe=Tk+8GaIkS5osmYP7rZ~`H41u@~siEh1
z=guQ-RVHDn!hZ$m4AL)l!ha_?XP#`U<mwDa_U}5efB1-l0p?Ocd;{NQi3TewoYr2E
zpH2!9Qp58TcnFc<<DFH<?*Dv0cYVk6GwbTe<;bG}Er+-dE$xf6Pf#aRI8U7zX<vp=
z45EhKA*q}&-dT8@t;mCbMW``sXV`iVj&~;aur-B(FYyhLgvX49d{w%7uGGo#9@yRv
z`8i%FJ3896*I)_6Tm@`0@<g@?24*7gL-Y{fmhIt<RnAD`^{@rm6(y1-h_y|=K3wg5
z8D;CRScmI?WD_+{U)cIW!g6!5vrT%6k17zF!~md3MaCJiBPk_5102c|mpDCT8bB^p
zm7t&y9YbY?_W~#2r1iEhfTA(b)JA}iJX}U@PO)=u&&b2;;0X~HCUn$z(mbl`FL73S
zgCH?svK~mV!P%LpwgVyd<_kLrG+m%1F->lOl*N9OM0WYZ&S~C95rxtuXcn5Y(r|lq
zT4_Zgn`i^8fVJ#BJl;9(Xxq{3K#6pdMD_8K_V})V(@kC|slhG1IAq~6A$-A~m-~9H
z?j_3>K@2?*kO$&AI(R~SBEtL=<DH|9?IUXAa9qGBS`*K4p7}NALTeZ6_nOoHc&qDS
z%MMp<g}OtjV+)+3*U-ceV>gsp6>fCC^Vt_MowQ!zmCgIi+;FHXg?QQUMFSTj9~kB!
zfxh*5z?6M$q;j}G93$b#DGYm(I_Plsm_@d32oX_ux5Y`qy_29We$bp6c_c@96YwRe
zK)acLpZWF(?_HfLP$N#d-#qiTeHNd+w*^Av&G(x)uVUX0V2|C~fqm=z>cYd_!w%Fr
zzq;T-GycHe%emfjt|{71U@)hjNbryyh!}Eiu5ruUE~V_~C-cnGnn)>5Qt>Yd^FO~o
z<x+Fg_hx9O2+G7s2na=~yWi3`ECy#Nj8)~}Z6y6i^Ln5sLL@|^$DY#JANL)ajrfG&
zDuPFl1mHjvSLsh4Lmmc9)CLl-3=<|6IS#?nm-WJ-2)@GDi{}pV8W{2tRH&Ev_&Z*e
zj+s=rngKK-ev_06n2Z2`(rlXK73*~IyEJCv_W_;4<Yd8JeUH=G;3(;`AZf(k8<}GD
z&Ih{nH{O7cfd#Hqw`F>_pJ!!QN^BVN{Ng?MY_k5?Z`%(>13(Ai;9^&@u1@-1zdYZ*
zn-KyFCOSisz)uQK)_XuwWM*J1sFSQFqGTaoCMe%-XWV+*Br`NgK&%jBqe?Kegk@4c
ztFLzQ>>y=_f0-l-8}A9;t*=S6jYty5wZ(6RPIXUj{Zh8=SSGO+M0|*Pr*3&v|H!bR
zUPz}{g@RWSbwKoif;07FTP#de01x<_(PxNz6@P>%8SlQVmtMx(+Y!9Aw5*rZ$pW={
zdy+o=6e^jfYDv@*k1-0+E2aRV?2a;pJMCO$i4mgoG&shZnIXYoUD>8{-=Ram<s|n}
zpoDiagLKSlSY&((>7Sprjq?~?Ni!{;suADmEuT<I5PKtBW}bB+S>TB3zW?cS<caOw
ztiUb8Q1U-iPa>i@>JhEjsSi%ouYv$ZY8ukQM>1+`#y$nQd&rJ~09K0uyYf~*>htyg
zrZAc;Bw5eca)KCiKkB;(6=d)ZaxRHg41rC&ZnZh?%R|9Ur>h}yIoBeoV36~xFH+rA
zmr{;OfUN?*D;lBoD$-{AH7<r^X_FN$$9Tlr_W@HpbeQ`@Ui2c)ra{En6kFht4^<(Q
z>t5DsfBt1@ef3(XMUoSJh;t9-y9onrc}J(j0SZhv-|ara){I_TSGHD2mtg4jal#iC
zxc3RDTn@*&9Z;Z1OmRx0kA9A7bbFs+t8&+3F!kO-{<u8%EAK6%1g@|KJ0Zw*1gn7+
zZrRh`qe%TMP_tyeyu9CKZqGaT3?i%8B=YK{WFPX>#B<!^_&i>n*IXa0<l5p86@&HW
zi`;KhY(>X#plL;h!;VtjTFI%C>?4k8SB~2%@OBwI)@^Zf8K6B-_&jJuwtGduR()9-
znWPjuNf%FW#}2a<MT9F<m9G)76Nj5$W@`II?w~P|2e!Y5k?MF)kxd^#QXFy;`#=iJ
zAL0(a*ft<iTp&$}d|#r<80j9`Xuo?HrNW|vWm&!*Kl0b-xPJ`yrWX7Lbh6dBul!he
zRlgjUSZ(>7j!E<<i>Dy6vKYrf6>Fqp$mz07UO(Gid4X*)if{t<j&*j}P=lsR-8Y7K
zpTeFdQjGn|w5O}B=et3#qKNn7U6g4_O!A>D^d00LmTlYQuBn3_R{G3mCab9f-38vb
zSh$2;Dum(tgjt}<J$IIEleeREhj7uPCdu5y7q}^2*9zBQdXzVC1a=?dF3PnZZyzK9
z32cW(putHgV!K|N?ha(Z$c$Ey6MBdJP|6zzxx3G^<(XK`;aE;0Vj@9(m+Ah%x3Eoy
z!uVvPDL@k?`!F4j$#u_u$hPP*nCzjBZJN8r!n-8&K?W2D`MOMZgEybp;W-J>LI_q8
zD@baU`_d)$RfX(3My(#eNR5Q5B_;VdU<(u6=dZT!BMH0EbD<8)Quw{xt-jBe=Y`0N
zE&(4{s_@Pb$X)8rYPMCw7;YJCTYPhttGvxYFa^d|3={I}7tV2CFQo$*Xyu^fOh`&&
z@535!w7c^I9s}BCM;*neK{981_Lx;OY%yUw%s;{`Jw=pF-)Q2muoZ*W)Y%}D48IS}
z_M*ewzyr~XP_zbvU%@k)${Mpg9^bxbf8HMEg3l?fJ<NsfWYw)9e{y^|eq$jy^KnXl
zdyKniiG5Tq$+{&}nw!aozSJwmn_uiJRlwBPd2k@f!Z`LwH-3_ROP=J8m$L}LQff}z
zZf?8Nd%vLI<Evz&$!Df=^rR>#aR7MO@Rv|^Id4O}Wh#lv-eRJ>iuQgdi?8he49{UZ
zb%f^>HDk$?bpcPI4{X@?8%=jFG^cP!DY_H-2w^x3HQqF+!GAX=O|gA|!Mu8HC3A^l
zDeDP>l2H$OosYx_*-aDa1a=0dpu&Ex7!K1@#kWWz?9c!3zGw%6&kja{!J~UacA0yw
z^D1Qhbwn27X^3>4>Bz*4!I_ejW>2D9k9OxS?9u@cDaoBi0c?1K{ZKm0$-m@yx9`oY
zGHe*3>Z-LIUS5zXVu&0bi(=ddC)#T4p5B!K1EvqNUGHdjQnh_iRz;%(E^!R|MU3qi
zwxvttb_4A$<8{^F#{Zc2A^V0w@tGZAP$T5#L#UFY`N<R9A7=Ar>%*&-eV36a%k!Qn
z_p%-KS)ErDuik!yo8zshFH5~Ck@cLSo;=)rtlT!p-Lb<4`O0I!MfbkJmP+t0Vkqym
zPS@<C+~qggiuPrc=EGIlv5a!p)Z<OITOKuB<bdCgbk%LP$>240gzpY(5A%|JmL!(T
zJ>HtYqgU5hD|(Pz443_8p7Ex4i6=gw8cBz{9qF!?TMkovV`&p;V=Hs0um3VrZnDK$
z+zB;8LMKz0pg!&9md~^mz|xVB%k1xk&YR^w>rmHMc7O@Y=rn=D$cz=~0VfhC%*bC%
z$yD!&dxtEgeaKjHBdWp>k|IMe!S*m5(9MOFM9!+AYpU5rL=Vex-FB3F$|_q-mdsLO
z1?@hUGlOZT&4SPEONu!9IawJP);;6-#=-7s)4dw5Ut5u3j~Pa?nKi-46zr(<W{kUn
z!$-D>xXO0m9H{lqo)p!;zw5g<dO7xi90`$Pz|@&Dorm8d-rkalVpNwba|rPFIFI~9
z_&bUJ=pfop6^|gaM)i8tNpIV?0=j55eu1-Rjjb3}jfskQd34xT=Yn;%jJ!^QeB>GE
zx_w@8YJQ1b&ZREF@t8G&vH-*m(h%eP+27f(23h%g<9tF5zX2^tkbJ!a$sc=-bMpfG
zAPmg{ZX}N3v0ly<r`sQ9R{dzx8<JM`9%u9O`*vE=ksZ3oIc(Ry6=EYEHQ!06=inmV
zZDfTCd#6es<t%%9-ye&%b9$@u`q!~t`v#(e*<LZtdGwWin@AY>wE50XZ)7@+FA){$
z+WF2LZ{Q(B#-+y>o%gzP#SxaCA+r+FHfA3#3c+<ncpG4Z*h~E&DDb&6on|-!Iu}be
z`h;1|Q?<V3oaC7O325i1d}wr<GjW1%IaWhf1jIIS9a-1rv)4KoUga$3JjClD!E!3)
zGv}piVkO619-hehttbM$7yCY#%1tA&W!N-E25QCLrT%`~mlPshbBC*dGppTIU>O{Q
z<A7XP4ACuznX-c{RHi+#H!p}J_GX=ew-QbzHT*+8yB|Np6HSz|1?Z4%h_7u)GMRgT
z&7eeq!vPr$vj^sD&WwZ2+>1a<WRUcVWXb|3fY^wx9@oPhe-)4N*q&JOcv>-7zdKX^
zSLmML(g|?J2#*mCA0Bk<YW-I#Z%78yXh91IFG6rMrB$zd71k)mBa)IFZ))e1<n)_>
z6~6KMUgqu?-k3@jh;p$JBktnbQQhy*PY?D09jLm^u<(RSk&;!(HvLONmnY*gY#$Q|
z@T;}(D7F~n!kF|T*}&QE?ffom+<pD3;HZ+-tbS%dPo6C4c7YPepd?^NBWwDpriNGA
zyG7E+z>Y;gDAqIptwK(eMCbopqu;nTR`Mc4>4?{o`x?7miu&SS{nuI&6Ju-&!qrWw
zXuf1t{opN11%X^UAp%t9aDnpgWj(Ec8cZeOQb7qLma!E3eXK8#B*{#%CGxajdUSKY
zdTW`N4;cU^45`uplM3079?<?z?Ry2yZehrHCLxD;T9d#_9t6$==2_oxFbRlLurNu-
zY8Pw3A(D)l%$Mj9;&CFkGJ41H%=ReB`ea{C1O{v_^Ry|B&d-;1N3y^gm6e&S*5;Um
z9)0t(F?EvDpjL{rQIB6+ZYCewH-9X*1)zUSl!ck>w&i2Z+4KA4UzmZGUkAut<>j$4
zvS*l6w)V--7P_~Ru$Y&c)yN!#{?8iB7gc@phvUquh42zw(vXpy%~j@`$NJ`9K+4t-
za&nc*&SfAM-e;=*?2`}k6_Cq`Nb4#uCqq4Qg&C0DH-Df&ff^gieZye};gF@119O<I
zNw?YRF=E>Zac%QnObOfem^+r*UJk_A6~e`sm&cT!c9;2`ZVnV&oIDH6IkCq@7jO>$
zub;W*$3FRVE(eRcZ(xw4W8?@{HRy`Wi~8md6PGhsB$buRa$A{X($46cp9N}JAS|rA
ztilY{LTae)ee;R9qm%YyhZpeU%dRpnzhsLow3qp&m^{N%&DSsRVF+eiCdJ&J$S4Dg
z=*t!7nveSQ&Cj8m*f%BChXX5n1dp9yPMpb;#H>28gnnWM9tE+Muc(<{3>O!8_m$@R
z_`dlg(^WQz?@H3j1XUqv#p5qDd(LE%S#+c~4Aijai2EoiNL9z4YEGQT+_4YpxEm--
zQqTBIujl*Z55v4$MaCn>N{!4*S2N<whu`$czkqwRrV>e3GUSaZV1d+_>eKBCBE=2~
zGE`nBHgW8&H*D#XKN|G|Lo|7O6zpk}|1_JHG0se9xwizfN2jS1Cz)ISNw3A}!~&`&
zjIAJ-Bds*kyijM$$A~8ZOH^685B6Zz9rekQ+-^Zh-~2&P0PteAk{InqWif^i7Mf>+
zeJhxBBzuJGK!s8ZzVWS|qbu0M;{xUAFyMrGe-pd;SyRCQlUau$S#5vXch0d!V07ck
zCHGG=_)C&tB|s={!e7P8B~TEq1~$lj!{#eWHbwVv00Ad}DX<vGb`$6xq1Ai!3^R6;
zy$A-@p*|K1G7=9zZFc{qYrE}t#EV$y9r2y-nS{OfOvho!wdx&)a~J@LQ*6SspPYmq
zJhR08?qaxPAR7{6l_gt*72w=cp^-tKt;DDZUSICiv*Mc0fY^o`jd0xt1Se|&9rB?2
zyyNlRh~1XEQvw>yeD~tBc!H1zglZd_2*2S<N>z8?<Yo@w*Jysoc7h8cj!X{F$#dNq
z|Fqp0R=1WYx}CyK1)}bat6X@m7od8JCK7D)720^UP%wnC2&@NGhR^CBHpeVr(#T!{
z4;oub45r+FDXOtRmyV5HzzvSgtvHON1w4s4NK$5?&VDp@0h1(5Ip|(sC7>#y&7os-
zXhQ4)84$uQ5fVg<;k3G459vh%u_f1+Gz!mBnwV5KP19e`rksG7ko;O=3{%txkLfoL
z<srgwvFtLP_i@YuPSTOIL@vajO3P$*<~;q(bb2Q|Ptat?Pe2+)cA!?iOFg4E-5I-p
z-(@wTHHp&^(<hF~dvy9uwmd%!3QKxUjmQzt&(yo8(iL$S!iP--A0!oAjt^Ga7j@}D
zg8JfF9Ze5FG(x<DQ9@j#5HdlkFjikz%1i9=4wO}56tH-!kE-?TOYPT+3!Bu<l=D9N
z`snT$dCuSvUV=~~S1P~vtIPZAS=IJA1%euq=hz;>AukidipavDFXtw9WcfO|xK6X*
zFbI$)AQKrbv=*wkGw*2uxtp#Af)@vy6rSjVT7Z28lwOjH=Qfx%kKtd(M@&8v0e*T>
z0n?r_TS=Qn!*&z|?mBkFf_ih~f9&tUt&|FEB0VEsmikLin}mM0!La&Jpv40T^Adu@
z)r64QOu95Y|JY^V`btlWm%z@V8_cw7+k`*}0lEW3?$Rr1V6!ygVo!%)lGnss1tTzR
zY)G3x2%0hVC#T0ts;wz~&8jn~<2V-$U#2E86(&0Z7>1f{w^PHKZWaR46pzHMcBn}i
zz{j8;B7n3I#u6{|FV{S7u38Ql-fm?qEm-@(P9%fPKd!&oxY+g>BOK5M!R8Cbj79}b
zrkg~2*Z`pj2P`f;x|O9(Kgp5TIa&e44NAh;2Tj9VUc_A?VE&SFzEh$DIHOL!+-x~9
zW;(u4MgU$vh*lV}C5xQ4f5%K8h=N9J6-TCo`WAfT^qoy1fGL8?Ly|DaVwJXi<?MbU
zX8Ist@u087Z7d7ob7$q!nCXPJOUS<j>?;V)avzPEjzw}9Yeyi2^3?SoI?mHE)A7QA
zD1{_)Bx_eb7gq^k;Om^bzo!W&45F<t4hTvy^GD~X1@_q^$|XaTxV=>A>&|D7#7yTK
z3nY+@G3JOI@|tt>voX_|kNhyvxAIab!%|e!yH4>|er$K697_~4>5D#f-d)3kGsGCq
z9V3WE5D^K=zr>loK4v<Bi^GFuVF4uZl??g(51gnk89fdjAZe(H(vvM;ID@`{PDNDK
zhPr0!YQwbw6^qSc|MoWB?<3q8$oKGbfyR^YVwS*P`p<{0uV|2@#;Ur!QSx$=PnRbi
zdb-wQt$PR8P!{o>tQ35@bU;<>xpmh0kzLnDm|~SuX>IzpudI`W9}|9CD;Mc{9DPtf
zqp5DF)~67#jqi*)&ktB1w2}ARbBLOUe5e<u(>z)H?<JR8z7{BjgQ(cV_tBZkMDxN%
z>nY5_R|4C!1YnU`JVCv@Q1`r_N8?KnsuohxAiolSNI&O3rl%A7ixeupo2v3Q<Vn(4
zF-4dBs6WJAgyV5A6k$mGk#I_43({51cY5o?wwdJBhzz2Par0Jv)zVI$q{}7KRj4MO
zWHmT&W#pi&;cH%~)}Nop11wEvaj<cM+?VvHQJGbb(4M5>5TQwLxdj1pGZE#EejJ!z
zrf_H01)9Zq38M{(5@D2=<M+p#_2IqjWFRWy)noCHYn9KxEUfn=P{9$`2wI2ZCtZT7
zAO2E5JTpo@P@wGsL6q=gLU-xLscrh)r)*t8B-k7pExLWv8+z<L-f;1JU~o{Zko*SO
zAEi$^@zZa5@cVr|u?8@@5Cd{Tqdi8%n!UPKVgf#peRVC=MsC@Ca(kkEwgX!`Ah4ip
z)7yV(WvEUsOKX1_*WkdKAP&)XhAYK)V{r74e9JLpAhK0)`2cq3Jf`~_d`?Q1vmDH5
zu4SP_m7(;gWM{#f&T__Vm~ht-Y-*?a1m`%%auw#IKy!MkFQc4G3>JjW&sC=w=aFJ-
zC>jfdKp-j->A&RP&fnNR0N-RH9tum4;HN%~atgnMzEVhc>VQ<JvLxsE-WYZ|ekNQ6
z$MtjuuZGRAqm&Q~Rc)Lwjge`_a{1H;%f-}l;{DF7Ke426(BPZ}d&TL+Z+$(So8ExD
z5w1xvewbIq|BILq<#b!>%Vucv0)W(&df^Xe%-N(Y<2(wY25@x?L-wb$oQqaa>gU=J
zG*Gb0SFi!rV0-ioPjyB;XtT&68;aT^ejS0Qzctx8AxK^{L4=1}0ydRiHs3Bsb22>t
z5JTMQj96};%e(;VFAMW*AEyQB+YnBW66K&cBG<XAr}rENlsAX~C0v0ecRFLf>?7&=
z#21aGBmc#;DeM=Y&2fU;c{Bi;x*+L@XoDRkNnLe}jz6Za0E+VhjT0owUO3>>Rr)r4
z^Gf1w{ayz9O0jE5$PuB<8EWcBy61mwWdW!|(FSNIn<_(X_(Ts~Z>zYr0^g&$lp%@;
zRb=v~dfYd*hLlKEzRYT00Y?<?Bd`_p=qi2pleRXK5PX8V<){GX1vmy!KyOJsEz#4B
zc)KO=DGfK(MPKNLUbW=~0ZtkFD#CpbD!<&V&;Gz`5ri;UFc6aCfHdVQN0~R4Myl}p
zMY42|ggsgHJk<1FW~=0&-y7kcmMm7VyZ7jqezlc3lJvtHs6+<pnBR5DYFm*nP!DJ<
zSjXQk(DzE@Ki8vVDGycJ!x#)Rvf;JA>Pc&CUG5%9j4eZ+?ni7G{jUCOu~&iroP=ha
z-5DzMsXpQjTRLoq@MTzT0vaHSHGa}w#an`;Z6PQDU7pcFZmRuK5Ao&*XRUlqRr|{@
zwWq6{U+6o2@E(heL%4Iio`C2gvidvyFA2vc^kYwiPXJB^MxpgPJ(a{VRKVBJBGKhy
zofZCYFeqDe+`G1pl_VSs5}Yr$JsW2CTK)Y_TbCtV1K4z-@dVG#glyiThwrjgBbX+R
z)JS|hl|Zz%>P@7j;eDBG6M32t5gqia-bM}?N(VN6A6b2*guvFdbA{e5@#UgdkmWnn
zBJ?iOjteAB&G}JZA(88>^&KVUWk}+zbwr1T&3dP|GKV0xc;jHnsDJxF@A1O($B?By
zSW_2fR^Uq}HhP=>m}QQ>Bg7REm=7xjP3QWZ`jd_JEjd*!c6b1FCaW8jIa&haiQpjE
z&1O53R8wi3$fRG}rQi2@PyoMlqzlYMqPk$ct|a{r%}6j5iRVv%w@ih9*0to=p<-ZT
zofqfNykj%`R@Zn-Zxlxlr-QgLWC(EjWvEYA>kqxfm%pc@M#wBL_(q@ov)65up!UUp
zAm)6lkNwD2U=FBhVb0?xHZzGlG9#4*`s@N7@R$nnFn~cN#D?Ru$abVo{X?JiCrydz
zB+P(OifmqHw);1FM5LRMC<gWoLCx>2)h}$YZ^QIoRbNMRmPiIH%EHaM+}j=_C%{|d
z?I?ThrT?lod3#!hb|9G2_E&MLC(6;%Z;ST<_PczUlKr#JH^@?};e$?6hp*8WY_~sw
zVBH(A_Fol255u}+^wblp^da65f%I-@5Yr@jr(jEy*6TmMrM-ydVh8j($GMTJ4%?{<
zy!{JtPALFt#vvXf=ni|Hl45|hfvWk?clPz<+l>r9$0-T}yPv#F6-dTe0oX;9I_enb
z@Tr(lAUXs-BZigilb!pPnEcVm*J1Wfy~@mD72bD_d(iKFgbEjGVVKMinkC6hg8JwZ
z_p=32XyFnDUe+j*dxAKauIXh4JR5D(^wiOR5gi%yrl2|0%bK1mGe}64RrjZrn`3Hh
zS{9^6IX=*{xQ(Zjnc_ZCt(@68@?)+wBuPwVi!L;;PJ!IKOF3h+v%owzMN3MeoEotU
zV?o0Xo2E_=n=w}t0Rq7QiPj~L5MtAH`KE7qR278<p>P%1ISG=3H3{wDjWj*@l;|p~
zSeO~>;Uf?klk(IV`b9%JGyFxQKLfOdu9_|i*_M!V?G7qPhaRX8ARmF#p#cZ?t8Gpt
zd<ba0UP4|!v3z(XH|tqDq6Ho`vaSsmyT}o67INhtbDjRwV?-2VpCw8Z>Hq0#_2LXG
zijHhU5tW>~z`+>(S=023Sy7@@!_^2?K-g-JY}-JKnQ%jlte^<r2XWDocZ^s6G0wuG
z<vtbh6}k%04k>Exue!3>)=0v15nts}q7~EyW}7Y;8a)I%if@CvEZ9f3Agsr74xpVN
z4y-!eJoZ0U9Leo=R88RAwJVn7jeM=@XP)?kf%ZlRqZcD5DRx<?H-GAEnrR0Pu8NWp
zv`r2r#*Rv&hd*~#P460q!eZ&b%Xi@GLB=sz9w@#uPM@>@e3*x?m!O$KR+ilB60dE8
zDz|qt|LF}AznEUI%nM4^hdlE2ay>0NW)70yu;#kT`k!dF6Ci=*54<ThZrC^2$S_aV
zAP-Hb5MUquN>j^B+=Xms&Tz?h#4@%4V|X>-_8DMmO2D;~ZzkA?>|=cvSWB=N?oKs(
zs;LsCx`9Q@8BS&aZsVnwnDg(mZL--u?Z|eP;n!)V5@b6M8;7a7QW`Mu=_;IJ=3W}T
z&+2E8->fki*R%SuaEWc6EtiB7e{R^^8)VCM-7B1KHD=j0QTs&O@(G2L%pNbQwjf-|
zsUmUv*0z8Id25UL`7jI;9mEu59jB)`P3Fe^B5@h)g_BIki`)e+$#NjKyJx51Stm7{
z{~i`|1uH2_2*dCUPkO}n!&+Y}w~bP#e`Y=%$KPTcCZ^KYC9MH?VHg)|S_2zrEto`v
zS;$=k|3KjM%3(Hennrk1F-`bJ`M4GMk=3$&T#pqenndqMUWK$yme$1hewh~|#N=qN
zUL+_<7+-SVnGdNqh2qr{@{0)z-4{N$MOlqdrU+`uLP0OT*L`NEEgz1M*z9c_><zED
zpM4XxPw2ex)cyXr8#^raZQeYTAQiC~Wu&DF?C{WEbTAxK1<uOixAE6;DHE72VEb)n
z=|gwgtcqeugmfn0%WJIVm_q4dlfGT7e;Z+U_`qNpd)IoGGLq3IRPSH(^_SbKAvI;F
z=GIFk&aDi&i%iM^s?aR&Tc=m1+A5+*0YV|Pr%Ep0|NW>B_1p5yMlcd0$C9%ZU19rI
z`b(dUl;#?Qah7wB&?Z6Wz)xcX>TUXD8+j_RZBoh20@G8;UtLZDjFFUkJG-+@5x_i_
z$Dd(@c-C6g+HH-nhOn<o>&*;_xazP$!p6Z4xh8B9o{8y2H-vx&Pps8l-Q)FB$H)F3
zYmGxMLESsYz3fEa+sr@NDoK(eQI!D1Qq}5T^*_@&S4iRBC^?x~;>2-zD=DyDpI&Cq
z9GrFyc)maYi-W<3c760RJ-H`!L~{}W&idq@#eR|q%qvk8o+x*}hAEvI2H2;FEH;ff
zCUeQ3)9q%xbE{=t1qM;9qXZgCRH2}WIOMs%EV5>7-?(2+h{?~DBU-#-bt-RonmYAi
zlUvodiVd5IlM5~~ad)zgW<BO?{ee>(%Mu4cT?i4$H&Vi;(E|AeM^VC44geC_gp%5x
zk7)1-C4<M65R%x$qzu8il^tm+2iiU9RmmC4x26dD&}xa_602f8o@y>O;@bV#-yZqE
zjLRjQk(j(j=w&#~5^(dXSB{PwF8rrSl2fG?Qy7y-_H%5)Z@F8Jh;UF4xFVJTaq>R(
zjC<)2?ARdiF-4&iL%=9306<qrkHp-5kZGzuXRQzyj|f^vJX{Hyc_W|54+Qi5UA8G(
z#YXg!{jv$sD14X`g$YuQ9Sj2;h^wdSIi-x1*a!(?p^(k3uhEGUEiFJ+fLvJ;hry1+
z{7&#EZSs$G?>g3%yE`8})ZP`SSg7HzeWI^EpMB+*Yox02d+(A(24QFI(SN^XMZTN{
z()ie`89A5kAGA?FyC|v^Gr<T;yp1`Nt-I+>bMPalb}p45jhBBg)BfG1luYsJ`4y)2
z>8_=8;Q*zmiTgh{0eScUzopOnm7=)gK(TKdz$zuw3$anm!}(9^m2Z+e7dH%ixRmj`
z6;JE%+qNv9mFInNs>J0LJgrmTi3+en3b8riVZ#!`T~wxz_&wUQvD91Rb4iHMsIde`
zA#w<l3-?(vMBW(wwDZL+o;e1qN_GHCzGq#*isBpEC==xut^BvX&iUT&vcnj6$bZax
zvX6HfUhg9$4x9<ap%M&$_5yizmp*B=%|a`-n1Bx-4YqYo=pi*eQrfZ?F%Gl2k}7qt
zT>Cq0K|w@P8~J_Z7(KSomU7aPcFq2puD*Af2B2y)@AB(1Qt3t>gKr0Du~djbHCRGy
zH@Fy~;*rKYl>W~jrNNNPZ{)+UkkKD3L?O8}2+6WfN>@{B^bLdTuV5sWm@vF1Nb>Jp
zucx)YnOwlWOt>nfy|m&;9U0J9pJQ8P@@-{kUD7O39XUh)>@^#SgC>L@g3U%>Mo!Rc
zhueM9xi6VjKDcSY|5s!8;?c-b=_>jPomOohjbU3D-9fD(3LjOXOGr<QAUK+2Z1Nd{
zNK!#9!73T5Y=#E4EZ>@meN~z;)=yXHd%VoR>|2J0PU81VP~m{~_rr|>jV=Ha$(bhH
zMNIDE<4pC47zupOtSKwEd5iIiVIk@fr3ce}DnyVZkdi<s6hh|2Ml}OQ$H1?~oT$Ig
zMeax3l$bLr0pLh*`=P(<<2)AA%qn4swfvgmcPRL~ogtQxbI-U0TP9z-?04OAowY#^
zMipysB3{qcyK$Y`8k~0?LnxorL6|w1GsVVg2uZ47POjXp*H5uW2T(wcI(!6hy@>EH
z+D)qZ@iqN+TU0Be02V1Mt^_P$UXqm7jeo{Xo8}V+df?7ALDXnWtQ*dVyJw0e!GBwn
zHV=)N3Jy9&odfNO08=rCb^%~>W87crW;9a;mt`$X)F}S(O=|>m>d$~9E=>)b;eL>a
z`~_YBzxM=E4Ok$3I+jrNcyrtnf;~)9qpE{z5#m#PY`+=FagWWUABc*biTXjLC$$sx
zb3}}UV}&Nkgx3Q)u8AA^U(21JMf?I8&MI)QXC#5uPf}}g<NWv7&%y@|bi~6qr}15+
z!`N(=J<+)XNj}y@dj~kQK!rBct;J2r&$$zN#C__wuK{f$fM2K{rNOF8<Ib<OJsusH
zWXFwwAs<%Z$FFzK7-$<5>?mHtoMLqsH0GM5xTmJuaw0r2lL+qzNL;^ivg4*VlTjd9
zeOUoKo$_SBph;>^I4<Eowm~76e507pF>ng#_V@{LYkS%j1#4><5tTh9ZsmKnAdmFP
z3=!fd`&u{0J^i)!gsuq*SYxwndI5QB7PKWi8tDy-=8UW3n%=QZBGUs<JEMJcFdZ&I
zOs@A8HbBx9ES3NSu5BMn900^^J-W8T`qD9~U)He{cT|<aYFvran0F<rn`7fHD6nlt
zuc?u!7!k<$yuZ`pUTfJW{RB3EcIHi7bZD*Y#*8Fv&Zk^tuDm;{6}=Z4+)y!6nx&z_
zRL`}yEX95ODzaH3+Hq;)O!rgH#}DwkZ7sGO%{?emT~)l$Jdh^`T1S2)$rvAwb$bTw
zkKnzMB$-mdUQ++gbuSu4_7hAFglu746tu$=CGPtlIlUOdk%1OWxHdPC+-B<eb<UFb
z*k1T?0HTQ?M}AB)6Q;0{=Emxj#j(9u9fL(R2vo%*TtG<_rka+=7@hHkZJ9}sy`^d)
znhU=D?)s}&Vnwv*Vv7QC+-{2!D<}9PF_+`t^s9~k(F?^+N5BV)Zkf<CVqIsoZr-LR
zFSND*xmvx8*|QR?A7D}<#z*4(JlmBRt2vbieyG2iZx5k-6gy(P#b8Y&67aKadWL5y
z&)*TTr6DEyIcj@<qkr?Pv)HRKppmc{<EhxIIki4tq5aR;2Z|9dj|}ha=4=?q($!V#
zb>@eW_cemy!l)v)A~t&7X01Q5H3i(zJS~Ih@Mk{PqaKU=96+{U_^<&ZF|GYcPxEZR
z1pTsvtZP7Qqri=R(D(gl+vH5}%)s&Osy`#h0)j&IvwzzkV3-KiRO59Z`8T}BcsJng
zZS$NF`N4*WbR(v+6m|CZdX;CW<)$PDIao&+ZLuWdn?=WYX}4bUZd5Nu06V>;P(z2x
zP=SN>qH|!0>d?>=AXtRNbE4UNjMdx+!~It*ayEDYF<E@tV5)#$&?39MnR8fR1eoN?
zCYhOs+u{+$v=ClBA+BTwZ<uDPc1Mq9je!~vZ;OJB;FgnmNXbY*G7UkJ$PmA*)Fqpv
zzdFj6X9pxDm{_{v5x;T3!V?a_`RC|uJ#4)fF)G5@I*A!n;3W@>u{FeYv$h~PUbjB_
zgJXJF5(q$+XbM0I;2IOd)6KKZylg~xa0u`ckQSp3eh6sD=<M_Nn52K$sxH(K2^=Ax
z-)`<sjkID}STaW%AuhZy+nk?lYsNu;fn?yrwgyp`z)w&rRNigoZ0~(QU&IzC{a|yi
zxyKwneE*jTkmb7D%y;QAJrVWu0+kH`HnIBG1^VQ^wg~oUOQm#VhJLn(EwO>+Hu=DU
zaXPcNEd#hG8kLGk(vM!s(bpwpEz!qX>WH%H6n}+HWN$DVZSo1|k<cVWLu(m(v&4P)
ze0x=QYLh7U>H(i-<B$$mlj>vDcr}&CVZ*l8!suVth=rH;zj9vOB;8BO2eab?#R0MW
zGSdG!FD@>&S0!^;1Q@w0P+4Cd4o*NI!CduVO5Bd5UX`3cZx;W=DvPU$d;Tu|jloC)
zKm}@$c|qLj*j^iHJ}wBIFf7Ew^?*BwNC!I2hzjwXB(q9|SO}}&xA&VP2K8%2ED*v_
zETU2c(iqL>;x_YP<!PO@B#|^DIu1_*gx3UZ9yGf=E1hAy^=30*5)JlyR?6OI?N<f0
zi}xCCMO+^8ezJPOwA)~>4p{I~FbE9(*n}Ri3|QnLm1RLWnUd71#b$w54u=>rWf&L=
zH-%*3ke?(2Ub^Bi_rtsQC(mN}c|=%8$(Ina$UvR(gmZi$nTtEwRzU!^6OME#M`mib
zt#&R4?8a1hmKotR0SF~1e~3b`!zt$wx8$rYgeIJ6T)FMP?|83prXW{aZj^^PkI=#!
zC&H1&or%+qxZZMe@_9DNJ7;@!tpvIXnaYc!%;7_#B)2N29I$TI?obr2t%3$JfruC`
zxU+uKcf4(lGsDTWDMN`YE0I{&Y}eB-!)6ZU@eVjfJogfi58l4uNK-G@g*Xd5g8ft|
zbJNwrqs%QIMG3fkBtk0@^CZ9EKxD~3J4e443z8d<WuTFZSUh(!AL`0S^%;F_#So&l
z_%SPL@w0kK9{`q?C0pDI0K}1(QPA%A7#yCkou7NH-u+zc9js}k@;CeTJR4oeUvJc(
z`o_g4i4`{!dUdhwrZSn+8qAX|u(+YvRW&!3atm-sK}La*P$iBvIYS3Xj#)CLmw9BN
zq97wRj{8a9o2gd~AF47N#AXvJ@nwe^K=uLbNmjp1a{5MfcV0R|vdy;V0AV{t);~%d
zqjUH1?uln=u{CD}tLYGLWh_P&o0l$$nvKAfE%~x4B*C1A4>{|XzCCuGF5FzBfd&&*
zg3!qF>3O?3{2EKy)v4I89=*-1nntl-<pd{jZM2{#G=(vrAm3uVTQ}1TnzC;z(#+px
zn!Hv8h^2K9`LkH?Yow^eJIv;K+n_Tu7<a&RcbUaaRAd0d7p`g`Ln-|J#tP#KlNiZZ
znYtj{F360)my%Unow+iV^?`c~_84neO;1G{Qp?xt>KJPZ&0~E4Ln!4|fbT)vpeM%K
z3W*9>^F766@Kbj#Z~r|fvY_s<^K*npeXIv&*k2FaD^o%4Mo&t9&~J9PHCB7G@&}JX
zJo107N4vIWaENT}2x6=&Njp>ju`W-r6}jOmAex>#BAs}vG*z=ikNc;sD+0f<w+`tw
zS)KZ!KKfi+*QswQYR$(wF5MO*hD{7j5QigQBet9)Kh#m$R%Ma$n*AXbViB>w_*~a}
z!_t{+9l7k^2b)Lx*%ol&m)AEC6D~GIO!M1+)eoIvYX<ER1bhY@>#6F3LruA%G=&RP
zo{un$Uz79LrVAJpYc3NB5pPw1<wyc#kzc7pJo?IK`hRJsjAYAFXYmE-3&`nj@6kWV
zQ-w<pvBAryfO!X0#bG32IMr5lrhDgJe7L(w6yO2y+dxR3XRUMeow|41^vERJXygQh
zXgfe4ZLyTM>9u0f>&iLL_UU$r*>sw%@V*NdGzt|wi5Y6nq2{wFTP5SofjB|(bYzgB
zBvDQ6V?syRx<R&(qY|g@pL$spg_0x)H#1!$pjdoBy<D?mlkIZnS->5TcaXWEUvw)6
z+-TwuLX`pNSX*dB@~sRt{z!dtt{%WHENHapEhd6S<ZBYuw=e4VUdAMc%@o@X1l7zo
zGV%>C=!@Qu8o-idsYehL7`zkJuGjTj@7jvOkT8_n^&wnjy%y;cu<g+z7Y&Td-&!Le
zQBu#ouFqX&Uoi%i7j8b;A?&lE3-pl1v=BcwmH{|_#VvX4WBTMJlx6^{;Ng4UjVogJ
zYx<>6>?;V`X^y;_C0qH19{GW7l2b3HS42kQqSaNe>0dr&sIWw!vt#Q9gq4VJoO!X?
zDv2j}uMI_lGKB;diR$H2^MhADnouG6IXePxUzyoC)&4wFIwPg5sa_T4nd@!o7)(|X
zB?2Z3OfF-y&9h}u){3!%!>eJ9<g<c)Llo;-SGlj9W;swZ>uc+_)`mddBP9Q0kkj1V
z@}OomG=wTQC}Bn&b#kPHPg3fStoDN88!9agY+;sjVo&H5kzzyZF+U}Xlw9REKaGs)
zg;pskvj}VyNypNZy!*Fv+QDd<qMFtO%9>&4hbr0{76Ddnb%2kT;M^P*lC2X4#w6aK
z-qZE^Au&=81!D2mrd1%aL{6uC<Jq>nuq9Br3i9GKnAFt0x9Xf6Tbvs%YsL;I#l$h+
zqMsOKi^-GRhI<5nEV#29+Do%m;m8FV#o0Yo|50Rr30H(T0)=xDhe)Kb5L!62XMy^|
ztbU6=;R5^HEMA5$y=trcK2bWiVRTFh3oE-mTx}f`kZ#|kC#2h758Hu?kIpG1rGMO_
z)ADU8L~f#^Vtl_v@AiH;xOoS<4}E2AT(7tBVQip5feJp0^C(dalxK~zg`h{nB@zxO
zZiwBt>a`c!XO1XgWysKANDSPde=oG9aH;_cVp6H47l;bC&eG!xY~AQpsQ*Hj$9bn7
zy-ueO_Bz)_B9_WF244)LL^2c>#azuCV~~ZWC4e0P86r(xyUFZ+#a0l69I6%O05Ncr
zIrDdO+Ve42BeskT)HgvL&T)d{9AWJ+_nHI<C9UdNQ|f_M<oH|Z#C?AZfhe+_CC3DK
zp035Hs(XKrV1H0t+=y=W_nj+HZaW^-rNXZs&~caS--6|N;72ip?G?yK4dTQ1aA)vz
zpBlH2P#O-8&gIYtM9RB<920lo2Lb7_4Z4PRa<oRmJ6TU7B$Wx%OmaHHdu`OGqyr(^
zX_Z<2rQ6El6M{3G#VFqvpx1Oz-2KgQ-(g_0*;2#AOo@_!Fq6zNJ8Yx=Vl-J^WebyO
z!e$p1IfvWio(+0!ks~<~#&D>G39?8{vj**&%S<n_O?0sf_z4!gw9%|M5_78<#<*0Q
z0x)HWXEpm4_s%g<`9sA{Ro6_?&^n?o#*W}?N?tV|jOkm#0WwSy*_IGZP{PF_7Io~~
zpX+lUU~$v&K*d(>5-I0^!K^amK3hJpjnQZb;EOA%U&S&{N@b2fD+TVhdyn8UtZ+3|
zVk8g|B3-rKs}DN8bKL|?fpVmzr()<VdO%}hEn#2>H{;C&ACjnkU8q;Y(*kdOGruE0
zd7@hNx?WL688L!wB^(9leQMoRy5T%Jm7%`Grqm=y3?{N9^~EB|DI(<n2*Ty^5jfA2
z)I$q(`7yRUr>wbr6}}?C>5bH(H&wo(lMavU6^M_5EwWj-iQ)CxX{yeQy_zs|tYkGf
zg8)u}wNd?-nKO!FMaCWo#0Zn0Rpd}RG5s8VynFIV`u~!@N!Y2bJ>DI5W~X2Hx(Mhf
zsNN4mNx<L`AV?8yL-qU2_uLGh*bF6zPco2m1dtE)6g}-NY=WpTJFqRMkYplFU3!jr
z>$)iMZ{>qkCig+mm(^GbaiIVzSXMTD?%1vRiytiPsR-k-O?x67{0zvCTXeyuXt`2`
z5J({gXraJUA8m5(?j4)WK|C-}SF=GzgLGMmD(N?8!`i+eixJ>t>Vd9fa2#G>)(-^%
z)2Wod`xKh%q*SnNrM@f)!d4j=zSGrp|1f`?<w;CItYt(COKzpvOZ6R>*wP}9Py#zc
zw-iRQbk%2xc7nDl#|sQ5z8LNG@(*>mz!ql{nL(~_<Xqr>8S1!qbnk$z7;KG$f=0GK
zsSmPT$+elLUSFa|T^!wsaoghfRb7V3b@n0R7JH~yE}~Qp&ZK$-nsmwb@ZVM)g<!;C
zn-7vv<^=g}%=7x&7i=NeJiI!DxTv(3^$+u{oP_<b0rwf7CrCmJ<t*_f&*~NUQ$=bP
z!>GjoWAr1g=^?%99xB-1*doE75%`15J5AqS%EKfg8ubGMwU9o3ew$v>VqcNVb#B$9
zh|GsAtjAp4_7N~5wju=Mm4FB8CG^tT$<936EE|mt5hW4f01KN`U<Oxn6V0x%G2)}m
z3J46H*hbdI6Uk25$3V_3A%C&JC&A|Ouhu)vly1y7D-i|@A>F`ypRRJ3na9Kvj^9Vr
zJwY=}phXe}S9g|q>JZxk$4jZz(rAM&aKR^L$!oSv7S`4XGDg~@s*SgsQ;xQdL)>XC
zkT-&L2nC=~;$UT-<~2zSx#SDV#ELAcqTq@w*a4D5>~cbag~an&v|02s5;eF}j7;J;
z5CjQ=<;)_}bOprN_|Pmxh)tdWrMIek(mf%^0vFn8u*H`6?|0mHN+`t;5x{=~PLfMm
zt$)uAEy6F!B@X0ByufS}-db>sPWXR>od<MP)$;JS6#@xG35dWw<%$$V(~E*~Q%DF2
zfh1Jx4Y?#C35h8*MZt=_p@P`O-axP*_6j~53eSS5s8~=Go}#Fz-*4vJlY)Nh&swr%
z&)xg%GJ9tB)RQnvO8fyohKfM_tbXq7vH@$@?=fU?WhS&{!X#GrI3k}i@EzN^S6+M3
z6zCqN<hj%El{DF-c##Fmf)T=mCnE*(>_m6R)hZ3KojDD`;TsMY?T?g6X^xP}ox6w%
zNNS4RzuyttM>>-Byciz_NHYx3{8c{il2a^+C=$O%NnVFcA-V9Au6L)8S5?MnGK34W
zqXv{@1$G;QW#OYl$AMXzw-%Zd$y86t&cDecKU6G*rQB$FQkcCP2cG#n#$_l&3-(R8
zrtCf};j<!lhNXa<`gzcEMrP-O!`+ug;JS)0l4Ky@mWez6ij#tiPr{EP2@c&oazto^
zU6hA4vV~w{V(C#9Qm5kkPW`q{3~`c;I9Ca2!=J#MQ|+8|Z}<1#>J;HxQA7R4;Gpvk
zk8nC=Vl&C+C{MUE_*32C0xpu((=&&C@4Ym5(|L!t_pHs(Ok2123z8$CmVRPuh9mNP
zC2T{(MtJ;8$I`>%Qp`0u&g(PucT#j#8+qQG;84E2lIc=7u|d_a7@*TlzlGNKYX(U>
z_WCech$ZV277jqfh@Stm2SRYHB6&N0CD4L<p0RQ^X?tPIv>Lg_xGg5Iu3lGJ-QW2q
zfT~BWfDrYQNfbYGhW6p<xa53m#7Ej^RJeMc_jv-RAarvtx32r!`+N;Tg*Rteq4{vW
zRd~Nbaw24r;4+Xhh4vfHwGu`SmbH|!aP1(e9m&i4ptb8&?SS76k-02GnkhwdT5tV5
zF3fbm5xa`m7?24?Q?0e;H|;V3w_BnF5nQ=&kDX_&drq6%Z6ix>+eZAWXL{e3i_XLK
zZfoy@+M|Tf(8lH_UA;MMxYhLt{dOKAuq;7;J#d-z%CGy5kHb{k_(j#IzjSR7A{oEP
z8q!k-3UPiF;R=D7E%U68KGt#a5Ll|c-?OqrLj>`)>H2$rVHAW)Y`3t`?C=czJ%MGg
zp&m=E7cSS4I-E91!CDWMeC$La%4eTD*ZS%{{c)%&f{aUW8V`Q+$l2C_4cc51Zfc>p
z8c1f2zRYsGtt<&6OMuBz8f4OJtInHv0lZn~f$oY4wp3U><8|I007>lt9Wj_|-VTFn
zs_Kc}OhU$`^mvnHLORq$XfjUKU<5>;ZQfL7H8=`EN+Rj3ejlvo`>|`S<kxi#qj9~3
zNpWHss4QzAunzSQ1yxhEho(q$^!UEk>i?*>86B<`-)WmzJ2XOD(RR!nrtau%YpmC=
z&_UY$5=~XxFFPDda=T**fekDSMPiaUajy03!T(q?LHGWW!R-PREAV};Op>YJX`R-8
zP$jLDHEAZh3E{fjan#)h*uMo7;05+c;4t*{+U?el2Ws<J&F&7>XCRo)puN_Wy%fL+
z^E43v7lS&IA6X?sqX5_e!zc2ZX#UeGZ5_TT>;)#Xm(lT2MwWzU=sh)Yw_48()&W{4
z4l`|=ILXk%V3Z8Z2K0=z!<mCBAzvY%nox4e{%Bxy3Q-EfPbC2S`rXzisS3$M;Fn3`
zV8%3ZzqKYG<@Knl#*WSKAO|nkrJJqPcyBVesfa~o|L%5GqPB#pKzYV6k9=pHnd0@9
zf&gS?;A;@<*MGHoFgG?ki|jlyXM`^fA@@z|8duv#ks{oq&9dL{%@g-n=l_1BbYZ`V
z|KWUua3z|jpS6zn_8Uc$<k<&6k3>0$+P}0%h=4|6%ic+E++}U($Hs_@-OQ%hTnIe2
z&=91Uqq|$p?;Ytu#70NREy{C_?&8(f0Usy;`>On0sqb%Nt@$xJP#GouaPQLAX)V^p
zowT)}zM@J{noybqF5#i`ti8*0kQ`iI6xYeDkTF$%ON=<aT8K%k=%t9Y=^iG|16+?H
zndxzbMn(eXE!F-7Xene|#4;>tk6dHD-&qGi5a%dxLKd=aLfO{MAL;Ky6)o~Ul`T#)
z=iF`;a-uB1-7rW1ZNrp?3B1Egj^e>O%gmXIqS`~USCHPT!0L654xJULYUJ5z&Un)5
z>2E4|-UX3m??CWH?^svuiT;*>`R%$!>%_ObiQ$2b8b&sVb?=&M&A&|BTW2QTYwc#%
z+Rnn;w};AG*bSoTsQI2@9d@M-LLh1r&I0&vNr|EZF0c+7pv&eyH6bH%^+9nd8c<VU
zjeo|Q58;L^nZ06bxm&xhx7K)DJ1#5-Z|+=dwSdsF73~fe39s#N^C2pbOOQnMho4?z
zJ&{fiTx>93V-6OVU=Rg^$t70d?!f{fl^2Q%lyIW9LpizoTWyAZv{d7tC?Ie>&78Y4
zFyIFT6@+UW!v1Ioz{#fjc~)e<A>L>+sX&2}9D9m+BVfgSrCmCF9&~E^d_FFaO^T^#
z@(7PM8-5R*>W!7tf>V$(M+rydGnC4@?+qQV2wk#h+)!_)m}fQzMt|&0x>|Xd=mfdw
zJ+=qxpYqxv2#`a(Nzegu)!(_?`Y~4LJFcZsv~j2r;qUO}gRP&IdovcxoM0f!Cug*2
zKEQg&+c4bo*cRDIAfy{hvM&9UE@E7tS=o#SI#tJosPDeRdVjBu6>8$H6S}}AgAgX%
z%Zhm>Ixo_@5knx%{KUTkeQwoOA_FVYxO>V?Nnv*Vrhv6wK|IeZbhhNKNijFS7wGhL
zbfCrxT;+rk_CCP6TjoQWxb~k-YWLav`ufT$)&JrJkZf++9hm#G_CR{k&_`AbKPMsm
zBOiLhLkhUp#=QMiAiAa!FhB%L%+2DI@%3p|v4=P%&}k1M*}2orYdx)PFM9Jqgl-BW
z*@_K?a|>l!w|wD!m%-%IK)4f`CjQqz6rak-fQPRdCrU0cGx?LiIa{^I*f0*9qFK=+
zMR4kTjdf*bJ<?JFA!Q`QY7#XaYkjxH`#O0FS)3d-n@4q}j{}eVrI4&@WX|a206mgT
z&LZoNUlfFIG)ed<$!EU)IM8{Qwvkt(sfrG=ALC-I{5{&*;ZmrX#=jKk=XvTjhP}%~
z5@GPa^OC^VcWb}UylToi%SHkK&$bM)&iAfaDNeU_EyzWb7(dAR^-X@xP-uf1$jF2H
zlDv!aCI&>N22cS1X=<sY76mY(g2=n}M&QlS`i<;*{9sYl@DsKRi6haRc&7DCe{Z|k
z6PgL?rTNZ2*1g~8c<@H%%+BN3#B=YqhXOnAS3ou{U}Sd&0E@=ccu8QuRr(d~qzX}-
zp=j8?{yY%H2(?`(SIFsV-TapR7!4R$?p;Z}d3ockRr@m`JmW~|1%;8TN7eu+&k@fA
zlJlaIYANTbD14LevyM!2^X1<6MVZk^=sfLsBBz>+R|2aR{d=d>)=m^g52Fc?*m>^n
z1>Xjq6%=Bqs*c|QS=)VQA0Vu<4OkE+WQ#edy6u2V1K(Vtb0}eNDkT?yAv@0#iP{F~
z@qWp^uQ)64vh3nMs~0lTw)!zunxshwPc^ut-gA+5DHClXE<Mz&k)yilzCfor`+Om(
z-4}#M2r&{rg(P#sO@Y&A>#z4+H0;w~SB9BTOXP+;{tyPlrXRO0kl@{S1m$T}K6Vr0
zh>(8%p1`e9=2DO2mRwTkH*4AYO(5|nJ|>o~R)C;m8vvWt45hjVhNQ0jE^yM0jvaU}
zqTXohAmIy;W1+76NijEk7r1Swc7a%;(i5aNYkm#5-i-J;EK)AKVm<ChcnJO+ILn)s
z2xa~{5#-pOJ%OnnZET&fJXkZ^O`tshZ<4l|wF8J^yA4o^8pk90op%NT|I^8a$PO*y
z4SIYL{3m@Kc*`R<W5d;46Gc+!micmbAjVsXH;VRwaIlGOgO#E)^;nmrE*Sp5z~lei
zL=K^CMmReO%aQZt`><|!=NfNIN}zV06d-vMF8m=d@qdHGc_kkrfWA{m0WJb;)k&+J
z9YcF;xU19Fu~YEct#3jRUyIa@n{BEY`Jl6Dc#qh76j)e44WCbm;*orW`~Ypxm#dtM
zTYr!ho~yp|z@!pt+GEZiBfQQ9Si^8hA>jaD6+fS2A9ofU*<;haowjC|p^6IE;T~Us
z3J$*obH~$8?TJ0!lNl92gy%|5Ke{0Vz?_{|2ln_<=2L*P5#@s<>oY)-nwblpbn0v!
zla*xEwnPZ&z_U_j1M2Vph%>FE$2s0o2&kQj`W6TN6!YLJ=Yf<S|MdVQAhb&){6O^S
zXwyOFEvucOsXcCFs(jOn1Hq|U_3atBg_vXRbAIpb&1ni$ux$&#_xB%m%EoygEkIi$
zx*L>4%vUPFB|hk+9?@g53_OLHhuR9el!_HID{X`;k^;)S*{O-E9Fye_Q35Mw?^!R3
z#JIIiV32=ulG2I<J**auM24w&%85<rF~J)fTLcy_jJb)4ctM+lmCkun{SnC<tEWQV
zk_>ae-Ofe*{iVoOOriE2Bg)%w<O=8fVLd+f@WjIbn<(iBUP+(=7LQ{dbdoas<IYDi
z;5~<LahNo~GGU0;hUc6=4sSi6#>i|Gbds@0e8~E*cTO4ZPgwjKXU?w2o(_<FCB@G;
z*R>vjM0VOG5j-!jFpwvMBmCbz&NkPdcXqf@e5>dQpIg1&S()w)TR^%1Q3W;$GNG<8
z2S4FVJ;vKV@KZ)5zTV3U3ASMax#JG!hQU6zNeam3`q@$_Ui9uccRJ(y`LN=~FaZW+
zX@$RMn%+-1i;wcpWpoo1LXMKxW$MFD=@@_GQD~zugvc@;m%8aTr+e$xbCDG3<sPM)
zUmtcBj`zAvF_W0T-5$#bnJ9SJd9&F6K{0qFKPs1GrE*C#%#ACYindECsEsEc=$)9t
z+wR7PojK_~`fCnKtkwdgR*AWBr8D+;|4b)w@!50H=(6oxxNfVQ8H2s^#4C<ry)z@^
zP-L7NoHebRHwmqERWsHG-M>_9iw%pNljFr<PHt6u;s8my>oF&0ppPfq#u~c}n*!e7
zywV{`-QRE~9_gQH`>wE&E{{705AvrZNNAIuN-~hjE@zs}4>(W7cvp_EM$RByZKejI
zbD<K<3y(X!9KZ7@2oi`ZIU~#qcRO?KR{UzDlrQQ?#V|<z%g*PC9(myU*NbnHK(NQ3
z{fg6&;X{hTyo|%s2)nA)a<T}NX7X#!52-%RYkpQg!72yOmAms%=jjuC>f7pdm=%HK
z%lU9?p1ao>l<uETHZI@M!-3xAuX2v_C@dR1DS{L^8^SLqhu!AYN1P9%C|ZD`oQ`^^
z5^QnM!_KfcpDIxzB7&H!w^&xi!=TeEPIHp1s*?8ujF;q@!pso)60n={pr~y@g@&a`
zqB1DkMv_{5xkWG3*S3bwR~U~CxE8iQ$y{kp?qpqe7VQ!j*UbA+hl1doW?9W%vs4lj
z9o%b^wR-_nko*-QYf`XCO%=NW>u=t7Xg>LGLxY=bLubLI8|_m5!d)H-RMM@Xqj~N;
z9W1N9Cd{Y79C1e@xn}8gI-$}q$_fY{YFp01e4J~E$j$<!lqO0mobr^lkDp=ncvt~h
zkxH^D$@`N`Ba&IO&tz-UG6iANE!T${Al|c?25r!j*8n1Rq~k(4aPo*o7g|u&LZp>l
zMz#^EM9LnE(C|>AH}?*EnbvN>IlQU$;d=S$*7;}X1PIkZveAig8buLn^9|md)iV~&
zsK~QuhU8V=;gAra+ji1FJMa>@A$oSW+gEe{s>KgYikTT)pC;d-Yir$G)HRfhi0<t_
z*PPb6X4&34F-_>f<3`K@A6RV-xkAU=XRmmz`FquVFChDEb89yRhVrLC%0B{`r%(5+
zDH)<?Le<-3C7h$nNAV&!!x5vQO*MC&Y|Y)c&%W@k^*@47Jqj#&L9l_5^Yw>Wa5pXt
z3CtkB%?qsVMgO({#`YILI#Imx>phbYUaGS2IM?boMu!tK4t!1S6HhqiI_^U2jB|BJ
z-UiqO#d0DjjQoV6D0&5>Yj0gOdIuDtpn(}N(3*Uuj;u%Oc{%Hy#4F%bt8A{qaF&#9
zkdK0R_+u=xifa|p4%Mj$1IR~pan$ygB=O5t;RZ!JRT`tfd?OO=k7FKXPi0{40QRTO
zCo6yx_8yqz13>|87L{6qdE5$0N-Al&b)>aRG~~wp?rqvdea55Tm_q{AXCCE1e)1HZ
zb%*%(BnNFIZ}nwa)_uh~81B23h$Zq723tST+I+7Lmcu0#n+)7q9xQ0JQUGv-A%^r+
z6q$q`63cM7^>D?IN;DFX$I392l_)OpG8=S`wR^e(@>*s?Ddc$o7K1J^v#jf8DWss@
z(|Bc&Dk4G5KR3KTq!OYeX{BpH0piP0VG|K^s@3%@?<3VSc)OYt&$T9w)doT^d8T`s
z5r%=>qo+M|hr(bm%~e9qqjnq8o(U(%Oz_Bi`U7mFkZjSp(UpfS>X7%|^u8kqh>nQ$
zm@5`qx8+BFFKR`3X+VmR@gQEm7AT}BEQQUmFJEijxyk!&yHyKfw5>XXuU8$|G1KaC
zul}?kTnW)<w{afeo|(U9Ss!1ekg=rN6TFi>1*6&1Ei?Wxx+L~(8y)k6kPMRCBq9xk
zueRQNUVF6P2C@tAJZ{|v(c<VwQYD7=(k0gXU$qO`3er2uYEe_Ai#}%O6a|#wibV1n
zfuLI@f%|>dc?S*^BxpNP(TYS*ly)4ey;<RrLK=Zt)-y{vX}kjJ8pM=D6r5=2?ipzv
z?d^XDoPlJvtq(OVdPiBHDqiR^^0s}35?%TKXDAN2ZK$!>LG>`fn^eJ@SH9Eb;ey=c
zy}doe9DSX&<!gnAqmy8Gs$@Ltd$V=jPtgwT=0xR8Z%)V;yr2kpZxo}u+3$91YY*L|
z4vS+uqBG+6qcIdkzpO>^NM$|9JHGaP1ohfh(H<fzZ-cb1!$eoW)hfW{4}6lK2NLK`
zvEEsvE9f{#>y-55xQtOPyKtdQb5XPP^K5ibERXWyH3VGhO~t`G(QG@@+Wm!&m{U!O
z8^PQ(@gn?oxiz8N(0|-*Ce(Jf5tJ&0yNf0Bp++5~u%%94K5{V-$NERCYajl{e1&62
z7tMHN2?s9;Ibb#c_|@@4#QZ<DUb2CU%>ub0=RNDH>_L^hzUA4MLu5JzHq=tAs9~e^
z*$E12YsOuu>-*M4C+^cs_qOJa0}*NUZv){!745-{&|{PTT%9YB3%$Yq%-iQ17!=yR
z(KaLAwg1)(g=lNef)T6jSyn~@!(%sC@i{tt7ED?Un6x8+jr`a;B_rBClagWb6sH4+
z`-v4iP649#fuv{$q@a(j?}w}X8A-AZqDN#I*)+}a-Bvxj%F?9tO?lhWQq9Wutrer9
z--yo2pU*#cLKhL;iH_UKySr^$u|j)O;yqch$=aT*pGMqZs(R95LMr^g>g_GMZS$CF
z+b%_$kupFRuX*dF(a7_ZWuU%eioBGD6uIukxK%HA*;+K#OcK?OKJ7?%4`wVcbteyu
z8+mGscB90cIths(Aomz|#iemqJ=sMdrLYZ%0MRC>_2&+AZ@<ZhWD&VgW2<^6`d;Ek
z$l2>N+zW4t`-AR$mA5+nrz9LDV_ljQ=N&u2y<~Ijx|3qIW`|&x2#O?lLi-@@nq1L`
z9(2BWz4N0Z;}k4!nwIJ&ySQAkEvt_(zNR1Ai(+H`?4~~{tS0r9l$Rp11oy@ivweuu
zw@b|J>2X`fPBbOtOU7GJ485nH;~ac!%-`j)(vI>0bxKrbBK2;nSyAg`9i!k$A+HF>
zB)s>U(Z?_|2zHV=>v4C09h15+c588oct;V_p<jig@{F40o;@mN*r~Bw>5h`f(>!Hr
z74O%+bT2+9Cejoq9Z6hE04#|P2zC(##lvBDcU{cDE4vDCl2kI#>LQuA$P<{oz&-fN
z&V4S>Plm(`5Y7b%;`a9fH@HMWe2~~c^24G^WU86y14drtE*}sR=go!!FvMfvKTL*(
z1T$!%o0Z~&N_mxdeUglOqx(&)514}D9$z~~1G)MxadZ3lkV#lt$YKHnP090@yO$oS
z5GGHZ7HV)sw}fu5pW!|+QMUwO8Ddemt{(fHtc;+6N_XS+{>ln*wI;a1I}UQi;$XPB
z#9erK=Mmn@B^m|;i@c|a5P~9Hu*<pRoX*>-bzid46=}T|i5{Y$&ro;%%FYKJuP|aJ
zA{ES5v&Eg2>ppp<57A-`QW2M4(2{48-0Dkx7#2LTk&4<9s00=MTI;_0tv?&2Me&QH
zAJR)sjBC&L`(X)cvQY{N42pbNyu0=SA2yEQ-<j2O07*W8QQMtw*7ysMhaGAlau|}z
zB+*2=yXklN-OzxNsSX6!?-3%j&G~Ghb}Sn0>2hSlDOU@EUUs1S!`t27eWKG=V54Cg
zlFb;YXtQ(H<J~Uwnxk6{h$)&e1#ZFGZmHjPmL6pgS26`juq05_DR#O$X?3?(-q-O+
zr{jHzKo1jhf*W_Y4+*tMO%w?OVz12f1UGY)f<_mT=$BY6J5)_xQL+b%V-)%<5|<))
zy*b%g@j_flQOwq&Vj&VFZTG%SUL*)j{rOJSoVbI2>LO%-5DgS}5Pq%`;!c-a?bI1D
zL$hNArmC>0vO7vgD1ek`)~&F=TN;y_qdzJ^`JwcIV7tM`Id}ijdB4GNvgR>h9!lhT
zd?~q((8LSfYp(6KeWY%Ps(KI$F=z;wH|ZHu-DA$|mUn`Jv4pZC-hro}%uO;0Wq7#w
z;G%E?xwO3P%*5Z*bRXyTKiP+liSXRSRhy37*M1Y+&S&@_RUH=Bf_^|Huy)je?z+-$
zw=LzXV@bhDY6<k|P*Zu&^;_gN^ouKpngSb*x?Bzk5PUZ73b%{pgR&t4BtQVd-i%o6
z?%xU#^;&(iZXJbi$=g6iw5#2bhiFgef2h2?zPU;D{xB6N<+@VWtWc%`6mlj*bF9#Q
zj{ly)Zs{e;AWF00rnTfurAQ-;>%9Ni-@VZ-<NnTD$7Zt#-VC$3DCG8H#9g1*XIFRc
zb7kkPd2*n%qsu_Cwrhd?;^W;Of4Gwn)sEyi(LAuyeWI_DV}MyoHKPOs=kNrx{sQ;f
z<9*UJDMDK7M(&tiTjH<o-RX=z)4zYheMsmzn=2*-IDY%VdC`iA5*Hk=B8|~;c}!5Z
zq{w~m9HrNxLOjWFkn%`99%VdQPOq`Q%kB2bJ+QtqBT=q$8lX<9$(iI19oglpbGvTM
zE|xW-b1$H*eX}^qqIBWOaa+A}`PW@a-qv6EN<u&^rq@ho-FFI_gb5<t)F2OE{8ST7
zdKdSw<GYS|tm{@FWeDtb^@N}BnijD$+3Y{ieQA3a0drO067tZ+TUj!u&waq|b85^F
zA^2f7&J1K%VY*WEP>d;Szp~eE?beIaDx@C?I;V$cW4t0<+>CeZHTTA?+1W)v?YJ*h
z^msdOKHNU!*0>jTD3o+hP&M(tN;Zprvu;}+ck#j)=~mz+bk?vn*xaG<cHh!C=S_u;
z7H=FlGJWPAW*;?0+u<PD^%R+q847VtHoLmHPhaR$N$<G~5>yD3D7}q+U8|M!mP8^I
zNDo-20K!|g40I1~<pX)-Y>*2jFs{arN4Q&CI~L7tlp0r_c}fP(FiT?G0hjonRbxbP
zquvb}nml}aojd0Hcm;vrK+wg@*u=aZ+sAbu_WO1q`U$3~ySw=g9~S*Cj4dMkQjBIM
z#+`A$4<~9gDtbUZ%+Aj4mRo#KNp%HGSQnaU-Z;Rmy<H*T>LhY1A{Y|?%5B_ufjwzP
zx6l6WBsUHVH&<K;2c88`xjUNdP1kgL_c!Q%G1Zmo%L%|y6HpogR+_mY>`Y0B+gOF%
z7{U^X2#E0nd=@bY0mEMDE*j|HOF?we(jYEypAWd$y~XhbiFP7Jrn&1{_s>>Aq67+u
znT$n9U51zDy9cdm6Lj!!t-()TzJ)i_mu~NDU$SCX#Cj&SD)vll#Xa5Umirr18o@PI
zr7j6EDw*qU_QVfmqZ->vrYBr0$GPRRd`gVn7OgExK(-mVc7CZlcD4^2#mZ_pdFs}a
z@jKP@ALYJ0&Ijg_gG{(D&!*Y$JA2mn+*cAE2}=}S36mR@?q1i*M#qt6HJa26u;jIQ
zAl=<|S+@}(kK05`#)(Q^x)VnHW0w2kJ<4j!#v%(u=5PoiAc|*Ql6m@9d&#73xAy3=
z73d_~2USL*aw-urBRARi*K~XCHRUL!4MckoaYK9_1ngAzuHRHTho8tBrVtZ~vJ}cE
zo2IaPRVy?nB6$cf{s~h_F<UQlcLjZRBiN0J4m&6LWTA^w3*67L;|@JV*%YO)VHuJb
zRbobW)w%sloV*8MCzHZ04LI1PCbOsJKFdx1KJNKCeJSWWqA@bp9v8;enTeq;)y%xl
zZaPB+0hkSZ$|qs?dgI;xke&R6&v20Up^79b^rXln)WsR*gM01qi@X0-sVphKe)@Dg
zyhKnD(_>NwdF9L#>+Mr->prV2`U|3l5DUdj#Q<m!*FS9^c87ww3Atie^YX-k?Fgc$
z-r<JheGY`}eCBi#?FfP5?9GME?$P<aaGXspl&Fau>6o+o@f3II6^iqmonWB`+`%Iz
zd}G&t61Vx)7&+7;aS@<^6~TC-0zLf?d&kdlKfS21tgz&k00Pf81Aey?BHcFkRAEZx
zTJI{5em2ppx!K<MLQK6UDB-JGZ)X!yjLb|X1&ZI^<2<uLpJNb;5cG^9IruAL8Ts%o
zyXe_&ckHK38*>GVi`v_PgZS@0WN&$?+l}{i)<+~lmZA~q*3(Q%xjX7ceIRn=`Czoz
z_NZ?T$<Ii3N4^!;FHWDHW64tN4=Nd1(#+OuD4O3>@&lL4<|u6!+Z8#y18(JCao^A%
z{PjdIeO&V7g?cYM)qUM+hiej&CPGb;nO*80`noUF6ba_q*xP1>8<Cmto8<X;r2EX@
zI<Uw@jrgrWX63z`Y-S|5*FP7RFR$z}kw?SL{&N^z4yk#bcAMsOdF#Ti0?tBcq#vX$
z(VTUb`^Q)n2>_7#yr~}FYGCr%{OC6K?>=3Qyn{|5R6uBhqa_+~H|CLh%r<A`q8^t$
zrJ}hYw~z$5;>^R{gP!#T^9j@g#LS66&yn&9_rm&la`tyKTgi@Ci|cs`>n<VX!cbaH
zb1zz`q)g;%u$mw<k-d5Fm~Ic*51;AF-qOboNgc*2?EI32kNbS^qxQ(_e8Ib@eujjZ
z$;&gz%zwx3RUcD?+z#?);}=)sU6*8n3rQ)n(~kV^qi?Y|2C~6qIl~-WzuUg+vTpSY
zxrP%BH;H&5NdU@I7c+iFwbOT~_paYpj!80aer5OkNaYw<nU`(5kOE4ix52M6-MoIf
z)3_?mE!0Pdw?`@nifBzhWVv(e5z6QgSxRfAXbSpXgdpsD@%GU#t26^=#a3Js6#^lm
zN#>^2_9e;PGA`?~6(G6*ChOk}D%vEPMUUD`Pwuw!<`{wJ*4EUCKL~kKAX?Y_$38nr
zyK>#~(FUm3he*SindaG#exTAYu&nyoa-Rg}Gt92V_PXY7pL<sk0@e(f(~21|^h_Ax
zftB{)1<KID-Ry9Ma3E~Nu=;08-7#1A_sQEI#QEwuJ_2(!Qq0R$?#Kyor4Vnr7m*$n
zr72zqh*@7OaPwMxNP&1qN(sgU^V4o;^xJXwrt2*(sIS65m)E_DGu$Tl@3}GVIFGc;
zkgQ)hDV^EdX`S31_i1NE6Y+Br=>pEh20gIRe(^lzT#$TydDv2WQwoJ6U?i=wpZnRT
z`Pcw34oGH2Pp%bTr_JBlyS`9-K<L%jUxMSJizO2V0_;J1>^I`OfAFQ=tWwMyGm(7Z
z$MB=lKJND(zXh2@f54T+k6CgYa3vcnoQGB@F7fb1?ok^*X9}8S)i{Os`ET7)NMU)@
z`-rzL3;y;}r>NF{>;99^rI`))*}XhI2QeVsjfgAI0k-4t9nSm(N(b;w8WSOnqPN<_
zB<_Y8aiUvxVvoP}vKF6+ctuR5H`~?ty|e$t(z_O(gZ3Fo6*W1VuwjyW{+<1$HCxy}
zHyAA=4EKg9?z4-v+(cG=E%iJl*ih`11tIsSB%<`xYyfr<ny+@3FOG0?=g?06J=}&R
z2QKP3ao<fbKP0*{`YEWC6W~oVO@NX}7^fu-P?eY~;&I@lWwzV*Xd)cNO3R~~#|@!@
ziKfdcXX$cn_R<4Ou6R-RVPMZN^Y3?Vf12@=bzxjv;SN_m=KR{7bk~?Q(K}M1iu6&<
zyb9^Wd@11llykuij7Z9u2%(hBr%*icSw3$jQa~iT<iD>4kC<Z}9=u|YPa?n;%kM1r
ztS<pk_*NV_Azk<cL6EObbXPv<?IdpjR!J?sqy!vmuFG>H_X41ju~-=OrHGoEojIw|
zeeE{wQb?U1aM+d|%B!YsI+t2bg6`9b-Q4SRDp@2dY^o+NGKMg~Oh;T+n%yHlS1`et
z5-N(H0}ritn%v2s(VWg(P&AEFik*#tTOat5(??Q#rz6qV;f8}{F4Nqz+4=1>J);oL
zzjC=HJZSnM?*CHwDS@c<tj8{j;C&A!Kr7PB@NsUJ33L$)3oNG+DOtD^$qqoKU%I<1
zFV&As40CfJr=%^@jUTkrd2k94s-x<`)QTaU^f$8W-~HzNdW{YV!)FgUEdu+ITrThD
z-n|F_j%O&ZQS;$6gTCvC2b?v}>LUH6!1<#~feY!psGch6jho0d24_k!C*0$lu)iV(
zd)+(;?J&wZMJ2B9pykeC8<`vwK;q@aii%zo0dm1OXUgYHfH<sa_$cAM=hZzUBcv3l
zkjWf(g>&FYO|U*r(3A2Y1kb3TvcNrOp6()+Ho>&gmRinGcS}4LQq1BL-8-dH3zfj7
za-aMpT+T5_G8!3#pPX3l9zUB2a8DtTWVZ*qH2SxHscU;U)OxMCrqOE+{=)0vqIPM$
znD+5aN6WOm!TsTv{zs0@qDDRW1}pT1nVUS(tY7ICb?GU9Nl5!NBdq177n#Cy-K;^{
zPAZA&X3}@^{Ax7083pF07u+EY3d#yM<J^EiotqRg6V|#fG<wbTEz_F$kCfWEDW#_N
z3b*`v1$aD2SOz`Dm_JW<_k{lmC^E;N>W(?p1GJ!hn!_-;X3QDx^f}t-DOf}mo0~eu
zoL26RJW1Qf!}}ZX)<FWuP0BO9BJPUm3LtyJG!$}7CvmdLf5N@>N^Q=PG`R4l3YIm-
zBtGkYA<HTi1y+5H3ej1~WoCJ{8}qETqfhi~5$3@%_lPUBt#oe1Odj4@iMeLNdG1GJ
z50R}@DO_cZ+{7#sI@>+{TKymy_~Zp^%e$Ig&NCO^>TW!y=aE_2sM_kjp>iZMDKiN#
zy1SQZhw<QDW0akkWjDI7)M>LaKNNoE_FLTjygkXPC)=mme{$18=7-DOr^@uFz8EbE
zfZXJ<=F->Q4+|7RcrIa};sR!_S?-ozppEUZBR$LHt#Q|T*g?>HbJZ~LP#!bPJ>P6z
z;$H1)ryTqoe3x6Z_9^$2i?ul_k&(^<MopJo^S}GtU46Ze*P|ViDY4vb=eUP0)>iLe
zJ?}ho;hpZ;-uOt9*wo1Q!xJL)Avf*s9<s^!I-*MOIHEb~LHEIhIz}#ppImw1IMo?%
zcW-ObRuR;2^dtoCh8x|n^R$insV(7YCO0$BeEXm~#+!6jEoLuo(A>-{bMR7kWsUw?
zS2HYH+>?2S%!nu4CpbK&qMM_eQhtN`d{EoGXT~^+7DEi1$%A;Qd+bqdBk}YW(-*}K
z#~{6f;FC?vQuox$^%tWgAr}P4JG5+b#~gS17;n_pL(5GZYew9T?Md6&IbN^fhHBg;
z&4?S_3ubCF3Ho6Vrr;Gf@pP}hzwe15$s%+04ceMh9l^xJ?P%W!DfK1*Y6s78f4rKX
z78+hFNJdeunfd0RpnC@>kEA=ZvKC{SIVd&w!PnZN`m<2W9I*?qZOp55jk~%*VWj($
zfF>iwp5m8zO(01GSwZ9xbLPwL+T=rJ-0b?<cD}qnj1?bTbi4l4L#z;W^XkdMV5-Lk
zPya&!;&mMMQR2?O-Iil@49VAw3#!<s%#EXhM}Mb3ZnZmv5(>@0AKiZ5JfxDUnt7x^
z{I1u$aqAhED{DIc>8^W>rc#P3NAG=+>AlchSE!9y<cN!SB5PLCSW_|0Eqt3@E9IRP
zRs)F;ijaBtJolLK+Cg+MYPnS^l$Drowq4*BdxMRp%#B+8%!cdTVIlp!>ZPJ6KcwDG
ziPzR#^6esnS2Oq|vtX_}HBFoI!?PN($|xZwj-zXX`$8`O+-g`-MN}@%O`d8>ZgY7_
z38alC<R(ruuio!oTB+?G@|UAzL-ye!qB{t!bRUjWAiEysfI(tDpZcPEy->z1)5aX&
z88pY&(p>8Kc;|~Bth^7|kj#)7T<5-bxK7PG+9-z@XD&I_T@#@jGB;C(@PwGwAv@i-
zTn@I>=pE9hq<N**{a~Oj8@yF23ue4s>n`k};}Y?%7OvdXvF6EY_rn=F#SUL9Fo&Mz
zPG-GO<I?6xgQlT7aC|WT$rxEqhu@Z(<ICL|SrC_BGe_GKA&_A1*)O|^a`#Gk;Nj65
zo@27u;s1?t!%yn3JMgGnlNoV0$^x?}L(~4wXPMWU-N!sa-4PNpE9bjiCTgEzyrAp3
zq_De*=8+b+szkr6H&5aXcu8czfXFh}y-fF}6>GB$<>@{sp%FVCh64&kRCvZNlegB*
zn4tFtp%bo&F3)h6{&SGFwa1+hT>r5j+}hu~VVaMz<=_TUj}O{3?+JHQm3Ap@56Ci&
zYuwAK6`)#z2%lBsuQ}*R@56{9VK5Eq(AeT$F!o<|C(mS^?Kb4=Vq3Qv5#fs>x8)gH
z^@-Ms;-RE0bJCCQ`+Ibn`7L-p@lB5$jN9d&=n=3Ev&=I;KkgRI&{<B943beTc$7Sm
z7Jcqy1tMveBZq_%$C%@uaqDYn?0_n!*Qsu$C*zF8ZLgvpAL_yv-An6r?lA2p4}Ci?
zaQ7UqM}(}0;A$pLa~~f{gMV99+DR%h$DQWhbh38NA$FZNof&<e``A9GTVjq_=nlv^
z<j7*wWRTi&Z?Q2cZshFliks951v$*l)7&40LSgJeu|UoBT5pA+#3EC_);+gU7ujKJ
zLgt#M-2c_KEp*t7F!Hg`_wB3PuRAeX7DlCth-!_@lJ)NTQQGERpb%PY5bC+R-0e<J
z$)<%enT)8&wn>DFq?m8tbI!SfQol&Ca2k0*q@c+N?eCucM_YwqL@Sa8N;0w(^Peo|
z#*^tl`67l9;e_}E9u_4(ILn@<T@r`m8(L9MM1X2xy7qNHOrds;INOqbXAV+zY6k!M
z;1GAmP;J)-=PdN3XxlLjB$=ysI$1|5ND8-TmeEYJ=NsojmqvNF&I+q>jyElJiBXX(
zJkPmvox+NEViL;LLR|t$%|O1O!fGe))5E1^F|wI3ED-{7MK0urlueZC#cAfmdz^EA
z(oaHOiRl#KpSLxk4n5sTd={NV2uAQN3R_I->E^Hg?(i%0_vGvemv5EKF<8U;c5`nZ
zuOG{bU<V*KmV6DnZYeexc^zn7@E0F)8olby*;Osm#1@~FNVy90+)(Gj`3x!#w_5M@
zBWe{<$Vhdes-Di%Zz&j!RJbZUYX`H(9-L`@j&Ynv6+(qhap@9u#?9TGOU~BDkZi56
z5y}G{;$-dDFPkSyh@_}IL(!S=kF94pc~p*Oy(q2g_%ToXO!LD6=haU*(-dB~>iR*I
zARc|GmpOrt7?>?lT{|Dll-RCa_c~|p(XA3GnADhrzp`DTitF0d-FvNqu=36lvkH#0
z3FhF#-SZYP61m^-B;`2R^h|Kk`o;O>Fm2CjiIB1&O$y*ueDAz%Yoj6zQB9m4F_9>f
zR)6L6I7;!AoLeHhqMs(M_vy~%&5GM3W|_zPnc8G*H81OQGq9`sO;Gn?vb;)UAE-HQ
zCe=9WXVN8^2Li`dDd}8zZL_$e-?ox}KP(%)%_z#{P>8T1yo+8WAWbpTH#&Wv(a(?F
z%GG4EQDyVw?{&WO+jN~kh$uLe5A(KyTFd~8n)$wm`<<mTD8WmPyT=uy8_BkgUf>J}
zYd6v~iI>u_O5w28^W=TctG?HMZhUuz7ehq2g>=k7onZcVh`aG`b_fj-@^^W-`6ps|
zQ0AHVx1C#`?I(9YCQq6j7>yvK7zsYQ$?5uqcH-^K=NOM;qp}0YaMzp8{I{ap(PZaw
zE!aUeojp%9<{9hb@7WREE9!@fHbK%j^2G$R>@92KuK+Vmu~^YCseonQ_Hd^TW;i^|
zr&Y^x@u*2K&n7yLuV4Zs8OCKMgeHYgq+sJD3;Ln%YOqy6k?ML`rsR-*>`-^X{yGdV
zZ+MG$!zL26Lm48JOJ;-X4BWwpiK3st(TRv#0VJDm94GU808*!pZJXIbj(h2zx0RJa
zX-Lh?S3mx*6F<qjBdiK!l8W&C#yj~__-GP>76hWH8Dc4kE2ty3)k!@I2${-Iq_eLK
zf?2R^gERUwn$eksr%6^j#1)kDP^;VDwvPKnH!eh)L}``!-$%S?1;3>g4PB)AGZ}>A
z%6Y@ty+H?&z0teL_HzqU%(myPp#%EL-egsC)?%~}OJ#CT_m2bVK{Mh6iEdEkux(-?
zImA6mwvAD7jRdhht>>KwxR>_O<|wuamZ60iu)lj@H*cWU@zL6}jgP)VZY=6tHsKkv
zP<n&sMVg`Ue3FCM+RMF}^J5{Q+G*k1t+LnooG&*{=q{65yxcKA>*1pvsFUhu8CYD+
z$$i}a#_GqXf^_l`zGC8fxSRLtkK0d`2#@{T551|jZzo=HKlh0^9Yx|BgxG=AaEo5<
zU!7=1F&Skq*rTKDMF}ISCpj%iV4rOIk9W?f;Mblu4YYw5Mo}&sHVj2cA;L7l+<BDq
z?j=l)l!%akX6lWh5@MX{u&^-A>U`p>R`E8D7`>*@55?RPa^VRXlbm;F?oqzS93b%3
zsHW<Kk}=~Ilb!F+&>5rO)LkcCH}tb^yL0~$hYQ)(Yoo!K{Ji#T=gZIec}FS+*)hA{
zwx0Wq8E`YWfXY7j|5sz3elIe063~ezvreqL@Nakv-&h;x%zF(Wse0?18gOBU2I%^0
z>q&1|Nz_CF=#^n^UhiysL+2PmsA+70I>JFgf-~aX{9_qFwwvUlGv}!Uz%(cC?_Pd_
zewIvCU<LUA$r@}H9qq&lGw*=dsqGLix3TVbIZJ$YOkOv)C7!Pmz!a|BiVGOUBNEIB
zS2+)E(IMI)1k0~8?m7=4+P5dQB9I&mPCarSLTD1VJBPR9IKGG?Sn>EyXYoK?RJ+wm
z1V&c8`|&Xf7#nW<2^&DFBrPPv;<^lNg*CEmGz;Heaj3gAQ5lCE_>7;3zv9Fb$v67I
zC}+;pD4!<&t4WN8gjj$iZ(QjVwzPvp*$ozm+s<~1tD}(0NL{392Mk4M*N0~~rNW0e
zbs_PbEDlzjY=(2l$4p8xIp|@^k%6cQ=D|apYqu*Tx7N;`0V<04K$mCZo!8{*VBsKH
zId=qy1Ww_>kDY>1+B_AaQ&|ri0BzAFpYg8qM;QRBU59bb5&=(0=H9QI&Q5eY%7qjm
zJ$c7-Qi$eM!9z#^##@q)z3H5@Tz|`xkD`hcN~iUPEzXuQT00;~ijO26q&29_vi|Nn
z)Mcc(7+IFppz%fJen7mt^BM+8q<CM&?=#r^q+}8Xn!&lwfgfr+7g*~%3c`ox%?#Ia
zLNFBkQAFf1mk)JnF7<w>wj!YgSWL`}!A@YIwvUZ8Viq8c3rO%%x>GruR%}?X-x>Ar
zbC!~9zKb}&OxIsS;Bk88TSy<Hlx2v_2=7WTPYrZ-RP&=`F_$#qW(Xx>9XK7Nn}(;Y
zFZ#j?<i7h{LPn9tqYXx*OlRjia1E9W(;ygv-__b7l7dUIDw#fVU%z3_DHrlB)$h*(
ziAjOOo>zSAY&u)<E30K!J%xdAZ>KKtJm;Rt-VtNmfmV|)7Zk$GlrT{jmHiX1fpWRs
zqN=Yr(b@1c?RcIGWhcD{1uz7+sBrbJv-VlN4S=M2F55|h;RN$%R4OCm`c|ZB=p|&F
zV=bEROhm%vSPNTF-UuC)6j|nh-fsHheUF>eR^D;*^E~bvm;?#UFkAY$eQ#t!yieNb
zmN3}pP44h>lHPbf?}$oxWBtq6q*3^{AE%j{db!h(hX2p=;%F~;-nxdP?J$W<e_ZD5
za~L`9Y>Cn4QgQ}TFOJZI{oVQ@x-{^qjV6<`xs6KsERdauvOq4P98Cp$0J%6JT^>;l
z7dnq@;gBU6D9n+Yl0yFD1heOEr}HIx_&jJEt9Qv`jff?a`jvCGyx{&Xj3iL!-si39
z{XpJ*_P=e8WSI>&k!TGCB!UH!Bv@2%s5{|kzDp{+84-^ib8#rl%ETqmU+5AT`}UX4
z#sZz5zfAi256Mh3TI6mJRua;ggJRuY1Np6{->yZ&M#W$y)x_c<I@-TE18!kON-TLi
zii`?(%QSx-?OZ8um?YDI_9eE`K6!JCz7F(c(?HLARyyls(-0VuI(d}h286uLi)H28
z&KTjL5<7z>JyN@)MX5o1R?FR5|C&?wn*J<XiWJK$mY972JDzuLcoKl{F@42q`Bi!8
zo9A~rYmZl4P|=qs`m`OoaUr%#=(6nBQNKFdJcd_{7>*{28^S%?@Vzr2hrX<Y$~3G3
zqpSJ$S!ezoe2cVVn93NU<2Ghsl_`%%Tpdq3$VA_7or4M(15GA`O`Zu7>-pvL*4^K!
z&?`?yib)8^BvvflSl>I#-_tdgp|M~T^;md&qqFH-TK_M+g1ATJV`NX+OJRIFX6j~!
z(H-(sAiXpQ{Lxb9)$f>A3ce#Y!5vgjrwXu1q*PCWnK{>a<PcrrRG#nUBBDtCX*@1^
zx##`mZ)RBbvfAHEBHs7e%p?&A%k@1Ep`A`jqi=D_BM~skA$ea_MmaX9i?5SM`(^9c
zIpN;vW<jHqSEWDV7LRS=*hDI1?iZcptZrm_<an0X1yZ$2E+Q$v`<0WygP6sWo{(U4
zRx8B!pgWvfzB(LNO35@#nr{R~ew}7wj|`@c*YxRydnMa7j7dUhQ%3vEV;aeVO`(7=
zHM7Xuo@5>#8N6{EJ(5M&-c+?$Y&|Rq<Ne~y;C)vs1m~iPX7X}WLCgV)^U+%)f)keM
zhp1E&!ABE$2Xl6snRZHW*;ws``c+m>niDhu`1uYGPFtuwa;c0iH5<tTos4(z$+f}C
zVE_n%f~9jjzp(R}xcp_9&7*@msdL2Sa$pvogNNk5%NiN%E>lAc;Qc0R!Nx`CTVC+m
zx%zX@`<}_tH_4Qy1-G86?WJ?|*ZBWsnCpiH`xa{}E=A-|mzTNr;KL)6f<vY&jQ488
zylNJq0rNeJf>l##N3i*&kz%$`)ikK&`V)djjPifpL@qj&vXaeDxxu&VwLQBkQa7`@
z8A&0Ne4^&*j9}v#I!>P8hd7C6nB$KNhGasisL`3`r(W?Nd_Jl5Ix4t^YD;Xyr0UwH
zipG}d)8&+KrI-^69=u2)MBvPf%+_xJq1?cU!9%Z92qDDSp74;Bvm<hFc<_;16fmmx
z7xK(;K8P|KGK0HYw6(NZai_9zuWUy$L!}N2ZaO{s5g8^$(E05#!Mm!ov4rI4UTK?Q
z<><~MGwb$(DvT@j8Zc~ayNI7rWOOgis3J&9o}|+%g3GVd-uYO_wHlQ{p~K!}<pyW0
z&<;hvU>l=MPeMv2)811Oj9;KViV&Qn9+hk-S<+L?siTA49t0#+0~+VyT1|R*@G%8)
ze<(%Kj?&ReS~RH-n~;f@YLDWeeWQ+6D(CLifl81dd~@D0-fh8^gJY0VT_k^#%3>T7
zwE4F5AW7D}kKu)-C{9Lm!lia!82m|ap8%)`3C*WfQQZg%B*}?BSQsQZw{+rpQ{e?R
zQKt#tkOS(1l&=;@>D~t3Ym(NSi@`juJ|nn05eS+Je3+ze8);i4<Cr<<(O^r1eh90Z
zREg!WgIFf9h@<BRdo*dMsV$WhX+}XLjyiZgnc8cE8`8BG#Vw^4k;Ea8h@U<GeMWFS
z1rwOWq)7Fre5iR?<uA4KluGb~GG|WlZgmPCUYZHNb(*Q>f~Mf=W3+FFr7`VyW&~@7
z>s&Z`ykzC@IZ0BhFAY+KTUJ&Y#`eytNF#0Dzd87uTrTJ=gqRqAel0qL^jm_5$?Zxq
zqez1rAt<VeOi?7Zgecw}Tsi}gXfTl%WcM1|hzoo8>&)Q5q51>p6e%J^RF}MayTZYX
zvuWp@N0un+*~l)j6-m+~rB1(Ah!3u0osn52ng84xjFlP`NUOi#Z9co2s+y>yQmOK5
z=C%Z{7Gy>s#rs>Y8i$KRGqmkTYOXQ$F|}YBHcN3QBTotg4tO|dQTR>vTuP`mYN-a!
z33@W{Jbz2!SEva<2vT5}k+s1QxjGtFJ<v;bj?+U*yFYlP5OKx-a-v2(%6ea2@JlIZ
zhWk=W1ODukaiW@R6&_3SIGB(bT)Iq4Q&GDMlL%YRVzB}6?gq!7e?(!?`XJ)hc<YGZ
z;B&Qc0(80#VP6sj)lLbHukA0SDW7~h9u*yigH}_sCY7c#BhEsM_je@|M5j_qEnJ~1
z)O0jUj|%=s)eR^fu`faf#ZzI^@Zg%`b=J99I7Aa5MK<0Z8~pZCZ$>zlirfm#Of$tN
z2mj*hus-S!%`E?g14AzhKBbu{%Y&P~P*5><v~_{h&qFoqoDtl-nOP@5G35TVVEsVV
zWoFzHjQLSJO~k)N>Pz4(jwjg5&B2sIbcc&0MBU0+$u3jx&&-+~ob46k%ZICx{#}8@
zFOkqB$@Krob)`ZZ7_ir?Q`bmJeW~UR5n8cd@XkC1X5rZ)dBY?P2+pvV{@0y9MgiPM
z&P6br@;CAp$o|Sb8>+y7<EDpew0xRW0z&!oo%=a-Nu0ST(C8783|?Ir5Z1c`4pK;I
zB*HiZbfudiYuzRB{wFjjAEJX>?BYM%x2wHj_R47zQ$=zFY&oC1eI44#2Pz&Rm28>R
zPe$|iw0rt<Y#G(@8oy-i2u6H^mvWl<@-6rAR2^%AU^pntE%;QcM-fQ?qNi+f=g3(@
z;(n1Tg7iz~6jnd)F7URrfRG5WC@ZbXK>j7h=}UKuH)xp%GwO&vod5z!zxzsj@Vh=b
z9-A|r(sI%Ia+%m`%=hoR(+*UilKiS)yj>+wBiSr}(><=pgH0pRs-%^cxLQeaXpZg_
zoRXxlvA;BG(HO9j!vNI$om<sYL0J$}5Pl|MP56XnnjU|<{k&ru6~Uv+FNsaLAs!|V
z{p$AZ>W!!(Pna{-`h_I<;Jj9Bbx)fNI2GTr+UcaQs>D@Lj8#AO5Bepk#lMT=k#f}p
z9V0p}|H8d?FUNrHubQ$iQqhgckgpKzZP@O{d4;d@!7=4nl7S@2Jn^o(<w@<-TECB|
zayu6cB@P?K)-mhdz3=e@cp(c!Y=k*s+DkM`l7j<&0+1mFcp;NYzK|QCY#;sPCa=~}
z$@|H<&r|sdbRo}%X@1rHVU+?)B6U!C<s=*)F80+wx<|a~^+OJg@<NhFBL`bM+_&~)
zOA>`aAqaw)(V91jsOUF+>aO|I8?&CYX;dPU<g#q^m4Ca3eF=a!>CBlFRD?%JhF2i=
zZ*J4W+C@<lHaaId6%w;jzW4{X=0gP+feUbX734vQ3}Rdo&B8a`{y!@?y4iv)fZ!j1
zQl#=CoTY{O#&WYj7s-v4Y;N7;W<qs<<^LkomJ31Z2J*yYQrb$YP-RPDaB^tyw(tZh
z$}UN<siRErMsL$p;MI>wP0_-2?)q&y;KX05c<Ct;NknG4NqNJav(^KlVbWO)lka&x
z@G>P%HOXv#!!3J3e}>ps<?lJ+I9P(8cS9biNN5mhCNlbl<n7gHW2&HNA4!gg;QiTM
z>g@&Z1Vmp9ppcP0o7_vhBgt=(a<NUMg%JT>(rPE0%f5E2cPsgw6t1ep|4s_|XqMuJ
zr-LVU;h=dr@2w#DLi4<6X-D(p(x5B|l3gb9CSq{37x%EwGr^62vkH1iGMSkWVo+ET
zf~&C6T}U^D4t~LblFx9HetIz|7neq80iwe&q)FZYvs<M8C_i8YU7riSEEPtnry{(O
zt>KsS$AZg4?b6@~n2QXGo*k2!CqjU8NJ~9e1Xq5mz&zM(lt7`8<lGlM8T=KhOTPlK
zDogQeW+ZW4RDmAOQ3A=LVpYA)g6DH^t#UD%5l5&pOSlCc#BBHe)4|w3w8N-K6$WvU
zE7JM;Q?CTip_(c^Btpj9BVp8xH2ybTPcEEN_9r=A!nx+17F@T7cIp?gceOQ5p7f4w
zpUwL?KUjRT0!#MFQV7J6ysI~t1lK*UW8sG2u}L12Dx>d_Z=@P|Xh%^PRUV)Jv?#db
za~+AdoZR1NbyMs_sK*wb8ocl>g=P_8ggP262>#rK!N&WwRl>ie>=!;IoB=^maHLNg
zgNYA#eRx9Pvo4BEUYaeZ2b1S&dtpQbLXejpk|OE#x?o{+JUwnclY$E3#c{!{*K3DT
z4vR%HC(iiG(}Pzp^Txq@U*a88(Iz65pYtHCLWw{Yp*0e`mTrFO7JO(s0KL8tM7@hd
z^Rc=i#|DqSML|@61kFg0D&c&hLo$PdlP>mpalTP9icJCOXv(1AlFJn26|F`#OGR|K
zD>*n^mQ9r<W`#BbDV|tz$lxyr24A{cA$j4JVUW9-Iz2cJhKSP-3Er|2AWX%h2i!<J
z>7nOR?o?j;w|%0072D;c^-;PzJy`60O%nWi?36`;8fOH9BkuF&A!3imbc7B{1Y^3H
z?|7$^Wb#F+;Bg&-{CI7g_Jq5<6Br88H%fvx-tXkiNH;Gh2A#8&?}3TJRlK6UOb~fx
zM@De#R{b0v8C-uRsAWIi2?n2DuI=KkIFHauYEhZn`UKO~XlsblUWBW`2b0XaZow0U
zF;QoZa<#$^qNhZ3v~t&%W-F955sky7mXD$-okcFaH#S(c7%+tg0VunJ6>?7d4-H-@
z<$+P+$_1+B@#zgKI`2gD#=*fyWP-#&S7FP6e`5I%oy2cjXcZd*1<ugd^GNtRJ6Kq+
zBZWkzf|odpl-R(Ft>6l&IZH9a=~zHLzK`63E@WMgVDW2^f%ZBQR6FL{P_TvPKeO^U
zn7l<fQg-sUwBXKrbTBdYQ(6QRAcwX*iMv9!1VbX#BCe@)!B-$QxAqD?_iF#Ub0shX
zvPA}%7HA?NCtRQ8jlGV2BlYf4<XNm^&m^8Y9Rsb2+uG}{cT@kZ4^ax6dY$t+eeg&j
zrAnj7k`Sz_mA$sypgjuZ#fzUaqH2=axW3ozFKBa#xFbga9La0%^!n{(1rVxV4(*m6
zBJrN}a<48A{@bU?N74D6UZZ7NSoVpl6%!IFxM^3$UtX3bjm3~msR)B+QJ-nU?uhT6
z`A-NR*>Gq4SIKF2k3w+;H<C|_YOa20{IKn;tbHqmtA@m1^_8wS3#8L)iTs#mu65!+
z{44ctMk6O-ON6Q=&`}J?3Gq*C(Lu_>P3V<rMGE+ASp0#Xb{v{V#H~Z)oo{sLah~Th
z)fE%W@k8T3J236;yd+e;GiQ^l01*W0HQ0^6`OoO$Yj9tb*cf?<-1$!YkAqm{KIe;e
zE5#i8POqoDUEb&Hfh~Bi*NC_HI90B3qDHzBR}k}KLwxsH><o7w2Mg$i=-8Rm=$iPL
z#(mq_{o|_Rzi6gC!%Uh>wOF$0Wx^HAoJg<7k4u#`6k?U*!t-V@XXnI!pT<nlOV@K$
zEgTd64<`Pu_|mC*Ol7z$g`1^aUJFz2jlX8DesT<)fV36W=!{sf)u*?$zy6*#dChD%
zC3-DNS(!J!j-O^Lph%Elb`|N>h$=}iy?>6s=5Pg!BRx7cEyhVVfA{Jg?xd|b<c7l~
z3Is*13qRQQd;E=m=vIe#@u~I(hb1!Wz7fCMjgHe0uF>pPA`@NsR{Yk%+TQki$=tea
zL%cas+nErSIVz`+-YUr)w;}#quf6T}X%PA!*TwHWqT@J}49qZZei+|nK*x5fKj2BW
zKE9_My||1?79)}sA(LR&Hpjdd|37b}oJMgu22;{a=eOdA4*{{@f8pwu8XnH_o;K^_
z2M0P1o+uGnCv1$*9@w#6Jd(`2AH`qQSKBp=*DlqxqVz~Ghi;C)$=RoiXm`7Q6u&2s
zR>6+s%)lQ;(r=j_7al(9<)b8xM=3%R{tVH4NRqPK)Zb+P))=!rOOxG*G6!4)LkYX(
zF}VCi`{D)-yQOmpz$!w#Tc(BUBvGV<^+MPeJz&3bfgiM6I9IY>M6*v2(@XgNN_*Kw
zK3G$>7vR!Lyf3WmxRv(&#XhX0S~A2#w*<%uO<7?d*$R|IP4d<u9vBvtYED^c_qf{c
zIZC@lUCx1{@>+4fz4SI8F6Kb2cvyc&iF}HIfG~WipqFF@KVn}pGiJM&4=6tZ)lrXG
z24QQKyljuWGG>Jb#D|3x%8mFkM^n0BVNNv@Hrl)9_&>=dFO6iBX79LDJKwO^%=7n7
z!<|Prh1Gt=53n$s{B8Dk(_{9e>(1l8Bmp+MF|gp*?bw_AVe=#6ZN^oSStXdxPuj;`
z?Zb3j&*@k`3md3=(OwYtKU+Kp<0aA68fDt&5&NsWm@VFNitxagF8Rrl<eXn!YHzsC
z59HU_5(#R+-%L><2^oTFjP~;n#!SlB*@h6pYFo&y7Or8r_=TmK#)s{sJNz9N8&sCW
zA4-B0@&RB}Og76Nuy1KSvqB7*ItsiVHyG&ljQi}9YBi~h;F_G#G!GjH3r;gHkX7c~
zwpBM%U#dZ~wk4QV!=00NYgQ&Yq6(>M3EL<=WNl<AFqb@Jm#y)8;$RBu*4tw8g#*hk
zD4_I!z5hcoOY(GSQ(C4Giq{6mTJzrr?7%92glyyuao)w3S<+oG0?~1=++x4C(jTFe
z6mAejc3o-@-2JS5y6b10V_!&F$61%-fWQw#P2GQued)3P-yh%t^Uf2*g!@0hLsXK~
zqd);e(@oxU_7?#kh846yRSAMC(EDUl{G?rdoDcRsj%iTAqA5A|LA(C6j^K84LnylG
zN&D_J{|9<xSc$PW^Kme-`DOd_{%ugq@zVr?@HFcc`>R9RARr1ksiOT7P4FeVXpj&6
z=awXxbDy-IPw;<`*TT)MZNW8B#zqu+)1J}O2ac+rE!ql9WDtcn<DA7QF@I-ha=%eh
zBcL%F!Oex^MqaU>Ga}E2OCBNVnTnUM**M7=b${o6r5+IkLt06sJYh!NVxI+(@JJ*@
zrci@GR=GJG?@!m+*DdyM4uq)L9*u6B<B_seX2?hO4|lg=PI-8qoSaqwdv>|~!Cn4+
z;x=-og0abH#hM?myDamsQWin%jU*3|P<6Q~JlD<0`|aV={i^~^_fatwgVWSy_V8={
z33*BRHPZ@1BfUTJnBD0De?lSg9LI=CVgXjUbG`HBAu%737>{cNzrmV=2A1lyN#=?>
z?MGU91eRm`OnK=+{yC0r_uFqYYgUJ{$tJh19uCNp2<+%I&%W=YSnC3EicBV!W@bdF
zg}@MouRO<ocVjCo8p9_bss>zXzyGQa^3o>(KwmcbOnc9NeE<=!4G7oKavCIqLNA?U
z4!_X;@-zP@%4@uoD?oX6zkHef=?k$H-h@K)kU*%8Lb!MOS@xF2vFp#*iFU}jKn)4>
zf}^jq4|_QF#~8BVOqR!sSXU6E$xek%G0oiYm$mA_*fFcMdsgFIkwZ}oWthNFJMdEM
z@t1oWpqeukz47YB(Y~KO{@&O*kM7fpENBDmy)XE^+J;LsUkB|&T8GP{;A<r^2*nog
zA7GO22kob?^v5f}(E~EU`s5|Ed8pm>+SsZ~^;4b|g$-ls>3CY&Po>4C_S2<#aw~D&
z(h+82wx`;817nN&D71hOHN<yMbVDV=dn+)>e)h-M?wdTgpQ=HqqRfe8Absp7n_?ed
zr5`SXxrwVok{LS8KCB`3nU&fsoI?2kQP1RIPBfS0*}X0Qqj`AU3Dc+O2HMDBCH7Cv
zv0Kj7j#JTi&s9AomYAOk?e{DEbztH}ltzKcm4CR{-Z{Ys6iFPL064YbgY2SGe-gQ2
zZkPZN7{48B$DZ!@$RlAwGulTUdICm|_d&LuR~P%xB{~PLt*}=aG1Gi<l$}1@pEyB<
z5*rC30NHl5o%pnWq$GcsjcQPsEIo-JCzrxP`^~$2#3Z5ymdKFs+$Zzxt;75wi7Ap>
zCr6WPR+iac4e=qR)DVZA0D+XP>u3Mkx_@#}A!Vc#C9XgUp5P9AklplG?2!7Ht)mJ}
zs0Bp!M4n_k*^^Db=dJ(z(e3@=odr6YxNwd~WsF?jx#H8q&p3&-k6Bf*-HV6l&&E+P
z%A-I4af#^psx`lL4C$;=Juu8^C%<AH{)<1p4ongmZ&+^PNsn8rW4lMco)gA9r2&d6
z-vo_kzigd#fDcqkTSVk0_9e0wQ1A0m>!Cl}5A1)GSI^_mTAP1r55vM3{V1n%?UR<h
zzdx=QMnq6LtV8cOb~(2D<ki;P54#n6+wyO};gQ<sQES}${%<^aUBaHEj3s2bdWki7
zd$)ljbjM2J{uH6)@kKhiBy-Ol)*V}Y*hB;~Qj1D2YNai;F8$nxwC{zozt^4C^iO?Q
z$M0bUz5fR5+t%-C_^fgPhJ_L)QLpkFziazp*~sH>wKBf)VX^=_8(nd&>h_SVq0pya
zXI-<i+rX!EDIJDJAKbjyn%dgEZ7nDwzgub@v&|p4<9v~^hAp#BYMpQUDIv_q-C@1h
zy3%%ICYy_Huuf|I8a#&N+u>$np2=0mLNm;t%dL@{{cm=dD!3kdoi(eqbK9_p!~b1s
zg<H2hzokOR2ErU_<3C=v4*1wV<b2Xy_-F=6|NJrQkKemRF9r3DX7ciG!kL+4hN~x;
z51+RhzwLIHheTQ7az?eW;iF;Z>ZO~<AG5CL?B6MTDhP(>tI33AnQ3dS8^7^;?z45=
zw<Xr4Kl+R8uyv`%S#Dj?idrQtO%l_`m>AvrK5C_Y;g8wA7mxA|sFlMd^RKt4hc9{E
zYS`ZGgX8r0nJ0QYVQXwS)bsGWt%utka!oy%js?UAf4#}t{-r<7;-&@?vgs*hn#ng?
zr?yVA{Zx2^{dB9<z4h#UQOAFo$V!sU!bh#W+x(S4><Egl#`dCNpIl#%>!7EsjQ9Lg
z!?rFNx`a*9AJ;0p@`n82_wPt`NTL3c^++q#LBGzcK`w;48>q(hlvl0sUu$o~rcmRw
zu!x2zQWMQ#tDH+N?tJZuDp093A_Px?six%#=isY-Ans`dKu8)alsCkQJ?s3htz&qu
zmvN0TscFB`*>#EEZ4@so@3~5fvNTc}IPO9p);1HA8cSC>Ig5NqRxMWaXtFufz$xaq
zTbxgp_)rKdFKuFoYMG1}Q2N$7r*w+R8WJbTH^CqkVermM!cJfZ%i>PGUQ=&MFi=!B
zAgd1w*AwiEPmcR!BZ;a?q?<%xM&aU|X9_>G4-LhAy_m#j#o|FEX`T$OIgsnSx;bBu
zh+Eo3*Qt2Yghi2yCzk}?AOrl@{<N-3=Y{0F9%FdTp=L#oDjD^5e`P=We(b{|y9lJP
znk*#f88AaZv7TIK-+4{!UEeFyE^L`Dw?L{al1k`A`<cID6Fd>79RywOaC^YPaZw0T
z6Z!eXOCM1ZC!vGp+b8YtC7)9A3UOJ515;o&$?WK5U$|2_?ARi5mDSH;ibP$q=mXc<
zT_5ZE_QRg=fcq}>p)u+rj^t0XyS(K~u4Ay3NjtjR36*wst2B&tmTzbgpzANUZ+O}l
z8HoCBR`n+qjAZl4T>JH}{kf5HD<T<o5ZJgWH#XVtw}QM_Yhoc(z~XBO=7UE2vXA{)
zNZ!XtRXx@Z=?zPHBy2Bg756k(fQJmog7~9Mwby;&e^n^4CMY3OC4%tVwRY3~aZx$Z
z%UnTl1G&ItF+4*rzsTOwI&kT<#`;Q9XK}2^^a*D50{f_4v4f`So<*|=G9QfVoldoL
zTOScct-A>&esYFAv2{1w^+_^;a(jL2qhuf1lcbQN?1DC_s-t9@Y?^cIT|r;w$|Ii*
z)(wO?J2bsqWG@!lH`^Z7DlqReI;14W{z3a!BFz+rv1wy0LsgV!ettO++nEY9=_Uuc
zzM5vLPHBPB*@w`K;}5IT!mGS;B!(i{ScUhK`X9RpR~6l>gc3oUJFO0k_)^<T!!^{N
z!5Ei@RdL6AfuOAeNf~z(uvE20Hz6@=lYS4pFkX9*K&S%ZB?YWf!~rAIG<+18@ENdF
z%o#*N&6YeF({=<d==zT@C%1l?Y{h5@FeT!Jg9JO`aO>sk`8i>J)iu$|JUr&a&HAGe
z)<b9O=tNqnDM89Y;MXI-?|%$*FI8X&O}EtEkq9V>Q+QxMYqBgI%K<7gv9{rm%=e%j
z@aN9))*i|?0L=+Yv0?n5WEz{p)=3T8JVveqTWo&%Eb#Ze+JwTG>IueN{zahEe%d0b
z37VvL1~nuSWgiYb3xHUmuv^LYBynm7-X194>@{-+O)`cUKbhm!O@ZM?&yzG2&;`i=
zPKWf*1LlBeGvkON2&WIA7*~?avR49ML^~19BnKfMf<>8cUJVTVMkkgPX{N+It{$>S
z`@I<$bCNc<Lk|=k39aaXk8D-AN@~ic5T`?z7Y?-cdM66$R0nUKz_gD(*RoIbz92R1
z<P&T*$;A)U5*E6h<uW1e9rDPY8P>oWT{#t#>X@pa4BC9+25t+i_of=Et7)N`*8*2{
zN0JruoOaOCOSOubQgPw<O@aM>P(V9GW<ow96M-Q$g*mTJ##`(9DGrN?6_-;6F_#av
zUg)JeO8Mn-*)U$UT&~XoJ>#{Re8Aqh=yD!f9f<pWkXT$y)cW!+Dsy9IOc?M|zoV|e
zPB@`9%<Hk9LPdA>2`)QtNDt<M?ihm|t4{(qO<H{Kzmt=CAnQyLU80bE^f^gp?x@~>
zo~!L;Xo#Q;(hkGAd35i27tu}#5=5<*G*Lu!C7HM5dk@Rh<`OLLqBe#c;#8PwrgZPU
ze})bux`=RNJtl<&R5we;_inzN_7rSY6<!(`$=z>mKjpB_w*KBDt->W3N}l&;<o14d
zj&{ke^>ZQOIhkzMX7@S%BL!&9bQD^co?u;Pj_PyQdpZ{7y}>|Y<0XLH95$wR)@Azp
zNr*6NyiAc~e^YY%ys=4tpNrWbs-vQMS+c3i?;W#Hdt|k6GB7$iq?wPh`ds04$d}Y!
zo<u+(q;^<xfp!>E-Ovyorfz2>aZ5DM6!$sQo0OMNo_85rg7>{iF6^CimVO?w4~JLw
z7MDqL>G<A*F43V#H~{t#!omBjF{{tu*Yw9_WbJRDm>5Jh-DDK^PC8G2Oo}qnnTql*
zMH2eO<@d2R=<g+1gB-h}Y@vuU#>+9i7cT;WW-v^0cs)1r!1d@I@Xjp@pR&0m`k~Bg
zM2lj|Y|~BtnBFJN*8xlTJn=isSO^%-GCb$58sGcExeBESnxyVj<&Gq|Hwoi<_h?a&
zcf#W+t)w_3<C5gAp!cudxH%vU5ph})ms7|zC3(G16Xe75mn>SUOKF`Gn?jJ@34MD1
zM~8+|;8McIN(kBm<9k0lPy0=g9Dvw*aJfq{H938n-_c)7OtrX>V&FNawD%-Id=ewp
zv#v%aAgQy&m<a_rH>*#jw~P3|i03C2OGR1>7xZ3mvGyV<r97haDP)TW3mrN2{d4*Z
zdsn~ZiKHH?aK7ng#JJw?N#Asg_L8zZ`ic@u@ro7k8?Q?g5F#6QiZsR=X|y6f_6C|$
zP0?JEZ<0q6C1n3V@1yTbklzxRG*g}f2{6QMPsD$^Oh?FpM2hDJa)?>*RQ%C5YpaKY
z(<QGPScMAh(fDyPG*m|wJ8ff8|LZYtEUC`~6Z0-D5hy&~m-e20#4zbKrUmbg8DcMh
z3#6NipNPNuBJcC!`cy|nd5kv+Cg#!jZI^kUsji)?Qa|1Z31<1~_`S=uoqHxvd|PfJ
ztA^@6y~3Y#Sy-0cq^ca=W0FSo?#JVQy+S+UK8X&UK7wn5*2dqw#QTnLpk$1nX4if3
zfd$$&j+zCWa5U#HBZ*((t@p%VaFc=&c`Ce=edwBb(cTkZcdG*6o3rQ6wDsvqCvc_f
zs`x){R2W&R6xEe;{k=T?{rNN_axg2fNVOIOAtjpGNA!OEW<4&FfR|Gq0R0*(fex>V
z@4i@v%Be>70F^xZBi>2q-k$LHpnWfR<e#hJ-@HnDjlso55G4UcPswBPU9QpA;_1^h
zx4EjVuDUnA_#T=i*nzM^c>}@d(@nw=y=UE&P>GK&6>K0In4HtigQbC<w;ZXBEzD7{
znTwD*Ch)-1+8V0ya$a%)lg+@}13l6Q$&W*|B*v(eLBs{2rZ{le^&JM0Jl$=BOoC+)
zm69U0EAgJWJ&-<YP$fzYqCUbc6;;M;3EGi3Z5ji6k+?J{Ij<zk&e(FK{4zvs(dH(o
zBkv5E;CBV~iZ2u*xwW`G(g$HI$sB*Eefd}a0zp~S4uZ8$LNO)j0Fv<GcI{u<h5E8Q
zF=z*isev%W{&^_Nr7{WX#45yEWXcowSm*!FS`!iJc<zZfCkdlj*AXf9-$&{0jPte<
z)JbT!3$3jjUHiRhlDG(Y6>?%#ivm))iyfvwuSl5WR%PhhGXs4d@HUtUl46~M68|T&
zCN=Qpy9yW^u2kWHVm(Z_c4gqOi@lSgto<y+OZkGtlkL7YaB`VK3L-N|g)2ucXM08{
zFm0WV#1T-H60D(zKoV~a1dr4n=n^Qo;lZQ~Vxn1lec*;~wO1avEK;Zx#bYm?3G`S^
zp9B$nA+X*)iP|OE>=&?eStH07E$zj*K{TQjzmUE$>xCgDNd$_r&3nGK&I~aW6smq+
zRdtO70;N%W9Y05cRK7S^LGm7`uBl<iaIO-4#s`B3%swm%BG(3x@T?Z?hhq2M(15e|
zS70`d_!87WB3}wEptHDaSO5M4ysts#!nmpeAzyN$`Fnf+$#T3P<4hS4G&M^G40x!g
zwvFWj>_2`kGB@r-{>TA;c;CncB4Vm}uit=sdg!ln!M_@kpz~{7@exHc|LothpMtV+
ze1xlG5Rkiq|M!5t+D;rHq7q^xqZ}5iO=U9ix!lhNCR10=@)!&xO55H4F^6B^$qK!$
zq2!6k^@+H)p<Y=ZV?UapKwP`@5_qTbbzghIF)CG~Nr#z8kcJe9y!D5`{1|P|=N5Co
zxags2x$Dz_yj^rRBu-WY+!Y56xXseG(FjB{7`#SOWn-xj9=WZ{fap>>oTDU`Z#%~#
z^ysxbzL>8VSlEH%xAs44pbjcd4b#92-QbLNoyG`LW-Ad$`OcB=a)2FYhC2&EFzx0y
zCOkKc$S=JNK6{IT`uldRG8R4B!6e%=on(*Yv9WYV|6`A!7Z<gKedHP?(41suogCPI
zv0jL*Dt-@P;;}ZkI`FgC*zU);wRZUN%!-x<V+yAQQkQ7|c0c9V+J4%u9T~M<dl*V8
zv)~EIC`JGHAcq<KHCF(9CBrVEF!<JS$94pkU3X+9?IHY*E0of~OXPX@=kI~{FICV4
zR7c{Wle#XjGC^CQQRHXRh+%!P**&e(&r?Va&bxTNp(}>C2oC*mfj>NHc!ZFO1qacp
zZFtZTM6H$(oJ15jbFU4|UZ#BtBF#eC<hxId@J0{g*<Vdo-)R`P5rt%?IGX(yxXGJo
zDHjnDArtrW1e1M#;2W3|Ya0hf>g!p|Lg?<Y2U!oDuaJo(JK&_4u&0`s{7K-pI}|d8
zeUiDR^ZTlUtXCFjYwHJug|>ZwW|V8_2Zb+)SEw)~_BLF3WF@?RBK~y#^4`0~pB0sK
zXElar$Py*>2V%|Fp9fM_cleHkB)9(#U%(*8w1n2j{1#YqZgjG>JfCH@+=J!=tlKZt
zW<tv<pef#@q=ZJA8MME3#uW-2M-Z~C8$p*;L7P<?08^;pI?FQ$NXRF0`xX9ibl59C
z-?mpBAnbP=q$E6}rk)cKT|m0DXXg0p+jqkh8D+y5fGaf1-%AiI$(*-7aMN4`fv2sA
z#HJ;-N2GQjEe_R&V_Dd-*f)xQG4bGsfwj~9X(+y^KBVn9OQ5$6vYn#Z+pss#`x5<i
zQKYI3>CqyzBE9(Ggv+b!iPaU{{OES$1e{=6zV=VM{k*k4T)WA2TrE+nt*b==QV!~1
zr-l(-^uNHcQU9_DoLalVc#A`O{WIXm$NB;S7e2k6fDjc+5ae3L5(E_3jSzbh{zD$#
zd1t^yFDg+AH4&dLqJb2r%`^+n54@DBR1l>b{&p~7V;W8gJhBahPZni_BoRTnAu65=
zblRo?{h!ovatJ#@x}ii7r@AaZFz!QbZa>G=c5_4`Xri`!xJKB_=w*Qi{vTiG0UlM+
zJ^ZoK6I6C%$qhRfD+r_)Q6LE=kc5^1VqZcCktB;LgrKkGRbLB=6~Tfu=_p-6!2*gX
zML`r$KoJzgf{ML<zcY7dlc4|4=MnLqoqp!b=_kVsN}4OVv`kSZ|3Z1(u!p_gi%0QN
z!cocRt<T1_3G#rkCRB+`MxD09x%wsZ!@*_L<@8PpS|P>C4;9BPnr>jQoDCQ!n9&I1
z1fF}FfOY}~<&*+*T^XQZ*Qk}5Ykb$Z!EmE&f3INac)8;e#Kf%5SQd9~bF&Eacf-*r
zGGCFAQ2&+0J<dZ+6C@Opx3f!}I$6$|$DOpxbj4nabEE9VqeJ5ib42=wAi|9Nn4pvt
zRazF;<0JE9h#o;+j2lny$x4rlYxz*Pm(UnFVp33WCkt1`&HKT8M?1k+Y`x6otXXk8
z?=*A41c)z5c-gpDQ<`OB+z4R|*jM!95<Du0oTxhQby~k@dLk0o91k2jJ9|R=xQy4}
zveVUIp3+Kla(G7L(x+bfDlY5$3rpbmMIxY*adkD!3_f8@;leS_LyIohPB48wRl<3I
z(G@@=`;2sYMR(W^6PO!By`WV2lg_!{x0m0+rIHUhh~`B+q2&p<wb&Wivcq;rFtE}<
zKQ24E2s8@gHaZ0_x8IIIGka7BzX0(JW>6&SN1u1vM0MDX69pa`yflcsYW73U+@t(D
zg)zl5b!cgoJp5obzyHvw>)ByD4iW=K)c_G0nJowM%n5Oi`@;~qIfASzX1~+AEgwZ&
zjc0RZkQ&>g0|Sr*gtt#2)sM>f)T!>#VLQ0OdDC40^`OM^vYzj5iR<=!`|Z4WTnQ=5
z!BRkv*^}GLhUAD#A$!1JiYgB`9BaQF1wub|&)9HD70n%J^N7>sB><8$56iBs4_|ls
zKK8Kl{0a*w;m%<hR;v0wXXrA%5~(#R7~mwZ(nvvimHwDhw1hn|{ZML}^gp81{qj-g
z+jrY<hndf;qY{v?LgAdBlV>{TeLznH)5*Z2LQ2hh)_H9WKlb)IcN8_LRfiSM;H~Cl
z2Cy-lj_4c&Bh<{5&hl^hHNj0_mpNs&iyc_H*jcy-08UUibjs-`!12bbTV8W|ZaBVy
zs3Xps>s<Mf8J985=~J9jvKb(Gs1x3GZrsftOF%n0CE0ornAL)zaVd}TS=8$lY%{F7
zy7bbx0k82*Bp0!gv!t7{<L;f+emf2(f;yu~Qy`9`Op?f;E8jDK+)-tK0y&}50K*G@
zy?96L(v55lg1emeFu@^p^?lCi>-dO|G{;9sL7+#lSO9;$;~e@=2LTKoE=QgJwsUwK
zNKX74c1ARxytf837QNv-J)9pVu@dA3?#hUVofhnfHxOyD$uj;w?+CnQ<$5DzFL9pQ
z$GRk~D+3H09CrdIhekHPM&_5x?sHO)EsOnbBA*#o*e-*5rG!djIaPi3#8yqS*imB8
z!`xobax-0_*)c24G8ij+fbhyDfBcwJ{&suuU(Z3sX~O<s6>s^#H|aQU`v23rT*?zY
zzuR{QUirO=Vn$^a=qbuiQUxTag!g@Sh}-;ekrBATC8(HfZDzk`T>Sf!dIRZ@v_=w$
zwQ!y9{PSU7l2zXtQ8Gdeh6Ix4bTnU(Z?88uUTqx~IANRlcsU<&?p12j(!jYz=F`xc
zQ8h}fstA;P#{ZL2f_@}KRjIoN1x~!l{ALgtdO43(C4ruM`H-mk(lHXR>iKKi&dbeD
za`B7jdXuuad!Wfz<`aX}aTKer2rSvwF$A3>c&1b|DLfODFiPY{XrM>G7DzugUciuz
zAd!k7b%wyOt3U8kV5$a2<|Wh%n2yuZ0YH43%nMw!zjFvfr93-=#t9uoKO*(q$NbzW
zgt-N~Es|c5beAZtxc}|81hTuvhj<-xQ4n`DPb{26t(g#ZZs{At#tVTq&vupx^%-AN
zF0)Ak0BOj4(aeTh#wCD}B0z$yCBX22c<+A!b#><u2Ta$+At+I5VnRpGE=7&m8mPM<
zK14GJG#g2^o79f+<X=#G9}SGWuCqY;SA?#YGB`|BRC{rc2KojKpfEg6VhZE%`nGyJ
zFujb06D%rJK3+c4e#zH?@;R(5QNoHw*5D%%pU!fm6z|ki-IE6L)@7(GFh!3JaoBX?
z{CM$|T>Komua^D8B`#5ozQaMG8G;C9jt&kdyhRcNGXQ8_^i|;KMh4(ztGS-%C?TUG
zuVkVMHq|j-aY7PbRb7g-PwrD%u>Wm;41BfNKypZ|&9QbY4^~&zAg#jKr%1OD%Pl_z
z($=y!WY`cdcO;6A=t~n+&jW!6u8c3?%+NUs(If>x0)yW+yzSmY7nLALFb$zZXqKfI
zQTl^%H485+;q-FqB%n=XIrwHd^k1F0c^EF`Q45tK6jzHHf!rJtmOlGjXCj;;upT6K
zMHnEk*c6naqpyCCZGv%?znOp=^nt!Voo4He?F$9X*iv4gG$d73aJbEqPfTc1gU?AS
z>Z>+Cd}cnAOdll$_Z(;6bamg6HnHy<{~eRd_usX-XG6-O9+H7+G^#PrzXlyevYNWs
zNk7_AKw0EUgvjy!)uHHw(@RpnFLHK!KsbG}*o3npgRjL)oUPw<Tm)$(ixjnz$x<b8
zfStEG^FKDd9XC*tn!ea+|E&RmcQwRVGeWYubg5HBKmVK=V%B2k_J$3@la^q*x1Mum
z0fL@MHa2V)37qnn#m=0s|D`L|QNKtWVS*(>3Q#uk@bQn@yVx1!Ewb^P(fQQ3tDiF~
zS>&vu0d~rPHO07$hbJb9aMrJIZvC!)Vqu6dkKx(n5C>LM1pX`a)YHz5Cv{o`8f79e
zz=29Y)E^6-OTX+WACX4|3DIt*D|eRj!B^%huRH>;N}J;ZS!=F5oal*VDfk$unibA!
zuXUgD8e`%~QeP}^hI-$6NEjY@@l3Wjj{dJX29k^RB#2o^0CtbL>@O~K&SeN@f_cE(
zF6Kh^y*W<#LGwK~NWi&FJDDgW=j<cqW8*<m)TXJ<(4P&YH(8Z1OA-80YGwesbeQjS
z_@d(?P6$;O3O#r%VL3+5bb9~r&)zuW8|OJcvlujJ@F-Lqs45Of%1F=S9d0R2Ijfzc
zhfUjT0@<j9<kjhhNU2{JIS+Z0^guFo(vUst>|qY(7=mNywU2y9_qxD&mR~bB8EQaq
zcp1S};+7^FC$;t|=ic8el%NsJXCjt?0=wrq&M#p!tl$hKJ!G1Caj6r>Zqi#8`z%Z`
zs@L#O|A9!D23M_gJ^_&cNtlmV^Dv!~-g&vR1=KSeHXM3KUQ&5hew^k!^XES>(qs~R
zY>AV=RS|j|B2Iylu;2@bj|A}M3g<3BjFA@-rE0|X$T6qmALl#?)LXw@A%abUYCXqk
z_kG7juvd@_(FG#=lVFI0`)QH$0J}oqMJA?GzQP$JGp})$zGHr0fT<QAjUw5TbaiC0
zGx+z$dlK0`hLwPptl)RVrSSMt!EJ^!{ipEK4X)VJU?t&=q!AKt2^qGLInvd~^PN*v
zCs{$iU`Y{PvS#1euG(qNX@50XT6Sg4c-ct8pl3TRf$%pDowUh?B#vi%6nARG)6SL0
zj&H;|D8=nHVw^AuB|x6C_JR-0`^a?X=^stIOp>j^jG8@MILFCk4|`yjH0g%JixK&+
za<cQ)DV-KUDPZ?Yr3E<-sroy`x#Pr6GPOM9#qjU3FspTwohP|1a0Bqkl0Sg6zWZq>
z^%C=AtVL{zSp?r-e9*a2upvd|!JLdA6MhLKmA<-hoHPIOMs4gMjT%bMO_7(S$yei?
zqeDB@uR=`ukp=XWcv`Vdv$LxE1n1Oj(|KV~99SgT>GhMG&$wZ59wfKNSA(mCY_5(x
z;Pe_0Stvhkutsu&VY!z+q0S3#ce3&rU6MYcb`hjXRn9VJG^CQ<%Ool(Sch6)v>Xd3
zJIk6HT#$o}+}B2UC1o}^GJ?=&I7hj{*;E23W3)&B59_#Nb?o%YP6EmtUISO5hP)8F
zrp$cseyh~$t70?w0zo0-3xg-KO<;}v=Q!VTb+fq9><U)~$`$Be873+sE2#<VV%y%-
z>7PF_l9YOEU2G0eJn{yVg3h((+QI52syiNuonB?yW#UEvma8M{VmIGnwg&IRAOYfJ
zd4lzNbg9z=Dnu8#IJAzT58|EVcn;nZ+wHDSi~2}BIaeBK^oiJ;=d&z=)Nr1nn%2Fs
z#nU=1$`q-$2uBRePHeX#QPCe64L^G*(+~zb*`ubMUh&$8am6OT_0!nzdox``FJ1x>
zEksMIzH91ix|)3>`44svdDhM6Ce58Ut~u^AOk=2t6UVQ6h?WG!T}_zKqeDqncQki?
zx)xY6h&86BV;O&h=Ot0re>ZbZ4VvMz$zf*!OdvcG^AbR#(X){f%0d{T4d<uMI?MU0
zeWyh*4{X<Ph&&o_;q4Ms*|)Km$h4q<9EGTK($ou0o#Dfe`*nC&#8q|9x3O2zgnfeb
zx}Ih81}3TBj>N`h87v}LlKN2u23AwBy#9qwQ1P>!**tZI?m$^!XmHFF(wC@ip5~kY
zAqEGrZFy`2B;>Uj&IvqqkPt=+BGQWc5bA=d&H^Y~9tj~$(FC493M#K~%00G$B?jv-
z1$k2j-*7{C+KC64C*jtWl%61?tf(Fm)m@96#jta{RAEvW=3><6Z#r*t*RxYeJmIkc
zhQJctCUm6f$k;a?WU(nKOe0ZmB&s`aj{R(k!9m=<dFqVLW5R@3HPcW>Nw7<ur#6$E
zxqq0YB3TFPV6FJdjf0rabP||lCNg&ovGn0<EY>WwV@GTr=*)~o|3)MJQ0mai*r*3O
z30IX_6qJn5<RC)3#4`y+;VPJEc-zo$E|FV<ZJnUP>9LnQ$CVJ>4t#F-ew#eu_x<90
zu=hCDAi=T*VpyaYq&yHJVy|E0oW$Y6I>3Gj1;?ES{JLj_v-G3mcV4o1>9tNNk6ptf
z@n(A5x#ZPIc?JxfDe8lloi6(tPlpW&b1I%dFkF@(%q14vJC-}Qvk%NO3p-*F*kc&3
zGgmu4kSYr`B(?^Tfuz7V2Kk3#r$Yw8&H?y{3uX&$f>|4%aVGw44y+Nc$l}7>9ZfPN
z<-d78JI-*9@$9ogi-#O;Jqq%-dS;GL0*{&NFY<6@4T?qv#m<wU+?CE_Oy1lTBjyZ{
zif}k~W+>lOXCQZl1rI1LAI>vEj&mZ<olf#lVjsk`q11mSIjy-PR^kY6Z3D3*3kNG$
zn-KdF2EyX0Z7ZC2J+?2Co>@L2sZ*Ubuow*wN_4Z4yK~&DW1o|L@SzB+=t{x}C}cbI
zW9&s!y?cYRH=e^}6Sy;W-;)NjjmRcgjJ6;}ow+FX<@-A=qMJ-Xr;Y}xl)CT7*rxoP
z3yUOWgfhClV~KMQi|3>GZOd8Xn;>~XzIe;I4g^Lu;z>U6GN8k%51dCnH>lbJrjJ(_
zMGT}xgoR;ioNc=}JrYi$_F-Tm7nqP#tR3IPx%mo1*FkVkmy~*%GY-n!P$2Qhij_ss
zAaT9JI{=a;tMt>I)*}p=<hFsW!n>!ak_FBWhu}l8yeYNlTBpz5{DeHily1hH&12jy
z$0>h;H=rJAy<KgHxq=X~C*k81KZEeb{DWcVmZ}xbpZ_Kl!XM6D<_!Ng5RB^;E1l--
z^glXe!){vX{Pu4ku4v9Or!yVe39?6^&&f-iKmP6aOndnf=UGq=&q0C#sTx-X>O*&v
zRiEo)AG{A@Dpz`Vh<8{Rl_$?}w!u68gH(rir~$nOK{BZmTyE$|s+#wj^DML}+rE`v
z1Ab4!ZSTR%MA21(P1qD9DKkP-B?+!!PQaCg8=T1?7YGGSW{%<s2T?fZC1(`a#aO%;
zq#?(VM3_A;b&9%copaOvhWH515ntfpBiqwhpqDg9&p6MYYWSi?AQ>kt>xW-|Z|)#!
zgwx33RiJ>%7-oj9gT0Jf>O2eI-S|5y;PCf<AqWtwVN0FSa<$lT5s)B7LZPI-$ACpn
zf8+!+Yu@a#nmXZ(u%}QdXo*wGdDAGfoGPD4s9d{r_5KQ{KQaUdl{qFfMt-fX85w(I
zBG=gyS~I2I8ubZaF4e>(&RP5zvLjk`Q{P$g&tiLD<lHHm9K;8+xG=s0qA16P*vvkr
zyG)rX3ny`bn)jSDA6m#D**H4kAYlgBxWoxE0NcS$6h%@$Jau42CxZQKldKqCL1x3=
z-S(W*1r9rWsC@{bLhY=Uzv-O&316uoBVw2O;@;TMJ(1Pq<B}#@PorTgoktjpK5?Cd
zHK9}X_Npb$pL`XX?MYfl840TEL(Y4`lF0Zxqof}ezvAk7&doe4X17VH!&%TX{9LEy
zPABO@eqDz`Rg#%<x%zC0Z85Kt+@M0pn_M0epH{@CLs$NBcNz1KY0l**n4jbL&JlB*
zO7*UZ_1$4eEp=uqC>M=O2I&;nIklkhKe2_>GwP=0j?44GEW>*W6Do=`M(@AGDFcz{
zL9Rs~@)CM#INoH`1g|?2;C#I8McT=f<%xXz$?ML`C~wTN$?y)>CPZ}j66Ypw7<lQh
z$|CYx=uPA$0qrwX#v8HKw<Dj4AcHP+xM6-x=Jsbkiv9L!!&zsJC=;W(N{e>>7Is*!
zVz_5EIm}{kBn4!v5z{1WR+B}}Cm^|bp^H3@+9-owp5;_}%Am{&q6&;k4D$H%)6NsH
z9nh=ZQj1HnR`!|br1Up~akuIv!iSbRJ9+wr_DEh7%R<8fWvG^KI`=?xI79n*qi5kV
z?p@}*?%g=P*PyhJt0=eh(M3)Lx0Dw!b3~2k%S1av{w=vJ&+TvqG7!rmjDo;;kv~}*
zBq7Y4u?>-Q8Td>Tqn0;1*!U&RSdX3?S;o8i;b*78{co^~$Qo94+Gx0Nqcl9ZdM|Kx
zg7<P8<iQthqKMt`>gk7^TfiK88*HjuW{HoPP$ALyKJ%=ziK!gN=U_Uv3e10^d!jsW
zRrJ{K-L?~9%fgGtGTMlMV{)W6jf%VEJr4aim`JN>7RW?JDD^bPiR$;~u!eH*SOsvJ
zM~hJz3^N3#I#u=saVgDVJLR-tbm8!lR85<>eNg@5SS}E8&a-yo>qj8@fTxod-8M2D
zbZNu;&gn49$F=94hs7O!St#nIB5&0=5^x3Iatc5OChs|(H`?W%&pI7ggYo<n%c6LG
zLN)$y*0ULr-pGZ?*YDqR&S7xA<^=--g5&wh+UvGEsRuYGk<THvi1^{L<%B<b(K)aU
znnH0kHV)(^+a{mSIpVb50W+4NC_o|~)8Ig6ofo&`eRJ*PbWlb?cnw?JZK~59wwU)2
z?TnNjG}8E#X3h;r<HDksmGY1aPn)LRn(6%cXZY?K+K-BgCPo+~i|c%+*3-j9be|aw
zRCYro<C|o?L2|{bX{Pfe!`3tERu3+sL#Nr!=?!~Q<<B_#JfZ<D3hP6WBL9BISqv37
zoe0^165Tw{d4wr8*f3E}!t1{1Y-X?csjPp1sCi{g4K=)w0MSi*8*FIO^qJ0K`sZ*5
zkjGt0br4w*F#hu<8kk$1s8%m__A<8y`V5E^a#0hfnJ4bo-%GW6e{4#cVZ;hV+U6;A
zom=wE2dfO>x+JQ_XFD_D&0yGQTokO6W5n>1u9n6*X<ZFBZGR6h7vWucB}my1sRKuF
zN<|SajNW2W1XGtBiybz}9CTRiQP1;m9tAufMn4L5NKhkxi~X?pU*0^(@HkI3T~B63
z$ZSYq8yidLdizVx;~v=?@DJI8t(EiWD@qD@AbkFoI@$a<A7*F72+V;nF<#CcDQZC)
zGiRvRRiu^q{@_x_;rl;{R=oOrgYy6&$mgICRY@Qv<Jn4#`pceohQZ$aqYcA^*C^-S
zNHU0sOgzVhHKVI*NJ}X6G)>*~qH_<=6fGpPljSqw)$HZYV;+XqKQN$OqPlvzGYnq6
zaRb&LW=z6(>Q$DN*Bgh@8O{h4Ajj=kvfVM5fI$@eBpgVvy8ElnAs##|c*J0XX;==S
z4WzF*?CgEVd`I+_nwO*)PFIPColg9km4j~P5k!xHoc^1<nj!E+jMW%WjlCU2KVwcH
zdV1$C*i)sJE{wbE-VU?*+xiF2e1F0TVv5cY>!VnNsrjZ}ogA2pS)0%K!D6_G8f?^9
zenq0(JSh-Axbq@x^AwK1!f8_2X%Ci_p;(9U3%I*W+do@&s)Y#ViV0nP`)lC3mYr*9
zHlU7NMR36n#_IT8oocykIk>sXm-Dv;s(<WM%LWwi>LUJD(QrXa{nP<E5<@=;NsC5F
z>xy7`N5l)&w3+FH{l)Scs<<B0_J}Aw@JoK5r1}NRy?&3KtM_j-T@-|hiTzXq&eAVz
z;e%LqDW_=$KRaC?d4<8rd(SvHC_s*0>Z<qs(5W?x_u{9#;G-m}1goN@zPhIq1SI8~
zAxV;hLOiVrmih8=04Br`Jr_ZH@<0SKW1f6FQGQ=YWIFr}@j4W3lW-^DOVT8kCLA->
zAjn2k7Z)%0X$hN3MxzXmBQ{8}*UV3kx%(qJ<b@^RE)){G9L1ujVAVb5qG<*ofnZ)?
zX#=S19y4K<0gzdTj64K7i3%=Wz1b~h*gFOwnIFjbC0_P?*MnpJ+-$ykJP6dA@IKta
z!tfIcV=^W1&1k=b8LSQmPRTU3yyR;!+DsdEiEME~2gDvhDw6&&FTZQLH8guHMr)Y|
zvAx}67E7EPrAr#bq$QJLQSHi#+2Bp37sXggN{5SYk+C1;=EnTs^@ikv<+P5Zbp%e6
zD(`5_w6UhQTq;{g>?zI?$?Bv&F&A$&pQ&h4#R2j2cpRc`?-8@h``#NrKj~evv#-sH
zxpz6g#!6CLD`_2>D-V8>>T-ks<EH_jwuHHqJb0;+)3f^|f42)vOq%34!|X=%n;4T|
z3^qRJAx0WEo&4GoW@cl#FkBs8=9@j;;8VdE3EPxi!N0GDWT9kvOjP$T^iA{v#01qa
zNfhBnL!Lx*JIQMDa^Es9NDO|p)*v0Yn5;Ig@D+FgV)-FNoDhlC1x-aPCE%;+EXE_p
zutewuB~Kt~a}s@gb)LV+w0HyIO*SzXu(xUIA?-ioDZaynW22NEGBKA=_4mK(#av37
z2JlBhZMh&1^!0C^V0JEC(w>Mc6gj#6vnA}4(r3k9of)LRG_|&`{{x9el!_A7CN7Y0
z;3U<e)_=w0=Ch!3IjM?JSV7P(>F-~EYxw6v+VJLw+3MxRP~z$+!J7f8UC&{O)7(>6
z`BzRfzb9CPQ}?c`artV|&;OUi*kUqilqAmBL@(^)-+G7F4p~9MG7T0RrP<^8{vrtr
zWjM0nVXg|lbcpLFdN$W<$b(|aNvVSa{5^kT!^O1#b{H|;_<(Nd?H?qevn1*#IT)n|
zywK)>e*duyZ(3zoO>!iU6Aj37`dzXA%1Nd{kD3Z%a3!KTMcs6!e@L?VJ%q5bvd+8q
zFgU5|kAeRG$Ouw3BYe{AB7O)>bN$bFfGkNnUm~T<I6L&PoAdm;<&@BtN~XSYoT9~{
zl=mnm7<2Uw1IY@GVn4_<Q8Qc!Qkwd*OH9EBW}E_1I0U=|P|{(tM5>w&#W@OHlJL@U
zE+<{>PmpkI+59r%(WT5c{&{darT!zb9OOnkT0+bYgNw+_XMEG<wr|ZY;y_#;PEdo+
zJzc#z#2+nZEXqO<oj?p>h8bki6#wI1m?+__JRg+8<VF%FrUuOLO$pH%G`SM$RR&Xx
zTRqe5Hp_R{dj`;e7E_=~EqLBHTZp?*ydtvLRR!dHxuTL(bp8vzYj5*fg-F#$NG;;6
z=*M^=q3+@M%EB6n3St)^Jh+@BDgO(;gAX4+m=KJF#lA`2U=3%1cjRR&eAi4eEwag{
z%1sQvOG3t4FZZQQ28Lmy0eMTMKv>Lkmd00va9lGM+uiXoV?Jin8vh#eNbi_iy<bcA
zwm^1B;$cnNt7kgITz<f`7=-MAc{5-PvJ_!ady`|Xu$>V;VaU2Lg{S1jboM$MQd)`e
z%M&7!)$~3wpKqtDG^|ZTlcS6>k;}M$QOtI>Z`w^}i82A)BnxgJ`j;J(q9&yDZ9Coo
zv2m1{_+rr~v&Rn!wKLcxItaryLGl-G^MC9GXb%bwhdhzaf+&4|)r|};iKE983k!9m
zj6)h(lMf8^-(6-P*|3jtPkBz%i0GJ0Wf5XpC0%A6hYOO^7l(UEOaG2i10&%*;n@%{
zvX2pVo~lwW_g~=+(~qjoAX%972=?D}t-s#`rdeKTRk=8&nTU>;PK$X=@(NIdiu+oQ
zmv3N@$-`tiEWX^o+#|PM96Pi)NCk&@CQcA}xBr=j=3SvKdO0U2cN%P0Q8)T;U0|R+
zD4Pc7%hz<(@(zEFw^$GvgAt#l7(;aj{|Q%`A4_Hhi3gVDP@HIp|F>H6oq%7tuWY}F
z#S{!q_21~F5$IW76Y)_oq4&28^#5FC8s!v^fFlb)hu|+6pByDM{<T8Q;9`Om6*c7n
zBm?dYW#8Z+-iaCfpn>%tN4Wxt76)lzS5jim-ebP!*Nh-?LKq)OBf4o+%<b=)aSCgT
zCA|ahg|NuHX`L>LS%1*$ssbx5=>df+!)dcyOv?@CJB824)=8uq^<h+-YhwC&ya2_%
z*b~yR5-oO7%&s}!Z&9)uBd(Z$Ydgdo^!PC74s#hUoyc|gGdU)IpZR?O$r$PaJ;;5)
z$|Mo*q@tK(!sr;riJ)$tWML_m`NoG|>-ymAghspp5z82{4d=!yPHyStzF&oF5NB5=
zT7su5-5+Y{-#OpB;Ju_m7#t?C9f|6`B>%Zjo6kACW+O|fEEPGZ6d^dtXZxd{Fh7v+
zGWZrQ8|j^T`5zl^zM?RzKsXgFHaC?#CMjg1^w&-|-~zA|dPMSn%IK+w<NPhW&aw#h
zgmb4mNhN%&t$*nP^LwxqJoIpgkeFn3b5sA}dkm<DF(4EXpk7UHBtEM?&)?4*B{wM8
zTOC3(E8W#N{>jgpHfC=O)nWWpb#cJ|j5j_hQ-zTc_J;4JZT%~~@0n%9%b;B)P$F4A
z-#OFtlM6qGOA(1G2=s+Ewez<Tc1Wm-*mtF%_OttZm4%!i&lx}VqV?e>Qq`@6{%3A6
zfMMpOhI=_oL{GMDgMYc8n)Jg1O-H!MK7FCTz3`~w`dsd%hKH2_#aH={+-$!0uAz`5
zcLmM=7a#hYK4m@*3E}*SE+b5Xgg;!H<A2U$iLj5>l-1TSg0M=h`uSh*dV-q4r&95=
z1bQK9&bt=)&#N*089tM1iRDe$Iw^y6=28EiEe6PRi>nN_$d$!AdaS?Aliu8To6Ux+
zzt8rU_BG#nveo2si6EA-hi@F@pL!o)_zB)-@DvVPULce}f3}bLTiz44rKU=VGey(X
zl)nBZUN(+wBvDAY>^s6}_mlkB4L3jbm}GMiAlhka*C2oF7z2?M8RT=4#2Tc&o0V^w
zLSofQ$)E<wPJ~wcQtE%<QS<wJd5?L=ST+ZE;(mYjPV?QQfC=+NjgQt?C`ejG3rOX&
z{+QlET5tqIXf*o-(IM-tN*H8GA^{H70es)tK;E{wWBs?x_Qnnt$+K39AV`rvnn^0X
zmwNlB*@P^l?+#%Nh2hLlUkvc4dpxBiaxW4r6$-~JK$!1V_}2-=GEAN!u26>!<NXJP
zfRf&U?5kW`c_-3jUg39Qs93MUnI1Td4E08l|0J)4$HVm*i&Q`(!_g*rjQda|m+-XG
zxF0tR@W19wS6DS-1?AP14dY0bc${@!jbwN+K~fZQQXl8~|0j5d<4*|H7!hOTA^@WC
zOusB<y6ip`Dvc22VI7pZKFJE69^`Sa2K~L46u~iFeRf$)yl@iYgAOYWYNc{Z0}sWl
zUuVAd#NUBu)DuBPmKl&6)6FCB;a8M2G9Vu#rK&dBF>0e}mJOY^d<>-K_u(<Gylwyk
zf<>idw!j-#Du_ev6V&dcm@~acNs^`z<%ohZ%oT^1lqWPu^54~P0eJ>+mb@;eugn4+
zLIZ-IPWaTbzMF-KBLj<&krH$kgnP!T_OpFaYs~jN5w(Q(613qVO;SDQ`Fcv$58f1R
zWoZdobs1y$N4~@x&1dgKGsW6iTNUP<iA7FO%b)O7KWJOx_X#_TzChKz<(o3Wd^T|^
z@@6308BsR0*w@43OmmBCZL$>5Y~wQD_1^cKV0jtIN^I^PW|*Sp&+(1(W{3wuiHOWp
zg-%o*7g@zeUY*pE6ORvS?5U;me1m3~@v})(<vmx1v5`3>s81IAE}R0GdsjE2LXz$z
zfF@lB_$xiBlN<w;gfPjULbuXXw;F$mcjY4u*tVSh{&gPHWWS0h<Api?R-SN2&73lc
z?~6!x@Slis2D2M-&GLZX-y_B+&pHxvS#i1W<wh-pD4D7j_3>v&Y9?wnp?i_!KAvyh
zosao<o{z#nieHnY+$ckE%u7;#KIT71Gzsa-q=h1w5mkWkrr7(KzxF&J4Tq2C@<#QJ
z8S<{d&%Q84VU3W4JDr&x^Qi~uStaTy^j??rkLkMF{I-FZz^0Sb>LQO<CmK;4M7Uq1
z)5wbH=H0LQU!y&b<QGE8XL2>yArP92%OK$1(e5#o9><gqXHYD?$#j0sh^h6a(>n+!
z#sx~^<Q8|2Df2Wu1yt-Jz?7Q1<_7iX5_8jDGgSf`QF@3oJI~OeteEw}?NJG}p@;%C
zxIRAS<xf0_VaMf7qbIVnbcxyTW$Y4GP0AtjIYULKT1^_Rpdp(I$xN!cd(64=3gRe;
z3<_s2OcUeNS!q^G&|3w1MoFb3OepoxOJXkZC`%SGKuCGQoU*Y~hR4+IFg=NmO=vN?
zurzh*keHJ9`HbR&WYz?q;Fko~&nc0`RH@>aaneY5hB9PYIABnjn^fg*H_>!PS}ji6
zcpnq6I``6;+*#&(KW><b0ZmXzgJTxRMiHk%{z3XdTICehzT=zG-MjT9PpXo5w(w0R
z#e`bF+;{0?2_-x`;nxo7gyj)~s!A)J-T4IHV(_aWSq03cSX+`*#jQ@WF6Mh?IXXh3
zrqC_o;QO(&^HURdn@>=)_#{ifVv3s7CGOg3-gld+0*|ps@(Eu1-l8|;&BUz@Ds|F{
zfgRn6)JY<dqp)*ef;f%EGsNMpfd~Kg66Hutq@>&tgKS;%z!yIg@J(Sp4npdR&==<6
zboE}dz^oBWRs5-lr5EEi6bfpPd93X=!hxWEl!+nySt6s=!d-DWMU2dSgR0SeVw$8>
zyQp{D{Vu<i@X8V3Mrok;s1UJrGGTF5xvFL0d9p$>NDh9oOqPgdhIr&i+oLC&Z8~me
zL8-{jLc&WhX;;?BrpxBmgTxgQDnXPrHHtt|MJ3~blJZ1y^T2wERurE+wPt+W1Ct5I
z7tJLpHs$;haZx8H+d}6U$sZd7#A~r0(7R@Y93a7K=#LWIxNsO$VQD3HN^)UPLJi(n
zqHk*_nVuTQT;YZoj=ADq_ml^W6mPKq@oY=F`aKYLa_C<+fcHPVN-(@pq!t^H-XK!z
zI2b&AeH7R6Ff!qK5ne2JNGX21uzE5TIqftR`okIe`oAmy-pMWi{XnC5GWh0tP;aiR
zY?Rn2Nf2?&*|FBdk{ve-7X5$D5YkdV!^T4qLRCN1aiE0%6NK6~-0EMpF*4XcVO+`o
zbCO^|{UjSM8b;b%^zqxvQ71Rp-UcWr7q%YLhDb;-_e^3C%PCaIJ|?Jn?c*-&Xkz*P
z1x$Io{|^{KQ4emsXOu(wzqXURQx9r{Cd>!>Yy?e?hvD4W0QQfi;B6O~YbLpw>grf2
ztbw=CRCV<wamOyX&_pIu@lrI|V!ns}7&z7$_=1N@^#I{-{uK}p%lPjAB%m<B9MJI-
zgxuCou<>pYk66DY$AKE|R$~xTuWwaQT!iAdK`bVrk_Q8E^KST;8wdLmZul>l841(m
z4Z{p0!DIyW^16s>dCZQspLG3~9x)n)dz444Aw89#t}vxxR~jz>%WZ>s)bG96pz3#$
z3=(9v8WS9Wz45)1;u1eF<JVsd@e}#KF9!9(B1j{8lt6D%qKxH<B5~JAap^lvXFWaY
zPmLhRK>cUl#0vQ>mqnscZ{1{m+z>5MAFwKK1PQY!G}g^2Ker9Mf1#8!BCpS=;_(ud
zo#B2xnNL(um7oM-a8%qVecq<_;e1OC^4Op#tWV+6C{;`n4^TabBn%WCy&hpDUKrBH
ze~(*#*S}<hfi?8n?BN;BqQo6Tmo#bn#|Itvz^7*t3W1088EwaZ$p7;L3ZEiVs>GAq
zKC!9e9_SQbMo1L%Tj#Xx@=-@AfSAuqO;{qMsxvS4y-6@GzEKF=!)>KT#NLJL+I+gq
z6hLeU;7--O-lk?D@wfzGi(<Y;f^8Di`bllN-e)522NjP&Y7>ut_`73|`@XuCDt}3;
z7by?XlHtq@JD@Hp^!4q|cM;i023Lc?Egp!_qw4>*>3Lhq9Lm@Uv*r~}L%>Q@qn`8a
zz07olzqDk2uOw=lG{@<x+fZK_H6j_L5rn;dtkBnWh^dK(qb0LN)K4O7kUFy5=gTv>
z0~#)l;QH*h+jO6Af{n4PjS}IU6vMdAZEfS5$E2`cVMoETCDMu~UE#A!zOa72j#(y2
zf#(>NL$(ajpCzh{j;4Miju)Z`9K*jg<*+I7@IkXK@pb6Pw246{c$cEDiVK>imY(6C
zPkBOWF6Pyg8)I08OkvYaZ3;V>nMDdZqN%;3+V}bOsZyr0(bC~tUh3~_kx%dS<u0XC
zW$DGfe*4UEH<EAR+7`As>#=`qJ9+2NT<F`ANk0-6L}mz4Ok!b8Q2m$rE-5fe9)tq~
zMhbEbBq?W0n~arS|3<R$(zU1ZVvN|@=GF}cL2PwTkZj_^zW#$uNx{O<Xb)>hK&|eZ
z?)#u0V-l-Yfs|K7{%}!IWr!E!tHaxrU10i&R97T_M6%kk%NNzobVd1c{DQ<el$-O^
z2fluM?uDm?Tw9DHRE?CKXw}r;+h=|c9~dbo$&HxvqwjmKoMim~Vq|+{pYI(SfCJ{>
zi$dr^p>yf#g5AC>uP!1z;Uy#INDhi)e*ay>vy=WJ(htUGB-Ne1bG$N>2pAP&$Owo{
zhy({o>OY_OmQmx9&Gu$1_`+2(u<TEKXL#+5dWxLLj8CROwRxxSDM~gnF<Xt3Z91uk
z@0%2Z;XOii#(%=3zE4*@-fpvsnyvrbTaM$wYuZe?$RL5-O0+;qje6Oal5RRLG^bB0
z14*L2;&$K4zNY)*N{@o_pKfoHN(otRFlvobQ#lTCAyw^M=Ifpo*>RaZ`V6!n+kNxB
z1Ro5_Lq&qac(rq#uM-!PK2Ss=7KV$eK|k^JT;=<3x9}!GHawIR2MqsiUqUahQG?q~
z&G;q0M9``6gm?=v>St21RKAC`HIPKrW{vOK1T)QCn0Lu60K&s<SFiE?O)m}4Gd_ch
zdGHfoR}b+DCG)prF;c(!5~95>YRV~tL{?b1xQ~3<;1#1aBy1RoXD;>)ztpUUl)ZvJ
zq$){PcfM)Lc{Um@9lZ4&@O?)&O!VKop#fU3Na0i{>ew%Q(Ubs%5_o<oh|U=2DY1Y&
zsCstrwWgpgt#Sye1fgI=zuo5h!kcMfaUeHXL#b6EoZ?u2(K_Fec(bx>t}B)WDSK|}
zb{6dS9h6nzje<&1mVq^d^zYq$bEOuqq|m`TLqt*J^jq4zde(7QgL1~I#rwYZ1r?w*
zjRwY3<jeKGYh>UI9Hc6xXeD`2)km}1oHM?0KSs8`{9WGwsla+%Y8dpd*!Q=!8T{t)
z*oky@WT`JG<!jkK1i&g|KO+Y^x|*ZDDd!kK;|j!7IiBr1w=>fXQv|a%<j+K@{96V^
zIG*SbCia(aPfODR4Fz_>YBroJP_x^&%e&g7{xEwK@Kj+!FOIzL>+6+)ZFsH_nDWEE
z8@-9aNSFfFVp*KM*>@{1E9=Oo95?cM5!y?MCXl|ecKM!QpyP;nqWb<t-vN0+#X=J)
z#tUwL>-XPtqPO;nV*I=y{-iNWQttbv9|rNB5z3fSW0*LIG)NEh=yyuXN@u~+T2O&9
zy&&$~?|h%O@g^o$wj4^S)Z;P!`@Z*1u$F=krf4k|=&dHTPvZ+qX62ig`)>U=>`PRS
zeB|qxZ8r8_9%%GQ@Ao$}gB~F=;o`W7YR?<K;^QjX63Ia>xDS1AcQR9jFi7?vCbY?W
zs_ToxNMciUU|gHmJPefNTdWmV0ZE*#i@jarRhLTE>1Y`AbG`>4e_W7AIcVOe{_TAu
zDF@9?MqUYWsl}_qTYRs1^?BJu)FtqIQ`h?(k4{LP6ifFYxL54*t@P+#1A+^J{QSHx
z$s@RtzIhW9)&F+-nujTtMI7+_jJJI6c!*Odg$;O-q*m{|y#|$;pQ&yXcC7)Fp;ABe
zE%QnXv!~@j*;P@2s1+ai=EayL;V3iOSiH>d_w4q~Y0CznU@Aos1`^0q%pOc{>fZ&q
z<Q~}<fD0e9&gbUxvC%7n8_t0xz72_uH!MB_@;YU|@Au=YC=(W^j=klZ@11d@d!3|~
zedT-1V*nU+40BIm)Xl&6mU|x?)3*e5$!=e4*VOIkx==&~sEH~rnD?%5PJ5knZK?1C
zn1*tM6(8lqZAm2OoOnjUC6e3(jXH8FVK#Nnrh_Jr7D{cBrt!8bRrRpbWn1IqT3l85
zxkn{?mPtiN=3`V<jE91d_x{F-j-mxGM}hdk!?feAYP_?aS>Sv|B0M|~L|GQd6ZRFu
zHwMxtoReNPfW`^rfWj)0=Iu|Q5TZdr$?{LN*;)iflWODn2c63$gB#2R8Qcowvp9UO
zn&bq?3<rXc{=#I^f=6d=ciiX9<U95(r9!pN&=(>})^Z__7~J8OQKsg^&1OL4fN)a0
zd}R5Cnb~HsTciygUG1q9e_z~o=PegXk~AXR#Px+VMzWz<w>wX)ZXaTS!)iw2YMYkP
z5k4SU{cu+x?e@;1v&$TTq2EhxgrJ9)Z*AO<m0=;Uv3QS4uc0zzNa=WPnDIdo{R6`#
zsiT*~y^vrOEsa%s2rWjnC+W3%;{r2Y@@pk`WaFvPaa-G@zd8wooyRm)CD%l<Z<+eU
z&x~vP)=vi7TeQ;B3UM?+J#k~(Dzb8Mnfi}FG(vjA)v%*vkW}Y5?ibS%LaY+@L@M`C
z>W@aK62AL3(D|@Q4Au*$;!;s1sFd_1=`mT2TpQ?1QY{e}$$KMNJ|zfDl1h;+du*UX
zPG=b{oO#NSv3PQak*hRCIce_vv&eEK3FJyRsEiEh6Xn99-ujyN8IU{>C<$R&_>8gm
z@%IBw7n@vTvSe~0P=HMGZi$%K=N{P(IbM?PiKFw3C2jAy`9k?1DaOelL7Gc474rGb
z%lQnB2ghKG<(I##ZF``+(Jv)ca^#osij-$)x%uUncej0Q<AtK)jU;Pl|Lc>r*XK(8
zm#^SKB!epFCkfnffu8@6BlURxq2Nc;YIV){ljF}K3UARVq^UzD6}O~CD=;39X!zN0
z$xi<JionI^n1h10kC%7QOPPlJ^uwyaRdEJna;bH!;^G696k*)=xi18w9Ro!zfy+0q
zjW}eaNpdhw@08aA!44z`gMF&1A%U3qK4*|REuK?9wj=OL0e%@tU?^Tl<j|9F&$D;M
z{BWSNIK;qjAe=K3@u#@7yMNjD{8$RkzzZSlVp*3sV@z`?YF@toZ1Fx#2VD$zk9e1)
z-h0^pwKirp_)?smJTujXZZWIHOeH<h6?P>4gRvJkR;qjDdPP$tu${57Wl}Aj(>Gpg
zukQAp9QIn1guIpVU94n3zU2G#`UL3_do$c;S(sIV#H!Q#`W>$z4pIaDvM30!_2LSj
z??1`2S{g>b7{i<O1z{Rj=KI@w6-(;Pb+Vm1b7C?)GhVKgGZjZHaSy{Sy54wbJT!5~
z!&d-PlQ`9W=Q$l%^Qb5rug~|loRBCrjx(v_;H8I1P>asd6ZbZqHrv$d>m^k$sYzEt
z4et~wXI=gu{rKayJTygLN022OQ~(H--85G3n`D9FPwP2eWKfGJL7g^0*S>0jQvPq0
zxIGXA4(z5CdcxaHmvuMgswJwVcMuf|EIfskQKaaFftPPEg_Zjaf!<dIhTy|PB{}F)
zvKsP7V8v(6{O`8hpWjEymjuDh>VOOYmJxQPPCcr-Oo_Vs`lkE)=ZJ%qVWGXesvU07
z&89}J-rGb#g~ix7$o^qiT;T8?N5<&SAGdJuXADZqiV7)7gJn-ls^yh>)f15);FwBv
zJdw;u4h-d^`#BFAXrF$t@8}3IVd1|b%_#~-YK$8F-G8GF?la??AK>>}g%m^w@i2U|
zYxS9r{d@N)^S4&$0h9g@XqtLyjDE*!n>&n<lHzfQI41H7g)7l?CHnElqR#lZ$$p?>
zmMk7iUJ*>9aK!T}^nV^PFm|Q?Xe_?Q%*pfp$T<DLU3Nsz-6)T65|{v)u-w5q{d{CY
zMMOp<lC4fupV#WT8MbM5qn(0h>r<nfcpJ@hC`oIKy@X99t3f06(fjN~2Up;AEVD!z
zGq*%9yxRhDig7tG5ELKj6?*Eu7Q!SdpdbNpsh5_Jg!78^=7%l3S9Ks?Y6!6f0_N1F
zkJe2ev|w?XC<>XKfpdEET7CEbEC{iuDrowo*z3IEdcs{6g1aU|hS$K2{jprPiwuZ!
zDJdArC33`D3L{>nw@tK-sRsxJHH#!IOOambErp|KylW80CLulXfq&mq6ay>9=$}38
z`)Au!H8-Tw9x-j%aT3=MT)`j2tI5b*$$2GuhS`N|y2>Ywdns0H$>*<5nyXJZa&|i7
zo63hH#k-GNjCOhUIqeQ_jGe(FlM^f(Sz8Qem;h4zucqC$_}ISWh7oE`HN$jaBsU*+
zk8M7uj2{m|U{@d|hK0Ew>0hsP(!iGi;xHpI)2RW*yyMJv9TquKiMa<s=<H7*T-4O~
zRE<2+_Or92D=%oezfYcs`PDd^GbJL&)!KDhMMb@m*i6V=KCWZ+!E98N<KW7c24)sD
zJCY6g=z$dhm$tA@2e%)LaEC|fyVpeb+|p$K&`cgoz&M>|7>nxaRqjcfnx1-V%ku|j
zvxad@%lL{@P_M-O>$=wG_wR?=p2I|6m6zIE`7U(3UKPDRw?Oq2UliFjN{<stAE&2&
z)nd;T&G%>br$KFyoNeip!N4WL)h~bA{KeBC#r=6!Dys>b0|Fzq{33nUCjvP?D_a$m
z76r?xPN~$_>FwU_*G#@;iffLM<W;k-?MCI8j{|VIG65%~5>IOPMJMx7D#;Eg4&s2M
zp17plWgX1NoZ^uqO?_A6#h~_Nv^&KyWhd*)u=5a|8+hV%Tg)5fBWjlt!giq8kgj9N
zf!Ui|wx;C!&>^y5DT77e1DxW}5?z-Q9nc0cghv!NY;krHFxAgG2X$O83nnieAs}WF
ziK!G;P@jy^6-gG_m#`nC30(LH|4Ub+L;96?1M8Pf(ya=k<fV2rJn0KN1EtfV4-Ra)
z9}r2NI1~Ka(o^U$;oZP*a}0=y+RG_WQ!eqYbp7#>r~ywk6*}p;YjHtv095Z?s;dr0
z-8|Jmpr9iwB^8oXk-acYzxBC=KqaiZiR9y2(N+KasfG2a;6TL<hOn2edd0`)JF`GQ
zGJfO~t|N5sQhnMNW(Gh|gOn2p%-ndLio5CwpWC_dQkw?`>Vhi{6gN$cOwsopHhr>a
z0-B}FX$h={)TdB~KMLIWxZRN)+_fZR)$9qp<IDR3cg?Us6K@js5vPcIx;pS_V97!Q
zExcT^M^rK<Iel>yNmj8t1GQhbcz&^0qqG5xd!D^BaK|?mM)rP5S&@d!k*e<695{Hy
zLK^j$_W$WI<v1A0!N_+-m#MImPmB!oO|!-8d(;(IRe9A(0j8;^O9O+uSRh%NhEoTa
zc2GX`!efEokF<#U-YlR%JV(-~=NPYI9}dK|X&L?wjV>L|c2n#$9c#yy9)Z2>Tjs}@
z3ciLY;_ONZUkMLLE7LRbTK$j#0V>3GhbK{@O)A2!xTx7E)p^}6{r#BMBhG8Oe?TTk
z#%m=pCq&2!5$O1mzWZ3T`>p}9YeA@V6;u=`M%DqZ>Q{cZP`t|!Y>3-TNJkH;a%bpU
z|A?Nvw25?EP)m%7@a4F$P(vOK&l-L6FScbC^&EsB3)4R7JCV}%`mCSqFM7ba3sMrc
z%P~i9(%-yqK_ZKgQP2x>PGB3;)zoFW+lLkoXHPhVU>87E^!pN>{DB1$?uYlKhh7Pk
z97$FWE!BB@EqH(wV}Um%wFCUppk+GoO$*AcDH~%b958yVT%s@CY+-q!q8c&D2FFNC
zUYpMr>+CHC3MuVF<Y^JPa7aP|OS?XxYn!zQQ(39zhrg1LS&+!*>MxW9<wMDFFf9fq
zBI9iZ`fb%>&^s-JIAhC36%7DnZhDQb{H1vqkW*Ym)FQN5=ys~Q%+>e*XeoN54oNOB
zL=QQ^c9@Obwz7Bx*Ht>DLVKxR^QY;QH&C31hyld$Qr?dZFST9KAv%HA56~bmxy-Z^
zV5(a2cH1w{GeGX@pkN&vHp1I%xyteC<o~v<y1!-YDueF5DY=VBu89gDl?EvA@rJhF
z+}!e_iwwAM6ofcn9315l7Y6mOZEbJ;kA?TeeGaRy9JI7fRYiN-K3(4O{7t4ctgo?_
zF)j>W``g-1zRiwXhzVA7LUf6*_uFj`m$e-DmT8oa#D<LFp%%x?WyyV}ZR%Am6GAQa
zv!blhl93@v;4G$Ubzpzn3x~ISaieLPS7#V~hNIEI|FnJa0W%yGvGbu=gy>-!#4b<p
z%<MqL?3Rm~nrhjZl_Sap%>g0Gb$%}J=ra~H2%b*jkp#xh`WFVaJ=pT5N192I?f#ep
zJ*QUzQiW_m;MqvShJEtBHSDt|+I9?WCf6-3@mtvWO5oHd?2shE6MhL)j8{We2NGu*
z058!HT$UqpA8uUgk4yC>g;8VAXexXPLWH=|Qq-8Iuh|Ossymt$SG6)6%oyAmMe#un
zA0F^E?gbMKhzEjNn@}`iN)eh+IS%+SaAMEsR}VMYpP9##NybnVX?))}FwkmP)V{gR
zL!2<?(K^XgWHdGjD)Eaz-?!t1-0=L4_cZSkAkpDrowg@>?QD<0)s2RNaW5s3bohMz
z%en}pnA-xILx(AB#YHpqf_>5Maznp(yl^F@5nFNZd>s>Mlv7L)k93#8!?k3gZt}Jz
z0+IWbkS=xB3wP_!KCv)4OtV<p@hrc-OmB;jBtprkMJ414Z|y`i>;-)>)9?r|3J&3{
zykg)9yu!rl?bYst=)XQR(*(;Y9a`ndpF%6s)$4ES$0GEszj=eh<PO|K>AY6|`Ht<L
zTG-ye>9Eskr*8UDbo+&-;~t(+l#ouIbTxI0t~hMl^a@H&k2*_2lTijO-KyQsEj+&%
z%1!neS&!thiGEK{jm&3Ih|9o(BX#F-8AsfPVb6X?U%uKlm+&=XLSi>yR2Ht*R~@jh
zexk4|6M2?-C1d#7rsED-phWJD#+A6HTv!&Fc!C=8whnw@f6xowPu?+!e04VICI>Ab
z4>3Hl9`YBc6L;v7c3UXNN+pf(Hlf_eeos3aE$|BA?>&VGCkuPmd8OVJd8uGCO*@f5
zRPK5`C9?4n15n=%A@Q=g`me3FSL3_gle9BzkVKYUG+95e*J7<_X%?-lKyk)uGf{Wl
z8$HOwcJXw|#x<5w!D3?sfq8p(J+6nZwe7t}N*K1q59>qwBA<zr3x(sV=ocw$%p>~h
z4=s2=Dep?;-ONCdICiG?ozOb`+=uyUBlXHgB&kCS^mT991?6G^F=03KjGlD&1ij=V
z+jGw{QdkTZHxtpw$&5LHyXNU1U$(!1f#w~NTvA9vYQzGa;O%36Ka9T>L|~*~J>;79
zaj$=~<?UBB+YbN{K(cU24%BaZxW(zMx?f|yBa>8AVJkofpPEQ-{sK4U`<5H8G{F9N
z=J1^)Tx!k*?(V-^9_ZdeI_nYQWi<JqU}vb$&fZmac6a2qT3%?{<rK@607CUaRgvpH
zbz-Y<j}iS1Q{irQ?&fal)hay2+|n{AQ-w@l%uz{~xTE7OOlS$ku!~{xf%2lP?&^+@
zKn<#UY`!c#Nxhouez()Ef}D$}#LYs$^q5rF_rBegp<qop_fNJ)4rx)k`(C~s6C*?w
z>D|27LFSvJt}k+L>D%gztIaC$(<ov(Xo@n_u@P=o&j^6Tm{KlNK-8<b*6oxZ0gVcd
zG<$~WOQjdN7Yy_ueaNF#HM&@0r*W=^VTx_-p4u;}?UbgXRvQ)s5vWr}sgk}e-3~jV
zw!hFszFV^}Flr#GqF?pb%cG{RG_d@dQq)+m$MNcurtYr)Mx~S?edQ}^J=a!@F=4m(
z4X~yczY3iHd-E@%TM88VI;K*%@pP<wICh_*C+smWMx)48<yfP}Nhi&w8rIjHF+1wA
zOf$nixO9g(Pzt=m{7z}+PTFMW>4h^8N=x95Xa(8n$%pi}4;ZZ=J?Fy=5@5<D>d?o%
zb*AkU(X!MCk+^g5;`h&Y?|jO_2ydt~+yL#M;vdGl9iEALW2ad<0TCvmC>`6AI`c$#
z--4*qJxE_lz~Ut4A-wcTUaUg*_DQzaOv$DIX95U95<kT4HO+zu+bkt^gxND(%{Thc
zlXmumj~lWEi1C^n&{O9|t-Zo*OTnn(F<5B{c1TZW(f2xT^aFO5StNcAiy^e+y?J<-
zp0U8T><@!f8}!~Wz`T(gKhQ->qW<Tdd=`n4xh$R^99sZlzZByhdf0Yeh}UR2A$(@H
z$vF0j?l#|cJ#-W=is(2gD2k7Q-<>hZHtSg?;tP{Sz&_T(?fSUE8crw=r#oZ_k0jy7
z#0g*Wfex;)^U18PMhikqaeEuw%<Z+ooIT8t7aE4dCR$38dw}=VyWHXrn@+#ArLaVK
zb?7Yw0MXyM&rRKF0R=Ut7A_FfkkejwHyyAL(U)>*F;YuAcJ9kV?!*liT2M@a#elIZ
z2ouIjo~-8XcQ4yve*phET$D37_n2`Z{2#f;ezai92pVl<20V0vx^$iU#I~mUy}1@t
zgs87Y{EW0i2fBNM`}X@0;OM&15g_XQ``5T@j){J1e?d0nSAqu+{?VDIslcQ_VTb5r
zLp>a+=DvkJ8aZj+%rW2Vol`A#4J{td&fAR_kD-cR_1V)bSiIU$I3U;I<I&dr@kWcU
z7@aXonCphp=eGm8cw(fD)ROS(J4p3g73%IDoo-Qpd>A7n`3nLQR<?cmwPp5<CGbzq
zipv47kv7DAZ*Ek|7iJAuNW5$>AaaKK`eS|8B8zRJ^%y~NtBN8?WJTk6uJUb1_05B$
zdV18&m@y0l@#C3K^pj;4(xaG^iKqZ*M8spw0X=G{1(8W@w7tec7cV%dD<kbBIS^(}
zqfMn4P@>wgQ=j#`S%(-Jh)$BMs!77y6z$L#u86wQyRKY1;(<NeMS3zeOSmw#))Ehd
z^jZRoOkE7{9N)!gxBV7N<MJ7k2ZN21+#h{Tc3+Q>>7M1~l9B`nB3)EdcWeZb9UK!Z
z5&-<r<|giK@6`8(Un&v6z=&Z|FP!XN@tTG8CUmqC&QD<Q+`CS42ft|NC@^k^nFg=&
z`jg#pyG^@3nFz_A=>#1a&+>*(blj1a^L}i$UqB(aBw3i)3ewd#d-cpuEzH=U%!`jL
zUVO4geWxGxx4QD0=F(E0UO87ls6!6_t}nRAg0hN77!i;N7^I2o7U}$xTLrE)twh5%
zjyCBK;OZ6nisr3$hr9F41p;ChZ(gOZP_2T@(U2g+n}Z9m$me~gn_OdYp&&>unCco{
zE#6L~zfXSErw_D1vOakJ#c(OfYU^&j`fhs<dJse^8UH1miJ;|Qb@KtH6;>{>J9q*m
zsvI84x6AZ__Rant&LcS_99A3Fi>AYarBHcZpYmR_o$Js>pz9Hrwm@dt7-4F&h0Z{S
zNEwgP=Q_QmW3%RT!-5DUuOgQ%&wwB}x9#9ZdfU*buYWaH3SGT1)QW=Y?l1MC$n6!5
zwx?i*@pVgybywtAKEbL_h1-FMqh7!DH(gZ!P!Yb1Zz<_Ix!+u=MCE*_pBo<8DF`2&
zAZk>0F;V?>wtFDY_T0Z}R5c`1n&A-o=NGzegl$Id4DVh;f%fjxZ{1)3eR`<=L|uz<
z65fR8qTK^-%U7DESGL*@D2sa6u+Ng>nDNqagi29+54p{k*dOGFNVZ%n5Zubno#LK1
z-9UIR1`ug(UW^PeFTXg&9rlQouJQ3g4KLEQgtor_wEO8}7S!9Sfq@}|b(-bYcrYe2
zw3y5iD0;9jlSgKPt2WwM3<$vwpt6^Fa0?gDaFZhQARj_;mGNStOSH0`=eeySGZ8hA
z!F_Z94A<^?x6foV6^6@!jWz91r*PL!iF3bty4kM#TgbljFB@T`V#b41Jo%10cxwGz
zs;UE?$Oe={xbziw$I}rgDiz>HIb>!Fb=vKAonhhGq-?7U^Z+SEMN0<|oWd8~ptl@G
z?ja{4X{VSK_&hSl-M-$=N-!>;YZR(Qk46rKWcB1wcl=5VW^Yj+1w4^Qe!$dkO>kGf
zWq*)gRD`H05XjZN1Kb&#ErcsjghJH}nxFzb-IY5mC?`}|C6Y64&|;jBZZp*R9o#e5
z+FuMREitMG!LJOpc!Zn3)GjxNB$YIwk-C0|Tl%8?E@GyaXaXR*yPH<J<u6$vw+H7K
z840!jT><yDX=Wr*=!D8f2FD3rAw$oZ>OMNb9A^JPyz5Ls5p4jmJ+0h5RM+gh2U_e0
zfVqhMEah#Mifc)#s?_~;Nz<4+TMAHKm_Yw3EOeOeQK_UTx7fXWtpyk0L|%=W+Sn5C
z@<+e4xxj6?-omlH@v_S$r!hCDa+I6@q6JEAXA9(*RZfBXa-?UE4MQ}cA<x^5wQlWv
z+YsL{j8M!LT6liQ{of)B=uOHCGnV8}c%{T0yTCvobU1GjJOMX^Pj9-)cvru5chg6@
znI#S|o)#Qj2HLCy_1{uA^%dLU0Lj-ULnV_!=(H2u)ps>LrHg4LOZFZjmW||cS*|;C
zgK3s|g(7MP98|C@toiWa!1kA#H@&UJejwfxRXh?U00va~0glpN2CB9<e-PsxKR}eL
zK!g$qT;^YaKVP;@DGQHM0^Ko2izM|ylx{iKf;=DAd|uih>8_+Pr$6mbVEH!ti#(ik
z$X`XAgXtP6xQTxMZ9C|&8t@)~JkphK1^TwM%}~yj2nhp(e(Qtx15vFlsAsSQ#WH#+
z9@AwD1OMG%0VMy1gA@pnxc9COyt}|c@{20S*JmL38Z8L?xV-tO|CntNt!PP*+i8GF
zYWDMi*QeNK9x4a~x*b{?xb{U0A!xTYK){N?m|wr8fz)R$Ok7MczR<C0N$~oNz#EG#
z)RXfpw<>c@SH0#3?%!g6fS-WZ62e!pCXg`I0&v>#e9tn_aozG#pl@V0{c5UVFi1@-
z-6g6CvjaUM-FYX3P=^9iz^UqywSoMNrc-%`@np%AObxv88F*M>lh4)Tqnn*@VJp#*
z_JU@TOu{PeU=&sD9{u<ptMbG9(29x)rmo}FJN0cZMrX}1YE(?@xIl>y4eCuO-Yt9e
z!Ov~e0ihzYUU-}&#vEAwZ`SBvzPIY1yr8IAjWGu$?saeJq)iqC0!Z5Kd~xkX8wgjh
zccXqIVssfA98=4{kT;`F<cb_wqkDg3T0>ZRmtjNVvhoI^HsXyK;g+nk*DedUK-A|#
zGcweyV)wL77E*xMxzL0Z&a3Yc-Ra4upOu>XNWGEbdfuHMz%k!*P@nAm0Be6iF(wT-
zbQG;nskM{zEx)!p>mWQOpiwpDk`V@@Gq3R-mAdm$3(69YFXkd-B~=vB>c?4n?B}h%
z&WAh9!vUo(Vv_=lY5BG%bjHWFbuTz0*mT3MGA?Y)#ZT(nj<%`^k6X=wi~1=wfr{#C
z-CF(9;a1{-K+iqNx+yh96Nr&j?>(zG?XqK%zy{Q;tP3k4dBc#6XO-yPJ6jFPH*E(L
zSB0vn7sZe;9-SxZgum^KB$*58Z&*ws?4UYrpw9cGRr|T7SuYZqNX4C0a_=Oo^KQ{M
z9kI>C5F$H(r6@yfN!J%2vW<){lIPwb`grL!Rdws8Yd^QYD3DWz#SmZyo*V0vb=0>O
z*uPBd4{SV7T-LRE<f&2Le{7sH%vGUfc=H&T6d;%CQJ>kCJoV;KNQXly?^6BfiMFZd
zI%PD4jEDfZFin^JVA~-8q7pR51937)Qzu=k51nq?W{PW};dul|DF5X;qm2ckBgJV;
zmI1$dUPtXlcA*y(PXOtVyj@r8f}dK2m(jC~gqrde(1?Tl^iqA>FLowo>qr$ud@zIY
zk{4dC?`{_L@E7JZJY{i6lrqvW_jYfVemHVinWTp>Cz8%1_|zbs)WkL%6e1a-Xxe30
z$!&POUU7z9LBA0C1nG{XOHW;c$<hMIgh7VY@WO?bu20oB@3S-YBx5{I%v>_S;~P@+
zQ|}ruVk+1HryeFxIB~J%XVmIL&qnReF|Ksh*DkCYAX9p}`siNW`ID$M7n>hsVo(YL
zNpe6!>l<~#&lc$M5IBc%OVqeB-FAnC*nT}6!RZjGeA|6`-l@^ye)9<U6VFG{PLl=&
z?xoXzbhn+hz2O!mpJUkXA|;Ji{;FEN>I?e|qt`Q-gtP|9nKVK7e$Xzf0BeP9N@5+b
z@F~5zUGxuQ&6<$GL!<4YlAvQFC+O22vu*Pv+X}Vn$zzwQCYS3&uS5lLu^T!>8Nbee
zT^bG?=w|We(7nDh4jgPZ35Tp+FgcZgg7@d^W-5C8TgEpqKjJZvETWp)v{;|@anySN
z(d`gwTTXVt8Z37lB0>J+0%Mb+XMNLTe<2EaOxEF3faAnu8~i!Y{^qFBw|lxD9=%YR
z=R`}#+~YGo(;XwCm8Uz4%o>pnQrS1oJ>_nrt?A7ZSB*=7$%iCqFrl+m<$(wOj%xa<
znRb6j8k#anMu@t()9bp+mr;kAG?cJ^rBOB$R7a!Qk9CWkt^OWpu81+go0@k##m{}K
zACExL$d#3jg>gy6K!^w6ZMwxVOUpoYk{(g7o-}GH>gxI0*=I>>9!6`-mq3szlc(vw
zzqF9!-+>gh;2C}NQwz4*Sm_f{?@4`VryVW}`v@K^G7}`3$+zp@zqBA&i4x0#NXrcM
z+ydSCL))owr}0oT)nrv&IZl7LwAE|5X7T9hs=N$xG{rfg^(=km*S4uBz>R<`Fw(t0
zr_+9Hb*R62v#|N%h>7rt-y2lr=qf$5rSW@XujMfx5vqdi#@z(v#gcpU_jBxY^NOWP
zxFNb?3{ra*=ypf!h|mC%^&mSzb<l@=RHys+qJsMjE%)-U8gEtcVu2>zuAiRYYQ}eF
zKKVh46%A*9M18bthR&MR>Q4`n9U3`OvVF38==8-Ey5c>%dM~-6td1KyLofQm&Z7r;
z9mDz#f#TLZU*Gk<h2kwk+)<I7Fc0pB%k@>?*=@-wu8V9ZD!hqL>mvtjGqLHE79n&(
z$0>D_s+v8byF?I5qF{{(O|KyD;F&u6Biqt&p#kB*WEH4HH;>onEV8S}hoVxZPj*{w
z`R}*seFyAr_mb2@hKh^A<)?BTH`l)JSv3_nVFgTjGufMDHKR=5wbp`rlQ+L4e3MZe
z!ZcramyVle_gh#1?|De&8Oyv~pT69VnTa0T*z4r+OHl8W>&aiYTJV{{H(c5xr;neL
z8he*s6k(Hcco>UOBC$P^daJ{0`rQxg#tvdU&kD|5(QtOZS<iXS?f|aRczejUW+1Yq
z-=n`hDJsmBaT7gDwy+IJYG8LgCGsF)Dn=_KxCX_Zd97|AZ67i`n=p036!8}Pnx)I$
zw!4B^(WA!l5+|x<-Sh<?+V`yxUHKUH#Qp$(aW$r!ZvVCY0paisz~X(;CZrvo9Tbv+
ztYKScz@GQ)qUU{VTT4|d-d1Lnf%;`#lAam?4L}?1DTe`qJSAQ9^G9sE>>5enD2w6g
zsqLw+*=ivaDJ=-$ElMLu-`$t$ZS`yMbjGqZ>8iX&5B<xYZUL@s9y5WR;kjOVYlNAA
zmXIXdGlnx7_xD(~{_GXIbv?wWCp<`oI-!U5|72&;6VxSdmu$CqYn7+#VZXPs>`P;Y
zB1tVy)m?Ylmc4^$s|=ON;8E^-na=pmf>7_2kTcROjpXF*^@cqb6j9B~M&hcOrpNtl
z$LkA|>Afxjq?+)>`qdq_VRmS^xDCl}#j7a^`jp6S83x|+n4*Ss2I{xJx1FMdDH;uf
zYEM@5vY+<SvG3WA#U@>3JPbg5=t9w(x@23cZlm!KLgOMS#7QC`dOp-H@CPCH#wVNI
ziGvMLDU&@0g#=D#sp_5U+^EMbq$jFRbWKL}!E2IuwR_S|EC1l}P9{nLrDJ|+Kia+Q
z9@}itsL%*h>PV4L4MZn|$gCoF*vF=+n76nYP>nw1<Pv2E4>a*6tKApgHI|=#!&Ej|
z!SU`l+>$uXXQ<9w^j4?!;CW5<1IG0mtwmT;#8idbUpu#F+t%j?u+|PEYaQZXzy#_N
zU{9f+3*5R>TdxlqpyB2XAC*8$Zja-Rxw!RTf0&NBJ>-S79mjJyn?<=_ooPE3{Y*ge
zu98s;xlYZ<a^K3fZ7C%oi3RBuJi6cv_sGSznbEWiFp2kYk>(LR|73SoYYRpGN3(@$
zhqQK(kPXW1a*l-=ze;0Tk;xKab+P-M-wxP7kPq(^Zd{3Ka#Q!THm#p;YE~Pu_+pp>
zDF(N3Z+<;Gsm{Q9*M#Fra45v9F6CR@|5$W?Ja=RZ5%X=Q!t6{r!9DS?ZJ38csEGMQ
zXNej4_jc~5pGJqbm#nGyR^j}Wq>7{5t#8^k!kF6*MIrcCYd3R)1)_5pfg#+uOfym5
zyxswK$!-fa+=q-NQtg>v>oX7AY39QRP$-QyygV12<#u@Awh_k{J09hV)ct?z%a2;%
z5Rj)QW-HVIqVZR?hxB=GMwg(YVCf<Y8R>)AGl+c%Q}1WCA%?>$X@%Dt6s?UrLACy}
ziMP?hfn%wc$%yY}@_xN<Yjn;6vzvvLHR5S6^MvXa{h=@WIC|)K)6V1v1t4CtKmDzJ
zU)iAwN+q?V^%tR2@aEbt^!>lvwL>pF?;Mi+;o<h9&YBTD&|3m856Ug}5jpSHKlGCi
zM4yGH7i-JJ<GUE;i&)jv7J8c!-Pwbnd=E$QATuG|w1{#;Pe<=gGm~r##QN0IT@?ZL
z!}f_6kpv&9grD{BNw!rEbTCA2A1r6E@XnvQ$1@h>>Ab?8y(W3#$lvsv(=9kt;`zO4
zCM*4w-aIKX&Ej$4Q%x3i{=851;-~Dvg;{2X<7qEC#l7qyyKK1I;wrStfVi8%-*x6x
zJ5=AG_`1rD!14t@({az(?j&ikWa}2gUz(cvi!PXG`^%GXKp7`RjX2TWHO+SBi5^7n
zNW_TjNWA*r@A|t(E!>FNVU<4~vh2#(qdK8B`YG=WdZ60CCLkr_%#?&I-g2Vb|28`=
zMN8m`C5ydGDoHgx**$f#?VP94;220tdaq;pn}=<)e!(%4>ry6^sH%U}wexHnvDlF}
z(~vFU+|Svpbt_9{P3gK|nYB>}9Zpj<Z|H3o*k9lW9r58yOoK}2Z_)+LER-t`|05Bc
zNorCn_nY6M<*p1Bzlfqhj~a<j#6LokTY#wP>Zb8%yIU=Py}A4(tY*ZqhA2vT(Nj9Q
zJJ+|$@t`JezGsq<wh3zI4enj9+qS|Y8wQz{ygYZF=Qi8fYF?V@S8Pn-M4=?*PQt*b
z4xQ=tc{u_Xjf^PZ@Bjsi#x`*;SYu(rtyb1Zl5sFLU42;RezVbznTh)Y`c!Oo(6+@x
z-Ck=fq(9Lh=DFcA;zjpUoLhKW)T`wLk`Vca&%_vMCCSd$-|SX@Vp|oE<;$x^LYMGJ
zzvQ{YS6LvOYS{IGS%L<)pXy$^-_8<0Yp|X9%d30CMef~ywL09&tUXtP6XiRxl^46K
zn@5Ge4-M8-OEeP(A(lKb-d(uUHW7pkyNIz@$?BB$?(174Bk=@Kx&ps{DM!FmkkW2e
z?yW2B4@g;nr&ul9W;P~SIR$R^9=i$=k34HJON4dIz1B_m&;qFj9FhdpvNxzR-WlsY
zw9dkeA*hfUj|$d~mLEVFcUQUBZMHwa`_sE6EEaE+RcE;yn?-dRZMM9pa9?}}Sz}!H
z>p$&EjqiGx?-X#7>gc$qM%$CJHa7t!sFeXXs)+^V;Iv=r<v0Nfs>Zf)fBUXg_=pGb
zw1vt&jsh@DLr=#Y+RQfQ?!mR;^#_fl8eguv`#HM`m?Q~O5fHEXDOb6H$PO4L8HJ><
zI4Pzu!LQf2F`ey!7T^E|dliN<quQ(7&o8#no+Xl8!FZL?7H!Z6gWc24w@`AT!NriU
zy8ai5s^oGvw}bfwIv+2ZO0w*dhUjfw{Gf3J0niJp5RWSAEdohZx9$3oCoHIU-Iyx0
zz*5%;Yw>3N<+iB*;yn^k*a?JJfBrkV<Eyrf;hF{&7l}g-=Jga|PVufj@!qKSdU?7$
zw2t7AjK}pkVY_x8vTd`h3P<uEEt;z@`Xef=l!C*9+A$4WQDR=u&0e-m29$|XUYym$
zIZj=^O1In{bz=ulfrh^UnePBe4g28>ba6AQ<nr{9gQ!_dmVa3}Y05V0>P5C&QS8CR
zfsfKL3ZS3X=%|B63&!dtow^WhE&#Ok`{(tppX(=TX}wG~S)H{|w|vJ=i0fglp66FX
z%5n4n^Ypi^?5z4?uoiCzHZ4IlU7^#K*!dVUsQ?H8a#!i2_eXvChEaRr9~P2wjl@J}
zs4gq@+;gIvcQ&gRA|P|*f|E98gZ|}N+Zm~9q{fsSYl^!44gFr^@cNle787&cn|jYf
zb`bK})eJ8y#e0WMPE#+xtRLE9J2TAn&>*q);V@KKo;3C7le$j}t3(AU#~9rWTLRsi
z{G7gEz15E*$B7o2jzO{M&*~jJ>}K^Xt~H)SNg1rU%XFP_j#Z52NoZkM<C=`AL7o1J
zjyq;gz;IDk8O(es8?#Us9kOR9#o(=^%?_Y6IcKB(Wwl)nUW`N%TT2<+%GIx(t*<}L
zo{`CXhI2xxjkPl@$jNK<fA-iRh9Vdk=P|>j-m*^bI%rgpV2<(buIJ0>9}Qxw=k(OG
z?XiLBq?GoelEK>))ped;aHbvINSktUh#X^I*WazO^Y(a{ELclSxZ;FK%Ca=|*9v_}
z<R^Kd8t~cU!`N@$lOYTBUq|e$<^3IFk{AijAY$F}uI_h#q<=x(u^<gt%ke&^N5<GW
z6-afeA|nL=#Q^@oGkRM@o!lGuClA-)uD9sI$j!y6#F8r^BN=M)R^9$hJDx`hBI)3n
zFPG`2H}w7c?R>q1z~Q;N)P&KnVi@Wkuj=m0Y$wJ!$>JrXI$rkdmsq>iICD@}#s=XE
zYnGszy`ft~cH0Y?k?n@;tlp&myUzC9FJ$%tL#!INTHg`DF6&XqxhAVU^Yx+=>@EpK
zX?RUQn`Ej(>9N}_!bg%-8MheOXbMg(&@G+lD{9P*h94dqGBg#*C}*WU`CfZL!`1Jy
z@UoKGLUIScr%QI&*=8E|VM7g4WFK3t)JHr=Kv0r!3`7>8$Kn~b=M8<~8q*Gezp!{T
zXD5C=N$SBxZt)cBVnoRd?yZ2ZXsV&ly5HPyK*aV8!qLog*{75b2U7BPpm%w6%mYXy
z*<$D6jgse)_-@v}_uIhfpG37;!14xRM8(=pP#3BP39)TD%<VAKYAt%8<*OpjPSg@e
ze%BSd%ii>0Iq;<zB;@@PfpOe?{p8D*xa5VT3K=AVNWT~L%@Gn|^i*N>rx05bldsmV
zJz{q=NBk|r_k^b*Rek-szWQFfnK;N0V^L$ZU9?AByLhEOcc%RXyd0085H;!@tGY${
zmNpg(I4C3iiH$2=&8*Q+EHGvp&VgD6MdFi2dQgCgYDA^(vcv$feGJ31&b<F3qELqj
zj<3t+!2J19Gf!wL!D*iPpA*Kr98D2K<<etqgB2z~4Xr#rAw{_NlWR)q-ktoRE{los
zV<sL#K92fy4QL7B`5zgsSFVWOxz*Tv@}MUORG<f%6I5TPy%FeiLG;4U@jdUM1{E8Q
zg=a=0x$yj<R?dHP!7I^EY{Tx-&vR7?Q!MC0hB{@H?lnFtkC%%ngF{d%Xn$H7Tc}EZ
zXgllkmKTMZiEBQ#$(kF;V9CFD=S#6m-;Tfy2`$8PpQeV2LLqPl89{S-#=iWi?S{=Q
z58Pma?+N9`8Nw6=C-06RO!H}hl<S+_pJ^QbkL#Vcf8G0mE@`%RF2s0KxR{=S9s9KH
z^ZQND|J-M`EBlAG{u^YUB^2JHN$4pkL?nJAL(=lq=YP8W7B>}W!|w&^yT9F>h35M|
zTlH0A|91B+J-$^+U)AeZ_v2+v&(F+KJ&7JPzW9Zy1JuYF?Pj-c-uQD$p1S^-c2BfB
z{__>8d``Qg=O6$1a+NWs-STsf`<yyNjhWr<W!HShGoB$8cAIu{GmraW${@96M!N~#
z4;#$wa`pDqcKa^$+82+gDN=<QJ=GtR+fDZ-mPw5Q<Y!fwoT;wu+iuF~=9j#J=rBuB
zuc@Ae?b4&n#~v_i#wMk19M<m3mf;_k@%q%M!lYa^p=Y~;(Z_x5tJ?Hvm(b?_(RJSO
zRTWzs9#oW;1RHj;*A8~nG!lX}p+iED1Q1j(kkBC*2u-n}VnM;)ML|VTuz^zS4Xg-K
z<XTbef>#hx6#1UD=FFjZKmXxp=FBd$XI6dJyLSI;cA4vSRz~kVew)?H%__=x>p=T0
zc^=9ad8$tCzn5i<_pjAa30VeUYV-H@?uLOGDgMG;=~Y8Z3Fqby&FFqe;$Ag|PH`^!
zGhW`@Uz3j5q?6%8Q+wMjKQQA~zltRl1MwSSa=N2V#>=NS*kiBcmAQt0#e-)5KYOLU
zo4X_KH{V7{7Fo+C=MFt8<D7YW?w|awZvFQ7z`6g=m3AH7b+4AYPXEOF&GC0Ycq^rd
zca3^vw|Dyu%lPXf8>18SD1d;jM|LN-U`odMZ`ohrfKhlKEh!DK+9R{GyR>V@E8o>q
z(hA_rG&-`7C|%Yxkm9=LwRZJyiih2i`v3j_WbCx~uRH($9~8Myrp1TfZ9gc7v=OYM
z`Bh!>TRZo0Jo&>EW6aoXq?7BmDn4(ejhGXYKo~ps<=Xg`wf1*%<4Q$FM*ym&-BrKG
zPxZBX^rU{pb<Heu(R=a2>-}x9BP*czQFqR*{XYJ_x&65iK2@!Yb#BUc@%W4Fs<eTE
zlNYPhxyycttBy%Mrld%7^fa1)*Q8taId0Lx8AE3_+WpTt9o$_9Wi**#e?|v_10n3?
z>NLuDb9y6vy^_E+<4!y*zVyJf-KXbvaMvD~QGAb|PJG1xE#0z;-1H+ddOWem&9Yj%
zs}Ij;_;{mrD5I|A@p)L_5QxX^=S3y^r)d(Nk!~b2kmx!BXr?lneLxt&_odJe#m^YD
zS=}y(n(Sv|fYa~~P-{N8kFba5`d)c;ai{=PzA9`ub;Ss@<5NF3OVVyn>+_~T)6{AO
z>8sIe66atFu9pjDq<w?->R!$Y(8B|`V6FyL9(-8duW2yp)rLBv7fq;mvI#hGpS><=
z!y5eRLG7Jrtf~o4s@hS+ea@DN^$kd8IJ;rkD2(I~OPbkIPTF2iA$E)qz8IzSR5_Z4
zpMQWnlv#gAOAz3`P(G2~)jlwv{~!y$3J8SOfH+203?8V7Plf1wce}Jq<lDM{0#z3p
z<Rmz&59HuDb!aA;RQ<A*BrUv|n6Fu*B{xf}p{ci}*pehOg4EdJ*yg$~W=eURw7*|9
zbVxbGOq5MfzX4$v#fJs%_FH90^R%<DG5Hp|PbO$Gd4@buXp<RjJI;0qISEXy*Jem`
zc3ST1zGj-@f<!?zh}0JD*862?yD-fZ9O^pqAu!^g+KI%SK3krz4j*!l8?!}b$ff=Y
zm>TM@hYtqNBbLUaAOI@TZs4W#xs3G1(`iv5PT=?ITV;+56{_V>rf4%rxGM04FTY>X
zw<ftNG<d)#P~%vK^W4FANsqe8nGjL<I$pl3A>pR~H<XEY9R#srSW2?bxRSTrD(n8S
zOLyr6%b+PM=+D^F@`OCSPvcujgz>nAV-iTItO8OX?mySbR!XRS@%f%tWufoANxt@1
z)mMdA$a~uQq6O~WDYEYGFu5>6DZmh>$;UUzhkx1-PorVb#PehVu>0~l8R8lrI&VL<
z0l^<|9#{eG44378?I7z0q`mP}Jsrbuv2RXJmjvYf$4k4+w8~d(XlJKS1OceN9NGLp
z+CG;WIYi<Jc`KS>Oz=AnjmG?w`rn)J1Ufl<cv91eqKHhe6o6iy5qDza<quoRL*1ob
z)%2cLQc66>C*^{Z8h@G?BcC@&<sG;;2&4dpu76W5IKA=RKFzq>R7!ZBluMFRp;d~s
z1?~XoqO@)4kI%@Ztr|C)g+1GrY6atlfa#65>C-8`ZAas=**q<PDJ3(pcL`y2l8pG~
zDb3@O8ylBx=aJP93AQpQcY?p$&Wf*@()gm8c5QMGcsGEC$PQrn9~8%*Jl6P^2NUU?
zVUWy$@X1oDHuu3da@R#6xsWI}R2mQf*)D$R%8(u?saA?XGMf0~pLK~xBomBn#{kYz
zm8%u+)FHs9pB3NtO-S{ro5e=3JfJe^y|7Kb*&Om(r3hlQlg0m$9BUfI{kK~DpDa|F
z(mAjYmXshRh6}QHeA|a1^QF7Nf-=cKz2@5rT)jH+h<!u84gYv3_29gzuENus<dXBk
zo0g$FNVX<G5G(~gPPZRrL!a;i3n2R{b0lI5_vT-cGAs<Tg-HyC+%)}vK#$=Iu05{t
zYCbMcPvlvNp(5*VOHzcO(wnc#K_^?<0||pW;!9O%fz6U_A1h7YHAjZA^6?d;n2e93
zF~$$N$cFW4cfSj&tqt5^n!k@UcJ03}{E+!A-MXIAcS+ha@0*`Q${h^n0Hu!PbTv9p
zay`u#r`d9(>S1ZdDqsD!@2-`<?=l6()r%lJqmap;BCs!rr&S}Q%_3t7Gev+mY0c{i
z6;#WHu}1KR%F*&57#_8GJ9Os6z*eo0qta5#@%gxGF%CMgWA3Q!r0=^&#w4|E7wToL
zRlBOw0=M{f*>-zcyJcQ%(b23Q?}DJz<WTGPq&dRSlU0P$vn)uDvfPB}lD94hC2V=X
zA@+jWJ7oG@lJ-<k?*52FnGG0wnjDy9+JJ1uzEo7MHOy#19)}oibe&vsgDsA+lqqHw
z#ulHJ1Qt)K3&(eW9C=B@(u<8Or`uq-#o)Ek?v8m^%RzrN=r`U5@Z$e9nZuA%DYM7f
zWC(70K#xa74rLEYe}ld+o0EQQX4*r24bRw4OQ9(}(?+=y_KQz?Ce$VR1V6=sgKHw{
z3or}#mEx8L{U-M=Pu=t!o1&xZo+u(#<72-+<<NI+0EnfZ?)h;PWl6sDl*!R+CmPC<
zaV&<KL^lIQ0feo-IC`$Vjq+(V0~Jgu6>x2)$<=FYwE<{`x=m_jP`@2lM9p7FxoQa&
zhh<Q*c#|imKwCrpH7NS#>6H3gVVQzL4*qT=4J{UlW;D7zTD~gflJ*VO6|;K>_fs=T
zt9tU>uYafiaa+o@ms<g&=kFoJr}ciSINthL=A32qe!6Wj+7f6u@+U0&)+c4-si||n
zuBS$1Cz8G+u@gxVxn-TBxBoDRr`nx_Zfjr<Gy4)XbwM<?POvXK5T8t(6D&+#VSZWE
zZ66y&+XSL4e<IMxgrS?wl=qu7Ua!)jlV^lguMC0%f?aPvA=!rqZQY?_v_}X~MhL;c
zoiZdzeW4KD;R?-Dg-gC`nsnQ0+r9*QkniuCn_`a;{J3PfT>41kW?Rs>*q^irOFRtu
zH=3oki;F57AO4RG`glMGb{~w~xgdrf>k_ATv{80tIrpoeG2SRDmkFnH+k1|RF1s&v
z#$ol8KBolmHd{U?Pjenu92cEaH}&yx4V14bVGT2fLw{b=X!5N#=YND-TDZC&L`P*?
zKm=o%;L>P7h6q5CIXvv6H^~(P%~mc^Ta*J@;Y&NU-9e^%^z1mNRm#tvi-Yjb1Z|x_
zy&*;9Ddq7a*+$2~n$v=37$~$sS`?Q_RV2inQ{~gTW|Xj#eWwPJ>yUh~yqupCrpfo)
zY<aOusG39*(ZtjEyH9K`>+dw%gPG7M<4oaCGmQx3!#B%Vc+0$bl@!$BkSKZ7F%QYC
z_k&2<Rg&epd#B4$Uxmp@X_fCzzd@czN-NNrgSBW5d5XDq*+Vk<WxE=Jn0BXVO~7vo
zVsP$tS@vQ|+rhwAySQBu!F**j|4kRlQ>|0qz>L?JUBzg{GvgK@A-3Kus}AzGM(AA$
zjwl;w9>H99)N6A8`Ke9+vN@rMoU8&n{K4zxru6~42bv(HJ+S)84NO`iJN8c97mZ*A
z$6BRlB^nAu$Z}WxBhS7b_%#9?X=gYd(u7?1)K+Qa#THj+LqAWB3EBw8%1rm>PZGbC
zy3X@+bf_5aX_Be7<s^K&O^!Y%^?|!gjQS>~o@xVg*v<V`Qr`+?_?T2`?Q%^vfSdTY
zluQc+&29T@(Ig{kdOq-jj9wD%Rtoz<CADQp9&Oy*@mJ}Sm{sVRaeV=Yhp|97gOt4a
zOZohP##0vA@iSvjP2~XT(B+~{*=cb>Ups`@dN2<3R|q(XV_eIvb>pulH2#U{ga|dv
zp|*5>zNVw|_KrT^*l6uYve*b`%%=pYCw9c=i{e@DdFWgxS2~akx8IZC*U`K`ES3=m
zH(sSCtsWKQc>+JjVrYpuWo#GAevKOoyBa$I3q!GJ2|EF<97Om;IeNC)37iNxwQ8xD
z1-1{s82n1xcjWW=L3Jm0H8w<22jkGTCjhHWrZlVoT9Twf?m4pkY2#J?w|2~TUp}4w
z^C_ksP1x|wp{v&B+>Z}QPi>X<becJsMZ;<difAMtiwXi-ao!>CZVTSnE~Pb$Qu?^`
zHYtNSkhf$Nbk^{Su{A0!NY&gnMe6Pqq(#qau!$C^W+LF*d+(BccTNP)oTvpyj$pb>
zpCF}8ZSnN7xQ1YNG>DB^$xY|nCKLVA+S1n;IRO(nQrkz%hX;g-T?t-!#3&DhX?FJY
zvT=Kw`c(R@J-`^?F;BDMv3Tf;dMz$977+MM@C9^>Fo>zyYhnE3EA;|J2;fyCp20vx
zmdu$H4|}TKHCOryHK1OD22(7DCgvDPi}<UVR!z$7iXi?Q6v1RWSYv2RMx4yPFkZ97
zCSxsmhfD7Y0|N(izbho;!iG!6G}L&zi6Wm-g$##n`+Yqbu_F-WSU4Tj58Q~FwaIl&
ze~GR?!?Xim8eRvj{0CCP=Pn=%ec*NJ=l-5L@Oh4R7ue&J9*I~33ILP)<<j`E6HNgi
z!VSh$sP$4vag9V2wv?P1CdJv)iup+zz9f0S8X?y|Ya5!WJ2P6@&_A_sO$Nw@r!8rL
zU?oq6&6qe1^nzutoO-3~HQoXwDtK{nMpwhZj8zB^@Je~FuNR<bGq^jH6$TzWI=bE^
z?^fF+UelXpg|+lAFj4^;qXPClr%}|qVOqkcRi-@b@k%|Rh|uvD%c1*){fX5^3_>BO
zEwzfH{64vUyX|^4heDtZEx;-J`2ty8WLf}eQVy9mPK#os$&;W$7j91P{70k5$dh1W
zsH+>OC$KUwm?~Dv*E55ap`F+`Xrzk(q25#+zc|R`7q?6V)pR>(iaXO?FkgBMv((JL
z?EzpR$A1`oe5`$OhTAIGO5s6pG-GhLToEm66UNL|z^&Jvf+KLqhG<f$jqNTOkqX@!
zMrVCv2_Gfpp!gD|CQAI^<Y4QLStfZiQ(6x}Q6jX}`&P<)J{QLJ!e1r3B4zTz`daN=
zI1=-Gm%2@`8f@;#)1r?rZ1D4?#^BX;ml8_?SJXP*R~i4ax6yQ2bPo0yj7oCte6&}d
zl6`m9&w$4mRi(8B8o${1jx3n(mACR@0v!v0eVX3pxZhusbu+_oV5jhB3gu4@s?Bq9
z-=gpX(r#MQXY{_eyduM=hXDW)W5BM{swmgJ@v_{sI23~53o7aklqYL`<Qvj=rNP8`
z15M$P7Gw@4-|LH|{Go8M^6FY8tkC<z>+ynI_=;UkF>GE^D4>tzpn<DkM0FkN$LHLf
z^5`PMjC-tmmb>o1a%Epzcg9MqhK;SlJONI`g5J4JQb&d%D;=W1UdPbQO<?L8Y-5On
z^0C#4q(AsMWm|K%%#Jr+oHF5TTn*9zR?zPuP>klf^rzxaueDK_D6L#BnRf+xljZhl
zDp9x8)YD*;D25^ou)W%Z%Bhy=My-*Dez9s;uH1GU)i*G58&ews;i$9Y9VZ21I1c9s
zv#5C=aEbZu%F_7WOdHj`Sw%DjupE9ICH0Ix{-JEl^vo|x5<XUaAhozM-4r5uADYF5
zC0<5n8u*hUO(tNEE9>43$3zFFnLW;RwPukkY7eDG>!j}~;fh$)bdutuao*jNGvvuc
z@sT=rkS}^+fY(U?1qAfklfpb>@Z4F!42Fs)YPDWczX-wRuF5e)j+jz?Er!c+3xAR!
ztHP*f0A&E(a`k`Zr4?bISkXfKof~f6DBWMPzq5xFnaG18*x7ft|1M1)@;isBW_1es
zX~vmp@IyWDqa5~en1<6d)~j2^L1w!zx5(1h4ScA3d89f8p4)@Dh>-h!mA21^t<DPc
zAF5JIuiL`a-yjVZ*%*(5tDsa_I?9DHk&6D3G0%ky<7bReS}rCMpQ-s)I=_{CAl3dl
zNqba%w?$^p36pq_QB+IV-3r`3n`E$mc^=dQZisCtT1S6?iW<INo_HZVDpoq=-!?Vh
zU9?I5T<k|QTCF9$c08yJ*dW7;j1q_~)4q1tfDkiK@)6pS9TYWd;&+S+oe@T}feZk7
z`_Mab<I+$gg^W~_S5G=|wT1HOlU{E8Yy0N76IRFuziCWALzS!0WV*)_OSoWBoYC9P
z8&6Y8&>il>L<9u1T9!MYN%YKN_BbV_Y;Y~IPlz}eerYk?Ox|gga@VN(N<ELj3g06y
zPjT>t#d6dqjpm)ssAAfcVh7Swx*0Z>OaDpv;9(OwTF(U#0w`>@_Wb;9wG5o=6@jjK
zqNN3L6WqyfAImW>+M@C>Bvq}{NmaKSULt26n6h$^)t#wOG4ZHWv(4U<nU9-zRB=N&
z1YM}A6yHD?nc<XE<E=*;DI)LBqbTeYjud>v7te`~I!3u@RZdY%qKx7YDWb1kLENiD
zm_uj-#!zp!P?Aq<<F~fas*JE?m}w(Mjnz0X@_;Nx-;3qXBBSg^AcW#qKbsRyIB?h!
zS$LYA@G`=IS`o~WBQ_v5$a62Xif?|pQPly)fbl;xAqUxO!VYM{Hf=c}1HHYPMFS&>
z<$6iIztc|EKxU~U+`z)KUrFC&xxC)8_Og_tVFO?ts0YVh^#nldN_@xq8PVdy?VY%4
zsNE+nSOA-nEAJ^6Znw)as9|XTJ`6H*^Eq-@oyK}k&XA&3w2BGonaAQEd7o@uYTK6m
z!M9eMU9EE51h!t247sC~7xjDE3psA(`%?E2+a`P+6EOa9`9jpvZODkb78_wFiwJ(*
zcrpO6V@=S!=#+TJ0$W6;7AtH+aoB1NxKfGxENQei>&u&z_NO~Z<m1l;z>r+`UeYu1
zDuh%kfJSHsFYPz6;c?k2Nt&+&SQMHsPRON;rG8^SL?}n;q*O+dB625BlaZcf0pCkw
z-DVEqcp+GBA10gTg@!h*X*>hND<%tr$j=djrObD`Ax7332Y_ySK*IA~tE}jx`%_yS
z!dj!SM?>f^mU9kMJY;u^<f^_Yy=K}`^y}rn5*I`ttvOoW>tt)qmw;zA6tGcJfsxRz
zxg6ale2KQBb{ax0td+#G2gj$nl&1>O$*8Q6I3%MzT7Y5B!=OXrCw^<x;Tk*bMi=MZ
zUOX=j#F~cjGkd2bMtxB<xKp$wFZ%gXS-mw-wRNkijEFBPiyN-jg$rfrFE)fCD5>xs
zxE2ynd31DKx+n;AFR~JVaayMnK)K{sIiij)UnZ(Vz(Ef-E<gFR-;}K_LE~0948l?s
z+RBV`YyJ4qBrV)dEGTQsu6bvnv>0h?%lrGPki?0`ip+KW=E$UuVRNV|;C9Rd3jLh4
zt_t%?2)JRDYUE7Q25!;Ua_oa)gSP`VMYe-7WQu-~P2-E=&KDTDDu=2ahzhQ$Hfy$f
zVy(2<sXQyl40%;fP;vd&GCVn?B)#Uk5WPpFef_n3_N|#tdJ-x7z>-m3AhJ+gbVROn
zYi9)D_(fe|DjH5wO+A#HY|RVIN{t>Ekh-F-+3tk{LCOPn2d10p&Rrn;^bc<c3QN@v
z16eKtomU*zq|8Xx5RU|6SFMo^mj}bLsM<;-NNqy@{IyIu+T<dzLah$acg`m8k?l_3
z7S+6&_IC-}o&(J}N$l)A-CwKUlUIsExJ=nq5*CBfq>#6GLM~Wj5(tU7YxTS}=(zc0
znR>KoH#Jn?$S_cXn%$W$^=WzU@t|`3M~@N}7M!RYch7fn;~0Apg+W%2*WeM4OI_LT
z`$_kY?Qt1Ns2oN(XSeJvW0NC=<2B_^KMtB-<hhK!q~$vQj(ZA2qwHSj_lj-6%8Ht(
zn@74s41@!<>Pwk7!7r+*GRo!x#Ra}#3wPE#a^`6B1(k`4q-cZ)P<@AUg*5%>#^}s3
z#=C@)FNHQZL9nUdj2ySmxpLo{M!n9k<DH<N<nNd=BfgR+&PjP&eG7C7t7kqWhmaWU
znqTCh?SZ+*FxU$1V-IscpLjz`X9bnrdRR4}K-@&IrI{}CuK3`dX0Gt5%f<t^QBFMk
zdNj=kOQmJM@TCK9Ek-qham*buH(4gHM?Sb|ipedxOHTSNL`^-tA>LeapTKFF>!!Ud
zzy1>**JnZe2>^x9COhdNIpi;Y34HYG8fc8v8v-J!k+*A4^cMTSOtUQ4<wJShkD{ow
zL>n?q)RY2~t51u^-ePL%e;hif-4Bh%R@$Lsn8cNux*SJ*vw0F-cY!~Sgrj*`7@{ba
z=Wx}%Orl1CVgZMCH0R5PTDmtU$~^xDTuzPL3I*?2!T~|Ne7~su)No1j&M_U->q7c{
zxLPjyDR^DlH75~=!M;Kmf1DX_J3f$3TQ^cQyx=sQ6UX@{q$uY$n}eD-;3SC^MGlap
zo+T}(2L1tZTtvxyA(<MynQq%0nRthHdI^Q?v^xRsqU;`hM*2=mDb=VuX&EgBrpc7G
zMq`}q@Ydt<^VKQ)ZSuheqKMJ%m*7Yo{H%1J5-!oXs(NTG9~7^jq~1(<?TRqjI|adx
z(_dgqO$S>%(dJ@H6&rp|jY_Su7;;2(X1cfTRrh!T46}Jq(#VE?*2%F+UD1^<pb97(
zvu@K;sYwn%*MPf)7s4bwu{x_{+}S2fv09+J>KFL!v07TVE<NO<q;-~{7D<@+Y87U>
z-o510y@G{C0hRjG*-DT-W{kXA-?j_yVg594p`q&UilPZg3)jP=k?cqV*8YM4@<wIK
zee|S3ld!B1Nd`kBA6NQSa8e^v+od(oVN&!XHAf$QK+gmB<^J+b|L_B%bBf~$<Jv!9
z;&F1?xxrFN!cM8nA@VT%NSQh?j2Xuwf=t^N5-Fp4xS32j&qjAMn_9ZlPKcV_XJ!)y
zA(GF0Ls;sv-El|7FI<>%;sPJ5Fz+YeK`=B~+~=bBfWBsE+Abb}F{y_wpM5gy5!sRq
zER|D%Z+s4f;{i=SDtCY9bq5>7hY&eT9QwOIl)3&eaXrt!$c9EWbYCZL{FCwp$s04!
zj0Vx47j>x$+%reY;%(+q@ebZ?;-D$D_HRSudLIS4c!gC#a+l!R<OgimrX}&jb-Vna
ze?ouiXr_~)al4nps5$GlJW9;r;y&?FE5evz?ENF@%p6zNJ8o1raN`Gg%n(jaoq_S1
z7sEs-yERCmj|)!ei`w|r<o#M#kJ2EtPHO26FN=>)UJv*OpcZs0b{i_=>LKyNU)co-
zI~tNwdxa?<&G&mp&!wd-oYp{7HK0+TulL&tesp~5=W3!i=QOIk%G$aVTBsL1eLj(>
zX$MEg-_U5>Gd9v1b~HVV6yP(o@tyS1Jwor9o)uKK(`KE&Kiod5eW=lZ>j>4B>FM^J
zU~=GH$aCL6AFcVr^5~3p)ACg_zetjD?6(h&YM%?~_d>|e)iu)uJV5soZioi|Crm7_
zrD8{$Yis19_UWkAMjO#oe*z-NG)t{sy&`(^o0L!9vS*=Lx)ruFj~Lo*^P(Z2g)3rG
z>y}2+7if7}vo_J{7sHd3kH^C{>BJyg>F50Dpao&DOnD2{;Lda<U83%*Q{G;~F)1Ty
zKUy;bILa;Dx-+7;J_!Sf(20KP9Ae`6?wDJnx-X_|T<0GVImtHY2krn=9_?Npi4J->
z<#zx4ovUFV*Sjfftmw4pj78z1#42iW#E7?%Tp}i$A1(PNrTzqa5-1|EpY%y!%4-{4
z{zaI?lc>?JQ>f-^6W#n;c&S}c5!vqke$lBO6`@KI+QXf#0m1RPg>R?#I3YAgDkW<)
zqB6uzh*jpf(|%2V@=$9X$aK6=*e*aNC*UPoJaPZ;>8+ZCAE@00={-?)_;66xYgVTJ
zkd`+2SVPx!*6xBZZS$FOsh)6uypg_kzc5&eb4cYP^T>6%xgVtuXcC5S9rd|b1#0_q
z+?W;VJN{19Yhpfm0H#tQP<F=G{b-6TX`8yLp&x`5#5bxTq`~^txk;X^2>BGx>yf|!
zU~;haXJ0Fei)}K_EFG%|v4f0-DZ`EXIXb>={oC@b=c~^a0F}W<1XN3x#7tNDLKF?C
zU((w84R%#+-5Qf`@MscHu18L5w{lzj-6BJlgHZ=`1*_Nq=i1NDSbLrQ)uuocTEz}>
z?)XzO1|493H=f)cndi6#JK{r9tz3f(ghGwHayNAEj4Kz~PdzfhP9<RWp04uGc#a3N
z?=mC5hr8{c_|QZNhgNrCIbbGQ60%257nidw?hGuyS2<P}QAFp`56;MXpuQGq&~AOi
zSdx;1MpF&Z)3uwNv3`n`2qZOFd0sa+aC*jMUw8n(z+iJA1Trdn+b`)$Ta%E?<pr(X
zVGm}s>f<X9poBoIYehwCcXzvt<vZ+_D1pHVQCHrwn_K=w#)9+)npN$Dj#9=7b>QgX
zfsK0ZT$y{k0Wp!0h17i_Jjqld!k<kacv)z{Ra7xTEpb1FvYnrP$n}0qfy<SnEOcfG
z&UHUW@|DRR1XJ=zQ8on&;J49lKcsAa&5FE}RvG1Axo&N}c-*R#M?3+5wt*R0g<LY;
z0kAD@@2q&^6)Dru#pdxR?75tLk|SmH<M&sX$B%=8`R$4IVLB#~a?=gcw|S$A{Tgb7
zvQ(pCtQ5VK0QXKFFBw&hE<YDrgdsv+2EU*Ph+fCnOXsFxXlD!>jZ)y!E|z~v!We<U
z0MBKN0zPK;JvZF1L-pX~s3lVC^p=fPjb7N-o~9TM8?0!suzBvUNz$jSP2&?3Ly?S1
zQF(lHLDb+;Qz_)(NLx_<Poj-uKIjlxnBDM{##SGN=g_%gSU+0CW0ts%w??V;QjYCi
zU%^$#ItvfvkekVOe?Jn{F0&dkh6+aw>IW_qbd@Tvxh2t)&!o=T+aOuRRE`q0B%x3C
zDbEe+5)Jw%pt9N#(KI1$lx{l;qF-m*G#=b+03Aa{5g44`B5JXvQRXVRjg<1ye=-oq
z09fB!BO4D*Q@%cIOCO~1YB|TqASX_bhO|q4@jeSj@|<A|7`}7Uqq9nFjOJ*BvW5Z!
zEwpaHU~1USxBV84`?%5Ev#jS@Ycirp8uF|dNewqe9lo>?-ku7IPzg`HKla6KuSFAT
zQ~$Hn7C;N=hO*j}x>9~eV<mUTo6(R9ZI~A&2Rj(I3ZfhI!1!aMg)6NcDc@)(=^3Ci
z;yA6wM^DYQ@1%LweuI&0wfYGOA!O``emFJcQ9FSVm=GnAjYKM2xW>Ok<1)kCgy^iP
zrB5pzV~F-`i4N~%(=iEmGVQUvTzg<US#e|P%r?HaXp)9c2NCA2<)CRc*ae3H=W4i*
z$mM}I&2y)`D2;Az^i|!4x_vaSiGic6Gw2?JRkl7WYV>~UIs4i=nG#_@efp6-qk`wd
z4zikO^B@^3aNBxBpDjv#agJ4u6p!bu5j{fsWV+e&qXi>ES>vwJGp!QLaW$t!XRc}V
z%M>$wlXZa9idBNe<gPRjI7U`YPkp4dQQ)+O9)RFJXkyUJIbTV7*R)|@0Ve6CN{JeX
zgyl<33TO4Gz2bH2l5l3#q5MSW@-iL2m1~9uuyK(#B1wdI7{=#%>RVaTTZgrF%MP*+
zdAjJtj3eurvT1FJYR{JB9>~u)`!~}y?B@P751^{9Z*E50-@X3v&4bZBJ>1j=89%&f
zf7N9F?mDK#&HW?(!<TuP+9Rfh>p$4_$n56&Y>Gz>v57WBkxeC)NZe%UUj8Nqze^~&
z+-`2x-*GiJ+P$){+}$-j<C%X|7M8i2XJ+h|?iCTvy2gj;jq5spp7F&^rfwj_s~H7y
z&&|C(<Iu+TL*rZ^R;26T+yPHzT;9=sx>M)1=;`j8nK9vb`}r<^E^-}bXY5B29aT-b
z0ufYJh;27@s|?sX?U=I8u6!_<bu9}Vx~!r8YM1(+u9@iD^WxKcrRji{UJM75>)h6J
z<3IMb&dFu{4Z23*@*r1|1)qJh__p)y*E{)Ky5#nD@xk#=huhx?rdJS4@0?ZceyNDB
z+~9w_+hy9i)0)MXRoDophVO#wiY9gE_lSR(?5{!?1GAvXNpZ<I`$KmSsAh_~$>+zN
z&+|W`N|sv{XLWW5o*35|X@BfY27sWvb2ki$KfA#Ggu!nfL@}STq;tHYo&A+?nF77t
z_a$-3Q~ob>8L$d$ms=WteY^h~dqZm?+|T9l`%}}@8r1KX$iC3UHp|tyU5+UX2483G
zXo5ixMB$y+<^D4Rdd7d7iUEO9gpRv;?%aoDVs`5A^@(uou7d?G<$gJ+MHozSu7dq1
z9rV|5=@X^S`|^KGBt|(yE^iqossTy+KYJ|z#YmCP_sEh~;c<y4QctYVL|nN7_xpwN
zAK7_bfR9={U@R1rTG7UDne;p+lv?eQROZS!z}Md{)00;&9gDtCgd@zo>{KdC4h+{W
zrv#A2hNnjnMcVh{gv+E?voPF~$oc3Bm`n21?9F*w=C=rUEgfyZ9c+7S?e;xn#7TY<
zZpR?NOBQX*QsTzLuazlHEGC0WRRK|~)U0S+vPNj!cPGpFo-vqDYLTyGIW|x8_zP0*
z%dr`yJEOs1fCGUQDSKYdz0g9y|C$Kt_m3~icjLooaRugyIt}@xOs;=Jj;ReJ<=Sfm
z2U~mE!x}-$lvkvCS=cPScg6;pTTtL`n=gNj3Ud?bTt<j?ob|RGHYtpBsK#?bIO`pG
z#p9lrM=uFuyT2l;?V?5UU`-h9ibF|FFGSg>wfo9t)M4RM>^=_+TeMJa7!&60K8pP_
zc!4}H@qdr<M904>jV}7%qXbD_d_h)@4Wqt>2@Qh&?t8AB&^`6mgZ*|NPbwCpl+feG
zTjZY0!&WAW0K!FIo#i~>S!tVGFwa!Y9DpJ2kBjA)ajEk^w=(=>lSKxz@Ux$9FN4kr
zH!1>KmE6IaQyw%%ipKad60#?QNqQ+5g&XpS@4q8^4GPchQR>B7w~FV$2PSs@><7}L
zeTccYfxv~>p%#m{1^3Ap+e1*jHR^3dg@?Z@g>bH$I!n5z1`1(%pctZt2IqP1pl9WV
z&q8dhGfse-lT5-!UOHdqBocSUSYTDC6^MI1o2Yg!ef~n}^Ftt?wQ?x45(pk)hrQEX
zK6pORlePn<!%OO;LKAzxwE8<dD%8S6BmrA18mEQ3;SniLQUUi+TPUOwVTsOjsZ->$
zB>Qa9cqKOg7=rm#@GVV61DvLW5*h=BDERZaw`J4H0ODv<F|-=%ROhsGIscXK-V1Y*
zrFNPw$#Qdkm9LWN5^PgyvgxCOS|yD|*ki<e`Re_!Xl)?x(E%;io$#j2UmXA{T`R`&
z4fNGO%eWstl1Fw{rD{V^gP{@mb(2@h$4>=FS>f=0aF8ep4TRN7`FW*(L=_-`{98i=
zbatB|jn1-t3pzaEQTr?u5EX7%uVMV>b)n~;0)9sA#4dr{266rHMk%@_;JsVdl7!$)
zK=RVkz1Jx|Wo~H5R?7FG%9mDc+;wgLc=J7>FC5Y9L>57(k(q58KlD~;{#K&A?s`Gx
zxZji-U+|GN55t=b1w8QODCd}(t4GIQ?iIMUcES;Jz<;=slsIjD;0+^u=5tBR<7r-z
z__fV}tE^NlfJE>bfD#d*k$=d%wdSbWU2BIX;-!=i!rHojeBY~K5bI6t0HsaC#67V(
zZjj`#D@GPZrDkpt8s%j&-MA~_2Ui9{vRx?GSOu3eFn&M5xz~fwqE4<JDLRI*3~f5e
z+`_bRFT?i-k36yla|F#fkV;|TUoL-)TwgD(<xzO+JvecmmYmZ>c>9Ap<%bikh?t>H
zRRabnUspEyLK@4pmQjBj^*lqIL%W@pinwj%^4-QTf|OO$&XhP$qnsXDvO&_8USm%~
z(+YsXqqwHp1{-r^d&4l)p07``o80<i6>>q{w66EsjMgNrsA=d=y;P-6!{5EQKsxOo
zrfJ@u)F+J!S?&T?-b!X9FG)5`3pW_jYQCCWxhDCXgp>Uz=9a|J2KSUkTf;kat*NHj
zJ2W-CIhq?J%%2B@$00O8?p>d=rF-c-`Dw2(KvUkx#FKsmR%M@D8JQP8LNP5hMh&Jy
zMn4c^r^s=~hZn&APga7FEy!|n&z4sEhRc=_I#fJDt~;fR9QsFiL_m`M1L)=Y<jYMv
zSJ>KKMIM9CRL+yz=X7}^J>0JxlTbTR@D7A-elL~UKa*GWMf(2Apn_f9ZgTzCVU&Di
zWo;t(#EKG7x#4vA)3+ngom4T{qD2g$ARo(?Ly}M1t*Q#Ig&U&omQ_iw2I1{MBzU_E
zI19ogtF7FboJ3^GyHpBwp@O}q^xGC5CE??TxvHD4X)6;B4(~`kXV@?VPu!oy^8Dvv
zZg&cKsQuU1r$VZ&Je}OtyMGB{@mHTM6I^&!N&#>}6IxbT@w42Ft}-<}jN^*-gJ)My
zA=@p}JyswyliSUV55L3JSAU_MJn)4*5E&tYIe{xoS={qn+8Ft0c3?(Vk53DTVE)f{
z14hWSnL*zfke1LF&?7P_xo%yR3|$=t12WiaQrughNsr0>vjV3+Krt(1)}#)knWN;Z
zuY!_ok0PS2IskfZinD&oNcr;B<m1$O()cWGWd7D;l9wdM57l|h(ynO_ULh3=f&!*X
zIf*h3sVZR7=Xc8^$;JpsFX*XsfTHP}Wye=xl25~y!v1GZLXfW82$}L`c#^^zKq;zc
z4GQ($RGINZm`UC2a9{-bB&7M@zepZkWV483(=J%sv0MIwnnhriLm!qy*42CFETezW
zyyqw-hENDf|5~|ZO}(PyQxq&n3ekfFHR0L)p?I(J1Khc^M&Za>kTdGT_`k*B&j^DG
zAiAWo*x9d)icdK?q|HjILCg8b0`suQ&b}e8(>2Vaeto<m*%{)9{dhzC&v{{}E%6op
z%m+JoX*_gH_;ZKq@gAFn=4hd105cZEpAHYBfFG2OixDJl>g#cSWf-B+4}E?NDaA!;
z>2_88P@C|O=;Psv?BVeN5?>O>&BF+3Ps}W?hrhG<_4uWVa6Kr+6?3O3k^f#1@6#eo
zAfAED(HRJwjx*wJWno59MZbPf2-r}bJLjc%_((qlv^~)^QCmA^x`Q{%2j!uEBi63A
z5~Ui~WxBZMt--iJngk=br4m)0yhXYuTS+Pl+6c6-HiQHs+jYH6zclr9U%jS53W5n-
z61BXgNxWoY>cRI|ol}=8x;o<iQ0q=553blk>AEJATp4Aaug7Ys1eudRls8s}K~8+2
zAJc~Qd2Zc%((bJ=sue2ZL)Mw}G1;H|x1{DB8^_Y>P}>h-;<<--Ec}rz4dQNB216?`
z?Dvp%x6OC&md4ZO1!JlRkz)1VXkesV{bq6g_+U;cF2@MkxGqw|rNxh2Y_H304Y6$p
zl|gK`+9vVVD}$-k6<w-mUq*6VzkTEVuL{%JRgYEFE+Z^a$$s&9*MtYPNTM1{TE@o-
z+3!CxG5NjPCR>;A3aotbx$#G%Qrn;53$qio_-YX%gc_E_1=ojHXjelfX`}-3Rn@j|
zZ#9a)?-m+=;;`tJ;$aA=PpA{Wo9sjCn{ad;Jg^EOt=j-DvyY`&RoGWMv#m@<8a<vG
zA9rndd&-fhRkZiO;9u~qY@8DIUAw9g1_svmM+`TN&-MF<_+)Vvc^6;MrsRk2-0kwx
zEr9^q-)~eEC8zB1eD}#VX+Ad$B8Al_OKfPRU(a)gZ<4e>0tLCXKJglmQM6o>ujS&p
zjT0R5B*nEUvX+d%EWKG?elG2od<&*}vD)2prI1!GaOeLbFKr2z^;juil4Q9PrBu&x
zFaIW={2qSOPD?W(t;nPRXrH?AnMVc6d|&Tw!j)hw0oTX2%Y{kmde5p3n+2^b-4Q>@
zMac_--U>&T6sjWBGvfN61g;AUnNq1lf<g}>rNU6IySQk5GRj+BslgPcBH}h38}F55
z#J5-$$D41!H&;@5oQv&p(4T=0LvdZ&nV5%SBQ@V5FZ>eT5-mbNX#~)D&I?RY%*JV1
zy?0!8NO<4UVZ-^j32y+H8#$00kBv8-9J&PX<kr+ihqB!tC&d}Zg`pCztW=yjl;uu3
zE>1lm40)eC!N|`rZe0{#a-t2Bduvbr%rf0pG~4B$XvME7_t3hHgh2u|3VH+!^tp!e
z#V>{)VUnuEr1e6tR>srzmD@MjOf^Cfx79QtLpIXgW1cMgC%CiSC<0Og1iqO}H*<z;
zPYIn_N=U*WI8}KoPxMt!%fc1GU+qX$Ria4{wn<C3v|P$Q4aSKtsz{_Kve7;6s;Sy1
zCDHMvqoP}xmFJ|RypU|J29xi=M7Ul{C&(Esl%Kv0k4esm9uRm@3e|xs!mYkh>NN<D
zYB?;6Hz`E4g}dNU`6=mJYfd>>CrHw96zePx@6irjotURmIPU>juq`~N_b`=Sl*ffZ
z()ArG)!zp*3R1KYRb-OYw83`iFi*N~OR4_WaFf))j=>#3=irf{#!mTB-uym935YDH
zSp#$|(;f7g_Sj4G0xYhmR5T?l7Vd#1Qs<NK>Kc;wf<OoJ+()m;KK}`WMQDGWq%PbW
za^lhu0Vo?x3pfn{(6Z5eF)O@Q_i}(n75(4{Xn_UPs=IviVqn`+T3RbzW(<Q|vgMxF
z!WhOc&&($y47BeUIj&O}NLF((#<~}bmnp5oSUU_&Q@lEs<%SHEJGzH4AdWCg>J^b+
z8~e!#rD4PZQvP)jOo*@CRg!*w7}YEZSXL%#!RVS#B=>9^QqxbnL`1$QiT<zHUHv|j
zW0U<~DcK`<;ZL1*z|D6D4UgZO<=dw8&@}C?ZW@t~a(QBVa4G;bYlaF_l)FyqC|lEl
zD}q@(f!N!qs7M2>!}TW!sg~!;(oJD<Pc98>4zYXnV%4!I&XMnb3&ZG;F%_fmpFr#6
zxjLQX&f~(xeX?0SE>h{IOUafnr;~!7$W!2^a=EEFa%0kWDjIALK|uDVvt;m&FvF{b
zE>->T47pK(`@5sO7l#}9QSZR$7pXp7-rgLhwr5{dB~T3N8RxhY`^s?*la5jC2y7XB
zalF{B-Q=(2sww*4^9ib_-O{~$j?7LzXQ5&+%;hIDSK3kDZ4w?P@V2W%ndh?mNkwY7
z*Y015KuOC|xhfe;2mp8u6<`Y&Nc}^?H5D=CgBG-q&2mo{$>O9pS%m#(Bo$U2HTpC;
z<bW^@8V_xKtbRS(eeXPZr&$;(Rx5+|B9gbIuWU$07uwUTfC=Q%Ddx<TIQa;zt?3#g
zY6~1yCdEmYwaZ}Axq2<8Y%Y`2{t7GK1uPVP8Xt_iuP&DDM~A!Pt<vX5C+SA-Tr8g^
z7q-h_4#EURXddJi<jSa{!X*Ediz!cnXu!5XOLt)>d9`WyK_R5Mi6g@2#6v#6L~c)h
z&II!o+mST)%csec{|(P+YB-50<-74^h7Fd3cOC%^enLoTrUPLr##6>iMg0(_Lg$Sz
zpgHfOaHw7~cSE>15u(AN&lyNy?A`ae%00)0EfK6U9ilX@SYAwqUc5m_!fGTi<Yby&
zzh$0#;S9Ou)bQRNJc~JB0Aby*NN!1nOw3&Jp`8}`)YJRQImuJ#Gg^tz8_f&cf?8Rd
zlNN~&y_s2IW-J~v>8|%`<@ACus*b9MWB@-#s2n&!-pmVw@Sjj!7rq2ot(NYDO6ip!
z#&^;LWE;Im>Q!>XNg=LB^_umn3gIdszQi~u$>m+srg?TjpU~jGD3jDN^5==+x}5{w
zpUWZz?wTlX7Kce)D~N~t&?g@dr*Y;L@@dm>Q(g!0sX|OkqEDY7=Qj%%H2`^Hk+e%k
zyL)8a31Oc0KTkyG6^32l-ndK-ZyrXCP%y$F<)o3D%5@VjlVeW}7sl`O=q$#VdG2Kr
zCttCMOky&YlY?gZsZy358)kaTydQmnNxSkkIN}>GmLsEZUu8Am%&Xruq`7={VAv-+
zi|E)y7`dkx$~8G52<S=1EI_10F>dvVGWD=9QwcQ^0ZC#tAdZfcdIyEUo>l$ShuFD8
zv5s20?|aCK<YrPxj4lE;xocQ1O-@SA-HlWPD(id~50WjJ;Z=9GHsz7I@v_t9gUm3w
z8^~0=EJOvK;$N-h*5uLgB`#6vh^RgM8TMfnJpA3+vg!nz4ZTBA1xiT6uk7Dkw<wl{
z2c$jW<G{txB3T?2P3!ufB7YtcZb{z~cDC2j$Tjj4cl3}ij}E7~BaK{9H@s;Mvj4LR
znR7~b6BwU|Tf&tOgDwB@@zNlvh1)2qST#_Nd*obs<;ZY3PN)VZl|b#ha>+eB{2g^L
z#)8UZ?+V=X<K>Yf)9##X0cp*tk2KB7H`scD?7d%jbk!feGLxmmdVQ&b^lljj3w@Is
zeYR}(>B-V5`NnN)`T@rAACJ1;bEM|P@EE%gJYXgx+4_~qvEL>I-|i+!3%7rX4B98m
zZEuwQ$V)7lpV~|5S7DlUKm_N(YqR*j^pM}`g*lvxQ0z<SjI}>`oQxWl)&T}QBD^8h
zL;)OUc=pAz@{%yr0TiUKs-y;#eemc=X^<Q&<BNs#q!!Q76XhZqa#5JuUO9Fx)}hB(
z+oHJa2^4CCanIJFJg3@s`}|sYdt4Y&Mx8_unA+qV_tJ2gSrG)1#atB*r&33`yRt8l
zr)rW@s|ooeP8@SdD-DqkhlEk9CJspx<=q%CM8;Q!(QehWowTds@U<Ev%SVL~XjHT{
zjCUCIuGFp6%Bsu4xKXqy6CTUNcbPCw+FTySdQtpAAA64$(;sO1twyf6IQ$@i7YT37
zSIBg~jFpUA?FSG9;a6#_#XmPSQfU76*Gtva#<j->R7ctyxD2u72h>X1fN=F)yNU7@
zNQ%rGBOPxH!`%$so_OmVcmL(`_=RDN`y%_pbLFYY>4wSeJ3kY=_oKmQRM%j7=IM!A
zF-jKq4IhdUy$bNbL`zvb+X30G`(<+Q72&;F*Ng`nHY_Yn7W58~(A+4?CL5_CZ-$eq
zF0t-RB57k}#cko)cDD$TLob!eOUa=A9-}m8>LGQKIi0qnh9*)=+B@isw$dz_xd<6^
zHSlN#d9F-Jnn9$N60(gz=!I=%qCe@>1p+w2B5SD-i&h^-2ftuF6Zm`CXgE-5w15$J
z-S+74(V@|TIpt#&q{k%e$c`UJuf7>3l~-E`hY_YNSslIoZ0bIfi14(gAOgxdy`aWh
z+iZ#2B|A5iRg45Khug_4wB^|=qEFrn*DI;5899iJ2}xI;`{tvlYDQ}L+jhOO@k(Z*
zQwrQIpGKSB2va&#^Hr^YhFlqxLpd&eV|2-iFkD2{W-?&{%S;P*;MQo}hA`X#fKk{p
z+%(sfEsw5xI`zoC?51RWVKkxeh6{627A=n|-wrcL84$?@7|s~cktcqQI<F05<w$zU
zod)_vBLjQ$n&^Xf!zeSg^SQnxeGXSezdRaVvUFIb=lI~7)Z6|2Z8ZMpFe{;d^>)bo
z-#>{i^-It}!_;{B7ztFxqaq)g(e(Cv_a1b9!*vXGuBEnwzY`|^d3w{K)5G68R16+k
zs{_c%MvpYz`=Kz<nf*VkYOoFEyV6BX_c~|i5Nv^P*f5L8O|Rum*QbY}w!<L%v<Kjo
znk{QO<)|<MK7DwVe+2x-RZVLT4I|`ZD(pUpm}$$J&WOT5=c=I<#K^e~@v6#?n%;e|
zjo>{e5Z|0)T_)mbTDQ)t9dQY*1+AzZytVT30W~4uz$vF=RJPo)y3zU;#HPx0lbdn@
z8?BU<RmIYEVxv!c8%{gHBkZ-l0)i+@=_V~ECC4k2Zw9T)brCL~oF%<BG<pJJ2(GK}
zfa*%rI8G1;Zok&@<nxW5=w;U>0c;{33(^`$BU9<-)mdJAL80D?B;>RAuQ1})E(Pt~
z;_v0@4?OWZ;aAAxoIB!2$@$v;1e2N~NxOjIyZDH>dtRFIg(sd|3zR91P_B=CH%C{E
zufO0dSi<PGr=%+?Obgtd-QqcQccKqSGt~}dlQO8>pp|h+YU&ZbS6pF@wopb<qJaCf
zj(aZ(AOKv-1VtnEMN4;faXkOKlrRbVVi;1Ay~rgwO|1vU=kF6PsfIg$SF7ZdQ{!Vk
zvspZTyXs-12ui>{j7&PRk1YGM-Ww;RXtjg+MhgF|a=o$&-Jgq^J^#tRIzYOTyzD4?
zIxK&<S?v$|>MHC~AxfDKLU#VWn6LF4^t1X9%EWZ%!d2srpDeZehrg@Ot!#D#7738O
z{kUX)9P)61c}X*IcvYuX(|^k{aontRqE{x<FcpT~D~E3lL+WRmo5<bpPxiZ4KH3q+
zYzuf}fs3NjSKJ}b>|0;cdt9`nfB#{M6yc(5z80^`uvPW`Gq};Zj%@&vkT7(_tcib)
zTOMc3t>3bS*1a7RYOj_rY8X%Wkq70E_pN0O(bm?wK>l7i^tNp2`fQ0lpOiWj`HY%2
z!1FE^2B}Y8<htAB?GFQerI)Jy3h+u`GPPMLU7)apr}tl2KGyZwMY8PwL95~1ZG1`Y
zPC^9RRQSvgI7pxa56GH=0Kl|P+kq}IH&4R@InT<Aty5PwGRwCVE)N4mu=jekmG6?K
zCV^n$33!?<+_jfW`|MzmD+#AY#jFzP_DkiQV}b*<yWS;;cTK6>k<_4jn7zdG%jMYb
zgZ)af07b9S#GWmsZW1qm)}xr8o8c$Ay?V>|4&gEE%R@&6nUxymx$g2ZIjXa{WiZs0
zVMUKjn0i^7BQ3mGPPr?sZLoPk-UclN@+QZ1I#KFwOHJTeuza{?OA?Bg9w)tagg;|w
zdHqD^GQ5;yr0(A42M}oAB}Jl0wLJGU+`fl~ICbG@V(lI`m(2^NFO>rqhlp)4NK<8k
z=5W(KZ@nD!dWaYoDVVed4@V>4x$f?}rNiOjiY1mSATEn`o;655*c9T^3Ohi-CZYh8
zX`*Ep=Sv;mft%b_H@FBjGsVPt`^Fa~ySA3naWSzo$q7KS`;Lq}B=jBa2IB=msYH5P
zxx@2Z<D=u34-74!i>k<rnhnAUW$@FVWbx{daw)GM=QU6>EqEqxG>Hdo2zeSKoV559
zMOQxWsk8#f`{UyUM_OtGnu8*;7!;mDb)W!3y2fE4=dFx3{8hi+<qg+CyR33L5u*U=
zm+96%5WU|y?UVWSbg)zPAYFU^ZZNWwQ+w;ds7uc<&N2_G9vOxe5qQay(dqeVn|s=H
zV-SHqmNxZ(l>T!`^xFYx{Wsw`0h}XYRy_t{8L+@D+?{RWhsLG+<%^!WR1xQf6wjy=
z^ACudZwV;0a>Zc~yhm(v66=)2jlT`To<`>Vlpc%t%<{VN*PiK$`zVr`-z#BJO<BDC
zVY^9}9@<%<+O?$DcaCfGj1<0Ke+?}%_<eWkhP8_&nM?Ovmw5kV|I3cls_Ng-XV>?S
zFZVDtP!MIbzR~ol{{o6B$Z>y9i8ETK^gEY|&n~W`w$B9-4G<fHy&XoHR{APfsLAK?
zn*5OXFX=z9rfQ(^xaIS(vu};hIxSqHC)M3rNup%Knbe=e`BBQG^SQd_r~41micGS*
zR6e=SUHs+BK*imusuENa1B7-@Zxk1PW<WsArIQlCHy{DcxtX|L*54Eow-n70wzrW2
zcj!7f)u*O=61u<_s~Q91k~Kp*)mt3Dy}aJK%OLQi)f!urMnMx0{K{uL;9*ILLQ}(b
zz(*8eqGPD_Wp~IahlDXTR4l$pYK4t^+^zERjMTLqtSMX>fHR%LcUb<QJlZ78QEro@
z4Xr7e7Ov(hS$><%Lv5ia_1)OZkj4JqO>(xX{#J#?Cr`x9Q0_$I?ktn$o5CPWvm>CA
zwXB#;&U8x%jQ(Kb=$8<x^+!eF+XPi#l4Cr#BtK{ih=$W(SY(>Kb(Lvt0v1_yu+Pnd
z@uZ&lLTNt8vmt{-Ci18uHIxg<txeBLVMkLgT+w=CdNIu5Ck!~fk4!y3TvTO|KX{b2
zB81O^_jJTgICY{3jmM;hu2Sw98Rq#^YJy3F@*(WqcZN#W0byL@KO<>`qsV8@bH$4?
z`Mdya2Xb3c3qdnZd<%C~R~c0rW_2S{t%@JScb=PHD(kz3k>D08=sU-4yh1*?JOH?p
zfK!%}kG10+`8tU{4-SS#o9G^MgB)^s>PhSj*2Pjhz9$Q-hS@UjDQS>gwM20{PlBuW
zbcNi~*Pf(j55Jxf?@+DrJC${(b(hnU+OiOCkzt8Q0r7a^Iph0FZj%rQvcPIkd&EDX
z*BF4B3d7Vz8-k9U%`F#5k3+)WeMS@~Ydm%WA1c%RJx(4uFhudYA-nZp@jwL}-}y!I
zXfnf81`w6MqrlvGZDpnR!4u^WTEH_nKp}Do{N=g5uaJH}nz_XZN0lMB6Pp$2PnK(w
z8sBxL!BezKTg#6@)?<s9J5TNyDLiXb`Xi^MwK@QA^Ixs%K!&`yJj(K|>KKMtiOOZ<
zj`Hf}yT=ZYzc(1Ku3C<mdXX;xr?Q0b!<<an`ewbay6svUtp$E;d9>vXN64^`>rH>y
zNQB!W>9m|3je!w2;_Y~`moiA8U09|uw;r4qANRhoOhW=}@52!#RHy9{lzs8ON2PK^
zL+y&dRIAd{fHBuqSL=p*;zo1oDK&A4J}#iSfk-xZt#PF~Zjr|aG@jqddN*qF)Ls)f
z4k?98hQ|4?S^kq?E;)hG3Dw6J$aF0ZlQ;fOEj|Lv5Lz+{^hV<LaX*~UmmZEUdDiZy
zrtlyfat;e$4SVzSf1*(zr+&dKhDxffi8OV>9KE4`M=jsB5egLB8ukUj2L2i|Xv`DQ
zqLrz4KUQxYZ(mqjqnHEaGUEK?$x=AZ^B;FgG!zWne3lkK7>|U=SKYpgW=NMKty2J7
zq8zr_9_Uw6#dKn%qCLk=T$ldzmed-`=*xGb|0e7I&)@0Yzcc!8takv_TJ)-YH%N53
zwbP{eC&6rQPasT5iy4Eq$DK*h#~d4@LK{(T8OBl8ogm9Cnj_;6vhD;7w%5i>hUJ7`
z4wT6cSIJ!8*vGy%;WLg7@2o+?2hS(AYTYf+x4Yyq(3fnYyE?@up6W?Yi(Pj@%L=B*
zQq6zB?J}#5nT1%rVE={&qgN??{+TG>EV521JdO6(Q81rBQRJ&J0q-3tQ}*A<ne73V
z%9!24t-MJ}_A!cN9+rK{=h?lV2Ycf3O3CppIXE)P7}%|1Km}dqp!p`!ct??}d!ydg
zv+c<Ek_%ven6jUrF1^05x23F+`c10+ZF?eEa0>68A&-6(R=$L6Ckv0yj`>KeEYCH$
zUh;3U$ftcY|G><|mOAl18M-9Qq;Fg8cnb4}4I{<?e=*b9{;upX*}Tg9tsp^4C~#%7
zC~F3OY<ll)#*WSC?%dft_5N3-S8cXY_A)kBkWJLe!~Oi|?a{(%sbA6ZlhF>e{~69U
zhknfc_+WJSH8#Kwq~n|!3t$5|-|xC8`%j};-hFejRkHSp-ul@#CqtSp^OQ=!I@p~j
z>>r);xy?gN?&JqgY(&6e1PVU<T~_-h0epH&^bJ`~ml|LuJ?@sqo<ki?1VPb&0YE6w
zl{rMyPk&#=M^@^lm#*y(Gb@f6pOftMg0)&fwBb)Q7~+>Xng&vLC)Z`(A*ZE<T?hfc
zb{MB656z?8jTg#4uZC_tMah=HumB;^FCQyY-~6A0D4}Jw()z8mTRt)x{WkD|gKee=
zp-Q<K&_r<Y=ezZlkhhv!$M(lMO2p{7a|^eqMmqRAvsb+DoiL6#$SmXM*URh|Y{M{D
z4V=Ib!IR<LUpz@Fp0j7u;_8a=K0X4&vmyyvMT@^p{eym4NW5a&-*V9Lq7k8Z%i}gj
zV~bO#H-^Ush!!b4Vwy^uP~e*X5uN&Q>hS~&81Z>(Tp+4D;YMKZ=lvC}J<cW~ealH7
zp^wSYaZbw~k5k??l6sz{tYVCE1=9IOTQ#}Adq*7(OVciY=(MiDli}-7Hh4{cEngd*
zSP<&g;ladxg4`g}9r|VTPI35qYy1(avn>3_G_2oKS4Mr3<?bY0YjOWV!&f5KzkC?|
z>|3(_TghSrm#v5f<k`h>zm)Zb^abV$y^0~n9uhS<F75S~X~&>@kN6$gT=ohphXFWX
zUzwh73xIAi9wHA9fcX-B<5)I-Wx9!}swfEuC%z}MQ5%2#9KG4fW~%~M(Lv;gT1%P%
zHkbVms{deqir#gXPCKl5`<2mi3qz-!qVYKRXgs1qY|e+4L`N^RAydEORS`m=bMK6}
z)soOKpagaSWU)G71#Zsb_+~;msAMK2EoNrHMqhh>oHN<fCq!pSiY23ud4H`G&NKc<
zByF22Wu`(YXr$n?Nz!$MDZ<@HsNB6$&KYSV$OjrjCD4k*|G`<Fy*d4`PeNPVU3y+1
za&Flty5|RzE2tUJio5oQA=TFE-1z4L^UMAv9}(!cOiFLz(gr?nj&TCdxJ$Ou8i>r8
z5S`XK^h5H{lO*RFJ&{l>ZO29T`<_S`F8)~hj2#6bD71R(Wln#yT}s+=dJ?t^&_}lV
zk|_S}C2P&b)S_zhk}@e;$aLHPE1B0d?)L(+!Y_T)3nxn(2s&6e*;*&BkPBb7HX{5$
zIid!S))5x@@Z~b|c|X!dV|-(iIWHb3+kG}v-hIo&K%3Tx0doW`-47@Xc;o>2{JFHR
z-ZL3RHm$10?^rr6vmYkN30}G(gUy(<LDU>y;+Grc<z}JBku7Fo6##$&XB{WU9}*NZ
zDZ)|xu(mLHc%a80meEm|SVnu&v8o`IAVxDo)9;sp6T&FXZ^O%=)UoecPLk?htqlgE
zUlWHQND+MK7v#U%OHC$Av-1M8P@81xThR-o;D$)Mi$neCp3Fjc^*K{z>e)6qVd5u=
zL^y?cF8wCSyUu)EZocPqjGTGb$UHxtaqq0w!fOhdWVXApMmF_MI-FP;<24?|pr)99
z0o&;-)j4-NX@CIy@J4rxi08c=+H@rM6UG2W{S|}byqC=uMniO}Qb??+XPOi7ytmvY
zz3Vi-<7sQKwrB50bmhCZNP4pO<DTOP-|DF{>+jG$g^e}d`lQksGRvKDo4iy1|GPAl
ziz{xDExtu2=dc%045fEeF2>%?qTBYerWVLJ(6QA%mx&jGf_^@di&mKzf<oI})zZLd
zjNJH!?PFwXGO9%_5H4naIr<6f(9s6UXh5IX=*kzJ<4zhX8#bhEWC{497U3?YaHqyQ
z*LbxsEk7aqoS4?&6yW`BTw(wI903KwQR@mZ?iF(N`JoT!?oC8dG8Ho=JK2VGkI`Ir
z^-P&@W@u8XX=<$_MJ?li*Iz2LE)2a%gOiO~Mw&0ZQ;z9ieNWj5Wh1qlFVP<O0dw8*
z#qqew^{YmuSO=J$Lny3;FT{^c3qu+tBG#k1Rvb8Dem{K|-}shE?%l76(SFV=@n1LF
zMD<sh#>(yVP&8_l=g!(H7k(JRSqb*pVmojU)U|LkHp!-Bqb98`(z4eq9Q$LwmY&aA
zvn9TCLQ_`oGNk8n-6Mta$m?cWvp<Tf1}RXZus<4HEm@+hEheY;+z~9<uIgw+?ZFVB
z*@#BLE_!=<@6D-4FEYY1JrhxDmE&L@*=PI$xYljy2W+xmpfPvGSG8cFfJW8Prs=_q
zNmhuVgc&<-OSCe_l(4ZMj!C#1%KDh^hKf{rMo3lRJ8wyEE*5G>bj&d}6Z2BBSeOlp
zjMgB??cd80pITrX>D>jph;EU^>bk?dgQZyVj@<uL5bl_2=1-s)^5N^-ATw_XLwjf&
zY~j1t%L4<ww%OIireO=x@{HB;@~kiy5j~(9u2|AjRFMo>FW=r8l*VpHjcy{|aJ_rE
zDFtulS#q0Wk%is4alB0bAQ-(`U7CyqGS0#HW4Mg+8ix%>d=c{e$gpV$G|ZAaC&w-4
z{V#zAJU(l1{K4xU+^kJ3v>aUf4Q08S@$q3xZ4#D5$I6O9)yW)xOL_ulyN9lpea;Q0
zhJA3K(@^)6FE@CYTz)~rf#a+}V`m;1b%dLU>HqqDa>Qf{QtW1<aLFl?<^5}HMAe@r
zCVcGxst92<WQvU0+x$zFM^@z@LQ~nwfZwEp{4_Xpy7h(xn9#AdDYP;&%e~lDo){i}
zK?(2ZQIVoi2t?6&FW3EghBTg%cJoBvJDI)h<Fxdk!U!q8OLBe+z2iFQvjs0xZIIe~
z<zw#|pcjCK4IfD)%4>#v_zm21kIM47Aq1eU55dzRGu3g1)O?yep6o-FNVr0M%(HnW
z6SO#c<QeKVQ$riWUC6E}x**4S#kKN9*U-P2;7$cKhe$YVyUQMzn_7gC4#@w+TM?om
z+%il0WZGbBa=qG`$6E%5`bu9WU!C3fqZmnDNbHMN1@_E%)wyoJFJ%7Xjqh7*<`X@H
zwB!}s7N?6Z@zD|~eAf2*9<C(sdan#`6wDO%_(1L%;tNV=edkzNd#H`uxux-6qMtK)
z7G&HzKTFeocKSH-+RFv^1<^>c2i-;T-O1~uOKPezsiIp5RoOQJ%tGJ;Be$Epv%y-u
z?&dtJ#9mh?O8+rLb`l(V*6ouhfEtVGugl$YEDFF2X|ULTJdNLvyHd8*35}uJm>Y|;
zh@AfPW;w@i35*kq)gfohY|;{=c`r!q#m2s&o0%fP$N~h`I}3~VR4JNlI}tUpv$<$X
z*ZmK9H6i>_*wDDKcY*J<a07?PW3QT9tAUl;5hKPMaFI|Xxr9GXkQN`;`!8`7^U-}C
zgi@pex4mxM{8{UDs(tV<{sx29p%I=kMckhfKYqD2!sDE3)eR|^(VSsOi(Q91W&Ut~
z_%%xcw}7U=iA%F0_nsktd{D0kflsxOC?C~CCY`dl-NJk1_Pv4?(@x=Fd_5md)F0%y
zNz+4jY`&4kC<kgmg|^GmuB1mD8D0KqqXie%*USdcQxI18YaB55-UZSu#Q+5?XDNj+
z)PB%QkR5Yov1Hwt_BV$b#g{;@_&dU(L0<6iL!(>kq%FcR=V|w}$#~QCQ{{*q!6w^P
z9boct4vw5Eg}yZ%`;{o1S^~B?*m9)!HcRungV6T|Ea8X>aI4HEsntu?JZ&G1ZH2}L
z{#Igj`x+e7>bTMKq@aEX4(_CWp`;FZ_|)T4)yxJ<yY2LQw1hHu7dw@eB2+m{U1r$K
zac#Gy$knYvH~XUM1pfhbUHEHfyd?ehGwK!=16+p1$q^$M2oF3cKesaTiWl|OfzT<9
z4jz-%fiM3+M$E8wWx8RkC%7&JXAl2m;Y4}N`=5NFT~H5L)tDz^kCqo_S+h7+q5}m^
z;kl5Ic$xR#Ap82zBExJqGT@a7*$<-!wp!D<(*Iyv3$9)Qdkj>_{eyOZO#$wie0g%V
zzXLlx>8I#cr!i>5c<4mi>e#c`TK%hsnL*3`Ij%~+*kTP(c9$B+Z7(&Br+XX1s3-YI
z(&&Z&LKtCrxBNxE|I3QDn5p8^d^vV9q2!T`qNW=yAg9NbIH(#${RdNJ%pszgxm(pr
z&Uib7LY0k0?Ku8^T#;<@cAS0&1KsWPg{gG<TAuU1FqVL7I14lY34SIX{h@^*c6$rW
zo(|oX?l#+_u(rOUz>9J!XMs;YEc@3DS_l764XL2laFQ=4gu2r78eyhFa8VVS$WU5E
z!V#|9>}b;6saF%?M7xBtTGbMHxuhbOz%NwMxbo<F>$-K+j`k$oNfD@%-IDOfdtb<;
z8yheD&Eh^tCKflDl-Jl#z8h3W9zD~{KZJb;)C9Q>Jz9kFa@}iJ$Qdu0$;3iXV1(=<
zwu4KX<F0%$UboVME^Km@F_9K%5XdLi4EpH~+3{=8^NK%GEbeIHPIUWI=1X_{G#T$-
zndus{iC7lh=ju>E=6;v-?(8+{9*2O<^zaqZ!1rm~^MoLYKDkt0A8j&~wFH`{#T|)q
zDwdOA;OvK^agSJFm`$z$b|7{{t3!B`dfHsK>{!Y72Z@cv%hiB4Ald{8QNBBVPV`f4
z{S#Unt!USZQJ`{&L=joWfO%j?dch{sfLxo8QHh08Gd@By@rEi&d9~kGM&C3uQOcWZ
z86d|DgPW2q00`X{OOprEhP+{Nv<<VAgb5kR9-4cHbo3&0r|3{sgOmf>pXr`iDQjOd
zDT#<K9a#Y*AmB~>3K}N6cxZZ2OY1kvAtS?A4gQzUfwP5`%DJxnR4(4fL>5a5;+jye
z$sCAm+<VjHv5Ra)b-_Gd%%2vd4sPt^<}zox$po&Q2t9$;q&+;9oLbBJ$TT_KGgPQp
z=}*Ni$RajamOFWn9N~LZvd%uTMcvb|@pi^(>cQO)pBo)8u>OxMH(L<00=3FXwNsI8
zCU&lSaCH3PTV`T&b;V3t)A>X?27dMy?&z-4cUD^N2j&;F(;rk&T3{SL#9p%9As5I!
z-`Xzc2=U)qdFrOd{JV||YHrJ{BaM7#LG%_6kk{|Bi?LFgxli<c#Hl2=HAzmW2}`Ai
z0xojZ8FZ^46}{p#*>SHe6kiCl6n$^u1$s->i|YTHn&_DsJUg#nX`D&aYTXsm&5Ld}
zO<8}$oShZxwEo^wxdWS;2q<HGpJDXDQ8$`xgB?-tRvG7`DV%TT>Wz`x-%8V$<9~N^
zppZ0=*Gft<aAwk7X?9dkl9zfyW@mUM+JWTJ2rc5K)i0)ThwXB%Z}p2^R5(JZW=X!O
zJB>-P;73V+%J(i-l~SqU1a;+d+;87Vvzu(cvdrDIxYtxZh9n1Y?m4pI4qIiudWm-D
zBaF=x&V-EPcJuss*DlzsW2%5vX>U7i>)tjmt?_8YB-abr7G+<D;iE|2dB=<?y;m5^
zW@Yo-1vzr~O#3R_YPTpBfsMUK#Bcx4C>H+WZc(f~Z65rj{9EKJe_;2pEHIT%84~CF
z2-v^l!T6dDy2q=1zi_mP$q|b*!Y`2TMqDp<?XXxPOOR|-+`@I**{GPTb~p!WX(AP0
zzD;I%smN#da0M0d?2pdFB>Uaq6{`pjL>mlaYu;QVu}@{%#v24CD*OORj~@8+9(lk^
zdOiJB!vJe0+PEWG*d70TBE8a5%hj1+=Z;1dL>`%}U6t}(lg;wfwH83ebhd+*P{f+Z
zcDYB!^Qs${ZMR;>33RY;h^b*$e54=lm-s{ryK?uyF`#ZtK6T*hWk@~m#sDqnFb<|W
z6j?fq@_K(tv)8PZH{ZOl7FnR3ht)vKdNQ8pRXjVTs20&qY8xalz{FhS<N*bA$VjVv
z#lmho7a1~pj>s1iWZ<lj6vHd4q`E5U?&Ce-U@qw{eZMpBi5r)Z-%-PU5cgK7%A+sG
zM3)p=fc->(!j3pC;##_e74qOV-<HmzeNfs|fxpC;gCy~Msq>t_tCGrTqd<czaQ?`q
zWqvCMJZ$HWoz&JtdvIpJWbFNjO!g^!-4dfr;8S(RCnG!E=Xtv#51Ejc5pI_*5s}>`
zPsT&u4~dx48lu<(^#xEtvmS~EuCfs>iQ#MUAYziZ$dkrPn{zED$&ioDz~D~N0oo_a
zjk!{qF11a_*)6WF1Wr%sGpq|8q~Y)N>Kq4Y5X+@$1=7mH{mQ5`&UStNkan|d|1h)b
zU^7uL*QlM(bZ?v{w|;1+e$NzwCP;k>;qYbVdxNbDHaLK9ckT!BX(F)IMh$=KugRlw
z(Z46j*4OP(aY%hApCE=po{&M4-j&t9^E}EyZHqmV_vrBlD&#$nIN&#=f&c+x-NTKB
zqjR~uTVRnJ7O7M9$dPP2YwFqOVp;H^-L$6_9%*V5k~!A3&tr0-ukYmj6G${)m4qFJ
z0eJlx@}Jd~^XHNYLQLEq#Mi80(*7m;%AD-38iTCy4Fa)5I0zrSEc;AN`}}poP2rM_
zz#>h!0!06jn;oALDKx+tJBx--R8?B+f)pBF)pc^tHWO0Zb~iP{H}g6u5vMC6KCik}
zBTGMCDDTV;2dG0;KV^&5bCc<omdRy5*tyYTsq7T0NQg(_w10D+q*jM`6bq{AT{SMY
z+M$I~?>4iwI8hzcFs4a_`XowM-uqhl;YSOyb4@<-Xl-js5(xEkV>=mqpUpEVFnlC=
zW(_LfBb`+!x7}$&#8NGLjd5oiU6aXq?x%**xQh>`D(OF7H_bIrgz*P*YBS65>v9hw
z;*5A0NiLtK(M}hGZ;_ApF{fUw{GG>`GtSDSuaSxYjq|YbA%oXlhj>vdUpW&gSb94u
z?2y`WN`rqXb<*NHSDOvn0gO(K|4;~Tk}V(IDE-G7JWfNy5OxjM7Id)G;IxnZHmW`)
z^^^VSCjg3Q7jzX$D2cA(`=awJtdwFWTcvI>B8Am*?JH>~5s>Abd18PIn98VY_WIj5
z%cj%K!e{#!#9wKDFlH%uYvFp|A*+2b4=Y}027icr)s~sjY12|iI}4~$2V7aDOcOYF
zDu|E@gc)A~i1nyXOSW<4)z*%fNI0Ko1GzyjX;c6cE5M#adg&K9c|qLk9S;jLLvoZg
z=*UNE&!;6*raAj+^Re~toAt<IJAO4uhUEAo3;v`65*loIR2yipKAYvN>%&9P`B?dw
zwe-F}<iE%gBDF_cCiA^4Q7eGlnlgc@Af0n|{7h`PBh51;Vb<iLFftb$96kC;>W|av
zseM|A{s<nr2KQXOzS47AuuqF<c8$4<5un^2J#Ln!1I;=`S$3!%FaS3+YKwA%?^gW)
zRM3=lGGkxUnS2#XV<uAl8e@fb<!bq7vmI-ms{=tL?=0eDP*h)eUi$qfn~%}G+=Ql&
zNV1i9qXQq86{CziL<IsI9Q0?>vkkzfd8w@Y%FZ^sq!?d~!am$v%vbampx?6^*|FfF
zUITQ}j0z$%SHZ;3&5|Ac8r%p1dsoeo?GETDS-%F&(Vl9Q1alN`$)o<VRrYx@XpL@z
zt0STnWNASDV$lrmBOh-x@GiI10riAHd}O=w`{n2%4SwZj7%RJ;QG`vF+rMty_8JR+
zpsZTMV-0JB`r#^2R<Dr9y+YxeB?{ur0m1vqcLxrUQ|`8J_CI6;Y0HCdk|{pp$xE7t
zMZnKj2rEjmg?s2k>Al)elH3}<gVN7YoEUDNgO0fKOL>1*h%y%|jWVl1xM;7<vSx<;
zowHBH;sE?}kDEi35ic6|OY~p|6J@#?G(?=R&B!=qyHT^{>m$8Gz$i%u&x6njGB#rl
z=OA<M5AKzo2ZczrTCzzkfiHE{Bw6-{Z6{WmxCgS^K5MQU{;<p$YAekfQ`@LV4y~@`
z6Hn#IxYefBaW{-WANbqI!JJ4!I|!XC>c(p-Qy+kgj$PiV8vkoFn_G*l%iotv_BAJ$
z<CbW2Ouap4j`Ql)cZ=UGvW}swVLMc}1`b#$eb<+MmWTTWU}xJ}xDpW>bj-+f^)us>
zo~&2*RD!~UPqZ?(hmrrQ;zkhVT_Uwfpp^oMG@^?2k>mcZmgX;+Y(%0fmN#*VVF*M_
z)m<EQ>SGd}9RVPekPuNQ#e8A#y(jx_^kMXWVQtat$1INy$Tb)cilnG|LJf!|%r@Tt
z#1G`nQ5Gsf_U*(u>DHYSw_R$68|RvmTWkRgEyeHARhz`+=P#yD{U>$JX$EX10$Vjw
zLrJ<m+JK8Dp<UwpXIuV@HBVqlF;B2u&-+Y1{Uc@Hg!x~~(bnAuEsSgNjdZ-y{6AiC
zk5mwa#rMeX$y5*uFA?6RXGNA9dZ)y*Jb(;`vvwf#JjO(bH}mEO$-2-e=-4-!!_&x(
zf~0k8WV_Y}$`M~%rk>|iSsb+`+Ms+~+Ue|&PbA(iRiBm7;);k4_d1p8H!P4--<LjX
zj0Z~3sCI@#M8TR4O~Y(S9T)QAN@>f<i^?$VEgGgcsHs!r)gLSx#z89VH>ye*3drxV
zTje4-<uE-T!vK0%9=e*ZrE#k9|H#PxN2yrzX#TLV6#1O*rZ%OUa=;vDp1z7A51_Y*
z+NOhLDe_d)pb$4(aC4+0!Km3F@YdoNdG<Q1+2C1v5ZfG4ouCNE1Veu`7$?i@fwTZc
zEsgHOhEsH+A-{D6@p-8!+K`gH-W?))>YWIR8`73d%`YzNFZn)yg1v=ywX7kK28Ozx
zCzCds3xgR_g40tmwnCZbY5JJwo>(Ds&$dzl<^{J(EhDY5oIO--*lczhGm{oowwv~$
zOw2Hgim*)xHxu^c*v<S@uAOFK&;Q|Gw{R)t@zB#!em<}M?gie&S#}n9^NK!}rDxM(
zIJk$|ZuB5oupn5?#h7XAF%&GUWE`VYZ;_i;*v7<8Xp=;gaoT-OcF7o)4xLTI4HeDY
z@0<1V*Yt1*FoiXtX}XU}cvn1Kw*F|_2Bo2)S>1Ew4YBxsJW~2EOWRVKKoSfmRT-(D
zqVQ|{=9yd5Pu)9BO#~#nwx&qrYB1bs_OLlR>@kB8{L3vu#qUH`{cDuDcMOnyJnm}u
z2slrBl8e@C2-&~g&od~(zaEfZU$&*uFn+~oO-2E4b+7Fe9r>}v%~1iJD~2nC5|sul
zVYVD`xfu+cw@{_3A*~#@_Ii2ncUu?LTM*z6!U2PFkoA0XWwh!g4=XgGQfXY02yv{q
z8#c(6n#LzBvJL<iWYhJeyo=PuK~(u&U?ngt^{xRTjD=rMlD8lCIS);nAQB?YFR7)9
zk=%Huq#S5!aJO%cX?Vp|(%hp6RlsR&6e$Vh_tYn4S^r@9mMN)rP4KKVN1f-seL@!2
z@s~t`W8e<-jn6YV-C3^3%kos`#veUwek&fI=62al3MT0Mi*&!s6gp>nk0xgLg4uKB
zPT$0ggR~2hS_@?|-Pd<X)s<lhEaqf))<`XLdz>#%&M~YK#f)&53{zv9j8q<3vSo7j
zX`y7%cm;vG0}}D(AC?hb^T%`Lfs-4rp0%IKvv!as^rLSSaS!mo+3vk2Qgwit*D6}~
zaE)*V&b&?D+}mtG^ww?>I;~wvM(Fr*1XXuQY7uWo@YFe5#!XDy^dqGy9b6ZHgtZj}
zE;XnB)^?dP)u(3FYQm3zQ3B*Dj{M{nvdq=jz=Q6-YPFCP8VD|9q8Y>*zp)*Nm?$F%
zNiNNwKMZ?B*3{uLBpJ`pMp=4YJ$pryrPA{wbKL|6#UjxJka(i+X30s5y=LQODh5_4
zqhI9fVH9$c?Ot0WSI-Mk{t{TeXh23+!%UYpApOZ!W_@!g^z#jaCRzc`9I|ig$&UY{
z>%8NmD!Ttawnwo5YH}AyyEnUllt6m1C!qvVz$AbmmJP%tq%0;`La=}ZMG?!FA_$1R
zfgqO0f{I;HYzX$oqbLgYhW+<GXLggo^Zfqd6=wF%ojY^p%qgF9PMj)oa_y;yRFn$!
z_lskDm-l#&sK0+-KsFw@Io@p#MU4-{xU;vwB9UV-&y!l<25+~`a*ycH)iWHKHe3!d
z=@!S`c9_M_RWgH+iUA}yrbr$&soPX2;dyoN?;Tu(WY!s6w9hNxc4&3xfur4NMh6%A
zQCO8!FXDdA5oPeGd%S;anqf}p|1!#Os4}K{ciV`Hz4#iAl`g0TShw|26o^~^Djq^Y
z<xe+5e({dDPSpvtRYeEFkHpGtuD`<lePPtuw2!|Q5Sr($wQeS8mmJONGa){N2@Oi}
zD*S3_gla7yf^aBw0rKc>yj_WwkFA9HA)!d6ja0MnCa=e*Q7HrO4(S>M$%W>|wI4U%
z+tm?Pq8AYQE0jFxV(-{&)nAzcl3&z%C>236jBkeb*u4LxOlFwYYrIS9RGH*NmlN#E
z)n$(WE>_G#pN;iSctXW=Iq@O6B`rfBW*prknC^9ZO*IxiV>CtVtzN(}KoI->7O%%9
zJqCQd!XM@Kv%03NLbh4EfAZlgbro3gu~INpoQw7atUMsH*ROUTy-HV}Z7Z?S0PGfL
z`-VN<jKxvCT(cjm`G$*=fj=MP^|kO8j*6VzU=0aLk)N|o;@jRWPWQzk$`bM;WVRP9
zSrUxrpXps;ZLxgS7?R=EMBz<Ru=TaOy(2$}M!{HkMfB1Zk#6OY?sfmD6X?HgUbt*b
zt+)6gMLaVxxlL41;PL{|5!~jT7^60JUMqP5lsSXj$S@z?;GMQT%BeanAzT(`&hq}U
za5uz6HOYf^L$$#~&Qh3yue@(w=)V0ywcUsuXc2M9yn@vF`C;$A%;+7)ooFeIwC&^~
zzS%1upeA{a631<7i;AEEKH)NbB-yR|-hxl|fl5J)D_`~Qu~4af89jEa4bzj)dqVwu
zZ0IRrNL4&Z>4+>(ed#@NQ_tVH*x?V6o(weKbaQ0DU3yjbn|rI-tTa?r$6*oqDc88i
zxV;b1GULQj*usG$P(JbE=9-zGy4TvWffC0a)O^SAQV=0f&*SslJ5N!dJqL#9nCW5e
z9PtleGb4aL**kfi$_n)6HzJow2Y1{X0WY+y$Bh@L(WWHaY^|55?q{6tJ$`{6G4@qd
zuiEC&bd)dkp$P;c+g$U5cY06d&qSFMQ#3<Dy(vkVXZ$~Tw;b4gNWIpvRJ@W)UTD4%
zF*wt#THxM#y*&aVa_<#%fS9pvT=IUIN1P|Y;GB>MTtm>C8Rq)$yzpWxNEES$Hd!|i
z5_bN8qmvJ~ENbNtV?q=-A(g<s`N{isRn*c@6v-DOIy8s+&u_dQkpKhntjwAvRy3E$
zEOt@S<G%TpSGQhoHjbBa@p8)aR8hu9932?!KOgT6f2qfPq>_NjHRrqF${_!1p7JK!
zWblYRQEyp?M<4!&*X;5uymi)V#>R|~B+MgJKiynf?A3Ju9x1fM)nu=FXp2zFMN_=5
z=j#6OAdyZggHuL0$NX0A9XC_$&X8Rcau40H4o@Vw_iRwQ<6H8lcI4uujA*Jkb%wY8
zHdP@|c1nXa#15+!SfY40HhNcCT}K3qIw@iv@gT7X=uu|ubgyz<)I>gN8Y4$03#<ZD
z+Dxxtb+mUcvpc@B1KYiMFX%lkwAoNS6B!MYECL?c#mzH8ug8Nb;PK`XJS`;DmTS(f
ztb>Z{!lb~$pPOMeoa@bx_=x}8`jBp_-*B(*i1Z~w3(KsS-V6l>P>}jpyH}?jcG=p)
zWDEC|^sqS1xYj$u;_unXGSCkKKys1lA{HfK-*vZp8+t_TPUD#(Dg(MSR)}r&Uh5%I
zTN8?68&VK{Lh(oRU+wMZMjzrRAb>P*d*ckGF3W7M;b6rc?yD>zd!GH1`<YdiSTr$2
z%Zbh;H<7tN*8Atc9ul+5w?rt4`dkS3>9={W6h$%gOum*>LaNna5TT~`bzZ;Im34yc
zCtu3ccFlN7z5*Wo<Z3V8ulWjOfv|+?{UI)HiN>J1MydtpM*=+*YpT4L>=H;ykKE_|
zGC-pO<dR@*bZBwJrkiE&dDkDImjqYl2;_GG=3>W^)bd#-<z=_WIo&tDuus5lI!tCS
zSm)j}3DFVock#2{%)@#<ewzjV$;C*jsJaFWs^UsYHT$pk(yxjdNLa&Ynn7`zW|(Vk
z@LK-eDf33rrkE&U;0gOBCt3GiR66Vk97RaVxh(1LJqowShSpJF8RJrx8Fi~0H>vw~
zl*j!aRze)PomN7`lL@3bX;mRWazDTl8oXn^kES{*tPQnIK`DV=P**s=3zNL=397C@
zq@pWYI>UXOX}-GD>uuSLup)#Sdpd;&WtcHndbu_ZnNIk)VmR=)LW7_GpSLzvNf$Dc
zkO2(1k%P^(L-w$d-ssDt4k@c#hng&e1>rx(yj$rV+Z6SI{a1gwaVB_|*#5obTj0K3
zwpZ@!_UV9*q-?L`%i7h=jrq_9yyCRA##>4KiO)8}{N3h#`<Swm5>}8;#a;$bisIL4
z>8#<+wQkMSBhFaTO`O@t4`Q6a@5Yg;p6iX=srDRbytpok;s#E@hrYkW%lTI26*|X6
zJZq@^klBzWUU5g<53T?l8^Vl%ydoYIuk_yAqX1LD7M0?z1gWVBAa<7|fAWCZCZU89
zbQckh$TGxCp8nH&;_7Jr5-o{I(N;0}k#82Gz&pQq-D=gCh#bJj;hu5}DZawc5>l6D
zc3<K?d2%%9E+1&bRO*q*e&v}-bKJRQ+QmtXCJ+~CE!PZt%Zu-+2XQ=p5>US#wqGjl
z!p1V3<YQ}l-UldL4Y)Sijz=@hi*I>1)Tyq-le*;PVN18<*#gTqDIxjEQ+oFKTW`pG
z5>rd)j#R;Va-rutUU?3yYIPVmR!dMmmiYQC$?tX7jo!JVm21IVq>@=R?qJfWNV3mM
zuk~trDO-X?0+nk4sVu>@a_4OQ-R)<CYvnkAnWjv$poSpJT(f(=cjNxbTj`93Ut;CJ
zbCbW?JLixnOU}n3#9oR`6iZT*muv&2<stP+hK0u??U_dwdFR>4c|=44r8Sp0=mRvP
ziaV3vcw3Fw%Bq`eY%oSvRK%-K_qN|2z1=E<Bpg+a3~mFCeC8$IihHfWbeNd!^ooaN
z=9vvsy+sxow)e4NxlTOT{cES54c=yp*Vqg&+zt@y%SU_hhwJSC)eWo04o%=A;szL|
z3Ez6>Jfo5|U0o43Bo2ZoA2G=z!|K04ESnHgYzm4Cdit^-ybqU0r7Ot><VKJ*=@QtO
zv(<ZQx#EU-&U(s3b&^$0ml=KjiFff0+An0+9GXJRMuf)*-DQ}!e96<RlzQN`*3LyH
z1(7C6Je6t=z9K1kK#w=hP<&NMPzJ^p!jZl9U*2;W);lV;k}&u)D>{fR1>&2Z>phaJ
zQNXa;5^;l04|6z4#6({5eD5Kft3a&6xQ>A0V~#=yFI(ol6H;>&BpX4H+69IiV6Iwp
zoj2c#3iLx+XEUJ=nNRG5x#q#EydJ+tc?p5Zk~$zNOYjSH`~O_)z57S>7m-A1u->St
zogZNle_@GtoHal3rY>GT0u;D%a~FB%JgwIky&}@oMe?6<_wk15_j}i09=-b}NWPxv
zqKnc_VD>66{r%_+tigFgsNrlRThex!(na2*&*<Q6NlCCujE`)GR090;>ZJF&^?3Uc
zwE&Mo)2Jt;lupWgrkhXNk}f|=BZmL`+RQbdUYK<8Z+dM)x`lZB$q*$$UC4pRuFF!r
z%1fgvOi3tQM+q-_xWAGLy<Rp5fak`O6d<JHBav^J=GS;{#XOC*K)T2mrlj~~yho<w
zCimQh>aXX>c5%65viRuH<U2O2%bl*u>Lv|EAljQk^edC=A66`s@bfw%WAOix11Zhy
ztWG|EgYt9EBw>-TbER^@gXK{W+HL$x^-BoKo&scga$FIUN?!7<-s@x3&w#+tMIWR{
z!~l2Gzf>ROHk0Vy8P?`Xz9R0(BOBfH0Y`i^p__oLA%V!PPD-X+v+5%+?`rim$hi`c
z%__s11@dcu^12E=Q*`PLBUh6Fl8fds^MvFj#oCF;P4tgNk|JiyE}ZKf@n#24lF)+)
zJQ7_B&+R4NAKRk68dDSz7C;N-n4I&x<7}WCB&i{%b=3_Zj7g(Hu<+&HraP6Su!fBQ
zx`b_#*a2=A_d@TD5o!veXRL5Yi8{zdX@8^M`_EiWk^(u2sM}%N6Z_hK)+TL8?{Vvy
zs@fJdqb`t9MpERZnbgtV)KHJfyR@s4P+XJ^p_aq~FF04Jg<Zm73OIs-hf*;aE!q^n
z>@^Ni$Byv-;B@Tmq9t-SWST>#d1rQu%J^y;vW66q^YNsAvd+6Q&~w|J_68({p<+tq
z9H*J<mUuUI1osw%rbwY$$X*W=*T*AQCcW}yG&qx>AX#yKA*oJrg0kp8+><o%2X%r%
zJk$}f7-=GEF!;`T%B_o6f33JAG(+>~u)3bPKN)=NU+xWs>PnXjG%V!;xrAJ?0BiaR
zuFAF_+z*dZBW-C#)R1a`1!8&HJ=Lv!;D~O&YG#Wr4iC6;XC4JiWzkC4*kxfoo05_%
z&Qb6r7lIXuT3op{xJ$Y4sTRD)d&j0Lf;h`riV%RLXv#{!Wk@*Z3`)LuswGho$21~{
zhY`4D{OTPa>iJd4A=}3(+QX*tp$-Smo(Es{;_K9R!}f|Quj~cB4zBE=o4xmEM++u{
zL~kT-4L%r-!{SBWws9K9&OK4Ut1xq5H3uPb=DFUfKS(yy(!xCAF<R8AQ<%@a-gC46
z!oT{IR$#B<!`j6g2Zt=E%*r%hf9BtGL7&o*SqLRku^7u%Wf>N}srmk=mc>bX1<)DV
zZHkx5GRWuDLjRNnai#e=KvbF=r4Qdq0W)}YhQBE#uCxTSbHoo<If2(-Gsb^OZCq&q
zzvm>OQ<{PbeqB1o-}mUa(&41J5c<)YSQY$lQn`QO%(&7CS?pABs^}CghA}Cix67aK
zS)bCeFiV2l<fRp5hytrB{EY({K2OGxuqGy~j(1Zu79Hl}N&aI_iz^+L1AdBfO@xjW
zAeYC?^nctpu5<+MAU=S^L+xhdIC$Sbh5qVsaiwFyLDU9Y2|8#r<s*^p)|UA*M#Pnl
z&XhIRq$vdzh(04q{K13w`7}r|rqcgsETa>u5NcFLS6-TJz8UAQI8WcH6P2-fXNIhG
zuS&+wmY`TRrffL;;=!H%n!LEuQF#KAvDTxqa^BeYVt?QJS+(p4HiIP%&L9o18Ck+w
z44&+d?HN~EmLtl<R4xQ!rpt?1$>IK?4RNKXWLYfq#4$)%Pu%P8R>E&HO$Fu6t5ZTv
zDVT==P*harnHR72?+V0~PRwEdHNez@$4o^&O7fmF{d3p%DJ^0nIs)!XIKR7A`ThH|
z)S39bNzYYnhE?X6gR=am9}rhsgh(giax=N{ODcH%f9~}^P{2xqHwZUiP$wD2g!~K>
zSmpmdCa$zN9pZ|hk;a^g>b<nepE{cLNH-JO8Aj?VwpE)_M7q?K{s$BJ4oKK$F&H(L
z);C-Ixi>SH3^uGqFpI;6BZu6x#NRs?vIa#!1c2;75ri@ER{x(vSe-ORm{RYKkZ=@J
zScHi1>2iNhzGxz2SGR;PG&QjTNNb6w`TzR7Pw7O^PVH?#BT7ox_0_Ze4}H+5w3LiE
z<N%Ywp^+@}d$GUdP{znL<+Z_fM8#%PG7P$G_RssKk8ET|Oe0%JVunfnR9{@__%xx{
zx&~7`5gl{T5rHY}>-Y>1DL^wvjpvT)IV!O8qdujlLN>@Iq^oaZVNAtD;Fo{R^ndzp
zpK8ubab3d{Er4vy9slRw9EvuQR0qmHkGgB2|CqWy)r`mW5i;h3yZzqL{3;dsgk@$S
zilD~8GXEo9pK30v0(2qa2XgP3%tijAXX=kdLa(j~HVEL<ymY<)t={_U@?a}Ik2aH!
z<vx9ZfBxlts!?4EgEN4p6*0YG5BMLQz}tn&g((4$WT2_WEWg9wYf_&Lh`8gLg6*?F
z=fGH#77tF|00SCbH;d=ZpNA&a{Opw$!q)0)YQTDlEyq+$;LzVc#{XM0M~yC^Elo9o
zPAeMA;-2QOuVSY&;ZPmr;wF@{qYu{mgM&GQX&n6KAZ`?%C@X_axij>U(mXj*w5Bvv
zr?l}R@RATL-vGsSJ2I~HRADe}k`EXPp<MRq{s&&`BjXiO3SP>;%6KS{jsA%fl)gE2
zICSjMhQtYwJ=0%!Qd~9W<KY^yWLhut=k{X7GE@PoHfHjr{=aO4{-U)VqoXl3^Zg?Z
z*Ij^@0j&%gv;RVWQ6HLkQrDGiO^}`WYp#FE={jHum6HjB<JVwK%{y258yNu;i5U6W
z^I@o-$t(REE}}6T&svl0tuY6_>Q6hCVUa#4<cc4p){GzmH1m1?x(t5F+DT2nHe;Td
z>-SB!^dd>M2mlgnu!*1VAAAna3(1l*=Im;uaYIcA|Hp?x1RT}6=4MmQxl6v*?=R4I
zBS(gsr=T!1h#V>N*t`BmO0}y52$6&X6M)P#(xqq6D0<-0)eSYI*lagr*@@E0{uP55
zUg%Cliu%Uj6am7TeB|V7?)SgUL?KGO2c}Ser`4El>;1Kjx}ufD9+)C7%8fVquT0P;
z3940|ZeCvHf047o*^zs-4!cfOwK<zZQhK|8VR!xU7}khMDoww=(!cspI}y})ObSJO
z@}>>``zP~L;Zxkr&B2-)pm^q#x&ALtr8#nCHwJ5Er|-YT|KUho)=CmP5yZq{TQ%4J
z!Yo}6IqM{cHd9{lFYK=^Qg;d3lchiJ75@uEZKJ$LjK<WAFy@#S{nzC%sWdt7l9ItZ
zdYk{NT3T4fP&@lG0t;is{r*GPVb&0lj#Ou`wn{XUp&R{4(`ZhOkXaS4AHhdGyVk#l
z9c3p3K89K%dED5#$^Oj!wV6v)$ZRYcw>QZj|1VuD;URUBa!aD7%mqvQ?eY4pke{yK
z*sJ^>w(2JovVM(JM<!SP=l;vbX<G@e5Krz1(ZRO)cb7+A#K(eJ;Gn=&IDE1%$Twxg
ztU$eTCk&eBKav&TlBa?x+94}AWUasEe3~E`gfb@c!&3iG5H26Y<<Q6~jYaHxwch_b
zivshohpbKk9mcE-`NIcwX>WvOGsXdp{!{<#EkBn<sS?rHnCEK!-GA&YCr`}gV5x_3
z+PQU}xtIaKgGm$zUbW%4eo9;Yb0G=lP|6N+%ErRJVOt0EqcI0x>rBiQ^=23}^T&1m
zqb_9t?iSf>%8z5@GMmo#PZ^-U&6hwHh8@Oa@>ckNnXPM57$ixy84fArh5fJP>+|qD
zD=xZXNi*X)n}^Tzm&WQm*hOKiW652(a<YFT7X;UaJqmK?R&#JN%xTyAhh%FHYH|%a
zV~`t#l;?~6%a7@EGZQD0Woq@=(`4@`9F%Kn?+H{F#!C+da<X4@=hB{O4qFrWq(Iw?
z8$$K<!oTbB@bSb8cLc&G+b2S{RVt*MwmwicTwA$d0iznE<aBf5LxEnlwVX5qJdc%X
z|N8^aWJgA>2C>)Dx`z&k{qMDb3+z-%KsfIpuQVyT&9fT<@7dQ00CvU>83ki{^SZ!x
z`{Ut2uK~>F;6B{GK5*|m9U4Grb2U+a@LQ5-lOkeW;OCOPrYEU_yR8qj6>IBrHKA5v
z5<uOlg}XLz%5mBZKO{JTi6C%ve>gDY_`QZm1ur~lZQ$6E+B$}(QIt*9?SU^xY0GeO
zE{K}ZLi`yEB8dT-?+n~BK|4oC9dg>z%+I$6`d92Ta7LGbqYIjW<KvFo15GFH^V`hm
zZ@DS3C2`x!oHIrDd~QY{i`UWdTtm$c_MEDjspie5z_X`mYuBGc^qoKN+5w6G?+*BQ
zX9xa&ZoQTr^}K^sI3yf+)xKl&9twL{ZHro{=8c(w+$r|uERC!=ZYJ>L&C!__G;1;q
z@mbDo4E)5(F#V23@GFgh4{hUKljIXSKDII#HkpF)nmH@5?2P~VQqaSlzwJ5*2KK5M
zfr;bwiL%d|tM)KC=;Y&RfphIE$6!ema$_Ays&G!=NIr$L)3HUMo`&BQ=yvR0trDTu
zNhh7ZMIyT^;GCpy8-Y+YO;Uuj4cCVP^^>%9d|i!%X@l%z9)Nmk0_o$lgS)1M<&$RI
z9@T-{?Jf_i)5E|hS*G=z!2PxS7^Sjfp*g5qUkl8Hg7%>m$T0fld;LDU%kRtgurXDV
zzn=)^bW_(FxTR7D5<NW_>A<(Pt1Ymhe6JUi4LrBYKwX!dP5S@rMV4s{2cERc{+xc6
z*?fLrdY!(qgC5A+6rl&isrow38C3@`9L)(_|4sbOjE;3zSQnYq(T-*XPX34IJAVpG
zj{KBH%mOVnq!(rkIq;3=2hRCU$0$bU6Qc}1cGEgLaMz!EjRB!{zK&RN0cVI62R9~^
z_U9FWqC*p8CY5^xq{i}PP{r4rKRXcDBSGfU^|kQK&exXh5s_;Txs}Q8X^yxsFz1N>
zdH|KD^MOi~rj}+r%%rKwASXfK%AWe>E(0--&Vix}hBvx%6{3yYXI($5nGkNqWd)9(
z7kJu^D;tUZn1w+g{H`sK!s7A*Nyu-1oMw8>3ncL4eLpj&%dGcVGSZmZB}2lksIQ)i
zG*K^QYDiWf^<ajq3gq_F0XrtzF?+f@wp;8vcDrc>(uzlmr2d4bk<ZKcF9{U=w$EI1
zyL?#Z7i4#79bb*a1;~X^o{Iv%9i~g$@jgI5o$u>tg&(-H0#EL*za0-@wA6>>c4SA>
z&8!OpXUL9bn9_E+A%KFVnyVKC?oQj6UTE*!%`SAr#!a~>u=#(GMOQkis3&d{v;@1C
zWe&P5u$$lOHtj{KS<!Xxay&Q%orKYqPB~(oWY_Vv9RB}t#L(*g`!u4Wb}m=va_4nf
z?#^K|yZkn~3FN!(*n|qotFbSs=GTh?&)UPb4^d@DKaTJ2vVMC#(xn}y8Cln^Bn1cl
z@6Y4T=={7cLv-#hbUYpyJ!QmdfFIy0F^$Uu4RR=`dyM3U>7998w>)rA+`jt`zy9C*
zi`o-e|9wwZ*Ny31*NiUf+GUbx51r$8oF|}YcEk1=o3-fN^e&@t8APa)tFVY%+ta8~
zC7Bk!y)RH(q*q}Xq~97w2$GDZO{)WwZF435auvIzrquR(16!@II7*^^RW6j6um>Ip
z#Oy6vN|asag<6amqjd(Fl1Oi<=I=Fu=TETrFBR_v<SEIH<keh4-R=%d7)EEdDMlcT
zu;XktqWk{^vSIe3f0MAgQI4o2clc*f;KPFw_HM?((%D?xEP2<kGf4?O1k)^Y)#5<h
z-}{b~*Y%OEZ$_@{crzC)`ZfMCxltAe4&#{aJJHnW&pT*Ga(qN+ht(e$BK<Fdx*+jh
zx+gHkitt4s+f@)ni3Kx)v`v=zdjpSJxjHJ4h{x9XcVNOqT|B~agE|xrY18xez)7QR
z^E7ezsYt?tg5bI<P$di6DFX=*BW`UVbA+~XMPN!$Ct((mQs%q|RL<k~74;-Dm4O<m
zjw2wnhaV2qHS6upLmg5qlpYZfAir|C;J6S8D#|eLT^Lvq&=b?8nS^N<1-8-*SCy!p
z<~rRT!HDLW@SH$;^8e~0DRW0xg_es7X`XppP#JRqXAah9iW|7?WWu#9r?6`&h}hYU
znOVYKfs|0M+02*|DDwW-t8%-%YM%*a{(rl$%ta=+_acz}`J%veeeLv`caY*u7l*s=
z$=QK%eCl5G4Abr;+=`IYU?4`z(ru1;dU4=Kv(FQpm@5_s-m&Do*NMr95+ZNV+to@o
zf}Z+xabWi!Z2mrHjGD(0N>3B0GNNP{ZU`X^SsrM0_=E^I1g@597OV&i@powxmrL6s
zz4>9MB@ziKH!0<-fQDwS2n^%Lbc|>Y)hHGQc$xWSRp6&%w7F=H?u*FE+pZ7vjM2uu
z2I+WXbk<_WM2iB<kH-m(uDEkDAV<k1Y}s{}Ns~BpMW8|`FUr=XJkCD9!wr@hZDYP8
zr(sp&W~Lw(B~h0L<{xE0Lk=1CH^dD-Fvq;LA~2GHnVX0ZXJbwiHX*Ll1&aa??_sSG
zm0A(O>!CiuolIFCm>1hQ6I`&_UEW%PL6vcu_W+<I|CA|O8TbH^N)~pno{VTu#}^5-
zHOg#w<(_7lyQKFss{%(1(ILhN#|8h0M~-lo6@l}Z2NNGIxKTlDX0qcgPX)d>wsU&m
z>TreH1!WTXKzaD^4BW=&FAe<Ey~_`!0^PnV3gGX*+Ok1obPk9G<7|OLixYdtO@YdR
zog*Sx=a{b-1)Ae^^5BrB;xf_JBNhdEN^69SI|+iKulo>$WbEH(S`vq}ZyO<$9pBlp
zq(lgJ{0@V^C=MKqbg7zk{<^@zBXwTGi6x%FHRs~#mLw|>(erl)W)AB75CKVd8HYPj
zMv=<KH4g`V>!YKLhC$U<V@?$CvbpTmz>8f5pju3xsazRY)rD>Z71c3ll&UF_6K!L&
zhI5XCLUv;Ad1Y~6nJjL$DcVu90}e^T7jyhkeRm*}@!MgN1OsTNdEm~#2f|aMCq4}w
zd!O}FwD`Vlf*G=H4OXosnXy>%g6^<7w}g<UsbGf*M&*XSGt>Lm;|UFF)oZD%p>##a
z0OG;$KXaw`^2v$X6T*>!u~U1nOuf0#>o+{HLGGsNnx;CFO5MjC^T?aje@<u+!fc*G
z{xG6;bByl?Z~YP)aYKMC3N|CefmF#fYhL!smL!P(b68m2pTqE41>4pAiBqnG^!zP&
z<glpR;~#!Jj=H_QdiWGq_yhPj_iksQX5QdmdQhA=n}MrPWCBxhVLl9C*)#s3-}Wiw
zyMTLR%w^93rI|&ydgiA-BuKy^($w?|XHSF^uE6J8{5^h-AB{V?u;EK?EQ4E~!*W13
z|KwZaBrjDyfh&eGiBL$dXOsK95nl);<^y@hh%D)~B=T-_nK!5^PSDc@)pgV0l*asa
zmA5)CMG~4D^W`{i{@Ov33Ic<sYt6MBd`bIUn(AGfCox3*@(WD404>{1Won^0VYdIS
zZij9cL<+W2L8DNU%shW`@<V5+tG{d_9Hfz2D$tZvu}}Qe8}ek2nwt)h8m}a>Am<$R
z-BA}O$9<u-Tsg=Jfi=G!pM3DOJ>*wBZ<`u&lK1beO$x?|IM2<z{NxW0*XEI-wrDa$
zlhrqQa-z0Yl8K-V7cUm;uTqjt&mP+=NaTTm73m%D!3VvPPg-|)^-+gO&D#8i)*wc3
zqWm#Nq?&&xdmDCXom}ui5nz}sJP3{pPI31vI(*4R-J~kfFo`W_qK689=B>%@A#Kqf
zi@%i~F4#jt?yB(N!{+KUgxFe~0~~|9u-7H-js?-aiXa{`4jomEIf#dTpEP>Z;r(9L
z$2x04Nceguo*JA@NjpeiNzw(oJZ!mlNKitmWCh1#Syw||Nou*tIU;#LNe@ZGQi5yC
z)%2KoT+_Mc*H@Bv&DDfx;G_r?g!sruPI4$x+;H2xcSiCpF9=v_J=VZ6Skdtr0{@Vd
zZszY36PHySDIKGO?csLd@Ic}+&A^iq_mpb$$gsfgwVj3dH7jvZ{*i*_1&t@z2=V)o
zg9)d^<8!<dzY#=l1Ba(HgsVZ044E9^a#xN`-n=bdFv`QQR5VK7K5)M9@Sn>4{coTH
z7e1sZ$uLNvgzi1DzyE>t`?eEXHNL;!f1kE%?C#m(&H@$7NTU+`uf7<+UC1`rqB+&o
z|BX$O)0F$2H|6A>{oF&6I1wbLprlG25jMnJNMR{TSDW+Gd%d#qX!)>8JO|wNK&5~V
zXPU+B-c`F5s7y}v2ojEi1&vJ_>HYk6_X}1YvK_QoB)R<95RiJn&qRQj1CDp+R3Gut
zRt*&+Mt3Sn%;h4$19J3auha&RmsYZ24K+{{8XU;zOtWQH^6rZc{rn=L#4CZ>qDVpT
zgmK}0ye4_>X@@?)p3EbqY!?}h;3i<}c~`|ock^J)_W*9U11$><2Vwru#oh(4bw6>i
z*7_<FV;fuws(EFdmwmoMy(UZ~%B>oO89xpHD|Ef9Uhux0b=YA`G|C^@k;;bE2<T*8
z)UapGUx6C*U6WU3tNZ}c>I!DZ-Tr^xU|U3kg1==Pc?yhS*-bOGiOB=jbbDukRu3(0
z2Nx6#Zlypd-j3szyN@?&fl$t8Sv9(foU>H3c8Xhbjh;>dpvYJ}-5rL*MFKxa9)QLC
z%)!Zf)*W$Y&Y>E~)De_Vo(b0Hlpnm!mqo+<6vS>57NE6}fn>J#mJOJJf$GO{Ye>iz
zYyMncZ?w&ITRH|aTSF^(&cltMs^wZj8_AvQonLpv$~+2ZPqfcUq`mk8(CyAV$t#)I
zy<Q696`FFkOMGGo8sv*u_O<(Cn^dKDI4uPsITg6(h^WPI3R2B%I?;d2fOx5Ar3=q3
zYp$8$UiwIP$=b+blgHL_29}25K3eZ>a0T+#lQUK-NGI`rBClqequ0jXw=}JV6J80)
zv@y`e%DCIcWnIBYufG-lWbdpZ{tC^F|7=CZt^6v#xo%qZG{jx=XjR<sZ!;gDH+Mz+
zF@FtR&0n8f*=PEWw8!}C$rJmeKAQ2q{p+k7v&Zt+oTKBvJL~ABhzf*Db7cZ6q@pRC
zlQ1LksR`8jENADMkoRCr2nusfPhPAE5C<`9a?1$#pd}>~hUarGrS8zWi;{<&9e)`^
zFZL&oT^j#9e^n1kKJJW!1Nf`<NAI2WaT*C0Bm@?q9!bLm;>gDN7I-5b5s2dn+>l&5
z&F=69cVum77O&wqNE$%O{%|KB96x|xmreb$;Y(v)*%-fRW#RyozcH{qf<DdTN%3QM
z(!#|X6n+=31CVe-e9e5?uv}Evhgi^@rucbh(SVa%z_8}E8S%a?`hSL*3V_~hx-Y)y
zKZ%o>vnfd!o6`GAI36B(P6gs8{R<ir=Ks6T3*7I<yx5#@meaeEUl=p-l7yRg_1eZ?
zPhRUG@;{A;UlJxe7Z1T&GtH<Al5^K4{ENSAE*q)1Ys|+-Cmw(BQ78$f*T%$?3wj*S
zU;=#zac1NzLM(uQ?3WiMzPPz(BP0kUr6}>Hg+0RjH7-6e=CdPr@YmM!5^i*la{23$
zfk|^d>Tx80%{wz8<)xmnXj;bnl%M49GvG}=ytp<zO)T){r4`;sPCtq8k01p}ID%mA
zta4YL+wG#l!$Vl&sZ81066P9DPvI7#66SO6xBXK?@SS1_cL&#1%eolkz7#dvKJ<~h
zd}3+{7YksM+B#h0*p^aL!1QBtf78A5xYQ6UH>QbiquXFsVO%csJ05b+dTD3~N~<Kz
zNQ*}C=48{yNNb*TKRF~dgn@+kDI{9S|HX)W%HPAhlYZ8oQBrV-f)^yQB_B@;&V?-V
zMTPg`ztTb?ht}5BYi-(43cn*2Sgw3cnz?_Wdr5F;h?}M&*iv0Z)IT}G(#*U|-75>U
zc~lGE$5oq~mB|zQE^e0FW6aPH)`DWbyERPqiyYp@L(8sp(@J<KOTU1Rqp&f_q-CNM
zqiA)HnbY|gE4uG<%yLX4v8lp(<yAPcFLZx8g8>D%(-f@Y)2GOg*{Qq_f}S(eeYjTN
zR|ePvIJv$}(y^It)7^8g(kCYd**!iP860#w<MQB(4eskxwYQj6kzF8(WD3@XTyxiK
zcVy$xp8Qo-O+o^^vs~Hi^_z>G&yrK5y`WkVCn7J9L4{nrS2?YN>B*9WR7A<T94i4$
zVE@W6!8m8tL#aKXUhoVELdd!3Oz%3roDb5abz-owN}$I`F-^ZYpMFSVu0+@X9?KRS
z^ZVC1fB6|)ATcQXR7hpr??`bn&*PT}DAm=|$!dh}Nob+leX+ZirS;?kOL-MAEd;7O
zv)?x{KYvH7Fa-@iVr7YIjB#S}7(-Bz_0=#rcwC<Oa97N8zvu|$Vs8;|KUw8dO>%PV
z*qt;3#Dw_7PEFn&N*@pR{r;+sL9@J(LHOp^cgEEGz^~IKp+|GDDkN}yP6&?nJahPw
zPWy2@qedRY2r42X<@R=l%Vf9>6o{-D@5RfOY96{J_S)+iOn|BIOR?2*Q=mfjyd`$`
z`8ua!U={GcFivgBX#H@R@8Z`OOi-g?nJwZvaV%(M>o4i`?tA)(eN9wAl9X<fFYWc<
z`;k7fU=nM|zGQOf%~{pHgSYB<tZHWu{z6mjn<+iHf|HjR92*-Cy^te*iL=Pk3l&hC
zZQ)8ySqJiPsncM)EZRS^-4aOk_hP5EZ&xaV_%NS8wA2~gFJ%ixAW$AP?%3LfI(VW8
z;2W<<IBMI#EjSH;$TqbHkxJ>pDupL~dBU761GjLDc&I*v4o=iE`ud`T*I(A=v0&@m
zVjdIh1)YeV=U$ay-Wa%rr+LO5CcwU#0}>B?jyK>Xt8*)O08blA3wQ6D=MrwH8nlId
zE)7<@Xlud)q3$0hCe~h~b1G-HEl3}xeObbFj0=|=9cpY9H>@ddN+|e%CZ3kti=jFD
z?$~B{A40k&M7ZRNgx6mmC@+9}$!|)7)KJ%V>^~_nmUq~XtBHIaa@U+I629XR+Q-7q
zq#gkAeKMXDO8Vofglk{ol^CP>x-xFEC#w@;zl{z9(p=)~^wlZ9CB!ET+JdE^B3xe^
zZY0GYgHSumJb!gU-fK+CE>Riam)c;+MIPXqLW52<zdV)D^3Fhs=E=vWh*QJdIx}hb
zO@pMR7!WCUa_vP)k8Ib5Q=!jxTAm%1G~hgKDL`Wepw#!~q_TN~VEzCsflOA<g2Ieh
z_-)d<i7Ap7>{MBhvt@%mpXBabI9RmpB3Ve`?&gV6NrNxewn??&S+yZ9%3tqI%HN<(
z`Y3jHV-9;OY31C(k|T5ykhYqcGNv)F?sV^5MQaubK7bU_((Pa`=1sXTWHQt2ubw|S
z>4>XSmcc++OeqUl8E$gRgR_G5#@x0uu5{p_W&FON4n=~TpR#i2_KC0ia^Ny1UlFe2
zO)g3tXAFTk)r|Tk?vr1%uN<jQwgGvTVtsq!e818R#xWcuHE~I}Q6jMzjVPU*AL73I
zgHEKeFdp@3G8)Nwpz*W5imRmumW)%f73&Xiknmo-2#neHgSe{wn4E|aZ&k!E*vt=s
z(uIk>GvqE{GG~^>k9&=Q(|9YF1GB;3k0h}9{<yxSgO|a4_{6i~D^vJ<L=|c{!^9b$
z(Nm3od)y-j4bra+RtZ%0qC?|-pA5W5g&sh}Zhk|su?B1xAHmOS&vWA+?sq#-`+R{1
zid2H*AkDnFEp|cQY;7m^ma;vpz`17jTd^~fXeTibEVt1jR*8m5H(zgwIpw7+c>;XY
z6e(oE%I2EEuf}YDG3$1~^)?V%hoUr5rup)d*g=W<3ZhCR7|q~jBiQxr*lx*aa6tIO
zb(VJST<qn=3=tu;5Ox8HadeiP;pT7bB*k_mohU7)n^T~Y2&GJjbKk#rFa|Ihp>~Lr
zr0%gvEB~!+lNd4b!>j+Dcya0AHWYo-h-uX+El~2jm)zpsLq!-6-CnT6(Br3nd94{k
z*9;S@Ry~2+k-SZEukC+p!oUADWDTZ#>^)l(l0QmWlb_4qTerrStQxXL41TOJDTv5;
zYQEZ#5ZIlv1`U91x*;L$SbmVn--Z1Xvko1yhRf5K*$We9{*|%@3mQn;zKI`hOIZV>
z1{C^5LXQtq){G=Zf;&9K+~oRWM~BXhf5tat4PRkQ_caNJ?n+t1osB@t?NEg~7sEUi
z0aql<`<*u{(zGrd1oa_;N&UuzO<$(Shsi8aO4t)g<Z|TtggsxUgizs%>ZbC^1``nH
zkzIe|X7@@5X*1oF3Fi!P{1Fqtz=@=T)9h(CH;^h1!g{1YZ+51Ln}~+T-{a2drDAFs
zVyt)*kXTec0=x5}JE%bW$|bd_%CFcjbIirBxsT_huHj@<25ZPoA_{@YX6h#HyZFhc
zvt+n?u=rx+7rR%U`Q*5SdA)|L;Za$De7Pj+SOO^$e8)=(^S)p)WeK1j`P3Y)+XL=S
zxcggO0x{j98=^ai$>ps36E6N<*FL`?L~3KPKJ?z5aL#kOiiL0o%zQFa%IjR5Fz)A+
z|K=Jvo#Ef#$1VDEV4DyEhOC;_AWEz`E#AB9{UIWI3mA&!&CW|f6{m{9Cij)zsWlvV
zYU2^;$;HY=l2x3z`muho7|n*&%5Gq{$u$#vNf#FkxP2s74^VwHUM>uNo3<_X;6Qd8
zjNF*{-?;mIG(?W*7@Rk<<P?2LH?eDDKCa@3<`^zatVAG*scV*NX3USdbLzhBtk-di
zVqUD*c7#ePD{D0I?BceV+H>`!3#JvIcCCy9J1koj^VBg}B9LJxluC#AtvDdhO>sV6
zjQAq(If*<5uTRu$mdVTa{rH@=V>|>RDzY1rP?p&?#ka^xLfB7RYc-$++d+o;uE<xv
zg(tE!>=i*3#6E~t@{*;Qw}v{4?otVOf<TWuA_kETE1bLqJe3PkOQb=&$Vc2dFRgGU
zyDIbMcS-pnX7%7`XU^sN1ck1r>BPtgMY)dioU5(aG(itH1xf+;FK|}d#(c_qH$pQQ
zvvSS7w>T#!GCEg^oLQKtYwchp%g6pb+&AwHeS-wLMc~ibBtA69RyqA-R>*H6-m9&c
z0aH!;&CcCPbYz(k0Pd}bO(a@|`Q3AxZ%7q_n1H_y)+a1BTPl604~%U|&X%51ssD{1
zFI#G?pE5v5W#0#c_nkf<_FsW)IpxJcPB^IvIIX!Ea>molfG6A+j!_m+gh7`R!-17P
zipQE09&_7KR$+{Yp`jY&r-=5HZZ4SVCe#fLabipBV4~1s8bmJ%b9R5~&dx-`MPY9V
zldg@rJSn8~&M*ycyKj7o`ijqs($V!Ozmmp}S+HwQg}qh(z-h4DM3|7ddV{;)!;Axf
zDJ&{9Y)5{JdHz}N@&iyyVI!gT5P97&uriFKB;Ng+yXlO`$B=p(BFa<00r%1aZfhUa
zbj$0`4yy*Nf%3z~dOd&V30MrgFVqS*<DByS2$81Zb@!5W%ovrl1))Q}GM(|n;yJ&E
zS6#{Mvdp-);56ZynAeye2keD;?k($4#raNl2j78wr|P8HCNAt<n~)ab*yh9M>JYaH
zH0Cj6+vkQPPnty+<_+|4%trDE+dc0%uWS!X!|sJOEFmvLUc~RpeclHlrpFWEdM1vh
zk_YQibH`2nz2E-B_j1XRd`TA@oFv<d=J9xm_r^y19GWei`d}J^vT4tGUfTz{6D$Z?
z405Y<q?)Z?xW~W5Q(|FYKcJKBoV*m$W@MS;Ho5Wtpb=+qjSx71m@NhZil3XdjqZM!
zEV#~OdBrS)zaR(hh^73@i`|zW8>+VpRHw7Z7Gr=o@xEN|KJ4ns7qb|${WyYCSgSPS
z9^_Sy(g_v`vEmz))krrRcDf56)Amv&FBre}WE$^Fx8Z5_I1PoFb&`x7nJIAHG@0JS
zcQGp<KZUTTC`2|TS5j10Jm<bP%c|Zs7}-WmLgA_Atzswt3XVAnXEoViHNqMA8*t2Z
zv3b{}39H06H61ReS&_}sO6P>D_`Rq)QzTDrU9~$xLX^3PB%$O_Bb?jLr=J}qBLL_H
zxhb%>=KHn?Ut}_2bODJxfb(XW&2`R=*Xhqo+BGe2reN(4E%H6IO@FNs#AC&oBw{N;
z;#p?(HL;7=>BJ_qHvuuhODnDiZkL}*^qES`vOtU^CDR|*#14I#-)5T<LWM*v7f@qO
z|JY-{pjC{Qh|$7~Kq*tz`k~n4=WBa`q=i)51)kIl(_>@oT}$+p7_hN2@J2MO!NZ+B
zVcwXF>p~ftFvl%H=XYVM*;Y#zNjuNv?2I|}OP)vVA^y?YOCYremN*s1C?mywgnr&0
zo(^Y5IXdBb=S7bW#BP2p@5^Qz=lh&BIlPaEWC=g5n~tp;CKLCNv-MnUW=B9lOXw}X
z&oUqRoWC>ZAR4fijgTp7-dZ!miCLZ=OR%;G-~^lqSW{BQoD`pwdg=f%5taw1A=+}-
zQ35ENF(fJY=P|K(YYKwsH!S2djQ247epN|d9kI^?B3bkpnp7nZAkc*Hkr?xLe$tpe
z{7~=p8dY4#0B@?NCSC8)489{ct4^8`yGc0OE9rm|n&A?);Rbe%;$5lcsvi<R@$|=%
zi(7CHeEeH|l5Ra-8$}+UDk2i1rzvog9w-<P;+w222w<FqC$Mgg^{B(Wm^(NPSP;Q>
zG$_v%oIrA+uXZ!b1qW&k+Mpfa+ZkqFk?*9}bs39U5m97_gU9m}a@MW1tBWWh%mBl8
zhIzBzxp1kDf_Ff)6+{V%`u}XS6$~;B5(CTw5g331)ShbA4fpxvY^0mv8n>()MU4S7
zxy*U<V(mb&)NN(MP5TJvuZ#2z6Yv-Ub%>Tf6X%6_yU3R(gUK~V6rEnqN)0FWa&}~D
zhlGdVP1e>Ee9k3Vv|>QxT9$ZYh3zg_9edRZJqeP&QV)p0CcM?Lx811CM4PqNs^b=n
zc9wa6eQdXzl)wwBDb%4QtVp*6$Z?VLttIjN=BXOq24!ZLWs9saufxJ8cF`l2IHmpd
zIE;V|5iV^{iiC<hKim0C4g|l~sB^6KD%lK~?<^3bAc=WkE8-iH;J<81H8EhkbIrkY
z38NAd7KcJo6HhC0`pxHqrI}w>L7n@wQ!0;?Qs4t*moIPZ*k#s-3#MbWwfpoY=js(Y
zn)rf(H6)~$I=g02$hl~lw&xRQpsbOSHigb$IjCZWA`q~R%+xRvw9EB5&OyR6MF=8^
zC&6Y?F-prRPaoqP5_u+sn~$J#SF-LY@BE_9Id_RZ))5XR$v#lw&T;x%($w-3qmadr
zljKXY@Xg$s=A0`w({w}f28?x<7h|nTY;@X}Ye#-VmE>Dd66Kj3^IEF&^-S#=T`ghe
ze39g>y{*wX(|*1tvq9DszMca}Wp+jMC1eIcE5v97@5wOBXF4y~g~0^t+T^&*8I#C#
zXUQskgOb*i5PA~{cQVY!h0X*acNT|T3AJHg&@5JnWMxjjx!ObOMXE~F*zYS&kG`4$
zeNs-5S4(B;)u%X5%+j9^4?^j#d_7Nq+`DVIQ)_!*?~-0H^5u9y%$9SUadyJux@*)a
z@D%Dyk3wf@yB&{{Lpqg6=`8L1v(S0OcFJi3A1cXTbj><fxner5!<LB5tz>h3$mw^z
z9TK+Bm$GFNO0l%bxze^nw2|0clINzISI0PS*d?fFCqxLs5F_dEQs?A|a$xP}qJ70I
zbBH?-_J#wi1~QVwt7tPQCS%U>RmpYBg;3YZ>75}fgPl0j{4=-LjUVc{=EV^ufjfbV
z`_JXhv7%F8kwnLBsGb7#i<dmtd{^f57l{I~u;rX^9rk<4FE13a)K0ZbXt9lJO^zOE
zU+x|2TyP~1>?MLo;ll~{#~!dG?E|=4K~Mx;lUSUzU$-G`T&`o=t5I1oYKjr$;6dK<
z?n9-yB2+Juk9nrpo8Sx;`$;k86Jx&J<j(O8Z9|ML3r=I8`LDVCUm3E6S4z%nE;F2R
zrZ_M0<NF4N(9lP<BB+TjiO?nJyp1hM<9`?;0<tk_H@S_E3>7_i9LU2Kdwo)>J(cDA
zqB?QSjs3Q;2o(&A4a<;fH-6*m0}q1qQL?BZ4j(doN4rN{&{sT7Mfl7_rbd!YVGOY9
z7q}w^GEtl^!N!ytrkeVud;8WQXK+LSXQ+MG4EZ=Q@zcTDR5#V7>WU;<FzY`|JpMnJ
zHPvDQ*2tJMANRI8L!@O`@EkVX7~eMUjlv<KJw@K!h}Q=I7eHqbj8U(ib<4y`g5jy1
zJd5=Lu%k;ViXeGzd|mI&d`JOC2u%}{CL49YDBoale_#T{@l)N7yAm)4k~1N#JNi4T
zZ{jg5kdP1oqHsOT54mQ+0O#hF+L15C)+F^QhQK`2Bj8-ReBX9-ii?w+o!4u7S%~}J
z9SI-}a4Qdq5ac;uNT*m=fO248A*``Y(zCFAlQzVb-=f!6R~Z+(pSM2t-lf_R%^xL{
zp8;svoVzx5!E)`g@xPctXwNg}-V^(=ZHI{mr+{>p4le%Kdt=9nyqwE{AdHVo2%qAV
zQ=Nw1oD$K<2;sCUF&0$3IiJU7uGOCx1!q+gUqa#oJRDhO)>7w}fjq*M#`V-dNgWau
zs8m?G%=uL=L5^HV?=$gh{=MA!_({geBq+Cuvn#%uR37d-$~R0b6zM4G$g)-rkgGIi
zlyj>H72>{wDa{D$d$Y|k%bfm$bo6|r5WRY}0L{<uI5l_aKoyz`7~ep%h}>}0mSIlQ
z4DBirb8Q_ay>v;EKcU>&)Mg){88@J^8nWDHn_EA0D&LNDwY4$<JbrMjx3)QJtOz8m
zyhS8fLC~Hs-f6Oo8O%6Rg;E?`8MxIoPFn@zV6nm3gRUbw<c*_zpUWt44%iM?2wB@C
zlklzr-~I9l7;VKbIZci{><#hq(q6BBpo_<)Pe8ITL`izN@zY*+-lv;W5N>X<297jN
z;D<|`C;RE%l=5Ndq9SXsrmN>TH;LgR7jrE%K2-#!Z1Sg>qmK4f{WMrQI$T>_g&#E@
zMV1GHPpS!D?>uHrEB3OB<d4N*Bd^(dq4S~b<?<A119d^#qtX#ZCjy+Su^!<NBU~`k
zx${OnFw|`&4~C{jlfwsLUgdMP%ORumCb?E&7OAoxxeI#_n2yUgTOcu%1QJLTP`R_d
zjY;`imkIAC?`4bX5M41}Y$)_4SR)Y+NC0L;xnZo-tDSE|n#&|R7RS^r5ekuo=Qc12
zC-|D)QZit{s0ar=A=$<baE3?kVadsYWTIRqBJv>A-BaT<+KZ4RPpq`iVYX?{bPliA
z(bUP&p_oEj9P;k>ILB_%UP_qSdhr}sGis)@=oW1rPCj_e)o&#N!MDvg$4L~yhDv!&
zoSsHRE@Cn`l6_<E{EC&poD#WjMaZ2v&bh+s#1n$JNr(-XHxn0mx05L5Lw?;#47|$q
zfThei=QyKo)OM9nxN172fW0TIkT_g@HV2amP(QUf?V?{q?_FIWlpbWR`KLJdUT9wz
z6$X%CmzFwL+Us}>&S%j9C2iup<xbK#{VnMk#3I)wc1)xVwC`u8JGIx@SBOyCL^gh|
zb_oN|u6G(2YEKb_z*G83nOtOJmpd!vQ@O*z9iC0*@D4#4A9b!-eOv6R^K{`#LqRM;
z6p97jv!Ao<G8(ys<u*s75ValkVC2%+(#N!;tUXw3WBfr~BaQWPJ{wPmBpW~vMMmV{
zQx>|+_pv?r_C!^RA413nYQq3indv)3n2tUrauuf>>GiNrdL4K>g9*n5QHVuMb&9v<
zJ4?kWEh&BMmt)^KYl>5St$sO3$RJsVw1%fxF!rx^dM(zTN;&%suA&_3p=;&Fd@avu
z-BY@ShqXDAY*%HNv>M1l9j`fliqpDC2OHivok|-K%E!)i=OpKVYqV!1dL@iAsG6u?
zD3%@R8~OoVnmtBSSz&R8@uiv<@_l`8*B)|aaF}du4^npV)M>B#CSR?6`Eu4|Cs~yY
zN>TUv<St!e&>Jntpt{CgnQPSfuhJtC#8ti{UeSSYo=rhS<|ZRDg{aMKz7vkoj^bcj
znEjQ4E!=Q>uJ@J7f#k~496(mwloEA^4EODPS$jw)Ng|jAe8%8S353h?Ew>vC=fhsX
z4rarrci-dN@~HkkpJ<jA7f4Vw*oSPy&GzSff81(c4xPG`T@F_v?ZUG*pW=J_MePxm
zBocT<Z79T50fN;$J;nE<H3A5v2Pwx&G8j9u#XvAB`rs6}Y=jDQ&<n@-P7(Si6Njj9
zF8R}SMdcQ2J)u|6zS^hPkFXkf8O67!`V#GcpzBy5`7G`|(?8u;A>0vq4WXgIHjx?;
z4>Qfh>Ao*M)Sk*vGuAgLP|2)UE%z;dNt<zN;24Yu@SNC^_j_%AP<N98y9(<@WRnkl
zYpSnQL^iQ@z?&?_k+mj~|FIpG3K+d6o#N(BGqb1p-ibbe@e`90d@d8TrP=E94Tz8#
zG61q1`;Ylz)DylZn)DU;B6RnqHtBsY_Il+Boe`G_zvR2j3#Go94f;!tb$e8e=hITn
zwb%MaJsatg>f`MlL`*?7bN|V{Pa^Bl^~j@~W%~}YD$Q6b#LJ1_hw`9OLK?^^szQw{
z3K!j9(|q}F>dQD}5Hh!%0C<~c`a-K|78taJu3~!1Gq=1R`=C$11e+#jC5ne-wQ|h1
zCf_YG6kG%b8)}QHn{2O_?fhxKmK3cmEv_KUNhc_HA7odV3Jmj_$-Y1Bsj>*2QlPC$
zY178}-g;i=SP&)?oY1f3Mx5R(bJ><&CyC?&=}<3$vCwSDy6O8pXg>>bQh^d0$T0T=
zeQjdd0w1J!9$6*J8J-e-Oh^M*TdkJ%!!DO<W|#V2w}7HiT=W=WkfNw+a!IdcAL%=X
z1$Fc6M0bq!ZMW17pyh1Iqr&`C&3>bORrZV{Sc^qPHb+#S$J2a8@9Jyq7Z)PG2~(1o
zmp4!Hef^I1<x?<@bW*G->yeISxowc|v-j<6QG^J+K+ch>K25E1IN$^WUhw5uP5>Fg
zyv4Og*^Obom!H<hxb;D1&@4n=I?Wejmjr>$Qb<%$hCcpj@Lgi*L(M&s{E(xxe5o(b
z@(jt$E*!<a;@3RiMoYS6c%mLIz$3gdspjJoe2eUds#L264Wy||vziY3@<QNUXgG?C
zRR;KAwr_x4c`-w%L`qe}RP*ymzW;kdKVw359awF|*G$v*ir!NbbVF3tj~-Q#3I81K
zJO3vAy-2+9KfPi0T4TJnVPcK3B?zW(SE=*%TpqxxfS%8<MOxsF%S2Gv*u(ev4(%IT
zH${^DTlXR017fR-oNiVa5j|0~3^i6)KIHVcKp&xA2~;ngyogntU*S~Q9tF=wa_56#
z$u-BE?98!a!Tk{?UG+P1&muFvJlyGT%|pyV#SwtZ=KPbLxy||-PG3jsh7+9aVf*sn
ztWa|m)*%rf)6C#}$KR?Q0vDtfO^3#kYR-P&xmh@gSkdd6t)j+5Bm+Cid1bnGh}0=-
zX~W1qnC#p?QQOHq(xmw=k%a&evS{3|6XSh(cF`(@#pu;9__c!)oy*VB$I5|lQdLYu
zH8O*nA*s&8wu9S1e=fO+53X^3PSu}NTD=x)A|e&i-h|VfAJ5cg0&Y4~WW)}VAD-(x
zyH>l9gM}j%aJEGnOf|PxIJZ^XE^cHgBislMlIf<K-EqFkPa^}WYH!tksrf7>omV23
z9!{l-;}TB&%P1$!it)viIEu0-N!M*&Dt4x}>u9{ZS_NM<XA+NYW*q3u5-x?cN3f&T
z_?XFS1_pd{KGF`o-vJ(ywQ57uE?X3u$p%M$E~?FCqnsDTWQuAi_P;hO6QIbLgFf=T
zJ;c62611TyMYuAiaC6C7&dUF@odSSI8x)y0)3i);PPWo;Nw5tiin^JAR8vjPug)^d
z;Kw11O%;c?Xfb)_*u$Nzbvlq92RB+05n2;O)}ND|ULtp?u~%HmqHlcP?7XtfHgYLi
zu~Q<1ei`e`ww7Tize)3fs)+vb^bRcm83{hGVA>wBz6~GiC?h#mb*N)3Ow>C74WyYl
zZO-^5`inBrpO`RC*^PajhwNb~4dc(}`$WTj^gQQ~Qhq8o32;hec11q4O!eKeRhtWt
zs}Np=$)aW4?Yrh)9ayT7+tlP8r-+o$70JGxmg=Kchse>FD46$(oeSpc!zI-y)s`lY
zDtB%^TN~B73%gGjzCE+aImMcsC!o>_+zcZky4Jy^&b^oF&n3KEuNx^NZmzz>S!chv
zG>p+*1_#;ITIv{k;IaQ9Fj+AN*(<|Tjdxbf(1G$fhMFNzX+eUBceXoo?O+8M2qO>e
zvxKaChpeAvu4s04*iR#WV_1_cuvciMSKjU9TdlNXCsNIxL?=O53UL_V<7!k=%#w@`
zPY-gIiV+PBv@@NwhS$_Bb=IV)>A_Yeb}QPDv!#BkiC=ClI%E|^nyyo`2N@hl7Js?(
z-2i<?1v6G0lP={_RyyZegf-Yx-1$*}3L17>iSwtWL-8s#*5Y{5<B?&;RXded{b4_d
zC|A)FLeDb|Q=MT8?Lw+>j-iGU;rpyHM$tA=<K+QRIM*)H2P(q&-x}&WctDytFV^?t
z=h`PCv0ndCB}@+EaX&eKi%<cR<{-ko#N8u~iwUXD?l$e9?pqC5X2GYnR+IJ$!%2?$
zPo=Y6fH&!yYP&(wLW@nBl51m}GerghD8$bR297#}Iz2wau<B!~VjTb?i1Mv~9I<-W
zTK^5zs<Bu*lPy^mh6ssDhozWTMmP^yx1JSriV13yqsaCAOt$lP#NETypeIzaD>qJX
z!gds@Zz7or(F@=1JR|Dp={V|A+cF{3dG)-=r!|XX4+fAb{uf0$MXvLap~z7Y&Qy51
zqZ%Qm1=iSF0HvOLkK>)kX6s0mp|I9$;47#wJ;gaFY9`=T4u)rT@*41SW_Ok|!G6mG
zvPT9{&iEIvBX3&J+gbG+0t#km%>vco9?2HlNW{KT5F%|W<|aGw&Z8H#yhsgziZUm2
zo=y!NF4&;L49A{?b?wfQb=m=7y0sPm7iLK7IKwI%blRh=o)?f?w{zuikR6!j9AZ}v
z2pl;%XUd7qHd9tR6JN0J>M*b5nHx`W`U|0e;s+gr_Q_q6W_~=<c_~YOJDl?xF}}jR
zFuq2dAfo7~%s|D79CKj2@5wv)J$7Q?$ZA0%jTye@FJf;I-~rxT>@bno0aTAQM>}=L
z>RY?C^WNZ5&Y(<vuc)tj3ZzirSw}i|9#3;N!!$;qTwI7$cK;^kz+V|3hl+ZNaxx&o
zcavg!e65XCicpje%{k`1l-QHDXtR|np?rcIIGQ_Sioe%(^pKVoEM-KGo5%aaUL}DN
z>=BaD*#P-a3Ar_Q#w^=SGbUQ0<95}Ai7Bb}trFc5lPvs`bfIv2gdekCht&i7BKKM3
z(vWz>k$s$XGIiofIEY+z7(I9fZ`Ns1OUalZi1cXX-7f4KwHOf#YZKWJC8+mhzjOGV
zYA99v;cz$z_5f@J>1NVlPOY_}BKhKNl2{U+p`4TJc(>~_9rigw<}%FOTqmJj+imcR
z6+bveS*EA!48BFX#HD~CRzj42DRnAWXd??URZBiGex^Ca?;IjvLEKWr$AfVbKtQ)4
z&S>jP8HL~|*E^%YQ_NTUJ3B7XQA)72D!nlZI0(OUww)!iP`&jf=!LRju(Pt$D?=V$
zQp8e8h9ug3ol|esk;ZWe*f;aJFM7^TH*2$?0ZD;PxGc`(RP*?wv3G3O4pe3itSnom
zDL>q)v7;cyMO;PJjF%-v@z(cu{=7jSsuaTqz7+tH?0vd(%WC@)#Bfp;$ce>R0d#w~
z^JA;_ObABG{1D)hX%0+w?ux9Qgub9-$?vnxuF=lrZTkBPaRWrI3aym#MuO8|zr2gv
z30BfQ+1ap4A5rpF2Q+J&VP+rXtZ%WiLSIE)$r4Z(`?D+h^9KAbWPOE!=b23boap-N
z^3cqx4o{er>ALq7=gvvml`l{WD|@mVImQ{{B-p{CsxJ|SEtv7ex_|LePMlpVWEG2v
z$dVY2&*B_!nGQEHj3R+IR~8>f-S_>RkR|8Rc4DPb8KeU@U3{Xm;!%Bq!Xd;H@`7y4
zu)iMf^iHw!3UhM-G{gd7jvnFMYAJt0ZM!V46cW!h-5Z@x>}m|hz^a!75KpSHBs(ue
z)<gZoEEG>rG}&bKafV3`h;0E|$&!!+g2*=W$AaD|GjTU$5p&oKc7x56!V}lbblw-o
zpeO=FWJMBaOS%TLVu^F_;T-xbGkgjGCGuecCpjqI`Blh`WbRTaQDk2&Ibj~Vw)dYQ
zeM3>O7D10lZq7xP`61D1x=lZsVmd^3O^I+83>0bRCZF@FrFCTo6F4|lqJy+j&37j`
zU(DA>ReP7*wwg_AM3&R*Zk<EEoR1E}65!J`bM3pnm>oI~@Q~KnO0~H(bDQTh+E*1a
zklgJ;6>?iEVz}E-r!jJT!-69h*uhyPPV%Mt{t9AL8xYdOaE}n0VLmT(&akJhqE#a7
z@r>q}x+G_ElptH|t<Kn~0s~PP6v2A1H4@H1J49pqolOtx=#~=4VsdN2+9$ohe2#J6
zUu)m3W;4;Owc~<8PUF4yvEUTUbP<e#ZqB6M&SjC0fI}eGgj|WbR|be|v%T3_xR6Kj
zc*~cFx`bXRl^{S0<(VHBT926AfQ{3u)MF@V$WD!M8uIi?gUjRAftdG++pFNl;Iwkj
zrJG*g#nk@+-4LQ9&>~QiA`D%W5xeqHZIwI93J5u=5LdyjnCHLO4v;kpW>W9ZL;YfJ
z6Ymcw0({Fzky8!l8mTQ1`{OQcM+O&3BbrWto$q|J_^YLYka9Ij(~t=AlbAVnJkmEe
zxdh@fG4ZG0{#DE)-|B!x;_1Z=mns6r?wGP4v=!iEJEO^0WSKwGV|NQ45{#ob=334c
zIb0SaORo3$A8i+0K$RjcXOLEjv9b2W9pl4=V!n%6V1HfMj>Im`KPI_wd(3cqkz3On
zWk}Q}%nR_xeHW8yCyJO=qXj6m{h)7SjBOv&Y+oz!U{CCcx!_>kv#xg|Rf91he;+gc
z8=dK}Y5~lM?}n)&Cb+Q&ZPgByBgBk|Z-LSSU&ZX%qwV=pokA~8d`hY2$&}b#o3%sW
zeeg3CNHWa5ePc_+N=c#@5v(O76f^6uyJANEtgV=Q!Z4@E)=3rOABV*5uuqJ^on=iz
zJd|Tj{x0S{`*j7#d?9K^S=_9y?UIDp({|{H5Q!^UDP;F@&EnlLL%*Y)04w$)Y;_oP
z2YBb5rB13yu@W(YV&#hIHu^r1(nju%Im3QySIH~2i{zCrrZ1~5DP?y)Q524rL{%i}
zQ*Xo!-LA8fbO_bW;!?Ln{HQ<n5xdV_YIw8MY394HV$QX%N5#V_qQsSJ8h6KhVaX-x
zi&NS?;q#atc5!elG__-^BmP5o=CC2LBO+kjAlP6vPsqD-O}rPIU?t9Ishh}Zizt8I
z(Aalh(1nXQ_r!<aDF3i}SUc0oohvV6^;lR@OVP@$q%WYSl2T{w<=O}62xEcVZY((g
z3T4hb+tHy;pe+t5aSpQDI<JBYS)4R)$rk-CBDq_u&e*!?BJ4{T__z|M)jq``u=Q>B
zF-dg114<uU;w-hArB(*-R6XPvbavWrmBJtB%n}g$ud&W#Yv_!a0HW4bnF7y6CN8C@
zrchB$QkLxXMbs~gcx+wjyoq&Ou^Q$S=Ycj>2$>kqnxJX$r!MU0JhfEW`Eb$;su`&R
zZA1M?bLdd#@`yAD09-Bs$*I9jbAT1bDnY>LbuOpnr~Xc*l~cxYm0-T*(w2CwpOc)A
z?9UO0wJr&Q1PPg3=VvSKh@=^jWkuH8;yK&x@2SUtSfDyN)6Fu|`#BZz2GIO<ZA2mD
z!UoP;)O(G+`LUddc*Kp$#UD7qIrww^GO|OdCj?n4Lln};C0T~$L#1lu(I1nX^>U?W
z5x)vfOK-aj#EtnG&J*?;>>@(q*lF$Slv$C9m^GLfHZ#7IYyhs4W06h;vI#Pi4Ab{`
zr(u^4US3Vr0KmXBr<qxW&a!W9v*6FIr3Ilm$29bJ&bNXqNngmWt@je&55S_Y)59X8
zy37Y}d47NACV8(!`ibFMzW{pzm;W`ryEh?^0MM2hQO7~#rCf92wY?XdqwS?3ioEDb
zRxIqj$*$ytAbHxc3o%n@^<O7Dp*MA=N~;kONo*mz`#LLS3jqVbukpV%gr)$JVn(0b
zZDZKEVnc0^0_(%CKJq)W?ar!56^$nVC5G17-&ttauDlu-wv{R|*B%q^Ja~QT8R$o1
zrkg4tc{B9`LBRE-O~Squ(qXO0V)82;<2)BJ`61A`n8f%2->s&n^UijrTU3R;<X9{W
zGLTm0agJkcA96n^;8~6GmmT9gBbGX3)QBlr3^>{5q)ZFO7jFS+kx*mA<bfu(_}AD`
zaxL&cM|G-B`@GnICp0^^S<5DHga*K6kt+bnU37BiRqMJCaa7GYU_MN@5@(=wnvCT*
zh@jTuN(NabBZ&4BoT)83$>E5^3c*3I7Ub63!<|GsToH&j@{0o6U?n(yH&r{suhVC!
z1_$C<t=i0bN2cRh3!s>q#Bu>&5^U<)kaOg6eP9fCL&Rh!@7OuQnJ=7$j2n2^;L5re
zL{;UOs)u6#SioY4gPY89TtQ?PRJcOKjV(WoczN)QWtnS_w>TpZT!IQ{6kBwLd3l=e
ztT%ashV4Z>2I{Bum-?;}b3$fBrj#j*UlslAl`+0muiIxD!ku2%4mPZ~iMNOO4!%Qw
z1kR-)C=Lb-r~vQOA|0~rBBQF41bf!ezB9M#??sSP6KJLwt2dAE4YN*0v2$6+tH7TY
zAMcy_mj0f25V=z$TaEWF&)oM#ukO}`i^D;qHkdf>_tK~buuxbOpOcG2<=P#+p0Gc*
z$rW@h1p_|#B;VoB>nor)Jf;#~E|H5%t9)&Cs-uHbLRDZUL`Vjdm1}w*>-$!m=@_8|
z%q1ZW)V0nqD^|v4$!@Wc5hVp!C19*m?}@$sZf(cCg$QP?c$l+t%+i0y&R(ruBC&|+
zL6DeKKzTfN(XHApqJ#j$*-o-ppxXViJQiz`yhT(yGM7nlKC|k(*lzQ*wSagw@iAK8
zA9X8p%=Fu0H%ruk#HDaz@KqDXgP~>FW3jPy+TOV+)Fw<f@7)l4`K#K|;j)915%{w*
z_K~Bs-Fm!Lt(8!H<9k1Lq2QJ%8H3aa>r+4>5gTa{a7nl!40;ZCdan7V+PB{pyX3H+
zTFD=Yk2cNBJ<*r+pthHz8b<^_rL!0FeS3tQBtZf|b=e7pApQGF=VTkO33tJ<*0^u8
zoC48>!XN<U{)+iO=j%w04e<})D56~i{YXd!?5|FgMZLnrJ)3m6bB4W4qz;q>QRzL1
zt{%Bbh}@OhM*4sRwvO!QTok!u8U)7|C0Wpf_{C$Q^1_&=`rveA0{MaU6zaH}`Z)hu
zk-CKiEkpPvw*~%Sl3yj1-wNKE^gtod-5^ILnN6;#yvtp9g+|~NhY`Z?_N}_boqIeH
zbol4%@IOcxmjoJe4VZ`AH=ZLtk(3V>N-gPaKvZ+}Qc{%PV7MLskX!Vy{$>Q|JYHmj
zyQzKtxO>mbL%)QHjfZm$<B*%i#fhOi2MIuW6dCnx_%m2Fw*Lk9R|(=HEKs5#+kzw)
z0$soxxFt5d;!f#7WFTChpgdW6aN{gL4}CWjG&NzLIL$G!k(H1qpr*nb+#U%!93iJN
z65m6dkh$@Bw_8sQ`s4{Qh-51;JHveag1akOAIPr@$paEM3C`r%=iM*=AnMP)S|aO0
zHiA7*AIvm6Hn?j&eXy9=PDu=rlO-vba?D|GxS=Bm`^+|Dszg@FON#_7?%D4CnZoA)
zlB}2TP2%n)TrtBO`Luh;V4dBlS%kxeB$g3ao-A{Q+4-nD)~*mv9g<%#Nm2=6?#ng@
zJ?jo*@(f6pAFLcH5;7~Rt6{KkQ{rRgjf^rfMCK(M)6W7%V)|LwVl1|xU5Sm&<A0y*
zaF@pDN1?`mQwMD;5vGvA;Sahm9-b<(07Y$>#K09&&1j_e@{dC#(0w!qutl(j#!Tz)
z{qzNmczD{YC1-<x?f*&ja$cn|2Ra3nXUyiKyz4$0B0EOD4;T;?tH!wP|CV=QH$gVW
zCTz^_CGLVNCCt`H`Wte57JBdYN|A5_kU;=KX{y`oj@d=%f`pZV!=k12Bey^%pfe=~
z)tIMWcdvh&mMk(nG-Db!hwOA$9;smq1)x53+UGpyPJEwnNby}gU9w<KamSqP7Gvum
z*x-<E-g!SW0Kxm=X>}StaKQlYm-n<uzFj8!pG0pgBOnE8ZV6)szTm#zhqt5xZ)&R1
zr^dYL-qD{Xu7c_iVg-p$V!W50W*pM%1gmi+8Z-C+FKdT>Q86$F`OV!wxnFJOH!MR~
z<1=)u`CHuw329(Qc(O{9421mN_P#?!bY&U-N_yvXa<Gw@k@PV(OyS-?60>g93@w$x
zkWG`(vLflTEt;T(jbLA83oo1FUHuq8ldKkZ%}x4vBWYv6+SWql%w~SGJNFC{YowV8
zc<pVZ$ZMsEKOAY>FnYnIjJai8;;J#)bPAdb#oS1>@#Wcx1?Ad?sNGaU;IlEkXC~fJ
zsBIHj$mtNv*|QS=bO(#Q$e6JMlGiMOPJoC({F-Lwj*O(s8zG83vCEJtL{iXQTkRdV
z{}7o|h2$tAr(aFtL+N~iO>Tn-J2Ls}KF0_pp%t7{$6LNW!#idO^p<Ces;d~{n(y5m
zpYm41JQ!A3v8BNQE8Uo<H2g!7?Z^V$`nY%Hagp#3adPvqo0oX?%|nRbmJ5f^AeCT?
z`&e(*mEGYNut$0FyqDZ$pDwoMDbXKZ_m{ikIsIWlFf@&ctbWk_<()zDB+w&?PdA5c
zaK9hS6tc}k>gUpM`mV%3hwIl(th1|q+JNM*KIktza~Lz9$uRwPxTcAX1H2w?tES<N
zlfAVr<FZDzb+ag8tshg-;Elh3kOZdCN+M;O%Sc!chdz0y8z7t;$+8Ikg2;^-8GZ^=
zgkzPoYCKD2sGfWqn4x%t^-urO9W4>yfM%(h0`?cM0HNGa{Nz8}p*!ix<0~W%o$E$}
z=;g?lY<1_aORd2aIuf^a9dQboIl!vY%!;-ox4OSX1(C`}3Q<ZhE3hiLgy$Tbc)&aT
z_UY@=N($=QVC47A%`812al%Xbdt5*GsLX;d6E1wPpS-oO76y-rQRbA(MUrNY+m^Wa
zqW;o1YDz7|M+GSg-<9S3J@KI&ol+Um`C!k|)44IsyB8<+e3Zd5xb#}4kXcY*LNIx5
zAIXRO`s)d&Z?G>9HcvyMGD9aNZo5NUhGDh=#Ye(%UQFJ>vF~bgm*I1w!$Y28$PQN3
zy5sAnN>US0yT*jSNZh$Z9~uREn{NhTnU13>!@M{%vE*Lu8B1kX;v<9b7+wXw+iWaI
z{A2(AHH?{G+sLh4h2b?L7YG_@k$z8ndwxIZf(g|JX9Q;$vXvq*o6=_!yOrpGSY@Uw
zk~j_fd6wxLNc?B5b_^poDg-xZZQ{a5b)m+I9$s55S#I$JWSdV~6Kl(D&s0fN#C(K8
zCJs+rb)2rbJRq4P=XOteWiu^Y^jJ|om3S1YD^c%!bHeV8c6!{(Rd^ivH4$YZbUyrE
z;_6<^BhQSR8lH|-AV*R*naAcN4E|V~ONC)etS()^I4Snnm~i2L=n{P%?<L}Mt2(zy
zkOyj>Y$)5~mknXM86*P@HZ`KvMSHe=8oz#E{~CrbWg6&~RIFUwnsC&E+QzSGq;?&0
zCLEL%-*H*O`)gToa_wVMR?CD0>iv^2e}}dfhi1$OH*@)OYB)kK4@%69IYwR#%7wsP
zXdfV{+?qX(N@(k)QzC;Fi5;dIb7=R3A$@2f?FscmC~d$mA=e#Ycf+TAoF4l|rVf@%
zM##%{Upj%G@7<mrZ3l3Lg^`qwfHd&aler_^tn1;<p2n9+wvGDM76^|FHo~a(OLTj@
z)lWJqr6w$&<`xLUr^XN&%}nKBciiXNjT#r4#r<lZWI?_i;tI9%<Om|w8zj?>_=hvh
zlYQKjXS4%2E(^<8xE3<Zz;gG4@3bA5Gq!z>ENOiNvzbO9uzQew&uE^I90t4xq%O<7
z^F;TWe<F{GUzBD^2K#b}d-Hz!Mfp>4gD@}CtI+-RKyBJ<5V?*z2Z4lIAkX$g-7kM-
zZBro}u0qlGC462|6BP7wbJL()a-R^58Wzie@|C(zlZ5nXCof)W5PnXN(uVhKQjdy`
z7fT!hiMnKcGfj@)z4c|C{a$lQ;|n5lV!V7{Ho;~#3o|~8an8d@!C=R59g87U*!dm#
zRY<kE8EFWSfA(~{ZPM3tZBOsgUL0yg4-qUGEL|4xeb1f7(Scgn@K(4ap98VLHV+=;
z=FH&zNO%O==r*Cc3xwgd8A($)y!0>}#}+=t;{H~abbdEI>ZgROr&CW!jymmkY)Uxy
zS$<7^l{)I1A~z5qhQvxb&@6M))A8%7cnO{1R?_dIAW4^e|HN10$4${LVkaR6$dS;&
zTwGrlZ;QWog!be^CB&A?`2=2q=)U}o_@$%uSam&c63g3p;H27*Jdwv8ly3TMiBIUS
zPjt4E8z<T>5;osX`WsYG$^DjP)_Dn!-=?oG3<;vDRX7o47=?mw3nW~XrG2tAutp{g
z-NPF{%u2X0U3*9fMa5#ii8*BCBA}bOeG*P8R{k-*u0^mJ(}S%rF}O&o*sAXwn0QPI
zTm%x4m8en5k{XG;@cY?`KmQB`|3A9UJ3gvvd;9x}jjJe@oCq_MIWq}L3#1n-p$16k
zQmhPQ2qD!JDPDW;D0pqyuJva}!FsV`Z`cdiQNa!<c74CkIul6nzW(8doIPisUDsZF
zt!F(;^sN+1ovYF|C@y7wNfMA94L#APnt#zdqwtZ(j4l1~x{TaS)Y(zk(6^MZVgI6O
zS0!3h6`PYS?an{UkN#ov$n8^#hFZv=s}<L0M*1vf?zNA|mB31(0T5xq$oputuuESF
zbKx7o_K0{$Or*O$6KN~3K93`SpU;3P5Y~IAuOjz7&U2mV5=6EoaO+Dceq}%Z56N*U
z6ZOi{QUKzF<EZ+EjI(#L=M(UB=rJY=?#s(FD)*pOGU3<GZb+c&NjoSZl}Yz6Gp=1?
zMT7BEF}DT4f%tl8`>2){yOBT@$S<+wVW_5u)9;AxJ>3e*>YLeff<B2%?v;<Chc_{;
z94&Kd*gtg)7cw(n+eZ^aor85N=CE)@Perdrr0BOSK%JYoy5%;g@9UrQPb;Wss}hf;
z<Qu~W?bQH3>wlCWuu>&|A1C%wYMl5GHh$>)RUNkfT-T$gU-u`C;vR&X6x^re4Uz!l
zhMWCYblFBLBL^fvI$jY8+{4}cX}dEY(p#z;LEp3COHC3^{UGDo|JbQJsksJsNR_g)
zkf>4oQ0G4xPOuMj;_8aQ-a)1?Q|n#}_s+NH!)Tb~Ew2!+3l)CpAK^VhHYEsFEW|h)
zfLmyF&3z$bx@#|ymM4p)3L-CN>=3be$BPx{CrVxe1TQb+x-PcaXqrgQm|ZzXCqyFa
z=GpUMBspZ)qOl<am*hp3OL7;w$t+Ua&ZLv2%WX}O<T+Nr)x8=HI@_}NI^FkKk^IVS
zUs0P<ukbGeNdPZmo{NJ+?6-p>6<7DsW*}W(puf;8Xy2wr5`C;PiAaW$t;MV%JMe;1
z)7(js7tXYD5{Q7nf@xATw!Ir8g%{gn*(%YkWt5V*LBSf59~m^z1{$WEL=_{zC}aAb
zxqajt|9?#Y3Pmsh3?G;`ZSiA?atvmt$aUK;a&p|>`&(hbmcrl=k*F*zVIs&Ads)OZ
z{B3rBLHq7!Byiecz;I*hBBkqDOdz5e0wQ>c*^s1Qi+%HM#MTTKJ+9nMm;+U!bMVR+
zBG*PuhHxpYsaBj2=DK3eT-SPD<mk(-h?!#rB5^Ur1|pSx^>e?BZv9O$8?9MQEkro-
zSPj3tA3iJ7y2>_fYJwb9>LSqZ0+;b+_=T_)m2*-yaln)M1i*?r>yz*S3=b=4qJ0L-
zkbK*d4vt)3Wsh}VZm=2UIXrI1M#kT71;d)#P%vqtqN*h3xV8U0H<EeZ-(Ewgq+Vl+
zI&L4-Dk%B3%--lk8@?rGjyyK3l0GZLXXr>$_)3+|-)4lc8#*$wghLDoP0#~`tRQ2>
z2z*Cz#<{cYF$ide4B(0ITO9lOZqeq*!-zm$DJMm@P?ThVmNLuPAIZ1{DM%3;kpXRB
zmMAL~OzX4lGjt?VMrt`OB6Jg-ya3X&<-2CQy<P84B^{ojk5oYrLVcPwd!a|qjCcRC
zs>-xKf-{sdMM-u2E3(sXbd#mu2CfzK5ukN#$el0Ch%D@_so}nZk_c`@+Zc-~g$oNJ
zXI*O}JtjFHx(H1H0AiRAOCx(+#-~h#(i_aCENOh7ha4CEep(+DaE?o3W6u?r<mcnw
zt2`w-Xaw7vb6VH26axl&0YZA|^o-L#unSLRayCXGluv(;==4)r@_+w%e*4dvS4buC
zUrFNWLa}0XhE_b=WXs)1hiU3=#26bLZ4(PX=P49KZrsMmFRxe+M>Ckv91=6xCQVA5
zZZAI){!bvqaD>`M02Ih7b&tLfmPDj&_$h#D%5Wg>arUtp-?v}qML@-4DfNFGpK;7C
z_VY2E1G*=|2|@i8Gc(eLBDr-jgTmExLJj*KZ`frT2|FsO+b&l>DT}V~*^K)SLK_9L
z1J!MVf_LDYM!DI0VRZLZ)^B+<c)@-2Q)DkL1pIU|6UrFLPsedVgyE!UQ_R$*N@zv6
z)Nuo{>puz+M^H3BWA!o{_APv!Y`K81Qyu081SJ}%k)d4Dam#bLMJyD#qbFp@*nqem
z!Ko?ZOD&ts-MqhFn8x^`CbJ&Q&X7-=>10kxbWKpgQYM`b7wUe|5eQ#~V~9B5z~cu>
za=yFwnMmp5W_%bdin>&ZM9#JE*iBjQ&`*sOdNoOC-0g2g7CmPD7?TLBDl)j_xw@qp
z`<%^3WO3tE@S!Y|_;Vy8$r%1tY7DnrplK;^kecSmyQ~A274AFk)^>%J1S|ai7U5$^
zy@kouR5d06eZoWn3g#8@jI>%d5FEiQ39K_#h;>4?mi@Mi9&>>yN8BxJ{yCkw4%~Hd
z^zEJPCFv(LTMI+fk^g!pW9DevK6FR7G>jPn{hfA4##KjJMP)O{XU*^NTQT-OJ{Ik}
z*`AMKN|d=utUZ_hJNo@Po{Dk>WfWl`y<Pc%MrK8x9c;U#lb|kbm$<ybhjoSoN`S!Z
z#ja{ySV{nkMy=8qcl}q!sf+AM$Bn>p4mJY6#FWfch7(CzY5`}&B@eV)!7$)8+XSls
z`rQXJ5^HUOv58i<E4-|&Lbs^JEMW|8XTuN9$CTlRo!{{WBoVar24qSRE6HpTu=s7U
zMT{kvAVQyxe3Tw}p$8r5T#a<dt-l_IIL8mp4NNr^0qPsFQ{+z1-WuJw0NaD<SVDi1
zgLOdU(;cm-tkbE=I@)@w;zwnrP#dcOgx&AqNYI9He>3Y8F(X^eI&5^5IWlEQF&-3o
zihGLeBFG%Opqs^nxSt~btAlAmF2)|TV$2)GK)Z?4o#`*alG46~F_dCPLyM>L@ww5K
zt85O2CXcO_m8SHk$aDW^I~9?J<4D_)CE701*ry#VUDS}WbTRYW9twHwQl7HWTtbN7
z=Pc2U?(sKR>IBSS6w@K=PT4QxoHiP6%8^7_VF}*<QupMykt0iNOar}<HO<)RUhAIw
zES$Noy+U|VyS0qHM761H%K&b3=O)+0mOD4hh>fkY+iG=^*oAycA${sJxtudwCKnY=
zt{2+JhsbF5a-`)uMvuq3m+3k89iX}oMi%~T&nMuzo`Gg0iC%n9WG8Gn{F=Z88ZEvA
z;yl&l!*7o~x~pwZa@3)BrA%@d`&sbEMCz8=YaPCwzvbH<FSzK1sS7T3QWF!%j>ab}
zXD#D#-dT}bj`^Duz*@dlT^oU#4H}gkUECMl%0nY_FENFrQo!*lu0bhvMfoRg_(#Tf
ze{NfyF2(I?+!o4ctc3;bM-c7kWLMx;T-3p?fQK9ZCwo^00PO2|kuL&0e{d2|yDSmf
zZ-uT$|A<6s=bOJchf_Cy&M~v~X|o?Z#eacYCR<LI1=ipLSNV4bh9qOuOfWqd+&Bo`
zq<sHkuG;Ny%ThQofoGCSq)bB?)N;RO@#1y{gbfdDaPhhBkjP(4Of%YY=CW#1XD)S>
zA&PZ(c0Duv2#N%!IvRajt>`DvVq`yA*gLu+o>JqssM1oFx6aK(hM%-JTCmt93M8I?
znr!1gkqasa5RMuI9Al^QLig8~;g`k+<(=NlZ+}zgVf*e02;@0)I&2}fLMJ_3uI-c_
zE@9GGHQUZMmI^x3UJIhXU&*4!5r>t_PD7k7s_oZX{i2WUutH*S`ipfGh%cEG501V!
z#|qGT?94!;)A3d}AS!zz?VDVqqz3woduiv4^1$#3x=bMm%oz?dBz9lFiVF=rE|aE&
zHH#5oQ1jf{?8w9utwaJuwdg$Ltazt)<i99xe4vaNJQ1O3=R%#jG}23}O3L(>Sy1oV
zXQ5NK<u_^XwixENs43tEQfi8>C7g(KE~$G7-<IDhbvsdup+gSvGZd*a#TAj~Zm^bZ
z)qr_pt9Jm?5EeA5q|Mq2uJQNCEkD>`ZG8hZaqAmcrjYp!O5nt?p6eFPkI3TA*AeCN
zCzzr@8XEAi&pjNz?~v433WQ-}S<32n-Xr0Q2JP3KE{`B59hWLBxgr5su)_O5;oG>3
zVM){#JwG3f<Excv6%D!F(eQ}GHvl4MKK8s3>F<fppx8|!Rm%))EiAI|b!qdj=C@$s
z)UgKNfQ5MGFx$cfc+f3Y)*c5C01mOX<hn!dPdnlg3YAs_z@a>=28+4-VsEG-TA`%J
zb7kC5*dcS=!mGV0r94M45p&?TM+zv)ZQ#JPpI^7C2E&<)iYikG20vnFrp@LR`Im__
zG+ZX2F$?P_p28iluXm=<ZUX)#ePR+YsTtC4h<9Hj&xKKIr_)hH!g0gXZxnWo-;*m3
z>6BLlP~xgW?}%UdI!ugsAP5qYC65ckd!OzzXBp2Wxkw!0m+?RD0f3JFoACNyL_L6L
zlH_hok*(3CHbsSqG5yE5cYx5b3OHwtvtNi9D{)s3^DaM~7d6<h<`A|3Tb?kQ6}P6<
zEa6)e%uWI|Y=)skurjdN++6NT3u}s087B&50bri3pX08p@J<n^n!b{nG>F>)rzTB!
z(1`RuQ?NV5dl}>mY4>hUdXpm7MG{7qLi>(&c%M)AS)vXzbDRQ7HUz|j?tZz%d$`DE
zba0ZKHlm7QGa>Fzzrx!wAeto!AhAtkq$B~V8-KAkOh~GHcUap@T}8OAaM0a#L67CF
z12t;QmLe=zu9%we^TfUV1Vv>P8;_ufsaR4BjY7eSZ%C^+&xU487!T_&&z<)`+VaKr
ze6R&|8t)*1i7Ullsmca7&a=*?<^@q-;x;W!E7CaQfo2@lf=(l)5$2MLfl$1rAotEI
z^t#qDR$vbSztcn7jd>O;%K|^W;u9-@%^Yhkzh|l%*QEUt@KAuNZJ34WjKF@5w!+cg
z*L&KpIb&Nv(qqxoD+Fky5Ac?Bv*`d$H9Lqbf)<5Hnd<aGVxz$(g3k^?7RV|NEV9Uq
z^j;N2R=HsOulG)Fq)#*+@5B6hI8Rd0Mx#a;xR=+ho}UV^k#VW#X=copLM*7709fm&
z@6#SS+P)M7AWaslhkUH~M2cL`Dc%)T9ZCbVZV*)bKu>S~P4?{xi~>sl$R`Uu-`!v5
zofd$5@xnpw5$p}p4CJ`;F7?*`*Xm=(`ojqg*S1CF?33#~9B^1v)KmrGk+~&EO0fP$
zzASN$<bdE}2FfUA%0jm)->YipYQQbbK6NgX<#pHYFP43wx*Z`YrT?gV(k{K&)<#E8
zN>rc+mZt3yr1|Plki#&M)9h`nrjC*%hriAlo__z9ttFVJSR~`4(l6J9K?V;zn#r#M
zyU1Y+#%EdDm_<}mk_!3dq=%OGQm<Z<0WeKrwxYR}vm1@~p!D$Td3W%6yj?6u@|Nba
z)Bn4R-+gJXZ64>k&-e6Sy}Q>M27_!)80S#2UW`VsUY)%LJ%J3!h7yTy$XK#5TR&2k
zsQ}&caU>dh-JVSYfMVE@1ESF$@AIM<<wzBk00y|(i{85`TL}lq1AxqgwXjgM_*6CY
z>)7R_KA>nQ(#*L&8)NH92FTwe#AE#s?%M*G=9CSw*Z*ND3#N%9A8Ak^+!(F<Vz+qu
zMj#|QLRdQig+KXevN>O%W!*9M=qdngI^D5i0*tkk6P#H9#PSzg$wW#3z2z%Kgsj;Q
z?-c8LKF|~0dO#hrxdY_M(d+!ZmRQq9w~;kLv5>%6O2EEt-XZ?!3D!FDr_w`8gvjHo
zi}#8@eMfF1alzAY7%b3TztjMJ$oHcM#V&k@78JO#IMtN$ur!-%W4^oQu-JAQ6FGV4
zE2p?@UgQhUmS^3)b$%?<<*LV(HKahtx|q#zQRtr8A(r!^wGXH{oz**~){b1aTQWW~
z%~~iFj*V#!85V({;*9X)c}uK~Waa=Jh=xZat<$Bhsxr32#|*F0;2Jm(JT84>f_6U7
zzxQy<TQC~CHy2IA?l2rHp72Xsc!#4+$r0F=`cSTGdf7j%jOXOcXd(46lA}0BXh@c8
z)hhqm^*}vw*;?KN7A*KfFoP`M9|~hHyiC6eIxi7McWk}J2OUJU@XMXM#%?=_nJeII
zMs1)M%Itxn+B80P42dWZqQGfcRRT2&_D2-sj<Ie^@Bs`5Hqv4;br>)DtylS<-v^Xc
z=qk8gY;DMnKC4UYmqoT}Agi=bt8WZO!8?BVUld?Y0`Uh0aUlgt<5*Z4Yq{5E8D$O3
zBOh1hOH6^7>;}a)ZJ<n~!I-8{et^Cj-%I5K{#^hzshIg%fQgm443Ls&W?#qJa&mP6
z#}QRuFY_}XeE!_KM@IOb{nY5OwJ6;JfopV$Z~4i8<4kL{5?KHyM5NGDNcD4F!<T;J
zsZ5GA6mXJES9`|JU!L+4{b+-BRzoB8k##y4=RRfr;s%mt<OG;n@F%>g8yLlO`Qo+y
zBhOlh$FxM7UzzYH2_E*>2N|D!V&un@5;gvmM!y^~54Y)~j7vW5uL~8fz$B`Pkoice
zJa_x^QQcktR+8Ud!v5e^J3}jv*~gxE>=7B;E$*DtsK{O4Bl^YQKGkUS7-_HwbMu$*
z9dvXw+G<AFNhr`5QBihS1cQ<pr(V9VdIpRad6Er`Q419nioP)&Bp~_j*_`!=3B5NP
zg^{iuep5#HihkXBi2mD9qfA6(g+x4`(cOy_=e6UAEdh!vzSh4elgS_ehD~2wqCulU
z?=12k_-vqNwX^qv;SanQs=gy>M4@ZX41g4EtDDQdWg&0{I5+N1Pet);%?u)0yU#so
zA4%JW+D@?xFnQxW#^*+e+#zBqVZY*+5Q7-?0AtAXJk>*RHWtllR$xb}S#%?aPEs-6
zp!acU{WooD9n}ka8mJj|0r=zIv~$HvsWhD}#1)QH$dtu!ZVg0)R0>sgOAx2VgFK$C
z(n#nu!Fi_7Go*!X)9&7)5*piiFbdqSY2LD;JPE3@W<&_7S#4k;nLX2=HxkThkZ`b7
z=Miq^?^pJ(rlkt?Byg3TjNJzb>zdw(euNE<qOFfnuy%PndM4MZPLEOhw>}=6s7Bkx
zRx$qd=x?Rl{1P+u)?b3&L!kS>-sadx(ZmjUE!qVGU#HrEU2J`4Yg_0>>T&1gk6$TR
z{<8LBZZy+<jv$>Yj>`C9G1tpZyM;;J`g070xR&Hc5GBQPM`S#3^)|mRrfFM$FCz>A
zAn4?({BJ*&!9Mu0Q1{bF=n0^lb4a&i(z2b|6`4|M5)YS%(g@*;af9CScY4Z1p{0j1
zkAO)-accbVfPeh}-pY6691d{s2ynOfSwC&J)H`SiA~+5tD3ZuceaQb3=|zVQ#R!Tn
zz&2x$$c83lKSEK6fAD8)Zv3$T>p3Pa{lHI@*vSvJv<-B+>xwh_-wb1p6eBXN(dC_@
zu{*!(pMxGYjV&km_gRm`XU7NX33N0Vdff~0%-Syj6-(<*;b-><`PZ&i6Tr_(y&Cv<
z^v}mRw;3Qq?tVSozjHTU!S!ws>EoaG*WPZZ;Au5VYU$i9FU3y&i8pZJB6-La@wC4*
zo4;XuG>9_Ep!NbbjnX45d$nfgquZm;USf}EJqTgIXV*l3XaWpeB3OKYnNFJ>8#_k%
zq-ecxz1eg8nk#|v>QKUk#FOpk#D1Pl+jRhQc%U9XJ>4JmAPOBc%i>Al{%}g{zdPqj
zm(h92S)nryb9b)$Z9?p-&CCNQdy<0@!h)a>pJ<_bc2?}&Jy1QcsF0(IV-xGJUMtZ;
zNxn^LFJ41wYECQwgUD4PCmT(t!0qsjfB&m?(4$bw;~}+5Gt8d+<<MBpT4vbz&k*4P
zW)YG^AxFvd@BMy{Q>cIjNeL;6m_iHPV|&Mvs!>_nbwr}5<tkN`IHk_~+`ogh$+crz
z+bl&5l@N)M!+-9obNs2NptcZo!cxND#%NV`kAKQgu*1*<W|Oc?%_nh~G%?m?|D~~m
zKMPKFIXc~q2gkn{k7h=G^3-xH&C^e5;)9v7b%)tc30iI<`Iury@~PwV-tp@T0&SR#
zV0_fHVE|Qb&d%`#J|zm!BNu|r1i7Y5)Wt`0V%L63b<7b<f3|iDBdt%t2)IY=ukTQU
zu<1#?&L&J3$dN{rt-9b%zwhA`5<&nL+qv)>|Cc1=q03RNL9NmKluwJ--+aQq;2eHS
z867vhw#53wc=Wi`|E3;=u^>=)2;N}cG^dEE0(a|o{u8e-144?SPAH255?t`3%?qL<
zHk14Syh3AZjhc-rOv^CmZXdhkIcwR7Hc|z-(y#p7BTY~!D;sx#RL~5gJM2?G`=9(&
z3##5`g(I5DFTo73^i_Y|+mxyIrpcCSxzOU*-|!EcWcBO%fQ+$)0d`Bpxo-T&{?uj$
zLg}9Hw2P;N6Fny{n{1|quJ&>N=+8~3l?;@EZ+X$Q3bSHIe`GT;u?<pom_<zI)<g+(
zxTZ9Az~@$6#sF$57Hh#tepX-RZ~AGV($Y?>X|16MYn_>JLVozocSr-PaR-Kti5BB+
zu`7v&>pr)~lah69wf;zpg^|-T$Bph8p78PCGt-*W%^klnblM*jl7>KEv23=yliVD7
zS4nOe#WqfXE!k`ZvvVsqg;xFgKMHa95J$Tq^dyD!VN@d~WPfl1UOkeyqq(~GmWKW@
zmVCC1V;$14S{eR$eApAAV-L2+<X6Uk-1C{xyAl4z%_IsLFu;sX6MCmUe#nsUd&+~0
zMHp+TOv^kxV??-454ZU!LkXYlJ)r|fb^NG1{OQo$2k@jA?>?EF8ChMK7lp$;U!zyt
zfUL`~g(F^>ZBfzj6?ff`@Z)*BCKoKjOPm@rmE#)LgtB+E))JDZPJyQ7*K0<FV^32Z
zPClV8OQnyx&5>~b)%}&kcT^2wgN`GVR`jR~|MHx535c>xeONAl!zmoVbr~Jbd-m^R
zU4)?sR=poXnMy1CznaYFl({P0QeYW=N6SB|qo1cQeG|Iy2VUdS(K)*@lJAjkLbFL@
zj22hM^5PYD+3w*Dxi(tm0H_;$tR5C=MIKn<rm1c3@QEMT*pEhiBvpzH)(Q8Ab{NiE
zT&|gEZF9pdyS;V||50i!!lOahtMUzKX{=or8u+8ta%f$fj~9UJPKl7`?y?6$$r03~
zPR^i3*mN*ADch{<oxjcuKh>T3{^t;ATDuMp=V}NzK0(hk31TGIyt{l;Xr0DRH?PEO
zA7`*Y5DHmX^=;@5);<!1uCnp~@Cba~=cQ0&Pud}WDC-&?xMuEZD#@M^p2r-qFj(wb
z7hL*^-FIt4$E5Rnq6`&|O;9D$ZZ@5g?eC4dLe~wm!ig-JZ3d0b*e5Dd<LvrR4bKZ(
zA3E<wqE~X<<KKts*};5qWK-j8<bibb)qTQgpLKX>JE5*$_^eNPh*DOgoB`a|K&7yS
zG#=j!4)6Pdbz%e*@xp<@z#^IBZhSxV++Nn!N(8;y%7D0O%R*x+|3{mE&*ZodHiVMO
zYOO0mbB$k#1Du^qw&GCu_SYG7nOvX`!{(Nt1&D_dt)%Gm@K1e6R86)5U|qHNC-ijT
z{^5lmQ5RraBKhf|R^08%TfL2NV($3)6B|QcD-Sm^29TK+SgG}5yL&@7krA8eW0|5g
zV{+iv+gFCqe%UG?hkC)<CWDVjCbz@(;Vv<Ht$4ZyQFHnnin8?*n#qe7RD@4?iWlwD
zEVzkAILFOv4xjb7eVr`bRV0!WLew4pKxpXxd>f+y5iQu!jdcdV6lK?p3ZEf4fx(hx
zGNTQh&rfYuzEkR&z7FMlZ{_X6u&s_k2s%6HhtM?bR^gg3RWZ;lfC(g1&Yu}h@5UHO
z(ttkDJ`?1{eepx+hhMC^aw4Ps3Q7W06=jEf7wV^U<A2XZPT_fLLiH*ntWEhg*wI?i
zZOAFs8)AP{_&Le2T#VnfHLX4&OEUnRx~pFb<uQyb=^<!#0`+T{YW#51fmGH(I@nt7
z-aUM=B(pu|*qP8smIZX+5ub%FDzjQf<7dQ9jv#|nB^K6GdM_i5`iLb)wNDNIvAgxX
z<JJ}>+v<&>=|S%H&XP}N@)N%a#ecRQFyYmh3W;=kCG-vZj!y|##51C;cHS@C@-{!)
zvfcE>Zhgb+*;(5P6K(WwLvIGMb{xx5>j&z6<m@kBg$jeO*-n_mLPg;zAvy+w{llTR
z$N#PUn!SbJh93W4l3Q)~{JYR_YGmP8C>nq-xfgT7O<l+?-El8yOI6<&nlhg3@GOp`
zk`s%s!KCoVUxfCde#RdomSi?$plHfn!mstRaR!Q}F1TSM!$0g~1A~o+8R9IEi`RWW
zAp8)6^FQ{tB>D2`;T;FEzilTY{T0k&dv@>NL-Adxj+~spDyS__=bIb2J~U2xL7?ks
z3vy<F{N~^hdSiBaxEQ@ASS;;F3_~8-HT;8)n2x>HQ4w1f8aCD>Kp?<54*o8|5mlT@
zA|>Oqi#`jT-h~Eit5#?X*Dnp-G}_9>B{9PKT%y=~?!bFOPYt%NY(4k1&3D-~{8h32
z92-a*J4dkzLJ#M-o{xl1&G~zg-dgr(s9S%!vW=wU1fj5QV`%N~9ao}GgX43;>puxr
zV$#m<;#`77T+2tH_jE{X(-RYAuig_nXCxo_yHM6w1|Ja~)t5;Vj+~)kQAm#DxaMV{
zR}Z4q?fZadtik@_{k0FaZ7=s0(j9FG-4PrL!9gYXpqth&eB)YMwIgwLIoIv}(26se
zB%wm!@<bww14buKj=OYfc>J#R$!#?ecjs>5@87p-wn}{s$Ef>4X%lRv2TO+))ZC_J
z#AYi1yGK&RuS0ifWKbY<Bmt2`U1hmYbi}Oi0ejfQOay;qC!c^_L+%Ov%y?}(mfYBL
z+;2-mOIQ`GJ=nKfk+7szmN?$DF?7{^)~!xo(LySl6`sadBs)w`Fs!=<Go_kuQ8-fT
zRZC{sjBuKyZD(CXgZyMw_)F;`SO*lQ$({kg0%*^<a~=u3zP~kX>kw&;J+M5~8VCc<
zYRu^jw_@6I-08oCj+8+8o0`ZN?DuUbN2e^OR=Zd;4L|m6=%o#RTW7@JP+$JiP@5FF
z&Q0ssHU^4}GYmBTR|fO<-r>Ezu#dEBud3#VZ$o(-`GgLll)kOedTUg;hI7=kHW)VQ
zrHA1PD|KC82pzDGt(r-2vYLh@{bjeTaHiA>L2K%2pt9z}Ogvv8c&I#l*2+{FAacKg
zt;E4<JL!g@;jdICctxVw2YyoDWXN^b<B0GvXi#{~$<NRXN)z)42p?K>$NJEFfv&k_
zw8#pb<1YR>)Dnzvpx13#02Wu`x^51A`>i!&ViG5zCX?W0?mTwlzBw{{7Hi;dd(C`D
z%fAnOn))KkMll(|t7L`XfLXLLw3oj7_Z_bRo^*8hBkgz`d$KQyl}%bDC5QD1w<269
z!3@f{uwa-h_xt|g{{%|ZR+*=Y-uY+vq(W94TT3yKT8oT|&<zxRF*V$j5$qHRL|GA>
zJMo^-xua~m2HxA?(qi(a?>C__T3O6jr%RIB)jBGCmM%%?cEKCioDePFhOXLVt!-C~
z`RU<(!nx9cx7qI8!`z#*!W(s!*j9L%koGo({6N^YtAk{%MU5ou6|WX|54V0t13Df#
z%%S`5y`g`NVcU1OO0Xcn1cuh}B_5ALZR4~t88PqG&@>jR_S@DQiEd5qyKh6saXI>1
z%j^=k$A-`>O*P<N4wWh&|0+^P3)u}mFr0M;=YNM?Y9!Ce??W%?h69nf^cuxpyMH%_
zr#;Uz8B9&-k{_A$?Qe&!?%q!vB$cv@1cua7Qkt6$F1*g)X@3kO5XACP*;mamwB%*~
z$~-gAOp~ok5D@rNxM$?LfiDD1EF}aE$Pbo}Sq}8j)Cc`b3o#0rRbK@K*azi^%U$Fj
z3h@a4Lj6wEWaD<lnwN{yO$aGmxS3y4iWj*Cvz!^vaLAz^mbml2iJdqAQzen-2?eF&
zs*?qZHq;&*J8>x=W1#6h1+v*GS3SnT=jzQkSXPBbS>umJBFOEEUCpie+W+eX3W0-Q
z1EO1)BIPFo_3*Eeu^--~h_rld$yqW1A=t&0Qz$<YRBP6L0!yv&=4Ym-kN@niT5Vr5
zvKB71GB*L0$^OEB@JX{qmEo1*q+$(Z!>*eri(JlF>+hsQEgfdhkolgsFgBePj?c@$
zU5xWxGljhni??}9=_pJ({r6>}SlgIG6V^M(Kd>q>D6ExIH|IycH^xsbRji5i34BI!
zk}9eK^Op>YygVG%lG-+4mPE?&RqVNG-}!fAXyvuhnADodv%z~fj)_EZd%f@ff>R!Q
z9`_QVu(7n{DvfHfCQg<(toGB)nlIiM5kNtCb9yhHr|gp$h_KL=;ORWA-oGVj7TEIn
zjn(qJm*7F=BSX^S*(YNOh02B7p1j(aNwp9~&wkjv*o?mzFWJg5(5q|<xzL*b`oF!1
z<yi#iu%57GWDMj}=WX)W9~?AWmPKI;ZhnJGSeqD}&>1w|1uo|<f7p)vjPXtqScyMX
z-DdipT<Jg2hatgr$cAJVWFb7D#wL`|BRsD;ta>pF-2Z`1Ck>s%?y*h9aDVZnfAwhl
zHP*%jn2yK4<zFz)#&{A2O`Mp3X808A;p<QRiTJzOr_+E)lkJuc!n;5N+5JB*@t<ok
z-?ogJDHnQ)ocj2wx_PmaE@7bM_$Hl+02A6%Gzt^(=!N$AO7lqL7I#ms@fXjwXA_gG
zZVbTL1Yd%A{n)=y7GqE>Y)(kTO7iklORl@+N`GRljcz$DW3PyENzTb`Kl`<V_;5Sb
zP%XApGZ4!Q#Fe<%?fIzx3|=5M>fo9M*ry5J=2aXEp{M=VHey%Cq*=oXry+n{R4X2x
zh5ni6u{^ZdF-ObYBU3B4P0F#+{`isq<rCD2wu+S#Z-Go<K}&yq%YWtnC=zs|xdz<>
z>n(aQ;RwI_k1eC6a=g?q@NzyF-UHY7Ut?oO{!Yg=$Fi|gMkXBL7z!og`W$8ZT4mN2
zlt<P9S}d)B&8pWo{>rC$8!$q(L_#qRd~8N}?v6YC&=clxA6p%4v|M@A<ZOR-y*bX<
zOyzWdKwj%0`&0XabkF~c9V4r{{2E+DSO>Y*R{C-Om;Pk7C`HDMMH$u@5(k$SiRQ9;
zz5m%W)_of}#7fGGLf<xg?>`lIQAoSgVJlG8STthL*0$Ez#e09{-wt+z0)#Dsz^vW!
zO5l*7{mkWdU-?%fUl8QDfY`v2;l!~Oxt6_Rw|~s5fpozTF2P!w4c-QTW3Bayxxtg2
zfL(_jPk-?pJn*gG`m9wqiIsq~t7n8MM^b_-0PpdGe<Yih1~FWc{sC%%4zp(tgjj|;
z4u!pw(J#gSK>Rk4&f}v?{v?aE94D<QuSEc@C=!F1fm5`=SbGRMzDBAabq)@%PyK&C
z#!^vesF2gxebi3cG0%_Pa3Sq1bz^H<SdfJp4kl&9d;UuBD73H4gfT;@rHWTz(AWOI
z1n<dr0*gq8H109}hI{Pp?v%*RSPT5fK4c33ug~?n#InXSkM^3OI7HW`c*$Ou_^+0;
zs07n7*Hy6^CkNuyH~QyY9w2+<BolDwnp0?$d{pKEK~ZLt@WJ2y&tK8TFNGUyCc;&c
z6!a|B;J=1F>~#(omVqs>20T)r%j6?Lt->dTh^1!nhq2<zdEU^d3e<d3Vo?XH;Qed;
zmIsj+0QQkE==EFo6RuqCC(fv0;5sBc?Q~i9p|8W5$C63aCTg=)r+$I{$6aWR|Jz90
z^Z<weWwEl%e+B5=4SCe}nHRn{)|k#vjMWgbWxVKLIn4&SoIz$S3e}|aT>sc7Hf=Js
z<x1B;fE1fgjZxInc!RMa*ACb`c2^^y1R5#LwB$7Z!3yLO0$Qwh6anqd#^74y(jN5P
zCL7X;n$2Lq2_{oBNMG@|p-1Q)D{78SwP^u3GIeb1dMGWy1)_l}E;fOm=b|_G+jpT)
zDDEJMuvUSNz#k5eNRdlk;}^{|&c2Bn`5Kv`n8Ls>Sm^d#>9-zW%e1UTpaN+>%D_Wo
z*beyA%Gqqlp0TZn9`+0aLJ?u8ho{FXQGMv3gdKK4u3h-ISYE~Mwq^eKub5Ne*KJ>O
z4+M6_1!Voz{-?mM*z@#V?JPA#g|Tg{j!k~qMEXPmo*Oy+`dsd>7^gvT!?})_cl+Ky
zqIdsckEXRH14go+ACJ1P?NP<wo=i2r`X}#3mp>i6MBg#lV8=T7!)Ui>?V0(~gAY#r
zEqe3k_VBRT=sV73Ilp+7JpdwU%JR=U`RB-s4@9!PO>gfRf4LDdFEko%TbR#P|A9IF
zi_e205cwbA7U|g^+!kH%u(|hn#O%2hzx#tG%K>V9VO%$PuTOpSx?+1zZJ)y^Y`#4j
zS;1=rC7A_o^Q!3Xi~0)pF(oxl7wsCoumunRIpz`#q#mW}UU$V-{A|^T(mZ(9`?2V(
z8>}L<ivZlYVejbq`-21s_~l5Fqb6K*PHfO2_U^<s7K}A(;v3PDTNwx;i7)LIJN3`L
zf)gBuoYxzxclY;b?5ED!tzw=Gd9FUs|NRLYyP>Ih8R`4!PtgEu)@`kAICK9z!0*az
zQd32$D|>$!-Qfa*CJ+<U6q`HM#w)n107BSvkJzTm<R|4|PNvA*0!BZfCV+C=m!FEo
zK0eOAJen^j_|WEV{$uZ2^G7kNG%jzGzj}9T@g&9vV~tzZ#sA_#eo{&werE(f`NBVX
zgN;JD+yZpexiN1=H~z$LAg=)Tij{R{bl|37loJg?R-E{CG<=VJc}m-S{vPmAH2YEe
zdmQV@zP#?oXmv0w<2bIVbmr&Lci*N@U_ov8%f8KsW-^<QGPwQsjrV%9xB3PHAM+^I
zxsQJG7x%GY!M<<(9sGe`RAx^OOAz!Jcro^S&M&IAhZTvMxxBaYAAV^q53s?ertPMs
zexy54kvzWi%LTF9K*yrl4NV05>hwhXnm-0~H$R7XQ-t$ZOD??1J5{;v5eYMsm;xpw
zle1J(?C!YQ%L$U8<0!z73Hm?ReR+j<NESbrO`$Hu#-Fbgh0iWan;4*}M>jOiONET!
z_j3d8O6xA}*ex(<VFzx!&^t&lXsSt&#iEh;NGY=~E>HWXD$zxQa|bIPd1);3`ubD6
zw}Qr4cFaz>D@xqMi@cdZC&Zj>JfFD$;to68s}Ek9Kt7E5g8mcEru*j7g<dE~=2o77
z?3%Ri%E0jT1>Q43y0&rxCt7?(odlondXjf@hK-Vd@FZa5T%?4fqI{-zRFIK=Bzz1O
zJ|UjOV=nhj40vL}@q^W(6NN6+;@zZ7?Na>+EC^D}1Ych0{T`GUX5LSYIGj7~i%Y!G
z8mcYhCq1R=MsI4+o}nZyA{fO$dNxvbp6LA<GzcC_m>5Lwp&>87$ZHMiG45}hp;Ws2
zr%v(?35GBDI_x$YCtg~&(973!YeE7V$08W0+@MRm8-mBUL>me8(pcoUBaiY*!uD$<
z7rVipv%B9s-n%Y%PAmxsbE3jj`9BwW->0~A$;h<z=TD#Ltqqz(GVRo3bjXQ^duxM^
z$=PMeE{HrSb~i8bN`iot(ZpTBwAZR02a~*CKWmO9krhWc1)!0ZFY^AO<^wUMIWx6w
z-=3X*+`sa=a}aQOfFW4fBuFz=<W3HG1@m&cBP5hIs=0C2EM>f*vtL}$<JOjeDgYm0
z)cty%=UOl9@tGoC#EDkZJX=f1*xgT9++#!&&tWtq+Q{PfF;3^X$D`iF6b*kPB7~!y
zm3#a?BxmERs98{B1hWgq6Sz*yJG`A~p6Gq5rWcDY>H$tizYbWH$-_)iO)?P`x-Zkb
z6+w!k2{lB_!Vq1>YNsgQ4G4RWK43jld|A-=eJ<=VAPCnPyI+eE{1G>siYuXAMXoO7
z9i?`0g>Jyks-ES!l0`lG1U<84iZjUl;14Gk016!Imw2w90$%wb)50_;_333Q+0^-S
zt(Rp1)v?9Rb|5(>b%4#Yjma1Lc%k6ix(1`W*s$)jxW|nm&1bk9+h9Mpj^I<epht;j
z$3pI)8#PJ7gn~!)ytzkP7YJcXaNn~&Jb!VI-s0m2cLb3F#4kx9UI5mL3S>lAZ=AYN
z;8MAKxpZP5IDbg`sqeC8l!_d$vLar_!P^Z}NrB+F8;7J%47kxNSp<!9w<IPuqH0T;
zjh!=~&*wgYsEqaV){L_Xfx|bz=!5dCoBZ8F(w|;s&oL;HvZOg!5QJ=(xB-WxKN>Kc
zTT=J{#|z0jL`y^3dCZZq;KLS(R2ybS_uk<23*NNq#x`@uvw$c$Rms$xN|#)on5$gI
zf>|rk>-ode^Ix+UpgE{dtp{VP%Ilwg<i}Q0)-oHcJTE9K+4s5Wr?)4PMUdi*P=HXe
zat=NmP}oD$j=vfUi2MT!kMe#}Xq_xLcw3OW>=4onDdsuWC+$FwGGU+zXH!B(rLa7I
zruXh5dpwfU44PkjjmlDd^$72dAbH2g7Fo;Hxx73wp`Cw>_sP}v!f53RK>1|_u?<N3
zmG2b>5lBOlEiDbqpb{Y#x_evO)7ufvgz1xq9IeNCdj~xjLhKWmh=yd4ML{=0Qg96S
zUYciL38MB;y^Bg*@hER#5U`|7IY9<^qGfa3j0xU?)9mMpWgJGXCgOE9DD3nfrhD;A
ztPH#f{j-i2xhJN2V}q<FN_P$=Gp<*h-mAxZ|DJEZ9;}2dRUGfcvH_+p@OG^Yo^#!s
z4WSq-Tj5&B->nIEr?KJ{{04UNkAu9G-R*@j+|v^?={8$@_C;RH{q__o7(myJ-skrU
zFF!~NIhahMEPtj?l@oTE^qT%{Z$MzgHrtvmCZ8L{PV>F@ZnIL2EwjOK!S^{h4=?dX
z2V*s<5oYMr&b1NApYDZ%5zztVivmEC%TBzf%9|OK3<+|1Vu*3)S9<sD$2Syr$?!D;
zS?9h}#Gw53W!mS@qh=Jl2?TFSDpFB?5emq`KcyY{8YQeYq&>cxX2KgZ@57GuVnNOb
z<x{qxRN9NRc2E~@`V8yI@Wy#S%0Y{$pg@~>QLq$-@D$qsnT9McCL7%~c-sZ5hz!gP
zmh}K#qR<r{=UGB{W!RZ(8BbvXa{rv*)dX`0V+$4+(HXk`JJO5vx8CVARDuM6rUh>A
z7t@|S)jBY&O5uZ45(o>7wea1Qd&6|f3Fkbww#5%JSm;umeVljyT~;!JPP1`rN2wnh
z`*^<u+XK^$Znt0(SaY0Q(?)v-H`_ZClGVwE)>NpXa)7KG>s`}oMQHYQb^egXV_DXU
z_e;z1DuO1kfm&sIDMloHIMtgHq}Nas9nb)N-FXjAKr+lAm$pI&E#gE8%dUHvZ^)xD
zKTtR=dDy~K@-QM=Syn{%qUn}m(%=3X@9sd|fD%V?0bQWj^<C_B4W3R*)RBJAbQY%Q
zwTa$!d!ZwU^`@Cf4IIW0Ff2>^@JiE9N3_+{RRubTq5yke?&SxXBi<y&NM9^)+g<6s
z7pPoA6Z7qh`t4s=dM5<GoyfCP<OTFmxvtk0-r9kDle<qFVgfZu{(!vey-k6xr;Nj}
z{3hp8z@WWyx!2m?^qVQL(~?J=xTbvf&e`7YeFNnt2%J>xxXOryzV!_6g+L)@b3qo&
z<3djLw{G&DIM6C0a$Tf`rvG=l+B+bnhM@_x1jiTcEO2wL_dd+E-*X8FW}UGF^s(4m
z8H{BmIrd0vV*%aQ``#bN*sr09sU}=lm*2y#@VW$*3sY88Z^KU5@v?(FOifZai9Scb
zF?Uks-d^Y}R;RF3gXeB&0Z^oTO^i>D`|~>Qo0M)|mz);}n)Woa+*vTGUg_;0OamH-
zbYk8^LgioKU9hj!NrVTfv&2f`dQI{Qy4k}KD6m0{R}L94{<_K=o|?)aA5c*tD(OY1
zqz`?*znV3=5onn@kxyXvqm|wZQ>>DSSiq_|X!sxp$~E5Q8Xg#<8GRg_L_3?3R<)-$
zU+Dzx+G9Cq?Dy9#@tzBU>dR)#V1ru&hfeZZf(9b$q`(9VmaOv?-qIbZ-4ec5H7lnP
zpT)B?@=kAR4{HtC)lklCo#eU?&+*0vSB`PXM01NG#qFyvUggaSzH0Y}8LGeY2#jbX
zV$NivZ*k-l7rBB<+ZQ8Y;jp=-mPHO5XvL-8M5)`vQ`;HT*pOY9%qFPDGTU&*ldLzD
zSPUcpStTSYnAo&zFMXy7k&3#;`G{4)JhFRwS8g-`H%%A^Lm0Wk5AybX+8!#aujwJs
zY_f(%dp(2WshopJssN5FrDjfPA!SCCkdj*kO!HOU)3=j8gEg1r9;Q2>Y)qf&C8eJz
zUvsmpk1%2bCf_CfBB_58rt_JKs+K^&tLek?yz_$Ncnaa!$kITZa$Db;ta%dWags|W
ztDIAeyi>0n<Lz*bRS396a$fw3cOKvs9%Bzp!_x7pVHg<lQt{sqLe8uWlJY9?%Q@q{
ziGd`opb}1cJPS&v?q5zNxJGmo6DWh_vd}$saQYQb+2hK_hFUF1XyJ-+xX(?W{bcaX
z|2Yc43GB?Fg=jbZ2YbiOwOR%z+L|E0DNqBO&P;#%v7l}g5{3QoO*Dze#-*44*Pas;
z-`qH#FVgB=n$mxGo~O7AO*G?NhnXYI8>q-J4Ei$@GiyK*+M*Vbse7iZJx|ftc{=>I
z(Rhd9(w`v!3^xb2eoFe9Af|q_R=R#}hs(z;UU@LBgAs5*HccfYz|Sok?`@cqYGk5r
zmW%<xh`l%{{p(=FhH%Z~Y_(L9mXxN)tn`)QnGjTVhH{vZ5f(QGV)3Mh(yHdLI*Z*1
zh$&31#$iLotw++1J(K6!_9WIavL(^T9B`KRZg4<I#j8owBj}**aQoDI?^M`Ewre^G
zkQfos(;^~soOhA;xvs$lPMo!5CTL_PN=nH2_sl+rDti#-Uu*?TeIZw1e`fmj!R2HK
zBpbB04Rj1z75$V|{qhUi^X`zL96dS}P!EG^foqtw&+Hv-aE#^xTYNDU)*rY}we%5@
zEF>&p6AZBh?t#<yd1bYIygg(vpq>zea(W{D$T#ejj*J~JfDBJRRU_Fk{$6f?t;wc1
zy|~Sb9FHjm(&9!Qnm*=1du0sX%LbczXe`|LE7IMwK~+E=w8GnOFJRK$rDyN6>Kz&f
ze!#M<qHZc0AKTZ4L(+eJ)80dQo10RUpe-(R%O<4XayunJZV1!Y1)v%a0tNs1Wbf`l
zIz|{k*&tkB*h;@=r_Bx0K#sxl1`wMU$M;D~zQAW8MG?y^m@Xa{xbFL=t$NcQ<0(ka
zx5ii&%pn{1p7FgE(9EPM5|-w%s$bg9s)wXTb+ek2Re_de7LFelc>^-DZyJU_7v4kL
z*;rii+}t<QHe?pvG(y+{C94vxM_V;<sAM2@du6A^4zfZ(JJ9#YM}zA7dQRHDS)Csv
z|J*KlX}j%Pq))V`u1%@`xPtIT-nVzx#f3MGP}FDrjNmlNFW?@w=<c)$WxQ5GbSZoj
ze1yIiy4g3TZGS}3O~Y~HG!Zi-=Ou9y?wXs^5~uMPEvyYS28d0mOsliz?)~9$)UIxj
z9yVYV5e@T6`=?cv^Lwo6vaq5@0wNGo{VrX+lRfK%EQHuu;ONrT^N{`1UdXmyOkpm9
zfDK5%aIvmW+b+WjY>%bvILOjvtJ4;Stbl;xdNvF+xP|Vd*V5)3Y)=Ka1*#>l3n$Qt
zZ>41g^>3L7uKEPTy_|Mnzo0!^sdgFe68GMKv?;xc1cj+ovhdax;>gT-DS>@J{Kv_J
z-{GVoR;;>B9#f47c3=+rp2tQn*k~qRu3U^tYCc#H1O+Yj21|e8uxe~>!MoL{#HYHe
z=zKVHp7-gcw%nocs!PsjLwP`J;fi14Zs?c3;v>qWl#&gt1_DbgQAO^yc#v&ck!#pX
z{E;FR6?4b!mHQm|7}^XuLfW8PX`lQY@)~^fK-y;k?~vIbp$`>T1}AL(gK43QZ7C0d
zyjzSWC>`v>J+JW|m%_@)OT$pDQ%5ZB)&qTS)v>foygt~okp$Ki4)@c8d#8jwRs`<l
zCGP)*d9!tiDR#uda)x8}At05se)ptZe<R=RY|iGG{&Z<tbRh-wjvF1DJUAVYX?d>t
z^nH$g-(DgbxqSygL|N$i-H`V3b5>$8P5GRJ?$B4#KAy=l?0!gd4*YQdBWV{wX=nqz
zf<eU2*MU?h*ms{~dOKduIN~n@br4)|Fb83G8k(N=s&!^?Tf_XCCLkXem%H7ZHu7G+
z1C+F7cJONpySZz05G)RKW~MB9C_$J_-RGX?725CxHpAczFkG;okM^z+VG(3moJ!=T
z*NkK8zAx@Qs07!b(B$h7RgAc?>&v~aCkH>r0B0sl<!v9D=`B}|&Rp{pNKvDa@1=XU
z>#KN&8|$RX@T?-;+o`}>GHi?LmggRR+WY=md&&`8%~S?<j_%{V%LBy<RSX4~Ds;8`
zC9U}->pQAgJsTMt9QKtGN9RvUrKKf7COP;33XrfBdLFlXjaMU`2>hoVfQ*aMVE35Z
z&N~C9Y-TIa(Do>Ik!ZTz!d_{My+t&AV{ILFR=$((9+~RRKPRXSJ79y2=9Y_hk=wDt
zn=7jZXK+Jfb+EZ)935GnzUq~{ZDPGkOFG1EcVJB5?X5B09iDSZ@Aw?YCKQh!&&(*l
z+*ltw(-Q!k*h;R9XB==bgXLb#${5?c-x?N%dFRlg=i+F4sWp1vN~mFA88sV}b2$e@
zFWZ5<Mk(K*g$%e+SH#ltv$yF5+ac8|oN%3~-iho_QN4GHac7C8-e3`qA_b24;{cfw
zFX-B;qI;zE7P&;(0;ujStpy%<T2^vQbb0UI#*5F!M)Q(SJBJl^et9$l`Z|t_!DO1j
zX-^RM`w`_3;X@VBcD1wO0swG@FB@MjKW6u|8m<Ts0WJSwM8*!+T68_;Vx{R}3yLay
zYqB09n%htt5Wzg|IV7W*Vdo2+1MT@~xRs|^J3Bu|?6k9aDpITiH+T-4FU4YtaRz=r
ze}s-RE|Y8o_u)?d_!Y({Cr*nw2{Oc>0}{EB@BBz)*K_w1)m%IObUX7jqP#=O2HnBi
zQ#R0NuEj<cDk>s+Q9CZ92RT(3jWIPO45oJ&SE>E+Gcy{WwhxcSVPog0Tw4qYw3$0b
zHjFg-kFxm?6@qsm-;fLv{sqw-Sh<lDK;~Nk!a(!}91x7a<==z{W-&v`kOZpGo-3^X
z$sfW-N(~z#^om?q0^WFg=lAc!L&Za?+Bgw-2eLd=srIxRgbFZ7Rb<Br;MMu=`aOJ6
z@q*mxNRp2cE+EP8{2Xzxl{_E25_Ggx*a(4j2m}K}m;m|Sk*BY=7H}rj%p~~57&6fe
zwldOkvKii|klFk8fXG;_L%E`BY89(4zG;X^HEN9~MwDrS`9j>ttI<#^dO`-35Mu1%
z?}yK;uy2XBTkl!k130kW3M<<Mm2SgrTF}mIN>RCpO>hJe{>NWlOXQQi?3IbOjA(&Y
z?Df}14*HV0CZr$XSdSq<05>iHMehEDf3(=?MK#k*_E?g7*#QIybsaTnktL92GnK)(
z2(k|bZ{q#oFGpBW8E(NQsOUB4Y(2O!cb*Y+v@>_+7S>GriWZd&5yZMc9v37=K^vQ(
z?5)gb9x&Hj80e$vy`kUWbItmF0>EUeKrqGRGjta&jQkr4c2-CwsSiXzoMPOE_m4}*
zAK^KyA9gm;Rd6~2mz0<K?q4$g`waV*@k~PORt3TX#<v_6){1oh$fNCJ<!uXC2LVex
z3~D7V=im%6-Y~WuRu--OpDPO?)Be08g)F-&MIkHM#%;iin~3^7o{g@#*eX|)i?kMw
zVTBoYB-|xxp*;(L2uj;YGq+`Y)v`@xl3`dnOB!akUD60HCf!JoICwjiP3Z7}ktYjn
z+C=C{TIhh&Ug2JOF8N~EvUX`N3TGsmWn|h`n&mC@%O!;fg00UxwSd%C?JelsI53!u
z|5h?*O*US060dMDXy+>@O}_iqkDLk#I{(7Hh`+KuZHV;8t!YC#mq{+A%2>sewdeG}
zH?cLRM;QY#UwckjGYZ_1lOz8KvSv(1XE$nGq$N$<n$@Fh4k4N>NAxVfKb4UcN7~qR
zm?kj{Z=I$x=%AWdqx?F3pGaju1d57U1JE6i$JLV}58Yy2D+7(FjZq5joqSC}))Sfz
z(-R|~8V?ai=DG9hA_K1rb{gs1sY}~QM_IQ4kvD?^jt!Ie*hts{Zu@;B7u>X875Wki
zWm{b{X(u6iI;3a)&Hbx5u|{i6$a6%CW}MUW;#>OZr(A#Kw?UafKXjK3>UrOd{jCaS
zfZAKwt}bnS&pU5QJq4xa22Shw%?bARP;M?n0KZ(<^RiQT0P5U6LR-%4Isb`%RoKvm
z06(pRERcv;9eUmgJ(oOXUk=PqYzgO%o7(e?Tdl$=V4wLNAGz_Mp66U=&&t%kY-^=+
zKaT79;q@J2B{^<7#Y(ad#%&W~BcnrmG$yhph+4PEodP5cYz1G1R;R*#xMC{;K8H6_
z0WPRgK`;>91V)6Lufl;}h4vKXLZ?U$e6J(E4ek3&-w5h39NID#y2tXuD}U@C;hn!f
zQ7|?z&rAD-A6;iZ8LYiY-~Uk*e$!<O!U&2lnZhq>_xor0JB=CmnpTW8)zz+#OqmD;
z7RI$>#UO8XI}8?~rRhWN%B!OFc;*t^l%4DSbEtAow&vEky^rX*_%;TYgurgvxbV~4
z^}U^y#n}a91#|>Mz_*K*L{8Ymtxc3uiKJZ_jqvo$+XD9q?lhw`4J@))!fKXyyI+8M
zoa=_qC$~b4T(B%!cl%ym&Hkn~V=-?QMUoN=tv)pUg|~T%-K?g{?vUmVx$JW9xqjJ4
z*?_@`%Dv53yULXgbkHXmd#%P$FXJ3E(s=uX)4ThgwAqVtMKuOF2Wz|;83y802BmRl
zM2|V8w^f#?@yj*4Zt43OXMbvhXe_pBpZr+0sglb-&e-)!E5V;HcZ+X<;d<k{kNO7(
zB@H!E0u(IAJzp0IE#FVomn)nqAOzyq)7SKWjoUh;MQ240zo+kOvSFj*wUTy1DIDFZ
znUUqY5XDpMMz*H1FB57Ew3ox<#7q2(CxHxA;D?a$G7UiLgAgUn;H20I+Y?j5Y->`v
zH{}ae4C%O{Bo4YW=k}o-V%+I;_{)Po;O@u+-(`1timv_8(n!WP*&k0XgC-h<z^;IB
zyO820H}=PkyKjHu&TCj<!ws`IZE*C+U$W=&aipJ+kEM(KQ=b~}aoIRGyb1ZT&l#cg
zX`wy0bHW=V#thaQ<Q+!wnemCgI1C&WC^7;S$V~xBLy4Dj<5$O)e#_ybk%QVG(I_^f
zIZI==p45L0D~3sFHHLyi4~ibK!7K-O;<4m&?>6T&eyT#3Rq6c{@aKYuuL3Wq#8B?X
zL(|v25Ue&V2iR3D=KrXQ^!H>v#{Pkkp&kmAM!8maq13JF?ajQ#OdV4IlQ(KSz_DRI
zT%LB3aBMPLRDnss3PI9sw`r_*$y};Zv}a(v<Z@Hu^2)v5qI0uhNWha1Lf;%9U*~&y
zvRZUBgmyN5Pf0+vE8};OEaHV~r~P<_upZhgqYq90=UY5Qt}q5NeUk$u&%GP<hKqf-
z(-oh2T-3`OAfyZaZ;%Rs!=%XF*XGT<*cxcghL-x8*4e@kaEqQ<>y4Bro6$*{KQy@X
z+DD$u@Ve+DqE?WPUw$yzqP|@0t(GlH-U#z1!+}uXuKX^2(`;-1h{ihEGSTUD@4zQF
zAbtP9DFYQZ_7-q9?fyM_Uf|vwoPJ=?b9n{p$j^+Hir;id`sc4uq3%6MIN6JJl6Uk6
zihS2#DCkvNxmoePCoO?HT27&xk>{N(D=U)*<3r#@(vp9u$(wM64N8RqrYyA#2F2o|
z1JsD925JI(SuiA=+eOY>o_6W=R95T)Fx2px)&+8cU=}WM-S15+zSIf>o2i7CoI^Mf
z@K!#UwxY%gM_~47n1NvBEpGF}?@QZt5e2xr=PRkB^diot(LH;Fwg=FJ(~WTGhWW%z
zV5G)Yld^{Z|L5XwMl<t>)dzhc{k2v}&}1+JMJ~U>8!CrAmH~Q?VY_+$*5OATcQ=%!
zkGwf=F7k8~VzHsoa#3%{izUdg&Fqo%o5$Qksu4=r#F~hDbNjC3yaqYPR#i6eONwI`
zKTC#dY-Ei|U0GcJwAcYZS%zzPSgWxrA%7RW?f>7t2smh^a1)}|<SPaWoxaZ_{z19K
zEdbmH=8emT$28~42mMDU^0+-hDZ4|6l7%xAy2X$AUk|j1htb4HDO4g`hJqqwDk7%9
z<*oFe%CRL3;RlY~CZz?DpE&<euWrx4FgY8m8kPslNAM2rJlebAR9h95Gx<IHB<0}K
zZLZg3FZZ}S$-7a+YVj5D^$0aL^;y4njx}@yZe;qE63wJo-?@LzYq}WBCsua0f=D<$
zI5i%+C34~`eP5%d!EL~deKIIQSA+$^t+*(1%j<n#!@rG^XGc9r&k$~Z+#Rl;7ren>
z`V-rdydWUSvWp|fz1&wv(G~`1xBC5z?LI;GlM-f^QbzxdQ+lpjh5jYAMnGj&CvHkH
zX<Tt?&kavn$q1;_8|(Z-Tea8Sji>dz3RO-k2Mx7OEFveL+B2<PyTd11#kCGCa8q^9
z9X{@-tf_;!Ug@66g_YM{{UQ2C$$oP=j-0#eH@{4ahC8tq1k31=<^CB@4N$-!qK!a8
zaf}rr+jgHD`)qgOMezy&#IVSS5_Z>>Px)^hXkjKOHs}OFbP3CZ=#on+f@q7zdfj8#
zLkhUCV2oT>b*UeRHJ3(|u|%@xa(to<w<zq25FpuupBNbXP*il#xbj@VDYD2bg5aai
z{6lZG7!=eog`il_5J9#*Vix#;Izo&Feh|z$ie%$80*+kE>wb4dvMB}(QznhEpcYn2
zmlOT&rx9yHiERHwuap!kOcs~jo~Qa>Ut*yclQ2l>3@J4-Vb1(lkB)VHiDr<NNXR!<
zIGUQs%`D@`y?I7!%;uZaNaj4nb^uO;&VGsC;~|SQ;kgD<tCI05d&vJ`s_nM1)TNV<
zij+Qw*rJ7p@EJ%38Aa4_g&1N*<27)x1cVG@$sv#owBLeS1N!~l=no4iN8~cA^A#pC
z^|R>Yn+)j=2cnq{uHN8(*I+;5&EUPs{r$tfv{(ybHiKx70n4H%4(+e|Cm_kjxztp4
zeYCMkZRTu}0iRWLf`7}=_Jk+^3r=zm9OEA|-X0;ZgPLB;^7S75K$}o2@2iV0nGLcY
zTeaMM?({yfHwW3*Etmj8$s3}hGAv~~nj)3xN4-z=qc0NsK#q1a7;5=!*Vr(UwsX*^
zul8u&kmxVJTAK+EQAjA6Qf`ZWb29A#=~8nHOOZ`;(%ta~5=5k6BjTQFEh>E7UvyzV
z3$?(PqxW|DHF{=+JsF%xwczZD{wa_1$kJ&MNubfaZLetU5QQ|+l|(~ezTJFK^upck
z8M?Aq8(j3a48<?;D~)BfebNnz_IR<so*l+$rs87m-y!<&n?yIrt)!S9=YHzqpZg45
z3fNmM@qFV8QU89cZCL7y&%T>cc!kx)*i@%NDOSFivFSYCl){)`e_uP&uWboNIT^&a
zJT@_!KHpv&p~wjJXV9vQ?1Vk4OyCmJ!2hr^qkJay6a-Ng4Cy@oACFOyR7O6>2s+ng
zLTnT(fn`3))WvQW#J(ixf@Y7Q5~ZqkM|>Bp{?i^+v;}b|cfTGzm*_WsG>O5pwK;Qr
z^yhEw(X_T;YO0@zUbUGgxL)fy+1&~G(boxIVFwH)6j2QvUhLmqWm7dKS(EDg>R+P=
zpBOyTjowyJLm&UMo9!8T5>x!pKm9ic*otCSR8hbG_;U`Try>Uh2t=Y9cgK?Wu7^Wy
z%7h4{;oQ&nMcsSWc^M(9byt7;u2|WL?aMb9**)e(Px==NSYfc-EA(RDPy8ou<ZCjN
zr5gFy?$PIWvPW!;d7!Fk!+|5CAN|<ZAYD?%?b+D>MDH49zZ;R9qac?Xc8Km(Xb)_e
z(1zP~jHdVC30Np$6|6g}zw|#oh<0ICw29pN6aTeu`zhC#jNi_U>*8PAjZYPt1d)Yh
zZFX!iRH)1>93Hg!wBur3bofIEXn{iiI3t?>qMW0!!D>nE_M@N2M&|dEtj5!)$BMRN
zZbY@D_bWzZtQg#1RL|v&SZ0u7@I7-#D>KN8m-xHB!#Pl-)-|FB=)mC!FLdFnVwF3Y
zSN2fs9>6Z-kwt{&yFceem;XQ@s#X=z#T-(K(?ibV&W>HrnL%x1XJOeDb?x!>vE9?*
zA;r=Ff&o5Te$5%Aj5Eid9D5LY1d0^(pUqjqp`g0*3xHmncX@2)r<^}_SE8m;1z?lV
z%bnRZb~AjWT(Hshf|yCBxX^v`j6dvDJ`M}&TrP^na*qPaz){DOyTw=RWAp=D$`YI-
z7K+KCK%9D>+i!*cM;5~0s6{ylHAFxic@-U%NUhhew<9*79<VbOCjjgMU-_#D{ggn#
z!mCq@X%Z9v5hwVUU25^(_@We^gHxVkTo9BubuUdtA}3*iM=P+o&2>+#_m9?j#^OnU
z9pt1leo-)4IsJ`+6&X90Fk%iTXjwTPIXPQzkA3!<g~U$cE=@@>wD>R_ko)LHKXi4_
z1SVbM4&+%Ud#(aBe^Y!n1_C&(Q5y1;K>)s2*Z8Gh`$13w;EY!kb&uu1{qVUz4mMj^
z-)TXsvEYhhK`z?eSNmfgq73h+GzcJ)w!%cItN=08z0+?Y%u@G2DCC3H0vAWF`}(rj
zW8_T0IEf3Tk>eY5iMUCzs<^Z7^yhvua1C!A*48-RHqIH}WE8%ZEoa_vwkg6|@rpCs
zqA%jh<9CCV=0O{(*T#&6Z{prV1Lf#rKg}8yy>zDmYiJ9>XeklDJU80qbl&4aLuJnW
zbC;<9miYt;q69Ytd-DF#@Gb+CXQF~Wsp4<r(MR64EE9tzDD|UXGolB-OPln0nKnZe
z(J}uVpl@T|4#exx<<ahLfHYC$TfIMtxB=>daDLJU{dK>Y*n}I{U@?|+XzE4n$Xy|h
zaQFm>M<%Boxk^e^EW%vmEnw%g3wtaGLP91cvAPo9Aip-#(zLHPQI2*qf9tA<vZD+|
zM~A()Ua{vB67@5QM-~wLszDyS!}>8GnO1)soS;-A*YL};yz9>ley)$|_FRYq%<WO;
z^}L?v@Tn8>#Zv?IO#g20wvBe5n?e%RcDy9$QNpm#PMiKn?uncjqtWCVNFHi8*F3OX
zb(e&XycgRpg8{_DHyr$snpTdPn)Mkw{b*h`Kt(~OWo6%++7G)fwmk5ft*~*zx`K)I
zw4S46N##a6!=~$|fjz(JnXL;M@hh{ru4U^eIq8tt&mRt$#a^QOQqwPK^Y8e`pNfo_
z*t&ieUO8ye*6tRY@@vLa3^NrZb*teT;w~(SEsIC{F=1m8<U?s;vm+a}yE$I*ZWw6}
z3}JTTtX9J$VJ0Bz<*xV>OT+z`h+)n390qf_0Kf-P;9j~te$;FB%4Dv=_2Be@=@%+_
z!y9+U4|~vFnb@jiC*ZRohs<}+-xuHTMYtdT8Y|Q#)ComoyFW8tdlnCgx}=5t6cAgk
zJ9TONz^AAp*Wsw0VKoSochXhyH*d2V5Si7Wdq5xOxE>4RJ=*Lks!20*h@ir2l<yw9
zApZ5qR#1`j0Z{@wkRV)tQGCt<D(A9-*?!h6$V6GpM!4qcABms;Y*1ICZ64KdI&FV`
zeAF5ARFSi-P-OtFh3>Kd-LYtSd_2^JEVscm$-05qb@Xk7WWGE1mU!jGHVE+aw=|PA
z22m_d>8F;*%NS}-v5Ll-ShBcLV&8Btof7};WqzN>MGyakg@NRNfREl3Uvwrv=UUP<
z3pXt7l$ECIviQRqAoLiE{v>qB-Fjm@f2Gw-u+g!)sZ%$B_3o+T<JY_%v?VzMM3#VB
z1;Dyi+!Mc*=2Q0waQk3^+5muete%oF$yt~cYzjEENc3`l{K4mJ+RF%Rum&;dx$dN;
z@vaYr?*uh7u5p2M8v^k2$UJpaTjs~zGVTPu>)dsr%tKDjs2n975(;jloDZ%`QDI}J
z(v#h5GoKn3+Q?uafHuVbTb-eQWA+DvJ`=4l(Ip-})t;5%Myi<uIA4#?{XKT{zcR!E
zG+YkaS#50mvU;C%IfBY7lK<jx<}=TQJN<%^0^0gzIP<D!!^Oq;R%|A6i+n!m{}TVh
zWq9;zF#c1h$6N^s@!T&(nLqy(@|dErNRXO298)l#ArFf(5A7Y+&jITQ6_%{co{^Mf
zgD5lKopnGa6q+gqZQM3@J=kilPT6?JSxAP2$#IKIGyTl4htYCmvWXW<M0dqQm?HJP
z(TOH}TFLCjrffzldj@+u7p5YYJ}C3`plVzUpyb)kFm}QkSejYRbC%(dMlKC?U`Wg^
zGHt)iy?gN-olP(&80a|jSLS9W$J&oEp%O7A_&2GZu-q1_cklGg{MVioi;lmoMUw^4
z5=+LQ%)587w<b2$R5#SH8H<&w;Lib>BR!tuT}UPuAj0X$m3=eE7Bd2}TP}d;Oas)|
z)Wo>v!rP~QCib;2kVk4klIYe_8EXcO$b8%jSAs5du61^1tXrsZBnj{sh!!_y0#YP#
zZsvl^LzQFD*APrd^rV|OiDPxhd6~Zt2vr^`jNYtS*g%GkKuYYsF7sdC_pF?ThM1h&
z#OdJ1jivW%@-nX;9;%#L%2&R-JoBt?dsbFrvrv2;M*aD2@I<6%>6FZu_U2168#a<A
zy55aA6v5C|k-6&VP~{K|+gO*)B3n_0&NAzX%$0xktQ?{%YN8obnE}AZRj{3sy)wJ4
z=vg@#_qT#Gkawe}(Bva#WtDx<vvM47U|uCRCg!AiH=!IU(dD4bRaK$N$teG7ln$=Z
z)7U{>vkHFa8)|p#?abS@4~-hk-Bs}n1oOb@i|l@7eEjIDkQj`{wl0uP0Z%S)?mxbW
zUsfBj$HdFFi!<dn`|7Ls@_H*7lf+b_wNFS(V{<+Gw62QR6`#9dZM^F#5zPys2JA!n
zP(DF~Ety^S2vtsmbVU)g1em&+?`39Rz<6>bf##7V&J8B?t8Z&&|6H0S*eH<eHl!&w
zW@O#Ev6;(H3fD0nBm-=!X~fP+mS@@RS=8*~ycMyukFA`@jT&N!IeA6URO&vxId<{}
zN(d-Tw!rm<(uwV-z-5k#kvLm5VhyXo<HYfxS2!gvI5*bqd#kLB6Q(sW&z=JtxG*+-
zqdgyt;i~yq`#4K?pZ~<3e94|mwP^GwH8#UTqLyJ=ns86-l1HtO+W~K3St(X@&>45f
z)<4a2!o%suO!@KHBv`o*+Bv>%tTk*%0x>EB6K-HMn58YTd8@4^J|GZOr)FIzDWZ6o
zhJ-M8%I5LLoXpv=@OA9<F*S4Q73xLU5MAG6dgftAgyk8pNY1KlZ21OJx#<o6`U`wz
z=BZrYlJG}JMQo_~7;D`V{!1tOI^}V1>mVTHxTKiooPAsT^|v`90FI;U1Z#!3p?vq(
z|HY?2{`Z1h_s?77hdmaYOu$@4P%{hSX^yNbZ;hX@%1#b4IiyYwP`>WArSWGUwo_=U
z22j|p0Z=}=rj87UI&+PjZOvWr-F5Pjrl%$eiodD_LP?G@7?19W*L_b3MzE^78V16Y
z6-FT6{rATBniYJTol3G{a$|D+5VcI6TX$)Es?-=Hi(t78!FmKUj$QhSc(>KzN7>L~
znP&Jdyguu<l8i^uVf8@6@3U&Ne#*RbLF7@iJ~FVk%-Kxb8Te675(M-s!?J)A=#9a1
z*0NrN=q>iqWbXPY^ZphJ&_P;pi&#P)u<|}1`|-4_NqmJhTb^h_ThymZ3-f)Hv-eNw
z^<%H-5O!*rMaCnebps{WH5s|8LMoWd8fzdNL-{5s*yH3_PIYJqdMo}z)~hxQH!c@{
zGj_!zJV#n$4CJDN%gY}cXh})Gj7Y*w#A*{02!(rfY`22or-_zCi+(kV`@BEq*9{1G
zU0KPg-4L6xfAAU9EGQK=@f}4iSG*j1{pHXQwkQp&Qi@N$q##L5$nMugv8FG3s@3D#
zq>`&@&`;o%aaFU3;r~7@_IQKUJCU0T`97<flia*H9`oFa=VCc8QI?Cp8iy3Dqo}4t
zL{r^u(OADLtztAGs}>stiTJ1$Fu&_MCsuWg)rzjgJrpgXARj!DJ9<T|{|z>b#B$C|
z)Xc-DqIZy`pEbsAPlg`kTpHRqqZv~XCfp*(zbN`>M%H_KW~oS=-8>b+z58ff)@i$D
z{l^Z%KsU|-zjWB0S^JL&|3^AR3*&$%j6jDgvvvqYI{s4FvoUvPy)`VXr?@n$lC$Oj
zk(HUZ$j!bZD>;OcTsOIqSO)H4ay+1$)nA!a*PV(=+*2GnTB2x{rEbw*S$9;2|HE)H
zi0w6TTgr3YkI$OCW8^=qlS$GNnswsmy0%!a(Ypmt8PuxTNnHEzH0QZBv0fkUvdzx{
zf2Mxk-X-{c-EUW9oxc|?VQy+_TZH+wCKh3~&g$k-1y>~E3vgz&wsP7thZltRJ@fVq
zy)ihE6jiodDQ?*nS;y?TZI5t-20dyYMN~Ps>4H(D=5oS_T7gBDg8FptZtk`44?dV`
z9cG#QEkA`HM2nJ}NHO~9s()qeRbbyDX(yIAA~FiycU^mZae>W(qH%Fv6PUmrZMZG#
zh;pV8$xqs{V1U?T-)8mtT+Nm86U@0t)V7^-tUv8d;MzG6>Q@34)L^{+<SYGm)~G!?
zG#H}1_Fr%51d&7S&!}OfV)zLVS1y~%6<MpYJG@=GwY&UsGzLI|g_LX^>BZ7G=BBLm
zqqqJXpHutjB<Z|!yF8ltVZWYr!P4<Z)Nt#n5iO;Rbnn*2bB0FhsJ22f6;lEw#0!uE
zc|rWQ<05*CZA2sl*8w&m2}U43R+P8B{!)Fsd{F8~`}wj&unn1W1pCED#J8Ko;m9$C
zG)W$tAlwedcD}i;IQAq7;8lXA%2V#B1@5<fWAm2V(;--y37nBLM<4_YPOaw!1w>5X
zk6}qr%iIHFx7=Zml?z&*@GFxG79?<wVjYyh@t9$;#3{jd5(|*QNTxa;3C5NMtcBDb
zR}$MjX{}eMs-%gK1_og;x;lPZ5pSZQCAezUHMBJz%eY`wAi3tM*xpMh3m`coh~LMh
zB{F21`qi=VLvIY%F(-&DM82^vNSE)@5?}d_6)3oNfeqz;<V0p3xM*^+Oi9EC{)xsA
z+#Jzla3-sltH;J$?zHD)xGC`hx8gia&rT!b<Ca;$_%^P6$Q9}mIIYC>9v`1BJq7?2
z&>$>~dWFmW((-uQBA(On8g4e=e@Zwy4&NjG>0tUJAceFpKETu#xyY#aS5I0k3>g}x
zqE*zUVplpoet6KPanSUjSV{zH*l6rKw^=Wl@?#ljzG35X$+7X|vsRZ*fCK^7YBAx4
zL-#Yj3EIa7*=uC{*4x8caiT3wG}R=P_k~gCFi4vb|2~U#T7n`30FkqW+XXA=<%0MZ
z-%>MhOq(f40Ca8&MO@&n9Tt1`OkTnO#+nDJg#w!AK0G0I<7c)khVbJAt=F%~lvx(*
zbG|)?f`c<a&lRZlTzRbjN%oxlQ8Zp%*pE?Vx3}n1W?><b)TfW~BXs`+m%=0!Bj>dy
zF3XO89ijwN(6Owr777?(W^j6CeD0ezD1<+;JT-_MU-a~uYZ*jke{2D$%#yZ@0eP;t
zA^yr@>&_4cr$tN_^a&lg#9en(?EFpkdE0Ebf*A!$F|uJIICIbVGx=6pLBm)lFrlFR
z?c60^w}0>wY!;*;v!Ua}M&~^;BkrWy$`YWhRpt-F?M$Bl4HvlUVsTLLDkV4!9TfWx
zGb%GNHB-KJ=Xk=mat6z1W~?>Zdy*jIq``2fWCu?2<30M@56fWYU^FpHb7HjgjGta^
zk0%6zM?c5T^j%#0Qd*jmR(9_w)5@IlH)VF0B1Xj9XUIjMcGQIOR+{f>%CoMS8+lYG
z%4b|U*;r`4K3npZQ?uUq#gw;U*akOqe3bZXk};=dbsd=TDAIqTLOfd&$JW$>Sj+KQ
z-+S%SD|Q=op%Eo(*;rM0a`Syg>$-=t20v~EEVR0{Gy$hZuD<f?(ySq`St}<iYEqax
z)wE>itjrnq@vWL8Fa@70&9|pzt(SgU;zn$4O@hVYVwGFyvv8Y+Wi3;Wb?n+*xw(n)
z%JErCqYuy8{X(m+a;?ryc1NMUv(v(?({kudAqJ@y(HG?9`Y15(4$k_%%yi(l2;`}&
zQ^pz46(vPJV)M0bS?iCtCPTDPznLwJMqB6(-;|lo7_*s}Q*vgjHyH4J7E=2CS@}Cs
zT>vpP)tP&Tj4+q%(QDWMD>)Rc4?JiI!=mv0eR}=a&z^Istdn)>v!JNJ-P^O*!#yZs
z!nnXN0JhMHk0@m1irh<ytXpzy5GI4)g#al($7e!jPRXiiW(H(G+I*}rPD%~$cTU!+
zukdTMEQF*Kbj<n%`99M7=4-Ol1l}Ff*3z(+n?z}zj|TDN%B=VAp`R$bYmxm#*^>r|
zX=XH=Mr8H+hqYSbT_-S&&QpJ0@OmB5%}NBaO^pCEljnZhtyf*a|L7@`*51>O*9W+4
zw4j!po)yjKEr^i-FIba_u%yXjHEN(TH`g`P&4+RbotKFQkvt^p%5iiQzv*UZ8>|II
z#Wpn0pPTj7Fq==}sp>a#M}T&^(8u<D?+#h>Znu|)<F068-JopJAr`^PMOpV=Yef~w
z_UjN?(0sy6r(K;j@;ZvJ!OX8kaG`k>7HX^YI5F!W-<mfZd;4bde6yc@_8!x7-dVg;
zLZDs8BEEF<l&nQ6lF6HErtV!uB_%#8?0x5DJ$8eAXwq8NE=r#Ubi~<NyO;76+^-2y
zl<DVeLO|-*WQ{-HDtfAU4to%g7G2>mIWwzhJkMFUYiTZLKSP}BPAKm6$K_Vfu-cZ{
zYY9l8BHK)--k5dS8N5JrCB`_W*)}0ja6YV_yY8HoJ<qlQ+61BIvN&@YcjG?G>iSpE
zSc}AmHchR)=ftcvh!eKPU=}(f%(WbOQk?H|H012v>mPlsaPnHn{`Hh)arR#Jl=Ew}
z;sMMGBFXgrtGz~_Z&%7ujkUFS(P{yhu*-7Ys%v}Qa02ykINB9(SQWOyf+9u*x8UTg
zLiPUdW%*mmir5|OLXvPuS3n9d_^Zy#nyq1$Jrn~<voJE+IT+IJy(;ULz8RgZ#QBgb
z+}xHq1}iZZ*@*;@HImW;fm4tzi1+m4GdH-P2!z;zB$010pJG{cueW8U?-Z0YV@oW8
zkCxy6RFnC~?in(aRN$AC+*Cr;9qThc-WMwgc@4NhBDg337K4AGKJ)+4bspeV6<Zq~
z%l+*lRwR^jW;P&dG`%Pa0YYd2Bs94yp7fBA6H|Z$8-iW0^{R-9y$dQT#)7>Uu#1X{
zf{I;HL`41HZ}tf!aDATZbHmKpv-h4ovu2fVeQVJX-SqRpC_?p=4y00@u2_D&n|3H2
z`1bL&5GP4za}7Pq<&||CJ`g_wa5EoikcXXo*LwTe;oXMk;eun=ky*=Hkv3nx%6|Vs
zlG?p1`72EDWO$8}anDzXMhDV$YMy;#FIkNLPLW`cSO`auwh-%HY|ofWv%*Puj3Z>l
zRpH=O9X)gO{&rOw_rw2RTe?;NRvM4nXj^aN0$#E#Ms|&lvY@IlE7M2YZrR<2ljTc<
z>34hbR6ni`UwNc}#+%-U+n+DQNsd=;lU&K(af1bgl<P9oHJ{$ClUzw?poYd2v*8{4
z{w*C$9eMEDOdV!wO~o4Gn*H|fwPx4u3NfMZRS4FW;idaN2e{8}@7SIzsXupbchHU9
zNm7@mwI1?E%EDzyO5MGqyFRT)`+*QqT=4I1?x{OE41`3X{hkBeA-8s~L+cwzK}c|L
zw@pfd*S|2I?L?-uLYSk`FG#S*e>td-ENgtcS0-s86jn_I^iZZUEj|vGo<{7tXo|bA
zmtR1`rg~4i52N_3zG)Tiyd(V*f+<0MdU71uJ}(!$jR$rs97;+L-YdjSsTo<sX*lB^
zcgP^zpITU@k)pWPXcqAW0BPM_(=&Vme0*Xr2)%6-Z9~<*@D+RfZ*-CCiOB-V4bqDY
zU6RCLTf4{=y+|Lg%7BA6!CD}T6d6vgs@uVRe?OfpKsJfC1CaDgv&$v!#@A^Un!Vd{
z+j=BkU)08W@;VzzDrb~cQEQ4LI?H@h=N{a<`(i{2Kw8RDp=v@%ol0C|!IbE%y}K^v
zGI>!VWZhJH7t+{urJrk$rt4=}=Fz#)nZvtkfHBxRQrk&M6XZJNwKgxG5KZ5memT+Q
zxP^5;B^io7^ZMlI-}^B>PWL!`A=2krc*&x?dvRX$xWoLIc{LSl*%KMLiu~jBoDzLx
zPv0?_@Jf>}VwMdmK%me=r$oE#N*@QwDz9)7p2~zII>Y>MMs#p5{|NY%705s}QqbRg
zofmz+8y(r<D~^g!_itDLrLd2k0A9&4J1>pi*xTPTbPN;w#o}W}3U|TD3%rl_<Iuqv
zCRtjFY#d7f<S={I-{!s>qxT=p2tF;9(!zLVWdkA}{4cO?)|?$3-<7$@F%z&hal+|Q
zcu=%{CK+;w6QU~*rJs}V^EmWNC$ZBqaIP{bx#rEq(eZS0ib)~&wk$cAvUGqxC?uJg
z8@=U%1N4c;d8antvQ!RI2xP?bo@)BnMz7f8ALju|DAkEe%mdFbq)ZqH?oS8ubJ~N^
zPY&`EG+G_{_JZxONv}I0dckgfTs&vtMcGidV=5Z^YII2Nt}FOD!#Mhg#b~}T_RRjR
z(e<D8T%m_0R7OTI!SG)eL_a<_vI4y#zoDAS$6zp|F7wg<eRgzX&&a}T;uB@1a4goh
zG}nSOZef#>Vj&;c?!6tEg4(7d348-vBdj-ZNV>_q)7{?B$9yP`)sTqCq?(Lj4&PxR
zf_GpQz73(#rkR0!x?g9wQ<Jyt$TE>;xA>54JIJe<>0UXQJFvCz%P6o@G%nq&y}*6r
zk_wp}vgL&YfxE$rp)sS8O@C#%s$-HALLEljSKVkBo+M<{s9f_&y$?u@=2R$2&}B>{
zPV>vHk~oEf5PeYKPLqqf*-RXiY8Di^`|6VlIe5hJLbO5QE<m-T-Piji6^>TCPMie(
z*~Y>C@&0W06LBy)V0G{kZQKw_S)Ac+-Y2OrpM>Brwcg~9N;98Na^E*36^`Lq$k~RB
zXBb&O0A>?h2@`qkldgA<b@G1L0)zqq3S#`ovxApLZ@SnwQydi?UhTqo&A%u5^M$nI
zv!-^Ack2$Suc~8ppn6cOF2$VM5<UFSuC0jHaiHz7*T|H`$DjV0`}@?xS~=~9G*MKs
zHa=Z?r;;A8Ne_O0EZT}l!T2T6EHfuPn^pGgAwlI+K`VbvmTj5^p%^~51&_JwHyzvx
z5y2SnvjkNE8*#JZ-=k009Nvl^i!)tjA|r5qzgFR(C2z%JOMM=Q1rXU(+r%})QC;$a
zTb3PdMd2a5#;sf6u**dxrkQ(>b)TOUZN+amsIrW}0MAO=799nv+;4~Zj&Yn>BqHO;
z5WP;CIb@xCX(!(U)<B7fI9tdnHsAf~{=6XCiY&$PrylA=c-PRo&j!!Vk7`23l{JSW
z5z{43;)3A0Tm4AvI{6i_5!j5^|Lx)jL=|8h%W>5rrx5G2b3dE30zE=zog&&mc4`|4
zP$$Dem>|wWkwPu)(#=*q;D0zO)>Pt8NXStcVPvKq@CF?ee!#IcT|Q`>A}X*}@w0v6
zEqcTuQ`53G>;gZ|2ifxr`$(nN!6pFFNLD-?ZD%Sj2DBq_2|~?&s$Fm}KaoI1pX5t%
zymG%IyV|F8Kjm$G*2q<n0>$fz1%nPlTFl$mE*^nar7#iiub{SQ{ZmYJ)PA(L@9^@s
z9!*AF^8VizvE%4M=?Z6IDm>kqglTbP9l1s60O^Rx7u%*|{I7<!aNn6aUAeeVu|0$v
za`6y}W+E7b-s|~4;bZs-ulv*qcFs8elffu5a<f55grC*?P-TA{?>nUJmDI<pluwTK
z>PL<j+b>4?-mwG=F*n2JzQy*;Lf?#W7Rf6{Iroo<!nNB}TdPMTkk(YoKGhkLi55#f
z!vNRyZKe%DB@*3w+?wnY1x$WScdzNoYO%&pWMCx48Ny8GO|=`#=um~Bnb65e<qgp>
zIV!_t1~%HqZVLP5C~qW6Px?9?Z%wj0J>xq@#ZZ#f%KVRu*@DMtmHH03H)jaBwut+I
zC)tw@<C(#&kr>WWsQIcP8NuZ7DiE}B>GI!f%US*>AW5nklk3;Qe@DOzD~}%_G%j6d
z=U?upWGuqJVe{OxaBnQJJE!|DO>sT->8eoLA(KHGWf$9r`}w{>^=qe95tiahbHDRW
zvV#Zv_6chVQa8{ulhlejdwyp4>&m7UZ2?WY*5p^!_SLWlOcQYc<~BV?32!sw_LuMr
z4#c3SKslmAL6MD>_V^)Q_a9WVmUTk5D?gw6r=76?O9LZ<d?!K*s)4~fOxe*La-DBS
zZ3!&`LS!lC>fh|uchQdHs|<_?hqA1vqyDg`-|ByjQim(EA$cuPYdtOWb-dm5|8ob=
z_x)pVZ;1&gJ4>W=Q+ILWuJ-K&+WDSZrT&6z|Ib}~jqiY|vvzGG(uwC{q`kIx!*2H-
z2!G+GLc^$xX_j)x;(Gr(Tem2@m;Z7s$hKQ*RZic|ExF!z^W9Kv8I~7Vu)RyYF&tJp
z6x)dsE<$DToNStmzwIUAY!vc!{EPA8Y_n^Bwm04FugjYTU6&U)V04o4^41X;&@<sq
zHVb~Yx9R=mOvW3DLdVwy7eQC!H}<RdS)=l7)>qUv`?ZLNzpm;lU61#Zclu;|_skl8
z<ge$s*?-ty5|Ry3JM>&u2tBa~C=f&;h8dT<619sj@EuYhQJrC{<a?*|u`@5E8S?_*
z+*%+ESP|M<$8@z<wQx)-5leo3F>f9EXEf)Ku7l8~##R-xQL*n7v4H<B$K-Ue6Bl>&
zAzJv>6LDZ1bwpc*4p6Wb76!B9_0h-=T?b+06~;h)pvNi^ok%6m(zPyHOS~0DR6b-5
zGzwb`j{e`PG=apFGC4I29BbHo);P#U^e+j<-p@w|KFjX_vd2WsSH-an+?Jl-)<^f)
zmG_Wh=0z3tjI?Qpx*E5%=WaiAkt%>O*EE$_wfX$QXvs1LLIuW$%LNdbD-ALoO>z9{
z=-16jgE$gN_Xed`Z)jx+ad2l2_ES}$9K>n3c+#_U5X4tUYc2Cd+AUHG|9^U}YLYHI
z07QU)Dc-YOgu5lmq%j!?qf|5N_2{sxe6OAWJp+GzIv|5gb3<$NvMYU$G#BRBD=++N
zdaRMBk!eE&GRN$Bdvx|Z|2tK^1gb(*nx|>~EBbM(4`;*5i{?&7EIDvlCaEdfJ?0f6
zmJHs|P!W>r;Ec-XGaI^2!go{@-^h%b<5op(cReLQCHDta$`OGK)w{ki!`_wR&$i(h
zXo#^4q>PTWLp#yR5y~eO%7+KSoh%uB<-K;^Eo=f-I(@}!g<k>LfW8kT?P0t3Y=7N2
z?*?H4XzhEy{pk|FH;`poW1?}dZ`9%4uoh($LzF%E@&0c0Lz~Af=TJksVT2$pO7FJI
zOBq%geuEBd>Y}k});wxkW@E;}(6y-+I4dz!)czdvU7CC87d#d~O*!6Y2-#5&x>xK{
z@+nP!*-rSWySm3T;l)mL`K<F3-mo)1-=-^70%xx`?K9u|F0fmwo6e!R<V}0gYrbtF
z3#E*T0`=UGU@VH0$#~U1_NVWp`h*S~lne^jEw?k?@U4Inc$W|&BMKjL`g^u`#~ykv
zLeP@FiAQD$fBCZAu+Cpqqy@xf3Xo-(+!c1mpS$0Hl9ne}kdJVhF&Dc3&hXBPA~H5n
z2{<Cm^l7ei2#qrNYyazdPwuAmEnyRzE^`q5lW%axzV^~D{K{vqqLFY|(xWVv0}iw|
zf94mbTz-UoYN}WeKCoH&X7tge|EmkILfFNfG+z8Ce;+2Zpo>lU(ccFKF=BGuozFaa
ze|tYdM$g5b2h>57ko5{KgiOjB^!#+MBplG$4tjsvhr~YG@{sNKpdSCKCDHA!_SXOx
z$wSa+5_Ml04)gZ6JMeDW?^18HA=%PYQ0iizTNyqNpSMJtX6p_Jrm6@VsYAzV!2z~>
zmA~Sj?*ZCHfiVfgLU;mo;sfvjqPU;E@jZX-Sj2}{5eU(xn@xM!)e^mgVmiz`%l;o{
zKE17rck;@tUNw{DchjDB<}=}7gvu+LpwFWVHvbfJNNe=lS^oY$ayM1tmg&hcAMI~n
zV0!pKdH{V681&%jFJT1$vtxOl_Md1`dD0-<07O8ic`pfyI}u)FAPyr2|Nivo^B?<P
z_=OeWki_Ckp+aw}={`4l`{)0BHKT61dWgz5S2Y6HW4V&jdrI`kpZ%rYDCBfR?|}Sc
zRy6Iqe;yI9#Fh~WyH2lKrAGlq^6%55AAA^I$Vvdvg{!4WqpI_Q)1tS9okcMe;bP8E
zQruZ5kDU{p65fvG0KyRG4^rmr=r!N_p{P<V<s763UCPQn@670=FF24mFq`TXbynVR
zy6G_}+HHi#ALVVqcPV=z|KHIQ>yY#~wb>V_SoKwW9KwF+9S?7cEV({$I!Jx2;WU)B
zlV&!}i;kI@fHQ6BK}?&SFNg*pp!lG9HK<j534K(rc(CJ%u>yKxj`ph*P%57#NYPsW
z?6{hE_<f%X`j_-nD~bNlLCW#3PjU9^L2{jM9|>7nypp&CfD-Q3Wq$DO_F;!_mFVWV
z?+ns<`_>6n8XTMft=}vP(hu{kh0Um!02h_A>wVbs9uHtE(|sqbUR~WlSjVq`+}DDU
z$NT2t(8eJH2~wjFbA-Jd9P$PofJG<^6l=hZPx3fu^%S$ZORuTV`yc@+0NTEk7^d*F
zX)1B6Eiw`?rD(E+w1fx|W~wxE_3>`$MDOJ-jKxBa42(XRW`|POqla&AKUAtYqQo8G
zd^;g`Dg2Q<_WNJ}wV?x<NE+h%%M#b`5dW(_4apV4?h4`|*B^(oX()HiT{qvep+^3H
zG?z@Xvcz4|jpxMAUWF2Y{wz>6p>7uGm1EtT{rx)(WcxJ%S%K>|)%>g4eb?m28iRjZ
zHAmzl!?V7+-0g&C8{s)B1{`We)l~7j0Qagccip%N9r&Ef@is$yX6nk_{eqiP*Abox
zcwbm-N^pKR?ru%@Kb{yvfO6W&*GvkRIl96<7fw)tDlMQ+GQB5NxCamO!{o8Yrr~Ut
zuOZDGf0CP@=7%9e5;e0rncT8u@lb?;8Tlwqbb|@Z@C5BIO_is*A(eJ8^c_9)Y39rd
zH@BZ3bp$*$b$o+uzJ-E<CGPfv|JMM7fGb>t0eEmh|F<lQRFiqUn|!Q)nh{N<g!LL(
zW!SRt)R={F_g;#>>sTfV>n)YM|Bp^|T?j-msoQ>Vvfawv_TdK~!_+pyc_2TrT;A`T
z=>A}3ZvB<g&AH{SJjr)xU2a|@Y3BM8SJ{2rjtp~oiQ6vh*!)3AlP`Dg@<AAXD8n>{
zfiM#4Qgwq*!g-apSFY!hS0vkHRl56gcy-KhR34>CWKvApoP4}nKgQ1$CqP?p!|ZW_
zTm5f8zP7+nzi=oH0@$nEof1iOL`F(CXYu8j|CYIo|MB!}%n}z1JIGdLdrC`6EZI!+
zTDd!0`$GDI)G;uY)L=oUr=CjO)e`8VYp}mLngr!iE8Tqs{#g-!6T;vh#1-cGT31O(
zXRB47Zmx^FvT&7mnCvXmrPK`%_ll%I9XnNT&I@LlGs_&6>NK+*u1Phq68CiCO&}$m
zQHIut)HN@axevB%`nGq=GAl~mk4fmXl)nc1UKyt3WMKkzf52Y;0jeRsL;&4%sh%@L
zqOJDfw|z57yj2x)IuLQ@_cIpTmp<_wJS+K6(j@@}XPD{-?LpttL8zt*E!N*5Ba@Z9
z>~(w8O}+z%ut>;}uCFY&d(QW5Bg5@UGl#?M*X$+#_00?p6^aMKlq#l-wtUU2cHTw4
za|9x*f_gzbEYapv>DGr{MGt2Rnr|#bpnDA8W1raB-}s)v#O)~0gHb04(x0E%B|rLh
zcr6+l2w81W<WV@xnIGBKFMa=H7FDQ8%NQ~7kL};9=>Vl6kCYB6&L|Z5Pk-yss-y0!
zH|(NcXeFkh3@JS>h)QC6*V{2OefwC3(5K5)P3i$R+8@pfe_n+P4GfUawUXMEbE#c<
zx$i=MXQUdgU>0-d+f&b?nXHLv0_>urVFs+VAi{K4)hR-x2qX(E#+*0bE<KkHc)0mK
zK(z>CdlSJc6%RjT<D2|g*dl;##UG<Q*`HeNrLuNXaRYN%I2HI1f$lzHFVssT`pZ;=
z3In*h5%(e&o&Siv;V<7+$nCj`paER!QWM{KBAlvJ7!Q<h5I%v(Cti9gG<eiQ)td%I
zsJKn@Q+A<lgC836+avi^;$!h0w&*?IJO+n$goM?|MED}`)#9_i?Jf%+tgeA!j*KbR
zuEb~FLObOh-^@=@168@2bdC&j%I)^cH+=_rX$TPpfkycroAwcn%x*o|j$s-bn=;K@
z{+RvpE8jCT#zCK09vPguZ+{rxSosvv0jhEFwD2Jnkj3P}q@MMWowd<ln_t_)wchT;
zex*d=d-m)NzGnmnV_B1*Go~y>J^8=-9(}or_J*G-sGR+Qy=*<*!qV#G6g8f9F{Bc$
zwqS+t312~z?WYQqb7MG{Fl(ES?zIE-K2WPC+9SirforO7(NbfiR5N8sC=Yy<=kQV@
z%V}obOLoz9{!#>LRYgNMsP29JBlbJpo9SzBjw%~Ey3#I_sL;&%TnJ@tPW;S%_%)4^
zboDJP7W9I{pJ<zsc8gM%J!+2$?b)GZwa$nu%QpN9=m%-$$j8I^VkO1UPeXZtx|e3$
zQ*AwCs%rSsiRGNZ{Xbi5Uk)cZp9GM`7M4Hncflj}@$dXo4FxzV`6!>Ms$E1MvDe8y
zCoY7hROyj%+OVv0l;@@PaScY{90?u2$i15T(`|N!7L~BD42D2V^l=fq>+giC7S-72
zp!nsZe8h<ytA4SfqD{ZS_I*Dbf+G@tP7VjE`Tlx4<Wt|8FA{1$tpC(}d3Hq#0_KU^
z?C;^0A#9}UaA%n1_uKpAvheO095uK*O4XBYo_)aX7WNG0Y{ULWnf6ItlJ}`P2>d1h
zbwfTwV`QWvIP56@xLm;LsvnY+^niW+3+^Bu+?p1@s(}mR^?lmD*ho9ESRgWf8i*&S
z>JWhEQcuJofUCe$f8^xC2DaB?yWM{hBMBQU1wpqflBDDy;$MYQ2C0q)wb){tRO^3C
zGAE??>|i=jG5XwR2UPnG0Q`I%nq@m2y3{^BeXGI4k$BULY4n6S)DY66jmh`Lu~Yc6
zZ_meLo|y7Hsp<7Z>1&zcbdlCBe9Ip9y8l@LJ_BD3QSP5Kv*X*LF9$zl3`8L*rI<=D
z+BIkU9~TiqYtVChH>6qct{t(x_wEcOudVG%z%iF$?p<YpLF)M?6NhbE)P$$8!9KAU
z{L6QN>EfFtBoV&b49)W!4{$3|g@|m&E5c8JZkB15uC(2?t3BqDZwo_~&qz>apn3cm
z`^Tfcb23XCK#BGkN*%)Ow0G^1Klm<xtm2`Qi1VKo4^^r;^iBJ0=+mM|Kowtv2U28$
z(43k6o*f>#)y8o&sS!)O{2hB!czzRvM7*>;zcl3C-?eMCHDNKWA<(PuzgcFc3u3fD
zhc7!Y+yJb^nYY`%Z~3-7`ELNa_+1tr9u)mzYm=s&X5L+3-+#CLwVYcg-D-~w+c<);
zXyh&=KO@!jyegD){zhmYqM1xJ%dWOV6F=7pT&CP;<@%M~9)5FSFNu4yGv$syV}b4Q
z3O6Kwg~#wxL_8V%*q;^t$2B$K8ulsH!7bLj<S#%hC1w#sN~+oIIh*`D9b(L7*>7Ga
znYdX7zG4s2l*l00PTkx|K9$a8T!G<f-lVs~gYQ=|KsfLV_#_#<^x5#F2?e(lFu(mu
zDr?JBH3}UR%|HkFyij=>$}4Kaw~ZC<3Zw@P`epXuJy@Ar6e)2vH@;<C!$&NL6?-X+
zZzEm$RW~_LxBOT@_H*B`-Pb4HC)RcgsL{kvF4oMe*0epXv`NV@%uv<D`0;gnjZ_LE
z(oK|IL3k(R1N8DF<}S1I^)Yx!uT|wL4?F!Ud+w9I5vMQf5Xk{h3u%Izw(NO2aF%;9
z$T}6IGebLn(({|u*-%2Y&A9T@Oy5`S;aB=AN5-Ii2}Ns$4%;VQw!d8Fd-#ZiQ``Ck
z?qc`daf$C6U70vM(2fbNz8JR4`LN{@tZs;DpJ-Epb-WW=(1Hmy5_O-mw5_`U`xcZ}
zxG8~BfdYQiHidg^BBn3$NRDW)198=bYk3Yt1ZQGn;|$bcdN>%+j{LbnB@^%(3`bHM
zXo-6l*?vcH0sN*s0B15xu!OZz%rAG_>`dRmX{}=v@Fq$Lr{SYLeRF;d<*4Nmz&oEV
z#SbjL#vw16?~qJIAP{X-wwAysyxZ=ps|4^N30rFtvH~cwU$C#<=Gzem)38y)3Bdi9
zDlhnzH~Kzsw{lH3#AS0xUr7E?Kt&BVk#kWm59Lj&dF4IZdcAKBKROx<LCa8Ss;uGE
z#?Ih}V1rlKUf22`Ccuxl<Ho#ib8n_i_yVtjk_ws*U7EdW2QR4ylG0gD!VL;AIuM7>
z`}V!R{qM&j8A1&!otZYLzGyFa#&?7%{&Es9|98D@PyU!@FOZmjFMh>lZAM*Z*S!{A
z0Gy8~SBJAoZZ%ZN>!n+W7=$@WL`7gnF<4UFr6OkogYn;jRbZChYkLgwjWG6;-Wfg|
zxucop@P+oIqkR`aFn@%zHmEwi(B9;H^XM{kEWTN~v~~ZbS;QSS0z4Qm*}maM$S-DL
zl!3dFe)sUx_SA3>uqqo8b|5F(hp*b4D;RvMfxr>2d(r-OsqaDcDXH{R!Y0f#cf4#n
zT}21-vaBp|QYitN?Uc|kw~YaDSQWlx-wNf_K$cl}z$piw%e)aRl4k9&L=VfKo<s;H
zAKV0rR^n#F%hc!1M-k?D%fEe?i2^??CvQBGL1GsF*Y4HK1H<b;q9fiYe+wnJnVtS?
z``qNa2BOyZweKSXH(hRjzc9Q+=VZ7ma)mOT`(OLQ)nN~%E&1Gp)d-GdgGIX3p07o^
zMdB)mb^M#QtIl_9G2#|foc8Vl+{piW*pe!*(_^z`0rWP_oN}|R(gm^+aidn1D-Ab1
zR$}F{z`%AhIWV?(VWO-bj!;xnrIL=jwrwHj)zrxjL1$X^c$?WLOBgt$)Ia4w`f6Q}
zL1vgfkJ_`e{$W&-;M6=sfR90P4@3>0N~XEu0Xu0Dzi9VzoJhAXw~KUiiey=udALZ#
zdBCwZe!-RzeFu?VL|?1D{CIx}@DR<cCIr#%KWSoS1%>cmPapND%k4c{(1JN8)(s>U
zY35(^>~H7$_F?rh3kbz!^A+x!XZL8NS*sIZkBkz<C(4%E8^Z&Z^4_S4)7n%l1RYr4
zwospx`T7=S6Bt{%P5~c)+^i6>`pa*&Pb_2nEo~W_+f+<I*nFJ^!t*jOC$F)aLis_Z
ztx~U!w0+KFi;M9t<AgV(pR>b5^>DP5tZ;imf}3gvylEd?<==+lcTBLy5;C-WB?rCU
zCU`hbSiBldK$%T1+n02_`eR0~(`JXu54^);_P5Yv1D;&P{Oeu87Mb^-upflS)<`}j
z9n!yWXQaz2-Aj(2EuUVY(-q6?L+d)UD);ZxH|!6g5eKh<pW=1~m0+gt++f$e#bp@Y
zWz@ow)vZD;Q?Iqz+6-G}6;_YUGd&_+9_|~J1%K}*8%Ts>d2iM~Q_Kz5wfQMfzKZ>K
z_c*XSt`2q3Z0^@YOoGKmJR;M~yU$*HFry%wp<?yTnK*oQzr&ushi?WsCqD)83zjCM
zciP)GQyjsc&L|_Ow~0d-|Db+|s6om6Z9o4*s*RLkE>}`70r-fyXpyb#Oh+b;QXGIp
z4%nG@KWy(Sr%}uU@F$SRNRSDGE=5anwk$ENs769l`XGEtd6)oF$QO6|PMmxs0Qh={
znH;cd?y%$c_qXO~WA7uXNp`x$uGrl-POhq_O}H6cI@CVU#d+E`UR6@IS*Ce<i9LNl
z*i+m<hz8~iNJ19cnK?8n^%}$oat5;!A(ilTq8l`lCxRKEQy%sEqtI}Z_o1xDo31E*
zDN+%=(#IQ3Yf~jaoursOmf6(D7(ZQfJ>`kDFJp_N>5vC}$9U0QdGmpskaY9>tG0iu
z@92moKqy@Iw!J(weo!7t+uWKmVNonQ?qzn@v3It;1=!;1&^{3p4$hrbAGXhFgdn)4
z1|YpcT|T?9r?XdNc?kbd!CPg_k-eF2-e`33pTI{DC)(VeNkn*QgG>1h&JDD!s#>Ti
z!Rv!HGM(qx%a(N$-hIrv>2V(uoWO<^wZBK$L*wxB3(;>QK(-Yr2j&F?h|=*Pn)}Ep
z(FePDG&fr4)OB2w3YHs}+PAII{RIFAcFCHF&Ey&-5eP&2b6xbWo_@HeATsrlesW-l
zzf%=HGg;?x-Q?)=j$fd45qS`DUMakS0r&w1pAk9o_b!XkOWN`ih_5D#fFaCJC>*Nv
zC1#`!ig7cNINr7HyY1nrQ8|r<N>wp#FayT{Yr5}qch$_Ug+t*jl$nYpIWnI|9(IZw
zIx^`-mgA5Oa8)VO3q<65!S2VA{|`SFc^#gcfn+0qzgUy^uMPH!`9AD_Dv%M)Ko?sZ
z+;vLWsPJB77@x4VHY9b(%H^v4-U^l<>wiEtJ$Zu|1li`$mxJ<AzHwl4ef88bVtFLl
zWtsav3yy0_w9As=&Kx%8&bNari~jj0Ku_KbTDb{m2pnGiUHFcPcVYh(Ra2#c^Oy2#
zcLwu@c-n(@FWq`k@Z3m0{BwZ6kpR3JR3<CF2>uus-nFb|Dib7B>_^`RRs;!9*f&&@
zyv$zD1(!4bt>CYIeq59;uY=+@Hw6oW{sr9%Cn`5LsU%o7yKCWa<uCzV;VX<P$Tg$S
zbFBr$zxgdXfPD78#7*`m(Rpip^Vljy-)iEGehCQ<1-+7fM#)_B;D^!IRzswPZN8Z%
zOQvc_lcf}|5x}x|ALf?dob0BYK)eQm8B*N=YCwx2mdxYp+=_}V5v*8@^GF!-C6#VN
z7~h#3FXPufm?=;pC@lAP80(ur$cfYfj91CEA#pcP$!N+FM2T-yjTXGb#915Ny<s$%
zQ^Tu~a#Oxk<DLzN*&K(>H0kB;1Hxt!gDUupaKX<D8i%m$IQP3Ul^`$mJ{5o83{*n%
z_9RCM5+AUGiiRLRE_L(%1XoYQm6Kp>Tq57IhH%EbGQ@3+ZPT7<P8j0e2-|@|vmi5b
zIjvtTbW6*-i6E<pM-e+#x|u!PRTn2M#Ft+HLp;!TC4CTxoB5PW9o0i&d8n|(=ZOWG
zVrJbNG<`^`s*Qm=0$4$uJH@QJJGgFm&n5goxV60L`uY$XzLneM!LOW}L(p}NPmMEY
z=5+b(8{hmA(4`8P)@s(mR-fDDj<0>|$g+q^!=s)8k2N>tb%7LY%OK!g%IaWJyf&lD
z3+tS)W>Wlsf(qja?1yFj?N#=EFu9=O1|y|-Ev5M(npS>nmpun^Ee%ql+KRPMTnGS?
z_P!mI0qP9^0+3vWYJgj<A(>RBrkX}#BWX(hJMV3~^i2OF9BM5d&K_?9o+m;}WPj0f
z_TA#7;p9k;DQm7TBkv3Qf)qR*Rk3dNt`SK$^65rkcE{Ph90<9>ckJ<ZuaSTB@H8t>
z4=dYLW;D;5VUqUkJ#n7z0!C8WR8H(n^o%$fx9ffSaNjXRMckDLm8-j)vs3SzGGS%`
z!9}eOq?ej89KY;E%5M8+NS;zQHw&v&uUJNXalDafLaj0<9@_iiH+%Z$<$Ob>;|@T}
z%x_(Lf4zG|?MMYCd<~CEbj;X--gRI4-&3KmVM7=(JMEy}6Sng|9@|`(pvCbRu6vH|
z{nI`@_0FT&h0?#}t@~r=-dCL-&O~)p_$UPD%{zPa{`o(?SpvM8PapOvZ)4A$diQS#
zFWG?9)$U^I(6E+w@BQoTVFw`BHu4&7a_oM+hs|d$kanO>`2_6cqM&zlhwyRm2eMX_
za>^ITGJW^&Jv#gXq@y&UN=lUGDkAn`r`}hb=f@culR;E2@Sca2o!7tj_<j9UNKfW~
z2p^a1a&vvZ-tVp4_9FJzmW##-8p=1wGPTLQbD!;*NH0NwfSMsbUF<wKfAJAKxqYzi
z7@q(#DozO*cCGKoG3Wm2){on!191~}cqXg$yl3NTodL|2k~S|pEqJUC90JtAV7}1R
z(nxsDG!K3jJh;1W9!8+U6BQAzh@i#y`y{w%@33cchBSxcH(v(V?nVA`4ldVv^0Sq5
zpOr!OI*{D6f^+CX2IbY%uE)Y;oOE-?UqR2Fz7=(WdYiv=@727&A7DfbFl#OQs0Mv9
zBUM?`FU$xg{pj<r$yZKrap6LbFk9E28SI+rpJymQx$1`LavCPy;<(R)q+Pj(T)Ueu
zOU=+_2_gn$H+kdaz&AA3uLoh2l@dW$UEViXzI^N3k-Lxn)t0;8VMyMHt6n`NXxwG%
zyYY}bf8rr|kVLY3ww@u8?9QB#YaeFR<JF09gbuF_7Ib1L@k-V!yo~xlk}YcCQ)dN_
zoz>lE-S|Xg<Q4f8<j+9lm@UwL_x1Kk!Elv_2z-~gEO|d1R5;7BvjsfP_|)2!NHgVV
z!SIO86NtV7Nr2QMn}l6m+uy~M+9Q?{FJC#hC@9axZ~tX;-%BbStX$P9Ih=I-7qMH%
zUFj|!Knfj3Ik9t~R6~{W=6hu%-Q-s0q0uQfw!Xd@ZI0J}`dv6Dx)$aW6sv0Vz5w!a
zOu<NWTbK&_?@zuOwZ5Cmpe0t_odPt&iBnvs9!Z4-fQe(2VxM8gjpEopyuh6_J8WeQ
z>wILl(vxQX9^{hGVH}9MRoI67s%doKwTAI?#3iVVZJblUvJ!Mn{b?KXt27gHWKnSI
zRXzLTx1aE9J(SBO!-M;;@c$m&&_oQvOdT1l`A^UOSYu;+m0vTnA-Mebp32AXK<|On
zX`}bhAwjNUyuMDM&j?cJ*PQ~$8g&hIK`K_)Oh+qcYi5{tM+8TW@Ez?2OVuT9gGq13
zHN{CuT3&?LTGv0w8{OU0#S-)7^Dq%)s-vbZv{kP`yhoCyg5}B>RG0D{<~?R_T?xG&
z+6A_~+{>sO%Wk#jikEi_=dS=I58Q9Rd7<00=qcmsYhz4NZfdrk=dbtefZjcxMV|pF
z47Hu4sDIGZ?`*dmI$&O@!i9oOKngi=?sx5yBYO1buMtFtn8;V>1fQock$@*r+Q0ys
zJI@Sy<<J6?_OF#tewYns1|_%ppD5gHOvBt@d{*M$s3>OXoS^=QaELhcEfA9aC-|#`
z231c2riOGiJDeGu*Vyw27TBOT%4DUyaUO_i4p{FFD8@Q#$56|P&&UCa)ZLx)g165`
zH`HPtZo;E3RV~Y0e3E<o9(vG6*H_}v56$A7T-D2lfiwRP`p9~U7l)G#0EF#1_-p&x
zMt>3EXVxihm}zb99nKBKs=Rt|;2Im<kp}`azS;OC?86rP=u^9HgCC)&5hkSy>@{IH
z*kxC*wa0wodx(LyS<DQFnR3Zz_SV0A*I-J<_>T`mH0Ed0xAyF?W8nJmLED~YEP5|N
z_>K=f5owZu9cAO>BL!-$J$r3<Pht~(Q9;2?Ev3)w%{z5J6O|;dCW3A?)tDD+B75A@
z<4nZcs8~%C`Tj}cB7=kOt%O3U#?Cng22AxRE4l<@OAgw|dNZbZgU#ucB!9;ce1(Y^
zP1_TOfi9Fg2;Seb@OJ5UtQ60CpudMVCGbnBoZKT;+ix!CC-Mqz9tuT(k3w{DXGLN&
zP_X4;lq1WBATE1fK1qE>;=%HYc^xf7m8Y-&+@5>B@0wUvA#WnaC3rP7&84gC8=>Po
zA7>&TpY?(h<@~qoM|1p5@Y05EJ@6ldX%dkP(Cnt_4LjmY{~LUN?Sh9H;zZ1UPcI<r
zmvr6YW*oc`tf<MJ9${oYhxV&;+^<KW&ZFYDl(dv-A7aB(*Vxou>#khby<<;mvP!Dm
zyueMqcblFpzF_JC*Sct%9%=k_3*5Se-P@Z7IlT5Ci-H?J@<u}uTJGwpaZte=8Yr9t
zckk8rm#_y}g^QI?g`y}-ihD3vv|mqAS}19Rj3e-g+2+=<Zt__ys`jm!=H+ADYijjU
zkK+yv9um^S+*6lz_^F~ZZye(;Jh$7&3^0PE7}96u!ea`rKfq1-JEA9_0M>&vU<Lu<
zbwID==lt`Hh*wQVvJ2~s4~`39@#+3**roJqaS!;z*rS(IHw5QC;yZ`Os^i6BPmToT
z`G@st{oeQBf?2~@(v|zVUX)SP%{%;@3A*O6UKfAkdqx7%fD#DqHYTSgwb#Bs_~!OA
zDpPFsuDv>GMnkQQ7r~drI8QANI(7DNY9d9jcQcM$Aq9u_im&(Mpl68fSX@zn{kX$H
zz50CV#~HD@zIuJlYSNDdzFzipaQQJFuuZUzaHQ%GrDQWzYwrm57}hhNZ!o%vvVY<y
zAcMcGSIcDo>v2thnML*>TjJYS0&3oL;Ut5GzqEy{XU!^i&3H5FCeV?qv#=IV3f^IS
zN54h?+}NWFiUCy+phjy%p<xo9+|v%~gOW~|bm|7VT|78>z|tV+Kv)rVp6R<_y-JHD
z=_<>-J0W;sA&!l0`!dZ=6N52}eBTgeTCgapy1{QfF6cDdH;-(l#*6H9;4NmrgrMep
z-;8qyW>gU-;M0x;HCJ^LWj_$Ic-?mt$mt(V?bdTR>G~+Y3eaJBilIobvQDe)vRk^f
z@+M=NNhM39m<uD5YrZ(#4&22`)2DRA-)?!oXe-_gGQ=C>)03$pAglyn5K@~=&E590
zv&aV*<zwMXZlLjseqkJn<ry*n<b<sJ-d%SP?J!6s+S7;+WtqKych_V@vtd{m7lVrc
zLm6Hc+yvXX$_Kh<WBm`6#aa@9-3m(sB`}5lT$2)UfR?fe_7nmBBbi8HBpu)X-p#>Z
z1!>3D9qV>=SJ1(YCcy3o$0PZ(5x(37U)t1Lx|i^6MpTJvlqEt0K^27U_9yfx;jeL<
z8mh~tuL2a9ftL&n)y_#hN?2vXrmw0kVST5GVFg!v!35t-`g3gKRDQ3KgeyAtM*Gg>
z9=gM*=2cL5G*_;ISuZV{p{L$scRGoyplxi9lZjZ2(X03yATQz+4;&N@xR$Vj%46<w
zo!wACQ#$kf#uawvBL8>;W0-(AwQ8oVqTX+gGT~ZowmW9~I~GC@y-r-i2-=nh?A_H|
zj?ZU(LkkRES=nd<!{*q=v-~3z#qoTvt6SBGJ%^4&af^p6bW3_wZ2ee?UI%rJ=)tN<
zzLf&u+Ow-lsE*mJ&P;RAb@qaBz7tB!c)3y()sbfYd%Z1E2Sz$5{yJHv1c@^YsMGsS
z<Wb=_X^7X<#@Ryxz5p(mGS)ZeH?(l7SHR%rbMFp%+D<I$@ZPFn*VqW;BL{b#S$C5?
zrJsL*F-=?<YiMCv)%a&;6<%<=oiMJ47WK$xUK7nrEC`<cu>5EDbAP{Zx9UnWZCzW|
zE}0u_hP{4wS7b!J#I7RMOt^N5G_yYF*TsvR{07{{a2yMA^2p7>#@wyNme3bZ+!kDx
zzjcRzvTJV+jvTaghae8m-5xx>O^1%Trdxw35)jebPBh9(wEeBY%Y%JKn|rLi#N_vF
z&7L;*%sYccL$@9V;!-pIw&2wfbZDbrwIbNGzyHw~W#!aX<BR|ct%DPy>q9&FpUG~Q
zK+hpOZDt<at0g>Y+YUI%pp^&o`t}*jN%D>5<f>c^x|y>!D>cGd`Rl)fArrlsv2`c0
z>n)ulMI#8*Nwh4PUW=c2Z1BX;?qP-!nYMKr5GUAEP0?qS@=De^Vwp%nD*i{5fZwCb
zdyv!y>uP0H2?=62Gyrepns;`Lem>Wyw2f|z{p8d4pfWZu?PC{g^uHh4w6>&*OeHYH
zY~mx5qVqfZ;f)!%pZ(}CenVV}wCm<X$}VM#A@*AZIX1^AOQkFtkTS<U$dfjR|CiOG
z5?9lwMjtzjk-);n@i@TA;m_{3_Kv>u9luwRG9Y{M2NQVfvL;$m#gAn=h{`go{aA2G
z^phDpJ43W3iD|xX85F&IxF4CM=g!d`U-s`ojvu=LO%dHvVaeSNiWWWYdwleo{il55
zG~!jbQuCshtO>7D&NH);M#Y6pbI<<K6W;LcWAI5~gh>m8VO05$Oea|xYj=tExRhV`
z2Q9_;z?bS(#Z@J2VxO>{Z5r#M?`lr4F39|5W+k(~-8*{!_Teikqn-i*1f585XKk03
zMc<sy@0E><S3wh96CqNB)q^8d;JOc1_53JyphhITSF2=I90|04?V`s+AWr+_ree(-
z+*Y|JI~pDEjUP|3BJx}7n_Bdc<Iuh9fh;N#F4J#W&rzGmA?LO=0L~&*&sD~@dFJDu
z2mJd$t-LWX_SYhpGKfavW|`$v9BEfRC9VyhXQwZc$g|`0&Z~hfVU=!1`cgQvC`sAo
z@|&aP7aj?>2&;$r^pi#^9~xXE^RK!L+2;AnqT?U+ztUoYTL5r`o;#+B?~hy<?eu1t
zrVoxuOzH}~0kJe0^P=Z}$z>EGC3m&Kk6l#e>E$w|+CTGQwCD9qy^2eK3}a5d!=#t)
z{MORwb+;zX)#-&X!}OSu6OvI0Qq1ou!J!xQJQ-;}xH#5ahF6?IT)Ar^Co^%A;XERY
zXUv}uMaKW+n+QWg#g8Ff_;BRrA0q9w1R^zf0z*lgO$bON8%S-G<{Zyye{yH{dF$5h
zuvExFN&57BrcaNS4~Nyr(THm=)?(*B)BWj@_&UIo!XhcQwKTKCS@xDUyFWb?Eg&{c
zYM=5_&APdEm;1Xvoe%MPY<hhO+l^S<wDWE1*WKsxZo`4*0R=6N)xcq@S5M^x<kjD<
z>p7Pr53Yp7oZySkGBtZC|8Opc+h|R$xy=SCIX&k}6-3>O@gxj^pDf!P8x8(g#4pi_
zR0p&{9hf9J=FEeFr~d9Sm%&CuR};=RVDoG<EgFpP!B{dsNOo(f@{c19vL}uTZtcfd
zf*6w@2$O>E(mv*a8m{q4{b3ZOq72TNGKCQEQ<nPip-bR9e_d`T6eZY4_yrLZ*o=@~
zDP^{3jBg(UV~EmZ<gKd%+#oCrKaxvePRwS81T+)SJn@yGcd<e)h}q9a`D+V1Fx`9}
zvxg<dM6&Rybu;l;oL^=43m+nU+O<$0K+GYo9LQ@h&@?j6ZnI0Nogdy%y90EBKbifD
z>{e-SI>z%nk5tV$0Le^cdYQd$vL`ntFTbh;E@E*T3zvB3xaj0>urj4@&9rXL2^1p2
z&j)cdJYYaCGO5wW{_UUT4qexMA!wZ<Rg{3N9A$MX(^L&RBBkS`1D<l7TjBo4<tT;8
z*>3%>T#jEt>tF^aK(g|(4y<+VuJDrjIET^<bYDu%p^Oc3bN1T013bF<zrk)^XWv0)
z4UpWb67*$A+|Y7c2e_U0qb89G0TYi(#u*|9E6NXVwES>4E$CK`Ct-5D9NWgMJ~7hw
zm58c?5lu$VH@ln~xp0MVC}7#))-mKCM$UepCOG;DJQ=h1(8w8&^KU$q1cu5Qs+tjf
zCao;;`OCCsQ1O(q2aU;qbHM|cCz>NSET=sMe@h=?8+c$QM*dzNQ6)X9z9!s*M0eQ^
zA0@j!dnOzmb#<~{a7VCy=k4ewW&8Gg=*fk>Aw4a_40yrbo#UHFZAt(@3FWXeU){m=
z>C;^pAiqgUDwCDZR9+viL^uFoK?i*$*Zn*-ycO$42|PY_18!v6Mqy^;^HTA24;`nh
zL0TqWxG5jov>!0@an}nyo51AqjJN>q*x4PH);3@Q^GXkIHTYldl}xNeRt@?IW*P5A
zMskMPX-<&S7i!GS(I9qpRnWU|N8&f6ny@3V@>R|O?iW5^rnzo@aIfP6c{riEV;_kB
z@VzSooLma9jp9p_B7!aTz(>7)nB#v*BwNsCS(9n7qnWCwg3ByDO7a40OUMmZMXI^_
z%AlY-4~g#+GG0`9<@G%IQ*g!`z90lzCK0;0WGLtV;u*o*4MgV&MAvU9jw$xT46L{$
zXr^QXt?*UA$Hby~WnNIBDg&6L@-HzgJKUW5a8Sb|U{4moeeGj^;tEYS&rJ_9C;D**
ze!*imL<k-*xIi^at_kL-+JO?8<-^6M$~E5|+N<nUEaNu+Injx>atF-z*foR_ATmo;
zxCErIz5pgEjsbBQu0AKY<bZ7+0=s|6^xy!%5!gb7Ri$BZ49$JRPQ8Ae<>w*~&pu^{
z!LsF;&*ucs?Z_x?PaynpTbT|-wBAioN|9WeNq+@htJ*!Se12`kDB7+^Nlmm#%SVv=
zs6TK3Ttt~>_TBE~U%IJBZd*`S<iL^@nP$2#bUWgWrK50tZFNl?xRrMubiUVB{p#BX
z##K8;yOQcIlnLQVa9^3G@7-?M&xs+Y3H8iAU~^$r&$-KqNmP$PIJbTCF~3v4jfgW=
zq@o|H=gAoni@L)1z;=P3E^8LBNW%lCOkkl9ri{W_p#mgOoAi7L4<opHB%y$v0#=~J
z5yLxal^w9c_YoxENW?eR23A(J1g{8{Q~@mER76$g?RWkty8IF3Is_KtPY}EVuz-MS
z7fiJUpFng^JWyz$NKs>%Djtd<9(!5ZDyuZx9G+nx{KKCX_+zAVQ2`1qMRY#6byLi=
znf9YGzKFwE*z`Q*8m0Rn=PR*)9367d>+n&~53(mbL2-e|M9z;f{>4G|vZ(*j7+<@B
zO--Q-lv+G{$f~66?3(_NJ*VMMrJ^~}zig@nrJ0L&4eoiw8$?BHkudm)2$$yrzU5Q$
z5j9e-YvSUJ$^`J1ZBFRto{?+PgScwfqdww$5SX*|a`(eC6e#Kt5P~~8D-pwyEH>t)
zquo)xz2NKU(&ym(%KpC6yEnJoFc;_S9Y?y+XK&RGo2)tgD7RD((k_mnZ=9&KmkA@$
zVclG(mswmsB^;5CC6fuYQ|2u9=;=H{yEgz%irVv5qhF@&Uzw6PkZ&ICzBmVdnhf&o
z5#oF>&gopU!+!S1OS|64q>8N?RaY)Hkp(|8IXHW1yFCcm*XBKlEiHwaXOUAWQRRij
zy1A9TO>}i_x|bxITfrr@RfK^aGej#9K*%u3_XP`pHhFo73<ol!O(eAGjN5|u4{9$p
zn6s@U0dKcOlHkN(wM&p>il*|M#lg3Q47}xbN)b5W-r#RgSG0};09M-2xPcW$G;a7q
z!6_LXeyz;A|K1n;0&oi%oF^U7qd2HknPy%-Gbj$r3AMe8Qo-N9Gg#8GHI?T}S{P)6
z=&uQqt9Xku%|%Osw@&JCI}u_{xi8qGzi%Bem92tap^45!*ERF+4|YGg!v*r4?|*mj
z?O^|WBM6dthI~$Ts+`OT&JS<N!RC4M;T|wA+!y4HXP*P^YYGcN;3Luwy?IIW;u{bR
z0KH{E!I>yk3BNF3Vdd3P@_f`MVj~QwJ_3%T_2OFt@{42e?&y^d`5%nNRWaRHyTBqu
z^Vn%|blKgBOTiAoRhhWo@`s~8hWC@e>BD(1$5Z$$bCyI`-?aH67`;@wmhsR(KYbwj
z{ms6s2o*_iO(myMmhSFo_tr#vEoF7!oJE)8SZv_k5oEd?7gy>1(G{vw1A!Ul7R4Bu
z@pVnn!zum2+o2V(1^k_I&3_(>jtn0nkK0Iu`gwZd(ddNv-Nmlvy#Vkxb5>LQgp+1Z
z+qn-$AvilI*BVd($f{@5J@>Jvr1|#2g8So@)~lE^I@@!1q*;C!5y)vrDn)Z)l3ibd
z?U`%FEA+x+GCUvX(!K1AzJ8d|l$U9dia>P_fJwX9qimubS(%2T6f?B5JtFXplbfdb
z+%NCkYS`Nz(bG3`QWeMA9woiA{X>re9!c>MHOsZN>pu3y?Y8<g&0Bu$U7+j<e*wGq
z<h|`7+Y|j$k#i+E%^<=^9x46+(q?C!!cisZS@*O(Uif_>+sZs7mk>sZ$-Gz9M>=r=
zQ5OXaH>5*KcY16G|5F23t-Uydzd>^NoHBxxD8(pos6(&cWWW57z7E;6oRDNTQ`|_W
zC%>k`O_<{6Qx&`e5`cYMb~(14Z}%0(3Eh=`=I@1fM2W&2Gh4vwzD>aEXW#5DlD~W+
zrf~LfhUAD1Ve-Og^*3Erp%AVCEj><Hlz`^HqID(SsXk^^Bd%fik4(uD`*`Rfrwtb~
z86IiouY2sJ!@Ro|rLL?P1%(r<VUgW1$~P9Q!tLaJ%Xs>kpl3&iuH98F(^et8`E{15
zUPvv(aEP_ufgztfk+@tXmGmw2J(F>5HE*1XKbp)Exwb)ecRt2<6%o*>U#F+ZGUwiH
ze-1AgvkI1H@;g(|Ybj!wJ^~LVx^ZpQbk>Xjoe?^QULNd2jS;2++Amsj(}bs)@O&_7
z5l6KDKD4H%M-cm;%nyF1N&~-zR;R5{OGX6iD^aM0p7ym}SYfw38oWns7w-FReQ|ST
z6A|wWa6a%|-L5hS9q*9db_e7G#w}tLEl59}xpObT^#W0Kz#wHrNEtj2An-mtY7lDj
zmwC~F$A^n*7DOo`DBTGX7IrID01zk_{o7vk3&JC$1e3-z2B3}q=D0hqn`(D|y_<ZK
zL!r0D6-FciiIBD?I!q-5F)ndHRKy8=pt|umC%qZ{V_cE|P!psfZK(ml9JbYf$TH6<
zv0tHWx#uz>Sh;te7wk8Xx8J6Zi3<B_*luIv6hhMT>C13Ge253WADvr`CBgx@LEu5y
zs4~pccLgWv<VZEcaW@F@z-lEfb@t7{i-)v3jAiJxsqg}?H%#5&=NMn+hBJE2ZSfY)
zs4@}<y{;fR@a|Q?(FXvBN&rFejueZl4yOfxP!=e1px-|35^*5ooq>P1MwWR9io&m2
zqAUhXjC&&P>eU{?2}B(urzCmW+R}Il5>#%HUnkm$lR|)}xI)n()gxlB{-f<-<$mlT
zpW)bTNN%hIx7wgGhajo28~PsZcKd-#k>Na4)#l<74Tu^DPd!cT4?o*K7W-nWZ831j
zHO=Xx9aXm#4>TtCZu=9#KXkS{;!w@?q)q0Ewd?J7+{KsK5Yx*V0@TY2rzmgUzhMAZ
z`f#kd!Hg~Bmp#Y2PG>+$uHq8UUFuF83hg&lwTSjnwE{~(6FPBFTD~bPaueYj2jC^f
z^GLqJUf{bK_x5vD``N?3V>5uwo57=K-E^JXFgmGlqJS5JzjJG!2A(ftk0^7qp_oFp
zSlTOcDc`H&XC<7x95kcGAY&gp&JEbuRe_Ge)wPX{t1&n9xfXmM%**kCjj_~a!^eTC
zt)TIz-vkq^Z$GwXb@KGpt3e52wQyh^`c2R?+4l@z4J54^Kc|Sz2%NIYcU>Fo8YC`T
zPk~RML`Y;h&i*0D-_3WxXvFJ>7m@tOy{_55*Q5LRKF(y^AwZP46&<6$4<1URgKYS?
z<STiF%)z<$1}&Em6h}tIn9s%-ww8aF!ta9u#iN8oX_7b=O`|!yN3T1+@uQP2Q6&#C
zjqBbIJ_vyZc*x**WjcIRe8<OwCx7#?`!NJ(t94H*%B2{v2g}6pMi9CRFVuR1x>^zY
z{TjStdbXllk5d6Uf_6}|F%M`?yWi-(*x7B{g>L;%T^Rad*AaM7pTlP%zYr3~Ja<sA
zYGbz!t=v4(ii}Y4Rb+|>UchH=uK3=a{u#fg>=WO#v|<fpq!h$~cg6%gHg!9KOGp`o
zTo&6cOOfFbzqp-0@E7DyWkWXAc{C`Hqf`^!K6rDLzhpQL8oIFYQNmCD$!-5RVEA-1
zzCvI^7Bt5~u6byhOPNADo};GvO6b{eEKP^Zi5DSkbK~VMvyxtL{;-0H{SW0R!|dDS
z=7REPu>7)ed>PP<q?&!Fxl^Y4?1ITKu&K@|NmddB>8AS>cZdkj_`OdF)y)M*&YkM&
zXVEVAIJjvnPgqUNonzcXV=>ZjGlELROW1@9F_Xh?WoH+=shiFb)e{ng7C){6=#RY>
zKt8i|2lIF5Tfv>b`3`FE#>xo=$^|b|HF;T3^4B((@UgdCG8T0T=xcbBTvPIPa4*Lv
zcP|o57_6iaf>{wh&WmpZgFFAP1CDnL4>(<>Ge$?Z(6>DFnh*ZhL$hBJPk>R3)`%Az
zv_%>?LN-DFplp~oLOWvZa?FQyE^=?TRv;q;+DNV!>Y07RWH$ZTYtEdAD)6DkMT%5z
zLU53HWRO^;g>z29+WvV&TZzU3i6*ofDgTvq78gtno<bCcig<(<Xn@cS4V?HBQx!SY
zE~io?hw(s_DTgc5E6)UU{=_Z6l4F`vy{Z;^Mm(HUuk}7{NN$Rv=i$@t;B8itOHr+R
z{B|Pa?PA>UpJyf_FN&B?s4A_cU@Tre_Ba#zlN*~8mDh8~CS~%W&7lOGzk?&YTWn>6
z;bLLkD$50tbZM2#53^kUna(iVTu|x;9o%gzkN^wx{fF!e#b|4UN~j_en@Tv}1K!6y
zX}{>(qvH-iFL-ad`&Tk6I~T(zu@SJ4O=^{U=%{Y{u>K~O)nS{NyN<RWWP5~B8$YE|
z5I%l3m|yJWDDJcbKc!5b8LtK3#(jI+uO%B-JQtLdZT)N7cX~b8zYg#iS|H&{{Abc(
z5bu<_Gn)pv#Xqvg!2OY?4a~C1rwwO82?IUU9<I+P-3Bn1LlDbE&bG^pJl)!J01F|H
zc!;ox+h5!B_}s_<UIcJ*q=3zUKYrIfkx~63G8rbsp(*mW^GK~WrVvg((9f8WUiGJX
zW4gGT67(Vo)t}YVMv<Z;TIM@x88{z5wI3<p7!_DgOzvhZ%s7_1sN8QVkg0bJ5Jm8Y
za>lbp(#^F`+b7n0+X8b?J=h4PZO?|C_xpVNu~<x`Gy3#tO;T<;TF)2P+iMp2o)JD$
zk$^X1HJa<Mw=MVjE>ft&%xWcqmR)S0zuh;7nU{Vj#a`B5W4kIJnaBhwfINgx##Rt&
z<>i)wa-k_D2BYC|9HE}Yf#6_;M4wJ~@+UuS34c{qmVkNUa^ZE~eZlTDE9^<6TEm9|
zaB}n2ET;z-**|B7ziF(8^HtbDPr2b)epHVg<+tA7bRe;fMA0ZDGzP#E_QTzKYz+xk
zo<#x@%n3Uj5e+M>;F9i0_fS9L8|@l%P1aHF3^fvWol#X%%{!rZawI*O=E_dkx*cJ3
zaE2Q&rMvd~s91Gn4A`v@GQ^3~%+H(Lt<EE4C?!E5kJ7M)2xl%^?mPDm1xdJUU<~^7
z$||nab-8T9A2+(8c~OPg2gNYv!2+bPEz)+49zPq?pD;f`gc4ub2g{7F^x($G#2bAN
z5Ymy~)s``m$EEDGDRSbizGL%1h}OhFcoXuru-=NY`F~b5mveR3Q=(^7{xiETuajW+
zWlX*a<nypV0w7^6P{Q^1@}yRd77A8XRaZ4fD5V5AA`X)=djajBQ(2IAROBCj!D$};
zLIw;LnRl);Q@~w#mD#~v<cpw~j-V<cas$H)n<uNS_8&VjPfjn@h`|Ddz4MabBUSU%
zX<fetlO`o2!b5M&4_fQIv5ENxG)Bt2&fVQwgUbK#b7Ta0c0{TuKAN5tp+eLtrv^Ls
z<IY?8f(d-I;rTbGhft7`UnOcGa$IyM2+0#(7#4)YARspi;HIy}h(|ucr{2FZDE`4e
zZ@aXCv<SO5aT|#*1dIxfq>^ZmY5H{u?rPflitGrZhgTF1!;v#1Rt_UmsTnnv7ue%$
z_v1aV4omx_oHORBSC8+#B{)5Vy|(2I3QUT7H1|`l!j1s=OUco#ep@6^upIspBxfxN
zj@;AhwfN&07td&l8L}vd{oUhXgc+P0Q{%84lbp;8?KR$>9q;)t2J0XS5^{WFdnsd`
z(2SY8z@}Z^^I=|MY^-HE2{bS<L)~ba#@bts^X)?jZZi~wsN6SyvOQo@&xet;6sVTh
zUl3s2G<02Yf&K2Zo~<}$ScmcIrWVQ&39SzF75(F*JKa@J9n^~NWJ0{AB3=QM5*3~O
zO6tTH_Ub$j?;Ok|)%!X@pkh2KfRe(>yM*(gssV>kda|OYQyy|nhxKUXjYp&O>i5DV
zLg$zj6up9058lP=)Eb0M93LNi_nL1WED3_H#+)2KJZRn(c!#`U@K3gtC!(yhx$b>;
z&7s_uW2dGHNd*uogSuc4B=>T!97CB#1XwW#5^-?fNsJt{-+O)BZewv^z{es-Zc}71
zHb1xX?$d84+lqV9gM?t+@L_b-3HU;V+kfLg`_q}>E?DjBQxP&v%}R@4^&fgx(3ILk
zC-W$<3L)7f!DF0-bGCN}9)$YGok(86XUE&))PmY{!VzKf`UKAzx;tAr^1IzGrF%Iq
z!28rhjwQLr)K7^ldx4-gN-SqKMaIl4XGQvb<%8zO#-@{2X3XwmBj-Fr#j*Bi0BQYW
z<L>0Ue7<C1ob>OpQUr;PQ|0-;y&hQ5T{%@MN`%g;c>Pst?R(3U6tEan)==FHb_pZ}
zHiyrM8NG*FUf82>B;haW-}3X3ET1knxZ`(7DjcFDYOLQQrzRB^YT~j!bdU5;DjWeF
zliF*BV1H-v_wQNmg}zCJ<MjKA9fE%^C0PnDMm+_>!o4`C5SQQaZq~V&<+@<R$KKQ)
zqcsoqv|v2y!Q%tm?h|}Jz%}?Y$fh!*^4azMKXjKc`Xo#*9gkS+BU!UIT;*0i+g0iw
zND1IwSWM(0Ab3%|Z#%;s4qLJm)3O@Ot{fIj=W@64#L)7=PC{hD3tZ_I7SY5xC5x3<
zSZWp<@50mFhNFCQNG;5AfE(vD_eFxWxej__uw`r>jJ%mAx>JVnV<<ZaL@Re1f&(#u
z{e6NfR)RFo#~y`JTVYx;Q*+)<KG}ViNgwQ7Ra2*l_f!D?G_!Du%YxXLbutm+Lde49
z8e2Kc4Vd8XFd7Xk6GxAxvTXF$>En#sr^=lR3os7@AvEP98pV@E>0-fCglM>9vb$x7
z?=M2}5z}!dp+qz5I9H%~pddzl9d2umfLkWGBgWDMG=U@t&8r-x(;M8+ur#C4Lls_A
z=5e^<vfriN)xvg7J2X5~nFUBg5ZXGwSDolSLD$#V_?am|##os`w0t?*O&=Lv(~dSh
z%lujF)><wg^C6KFj=J(jp?gQxFK$-eO4F6XXFhL;bNZyH)t)#IftqTvj&>JJ>Ucd~
zjZyBr@Oo;7RFjX$0Q~mD0(WvrIKT`b(|%l<n})g}Y8Lem9z0A%Vy?Nla1eE#@0PUi
z(0UHeCFDLe2D44qliaA;T!4q3ymuBsyw<asWt*c$xK79T3-VPAQ`z|d>M61qcXf09
zore<g0}B#|a@`Z1RrPZxKpDWy1KQ_RE8}J5ApmVz+^svB9*Dy|X$lLFb+${1`w)t3
z#vI*LnoKwa3<uwI$uu{luW$Zm8!OlJFL56n<bOpjYsl6PI^3+8=9-;<>d}gJw#2Y}
zvz2G?LcLq3$M*Js|2)3tLbpmcx7iN^-xEsA%;`FSaXhBMoZ;4lOMNT`gs+s%vHZ{p
zE-tQYY+<+pN$2MTGb{h&mXGs|gK=z%7DhgtG_&jycW}9HhvI<Q^-htT435sb&UZzc
zD{xrxn(081gvw7fH=X0o5v_nvhC-kAF9u}}?vIPzqFVo;Vo~6Oc<KqLF=30Zc6SE8
zYofe6wRl-@TI2p6RO2Uu2OKD8k*bwJ26LoKgTbH1%{w*295Kwz*G?sKA912Jql~YC
zSG(KvG;Er99Jr&;-S%}Z&U4R9r(<i{g>18=$juFD^#7S-o(c~oZr_mMK`&D*EL0kd
zi)LPxn-le4Z!%oC_z;Nir<>zuxfNQ}Bnm3$Rf`Ih#gx^$NwARf5G3`5JPtW#w+XJV
znDZ%?hBZPOCZ7T)c8+;)gd4O6zh*8-+w|WPX2W#T=P0*WJCR+kWsZjIof)|k+;jaq
z4xVjJn?O=V$Hoj(I>D`%#75&&HZJ0dIP?5T?v{KSGh}_Xp}+{Yn1xrk?64-y1RP`%
zx-3x4iwu)l;T}LTGTGS2T0po@%%c~&7X6$ot=j6gbApU7vu?J#j~n>y90p+-eEtmg
zuDoZYnKCTUMZ$_ePMX{|)wJ?Gv35|NB*<6^)CaF}ujtXm6JG~d6#89$UgoBRlCmR_
zN4Du!<vN87921cha%bcJ%`q2MxeV<S>;Sn08J-@JZ*t9&QEs3Xc`8~Rend$T{=@Xo
zh5^95e1@CDBI1@sK*IqV3VxMp<{amigc7+>7qwCF^Lqa(cNfSXf)5ADCOTw^9<a`-
zrgDax6n2dU7~-D*Z7kKi*5s<?WNhzyL`rOGaz}^76GqpCRTs$XHl5CJbz<^|zX{^{
zWF9qEKZ9Zo_=+H@Ft^Qi*N7qnlM-PFkqP;q5xIv1B|yg|5VfMt#loXDzowzCOcfW2
z;hG;$a{H<}0@^L8MR?LN4VXJL+h;1=yBye>1BengyE_S^J~_qhsd@wYYJ9K;D0+C1
zToswP@d8)Y=s$BiQ4Viaox4J!yxjuIF^evA*EG=x!4u`4@x8*FlWMw_yQB4CXw^EA
zCzaNDCGNqQzI6gxBl`wcD?P^*dZn#SK{8>-xVuO26e)rl17eU%1Z5X%?$7bAY9}ti
zauIR31Um@#9CPUru37t-2PAl;6;9)_i`-+U_?r%H0%Onl2!hd^Tk571`@44JbwQ?$
zbMa8X_&ib=B>)wru)%+!ZbdH--2%ei5}$#C5$G27Ox`|j;M>4S!I@xJ$nTh(&ga~J
z4|m}`DC8JCh-_-A``@FU{nXjbTj@K-wv;t6lJCF;a>@Q~#=9LmG66JG3hn@R#GBzz
zpdP9LV#Vr#FLHaXs@~t-6<&olr7|(J3&A~eFV}6G(FAq=@IZH5VzjDQ4MuXu_uzr?
za^cY64!OyKVAgeYhqU%+6%LFQtE>}b5HEiA+wS@YoZ1JnF^f?@Rg4&^a(Jube*%Fj
zO%@hrtpHq7y!&dq3dg_V;E;YGK!iknqf_w8?%mZmp=>HfMmB^;X4Zkhum|xLV*?Qh
z2&<<eK3GymeeCYa>5w8P92%t8KFvs1jER%!7Lsa+p6vN=-6egZN|GC1rG#4WUb6D@
z4so}=giRtWrw8oAu?TkuH7p*t8&`7c_C8)J+-|->`*!k8Hn;Prz?y|9PE?`AT>;XK
zbdF$c5@~@#DX79c6o?Ae>QqW4;)6Ip<LY3~onTvm#D_>R{&!Y-4sg@t6N2xbC+eDJ
z@|#P`DzSZNXGfHm26KUy(muATVFR&5)ie0NX~FtWd}E#zExF`HGWBIK7UovXESryt
zgFRmI%|fzH-2geV070It=(6JAgYc4ZM0(KC`RF{60$+z#1@7%`TI>_?bCbCtbhnJ}
zYqH$^f8a1jZ<*1)2hzP<cg;rN;V{i&miq;tmO~N%Ol$|cQJ3LWP~dUsUcGL(H*^qJ
z;k&6s$-rT!l0@c!CBb)N=t5bQM%X0QOBwYecI@^3_C6DMoR<)SM=IgBaYfLxtM@4v
zZmNVokytgwFIas)baREvJ+f{z^*BNjN)|G(<qNyHx>x^4Po_Dwo16QZ?-{}@REzkt
z9U2eMow=olo2|m|*h+X;Li7p>9^tlc%H0>w`<~Hd^~v4{Lg>rC$WFnNVUj1g#!LMV
z25;g}PB3XImB%a|>h?L^ca6Yvq&15$n{|}yC&-|<GeW{>-b{Gh8<Je++y2)hVbg-|
zNn4J90^$5!2D<mp=`axAsQ*zeT^K`u)ZqiiWCN&{Yi5pgOV9P~L!rhY04^WM_LJT8
z+kIm}O{}z-8Wuc$E*s^k@oonVjn1<Px3q$b$X8yCatHgm)Mx!QI=xVow5U;D@Ia@T
zsRP`Y8+~Vo*G>cSI&G+XI4m`oN1B`7LNVYB^Gu<e@m_c<vPoi%(rU<;1S2`jJ^F<o
z3t58|i2BHr-897IpX^)3b6*Us4Z2aLFxzAgbC;<n#Lpwo(8j6Ulx4mwaI*~J0F$W+
z_I)|OvocYQ%{ATKiF%bxGam1Nw@67~flI5GYYktKlO^2FKur0n&yRA0XZf4A>qr6V
z@YQG+J<X3KQd8_I?u|{EF6jQTultU{vK~DZI9=rKn7*0r_ecC-Ti!3rY(K<J3E!`%
zq;frJ;{LfH#wRjTIn}*(iN7MTaww{4Ug_sfJJUB7ZVI;qvx;mwevFIG_3dNXC}H$~
zlA+l8FO74b&h$M*IE8-3wM+RxQ+T4=zNMSe$48JQ6BFK#2tL??LA`!i?9<98G{viZ
z)S8;82&+5udL8is+fmhn>wUNY*AM=IegCk4x3+O2q0bz-or@jfDNx1{XTSu)0dW64
zcKvcVae(b&pR=M!r}HIc7yM*bE(E_Jm?s5O1?-Ub5K^;pJMuW#!cam=!b+UD*Z6J+
zEVRG8%LPK1<GO0#_b8^6hK<;_RZ>`yTUqHXxO^z`4DNMWcYCBNGZRCkKrs<oIC&_w
z45lA&G4V;f&rCqsNSi*uvzCzr5Fw?r5wN_!<L~#{lRos<3y>lICVEzidA!mVQ&u@o
z>EcwfCGx1G<OxsOPrvk!ja%PSqa~{VH+l#cQoxiu-E_Yl{9peDMX~APGl1}nl%f)Y
zN{WN=oq=}1N#TRABgBH{AGbznO9DtU!u<Q~E)>{h(x@NWqA7!VoNS}1mP&NKQaA})
zr4;1znb|XbwQv5(BT=&&K}!^z^ru);a%0&vu#xO(jo4+KeamuFjxcsZ2^oOp@@DWj
zhrMdQ{i>_D)dq1aku3tO2No;@``6=a?Ujs+cB+Fh88i>{49TT^(91RXxhhaw_NqPl
zXP(K&rt9NP<yC8?A#nL=|8lAKwIcu$rXs{1$qhQD0RoL?^s$WeWSthT9^m>+L`_rq
zcs#ZYpPdZqz??qY-B5#ag%7YrJQFjTBj`V>xaiNdf8F2~p~fMRDTES>jKF0iDNl$9
zb0S&P36r|J8F2;>Co}pV5->G6l}&wjliPI<uH53H<Uvp)s_WgacllFq%W<X?wCBHi
zRq8ksFs)4VHzaEFO%Ctb>*3uK&8Wd_H}EPHqBgyD`WcV57z`*ng|<WC0htk<A94?U
z8+nvr#-hbl;46LeryhIM_`p&giX)kstV$+!Qm^QdN@&b6c@g}IO%x49T|p)!QgS&Q
z1`&=|dZw1VG4sxeo)Q*;EQ*H-x=LBa0AW+@IwxAQ5%`+ee;Pm|kteFvFD{j-(dewN
z{Cx`JF;ynTlSum6H_=hn*HbJit0m(>`JWJ4P(L+#L@5I)=|CB%eno$<uf03N4}stm
zJ2j9r^tR;(+S4)<Z$JcxQ^9v+nqFP)O<{)z6vRrYY2_ny<fDUeNwU5A`O64&)>r*R
z+`@0*-M)@~Px)p|$h5Uebjjf)*?9-MLvI?{`)m1e3mTGy%Yl2^iF@;yB%=b<)!4N2
zwcgv^j_sV(if4O#O>>L{Ox8&%)UC|J*B1wW9~6<kDLELPhhS<^OP^h7KMM(b@`@W9
zDyD5h+X|_Dvc9uF{fQ99Z=w<+&>i`cod*MFM_H6LyLtt76waRzl&8zcmH*Pd81{g1
zt!}L0^z{%Gcsj8n&s=Z+{68;v3pUk;b!OOVXc2pTWbfbE4@d#B7Oyw~*Wq1G|JGhf
z>J~OEkM0u=@C#*`ou|95=kj}wg7wHX8Gz_onVIBGn8|y)l2)EP$Bf4{)V^nry<OqM
z^vJKmSuTwzB+gF70=TZuP3_E(if`4_VIh#!$OoyL?i#Ic-ufCm8<(BruG`mlh7oNk
z)?CI{>NLZZcJn>sHi<2rRvdtTo$L;a{LjI(_fB$Oh7T}yQ>D}o?>C#->`vDu9f^l>
zU~W${yDYb-=J^nD0d5Oli-RKM1SbdPyAz)99V5U@vPV6lfHXtm$GG%YXzG+PR@)NN
zPG$Q78cEODTb3}_I1<-y8I4rde0S!PjHb}cEl;`qcHnAODixj3^uWBOnZUZiSNkh*
zxU1e#iZ9Z#Aj5rstbca$Em1FoIzRxR?E!W6C$KkM5-LQRc&k%}xZ^HhB!XLL&>{`+
zsvT<;d2{k3uHQiaT7$!sKtfsY+aBevx|~)*ujEi+G!y658eQb5M5HGjnkXVu9|r}K
zNn%-=`K7Nr|4zTU$Ho=l1=1kL+m{>c$P>9nLGseb=(6UvWe<NQ*4+iQu6mijN_a0!
zND1N7U$@8b5%@rx<4&R$n)RCfJP~(l3r9hRWfs0}(~kCcXj73mogzoL7ek#`Dr>lu
z$$ZT<(~forOWESpnwSYKFBBUT<HJ_iW3?*jC@=TZip$SeE*lnv&jQ(cIIrwj6v)dy
zvAuix9@MrOv0`>QJ}YTBDh8hShOJ8quUil3&#QDfkdL4ruC?E5g`+}Ye<Umy_AKA<
z!uRaOoqU%sdB*V?l4(QH$WizF2liTWIay|HO!6VPJ~s`?b^i`7MWzkzSO0BDGW0dr
z;8~OM%Wu+6>W=R9P%~BSI?~M)PDpg4>K?J3yI&TSd~EHB%rZ7-J$ZzaqCYANjuU`0
zx_XU0{PS==+e-3Kv<k5``v7<UCf_ksb>zsztB2lSJVZnGaTC7xJzk*kagZtgRp{qT
zov^nn4f`i<st-jPd|jBF<2$+OA&J{~v7Vu?5R^<@n1(DoWFPnT-+o|{v!r=@I1I^7
z)LQ7|&Ilh<saGUvKw2sJmJ8?+c7jf>MC5MRyX03VMwC$e;y|~PgeXicuwRDbL7$Oh
z4*lEyvWM>&NJ$rkFUsWx$GACpXZMwI$5=-=iXc;<Y$4Vdp|!o;%1qxeUIuI8_98d#
z^?#1ERbA2{0*lcZ-@#p^PcAoNn?aNU{MS7h8Vu0CK@>!ME0q|&DadheUB~<54iP$z
zDe{&NxEeH=5#QU!a0UcBssy!%Pc4;G;GETV)|qVfE$0CVXxZkc7T0z5*3GHr$XTx6
z=`?%XQ-d68WV~VkM5a413mrzu<*vK6xL>y!CDVM;;ttU$Tkgq@$~MQexY4Kj!H3|?
z!aYEiBqkuz<))L}G1L7Nk#nI<qfbjU3by(?ySuzqyfuQ)N7%5=bqpy0;eVA*34|=O
zIOgg<_P-j9X^x@`BX62{V~RWdLBC==L!W1XlZk?P{?-TfH?}vT8(#q~&L-jgD2|tH
z9!__6O9m@CfK1?K;+g}Hj793wU5*5PCIpv+cIsic^oM*d>TiZQ@(7n22Gj{Re&S^X
zq(iENLK2+5|5$cO2vt+Mr73#a-ZD1P0gRdKZQQ{k>IdtdVxmj!u7iAUeh5FKWD|-j
zbbC7;MKdg>s-2NZUE*9**2_(lFMwE)R;th0d@gW575FzCgtONdT%Z66_T_guZdu%a
zhI}@dOj|w!5-81(eAow)Jw8amrp6ZZYfc6gEdf)$L7#`ne|`LuYK{ew^GUek(!k$}
zOQY|*;Ta_U)CAEZCBJjcZx6eRF7rcj;8(;NNbt_apfLA7<Z>?A>Q*>TO!i`Tk5&}O
zHf6D+kSXK3<!N`^N#Q8y+ccsanwHmGvsM|okMNYRo;<6nCWU@xYTeWBweW4mH-PNY
zF{do@>P7C8EBs}J<gRLShrE<n(m6UX<EQ!A9lD-fjP;@_qvlupwboHb(aF@e6P@{-
z0WkD>_Z#N`^ZeS^Hh5{9tHj5$CC#)DH3UZpQ<ZIYJjU&~jW2?#*JgI1>zwc}F??d?
zN!8|D*yRLQP|Q8p9eDl}b73$xj#)g$?OfwK3UCR~2zKABJJ!8h;Ty+7C65*_7zkl_
zOi&GhQ=0mQwBpW;PIfkQDU85NRTCrV&%kUCqG6@g{^#voXhgE%)Nq;4`JP1WIyQGU
zJGh|1ttw-}#WPUbqC{%iQ9E<$9ffARtikZbHU^pP1p=PX)Y<Ou3g1VqTGEC6P=GJv
z?uto#o>1L@ytDxrgHYb=zUWcz*2h?cZAT=bZG7Vl2=yMI!OL9V$^Od1CL|AgSN>B@
z&6`Wyu{ZG4D8|BpCeQGcn_HA%$hh}&J4p$KsQ`iCmpwr%ob6A)WN)~O4yc7=^~K%+
zMs@de^TKpDfD?{|Y0Ro6F7p_F--(+P=?G<3y6^@s7r9?Z4QA8AksU|B@J|IemE)E2
zT@M__WvuNuo75{T87OZe`uy%V-w_t{L3PZ<lay_K?BPoK`VMK<^;8}Cf4a^)zRDtd
z<6~h3q}j00?wtu@%bH&7p$14GCIJK$ya^X_Aq7(i!HS5w_J-ZHcf^7y*n982?P?TM
z>}5s8_WM5PO{DDp{3CvN=f3k!J#*%q=R7A}9yY!x6`+t?ZlT+AoiE+ReuFIK^fFn5
zYJ&22{!f0dY6hGwj?xEP8blTOZr1)`?9RNPF(qD!tyO@TC0FUt6f)2Ap=*tEQ(L8w
zkSbUBg5Tmg>y!pdMmV%S@fuwHjz3RYALJV3<c>5ZbPT*7(AAytk(nb(*Gz9*qiCO8
zn4#U$*ZrxxVsc;%%t*swD+7vAGiA7KUiNpryNk>s@aNRQ52Iiofu1-i6LbAJXPC(Z
zexDf)><X1Aygqikf8bmzDR1GJmN7-L_Ml_@AIJ6+qoCZG90ee2qFJcB3Nw?X>43qO
zEe3iRdk_iU_Vy%DSCL>^YsA)pNk{PMjD7r%Qz)Tf@XTX$f#Z?Kk2LthkGC(6Ax(){
zz68zwe3rjxrhVBUD$uu?)e;#=Ak^3X+q3K&n3pVS2rIh?XudkYZ(VEFD2aByjCYPt
zq&@7<-kskAAC!$I2D~L9I}+KbSUL68e#j11n^094$FTI`KF9x+;eOu1e~CRzhPgzH
zIJ27M40ul2mDpC`$j)%TAL+|ZveuW7F+eF1c+MR4Yw(X9W6d93KeJT^QPSyfv4v{%
zEC2ZA{WYY;r0=0y>}?3bc<1Mp{`m8(nOJvVzEWI2>A864k!k+vEJ`5OXjwyGnK4yn
zxc5%*^B?Bpu+lb?rwyANu_PJp*uBCz&+=H8bP13oWNi?UWVrlF-}@o^y>q){hI_xZ
zAC0e?1)m+iU}Vdt`2#RSBAn1s;aHGC4!Ri{ch)rjEZGI3kr)QOkAmCitj71dS|5(0
z3`2rY&CObJ&K-G_e|?d4wA@mlp=IdgU<J{}JHGa}Uu^?RU**eBl5K(N1hag<)gPxZ
zRghR|qdzaley8OGl@&eG5M$B2eY$Ts+FAsKRRb^<vjEbGA$9(ldMl8XjKr9#mv6?8
z@Mp~9xnjy-0@ZjK=JM_CzNCfcLe|#Senz*ruhXqqq5nLCZwtXur!9uhMniF0JbbXy
zOn!p0VXke%fh0U->Na2At^XK~OYotD_+hrwmEgF9kN;rb9Z9Yvni=7X|1rW>Kgwgs
zwpbl?bPw2)b_7x1b7iX44z?91!_~WOzV%>RP-c}yKS?P=6Jf%nkb1$7zQmTj1_?ee
z!ewO!Q|_>z2GIj~C9xgMV^z~ocYZ&Afvm(bbSV=hldtdoYqCF<$!BE}?T#HYvc?b&
z%3#lV%)fY<b*+pgg=WygDg-IcaR2>qf0DD>MzqzDxkThp7$&vgK0eZqz0Ycl^h|SO
znFQJO9Y5q+USgrqWZ;(#w(0P3u_2rMo2S!%*_3G=61hd>(gj436YALF%dxjI#_(^`
z3QlX>%f$JQ_Y3~C=O{hVC|eBOSCxL?Z_#s1y_$3;g^%=^?z{bDA7SGTC!$6l&?-6k
zM1R~>9WTVJaUA`)-f#jW{D3WJvqES&l4=z&m0?!!pZ?~T-eT_zBlQMV(GRRD*B|NE
zXpccKOV*LvTHM0+?faX2!89uBlt(yg<_PJES%n5XGtYlG-ez+gu5co%G3_JtulAGo
zv<Vp209S*<Tg=$sd8U7VwS9P~%rmH~2t4=fA%1J|=6BZ5;A{OFY#_rOHrLOfCQ2&_
zHP_+6i`Xpa;SJS(;jY%hvX(X$48=?(!^;{Q;E#EXI&na^;JC*>#&MVY!4H_-DR1ll
z181wdcBy}GAF99#h1Uv1BN{=j`&)MS^+(<o15z!-1=<7Z)i0y`)i>L7lQ)t!Ak>uS
z!|y1GlIbRpR5)6q>e*p4{mIKWm>lMT<)-;zpWRXJ$8X1{1wmc3S$OH+w(=_0uos(|
z6PI}1H?U3E4e<RoW8pWB1z7KbpE|*wgFxk+)pISi-}m!5bVZVyb*SsHi7y?b|N7Mb
z_D}1jP891U*7ffF!@D#9U%)7C{?t#n9us=)5??-yA0u}-ujwd}O2{POXBqCwef*Ix
zn=C17Tm$Y@qC~^}(oKG!U+g)63_a8u|NRnw$hK4@F9c>>)`mbr2+Yg<In!(u%fK3I
z)VZ8cNo6<RgY8FqhGET0R;wO~g`DMn89SCe1Xg@*is)nWIS*|0J8HS2L^c95p^11X
zxOO-Af+UYSR}*aJO8=Tyi2mq~ZT2q>u`wE5TPw#hDgyfmT7U<9FAg)lp~GU19SPbM
zoFt9@{4H(lMldg&!x}!2T<+q`@M1e3vb6J9TUfEMA#q`Oc(-uOx7Ls7{2mGfl`@N3
z9&(L;>Q|fS;x(K-W?pc+uk^z?W9c}@HirPo+}H4XomDq1@n?R;M>rhU)UN?dqr+7D
z{^8^Ob9Zmh%@SMwaw_X!9NpxP?n8~1c<M`^e3j;);z031^WE3q`k!<nC>;epH%@!z
z-kSHvD!=YBN}?oaQgB+hGvi*)aQnpkO<UOrA+e^zAPj_&QTTkE|GtL}52-8WNd1pC
zQJy;~JH*yR!;q|NA=i|xu9Hvl**j8=*-A8-z}A?UUk~x;{=<GOB>;f|LYVHSUF%2a
zJk2ELhlARro|e$Kqx~({*sv7gORKL|2kf@J^jLo+o<`=egr0GPFo{&ZsKrlX*o#Db
z(e+>P#^<S1_$fP|Nq9_^?SIDmoXk%|<k-X+=??hPfAF@=uM{PySXeHS4=Cw_(!(EL
z@LLSVC^&Yca#y9j=ilN#lrGb`_=cyZ+lJT9a=n{<Q%@#E?l9Bb>aYQVu|k`XslYvV
zo`2*8tF?4Z<C?jYfew?_=}v#sKk&3Qe`soEiz1Xo1;FC0_&I+6r_r))spp)NC<j5{
zF0A#{(UvKKKh*S_+D88dt5V$t$3_G$Rwc4~Z{;t)z}6!;HXv{S@NoY|O3wvf`4ZG-
z1PVCid7WCJQ67GAw@<&oib`9!I2da;pKbiWCoZ<dP?4;bDlKuE?OsX`3$%y@6Owdf
z4@vmv>4tRe4AXM>2>L(vFquKkgS+r4pL@Q2LfI2ARM=k0<2nWb;S2sJcB@*3;}hMY
zLt)iC?)jO|zd0Hbsin!3)_~NG-)8&P?`(L-qxO+64eXKlRX+K`4?sxMI&=Nb5Ze_7
z3vOc>?%<>S8<7q+LYWK@_YyIKck>s|r6vxIl#Y6Ci*&xcclcL~&J%*9(^D88&OM9M
z+o{<1Jl?kB$RwoT#O>IggEf@z@AsuY>~X$tS-QEL0rJGhf#IQS|8T$Lq4>O!v~IxX
zJ|#s<{6FAz2&TAt&ydYJWP3<dlXV8!9*KwL$NTgZ_FL%$k<y2+JJ)^HFPw&g!7?ac
zbEM+Bah8ENgW_XvKlWV;pwOsAv`f&~m0{EY{)nNrUHEE(ARmPsv2u>-@1MP&-xH+0
zCc3qyW4dXQh+$iyd+IFd-6!;T&nhiVwl&wV>@d&p^0)K+xTI}`QZj;*&kWyw<SbV%
z3y=+u`D2k#sys1638y(E$PmJt_x<2|ywdNq5oRfAsS_NEiOO)FJ`;cBi-D(ci62U2
z6_`AZC1PFgjlZ{I;Av97np1PwG(7wMjrhoS2VRA>u}JAIS%_=}x2iduQDpGMB9tXo
zF4~pbe|-2%z-qzYlhYNVz)t1He|-2JkS%Y4a!;lcsG_K_EQl+PoD!byXC)CV^sh2}
z6cY{&U+!$M$Pv(6V(rXwzBwEhg@Kf}v?$O$UwQiOONFsb1_s?APapP()SU20$|~TF
zDKsZuUEs$x;i#lNRbD|bW3q<qT@`u{wT4?B6oXV^swAMHIeZ%-;HR`SV|3xZ4?U7g
z)P`SG^+urDO!rnxxCT%y9Yy8*3(AVi?#ZcPCg5BO$`zCVt`Ocs*fp}<&xx>C2Rt_g
z3Z85M80?fP{IU9QvIdx7VGBMnqjU!Lqpr>2oIDEfKSt){R(wp;72D57FAY`1Wne!U
z3Ub)2E<&;^eB|S^!{LISvXJRU14u|w2W(Rn7912cOgTw9u%wu{bE?B7LppzMnvp=p
zch3lq14`X+E#TUK$6)nvej7#05O9DvfUenHIWOD*fR|sFBx~E`P8JD3p*yxM%oolZ
z0}@&n$qg{)^2vL~hmZ7lec(@~tDh0h(u{A6BIlbsEDqxY3nx3PS+1HaP5>gKEVoZG
zWC>3z0}5DU28U?_xq==0g3v`FIva)VFg688gg<z$c_SYkk!f7?vt?bn=CDw+BQJo9
z<SXec>SR3;qS)SYpghW-5awvKH>wUR-Z@8vv!c%wDS6v`USNYzp<8)a7&44E^4;iJ
zbs(&H4w-qDn=>!W)GELy&;1`K5Oc=o$DR`kqsSMSsma(OJ12;*JePS`xG6#}SL$M&
zlL<QPhH2p&>ZTKAu=1}bj$k4_n-+HdyESxDa()sDQCYXonHMfg{IB2RK|UhPkAA;F
zh!Z%oZI1|_PwBrBt7Apm?B+I*1B$vra%8!FAExb65dOOehxz&<*f(aA?3j1(9FTSE
zvB5`Y4%Ryx79euId~9&({)1Pt3nsVB2dhdRSiwi6S24UlJrTBlIZgB^o#FdJYaIAw
z+DB6dRU<@;6SJnT!^YP@N}LRAx;sARcX|lUflQ%0=MZtLECyGf=>OTsLj{KXmBj!N
z(~-qsqvryFcV;)xsZ%@ihh}mOwM(?qS|SH09Ycl#>?_#%+qtj6(B`&&!VkKgr>Hjb
z@oy+6EW>pADgMkwn|>C5!LWP$bnzl=)Ep*h{b!+;MsZ_p&S{xNC@iMbEZ6^Kzr%c3
z6Qr7P-V55!^go#lKOG*;woLq;rZv94T{3i0kd7jtzyWAA<*++H*(V&G=--!B318VB
z;m}-CcyUX>p_ZC0kQ1&W*X?HC_YF(c1yGcDX+xeNKysG(GoP^M6}V=lj(|o0TE4<h
zc%EvA!>~{t6)07&dw;qAX^s7UL{%M`O3dzul9KJ-yWKzXw3U#ynnS-Hdn`HjfDF0V
z?SA=dmRC%sn))Ugaj~y5%41jhOIPy}ptPjO<$$eayB&`4<6gI1V{$lSxu&D+r(Ad3
zjsEfrDS&PPlY9y%h>Ym@?xrO^^B#MS>dI*r=}0=$3fv2~`XiR}1>(dTTBKKG!cFa}
z|KX2aXe}CwKS(19Lqo2+c7?y;{it^uUb8`S;mdY^yUq7~%GwDK9Ze79p7H`QAU7`b
z^WUN-@dvb^nJGjG+P0hhxwqR>T%?^zztCXw+>ST+d(~C~$>^M3pgnnRpWFSl5Ap$V
zySD&9LY3!=f=BBPKbkJ1$&@E%V8>SOgy-+|YafpquaRz;(F8mThptSbXWZ@6KIHdO
zx^c=SF)FE=)-(LRi}<PpRJ~;@M-_xe>^6U2JC8A+x1xy&r36v@MgGq#t$MXEVQYeG
zFEQ(WPyHBs3A~9M5=2+$xmPas=Y44-Q;8izW;ldHfg5<VzvD$~cM)J}k(^$=#IK3g
zhy2O)5mW_GLZQ3kF5mANYjYVC^)#B}2c>A=%lycbtZ`}w7YkD6s4?024&4`*`BgNM
zmY2a+7;Ofy8(HpeH~WtlQ-HF<Tdcwk%K*;BJlFpYf7%^ZI99uZ-39C!xn8%-U#{oc
zh^eS$q}R)G``zQuyWXa;JT)@~32rU+J46A%S@-$1{>w+KhtX96Ln*}hxFT|0?Q*~E
zqc(z*uy&>7YR`3x@AkiIRqK#KMb!>O!OL^aclZZaP>=4_wWi$b5?A1Mzrla^nEk%I
zg<yjjsA(eR&~nLfOYiVkvRv5a6@p9f*rcMr&fml`WigT_p6e9GZjL^(-q1OIJKDyN
zNJmgm*Z8%}20i8`Egz7Qe7j4Q`)c~jDzvM7dJ8n@20tx8S~c9^SDeW!$T+!s;cN#x
ze3jqh5~~JM3zG#58;F6s{LIVwq}aTmC`3ya87#?g{>>s}Z9>xv>zKUg+3uN3{L#l*
zwZ(KWg(3j(T6t_!*ZQV^Qb39gtdBI2JW|=N`A+|tB!;3OIp=jvWw{_V_Wq||MeXzg
zUa<}dU=e5+Eccb4Qh=)r?8?l}aU@kko_qQxKP*~CBe;N?X%;7_+vX<!w{z{4atxek
zb!rqZkc#yt|M?a6d9z)}%O}Sz^LX)@KKDeLi?#%+R+j?4X7?(0+Ijvwbv)ONsKeE2
zLYDdd_HO^<ll{4s(LqcJinPznjWHzyGQ&^jl2a+yBK#91B*0!P>Lbt^I}NqeNtFrk
zQc;ekY<J;i;lyS9-pD5e2~=I&He)n+;-K*Ck^ypDV*G%-o_r03P+VlXcRux7ZcTnB
zj=f}UjpzgCQlGIxb>BRE{>%XJ@fIVgQ?a4RYPBIZF9sZ9|INdZMFaCWJIY`Yl<TvQ
zL{J$DeYo*fOB6MHZcAflnyA<~09GY9G(qj<<R~cSIj@9KMj*xf5fP#_ok^aET!mp|
z|IG-bDmE@cZ2mt*D9!7Olp3>1v|(0dmU=no?zBnne^kjzTL0b?mgGxt*o+vf_l;#~
ztG6`H#qn%B(N;*%jjH!=^%$@WU7|BVJ&F^!-_8W}%aCz2n>-~YE!B-AqY-6oOq42y
z=|r_9l^(<NQv8gJU6x6T0(ni<eGEw~=SaFpb=Sq?5AMFphM$1fAzid=S4@i^we3bF
zm{j?Ac4rCo3Amax_7<qMGSY=LcrPA5Czsbq>BGTGOf8;1ki!LT!SV6#nN}Z{5G?G;
z7|xFtz0EbaFgIPGw706`7i~vN@n3<J68e-%ndrgK#t$sq<#FUd1#uEAjEvmE7;f6j
zzxOq#kj7JZtY#kL;Ef>xcKgu3R%efkIXJ(XZ7ZS}y9>|;PChM(j1T-D<(2?+Vq<%i
z%s{!uk}~r(e@l@)C+0+J8mDiJ?=E@O_Z>Iz5T;@T(J<Vz8ynUsZ3(u%rseT-_ZV~t
z&6(KFZOFN=hQ~i%$z-As!QRD{9OVnFESr4wmvJ2VwFnH6Q!>xo)KLO!eSGrM(0K`@
zPgG|$M=Mi=^B(W%%=qKos0#r`^2ZeHVTsxVYzeF!{Bv3EyHW8j?@=R}%7FbQW6^S`
zXps<Q{}4}I;I_OrzQ<nFfoMc2CP8<Kjg`T0*IyLB@E5*|{tq)*qMGjFzT=Gxe~h1V
zxiyH-rMQsjbGUQeW0T`&tl@K{*~2~pp(Qhs!M{HEHGUR!=+ra}zY@S<R96IK*N@{v
zPqx;L#D>RZ1b>J0-{!01s}HmmX$7(Ilm(SG(T%0o#y?+Y#Ofr5Q4SCRnKcsGvpqc9
zwJ02AK%YTeW5&R+pY*4V;=@Gaaz)j?LCS4W<^TAb{d6MNuUd#lrFNt7f7alyEs1{J
zP@QNdKTczcxEQz&;S9=k_g5J=JfC0~V-vA*#Nd4|NzQDUj|tQof|7uLdKeAilfyAq
zt8(7v9U6G)D@GYl2)^<cCot`6&M<)RdDi9E^L-a(8v%BW1zI&?SfN>cQ@#|sH=dUY
z2q4-T3|@Ke+<HIZ9jmci<ii|*&}rwpL#q85yE3Xm>Cv$1kRh`*iHf?h#1D8f;%Kc&
zB`{?(s_Z}H%k`)Dsh{*O9fS3uh45Ti<%g5Dc)?R)v;83TAQK|(ZF6NMTt3JMviRj)
zMBZss0<N6Ip4SZz?XZHtw==1+VIEdL=yv%2+Y3auQ#uT~pJeNiEu62F<pplmkTB-X
zT|_5RCQM*N?NKob72%?)a8N4=kues{PS&EAH=~zhswo~`;3i)ip3k#S;1B^BWuG8`
z<;1Z4jr~f=*~6SnZ<W?LlvA|p{7|<?zw=p3BhkNEyl&*UO83*+*yL*l=;`R%bm9tT
zVx>ByyvRNEQ|z^C?RgoV#YWQIyRxBU-Lv1v?q5RUQiXDh#KDaimRZ`tG`eA=By)r^
z5@jp2Spxo}6iNi1X1LpG{2oj@lLzw`ODbA1(OP6~PdiDuLzEH<GhsDZ@vzk>_4?RT
z<0l;1Pprzr6EOSDSL&)5=5i>qQNzKGxF4^NkNXyoerIkgP}|Cem3nhf(Y@rJlA*ok
z)%bl6TD$?-qeKFT9f&3!dVYLP133Q3{$Aagw<_1I{Akc8$(@xJ%(;QX;{C_=Q^VNf
zB*(O~1IIZxXMBl*mAqFRKYKzy{kkND$YDXFfngPK83)EohFZZej@hW`CVq(JF{9*l
z!{aNcn>R<)#>$}D;2==K9m0l-;-8MTlD`s@iLPsd#?+(`<Y;MZ`7e%+!x*b3jv~FA
zVzr1|a*0K8)}o>^a2F-Houk6=lWlg3FIj10fik2;5gR^)ICD&@FbDCfk}D-<#xIz|
zt5P;~Y$|s_9o;RE=W36q;@><G4Tz%QEzy=z1V?6OW(|d=?V5P66YMvoSefNpt7Wh>
z=5JTT-%46ZQ7uX5z`sCnO76RC_w<bTifU``xUXh05Evv_phf-SJH+kxWy$ZpB3mY-
ztCay+#uf3wClhVK{;NrL(j+l@Zd7~t>F>s~wh<j8JUK?kxRb(5nlYE!uIB__{-5~j
zKOi(BuhlA$zCe|u0D`*K&=v&{6iai%T}tiX+jeRRm;PWVt&Kwt1V0F41>%MWOri}d
zAy``l5fr-idEq4?r69!7je)Ck6sM5ozMLEWv$N4bZbH6+4|jGLvS~az7=5y#&j>eA
zz|py(36phnXG{1&Cd`ctXFPA87Ve4caO5^><V40)$|}TF<%T4}l3gMb-FiAo&}7@q
z3R?}_)TB}97Vi_rVmCxe4Nun2kZqomWa5l)M7)1*HaFEvoSIALo>%?PKS1lZ!BbXi
z)oXt7#!qF`Is7&M<&TUH#J70ez%EDBHSqHky8Q-*%Y>HPASs5JZfN_eK_UKZ|A(-&
zY{H|4#b7;;TIsB{RjUm341ray+dD7qy*lHzs)&M{;pmES>ff~>4fR>fZ<T1PU@v7)
zgAR&q@b*z@x8z%q($1Qv!WheW<*Gu<l{ucXxw$D~`$Lt>b@8=f-yx87VM$?Q=~N`{
znFU?aBTRZ`;6i3-1Xm&RHzaE3TQaZ`0;3T|OScUFKBE6h_F<{$1*>ajqs!=SEuX<J
zUHpr8dlf<vg_}(U=p4E3^>y(p7gzy;lD#PRi1--b7W|vfxW-Dxrsflv#5xxBQ-<rZ
zo9}gzUy24@fz_=o25~4G6?aY^>;eqP2i4)Tx1h*FAzC#Lp4n`4Kh{#W!D;uc<T`;t
zq^7ZDx}ts<C22=}!w(<)cR{wR?HlHNIAA50Tkh#fT-7vNIS6o`>yq=yOn>6xag|O6
z;KzmmtjFWJ3;ikM$e1ft(!4{)$(-eOJ;nc#?^j~scW#HSX$M?ouM*zEAWv84(1ck~
zFHiIjr>uxe{a@e9LTA4AaQ|vEDM^K?XqinW9wZyaEyniNw4GzdT~`jaL%9>kea0Di
zM_R=@12@c>%sf<74?ZEvnLLJLQdJO%LKMSYY4sxqJw&6O+xfRNvf!3-W;=J@tD)yU
zXaG8m=A9F=cfzG4H0S8mer-+vZ&?k_E$_19eyxLKXT&1e)Vzw2>C8f4;;!~Q1>KaE
z2%mA>3E`+7{bZJd-!aL7K{NAY^8NB?|MII`as~dn=yIR@f)!+@CT1K$2Q%{0LhP{Z
z;hi_r<Q?1qwwGS}SyL2(Y0#hu#J6S#zg>~}#t?v9w&k0bPwf77|L8rq1LYIrIITyY
zftio3eb{1uzYsVg;WJ<sFnF%#XrP?%PyOPXfeUs(<Zy^0e~6UNaJNkKe^mFAFq1#O
zDdJ2KXUM^=p&;KxjVOZV;(U{{7~5^%M0hd&Us5j5-9I&?PqF8JS#2@z%$gofKg_Dx
z*hK^fK_Wa09n2<T6qxGhmT*@@$FiY(#j<f<OE@;7aUuAsF2QmGc$?=kjtejD{a+Pf
zexE%zl+y*oKKwOxf;loy(07)H8!;De?7!ifQa(R?jNgMLP)=ZHgorn2@A5;*v`#&k
z9YKo8^P~WmQ_m0U;C`{6ulF%=KHM-ptlsqC$d--fo9W>r9UK-&F*DglD2Osgy*D--
zRBRP(G}77bkVF`ykwzij(217sj%^6v;@;BGtse;JJdO>E<dEFJrHS=m_}uX02&-P?
zHyutORJVE4!c7CLk}~2;WD^7iDtNx1AO2NnFHEdukddu22$KIQ%XO~~?f-*0t-xJh
z7A_h?Wt%vs*aVG>!wwA7rkx--r6JVF6NtrE?j$}zSbUZ{X?l3I)M_G@4oDn>jX<wE
zFPtym(<WzbmI#0Lik2xcfSjvI{>TZ-y<u8-XIrbEiwtRq@X0BPJKKFcJK~Ysw5^%0
zX>qtqZRL2N7PK*v_0@zI;GtudH=&V3<2@qW7u#gG3*E0R;c)ouHdz*k`CAj=Yg~^T
z7a(Igr+MS`$a4RBemFfE3F0)AE*>eLbxs(eaoEVm2xY+d&;?32hQAm+*;Xh40!LjO
zveX?q+LEfD1yKwRRZyZB*3Jk^akSBv@#IUNE2pYPO(wqTaEx4oVl<lB%%~9=!$C|l
z3yusc_O;p|H-y$~qj|w9fCs<BC!^eTJrm)yL+lHT{$FmptU@&Nr;iA62;LawB5t75
z^>MD;+~{Z2hrMv!Z92($u5oU71jTCOq0@CIt13LG9krpSDBESt2wO#-qA9XWlll`4
z7}I&CTRSym$)zhiU{zH_&PJ`%&InboxvBn*{MhibC&Kv%DM~h>t;dHuEu4#2oYro%
ze{wW$f&Ifr#$#u1B5~Ag1`8)#;=*uO)UJ-@h0Li5hskxtH5r#KD-_s$t~>Yquq5(>
zmSK<A=Hs&EO6P=&%k8&ATT(oo!_@J6)Q?FQh6yt%$#(0hmhj_F51(l`l~_fz3aA!@
zBe>Di!`)Hk#kxZ9P1redbnShAlJ&I2V*I$2vmE-@g`cAV?r3tJn>I7FX-8}zWv~^2
zDCj8{Fjncd&OQqY@$}-5uCJly{Fkd4maGZkG`X5(oF=n6PT*X3?_puDXp~AUj*D<g
z0uhb~6;WR{blv7iwLU_J&L(mp-wkLDy9nVxAZ<fKGYTz6MMF|?Z*{*d4&_N}6krLY
zu(DddI6k~R(O!`2%ismv-gaLcrbOS3vTACpfUXj;#}3J`KtBAxghj5~wI&=I2@AY0
z*au{?*L?mmHS8ES8%a?kmngOxmM18Es{NiBm|93?hLIgD6+<gWa*wCuyIyS;7!bR{
z_>!D2N@K(61r8t~&zdY{a`9l>VaH?o!Z4NR+Ly*FKju|}P?W*h9;2;nb65P9ckM&6
z8I4QnA{XNZDis`KAfM$&r#=v$e&c|?Y7GO0`v4L>kQCWrr*Sw@HA7NQ?I@55d`WIN
zYa#{wycOT20LlcIW`*ZU?BN&~I+eebcte=!Gonhc1aoDj60XDOYZ!5kERCvA1=0c^
z&lHPjUme*1H?Vf#H3JgoLt0er_?DTCYvd51i@a{Xr3Ll)D%E0f3fE?aPs*%T3?^co
zqT<ZID#mJ?oL2*BN0OY9EzRlGwL)w2YBqOSI&0t2*D*IJl)>76PG;CfgMey<y{}#k
z;6~u4<%EneQTy8z3ouV60qbqY$dsZJ124wGpRbVX;*s`a0_hE?YV6GTG-?lu9usa&
zqX->Er4!g*!}gyFD;wW3hvbyHt7j;pvEwQGm#YRI7%e7-zEnTXch6wXolhG{Q)gp*
zW1c-0`Je!IIC3)FN4ti3`}U8(222z157`<h6V=q>r_(-s%ow3Y<IBd>q9o;@37=2f
z{k=ht^999<abrRLzz9KV^%%<5rEmMLX&9wtP$n{<eZCc7Hu=Z<{#tL=>Y?r2<g1fr
z=^mQI<1<&sTCQDRa^Cfc{rD9|r-mlkwCPifLoj^euUl@_j^ZMwHX<Q)-<kWSZ`sod
zhGTA@)ik?Z%UN`hg;|CA!M0ENL-*L^P4l#@e8oSlH$fAzxyWiHV?6=;G3K}X%l@eC
zC?ow`!`$}R@Rlm0+QNJsLv+6Iwa-!`H-0mVH&KoLdb4aD&gZ$#Wv=!8huN=1kx@On
zjZ=W1;)Hz9@7V|1d?11x4z<a-GF)f7dv{Db^iQK`E3%_hE=|bAwoltm9Bsg6=5iC0
z8wV&Zo8q|5)0R)Of?=c@?2LOPD$+&d`^NRQx)FaTK>|WP?$;$Pe@kO~!{jfm4ip|I
zb)sw9<xxtQ5%^?a`9cqb_b0>s@m4tbYs(dbi;TpK93U_hXSqGz3@`jjJF)$2_+jK+
z=Z7~bL5}`EC9K4#q%RA_x#>lrp(~z0ysydxLqHeOLnC%-UTA)Z%k72*xa6{l=nM}$
zW(8vsRWM5@t8I0SOEs~y;5E_Abjb~PE;fCci#7ZAx#;DQjcwA5WxcZ{(zsvP_i=lL
zTXup?7Mc5W0Y9i9eE*PTj)SHhGiWBU?4$1UA2x3abHPH=>mL8%G{7?G70GH{u7%dP
z?kV5<ANH^k_VPr1I~E(Fm2exa^b;<o7F&CXS*hub?V<uy$m)mh_?36^j!?-pQ2FC?
zCC}q?{*AYI$W0Ih3(ux#yjqv}EgJ?_GkxH5SXyfo=c6oiw_fJYIm@cRO+6d>Ln`5#
zxAlwurC0c99@su{#I4~J&PUmJf06&@L~CWm{FZ7Zk`mJ&*#fJNvR@a?X>TTMopG_l
z@R}3+=u55kacy5UR;?lI8(@>jc29ZGT1l@60c!j~7P&%q#hd<>rPlPKrujc8@P`X5
zVTeD^u{tIy3p{-!#nH2VuXpT+qnl`55;|GMYLd{SPaW;BporP+NCkL}G98&juAE@a
zd$YNDZQWX8r64hIv6KDw^X%~>BuWte1|J(G*>3GZUw-sJ`R*rxmWU!Kv-1F79(sxI
zi9eeaR)Ok-8Hj^`YxKd({pcHUfEOByq6$kHAYs@u<O08Zg)e-UGB&C`m*R}4D%+iM
zz3&1d0?BBudHAC032NYu4bo|$uba`~HaB+|ZeuxNiqH0k%;z}<c@ACOMHI_9WxjtH
zs021L{OBU30t!>;df)C3y40Qu{i{UxoUzRmV#;yP-|BZh#XR;SlQnk70vPOWz0>a#
zdFuhE5N3dcU}M82bcWw2LLy+*omXW6AL69`@l3zv@z%`sNE9Y#$z?wOWOMCvK|yDr
zQ~AvJ?U(s^r&)hV_=%wxAb`LR3m5rGDSK@B(>Zf7C1<&(7WpS<+2b(`o5ls-^`u3<
zSFJr9#lgxV!z>Sm<wSq*%#BA_jDW(RY&6nL4{MxIRS_@etn^cWY#~Izkub-dASe;Y
zjJVxja-a2Uq#7@ea_Rz~c{Go(6#^?pCxZkXTH{5&{2gmg1t*4L=fI!C9(khQqS_ua
zA@!(yJm$`L$%+2^>9kXt)SQU31C|E&{+0gxd#M_I9d%C-uq=1ZGXMC?Ha`Z4vJl=J
z<?#A;sekkaYj%YhV+peWPr1T>a%)Eo0$7U~f_m7zU?#fJOI}1K3)hdQ8iuV?{EixO
z*@|RsWqw!_uU+C7oNm7zm6}V4s-k)rs5PhiMbVEd@CNFs2#AJV;2$`Z2FgqcqQ=G>
z2tL>ZS?9jH-&ejuRWgWGRmmDg8h5wjJb&}s_Oz1O!wHoqmqFe_{|8;=x8-s&#VQ)+
z;JzrrtAGF`Z&{XmbAjJmo#^0BuOpTP-IRrP>D_)-gejWRg6kPDo_Jx&p1I!>9Y040
z?f~!M(f#~3-ww`*!I(%a0f04V+7jteBn2k4EO*hl{<68&lwnE_iH-@T>1cl*COmbe
z1?WG`qS<u&hZFqSfb^&g{EWg?v99O4SI+V|P4<+?iYTa5BCPc+|K%JWN9i7Fw5Y(z
zxouAJtAT7$$56sXqY;M*Ap1=Ju9iOih1(69T8zx@gA4p^*VvjO+S%-Wpa{8sF7&f&
ztO`<W)X_pML9B5%pW@4Sj&P~0;rIjBmW6z1Tj*zKE_E*^1i@k^;AhNn$K35d0oX%J
zgl{qs6RKTKr@-L_y!*{8eChdU+1c*udwjP@5&}2JA|QPlv*?s%{%}dcT<ipxTpC;E
z3kw7sF~?nXm!Aw;kR1oC(V$g0ytCY&cXooz;P(Ys!{wEH?LcgA^QYXx&jtL(G1Rg2
z@F8?P-%mfm_J$Ob*&S`tLRmt{sx}8ZiCETJm;q@PiJl5v@@l_Wz^hzb?M<<A@vvAB
z29$-ox5X0w2a<{NxD=oQ@8HPDbzQFW)xsEZ?n0Vt(VoOQx$SQ8bx-nG>~f$M2p4Z5
ztWo-LYMH-M0#0`#iyWnPH1J+a{U9)jnojby&*)&Lgm5w2ExN=fuc8PiE>>2Y(2ayZ
zXeI7<mH**On~w-tR*l>ec1W4APdmduDRCz|RZQ=(l?V=pQNYc*&L2q&m`0qA_{1Ub
z%5s~7w5p4m#Rlc`l7Za8!SUVXi!ZRB8v{9OID@Ud?fL%mHhWsxm~5+Vm`liu);D(>
zch)6-50wd0+uYo7?}NM}%Pm^rOP{lnp(*9K=m0E=x2Mk?zPk=O4ox&*(Ieo0WEC;8
zg)97#mst@~81J9C;JBFOyWQ{fzg<T!3$aqj@6$o+q7(Isd;Q_>Spzkh!&7K@EDw%0
zxPNoq^Z)RlfV<mdDRXt}I6DQW(~Y08L5n`q-(7D%=49g*MASCnlJ4n$_?rbz14b%d
z2D{uU7~#h&{0TZBW#ga<_==ED%lv(3*l%GihK>%1W`W!9O8?PCJTyNj*SD$$Iw2}3
z?ZX`R;X?nJc5SXmeqi$Cl#m21s;yESr^1f@w$vvWGxiZ<mSENtgbeN4P5weesP-c}
zh1&z;sJNZum-){@5K4&Rf{y7r4+JDZ8*w+G!_D){1!op!yOBh;;D(_;I>x^zwSl=L
zGa9?JKv(tKmil`nj?HF-^t8hZ(88{#`_~Xkv|$Rf7XkdR&24jwe+ASbi&57*U<I6R
z?_cFlWP@%p1AOMM8Q|hzacw9?+nnh?W2o7ChQMZ?Yv;57_|A<t_=aUv18*XEK}Chd
z{R1(6&yBuS%PBg|Tey9IwQ|eP_gntQdQ%#m54<<;cK_xx_H2r<7sRIJ3qAYsOMFl3
zs+l|z5tx~!{qep2-#W9DCV>d!W&<%oD@L-1JNyjJ9|<ltkj5MsHLbeU4-hoj&TTef
z1jQ5~NY4xW<cLNM+=NMvf;{vEamCaP#GeXzActE^>sn!1C_-t!Xtj?Gu%bwAqK>R(
zrx=YDzu+=);3s}U2e(<R;3vX`OTMX;CVbTS{>D{Hw0z<Zmdl((#w|@ar#k73U_j%V
z*Zz(#-oZ*EJ!k_$!wk3itG-Xfki~YN&vx(pX1<c3ho}8M5#<%GIco^@<*)WP#jQRT
zt_%_KqN-5$m9ek*_P$nF43~=B?HZU|_v>f=g`K!p@r${D4|F%l<ociG-in1=zPEzm
z4OIl?LEe~~S)i-mPHExr@2rFyd0T8~+w}Qdu9ZiO!i-p`c*_a_UGkF1K|wUfP}%kv
z6n6hNMT*jChN%gBa&BH`jJxPoJBNnf1{`8H&dImOGwvfl6GA=(@h89FPBbXySM<aZ
zrelJ*88DhA_H#yu?FVB@fmT$Jpdc9K2|_K4uC0BUg7OBD?qKj1GA_eS-aqX7T|ZS+
zRNvf+>z@I_2}+pSsPI&vDy=k>wJdZvcgV2lSpmL%$$B}gfc6345oclVo%)}sOB(b6
ziMex9wP5-({|L($4%!d{1hR}qL>M4>>`T`|IvNFlLpq%2Qags{#pweo#R#uDTss*!
zIt#@RPgYJ@YDHrtFSe}aN;Q2`Ww@<~5)$tyDT1amlNfII<XPbqIqEPlCz0IPO!Js#
z_f#_cIH`Z>BwQvq!gVbuE6#MkZl8Aax4Y~tMUq7G&h0;M(B$+Whku0;yg}I}Q5{3p
ze0^ftngUCEiQkS@GCSo!%yIpSU6-~fZ_q=?3{u0Oxh5^KE$)UG2gy^dX@`8vgcm?I
zUkhR+HUYC~qJ}d&*Vf96?Zc@8;^v^)6QDuZXLgLMXz#7UW7~uGMbf4^j9SUsjf@B^
zC&G#f!iWbujIwhR!Zs3q&8(3H)xBiMs!Hrxcw}Q0sp@K>O69`FU<;qb6yHPXP785)
z*V1gcwuPwMyVbw{nmr$dLO>u~ijZCk8APP)WPkQ|WLE{E+6c(g!Lb2&bN=T3zM4+c
zFt|QJxrQXBWAp-~M{B;DDRn|`>0}rsHW^+u9Ob(|#Y+>0iUjbNQgT<SL?8|B;a{$>
z=i_jb*{?ApJotV5u4(oZ)`6CpbeF_ZEcNoOea4|QKmdD^*C_^>I}*L*oVogo_~uoV
zas1B_=8rV8pj5ClSJ-t2SYUyxnHwMRqy0v(Q}VN;34w`JBqZKwGRd{X2mQy&>9(wW
zsLu@5KkMTof40X6TH&eGezq9G2?+4hzebSDPH3B*Izl)It~)8|NsFsi6~T?H`Vd~*
z9vh$Zlf8tmoZxq&-}QUVR>oAH8fQfeVe=4?a9I(f`{7~!n}e(fxxg;(e16`c9<o49
zuyk|O3qw@OcEtgI_(Z>aTPrMu?F;4=W|$A<x{s^;@GUypASDBn8=v3vO#hz<{Yfui
zJZ5I;1}=+~9|l~MZw!Y?*y_MweNL<I*2SK}s}F`$zg8{Xru(Niv*%g|x^!roxUo@|
zKGpYG%NhX#FSs1!QuWn|SY=8&F2+-0QpjRk6942?rk@@qOb)oRW`E(0ELIB?Lyf^%
zfnrDO;ga}(mHZM-Nv-8Mjy6Vk#<u?Z9D6<#%x)qo0RfTgzKr?3cB5@ZD-BK=>?s<I
zW|N7&zAFBR(7xPb`7l-m*#Y^M`Ab+lsc)=TQL8|O$?Qe1vRw6H{*m8pGm*L&;tVa2
zXac$%>i^u?-Wo@k_H-LMzLas4ID9pry74GIg_UqLJ(BWUMkV89y=O$ZjC?lRKiAcM
zJ`o^f2cVYeJuu~8e$&1y*AD#n(v39CxwHJ5mn}WA<wO(&i7cqD?iinlMfI>ZwDMw6
z=oI)~BP%{?n&0MK-a`bSkAwY-;pX8ipkj<5NTOw9{SW8c4>Y$@f>QHS!dxpsj{@p5
z^qrFr_mEww8kko!`}#~3AY8KNU=b_!C){JDrCibADxoc8b3}&ZyYEZ=u=}h`fzeTg
zEdDDd`<pJbj$+l(WkCpF6G|+92ss7sCg$3J<O-e4aQCi^|GEVLY8Dzfrcf}k=|LV{
z=uRB##|^cWFRVYAqf<;V@*S0O*NOh?N`~iuLdjWf9Z+)WjFv!b6s%lq2Z3v{#iaG?
z0ldx0XQGKCf+FR7ck4?0sxdb1l1VnzG!fxI>H#eRRC3^@Afeepc#4tQ3w-*|*56T(
z)oZgyTkG|y{-SR57Ts?Bw9xXy_wf^$7Alp9V(OR=i4-oxVXEIL-}+0qL6so&JZBuB
ze0poRH5ZGEeL^>GEKg(ow`tM%r0~ECtxJ9ru<3v>gd;hr)sI4CYv~e>F5zXX6sxUE
z`BX34b)ZJM_+y}DLQ=xL(8MhU`Z;|l1=-Jy0R=-22}I;G#qqt4x95PV6V(J}VG<yX
z=9qZu=+4TpaR~2*f<eQN8RBQATM4{tg2nTg=!v&>^{>!RWC7Vh$%uomiJ#}Vj9ry#
zQnG_d<Cv?iCawUHBO@lJoD5tRpD&HyegUuQLQ9+uM#K4p!Grw3CG&9n$jxmTMN^Is
z$sq3)au9MW5}5vhQr~5JzJT4u4pE#oN`q(fc!Qk}bb1&<NFqueA{klV%!vQFke7fy
zrKVez<00nZq@ys?rQV3YFp*MSBcUvmz$=vax^ZH>`BPeo;iG}?D>x$GZMIV!Pr`T(
zuu)0QH7ao*eh_cn#f$Gw!JRYf*XTS#FFo}wKY0WIG+8KO@Oad7r$;|$ynnmi|GJ;C
zB$N!1V^=ILx!hg5*ZBRFeQ@JMO?>sUvXCqR_^FsLHaS-b-8O)OArG(p*e`w%_@~{)
zTN8}{nyiQ>a={?|j*4XOfMGP7z&e-yp2tg~r=^_9+yKmcfH54J@3(!Arzk@9b0fs;
zXhj&@Gu`K}`|XqkTiKgsDB$Dl9WE)$o*J-{)4786%jR~yhNfM+3yD>6O!Lo7VsGi#
z)|aK-m&U{OX?+ObreB>3EEXZ8MvYN-VpnA+{d!@T1c5p$Y^cI@F=!$Y$vxQ??m3yq
zd`}G|jF2mpJfj$C8H?v13MX#-777?43a#Pr6L^aoFh?y$2}f)Pn+kRQu(P?mY=C&x
zrCnUaTv&1FyF~wRXq0#cvkXQ9yS?QQ4VB|=9u{ta%X*_qwa4;@g_qA7ph^56X)w`V
z*B%<a0;NT>#I0ScJBJqb)Vbl9z54%~)jAeY0E}C)6=9EX!Jydshx9S4<DqnW1$aiT
z3|$$~l~?)uBJS%^cCqNNq*2IW$9<IZ$Y?7!pxEXkOu7}YPOXpJYY<%)<jE!V<AGtt
zyZuXvx<I*0k~*qn1Z@N#SzOZ3$VXeSLURt|oF?-Ee3r%G(X+XEh&heRBJ88OlYUSZ
zE}PF_Z7`iez%OYF?;ST_1=9&%GdxIKMNmHp<IQoq9O%y^Y4OHIGDe^$AK;H_8Kk9H
zl57yjI<ia|jD=YC4}Y>1JjyIcwt(4=pu}GAEpsSQHU~7FXxyN3%>FBPx-KZ(9(A{s
zS@8Z#{mvg-ReVN4K?=ubrQh<pUv&-7B~6IJhH{gww%{_~eU?2ePLVDfi$Y!&wq|#W
ze{Lj?*_=?2G9G64$94*->(idg=?uFW&P~k)-|LRaj!k>aa`2Xt{;bhKAriavIZM+^
zI4k3W1abE?#U{ULKdMZ$QKxg)SI3@tF(yQ->mYnyN#lyps)SvZb(cev3(P<K%g=cw
z9<Ib6kFyxNx8Xq$^3N!B_eK}A{M;B1E?<<^U1`7tH>=~Svljb3mnj@YC#D^EGVkEU
zUkw?G;?i(KtUh$`k2mvkx(ixYp=o5)sv~eU+rrttn=ts+y9WMS7tcg}n_R8={Fmk4
z{n*did(ckY*l`so!MT77!+(kQIAG9Dj1)NC>GSdB;rlWE!B^v9BFS#}waI`EFdEPv
zv?2KR(b7~%j9164mpD=k`JX=PEq@cQ%}GSutjsiJXu*5E;9HfO3XeV7afcBULKs%T
z;qUrcuUZj;C}Jls5dWh4{5iklX11SnPquYdkgquBek=TD-K?M@HB;6Z3r+{ug(n05
zaq35E1DwVEp)*4T=NDJTm0l8$qOuuGw3%3xOu~J=(jT&&709BBhD=bi+xsDZSo9DU
zpeC|AU<@PsTZY^IY5&W%QM2HdWK*#e)h_gw75*2DJIwzi?Q;wZ#3gW3+xnsK8sQWO
zGAyR+38%?7Qy3P^`L6<Y|I&g`0TVUDrR)I=G-(g{6e|>)94RuHhvDn|Y7u)Y5W8_Y
zo>;|LOSq1WP&oOJn-;oRzxvBp+pk1WUBx-i0S5Mf98YfAcYf4IR;Fnt9}%)nl><=x
zWv&0^ZHh1fqwjL=$R)t)8PXC?`hL^rOz-OEFrVl2P}$13Y>+sI2sQMZ-1NYmanruD
zlm09Se^cMFApm#OrC326?~V;ulvu|}&4%Sh4HC`&L%;jdPpz$E62w>AV#p`RC)>^V
z!@s8q7ej5W1ZAhKj;W<(@BQRoiU@fpCQ_mc){-P<9i#Wxe)t<kMqCEJheF2yd~m!}
zEDQHtM#JzGD20+vMq571SA;m(E_lv5RW%Tlahv?~@$maXdt9burOJE4#la}P-&h%L
zim1HF^*fz*MQ;H}a&ztv{o(CKiogTZTqmFi9sxGdqX&mqFS8NGJ*ulQB~UYBQ+egg
z@Sq5U%^)$mIfj!8l!5X&%Nn>#=+kC}TpY|wsGM9mZo3^r%Uqs=L1mOJMF%a1nw+VD
zmAz`Q4FGm%c0<%YRt@H@UzR~fWV18A$!wC!jfi8Y5DbNTfh?@zV1`DEH5YvidSOg+
zdxqGRd`+fyODhe|9#-#lXNAj@e}M$8hMfd0!IW-!a74|HX)w_^&$ciG-4yiu(pNsh
z&jE5KIQ7IJpXF-4lI>yR6$zD_Be-eHpXr1QjL5@?Iv-UJQ(IlQ9i4<~BJ*&>FbxGb
z_VDkw54*o_pD0bj-Byd8R3vS54qw?0Az#}flE{?FNLPsU7D|Zz;p$(a*U(@Rj0{{_
zdW}_l(~hC?T`Q9i*`N#s0At~$suG(sWzokV^}z=HeXo$S*4`?LYU>zJ;^8<0X6_ii
zf3M?vEIF3;+UgoJj`KD^l&!W6XVH0@D#{gJl`NvEG>2Ft%dSH1<PDQaWVt>2geTYW
zjvy4K<Kj7Fjt;92qffQR<C6A;+(KoiCAC`9QhQ7!LZrvyfJS(v#)Zw6*|;M-)><Ao
zmOcLVOn3XSVY7Lx9d@L0_TU%*wM!8lT6t{fJ===LVjS1j0$4-}!M4z)&ZerUmRM_i
zXVGNAD}o1!kgC&$SZN1+I+?4Y^cPAwlII?Kxzj~Z9KC81xlk&=)Bo~6MV9(0YZ>2Y
z`xj7@@6KN3&sTaOO*096TIFbxc|XU!{+{lPHmat1bsF$-I%G)6`(j5ctZ0)Ipo4US
zDiH<Sukyb|=TfBS)k7*_z7N`oc@VXxtix@9nCfT?r+vOV@I!yxPF5-Lb~8G?AAIff
zRsI4M5DeIu&<2cpe9kNWkI3^;gz>zyeGC?M=~w)5yIWO5VI^l%cQ`zN0O?-xRP>q-
zRPHc@D{@`w|DOLi@>q;$B;r=Q<jR_o_m+P)gPK4gwnPav0Qa&|?#T`B-f4>tyJD4P
zE+{0@DPJ<ER(Wbf@`Vr-bB?@B;egHrIg?Uk43#I9-*Yzo)Gu7RuQgSS=rzQuahsGF
zS==qmDyBeaEUq7o!drvtVyY8uA-ji_fSc4Rv6PMY6mn_sPUnSHeXOverH0)QX@UTX
zvfPiS+6hdJ6UDZH9iIvn14%yMcvRu2-^{v?f090)cvdit9c`K<7#pT{qKf2^VLNFC
zd2R{^l&Danm-at993lOm_)EixS2g}-VUwcudU{s)vLpG8=xn9xl0Xmveaw&k?|HmL
zY+9$N0c}K-#yWr1f%cp&VLgGHg!|bMF09V7=j^-aGKxImI~1c1kNMLdDbbv7SC<aQ
z6vjJF!X3)PF(-8H*w*Cq=DlGZ17-uxHru709qzf7_e6DFt3(yX*n$wEiRVqQn<8b(
zja|>JRqv4smosE~GVJ^Xi-EBaq=To*Z9z)V%jL7ma}#j5>bF94>^wRAlLTBm)v8TK
zc>(eXh;Z2x!<heA$#Cqe_)4TU<+(?vhI_x`vBYK#DI_F_m6J5bojfUA{FS|+{MVqg
zI?hRr<GmM$yo;?2ySUP{bF3nRi>?jVD0vLMusrYh23Y&0=Y;|1@svew2lvKLab+c2
z<&2>UR^J2v3<r@>iYlW09UYj&NTV5D(i+~5f@w#A4%6zFQ@hYT+!%%_sn1556a%+p
zZn*SYW&^wkmwluNQF8bYuxcDSB{US+(K{~DQfHmUbHvn_j0o7c)I~l&J=#gQ67bSI
zFd=L<&R&^h2$Bt}J8E)xqR`4vTcX1{11ud`LZ*gy$U8s_%DIx+KBfUk<JS)fpN+RQ
z#6`K0<58@^IHQ&f5077AV<ogS+lcHh@SZc@Ka31}lU$XmxD!_W^>w5yD?v$FD8a&t
zg4waK$jHjw=c9u|8xn@Xu?RQ#+mgEFs!MP?mW4(dfkw$OMd}j12aXv~wL4)%=rM`r
z6<FY@9eE@pVJ>4o`{Qq?eR%!IPTP6^ghqx4(cG}=CMyDIK~Xy9ozzSNaZ5~zdx|7N
z6C(9$c*3rzJVvPTrX7GA&Y#rpE_1^d(UM)SA?qk3Q_M@7YRI|F_mfSbx71W^u=VLK
zGN2)G>l(u>mI6h{O>34d9!z;TM}|x-b8ak%tq#3G21x033!@A<C{MGS0Ts6@zYD?+
zYuf2Mg+n!goc+lZ>2?6!vbvzQ<Pe(LKU_D;%8JM_6$xW7W$vn7LP>=^XGcXWSnwh0
z*3>n0jq+;97&4m-Hyj+)#XamwADX3;VZSwotfo%=lB`>(Y;XpRir%y~5?0W8SkUP(
zC@f=P@NW59WQ0|TK19Nt$z!ADk>W}BL_3rT4Ene47bqZFt09sp9EG{=r0TFPlHVny
zH32<^TvxV@1@++*9mW4Gz`1E3)DRBe#tON@o56_;2UNDYI=rLG<S%H8G9SUK#VVfM
zH=G=uR3k)i5!o0hV(Y!WLntp8fPiIFHaE#ydC04=YtD@2A+<&{epQ!p?wv<s1COx>
zB`Gv^aQ<%RM`O<|;1Mb=mnC*NKWl#`7O&+Q7wZI8PE;o<D}OCkd!7BTs2)G49!-8c
zwnM!=D#HNVrcWOAZfx~J9x1memv}eprP#w~M?d+&IBQ;cDfUrnBl936VvIzTZhQr@
ztr8bxQ-e9;Fxp}{TF~edcMV)YH^$3kBiaRQ9FQwr=exW-a1*l;@MmP;-TV8pBL}Tu
z&~38=n@O)qK#PDjfpui@9e%TY2bCVI&|&Ua-<0%|&8s}g{oRaS`LcO^Jg#5qNY*V6
zvB$WI@$BpK3&XtO{Yr_(Rq6pnvJ9<24on&w7Vprn6nb6AlnJ_vjo_+OQBvT#PlR04
zs;Q8nP4Rf6CUB13F*H0^-cLj)unHkpVK14)4WiHZaOF&^XS6Q56(uC%C=XCLlup8X
zhq$Ouw(6rJit&9M`bW6)yIo2Tril#=)8&vaAC;@C%tMv^N=uP)tqE9pZQWLkM`pjV
zU-(y1zf!tij!TK17!jb18<*$yZ3-uk?^im8J3ez1k+h7Xaa+`>nSD8wD{F`~6l#`4
z4uiuv14&uFJ`ZbFI;j@j<+H={%It~(I)On5jm{FjzIATcVK9#w-!{4Y3yfCjhsyBf
zOP0)aD9DfoR9<D<r6|j7mI{MzCjTpt%^Ga+t@v9C(}9w^!*>qn-orZ_kSr~NNk|x*
z!EN-(ek5<Ugs}uAVk2n9)}@k6cTH>9d8>haQU8a6KH)SMMvg8t7KY-u0W~&6aG>O_
zM{p2AhIJiVvuyQS4-KcK^LtrMAoo`61@wkwj@&KWHpHHf!ePffEWI%Sw>_uCJYpEQ
z-0i-1IQUNn5JL2XXwog>CSt8rt4guValJ^+hFV#1bhDB|^Jefx7TO1ctmcD35pb7a
z*2!>AxX$ij|6W#rS&dt~3@ES*?HPXR$5R#{etn*b6w6&bD(v$kU)Ls3^>u3q=Ev4s
zz!{UjO;|iCYP!}4UK!dmV2^OkHuexl(+oMh(0TbTZj3W_3;*g#5dbnQH%UXuh@_mG
z`|VrzS7%THv2m+6(IC@>Hg9bjox~Voju!Q+{ZpDm?)et*E;y6$PLi=TGYWHJm1Bcw
z6dAKouCFKv&#djY$pkV_ofF8xD-s_|e8KuAGFa%F4JK9SgU(5X6i(V1Fdkxw41RO`
zcGlT3Ep?hvdB<+pE!3sa9gNga)hkYxAs|wgp8k>-nlh~@8qJvz1T|A;VovNuG0NDB
zfOuFSs9e->%D&<4zuTaV5@HTmQD!Hsh@Yam=qZ3v`=zb0^%JNtuZ{`iw<VAV*~sGk
zQiO}mHsA+AifWa4gu~X>;}-*>$<Ta*9KaZt&RL0u1P({Bwagd0SEE$YpetDmI3)$+
zA$nHr#d8i1m_tb*i)#y8GI{0F!)Ft$Yk2nHx-)f>6-t-2_Gz1@tmBrPExN4seZqv@
zY+wx+ZMjCojX^Bi>OM9aBa*Xmmzpj8;*sIJ&F#l!cm!~6va{&P<RM}79y}HSkX8wo
zv0QgXap;+2zbzrqk!BkCy&+7h_6%?BLThlda<G8|m6&IoF5J^90p#5*WnP)Z-47$e
zeIUO0EweJ$evHe2A18L@$8cki(?n5!;$@)s%c8KuVgL^acMR5Kp^+|jX(hiVbO#q4
z+Z~UgMNfXXg?$iGjyeRajV{xRi9(;GJHwUIN@9h90vl%HLvR*CcD1K0`O=m7;fL?p
zB#12oAWDTNC<MWMQ22n6rRC%2L<>^}JjQh|Ni$26NZSFC@yHs&qmEsiUOR+u9H|6P
zLKU;lJLHR?29X@0TEZD0>1&e;iexU9LJTQ_ys@`zTL41T*+G&V@n~des%<Du?Na-V
zLVfS(*GMDm!JK;}@S|glCcA&PpXnGp*b3g)Q3h8d&fvW8;paS8AQWb^jRuoe4O@d^
zGB2HkK26P_qLnC%4tA_Q9BYcnv8*f491!-`A{MHjyb<J77xz5Q=_)pTXTM)#tTs9k
zv~xNIN{6USins$pOG2nK-DW+aH30q~0kO5++O-Q570NEKb&&7=3XLVy$92ZQ>fqt`
z+G9wG{-sg#P$3B-#&rY)OpDvn2mpHQ*fprA;8tWpL?%%gr;G-lUSVg&_HL^XXq$zS
zo{qd`50(=P&N(XCE2)gED$w!4dLx1s8Lk{m5`?x2aZO+omBvjs42p<z6zXuD9~E{`
z$Yr9_a-(BJ%aK<aqh&4McBf=znJH4YMVl83!{7G|-|l8%sH0~a(GGDPOk<Zj(|%4f
zE*S19H3W8`q+9SD(&x#v!taa^rlO^xj-#6G1FFk5)gy-wKKN6MTV0PEL}aoou1kA%
z=%A~pc_La1)^T+Qx>xYj2Zz<06U?5$a!u5sqvOpJYwDjR;rCwl9GgvJ#C~G&a+M_^
zb1N%A$g%seR`CW4JW&#=dj59-3ye3Ss*2{Zp9!AGbYF}PKlipDE36z#i6W(i)IX~@
zywSr7id*17;vw7ij4|Po9qgePJUV~PRcm2!SQJ%L%teBVbR3ekJJ&r?5)RqUUMZDJ
zBC-eLK!b0$Jbb#v|0uz?S`i+LN+zPx&>#Q{?$*jM>~Hq-A~XVox9k~=M84Z=OnCD5
zej2)sKau4ME5b`#+B;&G=y-z_R!|ad`qSPJwv8Jte&Ad-*y?d%i)a!mYL(!K>WNuE
zQ~uR{%w1Y{B)n^Q>c@prXH{b#Z)w$7;Df;Q^vJ=Xq?;9#B(W29JkN70%ftQAb0ukz
z#f6#_;V@@>SQ^b2fsaueMfY>Wgz#?EM$OFZgg6p46ih>`GF%&V7zM__yt0@f<+1JD
zQyJz!o55hP^HA0F6i<9*_`aV#CGTZpYW93m<PzmhMukJd{(YiuU<#T(v!SI`C8)0F
zP6-3Iu@XQDMq{nmbneHADd839O!z`MqCg%NJm@f~j}NzqKuk<mgkWJnU=2_gXOb%^
z3m-*|nk;*yJ?7&}%R_mzoW?eyt9R@MF{ZC83omYOl}$oHvysBi@xu5puCG1ac%m^!
zmxo`XiMH8D=Qab_6IQ!1T*sp}%4S+p9&)vYP-E9GMnYyX-Ay&&qjakpH8M4;zG)7O
zGpza?3~8@S3=5(O!vD~uVY02p^>xv>kRLVkuT7HWvd4tXsFfS<@hrFf!Qt*`c}?VW
z03H%CuraJ`xa}r}#;6OUP$uWFDlxTC1eBwwGNhvSI60K8LIWb6l2fLH54&2c!SBpu
zT%%XG&%9F}K8}_rY&4=YU<ZA3aM-nDOT&}U%GOc`nd-G=;ml}{cKjIs-isCCiD*Z6
zKFf9|R)psx0RnV{ET|l-ojp*{Yt_Nw{!SqPR+?P}^j525qi>JxT*+jHa;4?r=V+0!
zl12TA8!y|PaB!F%wFkEextc7GgYwR~P!Zmbgg|GjGTp$6Fgp6IHhDVn)*YLO3A*y&
z&?OpFW6h8$+6F!vzV9Z7^p4>}nAE_-@c)eNMiMsP?OhVK`X3S&u=3dOepJxeyexNH
zd1&a}e-S%+6bOknZcA?6wAg!114gi-$Dq(QwcttsIFjMc>oR!FAA=5Jc~;c4z)Ij;
zW3Sl4eSuEkg-hy*90S%nZcvDh%xl6;$ATm`t}vkHZLx`bf@7Xob-ZJ-aCtqYh1ijs
zQ?d0#&%iAd>VW#V{bhzzFGEsbrVv6MPU>uz9t(@^FogQJWL-7)R(n~dx)yS#0gcah
z6aMgZJAqag{#vYYWw6%~^e$#_)lE`$vLOot50QI)B33NEO`;1FD?wT5v;VWqIN~mS
zjxu7G6HUok5mPp&MGVi<tS!QCXAMx6r3ng`;rc`V088?;eU$qNpN$-`7C2X+n`hx;
z{`w0oFB97L(8dPSC9#>qM)AJi`W!2X+?yyO_4ROZG|A?|aS&ykN`2#>jWSM^(wezS
z0SQ!ziklztzn&T;d_q^jEIX&UlgNW#$Y#3qA)h?cegQC)t=`cprB1)-VPASWx(0^Z
zmWDaNut`(T8`t+7{QGSv4I4aGWb3Kh4F3C4dt8x11FN643NB&sAD~Wr(s%H&w+#{j
zLix|4fw#ELt3C+#E+4Ruc9#h`_%+Gim+?(l{ey8j6l1_|s+G^YK!j}b{tRnG_OLNk
zf~=$wA;NlemvQ4pkT22J$s65fjBy}Ll^l;O=VW<Y?W<;4ztIUh@>xnJWqEJ8$_FNj
zBueD~+AVk)8y=(C{||p7NzyP;l_y$ES4>YfrvoF0-4%i}8u?Mz@KFJ;8eP(wNS%ZW
zgi-taKmON)EX!31ie^J?`t+7`q8<QVTl5u~+%o(r%BYA5S};$hHbZQwfBVx9c`^DX
z!3kXW(i8mc&{U(3_U#^?EW~OA@T{du1_$`HWfPq@I&}Zk%tJ6o%L<g0m9CTrm+lru
zZazp>pz`_98jz4WJ2yR#fjo4l@Yrki!j!~p($%!0^JZmZAj)?CI3U!1H1HkF!5S`X
zLC!6l7QcSwpm#92jmC({cE_OuZvw>EE8<huY+3+$p6hpiymj@Um8f%*le2|;NJT<I
z1|OW72d1Tcb$8nTE=IpuUp!*dmsw&_sp#pa)HlphjB*~NCIriV=}SH_+WOAt`I!hR
zcgGjL`E%RcWJLg&LX>C>1O81rhaavUupudZ4h$q2Znu8nlWRAAPOugEGW&%?J6Z8T
zyaE!?Q(z2Rf4tGJ3uz3-(E(xn(hd%N{W=RKPl9xQ@xMD5UBTi)V<MapOuhJyUh*&C
z(&6#wdRVq2^FF2<B=kw2`F(P%XoENM+=7?<lXA_<{_z1C-3%CI2vu^gbPKgn<eA{1
zo#uP_fAfS|+%w<afs_kqvi!n%Ktozy^2dy@=YkXpaisst5T_sT;tj9*mm(Yfc(P5{
zivYd2Z@lV%%(NFrG%MstHwXE%vxO-e9y!%VHLgYRitt><2f|CRZ>!~_8dq_Nj~YU<
zhfKY7qFkqn>ydLj9XMWxqZ(^LrfcpSa?UWn%222+JECj3snA5|q(9hsz&n@-F<T{I
zmISRNvd!eq@g-@ocfgU2O|(J!%vA~ZBUsqO;!l0M>2vmO$8**#fvnVmM!>W^b5Q(-
zRO}tx5JmMQKoYh|2*%zE<4x0IA`05zPDPN2+w6w4btQI3t5kkHln7>-7gBGhJ=WI*
zXGyY#g^QaK<#hk82Cvw{swojU?|Qx=oeE2yPV4^!ub{DRT*!^n^?D|)TSP`w(oh2}
z2&s?w%3If`Jq%kY!#KGXlq9zaqwt}m_<+IHxmMX&4p+d0SPl8c5x1qCGS*%gN8qe6
zV*yTgLkk9Hj<jEoXqwZYNG3_sk=LbtyDv|PTu4Ag65T&Zy2J}luT2{^%Zk=_Tf;Z?
zowUN8tfFxV(INrNvP5;?J)ZVxtv%-~(|1Aj(wyI~O-tnhR)y+<Yb3fQ3o%DQXn;S)
zE`qHUeZB@k+}JP|-Wb5rB0T8&FJHEO#{Vdzp;6h@vg<ZX|5>Q|Ot;{^!8_kH;A+{F
zxyv*YL5uq&+tuHac35%$tI=-8H(^}E*q7rjyfm##Kl>?`PpxtMZaJ>s(zKkB{Z&Cp
z1GmT-vrxh*LD8+bH7z;JO8)vici@sc(w2_0rz2|<vzsvvk}8u#z%Kocv@7&UD#D{`
zcw%hzIH?XlD(!%^6yVE26_{?vH98iy{lSCB_Z(1Kng>rPp)WX3^4<K(@Z(PA3&Ht-
zqb=DMD^6m#g#A6=VICwOcIiZ<g-(?EnX(y;!fChaw@~@QF1mdvJJc+6aOIrClnH6w
zv~d0Ib}^ZP$qO4Nf5aq{>+Y%x$11cD4}xqZvC;LhNq<4x$PG+<Kx=5+hhL!P;mI_^
zlJ2tqNrfQ?Zt@t_F3b*%2W;|~sTiLMwfgl2{DnBU2G0oRi!)Eb_d;aCR+C#uB@4^K
zuGKsTCn2H)-8*7M!~ltuUH21=nIdT2yfF;Sw_ZU%Lc*zz-_*y-xnU_#5NBd-Sj@eP
zn(RddA8H-sxf`3qdvF)h5q=E52zvtfZM=*#!&Hbrc|M#9xetk10F27)R9G;Oiu61-
zNk7kr(91n@eCSzc_4CtCG&^^+x#43`Cekr-(I|~75;5c8utdGuh&7v07;{AU6XsY3
zcnTL`>~`pD?u1mhe>m+RGm~(O(H*4##GZTT*swR%(8B+x*SYSz*`ZRsCfWz|Mbix9
z@)M-S{Z<>!7kw!PhE)ALq#64H*@{g&5w36UujB(oZK$bLIR27u#38xT;ve{d1O$S4
zC_RsI0gNuocg;27rpw_PmOZsKN-SAHDuG8Br};SN(BB#{W}!5ek<jyBe}vRCyOa)t
z4Y;wPP2~Q=$|27m7Y=DMKO^)K;<Y9+uNEK$8y06{<(Ph@<zN*#RS-08XeAkeo(o5v
zwM%I+XbXttAQ;D6TT<vQx*~kEh1D}uSSWlw)Is3?{BYt>b`dRaFi>;k#T#9Q{QY81
zl*qs+z1cuo_b`g0zEzGabeEkLPT$ddlmLwCn`Y|fIJB5$j1lp)Y}=TmY;MDskaS}!
z`4nc%^Ha0{qi>=SZQKnd;pk^KhShy-gz!5mVy(>$8;U}7YklZ`Outgbc31+mPTTb9
zZrDiFa{QVHt=pxPe5Z6ndtQ5yJKYSp-Z0ISQ~-aSc1Kv1W$w^un&c-fE<*vDG%eIm
zBAG+Bn;=*m7b1ecaCf?K6oL`jx-s&tCU9bbc14oF@HHwtFvq%CnzF~S@t8GmCRdE-
zfc_{q^xCIi`{;3Q#9Rg;vde-or@N`)@rk?is{FiLdugSn0wKgvfGjOkT-~?ze(pux
z?>=?w_Oc?T4~Hw5McKg>Rg`^me8-=9`(<0TPnxKH>NS`n*<r&M#(QP-KB%Q@dr`Rq
zE(*hh%(VFsd*r!O*2ZpV=y^fj*6qWJI7ynCV-<<&#snC0g(hJwhE8)ze8v}DAK#;A
z`?zAGHN?P%XA=O-=-=a8oYv=yd$(#IHw>%>d4my)<UYxC+jNbuoY?!}&!Q5}AejPi
zqpCEQTS5H($yQ272mq*(NiY*o2pFjw;$1$lZj{nTOR7NvHC%c`=h4f=2k{TD?sNLR
zTOEo!on!8uGc(&uM~kbXIY!P8`kaHNpXpxc;!pm#*Q@tz)n0jsZUI#dV8!waWz)KD
zaqO4Rw;uR?xAt*k6dFxOiQ6G!I@j%cN&M2@ed3IvMoL=;^^V}eWUEFCP5$(6W6Ngs
ztiPap9g<{h=j^y6@&+FCP;ZT(&LE=0NMnYk{YC7eGrQeBtcNBO?}S2fa;=lefB7dq
z>i*(MTepuJ;fiQB$`YPZft~J%4?3a8M_smVA6vm#6WvDm6bJWNr^U~FpvU9`SQz73
z-L)weTRj*EkomloIy8Riq@I@-S}BmpxgfY>EIq91{D5<ByV7|7lFlCh1Aq~P(6J=m
z4E=!o1~sGOHDx_>o4cv!Wn_&3Dbx(iTIud{-Mr1>&5Lc3@O5&a#D>;3G}O(&Y>$VR
z0DqK@Y4IIqb$(zN%STfItdyN~*vauFeS6MHS=CsXId_^UWI!<u+}<VrW>N!cBTgs?
z#6Gc#IZ~7L3(RY;c8PCsT+gX3-P(r_LsCMC8Xe38H=*Jzni2o^-Mv40ek+aFuv&y`
zv|5x?GS7|4h$k=T@&1(V?Gq|Fj)2cvlVSDZxapaQ#}4bh@R6-mXp@aCB#DZJpA=>n
z_FKX6@vmDue=(9QIH-xODx+5m{t^GKrLzo|AHXVmE6-&e7e8>0l?)#t7p<s}w8S#O
z#bvq&j*lPkb?>k5U}28KlhRz9oNo9*=tJCgf5uK&(QEgGUDX*_q1dLHeoosiGvf_!
zN7GMRF&a0tpa=p<W*J^^wXg2keb=jP2bY70LN-Myj+b8;Uv^g4^A7CMKB<V{l!n;}
zwmnQ$?CJ3j`kd3cC7XI`(T<WUozBTl&71hhmt7K{cDlVeu?Ud?!&@|RS#alxo*{nT
z(%x^qxYd7637CTorexe?&e-PpQN>(^xEcJil|QAi_hs*HB@resEK&wth)+IoW&HmA
zd;j(b5`))dF^i3kEWo_UCH?TN{JL58=I9d2;UP!t=PBaAU9mL&(<eQ@D(x<rN~$Ho
zbIg7TRausMXl#6Nek4*yGtKOG!c!qmL-w8YX1wp^y&jm-wS9CE+6P;vfpeAE0;C%Z
zgD=HDNbh;*RBA24a8*T>IxQ&Vyt?(3_?x?0A<~DW5*?EqljexkmfKynd*l0f<%7Mh
zTpsl`1>BJtomoSF<zOCvO?>}-JNsLb5Y`672pLjg5BV|vab4#i4MjlF)s8`gku}H7
zy)Zt#sCUj|TdBWAof}HA>RIm53*)!U=(V_K*Y@$nwpGX0H_YoeV!-=l!hjJ!=8|5o
zjil4#IAUa&<lexvyO|fq8}jVc(s3lXQZj~I#0waJD*wrTJr^F{O_Nqso1Di`h`)k(
z5=!^GA)Y+F_tYo4wzF0$YEpAxoI&L)<Xfi|#_Nylz3w3^0$hUeh^Sf?5&H3K)8g6J
z*&?D+Wg#OLw^h4D_xY*|<Hu~>=R$S~b(Z0vYePa(Cz59G{o~UY^*;BQuI(HUk)(*$
zCM~5kr+pHSRrgsw#`X|dMGz+lEbTv82EliYj4!#Y$CAn2+lP%8f(rCAa1p=~xDpq~
zcdp+0skye1z-BA!M<K{wQju;Oe=WD$p9MYJ$4(YzA=P<kXK?X#D@x)!9nov*_FZ+>
zC=?&DnG2r5ZFh0(#fN%))2(~^xKcJ5wCZFShO~=Jz3s7K?{#0(yN6yu?^Ph6P&_Q=
zsZ(Q>wLLC4!Hy>*F>P*(!7%|KT(L!*1uJfeZ`-%e`8V3x#_~Xyfjos`@V*Glg|lMk
ze9)u!8{O^bOSX14mS`U2*1!{Dvu^G&eNi`Stb!xiE3x4m+z{Qc>JQj0wqsL|d3Rbl
zusYNvh{lLp&T>1fiyiXP)_31#MWu{fgBnc?K%qN*%UG`)dW^lRTl@I2;FiE5;1DN<
zNk*<6evN(id5@(Bb=NV7GdR&48_8I(%}64NF0j;p&}L^LLqV3=`D`)<kn_0EJ@VtA
zOE2uP>vQ%+k$*~FXrROo(YHEw>}{PrDP!k0GfZ`yi?lbtFu%Z^@z$WJ_w{INu(vDF
zA#|sU4NKwI&$o={W6NWE_vlf&BZp6k?UiEDh~UHHq|bgJ_IYuyg44Snz@jOWj~XgH
zjC^EjI&NL>i)i>z?)9+^j$$+-+`cFOJm9S%CRG6g#wItx!OAMa5R~m+<{ouvx9u)Q
zAK+k+QUgj4gMsB@?l!=meM_Hjt}^lWS7YfjUFKp{$Qk|pL-D<0eI_vPXn3L$WIt)k
zpygrQT)i;9d|2<Zk)Nf*T`BIxdNf#E@r=|7$H!Mp>3xPo>lpP@fhpKj@GmUAJ>Dbq
zd4nnux<skhwxO*9$f;>Y7G;Wby6E=!Rr~bmaf1mlkQBn?0I0>$H1zHGk|TP*_>sLk
zxdFdXqabfe>bvhf@zI%mE{Up@zAza`I%V+PxVGEksq{YYUuTV(C_Mp-2IL%A&+m*6
z?r6-gXgUz4XpGXO8b6DDo9eyeSzXmopm%&s!V-b^#&-V1qfA&L4`kY&M-VokD|g+`
z@z$IBRNZeMLeK$~Bi|9s7Hpy2uZTZ2q|YjPMRglC5a{#%x5Y1s8puFSsE6nV4@63*
zG{8Wl^R>stN8R50l2@!=(vPR=JLFHk6wd`W$M5cMn^QYM+%)XVY{JCc%WuX$9^Iqz
zD>gO<93I|Qpp@za@aYSGil5zTonRA~=#32{5d|tMdO?<Zu~%%}1)ZC+9KCdUtlSh@
z?1*GTNQ+&6u9YH5M?|?%1>HJrReY}lZGt!oCi9l=608^edd$(i_s4(Tt#|jmyS7gn
zy@757bOy_F>o)$V&3gTPHf<g5M$DNbbxfFdqH<sN``^CxgkzCu!;zn@0NAyaq3j~d
z=I4IP4?4>#Qw@;G@Dc`;JKy%@k8~E4R?h@vNE9+Jaq9f>k-zt^vQBkeuVuT|7yPKp
zJ71HE4}OZ5qzruH&v>!3q~k<lpm_~<=I;;t=dbT9EJqts%L`rdP5<did(1G6Y?!CR
zn58UtT=|3X;_-H%QlwbzX6*MJCocB_xa%H`yF~9ZIdOGZwE&rcFbVVv=UCq-;&&d}
zS)}6+imvsq=D0^6jTcY)s~q~KD4>I6ZkQY%xjz2D<j#}4QfWrHEF(N+$-}hL^O*Qf
z@m_a*XlL~>VWGI1Bj{Aju~c|eyvyF5#Zp4pfz~UEvEClo9N#C_S!{}lDKIL`afwso
zm&AH4>ZqE_2^@j;S$4<tRD982pG7J}*JR!UFmlww_<~(K-(y!v9!H`0`_;ym?a}!;
zgMxv&QcE#)WiE)942jB0j5-9rCb}rO$0+PRJ6^kUukSywUfLCOlaauBH1(MHs)3!A
za~i^L&kzvT)E2*H_s-{=yoRtDdTe~bUp*-!#iwqyyh&KcTP^V&(>j|}1UCsDaW1wr
zi92HDocK0<I-4{G@OsCT(o@Fgi8=AFqK~3ikFQG*g~STWbjQ8z4;pStHP0gzb{HB4
zkc~pJm_n5GtUq_0m5(gp)UPE|bH^o&kSO>EK0SU=&4ImNnTjIue|((>bXL{!_P1h5
zPbi{Xk(|Awh=7=06x1XH0wfSfBwztT2oOkt6q?uz>J@v%iXf<<APS<_f{F#j3W{C9
zf{J<-#R~fUX3o2Vc>n8L%jME{a{As=o_S_QT(h?5AMhSX`PKvM=S>Okx5uszl~QxI
z12BCSi0}0~gCpy`WH7;3xX(k(|E&Y;73U{RC8*%AfoLl*C^0)o(W`g1v&T;Khvvfy
zp{80yyt@kzu$Nxq4=k7swxQYsA)9GpjBPqokHe&d!Bf#R$%fPuN>h?$hR?U3?w54f
z!>VD+S@waNXu1c<Fpf3v*map|%6JnroSsI8y6sg+!?<;`k}FS0JibHJR)VMzbZMi8
zdvfG2sIA4fym*X#X#b=>FRMi$%;Mv*7K1Xax}?S}+tjVFH-@GQCz1-oX;nBo4Wc*c
zgNcccJ=tzvn|Q!EQ5uWDlB<H=GmVj=IH5wU`}9iN^RGm8LMs$GiUe{pDvaT=C%Z{Q
zlK%DQ!4g5`H&iL`%q$gPgdgq<a%M-LPvD<FM0%FDfc(-oli9Ga^SF7mZ~N1Zy7~J9
z9;%9!KMCDb$>pmw%Pbvz)aQSAsRW(`A5)uEm}`DN?Wj)QdSQ`J=XmV=iQ`qAZf-s0
zs9pyj7&-Gk$KtB)bL_rC)c4;{OctLWcqGgKSW``h`;M#`f54}s^>zi8Xc7U>@yNU*
zj~V9$%2nnIkoYuL^f_|rnfn3Kh@IdaNKgR1oq%lq*{=2KxDOKmKl+<t(D%iBu(8a<
zbKPTey`Th+A*zK#P*#^+?sBg2k|C}1`Qr!zxXtt2C1?2G!8;n%st8GX+r{qt8@*&8
z6V%0h=45Eib1ro8SE>kSelXR=qQO`Z^ttM8|0qmI=nMEV8t?^^@3%cvqg=B%-Ci|5
zVMa$ni_tWEkvrF&M0N-_ck5C1{#1W(VdJdkhy{nUfkIh!lATtkF#^G4=+%XuC_4=U
zl+xa<>=mDPO7#CmqQu*aUbj)lX|Ty|DJCO@%Os<gXqn@JDK{kC)kP!Ne68dpCxtiI
z`6rv46UL`QNoUYmTP!%0so5r=3+=%8Im0!sEv=fR!)Eapa9)<bYZqmQM}aamG6rhA
zVoZV<yfWD~k5hz)C&*`~NNXlmK;av9^%4H&%E&iXRck9en$8i)rUWtF6ZSuoYn8xj
ztD4PM$fi&!&#XSjZe1VW<ujfb-@9>YBXu~4q)}Sg3_JMk_@{@cs7xLf8%$8xYmTk^
z&>u38-i1<Mpe*Yb=h*L`36DTE5)4JcWieT~=F79}xb9xl7qJ#5ahOz4=MA(=zmD&@
zG<s`!q4+WyxYE#y?!EJavL1;)R-#-ACBkl^9ugJ|GSlPj;EwwfDmD;cj{tF^`UzMC
z`Yzj=Pj$iBZqw4JLoZUurI5^09qO1(uWsC77rC+}QI}j8Co5lwH2|WrCUeY<H@b%(
z&^1Zu&5&=Y{R>LMy@7YnEWKOZaa-bkkBi;P9}Fd0X48<BhR$=BTl#0*_|t&?h62G-
zX~^ba;8BM8>{?gwsXs*2BHn@Yv#b>lk?9Y7?>EkOhwjin5ktmv;IhHe#h9g<58rfA
z{k$=&#L!P}YMdrAtVZXL-0lDJGMJb%NgbgPKrqwI#Mj-5K3+z@t;r}0-VU-X)9z8X
zv{Q7}d2ymMF^x?vO7RQJ_ud_5&kA8?AeCW~(S(Ag!>oFLVlTKuaT+9qRTKQyqEs)>
z9Jj^3ywFQ4YNx43f+D7Y?<e;2yS${hb%O468jR<dp6}V6H;JSZ@0J!gQkD*teOc=f
zFO2O_kMR@Al$1r8j#=G)T9{am4ipEpUJ@4a+ue^R)^lhn7MwM&Kb1d_D4u;eb=JI%
zHt;Gfk2L6@|Jd^zlFpHMV_y&xqE((b;`88#HHn`M*VP74OtPjff-vxaU}Np~vnQ`h
z++7NSU&4Enu|^s^Kno|oeR5{dy*c6RlcPm16@f%4(k^<3Mg}A7@L8&Nu+wD{bIMC#
zml4lzTx}N|rNLieg(>1CkbZ+<gbqc6LICUXf!$V}G~uYIt*D)$RnsIchs(z*Pn(fE
z>92%IkEo=Ql4kk*ki8fV`Oq853%*Y%I~sTfqp5KdikFQ;e0RFb+3wR9ux5Da5nq@V
z12pTo&8A+YI8q6iBQKho7=<L^eGw-dofVko_>VRNBcDqB4=;f%EEbdaf|Z<kU64K@
zrudv#fxRF~wRnUET3e<$YLTtKKjGbCVx7@)Y8E+^cGU8pS?<@%V^XfsZ54t^p$9=>
zJvr^$M!1wd@h6WV3@QcLVN_-vcLXB=0zsxp`XG2UGgd$xG@|Csba_BXA!7JsKR33E
zszuP{3L&sX09H&Lwyw3iZQn;h;-MoW_P?a6IT$Gg$x^+<#Ru(Y5C1&6^Xr^`s2Kz+
z7fl%Yr~uHoU?*N~7gZ*_6{{a1G`+w`@)<aP@0XIJzD{`Oc$QQVcMh^UL&`DOpc%$K
zVK;AzYx;?&5*f9(AwVr0fgDruf^FKMQsTnWRvI-D>SS@!40C6!8-HK?Jvksb7?sEl
z;Z5QCPCd<S>8%hUD|DdL@A1t*>+V?+9G{Tz#BF>vTwWhkkse`fp7coYUQdBo6y#%f
zHP-_iO_uIK*p>etYL~s1xN8`uO#)347JM_o?YDPx@sCHpGap~%R07w=0AQa_f;!AK
z8;XKEFN{fwL;bQ9B)cZs0OlX5f_Bf??ek;Wf%k*_4aO}G7awsJ*88W2Y|}@v<7acy
z5v-s31{t27gE>k!hdmxFnW-rXRaydA&;k@l2h$SU5^T6$Asu9c_`(D=s4O6(nG1pq
zbEE6~^Yz%WlWVJ`;V12K;k_L2o~=7H;rjIGM$~Kt281yoRGMTROS8fZvw3^){KiyC
zY8BFF9@B!kg3QdWi%W1H-kI>+77(663R;xN6a<uVCXrC8=^W>xmn3vR%yyOj01`_I
z9f9Bif4TD7<P$q3Zh2IdOc^)Y(l`y9Ml6(R{`@wmzddp8<x%o#MnlGd3PV5M3_}LN
z9<8qhL2=b=0gGw21{rI_B70^Rm9RRCh#$j!1CorsDqe2iOimcGElN@=U_9&_k|WX<
zzj&!leM;9oC#3NkI#y~!d2P})HrHHriM_ede+QXNK$igd4k&<$%YyqZ*6&aOP{<WA
z1k#}q3f>oUgCT3<8o*51iD5J%R~7$}$rlh%KeUM##Ls(F<srN>qH0<#*;?uZP+Grl
zvpvr8@=9J>6B7{t)xf__|I@af?nTA5Riu|Dvmao=ko4MWSI_pcf1Vca=hdxt&rB~L
z8OF-o5PSFjFYM3tUZPMS2{o=L3;%{)c2c#MMeMdl_0mZ@%gp}SjvMC1P${@sxmEP}
zir?+g<GcigK_#T1`{HEK`XJL(@3db}_wowpIH7u#J4!P@d}@2mQXzXge}=p|dOD_>
ztLj~4Li~%Ne<1^x1HmD%f{6K^)2F+yevONWOKMwuiVdy6Co3D}UWna$FmE6ztZQtQ
zKI$2?8+o+WWkh)~{#RYAcs26Do@jB$CWaEM2(xrGe2^AD=C(%n>P0bMoR7-hM}*gQ
zPJ<hJ?*ApqGP%v}{Y$-w!6m|nkfeI1xwFo_uvM)R=PRXHNWmY3QeBYN?AFZkhgC5C
zs3yR9Clr%5LFwkJS?;14UR+qm_J~*ybs|^KbT8e|CT(njG$sgxG!h~LzSMotQL}dX
z7-1elI64d|y1-pL&L20jwwjstauA;JjDNfB2m6EYt*VJw5eXrG`n_&^gTm<Y7=O<Y
zW|%`4xP-QA?ITMwOKx+QbnvJACpr(c<`H-CTz^_%Y4l0NvdSG%{B@=KD@;CeStuHm
zw9E75nGc%X`B8e_a@4mBuR|Nnlu4N~oMK>>oAhAp6Zge#MM};xL{KF>$upD6-0Hfx
znhq*c)5SY)m9kPjILCZD!cDu=ADpkKzG!*c^x%H})z|G_tVg2?_RZ;`wGQ26JEz8f
zbB4w~`%2NEp)`{56PFin3Fn=>3C8d8=k1s<&f&x~ry==)9v}qDGl#utXJx9b|DS8J
zmd}3Oz7okJ_QwUAjYbnwCNsijq`LF(QB#JEBb7iKA{jnG830`(1J{0;mkCv0k0G6&
z;vQM4zhmO~VB~)o<be_pE0<+fy<zwKN39%U0f{5obg8eC@a30{_P)2gJfdK^9r_Pt
zo5u>>(#qIt?~N7f*`GNib>fVq)1Ji?N4sER?2y$ef`O-5Gh$}?t^a1f+Yu9y6i{(m
zB@Pnt6&-Z4U7rkpz9BU-R!r^_wL<;chj!Af>Uqh1$^(R!T7sR|+qwIH_ov+F9+{Y#
z=Q@n>=d27N74DvGbER_+pXMe1^W^E~+1Km^ulOe)%z_k87&nmg`id^@rmOtT2sGa$
zD3Lrl0oHGJ{xE%V;=RaWq2fdZ;8q;J-9EK4>hoF+>J-UQ*F1}(nIZeMyEOt_l#)jW
zQmLy7RRqn-i9^;_1$Xy}o%aA(NU3<s_1fu>93h%_)HlJEUuceyJu;+bwzx971%OO<
z9OGuM&@F%qM~TEpz%QYYNT2uBPucfhRR<3L2xnL3Bnj*fqK;|au_SnGXv`KIWlXcT
zq5%7Bowv8xt4FJC2IQ8iQM5}N9)`ASf1O>|PLr}M^MMSN6K{arJz0VMKD8gTix0+z
zSyhTNg|jWq7C*ejHZ4_q&Sx&5JGLyS4D{8E$L-q($Hv~E-dKp04sLCzZXw-*has!r
zxO%(ii<l9wvE&FAK_;iFGnYr!kRHgFIdh#xnLK16bTv)T5DV}EYR?JoY>t`6Bl6-T
zoQlj*0z_q*oN%b?y+#!ThEBe9bt7+;&Rp5%qakkIVQO`V(nd7GiC~F@-x@y&+w<19
zLCFIesPTrV+#=~3iXpV(I<LRdK6zi_6L+f{rMO=S^(FE^*k=YM-e9BWXnr}rjKS6T
zkl4CBbKP<~C?@TM{XohJO-aqHh&Rr-DXIeR{4O{(H}QtA2^@<AYM!iL84SAJQ+CVC
z{wo&(Y{G|NZ}9?{;(mE>Y>fs(d?<2ISRDc-bQLQu>t#D5Lv<BzmFyN9ubGS})E7Y`
z^6(^cOx!Zpx;`rFT+L3GwxaSSzM~T$i=gb5;E7w}`d<`1PFp<yxYDDuF(?;4idnn)
zh~}sS0Y;$w2`w*=eh#_j@P6)(`=j~+itvOmq{vI+bEg^maj>m0@lPI3oI$Q330he=
ztne%Ev#+g@g(KZfOKYoekwJ3=+Dq?z#Cn@_B0Gek7qih&=B(j|Z!S+1rS<o1oo3b@
z<_Z?*w#GXjz<QP5wCn`wjh1H)8f6E@Meo-mOx7~thoC)7x*;d!P+MX1V^j_sr=V(<
z$iom3pb9cUhH30(^Z$zbEK6xu`#4;Xc7QD>HQM0`%6uY|xHrWhRRNji-C8@~Wl1B-
z0~V6fgS0{&Nj0xA_4}@SIwf`D2_uLqd$D#Je79LgOq<X_IS6gbgbT6q8j9={*CZ_J
zuM~s|p@vDAO2roe#SMkQu>)h@UlA)Ae~F23sOdwMWlroLtehJ+@iK0o_;og&AVCb+
zTU~eB4U3X)`;XE~BsnU~Ddq<N$K>R(JdV5Bo}a2b5io@jt@R<IAW8EV@37-~Yg&~{
zi3)C3CYPl1(RXHSY;bySpUyvp_ycfJB$>wTPOcj0C6e9^V|#?`=k@J^F2{M{-w0&D
zTp6bC*r2<K7q$cW)(R?~IVGi$>1N&^!TdLrcEG&=8nsjf@(Fl$!36g!30@l(mvy+3
zBr0nt*x+qt;P2<06%=iYeRY|V21+EC!Xer(@Y?2J)0ZJ{FicMiAOI*Rsf6{LgTzNw
zF|g9Yi_sN;ppQNr(saz-6RaE`{at>X+$BzC!$jf1LoLAp9rRo9+|zoa!k^I>)<(7>
zk<x8~?Xg^VGMz{|gn)`JV)N^aBW923AY6d{Re}emgN0HaRd1J#P7G|cKx|<sByB=a
zLgX}1$hj+n!OhV<$xVp7dSWDwqQL?g!|%2S#|(_VK1YRn!&wg78_sfAQC%P!yGkY{
zlY`Htt%x1`Le#bqdK{0>ya6)25+l=_FRe9r`G)BI7yPe~Ekr~x<R%|LhtDBsV2=4}
zlzsNosDfj3cQPlJA={+cq=T#Z^f>##L4M;hAX`afh|o^+vg~Wdi-ysap#cJhgyb?g
z=9hWF5m!Xt3IC$)BjvLo1Vp44!Og+8vo&X<?``i%bIf1acEbU3((c2Cs%wpREkl${
zNoJ+llkC=(C5nV?2WPU8Ur#kbvU`45qQE3jXvP!SVbJJ@+URc0QjkR8)~cxyH-Z(E
zYreVF&0ZRHCps5dMQc5ACOVf5OdL6Tkvn{im*JO&?}GlNl!#sF${$e?Ds&iVG+r{D
z<=EXHjkMqXs^$|zkK3u<4o!2@%-n13nkg|qJfi?grS^=|_!4EoTk5_fSXUSmb)HI#
z>QL6)16lPKW(13;t5p>;6Q3W72oV4t;7P9q_D^+Gu*Jn<73G+84C<BhgIQD65Q+5)
zhSE*C4ljj%w`Sx{`&*q7T@ejxkoXP(4$2wd+MLF?1?@v_Yzs_xxpQQaMcHMCo$e26
zvxe-UO;6h;8`T<O@kC{n?WG*cIGb#<@hcm1QvACin-83v3^D@le*Sy*;KS7*VzxlT
zCP*h)+>b9)-CaLN9d#*Nc7&;r)O<LlQ(EFu>vV#9@;8<8Hb8)>QU#A-zw=6n8~^+~
zc=kkv1`&raN0{!Bi9?LNY7W+Z8FO3`2C)?HrKw3dPjV;_)|MbGT@U5DMKow8rqrCj
zM4XxC`ycGer_|j<Tt1oF-=Gkrnwyp;ft`M};~!Hg%i;g<s!-l-UKM{)LAb&27j_71
zhT!4MLfdP<SaG>nxr|GOuO~|vm}=o9mvchf(yg0aFS?u6iB4L!*iCO+ojAZU2Ah{i
zjcTrG*yx^r(l5{a7WIt9F-$iL?zYR+zDI07B=AO<Vcx)scbsEZEw(8=L+?>&fYq>2
ztAmiX%(d|#o?YfTUa04nT~kH<sN7X1sfPCVyP_A>hv7NVxYdm;S9&YaSGSiv?}wPj
z+M@=BNh+=-z)6<82RFud?|hvtzFn`07_SJwAl#>XIX2JDx7gXUy_keK&Jn42f(6=?
zrkZbVwk@Zrizl8}9o`kIOnB=rziyvC+J}g+SEZg6oxtXPdXudRC0wrvPm3gtKOuYd
zPCM)jy&Msus&g{Qfn;EV{9r&(AVDFE=FceCcY_9n>?VRmrDd>ZNRPyRWOMF{>o89-
z?7v~my2!uT8gy^b#fI|)-Z&dHSfW8m>=i$0SI<%poyAZp8Po{;EDYgHbNX<1OrB!n
zME(`HRkW)G*df~iGJd67HQOT?m6Mt2!z@!~A?9IX&AIQp>^;%KS4Lfww>Dw%1l!FL
zIBDliLEmzXPI!Nc-zvs0z*vs??@oK<c#mHd2|~xziX2n-fxYK!{aGBq8j{1@KN{xw
zHTIj5*q5Pm^6EmWG2fWs8yV*J?Y8%nm^;^LXhB^DV@JgIm7c60J?55fj5-KCEO$p6
z5G({;jFF7q5ZqAf6{9rB({(N~2B$t0qzq7*D91Vqn(66@E<mH2Z99V23ZEt@2h6G0
z%pRW~UXm&O-R`$DuJ{rK<J(jkkM-d?d)8}SrG=nPQ!Q-*SaLi$rGZ)Is@Lpko8#`;
zwePXK#;o=B>X-bnB&386-B`s3fbNuLZol95*x?T=udi*1(BetULj5}Q9((9XaTij7
zz<SIleaY+^c8<jC3;Wp2^4Q8(RRml?)WNzJ4*Ek=?Be;c!{(}_thHvmU;q>~GO~T3
zU4OQhc*sf)$}{69+w^7?vA}3hI>G16h{o7UYlpZucPq5WI~~Cep4`|Rz?H42lC2DN
zEXO1tV4oQsD|%EuF;xpxu*sFliqQi9SNmsq%(|=f`%6W=c>l5jWQG2f;`-hnq9|-s
z#rz~Lkv3r&ruhZ;*wq?ba$3=%le`LGAbP4fZ5D%ZqH~+#1#PDJmI6V<U4-)+ZFUHv
za$sA|g6+TkFgNQly_|%r63d3UE8xCNQ~G>x*y(;@l})Cz1U<flf|G8xT@l2Ljd_Mp
zmXCoQp)w&2-`$)$*WMcKwGjMhCQqsomkOG=2HWzT8h(x`AbRug0O){#(lz#plVc~%
zQpiDERpu6ve5ay1@E?wWd7zNnf-n1d6Q*ev{RF&uIQQm?Ey1!>FZEvpg}mxOJNOL!
zB78K_HidL)M%Q8YSPT@M<n{J&$G%eVhXGTA=nxFyz2XZ>laeOjH+n^Y2E1Z(?~X5=
z5+nZ6z}iWmi9(+hJ3}nD;z76K3Dx$bZ*)nAI-Bwp$VB$nVDmg*z7ode@U5W_1eHR;
z%+AUL-@D{^yRbH_fH@WPqwOn@ncRGJaQYcBHGBmE9;KKD16XKOLE-<TndnvaAsgmV
z*)d@?k34Rcd4HZYv)ar-YrVW?_Pw|O*S%~vgleA^A(R;bQ$(3$ny+38CJoc|z`iJH
zgtIJ60Kq7ryez74{f|?%tH;4gg|>}>E>E)UXZl4Xutp>~nt|_g`%OW`XkA6TyAi^H
zlO(_J?BmzCquz+xDqbf!cc#zbzrq+MuDYenwU0~qG9I31A@)<|$YJqm1cGe&hG5S8
z#6KsIO2U1S>JWCFdV_4+P9Ft>2I$HFBT?3=T7CGABwG62V(%THd`H$M1QSxR%+1<s
z^d(RCMztM%k=GcbwOKd%B0JL@H_l#twF(H7ltLa9GQOVBO$Pg9n!Fm@`k+=6a9d1c
zYn7y{bPi$3a_uMH2-4C*JuDmxltn9zk?3$u>Fg?d$ax7R&%vz5F_*9*C?_k$y2Z@^
zl0NJ%_vJ<EX2{B<Fh|Y`_{qAg-eu?C8Gq(u8gEHGK@GD#aet(a!MxfWJpPDAH+-zo
ztvDx`InH-|Yw-AQ(W72a6BuH+5yj5saE`7l53Zc2X-tkQr$s?i+a9JlbDDW~U~s`*
zD(6kmhCt>qY3&_@yWmr1+Uc{jLV~07r$}y85VteO20skcgUHy?5DC}@;*)l&n>E+o
zIYA?O2|)=w6o_Fc61MWYDR$Kot*{!152lVY+L?zaoD$r>GGWaFT82Qd5AOjhD&cjy
zxv*c5QmNs!d}lZ(z&g-nvrJDigY8stsZs~f;_JxWo%L#v^{oaG#9v|znpySXaHKp)
zqUmO4v3>26s2>RkiD!x%Vd?{SX<w@iPug{-YCQA5jtW8T#4`6=zxZ!Xj~0MP+R0Q&
z$97O?!rI%n+muC$33Jj2?^@~uNYWD;^zUmMQ^O=Z;Y(F$@X6q^v+sDv{_9D#usB@G
zSq+_Zo?f~ay=ND!Q7OI=AS>7ocT2vB<$d(2F6MU4H?iet7la-OvwQf<*=EJh_O?};
zV&~gcw2r63K<|e=o<(1bAocvv%P5r31eh%N0~GL|*9Y&fOq@}%Z?YUne|T5-&hy^z
zlnZfBZ6K-y-bh1m;?KGY`LaXA^J}i6^+_sQ)eOET*fl?4+kR|ucq5eKRjcu&=R48O
z*gNdD4q7G&v@%TXBPACy0`8fFVA(P8k6slcluC)i04yLqve1BZ(Zs!0*jI98|92k_
z52mKJi4wgE^WHr7^dU*|6QD^;(^q7RiwUCNn(TJ;OOnu9CQ|}7lx7V!CoMX%Gn_L1
zHu7U}Mp5L)t!=QXI7cVXJe+@yYG?Xlc=oY#6e3VOXl^O)_Tt8*q5K#Ae*=C64>G+K
zRR+W7r_v)1i|;U$BL_CNGEj=2=sW&$EI-N6Q%T984b3s-@@Je5bPwd3qxrFFX4jn0
z6Xi$Lrf6Y2NHeOwYxC|z&CDy7$p8wv2kbX7dFSzo4<>4{QUR#ByeWF_;Qmdkw2PXx
zbP>d81YVdxS3pTvju^Xhv*JbIl10*}Kou<A{xSaRhg(;#hasd?d3KXpIEDhzvGsKO
z+Vr^dPK(i6$;nlC-EvT-d49Ov6JCphAm*UmBuB-Kpmjev)$Y33A0;L8&5%r_FHolW
zeYAb<EPpYAmZ}Nj$!CKu=9&i^ZQa<os)MzVbzr0N(vV=O?ya$1PW2}&p&=+`d<gQ)
znrU{<WPb>}eT5ulhyjCZhT1`GcUV+M5?Xczx|_Rrr@MXcjkpU>(#N8gkhEmcn+H5=
zJk7q^>Q6berWt=EJWxQp(<*GgTz@0-BEfZ8#X08GNw&Ga7o0-P8lXGP@|i6<#`Ztf
zpRSnGh2INw-^?3iU%JV^3nkktH<UV5bm%W-_JD;dWW!LT#5M$Mr&tTu<(Er?9&g1Z
zhXq+odO_z2^@QSBs(~*LK7ZHC)J{a)8W_kKX6;46Hyc$7?`r_7cPeW^da)36Jks7)
z<R=VBgsMZ3OE?lX#^C92Q)|*~)U)w>mMCt`_Z|<%Ah%4n9zKM5t%tqu@xO_uQ@Dqh
zM9oi@d9#<@@sO8kT31t+2w8lm6xq3V#ZM?D9wFHiNd*E%;dP$c&Q(wI1ui3r8~Cg=
zp4n0#Om3@H8!dQ)*3MzAKb#vpz0E&5#+=oU>Y?TCtYB8;2+}u_{*3tMfVZf~5B>@+
z-<0t2;ab%)v}P(@1j*7;@xthW9QXUP@ei$!kzKe?A}<3r2Q92R26k7%_t&V(6UPwT
zTdIB}_GGI*WcwbI^af>1SPB|MD%)HP5O%_RWY4HkJAn)^*^~E>5;q?GhW+n&l@b(y
z2~1QC%r$dO=63u37>z>_i4|e{<IiFT+&26DSe0<fViJE5Mypu7Otb%+cEaA$Wqdt3
zj$6qxD>vK6#`#-80qYr&<d_TIv$wWM07P0^@kWr)HsNJED!f6i1sWxxzK969cf4d@
zEA^-IFo~obOx~mR%{n!@98@ag!0=Ks?X%kr_LLScBjT-|8p^0SGwW}&g%$pcA&eM-
zSEzH&GrO1B)&egM4YK!)K$@Z4+-^6Yrl-bJgYhjV7N{xH?03H_e?>w7F&O<BUZW7Z
zx$Y#lXr|(`<<%N7kk+1TO4EwX&qumH#!|FDO!#-ILIpU@FdGKgiXSw7!iEVgl1tEH
zfh_0Z<@Sf&+M7T)T^MKTk40Bk+-(~l4(pHqv9j0|U`D6Svk$CN;xe0Y2$;0QMXHCW
z63sD>Ot1&VXqt%AmJ0=r>Mm+*Iej|4ip=_ITl{GJ2(}d-15h|%MI<6%5(9HVYuvdL
z<IAbe73UQAXm1rWe${cW+6lcCc;acw_9;SUxy-xUz8Dr=BMsefRa>;~L5aNhj{SFr
z7Lf6hd~irqpJTcYw{>&W73Z4yfVWDCLMPq#jx7o~Mq&9eFE3K<iNQcwKm3%P+EuI0
z(1emHz;Kc%Ay-9OIM-bBbMi@3;~sl4T6P&?Ivc_pBZ;tdsg0eg-<@~lop(t{(&gpf
zw%1mDyYdWEbxJ11hV%x4X1T!b-X&kGduai+_)s0EG3aSTM!vbdQ_9%Ial$+VKE-{O
zugv&NwAilW?GGm<PFSZ!%lQO15g}tY)6H?YcHLC1Xy#(5PDxkGRKYBB?B#agt%;vg
z6wf)yQUNeiN`x0MwX;2=z@IO&|Aj?_YLN@3n``>oDJA|7$iqz_sA;B+Gvl2Y$x&dR
zo053?4ip+~J!*uTM&BG65Ht4#d-!3AFJ6KqpDt4%ob*zcfS9p)rd@;E@Klsg&8aV`
zsH&S<Q$sgLDcS(yd1KF!2e0=<8?;nF^{a@r_VfowK6tN+_^{=5jc96cO%(sH+im+7
z6{ivbh{G%u(2R12O?<%%+7tl?p;D)RVT<4MGP3kgRU))IsE)a2%zO5gkTt+L1t!$+
znBXGAEdAUb^s+w^whilxg_mwx{;(hH(BB2<)V)$(OT+HSegg5#Hp_mnmp-M4C!vIR
ze(Lj&$3LN*n^IbH>LbDO^yoba@$#wI{1Y4Nq_3ZV*|~?=E8kSsDeE^<15U{oTJonm
z>~nh(9`7C1eJD;+*w)1qq?Vcki`+qT+yCv?0035b3<aq}&8AWA#}`z}*<j6x@5oS%
zi~{pQi(5Uoz0yM)$v>j~`FfNTvIOTWv?t#dzvl-nn-ITHI&`bDNjEPnv7457nG~4H
zI3_&~65pM6%~kOWISxlI%pL1AY2@Tev&=6oHgBD_k!X{%hG$DYTgHs-ZnAN&dU09R
zEaBB6;fAW}?edqr1WuNciE-v~OlGUSCY129hvF(VvzaLgr_f}|0Nehls9%PwMjj&E
zK#X;h8Ja%A{C0>t{y5djlvY!iARoRYZIl_)!(CWICZCGbnwkloX{PPh{>*Uyj#of}
zI=0HH*?a5QnB-?hy&wG4-q*23^h0P@G87=X<kMi*feAl8Lt2+I3C65Qw*^EjwTiET
z83!hGY_BoP2>j8yh~Xz>!SLU9kBu6nkOfYSz`o&W={iT;wI#+4`6Mx8w&vZ7rDr@J
zmjYEHsIB`2$zR94I}Im`0EXTh0<CBue%>fo8PZH70<4vaYG&#XHFs=w)5oYL=aAx7
zURap?667b<xZ&=!2q%&v7cl<4Tub0o^G1Wazn>>lmgs8QTkXLKGR>SacYIg>7ei?M
z6?Q8FaX`=1o$l`W#uGWgcI#lef;02=)6Bz*+=RD$B?(%Tl?u{NzA1|c$PGV2&xt-P
zshSwl+d^*=6^zCodA+^j4>g)Zk_6GAa-$3zrE<uv_SIg#44Wb6OaQ>6PcvH+-L1P4
zcO0yhc|rjUAtWesG)%qMK6rta2~e~n4g}eS@ROt~@o@1C!QkH$s&{H#UR%aQd-w=*
zD9<eJWlw!ulhyy&{h4rsZ2o55{TS+Dw3~{oKq;^XMjURRIWPXG(&&97RpQV6C%KFh
zlf>2jhjquK&8oHA<J7vde(<i8(9N`IqUF}lZRzU7Neh)P1hQSAGZTbg&DTE5PW#HE
zxax0$pokwAm2U6)RMS^160#r+Ut;~xk2RMd#l7A${sNE=!R5&8Gti1=v5b>UGb?I?
z*RNDyb|kb}UTNdZ=7?pM%vG9sDBe|1N?HZ$gFpCN+Zs6OY?7q?-Gb376+{Zd3~dPH
zQGl7x-VP?c=#fV{r%CihZW_NhZeg(X6_NZsJzknyX<ECv?21JH8jl5e*N}gxxue!S
zl9#mayq`?c+~XQj@|JYdA~M+Ns+XX;Wtc-=xA#38f6`P{l*;)FTT4*0h_89wTei;&
zUP^f-+6?28X=Z(Fe|b6nui=W>33r__9std7AfRIn_&!)u7+sU6!~?C0fmKq~R1;9I
z)IiY5U%|qz+8vBKRXc*9_JkiZiG(vbB!p?^if@CP2m4b*Dw2?}!+ZP^9GCA8qfHVH
zgd{A0J&BPvuLwq!Mt=x3<L^`!f|@bE1=qi&5&z!>Bsr7!1fPXa00OB`LcJ21v)5z3
z57vL?4}p3vBebYp<~xs0vYo$E3F|Sxt(gn3n2fu~My3CGy!&%o;<Hr*LabQYv58Vc
zgc1BX%RTd+7nMrtgDs1nl40H%?7nnKf9}?LUkPOtyGKU5)%0xlaK4wp_6>J4vomSZ
zaJ+l(OMk*LUbM_<fNntUqxx{y<z3aS+y+g;6b|4vuq-VnxgB5YQ9O6i1eL(R!=e3t
zdvL*xad&^CjYx)p*vYiu&^drqNv7_OPlI;X_&>lgk|qW8XMonU^QU0SY1*HGlkTfH
zI5#1Fuh)b6iD3hW!RWfFH4#+?fSF-dTw{lI3su=*k{9~UD54@_9df5Vv5QJjSjDXj
zwV-vR;4v%D4@M78T=bpttP~^-^_XDNptuj(kLD;Q4P2{jC=}60NDqoRtL)<~D&(9c
zkN}!}?o0;k<d~!>LHlD8pMC0Jt!$){ieM-lzLRdcObov3?qwAHwNMTyN9CE*7$(-u
zO8^A;?sNlT68E665tDq(T=V9*V9HVd|G(lx?ENc>Rp@;askX@k7N_y;4*Nx8LeWhW
ziD3b?mWxt9sX04#yFIa?O~Q->T`MBXGp~PaUu;#GloW%$5crDiBvhqm!Q-y1FfP)U
zLUTM7GCNAdGP7dV23L8yuLmv#Wn?M?xVjw7wv4~tojch}_ZHA2WW$_%hx@a}3kSj*
z1|USj3cc%Ex4pt&b42STA;05NFj;1k>yqjPzCI2S9>bKk-3Qg-*|hUWxJ{_QpdD3$
z+kH@ySUugD;~8bo<`Ss#-@jUuozy+>JF>~QgF>g!h~*>u%As0JFZ-3sWA2e}N|SA3
z&zf)T=5&9kC-OyH7>I~@Ciz!e-P!+vBH4dGg%G%={nut>=wC?8rUW&79A;vhlM;dh
zzKlDD4m(6;z90-8iwXbsYdd#E{LKF-#x!h>FdC>z#SpDM+*b69zqwfjQi2{ZodeZL
zt3nX33wzsBPxew8FcSbuF>5CAn%&Q-fP9qXoEigAMGCP<NntKGtqLxm8m6Rp2hjFN
zZUkWmJZvqt=>6?B`d+oQ7_bnqN9%i~PTGZQTsAuRY`jmqkgKlZ*2L6d&SX0LEoTOg
z)he4wu=&Pmct}X37;5+MAaPPmRE&1|)0Qw=<^cft?4xe}E+spV321{zDUrZKoVd!p
zywl6*agLTnfXnpl2Djja=s!s?a}ddC=_M*v6`AJahup6*zFLDhA@$R6WFuyrzW^yc
z=25rtU4PPjYCUpH+U@T2wpx#UWVk+exE0a<%wgy-Xi@{pp;aFRlb5j4<+azpfO*79
zno5NxQ3(`ZOzrXtcguZR_bjv|wtKw@z|VJ|;(9&c1#G-}E%8H!om^Pr#@_8^gKHR8
zrPZkjaY(xkc0E=JX;>2gjdZB1rL92O#qQ@bG;ol$OlD<on#iQha}O;}kU!7I505aj
z&EN}M;g~Sgz}hyOp&2D+U4k2!p})!0PmCD&{`-ScKIj2uk7kmR(bOa<_zKTf74QD_
z?}V&6)mDXsOVWo15yZ!P+q-wqPdMZju!4$687KYcJmDM;FkfVTj(aj}6hZq;U3n!n
z>}|d_of!d@{}s6B8<NWRsN*#vtY0QKi^F;9v96#(TTF0vvZX#q<h(4pQTeW4Y1n`Q
zzq3|`7m_H)L(ZLJcU-DjXK2Ue%qR@q@$@vA#(mrnJ9Jm#0@`LERF4U&HeHsamz&wr
zXrFmYTN@#aKwn5uf=`XNH+~=zdA-AEkHgi5q!*d9$Gcm;(l<Gjax*;9y+8h6T{UnQ
zm&~`(VOI@7yJ~d>6TY$|%$0rYpzpLEA5kGtM=%J)K!~5nan0UIwb|_wq+TESK;8#n
zxqxJ1mG19pul-4mZR<*nN6ZLA?Mf}hrzMTEggGN9Hls#Uf|`yA%VsH?00K~G$;pXh
z<}X_9&U{%IK<}Y>*?p6MzlCL<*x`s{4(lMjyO?_@lhe5`GVeHUaXsCS8?<*9i8N4B
zExN>ur&COypz6_ttV2=U<h!(@C=#pSAv05JTX5o1r493eh1;vvfRB$d$~)G*KEQu`
zL50}pVGAGwc7prRQs|zY?f>9!CM}g<Ak7?;>jq3vDMn#vZPg^;k6<s~pT1Lqgd7*=
zzM7=4Ja9*ar2iqp(OU<mL6%9~V1tzjr_mk}AD6^wDJ>U-@(VtbV~$)LOm0=aEZ!0`
zyvc2I*SIF59}PadGH&j*N}w(Pt<;DZh}Im`AvkAk+^5qCPgs{N(z8wsDMqpKHn%v(
z+e_)x5}I}JsCBoxN&UTq8gzQ3h?+!wrkVY&aNiYpSxLBKk)S(jE^r5CdP#8=ef8xo
zkfB_AUFja`;boQ3(&)0qT@cGQ%yVD0xey`h9D0uQXuwIRT<G3B-}?cla`%!I;hZp%
z7oF{%?YH-w{%ZKQ)%Urp4)u}>iVPypoNMy#b%(Y+v-F&bq=DfzW|%+Dc0+sn!-`pg
z@}{IQ=YVtE2iYR%%i_eXnz5DU178m6_VRT}eSu#!$T17^x;=G+{(oT=vu9A7N1ohm
z^vy|qQ4WH+4sLAzDj?p3@IkK|ux-lqhIAXXI;k(-#NYowC_1H8(g)VGPU$vvF@KOP
z?C(;^M^@K@XqZRpyWMgt*GdOvtgo8QFJ?eDvmi+@oP5kME|GL1F#C^p?Z+y%A)rS~
z6Vt`fj#LmnTIjZ16#vIswj!#RN(V|EFgdiHrM>htH(|M^Y>;WsS#jC$*fPx_qurwO
z{9&5d)>1u^2w5iORCi#xzgB+`9r;kG;%w8g$gP|1CHeLEmvlX7t2<(O;5$EE;9h#$
zUsPMl2IA~<20%+wImW#|q3sM!^vsZ?x!hBli5lQ$P4Tiax~D{z4?{rcP%yw96T<ZJ
z0@RCYWApI`%<UTLy0o3SK#Bp$=E+5w8eQRzZhLvOA7jM=dSx&M*VUfxFX-__k+DH9
zY;>1}U=r7hJSrloM)<6s+w+!x!b&n-p-$pjfCxKBxF^T^bJF~aVPtTy7zdqUo*C$#
z+U$?h`luH9Qc_k>Sm8b$<&SFfcr$Zxo1UEEKB{UHF^~-Ct#&UGoGDxH$bPQ#6aLIR
zJ7X06OP3Jplu7ROwr2^GMj>Z{%6A%LHMvVi_zMi7Ny0R4DhJp0t`Tlrtrrvm&gtrr
z9M41j-7#<a>lF!SM-D+@ztZ0YdzTeemwPcZo-^B=F~+qU?N2ELhmuI2BEYazV|%)i
zHOk(Qwfr~ku+%N&ngM(4MfZ5Ik7#*+MDim~aaW(_&s$X08nCxTRd7=|#twGRHmFbw
z+GJEPt~A=<?GpE&TYRZ(+gs0}Taj5l&fR{E7h$lZ3LM^bs(Je)m;QhkR92D2VvBM}
zhUqxo4Zg!ml%%MKFblQJ{pX6kf*RgRxFa}WwwYhz&Rnfh04YcmGEoSiF3WtJ<9_}y
zPT(kRyPTp4O%ZY}jO>6$SF_ZgQWE+heTEV}_V1kC_L4PmA3|B?K%YmZaG1MaIn`C)
z<7<B_p{2<u<-?_#^P=1rGxdyE7e?5kp^%6XK6$2l?W5RTXT`|r_-2Bob2b<N?JL}l
zhy2+>;~LotFu^lTPK>*KnZL=A5a8sDVhT<;$o*@P7vLhud`oErDYwG?KXsJbILwQ~
zWgwF5JhQB`+jzQ4cvln<)&RrF+d?rXbalsn6xWWjXGDXmnuXtl1dG+Rhg<usNV*q*
zcnTY}*^JB`V&?B~J8zGYAM@#N-V!D}M`jE(1wXmvZ>m7u&AqvykvZk&hre9$GW-#I
zQJITMvlo!5T=QcGciDMiD|aMeVimd)spw|ouDrlYXxl$Q6RRAB#yca)O`Gdw;-pX{
z!Gt_Ata5C+Ili466dwD}=G{`YwzqjV**@{}!k14-j-&d%vk&I@OmLC5J`9QCs9Mrd
z>9)%eDkU{J2xJ824OSX2!(C!u|G-mYM=E`rr${rG&#)hC@V^&IqgPmk_@fOM+3C;w
z-<fl-)hm2tCX!!k58vb^<u$c@WcasC0cXhO3|qP0i<kum7Ruwo1Hagg*yw);>w$a6
z?`dY<6uaeq&uNq-g8ojQgA47GZ~DK7<s)=BE<i<cqaAj&vUJ7wg7}=zXO{*%5R_p@
z#M}{NO^N=4dNRZnlWSzS0J$|%0@O%JM~mXIFixTlFOL(l1I5FEtOPoN2#su7cJe*D
z6NGhyyDGUV-w`lX+K60R8!X(N5Vh{$t<r`^!r$<#P@ICbPVN#UJsN-MdC@9`<gVSM
zXorJojEfB>p#9EKndru0w7kbY%DivloYSI%2iK|?7rIoqLhMkQexNt+80yY`T^(o<
zi3=cY`Y64J)`_whJl*~9OVZ4Abwnfhp|_npF1OWprY*czAD2h!Upou<BLlu+p4rng
zIAfJM;0PpOu8KhVOv<F{>(ySt<|STSP^AP|8m6R4HT;B=f*Thm+}}=LQwd6s;DO|7
zy4lq~7;=plz=2@^y^63a?xY~=yo5tej+QVfjH1H?+t5sya_!yCoitX;ry>vRL3xqp
z={Ps;pfH4jhd@+o%%Fn+^7SVLAV>`0!I)tk-Di6=z9qocO=z|p<bJgJhqRNNTx*7A
z7MMf!bN}h1zYSvb2R<2TZvDf$Sp8j0J`pl*#L&!<rXkiHf0X_ndL`kRm$h?8^w3|W
z8b#bPL;EFnj-kmFCFc+V8|$PjOKKR*gEsvUEz6R)EUY#}bK!4QK4hPKNSP5pM+Gbv
ziXQpku*xO`$z{I&Qafje08_uXI!GVr1+>=^LMh~(e^my9#`>Q}z_OJ;2QR9*AQ+n)
zH}8lTdEqFhdabuE$*eG&oa;kjUVZ_o#0hx2Xu68ba`Q=3%F78c^0VT`5*JkDj5c51
zmU3km$WldNMUdc9k*>aY66xmZ1@79e?Gx*Xnqh*1)JWTAX;#tu6j$)4E=>f*1W5G1
zq^dK`)c0_~J>inZ_@SS~y_bf}GSlmk;kNsC8icbu6|5|!Gad;^=3k|oW9B8F`n&J0
zg;!UjQ6Wqng8q3&1g{TIc=JFdF)^{bmW-RsHAW>?^$Ie^tB7|!0BW_ievwk&9P>@D
zAo<^MGaif<oFc4+(Ay!@#EpFGSl1FF31r0B@>SF~Qcp^|=3MjhIQ#KpB~|-drF#n5
z9|fanLC8HVZBAa&S9^7GVHT{6nkFxRfn|q1bykqFG;YI%8V<Jc$bk>J?$D0G?)MZv
zB>GfSwKpHZuwJS4>@m+SxLP}Rm6jWFJ5$ACWoUEo!5f0CPvdWR9w4zCJPHO9Zvyf|
zhPmq5p!EwcA^$>Uyx;Y?Fc(eEhG1(%K8(P&ni&k>k6Ih~?j?5UN%5N}!?i&-?j4x`
zX0Y~g*YR@S*lrjtjmT9H4Qp@KCD*zmpNf*|O~Cp{(YCa~#8%-hjGJSVCMmrdw4RYQ
zluAL|%>!65O}7O%9;S^35lLq^lKG*&B}afYTYh%%-{Uk#fc_dnc_-auML|g^KlKvV
ztX2Xx#}2}Ur9VDF)0UONE$=4e-WMg<Kd4dI#8KEQGzVQ8RCM*1Q+k_ZdASuJ)b<Yt
zo0C<>r97Q52z3HWlc+z>oVzNhe<5MPy?X9ahSW3o05t-7!@Vw96qN5sxRcDQJf`@s
z;i+>>x0`~FNo|+a{?)@cNEkZitl-LH^#SD|9B#>u$kh9cHNl%({9_a~u$(1LAy|IN
z(?R=Ry#yanSq1VsGtJ#M2hA~hA;DWPd67zLDq1qkf`jd4nL2fbOXd5fj;eK@zB>54
zOz%R;1x?||Y2Y~^i0a>h^RG&1JWrn)#$j9kditsGx=(&Gi0!7A<WNSdj1PN~a4cW`
z=f8qw|Mtg*>w+P8Qj)VbrGi&`!=zwoZ%wIij$sWowZJTb4WdS(?XqkA38dtTmlwf%
zc};|CAKVu_^|8JTkjwtHc)ekoh^%j#`QlgGba}!VQ=o-ID2SxcGATOBG7Da_#YZGe
zO;s$78NO946KRMIc0|6l(>A-~poEXpHA5<hfUJjViQV9KNH6=b$J;e82)9Fe2NW>A
zS8O@M5VFlD-`Y8MB>l!rAQT1(Hd1it6FwdtOA*(04Mr}|j-`lk5O6T)S;zRTY?Hhx
z*|blbceFONE2)WOjA&kliMjma<m}zrRuEMYNw1OT#N_UGi9P=o)e!qg&>d|OA%6*6
zjOs8C$D}NODo*sj_!+nu=8daTc6I-UMaV8UCoWFezqkGzvaaf+AFMIwewxy^AFpLt
zsJGiXsH91Q=Qn!WGbX5;$GsF{BVn8Yq02aO2wRU%x0hU>@aTuks(~IWsDvMeu9|jw
zf&F2)Z!a5(Rs~+nGE?&G*`;10t6JyKAj_c}aJIc~pqC8{2`EUgS-+fQZyn|(1zO{%
zjRTNkfIlB-qXw&#M<Eh`CqVUanwfIFEgGZXF~1i<T7g*#>l|EYsVzH4UDbaW2>{U8
zDtp%wH4-v6sk*5O?ayLJH#;{4nJw{quG8^8!)ogw*=uwl44F)``14@n`C6C7VK|JE
zBoaxw+4FTU{31UVsEpht?mZDNj=<30g2h++V+LzaPnF@zo0mQeYUk+H@QP*C4g~(9
zK{C}i&`r$O%YuiSeCvb$t)%=(*uyF#rMWzKc7~VaD?^K3N_ZoeJQkGHN0)}(5{6Bw
zs+Ckd=+oA<L3xp;>ba7y41x1R9M`R{ZTDK#$gmeeK6BZ@U4>kY>z)R^+C02GxT7-q
z>+qC#Xxszuf_|%I_K*X$bpbmHQW`8!Y^jok0SNG=7Jq5CT`Z%oWXq|w<g?Wfe6sNf
zbWPC~yX`)elY%L2WWX(CK)m);^IDzjxl>XpyBRZC2y#c_Oez&V$?Y~^OMCI0+Q9o_
zGkd%n_<7<@g6Xj3f0y2-tGbovB#7H58ov=Vo*;yVg16cy57$CbBqJcHg?1}D4-$cy
z`-i>r&DiT`C53P(xmH3#YGcTH?GNYq0$;<A_e>3lG@i^gn_sc_gpDUTgqexVE)8f3
zhg2e~6JN0J7Wk_Tl5wH60Gr$i+wQQXw&#zrQnD%+(^sb+b2e3DdFIQFwr-U#)fp+%
zfhIL!?kUuvp}?>9=DE^rKwd&y&Ob~@4oNLGJqEj-PpB6R+$Hh9`K_<puqO12rF9|c
z2`Dz^n3LTlFNZ!fMX}^|!gpa7WVxAPTUbHoaM!?FLExAL@?X33bOqjl=c&*I`zLt<
zD35*nX{U`H=Vb%Q>*%lnpvhE|{e#U9Cj+tWiZQ)VZ>1{+U#nB5O^NrdFDR{nTY^MD
z&+c`0{eIE3(vXJ)t$;CDZ-%Cpnfw21Z~G-dP?6H=IyzcR4iS!Ql*eDq?t#PNBA5w%
z{e*L@%?JQ8#1WX$=&nCR<)AHsu!DU7P-hvl!gc?}4_}DnE0Ew{Ty~Ee8|5)=8RUh%
z(W5Bz|7xX+iS;sdh-GFc;37xnnqKF+e|PcHQ&5{BD*z$Oe!#=-<^#PjG_i1s8DA#J
z_$;z$Z(QS^Zr}C?3_avsqsc{>YZjjGmc)6X#H?ZNQiS-YceqFX@Xu0IH%R~<ZYaZC
ze3^UWJ1=0H@WJ8F2&_cki(GT_rS9;qdQx6($R6Ugfohl!2D!>99vNbpX<9-UJ7(8J
zcg9&>(&n{s6qg&^;LI#9^DwWp(i5)S*DbEcG%p-9P4ZF{dQ%I5^HAf8PV*w&7vZu*
zN_uC<sqTkKUOE78RayFS#ay$c(j7QbWu&^<OA@N{O3>)*#|4A$&>T6=emM{)68hty
z&1<d+7X7IGal-gx_5{fm<>U!Dy5#O)SGzcwxySjK!yt)sl9;CI+~Aj0VMSZ1si0U%
zxMR|2!TjD5Jp8@3$l!=_0xn@N$ydoS9}EkcuJdX7@UtMm482tx9C)(`1QYuk>XlV!
z4%qDmtO7rP+Q!0aV(HDM%dvDQyX{qb|L~+uPPr9fljw+pB@8p@^_^VL6FvKZIaQ#C
zY)E-#wpP2Ff^}Q;nPD(9HkV}u=_1cGv~#;VDeE4hZ2>d}_6MavNKWcuFIeU4gu?EI
zN*F*RA!nXzFFWcEFK;V=P$_n2n6;yx^tDdKs0Qq|R6#*oOSJ{h`{POltCV9T%Iep{
zUiF+vMxjQ_zM2TZ%51#UPJOJK)`8JVnkLrX&F3cI9!>3SGq3h1W8vtUlKEM==91&=
z#g}+de$yn?X&i-1aYc9A>k2QT^(+nKcu~mUL2Ssj!$)};o|h~ePKZPJN+0{$<tky>
zNX|KYy%g!^;?D->PKf*NUs}b4NobrJ`t!tUY_lUTv+Mh7tQPj{W&Q*ahcxZYFr}-5
z+h+S_vBT=9pCKNl_{n@WKR94w+-KM6G(v4n5oiJ&#0N02)2d)+tsX{OX32i}hRn>I
zFe`QjM}MOYnGu#%O(uuMJTDqNrI~Jt_Vs6@$G)!dpYK5qmoD8T-e%XI;)kkHb=%O|
z5+S^>WPz<u&2e+SP>>whx3X$HzA|JF$!VMGPINbZ=S3d&3i*xv0oE(A&`sOv{~%JG
zg9M$||3vrfA6_B@J%K=Aa)DpUky&O?iM!xyVf%_nC~9dO52cb6S7}~>86CK1%hi<m
zhDN1%mF6AiP8gxZG9e<>mNS!HeOcz&M(aNFY*m`52}3w2Al=D!PLq~&k4&^@_R!8U
zxRw9=2U+Ik8XI$@|AT?8RBEWsp-4B?>>Op!?5;9m1}O$0%4q@f)Fc|ADa|XHC--*p
zmvI_Bh(%?6)dU*g!h<49WZrtuy6&DNl`oMivzM4;O!ebCwmij4_D)?107B?5kjDHe
z2wflA@+AG6;z4{R6d3V8u@GcDu;{hj-kR8M@)@!5gj{6IpqW5R0unX-r*)o}-60-l
ziC$q<bI?4KTA?>e$Fp0G>HN|49pnh;CN*;ahWO9ahR*ZT_<K@CQY(OilOb!Q^OKzq
zKBog*N>&}?B&lOyEz={zoWEb!#cw7uvYDDx)Y6RFYA_!zE^SG<Xk3@B*(W4@L0-5-
ziXY73*LEFuaQl1FlsLz@)WFkb|I#k^eU&JEBQ@h~%$Wyuo&9a%y?j*hpi67XJp=vy
zJg3X}W0U%DDk<2RST%`_${Fk4KlJ2Bllt)b2T}YgRq<wA)nS94<)<_W{-m2-N@C~d
z=5Z)p?k3m3-Q}k<dv+#4EuG}^tI?=LfabR+5AXR|q9D>kVPjCU!J|VlH{)`Hf?Wzn
zBMNE%p%FvOLcb>`So6CV7c(UWuThS~g?TL}82#UbU#aKgNTw}72BbPwWFTHA1zUet
zndD)h2LRmFN=zOo9v<L=uu~|;FrBx#P0{f(c!AJdD8MArq@;jS+t-67f5uBm0jrXi
zH;s49qGdV47clp93t9_x@<nObi3xHb1UJ$-zaM7jcaHBu*Fdr!f(%lZL)*oyO!LxY
z`@uw?@*t`R)5plr?+iLRs@%&erQ}bFeMo<z2fkZn)7pEPZ$N>HOf^d;*-hiUB-}4;
zCne0f^ep>*vlp}830384>1IZYJunmqtsm@#kpq-)L!dXYOYAQ*m4A;&Jf^>K#nGXt
zymOzheX|m;OVt9Z67G{${oywQQsmVf*J@w8Jux$^lsZL*D({tMnlGl<jn}D^eJq8a
zAqx`aJmxpsy^RG4tgf|J5NVk!5%0cTnfP+HCJ6f1R!RFAD7Gx>WBb|u??>$-55i~Y
zkFlC2O>6LAaY{}~v_r4+wXEfUGW4D&Ux=HQ@<-7BVU-Z;GMuF5Z}*>O){L=b3pLv1
z4G2=K;W+RU+aPVLEzi@EIb`Z;D4dQEE7AKS`$xVPhH;7*JO+tna;tBBVH=B83X<b#
z*9^emPAQaH7Y-_A$^4^DL7F)@$3B;>Uy%dD?1`4MQBwj}I;y>U=@H*GexyLVbiLpq
zb4|`6?&mcs0UeSrNlO(ptBlr?TK<EI?eI7qoQk-NDPV0wRiq*Cql4}39m27y9`S5z
z?TwrG>lAlz7hh}AzqL;K`ZE@RulUR@Zp9QGKf~6OHRqXnS<FVJ>t>oOEQ^1rLd$08
z7$)AD7_C(7@2M`?=sA`C)f53r#a8B-m~`9sQ_me60Rd4XPNtC3zptMyS8ABh#(3?d
z5yMS@DFnhVEwJnUjKAh9MZyFo($9&ELo>^5+<SUf7D9pGSS`?~DS%~KY6m;IAo28Y
zwkc>%wV<6DLQ|U=XCJ#PF@3&Hh#AD?aFU3`W$&+@;l|`eA3H`pRIsDk@$fuq!3T)F
zaF)pHQZlwXKBfGAB^#F3(6$U!n2EEQZjMcMrZpisWKA=)1oVpeYC5c?!=HBSjSBRE
zd-fN!LCZLK2B5wVKL|3PP3Qz5%pTawZl<V(<&iqxHk=y&Q(m<A%#zg)3LC}UW0#Cf
z9bv}obj?$u_G!0J=zA~>ErIN_e68D6-%<X+n42cM?R}G^%_!|)X?}+N&@xv>z+ooO
zoRj=)eO%YInhBskA5l2k5*ak9Gn<k(Uf3q10g}$1*7$DQ%;cx1i|9cNs?UN-3msa)
z=Xd+HsJ#Lck$OCUW7I*)N;`6?M*O5OLB5F27@A1TmqVdcj%f*kCG+E-{x&AeaMElv
z)ITz3B+ZP;3%1wkoDs;k?53K?V#$&s4fE=SF5%Qz8NrS;QU*>(Su`Wq)QUwe_C?<;
zU3>6o12{fjsyXo<ch`*A=ldu{xV(0Pc%&4`5Ys=t&Rsn}wh#0KQb@p_l38MXJzV7m
z$F-NFCqLuQR8y`+Z!>^@H2yn_-6IJ;A0;3P-aZmC)Bm}`-Pe|>q9RQ_Z4srKyUukd
z{>vX!iVKCiAk`;GL2OoB;-Zi6(qX`6^oiw8;J?<*a_bNG67|Bxdq+mNGONxtxb~Ye
z^)B&b6prG2+2-oo-ST*Ulpq}VOt=#QgmFQXZ2Sy&eT@GDPCGLKn#hSWP5X)NwQn@B
zhINID-OSwju=xyBl~mLGcJhny>g|aE*XF!v2}y$uxzw%h6dxIgMCcV#%}{8$X5|dm
z??A7VKv-pzxEzH;@cadC<iTE4Diq!@(m+Zu`pi|X;BbG=(ni1#;kZa^sk!rA%t0!V
zem0HGN-hDgVyT>eLvYe1z7>|&=j>LjMCyTd=Yz4YJ)nhJ;){{I*EVZ#*|W^WF9k2m
z@&}F(+5rv%&{?Wk{!Vb&I4@C{q?}PD;s?;6Ezitf6SU6r;vzwx;UD0uux!@_Uxba)
z)V9=4RI4OKhjdi$=!&0DxM;1870I6}G;{<!Kw39f)@C`%YsLf6$_qnCK({%?t$M<n
zm9iR=Kr)2{ZdrR*xjEs@NAzssuF5oQd57P0bC<oN<4L%MA+?}5A^`bl=<QNA`ZF;R
zeX{({zSxrDw!H0sX9Yymz1%eY6nnWh*Q*dOp#W_YZecjByxxwl+Vi@pw@zRP&#@Bx
zO5#Esn_UkE$ISD<GIMHpSWbsq^Zd@>k7<f43m#4YQ%$Fai5k8@C|xqZJ~}p5I^V%0
zCLiECMKk1r#j|QfaC1i;as%y4s}j%%kno_BUF5bm$4@P1Z$t2{oy2Pgw_zG&ntAUz
zcle=7r{^G6T(#IaQX14>UEm&gSPw#?A*yzTM?_$o)6Y%6RC$lwNg>l;bj490ivKwJ
zx?sUzy$^iVf*N|k;?MdZiGo84F5e9f`yu{)a;7M0hCa*VOIet?`@7`WkCdCs;|piJ
zo-L=%=IFcCY`<}yqylMSrY;_uC2+#wr`zmkAGX1sQHl(bTytfOedG@x5*9a7%sLec
z7^lo+rJhi0M<47D(_EvbCWOD9ZO)lt8_tpxgye1dSG6*dvB8YUVYGWuN=!za{Hoa#
zZhk~gp?SJv%9w2Z73zU-bflL#MXJW!-9IJSg>62mvXvZ_kbY!n!BIEZo-IDhA-QsC
z>5IaHe8UZVJ;4^%Xc`A6ZqSU`ibyan8TjDio9(0fOAq`coSgEOKn8b96@oa&G+!Rt
zdD^AvQhoW4_G7qHRF73gI_6P579NJ~<(uZ1Hy7G2J+(xPyio-lXCfl#6X@3=n{C}{
z<zVk4!5bRzhOJ(s5?0BuFlQ*O+p<h?ft$O(R!aX*7K%l(w9$TfwPvA!km;XR=Ua>6
zx}bM6n}fJJ!Xef8b!>Wa+^9Nyq0g^%ML+ALIa&&w(w6@wS({~kT$!?~!~V>NJQyP#
zmYi$SgI?w*c3Vx3p?nCT4*7B!n_<fNmb<5>e3Bmf&))~ruPh}q{2h}}1v9l~rZJ<B
zPI=;W{bO8eGDv*eGe@VijtzgRr4V2iq?xWMNpr(rW;e_hWXx2bk#ghJ`qO|$&nPvU
zN2UC6pZ++6LUuHoSTobEK4sxD{WV`kjR1KG<E4IP$~Cv^uawgQ*8(X>*ku;plydOB
z`upFXs@Nn=P1%z6KfjllTkBF@I8J{@&$BN9zRhRnq}<X^e;bJ#*f7<YiASZB-4Y&M
zPnub7tINWa*JkNY5ol7%G|j{FQnqi=UukqQL11*Va!kr$Ir<Zwya+1f;9p0iTzQiI
zHV_RNC}*=A2lJawDSbbQk#}DvKnkrK%&iG2E0Xk2fwLtZ-_(*4{geJp2$HEISDrf1
zZ10ou&UN~iBn_nE!(7!n<zF}GFT-1p7V^F@S54NjDZ6gdUq{q{oL8Ch%t|w~M@nwk
z%o2$Ef1CehnT!eczFD3q2Ooket62o4U`QF}(+YdT87jk%Es}ougln{oHT`e04^4_c
z{YQlf2g1vkBxxgB+-I66o9y)^;@*nyt5uYtq2NGl(yxo`s6p{{i&R=c`Vs5|cYrE}
ziHq#6uj5*1t;%uA2CAARB0T1z+wF<ly=a(>vL>KZe)MNo*{EG{>z~wv_8Fi-bs71D
z>VMn#nehjP_nF^1YlgTra-*n+lcw6cr|Wo4E?7e5jc>?G<37Pbv+4OT+TW)Z?MO~k
zt_sKUiA8q#r~ZCIt<PbZ_=3}~uxX9*Ub>f&yOZ+efU*lfW3t|tUgk!9++I7O>l7~f
zFv{dI{Ib_>3ra8al^vuQ#lIlaK%}()w&39%zNomgif+r}k&yB*Ih%suK3`Q^Ih%Y4
z7!}w=riqHNY3uzl*hZXi{H-kW)@Q-kpW>eHt9|>)E8?gLffm{}VN&g;;E-Rva5&TC
zWI2=4fX2CGQ}E(;e?Hs@q9X*{Lcyk>=YPEbE;N?F7r1jp{E3pS!3#h5KNwQes7JzP
zFst7QqV{+JCUqvzo8D!rDc%$u`H_mS-xMq1&EV>z3@5B{N!8xf-^&(5NLFCz<8Jb4
zDuhG?`BM2?P-Jj+TAp+Ro(_pZ(l|#_Tp)GKpxkQv>j)tU!z3+0&l34JP21{HV!u9E
zf2QlHMra|?(>ymLW!%R~^QE~4SwbqA%}pPt-2ILIb^pdmFbrjeyvZAx^1*BRhvJ5Y
zwN9om`p7OvYt%QoYBGOx^-u1wb^8CMl>AaO7CHDVn{wlA`a2j}bInA!j^?7~l-lpZ
z6H0YrZB3|KOt1JO7w@lsOLZ0iaF}T`*X5<ut<^uzubmD135H|K=PCbPulHFfZSw&A
z>&?iFLbLgIxBW5wQ<?iyThkn<!h10`<@{O17^L-Q!tsNLf=4IQDsoKoPTPF9Osn`J
zge>u;2cUlXJlXa97n8ognge6A>dcpKcD-Ut`+I;PWuz<_D09`@UE7_K*au8Pkbd&w
zH2pW`!?B$oe3)JiQgq#xX{4haJ-IG*wQVz4^T}UI5Ric>UVXN!f7j1o)kucKLCAjs
zxxn2yx6UnmFz$1h@SL`YAPM6n(<|^N=DW{dm)05z#A}Li2ugO_NVg-BPnQ17q0Tbj
z#yCUU1R(o-Y>0R`mke;{d;%;V_9B`lF$CFQ9M70kJK^Z)g*n>AAb;}ADq6_EG$1uk
zzuMk5Io&rQAVN~(gWpVgDC89jIf0cc*i^HSwII2{y)fT@>b`nZ*RIsRwpNEp!5o~1
zg=2&3F7p|=ze#8SUlU}761;xts1ac&(ag=Xrnv5*506Y5bb}uY21{T7Y?EVB#<?bn
z=f2{*BNxW0j;bU)0J<>oJzVnLK0GKUVnao69NOdi3bzx^Z{#?DD;1#Gx{P&Q+5|Yc
zV#+1fpuN<;+^$zOI3bS*Oep<!<niczL$LAQa@%-L{J}ew#ZtfwIB`G8vJz6@qFwk&
zkUB<LCqmrNmTN&t<II|-NE#8o2vF<RZ|w3Lg%%}aU53?77%v$}GknGor%dS3315;P
zeRG5YYUZ7J#DA(fDB^-~ZUO<SX_YpaCFbGN-SmD*TmQ+Vm;2w#q{m}rDgZAd^uJ__
z<e5+A+n!+$7Q_NfuseAxGVLYX{4n1p|E>*M5DuWKvZ-+*m?W}vbMbt;p-l#6LsddG
z{<RQw<jmQoc)q>tH$50H)WZ$LQ`n_nD&28qTD3x~K_pm3W&$p_=ALhSFS+K0xY-nr
zBOBB}{)1NaK$7;8<bf;W9=(E%QejS!Ip2BG-Dkgt-MP)GP>J>gsT?hF6a*ul?UwuP
z;ND3e(3p>`9Ms$yl6B5yCSDdDf9<uc(TP_nSVQy`lus4VMabQK#<_39!G7ET^FC>T
zC^hXwU!7uu4&Ny$6-hoU3iObS(!s$uUAF`?zl~k9LT`^mJc~f%7D}(#%lj{Jr-dcd
zf?NxfD)%UC=Wm~|*W@NGxJP@^NLpndIvwHH4Sj9)%SxwX-<3~8mvcY#WWX`F@?n>J
zrP5A;AaVB^SX|mKNjd}Mn9C;GmmW|snihg3d|7mz^ur_IxZVwVBy3YoF)t-Hkuh;}
zAz-T60ypMyFVvAtgsWgZy>E6Mm-^qsZl7{KDM>iy8n<Af7g6Ob4j8(Di;)ajdY;?%
zkQWXinIe@8IA_`BxQkuC=e(r9(&(iT0?h+%aZxM1pbWMWnH9P7Y%}m0*W+cC@HTK1
z#rjLkOec|RTx>Y@t5V12f+^_-po0+=bVDZCX-DYn8>F(#L%m7Ie{j8TCfQ+u7t*AW
z{YzpHb$CE;`_KW}M~xR8hRYGwXnGpQ?Hq4USP{Np3H|YH^+i&4ER|_*46&Dg>tW~q
zRg>#LHE{>iWp2@FL+qR%y^OSJ1V2ZJlIk_oPKi#~`7zW?%Ahq!Cv@dO5kopXdWh}u
zhd;K6i=r)%0KBgoVXthb2NK;;C5E?8tSEiRpTF5gy(t~aWCpVDpNfb#Gwu%i(PIhc
z9jnyJkUl96Minmsc!>P$Eng*{bVy<o+)Iuv5rRghRK1#?R@!&(OenvI$<rhFU3oxS
zkxl6rivQB}LF#zbeQXv5q$-7eMSe03KHd$j!9BMr_ZtlFlzNzu;?YRCQKlL5Y4Yqp
zmC(tNm5p_RNXdcJax(+wnjrcMPbJC6lat&G8GPEerJ0R)1z9^(NSs|-Q-@Y!;SeHZ
zn#yN_<##Kt1~`)6M1d;FK%hSc(GLoqsMZ<T0^m@;JwZu8Vh>Zz_>$n1F$o_nMZZg3
zIVHhzSSnuXyTgO!BUA!qla7zUh*s&a%4jx|)5G3Yk&w`r2Dfxy73UiNH6j--=q2s#
zqocJ0s~lR@KrO5u36<?=`}TN$Bmf?g0G%y>n3Un0yu)lu^}g~5Ld}(VJA00?WfQ%;
zjZ%*c2)b);J9NC#I;9UoOW22oh6-TD@0YqGpO9_~;y_Re)6}3<9VHnRrsL7>i_wXq
zi}PWSiW{y8qN@%Gj+q}fYn5tgQCs=qh!Z1m7er4Be@cF*QJXb#U`eDRBnQ=-YYsRx
zIN^b~ArI@3B{dVqld2G>8ez6s*FH#mNQL`qb9y$Jl`CxNv7t5x*CRLwP?oRAXbz0z
ze?GMjZ%rJwOc}H#jjgr*y}*FXGgp+_0aZHdoHe|cBaG`GGJ&rtX0rk4K${8k5;80=
z!z_B!zITq!55a(hyvnxpDr4(2%pDKdg2b3D&oG36bOIWHA}s03a?X<Anuh4F3+S;}
zqLs@5jYp=9mp=d(Wc}a2I(Va#;&H-lCqGQnHthZ+;j!ba&e|Bf@N-Dr7LMf1fWaX$
zEJ5BBSS5IGNpF|*gcgyY&_a(=8}i7kFNOo&G|C=WpehZ#4`%v4y>O|q`6IYbd*R9l
zmw*wFnJ~ea+kUmnQ`L_g$&SXF;0!;p$G(!4s689_O>5C718SvX<JaD0i}MqAKdq21
z^Dc0n=QILP>8y;R9o9_t4SVQrSx=md1ao-rm-e&iUV>MwBr-&3#?Rift+NvP-K?G+
z&0K1PST08a#D8foJ<}gmCM|p-*<tC$0hjSNd)%d(=)xzIWSwGj9LjgP_B;DWogT{T
zE}gA?QbQd_hbnaH35+hRPkeuMq%cBwPkaf<5`VNfm{sQ`|8r!nIr`=xcXFG&m3RX8
zFc{Pz{Bh2}eP!Gb+&IaXF^GYteg<A|o=Lwac)RV?#2EgfIi~&X!H8;q(tKiOseF)e
zUuP}}3MZ(5byY01b2u)HJ4rK_tPYmPCLDOVPE3~sGCPCXA7J6v54V55mrx>ok6Fah
z9g!}f6swxT68p=xgtA+;OQ?DP;Y2hN5o9VqaqaVcNlOJiji=%2!=*C^Y;h;_^a63J
z(A+pA9F%Ep1PmVFWo43|#jO)jwz*`ZyXhzqwXHbmLMKTBbM<KVIs_uzy08EOKTHS;
z1Fv;k#>71TAk<x~nJnSZ_EJ8IFLufSuKFBbUMk^8K*T>u!L3wvW9GDTYZv-Iz%E6)
zXd)yfY}>nOcX?sSY`P25a0Mr`vb*a$LmRHhH6xiryj@<%p2OYRYvho93&gSpns*na
zv>v5+*xwPqQuFPUlr#Fo{^QRJ&F;l1Q;&|(!h=R#qGr)wt`oYK@V=rd;Gal%{Z(Sh
z%#9i{6PALANnpC7XUfq3M9Vn`G&16ycTZf<>#CGVck7RmM62@cZSK!Xx&J`D5R3>(
z+X8#`+dpOCGjWRV;VD)#DoSy2Q=VOE#$BH>p(0kgm0|_?rsjYqcm1aJ|9F5hv;D4=
z9Tq^13<Mg9>1K_M_2H)>v4QtC;AflmWWt@R)ukQLNO&p0y95R_|HQ%ktjzX%QY$hs
zL}YJdR5hL}BO!&9j_c6A-rexA4h6-@JEfW9@`N06%G>VxEBxvjO4cV_cv8pRa+!;|
zUgJ-Wi0F4ZlCgh_E^+H;`-3EsRD1v#rfA2d?u_c__%RyNLfr~=8&{JKL<e5vzG+mU
zaOT5~XHsz&(hkVk6S<u-%iTCxa`qAv7x-|Q>t>jDFLd)y@#m(EKy^zK1IiRC<!ShX
z5zo2tL;Q`w9-?|HAnl^wETsT1y90)M=}@}RDA*yjR5@nhJFauHJ}gG3gbpCo3~Ak_
zpmboKN8c3Oa&B~efAYz&<w;0E-XQ0X;h^l!JlNNr5GIdd#OG6zSH(aZIPcQJc-)<K
zah_+=hl?Pao2A#v<M!6CVmA*_8oh=~k=&7piRT`-M}6kSMPW-$&d9yodXIgf?Tic^
zm;flMS7S#Vxrh$pa<#5-JwtkSq$RC6W^(ZCP3?sRrAurulsv4HP@2-r)%V(k<F(&2
z1X@L)!%qTd6y#uTfj#@~xaFf6H;l`UW70Nn5{;YIHg6I$fP*YNgchJc%^ss+QDMWE
z21VmV!v;Kdc@=-qz{{tdu<V|-Ly{N2lNjLrsm-K#L687b-yykUTv9-0iy*9;YgWi8
zS<~sgZrNWY1}wtzne<pjJ>dlq*_U0M{NL*m14)NSrBC?d#kVJ4djY4;_!~9I#GRO2
z{Z^uIarbE+3c(@WWH#D9`^CReOTY<jl0Fq-*BSCL7}!2%5JH4~!%6qa2IcBv5~!=g
zJvnN+Eh|h|AFrgSeO?mi$=;Vl(33w~sU%P>Svtq`wMVZ^Jm4HX4D(66lRt4huoC9k
zT-9hh|KO)`YFRqLS+hb7>}#${@10)sP}TOTcy|<*;gnRj(4i0}r2wGy#+}|XDJEG@
zFaA;xdBJQbu(^(Z1RckCY>Far$$hg^i6i3=w^c`}B%dYC^kh=Ky!DOWx&Ci;{ekJp
z|6B?j6Fz0fwuzs6*9jTl_!+^8*Za|<1;Uu7=v9<grkS5_4}L<!aXj1pQo|-=31p(>
z`^~|Y<#7$?t0Jzf5!`@}efidupNjP-Lh0(st;Xybo6<2=tH)&6U-M*o#F($5k39Dx
z{VO6Rl&ZRdX3$wFcb^f~nNbrVf5$Ip9j~!SF~Qv=_*xl&7P;o8b-~8*35UHvEG97w
zNGcWmFl%y6r<a4<Yg7UVAc1d#U+=UdL=D{+<3@cDPJxNk8#53T7lEU(hu1$ATstly
z7q5czmW%2P*+Zxyq>nrwd{FMC10ek4MUw58L#gk6K1iFO7lvc0B^#lqAZ@mD%&@sZ
z-#Zf)tiW-^0j2eNn1Thy&!!3MaqiXi+SOv;xi94=X0ltFO#>leV9#Lv35ytKh7Eby
zFx&8{Iy3+L*f2%+`Pju(GpPX~cOkwyQGD0M!M`T!0AAiup+IUuf6O9_Q_u|(*$+JB
zrY}*<LBlmIv?LxQST$7{cGyt~*<V5s>o3S_W1SoWa<KbFH|gFG!H|hk(^^}EJ130g
zXU5w<CMH~Wh*BU$mFhbK2xJdU=xK+3n~;e|#+BfIGP{>(8`mV=3_ID*y+Fq}OVI;5
zri2iOss|<b*9F)7sMC7>z9u1@nY@|7C#z&lN|h&l0LYg!*9qdFx&0n{>B$N8pK1Lk
zsT{#3q=9I<DP3+4sQ2APOSH8GgGAx{NR&zzh;Eek+xB6LQO;UExt3lI@^l%*?(43w
z=hrHy9TD_T#!rcglvz^QM*6!=^ui$xFxy)A?5Ik_nB&VXvu{jk6SGnU3+J?aqrc|c
zC2b-_$o?N&XC9zq`MvSGQW<6=?U{M*dq&!5_N9F=3}$R&t5k*=48u$_UW`gfrBzC#
zouWlWixe%2A}zFNFH0#cDx$tE==VA2dGD9%SO3(U_u22|oa<cYI-Yk)-)X$doagL_
z+{EYq(5E2}&^QrDn+N5hm&~_^UF6RiC5>`Y9L(GAww=a$i)Z0*E3D%OTxA<NCVtRd
z&xf9)q`G0M;AbDd&i-AUxFx(&chWu*)5&Y0o75`XtlGagl0~DHe}N5z?AFzG_b`80
zIU;6oI>PyYog&sAD{aM<{#e~E8uWD|+-Qz^*nT}YcApfG0S4>Skv`b?ux%XVZNjN(
zWL1Qj#Voq6+-@t^fu<zQF-Yvljk1HjxWK-*@B6{K4z~{Zf{>(cu$iO%8H)kdYe(zH
z#cMu&x=p(@v7N-qQWD2X6^2+;lF>5fR{L7)ZK}J@LL*o#r)6>PeUp77b}U+C;*G*r
zV->k#qCGJuaq%WSD}^iaXu?jtZ@s;$&c8AQ^6-C$VxmuhxpSGl_3Xryzw{7NNniom
z7Xd3s;K2Fzh)((h;+0_)K}B3AKKaEjxwoJ4eqtY{C6#+a#pPmD-?!NfKF_;cT8AKq
zfi2QZa=H7ZB4(oFG|U6B6qviVxegb^EF*|<haz7l7t1wW*0?{G`HK<XN#=mVgdl#_
zEO&b!?;S$ft`G%$jiLZLo`2fSJvJ_PvU-($s>e=@hFIKXp(%aPT|QJUC~1K1k;urA
zk&26rdA)Bs{C$b7$aiST8GFyXuiUy)RR!sSc%Ot1r@!bj|4x+Hqr9%BdTgM1e{)rQ
z`oOmp`(a_BYjF72FQ%oHpBXl`24aJdiA!_%Mt5)s4^TNW0`_Y3x1$%O{W&cBEvlJS
zq&K7w7PpYoH7zPv(yJOlwBgmGcs*voMQMXm_2)vELf4t)41TFG2S1gTKT{vA>$u3s
z>T%U%ABXQrFS$(>!HY&kaM|Q<onK17{aS@7B<hn6vH)e_Dc+uzwr)j&G<0M6k((}n
zoS9?JKHB|seY3P%>FWySHX<@SbQ(nfJ;RiJXa`Kxezq88V26ng&~UKRzdE^rW1G*Q
zUX|6g7^Fs^NP*w4dLr1m-b0Zg02+otQUF$H+RO`1{nVTLu!eXpDFpKZ6Mt*)=>`u~
z_N~%}3Lus2WPM%?7QUcJCBs)eL}j`Z;!h(AagB?d><13`cMa~ekeUF<Wn_^xyv%)D
z<--<no@EfT!muHab%RIwVCCG3QH)h^3aWj9CV>&;{Q2giJKd0j^>AVbfe}Uow3U%O
zzrarPfjHfL`I5p;*!x6A1I<>737q4)j_$xG)P#3OIa7$u31raz8~gBH#pbY-frW~g
zzlfdu`JEl~`91?MKTW40OyMKoT^#I&zpEnOz~G4N42xzdL_|2><b7j5d{2ei1<}Us
z&^rN{1_f>Lm@T_8@%_#rVqJx3Ad?&ux3cC1d)j<Yn$q5yj32R)F8b+3d(QO4A87R`
zjZr9OF66~!m|pGMJao^&Pgg+j<In0jguxgqK%wdWOWMqihfb+hYbe`OSSYO)U-~hv
zAj=y{<e_=TWJ~i+;iUAf&mR&!q<mBbLs8nxie6pbwDb?wc~e;xxo>z;0ON8>Vx-M!
zvxoUpc9#jmQ4ER=C!}vbME<VxzqSUL5TLdP$>O8hyBm+v+N`d^S%kzURlhTzw3Aot
zW9>=ZHU=*6&SE=%wKqUKRF-H)J{hBiM{NE=Z;_hy5L)MS+2-#1?D3DPjfj$3Gf9h4
zel4Rs`Ad7poz3HCY23(e38!65nQRF2R@&d^Nz5n<nMQx@hQja^mYy-quXKNP)3$%a
zW@O98nl3!eu~(;kep(9wiaJKo99&%DiUFJ4GuL>=g}79Gxe`N`xCG4Xg^4b1v36Ay
zgsHklRMv%*jVR+{x8aT0akUeIVsf8il+G5DKXjiw?u}gtHelm3a5<8_sr^f?;X!ZI
zcvu!rJ(4;4hD&|a8$*f|r1v_us36Sd2va1FS1{*Rcj8pJGl5vTpu8jtS#%jId^zpA
z;WTSG7dlg=FR#b~y)q?%{ppazwe#Zyk!5{oXc&g;O{ItcTgNT6$KL2maP(U=Xj&aB
zpJUT=w)8r04U?4N-XaI*nYJ(48?NzYRR^ZkDRY&A_#E@|QoD498d(PWjv$yBH9CYD
zX$%L%S~N9ywOp$w@%Ov2P^)t;ax{77rOCmXMZO;>Jfk{7zwp8w%R2B#MPM$8pM{$$
z=O*MN9{~5CqPFT_&$jra5A;R+6V=C4J+QmIqEb<P4vV&z$d|p>^gKE!ez5uJkLd}E
zhCtQl(~(9lEHLXv1%u93xhR^Bgm5S$98N)prS`cX`2#Ysq@=pT`V{AmKuA@dw!WVF
zT{9(>^K_wiqh%DN(4Y>_pB0?ED)IgUw4O|wu8x2wBf2<v0oUFZOj@os>M!;?5+z2`
zzx{s?26t2883L?gSaU<6-b;pwrTpUh;HLhXVdC*RRl#nohN}##IM1xVJGf!HZ-Ez*
zkEH8$ju~@PFh4G#?Rn70Nj(8qRo0GHU4dNF_ZNG~wO%^_CL<BFScvOi{>^rroOJZ3
z3fT1|TP0PB2xBl}K6xaVG9~VANn}v%4OLK{EQGO8P+-92tq*?uD~?7U|4b3Fe(y^W
z5s}GG1O}lA43;wd%-`<`?g>?bqXApD+6w4C>{hf~fOQ;ia{`U&5fT1xw}uRJ`KI85
zyOmeQ@q#6bLK0YnfcEdtvpF|4opH8m;OPw1h)=9E3s`WQ9XZWgDV`lF5x3ZIuZGRB
z6}NaB4g?~MQ8*SmVEPM7?16VQ{qih5v+($MQRJnGiALK$?@>@wXd+b&!M;{&pj*Z7
z*!k_X=$pNaJ!G^vCR7#k9&$F>CC~a!B*it=6D!DwQEdi=p};)&gT4P5Z;WPiu`mLD
z|JgqKSZIMrHl}t$IG=K%ofMc;UbQ>VN%-VKIyBSQRt2J?^PG-p1?INH+}q*z23aa)
zYD|DGNps<R^KP~6vL{|ZB@$jjeTo%1vyk@R9W4G@i<}vcWLJe4E#nc?t@#bXyyxR9
z=~M~V1C}X?Qn<nN>c}uzzuU^>#P*}WsZb$`j$+7(IO>Ccw(Z|e+ze36QDMg}fY$L9
z5n7VT(S*I19po~T5?6&sD;a^rJPX6M|FgNP6=UXw7FSBOJFTinN)<?n&qu3NSPoz;
zgcWt=fcYqC#CtBVy=iDusx_7+jX=)|O;cWhJAd5A_TAxOy<D+kd>W@v#?36Dj=A+K
z;@`+FTV6$IOK@Yx8+TB#CdcrWMoY*ps5D3<gQ@yfd;YoFABvTl7Z#<@V9PSax7n-C
z^R`l{0~1je3RjtQ^>^93E7Zo&?tp5hOp08nDZjrJthzGpiH_>4?_Zl;WPS_WLI_}Z
z_NAon>tW8ZedAG2J~-`}7Zvd5bB4MaCiT{|b6?big$M?Fe}BzcY3HXXD_5$-xTg8x
z@3i+n(%-SofG-X~v1Yg_NBrcKBh$V)M}LcBCVQsYd|KMB<@(#MV*#X%*;$-c@|gal
zs76GqOjnb3_%{8+{%I02%p=mi$k63OSI6kS08xmVxL6xgYOA}`s|1ZJsjOz*>EDp@
z#{#LW7I06KSGv!!c;MxAY-(4XsEdaXV=6q^gOSR*k!V*8&^CS8N^!hn4gSDBH=b_G
z`uTo)pnG0$O>1dCJ;ly1_C`Y6u|cP*VYtuu-gN83dA_N;T|O%5)hELCfU3_!r#`~Y
z<sIzJ7weJW&V)SsdamS|s*%AFv7RYfmabz?8mdrjS`++mjH-XJ?eJA=(I5rcV?gGb
z6NUxP9F!z#oSZb8!<A-9a%8UQIU?8<wsPUfVxe@=<A&kiY;f>nb3H1$?Bd!m_C`xp
zY#~JCx=!|ym;Zxrl4CR<jSpUYQn4gf<c@IAg;K~S#;qK<CwS&_Pm@K}L=Bm2{JsAO
zzWeY$2EOd+e+7Hq`;UPY=)T>-jCE@0MEC4!YTCo^lZgU<j#+t)E%`C&rzaIQER$}e
z73jVLgi&k*Cf=^UTX~xF^PbIoEenGxRI-Th&KQ+4v~RpdaAENirE&m+U*D42X=41P
zCxegC0<%VGf7Hvc(5D{gS{|AZT%@hv%7qz?C;*;ej#)p)UOhq_q1l9$T_P2XyNZ!g
zL=OoWOn>p6Dg72TFYBJC-=raIYSF7_p1HU%ZAsa&f_LhTH^4FuH&Ur?rG-s~%Nw6?
zGGgbr9|ZBjprT?NUU?QEa_V<m5<fnzX}2Qbs7eZ%bPb;WGe5bb-aYnPF57Vge;vzc
zWQ!#tgJqXt_MV(_)2tTS@UN<JIHjBDGf5?*X@8DgJzJ9`@Dhs}Mnn^<a8okO?wz*H
z`N_|8^SJ@;k{r?yc|d8Am~Y;BHn=`pTO_io$zJAlQ!|Mza?GpK?D5Yhy*Qt&GK+cy
zz8496z7FqnQ)f4&saBsb_9Rv5sj$)%Fw5*Z+xCA|hF$`3RSe=JQ=MTZ3^`)#06c#w
zxh5u!-7lY`^DcYg5WQcleWYEO#=Pu<U`u=cu!#-HLtZ#kDnyNWr*q14LpV*(f96vt
zD$F&1qcYJ{Qzm`F#3s7U2*G3(0Hf|$WhY#jymXiL;m~9=JnPC@e0n1!zD)CRJGXG8
zZ@8c}M$ubDDIgz`v)dW7lJKNRP=aF_XSwG2z-2@gHpzBL=ZdlLmk}V!Fei3&n?}UW
zN_9veFO4EehG>E5dZO!A=dFEMhC^r`IYSn*qyDyU_D$|!wfjhEq*BDBk)I*!w)qHm
z%tih%iZ5%>p28$9{Dxj`Qa^9<l?|A9%MW#R>-u;Tm3ZO4D4N{njTE;c)`|q4icn{{
zKi24pC2sr0{veSv2!&30ZZ^k<PjYAXj2X3ECq$QF6*%hh2$|;2CT`?~zUy57Dw?7)
z-R0q>2xDoMn-yz;u}`#?H-j-RaO=Vb7yU)l2iHJ-bvbRWdErnOf4-iU6hD+5jV?v9
zI>R(Q+Ksx|vjU32XCV|wVj6auydz0^ki2%s+?ssJ18_<?95hJtW5i`FKeMyk0e5+u
zBs-bK^rGTO;YeSb=GI>y;}!^?A>8VO&ro2_-eX%_<*yAVtb%+ez&~T_H0wT}=$pXs
zipUKyE*Sz;IcK<C<NZ7IlFGb${O8w7UDsF(5FN5*gwfH~RtztWHihoI;d->>iL2lz
zvXuko;Q5>QBA2ty<2+i0M-ogj$Rrm#ba8uIY5B3fL6)4LS40Q~pwhe~0Ok>Ax)<)%
z7r~ihEp3SO*dvc{PtFffq7w8x8b;7-nm5405!q||g>RpOBy`c*2t?|L=N>)5CBLRe
z@kM21lGBz}DhwrPT2+C&r;9!aH&iUmY<Y7`f?DTVHuyIlf?3i{V{8aok*1>Xxw{*2
zlmBGENc&hKtRAl%<_hM8-(-Ki3DP_J=}o|iBt|G2Bce9Smv0CJv||o)fdcd8>F$v0
z{RLuQ4|q7&Tz8n;+UP$yvh;Nt9pT(V0Q)q_t&QEfCOp`r<+(&aWN40Sb(Mdv&L}fP
z_ekNk<eG~Qcc0wrPpe;k08mkMJ>nM`=Hpa1{eFK>ValC&C0tr~ahc}rBVFnQy#SxW
zYZx*x@DI{ExruN4fzhdILdZxHXfmh2yX`A2%jPTa3e^9Rp`T%{YVG1L_2=9FhEXp-
zH>!&p`l>%AyBo1lL-clW0`tv}Y3}6MkO6a)`gqPu&^70H*Yt9KUKOywN3EB#b<j++
z@+|krhyJ|!A|#6ikfR*yQQ?4wabgDcbz>I!ABJ&AxUcCd4a>a1ym+e1|6YG0yF;Vq
z({*zwFn_;gFPy5I1EwBi(#XpqCnKvkeBCT_$Lsc_o7FDwB~o3(_RL#mO+DP5AJGrR
zpbjtlkClvUQ$cI@PHZKM2{+5A&oP%<_e3v0`PDb{dydA3?OpTOk>Sa8a|}103`X~L
z>8@~?pEV`K=ITI0&tm|r-)r4)e`~5`5R?t&zL_#0cO`DdHU2<`jh>R!QKngaq+1-)
zs$}6Mst!6uw*zYG%ozu}i_h~5`aUEiP(emkEnI-#J2@BIG4|i;*+;X@FIn#J!TyP3
zO~In8C{b08Ikbx_IA4Fk!0kq}J6PZ{8d!dj9a$P8*L(&(Z@pHIF^-7A-#yV)Pt^$#
zU0xvL$P&w8%TIE{8~ho=HKa&Wnw*t!@k1}y=S>|KoV7E#n(<7dYG^#XM~3dxd+g4!
z{ypw{WX>%LzO#$nA7lKBWG@ll4cv%(A{6b@%Dp|y9}0sfx@vJ#`R1j-T|3$zsPDNv
zEZz&#sj~9qo6UV)a%^dfy)Dkp-fX6v=}y1JKQTEn4y@s>MDO5~Y}Yxq)$glc6F(r=
z++XH4hMPSvm^!}^)fElVby@_bZ|veK+UwT9izMZxT3S3TXjbW2?)@wDo-uXxJ&oi=
zQ1Mslj;{4K!E0F1R4#%l0Z5N~?I#1(m*E}9PKvJz(x2qsxlvz|m{@haejodJj=8Os
z8y;G@WZw~0`U-t2o6n2z>x#CnG<2dkL6qMuvop&qZt4CAKOIln1%8(IBFNNJ@m%CC
zJIwEaT0F{&6?T68(XM!ozauHRtf?A7$2;CS=-e@d?yqb7!o7bzfegbObK)_s$3!_+
zAn`7E9fUU#)2*P)bRX$9?9v=q$6Cfnq+MmC9Z4T!)(m!+w^5*67dS*vA`k*k9O2xx
z`d7%~n*QvP-OW6IuRCp8vhpv(R^z6qy?gFSJuL%F(x@_(>EY&XI!u2DRRVz{bvU}`
z6`9F3Zh9*{ZE3~Ob`23xT9pbUvtx=IeN1>g5*=gP4aL`EXE3JSM0XV}CIL+PU}%hH
za6<X4fnU4ln@01CY|6-T!j{?UZtAKT%hFm3UE~R2K~{FqKa~h+qfXf=X7wL#_|))+
zVdX(bq299Vn)fHV=YI=-AE~EN1b-U)gWLF9m~JFm*BU0%WPm$kmOgrzdze@|Rz=FX
z<qtFuUFd#xde`MlO19k|`2)<22fM1R;dvo042Rrm%&j|Z$zS?6_*oUekKMD%%$b8-
z$`;K{b|5mO4OTx_*jxW!2>JBIP@?s*wQdGI2zWCcDC80u19NFd*LH~hX@F2?)l2D-
zQEZm|VJ|%;NvbR;pA{S%EulQ~<wwD7cP0#5t!jmR5gg=0W0I1u&0B(^hrEeS0I>42
zq>JcVJA=RP_5#TrYuN}TlY>zp^PwAq(o+(WPS;Adj=XAygB(YGWknM^Yra1YA4VrU
zsZm_s$}Pe48@*^o2v86i>GkqW`(J{759)F71&X24c}{+QJ`vu$4)*9{RVE5u2|z0X
zgc>L}xPrN++da0`B%f}Qa!>g?GrDn}efVnq`+qrc>`aG^v4aj#PTYUZT=Do?`-Pfc
zCK~J=!2=K1OSAToW8-?9ETK6(1I-WRA;4qad)DQ@>zkW1A16wyFO)&S06ujKKk=3h
zRU?6=#HEG=_OxsHo;Q>+AXP0+l5S&`yS{ID3!tmEgv}E_{L81E+vF{sYa29v<#g<a
zCoOd+edbNYnkkoC5W>>~FS><my-7Ew@v`CK$A^k_9i=0++%4bXBe#8v|0#fXAer)L
z2_nD1Q{MfWYh2}j;ZLEDly7!E=YCn{ZBca!Ow^{EZ(nk4e)1+jdUj3D$9+Gx+Wir$
zhYc}Uh8ljm{vbEU<i6q3VsC>SAN4=_U^t8Gmb&9s`;$smEGo*&qvV>8*SSkS-e)9)
z0@UDU@P}$vxVf>Xloo4JRwK7lV2)YsW@#y{d}1A?AV$I$HP5V|+m}CIhYD)z<fT!W
zYqme-^1k(!G6ZvAGa^*RE|+JXdci#q>v}H&3VINDSJM^lUHz0Yv5Q9!!51}0CAc6p
zI;|PuvdPPAuS#)~Puw@#;b@v3S=~+VW8Cjyi<YqbCptnO9pJXoir1$~tJ+mTJgTm0
zS6S7rrY#75{cr($zq-~vcUrPwS;Ait+y$5&-ThXsraIvVgwwDP2G*0*BT<0oI}2g$
z4w5Jkd<4Y@pv(-~qvx9|^HP2*Z6SXZAf_9AE-^qri9#r1=wB^8>4|PB_RKZMo}RMs
z5<Q@Zu9(zjM_{$65nfyKb5cIPNR7pK#$$lYI0~k!`86jc=NvV3q=}OJRUnasb5fqX
zxP{<gT{LeVdU$yJjODBLq}FXs+!UvoJ(j7u2=&<^_C*a5Fq3)nsni{}$Deqj_8Jn@
zL6%H_s|>U7qTu2#2^$8er5EoHuCADHE#vwJ^Rv{Xx<KTd**Kt45uRK!GgyCR!b@N3
zQAJ^OH3#un{py30i~ae^tA|$CH2UTZz-+kKUz7*sjR_adA}!KCl$Zc1CP8Vg$+j1_
z*TO=uTVXGRD>0gM<kOE|8|1c1di0w^h5x)y?^I*&2O6vysR;^lFaS-mw&zMKt|KM~
zJD<@E3<d?KW94?NSF>W}c36wF?n1VDSZl1Bdm_RA=4&mU6!?)55H=s~D+Psb*y+nW
zTcSS$p+iJ@g0L(K%|$O+yVx5$Hp<o}hmqImxxyavw72w$gg_Z4(jMQgv@e8>L!}Ul
zwF=l2u!o7b&UTLxGfL5bLR3)iBFkL4#=iNgKOKQ34b+7*h>k^;NnU5~UFmK303uwb
zcadcZ-nGkL_9nr{X$K-ER$TX*eS6=nQ`ZKOR&Ik?zrr?o+#dvqWk|UA$j#@PxOH~i
zQZ<rR^Ux8@MIL$0clOiinnJ}y<qP{aVQe^Xk#8kA@W26XaNFc)qwW%+mE(z^uR<?w
z+{U5XZCuz$8`2N8QW~7V7Gd^Ieckm~qcpOz@|cO5H=+;J6^?r>A?|<LAXD?4HQI3!
zFTi}2>ke-zVC(Tc`kHeg*3^z4MNgnAGcdErY~P!HeiJPHppXr(sHl&S$?CVQ&6*Vn
z@;7a|6!q00=^g)tX(4}ReW(n=$|iHv&BqU(o}@pfG6hFMN({smjGWWvrd5ez=z4KQ
z4e||UU`CPoAfwHMgY+c5t4CE|%=->$YujFHv-3&)J6vetja3Vu$aD$XHd&V_Xg!rH
zD#WEVoVWgwx?)oN@o(zfm#}9<Eu0q0!zp-6`XTkhS@F}Rt2-pCzvoxtr?717SRd5)
z_uVE!j*3nIoERjZJ_xFNd1EZ%QIZdJ{ID}W`Z_2Wsy~o~DX_hac2cI&L19~OJ0axZ
zi%kj-hiJ1DP#k39&$XkQgboR;Gv9Crx)gcJY-?vV_*%_<+KbSvC?V}}j9t)}*uR4^
zfl1Ne-G!qbK1Ggc7-Ua)DDj95FqKFrN2s7-`ylBeiZJ=6*NwrCM{8{%iJE9h6;e_J
zoF&ce>Iw0Ee~jCV#dlAX3eX&raD;uO*qeHifR$B~ny74Z;Ge+><Gcmhxj>rCO*vzh
z>G*r_{54+Pg<xasSZP5jMA8DY<IiA1p+8WN4Nan8BXGO;5c^K4x5+D4jvMD>rpz<;
z{84Hn3EfR}gizAPeLHenko=+MpV4Z^4fPlxo=ArI<W)PVziPFM5nXZ`LLuWWoUait
z+E+RzzmE(6CbEHiA5nNmZp>_c)m~EUO(oG5Vd81#n?)bm!zLtGwjmD!Z73FhleEt>
z^FOqEE)tv6Z1sfKD3FgaPamI_UZgC3?T0`P9Ij*6Khs`s)Iav%{KNwZP0}l7hrg;B
z!{jmM)2g(xOqHBuY=vY#k{;|Ir3t~Vhqa|1DGQII;(@R#e35VGm21;`OdSLr7eydp
zIzBqc&bT(AO_>&k^nr~zB!bjBVkDVnO&|Nv)v6>^PGbk5xUdP(=Znbwnnc&HwU_)y
zlWiYW30a1G<65~63w%3F1UI~bHqA2GSVuN@_rK$<>=EK8OHqVrOmaW>iJcWcKAQ33
zoQQ_BbM5E(qe3T9kxohHLI24z8=AQhiT>yTd^mM5G3A@HTDwI%{joiX6p6H?ac7R{
zk?3}>@fMMiqPS0Proe1WaP80ZrxSo#z#&Ot6q+Afy4ka0CMv<CPXco3=IOrfu+RM2
z1VLBc8wcT4UYF*E-@o5M^}{G|C8vW2vm(wd80t;n5`wR=)o~m#Q%Q<DdX6^|a0t7S
zI|SJMxRv`X$6I1!j-&7jZcTN|V;x8RXO;Iv-XhsOa+p7ioo;BPPN`~qn=I4)D0lk@
z{t1ey7}bOa?~2=;f25l=$J?Sytvp+{nRbMmcaJ}%?~ltdG_q~u&UnNhBQuxjB(ITq
zZT?JkmoM`+c28}l3d)|9?fP%fzmpS$S4iCpp*>Ly=+3=IIJZVS-?H4pM`br=dP+Gs
zot&Eo-@d5QgV<!oi|z*|B9>l<1`}WMCL~<hn&9cHF~_t_2v#l8GID&#e>a+<R^+Il
z@-A&O1z{0XPBI4M+ZZD2U$84z`-U(*>A5KeA*25Iiv8pL{}^~3yD)^UX+#8E*ummv
zWb?@=@A^9!GBEMJ<Ypoe9<8Jh6N<OPb_H7oc$0?vy1ZxSOFPV)eh*6esF5uNs$+e9
zqZGSH(*{1;Ep6=)U-?E4NZuoxC-fa$Qgd~dy=kL2^{Arhgz#{%Q8oC&DR%f5@mtUq
zXYDT!I<j?o*=CaX43sO5wk<;WEZNBD*2;mhd`8OcZ6C)krn8m)oq84YCa~liQ(`MN
zdW-DGC}>N!RW?R?6zuJ8|K1Yc8!i#YDc?*@vJbscU_Wn?Aon8Ka0KpP6A)TSKkNJ)
z*CaLJE663pI>1aY1uF<`y5;pZyXxG^vxsgKG8wJ)D!Fj0w!UFc@9m2Ls79%S3_hME
znOXs&HPiKdJ7<J1BcNK6+>H2vRBU9LtKYRjti)iy-iI8?&VJVW_LZS}Vj9^niAl!;
zo#IVrec?VW_wC*Xz%><BM&<x@(^+Q1BW~fv-Ut<{0ZN8|oUC^X-Na#P5l4;>%0ax6
zY?O&IOuIS3Cwmhnb)l}d9G2?PQPAfDsi~62g-rjEF9%7V`NoCiV{tK9COMQ$YLA<O
zC13hO(GTWUvY8`5uG53do=*5_Gq1Va6pyKfl1Q0nz6l-+MlXw<i~OjZiuQ<kX4bR8
z+snPBYXfB(7$jG5({;hk4<vNP)8tg3VraO?5xJ)0OTo*}=n+h{GLY|TT2)H*UE5))
z<4#MGR<h!wpsz^_Mp-3H-5bGAr)$-ia9S!RNXU%<DKWsTUcr=aRIwl0Yj;{i0F_Z_
zC6d~cQ*F<Kl=KRVk`y`)dloY`!=!%|TzFto3BeL`tc)bu2z?mw`DT9{3|y9QH3%6&
z7QTt_sEDxeTCQFbeAZkeEY2n^>fl^*I#Bmjn*y52y~^phxqfwwOP(jQfGy(O+MxQn
z#P|MCdZ-3iQDGV?uvm`@A4=_?n>6ntrGN@?kXIojKTv80#c$UH*|QSA3<;uLB1ACC
z$6+%VH!PSN@^QG}dF<7~ypn@*&0kZ3DR<~Wyz@SA{lTWfk{U|8V2m_01|QDUZ&C`2
zqXrfqjSCr2#GXu~zYBx6E>f{-wW8$3s!D91X&y@rTFvt!*X-6(!AO&qOp~xP^^P~S
z4KMG%7u0|{6neGQ!mv|qx1SOx-J|YkM@pMy%|XhQHRqEw`}N0(vyKaE){wD~XCrCL
zb~fb<JAGl|gB{h>r$Rb}Vd8}Oh7*4Cm7b6|utQB`m}U#%;S<3B^0a+ufeOojyb}rz
zrJZav$%7<Up_y@-yZc9<t_zDD1Bp#Y^oXL`QD?b}pY&$RNQL{vcFm^tcAo3EElk#w
znc@btlw^Q2z6m6+{WZ9>xcPTU@gmU*<^k;mtvGDF%Ff>fiDmz<4f;vUMvh@$qMT$2
zxqx!lW<V^hA@$`xL&r*Pe#&+0&-K=h3{PROO4>=3kK3N+zV7CYB`C;5!FjAi(Io}0
zI!4qWbr<c2D8@`P{4|#q%L~GOkcgdxKk0`KS#DhHiUdKhPza>4!56qc-`z4uE+|}d
z?q+nI_=bJa7W*hj>zfTK+{<*Pw3Zw&pWv!b0<${fbV_UC)E7%f7AWl^eba5QD;(AA
zn=3<IEm7_k7#Y$$-*wt%H>ADi#goT@ZXgy=z0=-vE33Q(F%zLeVgc6Z@S*#-x3{oW
z$2x3c27y_&#7)1%n~MP_M3R=ejC`};d$;DtxV`lWa)*7YCMcSYiEa74@7$iRy-B0y
zP(-;<#H(K$=N9z$4?x!tnZsNQu=Cw}-0d;Wf6)+@Ai6)`TWZI<mqxhG%VR|bd@ltO
zDHDQM9&z99RF*%OAc})Hk+r5QtCu+=-K|1e2mgJa_=a?f$S_qG+s6-4E)sin?+7*e
z<JlOgbvA2`v9nD=V!pCzOF`7-_2x)?WG>rn%ch4y|D6!}R~UzlheD-mrn|f9{FYQK
z7^J3p#h7PCUg3&Id1H6-F!hbHm66^wzs+=CUFl7ofjPlx<#izSk!coO>H3WI#?lIS
zZUXMI(G{4?>)jg@yh&V6eHmOW+YGwi{axivFwdeE0gWcP`8|ERHM%$Ixd4i1xXg?E
z0TfwD4+hB-a3#k2xij6)OT3juc?fu<JXWFk{8INzg}1;Sk_8J3&gh>vxYs6&ML<kp
zV?jBBu>=Z8cdIi~ZtoQ0k;Dx`g9ni$hkw%9Dc23sztfq4(gy~NBA)_+w=PL}yi9Gq
zs>aX}M^R5nR$O0@vZ<tnsAhFT1S14;(cI!P$+PW@PgRZ!*NB~IJPM2uFv55Y^jT8r
z!|bNL%EbOJTa9ynKgRZHrX%G4F~hqYV_V0o8HZaOXCg$l52a+&SL<Lm^B|>UW7Vv5
z^qndVZ*`%o+LZusBzGQ7i2|CD2dZeWL*}YJG?r*vWh^k<W>(m_k0(}aJXDS;qV}c|
z00BZ|Cgbvd7uubRysfjKuGM5F<ct~Sz)E}k{bAqJ*o(k@%whs}7-fGk3Z1~y?IN;V
zNb*RbuzB|cd&Dm)Xv4+Gv53RNuwz}!e#}05i!b~Nll4koAVgu7z%t4(XWwaeEzzE^
zJbTATWd-74P|exMzHQ<T4yoo?x=v8vjOK()kssq-r(Y6Y9<A*5@~TD|>q2S7{h3tc
z9^a!c3->3CVS7~x_@|f5#-As&UYI)f<HVk4sKQ!TDc@CA7zit)XCrclUkkNU;BL*!
z6x9r)Cl_8+0V}~(FQ?Amo7nTjP@S!6SOkx8R4g{f8D&mQI3<|cQ@eZPX$eV0f?=qb
zI65Qpf@NJ3*B%ts@7L6-E-&i{neVc^;NFocd&Y%3ARhtUQBi1oK}wu(xi+UhzFB41
z_<=ypW5eK`7z9u8?H5vaZ%>>bK2*p0My63s6f)#+c7i4wQ_uNA9}NAJFheeNh}kCb
zeD~U<xHdPdhp!>^ceuzUIow6HJD@OG8t5Y5M1KPKs99!CzU>`~#Y?b;=1sISu9W)H
z|M7WyWP7hz!e$@EYia(;cztoMz2g*b3`-ql!<WvWIp*%W?5wnSsXqh5Q4R$F_t4r1
zFT(WC?`yj4b%#D4D$|aYsnb7WfcbQK`m;x<1K4xuD4<q}4<Tz%JNU%b)K&lUFN+qN
z^&y)EBaU42EvX5=s}V<(1q7sA#GyoS<)*se<`zkJEysPOK{{z)UnI)PQeZCV7)-e#
ze%SR4Jm!EZbLz@XT|1Mf$vF3XTwLp`<2Un$bsq~q5c?Qg<1fG3d!A|fbu|u+=n9Df
z46Vns5_H3k;GFxDF1?YyhNxjx)T1N89YwFqPXI1Yi?hWGlXjOO!_`whKAuT<a_Y5s
z+&dfXI-~2040~0H-Zv<bo-Q=kY)jp=!@rOo6*O9xaV06^a~o1e?)5$Fx%$vrpESXa
z>r+>g`t#pv=kC}dh(z_yi37~HTY~{5S}w)Z7xF4XyIhXp99eABKTCXnjeec5@J*d;
zXkrEC#Gg_R-Ka?;Znr4f0+f6b%gl#AryjT6-)HA~)f)y&(3%iRzgVmv+>p9D{IuK;
zy<Ue%0|A7!@LTTM6g*L$lz6kgNRm<b=(Ji#L?PcSZDN1jqA!r6Iz+0gNK*kh(GZ=l
zlV@(*5X@`vM=~UsUX_F(vax>lS}^AFq`kxSq>2lNtFve$LV4R3)IFcHrMFrMFG)Re
zMnPh~2_{{ibYyrhJ+(=T6ax^aXPR%{365Op57NRuP5fiTOMho$aMj&v<Wt9ZLea0y
z3Z7-!o@bX1iwTh9S%}jC49Qh1GHk2*gxs+THue>1Z3YrHy6Kn!gX~kI^)MOR#NE7B
z`k+Z!3h#hHRyi){yg+kSB6P{7y06hVo>=?Mc2d}AoHSU^;o`>gez=`$UO~)H1%L?o
zr2bnH=KF>poqUMG{|qLbq7VuP_mP@(>Q`vuK!@EtvwDtge9ZSY>l6{vCulb|(!OhE
z+Ff^gTWLjIEvXnW;Zh8oYsW42Cf{pNY;1B%@3$l7iLDi2QMeD3NvkAjkoWia)>#*|
z?7^H24I$&QEj*oFWv$bjV-fkI$XKW}{B3;S)=ww3{F=W>&We&$UlC@WZD?JdiXt!)
zL68WEn$7RyT8|#wvK291c;=9`XiSTVt?#&qU&10Iw<tcAc{I{GkU!-_f2sq^nEscv
z9&{mp&h>xBQ!(bJ#@62t(c_WW4o9Ep5p#kby#Mf8o#-i8DGyOr*19SYL#DVA(Ll}I
z+^hAu$$B|>&|#cm3MaNc<pQ28OSl(g!Exg_d`6=@)z=)}fqXLItFe<>pPt6CqQAu3
zN9klJ576TB))!vbQmTDoEuL9G@s!$K5<K*7+!L#`5=a(u%2IVYVTOymWO6X!18)}8
zMN93ae1a>E4Zir$+fZ&EFRuy{^S5$xaPcSJR19t{)KS78cx5>zV?xj(c1}{vGX6qo
zFAgPezae<`wYb?`v}h7NS!GDFssg6nF*fMjyxG9j6hxmZSp`8tk+95=^6nWc?T2l{
zZj;?Yrwy-1n)Z^&z{AfrFU_-m9;3ZLI9T|)<4LNBjxg)OrkCxS9Mut~tW~oAs49TJ
zlAGtumn^X*?UUaXA!KxAgliv7b<i3J0IB<8d)=ty%O6s+c#BaDW$8QFbdlW=)lin4
zXQjkZQ8z&ZjPuP~uh<na0b>Yb71g3Bz>>y<rA!6HA<wLw6CB*2a+u(KB~qawp&uYy
zfqDK(m#|oA7JzIre(N;iqE5cR{PePWbiViDWyK14{1Tkxnl?|lg%7KdbIMkrBn)An
z|A{2@(|SsB`NWx0UQZqmPigDB!Rdp%ChdL&!(@by4tCCOK5&7i7DXnmx>CeUDay|^
zm3vY*PFI`w+N?KzCzQqwf6lN|;<eMPE^_KVAP)he_ldD_f2blfLEL{TSlN0KHU}xQ
zHFw6LiYUcW_I&JD#|6LMr&)RY9yU-AG!;(6hdpbiy|TaeYkHC}r4KsZ?~r%wcNgfN
zabRf<6^J{DpDG;=-X83ZcqZZLS2a_-->Xzo!M4`!l?4gYDLtY@GjyAaDuJ)i-6R=l
zCTy@*&(OdU0R&@au1$aK_9py?=phuLbB)6ZqFRVRWr6ATR(j9bP3ZO_MrH;}AQlmV
z|FLVEB}aJ~h3-`Zav}&K$_BE0?o2Bfs>%i=+d{1&xHISyz!IU9t8SIOb)@9m0^Dho
zdRS+WF6=Alg_*r4CI67*fY}_1m-NyV+f1!ZednR1fN;MPUG}Ks&>hcAKOxo3L6eRB
z(h~+>9GJRwc~U?KT85hgb{swN-H)WqFXY6s;EBF%C8-}{Ms-WAnZ|j!50+NE{4vp=
zC%Dv$k4ly^i%7Q=^2^NUh|&vEb6(N*rA1OULmG&nf{}mgJ;BGb60ZRh#Fyz<Au{8H
zC_L>?x7&B0_KM5^Tex2Rt19dFsWMAP<;z+HL44A7T9`sDkvWSe1xVzbI7(r2P17m%
zw)CWPBKn&ma^e(*s<tsQflTeWHFkGf)rggBaINIubrGYylDYC;OFLy<^Yt_$6KfUa
z78K=U$udv1w1Zu|SQxh*_)1~{1>uz(WS7`@5kbd7%eQ(3I<YYVhZwuz2(@uOp>?S`
zlAMuRpqBQnpY>WChdL4^4GayAV>b8Q9o&1cKQ7t_oTFIy(~hyLo9TT>c`fo5xao>$
z!EC~RNO;6v@`x6qVUDU)g<%<m#mu4~@3w7k^J)jtA_szS`DUDeQlGt#*hP=}6O@r-
zCyVD<1^fbl<huoS_T&B+x?L;BUXI5H`F5V&`cTrISDT7Zg9hRIlrs4Re(4i)?er)7
z@pL+=5ey|$XiVnI$L$vn>%llVQhzAZU((|+|JDb84NCm1g;ol798pc<4e=g@A4N-x
zUsE@{tFA7=U>V(;8CDe36W@N?Hkfxv;-eGvFp7mZMmo|KP)+^U>#6l^lQNO`CP3+g
zH_9R>-m^#|W|%okf{|TfYP8b%LYC+(L|UnTd@h*tnF<wyGXJZeBDnYS#|76+Q>Ynq
zdjJy=#jntxpp+02>-Mq1-5;qi1Q!-YmY!JTF%P>pNNSO^a{v-g6nO9Bj#8$M+c~X^
zee{KdKIFKuMxDx_QzXy|9unbf!}(@X7rSGL{)m%ngcoCAWC0PP{QXc+dX!!RAHBF{
zbU6Ikd6>ix{}_y!B{7orp~5vCQ!$R4GmD$06>j^F*egxHN2dLpqgBjs+ZnpZBb#}3
z!5>XkYU1CG83c*Abhw?jBx&y38nH+cLU(#ps@PP^4h(u6nDqU0ynO9yAPz=n@~NVY
zBYB$B^4y+-lUG(W6`tY#UZpYjCcDalkXOk16aA2;>nZNRN0jbdhF}N}BCPV8N4mOS
z^{0I*P=_kZ?qG(cyIaqXkrj~@QXHd4L6K?pKf7~_a-BUXns!m04|3~&PCQ<LG^O?V
z2B6%QuSe^i+0jfL?oxMzmzVWy2zORX<BI;~+=x4^={{a#yP@AT5FtQie4^4lQLY?p
z(RPq}$tW|TJAK_cpXU~QtfvDxt^T&Ys@)Js@s-3L9C_G<?$cB~r5I6=Zbw@%HYhXV
zM)y{;@LJ@S<YQiVu3Io9q^DPftXR~p&q@2LjgrNo-5~m+KkS*1);cRuQj(qMNh@$g
zVY!(%%vI8Km`CkSPuWnuyELPl`Jt_QF{F0)t0Vh|N84$qt9nGwIiO+)wf=H#PMO?4
z{2K)i#IdEBWv0g|uHDG+^;ff=%kSoQbAKJKf1>%0qS!rvN-i#T6Hf*^X41iuA0-hG
zsROWMc(9x8kvApZxJ-*xg$Y9(0?02}v@YpxVpwp(fjy;2i5ev|G0Ynu*!GL`7|I|>
z&{u2HBwM&0FCFVf*J;fH366i%EReFxGt&-pm0F`3<EFM_VX6O4wZ^)?uPt9YF>+NV
zlPbx5W#qNcN{U8RP`rlokdfJryU#IKjZ1C%OM5YOrx+2;7FVhrc|HoyE=zsy*Y=ys
zI^o&?Dbqz=N@SBtZ1Z=LikU>9gu?a!AFB!2uB3;9ROOpx-E7=*NoTCnU-Ur`B^pg<
z<+AY<o@KkeuZpG|jyvv^cBrl9(IZ(lXI)ZyFRkaNj~+$xL=CtU*{9gN^=e>cA3#!q
z96jzQc|u-tw<UJj7V1)(E(gIWsU7z<epGf|z=riyQTm*&t>w?4bZ}rnF2s>Y?wVeH
zp8mN5yAJ@5Gy@1&cz2$iUd8Wm36NGFP0EwaG60#IeO&tB-}LXDx73d$;*nP+`PhK8
zd-`$d>;L%YK{)}7-M)iLM@EEwj#%Yr4&oLv%w@->ulz|55-QQCaZ>FK{wOzbV9WF)
zf8g%&O#dzQqbq-71u6^xMen{k{oAf7|N1)*x$p0^r9(1_Peorx@z1g*r$3sjNA#`#
zny6hQbu)9a0@kyH$>}ps|M$rRq>EleTF}=I{|%fskNeFsuV0wn;e5R*Jc6nQxvAWM
z4VCj8)j`h#(HKuFvmiSl-hAM?^t%eeEARJnJn-=6_^st*M{c3(LG3s?r)9{u%Dg1K
zSCSr57HJs81^8A#d0ob*&)`NmqBCg}ew-!mB7b6f-rwPet>3~1$u#Ao=Vb)&kw#Re
zw-|sepI$O79bniQqVl`_&$K;LS}$i`?jlto&=?Cc0`~ni&!oS(GJLWvEDD(g`2jF+
zm+R7#3R9L7(D&HV&@l2h_%^&!0_2YA1E0|gmyh~w9M!v^(g9=egu&^D-PT%gLD@B;
z$P=k=5YsPCc5lAa^x)GKHN-=wI0@D<W9)-IF7rug0wEbQ-7Z7cXt=hJ-ea9;(bfGi
zNwZ@EsEE~^EzLuDh_nB)+iz5PJxQN}Gm|ADdn!_>7d{Z&;9{+3_s_a!o3_6O6T4_;
z70|aw_4r!pvnevn>t@;}qkI?64pM!ElUYFSB*V0yX^$SNCM1b8Bcxf?5V8|N)C_a|
zZNZPdn|(w(L4MK;4XZH_ZGqDX<_c~M&KcCKBs7&rqH((f=b7fc+k<oZ>0!J$(vYl6
zH1{bmQ%-eenjqG~pQjoHfFbHCv#RpVKKskIOjLCrE+;S`TVZX`V=RTH{IY>(qD>}D
zrvX8a8QKa<@LHz2tbMF-c(Zg1KF{5JufBbhWIIGgh>&bHq4VYcv&B2&rr*J}q3i*8
zlCTEb&otc*cY_wHa4&ECUp+<P5WV<rkeR7(7U;Nd#fV5FR|4-VFn26=OP*{x=ZdiV
zsbEa3n>Y%n$<hEd+uZZ8tsJ8@HU!qu$bvd5BsO?h)1#AHS&(qfg<4C{shTtiMFzs=
zyJNlm=$?d*Bb&)f^4wBPtakI>uov9tO_VBCh2S{n!$mxQw>@P?e95(X!d?{HQwSz4
zzOj<Bp8S_xe2~g;@E9bsWucQk1o`IK2V6=wue?bQBO*x&o>si!GNNsOq-9SnF{Z?(
zboezlyx@+!QIFsb%aH0J5o6fI`0^($wL3P&KTJ<Y3AROILc9%eCrC3ehR45X4?jYZ
z1!C_QQO$huq9o6Nh}WIA>@c<dbGQ-prr#F)aY3^c;cyfAWyS9qZVcqoyMxi^>Ttuw
zr>>7ZJW2u+cH#P__U3a0!ThKGeqMKT%YA9rwN+h`bK$)Wk2=)UDzM65^QoOPC~57N
zhf2&*4!65L=t7SM)?hjvQRnl89Xu#$FG^pS!$4ZHXBY{8b3U+NR(d0d%CL~FfRXKZ
z#e4RwVcr-Ol)%DDHgmm=)Tjktm5YhjB2qK(Eq=4du1gv)QN2{)wb6BAE6p2VuCQ)v
zsdkm=Qwwty0t#HMLMB?UXs+fvB(fA8H99=0ky*Ill;HMx-Y9UgP+mEX?d#R!gB^GH
zZZzn3k}AZ&AenY%@YY@am<|ZHM*U%|Fh!oq4CX)Vttu|X-^p%lD-0f*qkjhvDN?~e
zxCnf)2eMt?`(lmdWPu>}fE&@{OjrF_`1hVH9KKE>kBLp;@iF$P+Y<IX$k?KXtwI2F
z0w^ICk`Rm%8LHv(%;dQ?=VZn9cyyVNBJ5c{Hk6*oCnU@^ccceDt&BhYCiqN<O-Jg5
zI}BTs{cUrhTeC#jnhd~wP4<`$M^yx+H|Uzfz@<MONo~*~x!{o->~BxTx16f%sA4Ek
zpoQe5c+sGu+mkgXr3nv)ENO&1{GrafgVYqwzQDmN5<dzbMu~?rR#_KO`C^5hAj<LR
z8Ro(xT<RwYn+kNW{-f(D4TVVnY`Doz-<?FuWEqa<Rskd7^8)G+9TSzlv%qehqam<_
zfXd?`!o^`)eYd^*orGJ;!m<Yz*dW};z(E;Ar6;*JrYoAo`|eyZMnO{CIhMBf7uYLX
zC*Kw}TT_jC29co9EFA>aBOeLQuZg><C|+{0|DuiZ^^ZFyu(vC16a=G$mc>Ld+6*+$
zJo#gA@E59D#DkQEl%;^ACreC&WV<twWTH*lb@s0>wIiMYiI6ucND7IW^&H<~<`}yw
zRG?vf(lP|$6N5$<n601LX%THi#F4aAM_v(kP;zkv=E#fe#xU2<wf8X%r0aB^IdrZq
zsZo%FbM~qjO7Hrilyi+iW{{~U9z5ILQoHD5UHkyoJJdAd%_<0vAmr>|{hx7zuV5c7
zg;K&|?{y-wVK7k)c7Cv}r79FMAjD+|eQQ8P$mUgR?G-tRqcY+op$one^+Et|Aq-q{
zr=4(uFYsh!)YXO1j93fJdw1HEZNf57KxcSD68A*cInphR>)=$||B}Sk#lQoyFVtvY
z#O}pfzV%c4VS|5H-H40AGqYA<EU&WLrY2NIfrBb(a1@kODK3G09RHdX3vI<)Dj&yk
z78X^9Qw=dYzTu`l_Sr^NQDmMLYk)1w5aPL{84nINJfoas-E&E{%bp7<&0O)g>-9#{
z+;Gng+cir?D@aEB8FuYt^=8;@OPTT!si=kvi??;)*=|gmgemj}C5aV=Ug7qUlg}&M
zk!H^>)N~ZSSSRR)P~gJ%FD@C>sgLY{JJcm(QRqYnEHN0K2=KzCU4oNW>Z-uo`=?kT
ze(D|T>_OS;&hX(n*7I#>^bjU5r3rernOb2xj@E9=a$lrB6lo5JGT0SUWx^smxl&Vf
zoI-Ol_!od@JT#T?=E5878Fk);>!n{or0h{*XnjMleW31%y7q`VopvWC$tk{M-7mox
zcWUMuNM}DZNBTq9hl1*36wSeZ?LdT&H!P`eGiZWa*ioHUo>npivgHZ=gpefBefNPn
zAGl=bxX6sgP3AifIKkZ#y2-p<YN%<Y4R&i_f&vaLYwjl8r>~aBLu^)h(24iNK3Vgi
z?NqNrm)XcxfZsa2zFN9wvcb{b^HJN-U#0yBIHi&ZP#M`AD!RE*muyd)mUQc7`?w%9
z{;6nysVzh^#xG-Rz{b>@f6#n2C-^7ktJ(E0Ti8gKq(RG}-QtUedMCVF91fFyNicp%
zGm+~2mzzQyd|UANdFrOH@|8gEWNDImBJFBj_G#)b8<okykl)t@j#Pf9BZ6^Z7dQ={
zN7vz=QSn$QWM3YMJ*)lkw)Z4`BwizAD<lJWhsc|nWe2#bvzm8*Mg_SQ;1lP7_sgAj
zUuj>yw%I|is7>T`rQ)O!$5$FXPW{!MH!pno_%JvXWaa2MnrB*$4eFlMt{q&fSNJhe
zo?yHU>EVufw^{l1uo8=zWOTEVYe5&~4u8mWm%bd5Lc>zb{YPAm`F&S#g5rSxX|5`r
zrNic`Ti;SWI!)){xWc|b%xsjqrE|hz7bwL&MCfA0Eu_uxC92$Gxd~JF0gk;2^x^Qs
zDLCaf+pTFcarpnSm*eFW4i2W?th4r?7W6aD4_+VVEfQHs*Lw*%(6JjCtbfXz_PGXl
z^50bir^Y(-7L6uk(L+!q?GcQ*Mh}s1#t@?B3si+~BN$TKRd#%*=5LPEU?}8LFqtGJ
zQTLNAUhh5m^6J{igm6iqu9Doqo}KpR72YaE4Iz6H?>ft5?6J3R_BN>-!A%QSbl}ch
z^Ic1K<ADhhA}|2^!tuuO!c*g<hvWrs-R(U%#qKMp0m+jj|MO#mo2O|0j3Hety$d0r
z5ROnEw;^?uN$LgKjio13ixk!nnPAc**lfHj_3fjQ{)WhnHDoPxZHNNwQZuu1V`{Ik
zJEg3SP>6j9Nw$<~oBnpoMY=Syps277{fb$fI%l|xb~SBtUA!Rd9fj=6Zpj#=S04ey
zN8^Jfox&Dzoh0xi4IPB*J;O;e1-G|$onKTBkD9n%6(i7lsFSidoUFaZroS9_(K`@*
z`b(l_EDi-0AhW$k*?|wnE$^tD=JTMA5s^#Rl84_7wr*%9TxT93=7<J;;6KSSCKYbw
zSJ*G>b%p+a*5PdP<c^^COkIb`T}g7XrizDQsu2i|f8D-4$CuCoCxzw2f=qt!zMb%x
zS{U*YS@x<CE}g8MeCAy9+sSUqJPm2NuYN&!P!x0yibSZG78GnfM7<Y`w4281`{gH{
zpd09(k_FE4<Wzf3ee)3$nu~W#GucY@`=sK4Lb3vv|B%)nanycj0*glfTW!j4|DeJE
zi_(n<mGjIEp9bYmC^bguM)i<L0PQFpF?}DifBcd-5xNn6b=2X*v6g<f!xq}hm&Jd1
zaB~?zy`=ePKy!PXXqp1B$e(>{>RZ1gwprHn6X45^)x&G5jk)+F+pC2WSH{z#sX;{e
z<~uvOYr>jk>Ou7v%@)}}Mcr-CMYf<uU&DWLu!YeCt>j?2fqm2~*4$&prXIXosa32X
zzDU7vLI?yqJ`X<Xr@I43LE513B#RZq+|f2jD@;7_5-5b{3HSlIQvi)Dw9Ss17EBtU
zSPBpXlLT!OMwl?~-hCrje5#@kq=i6P1ZgHI2QJa=nBbG@1p7A8P?@9%@gDRbT%mTa
z2d{(&v31JuC>A{*8jZ0*(x8KT>3oNM@^bZN#aR*&3$iu@8w@Tm!M?7to36NwE+}}?
zK!tHdWmDrh?$kLUR6-(18Sy&zK(q?Y5lw9G8+9miPH7t{eiROv)bGDE%-!BB;q~)%
z5#KKfg_RF|%cU-JL%di+A5`+7;(}(GxF2k{aq5CH-Vl{1QUeh3Ga4U=b-wk@cH=NV
z@R0BpPFVp%;*=kPufqFb=5?qbe<uttX}CN8$6#1!!B2;xF@)HzTB5T;bjDZ<9|+oA
z7I!7HU7WhekO=Aw+>a~-OSjt(?@zddfg}k7_{*bo{{!XDHSQ~W)Le!Bd45V@VJzV-
z0HV2pZvCm@1|=XjQI;=Z1Jz*){IJ%Ze0@UCYN9Ya5!{$YIkA9De5w4K-FdGo$i!L0
z?GGoadRWEK>WFNSlE*CX?Yf?*P!h>OYR<_<f*TMO)&yTCCW){uUIl@JPGqRRI0ie~
z*dKN(^_R7d{7jAD{FDl^^3HnN?kbA=dx-KKy-JkS2<4gT4Z*c1YmE@oxHGS;21W>s
zVIueIm)XZdsRG`%&}P&H6bfH~`TeJ$WUXh-?Q=G<p%(g6@X?3fR)mT)OF0T?yy}g?
z0}puv^#enEMqc|Ar8cphUsqNjpHRzaLv)6IpzL!`^s)CQ#vO1%!haf;5l&^sde`w*
zI@LyRRC{5bc$V!kU$Pj|T$qF~@p>*%QkIF&J+9wL$r4<bqRAbV2&cl3g>>k9wr-nb
zDa1NJviq9ApmmU`c-tQEy_n>59cqV5<!UCL7c{faPdV-sPAH6knn=}1GEXwGAt7g*
z!w<K;cX>r$iC%Tj#D)_xxuyMTZ@g43$dUMS&>f)E%7Iztyf}NpPCZc9KN5r7Jej4%
z2&13oMa=t1Z48U(=zYN}`z_09^8?)zC#kH0_y&N7RDjTb1@tLvYVg;OzW)l?k7_~D
zwu~>^;@se^UYeNYpm20{gY5&l05AHUpw-OyPDq&(|9KpfGzAkd{$STIT4KMsyoxSR
zI?*!WmRQ(%YfoO3_CWS=|Me0vtsQ2MSd#Q5ULs+#FrJ4?aREb+%4_<Z46=!*YX2iH
zNI5VS7!<PN_@Lo-XLmO;Uh=$pGxd=Mn#u!@kiMo7Yfm@osN}u7m9?ewvwSQQP}4ec
zbe=h-tD6v~N9$t>i3PYr9u(LTBscgeExznXs#Aq}ESR-uDM0wS`m5B{FU2?3MmtQz
zluC(@8Tu<;w?Abk-Ik%el@7IFvO?B?%+BavvDBV_LQ=C+HTs}>5o%_Iv>nmX&UPOL
z8%OI7!wBvZ^?xYr&oe2N_Jqf@kvf}#P8zy)OP;@^F=)1|`BrFI<Rwe0-~{2e!+Os&
zHq9-#((9~2#>5Tlz^oP_R@yur<67MQ52F}>4U&#_FV6M`*<x7m6qMwo47uM^+_Ber
zvq*(X>v0j}qlK+Gw1wMsrx-=tq6onPYBSA!Z=~0>R?!SEcd?(=1r8Nd*{Ed3z>JRO
z(1bQ;kJMjx8CeVPpc<y;%<XL^ua8&BjNvduYNWwYM&j|?Q5NG$(xs{fYK}aex%r+p
zD|_gl(e0>-j2bJ#9edtsvu<mM5fE?UDM6XaHb2uDY`BErgMsweEl?t=TGjfllM~<M
z1qq{xz<nIw9L<iGrnP?M(**e)#OaEOo5?!g{C4ZXM<+@VBvU}%0b2#!t0Nx^*3b8K
zjQi1<807otOhWajXh70TIV4nFFd4Vr9Yj7(Jn$E-tL$4nd<;%5=M-{w<paU!kF`Mt
zE^{~;r7;h2xX7jyUf_}zYhHv=T2hN2&k&%lotxQwK#=-<{3mtl9`&dq($*zMAf!B#
zc#F**q}waSllwW`QURN3PIxfbwZvD(0x)R}37RUbRojLJ?Osq#6%OR3$F^<aSv;Hn
z4G5n7IAP64S_sRo2Vy|vK!I4HxuH1N_Mw^t&xgw#-cT3>QTEMhwfG>Lb&OJX_({=N
z-P!0?44MC|UxUAXPT0AE7)L3RP(2v2Y{M^Z53X64@YyQ$K}00dmk7Y0B*Ad+Ot<ls
zkUvS0D>R{yBPrDG9Fy~EP`21_Mp_{dO@0@MOx)V1f<GdjXwECD6a^RA$E0TLx~GGM
zW7No=DTxam1*qJ!X+A#9KJu-WFJYsjH7s4`zc9Mzt+9W9pZG0qF_wLO*2(0aI@Ru&
zr*$`26jlqno{K-t7G3|CJvlx}{AtYlvkWMl#z{GPntgYXKRQ%1MScnm9ky|nI`hpm
zoBoWq187lK7ApGWnSrm^jgR<ngy|l&5Ov-4ioJba%u-u3Tr~ZNVTh3Wudu7`^QNBB
zLS&jm<(lu8+N}?GOP>f^0IZxKBptGyk+|9RfIVe_-U}`TA&LxG;!fV%sau1kXDWV<
zMZ#Pq*HB8p1o`^c;GHwPE#z@WzZF1hrulw*5P!Cs*{&sVGYXej(2%_=?Twj!HHO<G
z+9sejAVozhY`b>47V}DR`f5jo`5de`S>-G2D<^v^1bN?yQM75ypcm}!!~EA^n2H=B
zXBEWkyQTKHR^Fs8cvJyagz5{;oEPk+$LVQ##29y7L48yPna_4b(B=|9=-{s4IfeBd
zRMuyhr(O)+tM^s~MI?b(V9tuOV@mzoq4#UGGSCP$2pSKvS9J8Ieai>#G@UqeO!2Cq
z{U|N8fF~IpGZcO>rmh%oA2}qcpfwY#6L5Q^W|Y(cLMy>1Deh|zU8=Maf+5k7<$B@g
zKv<M_d(2V6Z3ig(61$Yci<&<Gf@t!$dLVV!#>6&f>K<5D1&l_t1hBAfdeDBjMoVme
zNIYrwoL9<7+*M(_J*@j5U$+;6mI_&q05cS~BjJ9#xKq;ZS2Rl!6UNSj<OT!raa-HV
z<B1|aLBb(AZYToJH#g+kgd3FLf^#7oo~L%R&97Z#Z)u<WdB_Sc0agK_g_ljkgq%Wi
z#v<GPjO2LXgwrO8lo}2j3?q2i8KyB}zf4HBPwNd4;g6?clne(>_^w;+o}FQa0}Y7?
z`5{;-r1M)X4SsxBRRUyb6qz7^6M7QDXe5VW?q3_+)R4G*b=WvV>GCM1GafP$Y-G4L
z>)<X3N=X6<r=5SyjC<@?E_oQa9Nrm9VuWo9va*=`FxNiTXWvVK?Ou-{3ZFKU_5F=X
ziWv1>_XE7H9v)$Hqp*f#VWiSdsZc<js4YZ(ltIlh46wWGZu@MXFk`{~#tV_nCd!1T
z6b;XD=i@={g>l~#fboGLz!SLoQ3DkTuK2|McGZJPIcw>6)1On2WsdHV_?>w8gD<s@
z<S8E)XD0@Y;F%Cl{p#EYSBJ{6c%^vIA`Jl>5b?1bGw*AA_R^%`b1Bvmp#UjR@)s77
zh8*+FYr(RG`uhJh3W!yQEV4`5=_mjjC1nMA1hthpH?r8>|D^(>;;vQH(Zq#!$ZEwh
z-^<=QEonDEwFD2~jUskX#{-eMV^W&&%kA~gXmG*wko--!3Nk-HTt+{V`q&pTKajFw
zgGDcU40RupOQdK>YH6NHYkh2Dvdqd@HIkvo4uI(B3HIQ*IxR86?jz92lpaG%N7(7B
zlkR-?(EqsKkO-n6t+?O+reUJBwV#z|=}!eOZ<XLb$DFj<w(OTQZKe9xvRP?Cg>)~@
zlU-oQsamQ*>{~9F8(u(Rfn@OxTkLvlZhFWS#G&WnyoH75#479zYmGY*HQYdHwq=dd
zJHS)b3Q_Vgb7luUM=H^lH(m-BMRBq$Nkntm=77`efp5lUa&-l%eIyFlL}V0*;KSTz
z?&#r~nIc_E*sQ4{771Leq#ibYt*6UMNsu}o*uWcZIKz&8J>jH>6dUMV-4GrJ84q_b
zZj0?VF1b~A29}I@`ZMYcWn@Yc>8Wq+k5?*iATLfn;Fwyz2v9s=MCJ_p%m2cKfVR_G
zmnnBjvrUlaS8D9nEA?~noaNwuQO}K)l|!FRv+;BFLI3@^$X)ICxp=)yGS=*Hy^|Um
zGQ2O_8K>xn5qFXGP*~*5`u0nL-!^G6hJ-?rxeZkWg=0>mfbWCe$}yLcaPf`3;3ddy
zv}XvgZMQ0M=l${u_6qR+RPaMmm~#?gBf38k5Hb{)miUUFe{U03X@4tWRMCx8oL<th
zAd8<)a(~ZKy#QW8i7*KLdC?xjc|XgZxK7^z@3u&NUfwHH{pK6($GiM{RlP%`Hi-<t
zo*Bz6>+KP1{EMY0JnRqM_!&Y%*6tp$hu@^@4;R&xN}$REnCVAoCKlK;N6KP5oanL#
z<y}D;PHY7oqsfjFG;F#sWz1d2OSD+59exUEMQ8d?Os$#{f829%vgqyaxY1Y@hj8Iw
zTfR_NTg>}WRr%E1&=slnx?40mgf)h}(OH`<_OwE~{5C({eG7Yan9z2?g@1mnEjc!<
zmZFl1BB|&Lq$@9z;nhX9-Py8zNxK`_7vUD*ErKt}3UgUP>j^uOv}~5HT$KM2Y!IfH
zuLis8KGR@>*G`jSak5yn%yX~V(&D6_2zjX}BI!o5gdSxEC1Bn_#qMDFqpEUDZoV^%
zptQdtJAu>NaIWoMmawakxz!Vjp=#k{$uBSy`q<}+V<nXp5h;q4V+zcO?siA1w|Hth
zDLJ(>mmeBxH}~`Bq&GcELE~Wp;J2A`X4xP1#1CGsm+Qisi!X?U&+zfR_JRbhQsPEL
zJS-fh7%9kJHN$S$tB3K_-6i*e6A|TM0Iiu#kJ$yQbTyZ+Bq0wwpN<(gjc3?xI%eea
z<F?j^G-#GAX2(Y*Hu(YFCb+7Mw{WJ?E|OS#OLIHFRl?Dt0R<)x*M|#pw}SHBb-g{M
zyWTBu(SItZa3U9P3YyFcRR^^UxL(&YTzAfU+-tUIx;p6GQ5Y%+xn7)bf;9HKWV@=`
z_y5wsP@tutBeBoeKmtt7#<G-ro@$H7`yYlQJIbY!bqc^I-M;!l(g%~&X#qN<aWzgp
z4&ZWUH{Iw*HCOO;HCP$*cN}grFHg$4Ne_eIGX{V+^p6n~VA!{`!#ipImM~gI6C@z%
zJ_Q^P0!OF4zQN$I>(~Ehr<Fn9;0m>`Whv_g^-HMSLrLFBt)+b<WouosSVH%vFQ}L?
zZ@!pv*WC*0bz#MTIt8c*v-;cM<gs4akvx~i-E^YQF)#fVTsy*RHx`A}>>?sbW$yoi
z(H*>{ysBEp5~q{i4QKxmY`DmqLP5DOFvd)1H2=Gx>jmCiDqWm7E}zf2?bqPNN&YrO
z6kgX?vE`cKe+CoB_=Ae-z=D~R%<w$Z{LSFkdT-HZ4Pze?c%(Y!JP~|c8Gq>vg(Le`
zD*%KA&-R{W!M6jwh24b^Uhacwx$scCdxk$_EPaU$IC08hcG1|FjaMEbA97%Z`S}3*
z#BJV)RwRvb<Sqdl&ClNjO{Vx~6USbfb#gIQoZk+&FO>VEq)Vydns{>=rgd{WXo#Bd
zrE%%GM<IVp$<up(1baVHtN>GIsR6G9hp7`QtI-oXf@?qVRwdB``C?)Ne0ooC+}eF6
z60B<ByCwe+{QP<dKL{D5qMFKYRz37NX4&cA#lQNJ&fikl5v(<c>t>tZ=i3Jw5(e!A
zAwjgVnyMK9X=q!pZ?fjw>Ak#3cpcGJqMVVJ-)y#B_Om~um-3PWDZ!j)KdABts$vNc
zvh>lC6BA#Iztg^2no#qA-i*}UML&U54?<`eW4EVzv6Qlkp{xaR+AP!RTD#zUf0(E&
zMfVWI7kHaJFSBP4@GC7<t6Yp8BZS;n+J5<dG405nUV&5|<cu6sIMoj8>(2+i7HxPX
zS`HxYm)X-|n?dme>2=L<xuP}N>MA?+eE)deSr0tMgPGv}$jj`IuKq?Ohzo@-!nayr
z?wM-G_w-l&N3be~(=KST-FbnWU6`a&zbbgGIdoQ9>u${i;UnQ($qGp@MuYi6vn3;V
z__f5`BiZakEJ3v^8DJ<*<eKSs2L}#L+<p%#yCezsy)b%;@Sfve4H`PCvKv`HxldmL
zgzP2XcVv8!_p-{1k^In*GOR|VRtgxrNjKZ#*QT2MV4zXS@vod2F_sy5p?$Ye)1Knp
z?FR;C><0#dcHsI@?k~F(sSY;AqBreN2P8EGUBX>g@Tn)6=Q_qE*(%n$ZFAjU&uO-b
z9S{(W$V@oi>dR)D#W&fw-__^hzQsH2Q!%W9IFzn+guJ(Ru$#4Oog{5Kkdv&Bs(eWk
z_zZLK7s25@;%4S+!&v5c1B%_!q%y;FM{)O5ZBi-CElKo6DuV7JQ$&MH?kT4+rDmZv
zxWr888$sh&ZD1aoA}J3(7PD21s;Hq)2#4XM)n1-*`)Y6MRUwa<2dZz(!zs<~@_+A+
z7JsBlO}OJ(pQfDJ#+!Q424rY-qvlAw*xsL|+-$wMyA;BW;@@h$%>wh@qLja`_SQ17
zMsJf3KIy5H8ymf?I}cD%7t#A9D7)dwlyfJ?Y!zdwYK3*klLHk#pK|)peWuZ(sidZC
zbIVmJuRQNfC3Lo^iPXp$X(wwYKAW<)Qf*)b!Ue%uBwIkCCYopq?HgflXQBpCnxGI7
zi5Yx2$s*;L)0()wr%Ple)m)`j!|H1R+ea0+_2o%2X?hSAMW}qfGwu9z74z&A8N<U!
zJtm{8*~Z|{T178db$eBhioQLJxReXN2@)rGW7LaK&Zq1undaE<f|RM=%tqB1U4gK&
z>CD>@oIO6YQcp__kZecb@MM@r2A!99x%W=820@c%E!n?KCwGJQu|L$p*DQD^_^94r
z@Ly&|^9^f*jBzn@NJG{gmm30dpYl%d=cV2(gI&|5*a+pfeHPr<n0Wc?O;zm_xDjSY
zNZu2CnBOqw2dxdVFV^EF(F5(0icP^!mE*_H0@YnXC5S;@G9{Sb)z^*CRI~!B99SAH
z&azCusX_BDY9pft0tGZBMC43!>7#byWF;c=^mIP<sGS1dCw~$A*<R6iadZK^#HS%<
z2S@vKf&JyHq;8}`1)3GIA_*l{aH?anm{z&we}4rp7lbe)<T8BO(0d`QC-<>tv%PYe
z0x+ByykjU(qSWq4Q^2$h_K?j<Cp{X%2*P#=qQE$1QGDYUf3ls2c|vJeY0kApe1Hfk
z$2|61>SdAmWv`O~BS9To*MQ+z54&s&79OvOZPtj=iV?g)ohj@Y2R)opaLc}#0zpSQ
z?a7RW^6*s3FPD4U{)gq8haOC6d9#|LYh9=6s^KDg0kE@Q3R;$=iiqHQoDnI5r(Q{U
z;39v<?o^vFU9jNGU;SFj34_$quP;Nm9vZMfOysC=cK0l>pEoGt2EL%{vUox24Fg_s
z-Yp;4nfE8B|Ekj63U&mFG*DCq^@-E3{la$WqAJ~BW_=p@GkT>o`90JnKB|d4P8`;A
z$XG}Af`Ug`e5=;m6W$0}4}h@%5cQ2gNW7wo5@6kAeP^$_JgkW9#wQI$I6(2ubu;YQ
zCn!;$y(Cm!lC%pu2?NPYzMjs~aS0bf!srBs7d9aQh{pLDywLTX8&`lLq3~1CC{adZ
z0cg_v#cul?Z|RF{2J&AV!*iVWuse9ZS|BxnFG#aVNFDj2eV2B=n^*58noFvN@-d_@
zT%NgpoO|R_HGsbHP~1G!3VMR&ni<Pdw|uXvT|k^dcVMWYd?U$y+7H?D`+I6tsKFo>
zW@7I%?BFiV2dqV5r6<5Zn4o5C!vG(6k$wA|=EGrKu_L3PtD9~<sk=;b{JFsgU#V<H
zI4P9GErA+<72QX2&4LB?ptC(pOGRWOK_&hgY7j@+5xKt6GFrD1{gCrzqTQctPcKZm
z>RY9TDDViTM6v^k=_Bog_WqduJeXA4$)LTWh3%Z90TuCJr}_$EpmGRt%!*^}%rt)p
zD-biY=deI<8VwdjZt=$idvNol(qlDPqe3JyRu@B#Cx&00Y%h%SMhXpvHU?eT6y)Tv
zk(2D5ZT)4-DkcO}?^f21*W1M>JNsBWyLHlI*XoG{1Qp^eR42-L<OIxZUP4-$o<J)%
z`1Ir8^HB53VpQ>xJ@*4uqeiH;Tsp=^w+*=F06A@2**khBc1~)x8FP`g-vHIb2BID$
z+ihjO>wuQaE2Kwi6WFON-PYzMHaUZ@37?;`WX5P1vonH$gnvKO4jZZqC@1bAPs~}x
z|ISFU!>$&kSJ^+s^8+LiYDj4|)btE@|A1KScfE+cb;;~wW{+@N&(P{=`K`>%A{tX<
zo#@WGNRgQsd9rXn@}y*lRfRzi8<Fcg<SaM(bLCZv5J1QzhsDo3I_WX{`5NW%i$jQ0
zgU~wFG$ah6Xqks<?YFli?)hBvjsLWQwQe6{vu+7x35B&xu15M{k!*zLN@KlYcIusp
zhlOH?|2&q-Qe0=Rovz0c{)k9YET*78v>AK4J^e;6&fmXUT$IRYq5zT9n_Xb9x!K!_
zfKsW60)Tw<DEmxbRr*(6*BCrZ*|$&;1MwU6o1H#PnPwO}Fohr@L2V}%>6hr9e8+QY
zJ4G}-BFE&Ky}Rx0ot0L|F-62mGTt!(oBgrd9$4m2S3VSIUN1!}Z=%(W_JcSr#p5tR
zUU@bNVaU^vFM8uZS97CM%&-!$>Ow&HfpeAilFgW?L@`W#(dob);3MGUUbx=wX!MtZ
zdmv)5R6vNC$jyB6f*p6AKai%`>d>)t;8wl$fjvA`YZN$VxWMmYr)9HqJo=&i^b&vS
z5DL{~j!*>)Oy78SZ+=2yKc((T(*=N*=#I{dV6lGV2U}m|5APzy1Y?M^QL-fpVwK-*
zf1KtY7O#y}nLB4;fdfPE-YVJ63i-<1TsdrW_7{0#cKhN_Z0Fb$hXr^vtf9z9AlJ|A
zxLf^M>9IUQI^1$bf}_uyyJoxn$1JWHu5S?k!DKdZg_p*TVTq{`^;YFoEd0~{Sm_@@
zB#rb_l7T5SFK@QzE${`IcsrF1wRF^tmca;po$SXu_O+Az3ucC@T$elqQ|qlwHhro;
zbLe~q(G3IY7R%;__w8ou52hQAjxQ1QEd9ogINTek1cjA?z%t=L%FDK-jgq~1Wqo8B
zls4v41ByyYOZQ1!!V^WxIA?hdpM#n>v)~=u?Kb}$`;tWr5xks}Hrd)_e=U{<*%J7C
zxE+!0HsNmn(&Qs3ixMGIAgtpS+1%f>7z*N|$kdDw79}^CZ_YT&4eA%8^wW!?t}!Ua
z<&aql?YYn`Iv@ezdeO9}zfXfm5yPy-1<G*~n|X`6j!{B6jo*1$ZF1ePa;@^Ac5Xmb
zV^uw}alnua8H5yb&BIl0-IRpCM4d^*@+Vf+(M3dh#^;%53f#v7^-#k2VrKG4P#C@t
zb7#wnVCYO`)nH=o2-7xDp>6pAE9c*D2KjgU9~9S(X9l3@&arqZZw8IAWA{5P`~6ib
zf|F+GQ4(F$*0Gz8U=<Mep3l2rT~IzFbng+CB+nFG`|wtobT{k>-apxA>WeDTbYbXY
z5*GH(;OI<mQn64EwHD;T(arr|a7{{5#`pNp^ji_2n1V!h(F=A3_XOhqstAWT^x<x0
zKJMoRZVQ!7xC>p2y61E^Lr1zx|4b4VUY{x;HClSY!7IdjICYWzEjzLMmnwIOo@Lbp
z5FO+%%->_|xLf?1{I8Nde6T|=wrdjvS&|!20bj~ysJb<!IRj10RJWv0lBAT1Dv?}}
zqGq0z^uyRQQ$FaTiovC|sQZb=Fr<r9yQDlYT>r|9k#w4NPs8KflAqGHimvsYOnD>i
zIKxL|Ho<N<e4?HEoF;r^`y=7gz>2L&X*6)aUCoJ?+3eW~b9YdcEty#5tDw(FDx9|2
z)i!<p{#ijUo=P=UrfD9rzde=kN_UpXQc(Y)qcp$ES#e88O|p}2^JguKkiw0+32aHs
zubU>@jM$-Mr`TcSc0jLBy3Q`TLk~plO%gt^2X#6Z09Bdk_qk_2Yu;~Cv&~q+C@A`u
zSpb6|!yNXE%YW6|2*1a~Rve_y^31nSx?|QgH<#(5A?i<74Zo42!4HqS)9rb|AKjsL
zydYqr7@Td^PH_t#_ZC3D8q(Y-0@HIL&(u8WhJ7ryM!uo+O_WTVnLHxps)VG?KwKpR
zdh7}UnQPa|<#EBoxe0OaYNt4#fkpd_N&fap!PtIYjUR>wi9|VwIXtyp@Ii^UAm}M1
z6qyrQW=XSP`ICy5{XZlW%9pnt8yx>vA`)Q7F{Y%|Y)B{UT^a0}$#5yg`w-R^(;5N;
zOZqjn?uXXevlbg9nu_t%urm6fp;GFw$Q3njku;haP>ds0F{;6<va*EXh1?mqyjQ%c
ze$Sdpus!{H(F8Ub102umj&%!`>W|2i^+roo-ZRNMqKldh!LVT}y$45u-3Ued1}JWY
zIWS`~y9E_1lycV>ST8c1gj~!S=H9qFcSX=4E}`vtTCA+wJ(V*eChP79ijMRWPK0<-
z5&bM;=X}%iqoB9d@R((TqgXhI3OHl7`S4)7c&f7gG4&zN2aCWYvbuL{3&xE1LaJpI
zjVQIS-mrq@oBw0$JfN$pmN&jZl$M6Q06BXnfbvAsi-H<zfP|I^sGuexkdR73sCE%6
zb`g14Q2`4eN>>y`iX9XYeS%m}z}_4B|IM7c6MX--mdmAg?mjv9oLy$V`R1F9miDh4
z-KHqJ7$iA4wC#9P-A8n47}@;kB5Jk<vhT@S2g?{Pi<n3?n_WJ|y!CBjhfA7ERR-aZ
zeur!mY3RmZDw1I7rpH~jY>7yM$&S*f7N6YHJlNT7EDE=@NRdLg&ht_W%~4(4-t*K(
zhD53x2c;A19OJrlh?UY&9Gv0Q;V|WZL4b(Ty4dTIL!yi1f$2LCUP@T#>?tMo+rL`%
zJO$-^e0gF=i8|#d<4yHH!_7a=A7y|QP`6k}oPT5yGu)&fqNG@rVTUGy#S8|Y>CEp@
zay;^m3+Yu6DSZ|%KE=fR5Z~d?s6{Z2#aXXm5uk?(cq?6W?)|`?+BG)9DHQnH$2v5J
z&oVoA+80mu*3c3B=XcnTQvYLfyZG-Emg97g_vD_&Ew?S-jhX&0iimsjkZRGcB<_~e
zbK`YxN*H$&ar6@X1hlJJLf;j;BQH@UkpJc;h_=Xrv9^22^JWdf3aP7CuN(K6*s8F*
zyX6bNfCTH{HL>*gW1H@B3)}mp$4^jHd@?((5OMI0cIUdaZ}^eALlieuhubmBj)1@4
zajtB+|3X;b!cewN^LC1xxz}47H*svNsh87S+yQUXOe5Du5Q=+BHBUe0PHv(1Bulah
zX@^)G(r!=TUH!u(e(@E5#b5lLGIB9BHp9SE<Ii==2o7Jb>IK9_|8<hG>NeEauR}q5
zB=J=uRJdrU4lwlY-uA1zqMkU9&7E);O$37Fhzpghk}#J%W?P&b_iiX)+OH@=MPf_J
zG*8AkGfm+&#)h7SkF(j9@F6ZW?(+??sZ*6=KcHw5HMu+nHerZGi1_XM&7N>&V`E2r
z9mq_TG?@`Dfe@R2NpsKbi;Xb!3vu*?@F(>9WHTefz5ls40XjEKg?k#F-ZaPo%~;aL
zU7@J6JV|6K$A*O9OtdDlP0!fi{VTnu#R!&sxwItVfD%0n<TXsQhlBTPqCUM-S^Df#
zA^!@VN0J%4#xA~CsY?oU%9+AlR|=bfMZEYWd)Pp=g7FEe9Ke{BsxC^KIV-Q97xZ1O
z>b02j!w3*D2VBO)hwSsaTP-^$TEQOK<_;~<Vqe8=IBrC6VvFe5?OIh(P)$I}ah8n(
z4f`ZGxt%Y%$Pr;epeO1LNE}5|$d&C)1r0pkhPuXm5p`>}msQsU+dqnmrz}IBRe3SH
z5`eeR6Lw|?{hLQ8g?~}HO(+=vm>h@n{E5LyJN&4@6uHQ%lN(Jl@0J9|{t+cN%6yEd
zX-L4GZr(Z04(O@@H>VhoCEg2JUY^X%oq_ABEwULRo3}y{5~kz6t!--;_VA-}QI+7V
z0WTyR?64-d=mFo3yANHE<#!VeB8C5SP!RU;=0~x0tKx@1{NhEGUlRP?LeD&os6)Cm
zPz=V<i}nU~ky5)y3@2kjM@=v?5^3nMjI+@{#SEDT4li{b$lT~&!$ym7`#14CZrNz1
zh8T|-^pET$eRXdQUM&%Js+>D{Mb%(3#_T%R4Sq|{m4YgI;?+my-@wcqbIMS+`$IK_
z;i!41kNbT)UCJq%ZKxa@6u<?6azLhwgZSB_gW6+6dNOpANzJIZYhF^0`6k63cZpsn
zpSexbD@A|JwsTzPPxRv<rB!^JOwGWop5}pxZoo5<k6EL_9L8NRO&1a`S#sji@PSxQ
zw!oqG#x=?rWICTK0ZX7j0MeF3ZO1g&51(#zQh}!DIPBQyVF;kwRbyXT<v-7<E-EW6
zM<)xuT&nr*fgp3L*4Y6l0=Y;K1HCHA{9I-4xLN5{$j0ba6E1dA1Z+e@12=T7*N%aa
z)JV~!H4)2w&vEXW_hYuLq>{Y9BpK<0R{^@lflZf_<J|q*ysdXBMOTq+1T$VqpOf5<
z9o`J*ji(av%CNIQ=67;e?C^gXr6gGcqFa+}&g$Z>+vF|1MYfELX_ll2(ob|NUiKCg
z%0f_HMx~q6to!;!Z_5#Nh>$rCrk`wnINJTVQ*VYStJhSjnUI49IiuZLig|jVopg-0
zd{<zSBC*I5q5>ktEQqs%GCXXl`C&=m0b3Gr+<2_rkaGxZ>ACE{mTBhl6RkbR8v(RH
z(3`Fc`M8~Zx0}B%SPtEyNf*K6PBSao*;ZZEM3kKO|8iD{!az%SEx5HN=KV0QB`KjG
z)WRU-W&bz3f+wbF$cvMnS6U`Ht(+2_`qG`v47xUcbMx47E47?lV5XqSOO=9Pddbg@
zKkXYS2$phP-h4Ugm|82GY1Us6Kk!@MD&hYRX1jgpw)lew{9rxA^8pZ8cjTUv%qiE#
zpZ~ibpF_Eie9laL@5cCZ8*fUArzGu6DwCIR(cbuWhcy<*hwN2kAlNWp|0uq^u~Py}
zkjXM#!siTOk9qh<yI|uS)yLt7P_Tz9S`<iOn*3FEf#YwBU$F0g-z({Yrh8>s4XY`F
z@xsDFlb?pzUF;3LJy1WqoYr@Mv5_gxTO`cgdaNC_JNBo+9O8XUQ{TpH^Y)AO&aiJI
zsf*r?_2M9WH(hIAzfKE;xLb${EIF0K#p7(bE&k%D*lWA!4$2#$ZjK)lrsQ};n}3Wy
zYJ#TZGz~`VFgeVFrI-(2>e%)?p9dR3_MNo7B*O3pTCVT7vCx}_l-AM<qLjp12D`br
z=CY3Oz3Oel;q>wA)s${hYdhYx(VGs<cte_+wX);Bi`7PmP9?M+d?-J&e)}!8kFHbn
zTjT!ns*wMLkyCNOQ}&qk-gv01PJ?w?DL1>p-nb?DgiphEHxuE-m4ej}0s!%3nofV%
zgs8B25Z(h#p(MsbH;PU3sX6Y;ySyZu)M8fBCQwA@GR@*8Zp~H7uuw@Y8bu;5E>(!{
zUg{42BYIgq8rA(p7L&+O08wZg$);hFd--7W4|T+({h?z{mWd5DofSW?)|GaQkx^Kb
zn;wKrRxu+MIn5oB<;@hC6Z(WBQ%ufu*Zedw$x$SgUlVoL8<aZStcZ5=GBmK4`ZI|Y
zMFyJwI?=(O_xXN#0N)X;gCL!0^k#JM?tE?0%l-RGGSsiw(jQH5Pae?TK$wsg2zpQD
z<fpg-I>tvQyV+rrC2YPzTx>*&bGo=+zVqXTka+}N786hSrLJz=S85tw$Pt5crRW=|
z9VppFz1&eFwPzggNj_vU(FY?6NH=fJcNaY2L5{vCX#%^FzhnD&z-2z@74}2bRDng3
z&7?(c?)`oQ{Ym8^g_&FOKx|qYUvl59^ma-36pC&aZ<^<|XtQhouD9W?3&T-N>>-!F
z=VmsU0FELS2;=X%iZ;Ie7p-pCs|18eG2hO1f6r|@2mJv_fs)0USW~avc?DUW=sF!1
z_0y$oy2E^dPVgs}Gm{5(T=+*^cM^=Ubo)XMkfn`}3(Ek<p4}U_t(>+Aa+nXiykq5c
zaox#^@a2iH>M4_KQPc6dC;3dM;7sm4#(ZAd@wQJQxheo3Xme)$AU9%*dLsR5#*CHU
zVczZOw!aiBG@uX|tw9z8-;uO1;OAvI_K|2`+pTrD1i%!ZsyW3>>|<YvRkM16tb%DU
z0J5ccdfweZ+uwX0vorw;EBtV(nPY#PADo-xJ!fEgYW}BD9tr4Wjyf}Fu_fx8o0ORy
zvgPFD=fot}aM>u^;wJG`LXV7@R0ZkM3`rVdR!ngBf2Bgta(^P#tSiK<%63U}BA(iq
zni6A9@9A!NSU<?AtB@1K>}u`q|J@I*gpbKVYsy=>RsMRk8igQa%<p+_-OoDo(Cx?c
zH10DX3p@u850mI-leqgfyYTFoyP{d{f;v~$Nc(l%S@<j`aiuOQB7h0$^2w4K!IEYk
z9O2f*c=3kb=oxXWiY47VJ<{EJWN1O(4=6E5d?q3714XaeZ{wH7%nTi|T;TS~kd%_f
zbV)M%zq6TJVjftoY>wO-sA8aksy0j^3IOMokK3gwJ`zQhQ@U;@lii`T?Kj&JwP=bz
z2t<*6s;&3ARnoG=&d(gQopZdsZzZMPKphlgNp1OoCHB5#y{ZtRA&^r1!|p`MB?WoW
zcFQ(jcR!-2n)rsmm13h4?6L3r&%K%)!~v+AueG)PmU~kkfl4j=G^2=B#vgCDexfE3
z(GnmA05&^|L-_6o-6O6|=ZCbjV?hIcbUDuq8?n#WN8GOmT1RY6n|QVaD%afQdc^v1
znnI8GPck&koW0)FZ1Y10bIx!IV_}QQder4)s%#gxLcLs=isW9>P3JpZYrU5zlCmiv
zDW-iZZep_OIH$wZ1Knu4ZW7Pw_{IEKdDOBw`Jy)#{M04(QZ0AV{=%hDkM=Q5IUdZS
zZ{5nX+R4YVPjnm4;x+x!b4~0XcX_OSuGNL5-AZsE*+HsHyN&5mBn>}gHky|6+_9G&
zqGVoNR4>~5rt%)Q?@IkVhq?iR75U`2WruuoBGE2RpE2=sT;GX@7|<4g!rN^O^5(*i
z=h+}ney2-VqTj)fM9G5pWBTlH>G$Xza@KKrn!z8syBFvOfFaOb`E|)}x=pw0N5jgi
zz;i0($K{(xKXmO6Z~AfF;761d9bknP|JxNme#pI4L0sle>bsRlVH=X`TyxiK_wkfC
zrI3cjxFYIL?Zv1ddU4EiPwE;u<nc=*+;f)N8QtRcQFC}MO`SM?$3@t3G+JS1-db<7
zuTf+YGgL%=3<koAE?3%Cw|GNH01gj)%uI-r#@mPP^yYA{3rI}rXfhqI*4fG%8qJL)
zD#lXeG<1q>Kg$~l+?m<(M@cH2c8%RTQ!Rk~p+IX8Aql|=W9Vs9f-lmdca6{rbkPe?
zS$P=MBoF3HvKPOl%ose+oC;AcK*WVZ<^DVES*x{>P*MnpNGPk1#Bs7&mlo_FtGNJ>
zhn$9SRJ#j^AQ`eQ?*)&}jIN#yTmf5D6Qp4n$FNtAbrTwcwO*xTihNiF4=3B~zr?k@
zCuaXSTD-z>To<0>oB~9pCqELzObjmzS)2V{%1i{u$!}{fN{illMjJ_VpoJ@4vO;H{
zvV0)#Q%?)J)atE*g`A5P4f{Vulw5Ld51V_A0wIEu5D&@34To}Rvd{fau-BZSU%>Yv
z`&?bh6b(HiDx;1`aYw3)BgD(Rq7tI@peOKGDa~ke%uU-822?1KxnSaHY|Q8c$j5&?
zozU$P{Wzxzt|poY(-R(^p&#^ChCDeMbHT$2)9=yGhL__Jj$>p`Gw#-eIko!XK>G7S
zrQwUh^L$W0>)B9`2)B7+SwgF0^#kMswb&#)6AH8XnY;%RTAmr&s%nrcRB*wxU7hek
zzJAKH0|gdP-fY~Suyt4)br6bb*+Q89HIdUp8ttT+<8BWQUe&s)w@Ps5g)*Y-hEgCg
zZIPSOr_IKvbo*^;B1syUQ|Y3Q-R9eU8(f}fISvWgb2{i|o97>K^EY@~UkN~A)`%m3
znGJu<7I*Y5-rTFKh7#ZgF>$oEe%Y-W<V~WR$fLl*rd_?uEg$bKLuzVCp<@y7u;5*n
zJihH|<l&^`4X05k3{<?)6!uED`&Zu~cOY{~?|^;2`RDG5i}Ye6U`sUBQo@$lwZ<)Y
zO=~Gh3*?AmK5lE0`Fe?6_@v_Ye2he*db*g1PPVVGH!t+%`MoNo;z}7?Scy<uuC@hp
zV-CEmte+uNRe%HF&(b4kt^MnIZ%|TSnN|W(QpEB5>TC9bC-tHPQ@j>_R3y|A=F2;K
z?6n_9|2<R_r3I3?#cA~W1nvuN@7z!A@DKDW;IW0}Quqwj9_0Sn|Jb=t#rC9fmy=4O
zhmx`o#s#-QjpG;l(&E@xGj!$RztT31$C-(!J)7*p;M^mlk02w4OVD2%S#yH3@4Wa&
z@Z_g@g5xg_q&YpX8pJ^A9ZYm*cfx4T80<s7kXHcDIL#b9$=!678em`K5wXjuPhonB
z8GO9!u_5ZMBUM$caH^Dz$<;()?~)_jp6mS8aw;RWp(03}Y`#9+-L@*~!)sNlSXKlf
zG>3=YM}{eha^F_@ks-;JVbENP6J5q!Z}9D$Nk>pxQ12e=<?m1u8U6vwZDyM5V%+4H
zlpn*77EwM4A0THZn+r~H(`V~INlQ(X2Z-h^z|FlUxvra|4hw&o-eMz1h9akI^Hg_t
z<~)Bd5`}@HN{FMZ?ps^Ck=5SVGbB)H@^E*ltKHU?h(w~5KC1E~k2u8)Yws#<^CLpq
zsO}V4an^ou?%FbM)kWIW3XS2}=FAkgXrO+9DcGO=o$X61GH8ESXP@5Y^Yo(1M3^I;
z6{L%Bs%dkrz3M+2%QG&gz8={?RsI!gl38%M{bY}~_Q5w-+!Pzw;LI8J#do}|SIuNu
z$?Q?=3p46%&F9`StOyCe@XwJ<`E`<A{ffUCPN|Zja=jCB5=*YMmv7TinsulrkHV2b
z5|=%{&HX|8_|{#iod17ZJ=S#E1p9l)r~@@5dJ{61+zokY_P&+HcI(Z`#sdh?sjjM#
z!VPI~Mb2QN-JYQZ^_UPn7KfF6mP+dn%58RUwSfCc=qeSFQenprKe=ykdFxn_ALC|5
zkW!Y-5@`<-AWNUNo7Vb`N2;<)BefpvBFGs1ywE<pP}>i4<g@RWc$}6ZeeSeHKRfkc
zn_+J%jg}||6r2^9g^&ZaS#@?)^R{B+&_o)f8t!~34aT7g{`u^w_Nk=s%tV!#=UP=;
zCD}SWbKIYcp0_ujrkb21NRSobhsYL#ji0mnRU4n&w(ab;D&|A>!3#vd^&w!HyCryN
zff9No+oL%hL{dVM6%i&c?whXmg1xQ29U7$`GwHD!5SnlnnNzNEIql-4s%9AJPDzvt
zsFQ6buX97E3lbEK>jDvocY-HFyq00+zjEwX_Z=Axr2q$ZJlPfbILloA;<5Sn>c<kb
z51`6aBKELdw4h<Bbi$CapUgON&oJMmuCcxm-nZ}pjD6pZz9nw;k1eHZ6Cis{wQi^8
z$5Rrv3~ehPLf9gmFxi*~G7~oR){hX3=dTT*$9h3VuDQEQ!rlw?bCwH7X>kp?J~OU$
zLO)ss%LSNvlZnEO>6o1G-Oc(LFKi63yfIIAPS_L`evNk^lu?tEn~=3p8%9BJMExDX
zI=P+0bHkA^%yhvDW5AgCf4c=|s$p=$M6{r|<gddL=2`tn!V=u@iOg@aBS`4JSU*K!
zvKsdYFJ=6ogo8KfXB^gL02$fC6V6)+YmSsmDX|BqJ{uTS{~$s?jI_nCDffp3pxG+r
ze$hE(L$G9t&IdNI5j7}Jap+4;qPgNMH?h|5QNX&=dY<3dn5UC(5elB}erepva*L*d
zw4}42CY$>HuE&FZILBmIBf%h+W6ut5evP*cM4(x`Wt>TlrucgI%9nmamHL5@#wbOl
z=9^>O?iqgAkcJ9q_`2=0Uh-i}6sn06Ef<thS+UvXvl!RzRXr#K52im9JyY=4SqSfy
z*)zrq{avQ{(1v}*r6s0c#`)%$yWQP$H4w@xngn){o0@Nq8}H_2DIV0w(8%s(jtShB
zVcL@^2dPf7`!LqC%-i4FFK&%1ezv7tw^tc$Ub_`FOz8%doCPCM)b5{L%T|YkVEmCv
z+Ey78d%s(^Q2(;Z3zc@Ol*U=cocfDP3IkH9hi#z06*}|A%>Bq+1W3hS(KxkRG2KIJ
zBzR<h=5K`__yBOu_sU(bzD-}`3rs5f>j6naOjN1+D^Qz%1erPJ{n_rr+yC()T`0`m
z?$5j8IuC+YhRY~_!<ZLZCB*-F<RQ19F);VtZ5&(O7&9Pskl9=A7Ub&15Vs_lhDC$N
z*)J*AB$$NuC+UO85l5VjM${dQ^x69GY8{bZQU!6s@2YaOo5s642B<Ck(K5+l5gXHH
zy&L(V8uGf7i!`Y*BNw^{*BtWQlBp2xIY-Rz*So9NsR5#Jo&J=5X*s5Nojdq^c!^R}
z78)QdX(&DTC--Yhy-$Ins*3exo$!_G_roC<2e0Tx)TBfwdCda|w)=o*r#F2kpj=Kv
z+}zAuGqKt|cZjW<wm@W)xoNmNdRWsKzz5Y1X0^|CCqJwPY265QPaiN>8d~M%B&%Ui
z4SPj5Pz3(f&`owip(B}u^={`5{ldT^pa8^+V1b#@t6kSO4*5eub&yVM15$HMYK8k~
zpxS`Eq!h-C9_8wgGHIM_HP!p-%i%+r^ri0FEr%G&>7*(rvT0T1dSt615A-3Njb>-L
zi`w;%+5i@YWQ=mtMw<0wUEvvVkAwdWgjP|-Jw~5%Vz1@N4?=#(sgijh;)^I#;wjf9
z9G2W(1d!SEdGu(4N)x|vi|x+mTkm*LTLY8rmc|MA9F&`8n>lv`iFdcIA=cvH^Jfld
zEI6Loc8Xo|VXGI0Hnl?P$Hp!1IX#==O|$t!_tTL+{)tp`VPWKf4erMyJlaKp>^SO*
za_I&IT!}r~4BP3}9g2oYL`821Q?=I}c)j&sb=nZFaZ^dlHCH>gIc&(6j}APNgL$md
zw@!5S9BrRMXW}7<PXQInUw?aW@bApFA1rArK>?HyDJI87+!k%S^oUCTTDcSQQ*(5c
zge7KFntUJsd4=Y)7}Yz}xzD5^JH;d}2sXSJ^+c<X%t5@$`H`6cU(oEX4O-Mh&Av**
zk31^ZIVRYX3FlgW8&nO_@^m~IEKvEVf-0X#@wD*Uipy=wIIYE&kd8x1qB?M+6!Xs2
zw&Yz^l_N;X$1(8Dq;ZhM1Af)6De>((BNbbPREtqeB%%aYEVlD%)l3EuiFaUYaaegO
znP$Z6w*J$$k?uW%$FaW_F%7Umh<N;2d(4mCM(MR2FJK^yOEWKTu-E_UZRZl@il58O
zqM6z}TXB)^z>BPjI>#sr!jqh5XIH5DGxq_*y{cFa9~njGsweCpQ@l<5Q9*Gr5t<#j
z$nL4~rkp9lwigROtlgt_f7tAoJf(&P8a?1OiCW0Zt%8@(RczB*lE-;Pg4Ro?0Qw%7
z2XBgxYZJR;wdR#Uxr+jMsCZ#gBxII87C&u=s+8eW=M_!XyqmiJM3Dr3@AR^BFONB^
zS1YL@QYsf&04RA7nA6PEf%cQD)kwDDkTP(@wn<o&bO~PjIBL)YC2Pvx<Se9<D1r39
zo(#5+RDmPH-6nLLmHOT9_DA*;LC0y@!eOCuAW#mu)ia;7GmeSdj?$L|$qlT6${N^N
z(!l%5<}R+<v%8wAnV{T~xNm=?TRty#XQl?%BbcKRUKq5m3^TZuduy}OzF7W1O!?*1
zo3l4izCdH3`9aqP?N^QL53CR}nUrN^OLOTPmjp+Z`evvh-|)YcoFFtMJrKOrpx=T&
z7=DX*KwxH3wWNr!#@!J1TEi~kEL_~F9tskG&6HKS!){S28et#;>x;mtCK{x;F3Iej
z?3&H;c06`Ytub<OLf(#7yRw_q#Pcd(K67Q|+rWq-z5B&-d-@>l_Wl1jjHDs9jJ3Bd
z7p+>^+w&wRCP(nWE8V9~H}Br1I4|l^fO^-P+|2XLXXWnn@W7E|ANw-Iy#YXLzm0U;
zfrsV!;-~n#hg6qhR^AtMpP&y|$|P|lWg!D=04#27>*{jbyl|T~JnN0e%FcoXS8&+3
z_KZ>9qANl8+F}IP-`UEI80d{sw;>TS`3K^z$6C6jKl>JH(qT+i7tIbBM-kwk_VdPZ
zwBXezDK;k1gx~G>k^Y+bcsR9msO52pmHr9)?Wxn+Jn(|vC`CYmRjV}ZcR$!;#`|Ff
z(1#mcWb9Bv1|GCm)OouUFUvT9;jUlXo2TgKJTh=|Ik5dxgIAwon#~E0nWpeycw|8c
zgqp;8Cgqm3_XcgID=q22jqI&WMyZ#U$q*jE?DEiZE}v$9y*y_5uK!UC$37C4%1OB!
zB_CA6QaaCqrsk4AI_IO{;Z4!kY>I3@;5?C70$NU*x%!j%c}K?9!K0ACy-^p1xSdsP
zs_g@}{_iR}9)0*nSAW=YkE$Ou75YQ@9o{p3@7vAFMr&jv%1CrVLex6j^uFDm)HX(l
z3xqtqC(E50wksa(RnOXyzeRsOI4px;b|6*)0zz%tb$0qkib_cP`I<@zASk^}GLO9E
z+Ex3^IAx=dQ2-cOnD1?LDV=?yT24Mttt?0=rpvo-Ql1|{`dtVFh_Hf)SKa6K=6j2u
z?U<MgyB>30Mm3tmJ)^rliT?K&y5n#2pXU(jvvFf#!XELk`|Eyh(P`)N@+du-!&bYI
zW7JAaF2&S(XyFX;c)oeX_1M%(8vkL_kRm`V5Kbh!5~|qXoZq^Om+BYTIEJH0QBOfD
z^~Tfy6aU@vioLk22yRKrxHpv<K?rr<eObcG?W1M8=wIDXF}|S)_wcUb#EWjy{BF4U
z71Wl4+e8K|otCh%k2*R7OOZC3Dk)oY?TrbK=j(?do*XjLO-f7Gsby^EL4};9giMhu
ze6=L;%b#0?-e+Ycbq2<K`(xtUVZ~3lGt`jDFkcoXjBBH9dm$W;E1yu`!0k;i=86v!
zp9ynygxR>361?Q53^!+&yL%wy@>BHtb@d{zyx{)CJ2vTuLm50##*f~V81bMBiEtXm
z%V%#_Cl(!O8q42;{4+lMdmmRM{xP<lJU6|$0@O)Z_2z`;iIvCc?e(K_m40twO3N%S
zO<Yp0Uk|&eM2Kl-NLHcw^TdS2YNh7)sjnbaN&uZ|-oM+Ob5ZoPp`ebm(N^*b7#J$(
z;5#n|C;qMtx~YVZsA8b-2uUc@jQre|T<weC*@(n(#=>s;>DTs*>m_Iv;lHNBIvJK?
z?)ciSj+DkzN5V8Gx)hfw6{<EhjPE_!HVU)}_lF~o%49+eN>C_VX6fF((#{F#SilZi
z3YQ<LmJoo4Yww;GJaSdcw%=N+_zY1gM<&+=$t>R#+?%fAGSFcOyu`EOP$vCM(cX@r
z?z@<yA5-axLeZO~AWbOP6)o((gE6~LQnpVRA(l3b`$F=yua~(&Cn|JB&=>UKdQ!sA
z#ri+)u4<tr{5UsM@sORZM@A3?J=+|4N^sg&QLAumG`#`OHB|m3`2p&E(RO#^2%r3*
z8moHZRLv7eY9!6vyVsp@mA4X4)Q<y(!o&$RYOA}oOWQYQYH~-X2tD2^#0ZLc#Vf8)
zwm0f;P)AN83UPsc+3DU&_vTz&49$0719NHlf$QhIZ4jE=u+hXq>yGX2$aB1<pa_8g
zKBu6q(;nCSsK(Dr*d8Q80Zug=zi>Uym)n=+A@@k=-cZTG&a-Sj$-T2)!?^GnmsIXk
zbkdC6<WBlh7lj7<^|(M2yVXk8u3zf;rs5elcDY)^VMLJoI9kk@4X)<(Lq2aHy(oJ`
zx7BX-({Z9S2YnnRF!3vKW=Y>1W#@e_Z6P}M6pRJMHDmf^CB&yeVf#l;iD%N3Q<5nt
zF|i1dlVmonYJy9DjuGIORDos$B3b~<KccAFr@QQTG+_`ihm<-oCYfFFZrQiK`X!ef
z5T^pOHp?WncLQJaqaxx=V!}^O4BWH7_%TdEd1NvSfX*!M?)v<!Hek4>1xT8NYaaO7
z)~?a)ill24WMCXsokXt2t@<k}xJbLO=79o(qakoZA>cN9_4``a$`}g6aP@h!oW$8?
z+<tq~e|&LqE}m$ZwIe1=H9cCn+g|XtNKYqjlOvbJ3%`3=Yj^x+wX@#+&!fR4KX2Q2
zw$o}g@w}u|j<w9c`GF+Y&6y9n=;-KTny2tO2bZIqDUk~k8ua*+Oj~h}N<aSB;m;at
z;yhv-QdC=1j?Rp7C6mpjOFDMj^1rx}K;*4fcAPm*ZBl<$t_d?(dK`;o1;OyOUhrMY
zuBl2BZ|l>X;Ik$EbI*6hCco{CS;48lM_<;DG-rWPZoIBK8JK34oE04VpdXm4$ZPoP
z;N+6*SU)m&{$6jE8c21g$g5_U#W_L4=U!YM53nrkcp&$Qn$nOUdbJ-%i6{kh;)iLZ
zI(k^JabBY>Bs_+f<$N&BItLv-iY_0+_EJD(9ja$Dkez2hMbL4jA1GW6&pLpy%QHB5
zX0U9JzagmQ5MP>pN{YE~L~zauKRO4VXuZUjR68L;a%*tUxBdzFi6P|UH1lLhu<L0*
z>Yp`m2;AZ5k9s*cWvj{+`;d1CZa4ll9l8kT&t4GUF*Ww#i(17%afWy^@Pvx-%|y(T
zFlnk6KIS#Sblud#ZCIquuJLFNp`yr=UGStGbE*m-GxR)gc@b1*7>$jdJ;PmmW2+vt
z!Uj=N>0df0(#|f$+;zDvPnIq-a+rIZCNC||)OL2C4UJVjWHMp^s>uI{$bQ#1ZLgnw
zpB3FyazHjH#X)61!@R!5PW(x%H$zvXr$o`zGAVgAH8b7bPXCe*`^aJhznj*80M&xW
z-5v6A8Y@^FyJ<yZ#u03p?j79uWB(<D3FveUC8d$nQ6a(E7xyOIa>D<lF7zS_OIV+*
zww{tytE-N<SGUee=$_d|n@;|}=8j<NQ<nJVjvSCYR4Emq=Nj?-k}HBo?~d9sLxCne
z$DjbPpdkOVbZ0jN3-A5kRvyJatfFKg*JKAOzAD&wyYyp`y<PTe(k0@*4^JIn9{a=H
zxl%WM=(QY2xK(C&MxJT+hdcTS{ajPUAz$Ad_`yvcte5cxZRVT}34bQ&7yH)XMgqNa
zasbFrBy-J%)(6*=JgZhc)b6#P)kMv0r=Cru_*G0S_&2|??WU=Ty>(bAX;eMENs?!q
zny+j_q1Q^F^_Z+mL=pfQ+)jIuN?52LD}}$j0zpbY+UcHnQcu&KqK-|*fTQmN_w;@G
zS)L>Tx}o#m4X&pwMmaJ2{@^;SQtGL|drg{6zHQJ^_vnP}Q(sFi4eV=3dLNTD)17@#
z$(o^$F2&75fZ_XG=S~k1$8a*~&St(F=Z-<eg;~$}O34S9y?O2>SNmLyv}Wl;yLW`y
zVM}D2`FZa0xpC9ybBwBcNKbcSFtYnAQr(2LzTl8~!vTZ=rz5Gi`}|RF=rcv00~WX!
z=FtN8=>E9LDO#1>3+)~pH7e$dDR$-?$pFFaJG$GS_hY5l06bJGwzx7N?|o;up3A&d
zL}tS?8zVvC@@!YVMvY4EqL&<D0F-YgU0igq_utXCU8a@X0@Ih)iohB-1rz6(;DZO0
z4i0^3a9AM$;hQt<mQL=%SECoQbg&SbRg>DI&<D0My0B=qoZ^ny5}mt2J*d#*k+yjp
zw?ZV;yq1}Mh3i#$i0d;JkQ)yhY{%4H;filmQ`icwT=iE<Nm30nFI?g#hXD<WGo_Uc
z5sG@hr1Q;*Gh9)_Ay=$yC@}+4MwnhDu4R~q;f0c(m04Cj%RM>#kne(`==A#Jdbe}2
zehwk4Tj@mDShTJ;X6=pc=+J?a9FUg{?3X^$%%9;J9y{bpl?@c;v9YzOb00k!Co&G;
zDRniR_()9Ql)WBoIaMmPYdGlo6qnaGfM}<6gG!Qa{#X>OdGU0iy?K2pDQ!(Qe|B^u
z=lL=uNbM>`hY1({@Gfr3)iFJCv^-!i2W5C@QN@BI+b`P9T@`cW4#Xf~|AKqs6QfO+
zYWBBve?RA6-*8Fk*5OuBIZu<c(_MOW%oov|_bdQX3^n4YrQ$qop6+tL(I#+2O5s9^
z%n9xt;>uZjZDtrOVb5(SF6MRXt47V6DYNN&d(kuvv{*$7%n*c$idhn2U1xd?UmLa~
zlFm?-JacWSgO3EpcxiXHK1KUKab=nLz8a1{Od>Y;+HShchj47ehiJDa8@Jz14Yk`j
z`&jrPgaCZViu$3#&A(mYLx3cx|D|<fr7jGj8P3b8nRag2q6~DOi8FRAz@1c;f^H|+
zH#TXXbDnERoK~VHPnUOW5`VG_7U<K(?~XJa3lzX3@*|E}UmwiA!AE|*rFMarf(!Ea
zyx_OfVxB{Clv|ZXG~^nZpiq>UP2~`G$_;v2^9}mRLxBkcX;5(9z~MjHX^UHZRu1ez
zg$6i)(3atqr<wD*x@+#zPT{;&WQP>~#{XvH*iz);e$>~>pipOB=7P{)Mi#o#$D*I!
zpsQThcO(#?TpcCJbKEOyytStY2f<?yfkS~=DB>XO{y5pCee3HxhBc@@ms}gH?WS|w
z?=LlumfFH_=2Aq754&%K`&U(T!Duba=|x&k)8uIqHxC`-5~ryN1VB$-FnxjDk)JU8
zUJOp@82k8M-+xS0p~<=sxMZ5tEA00@W45=ARG$%_1w&*54x479fr39?vMT=6_hSZk
zr{fm|vHX${RH7&rWUbs~JRgG18hSMeFtFn_2`~Wj3KvalCqQLczE^&0yB(%|ZrKca
zHVF8jlUu~yGfa=)f{c->w4gdOUQ$_5$87V}C&6=D6m?|d=IH|A2$v1!8Q$TJ*1-)=
zYC#SXlR1^+Y6uens!`L!1?l~tV9S}>my+^VR4&A+q&S^tdtza5>E<?ZQQG^RV2u4l
zrark8x<s1C*2eFCN1p&5sczl>^^}MSMm-Zhb*Fwuv~g)U!b6NW%c11^te|~goyh-;
zNjU(UdPXqY0BI%{AumsWugG>)E7vwUW@CkFBLL~KEs=s%E(fe49>?y7?b*9DafZv%
zoAfsnZc<;OqG<*!wHHkEc_sR+LoKL9j3rA7M5ZjauTJ;2f^zNJ3~0ido3qZ2c+Mxj
zki)^Rijej*(A`NjH@<9dnx*NlMy#3byu3vCT+*H0Eew_x3!m!=GHmE_aULgUvqkiH
zqC>x*y6qW3V~m<<q~zgbvL61*b`#3l-myq|QTb9A2gFW28A9-P+Kj`)o-2bX^8#z2
z^hQjOhi;)|aGT<(DyJcyeMAo$@ka3OBUjqCDJm_<yBIEtwjAyBf6vS^&)gcM<mzj{
z)U&)!Hq|on$jFKkcVBmB@L7sl@oftxLl-2knMv)3*|j(Rt@ow5dk8xUkWmR*!FFzP
zlMBoX74DnvG%Z0iD$*krXpWz7>2mkNXoco5^+v50&xNjkoNKG+y5Z%~EegUjMYukU
z!1q|S!EGAoNAxN~J&e9LV&hfMU*&c;+I$g4fFvV1HuRlX_>w$FO^%(Y^A@*#wZBeI
z*u$QyB&C}_m%F?&Z}9+J&|h~GST|Yb^p)=IVfqCYe2$=SyxB}?{l2!rJyO)V+lA^*
zMjB%c1Ub#P*e(4y41dH2qsgWeeaQ)kZ0K!vQgZC4leA%ASnuQ6n?m}hpU_oyUf3J#
zpDTm;+q5!Rc>Sx#z;e);Pb3K1`0PFLHQgi<)Y92dC=v@)y!?CPU&|JYg4G~j3dEVq
zk9MP)s~4NsK#?V!kQg_mt$vVSE^ZC^q(Mmo&Ds-P^JDbmM$IIXnCPaq)6bB3P%%qm
z>Z9GCzbS$XcfMGBdvn|**Y7^%28|$2;iw1l7?d=?#2(?6bk^bQ4f1fzrLA4<>EQ*b
zW9N67{Oo+QBEe-A9*U)bFjtl1I{k5%v!NqL8R*!`(gr?z=`J_)QFXIq2?&?~mOTbG
zO)vAv4)^&)WvNIC7V^ZsZ@9MO+DQkCNNWhz9>Mm{e+RiSDr$fwl)jMPfsy(4<zcq|
zC~wS*5YjP`+!^y@P~A8#kDOnK*k_{LmuBLQu={eOFKj?&V3^5okfy<S`<x|g(AA#>
z`5pZ=L-sF+8|X(y3wzN-KZu7ER%S8?$m;<*M78sSgl;F36%%{&zE^^C+j~<_N|}9~
z0`(@DX8+b;wDnf1VIo^Hw@G-hznNWde&b(kk~5cIm}D;aEf{^O4%J-_HAF$^D9k0_
zlVT<n+N-~8wV^9mJcI*YQFwfbA`3A>f*bavh8EPZ<l?j7$BX7IPTl5}_S8`G7E`Yp
z^cfWSlH&PHGv*oFV!E$I0ehBtf(3%W<4@Y#8Z9!j>PUo(4W}%3ldZYLkD@?T93-!@
z3nii9KX$;S-pno<IvflobRDtH2A8XiO}Q5(*O9xS*=w3P=@VOeLz~0aw-wK62-scY
zxr8%l)+f5nZ+UmQ4~*QRN#a>)3ydz#-S?*0Wcd;GlH4Fi(_ySD|63<K`2Cphd^Laf
zcjf){!vY8<+Hf<x2XoXx`%6M(#Ynvs(x_5|Sa^G^V1`~$MH`W1oA%x9qYb`W2U$wd
z0nq~-aw#d!jYI9<<6<`~4V!gP6eT$Vs>_Mcw?^4@gJa!3)s$u9Dj^gTC=w}JbO(~`
zi+z3RIRPXmE8B()%rI{z+04Oe!-Jv1PT)A2&avqiz8#!&L+qqNm<R9&N++|RB9IJr
zMt;8|NV!Uz(qYdb1r>?cutH{9^k%SsvbR!QD)}+FE}A9p1UEKX`co`drV*61Co5bR
zyfo8y&XXoB5)H^OLV@_#gSpfF1q-DUE)9d|ew=D1zaA{P&X3ZySggt!qF8MDy%l_Q
zsSeBU4d4V<l3y6U8$frK&yX^^>}6G-;|mctA>7~5-T;?01><eSir7A{Yp7K~n8_0&
z*5cal{b<knD*7~>8qQf^^Dy;LMahtrb!AGhqAcpk8`Rc#JZTFY`e3u--;W87>J`=b
zRsBL<O_`9AP%$wNo*n#>ryXrsu*lNYmQB_2TOQA}{`Rk9w7!<9Lvw6Nb@3KSYu;gP
zyMO6hlyE1kGL%>+%d9!oE|1eOL@b9iJLMMV-xo}r9W&8{d8J4??}veI;3x%Q;FAn#
z5SSc)2qu*|d10_~vgfyl?jxH5JEBydq?%z5+B0V<ZyZikSe?UO&J5Oi7gFV`ZQI3K
zf5O9J0oT`5;qD05DJ8<pr<yy1n||;m!o*Y*Im=%c<sA{A{B2<n?DyuJDxNk@0wY-$
z6^nxYJH3fF1e_Eu8@Vvluzv@?e(KH0q><LZK-jS7p5Xg~YT#TJ7o6uQtO%sHPYkZ=
zt^MNh`3b80QIFTprtvT5N?NGb@1b2bb6FlCw?!_IX*RbH^3K*vKuBX(sA&KUq)%YB
zIrl)&d}Y+5FxlXM4{NB>$W*A`8RnIpw#A)7{T36PxRRQpaj?R($l5L6W$(X6O<Ye1
zAk+f$01#2iHb1=^6kVk~SitW3^W!5LH=-e$VX}U-o4R{h(j00qSvjJVOSgfa?T%jF
z(uWgWd`N&jAm0Hn?oaZ<qf+;uuZR{JqPY5hzhW1J(x}8P5ex*@4smy<s$fT1^o6s@
zEs7)nXTE48NDG;D!=0TG)9)<ci~`fQK?P8mpu`-Vmj$OBRFqvnxatVHML3>ie(&f8
zOwx{l(CPY!<ViC0ybN>L=XT}Uv2T2=eG?l$Py6TR{rKZJw&H|mnw7h3+YBAS<72JD
z&DDBg>7IAV?qKj|T5ZH%=~Yw=*oUYVUhI=g?HdEt0~em3mOp~%5gYuq*6u&THxO+!
z01#ZT)@}(6D1gz93B~40Uju<)Q--;1wC(zQ)H6L=@8JtQ5f2bQ1%)u6yt{hYA8(2J
z&-q$hM-x9pEAUvg70}tsf>FI%e@JZ!>-(QXB(8b=1A(bkA`({VtH?a`0zo9B(#_hX
z!BG#j?i12P(STH55pq}@@{1PQf>%@yi{B1Bqg@cyJ4LaEEW)k@cHPS&<tKYwA9^hd
zx||6XPW$-dg4yk(SKo^7KR6OkhExn{D1~d$v4_3CEINIn_Ol`VFD;}Xb5vlK271Sh
zuvgXi9$~%9r^s_imlni*``GA;a2z<5M6t!n{G#p>SMQ>AZo(JZE0|b>G<i9!c$B8n
zO!>=h{D<B^@xUb69x>sRJ+;!k|4nFO#mTusWjdwuBD3*|b0=Nr5ja7h2t0WRVufdR
zdJFf)%$W2_b^8@3VgCq^4^-*_)lOed-?13!`HLqcr5tdw(opp`AJ4USS4r#YJvl>6
zPOV6xNGpxROXIiwblRECjL>`hWCyL`B%0OFjz6eP40+Uji>3;k8UCqEZY9aQ+A5f_
zB5L3>Do&UWyO8P(ejqr!xjw^PcT#jjx0n6Dy0lnSATaU@uS#?ugnEa=3kA{Do~=?h
zlVNs8yII9?%huvH;Ku><h=UUTO;n3<S%;tGCZDHr9DE_%^p)}$HtZA0j%0IlzB_x6
z{|-B$fFR+XM%7QMx$Ic?T!A+q;?x8oH6D~3+%nyC>F5?+?7xPILkxHvQ?{9Uy8FA@
zo4`*g7?&B^$VlT>+0EZO!JRPJe@lc{y)%n7*<2pDxKU~aXdK+czn4x5IHp_eTdS2s
z!p|I1G+C(jT$QaZ=4iJdKdz_6=PG2Y6S+9e_KBHOJnuL+?*hH7c$d=jHhg*@VH{}_
zdbq7iJQ4<1wnReQ2-8XW8=KL6+^~)M1vW+Ek49x&X~vywPR|N{{yMt#G&BQg5y!L?
zKuh|=OFzt`k9DJGD6q=r^pEMnP&}~t6YPS8s^QM9k<BN35d{{>P2ZgAhBa3t7}KEA
z5~{5U=$X%Su}^l%tGq)jRGT7YzVmz1)69i^+|uXucF9C)8ms42afhU-8~ayF_gg4J
zh=8cVcM{79RLobhv!w<0#oH1ueXxb-hw>Gn04p<-SQj@g^|{3Uo4if59*UXbxIV%M
zH4k3YDgF4vBjTimyoH8|sN2BOVl24ExF-^`A88)B?!fX|I9y`EdmBG5adfq}Fi<-G
z=%8e?c}3zCz11WUyRbSa*}@Nlg-#l9*aG*_)v5!;YWy$0IjCTlAL4%>uY7aN=%j%z
z)dOB=!~)1bYPQQy@yCY>OPo09Q$h5Begn*z|3c7Wu=Z!eePBndNAS6HvUna`_wR(@
zrylAy2%<<J7|thTtvFpCI~ZhjQ9zN+BkWlYa1E_A+Z;2;zIKyWGxjR-V#<U=ZM)y<
zO%x2v>%c;#<6Sq{J~uR4=q44ioUmn@i|@66+!K8;6kS%{Z+Is%GTj`!-rAdWB<DPE
zHNQUm?Hu+vB)iABHy-!73)Xy<_#BuxHBPzFJ${2$@-s5r4r)PTRkAI`{QGG4>f?Sl
zZaT)$4dPwyJj;zM2we!A3nHAL5TXa7NaQwYs(Pjyy+()fI`fdJgbF3`@r4uIS--dH
zKpq?%sBkLMW~4>rexzMys@XBxrT(nIyW~EKh>ckK(*M<b^{p*>IPP9HM@|}~z{=`H
zRGCu7Y}4Tu7rnusHKeiS5GR!a_IBVZcj0z#0kmTik}-JV_swvpeikKU5ng*f&4wu&
zB>94~IXZr6TI^G?3IGkMsgm@jcO`M}GR?oH#9!Pa_KYL-49+9{B5(|;C4O|`oZy46
z#DzT*uuM)iNojuZT8FoeKXMPgU~kb;i|k0S7Lv?;KiIQxQPp@>es3UHuirwjz)!yT
zS9|%x(F@mTO962Ro5m)aZ+@_IZ;-K~20k3UJfx(@i|{v9;AUmtjvLNZ;cr<hzV$47
zjc+|mNwb{d<PX%@>1*BUrCQqt-YYmsWVe<)HL6p;+RYC{9T}EhhtgQOvZRbO+jL5H
zudHbM++$kLorBIfaDbpgoLDT90oENc%NNw;poAg0F)S&jI^AV7cuO9Uhu#da#c2ud
z{3YSdNaZydbS;x1Cy`{X-S6(7<*BN<FjnMMLq(-A<+E<_-QMEQRZOI7=D+W5{I@qr
z!CxeqBL)0Pru$BJ#f{#|_Dk6s23FNqU%NYQ_l9ssk`ijBxD3oNAAjsNHU7muW3;^+
zI1ck5>jRhE$n+%zCwf~9lH&1B+uUK3{6#sQ$s=$z&g~NpxKAp)fd(PuCv-@v8FRo*
zy2x94(p^^iii(X8C4IkpqKBsrqhVfOim0ZJ%Qn{@aLtpw?T{Unkzf=beeHfZQ>}na
z)YC{^97${hRUnG(Sm`s|nr~C26C-DH#+mNT#okE7C@(;A-&A6p<$i6<#Ye&rQ5#M+
zPxo<`eeK6Y(q-hm0oC*J-F?6MWPCo)9<9QXNVp__FN1y9MTh#|tkXhjlu6>TS)vNL
zCO+$9?K?zJDD`T>m6t8;^W)u=HLc&9r6hWeY2ZsNLYnS<uDkF!&yw$pl#cN3rL)fV
zpX|ZkJe{8uB;E??9jz^%($Ad`<;M`^^M~YWgd-1TxVMISOD>)-n;4e^kDJ!PZD_3#
zDYsTA3=DZnjN%-cbFwRpjLM@3O=@xoC{s=BNPFF0bvHRoq^W`=NHMX|jvi*qzw)NR
zwPR517Ykuw!XR6?-&=6n<zuGbm4$ZNr}{BbjTA0ua*dvS?7yW`?4#edz48JY`4kWm
zR@R4I8t9V8Lf?9^?JzwmVhm@D6wZ|Jn;Fg9D7xO>^0gnG7Xfb>%fzUwwCR`XSoUWS
zLr-NCrGl*K?zm6GjJEVNkPVt$fa4&|+<2MW_oX*Uwwg+OF)_FQ8t2;o;7#a=R3Miq
zRK{deT;Za&cuTJEbd&@r&CRBlx$^hDiNzv*r^eAp(9z`W0=Hp<w}w1Axg@de$rIhi
zSG|Q>1d_u*;;Qp`?y2o+;2;}RR10WDHXS)Bc8J?=cb!)#yIsNuIRe9nmRCb%Coe-{
z@VfKuQ!BJAnsAWXx?V-&nG8bir6_1}Q1(!3m^A;J7)3DLM2rfbsvda+I$f8!>o@7a
z#)hr30YV(2p8bk1?3#tTS7T7OkG%xt5y{?35Iy@9d;VM6=L!1|Q9Yp40U|X?`cLe!
z%l*in3TRO4fT(nung6Zb)!(P}28#r_RIO$51YY>kcD&sWDlDxis={~Wdg80UXH&NL
zztj{3VZ@(nwa=ci&W{WGSoy#_i>8Cd?Xi1rRy)5tf&*%80CH<=mVXX)>y8WM)_NoH
zh_fgJ2oP4%L-=|#ZOSyo2zf0L#Tb+=AUI@{*`Dite+o*RV9jB`(LQgieXP+y%@IB=
zZwVW&LScpNwm}E6Q%V7Z^wec%<EVP}Y<K3Te*YRlPRK_&X=LimiY)i~M}FTckhBdK
zZHkki1p-m@bmk|21@9@!#bJ?lcYl2Bhm-BE!~d7R%j5Z|hr4CJHx1zwp~M)IET}0x
z+^F5&R1ij<_!^x3&AYk-VFrPCVOTkgE7ECctZUP5pM79ZY$X5=4{UI;P_X&!!c2Ou
z!gh&{`F^*0L&^)T43jeW$Ly%PP7Chn8zOUqq&tJQ?_xX1FlSw2bGoa(9_2xOB-|NG
z5x$D{rkbM%*j83WdohMbKN>(pVAbW;c8huDBbBEa0qu?1Nhu~i-pzXhbB`)sGbDE^
zL<K+rRN&LiuM=#`PC7;|Rz6K$oNzJt!L#g~93>)PK|Q(%tPx5CPd#arJtf<Z89W&p
zv4Ygx1Y7Z$W%ldrm<>n+G7P9a%rwaj(!jUO+GH6h%*cGsTmG22<J^QFd$#GE-;>Q=
z`0K`;*CpZQ`=jI&m_1aanqf)(%(UhSYcG$|f#sFn2Qk<D?EW65GW3#fi^$4JdM4C0
z`_Cg<Hph87QTv?bLUP|X&RyL-t{r}#$eoQRWD&;Z=@)mPs6;+30Q;sfkL-*3arWl$
zV_Yd1f#mJ(9Nl61t8r3%)my50kitON2IcDag7jNdco=lLu%-mOGjbLq>;ZIf+q&S$
z=VKmO&}vU_^%AAGoILGh!bxQ9$J!-d#eV%%%f&d!11WE!79lmMo1`BGpO|phl^s{J
z&4&BqA#@P&?b+u(nwwa6Oz=eSY(qGJQl&O%C5)x5;?fRpeBDj(E>E$fvkeF7o@PP(
z{-`0;O<+Qk9LF*c-wrrT0N)iR==P2D4S1D6H;0<TaSb&AO~NVFtK7pIx?om^+?~<O
z2>^5I1sD8*&(i;W+}0;l3#1pNAP`H0BnRG0QtRYhcGs<f_kN4|NTkna_~#%uq?=XK
zkK3>@UgS`Emr`j9$3toGE6RgwUyWI@Sb2*flWT-zkTj9PqGXp`81FVduFI9lmeb@t
zgIeL_T=sAK>=?g_0GR{<P?k-SIq3@f@;Gk_ugw?mUIk6zJK3CFGgjHWi?wwrn>{&G
z9+K85r<mVAwb8AjBK6DpB52C4Ej<;!eAV84hA%^g*iG6?hrr8UW@{QtmwVEjUjGoI
zIFQ%uwuRaLa)?ezF&v$YVLh&~iJiS6Bt2oFKbP6`n4NF^9}@6EmI=rMK+VG++p&#*
zsWCGyJdzAk_=!Ct-d}J?(G=aLDZ5TL=e=N$Z{{tuM^y42gK$8T*4hT^O$Fpmp_Rzx
zz}!E!_Z=7YYQ9o%b8w$=7v)Jvb<jI@S@<NFU_881SQCJ)2&iV7%q79rEk21+&>$)`
z7&zB{SrAlh^@hP3iIOm30u5Xo4BO+g8~r7dQdz{yk`xCGU(I=c#^3r|%>G;1b3h?*
zSg1l6$Mc|qDb3`~wr3eBLKL0|l+|wa_}y?TN6mIEua46Z%zsEpL|sCQPBtUIu@8LK
zBp@b)YF;C|N~-y0hppSACL(_6Ln6^WIh|A@5IZ72rq7&K0&5Q|uL%aD0stq1ldNmG
ztvsL&Trg3FR3vv0Ik2V0OP1+9#vc2X=C0)%><lI9^k%0M*PG9#*|&Bmtc{WW?WF;U
zXf7=|-@oeZ$shYm;{YO@6nID=J)6yA;bdF?gMLBSSJNgUqCznUB|0}9XFo8?yuwge
zKAs~%Nm+o_kG>J~JKLLpNE;wFi;yiNrTge}TZ80eZw{5Sh?B>_sY8$hM?N4UMyd=M
zH)52p#{^$ww!L;SQzV~M*_iT%s>U;%Z*b(kQyE;;*?*&FO+9~zeY37g?}le{(ksEK
zDgMv>*WD1TH{FdiP-rNTGbIadPNvyc6r6s8GRXd60hk(dZt(jQZ^@SmW5PbxFVE|v
z`XFX@o7&4k_0Fd>gA)SXCcIUugDQe$({&K&c<xk`1VG1yaeC!jwq=D+=kp|}0`7$X
zALA$?NjJ|}yCGi9IAcOpl|?7)p)8Yqr@QI`&->{EPgrQwm`DxmT;k4eG!+z~u#OxO
zCJyu8?sKC?`BC_%4OJ2!bHNPr(h_(7ncf6hU3yt!!IAELn`?8fS_Dcd6#^vw0pT+g
z2=W(i+hdb_hAh(HRr&y;uluUq)=n*Kf{jA%K-4Rrx0PGHgW6~yO4zo^{=Ur{C<tQL
z1u14*kUIOB&)Et8e-!uEZoM5879#SL@&)xT3e}n^q9Q%L<XqP*t+Cag;+s-d86F}u
zGhy?%aFBbUum1|=z8V8!!teMg&879wwtQT?NtJ-EdmL}?o#r}S5dCzamZs73g66FR
zC|S6C1Gc;LR4<<nn1y2i(xzKj%`7+XS~dMc#-3Ss>$SFjoyyqrw}}6y32%^OP?|a6
z9=C9hhtu>f1c(5G%Q8>h?>^n_O}*h8f+8{#=)uNnywCl#JPcOw)*H3LGY-)T=P&hS
zFCx6*U6XWL=6=lZvjAoXOIxBYj2zfg7Q40S-bjd3ER#U<BRPxRmIAd1{vQ#M)UHLn
z?{vK;MOVO#6O`9W^01Wy7);t0|M#CUL%Kxxs#3~d4#(D~kJ;DFmY3q+?i!oSS77*Q
zRMoq*wx*scVXz1S+*8gACgjBIS`ez5{8J8v?ReF9@$IV=o`$;w00QpDTo<v4*};h=
zs+Ed?ctqQWv+{Y?XWkK<e17!IIm&kelB*M}KujpR+!d_2uyGW=KYe`IuDB#e)0?w`
z%gS^dv;<aUod_YoOn{q_ZO-mwr=|#{MQ{ZXiWP?-owU7~*FItDEA6G&s1WKth(0nn
z=|X1s&m#M7f62Nk?JcA^m~|(**f{0UKzggF7V)#%Q{BHPtA?C2u)IzJ9psOXa^J=1
zM}zQ6Buzy0L$4)SOy-JIS2973ummSGfU87&%^{HGmhEzx=;q4_#TLM{kXR|j98u|7
zbc}glIP;KN<vz<v%3~A~*txUZ3!9_sURGmYdUFcHR2qXbmJMS26c=@j7x3@R-X~G4
z@A(86E}7>`+-=J|7+zRYK1u3Yg!`9n?t0KoIiNiSctXRdmx-{MlL>=U%+D)r++&SG
zGCaLHR0}|nNL+*MnRlPEgXf7^%c&|UrwFT}3JD6D{gO~)l+)x(zw(m@nz{tnjGo1s
zwU!z(Nl9m!Ta)Zp#oDwALqXAG;AAYw{F*OLx8-G;ti~d=e$hw5gj+PIi~ajtHL>Zl
zt54SBg`^Y!W{th(YQODEgn>A+%2*Hu0e|+iN4}y~&b>Tot|oP0oN1hjnP&C);PX!Y
z%o`?15Qi2hc#_#s8yuIQ7WQcl6P#U63p6#eOiZjx*zHR{y;Kzyqa0|z9PS?7;!O&L
z3m(jdn`&&78~m#`jVLWHmd|koM;-32|3yE?K`WF56i%1~>@PkSocUeb6-zWU2*CrH
zkD1g=!vt9stZg0@F-Dk6SnvhUSRK?I<1GWp1PL=mbkt8=9z5}_zupjLmN<L(%7@<&
z>^4!r{jzK%dZXJ}M8ZxM4<Kvvg|;@NEaVFkSVhdO;WJg{2+?GjJ4)=5)rwS*H5^ei
zCW6LM6adHSt<`pMn9L?nBbi-aTUx?~!<n3Enr#hkON#m6W;Ps-WH=@`lA!8Y=I-sm
zN#|)lZH?}5G4cE)yh}5w?**kJ)dZoxu$(MWB%4LjF3Ysv8a(@%R`nCb6ciCE(xQks
zCXF3(=%}FOv9VId%<c)*lja@xtz6W6wln^zW3{h|WbK-icG+H<s-p2jaA`wjaY$9b
zEq!ka>c>iJsQ(RoaTYcKUtBmxU@GRVU#=`@((HW~xxb!km41baPY4Y|#4pi8#EQ><
z(&KK^T5shz<_M`&Q@Z)`Zr5+S!ggFcS17fb^Ad^pEVJ%uck1J66nFEVt|Nc6$yo#2
z?N6qbs8Ti=Fm-m(n657Bb&ov{l&U82vG7kQi|yo=hZr;Gt@yw|HY`#cNM?WKGW*v>
z%1S3IHmqSR*-89noR_#7cVFw)QZ|ZVIE_T5oRqg!lIniltW~Jo#<{xqfR{Nn$lDhw
zD9zmu72PwOINEf<_&VBVk8XQ<oL*^=cK4D$B30v2W8J(^_y-9BX-b+`BTO-T3!K+~
zU5H$-iY#*n(kmjwe<*~(k^c01d(=`bgkc4EH#C`mAkBPwuT2}OY#qUrP$TjQOIX0>
zl0y5`8y<(tVK!x?WV5OCI?KNCh62}cShVtvOf4&y#<_4(?=H3No{k=quUah9NB{zo
zAmkaQ^FaINXF6^KQl?DZNR|y`froqS-}cddZ3iyb$wtZo-J|ecSV^py<teuFg}To%
zSkHC=@`@_BI*kFC$a4;N&E9Au<0VImTZ|B@behRBt>(F@Kj^7|Tfpom%bCi7kZ$ry
zgX^ZmT==VMPV^N25hjP=ZMX{n2s<VO-<=sV8h3#$vJi@s)V_;{{>#($*j-vu&*9Ck
zI&PfEf>JKV&wnf0mRzW$Qr+%2_&A+t*+HB?t2k(LhPLd`VI``M&K?7YAlbYV*!(|Y
zp14lKI%tFf(=jU$f?&3vF*o>hrFP~UF&qL6XC?xMq*BO#@$N@Yx8pKZ)0X#vdlG86
zLQKFvslV3RKvma-Z&Y3^zYaY%=H`rAJNN`|LCiPu;*}b?bgKQdz1ldaq<dZ^`$Fgg
zQy>p<@vm}w>fzB_%Ug>|53#PcJ?$l>4D>ZhN;BV#>v-8>ExPBChdfvwDw%vUzk4ua
zY|Lfnpqwvrk&2cYl0|gC!Pakca9Z!ycV$KxTlI(>QTV}OMoTN4*YS&j3o2XxkrVab
z(m?ne|4;`QRKz<jQ*i)}{mkNy^HzItfPqD|MWlPVOAg(ln>zmTlv+f#7hWd0V5&?c
zPiaQjdul`!R0Q=3sOW)0B22_ob8<7=X{#r`g+N&(-<S;Im12h9Y~Q;(_OmxYlX!OZ
zQ;}Fi9e^Y4iPYfT1!493ATxNJC?AN&E?wTQp5*e<6)5L8U_a0@VwkwX3ivvhS+2(c
z&#M=SZdqwSGoUtu=Lh|&T7S*+U_&sb@K$%t1#S2bDYG$VO*2<|R$KXBb_Co8qBpYi
z6mziZn+<ZK&yr#e<x^v+8-s%=9byoG+kCE_`fu%K$21jb@-eikjrfDoLxv_yBkb3A
z_-}*{Cvrw9eSX3yTRBtBAlQep(v!jcsRvwa_ni?JMbA!_6&;Y2vQ2|_IcZOL+y3#0
z@9Qqg^Ob=Vatrkmfa1g7?Zu5H)%|KF3%5~daS+G$+ZIRrxUwh3@%UU=*mSafwYQ((
zErq;C;lAORq?zGIx~G5h4hy-YFpf)>Q|aGFx%uCD6A3g=;ua?;)x3F_+xWG&3XB$x
zqzEn9%>C8w?jAi7sF)weMJ4E=9buZ;{D~d7#Q(C~hAFZTg=(5+#(rS8oaXOvxa>l}
zpV;I@ZCqtje)HlTISpgTY~rPXcM$Gxw`cw71wRA_@IBXgR)7VGf7{WG&nl8QmZz9z
zelu=MnbH}!#hgj7VtF9xz=H@zpT6J!F(8zZ%5tha`E#OF6ZfV4E6v|!$n_52c{*a#
z8Ro)|?a^2JYIkOfCT6%S3#QE~`}&Xmvh?_*l1oB<x*NV}I}G$p+T2nmg1l)m7O7^|
z^R~7q`n>tdsUWgc%^w&NAsb943p~5CH`v+NL=P_4XWbLg<VdeGX@;3;9$jK@80{~i
zI$n*Wj&#|Fmf4Dt-Yk0U;&5}ryx(SP?4o`ChC}*VP6L?->@Y)VDzeXhP#%4LNcccP
zCv+{CZfuPEzqJoGdBG~@Emy@C{Ld@)<Zt~|X~tM2IX&hEvv<95V`lg_GFbF4iPw{8
zpJuYw+nq7~5#@zi?9iduyXL)b@3_m4fzqiHo?Xp+_qmNf-@l27XrgC@15z;I&OX+)
zanaf5>cbV{dl^lM_=7}2X3=-{nW=tsJ_4hWLl`T5%L(7v*DmpY)K`|liq15Bf3dqJ
zHI9o=1R5WBDyQk559|_U!pO=XQszj}=bdTdx7iL~`6uJ+>XA23F`vI}`%dv!l`4_2
zGKlGumTg)eum_!=kw}IY(0GtvArAc`uiL#Hy(zzh*jj6U$vcwsXz7l)QGbJ=oJG*r
z1g$623!QGk^kDTJt((t{5~^Lew?_oJ`q#@52q**CX-1up7<*T<2y<?ToDJbpAO>X*
z+w)h#+*1yVSaT+_|1*lncUeus8=siS=XsP4RLaiA7#4H0Nr@X~A2uW8_(_wOAVP@{
zLLNO|s}qm9(_a#@KBr<x)+6SvJEGG)@!lrk4Y1l&9A3RND|6-ziJwnyv~&DbL@0m+
zq?fNwT)(dQ$l*#YgpD&*JRtp%Nv1Nc)9N;doqwU)@=Gh|&>H?tHiL-|CB7N!34()&
z&_gzt{Qe~K^1X?-Z})$2AlbYM`1qKZCB1hgb~xOd`iv_bS1xxc$K0vsCr+sHmUAg-
zloBZ5M#h0|>^rN|Z-4o}H-w#n#2LIY`FojW?>&i~e)dC&6F98B6;I@i4--u{KeUg)
z3Cd-Z^kPG+PIukoO*z2wdNWLs)89zEzn8yaFIdr`g?;I#4-z+?;fI6`)cw)O%@7HE
zx<9dDUh}LG;Zq}NR{>`}e9Kv8RDI%s41e8%P;t`VD*oZgpCsmG>c#N_gb-4Xm&f}c
zmV|eB<+fmYS9Jt%sd!iH5!7Sw`?J>u4-NGCXk>gQNftrcOj8ZJJ?OVx<<THU4k@o6
zS5y|@I}>ln7jPX@b_NMM{TEcErm$uT{6Hxal51~%I~e_z+KC+GkkKZMf|q2Q%(eE{
z+Z0aWb_=RWxQDAC6&EAhOlobvdC?27<$)!2sSk2RAk@q%bjO6{ls$pNHUDF-`_-O9
zIprYe{hC_{uVngGyCc63_3&_erkXt3?u?6dE%FqR$}O!8@k{e!U-w5?waMa;N|q40
zF?X~{FfXdo3F^kAYm7N1-JR!XG{+-^)JYyjq<c@l#9s50YC#e@Xh3twX+jTbcA}$y
zvOU&m`!{9(N?{iTO~Qp-bE^BMo$`Y5vqq3lXiPi6>IARohOhNwt4`PJo)Tt2nYdCR
zJZfa8w$~jN;pb{db6x}O^wgSU_PyMxYMy8BO5P&~73Y{|T($Y$g!&)+L@bb6;VNFv
zSQ(4Ud-)BWqB}R&D--cFfIM<p92<70*X|Ae3{@3yPZg#~rGrI=$$U7te~C&jku}bP
zWDEupRvwTy<_~60u+cxpzOWQAP{i@Z0J}(7BXcObAeix9+mVl{pcg65u{D*rk}9lm
z?TNPGomlD4iYv)N60|R59Hr3wB+I;TvR!ze>U{zF7eJ-wHW5E&KX_%K{rEc1WuYcU
zxos4QvG0#uX5(H~+#hjKjxRX-D18#q%!;<nzKnk35z0iwK+%r+FJeTP_avLP+ZzcF
znItld<1h&9{*S!Hx0}O+tJ)A}zx~*oI4dH>RTv4?GXp#D6E$-4s0`Q2wylX{euL<Z
zw0p+3e9hlzF83q3QyH6NzH4i1cKNZ&CXgYS=AEbQe{T0bJCa`$o=%!+wb53;=(8OW
zaEIr?n>qUtdqd+GGA?Dpn3G49WFDPut7qxus5$CM=|eT{bc2A<^uSCu%i0IMW~rbJ
z@09X^+6Lgmu*aRDX(w5=v=#Bw?uk0(6yR;74WQdZj&y<+_SP?63J#v5I}c%^#Bw+;
ztUn-4NW^B?dG_8GQO_PhKtA{oorfkbj`&ny*N5zgpQ1Lb)3oVu)V|8X9&^*`-4T7Y
z!g)vy8Ca;Zba<(NJ|jz~-*R`%=S?az^vOe>R-~+??E%m&H(@5tcR6AI25pW*;BU-#
zSGztRXpMERqNzo^4~kQVU+G?aM?dQ=u7HU0(Cx0KPTCVpF}c|Tqz}O*hicyMt5u~1
za=RC7bU%KqHQ#x(NCKue`(xdM-NPzw%BA2tA;uv>$<NQ$uOXjW8-yYy1E~$)Rqg5?
z(9Nt5ihYq?k8fZ1w0@{PVD${hOQuTqRQKqZLkh%+1puj~<cT}kHO(D=vHl6oj<P%(
z06_B63(S?)Z5^bSLn4CQsnqi2r}i>;B}mnxqykt(W7r*adds!$ILtLmQOls3(g>Z|
zoO`7!NY)QMZPzqA&8@pdKjJV`x`gy(&rcp{W^{397O5rlpL^C#B_^Yccj#g6Px23B
z$kn~-Homk-`y5skF>{PL>KeEHEPb!+76_*hB=t+rGoN4PK2D00wmb;D(?3lfDvf#Y
z)jxR1zPT`FXRa39<`<Qe5OGCz7-&b7{~ieD-52}mP*pJD#_OBX)`0cdX7t7G`!<T)
z2_{1jOdt@xhLjXs4>LR89(iT#_xp7R1LlHPSPv`%)<X)e)Y+_ywe%Rk6}9k4<q=p0
zXhmjx@Jb(Fl+ar;_?)TITyWTq;Ee@(ORPHbfKYHK=%(I=-TAiBLDJT!_-ha$>t&=5
zmZ32-DF37*?9b1}{+X}IFD*vHb(D%0gn7P?kKgC>Vt}0FgCQ&6G@kK8{IYLjK5DJp
z`OulAFB%n<<kJYt_P-dv<9Nk{x%u8iBViaru_pI;_N(zzzl?eB49%nwU1)W->S&PI
zdoVb=yI0CksRJd-(9RkUdgsgWkho>T_@7$}0eP3F<3F6^zahcBqPmR6BYW$)c(YJ#
z+*5eVhmep&lO~IhIR332UXdki!2qdV1=9K5kk9kJjL$n!#ixNEa>()*i!u=HA|!$K
z$O_xDST)dlNfAE#T}`ne^1(UnvDPl?9``mKDh0Nv10@gOnO87S3Jrf-Vn4`K)B>xL
zNafzuRRY!kpj`TxeIz^l!T@amCIO|ikxnx2th9^%6}L6KG7L9St&#o}Y?J1}6*hXL
z-Vplt0KS04RIf63GtF1e*dFad`TGGlUmRv3!<!R6*}U?Qot_Z)DJTl#C<y^7K|M-~
zI=;Wl9@{lEN!u*x#~uu>4ssi`s3@6SNs`H4Zy!#Mn=8`#0|3_p{uv0IO}YbMY11nE
z!pZ)A`-d&>cnYX%{I<vr&G1iQSZNiRNu}iRaB)%dp0e#O3LmaWUXiI%=2_(JNcM(?
zopXaP8dR;ESDaH@Q!Drw1b?cIcEl&Q)Cq}q2B%5O>fv^B;no-0*On^~O)5aS?nNbd
zv3NToDE{GESADmyI{N>|7&QO`o{2v`oO8T9&4?>2ifTTDBL0kWWA2x30T;ky%LO)`
z2o;0sD!3~ZGdlcobFzFM(k+IO!c|jx#H6LAM20YMV09w8ye4?yvex;%(2x8_#{!PS
zPY>GFRobzDorX9~racpEG5|1ebC#Lu?5SJSSCY7tS>PWVO+}N<p!<SjtG#Z1uLdN_
zkW?jSL7v9Uy1^}6)H<s!dJkC!^h(Re5#^w<gE7^(Yusl`)yQQFDAA}Z3WP9LDvCWs
zo=-g)yjiam>I@!M+E7e#Oop-<eR-YxZHd3G>JrQ6>E`8|+%r$<=e!NkJ1?P#OKHE-
z1B`NkwXW<+eIJNuDy6up0eyWD(j=+$;!2x(g$QYi#3q>vCOr8PYygWxS6Fjv>)2bh
zZ3{g)<Q1cZlw}5`*n@{@MLt<7ftSKPo*pN7yKANgYm1ah!=BS$bdn?oPj(~Q3_LG*
z;acrhg2{{DLOmq*J>skQ4F^QlNAU>eAwUQ#7IX#hXy;c_<VD$z_%0HU3vn6XTtd97
zuC^;fa9lI4<EV}!c|%R4`Ons%-HFN|%BKQ81Wv;c4i}VZd~L1m8LA>kuC1uP2yPbN
z0&@nDOfvtT9;_+X-vJy=X0xhF!*M(<xKh8*v59AB?n&R%6kT>Wd0aN9lN(kUW|Mj~
z;r}V(!I^1427fHp!$xxhqT{L~VSM1ix>|eGC@m+J$65h4=Sf{SaQNpP)&^7iv}tu^
zTgfPDgpx1CQPO7w<YDTJc=vP6xRo3d=fk!vs$w?{#R>SaJmCRf2G=~SqxsuXB92m|
zBrNFMY;C9U+SHCL<}f-1G28o!Y#F6n{MqFjgPSU2-rvlHfv$<u!V_7<Su)L_7IsA|
z6=#t=4{NVP$|XtlK;|?ZPjac3XgwPvbLuL{F-b~XQh!3_NHU+y2}*B_UiYz*aHQ~{
zbP{I+JzChBTCH_kwzk?srjq9m=!g^@?c+nNlQlty<1BN^h4$5%nir5<Qd#NPa3Ydt
z=0$wHA-MOLFcLq6!^Ca%+h8Br?w$9-a#pXzIg~t_aeM5X>q7?pU_w&i$I3I}-Mn{{
zeJ@p?k*sRSLN(z=EXz8@*lBJ-xHegXhh%h#6h2(z9t(S?Vj2b`N9wZ3nz9cLz0Y0#
zyk<>_kPhXcvbTd4INN(^%%frFm)r)K^5KI=*@iWdbeg?whBt?99qu}5I(owhm;8vX
z_RD*`9T`A<D-^`jOSH3{@v^rt<sp0Up3}^v6KvuF|G9V)h<hV_LHQm5?s4|rhrR8P
zt0kL<Pqy#9;w`#1;h1sQ@Jr=R$Y2cbYU^+C-{{j&43&qtOPKH*I@=d+_7;h9@mrzc
zqC<%Cc4zzc8!?yNt4%9Jd7ICr3i{<v_R7sMv)gMWVSi2Mad0F0-X*y0^{BX6$}50N
z#bV__gCKLJlwN1I_R_Sf5K-_9>)9X?vEpp!3!Lp&-eQ;Z)Gx3Cde%&7oMx~Ch|FH7
z3O3%Nnuweu6f;Z?S1ok_ERUso>{;V{@0$X;u2h9*FhqOkp`Y5A@R(s_PJLPU1{ugS
z%>KmYjr0S>!LCF95#A9#4l;wB6<^w`OVm!%Ye?7;7+GX8o|E1TerXfEu{-rh+z${-
zeK2^e#*#<^KxNG~52o4od&b0cZ!6zWVQd9V33r+0GrQOxzcj|t_&>~M#w9VUK1sI^
zR>w>_N}qa8qZlCLaB>zOZ8O6Vo2R5)2x(TxM80uTuy?ICE5ty1J|)#+;#L=~3{HC`
zX6~X^!t;)x_vK{ouyP6?_FQmy<G@IRA7-!^)6JI0g7=^GR}~+RgPk3MbTR3FX-XW-
zc+s1c@#LdnTq-)1FAvJs`#;>Lno}6h1}0dx+1WEFc_HS>!}OMV)zC&>h#*ja(@eMV
z!Mf*_d(PeVqnb=^hAdOEd2)L2_6y!ZzCb!*%7NW}T=2jW|9QAMMfRZNR05i(%Y$E{
zl?1{C(RAln^LMEXo>e8mWvg^JCt@yK7m)@e`k-aBX?Aw7t8;YrNOj(Ya4VcH4pOQO
zi$?@c&hrOplWV5~v(43K1UuVCCv8_^9nDne3XME6?<u(~$eihi5qjeG@~1e?8u|pw
zy6B&h+mx78g9!QQS?0!>!3EF6%w5t_Utwu=CBK~wBiXcjK3G-h-+=hvQ#m$79vr_F
z3h9QRV!9q1Tr;P**oR{%6VeK8WN`Tl+M8aCmEhpSo7Atdm%emP(0rr59y#SGqK`aJ
zXbEX1<=Oa6A8QmPTV@mc3Jny(&k0A{^JeOPf>S4ZQ4o;>!Ko90uDu!d`V|Uru^0D&
zB~c6g31%lJ(G$10Re9QNg6u6i`0BIq8o=UC{@hI-t6k=Zcq3sD=n7>q{7}T#XWQ5?
z=H=WKzbnWE@u+WzP+Y*^k#JfQTzj~ly+AY2dTN!oPx&C&$yoc<qNwxEQoODgg%+$v
zh)%MITaU6W?$^vM;2>R8#sp>0L`w?!+(KwAb&!LFYYaSh_sRCC49_|PikH0}#u<Ca
z;>p3{-`WU)h2y!m=#W4x1NoJnJW_Qo#P0M1_U-jCdzPybO}IoG+3F!aL1@HME`7qD
zzB0BeIx6{x#uJp93x;;hetX8qxa9+|_9ogG2fP@G-2acQH;?nV{QmzhCEKi8l{DA&
z972Uz%}B+JnG9x(X2#McFAOsoGng4$(W*s>B9Tf|(nhOFi$cBAu98wIp+!+CrJ{cK
zbDpnj==1&k<>qzfdcK~o=kvPG@;K)_4zO&Nv})e7MvJ!8^#j?VP>d=b0Lw}Ct0!Zt
zuMT@s=)2Tij^!|?UuuKfm8e|WJfh`HbZJPG@zCw=@vzB*n+ZEP@}eV=Qs^@VN8I8b
zUX<8&pZ=;+h$qWYud=m8<>MV3nCHrSc$<*l(9<a?$5dnIySX_kWDjaeiKr-@Gx>Eh
z+h|q%(i5YN?!*k?hUi<vwg-lQ>i$T3Qf>SPM`_V)Uil~)FE{3pJxLQf?Y9H_=K%d1
ztb!oi;TA{j1C4h1(Y;@yYQIQ2=a`c#RA4l|@DzVY4OZOm`_#fD7)MSZBmv^GOsC6(
zlK7ShV|fW6xR@07Swpn|e?sE(+KGW}tbamW=f@VxByQ$etZ+;j*j>~jBnqjn8!g4p
z7$s0GY$>UIJb@v_L8}p-qXg<!{5=}`sI^Hm1G)$A)OwLrfysRnhozWaCBdf!D&YsK
zeo+!0b{{&j>^pZ8D3jG^D!8Ro(aF=~d0*4c9z98)6eqT<2I4o(Ldgqkbycw7B0aJA
zhmvWFGLH%`DQv^j+*JwcpaY<jDw!e?1K2q~^YuD6cbD{BNvj$#tYGWRc$Q(^G|dr>
zcX`m&WXF%)(M(Dd3)wQlpeZZYE^+To)*K6kKXlqD^HEw?p-1ky)NMLFp=Uh>L;wHY
zD*2zyBi!3ptG61uAr-1*QyDx6;pv@j#!-oPa8t<6g@#vv2Sl9D5ASkk9qC0SFe){K
z1?Wrc*`}55;6;8XN2g$lCZ!niDOY?+!Y%8X%1yz9Mw221HBwBqpvV<oueT!lSBQiO
zrJ)|cwiGV0m(7j;x{-GBm0)p2j}9P?mHG~VboRio4_!&m_!s`vKk<x9Aq55lFw@O3
z_qZYWJv=~hhsV|6_~X@6Je6Yhy%==5*%#L{=MDH}q|F&M9G5tQCw$`a;H!07fJl6N
zKE7h8MX^!bS*LOCj_<Uog=d7-6M|am=7elvp<7Yn9|3JLs=dL15S_ftttm)2@G3*q
zAWimNII0Lp`;fYyc1AGo8LbMGtKxtP(h+{GT)eA^z1Phw){CS6DT*9ja|kr20i3&r
zXym*03BSRtirt}dNd`DnO4=`tG=jOK#4Q-FoQIsa=%Lm4oU%5V@VLu;(J21QG#%5(
zJ`Ou4;Zg&I=<=j3JtE=P!Fn|MRF9Sxdk6@5>BoGR^w_6r2>HrF5MwD<hx3#Ewb2Y>
zSF6FREt@jDyxdoSQY}HuG~@!ivW>bVY>G1AYzibX7kpisDQV|YXX>`#@%vLFJU&^*
z^>EL8*=%2_hGStGUV&fYVN`Ygb#DA1ZGT`PQzP)O3m6^jqcwIoI{WKl_s;9hTFWH_
zsek}e@EeMMQp|G+?(XB8|C=2rBF4;$eH7-q6jRX>qBbwd7YbxqByHwq!Z3Hq9&Mju
zo6*r8H8@hao?<q>9t>Hh!4*&a+?vU}5}^Q~SSQ5{{>lAtgg$Z>N+Y#ESNMz@)&<Ya
z)6L0Nka4NL+7~8wOv=I+-5n7<PP$Vj)v<X|D$vQKn1#=~JBE5$ziPe@P8Au7iiI|v
zUvvc(UP$@$Vc9%z=1kLkscY9q_b3+@Zgq6o*m1)JIH5*D-suzWshWmbd01|A=L`Ot
z_NcqEN;fA6D(P0?G6JI`<(sv|jn7RS*-mMnN`)4O5>=kL*ijsC%CXq|2`z%y!6AE=
zxaZa3=nZC8p*@&&-=xTMZbtPAJDTV8^guUfl<sKW7V%K6B5ra!&5m(jch<MXY3o;B
zIh7j~?z}AXSeYNS$+pXjfHR?sgu=`0oaYMbbnl3<jWDcCK}aEq9(6FO;D`k2@Iyq_
z;t-~vLc>ej);9C^_@8f6X<v9z8|q`o5p!@)YGvm&N<c1I6@J_pje+_>%De5N;O!P+
zqDY{<QhJI=JzYE~nA|)}+C(Zta&>cT?_l<BO`Svu8<ps&UsiwfeAl4wYbw#GSL};?
z{CL;k<ku2p036%6wu1I8s&t8U`@Li%os|3?Q9kJx@@M2Alp3nz>-OH(URFAGigcDD
zp%$t8d)CBw3Ep93(r^_4&<^>Z?G>`gb3qyK8+Es+2~IJw_u1|(RB_<<VN<0?0YI6a
zMQ)|lHdk{={O&)swW63t6d(Ze-SXr=TIdiOX>S&~6l03=lRLK7&kAaA;EAA2-1W(K
zwb#}QLawko1!g6j{(dPrChn5p<q!3dh_H4zWW-(rn9D{4FaN4C4#pT|Trt;<3NnwU
zr5c<Ne}MT>WLIzqw%=tZg*2LAk^>?Y^qq_Yl9bNh-TUoZuQ$Ks{aA@ba;h|@qYTiD
z>}?l)tuw>;JPagpiXaZew2nE~_V_%0NE40sC}`03S44Q&I|}Wc8yiFsEdvxuy4hW9
z-~U!Gh{qz{MYPGBAztR9mF|g7I<Y9+{$O5uU{Oml39kD&u5@3sMjcd_aU@5H^TZD$
z-rcy(9^K2A)aH@zV7oKI0!@cjIzP$17vFqI7EHzfj)!4o6eMHF##Xu+3E{+M`k~OC
z94u+^d!&6(v0Ew{WS7%ci`&Hjne_f<-)+G$t@VjhIVQO~^Yb;qmp>~_wj6b7jqg+~
zlqm(N1I*B>;0B1(rM|YlY8=D%gqV|<sd%-0_Ys{VjR*zehZ=zxu|MZLW`lclGBq&?
z7nM;WXgnU$)QjBPl^T;E$*UhNn@p0}X=da-?!+7~iOyKYPNG-#jCIpTc}cWDfkh}-
z(`TA18Sh1+%0uIWSDbBTf8uVNEHZflWttO|S}s#@OmL;shA5`qNmv0YNjJiWErX#K
z$0yOUOIDBfLxqY=UBOm!aF#8zy{~Lw;uUTnKl@c|dA6Bxzdd-F%EQVN>uVAD(Xjsx
z4UV`f?(gSxCI$Okq8z+tLesXxg2D+6Gb7+`#E(EEzF10C@KdQ5iT0PgQs{v22kgbf
zA;CK%{2zF$ENe4N?_t4|3Ka?Zt#jreB*ivP{nE~UGUmM%q%MohAhORD1dD)`)IqGV
zPmI-`1|%g?g#cbI0sHxhE@rkDkk;`9|6DJ_+;Wt=^MRN(muWq}no?Q>>1BDgeemlv
zrAZ@m<!@dRSLEPMS?dZ<)QlM$S|Ul#0j1aM+1uK=e(e-Z<?NS6i1`Gfz<n{j@3xOV
z9{W>s8qz>urT>H;Y~C7LtIXYVLtHyL893r4_1IA9x1i{Ub9L|zd&M&zi6|5LA_0jg
zzl>XHdp@B842ayeWfq8h8zUXqq!-89uXbn$InP4Vu_Gqbj3QY>l852;Q|zf_{(+#;
zCR9$XnTpk-kp?o~du-eDM5vq26UQ_3YGV-e8>H0OhkHOoGZ^|$a@>O<jWsv`!&s$x
zla4bi{6C#tr|G^Kjqcu&VJAL#ZJMdF?!c{HMpHe#8rrCa-g~vPdtzxrcbgh{&<DY@
zxoV0z)4I8f{K_1t3Z;ji2^`(b`R&}9Q@ms#+E?mCgirJG(_P{+5$Fs@nheDfj%CbO
zKXc1p!Qkf<ccpxWsr8VDW|_Hz?VndEro?GtOhWbedYXT6M#-*Ir^K|-JN38#jvQ*!
zW()kMO}jrkSBkS~xyFgOyocR(qqbb@qT!NSV_G51j(zQn87jc46-$CBGMep6UkUqq
z#+|{ix3sSWVS#epOOw9TvHyN!aLg3nqd2&{PMe76aO{?8-n%9!INNtPg3OE^CykcU
zIhkQjx-Gah*2|#DkR&J}kd|3JcYBa^nZIO|qk&bZ@guGc`j7MyrLq--ot#Ft`DamZ
z;j#XL{YmoE`+$TE{ApE?)!H{{637Bf>F**Ba^Liz=`Z@bDC{e$sl}|3J%GEmg?p{s
zH?8$zBDMt0aJ#_I5aZ4Xn-o|9+^v;Ph+vt#-?%&L{UU-O3Eq*Q*bX#tmsF{Qt?45|
z*(=#*Wf!;MalcnYF$n736$8-KOz-G&U-6<srfA9bqN+V6%l-Pa>`OTvkO)U-)$sj6
zWk<D110>;^TOW>#GH3kh8YL%4f(aTZ;(uw{<(EvKV`B$sU+#acu*|T%{V~`2jKoVx
zxnp3Yrbzu|Obnarz&);HnYR}G%jJF%ut{ED;ufw@frROjoF(#+SYq1)E<0ZF0$gxK
z6ST}7d{DrzuBP`3F8w(_KM=Cax@eJcDws-!X|vWH*x;qbVro*g$oQIjUH@+rf~Pd9
zFRRgR5hUOR6CQ9W6el5(Vy(j(-{}d!MZ2xWJv`f!it&`l0t-WMiW!*iZd~afI676E
z9lCZEKYG+SclHWJ61ilF8axCzB!ecp^v6}uUs0i|;b<KO$fTLYuehHUYDL;$666sw
zf3$B2O~kw1gUUZzl+I-2!1?rG0wMvt<AkBch(_86mB(mr7{WqoX;2<W_@=YY3(nf@
zm$6f(3@3>xGM?~nJ%a`RsEp8nU8((6(gB0jHATT4bDOuDO@B{`5e8GDCt<hDMrU4l
zR!}&|%l?z-lI|JEF?$5n1zsM-DWa$Wa^j$~gO4v#Il*2ZA-sYe6@Ti=ox$W=CD=Q)
zRI1CVi>`yK)RbloHqVSnzCA^~iSYXhbc%IFY|!Cc`it=gC7mXu4Pt|7<3HO?sfvG<
zqzSuJsCCIL;n_jT1`9V8JQ=2O%izAh5`Ji^h!SWe7=!vROyeQ{+Uiy}_&ePTSi{2z
zd$2P1H?|ji8~aUl2#x|vi=jjplC7I$*X)l?2tj@+;8*GpWE`8@YVDaZaZy<g+-uT+
zgNQh_j_iDkxb_!lRc1fI<h2Ge-E2>CZNAl{5GSKBB4`e-9A_rejC{;JHb&3Jpt2}w
zDKMPwJdj_!z)w#NPMo0do@A=X9FwHMqo8AA&yjBM)7qYeL`g$JsFP-Wp!3n6*!y;?
zv<QAGa1(WkU^6DocSCT~H%foN9)pfdLpL@O&*YuX!Ngy+wGa_U6&`s^I=c*lS@UB1
zVD{BI#0VT8XFoEMut%EpvrNgz;Pjy}tHM1!P|qT3cqaFB3BJEf*Kon&TA>9%fYbR?
zm*C+W{l&=M=}pk#i4*zgsGwi2zZithlcb89)=8d5%VUGC-Tm<Z2Gv6)5PAPM-H=;i
zVi?LT_f}uaG2~(ZBSS_7OPpSeH1@fbbyLSh>a_g^oRfH{AY!*)phO7(mXuqBJZpf(
z<nmsa=4v{6Qm%6)NiH--EJ}LNeUl%*V!M*#K&u)J524e>+#GwaJ8+zk<4Ejv*p5R(
zZc~aVIG`jHAeTo@nU_h?d$u_$!A;DPP(YMAX@>Asnq%4opZu$3-IUwvt}q802P^l-
zi#pE-wBk6JEM<)Q>qWc0Chp)o5N7B|@CYYO30W4pnio>t3zz%BAs&V!mKiN58V@{W
zpsT4?%wg~#!XK%xf~W-h_)nqxyJ^CJyYy`3DYgM_N7i@hVwZD?LL>Z0>4ppgWLgc`
zm>1t@Cm)RE9Eh8v6{*po?-iFOx9X*ZCIZYWLd$W3$ZP5{w`o^w-9D{QiH_-#22_aU
zR=NdY11dgiF0KqA748b2TikT_aBAE~6?#27&S^8m&k_*TtiRID47>=HAc+~gIucIV
z=HJQg<I}wCP>m%CFutv5zMC>B?x<hYLzXx$N<bjeEYo;_>pR6u`$cFx!Bi8f;YTcS
zUrvg<C|nnvsEQ!PJT=EX(r`h-i?FMJMcn0v>s;ALzetJf$MTKbrfB=pW$yGp^@;Gi
z^A#wTXadZXpzPXqZsqMdh7e&v1K$R<6#T&7db)ScRR14g>6prp2bQan|M=l<_xo>B
zfh-X~uNp`a7`@4lAa+bK=T*8NyZ9#~bHNT_jF>v~#@Cf@N0$D9cnp=)k5OS2rby`8
zW*=p=2$Cx_y#j0!_OfwxC|s$G82zCA=tMzH8Y*JTJB=VZloAmsWd`q)A80<mET|cO
zc)fEifeNWxUZDAEa&T|$Az7!2DUlJ<)K$*3&l2-&b@0fbL}dgJm@iBofzOZ-S90U?
zj<>h{sF0SpLQ-8D-L%Xp##z0|e$gqe3CbHCT>y_)J@#5tvBy2^etB0_H0z>``wiF&
z4ck1KkC#{`UdUqpgz6#S9C5QKS~q9jW#36u5htZAB0MHo3tFqrEVqMNs3GB9pa3OL
zGLc=XgU!A@)qT_1zeJ&U)TAbPD8@Nl=*nUhtB|I~agsui2S?i)G3(ubxKH}{HnM2a
zUwQ~hwchilJMYE@5xq0iqS0Q4UVq^$H$Kz%kd;-c_GS%6WalO~`4-;=$D=Hl76gD8
z7CpGxnM?iU&Sm2gIEmsAjuz%vtao=d_uYI^);7^7UCsBOxii}9m&v1IRG$PiGOCK+
zr+@72Lu6Fd6O<tiV0TjH$s3^kH|vz#!j_>gAw9a%5mlNpz?6KR{QZU)*-$hCNV05r
z2sVB(FK9Gf!A5F6qM6G9>F1lLnf-cff?OxBe7M%IuUV4(T89|<BnOr(p(-{BW0Fs7
ztsjM~VHPtZoMfe42bp2FCyy*snG{8gl<`#N!#{$-Kj~)@KxhSydF{C5-Tk6}N4>r=
zlTwm@+|@$9hqfiY8RZLRwCSwmxjXgGB$kOP$u=vJdj<MoPUQp&PlWi(?A@ANP_7@A
z&`L%$Qp!B;Yda(#b4!f05=Hwb%%<VNn;+_fVxWc}b$$0U$)~*+em6H9sj9L4iMMMe
zQKKGzFnRv>D$*vb8ax(r_WI;SZ|i5_34#+^O@%31mVEC!;dKbEwDI8PZOKz&^tNaj
zDWu$kTU~No+iRHrE00tZZ`6<_-IiRnO#hPLWJEnLz1%8oJjmI!<k(dz!v01na?FJ{
zB)@P|^vXPeu=dvM&Q4yiS3m6qiZ-HxXDdL3xuJXVnqB%ir4kL@1(04w|2kib8ckt-
za>kc>YxyGy&dl@kl4otz|M#gX@AMVz6rI2*!1I_S_hWK}(JPYtkf6g{KREfRZsB)C
z1g&jyaq?$t)R7fq#tAIyhNBe(Zw%BJ?7w{iWu~rOP<OFP6fr_S6lU}@siy|DgF+mU
zIE9+qF>IDOiOF4h#fc+8)!Eoe;rh}oZ>~K$c~Vx~0*W3010v%9z`(!prQZ0vP2Qxq
zvBVbPD+A0XKdmbB@9a}HtV$S5q*=;6Mzi#0Nw-sau1Sz%CT@+ecmS5+MRm?Q<<}ym
zX)mBF1d2-dxyXNm1ErXm-A}3RrX6YxGZ9P7h+)A8JDCRso>W;Sg~~W;q-@j8y1N+q
zt4b3Y-6qnCM>t5P-;Bw0&;Q(FbxX~5Nn0vr1d(7W%iFu`zA<YODXD-spq8hBgNe;c
zF~cSW3E{9>B)()CR|JhxH7K~Yfqa>wXeFjXgqt#FSn&Ltu|0=k@A{J%QK}&%U~4N&
zf(zekpjWP^8VOWWTpLQUh6X2pry?{|UxJ#jU<cY)Ox)m~Y@2)I=69v*5hEg?S6FgM
zh?ZsIf3gD~_CnkTojA=p(o|>uVmqx+ky>6V&cN&F45LEy4;!;C?(Ekac(tN+tE}Tb
zzt~}`?opaqK(=Daj{zbu<tb+Nw@KrF)@BHT>KvKS0esF5=zfcPCEurOb>xVgUXg+t
zndg?ef*j3;VWFiy(JFwzK9XrQ2VSy|{G^mSNVUI<R&!){sOGJwZSl`4!$;ISnv{*P
z?a9&eE0Slrt{pT-j~H&C5p|M*5r#)I?*^CHRz;v#x%Jf?C&F4lEZGd7Zn1AxC&bTI
zz!<_I!HO9)Zu)*`JJssv{O%&3GNRxRe!}ZEB{hok{T#wLJKA@2VCd4#i`$aUOVF+e
zmWG+ePzmwi$aIg|k+goVJ~-lG8JsOiH2kKn1A}X3>!b%_*<6Y1NRv|DOO#w2Z2d+@
zL?CIvVUdyLxbU*zgMD6BMx{fYRRk9)=V{Po!OuUal<z8_J%jI(^xu{XgAU>RX|7lz
zvyXTp(gG|jPI(i9s*{?_L<$`F973GYQYuHB4{_V$39e#ad|~Ton;{@m%_K?(1R#K4
z{}}iAkqIIMn*v7}QNs+0EU9UG{(x=wowTS*Od@wV4kv`ML1y8__P1Ysq+1x7K!q>@
zP=ou1+BI8MAWaw28bxXodz{4p1Jm<K*RyfrJX$KEIn~gSqR@rlh=R}?U(%6KJpP;s
zOd-SvgrFX{;F*O<kNp<kZneH_9p4ewWD*bpEUnpTAG#o+=?^q&FgiWrsi`D+K$ySs
zRXcyNqMck87pu-T6lfFWZMZ(^y1%qQ8);#A1xDZIh(3}6Za}2|*C)MkM1mA>^Gs!O
zg|D=x_X#I$Z66mq&G$a#O`z7UW&)j^d~Y|?yQNz=&<9UpiAYH~glZ8=$ueZ)l(cgD
z6B2~aM&1`g#Z)4QSYe#|ty99a-|5&z08kpg#>!Rk?{kiK!-x2*5=+;Nfu4~=K@`GB
zrX<&+$_u5YR@m}z;oj=t`prnVZJK_QHixKPKnQYlX5jw3&I_f)7-}`yHqvd><Y;%7
zOSou_F4Xcig*5p#g0JV}T*i3+ZNTHK!@ok?ftB5Viko(h&r|cp2wBB)iU*i!j?Hlk
zmuSf!KU_hva34@B!QMYN;(A`~sZ$7j>Z485T$pmnf;e|mntwETGC@GzM5dWq<VH;O
zZ-R~<8KEo^Xe<icJ9S<Xa-<drw2qX>CUK&>W2Q>k0Eb0xQd*W_Zf#@NuJEO0<a0Ge
z(aqGIWWS-zHLN%zwNVwRkZhia;TbbMPPWY#dGTOE4e10%M6T4GXs=r4MgM0dTRB{L
zRV!-61XU2aTj3K04K~aB1!=J%Q+$7O0c;<1_=hnR+?j+0FJ}iy7b|xrOLHpgsA|P7
zNl5teoM1-hIGGT`sVl7UJD9q2?8_UA-P8y5)FBj1O>-O&6!Ru#&Uf+G`U;2Q2~0+m
zu0r}rcrxSWx!rduhmWkI3Ya&HNQNZ*euLZaYQiJ;Yw#bYnEXnq%DQg3tA5gdqhOAq
zlI3>DZ2t17oA-nlvQ}t5k)WOXt#r$mdP$*Fibo5+`56?R-Qym4*h}+j7}MjWX(+gF
z?sN+l`J45GA982R-sb5t4|=vcb&~(3+PbDzOo0=r&!^aavD<rh!ol_WqYmr1<4K8v
zdf3gL=hugQ0sdK`+1%|+;PY#v6@ay%sZxsqNoa~mUhGz_^mkuYLD<$1C-St(z&*dv
zmE7j954@&zU93ez-EzPC@^Qbmq$VQ0u+i0&!H^L!<#)RlSNX*ykPt-USJq>n8$asY
zVt;cU<MDbKn8&2w>i)XfKRo4o8z*fltj6*;d&mua)_=RsKU1Gyo(dBq7P^<F`7c&@
z$X{2|qzjh2mW%vSc^OuZCEz`Q@wk^=qx(E~FKPb69tb^-X5+2yfv5ap^2PLK_Ku9>
zriA!q&jQzTzW?3=N-4m8AY`B^y6^Mumb<+qO7k!KIm;Y9)0rjySCZ_hh`v9{t<Bl9
z+^C1VOic(05wWc-B@H`%j*HCm;zP3&Y_3e1C1pYl*A2J2!gu`b=D>eAft?4;3Hinx
zH+6-VkP@$sh9;~7{5W~OTe#j!1<fHV?l-nH=D)DSjeEq)a|ok-y%leV<vW+T$O8Xv
zqktN5j}_+z%2#e5Z8i4>_r?8(ZojG;R|MLLx*GZ~*?e71r`z2H4Jx7!Gq*VC=!Z=6
z<s$cQ!~2ySc=XoDVq}`lcey(+_m7&QLTK)Y^Zm`kh-8XpyKm?CFGjt91Q4L|Sg?Rs
z&vL<X|HH(vmH?~B<4!TT3*F2H%@gJV@LBY2$mHQ>i`@|oFaKOFi8I~stsLa<=elP?
z@-e)HXn_(f!~*5~d88Y&EaCE-!y<$_&L`%K+sQPi@3xCebwV18q!+waywohJ+DylN
z_SxsPeGDLY5by|zMUDou>W4FxI)2AiEolvFy~O%x%>(WKS!TftZqg_vwP$4suMX07
zAt|EZH4FaB=iHHJ#E(f)t({A@Nqhi#t=-I{54%1~^x@#IsX6y`{N%mxWB1z~AE?uY
zYVJe7w*UE(vEQ`R9a!ccESe-dt{j0BbK4!R%f0$OFw4?5CWL)5=QBTW?OLg$!uR=H
zJ(=bdbNUhPgWvV5u%3D++J7r`!s+JDGwh(L@mJ?+ceS?h0aa*yfM%?kx3_0r;fu2I
z=V}kltLtW3oMtZ!=W&QxX5#8tB7EP%43o4eKgnL-PkYDt1I2tS1V@_fl$!5Mb8%an
zF~na!mw-#^3&ewZ`3!siS$-v|qpFf?i;SZEx;8c^$IHYQ3Kf>v?le<=f*o|1+HM|0
z{)9;wSiEHJWy^kh@mKm3cyPU|L>Yx8R`UFKN*#}JuOC$Bn}w)oC<c5t78hVAym7!@
z_Ori09>2AA1Q`-McU;W9@$QI!yyvdT6SYe6X5fo#?QA3U+}T2dEATBtV+xv$_r83M
zYt}`#5K=U(E~G&dr?2b{x9_6(Q~nMMip$4F!9dx1S>}Y5?uOI+x)SQm!&sFZDE8vS
zx8033e%FRY{(Zx?X}*;6clN8U<V=5M94e_kVkJ6z+hcC#)qZ6z?AZ-O0!%rf=H`v*
z?z>_?<wRUD0tXHg10Yh&>X+TpUjC};#OeNIA-D9>mG0<)eqne^a6^@kWi7b?v-&2t
z`y4-DVgRjvA)`MJf|okvRX1RSzc48_0!*42ut2TmxgkUSDk7Xok|yAXV2vlf>W*wU
zxQf04K?~o4W_EYJ?#df(Rfqv1RRG>{FF4eVrnqJ2`CF9&K|O!6Fxw1&&HXym-%1&N
z81%}#HF<oHpqqc5axeFf|2S4(S@<g<r_nBL*0ba1zUDfV`}JZ_dA|Pg9LIOxaXm+R
z@nGpHuH(cB^vbUya{l&R_wsoEdI}=wc}g|7u{4vq!A<SqS3(UOmSM72cuaph?*2_W
zv{$4|fZN3{S-;A?a6x?j|5W|;!;=-|j)<5)_jz}6fxlka6zK`%i`XF_yy4n62zrO~
zyxbf|=)Q;Cz$^XDN!Cwy2F$YNx_4aJ<ticIY{(rDZ*t=oJ?oAS<4t5y+B771lk=W%
ze>Txb6p8G$h!7x1luEP5dN(3LOQhsbRnoo*Mu`HEo5Wdr;#Ie);WZsX9_1xr^;Ws|
zIr`JYP@wKb@o<!hnN!WS{r2)Z)l?u1X-?{iv?$7fX!Aq+?_FNT4UGtyE%5E3tFwQN
zNH`&cIwY+L`a<OkaV9*!8Rnn0HvZ9siDhcF{ODi4ka#=(pdGZx8?-@$C<>C`?rye2
zhI#M=P+T)=Tn$~H_K{70Rqq2`CJ6)^8dstvUc&|b-PTDymSQJFofQcrGtAGeT*XWu
zNaD*?j*3i1iAiQ}-7#+V7#}K%hJ;v3BpGI(bH|PHl5^o`pzKL-i4;JFqguLQy?pc;
z>Q(I#K#F!7bF!P;&xe@jl4B%8BI_U#Yvl@hs04jmRvzj-0W?y~Y5&@lU#O-<B;k`4
z`cAl(MU!_m`y0ESpL<2DYKDF^t}4?633opZQ4%qaS}h=Px8$gLCAt@Pc^wU(9Swy@
zWNKvNR&HC2Drf*30t4<5gojttr!IJSx5s~S>!qog+9&*zFK-U6ZmlgetSF{1PAOxv
zrKRDqnZb@^6=B$O%b^hTy{WK`G2i1wclSLBmlC325{t)(yoOE#Fce7P&Hm*{Ba#yS
zy`-6xK^F)wGWST2db-Jd%Ko@Z5jwWz06(r3?*{eQbC11bt@myeZqR<5G_(6Dw<7T8
z9)<(bWl?2<TF5d-zUW@hRI!|ckT*d5C4Iz4tX7^DBv=88)(}t%aLbWy*;X%rr$(?V
z^1`WR{Za0nTl_Aj`K6(%8pH{Tu)TKDbbmT}Q{chRk`XrM)n@L!HU4@9Ahom<iB=Rj
zh^Kk*U%PyiU)X1a1PM$?!h&ttW#4I*u>KoGsfyqf0rL>gi+z051MY!_AoTF4H{Cor
z$1Ppw9V-nXb0G!Rm13zE&2dc|0;T_qRTi%{%?z96hBbKMVR-9<C9w_3x4XgbhAtoT
z(rG-G@@@hpVt_x(?beVGhY};<SmMFK?7)M&<pQ^2t1mu+BmhsCoGl(pH`8H~dvuEz
zY0WlE$j;?gy1du?=Z94&uusy>5#!ye54^B=s&vkhcZ9Vt#oRE#m4E9+;s}a@M#QQe
z=eh2`#-3NHqv;QyfG34e-AtqL?(I+fN_GmlAhl^MX3pKiliaL5v7ge3$*#qy*OPLf
z4TmT4<8u4J-|_eERn!mkjBZst4N+pS;J#}&yzG@J0~bdCc1n2|Z$6uyHvLQ6?&(lW
zeJnRi`vt~bY(_Wp_OtGm*pO1@d@XxwXkdUj2M~Gn5y6n2+8IYOTU7)uB;jxxW8Y2U
z$w5uN7h)SiQXr`3vA->v1Ua)3PTax`!#P8OtDc^6nHW&iBzXTSFVLMcpj_Y`EDnEw
zR$AXA$h+46L8;hnAHf4Ob~T-w1t%;Nb{4tt0QRfKyP$>iayJU5&hsMB$J&}vTvHzV
zRVHYCyO+S_M=gpdUP_}#`FxcaOx~rXQCtyML!EjVRgi5~^$YH4nz$~aUq<{81#c)k
z&N3(Nb`QOtFnFrUV5B3M<Nmvu5)<s2r0IS1R{!!Uq5Vl^x-WBvzjW<ZB;+npRHZO7
zNy{9f`(7(%F5T*WdP4tzJAup}Tg*k7&tT5|(S5x#VKhsTpqWS<a8<e?yPAZb+_4Q!
z{9%eS3YDd%k#;xtGztoP__ve?Hd!6wDe1)AX7FCuBQ~-45q(Y4KpkyRC9j=no`2u{
zeq7=};RNDQ^T49@*qlRwsJ?Yg&+ymf*#KySWYiD?p*$Y_pZlb>Uks3<9r>wRU-9I>
zE+p8I>k6>~PJ^eGNLAYB^EbO&n)$^NnGC0ZliCKPSiF^+-4VxoDaUpMM*#_VY5T3t
zHA@^#MJ87UK{)J=!FF1H>^g<FM8~dRabsykqIozC%N+NUyEH%Xr6hg8T7_FB{1FU#
zmy|(iusk>Mp9A4$u82$pro%|4nr;Jv@?Ksb2~Nw>P>K!xqbNADhnLb%CAoCA9PeyM
ztKh|N6Vj*Xx0Ozjdg^Gr#}s%B%H8on)9<|;&0AeL9M~I97+lSoV}hg&4YIJ-PqrS}
zuDkcU%~N&j@$>a|Ld=vSiPp;h+x430r2?-U@`>3=#ESEOa81LV%krr13R4eUfTP>t
zH<v%$U!WA$f`;rl`hYL^w|#J8SO0spTDfL24@!883r`EybxYj;mp(yAG1>ajI2}!r
zX^Kw{3bOoO(tKgq-zTeqDu$d8{MaDI(CAK(l<t~8-12sQoi{_Fl#_V;e)ncaFAaNh
zIW~t=UqR}aZXWy1b<XyG7OldN;}3sTVKDHYgy``voiZUppekBJa4_`Hn_K*A(5)uX
zhwoHodjPbqE)Eh>{R1hgsbQaM&IC9tO-K*Mlm=I3d%4a`;Ji!UrHL;N&OXOW4qaWw
z7lCAH4&bWd;I0h+CwOT1IMIWhLPcSZxZsAb{Ov{QJENNcdhSe<5ff}}ktp?`ylXPg
zqobe-`x6YeX-v?srI+@l{E0+7yN@k)P4nQ<xBYc-FjNn5fU?Zw58Sbx{HZJxD9SVE
zp)YvHAAjp^Z0{d4tu+(Cxk7a%hXSbU_k*qv<B6K<E#(Vrh_5OqTY#?p|F|=f{Ay6n
za^V)D5J=2anrZj9d$f(0f^yJ<cnCtJDy^Hj{2zDj@%}HU>4FPXev;JYFWctE?M#U3
zK=u0gQR<kZdoiHb?{V=PRbG^DLTZ2c)zsaR;#i*=wEy1s!-v6x2<S1&4jS+D0ss<*
z@W6UNqbFkS=giK*)eY+yaH-umLYtFrhIS54_{OgcL*MhEk(Jg8X~M@(nA1LJyvF}U
z!%&i_)|Ua?pakaxN3HXJGB`rm$yyGRDe4|1yzT|S)T3!C07@cqlNNrN+&3&YX!frE
zix6_8!a{g`0QxBZEAJWPz1bkItcr$3%;V*tXXXVxPi{FWP5b{fu^!q?E{)AhC=4<i
zrrZvoC|>k$1}fjI?-INk4h-iZ``{HxifNV>G<!zBu73gk3#k`<`Y?{BnSb+w{j(D<
zyHC{$Hi$U!(4L}L!ZiBcy|CH8yF*zH9wT<-^UPq&qyC4mT91!R>P<Iui-Xs{@$-Gj
z6NDfDGF+SY1_XUR^UHFhSS2F-+LnESUE%0p?zI#YU@DFw)K~Z|qZ$P#)g=C~TC<$I
zRnLmc2D|J8*ZM=xiW|KT%fI;U6m`(d-qw}Aq4GjfT1-r$aSLdaXH(nQ=B|vp@v7$A
zkQ78Jq6QivM&#k<_J&7PD4-z<mncIDBPd!W_jaOPob0hb;svQ*s<RrB%3l!Re%9K~
zYd{YFvmDKKlC>r6bh&_l3LTcyXUgu(G#|8eAB3SQ%`*e=Q>z(qp3S_!Zl=vm_U9oj
z)-phdzQvG2kDzF{l(tYHjmCZdSvxbm`N8<Gb5Xg{{0qep0~B|zw<j;w+1p%!@}{bY
z9i$ALhzaPMj<;hP#C(CxtAy$uHg|d+OlrM-Yrd{6iPAcUATFMO%!}nsT)NS{aJ|fn
z-Ns+2Fm%t5;y;}8nQM8omkuDg&PZ)NltQj;R=nrd-r=QvBV+Lf1SVrC3EMZ`cJXt)
zFn@BnvRQCZTC3i5TW?YcPcr0Gsr3AnWMz4eo8sJ?U-<2zRy`zsCi@D;R-54#zu?o$
z|Ig;hG{f7t%ir;<QM<LEegf~1lK_Z0>o}La>Co0<@)7Wq?5$Lj7-vtvH}2NyT87=P
zvK%i>O6rLvhx}@vdRL3)*>!xSEvELLZc!FunoLf-z2KF&<yYvY%;gDD#?K{r{Vz7L
zy&u&b$>W72Aw2);AWYrr7T=(cf%n>n5mzXzZXACqe-_%Wr#H{f3ulv*M?ye29iY_2
zv~{WP`Mamxfu}0ob{5}7=JnsC<u}ApLnYmMrNRO)dV?$!kMx8}+w{x$3dpOAN-2|=
z9MXn^>yYAD-QE8Fa@>Z^R5#NhCt$G_$1<y~o9WZrCcUpRz%sBF=E6&$CDW<9nxFGr
z>$7z{Htk<p5k+g2v<xSI=5}efvy?svIYWp)YYq=c1q}M&(XR2^3aPME=`55Q2NZ4i
z4)@`z`0JikwLxk~Sr%xAOgAST>z;bw<Lsr-yoS6DVZ9&~9VA@<EdQ{1PsVq=26Zg#
zJ9QIk$b@CkL7!=E+v7faS4nsHEt;zEkVZOo{_MNmm}wpm&I{)UN*gIemowcP6XQD-
zM5#9#LRh2(jAtxxXI<gf<yTcsjSQzvB?OFVXh<`=s@)yK{FrV{FNW5M)>hO~&1%<j
zibp<+nd&M{XyEB6$*0_tlf5K5YJ$`gQT)$i-R3KN>PdqIbh50%Qucnyy>(5)s>2C<
zvdoBiZg4n?nP;N}@4Oea`@A;Vh3?wpPCs7<>mpa@Qkn~ab?HgTFb5C1AGgMTz>7hO
zb14H2m6&_WLHEh0@q1S(S(S!V(ew!3J7?hU*X`#Mby_#;#Il5W3MSTNnLEC5SDfd+
zu~)ea=!tHyZjwUG`P$vTApYV@^<_qD7>QCQSf!Aa9U~rE!d~~o`}+NSL5U>jU@Git
z?mp-;!jE~~g*CPCtu(xEe$L9dZr4Qr-VQ7K=B;A#kDTdNjPp|Ua{OB9NFGw}(hB@5
zEv{h<XXOaagn%+vk8;y{d67_Qp)sl62R=rhZeHR_8pdSj!KT6lO4iBvn9G*9?<aaZ
z9ohvU=0?I>>HMHubcKJT1IMWf5j47+Iq^QXd5piwd~GY1i!sP|v70yE3rfmIjuALL
zi|Kl1=RI!YWWSels$oIJ=(2M_IU7IezG+B%L=y<CqS4cwveKQE65sD@Jpt-4YKb30
zLXwvra=X)&d4}gKncxY&0zon@ndZ(}uE#~16G0i|QEDtGupq0L+`^;X?H_q$Rf?TU
zQCVTGpFbcFEk53j`q=+LuNom{0yiXcmSR3=?OJT}>R>=QZXJD<^wXxBXa2I!b%|e`
zh(i0X4qztEE|>T}uLDFg`PYhiHE%rNMmL;AwL68RcLY}>IlzPHYDO$|qci+({g04i
z*>b7N%v2%$YKq?yZu1sV0_i4_>~8L&?0_KC5}E;^3sIC>d{JJ)cy~%;x4KYooIg_V
z38x<b3#Mzj2D+Juac5_RKdisnA$sp5u|aPDsxP@$FuY5gRJF2t5M&<|=AjgcM9$x4
z%a+F1T&3?1hEh`XVj9rmL?N&DbRRZo@xwGGDZ88ZxDVgZr^SQx<_nX7&%XDd+xEJS
zgW${ZQFk(gk<FKCDnGORZq@US#6u*4zh|3I|FMt%qWC*aS4B0$CHp0DCv~04_Sq)!
zk4$bMH2a51vdj&q+Lw<~3ES)Z8krd+nl9VSTjjp0*K@%V2{iO%aBsxVgL~RV6LiKJ
z_W*H&8baknX}-z2Tm0P>SIOim#)weqnP%>N-%h*Hi%M%o(ov8XsjQ_>M0&AImo0YN
zBo*_0y_tb2mMNW-5ghExZSPCsf4*CX1cXebs#b+8INcn5y<OpyE?nGF#$1n$QY?|l
z#$&&*r9G`&Gue4kU8{kS+%K62RN#zJZtJRqml>wUrs^$2X8HZNL0RVU)7+Mgo~^Th
zq6O&%L4=F-a7VZHT~G2kfL@9S871luIO-%+GtA(QZdSw6ehd-Tb=jt<gR9--FIgBK
zHdgRbA3xm<f6q%Gx2z)f1I9wOw9vWIbxICOMfag0rZjVN_uq7Pja$T&yhl$fgO0&K
zq;m=m1{w6Yq%tU98TZtBC2qj-mD55ZeuWv_E7*CnXLL}yQR*#usjKpW)nCN5j?)Fg
z6dQ#}0ZCB@PoxH&u8*4&@<32Nu8}qqN}yFXU!NT8e<p5umafc|$ds?jM!g(e5oFxp
zzseV-ay^*C-pLA9T<NbTi3K(3G9o+MG_4Hoys&{Cf?rh+gPL3tnB=F?0b{jFFQ&E}
zrzj#(JzkN_Fx>gEYrZW0r3+x<FOUjYxX4h1M3^Yw_ug^m+!=piC{rh)Z|FAh%HT7~
zFf*QU+ZXB|a9Np(5VfMx3VrG|!QO?w{k?yrp4wn3)s(LJH1ot&!S-=pcvxi{_e4DP
z$`&{AN%gkmgzHN{0Q~UdC+_JvYI>n*D2hzhx<N=Quwp+qcMs0+91V2XQ0{>9N*O;T
zSlK4$X!r1P&w|lQiZ6s8iIvnMHIH{Y#`~2}6V#6-FH<QCQJ<L~*r`kWLWyMXC`Cl@
z)$aq_<7qFV)MO;QCh#bxm^S~j_lJ}lxUN)f0dc?%h6TL-V*A-A>bH_+qn2G#^ir7(
z6Z#dwvUi)^aBZyg2Ne;IM{%IOjB`F`QLr*q8_6VREMzUFAbo%tUl}}m=3)J1Rdhhm
z9%0PYmj~r%A0~)UTuoZtOurzw^A!CYeo-mD(3fQn3<_4Cr62dN!N42y&EO!vAo_RJ
zKEu|RsTj*H2nH3Z0PwG_f})1dPMM)s1j`GdjDc4TNJ#RV8f{S4fuiY~6|^<YWzY_C
zDAJ{76A2IS{+>bIpE`nvB$8)ikRq=XbNRI{p&>!j3;H+mI)dF#oax#uh>bLb&bE|*
zmzE|{NWA?EXSl^5`h*Uh*P^PB;KFp9=GuMXC1gOv>lYEaYUwrZ_V>K#Kaf4zA7EnH
zWEX__CG-Rr9Z@rOxSUa$BEI+H;Pcz`j7kfyRO1S*K2n;3sh^n?tlO_+UnyZPtQ^N<
zMJuuIA0BJZzDk)a>8!}Bj41TYbTWQgRvTA#bli!V+KStYT3a|?nW30&KEKxf?-Lz9
z0fCw1qLq0Hq9C5ruFG8GWpS_eqZd^NdV<EOSs~ktGV6Y|+k9)>l3$p_S13e6B+iuW
z<gy9whsXQ?SxBoeUlo$^WfecI;|$kywyu);`|`=4IhY4-hLT^i=QjImLfi#34<amz
z2(cB3D4GN@^*2`ACM~t4yfn}Bqa4;yosZkPxm6JNRm@8d$86*C0TuKJjYA^5&nwb`
zbAI)bK2m&BNsXJVqB881VDR@|#y9bJWfk7+<oIA?!z%i+@K{5Rcx{bn-8NWQ6I*_?
zew#YU9u4NYq|3JS4i>%PuiFnQaT;T}E*@I{cEN3bdWi(o1LetR9*U(zkfYLrUpM$a
zkV;OuBT3Qxloq_c(+jAUP@^w5iw?~WS~rW0{`efpg~%Gz&g(}9-!%L_kSHONm8X(o
z&T1Vz+Qk0?;17o6(IC!Qf<-woSXd~cQ~R?QYO1CH{xiF)<CDP)7ak)`SRqh|t_Jro
zrcb9}UOVj}EFA}xjBI@~qc*wo3~dd|qX1w6L^wL6!#whC^5X6Kx%znevrT!s<deS$
z{}|oEQ?8}y@T#@R`?hN*TCe(Xs4#Q+*~vf8(ZA}?V70OQ5VN>6x%qhgNUIQW^`(I@
zJN#lzN<g6!X1PrH(&W$AwNL~c?7UWrM9GR}m}|GYslRzdm@KUpK$3<9H(&U*%h=^b
z{Rmj}c3DPTkpHzi@>?$}iX6&m5l}-M{GI#bcP}OI8&}_ek4vl$|C#IfgO{u35fbh!
zv*bG$JHzKgi|H^S*(1a@5B}xs8qGhVk&5B0qpeV!N5)x?a*=;yWf(73jD(bwT2jqL
z-F#OQcV94XuX4Fy$a1PNNMfm^vH9HrcG^}Y>P6zSKZ0%`Mu7~RWM}=NVo*I9J|db9
zvKRKoKQry8Zz{JiiWXmEfPyz@TIkJOu<tL`v_M7q^n6r+&d8coP3`An;@msh$zNL6
z8T~=uhjioBn!>aqvmieBa+tRK^}^|-O-j!aF1&fFdGJNCPHdClT1`pURACXG#LU+(
z<NiHQCkewVo2PvJ%GAij#0%YLO`7L+j1zBzA|OyhR3}}L8KkRIOyjrRPy6D(+W=1~
zV3D*1O3DMC6cD!bOWmfuO8SXa1qqj|Y&!YxZsv~_cIoc8>Ae*yDvFGTmPWdGs5413
z{kz)8L*aB^*etNcf@Mf2ycGQYd6~O;jxtG+BUWhPFt8EAcbv3im%1^(Bt+?0r5p&N
z0@5A$*O_MiTzC6lp40^Z74mfOP4?LIC9c~ZFCfy5W^+MSpi#Tmy}H+5P?RCKKQwFH
zFc&2wv3<5X?cWA@`Ghf*)I$1<FIRwK^B#B4FM4(DcEX;*ODluJQp_`R-TloH9b__y
zN-ArtR=|>T5atzg$rxAJLZ$p%dMSaLwYP#FlWO+g?*2NU-&>SN?;b#6h<T8_Mm4@R
z!1XvH@y@rRthPdkNg_p2w`}E$?={oqH*h!hmwqV1M_T++O-)@=s{`8Y1dl{%HP9IV
zrVM5<tJm1CE{eT;uG$jmt;GLez?rDP%*jc~<6=*KPDSTZU?X)Wz*bGC+Y8plj${xM
zVY?6Gfah_wM<==b5QT&+5DpQ(M^H%U0zoh1{;;q8(ERxK6}=>8)KG@8L@1e2Zp6b0
zn+atU_{G1a*h7A_Ic22l@Tf{S*+sG!(cQQwxZ&F;xE9;hb0B!?O@`Wg{XipZn!N{-
zTK*7{ljEgO89|4C*gp)WfoW@;<?fm7$+{@>tS*Nq0&9_CCiite4OCVi`~%62hg%0C
zWA^zCz1`!9aoa{~QOo%}6yk8)e4Zzb4?w1=JzR^=V|U;|aKrh+(krbPcwm|Cqdop}
z67^BNi^)cql<po~ruXt+VlL+R4zn3IE6ElQv@pViE{46Krl_0hW(FOwPw&(R${38W
z&4Q3Wn@~I5oN;`xpjnGK3uFGzOCmu3wT)}?fkMT6+quz#Wc`g?m<d<iOy&aHcT9@{
zaufW8Y+;VNj$#qo#N+R_H&v++0;A%w5xC+}4Q%a<|GDPx=p+wT9hU3>sXCPGkaRjZ
zj%sMc0LW1(ALIvZ(=~UCgGc3z_D<v90j6~+4RY=X{X3A6DpaEMQwiZtirIQq@YA2M
z(%Yo*BjrPy3nLz6q3IA@`bFG##Dla%<wr(S0Hz#`vXm`<W$@8&erXvBjzoYAtOR0y
z>%?H;{<v4hVlJq`i;SrNIpR!n$v1YpmnJ9POwI}k6gZ5n(8NWm%%BZ+xhYqx5Umfx
zRb4G()NzC|%n<{FCO2!3s3=o`bt=aSF&8Ou6yyBw?UVbPNs0&HAas*LP6x;{@MsdB
zw@Z8J%oN1A0EYMua!0_B;KLWqw@+s&cz|gmT){L{GSLg;Ms=v!GA&3bRCY7o(qPiV
zqM&4uBFxRtx?5iid8V+5IJw9q`zTQ=R5h0d_g?BF*nW&mlnO=4=Fqi2mIM{QG=$kw
zKBdW0q!LOG?GSX@?jJguL@N7XdY3jf5(eg)_Cfx2ai@n-I29nIO692wPB^$t(CUl0
zud+1=r;?X3Q@E{k3}%@x<AZ(w#&sT}uepKcMnZH3O5Ghq7Q~Gy)nz23C*aX?MpMnF
zCBa2^>Anejmcv;=QihOi#%;8F_Z;e2hI0+uC-soL{i9yDOE>s>$U?SMO_lnzP~O0!
zz4t5Iqh&$?)q&J6vQg{G;aVVxP3<5iWzG?9z4eVE)G0?}M@l;IG``<yFW>4%$sS71
zNY!DgnX=DzI7+JyQGP;f7zHoDct}nB)za;INe?T(C9l5R3i>Gbi$}5kN!x3?|1F1E
zP5Cw1=IA%=pnYDdm}Qug7im|s^)<WhZ7;>_YRd~f-AqsWpI!2~N(hjPBEv;ZgDLa=
zW3LW&g=MJ39jX>I-IzteUb@*2uyUtHRUAnC4PVYj{uGC#ZeVc#N)M+LN*OSHNENc>
zcqj8KgN0!nM|!FVw^_GiIukv*nO!q&j~kT$oiorMj_TTa_6OJ?&(5^2v9FC#E+$?H
z!Gf;isgggq{dfD!{&=b7<VbRowJ3x`Ddk#QlY{d%D9Jb&pu`wNHgK2<B#QHQ!k;$b
zS<Mq6)ucs86E4(z=&R4aw`HR}Y2SeIkhG7p-qm#c%)WMU{0kejo0_i-;cQy=IdeOA
z*#~#U{kj%g8tvTiQUR>X|F#Q5DL0F)k`kwpmD2hRY_jLl;ICVnoj`Xtnuq(TPyms3
zT2$@}-@4-Is(3^TLbXX@4kt%wQ{0h3*S&gjq<|8hjJk4)vZ;@yNB1q88+PWSlxUfy
zQ>cz!ax_w=8JF+wf4|wF5*<O-hi1#eplHlE_p`dW+q6-w4y(zY*c>|F#nr&bW0Zbh
zZoe7Rd{&O~iZkz|enhm09+w;MXyRiwadh)tOo3yy5}4Ft)5&j24f-t)*om{6*O1@D
zObn<YFvlaK$^&2I757O;Ur{5Nn~lyN1U)u6PrIFG>*PI7P;oV-GQ!P39E}3$)6L!c
zt)3rbY9npP$;t5&kRZ*q-tNWHZm8ZE&I~*He&@b_`~O##W@aY4ga%nJ^2i|yBWE_<
zOl#{pedQNQ!G3tUXlYM1&z$Kt{+O`uZEdVREOE|cHT<;H<J^hw`;|FlOvYj-<xW%0
zKUwbmA3_n_;=Io>A<F~_I3lK#vx2WnLejT_u-xsi90VA3rg?RdYyWTji)Vl__JfNF
zq<;*+Jjgc?K+c=?!x^y;{HVpY!kHJP{eUclBY48i_R3TxV#>({F^g2eq#}Xs<oM(d
zyGKc?scAH2-FllHi;^dute@pWBc<B2EW6B%Se`tgjeeX<Ig<P^imnaBHQ#smKY!e{
zx7oEMd1PBnRfomk>EL;Q+EeW6r*t?Ep$Ee!;3$P^A{|F4!@N;pFMTEqFvLs5?WAdr
zI1edy;+;Wu?OHFz27}%+3Z2XeW+~f@&#>EH@i}hIU{zo(1ucZ`&AeA&D<Af2X?3r_
zT?$=pMnj|7uejHqvdM=%W%YG53*idN*ywcg+k<v3<R0*JaL0M%)A*cJn<-vuk6rFR
zFJnA4(YnwiNg$PO&VSWbHj0-(3b(chbP7radQnr&cjZZqx+gr5pwplTnkO&>UFz)M
zJ!FHJ`tC0Nn)v(j!r4yRECS`W6qC&vU_XmVX!Z)@slg_6tPybmGX}EE>6`2~tK(+;
zPkRmF?U8yK4I_zzNaN3%<y!rrQI5ZtC{V#2fssEsD(Q@~^^Q~%phk495N~IhL4Do%
ze|zHXL6H%W@PrUYVtsBo&$Zst>{mk2|C`y62Fg1|xyGv!zJ9yu+5GI>$Z$&pTU?KS
zPFV~$J^pC-!OyJ)`@)R~iTOb)NNyC*upfM=ARRIsK6@^XrdGEhN4-RDvu}K^axk!{
zTc{u@W3y0wQ%i!E;$!zsYatL>Ui~;691tJr*)W5GpMLYuQdy;VOi|BAn@64-7A%VK
zSW#FRUNeE}NETz?ms}EDa&+v1%k;8+Y9qtxG(&>h-+pv(@XweiN=9lcv{A_T+3@68
ztJfq*=gm}5hbPbx><m1ij*H#XKk8w|Vp1eAQlS^J>R7(3-m+W9>Zm7q-6QA<z?ev;
zieNkELwny9K9Q9(PREEMVWXe(o*g?~CAiG}_=$3UfHYY2NhIiaj3*$-mpCd~tB4qf
z@rp?BZZj{&3z=f|(c-5|_Ih@GFuajUAs;(em@$FTlz#ApU)+JYo+>OqI<8(sndatS
z+^+dv1Ot9WrOck>MSSp+8-Ifr2sSYRQy|yl;GDkS^;)Ddh$8{t>Uc$Deu=<Hd=W36
zx7&5QP6;0c_F#BTowWSXNz&E4c)4q`TOX%vsv0SfQQSApte9>8-sZPd3A&>OoIqr_
z=h<`Zi2r#RoWBwgh=}`q=O+8u1{F!cjTSWv8bVzl#qtwv+L3x3k>P#tR>j3aNNjRu
zjor~yg~Xm{VhwkxG)gfy4s+Kf35%O%Cs3_)ELO?*LX$r+IQCzi8|}|S`&uiEXXcsl
zLE`@uITD1HRyR89>KG1?Yo4hHDigvqf)sa$XR~isuGvx@e3-6+GEwt2V3k!tlLLBr
z+^-2x?@`YcjuP)QE<!n5-;_aSe_gPniLUA&8C%aiojf^c-%LLMbfe0u-k9Z+gZWSE
zbtHu{f@$~0q}>{<`CLCMWjI547v_noV8C1Yp&}=pAjhkrE7lav3y%9*Kc~bO91QBQ
zw<?3@-`0-`nOSdMtP3vtD*P|d8*NZvWNT}JPG2gSaWv&7yb7si`>%G)*+LyBv`k?E
ziHwax$eTUwH~Um^T=jf%&ZJXtod|+>MbZ@C)x5vgUV3)ieCGWj%&8hD@eva8wFCdP
zzjadydp!h!bEW{Lr$|7y_EFd2cqO>w%@%_2O`yR{;!#+Xu5hOv>k0a(z8Nt_HU!H!
zKaC!7kHo|cxrk6!zz8avC4nd8jC|i>*SdkVk`hu`392U8&4|VBq};gAS7Uo%!35oq
z)(}>)H*a0&HXihpj=5AMF_%<D8K(PPF8>ry=opgO$(@ij;e361ue-lX+>b*^WZ?Hn
z5DPya`NvKx+`AnP{jdq;BWq*@;q92Y?#N7kIlvp<xk%87#mii6s=roV`2-<fC1=C@
z##JsM!_xqgDVicpO(IG$OIEn$-BctP!dUcEh&NL-mTlhsz%7pT{vmc+D*9PTD+Ir|
z|7Q18<4{P(60}dUj>7G6^d`H`$WU5;rozNtw_Jwv1$Sm7%EY8%`r>pl9c7yt=8^k@
z@vEBMdu6P=e4t<Ta3CWByxX(W9zR&=R1x*ACv!x#cB(n!Gn+fye~hyY0*$jR6IU}$
z#dWrNtTJk|1eG<CnJPlIjb~qauRZQU-GbQG92^odj*!}L3pekz*CzWJJUY-Gmr7Dn
zc;Kl*177unT{^<M*tzx8lva;HB&Dw7R@iqdy(pw6ApH;e$sVTGo?r3(Bi4-5na4yM
z17Nk}DZ+}2{!C*6<}{5puq*mQ!t+X4gw?tFSG#>${1~e11jZ?sb)gs&0*?1y%OLl0
z&9k!~`+ytkzM}d*#q7>-uPs#on3W83v~qF;jS$ehdvOp<@n}SD6=P+vE}Tb#90?dk
z#{^?v)5{V#VI@au-7?S%<#!+V2;Q8fQ691Zkr9=nDo2E_8*vp6|Bs7;UvJj93VHY}
z!Yqs+H(kwNy#hN^ksE%lOt%+zR?H~Ix$Bp<^)Mgli8d=2j7e=Q$<EF8gP|%!zsr;u
z3Ul$qB=50df~~$<N0*WUkcRXLa2oP+q)d|^`*ah#<7O?>l-^0{PA$iaknTymzn|>g
zKWbAW4-no+I@_$oK~RxnX4A~4qg|(kaU&VXAbJ8tFh!pu?6AD|G!yi9ZO+qa#-a~E
zWq7R+-=bikj#~4Mr-qdjA4!t%%?UoAWp-TT7S9eZEHwW_4P&YMqk=utEIBL4DUR=b
zjuzpCEcHC%B1w6WVWD>Cj0Xd|+fM<=<p=3J2V#D_@+TSvo0rCCR)J>A2Io{peM?{(
zAmPcI>}fH+`dNNxcuzRx{Mhvmy1PDZ_GHhvZGc-C1K;mK)W$C=+~~f2KIWr-pqKE8
z)eo1#Fz^C4_c7ybhpPCY`vLJJOGhFfAXdB_y!E|<f^|XMHB@KF2Ck3{y7qocctyH%
zd~iio!#)fv7X*b$Gfm2a77epR7_UZ^8Y-VcL)tJW1>?v2MZI9@rd*3{O{%>8uwdh4
zl@Oe>H|cE^P)7)E_HD4g{}aM5lw#ub)r-Ffil1e^E(pf#SNx4svgA6XqmG0zNV)lC
zu>18rO(&xrC5@sd0WTd}_s<h<;?QvRyyVGo1VA-;fhi`~<W}_2u~g(L3ZPw=>=^kC
zqK5CEcW+wX4k<4nEE<*$v94y%R#$UQVtm+KCOIx&YKs^b=d>@~Ki#~ztbQ^kLH0Sb
zbW?<S>$g|jnQgtYZg>q0t^^CZcdh%ZbK;#e+A%_ljO--l6LGWP(x&1i_iC@i4<FDD
zhtjH=h^Kb}A;>TrUv_I7E(%_)T94bI$jxnXx!L-CgfV5r44g+cM4I_^byD`%@eiD(
zEO)$f%AukI@bJ$u=o^;VaW%0!=4l2b+-IQ%kxX=|c_qd^d}`eDb9A&TF$$`bK^*LS
z$Y@Gz;+Zj@t&EW{g~5yyYQ>+<B7K-@e%P9{b#UydZ|PNqcN>=&31G$kPm_9;szl-~
zDWsJG!*ra@bhGlqr1txjg%DW?_E$<siA`sE@i$3N{Nja&;sN5@Ota~Wqz)l{p)91m
zM(B8W05VwViOoq*?)K|&v;_u+G7+13`p%^DLrz3~KtD;3km!&UD2=pix0r27d$04q
z;jo{MUd<g~A2_?=r;8t+gHpjM<e}lmzSqP)mE<4VdG+uV<1bK)2rhNnwxl21_=}!P
zpd@wlQ0-)!_wsFZo?cV@=?Fc7)lyYRFJ7v7Xpo(BqW7o!me<ygLm-><gM9n$-#Rr4
zZ7Tt@gga;hI!3UQDdvx2JH0k;=zJ~C2X-7yj|#3FK~y&roNAM&$Gy5cgdr-W89*Ky
zIXsAlZ?ru=(=j%vY2ik!llnTECa@aEe{U<Tg2a4h?;0*B$Qaj@xb;}O@(#VGhRd*Z
zMePlFL)u#Jv6ojj-<7M`vH!RE0UfmQcz4m4iU9E<bFhUK^=xE3&rGxRNc-zo@kg}4
zo4tTi$a)DWXt-cdESfFr4%@e^#b&ZO+>^kaeTZKPM@WMq?Hg;GPL}MmNDl?fWTwGJ
z8rgMM#ij0PA(&AyJqkb-(F#SHB+(y5TkXKR6*wZ>1#*ucM}<17@A#=MGtQ69$fsxk
zb3+y!F4xJf-(N8l4{4!9*fdwzE#KJI!H4HE9*Tl&S~5r;OsS<1R_a$N6n;D{IQ#gx
z?LFb@M{mOq$@QYz8GAr{o)sM3UghNLL(1%I=>M}!>MeHt%9yNQbnsFhUJ1Gx32@2W
z8}0EkeZg4)k&#Y06j_>i=4zXJODL03@FPeJ)2672)MI~gTf??e>1alkPO-hKNI8?@
zNH=5ecU{84fS8b8k>OH&BMk=T;cJ7(X8BBoct19zZbnLG#LNx;yv|EWjtT0C1k|(R
z_~7Y@-hfb@7`<SM`F3v5e!5>mu0^|G^xJqT-z*9`F7ZOGy^zZR3BPc2@ak+8NHUdH
z4sYo35wgwLo82?d`bsQNR8V#jt=#>_%iWSUynrps<RZyxLicD6%yI`_@gg!NlAD#D
zu{W=Eg%9}8535{7ij)7!On1$LUMi@y#05x5Enn^WKHy8s4rgNJPB3J{=D4@k`i0S9
zWpX3wX67t6@pUgj`;SGf3N@Il%P^PCaK|)AB^4qwhg8{#yqg(ynOoWLGbEkMq$>`H
zRH#u)F~jY8%U>FH4Jr&+g$`^r$6fq_zu5+C02$F<?`iJpC;cMN7a`?y6sz9sf`-X3
zdf-6K@YATF%Q8K$bH9gog70#u+L=PQL8sb3jtHxr3#nvbcodK!r$g%Vx45bk;+rtE
zRF98Xe)a;9R;t<hXfWk~<~k8k3XC!$>(8cp@#WylCdv(ofHwqjGEOy({+Z^Xjlp-Z
zUZg(v$a>{EmJI)$Yl3%UypU@3T7M1&(E4sg5NQxnb5SMTRa_M1weYpz+ui;~5J|*`
zfT>vPgSdlUfWc>u=U83D-49<Eyw)mi>Uo;Sh3gArp*M-5-Tr2<%IJMypXd!3F-FrO
zSSLcoUb~Y_gLRUcWVNsyQd7A*seG<CG5sqivqe~fF<7@J>5-d7AbJT-wo!uD_RAva
zK04U6E<tjBGzF-?NQ)ac@b)M6#m{_Bub1$kgbuf~%1aYmw)yNMyR+dhNco3WLI|<u
zeQ5W8;Me9<QQjw&60!`{IqG}+(H0e=bfHLx^Meu+Vfu&T4L9f<dKiAumNPuP9DHiJ
z>9I1zy7U#Alef7uDLl2>IZTNtA*wV6gO2|3r~C3;mEb*s%HRf7j^>0=7mm+7-<@N0
z1_`Q5Q;CWoQIUr)UXUC7)hu4p=?DvP=f<iP1?j?PIU+A;a-0gWYM21>$s8S&0Lh+X
z3*2q3n#=G-LaY!F0eP2kJQKp#MQVp*y{|m@{aX#S#GS{lmG=c{54LvU9qysiVy`_a
zI_a*Op-5n$WFxao(m{9HocQueq7Nz>rPhv@nFj9{)3}DY3$`WPxsl{wLBl;+$=Qld
zpnL!q{FU|Y#NV~di4D}NW~?4Ual@GN*}|?J<~K>9v<QmZBjEhNBkj<0yo900L~ay}
z@q}V+N+16@q&U(Wg@jv)ZEU|PQi<FOIc1b2w*m0jjY`gp@$RoV@y~zJRGutHtx`e<
zsYU*+Td-xO)|i6~go+S10=DXI=A7Scuh_VR?&@{&z^lrI*fILsz(N2ImM7bk^|9S&
zMg3N(C`Nz_;!d?4UseGxr2iBtr|1R;PrA7~IiMeunNNZ}GbV<VgfSaFvKyCL@nB)J
z#6seX$po_NzO$G96SHciUR~jC3#XMzX){aw$_{KA8<iHI1LWb6<<Bw?y=nWL)F6qz
zW-f_>zTjtj&nNzpIV15-xMRL7)g*mvbKdY0oHXJ!1el8Z_SqBuZV+gm1OZ3<u^()|
zR)@Z3+&KAune9B~HM?_<Uy)ZSOqjeswpo^0x7yC#(jb!Xt{xuYP?}+OH*v)s{1vr`
zBQl)#3xQvjx${grusrs$nffqFpj{H&nZyBa3SIwWnZ2e>Y|#l?6_-mO8nw8jdQg{x
z-msMiH4%g}f!h)p3z-IuYnkSW6>i4gzIZK13Rc4^F**~VM_=wv+wFzDYUumYWjx_2
zkGj;KRl+;#5BrU5LsA===AwJ;@L3wkpj60mjRD2a1u|t$J!c_hg+1cPxE({ZzqOPJ
zD^-&yZ{Uq8^K#?A>~{~UlgA0if8_8-dC1r~q=9Z*VT($de?dwY=QD&-;Z~tI6Q2W%
zv8T+Q{@|ejf+Msbj7nOtrikq_Qzg_d<x|hb69@A|sZ8k<T)ndSC$nO<A<@Y)BEVYA
z?i{?eN(GX_0shc-Rh?N*MK2!7&h)^(=u<U^if9p%(OsDve6n1H{VABLS8$8od35!i
ztAjHhjQt{B3zo^iGf+(KllhqZ0@pV9X0_&Gu$3i5P+=rQtr*8~S4~h;pa~9?7tTzj
zz-gkrFe;7ib(c1e6(j;6k-ijKc`2n3k0fbfaMcsdz!7Eag*1)B=Wa|)Zt~sFX~Av|
z6Mg~kkIMA(Ck98xFumC9xFR`bU|0)WUOiQ&Z`@sz9Q&dc0v9vJm@yNzO_P7A(?7wj
zr5?yMo0@$7nc)Y7#cWWZ^p1XHNw4}k+poHE6o2>jHOU)33QLN?BSO5zym3KtX*k@2
zN~xNW(m7U|LMFW=dD1$)=77kUNs&pR7hopbn|#u{`Z4n~Csfvj1<czQB}WqU({S82
zs+R2Ujdvx#^s#<j|8kfUBrcPI#!rPm=I|MCrDj7_@^k5W1*k))o$Jf9DDB$UJl`RC
z@kRPM=xLojufBa`oa9CLHKkpXvzDmY2%TeQ!%miRT-s)&C&IL?4X&N5;1%st(69_A
zS4i_aYzTk}sVBSHtF?8BEqz`+x@syV(PWa~jP7cB+-ci3*CJnbXJ1GNBJ5lyQjjdm
zG@srYY+lwpdqSLSU6}GvW;jnGBi(v?uyKXT#E?>HDaekbeP;9v{&*;?bjuI>rIneF
zd=ZdH>w@64_R1r{`75obvQ}y}NY749bJyz>_*08=!L{MS<u1(aZIbVcjg^n!prr1L
z$EC@j$I_B>U)IkDR5C_My%k=A{WI8qiGF;@5iwaUlM6cPhqP_NTu<%0`Lk<s7i=8Y
zEo6Yg1nKrS3`{w$Qa?j4s25^lPfbqg6f3M<!1p74O(rCQG@A^aVVf5u+_$HxT!oo3
z{F0K?Ugo-!l4Bl;?T*7x6sd^Rvp+w7x6S*lj_!_c3zlCw9N(0X!~D6q&H9u0G@Van
z%A5@wwoIE3+8lMt(GsIVtX`>&$+U;ybbh<uuKq3dby79R3L;@^J1UQ(*=4bPtx1E*
zlVYTB!)L*Hk!4n`wkI`KsX&Oe6}n@IrNR3m-E2m^G!TlTNT==uniXl-nNuD-_=Tq0
zU;~mK71_?Eor7il^}{khla}1V`8HTrs#z+^q$WxyQMUnR@aUi_Qxj(4cI_0YpWKOb
z+gPH=T4qA$n7ZoVy`G7he5sUE9Hrf(Xoo;IbCs*SG;Ra=9+EQvieW82GP<BIe#z~u
zj5}ee%B1l)EImTVFP-?jd$~I9{QFdx=O^J%1que#>nXSUy13%X7E;Sf{Ux(MFhtk|
zm^lfPkDKgrmiib6{Zt-a7a<tmx8vQMh8QnjR?*Lj@kWZrcU8HYxy-`@q8JIb5Tu(u
zC2rR3VeKudwqeeNgbL|q){fwzKf=OIh<YYejvh_HDrhk!jctSf&1mt;t!giLU*Zai
z1b+CGV9``B8C0oLMv!0<Z@0mM>0T0=tsF*!G4n>2V!S7J3c6MJKcFj*VZ-TZ_)61l
za8zggoJ2DTK*75~m$9Rzalu{JwMf1#MsVrD;^~HQe%Ea5y_xl-JHJYOS)}0?7FKf3
z@pW-7)6Bvb-9r<-oKk;C#1Y_Ke)ODcs|#hz^%wNZn5E^xcfXO=r1Tl@AWZ*5kitCl
zzP4SN*2IZFF0Bw#s2T=+#Gc@lV<O);-5m&Yv^mTyIi$2v5-_viI-8-bf^}CbGfPpv
zLPb)cq=B-K)}(UagZZy{z8B87II}{P!*6d}8tm8^(!}7(>fi?(Eu2H)0=6Dg6WB^s
zxOl<?V9BTjK8coO(;tsZH@)6{zEr(oZk;%Qq3UG))6B7x?dSu|AAg;Jr2SB-lqdPK
zDoh%aez6a~q45yc^_`kB@dhjVk~{4=ZH?rY3i8FsbV(@kW7+z#t%7T(>W?MEBMcVg
z3_XrbY6Lgz?ayrb-P#?EIt$-eX<hj^vcZ7$LV}Tdi;eUag(mtAu%3||^&%qIaOF&!
z9*VfSFTj;%?M(CV?@V~p5<-3_JvAJTu;z%L%RV{#GW-2L{kd4C0;Rd2k`0*R`efJX
zMQz>{nu;2LDOI@y4D6oRo7^*5zO(;aTsXlvXo!}5S$wS<dZx;7U=*&8;!hv}8RpUj
zL0y7|(qffxiqWj4^^vhW4$Kp{mpQs$aApgQ@uVN7zFKyK265UDLkG)wwsX3|v+Tz_
zg3<8(pfGuR?ks!E2<^B=sAjqZIDsvPn3w)(51Tep^(kGK`iwh`jZ7FJ6$Ybpo)o6%
zvd@FpX8F8+k%HnTe{-<$CjS{*kwa*H+#EE$HTqe7wNyYX+aAomOku^GvBPTwbC4E|
zjMIYhR&ncd6;F)z1}M0Vm?M<YB{<MZ;Y9QvWdtPE8N!odPU_+k7x|WfC@~WfT;Of(
z-1$pXZLtR%vh*|#qDFQ<;O4A~zp7KSI07(<9@uI!5*^rzzSl0t7tKC;8}2BTzv^+4
z>F8!+ZU{F19y4${4Ow~8_8^&aG8sfSSF8%MTE#{sa`f#$HZGnj<i@F{^Wxxz-F{tf
zEg$h`pXI#C`yLM_@6bQMe<qyLLJE*#ijKI|^17h=Z!r-np!nL*SBt_sI^?>`b3u<|
z<hw-=;o8W2(*evd+ZmsHu%(V4>sL;Bf;0&ZNFk_BNZ!%>zaK|G+s6KdVi?Q=-zZwd
zrcZd;K(}f@{Ji6|I<kPd0+mAP0Cf38JJ<bt&-Nf>ub~Sr!c<e2=ziJag#`pXvbzw0
z1pV8_4gAfEn4}jO1Ctc&6Tk-@+^OHkXE3Q$%C2?7lw?0xMk&~=lidY-beT96P^3jB
z5lK<hkZ#(>xw^Y$?y4#ysD8kPF^52E*?-%36DQsVIo1NK6V7IM5Co#kGUrsehdTOl
z2#$Rv2?s6L=xX-e=1%MrSA`X3X$ZgQexyi%*YfltmtWwe3?*X~Wz5;;$*WzXL-RMo
zp)n2L2yu(qalN}BCT`doa+(k-sSQw1h7=Wf(j%S=9=uIvE{l}(BwfS6YqZ9Zjky1#
zpv@I31AoZJK!`=9%7v(P!{7GVzP|niGFZ}jS*W~j=KCFXT6+a1_z}JbmcgZ&=97i4
z#WbCRDjG&w1EdT>pbn`#J2l9-NudswDM$o_Mo${}n?R|Mu(fe7O!1>F`_~ApPK7tf
z?An&@h9O=MrfmCF*9;daucL9i`z~Fj=pA+|4L%Sy;PYgd-{;$BV&b34S5Aq(@EXa<
zquU<cJnahm)tTB=!731KQnM<eXz_<T?2V;fMBh`GypSuVn8zNoJDP{h7`%I)w0{rc
zWtlUoUHV9$ea8lk=2W4t_<6jfOETP)0=-X38F8Xf+-x>wNf?rDhnB@{{U|!>Z7POG
zs!B4<$k*+<X}&^9I_)uhBEqvxdD~WnBAzELr;OK-C&Jc!p|wlz<)0U%tMaP_#!oZr
zE^}*IX$2B%s1@^*GpHB><M``JR~6@_`6EXIb$WIZ;B%Hgo#hH^<1*_scYbb7O_WYY
zst2>ov46Siws?vKU{FFLfh)n?c@uxP3pV_uO(P%{MT~r+fKL3`qFMInW3-JKUx|7J
zsaum2KCQ!#xL042E~8VW8aYCTGiv^~j>!j3&`M&U<q(Z3%g8rH<C7PLWydA#so|7N
zXiC2<rNC5<Y`eOLUgJNa!#>ZWM6kS;x-)|C4kM$*%OuZg)gLmaACr7=a`-7Ic%+(2
zIU=N^`s+t(=ExjX5i%RIFD`jbNBz8z?k!^WN1sftwF+tv!cdE&15(1~8#gX^>}MS$
zs0AQZ0%;DHz*x9mvrWNH`}`u$Zro6B5hf9Z|2WM&x7PN0MgM}wDJ?PKv!+Uw*Em1f
zzH(n|#ZAqH1#B>*{K%6EUCNVv?Hg~#4{6eDTb{3`2-Q|9<K@y#@-TPBo`lY{9nxnM
z9kran?PQw8iNQrv;*VRTlKhG6G${<h4B1Y>);eDpQc^Rrns<~TbsfeALDB>-0S2Z`
z83DTNw6?+WQC@&K=P@C`efaCxVAuHgqy_pVQZpmFR@RWDJvR7mO#HnIRV2;5Qg<SO
zi#si-8L1b;!73wdrilm~SS)Ti^c8!WZK>1-1YXg|8tN-3D}lV@#E;!mUw9F*ncSUJ
zfv20tKXZ$=tArO*7=fa{s^JLGZvvomdlUCiqVN9^7mHv?`FW(tC*8DZ;rb_daXz$X
z6nY`y(mynJm!Iq<(%j0F-_TnZIkovs-RRaTM?KIz2AQ6gc96pceY&HI{cD0M2tjG1
z(^`8o5Q!#ipxSpw*cIJlGh4IQ@+l`BC(M_Ua@?F1-2R>S<BP;%SIXcK;p0p-cXtSy
z|E5COCqyy2;i+K4X3U>#Ti>b`Op^Pq86KgOKin*EhLC%N$LEzay<2?O;;Kp}Sx9Lb
zj4-Kat(%J76|Z})m_gtzLL>v8pDNvqmk)MLUh+aJKd0!6rhq@)tRLVmdPhb4N|=p+
zmUv2HAs{&cKDj8~ZrB+6+;|0H3yEiVjG(@_JgKHE(^l_{P1!^cE9|Zk>yXK1Ba~d?
zUVAA1c*gV~$OV6s4mnsGiSQ=2aaqsCpL#V(6e+|SEd)|BWwNUo_m;it{Df0hDVcr)
zUo$ShBz%Hb>>U{iAJTJ#7R{vrnj?Ygl@7sWw10M0)yppcvyFPlLgb!ms;;p|y($g0
z;#W~>6E(N};T?J5q~M6-6hX*|f@z5^n17Of0{Veoq}VpE_5a7$n+Nz@c7NPgD(lRA
zDR+D3b6r!BrDk6ujCC+$WNb+oV~oj+!OUP3?P=2@(n5DgLZVQJ7SgIhix!pALaT~a
z^1ROZe6OMV_dL&^^F8y~ujQQgd7t-jnav{Yn0Q^Jlz`MAQJI<4yIIq3wWqPbppXS9
z$!f!j!XOF1SZ->zS=HLzJ}iVSU^wtK#Eov5<hox(%Bu?-Ak?a;`U2^U6mxKzyJMl^
zq*w={IZy7EwH(kIEuEX)>5q8ZQGqjzV5l>uy1b{=NC*NHBg=N0CSUu`bHBY5^H&T(
zv$&*0E#hl%6!GSlH@QJi_)}(sdcYtfzob_rIWTXATf5quNrgz?2@d2_B+hWV!UMTn
zm#_tuTo6ePlQ_;b-L9+bzyV>c4DVe1BACI97+YzdPL2eY-E08G()2x6fq7&*vdqf`
z_E2_YGJO%T<!bGu&PF^V0J&yU?56NYQc_{QOUNpe)}u0rBe&{C`{%ew*EgxeU>xK7
zs#gUiEXiDcT~M=68RKO2`cU37nm!KWDtXi-{Mb};_4{^Vy5}(cuT)gVQK={yLeZ);
z^HqKK*k$^02eSQ*Dx*QWF{hv477W%OJtmc#I>6L(?!illle!{^GC9O?NSS~=Ea~DN
zUF%m0P0t1}w#q}XPh4y&6f@ndSNwk*Ehi1w1B<n`ixeL**Wz<r>Wlhsq#t2>j~F4@
z388l+nvdVNv%iUbo&+{FX|@>-P>g)aZrkjsUwI>mI_);joWk_{ySCY9YT|ts6xVQD
zBrW(9cvbfW`|>??3x88pipWE;qRv?mT++VQMD@SQf5R0Qa~dI1a955u_Z7|sYbk5y
z+UY@2X3X5PHSd-OMU@SdYw_*gyC*o@*&mTDx=!W76_q78*-X7TxTmEaMks+cJ`+|-
zF|thA+TguDzVaTwb#jznMfpsYsXsF~bdjEt5Og3=*J%77oPcCAv7HUFVm8!O^__l{
z3Ra6JiE0LC9AGE>*l5>a#p|-Uk}m4x^cnO|3__wmX7$BH7_!O34)R}F0^-V6Zp0%0
z4GX9ur1K4v0(L2_B6*vY*Sn^XCXsT2rGCUG6*6vF?pb;t&UEX?Y2g_btul>fh{TSM
zaATs|UG42~V$ke{cEsz9w0ETy-jF9EHqjemRRBqA=USGFwJv}aC>a3=OWM4~&2~08
z>2uV6YM0(<Dh9VB)AYK{wHem%<tG*O2O_37C8=n91%}Ey5%=U!?<)`u)T&8J?bOP~
z?r@<Pg$EvD5K}-`a8Fnb6R&kM*N3GH46h=|F5nann&e6s=&#}bSMD1DCS8hyZZ=f9
zAC5KcqfEn?iFdlT{f{{SA9!+UB``;28yPK}GV2c4xpxQwi(?ed0dvD$E_3qH<BHo<
zR-jZ7R$%O#Nb^`6%-9*Odg9Ulp)Ny|ks%h{?phQa{k^yi!2MnZwE53x?)j6O9DUl#
zeG~Vxj+;%lxCI0C0P$dtic4kR>B?)4o~TX9zVO1wSGrs7*5C7pgtg40@>X~Hlw<xC
zfSZ9R@8$RRT*D*(w(Jv&Kt0i5%5)gxei^F&Gl1cTzzEL$fZN=IS2qrKX_V4s`z8g@
zX^`zbN9)}r>sTFymr2k7J~x>g^zWmLH*EcQyA`BBpbn6~f$VGEd^mXP%21>Q#BdCR
zD>wln0lf8Dn_Vw51?dw|bV;cLGlYmYGnp|vdbcg<=&KXF9})sbFf7m(d)r=caqMMb
ziG*@@Nh(nQ&;6#EZtvN<Q@xRHHi9;ATAZqxU)$sqZxPfcoC#?VVw26I|JW}BZ|pjm
z@5=5+P>K5NQd^Vfp?k0#a;^}^KsJ+1!_~H1t%;1Ks@}-OGR?4O?C0(MGvF(s1jSL5
z6DOMFjrNi5-h@9*0#9~gdUj@+KiAnW+Sb~R@))=t*6vGfvmQSEAT{jJ5=<Jrnk4he
z7uFn(35IFe2t_JmqBE8k#*^=~<t_E$WC4eE6-vO8l&5CkGGn`Z?UV9oVCkcaiN5J|
z?D?C$NhC2?Y(@M&<AY%4`}#Y+L^jS0u_|vF^gYdd_q@A%xyQ!Hma!70Ng0Ug|Bk!7
zj)&A3$544l;9~<LKJ_`5zQZ5HvH>)yCRV<(y>8Ff-XtkwMG*vMOEmx4=$`)7+wuy>
zRKWO<6Q-Mr*W4c=LWd|~@9H9I14KLnslH2Wv+o*;AR;S1DG@2jkgNwSd#qhXGAfi5
zQQ%fS3pQ|vmGQP4nR{&b>e*7KL}@40GL-8q3i6&)mMX9ISd0@bU{1QDZ_xIyMuV2B
z%S=(PFgs<(f>7IHbP!uNMoeTdJ#Ur_hfo%-S?jKN%x5=+=%PCvHb&~Y)$YM3!|Wze
zSE;&j2nR54cF%DQ8%qBwS#h#Q;)H^!c2De0<&)b#SEoDP8%+*maGT?=bZ6e9KXxgt
zoKRR?1{LLw$?lWzw_}UYs@vd1w1MVONe0=N4p+I%axL1S2Dl8Va|j4Yrev1ualfS6
z1?JMn2@CE3x`+b)yUKMQ<v}pYiUGex4v;Z@_s#CH=jtN|D95oJf*is{#>sBC$+fvw
zPsl3KS(PmCl69V>o05<1sw5rJj6fa=7m>h<Z;#`#`dfG2tA137O5X&}o`Xq}V&3`8
zEq~LS1tJrU9IT^6bH{gX;VQLAs3KJ`5>RVNNmFMJZPiRQrrhFCwOo`rlg*9JzVcR>
z#O}+Mj|?hD5vMTkl5YqGw~DQcf*g-9kS#3)VIefI*?0WeuGYz1H<5NEWhAjg=ED3Q
zX||^xSylnKi$-h4NdWFtGjoAG{spa`BwAwGAORl+eYD#Gr911Fz?EpbEr8a3g;T;t
z(}1wJ+IyPWt#!4*s9;~!#Wf-|MIgy&x}Z_;bARO}Lsg=*ha^e3BLW*Cc-t|>UGjpj
z?m?ofxN3?>u5kN<a@~LLP&S#=_0S`o`)9aeM5beDwtMn6Z|sVYt3M|=rJ32qb)D_c
z2?oK|1)W2V<f}LA;+8H}qm)YEkjVm$f5ewdHXkGK+otiC)I(6}-IMR5fFe4Yh~5?l
zXFV<z<mdHfUNf!3G&vQMubg#~{FcuiQ38KZ_T~H<H}YKlmAZgZ$~CKkFjHd+irjVc
zo5=qU99@IH0n@dF1pJRzx`cC1(!5~lxY82V1@rsQ?$D7~Sr0%r_(96&GtH?}f+4H5
ze4gc?6U#o!3u`7JP5HAy|Cjw*N|v`8`U)1Z8YjFREI;fm-GpftQlgkPu_xH~+jvTp
zlw(TcAvp>*-`BycHZku$5eDO6@hX)l6tFBa^o3w<EjO!oA>c9fhjJVc$@XW1qA&c_
zAR!6nrwlAoV!!MUdjF+1Notl>O{lI6a*D+(=JPPglT3$UcFn>1FSUerAzODb(~<&_
z@Y6G_Nsv9W-!|;xcd#7hB^#~m%>psMbI3+c^P4PH$|9bOjUv4)^TTp`$yYIt9n|Q&
z6Zp(n(>o>G+<l7stVI|(s}R4?A!eWDo^2GyR<+ohY1+t52}5|vK!O`9=3%z|$1Oci
z|F;WlQ&qk;u`#Z1!-y0_^@H_^zrqM2u%0k4Sb9~1>pI5>ML$eKW|xa&K~(`5>hPvP
z&0MW3z&wC4L)@h`2fVnE=LVPF;BBG)ut$$rkcKA(Ez1-=;>g@$2GuwzVb&_bQ!@fP
z%-cGNBDq>X<c72fMvhhsH`=XQ+%(ycNCGo35I1;ZvfeA}Q8$Pie%hwempa9?>}l7P
z#|>=?vXUdU6WS7lATr0eYbzxeTfy#GFq)_a88UJ)ZS<%Ub_cDVPh3FN7)}}KZ{Z?B
z;!HAICZ3Zv@GSY{1f^BQQ>x3=mtop{`?h^}kpJ3Y%T2&2vS^x7{_$=5>TvI`NNqHk
zPPh{6eJkzNwS$CGA#tb#YW!}OrMNT7ugD&$M9oC$w7qew-EyM8j=*;#P=ln*ixHh>
z(!a4I`}(6;X4RddUNzP9*ky-4;tSbx3a2o&c!eBAj_&y1?W}RJ)7R<Z4EZfualuF>
zTd@5Um)g{iRIU0{rVxY;_K8+c+LtHC*84?$EeXa#B_&q%By-k3wr#n;VnJyIY^c74
z<4Re=I5C0RlgB&vYfR3~T3;T`!?Mm7mx+6hW<eR{)FPi~s8n%17c~~vZ6}sxJOErG
z3hbdK@2;`8y{x=jfk`QC7XUjD2r*n{8O?00XZ{haf5OAqvX=w}<DpndrDG<L=0it<
z`OCan8$cA6%X!3%i`U}E;N~?R;trA0Xs8M+n~kAGZgB7Hm{AZirQ8XkBmRTbdlB24
z@21E1{z+x<G|dsEASf;hLQVj1u(ds<ox*fH06n5){gh$N3jbaZJ4rjIa@vC85l|mW
zI4e|eGyl=}J+YCU?KFC%f0O|F8rM}!C?_PE48Nzld8EW07uMCwNDb?ZQ+t~2rS358
zylTVF5paMjiSeo@v>|%u?Uxo;Q(@oJG`P&=<{k5ou%aqTd1pPzWh@%&ej9R(jSq#+
zg2a~p{%}`3;95L#%>R|?0*p9tKXb!u_wbTqOrwzoN7<Csz|4Nw{n<)Qxy(J-N*SF^
zi*na5)IIKepo-hYajR;B)Q`zY9cao*+{`S-2iYe)`mhtCB%m_PGtKRuPCfx8#eIwn
z$xV^g`K+0J{BkjAZn+Sd47%i@3TyHfB-Hsuv&fKH!u*Y?xGbShwf>e%*f|m~1DF|&
z0Pgnpu?hKcaq>d@R8K5LX}GF-JSTbhoMDeEF`$2WY4sI_{51Hqa~iy+>u)yXy-7@k
z$}xrDWBIoxr0j`P7!809Dukwt%+gB|{#+F+yfwfRJ`DePN$xpc{n|*0cGR!|6h;4a
zOW8S{$Av_>nz7M3C37I*oI{ObR1}cx0S^Y76-01zd;8cHB@W;m^_VEl<pC1YO~cde
z2OG53i+%iPt`T|nB=f_>;Gb(0gC|8PB=jg$K%q61@<uNOkF^)kxTdU5K*UHyGD~<f
zZLT`IY2is<fv1EzV5V{9*#+?@_2!4#bp+Van9qlvopuVGgiGO=6phiDt6?ysEs2hN
zN#@FB_K}NJZ;AiWPEtApv7#$(eq3Ym!mpOv(4I`d5+Nlbx=Bd#<0@O-s_}LTI0e*V
zc+(}B_aJ%t$1-f$oLXuH3w5}RQcOc=lsUrg{Zff$@{%Z(Ky!g@SW+k?-qHJyv-dQO
z+^|=b*~r;O7aP3zbaVP2LE@irRc8a(cQFG>36WW58H?$raVz&}E3evud_*yQ=ED*z
zG(708l;mFQ?9CA4q@)H{FUy=(*S&g`8YDHT`Y|xUSzT(5cZY|mt{#`lmi8WOH`K|c
zm=-6y)>ZyoWWCA}3z5@7Ycrpn<nD~|HZTKG5mAL0Np@Zk>uQF0<58alR&tuz74N=&
z)Z4N}fJrWvW*#}w^}5#o-d9#Xc~f$+EVHn=Ti?~&@Ng^1706*=7Z0E6)=oHT3im4N
zQ7FDV*BxByEjgmOf;-Lm0297y<lgM>O<^fOlv%_p&N8jy-Rjf4xyML+aXF4H?xtpL
ze5N-LtjYeX^Px?|{W)6<4HFX$I>7m7C;i%ZD*kI8Y$US7=J%Or4{8kuG(GAF^(3K;
zB8%C!?d<DMJxSJl)vwZ(1!#}Y(x)Q6v|Z$)le9Z>AErxT&>d!~?g`+j@iXHGABsD7
zy=HVe)2#x)fR2RhrY}7jEX|F4yhbh5U<mV(j)VY6+ZP2_ri&t$@cbBXN)nJ7<qY%P
zQ+8n}u82v(7QTzfE+(0|E9~hTb$DP2C2~M!iH@_Lw2NL)-AoL5^edKdg<~M8RIjmn
zU#>Mt%RB-!-e22Iw&ipF_kto&U`YgFW05V`VNY1&ZP`))r1~-#SrG2pYF~ayjrdG`
ziC|RE21l2D`P@}@%N}o|7#s%_f+ZmwE?NFM`|y|I1dFfL50M|pKVpJN{nd;1^4;Eq
z?486#Vq#X8ZLvS@RTG{f&Vm5#N<yS4^+J1ETv!^E<5MNPV7Xf~jwI<f=O#P-MGY%S
zwZI0X<z%=R8L|#Ap)Q|hH@4L@jpU6q^COkJ7jAJaPEa(5NHxkrfyKatIk?i6#3;Ha
z2S8sMgDa2g1KfQ0L01y*At1!qt7=&61j@-Wv+i&oWvGc+?L}6EE|qB_libkrRWOPZ
z!po7M53vg-Q^7o!*1?|-rYhl)0Aiq%$tLR|*Co;0XuD9wPA-@pd0EI}kGX?gy%CO3
ziTsY3#gC7<>(BSUODwO0gcGtnUT}{)KS^ysO1XmLWG2b)4XbU>&lFJ-ej`G|;$%V|
zg4>AL<-+a3;n^zqB;f}5PjS$jL@-I2vM_anB48S_eCEQb_Uk`X^O^1DXh|aAQ^)gy
zlj>_pB2jNBSL}HqDMV%ICh5%JihZ#MMyL|Q(L?bRj~@E3lj7kobiuX9`F<}F>hW@L
zK4A;ux|{WB!SExo(hY{0j<^+=r&O#XPHoO^9qewVefa)$O7@+-=LCP%^QTnzOJpB7
zA;aY&8_bFIw%QU0Y%C3LGz(gspf>UO;CA9HQxC_$ZgYNc+_l=7g==*!3)2%E#HtZ@
zW)Od-KVer1QDt+K%Sj$MwpFkrtm5RrKB(%JQvJ?>kZ2~R1h1c>2l7GS39?RQ6Qm1>
zkZi`y3mRUjVHKmAN0?9%%^*W`WeF+WWIKHj_YS}{X2G~BXdlApU<xj`>zBk8+^DTZ
z@<*3egzzgyqL34xwBOzq_uUpfO!IXxI2dp#CT^vj_jKHqt@JR7TYXb7S<eLaq1V`B
zc0&mJ=q<6Z2J9%{Qcw{y&9rCid&_*=5`t1BAc`azgO38}w!%)jC%i6ofxfz4$}$qo
zuI?^2(YLB#IFV(8KFrN_%ym6lc|$h{WI%pcc;y#g;{JBt0uas`!w#8cDvRBN^&4C)
z%9$wSioXHl&LjGemZ{VIY_GlVer;w#2^Lu>9KM<m3zLLxmf3x?9WpSIx*1@n3zS8&
z6~2WP8C_7JyRNromqup1sEQ)lV@q%Xd!S$pb|A!1^WkAP_-|j_>SGyfsF#|QuieO_
zHc>Rd0hQy}D_;M?eYs0>;-s%V<rovo`;uL**Aw1^FasnZwgqe~Eq%Ul9iH>HY*_Uy
z6zr_rN}`#t!yQ;ExpHxB3+S#QaijQqc}aPuLxRf*CFa8vuP9-fyyP6y;XF6+vWOs{
zAZfx31_MQN-+a2>E#6wcE}$wHai<Dl_Ggj`h4+7&o4npvZuLXlEZT|{<dm8C=|LNB
zRF#?)qZ4H)lTkNhvrRGgoe{M9MwbfkDREfCRvz$^_(}`U3tqWK!D@)31<+?1NML;_
z=7~9WUX>D?nKNOZWL@G|eZV3bkG6RYROlWnyz$Cn5BKqHlgynZ_Kx-S&n!@>)2^Xc
zPGu=H_=C6FDH|H>+~j+627QW0%BVtSF4e@%3#zYZ@M9=&dbGJEPr>&8`^EOQrhZ$?
zpP*T1>P>Ms&wbPW;UXfdkJGF*9<b5r)KE>Q1vX1W=O44jg({}}1NaVORi&cvsu|<2
zJ!2E9L$4YLSS4>p`zGW3L$WD)+8!BO`wwu}Ac0W&O9~wU{mu4;P*jCeBRbFFDy#~E
zvU&@WUtWtvso_zA8!S+6YWPd`y3=dTq1tT{dKL6sTw^m*j}dCA^7&ix5_F4y*RIVE
zg=IuSflaPTYRGvO7XJfl?bu>}tHRr4<B#&{YEeD@6IkfkXYG;-|DVc>RrCrYxbvGE
ztSbwRJsHt-Pm#$RDDQ%Rl%PX26#iUk-;ZfLD-@LJ4qp)8FB&k31`cg3cG#af>a9Xf
z?OTlGQW!tLUc`mH_at}KH=!ap>^GXQpomLKS?F)QZ*fgps>C+SOXty)T0j%R!~p6(
z-AznY6X(?XR)>^gF9?y3=DKqiXt5WgS)FF!4fbWBC8wDiX4*Qvv?(5kB615dEIP?T
z&pz=&w_&X^WjU}mW|IbV_$hPmv8I*wm?KE)DP2{gPl?(EGo{`6cG7Ly8<m9)Ctm9y
zl63j(@wk2N`H0(A|8q=zp=8O20*YZYFSlD>^cHyi<v0io9HIhb442xwpN+I!1o@6?
zma4E`l3HGPik<qnIp2k)Aebu3*fK~V@-jc}>q@sN&46d?hT9*4M?@0f(5vgZzZZC(
zC_#2bR6v<c75~3?12^ZyI1vJmmU48drf32kBat67O;2|PbA3l)iuuZqvh!qvG;?z7
z^F1OXUr=?jZWMt8U8;%Ji-d(r0yh0zH}?-^p;F(_x0*e<vLfihH<5-QDyeoyFyeAm
z1Oe47V0Gd{BRZLBers-b{uBGwBBfPGm*YxL5QQAU7-^U4mYwK(K(jHIOL-A514OBG
zpgZz`z9pUr-7_goq%eiGu=#23%B%Egpo~Pj=cx1!8uf^Rd>Z83q~*Bs;stpLvdd6A
z60Qa`G&7;ETe-XT?Ti0ZA{NHL@s~KeL0>;RHuSqPszYT%PBa&+wHwyyZq0`|N`~jv
zOF-GujXGJYKiG^q;e|^=i@r{2=Ipud_J&$H68$KhDio=M@WsqKwXUl_T_1xRjpin~
z5xkju`?-hS^K_H0Rd_iJ9G2GQxo+9Fdh2+s#8rZ|ql*mhZphcPJo2jB;*a#K7(Et$
zJDjTQJRH6FU~s6B|DRk+v7<C1IRj()yWs8c3;<JdhG;F2bOl68{aU;DCS|BI0=kwF
zQsRIGVRR3*hG&hxDY*139RfNpC!zaNNE$+f=x|PcK4Q;$O$Tq3Gf7b(KA$e^uU-%=
zJTCIbOpPOZ%K}3U0xbIsvv5}M$|)L0%JTvxh%T?N!9Lp&JQ5rC@g1tTFp%OzfeTXk
zh$d@*+qcm7#_IzShY|_q57jBH{<hQpTRVRcM}`Whk)KR2WCM?LQ|^m>j0!>d#2~qT
zm4j$!RvogZ%+X^tiwJP5>nw7S?32?w*g<J=>3eA=13A19TrSL6XPSef?PW3A#1FVs
zklZkjffN$UT*?<g(=4x-&+<5dqEkQ=Iz7V*$ln=UV!ct~9Jm&kM9ew!&0u1pH--8a
zSmYD_`C;%~vRW9wogrtl$O(N5hg7QAS4_2C{?LFCv%*rNq|lg3P`s^RnjKyz@_jSb
z4>k*78jM!zqI6}+H2o*oA5Ln#@yU8ZfhMKPzzYV}=o_RZ49sQoO}TyahsclNe}oKR
zv5?U}GRPkMDdb1v3X#t$u4H#5=Z3rgQ>ndiRb&^9O>iIkNY;*^GxWfzI_KRE=w{3I
zN2I5VfMp`H#hVCnmG8wiE7;u4wx)$|CsX@Wfa;Qv=3jukH{E1!ifMe>YDL^~qFw>b
z)9^>`U1s;y)!mQt_vJlTF!<nQap~U|*w}Dm#1tkW*)pYR(i1CfOoB?k!L$l<*!1BB
z4u=nhYy}he=Fi-nCp0{70ZglYsy4^It&D{<h*)Xnl)GJaX-LH41l3F=k)T8)i9338
zj~m>f;afN1TjdKtLOp;c#L%PWQC6neVb?Uuze-QsSA-y|$4Ngo@^_UpT)Vy6&y8#5
zva9gB#6Hj6=bF^s3;D~jMWoHS4RTR4-2KBEetn%@inRGyz%Bq((omJHZL`btG7>Tu
z!s@_~h->mudwbJc-k|ccLC@;3MXDP@R1Jc1VYxm0br@AcSs|Xt7BR(A(J+%dYp;Xx
z8RKKtzpB|!MR_QclXM&&LyB4TLHtzfbwd8<U~ahCZ}A`19!ym}dUSFiYw0OJ$8YHD
z54=<mJyQ9Q@X;>*Hoi@Nwd7LyD`LLXKNKpCg4+-2`iv`s_N`+-9jFsOr!*8jpnfRL
z?7P^#ANF0)B@Hn_@C#4~Wbr$?f#baJ6qK04Nkk^>S|o3>-C5u0R>?8>B}|kkbwHT+
z=D*qQh0oQ>&IQK?xCj0M>udQ(!5i1;riJ1EDv2eTZC?gGAJBiG;7BtvFco;+!yX9w
zU8qb24(!AL2Iu0G_zS;$5R_Nd9w9EKCsk7+lVTqKFnFoA>aMch(|3<Lt#IOzVk17C
zJ=VTlUu#;VQoT@wS5doX^PRmY*m;_&-4iF}%9xR5#+Y@3-9M)(omxwfBn~$1TDood
z(RxD>_$xL!nSIQ&Bi(gv!~ZOv#Q%j0ZEjL0v$&PZm>QA7m7E&Z31cFA6P9O26U$KB
zqO#3Dm$>KWM#4&aNs()POJ<!IiQN7bpY=6^&vicz3^UHY!aVudUj+;mJT8|qy)(ae
zF;?&Pf6{xEVFIU;WKwOXOD+Wt28K<V+1#J&4o%dn<WFK{L@bq4_9pXmb`Ll9)G&!6
z4VH{a?+IB_e>lnnHoa0io0L+w{-7HE9eZ{*PoL{ji$Y6PA&tFw*WKH@BklDk#NH~3
zP^|7{HeTdrKB~W|%RI7z`g)`eI{c-iB5*YH8OWJUEL9@ooh#hNr}P_ShvI`~YI8TH
zO?a8=k*qj1rcX+)8E}t(C%MIy!D}NVjZ;qS2_5sFHSV$vjmz0OnE<{Qs9B!TZ12KI
zIRP~RG5d?8{mW9Db=|7J;j=JWge^0>ZL@@@Rdza?){VZsSO!~0rnzlN(6ECRZ{f#>
zb*Z%NCQh5R)P8!Yui>Rm4o|g;2`y#3(s*;)<Mzanz7x2J0+sr{<wOp&M0&`6740D&
z_Mv27)pmX9Nuo0S><jkh$6~uu%@4_XKq&-7w4YL0L9ThhzVe7S^b^^-Ak>=@GY!w@
z+nbif{*V_vPAcee0K}GNQrFq|wf;~_;YX{1jqlYL?7qjnA>2@<vn8aGm*&{>ABuf-
zzn%`n1)i8>fdCb<%(O-JQ0=AA?eZ}tR_d1`i|o)9{zkHKG{gIVyJ*gR(9Wqfbtyyw
zf-RV%@CpV#Z3jK$kCKf$ycm)1(>DG&Z;*0@u%#!^Gg|S>Y|a{Q%PSmT&1{!j%rt9P
z+C!_n1zBJvu~Q?RYPN2)x2^Gy+)3Ixj0+@4lLL9~Ctt9CJ*{SZ<&Y?iKg5C-Mlm>q
z=J!~a8AdVUF!Q1%ZW0ls_s?{Zqx5VTR%OC{5hK7t;aTp>#p+BG_!0Y5qKyKNogH&Q
zXM5QT8uMX+)k0GY>R1%OT;AU1zT!=!y|@p#9I+z1qit*FuJuM#LE&5o8CR@8gMTI2
z!`mX~^a%@RD@Kf9T@5RpKzNW<xX{|Sy_v|Lx>DR-)WB#Y(#D>?!<%xdM@oULoRo)%
zxzPT1yEk>Gzn|U<5c0<t+9B_#L29w7eJw5yNj=2wM5sISZ2aY(4IfoSm0Lw>k9*0#
z&3<vWSLo|RW<?l99LO`?+sj_l%^%pgf}IL1mZ5=gPm=j-s_ik;D_gL4RFDgY2!=!j
zVAPt+ZTvK^T_FufWqSbhz<X#o#=hIqn+VDv#>nNE*+cqST;(WhUn@YPFbi-WKFo1<
z+FjjhZ<H@3Stu??_N{n=efb(SN%TeTt+=d)ZJIjvRH~cZ)bnDax|q}!2onPfUe>8+
zx@S%gEfDtEnxw`nkiuz^k57ZrmS}Q@xreS5_ehi7#Wdxmw-Oom4qv-(a^l2em4H@<
z1#t}R$fwy&g^G286Y$DL5kE?55u}uC!!x(p)XO46x73%jb*qqC4B0v!8ReQRJ7&|7
z6SATSH$il!pm)dK>+ZO%v8s%Tizbc~qMqhJT(ERP%+srMccf1<babwjo7B~u*3t#z
zBhonperOeMq$<cC1@;`3o<oeC0aaOI$37!HL_Y7|PXKc~KgCeG-)_$x)$sZkwMKyL
z-3!VQjZHmd^TNi~L}PGUnGax$ctbya7PS6an>WEI>{3`GuS9w?A!0qm-MYeSh-b54
z30N)7TDn~7u3RDpc^lyWa!77sA9KbTu2ZLQXM?L*SSGqlqlUWHzv^%Kl_fAD`01U&
zZut)psZ8&~7E{T)WS@~1L8-=_Vm}PK_W_jlKqFPEP=rgFIy^{Np=}vKI{|AbK-Bwz
zgq>krrk(vt{ogOqsz-4=C2vZCCy6C($N6^sC-wJZ<BZa^P5eMf*r%EDvB5JlV_v&K
zz1e)wZQ-O!&l4IAcM68zt2`TyQl3G$NN_WZt&JUm74y|fzA&FYaI)RtKC?9(TxWj@
z`vq{HDiSF?N>PZT@yC+j?b!{wcHuVjS+PndsJI#7E4$zPN;|Aqqms$$&1VY+%<sg#
zuT<OCIr6)_YMOV93DGn&Db0P5M{`sejg*_g7y~CuHRms}i_a09?7U8JL{Pg3^4PE`
z@-hQbE;R@KbSs}zB9Fp|ZD6Pg<t4R`sT%Fp!D<mC9G01Ifyok^%YJgxw$&GMv0O*#
zZdA0=xjN09aF^{rP=P%5+deb}lq?^mTsWT_w%BP+;`&Lw6PY=cfzLtrh<%=78w8@S
zvWtSa)w}D9nJuzXn;D6iGZ5PCFy`ZK#0KaHL=`4X5xz?_Lw~i;RmXLeN?Bfnl-O(8
zt28}KHv4D0erGCFgRvVeYipFPqDT$_@PqfepU+Y=0D!6wb2FrOlg-a9>^UF%vdkPP
zx>4W&FPe{1e4(BBmbZ%RILIOgqDgM<OSI>`8+Q`|3!Jj6wu41n3-WQFW_H%Qp0Z4<
z8R@pdwMf`xC)$6$@n>UlGT?;gEZFDLMBC&&Z|VnTEI9xvjWb)@+2`N)mOKgsW!dE;
zz=2L9^=A)#=&#kUxDXqjAE)HN1Fh}Q+9#uHqujVO0k1sA-u{6<CZ`n2CRs74py}qS
z);4LUzf_k=LaUKyg_4tMH`f|M@f)!)T`OAI79aUT2!qAH6-$b_AjPiu&|828saTb_
zkYsL8vFClK1|bSa!GvzFLKet0UFO;GTQx~f2Bmv-*(e2S$f3a1o^pE7_%q3&$k0Y*
z1YtH~K6*PL3%Vt9Eest*Z?_g5m4dfSGvtxrwI>?f*PTR&<gusl(j|?ZWiDOnUb)KG
zS0Wdv%{Wl+&oqUr+?kzyKDwZ0OsKxeQTUVpS>-z9dYh2{LftJ%WT%_wm$;lh{*>S_
z)Fkpo<iHfO>>f8O*V~RkA-R`Sv+^N#>L70nVNXfv6$)2|)Kj8)|24Oz(EkJPbD}<m
zWGWkPa&Z^?8zL$l%O+S2lrIOeaJGEQRo328_SnL5k)6UOSu?xEjcHwbXl>eEzC`<1
z-BmgMdSo$bM5RFQ1^M5X+=~NhZPKg_8YixhJgIcxdvuq(eYo0*q5(~d1g#VtkFVIi
zk?S?z<9N(er3RC*;vKwQ?Gl!I@Q-AxD!CJ}<FS@q>OQ*DH&`UoC>su01K!KB=I-<*
znl<2BLS_RW2+efKNHk-bxfPrBa>U6{jMx&xg`8C$G_G@7JK+LP+0!*q5Qb=c02wUF
zoN=z*KSKY5ly)bbUua@Ly*fB2SbRpUUPkdKmMT)+)YzKi<^-!s<8~hb7R%QPgD|75
ztt_(4d86&hdA^ke@~a`hK(?Ow{75%@+O66w1hnI5@{Lc$8qu{R$mys^2S%!%<Q<Sa
zr?g^ac`&=5O1+cG&y}ilh$`gr1s^%>)Zo@P<93{?l;nZJe-L<uGDW($Wr$SJNwXSX
zxlq$~z{aCQxI?tSGfj3A*QhEo_amNyvRM>R1^Sl?dnw!BnC_Mw4$*xw1`Ia7KM+}E
z6h@<b6*y>FUAJOuB&CK+U#gh2=3Vh0*dxwfVQ*;Dcvsl%K=5jB<D+1^FSIeOk7?in
z3D-3IZ;*C{HgLgV4ymoUt+aq1W*aZ^zNySgMX342aB2q?**VL+zZ*74z`%^WexS7r
z{6Pe_LUf9b4ze4_W)850k1Kr<mkDmRdW(!=GKW2P2N%8<`!U_`Fm;(gv`X4V@NJ1O
zV!jC4KBs->cyKT~uuQ%c-Gp!*8Z~xl_e4I-(3esW%58<}rzn(Vn(YVelU*7|1&%vY
zh8WH13IRFEJp8ro4>2{+gJJ&^N)8nH<1Dl8C%C6#X~(MEse-PQokc_&Y^8g%Yd%nZ
zE4-#C6hhCbku=JyDu%*m{wa1V&W;jbl?ZK2(scKC*gh+SQVI!ur3%TIQ%1Ni28U-O
zrkW&FIWv2b+j~`GQTohhfN;ils}fF2YxIA5-@&Ueua2@?*Qno$*AOk+idGsDNHQkP
zr~B+L-)nDo{sYnmH!TBQjESb@mv;LbYLpjCDNZneuLhuDkc(j5jwHJa-;Hc84Bro8
zi+mNev0*n%cHKVmHaJGY-LD<4LS9*(?_Ox!IC^k4eZWw~PoYTLtT@lTu*)A=P*_d8
zTq<Wx#d+RY*Dd`!@?E|E9ph*jo5joR$kvVT2-}DVla-f4KXBZYclX+>68v}MA<1zO
z5~5|s)cW;Q*Ri9wg_~{AMQ=tMvUL2;9=|S9GG8w!&E3mN$A#$(mI4OmYujzcnLef6
z53>$EvH<C3^oO=#OK*~DiQ+NX<(3HGYd*5`TX<vGvx)*og17hnvXe`79pIhk75ecA
zkcxW8KHIhbQJc2((Wgw6Zc@*k=*B%!JJcx|@l;-*26mXwPjt^L_vUWm(5oXr$8gds
zeGc2)x{V_Z^fB4)Xgw);Tc|mi=Dfe{_Bv{lxmR3NSj9Mo_QgkT^hL1o#<0(y>^$IY
z(N8S7!xS^?a(C|ys+@xBS=$d)S}~=Yjt|(SSA^&kqL>qv+^^kd;9_2854^73XGpzh
za*g8V5K<sF!y-HOCOac+SSYER3hiBAT1d+jf<e41nysXp=We!ly&l)THBU6a^e7iu
zW5_}b+T)kllF9~0MriOND(nQn!Y@lPb&74lpIY_9LRcUTm7>KGXuYr&_PNex#WiRc
z9vHTG(hX4QZb-XG^wV^-9nwPohd4$^<hpB641lWJaY6jIG3QsPuD)_vh^R_Qpa{Jr
z+5FSn-f}=YToMn<K&yrMk|-^NSTNJxdVJ$Kq>O-=FGZV|>Ip%aMHu=QHj8s3o1a&k
zCda~AjF1*@;@(NYuU%ADP`0aLcuS*cn#x3%ItKjE(wpLU)`^rngQwrc<U_K7rzt%U
z)6H!|?Nu+U!UVBnf%K2@ECBGeM6>r|+hJPdmv5B|8+D>&@ntJy&o-Yo3BI2fx8U?B
zw8PBt&OkCy6W!UG*o|EyLr}jE_8lt+L~X)VX;71Hetjo?o{3CvUSFz|da>QXw~~?}
zQ3=>HELd-KXBMX57@-8fza@Q<X#QCg4E^4BP|c%M92f>a0nQ6@<)ebKZ)2bQxS<w4
z@nLY>n2(&3n|Zn@nBH8^`7gd7Gd0x(18Q3(5P5|-p@0gp%k8JHD|#o6N8uRn$nbP&
z=8G$A-!n8NKte1>aMy6z5V}jcdFU=Xy^+tub(cCmDy}5~$KG=1ZT7=DJ^`0kSb{_^
zSQ0i8CiQN&r=6fSNdZE$981r{<RlyblRV8%cvZ_~FexM$WtdTY!M_l$noB3zht~Rk
z2|t*$-cypYbVV}n_Ol<p7I_Lu5zdiQO_G&WfQ=HMZov?{a*sc@3#&t@okW(31$Nm4
z+i<ZC6uCA`{Ng~9M>3FT;bEo@wpXt6cBuo1PF1X6!r8s;V;du<fv#|LG#knQ1mnAV
zti60=q(1jUCRK(AE;`5(xl(bbZ@tCN_))W{Oc{yq@rbD8lSP>SP@S0j?1PPT(g^3W
zcmyG(jt3NW(#_^);?Haod1RROxTX7EIjr9lm<_4sk2b-pv*OZl;<zCt+=Shcc@xBy
z)und+*ZL;7EG`A@^tc}DbEc_yz^?x=vJn~!Ceo2(tD~K>$gF0XJ66~}`y)L=YK*LF
z2yO@#C^GGUlQWmu4trH^9S=|`E8^oa;F-hCv)p{+nI9T@;mKAJObYQ%{)cqgv@Exx
zk^T>ua3=x;oK6uZ-jm|4ncBGEuzHq=%Hyi(vcyr41EvjhoiqGVVNfS6t;19}C%{1*
zn&f(3=}(}6Td9J-0w-sh>o0UCyyfW^BnjA%G>QafVVQrfyKDTb=Z_48x-9D!?y%(1
z&BzPf>9x!aT~Q~oa2@khuzXfzx_27*Cy$0AAT^BUYrDA*pYs=%_yxd(6HB9qmFKui
zmUxo@2{2CScCP?BkIf|O)85Ugqo+k_ME?VAXsV?QdLp17quRTtOTC^*zv{76Xh~Hz
zzzFfyxh>txC2HhD;Z@<{kL1ExjE#;1-G4&P38s8+K^EV9+Sv^|6ut<c&~Vh?Xfbzj
z-PcaBk8aW-#oZ|X23`-O;Y72)r;9K1*Ah~MIKEs=n(6IGcH`gv*Henh3R(nAPI<-R
z{}xray+`!2oH<H!(PvCIy}G+MhWS%#8d8h@_%tlu{gd5UpXj+c4thWl9|nJlx5I?J
z{$f`&(!U*Wa%j^CH+e2BHLxrRBYU}Phx`A5UO{S}MU18*nPz7j_u*)NVVSpKR4Q+f
zwshUxkfURwS^yTl7_6&{I=aikFUG5ts0;cN2sLAY7x?zYuI2^*D*B;zK+^5#IFg;A
zZX5Ug*YY0%?4hYhQK%N0n#%{cq^lG#?E)?=!h7x9T{r6woxl_LMy6SkJH40w5+?Cs
zlnRz4*zxCS`g?8Ek(<`je0qjk+b2xqHixX;21p8#8w&RZnUy15+Y8m94_*B-3U~$A
z?+GUO`Dpik2hB2~f-gPC%Z;fw!o|O%S3u<oTtrii$F$t#Sr}!-!q@5rn7yjRee`p9
zLyYDT6(yn-b6~g|vnjlLy8lt$(mScMIsXh-oTc|jiH&4A+mNY)!DU9TcK7^n%pDSm
zR7}{1zCy0~`Z>1*4KS+VE~(x(qPWO(Pw8$hde{w~sXxk!Un$Y9F+0lK`N!#xBnjC1
z&@t|rImmPz<zC#UchbAGumnDF)LYC=9$-c_a+epXt>2_#x^tVh9o<^6ex5MgsVIc6
z7*T0@C-*eppXrvg)|>C4Q>@r@PtP$Mrnx`v(Dx@TTP4d%a5U!zcNl>x?iqrf6rCH>
ze~@d@Rc{W}SnA?Ohme37HqbQ*gDr&E_3dvM>>ju*{2~%G6o{-F!=YoIyChHVEPEUw
z7y}`<my1VISVorYK4JO&>s?&ET>X*ew?$Dp0hopR;(YyeAQEE`yunqO(Pl!LoBO8T
zX!y82P`i@xZLS>V=FiZZ5Jq`;>R}hTU6hOSRP0XC7`j(_wwYh<+WklW7xp-GvfRWx
zv*jZ9YsaG}Zc|doViqmLMJzy2IJ0=V`<O78^BtR=9&oGsA$(E9Mb)~fcSkzD-#oYY
z0sUu*c}XUe(%z+eMt8H|WB2wvy*i1*F(FQ8UQcsNX6f_hgFJ&F<|gHu%UipC<q?5$
zMPfC`m0*MZKWVAv5#ZbradGVsE<s=qNxBdqV3L!4{U*WQHZ^WQrw{}#E1d!YTZKHk
z&|OgsOg4{a*uu->CZ5d3O`e8&DbfT`sbO<%b2E->Bs?KNNs{E?*@CW#2+5P*yKk2@
zl8)*eLt7|KXc35gTJFvtseB)PXQPcOvXJabGY?m|Z%e(6w=h<#w53(O`EZx}YpXJn
z<Q7DLj$0sEWd8e*yLqEGFqjpjkla~1p|xw?%Ac+a^AR@~3(@IUm99@0Z{a4&Due@q
zQJlzx8SaDCp2O5_LIuSu)YyQDU;4i5a!aENP+sO9*mOy9hUMzGJ;`R@ShuRJKW7)B
zc|D<Q7Qq^q{iMG|0brE!#_h8YA9=(*HeYQNQ03!rqZ&l$vAw^o{w}T$xO{&)Y~s^!
zlWb80TN<%0Ze_1;tqC&BQ7BtDi794!Upt_iw@}4MtsII<sZy`dsiWQ9UQKvyIW+KM
z>wyI!oPTumFOBb!6nQeD<Xf1BDl480Y;Z+a*X=alI!cmK(haRhilu09K_e&g-bJ?k
zYnrtZd36A^aNa}I!IvMfAb9Y^NYO9#$O2G@Nku~;;H7k}gEvPO<=z=*)ydaE-?vba
zYhkzSpX!d!q&8Xgt5p$LDkoCR7hkxaYpW{Me?+!LdW}(?YQFf|RlnxTDo}tB4iXmf
zf9d<&lx^O^yBwvG+hSw{*W2md-0Y2cr6bW_@n02thN=9>ogE%b@JdWPPQ+V?ErlhQ
zRAnEVr?m+Z*s?c@XmT|YCrAV&nHgu=vJdM2caa9f0OjJ)fa?;_NNg%izTYdee{K$I
z8@ihQWpsKXc%<qC{3CUPjhXN35VKidr9e@f^KL)eZ7X6<nhr%$N*8e+bnn7QoYDDb
z8?(k6!@X0^#}se6$u_vfw=ICeC}n1(y|E>mmv`BzWBs-CMkmR6<$}D|7rwS_uB^3+
z0Fb(DV$3kj4%naP*Ip25pc0M}Rg$ZA+FLjI`bH0KV8Zpf>ofbv%l;UI44EdJj8Ofw
zUv1SgZ-{35^(HdSydQ1;<K6_ssYHEF$87!U75n@$e<e-YOMwKveWdT%#-Hug9sSMo
z>4hi8Ud8qB^IH9B6PNpwvZ|r?&MEQif7@)&TJ2AXekM)^M*zXDIArTC@<$X<;H=Hk
z(FMvdosV-TjP_S5sFH3pau8BCU;JTr4Dc2SAoYQT3)J-m`^A&B*CBk61xl`zXr_N{
zH!tv4%B_*6Hy8-gPpadtpWx5NvI;ngfs+Nl+5A=h2o@RWC#Z>5%3Y-5LGNB`x6}?O
zuu5q<#M9!FZ-2>dSn2PA!YpY;Q-=O1W~rZ?@T%?mls7|d;QrD4W-Mlz`E}g<vX}>&
zH2S<RMH#XbhEkGJe`}7sZ|$tc>kfEKz7`sXnOeHSUJ*j$B%XU#2xkDKji+na)YVIi
z&FZfetg`Hds)Fntpn_@U@ptXE`@KAdf<&q>i-sA`aq{=}m)}GiLzPC*NyY7yTn|8f
zvKjn|ZBr{5LTn)!J}$`uu)d)ieu2NF^sSJL6b<H5P1{dwd~2`b!JY{*c!Zo!>O<Wx
z_TqSN%btMtg;Mx2vf%7I#oZVayE2<bCn&Z+lL<Fl(QivJzrST0^!8dL`BalZ0;j{9
zNWx{9t()x`{k(B7O9rSBS4339Z2ro=c#$^^91V1%4h}Dd<A!`>n>-NP`3m@2I1<tD
zR}^*9%?C&9izB>H3H;hp#)Rzb6l#J5B<`~FOT{WOQmEnLxWKAI!ttjQk#L0g21Sd=
zjfLmEm2Pcq*&5=dB48VMaS{>cFfC`f```3SseT>y9~i|Xg;Gtzf8DsP-k4oIvYL8Y
zJ#&(|ex5sTyEjp8sb7FIrkW<p+!w38<(SGbPRU@o{ZUtEjppaL(e4m#H1mlm!~FP=
z8}O_@Fb5cj)P~*&jKJmYqwt*2;bpzhwIn%{+@1O5(cqmak$*~b6YK-ehK`#g=wtv5
z&vBFg@s!%An=K}iHdl;CI4$nXSgixdrbQKyI~I1gwt4QGy1I9g)$26@iMdH)VOyb>
z)Rjl{blf|$ip3a-dR}v{4X*noVK>bX{OTJnw*a(R=7vPuV2iea2Quy_UCf32f^JOl
zuHc?MN`7Hi2q(WTGg%-jX317NF3<*NaxE<o4CM3Z>rXRnr@J3N4&N1?RdHG9!y(|6
zVxBK|*LMwF8hX)!6A7`Yj9OUAzEVwDPB8Ep5zP|5MGryE%Sw68BH5N{N_M!UGL>wj
z_K<pcDG}vX`KT+Ob<<x{1v<bSnO3#QOcMThB8?W<i>C@lNz&nn=z`#td%&2SUb1Pv
zGUz?B!MB}NX-O6dAF5IE#7DfWLGa|-*vGC`Ieu2UT68r7{TotVtAlofl-J4Sah*`M
z(U&2t0%V7`*#pNlj+R-WWl~6$1+$Y%D|W7ft8I(7q|)k1bPuv86c<qxZt!w&yZ-9h
zY+#Qj^1JeOs&TrYKl7otb!)bEgc{^*NGR|#-{imDn@t|pL=f6O8Ug`iQc+M{L|~ah
z1xbb}oF6|&Q8bAjG;~3KQ?Tn|+1<>wWo|ou6OmDFbD+}_5~9ZREq61Us54a?NcJ{m
z^W4l^^gqKZaT7AZdZ*=@@BXywPSOxY89Adxss@PDt>gc>YM;_5rOy0P;x;YPb5Oz`
zE@tMM;qIbF`ddGo0xDR|;ht{Gr$-~A;x<M5iX={lMK%fSQU)YqCGNaX-9|tc28<}@
zBo7h>+Sb1{oaseAkoclkaxZgpkz4S&p77s#f;hreZEz(~=rFMI+?wHfzhUUlU?Jo-
zrh2S1IeLE~a2mSmrord#vr1Kt8CY07q7eU)vS*Dn{~-4C@4C$u#Qy)k0zdr#ABtJS
zIJjp<u4z2Mbta|B_Xt}h>n<;JW+8J+{2HZrAH(m?L6qx%!gn0A2{p~51an^cOAyRC
z*lR!^Qv}S7%Gy<3Tup)XF(`-pURV@T#bv+{k{UB*ikrUsn1>sM2mcM_z{ut<bbmgk
zFYjn;F!N@)JCoPWg?lir1b3KoT*8f0V&&~1xIa<2R+;@w!6+A>866aY8Ih&^yrXd9
zrH?Eit$c4*5uBNQ7r0X%@REI;K~ytkeMvQu1b5&WwXlSMLgLHH`hhDu{CU@Iu$O!!
zw@8~QNS`TY<IC=bseWBKW=lXz5ie)WFZSKZ+Vu-+8e~K6YGg$%k%sytqKK4{cIjlT
z9$~NS&NTsw{01!rDR#d-vsgDwo<ru0?z4oAq}s15b?MK0Dxqf+2+lw)J1gRQHE!@4
zH6v+Dhcme0Y=AWVVez=_o#4G*p`I;5kCc)5oL&~B)MWGC0sGiX^}nLy0e2N{)4UAX
z{6z-8-2r=68+AA2o>-yB6&E4>fV>M1@DY307CllmcE^T{LJC>fk{8bj7W7w*-T#mG
z!OnK{eegfI?AVp#_zHOOB=s6q+NUNpdSxO_y~qek5*r*8J{6Sn40Gg3d(Zn`exO$C
zISMRjtF^ov>`za}HO*0hf@o~+;mlMD%2Q3<g?7)vxDWXcc1U1W;rvJ$9d9hn#5Qn4
zV&Yz=oD^f<Lb~#bg><gTJ#7EeL<>#1FLcWBn?b(ucK#l3oBtYj!b5t+ZV+li9<tmp
zvEC+o(+)3pz)`qtwRb~2mujBgU@QNL6KP?51Ek>a_{aqk20|$QIY`gco(bgagtH*B
zMno9XW9_fay{yr(ISqKhX=cD5!SJ4X6ekotN}r%1vPv>rehnIRQY%kUD{&0olDom4
zQ&&Y$Kx?F$Bg~T!Gh%$}B3sm2EB!bpnQWgs6xn1`^ICAm^2o$~q-QDigZsucc>?&&
z=Kk-4v6EEd^WP@qsP6wE__fy5SsF=-Dkxj&55Xtn^$<e)KGdwKHVl+Xrb5o6!Op&3
zc!%NvWT1iFH9eGnZ_uE*R!s6-Q7SIEa#n)=H`^N?($6hefdC27j*ilfE!m8^B?z1z
zi1{d2IE$>6`FL?qeYV=T{ceRd#II58kBP}^xq4gBc&uu_$xww)QQN~=N*Nbd*u8ga
z*E)862q~lu!+}Z?4zFw5F54qL^41rsu@T}aFejw$R;rqxvfn=H)j3GwkV9t1W5f3&
zV`}g4;v6h(l7xW=%d>QT$F^w^nS7xZl;+lE+Id4{hZa8?{MN)jjKr&9sK%2J$({6m
z@aF)15}q_0C|kkbWEuxibNX8_V1OS`9LW02W(P=zx3;y8{W8(pD10f=e&h^a*mc)`
z5uDW9+vI{HG{ln&(mZBIFi<Zj?3YfmC6<x&7vJ41JvZTadbd&xbxhBmJTs*_;rcTg
z>UK%T$gw4%5SWR%%dKZSf!Np$5@ih)g@CwKCnUT!Mv1(6_)^l_+uZn@+xw>e1jt8f
zWfHKR8IU^I6diD%?hOsqWmVNt<=p|vea&~jx*tCJ*I5Rn7MR4p-O@MoSMdWSxTc;~
zGb#g8`kL?maG$KJFE=mw1zc0<2Q>R!ZSsTc>c9H_u-nnoAPStD%aRg0TpTM8(pMR}
zeD48?-Ob$xT!X0%<Y#i=>a-6?>SZ>am9W0P{+i3fR8%koOp}y^w!8Gka%)1*XR1w@
z@vZ)nT|%<1bP8w8GiNkRIOhZXRas!Bhe_D{Q}}lj8Vz!21M3xg%!!BH;m_6HiRiWv
zqW6IGerC+^2{-VdwcZOJHQZY^?)PW8&7sP@_XyJmng{N8nfD*#F-_PfeZ<EPb8k`*
z$2nL4#G&Ln{kFnw1E{Y(@6ohMf%&M!b%Wp|K7khb<1GQVpI+gnmFutl*m<k*or{b)
zYn%J|oyJls7j<NXVQc!P<(SJFC8Ry0wPF3WV}!YJteZXTm@6KGs^fRy^NHR)36h>>
z{zHo2*WQ~5{^4p?(v!7pY@rZ9OrI65{w6)yG3k<Avww^WsB)`4lG!|AUmKFMlH{Y@
zZ@im(ydEVHPqC26aBiQVv1>im(<CKIH%``n!ooCjQ?Z@;X>I<VnoedTJcT4Pe1z@t
zni{Bq7zj@*O0|*7hg8$3*bWXWA4JRmT{|Pf<H=^x=Ry9!M*AYP>CP2>*`g>sK#Mup
z$k*K*%nHexLL8w!ItsO-wUuE`8DsZf7fGdz8KaUw>A)Pq;mF>TI?Nkk3#ub8tyJO&
zVTwq6O9hXp%C}3j9hYl05vh40-1}VxUyQ=mzV?@cS^!N*Ms|m$4Tj)`_2{{i?1vXN
zIFcDFnR(QQD=W&CBS3qe8TOSwY8#-lMURA5DSjM6DD0bO+-_h0-kZBrkC0cNl$nKP
z*u(bT!x3TRa7u(Jr2UZePS>#MVcY&hB_4=akia--d5Fltk$P@uv~vXEX3bGujU*B6
zUUaoxGvD(h{;h{f-PV<M*ej7|x0A>30p2lE72+XW;<GLO%)WeI+{VH6g&vvBj1SpT
z^5o(t29w&y{kL&LxliszI21e`YHOLM<0@M=I&uOrEVk}|j=sPY1PGUH--Gs+PAXUg
ziG@+7r6Yj`qoP&K8-Md5+b*hAjY2uq>aYX_J=SWGWT;DNCSjT#^kro5Q}n5k0)+6s
z5m|uNaNUvMa9h2#JW&ppJU#EKvPvVP#AK9>OwGIYo@X21zP_ILR_eEaP>&LH0?c=L
zmiwx{;uiQH1>=qql;C*tbamU?zJYom015+(N9ck}ix{{Vdpfz68L=IQB13>1t5ESc
zTxdp18lN_`x80fDVE+i5+*|;|ktI^+1Z{vkNS$`}{W@_o_krH!3fVMT7z1_<rF!U4
zTXrb+m(TEOU<SailL(f!yA0~pZ`m)$d0^WE0Z7b3{CIng&FoognmkGdpI9<X@m%{s
z7qyUdk)1=R8B7HPdehALSJ?9pYU%|eS$K&yQL__7@b}5KVUtMa*$Odc(;I{@9s-FB
zmJ^QHuTnig7am9Ah&+0dnQYweZM;c4zRAqP#)D5d!JU%s@yA@!x_DAz0?BymADf=x
z4`Wr<(r+M+G&A!>`|~$m&QF+W;PuLu27V+Ay6p>_^0}Jvqx#CT5h>$h;at2nIcSlo
ztTmpl%Y+)<3RENr-zny+QafXyZ>hxg&*dN*@dYx>pb7Rrmv|Eo08LITK;liu+v5J-
zB1tOt4J=$~Q?cD$pcaV-8HA%s3GS52{9}R}^s<J1jFKLx^{|{U-;&LwxxvlPYLNr;
zMuz>-tq*XBkx=>=!JC3Z{6m+TN`cu0HcB_GmypEt7Wt+^+R(8FAsJ`;uT^&Xm660v
z<S@HZ=|g^$6qeFC2pg7la2G~dByfb7=34K`B7lnArS3p24<}pXOyEXH9dMgmch&2j
z8&OcqV3u^Nuz%9c6K&n6A+el`kxi3iJti3oIqlt{-#v3g6F8wGO8m&{{JMvGZ-}RN
zgbW+}0Aa|8_~YJG_iM;n84&H`)4eQg3{4?Knpxh%*`sZK#IXX3RIr!B8EUPQ-Lm44
zAR;0dWk}NK4gi9cWNzzkOV{ce$@ZZOf=o`niZpsGwf&!n><qV-zI+wgH%RlOnMtMg
z?4_ZFM5KUitk)v$21?HNJo`9zaAf1Bo@Gz!Cx8VAEfa?2TyXMC^In`gFhtEztD>6#
z;VuPW@78g4Qm7Rqy^MUzbEGptcatt~XAJf)NtZWjPDRfRGq0gbQ+Ix^TJzDJS6%{{
z)kJsN72Zl(9uz7{!4avs{;}?pK8-tB?V%)jGWpyvhLX+cz1+Aee_Y5eAedvt#|#)<
z(c8Uqt(tihwnz{$)jeWlUeVl*dq}GjNR#O8QnX*9FEKG$)UqdSwJ+SNsS;kjbbE<f
zlbNzK6K-p_jE(#SpR=EI-{gi1N%~NK$qI2v<KU&6V<tbPrGMF>96f?sEPi+WCpdqG
zw@_#ZmQAlc+z7LCQn2yKn6cOCG5sLW<Fb%k!M&)P9&DZKs|Bf(<JF+!pbZe0H3)v6
z;-xLRN_0?34X8l9=AHcD!3^yy&HZ&RBZbORiV8RpNuML}pRSA96Sn+2dV4Hj8=D4$
zX6o$$f#y$9rYUT@MDxt^@$bABm)}m=tIF1kdLk%15%_=ocKql)aUWb1>cldu<iWyN
z1->=ewp~xhzxjbbKCh;5%$O*4j6OJC*|bOE<G+tP_hLO>MAo1;>z>M}<5SJ}Fn;yk
zxIWNh1$!pWD<uB`(}8W_`{p+POl`=H#)YIssJ&o1&)*Wf_;k$U^&3j3;T%y(r0)aG
zc5(8kS~(EBG*R0SvyZZXQ=iPs#*<^dZO^wGAJNuG*l2o;paE<PX>c^+e7o#i&(+8;
zV+u=}o<?unMdOofMPgjHNJF73cV*9~Yf_ZzA|W)0O+~OWOV@W^ED%N^a)oq_&q^_`
z{1$)EM83UCAH7yN78`VfhDYM_8%6e`euOVUcqpqJnFYqtTf2jLKZKbDaA+b!LJlN=
zc$FW27<8`dC4hRN%olZF@HH8=W^qt+kET-e(MJ;R@B}>fA5CqC#`*+^Fu@22CGgO&
zVkj+~AAC14?u+9Ty^w9KR*eW2#ZfgPo-B{04OK#X*DMnm6~E%5$iOD`#b=JbN%{l>
z^=*G7xF9iZ|GWl5O$N@UE}a35hm&qztO~BUR*Q`=siQB=Bv7OzoA$uL__dG4-g2!T
zmJ424h)TI|oB;WlblYNsT{YVDM8<B}$e^F((^8U2r<$C<;;(x%Zg&Hc50JtOM};^A
z>?CH9dFHC%Px>nSfu~s@YXnm{067^)K85NZ<8BY0-Jv9FmI2wpqyw7x=j?mKlI`EC
z)jtR1i-MLk%7UkEPP-$RHo9TX)&I9tMdtL|qwI@oB9(8~Q+Bqd8MGpcXGx@(q9`V)
zcfW5v!8(icfie#^p7X}o;O2*8@1CZwLGH)9SGd0bKu7Z|yg@Pd07->W%}e50J2whu
zSLsV)CP_}DOKEY5Z1dtrrBwt84>UOW{ul{Wl&J_un5~8xIB>WvSgjk1IFM-ekPFCy
zb(|?|{FffogRr2xk%v<(CgxfDNkN0TYC@N$GyYC(zzj(N7_*D9AD*I3uRBLssZrI9
zD0P);{7h5!kxeR6i9u?z@I9m-E~R-)$P3c#p<7k=T*itfWh;;r;7Nr>F!#)0(KY%C
z|1Fr#_<J$Qj+?6ovN+J<mKz2Zgj8PkdocN}m?t`F6F{ytL0TY4w<tb!q?LX1aEx?|
zg8oh+B+DtFhA=~5@no6bF0gAG#Ga0scbCKH(ao5tnrgD*ZHsqQk3Jkg;{61C8GJSB
zijvKac-wrd+8MaIwlW<Ux9o1Q^@4Z5(Q(T|<X29TZw3E_ih*efcHz%@J3PZt97_~~
zXbtps(B@&4_u<WuS_Du<4+=(a2FhB=W?{47oV)bZ$PHCYfO&(nNhpwNW}PCE5eM^?
zB@VBRggl1|hZ;e)M22<V_~72K7Y-wSAmJlRJtJN!AkMot7@n`Fw&=M1pJOx4*zv)_
zr?rm`*Ja(6PG{k3LbTfKJj2d-O)t%8Va!hyDA6!d7=BNmXb;BdNWmtp6lAMqWu-;X
zuAt6oYLWGS!WfZomh487$@(}bsy!x@C_QHUNfFAo$J?~?V|P|+O7j2ZKa$M&y7rFq
z^gno!tbBZRc%xo$QyRr+wfYIc-w4=|+NAg<myJ)lsv&>KHk@Gw912!{)!>wEnilO|
zTv|!?M}{c#ZNo`HyIFpg<8#XLj)nO@&jus!^<OANnWFM=z#ECC*+|>sah;90F4T;P
z_ZIai2@6QjziBVKQ#}`1li}P046uc<hK_9!6gU-nj?Vv{<V0ER=->cuA^1Tu>K|s`
zJwfF92IXi8@Rfbx1&{-n?7MddLoRQ)iFFNAUJ-0p`TpsIk$bxbE!H<|9HW}B467<h
z;U0Y%@}{~T4r;#Em%#|2H92q%TMR{4&Fz}4wGt*}6?9$@@6W^XbY)9651wZ;-_ZZz
zTjVl0DnrhtO!pKs@511hN&bxiiiY$7v}IVk&bIf30+w7<>+@0J^SdH-cG4Ke4*5)n
z9t)AWf(0;bw0M|)aJ-KPKeN?CbrE9!=uV{wi;!p+W}2Hf2U~KaWrQpXBuS5z%3|O)
z9b+Gj`1bGrW9CC{thS>fvF?fn|I^ihBcDsMe?Fv(6p?pV=3$A(<SbtsFS4I}9@}y;
z!%f_mnre7^Nw5WR&yRO^ZSpm-xlukAm7$EN`Nz8fGqoO$w-+v7QVRrZ&~tpyuC3Mr
z5xXg8USkus@I(p+=G#ZdYWODbJu0!`j!RYtqTHbg_M|`KL>Ew$9jfRfS6GB}qO^Jg
zbEt+T@?8D2Yjii!$R#|M8b!!lJv!U*BNX+DJ_H+zNG7G4o4&REHfs%Hbcj+HEk!#r
zh_k4rVk9gJ9=cnVE|_ohFN5J!JF{_cVH5PPv6WqX)mv9~PcL4qr6Ub4wpYGYe?VVE
zJAi1Uf_#$H*0O1oZx5!utF^VPCM5Jku!-e_$2HIX7CdrX?91&`dkMr$vThWPvT>M8
zSJ>`<#eS3DP_jD|h{M6e+u|FJeJc3tM)kHh-TzT;<1MV-9h`8lF4VXly-Lf<qgDCh
zd1ROtcL$$sRnG%w%}eQpelgiL4j+?Zr{Ac~Dn5R0HEn^#$0a&RF?;R}ZvMVevtM+(
zQhYbaWp`w|LP#pp+&RSlyfoJ3HW2?fw@_)e>?^$7=FbP8S88kB|JgUm1Etvy7wV7{
zFIV6*-n=B2*z4;p3Mk6^bs%wkK7+E9Sd&Ny&|}oq_WmKU2eLF<*oU_!g>?X0(t_&w
zo^I78DwPM|Rv?--A;pn3kdQEAz3tmjr4)IsjAjX7$c(W0&D<F@9q&^yLK9K>DX}G*
zJO2(|8KgFDMA!_P7J}@=aj&(r*_X$rRq0DnPHgx#QRBb`Hl_CYv;17`Doj<`oKOJa
z@#ajmJL`H|7s+r{258p{=MG+QhMCpQUOpyv9#6?tv&Rv<$)>9z4E_P5dRLC!+${EX
zF3m*hUMP*Y5wjo|Pc~mZWN-LdwKrL<@yQesLlB!pakpLZH#XL~!2jJ@IAxtff%`}o
z)BiPss~p{SczK=qP~pua<D636_I{99+a@Z+K}l9g-^1z#_T2}4hp1kZxv=pAoAU<#
zx;)tVnl{<yE<2;QhkQ;DvNs6QaMb305#QlsjRECzX-9|XgvVP;HbDbhr=3rANtSn9
z6eZ_dXPW%|LF^p8E^Bn3LQy6fQ#+?AA!gY-rLk>ru@+D=*d+*LgNO#9fXM)5rKbez
z-q%j{EM)l;MhIez<D10mCx)48zq?l#GH$=O&@l06$T6mwGbYB5IINAW<n<rZohsQJ
zw>18@y3(CW7(wAAQZGGxm(-Iorpj-K@3r3_&TSQmJ~$>eo}qWeANWSwqi}fkgd)IT
zOxpN+*hBG;{Ta7&ou0Wj74<Z(QB$T#nH#_E4{y>JtfM=HfuCu%JQF|co47^X5zA(G
z#ca@bV<{-vYd;yG#nKQJ#O)7Z9r%Qz05f5YopfVtzUbHCnu&k`X)54M^2z4*_4cg`
zj>4HjY7Ws;87Vz}w2Mymgi2DsxDv4Fh(pp$(Z@EUt(c^-qG}46`D5Izd$iGFH{mmi
z*r90r?Z3!XKg!R!h)$IWCF$|CuBz9`@`HHFGOx|KbrZgNO}jS=5UaOm;>S4iy`D}U
z2+d$5o+g=2P|+KfyY{>EjGbU(6m!al*SlYr>G5H$a$aF+$Ph6vT<*5Ks%Oa|U>CWo
zp2f5P5mMEyy<FOdYJy))qDe9Z=17HG73i7rs>@2m4>g^#vQ6`Hx9v3jIlG3zqm$Ik
z?B^ED)DsjirKOx|d<WO&CA~A@s07*7_%MK>X2WOh?`t?*`l?k<k`S6qSkZ2`ZmOR1
zlIminT7Xs;{ZovI&v5N-*Rv4UFx4cIHLI4mycm6JJhY_5&ROIZH_{)J_5|%YoN(sz
zjqdZaPnKAh!+DoDE7A|%*veo**SJp?HxyH+>d|F5F~aZt>Xu;E$zE+F<o<<c!psow
zcYSbTpk{D>7Gf%kgdC1LXv~u~`I%bYb7`5-`(Yt7Qd@s!&spq=&$!OxXl;s~9}2h-
z8=kXcb~bvq7xgI=y80d#B0Gm7z#dy~L8F*^)y9@JF1m__8nBz~fy;dEAWTOPjO#Up
zL)76>d)Ia0-3%Zzj>C|NOjn}0;SReyMcn~b%5I=;tm`-m&=+XXa@|1hC=k60nMNcZ
zB!orn&$yMr)n!U*#8v2``yFW}yrz|PZC;!g%<fykb9+Dx#(#$CRL?GdBkr>^*$$DK
znouKS95Hp4$w?=;X0OEUcm}jV0Nt=1JaahF^!eF-dS~Mi8#MQ$@|F0<h#C><W*@Y-
zABYtNcTU%plZBrL#||ib?0K&1oVYDJHB**H5<7fjsT9j+nj7zP$L)!Is#0&{D4Pr;
z->C2o_x$s*E&JiTh64R8LSjiao94NCCwP5+@&^#iMV_Cf<o0o{Z-STShZ`m>Zl$_N
ztma6n%lXLDaXX`i6t<B^pNe<c_H;MkNiWXRx1wq^NG8W~C@Yw`t&f}Wy4U9kqX&=I
zayWx`<|%IC3!&JK5ckH2v_Hi<N#^7P_ufsht=8&ONOgITt#!f_<l=*M?c-VwQdI_?
z5rh|(mOP3`4*qAl`(Sq5w;eUumAnMmg6I??*agBGe|>Odvj(ipmx3A=_d;>DiIlmY
z&u$35>ZvG}7^U$TD>$;s8RqSUL40p-VFptB2MW$n#NN#w4ElD}xrC#TTR4I}0fd35
zJ<a?v$S!!mYxgi?q`+G}5Fo!)v+)f3_)aAmbD-X=A93lBkkJEaV}E*4?Gi8GoCW{#
z`ham#&Ba6Pd23Z_f^#VUlDtrmT?)ZMYF<f4@+GAcPntP-xZRu>`|fDX7$S;HFc+-@
zMQx5@e9+jqry8t;?aQh1%cwGtXdUMgCt}{^cK_q*T(a-wOM%qLXt)KeN#6IOpW=@@
zJu(3}mr2DC0)Lg~#04iu^V2)Qq3!B|lk%pH04@zVeQ9ply}+)bCSUZvJ-Y#~1xUkm
zIT&;+7ebUUW%?FIJ7${Oj!#%Iqmldu?{Vbl;!>z4bEYM<OVZ!E(5ry}6~eW7;l_mX
zJL!+Pc&_XLS6`Q~Gev*MDIOPYMk}Wz{M1H&3jIEFq;o=I_&>Q+>C<rp!N%bUMdQN5
zDr$$4`RS~LjC1tYfi(pG(0BOdySn;Ifi$kEf--IjGWwVf;}cHK(BFxd#*UH&(=2Y0
z&}6gz7On6yCg-e#gY)z!uB<sR^G;R5C*d^!kO%_I&^`&3yBo^0AA5<uW_4M@q6@-H
z3!jKRi;k<N-n|K?t^Uezg-kBH%fVX{>b2J2$STlelnv;-gl7;)<D3kas^F69=HaSd
zYzkoEd~-p<2eVkUh5aUIggWcEWiz%0hYKR7e4}z5?DrZnNHsvk`rwHnN>wA$01QCt
zAndl50VHj%D6@xVdikVIQj3aOBg#rRCGD=Th1Yw<PvR}~gH&LY*}kpXUN*y<H0ad)
zIkj8(fS2BAuV3bkOd;+O_6nnx3Z8WH#w2^s9B=IxjZ;L*Db@5DW8b^go2bR%V}}c{
z9Ek?pRkqneZ|+>iVy_yiOp@zu{{3pe?dnGpHmPBu;g+e~Y(MGYeJ-5=qy!mf5K9FU
zG=FWk7nb|#kb+_n1SR{7u1ca=walK_Q4a-W%ZJI0I3&ysR?wk2!T3#a%a2!*WnbY)
z5+ee-Oy6d|i`VWsglz(Bi(pzAF)FQZNNw&2PX8$`bE(cMo=r3ED7|NylV1yhY|SKa
z_XNXLlxj+WiWDytM%*u@zT^jwp{#J6^sQrWzxyM*qPC@-h+jw_pKwQ_42N{*)j!#1
z>&6Dd)EA|mOd1(WXW>MX`<|T>J~e9!<q{K+?-LnL>YeyLRj1nH&QOGvXt=8gx1jka
zt*Y)Uu#J|*J=$4W9m0=ego%D&mU(J}{W(_&9lR^DZMw=p^dr5$B{<`nxQ|}d+S<@#
zEWq#Nl_jBVVfGEN55B1~f;@WH$)&KUae7&u{&?G7b~q+_^SPxEK;?}{P5yHq+n;Xo
zpNx_L06?iMN-`Zc*d;0cTa(_Ul94b$GS5=$lW7KjY$q4#f!w5~JhT-vI}q==>&W2q
z#kvCtrYd4K@E?)wKwa&s3xbsURklNqlR+sK-c+5O;Gr2h5U}(qoCx^G0Le6OBnH<!
z>5mXa(kdQ#9J>~m$}}@a1-bL}QoQ{>rNtwaVSxk)?o2OdhtBt#Pj=Zz!ZRx0L`c_M
zlVqQ`P$lg2HrRd{j|}omlXP`($sA1^VaZ{86boN0!<;oV*z$JV#^v>-(>j8bxDc#a
z9K~q;@amvwt{%naAzajGI4t5Dk$QpIu5xqO{v}11Xy*MV*z<<ki2fua26#j82k4n<
zCN8r*hUhpT_zn}EI@y>Xc!xvYx332}KL{+d#}<yRh8;)78ccfaKk@rdj9r3?5jUD$
z+Ygf0Oj>Mqr@-8%uUY6XbiRo`2V@o)FvIVqpS1Uk`vIXdAgK9cq^y~5tLJ%3*U2j4
zh(IMnWy&%;?mo3}Ir^qXop5TFGECa|;HsDWNa*W{ICR{?C!3cV^nJ;Ha27Th34GH;
z({@ns+w1;C4<Itte$EhF(#(s6!Jm8L>c2okSs^n^ay#l&lJ7}0AM~&vJfV|{Tgij3
zEC~Q9_M4g>^jzex)d>~j!e9XVw|rV@ZMA-6aKqhk2Y*+Zn1pTFAs<IlP$(he=Js4*
zZyKZ@gV)W1Ba@OYF@zxt=LYGoDP|?tWD^nX*4lT#FwD6kc=|E_4)TF^7&asi<<4*`
zQj>y97y98XBLJOKof5#G2YLs$+@ZI{McIVl{W000rn3U>JTX|(G<Mxx4OPRp0)}Sg
zSg=fRk1R5`w_X^mX%cJSAt!VxB_B-RDC-*{ewMjukZtu$+$o>dlfb&5v_y*=Wj#wn
zll<N-_M1`K!d!+j_aj*y7M~@@1^ahsR)^nF8>xzt5NiPs{*4Jfw0<yqPh6dbfWwzE
ze@bQ6Asmn>?1QIHvpvE!4;w^96+lga6VkqwJ!iA7Tx3ebGY>jJ0Hwx?Y4^s*!TIId
z)`5fAb*K)}v^TrTT^HLexB0Yp$WjcQI$2}MVND)rw=C4>ltb}LiS60Rl~>J%mTK0W
z?4F$*kwut)=t}pzD!gnYYctJrr`kJTi97E)-If>;%skXuQxh3WyI;3Un&`}9UdqxJ
z9f25A&8^#P^V8MH83&YxO1CnbH#?j5st!$jjhu>6qvSIK{^3%z-xgdM`Wk%Z0`ejf
zI5W6_(%j5o(>pr2pmyen^g8{iK$gr?Rlzmu8-24hgwt6!gfUM*#)j1VOPf7ZK^1PH
zACZIJ1Zl7|bIYmrk;miSxkjItrO1;*1ei@TEzh@m=jtu;74T44x5;9Y6h&na@H#nc
zU=USXLY%Caa+DNl<#**ZZs9tu!ec!3pD;oy8gL0X<wbk#+v9bc5P^npHKkPxUVZm_
z+|HreF{VG|KblJpD{w?$09O0_zz%a>dqCTcU|<-Tn_jft3LE~siGo;It=irVL=VRm
zTpIw}ob#$Jcqmr79#DdkO@$H2mgoZ@Ie)9|I#vr%So*RBXkh_h-NQL^58HcsXoyaJ
zh>97UZ0a&<JQ^x(TvN@nj|cTH(^Mf;#qgH<KoBONV<wwk{as$C*pn{@EB#lgk7UM=
zmilnzFfiqF0UfY@to+@6I=|7ZC5>bvXHP~mlu4}owCTCQ)@4eeVa7$TC+lwLb3sud
z`8#BFe9ebSQIVsMl6F%5P1+H{y>3_J=?IipHVEFn&l7qGSea{xIzTnE!J<?BqJmFO
zKeTXg0}t?)8jOj5@!puT);17iu@k}{;p&jYcJ#!7_&;JbI>IE?WSYtX4<=%r^nut!
zCysmUHyWCZJfVn7H41`n9`?)~&@73%h&d6TpgZc0_#=muJ|pXmYE~Vy)QCHj_d$H~
zh@O}KP?ck;5ujr?-}=($;<H;tlDH-|xCVe^l1&r|(|SANhsWq)guvMh9P-xqNi>DK
zJJ{OX14_}V5KK}EQ+0nZwXvE=?=YxvDe*(uIqupXY#z{Hc1Da`CwiA!?ZBh6LXCSj
zet-Dr%=*5p;G!=|a+r7Bb6?Q@5)Um4D~;8VV{i>W_$Rn(PvlUZI=2A+QgkD=Bfstr
zYF<>hnUfVDqb;ddOt`0ezYOkpTurP=)CaN~_*E&L3F?;G>wXJsk>CicFhyu4XTj4Q
zS#Q6K<}A>`tH8P9chK`eYwY`BFDdZtyke*Yg5Z%Kf%$c7V3%GSnK@Mn;70|b$dkdK
z-qGG3KUBN#aUe~G>A_JJgbZFvo#e}RPPc0c{C^12AH82_YK-dH9qfZus#?hLJth{8
zMMY0)q{x(<{r|9a<^euc|NlRcEVF7~XYRQ|mNffPQ8UIqV>B}nQH?Q}%$R8wTSc2v
zX(5FcTlS<vi4SR&(k5*RQE8zNX+wUG*XzE|oBDnK@P~Q5?|t9*x#zsr=j-`8!!|xo
z6Y7ZIJQp4<fGu?VB%8a>va3#uSu#Nv4p&@gQ^NUrP$pY;c{c?4dR|sHNx@OEl`fLN
zV^3xj8zjGP$M<dMb`?Q_Y;x9FFkKAl`!0UV*Z<j+FaSuRj9ts`I%9Ku_mlN%c}J2-
zrVi*ylMKKKtuVI#)H~YOm4Sl6PQkm7-mpwld9r<@zita0+Q9I@gTWq5Ff%*Y-z$Sc
zP)|g`^d`ETQ_1r9{r5#~xK<CQ6vm{|OV=CE6YUMy7cF2cesV6O=+uSeS#blFY>nUb
zr~Vi*WKvzwLyNbE#{Xufof<ULArzO0T`lP}gz2XBL|gwJZM{O6#nF<I8rqoyk-W*?
z-TJs+Dm8vqkEH>1buixRut{qjC<3*|;l3<PBzm&xp7_CEDaMc5Y>-X^wlh4G-Xcuk
zbR4SiU;VPt1v2B8TvWjRC1@5vwEgT$Z8ZCX1U6{;Rzi*#h(t_qL?3(owOZ~%3lj!W
z@g%d$E5H0bJO6_qvn#e)Q#%sy>mfMrnD@Zsm|G?Wn~L0DrJP4fo#ubXyo<NHbBf(o
zA3;QL%r&%kz3oImuPCvHUNROx(-gn&UH6FVtjjMU#s;$^cg2UDu-SWar#s~#%0v3K
z*nC(2>b;bATw_4#FXtcIlwf|@>TOyOzK98;uKP%?1S+t{dnMOh3A;TzAIF~WBfoIc
z=icMH^-(!clq<B8Lrxp?+h%l<9bBb&Q8~!s^m(D}&Os&DIQ~le;Rtt7A#lJaluLz7
zZ(x>%ENsxLsvtTs(L(TNobGh9;Bq^2l)Fd}+obbCX*ygR(s)bGwmn<BOO>$1<236?
zHqjo5X05e9^>Z**rgPFBq!uO747tRsd&I#`u?aYR@<{YiP$fQ;?=AUStAXslLY!%?
z5`?QcqnY>Ar*30HFhGh|cP(*PhWT-jSG6@V=F=tulF|&P@C3W}iM2^JZ{^t6Zq;8T
zY90kDn};@DbKQP#@H_6k;7kvtFrzvflX>s=-h&&REO1B4O5}Y~)xGasZ`VgoR>a%v
zN~Ts62ngT1-t=w_>c|}FuC)7%_PP!CBp_8{Gf_k=@|j=6FFx!v)&F1lOg33N;{V?2
z(61Wd2NgR7mS=t+|H7|&H9x2mr(2LK{H6@j`ceD5h0p7=v5Gyw{0jdG_MEd>Kh5iS
zr>;Ji_2M9*p4~!GV4#ubeXq|__q*U@s1<A&w`JeQ{p9`dx)XJlk`hj#er2Y4@F(xf
z8G%fOCRWu-?iDAQE)i6YKi?KLh|OK0%}S#71?WPX60vFOHFnLd;XbBd?1vQ72vgan
z@Pt#Uvp*!NJt5CTqhpX;6wclRlV0hyYN?#P{G2R^2g#`Lu(%49UwY@h>K<0?eQ*@%
zm@%8*^_G;Weiw~fJSZ5ufjSoM;m>!(H~Yh>+<wJag#fUFZD9$9&9L28MBjd~1|8u@
zntD4y{V8*8i``mpm!(y&o-sJ`#(5+`qHQ+zkK&k*0zD<wQt^4@aS6)SpJdN@P9GP~
zRjQZrxR?}7?TelKHeJ<i<#F>%hLsnOEFMZ+O!hk2tl1U+-S7Iiq8mu2)ygzU!NP!k
z&b41xDHev*MIXBShPpm4vgKrEGAG&9?>L^-9JuMw4LV5}0;xInmbFgAEO9coL&Clt
z!-gqwje5*pyWD+*h9nf0^k$&t*DbT{#=72&LUgB+qe*L7qIqwFow~=3FV@a8`Jv?D
zdEWJJ*=<m_!t6?%9>U*HI3tK*ec75%FY(rmj-CTv7~9hWodPBgi^GPWcZ>h$+C~%Z
z!s5Vv3%tC95<Q7L83>OTdWS72b3>Bya7RKU!er6#gsPshqr1f%VO%_`L}G{<F5xgT
zLZET8?c^>_CLC(jfgeKp2cy(+zHL;h83#!Xi6<fT4!Kqe_|0b8FK%+H;F^rd3L^!g
zQZ&Q1sB-`)Y1eY<3T|$4Ksl4__ov7FHbVCqgy<|%=#<j%L;h~qG~1}9%H`Ec+?-c7
zSf@Gg;N%{*%(Ulpb`M_27#mmAq5F?r^TiYPj_&Ts>2L&V$4_FfT{+K=ALu&SvY6gP
z?Pj?AA|djBb-G<Y()}XWql$=dW$iuo@j)>Uz7cfskq#0shBiLDq70Ke!6pq>VIRt;
zlyscJNrOAkEWOP>d$~3a$tp6FAjFz0tC(R9&$6%7xbF<Y&k&4EdY~6Bu#+zd{|+{(
zZYFZ!1a0$dy<{iKf&N~yFFcThLItzzk>It;p{b;mG&qUi0h7&d8TRLg-K4cJ&w<=H
z2~(Y7W?gG9nBo+c65<B2Ef6xY3(H#DJ>AtXq67$20ey4Ap`tNQG_>Dbrxu<sm43|8
zURNoSNJnO}Ih&atlk{7OO|#00i6x1G4?{ftTatg-LPx04Q9@sKKCE(-sM5@lLH;#w
z1RND~qL6#lHV&LX*5Lf9_TD+p2`nrIZp(n4)I@4t4aeFw%cG0G*5V213GttC7pQc^
zzU;l#Ppc>Lm_Q+E<O~iWL+WshKppS=Jvx^PH1b|Dby8G=6b{iklnhO6oLzS;`~gb$
z)nyemo-kDE2Y{!xu&w@#PJ!%@J23LP2K^u+&P<C7?eBZtwZfb&W&);R7<@0bPan{W
zSl667c>AO=0oHvpVT<>~L&{pf{^=wPD9{w5pDx;E4|i}){vl$qF#iKdkt9?5uH87_
z5k$ZU$M#`;5Ye#mru}N36J=xO25NI7t0&0n%WCYmue+(np)5a+j4%kKLC^Hi2)p79
zCq7|TI4^~O^V{im_yqS-j^jg6*zC-2Kd^p-m_|@isKXy(EeA`%W<U8EyC6nsB3J@K
z2<9oGPGk&of|<I*TY9qV&JZL*s8B{fqKVk%9c<uaYIdaclb$_kfcnK-)jB3&w^Cq;
zVGhB8Go%=^`7^IiqPs8)ek=v>h<QylFCF!kE_dcts-0e+;*t{fC4&yhM)Sg!d)saa
zFp3iI1|0sZ0B`K6C+r{7bOor>sz;<fWMoTt+Ev@UFZ(J0f?wH9I6K0QB@uRlN#5ao
za;82MalS-f0#*u}CNf3j|DM|5o%y^LkufA)czaIcP=Ur9slVL&dWn_-1hZO-7bCj{
zqlQ~|dlPTLivi{uw~9eenkq=b$|RYGk9vC#Mb};s@P!e&cv|KKN<j{J*KaoBh=WpO
zl}MG0VFu*-a{a!;6ej=%Sb8ZnCjju6gw!9~?Zvk#{1?myeE~uCH~|HoYL*?cf9J)n
zjVGw-O?6FTw7~Y@E#N4hd6WGtK>;R2QbMaR6gQIu8=hsdN$+QWZ0^FWTzo2x8bK|f
zXlw^Ney&dIk>HHJ3cP-<<He+#_5*FRwBS0rgqgcKDELY+7-X!o$N9SkDy%`CD1_9L
ze2zd~aC&R()Ry{0v>1~^Vko3659KOOMUwfV)<6Aghr`IN43|1N6YT9CXZoM73P2b%
z%?Tf6O$C9YqDC^!y?6PSZ&5r6x26L?;e&9(QIo1j@&8)vCMf}~1OzX{*=eTrRsN3E
z?)$on9~Xpo(iE3&CjM;??R1!tFbf*TEXiz0@#jv`JF+`FqulVFK}rCX*!`7v{y{fB
zC!m><v;k8*GUN#U>D~QWbgMgQCX*h<${ON`%4+;r4k@pjJmTE#cI(*KpJ|U|-w~$J
zW+cFT@)l<0q4-HphkK9$_(t%&(xXIga6ND7qfx7v(8{H7<A8@IXCZ?+q#uk$=3{t~
zPaTNA@kw`^pe87}di|0_^K69o!X(!hz>&m#;xYks9*!SBQ!kSPi5E?-geW-G%-rQ&
z@w>KzA<#BPZLt+#NV@sCiEX!Cu}HiX$||J6xRBMyHF~_jAN0Dez94|qHOj6e3nM9Y
z&IRZAx6Zz)bNHEXFhP4iXXZ8-qzar&V_N-ME+k<4y{|uhuoD*H3p-pAVPcB8C&NGV
zvI8yU3Ir_VzGu?zZJyt0H{TOI;6~i40+UbEMY&i}*8iajfApS4?MYb(IJ|6BfIzMB
z$c&MEA~l9%Cp@sJ?9~NZY|Nxa_ur`f2oQ=(wUb@IDM$ppIDp|Y4)~Q{0<Re8a^7&N
z@iuwC#WX$|9i?AEK%EP0+RFz{TBRQ$X1QgHcO=SvL=gBT01&vE{J>>9y$|ZEhz&q|
zK(J0qSa|wPO1!r<=wIVKbge@nLZt%0OIqUoj`7bo%AABOzk+ZYKozR}oCN=q-3qAE
zY$?Gqbu_qYxLvb3-t6keyR##ODxeU*CpgDkC~^3bTK}@!6k5%NGOYtB%}Ab6ptxtQ
z^#00jybbIQGO?!v>$s;37aO?H8`P)q-Yk_k#A+rLpfvO85^r3s&c-6T3Gx?;Y{V9j
z09!mY{-@pAz=?5}<~!a4bp&Dwx;s92+pY@Y1%#n&u=CHQIda1kySJ-z0dq?wzu|Qj
z9u-K=V9Cbc_~}8rDBpcTDp$--k+=ajkxkruwq4xaInfGz(tt(sb3@gWOfnD5whwf5
zAITAtcPU58%CDJbyLWN7#%XiJO*nhxL61FZFHUmO!ipf`Na0wton%k#p#q$v?xhNH
zaQ>y(pnezHF2|xJfr?z2M9?hgmg{_b=%DkQ#48OMa@uI2iE3`okI}3v3q{*iDaJ(V
zrtIfLvwEhj+Ty4=ItOFuh_?8yn;`87;zPdcDjIqqgd`WBJ$(;dV-L-DJ>p%96@Y}k
zrcIo{vTuo<GDC%YUmwCI$lPfMlP^SXu&foIxi3^)oz^|%J0W1c*G9eOqRNhS)xw4q
zC_-+`vUYsQ){S=YKxgOi(+-zl{AX>wo1G{hZ$;|#bYenmxx!u(CJP9q9TAC!dwH8(
zIV9#E2FCHIg~g*ZfIz!3Rr+yz!FYGOE@<&U1apCTZ?kRpxVwl1spM8AtV=gv&bM!c
zgTCClF{GAdx2EI8AA7@2{l-PUMLKoT{W55olFZE2_C^>~h<<sJE<i)7LwGZW&ft-5
zecs-;S;f4J<GCoI^ER(sVL$mb=FodVB5#z|Ur9&eh0RZ}Ip1mr5?AF1X&2z>8D?0T
zeRj7KWS3WtqQ8bqsA1f6xlR5>Z$>PwR!)%;H1m@GIO}fv-6qF>1KOS-rch{%A;IC8
zn?d&Ocb!!H8SJ<a=THfHd8l2q*@@((t4kuVJqYRRY{^SbCJrir3b*8UL+v`!?q8uY
z*-8@VVp@St)8dTH{p@~QyGyqcu=T*q0LjA~!W>HA-}#8Gx>@V2LX2{J{00F6`gpH>
zd#qBTAS@h8j2y(QKsR_Bhkvyf-x&L1ckr#)>dJD+u1RLm&6*&-!?y#Rs1O(o{04w&
z(@g!}?W6*A+2reph=h<qv-#YUDK6jbvv>8^3w4-L&}JqJmuRkEX&-MJyNStyqL0Cf
z2&ga<4VY;Pr+eRwZG1<dReRyB5|yK?Q#ib4MXr7ARYytQiF7&97>QPhEKmu5-sL?!
zz40vCZn>xQSYf}Idv2NywpX9jIJ=b^B2>7>zVsE4b~tjGjr>qMm}uXDF|)diescPE
zNWKhP>isxg`**PDy+FT7*cK}5qPU1DdmON1-j1I2BC*T=(UpX6{rorH(5c#$#AXCU
zS4%i5N$hmf>^!?;K#;_iDFGnCNx=yFLx%aNwcnwSBVq_K90dvi&I#PLhR5tD{T%0n
zaPAGkdvtLgAr2|<cMAPq3fwJDteHwQkZxL?<9|BT-GO38=-A2a6HHE&-=()QL_qYw
z-eS@a?i{JW4D)qkfBlV)v?3=UgQJlem3m%N|Fe9(C=Y&-6KCeI{0lqydxBXq2m>-L
z8NY&BncUWY?F~mUl3PrV0M4iIh~TzA)Zc&d&)AVk>_<RB%+DHvK9c;ZPNmz?!auUv
zU6~(dF5*&(AYXU$?+q^PO#~tpW4fJ%$bv}M>}~ANzCnMyJZdHA>49K?D1Z}^$;~;Q
z%`fsV``q0;z@~W`V#;IVRQ=t~AGhAgr4A)sICz2}<=CQ^bnzeCpi;gaD!#$Bp<@Qk
z2D8z+_|1m7S94tILA{T;RxS=gtFC@jh5HbXrVSW)0(E5L#PzC{c|(HB>vq21CQSAr
z%0h2}{xOlK`Hio2w+MQOYtST;c>s`2wxG7aKYXWtfcG4@Ayh30=^22<?w@S@r0M#u
zQA1MF3Z|1_>N)p27TANC&I#x=9M3#dE8&|-T})nK8z;m}Nl?YEwW~pR1F9Fum&z8O
zV=L}-mL@cqTQe%?F=CuFQ?T5&yvuz+eUQMqiwR>m=N4PrR}&pP8~xZ=Dk8c>!H}Am
zFYM#@IZKrz)nUO+2>1~>_A26Qn@p4*m_I^-+A*3`;A`2&3zpgUZ+Bmd`(ExITIfJe
ze%@X@-3f_ntAlg|dKvAxa+2NmgX(2YIxZWGRLnQ3gb@g6B4%Xp_4d3M)ImUR;~Zf?
zg%c1hiV~W|oXPZ9H!qZTAjCufN3bFd<NZGv?&A>@g9a+b8uX+ufw?%WGcjiIZ}zkB
z6iRU_^rwb4D|f&Z=+M|tWOPt)hwM<IB#7g=2Ve1PeSb@megN~=70fN!bSBFtnclbB
z()ZL7$qp&i)<)(qk)xb<lHYumZVt{6`?HFMdLj#)bLxzXTlg98yVHS990*e*L$pFH
z9()E2-sEO}&YSufZp{rS<Azk6wh_O6vcEiF$3aZdK~t-cP7)TZKF=RJPQMzHLPIMK
zk<7Tm-N>6@M>PuO-+}T9QfV^BGuhm~&1Sc9Lo+2j486G|sR_>BVw(j*Hd9{l(Bi>^
z$+VH+KueEVVb>nd#ljv@C1c>kFUv4jy=)JLbHkDi3?&Vz74W{#ookOyahnB{K@ApO
z_BN;E(Peh(9ZsYM-p!BT#<*e2U$SxG!+`=O{TcGaBpm6m(w-GKX=s;lJ%+M60I^nA
z__x)$Gta6H3K*N<?_t<&w*N_3@90K44v@fTa45(1@V^i24vXGVyMa8(+Hw;a2}ds2
zOmFG;d03f#<h|Dol7b{ESCXVx`}x0xwKb`b5ad#%<k8FgaXX##gz<u+%hS!scK%i0
zx(x&Tvs~RTxiZ;|2XOVRyHdg={42H)F8AD)e(qeSW<{|vJ<yp+VQ+sV+4q8JVJuV@
zY^Q<h6Tf-NW&X3lAT~tA@wA^3CyMz?F*PUorPn$0kXs5py6RMj;S$ZBME{mxS{T<k
zozE14R5Pr(|7M_vSv!5FA!jg9TVy;?YVX(c=L~k{Q(wV}?}$wF^lbm8o5Cs?yV8w=
z6|BCHs(MH5>|pDoV|r2amn5=q(HF(pxHMOrmbpFrovOB3c)p#o&4oy0{l#s?`$#jr
z+Sm{Kx(n#Islq<WyA%qZG;>Lf-91tB{Twk`NCUV8<N(x%`n+gkT52mXr$u|bD)IIu
z^?v&+_M*eio6n;~vr;5UxEp;rMcbW(Z&UOyGLq+}^Ljh@cPGPxBz;B!Mi{{)hDa5B
z|7+hlc~KokIs|P5-p1iAS!=t$u3|PMZa~cmYK9e$Z|=7aQ<yQ`s~EHhjv`7gwVz*^
z+BD={NQ<%zzd$CdQ}1H`(ZKx6L2&e0gdMatH1O-DIjbnXS51|`Upez+%eGIqTh_Tq
zE(A|O#p6vTnTZo@r;RGZQ&yKDu(j0VQq9W!)((%|ovW@l4lfHX=yaTKe#5q3ZLb<_
zX5&gGg3+9)JCb-l(X9H_o;A)1Pjr%aC&{MW5j$s&lLjU}>o|cKtjUSy(y#4DQ(`YX
zq)l`#+6eA1%JJquZ2rCO4!A%{<Y)k;i=+6V9q_z{6Kn-BEND$81JOP_+s@vrwlGJn
zgGS%Tr1z};b+*;fn0B-tskR*j75+%3K5-%Y_`rO-aJP$-gK}F?`XUdWXl`9#JCfa5
z9`JvH{BfL<pgM6*JG8SGe-~!H5DhdC3ma$z2@PRx=xC=OazUf?08t^wp%h_?d99t@
zzSD(=td*m3A$4)+40||CJ45Ppu#jy?*6ynmd*)B>nyX;U5$-5l^kfc_{r*QMfr^(|
zs^AYvCGe=JW`0|{Bls>Xu51QCdgxM#9EIci$+5P}au*%uNu!+02p}h&(Cuz}&Ev{s
z$K~18b;CtT$h_5bAbd?n+M_d6h?3|deg^L)i7E04=8g01$IG<h_Fu+UDKm^8Y`4Fp
zGrzfO7*c{`EOjn?jU<zLwY_z%``!@kHJ$>;;*T1@+wO^V7X|(71jzzcDY2`=6J`sm
zINg;a;WX2s%hU-ujnCEC{eh=JO01B?YE7l!;NdKX_~YsL!Cz}aj3eHuyi7O^iG-8Q
z;z+;yV&_9Z;yE}l8>m_cY3ljo!;wm`^H1oDl9(mkywSiP*-c{>K)VI3F$n=sz$9EB
zUT5##AGIzi;OZ2In>8R><ViQKvRD2RFjRCkovNxNcZS1EShlB;zhFk-m_XUi?1M5e
zg2*Hj`oD($Th&gMRT7GWiK!Azb&P*ar4uQ10#l3O>wTWz?k@LtT~bvHVyWs##)(DA
zF!$E;3vPBF%Ay1&L~0VNC7JX{|F#Mz$}JXn0CP0Cb-H=zJpZPLoG4hF6XU#0GbYks
zSLQyDRTI>TxfaLmPv7rwubb(rHcV?5fdPg1Ey4Wn0>8tv?zK4M8hT`OU5}If;dOd%
z6hL>Nj&)UH3Q(UHZL~}FIaM!{g2M$MNq%OUpWn4dVbl%MMTC)~84M~giX=04y}beF
z8wpNw=W+<XHKmDZWW4b+c1dFFXH0iTePUToV2R~nTQP8HjZ2A0QK<sljOaJ=PtUEl
zBbPW?j&#+@rmbfCK_;4M_I_;dc*BYH1#yxCM-^TW@K^uX*r!!>@<abSm>YL>{X;h4
zn9>0A(6q9P(q)u8g|PTPZE~#}*PagvN-Z3q%3JH7?$?GT(!DHKu$5o^)1E$Dub>i>
zC7hV-yfo_Urf8E*EZ2e?E{h_1wS0oJBSg0sboaM)QHO(s37`q_u7J?t``53w8+J63
zlnGBSDoVHnWgeKM{cw~1m|>d?cCZO4rw59flwhX$>uH-_rVcKrxmWQ}<^H0a#9^*^
zIDT-em`&Gd-VP6HWXSEukKxpw>f5{wbxX*&1TakU`jTr&HdmeGKffjVz)KAUG)kFL
zexjhAlg*#?y!uU)+fS88ZH;7$1S`b!r@!K-ourh2{0gR66>Az>SWg?zwGRx@XGGi4
zSHOEmfeKm5+#)-9zc$Ar(KY7pXumJ=?3`cp?^rc$h}49hm^JwIOY9kY)vU3QB!}T8
zU}gs1Ei;AF?5NK)!^GpAV4`_Kc2S3e@s;&m2QOz)@T^qVaON*O>Rt1+R@ZoT@X?yI
zlJGmzcuQ<eJC{rU54<PYRLrm|!&ndEAn_6z6>pBl*%8-i%1KCP>M*<^;|T2xkd+6$
z+tXrh-rMj$L{+@BPn4)i2>AZZVZ~wvqR$agz0ajLf!C$&7c(~7cjh=aL6)>0lUYG6
zL4&mODTf8<S~=P^s^BAKn#*6cWlP;fWUYtRj0P7XiVG|nitF{c_R-}Iiw4eG_JAPK
zsO~&rCvI^7gzT~*9&?ej#to2wJY3!)yL^AN-$ubjl!r$M0l4NPB*-Ai`?~!sE~d#P
zDu+FYIV~7euEl#jf3Cgbfa28oiF(fSuoa;i8?FOT-8nY(<?v(i=FvXEqfsX}JLcL+
zAG;|cR1~2t<EfSC<&<}ATpRbbIi-@GVJscLm2~xnr)=LvZlQ2i#*~IKDAak_jgL&T
zfBq7E@_EXFlU)ZZt$>|Ha%8^!_&fJ~lKPkB1Lu-#dOl$%J?3tiEj1l}sXPjP{e5rQ
zvbOF~Al(JMAa^7Wnq(S{vt9SQ#T7S)?pt{w$>xF?w&enM$HH3j4?)?I9h`2y7;D%5
z?JoNd=@RUr8K&Odw*8O#0Zv9fOz>jzQvhq-uqS@OUWNG4E|XIyWh~ldga_)O3ATMd
zZI`)P#)g95qXS1WO81VpUk%pQ9MFW6==C{36XGY_eYO8{PlqN9^N5QFXGUD$?OPK)
z=N#<<=@qmRkevo(wEQ;DzdbT%e27FAyf@HovaF2U!CeKqi|_0gc^y7=&|QYo4W})T
z5+!h>WOMuV-iz-$S+7cFEP_X+$pBiY{@$-U6uJwjKvShTWX+|xiI2vc==F!!?JFfC
z`uAz0+7O&JVT=Ri0hIt>IRvDj^kF>kkk@=ybiD(>TBMr-%w!NHfLuv4H{WX+K6N%=
zR8$F#!ZkxHhw`q(d??9R!^iESKb+qkbZQ_GxY-vE*a!Yn3D%R2=MX4}+9$dzpxNk8
zbsu3sw5x^(s<;d@;E?Sw%0&)(YyuN1))N=&@sDlN>;JNzny1w?t?=-e#(&$_@6ziD
z!WfSQWLjHxaYJxrk45<QDfJ@w>L5}GMcQDB(#^u}?2&<5ci;yHRT4$D2viU?^OWt9
z?Xs6*+d37~!YfrwsntDh-|FaeD+2@Z;(}5axrmu|U;q`QmM(0!@@q38q)#+8H~4=n
za&wa?bqx__Q)cvHgS?J@`{%UK{_h?vz`!T;VA0)%gDN+aF(?_PVy!o&w{{rHFTiI8
zspOK8;w;Vn+}7*mQlPkCA$3L*EB;Wko%WfoP8h6CIJ+t)E_<1+p5-!7=+PSD7RipL
zm_wi19=E&fs3f(tEJI$32<gKW_LsSO6_Evrp`b{HlTO5Pr5(RVBP)4XK^F)fDxOJc
zBmeE%;6*XGFF=eEo9XeCbYX`1y@fwLNCo2G3sH%a@hg9A@89~8`jW^L_7QS4r70%y
zQvc0^PI#hg!}dutk3Q@F)U;_#h5CdiFrpD}u>E$Q;_uAVoF~g0Kve?=CSCfGv!1uz
zmpV^VHb?=RZwOO$3Ff68BKld|Y=@KQiZ#%=4<tM2R$gZPZ&k)B<-i<BXA@W}A~5t#
z`#3vywnkw17P(ZL1VB&mE!9jKZU+Rh)qis?sb<29c29H7xo}JIxx+y%HnDeWJ7b57
zG)Y!4wS`SYOiL`dqoti0urYFBFY0-s(<MMnFgDqy2LUPzkTpU^G)NwUa#@C1GSBwE
z+8u$Qn-PzaNSR7Lxvq$5_U16oG{_SM55(p}f9?3h#`n<8$Cnn6y;9xA(ooxchq2DH
zV;YWA_pb*Q&HWOn`%SYrn?BBUZ-Mqxchh|!1C_G2sa-bJeSn&ocKDDJrV@9{rS_S{
z0faTgJ4wl7P|#mYUXORSzoGwNpKygr$U0oc84n@d6khIs^Oxosd1_Fsux^RlM9%ZU
zrgnZ%sbdd<v>tLoiV4r}p!L6g-R;5<Kamu-Qcd3+fAVW8!S%jckc47yPbk!($3DsO
zpA2%Y+}y>f)j`^pAeWxO)BUU<$VJh~Runaf4izlNk3ZYbr^o)qhzlBV0k%<nrxRCT
zZ7H{V{qiF&i3PBe2euaTGK3upiBpC!bC=xWU7Q<8i9CRZ1ekp(IlyCPw%7MBO3<@`
zpIA@|VTgN8yro3b;2!VumP)|g4d_(qaK{KK4U&{#ud(?zL{B-Rk&M@qTGdF&AM{A;
zZB}0GAC8F?KM_iVYSJM(ND71a>Sy*~8|}{GhRPfTu@GQFN<A6ooj2{YwCG_8gyMV~
z7y_IbtpPpow#~XU`hR~l5`hA><Pg%6qM(2MP?~vcqy6e~_n`onDoPC}H4QJywAg6(
zW$MjozUqrdEM#0#{QCTL`~GV>6Ii^7Y8Zy)<Zw6$LtpUyHs43qKUHb9AVRCI)!K(}
z6_D9kV4oVKJ-gDpJxq#%!ibn|s;;mL3v|Lf0@A)r{T2z4)c8y7_O4FSk(ryqEI{T1
zZG2Cfz5Qwx{pTp*e2`(Po2NToLN~xw-39hWiVdavaVxueTciC~@%p723zKMI9A&C;
zhPmi(+vnjhpICLJwrnB74?g**ePqgUk**~_0U>6y?0~Jh+X?eYDAdY4X=#(meZ>~G
zcVuFnc@3k96XlL+=KCXd%M<P*Qq$6xgM^;`ZeKHVAv|}P3b;H8GVy`B?65;uhOa8F
zgIAi1aLYbBXxoJ!uy8oVD!H9-L+5{DtHWcQbA&WV1cZkjKCz#Lzo#qhyun-M2QB{C
zM!fBwpa^v%nlnvFI1fB#w?w*MB({Yoqb)DNe7?;7u{Ywb2Kx3p$)Sdf0>~Hc?i{=3
zPe;Wjvx{^rmfQ}WrpImi$vUBy7eaVg3W84yEOISI<HPy(pYYdZRSy?aBLr^@lzZFG
zX{!%Xm}Bx8UW-Bn>PDI{*|duC+r1dEc5$#1DPjkvULHuIrJ;Y>-W#=vn=kDm=Raug
zPBzO)7kuj^;32dE$^x^kKG|XI_%NkL`4FmBvW#iwo*j0^El$v@SeIAWvS#kHE30)z
zHs3<%grZ^PY4~8WdOiPOv=eo#q?cI!o@lN;X5T#)k(8^?jr)Nr4pv^81|F>Ek3Pd)
zlqW8^zA!Gt$^XZ0+3%K^biVWjaZ}g_QjK}t_DXk4Od+A9augCtWt{qyjVp5RvZ$IM
zRn`_)ufd0QRz&!c%5w6>GKHMmnIAXU)-~=LlA%?>u8}hE=d0~$w>S~VK1{A$#P6+I
zXFs{sNhtpgp|wVLAqnBAckKmZoeY1jTv2zjbs-S>)UK^|vLOAhu_;n22aC4Yug2-Z
z12PE>UWZK|C+6Tg-t8Ym&flxlvnNy_iLI~>-@oMj_Ph>mAXotNEgFnOC4PHlnKx~}
z5|$w82!VqdcS&L<n4^QdxA&=xtW@Asv2_H1NKz6c%`dk7IkDq{VzSWmSCWGhD3oco
z->$vDNq}o=a!N88X7~5D$0@P-&tRq~eY3Sa5Gk~QKt+m<^G^3~Xc)Vvq55gG=ShPY
zpd(UOonrjddMc650AN74C}>8K^$BMCW;<}9%M{Q&!tRzWB;DAF=AVyk%PCGsxFg+`
zK;sB?nd_Kn;@8?qPdahdaMX8om56Zs?p$a8y4OuR<X~uq2N5RWf>-RU$5f<-NV@m2
zA~HmJ$!qqjJEL>oYA6%eKq?EA%X~M~|Gg?!SSpolOo!1HuJUU?IQ95kwkl<3)%n5H
z$blY>kYi=?C;GQf)A?+ju^+WG>Xw);Y1!t>Vg7(%mMsqJ|M6+@C$X%7$7FWg<2Re2
zcgZC%{gFdyri}Ibt<XP-6Dd2|Y`DQM9v&+%MtqCD+RKFkPBa~!wH?~VZUvr&W0Do>
zre=q*%{O%Ma~G*!Qv|(3HFO+lGCX=~D=)WS<k}ZBVh)v$gB(BY6BJ7tH}V!<>n5zw
zK1yphfi$Nr*%ba0e{nArv9|fLQwK5y+AuweUEXP~Eou{8@tqp_;}a(kl1^$k$3B;;
zLh=FGg5PJCL)O7#zImnXS?kC;01AwTT^#{&Ob6Q`-U+1rs*LOcjq*vR-evab%bNW4
zTEtH7MknZyI)PJ*kfht)9qgI{cNxgDVs-$i6NI=u2QIbqDxI)LF@p<5z&f^TY3uiK
z0_Gf7^P}a<Qq9A?>^pZk38z<M2>Gf+v*9ZHeToxhSBo`8fRVd*vCTRy`p)11b2)qR
zCFy2Zp}o2){CR?ZEm$BU{j|TAjj47rao5U1RdU3r^@&M#^bI1GDUu9Z1xg)IS(&BF
zn!UBFvHZDXc^x?q(<Zao6&-Z8WMSE`8o|k#6=}_?FKZ%$4?7JU=&?;CO+3<=U#@I6
zu&*}5OVwF*C+u$&HBPmkL@M)`bi<Q^U<w+}i6qq}>yl`u#@c1)L~Xhh0`RWlc!>@5
z1RzP>7EoTQIU~cL5+D#jg_F0X0cRk4n^H01^m&cFUn_Jb2SP|H(9LA65z0aoweh|m
zrM&?7bU{l69v!?zX6GjV`V~4Lo(-K#$WQGloxMjR>bCepYa&O(T7?Twy81Yji=h%`
z=_&rOo)S`suj^)5=cZ(t6>a^8ua6M|Kbm)y50@4p85%JA9dGo9u7@aGV?)Tyh!f_&
zkPN_!f*FXdIh2F|1EbBI+q@5AbUXuxwJXz+`C&k|*<wo$+Ma8b<{e2d#)|4>4`gIf
ze*eu5c_F6H7%jI38Fd)@CFHO13M%QVC+^3uF@wIeht|bp&sHrgrbL5q?!l&eb+^4J
zxIYV*S6Nv-RH{s=AO(bR+aI&mEuDCwS)@M7rSV-j@8@TEvFAqSodusLL1qP(vWDtO
zq9o-q_S$iSHA5rae;lN8q4?muqrcM&{etMm(wcxQl<KE1kllKc=dTV1ZIc+3FhWiS
z_=^P7@ELpmn23R+Ba~r>MUcOvb?$rCuD?V7-jiA>wOgG<K>ChMX@^<<<QF5Z9?NDE
z0wHi!OmvkZh(V6AYq!E5@Vv_Ly}Gg&$pWBWM3`wV8|Q!Up$ge+C$=Y~n9t(8`xj|*
z31lvT4OJ2tP$`L~U!3>hk*H@zF;7Y6090$&E-kQl-^F*@@Aqjwl$gALMV9nlB0W_}
zX4?#V?M}_Z_30~_KfzzaxkQU<Y=PfwSChi~B6cFl1E(iYJyr#CoorgC__dpzkVp@(
zlxC)dt|`$>>fq1a<D?xcnJ|WK;-(4a_Fn!)yHx^3lECMMgi26@3Fd`?{@))oc`5k5
zuA}jC1A`+MLY|Z1_iY>@Ps35_1Vy#XCzsv8%WK`v+ZV690hu(4!jghW<|6Ma^d24*
znR;G890trv&%9U%eni62_!m;tI<WuLI?%rc!x3yfI0+B<cYP}x@N_oSzbKo`?V~Q}
zU3{uAa-fh;oF+lg6^x6hDkH399H<Z`@l9ybsYh(rGn+g-Jwh_2odt(N^eUjnL{slI
z`*%A9HTDT+DsoK3=b+nzwY>Qz`%(+n)0@MLZ|C4kUM<r+u-(qQ)#cSRQ68WUX)&QY
z?@@b3xN9Q^jLPUxwuLCr^q*pT2l+@&w}R6{(Kv^bjLM{)_S2~`mjGuJC#eJ<AJ<ZH
z`eXqbud{QTYfhgZ(@BOYfEi(5|1!mH@9gqB1<dED@w8`4Sml6_PqPDhsg&Ot%paiM
z$?Z<9wZ~4^;gATV#^S;anH`yK?zqujb52Yznp`2=Dkz0kh}I~WGZM^2$LtRuM|Pc{
zo&l9JLIkn=Q2d(TSH*9g5!tF0gJYP1LLQuaJ{%w9mLK*KCp2kvJB(UE7D*jL>h@Gt
zyT59yhC71D-nth^Ij5Q@zqQBqxuKB?K&TO<J}gnJ<6Rr=;#=KC`Ud3Xk>DYFH0(pW
z`thiaHwL8c!jOu9R&Dd?vo_-XsD=mN?FxeI@Q^2>-o!d@<6}CMiT#Y5SyEb60wzU%
z8GyJC=f$5tLVp?3uB8Lva0o%-kYnloH!Xf#iONAA6aqgYiU9qgp4a``qJGKK@fi8c
z>wqVj(J7S9Y4<2=5?%Sd!V>Zr?<|olB%3K_><oMTR(B0nu~?u7h<MqXX4%I-aH5{T
z7ino>B&qblG@5AN-WqkzcX~gX8gw8OHPCcZG|9euN;HxRY(rlOv<Ny)o5Z*Q8)7Q3
zrB@5oz>NwqW?gn%*3$^m(6EpTl?O>Gb9Q!I(d3v4^6|aInxW+ZAygW3Z~M4T@9}qP
z9hKD-c+Iovajh2Ujl&Ql^JBNT$Qk@CQJ_V|CGwMu`S$YQkI7)Yic5+C7Lge+rgPk&
zReUr-66I9shlaj?RjU3Si_)<i;%J;$JYN3z@-zBS0Xbi98dl`*w_XwV;Tw9B&<^#q
zVj!PC_CNi6HYddsMJ}JMdsClHGunYoF`E+ON}tj@gnenV@6x!-mhrcA@vp_EQft5l
zn$uF_u3X1mGjVbRpB{Q*e#r%kbY(gYr4n4r>k5ALLvy)FQb@rC^UX}(PI3FD=sgPR
zhD#(IJlqpq<AyEP$B^zZQcVMe^47eS9JiAvVbSxXML+0NF+~}1Pt4JK<Ouf=JOB7y
zK9X0GfW?>eM{sX`V&(@iq8t057<p=K>XG6BUW8dN#V)<i)zk|rN7F<|3`JR8=-slf
zw^Kh;h)^Gb&bk^wEHPe@gj&sZzr}-%OKYNpOTSlH%@Fv=@%1>+3t#sRT^D`!+ccQw
z(_S)!Yy@0`*n22?r`l1E2KHVm`%vFjO8Jz8jI<A;u20?UJsayf3&k_}Z}VaDznc%C
zX0F5~8YsOq(!Q8Z-0Hm^DR)pGxR@DR8ri*8*6fqt0>4;N%%Vk#7^L9+<!@@+L^=pv
zi7^#^dk}+-{gXFq-z|CoHOuS;3W4;Ko-n8Kzsd#0cwD(4%z;B06God0gOSr@%-)mF
zxIuBe9=dKF{+^ys7H8jFZ|@_GD|7I`A-QM6dAVFJ-b4z?jWo0Ph&|^KZ3;!sD-y#m
zu3n~TALal2ls1!QNjpppo*<n!@Ypl!ZR>?EEIRqyzMudQA;8fW?)wbm|8(IwGn~XV
zz9Y&^G0$zk@bKd*!VKq7G7C8%l&Qe`wU}lX#zejOiq3i|5E>#4xDjH9DrVY!4V;iv
z15reP<EQzL8rOBxY@Zgc<C|tRi6Eq}sQxtDBHjI64kEspQp?C)>2`m@-hS2zVzsnf
zNjhj9&5xN;<xisyS#mG}p*CCL;Y&3Q7u!88m3)|A0w*f$2%=-DS3}}3-`>>FJ*pNH
z1D^;fPug&vJvH8aWyhhg3dp14@E1K~yQVq;NGbfwkZtEe9_a5GHufARM;iq&G=4^^
zIctvn{S^0&st?p*mnFzBu@BoWE%iEn2;&{gNSp|TGVgcHE4JSG?pFjhOWJ)sSDu$2
zgweS33A?18-kv-3X5stb0Se<b2l;=?Y^xS}3%v87WYG)SRBUD@8CnKG^Z|t4xcNg7
zJ8{=SC_zj*CisW`{&&eycfv-As|rapW$5A9dmN}tvntka{#TP8FLG58MSzM@FGprs
z;&T!<PA~JPCPj$PiLmQv1;-*`2lcqc|0GT&+%j9W5jT|iJHtBqXEaw&6bYmgOm3Ev
zg9rhk<@#eUk9Y)rOZ9JS7{N|Nqgm5t5BiNSbKjL+#-c+)%M`pM^Xc{e;ovE_V~=8@
za&faI7AT7IN4AZShey(9G;fMhi;zN?xAOebw(cpqYNHAgVMIN>hu?OrJ_6S;8dx$!
z<S|J?C7tW%uF<8CCnr%7WQxhL$kG0v9erO!1VcU03%QjwLBJ(C3tH!7bK@fK+VaMS
zvmzxV#c(ohTk^5y>vsO5_r=H`L01Z(rf2#!W_?3{$`8@{M=i{1oL$bZ>X}er7X4uV
z{#=DLOw^EYGQAQynuvb>lil?`^pdOb-JIbMcs;nY-b6Yb;UvJrGduhH+s}xV`}cs&
zfviA3Klx|<DEw*0JfGu7{Gk8km`cKv0XGdU^XIJz{#I7ZZHh0h9DXq_#l__^UH}jr
zG3|<2|HZ-jncgU5^$X3ONWWe`{hN!!^OAa)(&qlK;I9N)uqKi{1V)lzCe`z2eG@H(
zqdfKm<5YBn6gX{+(E>ZNHu}*hMTC%kE)ym=q7=!~UfkQ8{9xo`cPPItHB&|>;)G+v
z<M-S2`7!&_wN)(yH^A2GqmfKQWgm<8N3PSH8D4ytVn<S^!1M<mwDxqDI?bvMVU|g_
zVm?-UYwMlmT365!tVyXuzzde&oVm-+JuSBVk|4WEIL4yY4Z*7dMS*e6{KbA<5ylcK
zwHdHT^5uK>+mnyRgtD@d_zP4PsaH68`$za&|BeYIWw9{f_8e&k%`ivm``_(x)A5Ah
zRUrMfW8~)uM0Af`nkDtac+NcVWjvU-zC7!_8%~%17nC_W?d24Eh2-}^rBXSA&i9M6
z-YGdfo}`|<tZHbADRW52&&prUN%{2*aXO^TCroL*@EQfy1bPLW(b<!1ADZI9g;P{V
zzmk#<agc#2Og399t=-|U$%63-O|S!ZOvo5@yWO<aNehK#$MHsq+md1Os_pxX%GjjK
z8}!FXTNT8_F@9xdt&)<d>Ij^MhZcZs1}l)(%D;A+w#i6FhMf>vTk?JhChZ%0`(64*
z2%|8uA<Amv$VA|(TdVD*CrOYc$A<lf!8E4FPxh=mdKR<F2MaT<F~j`4Cb1G^J9|t1
zlC!b%Brkq<<d!N8wN4P>5FHnx(+kURbWm(;vP`q{O#g+iB0r*{iA0;oU`;F|HzZ<E
z1ZVogHac;ROxWP>DA5t8`js2p-?OyVNxX-*z51BF_7#oyq+(IZa93#|r7A%hEA?|P
zdZl*6BBMoDK)x~;kgc)&C-2T9Iy07-ya)be<&YtS<+O^MQLFr$*D0AZzZkGQQLdn=
zARc^jnAiO`MN^5Sm>3s?JbP$f7q4!v<6I2sDpGocZJCAMU0+081533eU;wj~p%`k*
zr~pWbDYDM4ofN%lo5s_}JEYj42$M(I^Bz_qMcmFncCk?O0brqWi|x#r(Wk*Kg(T$a
zi-@Fh$KiI)WG4#QLy<5dcDUU<MI<jIBtUy#JessIZAdgur<%AfakFk{DuSLI=;1el
z>OdkV`jM=-Kl?S6?cr2iZfb9n6X&<@8Pg)WqnPWG$~uW*d#7DvZu!$UO9{z!fK{1j
zY%*Vzh_iaym)_C=HWGg7%$<<W0xpU903GeUZ>yM0xa0!^Avs*!$EwY?^$<-dv*tz2
z@KR_SeGN;8cpn~gFXM#W$M+rIegE0Bq+fN<wj#+23{dl)R5I`<G(!S=5(~eeCVu|q
zF_)go1ndHKJekod!M-sPRUA}`CM*o0%B<JCTRJOfilRlhsT!XMyjiy2Cd&2uXzzz+
zooO<|i>T=2e|tc+GuL7BMS-|}U}+MsYwu4y!(DtF+K<<mV$SdAkBD|M3{r83PZLZn
zCE808{rbNLcP51hG(l~Gv_+(wM{cr{UXHmK)q*MSjgg0uSa?O)y;m&r`gc@b5fZ0;
ziU(qXfPA2imi%mAo~Dow)M1`z`;ihN0%^iG@aNeBkH;K+Gw7|sHab-XY6<a6OKkZk
z0Wt}U3=1dC`oVh@hz!$)PWF2q?~Dck3r`DfA8UjKYum*?^X~v4!-#3Bd!B3y=|dKd
zrHXF;<3UFq+E9$D7mBOt2;lA0j<MrzMS=AW!E-eE?fR907nrJi|Fh8wMduyJVDOqi
ziF3M8QT49y8-zQqv+D2`SP{ZJs4WxyF9OTTbvX<jlft81#2oVke?ibA&SDi|$#GC{
zB5=JE&En1WaDRtV>V?ff-vn!c4Z{O&RAt9M;W+Qmi82HM6c@CX8Rom5cK-O7{(IEi
z)51NR{3vmAKubh>8P;_{x<4hn-N-h%i9ASA@{gqWjgIPCvRX(7!Hp|@8|+l`O=G{?
zh%jJIkc6R%9<PC@=vZI>k8nR^Hhwo<G_n%d!JGvD!gt*+R)G3IAk_N$GEDDl{7on8
zHU(c6PJc1f2A^mC9J~0G*fLrqkU8arH;Mn+b%b5~k0M9eh@onH2`PL*eLQCTKC>Od
zGpBA8F9lu*L7tgAcG{<w#y%AwL&<QIC|n;I=?DK?d-iNae#(=m&q(2p(os+qhCY>M
zq}~hc-m_xA3m!=}S}1O$zZi?uafuyzcI=de0fD6;b1Tq6q-pWe+pM&|g|YDgTwA%t
zYf4ASC-}KPzGC}ba=bgeN@Gqkqx{@wCfeV_>^RzyucU-vYRKVsd)8iA?$V~c=m+u0
zyO2_qOhwHidrO&<Nz^IKa*`U5oNAIe?FqX!$f=^@iU>$SIx}M;)f`+MpYe@Oq5PL1
z=>!3LSCLD>?v!qG1`)kv*K`a6b_uHmsY5f2z|Nvy7SNwG!|=+2W2TW0+nP{i#-H}I
zYaEqF#~=;lkh2ox)Zb?(^>y;>QeiR|t`GdE13%lP`2juK2`;QlJdo(cCHU$sds|BE
z<GdIgpKy-^*#~jn6G%>&2Cvz3t@^V-nz{*Ty%r>x5Xf7<FU{tC5TN)_dqZjHWgVeo
z;@k;8`zdL5#78P-=SWI#SP0+;k8*<f>0Z0*h;CJp4rK^<sLhJ%bEbKHf=xd=)&@=@
zg+<E#R23C`nPkozYOh=68rx3TZMcA_ibb{7e&<|7YA@vu04RMSiRQBIc78BSjb9{l
z3kVueof6RS+(K71D&N-3Q(eNl%q<;0lu+L#@#%X^F>M#xH^Gd`!*$|^1*D$PJKz*u
z+SUK{OBXnxw8dSLFbKlarha6V`jP+II_W2D9kfdjpp*X!w{dd<E^OuhJt^={(LZ_w
zPi#tqOFhP~s!}B+>YV*Wu1D~^X=Z1He|^x&#-r--!eS4Tu3G7Nx~jzA{GKW{ekmsO
zc-)XC(fUd2Y;umC61FB{>1__TRB^5wZ?*~R9Vi@{`<mKf+*DCFtVEl?ZN`I6-LNfq
zBJ$;_X8L}+`2qbq-`Pd7Bp4s^Y`C|0_~@z5_uHnw#k~4_!<|7pYOOY^vhe1;D*N#6
zn7uCq>s~D6>q1YEYW`{KuUz3&Y2a&w4hi|5bdxmL-`X^=`T5cWEs#Uri%=0}n%X}0
z{quqW$DPy}D-B_mQ%I36D)ldD-E?81nvUSzbd|gp-wS8D*^unN`<s3*zeR?Dm5$(7
zP_#)h%^$O`huO8dlrf=txD0Y7-zlmKZG4YCt03lvS5+tCK;df0K2p@KkpE1YW>b&z
z+%lrI9JfJcVw%xU*w%?L-@&}g`gCI9LhK08O(&WM2HGKq!u`79Q?UO7Scf!%C7Efn
z?YmXSvE(6RC{~tJm++Py)Ju7A@wLfBQ56#=4vJGe(Yue>c1>c|v{iQnRUl41F&CTc
z=@)Fq7`>;&PshiLP=;d{U3A1A%F)P+jUUnyfjcM-VXzK0Jm1^$W%TZcb-uvArzIqq
z!@J_+ztP?jsoRz+gD~UUd2t<Y^u7wlw}<kv-5~%Y?_DR%-gsuTzo(kZ&$JVNZZvaV
zq&WK7#Y3dygBb%vl6&%O-&><QbPV+vK^zchZ27Uk6DQasO_jbFm|T8E@lYJ`492{f
z0dL!%HYo^^)G--31vS&0$LgIv*027;5jqwU9$@5z#4W*Gaf|=l`zn!h#=CY9T}}ky
z(g$za?Qf_F0N|w~(sbq&8aAPyH*=~^Zvxw!RVFPUNtwcKx@)@Ewth?r{UZ`8Kwu`V
zeo}TK)lQH7+0oJs3nijVgBlo$py6%CYb@C5?ds&_x6+Lqw5Joc5eV=2!@Ka9vMDl^
zJuB2mnvC<1Y_@Ii(zZoCwqD0#=2i-UA7o9a+eb@mkNQg1M5K@<=UC1bgp=5p^Nz(&
zeN|^MAY-wrD{=iPou`>eXLzsdQMP=N00FWjL?XwMWSBSZu-z7`hG#{Bb_!-)C2*Es
zyw9umUi9P7F)J2x32U8vn-nGz%;=4N<=tACkZ=#pu06EE1d(VCH?u!AjQ(I=W1*+a
zkrGbuwgEw-(0f*Uci#|o-D4VtgJ2MiPrwRQz8T%!JMyh#?w7XEO0~}7btal`%I)~a
zl_iE!NLTT%Rd>+5E-~h--n5INGbRF8P#hiSTe3XpWfOPMt_=D=5uuQAtV8YsIV4iH
z`|U@;NNX)mP!z>?!6{=mLF!<h>FnP#P#F$+!J*j)QXCsZC!!F#tZZx_Jkz~l7zipV
zT>J%TrgU}QvCs1_ik=w@&VxOSZ51V<Mjz@$fEKCO_<aKAOVj{UMTe7*rtJ>&=<Bm=
z+qYehSRdKqt}Rar3pX#ZF-?{Kmz+DVThX4hGA5ZRm)LjmbXFb`bsSj@@fL!K3@8!K
z&$ZV6oTeYbGWRGg9V0za((tbd;-8A_^lIgbN7}KtO0e2=Y2fJ9Kh-XHHfC8*?NZ1t
zu7-;t^mcJzdH1oG*m|$Td^%R;p@frwY2<S73X?Ci_Nl;4$pJ%9hLZzfB%QH13lDAZ
zdpsP`?$#zdyTU1k7C;Nb@kul|pfv92n)*WrkVBT5jWi^oo%t2?cn|qqX?9UdOpmA_
zGhQR<cy34?`Q9hJ&M!8e)<rqbRP4&~B8LfZmbZMV$R%UYsh071I@cpFvzIx;_s17$
z(zJ(8ju!pWGpWeTIom(Et^QpHu$bJGTvOG;-*wf$6RauO<{sa_bb$V~S1GhPfFc2Z
zU4N;6Te1Ezm}P!PGk<Qo;C9e3gVZ!VQ+k+-a{ST@^sn?(NM*KXT2IrUzW?Xx`p4`#
z7#R4dIU~X!m#BZrC+|P9*yJYWnVxO^i*M9F1~ycIi+RZ%&122{{QiNUv`XsZJ(9YZ
zCyM<Se$+qaU^IiUH7_~aG`Z04ey#pJkIaZ9M`R{(ZfXxR;XHq2{{Mgf6E6XXB2UvJ
zDa-s);;#u3+1k#hb!D1uYD{isU-QkC{(G4*swG0eJJ{|)%51;F+g%#9{S#Fn5-~H+
z0#pQiASq_rmEI|%oU9OH;SoVo6s>0LuQw_@zg5)sK6<49kjn-N<^#<`rsSK!Uh)Xl
zJffHC1{Q-~6rGf6#=)3h=p^7FhnJz@5pg~@jP{lXA}ner2`5AelIlSvoqH^P(S9AV
zhe~3zQ#+Ol7L7n`=LZwK_v%Fpm`O0k^dkb2LPo(X(cC@H8~?C!PNO|f1g^l3fkvK^
zW?Q61M_&#ITu`$?1S6Cr3^o7R8$MF`&H2g#Wq%?DAVUER_s2)Qw<~obv?%hSRD9$~
z@dT61gcV-PTXa~0vwDFJ6gsnH^W{o!dsylQt#QEkiIbo5zIZIU){tG20yMpJ!PF5D
z@lY3C@1>22zV1(*u$fajax|I~e3cOAr<lo0y?Gx-KfXxkH)K(#;H4uWMZRU8m-mW$
z7{<2gQ>GH8yt2YO{El9NNz5a!Km!faMp0O%M@uh#YgE~wh@BW`jh=!Zkfac>r5n68
z-|2YSkd#&~GKH|6zvpG`Q31s)a_7YrD4R^uR#U$83u2qJn4@JW;ceE88X6A2?p5P2
zTi&GE<WRj0+8u?;WD42mPw)8GHPq|4VNjP0{5Eb&`fuVEe@<{)#GMGfN9p&anc~m<
zE7~;q;BK113rsg5tS=uFpeR7^QBaR>>VNf`vif6cd9QqeX%@*SzikitQ+70(bsG%4
z05@q_XSr}o_zeS>`Lo|{bV?wBpAjFCODIwN^MZf(tBq0-@MQsrB3LcDE{PUew)fvy
zp<S2UF@LnAYC~cjyfJx_KlncPg>Z)qD`toB>)3sV*7z4sRI4w~5<u<vN_?b8-t+If
z&0QpQuF4918nA5#9`?W4tRkK!N2xOfv6yO3Zsxx{Pk%Fu)kDTaP;LUemMO)D?>G5B
zGzeZ0s=d_1`R3P=Y%otv_P?DU+^;LS!RiXSf>;wAeL712e%p@N75yWW`53<*W!26f
z!|GwJFORg7veoKgNLaBkr66@-*Wt|#jqp!;ENbCu3b0z?E*-83J~j(){lT?<i{ZiV
z?#6;rVWE!`4?)JAf7rvn<m~7lqZHpDOo$<_GyDfafIqtX?@fq0%-DGOM&k96l_h*5
z*Z>ph`CFDb)^XW_v{FiHS~!_gu>=0@oo>jzW|xRcgiu>N=AtY7l~2063L3ITjW;Cd
z?D?+e_{W}7%5s(f@{-|o<b)w-#b*U)3$*bx+pI&_KM+33PNPL8WB}bGY=aCZ!#kEX
zCZ={Ine!9vp21FVB8fiN5wB!NL1ya2^u;kIA~3b`op{{`V{K9RzJP2(903Sf!Ex3;
z)Z1O$iIPa*U<;+YIj5N&c287lt->I($(2-xFU12l!<yJ{hDObPE98F*+nz^$gMB1S
z5nTUsJzKj(nIc#Wt#C0uURZFhzu68N9o67qh(jHp0t*9}A>E9P^9EfR)p(PBWfzF_
zL7$NTOEJ&iVc%*PM6da#h%_sgAfZZm^PTqXQ=KG-r4G&$Yr{65o@g7l(Vr(soyvf-
zgq|3d?ZUh51qlwBD^6jcOET0bMPF&n*%1XFqK5GBxG69Ws0tWTm1CF9P||)f{z}Y`
ztr9PI`vULatvdCSD{!qfq0U19>U<!<9?o%V+^q(9m;|}Va8ciju*<Jjnb?gG<C*Ac
z5DUM|@aC)+T`jYR#HP?_US`an$zH|Li?xFi+BvB=0-j<2v>f9dn-H{5LXSorB1FhV
zk94xRey08ARF`LB4`CBRvoV=a%_Pw7Rd(`o8i?S{q3KBNgM%UvOf*eqdZ{-y-rZ4A
zJK;uXmY%fP&qwY0n&?^6F;SGw0uLK~C8*(5war)NH&|Y*xE!_}FWEbxL?WLeq+V3i
z{JN@><x_No=15JB+8TqZm|axj?QNhxhbO{P(F;zGGf9wc@7k~HHU6?JQogg37Q46?
z4|7fb=2biOUh*)E(jHzmEO7VXLIHoWCi23m?dvO2sK79}jFM$&)GuWkP?ejX@z%AD
zI;EdRN3a2EH4l9VtmRFw!-j~Lo>NK3;u47p>GQx2-2aES;d_<fO%w*S;}i{fvyUX$
zORshPlZA|gkOBY=xTK?gZ(+xDS06)yb%yr2-UqJap8vGAANCiq0K5Y1aIOrD0btr}
zR-JY_1c?@~3vo-Eoz+(VMEoLgh&k|5vqE|wxRkyJT11U$`h2s?3iU5}1Wy#|sngDL
zf9fXuL9!C`20hX2#%ldsFEWLs{)3Zbro7bbxij_e8b%v)?UZJ(T&I5!x=~_9{NY<x
zH=CUje5jJr8$B2so6Wsa|Il@GIq1rZK5X`RAN@bCM*G&xj|-dK*+u_EEnk#?IoPS$
z&-)uo;|6D;9Uv0SUqNbDGdiN#)|HX^qXZ*}$uUt+H){njn__it@lZfmE)+_W=}B{{
zY|7x6uJ3E~OgRGcB~9@Cclcd4sQE%2<ipYdT0K#S0<P*{7Z^S7Y_>eQO={>EDJGUd
z0jHR|pR^T|8$EJ`#xf8}l$MCAN!l3oGwl)Y!l{aB!(R+wrc87}i<n>bdaV}*O%-en
zX}r|PfhrEw_S0hg4^MOLWd)TLb+AJbGz${H<563&R#6P77(v0|kr<kJ@We73+G~49
zU00|3P-YehW=~wSPp5eEPmgNJ)|CV|E<lhL#4YFSdl&kr{vGp1G08nt6T1X>AnHd-
zrssCIYpzfgk6WHaM;CYj6dJ+1dF)c}>-4B!apzf*qPj}RuEiGtBA97j%d*?z8=rKM
z5?7N5JI;iid?FJzDz~&&fj+DUX~c`V+na_*<lmyr5O^bG-^uZCq-V~trGp%55^CwX
zih-;zHH8$DQSEJ6qo6__{siX}d=sj5OuT*M868^>Xoe)KbmmC=8|k>Rx9nY`rTs0K
zeOysoO<z(PMdS?gNmsj;DJBcBGKKs!EEe-_(K<<{?gj7Cy-{PksAZB`zl1)*6xywi
z*JP+hDS!aN^qVsIF4+v8=wI=qdMMmZ(+jl7g8^7y>h0Sc)%Xw64^phIsi6-Hmj?$j
z%_Pq7`=9E3+3cW@B&`fG>ugbt|Lc$1%D{C2qS5&^iWJDL^X>2^-`}Cj803`5t-#a5
z7>9IImTm8w;}%&+j%l9Yu8_udvsGIohKve2GPFo47`GJjqVcc3+`+^;7V8XbBzTsq
zAsy|Y67pJdFWri4ofMPO&MSVx0U4mk2I{HlNGw0;$a6379=+2IO{RCgH(v)dg8t7W
zbN`t5-Q(S4Wa5I_(lJ7*$2Q1a7(Zf*QtA=!!8?>&N?h#H2Et2~V4ClVPl^uDP8O?8
zARq%=DJ7eEU&gPG)`7A-ZkJLrC&0}3)<o|8`_cGeceysdpd$!x9@sanpd5q)2jc%O
zk6gV$PgYi~<lMm|&>_gCh}suFXt0xIgX6BOLLw(C?Ya0zCps{Fr$KZQQ*@(w^nuI0
zwX=0`3c5*tk%(MMkbu0*;&<$^J7ZV<rfiX9XNK!EQ_3+ZrbSD8Uyjm@apL3=`x5*>
z0E_!ig!vIoOi$=R0HKnPR$zh=EmM-WM&qIL5_fs$Pg4jBm&1uu<xvbImeHUEkY1|!
z>o)JVIm$zyM|w8&Ix(pj`K)hj>sqa^(eNM&B#6m05#R4o@5nVe%NvDs+<~O_$maRv
zLof17?f>dgh;qS9ar$t+%j4~W-I3p=qLDgE@z#^jUfRvjR?mLyt$a~6BPlLd@gJy#
zDNq$KZnU)9URUmr&_aaU8$hQdhT9wd^Q7SUyFBXsQm9V~VhD&L(N*98pkzp#Hh9yH
z`$QWt<i47lcO@B=4SMaG5#He^b&Yv2&J?MMAek$}tZ0F_z`pmfJ{Pax1c(&w4wj(X
z$6j(ks*f(k5e_x(OABDKx$P7$>NafwWSMd*>xO{0MhVNXAoE*-ZNE5jN#7<rk%icH
zkdUXo>vH?_JSQnC3-H3yMr}$)*yzg0;)aU1>;jHSDgmSo(#+tOy<6HTz?{9u8VEcb
z02r*@N#>4?_RI;o`DBYo!X$KR`T4R5s=fKs-OtYogQ7{r;FU}rY-0kZaDIF*?1UWX
z6lr#C@`Yz2qt;)Jo&)M2g#xd0<*0x+0dxST>(~JQ{M}lAlTVZmM;XIr$fi#+oi6r^
zgRWgfJT4<jkfadsw#oAc?sFGuNiUmx(n!S>Bv7*&*3vJ1CMZF=dSV~x$P~ISs)B+E
z{^MdlX}q#RVivQihlpbWOpf3sC)PirU_ddLZVTd8V1kKcN5=Z~UWnP4rfr7>r3~M~
zL6Xk!L=Js+tiSPfCoHTSROdKDxt2q=E7re%r4#oFkGdcWMq5<(Kdc`c8`C(%{!=VH
zru3Cl&`md8_uC_<yMFXw@VJ}_>gVteBpLsZ{mIkv615dt*aUCKWgPr*+w6>h97&V6
zRmH{Sm^#w86jqMh5qI7OP2Z}l7#3?33YpzB^YC49*S+RMJ*Xd}O^1OML`w2~&rNZ~
z&pK&W9NP*;2!R>MFcZhdEq}*JdeG)nSM2o=Ul}o~KV@`W`BEna>?A2P5z(=8`<HQx
zJQbneA#j$0w3jt_AnIFc@OA6s$F<fu^t=<i8|lReQ^w0|z5ez5%R9Lxki9~kwpg+O
zGRh~xygJbqWNR6h+n+GUo=&RcbL{^uA_6%sqDUa%?!a}T%8e5dv(=uvG<t16EuIx|
z%;*}V;gc_0_p!ZUrR&x|F5w*?mk`oP??<TSA(NRB%q91F=Zx3%BT2n1I`w4bK==~p
z?_TIF$c<k66isI=4;eV7U#Wg)L@YUr`NO;)$7;q8@$qqmPzwM=x@^8zb)~zus7~6z
zSwOk7Gy>c)!JBfflR~`0z~GR(%+>6m`b)e$St`db?gF#6*efXm(k0N}-tcJ?jfBM+
z8CYB=X*C&Gaqwxs{zR=A;HGGLKm=%t<a_-0A8>+B!(?NL+as(Bg*E=0cSZaj0NlGl
zIVd1@ASWhfyuYj}VtqS;Oh#h}Zb=0Eutu}|Pj7I7g3+ZiR0NUW6qnrZ-?jd@pG2&H
z^M?ovGI@bN<)9N4uuTXqsC0lah+pRq4}TH;K9~r(Mi?LN_WPaU5cavnKtSZFWq!*I
z5BN2ohVND>x00TX4a@zLKGVFSEWmL(8(D=^vwVgB@ksaJbPh<fsyqW4q~UA+rDJu0
zi2no^DZSXhGMQmu-c7adu8W>exmE&7$R&iz*JIR<)V=UFu~O^v?cw`eMK`Z3AUvb~
z$~);l*xJp}C(mdkOab}TOwGuEh&9vneaf~gZ}RKwn$;Hb9)xzlvsn9!KlM&}H~RF&
zjVeeG2l1v09S>*3rM#wnSotMGD@l?u2F)z!EG=77DH6R<PUyn<7N_=sm2p4apy!(f
z>0Vid<>43OLzsHs`{N#RO9j!4xVl1Ob>uyNz}N2Y1$BeyQILiQq0(rw)$je76KS4)
zB(Gjx7PtcQ!H<4nOoZfg`6{|_2B{*In=(gumw&}vcV!P2!9542>Kp&XXPiiKWg*M}
z?-?zzw8Fn<jeF1dmD2d4eh^|7_x%U`>gn#{?sbDmqIg}3t9T-r3$uTUKXJ9Ym_TK8
zNjZan5egUV)i?Pct#m@Dx`XAH+cKBscK^#2PDaMKn7CUDbCT@v$N9H>>4bTe<+{O1
zlnox?kN#Z$jzSA&^@?-uL0$%g3*enO_0sr#r(m%aZJ_2;t8iqFDZLOEqKh`&7vK6y
zWxeGl|JO&7{{4|`_#*Kpapgkyz%4DkGk)O}dJl@Uc}zHG96Z4k5Es+s6Yr%}QRCkZ
z@`vCyrH}{c6(=RT(w=)(khIGRut1@1D7x@*5Fh#3t|(S-6r2x-KJ<-XbvSm7PVxU-
z93T+`+Bpx_gi?y3I61=B-t==j{J8+FQ%K!GFnUheY0k>4^2YrT^}<(L9D;ne4(%X?
z6QE+I!D?^wC@qf&{21#(Br1L>i6{0)yPbCIDbZhpH~`8e_<4^qpD^PJC^6G~Uu(aq
zr-MH5uDZ~oAt?=Li%C7*JIa3WO`~O3MoA?)r?j@Z5^@h{Q3*z`_(@95J6{Y6{jmLL
z4VAW;RCC3f{*OTiB5PYD#eDp7Nv^_Pv+;Y+EY;*HGL9=L3)jd?<${aL{_(cVb05&a
zd7w;oLCEIV{G&HurV|oyhY)KB*;|WFvggf;uDm^{9#zRP4(L3Aj7{~r{HS!E*tYEQ
z(WDVsIRR>nndnvTRtavoM0I$c^h`@qy!8-o>zz$vBbD_{_?n&92@?ccyzd$Il|P&O
z6cZwa8z>W^tNCYm*`W3>|IDjOj1V!Kw3m#!_k=VG(?+=kzOhH*`yGgGz8a4z^iB#&
ztLg@p(@o5*7$Wzp#@Tnz(aa|w&^eGCT5Jer0xh%iLEERL19av}G*;|^00Z72A0W;h
zInn;oTtTRW1h~D$L#c_<D+%nG#9+lm_U9;_=ZCbYOq6^`vl8hf8#BPJ4r=*)cW+E5
zg>~Fp#zkkCjnCQ_t%6076=HFT7eqwasqX^2%6AV%Bqy0eCJo?f?|jG}FuKLqpLBF#
z@`L~$qwvlK`|?I5fJc%~N?ph^5wZE6cmt9KM;p)h=TX5UGJy=?<uBTC&ubqxZE=#k
z&=?<vTI|%S0zWQa8EOR&OpU9GgMtZS`}IH5_eZK{%@5Bj7U%|R0(6CPMTQ+ZRdEJ5
zs(5KcAdZDQ9fxB7LVH=Q17>wCrkNPPya22)w2v*ZYr?WlOmzTx4v>{1M%E&m5uSKc
zP&%TVQjP$<m`gs_-d*kP$82OJ5aJ>nks}N2vFjZAwYP9ML0AsfmQfmOZG%fsBu(hZ
zK^L3==Znk-*^<BJ*_Lf$uB_7@1%bSw=(!a0lCj+WvcYw(D^do55R$z1u)X+X=}wn8
z2tid<02%?GMJ)1ObAR@S8m^!n@`(C1p%#G2F<W@f`T2HltY+2N>7cfY<@f7Gmstk)
zXU7k2q57OuR}Nlv@D^pvaEfX0n0^07Z4YD3dsdEO!|+I4^}q&u?w1O=l9vGh2Q4AE
zeBnc{Tx@rJ=43?#R+Ny@1hTGRxw_A@PY-wNDzIYyF3{jvGi>`XW|%S+nEJp;1r3yL
zo?R8+ai0Q*aZ-aeY<y6>e{=b3UfU#v38AngJZ6hZY66N8Li5|d@GiVBdL1p*tX+2L
zajMBg^TnzD;ROzSsPl^DGT>9ZrOMTI{9^qHELlFj_7K1}VbC4;O!Mg<@!7vCPJo<;
z+PETy9tDtaA?~^R9eZXlEd;qvG}KK1wv%N|JZftKC^->H$2y36Dj6ANfWL6|t5(@V
zLt@8)1@8?jQ+1_M-_TV+0dbJ$7X@?f^rppb=n#0m6m#phuqUc<lOP;^1_=RiA$TJ{
zUuv)Ws?niBO*AX`LR>Cvh*Zr=uC^B}b0Y>x51|Mt`4e{GEkOxUWM5vZQqF(3;i3Sf
za-OEFS?%}QAL^^&(mWnsFDr<ZAT)1N-+N%s|KFJ<47e>Ccqw~Tq?-x`CNGPrdjycO
z69@nn+R26Pcu9&UNBwpYCYsM?+CBZ9(DmF9r(t{^dcy9_R1um_Y_}FrQMc4!zP#7Y
z_Ep_d3hq^0QZ^VxPR5jX-R)Wb<d3wn{(pNb<ToZi7|;ASq4DP<n!ovX%MNetc*{<X
zq#|hF2B9x`Tr;b;y=uQgN`dMXN)|y@3GfO>yP%Vuc*v3L_b!v%2N$7s*OuFueF0RL
zi=>XOdyA_`46nS(w%8j`_TwAT&sAE?`r$87RKW3TP~;D2AN6y8a*m>U2g7nDBtL-L
z=$MUbV(0f!>>9hvHLb|VY}581yKZnW2`c0}g)qR3<w-C*{<53O-0s4=(ZHPOILT~3
z$u>=Hd@LhM7AG6cLb*=PAD&>M**-7+^PQS{C3z*2u*97p_bm*PT?Tsn+9<Gx{I)s^
zav2Gu1oLsJ_u>joar3(RQa->z&7|8p)x1~d-|=pv33vTpRvicMk&nF7Qq`(cz!9@*
z=rJZxS=GlbJ`yc#En-(n;9NM)#!KgNf;p$acC1l&9GeoKh-8zhA5<FYjxqCXoAog-
z(qw?NYw^foK`%s_TzTL{d)ox3(ByCp0ZvMsDQIoLCF^YYDyIx{iOH}`xT_4dA!&Qr
zBXH&Glq7Vo@Nc+p6|S-jvuv6@Youyl#Cdh%!f{_2_?uyJX4&K`R0cdIyR;N!xu|xr
zGnpA2hF2zeUH*y|fGe9IG=eP9>^Nf>zB7OJhR#+`jdLxXTG}5V$2!4m{=r5z)nkn;
zpbg0j98xHz*eT!aw0~}jI(C(AFwyNABw@dCO*-!LA{Xm@MSI~}!b3==66gE1e{6OS
zWh7<|iGrjLKg0@(S>+uyeBNGDrZYC!NYK$0yF4@zKKtz2re5pP=#Lwa4n)5Rk6qA9
zfrE{{x#ED`-COr3FIakX%Umo9w<3(AXV}NQnEvbNb7m=N#h3A`JTVZmH;#ChexOs%
z5fvy7Bos#>XXiIN=AE=&<#Ok$D)J6s&}6VF={0lHxpwWRI&(~JT&A^Bt|JvV^|1HB
zMt7ZbIg|{g2*y=B?R0DNe{ffIR6=rI3tmjyz24Y2)ko%bh4@8-lx>$gQrtV(&~9Af
zgn3d+sFmM9gnag2-n8d+)&Fk=h0-{#pio2XHO^t+Mxav&GMX0HCI{UZ5cqk}o>Bmj
zuHY0?ajkujp5l#IQLfdY^t2@hR-GaOuH}e2`}7>G^Ye0h(MJ>PHEzurcz&au$$+fj
z^kA99K!ZGl%7+Eq_Mq*$$xRUp*thX9Qpr-c-(bJ~$z7Jq$SCnXFwZIGw%6@|7n}rU
zh0+Qf%y9Rg6j#lrxwZqG<@A{R%QSJ;|J{JeSXXu^O<WkJ%|qg^Pf=G$piq!vOJR}%
zZ=z}XtAEp)MgrJk?+GRx1ZVIIX~p5qT)xvTo9sF{lz}8i2j~zw3Q5PupW2CG_J8aL
z3!w48NP$0Yw(qY9F8)^#2lnFgy|&dx4dO%tl$FE#!uc0ZbHlARXPDCse3_t(QsA3S
zGb2{mqN|;xu%xUCOAl!yhV`}zTRSlNO`82NkdnO$ToM=}63jQZ+PWseG)Wn#fc>Jf
zgs+ldrr&IDY@&e<`=9o|vLUV{PBUqOS<uA}zt+vx13fJCJMIIdUz1Iv9`?yQV-D<A
z)mt!>JcL8<)8>SxD$BR+r^Fn&Rdb<G)?r$RVFBA`m_3th?0MQnz^)Q6vjp3MmmtZr
z2N;hQSbJom;MgAGV=C#~6#LYTs**VlsG5>WryQAr!L?J$<Go|iLss%gKnQ8Pf<sVt
z7hV>sF{!y<86qhUB?3tL0<I+<=Y4?;`rI~tSKk-YhxBFRSaQA@K}5@++4zxt{5l;$
zgde6Y)y1P^nll?LzN4M_dZRxesz$NmYmX6Z9KjShlO^lzrmr;4;*kXkUnVIlBs}i8
z=H8&A(fcRs@l(p|z=IIb<E>-t;-F!lqbVqwzy?Tvn#s7^zVk-ReRI`nQ5PS9qLHiv
z3y8lsbf$fvvl|PMQ#Q)&XbFs9jC<BL36wF*8zk=-vmt45E|&m#_Y9j8#7BVKnfNJB
ztS?TUs?C#j_eJ{R5b6?<Bx2XgiGn1CPrR|rwhsodaDN6mxByqQ34^xZu}7ZK15RE;
zqDOT)=_o>BBz<XrX&?OyOz65Fh1xMp=Ynn}lA1T#4!g?@bj0HtUV1$CmVsbJ<#tB2
z11*u`5W;gWt4zvEG{({b1K?Fiev`}vCAQ}pRcov+pn2NT%RR@r&POO0B@ec%SL;Ve
zUE~j{!>q6gQ%!YGZ`%Q77G{@dfI#*lpogcNPTS7!U)r0x=ssZux(OhfKK5$98okI1
z$ausK{?h5i0QOA{Pew9GSO2Z+ZM`RBZVY;#r94#*#R$nUIEc1Rv=NM%7tM!LQ8q-1
z-TW}R#>Jiyng8OItyEjV+Gf*JT@FM|>rhnPSl>=R+rLLfcbdj->qg8c?l~wEXcm=C
zgf@dl{*rCcAFtH*S@<rfwm46ldW-q0&VJIsDUwd*>Q<03L7%7IZfC{1WryaK6NL?t
zJ_2%cX(n=jy<&wfB*g;qYZ9bZhNCVlDwUq(L3Z&d2SNyGJ@6IiuZQok-Kup`&cF3N
zDWu~K_q-voBWy*<%dr#AeAY`G5#;4Cw?T8REHW@fo~X?yc5GgB++mH?DYwh1!vn(J
z{=CJ`{Zc(3_C*$c*&yaG!qZVH4W2Hmjw8#rC*5jCZP9j0(Nk3U$-_xk2AhN$?YocJ
zwxd;3aZq}e5?-O;<%F2~p0oFc4@h_%JFT%4<|PzLGgm%g)B1!%A-Lf^rEo*Y<z-Ok
z7O0RL<6Kt`49-4;*yN2jKV+|s*Yn94DjHfmN)?LI&CG0VPtSMyoHUF0>(c0vV0v9(
zuUhEZRf9f|zy>mOm@4o2J?)@@>Oqs$A$87NGHIeDl~U8le>a%<hej+EdVA<o2tNVE
zGPAUUU9w(vB8pGY3AFi_f}6oDNjKyEj&IpO2bzf@hYnt`=wO!k^~M|an+D(*Yf%xp
z)9`&+)s%();kPuT!_a9$6<A)iSTs&Rs(JQ#JE*ZskumE#SQ)GxLCNS^duM2>avu5=
zMr2i}l2S}Fqa*FK-I`M5UG~H|Ba<TMRZ4pQ+;6YGKW5hl+K^ZPSb7BUEN3;vL~gJL
zr|Vh8c?b?vnD>vpi!ool$@UA67R{|3$%c}5%sFrUgx%LY{Ei8dYbr^c@|_fen3OWz
zb{ghF57jZpLq+x%KefdK`*^AANR(JQC;;mYlzo<D@>bfLLzA!ybglIF0(=B%bVr$=
zwob?Vu>3k^Od!p!7LaUaUlzYFQXM8)XQEKa1fv!IA6@4GomCaA?X7~e6pD%k$=>Hf
z#1c&}qCg;l0HH`iQ$zzKB$AMr0tB%jf(`5fDoC>df~Y7(Y*?`)0xBR#QBgrq#0L65
zGv_-=y!ZagrEB?3PTytbop;{BA$)zA`@3cEj{6sklALTf9v3#z)wj8Rzxjps=+uVu
z?@SnWhOIZcr#}elkD(xh+nV5sf;&Ap#+~}DZ^R=2>?y9~ZNO<@$gem8?x~fr?CRv+
z!LHfS1rtqk-g9GBY=OlA@iba|$bct6!#mylb4;p<TwK<qeJ=7XIDLr!;Z9UfFy^wG
zLY>DcU6O=57lKLn^J(ppb5ssbf+nUs1yA(5F>`+k#XP5{5Ggh76m7Qk3?1m*Ohih0
zmz9aId01@FM1-Ojs{BVz0d!K}58Q3C8;PR--S@Vb_fCvf-vm#Z0bh>zF*8uGvsUN1
z!xMv!Fn#kyL8C-&mhKO%(S9u$h#&YtVxpTd&~Gh>`ZK!GMSufBrbmUU{Q$*Y!DY3M
zK;8sv5kb<Po?gqAk?&opah>)UQNBFleT<|tBHRl*G@Q{%Jl58dXBdd_wd5H9tqeK~
zNRL}7ayR>acW=dNZoPK!i$B0M@s&sl6zq1zk7+|*rj($bxQ8Vqdjtr9ZEyD6<IewA
zcQZM2bp^Wud<lv8?my-Zy`_9c)?l6Fd1WK=M@o#v2un5TgWa+hWj~ScD!vP@i|Kh{
zyOkT8N^O{Knl$4zX6;BXYg@GF)c4*$mcRs2)*h)>nAmMz1iJL{r|R5Dn@Rce->>iv
z`!Zj-RTo*9s-?j8eUk^68OL2;s<}9ij-uE?RysT$(<?5|e07`mhJO(He0aDpTSpao
zXB^W%2TYpC3+a*4%N%{sd+8z7toP4R!u~2gZ+23inLpaQDXpGu;(p!}d~9QGztQVD
zLT{B)e^7vG>e{-R3(xS5#Yc;)*^96NQC~*Tr1ft5?8vNQRa=!;09i*|P_};a#cS@q
z=K@<@^D_=)d5e3?WxN;|m3QU0@We{}M#J@P_Jff(tO24H5V@kTnuIFeaDurs&MWvQ
zVt!W=s^pqPn~$e~ti}E{^&Bteq{uy8)YNla{#XJzF|jCJ)W!SrJ#9Kei3NG(eA$J_
z&oa~|jr3Z5rnSKIlT%qv8p(;s-Ba(lhkj|Ym0UDef^H~&jfAK&@PU*%b@L{5iM$;u
ztAH91E*MA<E+`qislv5<DbNP$CK?fxSBPdT5y+MY+z(%=W-K=X;a9|exDWP%HvPSd
zy^&}6H6lW6rl5^N7nBT>&6T6P-roh4%s$kCMH*+m(8If9pB{xTBEdnakS4?%VcY7p
z+77%+y%Bk8zN91{iDw|kB=+|n+pov*a9XBlwa{5+F3`z~dEOfrsMH|l+EyHtDln^O
zj`kk-GeTxHHcD>7IuX2RytS9k@=p9T=<X9pmP>n&1k?RR_fLOq(*cwQ?!oI+92-Op
zWkfUVD)-{gil||(ZM;mzBFW^Ba}PzTa`He3s(kQ*iS#H9JDDH?c(-lNb^G6Ix`^x>
zkD7}QNh**hWx|gd<W2oci)6T6`~j65Wn3hSxYY5<-k-yCh2kUjCbt`oH2ILkJ6Dc(
z=Pl3=$r2^oGa&~oN9hIG@*TVCuO=%fHh{q=5(FfA7#W~hw2(f*%We>9uWl+Ys2?5h
zSbWH=u!OwS+uQz!zB;lFJP7sIVGNC|QoQ-3yLIif9FPNjVJI2dX=Z7<H}XS$tK0~^
z;qjrF5Uk+r^}nohqke5HWd<yGu+dRN2tPzT1rvzCZgsDH5q&=GL$IU$6=qzMoJFg8
zrORCFhef%NB&tgwz(6o&Ts2&58}CtqG0z8`J~*c+l%<);|GIVWs6rW5(UI5b1ba8l
zbo|}5-5QvLdkEo=gLt|#kGeM7)xy)|$XtS;qM_fHXL_FvjeH?br;?_C1G*#71RwX4
z1+K>i&1CWTL`^te6#T)XoITvl{am~3V(39<O|no}h`G-l>AHUw^xw^`V!`!U8N5y2
z=d#z_KO6PA`Rx4!Ih5s0QU&k0ilw?LQRV?IQ&3(PFaV(@nbv>XH+HGVCSQ=#`a4=O
z=@gST%iho+>cuRTrk4#wJs-ADcHuq6ZvNj&c;St4;zIv3fINUfw>#0Zom3K(oOIv(
ziNyZsdLq*sXQ~d{{ckqCw*^2^uGajOv6;y?;$HSYW6%0ZzY&2|FM+}Q!2~6YFF0|R
zyX5Xbq&A$K6|xv@I<~kIW~hayXZ!G(10Vy*reme+K0jEx`WNSuwqYu;|DRvx7S*n4
z;zSXi_*K@}@uQZFc27R82SNuT4T&R55s4_~P({8j!7o&$@HpR3s!J`9fIW|XYad$G
z?33j%75WgP!GsozNS0muj9r%>v|s~Zm1H}Kda&k1v*m!TnHSh(81XYW$_>BSsdIy$
z#q-yeUZiVSK`VCI(}o4M3}uIa)3CR5D7e^bTkPA{in(sLy%x1mNJKy1>V3DUZj&sC
zWdq%h;H5Dgr+7cERSWGkD`-QLUn;$5Dq~?nRkHbJn1)llpPs2ZHnx<q^s-{9YkBE@
zZ^<ilmV(%8b!*4cdAgVTa(xSRSb}nxi-vnGbJfr_znBYE#}*ch7$+xNJlT78cynP=
z<rJ{%L8TH=)mv_MPZX%i9Bk;J07L%Zpg@B-=&FD1yHqSwpdqyzDyJcp8)$wtbp5(S
z&b(Azny%GI(^#oj<VBoY>NOb}Eq|ZIMZ!Z37?4GO?*U6&lIV_2#YzbjPAE<QHiGmm
z2knulz@{Mu*ufYvvNj($WLKXV7$qe@1q>G92_CYe!iPa3)Xmq=Rxk+}!nvL7*YUbi
zG7U2-{J07CkLUjILpw3umw7<Mu1u8HacO8}#hfTu<eC?2FDO(*a>6YV)kX)yIc{Z5
zV3QhUoxL2#ve0&syQMU+0j7cQ&{#xT)}@*Y=emYh1l^~E&MswhV&gU&J?4fL>T$C6
ziXan#mbga4A9Q~Y@l%W32vB}miQFUfQ1jdh_x-ba422{)#XL0uI&36(J$<U&3DLqv
zl2O_nVzv+o&ET=#Gfj11um)ULt-XqRq-B^5UwMlj(BJEi&+1r00Q>~T&6GLbU2F6Y
zdU6$ic=Spb!kN9vz4UkAXDp|`0|Pr&TrH9$1TAmR_Gb7)KR2I5Gl2*m?hs~?_vn3k
zpls5yT!#OSuGl}?AN1Fb@TT-pud+AE81{wU34_g)k>262)oUG8ESc$Iq8*Wn>k-%A
z%$npqH?{6Y3StYY%Zv7x%H*qj#Cu^?bMeGwbE0hP$MVqRtD4nK-%(}UYO&CBOx_r;
zd}!TiVoUb3%m9XF$M-kGOT61JRU2MTSpj`9dL?F?#4+Bk-gQS<!R`Ul%$TdZaoKgh
zGt<eS6`1U_0p@stmvf1l<k>6s=a<Cd_;HP{=Jir<N9TG+A@oqOzpNyd^(A&J;zzQ~
zeDRc*@Kn9OA^%##K97j2IVs;;1);h&47j#T@<pY_Ont(8uih~%cVWZsLhtgz+Ita9
zL0V4ti0@_=JmwvFwBEVkZpZ*Ly^;o)oFXr#i`x1YRQn$R9+lVVuDZXsy+jitJAH^*
zG0N+Bah)L+wozHdei<cId>}GO)$)OR#O0W8U-cIMpnsWJKyMqe$~}_v%zdl9Z;sbH
zzKXe_i|5Gva$d(@PkS?$)H6c`F0Pa{uPEQizsB@^#oKhK?k@^r%Z05rR>zK+GS@qE
zZk;h!R060-?K{gmdtSYt_g58@RgvqWk6arv-TIJs`b_;R`I4;JjQAdLyq`zC#_RO=
zu5bi(bud*Adb3}scScbgWT+UEHQQ_Yq#CFy$|SCa20;b2**(Ww_*C=%qp1o&|0!ke
z>!vcjrIKwZMe9;hlbD`n*1m6lTcpk=F>64n$6ZM<y*_pwng;U5-9%=QIRqBSvP?X*
z$wfA9p1jc~@hcdqYxxMp>{)=*%~hYf<Wqv<Yq1_c9a-|Jg~MkZy1}*V5d2BD1Q&=l
z<K;ec#I?9L`i!qstBy2hQK6OypwXLZy8rAhz9X=8<(qRdEgky!sC#vqZ$LbjK(wI3
z_Cq_wCu~vUXqL3|md&ZJ{mWkn(2bAD4W$vAJRa%oVCY$WtZ?sd8<y0f6I7Bpc9!>P
zYV&`N>7CJ&E9~)7dz@<W5$N~yU{>UQ<bRYRfz&=qTszz&i=$H(>Um`|;yXfh#@$_V
z#69x2c7fvk<1qP+Your~#eDLwJLgcK<qZEpX-kw&LY#~6Rv!#3I6iD{;dBWy9Yidj
zy6p{v_nM0gsTI&sJ{_!zW1HQZ%>rW}h+>6JC4WHt@#rSk_VnNn!s&RJT)bx40|$NQ
zeyw}|bZue-6%(G$D?ho6JM|0j0)qN)NTZ~T&f4j|SQ@;5+Sc71m295d?ehGicmo*~
zew%s`@20`dA@}7YD&CDLN8vLe`lXtmesZ5|SB308S>ddISb2vW6wtx&j@~6r0_9h7
zBnXz)ipCOrjY;<2XzVL)lJdb{4*Hi1t8|a&y*EEl;Hx))c(4CDFLiEU@*#K>Bg0yT
zIL^3_?Y-L{3jRV}l6q%gbH={m5w&yU(t(Tt2=AS{#$|am-P_#Azbzh@FD7k+DH)Rw
zBh%t&D{n_)Fgks3Hq7ni14yg$8;-h!T19b8k|&fx)<jeJr~9m06$#~qft35CI|&ie
z%yaj8f3?wm+!(304RdLbk0SSVv$wFN->X~IV@1{r`XlV7m(sj1CMx|=PFXNPJYGoG
z;ADL>y<N2ueTW`Z%kMn=%r4$(tNd!Ep#-mVr1RTXDiIqsj{Z%8YG4fPa2o$G6@YY_
zp5^5?46Nd_Q7kP468JuhuHol<@kg|}mvKS|HADh<aC%s#nv*W{{`@mAWwZGdXlE#n
zgB&udo44SXz^JfXP64?IIaXS9m7eW&Iu@AaW6E|HzN~m!W14wYM}k?Hfsc;(gRVPr
zTV!6Ackudu9UKpr0I51!{3s?!Dt&oN@1&i<(RH;f0ER3WPqy%S><x?vTf%=Jg3)J6
zGbtx~yN?7C@PwF^NTk$+eQEBTtm5*9-jl!RUqEH5qgBC)X377im0eq+b$Coup>+zG
z4RK?WG1nz4^>hK0kgjEw@N}}kPKkX<$AMa9jS2nMt&Iqj<d)@^`)f)%A$`0V^@6wV
zvOt)nUWQbxX(sPgujPemCBKtFiKt?#=ypT8YE<s}+!^S0ht=PZ;HF^bzTqzJRu$*Y
z6Jc?c*Gx@^R&N^4uqXfAtnDvasM^n>9Hs3yFmfyFZ?O9g2F5;UlZf9>84W!GX4rSW
z3@i|%1S6+pme<v+!amh8=y4X14QiuvdT27-@3_>yK0N55spSiR^0?J$rfnxXJtJtI
zmII**??fz#X6Yq%ePu+^T}?!Tsb49DJ0x6181t`Aw)DlQWhZI2u3H()Kv)(NsDQ{k
zeuMjdi4S0Er*6ML0(`?bGyQ$n(J$#{sH>nzc;N?nOE+zPaiL<J<^o#a8RU<G%dI;u
zscsUktDdvh<p)9**_4F{v_yFnTl%Ed-Zg%I89p!p>{w|83z3bDbHg-m;f%&YWaG3n
z%mP?MjEGR`?P`1d7fn{YgFL+wTBX*O;2f!_ICFKDTV<p2e$aaS{!+UGkyCm<lkW%7
z`1W;o<7I&!Z8)nUI3dbc`~k_xi{5dwQi4CwynGm)6zVCev9GvErAj^JMKB4JZGnbG
zsyXLX_i1@xL87aAgk@2avyxsZdE3P#24@A#79f-pf-X&3<$f5YhY=jX4IDk%XVpnN
z@>Da*xW`|QybMi5tl7TP;5)L|Nujs+!){ouRruI@Ksy!O2MNA36FS+&ydGG5O(rp<
zm>W)Y=1nz_krKU7nHH?BGFr{ZWv)RB%}J3lfGS*0Z!pakkiDGN-&MV)*=KC3w?K&w
znFN8|`j@*rU&Mry_9BxSB(g|4UHE|ewuL6OnfN5Nsiv+f@^kS__|~)BsV6m`h2pAw
z|FX)`GM}i4>JgyVq`6-5BaMYs#FzeW_L=?mmQAirU(G&~ImuL<kVKcXt2y^KxBZSl
z0=Cac5^@E;bUD??m{%`!*%?agfQnj6krk~HGo;X6dPr%daz$Vt)^ubec#dBy-C5U1
z?fn{AgTBHGB^V^EqjNk~szS!Nl4`Y*2pr0|8|}XXn0cgP-#*iByjGccyaOK(%mGz^
z#wBdQCG*^z-=gImU`10SpQRNO#cZbMJeSu%Uk`IYvJv?t!jvnMXg=@8;LyA<OI6o=
zzv_v34%Rg7_n5VRM4VT~xDi$ccnh&q5ov0Q8Pd!r#qQMS^h@gXC~kqAFBG?}tK8*x
z1=&)c*4V3Hyu{?xyRt&;`OHoAn--E3?_YLZb(x?07Mx|9b8A1<5^ed+s*+W^mVr?M
zm#<mwE?BM@C38m-B-wQtd5~6!>d(51E^Qtm8s9^GiEAYyAR+)NT+i4G`YF4fFB~Q8
z<s@_X9=ETZ7H&{`9d5)x<u$A9immS9X<B(L#59Q+!j1;P0P5+xU4vfDp9raoOeG;J
zMHRK@ezd^$lV(mi>Slf!xXPIo;f-3r^gDiWM>YkPu6RsP>ydzxhH#R9qZd(2uWGk$
zr@^J!y#jtKHD*A_mmPM0P1AwOCRK0PAiV_p_3>BSQysKl<Nvne3axYB)LO$yvj8xK
z!w_fO)9$Kv(N|DO0j5OSrh?iBcpY3f#bmr?Pj0H9k|cX%B=hLurG+&MCBL2S{I?@J
zkI_6>E>*1sl~#rXedy^`k!-F%?CyC^?f+vrU=jYg*iC&w2N+YOD}}cHiCLl9d!Nd3
zXPv7nG_)T&YSyw;5rIuI2S0aRu29Yo#qJV>)ea)|A^hZsckGVaBJvJ2`6ja)NtL>0
zDSQ!F8-?!tm!fxn$O!t6h9GX!!w2lIzJ?&P1y8TalChR%y1WhQU#jiXb0adRs%Qeh
ziSV6#%1;6vXwyy3Klb-d(XW56ExiLg#AGLDn0t%7g_kv#EsCz=#nO@u4}+qUSoiOj
zjSmTtO?Zjm8>0z`lrRmL$(OJE-2IRgH72f!Xb&JWtGdJRw;8fu40UgpL~Or8bzM~>
zO*T{9amk$Byw81chQvv#QA8I+{B;Sl%p2c^Zu?b*+``>WP;p~~-?YMe`O3ga0$LX5
zUl=m!_${yu=6Qc5sg(y1gjt)D3*5mXBZqIk#C6&ri;TcExWJ$p1$00%rorc4<Kh<W
z`>S?<uXSPePW7^0Zy{||GU$y9wH$5>0oAuJyH7T1#WrZFzWTa8#<W<k?PE+9g&j~+
zdeUOe{BWIjVy7V6&MT@Iqje@E3&`o21;=fV8>7ZdX)IEjb*fu1=V4Fuq|`7$nDY(c
zOBi#{%XUq}_TMnzG%;I2LucGe*oZ)=kALR+4AT+Ez^Kz+V61ZM$E)q{Peg3E)h|5!
zkF*z>v-8|nzO)zLxE_Wqt;6HZTU}{?s^k2Bja1^#sfF%q9jPL@L|v|ObIg^^LZ#P7
zh}vU6eN+WD==RKno%VqJ+(!R8SV?{LawE{C37F<ayJhbvU7CT<bQa76JOzhlRulJ6
zzKmQU0|NVv9OLJWgk~LY8brI<AIfoZ8&Hyf&x|Q)-mY<jNdFf~c#SzbJ`}ekLVw`4
z@TlPVp=4xQJsA3zHti4qdNUJY*i%eLvi+OuLa`^(?OIx{6hqje_LN%OICK5O?$-Uy
zKJQH}G#GIK90+k&Fp*(=&}}#`z?_Aog+vDx;OI%sc8d=M$B5jc__<<YWnbjlnFvlN
zH^#~?@P--PBy{NoNI<f9aHot*WR_X+5=_*ywslp+qzBY}9}I#nC?T;X-q|zLZRc(g
zbI#VKPE*J7`pDD)hId>dZE>XeD$aBU9Acbl$}S<{OtlAgNGe(;#sISR)s<s-Rd6CU
zp4dV%=;8<m&ZjU~lTFHccYME;1Iin#)5pz;%Q81z;*A@w`m(h>d}ywAQHpncq4E>5
z%L)r|MQj$)9MW@A77N(*=Wch>2~vh2_t14e-7t+gyw|(of#&kD>m(JRp8>74?dg(-
z1p3CZ<ZEz;4Oi;=O!smvr!AZK#cDhy)s{km>U6n#d}#CpiUUxy1iTtY28FjxCIO!~
zD$~n*S`{sMMVS<(v#O%_nx1Yxc*1_Wz?WR;ZTf;<!?G!sE}xRlIkKSL`NOmmBufuu
zxqK!#N-Cm9v7?#m|FdeU%c>;e4{#tcaifPCxD7|tgw$LH6$51zVW<rE4L70r>~_};
zl(W7@aFHvuL`7vKr8wL17Ous?TifkVYb#YJ(2}&EEIH27Qt9tALuV{LTdHaOPCy8b
z@`@8VqU+hA^WSf?5cj2DB_XS@(afwz+ciAv?B%IxY(Thy^c{$cMK{(wT^4#`Y1<bF
zT|kYH<7dTANskqN^1Q3v^)1gl#F~a1CQS*$ggU7XdURat9<Rk@fy(vMf_@dNm^0#>
z=wUI-K^}Xf)<rOx7|)3i<~=hMdrR9jIQV1`NAf$)k?7<#|1&f*$w}(I8+-J~Vn|OV
z(#M%hwNMe7z3EnLQT-j(=Dy_A@Z4FOarySGa0lOwy8Z&?vZ9-b>=6!cy3|L{*z8Vv
zNV2Ljx_DBWGmL?%lVLut_U@ddP_R;<kQY=G)|mC<yglRVfyb5krPabIT6d#2prU#E
zzKHAykWnbOs`;q1_v5oI<lObMIR${>EI|)V@LKqZ5~Z62$sF_TM6YVHUg5t70jI+-
zW&WRfv)8s;b6G*zrJ4OiC`fxz7&zZv*g%(0bxA6<XoUVbtbrXLcei*^rF+#)>Ry9v
zH9k^0!S|{)w%bsZ7RG-<)rz+xiAyn3Bk`j31_wrwbn=&QHdRJfr?+j-q1vaGDWRL4
z?*T~>MXGr&&kmidaX8jK)g<OhBt#ea^Y#;LizlOATCOdiGF8tHtzR6F1^2iC=QL?L
zg0#8tSMXeff<Y00`C_Vf+0lp*K6^#BH_^ThyRamR*$i9U@8#~7mgsV9_ks$V0fxUA
zc3j+xZu8PU4(yBph&pm^cq+@D@`@rN!{_cdnko_u$t3PpJmD2>4-V;*UxZ2x02VfU
zioMTz1HTMxa3cBK5J`v;(oFiR-qE<oiI*#p1ex#A{%gU=v?^WTjW|8H82!TaE~Hsb
z<`drZwt*qLU_8|ba)082-|p=`96Y-~D8cz8*6(_^x4HHnyOmYRqR#z+r*B!}br>$U
zAqz2?QSD}FI$Z5_>mM!ZAEH2Lb7Z(Dp)Zwe?l{A>U#Zd{|7)XX+TW4kE;~y%dJfG2
zlJu*tkpJMJF7D<AKM=Jj6U;?=)vIR(0L_;D!4OwDD(b;g)e`78U?T57bCBzuuO`mu
zgL^(76|zH`S$&}!c(L*iIAwNzHPLqdD7fcrX7rWs<+_}yH-k}qEnF&=Ninl(*go#K
zf3IQ|OZbkY<?67@T~tie%3Z2}f;Wp0t_Wv}22!ZC>su$B8CH~_%>~YW#sGI&Y1Hsj
z^f~H1K6T(}=9b}Z{^;OI`tpIuP6ROu?tYv(+Q~h3kG>yPCfe0Yl8DbMqACgI^igi$
z2IZLW9=aCz3x_n<NHJer;ZCd2tI8`1C#n5aRc<TZJU7HOoe=y%*dxM%-|)g!ZuxbA
zC8rpfz9d9#;>^^uUGqhC0x&EeENn7%83ZhcPoL)2t&W=6M&Ay5AVIYp$m)8}nJ#r<
za9}scvua6WXsm1DCchZf{ucj@R$NPH$jLb5_tV^vm4TrjIa67X<KPsVqW13o7lW}T
zAVKiDc%Oi~Id1gOV9@j^5G30l8KT>6mh^Ks4ym<Lkx(0W5j&VR1KdM{gKv=|`A2`Y
zkjG*w-QCA^&kx>852^o?#}gW9b)KuaHn1qq9{egeRGPWP=DI&_&_CcC*0rVzU}<PE
z>|-5fxec#Hb-GZCn8Haet#nB+hu68(GqkG%$N#qhBg1_}say7tVzms}ZiHsxA{o|M
z<TnSngO})V=TK=9$0_k_&Bj+<a-^OT_T1nKD8yAh9s`ArYSsCdcz2wn^3^hW$kC6*
zX8{0aIDa$9rQWRo@Zdqhgr?IGUkx9d3G!;Cn{-*UbwpW%IINskB<i5aQgv}s`{+Y4
z@V$h5$o$YOg3M;Zgzj#4zu>+1SNe2#Z4ruG_e9rfrcMBE<-cDAX}c49yPHSpt7WSo
z`GU4vB|K=nt9WzD6L#_3sA(sFUC_Ek<x3Qff$aw3_?f+BmMZ<Rcjc6ggpK15W=h#e
zW#ulinVkb&svM93#B0b+q?ut^c4JfJp>R@N2bCczdPVg9`O+TWD|$sLktB^@v>!cz
zA`bS$7r4Z4qHdh4@tBB>0FH`=CjfE7F7}gTtz(w39KVDKBH7*)^ZUu}o?MMiD8+%T
zUfW291I;7G^_rvAobrHGV_+e%Ad!^f!{6|-{p0rNe@5%A)J1=Md}jCr&+UlPUM#%R
zpl+I)D%Qts7rUyDb$SV5A7@8SDUx;ZX8)0xcH4Zx0wQu83ZL#qcN&sCQ&-sbuWNT2
zXlwoX^hBX4!0^qUwNqXTe$NS$4=}Nc$1b-Itxyx*h%i|NXl5v-i}8V%?eLER@qTbd
zm@i^MhwAZ<>;;?D!c*stEgNrTd6W0W2wZpARu8RxU--opeoBqfbv*pyrta9qTDs2L
z1ooErM;?!aCrVH!x-NqPqq@25q@phar!w6{Zn3#(QQPirDm767om&U7z{#oR&L8X@
z=LRiblqct}0MgQ)_Cr6~^E>Og8K&9!Kpl)x`SL@qwyTb6jTeTDVo82rV45Ai#{RQ2
zs)!z37&2iPr~%Hv#aG*zf9Vl?J0F9T=901&;YhE@bSL|(x)gOIr=?}e36$HVn0MFM
zKl(*)dr{SMD8UFXZ-i?Y=TEcW9Z;1Vo-dOj$XgMn*E@~fn~w)$ESpz`_#31qI{LEO
zHvZMNJR|z8Z}leefa|rnL8T(jluWXZ+@W-2J{1{2Tse-E%;&DJ?TD!8Y>pJ@jjkI^
zFQn5<?6vls<B{il1+h%(MHKuJhc^+aO1hdpXm3l?S;_j+H($C5z_Dg)y0MeHw^8(a
zw`=fE8401T4-GJ=lT82iZcIBZWsoI{mtr&XQMNAO;51TxyF0qFh~VIG+Mc*hwuJp1
z+`1S&5)4HsVle&a0fHiYx{1En7Ilm~?Dr$Vuf$1(mc+bd(fTsQwyCw{L6AqC3=1LY
z(p<ZDc+lvGQX291$#;Q~oAyKP<~`bH7Z@m92o9@*q1m*d+j50Uxa$MtSB@sKf$~W{
zu4#^Yq-nIs5`fM?Gc5<k<b+hA#+zej+dhA4izg043>i#bH$!qn_*W&dF0-9JHdc0J
zzfK$*0p`Xu_hzETvogrghk$_vWu05uaFHwAqN|voL8ZKDk=>w-kq4;WV%^UwIS#y#
zSy5f8`wCi|0&dhCv9n*+X2qORIy{lB3FCb#=eMte+p#w|v64GR@NVD@Dhv1b4tCkk
z`Y7_41p3P8q%IlBAL7gfM`FGxQz2ZwlY|BOnJDW|Gz&{?WNOg-WdIX;G#Pl&kD!q8
z*-<uhiQ2f~yowsu0yInkZwn9EgG(cxJg8tuPBp#b@O9~=2~N6aroH{AAYZ99h}@z?
z#uLu5AFhw+I75$7&$1RkWgd+fZ$ElWfigDYewB!Bi!zorb&5Al=DI81)}~G}8-x=v
zHoR<6jGS&}&$rFn1e?)+Ck2j4-K1b|rMpeOz>i=Syz|bp-JU^Fo11CyN?}J8opD$x
zh?vsN&UA0_kf<J=)JC5Tf?lz(JA8bpw{VbJKxulG=VKt<2-cJ}&t>|GOc?TnNJV6T
zk_+u=lFaoB+@@KP#}6w=)VH`yU?}Qy(#(*j-S9gj7x)H^^#G+w(r`|`T!UxbO>=|8
zdX7c2w5mc%O{7EL+_|oNQDB2r1zUuD1ska3Sx>tq4+dvNFkRFbu<%h^u6L__MmKjE
zb{)ln9Kg%2`SU>qipbaSGahB-I=Anc+Mf$*P!1Fsa%eYnlzZF#v_NcH0z?OkDzG18
zvL6n0{!@R;EvAHkabp@>9%^$<Gx;;AJRMufPG%AdLYw=6=4I-t!-_<JrQ%-gwtH7K
zh!}Vy2sXJw9D2qpH8=D-BmH#ek6zz%0%LCectqdjFjDL>A9x*_1eSs2iUeawH%E7Q
zC!Z1+H2Rf6&Ow~6<yLROfo9=r^#NW1D#yYq)$)69^dEs`5ZZr4uW57-FlT(=T^}8s
z4hjzl`beM>e4Iq{@u%KJzw1E|OelTiRk4$?o@A$cv))u537N`4LVqKxoUSa~s0Ci<
z4oxD5M+odDVQo-MPpKKf^1QQM$5GLLfu6yJ?~eu}?-K|cbg^KCojb8<<H_}Cp28b6
z=JDCy>QQw_3M9m$?-8ps)Qx-p`b@}-QmC;|4||#6+r89SMN$-VEQqb3LgRZO#HN4g
zt)ACHh}4?O_NN|nYUw-l;f?N<IZCI-3@RYNk62L88SCD;Ij{&pE*#N{HO;&+(Vc#q
zT1oWf){vI33h%V2KCy!CT<xZA(=;D11AvHHR_WK8L<rR-%RT;X^rfFD7M+=2R5DuT
zD>fX@pZdG=UJ81m;+Xj&K%$qGY(_lmzVJ^e>C6(K0c2FAh>b05cz<{Ldd)Q<i<twF
zTqJLCN1MLYcEMF5i79y!)&_d1LoH7HCiF*+Ha?JwZMZYKVVIj93!VFv{+u_yEKFT6
z_bd)IxK@A68pTtNHs;K!p$9YcmjMVGGXWOP4t41lJ{{<#saY1fq^tgaABG{|w=v(X
z3!PM>KV{~Zmm8C_K9ql|{y$2mxZUQ1d7<h8{Xw>FX?$kNUJVsa)}M0o#ff8lN``0T
z3!$DR`g2BQQ7KeTW1d?Rin$K?>Y=7593$Do2sqwJbWeSyTMfTc^%z8fY;b7EB)WOq
z0wbwtgaq|C-1{ppcC%`a>q>|hkm5NlA@}>|xwx%*B$K*dCB5n8D=}?AIZe?%FJ)51
zjwoFX!r``9;>@}|-ng4<E!A`xqtcRcG&+3m^W2EQB1|Xr-Kk?@iYA(~e)6tu7EI9r
zz-uyh>5y!u{pfY<Ue5r=C&wfLp1r%r8+eJD7|{qIj|q=US`y+V-O|^!x=+Wg>`>!t
zi;C#1$z4t?bI;G0D6@TEh6_#gsD1;vjNjmG&uyV4j?&|RZxcDgyFDdZQVxE7B;{Ae
z#M#g}_iBP9OtUn{{_%D^s=uJ77fvNgddE)j|BP1aWD6Gk>kX^XA96(!NrC`#?Fpe?
z#rhkyO=BUFjy40x5NvD}TDGWOH3t+U3TGG<|2*M+M?s|IKydbJtoqE7-V#)M%>q4>
zAo@&V8M6bDvd!dHp_E6|;4c_Hf?i+-BoKr}hf<zaTUJH!7$_dH>U6v$ly;N;*d5oy
z65Wk817PGY{4CV|CtbV<C`wf&-DKYF4P4w@l7K#zPL@^R99E9)HE!=)L2t(_^3B@T
zi;_iXtli#st?vv}oiqKWn>6LX>w4)9_vXB)FS8Xm_>cOKe7Q99?kMLy8<oFPbG}sX
z6;zB6FI@P0|7^5_bD~fCPE8;^0hS^{<niXzkL~hI_0eUTsJ{Z60~T1Kal_qtH$^Sq
z(MTRc`5MxhSRiu%*B{onsoz9x+Mvcd0cwKo9-Ca&>fj-yLrXC8KtNJV`3!f*zToi{
zIS-?>?Dve%Hzv5wa}?(QvY=5SMF<r9iRbnEDDTb^ZO4g4*-YwHvw^TJ^&IBiP@zV0
zB{^ltbRfm2ycBS<1as|Tdu2(JyEEz8BP|3F&>Cg)K!yw@`DBwn-eWIY5?P2+Easeo
za<(;mPW+lAv-MlM;8`)r=trHY5F8iR;Q0%^P#euuWoTzq(>~6NXiK&ay;z}Zt9TcB
zvCPNKExorEs$MKHmn59R`v??d&VR!;yZm(#sg)D}z(;-jUVef@f=vEMV>VQKhws<D
zkUk?-MW}1m`-%66Yf*77<OD9jRBSrcOCbM60a=z*oGO0@Tn#?pbg#h;Q9pE1hcJuz
zk2@%vOUwJc%FiR8uhidj3#7jlt*aRX(`I-d4vGpJD9S+igcuKQH$gLpk`nsq9`F2Z
z{-K%%FGku2Z$YG;-<aoJeyTE9ap-fT#aVe-86`x>yrQ4;bIjHQO3%UA4XoK$PQ=+4
z>5083+SA|Ep0>G}e6pZzSaPZ)>R!Iun_e7I(2|ybcvi%L=&cw)ZRt~Yjd$^#feGR#
zB7_{n$f_RZU3XJpK+lBr7b)6Q)27HfeSGjc;jO3yW5F%FBj0=fI<eG{9P5@}BdJGU
zJdHQ}M|s=i4$)#!s<H50%$sA{?r$0`X%||AjR>QIWM0^aZ(L|&yGEZiq_L*88M%H=
z27KqiC#;vH0XxSH76OV-&5`5MOs56*q>D6TgVh&W7BB-N-ol!hc5sp!8CpRqS@ipe
zm5$rVIf_NViR(`C5O*75JIc+aZtJ|rQGI+}0d`bBJVQZ<yx|=!?YY~67SZ+6IiLrL
z;5{+LmquUGQjs<vlNcyFlC*Y6HkW;G*S6Pn1QZ~L<OCabE=dYV)H+YW&Ioem{%mI-
zQtXVs!qb;*HR}+OMe0^N_m9A$1;jLR!~$b{i@myWaAx)35Im#1nA!oeTJE=3#Rn_c
z;QSiB9Gf+BZ(XeW@N?a)!K?CA7B4Y9p1RGv;daz=6%Hg8gYLlVNmNOwjZ5sj^J=58
z3V4{xNnj}eLwI<)UDRHU1fcZo7QN33fC7@oW?9HKSRT3NkU~c|#wAGk3+9AFpZBj_
zc(#5EfjdA1!y5l0eot-YE%xzvJt_Ctmz*fl%z~=Lo6k4cSud-AH7Ff4%5b!pAR>4%
zU&lNWqm5`lj&h0K#*WP=;S3i&#Y`Dyd$o>kOwV&{^f?enfH5O_L*%8p*b{xdA-+IH
z1%;bHZm@e&&1Vf<@db*i$rqH7kpsldM_|gC$-C^S2lVqW4oORi!z-hZCFSxZ_E2mv
zM4?OaHkpqyMn%AB=6L&SX7r+idNWkUb1z}c41QIL+4Z9R=>zTiDYJ$i$^=!uUB*A1
z;g{MQGIe(Fb_S`?FWQeH3-I7{yY6i*lNGE^itv0i2=yYiwHu9l{#})!;JkGVZ@@)f
zdAE)Bww*q>C^hM$!lmxi{oyx$In{OR+~nU85rVa7M;R(=cyZ<XV#ckEsDVw$CXtzs
zngeh$yM(k*d10IFIXv?CgIX!c{z64Q@t43lapwC&c6pw{Ivh8ci4pWil!NK4VD3I(
zAL<?a0cs(F^Kn|dyr%o?#-iY~c}N7y-eD24%V&+J<s4({k3IH@vHB-$eEst)k;P!g
zgeyb5=y%TRCdKTqF@-VV&vmeR0^*NWxL?);L}whfGLgh!*<&{yu*x~7tSnvuE$C&f
zrzr=YE273;{7l5yTeL@nBza^QNOPJ*(<RLgYoeGrcY?y0y5=HHpKAV&cP+naJZOM&
zn6pZ3-(vb$h%i50N1S`KRg(p&k@8k)ZUojOAPoIr(#@gg?aiHoXUnJ_A(6Edh$opR
z3*EEFwG5o2@QW2*qf1P(d1r&Y?TX+S!uDbtW_Lpc#G(H7IXiT4lQmsPAfwYD1P2nl
z+{VSty{8vPy}eas0M#q;2O&i}DO86qiFxgIzt2*5sD+0x>r=A%ZkrvmBXS$`WNs#}
zh6r*ZBy^C>6k~VUNz2r+kiEZ7ot}lgPMw~2425q@St;+Bf*rGUjBR(OHdAAj=>e$7
z{1qq*sAuUlwoM0xvfxtoFRAgJO#m<k%i6D9%Hrm8U&hVL7VMe~qO_p_wH|-ExAF${
zKn5XW2Ul+FDD<V!ypg=j%+tKRBUST;!!#Evvljsqt_MOt_hc{gmf+Z26@aScoWiQ0
zrACCe#g~KS<UUngA$PtOI!bJ$WH&GL?(7#_!sjpNR%;@f`(uH>u9bJWe}6oc?xySv
z>S~gB1K~XUnVa^OFQnH`ahLz8_yy=+r}#y@4MIAWAyLMPNW(+6ovVkq2gYky%?d2B
ze6R*3OC4Cm>$X!TWr5;N^vDlqU+7ONijF7Zy{UJ=k&r0@)mF%hus9zaZ9C*def?BZ
zVLq}#>p)CLEtyiUjxOSpV9b-+s2zul(nPcKSz9z(Y5~NptgT}*tunmTtD@y((kwxv
z4l?g7XG34Je@$xAhpEhH>5j@c>nmdu;H~hrn1`O$v58x(PP%e$X}XEeoZZ#?tFdPI
zKq-Vf=obMHha{TQ=evt8*IH$rdAQ3`t$`SCih1P&8<VG#2*fnJxqz9HjW+AwwL`Z?
z{L=(6gx-+GwQg9T-((YUvfJ~9Lcj3Zh-*Lsq*^-JoVdVExizS=CJ#SK8j@j4#9O=c
zCAWKeU?U7Gln2Aal}=gg2G0mgl*)`Gox*a7C)embw|!<r#S!R;S?ri2DugN?UfP(=
zaVC4IGh2c`$fI3iX=Q=bbql2U%RKkmdx5RC4m(Y1Th>41dcUey<ZUTMQuP}BxlVZl
zsA;EpZp%+9Geoqc#T`l?<D!hR{e9e#7iu%$sL=$yd>BZHW?Z&A_f@rW_O8_>;yOS}
z;w5~xz?CKImr&*s*fj_uyu>s!@kduQCGs}(a<KHFb_X?TxUslPCqL&F_J|z1NG;v#
z_`^u(l2G)Py2P5uM!x{laxH2X%cU6^he{Ift>x~T@sX_;DufNj1h^s_8NFfBO=U+r
zvvp+LX1tgo@(OgEp~s$L7M*WrpC7sAUOlBu1Y#A0QKU88y06{#%Of|e)q4@52B3le
zIpisl%y-|qU6b`GIH|ZzircgPqghd8_nofQKfKRi0+HFo!+ENWJGHM8JanXuCs<1o
zo$UP|+J8>gc3*f!8N^1A<|KE?xGg!s-o8h3m*Oy~d**{inEAeQj>J6uqnh!H7`x)2
z5rd_gu`k+fYc+$#r|E@=hwm_nNJ)};>u%S#i(k`^mW60LG7v?~BE{@}%nmM8^$G4i
zr=S>tcHeg=u7LH@|6*5=Q`>@73w5Q?jp_~|2U0c2cTBw69sN+r9b8(1H{CWNNHN$h
zSm~zwr2^b9PfFpiqz&UuyWzHKOOQ6~GqNI|JS_AsdNB{NDVw5RSw_Nb025a<%K8&O
zGOa}na@;|C-T8qm1A!&6rsSrX^CoYey{pzq$);5(i8INcuz#B`*V@8X+Lu;d8>2<=
zF0MzA_RuZ%pO=-W#S7PLNFTfid};RLB=g#@F^&F;>VK|gt?~+#YDmo^cQUP){qEg}
znYa;*h;D?0x-Ov~#&S{F*WR-#=<Eo92m=L%s#KQF8DyVYu19erdNscrH4dQ^!e#Zc
z-ENBd?RWJwYfp-k0S5ADg59+wD!H|0MF&ttH4<L7@X!*?IsI(vTIHe1J7c1Zk!YFM
zf+Li=$X?MmaLuwv8OX*iV(_nQv8Na43dsWqh)SbTIVxEynaAbYq<11>pwVN@Ca)x_
z1Uv!}+pW3w;}yY!=M^w?S=OXvO&me)WY5cLWH|Y~T>S-`vO-2%mynw~HCSHgCMQq=
zlbQiR+TIOxmu=EWhj-%#XH@41wU{BpN6f#*KD<3hD9bjjO@0`sOv0}c-LtvDI2GEl
zKY5vky!7{+J2}tSd7;$Qmq!#m^K_H(qC4_gu#$#*3d-8eoH_4lx8{w&RIg%*Hcf0<
z->h~^-&HH4Mx?n|L%GicQ6+t|rQNV8>N7qRwq7EREbTcYI!!b`Tl?fYY74K=5L1A&
zq;7|}$9(#N+m@hBHCXg`3@uCq$tO6S_=$VCJXlA`+=N2~5&#Uir~YK4iM-xlzAmrM
z7fl*j_vFwNgvwo$@xh@)`SLBLwt*1rOE;p4>OtwUUCU9Tu@oV}ym#D%(`t{?9I2jD
z)PL@N)m>VpHXa1diU<{fS>sT2+UE8rM1Q<ni=cAzQC0}6fWnqYG;eKo(U%2Q31<<k
zWfX`KEX&*9v)q*Jff8&s(g<Nkh9teLw6D0FW15iQnzi8zGF%XM4sLc|nC2q9Epcr=
z@Q$RvDf}@df5ohNCi0HS3Qzg6A*1(?LTJMnx5G=FqJR`hJ2VDBNJTJXurHW_ThkBT
z>3GyYlDe5&i@eOE^(61gfk}(_bjEC3;H}u${2RL3ssyqwJ959sz_#`t{<X;$GpKLO
z6dar8Lk0`$%3X)un~j>@`!E(sq)Mkz(HfUbBum+?_q%cT1v$fkFq1WPN$J!~H~ZG$
z_db4(L2{Szruj^FPi^k9yD#2`MV5{G+}n2r$JFy1u`<e!&UU$v23B7@Nv_4mZ$1mH
z>cEmw4b{|7l(KeT`iT2ymYOK<!e0aT>WdCK6lRgZYxJD!m>Lv+Wy8G;JF3KU;w{yc
zhV_DmFRid@P!<GeDWJtBh2g0t>tSau)Dp0;oUpQ2NP{y#Ccf%&x;NkS1XYGT%^+$4
z*#N;ch!kxX@5h$|Av!<OQs+}7?BHf+doQe0D?yV&`xJ_j$s#C56K%l!r~{kzl;Ra2
z@+(vU)aF20N{_j$_amQ9RibNO<RTajP*#b4e!bh9bc#=A)m}9$W#y7$6i?&FzBDV-
z6eC34{wx8SUqNUs-K@IG+j-d6sPhZl;8&5*Mstexjm^DpU)2zfr|X)pFh9IrCe?Q*
zc?0j)+aL<_tM+|RM;*eV%{HN>a(?(A8R~!{bU?86*?zbCXJ6<*fSCd)l9cg+Nwm1c
zHarm7WFn8%6G8#82B8jUDSmpzRPXS`ik33VNFB)9gm9TT={vWov(8*X3|}#b7#tL%
zu#>lFO)dI}@8l~Q@b-u-Uyb#WmIg*eWFWuErY-zkIDwg7;-bLZHD6K*V!`7&(#4DO
zqZTfQS3!{pDJl?y1as?E-ea{F6jm&xSve@pB=_*1U#q9%y|aF(7Apy1$~Gts%kbK-
zSE)MAC{DaUW^x>bO@qA`@9~f8M+pq6&H!hSM4WkSyqk5h%AW{xu}okH-=pSLvT?1u
z)h)j)kf9glM1eRojsc8dzMJ1BxaIN6$K`lYE=K|g6YUzzrb;&|IWTD{w_jSOxNgTP
zcjLu@aR8sM?y|&`yKi!LCPYo$rF`B0=2MX7OEz!a>E_4lZISy3?_knmk-H1uJ#bor
zsi|=bwrMtl!9%B3-*3YC0rfa?ws-xvfdoM|X+*z{Q*PZn^qsrtW?vH`7h&iCD+V)Q
zyq>hy_T8wIIXFArN%V42*^q>OnQC@cx#>Rrk~<TQ8r(QZ!by4wx$s}EaFx5&p`=Jf
z5?kO+;6hTSB6;g3husrTG~S1-pv)4Synr3czC=Aw#~g3zP|c&TrwyQmlze4TU^OT2
za5b$XuN=;x?-zD00lEZLmR>wlFLl#j4hpU7bxTCE4>BK}rO)!Ktx5e01ct99$$zZ?
zoMV@E*Ph8ly-K;O;$BrvYsEzO%;VZqh;2z|tvYK3ZUvIL$iDKl!mShz=8-X_SXi9I
zc=JGs`+P^l&`y3b2b>P@L?t{jzp;;A68Rk<9ovR4;US~k_w|K4l42TA*#5L)VoU+x
zEymhd78v9V8L7Qvyn(kyUa(qq00$PKR9qAcDVDTEbMHLoqN7jwKs&zoEhq=cB$FvU
z&~R$sberDP6Z4eeshW;Z1$`SM+*6lpTO2+JrG=^<j@%^6{g8HE{G7;pxghISPjDsQ
zFOvfHMDxZ*+vs#%wg5bc;^@vdLIi-I5wN3g?&7`}rj$0UvM%HD%DRk|DcP*E%Pb76
z8Ubpb8e)Hj?YNO{)uYi{5vb;>ydd$w0Hmc1ZToljo_7`L0*s}!hK(m^c7=KilJTqU
zW#9SAh0>{~2Ide;rpSyR?P4QdRJ<KH)=y*j(+H3l&$r2BJF=sK#N@0qs8}fy5(bg{
z3FkQXvFd*cUdJO8j6?bhh8ExBg~M*f^??9=(0YMw3GARzQ*Z0UsQC|THj8$&BCpHd
zLSE#(1aClTKzqsr@gO2*-<^A{yKA}X9OANPu;qwTPUS+J`TPOf{CLE<SE!DJB7-s&
zMHW8Uj9y`%xlt>-q<YnFH3O%JQ3wcsgX{Zq#70z~aL5Ogm6iL?%Ykf+gYUC1j@JV*
z=HgP42Ek7!1Cx7`&Hq~&n#2Hu#EE5Vk#=&%OLo`pQ4gOX)U9m92$>}~sIQE4`F`gu
zs2@Svo4(rg@Pq@xf!|)&_O|!6Eh-S!U}&jfO*lXn=4NDuy*yH3TO4lPV?+p|n4S_W
zM)YJ^6mwlv^wvuo%X)#!LD<CJ4iDnd2ygHT-BbzB^I)+QTvrX=M%xwMf5I<z(w~Y2
zaj$vs(U1j|>>o25*N&Q^lU-(>4tnf4;iNON7TnKuEA5BRswkHDqR1?d^)(9sK!I4^
z9cnu`pF>T=t)j=G<|KU*a(;7r|BaU3)+|tnqgT}U(<Ma{#J^>`j^{<5K|gp_&EAT_
ztLw}==R=-!h5PMmT{LBJ^ZT|S&PNn(rlz=wr|N;cJ*_we@0L_n%vgJRiei6E2I_?n
z17_b6MIrJN_*A!++lN2XA+HY->>ENWMd--cxtB&Z*{D=`We|qfcy<Tg&;4cYF@MkF
zeq_(nsZBP4g}B=Qx40~FZaVb)p8l$!$#6c4Sg$(Gd+|u*>!mvE!ldu;$OElSG6QmL
z?@tsVVC0eQg!m$vAql;%nrff=T!VQTl+~q@2$c{y-K@^E&#urAnGK0#iZnqH@;cS|
zbkWFl)lte#<;_Z+n)3d5ulVAVi(JM*e>0-4MR8%jB!J2!q?X6H(Lbw|)A})Mws2oa
zY*3vrtdqOBRlr=$EmN&;#0r@BNolU2MPTVByj$^!s7YkOxFOdqIUL9hXNb1Dq`u(0
zVr$dU6?D+!nB+Otg=2UIU@!Oqg`Mrb6BYL2PI_w}O}ss#Zrq|9v)zkPdK6<dH@{SR
zn^R+nh|mi6=9I<{bf(1^DKVVXFzbYL8oegWX}{WgW=Bt&&deDksZQ~>c{1XSp9Z^c
z2Sq=0r&{E|pvWEyNRpY<$@Ool*JDD~Ya`An>w1M_3d1`}_|@T&2tgCQ<&`ltUq<y~
z!tyuj-^p?%^$zC#wK2baugwuL^&xo)o<!C&&LppkIoCJnazy4<{V4hPN#==5t$SQQ
zzI<Qw0GY@58W>H&Y`5fbC8cnj2sTz~b)<Mk@g^e89&Z%=2i<6JC30%~!ZVW0@$hcl
z2gf5sNEu58j#1d>r9U|!?Axy4O+jp|khSmp#KWVaIP_h2>nQD00Q3vSGe!UhV)1XE
zaFaF!fP=4>Ede12d6G$5;x2t40FwJvl|e4moKN9$xA3Fjn0hrQfD~+lcdT}EJ_xK`
zWg*t2Ca2_0zWRXser<ph=OXn;46eXdlegW{Le&ldOoIQ+!{L4Kk7@Udy~0!QjfI_d
z_v54pO4<nB-o|}0KY(?*R#(b;Pxi=cXz%`bU4Lf{z=s$3o3BMX@Q2-{T_a0;=+_Te
zAc+&ObXe<dZtd$0=Mdld=#Tg=ru$sGwV_HFvxw2Pt4a_DLNu0|uh!W&>nb=Yj4$yQ
z8@W`HnYY4@YaXP-gT}#_Si;U(Vi)<c$efd`HX$6&rl!%6`CV*3YZ)9z1`fV@DKaT_
z{sPxdHjCHUX_so^g;OZtP8L$z9-_s~MA@HVv#yM~v5RIK!CuO$Em#BG4bsx=UVMn-
zXWAeBja)iGD+#($qy)T*3H;IYy2Li93=Y;JF)h;(rz_Dskz;41>*6gh1O}wM4;K7X
z^FoSkIVd=cdkQa}+)ttzpJn%z`L+QfL{!OQS5{!P-wweQp)y^M?;RgGGo_gTussUO
z%lZ0JT-yF*_jGaayWhZ3^0$emyn%bZR1LE8NDHb71dTw2?7hdFThvCk9&EzKfak*8
zlWJD5ph(xSQ{=;y`fkMk*W445Y%HDo@3uK*QM>-tx{Izt0aTv_f<uDY^{8!qTJU8+
z?M4VsBk<z*u!&~SGj_BK{=(n3rIjZig#G1-*_JY{SLW(vweJa%<&}~HCbwXA%(4HJ
z`sKi6bBPj_Ed^xCUeNm+J8ZH-ro5VZGy&>Q_#j)qvPaqm*tAT0AE1##(VJRtFTG1)
zSYAXo0Bt|a;zi*9OpkDn6h$t0Tm5|)V>O5qa2T$2r&adeTZ6;GF{}SMIg%*(u9oh!
z-uepVv|&MiA90nSJ<epF<{J6$SUwK^9lJ?z0&&Tr+PUHzf)kL#6?`~_k)3ERYUy4c
zq82u3fm;O~mNu#>W=WK{9W(;Ckr*RfE5+#Jj+j*Mrg-lkh?qi8PL6~5DBm0U8}7~O
zD({lnkz;b3sv}0<wV<$2Vug4!rL(toX5`<*3LK~<(|#70=0Pl*Pqy|pZI9fQru+n*
zXwY&6SI6UuHxGYdrzB}$#Fz0a%*4VP)M=ZY+fyx^H5&p#aRulnK1zzYu$%YSY`q}w
zrhi#gS!J=rf~*;Py0{BwN1g-22#R=4SOgiS7_sZGZ+c5cs?dsm5RX^;LWPo^+QPk5
z<i9q_;^vPJDCD%)BTQ)ZjW_T`6~dA;<0?$7XJ=!1bcc7_Dz(e39wXsvt*<N93xD>o
z3yO9Aa(VUDDs|+`lw$M_h;?Oy^y=t$fh&qvA$_k2eC~F8{l3>&0NZSjVyFWmx&*&t
zrrUJBB5t*Sp0CM7eg`P<r)BQ;J}PY{?gOc@DoD$$UpT@f?Q{ROslC+^Cceo*xJ=+>
z_?4J88}FWXqvq3?oj7bLjS&dK5_v~mezrIN9r^2evI{7V)V9;c2WA=_{nehaSetfX
z^jWx?%qI*dCfR=6-t|UM=G6z4wc>&xEe%hAk+5{P-S(cceB^Lh(p9gAr3WM$Hd6}P
zL;X&0_kJHRYX(rW>(2;gF)RA18|>nrm080Ha%ntS6;`|C-uVFSciTZHMuqP^tFEO1
zcpDJ)zkBVall>;l63LK96d)RO51?^Wl$WtMs-+M#h|JMsV?z15j8gQMY~mWY-!BMi
z?-V`?FWf|T31-qQ_9DMT4MznBmd!}EDjJTanpSJ=JIgf|;}eKt=-2{i=JeqM57;@t
zdw)$-@_wH!Sz0a?EyR&54QKWBMuZD%82-g2WmT4MF+!&RqGU;K&O)66oKx>+1R_p6
zisYg;b@S%E9-OpmwX_6Oct@gIv>*4mgA=1J^F!BKWIYKDT`-uh+-qy2W?rcwj=tS+
zh{NZNGq;D_;*Wd`hF%%P!p%{@gsb9guWaT0yk6l^0fyz%`d6iV0AO|NHaE6h<$v(2
z{OusT#*(o~H;FI10q+OSkUo!|8E1%>^y(`2*K58}{NPb|0Wh*TD>(1GeYWSX(Z~8I
zXRvFv-#?6MhB&kD3wzC>z=AVMlQ*1XGC^`AyU=F`ZRvM`9VJ{5W5NOyIe)7?=|J?}
z%e4$pJlsI=0Ll$(-GK-<`5Bd9V-aBa3DYoTgGw>8XIPi78x%N1|NN1pf&!s48Ni9=
z+7IkS{{(fXd9dTg=Ud6N<O6xLSOVRh@s@q^>F9BJ`bhtYu*42)?=8FV$-oY8f#?Gm
z6R_YbJ8MF8)IBP&kx`;GhPdVIL(6B_*8TLRSk}mR5~5R5BhRw(SufExNuErIAw)Ix
zHo|-+1neO~{aNK6xmd|+3~W&@3NNRU*G@E>pSKY!b!hWd8EGo_0Sdy(p0V8}4pONh
zVj<0?*4D8BF3nUSFcEwLMC9X4q>_>h267+_{c|e41JkwJ7caP*G{VJ1A7Zwzv&Y+r
zs;J?AsN*4#jqd;AIi#4(NwzR2>Rz8K6CU=oRzP7(gbMN#UG4{scS8}A8H&S*fD03p
zxou8-*?x7iX6I#5sv}XcVqCn@PV^a)4C;UfOeroWjN0Uu4)i6|{@bq%AE>Th8KHSM
zE;UMUQgXfttOw1@>?2ob?WW+(<m)Y*QuazPKH!NTUUA>~8lV7cz4FIFe<jpKN%=JQ
zcD`0O@w@D>e&ahDatR!FL09*{p+FX}zn~8z!0L(!8UW<X(S@$Ks|qm!O!^n&5eU7G
z?QmcG8+md9t^%2Nwg7RDQQwgabizLO(=w%dVe<iMKnP?bQL&`82QOf+yLgt*nu41&
z5=aLGm1+)9BkuR(To>zib0-$;n@`ss{AOq@DW<F{=JaFQ^z?tc?o@O67W>LNC8X*{
zLUhevDg+Lr2q|Hi4OQuf0uk|B^ajIGxy+~J+M7O$+^`i0nd))We2em7OyKSUn6SF7
zFSPf)sep+F+Rz%L!bymNQg86-aMyBw<G0R_lpz_`Hbi-e<7Qswz3`?gFG;$c@?&v!
zDQjjn*R^!SL=BM7-ls(c#sBVD%x${^`g#4sQp1ORS>8mXDF6Gph!A|;%sFo=&WrC)
zVlwO$qMVRy+J5a?M?}d-^LHw;pvbw3{4CAq;>-gd+Z7eM$w@kdQh9Ya{dFA9JOj|X
z%Xt%`Vkz}d?3Rb2wJ>mS%tg*@if-4RfEwb9-{MTP+o%TG;yNGKaY9SXOuxx55Ckcr
zx^|a53CkG>95MyqpbyP<rGDQ>3_0*o@Wf<HN*v2^@2+v}RgPF{5NdV3dc^fM<39EB
zqqWQ~TzVJR%e?xvx2>c820umuRrARQ-k=Kog(gZgQ9&k@o)O``3Z|VGy6sK1qFKPg
zYF2#XUDr~7&|S@#rT2K9!jk?4<yEl<Wq9^T$~Av_p_)PdAIcfgN!mYlzv>a0M)!NA
z3pF1NO975bSOupCRYPqLdb4k+e^eo@UPcyI?KkG%1>WKJ^{8z0AF3z#U(&Rn=?xqa
zPHvB+H_QZ{fJh16|A%wE)5fSp0T>z-5RdQ(!}fajp4UQ}_+{tQuUE#PsoEFHI@U;j
z6Q%;gAaGaBri0$)^BaprX}tv%;G^X4jCprg=m*n84P^*Kl+h02sF$75SnBtD?QJ^C
zjSY1e)l|L=uRHu|i${-@Ey{fMxcB=@b+=a;D;#xh`=;sMqckqyEWSntVRS)0#XM%t
zQ=zLH5Eonl+oA$a6b*{#a%~p8Wk0@BYBHsRPyJGCDp6T@pL^1_NviF;L)Byrv3&ts
zw78Kd&o*`WwQYGw;lh<x6Z?A1F}rI}a3nHs6{6Nl*K*wV2M^ffvzqOfW?z82D9M>L
zoVR2XYT`Y3XR`+ub1$mC$SOus29yn#cGRDC>I_BM82XYD*CZQGJ6>O>EVur4?E=df
z&#cyzC1n9H2=0Bv{c%Si@hZVHLm$1;l$3PnybrslZc!Uo8!R+<HUYpNE+`_#tB%<5
zlcHO*jbqL!$PZ^-h+=6s)WCf*B4E%%@l%Co4r7Y$XzbpZ7#xNYCW7L^5lc4X_S#Xm
z2Zn5(tdKU)(kvj|Ty}z+y+EIhuS3HFVnO*hiDu18yK%UF9H<d}3RpoHT#zF`uFRKh
zy%$&dv<V)%7*`gwp2d0dVb?oXaW&RYs_}{mlTq+uWqmi^%Uq=ECl<}>`0)!?Xp5J`
zdE>XL6|gQlT;2xoi>GtTG56bLiZ@}B0^&Z<Fc@sW)VO}FH@VZ|B4=HtC|_L_0@*}B
z)iLk5$ab1d<k1+{L{yTBX7oWBgo9sW-?_GF`AxtmYAzDIO4{h8o6GOBbMrJ`$iPH?
zJfBi8X)YzoALEPc=JT7~w!GOl|DV>t4D33ha3B2OvXa6u_zKC9b?>?-y~3eQKb}Tm
z5qT;JKr?K2+f^zZaBqsAw4LI#(t&R;wQ@D#X-feGA#vBnu1e)mWoTrg|13*)DhVIc
ztATs`ykKCEn;4xhQYNg>W?d8axC<<P91-Mj<S%&3s~WmTFAn~K_6@SKi26&S8Tf+j
za*L|JaJ>O!D-rnNAo?kqhkvqTeVtc8TYqAQw_*{zi<53dD}D;9_kdfph)qCU)U>C&
zjkAMFLxECDr28e>iOidiUva}vQb8fED2x}Me<XD}@n-yPdq;9mr<23m@oRgSGi&zP
zOU_q|pY9n6Ai`jV9Ly+xe7(J+T&c}$YZMd#%BLhylV+Yf*M)XOp8u4}erwPXe%r{k
z@v#S9>Ds46eqN;JK9EZwq!tG$A87)3dX=-MDDi-3Us_7CfP<_dePPbI(LL8BFrlU(
zP6+59Yt53u?w3|-5tmuWvA$4f3Z*W|=9N!f&D+f)W;PRMUs$h(GHWt=^Y6E7rmJ)=
zFC4FbOtDC2Nky)CbcGxBf{F`r5H;Auo=OK~FrSlVpQ`0L_7({?p#ri>9=yyBTcadM
zd;r{G0ry0Pk|dA$`V@Dtf8c6Lj}S2=ilK!YduH@7(WfNaLVWCpa6B;(#x>8n<2&_>
z17T=}9>16CQ7pz6`hKyS5$#K!_hZo`bR_=)BMsnbYlZvzVtvn?Rk0(yUZvdtuERfn
z-POzssy#E5)y!i9h1NXd{$8e!EpJ4iF?k)y=Ei4{OxE8SLo8m%(6Y9o1dw84H`y+4
zX=H~<XnH~wW<;k;h5O(3mRAB>k2)5K#Dw6@4cyB0L9{53u2WCY%r_gkakuIsilf^P
z>1Wi}M!*?FM+gUT{JfYgF8bfAbv2jxlc<=H$w`@c-T$(G?+s3x1Ny}_O^_k`G$9?J
z#24?|vkNt(<14Yv6-hz@O&J!|rDwRN{WZnT;L9m1Di!!1Y5hd=@DTUmaLwQGkh$o!
z!+m7E$FZE(#5GzGTu=5gxesP!{B}G4aPYg-foXPzW4MKNM{MM>AQ<*rE-15;5y6gH
z*2*RQ<qP8aV&kHUh#EgWpm}PU8+Bpx?XbbZ-=QWvnYG&Kgg<P|>%r?*j$KZ{wFL;z
z%BLdy82P%Lu~eg69vuOFU#uoccC?RD-1I^E=zMt8#LG&3r;3$_mA~B@cfm)&u=r2-
z49vsI)cFQ?@Q^ZU$f?&06G0Z)jp9eRyEZGi18YBM|D0YJepKdDT3q4U{-{QY+|b^V
zDnY11f<C`7(v6s`%Jg{UImM-#&G8{EdZ_<v-`l2;77vpJJV)*itynZFTe)fe`{O8d
zz(&I~Wby)p@#@Qt+G$_wQ5gL^3<i9X&_DLu&4I!1b71v76mVhz(U1#_aD$KQpYR;g
z(LzQ6GoJuq=O9<MD|kfwW1c~ld>%11&D=N0r5}vA9999xWt3Fqljv7&Ay7<`nN{ez
zzZM)yG^od^>{U)rw{E_QX>%NFGs_)yR0-zmJom@1%2E(df+N^US?CkYobTP&u|CIA
z*q33CR`{36=KZ4%#dYOh!UZEMQ7H%E_APDXU45WQ*f3bq#E?@3{75#@$K90Q0+SH^
z;WfyWQcUW1u19M*TN`R=y8_KsqXKB!7uq2+TgcF4R?;Y<MCwF^_|ss$^={QUhYbj^
zVl?S--4R&^2CTB@mIgbbE^?M@$!tZ3cjVi4T$LQDrQGy@E<tDDyyv}neWU&59A<=-
zeT(1`kk4cti@9Z|-#&n*6u?L<43Y*)FuiYgLkDXHj>(-N0%=0;#6;?4hMRw7VA9nx
z-2a%DfYA88Zhr4z&(bZes;pd&<UMS7%xxK}N0J~MAWIlDH%d0s%<*{F`zK|7VChpl
zkugmw206-3uIAO?clhF!HQc^J6%e<RO<sb#$=A3Th^NCI;=8JB|Dd=>=DC7#q66_Y
zC{iW@3l+fW0IuWkx&?@gGlRB!M?bOc`-+H!_&L04W0GEPxB8PN@}nXn0}9A_RBJZT
zJn&(=o7y(5HPuSyWPaCf>939Dcj+=`A&r4Lhfmk}t9B<v*PV_w=JZ6@S!+gq-fsGo
zChdpj5w?z&ay1jXv|ajNC(AGR!URV1FF5CfwI|Dodyb{C-56so+;`6G=4e+8WXmiK
z2i97c9dlCqk>z-WQerVmkT;>233hNxqI<4`mLE!p03<;MvB0Y8v+aSC26vie;JsDu
zJf9!U`XDZm`shj?k1TNg7b{!JN6M5f1x|*uuzIZb@M6WuPzvcrr7cuCJ>4}Qd*_x0
ziXXZn^E>H{30u6yS;6n(nu^qbn3Byo+db+y19_j3{(?$Iob>j!Z+M+<2#%5wSBtyJ
zcAH|Jf5rQGh}dP=lSRb!VpBC&$9WI6ix%a2pVS|GlCLLuSL|=mzArgloNKiF8QK}B
zaCiIC8-H0V`CaQzt%9|b0A(a+nBtAzZI@t!2cv1=QZo7w61yf2G8cFCy1c>Z0EB#6
z1x)3xiMghtyZ8L7dYLe}QcA4}Z4Y}7KhsjeRCEi%v3P7%Xw69sEWk#|fdW(*^VUjl
z(_p<De&c&Glb>4Zebh^D0yql^2V>e)dV3b5LJk#O1ZC*AMUtoaD7Q1tr-f3oLg7?h
z3W`i^qS<l1yY_wU<jn`oB|S<FsWb`zxlcBS`gtF%(@%;qsO$iUWlgwln0Ni!z|<q$
zFAx(Mznh18kF2aUNu0wsl3+*ht5kFUVDI<YYGxl%Wl`1>OYk8{*Hl5qS~hUkUg;O}
zD``h0SiqV{A7Avn%dTu5yA~CW|Dv1>r#h7Lf7n=3ULE5ddta_8gMy@~Fa(V`VYv7H
z7FD(I>5&0*-R$V?t^2+{e;<F@d|u@B8(ar96vU3)kL0$tU8Fc#1+1&adWk#qgkdtJ
zm0YOFN$qA1cJQY5sCTU%QW|bdzbm}y`}Ini0HWWfRuwE6<#neGC-N?elY~dckH30%
zEcQz%xm>_2Hp6~%rN2eVlTnAyPE!!BoHw0|y-Qo^9rve>OT@UsC!z`N{swiALW@uG
zf{dy33Er}FZEZ@#JdOwp(Tz;6+Q07}G}g{94ys{I=4`L!EWK(LE~XY?niKBv3Kr>a
zBn=5OH0@;8JmN(>uD|+v8c6T4Aes2vyz$HRXJTn;hVr2@m~-y%9(~&XTLDX1pNMwN
zWAnX~yY<(s(y%zqzGCn2Fnw`7$5qtCR#sQgh?M@9NQazolh?7WK1Dq~O-_6_+H-g(
zjq{HgD;|jOHKl#Uf*F20S7I1HgfQ(gy}yg~YY9Ln(TFhz8hJ|+^|$V26SNG{Je2BP
z|D^tuS>eZ&=K6NtDIN40@>Hmya*5l%@>crN>A5sFWT=d%&up&we497);qd1f33W!Z
zVrIdM-jv_<SG+|^b1GwLph}0&3c8#2GCcMtbT{Q&BkQHVN^{ed4fQ5^lvR|9qmh%8
zWnRC)yZeghZwUG`^G6FQSg2&_rpqpG=l#ttx&cg@jSl>a<q_>Sj5t9}zVgnU92f@|
zR|@kS*>fE0jBCA<+co|67R1Ea3fZ1$rGWwo8)usNBj1aEx#>%Hsx5asrC|bY@M@Fc
zx+c+j+IzJ^AqEabCq(r|gvx2U@Au~Z5LjR#5^AuFiOzbu=~U>YT^U@EPSIh=Ssnr%
z<xjl}?ykL0kwOUHj#L<oJ?J4KC0hsA!}Eo}$-0wnzR&WmAJ}x-{d${uh@ggJ8@W$u
zCbYlMJF{<a#X-f?n?Z&4Ll60bWOK$f-UB1`57^&y;aB8c$a@LqpHIAJo(iripN8+n
z^W#@+dE1*lO`cLd8ZD{tMa`9|-YIwLCxh53X?Js5sTZ+Me?cw~bSv1NN;-Pqg#VH-
zlt0{<?45t3{vm9}N=B0Tw3B!IPQJ9L1OdAf@ADRZ-|D_!u3;*yi(m^UK4j&7C&N4K
zq)6plgll?z3=s*2IAh;%XH09>Y-Y3SxO9nrajE&5+5yP)Y}@w2T`j6{wJ->#A?t%}
z-FDUwDmIr>BS9asTYNs3>$1xOF*z-<3(|PR8MKJl>~@~p^wZb)7F6a`mq@L%6qF>G
zLlxeYt+b#7@PKkhYB^;qGTGzodB+2R%6i(BxP^7vm4gS7k0pL!ZnL~Yf&{3DPj{{3
zlwOE0L*YY}qW&NYpa3_wcjF5LSrGi0wUc(g;`I$m9AJL>!`rb&GY?u*KuH0CWD2y=
zICIT<m)Sash8{}ildf(;nU9a-y=?v4b^b0Q`*sai#90>{l}L_wK5wd<^nDPk3@9V;
zmY7|@4+;|Ra%De6WW1(_3A;)(EeKes)t^4i6&?;uIO}03Nurr}Q$E>E{wd-O|2T2~
zSwrNMyp*|<-Ag-z%h7FsRSdQ=hp`#Hf0Ikvt2PiQE=T1n<W;_R+*mj5&B!-;^JL=o
z6btD9ljsu{m%BkPD`6a*$nUgHi7}3K@>}jcKUK~LBNrnv7!VP8%$2v><B$8@m9h|3
zWyz=L6QWv^4_(gcAh}M$nxr&WA<9lb+0G@bQl6m#XS6R9!5z})jEp~Twnr8=Iq?w{
z)$j#(G(8BaM(X#Rwf3tCimGvcVeJgzE+(5>=es?dgUj^?+k>2~fC8*Yrsr!9xd&=f
z{o2tYuu2&B^-TBMH^ISq`9dBOcT*UZcrwM0xMm-#6)HNgtmxbe37v<(_=~oY9h8KQ
zqumt{rmD6ehst_x>!bPZ%mZ3kFXNKh3Wdo;>Oam*NOtX>h;DEbyoXGd4CWOO4OKd+
z=8Rk1^UI=RH#QOrp@ri3OkBR|+M#auis-D5Fi9~2rF47=VMC>upGMiDm6~Z}hGbEw
zKUQc5!1UmFL)=?Ol|Rf(6qz?s2oa8KpT^#K&np3i1%&yoJZ22Ml+*irbGt{jx(XyR
z6QD7FWQ}NPvTQN>NX0_07@F^ny&L_!+>1ohJ}*N|XgL?Sb?-z!B2OR@2;~;k!BOc0
zrnT9f`$iyp(Z9N2L<u<*rd5Kuw~zbnW=(8x|6!?P)*f^QIV|B`7vDa*3;oV`kv*zQ
zgB)!_BCo~l@8~XgKwl-+!3E?LDAoe+V|9>1jOc!D+ZgSR0~Mh!E_o#{4l;r)p_2}J
z%|B`^Z3y)XO(+Q0my$FG@Ot42cip`zvBB%kh8Bb_y2wRRGRJ09m}@WEt*Ku=zkFSB
zA(WW}Ri0Nk_;J_ePi_7Os$WmeKy*|S%r&RFn4?W4F~l^WI$hkL8rwe{$5C-<VtTup
zGn$;xAyWQAa1r0Jqr)f@?Az|{qZVoui4xgfpdqs++|$du(U(5KK@KNWSt7aM=;2;7
z-<juQ*P~I%_f9YurFuP+b;A(gr(%@yxv0uvo&WPwyD?R(a$pufRAsjqP*x3Kh$t7c
z;FmLP=8VWU4m9-(ZAE;mNcEDivzVHSQ|+_qwPgV;mW-o95<jBuh%^s*q@fGlX-V3q
zMVBO<zWN@)%yBO6Np&#|qVC_Xbp;g7`ebdY1ryD(t6am9pe;hTvQpZ)kHI$r^(Mld
zQQ#gaP$QU~Di$*IZFjsA$tnt&ABSO>d-Zdr>jOgwp1}Cl5S6qx(mFQ|a5ui>^Odt0
zS=>7%TVo*;Q+gN&l8g?-Y2NwI`-PpN+YxM;6cGT6zI3to_LudHet=oQq0m-Mc?U0f
zdtj9q!qQL=6+Bee_yb^}Z_f38_(K0c)Niy_jM@ejz)3KVbnxci5VT8Habn-CrJ@8(
z?e^|o*{8v|H5&D6X2ByVMs4rCw>dBd+7=lEtN1!)AhBbK4Mpn??&|~IUnd9Mn$@4G
zP2@mOBeA$B&09ZR`%lZxAeg?WZpi4}S7pz7R#lbwsEmlxazs<v14K&J<ji!POw<{B
zwS9aR+bflBOc_S$sn5ByrfLBKCnQ%vV?*`Ksc9h5^?tIQY$MZ$gg37;<fawDqN!1`
zxv9Wiw@bG#uBgqvf*oB%@~3QfLx1)81hQB|4k!sS*9byDu1U^xOTTOUTdpsoq-9wI
z{tT2f#0bo;?_8U;QPWm6k|dgr1cG!SkCL=Sx+}qayvQ~^UGr$lfe<BZ#-Xr0{+;4R
zU#QV}cpmepWYA1prTegPldk9K{AP&-m#`Uylt7UYVOQ$o(zZAL6)P`dKtW;kXk?$|
ze5q#U`!TOCRCyfPK}8r6R21}wWhK$fxxihpSxHA2CCRP&M?v2|yuY-LF5wkzF3N5o
zvWI@dBsR(f)1`$s@~f!NRy7g{p|11_BNWqOS!7ht3ElU28~I(uOGzmRzgIH1ueA&9
zoTC<TYsxAL<p{Q&eH}vm=ka?oJ|4<}MB}WHP_CuYFF7_8@e#HJa|LgjNypjHa%5->
zKPB|qQMKfbEE*52Q&<fxm3ToCi)VxmHKduBf0WHA1$hJa;Xt6!CM`nm{h<dAK2|YN
zJwO&d?xV7KsOR5m7*J3(afC1g{7X$ZCA8}QzEr$9^UTo8C;zu^Snc)j%P1hqJUevz
zyPOtJS(*z}pn?r)8Mt(r3q7_`4M@ML3<O{(8|Fi2hpyhH_t7h86(*Yr+ak=^IcJ3O
zx9dT^wki)@?|PyE@bTH9hVScN49Fi>Rx+_DpHvqUN?jvlYR}uE#@<KA7So|t@Gz<W
zOfVy2Lg%el6F&aVSW-c9rwBgBo4%)p9`;R{fJUHV)J@~aGM9F?44t+?59&(6e!*CM
zYvdULR{w|!?ew3!hveye{c^-8Q_bO)p|ju7gR&}WZ;zca&MY`B)XYEKe=kI5qEkXc
z{iph`CDkOg3a#{yL0*U6;oO;I5mz=1?RmS6wBYH-kNH&-WvRk7>d-qhZ~WQvdrm=d
z`9uVo@t%3>y>dbq4B_`A{DvwXL}WS8p<_y4(>b)WzaBxZr<!x2@X7p&H>1-+J@eHt
zxVmDZY^{j3rkRHQLJh|9GfA{#lm`@y9Z%~4is7lzN;Ngrq0w{HD2>o~V}(+OEX*Tz
zqGu{Y=S{&#I$hP5$X4M&n#DDty#M};Itc@7Lg@ON|MS;Lbf`90*M#~^Vnm`Z$2tp)
z20I#RL{aFAS9s^BBxsgTRBGbPKVw37@RC?$AO<5QMMrb07!w(_Er0bgzEDeUvE(w~
z<H+2Tt^zQv_jzy0C;|(pmeDtWk1L)&;hq`xv$tcl+H$H#jc17I43mCWX(sZ3cgfdk
zqpq)5T_g<ukFWCpkGe?z_$U@U3o0TdZFlAuKp~o5EI=9rl0YP(2;S)?S&}82Y}jN2
ziCC~JDkzGm*svieh>C(0+np85*-%gA00jjBK}1FUf8P0RNP^z~dG0yG%+CC#zVp`a
zi}T3J@Acho#rQq4WW4$Ghww_embdiAhisd%yxTC&(esQuCeP}{TlA?L+*)?cJ!I?|
z#P7W=df5lmWa0l;+Z>KGLZC4tsk<9Y%v{PdqX5?X;PFuUvqS^JCjU`egHcKdI&SLe
zDyPBx_N?s(Z?3=$&~x~`jk{XsH$N?~HKqF+7&MV#*#h1)Xo^{QH{~f9x9pwp^Kc;y
zGnRC9)$@ASRw~IW7y`e!jp7s@tn$_RvmLh02>izDEmpHELALlve)EFvyVka;*n=jb
z#>NMyN&eN>D=n3SA*m)aYQQeFNF&+G|GvI?vaLjs88v=jp964yoqot`D-aooH)0no
zEf&1|Om*Lj`qy56ZU!FmC;BPvRv^gQK}aBp>h+~wocyN-a4ieh>CqlrA>u%j-Rx{Y
z(Q;J!Tl$#<TQfG`ug0xMEPpqDs2}KW3yZO-x&3nxRs2W#ZDY&FNkB*~RM}P{qh_lQ
z-qQQdu$AHnBnyL~G(+9}fgbO;#lplzaHS&WlUo0rUNbmaY%$2O)Wf#MzN=TC-nCfJ
zz}CE@*PdyMT}oL=h##AX2UVK-;{*MqJGb!|<M$s}WF^k>Ki29W@@&J={>T(xEp$XO
znUgf~BmKz`TTvF_eR2CE&@5SHzO6S6vo#d~|CA^dB~A~f_O<`$&0}m;sSBJAa5Zaq
z!F#%AmMvxtQRB<g$Y+FDb76jUKNBTCLSgtC=N6YTj3Ptc(;H5KZlocM_%R@35og%Y
z#n&#hr5$t;SzA3@Y|fi-KzWMXuM%^o(91M6Ndg}&QN-CwRi&8=|6xal&vp}+LP8jl
z)!+ZE4TqJV=b<o__Y8-Bmh#v!Tsm7`z`3&W34y1CAPzI9UT@3CVheB^U=B!E|H?Oy
z&bJj-(30)NUzmYDeWqD(ldTZqBHq3dZl0lL4K=mb+VYNxNdV`x67vo>r1LUB_wtI(
zNf%LyVGxb5bS{btwZ>=OKI?#DZf4*-vviy-CUHH)&i*<_?ev+O{!Vc!JdmJz;>0TI
zr~WI<+nh8`d&xdaN5Gb#?{}7&ioUkE*rx1BPvKPF|Dx&D%@&S;8Va+7QkGE-d&T7Z
z#<K?aWL0fl2nS5QDeo5xd3G@k(xYUbQka3}ax<pL?#4($Ua^14(@lCX7~SC4dPlmg
zDzfypov`AC2Jg?gn~`m6$A@ZNx<a63wo2Qq4|lHxr`s*Zt1wM{`n4YFUak@T0Q`m=
zIzE&NUHx^V{>;6l6ZlX&btm`=+1U53PRQUhnT*;M*pSrW?#d%(vanp8%Oy$G`X=+@
z54OA<R1>VhM5JP6+7~g2-?J*9z`=|H$kZ0G&lO>fjIDpR>3cX!L#>>Q==~z%fhTv!
z7}NVmTSrD<*{U2AwHfO5A!ba<fyHU+;UQ+ZTP)v!u<<66-2%*0E+w4J{rM)gw{2D!
zcKOkqWG-=di0KP)lL4UpVFjvLhOqBT`>|{_^GqXziRzIS^gV*oA(NN<*fjGJq?+=w
zJzqA+!$Z(4SVpVT%y}#*<s*FD440Rdac8T>q2?gSF;yJ{;Bx;l)I0=5q`1>8v($G(
zOaas3Rm|h$L3!A-G}bIf&GMULgyVw~;em`s#qxY)sAY}jd0`APh_VH-j}^mZ0uz3H
zskv^8Etl6w28)fE%XQ%hQ@GBS^QtyQw}qpes;(?B)$$Z(Vezk(o1X@jYmS;W-7FKn
zF^kLNr?@gKPc#Aqui9_tngsVTE)HN)A{rkyRT|<Dq{<r11+URC6S~G*fg+J>j$Bn(
zZ_XEfI!oCNBNBuV9b``~&4_GM60%ieSjZ@6K};cb$Gzod(<Qd5bRQwSfqHx`Jq36{
zjg8bw3^;PHT3KeEyv+V)B4$fw0OtuM8ho}H+hmJLf^J0}L?GCz9CcoS`FSZd2u+9>
zt_+0JFgD3dQzR8x1kMJzKDf|<q)&&argPLu6=uM7|D%@EHP-B!ZEH~viQ3n;<LU`b
zNSkA8NTD390GFBbG~ApiP1s(z{010gBq%{T5fOHD*pwe<@1)q_*?@h_A}A4fIH@cN
znx#GMk(m&Y5JRD}NQ68H{YRPN8|=p>;K;%(_Rk?z-qTG5CO%r-xgoRrY@}J|j<R!?
zU@WTEk>-Z$-7dSd$xzpiG-KR0c@bgy(Yc{^7f+WL@{DoUYOJq)F(6z-h!>j=+zstq
zf%2lGqF^5{R?u#X$jCYBn-ON-MRovPsxlb$?n3jQS%0p=<4P5dG@)n}DK;&U1lR(D
z+f`?oVHdh>I#uu;&sa0uttj0?NEgRC=&QD}l!T?Es1rw+m%}t9lE^P4g2WO{;*>3>
zsC%zBE9BVovf^LK-n;&JC*Nouf8RFAkIbk=%PAgp!l3`U%w&ip)#>-r%||zw;lgBQ
z;jb93C$kZU57Z0{68UCxbPYOJ0A)~MoWEEB@sQhAWbTvsxXJ-u3XB-s8r)78z~@P3
zle<Ga)b^C4(1D1@ongki{qaz9x!VtH7Q1>&zNx#~j;@$I3XDzASMd)%%{(*nfMQ6<
zwWpb-?s66eF<gqK0UjYo{eFh|_jLPn3^`LoESw?$U?|2_Nuf(wx{f%BQFAkJ#*B`A
zL6SLwvCA#t`Lk}@4R(WJHE=>Z?mqL|1>BBou)uf)!%YZ`Fo=lQxVEOLi3giM?&tfk
z8R1Z~9T>PxRLt&XmYz=qIVzBq`52iKGt|Ok%-`E=>F_-^uNlS-Sf=&In~T|y&QhX)
z+1%Y`4ie4<u`>+a47(Et$CVS=z0ItgLtTep3Eo7O`liK{N|TOaP?givbLX4nwl2kZ
zO_Ale)x6qO-bA&BBB{+RXzluIfB@BbZRXPh`X(Q;I%lSNP}t0lPa?Etso!UqA@1PI
zt7`X<4VQBv5;LBSEi=rW!U=Y?Ae<59*7@dzt{tIh%}}-Hn-wA}BT@m53y0voj-Uu}
z)BoLU2F&i#71)|NYGkWfahYv1$uH4B08;YvY@Ddg*$4bQmBYPsx|uKQ0O~4_2DpA!
zfX@`A)QMM`ljqqgd**BHHDU{x#_~23b6uBjGjT|JtGT7?G%Vbwr`7!EPGhW(%VU)X
z+3NBp^RL_JBOSFRQ2F-Y5kJPiSJoL}%lHd=D24|~-~L^rd2l$VkzDt%;&6&+{y3z0
z>-D@#D29CyMGpYcQH73da$Zk!l8DV2!q&@EVp(rgDm-_$9BmfL%bbj5RZbX>Kh`hI
z$RMxuHvQhEiV$hxNMvLkYAK6@w&ytWz55F1!TnqIM|7rWOjP}J;}L-wrX|qOuCB7M
zVlNzN28n(mOBL_oJ?C*{$!<8!v|Sy$2xew9s;y=W)|lX6=nwzYxnVrz>1y=X;mW;a
z9z@*za;kHFIfdDnGFV4-YPbILPl;cIa9#{Myh#9*L^XN4)8qKKMSKV6A9?IyRCrJX
zQtg6AoU$4^kgDd8WCtbQ6VlW3dT0ImSZPu;6`D*>NKr&PKIyz(#Lv_0EtLF8EH2SC
zD8wQcJE@wFaLK3c4YzDUr6+2~<h@Sp1m=iBf`jBz6I?Kv=o43(kq_FMk+1~&pJB1c
zv1AXOz#a;J%v)<&9i*n;r<$WS+7`J&B#HWk>P?w%b_&&r5`5Sk_c0(APW|g%lO(D*
zAf!SwEMv+mf#e`L$sEzD{izYMLC(Eqo7<?<$1~J*Q_bK_wl86h(TQ+GV8JA$&NP@G
zHruK)G(~XjM4P57Z<E;|y3<UU9`aa=q=b)5t*{#?UnHusp}}0d;(&J9>g6W05PqI^
zfQGn(CP)yA=(3PW+G~G);4_JRe2%$ZCd9|kGK)r(#4fx#y<5!--$70Bzva+Q=Ul_;
zVAEmHZKl@kZ6qw2IHWNoUf@PE!5y`m0WGRP;$cgjW?pwk`zOXJRs9w;Q-yKr^z3re
z)wsFlEx9<EYMj`G`39zbby%Az{I@MF@%sr>pp;Vz6}O6EHeDE8wpX&De0+z?K6UC?
z+$vs}Yu<a$c2Q1(Am||XpAZ+GIw(<{aO9bY8~f*l&7{#R7NvP6-u&%*L`Jo+QPH)Q
zk+5pn0?;$0(yTj#AH!4cgA&1k^TMfXtIbVcMZZZOQ7(nJ^(>V#%Upc4?HzAo%d^{L
z^*^0w;=Z*l#xw;(U(&m{3V%4mOzUHR%yr}x2@o87D+lTHhs+nk5oTH=TstGgVS%m<
zZZ<Wp{tl+Lp4VMYk;Es@XfZ36*+!^|L{CdG_FiABIrAY~JR%gVx7-#E>ZoHDRGJbI
zOuAeyRM1n+kgsiVE}Sp9b#4C4_ZONSyD06n{K5^lvr{6D*IPo(`@m%^zt5cO3bt}d
zFof{lkl0gz9x~L>u=zx02aT3Va~0+92W~R+U0G~`cnqOU0E!}0?VM+P^X+g@v~(g4
z0Q|I=V?~JvfU{2w(F7aI!t!)&Z!tM1+8Xk^12jW1%6c`S$_zNhZ2-eU7Cv7v39on9
z9#<s9@Q|%~oNG=LNjVKGoxh%#cr@x<QX<2$%+dz?_K4u^-XO_;1Mb3==B<<IxAWQ{
zkj33->fY|UWN;Gd{2R;;_r#X?>v4z_@*yjbqk7(CK9+|kQ;mXehVdl?Aw?az*j#ay
zEoHSZvEh(Q1yn=bZ+hJ9RvaMRKzm1oO`j;`<XQkPYAHH_V`=KOb4`{|sVo$?NP{8R
zM%1rX8Su?CTRtAFi&~Jw@HR+Q-RjM5_v*Tl;BrkRKJ>l@)8ZZ<+2XR+DBuPt#;IzT
z-#j8WMEt32pp@l*#q$Sv#^3c*BGYh4e2^#+dpWCQmuJb}`9(i>C3V>VREXmO45h>m
zeDa&VWsNNs16Lbhot#N^ULP~z>8_=4PgDDtVN%+8Gg$TIbIkg;C_X?R?y?V0xa3Uc
zQI6&nWg&swI2$b+Z{`UxgC~;}COCx26UdsZ-kWTmle5?9E23t3dak*{l|}#=7dw#^
z>UrikC0|@@-gv~0K)zFm2qrgFVh+CvoBzIGYtSjsiswNBP-IVX#+#oG_>K_6_G{Pa
z^8&2)-W=n+V>`+fy5RDJILE;&)J`=ES5nofg<wffxXBd0*|k^%!rB|nW?8LHzZOii
zd2`Ig?(|0NX&1pI7g?HWD>ps%9nb(q@h`?HE=H|4m_uE<-{oz=wW@ogNqmfcc)n2D
z3LQpGnyk_r%(kCx@mNC1IJ6OnG4uyL@XDLa`R>Mc856XrVw}nP)$ObEXyNdxE6jyb
z(`kC-K~QBknY&mFR;yg}88BRFn5HvT#)am5VK6xcM0vTdHqs1iw$;*f>IF0lHFAzQ
z@k2UCIKm<c(}rf1tQ&`$GO?myFWy6lzGX$xW23a1-_!JzoykUTQ(q~7H*y<DR3)i3
zZ5uQ_wem1S5Mh_TonuDM>pFOhTz|FHVpnRKV=i)UZzs(oCumlSInO1~2oQe%mqO?f
z2GWEGt=Q7heFq!G%b&l<+~^W0(m1g@t_lHU2a*VdO#YKJ%Y>-3Ta|cX8%$8laU#?N
zA^$lkOgKAietg0fB7#Ti`EDjhE_bmtWb)H;76+qYHS?9+GFLA&tDm<&hnCodv$i-?
z%a&;uawHA{nQi77m-i|cg}lpP@*F@Y;RNn*pM!i<2T_3=B@jw!xSRqsnS8ZldE|*|
zX*P%Lv>&x$%@&!S8^8(uu+coc+t%O!0)Ov{@8JJ2ht-#xcVDx0dHxx-ds^(KSw3^x
z-Da9-BQk{`cG7!c8?fV>>>m0&fLoz@BtgNn`@)50lWRYAHL$W!oUg3=%^&S-sa0Rt
zY<J5V%mWYe0U)kWOuJTnNLY@#{40G`bzD9sVZ0xj1HPIN>OBw6L5-4i3g<mIN>Sz<
ztV1XDlb;oYs)<~Og+c{eyU)8q+tTp?fs)J=i^AT`-YeX~3c#{=O0h)s`M>n$dHdz#
zQXy^@qayfGB8EXL-<|B;Q4u3u=VJSyXNgsRwznRUVSCOC1>Emps4e)}yCBAv%3yIt
z#$!N6DDljvch@E%I+h?0zJ&)s_kZ*8I<4526HZVa+6kbukOovb3w!JLCfJ%>dJ0E&
zN>}3anb%8yeu}La9%_>xLt+NU>8~c+vax|mU$x(M!syqYsCS)h%R$+z_Df7XxP+`&
zXrK4@)M)QzA(SMZf)IXo@MM7oNCyiDBUk^Ew_iW^NBHLkX2`-yO0K7R=&KxC{=atx
z^3<^_1f}9ZL#Mo;tkTd}+qi_!q295bl0NlVy=8zcAMGb(PKL_Tv8>76^mA;D>_F#*
zNNHaPjxH=zHO@*9Jl5i+WA)sZ?eF(*jxf}Fy}pjk`OA}pqn|qHAU(goZCohgFOhzn
zTPRMqgY@&2Zl|J86?6gu1$h71!<K{eS&0V@P$YyePSl5I+lqXjuRat3V?xdkF+9EX
zj!awe|14l?rv>aXbJSn^k3dO;lYQVBAO^G<1|HBLc3YU`?|$~KbT<t8hUcTKEaSVe
zn?8BSfdfw#dbhuSjs$UtP#s~YIDYD@t=<KrY@04$5pwk84)0CwI#}pBzMaE%oVC?^
zg~v9)qnwioR24ggvuCpUd7F2*-&W<<%8jwBE$|$V|KwdW!dBShj7^`Jq{?;leCKs?
zY)vlyY2iSd@Oj+YvTwW>4!7kK;jt{0Ae6v16Ew8R|Mgxn(*2UZQq=4+on-j-0o%ND
z3T=g*PL-dy6no8~OKRh<-nW@hrvnBP*!h5USpw;<V+l&^U6a(K>e)@+%Lm(U@J8Cn
zixp_y_ugBw+){u6{F0MTz0yZtJgML8+;l8M)iC#gshmI2SxsB#J>-M<+4&fOLN&x7
zHcVv?<?L<z+?%{Oem4D;_yhzChdrq5iEntneky)8?`@vHEz}Yc1rVMquX?*JjGs-!
ze=Z&hf`@{`F3>jKLH~@OU4T3TxCiDFGS#NAJ?e>%y@?OS&(6(M6$JRUd`Br8FzPFB
zcuD+h-dchoD|tf#AVs9YA^!2D_qKKPo`#~JrN$jQIbgv9eBPV;b^J13;4<G-e^nc6
zpOc*=cmQ|jo5%kiznbe+7OEq(630Q6G+1X}cdC?)N4*|s5kE#0SUDsB1^VhpJ!ihH
z9PO*C4OI)KK6VR+Rj+i@^MBb46<|lRViYkjD3~LWO=64nS$CYen%2WZMDuWuIK^z@
z=Kq+JH+W<Sqwx^m|B-aH<PYy%&)JUvpx^^e5)B?KLHfaZ!Q#LAHYrn7;*t8Ln{6e~
z7~rF|diIY&9@MHH`mj}h)mEYtI>tSkO>AsmBR(q`ASzq*px<oMu8Wb=X)$u4+x0R|
z37Ap6^wveT0nVKb{u=BPL^Q6**IWB1%WQMOi*0E2x5)41ybMd%v2WYolXa@8sV)ho
zvLOKM0zl~8iAjZe-ZOtObb092cir{T*VszX+MAjqcF{##xVl)Mo^L-lu8F%AXk`p^
z2qcTr{q;?^+BVVspj^_zlpLnVEVbnw(*ee_;}cy^iePE0rAO+v1%EL(q7untwSP~_
zLv^8`d+_SI=`%Lj7RBg9xCH9KA$sPWwxonG;x-)hs@=g#-o=~-ebAS-a*{6`Av%Oh
z#xiqPXYTd>ZN{mqAiKjuRZVgyC0GMyzqV2Ly(3{Y4{K?N_>SpZC~#_$)$u=@h3VeT
z<@lf?3?BQlncuY>6cf1B_TOirzHIfi$)`y#CCq8&K~620LLB*ge-IJ@kxf=-U#{<c
zGw!AQR8`JY{S8wk+6&_^4iDVU9&`2hSK_2e$<zoA4+OG68B^5_m+Mt;+w$_d(3Gjf
z@mtEp@0MSoXTBBpQZ6Q8P{Sm%VR=xjc+wE+SaZ2f`jl#d-KlQoI~0R9ez~6gxjPC}
zh|Q26paW>xF`}x7j0m;W96kBfxR;7yz{CC)pUi{fhLZON-RF7Ap(9}-;$jAey815H
zZ!>|>Y3P1iV7mMyPj8VqV9L2lPh_M}8UpParUvZ9X$1@O(3Se})p0NJx$@|6##DOn
zZfOokeTvGuQh)O-!^O*i`l)_9+EExxMNPv?1niZb@nPIc!=cDLXiNh)bc-=C?Ml7!
zrMQ=nyuf^cpb7~G_fbv0PJi$k!<RhOsQTbt`8j|QSL!!k=0ivh9Rn%z)yX)J$qBE#
zfZj@pmiHlCQ3!!zN56S7?lR7rQlAfS7CQ--aUzR-<Z%iIRLS@xjJ@e<;+anM*$J!Z
zq}XM&xZ0dwUS(OE!HN2c&pC7%>g-TcZJjTiWD!v0kxf<i#5h^6YN;#^wbg@OU*8J5
zgHIh1$ZYX9J)F>uwz||`Eph@c3{~<xTpZ)v@{+A8kFY9Y`j;wD;M55{9P@##n#3uD
zBX?VgKhpCDIX}K(s}39tbmoZ|XP-Nm11tI7|5KUXsj?hZ9jYfrA}KaA1~_Fux#I_J
zBp}7&hcl<A6SMQLM}e#A{!tt-`jr1~^dMyJZ+GD6p|Bm5gsb7GLNFj%0$|UF#ybfI
znZMc{Uiyw!V<eGt1Fs;><nFcfcLx8{odK>Q?6=()$-UO!aUP{ZUgzP67#2nWO0FW>
zSu?<Xr<{w}j5`1U7c3Ghd#=Y>_qkrg4HK=e!0@D~TW)s_jfv|hL+|ycGK7@&GDvOt
z*A@#MuU^&oq=T2-B2lYJh7Ua5F!-v=HYZklu=V6{mS;Va*!Lm2$M=ehZ_f^INwS)m
zl8FDJ7-fjW{KJ`vsfWLTHxe~R(_YwIiM>-7AD;N)tC)3CY-TqEa53C$bXI>yS^F%+
zk@dh?hy%D=)`bS!1d@NI!C3ORA%9ga`oU;9gcY-guaVT2q%ai!;Qqaw-4C<UKq}+t
z91-aTczs5l@`L%|A}%7=6lx)qT(B`-?cpRIZ%eU46LST2hBOdY{NuNp^wHj#{Adzc
zO@IiTb&uzzogOI|B{|mBphcdu*4uyQN^r6I_g$V(H}UT@)C3}Vs?VSGyttPFUIgEE
z0W%ph-?Q#>x5ZRYM+Dkb^?bnN-Qo%I4k@+4(NCNb7i1OD43h9qM#<0zo~36z6C32}
zl!qilOOTFH5&7lEt8pq5hn70D{Jiif*bGwC+qXNx{*F|YVVM-4c1arjRhe_yQMR;e
z1E}nAH#kRm+y?Sa<BcoKES*6)BR4pegS&Rd$?52<;}bd2($az~!MU(FdwFmW7#A+@
zA5%IS1BnFpdpJ=js9RNW1vAAj=kA)A(lW8SNo5|1y-=5^u|<5l_b@ZFKBlx7=Ru-4
zF=FEhq{faQ*Zf$sy(Fe|xGY0(dMmNG0A~9e+z`dwl5BO#xn_DOrnHa%(^~A8;(ov$
zm6vC!trg~o>tjlb@Gz@{>BXO_q>zI%`(iV9SWIa?;%~JKK;kv?$C50h)a;7T5e5WI
z0XEKQL`kN4W3tIKG0QNW0M^FENKX<l<NA4~`q21gSRYZ+R<+@?oFq49`^{$P-Z=Sj
zej6Di>LlGzdXk*Vepj1M6%8`gB-H7WcsVOcsKUp0na7W@<-pQbw*~xd(n5sE;_J-r
zBW+Dy&|fzlbb@G;{<oV`j<ppNTElI^?`7vCiTHQnJd@go3f!#0z{yTaA|ydww!*xS
zP9gezG%MIYrUzglWW3Ooz^&%S?RLD#y#dd-sSqpyMoWT}sN3h7!w!jG&5*}K;2QjG
zywqY$Cxr2AvtgR|Pc^)ee_2CLuw->_o_Y2h+osId!qJnL69hiiGVf&b^Ub!Vga|d>
z=^T9b)70HV%<mW2;yjZ6HHFCUS7{sJJ)fceRccZ;*xGUkB6(3oO^*Q?R%6<Dvu=v5
z8iUFK@vg1bZHF~Toq3x1soqwOMT3AwIR~o-t5juTXV~I07)%&I%DGJH^@%3+7F*tB
z4S2}I6U;ofqfVpFiH>?1rlV+ddUA4-1a(~*GU26c16r1VFGyl%gs_y1B+)eun`iQW
z|8teR1rOb58h`t96+TVs(i_baf5dNR+e<=icy>c|zR1(5Q*4n^zm)3N=i9%FMZ8ri
ztytf)#1^3TZ1llJsfKa7;tpGck`;|rnGe~P^0o^7+BLR3S2Q*NN*oRv$6Q;2|05*G
zgAgLH6wjTeTb9}KNj}sXQ<b`{O8;?%EkQvB<f{CtGDp9+I9{}og_z}BA8>+<IAWWQ
zH*fr8^^`>c8|Pp(;nZ<YYkC>4=%iD**!$$|aswSCo+(A$)zj>A8%o%ct3aoQqyOUx
zCLiMfG^K!a0C2T|sIv;RUcv@XvmPn*+U{Cz-6gMCt9!d1zWa;iiS2NcABl&WP%EL7
zS*muM7LU`;y^wTDUHi5kg#R$#wlXQULWGDcwRxm@{SN!<BA-vX5HsPx&vj9u+lB8-
zS3^s7mK1eWg1Ni9Ef=c|_G^iT$WS*ut1mi<V)PQO+FOiam>s_QMMuQI)oDKBPkR4a
zy(Gu>GI}4LDdKvblPu1d;}15C{oM+Dx!iCRF+Zd8dt2W>Bu>I+Ci$A=9DttV;f>ka
z&BSKM%R#kbAru6GHY>veuW|Ly`t5JxP?#bfO|9dc!Lt*h;^9!fxK*FED=rI*S_RQV
zl6qSz;i^1r?JaTU$or{GSL1Ors}HqE?4Ad!YTVyUau540tkYGI77q!519S{1QmTi|
z-O|JS{IP9_1nFyNC0r)kgY@y{A*SG1+GR6#R3bD0gG@$vb`SIQJQ_r)pRJ%pni_Sa
z`Q%zV^e9=BNu_v*RqXM-F8q<29Lc{PjLr&q$-~Qi$ZvY=Q?|P@@h(7ev6Id3VX9`?
zrOU5Hz>@C+`X-%?RA$Vecv)1rVt!94VX{29*_j@AxzgP_=!uu*b7>e0gm%#b=Q8*w
z{o1d52ZjR8sH`0Fya%G#*D(iguwN<)MqmT7vpf)&hj!>h$9`p;z&ewc3ML0kgY0Zs
zgE2qo8wc9O0dTT8RF81k>KTpIvBX!2G6R*12Vr_cyxH)Aopw3lF?N@6sFL>Gf77d1
z*`+GOR3(G4qa<0vkJ>Av#62V!iq!f%<WwRk0vDnjS>mUTGNTXTyIB|!z~+)YVd>LV
z@zLhj>+F{bB9-D7la=P-C@_gN57{{*ayF1)fn9eey;Pg68{=L<4>y9OhCnkV(+_d7
zU+d3$+T}wNMBrYv9hz(uX6hY!KzBRmQebtUe^46_*X3-FS-ITKrHE?;0-DSwhowzX
z2XEKk9AbxC%nF5CK<-ORmI^!)cV5oGGEg&w<uGDRkiAVj%={`BgYAPF;;fOCE<eA(
zYnI<>rw6T+s3DBRsUA$^1HRQyETx|mU}r>=oSq^-_a{ndo~)9b5Q5z0V2O~Q#^R@`
z$w!(6SGXGv8W9|Yd&x4>WH#OQ>UX`20A{=~RK=@Bu$>2s=6BlMw3R+V4PnOvwh5A^
zeD10k)9*g2$N=vTR&lSgJw(TF-paXGoW!xdskJPn-C`af0GB2xzJS<{_Fe!n>+JN=
zNKNT(emRXQ6dmX}WXRAL4+?-Y;!WrxJ0rly$TuWQCR@+fxxcm7$4$gQm)l&s#eyLH
zoaY^PVuCG#+=&B-T0dNhI?E0$Emx>rPt!@?LsV?aUzU?kw7nd{Jjn;JfyiRu){6?~
z<oC?ggS%*mNCweK6V&Mo#KZ0Hsk5euLkLb+RMP~*+sY!4i^@tBqVhj^k2!9r6*vmo
zaKPd5umgapkg&TUyUqP)+S;*rU$Q{xq2ONBq@PXB5L=F?UZ|eelLiu4`o<UL@JhFV
zs9c-sLMW_}U#R+Ur@5=dR-KI!7f5euga;Zh8pk-(PPH|1(`>QW@%#x+Ph*S65L{l1
z2$0kk5!n`7lz9K0^Q*ZfVCyH<M%caffv0ewcK%?>i`=#_&&@m((hTl1Q+fB8(+3>b
zt(BQ=zsV}?SCi`Y+s*<8IPbuD;wy-d%)U(c#r*B>wu`YSQN(U0DbteGwja%J*Sh7M
zmWzGezg#1cZ<|FzhyE~o0TEepkn`;@+vv|bfL5$y2ciqw8eLJ6sYX|{(=o6p)g9Xn
zhDaT}Wuzt;kg<!A_=%s)^TmG}Bd_WHF&2bG^<zaY**f$z+qRm6PP1)F0#;)#OUVw!
z?=~-Zy<b4ch>mI@YD^L*o0HA_1kV>d^+ajOZdyF)ThA~b4)nZ$Z&bO+I3TdplUf`C
znWMhH%-ND1{{l_NH8v8lBTss|2hCRNt<Dt#smNBZ1Y0(W!z*ylnI4oG^Ts%H%Hm$Y
zr?W(ygxm;5*b=Ebc8-($26gG`Bh1nuu?A)kte@$@9eU9G#9Md8OVxNhGSD;xFi9kP
zU~@ixBk{gh?5BzY4J11vr<Py^Wq2?l4$F0}3&zRN+he{tizspVTBiE(GN(cYkMq(V
zlG)-aiEDnkhs)ep=sYosW?iSn-E5y$*QH4Fpo)(!1s<`5oMuA8us4Vi$3wHcE1X{Y
zm=`V@P|7;%1&fhSo|wz7cJA73m*XQ;q!^}&t@B{jy#Ep>?{$Vi{0-u}i-aJZrK!h<
zI|F3_GXV)Bk?AH_Mm$S}{D*_i$zR6300%c}Pea`v;OJ^_U9t-?p~yMyZrg}eZ?EEM
zhfWUgIV0BDFLhdmR1ds!`!bNfZDT{jMj#H@CRTM}R${mFSvX#0F;RzGxm`R!w7B$2
z=ZdU&83BL_4V!S@<>h5$6=R+8Yxq2hU;@Q9;W5n)peJld9QC~IsME>H%JM*1?zr6f
zTZY{nd|)C?oSqC1t_z10I}esHMI=VdoWgVhcIAOz-jU?IHI52wSsPo3GKOE3ojiNB
zv+jgwH(?o1a;66X?w3Mmb>o4*hL>}H%`i(yz`!uGm=$SqTN9UjVux9@QKSS3NlHnD
zbp;sfQs*lfrg&^YrgE}`GflYGIa&^Xrh2uGpUW`0OWEljd~B9n<Mhh2D})bb*at8N
zI%N16CIQD@=ybo6tw=+4+=AwM>K=fZ;Ab<{b!Q~jUPYH(w*t-~x)leuNZH>)?2qAa
zr7#bf!i5!VGxu^5=&2lR52DlTex#*%ATaYLCa!wO4!nF1``WxwH2F9X$ZeT-k@M^T
z298Q9QjPyLTqr=isoeHtb<KaBb9%b%Iw%ATJPMokeayr=siCIHB?T!tkb-oz=o)AC
z;6F9X^58e{zni7DH{$|~7m|k4yG7UII^n2xu5;}B_MEdHRDvlu;cVyh&)93&pB6u|
z5v&y_GV;AMbum9Y;JT*D5_McxSQ17oM<2unp=-;oaIQL*A!AAL)d%;W5)iHjUZtj+
z^G6NK+Lbb7d*E=QlmUHdA)8%EHY+sxmNUB`#yRvOw^5+R5)6<AWU-H)>)bR5YM08*
zo53jnnpb9bM56P|Y6gwd4dLv<*k&^8WHtR{r|3Cb-tlv;SM=x5ka0m_@i}Zb`y)_5
zYM(7~hFnS$OkTbq%0p1W<zn3Qq;sDT16eFza8HZ)fXQ<G;}26Xou6ZJ4sL4V$b#UM
z&Vf!<&jb_idD7iP$?4V*od&lrSuMWGiKN@Q@i=dBp!X0LkSR46T<CN^!>!rKeZuQY
zP;NPFY0#uBb<s?x=rmhh(TZ_jnq`O-cJwT#54VRIu`_#YgaxsDY+9PSG2+}kh>=5W
zc{xFEB{s|h<nq?hPS4XBxin#sL-m5IoRTcZ-P7o-JB;4A3K&*lrMYd%GP=a+iJxee
zAMYvdPLy2Y%IZNYa$>DhxjpW2Je>-|^`I#>ku3!eAazH+_q$X3J&vZwx)_MllSM{M
z&&f$n5`WB}KJ=Qzevk9G4i9YbL(wp?Bw@x-x32P@b}|)W&JU3Hgpp@vBniJW{a@aJ
zr}TRq0e?g!5UfS9;g3KGv!ymgo%V`%Cmm7?LI<mh3q{B?h9o}xL=-<<)yJOq2IZTm
zF2kWI7#+ZBNJ?gRzj)J|Kg^Cc-zRQav;i_LNz6<itoQyqiEh&Yy_ymRDA~F`rX?qd
z9k%d1Z{g8YBFwWgp#Zoyg0pYO^Zq&BjmNnS>sb;6kW}WKB&qa{_jw;aCfX-;)S!Q4
zAgQYVKfH7Psu52}dn3%;1jO1#bSGx+Xd?!Tbno+6D<bPncEKs)M*{{D*EJ~>UB^e+
z-oYN`nSx{mdRo0~OCB?3z638O35WFG*Srf@3YKv^3`{jLG<(DAoFtw}H$Ly3In-_%
zo#Rp--qj>sl!XHB@36ZhiSBXDN^k36clSv@ARh9m8A%z4aOy+vxeS2b%kb_YUoD%H
zlaVCg6kojNz0gY=MDPvRR;5~YupA2nK0wJyf*zB%-23h6e4odjev#|3*wHVb;J103
zD(s4m5yvaG0f{R~n7BLt;l1`qTO-|$3h{sRif<G;PI0=Fv&D<j^IY%E-R;cA1Oeiv
z51CkQ8?la(IX)|u-gvKWd(1nSiOKlMTgK=SZjvOBck%Py|Ms^PEE`rsnV2jZ(`i`a
zeNPT_D%o@B7*(h2wg3fwx5Rt3dj}BYSq)Ak=E<aF^jWE^yqPEU8^lZ}U?uWTXRH$B
zq6+TRm(Popa=`NIiNvKCz1fC4b-~TCgHTNr2Z@OgKBOH?1)u*E^}y4*`3+l7SSpXO
zbqEK%I#n%xQh&SF)|5?g<EAb4Qpr<#?`yW0Sneh<0}Inilnu$$9@lee!Idix0Z%9n
z;S!v6&@=k*)$S0Wd{N*DFicd>m3o}~9*^_pQ#^?D;?$3qPqJDxN5A+JHK649BE$e=
zYJ#dQeO#w4q$6-&gq^aJBw9RK?Y>Fx`e*DQZX08AA#DWpg6#*`WYwp3NQDx@C{_k~
zBfc?Nz4N55f6fjow;CXQSxEGSur$l{kXLLuV0q#zjwc`IiLWjL=6WTcNx=^YXVE57
zS>W<UY|RqA?QzN_{6APDKgWGEQ+0n_U-7*ywg5E}lTMI)x~f^Jzuacai}5JOCl<$I
z97|Kwf)#oN4TN8W$f6UM<Q%NVv=usWzAYasc}nVu?L=QLiD=ZlkLrV{k|n297%pHE
zQq{y&I=sRb+ekguPy7i!eoFfm+fsK`u?WHVf{v$-S*=fb%+7gS6plqwv!DK$u3W=F
zB`O?zSAk>VlY18FJa>HvkQZlT3qv5fR9q{b(znWvinxYr9mxr@aF|{EfWB`Xr38M<
zrJo|M;-aHLMf`~F?#?Wqb3VlvAYqvhN^H50>L=tlqv{bDp)hE3_(5l=rib+!%H3zB
zJ;ECBA^@bG(<iaj>?~fEf<i_N8|vxvb=>>5v{Zr+YpgR1YkK)iJ?umJhYtboQbvS!
z2<w}=>kd8rM!P%X+Cbo|WeRX^KP=VyBfCHnVCb*MtyHRzmDP|Z^*8^rU&!SS^Fk1<
zlC1tYS3l^M;$h7tX#>%nEF|p0_Dl7OkL~aCYiWRLUYek4Ty(8o{;vH-VXy`UOwwL2
zd{STgo-G3}R)Ui2*m)>&no3%(N4;umN`2MXx9$0r>$c`GUGa{s7~=x7Ftcnx1=Ow2
z=mG9kuLzSM%k3&15_j;k`e7<q(_DFvrpTuWWqnfrz{;@$g}@KXwE>y|WR6>Ow?(#i
z0#UN4qF4ul0n*jDJM_@IY(*|K2KG%_kO4!DoulX7X)8eD68bY8Z%Jq!tj5JR>49=i
z<w+Nxd_rikmao>m=!m7AgwuyCvmkw5x<a49eCcnTzd0Di8j>*Cwug24C;VKZ08ls!
z3>zmXQ+@NO_S`@N;$$&s;H4$jrS1>tzdd6MZJ?-}Y4Rtk3+~g8LZbLBQZw65F?eO_
z=6m&$mneppM>cV31SafMHE)sr$nB;mL_CMhl|xi;rW&?H4}RADs3oOQ;sHN2d9gmj
ztr^)Mdj*@6u6ixj=eabff*6({_7RtwLb_GACv<mryTC1Jb9YNTY<DcTbeSukhbrHm
zhaAjs-#)5GKF?CZd%)<oNXoKy6mrr(<6gQ@@112=6=(MS=LIG3<VSTnM~ov?z%_6Q
zBxEX0H9w(`huq2n$}aGvg17pR9{!{)%i~>QQ3XS>b*XL;`e#QJst3@4mxL<z>dd8j
z_)}Dg*76iA#=`m5kt2Y;=3Zr}l@IHnTtk5-fefM)%vLAeqffrg{cd#Qps|x5(2H4d
zW<3E$ixVxL2Mbr|U9x-<6NXBZ=M@zYly}Z;`s7wS*U^IEK@7d+nrTIzIrZU_`tPh1
z=S$8&=ei7e6drhiZ^IpT!fL_k$ddE#@374zX?-*M#elO(q@o^KqO0AV%EdFt-4Z;Y
zggEEAH<6@C&2G7*V=Y;x2`iQX6alqRgWiG*%1#Vgt^IC4JmD^Vfwf+-T8D&^FkF8#
zCr6?zK%W5%ic!A!i2m=Jwvt;RU)Wy@rl7j+5lztPAl{rw0HL~i0DOj%)f<cTe4*ij
zLf0yaaVTH9YP(vSt7GpG2@nOa+;|Li;LKfa{*`Kr!HnZV5*mV34>063Q(8bdtOZIa
zRMk9(LTB<$Ga1#C6WE911(TD|R<<ieojlKUzlIu7$xLk^%1opWlvd|XG+!p#a@;uN
z@X!Fll%jf6m~rt`Ae>9s=Jdc+Y_&OPiq2~_N1PIS4@b@#@(>SLi-5^aus=qMs*RAW
zg$a<INL_icc{k5i*no{{+lz#eelp9{q}d9dG8-|%ae)2-FqNX7zS4Ygx~;_Ln>nC#
z^7HjfsKJ_9CLy1y90>qw;4=~huLk(dXJwQMc2jUlTVN^)U(sc&y4y_C<&;C9m@=6G
z$jK<LDQKQ4>W(tAH47stun8;{Qy1b$YB20s*(zzG=>cwnFi6-ur%Z`rLEx&5ec;|d
zwBT5X`~lIB%OiQsB@FfET-w0N@2f=?a?uwprv72SYC}jCXNt?ln}oC|SXVF1G>1sA
zKPn*t@>x0os|1w`^}-9I%r{rsst)if0WEvE)cic@fO3g|K6SL|abP(x(yDu@S$7V<
zmk2K3mlm1`2L|?R!np>iQ@)KITaX6O<+Cx%2APp(+2W#*;3P{pCP-naIe1FXE;Hr#
z+6jKt)E?#oyaoK{mp|({5;TV$M6#dn$MKVp%5BeR@EEQ02u6Cr5>H9W;yJsf#oTig
zc72>m@cH)R_kr6dv<qH4Ssiu0nbg}>7V}OEwM!DPxV%R5biUh$cwT}y$=*3#WR4`!
z7~eY`xTk23?w1fzAb{cNrum32<ta%()2QhYbDisVQnr6&P&ai}i#gIAS-Gzo*JSBE
zS@oG=ZaBpDQXY&n;%h*;c&~gi&D5p1<qXFc^>-2TcCT6H{;k%tWI}6GTPx-<@hah5
z4!_#0aR(%cuN%ZeCKYKoM=hCRB6(d#%C~v-Dx1vZ;%WoWR39LLJ&#yAVr#PMR%0IB
zXFow)Z*waPm1Z4hw)o7OJr3-MSNP{<^UHBv%4IWn<6F$N?vy96uuUXAkRb`dnjJPn
zoda43o>WDPnbN*}?Tan;mYZA5i>}K~`=TZ%Az7%NEoOAr@)X>Kvenr$O#h<~=wHB_
zrnQ){UHeZ-5@)ziBJG=lv(QvwD%0>rN>N`;Fb{Q|v21d-x-McW58Pz&s6M~N6nE_(
zCl%(^)M6e#GJZ8Auo%jXwG0Fd{&C@*I(fP`A3GRKA2}-Ebi`ZDJm}rGx!-!Qp_RJ6
z)H~dF41aWHpd_pN`p2|SqFGavg>w+zA75-XlawIDz?}yBM*wv*)IA62Nfk<WPWZu=
zj>l47In_EYh+FlKr#Peb*^1mIRKJ9hsk=^f?ms%t_E5JsZ1w5De<!Ot<2>?n^rt>R
z%DVpc6CrmkVNoBmGbd#^xre)b;6uyJjx?fX;&8n>&{_YBJ3P3}hH6x_IRa<b?Mx^4
zINLxT4LYanp_7~~N4T9t<RPi1m@Ao@?40Tj8C+<k?i%P^b(sAXE=JY%Ln1{^PjxbO
z#!iGNjP!@sOG++0W<FT!xw_glineYO#~gGBcwui-YD9te%zg=dS+<enP^}1&sZ%YE
zB>XeUNZBY7A^R$ox-gQk?i5?X;-b|=1*;BkN%(RwW!N9^-Kh+;@|}{Fga=Nh4E?Xf
zCE4G7IX&SR=?!K?yr0z@%?a-evVG-(14g!5rFJ(Z93$OxC2dz^cv&+&VWZnBH|QzC
zy@=F43DXmr2Ae({T<|@c{2m@C1bwuY5@51xtr&Sn<)tx^CQJyVlVd;j_11G%#$1XR
zxF0L5B#ATz$n!@DYS}=ZEU+?RSS1cX#RX#SdpV(xJpX9PtkVK9)XA#vF}i4lEw4am
z71JgWDk<vB?)pCuB;3T;N7VYJHZ%$TTfHhS9j&g~<H@@}PHIXb(|oGrtX%cmc2DLb
zwum3k@J&-ACZ45k-R>E)ti7;_<rz^vR=xC-XYV3g2&S7a=owMX9Vr73e)bN}9c~wS
z0Z2<_B~Erem6ta{J@&n4rQ1(2LEdbyDlQ(Y2JiIja7!oFFhEKtjvA}F@AO={JT3@{
zL>q|kiGmlYR016inV`YO2(nrh$J!?t_~i4$Z6aMAbhG!^9aekIdZATK!LtN`=Fuyi
zY**>q$*6<&oJD(Lma`>^+b_F{X&0RrH^oKr!XzM>&PU$tJRj!~kqtGNRlo>x(uP&~
ziZ5c<;dh|as66ktFXH4XXaa3*V#2P(U(@QCC_D2q{lq|`Pl+9_#lb^xu!#91RXi^6
z4|)&#rQeB2MFs6BVOT=hsBE)uVC-r-FZL0Sg-Qm=2^I7&rq>=V{-PXG>#I3tA}99I
zf0(8$>wpScd>!05uBSZgvqqV1wK3unECC)3uFV?h5i8^2PWm|S|ClqMB9p^H=iTEy
z*3a0@&n>1~WQf6EoBKv!x`il4Pzs4RKR^gLnW@NciI-mLDIF!0O;XuZp<Ng~f;Vx@
zH723Zj;?};m`1;<m;kwYYK%FqDn^*fN#vqy_D}aosJSp=pZUz;v6kHw)=m&0_|e`e
z=6bIcoZxe1gQBvNsB$iNQm<be+u3mf7zKjXTqo+%QtR3pcA@Y`l(5!2CYUq(#th;B
zSzVY<aw}RaC{#&=vaHlYx5xH?g{%-A1H3<s16aNfe`J}eLhPvcWLid)AXs%y(9|SZ
z9Y4f`+=F7W1<zdkK34i2u8pYwD^SW?8#Ss(F<oq(;9R&MS|bKl(7wd%8Sy!dVh2N|
zvnPlHb-2-Xg~Fw_+QChz2h0^Ft7@15@guBTslfr2!U{6`Vl6-@ki?Z!p4JP>;>44?
zSPpZ&Pl#S%foJEJ9zS=zxB-hf>J}1C`cx5mn_q4*gM0S#Gh>(&ST9xkjqy+JXJ16u
zOMo{KMGKmikMyqFy`?2MEOWpyPK=TD-2H(0&cq1kHvt13zF6Y;f*=$VFo&;+EiGd@
z{$L%R4fU#gG`~M)w0X<K^uZE`Qck?F*?CDqG`E*tcvM0kc;WJvkYu05FGJmXs6OX#
zOVmcfEdtspSmaxJ;akZsQ@K*SYitGx4C(6d1fA4KF-l7kn+4m5$q+BXp<BK04N4Gi
zL2^+Fvnt4_@(_};xwjemH|rP(*B@$db*~`H^M;S>XL#TG(7qtj*bpGFlHss=-+G7s
z9xuhkQ*oveJtrD$QKbI#t@o~N@iP3eI6#S?IW6E*XmRmD2|f9I8O}^febisyRl@JE
znEBdj#O(;hHg9i??r|xDPs5NFLG{R#kUX|){eeuWb7{JG(l2OZQ8>Y*2&ffT8XLJW
zB0=9fE<s$N#QDtingX9itY}a4H;>`zM%DP%rVyEz@Y%`1(<@m$5NkN5QbR;kTM*e6
z_b~AsgZ$vtG<SvdY9gSsA>b*A)Io2lC%nmn82wRqGvneonKPNtYH-3qS1MtguXfXi
z{uJMnO8^}vhz!qc)h|~sDzRlnK6w8sUb15b=%yjIXgnUvP2$db%E|hJd|Ol&styvD
z+`{kP8>}xK7QYSxuhccGz03cbuukk4>WNdmU$6E``ABvZw|h<!N{I~h{?p!XHzbHd
za#;Xvmkk%iv?VdV*Pm-LA19Es!&f;479Gv+G;{kyUCL8oGt*T|z40!y<#_wzs7*J3
z;i%81nVrkyS7Fi|Q`NwW>M2ED2f3HzXhbVd)CoxmQi+zD6ik$(oJ~<b`gO_RgjF00
zo*A(<@SNlFCNCH94&AyZtYW81{OBGdN$4tI<G^*GzimVG33I8GITudSk?Mri5GC73
zW4m9uq&?!NS=XD(9!~qq>KrIS$sBVn)y%h$AP%Gl@P*i~zOkmfI9Xa@y=ujGRUEgJ
z`tlmHebJvgOClTtt%V!t!*@G%Ob>;@fEz8GEruDj>n3xk+s9~>CSZl)!-WJXHzt3B
z8TV$oe6_tzr(gehc5KG~Gdo<1{{L!VBiyxthfv~kFfNq18mghxq_6dDx%z*sS*jW|
z*JLgI^C~b4UcR*UUjKSS{^ytuTtf+%`~PMKBh*pdd6QU6@vU>WN;pfg$^|xy$q@Wk
z4*a^qbkAVSD4-WHaFO0OX=(%wIr5~C*H8YYf1YA1QM-m|C3+<|kfx(`U8OD06_VbT
zRP9fy+=8bf^}_uR>Z{*9*R2;~MYpIMrB6=Q!V~nl)wV7_P>GUQ%4NGZ_0q3p*zz&9
zPw9%{%lha!=h$LYMtD^E@F|okUby%A>en0Gub{?}OcbIMc;Z-nRh`>^giMK6H_EMt
z)##~T@!5*J5XNcIQDR1+#f*M>Rh6wkpNR4dT^L#)W}l!_+>v66#SvBVr-Ccb{mk#B
zZwk0A#E#NLHbzl${HYd?Y#vgIW#T{fY+p<aY^W8*MMKy;7UV;B2P!0aU)40qWxSL}
z7r6lCWJI(cwjVwo9d2$oBKiosRTmwp%iXQQBp2d>QZB}|#m8&oE|Qo(Lbi7}Wt9-4
zr<L0&jKqv<H;!K)bi7_a)s~Ks>ks-UxCY0yZx|`mc*5O*bg2M)gJ5GM7FuwBHuljc
z<=b8)1#t-NcT-X&{IjiR<942)FCS*>D{41`-OWhd?TjvJ9u9%FGZ6+y9@c)A^5BzD
zRPqfrt$QEcJID5cUrY4UOlwSx&Z)4)Y%+kYwMm>Y`7fjJHE|wjF0cT>*!GE*xH}<P
zN8azH4;>#JH~WctJE=Nk4^}$+0b6lvi>)0O4o7NmW|6~?s+?Z>t8`m#WrU<HWZ>ka
z+B@OfP6T{d_DGn=rGL{`47I;xryKA@Aj*$L?;ERQhuC7y8D>)%qPzcb?s>&vMh;VZ
zF1Qf@du*O;e_j%@OA7Zbhnq;UQF%FNFY)r={U#=mAE#97&*Ed{dgsBU$T#WS-RS6I
zvqdr!(GvLj>Pw1k&-rq2#mp$dfLXoU4;(^wHKxX-#=w?lyDq}^)qvFEUbu2{$qG*y
zb|>FX5Lnssdh11H(J>2^q35pj#a+6_Eq<G{wE_FSOEJ>e>fi}_XI6B52tStoX^)qR
z%Id2>br)352BK4RB5V8Vhez2Kd0T4jwzK<<VwRODG1J?6>et8E9~8>Lt=uf@BA1c5
zMz4!IB6OkXz?)?=VL{-#APszYb*!#0bU%Q9zg;O&sazMMmAjMBU_8~(lDJ1s2K#Go
zJ=3kUU6U$UWWi2LAsfg>K~nJ|b(enbiS0B?N|`&(;{-vndM-hU5(2P?#BtmuXWZ;4
z(H6fR_uNQUb`$_B!ZD)&{wT0XdnL0a*9oD6J^t(?y)Z9UD&2Wk2Z+1F&5x@F^3Mj{
zm~9UcIP*|CmkzR8kfO$ryA0wS5nV$FSM)%P*n$Q^O4&t73j(K1a7<8Q=kP)jVJ!*Q
zEPEbAcgnkRlKXDhyDqk7a>?-Ej5|)>lV=+jwu)winey|*qxAIi+|SE-wWNVjQ5;<W
zcP>Jl?X8jx<`zc>H_oLcY+J8>`o;p=&)7f&SiP`IPvqxpK>K+>-jfe^UHLJV8Q*`W
zAmn`zp#d|&N`ec3T*2kt^q@freK1c=^3_kF7g&ER%E@Zh@%p50aPLSokT3}efYaw8
z-0B_N!xl?yij5)=DdCpB34LJka2*PGTwy0gR>t#(S0o^0ZtP?Pz14vPz_>r!=Uw?@
zd>?qsiYBa#d=geJSyg@Qb)I4@f`&rIJ{CS(qzjToS1fmn!vV@+!>HiQ^4$%O+p)ld
zHK6_w3DBMi;C?*E*(Rg$JwT&D1Lg$s(#?-iEKw6}!4SD01*zkf&%CwBZj=h&CN@mu
zG~9Jx^A0%J_Ac^+4^3L7L?Mf_75q~58{P%K#fu^fD3KbVNwDIGV7sxqUU)C!4d!sj
zy39;gnVEIF-1Y^lg4SK+E1>;V>+h~ahB!$kXDKEGC|w=>Pw$--bOPn9=N1rxMnIBf
zcm`Z#i=ogWT_8RoYsm+WJx*`r1Bf-HA^6)s&<ba8L&@s?x4pe5^6eCXqrgdDyt0$k
z5#M-k&$A7Raq$kdxWAXL9Qmd<-N#qx%HL)Yl;oDZb(HSji{C@4!x1*Exe4}PxUFA3
zx_DoFX`xtLp(^4UTQrUvb?H*`us^1B1kh}F5l{wUYk1f+SH%><c#apeBT4Ea`+nOJ
zr=cW4ii<FA<4}#Hk}SI0fs36HQbAmIYs*H$q=Fm8_Rmg+cRQa|*(SyGB(e0#px)Be
zB4=Q-Th4-F=)`@U-ckjI=g51UVW|n1;5q>P6Il?)a(vr3)g%a7Ykv48{tJeXi@PJj
z4Qg{#4;&iy`rzZt{YQCLBmQIgYUB07!$IysLQnlmNUuicG}_k&HN{y0fh2{{b^YIB
zTaHqqhTtqBXGzHem;6CLJ*e=27V`O5dg$~L-6?#4d@j-OfiB7+An^C2qWrbm4{Jo4
z+I+85a+qfs+J@0YZsW)&WDx<l(l?zsi(9C*miX>6eIkT;l5c}|Q&7`*-7%47sh%<B
z`c+^Ipp8I{9i{<&U9iB}eGK3PtP#Cn-4%1>>g%1-L7e~*P(1F37ZA5BPBo_j8=|oD
zzh35i)!Y7937GX@kQDd?4%OC(oQ4?x`a;JUV7~!+K%=XY;+4-(hhOSspM>oQqjOtT
zo1ZvUc8*!#dVHtpyZnF}3{lkFdZ&5rp#y4YgZARGJ59W_0sB#Gd7`CE!k1lrpJ<d1
z`;I6tiTM_70Zw@MHmY>5*?cYsq&>g`tmD+^4h0z=T6>>|sJ4(ib<#-eg1v`Z&;Y7&
z{e&A5ykZU_tM+QHP9Kei7_S$6Ffb|O?#Ic&D{z!vK9GTlow42i2q1>q95GW|!%#8F
z-Q~SVOA_wv>?*ThpfyMp_#scIrUh)rTGiJ6!`z=`t44%zlb-I82tpvMBoc+z!cu)+
zX6nyy%~^24ZGKF9?#X!3XI>o~FSr0;I9Jz7zV#8~uo_RyH@8oUDTR?6?Sqn(7Bgh@
zn^*k9mgPq(8JdmHFBwMyJ)bE(oA`W`MU)ays`5sY-|95;S!+z`I6TF1v#Z3uRI3V$
zQq_9pRQ=Mgv`jp?T5<6Ts|hK^s<hlp2*+H4&3F`^QN*|cE6$PG`Gr9(CV}(C(*xC5
zE1~afV6r-8iP<qJUX;J+G{^?$0yVJXlMi(sPwgC_BL^fJptFBdaYaf0i)#mV%l=R^
z@q8W+)5RL5;PsrTo(VfU55~DUTa9jQcWq9=Rho#^2IsCG@gml`FFlIa(D#;EL+q;e
zMP}e<B8<Y`Q+3@NaL2f(Agy5*69+?{lD{SE<KMI8C1^bHg~2C)S|mAfKt%bKtnYXq
zpaT@Ep{6#g{>;kYO5hjxtT}hPjX^|xj&_L<z|1rWhh4T$*PZM}w+17Gg2@55RT-+^
zuX@%gwraFrxK$LzQY!(gtWWljy0*Wqo#X@XhF3D$Fjc+$Gl{xvSYdJNRM>>H^lT3l
zdwWlF!xTG)a-`EPfwXDrhTVELagZpoiX$Ka(JC_sM|P}_-{}%<D*%-WHQ5nRgOaIW
zm+p3q9YIk`sI8g}umev~C;h5d4z?9GmKS3IH3Tn`_VGvk?_Tj=aBe60NEi#O01;yV
zsd2rlU(vJHdH!65BG|234Z-707D=24C-nGi)SI_Dw~qDN*h;pN&!pwZ$mSkv&Nw4J
z$O*uy87T%v33@4Sdt+7HYBaUjlF&#Y#PC05wwjGQ%uB;lR5{i)0j|M1vhgxKa8cZ9
ze3h`wR+yHVK-h>yM%>_B6dOY1#8LI=L!84Cy`yrufOyr)lOt}zYS{6*W@n7`9U-fR
zIHt1$ua7qurgSkb!0x~yxIuCMW`W4)iNiuG9J5+q;eF}HL{Tl~p?lzsKvxLsqEbWV
z$c3QO5PXAzQigEnQ_h2c%uq5sxJh`$9JO}2^ZDjj8_r<;`7l07*uk}zB)0rB{vOU9
z9_M)L@QlDOeb{7<7={fDMpRI6nsC8H=4JJ|&(-~|iaUS}5DrE^=v0qP5G8*u)>2f9
zYUcaq!&CbCv5Xf=I_@escC^zwpEXCFU`z8QE*0RH?_V?nPwpqt+^!CIw7(wRt(<A7
z_X#_+$34?-5Vqe_ghtzy!?JC>_s_fZ+5~$Vi$FL70W4f8ULWpJjoGSGG_zwPVYpcJ
zdU0^fP;XV5S{-{Jfg>rHOW^Xv?+4I%Rz&3$@R*+Tu<4!zqlA}22*l|?HRgkg(L5h{
zMJDx<n9`ByJQA%uD`HiyQ{`fU${1sgZU7QRER4A5VAWCixoIly6H|2vUBN&@NvcB4
zssx+LxI4_&BO%Z>AcDL>4f5SA_24oSNO6mqwl&G+70~h#lS?s{kD@@Z5sixcJ{Ol9
ze~J0R8&g_>m8{l3#kEP5XQ_tU&7o%=Se&EoTWC%Nv_-JWf~}}P$n;!B)9s07%*Xvo
z&q`AyAApWvSZS0mOc<Y{j=I2Xabg6bW&!~i78R!8>}>VS40DIJMmPvbgH7*SF#(?I
zkh2V`I)Q~Ds)To>m8IdRVVy&e6w*=(60Rj67*df<rtH!25*eK$Qi>nnxN4kmInf@L
z=uVIMZ!NY0m{kyapl##;5;Iue7_%3=1m6D&cA&~Wq2-u0TksD^r70@!2aYqd#LNJ_
z_qQSaN}LRLeo30yy@X<MGLrBa`ysN^B$$!_#SoVe5{OHHAtT)Om%5w!VT_NbA4LXG
z4|W&?Ly|Y8pBefe+gUMw1yC5<TZ(!v*6f(NzuXR-)HpKm!HMRlbK7eK>46|A#)~HQ
zeUJI!JX<p<7_s&exLFT`>AM&cY_%0pOh8&#Tj2Is10mbads!Z-4AF!O*!^OC{`7dc
ztHd$1gh0m<mRJ=&;-s8s+3ynOhS{H7a3IjACm(e_nz6s!E#~K;<<7QNTU;J!luo!m
zWH?>oJXf**$I(tW^fx`~{5IW|;~(B2fGBj1EI>JSrp|maV2?Q2wg>;pN#HUF+92t5
zQlsTvqrsSeM>JSR)EDpjUln5p{i|XQS$m9_@E^hYJxHS&9^RkHyG-vUtfL*p=^luE
zdojlgv6i<(NO!75s0b7}+lN_uYMxIZ8h9o=I5Z9^aQ-2ov?#;_^;{m2cQfUIZvDZ;
zPP4z~+TwqSPYYh;9+u&{JZI|++axz^L(tN!9oN6xd>XMqZov0#!kr_N*tb+wH`sAr
zw*7PpUj>;XYk&BvBqzW#0&gF<Lb7H`c<ot1=l4_Gugg&*2ZmVZV2wuJV?XgK89XFR
z&xV7QCp#Hy<K%$_ln@gtc6h9o9NJ^2I1l~qkqRhGosF2rSPZ2mPAzp3pg!ChUv&iQ
zAH@*JH5WNS-Cpd%j!=`rSTCLJ#N1_T%8}^XtV4-vxybQ>Ge$3BdG$A1yf^7foIevU
za8?ohFP{j&YKbV0hJ_@P>i&zJ<C+ij8^G<95RilVPrTBzn(!Hrw0Yslx+-~xi%xX%
z8wN^oxp<@63e2y`Tw|wuVBl(wa)l4sT~zX5I&mjA{bAzjPX1FxYP3Rxq*r;+h)R<C
z@fy-y7Lt=q{DEqN*b<KE^UeYUr_O}{AU^NRA7~2^+Htt91}%=CLt+9iI`hc#!{aqv
z<g-f18HsY$g=?LIkFX6YU>wCdEL!@|`%c~XPBI=Ts@r8eMph&)O#D(TIqFeojysC6
z!Xm@)B&*Zjbehxbr^@$+lctC|KNY>1TJxDR=T{3>2Y-b5QGA9fUU6RTWq&)S36v;2
z!6Qw!bHq}W_^z{|o2?uxeSia{{{AoLkad<9A%LX;bVy(y(U{%gd|7UPnAchvj)=yF
zYk$u3&YTmXi@{AJ9#ibS!~!jKR+YHjwoXBdO3yH&;WwR^-m#-AK@Dm@hjjL)bItqq
zbA|GF3HW_Fw7%&@=bO{wgkvkN4b&rn!K?{H-j?6ZgGt`i@Pg$bSOn-P$_o--#Otgp
zy`6{w+!Et^;y2SE!S!5iN$Ujau?KGo=O=SZn_J4Dn*a%xb)^Lh(%u4tf4ziPC&P6m
zt83E}@4ucfOi*0*G)=WZ@Bk9YExqMe^OQ@4Iz^+hzZd;s_O@_OaXIf4%}ywC=V<mK
zj3o$bHrSqR^}q?9GsT&Fs*N7U`i1{If$KPhdGKsLF3CCn0z2wlj16w!D>4y)lpT}o
zIvwOCx2`lFGoUYA#qB67L_>DI84-%{Gs+229Ju&qHJoL6_hB=uTR%TU03c#?f^dHi
z-fv<wMdF|A6K!+@_Ob>a;-$L%d~<URULq`s6;V|+VGM8IZsuRwPaysHTmW1MVck)`
zbF5UJp7L<4RE-TFo+H+K^69EYM0*4Q?oaD^dh>nu7kTowkne`J)Fi9(&(-%n;I_q6
z7@CfXj$UE7rse1t7up)q@S-md20+2_pgD-(cqPBVNPKjGe&F_K>neF@UoX)9x7-3)
z0tO+U;fz0Zww}DemY1W+>KHwT?YZIlnMH0@6<!++HCP^K#JoN@OV4$CmwW)Q%u)>8
z)oAT?2Zr92r-MwswkAzYFV{(PyNVEuvonlJ7l;hBwOQ)pZRW!)?`jTunZ@)LWjLGS
zpKHFY)KXjuv<m^sIJlq!O;*p{X+AB~UvO#)8vKo6AbxN!5VSe$Ye)qtpX(pq@ra+<
zBvi9_{{ae1o~)r}OHS;Gkh`%2^N6`iCG;{IifoJnFDCx>cvSFTWMveppFF9Lbweq}
zNC=k=w*j~s1NbsMn?MdOD~efIjR<ZFQ0l_R^s4m~6B#IBUpRjXE^aoVrmF67P4bgM
zuKoB>pso%jCVmr~!>eC*c3hDl(a+J#Xt~3V%NV`Xu$x^jHQC}t&B$d-SG#{S&+#O4
z49cf&3<3a3Zel!OxYL^x65lPgq1DmO!5&E8f7AbjJ%C8ojy>?FI;ecK4xYXpmjRG~
z)K0hzuLQ;aFpW@k@Qf~Tu0Auqit{VdVhz6Gp-Mp-BP`-d-95&w@z;<QTS`+^%hmdb
zI9pn@9%vi9PqQTNW8=lTSFA1msJUfNQ{AqHRtwdRCi-$c)on0-3-^n}UBr@H+uk)g
zwc1_MMW$MGf!@|HzKT6BUvG1l_=4~nI6SASrfW2K4pmU|@;1f-8WI8cYW5X+=&blE
zXe;bh2)!*hg~U5NtV8?as#w25;vo<xfvD!IXzT~g*Ebx`2VivDwt(iqT(KyH(Xb=T
zo^YXN3#!=n^7Y}$P|f-<6P8!~r91V!(Y7KNXi?zqvm{Pz&L~?nc0E_Hem#$h<c0qD
zUOjWNEzcJmt1P(}C*7uF$F%p04z8hjeT}%?&{3w^aF4#U#8wt!t3t<vnV7B^`y&hW
zi1D_jczuv882mh4opF!O9cc@5u_#LaDeAo2^{TUMS$-2;$PWqHy-&{{ZVS6iCQaRQ
zr;d}+umtO6N9BU{xkArBjb+5tv8OV;r*03?x2e$J+pg8m47I?ud7<jPgx@inyk`;z
zJRJ8j%QCt(X%k9CdCJtymkc;+6i+YqUmo;2vFk9hYoAWM@LjtRlhB?vugB;t$e28%
zm)@ec9m*FuprMxaO*q44XCu%pyg^s}ZX1;C3Udx|RYey@7HZY=HbK3T2Kh}WGGQGE
zjFe|Qc&i|uNd-rs-Zy2BM9t6{a8Ebr8Gr2mx?TACK<#?a%CboXr@{;L_@ix)c{qp3
zMZ^$Lf2Xc+$AxQHWyBsFtUfAkq26~?^v8AzWJO(|%Z{)`GC9jn(nXFse4+03oBb>!
zWfFeDQ1DG9mJ+Wp_Ud1~Z6j-mLh~+@`337$4n*vPTlL+C*jhQbE$gM2C0}s2e#re&
zd0QaZvc85H2q-_R1ssE*sgCwfuLM`oGoJ7mIH!`r9QD{t^GsgMAdbRtRR564H2K2w
zv-J@xW0$dR#FD_r08=W)(Rb#Vw>`L#fr=uAE~Js{ER;i_?X;Qf@-BX7gg4O75h3&6
z<&@)V84gu}V2Uh4Pbuo90&@&VsO%+9m`#)?OM^`HQG;144bp&G#vR96_%ewZNl~7g
z%o{nj#aLY60b5OGOc1MU+ROzvTh+C+5Z>FuyiT29#`d(u=zn?QL{lzdEMTo(YhFFx
zexd{?!g`UenFaY7)VFiZ1*2&rwlm_>;I6D{{hEC9$*s04LG}`@y7*B3t<ltvvEAeY
z%UT=45W&~!2}elv@>QmK9F-*M_19R4&x{;EAh5xaq51nbyRdD%Z$4bk!DDBmSVxv6
zVV0RFW(R`x1Mo7;Mj~m*T^u$qNEk|2b3_(YxsTVxonu>c*a<`=Nu6$5Bv1sooK+Ec
zI-u^X%_lu2NhI;pyk<n19pe72Au@<D%*->dN@xqu@N}Hr+9Z%ViC|9kQM$S6O<D+4
zV;xTM(`A9kV5jaZGfyq;G6sTD7{jU-vsOmk*;GR~40Q3xyUfd&U5L&?`-79GJmyKF
z%Kq0tbH_~E)tKf8M2bBVKM-HDx#oBK`#f-StI+c!M6xuTi&J`&6qpuiC|xlzA>F5^
zfv~_nCzxj^GF%=}OkLm-f_=bV=VSu7k*w1E=A3KnhsK5~F~mmWv3Rxb37cV@5B8vx
zm20nnE7{s=)`;na;{gN0Rb~OQ?UH>x*c>(Au1x!BmcXwpwWPtE_OKmWK9;IlYez~F
zs9<p&MMH$~1p@o~3Fhv<^D8W>_MB#6(P4zA-)wrn!<>1_*uP3rxBx~6FO)<Op1L&0
zOp=?}aeuJ&F!(J&lP+6<63RC{6qXDld?gct8}yjpYTOp0*+OT6UYF|-Q)h}Fu;qX-
zw91{PLTuy<n@lA>rc8GdB9(QMXTJr${>d}VnRnBKg!CAa#R!$2Ww+_FLFVVo14c#q
zB=sOkt-2l%qNq?nubOVI;*df>;2yEju%Iaz?6TCB5oYc#D$><h7LFaqi!{q##(zvS
z!)~zO7VltQNe?DVF?OXhHk53)WSE`Fb_kegS>~oXPbuKI)48MkNaoD(`*5nc`wo88
zi7d&Qqk79TZ?MIkmNg}bBwi}qXm%}*?}4x|HUxwL_ttfnzV1yO*lxYov3U!`M8MBH
z01ius9?w~>Z%L$*^iMU|HEpCk=A3Mm@QMD<Ix1j6P~<jyNF@e>w3wj5M^T%X>92mG
z79otdPn)>X#yIj|?0&<3D|ZF~#RP;iun(8$7nAKbki7T^fQ8XS+Twk-_d~t)M{31O
z8=J1=?j*7n;D0sccKx60ZM$+%^P4?jjZiN;Dc+2ccQoGAJvj4YIjf$Lq{8usJ@PkF
z0sOdtLoEHk{f#JaZPHUL5FEh5kM&bKY{$95W|288i=CDXsT%sO{`)4|YY79DWfIsN
zwd*xamTQ?WE*e1QNCQuv-=?U5OTi+b-n?Jm{fTWE9j!mm>={|_DUH+y>xjF?MGY)q
zb^hmi-(9vR@=8b$F?>31+za%suPKF-@q<Puw(Xp3B!^#a*Oy-1sZ*QOm-9rwxssc(
z1{pxWY}Af_>d}|;LuShQiNleNsh(g1Z!u&fOGI4U`}Pw^oWPHWR~}yxFq*mZ^yG)B
zk~pnsa(8@PF@D^mcm3OTS`?bX?_EF%NjLJ-+q&OJ)Sxhz7&_|*clHN5Zv|yw>5%XZ
ziz7lp#-sY4q4swm?pAZz(X3-T#!KO2-SbY{HCF?HRL++@e5q+XC0D+!pO-Vi@$%O<
z34#j1$SG?3UGC}Pt02MJ%@GuZ%J+1?MYb=Hu`vHe5bW{eH*e{2AKT*L_}a{HdzYM~
zcfYDv?xX^Cf^9+NM*le?c#WB>fk$(LKV-hF4{;tql|QXVl-qIyEUXFQq$a~Wbd`Q(
z9Odx%epcLqy$P^Gx=OxRzxysVxSO*BZosl^8VWwLNfKVhwn>tde}ABldclT8kYFD9
zyGi10I8UTTQ%Ag_%fs|xw^V=>+!+YSOv!8R^|Pk@HqmqlxE;^p8huua9q0st^Vwr|
zfoqVvOrLj#9gU2?0sI%qLCYB<XCF~IU+B{p+wY8sfHA`N!H!LndwIwYw%9$-(c_92
zA&H&d*V}|RNc4BL2Y`SkiQN~^yt|*)58YrtmCFK(*bKdU>V3i9wKG9wgT5C_prA|7
zdRss8v@PcpfxE#GiB3{tGQVA`@0S7aHUhm#HW1O-r@y6ZmQV;;!ciwmuyDCZRlmHf
z$NpkF8!O(;Q4)i?5teYRKHsex0gl7|l_Ziw^>|G;xU+=Ju{dCqqyp9|l%w`Yh^fVJ
zKqr9*2})dy7%%I;H`}j_l8uzJCdpgR`cMzs9QOqVwUQQ~h_T^8W_lcN7JC!KY+H<?
zAkZQXS%MOaN`OV-FgLFCe1Q~*+6I*X2Msahsburg^aLqI`6GcP;=@HeEDgRIXMVVh
zs*Z0U?nJ-AehnA58NfX81|u6tjM;KHV4nC_qdl(UT%m_1FegPFeXx0Ca_1ViB4>XE
zI^{6BsAh3pgE-0hUG%js#vOr;F9t(byz9hs2sHZM=G;H%D_YLPDQ7DVD0hF)L)K9a
zDd(jV*oIWK_c$}@>yBRBU$g%mzux~<5IkU^PBhQ_!0#ohskNmw0L@2hw)&rX@En%2
zV|Cy_+E=Hekh|#?PLU%NXla%V981sg6ujb@!nzgVD1w#Q$9Ah(<2@tZp;R0N@zs^s
zuGxN1<r}uB5Eniq6ohxRw9510o3;?o5x}qc-Ofp#SEUG#B&?ML!k*z-^AZ2%Y4+87
z#$dtzvfeZ66H3Ic9Q2ge64^;e>!Pzf55D0Ul}Fs6_?5Qe^(cNbSMAl^BC%3jUe%fe
zTW1qV3&5uMRj&C_pESkR=0{q>(ni$a`+m^tYHTS{qvGfy<vauXcIem}Z21UO#c2F6
z;JRP=&oBCrW?RGVun73GqDx3t^LOhXX4>+?1_@TS4TLPtImrCe?^cMuAICOsB#y3G
zV($2Hmp=PSTL}rr*Im9Z40>><zTy_jk(LSBWtIV8?J{zN+rKr%tX+=_39&H(kRTl~
zy|@j!>e|>*`D_=EG3Y=D%F7n|px@MwP{Gg3;Qd;yw{tyNTbWOW@YYi|=((e9L*!GT
z&Z1z;1m7Qv^j3Y+JlmA)<wB<T6g=a`U-jm;*ioDVd4=7d%L)Vc-FLbBC6*=Wt0eJ~
z7q}|*)Hc1X%GMO%>1r21Vhp*M7i`oQOtUq-Y*VUg|Jy7NlPdZ|zc|hgitHuTwe*9N
zN0#LL==p&zxZ5^pcN^ZK)M+2;7*>(V!_zg{%;C&{wZGzH{igft0(jE4ElAO#-udhu
zy}QX>EP;OtA}srOuq2h8kTCE{7~0L7bn+q`lm#*aH}eo)4Fa@*u2h|Ux86}i6>qp~
zW`kc`q;ptL9I|)ozR%$EjG!dm#z{!^fOa+D&fSy*;FmZ+!yE$LPng4D=F=tir$xN#
zU_ps<G#GU(W!vxi*j2U)pR6Xd>L?AUlGX3^lTMmvtE@&{T#lfWR9w4Hf4qVU6gGrX
zV$8;Ckm9{}=+QUZV$wx%CBR3dMYhcF*7bV$a_hn`(+F%~!$iKu8A6nw(=X8{p28%t
zb`S8$(FFF+^-HfJI2g+SSq9{kJaMD`248K~DHk0Y44h>1NLC--r3bQw_;-UiQojYO
zz3cpK6Fd(6L;oLL=N(>UwZ!XBv5Q?mQ6ZU+Dn>~M6)}WvC{lu;fSV*FfizQqU_((+
ztVgk6SM*pZV#D5!1$*z<P%)rl@8!O~S$hZc-up+MXJ@T%^;y$rR;N9vlzSBURoFwC
zk<kg?{#6!T=F^?{1sTCuHAzc)M-RSgPu)N<${>;ywgf1aLkRRni@)nTTe=TmA$3L*
zF6+Px?~pN#vpd<1TBGBX+8T$w;0T_<b<kIGnj5^Ytyw|$sZ%3@gClFoP&P>{X80bl
z(5fBc$FE6#RDzd%=#1T$!TRzatjBd;Ik>ideIwrg8Nd@hH=G)qx%+Rn#hpyU?UXg3
zEMC{3_@(#kyc21a6^#d3K~v@Ldf*#&)OJbd@M$gRGSLodN7IkBUrwbD-pr|-lfeX0
ztmE^I^vO!ux{LO)^dg7qq9$>@AON|@9(%W)FI2*#75JOr&ZN!GB%yk13#vxII-p!>
z@+v(_v!*jjLvK|Kd?(xJRpQZ|?DP>{5#mA{347ezUK-;?h2a8oA*L$>6;KEoBw;CI
z?cC9xAMLXnES5xhehBts4-)s=l=H%6Y{I?Tue$q)!=~MRu~&#YtSqmnovwU<yxRa4
zyl<7Y50ztT$thLSIG6lL!mDA?hpw{oL-inhG?Ul5kMP~jPug*pc&|J@02s56YzXAS
zQ4e7dWOnNvefgaIcaaAmkT!yEJUoJJ!8>2^0$@{dqHx8`3A8BkU-F0D6$k@}loZaa
zp8lDW&?Ym!<X78mKD(qKVX(PxDZW>1=><RAg)_VcdWNu4mFiZG)Y)I!=##w?UwAz`
z1{p%?EBoH|o9V>`kQxW;dXYMLjul67ccEK((O}==0E9U5dfH=olzRMm6HjH5qR*qw
z(sz&Nea4!wyWpLtNId};SjPivqyuJ-KkXiGT;m^!8iDiFT2T4resRf*Ucs9>3Y6h{
zw)w1`;>Xr`ad84)bP$Hpt)WPH^jBN4K8!|e6d$v7BqurtbjJ)<qtnMfj!i>A0C*cZ
z#_vArHG>gOk~!Y`^wtr5zgK+LGoh-CxVzSg&#HvH(Oj@~PsjM{yZsxmaaC1w#&puh
zfz1OhBD)eRyRdUS>p}l!bS2lCz!r3PsH1vETX%>rmlG!xfWVN9sxKN8JK`82%&xg(
zyyOwCucvw?kP214E<RD@nvFaG*!R7DPya~t8Xuq*RwuL8>UMEUix-V-s;~0Na%|V_
z6%YF=3`b^IPN0eB3&X~7AELK@wqsuNY90(A{RC*7-2+0#?Gk_al2?q;=cEY0>PQ4j
z`*{2}UhG7wo`^W&thtX=(`v+C@uPU6g0{!BlvK39`SRWq+p*2PX6HIOM*zm8u0;V^
zef_WxUuDA~w4#YP?g9h&F|)+3_t?Obym)9UqR+>o$>!c?Q-EH64Qgx>iG^Rn1jslC
zJz}+|hpt)=guq?C9D9%5M-9|mZ;&V=$Kx%Ye%uzEABu6bgAY_B1Yf^k7jmD8^1-{D
zJx8O_JL<NFEeNrC1%&BHK=tCy;<}*4;?Wclrzq?vx>-$u<6OPRqC*NX3Hx`l3;I(|
z3JNg3A~^N9Dennvu!@7dd|*=vUWq9GIHIRMu}p;-5*nkY!SR3L92!2cF~mLcbm(Xd
zQ_UF!qX|=G_+#&isAdDZd~WA(wloY}!z@AsorZu9LCW-`uZp&dZ&M5y;8x#~0P!nX
zdp^tE<5&Am%T<sKB)XzSQIph3<&pD?y{!<tzPxfL)dW3KqvxY5wu!GLXcC%~WN_+}
z%ppbyGI627y~gHs_YVpczS@EZoe<eRtL;pB6fLW5f-@-ro6Uis3HAK8+Fm~2>%u}b
z5wgv|0C6vH^{erVq1>=MYWI!}8{^-uMx^A4ofcH0BIXaQvYYC>0tE(`5}8&ZaEtD>
z4t?0j6p<EN6gUBnn9B{B#t}GLx=sA)fBiGCDTmgG%Op->Y}4Go?RBw2(w8)(QHvgz
znUg#Xc)WLkoj(b9Bz6J!5}goy8nb~VxyYU<1aYF&1yY^mhXgUwx0l&=XR@{V<Xt2r
z4;Byc6qQgEA8ZqA8AzcBkTm>cVFa667|jtiJdG~spKI*$YyD&hs}$DZjRJc8?gP7F
z5v$iMd58u;g{LBuI6JnX#h!W3t48QGHoxjJ<{Z6C{PSC0PCg{ZCn89rc8&M_bRXTL
z0SQEcptTg|NeuQER&+xkt?1vT)w2_Dy{dU^oprp)YsS_#O`i^;PqM_4N|vv;BbKof
zil`wpjW`-w6t}VeEn#qE>srDHaT%hpY-`))9xn{Zvrz%SPm$e-G;d_WB|F77w(K_l
zpa>rf1T1_*dc#QdjtaK2X&_bl<GEj*Lg<m8w)XdVF)qdl`DZw^CWtKur$wJf_A!_q
zPKr!09tn%jgL8PiG!85;d)4MeUVkKk%~FqI?qswr-?j6%_Cs)hB{~qyoza5xg(Rfj
zVxY!t5kIHk;?(7wk*M~Yr!&0%13NC%p}E7nFSwzZ!1b6d<82QO&7kT$CyPi1MgYE1
z6dWv!An@RMTUa=PXI&V(^)Y*iZKGzOglQ4)oLog@z4DSxS?d*pAtJslw4kq5|Fa`j
zvn|N(JQG|ILJDXkUiywFZ3dJL@)Ry(V?`zWq-PXkM{3&JV}E#UF|kBa(9qq!d!!0O
z6I`5#K#@zjV*Hxh+m2s&lTo0;xp1Z^ih;jBceAe{aSSw=NK1GFuMyw-c{{uLFQ%u5
z2$*${l*rz~P$U>RVrS=4Hmiyf`&o4_t|0~q63_a`;yRD-X#KYH;&I|sH6hW&yVGs)
zu3jwfa8NGuVc~o1XOFcH#Tb-zEj>znZYMk7Yo8{WPoQ57&iPFzBZhy$oc^<q-4yy8
z(1KUGBR2A{0VltAvWvb8ZFK;?U(9RczIN?yK2mXIiEtcgGD_tG#E`m~aJ?7o==CG?
zkg@#Y(HbJfb+%_E0QJQhUit;nBYVOq|4Xy`e)UmUJvnjoHPfm{vmdtz>w(1;2Fj@F
zj>am{RD~BZFiIfYezq+eO^1RhR~OKhGn*dU(R+GZ<iA<rEQMyS?O?rrp#e&i`j(Ow
z9NBbDPI%GE`=v?~RT&7ZFg*;2FS#6^g+_ZkZ&e5SO_chjmPuv`In3#5U6wh#I}xht
zj-w>#SB`UZe8nI3;7N3>S4pareTWMPgGZvpTa1)qVpfUiPt>fV0y8NU-Hx=oP%~&n
zd@g2+`_||8^b^FZN~J6DnguoCvFiG_tff}j!zX~iiu)8;VVf`P36UdLqZE?m9OXhT
zt^gd|KJmgf4Ev9JlTltJW`SpTINFmQuycpfmfTWh<vJo1LoD;mS+=^_r!}UQ<-v!+
zbzs@xn7%%Ua6ey)SIr{eNz#voyLwOSDG@2qTG&r?5s(muS#`HvKZRjfKf5`N<zs80
zvuk?T6^P%I`%2SDmH{2`tSZp~sE@B^4zg~O_ey+;#I15MYzV|+P|o?;?oRUo`9xO_
z*3)H1n50s8cS1Z6jxVv@Nk70CdeBw+U=6N&wU@0$l+<)vglR#;-aC3$rY&;$<UJN0
z<xNrQ!y-x^0EP699`0;wb!=$i{Dcy-P|##NY(MYF(da1=o<d^|ni8lzTe8AK=hy<t
z7Rj^tq><A@HJwnfu)kqld$Aomi4V9fMC5V3INN-{8wS6@uAS<;gl{%^(;>8o?In7`
zLYZ|H+w#(Z_R`_LS!0w|s|ww($jsWU;`iAg_HaUFV}0Q6nHJVKHjpj&p4h3q=~+)J
zz!Aa>{A)nHzL`<lJ*Z5OaXGW*ZZ_>;`joE)!S2dGL6$`Zd-8Id@;T6tb`Jfyix|A;
z#QZm$VQt%`j)^o5^$lr7lG5SsiI-!yc{zej9eci=2OCPqNZ3`iNd*Q>upS&zQ1<F~
zt>tOIx9rdm)E8JAC4z8cnb(IO+rSLAKc7c3W-x2$7b;3{n6Qp~3ojlKcDD=?Qr0Yo
zB!WY!x~0UXC0LLeLJ%>$Gh&uUC$Id~+6Q%$qi?b_G&w;gwov2di32&{Dl5CwfuyKA
z9w{6<5Jpr1E4r$?Ere|syOm<9P$yB*^%C1D*H1LS5B{Ene2~#v;*bIk0W<K)AKTlz
zQ~vRp@`UK{fiA|-4gRc~b-uvAA$u_a&J88W!7IDjHyS(#0U7e!=zTX}$O8VIy+3)4
z?Htik=OsL>oF3?A$y?1{XIER7<qobWr2{*dt0h&PXEVW_&bZ;espP=q7v=QZ{A%eE
z_mWpRqoif7P(v8C(wUUrdBVO!)9m_r%nOtQ%GGv(Swt5)A7n?Hp94H0Pb^n5WyD;3
zqurb9#oz7C%NYRv-)&=le1fi8D?Nf`D0V0@*T*BY2u9g4*~3k?)f_rSxvoTb66SPh
zt8THv$szXw6TsN)?W(#bNRfhhiKkIuExXzra=*Y57lX9c6ZRyf3{JN5?1*^*1uJxx
za5jfRGIO&(xBX<LC;0wob);wHR1rqSbzZ$gyd*HTNwl7*f>8+@gg2$jtnAN`o#J-z
zfKo}qF%xK`NC}$HTxL7;V<o8#W^Y<Rq@;4@HNW~6JN5?$es~0QjbBKh%EorsI~sP3
zEj-q5O%m2xTpN@`qy!c7%`LCk{B+-2!MSc6wsFeml-tB~#>|XXV;dFw9^kk4MfQ1C
z&>S_DgLJiHT*3S<_Q^!wF_<*O0M{~jLhd6jw5u*)66E0^+s!O=`kbm1{eS&zGsGgN
z<Q=ZNhe<$AE^D&cXQcMoiH)+K)28Sb>vp_%#tspStL>M*Su*ZByT)&cK=WL90$m1L
zMbVjWN7{jxcxgd1J0lcYmcsYqKOtZA`@k@ptIR|w5mRiY1RfB$Zp78+So97v<q2An
z&$w=g$RsZ5-u7szU%=62%|afK7wH0z-ODZ+>*b(B?w#<tw6!_WL%Z8y!`W4=nW7$P
z$gIw+OPhnLaL@R^zxiBA#+GC=^$bf?F~kz2M`EjlJ;x?^f<&lOZEil_F3qGWFB;{?
zBq9hSEWIi|)SL}_kh^Ex1s;j(j@u5#DTQCqYuB@E&SNyiccK>W?u^;Gk!&g~L>4|p
zkM@X9l!7Hk&gp2aG8&rYmqD#EQ0#Dc+z$N;wPSfWCMcW;WC4n|?jF~@=rycf0%{}g
zAeGHcEAoBF_4K*VWyM=><Qqj!>&cH27lnl0WKCcUo(Uk<`x$$7vcoTOA~pzxG^l*r
zr>yGTjv^N$^oT6Ptqe|yXhuM*kJypSH*C-f8lo=uhbWwFWgx00@l1Xbw*y9JKhTj1
zh8VfVbx|b!XJ-yO!`e%-&@t5k%PHl)pVA#`?XYalP)`p*W}3C*(?Iels>A5py<v|6
zh_r^<%wpBt67s$<@pT{A(*Az@MYaAQ2;`sPlI8-=uz(;XwGc+o=`P$ie(PahNVvgO
zIMfGY%M3P6AwkekM&*#V|H8T^O$gjT$J?m>>7(sS)?N$(f$_wbvypfQLq0&qTgOj}
zXC<K}sIP_`QPQDRHe^(IS}Lw7#^Pw~4|d5_zM29^J8xY<r#xpEE&z1W;bU9h0oY3M
zL#36nLTT=8U$^tlV%*jmEUGE7^s@JD(Kg8~0%eCaXH>V$4HsHug=9Fp#3vs_*KA9T
zPA8cYW8qHm^zR*Z!k$R%25A4G(}BbccP!*GhFlUhbh3_Z{Z1BRDht9j@i1~OW&41c
zj-9L@3KGzVXiyn`bN}QYsPOT?9vodO-9Y<7_$0*W+I}`cyf_JBoJdJpDn;#+!P{!+
z?K}bPdG$67<jFThieN^agKNQa_4d5rNs<Z<V!GO}H9*Tn&)RK8Y?3tUpXdR|z~XWb
zP$3JN!Qc$M#cMWXn141%VmP-X7pE>Xk`LNfzjxFf!=@xt4OV1O-EJ@0g|qzguzhub
zj}p_-<0JdB*JeB0YTWCdsF@=<00K%6eO|Nv;CfDIEH*QeU`fx&>!CpM#kbkc;%*Sh
zk;dS&P?oc|N1kHa6og`Dno}LKR<Z-IUFahTutJ$U&$il~y%2{f`3F~Aj)9<cJiYF+
zz0YIbAmIvt0ea+SiM8u&J>-uAFDjGOid}JnbZvM03eHo?L?U@p+C(XI#{Fm~h>yvP
zMoJIn=um7-?E>qDa)NUPZ{eGR=1j72bX~DMaEyN+=G4q7VW48}ep^7MqBFb9vp*hZ
z9)yr2Fwg6jaMMKVByjxvtqoi1wYqA4!^1@qf)oK0n*MnAc=Yvrgm$FGMR1&_dPk33
zZT;`}(j+tIh9^uY#J?%!WAyl&Hu6&cpa4ii0?cxK@-gq*Ny1@hVf1bp%K=aD`J|8R
zSjaBrBVd0-@0mV{i5|3mAT9235h$&}cfX_pEnH)5osfQxbdM*mvq_bk&XJeXxzRjr
z4VoA*+jf#Xr*mjX8zQ`f2LjvI`&3(eJQeWv_zyQBGGvM6-+zBA(=BEia7$%mlB<+W
z*FAO4-p}kbuNwpM<qBsyOY&nsyX)mt6VBNm;C-``J$M&|h;rCPrC}Ak-C>V4d0{xR
zO$!l;siIR)W5`=NT(hIDv_V;H2p$A2I7aG`X>@8#@q&--te+t>RM0ia>)=O8@l9CQ
zCpPpYuPCTjZpU2Qm|^)>+2nxJ$U@3{PqH&LW=w0suMEc>nl0Kf?%A82ND23fbeb#b
z(U2g+i4YuCQ;uTJo0c}8+2ht+*5F2B-sob0d0Fw7A_i*jfzwJ;of*ygH2ve(9B~a5
z&?0`YDCCEBh`xa1pb}|_^Ydg2s@Wl42{XiH8HFpmxNlvE&e?WChF=vw3MW6vh<tzk
zkG4~D*l|$4WCX}L`F4c(kL*ZNT>8RXJ588L5Fca=l(_)JEuY&?Z-#@ZZQ20M@iVM>
z!QK^?%nb@N^ykhu;kinedoQ&=b!_mz2}W{x-8JS5r`W5&GW-u$Q{_OB-~Q}bHeRxw
z9Fm!x471b-6D>W}CXMoe0thJl0Gt_!wH$%@iq9IJv>tHu0v|NdLEX*^STL!~7bJ?O
z*E!NwD=!e^I=W*6bdf%5Yd@XN2DlxED=!NGli;~?ajMT>Wp`}tU|%2{r*YBA5mL;B
zamFok2P<N+Li+)iOAmVOv-ZJ2hC^GzO_rL=_f?`0HVx*p$n1`b{jduZzNq|z<e;YF
z>*02*h=n4@VberjkPir!xZ+#8Q7R>3hXQ_tOXHP=i!<X4T_(^eI(6yIf_{UX#(!h$
zV!_2ovqDc?H0XJ>zJoom-1`}gM|oMblD-f{hAY;w2gDmUIN}^q>Gn;gB)!MW1MPne
zUY<mpkP4};QMxH(IbX@+rDmdiTgJp;Pkgw*{_utxxbL&y?8=*|6U5gyegPc?<k|Y1
zSJHC<c_9z9m_d`6DH-*aHumiWOcEmA)SwEMg=_$6JJ$|8Ayt9?*3oyXQJhRy%w*oV
z*8e|zBUi8L79<{!9t$7*m93O1TAm(g!@!JTig{V$E57d$*Ncfpxl^mvLnGDKd(Yc*
zGX8jmU$j%`Vr5<x*QXqlxjgWR9(TP}s^=6!@T3@_{k#_tA!whYT_M?$wwfrTdwKqV
ztp;cSNBOeAy3kSaBli1&zSHDBnuACt#_edcc68zL5LvT{EEEtbn7M&BF2z1LHGg`n
zt*T%o8A_|6s(N@*>5=cKaxfcE)#4ke;}W(UTx3J5=`~17Qa_7Z#Sxaee$%ZAoh!SK
z?*zq-#G~s}-kE7RLL))H1uG-<mUyPo<t{)m#la#1XkZ<1-YvAYvsfjU4pvNW(uv6z
zf<YZwCH+gj`%B;Sh21Yx3MYf`C9%Ot(a-(jW8d(FW06+M8O>b?^xpBQ9HqQxCljd1
z{v@*vAzN&K(&_}}HfkaM9B;dUc4Ce9HHd5MGnDqMVubxkBUXgCJIzhzIJ{8N<wz?!
z#2FazY`}}q!Yth|XS0ZdK`pt;z6QUuJdcB|30Mb4L=mPiJIwTgyKFU|=<HCY_}<g`
z;-l;x)Dj35y5mwBaiAhgdN`isO7GiI($9)f4Qyn#Yzrq8+I8dUOPaniS3m>REIi{q
zI|T#|23QT#2qMAZnAzD*w*2U@f?94+Qo`;d<a6#i8w!s@i?Nk+(guU<)JR6)<9Dzv
z)hMXvlN-qUIpk#QX15;Tw`YX(^8%LKz5=mRGUMtGSPZ$$wSU?t0vFl%zQm(omHftf
zyh=3&uf!aLWbwoR_2Sj`nryZLKdohRCm|uwJv-UmlCa2MHX~6|f<Xcb$2s2pe)`4F
z`!vES6BFhDg%3y&{DSOS*gdY+s4($pp|HWb3S;pv>F<5wr`^i7=S90T*!?;5h<E1<
zZ~|<g=GXf)JMu|Bg(%?uj>6TE6HfeW(#R9+wj~@yK<?EXq0~xDE@^1x;Ktzrjr=6j
zzx>dLoJ&{aoM^&=fo?{r>t(o}{iKZmnSnA1=wi#{Ozc@jzO}SlXaUPt<$66(w@CHP
zo$W4hpE47`o4GU(LP9s_+F-s|^S%At$<MEdx0m!dkuSXSFX>fl=@6!tn<Sl1rptuz
zbdv(HDb|VB)QTHdG-sQQ_S@&)Aa$8sZRxnr5k)?43}Xj6&0eTuLQE7O5|&2I!46${
zqpiBgcSxCUSwb@!7!iV%=h^!ZF}4ooKdD}#2B!JXc@}?3SBhV2AZdmx3B;sb@sTyW
z=uBD>NH=Ln=Z2M+Ioed)S6{UU2lzfR4MZo0PIz%zU$s+w=3=iJCOJD*B@dtX_lmDY
zGYo1U0EA(z#TCI7j%&D3fpiuo>X0p+((6WTXCqFfK`@TEu)_;sIQ1>JZ9&jXJ#1D3
zu`)?UiX)Ob!SxL%uCXn!`{*Vh$#CFc?p#R*grmGUgbE=cp3p>JpJeEs%eKzq#lgdf
zvEjMZ%sh#d2Q=E2U~ev6QRUo#QaON<<2XJc>OtSx@UMI*g6(;?Lga;ket6Apl8y;T
zbmq%%j%-P!nwCzLuo7~UO?4cD{w$Rd9fQAc<rH-HFgoC$k<tKQ+w+`oatC0@H$SuY
zPNr|S^~@3jOBfcdR%XY`zx7tD;XyDklXEp-4|l0rzC(OY9?f8PT!;ht^9l)@THf8Z
zm57bFfleGshbo0TgSI2brrycg#4|KOo0NtW>qGD8_7+R5qN{8?NRT<XGuqtQ`|<Lv
zk6+ko`F2Yo&o0P0lqgKD`)+^O{F%vVY^LeM|9oycE5V0Wl5miv*e(qBO&RqSKQP&B
zf@g6!m~L~y*dlbO9m552*VWk@tnG7twB*c@6Nl!6N@aWd@&$@rC5J*x*H@g@$ZxCz
zVzV!LuB${5j@ZO)cd_Ny`O@H%L<c2jB2w;Q4-50-=g<TKL{!nD>8DqF>$s9dV-IN|
zM_HhpI*puBc7otWe0C+*Oc+NvYTVEEk@zhrdv|d!7>po?a&gYBcCQkaHVVeO3PX|L
zWbS45ES?;q6A77;0a#(i)xB+@gmooa06^dot2JLKmqn?T_q01pe3#ukK+Y6BPm7wa
zm)oO648rJQ5uhUt7_H!2qqp|Aa}Nz%ObfiU*bBuGo>^cw1>4@3mU1~sLc|2-hjg`0
zuwzVaJPy;?UCB$x+Ar*4f9yx`CjS^ga6Q;l_6gCd=m(pO1P(?(-I(&e!)8L&i5u<M
zV;l^MD`juz;N?yKOSyHz%ajEN=s??xY{I(hDj|?C#z69}<2@VyCJ4eu*_8#J47dO3
zwoeTmi$2!KMad~Xd?m*?`wzPU69>1POjnz*7cX(bqkUsfN-ZF`q=~c`oSAgpI2zM-
zkKJs%{1=1i160|^b%i@Ev=3zYK#LEGb=gsd`KSWr2)ZD#1YDC!cwA&4@<X$w(oOBY
zi(Ni#vvt;S=AbwhirF=2Yy7)Q3oRFd0EXEdf1uK1i0v=4^@Tok@+Jud1{BmPZpc~U
zo+<YJ6#7W%j%L)#7bH^~vM#n4ZvVf!&@6Dw5diR{JhL5ll+6N*Ih4Z>K?&&g#3(NO
zuWyK86Z-*J$hSo|3B%=1mr>~!Ev$~>$<%Gqje*mav+>JETG?3N1>l$5^Jol3)V4j$
zo&)u9OfZqvbtOuxFMB5~%0IBz5S{~Kkje-GDfY6{jrP|Wj3-*qEKMI?7=5B{YwYFO
zzyc1j7^+>gK|0eJ$l1QUo$Wu-YvIay+b}R~z-D24dsR#uT5f1WlC%V!@s-cp=iD4|
z3|OML4TSQ+WCA~hFWG8rZqy88AGjpwAenH@t9IOI2f1)aXh`9SSPbLL`q0Y6RP|BT
znoT3+<2jxiozP;#M8ET(E%?#-i-3J4O#HRTMvtV&q-zcM+C`{RcRt~M;EZ>J{m3Ok
z0Ec{YiV#3trI2o!&y&~Nih<POXH$=9R{+afTx@!m9qpBkjK`wUptG~VItsp#{NU=R
zeP6c@@Q{!s*s;<w;=Ty`;u+MO=#u=n;a!J?BzG_Uh0qw;Hkr^qwRXr12Qz|#FqO!+
z9*G7RK60w<scV8<ie!Y(C+Z6(^Yw{VB*dm1_3I>(5d#7o-nzhs9YZlp>@;{{0$%Xh
z5Tbc*l~o+#6+n#mBk7pnf!&`^=jzWA{dl!a80=rQG7R`b06kCt$F>|!MT#aNR>=*F
zcLX`u$4cxu_8ZXJ6s{5cV}v70en3Y@NR6g<``7mTc)pZC!BtS0sj#klDMD2JDUrex
z>|li>^~LA_jd9ZLca|iK=z`odH-C;ja;%TIT3X;LUc!3C#x!`zfcoE+^MXx%^DP?|
z0*?mBb`h8WGLAEm+n%?B)j?lulrYXPq2BL%vuz8IjxLExg{?`l&s~u!dT<nfG{M^t
zCk5*krkioRO$yT;S=KDmo4Vrbrc>;dP(HS-Svpr7LH*^4cTTsrag$+a@VW+;H}_rh
zY)?6+qc9X1+Y})LT4p6Xer25$DTN!E_&fM!4I@<lzY}c>ZXz||_B2$^(ac0)_dm%l
z1kdB;c!X|8eahEgEN-{Q?MakD)D7c$q&ykLqptbbHe5r8JcTL-JAldTG9n4s2b4BB
z(ZL7ByL_>ag3+KKC<voBPD$Hc(P=r+k*p}um^PxeaW3Jt5!nRN60dmNS^<v9yuT4e
zpPi8Q(`WuMueR|mrf1xAqG*fRX%k-X@{x&(1~P^!gl@udX$L6|PKa4Adq!CeX$QaM
z1q4qwrttz(S#{db1Wt)nmCR&AQ`(DfP)*2cMP*~ttSG9jNZaE@FClXRp?O@1C~9As
zR<_y;38!NYLzSeyg%r=xV~MnFo~I^<)B=rs`Eo_tuZrQzRFb|%)M`wsYINGpk9*k>
zWz!S&w63q59z|0|r44$@iwBhXW|JQ$+Un4>4xw-$+!zTRqUUnb9tu5%=t1>(-63g3
z_l8jtcoRg?MFZ1@Js1jjs+;}f?4qdc@U)eovoTHJRXV$RP}+~0ij+Ea+Mn%;(^jhY
zY%=E7r%fbIJBsGkrfsQEL8K1tS%J@X--&6TYiIFSC;tOoT{tFfVTeK`gFWdBqh({#
z-U^$9r$+;+-Zay0N2gs)fFW>0_$=}iI3UkWcAG*{LWoU>e(NJE$jgt~sTVn{@q+gp
zP%XDap6j5M@ekYAiy&{vwUp20QlY9O;CNw^T>+{UZ{RF&9elT_BMbz>4K5*Iw4rAG
zamQyW_~TYJ&dq@F!t8@vrhLH|_uVIL#ee*RF$DFuhPp^yT>7YON#u{(!s-V<UcHVL
z&3oJyh6-pD>JyxQNm+u!=wo&;elc1%ajhj4A*3dSA6N`+zkS5^W1UR8FhOQpELiTk
z(wJsT=Q{}(7f^@Q%h^;|7~vgq^|6-pJbM?xP+~a>WNEL7b!2~R+xYE!*ay_wfRBW3
z^a0HO>?WIrc9ZE0#mq%+N?<kY=&cXiEG7YElUxA32;vHqq<7S~z@~NfnGC>iCJ`sR
zha>j-nGW_0^no66@+P)F^eF4_=trz0r~+y_R_=7cUZ3S|@TcEp51i^%if#bDQ<YNr
zoN$-zb(&WeCqP)FfOF>GEda%L*)X~DK%r}!X2A8Q8cJdqe2+bJav0DLf0M~C#3D&M
zNTdWqT>r3Le}*GJ@?glN1^`k8eha5rzj0nOfZznVZIQ2u7E@2N`$eE7_@)e_5TH8J
z(v|8HhL4Z8!=e9tG6KF7eoY>Xg!wdE=TIC#l36=9iYhe_79vid%TrFXZ>M_e;Y~Am
zpjOs1YM_z>PqYh)lKm0~+d|l`ACc}5q6`50@u}7YPKc2)Vqn~8qFfwOJj;fJp^ISM
zz}LPS8cb`jTL*+LWjIcb#bg)Hv9{7Mv4)np9F6abRA+C^x3zF*zPOskD)vTWu<9|h
z>~b81k`+kIWmV!22=fz@%g(TZ!DrdDuzAGtqxjcmYg1o4-A)eW#ppDu<*7-hjCS{l
z_T6CbbWB+tTPXl0#DyjOc7{#P^O~@m!RN`zJS-y$D-Q>v7lz$szEx%Wx8sN#3&V<0
zyYv*hKlEM<V~y13>}zT8Yi4GgM*a!5@(`L5*@e#`*NtElCcNlp`|=O2709o?saaC5
z>}|krqoNAsI!q`%^Ix!4{N?uEyvUO=aaDUq!`sFm{_Ks%l8ITY7gl3P_)B}nlXvlt
z-6N1v?dyqq#=mUkr9;V!uAO1(MAhsO_uSWuM{{y14Ye3aMrLid{b0Lp>GdO}v_kNK
z6_N9%e?SM<w~a6R%V#l089V>kgAN5P==s0;2TAXq23;oj8PChFZiMf$c8|aP+rJvZ
zC9Kc}iPgPfw>Ukl5#okhTyQele)sqsDe1Yj2%QScRBR6so`2i(zr(x+X#@`=_Rqa=
zdYxs@e?$Y&yK-Ct0R%H>35b&fX7{u9$FoK?3kq*}s_VWu1GOa6zQx0m>QP7pzIDzE
zo!85n#iJ=DVU>T(gm>?0)nbDr&trlYy1~Q6HNyg6hIDt?mx`=8h&zL-r-A1v)&jOG
zw7(j?^$-%t$?py~=t6t0)XT;p?TS;U3r6~)zdahJg>_Cc33?yWO0t(%ceTSV^cDqN
zeCaYAo`F~}AK%Cnc1|a2PXw0;UL~v(9-kD}b+*QHyy0MBe<)lqsEzDwcZh#wgBV43
zCr@W~dpBDP(WH1aS~SXlR9+u#1Kra4@p26gXn8V0b&qY)d0qh##GH)s5)a>QHbCs8
zk{i1V1q<M!{hnsqpXtRYu9O>7Bg%49*2M-xNki}MROhGYt_MeVvNnp-PmyZJi#*_v
zF&+J~P(+^e&hMw&?GO>Z(p~k}xX>>6{sar9E2quw(ZY}p@Y+#)n_{?nN7Ym8POQw7
z>)pIEX@5dfv_r(H%Iiy-J#0_&>~S1%_%L7<DwPwhH>?Js=>zR~+pKbioGhfl&@l36
z9CwTzAtO7(!1<OZJsDtEaH-%E-TeWFT2&AKBzXF$T%deRp`{<VS>I@i0m6Wg<YL4|
zy3%XeC~F%~Ss{$8{8y-udT#whdnJrb$D?tA57Pz{Og_R^g&GO-DgUFO3XHCwVCezR
z`?h)ziTEUh%W`^_;CI9jJGlF1Q)?vZs)ahS7pL^M4f}`XknUex6g%k?9Wughka{sE
znkaR2(kqOodpXM&cZ`Q|9MrK-yxkjUH+6v932oz*+6aZxCh4n?1oQZI=eX;(-U<Qq
z|MuI8#_tlpg3FeqYp41%WWx^r^`fur6iH0jsdrwtDINT~A!r|gFLxtfyl?y=8{68t
zs=0;lB|k5F+iu;H8mXD2nU=CEP&U~T<!c^2z1HpqO`$UJp>aX+%mgSNb=~&5$qL>M
zVt>G(4GFXj@`u*Jz5a%cZb$b}TJDQGZ0c^HTcPs9ooz8fKb0U%#4PNnB?-jxQhZDy
zknGol-RzW?{R`>TTA16vlxZ?#HXtNbSCgRt_K!DPQ2%tWxzBhjv~(T~3Em9P^g+z&
z_TFu+>(?M&RH$HFryT*s;twP8a^s=4-TPi&1ZtJC7C#x<eSE0Rmc<{@PJ7-&u`b}D
znYK}yJ^3wec6$Ld<XYD)@}ch7&_itHv;HC2Ci#3D8faJlY<I9Nd(rE{0oTiB9GYF+
z&(=Og6%HYE@4*3NXvD9|>{I*?g*D1bWy42#3n+EUu-C*q@UWQzO%#CRn7#!+Y;>Tc
zas^6n-qo%?(mw(t0;pOKLIBJRp0>dL#U1Q|P(MJ1Fv5n2iX+Pj91X3n+S~fb?aX<3
zxo>bT9>lS*hb<?k0~L}S8hms02qRY<D*~AKlRa$7VgA9OnuaE{ny{AymN-Ad%ozFE
zJ?%7cZ78*Hn{?YWiVb*AmbU#~Ha&C?W=2a7!@x5lKw)MN3@P5I70#$p`kOO$w{3@|
zYW!hBO+{$_-S&2$m^~2%f(5)UtO3zTvu(l@v1drZr9F|tvP~CTEDMM{K_Fp*(ro2-
z_%z*4&-L=rXv5XQn~1|&+}W-Q8|9$b;CEL(Pbh~|77Lcfm%FvMCx!b`ghHx8-Rf-d
za>S+e68o8|g!p*S0!$AK86OEczwB)NH}3(|OvDS7qEY8`x3aKvV%uBFee!Y^pViGS
z4iyEU9Ul<TIyT)p%eYM34N-Hh9j70r`D}M97fR)of@Cx$1BeTs(aq+G3WbyquAyVs
z*qy)jwy#D&)1ez^#ZrkhuqWWO#?I!*QdIbxor<+bK81;CqAv1Er|t4T?6rC?cb$4F
zp9Dt1%;<{WZLk~&+@g%nKWH<cT5Mw+)}7zj3OSzBWozOO4AS+op%7Wdel>0gFIJKv
zDv=aYuss2zdy-Zl^gOh-CiwMA06`JHMLa^fdWPg?3-4+HQgE;M+nO=_P(zjjd6o&T
zOMwQ|wFvZlB@@AGe^@CVA$&C?F^iY;C>A=}_@fn|tW@I`)WxZO6%hR3FV<4!RmCp9
zWD-P$82+P;obIKAJWozo@y3ld4}TxJDa7)av_XbF)`r~ht+ffGIF?Fk`o&(bIEEVh
zr)A?CLUVMiezV-<vDMEuC-f=;>vQu<$y*IvKA-<vKiO@eXSM|<RUHCyJ%6?BIXtOm
zQzk6DQsMT5PxU;4)VjOMM9CKrd-$o$JlSv>Yl8noel(Jq_}ALK7pjA^i+t4(bW;7W
zfeRY!X&K8f^C#+pBfh`V6dm7S{T6tIfWUhapVIXNYsWdt2tdyDrfEEE2(Ar*OH1ri
zQJjCcInZRgHR<)ZIZ%#rpb<MhY5FK0_j`Kj7p=wQ!7Gt(glgpq_WJwj=`V*`vU*NW
z1g{CjmVEbg`VMPa+j#>4*rx6VgJATkx>C@CjekvVv(7&sQXyVHHHhp6Yu`_gKK8l-
z@@q3NN!$<pF#Wj~y{xFI+FdoI)tvfMdP$g$kWppQi6fJ@15bH3ec|i=J#WI*X=H!6
zimjdVT6*o9UL!M90;{~&Fz#1xq*uHa+R$4q%BK>7e!Z3q*>Ap-{z#Y=Z%V+HY9$0Q
zMEiZ0KD5PKiRPmu*J}@+c4G0G^e5L+qh|(#b4)NxRN|12?Lj^uJy+Tq<W+s5mNJ%x
zV7OasJ%mu@O>>--P!1s7eXHF8?x)<X?m};pI#I0MU>T4|Dh5dR>%~Cqt}ASdL0*i>
zgzl9K3_mR4S~cVn&AZ)>?(1I+2A3sW&yb5H0Lfef7QWy1j{S>~LV~0Yk&i}cauv?@
zEVI?<0~mZH@mP>JCkjcPm|g^-XWncVf|dCOZr6JeA#6y<!X4}|uP(78LN7)5xT;j_
z?DjX=i|9gVhggP7fIjA|Ca$m+;tMe{Lh9VGkQ_A-66FbEdpnG>Gq8arjm2Cf;szk?
zjfz|56V2<k3D$Iie-gM9IlZ~Qt`5h238zZt&^y{{f_;gfF+GjOyQQ`!D0+w+;!qN!
z?2j-?=%S<<fRl5HqwOC@*$&rkHb50lC5~^Z9Eb3gQ1`hL?T3ZjQu6ak^m7+qbZ)@-
zjC<@_q-JUgpy|r6L2w$QlH|M^d6jb9QA4z_Gz|!>w_7ptvUF|2=b*)D{;WKY%CMii
z-)_$#I8!@VnXz4FNvhfC*!|d6*|O98i`Bf6%sKGh4MM<D+d1K-Mcpe%PS{9DGz6cx
zE}pSOC!&{Zu)y46`Q-1R_aY2AU}Dz5pp&k%Vr(NSPNWq{FBC`uji8m;OKjUluN{R6
z8v9{`^uA)jSSd7f3USdGP-s0iaBhHK1L|*BFkY#m`>fmTttsIHhdh!XQX}zX;;lA2
z2#8`dIZWsRE=)(*QTb4I$(KRWagav3bYVP;r2C{*8fC|cjez(-{pj#tP30<-Jjv4f
z9~4i-vpp=P$SxH-A^8A5J$O11EV^V5w=b}dgJ?(kYIsoU5gn*wP7VF6qxd~p$|~nz
zgUo_CfpU+t%Rmqm3&ZKOSp24m>h|qC!v5G?wdT5W3{Y@nB|!+#x&^3b9BO~U?zzz#
zmZY(Qdw}krDddYA{OAvxfp3CWi*a^yn0LWt@h{f>ZXaIkU*IuQ-Xfm{mW3<O_1A<_
zk2G>|ODRRvv3x~t*=T=W;UC~cf)PPr$%bOkB0}UxOW=scpyBe=@w%@NlwT2)>H<KQ
z)@%Q?OCX7@A2zgLsYC1IN?GhY%3z$FQ15ST%Ju%Kd_@5Xar+74r8Fk+^8OE&xR81r
ze=2K^a|aS}H^HGIUpuvGh4nhizfc&QC#=X)!n~;b6+32WXd3obe&iA_@uP<GkajR+
zl>7c8TXmCvh@%IAxGERBx&1r#J-*QzJ9I!e8CAmJWH%jun^$cL->9pQgL!Cr<9qfA
z@e4G?k;##ST57rnerzqFCTwC#9U&AOLQ6d1*A?&D{`fY~!KML#6AjN@Id84~xiUF3
zxN(NiB?VA@NsMyJhxSu&i*m$5ZmBtbO34w_#~Gj6>=oWen8+r!zJ?qY9DAy-UZ2>$
z7&`D&3nAJHQRyp5b>n;X?lZv`uePMIsT6eAR|;gj>rZ^WHNv7CxaD~wf0O!%Pp$1c
zUNcsSx(LbmM={EEV!1JU6AVoVF|=b&y4`~=7Ac)DQ=M1{13IUh?GYq<SgUfJnvf{)
zIYM8swu`mt=nXdMqf|xG?a5tiDcTnL!ugoU6c(to(74QISv{&2Do7|GKW=^BC;F+2
zWq0x7)JZA!3Fi~fKUUt;ZtLc?h~r7WBFX>HcC~9edpX1t9ccKvVt;!=gc)`pqfiiw
zg_1?O@ke6Q+GW@*v@?7WMuYZq-fAzxzF!~fzfZC~Vj)Zk{W99zTpO~tmlwhlyJx%}
zipE(ewk}d)<BN&fT<&l3OuN6GW!wl$iZ%sx2r*b>Mh4E!x&UjG4#K!p1Dho?fjk^g
zXY6R-fkvoPN*pD;!4-%!I`T?%lT3$w>{<Cu`UP!70T^7z5zAQAs6Fh_yS)+{C@D~6
zlqAC-QmQ-TfskgTTSovj*?$?&o0D><J4hU3Fx$jKQ;Z{Wby`;|PEC>!8;(y0<pzsx
z`&d^63n`aR4PIiNI|b2*cgpv%!Q5=sh*$7csk8gK+v%VN$~}CzfxNzg2IN6vY&zKa
zVb0;|i1p!*z;<6U`}ItBs||B5!qZItEousa9Mj3_!f+^t<oqC&21ZkQJu0?Cm-&dw
z9Ha;j)rjs*ZtwO&<^u3z*QbpP;Zy>eKkR0o!;w%aUZXxSjg%+I3Rq9lEDCE@1xG_R
zBq7EUc0igg_e*!a^=GrOsWV7Jl0`9xm9xRAZ@JLB7A~*H`u%JphD&V<+Sfq!!x=xa
zxBa3Z5eI?>SDE992;p71qkTmbX=p<5hwl^&0pZ5NAX<djqJ8W#BAoaNcMF#1M+$6}
zbR^%imnW@|P~QM`muznXF7lcYI3mC_I-7@$Mak{MglT{M4py@$^y{l>z`Ga(M;}u8
z_v&K5gflK|;iU^ob@G{AEF&x>T(gFzsyd!R@QGJ_fzCc0%KLlRJISeOi>Ax71D!Zp
zH8gMNBpela;;X`TcELl*MJN%Ua4@?Dm>k*Fb_h2^tV@aDRoP&AM@zQ$7$LE`s4?^!
zH~vIY!yI{(y&-`cPPr@%vrL`*jBrqTVvuFxXGD3JG%9?NFV`k3_r3gUaf0Lwj~Z_K
zNjR6WnjGEXI^lPT`c2^m;tq3*Z8!WR^$Ff#*cg(76GpM4)E#(<>aBRqNnt>h<5F{C
zY=kh~I_**P#Mo5D=rZzi2$6X>#@u4tCQJdD9WG6W>fV447uwHZb%S`(Pdp=$2^`7%
z(f0dfAGio5A6gRO7Ek`Te3*S$?ltn^l`u{V0BYS4)?exsNfc>gFah96@!&vvsmaTd
z2U`ZD^Sy9u-cUQc_4{!k7oQRxoj=%C4);dIiDrlb-|MO29!Gja3Ah;Lq*9Lv0g!_c
z9HNv*G%Rgr`~Cz?l+Gx%&sYJ8{8REHx>(xTF2mvo(JaL1=~^Y!cvMV%*E(f8H4XEG
zhf-h)XDPJ}>KZ1YWH`}ZZ&`P_u{&On3kIuqKJ%?b_CIg}6`_Z6Sw+RbXM2FbH;e2z
zFimJT8q+HA6v|UZV?eCWrFQv!UQ5Ph#knWra6h`st`W<oXH>&&BcB|rRqSF^vDEHA
z*DHw|BH<lgi|p!e%k6J2KTU{?WPTZ*43CsDAhnZLSmF6zH>km59SMNpsBc+npNnlx
zO<kx^@-2<%u=Eb=&V8m<IBgoQX7~iCDO_fk1}?Bj<dZGp5TKbi+s3O~8>m#XZCPq}
zo#&+^Yat^U${+wuspZf;<hae<wk~vrSp^lDwm=L~zdNnz5^gfQ1{QvXMxhUMPO~=B
zuTokkSy8^eI-Z+L?RzwfE(GX>G{Ju#*_xY6?E-{7Du(03fgyupX7$7b+kb)=J0_PA
zpBkx;A1b$DWRIW$(J9haXlU`DZ&leFqr9RJLuqnoCc6Jj8!oLfzz1I{l@m*FH{kXa
zcDmHp)QAlJKf4O7Ea)AaNi#_<zg5`eV6EpF6zTHmjnmq4vK1qL(i?A9^FB&gI}_Nt
z+B%N(3iK#Cq&~8jWFKQEP4v<sA-w3{#f1_W{Vt*N0-FD|FI1!A^Ff3R^XqMe3=B#S
zGs9P?!yQv%2P8`cr!BMA!wJxpWVS(-)*t-{EylQyL?hQuk(p@rxp;e&+J4fwrx>i1
zlZfIL!&XSRpFGp1;t0!EPW=)3gk_nQ<1y#`_o%X*Ad(hW^3IjW9G*fz<570=QJW3G
z%T6S2QuBsDY|FrH0BIj7rngMkIU$fBb>C!^PUY+Nd=|e{+8yISA&vm_6-~vGH4|D{
z?Bj6!aBAvOa5QYX70QPf$(=$OmLP~8hl^xRyHhW*L8FuH61Z%OP4L}O5}%!?+Y85f
zV}WPz5G8Jd_zYmn<L{2X-a3u(F9O;jGDZI7iuMGnoo$PQs$v`-tRhDq5%kH8wi}QN
zq8^y=07gDtZq{KW*K?E314lhM&xQ=#w#2^To=`1t!Iw2Pe#a%Y56h;n5%{|ibgCRR
z^tUL_a)%}ne+|j%gzIv8i|_d8a2q_rYYLz%O_)}5dMmi|xpaFuVEwQXm%?39#w4Q&
zu^qtt7$?*=087dsBsTo?F821ZUWWk!u1f<^oY~E~PDo-LlG_Kv5r<DR_mbIeh4l`i
z79_VGQD0pW1tm&Bj{keCFj*^uwqFo}52dnDdm!tKd#oPLEQuJ=>$@Ke3N7%{K@Zv;
zK}a1d-X}D8?H-#H#8V!7WC!__{dnqe`|I-7Ze)%KgbljIKYS$UI`UDofP`^gQAS_k
z=jh-&?2re%DUN2ajNUM{LcphVxg}tUnIRaVR4Nv!%E-X;xLpuv75O=W=QOXD^p1+I
zF}pW>4-|@N3R4O5P|GEcTVHTH7ZErJZz6<G6a$Us9~As&wXNRVYrxMD`5tBjI*d7z
zZ|*CzF~N*3k09sHQ1t->=@qt9SHBGfv&y)~a?m125^FhRrfnIzby*GR8k?1;vS1I}
zl-U;ug*b_bNe&FJc8_{kH9{s!>=Xnw`P<YIThCOHyAYMfS^r(VH~>}Bf?h)E%SPW8
zaskqNX|ZiYuB9~sL|O_10cIQ@1Zs-iBH301SH@K3zQn_4nYDCeqc9GL%}6OZlK$nQ
zNYCG3yZ7=hBwmZc2r_ddMl4@$%V08SOiFt<Hsg}cL=L~xPBAYZ7+k|JA<@&-%k98!
zUW_-4v!4v(@&L`)y2PC}Fw^S`@RUd8#%UxcBJzLlO*SPtkp!-}m68RUWKNN^LjFRI
z<&m4LrN8&!9_AU+9)LYnjT{v<-DY3)^J<|f_WfUz5F62Mh4qd7n^8PF#0li!-yY3b
zX%7zc(&VLQ%zsU<&uzA#yMN*dY(W<}BEyqb*+m&%jNU-dDyKA`Pv5BH3XA%9os|62
zvViV!%u8*GbF0g(0*(*yXEaP^FdeC5WZEJ-9ac>>fxXQ^M8Ttcl<k6S2L>wO^<YNS
zB3wJSw684;s%>dzC3=ed<hTz_o5Srs>{+xzhy-ndKEz{_wG^-{$+t$>J1P+?q>S@c
zEbfXNt3TB%0wc?nPwBip2acffto}CP%;Y!BMFLm|b-CtHyK|mbjA=<U)oGFt+J%|6
z^dv7GiRz(*QUPy%w#{DPrCc1T>-9Akbmv2CJF$d*&t;t>MJn^kJ>1^GMUG-6XZ2!X
z+OzX*t8KUfc%l$NEt*WI9FX<hI=f@XP_8Y(cVBsC>HSx`eJ?LpRwvhzN|swEHMm^H
z$o#n8E|=bgv`$ENFlBVeh8^^$%|)@2;ug{d3PmU+Te#`+wU&U<pbdg+u=|FJiJ#av
z((iJe0-FW=y1QF4pz@=~?eAg-7myl?D~jcLmiD3zK_sIY3VX%1V3<-2rjmQ)K4*QA
z{iqv}bU#))Q-TKHv^}PV@{lbHb<*ZpwvKwn7AL63v;3cy@2c)F8iY*<G{64PrX9z8
zc^H5oA`0ca{o|)LLVO(Y4lFsT34n3oMH+URHzBT+e;RJ>C{6065+x>%z80-B6W{A`
zuX@WxTbv`yS(g@@TH-Y$mG4XW=w(M#wT}9_PweB+ur;uS6b<xv+;27jo`fC?nixkM
z4KFo9_?aiw^?%uq$9VO)Cgs3zw_E~E-JrbfpY{#Ga<tWh30%5nj-r$tAb_vhgKFk&
z6<3A!ewjp9m=GP`yJfr!oQ~Q;m{>_@BQx-sTgQ8ay=i@Q0B#3H3s#$Jp}?))QRT<B
zxF$?Y0)wU`wdkLJT9>I_T;%fsH)6Vz@}CGC0V`VFw<QRWse*kH96QCsRYCk|E~p&0
z;`KIFTr4l@ar?C_$)^AKByO>XWDOxng%V2nyuAN&KC?Mu^HmWJ&Qq3D{BE<tuw&&1
z#no{?@WZ!_&z6l32^L0AyPhYC@yz44{D+|2bw;tIwqB1(<Vm@5?*GibPbq{w%McYJ
ze^Z~ZheOUC<TrFUBv*a$NjqsfF1W&Zs@P&e&O8+gsQ{Y(_CDAIkS$kV(aLy0zGRQL
z@dm-MN`5R<iI%_ku;qj~9of`^`iZv+9<$Zok|m4y<3xjUeh{;k7yZ&TKJo|dL=F*H
z%Ee7FcGIY=Yuw|PP+UV84BwI`?~e{~bq6+!Z+UhC-|mcrtOmSM%LiKQVQF#io%{pr
zXUdZ8r460q&)RzF7#+PROo>#vq}xzKvXG*>i?e?V!!=FQ)L@mP3wy-peC>q;xEuj$
z`bwzj(mNi3rh$3LR|;YYD?%(aH6ss<U-&FEL5Rh|=O@imKRiS@AU^*cuNqh1BJ!c=
zpseV|j`0a$O+}256iX7^C^nx+xXh?+9RCE?WiWV&hH0L9OI29u=jFu@Z}cjZR*GF?
zF+3pNwPXCG+_h<uKoLrAdbBQV1$d-=eths-p$c6>0925VlFk!b&ttm;%yy5LZQ;9x
z=DEJb_coKq_r}HX>EDE=EkxWUV;4v=$Q8V6zxe1sy{^?_gwD85EEqH8RriPXix0u&
zSvv+*b#_%XJk{1KH$E+_f%mbh9bxED@Q;Z`#c|R0J`>&z6edxHZtd1x;!HR<dK(E4
z1m2gu0U1f3M~05fD5qy!zs?7QDS;_YQUvxVCt4iG+XRpsUY1PX*H_r`r#Nm1N1@mJ
zT1UiBE&BApc;BzQI}#3{?@R_N(&*C6`1|!?ApDJZkHslGTgh$@>Jc~moUBW_Ft7qF
z*3p`M<HcbLBP$gvMzJpP+U)r606y~Q^}FV9LWs{!8Szss-WPACNx)~1^7}+b^^AWF
z(BTRDg_GQT(;+{e{H=dppl3BHm0tUcZgJ<xH*OrSFjgd?4eu|JQH~=wdZbHy<lmuP
zy>w)_BcR!=6AgBW^UTBIgI@D`e2NHh)saYk8_+fWtBv=JpC1pz`;h;tKquJX3GaD(
zn~m!ne;P)bkf?xP4Siv0ji&XASBK3e(Oe2vvVfKU?jLsyfIW_^NS>&Y;qeoQMjQ~Q
zfA7;81<<CFNODQCqBi@-PleuO_Jg1T1KCk|mw0j*ovTxFoNxk&Ut6w)a(4S=#(xKJ
z=PA=_tggBrvR}M#aJ-T$gj>`<#0H^!0)&*d6KP5vtg$P_7m|#jr9@9Mh=+f0y{$r_
z3*?5z%6BPWT>&jR{x0#WYrS@;?7!?`9#(M_guUX6*M!xf9Tuy=_iW+U+3`e~5flKE
zHb6{@bM1MkR(SoOSN#6F-e>?gTWl6Y-YE|WSeVKdJ>!iZdA+9MM(6Tclp`>&d>{>X
z&v@tX!Rp2YyRBJ@_rB`DcqnqG?lO$0EJrPx4`|@s%=nFmyk-JB9a;$N#`cPf16UU(
zrYkH}T?zRe)HmKrRtT~zG<_{piSs-C^gcKq_P7_5WJ#>8mYWsLKQO*IY{N*{D=*e#
z->>zKf4JAbmYgdm99Iqz5u7KZb2MxJ`1ybe2z&z-@PITFCOdktd%Ww%VQ{!6kc8(K
z-LwZ1({AV<FA66zfdCF%5i}PuWL<OO{1-W0$((5P6^JLEzDJ{d@|_otL;tGukyOZn
zHLTX^xQ~1<zlNr{-a>-KezWW%h>VMu)pb%eqZ4L;{Tpm=FoYUF(>*u<k`Nu-XwLzb
z6pyJTbX4(w9LeYPHZ^o24*|IF5Ez&v7rDbjFR&NfN~v!NieRQ$4Yo?SNrG#6jl?Gx
zlW@*~y~HS@xt+hG<>B1p-yosD-1E&eb)GA^aM8|YCwld8Nkp(CG^70fovmPwmlw(D
zLZ8dEW65^5BYr-J4+9c4%}rH7y&!)>k_uD*)OYD~*&^!0-M}WGWchG0fW)%j(-WVE
zsrbvnOxFzn-FZS=C+bnx+wNuuHG2=dZ>nsvni3E8pd|Vu{SC0EkL>{EaT;g;oId0W
zFD3F18wVdt@3!dA^t(ane2n}>$SSfUHQMKoe@-6>1X81jF1LtsUU@p;AAU)%0Loft
zFPjuD71~rxfH0#8WntiBZN)BsrMLZ()db^u5K9!<zz}nW+8BtChEVELbuT{j_n*^0
zej_<D-W|XzYCu(rDR1{fx=1s@h)`D^-%dtodXDjJKeCBSJQ8ylSE)6q868=)=Zm&r
z5ja~1B2Rz1bAG91jurL_<v93pxt%&rInh?i16WR}C5}g;jtw>snTsMsCpcoToD+!;
zXWM0R{pC{vpS%Y-lwNndtq=XCxP)+s!HX>qMhyF5lPyX5|A>J`!OG~geXiPOgwbVo
z3J(P_TlVtWIre$*{0U%#f=3o{_Pv@Dpt-!)OY7|DLwrWzqoiX6SYJ`Fd?f1obgi`u
z(JENUf^whMV1dOowhi8LtS7W4J(*nK83JVyC<py`_;6^AZ4rhcehzDLUSA0{ZK`cs
z+!AO`mV=~Wfa2_#7D=RW8v{`}+J51XTWamZuvAwbX&BN>&(-GYCLDL79f&gn&5Cg%
zB5|N^yO_K8kF!I<wiEp-qT;C@M;>oKB24RhjqZ_Q91{~bx5nMqrS-*g9?A#V0Mu@H
zz%t8$z&yS41gg$=mF~Jn?C^RoEz-7z!XF;8c1>OwHYR25&G%T38y~lobzU2M-JL?p
zVKLv|?Na<NGG<b%EI(lM+VsoJo_@@FlHZ9caT5xf508Mw_t}8Cn~jI#d@x=#DA@%Y
zp6@X)cRp!}D*w#Yb;yfzU|<-P-Mw>_Ezmkh8wSk!EhgW(r0A0K?f6c~8sh7aFM@R2
zj39xd7I08>h2<-1#@i}o77c-$o361BdwVh223Q4K27MvV@s+kKu*~O#-Y9i}$F<&m
zxt$um4tvI>l#W2&fOQfL`Aqn~@)C;xB^r~*0x0uNIi0sJvPTF;pj>o8@aIirEUQ>-
zYf+!3s^AkgBl`48>t2`GYw7;Us3tr=f&)^xfBzn~)wfT0R(^^)xXm9{V4T*=1e>OL
zvquvzw~4`>E<kSsOCnYjY=}u8jgwfD1FG%TlN}_7AcO@eB!ORz-qu2fI?i^IOpbLA
z?J)a6w<sYite-Rzx`PPzV)n^^gFaszC8-qoq_Nxv&+<>i)49Axia++Ud$r9ERv_7?
zWvvX3gVJ6tF0#{t32HP573L@8OMG>@{W(3^7o3<s3g+2>K0Mv3q(}fiH%)V`Eg323
z=diP_B@8}5cppWp_A5u>AZMRpi@66h0pzN2{PxrqwCUDt7taqBRX{K6fL39~Jjt${
z<HZF@hfXTQvTe$dAp<tRua4wd)M1WQa4$3hV!PBi5S-8-N769g{^mM(EyGBO;X?ts
z)hF6Psb$KAsay#*qyl_(fn6GwN&EszXiTXj83xE+uXh(!I&;O5^XF7)3+_1E4sZ5x
zMk5n@PprO8vz>T?mvSmDR4FTo)Mz)JY(2mpbTy*39w9~hr7Qa7e0%KpFkccGN~WWK
zCVTh-`+%#<_hW)Q=pAv<jyuJou)x&$(n3J9{mFJpSOq`>1?J?{nP9MIvz-$rI~Gux
ztD#x;?`K*=II7?l15|t3kkdh;lYD5G_^V{SMiazVLU6TGk?t$z+Awr#h3Llg`Ym{w
za@P4vvke5HYX2eiv`K1nOEy3B<tN*@$wT)}eWGH*h$4Tm!CQ~~L??@t(BF|xcK)Ac
z+oIB|h3gVph{nvGYu{9G(a~2|PfvLck(wA_Ib@6YfhDjK=$+-{if0#~il|4BO@5xh
zY}YO0VKQxn9AR?ymYS8PAAqG_w~ybJ6$?+5`brp@knvc_qZaHCUw4Yvi~%sYl{KWA
zlmwXqI8Tdr@1AiDdD3XlbBAKO=vRu9{H@}-i@lsjFyswIxjcqewvBs)UQv=0xvgHQ
zl1lKN4sqQwZ!)+AeNG*ZeD55;a=MprN`u|o9-VDS4N>1Fp0U#FMwM)yB}e=x`@-=(
zx?L<+cBVE2oQ2n_E{dkXAzZL^Jcnrzr&*LJkq=-}bk_5}yv-t0d%@q<<5O=wpt6Fz
zDVnA%_ItF6JB01_XBnJ5p-Lj+lC9&cbG%6*Ij>XWNxYb`eLPNPLHP`!Pee3L)r!|l
z+cmZe!ceshC22z-(|$pDZW=GcZQ?c8d*$Y?7XGG_OF2jY`R;b|cbj;0=%rP)86p#0
zArYP0E*_HXC#Ct^teP&E=IeXLjW_yO1?bb7T8~G!_0`?uj&cM^*=#p=s>O*=Dgy1U
z1c~#vi6@3`T<cp_52GAjww}68{A~cmKx$Cx={XnI;0gQXNpExU?(x+)i7-;Jp7V3t
z9cen*i)CBJZI^B~ha}@h^ExCGn!9)CuJN*k{t*s|_)fR(H0OTCPVo^4@pO%uZXEh^
zZv?zv*CviH^@@p`TF49O*d62kIyspO)8Npss<e2@&g>}bZM*gzuPT_OQ*aNLpWd-k
zKlVa@8rIba{(ca7A{nRhU3=_DuP&BLQc`Au*=C1C^`aBMv?(9>2PtA)U5)2$zTh?*
z{Ei)l;H}A!-6Zv<pAv}XMJK*%g$NDQ6@nE#%fBG~u`g{b5^tElTTJ9^o}aHs%=!=Q
zSAjUu_;MptQd&}rG0T--+A9*I{uPcWrHX4Lm<<<f<a>77d;V3i5GTB)%W#;tMCHAs
zH#gYhlA>Jdb)5wC5}TqA#0-8~V?B|tsb5{*iq*K_y`zI)whzNn)p^;p@NADR#N1bH
zABl6y(T9f7*+fr>)_uKoKr`eOuu|y#{iL#UqskWBfa-%9Nh&Dd)urYjpnvs4yD0R>
zj@A<?;3|snMndH}`wq=84gLLEC;*u+$&vP+9U3-uM4|+VgNzv*0&1v3-?y8?j;3B?
z%#iBQ*$sE-dh>JJIvj5>?SwZ_WQqcOSoWo#*&U(hkz#@UL`2B`e%+1<D}c75P1b-C
zgm(DEx`&fmO%}Z5sw9#g@U|@s`!@trq@<Cs+BZJ2zG0KdcvtQRp-uSiL;D^HmW2ke
zt0Si}@r$eqrQ~iunDjl`ShNlbk^vIRA$<}*qG;XwwoQNog3C})dow`!ppR@fbpA9O
zgO(wjIp=rO2AdzQz?j;(=&S`*VFPq~mwjr#OR@)yWlhvF0kz$~u@^%dbUw<(6|@C-
z-a+K@g*2wWVtak!?Z)}Ls(w_A*5h5v2q!WUunW9tiwE-P+H8J_9nNt3C>7L5&DG&+
zdoP?78BKy5;LdG(e`5P5K~pLubR{&909L)$c15Yd+$EZ+qBX4g-ye{X4U(jtQjG4A
zuUm0A6bS*0rP&LUPJYYkwJLOpFsFR3oa|BK2lm^;UK$Py^uhgY)J`_z^X9^QzGusP
z|08Sjq<=Ypca}7sr&YXjgH3-l6xX-Nu#(?L@#Y6^v=|Q)sNxvxDXGAe{63PVc)6kT
z<1_(ta_dmj(?$aRZr|D@(P2el$YFx}K~K$JTTcxj^%x0Mg5Xt2rTCG3zO?I}@va6y
z8MJ%uShwIi8>Ce!TS~YwN@EwLZ?LKQS||jBy(tQVr2rWVzqU^_FL_i?$IHn<+I{7&
z`pkX`iv)86xH91UbB9FckNwR4_lURmjK4{~$<y05uD5Y0A{jYsb4_ivbU$)ESP$pP
zv}Ip;b%XVPDs<2qcJR+(1i-0-Ah9r#R{%p;ccFcyw2JzDYro#(y^NK8L+nr3_eVam
zOT#J(&_42nFW<8(OTV-W!)Cc|!;K{wHMJz4Q9JV3{q?!EXxmb5prmTy7>HHF{HAXN
zUC*tvRpFG1iDV|Lu}EbC(~7%<(GQ^c{1^89^S}h$r5q$3hTPTds|A){;uTyt2?AUj
z*R;=HV0G1AQB>BDMoft-h{?|gR=W6Fn|*BP4dT~8qHyNokNaMFy)7@JhWX;J!c*m$
zf+KPXZ}F^`%Gm`v$lBQR2?yA9FNBXh3xRwZi2PxIPY$%9uXqhH00^m3)Yoh{J0%AY
z<dp_=4}8gvckN~mhjQIH3FHD!BE5Uqn`{c-1G;k8aa7}>2@K8<&+l(1bKrb{`w`AH
z5KbOkcgL=ey4m~pdle9)LLKej`&u@tWxmIQqe@$>#L7~F#aVXi9bUsrl6q<vw+se2
zE7M-Z-HZl^o=9;h^0;dB^ymS0Cd|4|4Sgi~5jjOd<1_8GtG%4JhNq)JRsWRF$+Gh=
z^YUWEM}j4l?uFz)Q8YTswuh@Bm>=COi9yM@qop0u*1AkU_@KC~Dw#znnUD7DUF{YE
z9#tiOb|tUx8%^2UHcGTtArK&gkZOR>3)<Tu67NCdu5=<pJ^+`ytCg!1M-UIZA<qw}
zWtUy-soDN53G&!+lmTL!Fn`GFoR)0W^mca44F879EL8>$9Gs-*-M?dJ`$!H0&Z6nq
zSy2;pLTSU>+LyJV&O<Gc@|dLSFMO^7N>=@%`c@)zSUlg1oa|_iy{tJbfnq!XP!H3o
z_WQM+>_Gx78E^<`-=G+p2<LOkZk8^cfe;4a?%|e8AYo6aUPuDfFi+%3iNP$NDW0~M
z9Vvkt(*us$o{Hfg?`ly|7%;rgSOnmK-R&2oK_5u!m;?{>RZZ6{*!p)m*ik6kREauF
ziG_*u^{F$5NjuwUWZKr2usfvWqor(nO}p9EQah0Q0oH>BYvT0yL3_I;tha#JANd5}
zyUd|H7Tby<|DH#Yp~V!7ZoZdgR~C3N^G2~jvBc?dS+){Q7rhsv2$u^fDRWrNb+P5i
z)!L75bQ6L4*+R^3r`ZBrZIhoXtV!_h`5U&#vRy+m5ZorjP&&NuiZ~hpeIu>w+dXZ*
zJTypfp`f1RzWQ^((SbH9->al?b(9unGPSE+Coc_V7<Bm1@aa+vl=JKd3;<nA{nVvb
zNVSm}4U>XNj>PD*_O~bdd)wj4&m0`s=oa{zon<#mg_bn^B$T#?8aD9vUbc70=rKap
z7)qsb>(krh72@BMg+x+<BsFaRTrvNM_1)IX?hKuh9t@6EJu;2DY}+OD2*m?gJG7_7
zGe0-l_B_zO3wtxBb{fgmXe)HIZ4Y}V98jQlM39kjDH#R7X>>`fExqj9u!UpgfbZDT
z{d$IGy4x0W#}_ofva4sNA86Oh#a}FBGZuGYqSToPl$Lb0H%5Cs4mCKJ`K07rdei~7
zLMr%V<}5eEFkk6opEoNJgy5A~-y*KbwZ9Gve(97uHoD*<TXGPX&LzI&vFZUx_W8y0
zd5(~(T;2P@D2QeC(rtzE5YTd&{d54et+>id$6aDcM@130B2bNPiDyQ8<T^X&2p>sL
z!-^V;FKsx}zE1ccV-rwkI53Q{u(_|;r>A?d9!wW#<qFMh_aFN^Gx@bHcFKWXK<?wv
z<JMQ$`mUG^{n?-Dq`x)US^hKJ2S<qErUdR&I_TO;eDujhF5&Y0i|q}K8eWZ&#4gT^
zm@j-4`?y_h{RK8xijjOGE9BNpLT<sOTg%p5VvmK^sIcXfMiVw_(UMd)j}hVmGH}+?
zJ!HE6gw2vgws5}ph)zLv7WKvs?0LB@leLi~AWQ_$6v}m~-!Ha-3%$I!60ura<GP9J
zb8K$thmex6Ja7@w{FTy`(3TTD`$Bsz%)VH*S|w_6J$&mP@J;8->^6OaA|AF7J03bS
zk(*@vK_6%RUz}y1-O5Ke+SLYE6JBOya`(Jr<ud^}sRV=CnPrkJ9LD2CD-iC_ipI~u
z>jl#X<>1t>Ua{Szfy9{%o;s;pK&%TXn)iOkZjfqJ32f7x+Oym~B1-+9wHeYS>lq|Z
zb3o!|iZ{GrS5$kkY%s19XB=jB?_1VEgwBcB*k-I)B`DpPH3asnXYCkK7@~{u7OgMU
z?T9+RU>m{!vdJXV$skU<%R?XM;?I1|iWYb~Tn;$eB=6#U;rLgr`_W;%%IVX269zyk
zcONt6!$dE7+m0KNoKFKWm&ym1+>(P{;SCe78i{e57f||m%*D;G+VP??3g-eI%H|};
zi|SvobMZ68K0$bpl9<sVgiAbWKj8jCh2DPzH~K-MPYwAW`glt4HLGp@R{jw;!-Xix
zI^-jL#6~E3j9wMpBhFr_y6IX#z27R^KGY6E1w}Z3X5Uw~tV18MgF=4+ODff^7LVZT
zj9^~@@ehyMW7~S?FrC6>o_4+8D|V=~37OIG)@3l(#j8zjFcf>7ihvPENdZ1?Q>a<q
zuyNS@sRpRETRx4n$81=bhRdytJuA2}rkYBFzw7h11>Qt%l5-Q7PqhJ;a6b+`Gmro7
zeYW~k=9-6fSG*~?WhveFKFc`EOZ7Av$*bA*zHT{O^N86zuNeWJhWG930UD>=Z%a?}
zVs!ILSwOk0AB_*$L#I$KR?~I%uoi(}i?`J>aq9seJo$k&zRq0v4nbX#x^8!aaD%o(
z8S&ZuPd>C;;QSG5I87`jWGy98p6@&#uv`7#vA#hZ<AZ9&e&Vx16^DY@{GOx+=x_^m
zR)sKgr$CF1-R(+3y3{GX!LcYTU&fJ#*4ixy#B9y#M$)-ajOQ!&=^k66tK(`ovDO~K
z6do9dW8#aEZS7~d)o%WUn5oUGg1TOB?lJ2g753p&rbZePt~Knb9Q!dJimofSV{}8;
z_`th-?gd!hJnNUROJh45KbCPY`Ezz$4eq?mqPRAkZhff1_p=qv$;p!mtXN??{^75i
zN+1%(7Q}_8`-0!|f8MkwCNo&lAV>%S5sBi(Gu@{D>tx&WZl6oI0c<hYJERg_J<ytj
z2IZ@$e5&}tvGbp1#Fq&0rT!+M38zQrXv%;So*hJ)$O?!4VZE;LZ%|kPY+0@bobsdP
zNF|Xn)kEi{IB{!@g9d8oO%Y#5PP6S5@r9_Ba1VT!>U7)ROG;++(*oj_2-6#-JvO^Z
zc4crk&<-Y*_SjXJ(RTCf`QF}Jk!T^@j3S(MB@5GS`xTouC}W0Vz_{feB=GcXn<d!_
z^N<qc%5Ja3c-?DlJ`5W`HbU{8;T^WmzObDngvu};<jCF<37*(JzFs0@a@A>t%{bNc
z6{u!a+Fi0i6R@_K23Qfe#57!Ge@JdrXD$`^lgECI{Cz;QX_z+nFmH=^)Z1*eSeq8)
zE%8nOHyIsS^<ytt{+_Jb-31V#9qEf;DH&;W(r)o>&+KzuZ<vqT+UcdGybn(bB2=sy
z_3^BXeXqm8by6*91?p$RB9N&A-+O|6;!nHndmXvf!KJ8J*{NLK4v%IX6W=$1@?3nt
z%g9ZK<%Ps=QPm-F$*~mUZ30#YlSpF4Pd_Vatcb50M2)h$&%n1-EpSDO8m7jT$9VZb
zUjLq*5JP|?P2XtelDJ@;kASAB27N=d9{J3Sj_((bW(X!*P{kXqHE9KjnlyY{(#BNI
zs38Rr`R>cB;%!+Evlu~tngBktyH>_~52KLPH{m}<A~ce*L|+~kA6DqYkK!?KA(pb4
zq$9`kF`gbzIy#I)x|JG&o2emCJ1;uz*m&K(p#~jxJ#WR5R0bv{T2>P8mF?qdJ_Lp8
zl{!6b7yUgmo-mM_T;3QIdgUbZqIZVIpO2@IGv~<DMi39lOUMlnTO!j5rC@qz9~I9U
z$|sorNT!dSxpJoRuw_P#r^PoP=0lB#+?G@*ep#;CRdIQLrlw#gw@ct&7wuCY-*6J&
zqGt0Qlj9Q(oKxf9i+uEPq^Xg`F}HViUi8HHxZA<r!=%~b$%Vr>?&i4TbpIGl65f|&
zsgH(@jSn2|Q^0SwX*NfS6v?|~`B6zlyr7?N(8yXm#Aa8{n8~YN<a^wuE}q}TyGhOj
z<{Qd6Cf?X5?C1acM02A5&5S=jfQDJ@Uu7wv06F8GgNx$D0>V6CiWy|g!vB%SO4)Q$
zX7NO9alCgpry?40;^Ya<j!LWIKLSK=S~m}d{%2gArws)@%h+l;h-5}@&x|XZeE=Qk
z01SK;oC_o0H7UMd=P5qEth!-lSv}{{mlm_<#t-T$ZFT_J(J}RL)5+cqzL=aXd~_}=
zk3Je5|2o7MP9zqIZ!2eTmB7e=8P2k&PK_tV)Z);~V=j7_il8KLSTto~+|u5g4d8+?
zCmz8NaAx5c7wtYh?%CZZu<87=qTIRhvNCTX(Gn#9FHYu02TY5Xny*=xm_?%r%Zyeu
z#pxxfwbfTNmDh$_i8diOdimt|IzXITFiz0n*99ukH|lgsyuE;#XQWa9Ntk|AIwLLw
zAlazyjcJp#Hd2!0MLie9J7-c1TB)oll~X);1>e1B%hB=aBdN%Y264AAMWH>5?wTK$
zo%XN3IkICa<K5JEb|immj*R@|(S+%7QN0(AML$CPEz0=lo$9zulOw0B-*R^$#_h0A
z^lT!2b&_w)P@*X78&asRZ)P-MM%;COuNqSelR&6+HCbf{eOQ!;-{|TU#elb89nu8n
zL=}~BX1bS;burH0W*}u;W^`z6d>e=2Gi9Ia{YDT(p2@DnACI9XyfB3_7QBQ-IJ*C&
z_z~`eF229PEL4he1rO!}8{)oNHObQI%bLhU#K!f_iI$Iz&(X%=f1Q}g119AO7$j^Y
z51$k7GlOzAv`qQ2`a(IQbr;6h%=X@g!-1jia$117s84kGS@8+Islww&xNSNsRA4m+
zKDR19QTLsJfi{gx2x;_Zal9j23s{b-t!k8N4AuuuhSaF}(Y}-7-L)e$sVv1ExSZ%M
zp<bk<yy%75@!Ej?is2^p+7NlpqYb0tCqyUyJ$`o7r8-^-0_SQCEkkKiRU45Np-*)4
zadDSZX`ltdX`+>k9=IUBs?KM+*>RJACNJ7>RJ?DF&$bmMfSvnQ$76&NaLa>`V`Bu3
zK{0lk5r23H#ey#^A&i%mpB=qCBknoJO9w(M71F`f;l=Z!J<8(MGkt;s%hLQQ5oXwj
zfQ$OL;!K~;AkCZZ!6BK^HAlyP1{_jQEz%?S$|Ti#w6HP$F^lizFS4lufZx~@Kbubl
z&*M5JCIBNd8owx>CmfX(fkc!CuU2Yu&40(U<MmU0+)bDcYJYHX{9Iq(gCWp)vQmQK
zqo1b7Jr443CnOR9L4gXc8yT-Xf>JUc$<d`2K)}hnYkj<NtbaR@TxCR)^DJ%j-{Sb7
z+<y<&C(0ck-zZX$7fmWFgP;I`q~+}!l{Ln(z%@4-1q&FcE()}$sbAb>itpi2z=^HG
z-6%6^IxgOmOAU~<P8pg|9`_7W<|42T0wa0gXF_~U0N+h$h-;QHBhJ+{a>aej(q3b^
z$^lg7HO4uOUNHevhlqqcMWSaK;yJUJp0i4RC%H;Do*YjMWbKGVW0I&bWWSpDCh#<y
zM9L6y6A_G>$%QOS#Qzl_^A>qIDj@K?99g*DeK~`NPK?_I4rM@7O$|gHg?DDuxiTIy
zfF=a^G}i=>Ba$gAy7hv1sg5{XPOH<9|A04caZO1)x0bnsM8TC+BDKgVe3f--JOsMP
zc8$ffk8`r~2iee+^QXoK1<)FRP8K=}N1Pc=J}%BFpnq(Km32gsumwb9$A<>Qm|U#$
zSsWsi95g$#Cf-wv{wD(GsG=j|H34J_=9aNZY$%EQqxRF{Q>%RmLkKPj=S^Hrbj0-d
zuu|^_-C>Fl<O0lFjgATS(;5O#>SP^DN^Z2YBHm87m3If{HdP}gvJ7+{nbBL9#NUmg
z2|*6xr$*x{$a0*ZlJhn<S~VfQb#L$T|HC=<iSlN~Ys6>p2wH7Y5auz^Xtzc2Q`+fV
z#B4|vrwsH!!0)Mx-z?|z&DgrE=z?MKuEJ}2H?*pZ6UUJ&Gdkd~_yP9wAM_FQIlnUQ
z1>3<gHzzU>&haJjgCa6{(Rg?ZY!_Kk)4bSp?~p!Q4=+1fUl%Xt@R(aG!ROnz=f<Cx
z@ohG_NjAq)eWK}Qab6WQdC`PguyqnT2)NFP@<+#$JNsn*vFA*)s4|`}0wyPUr~*3<
zPn{R-P#zcPu)$PSGpm7E67@2XjFaObx`cU~lUwj_X0-IExL3duVqM^=M%ATFs;xy6
zik31uU~GI!Ctu2-8nHEE!+5MGy1zEQ5c<z1{eKQFFS=}I{GV{42-k58PS{}dLV3K0
z0Gp@AD;qHbB3j_k8_nt;518!zZASDnf;>b(#%7dXY#+$K9OVHz+mmO+f3ZKTD}`~m
z%6E;A`*NjNHcXU8#?qJ>l{Lf*waa~@QKXmk`<)Y=SrM-)4DFL#bWXI**!T%iHFBcj
z$p~kND@u0seN((4&;}<xP#AItXGWz>@kD_q@zYJ}mH6STX!tR4t|TZqckxJ*2zJI?
zm<F1FJJ!sK)72!&sWxg;QIF(BXE(+pdQpK?KuB3B&A6(_H_>}FG3ikQNd6zX&O5%!
zBK!Yi?`v12NHT+pC7MoxHT04I(!qk4G;VTJNP~ciAeObeBKEbdtFFDQu50fdD~i3L
z61!p-_4odqxq*cJ{{Bi{&)jF8nKNfjFXgp~`Wi?!zD+kj5eg7H`S{Qj`8-;W8xby@
zW^+tPrrM0ULz(j3k2AyLV!(OOYy7Z^zf*nTY4zcpB#$F+SFDcdW<~D&s<5!srXEe3
zGRb|QW1hQyVAw03(*&>~l~VB%sB110G#nGIhZO>KeDcD_0VGwr;Vt3ulkB^Ll<}b=
z8-;G8@^I;J9%2u!mv)EapO(#Mhy8R(F{>t8=kN?9UvYM5oy@cDd>6VrraAN%)~<h<
z(041tvPjm3rr?AquDPy%c}Su-0^$(~QBykSxytFGm@_gYSu4B11{%YI3v3lpg_8V-
z6pnw%U3Gf+RZ=({iz92AlU5s1mo69;9)r3Agej;UQFexX6u26&T}Z<+kqqGoQuK1%
zg~x<eT~bmDTB}hMDaA{$)3mTq+zCH57cpZf>MAUe=483<k{O{M77S>{n3WA)_R`tm
zK5Z$=7}T+n3PyRN0q)^bLIpIJc}B2IWI|!k4M&DMSqKPHS~*v|kAt9K<eG}GBFa;P
zal8|x0wcrmRp3sm2#<^JX%flCcFK~Q@1GIwJd^<iFu=8q=fYbH+{f*qn(NN#mR6?P
zDZB{h!!1wKzOY&{YF90U1>KnppF?FKK$9^`G&{Izj;lH+^p_x~lnatbCC`Goerh;p
z98bv#1m`O25G=^nEp}6vgd0xbIZ5xxf{3!97cnHcZi^-1e89`mmYM|7ME^hHujFV|
z;_TUT!d}98cxwYi4JmXEoN;ayxxY^cXZ2&GfbRnjq(WYBhm8-bXV_EpP!dDMYq)C#
z?xUgMBkmeNWdX?2bBPvGO*z1H$BeK!QZ2hK<r`^=uC5ratUhcQ0XQj%a4xEoLngD^
zWPaH10Ny~KMh4WfI8IpT*we$Fuo!+Zj$=raqu8QWB0wEn9h$Y+0Y=i(Vmvh@^W7WA
zhB-1ADB(#eDi)Glw|irlzPJ5cnq@Z~GS|&NAq>-UyUPwpQcoQoYD5N5)3EHcHcK3%
zf>54&xjb?{7)moYDi3)x`=~Hb=fq{LuLU{yDG3qz?xx0Yw~iXVsn-ch%XcfMh8xD)
zZ`U!-0yl1UIPoxhinu;{PC_aTHS_b`@`i9#r06C`jKV`&i*zMXT#UHTy?H`-E=?g(
zYq*3`|5fwV?VAW2iKwctD|R0Ab{1i}8@&N?+?&(G`%*vPN2GCb+c^(<!{@jM7laSN
z5(d^XaVY!H`QbD%@d0jnf<*|+@k!^oo#uvZ1VE|@VXl|y23@wmZCf6yB8GHl-}!Ev
zWSAlLE!B;1aQ0DvLEAk#HJlJ}Z8Vt>_0^QWhV8;5f!WC=;St7IQM9da7t+iv*ZtlU
z4nZ6Ob0;M0U>=5v*r$u#M#bT6+5b3N+8Ytefr$|{G2iu?9B!FvuZ*rtHF7Y8*)ZZ=
zM}$`-WOikKxH8(p>S6p=T8C<cAsr|x>hzhRM7FSeHyyB=s*E!T*j*5Io^9V8o=mAX
zyCQ0Dm>3R_{;bPYkK&?CY?m=6{HuzGxGkf-NakqSKsf=#sEau{(73B023II44}TTr
zcjuEpZ)$z0)?TF^c2(+g={FzBbc<*}Xfh~1b4)h{<hdR<Dr~SN?_fTWt`Nxx`V%4e
zQ^KWrj8JL>zX$p?xTf8`z9c*>0^3bD&6Ps)alCby*jl3KLjI}iJu3{9TpsVKv=Lcc
zAmKgE4UdY4sfoHBHfMlcHs8H+e#jFU>?*E85)TP9C9^XCM=5<(;O;sme4t~&f2t&O
zFvUy^h3>}F!;wM<%TXZ5uvSzK)k0M;i|2;lq4}Uu7m*GE{(OB%oM`h;(O!`N=`NAy
zo~a4PiUoHk4Tug)FqM_r@rW!VgGbQOy{^zbQ4?k(HnK2jz!*O89TvLkzlEXkl8#Vl
z01fOpXau4cW`|w&u@wzR=0T2!fZp2>QovyS!!LHv&J4Hc@QYDjlK_GkogDXmGV~Z?
zYmerIPMa}OcV)OlP$O-jDNzNj<!IfkW5X`-whjj{5)u$GA4-IyWyL16#==cy6(KO9
z(7iS~T(pf%5k-QmdNep)BlS*pjVFesh4yK{fV_<+WhQpaorUhq>Tsn5LFMGsr!85O
zpBvz2B*Wi@Ly?Y{JW4O7e7AXfSP`|sb>cgBXYUij5g6xyMi=pypAVcBPV2)oqV)32
zDJ;+(zaV5b^H9<b56vo+=eD05=5UT2`yhgm&5$R<@WGAYqm(UV3dNX_A#&*a>GoY1
zW(Y^R+X&FNo5OS12w2BxOiImIAt?!oq1~N+RQOJ(g58&#4^jC-<d%yM4;zXjK;(>;
zqsHdAohF2_5|-f3EDtAlq6*m(GtLVKhFfRa00csLo5UdGxGyJ!f9hDsDolXmsmit9
zg^@KT$KplKbIZ!ZQcwtZ!rf$|i86Jbd$&1!C-NU154?bUTgcB|s13u|A<w&5B`}BA
zhAR)^G1v~D2LT8tb>k<8ZzZsI5m$@c+_S=GP!zsB1&2nn5!?Y{@T+RW%{4Z~Iw59&
zTRtUB7bv=Z4}Ow|F&5s)?z%IGJonSA@K9tBT}(v-++mZ#zv2Rg37z(DKAU|+I1O6B
zOk*pno70j7^#XF;th!LPhkY8ZS_Z2zV;c6!WcW1_f)Ro%ticoxg0kEeZ6RAIgaXqD
zP8;!{wMxFbwJl8Dp8*-uv1`#Nm$QRbPb&(qaJ2yumuIGo$^=0byJyY_M;*=MwAzXO
zj;e}RgX^~H@bDMJT~KTY)Xx|h?Ht_M^Fpb}4IVid4UgMcl`vZc5$>%Fht9FVt_l(Z
zh4tZ05q_0=sIN{thNws3HmeS^rD<3^brV({DlnoXRfZiA5TU%tU?w?XO9N$~zs1m_
z=PwJJA8(-Sa@&gY+}p|URz^H5iNtHIIM9e~W`q-kX2?kx)Zzk)ve9>+ofGa6Ll>IB
zWDQLym!IPfnG=q!V1Q~@grv@qCQN*Gj@$N}utlT{3Zx*U1{eAqT0K(@D97!8YPdrz
zNdj^g+YB1w*g!>Aor}VU#miyOuMZ8i(7vuB3{Ssr4<jYQ;0<k%Uke8t;tJ(yi`|yB
zVGU=(u}@CcRHa2q3Kt@5wuD`E?p^P9j{Eg+Gw*amYLH}fZ6GvJ-|cFfDR6%_h8<?D
z4_DaOE;V6XUz>cqw7~*u>$($<3`Nog)2r0_a;Vo3zR>zqA`7IT7JYjotfe5|{d|5n
zTC!0Wu?1tuea+!5Y4<dLZ)m8Few-rIo;&NpzoQRto%C7gwwN6*Kg?#I(trSE=6Z<O
zJEw;2M3xZkgo&u+^g3}%Yr+=wJf)>d0`w%$G{?O+EzA+|&KEltHx$n$5;Vu{d2x7Z
zk<BrJ1Qx`nBHDkt@8<>w3UFn+3OJD8<jio|9yU=|$pADPb3y3Q&H!u!+Kc<4u&CHw
zaYE>e5tN5%b8`|c1PKF~|Lkyv_#7fvB83bP1ygzjxP1nOHznp_B1t4_J9!p4RXJ`!
zDr~-hmrzxd>V~197<vEpg<(Ian$DDxJn0_qaOxs=P<=R)OUW*}-j*DZwtF*~2dfrr
z!W2c^Pna>Mh5fZ$gqBoAOEV6(T6~9~%_kRxGHeTccp~n9GXA7N5YArcZay(=pnKny
zcmluqHQ^ZWjE&ouxe<tHxJ+{08>feT<jhi5zu1wfctm&%kVZc3a7Gl!Ay=^?1#{fB
zr-bdr9J>)CXw<ww-P-@9&bjWcSz)-SbAcNzPYFC$#;p~j!m(Hgx`P7Is(Mz~Z+Cu;
zjJejao0IP@oD_1ke$;vqxoC?g%#C~g*D#>kUMOvCuU+eZF5qI^J1X=PMZ=OT#{!ac
z1IjZewB>1`^f(5J-RJ}xlLcFX)E2d&wvaV-aewBz{HCyz&R7v7RuM>yUx?b{*ieTS
z&wsixokze5zg!d^YO&eZid_Znotlu6*wuAk5Z$vThaB-%k`G!MYHMW*%BD)xqlqwH
zjB$XQf~9P&@fzzvv3tBd+_#UtG6)io7NN-Cv&ezvk^gt+kVS5GGJK>nSl^~e6~L*X
zuOw^8WCM6F2?*`}hN+=yB2O^@;@ia@Ck>xZ<hWC6%@@J0iIJ$`>p(OIqH$6fFU;;H
zDPzffsUch`Nm-;jS)%}V?%MXJh2y0!cE8MsV_(h;%cE#CzO`K85h^2D;0~G?#-WcR
zZjO+rI3JzNT|PRzxTVc81bpap65xXS;pi|x<TnqY*W?nkON=_@p;5e&T41QcLLUqx
zVE=^k!)d4S9F<pX9~B;w<9;|YB&XPqODbB$Z3rdGac5r;{w_vOfKe)0Lx>kMU{-zX
z+;I8naUtu>tpx>cqhxrdH$O)QGuMoHZHd6mam!o6>pDOgW8{37NXu4>aQnLx&kQdh
z1@kNH+eSiZewpWfO9q0NwM@gc3`kmvpas#=0R$3-TeEow9Vl5zy#O&aA|VUhZ;Qf(
zBAQazx!XoplrP}+KPe1AmE<cXrbj0O{iogaGs6y&bL6T*zl-W?E?0NlG2xJ67SP34
zkmHUR8TQtlhce1)MDPO1W6<Qf<HK3U+ALkj9GCc2BzZBf^$cQp?u_>ET$CCy(6@@g
z3m(NtE8CwR7DTH6<h_A>0}&#k;ff)GOUlD4I6R;4$~%kP7LDOccqhP;1%y&n>qn;K
zxP?>0)K0F33eq&Qi2|AU_Ve9aCx+|NQd@#zA82+GO-7Fhzv@`{j|3?#4!e>oJ2qS;
zDvZD)=^z>mh%>-$RuMYT>IIqZJR{eAl?q!NZ$L2rDBP3j=vrIkT4sm4#DenUbSz5P
zP6Stxdt^zN4n%?6xK`w^s2Ixwc)`4|1Lwkrx@f4FyO-66@{@Q0DvildqI^L%C$s$U
zaC!-kRjY{wr>!qIPp+I1_M5;wT{#n_72H?V#+i7oKv%^nU`@|=*UStT^swop5^2bd
zkEF;|ObcU#shqKvFBggA%*v>@VMuqIFAN_<169{!!*)13OcNo;a1zZzMcJ^}4d;d{
zC75O7-Nr(fwmDGQ-i<gs+`plHsjH(I+4HKF@X!ET+ypvl)K{zSoGraTuB;`~!jT6V
z#9#`t$v49mEU6VuXF;G#xu7|L2*_FHrX~%v&~3ILjE)0PNob)JLd2R@;5JzpR!N!?
z5)$Lo+=dRI*&vW#9~W*D!RSWvi(T{Nun?x+4b-x(RLlzVd)xk}R7$%f@(Q;_V|bV8
z0jE@EnQe(R&2_y_3P(wNimDnX*&O{eR5)?xr9u;D%!=S0Bnv9(%w5wOhDR>>|G5*n
z?r&4WWx5l{#aswT9Lm0SxWT|MgDc23qGTjh7Me&^(*oD4Ec_&!XLq{{y7GY+gsWti
zf#G2K2EsBBGucCv!XkkyO?lP}8_IXv&IrFsZy?hSa*|Ti1yoKpxPMLvlXqmsu7V8&
z{OV-5>rftJ;A*OuwGCrJzT2%ToUNN_a$YT#1_@^hcy(hJh1G)GIxiSDgF~l;e(~X6
z%~`}~w!qKpqd5@|UV(f0h;Y7)N4OGOTWZoe3&@o3`YZ}R53=b9mN)jPxWiwkhl>Oj
z=^mZN`8;>vl&}GMt=(0035+)o{EeGJb~IoOm7g2yWsW;%aJXC4CJm&uCR!eRTM=%P
z@)Rv(iuX}OU6FfjQP?rccSw*i3=5M>k^6j6_zW7!@7KBFIG(DOaHM1xkq5<eNv6V!
z38T!P8a|LH%88=P&VdKP{kT+PFADD?)EL&Ls_05GN2c`xcVkuf!rSkM5&kY;R<XoT
ze{mRjvh6jp0MJ=ccUR918LjqR6a<mXG?1wx?KYVfGNkrnLzKseTSV}5u6z9A@B-pD
zkEbZ<UMYzb)^X3A8_tNr>Bt&6uZUm-?q`O#$J=ks_C3aGA|{%po~TOr)u)AX#Mg=b
zGY?39HWO`H8U8BUoP2RavU9_*Y3I8|$A`yZB8a&VR@f;JY*`TA&`RVhCD;wkkr-ol
z&$KW+Vc+cLTFG&<mV^P)oPlw47Lpv6?_QV^rWV=L3Aoo=jVI?zEjwsNxPbuySiz?-
zB;EGBd?GXVn-%^W(X&iKfqbWE6S;2o^sqQ0L#cFZ5eImf%Wnx8lIW2<*7>yuxC<79
zY{UdTM(BuCkFe?-*LZBm)By4WU&hFXg@(DXKoz=2#)UrdBK?mm1Re8)@E<WORj-b+
zu`rmvpl<i#uyB%%K(^!)<unNl%X2p#7_Nyh?Bdg=Q0Jkc3XEr_aZ>%GTd)w9h})qg
zWJdwOVxF3!u~>GLL8)+He*@UsXec&QnhMkQWG3@;)mGNYp304UaY^_HiO2ScO)v6w
zY!So5j`6$e>}Yvz;KVRSN2+XejJ4n?v7xBiId1mRp#wI_$XE=jX`fz!!dZ5o96o^R
z>Y|wdMk`(j@Co6|Na`mv+NmM`xp$8V+eDGSq>5^cIyNfv<-3;?VN{&ETT~&!ALVPu
z*hk@Kt!AcFb#+%gF?=OCvb((w7F-)1j~^J0;{`>JFQ{ahd$l}_#?;+S^DlN!G>86a
z5(d$iwUfwZ_~i8P3XgeB4vX%D8oTg{Bg3uG35L-S>`>qp*nN%;`)$XX(gAw}W2eLR
z3f<XD!cA?qT=O=g2q0-!hCSFC<Q{1OftIR*g190@i`?c%hAX$VPe7G1elkF+qO6q)
z8GN!T{JtC0VSs@skoR71M2yJL9QV!KaHr%+1hZrfLaZPRM*MPg_(VzoN+kDpog=u=
zZE$LMRJ11@u*gNiC+*6cLl(!!X-`Se@eOlJ4!1FTdN?IsR6A6R`N&s@Mc~#wGr~gx
zii82YAeKu{HC%+Y@b;<pe4Y4+8+d;BRCkL4SlvR93tUxoXw!#v9SE>8Vg;?i%upJB
zh#KB#@_)H0|7+m|svDPwG9iY%w#{`3^Ulh<Sb0QPGSZe|KA-5?Q<)35*Kr}Y-9A`a
zNs618HOm@4Av_zuCM~dggm0d^c1HLU%Fo%A$&VOiHu7x?U1EHgzcC}+#?H`XRKbU9
z!=v2H^wVY?i;O;$<IQ&))`XSfBL9ae6A`c~yeHvneRFM&JFhPMMVGxBcguC7Tf^@<
z{w|^d^;TS}HvIiCo2Q#{Gr;}jm~iAk1_<W^TR}3#*U`|{^=l4`kfQl=cZIsx{W&Y7
zx)7hWWGT=6nhMhy;o~JzRXRgZ2?Tn#E_?&{yDkf-x!b%ZEJK2kgp1gbGU*DLM?=}8
z!`VCV2IMAsj&oeYQQ;Ha7+@>0x+x*wEujq0m4{2BhB#>b*d(ZE)%Z}=mx&Y$1vLi0
z6;FEovEeLq9p;*nP=G5=d4>oE=7P)$SN+co%5ei{gu8TuWXox)ZAx$%DV$X3Ru_lc
zXWDb-Coe6EG8jWYJv5An;`?+(Hc8WDZ+Up$GbV%yfA-SH#Ujl9M|gOVJG?x!39Y1w
zr0_x!OrGnWt_;5*7P4ksz)S;)LYg2%{srtioLiTe+G6+fY$|>6W8Hp5yEPk=C5MEN
zx61JPaSX}I*%@e+>prdy=Lj*n`mag3m>*W5Jwq*`j+3@IL7Ln?XNFzsY^Y3OkxeZU
zF-S%m;AUPBo|jmn3JQexiSiV~H}<ayw?^?>etpxH3dm}4B~!uye3_q@k>wNv;mIe>
zca2Add!h)qHZCE@o!%G<v4ikyk%cttP(Z}NGsB)3(*TdjJtJDN%MdDqp~QWHR3(PH
zp0}sK?c5UfmGEGqdxLs=B1KWR9Y6p1;mDMYP=`VS9nIz3KIermYk|>vE<gB0X?SXD
z8?bLH-ay6%5SV*?>&P%?X9l|+GWa;EA{?Vb){T?!mIKwgx!H^otdwK3a0bbFKb#nz
zD73A0My(-Ud_O6yMq**w|G%TF!0k~Hz7-iH7=|i9@-<jk6?@EeIZMMoI6-FUYEOm|
zPMR6E+KZRaFR|*83K-cZa+uq+AuN%w0Ffg0kS#(~h=H#S7YX&TIODM);taqOIPKmo
z>lA6y;R)2}W2l(Jttku1guOCF&Ru+P#75)~K;1rQdbl|nz)Df}x|(?qsgDS6b6ffR
zbh(fb^T91Px4b;8j+WG}0sXjUk|6+N;Mr9_Mr1#sE!-Z($<A~bG8ZO<y+oV3s8QVB
z(UswPaVUjqSW*Bd#g=hG|Lqtach~w5D{fvI&VW*{KQO>eTpIR|Bpk+=fhwYyMDF!F
zv%*l_>+UmQh^kl`4wSHv?@CO#D5fxyJN&|MTzuHo*3XVImxfxY6`1BKEx(2eGOqNZ
zkO@!Yh{c7v@*8ejP3RZm@h58{eaNN6w|l=joTl{@y8lBFWTvC1huUF`>v|`my2o!P
z&j=Y(zL500I2u9j8Ph{M1Zw?(Ja_)|P#OnN*U|y&x$e&~;fGTDc{*y&?3d(D=DFL(
zhhHK4>~NxeLUvaQ)45|V49^|QM%H6p+@_}Rtyot#!w|Quxgm_eAj|Vo<r|@eqL;gi
z8^di;K<Q#e;u!u~A3lt~mKqO>(4Kjt&^_D`b~}v)iS~+V3bWB>OT)RsY~g51QZ`vF
z=m})?Nbc-vT%r+=J0lr7#Fe`6=>o3c-8G>^L@}xrGn<Io#$}M_PAm(jfapLIx`e=2
zn|3EiRGV~kcw&A0&3DIEgzZH|ySlpa+%3)FfkDheAdN&u9Ick9K)eHVuIjk3t@Jaq
znM(Li$1djZ^94h~LYNurMIIvCPf9#q;~aNFb*P8=+6E)ff=K05hyNf9@}4q><eP<=
zWpk^_TEoSX5X=EQCuz0`IyDb)Q_l)h*dS*^HlP{pFcIXqc}>BC_RPLkoZ=_%lPo7f
z#Q~?J%wakJ=@%Xx&YfygbU8@KXd5vi5gp*RIJjnse5lx{+je$1I>|iiA#bj`etNhj
z;<~lv<Sf-6;hI#a#ImUyP?;h`jK?{+5C51I?$8DAhHmI6hhzU=Y(F1LZwlf(a@_VU
zVZ3le#lkT$;I0JG9;go&4z>5YWHRKq+SV{-F27YADZs`QTIlW^8TO1gW|2G`g2emW
zV)xUGFhjhziysubMP1mDiFw#f9AjxOr$UcWjA$oKX=5KbXan2>$Ak;y{NSV1z(;Ro
z(T5xqazqKchxWkmzZn}gk`G$5V67zvHP5{?BWyUso^{C<g-m@lBdkD|<)lZfP2wzc
z-_8zGhwya06=If}TpxzWf*|J*EH$mkDf?!VWcYSgZ^e9+;H#A;N-aQHd2vg^d#E5<
z_8P<JAu`IqUQoaDbGbvm?HIm#iV^%ViHeNTYb~lIR&jlYXN1q_MvfU*9WLksW6@~$
z?HaDVtG7bqhc;D_LN7lp;mTVb5>DHbAIr{2QUtOf=TMLX7n|2BWc`PaFwGi#2y>{k
zR@szMQkOw|G$9A1XUiHyhSh#Q`R1GB4?Dky1b9r3Fy+7TDSf0Y4~+mpa?bO&44Y|Q
zt`PE19Kfhp?B;A7E_sXr#8Ltz5Ppa$B)qfG9o081d(_?-K@0|*gi=Lh7h!CE)-V0R
z2Iwq+pQwT7v>b37zv{Q@u$jg;yl20s>OXnWAMX$rK5xJ0{!~^~A*`uDu1Yd~<H83Y
zFoZK{W%(=)!4?KmgVwix?U%gqKVw9$VLNTzJe;(~#^?+y-+{^~Dd2P0NBs*809HBJ
z^mA)kqnI>MTwPVZ`py6FS6-r;O_FL8e2pw`ObvPN-@o`lS2Cio#>xofJWM!6?vR48
z<3l!}*t}Yupw2=kEDIK!ZtWeO7x*x-Q5uI3i!?Hkp@psgw_U<H8yZreHMXROh<5|L
z%hvdT_uFcSslr@U1uIY}9O>c*{^ozZ&xVwauk=W4d5`6U-EOg^lr>aPE+0J$@PaX$
zZW~rTYXf6By{x9hTBN0WuX}9!uz`Tj)+#IGu>;*)w{+WZz|%aJ2exUZHZ`V_n12YH
z^(C41j{nOu3<Il_LJ8neq+=Di+jj|rPO{g=R8kOK_l9C|RT*O5!w3ivLDBXK+_x*e
z9c_VyHLeFbLVF=*yN5|yf;x67+A|^_2Mpjo-6ovzt9@UMUpOcHOU16=mf;xz2I&ez
zZF5tr>iI#wh$sEQzyFAhj3?*Guo#&Td27ji{+I_Dz#I@GGMhODqRB{vE_SKnu;cIc
z)>uLiu-NLdi6~Qo=<09$J*#XC?<Q&BS(K|VM8mYl@h$(!uh9pw_)}(ptQ<3Rk=Tyo
z?cqM*mpkp!55p)}A(gI)GgH(L#+UvB!|uDRM<^&ywOe>e_w)Y-7uk1iXrHiH=UikK
zSR{m`5+{jlbbsG9TyeXNO!=`1)38VuBhdS{9m2(|gm*BL$Y?BMoauk1JBE)1N(l;(
ztE^g4LUcpySA-q(2#<@36u3!J0+mXJTSK@A(sOc`_73gB4n?FVQKVB42(dUGoVmjH
zd%?a)M8Clci5{ilzlGu3o9q>vvbsqHLF*$u!wFvOmVNKf5h<YVC>X3uOZATeH*(W3
z^j2U=mnmZ9qdAAvAUMKC-}oMa2mV&D4kBu#k@dMLtNdQNT7{rV3)BYPrJ63~m`vzV
zO}oe(mpMH=wSk=hS><HR(jW!ACB&@IHLdm&b)f-sU1L?}7cs!+xPSiS_Z2jeG1ic9
zsT0t}8P7i=2Rfvib`4J3>`vHoVMD%Wm~;;#7++CblDIZFKd2yg@vA@lz3<y6MQJ&Q
zc;ToVQRvRuE)-pAW1MZvtaaa`v@m9=^H=+}IP0)fCB2Gd_og`)bRBpew#;4}UO5wY
zTm_U#r;h}h?QSdx2VZZC;d<BCrnwxIFc7c*^rt*wL#UGCORCR2z~!y-9WXM$QnqFm
zt)-0mU_04w`;d&(2OTqg3ZhE|?(}U#>B~0Jc!WfVOIIR8L{Xue_Ju!RM=noqz4|HP
zwHx40=^b8w)xK1cQhYO|MyTLe;6DA(-w+w|SZu!$b*LpOOF-|C(pLXJcLx!6w?5%V
zA?*L}7e#JJpKxwO>Cs7wM0K8RCsCv+WTD$(wLki8n`IEGtMS6CdA!?t&v5F8wq%iD
znRWm)wg~9b{-MWZ_R451t=y&bEmCgl<2^$vV%i`Oh#S_)uf>)NHwy!GKWXzxZ&kYw
zCa68PX=wSIeX6vT`U=&YD!^EW78INYA~hR_vmda}4oVl}sDn*{qbjnOoe}npGQ$6N
z3WWJ(8;9pbI8_0tB7?)F`5u)b$iOIaz4r@0p2rwgMcrbKPIZlo-2HF+-~Sz-+Ywnc
zd*P3(ecNv)X@#SvQjbLf5)g$8xFEb350#6U>I4o^JQI6{o5Xqfe3CSa`dL3VLDeK_
z6}$I-@OwmBqL-3&5lOQ1p(0y+=Cj_i*Sd&LdaawpG>C#DQPhCmL6YCtIUFWnQ~wTH
z7`MrH{+<=a3D%@qiwpt+<5EUw=s{ZS=6&WHBS{_sLZtZ)Kt_z5wpU26QRgQLgl{Yd
zUU%3ter3FRU3pjzxRU*yKU#-Y<VG7hP-aK$6vm4)Qi9!I8C0;o(80(DGzYYNa@Vjp
zN`hlyZVjM=*d;puvaLgnwgvA1<juAS1ad&J&pzQ4iE!F5r5vKKSXZ487uWuaf8;hB
z#J&T`$9$0Mj@T;PdzC%JlMPL+KvXC|;xBfte|Yi=8yN)a?Zog{zG2IdxY~wF6SF#f
zK}163x*q-3zO=4l0(^o}Hb?In{&6uBAA6-(kNgQln7P&S!<2=6NU@apK!nM*gQN<t
zCe<-@3}fqFL53LM`pgYapU7iNi?f^}sxq<r4-X9||E=54seM-L79SUu9pCLS{_A4*
z%bf7&Vw<I`GWj0B&8F)kaeYHE67ZPyR8qZ}2<04v;{opZhVb3&^=Bz?XSIbzC&!-~
zKI5<9#^Zq2J2?wOroN1ItTNds1Vq>6(?67jU#51Oi_2Z$rnZNU1w6*`vqqGGHuUI4
z<ep3$4Nt=&t>m#NO;J?<LVIB%+*rQeJe=G;?P0<R-5;yyMpb+GRF6^12!~3r7H)|f
zH6&Eb==Nj0HrUSRhP?#_Wk?Fi%4e+s6x2hK1ATlLkYwzCk1W@nJSW_yBSSwcpQTz{
z5Rq)M^9H#5{lkFu07!Fs_m8>Z$wl^piQ=96D^|sz(+>(2t&Hh%&_FEPgvFxb@ckGb
zc0md%>$r1T!z-urm_<R?$lOD=(_v_zw02TCjd}Xcy4OI09G93M&Yau*vGN+uJua-&
zQLOtlMPiCw|2bh<cgP}DBdX60J-a_<?gDr0yzt+7-6v6i$a!<aEr0F)Sa<iPxnXHM
z9w0|vt5MTzyzFF69uV%U?EVJ5Z`|TJVZ^E3AEVy5p>sm9P?8pcKT5t6jmjg&6SX=K
zQUh&dc+*Pgi6jT3eJ&enkmq(jGAuc&`-HT{bz|p*?9;kE#`HVDU2=TbQ84O;-5~6v
zVE6RyKbPa?kojSU?$AJ3FLpQ253R>_`*nUcK<Yg&Tz)K%F=tb&Wo9cC!VnwtUHMUA
zk86335!BL>Bu8*h&?|qc5APIon~2&jB>Ws3M#XDR4s9o~;Do<BGz<~3K-T@SzF`h|
zc%r#$=7;BnMeEKTZdT|HJ1*QL<iT3^Bj*yS0wp@#9rMFfFcg8V%jF~+8%Npemxc4z
zbfb4<Z{x>o50&wlyU+xpRgNwT6DD{6GVTz!311d?Kx-@t>V1TWMnM^<Nd4k4@C=6X
z+~^<ckr+%XhKecH<gJmRXesN$o(H!f9R?Ru0qJMO?$}YG<XUJqQO~5b8gk${=Qt0U
z5biy}21bh$NE9SB5(wT>6P}mgMzwSVK3D;n==r%ttl*+y;e>N+MClyZy-5B5?>9L-
zG{(o1ApmG!@8O$LTryI@cJ222p~};<Zzu!`L2h(-XKDPnUV%~)00Jokm+m{6=jvKO
z*+a=+Xu0`r&Hmx6bM5y-upycdL_`#1;Hhz;2`<B82Q{s+a1qKnFwyc6VVSH$a*a2!
zvpfi~?!(tIg=lBxwbBXFsyvPw@V;V7m>Bml)GUt(chG<j#)dOav6m)DR5a@kMh{fu
zV^ZO@^BF0^W{{%wc4e}~Bp->4Megma@Y99s-kZ4wNTQgrI=)mAMxSnDrOC#|w5C@q
zVnI^Cj?#JLrKD4(45sAh64CPW_|SWf4Rk*hlEa3Dtg{&bhoOWc;}Khn=QC5GN)mtq
zGSJJ@n~kST>eAcslwtP@y2cCw2`27$N_=ICG&|Z{lI#o@E_Uw^4+GD#$>jIsWH2tl
z^E$?bmmBSI*B5fY(oaT)f1mk3Ba*kk);F|bBKoNAY03`ui#dVR(6CX2OBVzycH0~t
zHkJU#K4b_Y`c9YuUNG0Fp<%ByCjFQKT_`MA;0g~5XPg*64SXw`s@9-$DRhBz`DJhz
z#JNCGV$mrQu(7MXF)OTyaG#KXh5{0jxs(t)vM#j9rlgw%J5CGth>h(1`h7$0JR1|_
zC1pkX5AIzeJBZ|~4TJBB>z07aqICpmRL?C9XGgq3!&Z7}J{?xw7Zbx?5z$A-?TC|y
zL&8&w<2-BX=kimv40W$g4aM;SccQEG-Vx)&opD-XLZDsX50<t(mo+*JI>Y7|vIgv?
zUIdghKU-xJJ{=y;TVO*&$<Sw$;DV}UY&a$KzSo|k!J!^NQLxgu{-dJ^NsgpNozzOv
z(s_XOIqvxh;SwF8e1TA+wS&d-m^|4QOlZcxX*L?%PR-ajpcTdL>4NaDMfSDy&Xr;`
zuq3RA2MN-lqHw;diC%GFC_C1EyB1H1xb%I;g}Wn)(y<&QHFI#hadjnO?}%C5wl6co
zy6u;l;42o%nq=d7@qn=LeEW_R!nMRg_wk6s!z7)F(5TMt9Dz;nw>Pg0-~H14xp_Q(
zzdEdNQ0Okd$NE97%xl8UunpivolB%4nL3F-;PY<ylJLtnHndLl7vks9c%azLstIRo
z1v{Wv4hBJVQuL}^GIH|W>PN!eKiYdF&ZZ3<s+~y`=hvz5vzSya4jB|7iccyIA{SX<
z>#M^pnd_}j;nFu=9bW%~H~37Ws*PhWX=otj8unS>_P#MJ{FW~vVm1-0O5g;QTXWp!
z=Y&08;_=$OW?>|0p1B6pqR?VCP9}H9)uH%zTL{t*a+|Fq8+~=NYeGq(aadv>xHBdg
z!(j7Venr@qZL#(Vm8rUBLtxkpwvN`Dg7<(z##_3vz}%@NQLNR?9&QktQaJ}y#bON=
z;5I-u9=ka-eqxgir}Yu7w6TV0{m2%DuJ)F&+kUnNI>kV66mJFe^4$j)hQIc-0lN`(
zgmfGA$}Lu|&Gml^$L!2#S7<;t4m~H_12ll(P!i|S-_mfvI?0T8hsRdf;CL|?8ILL3
ziQ@U<jbYaIws?#xNW-l(S0%WbI9|JK>;ihZ{GPDur*_g@HVS}n5s|-9g`sGRmWI|0
zn_zT`sWT||jJBn%6evLH?CV25$fa{_X<(13PJqh&Q*&$BYu5+>n!2QMi*UXo_w41N
zLgv)9M@#UMNczHS!wo`jm=N{8N#X}!7~WIoh5dT*xa-fw8^&D~F4(a9b87$PxXJ$r
zdw>>96D^i&-eWfk0`GN7Xy1Yt);GxIxZQe&JMZQdm;;#+kS=6f_r$cY*R}R=9f9E8
z8z+SEGI$UfDTYXdX+3!i1=0g|f6gC$7$2bg9`$6Q0PuB0@!l``dk&0`)$x$y=Jyi!
z4*A3%SY!jED%o$^c|rMUswchW2Oya;)mUP}=B3F7z7;Ou;jj6B3$+L@TGN!alvBYu
z*R9$x{JNJ7*o8<!a64%yIcKb-;~jtILH2`jblPcJJBS-#fXjHxU(;xVovSBs6gS?B
zK4(C;$EaYrF8d{)S!|DoOO%q;X(H7>vA*JGE+R!f&z<^^f4szgGI0$xYGmXrDwL7)
zq38TJGJAJ{lj@-z__BW(RfBcHjN+wG@csbzT8IAu`oZsqH~mP&h)GCv(V;N$ZIAmY
zo7z+)XxMe8Xg!vLtylQE-u7H<Rp!fRQKKL?+UV+yL(jk1XjceAA9`;Pvi7lowJ;F#
zymy)3ulvCg6<*xsU=>6*yETE7iw7Fp@2t=K1}L1YI0oUMH4y-AZ3$0x;j(NS8mH<H
zolYVhEgr`={rCuM%1Ep0m!cL8yC?$jqF*v1zDU>f2u=!1VuE|oUz%$JB_N$lQbcic
z5i;KP>CFs-CZrELYmQ~$D(?!}1V~-|gnw&jTq=cb>~q%ryXFg@B|0TiS!qNCmI2SW
z{8?X`WzR>8X-AkBs9MqdxBbLJ;yT3Zp)<9_B*8Qa+|v*Hg2QcyNG}jNt{$fh8Nko^
zo)9U%Gmez9nJ};>atGKoR2klO@b7+Q+#KXdE);Tx6ezs%d7lv>HTp-$S^83em|K75
zuaB2X{FWgo*L(4MR?`mG<c{gv*m+5*1>k-Mx)Gnp@K(e=3bg~?-`@0hiq3GBcq`M`
zhwB4$8S=e<c7hF!PPA5Gq*IJA0uCjbuY26@8*#i;v@G6jio?QcHs3i+*~8xIihY1~
z_(owPxq`Xal+{km!s5rh#lv*@YyP(gS=s0-t3e6sl^{kf^XKH-3*)Nrrmhvw6$Vl0
z2CVcqjEbXhX$i^1ph1z`zrOLKBX$nL{JNG3n8OP249>Hc1U`y=M~A9jTXdhlZ@djn
zkY9;mNfI=7Kux1tz)pSRx2&fdg@lmRR=(&z8)8pK8YYWMlqihdhy)?4h3=r|{YUY}
zAqj#t@p}vvyVsWa+z5^`qCU(gM+yNNTdq((r+=K7$lUZLQE=)}ulOquwSi$0QSCH<
z?4o=8$ldJmAVSV6lC`YfEUMfAY~)Wo;QL2vThfYBEb9jmd@NyyH~mmaG`a*bG^%z#
zzUnVt^Oyc<1ZjLLP8xxTE^x3g$o9@B*zaiw#Z5G{gzM+K`elB`xH!_9F;c~<n=(v!
zKs}<n2M3nxwtL@y5(y>&ZJ1Bf0tz&Xvp!(s@M_$`&}utN2p#C2e94dO$GmdpH`PYy
z6=9iiBOdhIBAsaINJk0$J|@aSXCUf5Uh~W2ts1W?+;Phw2gG*pYX8+(TWBW<M5HQm
z^I!D&@mew6%Bq%>Vor1w2e_A>_JbsDDOVsReSuP!4V;wO#kYFhj~Zlywv48=7sz5F
zUe5@XBW)C?B!;J|HB2B1Mq(n;>(3eCd~J>}3rJpyO1>}<xb&UR`T>zP4K)L}8M@gS
z^x})x{RWU%NqAj^LJSWV|1;#|_gPz#J$7cX=C5?usgOpc=JgL(`JS}wrf@su*(WCG
zR#RaOGtpleeWThR)z3<+KTVP=)r;Uj&wcM#z8{OWE3t;6YjYW~&dghd%^tTZ?P3pD
zk}zqgHN_#1`n}aJslZKBf0NW+2#<8`b%Zl8-?C@?b!u-CdpIemf+j#J@K3XZMvQJM
zU%%Y@hfiY$;G&GY&h|hAU#Nf7BhUENYRjz3477!_W`y{nv)#@w`4g8iH30xv@mjLd
z-B;B(gPsmDlOW3dbD1w3%a6?J5xW;*JW}tJyjs6J#eNFhvJ?%qVnZh?dNcFoKV{B-
ziK_OpAE@5EJk0Pr74CQU`km-bA&9CA1hJM_ln!b3BrmF;z|(ZC)9yq&(OCq65uf{>
zH(4VA&VVGQ7K-g#Cz=m73(wH1P#t{;JC+p^kV1)RzpziJqQwR^@6#QE=tRyMn%W&D
z!db+S)qXoVbg+oYNsNEiiRJD|{@U>d#8T@TrjAB6>ZGRd5qIR1{>+x%qj+~P<$z&4
zJXarwL!R?n#8xacU#Ltsxlnf>v$MoTD2Kf2f27|D$1|23xcbiiGwRjxw-x^HvBmZf
zXald?L8KcmgJd+1o9ipp%#64$Do${Es5Pomo9)If_EocOL>)t{C!-QFW7lz^=ip=g
zKs67i0SjFrJCFtH8i5cIOSB4n*Z)N08%~HWj5;E;08U6-y8J&r<7C_FcscOe8YIS8
z@0)jC@RzF5i!%9X&ZxErNV;s}_AC7tgE%6^)+jif<4Ywtbuy=<Tc5X`zdAPgz(drC
z&5(X?v>71}E!$oChCfIR{s=Nv4(L2QCNdVN)ziTP!|Io9R{T1u9i`@5ZQJ=}PxE^@
zADa?%k7#nSQ^n?k{U4l=8e}BrC8_RZy@x+}%rD)E=1OYbKxn$GB3v0z<e+!`=G9CN
za4@3L{0K`2=X}v)e%^3<JdSgwMMQmNYdK?D>f>+t&(uLmnL#Fz($&)%g0;2!b~@cK
z*SJ)x`p3~?2_1&j7OwCm{g@8fAkn7AF_hEh<J*4W$3DtTdAM*JT4}AW;_K?Zxw4mk
zRPDP_TN17FbeZYLdeznb^KW@5Y*sUzwJjV-aO0g*ZuF;|WTzrL0RHL{mY|1)83&;N
zoX_jNR#z3+G*q`H+uG?x($Grs4>{k+G_;?5*KhoFPk{;K@9e52e<0*zB^b_H2?rr5
z2h&}?j&wKL$rMId5KX3*hNyA`DBZT$zp$4fC3d(3g}r&Mz@^RW{RH*7zzA7M6G;hu
z?R*>;9X*hK^$*Y}oR8DIu#M(coDi@(WTn3`VV{`Drqt^a7MN_oQ0Lr-Q+!^WPQ^fo
zfy9c$Oposz&b^X-;u@E;Jrx_Rl@rDk`?q0E;a4|p?H~BSepRN%L^N>(w{$7){)_*P
z?v(V=7zY$-TxZ0rZiPQFBYnCJbqy7u9LI}kmF~|k`Hx=e8R;C7SOc{eX?{Z=xHEl&
z`j+5CwF`~xi}0={C)RH?(JcB-g*SfsOFw_ySOb_KPsRZ3pWs)}?SSL_$Gh-d3Z|+V
z39dHQKJ)?WH;mdmq=PtPW(7m&(Ez1zr}@j@F)+rDs`t6kQW}OqXd&5jnfui5v&4S$
zwDfu!JwfPI|2ErQ|FOSA-N2015!i$h7n?dlhFDE|(qGY^b*j2%#<)tE1!y3I2Rhqb
z^@D$emaSZ2^|EhBHo~R2!YZ{wj$P>%yoG}&p$0CLKFk8+X_YN91qJ29C++5^y~~=c
zKpJ1=va3xemM7hyvySnr|H|YFE9Sjaszc2lWk$AgngoW>*!LWN$|*KODXA6B<#JVE
zkYLr9PxA-X*oa)iE#Fg1foZvcrN{W)X|B#kVJh%r88I;P({gN_e;Y8^KvlzBOw#J-
z(~|FB{TrBpJOlw3qoM3H7<2vC{`X6GuJ(A4XUK>;Ea$l7d%pG$`+X^iUn(Vr1D((Q
zv|V^jy=0X2Eiw^#0rCOgX#3T_aW7w19CRl^ZzI=M&D=z?=sowd|6zdvI-aod6-bOI
zG*UD9fN;6Gmlu=9(%zJaGJ@_5jbM!8P2S!=KxbSIn8--=6F1tm!#sbBT7IgII7C}n
zBf_)$`})7$!;hg*>fXe0<RFBzff9cTLJZFbCFUhpaTjSE$}!#6!<XL0b8NKYGBl0L
zYU5rZs{y53w+oj*v$Zt2kwn$9z)k&ti^nltv9)j1+Ob{Y1*+7A1!W0R1Y~V@_=iAQ
zjX{uUBt)e)DAp!-`4=wYgVb(N{3MWIN7m|V`uYC$I!4mWD66x@ki-hG7EWhfsz}`g
z=$|a~<LF}uZ5>aF4cAu$>4EF~Z<FoexY$FG?nS7y*{<XUzf?`qC}#vWf&F2!<o9D=
z^f!TJVhok-a0VK1B2zGXQ?<YOAbwA!p>`T-8aY>!VR}fu?6;cBC*VuKF@>5AC`4|L
z+s0?Z^uU6W=K9D0a2Wyl^Z)SkXtfIpa(u~_tXUn1*4SqWdCPY1ukkgsyBF@LnKM^f
zWa!4v{gG{~E7l$(uAi@<e{&)i?C6KZmb8#S*{tNKV_7d{_(RpSiL2a7!kN0H;XmdB
ziQZwX+A1kYO65IcKQo)_wOqd@_QS<5rZ%8tnF6c-^ze5<)xn5C4HjR95X|Ebb`4%P
zL&j;^^R$^bO$s;ATD;s3-YG(hwj1f5?!cXlma=#J!%@r{l<I)aTDvLwAgZvAjDMGX
z;E&Y7(D4hYpqd1JRt{zYgyx?91~3^&j|Bd9Em}U~(wGc;{g0V*BF&_DHt<OTIcaoP
zzU|+i6M+q-l6+*O8<L51LMJN_@U{)Yi)Y$T;$<vvZ;D;42oy!i5L?Z5$Nubp6PZDo
zPqS@4AkJ~+XMWWgHV}ncldQ95g8ixj0Rsf)N5APiT7jSnCe9;?(JoD+!G%j5n^azK
zxqp9@9dYSiNxGM2)rbzkbkYa<=I;JvI3j?dEGymllv1m?_vzsaAZRQsuD<h<z@HG6
z5hG{_4&JfS{nz+&=i5GwOg46)(x{}b^;Mkzt<PhBn%)?l^|xddqFUT;l9!obULU{U
zbbbV`Q*1*mPx1W%oULp8&U<rcooh&QNtQsn5ExtfXH7N!!hMVn63Ey}7haK%1n8+2
z^aR#0(=|`}EO8*?U4wLzhE`a;q3E|(_+RMVW}-(135t|dhZ-w5X!0f@6@kMc-~m91
zBV~?(s$5_9Ci6k2b@a%9YQ|?f#HLv%@JckG+n5XUf9<k=!g+B&HBe+p)QwxhgwhJ9
z9Of4+=XaPa`3(K)2^Y_*r0`BfLtP^@7po%hc-h~oF2KM;(u>F=@m0KC+2U8$_Z~Hv
zKm#0!*pJM9MSV-q`<-un;TiVQSZpeM5aoai{`HA|o2Xb!PC!xBcbZ)jt4K4lQ@!Ud
zaUn`Oq);HN(jbC!Ixfp!x2sKMo&D&ot=U8+Up~cOzybha3C;=A7o?~*$V*35G+su!
zE^i(NF9J`989_~h+cIVs2MUr6sGi#<OgX@2AKuh4kJN0*LTxBb`0)`E#V1BL`L_M-
zGs8RT0djmDAp?Xx@JIg$+)+my^+sV(Nu$qF<J(*cZY1KeAP5*P-0~Ivs!B%i`Ztu%
z6v>zA5huk)JNXqA3`q3usF5HNsWO4abn4yPS3$~9X^C&DZosjmWu5s$=G;$hE<~S+
z>a9joKI?7zabLestrq#c1SWd{YW2$RnRqnx4K?*7cu5rWt_}RxHyWypNz_Ds%9)>8
z=#P7hFLvGmtS{>D4Ea(g#Mp5cJ)C39^8Q_@qhxpqiu5FA8M!!x2e?Tq{73iE0gxd;
zuU?Q~lu-ZK=lmzfu@GxrXN=cm%RKi@yZ>}&251@pITy1f?gA8;aEG7156dA|L_I`t
z&+2+zd!s+=OO{S;Caw<@kf<9-dG>%X?m2#JHGW$l<!MD9d;n^fZW_)%o>9rb7^rBJ
zOLYZu0WoQRVUHzz%NoIbmK@Z`55&q=zU6=Y%4Vfh3gC!HKzlv#aK$%%(+3O*%7oD9
z^ASH^_^UsFE~>1=b|1SWo01tV1*5kJ=d0@=>;cNsL>IidQt#U;+l3hMir#dHZ_*W2
z(r`T*xKVR}+yoe~G6KzO_w#w`lW4ynaKrkzOR8R)?_au;0V()(BGWB&4;7ry&sg=a
zcl_l^fK3S&03nXmg`>e4ggO}(P)8sx*OznnyxqSgn++;oQ%7TaT3SL9Q?eFcZ2Z-4
zzltv+Q2|A3zO3j&;mM!J`Tq>(RmoBa_{l_h7R~4yXbULb&qb}t^gRU(V$~&Q#&(e@
zx-MdIk~DqdL;m=)Ie;8@IE9?b(St-2VFcItH;ZjzVL_s46+FlUfG4v3YcCpHA`?hd
zRW&6|!!fPuvtB-d_RoUwJD9FZSOTbj`A~o3GxnVR;R(4)37X<Nefs+=xe`d=hzGE7
zByf<e|8TztVqhBhiPSuaswl77F0;_Td7G`b6aaw|_SH|$^+y~CN{}P1P(?kKT>HQh
ze<8ih!Akh0!~rAfm~sKFyn@;8^{@O@2w<Gn<Yb2(W9(ciuA_#sSWrl<K==FBpEAjC
zPW?^QF;=Z_u||W#Uw!WHL5*jQ5&+mqm<q&NcK*mGSQpUet`2WicUR+8(U9`umA-12
z?InV;xudB;4)xeM_S0AV_21dm7=+S|nB0mSz-{BuT1l6>njx~XZAXpr#fweO&BE$I
z_cgVHlnA@(RewWIzK{K+p|zay6R9k2gd%BK_r*Q@?KDicJBzd+U6kl;-um$kzbLBA
zr3mm%QLn@rYD5Sb9=L6>mEZFfJD|9NR0mf}p>Nsl!d-lx?guAo^0cTQK4B!BX8%Zw
z4a9fK+ac8zc5&kmc5L<;QG$iy!7Gs{qzE0kpMOERDkvq90A3@xM(6wFUVhnmHY3Wb
zN+WO!$xH`AJDlt1!JkA6(=?xe2==_wG5*~n0f?+RGgIvlNL}gU7x<k~zBxhc=$LE4
z6uOz{ALU8lo&5f1?_e+pP`ZI&X|c4&|DdeQ<RfAr_4OSs%qT;y1m8nn@*kk20tAxK
zRTv6Ak!8(0(PvA5qdZ-*&WMIe{S>-^h2d8zR4QXa7nMYF7U3rpYGOXhw6Vg6YWx|)
zSfOGk%Mpc5w9`Fp+Si}R{k07>mGeeoUKT9@$fE$qqtaJ0$KRT;-63go;4xu;l}(g^
zvF(X^KmNPlQ~Xo5)%pq)9qbx;E@Pk2xDii@ky5FIb~?o)W>e5M+bwAF@6l`?H4T74
z8%@wgQ%_Mv604Vr4i$ar4}FM*kvH6INFNQ^+#Xuc5rB)a^G81z9OBX<DeBgmoL~20
zIjA&%dh^*Xoa*~yDYkV{ml$5G(nxrEjz1_oz~oSk5m<;?_%fkL0>?dl{4GcGRZMEh
z^4Yd5;_9G$_(e^E8ei`R-qig~cTI*5C|lf;$u#E`r88xDPOiUBJztrNi>Yg=tckxZ
z^OJw($7;4CJ399QsRpWSIzwYq2Vx~H%Q%_&{)sVhR_@R$tc%=Ah;pI3C({psEP+kp
z;9S^_tSas-3Se4a==-_PlMF4Yu1hC6#GByn)Smuk$rX_EN<;=xblK=Ytr^$&xg|hT
zLMH(i=t?HEEP2E~`Hl4pE@^ABpBLeg%66%<eC@$ZBr_vCN4h(k`=V#K=RZs$CqaEn
zA}iHeo=jv_BoR+I{raS2BoP1kuQH212QnnnHB?t88?x#u=YdajlC$CRuQPjpX4p|8
zo*w%}H>a^92jFJA4es&xyvB!+G0SJSN-&U)!2$02voE;DwgFPeK88461<TWANwZqO
z&b6TP5q#o(|HZ!S!bAb^9k+3|n{<*NhOrmCO>0Ro|Cyq0SQ5b9KWhE{^os^}hD*Cz
zC2Gl+xdylG>u;LHx3P{GvBf08iuS(Ue|v5xOen@rL-B;ketc@oSDAOQQx58XkO5O2
zrW}%aL4_-~@Ku<##N>3I<}Dyej`KYF0Dnb|ohRFEZPQ_jH21mQ-@Ui(YeGZ2%;!WN
zvXqv3znx4%ow&!9tW3@|EHCE@0cwyBpC+!X2LA$j9KS3>2}3H7Jp{Ue&xv1%@%C!)
zN1b55D5*z<PJM==B#vxf>3y7y0EYj00j5JE;8X%KB_^2y`;i<WVhC*S`5iaq+||PP
zd(MbJU7mh=gU`k>fzT@%kZN6$fUtjPpP4)RJ-Nr?+jg0d@^E=%RkTK>P;8vd{P=f&
z?!L^R*lt{boEOBD^ZM;Ff3;LffwdipM=pkJcUhg^HTtli)m%AK&F`-DZzkeyn;@+;
zW-xEl-c5e^XnSmuRSHCzNqg$O6b06r(yzqq8e9Dilk8X80iKRl4Y06RkM_sb*}#NE
zYmJ0UbN~N5+n+T#{a7SICxGRSLAIPf#}|&X!O6e@t5S}c#m5})E2r6G@e)xiET1Cu
zP$OtwwtH}?KkZC@kk%bCMyV7EaR^MA*XAdc*}J0}sJsNfMY_k9R^<<=0=Q~r$2@5o
zEpr8hBiPn})xNNYfe-su{G_m?4f`{{iC^9KLO=ctn|d(HU!4?4O)pc+n+^WkBW-9H
z)597f*}H1KKeyB#L)<13)i*OG3$0>ivfcL0{xb1DEUQfkD2D9WjIfx)+Wdcyh_9h`
zQQe2<Voiw!e)a@=F2!OkDz8I#JKk{(ejZz8UX=k$Nj__n)fo>4jF;&*tMn&|Rd?Q;
z=0qE*3`n8z>)W>Z;u$s^FM~7~j*IUfe1hK~Zf61tnh}e5VAD_VAIAeT)UD*WxQ${1
z@l2tyJ1z1*59R<A-6HQWc05~HwDJ;A!y(Q2(4X-K^cmM&l8B2s5DZ!@mcMiF&><;I
zcOzv|t({<XE5;h6UN+Tyj(-tbiJ*zMPkLR1S>J_zo38lRDAgUgPp6>wGFttuQ*F1r
zC&Jn$7Q<i>8@^z+|2!g7ypm?*;YJ`WATM#oEbZrZ|8s;UXFN(atcVi%_5Rri#=#Bq
z>}W;f-l_GE#N|xZ$13CuU?Gstzntv%;HsLZs<om6)RNg5*7>5pb@K=~JXam_Dm5VQ
z*M*<@>o;To4_j*#OX0rSH(3qvw9Eaq*!O@3g?3RU)+3CDDPtOZQDqlI;MBBw$qvUY
z@a+)=v4|wn7fH)mcc04=<Wul-sa_Ay@mtoen+cgQs>^JRP2aT0Pmfe6f{{-5@IrL`
zR_uO=X7Q7kFZAb6w>id`yTfP?kx3fI*5y82?7tpw<7hhy7hncfEZL6J0wAZ(_YWN&
zCy0oTIiXpk)SxfR>?2M7=J*Lz03^gJ3DBCJEevk+hsNu;-Xd8?vO;u-A4;6PD&_x-
zyD@hmYPHN=BGSl^Tp^bF_3{3Wcu}Ot>5$hB6CUFZU*s<t8h2tSV^a%IeHQxZ5#I)p
zLoRn_Tt5X2Xt{tm$_FSPg33|hL%p5-$Yww-_X|mk98cDjKI8FTGMEwHW5H?|%Rq<!
zuJ9jR4%<K?YE7zmtzvPq-FM4<pL|0uJ}CK#$4p<k!cUI!(>QQ0L97a)#?%YM-2S%D
zco27~oDY(?KvVQ5?$OGlIuRR$F}h2}bGDn+XuMZgO{4@K?(*5pl#l4K$D96&XYnAS
zk9Lqni_n9ago$4J#Qc0b7lYA&p)P7VVO!Kr=2|}bnqTlC@UuL9LTw}VH?I<ZCi0(O
zJb10|IMjp;{9+O_vRbGkM}-J<Y8}w##eS>vZCrM$PAD7I;upF<LyP<)Qd$r$fdC|s
ziFtA8zkDLw9+xzuqO$#bL{5r!+~L32jprzrYjps$ViM>`X3Tca?CYPs6zZg~3kh!+
z0P#Va(L<-U;bQ+UViKeuw6-*TW^A3H8lZ90hT(8L;LMx$O-B(BnSi>c$mTlR{A|Cm
zT*4?I9T<k>gUEI-+~~iMd5vO`CK{V11?frm4YdJe`|k~Y*dEcgnwXhRvo>4P{SW#r
zE;6Bzpqe&R0Q`eouL-68^uMzd$_6FOL5g0;R+?dxI800vrDG54xw+17BWn@jG~8a|
zv<$(2><}J})`el5Yh`_d#ch<&`p_J|*nt64@zcH`+Ka|3fU~Khu0xJ@aFPi|zVCNs
z5Y$7!Xp81_LR=X+XBR(QvMLb`2x7^4)DFy646I)6Kinye-sl`n1p1WA8ia_3q4Yh!
zD&qdrSP9q)dIdp-D5lT(W1$4d<Ju@0PtbcsB^g5RxJjr4FOcBuTaXb1+d_GkYQE3>
z&(~~Qo){?|%@`sQ1W;nE(Se+IfS-RA!<fCeI0z6rezGzdY8>yc#1#j?N)vVJt`0ye
z&2bOxq&{`*7?!*mAu5kP2XD5p({>7ZD|k#mctd+sp@|<M7H-NR;Y~CO2F%2kB_TVj
zG1mG}j0yRAE_G;FiffYJOitF}H=}tNI?tYAvya)Gyw(|qw-OqN1}l>FV22-bAHNm?
zbJ&=6adN}ePxil~KXeLWqQ`RggBEtMDSjrObKg^Z&qHm4gHX2Z;4$K)Jqd^Z;jfeu
ziOWF-Bd!|i7js{<U3fueU-d^YJfeI%b6vDW*fxGrk{mu2!@#Cl60*r`0Gyvq^DkxF
zi$e%8A@Yel4*a@Xg<CM<ad6`jDeTZ`uj7BV@l^tCksI1hfJhW-NQq=`-an1K3Q{@*
z*E%7kirc2Z1Z(KE%D;4z4V583&zqx*Ks14sktq1m|NS2}HXJ#mvwVR99!7rbvu?1F
zv9pM~K^xR7V9qxke%ttpWyUlpfYo+I%!SRXyYav(f6c#Gzr;nQpmz%qW0BK=+}ec*
zP`O|ECn5O^ah4?2kqSfk5U}a#&wa-gafPb>OXRhEkx{*N{g-~xRW@pIgB0Z;z6~7j
zx>B_DL4+b8Cs9@dh)@09?=UDHp@AZrY$U!x#XzgiHw_!%!eA+rz;4P?YKQ6Xg)e<E
z-{Y8N-KWNz48>S$v)$ZpeTB@f@}stPD1eQ{-?3ZxbF(xRuz;(XiFp`ZFb+Yt`P99G
z{9mH7H!LL~3KfvEM8WINQx-tS4;4*tCw%NnueEKG0bmisor@BPdVTII0MY+}*C425
zHY{lT?2jY;*>ab!HT{72$fO8iSnWC3YghUIJ_uZ}r9nn08mVL`6TK+caLPjafM|@$
zKSZO6S)D2Q&dZ-4<zFLsj>$_}Q?dw&(ss2gk$3Wy-<SE>md=WRa^k|)y2zkpPkrk9
zX&X|>XNtj#_?Z`UzaIYkrN#gW-++t9$w4+U_<-U@Nna{mQ1Z4Jb~<o=iOhp8XxXII
z=%SUK;zvif05=yI#3reR;hN55(rZC~-*PPz;SfTdRby+G_1Zwc>&^Bs&YpJtV39@q
zhU9d&))R1n!2))WqOF2FS=nyit^B}?YyyIy2#LWwBWtI5FbD1J2VTb*Rhn9{36z^m
zi&z5%?&UK}fktO+6867#LA|l5fp`)Osjx*Z!2Nsp-}CHfj8~hCh*wk4Z#GrlT`}LU
z#-Yc_jBNtRBpjfcV~T#lU;eOBPn=@yCImNURmq`Dg&jD~yI1)a7PGWYmsb~`sb+`#
zC}ssCCnxY#rGI4#tKhn0Ur6gDk`XUm=zAf4+7)b9jI9VU9>g{N76f)4Kh1v70su8J
zR=@a1;f%}@bwNWRP8mrS%i%tY{i7pol$e}oIzcmIP?Anry<Zh&(bCH1jNuj<%xiq=
z=SDvm%?7Mf;?~+sas*AzHmk#L7;nzxju!M<tYzd~>&l37LYx=*)e?2^zbOn05>BCQ
z_-_`qn_)KQHXrh=-)Ek|G2(|E6t+m1N+mL$$dP;RW1o16-ym=irZ~Wye&?<7qn<JN
zqBP?Q#~2f1UA|akQMO=VshrCOO$_v0vKRaM^M%4#@0vQQOaYXrCm(tKb^h9nb*soI
z!CGA5+{_F8u5TF7xVh+iiipiIHK+eV|5{WG7=g*8lENv2^nyixgAw);(Pz4crnGc7
zflTDuaLXn4MB^1s>ul%e`DqjF%?OK%B&Gr^tgWDnv@fxSA1eLRoITqcQrQj^V_?!F
zyZJY7@A77vH-qpslH4sk$~4%HcAu4Gqq03$)_+ed00JUM^^cqV0|V3d#X>tUzmUa?
zSk>D<Rs;SQ;z>?ms#O{ww{pp4{>^H8T$Z31x@=-Hdx5jx{mZXl1T^ft@M#4Q4M(0O
zv+7|g@2a82Ut%e3!_OfzR2Nn7(#8ItX`pn}wZ<SVyJ3q{{*q1$iRe}%tR5HDI<&V4
zkb3`M)Xqd$sw;7kt#6Jhi<-2Zz}(~f2dM1GofBu_>J{8b4Fx`jCjGXTL>g*DQc-?f
zANUYkK5mrXZz0g{yz6E<&^j;?N@XKHls?u#?TXX=76%(KnTU}_;=6*OuD;qg;Sb;|
z!X;|66ZQcz84GME_6NPy<zP`2RRxSqh&FyP-Cxw!WmLpfZuO|-sB=UbYu>8%TP5s=
z+(hg@><ch(27b10ivwej>N#OOXC+xp{^bbu5-_+~F*{M^mD;vlh2Ok_+15$FC^&Ld
zia70G;19esJ(x1HPTa|V2KZyROAykDNT@WvmGwfp$xi?9eLgo5gMAe`VX^|Pj^FV&
zMnP#j871~up|{1a`@vTmFCQW>)#LG1*+4Dp!`J=&@eP%oTPMZowehd{ccY{O7n!Lt
zg;BzjN^#wCf4-y=RVr?6<hrml@^QIr1K;+&P=g?}1Y9-B+l%RuB=T%`#?Ss`%qh@C
zg|v6hCXM3t5B-brOPuBu?k~w7wt9hk^+!HjZ>xt!!(Z8MXH!5(DoGw!eCYecJ(MY-
zoRGP0KcK?KhyI$lfAj|hh<1vqEb8AM`9I?rIkD+NY6i_hxAY^w_do5!B)C+p+rPxD
zb+2_MYp1iEv?Lm<ec;beLtH(*<M-$hMvvzQeb4hvK7(&nkOQ999^WkUeXaxrirq9b
zsZxs@z!c5)gQf#!0t5)!Z8p<zZm|@O`=9Wyy@f5Xm~h{6#rhgyBvAugK!3@0J)8Xr
zlIIlxL&metr&zX&XWsBlFPdFp6xT`d12u#IU?#Waefp{2;5oy%!Dv#Emk_VZF}(1O
zf0D>_^n()a6W?nyAG`twkj1w3hrVfdg-I>c50fyIaPV1vyUXk)L{!oBbli%$es<o|
zAKZ@>rb88)jYw2BH)8vA?uP;Xnf+{V(mYgbiWTvh(b@jDzR<}i@>mo+#9SkPX850P
z<U{y~T8a8b$Rc3EMBBTz4^@}5G%7}R%mND7b->@vHwlj-K7fn5K=6~bN{XrYn>^?b
zzR*52oc$1vo7G712$|;jo`j%(Z{hDe({Ai|ETWi;%*eXDhd&$Z5;54|u}o+)5gySE
z;H3m{rTh@AGSEo{3su%NMwy(+RvhH7JKaV~q;J$W#4r^kQbeabv~iptqx~MxWO$IQ
z0}P;ztHfQl8+Dn#koZf!IUXrc--AKt3HalV^p5~7G>0+x#Zn5nSIHj+HV6yj0LzpH
zEShI_<g(@dt?k&im3*#FD$p#OI^9S+8-{*s*e|*UA#WHJWqm`<7VOX5GSq!!hp)1b
zOhwo+p|5Rz@8emqg&v`b0%hz6eBV9#qTj8^_CgXJ<`0YT%6Qn1+}O}{FabQ$S_!eJ
zu9wA4`(LxnU&TA1yNI#*mbLlQ68<7&QNS_*E{LfC4>^zfU+w1|#^XYCS<IM31{0OU
zq5s35TgL99cL|+Yw*_T_`OirDA;`Yq52@=G+X4E>MDpiGVVvR^&HpNm+8j=BllWeK
zt>0cUGj1$MR#T&NI&$o|pquU#>i%m`!O|$gP53un>cxKg6!wl-R!Q)E7TTHOnmJ7K
z&Rp@acR%tHrXg8ss^Ls97?1)st;j-=<@YxVb2hQ1VwdS?G}WJ&bGAL~cb|I~lanlk
zEEabWqtXAp+P`{n#65+8W0f-(OG%#ZiMtY%lr2#sWO10u<?O@!a$Q_f3@|o#&P5kK
z{4!tp<8Nb)lxt2VD04vA3noLfmdAZx*`Mu*@Ha<+8BYM4ryDs4`DD_6sxU?haf7Ga
zL^(AsUg>8`jguEXhKWI0u;P&fVEG|`Jn1*x#tzK_?0}R7q%_X*51hnnLNB{Ca@t~p
zWyX)*^#580X(Vuh)EcSFL|_!UXZH`QJ6Ip~5=GqVu}V9ixnF2p#bYLFB_cs-P;!c%
z_M!hyA{qV|^Kt39RMx@2`y;2>a}bdfsC1w{RZsYG`Imk>rEG}iVjD`!Rg%XUhi$J}
z?T;VDII$D6h?d1*D_c{p8<-tV{N9!pr8-1lxnQsp&7+xKodR05S}a$8>l@D3J;YAk
zK{SB^eaNUF(wW+(Z~KD@-H6IAxy)A02`<l(ee;b!^fnt3x8gly2~)P?@U*Xe_3g%!
zO7vApVR$z&%Ok9rA#J+%pQj?{PNY;k*{l;%0#07#XWe4dC$8L75qOHETUo(SRkPhO
zC;E=x44Edh(&$b$Pl{%+u8uqWdyqs9F}_{bL5aW$TYw~R?!IpG`>*=iLiQ|ssTsVn
znn(l7-ZFg4fyy$H$biHd!Xp4+9+6Pdw#L7<qhZMShPniHE|gpj@S7F>-h-G8PSLJF
zeY{c3RkzUJjY7}86c$#NTZjdLUs$g}s84){xEm=94HjZb5d{*RHV=(o*i#k%LcolN
z;lAA@EES$XDy1)BI<zt}H*FkB5ZQP<kqc-xK9SdMgPh&Sbv7}rc1ee?x)_YHeyQ~p
z7W$zmerojLRsGYy`7TppZIVeLUU<|<$X4wFUqcFD)LBGGJ2ME=3Il{vSLMB%{nLl?
zGvi5s5Pn5UGc<!!%lXMKgJv)`S=F3d=mv^hj#$f0GZ__On4gtz6@EL_7V&f&R&H}U
zMb4$j7Ql46Pm<37&X+-pv9VEa2Cv=0VQ)zjB(KsGJgyJ4LkEL_P&|?so4)j`-#4V2
zY$?@gp-pk)AFT8ph*wajrxE8&wkZ<N`S%C@j(b=O-hc)?Ut)M9og=OG_xmp~C{Add
zXW-KZ{<3+P{F$A|aKbd!X50w1R&O1CAk>uekfFWPY-o9%BOdlmnk!m*Bh0aOaU9nq
z{Mf-ZqMdT|w3v~(LYQ7V)89ZC5Bt@aGGfti5v&**{E@$X8Oty>ZSzG{1m7@rXR0Gn
z3+A7FL-r2_E|M|{BDE`;_W0<E5Y*fUyEOKw!3{`>nDvZyPMz*^(B6r?!9<o?B~4VJ
zpzi0_GXH$T=)s`YS>T{q2WCI%-8n2@UL#8%gOgcA%HpN|yaFaCw<W1$S>y}LrTz3e
z-!c>Kfh8#c{+nr-4wk@sV!OZlPrj?=P)SLY+2TP{SNM;xJaaxJnETM1Ac~NOOy5_c
zUZ>rOz&$yDFv^pSL8)~J=TF~KA=-|rqz-Z{$wNUnb9V|oUb4sI=+4zdc1^rab(@5<
z<H=gub5;k5@UqcT<PTW=?7w{8UK-j|u2eA|gFEwo^(D+D`Ic*d_?Sn%s%&?5KYy)6
zPQ|H6W3EfgB^nRoY&J;he*MMwc-`iL8xXyqn<+$m<)_Z|Vm9Hj>%1(QtuR|hUiYit
zTG4D^KXF#L+||KUKI?+7{GE|@5PeNQT5h!kx-}(d#?%1jml)A^lh6XwLdhCIxLG<4
zrP&rpxQ(JVjklipiyvMam)C?pjC+d?fx`%^GdFk2mf@_GHX64kxL53D;nN7j`Vl*P
z@)v*Ya$9OC->EE5GehjRY;)!3{>`Uta0uma6w|;yWSebx*FPr8gu_l4-AQ~D`6<bq
zsX6zKpZzJ3tSTbYR1q{Y(fxQLRM`JoCqnR5Lp_u)-i<EF1rk2D+$6M~&}%Rbo8cd%
zRA3e=PvNx(9_jnpj=K$}_DV@pJ)W%wiGY+3yl^-F;^#dF>)Iv0CAb(4MLh<$`l!tL
zQ+ny=ld(&|cr1MH;cfkp7kUn+QeLTYI~1-DL_U5$bLPsP`YnY(71~c~7)3M)WxZ%M
zKbFMwWg=rpWyZ+n1`3PjsS<%3{CMBzKkcEZhNj3AP^3$P(vvyMU#`rY^&~HHS$>s<
zq*qDn!FWZeezu#Im-+h+wlspSYb5znFD=`hu#=y(+};{SHYYB8y@vWgpX%~26OJ%H
zkoUIzGi(28KN^KydY*m)t0c3S7g(C|+`y&nGrwBQe#{S2hBBbVr!pV{8RYdg08#T%
zTvm`d_y_>ak){+nYUy7^uIF=^AG~OfvCrwD3d(%_M&`(6_Haz1?E__sQDWNt{8r|L
z57|@cFyN_{fJL*={o}pN{BPN#VwCIkWt?Qd6=Pa~+x{>9@$=Y&B9oN4JJVo0IDvSf
zOc;epa+))1Gylt>P{9L-WI2U9w8C5xX-RRuIrF&{Ho@5XmM>|y0CXg=y64W#TmddH
zb6E%3zDcklpDF>_ZkJ0kn_jVjkst$EqcUKNQk}Fk^VjzopmT?8;=~jbQ_^Iw)tRUD
z27si-@l}K)RxX|ClI{IPE&SSwFJRU*caWI#b&q9!J<R~2Z4iZk)Xf{YuI-`BKmN@C
z8EGx^$XkJ27qO*#w)aK7?eW;AhIzFOR11_wzF;eV_$E9C<IoWjwr9fvqI(SQSn)p|
z?)%W!hIb<*;dA>UrVQmT7)|>NaEZP-8?#@)Sb~WaCj{j>-2B?i4UaawD*>Qj9W7AZ
z*Sq*Z@7OQLwN?_WrO(laww{D)6$%8X?F%zMsEK<cl1K-vUSsdSmwEq}Jhf7A1UZA<
z$OaU%oc(g<Zxik3Af^(n^ag1VF8|@o`>tjH*@ikHLKT$`hO%tsU+Q5m$W2*=m}!ZK
z)Bt(w<;)vDv=Q?Ei5C9=pz4ixp32<o+V!4O&a>Nd9H<ZpS!01&|F<(=xq=tum8w9b
z(OOl{ZmVZAZ`KV^YRt^Uw`o8&^Cqi?HgH)Fc_VY!M;tkKc^3MpUQS;+8WXcM99Q{n
zpwE1HmHlW$tL<3+?*g~aUYSo<+v71`lKmtRnOaG=?3uYhNGfMSb%N??Uz#BYv|F`R
zX4ds<N1B=%W)f*i3lV&LJ7%`NVIu$)^{Az?h7WPD1ji8kyH95S8*FqudH|e4Ii!>J
z&b;h7dpLrtSA!40!XTie-w)1wr?uxml8GjM+)M)^%JFHIJ$?u^Q~K!f;07E_>0a4l
z3cLOocAeR0ASgr?bIcjZS~J)2b?(G>pNFgic@1|mRtLIwD`-WH)oZutH)mz<_2*OV
z;&t;;Jg%t{qSTc78E#G~W!ymDgl7)pV>xa`s+uhOLIpbI{}#qP#au;h1+}qM2};h$
zBX{Yy^;Y(2nwD|clr6_fwn@J|H?@b8DPK6V23%u3EcBc$``z(;Z=1Mj<|niwMMiQ@
ze;jt|VPB&{WQ$y}Tz1p^27VdN-8GIR$QD#rRWxbxy|b2w*1s5>CRf%r{|w0h+WY<z
z#!a%XLNRdGyu4YzzdzSIkxh94a(>ZFAvWY1&hXDI?UTU5IROV(GJ_VR^Q_osfxGv3
zAKqgq-%X-&Ex#9``>c{=_dW?O&*WrtZ9^NCF1UMz?*4M0aXrt?sDm;J7blm2Y<HJD
z#aDlAUl`F!GZ$`PD<P};2HfDA6a9g2F-RYf1~e5S0uaSi!D)y;?>?p@?mJmuBZ~`g
zOnE<WgWdIzo<l+%&G1Zbf7%-R<=8rVD5+y?55MO|{1QEg5HmK*QrO4fll|}?`7Nd<
zBmY>`q&<w9<$o*MJwc7WvW8l`l|YpWl4N%r@Av(wPl9uwo}gmROxdp}tT(ycmwegh
zP>LLluABwUaND2M?}&+gAEemnu$0=V<mVS<Fzt3D`%ReMM~{d9*n(}FQ>U~-26Y^F
z9Nh1ak?W1*6l5@C<IsM0j#_^tCxbcu&yk`G%Hns9AU&$^;jD&~s+HtsfJ<L3?$=SY
z`-3EOJYI`TE%UJmM1BUv5&m^rznur!SeMrZ49EbBFFUE<mIVwED$v;23<;!lM_~p$
zto@>XC-=8^M$jM_1G}zvP6n-Iau@cyA-*!SzV^pPixbN)&VZsleNMk=JM6xgg^o+A
zrdFjZoty<6;V8NNE_r<SMet??chnO9T3@RiXy_xoQ~n*A`}Wn~Ai}Z89##+{Y7^Dg
z`acyG@57Lyc(7U}Tb(=hzv0R4?a_D&8*pbR`Ghz?KhdcVh0C_=n?n9V>Z&Hf7b4F&
z7Q1Wa`d60q*1*_QHPJMc8Dp^`*(d~Ib)7%p<=)$7<6g$&-ZD?1lL40YdCUE-ulFg3
zxKEfz%m4wHibKU*P7KlgzW1Mf%6VzRJbJ|AET?><vI>v;hu`t`-4{_{6bewEq+~9a
zhMbgRUkYQ!^(`A~1(yj{f=N%Akn6rVE@bT8t884cn?OBBU@3Pcv0nu)IVQY)RIjqK
zT<27K_JW*VWrO9#Ro*WyRjgoxN94JCmW1;*?^QM&hblrKNy~2H7`nU-374PPt85Gf
z*71^&i%h?8%$B1kvXK0dVM0}}vXOL6a0f34oBxY%<njNp2Z!?QdaX|}(OS|J^E-Au
z5fd)P^e?{2JooV3)h%ws|0C=?!=tLUhrewXJBWoAk~wEjP}FF8K|~WmO@NSuF2W=k
z(la5+1QKi@iej(Vf(69_Dq<Hq3U&pt%N6AU3U)*h1TODytuq4&>i_*fo?*AM%i3$N
zz97GeOs8lL2QCQ#KC)Hwz>S7_NA2QeWJfM!&TqEgw8Y%Q%Y+)6L_|2LnM!}JVF$;x
zElY1x28kg%(%8I_0CMsW?au4<Y^^pQwy|+LCxJJw*`42O`yegcuYFRR_T;$;G**SG
z83*jLr&F&tC$#%4xNGlJ@&nb4yrVQ_#q&?>_4L4YO$mLrw`p`GoYr5;Qrnb`=JVVj
z<o8W=Bxwaq?5VxZTdm_#SGJwJOsub4YOjmaeX<=A@RVgE7bCM<qWLkems3ycEUY6{
zYd|3KL^J-$`0%QpQaTV7Rkc`Ta9USB7k`0QT7;iO^EdJ`v5@<}jxSn5V=$^Ff8are
z*i18jbno@uk^0TH<vgI>dM!HKE3ewlt1_iZm{^ilCYtMp_G-B|ZUEH8kV*i#wvs1K
z=+LKo$NzL^+)~bZ9Lcj`2`aq=8SuS{y!>bR{XahKzlR5ahn%}Fx8>90;(vJnpa5}J
zZ3n?hump4Mf$^zpV(#G=aot2VDAwU-)p`D7Q(1tBJn*d7`H0*QH&*k<k@1Pw>o7cO
zsD-f+L8{0nc<csrjURvC-_`MCoYyrz@&3Q9OExccjo<0@D+UO~<%HR>%6B`(uXslL
z6x9mxPwej`GqG2Ec!?Hf<KiJAAxW4r@Pzm&^R;vUYC9aPz(tR4@tZ;|%MW^!l+d(k
zPW=2=wRFD)a7ixg8h@|1N28$(A#jMlhm7*L_}^~$n;ya$%|9;wwZ&SucZ!Los}ukE
z<1tDBOO_j<`V)C5Q;u<W9t;(Vsg~&B8lnUyNm*cz<mKg<dY<Xz&w!j0sYP9ruYVZQ
zQMo!{Z&9aV@`unLf_DC!N*NDm6t_?%f`x|@N%KeVIq4p^R;)BI2%E=$!8^|TE9oLu
zg2)?u!mkyOu1uVqL>f5sSa;N^Iy<nb@&`4(!XHDT0fsqPpW{3%3^iFDYwL-X7C^G?
zQTzmdzGSo03ntK`bVFDzD-nvg3TkXa7pMCIB~OQ~gH~sm8XfMQW1O4brWnIkUP2TY
z;WB7-xjlEi?sUq~rR779G_DgWT-GitC+zCFmCn1upo+muqYqAk)P6_~usARqUx_=p
zXE)&r`xA(V$g8Mbgl6kI$yrj+LzpC88A1hSF7{d^IK9*<9?EE9D$1fukt_(uD9W0n
zE_T-ZrW1#JM|z^x0@yz!nWz5rjk$*!)Dhy%Psfn*@Wn_C5h`FY1tIs&<xbujWi6rP
zagx>phrP@KFnb^C_PbSC-eCdq#SzO{gkt89dz?GJVO$uey<o%5jDk(3LPRAzm~07_
zb@c>O73M%<%;2tdpd0G#$wwjr7q|z6Btk2f4s-58NFw48;niU72oeevvHeYF{xeJj
zL9r}f0#!%&o*@lEvBF7~s3m6ZFV0KCxvA+rJH8G~AqR<s)|jK5A6Dq31)z$s1XQE|
zP$d%6@y1u;Ui$(jHd8(jm>v=>EQlw`JhaVO7T3K$=Z#cFEY)RAMSwBlE7(yk!qu~#
zWp(;d;pO1Qio{o;lI3drxp5twXRp!Y8BxPi2~(_WN~+m#s`KWhRLJ9p+i`86C8UCx
zsC)u03^frH=O^zvhrFr{b9m1yQJJIA7YICHyL10}932WIj1H81f&68Q-`eAWCi?)4
z%O{b=v%P(KJ3|^g-Wr3iA7v^S6Ofmy+_^Qx5>QywKrmoXA^*g1p8HnN=qwFtCxjbV
zvZ!Sg3_M8XsZ!^uN&5hns1@YaV}ojZu&+G!2pv#NbMG#6`k$rk`m^iY5ikIGFcQs{
z@y?!edWcMAAAk`}JqlpRi-L>;Ux4{LmwS3Q=jY3HFY`&i!J<TUGP{@a@x;IG0vgK5
zE`Xsbo8Sbwm~vnCEOR=%q%bD86&+L!fDLoQ#jIHEJpYo8Ul3{yA$&k$4_*=CE>!4z
zxm2q>Nr({AB3<~-IupOs-SLEESUX_vhzv!yHrY%ocdn~f8Hb=rvDyz4peakZ*ovdv
zQg~>DIy~*cEx<a#i`efI+|jr2B^676+XX8NW=lTa%{-8Kqj?bF1MhE{BIay#B4Sd?
zUGDLN<Ie<G#We(cgE4j@zkj;Od3`M%1>JywC3uGjn|SL+-{P3By!CQgk^8!pGb~|w
zYGCz9f-_m<RB|tv39;VTrtO=YOI@9zVCX8O6xjq^*&jcPHU_UH5B@wc`~y|a9b4%L
zg}iq&<USR{7c^8(K?J1uW$4Pd;k&qu5WxFiRp2ptRS{QsvPijVWH8AvCe@jan3FRu
zlpv;DeZY^Md+mHDH=hkayBDlMXag+KCSjek?pxg!6dp81w3KM3UgCT#(iQ!5lQ<}`
z`=WVScC5R?=oo?^u&Uuz@dQJXS~LHBr{=XtEgD|AaUx?P7Tc%Jj`dU^$qfd$TBs?I
zhb5V_j&x&A)Ej|XTzmt9-n9V~;WD{eGYXw|#?w)vyNJmfB0>Z}V*NDXcc=b$rszp4
zD>1EM?!w3(ah>y{Jbj{3sw>@ECp!xo#q%7Y2AhQB2B^FE7^lxFg}M<8E3##xu_u{>
zj(2~#UO|T|%Jt=z3j82WG952+7XF8+2>js5F9=wk5xL}`cJx39;LNN=PWK)9RLGf0
z2Hv_>#s8p9>|bO8I50ttqEmd(>F3Fn_gy7<*sC08h6t@ld=8<AI7$1<3LyE=f`eN@
zeDVO*Y;!ix)0M)>LvaPG06r4YB%1O8&bW`XMlcOi4Jz^wO8VYYoYix+D!T@!=^)F4
zRR@3faBezCk7$tK17aX^<g%X|I=f5%_gBP%j3$CuxS<g7)iOJQ61vRp?9P!p+U{jc
z+WRu5!)#(f?fC%z`i*nRXL`c&vIv3G7+r97Lv2{_0U(58>Un3p5GJCVuB|T%Hm|EA
zGOXt?ykL{F?H$IDh<I|fOG7YrsxUyWhAHQ}aW`$}B8g;=5jTUGKwDxzdP-;K_-`2$
zF>u45i2I;uQp{<`x#N=<O(RbQ>JZ69kNHP%C(%QVf2EW03@u>Lk=mm@V9Wn^veQTQ
zPjV>Md60%PIb!wHr<`7&{B{45_U<1dOgTQer)vMT{WRx^+Y~ehRaR}~1y+-e54yQ$
zL4>rOYVzKxwv+Zs3e`RzIG+p$-|qJ&X72r{sB6#$Bj|@hk)swEi0|lL_Ak}|c_r*c
zJ=j=Ohw{h<1J0p>voMR|u&dUoY!orXtw%XGKCC1Okj7=fG)MtdEt86VcWy#%&Mb<k
zfQaTgAV0u!+RWeMe3;3ngf8URLAD@j49>x;%ioDx{!3Tsm5nr@5wb=e1dNIfavyfJ
zOL2gk#4Zb_lw4_#uZ&CD#sSl#6(>OzBZDHodDZDVN<Tk9C@*d@vI`!o*gu^w!8*JN
z*{JY1K{7vp5;|Pt?CJ^|paS4F6eJm_BNSv5VdpgbST0HoytJ6t*)PT2(G5CQ!3zXl
z3wR|$vm}|dot%M(M-~|+egz%Lg$Hf$CdiuwF`R6cyb>4a!5|vr!8e56Cxmok$e2H$
zbe{i0H(m&6<P{QSS%l0y<b>sc@IBsn=NSEn_nPFZS_*>>4)pS+aVK=use#-9B_e3B
z(7}$ADg-eTMnkT&Fo)1aStZQeqsKULH_&MBlP76%qfeeZzGzJmd}%O&`p)iYN!qp`
zMA%<Z)})w;Tb$pm7BV>6X}QV-4&c^JJ>DIBy4H-qdWH)x!*KAwAL|B^DQ6FOh2=d5
z&B3?7^|UjY8$@~k@MghHlnVxZd6ARS7%49S$>~yRAUr{_m=GnKJGMLd&DwyxIDsaB
z7WW74>awLy_Zz(r@c@g@MWxaZ1(l7^d~zMI@=7zme&`(b3e6-IEr^MSOCD44BO{be
zjni8&EQ+*Hsm`ia)}c{gzX&_0%dzuPgi4SDD2tI~y3chEl9L3lfMKVEaHG|)ieGb7
zDZ-g0ec~McZ+b`HUi4Fu$9MU$?mP1MiYX;rB&s{%ez+SMX4)yvwmJH4$-AtcBHq}1
z10x_p*@OBwU*xR&S>axoI5L8JOpfH%$}*QvbCR}dWt3==M{mMK&KGNXEG0hu_=+%+
zZUmH=6oJ^7=$2n?(O~EA>QW<h!wNEu<cn76ThZ`LGqJ$FlG$S^0s!(AG=yqf$hASN
zK86k8p~`g<mb$6LeX-W@47f4h5F-RH<Pg5AAI@Pi;*iT*N<ttkT#zJp-eKpZGLe1d
ziHOirBITl47+o2jBD(HmbJef*$nRp7;&W1jdjlVZ8{-0+fs_0vRk~8n^T!R7a^j|#
zrzZIue{@bkc-&tsz&t;Bc;YnUKH;7-HzrzxKnm-9LJ}vM-ySC>gjT?Ic&19Q`G}vM
zcKcoKm50T1iM$17=Tq*w%VSCzE(eiqJ<&-dMpUwS_G$OA$+4xJY%ZjKuoS!r%x9TX
zmbt$?NqM{WL<Nd{#yySp2%d7*ApmWGatPLmyAQOl>GYO6_=5d937<Ip8Mj*?b^tdI
z<4sH&_=u#JCxp@>|Jb!!L9E6m4yS<_Gh%vgK7GJ{{L*Nba=>r@4v5OoX+fb7JPJ?U
zNBmpA*5+vNYXTKbGLEXo9`b+t-&hf;4&vHIlwGW<%kTE!b9ycZN#}-Y>UR6`!X+?(
z$OS|%Fl&c9v@%vIhp)rF0=Pl5pPVICXB}Wu>b0t19l=V3O7!}Cv)w%@s1=2Q5-rXW
zxqtq__HeI#f3lI3&_kpT$o<ny;7|9WkoM?bSzE#DuN9!^`aN#zbSgjxunEnTW$0GT
z%uVk4;jtaTQiJ3+5~x1eoN=dHyRPSXKu-~dedgP_zL-yZ=gFD1V2nUC@t+^^ee|tQ
zaz17Yf2qNnLZ{o?%E^)-I_A(<k}nKh#WZ<_A$V~^G(D5-UDIfQA2s&#)uePIlPe(;
z)6GL8ZOg4%gK6v(m{XNHQ%9<%yNc`^w^1jlnnVMJ>Hv<XuF&=vrXS10zoenbC)SG7
z)Ga}c870?is(IifTiHM>vNMq_Qs`jO^7hQIMI?@q5kobtk{41k;vzfBH1ChLM~>BD
zG1ODDM+V|8c|F-a-l*l{u>lX&W2Qs}8$zb@he*81qM=}6slAEgIgHLK(N?$iT*`Bi
zhbRXstP($lhDOZV5Gzso!eambPW3MZ_Vch)E^7g6rxSbu{BcT$c;87_Qxb3@Aa0KM
z5%O@S+k!~mM&4B~6JQ2eb<D|QY<+!92B}d5B?Wzh8_@4VF3>N<2g2Cd-PV8I6Du4-
zfm9Rjs#!n<S+9?hSijxbBUbtj7PFPQa5Fkn`j*le?N^Fff4qHa4V`I#*&?b!DimIO
zb+k`ypn?P)d@opv$`M5gs!S+u>G+OoA6u{WBkIvb%SU~~B_nR2B#1hNsUh3_ImWJ&
z(M22A7^=oJb6<<Z6d!uQ$+5O@9W7)N!=<VQ5d~|qk2Eg_9BIq`+p{g!1YqF8J#4y|
z4AuFevQ{GUC5RW%l5=d#)Y!%BWFGUGruxCe1W`SF8D~E~Cw4J53*#|shLD?v_8~zC
zqq*fa?j~xYBPAzbqF@5&+V>h!G-k-bq9fyZgrQ3{AGW%CHlPKCsBQ@JY}SPkG}TnW
zd8(ybzp3toF50aCSr?n8{kRwNXSr!>StAx&#AB)S4aKsSr%`MYeCRJPKFy|FuGM7y
z5ue#+Y80KUIo<A=t2M*HB#pr`b(2HHB0IM{$^LP@*A1?`QP<1Sq5A50qCMz3YLF^n
z>4WtQ!OZ0}$h5ut;-12GYZPy}FNCT}GqIDM;WK)O29)@c8?kQoj^@t+{-yP*<ct=l
z`?xAz@lqgWw2-*L)(R1m$jh~4oLxWFks5qG1@)zHT=dv*j-5YK%iHw;BTXM?i>Err
zvZJ}7x~fVT$ZDQJGcU#cB{o)y^Q5@cn1IjyEH(BNHZy;(!7_q?WOL0!?xlCdNJUO1
zcawVoErTpBYmvL~POn_(YHk@))MRrRL8aztaV}QT=mzB3A|#l(^C9=!yR||Pji$t*
zLz+o?*qu%XL5*VhO8PUkct!$*6zV~D^&NZrpdx~<i4K{L)^MR)byv)>AlZBn3Z$rc
zf1q19M%R_ofPsRkJJT&46I%nIDHDukBKzqh(N8goc{DH_5ZMI)&K=IrMLk6aDt7P4
z!m&<~kYq6p?p@t_F6FAI)gD|5GxYNEz+z#2XvWR+uj=gkrxucq*K6@IvxMcH!b7*M
zmWQ9anPzS}%D-zd03dO3Lbcn3J%N1i!Mr_jh=2OSJ*87#3t8GE<P{W$56G(N<lnqR
zYxWy1GddidhHj{Btk{NeG2cP)_~jA)5sQIWs3Ww;!D?=m1o$t5T1iXx@kpO?tbO+Z
zZBSU*RLv|X1_k9FXII?^0tQSJ0k@Ez1ndia0OXAB?0@uz-Wgo_9IS%H%utm5z8&sv
z6DwX0g>YwVCaTzU<UdGjj?p9l_!A8Z)@??ZsWz-$OjmQ7`<b{oh{GQHU+TrvQO6rz
zJ0Lum;QlP$w8DOQmZ3uXV!2u#-i#lXgh1t8x;MpbA<hV`)NKm(iKkNxi3wcX-CZX3
zjS{;=M8t@-vv>wE<k;vATh-$q4v_3on8e@aZ#e#+ju=r(x><aWzu+*RQ02(5l+6^J
zAd!TK*zVkM2NXYyR!aa5pI1c!N+62!JI9ZP#TO?dvM2zGo(=5NL!AM6O5ux;1KEQ}
z&)I=f4{{!Yyr(@bE|toDOJ*o6-*TL~VLk5QF)pqmSr<4_(rdpw)xUWpYC@Qkrhq8M
zFv3YiwP02>`_smt{z9TGv9G+4uLvcx%z!)mt2*_RE@)lxx4=w8d^iuO^!F)_nZ>Un
zV)nB6!sH<0K|l4S{m+27Lxq+KH&)bDeQ(SaPdk53k3E#-!tV1XQ?%hq=c(DThk{Cq
zDiB~-8&mMQb4w#7SVEyu8y%=ZDu9^Gn71Bvp1TlAN{stFzd?<Ce(XnX+Ic;txDY1H
zH>8#uTvv^h0oF$%AV2Ye+xb$h9}g-*1Pg=RfTJqeYH+YglSFMNUZM2^Ks}Hj(?n5-
zF<!cP_kDNH6+JUZF^dwsEYK*D9#TjPu7_su!8aVb+r8-}u7;3&C@-5a0pWR0Hvc}r
ze&+J<qZ$lg0LKFj^OE5Mh5Q_6>q{6@E=CZ`%VwMewM)t-x9PCh8n9$`EykXrLt^#|
z8{J1<iIGyGfQpI^8V#*XqX=`6MTxtRd(I2mU{C-IhTKtP@tDD<O6>Mkk872RUdTaL
z8S?RzvG+1MXSSu>MR%&-ByMTsqe&8J?4)H{JcL{?4RGu<=LNgF!F}6n-XE1zpfoJ!
z!neS-E34h6C$vjWWk@iol&4~mS?m7(WX$V;^gskD=tRVv)SP#+yLMvF*TK9Z1r^dx
zO6Q#7)=%uY7^PqiQc$Em*iNy`<ODHmN?c?+d<=ad5!Zrctu2s=XsJ^Z<hFcszTLT=
zj_D>32Z2&-&nbr{d3J_<`1_tq`Gwva*oT}WpNskaQhQ?mQ>1uQV^cykp_bCqAq|tw
zBA?&he98c*&A|l4!Oo`AU=GMWr9R+)X<(dKvlIkNx7DD_=Mp{eko(@Du~ImCbG;OC
z!5?-v9!!yVMOKxTw_uvqf*2BefpiF?BNw_QN5;+vum%S!tHeG-p1%xEYR_1EyNwZ3
zqMVI2XnwE?;IYp#U9R^3WYxr|ZF$l^lxIfD*9z$b^9nl-F)U2#-CgXYJ-+tkdZ1dq
z6e5IV@MxwHi%1A0v-~9+v(wj^XE&QPuz@M?G2s`Tcc!=>g7=3sl8BU&$8L6x>eow3
z`d1*_6(-%7%WieX#rBf7GIFwd;OG&6<?UnLj-B-#EkatNQa}U+3gcJ(9Mj6Iv!_aC
zJ#))hwmHs<(;!i-OIeBJ>=9BX_8#{kT)wCf37G_DLqt}B5=qjqp}fD--BTO0l$^Z9
zp;~#1&}y)n!6*3p*PXN!TD~ZN><t_U&jFM3{Eha1F?KP6fDz;asV3BHf~Y~p-C%QS
zp-MSK!ihCPdWWk5(-3S(1F<H~m}z&8)dq#3s^GK`f!q^7!)Dp#cJ<k@!wO)0B<Nz3
zxSSUbf;KvMq+KzfhXf5E6mleUADN1|9<x{5FTaTqh(lr%5^h!8vp;;m|K-_nUD5D?
z6ze_vK@2EN;6S%;dfZy3KD@FT1BzfX4rhr-;MUA{dyVt$U%|=zeFc!^RS0$-D3Jh6
zhs93s##ll8IargB7g)9z^AT}yZo19Cy$|LiJPO+-13YX1aaaEB_h)EfHc=|8L**26
zLNDL$|1wRB355iQN-5A~@AAKp_)nA)IUrNbrhEPQ|N6&g6b?ArqKyy-5ge36rycg@
zROe@oKM&0SWUu*RyEF1p?iuF_cZ~0boNXd3<C<x9`@|Tjz!ib`J=mzi&%9M;?>v`M
zF%C!lUrQEKu5$02?DzoYSkT77I^W;`ww(Z3vYA+6yTxfa{>VUa09pZ!QHFV;#9o`O
zgBQaphlDT3voqb)Otoo29X>x83{L}?*+OE4XPR9%*&D|FO--74=_b2iEHz}jsU&%|
z2p}<$Lz-SR%w9i4E0C8E4GG+pCOI@8DY8$Gq&&rp4>yt70zXgj#}8K9`>V7#n@D<P
zq~ufw&{XqVt=%z+RY;~Nl6;XH6bmRY*~A(4jbYw6xJ^zI=M$oWq?=c!*!AJR3<TJA
z3E3^OdBjCfJ+_Er-wfD=Lv@Qr*92Ivhv<lhlVTn$u{Zi?j?*MazY4U839~uyMti|z
zZ}jN7Kz8?@Vozp{3|&ZAN_3dwqsPXX`=;0!nv0+#fWb40#L^1l?T{SKY@TH2oUT=a
zg8*^l%gLal2PfIz`SM>o2?J&~o#uTAqGVcSl~A#WMrM}T?W43jHx%^fdJK+G^p)E+
zQz%D3R$1lC2?m=$@Wi_?8Q0pofEg-~>yQAbRe=f2f5T1otqLmA5tP9GH|#yp6jL?A
zb}7(4*$p(u_aNEKyWVEWDX5unWgvRYndXLKyG|NId=sLzo`*}sI~~gH9p31L5^)B1
zUffX46~pYGXS3k;N1SS|X|;1?aIkHyXg$=-kk|pq=GF##L#lpu413MfPD0oevuU`U
zOZ&fWT&h_$$$lmqM?7x@EfhDIX3vE-v!Axl=2&DGfJOo@lH7K@4aL$N|Nj6?o~AN1
z<=5F%0rd<rYL$sex!?>*_`Gzg?U77HitKW&q&&qk3_5YpWLq~uM`?GTSh2m)u9f>F
zy91j_dkiy-TVi__YJ2V_5+Y1%iFlP_>^1iAzqx%Ngibfv?&Ikpw{JQ-Bv%Y=exd!X
zNJnpbmw?laAv@bUbqE<b!z_ZknZ(=dC*EWRz_@bl5RRFwQoFcL&jdvy5?F{N@IZCg
z4$Ea^rG}b#1_*&y$6xG-&@7wAY4-Y4bvgs!ej}hmwrKO<2>WuL_G^EVX=c|{`=Oj9
z(xb{Moe}iPcemK{*y;8F!M4quVN3F942>VGl~@8PLKaV`w-4pUh}32bd|hA~lu&{Q
z&z`8W6_4=vsdT0qSx!n)f_S_i+QasqrSus#ArhS-o%S%eM>pHx5!xOx2A;pk31Xyi
zXjeP4&U<59%F08Htq^UQX$gXkKe^5(XHg}ZfiiN?RC&TA5gGB4d_Kj#b*pxS9>$KF
zfX6C+nt8ju*y|OYZc2hk78lmrUNYT%%ScH;d}yYJ?APtflN03XU0Y*6d8l1`mPh$x
zAzQwXa=7Op6eheSZ=OoI($W${De>Id)`_9PzI~DXViDc#cNeQ%tUy-TBH}D0W;|En
zE;cZM9&i_UinU_;UX39}g7BlEe)hS3?PdWH%=`O#ojrO{yYf^hk1XPb+xSQM2>jeM
zoKFxfB_|~$vR&Kr>;*s2fomhi8)@F~pNzAQ?15eePqj7)(n(e_`j*G6e=?&WaDe^}
z;p#)=j!d1<|DLqZeXBhN5rPBKDl?I7Nj1m5YV(KFB@GX}vQ{{qYJ$c<`_QBk)>PLy
z`FVT&^|}Lidx%d(YH~sv>{@&;YfG6MChs-jR+Y&^V2P(q?5*~NVy)Q=0zzZS&ct41
zH{@y6Q1Ui}>O#{*3P_xLKFGy}g5%If-f6eX$gHnPBEs^`v<#igH>viAPFf>Q3{ZEi
zKyVu58x+kKS@yGSJr~0ujOQs6-J9-NdRl@=*B>dh?|q~^#y<E4-<hk!cF|#sC|oIS
zB|IPvp=mymjIsk+X$hiVshDIND`}HyhVqh42{qQpePUehTym9NCV<Eeibp=gL}G$y
zM%E3sSA45Siu4D$3=<W;GdV+#>e@c`t!MPBo(xv{WSZuQ_Bpv#QF&@&f{@qaCff5t
zZAu0D(#-sG?6;J{Gey^vlpyA`%cj}Kj-)lbRHzl=oBc^=?||@&C)oGa=ngPb5!@sv
zU=CqcHQMsS83@4V9-|ur*KsAlp0B@POMcQ0V`Qtv){j0ZEc$~cTXT~3DdJARQPYRd
zBkFqlPJ8ka`tazJUydp`JtVw<Kl@m8hHa{1ZV2ouBol^UAAu#ZIrX$7Y8eokU8Ien
zY4S1Yg@oqEbbBcBXC~P8W0((_U3b{5M|6Vfb}su1=ZLV#bS$yccThtgg#L09e9_JV
z*%|C1JG<sK``|l347VI*EuaknpOt{%(!742?RY*jZF{POvoS9Wv4?D;yd64Xj(^nJ
zOP4T5UVNk-NFW6GB$9z{8TuWQeu4etXg!zxp;OLgR+-)OAv0n9ZSg5F6U-mi+tn#L
zbo8JB7T&*Z)9rjg%n0mDTV%U3vl7H^s`J&hlV8in!=lQ)6BhfAOYKpoX=%F;B*FS`
zz0U4Pr;1>%U}OR9w8R9cRWm8a&Xvmsw}!l4o@0&}ablUh=vn64rahYuBu&Y+$9YQ}
zLyTB(36}0$O@vy#i|p`M>4Gmys6nnQcv3u=s?W9?2kNm$HpQ6#B-pp)w8bOFlLU}3
z$vip5_WMImD*8O6^4MgWdu#0tPk3_=)d(u!HDR?647D)_XmJrruLg`CrzNy<v8xCI
zkRYzW9s1f%?=xNoH(G)c2_&ZK_ANTx##}&GY68;)Ex{i0v|z{b*m1VUJzB${fu_33
z>Po>d&?6~aRCfNu<LwjjgyIj5-=Exg#2+c_KSaPg9qrvKv@@Z%h=3HTRVfr#kh}a!
zH@p5ytt{rsln{Q7e&BQ#cvL5QolIvRN=Qq`Gk2nW14O}>1VOgQj`AH@dC$)FzPD(P
z%2$kY(d39wfTuUnEFWMqKhmmwm`bc@4<BOZ2ux#-*4U)TkH}^<a!q)I<eGFSwoA6|
z*HKjJR}Z%Dg5v0?0_4hSjMEg!zk7zg>NA~QVW{5204Z5Iy|^AWZkcu|ZjlWVj0i;m
z@H8db&d0~eU}JC=iM-9!Nsx-C((LVB;^e)9LX%8k31X1^*@O1#0Apn$yK6;*$bhIR
zRWUX7O55cDCZO`sdLCvrD4DmDUdcH&_ZE8Xd*@}58Rq5g_V$_km5XNM-R?F~-v30%
zSOJC<4}s4=)ed5bZH55`n0#RmJF5LK+$AnqQ#U)#BO~xG;Bo+Q0D!MZ=nx*hRC#JK
zEswVa=Q3)lXl_FF`le=Oa#fJg46~PwrmD@Y<8fkIS=lxb{N1)fh>bKeFWYYEs58$G
zwg#$r^qISeSuS_&aqH>P7P+NCGA<fykNsx9a%@LT&mnfO2O#6+HbDbbYH9!go983Z
z9=KgQ5g<a5J>VuUy*tpxe@z9-`~cz^07{-rv0bY^&pv&()<iEe=$HTump0fni_icP
zeGdwRyUNW^GMA5czZc(45x7Fspc^Gyftg<D&U~FxPFOuU(cJ_Ze4~6tVSI9M;-sSQ
zIquFIX#!k(Q45LG#Js*c*M03BEzZSp8$FS{Pt;_XITPIn-qJBgLoqkVFaY0%@$OS|
zai@e^L`{pCDXCG3V8``9BS!r(<J~RKQjaYpu_Xu?0UwS4@#T|Uw6D@Fm+&d_5pf~K
zE~d==`61jb6VVoyh~5_oX`)cNcZA)Kztj#mZ+p$rOr1Kx&3l?TvHCzsWhozpicU5c
zpXC;Pr;Q5(B{DLAke}x+m5InLsi}m7K?2GqYAV#Ox$dU>b!oIGs7V@gOfn~rbqC$8
zgJV}f(-e86?=N;|y{N<FVDrf?Kt4m#1>8>;dmpT<!o{imYWU{p28=AwJ!1iuZvHja
z4L(V04S=G8LIz1TXU4eC{=oOJ2H<Jbv_@=u#&&0VKXrH=jA&aFDD3JZN4Zz-&=GRO
z<slFzdSV=MIMzFRy6^7M4IF~zqq0=O+mlN|<8Y7zV9s`}8yWzYVWOZ2oDCK%GSxku
z4QA(=D<T;}yJ%dF>!!I&rBgcx*d#fRPQPe#QLYk%4&^8$IC?>-Ec(dlGL}pN^}bi@
zk<FUWGQQbev`$Br7W6NaUE_;9*i)L^jqC%xJ;gLpl5_!S5<U8b-O*)N`U-J5Btk0t
zII*jHrsowrOio1v>t5*8%R9RVc4GGs*rLIeBLK?*=2`LXQ5$unf>5)#9J8;Wk?qI2
zM;%6UvHGh+G6_U^wpT@y-Ib%XLguS7OD-DHlF^ghE+e%<;U6OjkeAml8G3E-WVdw~
z)e>5yp{_~;Zg5s9NMbY0yy@;dpVybXIUFuSvd?`2?gwMI=!oM(Wu*<(0VYTnkb06?
zIniC7P8UuIO)XynTG;>~?3N1m*feTzQ4+&*0qhKOb&-4YA_eR`?yUHGi=Fz%6WqCX
zv3MAWTD;~JT9H$IaIQQ5F>O3LRK}TTb2hhNlzaUR+Pp9d++vaZ$^>^H-rm66K*^fJ
zC`=yfpF+3kdM(Bn*}Idh3Vv{`n=(&Ne6J(5kniU-xMy$DgBXp>Th#FkLivgw?u<Vf
z1}SGfF<OOjAV8m)(!o7FUXfr<m`wo(!P*=bbicn+C)l68@=!^ZxvIoXc|<2d{#9uS
z!&p-0Zogey5^2+Gh@a>b_d)JCa~ES1@iR$NL*&Q;*#Ur|vQZvm?rFL?hIGzyPr*?j
zow~AciDJl9^Y~czy!Rq&DG7N%i0^?p`e?W5K#oRmAl$3O!iE+QFuW$&9rm{N$m2!^
zG2TQSQHddj?gG-)7<a($x(hILU@Yl~<~`k<{HOCqABId5RRNL|?mo6WJ=|x+;~ga?
zB$R|6KotNiw^X?+_&yM~&*VhDzImp*>%To~I2?o*;$Z^Wf|{Y&eLTNs4gHLXKhnj0
zy#{Uv_2vccrRPzOm_L$q35Eb(4!P$+u6u2eW@5@+kL81SqEd%94PM2+IUil1-7s_3
zpeXb~nmE3PJFtd6c&T6kC)OguZk_azQ*pJH7NI&DgqL)XD4SA=lJ?tG&UH6Y3Em`B
zdaJNV?7R@4Pn_z0JeiMRHi8HY^&BQrpyj@a?zg?^ATbpYGNW@7CA1`f!YWlfz%$IJ
zt?rp0#K;~LKnG*(COIiEGz_}a2kSh<cml#-c;?6)?|aXiBi^-G24GFkX2ZG4^w*De
z%ihMH98+Bs*uip%Qi-Y#>i432ceZGU5C;T+q)g2X;!JV!4pgNm7OA>zqNGyIC^3yM
ze;th@*N<on*ubK7hTy$F!zsQ*dAfb<4wi{#LD+T^KD`b7lL&<j0_tziIA;F}p$~t}
zu|IjTf)Ow^z`Ss^_`{rO5AH#GPfF6_gX=9N|DX`uiP#vekF~pn^K0`R;cn8*JGu7G
zqr3`2=RgIC=^3;cd;fKYE!^6kBa*q19<RTxk+~tm4U0<&`vONKv$%P@tz4lD%`ohF
zp$5@$Kpu$*3!(o5chU)aju!O9Wg6ZH8Ah5JT4moC;Z~cu$#?Lm>~F_--w}2f9~;;R
zp{?Qk1r1+1(SGp@AImbsTf|yfW=#^j-gb~|M7z<189%7M?Ht)r(Z&k#%-#tL@xeg*
z+|Kq3O`(EZ$2s-}Xw9}`L4?A%Ezh<)y+gnbw49Ncl8^$=j<RQbrz2r{EeyX>NSO(U
zYR#Qlw)Hb*-tz!FwmL{85n*pIgMQu)rHb$5g_<y^k<oy?ffH=OruOqfzJ<tpb$@#?
zpBF{|$qq~x<g3VF#0d7C6#K{<I_DhRWB>x51CNQCoN2$`wf}HLIx>y@qaf9WRTk;#
zoBi#x-ZJ-A2rHCs?$5D53Qyc-lOc9N)Gy@Nt^4g*qW0L?-`?mAr7)u$E3@4_z@Cb%
zqMf`)sG574>|zlE@YF$^W4<BGAY3kKH%*rUd;KcbfkaIBrU>YrJJv3JT}xp_;1Q<<
zd{hfEk2IKgj-C9^4Im;`j<G9W))De6G4O*A&L{gxsW37!M7tKlD>+(kXb|h!qwHZK
zJAk_vi+j059wQ{yz<V!8bONkNo)eEt(hDqbTRPZgApLB=rSkUq``fAeZ7F+=!tw1K
zd$UxCObk{;q_`r?kXQJEkUevqPH2Czj5yHWU1}F0G~Dk~AmL8^|K{{C{WNoP>^AT8
za$5!1V8Z1*yi315)&Bc{{edB!2_BqlH|{rcfB|t@Rj#ey53b-RL6bE(cAZp2<pN2F
zt<uf4=h`zufIH&iy<%QLP}$4v6Z!jpSQc2@-|pbUaz8K)6M+Sq3(|Xt?HEE2pf=N{
z-bMovGb-CB0yg&gqjT*?f{y<xY!!L-`ZBvg_6_kHK#4$G#KtMy2yn<0*FFPpzTckm
zpmgtV3-;TD6a-GGW_y2op;s{;Avm*BP{2dPywuNrx8L^Ag^l>Fzx`pqvDh~-MPrWr
zS$gaf;K8?pz%CEjo)7Crh?k^-ECK`6`R0&xd%_*sBcJC^CDzKwLJOSUY#)EH-C(fs
zu&g(P?5>6FmzV?-4<RtXo^>1*$iZsDB@x-EhjTi_*;z?CRt|>RB9M~jfEn+pvFF{z
z%wU?3a0oI+E-Lq+TPOSSB<(RY*otuu+afY)wq;tCJ!=VF+DlCFoi+cu%Z3(nF#DFD
zoR9^9+qupjvY4^jN=1@6-0yqXh3&-|NgN`kFfsOSuUsCS7GF^SSse!~_7?>m>`>XT
zHYiVCP(;(Y_9^cLMF*oUIVzy%a-@MNPv~p=eWeJl2(fhwme2&Z5&0Mfpe^>n{X`tV
z5+la<x5a{8@yQdDVox0)LL;_k`5E@h7z9dfror5KMV}d9=gJ{~4RB4u3V8&GNR%Ri
zz7TQJ_g__Z%5vSNh?Ytu7cA}4R@<L#g4xc+oejE_MT19pfd_W7AFN_f3Gp-yH7H4&
zn=sbGUYmG8O4X*TNz;GE+Gpm`PU7((Qir_rBvuRi*mXk~d7n5RDKF&6tm*a)LGSwx
zERnE67#N0Zp1>=s!%eqEG!m#%(2T06KX<h)7)mcpB0}Y1c@h%Ji6I9+z|)U3^56`+
zNF@7cazm{Unj-n8tH>u#dCUHmOjpl{%X@v{)IAN;Md|j}JyeRxP_U*}dU+bDt8TT6
z`|AhyzJJV<SugKz9~4?*-~18xF|S3nc9oDaSR@D4=T+|%{LiOhTObO;wjHwQu(HOM
zwueyBnGkQXtNjl`*Ea3tl#@(z$j({Rt{m%hT*hK+?B}Ad*$3$&xXUsld)V`UXfR<O
zlrUQb0!-m%Ozvaj1)90MJXf-nP|&GB3C>@KTc^D!F%hA3hWW0mjk#pMPfPs8yjr{3
zTXR(Im6RaHAFJx^F*4P5Q-WEW+rwVl{_+V-B%33<*(Z@Dwp+4r4+qrS_3f9;d;s{?
zkUe|<?-DTA%$sUE3!2)u)nF+U%>zQVs6ATqB#p04wH+5g%wuIsMgzc~Gs98LWbSl&
zj#5^F@X)X_FhyzRfi=#KNy-jLs%bpdf@P>RF~7npD!<B^zlAzN-@xG`6~W3a$*ell
zUGNdCg@*hust2c0lO@5ZU?QK{2CG0%^0bRRGJ$7!9aCc5I}ca(4yH)_Yk_U{b4}1K
z_A|W1hXyBz7b&8TBonH0E3VtW99lG5?%BLCCCoEJz5!*vQFX9-!uUWaB%JFOeaY-V
z!$Po=-~&b#7aUWc=ODL}3IbwC2xSy8iM;8L4R^M0g=0e|Tq%)3LTD3Zw|ZqcecsaY
zVZvK!u5YOVi9C_)_+L{dk5D>w64_Dh-+m*XpV4B(-@Jal+)5uF#rR@GTMRqhP1vIw
zR17zxq6%d;GrG9HuoFB9@P6WF3*Vn?ZkXWi?8l6=gqOs$6^=}O&z@{@|Mv%@z<59p
zl7gJIU}egs{QMyIiE;GsoP)vk`$CIiFU}IrU+)aPM;jD}O7YIl#UnJ(7?8j;5{d{t
z`bnFd4{z3wV!B&HGFAphe9F{jOmfHk%d5dth7H716&LTy06xI5%`}3{{k&TD05YL~
z3f&xZgFsDrzI*de%8-%<ph=<<wJR4<fqL@8eqvho-T6-XH!Kl)hh)!qW(kM<`7O>F
z8?{jUl!;0l#`QK!4t;CAGw%(p86KXFL9$o+P`$JG-N+!E0)9dA^kxb7+GmFI=7*6g
zqKJw<Q6%UyZ*d;=iiucGf@zLcDiASU=lI{!_Bu<_T*%>3#}iX<m6J&5Hs(4CEde2d
zWV$>;!{<7~zSD9-(YE4gMQN&8c)4@L_gXp(kpgXX0WHnWJKp%iNfu4y)W~<Azt(wg
zxwaPWAK^S2QYH(FpJb*y<t%(h>vTIB#Z$T5`%Jp&dx>-CCa;oQC*lJ`3VTAoEpk@=
zs>K2uTwc6!#ji~Ws5cs%1J`I>A$&H}y!S0#|IGxBWgdVc2`@NxV1j5PIDeJ6)t_rQ
z4{)tSkU|Uw6unyPrX(q>^hah8K%@hBaC7p?-2pqby(a+4*O<>D3gvu<huxdL(#m2C
zusx|tGNyx>W^KT|3vdt$8D|4_p1aO!9-iP{xLQRfV)4&qM{tSUH{Be4p8F2cBAR&H
zCZQWd2`DLZr3o`x7ILQ!@@5zkmoZ%tBFUI4_a(s}Jp8R_#-j@@Ep@K}GALGu07wcZ
zLFnHMb6=f1b$z5pL^~3;q|%3uL86UF8(v{<MVD{24clHPOKXtW3Mcw<2!w=xgd#7v
zl8)ot6FvBYZV8LC9mJJDNSYZt&57|K1aobPJrRZSJ8PZiyb3&5q5UH#J?If<c=V(d
zk`<&t#`Dg1e4lwB0L8=T;<Iu8)y{EmQYc}i>gsToX5DHccg+RvR*@sI^UPZPCK5r#
zO^xmfFI*u8a*dJQW1M?R-M2T;9J2z?3|<_Z@iGyux0v^A8RQ(YhF$;r`mAU@cPSTZ
zg<6QWx;pVu6xrU&X6NpYb>bx2l}MzzB95$6v$OmYt?)Y4hnu)==KX2T?8qHwp}cLz
zaLtCV^jZ>ThiQvbDX&0M8{jVjJ@I8lp2$29xoML`b3n7xX{~k!sbiSIqU30ZQ_<vX
z7BhZ=&6PteLQ-l)y6MsE>=8SDm1;DRB)q9Igx7%d$}n}cPL0<K@5rz(8&A8xjE4|2
zgc+l};Pk<-YpV0Cw*>=hP@s7`z$4zf(fMJWeu%i?*ukR!*^9j}L6~%jGkBF&XO|FX
zN@Cr}fDo9=Zg!S<8-mLZJA!{P00E8iSfew2O-zt);uT-hg5gilH$Zd)P+Vrk_4ci%
z?m<qGbT&kLtTpD3tL%Tebr16N55${Anj7=p44ZLc_aI!Tj!_<%CJ`Qu`+_Y<pf@hn
zo+VBhU-92&FTRMj1dBl#P8ds*4T)Dd->z)crUkq)Q1W$Rik8csce&HfoTD|2T^4FV
z*e=BhcUau-gIs+5B>pqV%gsQ<f)_tz-}BKyf{$S+i0*_ak#~gbQ+{TRIfta6YHDf(
zR?9FaH+P+H-#nKZ?mJ=iu);CNK5W;tcmojmpiWk@vDDsik`@iCEb{_h7O>iFC3bs;
zt|bpom_}AY5Y2`5vMQZ#5!Tv5?wCBpZp91ieV1u5<aIp=7y4sb9ZShHN8DnMy+o^`
z+r+b8cDwy~7KNCPWA!dUsI`3|`?h$d&6uL?^LR*+_qOOTRsXg#_ySv;-Bf{r4GTAg
zaNalEVC!nNxsWLMF#}FaO1@nFZ<}-}RbWq6PSnOgd4<Vk=hob6KfYKiayfKR9mNcM
z-EH=K&Q1;#=xf0coG6ykzQ=8L+HBnj^3fAv0ALZbr2uAZH_f+iPSZX`0$+6@oM!4w
zHdeN0-(p92C)+=SSW(U!YU25Mc9^#t`NWYlc>sOVJvLXSxet!`<juF)WimzaIj-R_
z%L%f|PA8j-?z1Zx0MITB;OU^}w`0CdDWNg%QYB9-o_~Z%WflxR@oqcYTa)Yoyz>;M
zkz#JS-G*2Z!_z~dJeR9{<Q?`8KFU^5S}IdE1Mjd8H)un`8z6Zj4qrC<$l%TPVDG%e
zeyUn6E3<J-DZkY&Wp?mG%r1zM$=q9EdmXJ~N_<oRFc12F$L;pd>D^C&^d3z1fgsk<
zK>FDJ_NlHhQaFrEwk6nO<5b7nymf%x*h$MFm77W$!sP%q0TU8US+)%wy0?Zh_Ge!i
zaZw6zFr%%AHR{i@A047?bICWwHOnG4jOlW=P4G%(Y#E{LsN==2vmCpB9pSBh_RS97
z{J<~btROQK3g(C$>rlhK<%^Rb0%VMU2?(rT&5WZDa4wcR_-cwn2rIoKMoSCAI73j#
zlk-@Py)IUVC&GIzGAvA(`Lc+?KkjSaJ5H-`6u~}`&uT7}K6cB|TAVExh_>uqq^;bO
zDP#_lF_I*b=r?EB|8&tg7Lm28UajMKF;mQqS@!#$I?8ZpWIV<-=<bi1_C)WKJnb^J
z$azlhYtQmd0v`v~DS3JIn8f1i?u=*;CP^hv8#98a-8cJeG*1L8CZtb7kdPSCKza_!
zv{xRZGr*}FrLrD8$IHQgC7UO<2&@`tpfDe+BCn7b)=dfJf+HFerUiJclmhs6P!x&^
zNuMhz86oDhCy{z1XECO-24?~^*Ag9)ulTHfWe`-Ppf23{z)8X*Vegb~^SnJCKaJRL
zIA#GMkM*(ddT^H;oT6^YH0B6*q}$y`dJ`somCRT^uqea!Ib2JJOZ0LAXYQ?H&q}>2
z5dxHXjtQi^N;E7Z*E<z>CJYPIDTNme-?AaLpa;WYK7i{%)SCgzZ|!u6&s$0;IE7OX
ze}=v5h)hkljVA~rbCT5|GnV}!Hi;bI7;pA}-3UC3_HIO><QY-el!OuM`q*1K>Nm$g
z?-P+ba&OaQV<TIa!|5Pc=R2Z`dhu*~P<LH`PDS{cGPwf)DVJB*CQ_ObZzQoa;qFE-
z1C9obwcucYh`|5{uF|p-^z-6R;(bIUXM6hFh2BSiUvc-)4LW;}J=M|H7!Tq3AdmsB
zVy2PtqZg?i*bc+CUfd+IWG=*RuJG=WdW`J7UzeSs<pArxYm{mt*GMn}`Ukc~aE7|_
zp3x^d@nJl!Oawwk7P{mJonHhULD98EXq9y&M$$}aAfo{XXiJ3xfm^BZP)-CX=98aJ
zWArk(hjk(#Fo;)=XVQa>bUFCQ{TnZZ0J(%=U_lXtIT{L+!R0y}k`~1PBdR?ZkP8e7
zX*ymfGe#m&dmF_JBPWy3>|_A3_Tlgs9Ocbha+5=WP$9G9c1ECOFit7r^P~(L?PW*U
zK#~Utd<i<^-L?IqC^RQTJn&>OvIK*E=$)<t7EwW_ampTA;N+vnCT{aE{>XZuXV~#W
zPt^G+auUZJ4@7$aRq|B{m?BZe6rJ;2$gLFQ${k=P+*FWa1ZML%U8oFZE+)NPjL$pk
z$V6R3rKsp|AA(ju!DUK8qArTS_%<_D$mJQtw*^j!NZP{MtQlg@=@!{!a3=z7<_daY
z1(ENJ;I&dO5lzbo+(b@QcY__RtO8LYpW=C8bD82k(88mjGK%*y)3CzXl5V?s@YUv$
z3Sy+E_u{>9n0Jg=;R!#5|Fh10FA8b%RC|wVq{AQ#2jtM@zVkH9_?HfYtqOseC>9h4
z@{4Tg2zY=%HG9PP?e0R`3J<m;h?MCD5M9VS5rIj3b2&oYe^Fp^E|GnKKp^FTUIW=+
z5UYR)2jjhN;zlJqC7rmfk>^kj#luX<u;hM6US>jzc)*N{YMX0c%$rg(MOLP-@IEZj
z_L1b1z_UP{LPhiy*5M<cjVudvmD~nhjgi-l=)`iKoC+5pa`m|^>gXo>?A?s4gBTq$
zqyef-fl7%EARzK$4CWz?Vs*XzT+<8`a!AjJ>V>&jssv;x?ry()yk}6&S6=wso-zc|
zP$Jql&9RwX`7N<5B`}|u^#@G>_N?)f>}jVf0V$kJlrIsgdfIJv?Zw?C+*dA9u*4e}
zKQ3{Z9KG94cQg)Iy9z9{A{9a*M&fnRB^sA&Dc(bpnnV)XAby1zdU>pU`XYC~a=3R~
zvmU+3T?@rKqKwB(MTUs9-niO*=|rF0ZceQZQ#cKd%hAhyq?G&39SK$^kP@RBq?1Cp
zJOQU``>?fQHx#af%LcP(q)`rI+{l<6Y?>GCV`!*?z+<NV1>65sQd}l8R|Gwzi6ggl
zn(6hY>nHKJB&{SYSY3!Lg8}jaZ*C%0FHOWdz2mR$GhSXxxK%W!X&GdHGf!-F&z=&q
zR;EV`DI9_m@o}{$+neKjYmp$0hw~<CZUv#ch#P=tuxz<I^K;))xM?WTR^pYVOVn1p
zK2Efc_DfibvG?efKr68mQC*2K_T%gA+mHL?lnA2EypTSzMi?V@Uhwvk-|S+)9+ntS
zz)VRrHwne`_FCJa#2GdQm=hL(V60`PU~sCLeWbtVhVH`#;9U(x1%|FM!w0}`15OvF
z^%yo7PQ4)nhb6p1L1BuS_K2Nvq$XI%K^h>O_n=W}=GK9Bd7#IzJY?ulQ_{A$h&_mT
z+kRR=vAnlU<Zi&C9u~Za><lx;*(dujOcE%ahlFb{or;PPYD~Dy{*uU-iF9iox!G2i
z&`fxJi5^pKh7_cmr>gB8clD6)|B@}BmS+p~722}54(fH)8oZa8MN_C6qN-YW&rHD>
zSN|CQ<cra&294-%1}%*5?d1#L%`XYl5Dv}xKK`7g+AxRUg?LJ(f_~Ev>ow~e3W)+_
ziu}EtgES*SHn-jT02}}5;k~~5A@YHS?T|#`lPgN!^EbtJdqykr1L5jshBPzYjwkGd
z%rh^5t$j0D9%xFsp|9efc-R|*jY7@95TqJ1kNg^c;0Ib>SV{H=Vw~XEArZW$?T+vH
zg;wN(#q~X)Jk30NV6V?)zQjy|o|CBjM50eMAAJ%3@@HC{SGB#qQRbqtwuY{WU%O4q
ziM=5icO;!U??<Ok;&0xl<@rSYl&!>c%M@P`zo%SFW%o%O#VpCEYck%CKkaQTFKRRU
zv^KNPtHIbUx-+<Wu8S92IPOwDK{WwYm@EGC%!Tf)Bel3NI0d~9Qhk-KQgvdBdwj80
zjU<pGr3iR4%~#Xi;1F*diBTbPVNXXwAR=zRny0P4+WqfDZG+%Ng>b-~1~*{i+4?Ti
z-P{qXWFb0-mcwB&c1P<jEbh5(NInkIbwInX0H}ic5b7&^rE^N>ql=RdYmd5c==V^U
zT=>y=Q%W{?&}jyCjVO}tbZ`C|U;j49PVRN2N84g?4QW$MK)On?ga$*9x!!EJ#GM$^
zew;)M#=Q;_^RHM8^kn@h!p<K4ssEmCWUi2StP-Y=WVw8`^XvXoOSH5&9B#zskeH*w
z;lA*Qf9l}&ty%A~75)dj)@|ZzNV2XT5BQhmX!AA|Vs4RizkkO-_1ws5L83%XLv;fw
zecsM@QMQUB7+%9--6c40_06`EQKfeOR`g=xyG94Gb$IeVTXKTd6g7p#t5j|2GO+@{
zslIZFJ+-e^s@feV4SEULc-zy~936WWk9c9ATB#f}{SyD{=fz1>DP!Il=5Ef8oh<}L
zh+F8T>_ORwnW_K!gX3ni{bbNa&POUA!j7k#%hLQej?{9vhx$OIoS3_r{w`zVma?~^
z7H<)oS&myGZKKnDcAfqF6Tduq09>`cg=9E0858Wex9VG%O-v@tuXrS};3Wi9z;+s?
z75FqX=sQdeDU;3g20O7#YsT^N;Ycj+s=#6IVfN^cwW1jF-o^^ZQQ|0I!YmMU*El<}
zMk`UgAOqE2?O)?I6C*l?PV5QPuA)kjAfqG{LMtKs2G$s4*35G5yRwTkC`34b*2X8n
zJcQlBf)oEuY`DibC!L@zpjIUEDsg}+o3@I$UUIr%h(m<a$<FViv`uy$7W}?kLOOG!
ze{8HpQA#{_TpyFo!4sWs1=>jB;?i5bAae+hbzbZGfA;3#+}ArFj6iR&S3(Ll01IlI
z6O+3L36a|nLbQM>v!q&AfdLW@Nl1x41;r0^Dv?XXNvcaXcfo(VOO%S?;sufu45{0J
znLf<zd{gXF@c%Ggb%`vSOuQkC)Q<5luD45ZFfHWyM))Vg(EH<e?JaX0N##Nq7I}qW
z8_4v^yM9nK)yWFNvk0zD7i>YS!>{HM=}C055(ZwIgKNzRy>?+H!P6wZzC?f!3IK}*
zxaSeq+XpbxfSDRp<~asp5y3>}zGbI~i3y<|_&`V^q7bQAoVqb6A`P;c*xODVi#<R)
ziy4vlojuS#-7$6+(=X<l;DsVdv{k`e`>{PMhKy7aRkZ;*KY9<Z;>1sEQcRpY{6+A*
z=&yLQc=yxI*Q4#b>6(LyRHbl7W_TgWqu=LhHl}e18syc3XQ1^skYS+3+AUBgB3>u!
zm&m?+LK>SPgR;!SW9&!MmAWA8R|79NYZ);X8EU}(ekPfv2mlan1P7YJ!JIXsiH~b2
zO~E~n=)90W{YPVHe$f=$n4uHmHEXJn$RE%c-1c2F?2@Z#kI#;1g_J(Y$%a1pD&LMG
zyygIinjrj}$szFVC4Fs2rjm<njHp44TnUl3=H~NwZ(k`NkZ_fG+iI{eCAvV0IijCk
zcWF$ULdj0q(9bTsxNRX>p3K8%*dgs&N-%>%&$8)rXo<kK5`LqBFe1Qjx=A_NUVd-e
z5yZa4o@GyHI|9#5n#t{JZ@f%fO4Jloe-*w#SQ6nJgjq8=X0puMem4FpZINF|HYzD6
zjAN2{u%At;(em6~!inRi1@F2o!=4as`{i_uYJTr)KbC2N=Xt}+VL_l_@!o&=3_E;o
z`*Lt1UXp$7g_pD+n$`<5Y;lv84v@$;Jn-N)0>7Cna_p8`t?+g>i5%4?t)KnITUhQc
zgaRmWkg>xXqRPlY+;pL~CvYzl#~UTf>`b-aUemrX!z@X)uU)N$V-Pr$G!Qci18k^6
z*o!yr)(UK00ADT<)GNC{<Zbp0@yN*YVwN)L;gykC%E*9tevf}4{=gc@b`;%VQ40%q
zMXC}Qy72D!i!auiA`x$UzVIU65QLO{K(Fhs)k^qT0`%3jNWym#vXHdyU%lSH?r-}6
z2dj6)KRWNPpA*cv_jAIEv>8(vw`Y&;m2|Rp`%5L!xb{{K!tkx4vPB*lGw0A=4Oi{|
zB_>F4E^mTp?e!sR4K#<!blE&4NoMH=|Bp}lmi|qxc-2>I@^5<LZ)?RKu=hs)Ax~*-
zQ8>h|G(*mi8<=el{Nn#%iq_=8gj1Lfm|QeD{)QL5Lb1cC4OgQxl1c%&t4GE^;4pvT
z*AUKOA(51+N!w>%?mu?CR$x<u8lPf8;D=u2FHg|o(Jh30C^u%obN-4i;+ArhMbfZY
zjwplOByxM1f9p(bTOc9yLNI;g5+G%PS-sd_xh+n<I=r&AqOL`vV^byOljmRW|M_U|
z10<N_+O$>xWOD4pX~Q4&F8{%Pt!_8pWD}V$%D++76}**6vOJu_yTq5xvr8!+jUQ~-
zt02Rw`C&!;TgmZKK}@s?i7r8pboTzw^7!0jzpQ68p%?hHk0%fFLE^QEfQ>!q81!eK
z>01h)0lm|JJ2MP}zMx{Qdr_tTt9-(hrisQj1iiu5i4jqvnRlT-K?0l#YtEy%x0f90
z*^T}?Zg*rh;~}9W>?-$`r7OUb>kf={>cR29X4$3C9Rxc=M=fLnjzMGy09l{#uC3)A
z=EY>Iv4SU}nK5fR`dfdE(?ZrR1QTI$<XXKp$iH!WoB$u*bk%5i6&y05*1p>8Ke5Fp
z^C)VmZfa>34@mN6i9YPSul)yQ@}&Q5xKK1^>Hl}QP*f{>TX60<;c{LpIaKES=6ru+
z_kW6>#gtRctlRuYclf6ksl*jEx838Pe4GLXCNsh^$;LB08^2(I-yHi-ok8lE|M$!>
z`2GL1U=2{g*ZXU`>Q@BX;nk7oQb8V(y%nD1rCpp=d<@&hSw(1pM*%aZD>LtZlRwt|
zr<s#d05a+(|4TjpsRf{c39Ywv?0GhFFrk1W8<Qe&0h><nRe_F1VPyowWG6ct#<*3i
z1}+IlITWS~{mx}wZ54zS8rKSR&_tdsd@1hfPW~!xkum@7;B>o;dMwir`ok@lvyS(z
zUE@j*W1hJq?zdNMm8yruyVYFV*O!5431}G&ISyT6O!qaug=6i|9OBa=7iuMVps+ku
z7rO5@6AVwJAQS!m2Y>O2P-}ds&Wj)<-jW8He&4|{!drMDTnXJ0Z1GqLNvJXDY&)dh
zU5ZwIL<9N~T+GCXX~wnIzsEN;n*|}C4iPdop)uT$P!l4qG6uqO!L#POS-(c(sn!HY
zO&S#WS3Pl;5iOI97nuENt$WXQ$Qq)`g$cS<?giMQ3hMNlAKdJ9ypoXl$Rw1eNGDug
zvbpjgTla}p@C-H(G(@s!eEhTf%hy^6N-M1pDMmERXS5Ym%n3icz75(c2d1pNB8Yhi
zJB7V!-z{$Gf3&860K%=L^f4LG)EVaWU)+DK&<et^*CE{^9uBWK^v6$b@%LH*>m$?i
zWs|fwSSq)j6+i($^^<#}Hz!i9s+<v2k7SS||L6zze6Mp+WqrL0tO<WYo)R$WtL~j&
zc;kvb6+yFn5=Ibo`@6g4XKyYDb_pUVgcgBE5dpd{ySII=RU-)Q4reDz<2eJ<-L%J@
z^SajyOAt^Vlm=S{dRn%@eRj3h6bA4|pMpY`;Hb5}90Z<qjX~k5#c%kOSKP%PYqLBk
z<i>_@1vTkH_guKeUHy{Q3@0?Rev{<Rpqd*ux}!Sul*2>w<4u#b!5D6KhwRi2LzqWo
znk<ekU;QrDnbKuUP(*n$%S@?=S>>9Q+9wAUPhCQZ{AB`UjW<_*>&{-Pbz=~LM;C{e
z0twJIxEF8KDnw?b72a8=q=I^f{NRrECZ{|*p=yX5XD-_84t`DB6PNm{=uqIkWOMKP
zZtEM7p=4r2gJA}6f;>alKj&`uPLj`{{i<sV2B|6F#nXOsXL_K8v>ZdBy1GUJ;@7}Z
z01HfK<2P>ECLMhc0c*VvM`5?9DTunCh9spi_x#s&|Img-yS|bwAm9M<$_?(w-zXKk
z3#R35cDjV!+P%fS)Y}|1UJ&O3(eM(>esEX3pu>z0aB<<PF!p3LY-F>{jNjdhyv@$8
zi3IKA6adSU-gmpcqrI|gh+8K7m2LvhJz@Gjb-QoX${gU1b8W(2Nwx?rSC(<UbhCDA
zZ7w!zd{AJMDn#TnR=W>-hmIk0u*R#&6t~ClN_XTA?IgAhHPw*=$>e)U=BLlxP~>}T
zDfZ0Xd88r?dTo{a(01)7QN+EqB@pwiGP+JK1yam|cDV_!YO~SXU@mn4()%I*9r>yI
z=v!K|ygm|3JX2=`93JeAoEH$I2MHR$c}KS|gV)B4{@9&&zjiKEYY07#=wS}TkcUGP
zK6>{?cdK{i@CG$yyCfzf0VI-4%%RrjLG6f!Mx9myDK~JgkQEAo$TB^ayBXef%n6|C
zNBts<NCvK6iDuK6ZfoR120>RMCM9}fDleg#`KSBLdY#%}J#f-F_(qFLiAb{uaMR4V
zcioQfYJ*}-*17(CS*+@01k|d@=Hxfr<Y%<O5ZIO|1Q6hu{k-oDH|TY4iz8$|H*9fd
zzSvIflu4{(((iV$vCs8vtBy+5_~1*s*e4(IB8>-|RYaGZp5a4yvGX{4>Ae~?ITy=Z
zLK2H}YF4_BySx5Zx95?BT1GG_A?OK(fd0b=>YAHwn_gxx2+4*PboHX<X~IpGsGL4X
z=m|&I>>;uHB9td3%gp8-ZNop(DGMXO(uz`*c4<O}lN0Sp*GA$tLtl_>RGNDM%_VmF
z@GyCz30AC0%?bK)DeC}zMAdDn+We7jwtSI}J_;GJZ(lkF?DQqx@3SfPl7H*^ag2n%
z_3}hOwcF!u^(Sq<o|+W-y0f$0XVUcZX!RN&jFwjfe30>wI?|)8yS<Q5?p(|wY%!}b
z7G)y|;4CRph-FPCkhYUfWaX+O?7u|!afBFfBBIIgDmolv$DPg2dx3wnB3X|&S|O2j
z$is;&1~IFAqVP!jQ~OV3>OyYn>FtXgl|rrnE(*#d^X|Xw`o4Sv2laN@8B)xu)9vSy
zw?SeTOXP8;l|puS!jE>gFXrjA2s2C`aaM@F%?B03k<ZVfMnb_LC2DDGa{?Hj$oDRf
zv!^`SW}{Q0$4poa!LtLw-iT*aWFj%6QIK}D<YD%nyE4>|ipS98K`(YX#1_lj0hboJ
zO;L1!K_Y>UiD?Ye{KjT?Pmbm|85pR++yEejs)P9gjmQ1&cACV8(W#0;AFFKq`2|<c
zDX<GJU}&Vm+ej)ItSgTSUl7}ZjIsvXOGV}Z(OOnh9RgRWCJ43MS8nxaMpS+^@-%|v
zxe%2fxP6%iLxOc7b|TqUQV8OKt6RX{y;i>`OA#qFsZGt=0d|kfg7k7?4kzyd3L$wF
zu6WOlAE1NLJ|g2tXs!w4IZOUw7I4_P_Ux%Tpjen9G$SPev<1oruKVsOwu3x48JKI6
z=Z0wP!qjhWvj172r4R$Y5y6%y{w1Uh6w>ZmJ5io5w8qG7_>RP*F~1brTRc%wp*#eP
z1wzN}wcZ|an>I#jETxDXkY5zrylb=+77>vR!rnA<b%MQfnik^kET|aMFsQCsXV`5^
zD28pvQYrHILNY*bfBm`Jc#7_EjwqfnqOSGzuOM!d&{gmh9Qwvr-ABgj{tVmYJ$+Dl
zAo0~B?B%odV}!9{23RX(n4Y6-*~41c1_~tN5$Upi@StGtDxglYi|tNN__Xh=vdk?5
z?Af#h7odx)Z<U-pkSO>G46~n|qch3DzKCd$lI=0W+*o9{UF%I`R}J~XP`jqW>1COw
zq4qR36glPyE|KKq3D7B#%aCS{nk3noBn1(631xtT@V*>P*URmT#rlmwVyA`OX+-Fi
z#)E7|6xr!l>P`-X>cyKxD0uV*!U=TfX8i-{DS4_JOH^JcsR%QTuh~}IsPn@%g77Dv
zd@+Shc{tNL&04c}Q-JOtitUNldFu)Df};%}>n<v+EOX{i`-W^6{7gOShNdXV3W;+6
z5AMxEU+I-Vuq>x9*=I>9Hp#xXN^78%)DDb`DL~4RT-87YU_q=DCKjO)KoxBE=`Xvl
zoT?iUg;8;A{ieVscrco;8z8uW&oF^2#@IK6N=H7v|HiQgj}_TwB&=Ld;0z)Os}3C4
zOk;~3b|D|(^%1`x@C?rjT8ppUMYFY7u8&yULl$CVDpHG|++~vP3EKt<gbsNRoiglx
zd&^;3m@PtZ0?edIfSFYf+ZgtQwrJFGa3dZ<3MNKUUU3Y=OCqUS#Z+YSf=@X1PW#~R
zEJ1KP7ROUak|y^7e;qUzfFOxnV(lw$Ga^tU2T%SlDCZ~V*t6y^9KrI@{0l^|_t-E%
ziyU&hU4NWTEO!G5izz0<cb2iwTcsLVL@7DD8sRAuDu}eD=rox)`zd0qA#-O?wGN|a
zMmoFK=PtWkcDc>e367FwZeCzpAYR+-FH0h}%5-}U`^ya=0+{SC$*sWl|DI%ffmz!Z
zXPJX0*{V?#qwd20yD_1J)D&uCO4>4*pER>6$NDDHVBaaCvd=P|rrVz9w<|^nmSVDI
z*t_K8ZCgXY)zbQccEvooc(=CNBj!>p`LlQ>I7D0v!HTa9voDruc>z}kRDfMF8MOP_
zS>*~L*)>fn_eS^(<oxlKn_r-3F`xwD81irgMuZNy|7x3gG^1dr4)+N1uTX9x8J;22
zEPBjdu%-RxA+I*s&347Cb`woWh4T6AeA{Uz#mM%su#!w-_<6>kVRw$8kc>}ZBqzAE
z6O4ejXp&uYFVo>x?y6};A(92pfZ1M1MF04BdiRv0rA5Ylc8@T?=xDcLcN=AqGJ%)t
zesdcaE7$=q+v+f|h1o_^3d}y*YM00)ljsHL36PWC8l-<{tL7tP;I?Qx-TYZ#b4ByQ
zt%o=UBvTR2XPOO@?RB?nG0~I+LrHc8A}+6V`<=n?Tp<Ala<cJh{6SL)dSkx5&py{h
zD+h}aD7I<9w?OI4C+xSdfb`;m)ndac_ms(Av(TP(cx1Ey8C1|zfO1RkvteO$+rV^k
z3V`z31NPAa+n19nIK%9?$KLZlMsNE(po$bo*}+5A2HxO9GECPQ_TCv3OZMt=W+{|O
z3f63yVq4SUOlmO9;o^E?69{AACChwYZ#QzO+YE;8hv-Pt>~1hqn__tNG;`sFcCx@U
z5w19dMmZ$$4-!p3=5?Wq+w}nRC7It_Y^C(rZ&m=snKibspVqXwv*~8{B)eQL=f2w{
zj(r4*wclRWa~5;J-?AEQB@YGf!^HP&+JHDI#@n(^-8?aGB=h4+TVJeNOoD)5YlWg3
z1t-iZq`-%^IJtcnl=R7F+)5i?(5_spNYc#65A4`cTAq&s0}?+3f{><s{NVTP@*#1e
zM9qPqLZpwx95q&^DP3(3*ncR}oSSo2+t8T5e1gS&U|(UjtYUZ&Rt}#%IUaEs`{-l)
z*!Xrm$Oecw<@gV5Yx^%GXW-9hw!LS&52HO}A{a&CO%Ntr5C|TAi2sRYv9ov;@-){P
z5x!L^pJcw-ZO?g%8VNYnT84y_7_aC>lFW-Q+OLjcEYuGG4d!YH5|d2k&-Uy|I-`OB
zj0BeieKOm+WR0zyqF*L<G|w{jlG1$W9y|BlSjk2-I#3eei0Z2GBY+}?;%Yp=e`G%n
z38q9Qi>jS2^qI5A_FJrTMFm~nS|*DC#FETqf7p@FYsGNM21W-SOGGgl-`Or+hvAa+
z&@BDde)y1nG!GXu6boUY5E)?WH}<tSz9`lJ)dCW18pRmKE!atW@u?|m#syH%Qc`{=
znSbxJmmIC@8r@QcxJb6t?AmUR_>vA9D4WHym+e-YL;!I-2Kh3r!8_dfc;kOJmT^E}
zq-BE53kwuy>bj2m-M;XL4mX;|Ucxd{gSmQ=WCC0Hjn1s7G7zp|A>dGE#b_P>#b~^&
zVOXumj1l#Ut>=&SC|AFfT@5rr-{O>wHt9(J4?pWr1%c{@aHtA!m8lWV{s8|KJ+#B{
zK)8wu-@cAi$943-`MY-HO~IAOn{(rDHdf}m@8;q0&o#gD16$u7GD*_Ti<P+2zEY?+
z5(b?7?ReW&vu`H!nf<aiAKy0)C(4z|SZRk9X*q!(E6KNo8V^X$G^wxKkG;zhz4Ck*
zTbj@Z){zf`X$bx#$ArR;>A$zZV#+fM@@c3zV-uSYu@5%&N#?n=_S#?CErCx1PGeWv
zuI;}ds_ZoL;Y!<qDFHos0j!yP$dNJb#I~Mv602<{cV*x861y1r2H-RKiT2;X{tp`e
z13TT@jy%ME#00}?g9wOvxX!2c<`Z?R28GMmDJ(Fe<vRs)VLgi<KH^2hO!AGn8|@aL
zk$JHrgkBWz#bQb!^7!}duYYP?UJHwtZJ~nQZhFs76L5f04Aus)013l-<0&epa)2}N
zjLqR@`@h#|BLU#5@cdUWXM+OU>>;bPT#}(6X7DNq%k+o+d8H0YMrZg{5o0pJFMhI5
ze@-zEP_VH&?3tUGL;tW3{Xi+`vyyNvq)gV!c<tee6*$KslG;zi2%ICMoU_@MhIRP`
zti4<=3DX3$j$dbwk*~G|AxW89vC=-k9_zKnfnKi_8_7_Ezq3>S*S-f=A>GXWz)p?=
zDH{*kU?23A(Yw3v1K?U<bm1x+FMz_j@ZUhO%9Om@@y1rWWCz=>Iw3hhR9_6#<wd(b
zos*>);WC*N=m4@soOIc<_R!<?%=7R>#nek7^vzH0XPz<6sMauUhw=e)*cyB7Nqd{J
z_vnondtckaa4j}&a=V1_Pn1VQI&jqaVGIc6Dw)k+*^@rf&Ce!CK1FH*B)CK1n6>4G
zNxev}b+7!BH>_`)u18o^ITZ+JnL3nf!n5`aK_7{Po{2nzJgCeFymITgT2a9EG)qV$
zBwJ!3F>1T5IW1Dt*vxQL=uUS&#6LSxE3)faswH9tFTK`W@{4^oPiqKm7LeEp*jVuq
zhFUOP%X1-h(G#o5X_lbqgDbT>FI?{-bheZZXYR5W4~%Rd$~E%6Y0M3H<<c+g1WT8_
zn1V~x22s3>rmd(6pG{a8ED;isPNkWjX8Sj1k`D~+au_Eod?zIVMv4zr-XVMZTVi5g
zhUhF3uTFWdka}_^<f+3=r;k5y2e~BMjhU3{gBXpD2?>NutO8(%k4#SWL6=>2vH#YL
z*q5O=i#8zPKvtaSLmhC&V}9RlB$*U&t5Ig1OOu57G!;3m|Cz@9zrz$bg?X3w<5Czb
z&3vN%Z(s(J)RN6-mOtk$&2uW^uWe{=iP4;#B%<91#`tfzj4DtN9$O_6fiBI*Q$A#Y
zzl5)}9V%I*#L=OW&5DMq4UB^(PL`N6$Dclu2_vQ5(AZeDjrTdp$Es5M`#*S+anj8S
z89XW7hmp_sRsPDK`KZ`i*3@njp3?`;ov_t*k(FhdPpTkB83Ypzkt3fpz<*7F4nC-1
zgGBO3<3RZ6oRR(slB5&e44%PIa$1$-gRki{#DB#Ct%AI)+sMtyNbzA;SX}5I{mS2U
zNs4yi01;~N9oS@Kz<A0}nB^y`t<0;adILHSEW3#p?}OQWxxl}$52GOvf(&XvcSmAi
zat&f#$ei!`jVf&RYeXZ9-GvW(lhFhGFOOm@qAiF$Tu8`w;k?;LT~h09{;$XA9*jcL
z$xXuU0oN!WktCYW^}jO28?kAl&`RmaDI$blm+HTLFhdeyi{@w)m>~o*vRb|fLvW2h
zVGAQN5lMZDQ7XVLb*L3qT<JgfSFOu~#B1E9Ix`<lGcNPb{9dP#3$TFqvCkI>dn)KZ
z_Kd%PMS2u0IOf3!tb|%j%gXYB%JU}pXFs6>p-V5{CZfqq*@rjJ_2*2Wyxna{P4j_C
zpPcF6oWOe03H*-(HFlP279#M9x!P=hG1rqfYk5trre%e<6+q7G>YsC$E@kuv<PnnP
zH-jyQg+B0F|7W|IGc0sN3t??gj;F~Q(-!!j`9*vD&At&=EwXP!Kx$ybP(wX)*Sy4E
zO!Uv2qH|}l!ikc;OXha|1^z?(GI5yZ%90W<XDrv5*Y=d7{J+en2PTqLj3ps4z$kbD
z#l&wK;`OL)DGw@WC8r>-Pcu(#vWLxL)?)uc%m4|_MCJ_rKJfTP7ro{KJ(+;$sD$#B
zyZ+^6{vDt4DG|}uY-@(GW#5ub%P#x#1zJ3K8^@f?rUAc+#@|hDf4jy>Z5p>3Bcn|*
z{6BVL8qZ184qU}2ciXy}$oLK1bnK+1c-Jnw?n*6=-gJuh-Sl?fO>OgmHs4M8+hR!R
zzgZG0>&TM832iPu`|?j0pDz1wMO*Ze{LkoRZx=R>14ZZ|Mot;B{g3`(6+4511qz!t
za({Vq1SR#p-`{cq&j%5h@%oY4TB#+6r#v6Md;5v9-2Nyyp?!;Nvn6TKV(uFju?-QF
zPWT-kB_~w)OTe!C*QNM)5&y9cTI(O`l6@eneRTsdoUaG{fXkD8&^Zk?{*%AbuN4NX
zYFn^RA+)j&zM*!ipIqW{jq^|nis_m@cuVH^GgI}!<1GsF;AH_n_`^Q!U+_7t!Lb{f
zBS~=u`$L3;2l{^-2HpdCqk}>Ql94DdH2rA*^3~d7&^COi#m*0*o)39S{Q&=yL;qR>
zIsFecgja~xV3Dl^1eB1RO3hXN^8yT&EJ=bfNffN>A%W&A{a;=}4KMUY0eF17d@wEC
z%@2|kc@1yT7YV+f2Q|rbyU>58k98B(oiIif8{o8cr+8m>h5Z*w3R0;;Fo)rVbcmba
zA25{<fVW|$!Pu(4{OWf9uX_}k6>R{5L}xAM^YFv|^VVwPJnwl&+3iCVb?}w`ZQpu>
zVC{uTtEBkW_eNB-?E9o!`~&|(1M((qBfB^D>rkqxKENTX!2fA3HKN7Bp(R~c@yZqc
zq6^y>rkH49J6sN$hjoomBn-cT_*L~-=%)I>-T7zvOK0j=i)yfUlnT&0Ha$+UACa_7
z2lb&S$HhfMcH{F&{tq$$0-&jx6b|D4jZ=`1+dIzjU*%yQY$1gx6Dc1#ypv7WpX|pT
zJ+U85{Xf3WJ20;5X#1By2qZx00o>%-D-1Y-RhQ_p+&h*rHq~oMmSwNBLek2XC;<#6
z1k*xq3B3eDFE%A~2)*|zFklh7jp^|Hp1Hef_V@lL-Lv=HQ|3&0X3k7uFne@(_hkPL
z5n-*~ov01`?AFoYPUsqpU@Ql_UF%U;rru^(hVcVw=rc<c7xa^?epebi%;%FXVF^Q!
zs<Y=N;SCMmU4_Qhf><IzTO4`V<nWc*%m|7XAAq645{P}l%4MfPIpZM!sn(xck`3tQ
zoFBMe#|dH8LVw&#VS`chC~Os23e7DjuaWyc9_-T+9(J#<UDb+al&XUA9Dux;dxhM{
zl7=@?IVt=qvjUeSOgBF*j6dOXeON_(aiHiaw0+WE&}r`xaS*d366(`?ElYZ>Wv?UZ
z#FaU2QhO<ZJ)bHN_#j~hrTBvLC7BmK&w!EYELv+M7YPd0iEJtl<9qvI>8l{YC^8BX
zOu0hWLL%|UIl$+4@u#tEj`3qNmYf1)Z{a|dmPk+g?Aq`doe;Kx<(C$umD3r(5p!u(
z_@T}KJvO^AEkt}31+}YVZ>0U55sX_GN(w{<dyfnc72hdAH}O?tEz5!}jt?J^R)A`h
zmcI`AbiI<SQj5b!P}d2+tVqt4Qb0G%{+<`Jx>v7NE7L5pOsWqF!j7<4GY8ELhUk(Z
zE?6C$FZ05u_V+=-Mp{v-^J>y<jVnMlSsB7NuUYKt$%~O|+?fM+RJ7qkb`0Z(`993R
zGmiSsA>~lNJ|g_G0#>G6kBwP#qO4TC4NHV$VB>JPQD7D*qpGW3qLT$Euq52(Cq{x3
za6vnH06Fyp2TBdCxGel;xJ$+<a47LvRBZBVC^TY^qA>4!-jY&9p@^uhKt@M-(C}64
zxvQOoDUQHJEUqP&=9jBSbjUsL<1J;ykWx+!0-dR@G2wAD{PEZ|jWRD#)yaf4GTd)(
zo|23*-7p7oN6ljMZ~063)^1K|KyqmC+&op?@jJ(bS5Nd`cb^T&GJ7^qI|#=h`=vfe
zm{lTdx`ZF&$3o;|(Ug@l@_4X%Q0`&VqP|&(M9$bXNEQ(tAHb?PYLp*WSITuX#Drjj
zCBbWZhTn^Cm7rd53yaLzn!vb);i3ZHkUrV~Ot4$3^F}XI7n(utWSKJ@UV(?=wv_+O
z0rPrbNqEl^|4fhUCf#gCc0()OjHC#3En+0BbuW5l1$zWBzbAJ%3yal+%^NHU>r0qC
zz#bf%ixvdFf{y0U*Pz_o`$o`&yafY|?x7Oet-X8r%<xv05`N|CdSo<}qv3PUvOPTM
zeump$O2ZPmrL>!Fm_BZLqehnow;mTRW!2y^J=Bevm7#7HjCzY4*EQhbZc<h*3D4fc
z_pHx6kr|nDx%L@iY?(8}>P)9bLvr4VRxYh!Nzi3c@XbNtXskW7CBkZTRH%KcL;Lpg
zxf4$5|0#HI_orZ-4=3BA%VtEzi81Cq8#Y|%q(-iM?PdgBU{-SW;#=pgw+j@4=$#Lb
z<1CYJRfIS(7Cv{b?{rmtou5`}OpC{DdU|-4&Ln}!jQ~}mKoo}jpkepW(8d@*kNyVJ
zYPuu*Ob4ITM9rj`Z;_eBmNKrJmxl{p^cDyZQs?qHki07{NYzVj2%FyH`;?&7HSvUm
zBpEF{FsW*n-0zxL1(aMr1L9chTb7{~QtBJ@mklLXQ4UVa??&eybk*9EWFs?^gohw!
z-8z8+3Z<+|Du}mG@?<WQ=v)b3cMh8EQ>$Y+N36RQ-k5C#@Zi30QBk?b_n(toRb{hv
zbXO$XXebcp-e5v_Ql&4#48G##nt&csYuplkbQujCku}JytR~L_K=M~rhp&JkXnaV?
z%;4BivWdO;RqV!pc+)IDxOj`Cq_lq;8+fKa9?`tUH7*>C`VLdg{C=#`hc(VyL$Pfn
zAWb-ce)?y>u9!<tS7TN*w@6}$>mscF{8en6jM=p*8m5_{Xd0{LuK|V7_E6hXH2A=%
z@M0-y@MILO1lfDJ!%k@$k>NHo!eZbf$Y&z9Maw+o1E-`EC7i`O>!$GIl@SHCtsvPH
zY}9EBKk7YhW8f=xYs*D9G1Zb?@d3Ht+~QxGv4W%#5TpzQlrjYMeTRjY&0JR-^!@*B
zgK=frI1?!9&VVFjS@w*O?bm=g*wZkL0PtuBC3V>E>vs#!I>ZODfAs=VIy(DDbfE%o
z5?L?(6%rUmRw3!bYfEy76U*`-ZYVTU#tN;8IGQpd5{rWE28Yjnia;U%9bji;txiAG
z$Fg5-ZgkQ@FqSZ*LJmKS`@DhS>^19LprY&|z=uZ?s@2RbO>|RUgI@PMHeCHLUXxXv
z26{luu<yU!F#I^h_KDB-meK`TDNW1R6=?L{6<MP-veV89kH5i3Fr5!%43h$QS$;5J
zbog7&5}W=A)+R8&Krn#&XZc7!F~?-6Fto%`Q8mFBaruhT<|Bt;_SgJ1Ok<5kZ5atw
z!qwf3gz6StCGb9Ol4Kq;lOBx8Sx*LI5^amWO7{_FhAzTY)>+|wV|^-<xLlfqJJN)O
z!giig8D5C7(a%)Ju0b}=sSQ_s<ZWZP_Rnnt9<!PNY6PT;FCzv)5fIv38p*-9-F{HG
z2vdVIG_H{|BGVdtkQ6t|!^0oujWVLi*kd8qFbhP}o0Z}3?qXo;#3G^UEEd@V)54W{
zz?<Ic5(g)%F7<v47tK6I#8ouUuWeF!KzzJ8gpyA`IagW>tbZDJ`<q)^eE-GEktg*d
za&Nm5@q^K?a8>4CSc<HV2Y8dD*{wDIlI;9xky<f_3)hN3#Y`-ag8ap{VY<oR<JyoQ
zP(5do4{RGg(#j$*$ut;lUNR#eNpz>p!^!#(RydvZeyy<AYhwX`Fx#4x8c&=V@2V(~
zH>wt-VYP0CICf8{!`9v#DzNjbIV8-)y-<o4#{xcgm1}W*KgChVjF3axPdi5Q+p#Eo
zIMR+sfCEXg!PB8s+&-71EJ<?AUxO?z0P;k19=JMo)u~R3V-q|rX2cxZ)TD4DJQolM
z?g?y1_i4DgiP&<f0juwG3NdT4r%?3?z-Yx&q?DHhtA8JU_vAWyBfKKhn;3x@GMEPF
zC|8Ql4^Qdh4Qkv=Hj&>OeUK)0`;y_gZ#~0+S<D_s4bTD%FRQ(>s%(G@1>tPP!CO~^
zw{HSn;j?e#hA)N{5&CKvdsevBt~5x4B#Uo^%asNzFAH;kQzM{dPHG-to(6`3eBXtR
z;nOlnwaFUmK2&73OvC)3_M-6MO|x(Dw9wrP8F+>_A`UT^p@B_B9mdHP8t%7>>1YK=
zH7r|D-Jzy$cVYOyEuyh$E&XYJaP~#v=Noeh`gm2?-m1!Q=Iwse85kdrjEWhLhBI%Z
zcl3D-CA!ZT&Qf0sgWn$?&XUHk)?RYuA;VGo$~AO=toUNZ6j_S_2(u-}RzY~{NCw+y
zSMp19=sN?2u$QAzKwv_|;>u>6g*aXpKZl=WzD{p56xfw)LE|n2$SceO>V3r%aC%le
z^~YNnaRzVU`%_4rgA5cQ!A(!vD);_tS+PEvHhkua=X1YZ>T2%TcJgfcc`VF_`16BD
zb`FzA`a$k>^jZ8Y$B1Mw;TYU+lE!>oZ8%3pQwFhj)=Y@HxXAg*a4)H4YpYBQIioVM
z$>Y~_o72VaaXesbxI4!fme7aUb1*W@o|cEj=HO<2ln&c994OE*<Gqysh-eWP!}ULf
z)Dlw@2wDp_DIl{l^dT6)dEbR=2C)cKYD+m2CLm09<$kw?Eh1O2u-e8C<@I8sg+cy-
z;mmy)m8dui3oyy7;nerrsF-l`%(p=}5u6wS5C`C|z_kMZ!B&;w-jQ!B+og-NY?mx4
zqEmc<T7p{Z`IX_{A|o7m3vLFi#hv>cqUKIs8eTq`Y4*{OTmob<C*;HYHOL2CRQQ34
zf_)ANYafL)h>Mgl3iu#RNUl==^C`!N&pqc$Kn@hHz5opsKpn+F{n&8j6dH*BCtgRD
zxe%&o8z-F+zBR|6ugk&LBUAy=(zr6oPJl!d+DxBEotH(Md-aKo%J#{5i!hw%j$VF5
zcfd&7VKckwh1W8R<iU-xzJONTG$y_iFV>nsNU^+y%$7Zn9fooa2@L;RxcFIL1Q>1e
zhdjofC<(qeGg=$gEJZjs;I!a+REOH|;s^P8pXX@Endj>ubT%z(8}vW6oVCoc<#>)k
z6RgLTt2BHNXL)el?YY4}*ibMyv^Rk{q`lH=P5E7T^IXQz4{PEj{Ol3dL>umCdE$gZ
z73UDAv+1$nr}DFaElN>a6S+K@(&2v%H$+PohrkM5L~y+0PscCL{qPs(b<^s(7Nwh+
zqUb%(&a%J}cyC2C@L{g5OS4De{2f01zU&bJ3{r6M3E}VMO6KTrXHZ)&pdRd!)BqEu
z?X5i-+(pr3(1ohjB-_|unKI-G6O(#;gYf*Dm`;z52D2~dcBS`z%*=W`?1C^dtc!!*
z!@7DsNA<wn`<0v=eOMi2vF_jZ?q`ymmfb9n&F^7>{hIo4N0O{!t8vghghPwT5Dq@w
z7Y2t)<l88LHu0y8Zw&wW$NtMKG?cp9Q6L0|^O1&BYh<Eu#896<I6I`6sMfhpci23c
z?wn-WY9rr`bZ(+CF02oa`CarS;K`=O6{PvrH8hA2-0zFsIZpliqY`9hcxwa8*f8s~
z<9z5@I}SovAf=`l!ePZ<s|>fhAD-Js6JVn=ngGu$TnQ^KWmsHF9v?ose662@wnvHs
z6174~n*t9Aq?9ZA*-_!_=#5@}Q@DDM-?Ud?2PZ7sQ=bnP^!hNjoD;tCvNn)Yz=Vs?
zS^AC?6(<@ghouiZjv`rbY<L}K1y0q^&@ApYG+A3@JQ5g+Aj;?FJwrn7U0$IL!>fz)
z-N|)iX}HIs{v7GDATz3bG-52U5s~)@-50jk5>To{8qN=+!sU^*&<_<yjm#o?_>?IR
zj;dCsz?cQshPUkmjj$y!(1_$Pzd1yAEDi6!!oNNO!ilWh5_DK>{hX$7@idx94xrR=
z(g(%d;0NFQF1#*Hi+l-fq64DlMZd2f7d|WOv@bddBgmqYYayqF-N@-$&SD0aaqQCH
zC^UaQ1O4!s$&15{g?&rI)BPIfZl&cuvg5;pc6OaK^0F}7rhr<~;zop`JbkiHwXeNE
zR7Y0JD+~JiZFno|x9RKjL+)jqez2e3-ax4ukvEWriR~@57~9y|s3yh1xd(-7ihTe$
z&2Xu?FQ*uB;bwSg)FgZq?Wa!k;YjcomEmEM+5NgJ?e4Br>^k}30(iU&ABq&N7rrUK
z9ySXaD?1l4Wx?kZ7bN{loi|n}^>&Rfk>AfO4f219$qr>@rz3xO*F8nJy$XWYjtH-l
z+~7(cmucsS%M_ryu|j-pRsA}@hEbROT1hYxzNtMdbgmUUD%^LpcZUhB8N1j(+^`!5
zd=krVr$eM*kG~ip*yAs*z(T?&!F_5Cpz6eMbtk`f7j<_SPhoc$Pk*BVCB0|Edq@5h
z^?K!z#`=ax{XwRpx+Pk|7~25T@8iZm59_8=DLHW9Ow5$K@XCV2t_vvxuXV$!M!C#F
z+}xlM%u%;~=&FBTU8P%x5p{t_x^h{-YL^77_6g+~g=h6U{493%@b^(KQHemnyQ2=K
zt!Zpj_?UvkV9}!{hs*b1T6n-x%}Hr!fZrUKc<{r`VI?69w9G(*#C#{y2!Oc2Iz}ZF
z1APaL6VESuQ<4mCjR3<(a2VqcW@m_3#P=aulZPFk#0?m|z#$&g6plG~9bJ(Xa~)k3
z{eQcHG_zf0?OKnnLNFC{M^|}x*@wyuEY*=H3^b&xA7^s1ww1-$gWROFaLuM8JmnFZ
zB6EOyb;4X6;KIptW2*;BL>Ng{8OMxbu0yU3f5z@ydt;bvc4JU<Dd7WG#^@n)!c~#W
z8bJO-t)}bmaOKkA@`~_R{1~iT6?IW+9TFmcm^j?W72(GVqNY9=Hi}XYhTYpB;hn5O
z!u4g@-k@^D*ih^m?m`a;>MdZj^^t%PgB9-Ix*|y>dC~_9$UE~d;XT7RxX>72_&n4o
z0zJq{CrE;@!tU<+a4~fCZZ4J;WuQBy-Cyb%fV1lC0I=<F|0^s3uEDY81A?X5wmxVr
z+tK4w<v>SF7aIfJ1n_?BzP?_)8}Qv`8^D9X)@tV_y*v?^9GM^l6`k;9%&k@D9!yh`
zM4}uHPrlASpxkq&dk0vtp4k8^M5e+voUFLWqJvIktViI&tqD?ce?1ZyAOAHQhVP!^
zosGr(RCtl@zDVmKFpq2i`b^cDNbOVu2XfO5!U3mvLqFyTQDvDYV-uY0*k5G8wSOHu
z=5JAV3)0PLFhM{|W;6Tq*mX<#KZl^R&-=KCS?a8NSn+~u6xAyCD8?lov9~5fEWO>c
zYA_E@1_18HAvg5}m-a#9O0#GjjNVUSpWskVZzjl*6V=bx3}BS?HFI_d9YP^zXHbSO
z-7B<+;Z!ut@zMFN`8@x$dpPuH=1BzaqJ#@D-_Bx1ZS0#lQY4!6^R5mtrO2PTS6HKn
zmOjc{VYf23E~B?pu@i3e61|dG^dSxi4^OIF7*59N1M&7eMF4a^#W&fS^(_e&=APe~
zVFs6)D18C;=~)L!l>szd9bR!f10yD#l*qD4xH74rp7!&@CDQfCos<P^xOyjE|M=<Q
ztS#YCa;ay6kpzok8FTTc;wd`oXLlB7?M_H=Iw7D*>3TXIz+dlv5!<|lSGfB{PDT79
zt+gKpTwD<}bLPz4W!Lf{E_p?Ob%bfl;gcU6H6VQGbCyB17`PrIK$mI{dhOAz!-FBv
z{w=)o@2x_SE|dT`8l_AM1S-K=H^~V}Cfzqq1%Y?bi{Y;S^T(rDIAj+Yrlr(A{!%yu
zT>&&nik2LQWd%sc;^1E|hX4B38&LJ@7wDb<=u`o+ip;0)hX-%Pd<uhJok7^^?hFem
z(;4{9Ba*1x!O_g8te30!6P}`gHf6CKuGr?}7Y6GExeBpl&1Sfr=@5`Jq8BT}bKj3z
z+_9sq+r{P1znjK{x$F5tM~H5B6B56>X*3~#!08b?gmt-xraYMXA=U=2PJagu0V^V^
z>!t7gOYnVkl^NV(<ZPqi3>@R0a4}v&l$3AW1t})%Ql}gmdY~EZ$!4G#j?L&5+}zH%
z$co+MSidd|1doYH>f>?(vpQV!S#i04oQxKdDzJTW^T`fs7#{wEap@3t2fJVtXM<h(
zgopqvm3N1T6bAb@h%Dp8YI0euDEG=!ok2|`_a<z%&{db!-^A{fHPiiLe9~kZ%lsJn
zUIF5R8=t`!1V@+V{(OEU{(1sCfkS(%SXEFp3`EK)H-irg<D66NYoFbNta`Sn@0OPa
znJpKq=okLR<$><-H&#4*J%n=y@6QGwz)y+hk_Mke>kER_mxR}Dwl;Sr1!KgWnLfT~
z9SCmm$|Sj{G<W?Y`~~C^h-?%%s1T6y;M<MD;Edi&<_nowvi@)bVm=Eu$YSdrGeMik
z#ix!6Tk#^GYs?V1=HVatXpc<i&r8B|6s|gU1@I;`p_?gy?`6RUi^KP#TMxPpk!9JO
zR<`J)s&EIKX8kpF2;=_>KkjMkdqJfjdwl?GU^>b61xheHnCP)1BZ=Oh{P4eJB9sI_
z^x(3%g|fJ;VkUZr)H9<@NIi5iS(WM_eb%5bcx6cV&lOHSqaazTh!K-r!X8kheL$G|
ziXV#J+8&#e(e}_2rZh|AMXlv{{qu>iG?G3QeL^sG@>;^N_xd+_KFvC2KFzB2y%+>-
zWG)7AAS<+G*}zf2t!&^Z{y;zuM;heLhfz<8c@(gOLZs7a9-M+#cL=Lq^{>C;*J?Cz
zcoA^{9yFZKCoogp8Rg2);TQNN3%ICqjJR3y<!Zlk0Dqo5KdtL0sH9~;5-2x6za1Wl
z>x#vg$X!>tT;+I1*j#yc7=OT*uUEiSehyrz$5!f#6M&Fr%|>cm*AN&6XV={FgN0%4
zHb2uD@a&o<uI=iq$i2g-nE9<c<Sw2FiQ{{i&poO(^zSk@g+Z(wlKb2wKVwrrbWKg*
zaiR1(>G;gY^>6G9$uGag@!9j?C33|fkjZ|XRICaN6fT(`eE4PT!1EXc#D%A{HD^jP
zMWP0nE3i<*>e&AM!)Rb~nJ^j&He4v(%ZBdvW_TCyB@N@K&KHHQu%LWp&v(Pqq(l(k
zf^$RneG5=l<H3o~gePq6&-;!UH6}CW{+*$NXF3D?^|XUQIV6FXdg*bwZIAk<&G?Xe
zG+dS`cU^welYXU&&GcZ2W)CB9YI*j-h`MR1Pm*@iLxOy#OM~<84X57?KOmD89L7(u
zN9Yh7cvpDZ)85jXI5=CE-W`q*ajflIjjzkMinWmSt@iP_K;2pINZ;q=nd<h$^zx>#
z^*zrgq?(#2N+a(J6ox>3ix?!CWIY@dEs-Ob4e*x1+N`5UdVKN7rH6)FU&JeY89OP?
zGK{^Kyki1A@(%k1N2jV$!REMmR++m^2NXv)35t;>YBLgo8-3j!O;l8!&O^DBse<6R
zX}LE}^>>K1X?Dp$%0H3MiDkKu*U|!0AyqX(m@HR07}gn3d~NHQcQV#98`u-o2cVk0
zmC-#94qK0qm%ES<6k%)>;M1vkc(>f;fA>N4ZOPBJtSxR~AQ^E>8<8%|Q4%#DD#f#Z
zMixWRR%K$YO7orD5;Y*t*4jOy&13~QDk$0vjxP#=6}k$Pnv%QXVn#^L4v(slVTEd1
zJT!MzwLhMgz|oy$JJgxpIakUYzX$&Q5Qx<I5%f!>>byVr8-7q+Hz&794)7n$=<e;k
ziIlGm&Y;N@DrR*27P(jIY8y<fcMCd9Ps=N07@vpHC%suLtWYe>t-e0D$LKA4d#sQ3
z$oG4!N0qzx&<L?fEOmO4)x`H-A!K5~8d8EuJtSGAsQJRdxmDBG-HOaRWk~LR)7ITe
z49EY`3SInPt;PRmD+qn}cl)jxWsx$g+2_FOdSQ2HGYU%fKB7Vjh(pNUN9?ar5N6Y@
zQS_2lXhPj#_Y$iq;`B3^l;86t;BjJj-uf&{e;^puf=as)5X_tXLU&-<na~~Rx7TIe
zlJcxBv<?{)&&nA3BVZhx3zMT<iZND&B4{}BeViyTwTu%59@Z}ml3nQub)38=ay}@G
z6=K|PVtC<Xjusphd|DZZ(TIRpD5boUhxux@Ym!N52N6uk94Q&!{?EZ2#umL4X;^U9
zqTsDzQJ7|L#S4`+tNpMml;6!n_G1G;!XQHmqGEAI&rc&A6~qH~gIBg39sY=@VXD(t
zumGfdmnkvkr0|dB?kfU1)^A;0moE+fBQG_+Vx5ERB@<A-sH5Ma+(9BJOBv5%F^W-X
zQT7%Ci`Ek+MLvosOse-&x*_EEZbSf_v(L>EICSP_316?`qyau^7A58I;v%W!#Zg?-
z3=G6<Od?4lA<^fShV!Di^qD(6XZg`#;XOW|sUL!<N>f#Tw4B`G{q<ijm`Be$6VeT6
zG9+pjr~d57@QFuRMy$s^SHiL1GgrdttM6AR<`8{_E%r<q!Lqz4u$1gUIJR`PmNY+F
z+hZRH_t_vi6#WdF!mMFK_dNqDXSJdMNl)rQ6BuX)0APJ9aD9sofYeys8?FeS6~;j~
zy1alZU2}u~76i8*AD(*yO>jAQDX3zj3{*TR=uorH%e{N6A=-5oo|`}fV2A^fr(DbU
z?9A}7UtKF4v!YExAP(L`>el7q>nL9RGy`yp@@~zb_YENy0A*0_J5CUn2>d2+aMJc+
z>rz&{)ZLlVkx(nyJ$_9F0|A%JWlZ*B3<QkjHe_k|0l|)Rvp=_D2xIVb2$XU5pTgzK
zeESs94je1I*|E-(M}@2Buie7b@$jA>wSY~vMXs?z2PJAph06%&(P%T#kGdTIDP#lZ
zdj|larTjcAyp-RIc+j?!nHws_9y2#}UbtS|+vHV|<r4Wq;UC1Ja#Mw5Q2r(Xg<5%%
zkO}L$wl3WCI&T=iqPa;LRv~~+kvx5hzhr49uOOH_aw7yAwT6?Ph`RZ(PO;O1nlqCd
zolJ=_qB3I_@Yo~#`v&B*Z?8-U_nJTtXf{3$_!#-wbd_?S19G>zg$$<1=+u0&sS`)5
zNRa$sy<aUhVDSI9=mO-HDY^g&uDdJ)rOKkR46NLQ{&g;>e;3ucpm8!;i&FKiE#hxf
zl!ym^D9ODqDz-s2F3MV|YzC6)%`<Z^KF-T#P@K2BEQwN+1gB5Q-TaZL00&{(9Z@w6
z6|Z_ZuC4_1^@Du*Oa}7h5OO;FI6IzLvn;%LbLd|;x6-XGBtgKx!hUka^1|?_eQ4?9
z4)Z|3tcll0(0Vq9jG$ec@p30JbA7CrOoUre>9#w81;;7Nt052!nTu+|a(OcQI>a&S
zvkq~2@tpPM7ofd*&^Z}uU4U>~xkc_$E^&hRAM1#6-$Tyr1iH#bkoQu9QHZkYeBXFC
zrdZe=??!c_?w}zQwrtQ4ARFh*-5pA#%%<ElGh8^GS@c&72@Hyq9LHsQ#e2gXvhm)1
z{hAO(cWjoQW-x7_Nz`1#4&=A&r9s=Fui>cy()aSr_itmVtA`v9rpNWST2)M=C`oy+
z$FQ*U=fQeBG11ge+fl9Ls!=QO({FbPZ{O5knwln7%U@#jgN7@$)bX4Jlr_TkiI=5G
zdD?>4eu=eQL}fN96_j_utX0i6(tQPZ4OW~x<aqYEs-d1B%uG`$pC+lwck?sl-0Bjo
znU;KjB4SX<)pk6TH!U^aze48kB1M^;_%#EN&{YIL)S~huhYt$JyvTfDLX;d<d_LbN
z!xbS?v2bh=T~Q{1G_xR)<UrG?<B;h0gTsP-y=^?Hc04t+H^C@M2Zc|L9-_KpGg7VG
zu2xY8{5?$LZ^Of!+hS@_J-4Q`(x7rnD=rV!x7T~axDE=yMQ^CI;XXOx^3%Pcca5^b
zY>hH{>Un`{{`hrbA$2$PiIMogU=(~o<%DNehF#GYCQzn=hole-9-SE8bZs;ql8$gW
z#D5L{IJr1nb)z@*okC%+DU2fzyMC{XhfDSeZ#^yQs9iaU^qlMX!TP&~`yb%X`wX+N
z*D(96gtCpVYbBuauVdjUXGfo)NU6_Dnb*6D!)F#mU+5lBVXyH_AR(%zrV*9nr8;`k
z@bSC-_XKrP$41Xphkig+_{<`IzCX0d!vcJsyYC#n)8G%MCl*k<x0!oMe3a`<+wU75
z&&t71Cr~hD7$tycfMEoe?GYY+hQHEhVxFESv&G#X$PZd~4)2LR(C63r>s$tMYJw$q
z?{9B{$j=bOOjLjaDR0*~H<b>8=Pw%Cy8e)vu;Z!JPWd?q9{ShNBR(EH69Z&YCn=_a
zfbz9}IB>{Jc5qVaGnifw)I67S;Rv1(Yf;-tZfG({9rRkxrH2ifN$7M%Gg<dO<GqLO
z9Qx8rgVpoo&J_8of?&qKhK_rgC+O_W`bFoGp<}OHyT~0GeS+q{$4&_-ED3)Et?!`d
z3HK06ytw2BBV$Kh&07SbB<jdIT2C7Gk^*l^pGZ|_D%|lF+4repMI5MCio9cHtY)g0
zzN6080^T9%cyT%J<Of?%i;ezt&<&WddZ($H43_@N6H8(jxAPgtm=en8<CQ8ezd3ft
zF+5gj%T!B8HI<BrbMZHZpB20K`9UhoNA`HAsk9_d)OYq%v6jtwgLOzPY|p7`O)LbI
z%PWAOrrjOe?a;mz`3fmTSs3J1#)8cUZ^xRCOgE946m5@OWx<3`hVJvr;LBhw+y^BY
zl!`T!lBG6SFE@9}rj%wS#Ud$h{W*y*Nke``_}}4!s(FsQZXw%oYeW5l<SH&*#ldj*
zzQPWiGgz(D>svY!3%aU-o@s&=oPCMS`zuYX3faFYV1;&$zVq<qw(VGdOj=PYb8(BP
z6R3gYp25l+thRD+HS%bDXG_Q2uEut{Y);Eji;cb9QtgAQQQ~mx)eyM~>n;f{xy$~$
z$e*HycUHGBr9kP-gPZQN+fJZ?c~V}2q+jte@<uPS&t~v#%4$@DaVgQ>Cd=*5!~IcZ
z3z|AIiR5s>)_2=B+w)Ynh8kC)_A2QzH7mH^sV=7~L87lkl7S{y(K~&T`MK#3+6lqy
zNHwgI(-X|&t9$JRCdD#9H+7xV|6v{A5aE>u7NX}Pl%>DDx`o`ml>Z{18P#!aG?WBi
zyN(3W)^o_4(cTF}Oo&Es-_<s26w5?n`j$j%Cy-D%N<!NO_RGe+LcA`$F*&r_v+l9+
z`QA-MvbyC568_Ffb?^m9Z{e-BaIz0}L}xS0)=r|c0?La8huvu;@zN}~dtG1G(5ZNd
za<cv2bC2z{JDpKynLLF}7(+pRetvoIhuiHphpqLTQmD7t?|IHqotRj#s@nY&Nbao{
z+3$AY=g?EFh^3*c6?(x+Kj|{Nv%woGTRN#~#(jVCln2Kzw&B&?M3HFfq%tkBEu;>)
z(+>U{{o}MrGyJ-S1SPH5Rxh-%>c95p3OXx717c;lSjdSU^{Q1p?{AF$iR{rtHkBi?
zKYqgY`^=wK62T;doHW42!MzXp<37`kg9#40!w!z7H3FAB6{(>EZdoZw8@bFcGIB>%
zBb~>!G<7xt`%%*<`0--H=_<PRLxP6Uj!G2gIM-fd?PvPrI9v_XP(^EzTQNTvber9O
zxwllz>8#-#Bv)aqDCz5h+wIE>y~TSYdZ&YT$f%?h0bCT-%;+Lx02X>(QskjRHecLo
z?~P}c0FQ(rHCDH9y5I-|N}d0>?bqZjQxmO9E?mN@=RRozS#^Fst*f=AlX!0x6r>Eu
zl{)QxNB}xqc8A?Oo9E?0Wqos}z)sfno!hNxb01ArC#Dl@zoYdBMnfcNF!yr%=LFi=
zlLo3~kwXh7++$XE1)n5>s(npkUHclW?dJIqJ!M2of~E&;!e9D-nwe%lO}yGFO%>g8
z)y-D5w{OCPH6-K{JWR&F;ML3Rre6o?_;S+cusLwVI1@bd9^2_)zMDDL_)}Q^iW}_H
zW*#aN^Zc40S~?pzBM4s>0hY7)@qQyA?{fD@N`g1$J8!6OWAG)!Yy>rn?e>#-1uoXn
zwLm5IV4p-K1lOEq`=3t(1?$p{ops!C08&FJZhDFx|8IZcz|IAo;)7j)1f`tYlb6^&
z$1*V331p<|K}8}lHu0gA{=&3$2S<(HqH>;SD?5B<6>^HSa_h}qN#uXH-cC$A4MFp=
zYdfe0CtJ8Uc<o|)hOx3RlUE_(Is7G9Ex$f$HKKa)9Pr`JR_cK<E>Td4K7L4}H;!!X
zA{3yVgpMM9-Yf}<p31&CHVwZQC81v&`?SBJl?GQQ%^KxEFe-z}lkB%h2cAdLK|@o9
zQ7o<G`G&3MO{<za>jcs>+;fk&ho>-cq8++$;m4^Cu+`o6?5+$4BbSq@(@*xe{2>2n
z`{R@Tcyjw^&_!KcJIA(&$~u}I>34N-;CXY&3x)emXMLyZ?9p-Fc?J9nkPt@$KHkoI
zjT?L7Y-18GyhvIY%stDt(a~q*DZa_tFuuZI{1Q8Al0Tj<=8~+hW;T$-H>VpJI7DD0
z>ZKG%=R*Thsc-ngX^#z7{_{y*=SNJ*dH*>zv6rLbq7+JRV`i#u73^_n?DusfAqR|V
zuE!NXbY?LZ&w^_Q#CA{_Bv^2oppHfoY}eKU)lgqDpJXJlu1ozT)ontsgQLvjnhG}y
zf(N&Y*)z1s`wKkiiQ-9mh$`}m#csRNyX;##75PX(l6O@*wKzC{yBE<NA-D#H=Tie>
z|Gvvxh)!(nAWE1ck5v|&GctBoR0WO(jWAm}t6Y^9fB%?0w0z()CPHOjm1a~1a7r^)
z+0f=8%UJ1=cv=Hx<>i}aEHq5NW!NSaT7Y8i6~J(RI@U;WyG+YWu^)h{mewGy?CB^h
zd)pCdnkX_~J3lBQjVMfFlWXnd0YjE?AScyRou`o`!3b*_+Nx~ns3FV1_78**(juui
zmUeKRk?DCE<i!z7<cuSwvI5I|M0X!;?VIxo1t&?h%$Mmbt^}X~)w|0Z`;Urj^7Nh=
z74AB!$6_gQ*@TyZftT18XZC-C>yU7*9rm$PQ~jIBoQxl;pu%=Pe8@7+@AQNUDrq|8
z-G}^km}ECK_~a{->G^q$6naHNR6<k6u+;^YvjvNQ2ai}%c1&gmO=UsNH8!q@rN_Kg
zeZAIn4iR1m-uhZ>F-k`;w{st}i353gtra1{I$Dv3nU6#b=0C_sVeqGyt!=l#4<igF
z*Yh=8y9;V_KzLD$kv_KJIB!#~Lvmnuk_WjUhwZ!dYy0CYT39ImDXE+VpS|{}9bM%w
zV3J|VS0jwvU$@IkcJx$ls7ls0RVSn)Dc+ULTCdm@mEKZ``87Y)hGwrOB<jPj*}J7Q
zk>M9@S)Fme8D)81mknz5=OAqh+H)qrTu~@NIrwSw3wCt_jcyN7;feOD);54(1Y?{a
z*RtT_*KEWe{TEmO&24bg1wZGEX->`YAF#T^UbKJj;Qd!(Q8c#aplj&nI$vkN?|)>^
zF7noiX*N~EBA^?Z-Ro8R%R(Bc<QfgD9hL}`%7Q1Jw-ffHiO>NKLMOSIYjUOn!eGFa
z=X?39$#2*U;};YjZDvO!^n@h;3WWLnb9Tg5(c4W4(#dOuc#Cale$#$Gj21j4D8)RF
z69UE})PHSXp3ZaByc8*<6aGQaD1y<d^-badd8hq7t3KL)bs!oa3~E7VP8C{}k~CAG
zL>*PWXXn=WPyB8F1!}Cw2j>$%D0<yypWq`Pl6sEs9_5pS4$k}9I{xl0Q&V6kHT}ni
zdzQp56l-5V%?#jl3OBB_<URhzft}n}Xj#w|pr(mPhks%3-{CEl*ix_^Qh4j@2Y+sN
zJ>t(5d`y*GQ4f}pqI<Xe!M1tQ+lXV~J5&*I_rx`yS@}~uN9w0qe9b^J>FczWcHyo5
z`zn%{@`)0k;5%R1lGps_;}dg|sm4^BFXr^L?_M0A8I;=6X|Ml-9}#m|Pn<K*7vB@P
zariHP+CJN!HufGCz&S6Ey9?^SE9|O4JjbMp$P51kf?@pAcFLTns}wPU-V47O^O_Y7
z;4yCCPAa5|1VApC#6>ULvC)w`kge;=(Vg(<4EYL8dEGV~o%xDy@Cc<w@L}Leq2n7r
zuy^MA53rD6dTa(>MXIg5VM`M|FOs^amGbe?1frFB^iBIT;sFOjd|I)5VBzB6vG47-
z8WD;x=KyAsY6H5X{()|3J@>PXo#>6z67xBoT{+Xq3*p<q4-f}q*I533{D6tpCLMKn
zeU*jc5QI0^YWd(>$eA%O+9pH&X;mwrI5eU4hJU{LlAXA@H%#U5Qr$z(p`o*1v#+=I
z=i?I#(vYe*pd_65hLJMBHz+}JI52;O*|IbZPg=d!oRIQ%wn99skQtT)-#lT3JJNs*
zB(+sn&e+ZdU0H>`P=Lq2WpgxrMQoCx9<s-+S{5u^Wk;Rpk0(+!nt7my=p#FSZI@oi
zbNu*3Ybw=I&SV&E&I|!H3qQ6;#DJ-;q8wT|)9a~LsD);4i-LQ;x7-80^}sYZ?>t9b
z;{{HUcl;*SaJY9nmC^+rgreqj?|ksbHTJrQLOHl_@p1}-V2khU#C^T9>21w5oD53Y
z6!<lYj$dr27Fu9US{*cZUukYLzhqZ#nfV6gV<4}eksKgBEG@*zZkIi7>x=D6p-gr`
zLe1h|tYcqZjaaWwH2b*{rza|>yu{DQ$WD8Brhj3&YM7Bgym3J!IdE<s_l6y#S+G6O
zSps30p$^QM8(*}_UA%3o-$d0n3w%?L?6fl_@8E5CP5h*A@KECCJ#QOV)1WB&w(e=t
zu;nv$@^;=ZlH@V-wUiUn9paI3Kj4d>w!cINT$}VW(gMCOLMaOV_g~A`Fo@Ad<j(gu
zu=1aO$<`OM2j)VZVPx(I-1#}XBj2AQ0vZu3NI?$7lP}nBBs&!7A!36tuwiv#g1bJn
z4@P-Yx9nz{VFS@IEr#Dw{^(uXyx4y<F;Sz})GzwoZLix!+HiR=BH}J`mVfcncJ^L8
zUt1EDbxR`bpXSdp+#bmfmmBt#CACw9)E81sK+(6e+Z+C81Foe3&!-NZpP~Xjgd+cr
zts3qv6Mg{e1rXAC*l2~#-+b^Ls6Qjq3ouQB;QX0Gwk(a^ffiYj%sD`XHYn44+oU1Q
z(_?p_@_@&+*5*u^o3kHFOv}uJh7^sXg&I`NInxsD?dqenYRCptV=6}JY$tC%i%6Dq
z<?Dyb7X*9#CN|+WUemC<24g-H7!TgwBDTrM!Nju#Q^+wWam5OPQ0S%k-`iuc!MzJQ
za@2W;Dx2InQyD}^40y@kQT;=nJTy3V^_{fgqDr)Q6>xP(Wjf8ht|<1_4ZVsZ7VtD4
z{N`J0)!49)s6mKc=Bc=f0*X4~IM(yAxD$149{th>Fm8uf{*8k)=xHhN&9<DWsT!7|
z2Eenm7Q~UAL6Mofe(cUYe9k1=Y{*UxB4BU>Hjm9x8-_h4;*(rX@}UeE5L<N>pDY(b
z+PA(Y?WMtjg5E<)HE3>11O-ZQ>K3t&FZ7A`E+YzkX3B^%AWDhUrMU=I0%ME^Ukr@>
zg>UtG9*1mjqwEm7h{-Xu1M54)Yjoq0=a&xf+NRXI8&7~8B5q!~EoUr>2O3&o6as(3
z8pETmS2@77)y{BckRG57oyeo)OM?5tXzvKW>{aa)Vv2_OM~=(X=2~+9a|Y4NF)u!S
z)wo2WhB3PJzJL#_Ntort7f^w`siL*Dk(xMpO{jm4?otCV9-R4v{qZz!pH^Fw^h#A&
znm~tdK4nY)N&|OHR7DspMulQA0)p~~?dG3oAwGky6pC0N=<~Zap5dWPYTk??D*s3M
zlY*f9bvxpRL8?J6_XD~EMlL06N`q6U$J&mx{tfhe*{s;f4Qn-U{?`2li0Qf;Kor*9
z08?Fe1E|5e8!)po4Imz>aUuBx23-gUvGl*On}!Ts4(z;tlEa>I&l=?<Fu|^TAV#go
z<xF-~Z5=gP-0Mcgr9yUV;U}>P$)Q5QCe?PNz>HBjK`PN8C`SC_?Enwp&&ifm9W4kR
z3|(%rYhTv8+FQm5Py=icI1N<sj8*>2pDSf1D))STkIn)7LLw{m1n$?^S+k(48H|*q
z--W>jFGV0z5r7r&Mq?*>qdF_m=TE<`_e;Qnh1masZF;_f&#}H^t-hkqG<G!*yP%hf
zG~}+#&^kL>8UO=z>x1+zFK3@uCFZYc>P&*XFiSjrD)XEjwGzWI7nR>*zzj>S^GCo-
zJQhQt2p*5~ufK)cD74T6Yx+bqq47l#P3w5CFo@n;POQcR3Y^K{mJy7o_$;=6Dpw3_
zLRxmG_z1P7rSDS8Jm26<Y#Z5{GUaE>%9XC=hCjxJs!}mm^FVUh8X2WU!Ao1jMn{Eg
zrzTuEQTA)_i*GiKJsFkPC0NCa0V^XdXO0@hlzi9@RIv)WK<@xH<)9Dya_HEbhiu2*
zjg{Hmh}(=xtMOpe+e2|vZ&wVvpT{oi{KHM4@eSS>O7@WLQ2vm~b*b7moR=VacpZZi
z-y3?~&x4nPk&J8hs0w9xj$?aTb8LEI_;NttNvW1<O7ek#VC)2&e;+%iXsBWYMpK;v
zhQOsKRE&b)njm)|p-?nb=?+_)U#lu6n58@uh%g*mC=lXx-4O%z_bkd)DNdgPvjsu*
zg?8!D11F7DbR$4hV=(!E{NTN+*tUlcNXmDRCKV%WhH@?}z@C>Hx$ML~QOy%BR7TWx
z)YJmO%SoX%T{%2PA_@Hj+nPe<a2sza3u<$-EfW&0X*ayQrI=Jpv169`JD_R~4M<kP
zuSN}t?Wt<ctOZO^a*uGg;$Y#<v7c`l^bTY)LD(Ii0H#5qx#Ul=!+s@{6~TZ;K$&W`
zpWPgi8#~~y^nxu6#1CgC(uc>@!(zuC<(*60(m0X9EYC;V#eO<7`gsxw4Kf(Xi78Yv
z=UtESJ$+a#-Z5x7^BspmlWHRuZ!tJnd2rj#;VpL#)$UENZD?*My&L8C$SM(BdYIib
zeCYTJCryCcQmS7CM}A|&&l{kJv)WiHI6NgK<3Z!bvA56i$J0|-nff)DR&e-tcJZw|
zMow}ihwPaJ<OhfcJ3Mc1{J4WZCKf7@CQyPFRxl`f$(|eH{ftrQLQ>glc;Tf@V;$;;
zBwYz2<dhDfB`=xCt4=gDk(^$%t5Mwal`Xt*z<3Z{u;9k_yxPV*LJh=rDbIx<8uPR5
zcZhd0F_BZ*Tz@!{yA&uEMQM}Rk5_sNhIeaix;~i)UY%Euw?=&fJa&CzUtd7q5=mr*
z%)|GG0hw1*n^(QMF;T5l!Sr)@wLNgK|EdCdpGzbeo_PS{c(6Ebx12s;{0KslqW9Cu
zCRhZspsdwOOfh6AGmRf@=iC%^K>jxRr9>=WKWes}%KGwkAQ<3~q@J_D?;UKXETY%$
zQMETT0T59+O7|n^uWgCt)c6l(wPDDhs0a`}wAmi|t9QpjkYkh6&&gu^?~k>GSMhVS
z4XkHCNSIh0>^B~Kzqc(sbf8+I@e_y$=%V@0X<jXN7DYr^;%`FR^RR*AE8wbK9T+QK
zu}f?J@m+S#3I0AxBoI^@EV@kPaf7y<Ej`IwW?;>e<%O=OxD<>pu);b1d|E2qz?}Uf
zLJSLs+4XayH&73Vwk2trqRU1Pw%^a@<KnY;E{JdeS*1*4FuTj9tj7y--&4b;J#S8e
zSU>ib+MD$E$ab*@UuXBpYu@~ELNRQGu=n_-cJ&MXbQ0rjO{Mcd^m!*AFgzaYb-m4d
z&09yL(yjH78{SZD$*hm9<aTe^FAeUc-Y6#*%)Z7JKgp8I)z;C~kxDP(WWu9@H*0L;
zAN=>eu(f%uY+x-_5A-1hH~T6JpJq!~(fVqqO3Jlqk*M@Z66N(`FMJv8WNpsG+BESe
zuw(*UhS`&lI&Tq7R!2$ZW_AdIhzG$RV)uOKZ;VKAtCb38@E1VbcyLU<jc?~2X%`T8
zLkb@Y8Ptg?*=?6t<sIHKqBfCss^+#S?Dg54*cMx|uxOarcgRB2H|nnD#zwF<Je^pZ
zqwG8_tT}CxJXh}!D_rSqV-x8XBwjJ~O7W@Y#5Vsm`U0+<6sj&~Tx}#beRhY~?yI9$
zQaF<N42jU#?mNTSZ~ovPSAJg2FsR-&7DivL@VTMfW`2B9EVkz+&<6LX{QPw_siQ*5
zR}n>cjg>BC3j|Ul!0_^^9QPN2UHma`$Ulzr9=5~psn|ivw9xL_*6FXZOAZ33Si+VL
z*~x16^EWDV!8Pftj;oTUz0GdekR~F#xdzs%Z%~vl`0%Bnx4cMC%5=+Wh(qFGWz+Yz
z)q8qRWDjYs$HYKw@^62dYuj$^9aUg7yGIhS^Xof9?|aJonE~g+S%~9<#a^<9Ju;LZ
zLp!x?C>OqL1JAKFRXh|YY7^m#Pd4KlB5dBhYKp+x>m0j#od1X-<qXV!1k!};z)gjN
zBY5y?n=sISF+J4`nUe<>8rty!E6(+SR3Zq_IO;^{D7{Q-D_nK-$z-D~XkvYu#R2nh
z|KUL+(wiPuw%Fmr`4us#gh57^D-n?K;EM0;`F1{t8Jd!pmhHgxMZdp$+y=p#S=-S-
z!YsRQAZz~B(7Qh2g>t-Zc#wK6;wHIPqeaxZKsj?0j8UdaJa}T6ZByqh)c#{qaUGd=
zZ@0uuANa&X0|FLqO~?~p{>yaB-DT|=Ia8G2sij|X8uQCr6L#<@eyI?ijL^!1r%Arx
z^kb_YKElSG$RtXF$7L5M*(@n=pPptX&Eh?s$?C(?Y}Z;OO`rJOQt2*Pp|FI8qbzl@
zAMi?OK?S>XzM00xgYCr$-Vm)nRozy$xCCQP5kI7q2V>c3KfAJ(16L}lq@jyg1-N_g
zx25*#B7Z&t5yR(*(hOD{Zr2^ttJfaEK*d9G7Z_b!jBfcrYZ%20k<MLQ$D>SEUJ~h<
zOf+E?DGKp7yW1X6EA#=|s7g?g9g=17$oPGjeaZ&FJZYIBh!n9}h`kgXIm52wTtO`(
zIM37}rAtX}LL*q(;vzguL3yVgTFahtym4wFxzY9s6N<d~q<VOLXv>Fm&ei~7iK+<X
z#A#SzXPnApc?;RohDymg7L{=P&wR+P--{O2Cg-kYwL~|Ayzv+tc?plb2qyGaqoq}X
zMkXPaTsFfto5E0wC0oJVArRCL!X)CsV^7(~M?~Lp=2VU1hE3Kqua@E$d2=L1i#+u8
zkSpxqX}x|(h7w{kTD6c=G*wzDyf-L1H{1DBSZd69Qdi>0@8Uy}!UJEl|D56PPfewn
zZI@nP8F#+l>c&OSS)#f|{a*aN`e92&1A}ZE>-1P&*nbfLa-9FXa^Cx`hy)E2VNaMf
zGvy55Z(l9(cJ^zkX6iGLkU8aQt4}aArJ?{@MMnF6HBvcEjNL`(^xJLW8eS*rmknhl
zxw0eHu=;3w<t~375ilu5YU>v{1F02yz((lnW%V{oN=#NM;!+`fyQ(5Vj;f}(wyl~h
zHiLm=f0anj(T|4JR#TV52}znCUwwa#ZT%0rgCW(US;N*^AuN%|=(lXUMhJ^IT)EW}
z?RiNKRDxWLIMX>VXP#?QB-DuSs>Q_O+#`*ONZ1nm?jw71fs^`VcA?#upc>Z!Y+eDm
z@!+|mZ1+VFB{9yme2~~%kv1_vRC^7!+$eTeA^l>aD*}x>3kW$B(BPyUV-F+S)qpr;
zI*hi7?Ue9E+YjE`Irg7-ydA(7^_9oCgo90XiJkSfKdvMyRo(>TICl;P{yBDBXY`y|
zyP8TE3ab(icHbp7`x9@%p9^2|T)U$3p=GgemwUrx>3DfeyGcBj_pttg5xd1c{eWf#
z{<N`uFi3K-i@Uek!Mpj2Nb{FQ>_UuJ#_VnL{^aL#3K$uWi}1b0gI@;Pi+g)dBee+r
zYe;j-6q_oM2eg$DX!zs!`CjYCUMr^mBH~a{@cFEtyglNvYww2&Fh$9-ga1G^mxHoR
zV)1f1fi}FjF~i3?reV|X?cmFtdZ9pOMLtw+kLUN2m?+4VpuOU6=(nPhZA$IiQoanJ
zo^EYM;eo%zgFkN&d;9>O?+k*j#3d+k$nzH)?Ab&3bRoPq!_ZJH#RUKPrk!&)69&k3
zzACL(aKr6e+T!{CMqjZCe|64*{)qtE`W&l#j*%lhMTjUfHIn;v?<?&xU(gzT|GHIN
z>PtEz^*{Jvfh15#v%R;K4-`e0L*^<9pS`EtF3^ICtI8mnUz^YwYk~Eq+fZP|vc#bu
zyv1&<^-kqI)<jWpAe5GwcHTbz{`j<qusin>)4A^+d#0K<V3f5jIhD20mo|*<*x#Km
zx7`o*Mn6-0PwXE4=j^A5N*u`2<#u4b|HkL){EWBhdi#6r)7gILiH;XpYLrsx_Pg00
zNb^cQ238~S*Wf3m5{1{LZQyl0M-+BROUQQ)b7!4hGtZyGUr}_R0>ojdY>?X*+gbb2
zL_7!<5^*JjNU?dlO|%>D@%}TLq&nWou9UMSSe&?5zL&9o`2hR%M*k)2Er6*u&6Rx&
zl6a86(2ls%n<f&4jCJOQW4`J<2T#ti0<{r<)6@#(>Gy~4Z1M3dF*XM_1K&c`ikP8j
zQ@rhiGCO>C-vljn72aYNv}Rbw4wIonGOE+;+<ex|Z9;A<Mx3ZTU$h-`+6B)d{88z;
zSW9lD@xnpxT76bJaAB>ZO96^J|Lg(#Zl?cu5{f1>hD-=Navko>_pIf3K7t&V)*#tk
zBDS#8<F?qC7T9rfmk1WMomd?*UUP)rvb|HhgMQc5m`ct=5~E14Y3J@?TcO?|(I+Ng
zXXpx8lpMqY`wGzm?->pGqk6$K5Y0^E&_=tfBBKH{)V9k|E-Vz0{$;BDtIm}hHhNkL
zLd>hf;G~^;k+h#O*>Vsyd<j2e4T2DT4=D#?G1<<9&}6W8b)=IJJrP9Imf6q#dyYRI
zBmTjOVM+~MH7R{iM(4!|dwIX;gAfM;mjV;t*_ucC!^x@WH4P7P-lW1-a<+V;$a(2%
z_zw7%EY7oMS=YarE<>mXti=#@x!2TW53&m|0;j~B%5GhQyLzIU%g(V~pYTrECafE@
zbj_B*<xjLt*(5$UsY_ad*3T8jOD5VoE#4r3P3=#Fn$#snPBz%xRvqnIm{k_)((+S4
zrJ{@A#lPFvqrE*k8eM!5?%A#Rlojh-oqmzMUFN@%{+EiF1zR`m7CW#bT7s?=I|JWA
zF=VMX7-3&?Mj0#z^zigb_RfdPJdR1&EBkvB6dy?xUA1_o&<;4z9}^JG#-IyI)rVd4
z&Ys0KJ<^;|X(pzcF>7G2DA&#GI*Oqb*hSadNh7?2k+>&eE!ae4+8b+$X#VJ2EKe8Q
zss+?YdJ|l&s2GPw&24tqcs2!!<s4#|FUr797k+AAK`=CoYphOW&R!&oF8IOr1+!v*
zM`ED?Ta=ZEU$>uY!y{~mfHa>m$EaY8l}2P0t#L-dOt!mLluQst4j92;OAfRoyjKIM
z2jFw&nn(jl$lD}ax#$O*$vW@@5|&CFxbBI4<=QNI1KzF;V<Z2@z)*|OK2yz~03*0@
zSn!Fx+2HS1Hlx!zrpPy&zqZHWvC?&buCQ?Yt8FM-=sRN0=dHHI(|b`!6IdxW0Lmu$
zj)P<0u&dEg8BsL1i~-W(QfY2|a|8MeE5<oG;wO6@J73(&8wuTZ%~0Ai<LA6l=nk5y
z`O1!1;5}B%_lZlVPJd|+pY1QRGKlefKN2T>W7B8(Pp77&y@B^aEPMZKFJA3Wr_U3q
zXVpph-fmuF8=e$(4*vr=YlM~&9W*W3GIrvH{t3Y>vc|<8z(<h{MdeIj*PrZ+XsT2m
zV7QTjy2*Do8pEUeM31HNy%rC_&xVy<XW^s%y=c<JOxC;QHJ90AJE#+eT=I(@gl^3$
zj!!jmRwTjQfDsvJ{aAwGUt7*;KE6tn$BaTt+#q{6XSJOUqvU&|F-TJBXvX06OzXxq
zb_?4MJwzjDLhoy7&1)6%$t221NQ~TEXkUw4Wq*YKq!lDtNG3nv3yFpH#y=P!05%vW
zY7|$u<H0SL*hQEM2q(#u<h(9+CfN4_8-T8Z(7;XwEaq$=<?&SPyWCnu-IDU6G!%A@
zVw;W|8ap3(=qjuH+J7*zwz|Fp0wgLH`1K+?;ur655~yY~{ekJil#YDJPHXe$7|JL<
zx);Hx#6{;^Z^IAwrfAY2hbmYP$<jFNHG33BDh(%Np8-^(97&mk*^oKsdHe6_{sTA(
zih??2CF}0BC$*B&jIwrB9-2Ty1GX2Oib)m)*WY2ybNxqXKd$01ScvDu$84bx2JSOP
zmKQ+3jJZADvPm*$v!??6O`)H8$zipNAkE;(8ap{39YO67R!d}HBT+bkg~S-ggVY>b
zSjaEPG>KWk(ULtP)T3snSol3%6BvcQBPFgcqNmhx+GA!d9kup(+i+1t|6C>(-qv5C
z0K^vi%xhXL>m{;Lr#xgcj*6%<%OIgihV}Q)?KapvBu(TS^z7aWSziM;j?F#B8%AQ(
zx*wgrFZ|Iuuv|c3h`-_Yk)@|giV)vDb^*v96B%7Qhe#VCR&&wsup)F#vMw)n^YcE0
z>D=LzO2fn9|FaXL*^Ez1g{6We#UrpGzP1^N8HUAGAvbiK-(`Ibj4%F`9g39!cq<jq
zp|>{nf{x=7MYsK6h9N))BQpmrV$({|<CcmPr^cV{@qhV`gkDlXG&<=l%hI3h)tl+v
z1!MEatTLt}tAF(gcJu)}&nK$377qi)G-tlD-ExsK9GObY_~^j6SwZRv7VY4h>{PH>
znZO>+G*8w9P0aJhf7qGPp_$%{bGK23h8qP;VS{Vz9F&lVkSAr%C;1w#v05>DUD*N-
zO;jUd(ScEawF!@&WDh;<t<jM}0gm{bBV~U&)IPZ0TZ!vWB_q3_t*b-66++6H;P(sc
zs)yMn7Cw!QkHph)*{{Mb(m~CNkE~Dtyx~Bj1xOiT?|^0FLGEAd0LBfwk)i{o6VbHl
zBTJ(LGZ$IB(tmtAS|AT}ASfG&QvS3(Djh%{(UJ6DP&t5ZwTgQmV_#45E+!^mORnh7
zA@pA)uJ)EkY$pho*DD%p_=0pf$&$^MSnd>mKBlW7)qz^dbC&*)q#bpT)8h>26#n4q
z7DAZqpZk^_fec}|5&Y{1y{#4k<zw<Sjd<GLLw$E~%sR=K6GbzNF`afVTnWNsralbB
z9mBZ#bGzV1o)bt#0<zW)ozQ9lLrDewvfcNuu!m47<p*T)t=QQGT=hT}zHX0i!>8nW
zWsqIOdIWJ)TZH;jJN;!w$#o*Sl)!*>=vxQp#D=ctCvl<^zc>w#ciuG?hz{{$&Z~z>
z5ydQiZY%Bem*|H40NR+0Vk)`Tgqa5v#4RW=i$dG}J^$5Ysn<fR3-iSqTeq_95sI+B
z>GNvap%_ZjaHC<i9iE67B9V>o?7}jEcvGvaet&<=#SKCRGrt~|uwU?qx!Eq{5x9^V
zi=dswHY;MQLT|bF-2nn1GwHG>+pfv`!9&6t0xi)ZoMvLP)dC7J9JX~1t};y&gp`#8
zvRwvjK+|YWI;;ygAK;fNPxScep;pn5eGl^ve!!km$b(T|I@ex4u@`zU2kHGeN?jrk
zHxHVd%%FJi(RKFbV&ABV@(W?<70PZ}({AH`W_^fnfowAvRT<YM;=x_p$4<Y)*OU+=
zAXoOC8>l*ldk?dhuJx@FnA-(Rg@S>vo0oDvvol2}SbKO*-ATedzl~oRdi2{2u^8wE
z;MOl;^*lvW9X2m92P=;#1s3V^|JibBlUYY)T`g(kWz}+?qmiS>2ETUL{EzsO47ZH3
z!gXu5yz+Ok(hCNRugqs5(QiS{yw{ChwSCWI2?YW&7ko`+?w#BC6-&$;sGmnXX<j`U
z+LG-oJ$_|Y=#MX2%Q^nu<Wz(7)}*wGGCZFE^{?0$$9h}zE}>^chh$iTgMNK~7#$xx
zU`R|Hz_J2@_)0tbCwHY+Hg_SI<h*AQxEhyR;u|vp0V27<Ru}wY#W*zGljw86q3N#d
zE^ho+>y+cCDGG{$*r!kNv&;grbnrnAplgGPJm*@4Vif0ZXO*Gv%l_yn#2eu^BN{6A
z+o1=rU3`YSeY_@2R9H)j{so_}{?TT?NdLM3P&+pVFSEwY%}VI(mFw)}$+XEh1#pxA
zs3!<YW1|u~bhwR;KGNGMrK;CBz|3q}sm*@f=_Xpq3@q*gDh>Yf!_b@F_dOcbG`C*G
zi%Ot?g4gW77x+^Uhei)@Bd`)~@csX6(_1rJnh@ERxc-^@nr(8b@7Abf2WkUit`y`Y
zIN?`&F3IyqBxF3>@uGY_@$SyH`@z0IfLLwlx|rs;ZS#X?J{|gN7w`0_T+P+&yjH4>
zPwKV=*ZkSXpQ~&=fJhnmwJl97iR?7t1Ygd!`{W3Kb1L1G>#<F8c;ji~%Xe&H@576L
zHK)po@O^f9Cbvyo=YEqntztWVp=2Cz3T)T{zm2o>O4~(VHt<u}ak>VjDW5UJ-d?fc
zIo>cM)gt4Ae#DQTvGk_?7#8kGucqLBa`&B$deb)EhIYI@jD);DdXuw`P}|H-?PAk_
zg42uG>6&4Dj^X9&+$`PP=6=fj3b-1E_To3qIB|?)=1cbNQr`z+iz6M4h(b1^?rr;z
zy#M)_kys9Clx-fvHUDm%CH?|Oy(1MliP$`?Z}Cr7x{x;RS#lIw+}vuY2Tg*pay68d
z+<x=e3fU6bt;)ch^3rql050k{P{%R0<KcW8ohovO$YP@ZjlZ|y%b25zXTdkzAxwlD
z6a4H+8@s)4AW-~#^p#8u!(9XIbA$`hSNo#i77W0=rpUih!WkfV>n&@-GsV_<gaKYM
zrpfbd?zZ>fMJ(v3mewvjT#?7qoo|;8w}b!eZB^-pmD1cDL|;G8-j@3;Gw#ScBKG~?
z+4fgVVAda>>H;(oRC<SxHviVnIi5GjtD2g}-Ndp2iR+tpwz+5kLOt2#+7>(lwP}Q?
zJU$!!(e}m|rfmcf^O5RPEv<~2(h$&Y)9m{D;MZvB+BPAg!+_XawsA9?&X?|Kw_oIh
z;s_i-1FNMQz!>ENE&RrZIW653p%o3-;cz!tr`Y*Lk767!TyA^1QjgCZ-W=S&r+vCB
zk4berk2oV%ne{K0mvXc7EKx;|#WJxba?YVwS{O#fDYi%Cdz(&I?mClAxzFA92jSZ!
ze^lg+oGoR=vS>Fy%N~tztub85M3F+wf%Y)v);sO<U7RYWCc6j#nhU_|fl)ax+QtM%
zvH6ozoRyrB2`G$MEWSSeW7}mcpMefj?UG}7`0486sdiTp`>N;=sj3L<a%qN-USM}e
zK{X@f1V$YONr)u6)`fVS0rm$LhI7se2vDQPGBun(F!pX_%n?Gt$rDgl;s)fe<*`}}
zBy_UM6xKg6Qs{XEXE(WbM-1<Y9b@}K?$YOoO@(Q@k9NpBYyQGT>a^N=D7m#|q03Mh
zt614hpW7P|BR&8!L$qdivCeecM|SL`j8c~|nnA0C^}_|Fp@CXJ0OQZH<zi!441kUb
z1ybMxhyHAPtb*qX1=BeI1%@o4dQr`JJJ}})E+`UwSiWy`gGdxcAqg3x{$gj_I?^OY
zM6nsX%$UwO+U5mxO#&ydIt+gZlAcM8%6UJ{wy)vzx*D31<%w#tmEc(_)V}=vbjw+v
zPiL)-mM&06av3Tc09<*`CH5{hI`8WoA$PHHTqTAw^G~$SkDUT4Q-EaH28A*+w_RYz
z9O4wta8MxRQ`IuKn7F&i?#1;Df1B3TAU!~8e9LcQzs0SGx=x%AF%(*_`uptQ+x(18
zT#0nkLNS~pceNA6yd(D5nvozPrE1*4q8X|Va>QSH$Zkse?<Nt`fYnn#dI2(2o@>8E
z3<(s&qlO57W(Cj7vj?~E%|UGh17oV04_^Fd+mr2d<&7%t2nGLU1L_AJMsiuOgr`rn
z&!xsFOaP-&)=(5VvTfQH<oQZeqHlt?unfpL=5flg_Bv|>m5lDfO&b)jaO5z$-hL*?
zhP{AB{NN)0S<zh<+Y2>(0H!ETl9%ivkzcj%1X;{@@#dv=KGq!FJ>H56E@inT(qc%g
z!7+IA4*UH3Ogr!y41o}Bl(Ktm=k0wI*vc8Tr;Mt7m?_Jw{s&&jQbo7Un#QfaQU+KA
zV9xu&{&^ZBi*8~NNi5I1>$T)qAu$R;ztWPf{<BU04?lw`0Bz+FIqS1SJ7W~1wvSyV
z@<mD@B1_ym_2YL#3tsgXrlq(iU*@Rm)|<wb$lOM`2U(CR%)M}CU$$v%3y}|?PIF2(
z;)xGr4qtz4H!B*8h%-Ptw}Yi6b9<OA8yGw8S-OIG0XpJ4kZ|xYx)++PY67E?yG*Q;
zOf2-p{e&gg@Cn3b0`7!`RV<nL&dc_}9=(={H{9o#S1lCDUB;w$;)h3mVeKcoOc{f7
z&V3>TR<kmH+TBjU*hkn*=2j_u3y7ZIU%tB?7dbX2qQ|nTXj!f!PPY=-<yl*zMb|F)
z6e>)iGMRk1E%vul+=zNj$|Id1(QzF%BnsaeN$f%9Jn@~<;nsx|W{rgVNe0HjqfkTs
z5WA24mo}$>SZqWBV(917U2QCC1;d3Ma2)W%$n~9`Xh;9uXCbYnHLosmSz*ia&Pg-v
zR}2_vqyqlIMGO%IhwkXzY=Z|`JieV?<PomuwhDyg7o1{7@yi3&Ax+j@m(?6B&R<rS
z^JtKh_O%Yk1Tw8?T$Bm^g`zIsD7O6)?-|!UZe@5w6iNmcpxZw!vn^%jU=Qe!cr*gJ
zW(WiR*|ru{WJB_ZmyKd_QR;bblRw+_@6#>F6FL>cK{XKnC#*=Y%kqb<YiB4YV#8xs
zH*xD6VwbxV7~UoJi5J+;ktGex2x}C5l}O~=Jl2x?`nv+hG9q))MK)|Q4+$0Lp+j9+
z6r&VJ7AbK*u}8jQK#FEgi;6Kh%M}dq?ql}9XLisG1!qRl!-xe%UsSiV#lqu`*f4hI
zcT6^`N6LJ6=SfRm6xzzg9M+^_zBT7K19Zj2B^_xLI1@j%S&md4cm(*Y1cq$7VSlm5
zPjG=TqrM413JP@mBzCIh1AIi3L+m<mEi^4#Y3@{e6nL1H{X4*7WKd``#_VG!&1Z5X
zMvQnN6>9kES4lg!fX#z4k-LKb@E}W*;Tj9g?{8(tvyjZnqlm=`8<2Lc-4#gQ{dTSm
zWIp_WoDqcZ&efu!PLS4dgbk7ZU*S^dSaAZ$<3YzP`$?aR%00FV0>;O~j@@yX?ItB2
zwG0viX&~51N*>NLkk+&9`nWGmMF&ARA`*G51S>c+c*0qB2JryUtt7T2s~k0=vGcyS
zFNAKYC5MZp^2Lykje&2t+EQS!-M*r(Hs+md&9YmUW&mpZ@`o<FM%V~(qONMe5rNAX
z^T+Sn?sas|m0Mwm1Yn|@Fv;?ZZL*Zl$Rw(k?FEib!+J@pP|#(TMrw!@#(GC+!aFwE
z)qWo2Z$TNP$KqZba!>x1%bV=1xUWr?9Ylx+dsQc?g|;dfl3zamvTZFtZT17%m?y>B
zp>S*5aEgL=?MS#Gc#HHr$6L6<aLmg?um6Crlt3V<w0s$nJb7Z9*vElCuTU5$5Bboa
zf3&}Y{W6ovX3jiH9i%~MZ5olF>^#_2yISJ_Cv>tkCX^iuW(XjQLbJpk*qBvNK`#%+
zm6r3tilHAo<D8Jt2V$C>b91a-uCzq}0(=PEOMQ!$x7)?8-NDz9sARaguK<`lOT2h<
zd--|alS-`E2&q-%h=bM;MCGlv6r)sBDWJBV<;Qi%s2Y#435tIgWy&cSc|NY2V?#ui
z1YE%n6quY(7MPJc#$uX1abFRC#**gtN-=5*>h80a|2w`QN`~YbadapOPlx&aTkOuH
zH(}K44P4)h`I;+jKN%7%Ci;kEC%l55+UxC-oqP#rL}<Ad5W4&EulD@s{9Z*mbV||@
zrqqgajNzaJioOpCVp~7s3&$`<L`tx>hNf%s?YBEJsVo4L2U)LVyIob-Wk*|qw$6e(
z5C)*dF)Z|OllepKdFkRBC)+6xI3Z0;;EJtmf;0x+AvKH~?pSZkw_^+21(t@k=jYP(
zR;IuZo;t~f{*JC(Q2K{zn0I8uU|+&H1#Y^UGUEZ8QO{3F9|DMiLI8t-iosE@vEyVK
zDQN=}2X=#HLEh!3Sp}+Yw+dd}-mF*yQr3vAxhv$UC3Z8e5MG_EFiCN}xe7_wNm3Lx
zNaZqn`cZzNyG<MtL@61yv?=esY?W|Cms<7GrJ#s-u*D0uts(&>tg?Kjgmf_Q-S6xq
z;R^tf1p3KUnXeei;KnvPcZNTon83vctSA&bi`eyC^B|~$uO8BBTgWz*qCi*>Cn1=1
zsTIjpA?cbV3I^8;D@#1qtv35He~#8GDewLzXB7NG+f{wLExMo1h^s+=U__{DkkxmM
zcH>@|BgiMBI1@(t)nwcC9Ci_%3eM^*+d~-tQ*VRLpqmI2nD2*-&E?Sk5ZVs6`e-rv
z+n`F_OA%ApxW<}NG!#qaY_278D1rq)xYjm_Om9Gc5-!Om<^Bs}J>y;*rEsfa1W=mz
z)F?u?;z9c?dRjpkfqIdR^TdCwm=)o-@HJi8P=g4b)PI}c7N%ixirbj<T`qOA@lKo8
z&SRVhFfg~F1&kAx47-SQl+K-P>?i&cLV;z+xbWe$gWw??ptdzT+Iwg*uH*p96SzRg
zJ370hs0>qnCJpei5_=ZD#Lo!$=j=;==5jQMIgLZ}?8i%J%&MVt5cFb~o>F<kVfMor
zep;u31maeo*9ATdpN$jYNTBAQEhW4rgY(U0j4**(9VHAk9bV{=aUS!dJ^7>?=~Kx^
z-ED(&QS^eh?58WBX#B>grf_PsaUqB&KVhfiH<miY8fR5A)U37Ip?MGZ;KqD$iAd?8
zr|hj&j#|TfDpTopDGU*E{q`f)xTp6z4qiuOKF8TLiB-?qaRZ{y;h||r$*4#FBE})$
zzU+GUd3ROSQeLDelc<l|F>l&oA4d(&h+DeqFp?;<%I+TWqSe0UZA_R5J`R5YVNUVj
zfcNd?FVN;-&}a*flebXzeOa+yy7V8m-E?220~GLrN{T89jKLsY{=g18*VzrzbwwE8
ziMZUBm)KRD54N^KA;xUD2=~$v_9^_Ar<?&e8mmgQ1OUPImblwb6S+|pw*@5y8y8vF
z>_65G{K)PTwJGh6SW=0^_JT6I90w>|c0_YmN4>|xVVTkLw@t0(zyA7EXjgbeq{ngW
z+`V{pg;j(2<HR6m642Wm(t8ni0UXX@9rB*ta*4y?qshzNjm~I!=e}(dE{C@KfarUm
zK@#$itrVkuhud@=bA__%qln_{7nkp26_M%>gLPHT=g(^G`X{^o7N5mvJmP7=!K~H`
zzp-Wi^R76GRKAt!ClopOXa~ClvgI3<2|s`t&)rU2+81~D^NMzTmL+0qubOD*fi<#3
z*r8a~j*7KG608%=ul?RuzQ#*_xlt}(*$VF+X_F@V!x=IQoIy)<+^55?J&eAH48?HC
zMi(%oJ2r~#h4Bgd)b)UjQ!H}e<+oTD;5w|5D4CWfjA|L6d}OmdY@>5|M^Ve9XX284
zIkXt$<i$Q*?fTjbAs{K#du}rFjm<u>g$MF`(G(YSyGUUwskF%;J5!7zV!66nD5_#r
zH`~FEmCQpHQubga%tKcaFdufYtuFQFQ%EJ5-Gf60Sk>)LgT#YJ7c7}E<iBhu8+WMx
z+>uyCifALmz;52ru4lm|{6U81p)ZtBGo0YA?}z^3BYzG+$(g|pVdI#>=*_I;OYdup
z?D*(vTQ6Mr_GxyOq!6_l#3xbABdB@IE;jE5e~u;yHlP5XEHzxagKhA5)aE8n9?_7|
zL0}o6$P2f$jX{#>GkRD1<BTi0QtAP<IUu!dYzoJSJp#|=wvQq=S;6t+?3K&?)v1&?
zRtsXn0qpJfvvY*D&?%l(I)t^>q~zy7o#msewy}4$xB4jNk1Q^XC&cWgc6DT^k5-VH
z<OS=PQ)z7o0-eQFvX!LUq}wGoqxSqgdlM{_7VfB~f%?cOtXu6_xRi_4UGG^uI;#hy
zl5^{`O*ox`c&FWW8SDu+m3&m(n!x&RA>dbPbE&HwU9Z~T*ec<>?a*2j#lr;tv1{xD
zsF3FXK52bZ!2-o@dtAR)><!cx1~nm->=7FrCiup4|Kx*O$9lpz91+5}60vOmtrf!(
zY0D_cWPy}^AU$kdfEPck09O>kk|&;rr&F6=TB6$!>u(%8_zLe#{_<2Lf+LUso03a*
z^}pK8i~R>vNimRpRf7N5^<z^{XJ%!=_(;ub$#W+fNkQ45l>_aDQ#h^I7AVmezcMUU
zoP$HiW(DhiYbVX~(>Xd3N#uOoy5Jh0*+0=@x~;61cCHVJ@q2LLajWe9M!xC#Kc*at
zX<i-Rol;1;H9Plg8x!YszwD%~hV%i_;Sz~DyK4;-k+V4hQeYko^zFafG6A0%)VNmZ
zW1<_ed*s+4@Mv1#{7g-_6)`VAY-6$g*c<%puzF%)I0$a%aoe)v^`TEZ$18YD((UBB
z7L+U%cJBrDJ=bx&X9c*Fxd1Gk!u7-`6!5uk>`Imel0brcS`Sj+yknQ4L(nNQ5JeV1
zRmTMUFuETlPI2l1Hhr}JCL#)MhSh`iu;vJD=QM@Ds{~FQW+Q?2nUjkZC_yfoA~EnB
z*jdyC3+tQ<^UWiaUzlt692s@a3(&UgI+4IH?Y2s{j1}V1)!2oa#~XsJRy0`w*c%O%
z;4L!XGYgToz&=g*_XXlHFpN>|NHelsM%od&)4^(|p%zy;Fyl}_X{XDnQ|;bG-X#_Z
zJFd%tvH>=mYfsPi=Tq7p85LPCuC*=Y!O`_oVxXimHg(|`6NE)yyUehI(Z)4Aa!NEd
zlBQYWifbaxHn)|%rJ+kojgmAF;r`9g8{UO<vX*~!yP`0OV@s+_6iHazncoe)_cJJy
zofn`8L6UqD#<Sl{J2}GDGp7~VDcD<E14Ec2_y&{)LM$3(-xd3yCcBS{r@X)Ip7wZz
z^km*gQoGvXh}Rwq>^J7`2s~3*HN$FCY9PL$dzLKhPgCuF;iha7fQB?YeNh)>58B5b
z!9h;TBxF&&0`0kH47DC&FO^2m9b6EI%xIvIJ@>Qk%DkltlTL^gb3i*$hb(*cS_>J!
zIWM}1tR9&~EMY%HJx2S1nvVNHp_#5j{d2a}07q&d2`Cq9OXz2?eT`ikVLkgRz*utw
zI`T>fk}732w#63FTO1<PQ<hZA3ccg0)`%gGL3`R3(W*)zouLzh^N&fsvzI-D!R_bX
zuRxW#sCuE;eu%D8aU}qujt$QEzdhUz8|a^!7!BP~x+p>FZk6`!U~l8xw5C10K`J7b
zcjrhic8VLkzpaTVj@xc7<mv^UMrhuk5w?#GCA6b(f~;bt+uB+{5y#adYyb-g336^`
zh=I$dSMng}^OJG*RN(KAz`%3iG$(;Ai7BH`NWZ<m+#VYdeZsX^J!XY(+Rt9u+aHf4
zI!J~DBVr@V_p!;*Du6udw=DN{<LnDvh|wq&qLp2nro-($JTpAcxbKA`>%?U_4=cb%
zY<sA^mmwWL+Yo>PnF$Bt$_@L?PttSkvYe==WNqZjh5<OaN)LN$lx-XJFbSCtZ}8DF
zxnIZG7JwCuAUY#W(7DHh=)Ml)?0aV_`>RY63LO~5TnNUBh_!mQ-5h=A@mB6iL`qKc
zyw$!LlEC*)w&?<{Few49B0owRz`CIoy{4>4A$5lo+oEVl(<Qxv_Ybhb=>Lhh%#+Zd
zETTV+wADQn3_&>A>JytyvY(<)5XqnbWoOf}HHYnH712%#i$yn(+tTTNeuAWcezqa+
zV=C>n2n>!gQA7+UGYQ!>J&PuWrR`*&kR;d7v<5l$#5(aQKtV7vI(&bctuLSy3dB>N
zieRxCrLWMk_34o0yy6O(Gt&3v?%;fxU~>A9q=5Opu)m#@VL3dH{BhB?ZF7(vxUYYg
z3^O<mut(r)oXMBR*|rg1Bg#?R9K1Kf9*l<GhZ56y+09dQ&t?_&*NC(q&kSDQe|DC&
z%W)3}!rMXQCYG)b?7IVOwl;$0a0h{Z`k8SyJ3sn0qh--+GKVfY6&l^qjdq$iMycGK
zo_>QMScv%E!)@wB<OHDkFktou0odSX6v*T9+v>5d+f3#FReK1iI7LfBAww{WDE$5V
z*X)C1A{B_O@5)0IMR$uuHaGsq_U@oD3wC(GO(aXnQ<M^GCG#@;q<Xa74)Djc++zXR
zM1uSHMmt1apKJ#iPYc7S_A9uuigc|C&}FP$i*^J@nko&01D{0l06fWdfwqg*4E;dp
zPH#)jiLfQ1lLVX#|EW60_K%1vb8^{V?jUSbWv6jk(Bga}x!aq8x367n+W>E)M+y7L
z#!Pt~fjQKvKueTd8~m9q#JcoPlT})xkSJ5ebbXE8Fpe?f6-!dZ0GEQ$!c9)Gazr$E
zDaZp4Noz_n@7pZD$`=T)E?p2a;jW&Il2+Feji5G18wIJWgf+SC(Ir2yLZCJ@ZpSdB
zEjyY-a3!sqe`42QVA47xkrabOe9qJDA%Z6%%mG2H<{z&4lJ$dY&2vZ^>X%mpkPKgK
zl?VH~Xg?q{j<g1=?GTKkZc6}Yo#^^GMA4I}+tdHhZSwcAYcdi39Of2MRVbKBYPgKL
zD}JzR7WV3*CxDx~*p2^>ulInis!IRAj|wU}76cWk_w0irU^F2KNgQ=d=#T&=0Te;z
zhJ+-LW(ts4uqzf6yP{$n#qMB%AS$*&Y}f@A6htAQB2olJeLvsl+&~h3|934HEADg8
zKD#`<7Rodmx^&iUbFD)~fnyIVU*P^^B9+szD9<fFy55g8k=$dZ;XS`f25qV3u*NMK
zZ6DlYLFE`GHmb_Fp!w0e8(ln8*~TPZAV|m^D{LT?fU7XkXyl>6U2?Tx{f$!IA!aPV
zH^o_B^QZd|MHCQVx#XmBdlp4d?d~|oZq@qLZBPtaqWEL#`7UFuJuqqrYgK?AS)k>v
z-6+Eci4SVQZ5YIplQP_cQvn3-ItsUyodi9DtMUfAoD##qelpI8UJ(wBV`Z>A>=K)5
zC`21f48`tOd%4{H_GQuY5G){ORK5UBFMy&=GJx$*C?|}Bq<V&boaLUQatv^c*f&`R
zVsU@D_qkFS7sFX=iHu=Xk!>rkc84|LjuD+ZA+XRKpyTH`t}4b;qspWvhsNyBA6(>y
z)!9^(#I_%UD0kiG`Zm&6xL6szBxs+&gAb><!4plp?oR<RVlW%kYVPuZ)o#SS;r^n~
zt2z_<aPfIdr@MzFH_31eKUX0j7#UYw(nI~a5blA`qaSkRU7G-v;@JUR(T>8O-8ICH
zK?}0Y`z9WA^Ln@I1{=dlo!@9ztpQAxKq6WG=-*u>Ru~JC!TleRtsGOfIZhT#a3eWZ
zQ5PHy?2noZ;aih;yKSMpiYFNqYE#k~YdHO|pgS&5-WWjGUd(+8yf*pZ=0DuQB1UA!
z=*$R6>LW<JWV5^bHyg%;ixOt>Hs=02VV4`++E$UxeORD+EQMgsckTf>1qcSH+(4=G
zawJrfG|fZS*Ia{b+XMwNSJLW<_!6zdh^~%}1_Qv(+-||I3PhvzCUH5);1=b;;o;rr
z?Y<L^Q;L<y`8omtl%Mm&({6@Xg@`e6WJX#NOfTF&a6JHBP(YyD7`TX0j*DBJ><X^o
zWQYSY+nAMW>O9sR##u0!Q;wut6-R;6DivxZS63otL&QCKCTo+9j?E()nj@e#fP=Z5
zFPZMzVJL%p%9I(>F>`TWIL#d|=d41~xlXF?6AqB%KEBa@oNnrdFd|K#x$8kU56EE_
zLW?oEDl=WsGhnQFP{att26QBcKIeu(7Z{R)1%NjC02J{H{-i$Qo+-7%p+vt0LaOMB
zH{dAuuW{k93A@C_SjI#mVW3_@H`lXKS1+Yj0Gyrn0Yn4OaQj`%ODafQ7_-tOTLGjq
zH@a{CZBGUP*0Jm=-MmQ&ND#>u+;!G!cNsw#OrXL?1u@Q)LRAKD`}gkS*-aKy8l7IO
z+)j#hv0Q@D&tSRi6115F83=)fKVrF}@e(fDz2QCq5crj7Ax?=p6)GThk3IckmYWt5
z)@*74L#*Xwru-El#|7@$ZhSfB^Mrs(+!t+Kb%Fb;y*&Z2N|imYS6I%tN$wlTPBBS6
zk{!#z@y@Mw&myI<0#JjJe??*j;YB?DsQVX!i(M4bywq9FM?v9Ki5HKx>%4lt>o;c4
z7UU$5+)Ggj<icm%C0B$WZJ^7K3DQbq`7_yF6NV{e(Sp|u84`bXj(7Lyve2rPJJ1+Y
z$dmaMZt;Y@tB)gL8!n(`i(#tEh#Ys*Sxufd21UaLE2REO664(7p6u?2^z#9o_A;b=
zBP#GQ9rq;Hz&@}l<}_Y&8a1}P*NzWvfp#!HMzOl)Q>T9AYiU7_qR}WRjkL(ImBuWP
z|NCb!O`bEWd7?l;qE(ThC^r<e{~1bv)e`E27y|jE<pZkbx31@rd_d80av9`HFr_jU
zYwEJyz4xBcLR=`N)GP}#_J01wy&=b;d82daxQM~W0OPKMf^*y1RJpM_D~toG&mI#*
zT0vDP#$a3(9|p&9?ihFR2TVg0B7R=<EF8vsbVQXK_$kAw-ZDF9EffzMYEl<hGuURy
zW`$wK&2bmHRFB)2yO_f)BYd*aps7%hCGCSx8>J3KhK1E0#F3Gl^FpF8ndz_tgQP3N
zrI<v8MU2l<WrAgPxXx`|$TMuN#KWLahnR#dM9Ou7Dc47w?~-thifrO)B74JxxepTD
z(U;kq#$u4|P5QIQ);Sls28b!M!n{>vkAPP|HgT3a1yz8PVpsv6VxHtzQ@+XeEQ8;h
zg>L1+oU#NVYDUO()I27m55ykzsZgQvn2&@}AvM|gt(%$2n+m_jXKW_zrnSTb`Z2{>
z6ijA=bv5oUu?oDMDCl&NArVI<TezsmMprFD32}>}+Ur}E37Kk{khSl*--&_csW=HW
z9dLG<&{Ta;upEh<2LoYp6Qd<)TSR;VaO{88X7`CCDz>16T4|jU#f{*dvEF?ng2%oa
z<5?+QMO;}`v;^MCf+a}RT<Sg&k^#=57g#O?o=x*l#P&E(j+N`91{@;cF>aLzf*w$m
zNK!l#BU3?4MZFF_#_eCwxdR?3s-bX;02%c{rQwbI&Ht?p1!W0sDW62=n*YZjeLnc*
z?0?uVGoiBb`s^80t0@w&^D!OrNz5jZcrK!2u<RR(m?l&C^`N%FIcIh~1{@ecI|2Z~
z946D^gTlnl8tqqv8&tq3c<p&g@Imj+$52~!5aH^Uy+_DA2Go;-gp=*(b}$x#gnGvr
z@g7k+Zzco}_2j)oLWhVBgmUN{p!;%R_f4SLT2{{>wVVBdFjB?7)!`m!P|Y?T<9h2I
zd=ow%j*XGqQ{WfaPdTOcBlh78VATi@Aza>sq~MocHXBvs@@Nwg2G)}h)ic<AqCLQ%
zO<|(gr)ypKX;!SrZLa#!6NA$345}Dhm=c4bhR%HP!TnJi9;4<JWtGtaN^d7A-jzM(
z{M#N;BZ74&sfQT9fAd_MoA7t6ZK0K;uQ&yz#1H5gdxUWc)lZQmJ%W>bn}nvTD#lJZ
z6}rmx39@q7rQA_ca4@}^U|*RQ4CdF($5~2jT#J{aMf3&iRsMF?`08-`W)9GcD;2pO
zGJWGoLH{l`Y$;6N669;#qpy5wm-h?~)R7U@VD}}mF)3PVR(iB#th|1(|6u#U7$S&K
z)fxLD65KY3F>xG>%lNm@brQS}PYKS?Vi<Zy%`6xK_^#9D_Sc=ncw(4CC1satT5uOO
z!%d6|uMFo_X@ej_784+1X%J2Y7Ro0SPQ?x1ArQp{SfB_|0Sb`oooE2Wi|oSSoXE&N
z-q&%#Gd*mU9I_}X?MTeOz>&lt2!UG~kmL=(1;=Ku;1eCXp+;Caf(SkQ=g5VyVy|st
zaD2QyC$A0-jiW+2W{F1k<+c*KL{G3aW}vGo=Y!dj<7{3Q4$2`oQ?>(8q*=vYP#i(}
z3O`ShF_0sBH`C_O9fwl8?k9AgG<%V_hstOjU|<|u=)@jk=%kk=j>I@m73d<HjJz@&
z*}*+JXZ3@C5br|{N{Kh%Y<zLIrUkwK*YP>(KZlv4(g5RBoO<3X{@N2dKF6hJ7Ej(P
zv6^w*T-}%ZuQHAjmk!ZH^(L4EX*e!{LdZ9l`iCE5&ybi&T?BxX92b{_l5}c~e|tN7
zmRU@{MCck)nKgo)JHfx;D4uXuW&&3ko_IB7_S#+L9}?k-x&5Q1)Vv1tIj=YhdwK2N
z^dC*=_#Ai%nNo#n6zfR;f=D{T01-fxFl52(eC&Jv<C*-9)?7-6#Ia5FPss^!D$V}W
z<9?4b*rvI6^P^Rf;q<M5ry=#)+wIQtSDn;xB9-!+^x~uneykfJCEQg7p1Z1IulVu2
z)(hQNg;aEJ_5!Ea<OPz5369avlm5@2$5WWJ^#b=!tPLPPCy-x`Q>w)$UfyzU3Whhf
zW^DG&v_6gFI4+0N0d`6h8MBN6^JG<!bak)m-?rskltFJ?C!r9<R8TL$v_Vdaci}R3
z$Ya*i&w62&?4Sp>m<T;RXD(tKK1^*NDh@~hqe%f>fz;?x-`#sUeYD+6i+Cb0eWj9D
zfTL?(acwTNF&cXOPi;D%rm+KM)REq&mBA~MQsT&?^0H0{hNWA>;6YLK1xEIa6G4p|
z7j&&-JXKXRs%Y37pA@H#am&hs6;E6DU%DNMVW#wnQw#1l9}NESEUkYD^9*~d^i7PD
zzW4FCprWhIpHZW>!;}@Li?Oto1tWq@vzW;)n?4lNNXhL35E5Q{L2y(jTknYKQsg#P
zm6RHXchWnsXE2iX#{6a|EeEEd0i>u2x_9yk!TFzcRSSu%D9F>;z9Csk=%kNapJ~<#
zf{ZTe%|y~mBRK^uJf6$UeA`{$niq*ntS(nD0lFWUjl*W8Tkwmui5Q`zv&x#%#`lsD
zI=%Ony7uZAfe>Dd!a$5nssQig2i=4Z7*;4j*_7%CE`CrMg*w4I=W(|x*_Hu$<x%(p
z{zec)L*W;+2#(vuFN_$~luatY{)zxkFXXSB|A)P*&V)!WSV|JT{g=4v?e_ERD0%Wk
zVlffMzC<-mnDPlvNDn7nQe}nsAjJ>ZR`1(g%KSawAg8OWtV-<>G24LVm61#kSp+7D
zCVN03EnU<pBfYE`5iy<$@E0y|Pt@?f8d#&dk?3x*S;T#MbDnbB6L^H`BbQ!DSS^<x
zxQ1edkK0#OA`;l=0<T}^&iLBK#uU^NIHFYuA+51O>(A}U*m6SDXq8OhvFERHYrbN%
zuQ!+;jIpMU)>QJMhuwzvy42H_GZ)%SA$rx0q6_2$R|gw5`x+lc3l=rCP;(0UIbM8G
z@Zx*+pveoI*3p*-{yR3FMe@7y8p3x7YV~fO8Ekqud`2~IOrYT-$*+Ij7gVp<_d9e^
z-}9Ye>RqZD`K%xjdVlmKL5JObJ-Dp;_f+67H;*0E`tkj{x4znG(b>c&O`-T7&%DSb
z!FgYWE2cLF0x&(Km`X;OnUjJMulToew}W7cg)G|}G&tM4_SeYLC%VLjCznzEw**<K
zu&UI%Zbu~RKlWsB4|H1jqSJHxdkI@2#o-G>aJyAbih5bO1HDmOA}>5<Kc?dzQxET-
z?ft$Za$h(>79mf3E+@;oXh-Cca4drxD=4K6TGpU!Z}*nS!g=<3Mi15<^)iNKdlznr
z1W(#vW*oh^f!ZO%GQDkEBJVt5y~90k;p@S%YF56N_$0(pG{w90{9xrg#tr&JtP<nn
z)bQiLjzQ%WHa?bpmY2~mI}x%3KRdNckbh~{5-91QVzub2rj7%6fY4NUu4{i!=Ms37
z(%~5;&kT{XmmBeX=MoAB^aHeEeZ`S5$dQ5ph+)igMF-bqRF@KTgpoAULg%G01P@4Z
z&3D_jFd;^ka&q#)A<6x>l)K#xOehVmxDH=7KTjoE(3@K4uKb@pusC`akVrip@5V~E
z`6Y&B4*<i|)mB|H+orh-ye>8k(K*-|wF|_;PtS5U&9RT-#!%HTD25t`eqZB8zTdfo
zzlcPPmeiGpJ5gA<XapM5O*goWV{JwvvY~rr<?OT!DU9F)=4M0NC%Mg!+1yw!L3QRf
z)>3h)%VtY#l&po~@(6|t1>O^%U_VIoBA2?ef8+-wYEsE1s{H6g1?=5;nJX@_qhnD@
zrobi-&ph9C*kA{ND1p_Vai#Woi}T#8?=p*msVA~w=sZ<m^9Q-{zl9&S;M2$;bE@Wp
zK(yiR<6Zx6H}=Tzdbn<t^Uwp%fu^OAE<C^yhr1Qa0kQqwH>bHPSK3N(2N1_mu9b3Y
zB{SSp6|t38MY%TJCdWOl((T-3U#CH~YBqD&Dc*0@?u(`2nv^qcH=pe7EO&SO%xIXn
zLP5r2@+>iA^KZdKq)>K*2`JHf<SaM6yIn+<igL(8XfT?b=6yWYop)_Gu^b`-wFJTL
zfb-qx4?9O=KvJiSU33>nK)b8m{l9h51Hum`E3l!eY_fWZVc@57KAwx8*7LZJH-hRP
z#go<RH3?y1WFDR-#-;5Z(8(SCdzUC|q+fKZ{O_uxfgR>I|DcSn95G76q$%YHX5Q9M
zBM;4rtYqFn#fn4ol0NpUe~a`(vraETrqAbm(iDcUpu0ctwT>Fcvso&6vLurI6PvUE
zwT&tMws{@<aU1;#iV6yUf<IUR?$ZYOf5&&yTd>N=(DEt*mx!`Y^-gc+ujy_N1lwB>
zEM?{=zPhh}!DRbPddXz4L2-cuo3Qv!J^Y4zo?zuhMvs=^+6q^pz*jDe2s?f?GTR?8
z!4^XF4xRE?M?74iYd^p9F#Fu#8mw)0>40{x9{#ezj%t<yCoHL{sEw#6>E32o);i@P
zKX~s^`kbIDcwu82s0?jXDod&=Ym}Kx{2RxAcTm5xv!s7h7Z43fAV|syLs~|=nc%ni
z2hubuA>M6ju~SwQIjN5q+~rU1X_7ql3uN#rN$R7Ev97Q!z#i&|<;4qL@i(L)tFuGt
zy801ybASm9oN?H$yyw60PwElQgZv04p$^7T2sx&%)YDIEtPHzIr+tuHsqeEP*isZ|
zJPSq)aR~cD@l?*My1#<$mBCAF$Mar$wd<Kx{!7qq&-?U@uJ>-GUsN-J8kwR|I41tD
zVIo?BOo!`dxN4f9H~Vco{NT$M-G6A+4uB8ZA?XO^ui_O~MXz@dd(ayCE-I}uNp_nj
ztg|-1{JL@n?RDbQ`l|Q&vFFjvx>0mj11S0c$rj&hmV5CC9wAw-sj6E;r#k*EDOsb0
zVnnc?UUDl@5`=MUCRVPg-U?o*KlY|q+})GxHFZtrO~fP`u5EbQy>@lW<zohJ)F~iB
zRKy^5Oz})o07oxy&kyNZp8`27FXf<>7>Y<Z_?Yhf%1+d9j#?tv0|-}|_d>_+2N$1M
z&zt7w4+YJtJeli|aMW@BoO`-|cvR&7@eA5=BzSi}*!|z_BU!_!a$8a`jdyFk5og1h
zo*osH4epe64uq?=RDQ0UbOe+CogG}Wp<~OghKUIgNJ3+OU1m~1Y^?XLp6%_ui>bUO
zPkjwTJXu5R2`=GO_0fA}v->7&&^Qd^O?lXSwQmH9kg~>2IAfnyib+hI9Q)|y5ULCb
z=(4zanQ`>*PW4V{6WltnvmU{UF+sxgGUIU1CwePd2g4`uM0O%nA%s^e=8_plhDL(d
z_qd?fdErwr7mV@9q&!2h^?I}qjxOR^pRl7Gz0S&bM8BcFUht1#l^$6<yVY;h*MOC?
zTL-H(A3eH@u}hFE5H8XR_rKFR$Qy4DF{mP<tLS1OQ(6(T)@_6Slu7_FF+XS-GSMnp
zX?Lq2rNowzgJqEEw2EZ3M(^bVf{o?j$0(Hnm9z68=PkuMrd4ogfxVPnpt??ah009c
z-3JES%R5Ws7))bzY;`IOA5$dc+I)Ybd-n}w?j%JzPKs$&jj9681~I-7gQJX>@2~En
z&grr#PnjemHBd^E!=+t<>)-8M0I&@xn}leFsEInT{@&nUB^?Xs;zc1wWNFXaZ+bA|
zw2lQZAW=YJMp>aOo8Aw%1m~Q`144DFXbg`z{+ZzQX$+)#!waTWqsrp=$CKlEwGRiU
zq}wkuRrSI1?wcPh;+Jf0SaAt(RpgCk{)=V=%Udx@W3*y=pG4WU=iN~rj338>s2hmm
zcv?ArcyHKTE|oDPC?ra-!}AIr492(Vm^A{+2`Y%nh7@xIV+IoA^hl7B-YIJ^ju1l9
z%dp~mnZscz|Gq7_u++x0it}ku7(uAljSWxrX5JJ0RMaV}zs_EciT(pHfIM(haLqqE
zWt|0&D6Y(__4*CQ0CeM=;PF2?YH&<3fx0CcP4PauC)khC!F^ErRXbp0c9OSYUhr+3
zPFb12{WN(JreWNx_HwvMzSg^6r>p_|8jUl&irnET-hVTK<rmm^F3LR01HaE54ltb=
zTz$2TOIww1vZ{&)eZBnjpw*?FvW6%Mses6YT5otZXEfuo;D|XaT(vbTi2@*3k9}sa
z`je`Ir9C@kWywZgQe1=p<YmBGx=jsQCwIzHL<$iO<z*3&AU|AJ2Fm2v3$U(t%EH?)
zMra7_^9GN^+B9)|FlQ{E$JAO}qSuBM)XIXHH4GNBb5d~CdCZyYjVb5C%A{lG$DUm>
zDY%?xBQccIMhY0O^fKU8$CL*DJK5Gf2D5uOJ|;WC`=K<rCSv2GDg=mQvQxcI#ld5Y
z;T^$;hrpu<iy|*$Fbp&)$U3D{)}S<RSXucrvMy@9Olp^PpBwym5Z{#Vs>o&;p5&c>
zf3Wz7PFcfI6Q*I0VD6mZV8XaDL3u(anG$oVQNh(l-pkES^k#MomOj~07l&Vf^+mE#
zd$I=u|6JYH8Ya>S3O;M&a08*dtNm5(7^u&wBZ7^SfQAGQ7jjW4bR;s0RP9Lap5G8w
zIWnNKQWm?*A~*y6EEhA`iEjtXFXfwDCNNHb{6sut{jy*Ue~$?s7Fb}krfwpqm>(g<
zvkZVz1@&rv1aG}FFF0}rTS0{->0=rQUE~cuyRUchyr90fL3{@3i*~0uNIwVN9&{VP
z5@bXrgrT}%ntTx%xyY4otqpcpbj->!!+KRw2p&1Z6Oz0O&I<1D+$n1)ep!X<>2Nc0
zkc{8R3gQm!lr@k$;@jmFRgp1hC-TqcjDX->czRGjs8iNhl1idb+i4h)z06GH;pwx3
zH@xscQ867J8BFrpUKb4byJObblnbb>g2zBNGdcLdcLmF~Figll;TAges)8twFgft(
z&2@HixmIM*m}<YQG;i^^;Qc$ogDb`{9~n%zaap0()o(<amsk+AnFahH!YCdGkD8a!
zADVah6Ty&pa7S_$1?cd1c)97^>_MjmhabX8LO`MO`NVMNd;N2{pMRbj-0M1trH5c^
z{QQ<tLCHYCP~^6<Oy3+i0#q858e#;)1mqDiVxznI249b7YRUxcCBywQ`*{C&C-^(n
zZm(ZCJ#;HYu)I~Xf>qGHk+jzi(Gh9^q0NxMaLAD0VbBGaH?*%x`-)Jn-)@RD;OmD5
zJC5#@H3~saIuYu_fWa{Q!&-GugMxucgV9Qj5@&)P-^~d$+z-qyKt-*zgBwF#qdS5z
zNAYvSCg^}hvj(J5ktFEBVK*h1kihJ_gAspq%<7*+D^r~2wvv&V&@TKWuYO?<KvQl^
zOUyls9pK^6Z4MO&(P(5y8Im(31^n(m9B%RM+~C6rKw%=3S$dn^>^~eXv+a?_2b6I@
z3ALN%Ns4%g&KFJrAuh!!B5siEmE01%88!069mS?e^&<0v9$+v$BDYxSOeK?a>fpuA
zM$Jb;9SN|M*jFo*PxD%xWz!5MTL=GYWd)qU%LHKB-y0lrAk$-osGvZWJ}`!hIc-kx
za65yqAtm5%NEOq8jfMXT9yr_pEGsI(AY#mx&E-PI`v!k<=EI;=B7lPZkt345+f#zM
znMjQ^76G-WL`q-}NP!*kgd2jmj}46m7nJF)g+_hF8_8@H8fBK$R!xeEFJ{to^MN~q
z)*Co=I1CvSl+LKEDDZ|4VpVMWyWvng<l=&SsJ_Adm>ke|#ic<6CIj4)Gm2;?Zw$gL
zvpsvBab_SVy@V(fNONRBKI}GU7$A06Z~zcGAi*21q)9vXb4FkkzyJAQ5WHFETU3n3
zw1<XdQspi?$T}w^yOz6b#1;y1RxoZNgeT1#f*ILBaa0Bpz>m2>4p#{B<w{-%N!6fH
z(28Ye1U&(seoBc~;M@>QFW$%jJV~t#=y)ZxAES44Te;lU!U4fG+dGQA4a3|U($!25
z=;40{3-xJ03a^G8%HZr|uV-2Ctk+4V+H|ZS*neqT?rp!<O)A9LV8oUZ{>6j^$iB3^
zhueCz89YX-^GtbU1VWFgx)9X^s$BZVW`;2JS*9d>ma+$-M^IJtd{?v8{Pzm=G`c4b
zC|zBM6~;qATqNjse8iorD4kTLBjLLwt(Rax3Ku1L)t%g*x%P-aPPBG;*p>4BMK?D)
z$3jjrDKJhqK^*TK>57QEdRXTIq|y<50GIHvXz)UJL_c5?sYek=W3ciLxg+?hvg7Oh
zp$(OF)CRPGiri~m`XgOl$DW)yxh4-Y0h_ck1M6nE+9$ibj)y~rZR=4#s2qkEHb}bB
z{V==bTUe#Nffu`y$Gf~fNUi0`6~H(^uuS9dL{^9&tEza)nri5!>OFYHAGsrDq8KK5
zLs3@OlohSPwuD7ENp7hAv#g=5bSP<heQB7S<h}WO&~|mNru}UD$cF44wJW$M$(N0E
zWMw(QG<6f}3dq4E+9EBEWAz@nFnIhfv!RkvK5>eMlYoWA7X&xewixE%s%Hd`Pir}x
z;B~q<_}|p7t2y+sWe65!n4QB?HR<bJadl)h+<uq{O?6c<K18|*dOK2s7tiUonhlP|
z4^vboL=_~kAsi=&-HX3-mCy4g6@RA4@6D7LY5}A3`vx<A?Y0_adr%n(SL9t-gz-DH
zTX?72YKUqkd00xcM(zId=pf}p1|`Kad3hlrI(W%2iF%o<9Svuvql~1NL<ZMPj@C|&
zq76LsXSWH<orZIYC~8$(s=+?HySWctZ%9iREl-Gzip^sS2Kpvk?w-AdhQAOr1-wu}
z5CFu>=bd`BJLW2T09YalvVYKvM=6R{O1j*d1P`ht=ZrzjG#_8(T3=_srvZR<lSxQJ
zYrOt)S8|&TTV-WxMOoQpo~3vdm%9<S#$Jh%tpY}*A($my>Bih?!)QaAo<K2g#1(Gk
z%{CZrf)dU627vITSGeEjcK($!A5GCQq7zYJf^YqK#a$J#6?UA>Q)-cNyuuV!qQ$}Y
zGyil+4|b~OCWb{pCy16EFL82oVov)on0jZ|dhA|wD=eN;&S{Y-iYQ&1(tW>~{)2F#
zVbu4imIRAzA~RH~_tEI?x6kkVAUu_(%xs3@mfpH+y3ang%m49vfPUfV?vFgf?*Xrp
zf{Ka=(q`3UHcX)wIyskjZ#}BBEN?`p<YQ7GZvfL9;UkI$Nw5yopPm?;^l+C`C9Un8
zj6gn>n$GO({^PoL|GKk=b1HUL<JGJ1yd%8sy$`aVW>iv-pn_O1nAXDwbU$K~{c;pc
z$c9D5{%G5M`F0ylhs@B3FwuLgP4}*QhrCx0@4oXVRtL%mG_^dgBPr51)qCj==Pm1!
z0?PKI%41~>REa=>l!OT1yP1X_YY8}try$yt&_*(}xQMdCR2@i8O^pDCyZ?5xzP6u)
zPq5ymrbWQH_J24WW_nldH9Qso<P^57&!YZ5^QW8hu06&LPcK7gH2o~}<>UxPkH5CK
zaSC<9Jc#jKZzXHegjT_KuiCKZ{o)0?zUcCF3hl}YA=`Cw63b#*{_miuwCiQGkcTmp
z6)UR*Pc;J8hrxLxyEPlfC70l>Tpo1D>2@lTQ%2=Zov8}`d6)kjT=GR{jSk;QECI4c
z9twS5WqqCSdocJVdo;LwDtw)C$$i17^S1`opK``1C?;xDYdhpiMnH$Vdj#W-qKCOm
zX7acZ3m5?fl8+3I7|^vImoGlq%JPcnR63T6%JLZiG-XzB#gmCrrn0GA2ByQJ=@&mV
zn2_HI_klNZ%_MS<y_~lqR~JVV>z$$04`R=)mdoxo?)Nb1K14w>sI4d}n?}Vt(ET3f
z>Sq$HAI70rhClvi&hV|aZq*ZnA__H-A#s*44yblG$Srwx&v+rJA-MNQg0&hkqguJc
z7T80@vW~2=lD+Zf;hk`Z8@DKYPl;DmWDR08P~v2~wF2qAzgw$_Z){S;&{{b_=Hwc#
z{fEnZ+#d9cQhs5gy`hzye~?@LUwc3=0}BJzD%ja&t=wHNho2(ZuR;YO!t)q^h$~;x
z>1q6LBWo+`YIQkDaXO19Zw;a^BW94SRYMgZIb85GLHzIC>EAfg<PUP)NQOhU=o6np
z+DWym_%!ALK|C#~f|*G0NQh^}2p)4jvWJ-kb-0A>CB(NawXV(T*h_f?y<=y`$VwzY
zxw~ssI8O2hsvl&FZ&O{kO>6r$)*pTy8ChOO&o%oBY$u__b$h?_N?7XPXf=v3$p*}|
z_OD3ppOKYl`9st~AdjpaeE5*=w-@?%tm>wpr{nR&^@2|u+&c6K|NXxrE1?4Eusj3{
z3Rtm)tXY1$Ivb|y6;UK!&zt;KGnf}MBL=Th+Q)_!@ghh04bRv(svsH#!{)O%#&7dd
zWF=^v5iMFzml&q_=n4P*gYe5h<lv(iu(5CBp1joGueZMvB@waOe#rZb54*!Z>yVZk
zk=x*+#eSFXx@pD3iYeg2&g1(kLhh+qeyx_wMEKV*)e+wyr&P~{{!3T*Elz~Ot=@4j
z`6JhGBF&B}4ZGn#pZD+nq1#FjKfR=)#`7`<_<!Htat0NfICZiA89#*n<P@WcQMZSs
zdw-qjU%RU1&*QN##x3&OtZn&06?^yU{SUwIwvu!Iy0UOLv_Ey6@4ee{^R#00cGdf<
ze{4C0oTAs(`;*xWN?1;`w2JmB$%s9`>6?DhuIAS(8RE8k{8l9`h9PThF7>~d&J87^
zik21Umlq=Kcth*`36J?Y@BYP8khOH&thDV7es_+$#pyxTlV9-bf3_t8Xws^@)vx=L
z-nSdu17k`e|LI15=lRUQMWQSsxDz+8t>ldJm;TaXT%fw(T>t1zwz_Q9DZ_)ut>0ho
z2aotGvDakrvFchRW89Y@ZjOJ=2wU}l%GxOLB%b%{P5#`<$V!%&J_#X6&`#H8qQ|^b
zqW(D%X2zOZgnv-Zf8yo^h12T&bMJ4ybX5}jc9y^Mg68KZ0p*C<{?>4~Kb4oD%L%jm
zjtn4sEG;Kghk-}^d*5Sk_%I5p$Q1BS8|km8<Fp7Jz_gD{RYui3<#TyipZbIE=cnjN
z9DCJ7YC<-9z*TFt)sp|h80xcL^}Baw&k2ee%u{N-GUH)~FZwALwiuUW^xL!knb$H-
zZfH#@hG<zkyq6yGFTTichNb-UmMi@(Obzb#qZ=2!1(90d1=IZJ4+7G4gOtYbF0b(Y
zEo>LW$uB7;8G~?UezxOb|LKDxD{-l%qr*XBEKqs-aemEL%|;be-QD-&mousoUv&`T
z>VgVHdjj;lZvuaL&z5MV$oCKD`~EMWYciy%u13eKxHJUiTm4^_`zx{9rcYTP^^oNm
z{ONT6w^tcNCW%e~1OPgQLBT}-+rX`qcuqMRz$h$6G3+V-;*DHFGa8|^u3({m=E|0c
zn1D$rx!!*UB**cQK4nV5`eHyS$s*h@$@UNZkY)DuM&#F&Rlwo+xHtbAq8<$(hSW(C
zMonWiUybsQpVJ)d<lj7MmjAEXmaCDHmRj%6fPgf^0^R)FbNr7o{gp60nQx%ZDpf)D
z@N&Oq67%e39db3!{v*<6XR`}IPVf$K{w163w?nEhAYiM2xWGGjq2eF@pxu#`SO##k
z7l`P1H^1P&p3NnNm}Ib-n5I<St;_t6o@~A&;q-``{imTKdk};gDop&t1O6B9*l2nl
zb*x}-s1!{ew15u9^ZloTf555iv<2Mo<u8u&i-zs<L~yybtA8o1r^P$k*{sg~rtSu7
z!=i<XJQHSYe93OMDXS#T%j<B1|66r)T9A^K<W=72SF{*bD#ztF`R~=(uZ1#s;<t*1
z|Ktw;fGeO)1lm%@(DUB8%K!CXr=v}uQbp*WHL3gRQU6wU(&XBj+ybNhcT`r_Vp;P}
zJl3y(sROkcyK8q(SziDFLD=z1>ius&ZV9wfSl+Jp=WpUcGDVqVP{`#hAMcl4&z&`;
z4`hFEJ~1NE94)BY?>+g7KOR7A{4&tOXZH>^kx3MG9OJ-EZeJVv;1U0%H@JP`<7DbJ
z>xDk+jhX77R}bzAwV>N@elITDKW|=Bo*=R`Xo;V*&}hHd7#cO!7wivKAEVn%{*tL2
zjShA_LKQYVij?xw`icHc>yTJfBZVLZlUYwJ@ZbI)vI!i69K?x4XVl4%!mkgS=+D{>
z+aX9aT7<(fT85_-nZ_$j^q)P>Ux}T^j=p+#ZPo5N&wH$ke;#}o*CTt1=Ix$>-X}!A
z^fmtjFd7OAq;u~}Oa0rH0v=6CxXz^a^M0O4b<=TOME;BZjD3U~sX9gVem?R5#4jVN
za7vLs!0)hs`HPpdB%=Dj=tcgt)y*J4Ufu1Z{e0*UWPdEnhU#1P=neiULbbi*Tte?>
zJ^je~=4g<{@x%nlCNu)H=X=}c`<Z9?&FHPJxcd_d)oDsn2q<Cv;-~yM=kjyqidCzn
zjS>|pKJ}{Ku!3WejtD))yDLI=!#(~jo)P}NdxuZN_71rmP&Gx29{^I>A8G@S^GE!|
zVa0prgrdU3C-{}APPaIsio+8t^QLz5PyRd7Y)or_DtGr=^SP#?mq6scC4TXd08e=3
zRpnEt|Bxn;rR_8R(;paiHbDnP1n*kx|J33R5X$Zx<;UOC5^1Sx?R9*?F9T_t(j%o8
z{B@&$#)U1XPXQ3FuJ^Cp*li_0NuPq^<#{i(^AozX1O}sBi~O{h2uE~gew0wxq^9G0
z$%In3Kgjmooh=tgZkAWF$Uj(Ag?fFGFRE&45vJ!Y@}GQVpI>v*N7nl%atY083MB`<
z;(C7~0zVIyijYm&0p6!C@(&58ZgPf1C^T+T1gM~P3iX~6$>u=>dd0tceYcfZlr!)p
z!%nPN&(U}K4<Wxd|6~f0ABQjWui3zZ=2Dpev0|Bj?7fhQrt+p3+5EHo*&`tcX8Efs
zz*(nMXI?mQy8plvb{zw7vDYdFfdoQ4E?pM+(J%PM-ow=G#W1e<lBCAOXeHYJfD$C5
zLeKkcykArWPQ-YInmWgOYbyLZTRV}lbQD?7`+bVPc3sOmrXsfY?aO}u@Qw-olcrcu
zi>TraTHrqv4mUYiWjbH<l0R&nEw>-Zly&@;aA_92Fw=kUgO+C~EKGXY|BNHY)t)}3
z7D5hsCZ#IRyj>T61u}K>Ehd9L`@iZR`<Xo$KuKM@=gSxPb9E7W4@sR1-X7s^)eJBK
zLLCaxWu;4ctMmL7x7sj7wyL-`s%T`(-o9v*pK*7yX_Q&?_Xz)r2fMA5CxU>&-MCl#
zq$t1Z#^e0N6YR=DbwJpE-eN!Lqvpt_c(A>Ca(Z4duG0#%WjIX}9ijO)X?)uRM4KHk
zhL(kXD{Z!!u$c-G&3wV{3g$w&Mwv3cdAz@I>)!t-M2OwD8t)&yg+XH_a6BnCTkrNe
zZ4Y-cl`6&zQBxY3rBQn20Anfy?sU#d<o$v3{ddB{ZIlI6@g#OuO)f&E8E(k+m)zUz
zTqUWWm*Z!NVi|+LtLJ$U&;PF!g}v9vlD$DA{oUcMWMCf@pNF^dtzD!1TkdN%YhP^Z
z<H!34!;6qs(x>DXV9Js%>TS8npU}~1=5uu2-ZNwTJGs*)UlQA^%k{T0BbYse-bqlQ
zn-}=Y`!rjS0)dz0`sXy?jtZqO8|8mC&$RP&%>S6%2&LnkW=-&`-Zs`fykKgG@iN<>
zGoI@|{~9EM*o7KOZ2<K;){~C*d%bPw&^Ri7cl7c8S?`8Ok{>mQzidB$z7VjPR?HR}
zwc@=;XeoX<ei4V#l<atU75>tvnlpfqQDGyHYSJ9ORI8|w+(Ah&XdCg8*~Bof88D`h
z+x1$#|Li_=np)6a-b?-~Qi=AiP&!MDpf#bqvfWL%$6pU|Xd**sH}`b(JAd6=h7gox
z&Gx_CN9|Eq*V@JYS)%F)Tjh0<bUp8cS^kaxfJ^rQ9<ZdM_L(w0`U!sxrwZ8}hRBB$
zM|~Btf^YLPFSgO8=%uKGh>0kn+{?<@{*W8&$soK5lpIp=Cf)kd2mJOkn{N_`-<Q55
za}14~o50e7DhcKxcwc?CKk<R)Qy|hd5`Mg>dx%$)c`+y`EgIH$_!$3aVb|VcR;Buz
zv;FHXZ8j<`_4%{>OJ_G5RYl@fWBg~tu=mcO4Er;4{1taK8`Tl*#e1wjQf3orB}!V=
z6#tkToBdc8^XjwxZFe*uW#Z~{{o|XXvmju7j{hEz+Z-4rNOpe7KLW`W6%rrX6lfL~
zfbm~&8Z7lop4jIdkYoC*{-AGLKERvf{l38e^{ag!q<Xy<`YEehK9IZb$_4&|`^W_N
zcf9V4{5wN2qzT!k^nsVZz#k^dYBNkB-_N^hkw1_J<jf49z>?LdPVMEt`<|&L=~F;8
zV)v^2`>t$`tdMA|2N%5LzZPmzO+J?bS!iU5p$0RB8VRV2<NRUYH&ZXXkCymv$+{*H
zCe%2*H81%CFGtC2L;|{r06Fo;`RPMVh3cowV62#l>Y2IrHUCjG1^H0W9%w8H@NdiU
z<Bo*bHruIUJfB<SCqP-6ns%8YW;AN?bD~{aFY+JR=P2VzpJ{m2f9IQ)N2xMThcEI!
z-G_83r+58A|Mq?EF#%3Fv);cVoGORFUm%DAE2Iy;<lnT<m*vy{>LtHwA3#wW$c-=f
z-|i!6QW?#Ady)SwFqe{mZbXoV=?F<9{PM9OzlCZbfFi467z7EvdC6ZTsBSJ%N?UDM
z=C66AB?L5m1*%+&c7vGX4Sw0*ywCEH&AkPS{EquTOA@Zxi7)%<fO9j&QCHdF1^;st
zM|^$)4^t3LT;0~oKYli=A+NvDo-dsRGyk<qY&fH)q-F}_(A%$r-}4n45<gb{4t_lh
zuYX1Q-PdwE6oG3Za4yB5Qz8!p*?jR{(JTHz%Uj+#2^!uh_5QH0?Ex)g8l@NI5jN_o
zC~~#3mhV{PU$8IsBRBoum<b^{XtDol2pm`>O;UQ~Ilo_nG2(#*ggGMesk|f1|1kfa
zePlA+=iYM*{r&d^JhYw+xa>Yxp&Ar>A+iZZQ)FS!GKm{wF)9frjpCm3{G%{P0JQxI
zYOz3JHr4sg?BsvdfOQ0`W=vwZ<7WS=x8PNKbsJS8?tYhF5AoTnFR1ZGytnBb|GnvG
zrF(xY#{0?L{?iEeO-5zTj;TjY6-@0Ta+4oL!E8FLJm9if{*O2h_NpTSv$tpX{SHHs
zCcujpJ0|0$SdZ}UpY;Fut>vwYX<lCM|GJNjO4<3n>iw5j?DGbOh0P27nV+|Op!oN;
z_5S-D0rZIy0mxxEw&K0b=licb)$-R={PVtE<R2U2mbtt_F^HZmTt(GlKNm>En>CDD
zed0&zrHb?RS-%!J9Q^2yp-DOs;K^~`nC4%%4RUB^f8ol(uln&XKr3X2ttBi@O^GCC
zRNwE<ysxEpCadf7FZ$i^^XQhRm{{2DKK};xf=8ZUwfq92R+PN&{r;?f&WR9jJWz<g
zcsdx@x&QdA|3p`S$GSlm)|3D$_|^5sdvEv~hPSXVi3}}S;7^=tOBuAIF0_l$SQLZh
z0)Hnm7Q7T)%hVfhVZC4c5C#v*krYfRCVPNdEViAPw}c17q7~85iz3i?;w}G-#o>7n
zd{a<oJNoqv|A3cU9G;~A&HwZd-E8COQv~+j*wg&mK+R^SEI1sK=07AEQVx<Scu29S
zq1;d{<_mvlX~^bwm!Q_+dF<f7*}WxAQsPaIdcW(wY=vF#TIkQ)=YibfjXYg9DH;~u
z<7apJSKSG-RLmUBKj`Dg6T`O+fq!37GetuO(kK)+`h^IX;R?pq`+Yu$sM4lf?rIaP
zSTryZ5PZL@d;V}@(Nro+9k%i+>CspRO^_m6KGnTK#a>?QN9Pq@f`(Xi+D9Yqq$4bX
zO#!f>j~tf}EBLIfdpj)hn`>3cNg-w1JEpr!R9K8m0#-m-AH`5fCKgN`RONF2ZFQeU
zQvk%O_^Ggl%-6SWa(7Umhz0bw!a`y9s{7(yE(L?p85+Y6VzoGgJNvD1$EnaIF$@i=
zn=0oiEBLJ5rP9EJLOr>J78BcL-NxuL%qy374l<|#Ma}d<H4WHX36fB6>A4@d#5==q
zJcXsOUe!{=By*1YLYucz6M1-BDE1h3NBF3>Td1Ou#BLEOWuY3XD=*#u)EnHF>er$$
zB5Ht8TC9R{_{vh}47~TgasT;*7h%aYX!{eZi*S0-VvZLnuyflx;eLoBENdVHP{I6t
zpxIo|YB%#^x~1SgBSfF(Gjh&Rk%GG`PH+cOcb3p&MZ-f|SS5Zw4)vvnTmvoBI0~8^
zsFyT3oqXv2qk^=s#T}i)8@L-4WEy(0`+<U_REQcBR-jW6FPt}*xMZ3VFg%)wM3N=}
zN~ZYnBKOHwW>)ZiSv3{BD6_;;PW{{6P0e=pK9r(-Rp=U9*12=Ss#`fxwM)aaA(nl4
zoEvf<KO`}b)b6sd=6@BpNJ%L|B<aPo!Oc(L2PqzK2i=crD5ND0;TBfT>eKc?HN_Nx
z<#eJDwO{-w^v2A0<EY@xNsLxF8ik`20LH~BWr*!3STFg5o^V~MKE~P!%cr`FHMyb`
z6o-)an;Uh3ElcsBLIcHn+KDEEyBN9Gxf^xXgn1N@ZctN9)Qdi)%BFJ8Jobm%Jcm0}
z$wbP+DD;?%mxunK&)vPcUF#Z6S`2YOeMM{9{pH{Bt&L|!d4nEVG{IuQ3S+Xukt_c2
zk6FcXWsfA`i&wE9(Cw;^7wr+e^0%D=<>^$rmgBKYt1ogr$g$#;ekBcb1EQ7>1mK5+
z;C}6!1fvE@wJ{A<sED^bqMdV;=HGi4DuqWlOex=?jurl|UG5Poxlt^X>NGVaR=hBD
z-=@uT7yQEFN%JEl$IAMGpw>f7B?l>bg(p>svTr`-cBtkaDIE$4j*FETj+M40+*tk<
zYPE8N{aXib&16n6q}Ynom#fn)6@)m%zdv?e+b|6>k_8;1(Z)*a)1io!M%THQ=@6-U
zY1&~eD*=J5v0Uj0cjqj2-?)N3y<d9}FQXcMpeHj7zQCpSvqPdn44Db4%f>n3%po(;
zrK^%2(I?siRnTa(f(oW~VcZ+>u!_71&oryOs}4)@0ltNFX`%2n>wjRZtEVg~>kE$o
zKZKe|>lmsDUL)`do3F^|huvIChAo5Y#hh)vRme`2Z`WJX&2^w^Ad_U%5`cGAPz#QZ
z&&gU?AKKe}M%`Q^F`@@tzrKCwNx?T?aIR2hRm{|ZhxK}A{pxmy$drlsVk(Jal+6~v
z<P37XB5XL;0G&F+<l*zspsBibaN-|)Md2d4QRu8yi8KqKKgT^t-yGmVe2Bg?L>N#k
z8N6Qplp9XuGiZ=r+5lofA7kB7<0=qc5i_uq{_0=!4O3fFbQ-YOVkyyM`GdW-xinQ%
z#5M*LD?=(g@l|bI4TUcSHZ&0{n@XmM;;$frpSrIo{te84vV#fvENLKWO2~ZIN_WHw
zd<SIa{0P}4e$!~-=NG#>N7>#u{gGUY3goLQA5J|W^x*lf6NO>fx=NH+RKk5c@8l=k
z{E-k!CZq2w5TTad6kUOtU|oe6Kh)m!qsc92qR2L?J_8iViemZuLH9l7fg4W}^jA?z
z5dd2Ea%AaqT+&cOh>@hTKx)+!&3k*3D>{L<5a$4OE|Y?R0BL1P;DqFG%z}z)RV}8<
zD0lhfWcS>uO(3s10_Jh?SVKvAl(p>KM0dn(d@xprljZ_kAdwh4&B7zyS>M@WbhE0y
zPTLe##HY{t(N*tf2c2uxj8R;ZWyW6ey6gH+UQy#Zs>xYZEOnsCqhbyyk2Zh%!NKeq
z;i3(eCewTZy32o6_Wv~2llEeEweiE;Y&tz~&gs>pF7{ESDR1^zS9YsSVDKh_9f#mC
zF=P#*VO^`;`=PXg)McuWieo-n;|kAU$rOd66GT|(E1B3=Lh&DRKW?!z2*JCt^d@jc
zA^$2m5fb(xU&Q_?E)5X{xKp`)jC@v}cIW5rn`0PFA$*>k)ezlak-Tu-VZjESE*mH#
z=9FMtDird?xov~4w;KRu7jWQKBwB&FiRZc6iMF@Fs=lv6_{|yx@@0yP+ZT)uVPV#7
zSu@i!K6SeeF$~TCC4}<`b}IHkvDJfvBm@yS75$g!D@RSfN~--BGgQkzxan(d9bKIG
z1q)RlFF_g13=Ej@xf}ZyYcl*+XH_eoN<wl4L7si&iM;U8;8F1=a%pPpRg)>xtbS@I
zI@f$@J0i@PR#iqFA$qIMa39i$Kq!oV2zid)&)E2XaYs`76`74H#57~lCZvh5hn1UL
z{0+Q7(5i5NqROHs1i^AfX;y9R&2?@FT^J?7L92OJIc?FY5ah%@GTQX);vT!V$u%p7
z7&fLNbS35LWZ&0h%42u=Z@`1~A$9FoFH)h30K{?K@5-LxNva7#5`-o35rs^P2c4FL
zork}1J0t^P5g{`hLkF>SM$1my?!KI1IGo9i*OKF?6^dUgK5l-eV8-`MtsKD;D<BA$
zA}|S<7&6CQq!O7hcq-PaqB$!yA#&R(!8O8v5}WBms;-&<12yJI7|KWprqc}0j+d|~
zyE0^8>>?CCRG=fR8^3gm_h(*o6Eg2a4poDy^K^HL>awC$paZDPG`DP0TE$Fvwt7_(
z*++#Bt{C(-k*lCerR1n!#~E+G$t@Ps4pjmWT0|cLKtzE7{()_Si|({_(Lp4HQkJ8`
zr9V04|8#rls%2b-^hta@F4T5zNmv#&y;4_c=EkkV+#irh2t!r_Y(dFjq7F>6V3Z>j
zSWi?<f|_?G)e&?}*u9Arubt|uL}6nIOL0wlA;hZOBT!3!D1XHLcP>9PUNSIB1bf)z
z@b%B!-=A17!x%G+BG;3?DGJU_Cfw|@lI&74Dk=Sq_$I{O*&}!wdI?}>mt+1y4M>&$
z_J~hh)$JUY_(UXIB_FB#An8+uA9h}7q%SjCL}L|k7M1c{cAVRIrrl3=c^#J^!buWE
zU9EC_crUKno!pgUY-H6X4eZL~2CJ(YGPN^ba5K+k5{^%Fkf3wjz_2UaBNWRv7FkN4
zD2?kNp1RA8p;IC!CjE!-Z9o&BG{BPZrhAtFZlKH*70O`}_zfRp!|(p$=Jzmk4Nr-X
zM9N@=R7Kvr&%bgD-r!@@mNt5(a-2faGY$;4t+qwPPIqHzC^wMi6_e1QO3;JqGM9fo
zKjeC9sHF9ORe3cb7Q|4;STt|1!^iIYA6agKEIe>*X-U)^25Z|r<K{|kAYcX!L?Das
ztKt}PY8?NByP4K1Jfz4dI8+qEeb}&q%GB(3!Bg%b)uWAxi;x}o6)7i%chL&9f6?X&
zdb^q7&rq<cqo56<DA93!yj`7K$ALBhrMxFaC8Ht$^2)S!ZcPafK<V;Ls8qBuVDn_l
zOgi6|G>RHLT)t`rbLcm^j?!2RWOIQI37l|dT}b8%H#(ioBaEr884p2uQ^#F9w`GG}
z1((aQ=qdzCfA4bDh-U0tJV(v9XaxrwP9<N5aL{+$+C%vk7JuFCR1_L3vXksZwqgTf
z$rSnIE9CO2yc&r?$j`D@_O(tUn_IiMYCftyA!V_8sR*^yUP0!nc5fn!vW*Z148LHv
z$rgq|LAO?|SXT3=a+gWP%753r)0?M|5z;y(GS{G!Tm9KSsj{|h{Ky@9w*lBd78lC=
zr~~ZCyVA`;5^PGlNa0XHXeky(6YluU?Ru1#6~idDElyg7<}am%R);9X$GB(u**#{G
zhC-~rZl3Y!JzT#5Y^l+>QHrfXMMG<p*gy$KgmB<9)?-`J0vc_|=J_{f)(G2MynkrW
zOGTftMnof7COwGkCt2KN-U8>w^H95oItbko6Qrzn=<JH0H?laIUMlKIA-S?R*Zp%c
zKW|(WEf6;l>O<HkuT<B%+Yz#%q*l<FSESlPU&+@Gi9{ruY<zZZr}ysFZowEcxAdoe
z9lTFDL0m}L7B}$$c23X2ZDO)1m|<{Z92)rd+gYbm>l88>HcrStEI8#s+gy0_64e`E
z@&)SXH?>@KO=;-IGVZ$HwS^1{l}&04$(-0xeo+CM0tg|?S*$HQWOu}*NqfZ!wjTWC
z-lYEo7ZPhknBRl$Y?6E>w{1VdEk`2kM^-QGc*ql%l)!yr5fa^7*2n!pwu^l|Y<i+E
zTXQ{xg;eV%(D!}UMe1^6j#^_E#m26UY?u#ycu3F{nS=`)fiq2nr?GawByg&BobIBb
z_=Idp1sE}7(dz$R;JQLdSiUGPHNQ~(s2k0bw1eGMR77XXXn1NP1GR)=?DvJ+aWgMi
zMq@QGiwIooWbTh{p{lLRP+XNS*+14JE3ZM;DibHLeD3NU6n<@h(w}m**m@}J4aU4%
z=emt&QdUpBN*G2TGrG+E-px?bkEkIj)R14x^0@X;_fgmkV6+lkP1_DZEql644r}96
zBn@0bAq7VMp5op+)AlG)#MBI8iLEEXm+jq=q51(5V5pGw6EOpUa1u$=NL|&0aw(_5
z>-~|tFEMsi$Q!a}aLQG2=&u4s3Wvpe?QeJM;hAhBoXYr{_Ba1s_s3U;HG@R?B`NYM
zRfQ4c(Z9j#*@5dFqZvxsHGznw3IJ0z^|sA!%97aU;qL1E4P<igx7_0%4m(@%O%@-n
z%FLl*Z^*fmT?6O`Zt?@`y9hDmWMrtTJ;!Ys&4Lr)-`K>YC<2!(r{{dP>Yu#S$o*py
zjV+4=OrsMrIdpi`Jur-AsU3*O4CgDkgYz2xw3~-9LsMe_K!Zlc#Y8k!G~C)MD5BL{
zHs8hdf;NzSuELz5AQygxMN;pVwY1&sE}z2Tp}ZqYOhRFhK4RUHdQ`Zi?FJx&DpBmi
z#;M`4#zQURy{o&s{Q#`JwqSh)cB&g7Q<pqd^IQCThfBVcZK%vYaxHkr4!-!-Ikg0k
zlf#S^p-oYGOLUWbDax?*UP%t#3V%gqSoO|`$<<PqdL#uaKDKKIx^h)eKp)P-!Y8^3
z*4{YK&6f<hM>O1|Y#wPT*S+i3{!9mKvN|cBA2Yq+!vYj$ee7;R#OH2uA$bji*h;#8
z@&h;Vy6`ASXyTADnkr{-=85j8o5Ietl=#@wJz6a8jc?sUcXP>TbJ5Myl}pU;&pz3u
zy<_u?K*~4VA}0YDUNG2=Ei*VWSSf|OlS0o$SGZ+yHa@blq001vu=xEOGu-p}cJ}F&
z)+rB+452f;A&#EFn5+JBE3k_|Pck`Wez2!>KiVh<QTT~F2ExJ-VXv&=fYF02@#?s@
zT*;9vR6M6zt;gb^dlY>}!o`yb+Pez(^uKI-((m&qXbrZ7O||Eo>9TZbY2HvSP3dD6
z?ps;pHX!y$8z_eLi0gu#fa$uf?w#S`J#mr9=*86yS_a3`d6E0xV=7EIVTWP5WZ|2V
z7;kmN)2?)f+-xwQRUmwth9TTZ8sWZ@LK6C2LiNJRV*r%8p0~HVCnoSw^eS14_+rSo
zSF{P%T*VhrJh0YKR|1`jE(h?U?MbeNWJbL~X_L@^(1em;ZD!h2ykH=j6MG+BTvHd?
zOF&#&SkWaBMslfp2#JvWu+KWkOoH_vzJ8kPo6FSFiIHP4)1-*{RJ`Dxg8g!06qu1@
z9WzHt+%G=e%^Sjpkj#ZSA}*<BT-(w<_!;rpZcd0b37Z~0rpzs0SnXzrS^@V~^e41l
zcI@g-SDPFG0Zr`yvSP$IH8PKvvtZ3ns8I+zRcPv>#<Z{CG?rZF2B?1*g>VZ>3M*^E
zF4l-k(!anMn#||E4~mJgmRE&BlGrafPf*>y5}KcD8~m3R-25b6eU)W1g=+7yJc~Ll
zZWoMs$bK@SG-fW548qx5dt@+~v)QxFSi4eIHgudDiOYdg8?5u%+o0$_5%(CfH4n@U
zB^#pWojKO6dyILIAt;s^CKXUFn|?~!uFZ7LN)3Hb`C>){?h^4nnMN+~@B@M=Mf`%h
zMu0~EQS%qhY;(DLM`Ay82d9CVhcLhZ&3~?O>47o*F}h}ohp2`g-CO~j+t<3MZe=p;
z_QmGYi@8?>LbZ+M>gk4!(|qVUcN5$S(wVI`oHRUSMVLVoy$Ojy<THCh<4KHpoT@n{
z;6;hSoRxN56c|9Qf=fwLP^tMENR3(}e_i2r%JLRk>Y)~5B-|7`UHF%qkKKurqn@d#
zdyi;do}?C)okcw9<PHXb;UTiV)*-m!1>=HKC%AFP+KiMMDs8~^2w^9PoTJFv<}Q1|
zX3VTXQ;nl*NV&<oyq25m7J!<2*dtX&6u_jTEq>h{i%KkmNtM;CMg`)H<5~ruWAWPq
z4EPw)kg9cdc?cS0lbR>A{d6}otI5w|t$@*IMB_IWyE$rH)aVJQEPx7=pU-D!UhU38
z8;M~E#14C<ii_hypcz<$qnwi<XmnT~EFN8zPB>?}c;qO~OpXs(r*Plm&l=-;p2M%f
zTkJ#vdA7F^en%}qB8qmnCGrRmH%xaK@dvXU$ZEt4q1-m}2e<BNJGyju2vnDeS^oAh
zZtGZHO~aQ&BC=#K@#qJ;x*>n^y+#onJD3WD2)W@=m$;6~B?n1S?ixf?xtp=KS!Wu!
zBRmJ3fQm#0g`JN*GQt7YFMf2rfHSUvCadQCO3<Y~@S|IG*xoJEU`kxWa38r$scMPV
zdhCYb?yjj#)}%J!@NdAF;vAsfmJ8ewPw|}YNl{E0XjZTgHOjv1Z1)viZIGIY_^0ko
zO@#^LFcVp7xQnD$-QTl-IIMzU4=$6{&G1LZ0e0N~E7yAwQ{yP0!!e|eeq&ZQcEYpn
zbIDrNjinJI_BSK#VQ1N7b7f9@%KdY*y&6+yDBuC!n>-5xQ8s;2nvNm&Y4_n^rjh}&
zauR|y2u{e|^;_MgKk&YIF=PaxO}I%o*S$T0Bk<hvX=)rJ{3RQ^?Dw3zzM;wI%4=jp
z0w8E>Ta991?Ft`R?$+hlk4Dm+MXn$`-YjABEVq>LJ(5|J5;(lwBPv2G@s<!Je)j6`
zE~SLm8?9`R{|fmC$(BSTm8au$=hjL|FvA9hS}3@>P)qhU9jkAp`&OC>SA_~zL1zYf
z%c@h4S*{Ip!ygW>a%<IlN&*EmR5KtYgS*|z-3|15;>vR56~<;IQknI(y9OGE=!>3O
zfuElRnfYt&e_UIsRG}ZMl=4fMPR!JC+3jvOaSk8=1~B!=Ko+1PCFJXfu5P2p6TpTq
zX#1h^ciJcJ0C^M|F}{K8mJEq@Vhjm$f>7w}-`#lJ0DFFhl0nZ{U4_g~x)Etrpr`qp
zOMiDS%&}i%BWe^AK=V@Z7RX;;#eoewB-k>;el)lMd;~k>`jaC5>P}ZA6F(A9G(y=f
z>>6@&g>w)8-JN(Jx1kDpxI3ZGs4tw>xKms;t|XwE@vw6hDbq5h<;`>Xcr8(pWo<8@
z_9yLean4iQINqD=yN=J<<x0B&A{(&<PhAocbi6mD%(;$C3~d7^*s1^k63^|?ahorv
z#k+c0Qu=tq;Ro<&A*A#>U=dNlvhY@Z=C)sB7n3EFVItvcUs1#TxB7pqvkm1$DOD#6
zoDQKf*}czxxXN^@XoX)@$2i&kk)mGM;`hS($m0w)qxpCsQoP>||54e<)G369NbCq~
z!U$?|%+_LCXF7aAyC_A|kwqwc{>^u;b!fl~k$Z3Zu*sCAArJ}pBWnYCTIqJl%!uzF
zJiw_So+dLZ_0iY4alP#kwH*rKgkD&zCV0&~r85deQ8IWWc!cNsa*1=t@Jb^B=EEu`
zTI~&5ApyCkKk6c%G~N*X2IO)R0lqie?d-yof)e>qjC6C|n{IQ7b^PAUPHGM;*8sRf
z{ydlU_5uu##yR>$D==%S*caw@zH?y2P5qbA3+yaX0J#O)Ijwi^|Jz1ELK88`Yvug!
z_}Yy^wuX`|o2WPerjh*7*V}n~aMm_11{-uVg5eIS8f}ktUAD?y%|5s>%4idYq7$IB
zG*|ZY@ve6#c7nb|M`i4`BFIvbY4Jd%F@tr&WFZ*z?Ico#SN@2&@+)C8p^X#^t#aZe
z9bCWO_{yHsj8Q!R$gJvE7Wq;6*KX*Oc0>@OP;NF2?72B^21mflik~sJk-!8fk-<bk
z)i11clVH3e;Ii`2U7T&p$o-rP4yE-d50Kqzrbn!ODbIv}*}a0h<-bWphi?GyWN!GW
zy$d9BDm<uw-hv{w3RPLt!969rnrd?sXo1-gn^ry(^`S&YBog=sFj1owaIarXI34yG
z0yd!8>Eqp%Q|(B(g??%rM=?|p5ukvHmOSDnq;jjonm0OF=~Ks2?<jE-A(L8GIc!3p
zjhPXVlO?|tal28rAp{|QAiV-sG-=^PzdX&|ceVjBAt1D_HHOcb>Df1{-L#OE8v&7t
z87>q`%V9|D&sDB%y1h+ShETTgbsc%imu|n1LS=@Y))*Gfu5>$Os0D9Wr6eQ$dhnO-
z1%ygy=dy}ecR-0x&<HDQ6>4a^{&f9rGf<@IX92K-d0iNAu)BX#3_>f2#>8z5${<l3
z?jjhMfLzMZA#xz3T8;W^dO5GB0bzI`F;^Shql&V}^53b42_Zf^+(p@Tr|D(%3q<Ia
zQf82ejRPgio6|j*z1FZSOTC|YR|c#&bt93{nd~X<=D;29{L@*6v=L1YC?#XX^X7l-
zM#Y88vxy5EApccjV(=T94x2O19M9`|yX_&O!5)o3$$fzsz#<zSa=#D=(U0<DvSMK(
ztx?>ISy3=0(-_SV6ln(Dk(4G2^ZgII{~#{`tFWAjMW!Bc=&&SQn?TvGE=YwGb8cc)
zljM0*PX%%(d%7PnN`<_tdXgFqY8j$-T_1IM%!zoHUR4nlxlh&Aq%U^w&E~R6^rCWN
zSw8jk$ZBKr*~{G<Jy=7d9St^WTL*H{B1QEiG+y_pyCl(8Iw*>5mgALii3evM9~>fX
zk>m|5z-lBXukPd9AUF#-4GJ%=ND0nL6bPBKv82A~PDOzbeWUojxTMLwf4}b*!<HGw
zGJu7mDFpZb(*1}4g)j&W4W(dXKd9`Xf`x2|A7G;!gs{g9BPqoYdaMgW$_gHF+|yUM
z03RM}%`Cvgb$*Q@w7kev?du!_0$s`w##p6bNNzD`)8UKUHP{;Y{!loqY(R*k@?{_Q
zvrGKW$N<}ffLI`*Y(`Tm-MPPYQaSKURdW(;;u4kxE*qbU?1VZLYM?9dP^|UDYPa@R
zmIiG%T<n`B%guq8xV8}^CRx$C(9mVVas83*t%dxWSWx|1_&K#0UM%YclPx(eIH=wx
zOE1M=TtSmQS;AQF;TO1SCS)TR6zEAP;>-*a&u2d>x3+1k`wzk#Cxi_?1jt7FF$9zt
z{z&&==^yq3>%<TfE6|@2;-ImThqHSIe~Vb7S<{|bk&m#oKHf#$gDZF0oAR+JcFL@+
z7~EvtLZIW-i9LePq)Nreb7W`@zHvlf9yNBv6<0*U&J!s{t!B3)4tI}<U2}AbGiWr}
z(_8lg4DH~KH9XU8n!v;^$NcH{lyg*%=sb;(t0%Ie9sIlhz6_TXc7O(86y}0t<0GQ|
zVz&TI)Bt*|?89nRi(LX?!eDD->)>b!6IuoPQ><W2JUO$>4L#ZxLYIoEc&cpQd8nom
z5{RP*pF4MOf9c#qL?^^YVFaPf|3ih_sMoPy!M#P)Otitb#Ckt!6R7((Am6WOt=UxV
zN)f@;o{;z@k`mr?eV~lt!en$MrW9OwbgX+4;=c#&6$~ZCAxSR$-H*DfQ^I#}?8Bl`
zbU1epa%Uu%W;&P_F%Yr7=I?vxXm<}hAFhU`HZfWP*TV>o6lzhJ2efx9FtLjCheX@l
zT%zz;Z_360$kM?c^UsJoOzH*VD2>8uWFjTZ0^@2=_XP1^jN@Td)IiMlbJ!tn+6Q)r
zG1gH@>8wzX<cy)9yv|iWnCNclV6W301rN<cUYE#y(P1tgR?M`S^g1?0%1~!+FLx)t
zd^CL`MM5#0@LsEMnkJ$8#eDbH3VY93aVb_^*@u80U}WVE|9B~<COE=k1mt24tmD@I
zxS|ofho#=^`}p`IlZR$z?uq05zQJw6<fgZK5KV*ag|<v`YKLyXhv&MB<kXhLLC~`)
z#GFsZO)ljZyQ&PlRaCe$=#mZrXQG&+LIS<vrS2Wrme3waMzJ#r-xc*QT<t#joYzg*
zM3%$h0LbItg|t_8ahvBE4I5cof?cns5+^Kv8T6iH?}LFZcQ7wv_0aJd*m3ak&tmR@
z)=jwEoq9b#K*v<X8ewl(F=P!RkczW9#0!Q%AR&d}{e>1*t{m_?@=BNSH?KCbB!Ehs
z2rq)*`E7U3t(-$>Xa$7Ku7|-CGU1I{;l5jprBx0QEOc1F)8MpTT3nF6o_C0cQ;rDR
zuL`NpL~zOK-{Pv$<fS*br$irNo+agkJ5CJiUz4-Q!*~AU+Q%*kWI@EHYY9;t&$%k@
z1$7Bk6*f0rR!NMTs(|z7I=2iVo8^o&J7QT((;<kfuh+9jutah`Y9S4#&9NYI9CN9q
zh#q$P%AE;&;dY3XEu+dF9EnPPz*FQ9_c*K!#BXZjDqM?w$e6Y@(wq0LyB1*O^CH#~
znj{93b$C}09LT46AfUlrH639pPCz5UgPhy6NYI%NGkthF7C9t&3Y#5<$z=K2kN%%K
z>UD0=I?>b14!IL+9`X)0tUPzamAr1oTeX{!DcmeX{wHqE_jW;q42dQ;%5pLXh*O}D
z+}11DrR$djV}@*DE!I_naB^MMt2_aYG0nzYKY%z+;_mJTf|zAoRh&S~#xKtLzV8<6
zemI1XbMp~0(CI*W*Vb@{#f1t^gIe<I{oZmvzi-2kak&H;mm>Awx7_5#%!0)c3?jT4
zt|@z?H0fhn2V*4bkdnkMxO{SQf$+JHx%)=~OO&{#4N+k^c-6<WncXYhW9uxcDno))
zD6H!0!5>9daq%zT?aH93z+rg)6N^-#wY-9O9C$rirwCz+={uL*<&KuwLV}B8AWX*k
zM;CX?{oD;{C*^fD2)gt-1SdcL-5rn3kR^rFLS>|P(jth5f4$=thl=e;v!&F@Fby`&
z?B>22ZTFl`a*GD}@iARpdkm$5OkF%)FA0=1S|pdChdWuJgIF`lYh}r@orQJ;9M!!1
z;0Ny2fAVqyRU7F1%jKHlIoZAXksWbXd98$R4CHjfQed`<NZ)gK@W$^<tNJ2{$i*e$
zNpNJ4Pmb*A&F-2uoI{L-MrpSUKa({H*K~<{`ZAtzdzB3nV_6yI#Sf!8XZ$1hjE3u?
zRnXAT4IJtsv|m61potQS{2{@KL;<mCJg`#xan)H>&5!flxl36Yf$PZ3n9|UZ_<egX
zSbqz{5@_>L1kEs1ArYQa!iYNC&61u42J?+VH7&<wrLsHTv$wc;Z`y<dqsRgwfx@zd
zpz!P#H%*2y^R%cB9bkYjhcN7w?!QPbOh?Esm9k(xQa`YbLM`rJ>pI~vl}=Y(8QOGX
zi){C|Yjv|-ZU&jOFk^xai2gjoZ7SpU(#55YKpH4!%F>Z_xZ!B$U<85y)1jnShXBlc
z;xrHL7rcBGZ(=;EY$zeuhxk7%{D9G>1~+S~VSYb$O5tlV^$=#Uw4V{&4JQXdbE@e<
zGPPXZ5s?BC#oy^0Jgs1i6nR07d)wJ{DtAG+KJsKjQ>+OK`5(FeAuB-zZ~-<@E1dlZ
zc8H;*mx!hrETK#Eq-h^|#+ShffMdMvX1%9SsX~9iAAk)pU7kS#Z#hc;54T|g8&q^7
z*uDXeG4ZW5r~@1bci<*QUhXc5Z**suHAdnPO%v}8e8o9D-JyU0feB+dh~j}V!A^u&
z$3E^hWUy3BIUrU@;zGsl!+CD`5T59UDG$wpsJBhsg@3vB;^2LCx90Rhs-%V(z;ewI
zK^sYxvS^x}UP_{UW&S)DH^8nbBm~GCQ%N5%<>HMG-A|j$>8QPnXIMJc69)!2O8^#2
z*c%9x$6X@hSlz-!Z@AYn3YaW`?4y=OvK?aZV=ZT%>HhuSCSOFuBgsYf-@=*(#6>_)
ziJRVu-?|@r|Ns8Zdu)yC(aUx`T86U_of}DoOhBjaAIz03NqMDmV``y;Yeg${Cl`eX
zH=W1!iW;cnWYi`PCPhtL3kJog!Zg?AxqD9M_cZkd_z)_=Hko4;s(a|iZa}%+B(@W3
zH*&6GAGCP=SASMdkDzdvvc`~tCmUQ8ea&Qe1Q}2TEc$tqtAB!RG%hEM&L!8Tw$ubz
zeBGeU%SG-miT@&dlyD4vHQJPFjE6a8H?DUJlk6w9FRT_wIM@M8V5nHANgdqgmJu`{
zm{qs!kiIn#O(~@u*@peJp6^c6ULjU;@SCm)IcEXx1oxNd6j8?V@ynYj{o%4!!7Gm#
zY*BSzMi6u{HbrMC?`(dJ7#}U3ZYF9SSI<BFR!}E!9AansYDL4;4G=F#0HV-wy@Paw
zSdMKto-j;1#xo@Hn30o2C+7I>HCMfcIl_of3n@o7Hf5&pEthkN-Nt}QHHIf$nr(mk
znOiNZ5wwzE-pZOPBz1_nMU{Tj$L%CkL~4a>VuUx!+M|FTI3?bSL)`L>w%+s_1aXdP
zkK~3Es^IwGhV3j@;xv#UQCt?ulYem%nxG~zq$;kcC@-l+<qG4?w@r7Gb9pW|kmO{7
z(2*?exy+rWpp`~pcTWNr36`jFARzW^d=wUOJ^VJe4#iAr3s%V}=_8i9gx#L+pTE`r
za2XFx>XH`<$}1C1haX(=0d~5O>->h;;Z_x*K_jJ7!|&1`+^3;1i54l{7TW*{6vi6z
z`|fe`uq9wl8VM&LQ^8uS5oiZk2b<lmkJ=$-MXQMc;y%Nb)bH@Ou@bIZ4GiPH#f~N$
z1BPCf`PNCn23<B?7c77+CVxvU@c#FfE0x!uYeCW^20onc@U4EmB7PKrs|Y{^S7P7>
zD6XIHvazBAow9_4q7;52sJYQrfK@ilv}1xR&}5i)1Rh$tXfnzzSN-BAzGcIWh=Y$z
zdywtr%H964KiR_pRY(CeOos)+P^>G($sOF19kw9dLwN;m6?lZ1lR|B6;Jxk{k?}_L
zhUb$e3Ei;vippiX@wMzz0b`<Idpy|4rtIqAFWt*u@HSyja`<CDmf>tw4_ERAE9wI?
zoLYbag5`)Tqx#R?%Y*oFnAU`~Qz1rW^5~gczv4VMdc0w_f}a}mU8r@%9w&5iZ@g&R
zP|ShFreg3Sd49Q@bftYCGrkBTB?Q%cU54?lzH5Vc2O8$k=o?BSMs5Pn(p~0K0E<V6
zp~;{uZSMI^?qa>5WF!bZC5EhA`a|Q~FA@{YbYTV++;pU2vTpO?y|};yp*;|ifl`BL
zYuS5+3!QhToq_^w0Ag%U$Y_034$*73$#vUhF=;VK#vg|6K~@U8?YG9=F2FO{L{1$&
z!dl7Ep19V{{R81dMiz@PCF|MBkKX!-%a(D8Sc#hH#j?IM2Cb5O%1sUJ9%Q}8oFdPn
zTx!rN5%<)sZgA+$7(ooF-a`~pa5aW5&ZMUc(&5Z3#iE6xXa|H7^pW}Ox^LX~yUF!5
z4{R3p1xX%)nKyrTCye49&QX#9a*Saz!iQvdoUvTon75pdkZdnkMPxC-{APv_>{CxB
z#NKA-HIwuP*ZIX4u0bnl)HGr_YPe05whV!_^7RGpxic_N0<VJ<MFA7wj*`5-tK1L2
z@i`-e@~qj4qz4lG$mvX+;>u+lrka|l7|TW@w{YweKXMPlCpd7}T3tw!I3zj9*i4EQ
z+Fx?HYfFSThcrw!6R0%P6TeC05KAPQvccVrL<v@>6Ss-MNA9*YecU{pfqZfxuqi{k
z9F8;V-61&Ph~UR{R#1j!KwlILK1tr<t^O$=@q1yS9BT5Xp~IxQqH_&t#C3)CMCB2b
zaJaj1u0aEnhw5|!66|v)1SjqcPdyqL#P%tA0~3lD8Ob;#h)d<ma#JZ63KJHHOCTFE
z1pU`9vqzZ)RS~W_WV>98z+j#0@HP)gmyzUK1Nzy0t-r%%6TKltmk0sVLhwFvk?|+E
z>4+YCxKCqdAJ?cpMfi4rp*9b=_b=c_id|FqQls~&Rf=mpj{P>WE{pGuy>sJz?s-To
zFcq4#<do3|)4p?;pT%5_@=FEL_Ru%9QZgoT-DQX*tP*2>KEdQvMrX%W$GOvGG*Z_m
z%ur@0ktyL?FGz`o<Ph`|^8vp2ecnd5O*B|qedScd&d^{`g8XBDOBSIL$od0<RgiZ?
z;8EDM@I|BbZ*z}Ig_1l2WfKiG#d_#H?gCU#3HER%7%0%BIVgg<(QT=+?I10PnZTbV
z|Ma=g&A!S2N;5S|h!X4Ky~pRe=Q3@!kmJYvSCU@xiQPp(G?(#jTf#&F<Z!As@X0Vp
zkEn|n$FRBXb)%R|xFTn;Omvv8*vcbMyS~$HVU%A%+d<F3*hr|=6gMS|B+r?Mb6w_S
zmP~wy_n!;h1^6!6e7G!d2QflKNVFX2lXN@(8FzT7Ny?T2ck{d-*SL}u26O2;X**&-
zB*k>AV5$2^5|iW<1U@lYm^#ra>f%7US&BFATYuMwTsq8K@~Kkl1S))M#cFpEjyFJM
zC{?*+QWyKZ>sr^B=vPFG>}c4XQ}oeN^KRbk+AD-#qD*8o!dGc^NF%^SOv7lDP?z&p
zxi5RN+@?Qj@hCJ;6y$G{XczL8nG4-dciCIb?hNq{S4kD7UXVRm4(Z@)_xULy2tj(}
z`AwG4v+89x5Sj*P11IWnMKl&d)`CH<rvwqXc4}psD1~~;Jpd$AXD8U^&JiRN4#qv<
zK$F@8sPbm;t1Efe9>sVT&|z&R>D0>EJ^HarSY?j~sNycyLBUzL!58i_`Kw|AhK7YP
zzpZy?{%qn}Hlg|Q6jYVgsPChlEbqOz&ULvBaK<uJ+)%1Au&JWd2TgY05Vy##5O_&n
z$5>0Qp^S#I2`HZI-BIqcLi-@CLhC|8Z*B%WN9^L!&)tA;c}zBB1Hn%fpr%Y2vkwnW
zoXN1P9CmkgF*kF}rKb;)x~}AW!rE9!+IUxus?H1Iax$BsffE0~C&sLH17*cPzNjq4
zL<9(8^fwfO`EfNzed$isNg@eFODYMsuCPE;Od33V;7GSryowLz)xn|I6@&`M?4gzR
ziUcv!R|K#de)q3tH*Dan8jO7kcA{}G{+3(Z)t3Os7#I}ngS~gpqwTl3lcw3p6Z4GZ
zt~l~AwGK}WtN&|(`{BkWBsR)rT7?9{DyE|%7=6C8#=VcYp&e-VFtDi>kgu(h8;NMD
zkfVh={kR5OMHT>o)QvTRy}UowwYkW4*iUKilDzYK6ilB;KR{S7rdg4>u@ha+{k)ru
zs<k(39nQ<o;S$M0tlRH#`*&v*n8QGE9Glb0n2;UmrDxn5WK0;>#*BgnnqW1n4!+dA
zC!>gZL)Nk+gdHPbeJri@yvJN7!Y-c-F|M)!jhh`!1*!NMWKMYX;(WJta(F)w55@(9
z)fRnY@|~$|6UMuz?%+e%ifYiVppjvZvdAvCGyr@-FHI`1s%YG#Qa4G8n&R95T3D!H
zvSGICs;K`^eUq>ZN^)C`o=$Fpz2+6TS-?xEJpxbiXVE;WT?bdo%ixbRlu0rin|Z5M
zzI&iM<4nq#A&w9h&I+zO&MghYn{DqA9Viyh|BtWt4$rDu-oGEaqEbYqh)QN7Md=U%
zR(g@D6f0s95{M)uq#$5Lu{Xqy9YqioQGtUEyV8q*9F;CD7A$~L<^9~V_7mgzeXsW)
zF0Sln@4fa~v!>j0&n$2+KKabucEKCG0+=m5cW4RflAJn!@7*A(vy#7KCUbH#vN%UF
zCl4Q6V}D}1jl7@Np!0G@#eXMrnV42;hIGkN;+K?bL{g7La}Wl0r10=bRiheH{Ne4r
znlG2~AV`#H>Xm6f+Ru>8^mMqn$ex=3&nVHmfqXd%9rc4C{9seWMpGFAF@<0Re?Xl-
z%q=l4nbV_@O=@+~OU-VztJHExkRd5oOn>lR!FcJHL{WSiNG0(5L$)44!jiWeg3N}X
z8$XR#);}ytl}8<8*X*s*-0etDYp0|>y~;Y=5Y`kAi|vie%=8!Zx3|?OAXRpR1#>)#
zBe20QrrM+w#7&WOA>D!kDQm)7dy_51FsWQG86rlQbYIbU`}=ku7H(4@=*h-oi!ckV
zy|wyhr$%>u&rj4mL%kwfrz((p_+G1eEq{d*Qdmm(7(5;>T(r}=i5L&!v7H!(U{%RG
ziX?>B+}6ylddJ5`MGh5cc#=%v#lP9oo;-_#912SdfGiY{@u&|^wS|hWf~ym@J>Yqq
zer(O&BCplJRzAybWSWT`5P9?#y$8Ad*Fw8g#WBhNX2QoB)hHX%3x)%Y>^ZTLns(`Q
z?xouj$F;Whg8Ex4Mi>9;n>C0V3=}f;Gz3AwuBu|MXR+xZWMpI{3B>=asu!)c@1?4t
zrjpDjRCE&5z!xk7R81be3U}e)Xqsia=^4alT(mpo5?N8MLoPyU@cCJu)0^6_5)IXe
zaZaGJMbap{bF2dI2%wW!cgQXe$)^*7kc#HgXn)s_DhlZFBcl0)aAtdxBcq2!bW|GA
znMR|<gcl|a&17?fXys81Qi1D_s3{O&8Yfecj#Ta4U=3dLS9T$19ES){8xkkfje016
zf^sl)JK@Lw!2!swW);auA&~$M3ZF?jvg}v?Znd$ytWQrmbP%?Z0hG4ySHZrY>_5lF
zW_St{_4~Jew-GtKNzME*`&wvV0@mf_AIwov@sk|oQ4}bCTy|XW&&`i6x6?Nf2Qvl|
z$TB^E|LjC(Dzp|{wIj<`kZ6me(AYwu%!i=(@udkDnbqgNaT<wiZK3olvkjR6AhMcG
zJ(q7`{h&EXRPkjc!%q&i*YRaVTFNb^b6y#3smuFTj3dZ}D=~<i5G_^M%8#GCdakvm
z*n@Q_;~Gk0poU_XLf)fzlU*(;1G|(pMAZO`3V!94-|n*-q-Pi-6)sQ}<>#m{q+>hl
zq+Ee#Se(NblkGw`C1q$5+svkP=G9Ohz#nkcgPanmp~xHy+_l5{Z}Ro-!%>X<0B3-V
zl*kUOT@$lb6_GEmJA$C2i6EDV01Z7VlAp*GEEewLNDPk}o1`VKKVU6o^c@!<K2d2P
zgnpFf(sWCR=^{357VZE>kt8prdrK^@tG{J_F&^2!M%fg#M*Q-JEk59~5^z^;l>WJC
zp;hKa9BX<e48fL@8PGm^;!7*o=qVhXVokZEcBf<vZ$}$SdUbXE=r3)$B%VNSPzKq5
zN)?gxrIT+P6nQm_rT_=SwU$^+S);HqoZrXW-q~+If9wn4m9iOdy2u5lN?g`mWMhY-
z?Umll%LaXB`j|Z|=SHg|?-4zh6^iLZKum0_Y;%|LDD{Y<Uc_~`7u5x;^U?#>Ig`sM
zBkH`$a=RMD<bAe$uJ1C|gWMUP>Bw2DAM7&WLaH=En+S_>P4Q1ofv-^XwmK1I0ou9Q
z8Yx#p&^r5y@RwRZP#*=7NaHpe2Z58-#X|rm!Uf0iB0|MDhytZlK;s;nLM4z4K)P~U
z93RMBEI7s*zQhYqN1RVBU#&H3g=TAF_iG`@N|qMD>62RY<k^G~cDRyfQus<@VxO6!
zFSl44>V(Jm2Qk}ZA!vZmTxPWY*>>U#pM|o*ry%l0aZ&`(9NjSMfTa!gR|d5ihr<$o
zvJKER3u*L(c&2%NeBmT(c%?tIPdbEU+$HAw#AUW$FcrW7#|BDsgz|x%d#nk&ReD;d
z3CLlQ=s&a51_AuD-o2;<WD7g};80DwR$}d2m_!T?0nrwDQdH2}+pNhpA0yoXoXH2@
zffv7ZyWI$y!6xcTBT@!Q&WJBRu6lG<6QA?&N#)S_Tny0gZRlfhdz&WCZ)U&Bl7QI?
zLWIAHtb-aM1M?eNOKob^sn>=iMWqtn5)*dzMB6aXUrH<qvB0z4o?p7=sOU<iSj&{P
zpHQhB8Q)N8k==Mcw<Xi~nN%f6!N_GAtTPq$?Dd<h;+d}B!pL#D%K5mV=4|~Lc5Zhb
zl!S1Gl!8UeA^@r~m+EKUB*pUZpisc{7#o~az+^f(EbBYF^99#CJ=uYz5aHW2B^G4Y
zRE<uFXRUOknlNZ|N#K;};^v9xTc@9RbrPdUPOSDO7L_A0T#8SgVK*b)jIez=XN2Tx
z>+nx{5%$ALd%SJ$?v(RbQmHG(5x4=G4Q7Q26YjKeg{^DB0`L@qP^WXzYl@jnDX`q$
zE<a(CGMws5duTfU*0%a5``5YpDX-!wZRFnHH`*06y<>y5%K@AcSQ?th41C6Z8R3%9
zw=}PmeW(6d@VhEm>l=d<;Oj9b{;4Ep5fg7dQ|$^H%`W4CZmqmNkZYc5DJZd%0DqDH
zj_DcsNWZ8@^MA0PA9f)LqYv0^A~9~Z<sJkW6}l{!H<Z{Q7h0QVzPC@0;YrCgA6Y^d
zGQ`~@=*LT}RIETIDtELtf&VocX<a({CeQ?{ghVQX<18B5wNre+Jyr284dWn0&TyM?
znTNvdQ6uyWQhyAl^oy-F_GQMa0A2+-o(L2qB}hkFE3s#(9sRD~*$WmxF!mffgUJ72
zH$3CF!c$P=gixl9Qc*4_+}wDX-T$G>3PezK{%GlyGkNXpTXHqhcLHoMRb&eY=HQuq
zZEI2P=n490d#R?cNnlTcr+{f)wZisq@MofzM`ro4t>LkcbhICNtXvk*n%tykqQazU
zi)`1E%vUntjjPT;xAW*uD;^s@z-y~40x&`;1md1Tbo?5=)rzeDYh1yB9!y|@oYI)*
zga9GN+C|>GTf#aOZSk#)FC-G^cgGdbF@)p7_4aTS7J&dqE5Q7o^_?}I$TX_46^-$*
zTn-#Docq7ATY<H3d)f`*8APxAadb6XeT$0&ejGCgqNgGr$jRv58aLZoRqDuRQ}Z}7
zPGG-${*I@usI^}RVwo4<$MVD_@r3F<V?EmNa9XK_CyVJL)$r6Y(N(Ia$IdY+F%B6o
zS%no=SxctxMX!59Jt;h%H~AY|amdpFZow2}mL$QGA|_^dAZlvswmp#YG0I0X>@E0I
z5e!SFfel{GUu9#G4ZHrm)!QWciw7`Dv`S`k=3pDB22^f(gP#lM6`MTxWNY;@qr~3;
z?8|}QfEkmq2J3rVahN=-Q8?xhCsGsJj*Ke7tO!9W2UJoCfR~gi?$w?5*cli3?=Kal
zO<os?1rRr|js13ofQY1!#icCFa<1s3L~4G(&)fG|_l`V)2pBq*EQAb!RFA?cqEy~e
z{~jCJf#K5noKisGHqWHgde<7=Q*Ie))#UY9<c-+N7kpqXhyc+P&QTJDnxqDEyRy*I
zuH!b9?Be1;3?CU9Y_$@!^xQGg<CA>-lxQ1*1H^_1{Ig06thq8JBJcc@$<0=JIN;>i
zZ=PVsL}vg2CBGXzpOvS+S?NOi6yNhrY?y-&+UMm>Thb4uaE2f%#E#l*Q_r;eqQ>IL
z(WR5NJAA#kyemJjo>0cvDKsboiSijM=inFZup40`V3_={`M?n-9A$(Z8{3!av69rV
zLz6rJH?69}=66it;pf;*mG~W5ay${JhM@xP+wJzI+KHiqiT<~1X8AqKG^~wv#{a|X
z)sQmW;sjn_!~OQKbcqUb0Up7!>4pV(k*a+AyD!*-jeK75K6;8VljWqHG`2DJ{mAID
z$GEjsFgn8Ki17tjj;<NK^pPu&{?NvU$I7^z;YaSB@`}d}mWsNlQQy8q8S!@(H&?zM
z5Q4DR)RXLi@qU3LtYH@L^%OUltyI<~DZm9#IuvGW_!-JF`dZ4%dvTJjBWWWIP7I((
z*AH2J;|1F!ub$2>M6e_(sD9wr%W6c;mify<wI<0kMR00xsP2e-^Zs*eqEObP?;)-P
zZ!MC`?UiKBJagXf8G9HQj-QnenB8j2K?y(FI?<|q9lKeI$pr4}3y6mu+$1}|8&B$H
zrA7WL5s*35*YQ@MIgjF62z&b_BfvYTLysh`15puPp)rv&B=GPe!wN@5-M;a!>p}L4
z-jBSi$Zr6L6ILEbm~Th+tUPu_;9mGgR0X}NX<}S;d+2KJ=K?fxG(FrDWbwBfZJJO6
z#hrveE_7|AfvVnXO{ARu+2{H?c3ZJhWKax{u)4XnuNS`|S1C5J6DIlSY9~Zj;X!dL
zhL^^$)cZoVqLn6LE8FDh!FFPIzZ^c8<(Hy}AD_9)OBJ-B0|r~8E^LS-wn-pCHVZcu
zpOcLs>`@U+%|C4Ly?jDYJh2-{v9?Npq<^KDf7oG1@Ec7_iM*cX&gSTRxqU<I!=04E
z(vMre))Qa*-F~`{xk|!7-g%2Sm-E3B&zu=;7wH$K7lzTx4?U^d<8`Y%mV1!utRd(&
zCFBUw=346I{92V~W0*Y>2X04TaG-<6thY;=`aM1JOXMF&WFA;(lZ*KyT0~SWMx|&7
zW*Rp%xy)LI^fb9UG`3tX&}nvBK@I!pEnWnGN?8kaM;;^2e%S81m>FcSP<~x;0M#)c
zU%zLc$h{8k!%((drg#B}<K1(uCGHKc@0rCBb-rl4xggt$`}v~Lq`8EYuQP>wP%mC?
zOCg$wNr3qQ(`DM(lg{mJG{<t`&hj1s;4DZf1%-~Oq5JvR_VesOJKn~Qq~=%$>9ztr
z2du7PgRb{cxJ!)Wg%ScE{K5OJ4SoiT>6mf}rWy2-{i4WKYb)Jx+*Nkgg!l=rdG)#j
zr`e+Fjus0RrXi~G^-}v#G#|DUeYcJr5qnji&_eORd$nu_Icg@PgBK0(0zdA%UMG8n
zQD~yX#^SHi)k8YjE}R=aSU!vor;Tv%b>CUbFWfZ`LQjkJ>}>k<$p3g_u1%@LtJP2x
zQ>)~PfU0wEweHZynAaXzMJRCa6pcxDbU(qCU~3W3cK=hYg^+S0Qhvi|*AF}qKSx22
zd+7AO0x@lAJ%00Ns$rE}a5r!n+X+UvlRf>>+g5{3C-HObQh?NGYm&6d<o#p~`O3AI
z*{gm1M=Fz6{SeJO5T5J{Z9jxV6aw0ZA}}W)I2~fjDN&atz5zR^2VLkJ7}_)6-`pxb
z%9zTvoDGVtK($_!r?GHd{;(h4_YVTFN-xYup-TbXR>!i~D@;)b`S<D;L1$R%Mjy7T
z&hzon03$>E3qdK|P^H9HiVBKFk;d|mFUGoqo#^8)sBeFVNTLsATI2<#@RGSkxMPSz
zh5aeFGPOw~PXbNcG5s#U)l#Y#9Y{GxalcBu(Uv$7K9%^PqV=IjL<Ks}qMmZ3Xm?C6
z6YZJM`$7E}19a*geVf;bA`-j$MA^DHm?s6F?B(tagId0C2M+neunx?-Uv!PtJTbLl
zbQKv2<`;%|I6@$<HEAv6W$EwM_;Y_jkDSb*P5`BqC<FX^w%ta}G;eNKQq0aw<h^L;
zpUEGR`Z)IQQOKk;sg@<tq{**wbac180hL8S!(#5C`0;nV;K@6A5x{Gfx@CnNlgw%;
z6ZbsV@;~j>ppx04)GD&E!{kw{0^lc|ul&mT-F7lQgq{UOudHa)A2I7sJA|t#<f23l
zOp>_B!rWYH^Il~6JuRew60bVVqo(7Q*d;glpyj<fV+Zl@g9|i#_T0JD3dn2IE(M=c
zcrEz|fGl<c@qhU*TXDCKiuhabu&fWd<;6ekiHCed-O=W;LnT9V))wpcyvyl;5MfbQ
z!jeq8!#-7n1h88YTHld@;GnG8HKI5FW{_@J(MHa^%FaUJ$F%}#lST4ru$@=ipW4}Z
z;b46{m)E7;W39voR)wYl0)Si>O!+~yC>Bca;7UKCgvIN?nH&M>Wu37=P|JD529i<x
z7=kK@N(vFwSem<?8Eund0eYhnNjSXr)4)x(NS>Mq*|^>+SN4t%Br=*MUZ@$3BsIdt
zzKjCzwX9;F<Z>c9EsE3|MORC5$4I>341<RkrbLxA2_W|Py2>KUpdEP2ZXV=+WnNG)
z*@#7eZitK-CAnsPwe3xN^(sc0RBosY3cf+S6giBGY%*>(|3mcJ7iN(NOT5+9hGoQK
z^!=^E{KTqe(WjslJcfv6u<-b%@^+7CVw0huq5Hk&knmKY_qfe=-!9kuAjv|7R78a)
z{>sigjwdq|g^IrKD7VxN>2@g)Ao6>eIue#444TlTpW2zEMKFCl3}2s!6sU%zbrXB2
zua786Cv(-7DZNhRIKOzJwN*v)DOtc8c+l#wU|flab!2)L*h2&S>1dJslA$o9nP0Du
z?9j@N2HN3v$h(TS;*`O{g|?<Wk4?@fPKFexdvgU8#gLMr*A7#kdbTY;)}K9q{z}Lb
z%Acv6o@xtj_X%zXyD+tlKJwOcqP>6lS|(Bc*dGq%!|Yhu^8QQgD(F#K1Pmj2QCwh;
z12P*}W5MNYawqE02O>#$kQkuZs!g@yg@ikSi0L5tAX5YM!E-a0TZ%$&Y%7YmL;#T#
zX=+;HtVYqGZ~e-piq&IkxUSK1r$MylJ02-D?M!7HAT4v&Qgfx3OpC-iQ(6yZf+}@z
zlo-;qRrcK8@Kz{p+Eq}c63ZGy-Pu3*Z#{$i6gFgBZ`r~d>}+`1E~DO3B2kLQY1vdQ
zv`frNiGukEy7<fL=o?h%{bSSUMwu_|(>%08BY>%7VJPPo!hqjq*>J(+I#AcH2Eg(#
zaUFiFWPd%)h2UnRR+%wiKi05sx}BWmqeQKEb+a4>#R<}qqVMv7ga2cXjrZp|mIx;w
zN0@%M$>voAj4b`JmFz+xi^@?@-w7GP!$NpqVk^l1a6aay%Ju^)o}aZ(S6HcA7gw?e
zUX4eQC(e;ftxl={e|*~(0Uoi}dZ9;3q5nBQL5{^aBkdVr?lPNJD()7l9c6@z>$O=_
zT=R^oiD-xb3{IQD66MKA$h#B!s%2utZ+3pD1nkKRM1&!L({EgQTKEcgdC+p$TzKeG
zci{FV1v!+*%2P+LF1^oQCfs5iSAcK_)0hFtNg)jU4Mv)CLUbnU%>8)av_y2sVbMF*
z5-^BSbwgEzpYuHCJ7b+KAwETsBRYX;9$!wCS37Q(9gi&YK5~Q*#^{y{af`(qaZEIt
z4asW;Fok&eqT>it%VIq=7#&-Ys5jFl5r}Ymm)!iIXDL+la7%i2{eD~Vus@`4CS@m*
z_M-G%$O4o?##Z}7d+}QCCR<l>9Z0Tl4h%y5#<m#6$Et=I3f<PU4r9cFCGEwVCswdc
z@Az6$XvX1IqY{Y~qiuA^nXqFWbD~ixqFn6*``GxYcU{2tIBUdv>sqQE6|!!)M7fl?
zDa_KTOR8AfpKFu2Sf<hhWJ^{h(<-9VvQrJfB<`+bsj3W2DnD3Dy6oRe(-b+zGQHZ6
z1-IH#Os||GJuUY2a!JHtShX?VJtjK)7=LRIJ{ETiWyXDHG`G{l(x7MpEl2scGAct9
zQ_C%3z51OR%_HZ<4_HY2Z7o+uzIt2;aY1*pH4Zy9>L`;boKNL^l1^eAyf%O@M(97<
zSS_;fqp(4P=bB4A7dsauXBp=)m7=Tm__I2e;BWIsAfuNnMtA=1f9yTfA1KxL=qb^9
z!MU;OtKCCw`svRmkLb^5ELAU4)=df7Aw=}9^O`4SwTgb!W+f;m{)J;Cehe8*78JI?
zSnwOZgHzpd=%*6=FwF!~^=`GOwmb$`P>i0|MxJj&cU78b%Vfp{ROCDU*;KN=@}#J?
zUWH90QK&)WIX|P6Zt74F@z=q;{TQ0x)1vAN{Fhf^60+kf>cCdFbyV_|UlC0s_%~2Y
zn3NOhM^(1534oQE^RP)o-Nw!+E%f?a8&uczb}w{0hz@=PfhEf|v$Acxjz^-S$qwoY
z8xLj?L`m|M6>WnQ#sAWww5uuj|Hx|Xb7$jHz*Co0kF!tv%Ca$P$-7j!=usP)K9XT;
zZ9m;c*>`|7NIR8#TE8E=+g=4jZY8^<hjTS_0uJf+kL}kwTq1$OJbQfAhMrr9>-Toi
z%5v{vKGZN%rj_-3db2&<kPj30Dp0Knn)%@R7ul~JSUH`nOVbo_V4&~wp7F0)A@Loq
zP<PdbB|T@RA!oJid=_^C>mRr-*eF)xv_EXCv=?R=?-koB*XOZ$b_%vto`MXD$dm~3
z&-+qdCrIN7I)_Y(mVN#2p35F{Iri@DRk6#l#THCDey%kpJYtnpNk;fd34!cTzsA=8
z8XsA2=sBdud|<nOxAu4O=}^HDHRRGy0a*L7?H6do7{K~QH&U<~rx_6FTE(^^;AlY~
zvVFWmbZ+`c?=dH#zqiD6nhYL7_)Wmb<bNT=m>F4LG}U1r*sXWEu(4ot)WxcYlZGZ-
zVLcRlD>Vm#B0fhzi0Z#<@4dp%NIcS_NN&4t4S2cP%m`Ey_C1sMr&WN0g7d+-5jxn+
ztzMyQw=gyqidMo8#BQ1!R;(i3D&=+4I*O5Pu4)J8yTlMJq76Cpkab)>$3|2Q>&UBN
zP6|>2Cg+AP_uDlheR+fA_(UWr<0!+f7apV9GrR><4L%eHp;tRI8nM=20LZ2S)>0Yw
z!KL{A+KO^*R(@|?q2LQpqE|Pn*MXnTJ*;b<FPY*26s4C(D$T%W)t_MXF61KCobkc3
z5elvBR;|;b&hvapeL-q>%yEK#b3YufPJ26#7D((gz_rX0CLt8b=CrfyH(btpA_qBY
zYbzCT?+W_@A?N2EIBY{dma93pgB8E#OV%Z4yZ6gy#TZhR={9nX4=I%Uq2%F2DR7hC
zxaoHrsqQ?<;GLO+yuy;lPBm-@M*niQ-95|)(jy0WXn4^-Wz1ZiKHCb(A~N;;hT`X-
z{c!-{F5O{2V9xooEC);)=AMns4RqR@Cme<<DM|<>L^3vr?fr*r8b$kT$pP%VbiYN_
z7}(UxHhL9b5!_7Bbk?Jpqq27mv}y&ukXU{t`6XituoLxuw7cm@F2{jWFo7Ic3=eoe
zKGWt&Z38WVMNtBQ1To;b)$JB_XkcFH03l<HgTkIs!&35%LR#-%U~l0~@<>=6xIfpi
zW8``QC7*8@U-&fl7QLFjL-8jiqP`e#-UUrFT{Wk?P1*YItJx}X4T!qEKQty>-R2dg
zvI#t7`C+Lg=$?x^MSrMt^{~Pl6RT?5QPIKY`DR%tk^SUMp&yl&%Ef);6@CurnAP@$
zv;Z0|G$>X$>0d>O2hNHh@OMwQf}a_;3IIe%;&b^;2>&3O@y%!7YrnwqPU;dtTVRg=
z<I8K;-!sL=gJ<x=b~^7y9k;cpkG)`99`QE>T@=SU!iSIxaSHfR%B_|uP(SH2q1NM`
zYdHDpl`dzHS$n*x&1k}O($q^wF*(RcEj@Fxpsr1r#%l<(F{i2vK{a@hPpwV1?gAG?
zd<}4?R&BH+$B(ieXY*J6o{V8(CJ8rWoodHzHsun(Fd!YhriU<3gErgYm-1Iq1sq}M
zz0&z>+#9lN*kx%&=8%<Px;5_RtrA&HtbgP9p@KWYnE*T*lk?FUD<T9yX=tOAk4y1j
z80m%s))|u`lSI1;5*(E9@xk;gezRNI2kZQ#*50wN!FSfJKR<UrA()j`E##B57-lIF
zMd=NPF`-0&=mB2#x6ZR!xR7F0#H=Hr6DOZyyYV6UGvF-o6rnl1{F?Take*b)BJnO%
zL8>U3QUR`h@`ANGpR1~d8J?M&zk?84wGw>g;m=sraegT&1_Y9sj+XJm5`Ttc<(u!d
zf!IVoS1k|XFrkcCCWo*79{cPX9)-iFmZVH_YY!kktRA(+wc<{x4=FNSUiB6a?dfxN
z*~<gDO)Zmz{_>%%McznkYGz}lk3{@nJK;VOlaQ%ol219?KBs#FA0+OzD;=fCKg+XE
zd6YIFx>UPHx*~2m;Mu~94v)rDsE>{#@^?YU{X;1|+c@ef$eOX^XCv3Go2v2B_*&6z
z0TNSPwd97M^Y>30NAG;>FB%Yn2%z~`V+I7gQk30-eFH2(Ku@U=J^<-Wx>3`=hJl{2
z%dU<41t|C(f<F=}QoH_U=T&y0B88v;K_9?Lui~6(y_zOEt+9d!eWd;W!31Mo7THH>
z*t7$7#WMd%w~-WhDJRL<-)HZ&<Aif3_j0*h0bx1Y0cqHKi%q<UaVzuYmExRui-@kT
z9Nmqv;&b}MJH(rex7}hli6ATOUn0&kd^r~9(A{>DOfd%9T><|FKe*`MKfv#6F9ZH>
zzmEU}XGoH*Vp&dl`O0R5>JVYf&`GjtcPg&kGl$j`DtK|k_Bng1fKjtk1sCLGW$OYX
zX))1?^BG|BlgpBq!V5S$RjE;ha}Qi$H$$l6v%y(Pb()M4TZ!wAi~3FU8EaQqEM4bo
zdmzV-AmYUT=%<!hf#MW2Gw>e1W=e|v4V<I3!b|gQAP@bn6Qd{AyWb*xqJGgaP)1BH
zN6wFLnPXNmz?Tm1zBnfXKY~0zcb|DeG!n>)PoXi3h9VZn*g;k&l$j2YC(6Dmfyq(M
zRJ7FTC5f-jvPau;uX>V<F2pwCnsE1peQnXZ{%0bW0XZCJ%LUEnxE^-LbiV))98OpB
zzfZZ?8sYf3(G;AG)V6LZv3aMCjg@XzVo+ArUm>M^d~d5X)1O4ekI*UJ%<oTaXYXJX
zLa-7agCQvyL$W%!l=I)SLsfjTf?9H6l_egGtOnF<VTvugn1_&YLu+`b?c_xWTJWG-
zCa(O_juluWKBw!5a7@^3i>&Ab{!B8Jy-}dU?;uV~3ZnHkZLT{e?em9I?EzF$n1g44
z<LRA!GgIsh^f60-!l%KhRzVG1meEHGo;fBfS(~9vOQT0tRh^V*>-n4Aqtv^~j?e_2
zKo7rx+~ak7ADn1uBYg(xyT~$naf;W|U4ObAhF2sEFuk@bcd#RnETutfud^PAluQ(w
znDyht0kqSzzuU}D!k-mag+E^VyX}(70+Gru4nAB+JEuHiHRa~QEfF;tkc%W0Mq}1)
z`(m+wE*P4JT(LF<1aT$S<reGHjT=?2!r>44voOi2xBK(3PXNM7XC_%U3M!9n6k4o`
z`VEk-Lm5;LE4$YAE?ZaVkMkv`55M{jCeAOgo16dhXSFP6t;HB{q!dGj<A5|z&$rX-
z`tN!d=H_s^yclqz$1NCcx8s|*oz{6a;Zt%^#$;P%khD&rZO{{YtwE-Xl=3wN;DN-~
zQ1aMAe?Mr$^|62w>a*bcx{dd5`(U@N#|K6q^kQ-KK%5M^Ch~sAXw$0snPyxUEIc%;
zpb#uqb(B2yh;H^>e_p6^VgLy*cSrHG-<(pi6&dv+6PUSU(uuzmK)!N>jbKe=``Kvz
zXL&)dA8D7!O!52C$Q^po4-Sbgw<m;+q0RBTM4It$m$%A<y>v{}{RN(-tI1}(E_;F2
zC4`X?UV22d@hSfmi8LmR$-+|<%qb4#isPd+Mer)p;|v*uC%i!=I3T&}tuc0pH^fJp
zN#-%H4owmZ@PNWY*7|k#4f?`V2sejT2r$U5ZNkke6OBDKnfMk>tV1Q=zJaUaF%e2b
zW@^#LR{2<NQH7D1t|I#qRdVH(Nj4XMfh%43gwVaf!>}5U*tbeQfM3bSAo^qWG<eeX
zL;O5P?tzXx249{KEhev#Dq@u;OtpPvQ@}f*{Uuqj4DrBPTmF=biu1Te<C#k;z=WEr
zK;ZV%qC;y~EcJV$nsYw}nyx%-fZEG!k8m%FJ{A3hKMq)CFAe6K$|V(q2l@li15`Vs
zxla1TI(+FO*g5RBIPQq;orI0?*6n4Bg#5P>u~#S0gJvrhuZjYY_QqZhO;@uTwjB+&
z7*XTvtt&ACc3*@jWvYWm1tCy-#>=|yTVX5CVroTA%OQ&g@S05zL?qmgD!A$qYuMK>
zI|?Xbh}$P@1p3oSEDuhwg_rq!;Q->Fs?$~@{mv~6m?g^Sh8ocZ2p=p)(oOYZdG{)?
z<=n$QRWs&l_t}pvc^JK6$<rwbfoFpRoN=dp68>JsQOO$3D8tqCJFPx|FOu3m08}9r
zyl<Dym9HgGP;IctA$uQ7oM%6S<LedH;l6Mi#!x{iIdIXE7;)S<ig`h@kVD5VI?uKb
zZ{Y@|Ldp@Ohos9d*3JMn@N)Cn%dGNO{=IZ8!MMq}L{3^u?smLj3x8!)YLI-rmjIG$
zEmys!oP|2Ol=B0aXm<Sm=dA<y4|CHKIS0Z*^9m)-9BY*^J_vGeqE^-)L__XHzcqH-
z)BblI$}}`TJ3A@nYJ1rkG3P3CmRu4A4ElO*edLf`C<IMy6=|{{amBQI<zb~w_SOhS
zA*PJn4zT3b-b;pV%ugsMgdL?56o(wLt>y7TVy$?je{WZJ<uMAa8b;Zh{ii@PaF3~Q
z8^f;!s{Z_uRie2JyGZ_GS%)Ea+rL_5+iu`CC9G=q%!0!t-l|YHB&6d^`}rYWqcA1e
zr$L_A!h3AxXkRlC4Ed6nnd|Mc>A$3xUi!S%(a=Rg^wMU2ra)WIy?2&X&~x?DBo|Oz
z9!`(M|8$f2Q4Q-Q{~BD6t|y)e)Arjx%Vt5ZU_?Diu&)y4(2Z*1?RL~~hJ<S3L2<VW
z>8G-ulfpbNc--C(_PH+%Y`10Fu}u?4-fj)rxEzF)<19TOO48YAr}24qSsvGPt_1yw
z#D3O#&R=i04)ZrkX{p)?vxw+?_P8BSz`zips_S?H-~hh)rF(2XyPiLn<;%5wK)BT9
zpHUz`j~822oL9|vdafH{Xg?CunFUsSChvlWfU+jf>}>5*_gZ}^el@*TGDH!RroQ(s
zyNg0k%xm}<ik;x;x~r1w2dN1l<iqG8&=!&!;@TstsCKt(rO;%gc2|wQz^V1E59=YA
zpdiGjA0FLt2lKC{u?|FdS>RbmN81VH`Rf1|Ye$<EN_zT`f?_uR)Wf6ZSMnPrvxMr=
zsv<Qtv3QTYlFnZdO@_dl;y*hSQu|q3ulU?gRnSA@6R`w}wrZZ3bbd4ll#);EfsP<$
ziRPp|2pYYk9X-VFQ_><+2V`=Kl6I%HjJ640ly4TuBXUdV+QaYAF=WA06MJs3dBSFC
zPT}qnp*45@9eF=JO!~jvKJ=SfVaV&GQObUFlYbmzC4EanMz=6`MD_>{M_5wrlLDqi
zwBAAvwD4-A|6X9L%zuH~uh<k%1xYWu+@1_#l+-1Hk^N5SXDIika(EM;pKEWQ<0A%n
z)0@2{0VrRIn5UcCDgZHNm%N06{}?G`n_(y0C@_BdHG6fmdmHklQA>h1h=q{GjqB}M
z6c)-y;4$F61c5E=1phCV*|TJS_%4yXy_F?SCvu)!WY)kxhjkwAXWwZP-G8&C%9~Hd
zoyjggIQIOCr+Oecd8i%PmR~t)ImUw{edG=8Y#e?Wo~Dj`QM3L~&E5ON=<?qj?Ijwe
zs4aLL-s*GS5(>w8QnJ)6FNdrpM|ODdQS}d7-JOeUoHG9m|DHEp8ATs#bh+x1j!Y4O
zvJ~+Vg}BRDV~hj=x}rsBgxhUax+^JkTwVbQ1V5H1H1&9uO7Z1BLzgmd?nQCb8VcgC
zVw)<<ijXm{0X8bllz%`DitB6E*rfmRR6ri3;*nC703zGxF0=Jp`~u_|wITN{9k_6`
z8D^ySY_L_j6`vpoLRfIZOtFo<-E6lv>`HVDt9nTZZBCW2P)P9Tr}ouvB;GW|PHzD&
zU@RNovZ}@W8XrF#!6<)K*_pWbT`#?Dwq2*Cl}>;NFLX~1=APxYnBYZE^wt`>GkKfJ
zUf!5ue_X|FJUX2X<Beq~phZ?*{mWK;<6qGY_u8ERbgPC_VVu2rD$k_*01RGt4w_N%
z0|NNG?bW)eK1k`QrlRU6THa%~V-u18&L9WkvvI;0f3L8}z8%L4+~}cE6@!Qt&x5)?
zZ-aOEgNWOeZ2=yKtI4X3x7|C#)aEGhEQjCSs2d-(Q_n@)x_02Nv>E2>x<6%ee)3oJ
zNwUV&NeVjdLK`7F?VzV3K4IkmkHn~3>`#TGEfO6`P0+rXk#_sk8olR2G@x`i;gBc!
zwV%EjZbiapLe4@oK3vq$ba2Vel;a4G*+eo-s+|c{AVqj;irZQ3UsCL{Df~o(D3Zq!
z&ikWCnW1m%X(d|E;EfBFk*;9q>!;bl;oOBnNZJ#GPwoO15$ig2yNv}~!fv#Kz$smU
z(O}gc*<pXY<oAgRH%g#koI;RFk`Kg}&Rb{oun&BY>pKQTfTsMPSGA0-YttI~!s{@>
zWHZ1}4fpA4Yx5cN=IF0*Bk~1|W>8(5jTK}%JE+|c2BMX+OdmaG7lj#Z2db&2Oo6pl
za*e%CP%Xz^L3ma<ciYb-uT?SnMc#6ZeHWoPiW@n@S4H3S|Jh|lhxkY#ZtxE2I4y^h
z+={@_7CS9H!OZ|<6!PmNUkbRnsqG~DRx>IDVvNMryWVf#W46ctioMZ1#<5E%80U3N
z*MUE+{w`NkZgNTNhK4&tqG$#bm$u+*4eT7UVTdL^N1ng|o!vzyk5yh#Xn$$ENrfzt
zF4fj9pfwa_VhH4g!|lP-88vAV92tk9TdC?hG5u6)J%)Re6);7m?#1D4xq1lZ#j~e9
zU$eVp#$DPk%|`&qU?CEjr`RA>W`YKnBciDjezhptw~5sRj3P*YRsmG(ei9A-y)eg5
zzL|@1Q7A0PN{*arv9#^JrQLa|zptYf5j!ZY{%kXwA-cJ~l?}(LcvAVgt8JEW6p_qu
zd?l4Mh(br<?x%9>Nb|(&XGNc)4fsXZxN;XFE7N(sMeiMOkqgF|(<pPiSO+MJz6ail
z`Nn-IsrnFCGNf(`V5qm&cKBe8?Rd^FDDI-B3-6XfP}Zx;T6_3qe{4H;ZQwqN3$?V3
zHN~d#sJ=S00Bwbr;J8-p4R-tU46sF_6O9r)`Qe`AtEbufFY=^RVm@K1#rcg23W@Rs
zr>F|#o9|MFuHw@LlaYOpClv5n@)OAGj+)Wv-~keMkgep%5ZqgDFFLzs^f&MXo4gbK
zDZ&29v{Z`<riV%AP)3R|#3W$ak38E9s)xKO-z}MH|H4J5k6hl(Dl3K%mO%AU=s~K4
zH&oBp?O3@!SOy1Ji2NBAdpEOcG<XFsf`k;d1tz6P`au2wo8qZcqT|4VSRj0lB7iEL
z_YA4zdV7QDP?~^f-cJ+6i-e9d&7OlG!sDpBRU%qB3HG4cf_<KdiVt!vxjod7i;O%B
zUdmo>wU6O6#kx0x6qP5Un29q_vnfhkVe{aX@KqrLLVXvv{d`JP?LR(qZ0qa*%!UZX
z)1|^4{;n8p6gW&SCh-5%xus2_piYzrJ&8H*O*7W`C~qcT7-4$VsJVP2b`oKq=x*g(
z#W>NUZZu*WzmShjXCTf+;<g#j**mTIqk6Kc6L6qIjQq<stDT}!jsN0Fto_So%UCN)
zhwp@0#!>fX9pjtW-hhTd9dzG_wrWT@DsTBL#!UZRKXTSHx(-*9r$FGH3-Q1V>znFI
zm&XPy6}&@9WtQ!<m39W1NR|!E9ndt1q(L{6kZiZZnJSzz7p{Nm7`!Kk5@~#8$_{&|
z-#<T6t%Dj0s$`B<33x?f%;<-o{B8|NGVnCqV6S~;ygIN3FDw2@|KF^HXW`GZbHXY3
zg#wOaU$gds3rIgEoty?PDOo-5C@cEjf8GyD8GGN4Zm;#GjT_?M6i3BG1mu_5(W=Xn
zP)>f*?qA2kz}<n)qQrsEOH7$n0~yLxuD8C-IjhkpoeLC`ND^k8Zs&%mI&3#Oj$%1P
zmqF)yP&MiAlv%ehCR9>f*oF|v80<+zHDd=`<%XH!1n5N%9JFKixs+%pCUIi5H}Vag
z4*iv0-E@w@rPyt6jp56*_tcOya9&&*lZShRzJQORy4NxYRf9r$mbsSW^+t+iijG7K
z>9bxM!p;DYRR6)wQFO0{V}yH>r8w5TeYbT!&R^RXx{z8=OH;Yqar6c|@EtEwfr<{T
z3=eGTZMU+kL|e#4$}$Gk^v^jJ!A~V4AwNHK<J#2Eo+d%UuW@`-6Vwvl43}_#jUqFN
zRSys0<Qm$WlvAdh%FL$zX{1%{!Xzetmh2eeO@Dley*`=jo;xVL9=F|4oyvZmY(`R#
z2toOL9*UUk9BpknmirZl!>EAvpC4(H-+Ys0wR3&w0|cq0gxH&pwIm`24!Oo&t;ytp
z@ezg%X_TIc#M7nL-%#t2*%Q3Mg+)g=@pmzAdmON5CkCz$LF}-y4g!ws4EowCJ@5Ef
z_mcAASlh++kis#F9>j+5VpC1D*fAmC-}j`Q%~)A~cHn?~>0<&3Y4xV7ZSy#njP?+4
zhWgQj>WQS1Ir>=1fz-xnw$bKd<bmuu0of&CIeli0Z>$MD7(Cqpq)tfzLXXtnx5d^C
z<(2N7;4A+q#v$fO*J|~%VI{m&MMt=6O;ZH~T+zuU-{=og35`1G`rd>v?~mkFW47AO
z#XORNW=^wE6{TdmWR6uULK4Yo6!7uI#mUa2=dVv$xFnX|LP#x0u6*GOx7wxP;YhCf
zu0nFBf<A7ti)v(a=l$2ZoaXzXN6Bd44It0FsOGm8@ptUcKS)K`sR~)x)N(o}REcif
z%NS!%RylZlC2e_ObInhReh+?Zd&(Jo&&WZbJWSDTT+G}1$Y`J9%p_|sNMAYUkN03-
z>4Ak8!Haa-Mf@mCwKU71lcNe-eWDz9MA3!fZt_EXU$6J9QwP5j+%~`DClZ*Rw*8<=
zboLV7OFAQ+fKl#h;1ZMH<e_ISw}pI}hrcB#vGCW#N~^|S*}Wa`Q^&YlAY6QMi46oj
zz;gD|(H#Yx;Xx$RMl!xREjp3}77rSrkpWVOkHF)Y<J7NhlFEJvuX0MITL}-j<&^4n
z@7Q=~9-Qm-a+V)nV#C1c`QMdU_z-mcrvIZ350z|hJU2@4BF4}sr+5f$>V#XjOgwph
z)J5cXSQ~WTma(O>1h1s^g;B>48OwZR;Hfhv8sX3U!Y<UJ$#2lp6_U}coT}A^Q3_Ej
zV%$f6g{vM!T+7p>y>-cOVQGi`37!KbsHN(P#e7TPTb~xyM}>AsrL7t*7=~vJNp~S2
z+mo8OzG<{@DPOD%0klm8vY}bT-d}7c8UhU;s~x}%=r18r!q?~#IC>b3(+{SMWj)b#
z{|1uP?o5EH*Wm7Z%&HD&{T!yGBNT=?d0@OSf#0sRk1qAgK?|c^Nel=m1NF=h8`x<C
zx7V@zu<*PJ99>#N6eKXvN9^eb8EZ?*X1%!}C&jP}{(Dq(tfIZ7&L(!o$>SCjP3i<Y
z6YHzpsniltTWhKLyyK#86p`!Ca0^{C;BQE#oJcbLXPXeYvXxH_frSi+LwG~>TV_c3
zK~naHj<^r&f3!bHBccwwQ288;q0$8^-&*>etu1mj<gGDSY#9#1y=`{(qrM<W2Ptz`
z<w9r<{%ps}Gia_hVthH}o6!1}+fgX9pm5vM<=^!!i@tQ3EgHo@f%anSBmo2p=OdHN
zg_5uu=a9g1QT26mrz*d@-fmb!sv%h<qOcRiB5L(@M@5}abp715w1|LQr_VW6@$Gl5
zI<^7Dt<8p?-H2#5TgQJAsO*2=zLwz-Ws?F70%wma?-^xT$%u|XJlRy!Cq1VKjTmG1
zzYViHgxwQm<QGAzjq@s37h3ICm?@<Y)d9-4u{#a7Pqp(O_uV>xwi@7}f=y#t={?>K
zGK~m41)z9(uF>K}yzPKZc+IcTDS`^tY~n3vNh0jY--&lSYroZm=fMPpJcXw`LIFdE
z>d{Sv{S0aVfwCezshjUs+NZO*0dzz8aH0RyDzi){UvB%v7e>2c6)DM3TW03@h~3tJ
zs0Q8j?>!Z8LY4FZ*?nwH&URUi)6nJ0gkk!jX;S{Q&si;=GM|_YBo+XUmwrCUey``U
z(G@!`4z!f{kji$+4`GZRjblq3YpisiRiz&vzYw^bMIo#2eECk)2n<{AB1z#q4Sgg;
zA}}IjH*B_j=eb~#+`{7t(<k5on#>m4dI9g(85~|bfnTju#-3^Rv~(HiqR^@VIFzmW
z`33fw^rcX09m)clBp~&nIyOb=6!I)^xgqzd=!DZ4277Z-XQZx+?D^CEfll9K0#Ng;
z-|m_=mEfHh^-ZVLAgF)--mIogP<0s^n1pAMtOj_TcU)*(J9<~~SJGH!ma4si=kW&g
zwv4%cSNnAMJnR+PwzBBA)QV1#btK&K;8?^ictX7A{Yxz6Bd&-V7*0(BQBfO?iDqLF
z2c(C19Z#Y;)Lm#uo2{zEGWl-MK-h$`o7aWC%}I+Mj;DQW`OFk=>;!+8vD1!&`>(BL
zbrkJmKk&H)6L?CEjf9WQOg7tUeE~U8A}%J_Y529ATei$5f&KDl2P}A8YY%QFt+sae
z_{1X+$|?j(dWZm4)wU-CVAp;>!&i`(QEKnK<&Vc1364%sUYC7sZ{6g}BaE{kr#L^C
z5z9p8n@v`fjd!E`1K_HAMh{H4k1uz@k&+3R2VM<&OU-K%QzzT>8+`V9WsUSh^)!3+
zKC+#}a7+r+LpsdxD&C^p`I74P-#IQ=6tm?@J8CvwscD12cG;_9iE#k4@=Ahywhp#F
z^4Hj_C3$K;;>z--$yO({tE3DUJ>*(c(tO2c>$NVKu<hw(39)OAuZ(y!dDMota+Aj~
z^pvjie&^0K?_z0}_}^(g?<<ABuhy0ShV67(5xAmGg$Wl5s@e2Wj5{bLuLh8ap!|?K
zJTE4wd6nqa5Bw(}1I73q-r1*p#i;8-pP(M;*;)j>O56LA>ehG+^W*1MjD!H-!2Y{C
zQyMI1)kG-`SsbykpE@b3i!<qOM?u7Jxg*5F|J+u4k#Myt(S+6f(1Y|o>G1kI6l9KN
zmfsm`7m^J{=Gp`H3w<W>h(OfXV>x2?Ybcx|q{<vtWc0h%hN%KT<cto^QKXqgI7MvN
zN}E?&Q`Sf*O(VfYj1_C7?NDi<&B7Y79bnZXU0#XCPm<dqZJXVVB9!NYu6D$f+H3~5
zqKb9+i=jhgDJ$l67y`@V6bBk=(M0lXySb(RsxMf*gqP;w$U~R6Eb|=ydyjfU>G~l7
zre}kACAnG3<VjdB`q=ITpYW6@k_vA}okW;`YQ61F0!lfvAQVK2Qg&bqaDGGvDtC$&
zKM@Z`CdU8V<1KrDbev2Ha26U=dZn2h!>4E1_u^3{^$O+7Jj)O4etNyt0{B4_cJj{K
zp(+ixL(pl9#JuKFrc|5rfPu*Qv#3`kjiOh6<<B_jC7B$hfwSdp-(QTZRX0|T;sd%n
z$P+K5x&&3+Dsg&~=+Fj#QV)o0GJv5(_{ql6McRdeb!(HRmZyO?oZ2GMy;;<2qhE2e
z2jZy%%Y{}gXcqkxQfsc20(BAuuaumeviHxeu@T~Jah8ZS1qGM%bHaAZ0*bx7vx@a3
zVnZ~$QExb$(rBgqnf#~5S+hP&6vyHbu>j5cUSO>k|C(}3sbA2c--_=zdIO#i@D<hV
z+AuV2-?l#Gi;X_b?PyD`a&9pw81Isq_U_$`M+iK2P{0<a%<zC*n2fp^foOOz<-={<
ztOhSy2@ZJG90?OmY}u32CEjyLpgQ6LvFY3{?RP1-u9c$PFL*%<G80}#oXkPcPhE)w
z85pUe0V^$krcaEMh>ASgq@2AF_f}Q0WaQKAOZgf>RAOJqL73w2>~#`eER^7fu(ZTq
z+>?DlbTmM&%VT_pll{`(wGHsg^em_<jC>n=B=AkXc+n2w(($nQ|3B4_T{$+-n;s#I
zY0VP<ts9Nn=QmyEd?Oc9I@=wp8-27tIWkz$`a2a4iOy$44;>k#QC)x_a;mwuz_(k@
zi0;66p*DJ!0MHY^fceqynYB9g3+q3To03>l-0%*%Wrm6p(rGdvacL<AQOVhM%K$zQ
zSk~#|yp+G*^_`toi|I&u-Em(=NR?;;b}QYOcu(ck_P|BHWFZhzr%`Q6g$DU+?U;8^
z4)GXt!jjvC7V`CS^6h$IXv#t<x8SOm*>!uzzF~XTdB>LB=HJk1G}Nqsz+rE>G_8(3
zCC3AWnNv*Sl1|$Eb;O7Eenn!GvH&X7`?$_Z=cqu0$gLKO{eACH7e#eD9O77M3Y8pE
z&H5jRSAhn^3K_!K;&YYZb@15@&WrAsWm5eDPI>HjsX@o4^P_RX_sQNQ4{P`Qd);W=
zm;4!zy3nIc+y=}?j-8do7s@t`))p6<L8ejmkMFth%;*_;B1)J9NX8|7cupojApwHt
z+vZe?E-CdN^^&s`|8;l8XzzCa>->UJ=PpPpo~<4g|IS~DM?=dmox06=w|;)|-8b0B
zSSQ|=^j0#3zR-ZzGl~p%#a>&!i^WdPZ}RvnFH>QCr1Ze+_~rCJZL^42$zKwl#AKi$
zasj2%{dX1rvU6}1%T|nlR|#0Hn5gD4#e8{WC-mWIt=&?H4aK<%EaER~EmLr}!*^2E
z0Ex^DqN$#bziqUc_4ppCD>4{LLMY1qa<)C*#vg_=Ez6`i4{-`lMFM{L-e$<X48?SS
z6P!Us5RSsV?onHL7q@!S7rplXXymC?ZR@xG199Q8)OvQPCX>bc^AtM{V1#HrnRy8B
z1xI7GUtMCY4C!_B?;qj}+s)w<=cW$3+YUoIlUoYqSyH$Sp$H!V&WHdgnFe5Rx4kLj
zpEQ<3R5~Z|_d_n*9&b-P!gIu-&r!{`if&WgUwY$+=!P_I#Glkzqn=N0rV{@yx7v<o
zzUPwiK>(MnX3@f;a3H7HQt~RukF>HM$EZRWt{i*NJ}14vD(l?0qRbIW6(f!}o@MU?
zQuFt&fJCaC%gpDJ()t(Gv-{J1@jy;k*t`N)5TS~fgHl+H+KX-bRpBRv`z2D82cr~6
z&a)fxe0@7`_;jJ4XUD1@yUk8Pb~PV-5{?5$gEQ%s52e(SPaWuJ&}+RzZkp;xF8|eL
zzv!17yopVMcNxptZ%04IC2<tl`#=XI!W~*inV_O^%@q~5t!mk<0hXh^R0KV^XpaNd
zh<5#QzD-u><0!ZnoyWE=;Q1o{GI5-&tIARyfVZI>A~*Bpjpo@z5HjWsREP2jYPcZR
zG34rf>_0ttDjL^a5Ga~dR==TaS2KB!nU3ADb8h_D8`kmQZZ2LP_%q_&tL&F4E*H2l
z06GEI3l&e**4n1=42EP2>+AYMel6oUb&ee!7VBbK^0_Q#6^g6^t(9dSKifXTM)*b)
zfdM6t9b=PIA_KH1kF$-~X9M1})N9NCPQ4F;lK|^gL}^HUeC66#?Crk%u4Uq~befIC
zT>_{@;HXOP=6zy|=u?qVlG;b*k^<)dEHIyH?XI$-6AJA@g$oL_AmhZjA3O}^Vd8(S
z;Z&btq9lTJnGITTC!q3|^zy&=Rby0^Tov1V<CN~!6V<>sLS=GppQC19ylOjJ@aF(~
zqZ7PlBHq!wikgAlHdcTzrvb?;&n*#h#oxQ{wizJ4tQ$fJkxt&BAaQTGNy?h}YB9%d
zpwxn&;Fu8L@mEH2^h`Ukj{mif(@jMSVY!GWm_UBQPCoTT`w<#GTRb+}ZkUB$BBdjh
zjiDY3DS0Q;#%A(6K8gsbKquO=1k&$6ylN+af3j_Q7je2289jxN*_ER|!I_ZD4kbD^
z%7-lOp{7r>^jlw>p2cnQ4zcJWP<k)?0X6LG-AsZg5A@h58kU9cC<j_k&1n|h9i%;s
zwyfKXYEVkNH8y>b6oy}Uq5XQlzrP(HG9~~lQ1rAt`H7V53m4dBLM370W$hPrk?1<L
zjp{#-N{w#(k+I1kp*fhYC?55cIp0m2Uv8f?*CyS`<Pv8n7gV4IdLlre!I`fCORR@-
zb6A{G@8r$~5cBDcIo7-`FJ)fTu#t5Z6^HrQ_^e%VHSbi|GBWu8I&FkQ-u-!N7TW$0
zT`Cib?vt_+9?M9Y9UX0k=YaJ3tkj0Qp^{Cg-CS(-x^*N8qRcWKItXlpb3xC93AV#J
zwDT1h;Cf2gnZ&$?R<FKeyV}{f^~zT#U6ItLibaO~W);r!k-ElHoKFitEQ-PriYeJo
z*X*$w#|MNsy*B3p5G$5whFE<p3-5mMfbBV#X@CqH1TN4K5H_STF|e=w0$AcEsa$;!
zT>kV7B$v`jhSB2>J44EyFl%TjeqVU=J$tQVg>v$o<ark5i~`U1>YtxR+xG&8RMb(z
zR5O0JDo*bSy|KPu6ncn?8<-K0A1~QNG!9ue%(^VIRshzH$bK>(_upx~l{hDrLImc~
zpd9la=R`Lt!=j@biD4TJV_G4`r^)gC<?!ea&|$u_Bcc<QROlz>;*f0_&0VAhK`y<R
zqA5*`xTS+_81#R99|n_<T#K7V_8*zJ)?O&!cV0A~<<Y4^h*pVF=R^(m@nlpTBVjrf
z>Uw{{^-b(P6kVB@FDibzRCj2$+Hj-Y0_ekKDo&N^F57XCl==Ru>+LixsSd($R-QUo
z5i#POf{dX^uQ|<@zUed3lhbU)p%Yn-1GJF-=MLIexeS+4>4IdNo7gW0&5jUW&9)$O
zRWevjF+KYZF{N3e^vr1GpIl86!QlI<l8+!$TK%uRDX0JJSD8c<JClPg=0ek#>^`Yt
z@}W)?EKMZl%(m+>I9RmKVhOolO0^6_yK<*xDHbI3rllP`5HfBmQArG~XTPI!8Jbj#
za3WW7>=`+piuju)1~rOakS4)ACr_{-N5yyDyw#3*f+5IXg(xPlNHO!)t#;j2zLlW_
z@l<7!q+Pu322M4DKWVW|Tfm)IG)S;={%QAzFx4MzU-#x!XaNpf5BVQ8WRRO7J$=+C
z_VWt=LK>2A%mxv=U?ZhFcdfA}<5)maqzCe%9!0h$n;QrzT^0D59f8FA#|#@NRD|wV
z1!C)pPpFAa+-Yqx{Hp|BCH18Y2n8A6nnAGS9+ioW5i;tHl2?wi69>DdZcl1FP(?G+
zf91PS)9CzDTHBV}{CdaqJk}S*=6}DcjaAX#0|PZiW++rc6bBv|^+U61ilo_^alRH{
zYMwn$MvLEL$8qj>5c-UPZ8~U++xxHaas+#!VH~8Ona5{0`2|gYlxjGSBY%W`fC@S#
z!~S!NPbn!ku~vv0q*&M6djLbc$#ukF5S!Ti{UlUA)f+|T{A8Uj_Rs1^7LQE`U7xR=
zb+PTv^>?<56A#EaGn-Xn2MT?4gVHMU@UN(}pd>eQsP?G$j~(-fEmFj(cm;S+?v0lI
zlYDz^tp7Qf%_1&>pis!b;@2s#UV?HsJ%jj}@ikAAmVfi0<;nfy&n4mX25-e#?*d!&
zu>YD>EMr8u$=&?7z5F_tL}yc9l{_X*P2t%?@4as?+<{p0Fx8l{C~i~S%VDc?1|AD^
z$6?VD?&po2p$wLWPF#xBz5gycRx{qo4uBN%pztNRRN=rOhZw>RXm(WejT8)KJ4+3k
z1Z+}h5AgQTVNqqaA?BtZVUhB`6glv?v)b6QG#?j<80QNM1X;Y#mi&ib3l}0p8M+<n
zB-@$wd?78G!^%n<aeTM_s?(eow2G#$@j=n9R`Vwa>H0lZn`lCSi~w|6<Z?nQ4}Wuq
zeL9P6Ac`Brw_scIMX-=Al;=ME58I8aRrZZBT}32R1<aJ<X~I}Ja%3;cw9A)(jeuXr
z){teN)XF}+pJ66vDK_IgfzX$}<xF;^ake^ak#;NwCeW{F;p>gFCo%7Qtvo%qjFMSt
z@Xvp=+S)0?fyxu9GfHy74uaZ-e9waS`r4kuf-_M)G-Ng*m?;mxwNdnhtRaRK?p0tX
zhEuD??Xzz_@k!(m&e#^h_~dJ<pBU}OPh&oMhri?cmNgY-#@IE>t42pW%TE}yIw%UL
z!JX7VMpQRDn#m;dF`WJc#b{dGH`d|FxpoBZ8y1!pcG~rU=RhAljO2^8?5s;M%<%*!
z)4S|ZneET|+D9PWOhdOoSuRq<>`HdW5z#X!MkcQl9c*BTl<S>IBP%8zCx4OD9rUxj
z^wA+gasp4d{K_t?h0@h!di<g}@OI=dmC!0e0ntB8%HgN%uSECzty;bhrdKjmNv?}I
z8NAp!Qrg6mpd#lNh1KC$VaBkbLUean;;uMu>|&Y$vBWB$*?LU$EmmF{1k;g$1ORyG
zo=p?&x|@Aq<d*zl<=sNwcg&ww0+@nP6~BNMk!*9gRno^#Pp}V=8<wXFVFg_q-G)jt
z)iCR;lR%tkBJ?h`jdCXQPK)Lq<XPxyfE*RCs6dM0?HOwuNn{~Ey`}j6@sk;6Ag^D(
z*EZtcV8|~M9h7bjRJ0<y+qT-_U-Ne&Bv+m8Fws>-zAaD_J>TU#QQXCN7r$%wT#V4b
z9hJKBP)&^vV&<r<(o=8P(sLO|ay>#jD7;(>9^83o=IQ*$v#jGad`JwWh42IFO`B$-
zulzw&$2Ybslr^M(1kZgd%c>}`Av6(2HAknZt!pzSlPmmc$E0wH8_2q8dJ%F5Rk}B|
z{p6G5=^{3eMJ8@TZZ>4uoL(;f^NUNo>m`3oonZ|WFgQ&Z#6E6@`SA=pUYV*;mC+5g
zON7Fcs6Sv$)>gBDW5QLrqymZxMT^z6aViiAk+hTTZBbEuOK}JhH8q4cf~S$j-z{H&
zzu4$Q)s|P3P}JnR$Js5i%77o770t=sT!ApdQomcv@;Y%P30r%|AQ;sGcCHv@-v=}W
zmIQ~1ISMa%`p;|D=N*5XHv*%;f}mV}bKwBXyMyHy$bxs4<}90=O06qMEHCegJ|k=G
zbXA7t*|0^GYz^C-rRYgvKNgw@1C3JgfSpey=DLAJKrB$qrFfUzCLgF*b!!POz+%M4
zc646BP(PE<Wi6A}^M*E3wMXRHF?f*4L8*}`Ht7d@96ycwm24A#MYVy=6V-;=4@74A
zJ830Fj<vnNH<tx4y*AW7Y2eG#+uaEk1aVq@mQ_8Uzrr!2{LEnk1UVzO)X$_15XtQ3
z(L`oJIytMhx?~p9&Oue-7*9R<#bcudm^ZHXA$&xc6Xau78UKezM1Oq8{NWm_Z<x>m
zbOoZi<~wT$C|2f|V}Jx$grq+oL`5|Y>72kz_4m>qK<^Xved8g!SZogV4Adh(Vt|40
z)LsYe30dFd%<@#Rd<jsoU(^Xva7?<ACkz{EwQBO!{sf<OH3f6K->RuRw02ldJ&6tA
zIfGULN)savi|+Z=|0*nv$tprpxP+L#x68(Ca;-vN9m=!?2e6s5MML27ik(&(ridn%
zC7K<E+k^609CcP#?U_7f;bQ@)lFOqA<(%!-W0F5M$O<4AoeAJaut=GJ#l%slFX{id
zvX1>Dt1Q<le3ut#G?Ulz^(od{?pG4!4V*|Vd4OF+f?^jhvfn`C`SP9w0MZk*7GW_a
z{b}cY=5ve2<pw2xTeYF=Dlt3H29RH2kvS2N18zm3@#@aM4_K9AZb{~J+IdkL>1L{E
z#=L3!YPn>DUV1^x^4&PU2u{bH_Jj6_v_Wm~AHXg?+hab)@^oFhmraa%>Wr9cyFztm
zB+Xy9)pUlGEzh7Sf_7fe@Z^Y))9a?%oU8pZXfNs=!^Vxe^6P7M^FY7SQR)i0QF0n;
zH$LNQ_8>PgAJ|)Idd!GWziw5dnIeOD>bX#TxP89i3rpQO+w+VSmaX8E_>Y6)89#?B
zlC5o?IMgKCywfjm9tGRU@8qQc$C4^PqgnJ#_(fL?V&E9Su;jh{n?}`t;$Ep{0#+Sj
zs=X5JvpWeweVE7{Vu4&TkzXCM4x~x>dyjltumvL@9IAf%t>veFiMrl@z$>1|eIpN8
z)?B7o<;@Hr$dcoUO}!9yZpCPTN|P9d2teV5nwQEIqHRh<iyExZp3@%r>$H=i6i`G~
zMv+oBMicc^9x@B-P+^)~q6Ku)1H59btoL@lZ-c$Q0K$o);n2>3wWZ2|R=oe_-Ar0;
zt#087&?QBHKzs?N_@2VbQ6cqtJYYZwr*T6W*DVX|6=*ubb+I`tktWCuC%`JV{b#M^
zPID(6J%FdLh6-w=n<jNI|0gSb!BeXJhvp{xIQo@dKic6h`IWx-$GOAG&PdR0U;Jo~
zJm(kHx*<>9jQokHiSvK5r$yhuuLuF9FnH;Y2fnnn$ND{}X>L%}MDdsmfLe`(AB_0P
zexK++xRf8nolSJ%zopjqX`fPD6*Wy%L9HAVAgs1@vL*iLQi6D*{PZX;?D)mTzQTTP
zotTex*UA#2G46x6TJ$q3tNL_kFaVFv!8qwS8x(Si?MtEgsa}|Qr1X$!WIrQ@%=5|v
z)@uv*vRh*9SR{q4_6W2R;|Gt-vPVz$_36q;$oR*^X~jJH3<9(-mHnjoV><LPwTTHn
z#g|oWm~dx~QR0Xpo(Dq6!hJl*#!HeALuNAbUw(Fwh=rA+Ye`Wd!6-U?rpq`&lR1Jx
zO9{RCr`;UXeS7dI{wQkRU<!>CDdNSJ%X*NzV1|yFZYSW8BsFa9j@}N5PDxxl{tNqc
zKG!JGkk=z90AM~bbc6kfEn}Q`+L<U9CoTL`CAt$^&2(XIl~+|(fofiK+?MBTU}s;?
zz95!9W-^vQaC*rdpV*0YU0nNS6_8aE;6zY}k!mfjM~ykw_~GOy6Hej~b5om&(Y+v|
z41wmXAWeZ7N^VK#R0i7q`KxVIb$-I&nV=yaUkTz%Ae<<lH@4e?<$Qz!`*e0C7t;JR
z^Fwp2-wpmk3?`hekvVut=uf`m=$g^Y<9H-`RSJf?_(C^}9p1CGBYZ_Av5h#c%e$T^
ziQD;Bt11*wT8W6(&6Bt`trK@QiW<YIL7ICAMI9cthL<hx_{zS0kT((A!#MV01a*<X
zaP3Z+jm<^^beg9KS=ePLy>IWfWir+PM`SS^-~@GUo;d1CJFB<vF`P=~Jak-n<2&2`
z439^&IT%CCBspp4Pqpt_`EPrw&W>`Ad^Rk%$O)ag(nhh(@erAo_T&Xr$%7lp64A}~
zw5NP3De__;$h1lRr@m}?gZ&n;#Pk?Q^zX;HLo6TaWwl@Q`+8&*)#f)jrG6`KtN)^%
z02`Z`4ys&8J9~l$s|2U#OV*JBdiPfG$CYst)3kIjEFDK2ALtcMf+6Xog@Qxx_f?o|
zW4Mn=lD}~s0T`#=G0=*)*~?<n$O|2b?=63w$zwY;tY~YN`Vw_!lMQ9Eid>ayx_WK3
zl~4I}p)jvcHc9}Fr(|TSEqIa_K{TgQR8gb!AL6OwogAIK=`VZn9>1B$ll)z>i#1X<
zd5e9CuJzG`m_%onqU5ekwMUeG5mJFMqAdUq)A*10%_=MGFArgOdP5M5M;}Dbd`-J~
zHU~q)@7m{x`k~t~+#mj7_fFu?`h3<E@d0laV1H}2)sUVFuuhI+U*MkHGGm@q7Ij7V
zvD!M*X@Uhke4q^g=#{98qt46=B2nx+?wshOjfkh*is4zYpN=X{)M^;r7A|mD6Nzx-
zSv0wFf4|Jz=3<d>MD!8kn@7{YbtSv12$0X3ucI4i6vGe}KVs*EsIgZ*OX)lk$X!fp
z)-YR1`zQ1PGEWGqRc8A-E=Uj7t#X~c5;Glx6MPObqD=eZ)^_1HzP0)||4>dn>`1<<
zZMHpE!)F0?46h>};;*>idRK2^Af_j{z@V8qL?CkMuS0RmrI&^2dY$E$|JiVF3$54-
zJEP8W;WeuU+v_xFNItFh#o?e+)`-t)bd9x@<_W3AT&h<D(x)aG)Q!>(co^snu^dLz
zJFA>;C*J8_1IgBnnIf?kiBE5`5vMRc$?6=Pv`P}CjdbNN-`JxV6%<ux&T~-wK<89y
zZ)e+MPjHJnyxRJl_zXJ|3~!H((h{-#NKO(NU^!IKpSbxWYcrfXS|v!NtCSo?!8iQ!
zlr2(T2LTjRp9z1$=l6|ldxj5ZOkGg&9*TukUOB<utL3`~9!gO-%gKi{X_me6XxNjq
z8Y$aW@+u2g*oNTw=medzv#V7_aqmid?s>mUBpVpF$wD{X7gyi;;D!)gkZ@D%zwthM
z8#BS21n*{OdJ)WLxi(7S7p}LHALok@Hgau&*%f+Njz7yPfL#PciT=E94TUU|d8U9a
zao<$S5)S7{GEi2sYvirt;$Tn3*Eq}8>j_EW@}89;-v_^p)d>T<=w3U>0GYfXgUO^J
zZ9p~gp3-bK#eVDPAJHDiC+QA4$^EL&tuuC)rIK>ye4j$PJ+NGS`g_mVd5E0WUFlwT
zw^}+w`SW?Ua;*zWKPSbKbds>h8*H@1KG*X&y2(4@GKSzc?5`X>Bfmjxhr;3XZ1INR
z?g0OBVzgNfu)Y*HQzg|HI~FYeZo4SkFDT2a@MRQVEzUsq(e^$*6sAFi8bbQ8QHbQ^
zYwYL=F7{zI5bh)qOKB*I`L%U<bmtpwS2cgMf;_ATI|p1H;oaNW&ZWGS&*p3fm99Zn
zK@~o+#J0;K$H~*oLYhwC=LvV5cDiL?`niK9agK&3Z@Oi%eT8osJTh5wrlX~2j=r62
zLjc#fM>dL#q;O&U27rHFsNHz%VmlXognf{kn2uXUZw?0XQB`ZSBmAAbDN(k#=v-oh
zwLjG|AYo`AIs6{)jxU`v-<Evre-x3(eTi@(XQ34*FT`w6Z?^XHOv}N}%Y69pS!DP4
z$WPYTpX7Uac9>b^|1*c;)22z?RCwKr08Nm>kmB*mLgI_O0u;70Ss$^#FlziD@KwPH
zyjGg4d~4pLb_;$UyDU6BP8)dUke$X0&RT5?*=Yb0&>DzGF$CUF@`9tHUZCg54k99A
zWFsBfjUw{)V^0n@C8-f+QnOH_^>-l&ur}vQK_NbvL9xa>lP({L$MUs1kBV-1gvYj`
zbP5iTN6ti_O#iEgMdKIx6{WV-N>9Z2aP43sdUBBuCVWO=en3Q$jX{LZet4Z_B6z$y
zuEO!92Z0hXC>)~K_UP!(8-2wtB?2d~r$Yw{kph<K_8vJqrm0<S1~2uQiT-QV9`m`A
z5A{EPMe-C8CF33yceNx1N$Z2DwzE0!5C-f$E}SI-@}TcgeO)+s=(EbvfA4cF1gc-$
z))O2=-hQ`4v{_HkA#DUzMV!e@nHaWKHNb?YpIJ^9HW<MOTOF`N-3%e`<PmrPu7|ET
z1#j5=92Xn<iUo=)m=7BQ+}K-Djd;aA{KbDzezu%^DcVMiW~~0&F4)h!(`7DM^Q866
z5GczArg0Tte9cxcSq7v+J}OCvy6vYd(6df|@3N=Hm8k=allzRw-PuFzj%Hj?4j+es
zcgok1SFo`~^r04;LQ&v+M2?mQXrS?>cCX?JqIvqbyOs-SrQ?^|aRY*zEGm}gc|cv6
zs(IBoDdGPRn`GTEz#xl1{1)%8hRTyZ@Qf}gGx=|s9j)*l?$_3oGu9}bJ}flc@MdE_
zoM@|V@Q1fg9&{vZJulm~5-{+zesRBOY40^D*1Q8h_Ns1HJkgZ4NGNr)rg!sAAS!aF
z;v+$dJeC%p8nUiLJF`Z#NO2^#gbF1Un^LSJ7kc+p>)aoicTkL)5b@Cb!rxP^Q%JS-
zhG#=NR49NXb_qW3yD&Q8EB9-t(34q&jiIzRO>h~|RaNZ9Jl_bNGKXES5GE@pkNu!P
zbK_<!4FE@PkdNdQ#dRfH>{zbg8oI<b${Zc~W>7UCdykKZF8{^GfNt>{zJY46KrrVL
z-#6%I>m<-jJTjsf?Mt}0dhjf(+1oD=G~px4oXBu^rP9nd?U=qiQT8N0AGbxC=u}l_
z+6~Y61$n9zyoWy*%(6FL@GTccS+2`CKSQE^@_ZN5x&Y*<2d~w-V>WegR8ybUJr(W2
zx8sFKo?uGmkk5PQLz~D-vT56eM3}H`BqjztntC3mQq|~wk~P}8oI#XNm<ga7PS5*(
zn!Q!XE6ax<0({|YWr_!)#W`n-okw%W;J7do3KUz(q7Ch4J*hxI=GteC#yFsKRXV8I
zqBeuCZ<@HckKH?j=f_F~BZ2M^l*VH?EFIZs-XigIo#<hiV*JJ2Qdr~(4mn{%emBng
z3p9)!CSodSUs8awADmAy<H6u3lax~|>?=36j~#f8nc{r{P!(nraCnl}C2NmUUUdea
z60%Bu#vW)s_JO{^b3(eQFCM@5mQcQdCa0-(=OCY84w*&g1&1v@XGK{fP9XWwCN_43
z4JgfT5NZIw)Wq3KZ4`bsFY8Q(3_Z;56X0L3j@|u;Kk{PlUli9zQ|79)yW7v_4_Mj>
z+$sz+IBJmUk=W;|L<>oB$gVmn7g(q)w#e|951zhshc$VPrweN<WQqax_-oCttpDLG
zRhvZbyu4CDxn8O>t<)CX#B_<xiEkvxne$@#rqX%VK|oE?fM=JLx`gYU7uY9&gsiJV
zDD@O`ytz%{w9})O>^BfS!HU=^s@?f=dWWz>`eazM)440@0uw+BlEzr(WXndN7}2=-
z8TLaI|0)9lwQx2mf+y1LOH?=Frbp)w4`m7PYh63i%f3}=V%}L+i_Pg^zIUL(3(wD$
z6>I9>^~upT3LmL#1VqgvAvP&?Q<$9YCG2UE2s*#z!B^#NVcRB|5Agvgfet>rf$ht1
zDGWbK=1iPnNK_Fv0YHn+0MkCf$--qMb&m*xcIXV8vNs4Y4IO!8>6o-|_pY8+IoE$i
zgGTXw;@eyFw7b!nnhrIy(x2rBbhzBsWwNBnafcEI?ddF#2W5$zfi&)*UH^Q!pJk%q
zg7&0Qw_15B$+2#a^?jGwQj<Fj1uq$jRg`}?aKAl&J@O%A8J|iLI`e-!$F4q==f-Yj
zj7yT@<fa$4S+~!E^x`;_#VxL<uU}<#L1oBc_bC|-b(dWPRSHS`J=Y@a9d2`&;+R&a
z=n79yC1*T&TxIJ+S&4jWiDO)D7_NO)$#P5mS}$lJn4D0jeSRgI9BvW!MI=FL#%L;v
z;-y7{+6VITi}s{U0D+Zr$I6uf49(q4Q%rfz1ec|Y)AO=Mt2sE5Dzghe{@1q5&i^xJ
zv{9*8W8sk63bpMlpiWkhgW+gQ3;Z3JMe91+cC<40_Xe2D&W1qVN|lCp{+aTyK1F1Y
ze5C#-s%O0g+`$!A{TyGY@(rf2192lWZ_4oL0^14Kls(NPVYJmvP6*sC)|<GJ=YR2r
zr9dR$7xP)5P~j*;`_UA85m$@9cPf$-#&!yU=$2RPZ!7?MsuQg?0{TLYkY=u8luuN{
zl}lMn{Asyt!;Xz6fk3l6$r&TFxB;S8qL^<?v7=}C&jrzj=$e8W973n){!lS`Y=wV#
z5P~4o>@wEcj|U4?Uze}6>)ZPCJ5r$x%$}Q`Ef)kH4e#iDhOOrvh^Fjwz$HCqerStb
z@g}!XxLuqB`qaobgN_|mnuak1*krXe5_T3$WhR=^f$qCkSdY8>&+UezlLzx>VVyTE
zw?_lE*H3O$A=(YMk%{?xg?%p1RM8lOe7DxgRT9?HeSz(jwQZiblmjI>%79*faK5;i
z39P!-ngKs@aX>l=kUXp<_!<YJHcuR}&JK<COPu1F>=WQudakukZuBc1$zi8U&+$09
z{O_%_lNIRlI2Ar%EIrOs?^Ry**ao|jNk><5>`A_YcrUkHnqejnT6`Gs;eyypK`+X(
zwk>&_`&uEJAjSn7;=$kSs^DAq<)kb2KHD2b!ab|0NM`z2l-~5E!XXdoznCkky!4Kb
z?e%Yc+4|*R&xmyy+j*bb&r4kS;nM+aseB?a|7zQ<Oh51~ry>*%_KGzsT4{!}*nYa*
z#~kD*scMC`h87v&#FSlwY%X3jPnhqAi7`)lTU8DeXKwL#1&pyzG1Sdd1>>!J(+cq$
z7(P@EnNI)}Hqzv;>=<YaOl*AaB|F;>q*}VldazN0OC1v@0AmnQx9<~L*}$qijwuJd
z3Esah@yI!CY?ksODvcr$4G&j-9s-KuQV{dM4+tL`Bbe+23_v>n@H_3dbDLQ{5FH=d
zZ>WnI&l;IeV`FtEkYoAEN_$n9dvno}5!85ZdsXwM|Js%uzb0N*GA0tbcGx$zOaKo8
zC0>nMASj@@aHah@F#I`v6h2QJMad<YvdZ2bf%C*!)P+uLVY9IdE?H$e^ZgFTgF?bA
zFQz7fWpn3U-`J75Q%A#xf=K)>U0C*>wGXghm;)jWhqL6XHGI!r1*CW3Rcxh`jl_@~
zaJ$W99m^amJ&H;H?hBjoFq6(YGUg%fwyM30cz*A%wccNmCuSeOeHQM@D!M+|mtix+
z*poE^8um0$s1w-pyHyy0*eb87kZ&~f1-Sxb0;1taE|Exj@fhC%5?(@k=7Ln;KuoHe
zi9GMh;qF7#o_3G?0(n{rUf2O775K(kms#bCE-6W6Ib7@RJfgj4THTZU`{mAtuvqf2
zVx&zcX^y(?m!2yP;fd*xpTC^L@ZJx40D=VmJ1fhV3c&ay(_Ul0ApY>|@oeNCqd?<L
zTKuU^S`hC7Kz8sDc&o@(`WLqD8~Q7&J)V?-2Wwh|=zD7%vSGl|N)OUg4+$sk1V3aS
zo_nYLL1va!>Q3(-!bFnVRKR;D(S6IT(fDwUp%jma`(I0?KD5*};Ba$WJKC!VE4V&q
zDDiY_`8f5K+6Uocd%hsPpuuciYF7swrgssfS;eEiGw9`fIWob#cMv2S%98|vkh<o!
zw;!}MK!m&uY?gX|zfYl1=dW!Yh!+>wa?I86VL7Cxc&IoKl~!1h;4md-lI?OiG?;IG
z=^UE@&Z-Eil);DkYi*H=r$-~CE2utIWFjn#hH0%6Rd(3`VU!|51$IunSVJ=HfB@*Y
zACYJD0-5RZgVt7dnWU;JhvXF`JDf>J4^2d`{T!67*c5RJQGVCDE3FH}Y;Nr1DR@lg
zU;+_mFdcu$X8#nfp{bxR$;noxH+BZL922R7H}`fT#a4;}Dw3t-S87fZNL{-Qi*8!y
zZzgi3r=-(pgjpvJT;Yd{%hvo8(_*(+flcdd8uY$@UkY8r2Q9bLxAD%_cqP~X0w*Fv
zXnY)smSS7(WpYBhRJnurmTae1iH0ZHwcT9CX}GRq*7+I)Tsek&m)iopiQbdRimOl;
z@%>_(1=_(Hge^#1z}Y|LjXkh8Us1QjPP*A;qHnV3KSXg0ezAG4@=~vND0M&_@&b2U
z{kffegx}FV9Rd`vme<u6ePwe=^CDbbvvLNPWdzieGx4ECqzM@$kQ<v&=`)T8;G1{8
zZ4VPevjQT8L9|npmy`736lHI&7S)^02a-Le(o1B!(B<~mYEjNRerK2TJndo3hBxC|
zRV}J8(`RHrDT-o@-o&V*x9r`=eLe=H=a!#_rk<q!wTo>9py+_H0sdB??5#a%F}R^N
zBiFID$wrCt`2ZbJ87&;fe`%#nyO<Yx--O&iQYb3P!5dX5&Hh<&$kLSTgHPZjk;HQ~
zY#^*wY?Qhg3Fq@;#G7rmYcXA@<{m&3YC}<`hAD&6Y#p>$ha!t@XcnK7LHCJNKLhZm
zopx<k-|v{A!MMl1rv;I}|DJt{0tvRJaQOC22~N<PcV*aV=uKZPxcfp3wAUNXwI?6o
zj<_C*K{#MSO(HuYoCPwky1fMy#ON<A!4H7DBFm01SmyJ2!^-G@O}oxN62padkhjGP
zS|6~s!E!Sh6kl?Ge5L<Edv>VbfOCvA5E>|CL{Etb4Ou5Ok-yjGg=e<Yq2_WI1&HIx
zwUmB4c+l#AlrXY>$+D?bFIZmxw;egeFVOHuGC^#~SYSB5EM!G>yD?EG?y?hjjP-Wf
ze3DW;kEA2ah#;3hQf$0k2kqj^l95w<=n6`U4tE+m*2$T<G*ftLBu_v#FbRHtApe&;
zNm!@JD*Yz<7QI`M)zlp}lOT&-fukk&AHilTy#2Rbco<(1Xl0=+ODqm~$~Ww_7d9Y-
zI<uyzHX@#jI#Uvs`!bf<^g}!@RRCn)QgsfLM<DzSyZicNd;C)F)S*jYZc5cDIg>fX
z(lli{Fx6EeasYD+IsuNyH8t(!RXkB0Z%1Q18_``;CR^^7{~)!NrOI*llF^acwX!69
z!b#EUJ^WoFUfXk&h@))a*uM56)5$1$qW;6dv`|_328fA_^4jV4w7guoI)xdrL*r*W
zZaUW1f9~6FKu%nAk?I|Y9_8Gpi+t~P5$U89R|mI=XYJi&$1Zd(7=33(v5#cIT{y>Y
zu+f45C=y5?se*N4rlwAmxM7fu#XDi^wFej_d|^j25hw3=uSwn%7+;VNS{O5bi}qPM
z&<gttjz>Pq01}yqZvynY|7x$I>A8!br`#R~cuTbS+inHVLEn|lyG|$JL<IW4Vsq;s
zw5wnC>+NzmUrkLOm8INp(7H|L&oqaJ5F~z=?~NR&-J0H-KiNehIEHN<#`&*9){yZI
zLy6_wQ)D+GHuoJ7-42qD(+BXb=mvC$Kfm9}ehpAkH~fAtVAh}ecCwl1CKj*{Oc%5?
zejvj2fjx*yllG<xLK}mVv*IduMlS96#x6TTn6=ne@*><iq<Lg^-#V+p{$m6^O7n3q
zg-0pV@cza2;~=C6dK?@l$+@$FO6ps_paA8AL$d)DB(+K0S}*#A9Ht|M|1eY2nkV|#
zi7rDLgI!{I;+#5Vg8v^|=N+F#wT0`kp;(TnC>GGn3JNG_dJ$U)y&D2ZQ4C24ku(y5
z6bqu*5V0Q>>;)CE7Zj|Zs3?jaJAws85LAl2aG!VW@1xv%|IlBU`DSL9Ro_)MU}A{T
z_Frb#W0x?5E*!<kyh5~qet9pjyD$KvT8;GBpU^*|>Av=}JU~^9Ky)f+meGHgy;$p#
zo70kIXW;e8yv8PH^NRkq-VI@%WD(J+LzPQXkF&C@eyR^pTulnByIBNAIFROU8w%M&
zsyKw6ovia?QYKh7{x5u&a6G(GfaGWyauQR6Q)A(P%EMDvVHUILBxom@CQC~@^edYN
z+cV!le&{*@L#m|Wxu0_Ejcfg*MSL{0WX@2y;_CCv_IGX42QdI%JRu=SgH}0bf!%Zk
z!}3Pv+@6s5W(Z>?tD`8N<n#e5uc(2AFos@beJYu}r<zsQVbp^vAkrkc7cQ}H|6m}V
zF9hz72qMr}!L#JBWaLI4Tk1iGJalrAY=hwLp{-e>!&X?^eCP47L>{Mr&q?TlZSNmX
zPN55pJ|&7Xuoav&34P!Dg5A`LF9K@vI^z3so!DI7_{DYBOQcV_F1tj+1GbjXa2-;~
zmb`55rT9>Lm(=NGKTlKwE_tAR>afp!F?}E@r1B{+q1p4&?zh;zWxn;>>^G16I<AY;
z<`o<D_uDN16Rc~edMf#3Na&L*zqO@gQ>on>q>1Ek1Z%|)@q;V4O4KM(QHI#wsg`!e
zGJEhf|E2=0LK38nPJGKAePf4_B!GCQVb)fi(gkqLyVJgY*H<Ay0?IK(t%5glN)RMO
z(k4GU{yqD!D?bZmv<ZVddHi^Y6jZ-q-|p^vfF8rSsU$5TGg~RAIm@k6XCF#e&yxfs
zf*9U;z}kG|S9NrXa0&lz6?~?aV&O+uJ!DsW?Aze=uBE;U9Kzb6P3meX&P>eK8alpU
z*+IcPq?kpEM{G-YbAg}yoInMoJXK^sdc-p}jUS*|2jL{r4aXY--g><~lHu<hKoHAq
zKDh;HQPaolk8cB`D-2J#N`ipyC!P&}#lSa@>S1?6O+i~@2_+hh&<C4P(64qf!53tu
zFbTw|AbPYN-rHN2k>{V(>W8FO_#(8O1%u<oE$7<-&p5H1fiiOX1%u<Qzb&;JfH7DC
z%nd5HV21F-UGr_6Y-}BY<E@-HvtCl2Ot2$Fb~|1dNVPch_mo(n9kLh?f>fH+z_nJ3
z*UT6Ez-1Tl6h?4o-Luwu9^=MWrHme)lHMv6z>8xMvcZ=vvLp87VFh|rQ-SfGfQ+-T
zU(hjc+XLNTXf;)K(<==bjf^|Se#W1LVKFtjhGfQcuSIRV*hUmGd=ftp#(>z+h?m`W
znQAp%xRLaklKnIolFpK+o`*~y7W=8OwgTu1-QJ6oBb{{R1dej&yQi+Pb06@z787Un
z{^saSr2MA2wtB`6Z$Aetscy8pq?O^IFD&!StmuVOTTW=3w-Xu%DF{hw^bx@g-e8{)
zS!02_)v9Sg4fOz}W3XlwQm_BnE+N>*bM!n@1W{-K0~)^6%C7e7^b8oSZGrC{BiZRb
z;tL?Nx`aM8iVrCHl01Sh?4;%3B<v`m{z*tfDijct)nC|u7yET=t2$*!VEXNJON&#l
z<YY1hw*}K>eck_srGSmeH&!!DityYPzw`sU^Lr=lZH1d$XZSrnv|+1Rwq%H1G@z4l
z1SZy@`-z?+qz>(1D<?P+^x^PY_!nOzJ369;^$^~md^4TgDbm4bNjfvE=%7}%Y2gl=
z0?m?Mo~MNP_p9xH-5F>iuTf!b^k`izlAX{4WKc5KYWV@mR-u{FU^@lW;Nx9W*RAr`
zdbbLN{N*pYxH@)>^^`X+p8(aWm<xU)40_~d`x&xgce|HV2N{Mn5D+H%cCmK%{%*^K
z0;@2DlOYrf%Tc6o`FtCD5T9cUq1nVqWF*DtGzcuFXvP-1T*Zon#JuNvsd9{@6hY<4
zvuBkbI@wkT_Y#T>2u=@GjBBo!oMv;CWlJO4hB|_z2pkC$v~wqWHQew6<|lDkvUowE
zef5t2egNsch!cemDuBn4m~NFHbCO;C9s8`LcG)fARQUxPZ94XYOO6THXk{cMIK}U|
z*>0WU)PhKXz13Qg)OD;{7VPQub}E_)e(f?*yUPO0-zgtzEAb_^v2ikgu^M=vi4j9!
z{8?vM-%Ng#6Lpt<3MR3RW9CrwU+gMbN1my*?T);xA-~%PZ@T=(aQ7-LzL_bzA?jim
z5(<S_bSkBbd@L1ScF$s)2;9kEok-$mgi7!0G}`Wf1emTsjo?>0btRlr8ZktN{c4xV
z0TbHpmX<sef~#X~AV9X*OW<7+e&nSYui9Og`UBnS8%K>|k-V<(y#{-|lob>}N=dQn
z{3@><A&vnR6DaV$@yR%QNgYRyvNggyGty-fQXjkgWd9`R-E1rF(Ve}&vk?#TNe6Z?
zpe24CCV(S5wX{R;^;Ik&XDWf-=V$M*j6B9k*yZZ_Nxg=umh9h2{zTu<+!#48t8cA>
z!CJQVzu8GkeZL_F!O$Gp2oK-Z-<~pGO<H1bY_JPc%rBj)5pAXqORe98Nh{HZ;27ND
za~oFL+vELC9~4i*BE`&r>i1e@heCDi57@;7XKY`$GTyJpRo;8Y8apY#6|Qm75jvmF
z6Uuc;N@jH1S2kQ$n3P_9NNEq}t-kq;ZN!RZ3%jd-zq~@tZrld@<q`iq85gb!rNHa-
z7vV4oh^Icc>BO)gGAA3iYK3=iJM>u`xb7hveHvp|8w488kcE^l-TcbscJ|q<9WFaf
z97tGTe*qEQww+&K=W44UH3dNAbq6|qXOxwRPMJbU9jGYmjIknC7HRh@wEfu*e1$=k
z2?tRM@XSH>aJfrz7LPn1w{gzVaRrL%F^#KN+M&z&fzI_7EGepyPKULHAcQo*1NKi{
zbES`o<IG)B5Fg{C2Uginc?=01P2;nPgkBZ$mJ9qwowboTPV^a}gP|wgg`0biwZ=lf
ziAhEIO)a>f2g=JDELT_@z`|(qZ<RLWZ_BN-JA*SxB{o_iVX2NMIh@ilWL;iV+d6gB
zx-ij7<zcI~Ucm6DYivC-konO|fwUk`ia7#Vb-i!8WAEr@k^G~t+PbTJ&q;6as2)8+
zXu<}t`=uSPcqMADl8_6FCzX~TJ=MbQ?Zp!zX;?85a`QN;0?uOX>o!|1MmU7q)x81P
z@0V_{!v&qN^Nx_CzC4Cj0(}Z7Wg8l+lD;opqtX2inzh|%ciqW-gj5^M{A$kNRUkWC
z!GfH3tuig#+g=w22B_2Ys2!)-tp6;2*M=VNKPyxO+K+{U7Kbjg*19Y}6dM+o$CKfn
z{lUJLJFZhB3Co9zhpxA!n;<gnw?ZexxYPtf9>=SH+Ye{@+uaBuo7thF35%@f30zLZ
z{iz?|x5Hns*I{-pvi~7>O0_*Q9n$C7?+Ohjt-fS}m=bdE$Z!mWZ<N*9u#O2j(ZR}Y
zCR41(bdGMc_h57ueULm&h1vDVvN!E~lrHSi&GWHU$j^&59%Xgd_l{&yvq^Fh?J`I$
zhJr`6v}iAX(T)*Mq!lW>`g`jRR!Pi<vo?3a@k76@vo5oCSR9JQdE&unHF6~4#$H`%
zr{Xl=P`D?lF4ZO2y%?TYG#rEneBxfqfj8Kce1Aisz!rk>p}d#83Epz%6gyX&qxNt?
zS*ki6^>I+@!6z_gPs5T`rvKEBSxK#ur5CqP{pS-tul~;?1;k05Mryou?T+4W=Sms_
zDVanb$<52`>eG0}VZuSmGYe37y$+o~>g&VZ`q;hcz9HS}zvikkT4_(%)2_|+tHmfX
zRl<Zr;y#^XllZmRM$Sc<fE3yjF|j6_Y_S3|7y<&LNd`lrlAD6%$~Z}S!z7>opHu-+
zNbLTYkq#Hi3jThB{Y%XVw29M?PSvETC1TPa{%So2`vZ7RXj9V61TiwT<JQ~mAxN0m
z4buKA{g}9f6j$b6ZZ!KXn=fNNRCIb^Bze#rh7rfT9Pq16Cvk!y6*Xe)*Qhcn5sCSG
zi9H#rV^wks>n3A>dhu;<*yp?$Vx<9F&>)KTIm`_EK!xLXPhCHRUnJAFlIBwtM1z<I
zd+<|{?z+@k4P@QaLZa~pT&Nw}N^!L_$3Uy&l1Ok$mF<2JzXg!cY@_Jp|JuhSA)r{m
z1<{`fRd=f0y{zwO2gw!<Uas>Ft>4KD5fGK;6%~J_SkudW7M)>4@PUviJ@R{dS$aF9
zf4HV1JBcZ^v^Emvy6%0uP~co{exyAOLJWrnjAa|=3vor%d1uB^gKTw~3n0~4i#Rx|
zjuTT7LTKaP_Qe_Sg^)lLnfK4bXaPHsS$*0oX3ufgOT6h22ZD|z0~u^yYB%oXkI9mB
z9UmZq=O43;a(4tYSJ4_+s#xCR#4@`-D6lZr22yWyTAj`;*LdW$<F_Eso-DE9%1W0;
z69523V?-sqlYISR<$1Pi8~+8R2$hpa@Xwb6xpbmke;k(u1uMRVU}h5BDE!IxlPQW9
zSX)ozID~ANUf&<>3HcR7&9GHi6Wk3hZy|JuGlqx@V@*=fC>@R9#WqD|{}9Ufe||wS
z6>f|FiaGDfAwh~SE4w#&^0^F!3UD$B3*26at7@;*^_Q`f>6&j)Go0kjG<#iY?Zxxl
zs9%Q)53p-PiDU?dBLwj1G&?E7g=!({SD3Nj2dNlve`2yM`&1kD54$fVi2)=9n5nYF
z54+n#{e1sOl*VKV%S*yB1A6T-n}3zxqidZ~*p!D%KGp+v=EZ)wlV`pGA?XW)pRn(c
zKM>HiRu)QOz$wv#TK??0R&s$;U|7!WEu#a3ELZ5Lf6dS;>;whZ$y}LW0spwlMh1AN
z0AE~bs{y)W#zN&Bq-=k^-5z3k1v=8w<pOrDNVxNgq@C-ndV{qV@M}GvEn_<B`Mb4{
zp{VXX`h~C({1q0X`zRZz2mrbsD#T5O3EalfLanrM|MSK5`p8BtJJORy$sg|4l4uxj
zL_QK`PRM&zI<1cWl)`M^Xnh5DO8|#Vxnu}mwj}fjuR#a{#@jR5VRUF)E(*);%#nRW
zbQo9xd3t!L=mQ~AX=`laM)rdwI{^lP!7zOw8te<C{^n1t!zuoQV!FB!xpTvV(Y*K>
z2h#^hp^PR3gi097{sQ~*tA+Sf+b%!xr_JFqYDe2Hi9y8!EBW7+sUzO!?bI)$r8!)S
zgmxj4wX%{EQI%y2u&`b4U;{(6(mGPL2mNZdjqy))mzo+!4nDVczR6noK6>Sh(w$kK
zr>ELQsjN>r$S}!KoXR8xJG<6q-sf*i78@!{mA6Ta75+l7)^GM*i`7RYT0yU8cS(&p
zy5t5uujEV{9X$(mzH@@D8p#JF(L?Dda3+(T)`=tk!p2mM<iq%Lyyc+2b{u)n?7$GY
zR05s6e|7mM*2bL13*B$3<$N~p8*|bwsmCc{QLzxR92CQZIzX<6*sg&*0^`V;l-%IN
zCRXdGVK!I@fEGm6+1g5w-*EG~Gwq9TlL!f}wC6jmsIi%p2(o7$98q?tJG{z_&yMy#
zBz2*{Vp3x{?t_+&3LVIlFI#N){pM*}VHgVblHvlAFM9~7Etu<-Qd=6JD!G#s2?B!B
zZJ3QE)1-yXe42@8qhnG+6%6U<+_?018_}8@B-%9ARtwq?1%Fy#;}iZciG5U;Ci4j3
zJcne(mk)n!J@AW>z*Mf&rAOqQC5-8lR<>auUzRXhD%CJ0!y#8M4zbO|PT&~=;sL4+
zU3oF3pre;o+mD-lID={{{-&lE!<o|ELYpt@!jmbVsIo-yauT{@=8tu>>5Rm)nX2is
zs(M9=J7B2%^Q;-RzpHKhPFRui=GKCu5buLdR_55fY%dRX!DkI83CdLeYrLiW!ejVf
zI#`DSHu?iXZ4H;(3R&JVI=08iF#=i1EADouRi9FtkGI}z9H|!WP%wksaEi^SXXZc_
z3F#UDIu%;tGiG=+VEhVu@_GMoUz|@!jTY-PasZvY)5eYR8wHifSJ|FEqPs4$WnAa2
z-DMf`CKt`sDhW`Ak5I<uuiGL_2==(U`af}UOF+45hT0sNY3zNi&Z@+1Wee5}w>x_K
zReVppItmwMl9QL9=VXf=IMiMo{{Q&}9SU&U{3mx0vA#q7CxHZlFh%fEW9>em|LWJF
zHdOdVqI^{+22fDz6A+K%#|nSxw%RU5p83Kyr0AeM_Mb(Su};hBMdvyVhVN{vOLC)T
z+~{fz+D|@ANw>2P^$}r&VWx3-X08^e-RV{(HpRIpr<e|jA02f<>LJK)G$Gpv4xVV8
zAdz3QYwF+QTyFMJ?y@_QGR6x2vgbq?5Df8Y$W#B(enI<`BW*wWpwuZh@lI--*ci-w
zEoo_OHL*1gtYJ~}Q&XEMFvAacF%XgCHCr~?MH;o&ws_XAuMYMF^oo>~=A1Czy4>yC
z8`b~~jXU6Bp+*<&cn#2B*%*7Cpa8pFfI$bZ=1CR(J;ut5{3@0PT8#PcbVEEfx{_k6
zQgw=Brca(@UByuuQ5P!N6MY;qqCYp;`k6k^FbFk&gWsh5glNJ4O7TKbG}^SsonDJU
zHr#3j(qjIX&b1Z)<-JJ|ky&6s1JZJ@`9zy{k3UqT2u~vDB_En;_|ug7?m5eUp->Hq
z3yTzBkHqU$mR{jnrduTnE%=?BsLr~L{@vPD`7L5>I{nA>BMl%}ti67>269>5FAHWt
z2deHk@?91<3QWCDcmK^M1hpKdyuG-F^RP+GQ-+6h<GSChUp+HZ^R$L45uTq=baa!{
zgPTIS<U|G?z?m<+b-+J%ud2I9({5z0lw5gDx;JYq-8J<jkYMyf5y$u9&3VW~hUy(3
z*(I+LO_2|c9WDHXLo8Xk_FJtfhB`L}$wYCmhw!GX<U|%Ahgrg83%;~JnuOn};ioJD
z8dtG^Z~kS+;GJujGBRYi`vcQg*^ztub>b7aWc*wbvR(7k+uA06u0%-CIWKslFAl`h
z_kZ?!bH9tbOCMOtF%H1x`)%H{-85|=rbdu>_3s5@Vm*pm+k3CDdYreUR4*iPhBRWo
zrFQLP-*A9j-#Kg?KMa+65gg{V2vnKOvk)HheDPf=QWU4P0Sx9HBe&RfuXB%Foo%Uk
zVjCnLh7tpY5PrPCZjs-IBeIs()^Zu#dRac+j=-UT;W<Z7DKr8dzWB)&-p`;^4XcDT
z1;=69Kv>}?3pd!RxqOr4O|8EOPw^*qYS?jhxcF0%cm#{gf*{J>$fjU`-<<QWT`Q<D
zq%wXl5ufg99xbNX^!~ma<lq4AFe0CR-5PuE5k3dEs_i8v9@yFM_In@y(3@nM;c@xZ
z+yAiZ287SEM9!F0>azmR{%zL|M&toP5&1%Ti?V}bd($A>DCSb_Pr}aPtPB<+8e&a?
zFHxjpl>kHt{mA}R0G~ZwV=oE`Q}PH2g|4b_zriGa-()9)N$3t)=iV6+0}Z;md5e8l
z#|^4(unU0!y@TiFP5b~)em;P$DIMctHx#1acOrH#+%@$XECU{sSApoDgibM#;-<Fm
z0zVbB7ki*)G?L<P|6>P)kBC?xBRuumQrB04PNVhv*sBltYIgSshn~~EPx{M#Mk_Fk
z-fG}NM+l`GYS?FPvDc~f=MLyBMVV41!T<E83c>hnvs-E#auOk%9)U$6C#75sSZ6Qs
zIdppgy%yO~G0Iav*aeUJMS59K>IKz9X@pMw?g#7a{)e3c30Goz&^j4HpRm?GeTb{L
z<t5d%9KKA<kHP)(v^{zlmvx*HebtinHs0l;@n8FAf5t@2$M+AM0M=0oXCSQ2YwZ08
zee1i|0_ms+H7#YmdFpem?9sEr2<1$7089)Be(2Mfr&Rra*Vwmn!b&!(UeMbCasB*V
zQqQX4vt+qbyDJ@uFIiJc9A9CY3tzF-hdC)Ci%LW0nC5p?H`_us7t;DoFt=@ToGJGG
z)n1U<q^4z6lRSrz{d%=|>RM1zx#WqcgKWi(#nyK?zZIsekSd$N8|M6Iw`#rBrN6du
zG+mx3n!z6X&MJ5F%Y?iuq-VJyTDaqTOZg*t)T4)Por}Y{=pz2(ZnDBtc~a#Q)%fUs
z*rY6g6A!UXTe+bMOAP?<kxd7x119{*nrjd|11<{td8XCthgkmz;zC7(exXE!@gqza
zMeDZqZljYF`mhkeC>WXvu~?^Uuvj7i8<vQbJ4Y}RGhLrz-{P%tqfa8yR9wc55wUFu
zH^}Y)BXT`;&{6iVb`Z3f$&=X%necJJe;*uU^N|=yvrZB)8T<%&@wmykS<#W}{BTX?
zOT0em){~;h@X!3-_LU$dJw)*<z28?cNkL4b>GyUt5htGJC>D9p;TV8VzO##N;W7!i
z<uw7FMB3}fp{h-G+hV_?EWt!Gbr(lHHrcJO`JJH1{WLbAbPzQzy&QsOUs_M{X`xG+
zYAJ<GLS#BwvA_Cr(yc10(n&>0vo1_>zjdM6iV(4qYL|hetg)yWpV>8%bjdtBvhp1o
zl=dd;53?{$Yq|fPsdp@K7#MvqE}0XbtBkq(SKGUHI(|zNg`JxUZ2Z>FxjR6+CEork
zQNkhL_?y@4sq4dI2(jcF^W^<MyV%xU$Hpni&QJf&*LSXc+iw3V^pb4c9^{l$a{M=T
zt*A`4fjE78Vg=Noqz$#hWA!RNutN^wcgcF%0urvvlpw`Bj=jl#mfefu$Enq3>y8|z
znRnS>?!eW>>dr-XWOg~nkJ#F{+6spGb`+xQJXzE!b&uJ$Iori;QF)y*x5%`HR<?d+
zM^1ICy;J>K@8;!4B5v4VA9aL;IbcNbdt^3UkkX^Yty3oe*g--A5-~YXJ1AdgUn(Z2
z#-^O?$~H~F!mq^DBnZSuraWOa7ct4uHjb=|;NB5gtD{dku$0%%t$xhfU+BLo(($wO
zQ%0it^D7^>i_iD5(_1Wr-k{nyzOpRA)WW@m2&oHCTJ+Itc2p5#0X3z`s>+N=osr5|
z{g(ZX9q9UIZL+e`w|1pnG0n-XfKFfA9dA6(H17x2a*xzz|2jV>fiT(bbS*Be5=f`&
zQQY%m?X>`R7tk(*tYo|e>QZqoy4k!QJe@;73F00|FEIjZL~fKoG<j>$d%xO&-|{1m
ziA(JYbmzd@h_jy-5t(8m(7V2}o`jhdU6Yzxz@TtKIzeFgvm_7`q8w;X$n^9^-%8pD
z{qoxV$CfSQ^~tkKNVpoMUKs4n`A^slhjJ?b+O_hJSp3kzfs?S^l{{vm-FPu?^&$+q
zdL#^Q?|#>8-_%6Il{Yb0=v%Hj(~`z>y^2f+MPTK(O+7%96E7f-8j}Gmd1#NeO>Mfy
zDOr7QuussyY0@IqR25|VL!9qBmPrc(>De}Qw~)Mul~1ZGRaWR0nSZ~&Z&z>H0S3a$
zC*M$UxDFhcMb<BCk>(6SP0q10TY-eb!F73_=r%RohLMg3vmuStyejC*029<Nv0oL<
zCHh@bh3|@%5k^wn!k+xoFZV`(p#zzEvL>5fu&<MjwDvzT3n^I=N;r{|6ercvuq<C6
zka{vxXIVn-2x1jnRVfr8XuLh6b!sZlB3SzngP>Z@{Z_sXN#mdMiyk-HWkOk1vMeD(
zZokTqv?R#K(ob!jmP7?u0_at9#Y%1b!#*dmfQPVy=wl-M$zzE_zqGHm94?{aEr@oE
z#V9@U^?z;Q5QYm*2Jj_OFSC?Ic*ka4=2I-vSulx`i3|R;x5;2i%C!#3D1{`II%bJw
z&UoFLp<EasJ(d$`#BdyU=I@o-S6Ejz%Z9@eyo=C?YsNix+E89hi&6GT6_#G`x_p%l
zKY(4`IVwUAfht0<P%)&|;WC>s(Kp^#3w;CxOl@sKmERTHDq#f#nk$LNyWJ&OoAs0Z
z2eHKUf+{-Xd*zX5PmSMXPf4oz5qH4oK@F3RgG6J0ShC-4wY>vGQ81cjFUU&PYx0Gb
zg4%-q*cSS4Ht3A<5+I~;5}2I4&Nr)DSo0bDhFlb3%}SI`&sR96Vw4>&3q@&j^lxIX
z(><MgM2Vd$?0`)zPbnfzr*v!wPBR<b$Tnp-B7gK}b|-ZiJlPWwr1oi?P|R>fm)LB)
zF8MGRY6L%7DH8B|H}W>syOcTxDI44KTxZ;8*{AuWm48wJlR$Y)R}^yfm3BgVzZdMD
zQhM5PONS<AUtxWYcS`L;M9%v+2zZuTynMN>2?7YSL`SLMBX}TCez^8dqdfis8xpW=
zj5caiOUP{0QA5#}Q|z`%b|;aL!^y$Yt$B`6M>B2W1uPc#w9{1ddlY-sMYe>ze_cij
zD@~4ye%5x-G+V;Yp{#;N0rlZ9wB+Gx{(;dtl2h3^*Ir?FE9Qz{5;|7XwT695pJ`)>
zLU9={S0I>F9d7f;+8^kxPq>!fTy>7U8{Bgz!xRLAf+-=9`slef>qEw%a(SJPiCp)F
zr?0(Y+46T}0F(4X*rMt$j5lTLxBShf0%5ZCGPkjnbR=Jf@<>X*v^$z`M-^B!E*4sX
z&!B!SLAHey(2gI4CYxv&=%TiUIHDp?91xHf4QZG9+h5Gb`)-URtp^dxNmEx|Vb64C
zH@!fBL|K*)G?m?G^}D@$xZg+!Byb`6r1=`u=|{qyIDKW|(QFyPnJVh|liI`?|H3^|
zdkaGIb0;|U0ab|TQWrSh{_JR*D4U8lm2&I|9Qc_^gI=*4&vpjwsUR^s7ZUZ~T|-h9
z*Cjv0xjyMsC#OXx54L;evn+lVKxgu`WUtWRO3HfBUDlRB0r$Gme4f~oUp?$Do2IlN
z6)H-Xuw5Z#e(7>sP{6BTls2^B43@YmtoQ}>ob2`~&)ERMI&#A&Ne1LgW`6mpz4WnX
z_@X$xQ6zqnAV#6xfNbQeePJU%^<UuesAC|o3|f&++i&d02ZgdD>Ju9o0P-upuwxgn
zcBIRbM~HG1`{ZRSJAL?U8{W$)fgTIOUKEbY!FgV1-LT#9RAi=?P%h<qgmbn^fi>}%
z;0r&rSf_C~-dRFGyvomr<Jc<R{Pwway8J}~ee_lF6Ha%!!Nk47pRlUr#m*@xP$nTO
z_4(fJQb=xov&PnK@ntQ-Rj0L_^j7A*)`zGzWP{V@hcO5#CTW;(4t_RzM;tirFYBd6
z;4JU8q0$|&Ogp=4TdN8-YAC1I-bx95Fxw6v<TgK&X-u&B=_v)(RY}Pyvqba!;zx@g
zWFNu8#hAFu9$y~RB(<|DT4XhNUrRilQBLm3<IptpU0$;v^=%9wrC9~;qhJP$rg)Xz
zcnY)fbUg<lfvsefj=97R$ByMjf|b_dI8ccb#7QH8X3T(eZ)iUBLVI4GJbX@C$Vm1V
zn^bdNlxk-U^tsXKvfNv%h2jP5zht8|r7U#)!j{kS-whZC>4u%kA?!o|{d@cPW+oWQ
zB1!Oc2Fnd-#^ZJ`5j%+iE=$&7-l@SjnbBxELePjNh#zi-h`p?Q=N#f>)_JlNfS_H4
zXHA1BWkzovZE0i}pm@CypK4VAlh7j!--XxTx<~5GY#mk^kSPVYvUVk4rZl&Ih<vjt
z+x#Yo1bdzGa(?3;RLgtpC{?VW)uCu)fNzT03refB`o>DHa<3>XzBgv_d=U78ELF8-
z2~pw7Emj6n?$WosVI)Tes)4$Q_`cWdqZ7IFfAto^s^{kUQEDMxJhtDPw7JBW4xQ3^
z9i4jqH-5Q5iK$%Ve2W&TsegX$CUS2gYp4sEcsY(V5B<=Z-r$7g+!qK7)R;w>`JOEa
z;51JNvvl`61QerxKD847*irgne(I>_8w*AWv7gh;ZZ37-0uxcmTsRjD`oc48j-Dc_
z$!c<b4r?H5<&KS3c)qW9Ur)1K>rKHs1aLx82v&6Vd{5gzICU#mA3h4nki;+8*Glg}
zb&X!DGYCDZD+pk~b9ODUS4gXC33QJ)4zsiWr6^MA5wXt2f7%$uQq!f!Y0y-UC5uhN
z(<hx}H=q((-2!Ufq%4!2Z^&uEjh);obv4V(L=wD}=n}@y#uHUg<SB&QM?|S-c4Qbh
zM^Lo}7*6gA%{Dq5Wm$(X0CFLTyh#En1eiQICW&6?z$?i&sToHv^1N44Zj00*$OLJ@
z5(XK_FDb?5{B4^S@m)+yuwH<Dx4o84x7v2jP6Nv8@!?gu<v_s)=h*mMZXo$9gMkh5
z&HAo*(+;|kZz#0QhABWGx1r`8`)sB!E^xY>Jr-2kanHXtLAr_|c_@G$`uw{26ZTLE
zSHZs4Vqkc+0bx0QKl4Mo@;+XlT*hj*WIU-uVVgjW1ot74A4;tl)$PVLF=H%4ynt|w
zS<gLETlDn7W7^SH^arMesm}(#H{b3d&yV3_^dv-|(p7+w0f7Pu?e)A(!7G7K3W&Lh
zX{gwS1a{dywfV7(S{kN=gngwMpz`vgjcaWht_52fxXI6XQ1iIxja>Un+nJ4)4^qxo
zYw=R+a5bY)eim)Z5}_2*P?bIO&nNcIB|MW{f)eBxhyGFp!OeMt?NRfa%&ZfBFHnRZ
z1(?y%iiO3fM46sPWRj@sacGvzVm)@LT^%wm0zxUvO<0O2=S}Qp85umQTuXqp2J*DQ
z7Udg!(ax5RWXb`Kt>I*g`VRQWldvdMaZ|F|URZ`jk&Ggi2x$^w>NH_FWpr@mEyL&A
zZ$Bi71C365SnV|@ye(96LP(iR$`b{*xX+k#-m<0`PS^oz=~{umKt3+lubg4e$)IBo
zYkz?J#fr+wRW%nqe%`gNGx!)L8f2(&2%AL^idV8B6Q8yRz_htb)-8~?7an3&gFn0b
zJN*fJioh7}q1%oq4y#q}%jI$ESp@91Nw-9xO*tX-D<l;~fUmcOJa?#ld^w}TUZ<#8
zF*hwp1=WA@vHhg>&#txiNBa;VBsJ=Qk(GCbr0_2~CoH|szHR1`k=ci!mMiLzLMHil
z%T_C!lz2^|xX_KBl1Xynf`wCbpLI~6(TT}hUQy}5mRx#>RW0LLq)_7oBD|$|i<~|o
zbtiTn)Z9wn_1l9qqz3x<)0AC_9yG{+jXE~7S{|3Ak<lOkib;+KuW*?~<xte{xB2O{
zip6lYj~oSlg0OQdg8&;8@b)jZcY%)%pB#3|$<ZENwKcv@>7-a?zDJ@bw$kJOWbU9$
zaxL|_ml+-oJLWz%HM*Tq*S&9BaTS75Nwtp@X9%Nj9b@N+LwD@BOwIzMsvu)P#T;ku
znfj~%ZufTadd545n6Kzb>(_0swQe^Plc><a4gvj}vDAKf8E_-1@qnRJ4;*%hiUlvo
zLCwKNL#>a}5fX@OheY0luzmKTu7!0VxU-Gn&+(@JKxU)|=>HCTQ83SfJzipykAqW%
z{gC+JCaMB&FE&a25CCSIWtVsbjV|4Dl~KCoT03ew6QoGWlWZV2X)%0C77F(8_WaM?
zYP|{I1=GW8hlq7yd+>?ZmfBZsgMw4*Dk#Mbrbqs?GC?>1E(lA3HQ3Co=j#Wi{w5}c
zLc~U#`K^*N?lFrl2d5qYl8>%bilK)cc^MCt{ch6+F-CPg;J6(5s=(Gf@#S1QGGrJl
zr`Ov_!S(cY0D<%Ed-7;I8<<@SgU6tq73T{TV}Yw%rRLzBakEfe_HqC4&mANEsafg>
z%sTEAp$(GFt$7ME9NZ$c(+AvBfJ!@C+DHi5i#jL`J={L)=btMUSt8o8h1!&GtQSI$
zyg;PXEeE6?5cF;T5<+3wo_ycqVcR0GF-Zu56g5Ry>YeNCKg-=fD&kOUY)=dqn!Q6k
zN1bWk$mEsEO+jLW0^{^F*`<>{w%54lG+5>d+?ZRu?aJN+%zf~|9C3$G2g#SI1q^N&
zQh*dV0IKh?=0%w0b&54fuKd2Q9eFdmz!?y*9qSUpf@_onhnQ53<icm{*se*j0?A|I
zjH@LVmpb2&?c#|4_%yp&;7t-soH)J`){$u6{D#f?0+vGjAP(GD_H*jaOSdPbVv|pd
z!aDFAKR;&cv9D~;w-1+a9t6?2FNz{z#2m#pPr24=rXd+h*J{!u_|79~Hu+W-6^sLW
zn+D}zx5>i}1q%LhxJ`!OxKAEL?Uuw5i1kO<%>!6GqOm@-bU9BiA8Nb4<QIX%a02k+
zyc%WVzj3n*!}StQ_(sShzS*@a&BlJ|ujUK^5LVVMOK5RaWA<G?zrj(G$;R6Vwad-U
z#&TsW9$%ztm4>lQuA-e?*we2M@-q+<4t0fcQ}r7;7yGui37vfqg^gqV;POc&j6(@#
zRV{5fvXa;KQF1A30NYoWl<=f7at~{3r*vYoRa=dN8Z;0UrZC-0e_8I6ywtHCa*{kt
z#9_~(TsujQKysT(un@7A73gNAsGv+a%q30d@)|$y0;`XSmp^9<$$5~z2e_83kmeo@
z%fJIpFlT*goA+>P78j$^>CnszFDSR>%Fhl~h-@|NUm?=0+D{+a<NGj3c)O$yJP1pe
zC&nL~`Un1vu&r&0=x}}_0sXE$Q#<N?p}9)Z@PN=bc|_o*i=1U|S?wHOx4=P;HY;8x
z8mdzlFgmxhO2zxxx~{xTHjo52Xp1+Vn>EjdAJ(!e4J(o^Sk!1%;z5&}7?s@-fADfE
z-57uaTar@HNajPSwks_Y#PpST+JCvLurMOCf$M6z5iJ=XPi%H%Rl4S>0|8Xoo6?o0
zQl;1q7)-2RbmbBDXeWO&rIX};jH^vy9o4Z6qU0B8(G9Q02hI1l6If+INH76Z(x|>U
zJ)XUZJMycE*bv{<)tQ6sw=bE5_!Q`rucFsd$kQXTEMY(=x~%Awv+c{Z{0P7TpJN<v
zWWPy_zB2xOb1RLwe{DrYWo=493JKLbk4Z%b#i&~w8+(j@v75rfm9;Ef8g-gw=UU6R
zc%1@EH7NtUc}HzZ{}PTF(l>$KabTMi*_Tat7&{J6TZJY#bd>-rn21rvC-J-2`c1t7
z;Fv@Zd`2x%o1f!1F5nhg5E@i+Js~x{@Zd}68QiLhHR{bN1jOk{UO_@|nDS#|?Yyzf
zg99WGhpbvHJf1_^US@P=Q)_i4Z&MViCIv5)B)r-b^3IS#nkae~Vk~$n{^b#W^-!!R
z;CQX<mox3yA|7=bWJgtc%`UMQga-!33;*$ZIAt;~p#hFjj1C?Xzr6dA+dij5eOT7c
z<y9$sUJJ-3Q|35(LA-te16Csi&4SfVkDA_K`yJ=I(OYp)oKf^gw6v`q)R8YKC$+S+
z#IrxhxxiDU8l%GQ__JjdCyVu$r&n853zv$BMh>!R53xbuOBl7}_+;WNM0+idyIset
zaJ;EW1SC{V^c4@p9Y6Q?`vO&RP!j`9p+XagR;2^zpySWAvwn6Oqe+@4R@74Fs+I3H
z$l4$6PZtvF7s)$`&}@H#mA}o<pg3KoB1xP?o7fVZ01CjOe;<l3NM)t4_tZF+Vb*Gx
z+<EVV_`vg72O_*Bbu1pW2{LSJBapk?^eCf8{K_+an*onQ-D11aED$UJpsXY!V92uW
zcSzii4HZ|6u55(1koPRuJyR|JA4VnGV!;q5RplvoR4JV+Q=n2`bIx!3x~1L2PWYO`
z_j=s<<<B$iy083kl~9!HDSx<4d6k~!6IoGi3%jtLlTzPWDi9zg80Lv7)~~;BEfGu@
znx8@iGn(109sDz1$1zfir+x;}K@)7?8om?qSb`+sYfw>dL_GEs2RTH`_OYw`_=g4%
zk47{?M>J^2i>8dX{|w@_O7Wu6g_A5|E463b>}S8MzFLS0+-@4!L)gp@3C2&Jsg1Ln
zuqVp@tD2-wF&;RfNrN4*n*B#klvFiNLUF;7?0(^OG+9bai>(mF!rRgD_C>Z2jAN%s
zdk{1TX2E$RguzDG=M0*?MTSAHY$;QDzDGRad9DUX5pP;gqzoYL)&RDzOv*G)A!~O{
z{LDI5B|GZpb#s;ebXs&m_qg>Uf2VUu6&`mzbbyHndlklY?{N=TvqWN;IUyI3f1J{r
z6V)t>UwVioK?kXo(<GKwFj}-=Q~bt2-<SfDyb{dTx7yDB+nE43w?uMQ!Zjy1Y8+<G
ze_~uNeHtWGF#8}j)cXI<^S97ai-iC3lz!+go=TSl*{j|LFXwe?4%@&a$zFx^Bs=M2
zbVd)mY9EG8U!mI4N|mTE>z5ykJ2ywafP4`?(167=%mmg>Um0KjD&NZBf$=3N1E|xE
z$ZcXSSN=C1grq`7Kzi&E0s=FB{$Tt3R>q7~SqIllqKgBJNvJq08vShi?hm|5%?(B(
zDup-DR|mnDk2yB?%((4(?kX@wXxn8di^g=X+7LfHggYpO@+xLRs5}Fpv$O3JG!Om)
zQ-o0ody3-VsGR8P>G1;_7+ntS7qP+U^am=1rx<<O#%@BeFo8}YMIIbPU_XcnEMNrJ
zO;vW%$vg^d2q*IkfKw8Qqh5R2GtwX432q!m@v`ukuql05t-5;gSOz$D^z>L8^C|03
z$bhvkL-o`DHz#_0c>L+tJWU@oTBWmGBnD<ipPX!Of7DW=(V^e?d!%$w=9NbO#3>C{
z)0tr?A-x9i>^qX1AAS2){QRw4&n8yLl${>4qr1Drh41rvzKUI`L9-6fP`jydpIu#V
zunw-mrI~27cK_4yQFrnhf#yNlA%I<^EAkQbJIFpfo7+Srg*xB`vNFG1WQz;AsGL!$
zU44dr?9A@dF?P+fKIs8<<?u1f+P|`t&iFnK9(|=T?(&O|S~g5MMZyY-!)fYw6_uyQ
z<F4Yae50C_LIfu3DJe+67}ZF2ptkh3_@R@I)LKyhD9X}85kCB&(q`pud$?OdHTJ-)
zK+lj054RTI6Zbe03P<DO(vY{v_z3%w79-NkjP_m_7eSi*1&XIdAQH;{&;2Z3v5d<&
zxIQN()n?^JOOCe{7$E!rVUGg{4dWQ`&qI&3-j&=y52{@blAoJ$xKOw`(Sd!f&9%;$
zx=U$=crrUDdiQiYb#I=cI=HfqJ)&=Q2`dBtu`&<67w`F$6CJIvL~&rOCDbd?CyegZ
z(dat+W2K8O5T{9jaj9ZqBE#Co{qN>MPJp5(Lb*SpLtvuH!L|+^07qkrH?T(IIVD-b
z+_iS?o$=VOd<xyzVyzQ{WzDd@0)uxMYX5z}8Jxqf(ZAXp=;hp-;@vy3!T=(8gKSM6
z2h~QK8m;&sAN`<OKqklq`vMv+t+AA5e!T$qD6kGDNxQMOiP<0nlrrL`0L#7Tqj(Hz
zNBd5vDl9OBup&C-<<(l@VBd%WYznrG%><7>=16<~Qhz&fBAIhZ)-0;C7}jJzWzLnC
zmQ>L(8Vj10=B)VGI=A3uN~{|1G97D`JDIxkibfl(QV1+qGCg2@Ry=%wqnMDEW$o>s
z3jcDT@|s4<eNsBfzQWunDbvxVoT``^{eFhc{oQAZ1flC#uo)Q!137hlTv?x(uZ&94
zTcrOd7g^D%jL$cey-q2>Dh`&3+fvsZ7hm;2_%^r%&IRK`#*#>+6PskGFqP?-+U|T;
zE1+A5J;9u5X{3fNZf&Qv;r%kKG%FX}Xq1eo<D&SC)jlBJhp1=9Vm*f1dAt>$!Z&er
zs>UZ)0$&CO81`!1Z4P(nw^WJV#4wgmBK3|pIAx+;H9E*(Kp?K7*0Q6OqwI~o3?Sqe
zpr#Q8q%yf#f?m7!&p4}^H)<D>-@?g7q(7H#zYg<}7bpP-rpGEpTHO@i*b&i(G0A1V
zLeg}mDkY0A4$DY<0h1I7if+z}w&cYNYkV%)BGs6G3Z>UbKQTHaz?1QDkMW$;9Sg_n
zkkTZ_mf3U}#7Hh0)<|qg-lJ(-4U2C=;E8Ib9!JWb6XDYBI!)qoIU);HqE@qkEg12%
ziFR{Sp9so~)>!;r+?5_(I4ka3;8NUuH}nKR2geUe=oCI1pC`XgPN)RAXp+s>V9;Ft
zxxwGZ`_1*K=_hTJ4_GDV0r{$;Lu%UfF1(D#o{8^S>;o7`RS-+h=d<&pqi4q7AbHtl
z$hri_gO~){%q(wS5cj^{XW0$=rvfUk)V__Q`ix`lStOT>^%Lz9ZBRD;FhEsAN&?dE
z_?);}rnF)JXlTZxM@u=hQ=?%yvY&~!yyZXWEgV!b3QA3jdd!O}AN5gk^m#oe2QW_e
zP8L5Ozq6N%d3lDTE3t5*^<TtmzE7+v#-FSaMxGU=ycidK=wljGIf)WbR1v~GKl;Yv
zC!ghdaQVuatUN6_eTdry``FW$F`}TS2;EmgS14MJd46YnT)fV|)0?C`SB=s=Y0-0c
z#sgdW;`J>ddxgni454zKjBmNuCr3&w?{PXqH1>WpeggIGrehVSL*ZjF-ppv1KjJaH
z{P$rGNwm|FwW;7_0C)aKs#zFcJ<orFf78ed;oi(>{ld65C<1&7>_y}Wo0=Up7TKr!
z^6PB;B+zER3>RV{-n*w?mW)Jup~9kQpYE20qs9&v>42Fs$WyADe|Kpgf5eioUOUL(
zoTLm!ns5j)yO-Re=bwxJ+Ktt~e{wsZN{U?bNa=)~4EB(gmX{k1A7v}vhpYG%+wP2m
zTL?+~?=0J`IbX|)`htNI7!wElbx-`q7yKGR;`9>{Nlr%e#zXO0GQo9rcqKJ4OpqJw
z$1l&s4fk;a)Qjw<2xAC`W6tOCA0v1#Mzj1=1dJFAieS?hX2*Xo@OxBnCsZtohGLJD
z_@&pv4d=YBRXoR2yfQc1+BN=F>mmV&o~&_qu*`L!{O`=D?NK%Y8NeqwcphMZZjO>f
z{QJ4C@tdQ3=siTmfiiNV@<-zKH}e2d6@)3Wy+X1BOA=5aJ<2S!T^?i+=tRgi2c<;t
zoe9JJ{v1x92fk_K4YeV>@^Iw#wsB|qVo0sA8a$B|E!`Y{dj?<9SrL;aHOh($uHl9I
z*uFjehKMjJYdXsjPbrX8!KG4<>uB{}mO9dZSU{IArl1#RL^Z#}b;HApE0GomD7`l)
z8rsCJ1QAJ!{!t}WXe@3aclX-O%F4OLItt8ksfCEEMs35d8PR{++f%#yeF?rAmp~$|
z1PF%7P}W$=(o(y}02=nQrw{aBC&&+BNKH>Qsvc4z4Z5WrB~`CA#`dpbq40KC@|AbR
z?M1gLJ7oby9gqNaG}?L#jwd%blv7_4L`3xo&+NW3?p47pqy=>qj7h-@c2h?lMT5u0
zm;KI7A)+;uKH-aqksVDq?%DWu+*aOMh;%Dq0w{3;C?bwOe~kMAN$DPj8L?VXV%Gcd
zyR}S<BvAQI7-eor%)2}O<v8S_0{M&>pB=}T2T<3!@#=egXhj0(7(oh361$k;u@Je@
z2UFu~fAk-qzTA4`I$H9!8S(q8xGrB&c6>tM19Lh6mmbxA9QU}L9|#xQhJ>M{r#uyR
z4bmQqha#B<CX0N`idxT&`$)>mbCL5aMkNz3D|%pTe9snc=!{D2W$b8FC-gjHdHmQ^
zChLi5AP$fUJ~>PJX3x0Yd;V!iMT$6$miy5)kHin$;6ES0^nd`|yU&k4=o$}%t&xAU
zhA2g^LA(MO^CTI2?d9)5CTVFpla05H5i#@U#j9@eH}+_7;7QO>R+Q5`KK}(S<2TBn
zOUy-zBR@*t+cr+~kD=K~rz>fYNrpYn*)?a_EgM|47LW<Xn&D;>W56^)9=L}8HY1*J
zb$GE<Yk5^2{g;HPLh%kqqD<dDzy{3p-xL60hGhgTV7WT9v{=gpp%MQf`vuB%*mp^N
zyzA$D7-x?lg{1tVY4P1azO1ZPyqrxHy@tg-r)RwB9bSX^RjPd=;^&Z9epGX4yuYjq
zN{A}e0WYzG)EMqIE<R*axC4|61+wpf{?ns#tK<Lt>h~l{YEuS`D<9=+U74~I9ppqA
z_3<0f0TO^;rT`Q|3)&N40t5?)7Y^ROdzs<0i|Vild<2fa&Urj8l-1^@I|8c<xO&M*
zXG3|OWKMO6ue#hH+@_sHO1+<mhcPF%$06jBQcfS$ajW>{#9Iao^(U}~-Hc*lDcAzR
zSj5Q8i~hMaKKgC{4U`xt2j)$WT0QS@FvG#dR3#wFLh9$u?s5AmK1}o-GDj)|EalYr
zx9hl?9`(T4c2hJ*5%|;Ii%*7mxh@-(os(rPxQ3kR<?+E7gWCit<SR+)pl<));?43-
z)!U&8iHLk<O(z^~?FMjFi9-}YyVH#rV_{ulXC7~p<-sY?JyI!eP!AF$C%Sxb{45Zi
zxU*3e(z<~_%#BX|IsT%n-=I|0MIkzL{wMK^b&1z(w?Gq?w4^0;`c=GD(lQYPs|vmo
z_9W-^a-<!bm6;y>^nJW1bAV~_gBvPomL*9{7#z{}XpXfNI)MYDLP_KZ)+^s0Gb3Km
z8PN@_$hj9FHPl;RU!o2t+GlVEH##+rgKRKY9nPjfdJA?#)(49#MpgU4sK-S%{ad(0
zOHq^3yBw7b3@SIPzg%U-Q-rr?M_<meE06d07R$WWTTx^mpKl8q8J>)2fN+dTDGG#Y
zdNhAw{DNHa+-NBMZXLg5O%NMrej3lH;!VVc5DbB}bcdq_{ul4g+ZcPXaxsM(kvx|Z
z)z;W(#Xp#=3nAx529TW*r8Zg@O)KzGXSR&!Kl-#Pg|oB>U->v$m8mv_jfFP~90!zh
zmL8>#vXs8TWpe{bz$>6|PE=82zk$y2bM{GAd>i_O2;l{whD<)0V!OjFEE-bQLoP0=
z7f!K#I`~t_%JLc?1q!IHj@4qLN!FQct)U`bJE+#*=Ra|`-91K!Iv;GXnf;j&kst=;
zq=3nzQv`mBt7maTN(eraN}&&ER+Rd1-0C?-Bd7&cjVy8=cywvdx8%nKO(TvTP)RB!
zkb*1N&VK}eN&zj9iBZz$&<jQb==PGWu>c%)si4B4P_~GHAH6EB8RwUM*eN_YiD$S;
zNoM1RPVHC;=uyU)0?i6f<i*gN;(pNw6Kumv&|5~-kFlz+BxoBp5B(4ZTlYnNr$3kw
zvJ=n>WPvC~ZZx^ZPJhwwK^V$)6henxe*{>`Gk$##N=<7>egR8mjrO;YJKP6_xX5W$
zY)=dspKWb7`5lB97&701?qw&6eigxCD6_}d`#<`RU@o2W!sv-EligWoU;pJddSh6k
zr*t_x`fQxdj#!lNIX^BL>%v)#-O6vU8@>+@F=3di5MSF>r9-QK*IE<MQXZCFDzsFQ
z1a_Pxw=(<fV1I9sgp`KiLT_V*11)Ta8^4+YYCxWwQySNwnqfn5tf0_f(MY5tbSle9
ztrm<0F{WSUfd{@z@&U4rwT8GeqeG|KqHh>az;uD81?uKU@11P-{?CWWng~b%3}rkR
z37OGnL+wt%)+A+dLImWXIBH&0Gt%}%ws0Ab976V=L$G%Yu_4P6Kc~Z-0Kfu=(V&0S
zOr5QK*U{rJt>F5*3yxG2<K{%`E3CcjQ#o7&xuF(9dV=#5<;{wk4Ys$4JaJn&)mjy5
zBoTIhS6X3{u$~ICRzVlsg06F;?$!1l(}OOH$u;)Emh8-E`Cz-`9v{n46-R?}uq&Kw
zdP$CRaeuiNcrA*gjFva=zsQVkuD6e~{TJKZP3=19TuMKAjp04uCC_zaG?WD(zZni_
zBs+svZ)fM;&G41J2)Xp;sBlOPB?)eLK)w~f;!}gGpa_Ky*aI@yMp!?YIZ9!0WrX)7
zq*DvmNW2Z86O;jn?v?BPSIEI2dbt6?Bx0a?Jo#&yS`W2*ujFHjE$;Ah9J8%G+?wRU
zKIQVH6j`PRMYYX46RLy%k<;Q2xp8UH3tg?p9RF(PU=3I52JYgAoov=TJ^&I$?;JWY
zyIukQZqr~57qK=wYXS`MgeFj|Pf;C=fA)opb~MnM0xOb#9aI6m-Nl0`Jt$N3aH)_o
zDyb&gF~PGJ-+PO2$IS_zQ$wSeNN!Ynkad{A$MGa(yi(1ktOb->TD0E<@%ZnUp~5KQ
zIiNg{VL?;EO-aQPlVTlX=|8il)nDqwR!9I&Oo3|QhypreiO{sBfcf+h1Ev8dz)XqA
zu;tBPw2GH5;=vGv$C0W~+`%i(0gJK}kiuA>7knwL8=r)s(Pu}z9nY3cjj_;3oN|<l
z41sMlJh>@OJH_J+2myjJQfbswVF!q#GNMb%?HD+UUv^cfg(C+=Ij$Et2n_Y@Tbvzz
z&|p8*FgVa`kF<IenzEx$;w~&1W|#wm9tq8k-rm<v8{_ogzT$W!G;mm{&R2sVvpEVp
zI;p2+5!e&SVD~p5hB)q8-SZ`)nv_~Ilm&e3&avANf=sfbLq^!F!+mjCpK;;>uJgp7
z!);efT(8oaN@n_<<A&MRT^NfbB9ud1lUqna7JT(IJNX#DRZvyI0cNszaI2T!WJe$C
zm-~e1Pa<IS_eGZ0*{{=s2&IYT#qX)vy3xk%|9@X+X}4d;c7)3jQ<A`$lE4W;f;oV1
zkM~m{`Kf`q9e>SCYuU|b(?ijxgbG_Y(pqj|Rn#dAxdAWbYX`4Mvwul%;4&nSs+SD}
ziFtO17$i69+s)d17#`%bP=72dnw923ez;~EEF#N_IK*UoYLb5()S$cq8UPkV)?nHJ
zSe^T^?+cCIU9xXCWLza?MekIHSU`Zpl-%YFfG`+dZ*!3EjE80v=sVwqyqu`%R9kt3
zFCU==7)jO^@fOOTr&xP#Kn3pbBSmG^O6uiDbje$%SUZ}B*m;PGI1~L-p49UNRpNu7
zejGZwV1zxi8y}*qg%U8BR<aQ?__os0=Q=5p;3h@vLMkuH>tZ(u4d?qDH^@?OEVN4$
zEa>dq=%NPu^*e4;--gIR6(P;(B*c7Wwjl?8j?cP<;p6bofx4Enm5?cpE06}dD$bMB
zjjbmO3@uF7G)(R^e))=c+AG{-XFzyaj*#N=O>3Kw=fj6%>S;xdBu$TAIL#I_NR}j#
zAL(5$$Zpom2&lcIAf3+A2KT6xf#C+}ZVfg-AY-EGfEyChiBJH!MYUI16Zto8AJ#eE
z8AxNnczbTL-{^{I&$7FfofRE1#XcP$>|5nCa+z=~=LnbDvN*hl;JpZ$*8qsF8gG5e
zm<bw>)5(AnD{vCsGQIf3`0Y77A-BSNWg~yVRWhQt=Ei4$PIAM|Pn0GWT#tI9@>s*j
zjNE9_%kdSj`Y$>OxYBi=Opoq(C~p2<cqOUZj??5LM;?uje37eeu_`~_!7ijZd<{s>
zR=92Y?zQn{YZz&!Z0Q}a`2_IG4CFbDlC|qI$c*mIjvsuG7c1ow7XTBKfjBfWr(Zm2
zt>2-R)ScXX3J{}a!{X1^`6nFO4WgUHpw#-oxbjdB0N`!Zkx)Xif?K&a-W3na_Zz4l
zC{FnR@}aWyo<w$tEQCZB6p8~W_5H>1cbJ>pClLUUezbrS<aVd(_;`4l>xE<-(D#nZ
zoKW`L)$vt}{W9?kaDIW)nUT$jd%l-=$#&}*LjxwPq$Pw;^zWMZi0~*@A-R@lDa2l0
zwD`LC?a%z-et7v%36}{9UpYIz7(QYxvBoP27dsLZfUV4^vS(Z%97>pn+G+>H3xf!J
ztkwH|V<;fLY$5=War8tK&<#6m$&L>Vc(!t?MBMrGWWWgR9nbrOZII2%(J71$Jps|T
z8)cXO21_U(s6rUFpiNBw?6cxte}rwLc7p{%S8)%cEG=4fLHzD|zvnqvMZ{hxK2(|z
zrc$%Yc>RIw5?C*h3U5m%xsVl=9Bnh@QKOMa2%unsl>pyK*A@yLb|PnsBoN#){NtrK
z{l0L$q?DPWqn$k*MBx{tH7tmKBmTm-dSkFD(u+Cy?-ABrUIaT{3gqXM1&WBaJof4M
z!H4}0#Y3e@a1VaT%ZL^}9>4aq-^2DO^Aac@2k%Z@5`Xo8FZm9D4|e@_z(>tyv^-H-
z`(VqccqM$=WlSPkCqERkeEC1|0srMw%Fkw5OWpA!$Opd{uZ?$|$EO^bEs>3^TtCUj
z%;^3P<NO8w7(p7xG!uU9Es>pgjo<KGO8L8(|GCi{8{>WN=4G6B$>Onk#qtbUbuuop
zqBC}}Y&rEh#i_m#_&9+jwLZd5FXnA{F=Rn1Gf9>loV23R*1QA3ve=d5JqAUsIb+Uj
zX}9A!>oahY167dif?aG*Z(f5xt=8T$*fOHhcjJv$_{9OFS_kACJo>X&<IAz*^jkMT
znY8E7Aj^?tU;iC{-qr6G`CdXa&}aNjtlSoMxgUiDEI!;=l_D4`Y&ec;MpQ93ZX1MS
z0g)!h?Ku-5J$iUf{OodnxIiYgU~EUG7Q7r62Lf?%OUw#7g|Hn3`DH=e<Vofk;)Ymg
z0GK_%kV>inqm*lckp5r1@-yC>?Fmb;1hH*4f|Qbie!fBoe))w=0Kw3siS0AWM}aa=
zNOZ-ppNNaK&m5&!i!~GCx|k1#Js+1o&h><~>+F^h?OPSU^&fySI=vxA*kjg}5hIZ@
zqmIS#sjK~oV7=3~4{fMa<(;ybkU*pr>G*HJa~zng=s%}h%^~4a1PI*l6<31#WJFER
zi5LCIJ)(%^N(*K>dMGE_y~rMr-6G&w%)nK2@jWNo{R-A3<a1r)xJivs^yTEZL%_@N
z*UMA-l45}-LGa|z=sQls4A6w&c}OSZ)K>S4Q#Sg01|a&~-at0Xz9QT`9|5LRIkrTf
zg=oI%Zl@gJgMqq9kdfk{x{PJSIXkR9FG|FQO9lIBxcEX`n@yeY#eSFkN4Sq9op58=
z0k#m}ji0cVIJX3+1bL7%1XwVlwcRZo6--0T$pauq{x=Rh2nM|K#@Y7R9{z(uvQ;s!
z5x=hau?|lY^ny_2d*HcPBH7WJ_u_BmwdusFnlj8MX_%boi1G2(S6!2IM#Cu9AytwQ
zJvTe9B*#$pjw-6%$7i57kGAha09G~NWr8q@!K)oL;P&;yECE=OV;I(e_2kB|WpNDV
zB`uFNQeGwpIr{ypl)6&CD7)FQCq+zhqCF3cGexc;8Q){=bk=cIf&cl+)$vn*`dv_$
zk<gxq(_PEIFN?Q|I8|py`(^<$;_RGg%j)<$06|{epJQB+>TFC_)RWfqg?@EMwSodm
zs+HhA7ME04`#0SAJYb=N>{12WK>{pR4h@E`KnQZ9pXS9UJ{r&sFh=?iVa55DVf0_Y
z2a(d)ofup)b@4IqH2RVm;KnXC^!m8-4gRA7uxH6*q+Hpr@e{IuJvob%CSIxdV|KLp
zj+nNcni&kIa3wAw{m+lF(IQnRfl&ln6XG&0x^r3l_?3PKW2CCF4#B|+<wgs?jpq>P
z))OUlZc(^MJosA|i7<X|G;+cRkUN|iJ#bsx{8Trcid?IBPDpl?e@(m@iweS_rLmeF
zI}ney$x|-w2jXU+3Iw$q5+DjFrXlq<Vus%s%JwM1NY*X&Pm}B~P<@D<G$G9an~lg|
z(^1x82>XWAk~io{3b^3>d%|t*qRUZ}AK=buepGe2Ee+18evkbSZlp)oO}B@S<wXLa
zIb{J`GTh3^i*`BJmbG!(=<SFwCJ`<Tf|I%*7JG1>6>oJ^Yx~GB^}39<n+Ez*edus3
zmgMKeab}%popCIgh$oLramu%JjgWw?u`*6=v?KfSG{L2EB7u&ANayZt-(SyV!BSO?
zipt8jM@)4%%U*sI-c>6hR=Et#ueAduM&7Qzz)pDHZ&GZR$dsoNhsUb>+D!}njzDmS
zj!D2NwzF|5*|vbBDK8AIcHmTdY&Uj>uI!{pyNSnyINxxbef5X`9Q#EXhVqA?RI1PF
z?SUWsP7y|7K*V8CVGEqUJJcuv)$0n$io(+6DNiq4a-QcOb3+wL?1F$)hI)Q*t{9b1
zO~^%h^w631$A116VoxNo!$%HYV5&A7=*fC|4=js<(d)CK6=Uu8fL!!x99`vys{=SN
zptEP$UrJPS6jTxvot+)!j<=Bk{Olty8ja-RfwRxEHi_C7MGy3GzmpMdZL~X--78d0
z@$V3&A{7$87PycZtxmV;|ArN=q`HR(IqHKHu6moM7!Ok<QG#E~GD?qzHQ3PC6U#`-
zmH(P7q&pkzk}xvFG8QEk3VxrvSz#fYOtP<=_=MnZnVdo#$el@#z&ut2^jX@5<&nZu
zG=okASi1ZS8JZWZA8LE7@DEcdLJK9yT>%BzQO6SdhsleGNj{Mm1)sW_zVmAPd_ZCq
zm5J#Fo+I-g)LMD?DCHXZhUaG<IKir^)nLxWblPz9MIXnRA8xY*Wsyxm$QUdTP9-Lt
zA3b`9ok3CzKN*^gVuy^m>&DvXe7~WbPNcpA$k-IO)Y-=;Ix`__!3CtPrCF&cZEfpo
zxub;1q*?C%4pCQRYHrm0q<F74n2yq1WEOCO1Dl9tkP+Q*s?B@Zc?Wn_5Q~BkU?0fb
zhx^$vv;7u{<F&z&1z13g<(_0C1uV!z2JuAd@;ZNJbCLb`M!!QXlS|5gqX4}m&|c1q
zCi3UN0k`rqqP&52;GK!jkbL0C3zO<F(ryL@W`U@_E}`~PRyo)KC=^<!;W(y4K`Y7W
zI@3UqB@!ezYJY*Xz0hx|QddT&t`jc4*z&`5PFGEU+}r^q8GNqYk0R$g6idM{1pD~=
zpviV1a*w}AAC>a~=kamu_ht1qzLk?kr+SqBILrbU258yg#ddW|ZejIRN)Ta7fo6Vn
zn(Zf-PPCE87$<Yx?GF|iz+c(@Y*O!%bLh$^>PU;Ox!y~bxEh#G`3Zq?pw;V=_lng8
z9cNvfpB0^Oi~R)6@(jH%_%SeMMs)NQHXW%iW(+j|i9ARM7qOQSeKOY4Hi!MH1pkyA
zX3juBPd)BecjSF`j!+dl?KBnjvQDq@n}mr-JqJ>SRPX|{0OCsq_D<Bv5DFn9j}j%|
zSB$Hs!Qk`A8DnyU_vC5zPvCe_tAYdEA;yIc9Aj;i)GN9pJi_98b_9`U0moFG_Oyj>
z!G=op_a3jLp-J@<t%Bvcof1qv?$S)qoilg<3GrmE9U9^%`XH9JJWgMryy#mJe}i5i
z+f0P3>wIc)wcYlsbG)l6j|R(XboGzHx+cU5`(S%`kjqsGnA?3pm2i9@#)p3d5+Qoz
zNzyWnQG25FpnHBAYg2FmSUZYusvI!VN~A^4SJ<VfYi?kI6Xudk^Cf6gWAo5&PB}o@
z0_+u!c03xw`s+5&$K^KgvLqp7!faMeu+_n!D3Gn<B}Gf>?Z~5@bnp(UIFVTLoz;5o
zJRAPCf0`Fp2QwYrmLE->Yz3>>9oeKhZe6wgZZ42VaFU(QDsoGb7HEY}C+uv}S`b6m
z?PU*icGjW##&a|Jgfb&~2k_J@{cRtih0<zd4Pgum>_Nm57P<oYPIeDm*A)WPi~UhS
z>O9Q52`DXrW1YiAOd*J&WOD|6>OlK5NP4^oSNbmIZ*Q<AA248ABw?tjV}$r(^*FnY
z&>zE)DX3_n4}x_aG|&bF%vpg`#jKQuo)-Olv6T_$g<^5k;1TT;5KwOP<GJ=N(QAI<
z^n=23dQb*Dk&}UT*Qq{YS|^fEjoMRu5LaRUYFmOZ;jupWgvxJpm!7Nud_(0aWJI&^
zmd=0z07@_z6eCFSG2yAPBr>!>aYxz}Ax7R$bQnr#73xRIz)E;)nM161h_3f7C%P^~
znRnmU)A~K-3((s`OlUuLr~W)U8PJ1e=>+kT)Wu-<l$0z@j)vIdAr9O-B!ELJl!#2W
z&MSRg0Q?~ZRC}`Y0@rTVAloOz1`B~L^lkFl_c_@<d@L-bju!DDvGUb@tm;WFE79L)
z>k>aJ+OL_t)E$!9Ia-*pEn0~3P<nd<oU4OuCHV;k=0sOau-r?0g|{2R*o~>9Y%8nE
z!WX&)!CLQN;Ih4>HhR3*7m)XS(%Bw<(>ECFgf4a1bQ0l^Y+iKwaJv>W9d~emTnd(q
zu`3(_#sYpovz_Yr`d^(LWZLvc9+4xU;#Vk|&1v1=(p$5|@)tb7ks?4D+6vV?$9)=~
zv5KcvtWY^BAav=`jMw7!bNrn_s8bC?9dD?aaj0NhmYxbcVJEqCI7kYldtuGCACZA{
zx?TMXKO(+CLu}>5R>>N{qR5Umu8R*=_KmQHkQ2~D^~oBZ(2n$IMK4P`)PF!CjovRs
ziCTZSqaCL_;WS=Kd=r)+_=*>l7e%ohiT38sfN=o2f>Tr=m>+$?QQDJyAqc|=h|n5%
z;D!XWSN3+uCm=8>g)r+#mKvx;iD>)vh@+J}scF(ow3L%PJO$95`yrX}^n3laELB6|
zrEEP#&Y4tq`a>Sq1(HdIC!WlRmp|n%1j2VuN$G@HQO92KcS{o=0uEsS^bSXizI8(U
z^P<Eu5l8nY*j@b4GxDsY1$W33b?|8Cq31;#yTyBa?)PEvIxIOMRq0Wav*PQ&^~;>#
zoiK3(MQ27AT@ZKN>~{)SROm=lrfA;C_!Z!5u?_+oJ4b$s(hPC7_6mApCxBX8u_4ty
z6zO_#PL1+xW#!~Xd!K4wWpG_tzEuBErpZ^BPL@&u4<qWK&69+|Pi*6P4<G>!I8)?#
zrjQg$NJ%v!oFH=stM6vZIi1UDAB%!lc2c@>_V>du0X67d0`+>~o1!t9(Y)*9PuKXk
zz=*~%%S4Lnivz4|?`?BLW;fD?l3C(+L2(CJF%TZe2~9v4u#h6c3OB{i$|u^MH_z%O
z^5%EEn7PA6PLOc%io`=KO!_fCe;9*Fns32&=8O12y%xt)ulI%OijAabl9SxW55}{B
zSXe*cdje%RfZU)YWxwm=i{Isj+GuH$RBe*dGfZ9eshQCav*RiMCLSe9kF<A(lgF9j
z`di|quW^&m#VDnd3MpiDJ9dq43CmT4Ld0!OpnvY9uIb|nlN}3^f^7+Ymr@}zqJ#Ih
z>_-1y0lEA##5@5RIDbw&1}vR#$t^(Q2`PaDiLBgzNxT$NgKQ9J<J!O>IB1Ao2M+~}
z=0~UXvK7r-!cy!jN~HA;Ja=SYdr8=ctO}?X<AFLZb}u`6;6Ph&6nB)mD$kY4VQ~Vo
zu4`rAj|h7X+KJ?meC3s-dXmPL8KrEE1vIklqDaz#+gut?!bRi)kjO~nnS+U_+o!IN
zzmbuPBt-xxZCnq7adOwqaUQ;%wv3E0i3wR264(h0nZ<VJBm0^7C&j5arIvjIlhk=a
zHI2lK%M=&G2#p5Lj9cIxBUzkD$|^%;KuC*jeSCcFjlQnMBwtGUiGOpVlPcmi|M>N8
zTn|rh2cG+;G~Vz#U(85i?BIB;Q`^&R!U7+$(&;cA&^q4B!Xv^jycz#|7q5dGyaJqU
z_2B~$?z_aVhZJG_TUlRlH`Z7AqPUiaf*hs#OV+LnQl}(@;$@Tlu9k(06MTg2Ip3bo
z@KTz?xTun1F9|PI!kbhHcJagC#ADCr@g2i2!pn;Gu{7})CZBl12~BE5Xj;_J-xlr8
zL)e<09V@y3v?7*p#0j>HJKNY&^H-L+w%Z-)d)LOE@hr|)3Ywrqn1$-txez>a#7@C+
zP<{o%o%H7^UE)R0b0>l8(&18gRVau0W{#Ibac=;50}M|A+O%lx&5r1~DND0i%&%?1
zqaI*TZ$Jdff~YEGY?yRAn&Og$kf)#x<-(BpG}>0nNK=B20!SRyNYX^*9@gqorm3($
zHh2m1mob_fJv7ZuC7LSZu@(dke!!^2`ah=Lnw-omwgtRll`8Cg*?g2f_O`XyT`YEx
z29TeCo-8@G|HB92u}&C#Ff5iWgTj|k&L*E93f_`{l-y@}rPgaQ-A;71nvzJx)3ZCK
zVffIY7xL)JWHw;|dAE#Q9pnBej)0T}CT7Us2rkTNlkJ+e-1&dXyya2nCd<5ebHZzJ
zC(CV7GH`E@y!TuVLS1N7P&1hF`*C)70_!QEfrbYpoUEH)U=IsY3e9`jaR4zy`>h#P
z9kOk@u^jGpQtzKklH_=%%IzYACz!+u8P*f`n->kl1YyNJEeS`}GcfS_fOAyiAjFG}
znp$Rym4+$*BaztRHZ}>Y2M|5yx=M50qEA@gXAifjg4eLAv`5(HFig2zLV36leQxye
zBs*DRESXA!Nh5ET&WSY@blt&<hXrue6WKi=fE?be9rI7WeWuL|Lqa%=rxIKok^)rc
zSS3Fp)q9BTs$AC~`-xAJVc_5hdxb(zraKAobr9K;A{AhOuD4cMzpkzn3W!iC$ya%j
z>CvQd_L0mDaun#s*B}!OF$yr+H`7KF>4GTnT9q(B#NJbL*bde(Gdg#Gb-2c-yF(r*
z@JS*Mln1vZdtzWFl0CVq4#X%CEe=3;CnDF*AVdL<?`<dItspm9Rsahcgi*-EUoInA
zyms^Bd+vlZ)kqM8SoJIl4>4wy9%M#ux3_r;|0Ve^Q4m1Kg~VqZsv#G;;SoNgW^+KD
zQUf4Zgi?N;Xa&;8IYhP;ZO~<w?!-&&6cTT^yt8BU@MK$ZQSfAx^oFGdXf4z$J8FBb
z{W91ekyA=)1Omu2Bp(@X-7iVJD>xk3^g_~v?}pEHpJsbwipxO)FLuk{JyPWEFSTX~
z9~-ihxC6gUi)u^kVx^vmE;z%kTns?v3HFn<v;URzxj->aZCR)r;EPl2LIMhW1eic8
z?7n<(em&cCZH+yyh&PAo$Zu9zFmCH*Uk2j}!Kz@X4D$?C3*K?Azl%y5X5kLS;pO%>
zDUU3ltSxGJ2ydf}oa^Zn(Pp|Yg5!4(A~N-yiMD%9VrAGB7AFBlGL1zS+O!G2uLKX7
zq6A0)s+#t;9!sH8j}K$hDKkV_PPx&ZIdO|8eN>&;704q$T6~tR@5O5fHPSW#dxh~+
z*82It_@tNkGE6UC6-Tn~SgKR)u%Dg4@odIZ1*AJLQ${pnq!sSNix8gV*zkJy0{UHO
z4+>YtSfxxNM2)$Fk96VXw(2mygLhR{qKICw&D-A^QmrXq=Mhh}MX{Y~TZ94-FyNpZ
z<=nVfq~CCsgFoC5OKS7sgb^p2m$JG%hL=DNX?9WV@Uyb=X{A$ca|EI##fD5c!76#Q
zTL87L=)lMlfg&X|NoEm-r(>gFosWvF8|X2M!&!Rt_EG-^76GAtT&<lQVl4pPHKaml
z-7r$4{pxJAa*Y&~^86)lJcT72&<ugqY0<$W?dO0@;97grB*jKx#Sp+6Uuv_TNI3nV
z_bjpd8Q0d@_vyZ=gXGa^N7z~<!@Z-d`)SOBjIc1qU?aSCdwfu~C+0F~el03z3t(2h
zDWe(~0UqE)gn<N~!iYJ*RSFxEzjv?DxFQ2UOrK)pOz*NYZ53!f%NcB8y|YL<fqe?h
zb?<3*EZonFg$<H93I8U)BLEG%$(bTW>l17_l}PdX^Ine?_s8(x{_bvxge`ARf+R!>
z=R~9X#hJhOn-aDJcB`koq(v8f5bD!pW+0XzTUm5ysPyQI-c}ua&IH1j0QUAPv>P=p
zJ<`T)Z&_bFgQfjsCu^7L_X?Cy>QcL^4F||en<~j6J!)TQzbVN<CDuesNxAj}H|)z~
z!64-hBz=%>UtHp$LUb_V8f58~b9hetSPCXfZW)a@J-3Y2ud;Z;)4mp+F)^s##XHC6
z7<oqg-3Gr5V5<&bEIVt$$HotcTm8W6uvhV=XddTYN=CG9FMCl*XOa=@BE~JK0a&IW
zbABAclqy+v1aJT_CHe#*mL1K^uqtu1-ncC@1^(DxN0=G?+{E^j%|{lvyGTxBYTzYt
z$ExQ=D`Wd(EWg-+|D^fx7qryGU=_bsX?$LEXKwsRga5QZS|fznq$gQ-)j_Z}E<s<&
zh+mf)Nss!HKFt2gt0xU=YuqBZ#06^p$WYL*s>0(JxF8T%<5O`Kb~Y+jwAa5xvt|SY
z`}7kx(q}&HGM-5nFd+{e(~nf-vwj!*GM|Sf;1~;Q3G1<s?ca^pfhuvmfE>?ibeS9c
zI5m5I7oQ~TFgf)BN}E@n5_6?0^3ZUv8~I}N;NUX&!w4)nToPIPK0+M?K@k+wNXk@I
zD(6Ja?~cDa!IKPFDpg5|<I|%PZir{)`DKckN`ZED9s7fZ6i-sp$7>TS>klxgTW7>W
z3muBuA%zhF$?O%s{t@FKdlwu;fQx&}dC@h8SaW&HJ7=a*PM^q3%Z>(;gwIZSK;VWh
z@m&l3*L{S5rE~$ZA;}bBPje}VhHNd*zZUD2apHr_p}>KVu%{PMq21f&fUY=udITBR
z)=PoYqsn4Wt6?zRKw~HXz?|^N00LZ{-7=$+L+zL>9%el`-UoYghrqC8NnZ4L-+1mO
ze?86qDj@VEXuxtd?PAv}u@2W<#ep6zfRd1uv!9Dop5TrUBy}>z41*C-k6F>9_rymC
z6T!bkE=s5eXr}etIG0D<Ch%q>s(lxez`R?Jwz6u!7s5blsLeaE7-X(sF$})gSJ8<=
z_AAC8=ZXTTi&b-@E85#EGy`7;L6Rm3Ae1-LPzVWC79^!NIKikL7i2q9e0%09h;oa*
z@#c?t55fZO3-BWvCMWvnl=x&>39KXF5zZ6>i5-@67M}xZ#1<fSWCcPf&ZGyovU!-?
z-00g_A%Uuf0l5)JaK7`Ou%x6xNS;;(RD~BN5iC_82Og#OO0sW9O1JHeJAe`%n8&*@
z5^EtEss~tQtz<^@@iFFAv7~b;-&$;{l)|)#XSP)~SJQaF#Sc+_m*kQw6hP&~S7OSs
zihau2Pnb@13D}sZ*t=)Ocaz7!J@D)bCF(0*nH!(ajpr{xzS2GsB`XR<<j5;T;9ylh
zwkBDn+g~AGfI}oBcmS5yek<bEMa)z&TVO7pU;#3t4e!LgBrvhV<p*d6YO9nHjX2uw
zZs9k;4={8j-g*;jO6l*}=#V@RW`1;f8#}IP_*p&SHVFrbocyR|x_wu`4Hd@{JjaZb
zYW95Uwb$9p(qX}MNLbyNKzKr!0lyHdVd4eEmWWMgpy>1T=&c3u0kU*-CJXy3)YE&5
zc$|h{T_g2(m_<w$f%5N)c)Hw(q}`A(7O>yctB(D_81`H*m%?R-+4J&6fB@A!f+bTT
z8%d@YIB)UuexpVyhzwLgOlQ>YcKX%)JWzQ+L)=<rf0|ZWtWJ{%VFGPJ=TiU_INR4{
z6n62rF0p;!4;SEb%3Q(1Lj%*RsZ;=va6y=X_CgN7h|F@LpUvhC^#x;FRi)3W1e?6L
zm+g-Is-+Yv=n*E2&5WqL!m2RpxG{(`hv5i$Fu*_g(X%7%OJY14J|R+fq?FK;6>S<}
zo!D`1Acg&UC^#Y=#QPr6(SfoN%4fXCmn{GM=+HFB$$5s{El*HHVC6?&Uu3t3m@xrp
z<)89#M|Q8MvdRtq@gn6Vv612W&|3Q=To)+h*Le~9G}UGWzkmRRd!GSwd3l6Ah)KbB
zd$Sx+rQ2}szB>v+aJpTh7M11n2)-5?w+f_Za1);N5Zew}6@W(jOtNvZ2#MK~H4r#t
z$D~QDmt<D}<?Dy80KCY%<Vv{gSgQ?h?R}Ze!Iff=>Yk%b+bKZK-XLKSI-F5ZD~u5f
z#bb(Y{gS~*jpOi}SS)2TQP?V5+12)E9qmvMQRv@+k+4_6?V5X*?b?S=I-r!&M~$Q9
z>$p%E+s=*Yz;-aYf|PJeM)Y|<&vTK^Q);YI_}z4aCeH3<J+)c^D-0RPu4~ty9l!CH
zlO)7KIMCk(9WNS?{D|uocXBYm%LtIm(#H+Dxuea!-$zeLIrcJakibo*RM}5*EF>4y
zUQ1NYZc-6;igkUOg^=QwQby=)FV=AFysdE_598u1;-Jal{1D3ZVkiNN$gxBr(NSY<
z@pV23QWP}+WL{R(P;S>@gR-!lDm|mkYX$S7@2c%M1O(URS*a`^O(8{)C~s@HGK6iF
zpBL(Y<(^@aZ5d~`t0{rP+Nftj^1-bcVVB(ET#%@6V=v_Kd5TGTw0xNTESaj{l7hSf
zP4b0Xe>2@Cpm?32LX=Vq;a%92*+*Kz8P+C+A5efG_0Sb{Q%hl63awx9S-=%wDe&SR
zfZxKd6N0@B#;F=c@(cIf&t4mQr)v^qaf(ri=wFq9(WKzVxXEpd4E@V^$(;>`8mULE
zLgyzn^i+F0X$QnP$1i8@%eSO-uxKDF<TEhF<hSFdrCcY+zkxhtmz2<d8{9>LC^BN;
z{;Y@?MAftYGg+j<?{w5vc9fcE6aWKx{w|=EjzPyC>u+Ppr4a=w9fplnd3{cF>p8Z^
zvwoc}D{du0ScvPAUe=B@E*4aYm9k{`229FMFPUtwg$j9`aboW7#RIvKtkq?WKN5NZ
zP=SGEk&xmP3tsjw-w}L;6{|#5G>q3Ky5oYL!n~!Q8E2zm59UYR??~3J6MiWnDN7lb
z+e_D#DMK0yxSQV~8gRayEzpz=*xo>bB6W0sqJac+4}hIWgHd<@T<H-R(IaPAHg!zQ
zmi#bMBBc`O4@zPGc)K{%x9cH}nwBM#LQ<5=1A(S+Hu)XrDO)5V3W%Mj3>-BIYs+hg
za{dor=K)<ualZW_K<FI;ST1*G1r7mW^+E}#xJz!5ZEWhbbS=rM*44Ew8!#obK<K>_
zS}3Lluql5!37v#qg9%MB-C%0q`#tYmxj@c$4sg)!-Pzfhw?1zfx1=v>m$S&|LZO;v
z*$Mzaqt46r%{420@FIUVDvKp1!$T^gi1Rax-0LadkZYtu004^#o6^9siho6!ZW|Wp
z6DuP4aah-^m5n!Mk$((Wit$u*1FM)$-@eH|BtaPRdQzPKV31#_d+Rj+YaFP+%a%>e
zBV@{u_R`_&>j&N>hmdo86c!plg`r!z0a;oms;~>AOhz*SKNQ|k<9q|w4ibudO%P~^
z!bB*0x#OtNuZUaJD{{nzgsWL=m?LWUYjPJIMP4(*;l>uJ>F8K31_d0+R)VKcrrxAk
zt{fklI?A+3o5C=94spl*>nyb$E@uzY0Vy@Tq^ugaK?V%@v%m6Noe39X*WiF))>xeF
z;vwEEq)o<vYIQ=VBiv<nNRO4ci#PBi@OW)-s<{xdsFr{-4&K3Ejpo#|e2AVvS`@Et
zGpFe&BEXu2-|xJoAAcObSF(p{@hS)?y4z2T&R0FHMH~qjId{>b=<j4n>1RD1q*t&$
zE?OMjB9R)rYSmkcj@``*LNy@Az#;i&DL{xbioSp7tZ1_OOtM}qffR#wrc6yBhvxfx
zWmZ|g9|U^Ha}eayy<1d<;Nc}xAp~$1Vvg7YR(D7nrW&%W<eXS)fLMmCN=6N>C0l1&
zFJ18onE@=Xj7f@rkB^$(VM_-tvm5*#C%o>EXxq<u*E(4XoHyrI?&4Fs^F+2pRD{2F
zGeQ#JZi#-n*nY6OJCYh)tm$27jA(KEwMt9bmksZT-j`erO(};{+F>25gnZbUVl19O
zj#BrBpQ0(4x{~)n@yf;tX)%H+Xu0?+|06Jk{ea{}ZE`}UnDSW73Bz(9vx#5618-X^
zHKAf43jzK>Wwy5pB{Wo_*nN6dv|*{C2jH~XFbP|U1WKPCeY#h`8!~1EgDY4#cB5;f
z`eJVAWJ^L)+F^o#fJzU35iLK2SDXIr0I-IQ)JeC@6<!*x{1<nW@Dsus%I7I^7gqWP
zB62JZHk+bqI=Fy#+Al^&USvNP&}S|S_(B$#Lu6AMJi$MlW52+x3E>7JD@6Fic?{<G
zAVODu1np9Ni*$rW!)L=RCGI}pNDwu|=TxDslFfWunY$ztEZLB|(hQi6&k(TBiNE)$
zi7dX{8M)zsQPJ8P_#;oSO<B#!0w^FUIs~e3j}f8zIYOG)y+w2FJO~I)+^A+Xa*m7K
zpKgrKyOUoVAYn#1s1^G_9h-`pne+s(M9%#M-8W?T+T!Tt2W@zm5cw$B^5=OzLNFkG
z1G9Fl4dte?>wr(2MG3~92=)T^!5IJbP)6g+rBEct+J{3Y2!0r`TxP4fUP4z5oNx|%
zvVj#Up-GLkr^J{5x`v4VEEx><wBBbF#AN@G@u1#XRReAZ)%lZm3nUG|Zxmh0>)XLv
znSlAdm>|!N@aJvIYjAH3j|r9y(Wn=qTW8yK14ilez{D80&@KKbnmpAeMn_5VEk*Hi
zl?&Z9BYd-fAAP72l0gaSCuTyb*lj$*{|H70K`O(9)d7mJX9Hm_dM8@{40~TC1QoK^
zAy{TeBR=b$rVe_^0AeAAShQ?5FXl@~?Z&pqFDEl&P?vvRIkE^gR&Ern&am%Pxgf}w
zmSWSQ?cd`~6+kTWfWMGzcvOVMUTgKWGV<6(8HFN5iCA`{)QzaJV-b)K%0w0tD`W=Q
zyWQ4)TW~gRkY0i-ZXG<rtv_wyH{ISoX%Y~o;hv@L{b!;op;AFsV+R1HRyK0>F8SY~
z+sN+2qA~aJ7*s4E49a5}3f%s8MHk%4gO~^Ayp>{jVc$Ey^dx>vS3K5+oe;i6>!yRF
zNM23WYOtWEEjsqBlrIS4R_r>wQQ1!6j5HnDix}RwJs$n|sI5T*%E!LnpwJ6yeV)<{
z7%=qj5fWMGZr{x>k*iI`kL9w+h$wJ_Yy8II=VHfkW{Ox_k$Rb1c|)|ZoP6*$igi+I
z_<DTw7-k?>CMsYELIQISzA<|5F)o^>3sQeA7O((ffm<>@I^Y@J!JE<YAU5hXr@RnI
zV`TJ`urLCS@Eh_ec)-Q(t-nWiV;Qhmc)%7Mkifcra+J<0G}ZyPtS3oq$^39}y#&Rd
z8lpzQb--g*H4n8HxD{7KTfGvNM6U_?dnU$j*x6qu|4-Vc!+Jmg?%{+|p?Ui_yH15D
zTE*bA{$2gU{Fv<~o6}HKgcI2<``s2Dii^T^VI`JZZCO7gLf;=vQKlEmXa%(_4vTM9
zvt~%rGw;9~?S3@@4aGeP-?G(ItEd0Mbqlhy+Dc$6caL5YZBDile92i2LFdRvvIgOO
z7ckr4f~$LPRwI$NQsn-)nLkc2oWP@YjyP!L1U@xezz}CB-|IibxnPuf;dgWafHN?f
zteSqOo&Cyo8`#7;U32M>Eky^FKSlfPWOi7{(kyS7(cBp;xgR;#PkYXUCF+S?hiL4h
zX`PnU2%;4`lY;C%HVS+Aq)-n`ihyMh1*Wo^0GfAS{tB;CQ%M;|e1NPR5b)!o9hWml
zjx=X-2?E~6AxeCEG+OZnk4V;c$~iN@z0@tL@z-yay>7leUSMD#^PFBT_umCeI2?B@
zgd1+bZrXK%|68feffP(!uyz_(Fby&VOWmGT(H<Y!z5kVsS~QT2DptWomhQAJrDQ<Y
zj*7myjVJL4b^Z+W97;swY@jOX(^g64Ee}GX&=*25bgEpqYqZ{(VKyrC!#@eUAVUa3
zVsQ%GDaS^829D8MTV5JMjIbeg3BMu0Z;fXceP`p;<0&AU)Bu9V@zS>cL$t$xjSWC>
zk)#M8SOJ;7hHplZ0mj}-Q<Acxss;NE%m2dG{>2(29vsJ6n6%aufXwnie!m9ZNBlq?
z_gO#?M=C|`j$XOiE{~$OrqW`8XDOmSFFNgMyBzpjHYp2%B!m+6lM46iv!d%r{e;n{
z_NWnnS{zikzq}ItLzaQOmUfJAD>{^lunt_0D$-SeOr6cbG39k^E*NPNu}5QZWHi!Y
zSdM>VGEYcQ1$}8Pnh}>shH`h(%ING)Tc>&sC$f;86id0<yskj%vU#|r?2yF*;Q|`K
zj*K>HvPbwX)kr8}#1mhR2=ONYKgu*_U4cT7_-pFdU{%8)#8UE;%H8wp`JAAVYtaP(
zljecS*P}h<UrD_}A?BVSlunN3s&_ngFqL0fCrPBhmbFCdOL`iSYFR>J<&%3xcbsN>
zP;Y#~vX_^;9d3<E?yv<`b|I(5q4AYk$T>L^{TxAf3?m>xhJ|$)$H%nT2&<tiCc^`Z
z(PnIZnf2U5;7#JIkWbjzNSPA1^@Y(r;kXi^+qUDpfKb!vXjnc$WNjuPw~UN7n-F!s
z%_o?nA!95wCsa#}e7EQO(chMEQ-!v;R|!46<|jtkWOQ3BN~iSl6PntP0cwqH%iUAk
zMsJE!>0vH=8@P)-O3sqQg|S`W-Xhe-ySe{AWB`~<ZFTheYhl`)vtU*Zgu3^%=-9x2
zRje*7DCUFmFYSy*N!%BqZs?j~EX~ZPo?sR%dt^8e1&5M_GDu3?l3iAZBZH!2jV(}E
z;&$2GS`{!FRv1nxY-jO|xlPgj;Vr?pR0T2t>oA4vAuT+#miQRUngPjcXnqAOy<kCf
z@s~EyarDLQ0T2m8-`W)Y=4-C2ZHEQ&F_$r1=ya*x)X2L^5r;`arLtIO1D!I)oqA6H
zlGSYp{ym+(>pxspYPUqEp>l*UFoZ9Penh;%pdb^-cl5Dx(D(HBu5VY(WD?5B0k}}v
z_uobvU}wYk1Y=e!Q0Ri5-PRs75RK4Hi85MA^NmmrQT``aL|5Hl--0e-`6!@YHxz~-
zeRD-rl;SsnPylhvzEsY3k=v%uk3i$Vh-(VhaWHxFK;e4GrWwG&P)GwgIwkJZ34U+l
zDttaIZVdpEKgn5;S4EG$%Ih#YL;}QHOdFZ*#elGO-ev|_@ZVD4uD>@b3*Hj@NlGs*
z*Z|%vC8(Q%T%#nJ-evBCy69Rdj?fU0Z&p_Yez;Z*5arUne#~+Fi2drda2xhH@8Lj(
zWBm^704ovl9Erz)DbX|1lGQ8R#$)^=I3|d}S}~ze9d+9(af{}9e+tS@a-cDZ*DHSx
z;1omov#~z!25zY_B|f?ZvO>8Tk(Wv5vp}XHyRD#(T$Fk``!XN%f;XP(uO&Fdu+yvs
zDq0(qmK@**Q~oAZaFX-Djo_7I79k36UF?VN!4x^?N|0RwU}L~GQZ;>r`+cpy`#u|!
z0;z017~w8j2<+PIp9UUeS;T5&u*)QYl-aYPbNqP}1Tm`6atn_YDL*OOmr`*Ab?P$!
zZAvOJvMDiD2BV?$rNTpVNd0HFHEKz~SIC5;WB3VvHxLBKX%spmsaCuu%bq$Z_}<Dt
zGgbpRC3P0GDZQ`1JixC&oFE2F#iS>$e{P7>$st5BN!iI+qmKNLPXA}Zq4rtrSuiBz
z+cq}(7ejI@r;O;7Lf(UQ$=S<ScKba-|JIq<0J1qic9|yuzUM-)Y&4EE8dHU30)5Ne
z$@Tt`P&XL>fAJC118^>JPt5Yuh}nre$PEza!3Uv%OWpB%`PWn(9a2$1^@S>!<C+PE
z7F2oY{&sp33?pe)o5J1?E6tw+Cnn~*wtGSZK%ldNsrv0|9RYLDvv#AJ=+|!=ZLr>`
zbXBYg-LG(|k^a$83qFaU7FR8UbJ=XaWyprBhOe2mIFbh-2%^ub)ZvQ&f2duvP?!ah
z0205O?ms@9o4^gkO|`1*H>b%xais5!?fv3>l+c>oyYdn@J>?TD1*<G3XALCAWH!-i
z$;1b6HDTe$=KAvm8wifD^C8TCE^{wb`#B{x_~eW{0+x@jfXeo3_4{5IrfThML`>W$
zbcZ+l%#uJD5?k;r-yxxrJ>Cc-eTRen-e4chDWpG}5obpRs*ymkyXzFc7q}?*LEwyf
zOWmbM`aeu$B8DvMaHde*t!k)JcUF$SKEq8klROq=g(^PG^5=oAUkRlcEL>(bI0@mE
zQk_~P+=53M)Jh<jL*?$Wv!lHO#D@@5A6m*17-IG{(H=WuC8<ygl|xkv?x~?vbbP<r
zYS_3(=vX>Jet*8Z==SJQfmeiFpc!++$kuG7;=rcBHh%nIG<lx=f)1eSIY*)koeiPn
z4vZ}%Ct75)C!^~$O=Oi!Mr9o%t4OCPqpDjWNwV6hCsybPmNEbDvqOE$=Jp6t+iXc2
zTSLc;FQ@sE3yp#%rC?;p2P}5QN&c0c!p^G*7h1$TBh>Itr9WOJjYwFshQ(V9k3Rh-
z?K?JRcy-r-M6sKK4Q}A84T>bC8ePec1GH)t`dG$ao$mj-r(LckcEFHK0iTDq9~Ny;
zQZC6RdKGMJ2Oe3pgZQ(u-)9rplR=~&oE+y+<Fm>2)vak`2ZR<Y*4r5pq?xybmh$$4
zkFONkd`HJ;HO=I+C@?|Paet!a@yNd_*VFQ^B-SjUMzYHk&gXOeTm`=H%P3n4Le0EX
z$_TQZGT_-+avhOR7CAzaORTYXFnU@Rl5!@B6hX1}7I1kAu`Mct{gJ73h<NJ?djPM`
z_(nX1th#8HA9)Ke2U=AVT{NVnFLJ&d7Kv?o&KJ?fm$HkNu!CnN1JO{wU6w|F73g49
z4ty=2!<dfV=!X*7;4<NJ9C_xvw!CG|Xlaw0nj68FdrSN<roaspE>V5@_CZ1ng)*k}
zt>x^%&zwd=psS<+ywRon$)k;n#Q<4vbF9q8Y`A@RN9ei&+(J^kg0QCP*0h_)R=Q@f
zf96=GzfM6ivOn9t7(T;>!Vpp}KIv_zbo;qMa@3>xL+dGJ>C@vZ?f;39!3P5k2Wt#^
zW^LK=j}&JW_}rVEX9X4Y>H&nHG!FyypSdQgf6P|5j)sZ@?k$rJs5c%EtMG@5qROWr
z?odlJ9BC`hn>&~X$Ndo5;R@Qo)k0CODMjsAz*8?{aG8TZCx{ioGR5xF8BykayR7A_
z$4RGhCkqoEe2~F}%z2`0BAio9RGTx~&SW^s_3}uElQJmWi&}#CgiI8>!^cLgpK=4Q
zD_A&2N$^(y0TdX_cikiXLEG7nSQ9WhQwAJ?JI4Q}oG&Et8dj8WH0O2X>(LjVa9I`?
zf)`yX(=%Xt%SV|M)IF&Q;{qLDQR+JOkFGz@o}#Ix+13F@B^CIHhq5#8q&`o%cV;E@
z9c|~#@ktcQC?Lisaii27erz=7-S7k_SJ-N3ozSOEZP7O>JqG=>I-5!YSO$agY=AEQ
zu#?dsn>HmQ%ZD3b$Nu$wbU-tMQmmcixHl#4O#(_&bLo)Akhk2@7<e*72awOCuB6mg
zj1f3I>6K0W*#|R%MK7$MEgNZQt6BnbX3)dYRw4DTLFS8vhRn0SYH73&EX%C31_DAk
z0d4&3q@qbXFt~~{Ld=4FV=g0Kj<yUs#p=j0+2B&-9*B3xH__43paLdoa)r<fsoU)L
zhet<m%SIirmn;iWT@RUY@US>T1754&&!07lA!JM#JV<bz@c|^DiKln-cOGUph44wF
z=z5`hY<ItRE7#dKl}a>aB;e)ml)Bw7iheUPgxch7*y~^%oj+&&S8HJaNM~J)jI+u|
zM!Wyj?hsZMmns*m+!gN~wSogkr7N_sy6{v~N-E~_(Gu7b@-euf+XOWPg#G~o$zom#
zEvlv>OLdUY)9L84;Lf7EvuR$41x(-qw^Lt~uaj}tjhrH#4%)>Zo6k&$I-nB-m02bN
zR!}&x8TCNE^k9Dt;nkl#jhZH@(|X@vnUd*mp}ee3@y4A7Iq(Q>60MPqiur5FFl(f(
z{geIEVeS|175h%3mf!maLSPU^6H;NgOoc0%;?MXM3&KMZdg5_jzFUduVg@y`Zf5F=
znIOeD8*Mv(+#qIbmJYgKMHv~3o<r^@o)OIs(R0BdiO~S=NCBluu4yAE2ng&~FN4yV
z_e8&PI0JH>8WsrIS}&El`Fllg{LS`?vbLtK*@oj;3HIgH(Psa)MXQvT%Sa@+Kx7BU
z{)7S>NhB*XH=GwlHc(oP-3MS&B7{0=i8rpDOjooznGT<y`~g+TlUlG&<W(>MiSU}H
zP7Re5U`bwB9&kz#w=z0$PM{4z1Rc>P8yT)vt5il1Pqo{$5s&H#4T?$JYe9zuKT}0*
zEW-$k@4(ihU|k7(1r>|k2CqfWDK&(QtYAtAZZNT-PlLZ<;tjrt)<1wxlgL-W9EC{|
zXQF=0*3dsxau}FT$plDYO!3S2i#|S)feANjHCa<d-eL7Geu$dElcn$Fs$+LS#)b_b
zkX0^J;2J0UhTF}Cs38Q4t^>D0Wsg3{f3zM$;?C2DL>7nPHivik!cQ?ENV}1woNWmi
z*)-<<;r@#jUKVU+0-C69km=qKKv3=(W!Pu>C584IJQR>3j7N*{JaD!jSr)G2IFcG_
z*U6T@(%*%$A`_9{oAG7Y6VUfJYE6W|CkT*rPqHRuT;rb%{_afqYpgy-5fhFN^*7RY
zg)hRnQt3)Kg+oiv4*;>gKG3hPtZ0*;YneLJT9so8BO2i3_VO=HwuRx`5>}H1gF(r&
z$oTuz2Tf=5=|CV+R-r?`Skwov1!;y~DPm`5*y-{AiC*upfq=9`KU!q$p8_{;t{)bx
zTU3XP)CAU=I=q+%UgX}J>qlkX>0~!iGnuzkKbN_JHh<*mL_xj_!;aiV3WvW2OMx6L
zNdluUF^$au0#%_Yd2n5R%aKe(y)cBht#dL2t6_u)up6XbgW9n$Q$t5DpXy_<0EVWj
zezmBUGn((-@AYp6a;P$KVSa*)LD~=^R{6z5tY9Mn!$#?Ws>Z8aHv>e%R<Th*eQG~e
z<cd4|0k|XlAoSXigu?q}!p4w8+x**<N<r(K13=mcW;)?W+PUt8Qsk;hLZz}Zd+y<V
z_161>P~?obNmyx(+#_B9`k@Rwvopy|P@$Y*J+v%4n8GARQ-@chyO77pAL1tly<@yT
zOG$zthOLI^SYQ+!VaUE_Su#5MNulSY8Et?yfRDBnrEcdr{_JYLK_V8q7K4`;po)q@
zX^YXW!duD-*QU$g;8dIvzJfW`6S-G{EW29arjPaesogjy3*kV`lcradI*D7iE%N(<
za*26V(>rjU3a}G<{afF3gWZz^1`>w8LuK|(75*HuPME?JYc`~i1dD>n{6^YO4>^u}
zi#l&Y;@siQljr*nkQQsEjW=eAYxsV}?z5S`oInb9M<-bh8K@?W0g|rU-edt@feBWY
z$28D_Kl%xAAQ7`R4d$c;t)i>~9YAHz@c)22&97C`9ZMy;le3gK+>!|RY^*RefPEM&
zdfncBa_C<*rE8WXhHc9PUM=s<7J2Q%N<kDbeIz`j4Y<#oE8Gp!eH6r{NNFZjYgizp
zK4NyN=QTS8Eq<BwTZK1O4VbCgLOS6keez{nr%C!=pi?9g((=q{{t<%QtdKcgGGK=b
zxFQ+FJUvUN9IeJ<BJU0ykHp%Trj-ORvwTT4C4pkP3t?2JEin73{-w$+zlo-3JA{z~
zS&_xeWFhtbBD-zpFp2*~q>wNBqt3S&7l<bwOpGG>91I)<)l1#nguj&^AW+C?qc{O0
zl0s?5ELz}ym$VyXE)5)LM({4{2mZ`IEFZYeJMo;lvD~zo2+uON%Q3zQGnhLdS}MB-
znxaHN`ox6KZEgOXEcir48QKK>3FGw+90N64CK*4ra^m|A_mAvrgF%SohORAlpl=$T
zS|h=11|5+sl90O+>Vqay$5jKryJ|`FsEUoS%T>t8*j(q8G`IQcCcEA+Q2)ve!~sVJ
zZ}<{7iUjZq<B+!lIeym~9gZJHXh4(%;)J_s%YN;x;Q^sni0SssEF=fQF$73Xy)OF8
zU+g_*;B>EbKn_UGc{fK#Vr!$EH0bK)5;Bf}OE`8z)!oc?t-MP@<Kc*PE{6<29Vp0m
zg}~)iu|K<=XNY7e_rN-lW2P871D2-KkhzET(vDsrVLsfMzbx8nbF-&34=Glm#BfQ%
zI%a20tM&V$!NC<>OA10J-Q%M}U$k#zjf33?XEVR<zXval5-?eJ0n5UP4Z-~2!;Tme
z4FkzT#??2rHp)mvsg%2&w;!lkmG=y2j&;YLKYx_9yJB}>H#>d7`VMg$bEVL=Oo}4;
z6R;gRJsZ42_#bh7^l^yaz#3Q?0ZD`+OWX!`Mo(O6lUKaRTv1xuu!RAEBwKrl%|x;v
zXiBYAnWH7J?^hJfJ)K7fdMYKr>{wMxZ7y~%zZJcY9bxQfAvuE1(ATTO{kgkjFAsnf
zGC%M(ptE8%;D57(LFMnObxQ(+PKTi&g~`b*bdQw!888I|jh7NWk*s-6JIH3un<EHZ
zXot*%z!!0SMWNYuf{Ckdus?@g5w$C`vM6LF!aRYZtOQ*xV~WKN59|tMfN=3-774Wg
zFNNZ@Qan(alKw2&kxjyM9edJ1jx0Wrd_H|0xC_F~&x}s{%)V}-=}Q7>7N;_FUYUK&
zDx6QFv>3MMyB+=ae+=XSWmbdZN+D_e%Us`x=v3w6pwbDEDs}@&;rP_=7p;1nmuM-l
zD2+Rqnc&Ob$nY7QSh;eFiYIE&_e9K;%wYB?i5MflvZs-f=02b|s1TFN70Q$EKCX$5
zRx&4BgpFVyfOVLu^Z7ENsrC&eKbD?hd2;8({yg^F<Ru0Ij3*NUiOAI34)(`RXE3$u
zNOs^I1-i?3b8ie0aB??fu<&v))FQX}!_j(|+iS41_%wu?97r_Hm687{pcdwXCtzh_
zD&$Y`3#QG)e|jpU6K0bFBv1!5KPl6tZfu@E@gU}6y*(REpVqJGeOw^ui*C^=nbW8(
zcwJF>QacH9TLEflF!{;}zFWa7VF9zuI2GJSSTB5bd4*E+1|J&z@R6;uM1#apVy&`#
zy5>%b9{ig7##{1TnLiu&_}`*~#B%FI$txM!4spjADRFzGqV`q%M92_lS_+BDmTi*u
zVg)B+ttJ8mAz(>OlWa$GFWTYnfs`PCde{~8HQRg8KrY~6nf3Dh%bY9qtF++2yoNAk
zqmO6>RAkaGayARqg&NZ#Td-WPK4xW<0E)UHG(=0L4*^afdjgp3rl?yP`$g{iVZJ59
z9pcK#OecAPSR||f&DUO6UhLY4s+}x^41_BR+?LCtE0)@u0~yo~gz-)M?71x3`4UDg
zkmCbQK{-@tKO4Ps7muJAU}Vg95uwRjj*QuF0}IVaG1RAKVOdCv%7&u!(E3e>wBfqj
z%%jr4Jqmuo7Yxo9zWY*?xtYOn@kwt^G^7|E>JK>IDIbSU{{_xKd5tVv3Q|$06sAD)
ztba$Nj<)AH6-xGu9)-&<{4m<-YQ6+Sm;+rUVo(sQ{J*yIpWxrvey)v-i&D)12>xPi
zg@08RX}PO`3$XNg8upt0Yd;AVU_a!tLz;v{q**ypd{;jv&A6Zh+@S)-1U+1pP5t49
z)@U@)0z1ifAXjAF%ds@|d)XW2Sn|eE9B;}H%I-s49P0dECh*E4Hvu<6CQ3+%|I0bi
z7@}pS37RmnEItf`3`JzB{d-_V+yZh9R*K?E`L1=8zcAqKH5oM-f+)<X-SGdSzlNNO
z0f@s|jT(B%C(w9C2na%?s;ikbhBqwQo$m6NJZfevp04s?Rb)!buQ~pRhqz3(36<S4
z{_NLR9OH8kbMS*Xv_aEgheHGd#}&!i&0aU$V$Bhz^0#;`wlQrG7KWNsF+W{ipi`j~
zl<b~j*d6bsaAu$@<C2U0=E@%p%Mazq+zh6MpnD{^nUlrt<l_U5r{I*eY1GSzn;)~L
zExv-#ATk-my*UsiZr|zt+l}}pfDZcU$*xp@jC!n^fllw0go_0ckmNuz_FTUcjyHR3
znp83va|&KiD7DO;K_X|s7G#ICFU**=3%bA_TsGf#1dq5Ld1tXg1&3J7-`nZ2Xb%`b
z(kB?r$1d<6K&f2D?i6@Hq;L{JLlPi@KXBPB{}OnzJ%`l-y(w5z?0VAvEJ=BqzH*qQ
z5u7SdX&h7$4!yNZVEOmxLm2AD{|hZfgUq$FC<E|S>dt>Y+VMG~8>Q-WQ5Yp`1CN46
z_}87sItVn7@DKJW=1s%S{xov&a4G85w;yRISfkwCGvCiV!LCoj!?TZ>8qzN8l)o(w
z_g^2GeGDGU=KY6E$SK0lIx+gG;l`igxU}_;^qY1vE%jgK;6M7%G?Ask`mC<ehw+Ns
zqP?SouoIvhb_2VW^e)ZEz<5rkUA$YMDp2?VpQOUwbEF?eJ|oXGWURxHNPqS57pyfA
zKRi)}v9yrCAMX#TwLQS&>>^SNHx@~Wmg3^UC}RmGDjkE3$#)N>{o&HB>LG~ZL26hy
zTzg2Fe^P+~P-A4XJRv@ufC+q2!jm+=-_cU28KR0ZZT8t>Z$}^EZ`zNy{O=UG0yk?^
zwEdeltoA6`40SUgI9`c+b5Fm;Z|#<eH1)k^mVm*S;P?M7v}qA`DU1(8(?A`}@0_VV
z$p^q5Jl0Ess`Vg388-UVoqU*1iiHjvgGEo>GAnn(F8-QqSXNCOI4Dnm4f1`{>3)N|
zd8oqGQ2j62fO;!YFR3d?qUQ4I(0rnv>=Bb4&>Nljttge4W><UY1rAX_#+#ku@0a`r
zXC$Ie8wq;?_ho~{{=&`dhLUnoT>(4=^k6~XYVc10qVrVN)it?58t4K3UmMuQPEp(q
z%3}*D9O(2%kGG#&7PnCzQWJ8^cUva?ueUVP3FJ0Q3PzHR*W7xxpA^|}0}>-hu+@1R
zrLN*s|B_@h=(SRvOs?Vdl(=s$^pEUgH!K8U;tqN8$CLf4-*Z{G8)`_KL~a8%al7vV
z2-6o?VrDJ<f)s0DnjD8*>Q>D3kB3h22wy9qH=NA?k*AXWJpm#zAX!1{`k->1eAP6X
zSwhY@=LpJQqXTfEyW!w)T98aGT3@o{;FE>!`)U5WZx~0>G9X-Zy&7v2s4;K<Ei9j|
zgDSMjjW+(@>CWhkdjlT<_;XKG&Lc(c{^R{3+0Ry1Ajywq(qPGK$`oUL&GK#P^Otpp
zUjcNf_dI<msotFDpKs<eqD@_|<&EI&lUKIrkf`myEMB>rKt}`w2b77jgs(snzl=r@
zienLKVRSa1r&OR><enPu`-DN`DpJ|4qCvtwkn&sQ{-6<zrd43-td4x&LN~7_ntYwT
z-twR1UXb!c6z0S??AI1)v((+y@m>qf5fTHY0XDMu42`sg`_g=#_*tl|aNv+7K4V(Q
z?}LFs#R$LFwr1yJZkY9ft1zGa%+b*Uf``#%IzUP<u5jO0NBLJVQ6lULFk+6YmYk!i
zRz#{LXMC(<{3#vgY<3uoO<l*gKs`U7RN3lDDQ-+$oYjzLT<qTetv?GMfH12-+qxD?
zz7<;S?w4u5zWPBTs8ii?+pKJ;*hSAoyGv;VC!yQoIWXEcuSZ8C{ss9%L1r-;Y=;3R
z=K-Q2&qxwQb`}R$of+Lu4Jnsvff><yhzrh)xhR^T)NM?x4BTP7it)uq16{8V4hqps
z!|lPTkwnI-=SQMfvzrO0=Y4CdXri27Snw_19a0{ZKE@652cZO;1?DC1<GfUB^okAM
zWf3xXf>>9n>+g;(Aj~d*CdmPvBxLdu(--(NyIgA%K_4(jOMZlgV6c~KqxIjjTV~PA
z-2hS}s?-|2s=*-mH9l{F<4~^`G+l)n*hKmAih&`m1>gxsQQH`@dK1=TiQmbV&mKIb
z@MWp{-41>qoFV8&vVTpCFyt?xU$G5DOl8j3M6YSuAvbWqU^C5-s7`W%JfcXhOu2h^
zS+qld$81`%s^xd!qcI~QX}osNucK9`Fqjgil&ygPs3!o=5X_hRMW0xWDC?~uQi-WX
zJ{*0`b|1E-{}0b{PeOO~N!)@NaB5}tV-$4_^>0gZU~?)djw~7#MaZ(W$bX3&`CasH
zX=nTp?VClmBq%D}+bg5GR90w#gGfbS1Cl~(H93lR@%w<u(~;nC-%7fw#4@%%;thim
zduhM4Pm%A*mI4za`ji`F36L1=b^fc%!Y!Ij10g4n7vRXy2ZkdWfK;fzss90?P<1OH
zxXNy>l~r8mPF&#kg@M>lT4Lx>A*<iZcXPJ!!?K=jQrUh2%4yI9_WYBw!>M8&IK|ki
zLN@F0qg8In(G)DQF^jZ`(CmtX{C=DA2CQ>%0)nGdU1r?{4DalD*7WWGm{;UN*3{Z(
zhA9hOq8`F2cge-pY1bkJY|!cm2?lwQTUF(^RF;L7Rhc9rkq}@!EZcCFkSVGTw>1Pi
zr0q)F7l-*oFel(Hnn7EVAVFMv+?ve{O8cjj%q8I+63wu=*pEL=uoG4IKc(@6J2HMr
z6Pf9^|MNN<BNSXcOCZU7omjE+%?yaOV8#>Vw7Rl^+u0Kn;Wi^fZMrfevV}?ljYwHb
z`seE)N|U>A*6O7oWv9%&QRM$2%Spjm73yLf!4$@nfc2ITi#((WRH4sXX7j97H+4GY
z4xrOa6h?lv#E%OErcNaR`wNscf22Q|&?VolY-i9(R8cVe&pyoOa))gI6UkOOBdjXi
z({ufM+8;Aw#lZ4Y(CwV;xWJ!tl(9)AIt?0NdFim2_79DLa9Abm59CpO5<^_uLd>14
zhescXCcn%QppuB-2KZ5B?L{u%`5Vr%C+j&?Ff_>#*ODzld7rHxrzRY<1!AxOI|iT5
zFrAQ)F!Igl5<QFx$D5If1~5fP$ppP*I6L&|Z_Sw=kSQuqfJQ^_1F|@ZPO_JyV+3^I
zf-_;bap1(`ARx2N$Z9n$eka5wR9W9v5PkUw-^B!QknGeo<WP~a#u7ugPH9UhmIx60
zF;7H;(9FztY&s|@C4l9-4J)I>g?4=sJ1_4~5=bh(%x&?T$UJ7KXY~=XI(T-A&HV8*
zcqT+6$ixitRL%zEV`<y4nx)OEHpi?A8iiP+7z_)(arh>_O@;;1)@s1y_0r#T=Wv_?
zTi;`d3hKl{!+k$SS8Zh9sw$2Y(j7uaK7{^-&lUU9gY6T<AiYR+?Y@o=D{z<W6BRwd
zlhXX1sW1au<ySw6hD_y#fCk)&9x(E3>=?XSJ-FZsQXoWq9Kpn~l>@!7c|bjkk&%Xw
z=pk77)E?inIdcd_1c?beM~)jqB9MyQ(mDQIPHEzEr9ehY_981G1hCX2H}e+?wvw?y
z<}amXxOyly1Nk3sj%ukymQD{{`s*?fw_!C!?!`x~BVATM2DN17M}TscKO7=gc<F-w
zWq`=o27$io!03Yy85K!|{}{rgz(N=o5AN@WuNU4&`<I|64NqQOHwyt}y^@TIc|}A;
z?vDMVV=u8Cn2^MFm-;StPmhT<17GC!Owwhcd??&CJrQNo$-+ud15Xk`Vw@~$#sX$J
zrz)DekSS2<K0sIj3S_~Is<0(>Y&2A5F(*~sO2=Y%6u6b!`<I$|SiX-Gj07H^4ROgH
ze=a)VL~hEaQRau4I`qYDiN>p(O&``1dcFsYjH>l)&C)tYlCHLvZT$$3A}|4Z<zHj*
z=~xFua&1OwuShPld2UbproDNybPfv1%B`h#Y|Y<1*`G#K8PZt|#{-~Z9)L06;W8Kp
zDOx)`v3fR1(-JGctqLjimShdxD38QEdQOJ5dUJ`8_9O<Fa7%cav3A=#+FIW2TJ?V7
zC31<=nr}G7i5{0KwPwCk<n-}*e1-*%zYf}-s#wk6X18Kqz{S<_U11OyLzH7lIaH-i
z_g|{wm^q>}Ed^E_gR`0O|JjOnC@MQZ^JX?vfUOFC<~jxE1)UDRR=7LnT5~O~0su;h
zlB<jg0E@Nc;U)WKmlxPs8VXs2Kvtfq(vHk_;?eR22DY=*RYamtA#55<NjCZ}6iXoS
z;0GAjIx1R@io9-cm`Bd=NlZ5r7U<U=+6^fF62cgmCpsXEn-p^doX%WH((Db{m*`>B
zLoAbJL@E{kGup9<@j`Jpdqjqo?46LQ@d0%+*)#)E*;Hs_k?1KIzY)e03<yL-yDam%
z(7*UG*|U2K@u~TExB=}8I`iB8{VQ~i;}@aiE8F1{^&R^8@Nl{NV0%CD)bMRavuvvw
zg<o@`gWB&a#*>zSw}cTBS#&8>S_A7<X@0+<u9zWb`ilu{*+Q6^pxjjw*n!&uu)&ah
zgKcN4W&djTaQz#4{R4s}l-ef+Wbpu~ZSYIsplC5oI1SD+fHW5NZtW4iMqo_9z?9sC
z=5CNA5c850HP*i-Nd^jUd3X{x1C8*=(Gs&h9z8tQ<jACCC_F@lfLootwLdSUpb+Tg
z5QD5)N#Ef`{zI}?B#e`3>@@8d{s$iE=MP4U9<-NnheP=6xNEo#dwKm;QELxxAw?K;
zQJ|cRRLpxilpm(g=KKW9+fWM&UXMe};V>JbURg)lqR}2En=E9Q!k_2(7YG-LIY1P&
zg6QMJyZud7L+ZvU4Ve{8^(o)1sX67wj4pD=-5!sv$f=tl$eyx*PFGtCxHIvO@q)h%
zsvB3~Mkd>E2AbW3(HKkZXT>j1%BdS87dO?EcD41q>5-e`gNt+Orps{=-_K9>xiR$|
zKRF}!Pe%@_n?{vFdotbJHQ$W}+xYy)_|0br)s4qEXi3g@6Km;nab^6kU2^IsD?-(j
zPW8FzQ`qeXTjQJaa_SB!bG5K2K?n-1T3mf4VT*HT#&^CvsBR1bFO^KUBs*NqNSJo<
zG4Wsa$*G&b*|nX`Brno&xhX*$g|jCcrZdrlC&lv*%c-lvHEQqTj2bs)5`!(85#K(I
ztALGNnckLJT}0JVu4)VcmE!ob{G7Vcbiqis%%<~}YnTArY)~EVdT~zO$YR!}r#+n@
zXPyVDCziVR8sqcN%&8j-)JVCb8#@V=^FVKW%(Xdnl_hSB-U+gim_oicYd5vToj)ty
zrZK0k!P<|vGU479S5s5suGk^BVw0S@I<iEO&EUONm2l~c)p7TZHq$DbWQXR<OesSs
zjyGqm#^UsIEE?yc)r~B2w@;4iPS2^Uu?Rm0$IeQ*hRNmbh$tTN?jTK4y$i_FVfYDC
zaIwZ75l_53r>@%C(y7BU%QgkVJZDIJ#}&{*fkS(fVAQN9CXJ*FXMX$+vu7a?mz~;%
z>N-HA>G9L&*&>Vq!e(fe>@O$9XI#NAm8ZWzkJn6K<xjgVb_Xy)<V43T;9S_-)yx3H
zUl7;Cd?&mKN<rHLS5*%|99$olZkbazsnkuyCg@32L4u;pstNG>^1b5abL=JuOK2*S
zCc-+S%j48k=oR87A*shG!c|qVmh+dy>nB)w_Li)uCecV`736tAQSQ=RbLys*vR&Qk
z=;y{xlhHjg_wmmM)y+Un_4Fw*w|W#h>X?T3lTQcL)s$1fm+mDWA2MhtcZW@g=iiVc
z=3zIwwZJK{5A_~r$75>k#w2>Zrr|`c!_mJxJ3ec)Eg1{hhmp()_Y{)S%nTkIJBgs-
zu<m%Hv%)V@n9A85yYldOy=C^%Q|N7w-I=Nhh?UFB;-zd2n{4g_E7IPst-wxO9A9#o
z-5Ck`fFkTkX}Km$VIBoX$9G%=1rWaM>S}7q^rU;)XfW^Rd*iEnnK-P>LB;7=eQY2U
z^U{^^b7_{hjPJKu)lMjMV=jmfZ8EO07u4})?Gl?`;a(pb=be~SHy&KJy|1I&2&t9;
z_;2IQUu7M|QOv0-)6|}7g+E6gz!4Dz@vUFkJ^Ba|?&KuWkq4mUPTV`*jO(!Ny3A1I
zHY|y!?g?2L9e1`6A$2tkY<c|q_`$(^IoDe?+r;=(AC|VO8(-m~miX=&Id!AT-T2lp
zulmu&?yAG$5$y;jx|5~S^R<N4W6%JfUJ(EGM;O97!0H=jOoUBFEQ{+H0ve|dx=r64
zZV}Je@V59%ZdFt0Nmh6EPBjAa`}5-Q+cQ-}r+7IrMm{#&f$(|z`S|qx?UraOF-0_C
zw~E~fFPNMg4^%xs>!t4F^7x!O+l%^)21!g*oIUAkCm<P_@#JF|jPn4%{I%aB55Q=;
zZ~yqDe<BKsAoebk8Cy?`8~?;c3kEYb8pAT|cwhWfDNiF^2#|?t>&L??=Uf=yvpZjf
zxLsiMRXvUKm>0wo_hp9#lFaU<?x3L_3xDtv@%;_R@(Px>lNcgO25r)CUcCI{L6RT!
zy{S|;nYLA#4)`UNY;x5|>8G3H7oe62%F7|zpO~&3_s-_P#nltp(wx@#)pOW3#!~2}
z)74MJG8nOs&4H`n4UKInXh4+Ay+XHhc|4i<Rf9P6^|lb%>FMfga%0dkNTa{)X8Sk3
zwY_tGYhxSxitJ+ZM9*v<0>`9f^>n(6oEdi^j3%JQTGiQBg>kMPaZ+|_ywy<qd3B~q
z)77-J*GtZgZ`sC}e+*kaKS?@;xWCLjdS<+!h9^v1%(kCP+TZn59BpCR4DBNbHRVQ6
zWiR2O$^-4^l{EJemf@-^%iKr*Fn$<c?#2>;L|2Vv=eC~~*Yw#Kq_xVeL=hquQG`-E
zaKdzJ%d2;ykqcdKOFUz`X~>2aR5>P$=}GRDyH`{3+<GH04nbCrE<i*GsdhrKzTom^
zQv_@ggXQrLKgsJ%a>O?qWt^0}4zi%{Zn7hddF&>#<o`W15DPiX3vA9455St<?BMvy
zacE4f2Q^pFTiT79L59=K@nFY?qZBhe^RWaW682|BcRcbBHfK^r1CxxI1a*y1+I*2U
zuzNdMx?OE<QY{O6`>yfJ&j*Pj%W6Q>U~@hG`*_A{gQRvV7t9JKQdK=Z_|@a$GSso;
zVhc?RQJV0;q>*Lrheh#bJqTdcDa^+}tDnI5m(|5j4>#pq%`teS9iYCj!WzfL%Qi(W
z64ECtMN2RS&F8L;lY1}%Mx$xyi3gOsOl|xXGzz!YA|!+U7|C@+AxdZ*n_b(QqC;&T
zJ`|w2oA8~#_m4T_DwMgv0_2e#O5$N&Qz{QLTOlfdMt5Abzq*qjv8pXerMYDKL8b}C
zx?BG3-#;>ETonmtpa-OmSV{@b3*O+y@ylOvOX7e`n)dcSnoAe3QXd@WZy0YkDqBI9
zW~ayifIth%h|9S@ALXx|k~6LnD^bS*_Vo6<vNB*?x6fz(;4kc{hL--$)Ito!vI<-%
zx7`K)f*x*Y6$CM*dI=zxk~!V#<G=i7@Hm74DR}TJM&N?HbXO*wN4NAIKChSBZ{S(?
z_(K1iLkEwmM3S~PGi({D%I?!Q{Nj}iTds*v;lmEm0~e2Q{O10dIfKX1?SRE-!i&Ny
zC}WiCru!?m;&r63feticW%Yvp<6pUdZXN&oTZY1R3~Ou&&UvZMyg48_3u#lOSzOxe
z3p~$LKLBqidora2oiwNP>9wD{?>B9+;mLQ&E;Jr04<7ZsfAUF|40v9qX-_hZn^mTh
zq~7u$uNXA03X-I)O-I-qa_rcg>RtV9*YFJT7gGY<EA7fk!3f>mzm6AN&Rjuul-<Ic
z^W90i_|MO@Yrsonf`So&nz}Pf{n7_)tKg|rIxn5+$?N0zTx3&40l`Rj?t6aIr|dbF
z5Jan2en@etzGmS_f8Lcj<EnAYGQ^G2EveQHS6Z%hnEtT8`&>R0je#4j{`EzL_+4(7
z*mqsR>)1~A5HFn`BKV^2tF8Ru|FP@J0ZleD9(P26f8W#>h4<@;-sBua6^(fL${n1)
z<y4zl1N%hQ4~^=2^|>ObskuHkeC{-ey@elW7YcA)p^6HB?}I!@yCAIe{y<LcsXQIj
z<;p<h^4)s(`0+>Bd<feT&*)6$bp!6wL3Zyg{D&f8&>-zFZb^S{Dzku&Jvis?@)!MY
zT5UO}bY<q*f*Q5Vp$-P@L?86VOaAJo89=!WV%B~d-)sE#57T*+SG4l4sG9El{J8W9
zfAvCJ$I)GxCca`||A_~?1%>{Eix_EuBs&Zr%mZuA0~W}nTItGAuJVIJJN+}&fj8`x
zN##MXzh%sLx3_%D^EL=Jct1p)Ss<dOcLI?hB2yxg4;J~?OKlcJ`n$yGFibh$i;~*i
zw?E9|2ta5fmCTTisLlDQ)Ni;Kj}Xa8k~rGj2}>5Uq3-sh{MlV_9(ll=EQACSxx^p%
z%T8ewaxDzIF~&1mWU5Atq?JN(mwe$Duyd6%eArQrxCUAf`z$=yuc))v@fCtV7cg~^
z{a^e1>!W#{L}qVZsyDBrbpiAXdJXhc<gXviXyUmPJSWEqxx<v0=HtF`OS{+5)8EX?
zVDZ8VQp(+LpYbJc57LMve}<(fDgrQYIivm6bNC4Qop$xHgkq&McpMEH%Z&K<d(<D6
zW=ujF5|#?cWF)2A(~{GWZfPmG(yr~x=-LlWnom(QMe>`BZnyUszi2*}3C5uMQu8u=
z26vEI2mAEq>@JOSMM!}{3d?}=+{Ww0UtG@{i8*GZFib$O3FEhopTF4F8*_d@$_exM
zcDs0$<b9T;65>YWF7PFs<1V__?{cTjY(^t2wLt3#3BA0R-*$>UGzE37SajaJq}G$E
zmlxpn?9}Wli`bp4RLq0dsFH@nML{3_!#{U~-Q=X#0hvp{8YaH@Isae>w~&1XoB<KT
z`_eG`@8A>n@ycRzyk_->ZzxrJME7BF{LJ6%<7x>~@-8LQ1NZB>W4`j^p5b0-a+HUT
zXDQip+rS&1@ePyhCTGa?boO&u&n$n)Z!pWm+=NyVeo#6+G`N`G+R`Io$7(Kk#@~Jx
z8vsdjjF7Y-)RpfZ+{W+vFPkHde>eU>p1!V?=nA^6kPZ_E?HQl+k?qdo-AD_2w5(KJ
z&gX0t?|U?lVninsO6gECf#x!*-9L5^D<X@yKef<k3=<auBZ<Xb_N<?9E{}opb>YMy
z_*i32<%ZY&4ShUD<HDpYp4Jb6rW97qcW&dj>fiRv7*Wqc1TUh8T`hjfkC@Ffd=-(t
zPEA09dX9g(jc)~ghbgEOBq$}RHsT!rNiNrm$z{kiN;0DJ*n4#T3cqN5WB4k>!#o5K
zOs|dqYPsL9jW-K~mLQajv=5?XJxf$1!Eo-A{`+Pl`Wn11cB)je-~Bf2{|1@DgO!B&
zNhCqI0`zj+YwZ7gs4X1+R3pMHtDqr$p5=6Mj1$ff+0&K~zY!JGN6rl=mb%Zb^52ZH
z>7Y(9@nAh^x(XmPH}z^iV@9}#x!sCUOUM^eTXeENmS^~CSe5T)NgyUBp6{X;{8<Pd
zD732Iwzh`_sVKzUKYnPu<a-7qs{{$QP@<Gfk$gAnXn*gYxh`9)wFi@_Leuic_^yRq
zRUEWWW&v4|{P?(W{x7?k0i(8-oMAu=Lkn=#iGH>in87Il6*uO!4^Pt9zE6n&+K&g0
z@=wCVNWHM^#6*$xs3&*oGC%c4ObuKb+mNQ#h42B~nwC1?67qvF*cPzKjUKZ})gic~
zAG>;yb=pOg5CQ<km*U7f#6LH~)_PR3&yJr(Ka|Lv8h(bq^$<n?o~55nKYKv%##KJ#
zKi-eIsg+EBbD!zN4ya}U_MAG!r#|zid|-30>t84$4h9SBo=S@dXlcUOkG<$eY7}%2
za=izWwLn%fHpa7`8_|%(&<Cxd4cdpd5OxGYm5^n%t7iK}wf38^1Z=8`dV?yG{)Nu8
z02lA#*Gn;dL2LTzp8k$LWLh3s2~BLXzP&GspU0Hcw-EDWru~iWM6>iI-0ghDuUug-
zs%2Cx7g4ZO+~Kjm>;NW@?Vm~~Mna%HXa-ufuys4W>wotvQ)a^J!-A*sW_R`JQ;49!
zcil)xV^p#VwqDE(i5m68)Jpa#L0`}$>2*K0i9IQB6O}eACB?t<l6_JS<z;A1_jtE|
z=R%&9KOw=}7fhttBBJtAEpg7JzU3Gjy$)!$i(rf79!9Px_6`44d!T%Byt3-0q=KV2
z+(U7El#C||h<ZLmI~0(Y>PEyqUv$qg7s*U-Dvzvx5`d9U6(r8M_2&8?Wl<L((*PNh
zfnOwc7j^h;g84JeGV#iav_@BRiWnrPW#{CDu8ceZHtf#leBxg$s|-@AYGkn$mtc>%
zqyFwk{DT{C9W>P1p2vR)NnlBfOncXhf55~=(99r1FH7QZn+h+qV={FH=lS-TVJiVJ
zkSTPZWD|7jg^7N%!x(&kqq-$`OU$yXx!o_9#fwPp>zX}Vri}WhFrj<>_yxAf6Ox%Z
z$wu2A!jTL~!HfIx5MMDdye-o>S3cgXezIQ3Vv?XDG*EIdYf1BB8LcfT4Dv!+&$>~2
z#t*!1pQ#{8_Ctc7h!d$t+kf;sUB@rXC2EJ=N%ds$$j@^-zUeDh*)6fVl47`3Q6m5B
z^w0gd&)Mb$hez`?_3`d(|J_L2H$2CAFj#q++==>5Kl6N>J~^f`#N-uRyO%$cWr70u
zttk%)Yu!2SDE}N{jytu<p5z?hXVHZ?^}p?Yv*ET(Rhfl-e7<xR4Kr_qE!oU~2@cpo
zl8k4&_>j|hiBitA{p#w2h4f#4+N;dR^6dM2laM;xAjpz02_kj<ll?B=*w>T5mzI4D
ztC4QVR9FL+XV#bgOr#+zN5P|#B-lz6a=u&ox!>U(ZYbe>ZBw63BSBa;agqIQx7+*<
zn7@$8)E>Tt#+N+2)7AdqFYO|Z57t8(RYrM=N_a&=EWymn{7)MNU94qmwMV5{U%t}c
z`f2u2d|N`dJVDN(+u<hv&-LsHvH?2mvbg!EoBV;YAjx7Oi(C_sqA0u7|Me#uWs(%7
ziQy7TRT0y7`HjLbw8jExz{Uc-=~a>?&z0Qh=hqnjQ#ndk59N6x6UA(CBJSRpTdNnO
zy>)?}ZftqSd<O&qzj|jIe;rK6rkllpFpwR|_C7hoKY&hMy`DkWzys;LS?mW^s(iNv
z_xt0|W8R9lBK{HdjY$kWX$xuu^oz}g_>F$#1>~)uft8t<!CWCnlC`*ZJKr>Iu$)?T
z)Brj(rxs6%MCj-JqnFr+O_R9mN#`Xq;l&(@NC@J;yT%tIW8@EasR!EpuC8Wkk0j%E
z{Ez?DE%qpijcJ=XVz|N`Me(=yG8Z8q<Ut0G#V2-Cc8ME5F?yw23}zFW-wca0H;GpO
zL_lrWhN{0sI~jE~0vsT>%H`V3U*R_woG@U=he}+;QZc56Tjc$tTe6PjZk(Jsp(P^M
zS3mckz0DiRQEBgDnov2mplI>*SNtNZK6r<=U&d63NfJh8ar|K?1<Lx(y*csaxAQcw
zMD!#VD*cs3JD|gNA7Wo#*(#3`ML^>4IZ?dNj$9>HEdoLRSIB^^y~)fyHW*>tF4GKx
z;xOQc{KjYqq;OS#a}qpFB|rJDU{}A(bl#YSy;6C=u(;^*e6aMd^qX|qW?*Hdve-l!
zn1b8nEr0msHlr$iJpOV|V>^y3n@C5P3-^diFfkxe(!3xZ;R*2gw!{1xC$gaUk#x<;
z^n;5+9f(fR<$C||-(J8?@Gc|-5`eTG5zI!f`+wfTSRor0)QWIeMTu;Ydsh0*(K>RQ
zyHNh>sbDra4ZL~TpZ4@)&#~pMg4<gNjLELVUT0^2{gWS#2ZQ-mOMI$_q&)mm@|@g%
zU-6qg3pfZ};8=1?0k7=N7O(V4C{xBLY^;ryT@0KwtEWE=Wx<`0e#MY@AF+i@RzYnt
zJy?}eM9o&i<A1+qw<gel*4VW@uLV7c7pvbCkOlaBe*EQK;qgpXDx_15+?1Sc93H>;
zf8i$QFAF+GH9-p`KOI^WCtl<hrl4$mG8C{8NuqP7U+Nz&4mV(!PGmEa1{wrxE0*=W
z3l@7`Sc+7dqy@RkC0e69p7zUwDUUvZIkJiy(<0e~GjA|piL8R?4F7Hegrz(doo19p
z{5V#J<@okXe=Ghx8k+MI7z7NfLh|i`EBuv08f8jgxpiS*mdjHA$E9Sl*zYTQKHwt?
z4erUm!l$}Two=c~h)J83l@Jc^7=4i+S-{;uAweZjlZ*&I&+jQS222+EY^Hf6dnSme
zx1~Rg-msZ`f0?glCgLJQ0mh%C0b8!cx$PtWj}KWq;9l8y7>Ki=O>@XeG@b2l4CsuE
z%!z^c<XXrO=&18s?!l<YPi|Hc@f8S>UnWg4^Y?!0AnuWyO8X_^@v_Z1o`_pVm-<)t
z<CYGUBS!|X&CK9^4)JF%V;*uy`p_bjBXLLK=7lDIBnAiUJ8}W^f+T`<#n;>Z$=?I(
zG69m|wI-&M(^ipGS|KBul%g$)vs;kij1-`3jt4`49DS9)<9PM}X$o~3p&M9CS++i3
z$)z%IH-Ft%?!@yL*_3thab!s6yI*Y?mloP`26e6a{!|{|4|~=$yo>gQ_%1xX^kRRv
zygr4eQ-FU=Jjj8k|KqokMM@U5c0$%ZvXLcSv3dNT$8B1u((pNIan75S(h8jMlJCYx
z9uU`gEv+QPwfEunmzK(BJ?+P6DBc1jM+@R+)Scj^lstUEgaT3lF+#5KFD|#Apu^?K
zv)84v_e(DHd){M{Vo4wcCPj$}pZoIW@%-(0DPa#pIjSxQcG*9|iuk5trdIxyCvan8
z-Ly<gKg$BzE%v#s)en+w4iqK@-fm$9Al)(z|LKwbc3df~5~HudH>3{heie7IP<#)%
zLQ#Msqr6A&^0g-gnN5=U0K_82u>Ldt?-v-|)h6flD{~$Dy3B3%8-LN>*~<yFhi5e~
zKMUOJ+xUAX*n*m>ZWacd>V)zPdFa~4?+xaO(O22mgt5+HFMQ4WoxV*jnX*}VJH8QA
z2`E=2`+2{N-`epe+;9SMoz%<2N|F-mb@)6@LHYuOm}3olL@Y>pATzc;UF91dVf`?x
zZSjqqpg41*mha-L|7fF1E@N|M;4^aRT(pnBVKDQ@lt3t<pbhnU{|tX1?;@3iY^AKH
z-IdqWnuic3hsxXsN^*AmfZyO(;EnX#n1!@0qt*GfzCl=W1^Z377AT>V&jvM`;}0KU
z*VzmUu_Q6dl7>lAx(~S&NTARxcB6^>49rClA7#Dr`QOd=mxD@jwKlV$pNrz`FX#Iw
z7unWV28kL#Nn_&{Fy^4oa4q=Kqc)GXKf_4Dqz%Ar0f(-UOL&7H`UckrV2ZwZM7yvZ
zs7Cm^zvxXA9mjyn3?sq<T*M}EtL7wM1`I4kOuq}=)o3u#{0sbCEODl3S7j~oiMS;O
zE*F%F#>ny`My~ateJJ<~{wG)a7x?Pk?X%^ZFeDxsM&rCNxUB)jU)wFP!AS^~cq^3&
zR?_QhbX9>H7*es0(h{MX?`-QY6QZLyAgaiA$Q?h}PdVN;fgEM2Pv<^M`vWE9;Lq+a
z*@m)mIb5fF>bp>++FxQJNMFjh`M?MM=+8OKrWs^cV;>@~NmJpCbeGN?&NK3&x|7PF
zC@|0an+<&~0HiiA8;g?+?LFSVJC9%E&d7)`lm!VW`6-vMg76<lVt(LXd6q|u&1pAN
zF~A<rCgN?jWg>DT&8X+wZ6+2UN$%#~<D0}S!tX&g=+FoaJ~_<4AbSYI4;mzrKtBoj
zwxrRK<EelTq;lZK{w81vw6)|eaEF8}RBT?yPOtk<u)+A28S~&lB&*ITcQhTlKp%q?
z0@9_^UAr_e@il~4S*gC{Prr$;x|&}oxuG9FTSlkY;@(^QuWz+4q*@wNMXGVa;JA20
zwnWLQJ^1Fd-jKuctG)c*k@=!*HRnqkp*K-W0B~+<Y4T|Q-cgKY#SG-XFO(ieliZu~
zD@#}ofjzTlV-_{G0b90#5mXdYe*DD#@o_KP6o@9JwGdcLq}^;4$Ja=5lNy*#2X%r^
zAri4D>!qLi(Q^N&E9=ToTFD2=8g0DSp8+n8(yK97u|OW#ij}^I?ZUK{xX2KYAe&Tj
zt7VekhY*2o5X0rPW!;dS|HVZApW_$?B_}Rw;$UJq3NRqF^V#YCCxOO=ZX}h|;t}~s
zL`Xr!h_I3?_-}u6FYmJ;xQSlrgQ5<<fjrp(zt9jCSXY)%*DZdB_w8$HKh)W{g?9DI
zH+;<Q@C5tXgAtEj<pIgLh1dG)WQP$C0m$WvAZT9PB5pd{o=}wgL%d?y43Nm3clr2I
zZctN>j-d7-xQgo3M=;?9e}fDjJ1z|99<hNDrl^$M@CwAT%TL6u-`l`sSITE06o_;3
zgnvkWopBLfu(_WFMY3y88SYc%d@Xi1p-wDl30abu5n%3d|K<=|h-q}3=|Z%b*9yvj
zCb`IuyV2%Z)dQp~*&+Ku4#U_Ne1+U83L|9Y08y~;*k)!r5~iRzC9LqRzf7?Y*_zNl
z36k&*ttzO-`^JC5im}(oIJ(|-CIhZINA|d&EV36ioai4qfTt1v7TH0v@RbLo{nS5%
zCpl{Yxu`ClB6=qEShasjUJ;fbACV3qDrcf70D>_Ijg39a?~~8h@{7y@DLIM9*UtAd
zgwF@>-)IZllXq=c?bl~3*m7CBX6k}!@L^Zn;jizv4L~ijuR%7`3y($n`#=0Uf3*pQ
zssujC0#^k4q4B-^B|#E1V!e{VjB^FHadH7acx+QY>|o{swW7Az5MV6B*}8N6ja9}r
zW0JGbq+qv9y=ka_sy<5zJs;q&U|Y(I1?6G>y?^ybhyclbQ`a=em1JHzQ9bW#wi%ov
z5qV0ox23U5)wu5B^W&C<gLJW;Q)lqTn^7M%<k38Nemv<9+#rTW$wpgyAM9NNGJfp&
z@u!RJ0gBu~i(C`w!3!^r_dC`uYG|EIn07T3PHlH#eBLqZ{J3<!yX=B^@X>Y=Lx$wM
zj9ysaHoqi(;pjnSoE<a`q9J!V*_4>37TiFqg(ZavN+W;TA)ayF5dDN6@0{Q*QNf-3
zVz>Kt@#1TS+(fYl6>|$w9eLmnZpk6>mz_h)D4V9q9sqF|bQ11tJK|4aqXby-X?w)S
zKFg@;{?pqQhSe>6^tdR#{KX-AVE|V15Q(Qm;judDbhhKFc*j{os_Dh*+!?1tFTFab
znl-G%<y<N624X2bKAP}uj;><J;lg)VOH3#X#_T>my7|o<+BT3wl4?#<Gd~+bC;~HR
zc-Rk44LKRH<=hu9Mx$OEN?_fR`FL{)PCK1RM#RnP{!T**1)xderg{VW`E)W{NY>`E
zlE+kcO8PH?#;VpRiT-$=|C3sIsP0?}O3yKu{)PSwik7%ssUy;8GlkmLko5dN)xVJ*
zazAOA4XtWEh-6KWBAQ9&c3*Cn$IQ{i;zUKUyZWHqL$1#LwkfH6H{w$)VzK*ZdhU_u
z+nw>sVkXtAnTJXf=$$uGxi2sI9}kseAKHnP9v@nrqrt5jfTEj|bB5^#?VRS}_7@@`
zT=G|b@er;m?QovDiYx@Yv9?VYZ|@(t#O|mD15=EmAY?{*3;(xMxm>CTl8Kp=gs9d@
zjh;B9^@J{NaR8Xy$gX)PaXBK$uM^&mE~*-~6WM+B90e)oKnwqU^xls{Kjlg4Z5!LD
zEvg#hPq^H!ko4NsIR`#_X14!2WtS$VDMVK7C_hY)Dz(I}j_<*Vn}?!z=MV80EwyV?
z2>Ul8WVrZbo8RwfyI7mVhf20Nx9e1YP1-I^%RseyG*Ry7{5?FHp{tuqPW7iAVSlf+
zDsJ@V{+RRaY9$2`uC>?CIm!MUOY5;YT=`*|KmP=~Qp4m)#<4z6&VBrQ|A)q*_miPV
z*>1Y!T})Kq@M4if*@?Nd%)XxtwlN_W5j|5}kRX4n@aWtdN`~5<cbhSnXe@`rQjsVw
zasNIx_w8_t!V^#$H}>e<&v)Ym+LWH2wpCQgfotX$CXhS7X~~`Ssl8!p?<y8PKf&Hz
zIWM=d+6JG{*ZHo}NEy7iLR9y=-rVWMcB`J`=2?BxP|6xhP|v-^@wxkDU);-%8L?uh
zYQ#_eklSC*V`z%^+Q|YUnWQv9pnS(ub3ch~xRGtC9wty$o<OEfI5u~a5w;{F(`~Ih
zkb&Jwi%Jp*#j4|Tclg0({IeNQBEMz^4IJM^Vg_%*+)Y5huPn;Fp)5>%t;rSX*1+Uo
z@h(nyX7{kJ6J-VNck^>UDGJZ5B5|Pi-F9dWs4M}0pS3vm-r;s{%vu{znxOU~y8&z{
zNt^6uk5+>H0WeCyRMp4lCU)fG@B-Ubp`h73KCYrn?Ecgdxh2npk3&SKS$x|QHhjHf
zbGMmn?~`T0r)jrJ6Eqb*;>g^M_X&5T@97H5VilB|BzW$W+?I-8enEl0F8c+{V^q&7
z+R~O4u=a&+_dn($x3yKZtL8DaSv?up;_{nv|4|SITC;rlyq~1F?B23`Yi^a6CpgRS
z;^T6MX#uJ8Sfz|=ZG2Htf`cw9|D4MyhoaxLA1V_4_8%V}TIW_lfv9!hRRzFTSvm&f
zNT3!TKRtKGwni~P<<0LwOe}X%0%^N%UoO4O?M-d(4r~P$Q34qI_G5BSDg60YF?Dp*
zz|_~7MQM>1e9Z(&PX-Jt6RQq8C3lP84n08fenD&3cj}zr+#XA#<3AXB0160JL^w%`
zJ$!w%`0Jquu%#68|F^jhgUY$XE{~qwbl5VEM;}j)KxbDU09>2ZL$Y=Y*3W(W&$}(7
z6l!Lw4^mNRv&g-1eSFb7d+I7usB0EJY9G8pB#j(G#Ap9j@ju3l&~5PZW}2F$TQIFU
zH7ck4p+2AV@rEDU^Z)Y)C2Rd)&1;L-dhP#u3>mX#-2XAJ!nNjA&#b$eI{R$OvVzH7
z&um~*o|5b%9@a*(y3My#sh!nZ#pjjU-AP&=WHSY$Wu@||AJ{nld}q5=+0zDYXltZY
ztVh<1ub*T$241E|2pq5Vu9-;=7#Vnxpzcox$M2TeL*oHXNh9TM*F3h4N2z>u&6~s*
z{Adf;006)G4j(XPaQymu|KoK7pSCf^7BLGlEqk4-zCPOHhM^lnh4n3MT}>-`oICcN
zXwh6Qk;kAOG|o*~68-s@p&O$!r(r{`aPIpnqcghsMUfjx9|2(!uH?Sx&J(z#f*0)7
z7U#BJ8eMrIS4c9NLko$vWV%<Q-+6ZQ@kw^MA%&@y>SVkLmqhy?2Qe192Rmki4?v&(
zfT(Es&;wA$qyJ0n0z=6CxNUU(hy04{f8q_+!_-|{9MwHyWL)3c*3WZ$kBV;i2nL|5
zUHeLmZ7$8YCCa~NXf@MUs@+0R3tD-)!cC)tj~=w{)rz&Qjv;vzGYXR%3-ouxqsN==
z$K%K<UP!r1LjEl3Une*T2Vum?TSupz@c;i&(ZG)oSR>ozJkrV!=6I_vdh@`XYOYo<
z$44eKMZCS(jqiwtB*SG^4_{@a)T<`+!v)c#1$Ku79jp!D^$u<c3i~S^8T)do38koI
z0Qr|>xEGTTR^V>^OY~-|J*4(9x~hoJq=nJ9v-v%xx>6H5t`~zyz1CdIKcjp8k1zW9
zE%<iLt*Wk+04*va@z)C6=TApB-EYq{Q05G{#A3B4s*~!qf$y(E(n()O*Ii;isqE+`
z^9o~?+^GV0!5h(W_uBQ^6kp1ZQMB!=qW+8jKjZO}J-&|e!%t{^k)#C7<&z@CqhCjx
z|HPx}O-aiHKz4OuVW;NJiSFIgtoKRaShOM0@wxJkFx!+ERpdT7Dthd#oN5-WQbo%$
zv#FY-cfgpaw`R?gaHO6fa^prUj=EpVA#SRcYxsb;Ye?`S_rY#){h}ddnCNsH=q2n4
z<Xcgmz$g0KxBiFA%;Dh)?II3ODO$bI-TLeJf^&w*=tOwYl7XXU<~Y~W?w>ko=uO<8
zjw#ws)niG1p0Jchs^gZe*S%4cCq!wl>i7>^t$U*&Pf_8=YU29vL{-niRCA(++Cu{N
zrFlZ`J{=oxv%$Jg73Gl*<aVfzx7d2<TWCw?ratWd^<rWft6xnKM<<C;h$eNrg95kR
zH!j;JT2@?!c~AXwYM#tRR>@uRQ{4Z{8(3PqxLo?)FXJ8cnV#m1Vu9*M>Rxy@cgGuc
zT}Hh=XAU${`pGcrY_;vT@x{f_GRzp3u9-@ANoYl-%M0E65BvRB@b<NysVIgp!!t`^
zo(Vw5L~|2(sEuIs#B6cuAo2rG^*5h6Y$@YckvyaTBgr(hCZTv|sekhtyE8VaL%G#{
zrp(=boj+{JI#;RlUh8UQdujprN>4^O1F#s0Fr2Ohp>KbOUvR~+r5LjHnZ^_VGMSga
z<Av_yd;C=kesP0d3TtkF_NF)uh9}BkcQ^4d|5+PPkk5<%g)37AY{b^*9p|^ZWthIU
zvRN3t$hyR>cbcC*-+n!fy1@*i;0m(pZ=UVXx$Wnpzy_f8-`{N4$ABF2Yr;r4xaayQ
z_cOLYb?gbusp0~Q4IFln|MHQcOIZX;q?spa{`ldDg(COb$$r+4+*0`yXR7H5r77)x
zuCIODE?4qnf?WoiLWD<L<u6!nHvp5GDVMRA2+4cn7Jv1>hAzdLsT9TwXi~<h7VgYz
zebd%V6-!CYLA1jexEctYt}bF-+V$*v$<XkF#w3jkxltxC@#Y@?#mz&PVrtf82xUtV
z%Y9~nOWhgs{Wl-mLk)D{Nq0%BD<J`M_2?d-{44XYliE9hG58)@Zf?>PrZ;ezOh=MR
ze{q>#7eb;x|23BZsRu5@X_VTNx}MBau2=?iiR1(%h~CB4-aN`ze#8_iwBF5`#JE<b
z0Um_CxxsY*;0DkpHHXxbHuF8ULmb0)@7MONlTyG7_;{8UPR1uL>?SN9{7jZW%4DJr
z=)>|C!iyxD>37(hO~+6`tI9nl_{4QuYt|lY#84?u8tM}ha189HciFnh5aulftb%ow
zI_&meE@x>)(ZF)Df9tHYo?5fgQ|M@-&0&?WG@d)m*FIyTO+X8C(i~AQEZ>h8`sNFN
z`4Tl<%#QT)mz2PIYi{YVOfs-VIHm<BHu>k5{Bk^6#;o;FjUALi8zbgh+2k9b4Awq$
z0I@|D_&`U4>E8uP%R)5yNCRl>?_WXcDspIsz`*CjIQ;zBQS2euLrcn9C($^qBy8lt
z=lhX|4qJ+SG_%#vFS(20v(^+Xo;FN$SuG|^r<5;4^^Wcl!rAe4KE>|Q!<h^S?cwtK
z{Oj-9463`RnWgO(&Dpr#((RjOguQLzDw{|jH23TozVRU&WHdc5U_guomc8dLe+R6>
zs!XCLQLK-lMfBbkPxRm_V!YZ+bJrY})ktwwmw#EiSA;g<#D$A@<!gxPY60wNii5P6
ztj-pfF$ZvUqw$H2a>4^k|M~>~&*NDj9h);7mIn1JE+ggJZF!cj*^BY;cy#W~Jajaf
z5+&|{v3`?ztPQ5E(#ye&$atnI0kmobvC=f}S!eoW%MVN+X*WRNL|q0591bO}BP*aV
zOm`~XwBBJAh!k<y0j4ohlcnU1hd<y~ocQy11AikN2kqxi?fUtxBCIL89{%1h%KZEm
zp(+~96ju7Z=KlN^K||<n&44vsV0*TnEP>?H+56cNu<W$lLtbbvkWbkiSa)SWXAmXX
z!PvjG<s<qWRliM-|J7?qAWjLxywawVSs~K-b{~Jloh&CKqa#dumz5ydPPy9O{3N?h
znl71}3z1h!!pV0Z&GgNY(R!`mJ<%X>6~40l0)O>Ewv`HVV8Hh%x@}zz7w_YL>fjl4
z3IZuFO=~z+v)KDLyU#D%{^yHRLTIPR-MO!y#JVx|gd_$We8ZBJIJc)ivEDeU!DKD{
zuJC3N1Mrmyai3fxWAGH(NvlB?(?;S;a(?-L3<q$QYNT3#>n1SCE-Axi;5xPQ7?yM^
z;`NdNk6!-^I>VvMvIzvJhC{ZN5QpBp*%)70&9~@`o~(9~rB6Y@G=Jn{rh?W8M#TuS
zf{_Q-Tn8Xn>pIPF)S5X#_c=wd2<_uILc4c7Y+`_=hN!KbCkk?Qr#}K&gMd<VkrbW-
z@<BR*20$w%`{@DE(n|Kfo{)*-a=QEh2ioq}a4JS?v$Q%1aPGsK{N?}T4dzgwWJq*N
z)U{GbDtiDa;tsvbAO4E{KxySr0fwU%`Maxp*RyuL9`F;_rG)W{-SC_IJs;ZTDn?Na
zv!bqi%I4SkL;1b1eUh$>KN*KV58cauwi9c)?hQo7zzy^dat5=TJrL@Z57e^j6n`yp
zkYCaDEo)T}GAdwVtq=LhUqa7#HSOf~nAlT;sX{ln-h(uo2Bu$rQ!pK*9!uRpJtpxn
zVXE6RbEt3brf(L8jKn@+6`$CKwOdz$U`7l`ke^RO3!a?@(z&vg^i3p(2xs3D{hK?i
zW{_YF;TNc@>znub<y)~1zxZ6_T=sL>*0tyWeLFx0Ya}6s!vm6VjeInF=dxq`UiYvw
zBp9}KYyA;t(m+cV`-dUfHNUq0+*xzs=fbySEv8sYsgO&!`bLS>9|S@X9<_#0))0__
zYX9rHR(s$&=32778xTwcgy)ht&wufRQI<6?!}+#5^x{41&;Fqm>^SIQ*1nf9#J3?1
zXXN=88(7s}Y-}kue0F1hc~fE4?9Hq!TfJ2r;5)EY+?q(Tf+$QeaFDynkN8a!w!Nkr
zNhs--WnE;l;jO>=BXjKLG{th|<JO0};<FL=`y~Y?oTg<EPSR3E0D5Fcoa%4C$EbE%
zhVxZ%R*SftFN-v1gJElXRqQ8}xb?U3xp-o%SiSn!G`7&Ln)rbrK%Bl3IHZ4*-2R+(
z{V}9>N!A~0gc2r@mzXA9p^Q_^T>s(zce@X5L`2ZPgIq*3G-gDRJL67&^&vmI4&dRI
z-sx{WjO*w#^u|0{Pg>9KFY!NIz-1X#J<FRoqJ@>b{B95Ct&5}km?UsyXI~4BK!u`A
ziU0E-4zZh4md_%=h13vrGsD8d`6}>sr+(q`p4qF~H5`g$`rUrV?d|&5ww`_*XntMb
z&ZfLEcW5JC<fP@@h<!zXOK$NeM?)Lowi;k@VT0*~?4#9A<ImU!$WouP5?8H=B=Fl#
z_PfqvXuKKx^HdY49|N9pqCfRGh9PX*n(k2U2t<hq^5u<w$W#29f|x!^tU%^_x)1_-
z^EsFMEv~jl7`^GcS*y|uSM_vgvXq)r4tk%z|9)<RHOW|POsALQE0D?LUV6qC&bJvn
z4^=J1)1m{iz(;}rr}+m@u<stfGJJKh*62!BFZ<P~uZ8`DzsXW|JKW}%{*G6uxdsTM
z5?Tvf`~7~%B%9Xg<-`o<ELVC7wnp8J{-Q@2TE3Xh^X~1ZhK`s88cLSHPf4C3yQekX
z*40kljM5Gcf81|+oz2EJHQ7vuzw%=D)-r#`9!v=Mk-g>`rrbw&``7dAr&Y;WE6Jk9
zR&Yy}`Lb=-`5^(y@WV9^<6`~d8q-}f;I!om0WVC>!b0I?(9<ms_)C7vbg_W?8<jpH
zFle#w{XG+)tpqFd0~Zk}s}}j0`|?Aq*yJoKqmU!ZF7!*vxKzrvv}Jg@u!!D}Z1cly
zT*Vpd`?#lLIR~0`V)i0j$+anR-!Ah@pRwCEneP4`9xNtrTJVM4L8Zua0WDd$yeGYI
zB`+hK!HE@bj$l%BxKK`H5!GAnqnCaAt&BwtC<K9NTj;jE&mT9%E=>}6+?ej4#|;){
z>3#mdX)Is?_Ed8p;cn^`kfFsw724QjZfG;1pU&RqzEwTyt02pc&UGJ$=X6_aHE%ho
z<_dQMB)mA2DHTBe$u_<e3c&un?F>H+UT47Z5OY$isxH!Wgc~x^E>CSDXBb(Q&uUFM
z%g-9e7<4khtKu3v!MdInuF*uWD~*?jyx>lm+vs9nIhJ38{m}cf3qXtd6{xG=1YdUJ
zP<8Yf)7rUUzS`cn`q5=-ak68#bt0i692!j^X7F@X$~u}>M70OTGxyBVnoi2}cG5D0
zELu9~z34m6v6Uvqnq3hAM9Xo|NH22t{>!KTZ1=}?rRODQ6a7~@LiDBwN!MVN?dg^2
zg_#z1i5x9=)+_$z^X*1GqNDqVboZ*ZR$hf{n*5^Q<4kr-1!=%@2v-t{+=r+6TDF?2
z+A5*59gf}~1#ah){o>eeP!p&P<n)kocgzX?j;$G=GTpxZHiQPABr)N9$C*l*IcvsA
z_3&EYs1i5mkN)~nyFnPBt8JY<$DnsNALV!6)$UiPkp?U?hL%A{WtgBYUhJ<<gvaGh
zFlkiGrKk8N1c(#`lkVn*3hPLka-SdJ=M>t{0l!2IN+&*jq2CKx%g^h9zV+ptH7>Ke
zOhnGrg{{r0UL!S)vHg*L0b_7uq{Jpg&=qAxF4gBZl%$~dk1S;%v@|JjeX~L8D)@}r
zWBq3N+=f2M(Y3E^?Eq>jEkpnoT<90KtiCxf*+dvnh$aMZ$C>{9cDq%zvXL+c7famd
zXZeG=Azu<%=m>*~ho>oUEm9~REjHM0ak|mMZmMZG7K7)?adX|=Yy9>*+s*1U@lnNN
z+jNJs-mdf;=h&U`n3nCV43%ERZs8Sv#BjSjrGMV+AKF)Sa~-NU`C@-gxLz+F)t3aZ
zVz0@+##assOYuWn+p4rO9x-n>KFTjEvCGxz|Hs&SKv!98|KFpi*cGvWv@_2fRMaTx
ziIq^Kh2Ft-Ab|vuoR|WFy<QX>Sg;rLUdy%Di=tw|Ua*TD1r-$)3pT|6=ewU1NYLMU
z-?dx<GiT<RvS;_Qyk;hksqRM|HBLk`qB**i0@r7fiYjs@<hH!uAf^RbM<&=nzMGSK
zbVW_=Oak_V`64K+*tK~u>IedCISCMQ`Ge8%;sKgZBC|@&8!Y5y;j~_xDxZ#)m=Iyf
zrw^PLs&@#3hVtGUtETaCdGoH<XaIt=ajOm|3y}gzk^V}-kff;kgv32Vp~lLuH3Py_
z=Z5!#67A6=TvFL#8EC_~15<unBC!lLlXLSP@J|l+%L?&ufv#4|LUv>D56(_3gRgh)
zw|2gCuf#HtwsU&~f8#{I3=5odi;nfzyyTa$ik>WKZ55MF_S^m2w}Z3omxAcY+9=6u
z&WC=-qr2RRTT?H{@(f}tP`~HpWeLa*?;O4x+F5<WXHLZ0YwcWf*`DG3LDoK?eCo6`
zsi}~b83K1aw_|vr-=;%Y=~tb?)dM$e2jl**X9$Bk&%x1lboq2+AHmQ0uHZ?3$5ox@
z9HFp&GB_rNP>ewM819&ms5gAkbDb9gAd)I@H9)}+|9x>3O0pL+=V&-G{8~tkDI-Mp
z&6DT10m67;sX9ba6xi8C#csc4;rzDNT#B99j)UZ$P{ie}k~2p~3*k=qJtS^A`~>n;
zuDf7ln113W9e5SB=pa)~6$W6FHS^tqabZrijTnblM1@U-A0O;j?{N29)-e!=VnTNX
zP6U+0ZG1XBOzdG@<c!2Ef_9=1bKD*y!s1h`UHaCv0U%r}DD?Qca8y}58OKqBcvvmd
zxh5pq!yVHj^si;3l5fguCSn!ATqhCM?QwKC_v0{!H`N>Di4-rh8mIc~5<l*<&U2s=
zm~E|9aT|T#^wCe93%TRb^-9z&bf18luUjACNul=P=~-w&5<}BviQ%cT3h5q<D9A}<
zPOEU~!S<{1XhO)=A-BAQocDT@;R!7}XdiC`j9IVz7FFyY|B{NMH1in@Z@0DzUl&_5
z)d)}v63?fOY<F0zFrlb(ArE9kC87Tcj|U|12q|#CtcfTJp{~)m^6|OyYD#g&-Q3%)
z-$x`;9t#aCsaXy)QJ2QW;qEj2kn1~-Me^@ev0APS>xcOR8oG?-sSLsJ*odzejSr9U
z7tQE0mecQxjL#h|uhHQBx|k7Jmg?oR`1ilxNE|$zpJBgRjtgUr=DT`N-~UqDkaz2r
zPb1kE=)y(sC%!7}GM3}S&_xUg23mevdahsfKWx(Z#AE}aBrsu4?9%<)G2ReD6#}su
z(+B&qbGv9Oy()f$^>UL>@Mqu3P}uR+uoHw)FyFr>`QF=gk*fxxs2UxrKfkTKH{cK9
z+E>GJx|#d=C;qap_M1s6DqP6+_19=vKBW#|6=|VRWUgZk_|)Kdra>ize(Xn`6>B<(
z+y}L(NfjBFU+7hlBFm=#FKW2l;#kL|Dr7{hphGstHy(+4keZ2+BN|d<ys6?pf`90h
z1K!N1qB-;8UWF^ps)nbcOXT_P=cC-Y@r-ipj`IdIkXny^WfHn)Np$&n);|Pir+7xb
z_rx>NegCp%@;BniMED-R=X$?c99?>Wbzq``+z`_=Lw>@fCy{>{B#it=&qQ5j$G;(L
zp8y)`0QO&A9MxWJ9i^3D*5W120P){T-;ACo7Yn<?#*b-Md1LiGA*RQoqPPq1PQGRf
zLFMRHEsD}tcAN@ZMjkD)(^aHM?czqQNL<-3{K7)9l{HKU8@o2QB^%D}tfm17YnWi%
z2R9{i&#;!#@@m|l%ea{Z$%@(5)Ymea|8__6rjza8eemqBTkG7?|0Ms_*m)roaujvU
z>m<-w+}pslVYBBVwPQR^qu!ecAC{6M4?ie|tJ|e@^1TN@Ero78s&+~2FiCKAWQTBX
z&JFvHwZWKm<AItOXI8SPY?D0pPU{<(f_bgbeB>;07kn4adoXIQ8o;W7w3RW^HZ#Ox
z<VTIv)K2#F^0Jw7Z&U_yi%Nd(yKrrxUjRPA6rxBABp(@0PG6E-@o`7B_oF;A!8&RO
zJnwuldG<1EABFNkjWA6+Ka>35d)A1l5gmNPuM#2A@#nf{Urp}yhIKjD<FRB>`%ZTv
z9^r&KO9&m@lqC#%{Uc$)ch)mJWu?9fi?DxZySlqV^7Bp~@mv8-d8x>uzSuo`LG;+(
ziP+qYo(PI-6t6p`k28J>=O5}Hhx!dzTa$4WLp_mz!5Pypd64{Uv6TWxaAMi{LVnzH
zbvr!B#Eue0q8f5}xT@v2cAb+{*LfUVQ$qSK^8?CGV7EGFZt{bPv=_N0)hnxT*1|0p
z|Am>!bEd@ZW*fcX^0E`0<wl=P`Fk{T)B{~-9QFRTUY>N*dXXVl;*NwIUw|tn6<FIQ
zM_2PD2yX)peDZcovmNtfAj8Sl$uFjLl2<9cD{7|5l@QOT1QXtQc5?R4c)d~Wx4L{K
zGBdt#L^b4f{r3gtK{w?1@~XA<I6@MdgM%an{AtO)Z5e>oT-p65H!zC8a*eug&#sTO
zZ#frB+c?+YnN9wt+1Uw9ZUbtP*X_jb3xTI9<svq}W$1E($A9q_$pmM|11hcDaA`$3
zqMCcBl6{xag^dqaHgIZTAw#m=oi`<4{kGHNa7-gt)M$@*FUXPd{`JZ2Cfnh({Ej&v
zX1>EBdQNRbmM*}94_SSy<QM5pZ!Wt~evBEvL*!WVwVsApVl<OCc;A`H`FGj^Moh=r
zOPYoRfL#4;@+H9xy0K}Bbg&~U&gIB*+{I(N{_j?fz^byWl+6(r*=+ZFpX9<?hHzn1
z*Me3^dx|!>D1jvOY9G5xx(MGl5CCHcq8{p>e5k(DLQuru%2^e-Cy=icbYnrMSZUu0
zi!a`{h1*JAmYh2t?iE(-fCs!hKXD(KoQY1ymOrvn==pNT$I(ia5;Y5K6q;*#G_&h%
z?>4_>95o9!+%lpz3<f_2%mJ_aYq}123_z0547*-$4x~7O$hkDTu`3>7>KmS(rt2!s
z!w;CcQ|Ydlrv+h83kx%bEb)ci6WsTHt-GQm(aras+DJ&Sb0^-Pyzf~%snW`_rnjxL
z&30FpC5va$MJA5g+IpdQ<9c%3%qx;-@6-8l)OvkM=s1yWm&MNoyMPAr$p2jdeDTQ1
z1}gx|<tBO0pLR{Yd6#``;0p2yfO_*2T>D|YlSdD*W(w3P#6$KkJFEMSNbWO~9<HAE
zh|PqMyPVtvp$9un?z&RXh#Ou(;(25obZ-oTP9A$i@{z%OUe26+1TBrA2%plEo{Yb}
zk}qHa5=GGGZ!AgvHHe-T-l@4c+R3OhlcRg^6)Zg~;3(^WFw)m0uybvGQSx2++=6$j
zR)XXkK^D2T`^1mo%@hCj@XQ6h>EUhqCc#;mE*3Fz1sSEYi+DzGa_1y>%D5bFM1a|N
z3WFQ}$x|2*hdyMwxSxKwM=H^RE{1!&qiyoJlQ-QdFNXa!y-MiqOuWPi=fZm(-Nc0C
z)2~BBy33wagB2D%E}maNK0Ipo@Y@TWn^Vke@((t-D77RolrD$~jGD(a>U}|XC>rdl
zFNwMqBwGA>V>1DfZs1y~uGA;SknoZe4=G|0a3AD5;%dSRb2|ONQb=7g-MQ>v{IREZ
z9@GbeVI_6zdJZmfmlOw!_C%`(e^3WX191?#|5!9wL4ydM%&4e$oZsNjPPi_5ZkYvk
z4adhV4pXz(u32@_Q3U!~JZw!vEfJ!a+<6Y<q3<8v(4pggAkAKB*jo9ukm{|#{c&dW
zc)1bjQb9C+{|cqbA<L}0@P*_aJ9iQvFuWWbgOe7T0dOrz$CBN4w~oG3e-)QSd|#0(
zdm_2*4xRe&&IeUa0|VkcVM#`w_#}D%bzK$`EP!?gdj<RtUP_oQU6;~i^=%3D3@<N3
zEdXai=p`8biT25B)+Y#_bt9%DUqXLL!zQfQWruLyD!lkON(>;<8sglS>$+|g-ulp*
z(I*m|hiQ}!5bRxlMoX7=Ivt$^F~l`;g~A1t75@H8xMFyhLM+6r3G*@nPhnnRf(JZz
z_i!mP6g`8<ZVd}=QkeC^M;zNOpx9EcocJme<8fWvFdFsy_+7(}2Y_-2`bWTqgJ<bQ
zLg*+j9!fs3t#u87r=-$^vT=%REqx+6YzrPQ&!9zA0f;D$Do{O%ktuwURO1P+N`&?z
z*QRxJyUI<<rCjB~5(Ge}I6-(v=-S<1SQSJDlFQY~#sbI;1XVBFBI<BdryF>6!z-s6
zz2U{xj1ET^c3cQ58DD|yiHvG?B{}6N$m)X=!-1RoUTm;uId*yle;_M=^P&IZCwy6H
zO`(%gY$CB75T^7BKjJew6uUg7kw8*xb^-;`@%-$2?LrTNjD`GxTgm^E=T_|RpF11p
zQEU>ay4B_ng-b97CQ(WN{)3nO=%KOOEKr)NCS(^UKdfxMh$KY;0p?a*-hV&z1D-Ya
z)!vQeYtVau(0N9?zVB~XV$BLDRQ^c$$tC~^-eb8OrtqpMatqe@;^+7oVP@*7X~b<v
zzq3F?gby}BC@2wzmHvfG>~{)$t|V}a6fl5f$0`2N25Ucp+;FNE$og<4N329`!n-LO
z<oCe~8Xa0mU0q{p7EV;zdQYFVigxaX|EnzCHB;76wTBL&u90hfvX6D3tV{t*I0bPX
z_wO9Nn`g~K;}5YyJyG>b-PY}QKdHO*4<ge>1xvu|03&s_>%830D~Lyu?h$uF4MC;j
zws6t#V(S=%MjCHDWCW=1dS7ywwaPi2M!mcr+C-^*8YRXOT~9O0{z6w*;@=r)zm3n;
zX6En*xaiO#Ylk(cPu1I|S>)EOqT3^DAG&cV@`HZ<FTZo4b-YZZ5m!sr2%IDT@~g59
zruu6ZtE42azG8RdHqpII1hn<ziO9N&!y1dPY7<?!FYQn<#0_LJr3~Q#EPc&?^`^B;
zkFAuhTrBP-s05$$m%V8I##E;v-ll3f$TPc`#L}nv$KSCIE{MoJ^09G8Qj&Fd*PrAI
z-etPj%YrNu1~Y_vB?dIY2N0RfX2*T)7hMNv6vIsu8pcgRJXp)<U84QAWU##Dp&LM5
zT?XQsxw|Wu(dV1_+yzXaSBs?<XtdV`c)O#P`Dq_BhpZpv6RTop!YVR1VjPnpoq$`s
zgirU=|75(StfDZQzEXlWHo@cgzk@CD2AS<|{DYs6j0n#$Qi({D{N9#Pmx0ze76UGg
zaA@vHAH6fo8fCnVQ!25>)3=Kr7-Y?(aq1%q0aq7M#vQ-#clDqh<`AE6kOVr%T-ScC
zpPS71$Kz8k7{!$q4yfZWe_R>+A<q(y9Ey7al%xl7i@x%U_KLsTtVjNg>%Z~S_qHBf
zm$h^-<W4(8Lx$3Z>nfoG%z^!_z#X)t%RxW1>xD~{UX0b-Ay){Rjjf`q-{RNGpfe3g
zmKX^9N;np3n@-uyu4vG5qH6FxqsVHZThPW|`T}p6S0ERvI$Y?fDh#1LImhpRgk8sw
zs@17_4qDNp$o2V}?UD=qneX!%oyC+@Xf6ql&2a~w>z{d-RwGluK)Hqq?_^#zfR^XN
zLVx*{_M;|PVfp$Uq2X8v*>^4$oMQLnLO(io&>sp86xVAYfgYITQHr79cf!R#-tRlz
z&U_GAPCrqiQWce&kN1lbeJXZbJs1jryzbpw>_{$L)3KJ2(+=P_$FHR~_`$><pnvGq
zsF>=UqGAwfbcIhZ-#GICvZO4BG>Bh%bGbkG3+A#!AnA#GZ*SS9L{j9hHSB$V`={2e
zcz3y80B-+V<Zrsj8e2SAPBZghnGNSiv;;PS_Eiu2)NC8kr@pqTaf%&)<Q^QAS2L@u
zYKJ}NyDhNaln__XRj>lCZ{Lr65wQqtR;Zi0A~@7>O;mEmjPZzn;!V4O5!4VToL^o<
zNL0^1=#PCnJ_U>ViytwnWLyTs8j-T$Qoq@cj4X5;Lt41JUMV6&ls-!oLciN<sK2*{
z-^rW?$l?$P@q6}7e?=op+VnwWH+vBMK^?pjLHL3X{2s+N$9NvMD5zZi9(d1B9^0W8
zf`FcV-7Gs20!8fO@LaspQD6E;+r&SC)u0kvPJxohJoKgCw=2!cN~M@az!Q>}V>#ph
zbF&}y-ku7jA(fX+DUz6~BF<L@%g|Z5Df9dXN3nX?LRcl1X)gjlMQ%g)ZVoSRoa(6?
zr7cp<J#DEz;1bd5cXuzX^nH$IJD^Bh@!1X(F2`l9Nz~nJtvz|$<Rg;jG`D*9uKvkW
zjKmHiU#ut=6y^0Dqf-twih`3a7|6o&>C^Ogee2(Y#Btv-YH#8{suDw&V@qPAc_Q79
zulAQ-#`nOVz(4+DO3#twCS2mb4va?dvsz@JQzdXGp2)qkxXbd@?bO9PW{}C3MWj@9
zpWWBxk%#HQ<BQyo92Cq0)F-!1^v4!97hrC%n&_+7%X_8VXQBJ;<u3hyZ>O`yo?RzQ
zZ|lgR=z^PYrC)t=9J{ofT%QU~!hZAmjXrS}Gvc-k9+;Bml+dApNRNBn|1r{j4mlE(
z%C6Gg%|AB|PLjY}H<8ybJIwAM`FXF{vP!{b+*>v89FhcYdCTH1lRLE6+4V%rD<DRF
znC~uF?eF@6I{;wVh=7HJ?<fLlc8M0gW_M#8LIcn#nVW0Qaku^Er^PG~n@_D-j(EcD
za6cJtfS1#2Ik8%zdb~OK#FPB!lerN2ageWpb7vQp9s97kzBBlbbF$A&)=|bl*Na#y
zgdRxMsSEsp)oe-u{6=?w1S@bkuGd08`Eu)^N@9A=ay0`%&phSdy2F|U-!uw=4p`?W
zTxN}eLHRHW|0wN6!=wJSf727=bJ9$MN;w+*1;6#PzvKu+@7X-cRSp1_Jr5StKP(Ox
zb3r571<}!pCLfvO+b%UQ2Z#oxDWsqmjmsRSkw5nK+qJV1eH$V5DaEA%(%G(XGr#36
z_K{L>48|9onwYdA_kD@Krj#-0dQu5?$XqzHklMN4Q@zW;+jyc?HFU^X`t};1AOuVF
zs(DmbQBzbGJJCmm^HTH;LEVA9{I7%mM%X!(Cc@4!;Othl+-RJwa2ARuY%k}x_P5Rd
z+v(`2GpEDXK<HxTR3{SfplCra|5tzBHW{EQ(`y83g}kM|c8&J?opa03HcEOa8DD~Q
z4wKA7A2ynk?*Fa7<!d`ZgA_JsxQW%J5rGM(Cj09Ce)KE@rc&M;hp$Bs=Woyic#=GK
z%2faCv9?=#l_dMq<5VvR8r`UWc`VkM^Hz;mK!k(kFuJ9EKLB0_J5fnuaVeljsp`0k
z2?tw`DmM`mE7VS&X;|7TruZFU{8<+W1*?`8L&!&6x_Y?)8v^>?HU8HV3|W)T&Zxb9
zGZJbpN`#2C;xhlkPX<v?Sh*wT6ys#!#_i%8#FyaI))>oQ!aWcu&RQ&fzBuRnC%as{
zYx_;1Hy0W9%shWCcP<sL3VmzEz!h9x?f3qjZLDLMP$Lutg8tr@zTMuoNSRxxd<WaW
zlfLH~pI*rtNbyEBBx*Mla!YPWhv>7Bv?|r4$pblg5=}n&(@&AG72j|w(WjBe6!YH5
zDq>K;UWM-0_x*88IZSd~REkQ-`8v-nTIp|2*__yk%2I1+mpR%U{*ynP5KNS9cH2NS
z8OBj8?-7k#Xw5^&Qzg&?_HtdT-J<X3F-vpGl-)#`n4@pyRB?sG&*ZufJ4Eea-e}!0
zg@Q15-z{2mVasO4X=i3`{%c7_O&=^WGc`#8nHqfCdbQuFH|rq5BNZE2H2g1n`NkXP
zuGB$bcrqt5-MLHr(1jew2E1nhtKD%}DR5uB=9fKgz%?MH*jMxj+~)<y`d6oCUb7;V
zz#F40MKVaV3^)xt(oYd@A}ZHJ9RzWkK#!_s-o3a>3Tk0w0VzD4MJ<9#6rwDcH%kot
zu2Bm4LmG{LiW6o3nK)5EVF(Ia?ilfhr*zmm{t2EEucCz9FpZ=dwG?lAUE<dXb>Rw$
z-cyng+**$7ah-216qxN^rg%DP7~VN^FW%MfxyruYs}eRt(jR*ymo|yc=K8@qbQGx>
zQiWh6Fp8tGwmQ<E4{O3t2BGfasp!iHO=q3r51wkLEL4Kx2C|^sNo}d#e3N}zgpo2}
zDHsV%Wvu13-Tki*$FM{?dKhDUo>&Ng^3r|%Y=DySV!!L^BsHjrg>ZAHBbhEAnGoh%
z#|}d$w`v$%=)hYm{Tt61lyjiUe`sJ1)HQ|vHj|7vrG-y+`Q&TZ5>g2(_5<cqDCf|Z
z{qi$yFO>R_7==Cva#i@TzhWiLMaDK&!d%$rDPbX(2CW@ZP~;BYEXv-8B`D{<1m|9L
zjZN{~<Hdv`|0pPM^SOSZ&^2#nIXBA<61|e=I-Tv06!pWcu98IJWs)5Y>0eRn8!oaA
zG^+CAVrxXmaah03^Ht|q&j9#{%BGKz6;HpAPNm%?ekPn8$0;VB^vz;^XkRhMQ!-B5
zH~dddU;sve8du!!$5+sSBO0u_?w%@7E^n0o=3M)b;r;6JDXXmucszBY?<Uqnj|?+?
zETh4sV6M}_K)dtZPVe}O5i@v_r6|Y%141BK#J(M)=Vvg~#6yHImG3f=!%Tt~6k^#X
zy+p_QEhRBR#ITznc;yN~*Z207-?l_2+2F5LyG0#@sQ4J<)>LNb9|0q9VXoV2u7CMy
zn`(oATYy^SneBatCuvsUc9Q<-dP}P)XC=}HZUz65!sm`>3^Y)%;LEI^3~Gcu>W<2j
z_rBCW2;<0mMi)x?s>TKqAENjzc88ziM@Y((`;edlo?CQLmCf9>6Z}}=b+Et&Z3e$W
z51SaeN)>$&lsMxaBYcmOS}s~RW<e~Kb1cdzfP)h*f86v(`F_vuZ7;kO)=%CkPJZpz
zey5jMMiCE7@;hO*2(MKgqxpsWwixyiS`K6h<ci#`n?=iZv|ne`BLduScZ@nq<pHAy
ze_=P(GquKEpp**Fec&skQAC(jfs~kgpuQKJFAt2w=13NcHjB=Sb(SS$BF!j(^p1ao
z&PXzFtJeF^^bF#+)`HY&JLDZ;>2kX~<!3lT`<x^Q4!|Cz&KUa_PTx$&i|*Gddh1nw
zl~HqU;Exjm4h>}af^qcx<NSXSrub!_<H;Ocohl<WyK}k6`J<$)RfQrko+kJy>j0)m
zr6%Aax&Cjb_|J~xS3)x8T#J7?c^F>kviN5cVw6fjN;IepF4#x=yOl;k#euPB+CdJ*
zUqgJeaNq%3MD9BPo1iGucp~yK7O?`DerM;X(~H(O0)-nf8?-BH*hhOrgUKbvv7txO
zrRU=S>dxFFT2k<TQyIu<6P3ZQj-(U}1edbJo4WZA<}e-9{zqYG4n0p^5nCSUA9>!|
zOL*)lcz4c8fTu9Ghe!Aeko&nC!xC^0MmhB;AL{MrkcEQzEGf7~NV|G+iNE%BrYi<0
zYsfpWQ5Q4>ECCk)xBl*5{xp~>KzKA%u&i7Ri4-LVw~ro}#8_A*DW(B9U8SWq-1R{}
z;sLsffNC@jqQ64XAX)N#4UJW2B?(-f8exWrh2)iz*Xw~KLwLV+L`Cp|4F{wWa>X$`
zs8c><fFDzDzrw+RFP53wyOed+K&Su(*8BQV{*uY@nd8!(<};M90T(E-;*b;k3u`%s
zmNF`z&&a5(7~B^xw!l@p=$Cl0R{fk5^o8BCFj2S@KJ{OBV;LaMHKMp$s&T!j-2l5G
zbNyZ`=+4LkLO7L@29Vb)&2Rw=gq!VYZ}@lbF_fk0H3w!Ukxot?`w+ztF7VfWXPSh5
zplwsDD~@NRi#nh^XZj(WZHxvG)$l5>!aEVx3sK;fXZ#7US6u9nnzH4*GUyA+RMyru
zS|&LTb%1iWrW$^?9*`V8=j}m{NoyO?Aqt#-RPF)~Bfv3e_;><T9?5f4_lz#Q%AQ7l
zyrg&+SUz3xp3&Q1a~AoqY}%hK7Z=hpP$0gItZ4LR(fe1}o%U)>NwEm!<QhM^)Zc=5
z20)O%qgF>4YZhD3U_kh%i+o$X6n-alBN;0Y4!J?d0v=tL`T}qYFQNqPv>_;Fn@pfR
zVl@&~j`Nc}6~Fb1zDgMvvpa02_f)@91X{B58vN2@Xsl1z%VLdIji~l8f6*)K7_}^^
zRboT}ofqChIt8qr?BjRs$1E9DYpl)80JdHeNK(4689({0A7u|2fEgg`E4oS&ZtDdT
z^~FAi-r+C5n5jhPK~>^pr9{Yc{qOeg#0tw&sQ*wBil_$#r@Q1y12Be2_||8+^W_?b
z199uczSG?{9~U!xd99^kK=OhDJngT1$fT%Jlw%TeN%soN+~Ef=0D&FpQw3WNuV8>*
zvO#^vPAb3gQ&8UlM7?7D8vw~Qv&E4<CB-%mO!Y4DG|(%PJ2-In?15|^%$cDtsvwo;
z+OP6k4xqg`voBQ;)N$qFF8g+BZ(J2(qgg(><0o6>mQL{BqiV7-5PDK8#j3}WNiva1
zH&i4-diyI~p8E;r6EUD_;*aF6M{$S4<#(U?M|f{EH{(7FH*lY%mIE*0Tgng#vRI*q
z@8YMTWD=AhIV0f08zJFhWNYIO7GiD2^a9iSKiVZ1E#3bmbRaJ@kpm*kHt4=+&TKf|
z7l1<@OJK(eMQr<dm#rqE7Sp0Z0u4|xZlANLd)WVWVSE;l+ENq>`~eJ<P_`DnildOY
zQTBG1)FT{4k#R@=$XXNj>-uaSrG@b*-i>k*45c&`1ukc$?>~iaz{bvk1Ey6fq3b^N
z9g*VfMrE35;uy~V*>5e5A=eG4tXVF4n@jW&^2}phw&6P20#L;=;X9>Vh6=vvCus}F
z=y0vlO%|xuM3enRs-4MrU|@yk*hS{Xbo3v?yy!u0v=(kuL>Z5qnhcJVb>z6W{KR{i
zy%;rcStGs?D8aa-)jLMH4lt(~;2Kemu+xAyvAtSO5bKI=8Dv`I@^AEed}Y@UCo@sY
z;5BooTl|?=ji3!!AerKS2$7~o#j0}J`t$y6M-VfkO(M!jOl*{w)U8O!9`I_H!Rxpc
zDup-J>Agr4f(<TqJM80Yky|+u%A%2hhesr(LFW$9S9vree*^Vpq~8+FwBm#LOMNAb
zGiuL~DPli_naw)h_>+GppY7{?@th|a`)L5u?6Gi6pS|2Ao5upa-=Iv;8_cK&*zFMp
zcd+e}(m{GJjPpO$@Ii0@Oa-+|IWL?^d3S&88GSmJRVrAm3@wrPYiS_9F86C8*=%Yf
z-5E(884bh;nD08S_RA*3KLB+g8rnMHU<E^zRzP>T+Fy9Y|H*0T=og&gE0^1K<Hmw=
z2j)>6A)2gQM^5}<ThfR1792VVNhlViNI?WE3Z9k>lH(S9;x9(XV9)5mq)Y%gW6a2t
z48A%ewIOyACRZb_3`0HP%$H8_&xpP$9X2`$NHkav*PnUI{m)<WO}rqewyOKZ3h%!4
zela>*S_OT8RfE`<RR(<|d6l{kWucssf6DT=ORc1rD@u+AOXRfmU;euBJb@g1hs&1N
zkQ5D@JHqkoR?)wu=;JMEg)!$P6-Ce8q7M$RH&arjXu4diPZ*)|ebun|M5MbFPeNj2
zDhI#nJH1XjIXhrwK;qc!SWKVGeRtU6O__(-J~I(%0O=2jY4Umg*O%-p#Ae}o%~=p=
z=q9}9&k^Qru6Gyr(ECLHg#<5THzTV$2F^g_y%6^Nj4S<$3#{7?1_f9G(lngo)Gr7_
zaWBsH6VJ0>lpr<Y5=XlvgW?nXTap*D*#^((cthJb_3q*idf%EiNT>4jSdbC)U}BoG
zmm#QTQl0TP*f(6yb+2S%IOltR%@20auxEfO_YIvZc7L>uHqT~mbjOP4I$nGisz_JA
zYgDj1zZVmMRaBcZzG!Z5zm?7k>x1-3xTdh~)-U>xq)$S|!vX+n3}TQqg{&uk`So}5
z^E@|<4BseY?QSS{=svvEkAq7Aq4i87LB%qDRl?XM5E&@d&AY)r@i8z!K^5>2WD+8l
z=Z@b!nlD(C<V+}PmG%yg4b8q_jPF)sJyKE`YXK73;6=cXz}^*u{ht;5$jnvE)G^I)
zotU47SGtV*16+q)2i^rpj$Lh<bW4)IJFf6+o?s?X;Hp&Bq~#DBPDx0-(|Di0!@7Ed
zoDB@bok;<P(&XKT=(0QrvPel~#&q~6FZON!Ye(LT1F^J$d}U+WKr@?yu`$FpW%aXn
zg9KU!2$7?md)x8@e`QCem&kyG1ACc4R-;$@EsnJB3dbk<Hda;(Zjo!KEUXH(sJcLg
z)vx=9?_?2zAAZI!M#x4*uQXw=f9H!YvEGa@uTd<0-RpkMEws0IDcI|?kM|uUCL^<M
zqNI9chp0_^8-c2+aTUayv$LWzPaNmJIfF6Gl_HElOW0`k65L;Psz3Qe!zHmYP^3eO
z<o*BjT??2JBo#|%;4a{_e`lZdjd9zf0T$DfaSxpAwkP@1g&t#%F0gucLP?6<TTA?s
zC#|`U_?8Bka-jplrkDF}KhYtOsH^#XrdFolRTD8u&cV_a|Ie3U1s6ylG(jR`<_0Jn
z1SdPG5>ORujR#scf9AjJhlB9evAmDPL?gMpEqu4ztewR+iIN+$8Oq}7TIc%8wEd=q
z(Tj{C>k}jXLx=44C?T7K4#kTVyRn-^-EXvG&=aep{1Ze1tH%Q~e79rRRgSC!_2sg=
z<rBJI<Su*5_tv9ESgR`&VrClPx9iqXZx|7snj%B-!kNjzDTd`=@A=xrP}pLW4Q4w>
z`~spD?i#K6fK?R`eF8hekMSpRBbNI6?z3r1SgPp1<c55A!ae@adDdP^dPJ^^Q^pRh
z3ArIj5IJu7Q~srRY=&JCF#?C;`hox3d*%wndZb+;I2<Y41c*Kp{IRvntkap4g3^Km
z$pr*;8~%&Gs+JYz;qHpQp<LcTlwEdXFZN%3WbH%HRY@Z&WY_9U{~lNgfN1HPljDB)
z%74EXJuzy58%UFb5;r1vT7o{ZKkPD7CU1Ekpd@MTS~psJ5dtP_dFV2K&gINOtPF}b
z_-W;$py*Vize>%<yBQhB?U)DY+W7CjH7p95L?8rn3dwD8zu$#sE)~!lpMtgKQVV&I
zS1<7=DfcEkjnoiCB0vX<DNS<XpZ<>aO>0L-4Icjy#|*(ZQ^<!AJVmxcAm-;+yFC6I
z8{tBgX9iS{3KcE+E530)*N-wMl^9hcSQpVQrm(e7kFbu7q`c6*m+vQzVkJa$0!P4|
z^k(|pCT0_r9=>!@msRax#bK=xm;g~R_0*!q1lG}~q&bvMM<)$`p6`DB(w`mu|JVyZ
z&FqCm4^7WXXGtlfs6z?LkeVZleBDq3nGz!0Vqvu(tTP%p@k-k)^<T)x2WVCi0F;2d
z5xvkycZ(Ko&bVSXK2?oIQ0@)#A?>(Jlx%J7(lN#^aH_<4`|i;hThQKY7X=%3Q3Rbs
zll7101p)`Y+$<V%fSo`y-V~$lYCjK#iz!RM_0lIo2k_!{JwNs3$6Cjr)Fj=W<l648
z@+&{3lxAcmXtZ=&X#Q#c{2~8bIZKmQYODa~4{`H6#ylzrxKa1|r(!n(u6+avsbY~`
z*#%x%?0ekGSWpFrGYJhSgak7X<n{CC{RKDCg_0T%w5jmC_Rf1}?Ea!e2aNHBce0}9
zlJ-BqhnU4CL6qFRoNEf}xPVC^CPK<*z2TEXOmrHQDnraPF{!XgOhO<inO-U9C!_)9
zx~gNe6e)@3jke3eCflWOKX8J6*YdsgS?BLw&k_+45n-^T!25I1@TB<GN3Z+RWo!{)
zd&)X&?|dL%AiH=`mx1lui}Bg89G;2Wa)H10bLJAvkXw)_zZ`Q~I;&08N^S|oWR);J
z8&CpIpqb3t&JK|3?)bsTR!{Q-`}zrW%pxR*9&!zg1o{QS<ACOGR{3Kk7fRkldut1o
zr}=3g_}Bi&RKzeeR!)`59Pc>kQfJ@nA4NuB&8X`nNTaCcAFC(%A7=3T*pxDE6}Ee!
zW-{TyU7hB4{Df}^zwlHE_h1-EfH3J#zw^f>3{^>nkos}8iLV@8S$U<(x>N#GaDMPl
zzhCTYSt^$x4S|kMDi&9_N0gREirDQ{cxVe6r2N1cR0IT#J1f{?cmM5b`^``clB(N6
zhdiKf?CMWmW!pCfh$=uD50$~~V2Z><ld}(b#=jziPDVEddxoT(&Z>p{$biFAbeL$h
zzxKbNO$Bjqm>axUs3zq8o9}NP#0*M#SdaX!3}whgPxuF9B<5hs**LEbtBiZ`TmOt6
zBQR1{PLh4xrZB(k`ec_ozc2#<Z>}D+qR_uMck(Z@{Pj|8Y;aH&EF7>^^ucguk=ZUa
z1-zS&fe76Awm)Yezin<t;*G}slt_WZ99(vk|8%z9iC8JUZv+(_HMs@$_}2BlyYxu%
z$(FQl>|o#J{8hfOISSW3c)c&Iw9SgjurDm8e7a((zxXt3*8S9rsi0~szd!32f7cvn
z0ZWz4D8?<%z2c(cB5N$g>lE~gOE{5<+1o~`{h5R^CWu+8f{1R3IUZTnWtU2*!3M@e
zxjBp6qOGFaH{<7o!&cQN`eB3Rx*EjQDHX--FZ<LYBSJ0jtH9ls?;GHASQ5x%HF5Fg
zcZFTWjsC@NQOJxfoYV?8IH@(cT>#3ly9mlL9xmc^tmY86w9lLVr?+iU0y=cfL|&FR
zG>Y4i-|`19_*>;u)uf3{ONl4Tb+OxdxgRacW-qx8YHH95KiNzEz`O|J_Hjp9?az72
z0H_6(MibIRrIlZ1YRc4F<lgA+{_}d5M}KYC0{ti<!?`#6gC%R3dZcW*VM8wRr%ut@
zORae@^?72y56W^m-ys@%5#JTXLiT~JLnDH*=hmH~?T)Z^a7jZY=@{sMn7VCtj9%zT
z2i(sjE?L|JvM?h3HS_()D8v816<Y-vtgrypOeqXLC%^$LydZhpAYyk=-u#;ApBPEx
z274v_jigWNh)g3|7nNW?3?jr<<pcAB9!fs^03&2MDoaf#A`GTnsdpRBNOtID9Yi};
zi$T_TeR+EFq$A=veyu5=OwJ{y0i9g*@8rtXofgQUjZ|U?FDP-{NtY*o+L6W$D@2Qv
zSs{y12wtj@pe#P;KD#8Dy-o9<BGonhlpJDH(FB3k2oxkBrFeDMSJx42M34~W7V(D^
zq99AiCCSBibzHzH5QABzASC4scdIT;zOw@}7q}(De(1PR1zntcs|_<i?55RgUhKSN
z6rP>@WgvUg;Z=k7jgR~CvgE)LYdnHXG<Cm{u#7q=`N*|y*ZIkDItw(fV7BR>*U?Pc
zrQa?{R`;-GJkKri%LedNdt97c(4U@SIHbA;TRBuJ$KCNm*UevJiO|5ApaIk2<o(gL
z$J4e+QVbBL_p7K7L0fgnEx)h}?u}iC%w#N{Bt-=1pOEaJP;3jSB_=3W8t(lXl5IY>
z#=$DjL$u@cR0B^+bnCV0$*(_%`*5%=Q}O_0<~;Yp`N>tEY}yX5ys>>m)2UO&)opfB
z@|ZXIIXIiFb0onp0(Ee6gZ5+b1U+FyfVBhrSQ*1y*LZ3&C$g@l-?Qz^?>9M^f@TLZ
zqTyGa3&}kH>e}iVySjl@<+Zh74lv@*>ExE9>|hP-N5i;+bimP!;n3!P*Y)bVY)n4@
zuH1r}^Yd}b*>iSs>ppf>fDC-8rQz&wesXX>c7*M0S|i6oHHFl4JqjrCV<#oA=xu#1
zW+L%YJQIVKOsiAOoV_AcAEzfj1bj3ZN<zJ?Jh#JX$zyxQZCnX46toiLa&odTZf!m_
zPh;cM96TJVg^!G%n`}(m%7>ImoDm4zcSCZ`^uI5z`3%jc<}fo;>&Z+LO|xr4^Gw3e
zQ<8`8WbY9zs*z&AiIDwQ8~MOLU>EX}%}$;bW0w&#DMd{32YJxB*RM<-riYD!2Y@9&
z6t=R+oi#t%c59nHgS)_qP0wA4_(+ak?OdWZ`TR;Y*?esAhOt=8%Hud_FbH(vvScA2
z(n(X)8zCyKcuOivQ6_0l@=LAT%3N-^e?n1nXD5#uU>!Z{R5L(MS?<c}<cA|{mk5RR
zQ>X>R%aH!G`lRG>-`jF{djv(&ET8AUE=hj4rR{L==XEMBC>&Gd?z%Mj3^<0xH~Tey
zsF`15L$7S0q#`&2^7hhI$?rfVtdKN3)%L0(?)h%nS;_7D@<}iTprX0S$VEoAZ@b>G
zh`kbtu1BEUETHm9Zzi`Ny2&=J3gpXYC*O=wdGq_{V;e!MMaKqk2DKgWD+F8*gA2Ma
zxukTH`OyrJ?l=Sd{{R;R)y8lE&@8E@%DApsXqu@N8Lf(v5YY9PB_AE!q7nQ*>#}6q
zOk-*alu17&CCX*VmxM$`#U^tDz$KyJH<xa5)LdldsQL0n6uJ>9vVa)0iO9`u2HGR3
zu_dIc3InN2lOMgpj`5?!%ddXgR45xHh%mTsyI#JYFH#Ey4SBtYO)(_}-8HMbw)=sL
zDYE-we`G_HHsFcXU2lj<)<DwRlV%LLi^{|BAOA}J^(0?_hLmMU8LZZumn3^#AMdfe
zS{iZIBd?_g7AKEhLVHUBLJGl{fN-N5=^1(3V|vyMHA9{`{(4Zej(^%pD%G)aj8jCp
zUXtv7%-=2-hQ8@?c|0riYaj}5%QKVxV$uiVfMn&9hRBs)o!ogQQ{XXNS8m0ZFxiqD
z|McYGz3i--Q#}d@Zdml_%4r#phiNFAll<|hzb%9lZMKkRSRBgq)!gKDJXp5$u26oy
zEb-@Em`sfS+bpnEO|vLUcH`?ta}dAoJ9)W7NW_EHD?dv*-g#5QHuqAE1IBS?8NRf$
z=qk$35_P@y;?U)gzjsOJa>u;zaQ@%B2m^5ibHgsh)`h5At=S5)2tjs_UJ~vvB-a;=
zH>O|mHxyA_1mZR2$?$~IhBa@OnP&LYVf>Ix`%L_t2_7bU3eHN;hgQlZ*8KNqhuqkw
z!cnEx-n*Q%WCTDABqwC!#Ck#x3k$MPi@N1chvGdqnNkXw;^)Hr0WIU@sh>oqmrU~6
zjio*icaUv&iOYkK9Aa?!w7L|DUYioq76CgGwoJC`-ZCLAWqJQ8Ukz3uB$<t~m8K^u
zF(g@D3pp^~Dmm#un`a=|uPx~d;vWfb*N2<4TFkFFpu!ES)y-29epV*&jnd?*0Lmfz
zZZZbjMYAzOP#QI`6Ip(UKj8Cg!@+yE98!p9QL`bXGp)dEy;AX7RM@_2Lz}}}3{eK!
z<~vk=(0bLp(k^k%&vD=X9{QDdrI8wl*aBPgqjSqk{0%#jw@US&NGhUY+-c{Q{nuao
zbDWq9&r{-ZIQePi(^oq;Y`#D2=FVeT+!Mrw*C$3atePxO1Crv+_7$ghz7NDvT1oLp
zWdP{jo!T{d?z&_A3A^lhAMdwU3eO(k1u-~>1U;bO{~qN(*@-^lOHpf7Qo57iCrjRw
z>#j-pFXBGxRN$YAz?0345UsB!`c+%oj3reh)=D66h#^O~?hfGQx%{L2Q@h)&<b5ei
zWu>xU<C!`KU#Tor%sl59f6$JZAH<90BC?e8cjID5lsEj2q85E9T~dH_9P4-N7_T+;
zg=tiAQ_yGOrtQ7FaJ0|e-hO}<auUc4SxiD&79zbHeXJk0gLMwWFKntbGQ51oWxIEe
z@q^+nMCh8-@s*ItxD!O(`dGh1ywn!sa&fAE=omja9@li_cp+s;GuN~W;^NAyO(ld0
zf;l;L0{mU^M8Czhww69hT0*J|#I$@eBjvib$M{Qiw3z?Pu*d^LxC3z^1t{L;PxPnn
zY<(?f<yI7Bv~gC2^Pny??F3a8?M|vvzU@DJQ&}sskMVoQ-)ylQ#jTAw#y_Sml2oA0
zk|G5?3yK6?CW@=9B6f4!EZ<M?CAAr``!yAx(Z{Ky<#R9B`(fKzAAW({hz<dCOsu(k
zccMRdE9;V#QQM?Le!lBc{?zzbQLA%Tb)TV>(b36;_>+nLzuLzCwIC(3-nbyi@K^$+
zqm`Cntej)yT?G&pxbG|c9_^UQC_DzSRn=%FwKz~a>)t8(Pkrc2n)=9jQ)ys0h;7Sj
zi<2f<q5CxDSHvd`#8eTofTRGKK_zfN%0J!&XbAK2U?G?}2Er{S`MY$AT8&%)<u!l_
zll79}mm5SSRpIXy{40c}nqxsklO~lj%X9D5`P=vUr#`^DsSn>Z$dPW&P8z1@^OXNJ
zelW<llTu`|!$SaDp}mSW6aBqyZAug~^$nkzfl)zBS;`6g^@;wGY<l6*KjRQ$gOKUb
zhs#_bH<B!Lt!|5Bnhqn=F608E`Tfy;+xU=pb9_3sS`iZjr02Wxqy4+;MXS#vhGEl5
zVJ@<B_@vV3b)i$7G;c=;NTwC(j^rnlg>u|w9qoVC-6DqzuUUi?T?j<(;A8v)@wLk@
z!=j`xQrpZOD*Yk*+NctAY%0xT6H3k5`xyW5o|%tUQxl&1*0<zq_w+ITv_1B`kJmB`
zgLMNpBML4A%ecN>{Obo<=MiL$!R#fsP_8W7J>1#f(9e2?ex(s48@6YBwD;AV?BAzD
zMA<MMHsmyQA{a-6Azwl?dhQB;<N-F0d?L06G)1<CbG)BbYCZNIhEsP!uR)4C>L1rM
z{8$6gQBB`0rFK6c=}#FIuM5>iWi_u4_LirPgZ1y;Kh}*?_&<OY&+sN7g@3J1VQ&$%
z0W#92?2_`g$C$L)g9mvx149(clTwvJ5{yw8!e>YO;?{dAiwxX(DyH*TN>S01;HkbX
z3GVV;zh9}DhF%5H3GVmBSCZeA8M`=wI_~1P$(C5)RvwicTTL@|4k^1KXG(`wgn_Wf
zE6KUY+7NG)w9_&(33shnn_N1s;~R)CLsQiEC4Uz(&(<gVL!av^p0Q_|)UQ@tn{<W=
z(DRZXqGIyL&^4NDn={GTYI!~_uP01P(a+I@Zm?bwG^TSh&Ry_K*9SW#S|-~S4ZQoo
zC~<7(Skr*^+V+MSKF2MYp3EQ9QI)RylKflR49i4>wTjN0_X#iEVVz^pLn=>~vNMvB
z8tXfKiR<aplfiYaZXH=_NW+LTRiV50x2W!49Uq550XpJTO_1CKNU&<><b>NhEo5us
z%BP88sf^R7Vv8gi*R>AG?e9;jyMNt8oC)y2mmJi(cQUnm*XAjiFj9avo0z|iEGBvV
z*zG^H<2RCNS7zuVlwg@e>%=*b^A6uIx69Shlannma!-7!vA!=S6*}B{wwv}q)K{s{
zF;$bD8aoNv(IPbZE`3!rR0*-M*`a!gt05>jIg|02gRqp%q_3OES4fJDR`B?!HR-a2
z<7N@hmY%jDFE~a9SN3$|kLOEddRkRWsu7A!7b{=*jQgTrcCvKNO0rEb0Vxrgk5yNn
zBnY^ZSAtEJC<oH<@h}SA{~E$m+aX7wUm*K*dIq`Z3bN#oS(plUJVxfL<^#+zt}%Sc
zfEMlK?{h`d!)4oV(oSv|H>V*yu;V7}WDap%riVU%`#qA?r*+}p9X9!W9zIpYjbYiQ
z-xXiK+4Rt3(|ItPxsMvc4ch_o*jbQ>8^k_CU0|vx-h9>Lq>WPj!?PBJNAh8%k#eZ+
zLsTp*s4P}QT3?V1JChC)$ixj%{5tJSyZ)l&8ExZs93)~+zNknVg%4*Z*R1Wbkk{ti
z^XEkGz8DSaOYna~s+R0mjTB~fBM0+TO8bOG=XIz7<Oih)kvWb;wUZOq|7n>gTS^Da
zxzCTm?dx~fqZ0-w?#_D3N<w<;jt7A)mDHTKrqYZBGLn_QAHH1PQ3WS^5fr3c((Z+t
z=#aG43C9_}GSR;btFUvA)JD}aI!{F!D5*xB=-zGZa~pz^XpTTIr4XoU9A+s^){$3-
zo$v27nbr2gRu0~{?&!pXmlBhC86|aOa{(*8F*tGe5?aV@t-5y3-B6QQ@~$<EOjUz~
z-Q-z`^xHJZ<Tbr=rgH9%n2@;bd76mJNh3m#cE`D@@rg3EkxFtFgp7P<$0vrrZ{zx5
zawVN=tFehsUbKc`kjR?)M!?mj$`bdzY>k5}>k{M9ML0KiOkzh(h09}VmX>gODlsRX
zdjKins1kKrV&%vDAlD5}spQa11VT6G)I_J(t#P=7q{KLWN>L+sZ9}5*Eo&bHCT3wz
zos@X#4H_`+R!-j=yZub~A@|#a#BR^hs<Xnf%g>HUERR<)oNQk@tKw0K@%jmB?n&r7
z+{lv>{a#CKQpt>Z(#W@QT`=21IX1!+aWBpd9+!AE{={(BMk=6EYTV7V6Mb(?;-zOY
zi=4uioZI}w#ORM~Jp*x_P7rlQDm3T1RwVutA4R{$y2<E1IgUS0O>F;x4IW-T1-p~0
zIwdhcN0H;krOET8Z$CObvE|e8bR?FqOZ208if-kek%<uk09m=vIs#9p9-nw#SJItS
zk}6&O?wG`=rTjY=Qwu&t?#q)BFY0s9&+@uiRq^RRd`x1e=WLJ;mA&=jW?=ha8r@MN
z5|6x@xD)QI6pI<V$blz-{b@fS9R4N9g111#?@R=mX}I2G5t8h#nHP5Y>+fCp0C~^3
zVVhQ6q@x)__9iN@cBh^yZ+m$<>~<SN$lFW^38~xQZe)0U;h?a?HMA={m>McGk#CWD
zii%v;?P22lO$I2(?tuq|i?9CM05HS6+e1DBT6`Hxs!JaiF1ocvdk(rG%C}4lAKcNR
zJv&Pd|7X^QU0G?fd0<(<Xj`Yl;M-fYXPZjquyh#oxA{50((3TPmh<Ok6{GVRkPe63
zwaGlPj6RbNH7(~+?b=-Ta5~KTZ;RjOvd&yLwl<uy>HKox9#|W`+;p9i&3{RU_gd~N
z&*pzI9Zqezo>;4uT^kaceit*h`?GG-b><-v<hm&};g@?_tTWFf-@R+YoR;&W1w(N@
zpf=pvay^o<i`{XxVd$pc#Sz6la$LB#<-Rn3f!nJ#RBt-J9EeM5!#20HSdZj{9Or7o
z@h#`kId^xjro(+LzYF9t|DEZuMay;OWyw9{wW@IAeKvnzY6;Dv;7)?9QWOm+pM<6h
zc@tfX8(SIn2E3aAQx0-Wq3d50u5S6Uye!3J+*%VVS{@?63O6&UI@}&Fy6I!M31nfA
zb_Z65b)RnX1sG=cT~!#|@(VdxD*k&}O&H#CJK1a}+bugT90d6BKzp(qakw*J*HH^W
z)ejEOEwV0(@m7?VAy&{wDP&IV?8C$Go2+k4WxYC}jC4u;a^NB1l<PAy&LU4U={X9G
z{dqet%zlw2H^(^gSG}!&xaONp+Qr+R+CRMZxwVhNiAEd8i`&f}9e#atlZ_W4P_&vB
zvRdA6c2+);?T@wLeKyVpiQS}LlZtJ#P!v#=hlZgSSPvehlej`;K+8gU<9?y>D(jFA
zeU|DeWKBy|6N@2Hm;(R{Z_zuPbhG_tBVt4Q>5e!!bh*~rdp2s^EL3SzHL(U=wQtkW
zY#fve@444Op@Xm?fpd~(X3Z3$WRWl=4-|&qZ={P@V5to&8v(Lh?gwG&qkY5dm3BV8
zD$->$XP_2gSWZ>}GmhFPoV5%1n6xI;Ga{*%JYFb*k>}1E9Evu#p7Ckwdz5o?S-7>y
zJrYQPfBF63FziQL%#c|msxfd7%HHANFnfu$4{Cx0iB<cRgcUKu9s~0RuOo&xr`Yye
zTo8JlX+y>+JLe>_j}~Sr)^^8U;kFnWDVdaF0GBK4&6ATu&J&wlE;*gtoi*V>PMi0{
zJD6HNN$*S!jBlhu8DL0zX=*B}Y_*djz#Tp#%#V>O>3$~35t84-sD3*kyaw_#XovSQ
zjQ|Vk?i#bhu@73u&=hg=F)RoTZ@y31Tj*9v<7ePXO`#)-$-vOdoqR!k82VNxeIBu!
zjBKQZ(baT!eqPvoF{6}Um86bUaZQn8KnG31g{d(8GCHL=o<;Fw=rtM_)fvwLHS_T9
zDGlYX$3GyTfx&uQIVgYg-H``|*4x|dZKT@NgLQBA3rpg+vawx-y|(Wkwt|{V;I2d7
zo`HTL3j@2`X3wzg8Mfb&GW1h+$qH8<(j!a;5ph5R$v7H6h&-2-9p1izSvFF4a3QS6
zuGQhA7#EWGUb_eTf#oin7VchPKgZxp+~5pOj4r*o-_l_}&bb8+AVAX%=ofBWW#1j6
zC|6~aqYO(1si53zlOG!OLR8mb)=WwqKzzVnAI%OgerXrb#CD)t=AQRShwVTH{G8)R
z)yKc*WS{+4n6ZxEGYtkQsm{4cU32c_u=ry{Gx+IQ4fsaQKueOtZIKS{@i1gEQ$e}P
zr*Idl8$*{~N_t`Vp@OdF2Ay1>Z~oJvU1{9TfJye8WyoOxSH2i-YBJ=+wj{p7N&frs
zaOcrBWM~~oYSOGkY-^%uYOX1LavuvX#B&Z!Q?^<Q)RbJ=5zmIJgALsPp&JKlcHAr;
z4OG%=E?|n*7rUj6A#WSnTM8*EtvKV_Fz!yv^xs^3k=p0%Yr{!*{jG=MWX@j|4!b+<
znNe9bLlO_=0r>pqw}osSuCzXKV^qRty0o(E7ls4gv92+dWl$L*kHYvBJTfo*_}@)F
z1nY(J=dkNSCoPU!#E%DfK=jT5TjEjO7z*0~UO8?I6|2B3q@Y6qT;w|R30b??2@E2x
zAIn;zZ@LcfDu6lTl828Ar)_WDR1K=eFINC2wlh%`+HbYV39$$W@cW#@9W0{x<!i+1
z#o@cbECFXc(GDm^9v}uGdaFmM-ixV_QuXA8=JA5zc2Sy4UKE}?!utAxDj-oslpo@F
zI=>hmKGfFLQ?FNQJ!7uA%nMYwYI&i`7hgI(Y`<O0{p-Dxs^G8?wq*dEI(&Gg%~c2#
zLs0j*KV-dZ=ZsD+(<9oG=gxmP92A#(=vfY@!?FN5=_Y}v`Ct6)YB0^XN3RP5@3EfJ
zG<*RMOfbN)Tz_ZS`5WsP$=)Ycs^E?83_bYGVV4-xdQ*FbWDRB3CEvCAcLgt4!zC?E
zJ`?dKTv#q#?Vwb+EXNLjhm3qp2OJg@WdG^me+O@JGH49lQOAe5oJ<Te<e-Ufm?JKo
z7QS;W2EeBxxztY&3wCPJj@lE<IdewH+S=O3Q{63Iktj$>W$4$HqbISng5?Qk2f_d_
z**S9ETV-JwltQ0}inCs;+mnkSn-V!AL-(GH6tS=wi#amx48G_jfCAiIN@zDx5MXbP
zj7_%PBb;|SYd|Z8rJ7rl?@^YLm{oTRTgNY5I&?vdUIx(DF&)-}`2YZ%US`0V=wjrn
z+;c&A;}h!`h}jRAv>xHaZV!d!Bx-N|m~ykE5?j$Le9X~64p7CAftUn`#MY3(ouwUc
zO4uHf-;7kikieE7Rvn&!FJ;LC(eTA3w!qa01V<&pk4M^wUSM`^GP}r7<)SmguOG#m
z)EgIz4S%D3LOt%<E6hmQEl>xsIxY1IFIFj2#$6cN?b>1iya41T<gW@yf+(S}a)QlV
zxNj6eSG5j%%!|7+M3OT@&3b+3@WyGj0`bNie_k#t!;0Q6oERf(;wjKUVBc3#teu|;
z{Xo&$x@g#N?wOs+iVyLV@4=!O;Uh5_Ezh7kGY*QvDa^=Fl6G?g-9Z^py^qfb<NqDc
zn31ZH0bw%x)rQx!7o4>5MHgU*^0N5{tHX)$05C0&tV$h9{qg*iFy}EFK`E<QF=Xh*
zP_ce{VmSKL_#-pxvAr`HOd62!>j|Ov!*pPrfDx>jnSk=BU?VROk!9Ph!+^iZ-9XK#
z<3dBsdNq+`C_le{Zd$mur2v9814?sAIvg19CG(Zi6u!{0mf)iDa11h@xDia<&{A>5
zqIu;d;j|0mjty!BGH|&wibA)Tb8p6A;~;g|L19+RU~g<MKzF?6pfFQfh34uBVsqTK
z2ZcV@#_d#VR1rt9<1nuK<%bS8SVvE!KRC9yIV(3@cbzp46>g_=keTJ<&X60frL)<S
z$jwp`{(Wl03$Y|WRAuVy8#0XlIW*j@bH|%ZTZU_tyUUXLaM@YbI$kPr9-LU|Lihbi
zVd1^jF3hf0k=&Qg4BcL1L1a0RRf)Gj`Zf1?MHslsu+T=0wT$UsG=};eHd!ILtK6vi
zFjIF)SzwcOVZ8HV&OVtP4%(ObF{V)ek(Yr`&eFHuGhE$=0nO+y(l;dUgI=MgjU7<4
z3ji+N!J%{J!Wxb17XO^@rXLb+d5{VyIgaGqSVbCAjgu)#tI9!_{Sd7m(Mesy8!M>Z
zQB$8OuvLslVX<rVee~3E);%7Pyq*)Gofo#4VJBMq;BsUrrBf93mGt%KQxUaAG$a1|
zL{C(dqk2?LhkSSV57Cpu>7ryrW(Y11XsIY={KmByU{s>HX*NPU2vzM@j(QGP?L<$K
zXfcaO#v^~kYl8S<s+vL0S3=nkaAyw+6_492L%{FYfbrOnmp7p$C?Gm6jS`(YDa#6s
z1hviZ--Y*i<H<0L#j2G|U5OHcV^eh>s}rnv#Z%#}V{N$vI88(3QY{2<-({PJk3Qo=
z1WB)*G_87FMHL-6SW`D!A1z%$ha9%$M~Af&u8lE;?mic;`P#+|k<TvHC)t>kS%;-<
z9)^8kee!awPc_nB0G^oXLc2Azb2n=zXZAuV;R2WSe)RH=teWsOf(2*INL8U!#7UVH
zUKfXHqgisk8-rI06cv0XTNd*X$+~?Q{7Oe^FK}=wTZZ$xGNaypQrPZv#(+1=8!~4`
zekZ8R$919q&9)yXQ&~e*x&lX2OtiVK_vA49EbHl4jyOX68{6M$TA-ww(v>4{ur4#P
z#Zel!^a%^j=Nm+6a5q!dHc$W*!CRW4$3}(Ln_Jh2@^Tvzw_iLeENW%#@&Grm)Chp@
z*Wux*pZGX@%-W^}YYYxM!$Q_y)-z&K1yxDx{_)TUELThmw*|Xt*aDuIf_rn^AM*os
zqjdjAP*+Y%E3YG*t-QvZ$dNTCH-!PedS$3Oqs1>X@xc`Byy;B4jPd0axKSf#$x8@p
z$C>AcMQ5=C;H3Ox?x8_fL3J8@z$#vgX1>Kj(Jxol)laIZ0Q#`d$|32s&BI%-Th|zz
zN+z0HE<H$}Jz9k+?{U5q$x5XrVh6?(v)DC0ABz9v_bBywF%zX*qIRDwy9A)-xb1fh
zM}BJErM!9pG3_{wwr(G0$L)jGRs#%rDfIBZR_+qo=rceU<&v<<lh=b{;o0u%lf$st
zw$m|GCnZA>r%2u+km9-F{3<p|I>vN0s12vmT-JM7Ua0(-PvgM~iInAqKn2<#Y7ATb
zN_#fXop(hXRb^EMzDZvXch&XNsMB)$L7)2i%-X0M&jr8#dGxRN>Gdn0SWl4=>d9Lc
z->;&wFIh9<LtXmg#F%vgd&6Yhk|dV9?+Wu$c6}pN*w+9+VnnywLzrmoeW}sN8Srxu
z^oaYyUsG(W6lYbUM7X3v0eHm)29l++JL4^)Q^T_jnt1Pw@ap%hnF7vs(HuhqE}E*V
z{PPZ>VP4#osyp8Bp#qHy$blLv9;O38u3J}AUPILtrXvFxHO0z8<B!%=ijx@Nfpsp<
zopC}#_=Lm3?uuV!W(g{g$E!Xue7ITsVhBjIrIC56*xfNXtQQ`kf}cv<pt~|Z#Q7(M
z$H5{rYohvw6)c!ffRDd9E*$cq4d?@G5(B3ZDE0Ht2)ndq1OhI_J7=gv0d3jt+38{A
z6E=WcDv3T=%5^Sybr!mx)8Rir6JJq6vCN5a$VKk_#?bAf4TA=w4#e({r!$5QvSQbV
zYgf{VM>4OHZGw8R<ReC*^}F#ucGd9yn3eG;16L-m3#)Qj8g(!08hNznDw$>6-r<2u
zZI+RE3)Q1`#K~I|$+2s<F5%=$taA*-*<dm#D5eF(4g>e?6}}hlli^iQ%4$;L)`{Wk
zxeucq4&Yn7xJtsW>l&I|4b)vI?0j{Oo$C-@Je~$%6;waqO?UOYur5A~k$CiTtc7xl
zzv1%mZ)gLA+Gs<XV=XQ&gl_@`J`2s_>~yTWUr`Rtrg8^V6c`&i>}-1;gwxq9piL<4
znRej=0ToWEl~7Y?fXl;+6=$Pi;fh-8=uh3sDnqq|7qWmKj|orJTaOfryd1(rZ4~Hb
z?cmV5+WH1!JgrLcikXgkC>|ZkrqQ98zRc<5=kS?6@5I}OX(>lrM?oi+Rpg47MTPk+
zwiv%K_=2kVSjemdqTKq=Xt%SO3Vxky;`?y{P%<MFxI;G&9WJJiH`!P<E7PG66$TBQ
zV;w!qkI%F#Q2*`q(XG5Tp)b93?nW;GsS$?uu36#Mxh%o}7+*ZGCd3)Q=+vjeMBNPQ
zKb}!Sdbv~{EOwnM!}#~D!|tGxLTk0SdXO!KQjIVP+Z-KkdDZ%Ruf?abp{}vkM&`K=
z72%t=Gb8IZbim^!CWj-L5;{4wu?n%CpkLxEzz0_x5#G3*<tcsxOfIm=(f!Q7IkaET
zOdM$=H8^3?h?@uZ5hw&Y-QnHn{;7<@(}ZVd!$80Iso%V3c;*F$VSB6-lY%D>yyKfL
zT>dnz95yOsFo+JJfP}}SQQ9W__F%kXa$f485b$0sdTYKjur+J(4#swCjx{I_KrX#&
z!wpZe8N}_>l(Gx~M+ubYCQJ(p4h4s9(gPO1qAHw!Fe@foqe58B;|A$b-cIlL5BIEM
z3DV{YN@<qU;@1PiA79ZdRRwtfVCpQKB>hp;t{)TSz?ZA^m>eXiN{GK_w#$DpI^q!P
z>&cTLy@L(H)uv=w)Tcik@Q;)&CH@946PTT>p<y3k>1@*b05v)lUKtb=9(cw(_U)mQ
zRf4vrBF+EQ$*4Dfj8=${XTxyuiOe|S;|kmp-$XwxrK>;!EF&ha10Ap-yf^aP&Q+nb
zEsG$URG3FehdJwfx7j%%m9TaO)yD`CW|VhW9nOo4BEhLngXIHDkSQO92R9(<%Q=sv
zOoR}2O#hV~r&zDPdvEKFpM&8Ky5Rjk86EB$Ko_T1-%t<p1(LyIgZCG|83X{f@!Nf2
zN|v2tZ-Rm1hX!W>qq0l5TC|w`l@l!(!vv%dP1o_^)Ami9t4dkO9d+jO-B(jWw>ErH
z4&8Wk!*VH37t+;dztDYxjX(lGK7kYwqlZ%X@V}zy0X_n>vbx^u>ZWDjRfU(XZ54V5
zURCUvbd#B3aKi4yEy4|P4@ijb#|#ndcD|dxSs*S)H^!$nGU+@SH|)3Q_|=9wDA;5i
zpq*BXJLa8;kj&b-=@y0VsN{=}&pF}Xqv_npTBDxMcMUVb+>>ov{fKXYe@5Vw2!oXQ
z-BWgS2qTbQksYN}1>Kz<CaMQNIJ8%Q3v>*aO|6Swo=Y>{IpEZox1pRQ^{et-o6ezR
zZ$47UJxs9$Q&|kv^7`IkQ59okCpD@^+7p7Oi^JV%YaPtNsK~9$mus3!=Z5ndtYct0
zW)t!)rQ?k5VT%(CTlFQ|oYK-N?E0PV;g@uLlPri^%wviVvcm1-tg)oJAx7~08ti&|
ze&|<k9X%0z@ck%jh+&(A3S9D*`QcS2<G=>3lhlN>VxExlk-LTeyk?&s7;}MkjX(^%
z2=v)b9FGl-7GnvoBv;i0jh)MN<7dGC3$x<AQ0V^Z9&Uoq=PWQS%|NK+8~GM@u=K$2
z&B?ZH*nY7A3Rz<3pxxyMg`HyVVTgPp*=H8oWV;k{cjv1lUIvl|LKZTZv=Cg9?Ou8-
z`uY}T6*7U;itVNYQ_94*qqO`GkqK1jTEtu<a$N0O(Mg#RlPWMiN(y8|uDkf%=y>=Y
zfV>|?YU_>hG#(|-{nRbA7bw#Oe*_0-5(Z2N4u0*DVZy!i!IL*;)~wtn#ruR8^q%6-
zbH#`AbKq{_-eKTFv}3Wc&vOelSuxIu1){a5bmRCeThJ_9buqGAw!3Bf@a{fwhXKt7
z?E$!lTvR*7{0lg$vb@0xuX5ke;b(t{9v1<~CdrV<eS8dsklPjSNB_B#b)c17SJwb^
z3eyQf!B@xRg&zgF1Wu+anvRY$z3%Pk-T&I!2O&&UBD+=V=8JI#EO75649T%{B;sj!
z*{eV)kznr6&BEh6Svpil+nQBRtHajeSPA`h5S3JP&`iX36uJAi4QEJuVOolM3wfiY
zLwC1iw+&xlttv6DPpE>xyzRmVV*z{7^ST(|i}Ul?<sI!qTkRhmNd;shrW%yyWZUC9
zgf&Aqe8o^2)vUpo?Y9m?ce9Qm6&YN|Lx9k&ex!*VCEFCIX(y&PlI^D7AMJM_W12Bf
zg(QRS?rPRV6GTrzX7I%bQotw48woD|Habr97oGwBqX`P=Llb}6x6zT}$>CEs+*$$k
z$%ua5E4XF$P<y58rIDddBUrdsS@<5T&i)6MSKEb=2al<T9vSW{GjxDcaV?&x)OC?2
zB6mm_ALEbVh;}pV`Jz)Tc1H~jzl~=fR%=u!3vUka|C$w1(1O5<pm-zw*g3M@7ptQ8
z3+$-+SrTJ=e`3yyoc}PIBV?I@^NG^lWM~(79G-ihSE4sM*be}vX$|SgO_~?zQIUJ#
z+vo|g+&~j|-E=&ZEQRl1_D(c@8|xdmuA=FaXlrUdj1Jx3+HtO)V&sc_AH0H7S4BsP
z2SE8yS(8y#kVF@R_}XXDc<3Zs5yKaQIy^<O>+nr<^Q-JwG?#J=oP@;10{8Ni@V=x^
zqdz(z1U6Ze&kl|2jG&Eysi#z0MFQ>{h>jCr53LE$UdcU>SS2l%9NeNFdC*jc{qDD(
z5?I~3>UB^MgncoIdtDIP#e;exTkv@0FYVj|)53K#Yy@w;#(+JG<VjMw#vi*T9d^Ci
ze$adzK*!VCzagx<&iV$etE#FaqM1Qdkr!_><u>aO9<{m9A&8G}e{0-aTgO2(@%R*)
zb8j?+xtDTw5}HVu34f>3D=<R0g`D|zL;yvclz{LO4jUbiw2zzuS}xG2F<q#?VF+e6
zhJT&FcgPBqp^130a&sLj!%2Ot9T`h0V#*NOs;IBSeIT?H>NJiovLB2@6$5p`%|FLI
zbYvI{wzMy$tGK<)y3wu_x%Ov;Kc!$Y?1u6J1EKUQqIFZw4rk4`E^?LV_E32gx??Z3
zLttJGR9vsQn>-giFX2<t7f!3O`UqseqaC#*`n+r0wH6I%eK{Ez$dOy<c6&K`O#n)w
zP4EX2Cij_FOhy5B#H`TjG&{3VfCsx%GaA_A!<(naP>8564w~j-H|m7A*&YXiCvvfI
z$~-JM``zA%KG>D7pz=yjo&wep@uBEEc;dC;;k_8KP{g*09$>RW6|qN;kbIs`iN%xB
zkh=F1fmO-yU><i|h(!~L3+gr+gNhU(1HPr|QAWa4;M6Z+iW%AMV};?Im#uvaF9FO?
zyJ5Ej!r`%8WM~wP6wk$;G1DQtCnNh53|DWIbv7Z22Ob1V{Npg&Sf2_>hE3Xlcp2~)
z3m>!3m6kUG9!y5)W>#3NwL#^i+0jWzg^JpvGF&U21OlqWpO`Yj3&A4iOb%o20Zf%s
zv%Cy`C|&}bQl9(sn6Q`|q;E_)87`Qz91a>ke2{9%vEgE902E{hcbMUcMDjn~JA66B
zI>wN^UQR<mgB#Q>93z^AaJm+m5#1IS4rAACgf$8&q9|!n`7?%3oSO_E$795#_klWz
zPb61KzMB-n-lGiYh?OR%aJ(ak1EhKLm!sU6d4M#Ri3ZUQ9KHWibm(3-hMF4UF1db?
z85;bBG11)63=7w+xxaK?l*cX8JZK2^cq*FNk$I5mtLw{Renx3d!MD|6@HO`2(YQBY
zL*P-7G>r6z-;4}Jm$B1qZW+8w1;s4eD{j`R3nabK<Kx0lXWLJdrwLG`nLAxGCTxpt
zL5~|@WD1J+Ob3dRuP>nkH9r0oa@(SKDh!BwFdQ(<+A(o6PmFi0>-zh{ph2u0!Khkv
zEkmIQ*Tls4^SR*+iJWK+Nxh!AYU~2}QY5u|(Rz9|l5;__I?F?i!5jO2L3n$SZFzWk
zMMg8)q!Y>Pm{LBt@dz(~vDwkNRpEOK1MFyg+BQlvU;U+~N#SiYuu?wt8KenYT<ESj
zF|@vhVVKj)F)5kAkni%d!p^Y>P=endM>{1;y6Ot>pnd_JY;|B568~br+KO11qk{=2
z?H`_;Ztzf2uLqemaRoW)W5oq2DB+P|1WZvT6MB5lC^X=9r*9X=+{b|sRg)rmNn(xU
zO3e0${u!;j-+EBxLdYAXA1M$PtKTfFg&aV8d%_vTN65LOE53Po)GAg&#7cWu^kNh=
zIqssZ!slod*l|Wq(e?l+Wo5^I^Ss&CH?&d-a%qKL(`pzU@BWOuo9JJY7{TTYpiF+-
zza)IMz(zLxMrtAiyGMJ3`Edsc!JE`aTz~PQ;i(&Kz;F&&5`>n3uHmq7;Ca@LSet<}
zbj%2=tBb;EHP%y_u8_h<A1HKx92O21iO0^fuCA_bZAE;)S!Loct++Q5A2zaFEhV8}
z;zz&EY&uX!(DJmq!gap`Y(xgi2?awlWHH<Q^dD1h(2O|`4I|HnZ>+yRMB8$`#P6x@
zN#?}KXxZKU@_uxIv~nWNjSUS`pnk-CNC%tyW%Qd=)SL9cGBovIb*N;!VAkSnnAdNr
z!illqBZayd2MCukyV#c7hrZawpcJu+Rmwklu=d`zLn!7!wG`_?hcm)Hr`WCmH`Iux
zoo6!~-G#RXF^IPFifYAT<VdmO#@!Sec8Z5gs-R39mlL1KRW}Fmn+$+OQ({i$L3BXt
zvbU7;2=$G~mZp%D<rQbo0pXU5SW~S3Zz2Nd0U-j1^kfLOzq)dg`$Alm1M0dFVX4%R
zv5pM!L}|N7qXMqqD-n9b9*ToNEJrG@OJf<Ok2!ve!g+tjeWn(gG!0B?eMRp1D6Dn1
zILY3z$V}urhrdlfd_Qb){oo>Ep&gdUJl&2BuN1RU)PZ0-dm#vQkb$pj!;-jz2L}M)
z6M<r*m|zzZl57ClZ6Ju<V}kjNP11-AC|L(i232e^Dfb;5=65};k2-Da62^p?q*gyS
zTw20<LHxR^SQSW>LO1obsN+EEkm?kDstgRXUylk0)2J}cs%nz4sBqsQox`vbIS$3=
zk<J#PBz~NF3~j>U=UaP;^fIWmtq+Ex&`sGUtdWLV$^R@<5TAgWqPd^2UHC6L6?*#M
zsettyc1F>GPwf$&j%VwaM$s&jOnFTf`iiDkCr$-^aGP){AfSm;u#sA$v@G?lWBHgh
z!d@9<#Ebu~W4w6S4KidB87bu^Iu7)Z=r~%5E9M;$3LFb3#j;{7`Z!v%HKzbOY8ter
zE_^52uZ;W_)-{4$PlOnoI<!z$b{^mTFe!|}#f0RjSi!_i!Y1(qk6s=P6V8o=PFMjQ
z6_G^1&F!B@^TZGlv}O87)4mp>0dyyP5M}Hz;w?t5g<Qy<3)n1<mK<bv*H`|3x;+61
zD&f9IS~G0^tR~S8r9+;peKN|c20ri+LmW4IS2lo?C%XAsp>;H2+AI{tGoXV=Q3dXt
ztAiL1#*q{pi3f^oJ>A_Mmo@eDUTc~H4IoX|#o<8=L=3=fY@*nBn!D>W8L58=L@LH}
zNP@^2M}8M&WP7}+2v8CRLa2<*Cb`?&S@*2OybvE5GGC56?u+O~iG1i};CY((2jCrO
zeY$NZ+tUs~xfeu?imCcp;9hGRPThfag*8cE3ze-#`HyP0yPLCT*jl2cjJV)O`w~I>
z_{0GFo!+%Cp<pJsNg5IJ9N6;rs1gp6C5VWM9OAQ<FKT?xWNYRf@+x%Aawp*ieu}Pu
z-e}DT4kocPga>ic%BZH?I<WY1GJF8hz&-VC^n5RC9-NwJ0FCYjoY=Zm*cyJ6d0;`%
z<z;j$R6NRYZN7+dD(NG15cVfFbCCfMEkfU-*h(o01l*CT5bIw6K|L)ee1Z)_$AT1L
zYH2pkd3|_zxa}F+InJE3c*M$bgyJFjQ}it6VZKj10LN%r1~CH|M7G#0)CdiOY)I&8
zWSGr!mCL`6UX?N!g%eC|h7PlRWY#}FHOQn3f>KL3TYW7l2h5lu)~ML+{Z-UM`b&&$
zVq#1W%IDDJoVR(nH~!q9)bSNEF=WB3VlkG7k5apI{4KgFz9idq<`iXXd1qa;w@d^1
zq$~p(1at)A!kzq9V8n-x5|VTy8Wf{TBO_Ih&{2q*C~*h{Xw)o~j3^c(VIC<8Cxs#k
zcvyzm$r$>I6xH^>-0;9IjE8cS%Z&<0O4fJUfEdkNBx)Hc$|Z_muq===S7=)Z9551s
z=HY|0&?cV%`O!K+2})ogGgfSXK+pzxjT;o+mY|*QhEiWid@wPnlFniAIn8jG=_Tpz
ztyc&nn(ez#rtBvMh9ks{a7$?BRbxzcBNCRnm7mA*2aI953@cn#RU>ZM688-Mp-RYh
zdp#BXuBRd)pk`V_V$cdaN>Ep!56p8Hy$~HMZj??%G4NU0Ip~Al-|$@2S6W^sm!;Y;
zW3e2gXTKOVUS}XUbS8ucnpRA<#~k<Rx+v;y>+A^|Ezc!!<BlrZ7*q?^M?b}z;4Rzp
z!vI|1%DV;=h!AdwgUr~f@R!eXm#>U6GDQ;x1e)dgzh;N9CRTb5R3Q<)WY7iV!G|BS
z<Ii&kT)LeuNePPFJ$r?Yl83<xjTPmn%rRAo8RZPvPp7TJn@BzM4kh79J-R<81O+Dd
z3fsgJ4n%P;%_CS=FDl#ZwoSMaLn1>)nzIZ-9)>Pf!sE?#FSHHcA$-!?6UMH}mYAQ1
zP;l!W;p^A{sL*|pA*O@DAGu8!0N85<c!wG`!^B9a|Bj(UOi)J2b!v*Rs$s!mVo(a*
zU7tjW^W$O4%qwK41kNXY677rHhS`Q2ED?^&?>V`xzKUj^6|YNBx-Ns)$k3GI*1i+<
zfPrMt2wZkpvhJ@x`S;MSz?NM1X7me^kXDGeXy_2zP<Qv;vZyp3)>GSz>EK(BM`E8i
zTIGUAVQr#XTpOYM|MB%6U{+Pv`~SB0j!Koedt-NWda)0~&<Bu?ih7wDhJibChncyQ
zi6z9Yu_g8vH8HkmY)SNMRFv3zjTjYCEZCx=*ie3-ckOcrH2>%SsK|5nJ?HGR%PQ}B
z*V^sj78!VA;B*M6;W8Wlp0=<kUarG@5QK;+F>+2gZ<Q@HO7jc!q%-ob_j}n_B?>j&
zGDC4>xFD?Ng75r4)JY`^ttb3XUEzC0(Wsalz@aG%FyaB<_?5D?(Ecn`6GK&Y=E#!8
z{<bgU($7-*ubCHfz1$t}pkMR_*9G8Y68;wf?^3sBaCq}$Yf#izMLH1-q68o?wu-^y
zVVd!TE5TZzblxF>ny?zu;j81U0_tE&UE4c+@)ibbxg4>GmLVco;2-WA$rTY@>%jam
zJ`swvj3~ily~7uY38Zid=ecTUAV8|!Z?_MxZ)%e_oO3wi9w)#91#QRe!UBCL_6LWt
zh+-DeVBJSu$L)d{T!IM%f*BmZji`s(?Zdl2apV6Ks6cbJe(!HT!`e7f0uWNG$s8CG
z?yKFxZ++=`w8~Aw>`mOBO6)~~`K$bz=dC;JM4Z25QxWT^bf@eX%Hu8t8!{PQIA?XD
z`oTa-U3$|{pO*_cR1!XYdWLOrPJG_MfF-`uHq!hwg-9g@vFaJ|r@+znvGJ)Pl5dM2
z*LMiKJI!W0r$Vt}p!q>%-#T0$_x-q;2*p;U8}F`guWcM&jqj%R7bRDtq^QKfe0rPk
zM@)A#4AJvegoWW?(aiv3Hf=(opN<9VW3?N#M(a-{lPSPXN2z}V=iq{&Va3gH!NRTq
zc!c8*3(XzziXW~JtxjYIAw(>yMQMW1yx@n(j-V(9gNf8jB)lDNe&QQ`rRb@V2*s{5
zQqExwVOMcKL91nTMPLRpBUWkG)Ntx2*2Lx|RBH;5Koms0siEc@YZ(uJp@)xxxootY
zOBIDMVgcARO4CS_@Bk7*nKIg?l_hg{GM*JIq!L#&E!-Oo{?P<IOk&G6uXHUR`bULe
za#*Z^-E(rSGYH8cW2?m?JQW~~HcaDL(SM*s5vdaoY!mjm&sv71bA>aYt5D?3{0@R|
z)$WTO!nwCwbIpvNfUK3lyK>vm>pE*0zecuj;;rDxl(>OAhqG^vuhZ}*&y(<`BegN$
zKSCN^E&9Ik+P5M`5o9=c*RXYrh)zN1_gD;2JOCl)jSdsxBq9guBt@h5RLz+s74ECj
zP&zQ08|$%?u#~_80Y=SxkNC5hU)WI4ch#am6Azrsj+BIw>4KefIy;%GI4y>P>F4WS
z!a(M^T*cV3`}YnT-fQ10kFMu~b^Q3}TZc#DFkwv07v7T}4eb9Tb`EdqQ*mL1V&<Ea
zz<d7oHoScDy4YJOqti7yG$7`Gew~3`QXfNanA(J*Fm_tyXkq7m@^8P%w0HyNECLIa
zND!V!@#)8lYe@}>WQQBJT;<N&FI;n!HPGia2qy-UnG(3-fUqqNz%TAW;$69K7!~`)
zJ$85<FJXrP?{9^Z!40)$j7E7Wz_3j3=|4BVhp3T(yXMG&RvFv3*o|L9{&kF`fT-@i
zC`><#-^(uI9R>%3bz+vmfVQBF#npf_sH;$lDd@Vx#MA8tZKfVHm0$p&5rMtJoJ|j-
zLivcY@u6Et01BPL6dgG9X5q<MtB`wjYIN4>NK8tsLIgjH=#p*18|y%rXc$Fz8-5_d
zzhF=(j^W7IW&?_b0=hb*U)WmV7HEL0Rcl2!x`-Z3Pi45GJ8mKjlTk=2%I&DtD)Dyh
z7-rvOt<*8rn$vamGeE~B;wO-fL$ETTP{2}Wm4Z90h_?)bp}^)@ueHoA-aL}XNj65~
z6=D&vULylT2Pjs$hc^meU1m=nJ1gNAalO?2VZ%@r=@)>L>%9?&jZpk!s@PNo`NMoE
zsgXjYy-w>Dj!V1`EwSI#Y&8fXNY?p^<|NCoe__}?E-6@{cxbweO1q#iygr3V#jRMU
zfbl1wbL=%LoL^>5HAKFN?{gW%`j+}I2^*X{h8s82To-OI8ruf4&b4k-;+fPEESmYZ
zMktQxt-2E(2bxeS@Q@FPWGVuk6s=EF^$-a_(Vi>9VkqsrV{}d#yqqn{Cmm87Hr3|C
zHj*QsNn+(XT9E2H_wX6KdPs}Kf>1Tkx;d3F7p}tj=WYx(#z|v_r^UGz0_Vk}<8c6b
z?Rn#aW9`t_v`xgE*GFPqMo%0641n&8gThloc@r{IV3j0oML8$laC|`6NvaM;qJ(i0
zK}RYgF}M2Bj~8qq4+%3TV`dJ~a3soqzwv7XD^m4i^?WH$J(0``!bn?x?Qc|s5R7<r
zb2G*%vxe2g)U5c}PyH@Fuic2Hwg*I5;0U5G{eB->n_z;(L*!lPpEJJmW8%A}P}ht#
zYtoaG<`AtLZ5&p|M~*=IBxFB@gI9m!{|c<lnjNkhVIW^@EROaP@^wW`=$>tDHS%|2
z6NFeqDC2ZTBx316oIK?c+nNs}+$MGvl3_3*N_`d%Dhue$hy2q67z<GwWMnY+7S$?s
zmp<S>?N18^9LrP}iD94qs9zr9&ut|pLIUHl)ZM+-pK!3XnY+x^i&Kvn#mH)U$frkJ
zD@g_UupS?Ts+j(eKj<)PQV_cpuSZ^iQh7KT=TpCJw85~OsTXHOZ`8=5aW8)EUytz2
z1nu_xU1jc}PrMPt6844kl6VD}bye<!tHTAoS!c*dBT6cDjut$;rt3m6-aKQ$Tty=S
z(2TFHf5$&3N5BBZq@jfK_Qdiq#0qNr`gFoFx4~M!6Hx%|n{~tw4#GldTs|zEFN9te
zKprdrgmMQRXm95_#0FcfsB&zPIVEA|jqLX|Z4n6(X<G!=_i(-W`G}bmGz4%!PH#0h
zY_W-5#PmRb7^EU4ibfLMQ~l|Ih^xVbirp&*=S5E3trmdfX}CEAkG9*9@gPWyN+jJu
zgoY->A8c>v7>Y1*Dmp`Y>5TC2#~7a~x(;@Qd<TWWhC2FUyGUUx%vyuH<Pem&1-*h%
zstLBsK{1t4M)X+?OXWr&Z`nn-5j;yAaNGnv3ws-9k2DFfBZ~Ce1fw6F<MeATVjExG
z5RL+d5^$ex1j0%H8EkW+uA9yb+ena>L2oo)GTsBL#Uj+)1C^WNa}vCYX@8Lp60iJz
z0_RSOi(RGY!>^{r(WLr{VNcQg=N3G+ou-AleeISyQaKSIHfP+&9ynuqn9643acp>o
z(8vO`6uW;kgt5EW(o@Hxdi_NL91!nJ1v+s1<t~?h>UZskn+7c(5femMnY-#suK*~k
zSUkSu1|Xw7Kla})wCgp1ToJ#pBS^|W_oug8!;wg8x@9<SJ}u9lWd%HzwW6mJ-XaX0
z3c0SW*V=3iGhjFoe1s0zT!3(Y{gX8U=(M*>2lO;dy51UwkX6+b9d0ox%H2Ihp+KrM
zk`}cui4PZxX><E;=wLM^%35u9kQ&VY9h-y$&gDs5hw_k@DHRn;DF5?Xzg#PcG=QdA
z8aCn^9B`W$+!ds$ajfK8f3#vP+@Fo1YUy;jWY29DUXvYFjAt2d1}oqIOZUX{z9NwX
z;#wPqz&3RUE%9%DZ8xwYx=qGY3lA5n<prOLxiS-=IUs~UM$pjjw1%(byaSjtiB^jD
z1O=zWy|ySEw4CRF=(jR^KrhOIJASdZxDucpmehDiprEBdLxoI7y500E3=wAJ?WO*a
ze_A(&voK+In*KsM7fDo^H(4oKNtZnwL>#Ao%Sqv0Tq_2BxTItZ%j3DbL+6Ii&S$kk
zU^ahjeWuVhr(0ZE{RiTfkBN3CmneZnYNGryP9285i+KMSP{p|Bf#NyAY(yCGCY=S4
zB_sq+8;{pJWN<k82fJL8M7e;@acL%Q8-_m4bv%~@A^}%Hm<;&Jw<_SOMbj2NkO~+k
z)vjUV@WDg&AX02+B+)2sYtAa$E)0(j^rRSM!vX>K+Up}f?Nb{H1!%E>poSGI+3&t9
zZ5$AT!eF8{fyaTAJ7Rn!U0^Vf5Z19m8wBY=8<qDbhjT8s8+n|}FhS~S!(>=AKKv91
zH=_48V4{X_0QlHYaDm-M!b@TY;irRBjEnCwW=@AukjQhxbZQwBjzjYz-GPD{$>h_t
z%c885MVYYbN1@YfYb*PXD#*KrF>$4t42CgctCmJa62@_YVnO4>%CK1@RD#@j|G)k<
zDQmEY=#E7@i10$CyNSp{MA!_FVJzBMQubW<0W5oHjY*U#F%3HiP)Rh%`YLsUzV~|x
zq#&v%y`V6BY*Yrsp<nyOuh3{Zy=hqt4^canb3}Fx2kt?a<T98uL^d3zF42WGQP2$T
z;4!vMXaNEvK(qU;JPNlp0$Domg>M7!w>!+_k-XAH9%EHoS*GkZ%=lyp>kvU=3dbuE
zw;UQc)NO5JtiB4_#$pX1=xYe3HEK^OLR{^RIwN906c*>_30(}nc7^MGa=7zw=8#)*
zRAkblET%m4oN$}iNCYPs>7EoYf#cO~pMJqXT$jaS^VAcEBo&HOj#vCJ!h_NTa)Ep9
zMUtWT&ws@aAQ(xjR8AE81tUN+AQi31A@4Z5-Tm|be6vi{_@i{Lz|bRo5ABHNzuXhC
zQ$v9`8yi{y`L1}nCx^S9;Xd);J66kWC&#A(NlU6(BB92!9ZW70fyDlDC%ok^71XK1
z+FiCC05h4adCPr93l*P%Z;VJ6yO{0z-VVVFAj9mid^*HUg_f@6c(Eac*<!ty;Z?FS
z4XwiHQdQm<dc(nCF;#@^SI5Uwp(mMKrmEUKacHpBY!gorQNFG@frn9lm0Cp`E4|dB
zuMx<?qC)0B^s&EK`ih4~SHVDh@lV}nzH*VZ)DTUyjiJD7sq6aKe-la9%8h0i+3!#m
zZur<Q$=dIyhyvEp)v+caTR~F50oq`d9~N&LF4-NWpPH)OnlJpv(c7=j&FT<Fg~JEn
zi8tf+`^H!GvB#?I7Z-mPi2wPs@K~`85;-A0_SSn?3a`Et0lrK|1>_y^$i$Dg3@Mc3
z+$a4e)%Lofh^KVK{0Y;-b$r}6VPA27U9KY?!7!M9fW~M4%RhxDOv@DQb$gZ~yL&(5
zuZwGXl7+VQVHT>iHAyC4wX37vY&7G0I;B)CI&%1veqij#cubk3hk~!yKI)V7f;wep
zuiGi~rOaLbm{-`IzKl#aaAZbPuIKvz)JxqtPx-IvX-90a;-VZypb?^)@4_Gd%Mt+y
z(w0s{CCI+pZ6j(r*s?>a5YpG2vmP<k!L60!iZBN?m>H89&?XcE84}!PCgq1<0Z1^)
z=&w}BK_&(_3?;n)bJM&5=)5#23Qq%s7s~L=%(t<!kWfpB_tVBU!J;>n@w4aA={iax
zWD)`aDSdqE-T(40zGxpb0k7F6hK{SPLbQkSm#vLr5lZ}wh&95dT7rLT$pbj~9Mc*N
zBu@80sgd<&Tta0P#)L<nM|{1?ZTFdf>Inv7J$NtT^|QAQB@wTO>T0HtdGIuXN0BLF
z3A*f03}!xCsrBVha*N&G2jtxjnNiq`V2QIj3i&U=iGKdGUr?gh*td-gL(b<b6x_jv
zPLd{+aP~eSgy=@Yh-5Bpk4S!(ySuj!{n1YRh&ReaR@4C-<h3nAXAA=(yICB>+KKg%
z?LzL<Heq){7w7`W)rc$Qu}U8xUEE)r!gl4>W*;C2oE9a!RCR=XS*F<D|Nlyd0vqz&
zRK?kqHiczK0^Wqvnb;bb02S_^M~62E%+N4Ax3Ca3E|^4#+uR2IrYZb2#fn!fkguiV
zWa=U8?>i<8#J5Evli!EDG%*f<&o}*H$8bfKv7@Plv-+asSNychWp)XRx~z%4Fux^P
z9su!Z{S#6lH_zG#&e{Iq9!8bSmL>D;`Unnaz~|&8951qC=<a06kO+i!5gi7H`+=)N
zBg_R|%+8P=6ugQ%$f*Q>4p%6QgLYdp1G;;)zMKqi<HUlL;DXvVs~`c=y|ioC19+av
zAB^87Vu5y`_N)R?`@yZFi4VvSfla(!wU)Tow+&lG-;V4QEI<XQijhWF?GpCEC+9AF
zay)7qESiWs;s+Zu8NUlFpKOjimkL@J*~Pnr>56FxLFk$%rWJUYPFiD7#zK6;B(iDY
z;JjAOGJ|@L^mygo(7GFMt3=&HZx_X0F|MPjl=fE}$6+90$*hRYr9Q|=LZu?~nJ<pA
zQNEY&4!fUiy|$gqgP>e7^rt-LUyG_}Xru}8C;khe9S*vF#6K(`!GM)6Ef+!;_#`#|
z^h-Ci>p*_kta(6JwgsPlpKp;*#d>Z*yGR8P%7O>K#Eag+_3<2uVQYd0oam{KdgC(6
z6Hta7g)VeP!MET0%#-$s<JTm<89&Fk8TE}XR_KT?OvjoW8Wp%m?vRu6qhc{+s;{gU
zRH_h0o%pu(kp^$u9m|q&SV=Bggp37y<OfvT8X_VK#jsF5FrmD1v*4zeglEsQ&S~xI
z?72L{1QZ3`1Bzm_G;G_|VsZ$o6i{xAz+~p8D9r+bTP450XqBILFV7>yAd4`GYH^SQ
z@@LJL`GG)mPyvgAZ2;?)?xU~$fzfM(ua@cTfK5S*Qa=#E<}|Wta~4ieJ|k`yL-f=4
z{yBwyu(Jfl=U)VhQ>-k~Uh?edH1aFj3x@H2{=IM1o79kxGnr{ZNLjhzXpwU^32pHM
zj?AqKo+%hk(%u@s{5gB)P=q%6R9jF{h%&bi^rScJ$<bMbD;ry>GeP3V*M65s7hD%B
z=aGbDw)x4wB(K7<bg`gVn|ffe`}-Pyq|8pBs4Sb-mKmlR>*?_|exy)m9g@5rF^3vZ
z*xdVV99~;&jVknGpDs6*nmyn9)Zb}{WFi~rh|9x2!!tT-YPe7kGJBfHko*X-U!EHk
z(RyqF0t-;if$PP#t#rB3!IZ56q8${tr!iAFC&%e4g4l{&@14VKF%mQ-$G+B55RV0M
z^kJXi^FS<s1c<aKT(Fs{-Jf?2ImttEG9V7q3$ikB>u%ULd^^rITpi<($SM5JVi$G{
z4`TTsaIjU{+M4F)v=W&{fG~0kgpEdFR4^nL3l*V4DBgfqz3Smm20l--aiee?K-n?1
z?+VBM$1a<C%Y!;J;v&3xfB4m_);OAjFk(lrAprJxnW$PU*>Os=NK7qiK4E13VOV%n
z!CVW9t;?&|r&XxNh7zcL(O6IunF1r=<;LIbyv$5Tx+^X!l=3pAuWkQy7_HDb_A3a6
zp<@7}I^a@~kV=6r8R>Y85k;bUFe=<L0FZqT4OKI_+bU=<6W!ob7CS2uUG_gHGMXfS
z;7p_$SMEYAwjUM_YNY9Bl?yPKM~4kQvdbp>qj6G2t)^mk^7DRb6tguk$B#rQ)-mZX
z0>bJ1*sd<Zw>hQ|5lcYOef^lfNWp!aP7RptBm@FN?5%!bQyFq7EvwO>Tc90Qxb(aJ
z{%!4PfE`in(ZGyOe%s%qhP<FiqBOdz)IGY)j}Yw?AIhZ2|7Rm{nyk3XC^;6+{(VE=
z7$Br_1FN2uib#Z)Q{{f>8-`p?=U@=f6tk3B^C+{Tf_y+<Ui5sxF{mVx9<lk|-NGR;
zvRD_X0FmUUrxq)2YE{F~NKKZYC<$D~?89>XIKIxp|1%KK42Rmv#1ptrVRN`CbTY|h
zAT<<&iZtROyV^G=&?K=Ha?rF`CV9I)p&dish-5@k%iP~~3-8uh!({PEI~4|521iB8
z@U|^N`83+doiW;|GML>(1FRMUFCVuCJgTFU@S}KaP;SZ{yoUjk>}ho~+O(|L`?zu#
zVNK+ga1R^L+~5Kootm)yKxe2!_mkg+usT1PBIc)=vbg&dZswL@>ao^<5?gJVJz~&Q
zyOTDt2t9WsqB60WVd7P~qxTIvL>JH2U$Sj<{^=7>`=ycDH$e(d%THQDTLIfi`QWGR
z9gZ$V@Q{Om8^V~#w-sa1^&1{~;r-DvUdtmvvvrrso~SeoO$Mc8+h_6v1QPKSeDksq
zVGYAi>nKg6c~QcGPa7UKJRrU*`ryQ<A`3Bpn-$W)_A@4?YH)Bug;;HZ#QyQ3PY6!9
zBb|BKAg0)qXZ)HP8#Lp~Vqvk*ksBiTOncrxDGr+$T<oRJ)+~pWuu3p;ro7`hZ&Xd=
zG8l5S>K@`mD_-!Gk#1<ulV4<wLU~mcC+S8EWXr`BNrp}`6WhP&cbF3A53%22u>m}0
zWW=h+y@Im5O+ywRh=M8CA|6Ccc0KE`2-cFD+#OE(HNQ8Ls$jHL@xdpraI<EI4a7->
z>PwcSS$o>gEFSV5t$@J#jFd9Buy+`A55G^cRGBCYAAllI!k7Q!ZxMw?DjUEzZq?#4
zt!?UEoWVk*iG^c@XXAD3xeKS;_0g28!@P+VO)!2hn{AheHmS5=C;5@_h86J!cI6~V
z3dDp?jyrQ;Fb-Uvp~Nu)0_vDDATJ`UN$iRx$rsv9jFj6e{8mv4gUD9Pz>BMnoFw!#
z3B01pDp(%j)cB>8OoS@mRvyYlRsj<<+mE#hstcES`?2Qa(g5ZiF{vUvsZte7G9Qr0
z6l2o^1he?zWvR3Rw@`M*YLzMr{ns;tvKZ_tUM96iy9)A;geeC~OXU<J;=Xf47zOUj
zFGtC>7pqzz>)dhSTzR+jgg~bP4j|mvTvhH*$A!@?)>0?CRhM;~6WK#a6&Zynl(8%b
z_Zcwuk@n;DL)W|l9Du|ktLQ{QQ+71LB=Ws;3$SNchlpn~DXn@2MZ?vc;|TL=6&E}E
z)Nr2EK0%Z00<AcBlX%c>>y5(;|K)mg;*$oQ-1zl&VQ9oU$FJ_f2xGyK%>Xsx-d)3#
zO>GmbpLPfDk#+Xvc46nY>}fSr98DCZ>Pa2HW$0dJ4fU&uP1}381+1@r`-r@2!7I%p
z-h`D{;m+PDx(H^~;lbo_36T6s6=s-qVf-LTbu(3=N5De=+Gmtej7Os!uDsQ$T*pg3
z^0&#FCekX<iUlN-pZfUU_|0XABkg4yGN9&t+8SDZzqk4m>!?LSJ6S(d&g2f_N9N$#
z@5#czjb1b~RGe&0<lbWD0sJVWi}Kev3<;Y=7SM2+lyQ0UvAC-*eCu~+hM4}*@FB6-
zWdw?%I^Z@dyhy{aHntcxc}!Nr%Cn?5%W#c#0V`F+4nKZ+7pn&=0@;kn2j2kbWO?3j
zy;aiVN%)Ecw|WW=ffK%QbGS-=ISYjE$CHfSg!WhO@BE!|J*gX#rzjFC<z(dV{VsBB
zcqIxIyIBP^36%fni=r7QCr*M~fkC3{)$W#;{lB8N9g&F~6lIc9PkM!4!M<SvNUlY;
zm&zF@^Ei>ib+elCrZ2z8P9<|AK`0~F)yzrjvFc3}%Z|M<BB>_*SvxCcQhb0R74%u@
zE_=eCQelF5N=rwhm_qC=j&HffGQ1cc+!c}G6Z;%1<)Lu8VmT~D5QY{*eGAR5%R4nF
z+Z$H<k&^02>GU!M+hZG{o^sW4`AhW3hOw6@o-ON0`A#~oX?^GHkk$TsK@hTa<&UU*
z5hrNVyPb~?r)c%|6s`~p1*>tlr~EOy+u#k)H5=_mRSDQX;h`So7|XKi29##)!~Ou7
zR+tMb6pTphF^mGe)m!CCMDQ?d5TzGkG6K-G7lecL0fI;~c|G&XCLxKMbigSsA7mm=
z{A55_Am12Mg59NpK4!bZW$Y7n)_AScbz<NBzIXUZI0RG<mHI&LfN(J-U|%ccGU^2F
z{I-T-%4*nn$Ix<re2(fx#2v3D>J{x2`u-oA3YM`^KrGb33IK%t-IVYnYF@%#6z(LO
zi8i2^>!t(;mF9ojaJz1t5{}av#)8j?v1Uo4_+t$C!B6|~Dx-s4lIvQ{s<RbBu8GcU
z`u?B3-vicYYZlvCdO$ubHzSETyU)tLvYVo9fi9(m4gJBBKK)1TBz!~&)MO`Kp4|1Z
zp){fnuSR^iu#wDRLyR$o!IBe{ne?`HzC3PeY+{mpKJ%X|e5{Hle0&Vzp@NARb%qLH
za$1o4AZ<PM(?DocaWVm$V#Ja%AT35u!h<3`c=_x8BlH$4)IQN7yv@S50KF+|ai4d|
zCWqr_xEI&4Z~x|($Ms9G?Yxc30}<H$U-#!?`Jq`L#4FdO2wo@R;@EKWA8iWAF_B4_
zc)#L<oBejC(#JsTlbBjzrlq|HxQBP47)H&D_LK3(3XmzM;U*GDP-Uq<F*Yi^2b2?S
zDm50nxl8>=5g}1@Ly89gnX?&5kSllZJ?W2s+a62lS(8`<1}kXT@<~4$Kb|ff*<zq4
ztos5H$)wUmV~1Vy@bmuL*zM6~F(n=50Z8r}pY%iU^%+@+%En?PsE<Cupgsz7oL5Xx
zdFjN!2bUorcyLLW__W<Kyh+uZdyd#dHdMRrK4F}=eR9?T)Dz^8giT^D&-&7|O(WH*
zdn{+tg~}vS8nMB+i@hAZ36;qxc2_>-`y68p1lAJb94g0#dU<T9F>|QOl0r{@*q_>J
zKaUz$o$nFxr1+Mpprz={ylF(t0pvY+e?KkuM`1^C8EAuZtMWy#SuIuWuvh)D4K#`w
zs`Z5e$8J1jK)B~6zEop`IN>_QYgt7P4$2cWhASMEkAkAu`tBFbiQy=`zx*qJl(Ekz
z92lm>7&me*gXO^<2A?8Ifc)PhT=c2E$k3VyPst<zq!@<vBfSDxt_rU3OpT;SZvMBj
zvMSj0vYx4yKq1Rw!l3T3_V8c52}_P}L)@X1prH)U3E{eTtYLUAW)}&_`s4B8!npS2
zn?y7S9|WiC$5;G5$$mfz^t8wde%Tj^sm4wLuE{UhBKGQ~_xUxE*#lF#6Hg6{R!--7
z0dF|0?u`HQ;WK+cbfgjt5-Lcg_L!+FtOh#N1)vf)8C*K1cj1G69}O|dHAMWH$UcET
zjE_v=Q7dvo;hc<AMbrS;1ANGT_778JT}F?!Q^g|`qbpNr&k9hh{x<lK;yD~uY9YV6
z9~gJRhyqB>>_tX^weK4Ybs!X}9Ep6tfo0t>_xX>b5SJ!fO*k;-3s%y*qyEpkTj+rR
z8YC5+vrr|D7^{!`aI>I9FhB~&_z@8d_BLR5;ucfMB}1Y|{45G~qHH?12(!pp;GuPh
zxahx-w8P5%wr?04`K9$uvP*IIRd?o-L1B#IO(nPhjig)K+Mr|{0<&<VP#(iFlOTH8
zlBRR0rc<^G8xjDQB4l+$>rQzCkgxU+Kg1nnP+30if+nWdmq;+ne_Tx=a!E+z4~+XF
z@(1G7Hh1J}egg<2Syp}GpN>p`^{Xb5r-@hbhr00Uv$kM<h8B~>j?YLa!+18ul+=v!
zm`G}ot6SnPe8TRTf~6G2y@IUF2U&Pmi1C5W>>-vGHs#eWcLUKq?7JgMj>(B}V3BcT
zDhE^iD;8E06c?E_l>RH#rl^d*HuFy{3$ufvlNGyjUh#coXYkq5`-;ynCuG^<#<Z>Q
z`w?uSZKwgCiAh(fEECWH3q<7w5C#w)43OEkujKRgK?yORD-rhYPw)D#<CCJe`k!A@
zF+REuDqkd8O13eqzKVBaA9SLTY?)&+0zgnEHwnK)IA&NDpI*3kwJX{!jQbNeRd6Jf
z66VAiDdAjza(C(lVYnhnqVZCziI7>b*rK0Y5_Xq^Ad`XRs~;oU_B}rsdBXg8RH4MH
zT1wsH=Y*k(ej>oJb%`??IsgU>0Qvok{^Jd7WwGY+3RbbyVu=lvW!987Q2`~{Vdz)1
z;1{p?PvlwPqaa5WQe#PqSy<|(zvQ*mX(G8QAz77aJ6CQI4wInK^JM9YWvZ&s)$XAC
zy^;R`oE7}e%XxMfgRotDs8EFl0)z(Jh@0*HGArD4F&7D~D#2g%x>O+^`rp9lKB`;!
z=a9#V2zu&yf7L7-g^3hc>$16Fz0d+rB2jR%n(LxmhS|W--TA2hV??0nnQC)DI5(w8
zRZ1Z`jA_DQpzNQb<#<dQgxBu#Gb0NYYoN6?W(_HCkTtD}Gu&6xLaipDWDrgOv>x{N
zx7+n8oY`uZwKg;dvC|S3GT<P7mui1bIMRNd?^a=_p?s5ZFaD>86BinEW=}0EM+kzj
zD|d)aOvDz~i9d!5%JI7KX}?A?2uUOFAtrVz@>K1fTkH3d<s*DcW$S@d%(b8-0Oy9d
z$joC$;%Lf*V+WzyU%<SGp6R%mIeA(p)nrN)x#^Gjccds0)ACJ)(tz_**x23k_sGXH
z+oBUUlwDe?(u8&*g6dbawnj9tQjE~Dr(=Lsp>YIvVkRnNKoIdc{|M|9UNTlXH@c?y
z6XiN}W4f{k6C2rlV>W(?z(uPo&f@^9lCPly20P{v7xZvk!StZYo&2cZSR^r~HPe;r
zOk&KU$zS%cKP-YY!_x`zm5yQC@s?4Wn;xiNNUVUEmMUYORTPeyY*$C;WU#Xc*#nTl
zRtdA>1ZPr#YzS#Ud5<m+7c-MIsDi#Y@@Q%XzldU*DD;Z(`-SmgB=;sX3R+k|RblJ-
z))KA0{3F>~50r(w1U@Q3j){zZ8ubs#RDbmCZfmLO$!nt*l$<Dy^=nNaB~wfRMp^(q
z%}vpsN4w|!a2;2&{73(AR0k8<mEsXm4ww<{wV$F-P{qmKh<Am|v&+Pl!CWBi%^3F-
z*UAdl0|q4GS1sO<3MFa+P^u<F0oAaRw}0DP&KqFPny%SV>%hWgX0Z5-^oh1t;)y;~
z%eG9O@=mY&OElm`P_W58mFYn>7hoV2J0AV88F(~;E5W7LK@@DA_J4+1JJ>ziI!)${
zaRURn*W+OmJa%rVA%iFZGjw3kqPxNeEJ4P$hvq^(7Vc;~Ej+jzpCjsMp6MifyV`BP
zRd{p(x3G7!jd)AS5n(U=`zoX6aDys!sLT#Mx^?TYJHOS%G^Ts2VzBHks_!HmmEoKz
zrU0Im^7(Q55YFJ&2--F9QJ5~BZorF9><ACYIIVECFy`4q9cvgcGmcALYEC#TVoXDr
z!D!CN3S(Do85Y9fG3}Mqw5EZNTeVquXlI)%q?Z|W`M73{G&W?TpVxaGjmc|MpqL0a
zII*Iw!@nc3r7mAs2u2|5?c-JckI_y;`9!-=a4FoCawXy=EIUa(6M58YD0f9)_|ih_
z&JZpVCb1^EP~@h*>kp4oexwfB2J~B}Q{-n5eO00*t8QXP%S>}XSU&(ew=DIl<wnCW
zu}*ApQ!fFdf+&GD5iP^BJ&qQvN^pn!SNMC_lr&+R&dJP)#Um-EP^xM~s_RVCU_6~j
zIAWo&zUQy-vz3ZT{C*80Sw}W$W$k}RIDW8QW*~%$i%ITo*ehHsuw2j)>s>!qA;OFH
z4vU7yXGm?@)iQVT{;`}CMMOHXGdi(9h-vCU3{1cM!{#M+hvmmhmD9k898?+(g#$+q
zP*_-q#4XhS^XG^3@$_Grf3g)i$ungEi4b~XF8oFwxgEp7R%@G2y)`zXTG`EA;gYy@
zEL}tKZ2*-I{uR~|RAxi5)p8sc$7SqO_L++3>#}jm^IHuo!#($ScmglmHZ3Vbij0!=
zz<p5lmpu}m6TchYb$d1sS}Ez1{GKEyBo-Giii=&=5ghzJf-juU7bP1pR=NR0$?7q)
z?I?N2J>pTrze!@iL{akqKuj&=_X%x>xmri5QU~_kDIWl~T!Dnm!fiMOv>6eK4B({b
zFzhX|kA{SQpUDhRl~}vUmR=FNrqbOp*vj3~nff&nbxMo0s-+Tx>&+N&MzMQ)L3s5f
zn_=Y=#R@U_c-R5tY#BF?6_=Zt4>_s<=UR!pyqSGH2aB8xW9?_o>1NN4stemFq=Tx$
zNQw0%Iew$mT~-q+o8xWyD$yi)Vw+M}REN;e-%;}MtW+X(WYC?*UK5TcTa;&!8rvBY
zBC3^cu=pk(BsU^LR2*{TK5Gc)-D!_k?wP4a=~YrFDqZ)Oa3k;)chKX4BMn9(xd*nR
zd#@pEezn~;K_zwtA#e{$mD3>pcn!T`50P2HNlA<)g_NMwRk~9T2y10Bt4*<3UZkUd
zO5JhgkyeX5Ux%!LpR;3j-!x_q|HAm?d>qE+)pNtFFKu&7LEXW(P{|=wD?S?K;eNZ7
zjSeo0j2;<X+B9XZfg^I{o<oCFZVw8I3Yev?^OVR6!3k$tkmK66N+LxhSB3}WP+5|n
zVjh`p15IeODv4%Qiy|ZkB8oF^#LY$Z?-a3A%j}Duy#j63?$UJli!dNnXIH%etDT}S
zPm#OfYd<N5e{j&_i9m`o@x7~kvs^w4G&L(IguaC&fBrwXD7c-D%TN$ggmW}r@h9!d
z8^lyJVmF@(sDMBB(Ysz5ZL~~in1%FOXB1j^Vb8byK!J65L>h>^!AKMgHSwBXwgqii
zvOO3mPAW!yQstXL0;`N*1P$P(llKUPvWyXW7O|1~r?3z5kSJXT=+XA}Ji0<?yaUTv
z^o=18`GG3$qP3S-V#+uuc9~`Vju_>!eI$yBpc?a&_R?ygN}SelR0EadqZYef@A_Aw
z8kXmSa}&jw$|04y&o&IFZ)u-9SQ{f@T>yDhxfizxS4PNpSQE*2V*2U~%WKy9V%<SE
zF~JfO7(a?s@MnE?!}vK;%Pb-!c_l?<ixkXHYEt&xlvnKLc=8qNJ%LTffPfMypN_yn
zi970~uy_%VwoHq4ZlES~T{b-ISbAi}Kk+I)?$V9J7cz2`Ew?T)pLDq*xAhj`<kPKb
z%6bST$TUBGded<FA`>AKbp{GZ7`o`flCZn<xzv<`!-_gtagcj24EMawlZ3W*CG1Jc
z)(|)5aI1!B`GX>}mQbrOsmXRHk*rr(Efi9*wCD&Ex8+ly!`jZ(_1qk*_9VKr!n!!u
zZksK`+dp!ftTxDq1fDFVndl3o)l#=&!<Y=D-MDUD14jWpZoF$)`7*cSF|be4GcD{z
z6MJR$&K!+wO(d(cTk^iXTB}{hE}>sc*pUl7SS8I(dXb8aU~e51Zq|Y<fy~pwF?cie
zg*vU^3LkoD4M!RVFz|XoEPjCym>cqGEaXKPjF@aTHJd@Asw}czcrOfKzKC(hZXkOR
zMSn<DxKu(;q_P+_LC|u&aIes<7e^sn$hqf4`4}Org9>-rPGRcv@u4hrbMz_yMe+tP
znqVzf9u<GusC}K&8FuWrcdrPKUl|wmdUaNXbmpt6ViZ$#n$EHBbU+64Tk5tQ5msIk
zdtu)$0sM<|_$WSs>Y^5$4&Jh^@C(3rH#Hm^0ns5HR?i!ihb2a8vsItwyH+oYrEQ_2
zSG&Fkg_TmCiV0&+k{e!#naUi^0!nGLV)5l}PJ8(E?e?S5O*#ih))#PXnP|hEH(En|
z%K~%tVs&}y-zN$aL1TeXWwwGa-8MTMa94a?lf6yX8TOji@Xx3(VKQf|K)Z2edMyYy
z-fH7FSQHZ^bbjNHZ&{{oPxZ(5pUF!#XvXr~B&-F^2#&B^RP;6laC;&^JlVaq)bIGd
zjj%GfdsLQq6daoJ0s%#qz%QEYJQZsyc9RrtNt|1y?UVL;nYN_-QB3Sau)+V}fUdXv
zn6GFe$u6B_|0)Zh$~8<kAe{L&Sk@+y!oqmb!z;oG=QB(=qlk6|k*wAV<*lta#5cdQ
zAwiVLe(Hkbz)i*O*k%6rg04Zln_yrt3~U8_hC`P7A)?O<IE#7E{2uj7y(Ob4$uHC3
zBpV39PUkwOhfOc%CM1?okE4-<@6D-MCk893DRWQn5idYTB9@8*qjY?38sCDaw_aos
zsnt3^X4e~4N)W#7NF<@^@{&Z>5`Gk(VWkDkjx{^7$dL_gEO%;lqnPa16g+5&MZK^@
ze*PjrEDBO>)Qcx!_~2vb9V<QyTw~bLp%*|Zwv3H=C&|l6um(9@;Vw8Oyd$z1UrkUX
z%IRtyYVy*VVUnH+v5!JMj1Ye4+Hd_9IlC62SE6hba{$7}Q>)fVAR{xhVsR)PoXrGn
z0Zgee748!&-bAUODHdNEGB{M%Dz|a}@K}tOb9A0*dlAryo8V|bhpD=f8zE??<?OQy
zV?h=KcTy{g6Wf6b%`%To@M~17g?lD|cgR*!fJCNJx!c}_Q<J=O>;!{j;B}!!y1w^i
zSD2W?&0xFFky&fyOg1PAmki^ZIGj2I@r48Hh}&x&hgr5%ercsJ41K!7SYgCWlmu1&
zs4nrGI0Qnan`xTBG&EcEzEESqf?&wIW<?l<lxu4FMFySVYZA3D2uI-$aN}@}g9U?}
zWvimxT{SD*DeHppQJ#j+TDG%l&Qp94%b=y1DYETpyBEa>?fj*u{Wjvh|BQSmor&N1
zZ~rVF0q+_qvWATxXTY&mIG;3OD-2QB6BkNFx+>g)ZNsH9H~DHN#NI@WdHma(PYD}H
zTUv<;NEEGR4fDJzS-f^|s7Mr?q7GOu6Cane!WiN#J&0(r@E;I628w&mFOL>e^cLAq
zdBKAgDR<jE@6V6%U#t`y3L_kGD|}1B5@uW=_O&1|98n#BzlX<A-%tf!1=A*gt4@Hr
z;}LHM$PuWAma0#hm6s-z1}S#?E%&Ph$O_#2pGR_0eoMl@a1;AR_IgzB;66f^F?&?C
zbn8&M5mP8EHbz*mdAMG>Q+On@*o0wpvHnSO`{gZYo5(oD;K46_VVkg-lsS@D7K9Q1
z85ja`gcCO>G$K>6DI$@838Igk7#=!@w=+E|e}RupmRFTqb5Ph`5)>|22dBqHm#7@{
znxnK14<E{9M`AELilmg_<Wj%bl5D9J#6G37DpbTmJMg-&$A|oy{fHf<Bq-agBr~C-
zDKBBfNzuP&*mY%r6uWQN`UPSuVAff|>R6=KYG3qO<);x2Kv9hDIq*jjzofVr*FiT(
z{M0cFXhi5)M?_*MtUMMi-h_(6D(0x#tp+)v+rVT9h^jm`TxxtJrL#4C=T|@{`Nf+m
z)_aq@*7ns@=HOK*I2CL$ZtD7d6KOr)w<5)HqWcXy3xQhYZoWNG&r(>*#10+w99af1
zo$y%yb(__HVdzEy>PJ@*A%`61;JG9O#yUq{M)`+>SFT!BNfT##fXn20P_&VM>GF+|
zn-X$5luHqZt1h!Ss>{hTXrY|_FCI1+$WFrdXAe=KzG!aKf~r~blOK1fJ!kkDSxr6e
zAk72===B9r%1-2I!oR4Z>h9b(WFlgwU51k6x=Qw9znxjj$PhGF4b}NtYaG~uX)4@|
z(J2mZmRmb1q716ZDK%NuI5FY07WlmlPL$?UbK82P-ILfKO683Yta2wE5M~~1jYuQa
zav;Z#cTr_k22xVAYZNs?6ZGF+HDJA7z%HgA>K?et2m6G})d#}&If^98(^dnOKK2P;
zR$Bub0;$6~C2UIBt^>lqA$N1bgml_qMisK64yg`SWF2E=t*0K<#&G}XEF115?o7Cd
zEH<VIp1kY)#?QIYT4P+IRb`;nN?fKyzE+ZS2FT5(G{sshHh*%;Ek{gHrU?P7$DzcV
zzw?hti38Ln2XJwnU9!`+eqbyfID9qseA{XiJ4dE)6zv+{Ad6nsfCvR~jiPShNqp-Q
zy{>9dQSjP2E}YpRhM9For8hXA-SX+G)&t<;*In?HPk=tHnw|r83I)U{i<A$-;ww|0
znk8veseD6A9xQ}_&wBj&d+#r?9*(DKiDrmJj|)@vbtJ8s$TC|g_C3EP3gTytk7u4n
zB9$0+74kQeBonJ{!E)e8hvWxxs8s1T$tS7BWm1rn&q3Ut^n>4BY&fgpAIFNEP+2xw
z@N7n8dog)uk*86IMo&<8k*r#t^c%#q0M6W10W#YP1b5j*>y@?#TE$Hu;f4BdkLM3N
z6~tk#Enp9*_LcAX^CO0lFBc3YfkjJ%E#aPG@I<Ua8jrwkmFrFEnz5$8Mib?-TF10h
zpc9}OCspd@k`8Bzlk5o2I4g2TE%wXVAqaV`oP4NSC44MDKl!P$ciaX~`ORwVr!_dI
z7ThG7QtCc>!f&R6&1^E9DA)$rlq~(v`-B(&#%OYx9OVRF0zj&e4{b#&z@2RNY^2~L
z16UOA9nOSVhM6-spA4%__Uim_*12rUpIxqWvloPq&bBwRFB9PdjEApqz<%K{L2UTp
zN|8qk(<?k}9kFP2MImzK@*y(78n9DHTgHxH>r)U>I3flM^3BR<Fk3o{T}4)7#@c8d
zV9kvPnaO*Ga3}8~-&9$u`MPw3CHWvQWXtRX^OYqc0#UxKtHDn4bJB`T;b(KG$;9yT
zS{?-en4FXZG)@)r7kpO?e$)a0B&;0xNyTnaO*nfqlUESxh-QFjW3&uDDD16lFCA2o
zKkrV7+f{<{51-2mpt=%Zr+TB63?pEssu|?K{_`|zl<?EnDw2k`4*$p!$BjM{eN6Z)
zyngI+zD45Apf9D#$aaDK&%+*G?8_voV1Q+;nlgF@u}TWeHh0+NNv-B0iHV9!4`;zb
z5U^a7gJ!#dcc5mMJnv;Q@gM?(1oz3%;lv#zN1w(1Me&(2CW*fEbPGsn>*xGAaxnx&
z0wvp*@G#;Js~`4v$uW@uwgA=3RUGz1p7n$NVpo-xX2rbhI}|MZ{#n0yOmC=LuYpaS
zdoJIv(M`n8#bbk}u0;5ER{48nI59pfZSai+N$23oTZsm%WrsoA(o?ftXX8<uq#l@u
z4KkSWfT%u+rb6=0C803mS<LU97CIv^D|A}6x~n|bLPxx;CKC-P2cHys0s^NUa||@F
zIuG$tQ<;`t%lrmVrPvKUsUa9aTOAQLky<WNv16ukK5jntkt#E7^+Fh+@RUp{omrmf
zUON->oI}HhcW@hFkktgpWbpx>R=LfFh94ia>vb)Zx#y}re#xQXM*%S$UKUGh=yHYX
z=?QP)vckh=4Orgm)Y=H>5Kr#NE?i~@QK~{|pPH~yJ-=rco2zINM3zjYtJo`iAURA;
zM+6#bo$_vOqtb9K_&C4ET0}1)+bmNLV*u$w<v$(xM(Y%))6#qqVX4$XG1pY)i(e0;
z#9UG-OIfER^}Ok~E9F&k&b9JU?#xt7ANz8-A6aN^oL?XH8u0*N@;hJh+s8~yvwjk?
zHg^d*n*E0VGP?VAjwnk&#XA)PAn-HkZGTM49yyMF#3cpN!?LLS%-^EOG=8MzMw+Hn
z-HB2a3sDl6BuYAoOz<?!;mQyElb(BsW-y`ovQ4GR!y&3_DJYCqJ`s~@33zIp(Yx7V
z9!3QepwBsp)rs_^H0QpdS*{8KS0MvKjqz-dfWO%<e5Htr+=wKtleb_bWBJ<|1r+SC
z+?e^Qzks4;N1{Hk_N-nBARRm#iCVUN`<~$?ZTU*fQEXQZz-7i4O$<T19rhYC$8d2r
z1*`a}v0+t|O+#{KNt&hy$Yw!5^OPU(B)6D=n2DVy3O1)+yyU-;FNuv#NrC1Vu$HS{
z=GH##UyDst`~@|j<_TNG>?Lm2=e+QifBg}=d1wcu7R(MATzWEagfdQqw<CArbx~e{
zfcZs%IhOoRsR++KYrn%mwCWC65(J#V{@u8f!}T**qkwGSpb9Zi;IYbGezH|yW){uX
zfyI>MN8pGO&fhc?qJp^zIY`D<yAV`jbQSL5v%;}+n0?CB%id?uBX~46oGf@!NPeCV
zsg-GAemjvZDtT5+Jj)1#T8X4r_6kQo6a_>MVus>`@OkLp4~K-)#XI>~raO9nztHOl
zTYL~NTjl5&po5wL0p-WCVG`bSJc;`1{X_MUJcpFnEL@EamOoH;5fa5+9}17Rmcdfb
z6S@dF3-zKEXXvwQLY1Pv(h-dX3WAW0%$TCRD%{eu!-kT0dMJYcQ2+srOZwCw!cs+?
zOCaMZwxH3jEW!E*da;9WgmfYY!7o%l1K!mV0j;Ek0mAp_A+U*$U+@p%q$5}+7@lfc
zjq0Ry?404TI;sqm{Goqb=Yx=ickgeTS>-DtT7*`&dK`8DChJ_8ZVVAevD;QBeE=um
z@L}Pc4(o@(4mi2_n27xOGPnO)f2)Ei`1$dW3e=UhE+-CHPCqFGk?LmBl#?6j%<UV5
znXhpVCb30Ijj>D(5DeaF8-;g>d9r9p+c85J+7K%ClNXG5&h-h3B+uwbD_2l$CGLi&
z!@H~Po_L&;QH>BR)1Qgw%K=H}>CG|3zgum1_A;gdr@biymqi3AB3Kx_f4?t`#SqWG
zrcp?XY8zm*L0l5-Mw5V8T*wHhmaAlQxGz?WgZ$euGZH3%9;Yt0`VZVOo)A^U&CnaA
z?y3jF6|%2%nw!ea%&_GB_?lhsx7RS9q-p1O3uc^#`eXkIM0!>b*~sY(MY6>m;G9TR
z`)_<8C{>L{@Z01vA>JGR5&jaF_>ruk&Mtl}W8(Tp!iQqS5vxkK<0D$<iVZjenow{B
zg8^_jDe6STyqHP&rZJ59i4K&zkt(cjtE8Ij*>d;qJ;U!%O#H1*l|d5Csr;;pLqp+k
zYe8CoR&u_ItpR8j$^==@_=aRk7~%NPbt;zuw^jH#N(9nOOAvSD&8i*)ZQ6FkP%Mv?
zpp`p+Sa_N;d$cg2@v>@EV)!QIA!ITkK9tx~;kLckAGZ%*sG-Vbnmckc)PRLsb-({0
zx=4D#D7XaqMnDPZw@J?5C`g3%D5&j!_pe10V4}j0#x1ns+jgYm0ms=m3J{*9;z4nk
zbuJf&7Pf>1K!7%xFl~}rb2f0u3&g_Kf3y>d`N3cyNQ+p|fLMIv>ToC23K}>#t3$?r
z&kc5TGWnGpZ7xZsUqg8-zTSR45`F>1$NbL`aXMTQVa-`}(KAO}gWN$9H00FGnq{E6
zNfBJ>9Cy};kW-LTlsf{<+8#3VD^xPUD)%9kvM`fSyFlMOuSgQaqDesgIx7~J0V&CG
z=q(HEIT$R8cqZP$ox6m=r`mN6X8{#5B%e1R8jc+hK0C#l7*K<nxsEpAQI>)sHiVR8
z{ubu!&VJ#DlkAqEncOm4uRrT8JFqT?lu?x>cHFV|hCwhTY{Ry7b+ce1XK}L!!gf2^
zbtJA5;7NGp7Sdqdr+>5JQQR_)5Os37)Lr;@6T~dB!RduEKj2Vf-5>g}e_d+=-C%HJ
zQdATR6CNT6gX&qC)|I@EIu|Dy59<UUHj^O)xr6eO+F{VxR78U14Bn%1+3dB!S$JOX
z7l{}0uCd{<-`TgX(}vXS+cG?Jzg?{}_Z4f@ib_m+kc)~RBi4Y%I8>^{{k?a1B*qTe
zYZ)PjXl;z7t;5ZzWqvJ?v=Fl-)<RS()s?piS3b<T2A~tv79{~gYA9H8;DgShvIUJY
zrKeEnl0#n^-qoUHAVPJ1Lz&xUzi=D_#?xTN0&z8K>*=&%9Fu)xB@FnMtP|1xd04d@
zaCR6LY=~J{lqhB-VXIQCPL%uPz&W#xI6IG0%*Hj>d4GKG&u&0|Z}XCGLrBVXN_Q+{
zSUBqnwNi3n_%T|Bu#^zpP*~uLQoLz=I0F(MU&?2g?dco`w^$mjY+I=3ss|_=O{aIb
z3X%gW+z0)`XUZ0l31qc{fOha6j@}|1{DNJUD4LMfu`j?ze5r|Qjw3-{Z89>fSYu;7
znnjUT^reW(Tve`QZ1@A=It|+z77|0o!Cuww=HX$fGObI6n321MJq6XZ#QiWVyce++
z)h48rjfh&%h%YM)AAH@verzcWcqyrcZhSpXILYL{Keb=|7=>WPD44I6G-U!qK;ebI
z7WS(jg<(c1?hX*HY_55h8&_BA{(O8W$@HrqQq4`6xESA4sChp=Or2vFYZ|(;ZEi}b
zJ9a{NnBR?%Yax4t_1NL+DRg{ocy3_7`pGE2OuAF2#SSBmv%{M3=NJ2`E6UxO$$_4Y
zu_wp>I*cx&C&>65K5bh;ZI-dehFs{zPNk=XQ^O;5{pxGTNdhgJNmv10<LbtgxtFJg
z``c+D?3Si#=t5UN3Y3iFe|Bi-S3k_qrF^gIs1Q9SWY6Xcur4JJn+odE`j8=YvR}^*
zS038$A4K&BXInZ8hBOt7`4B2#r*p3j?R~*#K`nJ%g1lVu(BAibZ5OEB)Y8_(k2?#-
zA?8#!iW}00_HO;k+Hr(B3)|Ceyu@8n+dIA5u1?@46?e~d3&OJ(Jhm!n$)qVw<lKnC
zz4!Yfe8xM62<2^SaqhQ^`V2YR>(V$KRz`*JwyuTF?RRpYlIeE2c2-LRc@NI5TGVI8
zwB(nqm`mMUYdpEn;$!Vv{hnRmKF#UYY;HCUub$Fp;?(^8AQ;U#F7`RG&wq}zixcH#
z+EW*w+^1K3>O_in@DG(O+^38BJad%&a7cGH*P3nC_Z)v(p9RzW$eL=5lJ<@?@}Za{
zpCVV)+n@AYzmbEhu}J2TE7^%_UcvVqJi=d)>aXjy2<&tlbE2syu+L4K&GyR<wMHAZ
zf?-W$&ojyt2|$k5%=6du?mrS^&{_*|89wYRMDDjT>J}9vz=`+&=ed66XZ`fM@kDp<
zB?0EBDctE-{9sqdWpmvN3tLxeWEPSLELHgICH{&}th-d)0$kEN#h|`)uK(9g)}y-C
zc511%aRa^<U7hTQ?Q0D<FP()f9$PQe@}sBoj`NiVTO%M1>w#Du%+_0v@wb+(`#Sm$
z+TVik$O)J0Ds0>{OAsEjt;luF_b-&#PvKuT^HRbA^zw_0za(CUMuV+O(Q6eYyS~$(
zFxq}SZe=E?V;<-|hu*oSCcpRo)-W-LGg#QvRoL0YyHFUo(nW6HS-y9vjc9EaK(&jZ
zQcc6&S-;g+HW+al>eHlLHX!*yABx-_Ils?fdnj-&Nn+Hvke)WVbjuL`>Os~9LQ9xZ
z)mn?(Nsa!LUUqdbd!0=+b%NivGX9JY@6-w8+1vsafu`@-Cf{Bi8&^{2S2Zv-`y)F1
zCVV8bI=ZP~GMby?j5)cT4y`@OfBvJ*Y&}ooz{pm{3)X6p`!MH^doRu^Lc}&8L3I|x
zj>q~7Vn2tjWVTsiiW3#NxoN*uk-d8~OJ^Zlgb&l12)~=|-;5(Qo}|l`bOVecj@@(p
zr}#CW+8gw4lnb9xWE)^!w?DMX9>qfM()K6kfVXqgZj=1#L-I{+*>2YGJ5d5MpR|uV
z+20v^Hz7Tb>DNP9j&$Q!8NV>toi&}PgW1`J|JhdKR!X$%i)^-Do$nty-0p~*rjb)1
zSp~U{!pxq8U1zBFlD-k8^1w8|ih=LhU-$$lX`n&v5vFnXGyN6+wr}NJh)&zlDz)=L
zonO7Xy@9iGGEMTvn+n^rT8B1y+Aa4t_`mfGMn^{LS<`S%o4+is=UQ|?dM33*G<wYT
zJ*W9iqa>(hY%n;poHIbD+3i%{KxSw)YOG%Twf`(WnOJUXHnWoDqA{*-@oR>x_b~)s
z=ZU<^r_i7Bv;D*u<ENwxs1!nvp*XJOiy4bbZtpzA_bs-MLab>afF`MHEUJ0G@>j?8
zsUxB^L`|KA*Z_=d_d>0BhVnNZegmW&Ls=)e(AbnCJD;Emd+ye(KR&M3T84|zuhuGW
z+@afl`h|4~Mbl*qQvI0Zw}>M&x@BIn9FY&Dqx~gOl(4v%izp)0@g*7GC$8YQb~Mxy
zNk4Y^@AtM3;*O41Tk+b>503Q{lP9G!S<Wct3$)<RYVsfUPk!Gd0iJ(QNvA(B3ckTv
ziBH=%spI@$hKui|-boir3&J_tGfLjuI{g5?7?D4k!G`c;f<c7^wm->t?`AI<pIyj;
zA_C8=Uzp{uigVBJM}vu?B$*XjuB-DG$IgyU&sf=vt1D^DR}3EJKgw$rwi1YB6M-pY
z5?{XCL4Hw9oJv^D`OU;cws!b)cI+7v_F=MRdd>HT*2e2n=~{LjO$$3aQ5&`f=*W!I
z{hM)DY1=dWTI#<P#uL&V4Ol6NT9*3U`F>g)|F{o37q+&;lwo%jviLF#FCv?jdB;Nk
z;{bd4Fl-_TYJK?4bNyKd+SSQOP+2O!+(4Yh#4fRJ;Ib6C{~qa2Wtx}~d`@hA2}{wr
z?>^n%y`en`=e14985L`oiVG_J*AlPT$TBtxS8~XGi%gkC<9y>>W)CQHC4mCMT@5N2
z%cFXA`rNhsM%Hk^C6$RfI~NwtVB}|*h$jvV<NS(`{29x*SJW##G)k00Hgj{1pJHfh
z$=>~w|KyGM9Mk2@kqvq$fm|x45@Z40UFy$T!Ef^2Yiwy`H#2mdg)?}!;w22;mEZew
z{=oY%i)XEDY=Ow>IBtvmGOy0xc{3^k4q{Wm#55z7CK$G|5%~$Nfp0nb2*2%gTchJ!
z&_=8{rj3DLnDO)XS#MY}*<4GfW(+MVRf9!<H;tQtDwyCW&xr3x7Ywn*f|E+$Pn_a6
zy{z9jzEq24b{6sH4zBFqeZo$54YO1Rykljz|H>}a;+dMU_;qFfAG(uYHSnvJv~&F{
z``0hrNxSI@oEbtCX1D(JNWb|Mn^qRWEM)w`!Uk1<z-~ZtSLS>}dH<0$gkf@+ZVX(8
zFJO7jT1h!6ZTE*C^>5zUZ>0K25=$B<+El`I)BMp$*Ba$1qlF}XJM`rsZ!+dS{fF;3
znPxH_g$WR|(R8ur{`|TB=v|w53v9$q)HUlv$b3{WVZ7_U@i+a)=6t*@9qy~3qx-G&
zx4dPSWtg*~I&Ix#R$?nbc+>{D;sby5QhuVtRJEp<fR2?!^p!Tz{&i~N$FxCcP1c(k
zE;d;jKhqoJ6fh~9Ecb(-q=)$h1(QE5>BkxLd|0~4ztLdBQKO~OxaTaYb<27pNY`n?
zya;El$W7iPRI{slIy1Y8b=96pYlSo*3E8K(-cW>Br6$MaJ2{P^)r>@Cylj=@ra^(w
z0o6D33jMF{mjSY24l>MjIpu}R+|zseKkhUj1MtLgsmv^ET`(0Qm!dowz>&!o8*J&y
zf~(`Xy6lS7xZiODh265^A3*vk()H;}Q&f)2;Jl9$S*uz58&JE93{-dV4XGhd4zPD;
zF^ICbIhlfSEwcL=4=VCpy@x-qj2|dmj*o!qGDa8im`nFd-F82ZHQC<`1G*y%mRW?G
zwMC)7;MV>b@Gus>Z5H~7)&`7NHOd2S>!S#M>S<Z1Yx=A&JNygJ(m<pFla#aKvIs_1
zS>_HZ`eks;DGuGlsWxzgC>^-KSDwOEo`YS62J1-UljDdKOl)c3I~>}9^*E|ovDOTu
zsfC(uXlbOA@UVcq&pAGI*VFbwDNNo5VqWg{InbXxWk4+$2#9W*HW^MRu?g13xzDHW
zc)p*SCgbztEl@EJ;e$STD7E)p)&L2iA>Fo$#Z*iz=eKXA4u8k4QyvB=09%?C#sB)h
zni}vHE%ZLk(&}j8?bWRD;_dz4Htko-4Ayayyvh3_at({z(o<63{f8T%n$xW`tU5*-
zJoTfHn*LGWS{UaPP;1G|OBW1I&t{BRR>khFpHkaa^{WNQs!vlj3yDv*TZ!A|>eOFf
z@2i(gzzu`wfGgI*ycdkqK}ONjQCiG@TT=VoY@Ml1w-pS{ndR+nnU$J!J3Ud!Ek+qD
zpu$!CkeWNKZ!M`XwK;L_^swPbn|UndB8i2qo=?3n-nvi8K{f(%8#+^w`+C#Vqc?IR
zXX`@1VQ^Hj`cKPJWnb{)3JSOYEOgmO>!?T0(Rn6y-4dFR^Uyu;VhPUZ$cSop`uhW`
zoBPzF(7-u5R^rCtPEk4g)YKVs`qgqP4jE>H-N3Ox2)-eyU23f5A)do~oX~F2vclBW
z2ix~e%(k|C!7*r5sU}BgS?VFrKuh|x6;Q%@IkB{A6@qzvN8k2VU%eUU#1dIcl`8g+
z#?%e-?Kz}lwV?LUO85@a3)iOnl|$lJ=USS{&rWx-k^~<gv?Mj@7W?#Z*%=wMNmGGT
z2ec%8kxqqj|9UWW#%=c88W5C@+!yv#q{#1g^e<NN)G9Ys{-t6bR#)Wao&8^ja-G^9
z8K47Ub}ACdkUTRbwQ+;BfM}&>%MPm0qWZWgwR)yqCuoRm4UR#JK-kGMQ}><_ztvP}
zu89>#Csjz2{jduElej>U`+IAuwt-GsiOIA9E%n^Mm=!~TEOFPIm0Ej}y<uFgX$G>2
z2TAl4)H6!<LKXvdOO@O0!qnc^+b?0vqILD7p>REf!H_>jnC0zXr4IfLzaUtbV_ku8
z!@sRdt^F_8l%7NVmA2)~E@l?i*qf<iUZ4S94B{Bmo^*2-!>>L~Ejf(Kq(-DWK4t$v
z_$hMttsJ;xOCSBX7EU)yf$2jcP8;a!Ywa2J>24YtV5*Rp!g{@8WB){NS`?@$7*BuG
zHfbep+JmX%{$lg0Etf7Bn`vQhFrkd;JrAc|k@O&j0yu}m$6*~MZq|jVgWuy(WxN}g
zs{l1Tn>FgDG^YC1@oNEqZOoav%F^5TgMstXbhX&kuA0$^Hv{U3bXl}V>hHVp>tZ*u
zg<yw`9$h1FEtV%M#~hnqZ<;E<j<wApO1MgmJd^A|sxbEU=ltHjhRSy&;d4|1-Tmp#
z)Rw<Bp<)uXg9*v-J*~(B-1QRo($%R?zO{!Tsq9&jCB1j?-<`>`D7+4Q!BSw%N+Dhs
zx$W*s?e%BdSemLP++~IzSqQbgmrws-i>-#J2IIym<OJbz*Z+vr+{S*|apQ^3XPS{Y
z>6xrNaq5<4QoWjfF7re?y6L*q$am~pkOM7k3-uNaKXvRLP8Hu_4;u^uH#4)G2Z?&J
z&8*aSS-T#mY$&!-5rd8AIX-n0uV9wz)1B=(>^kjDk_y~^A586hjlKLxRUpYUF+Y%G
z;L;y(L+ZVk`brd2RJEWUV3?&!3;xy(se_iqQBF56N7Z1txrbJ!zI@PxlXhSy=^acK
z=sP2M<>=JXGJCrOQ7y$bx@-z214SbwFi!|3ZuL~^+Q+T)<0$Noxz9&&1f{DwF*RXk
zTo37$im?=-y{|klRs3#VAF!1vFC{Nj$#*+sQtfx!@6`{H&)M7)2B#MNnjW*L@(-!Z
zKZJ`+aECNNhDWuwGXPK{i`-2IrZ&=Nu6I-EdN<XkyHR(%p;V?`{o$$4HsG~zjdGvb
zq8-tRg2zo1>H7Xh23CL2JK1HZrfeG;Pbc6NxwG$29dkW5a=IOdXR-PSgfW)~oRxa?
zHC|2#Gl!&W%~AJ=2w9Pvc~<IxSFE9?qoJi?75c`Sn9C1;pXz$mn(|wg0p>kun<971
z?^4B2+R_}7ZfQmAux5CDLrV&mNn(%LAV;dj`i|IL&ZgIPE0T@5q&ro2G*1SgW-SO(
z=6{GaX?Dg8-wYE_2kex(+ZPW^_hVbD$Z%)V7wLjA5|kz)%G`SwrSASP_Rt#ba;dxi
zqSU@f4r!_^W*6ajdUnv}{=gUQx1>;GEwxE}>tje7SbA=1<TJEUR6k8jsjCS=r`p2q
z<?~asC0Qw@*Eu)WGOvY2E9pebMXCNP)_<IyMJ+N{cWJ8VDQoDN0GUp6PffkT65~lw
zn$Q9o{bH9pGd1^RyUI$Dd7N}gQoZ?isZBLyCQ3(U+vZ|UFo0;*B3Jl%>enAI%oXAg
z%7(PzL#|C|!U8fAi}K@drhZt#j}YFf(37PBq6&Av{$6U);r3)r>@RlEhqi;*fyoY%
z;eg4`_{u(z>iWkashOBEEFL5YW!w33!fZH_jj64r@>sLWIh2dcdMly0&qD*3?`$(T
z8gl~eYYU8x<VIeU8u14GKxAWg0iUr;xz6g^>+sae8EZ*)@A|uml)oakYQNN;=wa?1
z+$2dtb_vE~VQNLIeHi9udkY3<lSD(o=uDOj7~}-Pp&BRPswYzKJ#E9skWovPks*GE
zAb5LOYS42?9kX!^z2YmXaUtBUef*ygpS09864F9GGkwSH;xi~&TWGwX6=ldESrPYL
zclI~1KJ<IgbNoZDOW057<)8S%uCopZCh2-9>-?IX{Sla?{Js{vSv%d_SHHbq^oU&^
zYlaRPc2Khi?&9xa;P~<6maGgku2#D}clKpmWhN%1fnv#RDsop%O^untmx_EN4*`Kd
z92L1%|9R??@9oF+N@7K`pgrhc-`3Pk$Jpc!Q{heqP}8f-xo^5t=N)Y=QWMR~+bH(V
z#PgDW&WbX%jP1M-$tjUj>b5*H^{XgydNx84V_*K;)NXtz8-cMm+b1pCN83j#_o8!C
z*~NSsrF}9j-Jqg;9Z)N#$kzVrgKW;k$!3WQfIa=~)a^SkUm`sjAi=m{ZkM=I>Qd+I
zV{5UdIZfD4Ymrs+(c*#M?!a1<m)wS<Ko(dg+qzO~WFmIgY*W3&?{Sj<Z{UZ!^oi;U
zk;LpWCneOlB5C2SR0@v+TOS>lZq9bg#wV@R&3!TT!$e*RrOoU!J$4-CgzmH;#?n;k
z_y=sz$=)O(hQt93C&WpScKa(C`@Hd4;M9eThuOo+m!v+wmFq|#sS{iWJv9+w8Z;G`
zKL7Wr6CTZv>6mo1NXKKAwIa^sU^2Fh*7m2QM%>NMic#AT1|<J*LRc@?ZIPOJ4-GI7
z*ICq@`|g@{_8%789b{R7QJc+KC9>$4y;D!cL8!^hWZ*hJg^kD{l(?s#Pc1o$9#ecK
z+hIb>wqUliU_{$Y*)Xz174QA=r&PBjvN`<?`e3;kH{GAQ|6&`6#H1#UB{x%~s#_jR
z4Zn`*X6<0g$w;GeNA))Td>Lt4;%$U3Y%Oy#WRd%BS!(WOaYNw7n!!V5jw1I^F7@dw
zUV+@v$}`!i^}wjek}WZP@xvae7f^8YZgRQ-g#`E^$*3A`hd-Yh_%Qdcv+XnHqyV9S
z2^YEBFH5D*HB)DJc40K?DdHrx#v`zK*k(K4ocaSU6I~d#rfJ?v#t(N^GVz){QV%k&
ztbZ0Aq$&E%coA`-+{p6O_1Xc|(9lq(s7UH_BD5ae(I1eqjk(SOVzBzpPMw&xuN=o=
zS6XOQVgzj8H+AIKHeBOdkXMd^>kQRjm!z8HE<nFTH=>F(XEhzbTH4Q8ByfjrPklBm
z`RW;1sr({SFgORyTf`coj@7ZL>9_C*z>rn*bl3$+_z)Nx-cRjRZ<i7B&GMIZQrVJ?
z{pyKat#lJHtAHKT1&D+3O=1gJ#1Iec^)`MW{1hE^M2<t;%&P`qkRgP;W|uzxZt8?*
z>60cYqj;klM1I@snbgXAZKarv-p(dO29Pye>Q3zMTRUxpM?{fIFssDfx;8bak{cNJ
z<(=01Vxd<fzDm7~kIX!c=x*Z`c!(UfjQo6m-&EJ9^iQ->Rlw6N9B)CNp1&k@_RZGv
z5PDNrCH6A6q;7rCuF57Mcp_{C2SC+w9=I-b`PtF@gcLA7O}vu*5A1=l`?p1@bKj%`
zME*PUe%L>_EbjhI{H7=I5vDpde8@d~GdJqc)CD7KKp3ZV=6mF%tk~;6NZs`|m&GS(
zNPj^R7zu>T*}wiTwN-}!96~+{hU_UwG2MmsfcRMHR-Kf(_+_)^M@u_nT$iZMi96%!
z)FCK0;V0RQR*Gs0kj!A6#&lVDLh9Y6Hfo6#*yDHA;(j-^H?+u427{<{FYcH6UT%?D
zITKJUk^}PRPPjRB#Bc0Nv;eSda-Bpmc>@)0Dg5|C>e%J9Qb7sFTQbg;qaCaz^^BiZ
z>6-sGa1(4t=~P))EI#lG@Uqu;@h8d>hh>JtB{T`8sH&Z7w(|FWLxYqLOPf3Nadl)o
zAltOF2R)Y>b)<b5;11P`FxE*Mn{!~Q*II5PPLQ6_!kMqSj!d68H1*imee3Jup^F8?
zg*!p-YR8r<p?lWl{p#yfmyL^V*l0$Tx<#`F^s669cM(_c5eNymF~d-$ncs)6ruD0@
zWsrc;C{;kTHRHyO#;{NA6+T_uR~(SR9ZiiyAYFZ3wa#e1^mh<bjHnBTni$KdX_V02
za!`NQuYMex3PeRo+Tw+bAI>^E<Dl@DrhfJHrLK<U)Ii-N_%nlR%3O6_IBsXiB)ofJ
zYZF_vxuw$$nP^Fhw`@#<4hBIX*G)xwaYXxGKlRm*p<#h|51Cl*-Y5*G_2#7-?T&?1
zof7mqrFgizaYFbCQp;Ej%+6Wr$k@@9uJ^T}YIlB3euS)#PQ_ICeeGn@vTkY(&DGWh
z+m#y%Mk`Mh0c5R1+QaS@jH$9sNUVTe%U}<m#K4x{9L`x_JspzG=tcCEDuxG!yO#E?
z9}dabo(3a`Iiu3juvz_dbx2ba8xfwh@brR_X$20)F=OzF4uA|)E2PBI!6U<`b}$pg
z@h|^bNDnc&@xIjY31g7C*Nh9F?nc*G2#}_jR@4QMnCzHZM*Q(3!;j}#bA2|~)<sZN
zY!sUC^p{T!cb#nWqJ<8Z2k&$t6I1EF8XUG{Vn#q-YSQ<1LNs(^#*<!qLRffxzxtun
zh{(2bHfkdbsWSKHso|az8Es4-3|n0;ARsh6%W;kqCSbf!9P9Mc`EW5c=M$0_T$^!&
z2bZ}IZw%Yf`^f+<;L>iyWa_jWGHBnYZ0sg9DBH5b4H<(|#Muw!)9pis8^KARQ0h*f
zV$>|Yen`^{G4N{#qs=(*^Oi-nrqLtm84MQ-8s&OlQD}LfZ~f3Jt<i=#nt^f3G;4Je
zh5_+4g|8O$yA75V#v6>i?EEYtxk3Rfw=WDkHScyCRtprk&hGSlc6CXiytpB);rv^6
zyA9bqKHIJOx?m}Y-a-yJa*KBkJFeW#Gzh}loFpAK2WjS|)O)`-`7?SY$T52zIbQBQ
zcs_ORc_tF;^N2E$Jh#bpsjJ^NmEUt&r0N88K}^?^nIWgvF!|kTQ~gKvvkrAPb#}uW
zD=jY+?zps1nDipwP)^Mn@vPDCg`}0c{v*QaAN=w<-&4i)4|~2jJs+#TP-<X{uJGJV
zKf7L1sM9PawS}E;{>61-v~GNBc;Ys$Q+A>wO^F)%Sy;@%&GrqG7cp|M4Vn5mfRkuC
zCWY{Jq4dY?qrw9v_PlY~M(#t4H(7pqd7(Im6X%4tuCd2b1Fr!FUsa)~CO>WyZu^@(
zbsS2)6*fynSs^0R?b{sIeltMhGP0==#EYOaw<uhG_txRlCHA7xS<XnB!`zk^%5YiG
z682<nSrGM^g|LOHcm<0goEY9X)ZUCBQqD(V8F<=JE_{3%FBa|~!a}JH%2_*v{ig9-
zD~P};$kgDhDir#8M@4w-Eg~V(@$d$zWSK2MG1TMafRT{TRpc(eKXv2teSf*=bZX~)
zZQ;njSdX<FH8sVB0$OKughy_)o=xa(=*|(T!7kzJiIfcr1Mi@vT1grW-3tXJ7s^-j
zwc)qbcFUA3gDgH$X$fn-%Kg+kEcyd2lyu3?M>ce)+r_G=DwIpH;iPckJp=N6QxA#?
zRj77eHngi}usbsx?aV$YDJc|{pkzY0Z0muyp}?80Oy?ZJA&r=yOm}f*p(sDso)W(L
zi95@5G#sm>y0Q>{n%ibV$i$sj4<8`M!7TF$q817bnKwP0bI)$qVqkIH<ZKER*%{>^
z^PKfj=~iDHPHX6YEh}X>X_%QNsuT#_?8t@b``YCpgrfn&$#E%0Z+CWt(u4Y6%RbSu
z4^&S=D3pRoy0;s`h&`-<b8oTKF&G#j5=l;-9%^=>0Vq|JaSU|8arbOzICkjIuL6+%
zvn$*-n710Yor>C!mca^&-KLj>FDAt6IbJE=0LL_yxNj~EOOCdej#ecn`hs~~;`W{q
z9y-K+o_w)B6>j;(;jkty1CEGu1JuLP=K8tWaM)z7SGcjzR$-z;qIH{%3ztu^A5&5q
zaYfWrS=mH$_G$_zPqdcdyc9;e9!48XEqCm(;lmNuA-KNTEXCsHXH{Z~Zk4;^8^Yd)
zaid}&b6UAg{zjR*?WC}_h|4JF7G?CRfgEq_vZKO?V`xx)4b#AIvdi4L9NBcFJ%y?l
zN*;hMP^`m(w(btC#Wa*+h>KSRxm>>BX>-GWkG0D+M7MNmHjc#F>69|Hiv&Ok#y}1)
zMb_+oOn9}{E{|!MO<Fns&TFz^!e1z83lEHr4^n-+R@OLUy}U8JAE#ildY;su0#2!P
z8#RW_Q#KguuN4-;moq}4)=C9ym;oXiiisdi>C?`z*I3@b0IBwmO(<d6O82XI;oxd}
z^>Au2KwRNF5N?(3sjl!Jrf&Vkg{b(rGjznyAi*d0lqG%3%&>O4J*19(Fh{ZRGQi_d
zq-n;qB2toVXY%>!im_q0N!IiA)>WxHZ${{MXn!+Wb6=pf6~-+iNM7#R?@pcfc%pmq
zZl>gvc~hJV&Ndu)TWb2-W@S&n@IaMW#N_i-%OBBj%8uyD7EFT#{;ByF1jT>-Q>x*7
zZV<wR3kses&kWC_%JtgRZ@#@LM&dglk3t)9aC-kc1vx=?)Mc7ikq8T)3}1{=e%tv^
zdYgMXG1u{_fMR8$-n20F;ZgmxU=$X!6<$z-501S(zGb!&&XJ+Jr$amPfek-JD_M&{
zRgnMF61J;|GeV_2Y!#L`(yZm!@RBw#^0OsF!Cw`kt8x`>p+P@Zif2aa3AQHL(T9Xj
zw2<*1;Gwlb3UB5iY_Jy_!&#cXN~LP%<`;q|v^9~`MR>~{I5%v(pFOIcMNUc&HS<L3
zAlzRUj@9%6ucL0_epQh{ci+X~_67Dh+mjs`wjJq;JN+hHvA=!TxGeN=tq8J!%iX-@
zFtEQ}*C8RzR-#27Ux_=uC5+Jq`}rGKo)=yedd;UnrCUuX@`;qx0n|P&eAG&VRp-sY
zt+&@8ugl$S(?eTjd=1_YCl2fVu&rFlj4-U!9wz=Ur)Q_rEwdRI%;i%XLw1<mV*_LR
zQ+HwDEp7_ONnVqqoaH9mCCd7Pv=qBD4-Owmij=q^3`@E>O+g6u%aSw0-CFpT51X5h
zsY#JCh#*yN#o^%)b~JN13Cu#{i!)g6=FbV=BUD)k!$mx3nN!%(m@S0eWm5nNsl;_0
z7dByX_{pe_77i)rs1;jIZ3QD{BaldxP`%`}GeQkr<yVtoc-YFJn}svOZx7|IvY0!;
z%(zZ+2K_uTe9t#CwiD%Wf#Y*X!i?~*k@keKMAHkVD5ro4$K_+pA8iX)#ZDZVRYR*h
zBOxB{{#oIM-R%`eLhVptFZ5RNq;Tt=_AH&NAeko;CG~+C!qfw86s9mWWR=b4wBsCt
z2l|J6SS;<P@Ei3E9j<IW<RKw_x1=t7A$f?wlI1)Kpmuyw(!!}i*dETB&F{&4%(bA@
zrGEg8Q79LLAAd!|&({^g>6(ke(K#A8&8%g1Ba)Jj(OH&w>ixUJ>)KLcRbbml+Qa-T
zb63s@=N@dIV-#H*U2=2YN{44Ox<vjc8g9E-1sz_P6DE$~GRy~@1>w)gvdinkcit|J
z%INss4tN1N+j;i1aO_?@x`@M{81FgVoX!fAM}hWfVe$6y;o0^U4I!je008ZoO=pG;
z=?}j`zFNL?85~$QtTEiH7ytZ|F+U%;IILJ`&l=3(edth$mQoIEbp6`Hn&H;6ZdtPM
zkDMJ|)|aUsMq3v^B?J=^RNaechP`bd(9&)5;3mo*VbSfF4)+b<hEg|#Rffd?)7~vU
zHmqj0nYANxKoJ}OSmCC1hKn@%00dM6<%c>zylg@^q}(n}$>!!WFevcrCWP`hVD*Sd
zs3J@`@=)g|>^?EfLj|(=n8CK$Orcn#oRe1Uo;ojF-eMgb#zhQ3B^3QMGyLBH{GJo9
zEoTkEj;!c9B}^{lD#tFzGW(>W7rSf6hRRu7t;RfPD;O?AjJTN2WIg}D{s-btz9t<C
z=z@X32o}2omWNv(8gL*^;;4D=bF`8&WjTYg#Qou&(7fY-1KIn|J+S$pzi!Ik37UY7
zOC}o>`^a8{mVa+grHZ}s8D$PBlIV6_9d@0;Qwc?N5?ivTl734V^y|>~aC_3=Om@yJ
z;*+>J)G;U>wDi;d4HzL~(#;Eza0>}ykhKJ;f31IK%5HD5YB-c@9-bpib{F;u7Y{7B
zmyJE5JKIjl2Zn?IaHTt;-=J|n7Tn83MRdS2i{iN`(2gW7r(HSd`5g=HMFG`Q2nk!6
z`;@}J<9Ff8vednd6~oywr)6QmnC!e}Xb;Nc#yc!^+cgcUIi%oZ{ua-^oYR(WZ+D{$
zA%m8>KHG&=Gi<FO2%*|!9dlISs^^B|f8C#Alz4b@Vlftr3)o}xKJ_<#G~hw)fZ1$4
zbU5j>1uXUU_XoZ3u{Dfb(J`-cHP?#@aCx?SXV8+*>^h~aI_Ja!r`CqS``)1A-}>K&
zVSw~JZ0L#(L7sL4rCQ$`)cDT-+<+f()%%0?`eeX%?7%v>aWdPGt(XcN^7Gi`c73?!
z`2W#$-tkpc+1uat-gOiRaPQv1N`~~JSONqBBoGNjz;;P4Nl3Yv<N`s&-n(KORBTwW
zD~jl#V;?J{zUo*}ELd?=M8)y_KI_~d>iqn}583;kb9P;QJ<Ia+Ac*;Hqc{Bxw_8Vz
zBt~W3BXg9xBVYF;ueWx?mo_s2VNZbEz2N&_j_M}k4)zq$XgpsQ*tue8JdIBmrLw9e
zRo9kEOXe^m^9Y165{nf5Q0!6-am+k2>LE%EO5y%R)XkF{rSC5B{A+st1zIYqt#nMv
z4Gh-7U!vokYVAl7jo(2|E6!yO>5uzn54t9<zOl)!<`mv*I&xX;ke&VHjqwUD{)ny_
zD?6IIT2?YGDO&T_WalLN&gBz?gv?d|o_lVgKkT!tgV{=QfI(5tna0MEg>=&C+4HaI
zyNnT=y@V9TR>qkh<LZ8OO7^PKK9?X{S0@@*MbXJ_he><vU6HN8Rm?v%?W;0zrbL;}
zAR!#!P30iG{)ON7wO&ggyja?R5|F@3+*ZCjYTG?;`(p1U5Tmhhb3o0NXehuL_y2D5
zdp5-X)Wgf7o@GpPJp60MM}ULp<;A#-Po9%q{(SFc=&?iDZp%`^l~z~~!~5K;F8hsz
z)(1)<SR^6_xRZ6L-%e(~emi<CbgeyA*MeeORG3rDhfW+EHrWpKbb}7eA(%H74hkc7
z_+y7E5$-WKJi9|55x)ru)SsD=HU)koSA<;T=Wowif;EL3nrcZm@c%B9Yn<S;ef00}
zbichVMUo8L^~iJNKr+vCRRD_Q0X7oCK;%#k{&VMs6z%cKH(?n>Kz1|^0y1B243EU5
zU9umkXRff3k0cAxUZzXhx=Z%>R%?Gkcipy@;N%!*a^SYvcl@s|Hs-gk4c>-=^MAb!
zUjM%zDabtXe~>w)<+#6HmwoiEu_es3TtSq3btPwDn<)mNQ(<CL!<=Dz&xJ`)V}k$!
zLhARpNtLPQvRRoXyW?(I)GV4u#0>J3b2r_l^S*>2(lK2LoM*^A=45^C`EdE^@g*oC
z*fCK;Nmy%6;4V?QTL{Xl7x-&i;>-Bvc<^$PAkqk7GKNWMKymhuulE*>91JirgDfu8
zX`-m?R=@VH9)}o0yh;L)Y$Re=QOWwh@!zmu^Ip}&)MLVlth{4}A!;5`BXj%?FiOZq
zb0&UNYBOnPH+xD0Rls0Ir(1wzCtw1zNqxT~C-&VBOUc-FM4hH)EK;Cdm$=85`n{je
zQU}O1V60Jz3JP6-S^wO7{8uko&uB9Svv#E_pYoTb{;$y!s@?%sbO!E?QdIfw%{%;=
z%PkTfU)ms|^%dQR`zP1!JH@XYLyv45ot?O)u*0w}QVoy%&ab-Ix@uF<R&;bQr*hqz
zul<}$t+|Hya58Ys63-n3g%~I8YX8yI(L)w(9_0qKkdrv2sS^Ut&y*(d;%a|+^pZ*p
zHtRo2-imAd&cAzU)(#?P-6`4VpNP|-h)P&jjK?((`71twy0g`SN{uR7p(d5OC+_oE
z-(@X9xEzlIznMsiR?*u+jsT_1H_aaP9jy0%bm9YF-&rL;oDgR8oWf$}Z<9Uu6PP;s
za01B%M--Hu+q`sM_-|II9;32<__|U52aPRoP0xj6&+l1Xi}!+bVz5?PNC6l$mW*af
zob+z!sqbS<1@K!0AJqX)F!%eg$Kd!9wu+#WDP1g-`iQwjV7mLR?7TPo4rd%=Wn*Ye
z%-|9{{blx-Z9V7ESVgv><=4J*P3)JiVj>o!XDK_VpfslP6|2MA8NI7mDs$uwLmcHO
zx!Z^L${yN#0Yj;1OE;vQ`&WC`uk*83j4#Iw1S}X5libK8g5<d!>*Dk8-{JKaw^+ai
z50^hr*APgzb$e%xL#QRvXq6n{U;(@9KFRuZW{)a%4?GT3{Z(zNoI{_d#MT1%+_<ik
zbMG9G^}(X7myoE+r>s)Cg#%T);f6j7Ajl)|D!T<gWqtauta04rQL|UIuWIJ~&b_}d
z>%u-g7jPxY+jup*;Cfx01<dD)s&bg2ygp-;<cE%{>b*;|VyB(A-D6*FeJC4Wt!O)B
z2{-cWtP2k5wE#$ma^ApQcZ(-vEu6}?6m>F%&y3FNow}^YI7AETD>Xx1+?(6>Ub{`t
z1+1mQTL?pIQrhw2wya%hv&QL|a>TG{xX*X*y?S5|wG2u%^QLjW_sx|(^sSLIk?Eal
zo0#=LGHU@mqI?S9mXPP%Ppw&p-j_81iaAmkS&+B>S^xQjUjdViCQE7VPJZ>DYqClP
z+bEezitVCkTIUTtzJab$*u9a*YQNv3>)gH?_YnC^XzAap_eM|lSW!KM?1UCvcd=U0
zPxMh@{2@@&;?0Y9sCZ$E1#mm(E_yTT+rMQkzy>;kfsyg-95s9g7jQ&WVh~0(l^FmT
zdHp^NL+(a>0_4um_vxuAL+={c?Rv&a?eOD{uzBMsO?NWbips3|QM_E}y3Hvf65W<J
zXWckAtBE^=5S->bUb=Dol5P9|#xf{DDyehN=Vop9*WLpl*F+NV_d`9hc6gulwqzX4
zk%aqh-aGG+9?x(92~2Jv8I88PzQ{T&*DpZM;}n%-{iiwWR2CA<SX`#c0)Od<Sg+Ij
ztd?GuA`6^Q7baSD_U;qD>$`xHUJdFYZ+Y&kti()?w$6ZZPTbK0dp|Pgw@*<cxcgJu
z0e*yBNB+_~do-TZH!wu!-YeN7jPH9Wy@OFZV}nzo4sO;#SuI0Ju!$~XP8|Tj&W+!~
zpEEsc0knNIVfZZ9J;!F9@=jJ86Dw~e=YRoDh<)^*m>3kQK{LWxVn$19hOGTKv0}(5
zjbHk`w(Mh=%7SLaW}>LK0+)S3c;JTKEl^dwG#!yAoKQ+&=ZG9p`pXZUK6i-yphht~
zu^~-La6x*c8``k>F+Tf9>$Z4Rz#Q<D6U;-_b%P%`sP`OMb}$)qA|^LCatD^&7|Zzt
zo@z+)k@W_IV+iM<e&NP_dP@kbMOs1eO3lE1z&$E?&Ch=*UOgU7iX6z;=&3P+OPKV?
zatPV=--Pl-J*y{_uJ4q8w=p)3P)t`@i)34#z0IVa@<0yZ&~nXM@IscjYY)l(7B3{v
z;h!O0x1-U1{p*3*d+_TGUI%CU?RBN@yu$36huIIRNaJor^6Rn(4=K;S>Bye@nF6d#
z-8^c*xnU>yswAKnLQMfzYYmY=5gHtkxKOE+|LF%r713Y=kp_sW&H{Y%x<5CL2Ex@%
z)g`AX;DKuD<X4>^ANVdFqYYhch|unh9$^8lwhh|za)|$Tm-Y;8C-qr^t6)6)(w3YJ
z6g&0E_}#gOg_dLD>KR0MBjTjnYf#wrGHdzWZ?XT}H8Fe`{dQz(Hm3@jNSvbJ*SFt4
zoO69#65K@YTiaeaaML7A(bZLie?1m|gpP7t>9O+kEDjC%^X{}|JvUz+)G;X0L~te2
z8J-pQz#}~eeH9dZ1FE9j$DQ&Y5zbQINYDbt4(dO}&}gpMJY0HEA2GqPP0fwu*UBVX
zgr*iQ%>M7Z*a+Y+suEnKv;s&ayqvw<KQpwK4q<t_$Rbx|@YS&eAH??K>hjZCoK9kd
z5Z9k?@CTomW$j4<i#hC3#-dVk5Gn*J|Cj6izH`Zkf;_7V4;YECI=G44ugSaOXYJ8v
z3I2wO>Di5KDRiS|vaTg!D(jS7GB@U0zx}~^|MyQAQsyUE!bkBqeo<si;N-b2t<HD+
zeZUfCf+Ueb>(_e)^IPWn4-6meG~iv-xC;D?4fy3`KQD%uQc-jMl9+D&u(sq(ghy-%
zhHQ89nc-Xks?b5vCp8lrTIxQZ9(J$qEpyUn;oZ$np!FM~PVe?`-Kp4Y3Q=fq|3_xp
zGU440xFlS8GG-C3Ey`xHRX#*zGORn%uQ;ra+Q%k36OAhf7sE)G=e|10C!4H&WTLaH
zbp<{n0ukMm<NTteHRA+FfFcD@=E9+K{aX!v=CODLfOI5gK^K}`^<g7j?bophcbbkj
zO87wvvw?`jNL4L6EPHLk|LDovpoerqw8a91_<YxQa(2Zr_WNP&D^){sy0m!dR{uUC
z`^u@7qNnsj&T$o)NOA<00p960I?(U&IT>)GAo!c3=3LjiMD;~wHmL;Rp}Av*C=Tv2
zX<lc2kbU?rebi_Ac4X|pbiVe}?3r2CPIhra$F#_#!iDepBKz~5tOFX_`VpEOb)@oh
zV@UI-ewO|8?tLC)M>x_K`7JN%D<Te)jSU6kLe!Z*x9sx2PGknyQ%JK%2xL`7n_u}Q
z-gur-ZSEU+iAL;c-(rq0nurq}&m9&~PE4}S73b&3zOt}0{Ip5rcux_|CSOQS316Q#
zBW$;=wNvAdb+E7seDac6-)#w#zc;n1Dp^nDM8u6y8c$f|PuQZ5?mKS0)`(G2swaj~
z8QiTa`}fgd97*JLD&4G9@Vpp``48Xt#%-*J$S_K}W!^@n;3xi^&7uxteuJ7e<bC;q
zjOD>6pv|M27`i}KV~8<3z2_g?8<t4Ggit1!tkg`fyqVR){O}^EOY}_wD>N#}L&;Yv
zPV66USEWM)eL<q96>VcrNwF`=>4qyDikUov&kK+t>$z}9c#L{rJV)9Kx~1u^bYKR&
zqkniI!1(^BK@dn$SlcDpfA5XlZs&#tWA!QjDS}u!wO=VGiXMDz<fft00&k272kQKA
zZNCpUvc5rG4fV;7Xy<}Z2l&8#_bs&cA#erK{^`K5m*-|z^s8ITO+Y-ImTotb0d>Lj
znT4hOK1tdm<68Bi+>#i>I;XJT!t<>4N%Stv!+E(e)W65e`;Fr?^BNA994`7mZjAGA
z;z9k~&^|r5&E<q>pm@8QnSF}~gz8ajO}aCqCRgUUPlkoN+tHH2T{1v+!-&EuU+fNh
z%D?}E>2;uKV6Ij=JaPH%jeGr>tI-L~ABs)I(a3dJ;t#yO_kM_o!xegl@(A$xwSM0(
zvt%PBpb+C;8}?C(4&}RTwhYHk%MzeY4Xqf{i;82=&>uDn1%-CHYJewf={}Gg63$h@
z=2(D$t5Cfh8zl8=S+AD|1oVh^QO!n^YmY3bbjn=!^m+d8dtnnUbz{5Ic)+<^FsTyv
zj{(`A&gl2Y_Pk8H?1<(`W#8MIuqDdqXlxF@1n&k%nzfDX8UOf%p6|k&kP(|3o3KOM
zNj^6#3=gq)(RYxw6&GR=@g>8;>T6;fn5+q6>^50rxs&qQ2DXGT8G?1VE#r62zVqUJ
zmY@aIpl2(L7Bo%8@%+@#Z%BT&))N<v!T`7sEGdq)5_j?zA*Y^QQIJMU3qjlpl}~}`
zL8_!Hzr$0Rbu<fE+n8*gfwijz`8)k~e9PCd1<F8zLjutROG7RU<vd&xb37&5T@8%P
zWZV3r{1|&XdzY~FZN1e~$$`ezB-)@p3_$aHhuoWbYx<*`8#}vj@!&X7PQcebeDxeF
zfGmYFkErR~{73zpYx};-9UX*Cop>Nd3D|6}aA$SjcbNmo9jSWORyJ~_UAve1gzY|z
zRRbz8EHP8TY+!5Qj37KMx2D(EJj;n8!j!Y*KL0Vk%RP`urbXyZQlUE~xj7}pEbNux
z(tCQ#@(9Au;BeKBfA|%m95FgOUL6j+1IkQnA@;;+=&+Dw)_mdBq1UawS97?kpuJp(
zDS`^ZUqFCv*Y0)czN<O%qo{|4_qdRqotWDFfS3B#v1-G}6p)n(n)})^|IUCubx1g4
z2_Q}pgj3gnHy`*YSxW|{=_(U@Z%9%xL8)5joZ-(q75bg)M%QsFjTV;_iF`l(qd(%C
z%wEhOthalkpbUlX%)Vjt9Z@H-K?L@K8ii>Bn`KFib=zfk)!4KhX5E@d?4rbLsnPy)
z&+zdB)-?$|6@Uxe$E9U4PW!+<A^UObsb(DPO|<!W`rgXj!i)D~Q4?Q8sKh%9ql15v
zV*5&Vzcs`bA;~EM8(je?JZc9_3Ez&-dJxj(+`YH>qi^r~Ao~tn*Q5UPGx|Qr%)#?I
z$UoEG_dz5FC*0`x_kA8@7|!kTHy_)H-^hVFL$kvV3}yrHWHbC$Gk5^AVxpxEatmS!
z1)^Qq;l8r4?}I2YwLCzsj9?-8{i=(6^N7B6ytJBVHNv@&Wudlnp7mSbf`nA)hBDyP
z><)UEjv{EN&N%r-Hfh5rxTwE9QBF)_%eTxOdIsY8;9LLjV@TL<KOT*quJ>}jU-YAI
z{=-k1cjl+!6NF?bzR?g{&%DW}4q$*>AN+#T@tojjBNuSU1OAkwX~$NxqCU}q2f2QQ
zqU{uag3UAgkUu_ya|XfnZl2*p+GM8_SjZzJLl(HV@A8EWe|SX20pDNj_n7jBcAy8k
zUxhR@c1`=5W)62-XKPb)%eNhD5X(LBR{!+8KRt&cz1aV#As{;?J5y7MN>OAzj*LPV
z9`mWLK6NYrU0@)RXheQ@k&evQ`~Pvhh@Z;r+=dGSUbXvqvA>Tm@S5=}+NWb8;0*8{
z4%uz~l0U5^$Mdem{vaOU@&XK;o`LL)%f)P+Pz{}o@|KQoXRy2-ikD>Mo4y)tAo(<_
z>fnEhXiXgNTMGX$UsYAeEIH?$P+Q_BU{8i|vEO5U^?gi=^hBi`VY<(A&G-8~mi_S^
zT&C`KY&g?gSnL04SDx4Li~UhY{^31hHr?AVa}c+^u1V`|bSggU4?ou_s(8T9P1tFv
zfroU=V4pj*Is_4cZ@AR|Fp-CTH!s|wnR)&GxFT53U+ix@ir?c|N;a-)=RI{`88v(h
zJHTjk{T=>+L;kSEsPf%g3@@9F&_7#ujg6#^!}nYu-c|iAlDoLxKKJ<CgLnaPkO>7k
z0WVajDhZvZ(Ma}}?l#T|?25qqsf;7_O#Xa6nRI52SVbHFNFNyaA^Kb>#AjU`d8wOM
zaHPPb&vi5J^$*XcJ@Q^RuK;d<AP6qSQBV3ypSSVUVxofHq^AK00(@K^3l0I8aGbqu
z{E9kQA1}j=>Bc_lFGE@5BmbV(F&oq23bH%UMa9xTI??7^i(=mb+aX{qmnY6x><5gZ
z<97!GweNo(3<QVn1Au*ERU4i&^4yBuCU^Ur+yC^Ee0Moo?omd}C&=|1N#p``aplPn
zCms$KIEF|FAgkMmk^vCM9X2Wam<a=u4xc6>LYd!B92Jf&=l85>3V6L1YL4JMQq<L7
zTf-6s5hA36A2dx&19}Y=ziL7#A4vxyj@eKZ`^nN#G47b~g+dh-=0N_21Wn=`3fyx|
zVdE$gH41-7z^-LXnb#Ob^|fykav?`GEQx_Udt})5Fl#0(NYO<oaCyREJt>ML8jn8S
zk%>2fV;8s|n#0jV3-KeIT=f>oM36sm7BcO2$CGf!4m>=(pJn6wEiQ#?v9c+AO1KpB
zVWRjn3D3Yb0JQyaA(vqz^(b};0T8<h?4-c;IVZecPX}8i1dq1Z=;^UZsgx2t5w5bv
zgn@l5=wNJ`T9EnyWC+2cbw(I{0*|pt>th}B-TTR~nkXbh=wSrD@Y^!p;%+-PTztHJ
zVze@>0ca)YtO%F9+kbpmJcu5x{`Bc!M0KVyu_dPx5P_9zqq9PPg<nei?2ZwJ(jCwl
z)+iQ_=zfE8Z%JXqQ3a2})59Ut?f1i52o{Ov&ZWO|R(QCSc3rg@$pnHv5K*dqeo`_V
zLMR|>tq2+mA3_hxm!eqM7<%n%T{r+O4jJx6t=_h9FTqIAY6}6YNm2z1{YWm)1s8^m
z&ZMi@?bVS(QbwneYp19b7L1C^xOj57d5HDn*OT?4*gbVbxJBVe7&oz_+mT_oFDJsD
zV`#-`jsXWtii+KyQ5;I9(1^7h3mXS!I>(WpJUKPo&Kl{s7|O50aTLD);*>BV*w<>6
z!-9(zd@OV*fib)HCxoB0O@c?CW?@+b5f`}^i^H_>G@JJ<vwng~`K~L}>P#t)k}?%2
z?gT!#rh(yIBKi2T9OzALvn*s6(Y3&>ZU{$chc*o5Bl7;0rm*)RJOMi+*F~-_RafQD
zwz&aAzLsvR0sG=>l*(}6_%K5;R=D9UAQNyl(Ij1Il!bUIY&4OmSX9PD4ABe;85N(9
z`LE)gt1ReL-W+Lfxwz(Y-I62YcXbiffh|#HB7`JC&*i%3zlq;<mgUnC?E&%-@;+o8
zkj*l8LutJC2nz%uj~R3lHi9`FwqtzZ0~R1VuH&cnDLC5*UB|?7&Q88)FZ*?^Azewe
z%Z2WpuwVS8bNM~)LL$-II+%sJ_|GlgJ3j9W3rML3YEjMt?h8l!l@sFgn!4wZ0OO;M
zuh50W9y=*M^Juaajkn4%luLF8*vMqygZ0B|Ou`-n$O#GN^id2CK$xfEm;94Hot;Dn
zURwq%(dnWseIK$%8Cdm-7DZ@csbrI{+likuUe2F}+G;ruxx{ayST2r#d=Fh>u4IU^
z<RnWJxu1IY3yW+;hCwH>8055I79w&DyQw2b^{DOb>jd4@D;CEfEYH~1pR)<LU*=hg
zVIHhYnO2O>$nv12AQ^4)a=h|UgWtlt0rkh}kAX)b!?PpeN4;jqU1V8f8dG>V2GldR
z@&}b0FqV9wsn}pxYX_f1-Q#4G&hnH@5SmvF?mBKY>XYm<&sN6!pTNt|Go;>PWg{&#
z*FD+G?{zjW!{(EmZPqs!1``^5h)<5@=gNM=N<{EH3r)T&F>rUq2fu?&kvYMZ@GIfU
z=DS->i%)QU^xeS-uK-?=c!eFG@7+`we{wOOz<!c!Z4zP`Tx{dl;@dUatS!MYLM)Tx
zrWSB7y|v74$FB#)S3k+KX!Oup^81rhF=we#8Y{Qo1M#aLq7(9rPmov0c!)uPz22)c
ze(v`+eD+XEyNw>r;wr#c9yYiz00&?XWEiswM_(HcA6aWHz5$NAb7veM|K%;4Cfk;p
zp1^;JxrX1~IyOG(^XRJ_^m;ZDI|E;Z0l$5Ie6wF|v{eAG*)Wk4=HDBi_zbP=h>SUH
zGS6}dS(&D>zUlj{!?<qMWc^M@rfO|kflqp&^zg%Ybfjc%hzMSZwJT!VE$AzA6XwV^
zqJLXs!;({)U{<Ic9G12h{ZZdybYfc|oY<TohZtenV?-unfFh~^IF6V6UBB|167r8S
z1q5|P-o3}~H`toNa=`M((cq@fzui;yQ9lNF42Gs=reD3tuPTU|6I~eKD4rwYoh!v+
zk4o!^*f^0y$bAS&=hs*(_8L6QFp6U3n4_~lH<WfmVVf<vwZKii!7qEsep@ctqJtP%
zY#1hhRUSe+wiB2=rdF1EhsFN*Z?M|nz)DdQi@^zfqTnun_SdwcWF`Qmu;K$sNpn}f
z>gRpVE6kUGk|E5PvZws(+w{?ovEqtl10ZUa33yJf+wu*6)<-;{iVw|HOTguf9iqS;
ze6hdb2HN4X66B_6Gj#RHseL^%`&ry=M+ei@LsrT3k;gq%u@n$kLm9JZT*R>Ex_`al
zH^0C-RH`d-H5!bSd)K$#W}hG2C<9Gusss~;fXQIiWqzaEdnehMvB_2vqEcXwxgo_9
zT#qZlODFVH2Vr%%bvhNlH-tNU<>jI3q@GFW=@8JAB(|5Mr7pTCj5^bPE_nAgVZpi~
z9LDA=!+HFg(MGSSQ@U=0tKso)65)rvy1zheLe-?>3nlKntHREw^%QrL#7I10BoUC?
zJ1JaTVQg;#j6RZzRPA^8r0|-8ml4UZz``p8nef@TP@ij!W2g=%?u>H>23G7g9~&MZ
zt%XZOHm)LQid04OgW+Kq2^4B&A37x0l6aEu&OR`_akRD9f}m)JCJ&=P{NRvtgf%O>
zNP;R3r~=n-V0iB+n!yy}zLYDzx=bdEf1D9EKHJ(^wW+h4rqPZv>t6j^D32UX5=UC<
zqb!>;qA%UTOGEXE_DC(k>`JjB!q@HnxA2cSQ7c|+G6LBaqTKV`_ZNpc379Mb?rNq=
zl?8XvxbUiy6gCtTkfWX(7cP{5f+&z=hzf-ksvKcn?z6FB2m-8L^GETPD|p|S@Q{S|
z-){}ekvln@rXc&@wt!o4)P&%oEdY=V^@svCQ<9jnDB48~&4lo`ggucF?|A#+;eja3
z9Tg9O6eh(jIq!&Ywvx)^q%r3M3F`%Ji^Iazl2PH`-NEk^UUE+z8j7M2?7<0Pzs4%s
zVk5OitZ0dQq%@o=<$`1i)Ce03Cg~yxix(-y#k?F%Z7d(8LEby6-+U5n{z&9q@eJBI
z?#J#Q4v-Qc_XegmEU-#%$;Y-8D+@m(6S5({PirV}*EfcAlzE5ng`yQ%F7xpzwzr0J
zv+Wu3c?fJ%iV4^k?##w;d5o_puRvBn++i~j>=piu_oVmfVX#8nA?=CIC}15yw#fZ=
zR_LqSKp>Mz^m%+?_U!OC+8C9NA4)1xlY4V&2nu><)|R%-HL=u^Joo9~@URZIz$;tu
zNfZ4on9)*~Qxl#iZ;p3MoR89E2&^FUZ*E9S^&oGSc2q@(*fA5s1Cq;;{qb=VgrSgn
z6<YiFyij$PbxgotoKfb=DE9?AOIR(PKt`x0Qd%h&25iH{VY4W}pXxv}K%XY?juaqQ
zbXaIs{t<MaM#StQSu8fDXi$b2{P6%o|LewtWzq2-mA2?b;2^;^oE)x_Qmc|E2`N;Z
z(K2i)msE$5y3JTs(05F$A#k$HO&S{ZkB$W;zcA2>f)u#pMuhvLLs4PJL4>^j;7}Kl
ziP5aCg;*-vcZacIqO=o5Gp?r|CGPzF!<W35aaM^>qB<g>yY$?!%PgDcpwuim=P{4w
zxiRCz?$M2_B7xDgP(@>c(N*L=n-EUse%p2{<-l}q2<4c@Fk0HFBx?{O<(ShE0dWWG
zX(AlT&H4Q^P^g)W;dQMT90CN*X@u{p?k&~>5Wr3ji*>&_4NR`t08k?>5^c@hJ3FNE
zZP=L$UgV}85%!5L`1qElY4QlkW~|(yho#kSNTnFZ=<(sJh)S&|>t!PArz^Q@!{1`y
zSUoOmtzG|pq6$>>ol8Qwa=tdqX=7{$hR-t>{x_mt;MN`#`W<dR{@t~PC;h7|+)pwo
zqcYX1IfXuH$q>nwu!iyce%a7&=Qf3>dh;q`;+6dADD7PAt~({{b~-<X$3Oz$_r!N2
z?YYh7h7Y8Ole3jV3pT|N$6T?SaZ;GqNryydgimSCI0cWM7bc!#uYqaM9x)9HgF&!P
z36pfNFw7-LWK#kz8l&6dig5M}YaR#SLz=6FsR7Nv9e-8$Tsch}E+?d6(YVljkTw5~
z1#hU7lM)(TAO(kCJt=G&8J@@|Bwn*!PzvNsk$^ZhbVYUny(x1PnZr}l!ZFcNtV}3s
z-w0SvyG%_+{|MZ1CpU+a|MV>E>zT%ouOs<~%_ei^lHhbx@EJf@5W~9JDR%J#F9`!#
zH2RSIn&}iZlF8<cOTy=K==ejv7k0J_!b|EP2!sG(Xc6pj#>HVqtF_76L~L}M#0nIQ
z0=Lh(;gr+tJr%@lU}7Ou$GvbyIQC@wJzv$L6G-Gn%nQ5ErcsI#Ap``rNR7FxB8-S=
z!iK!2&^@((II5f1w3Fv(b`Qed-OSQ(b99KuC)?1%Agu(JREIB>ZNwGlddr~1-rjU>
z_;<AZ)G33zkX#S6%avj3N%qU%9XiSZpA`1)h+aWLr)3sHq?6rqErwX!a6wpc0zV-j
z&rE}bqDUkwzo0uvcsR_8j~j!fwsxLdH9jPjFZD-$S?2y(8uphBg&w3XwhY%@lzIyL
zZ9ga+8r{cn8S0ydm7((Bur%W0wbMb8mqfun7P~zT3=<~vDryErCLFSX(6?mfk-S~(
zl9z{SWrSxgF-ej7peUeW-&Qbh?G>gW8v=-<dG3N!!hbZ=KU~ccH|M0VeRMT3MIc3X
zFOOVZznm3nU}K^d3Lg?j$8$tvoeaBqZrw3q$zIm2T)5121RR;l%}wE5nai-bXl!j6
zi31DAP6vj0M_P{rMOAs~PzE0}$7a5Nc}PvPPCU6ua=3KCaYw?>Rrb`qG$#C`!TKu`
zW>hT(`O{re8Qv0iQ$`2rDP*rw*qNxWiQz&WE22m<Ifw>Vd&A@q7fFy`A%>hX9XlyD
zs{QAL(+jPcupkIRX9pAv_JHwZ#_3`E0cgUwzA144Af)UBO#iH&{<G;Qu_QTS-#`{o
zn8>uF{F+t#SRoLRC4vy*B)14<GuNFmKRzqJj~*F<aH|9*sYz78>F{fSH|Jl}z?LaW
z_-)eXQHPHiW+sX;9D)XAdZ9!rmvZH{{w%B%yi_$iWF%1svTflue%}ijmN3>pw<E68
zECU@U`&nt48JL+3rYB@?K}pAmbm4JvqD%!{J~%Oh=_@lqVB`v#%GWS{9qtp?GpjOp
zD7dpY2yN7dxBFWzqg9V#ZQ#d*9FWpA(cgawW&&X_O>deFq96J=X_({?bog(-php-;
zK=rI2n?J?p&y0pl0o0~cY#eq)R2mJPHQoFi-!z-467G$)08)iHNWldqZm%Q#ZnxSC
zYm~4<qJvGBLA-E+e`c<|(y~qj2WX%OsW#up>S#0ZfXh^&Wg`@E_s#t(8G{tg(-s4%
z5kkb~P@toSUsg#6vRnetYSs+<eu+Eut@x4$`2cbqwl$OjV5Vh_;e90L=DWF{#~T*d
z`>GIiu}3N9kQ{uN{OBG1{1}fKFsL?x#i4fP!ub4GX;su|d!iw-+#m`9B)TY08jE^{
zA$f7tQZe$Ac+Ps4Um3sqL;KKBE(Nc{JqnLr+}AHI;~|4(Wq4CfrNq+2A&Y+)r_!AU
zFqUh?I%6$lO2ZzDe}4zf*i)Kjpre?1hqZibT>RA^X=g)4M%gyvUucib@ds~BJ2VgK
zpzXv;fbOv8LH_u`nc!sY3VViQS{~R7kMeVeGgjs(&Ax$0NSEW!Z7TgPe`g~J+)CA9
zz{G;e&0BPUAD(Rks!Go$%3F~!IOgZX5B)X@ZBEpu^=e@hxTHT@Hw8xr5f9u3_71b@
z!&Cgag?6)Q*8iBW_~^$h#rUR%ge-+%+9Qg$P4Q28dkNvi36%fnpn-Z*@5v0yR2d+e
zS!YDZCs;M@cJ+HTzCt!bE*&v83Z}N~#+ELB{At!)gOsXLRJx2MZuwl_$%*FY8=Owm
z&&=s$ToAyF^^OD=Oi#PE_>uyiATh>1tx7x$PR0A&Bm4WiS8@-LUumY0h!UrufY)5)
z|9Y@JGmK4B<d2-UFCXY{c$KMOCZd&NL^BK`(<~B%CYWrgOV<gh6iarAyDBZqly-+8
zR*ZX)z`_!hIlZsI_a}^;OF(`b=%DZ^ZW=y3l#8Oz<IA~$xYWq2u*fV(4fn34r*E(6
zt&$#;{!tjOFeZT2IoWSbO%K3oh)Bm{okOh{YD=gn3Ql*PJNze~-$=QOOuXH1RptP1
z;`xUb`>T();vH4Q(PM&%Fo2)E%)eM;m0>cVUXUGOV{)x_d&=+p4`TM=la|pmgPH^i
zR*-wO=PCZ3rPeoy%oB_X<oL1+jV=C)=#g?l8CeQy8xXb!4DDFovCMu?@-}77g>GMJ
zrPJQ&^3!gi2eg-{xLIz#vX!^rIb8EA%}lqE;vbX}vFa&r9qXU1V-{HXlY-2~Fe=}T
z{1vAz@)xaR{t%p$bUvzH<tY6MBb6+XMFb@R#(ceh;#>O~S>E89r)SAT$;hu>>o0hX
z4kaiEmr6ZkkkRu}55H~_iCu(FU{dd}q_bT2_CEgF8q9{up26CIoefNZJa@ud{<yo%
zI9CCrfyK_nhPM(BL=mE9nd`8=U@^e~J#K;h4D;#KmYIweLk=Dyl5`8sw2pBK;*;%@
z@W5h4<a~1~?Wi|8eQaNmplR>D$=A-Z=33;_sBo$z&)N6*x9hDPW+tOps(q^R)Q}eM
z@V_=#4|qi_G6~mWGbJA|*PVZ-zhatoRmu+7-atCOQU#F%KfT)zt)olk!<MO7PL(Ei
z-ktuOeXMaL`JPkKsv!XSXr8<KKEKOk>llS((b<F{g82Uur8JUcq_+%5&}`t>GMU|R
zy&t-jwSs`o5+Swnj@;}0Ye!q_7*bOr$@#lQo;tx=^D#ik;_+q>g#BE8n*DAB5}<8_
z%GQxf;>R6s?W3n?!6-jf2=Dsz4o`NHhR{9zNm68FH-Z>qs79JlFN-o2lgI|4ePVS*
zcljRut-riwx~(>b>0<Z9J^qE^);xhoD3bNK;-Ip)FPHkACRlr>t}zxA2+2LZy4qTY
zu?iN0YgLJ|7kaXeWS({kYv}maOw~i68<^}_0YyU|b+3OuYDYRuNji)oMWrm>=}-MH
zk6_5f$5rp#>(~3$+4ep>wVl||OV|RIaI4L%aZrmaJF`WMsKa=R|7MLD!PloA{xRPW
z-JAo>?-hXh`eOg9#sMzERLpW52x0DCd$r$T=je;67S&Kykbl0SYRF8~#Mm}$|Iu|(
ziE)|wFJ5Qgb?%dYD#T7!@(Rktc4+zGqi6@eKIKWkR|k_O6dxv`XFERic~4k#l`cD)
z5x2{*_>X<tAMlp-43GR7<v24GRe13m{(;rjfrAFIn#c+61t|R><t+CPzG_`Vz;=qR
z7@P%7_)UM@Yt}Jw%9M`Zdq}K$+`BLN^B%V!AcEqML7dM#4(x$@<{f|BKdg6xT*R4A
z<_kq@!Ux_`{*_3_6PUo0O_;$|C%#z;plEdk6f|=;yzF;<k5?EdFzE42SCD5EF(ykQ
z&v9;^)AvzdqsraF2SF;l?Nz_S`SzG)%0KZh{;lA?)93l^Zsgw?uTQkjqFvX#>hIYC
z=Z4a;AU)VRNh`vzfEkxGIlup9_5xW787qW?dc_gQB5GH@X#70?*?jwr%ED-TJX-8l
zT<F8a8$9~Q9}i2b*f>1OLJfs=zyQeb740h%uJV4D`mQTzE^uR1=iP#%DN}~;|L^{h
z6?9+((OAtYhCzz0eEb+|u1rnMtYr7TL5Mp$$xMZ;3W5gealh6GilSHl=6}g|cR%ST
zFS4!*GsrR@J1vx3D05%D?(dVUMeYvD{^D-d-Wo-KWsq?GieG!F^^fGl3-qIzT>);#
zO?b;catA%+Mkc0n8H{2fF_U3&pa1lE>j5ySql22ZP<fR^b}KIT=V<qoaN5`w9a@YI
z1&Z;Tb${j&Y{T||aM&QU=f6NZCgTk$Ga+^N`9mYhJT~1j71oLDR3xJCWSRYZR8-7e
z<eHS#MgBAqB%M!+aI}#Y(Akij!m)%yV@!R~ZyQ}Eu{wnT36N#!m)<>X50SPmXBP1S
z`EKFUevc=ubu?GR&W0frZS$nx;-Tmh1UT?p43R{AzWj3Z2CR+pCUkF}E+DrR+xO@v
z{fMRf26h<X!b+vJh{21yteKs+>r@L?gc;y16h7~9pFWm;R17X$dn<|_+0H~&C@8G(
zc~9<;I)S6peZ&vPwm_C1y~UcjUbB;!^4Joz$me~(o2*&8FCeZ+2*8-&c6%@4NqmMz
zT!h`%nUHqMB)sJ>yUw2EFgDnxVO9b6<8@zh5AE3VHBUGQwup!Q_Ty=@@c$_=IO#M*
zZC&S&deMG5l9R$n`Eik({D^-&+T4hUbD+hLp}<og@Q;t?_n9l-JsfJF<hiUj{2`l|
zOS2NvV}4&u6z<<E{AH1+6GJHK8K;q8I3fAez3<DEs(|^$QvGWZq_N`3lD*4MJ>5QI
zubOFW2N^0~RB(6QR1h{21oW6(18)G?WpOv7tLF5|^&w8j5q{?mKkZ9n8raTSEFFTi
zd+#oP@Q>Cy4C2!?J*6264C$)t{j0xNhw-%zR*H!3GKHLG80j!#U0GFykB(dvxqKB^
z&y>Yca0QdNcz3shcnmXRXLz~5{BdjV{U2U#sxROMWAG0(!1nBf;YpA$nxl_5d#8wn
z3`>)B-GbRLL&kCb0KN3Q-{o6d9WkFyWN<=>b^3^_DsWdl;rIK(dhzlA3K`vU3+aFM
zF^@i{-7}+WB+Ri#`Hr5#&*&jgrHLtL<UGQ(@`M$!Ru5sCB7H&TGelHs%RtI+^DpU3
zN`9_?!l%~Rt8s?bHFsaMDoSDzK?B~Goqw`H%ndHGg!kSElZ8yY{<z=tXL}V@mWWwW
zK*OAW_&FQfd8(jx3;TeF3mfY)e~pL*#~kL~*1a%9;IVFR_*c%cKC&vsj&$|p;yLDD
zzH^~<Fo*Sz=yX6gNc6HDfgoj=DmXsO>9z<UK^~X3jNB`f77}dAX4@0gIckKKp>siA
zrCG7PMtDoy7=;^<d86ydi%b^8Jcjs{A-alJgXr2>MmMDzDF{exe;F)t(StrF?gg8s
zG<2F67X-GGZt{P>Ci-j=r#!n|il*-dUh6;k)SAUVI8PErj82sbVtwZ;{39RJoncEd
z9?GemNAljo@A)1PIV!i9!48QFC>5AJ&spxbzQCR`bwg`t@-eAGqAEz&1bIm2#^ZRM
zzhMjeDb&k?J&e|!`<!pM)qY$FtsyB;GP+9BRW9%=_p}bs&9y()+IY3Ej9N*N=}g$A
zlbC$P-Ts1o?bm}ugCaqhundW{RPEDXfM{d=jiDAR`hBPS{1IcL4~Uf`W@=}?yvyIN
zC=LZqq)C#tJtII62<|t#WhbJyiCK%_p$We$a!ev~rYj`KMd2oeXjh75AqYaRi_)*6
zKn#*(sfPH9KjZDF3yrdaGS-HpO5ynB{zOHAkP)wQFAQEb5o>#{`)a<QA?B42R!@Sv
z6RA?jJO%F1i~JSh|8(&>lVpe=al2mbx7D##umv}xThUo@ByIQ}Rr3!;wU|4>^~D0E
zR>TD26i~xZc3!>R-_c~P$oQ(`D)13lCMS5&L~E}xqEG5DKt4A`vJE$(NjR#gR(uoC
z_B?5mP3_U!!8cLFF9y>ym-=(0OIj!}$qdH5DL`1@cD&bbq+w&;5Sd9$&7^x<S_gZ2
zx_BxJl<pQzQ2C2o^E|&!{4AfFD0?Z{n{Wx3^gQ2qBJEr^PL0eVl74nt>`(1!t%$ev
z04giD%;LT`+0~lyH?y7GO~#KNW|2Sy&>)W3<-m(pq!beq%Sbq;Hb*3a$^!nz#lGxX
zdke?C)wC%B^xQEw`dtpN=19QFXms!^wB(E;C=QOAMF<(+298WR;(dSRA<N1FO2bql
z_Ll2!T8=Qv5&+l0_9=N?PY|Re6Qqc^C?y;ifh8ltLV}SpH~kOoctIN)AR1WNsATZC
z9~qHQm{}{WfFk9)pP%xlW%viaOcq18r<-CM)|V(Y-@4*if9y~8Erh%l<TBj~qzhve
zk#^OshG^e0Iaq`jLnHbi!(C**&v`4-mJmbW<aXMypXa*VJN-qU@P3>^l6oOPQS>Qp
zlzjL97Wg;*pM87+*Of3gm2GpEf8?)y*jj6$%DO=X3UfyMHUYi>j5cNjoWg9|gM7+H
zxPnjpA)=8A0!|?0L>HNW`66Y;-msDJ7(OBasGB(y$Pfl?Xnw^W94Y?GiN%fv93yk3
z>!xR|OBRGox+>9Lg>JJ~{VoyztxBetYli<ytwsOLXpLYvCM@2aR)E=Tcx0z&H>C7q
zsR1$ZDZhh+Ak;C=OteR>u?>Gyq+LHa`ppCsWrC{^Dph&xmk<1@(y|Eqn+m`zeqDvi
zkv~P{x%>TYx@I`{Q;m_PVSFAoWx@fumrN9|1l~17AN-7*?zNGu6v=7Bq@zSD70FB(
z2u%4_N;2eCvJRNKcltsloRail8Dvu+5cFVzs<_wRulFH_q=;+jULjfc(5sE)M&?>+
z2vi&aefa^uowTHGxhWa}+!E1c#UuWL$WT^`Yy!i_W9puH%@>?vYbOV?D5~hbBojCs
z_L;in{)}^a|Jl7rj&E7mJPOCDN;Zi>8TLU_OIR2=-~cP-04cr&@Vp}TYJFH(YM!|b
zp^%YN4yy}W^#j@h{5gc31}HBPLRM4f!#-h~RrDYaC`llS>Y;86?uTmvUK_z-ltW>O
zxds<Bh9wBqnVl<hH?Q=6o7-Fcj6y1((SF?N1@5{J{Jkexmv&WYPi!>@|K1VSI6}5N
zGY%p{kt6x|%f8>f*2B#+VFE<`GPm?4zc|;Lt3g0)w)jdeBd;3wu`fEpdImxDBKjs(
zfz_WEwU5CHBwM+7nv}j9KJ*h#wkIlpTtJ4khw#AAH|it5t~UCP>AQBibEZ#COkJ<Y
z^1EV}`>Ef29KTc9ftLDK&5VM~n8Sy=fagmck}o=@C%a^Mv-GV?HV!x5W?kf-Nf;7y
z<0){FTYvJeTy0&W((grcAY7)*ZMSvU@&;>H#`8>>_$aSj;&%PnUv&lT(5-cNnIj2_
z<P2=?B<PR6FH3&Nik4Z#FK`|do>!>+cLW^kfY!Hn%5{!asO;e2_F^X8Czv|{>~l1@
z0>C>8UH{1;?94BOI@>uL+rLauupCN!fD@$v#YlgeDyfr*Vz5RFR9OTgtU3n+hi!Z+
z7h_SeOP7W-+N`5`9aM`d@`g>y@4s#O^Y3B&W#I>YuLXt2g5f5e1yva8ec#sM;nQq&
zMs`sLNa?eH1rh{zdymjG%R1hkWx^x$1%Ul+_Y7amwPq@5HJVk3-=ji(ofW1xSw}59
z$%;{5i?jITZefRLFGn@CcC?cKVFnl;DRh_g4uu`|$PlCs5YXD!afOu!n(v<T;r$b=
zuVx(-Mj>^GJf(1h)jh&p=UNYU7;t7DP-%pcokIK+RuZ_OmNlqG*cp^Df7#s7u^(#!
zo#k$uBuUvgjz#OtXe$8|UuT(U{JhM)abmbLZa>F+IE5TE7PiclB*U~})(Ut#=2Thk
zz!2g^oFj_Q+|0GI4`V4H_mGNZg)Z;JFn^RaR}j;&{?k$oj!%XY4zjKxaF^(Ok&}Um
z_=N_r*R2PySbao2FrpA-|3*vLOvno|C81^ONYcTE)U-vA3<A2^@DZGCO`$OJ2ppRQ
z!Th%2$0w|8G_{1g$a}u62<4-rLCH=LU598?WOTRo;rO6Ga@-&Se7uB!xB_vg!HaFt
zC&+-6>C*yJ*ttEN&81+(f*w*>sjV6FEOl=t10G3*zD-EWJWa(EQCz5C@5(UXY<5>^
z!I{_nzJp}KH9B9mm3TKubb2B$Y;>=k2q5ACvLY9RQ$dzZp)e^9yv4c@0U-E|iN@|O
zu3mT78jM`sgO8p&`LAJR^xQ~_Da)XZ&l%;3;~%@m-nU_U$p-D@!L@KR_?m_Qe?MgJ
z@YD77$Y7`$Xg(Zc>85?cU(RRg@ZqM~4VuPcbLQL>wt}kDJVbI^H6kvbkJt#OE#EzH
zN7%2#en3rimNj~ma#-%nD?@U)^$coX*8!pjXHk`+@aEhc5JvS<3jEB*UYKX!I{%h{
zOWuY+O$zJ@ve+RK{CID`(5Lpn;3g5()Jk**(Z(Pe+!hkC%qL(vAes?<3PKMa@XG>j
z2|ZJ5f)saIVBOJUlo8ssuXT>$z$>tuc0|O1^TVV4jVdbPrdbqK+`L*jHn{jXD3kk!
z>CZ%~ga#bxR%Tc%E7oAN5*(G0?VLUsDc)2Tyn1A)Oh<>(G#Xnx1ZL>yg4zJ+g56c1
z>%}`r&qP|^>c{|&s0jFw1h^)d^(K|5R28HEiW3nYf+a?jf>;VBd~Rj<1r7)a9oD|4
zUTaOV5;orlMu!_tvELK=o(9y>I#`#NMux3m;z*vR)pEz6X;H8+4h&g1!qPB*IRgh*
zfOc$7YR3V+`y*k|+ngYxsi{}5U_G`QYu3Yuhi5<H_jq1e^Clw-xQwAAsmal|1i{O_
zlZdD+8*_zidT99QbQ}1Dgf3D<b?Jj>eK9uFooIb9irLWu@ldh*<*4xfY&r;)PNosD
z$s+>S)*TZ9>X>Af3ScBNW-M4Z3F*&o9^UI=(;e0VS&tGB$k3$g<warlPnb_WS-KL-
z**pBDSXWEkv8(*!IrhTpHKLj=T7{@<ug`pgx-e0!1MH;<X*qJ+j7cLo6c!2ObMm2K
z98BQ1-&lKryT2wZ{$2Z@o-KAi)r27@vzpkk*HEPs1b_S%EE=(OW$yfuVfBs72Im4+
zz34=d7>dp~ESz}04OkI?K%k<W8-e5^k!5#h-{7{5=Ce-GbI~#ogvsQc507tVeG}G+
z0Cgjhy0JaO`@h)wkh<F0{RqAcch-*K#x?YCrA1OD<%o2aut%k?*H8Yt7wj<@qd702
z7hLC`cMjz|#1T|723Lz)j)5=l?y$I=DS-sGZVDJ!y8A|6bVE#j1wYx28ge*H?yc3l
zo8W5BnT$IbGK+YFTtuNN&<54bNd!s=Lx1;d@bt2N@k!l3sA!6GCa}$UkaBKyoAMy0
z4&X8{O=7rL`OH%%hIP-`_Y^OyjR2WGPnmiIAZL9{k7XQ3Hb9}dA3HQ$BRNK87$q1Q
zdnhZ^qJf-*8KacDIl5Ec5A)+<-zs#!xX=?Cj9fI94<Ldt`0jp?klfOrBassL4+8D&
zqA)@XFGS}cZr*i<Jxke9oa)v=ZCiKiPkzz0c8)5cW886ia!GMT&O9i*Gt&+cVGpfn
z=X^}p5(L0f7Y+(p$5`hegs_gzl?WJ!br9X{28KD!j31VOd_lNXTL)2MWV}Ng3f!`P
z_yJql3Sv%XsUk_7S`i44zaAX6UBFO?gIU*YbOH7h$$qE10<fLxp;U^tnP#qe^PK^M
zpXeiH5R7)g%ZY+|uRUxbQ9?>~(lTDDFwGX!mxseI;NyarlpdJEj*C$T1@E!|4w!Wq
z-<5U3KmotL!VVH|s*oUM+XVU!clVl-kTb`=0UjWB;&f!`R3}A*OT)HWI{ExMQKF~7
z4J6Q^$})Hr00r)CN%&!;{ieL$R>?YZAlbxt{Er{9pfcNVztYm5<tn2v_JjV>|Jpf1
zVBn<WfW*S88Yv{Bgd6{#CI0xIqF;!5wHq;@3uPa`rE|ZwGcg1c33C=6Qi+6+8_u%k
za&+=Y$fcv$mFyQvqcarg-q`eU5@9|>MllGIeFg+V1En@pv|#L1+?%^;@37t7)+V(n
zGET}`OJqj>Ahm_#JPe8(ks(BR(oNmoq2Vq&2t$<AZ>#PW-4kxvmGvTqPkf+b${G?)
z$kHxwYwio9>5;(4v6mi-7Zl=<z1rXSAs>)evL#}<Tw}!MyN(PwztSN<P@Hk{-J*v-
z`m6uj!FF&5s|sBiuBrkT|H)sPv_^~_j1h%WJR#>xzx`3xJQC?W>L54*32v=#Y_*O^
zLn3Fr*_2weX2kf%zVL_Wa$pw~Kke4zIQ{5l@$JHCFWXX8q4AoCz*R$T{c5KGfUcez
zjV;M^NNeA8=kR0HZkDoc`by>(KOL|`nD(O4(JIUi$Ts*%%CLHdro-&i4Z_AaQ#6Dg
z`rLpe;brt-&g{rF?ah%mM#yQNtN(lWaguewx+DupdaJx5kmRUe4}s|0`L%7z1J#-$
zlMjXgM@R31PLaf<Amhv{sZQ%&TM~MsOY3Q5{qDmq5URr-4Ykq7M4A(XZ80{E1iMfA
zq_)i3r*x#aP6TC&?qOLpf#3R6Ng7EMxeT;bt_v0{euZo{=6Qe8-raAAewFFL>zNnz
z;EJk8072<i@!m3b+28%~-kvGPt=(cX<ZW;%JTHXYXgua^Ll$Hq)m19@le8kb%>LJk
z5|ZIQ^rJIinv~K;Kbi)J0v%KM1*mHnp55l(`J=YBKBl<_D~W|F$U>VN3!kF!@Ki-Z
z3v!i)iJniLvoiP4w&7O<X8L%F9B$3q#!5HJ>EIm#F*E8myHLhd!;=J+Z4<WBG*l#@
zkswo~eInr`C=K}=2M(|_nb&6L;P_k5rcek_%qp|O3m4i?aI$eV8gi)l%xp|wFlE`g
ziLF{k>Xbr#RIO|GL&Aec7`LgGxi|8nz&But5L8_a?wrURMPVB3z~rKx6}Yd9!%Yp=
zDb{BSJ{??I3Xv8@_f2;u+92S(5&T~D-&ETXv+5cht?8shWyuXloNx|eo{TNyh|O5r
z$)-XxzjB{&OS=tm1LlFOmth{rl#%Gf=b~^PGAoEA{;@cGu`%DnWI}zCZg~S|2rT`!
zL&H)j6iVZv$U?L=#;G<d3OagvD$&7|86cu6guOXG6i5=2Q-xRz6FluXlC`+pW#fZ1
zS-LC8RUmnykd%r;$AlhtTH`Rq4z(!Ltca8U>_Oq01nuOAFj<mzWD>=AJ^3CQfrB<l
z1|Cf~6{V9P5+`mQ3dh=k0iPG4C0bVORz>cwANb>XTbJF#2&x^L$d%aPEB{Hv_;q%%
z(MJ|RW!~NYiQgD`oZ%8pt<xEqXwcX5T<<(3nP?zV*Yzn~-r<DDfsw=31B*n=oa7;7
z`Smt&FgUOg&iJoCSced-17*n~>yQ!YI<|-y7}f?35{=56ePokx>U8@|70!C|)t8nC
z(rxHdel{D&_alleVTD(zv&5b7yx&qnFYa}z3(-O#k(B5b@3x6e>Hm`NNopP)&XgPv
z=T-n+TV#VX36qOA+Sym5z*`6ag`$ewmD`7Nwy_WD7J&FDG+ij_```HYCDDQm$SR@j
z*iO<_?2h@yKP3(iOoLq0#HSe(Mfbl?jF)+>!%8ZyL6rj7evd6py{2P$<Y0s>p|({$
z<JXB4ps<jYH6`5vL6hMV$~iK;dn|9_u(h;KC*+5loG;kN&}g3>ZI)8wyTvS<EB?{H
zqQfa`ds`%-YD)=vHq}WuxJ54Zqwl!Gex!q>C_Fn80K0Kv-u~HN`f$|Qge0LSN?iXR
z6pgLdnw?epi+V5y{rr<(^#DD2=)*)pXU;3RBc*QhWq#-i>#8K|7#XLOu-Y<rz$1PD
zq5;GPK|Z>W#OM=!l~o;d+US6;M~V}*zDuPiXQ&gP7t(|qrS(&q22#i~&rY#t6a#?)
z1l3l$Iu^@fS1=+p!_YW^q`@Kpnzbh%;UeGddt5k(!v%{4crudN@-PEoMmQtvdZl&L
zSkR90kznA~_x)MjeS{Dre5o1R#OSla=kx5`3|j-_4h*G)1BG(<uwSHWF1<g2+?W{v
z_Ar)t#$*14CDy5=dz&qZd!UYP{!jmu>`AC6#57yD5`quq;oWVY`T?@d8VJ8RQ)!2=
z-~XZid!0>l&>G_Ba1fTL4()yy1d4lT_JkjGN^P@ZWT&4O))m{Y1uCdtQ?;qkU2tw7
zl-7QY(To%~{o1Nx%Z$S}xw_oV$XZ@jgxp`TRT%lK&A@mqXEr&NP!0@W=(F(Cn_ZX^
zZU6uIC>AZeLH14v4urnr|M@${+vf;{=nl0LF=97gc-?=EnN)YjJbpUYm4Gt;zMCB#
zgGk%Wg+Z5r3PZ99g6_7!Kw)J2poqn2Yu4q$P1#BIp;?vLyE3=g!Qoo%4~8(gCc1T0
z9C9ecSuZP1LY<K)DenT13Q(>Bj6{OHlMW<;A)aH>LJ0~%iTn3|d>@I$DA?$b>yHG!
z739}9-}Zme<jH%Pifu`@6I5mt*{lBJ=e=)F4O-VJxnIedvROW`Wf<@ySBVpblqYm*
z3$CV0H$jNHIuThVPARj>bVEMom6<&g5s-s9-B7Km^iZZE)THoebVhL#O0fou9m$)(
zbw)q!8Gl)e_2W`8!5eM{rG5nvi-`M7AdN=hby4I3y~td*KkaX8w5KrLMfY8@ZN9to
zA3jX54!Fyj%nNaF6)Je*FhmXpQk%{wRD8&ybTaK0kb;kZpns(-x#ynoL3bch)VKtk
z)o9^4JosthWRh*^uV&~hyn<X{CcKoe)&q`=KBmwWp6b+FB{JdoenNgHy){|}l^v`2
zr+;m-wX%G`9zocMi7RyXJmw!f!rBo-x)%;>Q-MBFk0!&MNiUVLiaa+(ePY%8@^EV(
zu|~{Za7lvX0()F~HxT36TVhLqlV@{F6jZy#rC|uvhITS$TBFTVJ2u@6;W9uDQ71}l
zmAZ{D3gss;Dk<LPXX5LeVFa0{Q{e!yfk-x8&-n{9;<KOi8y#v-Rl!^`WF6AUQsO6(
z<{wd2xld?D6QpE&MvtF>ZkjR3>xnYgb!>QC{8|7~Z6w*4tVI`gm6AE(%Pr|bmPg(;
z-jBD*ZT6tTiNyBCZeZ3fB;CBo?V1X+Zf4jVdJ#yTDaq$$?##FRgO6J~vGmj>inLLn
z6{s%ry6;?OT~dU_s1p!rEGDH2B>eD6>$1Qp14paZo{~Y2u0_Z~UvWe7ZPKlokw*{4
z*FQK3K0CF$4?_#3n11%#eIC6OZY0qc){4B->kDr#UmWBZuthP=_AmDynm;8$jKgv?
zrzllk^?l0R_Jtw;M(dD$3#pwzBK&C3W{iJ#w^&b2`#LoupSss$;ge&mv0T&`gaI7g
zWkL&|(_qcO*@})68i9;zj~o|Y|4936Q+@SJiF?0SD2U!a2u(84Lc#~}d!>%w+jrT{
zbudruKMZ7#)51r)+a^;SMW%xegnsqG>^e>ff7!|URC1Nb47j+u7}$2F8x%MTED<!r
zU|4#r_5$UUkz&2<%p$sHU-w5wOjVH%Ciq|?EmQPF$%FP|j=5wpWyy?eYMb5EV4F=c
zJKoUO{FZtn#z#DDN>Rj40}^0c7!nPAI7>`ME9?&r$~ioz-q6T(a@k`{<LZzgciYVH
z@9ph?4g$wRu9`wwH}2gt?2SW#MH<2aM7xN@nkxt9j$PIPtC1CrrQ~v+vUB&+S7)O6
z<f1Hg7wi~vPO_g5!VAh`5@jBFHH+NGJ;HJGtdBByrZ*xS<h$j&gpVR;r!w5I<D2!8
z*Fh<E-ys}7Ga42`P3G8{^OWNvU#M7xV*L>XbLty$<uE>(1eWd`?)iOprh|b$6Lkzp
zv`z)Oh<4d*CT|nAitJRf{==<os)YnX;9Q?@CSNMy)L2ni6pUi`=J@a<$3CKR6i*b0
zqEHl<&kCn@u)Y@W)`fP443x`teQ%XdpJDC1U+hV8rR+P!?w?=y8&8EWVlOmLMkENz
z`{=TB!}(+AB0HK%f+1Fh6pZ>RCm2&7iJ?A{Y@~vhxWDcdepqOWQVTjS>BQWWV!2no
z+b0~HS>wiaTrC<4<j{NU;%ISM_efC$G^Wfg$q56lvyPEKBmt4fp^x5!VJ@>*TBVi9
zrPAGr)o_RJ6&i1do{>0>4TVYSDGXTLyK~O7zDlFXCNzpjm|rvFp%fKE6h_{)`OEE@
z>z3t(XC%JE{lIFm=df*Y{uaLNFVPxEyc1Q9M6n`?TTnjATB)l7bAfR`&TPIyb7Xx|
zJNe|24Ga+!Iw~hN&4X5gQz^d>UYbJJuvH)=PVM87D<jfhDpl7V`kIe#WIeTJOz&3F
z6!ZmY`$b-YjLAuUAIUt5lRtE~FcM~h0E&i_u({-7+bME8A0Ae9+A}Pw+G827PXs<D
zFBDPeANzx4d_agqbIMqiWS5Z8W&*HeI{9BH`xeE$5CZ}z)F*!No;;^`^Hzwb>3UX0
z_FupHW)UPzscYK06)6S2EZ;cnED5sI4O-LKl4CB|jGhJAb$@kX!BXp<V7r;=LV|P8
zY#bIvN?avQXzL)*fz!Ww=de-cmBKEH0u|B2VE?7xdrC;@YZdKNGnXH$0c5n}2j47y
zsh$jhwK#M9m+&Qf_`UD_*|+i&j3nt<kx7skKNjf_>I<x*17!qtKB=e-B3Xz8Dslh(
z)aRbkz1&i5x&;Vz6S?%ZKjGx=Zp2v$$AzFIy0stsGozTFNsuT-zmcYh5V`g>WlKm#
z!pW2ogowc`bIWcG2j$zFGA1-dp71WNJcbl9-%M{#o4kj2kCRd2{*w$&S5HMhw!J=>
zk4!4G7$OKmuvKREswk|&*(uf>9ZW*tp`>rU@85~SuP}JArIFqUKj0>DXbX3Y2D5>d
z!8oC7k8VoAaqBZK*X`s~;1pJ)H@z&mEU}CWIjw877Z~O^d+vul!z2G>EI5}eo(mCQ
zSqP%slQs`8DPVzUIiNoqx@}vy%4C=rABeZJ>0>vsyIaJLgS$N}Ops5E3W?wdDtu3l
z_nWs3kIF`+DW@~D!e;`T`+I&E8IevYRCLMH#9e#1B<upUWlx46=tiDDnBSgvho6I8
zK?;;6@fgdcg}H)V#Miy8f)a93EmH3Ry$*6kp&(<oSsr?$jY6HP(}-aD0HSnlakmQ`
z-5}aRsrDOwoJq*47oAFc9bAK!ym0)bOvD0#*N2p0aD|~v-8QU@R5Q$71Tb(^uvQg0
zQuw|;#5M<NgZVb1C@>r2S-qk?)rX`jiRfmCA*70JpTA=WFc8xe@wj32BXHF`_zEOr
zwqw>o;SqOmnE~js$P7u$wHAy`;gRKHn<otSkU&7cm>o_ZsI78^WYfp&u>6AX;UHUS
z5idd<#F2E+NrL9d@2(5m9LM+3<rQAXv8*T8I4Za#Rl+5&3!i*t%S)Xq(XaLC4Y{~N
zsdc?q6k|lhH5TK@XUI`O<t`Z#1{U$<qR3<p>44Ij9du@HI2Jn@J-^eaDVYH9P*GT3
zLLXC1bp2^NC9x5!1IMFaq~#rbJ~td1@$DKc1jd?JL3HIS9`&~p4Z>auc_-R0mF+|Y
zH1;FVTO0$8(47)|oJE2PH{%sEfz?%}T8-2bA{k>*W0h-&0>IqOl9t88%}?9r5TU?}
zBh^zMHCM-F{rD;uWC}^*8QPmqpndz6;bGacRAKASfhG$1`=v+N{3(7RJRtkHP-$t;
zy&+tIFJ1&JJq7a&TUUf&if`wHv#fmf_$I={Ky#wH@i*b?Dl61IUdVL#%#cE>ehK-X
zSOxB(Eo(WqRLISB=YAhX)!Hvnc3L~8Op|rXTzF$Y4r@2E9+F(RhQvJzjAXAL!ju<y
z3#LOIqISY1RBCkdU9)%D)+&H2*tDYyc1lETf&0skVaK)h^KmVL3Y3|`J-sfx@ufA6
zRTL8DssfkVJp14;vQz~edll~myxn#Y2NqZ^Yr+Rd+uLiKKW?A$F*QP#Y?}Sub2gg|
z>xoO{%hVHRgq5U&1AGn(DsUgK3oU=QZxXeJm<>zMb&qYH{a0RsosU|c)1t{E3gtU$
z{8qmlb*znQTf^&e-Tq&Nk6*Orp^5f1*waFEpSvoIecl=?lhcIqoC__y>9a77De~sA
z9E}#LkrR}g>;C&jSoFS)V$@oq$78kRXW+yVYTn@+W%vI$OEpX?RmK>$(CR8{u!<0v
za7=Bl>M^Q+vFVFpUaF^sG$)(Z8=+t-`AU&Uf7yFK$)Hnk{$X@BB#C?d<PRyPhTB$d
z1H1Bc<h#r6^Zi$5B@x6bQ{dA`hjBm83SZ^)tgcW1UzbHk4z4b6SrfzBdA+I!160u{
zG`lW0cnrmbs>8SGUVq^<jzok_w&VbYVu&~o?;lqDHES6&A4kF21n?zzvsK@#>x%5t
z_NE*W%28*kj_NH|<eDy=pjPBs&kR~=tdeZ_+p^yt$*;jKrWjbV{UcQkva(4VUy%LA
zFH}b&qNuHT4bVDZl@%7nupB&lLH5L*|Hm^R@n)X+-P;Od(1GqAG_WQxY8uwaWg26v
z2A`Hq?T6pZqcAtdp;<OR`}*ECkMW6F(JV^&e4)GX^z8ma?DLfrhGkGzDld6u_G4R9
z-HNzcLNX!z&0>FKP31X!>X?7-<q~t8K=lQ)IR_cWmGq8pcZh*W3mRlRg;Y>!1!m9M
zeSc~E!Ma}6Bg!0s&>Aq+RNbgy(EN?g3}Z+1s;+^bHIjEk;J=C~*49wl{owF?aj)v3
zGJ>=cL+ENpvszf`mJjY#T_qXj>=VNLNxf8@5n$;wWfO;wFLc`s%zpBjo_Y*Dx1pmB
z;U?+E3}Xpi8W|{#scKQf(zsQp3RG>_xB|D^@UZyEUe!Y&QONXwwhDr9NCjkrI(Hil
zWC#eWi7xwn?J$;vxUs`JdR31k<tNcPQ|Z}VZcrts^{B!S+o#u5$o9lUGjzlKI3-r|
zOl+!@^`>L6t+|!MW6PG(pfaeK8r(t0$ButJCQKU;9~y|fK`;;$(hIGA)3u<ZsOpO#
zcwzuDQPBn{6euN}wXV)z@g-O*#2yIoM_5n_|Jt*Ue+Zx#nyYa~)2Q1ttEXQeSR=jx
z_$yFDypA$?a3Vv{LHgutL^24AMaV`10;iT|d5csgg&+z=d})DCuC@UUA_htzJEZzE
z(B;j3)u*&8ud204I7TX6jInaKPi>T`><P^vFGRzxY4`ss=0hMa394yE0`}AbT6j~M
z;!P1&%_m)ci_;_Qn{+E5G6WrHJ`hx!fbzsX8Z3A{?lpqb^wQfVMBr2?Q<PW|=8kGO
z7r9gBc)ygPSyVY-%c>}m(g#~2z;*@&3U;Zxvc)f*7Y&M(0z=1vnN$CAwm<1q8wm%x
zb1wmZuyVB^Xfq}vQz`5{$lrMbUr-U&4&bk_UGsG$A69+Y()jrKw(9t2cn$z<uv7s3
zR#}lEw@;fd{eTSw-HijpYR{gX#=C}jD;Ig~tzY8x+u6e)%)xPa%F+xAnw2)9rzkJm
znP?)<3>+6%8T_3&{9K?~{21RjAVu(EaEBV>WD%<eH6anh^9-sH4kwoF^Eq)6RJC&m
zrBrN<prOEvhI*Yp${+Hr9k0PnGa$19=;1&BphTPu)N{lx{_1mCn!;!^NHM6R@RQ_M
zz4^--@ofd|V?gI*ZfX2doQmAy!T#vY?YXfWTGkP4BqYYg7sby2xSSgV)E$slF?=%(
zI2b@kw`0@d4X2w|N9U7T5OxHGG{z;|+V6F~O$2p}WC{jJaal|mWmbEZr<fqC1q2vm
znqI_FDi3bspFGP}W;jCuIF0O5;tw8}94CQGGoz?6=S9%!tmB6_#g{$Dl!Rd~!CpIJ
zjN|%~d|E5TKB{Uj5k~CCyuN<wF1$pbSE>ak93;Yd=J|>ezQ~;>#u=0%2qf19>?Ew`
zll*~u+8ii$&F&EzNm^c3ncoqpcg}n@^X0r6j(q>wp1=#c2?&8Htp%LddJ(ujpW$z*
z;@g?Es!M?Jit{=))PS6{G`#NhJw5TdT5#aakuO2QL`1_kI5Pg!|6>?tMo+h4$^hrB
zSP8B-za761P%f?ui<|})4An+YjM>KLPPT!I>Kk4eTa6a_XpMh)8y?_H67tqmM^QDv
z=SVnv=iK-WhX6h&OwBd|30kOL1;kqn0?6-JSfPM%h#rdr%&n7KPB4$^403E?$k(Of
z10s<3THxr}Y_Q)6$9b|k{_wkh8Xr_C8XspCj8Iu~BG5Lpmt&9e?_J5xvG@cFr{ORi
z0+eItV`=};g%Ma6uwjS^qH5samAX4>ecm8j`aw8vIZnFPwJA)yhAf8Gbhtkj_%HUD
zymKyY6W2`?yTmO{`kTJ8mrg<{2V!=^Qphau`6<84QTA#ri>xyn{KDYUKJD<!r!qxU
zb`d!pszP_x8UE@4_CZxp2HRfs{aSQ^&_BRO;~apGM+CNxs1;d`jTIQ4NDW5;ia)>;
z3ZfCqA3L>)SMzeA2oh^{gug(<ol{SWmT@QcrqKDczwO_4!H3zc;`es(H>&l!Qq+_s
z9j`P)TTiSC?J2+ZI-0RyapyVo9jpozl!JIix$l29Z_;6aQ)~CJbmhCSDBgPsqml^@
z{Aefv&QrWew?7o$<bB!=qy-rQHy2w;Wrh0^%n(e86jzhtgQ7%;zSGZ)Pg~BHIp@4y
zuzbQ6Epp!ujK9B>2Plb<5H=uaND!htcjtlecNg*c-wlV~|8!k^pMPfB8NV1KHvn^s
zl+-KZ1DDYU%5Z{!enX$*k(tGw#2G7|ikTX!6srN9R2zrtO#ks8#*e?$9s{$Cx6wiP
zJyV>RBb$iEP}PJo0bzog*?q`cXy;>e3;0bjfP%UK?MmD}N&m%2z|3UI>;gj>hKoy+
zQ<eR*KNcV_I;e-(4!%e`ky`XAv3l~Se(>4WH)s{=UJf{OgrP|D!h8yACtC57Io4ke
zHEyfxQadC0b*-P<WbNaTmr}?d%H+a{O7zpY-}puC);DUEIR|-!4Z7${Uv#216J9q(
z!ZN>S$=$r~{p8cEL&>kRXGADbm@{~&W2OHo8sAW)J1SSgoAn(<S>5=J|65n|9J($8
zXvo1pqh8sgve)>x0byg-V<^6cRU;ZYVY_Sm*)7%qcv-705{Gb?AN`t{);gT49xZ^<
zX$St-FKM*)s=a`LGIfIwaIW6|!C!t{)RR>4mz?@!PD6SXAkfj%kU)3&YQM|r_8X)`
z&{#A$fwz6~nJ=GZ?W4`5fDt>_-Sed%+i8t8O4jav4_DNE|E-@Gy@%U#Od7sH;S+Y3
z9s1}~KkE3b3eNqA6htMB&sA~7uIFa`25b~ldrcbCKIDrMK<xOA|IS|hMBfT-_Ly{v
z+JK2hYG(irM%TjS*$=%#7wKPVrmDKs9B;Q~yMAZf9X-+1)Y#OzvbhN&sRwRdnmzX*
zdth|BGljG}T^?U0lMmdgU&Ts#xDZW%!V!rq1W%m#^gZ)K_N=t^jY>6hg)rIC`rRAZ
zS8ivmBf4g+>}c+4S!vJ|Ag_I&-FK?>j7fuiAhHKKf37?D-`U%FYiISFlN9(PeL`s+
z%)V-Q_6M=Pkz*C>8H$S{-%C`Uno=Sv5Lun7=b%$&y{Ih4=kMPm^t{!IK#qt1;JPcK
zMlvppK4JM?);t=3PF_UHX+%_GY-3kE4B#OQZ<N$*gAqU=r$zN6RdE>q3I$%t_}2FT
zb7}?+5W(!X`jTaC%5I_ZUixw8BHSk_^MF8F8iTgoyH$ua(1T{#o}4XkM8xM9TzUIg
z*r=_ybp4w4glbD*N74*_?it=#$OEAJ!LZ;u$o?f|u@Vv|w+R1SOAjI{{1sQeMi3j7
zh!JoOM=mRk!55C-EKmnnKY~}Qo;x|uF-Q@CS)=!(9p=e4MuP{lP$Su{M>uyi?*+8N
zP*^DSTu^4!e*0}6+_Uts%#?i7+o%K@!$-2u9${xy;gl*35zw@X3JPLKYQOXfE$`B!
zl0ThPXGIHTW57AyAuP}9qnf$`Tceh<71f2QZxVdIjjMJBRi5h;OsGCKZhDG{@xuHV
zGT{Tcq1Or<1kgR)r(~V|q$)85(@lN}1w#RtkB7n0{*FxBlG!*5+y}db$@lTBBq(Ag
zU?x~sVmQo+_W~hJ8#X4@+*KFV*elUM58OT!pT%JijN%N6W;Ln&UMb~eOLYpsA(B-|
zvS4IxL%oP$j~_5F07aw)A#zF;6EkZ|>gbMITeRgw2djZ6Kp*)gH~i&Hnz^Fga~h{u
z9}3j4l=v)SSXs&aJwC8B9J-EVCpFTe*@7n&Liyc1&3Q$n*K0|RiXp-6x??!%VLD0#
ztJ+-wwYVgPvj%_WJr~;<ACqXdqpPEhNcPa@e)}!$D<h%3D7GrJ$^%F55zc({cSDSN
z3S7fx;gX&DR1cS!0gz>EqRN`3ao>&_gM@G{VG{TDQtzPjEVB)a;gUapa@g`#Yu(`2
zT<`;r4_7YjRXqVcL_l5qKIv)z<ec|Q==F5Z>PiA)6%M56kRcVgF77)$oH7WT0hV<|
zV^L_l-qjYm)2<A^9Ed%j$PJ%mTD%*sLMr54zHnKu>Pkcp%#iI(^)SSmF$J#o9bv-G
zy{Zqx*#&v7uO}0?!&OxwtXz9}s9n{wda&?>84ePT;6lfa!Ms6MZ|m*WRh^iry64tP
zsPdL~^{i&dgOcP&cex?uMefF$@bMhX5QH$0Y1uIosmIlhMB4lLvT$I&jWb%h!PqL9
zo*O)xH6r7+;1Zs~@kb40#L8h*evxHk?4c!YkL+;rik{Uqh9xkA?^IRrNTMseQ;unj
zuczy=X+>kA5^mzoo-#Qrpcz|(nVm_O#xVT&cmA>*Ge_5S5!{0lQ?5L&0|{l*c%yU0
zSH!MA$5)pV9oz)qR~uQRt!@w`WZbb~c&-^&FhpZtVnYgD>*?V&HlzZ>J=GKI1X9!P
zhE*XquBi(L#Q1p;qfq|88#0RQi-qC1L$MKI^%Fc=7gig*yF_lw`h)2a%bbx{(o|e+
z6_^pVff{Aig9$cN&`668R80l4E?YaSv6sxiB*#XEQ&<)lDw}2>jMbR6u3R$>O~i_j
zq^C<e&2>L~7Z#7F6QQ>KBiya<-TIR3pMS<6%3<at$fim_N50#>fA*S9&EWe6&fc}t
zR1c}ZoxFAS3r}YKg<Dgz3Wg7$bWTfhb`H`J?i5VRe4=`vaQ`0m6ICWrrBw*W{{6$X
zo6yL;L_kb+@l;M-;|FL$P&sKr1jnrGpY<2ke|Sa)qgtMM@O$Lj%f@my+b|MfanE%W
z6>s{vmkk41B<KB{It~~MMpZW|l<XJ!$GgW!p#uwX<)Q8|U|~z78`?<V)YuA@cK^jj
zHa75Gqjp2~#OptNU)re{kZ6LXLAqE}LdSm|V!xh<IFQpok?q;55Wa+d3lUE2X<tVD
zU@bv}C3su~sL3zbq^I>z77YOqSBEkI80uEr*vmjeBF>7UHia(PFI+OrmSQ}0x6o%>
zaypcCAk1DM|MEgjujoyk?W?AD<={%HL!Qh`Nb&?R42`?nPs*W5(0)Xp-0<qw)?_0i
zLJNzNVpuhV_!fK(%OqaAOiV$6gmhx=ZT?o}im$-2Br&sGhyH47Ur~qOl$)hfP`?)u
z`=IILZ^p*vNSVGRny>PAK>^l`(Mpt_o!Zg{Qkj_1zKUNn;Q9N87j~tQz>#EZOezh)
zuH=0@T9@rdv(hK9(c?wSRc73qJJY75N5kmN7ZelG(oY8_AsHh*D>@5Sa2bq-3;WnB
ztSF5t<nSWFmtuQ;Uni22+>%Pl<A<|N(fj#s>*DbKXUq_PKf5R^K506@=riu<3$nJO
z4+3TG+RH*EhmGZ<<W{Hf+O^!T4Gg>XvtL&wC~JwMND3T-(ZS>?GOwW$Iya2og7mEe
z#Rjz{XFACO+#K#mGEGdNppMv!tFr#^d8xy5%EHPRvyfR(k2VUlP5u^yIs(GZ9BxA!
z23M0SM*}HE-eP!N-sWCq78BhBrBh<^{bkz?zrwhgapog@?of%K9UwPLC*UR=-oxH9
zST`9(NVgfA8nyWL4tMTlT|-+|wGnA2cxDL0H``m|pi~;p1>&+cnxC`LTSh-0hR)Qr
z{vCFi*i$M@ikqjgG5<O^EI-gD#f=d*3rIXz2F>H4%|w}1Q3uXsP9jZW4Vnt;2gcjp
z(UfsErpYIqNuHxZ*BDmQsIXes91j#_OR!CHp1?o2V1L?#2nRYZyP+>p7g6Wn!%F*g
zCBmAvHec#x<^b{%h4)A090Y<!@cQ$)_VY2s+Ttk(NM3;n>-M(BYRWWpfXEF@BFeu!
zI+Kg6gTz|=Jd}h$QhRH7xUbM!t*$+1SRQviiYNZ&VmgE)qBI+%G+x5N{(7jjcGqYy
zfLl0BWz<{)>@$-=h+{Ha47Q(ECE66whiK0D{y$yk9bZ+Iwc(><9d&G|NXtF@oQTLo
zlaT6+B?+AbkRS-wn*sz<Fv$%B8}^313yPws*hjHM{SapqJLp)kqaZ{DL=Y(|-}A0>
z0|6cX@JIH(XZOAKs_$BIbg-_JV)Xj><{G7t)~s7vuzp{Palcm53gwV6dpPHUX*Oh7
zLj|C1DuXNCjXJ?f@Pp(Dwe{mHar8voXrzDuxhR#FDNou~Q2Z!w3C}(<rljx}y9Id+
za=V+ST<UFC8#nbxXqJ=(6#G$uH;fL@dQ3zMA>?65+=Npo;)UkX0>YccqHWzPe3#A{
zWK~jQ+NC4mW*x$aK_4SCoLORx;U75`J{Y^T9sKN(_7O^r`nXB*Udlms+fXm{<^+(!
zXaZUujuP9^WfR0i7QO14)(YB?wU!&QvMkv##Dpqzlbpu$f}s91>#=AYIycCKl&YDs
z#;-V$a-u$<K4!DTxNm3Rg*_=J4|?5%hN|(hWonEk6$LMULATg4fmu=5JWIYZFSzPw
z8%rq~1C)MhoFju9z-Q5fu!oRqmvRGGg9E;1gbfCV&nlazBwsD)^x>4VSFqnJq@dB=
z;K8)x3jhStwLuNytiz-r`pFI8HPDLzfr1Q8?hw3k9L*3&%;OG`VB8;e58jI&Ds()M
zz&P()qFG&->KgCMK@klBSiK?INqh7QdIm9G0NPTZH9+=84xyy7*F<u84|_N{t?1o>
zR1jLbiSe8mdm~UJKn>$nlleV*L3SwlgpG`&b*V3Jtt5PywS=O`7yQVc!H>Gd(mz->
zT~Sf=dRom>e`A#qg~x5r=m>zA;6FW8`V2J`3oRWF{Ob2zIpf$o$vwv!iNa=U-NY2}
zTg)z)S$Sybn>zuEkfg7WQt}b9b{ysrJ%Y*NCKRxZG?HMQNl~At7h5!wW(JEH6kuGY
z3ST<7%Pe#x1l%>5GMNj6Aa_ku_(W-!Sqy(D3QnA5(6_*<9QJT{Q2#EoAP=QToha|g
zDSctM?5|x_gvWv0Kv7MQcjdD1>%F_qf}iYLT{&Sw<(To};GwGN-jq|qy0hpLXZr@U
zplEEt<e47s+PUj24l1hR3eC{itO2W1L4Q-*!#5<+zj2nrR(L`9);{)gOmzA+JXyBa
zsWo-zZ}#g~8pbZGC(2a(m+JDp>n;w1{i2rYs+$^c{iPgoHv58b8s&_0kTPGQv~18f
zI6!83zYGt*e1w6v%>j;8S3lp|SQ^fF%qn*LD97tIB3!GF+Ga-}M%(PzghJ>JP7{ah
zbl9}LyUjvR0b+ZY+Wl`y#Vxu=(mlmvec<M*u@B%I0mXYY%^!0?@)tEVYzH<LY7o<g
zX8YG(X+ruS(o;bBv2+8CyGl6%9z~BclG_uX#1f~;kNoADpyVNXC9qVovflbZ&xJGh
zV)}S0)lE<~d$A06z8KE;SY4>IjF>`m@kZSh?%K;%d~m#8a{z%O*Sl*)su!b09NP5Q
zl9B{>2VA$j$JV7TJkl!U<$>p}oG$*lG4;nH3X@Bdk%55Tw(+noXjZh9mKx^!2g1jX
zqdUUNkyyFnyd7w<1QtI2p0MLkhHODCwT#c({jTu44*VENEn;s>mKgnLcyvEbFb`E+
zY>6Hp*bEdYGs67tHobm$*&yp6>uWI!W`!RgzQYs=nT@8%$t+a*@z{XakTG>S=D3@I
zKKeuI9{bunOUG|$0{w>AQo*#|wJ~*UdN-Zt;tg^R(C?M`V9xT?&MRzQ{WsL|yfv_C
z!UMQ)c6jTaR$f{+K`KE34-9`G+<!AOKuFy7W5l6rXNSvn=f_x0sw(h-$Nfi|Sfs%x
zpAWwpWw&-jd;(t9rd0(;;a}l-BdvJr0%2cjTcCE!#!=r^IzW(Ru>x89$flU?-SSxY
z_YzKa1_^ze#3%@{j14*MfpCkiI^|egS!De5y^)WG?;OY&GuYS43XH@P#3;bBq|?Wd
zGsC>Y_yS@TujMeYYWO*3dkcG{Ub-9QLIWgv!MwGA2IgrBQ%OFc<s{ImA)+O`9hqL{
zx2d-t#yX4hg?lGw4bB<qUfQGKkNLKoAP2&?B}fPW;GH+~zHneaD=%#V;j+G&-wT`K
z<j2C-PL6&Ln}Qz!#dt9N@M!o`i5<0wQf1?1+jd~J3V<3byvRT&H{Bmj?rEz~x}iP|
z&^Gae*iw3Z7WQEiS)IN{U@2v5Klvz}!h|RtA|yM?h+TXq4FAR;K=u*>1!61@#j17T
zgJak_lwUYNnjJXPd;h0!Y=spLU|Ew70;`exYnVF8=u&Yrf!b_8!3uDiBf{z{t(fID
z9|Lytso~*$XVV6U3v;;qzN6E~OXRg)5uW(F)%8V0)Ecn|>z)p4ifxSu8iPyx))omn
z^5fya!B$=XOO54|iR<Nj`;l;+t}ywgs~Vd4HAWu{6Hlcc{*skq0ReSRrqOgS>$y~r
z+iidADmExVbGo<h3#l(Zy~8i_ylKy+o~vIfSv!nB>%`W|<>B@j;SZ^QI6LSDKl4++
z6p53nh4FFPaA0DRrAMSTeZi`5bPy11wK!{8UI&*N-^I43Sj-?=AA+gbA-3R}H^M{o
zSl~>iuo|8993JQq{|#qydC|WXpt2{jf$R$2!mGpXN7+F8j)yN#zD1;8&BJvlyy>85
z4(frb4SYnPwzu~kA))H(V28ee8%p-Q{oUY~JEf)$;Vony#jJ-&GY-Y*?G8^ZS#Q%T
z9FIPO3&y4&n3-BnVS7r+vDtRzw~>dfgn&z0$~&s;SnL(b)xC030k_j$ZQVhxblbj2
zb=CgYyUt5}_hWvIW)4D&GrLZuyl1_tm%<wyHE6Evo#t%oC>*&l{O2WhwzuAb%yze+
zL_kBZOFT)d_e@=WH8aG&P!YTw1U%9)c&<;af(zKbIQvhFnZveU_t9~hz>7dLxG(fx
zm3r&%J2V4Nwe9zqz(l(gl#=eP`8jpBgS&}Q8C=;UT!nG*CODx?2*!g=;gcJTWg=af
zJ^(!@&)aoMc>I>=`o($DSrQg;&w1gkdYSM+;664OiG}NekDnLb9GwfyIh+@+q?9m&
zKM#AXV+A0xlEH+>^6j_b58ql*Z>)&Rcupml9{6Lp=u<1*Mudow*h+-9KW!Z3w$n!F
zK3<@50@eBwu9)SmIV=1jg@r*O21z$&Ni129#_-uny2$cg!A>vCaRO`_&JD?eJc~E0
zKbL^0w&>?b2|v6UB2($kY~KM)MPh20se{3b%yVLG<*^~l%fgj!vtoMp!Hv{-fYZwM
z(oPFkEwD4)7x9&+3KxQbbHW2*Q`IjJmfSFY46*`=gx(5ceeK76kXhthtwg?feV+JA
zc<wQL0SG}8dR~?n4bWHNBWtXzbi(*JNH`MBZdnl)Jx5_1e@A3l+nc}+mTri|DK_Wg
z;bEWq`5~AJ#F<4iN8s^Z7!iUasPYlwnRvgkl5_CaoE(BIp#|&%uLDp8^HV;e^UK0J
z;(sWI!!8R!oX{LgmQ`;+U7|*A`!4j3vqJ7fMOhrqTOPJq-Y&0)Cudm&M`b*P2r1s%
zYr>_h22E(vy5V5G^zt@;6n;D~YD5|Ztx*oim%YdS8?NdT{TvsUWuT@KZs7g?P54+g
zrQ#NC=Lu3p7x15O*X34PT3rPnftH0;p89%t@Q0M{xa&L@J<bc4!4p6ZU``2gXoe#5
z1af#UT^DwYUb|P=O2gF^6LG_q@R6}>CH~>d8k0OhzEn9`#~zloC1pDzheA9_<o?)o
zzLz&O{2NaPU1M+%laC*Cx;OXW)IKw4A4i;R-R87)%bNAU@i$^cz;;OY_V_%!v)EP#
z16B=L<_YZ(y8mC^58o}I9p0JhWp)xlrb_pAdNAC($nLt5SLt5Bpb)`!SNPdbZWsRc
z6D75l)$yKU)Wvdjc^K=uBSFg9jv%#BLDr;=PHlUWI9M%Lhb7`sdck3E2H?Lj(_axj
zcdV7cbHPICnkya4PuGT(8H`VSuRY03;F{-Cht1))AiwZ<H`)|sl*V+8hQQ8Ib3G)q
zYy(p#7Nh>HaK))s-Wv<z1`I8_Z0TO&KjEi3rQ09%tae8oUr&TZe)>#Vc%)bw1XLJf
zBL;GoSaxc7Qq3P)0FpeqEQ}iHZ$d)ExE#AU^_1^zCRkPKO%A0TAHg}PJ;X|IYbPYc
z81QqBPp6MlyDwytk{c4n6A><e%hB`U2YR&gQCY$LAgI8ArhBh0PaV(=22>XK=w;#;
z$(M;|7N;fs6#hBOJMHms3kRhA;|uG#?ePT%M(m`Wa8pa2^GG;!tR?P?)Vct=1B+3a
zR*^`nXeDM46@;mU5B}O6O8!2~M#bHQNe4}_ThA$LO}OCiWW9rEqFkx2B4sEy5lx7<
z`3*PyoleT0hw=c+0XAMGO=3y~Ke?Shv`lv>;Uo7IInzs_ziH<n^>Z@inZGfJ)hP8%
zjfRr~3*B-^&^()3z=`YR)&cD>kr^0AQd+*{GQW-nDIF3tnKL5G(}IM%F9SajiT+8w
zH|O5mPg-kRNfZsv1OY!dJCAkepJYEQu56IM5(+|;EgXk*@7i&0PMo?Nh;7`MDn=~z
zbobv~=G!(IcpIW+sxYG@>eEoJNWF#E67*%K;H@8``BriN3EjZsB*(k0L$Kjpn@zEt
zYk7+J0{B4IuDI2WT}%~GB~#E6*2|7nUpbNBSg-TfZo>+yFty^gW*?Qa;*zz4FWr@I
zb<$TTX6h&6!-6e^9C^5medC_~&e|&^6<GtiR%?+v01_$v&HuvP{VDY@t+qs44?=fL
z1iUPmWTZIW@|R%fwYJ1cmDzxwryi`d(;S-Z9o_x2VlaMf?*5P_qNnlpP>@oL0qt{b
zcw<j<t;dJ0v0?oBGWlb|qY@>MFO5&f!l<@g06|Xs00PNlJA8;G|Ia_f$iLlCwzZkX
zU^2avF9>m&unFLn!WeV%V-R%jlCUbLeQ|C^jNNQkyse=O8p>)v-F8)(F>YboN?<NU
z4-4}}NH>u=*;#7xhFwB@S6;+GE9LEa#G7on%bdJ6IHbXfOPfUQVal{Vnck(VgX7NL
z?)SMdB!afzBgzp;Q6I-id_Alp&m4zJ<2$e@Jaz!zDZ&(Y5{-b6!WeJe#6IENfmTx>
zMTk-uW@ahWp{jp~<E%azh6z$k2Cd;Q0(QyFlJNdwtNPRK^8UO#Cj39UBd5vM?%Ito
zLuX>!2us#iC+Rf)6JUuHg;zwwX!l883}f1#e*)Lo_6bf8T2*d;jF<7t>ETaXm=C$k
zjNQlbX1hA~{P6DlKb%GmRqobZZQl^cl~F^;NKoARWaJ7S!7(1$gU5wstGm9)ohx06
z-T;FbeP?+$KOCO_1$~olqNWmyd3sKaC7+g+I{Rwtx&KnJY!V1bKOVy)_?rvEud=(n
zD4p%nCMn+2Gh^@qqgukn9lE{9Yi5z7N-wYLHtmAcrUg4rAu~NjP;A@5{Id&{+3rGt
zT2aQ;$l{~{P;y@Q*-<;TmyxTPv}>>39mtEp$hE6lj|v3O2FPFxe*4h#!hinLnk(dh
zC6NR<f9Q`dyD+>h_fM+W-v3pFQe#^cFLGN1QdV}1N0QxaP1|najIJaXj`hSjt_;`N
z42}?XxM#yV_T$&+A7P=8c5tQCSs6Yo95LU{O36~wrDWt28I<Gger<SB`kxFJHoI+1
z8STQQGIg@s!lkyafSM&MBzS`{7zIEPE*c{ss(U=_x7hk0fliQZvC{eHStJwe(}ys2
zxYYvrtBZgRy6|=Tb?Jnqm<{0`b&%LEG<xW#Gi}5#qqZJTR8*$LI4!;)T$H4KJA9Mb
z?wcLXWk%b%<Pz=B6}M$uR|JfSlr*H_xu|21pCw<h-qXT2qoM5ZEqc(lZw0)aRHKWN
zL==c&2Hg0Uu)|%^1h?(CX!3T4Zo4W**zP=TKScl<+WPy$JXp?lb=#WcbaC*Kr;El7
zoK`PdPK*$VbIuL-h)($SE5?OM-ei5!?visTGuu_QKgQ7IULIThbMgV*e(Z48e>y&H
zCt87aQ`Qx1Tq;qGD0>m*8_o+~=nn1J@whRNZO5(MKzc!1^1b~p3SZI8wtG{uVzAKL
z$ZtEsj4K=wj9Xuub~W5Lk_m6EY5xwfAAkBV@JVj_Po#uz;F1C$B3j#haQNXFoC-nM
zZF|&s2e&mg7zMfA6!K5R2p-KpDcqo!c)Qu~LiTFcO}jDo5|guS%<XD&Vo0NZTElDh
zKi0<hlx^SO<8HclJ>L+W9ItcVaMz+g8C+Jfqn=VpNl3u9SBu&~X<T-l>n1$ir6>F`
zZn0Po;LnkIg;`d4w)^Y*U3#ME>`kN(D+f);?uFXnoEEpZ#VYW9i1KGrp5uMr;!2+-
z!c@vhTp#p%Li>qqc*OnlNq$e@u~3bx!P-|HNOLGnpK#qCq^=D>4CgAU^5k0F<pH<)
zV+&X{yd>fP#E0`RR^Q_qzT+DND5OO$c`x~uUVpV)c7v7n7p#$@m+>M1P;j~%bQcrE
zx{J_6h9PF1?TxzDozM{dx=Q-_<d}dE%Jf=qbr;Oy3jrKQm|GMseA@kOkrfU@Mly^+
zVU(<R-VJ!wiUqbXRxnXK4ZMI0o^rdrY#qS76KUUs76Wl4^1S%ZY<KoFrY4~X*D7gu
z72-5vraNRR#c<gIJV9rJwO>(ZEaJ`&x;x*rX^e^{!P7kETDS2`Tkw8~+9`_k#Uf17
z;)mQzY$+Q@zl0BikOIa|ruW5MH{}HzYauxRCLo9*6y$k#KH{EaW;_aDs%i0axK6zv
zc9s9-x6<i0#3U4mx8#UD=r&zsZ4>}yVQpj}f8RUTZFtGrVB~14qZ$Dr{r-@9OQ#5l
zJ%WN@w-7*Yzu7(Z03RrZLNb@K5+E3A74l}f)#q7NAu=ImaI=j~yvsG5Zyn>X2|$v8
zB{KdT@3Mcnli#358EFWo!QG~!dtD_)b?F`FT<zY!%04UQIY37V3{#f(#WU_xhRX^K
zX&i_0Q~WkF2b(v``|=4lfKyD}AmwM3Hwy6ynO^nd?zP9GiCF$E;&<g=fe{yH>nHDY
z2i$6v67m%OOib_H?ugs1>(P>$g|o>y@><+MGnt*RCggn8pl!o2m*-_Z?e@OIYWkC=
zPS|jCjXpWcTlAFsXod|*8Xv|ZE5TmRx}lF*q2lbZzDE^6kUi~EpP*l~msP}@OPPXy
z#$|5srTkj&j<T2{XR@vk{D<ywFR23SP*nrAmI&Je4&ECv*NuAKYKjvRiD8mr6ARB=
z_ti7D+Wl}wtmZahHQ4=HH>-x9qO-4>!kn;gu;Gv1<(B+lKNZyWMDz225y|rIp5exv
zMTM+y#L{7cxBOlEHo2}`c#2EVy7G!EP)_)cf1BhwerOE=1O!`P7l0fH-bL5Ce>JgW
zLR*s395}bR?zYudV$wE_xFA=O=i*8C^(qD^7g#b9BFy*lCg0{ZLKwJhg>iO=*v=fU
z`$KN@TUJIwxw429ahWq7bi2N1OHo*7kXlN+^2t-~NL@2jyqsV>s7RrWQ@nPc%hr0g
zYq*6l5<HJdImY!NsRvWp_2KZg(}=Oa-LI~`sSf7@vpFn!D6CXS25uv?H4fh@Vgb!3
z@vcY1y+&{Ufz<s^JrYhlJ^FxH4Mh%`zhmK(;gO|Q+^1opTDK6DPiBV+g_YpDi$2BT
ziL>Q;@Q?Z7=T}fp#3_)bDAbTPwBGACgu6XszaLtKO&$q|Ffj!AYi5OerES-`^f;^T
z4_`jUN+ZdYm=Qwjpvd3c7arJq#|k_|yz)8Wo&9&LkcZUx`@<fCqKame;}e!H^@u~H
zj}xB>XBDONVTXp{mygeE4bf%5x)3XUN9r+Uf2fi3T;Ca~i^f`G7#(>hJc4ZL<L5cy
zQ^ocH38ovXh>8I;hVob5NFBv!cj!W+I&Nla$8mqCQClnMqWljvQiJ!Mp1P5J-k~-1
zlX_>W&o|l(9IFU2NY5fh!egILkA~HLhH|GVo{>85k292tJL}HW6lO>#h^g!n8OQkj
z$~mcfePpFCPgsh7i(;D;qo?SrEw842b6E5R5gtT;*!1OrcJhBxhg|xH0n5qxv^!GA
z#CO~jX-3yR9bQw&Cwbn$rGPaclu8SoHzxIbhRgi6F1wuhR?i6!<;Psr;m`t0{RF-+
zy04GI)XqDU3+ndj#o@UJN4=Up#7>o5m|NzA&-L4}LR$AN_l4h->@YX)nfa+hFWK?e
z@`HHxfv`}6$G?NaG=3?DF~#dL-?#2foqxA|lDtE@L|*Fb@TNZ;X4$sSzb~BIxBbr<
zeY)3scDU0&cI;P5eRp5Dq|YDLSzbw9XQW<O5q(0`KU^4Kxpe&I-0-{Gtr!H@Ms6c3
z4Ll_^uRk5$dz;maz?HJ9h9eFD5`Db>RQS<TRxywYN`WLKu>Os3zo|R4PjT^6;fvF)
zxE*m|cOQBw{8YrD9nm0u6+g%q!jaRWX4>6Rdfnrh@R<TC6zv8XtgVZ3MgUU;uI#tr
zr9Uuh&<d(5Cp5&tU8rP7NiYPt`FKN^$_SEM0m0UJeB`{;>AAF)jhWr12Jk7pe>y+h
zb7MCZW9vcRh0z-Kf@i~_t=-x+pl$4OUTRT}jdK7gO{Mr}w@~LV4Db5Fii<_Bg?Ffs
zPY~2;ech|!0ssEfN)7YXaPy0QR;k{4zZPEq@}E`e2JQY@*l&SNP$^qTWNFuqupdb3
z9jW_?Na2<Vsl`i($6eE}{VIH8hLz)=sz_H}U-h&2vvBxhRz6Hpu8s+Aaa4qh!@Fl$
zg{|;Xiz;M&IVax6a6{DAwmw7*)-MgG-f5q}6HKUTBBYS+O`(7Is_>)elkHohqrMx%
zOscr`gR1bZ1gl*apNdIiQwuc}P!ZeS9<J+Ev%`P?lT!FUTm-9N_IM$2k)i(wp9$xE
zWP3S0Q9prXEW9$5J|6z(<Lydy>qk8np7@1rF;Y)0i~(q3^!faSsk<F+D=WNr!6gtx
z%n8z}mtBy$I^XI_5{Y^(A!Y|Pb!+OxkyZ|aXFn%cl*e#h>dz1&PT{s5*!8{_q(0Jp
zhho-rzpWjMe9)ta{yXQU{yWcBfQSj&RwO7llA6VH!_%UW&r-&cR#R0uj_qEmkW4c{
zY<Vtx=3)C1goMU;6s!pd6`J`c!Y|vdA-A93>m@#YZn)E}_IploRc%DRK&_;!G0%iw
zG}(f;t*REP=iKmO){kxIpD<?|@hO&~{q48H)K%N9w+sT`KOQcNevi7VeJm(#6}%Jf
z8dwjbs@F$dlZTQGo%U%M+kd;RMW&h`52r>=y}Y!xG72h10Egqec9+ydMDezf9zCmR
zFNHlL5>vt(6;UwFdeOhb$2B!b63+8fS%502r}Xm5OW}o=S>I%PA<qo+!-5VS`(Sf8
zbgs>BP#i3}@r1}KK8J3`{uZ9S*lGqZB~daaCg^RtH*-r^+d?r><JC)Ru-?laqctP~
z_@a$;p&)V*G074XpAbv^Vs8S2Sz3*@0S!Id4q;38zTOc2c)ks4L=}<F(dh(%o~r6Y
zQtyr~{<bh<4fm2=QcHHRFyp~|(g^sH#S@$0`}gm|tB5D&Yo3DfI?=i2@I2{=)Pt7W
zzy>FjN;6s9yGQDCDrUKaSPulE2M!8fPn#Ql#F=Kq+umXYy3Ai3Rv(m7GE`}-YAX~J
zHgYg}fLVcJ^oD}Qfy=+e?!}P7Sm0s(Y5VMBg3Bft0uY(3;Qhzp?m1{Uk{{0a6UspJ
z0oS~)4p&%3#SJ-$t-ALNgB$9N2!s*N0D5{Ci)_3bd>?ccYTzL9iW(k0onW6r3t9e?
z>-9EJX!4;V5Q4aL$vfaGV~4r%zTgOfma7inGNtBB0@F{vt}XE`NU#{s$fVA5(SK4f
z>NflRiNZcdUIR7@b!yQx%X>;YmeVhWzqOR=>L-^3_QKFkrqLbVF5xDDKL{A#+!Bo1
z*<kYul(+%$jl2a64`o*R9YMv4Xn4eDvJL=mLjX}B(O|xEs=>brx!r&Qx!<UK$DI?T
zJ=>*ZAfD}&%GkmBWO%pzCwRW6Atx1qQBqls6R1~Ih}?Vh#Ndp{#9}IC7}HT`UNOZT
z?+*6c**2hPTteX}_{I)7Dc8HTEEt<_L6<~XgRX$potR5xmIH6J(8hs;x+KP;9wx5D
z8w|7)={zqV!Uq|!bf_eny;6SM@wVV4pro*xvb~^*)e55wQ`L#VHK%kg>8FJ2V~HAz
zDfgsTI+6qN<d9%vedj;(bj~ALTlnomUF1~<jOHC7nQZKL2mz$_k~5DsZvRumUYGJC
zV#JuH%-SRl$o0+|6Mk?Xrua687#-!LljPR2UN}uhWfw8Xft3^DWfK9+_lifP@vstZ
zdQiAaRZ0u0V#Kv(v^cW<b5C)Tm=)CQ6sV?Deo|0i9K+eN=Wh&t?_%YJN>)}rE<vVe
zR6=zA+O*)==o19riSf#&2CEXudum!xvyXi>xUPu^|K_r0TsV_I-~sgJUl$|}`a^fT
zbX&Uvf(wu}X&)dq4LF1oJAnYP?!JJv-+r8m_S*L0;L0(LmE^LIMk7Kn_L6`gAbn$v
zsww&VKXP+`%l{5dv20OOB_P2S$g&=V#1<gXAJ;c{@P|&vF+ZGs#uL&J_q?Ak3QG!7
zqOv%mG|~8;_uZA@d&j372N4)iRXrY29_Q&pP7gmjE#){4_)zeC6P|bB>ESzBe2M?@
zue|17)5P$plcK+?+Wk!<qH7IRX|)LiV6Sy}_|~b`A;h+(fe%Ms8Q!NM5CIV<IG*1G
zP2mBD*lz|}(+e&RA1$J9r9eUy^R62emY&DoxJJdf8a5HknB|ESa}Pkn*NhmcSe4%|
zcK6BNpM^v!Odqr|`3kCk`KVyiYE0ls#TI6H#h5{R0IJ}#x}V+1N<NcoS%WzO)Bw6A
z#b8u_`C7M3*djR8nO<x>0y~%_;PeQ#qNv%W&bGiAl(pcA5jsKwD+|U<1{)PJ7&XV$
z5W7hHW91MF#lU3^@9<he{j!7v1hDD1LoF7gC;@_&-VC9Cc0D4vXMg)WAb}_??AifN
z_t8Kr93B@IC{2SfPw>r~#gyivJVzs=8Hx`j0A}*B6ywz)O%1AK&L#=St%Y1~0A3Fm
z$)q8nf%A^CW<kwFk;^4d#}Yy~Ux}i=aLq{w(9}39qD?JK2`~i&+A_uZFgPLr6p-}r
z>Gt!Ys)-7Uu}7cSm*gnWcVkH++#FEmT!s1+5Wd7xg7s<1UC`d;Dpcm<BfGS4q6WZ-
zHgZ9T9pef2TzxP+-m?XR8VMC^t6&{K*wqzZnHJW3;J4sShgT5TAsIP{BAMRC%fqId
z{T4kTiE8|~G6=O{QU3XAxc6GW1(j_-)Yv$9^8gr((9UauAq!*r{g4Tb&G9nsW|e&<
z*6*Iz!*lj=Em$3(74hbH3~B=X0SX*<Ebm?y4!kH$Ljx9YTtY@Zm;tu7ATxaIGlr&H
zDmDdG8o?I0&nScT83%+jPq&ej#>dnFK?dfQa+2YvvOakICd@K;!vbduK^OXG7G#qR
zA&1nXv^T7|j5Xj;q-l6Rbq;C<c55Hx(JKvc%xh{0YUgy58n3txOeU>7#Q&KKToulf
z+^hj$4>2e<7RqsZSvcikD<;fBNN!~1$o6(UCA{_KE*HQKoj3t)GP?(326bs%7VLd&
zipr(kt0UqB)mN1&*~D?n1Mm2h7VJ6%YSt0+AegOQ0>mlY66F5W;}11h6c_v!{IIS^
z3#J&7W>wY#btmeWK`vB=f9HK+`j(V^A<BI~C##IXbU}3u2A(i$Z}=VVvzxmb0w-J-
z)P-ne7=icPoUgmKaF9zA6#yJlYHazT{epjg9NYFtk*y>7Af3zN6F3Rr2A3CxgXq$0
z?sIkDcR820@X0xD_V-=dFLGv@vV`7J8=U?ySdyTK{Aw9H$oWo;%)P?)eVIMPISG@E
z_&uRqoW0f+jqdicD5`+$3}pjgdWGur{>m-?XSWvi4PFpO9^yVoEae?}syl3dUjV{M
zwLLcxx`FRFSyRV87~%0Emy%<YgF==zmT+EH@Z@-EFc@K7HgHQ~rO4BJQt<IC`$9=-
zEaw3jPsCguIy~4oDQb$0cGBvjXhc!v^%)-g{3uJyc-tlC0lzI<sT#=cIf6AKMi4h8
zSWbL9z2jGOJ#+5^+WANHiV=j_<{$AVMq!Xy+l<0^>!SWq^3wc_7|0CMyQP*6$6~qF
z*MhdPx3&ed*4{FT%THFDWwiYlP{_94x3-fVLs#BbDyDC%>p>2ty?k%R#bHV>GnH;<
zkIYQkBOhgKh<oKzfJs4kO9NKan{!Yw>AG%@a>z@7;4r|LG^`Ka)j=@n1<J8-;OV23
zE;(tkoz0mOZ2C)zS{g8kEZx?QoGp9rAM~AWUH6aU-H@GQP7ie@;U0H%m3PCy^;;bb
zvavOiBfWokv@GiKeQ*09!;3y>!InP=|F7CQ7~aZe-6#Oa@CbTfxA24hzWE6f2SUbp
z+|b6RDWDVNgj(L4T)=wLy<TUyy)NR=BWTr4sw$s?h88qbeC);tXP#rO8MXx&6%-MW
zBM+&S?}m5nZ&h-sk;teD4p8~~;heuk-#~Qa3`q^>t(o3g?}YCiWHk_zv61&B6}?o^
zxaXgA18t4EX@NuyffVAcPXsh^`MF;6m%+$={A0NG-Q%lkV+2&k>B)O-bL@yaI=8Ug
zC>5rRt79dgEbPxkJ;U{H#qNgi_d(PGA%^><ybRtA!-DThx~SqrIlLi@=XlFc3g!*N
zmO!8fPSTnjI5=$P_3wwPe(oj^4pIj;a(%5vO2eBMhtq#YhQ<0Iw`!Hceek5r3$qS2
z$!{oG_V|5Oh0Gx+(qX3F2=~@E>II#X#6>EYG@kM={L*bEtK4U78GdG-_f%1rE$4Qb
ziRq&Ny<;8u3q0@a<}N#J==?5AgSi&aAg_65m&dQBK-y`=G}gAJL0~|C^j7TE_1?=n
zYjgwfWUY@Bh2%D55dEJEcfB^Hg}X~E30Ap!%)8#*Ey1L#yPwN$mf(QOs(AN5B(iue
zYcot1Xe11;<YBkvI}Q!_WO3!6&(2Siw&!nygJYL<J%)b`t0X33HKRZG0Dr;8&LaB8
zV}T(jxz%1g<}2m%s2Slq2gLrzFR+<rc>`_==XH%$@-_g0SltX<EKE700E2t?A)SQY
zKqwjxais3Z#-)L@P=^KKGEjT~xNl0-$G9GVHNi7Q(7;FZ2sV9XKtiR86-Z)U8Fo^h
zcUPC-$+=xGVj<ZWtl;CSB(}hB<am?Q!XtB1bl*ye%uN8L+$3Kg00q4}KMrR6-EYCh
zULu5AC;-u1SgiNk7~GuYw|`Nxcu{h^n!4cHe|6iQ=~qbHHu+(j{6kukWO+H}v(Z&G
zONdDaB`(7oJIz7DR5}o7G0Jd<=|S1wt*kKK2-Jo$y&iFe+mK~tr3g=GG5I>z>v@^`
zqNkM(isQ`6^5LR{eC9P=;Q-B2vrML9ErbG~CGV%p-OB8!G(NUDj{kz#LdYV1Hdi^k
zxb#8k5(HwEGUln5yL&RWwZCb6H9-}0km+Sz;l7VLD6Olhqp^l5@#?jFg~|5dtKBO{
zMr~0?+7%UNc@JLgj!L)Ue&oR<x?33?_PNUKp4+YD1VJeyHV^eXixDGo4pG>6JNPiI
zYQs+9+YP?R=O29|A!z@@HxgH&Hb+O%Ae=$#n06grAm9{Xp@$anuKnY);OE`_j;Im(
zV2s68Eg!C{^H2Vzbt&asSpbUSXuCkqNM~rzKJET>MmO<B5=bRgg4TwL1skhaQBrLR
zgXM^Q!YfZT4yvRITeDF<s)PtIWKQsAqgCN4P}fjZMnWv{&$zB~G)@UuU(@3Yj_znS
z6i@1L%@PTO)kp%}^B4cGJI3M8NZvy8gO`223=Od)FMRz;&;CCyC&^1-gQDvTH#Q1e
zA$%Y<>Kxvcvu1=nf>;aX;CNvNWjK19sKkVS+syEyRK|n$Nl#ZZ!Wr&D9yyZaqW#we
zZt9Kxc3}N--iFtCwo6d=Mi(hOhOrsdvEhkYfc^oviU|#)!5fYWZFcYAgbO;GmkawO
zQ3rXB6ExfHvlwf$-cbAxETK<U4*JF8A9pv*p@JR6%^>M#ArJK8r`(tiu!M`qlAaO`
zB)s7L&$#dA^J`d6u;?1e$*t(ZH|Dq@k985%;Fz@OI^gv)z2lAuPw$)Z1>|=G$_H3p
zLebN)%L3DNR8ZJ0)<Vsw#FTNhyw36J?ktfKOK}RmekItjC@g{*DyS!t4xt-`Jx2fP
z^?vJ&PUWx(g``_2f}N*)3U&N&=!5R+5nK{HN<<?FJjwG;f5!b#PZ=wX9dLq#nuaNj
zFv>JV%1(c>{eE=A67V#5V8uc{{H(h)(XE^ppm0fTeJg|$Pn|4fa(VCiZsok$y#Ylm
zCnA9$XO=1Nepemi=TP`5z_r!jIRuVIFYnUJ-2s=_?};E?Qr+AD?LmlWY+3>%frqBo
zaKH2O><6RC1WRMQrPCjAJw-Hx13I?3u6}Jp8B<~IaLV2XFS>V1sKg&EQN5&GLMg|K
zw6UKqwbDUEuOcv`%J&-Ha{vC8LgF{7X@?PUu3o;tg;z4th-0s-ZCcW>1aBa@7G3t3
zJO0G>!Rm;QZLz;QMy0cN@7x!9#rA{@txu3$P<VyFya>Opu4AzIF=P_%BU-9Dv`rE+
zh0~qwt@$Y^?eFWs)&1XkeS4u+$na9W4n9vgyam@>RZd7uspa@`xsi>z`2`OId;Z_y
zE$qXP8kJ&n=XyT=X)y7@!-S|?in1vJs>Vo1=RY#n^sYq+?E-&_!$_cphu!!t@K61&
zlhBoi0N*ghpsm4^=6A6@+*4O{En-JupX%|TsvIvJw$QcSEc9=W^o){<p%1!fxx%!W
zdUNLzI0;m$lMsUN9xWNf8XR901fb<}P5Z|uVIM%IEE>+X0Z{VZy`AsoFcws!B0{7f
zgpBYzEUeyFX9SO=bx|E5WCS5f^9(vJSML4O(U5g%!D|<E=4OEwdL4caKHooRfy@k;
zlGNxyA31dEf)IsT3-XTVJw7V<=1gDT6^yNKo`SN1m@7=DhlJHv1ubZDm`roq4&?w7
z$M>WB@a*RT?Vi-N;36j~YMZrxW_>93!hfav!m2~bi_V@DBf!*ggMkz2_kE{m!eHUD
zaq!DtNgp-_z@9bNp-6^OR#i@d4{!EPEX)<e+pd+JOGYy(<A~5BLj<war&VGDDe4Qb
z@37#WpGi7_hhJS;e7tn?S>BoVxeaR(*5Fv>1~U=dO-P)1FOeZB!&`K>+w_hJbMS!^
z8e=C`%Nr_&EEr>tnz<d~?U%pd5G&=%Lw;jRTA_s*_N3eJxw!-Zv#dn8T$^kj&1)}k
zyMOeDoF7V2+m`b~2ydv5lD^`2>bI*wB*F!fmoXiSV2)SuOK?q@rD(zFM+OYCRUu<@
zn$GAMq~32XK11*iKx-pVgkf{swbyi6%)bUOPjcsgV#Iym*U$Rzew8A*5#=TzmuAE#
zH<>(jUnoueW+#&=cc^16N0z4E`=@oBhi%{W7D~ZV0(@#Fq$2J9NjC^s+kOtwCrqFh
zpsVTL6;-Kclv?K?+&7@a#w#i_Glmb-E`3tJR{#M7lxIMI;Q1MNeP?=8`lOa`uuh8O
z^7>X1`rH`IMO9(jVB3EInS7{E>Q}$~>98`|4GZb40y#zZH9rGKWz0)Qr0#d74PnQ+
zUhV4oFPosr>l-4PiJU)cQnwbaXlWy_2dc4QIKV+q;N^HDt{55)IzFaqw73-nIZ>`N
z_RWwm?TT0tJJ+Y0^H*QLmiJvawqDUeZp|&7R8xSPW@`h*5HoLj7x&IJoOfIr@L0ef
zFIE7Ic%|5P4mr;vT*~8byR2Duyhm!+jTC`J3e>}g?#H{W0^O_BmH69wiAC<1d#uo&
zd}&XVKC&b+u6hD~jr>X=H)OsW66rsRD+RTTwMVXioQH$Hbb!)oM8(JgFljOz85!}u
z`M~}C;ixKsqCd*Y2Z6~}DlzVsJ_3{o#hdV{NN%(=8VIT)=$hOTz?OmesCw7!ai{%S
zsvl*h+i}*M*@qUnUGC{BEp1_<k#U&YprF+zR-ud)pa+r~8f=t^N=gZ2XHmZCU5Akg
zy8KM27q`12Gk8D{jY<Uq;YBZq!WcNIJW(j20m2XzqASGbQ459St{}ffgM!&>P=f2s
zBBmw*2XU5@E_nGmY5<!`C^4fDQZfW1cK$C`Dsv-j7Ugmk1YE838_ID#P9TM1>!N2I
zv2ug_ztA-f3jk>0(Fe(wrv|`a(qT*E29X7O$RO;ne!eG=M**(EG|T-D*w#!X;Cde9
zJ<5?}q>!f^m~;)kCbV)ACKEAFVqjs(T`cfCnJMba4Kxn=!}AB!XcEWqghW+qlh)Is
z4ZVSf2La1NKO?KgkHty>2?9Y{sAlM~wKRp>p)m@<1aQM78e_4d!C~Qf9mT_<I_eP(
ziql`C;7vPG@F{5BKmUgfwhiP^TwsKd_AE=Hl-fvLh!W{AmPmiYk9B7yQg)~!3m#Pc
z`+vHJ8g{J0j)o36v%npFW{MnEMSs!e0eXxd!=-L2?y!`W#DNUS(6N|*p?l~yD=P(+
zpE6c-=ZoEqH(MF8(<+0kjlS3w;|s2D(Jd(`pC-Y|xxB5(QW-L$R<pe?E_OX`vR?x=
zOIma2g;Lvnev!NAMk^jsi3)9sN_%;)U*xWjn#O8@O-tBW8TsG{^}Ntc#RZr?0Unn7
zF`4PTt1fo?;ayAN2nJjWADWQ|o7wj=w@_Zx%4sI=XRPWIVcDp}@BM*G-Gs}chS0A{
zC5+EHB9r$qkKPqlLBK3=q8K}94Mf^2UDk!XQpCi<&W?kdN7+W6^-J8`u~9pK&kD?o
zMF7zE689j^#5N>MNI*qWoZ)3$=>9G@d4U^9Y2OQLmbcR-?jE@?qqIOMwBeH&!dr8`
zJ5>WQp3%J8Gjxu3ztX*~Ss@eRQO)=?Zl2`AbKLN&t$YN}Yo#JBR0Bg(d9FM1daF_D
zhv@fNUi>`Q{W>cxMgjrMvR=Q=^UgTOy%cQ-&|d)F3F}o=XwCk9o@<V}7+gm)3_i!(
z<5HKIoG3yqkA!v*f;H)Umm4i3DkcpCn5rW$b%oJH3#&QQHhq8{E_1ujAa)r58Tp7~
zNU8@PoaV`@i8K^*Cv>vfp><IH6)KmC^~VF;^;iJ;s(?31r6?S|3g>R!*M8l%Zc1do
zlFtm6FLafg?B`_Ju7%|y@(EJs_3h$5J-|K~Ohj(HmVn$TX$%-FA#D%Q6F9yd;Kr`8
zZ;ACCT9?2lgc@0PukGqSUS%~WlCH@{Ay=@x&hFyhtvEV(@B)|#6za@DgTb{qz``Eu
z+@rfiGv`W7giDjH5jKYlm*U)!p4An$YDKtQJX$zHc5w|`tZmXOVO%4o+tx(%|L?xL
zaS!_@>bIi4bxLb}vs&b;Hw5nbXsW{?CSdqhw=Ixr#{}-=4qL~fbO6Aj1HY2)oqDi)
zGg><3A*oN4D`=UEZ9|n8)B27sdw2Wvgamv7>?vPrkIw7he)$ep6Ih9=vNBAmRKUXJ
zdyV6Q4IA5hNnqf3+7L{2Z(gkrI;@RqKrmNQHek&83Z;v8&BUOL{Dm~vrvi5{nzI@n
znL87~!FzO_fG%cOWiuEaO)HUT5eCmWCUsTUj*lXML8<X)o`jMDJsdl?@TK66b9XSS
zX~@T(89eqd<=iI_Kc%_POOs~e_q~Hl=TOdDP+!MZqxsBAQv&0E^$D)~D<%Mp`_Qi`
z&5)N2Q=|872@Zb7Du6~qH-<d{8kUhJ=cif!7kqU$b%F(~n1Z~8;!yTJbn#7{f=^}d
zQ|M^5G_3gyfJbNPpkUEpK7n%JQj8#&m!78lh9CSpIJkKGfn}sAVB@6T!BGd8qPaL;
z)tK}!$AH9Mqk2E^C|GD|7|QB6TI5NMakfe?4c9G!xnwTMJa4@$ZgrPw;riv2w-1f%
z6@!Usi<#W+1D@2j54I~uVvowpVI7otrVe8VsLI0gVIq^CbtmtNj1Jxq);ZRzk}Imf
z0u-?Qo_BBWfx-ZO44J7G?Uqzc-cHxJY5IgGjkMsEC>T&0!gG7ipKE$a{#9C6KcQ+&
zyc%RM%#FfYb0hc!@vLuMZSz{JQ3BX`<yQAr*iGWyF#H5!1>|w-a}xb7I4(G6X{Rrs
z`Ga_Z1@F&GirVn^4#CJ@W93|RvI{VthAHb|!IXJx#iI^ZUp2$g&cso7o9ig(j&t4f
zH`6fy7gC3yHISir_N#7DmHoV^A&%=>)DF*L!J{sAW49^DO-P9(xr#TT_I~!m;ILf|
zdzK~gl=zGghZYvQ6y2mO&$$^Kj-HEys}6K6d{;USET?+JX82abBVuA!2M<qk_Jv+l
z`vwDihPTiUCl$ChUG<bWrye9hq+;)a>R{R<-3D-C$)i$LkG0{4kbH<L=)bl>x6J$X
zr*OhJD;Wl`fE7KqCR{SniUvdKy!el8fA+6ywjb22QY%V8Q4BA~vRc-M90ZjNZ;#*H
zo}`|ju24C3h(1u3h>Bm_)m}H5w7^s#c#cS>$e=|K5{WYN<>>miCiiA9v)^EiN&3Fa
zb$r<3u(0cnet7);-Nj*#4z_|I{z*M2?Fu0$bocsh;lZ8V-Rye-Qg%{TAuyVXM9};1
zT_n@@ClvsR)hBtwN9K4Boe(@+*;&GQNur)~Xi_H%mPG2%yPk7PKJ8k`iSWG79t`{g
zI~l}5d+R1~pBY=No9tZsIxgTg%jX~JxXe+!s62o`Cau9Dw0K(h+i~XUQ;N|G2c1jK
z2;Vz8<qKE}9@wgclCYo{McuUgKKE3HFAGtdFR@;p9`}WZ7ofOQ8bb1D!i=&R!4bjD
zDY1bCB1?%WB&EU5f&cV6*XK}E&<u*BP~xNksgduUw<$Piy_0o*w3ziNZ5Drw^ckG0
z&(02x+8OT%d4YjVzSRwk3%B>I;M+Zd?UY^o?8ldao$ooUg-cr!N0F(Njxw7G2?>zS
zT^&(_|3gu2!96SP35$1&Nx{^=u5K*pJ0?V)5qcq>jt39qqkNLW3S|Y3*07aWD{z_j
zE=&XupJR2U@pyyeCR8zSg3}s;ea^>tDD+tn#_J~u{uijTTyJngP+w}Qtig4N;HYV_
ziI{LWyDS)(*QJtg5HhM8(PUL!5_H%N8x|hk*kEuHX+UucEC+`ONcYwM2fc+>fE&@!
zgzXC<3tKVB48Ml`IwQvm$dzNF*g}QH;$%z07TwE|s){D^t8iCSR)@!&W@;o9fePhA
zjF80vy9zwzh5vG&e%JL2)^rFd8<6Uu1Qfq|wVT&HCY+nn<_S1Ri`gf<6rJd=;SH0!
zL>7#CeEMX3zz+t#ey_t$TY31772K8SI~_K4*&iyPwxjns?8Q(1P{G)vrUn*b8?CD%
z6BLNRD+G)#izc=u3r(2%s@rc$XI-Je%@dm7<>Zi~#|!j=V`8k#AMOZBf@DnfAL}5&
zQJw5Z{Spmn6UNnpcoeTj*N6>CFv{1g4RRkcN1s73BMsvqSCA!SJr?E4{lX(#tZqa#
z;JG!BNWM~3R_mT&^~|USme_ons8M$6i}nu7zx6jVUD-6_I5KmVy~~~rivCRw3w#7B
zF||fX%InRBkw=`cvdvEXwo41V4p$208A2uaD9RN$d3Bh&d!Wn^gR5#9>(EJXR*<kC
zKOj7~LszM1P*O>GGlKM_7|c=AnDf@RXNIfdm}$0IF1elT&H)>P8Ckw)8AyKR6WX*A
z5H=k)$irNB>l+w`cD%hDnQcy-+h1(%S#+^Qz=z-*Fj-Mza9ht^;%=9p9y#ZfU?S=C
z_soUvvD2(HVq?cw!k5E519D8VuUavlA~Qq{OmREs*bh<YHenFq#0d4L9&ZTT_DHdS
z8Ia#?oaW9sI_idWW%4Z)$J^^{x3G_u4m0&eVzQ3f7)d<*Layrzo89LH_6yWN<x~(~
zXwhwlp6@!IY!xQ?k{S)+9D^e-#|5snk0p#NA_Jj(E@1j_oWkLKl-u(%s~N_8U_>Ea
z>E13Q-5s}CK04zhc-r6$EF&FRLx0$8H3il17<iCb@!=;pyqV>>Fr)z&KcpM)t5bt(
zhEOE7;E3@-?r~jO*o+g$@bbgz!Y38K7hJYWD0WlHkS1BwQ?E4cyLWPjVDahQzTo1I
z0C2jh5jw!W@HC9u<lb16qIS$qr}NVfR!U78X8!1Jf_J-w+w}vOrS;RkP*1!SDnk<I
z2{l2rShN@i9T=%A{cbwAy~)tA4A|(rTu#c^4ME?Zx+p1f|9GQiyonXo*O4S?2;5*%
z35?8drw6;7-?@@IKe%#I434eA8^y)gk_ZNj>r{#CS%MIWKMp?K05w$w2OZQ&KW6+W
z9h%{8Kb;yhoNvFxlm|Yn=dCFX`tM8$PW)8_Vjvjqaei>g?}rw_?4eJO6_k@kp7=hw
zsONa&*82U2bt*!?M;$r!is}<nP*}!><G)rf|0*0u*xTs~Q{MljV-cQK1)LpdGPG1s
zh8(?p-GJX|0REI0c?~i@;)(==mXG`nXLgqHhQxLn8w`}B{tWN>&i>3ze1ZxL(5Gq~
zMAYNx_?URJums3Q4@=WA@K5^;1*^;~V13oElt_v@8KPltzhy8D%ew(U+&U;KO{ase
zlIP8S+wb^p=OT99raBe^xKaw(Sic13qiV&5!!Hnh^|1eIYbX6~I245z%54m|VDN{2
z!`{69sDIQd8)gBSc*Zl(@fZMrbx8Lf?dgy1!4QBitE)<|62cE3a-e%?7b`^JOTZDO
zT+JsAaPRMCBP!AeNa@RH@N<NQ5wXmh3aB-t>byJr{om+R1e;b|ohVz0c~$z(oi6d`
z{?J*aSOC$)!p(B7i20c6k6vL*pk0ggfw5~MBX}hs;Z0Q%%G2|N@_O)F{=4(}nbxp|
zbKh7QE5ucV>qlxY@B9P&eLk=?7%EfMl!Ux~G<9INAN6N_$Ku1I#*wcTaE(e6+WmG%
zSM!5aoJekSmV`|~&z9$XwU^uf3mbpicEzNK#qSI@lok6+vwzZ$3<U$P^wW4;F&SOI
z4DaZl{hJf4v%;z?7~T{@oVn}X_m%$oF;O{AU&3Z%)p}P}$H<T+Q;Y$)H4pRO;bRth
z2pAQZ`f_nh=u+mt)ktTC>ZTLMoO|K2LLkfHl&ePBRVavo_?B41aWlW#!h_srN75Nj
z2%%q`RCC(R{M|qCAW9+iYgj$}MnSpra`tdt4yAch7UDu;>q9HZI{$vx|I1jaIGadD
z9M83Sqj<LGF7qd?v~Nap#>Uo7L6*X;E7Lpkzy9XoRKO_EPP|sIb~+-xIrE$$c7x2k
zZ~Hg3FbrD7$qL;t248$GQ5yf`FS~({xxMlysx@X1-+or_nI}{Jd(fd;n1YG~3Qf)g
z*NS(l%s=H^J|TP`s0U8Oh`6qorVMHXjvJ}|S>M=35^qi(IvplUbNK4Hez9g?;ciP9
zfbP)+ANzYfN}&#DO&xFfN|+d4v`p{TGySY988bFO8kr)~SvG|8khT8vzf#QFRf4z2
zm~ADnOnReU_4mAxw$PVX)wYfi!Yt1aulOhaix*HXG?0ea(74iKv7I_1%jTyX(Ut9t
z7N(}Ekq7~f6}s>&Z{{-JP3JSz@;s<^>&TuARAG4)RvbLX8UFHl{?D)4AZ2=P!ao74
z4^;Q{r~NZNq<qINxq8ViSy$41;1Lb?f)NCU{NnTcyR`LOw)%2AsWE^&`oaq!b#cr%
z9{Jv72m24)M8md-<a&++WX)v-Q_nl=4gcnr&ax<#R8~MfdSPhF@-}sLXWq#NLf{ij
z5m$=$HXGC|Z~ot0qi=&89xq4e)B8*!6(*drC}sG1s5PXwvR(%8ETI<Obg;jBM4yUD
z;>lF=<orE$Uw7$W88(kYB`1?-fiP3=$}N7@DR!-J(5S{w3T+s6Akb4uygttVzlojg
zWU=Rpw@Fq^9_JrUg>_pS9~Z9>ccZ{P@9snWBM-5f5y(i0xi~&^)>;qoFYZWj^6Yb~
zA&Hh9oTY1s;eW@;WV17|WaWB~ZtxG8$$aq!__cL>ygp4TW38;w*+tG@^&_=XqGIDw
zo>jC#N=AVCd4HGRlYYRB-gf!W5PL_z>wm~o!kYK18gI5eP5!CQ?q+OzbTndRImeLY
z!`pfDLH@4$*|huCiEgv&e8;ZeSY_m07akRf$Qm>>-&^{)|7rBZU^_%8h0ldyh@O@w
z9`lb|*>=guJ6@!%#n17V^Za`^+ByvxyOJrgw9Jly<obRo1etS#299_Qy_39n$Shml
z^3Pew6bu;#gU=K+j0&G$x5ZE7)0A8$VZwEwjHI=;q;%@SmBH#zi4QZFetM61_~UCd
zb^<LRO3%ISH}s-WiJ7oVMs$@vRWC3r{8O>NXOUGyEX%nyQE}(N{<z*0qfx-_KEASo
z-&<;d9*4M*i|sTO)s2C5XtX1P!<RR^!T)cGO&I#2M_!AKAa~vV{>VM7oM@9K&Vq)Z
zM+~?jwwza(Q+3+m{_Hf{5itVTV9BmSahLJ_xpBTVqb-txy|`ir20{nL^l>8k-Qs8R
zTxpA2k?OGqm$5=PnX__Bv;CCA_#Qe0_Ntadn&HaDe*7OyPIgo=WRM{KgX`_=#>}yn
zh_NFPh7|Z{ui%+_boV=H&tN9wvEr2^nQB{Vh1^UuG6b{`qdEQeSm}NCOHnr=jY2LI
zfENEXws=-_PDJ*g#2NYd-u+Yk;w20aL0{IdXbVYv&Sf#(x-8dSfAJ4pxa~{zjO<ih
zS8p$}H2Y^<;J18X6T&0Kh9+a0=#B*r9qe|yogvwEs*E=%*jhm(m;KEROtr<??keSY
z&5QgQgQ&ni5udi+EP4Wq3#2L!RpnCLaza|ekOi4SWYC7jaM4)_GeV}F3~&Bs{}V2^
zEiZJK<K2r$j2!Qh{oL9+qH-QL5mF589GuS&adp>O`EV$ZMlEDuzk_@1Y)Ta@C8t<5
z10GJg_vLzjaHfq8)IA=fjBGNEdAIEDzVBh{&aHwOOYTnufQNe*F-yLm55L2`Yh#4;
zn*x>zw`?Ae2S4_o=23*Y7Q>y`Dh@MtGz-fxNJA6+f0h|_7>@B)K~tG|#Ljr}>HdPB
zX*Q44z!qngnJXuu$9HlK!zm`@rG69kUreo8-ro*%=P-15KzsUj*h#64R!#L6u#;SM
z@=h~jvae#vn4eO7F!x;VFD6<&@Sq7X(EIQ4KYz_uu1L<oI>!<a-`~fbHp%*C>2PI5
zAp--;0bhHt%h;3FC5u3hMaw|?w3{T5;k5JogSSLe(F+94Qj<AI`rhNq{k)!0lj8mr
zA(<!ig$E9Bza3!X{hu-iY3IBv7p9bN;uXu*{gDG0cM;$&Zg|C9|6{HNTt_58P=RYI
z+kDE6ey0YjC>X~ZK$KOwn9uIF`IlU5W5g*)R1Awd=;hz}@l3lSrQP*h@UU{f_<5i6
z{r|kr`0U~iQ({}~xe!7V<xnUEQ^A6V{)`uB6NZ*Ir9!-0^7xeE>BMP*8wLId*P|QO
z`(JRhc@heVq!;tY537*@rf9c#5Lm^;v;Ghs3%W#;QdzI74js(&e%ar@0qKDQt@BrD
zZ<KX^*0+8^He-a5h$jUYkw1jgJ3sI*d^tLEV&G8T3MH2rv-i8q^$$R#VJQ7%hr^XI
z8uoUh!O80xzuUKrM$tbsVLU0ggMw9<af<)#+GwDNdW~^-VlFD-fhYKn@5^|&dDUa$
zGPYs`QkNa?_m@RaYyoFV*Eb)xqciq%*WX1mXt*T646K7Zv&c9E#|i}8i$M$;Xu17<
zTj5{y4lN5@P46foKOSJHayhe)_$R$fEBO)cT&5&{YUU;QDpruwi-r4V-`Buol3jy@
zD!xbYyCe2?gDHpLl*+rv?tw-2b#=F2O`Ex*W4w<Qu;T0%kpD_(&oN`NHMjfMjJMy|
z`jl%GjiPZ-x#;pMO2?DZTRPSM@n-uSENCQPF)R4+Ebqp1{f~5nF^@p;>+6WiG*F3e
zZ};cF`3HK}%ZsPDh0r_hIK)R}El*H&kGz<2!Vg>#;||Mt!{A|H7dTKa?c$Eu&wd}d
zPHKqyh*i7yrIh)rjXNw_i*W&`d*nd|vhTtEPM;a^glnu?f=>su6ViO?ul`?h?WmO^
zf$}`TU<)<ws&{=-^lC_YT+K2_sAVhkM<5QvmZh|mA1W3?!miwW^{jz(g%GeZ%m4Hw
zJEA3VI6go(jbl3O3IBl=Hs=3H7t+z<3|y2l_*cfS1ej9hu;KcB6&H&c%9o~OUP{Y{
z_6s&-2ySXR4zR{NwJ*P!^74;V37dc=VOPb<QIp|4_@ck~0Xq@H>sd-2RfS^mrgXWA
zQRT2xWt?~}1n}6TlFIPbF7ydl(HR;nE`<-WIotbpbR(a(X>ee1?SK}T0G$n0^aj6>
za{GahW%iLF!&b9g;$^OVJ7xMwEEisx2@#X%B^EXMwu?)<l;-jfI4UZE36UqW;;A<J
zQ;%o6AS+@CYoi^;Ng~%vIoLhPPI6_2SBeeO5)~kei)%sV#{J<X&+S*oFCYYKg|W`1
zkf(g=A?`9n1g;Hl1EQA6{$e{c#JkV)tHgGQ7FEZ~!4~3)Fh;DQ#lK53rF1|tSE)b!
zCW3a>X~>@M?>ElQP+xQ)3c4jv1mfd7zpsuE#wH$*$Wo7|6{~*HtNva0azt{y6Oqy*
z)kF><N#0Rw{B!o<69TYd!^E;;2<A-vWhXbU%;qf7fjiBO#?sDh9k+}7{4raoe%y3(
z7Dkx?Y3g&Rdw;oA6yd_54bR87&)c`7EB?fYWU=rq;VU!YP;$M??(~mYYCS}fvymdi
zT1BxmzUvRADNfO-M6Kj$T`EaFT@Ubgd4>vZsGK#pY-ko>EOzx=ZU<|Og+lj_m=irS
z(aX^bMlZwb`IP_83>yi&dbt9raR1_b@AHU%%jbN|A*x`5b+2I-FP)z<qt#A57S4n`
zyz(UWReYEdf1ctD(NEZU))Kt}%CdCtzQCV(x$)&g6TtPM+JeG2pYH?Dp~J(-rm(=;
zO=ux;U$~mlDhbwez04Q<3vRUuLy|RJ$+vmloJ0J^8!6_p)Hg;PIji&QNB%AUp-EzV
zcq=jFi5O*=1pe&JexCTuKS<iWyvOIK#5;3UfUF0A5W*?kBJawb+$EiDO_<IIgi}b~
zc0v`8+jg3iYR)mbDqX=$vH|6Lci-!m=yvGsfdW));x=dJ=Xn!0`z^OKN=Wi}#1u3c
za=_$mzQljxQ+_YOoOc2+XO0$CJnau%=zqJ&su+pRViuP<(_4J4|JhuMLDY}OA`UOP
zi1wgxYovTQ|8{@pQu@=ak?OS%xy&&kQmep?@9y{4AY(<f(xuTSVsN(i-<f{)0IL|?
zPMGD6rF`HYG|YHWHg2NSJq-TAQ~du-=GP$Bwo`Z^H*QmSX>ZYetPxi%rP3MQ+?Dx^
z9=@wmi_3L{_x#1510T-73Q>EYV+3LV9+yLOL)`Ciy7eIC6t;Nok$E)6zxB@+fy&U)
zZ&bVrHHeqQY~=d6L-~Y!Jf?$6TLKFM_k|xphWD@2{Ncx0dptwL10Y30ow3oNU%e-r
zaYZ-3s!Zz2UWSQv*=j#i;)OA6qflmYQE(K>@P1GAJ4uui`!1)-IGlylEeIADz3uy`
zTbM8NhcYrafV8;gUoH1<J&_72P0QoeOJeLHW)7u*!Z`2Ua-@IJm(iV67?s^gNsWVN
z`2muGPM?@(lpIi7?fO=ovWWTOhy4yPV63g3(K?dUPE3j&JLo&Iy_OAr?cMyA!IN84
zcPxv*c#<GL?|*qY1C$M%;6C*M&m^_3=~^1s`|sB8*adY^6t8ZrKm7{o+TS*PFCHNV
z$v6H8)fzu-yM00n&_fwLiRhg;R4*Une=MTL&aSPmfZfFvNwPq<TtEJbm5V4aq8*F3
zyO^=0P8<3P-37oe^!=^!G7tqUA-92m0EkjruK%nwpvlo})sk-OU*2v19O|F>Z`*^d
ze1$}zu5<j)b%E_5mgC4GhfRbVE?Ju2=N%IPaMVFalGk-Q$~f58>-_ZxcF`gaQDz)z
zVnxn(f7$OipQb=@0Ar3Pm0M{r9p5bSA9&6xU<o;8S~IKTEvtUZU-G2Y>6ODToR}c3
z`p~LsqlBoJ80BMc`R;WaWg9o6-*A<MMaQM$__6srAMKaEpFDmf<bb3pe15<zf5k6W
zYD_jCZsk}pFVJ|!o&J9B*$|>fz|P!IvC^8cDTap5_8Z^eCqw|7TeT7;;+r@x<#^OZ
zT;i>&9zC5m_V)i>Y_z6;$=J!HmyOl_Z_?&O_Zmtmiv>YlEZn;{_$&TvBOJ;}MjF)Q
zhR4TC1CLD1=DmKqU$)N3MG1ruN+F$aejk6YW9%}P#LMHnKB#E$c)hWQe|lFd-gW@m
zAIv->sS!uW;|(Om7k*1YatqqJujX0<hLbOwbjmmWm*{0p{lKdtH43*q+uOX4TY3ZE
zNx@u+i=v(i4tnusfB4PxkNl1TI6}qX_sG0cSNn^**(w&phKz<*!t}BQdEWFFQzpT7
zLrWnLgymp6X5nD1;NaFz_Qx-$J))BlH(`!IaQ1ee?{|HiLepc}stGiNmC8HU-vhlD
z6-H_#K5W&6!XxE)58UJ*BW;Js9<+$H?vD74gbVG1#}VI}{R#E*K?k)3aaE^_4XiKp
zCx6Z8A*4&>sV$oTELeKzU$%tR!L}_+5nBcW#WGxeh+BfKfPt7CzWsS6^9uK9uL}RH
z?`=JXE<vHmmw11mqkApoA~e*rSd`FnD(B%|-X({)GUQI`2XgG?C=JEKKV)jXf0NEt
zp8V;+$>Tv#u*Exvy7Qt3L3fTYLdwAf_6Gme-7K{Z>=8MkB^02b_eQ*!(pO>+x?Zyd
z#%(y*)X}jFe$bz{nJ-|6f2~}@mB6;iLLalQ8~wXA1gb=R6&hM}W2l0^c`9Z6zQ)84
zhflAkRGPr^Urbqk2&Kf6SK(I4b0Sx+>)-O@$J<_Ttz$*Nt~A>9)FChiNrJ@DZ~E82
zW<Qd;y{QsSi8w%S<xBpdPf?Cku#FenMiN+Jdgyez|FU+0Hyt~f^gNjAvc2cN_kR()
zn&%A=yTzM~_%Z7<|B&cyAJBk2Agac;|FFRCu^@T%lKNZ$_IzL9U#(>qkQKhU&?+Mv
zMe(xADI#tJ<z{$e=KDiGwr&a&l?gq_Z0glN_y@=AIzi*=bY3hw?4=!C%j_f*A$=Pg
znJK4+svG<ZWUo_4wK2G|rZ}OkI!*{_aTz9|zXaMdsjvJe&N4EB?-6;iOtYa2+&IgB
zEgFVgz$GKes`}L?e@(;~=q*Qk13N<mSBAHsqkkm^9`5@P+<&F07IK02j}ERwq*a8h
znY?PnKObnyMwXKCO|Gn+to9Xh@bzl{Oy)_&5D|Sle_%fB=@uMmrFK8z1a!hlmzd=p
z^P_*sm`($sNJSV(A`f;mg)Cp|@<(-61(+^Mvn$L&ou8AIx<OZ2#Zcno&9|QlC~Ef=
z?ztMP=)WyFym!?`*KdNA>aF1p<M)q$4Io{-gR9-h(NR-~kqHi{(%!~5xCQxEs<Q_@
zP}n5@&_`4su^vg$s-*&nYGfpUSnM1OER4F6zD5JqBfR&wuCUCC;VR_gBJ?H^mzkT~
z(fzFg4;fU=D%b8$-{5*5AGHH9RmckEG}Q358&+!Nk?#!1`c0L%#4yGRg`@B@VLTqa
z-hF(m{R{?%+){OkiOHc)Uhg{BgRI3HE)Q$`EOClK;ep8wizYL8?<04|lxRdUB~^|A
zM6eQ<d0aAasE705RyS;R2c2iXfuMs<M6vW>iB0aX%Ba`s)^hO^@>=h(%AH+dJr<2)
zjtxqeWj!7Gv72+2{XCjW`MMfQiiS3YJjnRe0QB{{yR?t}WIzMUW(nBK5_sc8_J`45
zyQ>C79U`+3_nX`!$wY7d?j9_$Iw{Z!tN4KySFh@xOWb$SqDLK1BoVx_u_1^M;lQx9
zgwr;-i=x9<Pz5JQsdm2bXE*fBc4Llm(x<iJ=ZN<^XMmnt_Y77Y7mcc(S6gR5s3HGZ
z=1Q+?_i6PyelKjih3nkO(MXFpO@t<Z;iN$@(o24ICs)}w1>}Gy$^=*n#Ea85y7-u=
zhdL0l5(G6hr<IXj0EDHlvBS_X&XeBe6>h~K`&l81__kvzY?x2CxF3334al@&%GDp6
zU-*N&EV>O^wBZU}*OCJ2iO>h^?{fFRSo^Gme(efvw<i5t%Ua91Dx3(8EBzF&cXvk{
z6s>eJQi3Blw!W1e(Lh=2Z*~jHvZH~bQA}Pn7L%$+wz$V~t%|&cRSo79tkLSWAGFp^
z7WAQj#c8krjPBwgbnDoN?%%m*%k5i<oXk@J5!wx?RKsF-<z-QqmIK&U$GpqHrmzFe
zj~4ynHYL|NQv2v|Xp2{FcGHL0*Mzhp1~CnO{>d7*@EBq@6g690(TdqvY~hRFxz#hG
zQNZ1?xo0M}9<t0$E*NQb_J#F7E)gZQ!+s9X^<sC<t@eZAsI3Vgj(Xa%+8y@~D>jOT
z3Y`j_+MU<Cg%SOsC-a^J3X{<24X&ZqesB9wnMRzH0)dHGiKm$xi82GTG+NddR=A1d
z+W)wmm7i>56BG+4g`K_rH#aa^TP-Yv6ETq!a@SX`K5pNhNUSeMC#^PKj_zmc;bTEg
z-YdAWm;I&~L!{j-mh`txZroriEhMtJ?Gud;kKTmxI50(V-*bL)Q(0xb3azk<+cqv5
zoT3bW{oP$P*?uB@nB8bf2d;D%M~8bvJb{W8(-R89<ifS1n9PRW?94-<hpuwZpPd|S
zC3v|+n(>L|`psX0i=%;XyrAol54)jyR?=3w_l9#6hyc;`glRKezXuk&OW(8N0>z#w
z6j$C`Q$KgVz8#GhenKlEJKCy^?uApVv_w|EGJAd4%*!^oea?+W6pxia!pGo}mYpuW
zL)HfOadhLO`$m*l4I>tD!yBTkwMw%R&H2Ai+(XUQM)X6VcbKwnwCKyj8{HMrJr@ZW
zyY=mpP3-gEoEN<hNs=s&%xLLFb`Sd9EgotO7x2u*@pgzP!7o3%y^5pqnlWHcBq_DB
zYINA_0uCqFhIPc#(;_{&JbLLr{?RpEZl4vkqK_!Ihf}iCDJxw@wD<`8dKltq<>*<(
zK4=nrnzPnrHrS`dg#THGEI9X<uSc$RSDqF%YZGM6AsNiB&u4Dp)mCwWow>$3?Y2yW
zqjw2hPV$rb8mz-SwsgdPjOVdEacg4@m3SOR1eHPL{_g6MPa-!=4;$a;-Cyml<5AQh
zX2^AXupRZ%Q@`p<ml16OF8SrH3{bD>1>d;mnH7kc(Z;nB*#~db7BC@aZU*~lX0YyQ
z`<0e7xuQ|k&e_2;Emk!QvLTog@gaL35#0E>l@70O<xwNgvcbgs)H8TDYKW}sj9=x_
zA9p_@IN?9`d*aO-3H;^4s&7Vk?a{%A1y<F!z7?NdIhYG0Bm1Ah74xjTU!t;RA}7&)
zp8C(A-z!$EXy+!;c$f|LvaG(96q+DVF>mkxx(5H)Y`-E3g0ll5%txW-o!B+lyw1wu
zeOsHX7?$$KZb8rAthl(fyc(2a{TxZ=s36#Nm6Z>z$In=+rf1U{%kvg>3l1Y*kF^~s
z^H(`XgWV^%20(<)!6h5*!_r1To7JAIwl^FTyu^LhZcJ=0XBm>^|2Q`IiKL@yN!%VU
zxAlRpVsppf(*v!KVMK7FVJ2+N>g4Jj1nY>=<12}DdaQJ;jX6_?iZ+?&2j$UE3dx29
zX=5CmXCexS&eoTpXE*Y^WCL)X<K?FX1<S2?G;l?U1~y5{F3#$%>>zy8s)jQ<7F!&)
z>Nq{K(u0RywYm|yrdY4xi}NMppW%YB(F);~D-M8VrMTpXplK5ypna<o!4Xv_tu9U7
zJk#9-BT5Yik^CqIaSD(N=Vat#?ujC+()k{T3W)azktUsKKK7)Wbh_2q2qtn1;ZK<8
z*)O@_Fod*c#~*)g@Ie7Nfm~Ky=UQPRr~<l$akmOEhNJyriz_>I+b3xtI7?S6zPG6^
z0pGy)deOXFTt{dp-xpx%0^~If<p7LdE))@hKF_^)zSS1h3w=v3(GCCSI>HQUa;OUx
z(LhsTFneC@?uUD)q6qKhR_ls9<@g6@8#3B^uemJ|#lZ2ik?qH+fro9Gdx*E2uk@(P
zE1sWA3s(JxtAVCc(MHwDcO{CEJiW}5`OkdXH9<!C75>yjd`OL>XX>Uo?z^a*%|Yc1
zu@K2_SfTNHU(IsI4r|x8rI3OaHSl2YNV1nqR+Mq|JI;qPZXE=yT;z?<5gmgR#?!~-
z7;V>2-L3FO{194RGZA=3dj_IS@BO&j9PJ;@)Es@SBny^U==wC;Hw87d25v^-Rd2f4
zQDG5*4XiriE{ARHJXZjVVe@QNr`r73J8lC47KMHF4#%4nRKlS$Qp|VkF9<~92DeV2
z+EDNsZLX+`6d}z{^pcm-sF&QAQ5WELz@|d#qj4VlwtI$WlQ!BtRb<M7T<GD!6Off!
z_@dh*TJY$R*Y>j#+=;0E%mwa3nEI^)Ny-pfb0bEAQO6DQRkt8IT$pM&j28G%SFRCq
zuMU61opN$CUjgJ{HZ?F`DjC4Kmt9tL;u$4i6>RebkGiEtM+3*-8CP|#ZZ9blvtM;b
zwO^I-bu3#|4cATJtv#P`Gkp7uJ1XWmTA!saySpNhPD=6$B<h-pwvK?|N?3);=(^@B
z3Tb{`yQ$VlWu(;C%oSiPe#hOVpRyZW+9+56bZq!!A&3)cL$nIJw#RjDdOw1XGrZmj
z0qN8uInbpjA4*;%r2E{!y}Ar6B0LTZ4?>Og4uKAU>S?}v<vRN^x-}E)VPX|<#By>u
z@ONO9pSa&GIV}2|$WWou;-iFOa`W@<zjs(U2ouDB)z|6&JY_g8V<TMYX8kMql|}QA
zltbN02ww4u+jqLvk>8-K0iDelYBZIVPq{}K5JMeVS3Oxd!f8&kANQ4;rwDlhVMQO&
z{hMF*x`*9SV{8Jj*tJYr0xB?#ks}C*`FvV@pL-_Dep3K2g5cJ;*-&gwY@WRg55MTv
z?r&`uBhhKQ2&5Hvi?yC}^!W^TakW+BgjQ|>fevdza2>(``{*VYudwz<Fb2_Dp5t_H
z!`rTSjqO*#6s~KAj^yTP?zjwV3Z@a39avcoe)+hsl}(Q3wA_<txbA~(36kU+DpDop
zWir`3G;?`~rF)I<yF|27!$?BNft<ocrcMvnNekR<*H{x|YA0zIVH8?MZf%Dz+zYqZ
zSc?@Euap9e^jVh^El`nA5UOnrZTDHdg>&4|1Q@aKxN%{n<JFK*%2=7>U#GiiEI->7
zA<y9FOMA~PcQYTbQd#0i@+ua}2KLJWS8}~IHcVLNVtqmH<CC1(?*3D)B6$$;4{qdT
zH;;+!_Mn)lM$B3o@l6eBNFrdQh-(D7f?xhT&t+e3GaM3Sr~sk@gUyYuS3Yb5J_xJ`
z6X9;;>b33;OnR;ToXxX+l78;9E8H>ZHXKTg*-{V2IHLz=g*Q%jLy6B~RghiA;sY*m
zh!KdiJn^ENdx15Xe2T;%@I+vZO!p?->8jK0!>DpR*nhlvw8~l^dZi1CZIrl-Nb_Dd
zhK!22(o;OU%I$oiHTpWmP;J{hdfRD%+v#v?5I7BGdRK@Pit-kh#xk%oIJ<~x;8xPZ
zluz8qtF4C-mEy%BjR!0l=?%~bfA5~TrptB2Q1zVKb>iU%jNo6p{M7aS{SQ!<_kMWk
z2uTK<Jlq8T>#qKZ4DT$cPA?Ay3VyVt%0%Iv^rbueFC6_$I)_26V62ELg!X*uM*U_V
z6?4a69nmiXOU5>w@_}2?G5G~|7wv7bV($;!y8W!8SjP`h6pU}M-`;dnf3cQIT5DT5
zCctR1%}*_Ioe!~J4~wV-NVg33w%1)^i~SmFjP4PRFXPZX;AcluOWfH%TIJ9>5NuJ`
zr;TSe8ndkJZ+z>fZ?NiU!)jUq9;`R&46Dz+3db5p(Iu{TT5<y7m}+tMfkHvjis!jO
z>#Tu-dUGPdYRLwTS>Qg8x<yZf6E|&w@{(X#G)LWH{|)!;uGS<PRGw)Dq}%n|*Y533
zRy-I#!0IG96JR()5dm5Lrt6Os#_AIuC$}nTt;WCQZiC6BP>hq(km8YH<Za1Y?x!AB
z(=YzL3Uyzq7P*>O^mFvhlDE-+Q+~^v?k{iHWZ<o*RF)%zOvHvX1qmklLH66ud)0ox
z7FQ%l9%7nvP$k}QpS>Mb)Rl{*p;XZ;1@+@)WXjTHy)@sA`>S<JJeizEwXeDuuej>u
zDM)_od2?QO^FHjPD?J#K5BHgAqSjdIJ{e~R9JFYid=qL_Ni+3dxLwcXt|;hU5h1EW
zkr)vY<165v_}#-RU5~{)$%^zw*20F4!Bb+LD*JU0Hm{&kC!djX{Y6ZOtl**j(*5g1
z+K*7FkkbIP15O2#0N0<4sgT-Tf@7cJV}+ZePr$Je5{UPLNMHvyOiC0J@iCmBe@BT6
zi@}9joZ}j9j(7y#4dWhc-{C|fa~Hrm9I1b~4`J{KP#2M8PyoP^jctY7Lx?DC(r_DZ
zk6edMnM?-!PRuLN?N_@l>R&>p=$)A7iKwHoIpS((%GRF-x#FAXLXH42Brs5RF#vKQ
zADQhQkVGq|K9O#r_%x)kI?YMVc`wvvXh)B5-BBs>eTivJZP5`@nd6sVJOAF!qFAKW
zg+wQD#iDns{!16X%?5|@nWQ9oez~f^b1KFHyYg}FplNiUzm@%ulsXXJw25(PMdcVO
z&rTA8)Vn>0u^_NZikG!e6y9vf0l@<Iwm1P9Y%~k>`P@yhwq(V~_Rel~1Aedt?vE-E
zPS`}8a~8N0``SmqKPZ<44qQ-#%H^)R<X($0!uFudyu9|DHV&pv1i{dR@7%J<jem_c
z^UPmD47ON;vaie8n0yP}ed1fU=No3_dWi#z=@;Tame_~<M_$BO)ZQh7%PYU`DAY*s
zNTrP4UKfmu{VsFw-fiGbfIC;zNi=2(MC|tR-nhtJRYescuyrs`4G`!5r|UexqpY(3
ze_eZ9>?i>;^WHZqYBZBf8j6}m0?8yH35kFT1DO;u$;3=TNECq;Q7o&jqGDOV-pgV^
zu{W%1FNlqwuq%IiA%e2&|8veefdt*>@$m`w&U@ec-h1x3r+yE@DOgRu2c3Ek9=06V
zyXj&8Md9M}O!h<0mr}Ep=vtEMrIrABp&91;yPea#^0ZQ=STWro5MHt3YUeFV9rI+-
zbmD(gy&9$fp#g~!z1z8WEqwrzU_BHIJxKp}vNO%xJDl&Rl1lPW73rGIZLL&d5c4V;
zqB;I5XSozs#wA8lbhkLH*{3v?^p<O!KT{4C*}4plE*pYH*hC(7?xnUXe_@V^2u4#j
zMw8gJ&I^n5JIY9y=GX}052-viJ28sql4VF-HM$Mdh+Izq<ocCPGNp}Ksv;oav>m>a
zZT5c1IqL7s6u6h3>DU87ki*9Ep9h=|y!ls(R0$Ls@ot>3OD}Y$wJ=I9BnTF&k2@L}
zNsoH&wa!z0bYURJStYy$0Vc=1y~sI{En<8DAoQvp!>i2570$fZ__^eCc&CQ#=*H7U
zy<ka{>0aVA-l!{Bi=2|Mx)GHz`8p?eHtmF(5iBC*j8&`)Al8|Nxz1aHB_?T*Oj&20
zPV~gR7dh|D)NiN!RjU>VhDvzzL(VmKdcWV6gHEnGusW<gmLUqdFLM45gfIyoBOKzm
z=^peP5@gU^c$<iXS{6Kv9R<g1Ru0OAZ<cfD`?`l1lR7&a#LUDtW}8(HJ6qowKAyuG
z!d|0h6hgMR_U=x0Uc>Ao%pEgI!Z<{oS>f5s{_Tu=);nad0{Niq9Fg<Z{@a-@Rvds2
zxRJQ5*nTbaIM;DTJwON7B|3aNw<{u&+`jGqb*@C%=V~a#S|K)3Aav8rYe(5+xiKKQ
zjgXd?BEMy>b0|VBjd{4{NyW$a3!A<t=8Qm}+QzG9L^q0ds=NWbAF<zNX?4wx4rdov
ze~7e95}3S=A~#$IZH{}4b^ry_0eBKB89^jzW@v}AdK4Yp0JwrV-{9`C{*>n#WjBAr
z{4jnA5g_NNL5-QWq}fluqh}zSQqx$56s!5+2f73@7zr{Bm76+}M>`8n(RbI1T&vd*
z5fLPc$xX(22K&F)$v@hgUK5xoJ)-=B56*oqUncDOj#<u|$0a^MNZfmF`I*lDljkIA
z0c#h{>2kFUImW*B9@CI`M`6mI$gFB=YlLHi$(QS6exGxGvkqBCp#bzG65n6wa&AH0
zVx^&QCbGlZ*+aE#Gb?0T(4|M&&%fkFg#5?8ghtp!7JK1BXBGers^cJ<f*1>#Ce*3K
zwZs!5P?QULnI18+2cgI-=R1wn`g&+ZZHJ5qH3CWhHCod)0;q4UhpWjd$<bCE1<9yA
z?0n~k6ZB^l0xaX<IJ8{o<YgzGMaB2<807lC{A}k<Ps2fW5bO?M5*cLP&(5R$WuU+&
zlF7rsMe}*~d*`j`j3m&G@=3x$c}VOk6Mk@xyg<7u848US9Sy$l;09+!i#FqEgIU7;
zctGN(4&TZCYnslAh#I1OyJYPc$mwymj?;F*dnErrfG0$@EkDb-vqU>k9K}@at<27g
zoOD(O4p|lMl8=_8EtLN<XSz7#bBXWqoWJsW?%0+E&dFFlpqP9$qhrN6Ak{`c(W9PE
z{U$LeX^EXHKXZ(jdEsf{4y@gR!p*sOYLs*TOM0V^CC5#IQ!^Fz;<7&Hg&YN>te(+?
z`VE$vIH3UB3<&Hc#ZI`<5y+WCS&@ApsBNThXsa*;a7A~@(pLC#9C=8LKW!pPHi{gN
zs#0XX2<Q(=B}1np3gUvYlHfRdo%ibU=9xO4*qgx+U4M-CbFpop3`i?*?^hk|y+vv~
zpiAp~5`dtSV@MP7Qz=cfcASUUDY?Di_-uPV@jXQ-gYrdEhGYJCyV~lg{jK7s_Ru)x
z+evTaj+QkMIR_wY!4Ac4U&6oyHAw_|`$=}|k=n@mQ7$Vi)#SD3r4#K$dKji8#_zRA
ztGHi}EVVt3wu3a<26iLR*rI5%kcr>t6Ar`W7UqETPxBxT`Lu`?k-778V5sElnN3YI
z;mJVFs_hf>)G^-j0SG112lt)4Cbe5kp+piQ?ChQ2|E9?ZNM5BB)wuZb#M+}`1LBAD
z#JHqr>BnnnG3-@v9PoxYUS!_u=Nv6H$B3S9oeslgz1ehj@w=lE9|<@$m`NJtv3+TY
z)xnOSw8nH2Qzlyz$|V1RcXD=?jJ5lE1m|@$VSJzm9tbJMJ({Wtx9ZNzA%tifGxVjL
zW-N5m3H1`yS9Ub9`*g^}r8XtosmQKuGX_0GyTsIaYhvml&}#KFC6IlBeJb7iAk4!;
zRwA11SJ6KYL7S2YLXkpMd)nTWALA;PG6K9;B(81eVPJ=pZ^+ZZguZlnm48%a+Qq~5
zy{rLWDueK;{8mmKzeUc#8w`ySkBM0^r+<w6up~H$`4SR+HH{%~B}m*V@&y?+T<|B^
z=TFk+8ZD9~bStXCmMpIdT_zWQ1iWu=aLMR9|9G1wRqG_K8UR`9mXWZ75v0JrF-e;%
zAh86zF9WgaTB431N>qJh3f)mHA}3Z)DWc;MKa*iI?mdDrL?=Svipyq*E0T>qM!<k`
z0nU<2sSpzOHA+O}*q8bgfw)pal3Ib2;b`$mYrWRewivaakxh9iRa3Q9Fp+^}7H5Dc
z<?tbi4uNGLPMqu^6k~D@hg+mNrkdTa%C|3$)>%o?AsZ{E7f3sLveyWCge5do76-`T
z#M$xSz&xZdrDHxKLC1P_c(2D)(%E!~Uzn;KW5K=^91+oFVIB$M{9nhI$kA=bcpy-6
zpdToiAu(5XAtHksfFE4Y{~1=6ldd{uA+5RK2-*`pP~?CC`<vTK7@lyduCnb&%v6Px
zJrVtN`ysCAs!t`Qzs)<CLVtiUZv>T^9m?Y<d+b9DZnVESM%yc;(5oCDUi@sxUh1tc
z(}6UlH87wR8s-3|iq=IzRXVfHE)(pgY#pcyh9;b1@FNwm|G}LK6Ss*N-(j`MLi)nY
zIQViXxP#^W>1b74APMFonAZuW!&cp&Zx8cWfG`GamwPGkUHH?aR*+DM@Gi&!ez5}8
z2#*c!0<^~L%v33}aNp_vwR;Ye9-<1GXA=1+f@`W=|2I$d&)-+OxVziJvk}x2ozzF#
zeVTvYKWirt5s1hF-hkqhDz%etj`(*wm_BrC2vy=jiNholZzEd<AXO?7t?_sGYaM-_
zNE?wC0&Hd~s=1+j;h6^vTfreK!|1XRi6JeG0!F|>`2D|*(MK>w;G^j9GBJ=P5pYqI
zc$`mdsP~WBPahXgHQBU8ixM0RWGQN7%<rFlly*uWcysIL^dT3ea<Q3T{Qf6K>F{LU
zqc}*Oei)D*2H~?anKnD*g#BZ8(;w+4`NnZ}<pcA2C7#(^0dgMit@jrl<b4Baj?^lX
z3CQf$`2G8&YKNr8it$i#JX1A)+UNhuzwH?$CF!8tjk(C@pXqMvNDM}-$biB48ph%o
zd5@H3x!&*3K2D#>i_RkCS-%pTZgZpGf8!C}2Yem_-fA67hlm9&WSWs}{>($R^%ceh
z9v3Z{&#NNWghj~71o$=GWKH#V@5S#>un5qTAWk}YHTAgC&BIgtFCLh9^YpF;Sw|_z
z#;35xBYgganc6vc{iOs{V*T0oP-Hgv!ZF<f_2P;1T2_gx<{8Jo>hRxv7={_XcrhQw
z;~4P=zE`l${^av-3I6UWZllC<@Ki;#NvMH4Csh!C?-}9WRH#o3=*R$sH_^d?@vss2
zcsVnWbtbq<PuKewdh~%~EJn(RN2vTDkRYIlf8V{mwZpTk>&8Juf?77k|BH}4LGyB@
zi{FBour8_f{>9b5e<Hj83E772Ly4aH!W922-U%9u4Gy?o`6dGGt48=6^7Na~A;Ya4
z9JU65o@1A59!>T~N9*S2O$RMa&X;U?Kn`V^c`NLH(qj{V6NicCr4OZ8&qUP>|IQFQ
zD^d+fjgRp^4o;2KUrqdog?V&_-<2Ps6T%bq%n<y;)d#=@GzDR0=a_$<>Oae4Dm5Ks
zNOh4>phPDbZLQP%vAu?c#tB<!YxGr%bR&hZ%d0SMg?nu4trW=4knkAJK{a@bi?5-E
zJ#dW_JD<6}qpO|!GSdeed3BS0p@-_zR4nQtL=VJGk>Q>Qq^y0N($g4{W+Czceu<F`
zCRmVr_@-pVu1A-J6%Zwri!E!X`OaGx1Ca;aG&G>4OW8Y=W>#v(45#Zy?J1T*wj?3Y
z&OoJ8ow2m@TH;!zFdT&}vdonI9WCgI<Rnha=sLxCB+0=ikv(rYNl7Cg0fm+NJ6$cv
z;8-GnALA{Xc1lSblQ9rNk%UgDb3ZNqM#?8<tayv~)5$o+d&o+1@%i|?l5d=XyFj@G
zO0B2OR}Q*eZIpy-!Xz`YDHs|stG76}-K{^UZI<j{0T|VebAEIlz09j&2Q!yyrYtq7
z`!Enj4wyZC_L&E?f4o2wZ>vv~ZjKphN8h786m*tiI`RZ}8)bu^f5>~Hxg*icX{DG%
z@<Ss+m6(IMY;n@Gnd)*DZtX<-wl7KW{3!6ENmkf~1f%!5KU??Yk<vk4XA1$fl>TZ3
zY&6>kO2^R$+M1k^N#r6ILQ=TDjG6Pp@S2rL(j;{$#JFqx?+-6u31B#ofDtY_@G3nY
zID2&BPDHF>;mXD>H|9_FvgJufLtYhL3>FDp0PNi7Jb58@Hc|3$bG9&Hl>MMN>mN?!
z@!^ub$hBKf=nmU}4Zw#PbJk(DT?zt1h2gl@4ghP0x%e=<c0KI@%%#9!Rk6lmQS@O4
zc*U_xW{y}6uPYK8H5b4+*VxM=z%OD=Yz7veMVGKmvLt%0v&mjZAzE~ASF6~xgC=!}
zJ$r`!o~p^+h+H%yhy8f1eeX1FCj3HvE5cdv)x1p`wW<c*eX;H2Qslzyw#5EiuU#VF
zK(`3OLMOaB+f2XC-tN7lFx;xf4fMmH`Q&Qb5!PoyU0DBHBE4wY@+OvIi9I4ZTn=h=
z3-9NkW`oC^VWxd!?_5Z6Qt*iY$OTJ2ha##0bH)gF_%|a2F}rBClraJ?JIj0)wEy?z
zu&8Pk>>hcoq~wr%W=<UM)b2DwIuwy3+SUb#s&A~K|F%(CSdlH)Rycca9DX3{SSTP%
z$STI<)HpAsQ=JPry{n^v+!a|Y)YYIp{PuT73Zuy5++Z99J9zwYhd;kZvb2RFIH#zk
zBbgfI<%b6zPJWV2#qv!So7{t0QetO&$x^JGt)dBwn$9KZgRVeGPufe1lY$2s#+t~j
zo}S@DxleuFo$+7R17DB8H0z6W#K3^+sDr!MkL`t1+4EMggvDO3Bc_|BFS{r0@&|=b
z+2d2*a(^8%@=18>d(`^n76EluPSeeQar0jqF{nM=M}|(Koh!8(Xmun-+!eBkM^1AO
zyaGUBAf1t(;r#gXGShwB<WDbjA7gt5zJZal6C;JnxlTG`Es<0px5*p8L{wdarcidF
z?RJs`tGy)B*dutfa@2{YOE<s0;85>XO3@LxigLh`eZ9(=(5}et<JW;=6bBYnAfj?X
zC=*=UPY=|-vdFBB(4t(ngmCzVQY2H7&9PVznh%Bbmkz~QPgQe;bk@o>_)10Q5?41`
z$i<tI2JvIU?Xna6I8=$H+tWZyL2a)2ZjRk|bW*55tYWQRF+o#6(ABGL_QW|!p;APk
z=6Y&<#aZ|+srOYKG|nq_m*S+*1g^N40G)^vR5)WD<CV{~mslOInm7_^tt_Hs?U}YX
zmJ}L~w%Xj$!T~BTW_jPd)IML76e{7y36mQo)R51sGw-mSNl77WeR)0d;;xP!Q&I`_
zFPdt1n?Nlw;W6>JDW1rtV%j*gCMi@YeiV|Hh}f#;>cuEAB223&<Q)uxR39;QfnpP?
zwsjp$1eEGXH}fdN9e&&+cFm!*VbbHSg~?SG<;XQI1<C+mrI2W+e!mo2G}YBm*k`qN
z#>Fgv7*63J)bTP^#q8t56*e+4DGKK{ruanXqj!c!<=)1+N8pIaKU{n$9CuA}z6_2C
zjngDc)=yR`REj+ETBBW2%i_VLV}f}tMVsL%*i)*r?1JZqh3YVYXsiIsO619f|IyY0
z3Fd?)>Pl6YLIcaMwuS6Mje-TX6N?ZxdHHbZm8tHY`?D?#C_)QI8bn!uT_qQ#pq3+g
zd#n8*$d?h4iyY6GFtxg>Y_p-&ets0o0Wo&Qy5*UgCaO-xFc=q?alLGqA=wH7317t5
z&Y--PDap$;xwRH#!_X<156H@_N9_%pvNDq1nBXh#4hz+gHVHy4=#xOm7c%j(pY47_
zb?=dJq7o>F!Y0&T+{_+8207-uI^A1cBrG3-KyPZQIBHx<Ikyc9mExA?WeS>WDo%lJ
z@=mqq<Rpcdk3!8zd6QJqEPJF{AH}xo?Un{8onVRCvLHNznA0@L21BeAAB=IWX*v=r
zBve_!9Iwc=XH?S#f03%Y`V2xrrn$Ao?r}s?s65*sZwWhyLZg{t!Vyxc6pgp7F)>nA
zagLc#Wxp*;3ROt~*QIaR(yQ2DZaWMrKv*`KN)E=+`?~Ev(990w10(AiPjsjZ5?r;(
z?)t^B5GSspqos{lpwc={)X)X)kOPuJwc-+PW{7dMTxF?M?zC5iDOCw(rX<JKR6&>L
zj<D}7V+g_x2q!`q0#CCvj|cYn+4}B6zSToQ8ZzYXo7f&>&wE&d@*<Y>n2&A!u}Ptc
z$b(pSqijQjXXz;X+TQ&tgCgQkoK!cbl-d9{O?Dsrj{TO>?}A9s3H<_i00HlO<1iT}
z)CFVUKW~&zzqR|U8Kx^qkaE2)u`J~tCH4j?D?&Dfpo4RXKsEgRwT=B*>n#?<x`m6>
zl;@bOW9`s0m066%pw%fmL9xv7dcejLw1vk7A9r~XdwuX4+X`{hnhy`eb=yQc8QH!c
z^)N_#1X_eN%8R&6*Z*M0rztsU`2)fC@&WUJgRpEOCuN5H=(MEJBw=dYvt?zR-iizC
zvi~<MG)W|>4yq=#n}QN*_${_;w+<6t6q4|tHZ!RL!D#5?cHPXRP@xt+<+s=kO<_6p
z>29zml+&)54h@ptFZ*KhOV~+@XB`9KNz_Smhp5VMWRuTMe%fvKW~zk((oeOij<}Tj
zsm5vi?GpQHmh!>8p2Vx+rH|XG^@F*?j$DC)iS^26>Z&*iLt1Rlk;*v>W8Nl}L;Tmr
zYzbtIR8$uu17rreM?@-#1jTN>=&fPWLn<1<8*Pp9Zo0C?05|DFx^m=B!9S~?P*{ds
z%*nVn6&`}u9-wQA>-3oFJkIUUZT*xst_>!Nzb_8Gg937b`^B5XLNIn=MLv!^l|)Su
zmw4(aw*CyI6GlqBJXDk`cF<C4RF-3@7otFIGx;bbAI!INGr6A7!y=8{vT>%c2mr3e
zg?eqVZzYlGdTAB1$EzO1TBwIVzgf#%7EdJq982Ljr^C_ly2hf@$+|Oj1%aymYp4R=
z6crdNcBQUbFXQkr%5>_&ak#cFPnGO27G`0j@L#4byIWkAj={`kaB;!8K=tO=TtYcg
zS@YNN`jKM^WW(z29SE31u)qc{((AUaskzhppo%gCnV)X4Kl|A*;89Qjyth_Y;q!gl
z9+~ek{eDL0D~-SdxO>a8%{!;)u_?kj+7fAKAQz<3luTs2QFqu^S!eX)eD3Z9123v4
zw2kD_ah06=uVZ$fzv^OD%xICCpjE6gCPM&GLj~eWMe>bvIp>)ACoCYdp;C?456hJZ
z3(7Bn)7+J5SC7)G0@H%jNJ2v)8jky)ov*PV%Y=%=V^AOE!YYh)3tK=mgV37K*3GUU
zLQgI#gt-inMOGaRyAV%zM~eVnn>+*wP}Zqw5~>b}ii*ygUxO{T>>2xR$1ov`0^&0}
zvBl?_t!LT;i*+vwsTUw?A*5Y#N{)H#R9i7d*+o&9HVj=*aM?u4>V|FiH04k=)LWP>
zzpt)@wSO|!MviBONEflhv8pc379+y-4&Ow1p0M!Yf)E9H!gf#Ak)5j!&rl@THd6>|
zIqw~N7&jhLQ9&$5v5;0)CChwOW51Zfz^Vnv>uRbYt>#zkn+2>RcQo_@tC!X9F!_A_
zJ~vtd4ZT;^b7DjqD9GpF&ug$n3v_+i;cjS^wMBlx&5*m07f4b=MEC@pRQDUPqV5ts
zN~qE8Xteb#8kF+tIbs-*eX7(ghZ6G3IW`nV{3<cN+K6k)5nhfv!Gf74Kd$Scs4HvF
ziLVk;z~KMyZslgw!REEXN~vlL?YLDcPE`Ru!7c8|319l{cXtd6oigxxD{75Ww5mD}
zhz5kP=U*Hq*EJfsdJy$oZLYG*OOrw&F1BV7G%>&A6H!-HX#EGl?kT8<M@U!`H^iz*
zw)n|mp$bBTgazS;WKs}$h`C~?KXZ|CM+l*wSbXk{qEkS&!*TQdFp;1p&Q8eT6A^(g
zpJ>U)kh4^RFxV{u7b}`&4w`Kr<1mNN69pztI7mKL&9^)4`gD~{Yr1>%%Bm`6zmSLb
zL9k@$3Xw_@#L02cGLDy@i@6H_k|)LcO7O;0&j&(8oRtGv34akWi-Syg%pOyRAhqZ^
zD}p2!3sx>jX}fAvnAlfgorPe{LBhoUa)(Xg`tG%txv+BX#*Uu0)^K-+DX)Zg!pQ#p
z3kQmyBXUBRl`_av=UOsbL@qa`u-!h1n9o&Q5}7UZ%*CB!-v8Ks4$m#7RSFoud;-Lu
z+2@h)*<D-(IJCHEbYnBjCt>^C%X)0<dWa9Hmtmm7pitqplUW_`J@h*vUJ-nC`IOu#
zpRnIt-GrK^7)g1|kWC1hiDz1H3_~H{fnw1%G$d+>C)AJq*)+IDK{VFLO$Xng<j=pK
zv*vVUBf(Q6-K2C<uDNtCH+N4J*i;~IYKM{XbMCRAnUv>FdjTN`Lm8jJl)SU_V2f5%
zMyAdu30tr@5i+3mR~Or_5c4Jof-N_VC;wIz6ChS$E09-Nk*cO1U>JFzT12&}r`zaS
zD2^*v?U%khwwTq2BNp@eo2J=Q;>trxxch`T!4bZxvUj6capfQ?snVwsc5I5B0?R@@
zA?CM{h}0J3JI0v%o6UYs?_#;Tw_U}Va(93P9zxrz10XBG)=LNqMPoQFs>f_nL{ben
zWbmjX$Jp3@x}al;_$0Lvlq?uJtBQF2oPEC*(NgeCv6zUagDPfo+}nM6%((0{##Ig(
zYE=DC!$h?NDV>ljk28WvH_`rdiqdNtWz`DV7|xfFs+_wpt~RAg_8b(sZd-My5=%KD
zO>*ZImFJp+Pqk}%m^QD#TOg-h<&o-YSU`=I2}kEDA>5twBWgF-MLe5xijLa^g~*Z1
zufb(;=6m+yv)M#RZX`NiCzwx;BJ?kp9oGQNBto<!)KFCnQ-qy-j#!A;RfI_+f=#1%
zVve|CmD6)WFvEB^htQPPFna{xvs(2s;+m6>^5LE%%vkaRw08OM7CVg%=3sjQrfxiX
zHn-1J0Vd2UYshdr*iy}Cr};I2wp{*}&Amv)b?66EZ{ZPPWPA!t@=}f@fgQz7x|ZSx
z7keot?eZ$*Qv~C!Eaq4aJ|YRFJ|s`2q$*d4@3A2eAN+;LM7^fbPqWO<E%rwAQ`+^i
z=dKEiyel744W<>pNjEtiN{px=Z~#IbI5)M}Kk72wj=AU>qO|h><Wq>a#DYg(LNv$C
zjICXqi(MQietz2`8~K0^_=to$VN4a~4iL^QQ|wKv^!gB;wr6@zJr*#!@C(1vY*XGD
z7UHTcXlm|Io?kr)#c<pl`}%)5X`CA5;g)Wsiw^b)nGE;utq>li;`8E7%5b!_{MQBc
z*h_Vr@ZBK8sV>R>1kIQ2DhQ${G88IatXtCQD@$1BNV0qXCcU`WQ#^{iqpCPtyvB<v
zR3XV@Q{t$4qJmQ`YoVRJTDegff?0E$uZ+51akvsC&-Ze7*+se1K+!tWw4LC71PA5i
zp-5+wxO923+5JHGYpTC<06FCBgi<r+28#L~?TQ(K5oM_wdgSUc)sv9IV7X<RnQNBZ
zAEFOJEBWOxC6sHC+_0phKJoL;SdUL^uIS&;8kUC98*C>h1a2lI!?5+NJ-S8fRQvNY
zo|enk`^Lq?<b+g~A#75eKK`h>YpNsMle)^4MGzBPEO#hMX@0C5a~$iKhk0h}X8Zbl
z{Yo)bwc;8T_%OZ{=iOm$?^jAK$`y1eG0VSjo?ZSPb0WR2NiuMn8#{z22hH7A+Bae0
zuuF#O?7w&`;6zAnV*5g!6URcrC{T!EOPtcx2kT+M`h^jJtFDU8J?vb2&~03RLFKUe
z4f)lO+{!Y$2>BSXgnB;-TT%^j$)uBQ77IK9TLcAv!o(~gTGg=fbDy_mOZhr*Hd%KP
zgVA=zmgY#UuH8}GtB8rm&)n0(M~IV$HP0{`KC{2|c-9)UV796T{%~TS-Ty!(5+pIX
zXnW+^;>s&@d(quFe$`N}#P`75#?@lS|9*@co2RQM<S-qXOpaQnP~xHQEBmO6wFpN=
zb;>ZlQk#e9Jzk`b=GHi}Rbe@decVm<T1<)P()ntU6v`<m37P}1u>1W95mU6XC|Qi2
z23cMVX>7W{f=enVADo|98?nb6eQu}HPppu69nq#NgA7!PQLXSBdo6p$&XkB&X{w93
z>5rXYo4E|(2E{^h2rf!=N6xSxbH8B<nn-a<2B_vPfX9wQ>1F}+^hoXmJ*-WRnP2F>
z|F)7=UbF{!RL|}E!`vlXkV}LyMG=lkyT%SmEyO$RiP*w8BYAC&l9t5Ea7G}v9D8cL
zDoQXoAa&Tm0=E42ckP$R693a|1N(pBQ+ort^!N-jF*+lnOUf}dH>;e7poMsYy}^e(
zkbn%qbHGBao@GUz5rs}N2~oAYla8Fm6*TfZy9aW)T$N%4fnv28-tNCZWzG_WU?v|&
zNg!Gz>3Dkwx&SOsUqgp7%8;0qh<rTnJf1;067T~hb5S+VoMeHe6Um8?cnMR7KH*fH
z$n3q{7xz^qY7&!{>$P|yC-S{A`<@8AVmwFE)BBQ+Y_qk@E`;H7Uy8k3!r0^qIPt_X
z`+sz>YgH73#XyDa4E211`xYF%4roKMu!hZKWatsMxeL&XnT_18EE$9|DZ@<J)xG#v
zl`o6K+zCRlW!SzkBg~ngS5`UIltl&PnnL4zajspJhgc?2V3?QK^s+LH`X^j#KgWDg
zhIHB9F2j3Ls$L>_Xm1cWSGQ!Olws0H{+m61rmlUBexwjuC3}Lra0HSmH_=$JTU8@`
z&;5)2YIj|!>Ta>2RB)IGX(RJkXkAP-=+)3jOS%=wiKQ!Su9tJon8jrnYHRJ+BbC#r
zMbuZ2ummBXrJK7>vJnI{9uf&&H?+76%Bh>Gwsp>pcLQ+0!ZbNMndZ8PU4cm(vMG;%
z*eOCkcA)ih?V805BsTtS3=^F&OXm749tp9?l542zg7OFG#mTlEhA<wUiWtR;d6o^#
zloUz(NWB}FDDp`kKuE|V0i8l=75Ff(cu2W|aNy3adc8=nE99CvX?7)|7H4{!HUM9R
z>^R&ITtmnX=LliL3dKBA7?%vC{SLR6e5$-{Yy&Gmk~M)@aJPWD?m~O*$MkrYApXG4
z2FmLJU9J~le1Q#O1e}cSfd-liHa6&X@+3O}-x9S5u>lS%MFhm2%oOnOh&Bgj<iN=n
zdz^8_jVe<kQ%XcjBW7f^mDC_Locf+U_%C`zmxZMQ+l+|XTDhdr4PAHKaJ>b`!AX1-
z4OBZJ-U9yum<qqyy34r~z@TQzjmqLMfncS4!9Fubg{i_WkZJ^-qp&!`Y*`PKhR(Pu
zMqZgv8O(Fu$@YM8Y8I#=-HQ3jZjY<v3_zyg+f~kinYRk5s}Oo>RQU~Ov6SmcrX&_>
z<TK0(wOo3~2i@;6ma_+yh<6EXnQcguyZ(z$w5O~G*+GqqnX+K#tn(xQT;<B?%Mmhf
zJj)Kb7CwrC#bt*qiMgUK4+hH_ya>*VLRixjp52MHq9Bwdjsj7Ycd)WzF-V?e?>t&b
zLe0Cxn}`@BjvHcWvUNi84vvyCw1T=E5e#nP^5hM5<Ze@wa+_Uc={ZQ*BDV`IOA3Tp
z`-0uDM1=?rsRo*$bHP6*+u4P>Z?fIKBI0+&D})l!`jdV5++mME<Ajf46T?tKY(%7!
z;2`2O(I$@n$Zp!*FF(MrjXz0>dD10mwGE%zSBGd<DQNO!dutEy#^&j@w&gdUJT$0>
z3T2nRW1Ii%e}p%e0a9tqU9IlHyYfr%_8~Y&W=Wk?!pCT^tL*T*j?^w<x!Yps%v2n1
zCNBdZ6n2*WwYMF453vY@*Uuzy12D`itt9?&iCsHVOMFXUZx;f*_OQg5U}m}6LkLNX
zN;+I%#NoGa&1<M!x>=oXZ#tB+;TZCHwig&W-2S9|qyj2!W_8#XQbx*@2y=+FboF8`
z)(L}BnPVtceD%{ueu7+MOntTUz?~Ee%{G%jjN(mF)<IB|C`|I5ZOrk@&n96HVGS1L
zIrrY}lZJe%_2MHzw}9)Kd8N)<%YBlNLqH-CA81RZQHrd0wE*~+l_kL|=k_@VW{w<C
zdRQ`3ywby;u<x~Em69slRO(C1BI(Ia9m<Oabfg2Ci0rwoV;ogMc>tqXvpj@~<X8aJ
zd{VEyA{y`QlzQz1SFy?0-D&r|YUCdk8Ri9vBE#@p5*FH<dsrpnoF$UD;7{blIghYj
zvW8-q^LjHW@rS*1ymR4bzw~MuO>k-z_>|HB=8anCsb(s~iryS)iQ^s&c<4Hf^V}or
zw4=7ClS+BoK`@fp?*-SlD+HQmCdOmYBY-f8H&1Wwh_}Sh+^OU(sTZG~V>c8Z{RwQj
zqNS;`M=N%+O#w5{wP(G|4kC|(NzjF?Wz6C$+_Zar68hU8QLL^B;-JNG0i8&xSabYn
zd;2giuACTGiL3`$JSYZ*oMdg*he;9yz*#W~FnNJ%PbP6@e`Ikj%R;DdhCugV?d#8u
zK*vc1jk~ic43Ys)5i6px<`VkPq>8wFkW(6ICoFB<XnW%*Z6|l4ktkrX?rX*}*W+zo
z;Co%97nmR{;S}Krh(00t35-PTHt&0Y>N1J&d7AU_Z^{=jGYLpW0h5?)I!aaTWf?#q
z<<`LkA<^=55ZOdzdFpi1TJ(F^3pynYh0dy2C#%EE<n`nfZ+pGwhDeSJ1Op2nt#RBu
zP!@?a)a!JG0D1j5@*`*;hx5XV2PYht_=y}_I6^xLF{gU_LNmYr(reD&zAtzrw(Sd*
zb9%XQSSF$vQP8}!0miQr`On+lz<}+Q5N2)fUvJ5Ike^fT8D7Th`Nw0U?K-l6_^XWS
z;<5#a6_WU9T2TW@e~gRgI+a&{5&s=AloDw}v`GJwPs!BhY9)CL7!Q6fFlKzk5eE^D
zEqq$Ue|eE4A(7;;dx3^&qa@QPyn8_SeFXz(0)Zr)aQDfA^64SToWg7Bg<?ZwIHnW1
zLlq#ECx#&=|G+$*%;X4V-z5-UqwY1M2oDkDC}ZbJ96YhyFYeCR9PB8|%n;hl5C`w6
z&3Y)1)&y#WcrY0X5r3)CPNhfW_*`&xWtyMuOtUzDSW!y55@{>AcThaxEM7;wepZfP
z__6Q5eW%R>@*kkL?fDORVpxz=2T5q+bo~1#elG4s3@Y*kIkLhGv-vk2rjBTIZ5H0l
zOCR3qHH#udZiRd<gFODVwuXSOi+H0;p$v!|U@@6vp~N8T0#TQS>+Hn-aU?UWQ)7C?
zOY-_=Zx~!n5>Py7-bnZTvqpH(SyR=kH}UDr89&I$@-4ZXHONIKO^laPOVCU5kfT6a
zJFnx@*^RC(`g7e4)FBnuawKH~3i$B{?IUYX1NU>JA_4vsO0LQqCbJKkjH31N80zNl
zwVhCIk0N=A6h0(RWa>KYsUqA`(gFz%#k@7f-tze$JfMjsi3bRw5w^)>NhRaWiA0rg
zl98etB8ds4(zJi214)HwG(g!`j|_%-TSDz|bY#&prHhSbYuEi-ADJwfmkC<nnOURl
z_g`v9U6@=LLeONZ-aWzY=WY2ohKS;<)ZiBiZ0d?9R@TeZ6WYNnkz*%#v{R;ZCKZyH
z=lNgg*g}@DVImsHEYlP$Xy*oaLq!~p3Kme7x$0VX*CfJ!``a=I_RhY}J!8KSH?Z`z
z|LWKbk`TpeDe#$6AJIlJifQB;m5wpteV8)keA?3yPS#F$SG+d-1~@+EJYtdvU1alr
zy~DltAYQ>ug)1K5ZPs{k+}*E+_~KmEjYS_KJ~7*j`zB@iWBOCJkXDjD6~*Ay9(U73
z2Ih)}b`n3&GVi?ZlCh*COOYhjOlxc9nx|*Ec~xFV;+2{GuVfk$(j1<(0dxW6Ju`QK
z`$|4j0a|G0X3=oi4JtxXk72QU-hY2LI$GfKv)s%&eWI`<Os16l9)0(>E8LHFWhF2i
zbi`U@g(5(K%UHqwvDjnzfQT1BNs?NY*>8?pyBkjt?%647GJ%2tGwe!tb4Zsb6!VSq
zRY|@9TNpG~FHU)2skaNU`ppu{&d07wnR|!6x4IdOtB$UEV_tgDJ)@X5ZXw<W_ds?b
z2hFUy#+`G(_U#6In3^CS2{7+ssv<R!m8#illdf}@Zsqe6l#!N;_h<)dQ3US(HbFF$
z2tW+E$h?Rv|5)f=G?tGLC=b{XLBNt6e#&z9wrX8fA|Q$5?*H}83*B6P%{SKc#Ap2r
zFd#{C*|fktw0ws#GR!@HcZ(ngMy?>FO=FW8J7`8;@BZd(`@pGSeH(VZyGPLu4~UTV
z$`bdSQ?z|zV<TJ76cGcDT<YdjXe(0@VxtwTwq@=<m9%1$*uLvjFx|fE1mb(B5!AZK
zG=Kh^oAuoezeg4SAHUE3<KI(EJuyBd0K}>R5QC)GPP@cChGQ$|r;{X0Sw*dXy!fM(
zF;{4N)#f<7J`DoD^|_R*E47X6ky-MU9Ncu1{87q199;MUtV6ysn~T%rG^CWA><yr{
zDS?pS<DdR8CG{+t*-J9vbWJ2hd#9`1<~&`g{LQVfluV$v&EAXM6@}VJT~Yy%!o>{3
zB&k`_s9wFw-OJmGiTGd|<Fg1(r6b$)Uge%Oc&zP>2>v1Qv{OVW%d9`&y=*8Gr$7Q~
zTPw+POzV-qx}l@BG4VqtecwX&IN@zrfx{i`q*WooQm=qIDCf92qXzz%BbOMJ?Je0X
z2==^9kcrHtH@h2l=gVnVXFwxcAhl@CHMgT-GKhGs#V$uNGzA~I`WCnEFz<l@1L4r{
z2IBX{9o}!#&0e>=PspbXK0CZML9jb^<PPYl4il~*CL_?ZT3}_kA*cMsohGadOBXsO
zCy3N17Um3C2?|qrtTTp95N;*)wqCy2-T0ZFw|=f1NU+FzAdW;bL$`+F=cdZlK6Sjk
z;k^-uFnB1|1nPw3>Jsf8Fi*Pn5u`O}QNnaldL@9H+$-pVV5{N{Tt%XF0hTSdyU1;F
zpCPS_3<i72C#YEEP)TSaG)D9IuvIV&+3Kl!)c_x**Q1JsQZ2n*0w@)_iBHeTHY+nU
zTanGh^d1p>JQyBK{N7CarQ|#kog#v8i-3+}t_D_{IBvNzbF;t{L9j=NRC{AbkLN?j
zbeJtJKyid%!pw_CeYnR7fW)d&Jt<4Pr=MZzo*-L?TSfh?cx~C<bK`br&v+@2Ff*F!
z#m`ra<NEusM$h1BEbFNs{Fb@{NX@|_-Wu5;2y#A-(M7?OoBvA4IW|C!5BhvoFw2MD
z{7R2IH)-UP9E95S9j*0!d}po?UUuEN?ib@|XLMl)q*43$GWTbDRWD)XM3SHmARK1}
zeAL*x=r1X=USM!sIY^PbGdtY}%XWHF?)X5*<}#W=$|TW^f$S_FtpECR-Mun*?8?gU
zQKn_%LN_^sxcNj-dy7CU5M~^Z^o0HPbccPw`_b6e&z{*QN5{u~xMzyH>Jj4L#qhc9
zMd@jhko3(0cViAy%M!h&rBCe7AV`w(k!y|!yTxmEd@2z1!B!GaVJ?48D!O4V<M8^Z
zcs0D(&1C^FvXrlvlfoKEY5{z4=k=OeAaiKxlZzjTC`Z=pf%)#YqxsZ;c`uGi+=>Kc
zOlX;V;|Ong`=D}fVkBg-DVgc!#x3^YIG;Iq(pf&-0EtO+ZWs+E*W=Y>0|ZQ3Qp%=(
z@I7KqkGA#^q)(<tx|#B$9m-&QOK~5?YK3hf6i7Nudy)IVczU)`3NI&m*rOC^e0<-w
z70YD%ac`8kqnGi3IRC(9%*yl;p!3v)ZuMMUlA^W^Dm0OC=EEj8ZLRw#Sq{9Y1jAbk
zycu(E4ur(vyWs!aQx6;|RZeP1qKazDS|OzZ$t=+VP&dEsuXqk5s7$Jq<HtnKBbS6C
z#jpB5lp>-7n_-^Yo2d@Q<$(OBu*KQ`^e?@ZpR<mXl%vQC0wXLN#<0f*f9m&SBze+=
z<m}@B>cWIf92BC37MvytxNeaqn*q{KffnqB0QN#{_0IQOY1guu;oe^90q>8uT-xaz
zKWjvkiQ+8>Gad*;iH`RzcJ@4egapn@!X*%CbYzK5<idz^Mb?NAme@KX54s@?_(Zx{
zR%<UmO#K36*|zn&de~PS1L82j(F8FI>%hg7EsAFBLfj~la7D2TY}94dH1B_(EjUTN
zBl+T7NCa3wpG0upEyio0sc=Ik+(lUu(?HD74a^ek0FpW69sp+|*W5eL{nOrDEB&II
z$VUBQT7R1`&EK{Cfrz(VNmveVs{*dV%l`oBAl;nQW(!h=7eRRyUC}N$mz0P8aYoAF
zQ<4WX%C$dhTFN=64Qv#kgo~%AJbh|%5f^k>xQPPGWM8qy_dV|}3nz<#3^=6e>=pK3
z3O;5LvVYfI?rkG|k8ph;_RQ*twc{|NU~3w@;jvohJ<4SLu8U*#zq*i)6J3}p35OCU
zE4B?TyTi|S{+sPctXFjtvV#{KKtOh;8S;gdIA<tedss_;HS(Tsf-T~%V5<{?0(+e<
zTbFu1K{Em1j<Mc&exVSqrze-&FNsSi!>I;P0Zs>8By;{Qo~o5_W$2gLNahvx#w@P(
zA(_tVcav9gzvTl;qyh)%Gi0j<O?sX)`i$h2Foha|F}f)B3vM3bTpGD`fMwt5e7Bh1
zO!TwkA9s58OJ2!|Fp>*&(`?!$PvqOB&W1A?e24c^EG+Tf8Qel8vHEp!O05EhV}`7D
z=6*PG25hCe7u0CXCw$Sze|N6@?}!;(14U>d>l(2Lpf}Dv(<#m;uLus**RqkUMl8%Z
z=E$?0@QEZRiBv176dS?4ka|q@&pFp$tnCC+wV{g<_SB1Ii@guN>fC;zc8%TIOHLd4
zG)Q8Ca&p#F&gv`ZfnQS2O+2v3L)mcU)vKL_pKC{HY(`wPE1Co5)78$Bbu^=L_5K)L
zhv+OAWsh9rEJ$Ob7`lM;YUj%3K44K-KIGg#?RV|LZSAPF;h8#2hG^tW^R`?0xm>tJ
zy41%pNp&{%^mQ~cTd*5V^P5iPMZBF;%WVX*;S87`nZ@S02b|DzbWqR>fVnoB6_(}x
z=bf?{taTdO8}ALbZ;iM2wKS73%i`U7r}OEhI=Aw0V^8PCPFY|wX>-kje>hK{s!x@Y
zjoX8*n7R`g=8RjMb1(Cno8!OCjQ6gKM#*^xVVctFcRKMKbYdUU!K}IW8k-@(AZ5tS
zyH7f^@8wn5*q5ltPRU-{S+=8}cD{Rnb_#XHdt1T-KQ~8MY3E(e`aJr<Fk6ROEI>#>
zlh*B=I9}<em?z+iJ&+I^_Q-N4{g)B)t&{m40KGRdA~R>x00n<=5s!!sv7X%wL*TH+
z->!6CnZocWLZp>23|QHw<w0kUB)&wFi#gWZpt1N&T#+nIZnpXPQD^9B`bem`X<f9Z
znTKFDQy+G6BmoYOI(C=D!ca{o(;Rq>^H?v#;aTYU8jjSsPAUK+`Tp%0C+%GxL5kAs
zyXh=H)>*C)^XwZ=^nP7v-L+ZkFtswh%rr!jS8nzwnfrQOTT5$rW+w=BQlZh5z3A-n
zmA)yojsmp3VbXW$;TY3%^QYc;1iH*5b`-CpT(jVO2hE5FoVm;NgKPR)`UJp(Z(n||
zb1WplUxj_G@jgVt40sF_(9YNM5Kf`at(~2H<m`bUZDwEP9I=NkOHE&tmy1OO?t{bX
z=2gxwNArjj8;$cN9xRJ{vomk^?O%u^in-$YKp<Y~oO(fGHXVH})7Rmp0vd;kxn|4*
z&MuRA2~iCMq(G}uwEV+col&RgSJ$qKLnOFhT7{4?x`A`@y7Sv7JTdTC2H2$jV@cvR
z%!8y_G?a&(xmLHMCKjE6^df-9AbGs&xQ}adh*jf?<eD-Mzoq-bPF2er2_+0m57*by
z_nb-3@N@CkHxj=E2_QjS<^0mk$I{rx(C7_NU#5BfYR7t~tmYS#9?4^u%kI!yomZDL
z1TO11tI{H%15o`(_c^be%y*JVwUN^e7ArRAxlSjHP>)9=WNosA7GGWDbe^PBe!GpZ
zNv^nnIr(L$;x?Y<?pp`OKJfya4@&Jx1-{T-&a@T!d!@FPa0gtCs)WejZ#kE&<|+JT
zK>ss5_9c_D$XV~xMl3U&bT~MCG0S{+j&lqtql3>lQ|mwDgZ2Pqlm0z`mQbabJWHEl
zhQHxF@(-O1Do01GQ82wY<iFsJ!M!Ud<MT(fTX<GStasKrVU4-)n6KV<?s`L4d8`OD
zBs*}*1)g-uU!BZSCM*a<5?-qYs%4KlmtCTbVvlX>A&){hKkkeSbN&-f>tgLIC0H6i
zn_Mqh!o&*y%DeHi_WVMQYZ~w!TOM(CI!fE*_JDt3!sSK-b<e!8(y2*N!mr+libQHV
z3r*6oUVJc>7DiqtOedRHo^zXX_Mh~}MU6d8>w3d+HsQw^@|^PBI<xI1y-3J}a#EH%
z-Hd+9`P1RrlQ*5>nVNxK^@Ov;)ix5?grzphZ-eHzr=14cMGpJ1H}3J;)^!>kg9S3f
zy!5m(szGN3DZmVU$a#J$&%p^853-5NtU-W5uf50Fdzua@Hh(}PDO!+jhCb^gou?Ck
zX*Y*k)`7oALOX25?ESoRFT7Q0`$v#e(x9i@JDo-$Y)l(HecU#Eq!vesZ)c<A5k}iE
zpKgf{#77#P0YTGz)=SP_w=)vdv$dr~FOCGM2*GEYwXZs3uGdMFQLRjtnF`Och2uu*
zQ=v#NECiP}q%LTw%q*}}d&V^q7Yy`h5LuYkow$!--c=hrTl#wOV?yxoTe0DAI*Q-c
z&dK2MBQ=0iY0mr58M;;*^AP@fV)1bMI)u|;7QCeNE$69^c!wZzHuCOx??$dPh}XP(
zj&ra`G{}V<<BekbX10+VoxS*Uxb0+AnHjq76mSMN<yz-lZkqwT03@_+ya1Czi)<0V
z2bt#BS<bC616H>{pU3-0<j`Zzf9B}oRE1~4cuCg|3X33JTUJ!ohC33n7xZv8Kv+j&
z7Ty)z@uRqcNNrEM(Yby<?S!uYauwx^sIwX{$yaLvxw0nGGP6ZK``bcieGzj3z#~lI
zWD2oo2wPkJ5ChOAZZi%$ml7ffB_(A4SoyK*rZ=x^lQY4+iNsp=oD=&@dn&{2Pzf?+
zj=-bWv$WhYWnC@nX2kX9*d>DIl6##!e?zduG%ONO3*1CEH%AEm(mVNJq6Tp+f@KUw
z?fW-6kDso~)lZB>?W|KN5{2l<r<|3tAxw5-XZw%vYu1%Jan+SPg6U*kXNN32)kfi}
zOPra<=!{BZatOI3<g62|*mtk9WGCK>FS4yi3=}z{qAp(MfV-i?crsV#kI)UisSNY+
z70#4V+J*N-;_n(@Si;G0QDw<Wf8gkF^kVeD*pDV<V)r_$$IwiSm6Sl!1%cDhG1qyx
z3|$=U1QZRDs6h$E&z5W2U-W<c1R%{AE4kB<-AGcPD;JJ__DX;GwLnkujo_dFdWT*u
ze%zVoIBTSSCGAuMBH7uP)JkW!8A%e~lNWFAh|OB3(Iija?cd|z<WLFTQ3AnGWhL8c
z{zSWlG&_<RK&Ptj)}V6o<f&a+tI_`x#Ez#WZishdx-0Co64jBwfK&TYr(|sfMU_4B
z%p|b}8gYCAuQr4^Qz)df$v3Xmmlti9;u3rh5i=~n7yocp6pt7pgihKBfm1Qo6Oour
zIOCtrPqXRDLa&n4CiX@oORlOt{!TNYm4F;$hS72#z_|s@=69Xy_vs2qfL<eD<`U_U
z1CFEFbenVF*E-gCY#wcd6w)Cs!W-^za{fVw1mIzSC7?hhXtbAi=4mrtmzGYSpm{bE
zz>L)z<g_=OqS+(v;p`XJ1DMJo1BM7`X~DDh>kxrKqK(V|%wBN51F3*Zn=Airce`iA
zJuv>VSbZ<-FI6ydjyT<3(8lj&oSrsdwsHcgnS^D$zS<5e)^@2B*$u_^Ao0?P_uPE@
zip4lM_#ps9%<>m)taOKVsiO7XOEy9~!`8v%$c#_RNCn8<3^~JIbN3FvPlM;}|FS*R
zd-?WBQN7Xp`jS0+$MHoydFds)qGX40BvK^!vOQLQKR74|CUe=H_Qfl;1E(g35rDK*
zu`t)Ivb*2UM7i21M<0<QUESEZKnlZ<aG~|DW&Olh6KU`0?Lp3=OE}^=f3g2r&1Q%(
zJKot6>ju#ym`YV7Gv;DD^I0Au+JXuf0t%2BNX;S>`|1MQc%X)O4d@U^@23mw;|C4y
zAdrdcI96b%><2bVI%XT(kQilyRGl&pMqKwLtn|diavcINL+lLU9F-~SPFGhzb<0di
zvEvF1n#(VA=S;v#PZ*n|Rzgg19Vd%VpHb&Nb+20c`~7R2bTj!LcXTmNaM*Z&3k;!x
zDz0f}L0U@L8~WOT4vzF~ehD!jV4zexsKg(n%yAcFF`<DzS9p2C=gRDB$U8;b39>sK
z7rV#fG3MNllN$iHt(FVP%u2a6&GQ;1Jb(e7JL5igC^O`IZ<{xqH!*KoG5iw>D<>+`
z*aux;Xb1lmQ=<2c{8r+b1bP`n=!f06&rm-{btJ0zG#Oy9na?h8Pk(XH0AjZ~{4V$4
zl0mIlS^9_FW;RPl2-(p@h7{1>2KTR!n6E~75^vhqq}(xI7anVzcu}Pgl{qCj<?%gO
z0>aikhb<d-$*Pop-#@Sofvs&-O5yFSAm9W<p~g2On=+4$Ll3`q3KWFgyIK6w2ta9O
zw~O7UhVeKN)*YLtqqaz$PqXGSx95;SgW}9vmD0JxpiJ5uQ~=8IB;mvZHX}+=DsF%_
z*u1-9qQO`JyCXjo^QT->0yxJb5BvPnJXpTGC|P_nuqt!+fqaHEwJF(uu^<u(+(=vV
zzhmgtfVNS`(fsEO-#!}-l^!XhhV3}!!|OzU7Cew`p5E!3xR(CGfQ<MG1^_aW-Y8}-
z<SM}B#CrMlbpO-44qJgq1z3B*9RzT_x${RjE|)X|3#Mt&H2<cFL*+N*FQ6?;eFYHQ
z(#<ZX`46ics<4Vc5+*)S3<{-=e{-^~fOi`tJ{`u}nCze9Q(!kz9%c~CN~vCE19D^*
zffSL`{T~PlAfG@a2`Gy?&j7xbrPKXCGf#Sox%)Ay=tmIjm<|E2o9@4W1?PYlcl;mM
zDuho#09osRxoEuq`XjZkI?_CwyH8OC)47+IpXz@UR6(99z!pdjxtik#BFOQT5XdJ}
z{F#FOh@?bFBtr}Ko!B>@o#ekQUkAVfEi}M<iK0vuLF~NK{2zH}jn$IQ!`fg+)D8a0
z`fmWPkuNDrpj3i+PLI-!pj5KX0(w^!qkf@ma%J-jsDQX7qFe*!^*X;lMK?nL_p~2#
z9X}AnMVZy6!~E|oV^bs<ssr&-LI2Vyy*YG-|IanNI14lFEYV_xu;hs$4gSulI-?pg
zh6q0ZQxor^ZgDQinfnYI2ttIl6j|(mE%v&ge<f;mRV?1j4ebNcu~ve;D1$9_giF$$
zQN_tCp<6&7#rH<YDuZ%7t{&rD(~`Urj*e=8+7SRlGHAw~<9z$@$Q^96L9DZ+%AMfc
z8OO@XMxm(S&OqzpYSMQ^kNurJ7ku-KetRyj$2S6eNgDyk@_rQL_9Ew<_Wq{?=u@VK
z>jUacSb-ralCfh=RA6WI<V{$P=AEry!*IkEgNn{z*vTgy?_3&XZb*Jz_3$e&+T`~;
zUE<v4>NgV3RNvf6Do}g|aCj)7@TsMLaYnD=TSZvvB~KAN+%%NmuO>UKm#8Jbf&_jn
z`NSfonSVX*-d>`uRn5($z^=z`31LGor#<FAdLlh|lbTz^LV_n>oLt;fqqn-PVeP5~
z$QZY0rUW2tIV9zX7e~qi$l@)1v{IeOOiD_@x*@IozZE#_^A1Zn>*+zQQhnjYp(&$Z
z&{lA1nqU%HgvN4V9hj2zw)f+{jtw+Q2-P0LQm*`n#-JG=BY&)`3t>&>R=I0R@h-j{
z+Tm)K?UJ(I(4J`~Mf-qPoP~bE#Yo)5NAAD&*A*B~Yox7x{dy`G2xQ^G|8UPO{e2JD
z!=?ATv9ja^9GL1BDK3MNr>qv~3l8fJcXtgXFF@G^4y3CUcnUg1{(39fedvVb1x&aw
zOdyN4Q)|oIwwwF>9kgegyyo6^yzkP3PMBq$9O;^8M;^(?;(P3B0S2)8^Q29;jcnk(
z03D$^nyn}LK6uKvl!H<cj{zEF%#F7UC-heg8X)#!oC#*(Fb$YpvuyioBOXE9&Xa&M
z3LK#PlGAmt^VJQ<i666iW?v`L0+)IqD3EVwWxM{fc_3SurD%o0bZR!3?!|WOsZKV$
zy_V8=T@q=Lk>=y`KHlHHa~3dw5<)gzjN@p=InuHFVHS&(gmveE@Y~!TOXWzn$7Z2I
zVPintGMy(l-_`lG42|eks6Dwz_LCPl*Io(89*R;|y#TJr;SczjbozYv&diYoY&O8D
zqO0+dRF*Y+EcBD*B<)q<20?iEo(qiXG;CPU{Qj;}$eiI`kSI6cKq)+ZmjC(&eTcze
z!1yZZ$v~RCy~iJ#q&*&_E+cXGhtKs_d%sV-1oK1xTkf0hKh~Q-*%5>=h;59A*owF3
z`CFzZUQ!?K(RVY=b!YjDBidY!i=XdS?Dst`^1ElKhKPfe@PBc73&lI%_&Yc1uca{z
z2?Y^)1Lpb$fBvaS;`%EjK@2OdxG+A6*d>0@3rQ?b1S(5S5p&s0`<`GOk}ypYAxxV6
z+COH`ZPYd*`b5~J_F}-?60yZ~!<Tbj$j^+lbt`l@Vz5a&*Z$VP&tWg1u6mJ_m@$Lq
z;w$Zcy6M;^GzJ7L|F84xhsSDbUKB$*?$`jXY;)8+yFQI(hR5>ktEk5d@FmHfsBc*?
zKQpw*uJF(o^IBR2;*mhqfI0sXJ8lY3A*wMFVKQQo|E<lgETR#E4@D=V^@0aUg+H@p
zv5nMdyWl#a`-;gBeQ*G<BY~YVG!|F$_$4-Ly#BhDgi%nx+rv^mkL(asbISi*ZTGL$
z?$R&`XM&?HsKuQZ+8NVnMl<ZhiV5BTrYpXXY0Wv?UXnqVLIYs5p&e=`1#G4@xwK~@
zPT)d>7NuYqQLr1c?GRR+2PP85f+{UGHiFbz?A2pvCd&z!5n_hGHOw>z)Z1qS>=HAn
zf|NH(mC6iU9_GzPJ57E+a2U+`i<<30(oC`g>J(^v8n(}*K=cflU(d1c&Y?HUOa${s
zK97){95d>4`_X8K0BdFhD0FG31{dJu4R(LoRDr_4jnCN>1WAbF!7J^DJ#;{JOm!B7
zBlQHat2f#F2|7OcdX&h)@NK?4-CkR&ZQSAB0`a{;^I@5-Ez_4`Qy_A{mltl6`(GT}
zcq0%!vRdrN$9QjPCuTldZusJuy|bA%48V|vgs@9I0AP?UcG>YdT0XZ@3{WkkkAP`v
zwl-CpD`QAFxDmMcxj-ct#164Ktvo`*#hyS6Dr)s<cFsvOV_;7xN>n;F>uc>#vj4(u
zeI*e^e?tr*KykYLXD1!xp9>%(O9V!-U_8RtQ)708OkZ>(Vu%%OO}hAsEgg2Jqv(=Q
zHqbF}I%b%oPPI$3v`tT<oDn__mKQLiYwdrMb)-Ck@KMU}QX}vHyf(|e%f|5v!DqnK
z3Yh}~42aX2b}x30V_kv)Oz`rtfo7PVcH1*gmxFgmikOUqPnT@$)9s>z7%6BdiP+K9
zAHR>q|G{gmua%yGgogdKb*BBN5SlKOvhB=VJXBYf*@me)qcV+J>?AxSOkg4TF*)X;
zb8G>d#B>KRiFEVTT>EK&X2`FLa4{?<oRw_hV{86mA8nxr6<1Mnh(8jn@DFS3?kCbL
zT&1&<zztkO9G0g}!qTN*R|jp#8Onflnh%@ob#g+9QN^w=VN}TNpUktb$ZGRW-p1)i
z;57fb$R2X0zE0{?$l(#J8m@_e@m1P#pLW#>wQIcc`={BfWEv0?VQdnaz>WbiK~5_^
z;Y>4ivh69>O~{u-0NDh}OPlPNZ8?j_y!sHbYw!R(P#I=euDwcFnP}bwcW8+LW*aa^
z&$F8{wS%C~2=3K-2?h(A%tbayK255d%xs$}v3|_vgTLA%gsBSZa2s!xvhU{Ea(lF3
z<4Qb_9OUUS5>BM@kNI-49V!e7kx7s(ATTn(s1%%G=2h7nPvZkbS>*K00;fhUVI=pb
zYwSUX=~5%()+g9l2KQ$0bi0qR48ha`e0P>S$7|qw!zbCj8B7=)iHpKyxUuvTGsF=c
zkJ>ln+r?roHO3kv-Q+ExvOoq|*V-53+Q;Hknn)Q=F6A`MotM}rE~ZDk066#cPQZk7
z<KOJfuyIzdnmKQqA4By_wRZ@ufs}|mrxy{vMj%ES?FS*+;f!cnUa1Cz7NSvW?5(oI
za+2`fW7y6%e;sS5%cuO|#$#@pI>jcj@er3sM{zJ}l*YKRKV4*ZIfFjHm+;65DlZ-b
ztVJ^y+r#9(6;&r9K?hQ41uZexERNWH<p8p91Vcnq(RX_(deem0pFR3EY+J|CE09o#
z3)nz;(pQDPfWZ|99CoNy+nA?sB)O`qTTTX%cet_4gNyB)N%Tl0fsYij21#JVUEOA*
z^2u21V3&FwAT6ewhRIUJLE00q!ZOAU_)W-mo~(;qr#VG(`D1Va`7LU{b@+WQbSQ;=
zyu2=POupY>PpZ_O$x;o8d9v@HH`|>Hbol%jX|}{k2&VsIwf4iYj4p7Dn8dY=-W3b%
ze}!VDJ|Q;9P7!c2OiruaDl3TFf|Za9A2eZe_TOx2g}#coFV+U%q}-s8!saGhk<G}G
z2@ppDYx5OzOmRoC>x)Y4#e3^m6z{-F&;E6Kz|fL+7hPiGA|+_ln72`s!!)O~*tH${
zs%<y>U`ZfPa2q6vl~7l+rqUKo<JVO1qb?Knez;f~t9D$mJy7l%II*PWFnlzIW=;t>
zGwV`&J=6|at2Cg;fEQz|ZL@m_RSV+~?hO!(a6p&@!~AQWeZgZAo(v(2K$RT?8(8lJ
z_Vv?sM5<*-?IlX*0e=^<H;e%i9*#)}Cw52)wgu)|axo4%+lh`IF-Xxv@c#DDl>47m
z-EACx_MQ&ZLaocQ=RqkMpK3e0O_+jkWWP}L^MI7ypU~Daq8>MZ*+Y;pUC7E$4@ueL
z>5*7k+Sbnm0)%B@EOW@-DJN{whX(a9+`W6J9Q>2^<dIE+{+xxfLJi@aQ+^eVk6U8E
zP?Cii+&g9cufH2g60fH2lk&r+kvY&1hH8Wh@WRN=N9KV~PTJ2-*<0NPguHQfSzw>%
zK)|(>fei`tycKr*U}JrHYA(9f$*tCZ&&V~RvJfv--%M<Z`E-dtX`^oq27_wq#6jCs
z5hA$tSiklA*Kon+M|uDQM;pw0)PLOP$!p{U5Qr$LuM#6P>uUeY9}j939s1hE{_($R
ztDuO68*tIJhNJDGy>kQegA*_J|NLsQj=!~MYm2BC=9U%yf{n>ClhQEAuNV_CjbYm%
zFN1ae<wXB3!~ARD3q_a);t>!@q;de8KIJ_BFUh_gd#K!NwqD?0pYppNYGs(#h5oYx
zzBPosgMlLk2V&Q`;h5P`7x|yL?sq+6T6%nu|K`QMHEcnVY>BKBHI~`OEf4$qmiq?}
zW*)rIf9MrH`NDA$xHr8Eflu}PIgj~Au#SjY<;{(-WAu0iUsmS7;ALLBy;UYNf4u+0
zrx`?m)5)C^mZA0Kr%dtRa&__=wAt0+9;7W+Z}v<6;HmmPnVr-E#0QR*<GDxu!B3Lc
za9I{^?Zw}LK+V7}tnmNe@xC?4fO!ohfx~cRC7pZy`_}l@z)&h>tIToJ{8dAt4e%$s
z8bybd`YGn%6#s-*lGhNlmxpH(BO>vL_`5qU@way}0RgQds99n%q=fqDB!As%-=JTM
z@ny(m{vXd|Xl|3Oo#7@?QuVZa74=u_qoaiI$%&ScLAX=@D1!#y-ppr^pMdQN2M~z_
zclf)?^xL%2oPCe~<8jP@*oGD&UVNpo9>^IT{ibi3fQUbBB*MdRWeM(_?Em?m<TYqQ
zdG+CzJ_5AZVc!3SKk&V8hw$`3rq~Czho^^P_#=g_1|)WRZN$C)86vHLzmEZ0gxQcR
zSFwZn;L)TpQFK8pA+_tpDMO5AUz9*_rjbr`eZU-8;GQ^c$B^$#AH2{D`4-0|0UB7j
zi`uq%FEyU)$bUK$e#GafK<Lnc=h(#ll5XyJ)>-|HcHt)BA_S06f<92l{^?w_Njn%5
zjslRDT+SpAn~Ps@?)y!<iV+Bi4f37}LfHR)S={jAS*4(a-e*Eugh2iHFYhJIkwmFo
zX(zynSp6Y#4NIL>l4B4Y%-R2R9^8GT%+`|!$(vABTLgfj_np_j(vb-4MoR$051Cd|
z(TUSIWxaL@$hejOri1C8{-)FYxpwS0UZy$XedpJ2wXX<a7wbPY^CVL*-E4ltS^977
z@zyl2tvB&5K9l&&-@JE$0^AVa_8d-w?Qa{{rA4j?dP+>*o5=P}lEvWDzVa4a3KC<U
z#k$S6VI<8opRMsW5RTl*je%{6fK-Xq{PlY0{Eu{&o;SG`Z@4c{wABt@F#yH#HBy3s
zEjxa#{tnMsuWAFLSW-e3`hLe*=k*bKgLIR4Ej^EY>g^_U1z2oipWz`{ChL8t$|IXP
zAYu|*Dy2Ywe9<{@rM?Jw;Y4;ApFq6tw$Cde-CVx_Z5P~ummT*reV`c75R6b#N=MXe
zlnCNvH|(O6P|TedZ|a&ZwsG992mI5Cey<O)$O8#lBYd8fnQf=3!4D87p|UkDzDzU!
zH79k8j#GyD2Rw6GSd@h{^X1FVf)BK3GF3kk6fTuK_>R~1&^dw8fhNbD)Rs6;gzlR2
zUUQyE9GfnYl>5&H@*;bX`?L2lDI=hoJ=vWB^X03~s6OqeYzQ|ra5o4ZGI<GzQ~p<+
z4)05AFhXHW$3ln2=_TjJO(Vn%ONbFaHJ^_09k|lhfJ`-^xdT*SFfw7*3upVTev4K-
zTMf;U24~)l`~I}SH_&IFj_*IyydAZ>-;V2CBzYi9B&7?7jKnHG=ePHriszc(zz%Hi
z-JFh83ap!sL+#%4^@+(n-OUl=weXFz&vqZXTSVKd!ZVsNXc7*dt$wzSBs=qD9SP4(
zq{Ua=OSDrH@R1n8(^KU_-*kw5@l1Y!bxo`~@!rHta#E?MV|E*5D-ZeI9J5jF{^Yk!
z%yCe71nw~o)pOU|<a?2fI5_$?iJZvF!1a@1M#bzS0@O0_!?2H;io@*cdD>px5(Z2d
zE3wRuF#Vx+$sB!)F{}P=tM4D7^?Eg#8`~)!L+HO|zVrVIwa%+J6KO_$=0?js(jNRd
zku?AaN5j<5OQgo(rle+UpEJuVvMT`5fUg9#{^W!v=hdUM@GSm2%Iy*(LXHNnc%_w)
zBYj1Ps?u%EQ7te`?i>|{sc_FtddN|><s;rk#7)Fk8EfvvLXE456aDgh=f#OSXdV(I
z0XkIigWA7|JNxJ9kYi!=tPzSia>wDv+ST9dIOWY>kV+xtqQx^avCA1UMoXlJG~9*c
zb92qD&hekphIbFyCJqs!HOPr5xxra0b;v=J75GLWSCS5bX3R=wsMKZ0jN9BnZ4Sw6
z7G34g2b`)$w0&|HRLdMQB?$Jp`<%BQr&-c%x<qGd<&;2lY|I5WIzQZ`PhiT$N0r5b
z?|P^64nOAvl~EH5pBAz@Iu}t~M?cC>$+f}OARwBO8e-mB=5*XjGinnMEy4wuWl(}#
zURvqwv3&UdsBS{}lXOE4^cx5G#Jv#GicDtNOy}(e{}A3$9gg<uF~>HPWoAC(yx7Sx
zmnn7jD&Nq~Y~cX}_UoOBiYS`0<j3Lj<ZH99a4uWSQ{+HWc&aoC``3gf&1lXgmfF0z
z#L4*^zYt3wyoek?wr<7k&bh-77DyE6iHcQ*`~@Gc{$R8F-AGN}0!bmh0ZWJY=6#UW
zaVuQ^ubS~yynYt4FL}W}gpo;)xN8p5EWqcYv%rdDTETQlntSxDlx25nha{${QIHtx
z9P$zY6nr@4kiR3#ko(cXHnptppbm8=QcSwZKHq)qLX~3jaJ4kXHz3Ui@v7vQBg)<P
zrfC`?xS--7lLhdhcm8@|%F=K2P48hDK`?KgO&7BxuXJ%r>W|u0nrKe<v7a}blk(bc
zG-sOUF^IQwa58+{HFM8$U%i!g>(1ah&Y(z8mihEr_lMtjuK-51BCO$=@*x0yeU|(3
z3;JWhDF!bJ^Rf^AP<@{J(>mG_YFR=2Po#s(dW^ftoh})9eDiux=2dO<L5WFo+;Q!+
z2LvcDF4ACjCX1A5dX~5gk7O$br{rb$ps7Sko;bNttRfvf+)8-4Afjaf@rwQaAvU@{
zj}Mb%51dDmKB?Z8VfLNx9-6O$CBiSlR8J!(Es!ny^lgDVb-I3f1r(3WB)7acg~b6E
zKil2)z2Bt(5>L>d0?3#4iSr*OkM%fLy>>6{;x4(5uVtO|WqO%o>lE6HO?2O7gQZWE
z1kw_G2vfgIb<-B`9-{PxB+(LBP?mAp0q)6P@N*G*w&i~^HBMT8CMRy`W`SelvJ7PT
zxCwfGu*1*Lu|j<cjG@D^+yT>iwEOohI-Gc~(AEfZ#!*7PY|y-Mk=vB(B{jytJ|mog
zGr{^yc)*SSsOuwenu2nQ{)z32^#S>7f&0cAO0Pne&{>-#$!4;!>1N^8DJLD6ET1aU
zqon4t=A0Y4mPFk#m+LB&u8&5cpG?S*6FVg0#>luFM22{r5@bko2<-5t9<0i;Ls}K<
z)j95)5Ae05`63=QH)_=>RB$;>qei)4aY!GjX4vK>6d^5LJh6w3aA&uAJ)nv5OqZkt
zl2sZs&yRAWXK7b;v`=_79gGIBfpzb1VA6w#8<Hjf?8umY3^uHKsxP3ku>e8y<4JB_
z1s&VdR<nKBQv1_Z2aN-*B@T&dZNhsc1sSm<k%GJf320TVei9g%0Gl3^Q@-Cg_oE5C
zI!GNZVkrB7?Ut-Z?27Uw7bmAosNyu>u)&1Bf#x(Hnbi9qkwTV+Y*<YnS>IrPi3!?A
zJjY+6?mkNyE|cs$Ebpu&oFH5H(osv@V?NU!@bpxu#M&pMcENJDXagP04OvzInYhz~
zk_OG(t}SPip=l{dmPlO&wL_@wmKpAQKe75dW&xx7^=APKfNOixdI>DS1|l4g2*3U7
zco*j3P6_2h<E4flsPuE)OOI6+2!=*fLePY>v8n;HVu5?rJv_2~Z!$%{OzaK!RxOb`
z@HO;O&f1!M_q#j>8l1Mw(x5#ha;;JO2l4Xk0la+2vk~Y&8|?L9b`B3c`pT3g!p^<?
zNDnAOXdRh@@A-9=E;iLnh#d^FWS|jT=YF#%4<Hq&Rf(`4ZXmXK**)$ua?1I}fu$@n
z5~VC<xoX3+z1(%U4Fqt@dG0ZV`k7-9BHFS3VJL**r<snZd(@|TC`kGOy#ppGrU}h>
z{@?_63;PM9u5R&AJ;TDR0Rxev{`hD&d_B7@GRt~SQ{scN^?u2_!Cmx}c2=$L>=X(m
z(q1l-rBA!BJg-wH8y#aYT8A8+f<4`x?*8M!h(quO<8w>7y!GTFOZo7|F8#%x-ko?1
zk!QUWjV89ohoIJSyUqY2D(X)O&xYn9o|i6lCmjGkM1btWz{(AZiB%?1o#x*DXYVcn
zp8~t2kl@WHy2qdX2Xu>QmY`eK2Ot7cwj`&TV;C?81>F0t)rG5pXyMYC*>GI0fGW3^
zRpCQW0b2VcOhUe&4O+3QJNqtrxDzn}3O}P>q>%HPsqUNEeBodM&6WC(+X=L6rtBSi
z#8J%5mCdP}<UU!VZ>nx?C2-ceM%WwND93zn$1SIiV=A{;;;!KIaG&3HzS|XKZA5Q~
z2_{8O2J=IU^QGK&r;-Vu+SgAdEKs_+BEub3O_z}Mta@>uAf-zQz`KrfpX6%h;zI4h
zM~iU;GzH3)`Y_I|?siZ4PM4@u)CEBqmSxglm!YHG{om1-Rr4~qORkuZP8s7yun-M8
z!OS>uf`2b)P(Its{YT^|YzBBC$W27xK$3ga4Z6~DA&c}VHYm0y+a!&3cP-FG142W5
zVcy-JnJ(}Tm+#{G8nqLQ0m(dUCmLvr&AC$BLNoiCz%(^x)9!jRv61C{URX_LAXhF_
zDk2>x^1*h#l<tE|^xqi+IX&VFcU(Wz0e)<NIyxkMG05`Z0{+Q<f38Ooy6<@NP-&oG
z+~^T^B`YV40qWw|aoeDU3r+s~r3w#F^ma)tU3gEwq&AQ<5}=+~*ByQjI7I*NaplF4
zbUe~RnU>r4@Syt~V#x0{L&Wz45Cc<F2zstx%-Qk~AzDGMY?h43U!(vS2Am#Okz5;_
zrnqC}1{kzHyeqALePE~CC0itoe#w^01eA(d63fG(0P`c=%sSnD%A=qvQb=2fUd5>o
zwIWpmGc?BisaUy!SSUTfIZ9OfIOpxfZpu#Z1(dlB0{jJk2H1kMuD`n9SlWqWXB}t{
zKu3@y@EOYyxY&g<LN7Suuv5;^Pn+!HUHU0yUBGl9OF<T^+ucn88VAXN!rb(d+jO+f
zDAY&2(<odUbsbg(5Bv5I7juiSg(~PYEFnC&cw|x=PIKS!B*6iKWi}KQ+=gH>Xf3(y
zgZ*pCEXuSb8{&0NK;BcZ&|Q4Ivc%f;Qe#n11W96Y3q3j2z2Ou+rd(PQS_Ial50NY{
z#T{C&pH#D+%ZvyupjJ)sB6o;Lp%Qe8ahMKFSHi=8+RNSi3d0DDqbz))2f2v~2qJ^B
zj@x4Yg)@?v;=?JiWoP%GW%`;yb0%oin=@-8byoYOkTgC0hcvm<zh&KE_S_fb0FfFa
zq_N<fl$?DLX`#+RN1uC;${O2_{($|=?B7o=K*C2kYtThDG@EWdxXE4kqRzVpp)m@3
zg9f+(_@oWr*~wS){sCoFIfOX_%B2oKJfQ%vM7(;4C)wz_v*hAV&%z9kIcfK8!YMoq
zU}2%<ponNW=7vJIs79AYkQks$y@0b|a?E;}`$kBKc{?BAX2wPDX>5EB7Obe;=!hG7
z%l>k|Tksac4Wb(+m)k!%K8K~|`%x_5?YS4ZPk5dHE*Q~6vU25mH4EM5ETsTXXu}Es
zJ+owp1qqZKUXkz*)JVzkR^<YWxcF3e*%X~Ys4v<U?Lm{{Te+Ds&BX=owUxTqq>ibe
z7VV=1HROxM3}E`gD_Cv;-{F~PTo#bPC1Imn1m8ZM=<5gOK_J==%rl6rsHT-5s{!AN
z&8h!e0Tw4<lL>RnaMN!rcK=eVJ22oBB7Pvj!yPuJsu;L!&ERwW;|$Urm`=ZfO%5Ts
z@Ch&=kzF&)t#$6@=j)=BP#PMEUd6Ii9j@H&aNPV3`DTet5q25fE2aBQZLbj<jMzE|
zYZnP8?VyzC!#d9Mts4X*M~~$<J?<j8@9>y)v;iE%;;NPb&$`5yvZY3uLUG3iqGIKn
zVSA^IcUQuyA)rDG0jU@{*xzjU6}Qh>52$g1W#5j%L~u&K3bg%F1j}eU{*S1B@I3OU
z<QUF5+uh>?UaQetqDN_a+O~EOI@U+A4B!+KD(o8T)|{xHHQ-2P`-nvEKT<FOTu_Nm
zgAc%rnzy>eU`rvh)P@_|JY7T>D;LYwE|=u`9gZ#^)L#Ml59DB?<hRMeA+-Dk)`So%
zmV})>{~zw>PwM<?n(M<V8)b48K~rDVxn~QLAVOljoNAH!X}<C<cm5~(z(92rmfx?A
z5{=W<)}oSB7AKcu^^dFFGDw8;SqO}$6w|_j#-#@JoG{=0=?=QMcv{vgAUv+wTs0WX
zo93SJoX6M)YS-}Ggmx{*6u()Y+|oIsM!tBuo6q@VH7c7s#ZZ8d$7(*%mNNc{9e52l
z(KhSQA8~eWqwSo1z~S+PqJG5~AfT=e5O=Wsi7J4v6IpEYELLZrd;?!2_%6ZMhzRXM
zTW*ci$F~_85DTE1%iTjoB@sCl?HChv5ILEemm&91Wau4@43I*<kzq&U7R#Ctb9hK&
zEaKj!h(Ugod&Oz`lJcI$4Pp)spfi(4a*|t$FvrVFB4APBPJo4`o4{oEl#{$Uft>AO
zN(O~h65Kz*P0rOWHqNX1Ej<v(<VyFU(Yo8)I17BepR)|IoUxbNEoWqDiV!UPLzVdI
z$qY|af+!Vo4{*|iFaqX=3)~Bj(Sy(SC*s-RMch&^)_8_buIgxWdpq(QnVrI(_u0cu
zot>ENwmRT^V1FHO(iUf81xzTb$Q8uWp6C8ee8oWHU|y9Tk+}3`xpk>4A`z>#{Y=ZM
z1kK+n-JOruY4335aX$L5yn#<aPV7-XCxE+xnBB6T;3rR7-}?lYWJFno_u}Yv0gtzi
z>vm_S^LpV+f{zTd5gtUeW<PKGoz$7xFLlD!`Vq)jmIMMBBPoe1CK{33qG$jn_bZ>z
zqGBEe9unPI6)OBaN4vmhh>$|8KW|qhgrqgmT~MGeyom|_fdE4hn}h%Zz^ND#uyl*K
z7RW%l377{KxYrcvM-4n}dhz$W`Y|VA>Osa;3%OXYvd!{~QbxS0TQR`i8R)ln@?j<G
z)u1HQla2zHZazQ9{Y(J#Fel&v6ylQOi@QyvkLA_whC=4gDv3o$<UFYh&yV}-!V`xR
z^Nbq*pRV(Oud=%T|FLS-D(?P7!npT5PXv`{_D~#22s435VsKV2$tAgv<c16o)H-lh
zaa-%EtJbZpn^vpV(OP${vr4UsfTL(t998>&f4<MXS@hpmU%tXQ_c_mb&iU>sWe1XW
z@nPYN$9Tku5xq3X6F{QGa`WS+kP@CYu}QE2T5f57u)#1pNnzGbqEmdYhejL*mXamd
z{+C;a?gBeuxdc?J4vDf~fnz@gcy_Y5vUDdWFArBngk{=BuCWI;$`(zorXBRVRiG;R
zKJ9PtNx7R=goH5&>ZwwVa!KKXSbo0S^0tu7_@PE4Tb^K<X!%XwjO(|5YGxX2%-HXs
zI8dkwmxo_rgy6B^b7Z0S&&}DGVHU_Nh2ni>)aip+G~sIH=5#;026%YUG2!D#hvHVU
z`pth&#V;vxB&>w}-G-GNXc&g&#aS$8Nw`^7umJ-&>1@G3dASK)mqtL4v#7~S)#0V@
zupS=wh;J*22?3+fy>+HlIW$QxE6qU?GtwLisRcTqco@%+p@G@8l_81m`YiN!vsPCi
zQxeW~bhw4QBZOo~Q;D!edm|C&%qWm$h`z?hqI?f35IM-MQijcGU=EE6XJ9+Q0Qks-
zgr(4Xya$Ufj|`o_Lu7$N65wnPoE-jya);85B=eeT1pJU9^`r3OH*ALk^ohu;h(2)$
zRO+PU5ddcfaFRu(mrNQN?r<ItQPz<%>o_l{lMH;-q4o|v0&r;H2nJJy@)+`9mIn_b
zr}$1X<dnsRpei<^2vwPQg`P}p8wn_{z)nR(>fzzFciRmNo`4=?CN?n_b2|g(VsWVV
z+Lsu^hIPF%Gdy7CrVJZ}C@Z%Ny)|xzM%n#kJtrd<n>R{?7#V)W8R6+=Mz02m_Qn08
zeK|p6lsd<PhQx^gT;lGY5>7xB0kb$?S!Kv2(dB0(#7(RsY&mNc0kH;ZnL?DawM>Vc
zu}S>{ENg%TV#+0>>i;t%14c%N9P;^4gF%-$bjn~XOZ|saHbkTMP!6CWkY43St8*w6
zi%30*O^5<gKsW`8XUHrMgCv&cg0S+L2=@9*iqg_U4~)Ax{0`$ZU`f@N*2tcuDFAB4
z4dE5jm@0Hn;53!h8VV02SDg`-;svpH;N>+&q8BlBP)~RaY8{Wv!Kr2PvkAjR?%hkm
z?^f_oKGg^aPKO{H2AaJ%-<A9--2G<zq^9>4;#0>!gVurP>X>lneR&FxXt$Zag-npd
zvvv<}7CR6(!#SnjBMMVgwbh&;(2ho2T4t;+z+417z{vk%!B7PP@F?pC4`s;HtXW3V
zA|WhtW^VYd3{PAR4Q+ZBrjvQ(55Tzbb{D!sPYs(S4h*?Erf}o_&na9D_^z_p%Tu^b
zuuT(Uu5o(3Op3It!3d9cV#p%{zDfjtM0Ma)m2cU@5RU`yp2*{%NTs3XG-|j;<}^(W
zA@9Zg<b4n}7$#;u2l6q*q63H&x{O5!mYrqG43`bEtD?qd*-H_IBlg@9RxE=|3>Z93
z?#dcG;Z;KjK}kO$7-}8kezGP3uyjy`;)4DP#j<F=*P_DTg=pHPuA)9%bB4hTo?V=+
zR-_jptWaKt2T!t@L)(c}SAGJaA%$pa^e&$k9thk5X~X9T)9;@{=gy!Zh>d6qZ~MjR
z_S7Ic0V?(z`;a{pS<F-N6%)HH9lPrE@W<cs)DW10yuf?2<Y3cFDCob0A&&uyKz$Yz
zhxo+{`{l%P_XOLP=vJWHMCV$C7!TQ>^`6D4$VLI2y&2Da?|R!;V_ye}@$v&gaql`Y
zd~;s|zhTlQ*q)I#hYQ4@Tw%XJjLNsMOTtXXY*0?-N>$h+K@{V_#_lMD1PO!hf5YV-
zE&U&17}s`+B4VU3!6~?x8}7}0?P|7x%|-k`WCe>Kk3rK4z7KZnVLjzA68{EGio|w|
zL44OUp9ityqVuL7t~u>d&tU)~&JQn^rh^Sx1U4!uO{Scw)!zl3?U1BR9V-YZ8OI8^
zGFYy{VN}pBSK-~Kii+&wMaG0X_6vQT@y!8$OF_TCWyr75+%muB1yA7EYayr<F{Y#f
zf<?s2Vd0+ZY^6bOfW!~HVJ1Y;%#rfyKz6n{D12Ntd8wO&XNm^R3|fnO7+7nnqPa3|
ze9rPlAKuW$S(-k8J*)`DBHxWWGOSt5=y1iNFsoR=mLG?+lmLJr$Ap@&`ZvZTXbNDZ
zX3Dq_UVH8D!>UJZ9rKh!IIWm8VFl-eZ!hNyAOds&O)LSaN#qszzNaM2$NIudr6h~!
z;@!Tb;okQ!N;nppZv<hG2cYu9wIQ|jgnYxq&a$l7$uSKHct9G;iZ;VFPgqyR-@$<l
z5-RB#8wr*0!NGQGSXahwJ!Aq+tI#dIF`R^{N?S&<l^R1Q8j-DAUJ7r)4FPP`P}a`a
zFu8UzPj7X8R4rWJLbXWzvec55<ht1kQ*YVSEK1jym_)LrfT!ZH@GC5iyaj(|59u$w
z#pKqm_rn)I<SqZhL4+N=-$69Uj8Udo1T$k`kRaAF;=|;7$>BwlT{*6Ya101l))P0B
zm4S*GR>tq2=xLY74csQO1{q-74q@}j(MlT;4oH3#sX!;(GW@$dTEsd?Q6KaWfb`c9
z;rbJp#P(y0DeB9Nw4D29E_W^X!yHMwJyeS?uP}}1^D(){D6V6eaf^_k$hb9R!iuhE
zCoq(WF`z_I-~@E%(r*4BSPA)HcY|#;V0PA4qoM>EXr<taAbI@O;qj-~BSUA%#LLVm
zWdc_NTc$3B<gn}O!ecJ6+Z<j>y(m*keUmclAi+RU`k}^IzNs*4oE1E$yX95S$Am_v
zOij3|i_L8c9@PEHf=3xOU@3tssays_)U`|hV-@QWq=p50aYvazuTAH;^noC-A&ix+
zXT@x2_V5b%I*_PBK5Gthe*k+K_lMrM1Thzm<ci8nXxw{5NXWTp0wDv~;XsHIH}0Hp
z1i^Jfxir5gQguL`>Hj?qYBRs5pxnluUh^XwcPe&|{J<jafCc&kL%p&vTp|C`+C}!_
zS*DQ|AUwfdb~-hDA`%n(oqMP;8Rs4w%8bIDiw2E049Jc781e>$2~5`MHd5Ujf%j6C
zUf44tzc_3}Oy!){47YrEJiO;tlf%{a%1($0G{tvv!@u1LprNMFD~-rRq$X77oTAWe
zYSt<cAIyrtn+jB91w;ZB+>I3RNO~_S)y`%f8J>!!y6N?yUkzN}u&YHx$<9%qS>};7
zi|~^v1`yWNxNG?L5BQ`(`XaJxNme1)gk@1_?ey?L33YV9#*@$!Lwd12$|Z_TF4u+M
zUTt?a=)h%wD9OTw@mT;Y8^M9_N#b%8=QD(eAlFp<PwHYG(F}D#gvSnJCI%UUKsW4K
z$9-cv7#y%=0Zt0o8Va$cCNpGJ2nmS&7GkhHV<F}p(}=9-p*J%oCoC<%|2vbyP-Y+y
z%{%~w)&(Nd=|iLaZg<Fc*6lt#=%zRubOV2uT9L>EKoXEG`h_4sy~JUL5j<I0!^m*W
zydV9CYbgkv1g%GYXTE=Ms6a)3r~ra<zpE76e8yF(;~E$)?H`8H4UJtX%*L+3Lu6@#
zILhUglo1QTb7%+<2iWmx@WPGuadT1~GV~!X$(mOn+bOv;c2NS?-uK!`Z>KGRQ0k%+
z!w1J>nFh<d-|NB6+S87W7by~Tlp4De!$08i<ny7<inopALKtF!lw#BVhxi~sj;s%2
zh~B^*a|8o~Y%nZy{e!2PB#9HJLzIDH5{li#)5AV=Y=CAMwv}bEjomk;BHNqd6-e)W
zb9@xJJ7g1BUm-eKN-^AiiPoO+QVf^K@LyykGAPCD_B07ESmKCTK!_xwZ$$Vl!HI)Z
zPj*n8jkRHzym?9#QLseHSW`{-@S($z1~QMWCwn?&l3l5`C!+z`5sE08v|V@y!Utm8
zVA4ug=6=$OyO;odQ$yqn2dE*gf|bFP2qM}amVi1Yod<EG*aBuZ?3i2k7d}H=LlI=o
zy|`6w!3{PNSssO!<*1a%{>w^o-^T_#M5;95F&ic^^xV0|{v1PCI*BF})WuD}kwAr0
z)53ML0nZ`s_JV$!+>i(z1hGtn4&d-aJJAHx<B@ZX3s>;W{}33+8O{m}!|XS}R>pn<
zs2glafhvdcuweYfaB~6&nVFhYa6Dz(rGjs}Dtzh3W?LO%wjidcC`%BaJ&hR+ird30
zeDdT-IF(sRCR`cXNdpnpyRa|3W^cAV%*_i}W!${XOiQ$8{J+2(mYb`?LsoM3#RT1$
zCy9C+!k`0sa@R%Ok6uA0va|<&kB>W@oB#WvCMp;K1@KP^tDYJTA8?hdWfPoAQbo#$
z0a~v$2S4U89vG^Hg1rMhjD{#=W_-wUx4}|wk>UZe!tCG)vtDK=FyOxzMPOmThj*ZT
z(8@wLJm6J@rVn^k2Z?TFF``AYqT3KA1T<vbltad0nc4B7Ck`lNPJH-PKuR)KG1Ppb
z7}E+jKN*rjswnKpSO)o~cBaVj56%x?`_7O@k)+TPL?R0yARGCRr!1x(Wr6H=>T@_(
z63@MW$W}gkShN<HlZn>Skt`%$5E+>JzTv3wC!j5Z15P}ovrN(g!;L9P%yhNWulo{V
z*ERO*{w1(n^)Hbf1n0AZazv1HYhee}D?`FSTQ)x>Hr$09Nh+AH^a{EQN+KsRMn)b{
z3Wz#lAwk2OPl>zip|B<5_c9iljA|O=h^@nSCHX_1M9)-TjrxHyH)lPbd~E{F$4t|O
zE?pOHjphf^5jRbCz!G_}<O(8xu_`Qi&ZcS>nHGcC1hBqV9gf7%%@cz=OK}?gX)Msp
z*%C)PWuC>_jc!qxwU6^9@WO#uDmIphrDA4!iz>0eB(V=t=3JcU>)S)oRgrGhqF1nW
zp#r!m#J_8J)X$hveb9xXJQa{K{6+^qkh}TT<HYZpkl!h)zY$hWU1M>T{81svqLz9>
zMxrVmC?k%kayN2pNV4v5^t3RrY*g_Os*K`@5QC(q25TVo%v3~~6dD7zQ_xrNyQ$;@
z24y54c0MSHiBN(}5|g^e;h;20p9WYWTA!VgJ93Y4`c`Et5TR$`GRK~lOJ|Tx&2Jpe
zt@q|S60&$;NETO7Hj4`aHfz};40gDpOY9?eKQTNY#uJ$g7LzT>EE6rKh2WodGp0LW
zX%uXp7~UmIBUH=k5EIQT6D?KJbv-{iH9Q<)5ri4gOp(ViLY&;musW`$<WELW$)u|N
z;;V3@x~Y-EhP(#5RDV-5>#zJWEFy`G87j~k>QEwGcm2#aA$97-b%*s)E6uvZm?G7e
z2wF;2VLgFamm?3Z4S#<nU{L0$z}N*0$fSy>fk{<i#2ik)CI?Z;hH0YH(R$q~Fcbir
z<*sCWc-!Ipd>D-?EXvX-K7NQp41$qyi1C}5Yv2v^A`#-OIWqT)Tlfyy>C~>(QVLA4
zt2rS22>pebx;0oR&8K9_UvYKx4MWio?Y}?ZhT}TakPsmSj0P)zy>0Fza!m|1B*00_
z`wa;IA3<uMjHDICkrcR>w#@x3dTLI>`ia?U)L9&nYaC^hM+*BN8E%2&QwJ<?L%BIL
zHp|U9a$1@xGfWXd7@!Fh&o~Ka;zIhjgdf6BkVfyH9!@>Vj%OCp2{N_FW?3Rr|M|Z)
z=$nc4fFMN5bcoje;wbZpb1^s<p{UStJDIkYa3b+#+<Xlrh!~bKmIn}5gxf^M^oB)i
z7$j)Z`p;U#4GM5)YKhctiUJBxrd=HF5@~b;iy)*7ERr22`rU#jZJ9y9hV3#7Y{OMN
zfSpr#=$}ULh9zJ^Za%v&_iXTexaf_Bk~M~+>k$cuEJld8vCP5(+*PISv`;Ju9!fC~
zhKMXb5Qf-<wJy@AIYJ<1<iCQKWxXGIOJ(_kZfV*^4pE0*h`3wfwwM`NRA8yeV<~}!
zwUCM@GR<6eaCr4nTWg4~2Esbvt7)JJR>oYYr?{294+vYLr(S9Aq4g}mPy!Up#XNNq
zJb}Fp_Y2Y1Eiz*aQ8Yl7td9$As9S~TjQi4|L}6ERKL`rs7Q<53CnL7V1Zea^kSkjz
z42z4v_zAB<&ENo5g+CyefN{P?sogMZqhC8d8QyfeP2l8;0zk2i)jk;JV?O8S(P#yS
zMXqpW6lOy#+k8^yiJ~qofDq?PXQbqXn99(crNV5^lEJm^cW5yYJ|$C3ghvr1vd%vR
zQL6r6XdN^+IW)+1)|occ&xaJ2@$<oDt00Q9rV=PCJ_|j|S7=|&7u*ANa=Lr)>Me5a
zx23tXB^wSl;6WC-H?<5idFpmir_SN%03pd(JUG6F)Pe<O%~fgm8xhJm2F#5cm4-)z
zH>?U9ObO0$X(O3jXJlpSC`Gx>!)=V<Q`W{fT$u!&Gs+|qR@EBQMGA@KMlR~uC2RsJ
zAR$>ZBP1bfW+bvG3RErwvN)hE&IvcJ<tEKQi+oaAz#94Pot|)22ov5UzMybW{L&Mc
zm(qw;$N(kolciz!n0+y+MqC4#_);{LN`YuKu`}F#BC|vHTAJPKFlfLP(65VZGKEPt
z11L-lcXN^X5V^UAJq8OKc&tRAN34rkL8!DO#<$~nVLsv=7e+b3mW=z?6i9ls(i+2N
zGL~%=B80_^WgE5*iyGtv<Sg!qoPd1oP?J1vzJ6o<VEaCTRo1>gOpWSK0b*k_vFca{
z1PeAT6f9-@v9r4=>a2Vss^mzz962&~1ol|SMHS);l$Hq-Qx@-*yVdV(BI0>jQvmWn
z#uPB@8H9`RyX9WPGi+dxVn(ufLBC?An5Fs4tg8Ub5M&v1Q+U%}pjer!!GoggC~V^Z
z;cMRqvfDBKgnms~WeI2}{x^_)0(c#g^M=j2Je%{zZ4Ob>kretJ+ra3cke;&tsSu+m
z_bbG@VlnT5boAnEI(oDP$R!mf6}Xl)^$quj<!Ak2I+Xq}dpJ)f%znr)G-_bDzqFD#
zNNJIKxitKrt$CRmpoR@}V(iLf!x656C4yju7aHs!XDySg8yWlLH{flPw+r`9*yLck
zP@cs#PCsLrMIEAQchrMfcQQzSD{~qB4MrZNl9{QDvOS^>&WDfTx7|b+D$nXd!`VM(
ztO53)dApfZvK^q+H5=+vR$)e<$Nm!T9km`d`(nb<F$r6ibW`e{agk?_5XSaSM9Rpg
zb@TV(xN&CZA$v$EKSBp^n`_+d{;=qW|6_`S{QphykpojE(l0<7g(tJ7sZ|f$64GE$
zpga)T0t?HgGOLH1h$B@_L>ylk7hVm&gh>qyBf$&|PuqyypHNB!J8-c!KRkH7{k#U5
z!g9hX)uEZCIbp7XHirelvL(W>b_jDYDDjf13HtDAIgS%V`KmU28=IOG(ZNAI9A!3U
z6DgDe(#W!iHRx<J!>6a%@9Wk?8B$Wj%W<!jhh1;m#4xizo}S3;&pU=?9`gQd=HaGu
z^s>!lB~~CwQ2JB0QspZGm_d2?Am$Zt3HXPBVrWAgJG3vHT@Z~9wZRo;rFQr*WjrF0
z2cqBfWOx`ZD3%$X!AKrw#-KQugrI}==Z&E3G!C)=!uui%;HD;r{vsHgXin7EiZmy7
zAhQbX0W1lo*u|%WpB@nH3|-o8S(*PFSSIryQFv%L3jp@N^=T#ss-g^grZD>qKr<}o
zjf})7=WV#=h}A7)-Lm8Fcm435taWWbK|zV2m*nYD^#71yLf@ld?qrCu1#vf<xVEXZ
z1vkw4;fEMHa7mSv_D8i58PYC)ENET~QG|tGG&?+x5KlPRP#qln%Z8=0-eAuOxLKa{
zoS=&iH3YDYtRWy0fd!nrjp97Agxq~fc#iT7l)fg<ri}GeGCw`M>LR;SSqq1XzZlm0
z#a}l0g!L|wC_w~);#$OghVG8f&G>b=JA}DGY3b!z51B~8u(U`tldO$xh))Zql1YCB
zvZytwkfsV5Ny^<@FXql%IrjgMOXns?!@<U>nrbU21aFNPtx-ZrNfOU%Pv$kJJMe<g
z@T1VZuy1hhNSkhCmPkwbTk#}y|J|E;!Gy1J^dv^!9vh}BimTf*IPQn`#N2dCvUxEI
z3);jn#leHy*k~PVB$TUdJwQtGf}?h~@fvJRv^GPY-#2*d8(OjDQ^>F-&98BQQ7KnT
z99hCoA#s$y?MN<{&6Tz3LslN_zm}aqd{8(SB{~S-S5uhUnqcJ@Ha;_%!vCNqLXIBo
z|J0A6IebtamD$kwC}f?cIR!<D2^DnvP6~ddGpTSh67%OLEs2kBxNJ)B+YOlyrf^Q8
z?^tD=7P>7<g0-L9iukONIQe~rihlB@n$1S5r<_?5C}Tu-&;sbJo*2Jt^wmpHQKK_0
zgCX&aCx2;6!E##28DmEkyqbpXTYS%W^o1?d3rFeIzDil`u<GFP)%Fk(zezPIa&){Y
zb|04q=j_B=2sG?XEutDE<CuDNTxV=y<8}h1@}(B`<SoUDihj%1#WN4KOGE&yq!2Js
zu}oNV6rSw}ZRgXLQALU-w1sZWUcvQx50(5V`Og@S4UAP%Je5*dG%BOR^MqjfUW0$h
zCue@iDa}Q@rv5SJ5W9l%arR4<c-I0fOV^r-!AZN=ky5vrCLu(CbE2%=P#XL`mkCPE
zrl^01@rnt`8tFt2onQ+!2!Qii+Z5P9#s>wO(1G?0I<~V}6%GUd)h6ikJ%eqw&F-={
zkH(yNsFmuLU<G^C*XZ!^K`h`W@Pvd~Bf4UB+u-x|UBD=9NO*s@YJDqG3q89gxZzW~
zzBzRJAh{g?CM3&%l-oO4&?7ZWg~)pyeJ%^!%aejjrrH~-$WWm=8m)QC+yh0yR@F8-
zN5OaOm}GEHyC7J1s10MdW}}LR1~9JJE4W?1217HKMNPjwBcLd<_-q{$<(EljoshlP
z%pHOT*_)BgpuL@rjd@F{J5Pzn^<bph3_o5FycD<fMN#^=I}R0Ew`cI34wV>=bRQv?
z?J3&jsjrRu`Iund;kHk@`sudCC-dD-MM2|ahKV{&bo6xtD<CzSH*_b0iY9pWtyDU*
zk9wrg)~M`IJv&vzg%oX=Vq*vZIxDP(ZpA)9C5IxwN)xhTjbW^5$MFXQ8Q5y1XoP_R
zmp5h4V9%{sgTtcQ67VKa;I!sO@KK%a>u#3KrU(5QGa=j4w*zq1>uITRY+gs2+%6p9
zMTqC076lLH+gfuIeHfvZJ5sX^K8%>+XBH^-QdUoSwA2)!rc7BduZl;AfHks&tj6V-
z0+sJZ*98Up*d!&zyCHjp#fT8wRt4wpXQR`S7$p#%X%ggGDuX`(ntZmDRxPiBvbU9}
zh`FE)Cf!PDZM~M0<Fy$ut4;RADwn9n9g+98*K2EdfbfMrGG@4PJN?SNgWYxd^5T<%
zs0J7~w|ce;lCv4bh)J!ebmtP$M!N)vdC6S+ePdz?w4BO6BsjYbqk}O=+A!_E?ALg1
z^4)fO1dHozm{bJF7&!$t_;~|^CHUE>>+GoeS0EBChzC))+`gsj^Lh-syU5+*Ihv;D
zi~Q*zBB=U+VvyKnISDS#PE9?;Xgsab=W6B#op@`1dv!ek+d~0Z)n3bY$L<<DaS-E}
zvF!~@)ZwF8Bx-RGybQJj0n;emmCU2sJvT#g02P``gA@1VAyrrIpq`K#zVTk8#)2<3
z^K8v)O=n3zHIf}CD^AE?v%9*G6)C^SVu-C^hXFiZHeisVCSW~5ek3gg5zeBYsQdt7
z?yB<ra2TAOXYZbt=tDfg@DElN_mevC2}aK$Sp%!5eX#X-`!#qk_P$I4fTh*w1hlaO
z#|Qg(`$-kR%oemBjA8FAYGl7hlu-4^0QTs6GLl18qGw&R5T{HH!6D&!TiS9nDAG;2
zO2%p1EvoV9_KXu2ne6LG0dQ0XDb}%NSOz^TQ!NyXM{*$YP-4RKh##D619vOWN?Q`c
zDP^w<dCOA=2J0(Wt%BM!i=a*FXkqOCp@XxsLIYgSL<osN2T!%t;FVQinA+CBEc3Z#
zn7D1rXnOQ}b$jeOD7gPy<GFLAf{tqJ=l0((_?x~>HAegJtzeU3iR-2Y`$-HTnu0VE
z63Q#eqlGgpy^2Fq6bG`5E%EUhek>^sZB!^$LOnvm;Nw3qJ^@3JjT{UvL16>mjU{0I
z#AyqULf`^!;S|pzVsJc_ln9H;(ozfEq?LcbS-Bx-Q!fv6=gl|C51I}t18pLXJZG^b
za93#YoRZ*@(F|sY(?Y}?=pB2GL>isb#T9`q%XNr;!Lv=QS}N=WD=HA)Ih|d_qg81H
z`6YT*jYMJIr^RfdsU5K{vnn+;MV_wW#hivZ2IsYmZ;RNpiu<nHJE+fL4jU-My_>p?
zr8?JBcaE5e@OzyiBB*8NE+`0gniaje4~b4)+9@2YPQN3HqhZRCP-(i0acC&eqjCOf
zYBzP7Q>BVbzS;zf{P79(;su#FCROU>;|xnlbJyiyr-r~{Vu$dKi|EJP1eLQPuFwah
zUfmfx5Y}aAS8HDiYb9a}l{LiCFWs9RsQMW)ExtScL?+OkavI>mGD#!g4rRpM()?gF
zBD0POQOR(`%HE$4x8vhIwBF+p;WqW8vDwmTu*@wgjM$2#7)&!dtWsVBDLk)<*I<0<
zY;C9QkE8LPy~NG2VR9(D(w%wKj^sAzAXI`5&KCY79xgh`N6^p8q_r)Nv9bCjfs()k
zOM!)A%}bB437l_Bpn_og@OKcjuv9`qzu;r+kw~z<?)iPN5o#QWUp!sQI%rO+Aq!1Y
zPpKz<9F&QaQ`Riqfm0*ZnV0CxW5;Yufb+oK!K!*Y{TYcq@davGnh-*#SAkP)YCb|i
zsnnKLyBRR?El&}R%5mFI!L2XKY=K#6E4CZSi0c7PX)D%>ne(`*)Rsden~%3ztP*<m
z#fU7cjQB|>9V*+^bwC0Yw=O=K#WR|9&bKBrNM0E{Qtf_FO~NOenk{r-Pk=ppk^sz6
z%t6A{R!fAIAW4RK5T4&HF#-1#UyER4e7qQ=T#~*F^wu)9<lSkkAuysCKCZZAPhR_Y
zbf5%3q0T%(aWD)c>jiFlujwa+{LkH66Raz+Ema`~QLF?2<D}6Zh4IkCBV@44NWB&8
z3q2zE&}iax3B;!8kUlOnGO|TR10tI^IatS_N!t-|ZjaO=5sowW57Jw+KDr$DD1)#5
z<0`O{ibB7>v%T905^dICsPs`WWvY0iQPM`F6;%>Iz;;F279y32Nm%u}Db~qUrkJwe
z2BF_1Qlg!Bj<%RUp#*_PwvM2gx&WPR5|o4wCxyZD(pHO+TKZ(zMQDH=>=X-L%cuz5
zE$MU$79na4!7(KOX^VcKhS-!2F4Ae!ti?dtD4)bC^_>JzOny>}PWp(54rnJ3(x-H)
z071GP+o1H_OU7gspek#x6N#d3La_NLyD<Fh(M<zK_+o>C;2yy(G=^MlWETm$;Opcu
zwvE~C(m7O<8UFjGBs*GKbfy<AO415SJ#BDXn!Nh==!9p%P0>kFYQ)@7V_%)YGwKi&
zsl(QA4W4YUs}OR!LWze<8oXh0Few5@>Pe?XX=wgr#KRaT!G=IcXQs^&C1UekUu~8N
z@vSPK2bC|#QhBa|9%enL3~F@3_8*TV&?%6{)H*AtO$3b2%ifB(B}$3vN0CjC32;Nr
zFwsg~N}wr`p2cS&(yXeq<CzOBL)teY#~U(4u1S(%w@?YDNM~BGjm?6wp@<i?KM|@#
zPeJD1yo?B2ggaMu0$T!zqe!<&+gv`<wrP9#`BI(eJCr!rxs1iyp$ie?>zHq?-Eaws
zFdGp@7EPe+7-f+3h@5DeJYmglv+e9Xu(1YcG{UD@Dk{+BK)pL9A7XGOzr--FT+#@_
zwE?Wo6mh8^DqldoV;LIfrF-+{rxwzA4ow#tg{44?WxxntC^!<z9k@qu=1*+f5JX!E
z@eR#Vx*OkuotI9Z2)DGQGHw3rc{X0z(bZ#mE?*8iHC-hmqsOKu(Q&{DRAy?-7ew+=
zBqpRqpi4`s*?w0}a9blw;VMD%!D>2RG*i$EZ8Qx5Tb*tsnTH)q&*ZynbF##{37Wwq
z-ymd%&YAv+DLT2FUD+~_USmUpG;K9VL7+8Y2f?CUmZ}>8eMBV!@xcuemF?5S5xBkW
z;8kGEWYuX$2m-4C#aCkyWn~p{XgqC5%lU4fy@O98YlnEWh+*E_c}pqdVl+alNj`-J
zN;k+un-__d*vBcEPK-G>-G>&)Te#)MQ9)u4-cExS1tZb645dK5k0q`DIntJEx`F5n
zU{QuU-;E4|9U_xqrLB*{2iH)3P%e`i?m|p=NVUc?=OcZZ+ESpWGAh&5KDel<5wZq?
zb7l=JbVsa5VQ$Hz#T9D5Sp*?>n~7ExL#vK$OXexhOq>*}KQheSIyY=mIt8p8q6A!t
zojtw~CBH?cGQkxT=p#&ZFp@dx<$%9TcsgcSt(h&eL=G99QKV7>ehh17>*GAJDVXG6
z?vB8=$<wkxprjuCoiVv1XeTCx-n0sU5}{p;i!B`r>4aO-zEI0bgw~!TT}<p()~6nm
z12EKZQG*OM{Wht7@upN%D*FpdJxle-4+{C>Vwf<Q5+4CHKN1lb2HZcvC<oTgg=m_J
zLosJ#uJ28>abuv+C1?XgOx@Io_Xi|{vfxWe;Nn7kqH!`NaTwVh&>8}(NUPl?a;kf%
zC@7Y76TwVLsFDT+F#O!a4s^=SUK(O3NUl&{0=qB`9=|vmQijm;NI8v)jD0~nW%0#5
zDqV=2+3H{y5n_VmXfDPwP*GI4l3;?YPOz7>B6VR#vbA!zW^AArVrn5)e-@$hnh6f{
z7#7O)OE?JRES;M_`T`)5wg+g?ooj`QZsJ{IDkko1!wJ?<djt3OZ^!I1AsVA4UD||t
z_ltYR{AI7~AWb4S`R(LB^|^NxI8X0szsnFGOpizj?%@Z<tcn&z)JZ4XrSsAx>#i{u
zhW2X=Unofb;tp73pF78FHGb#&wb?|BrVv~<U0Zr$m^M08<dL5w4jf4#Q~jhKOJZ*_
z_8eg1CYOwS>C<3FWs#fF*MTY#Nk1r*5WiPG_B%h6qd5^wM4-;TcH|CP*XFxt*ZNrx
zGY0|8@H#QbZmE|&*wocy?3K^`?Z4wE1Q)KC!ppEQZ2IT^vS)48#y0huMs`F+fdato
z=&=mcbbaV^|7gFcN-U>oZ3Zb?`><(3fTIoExX%Ah8^BA|_KxhuL~dGKFSQ81f8VeF
zvn`;G74SFchnu&?KduLmbrZ{zky*h$bJ@TAo{!i{(WkHv!~(v5`_KHp-WZtZl(iwE
zVo(@5%axVsGw=V<zw?#-s<OFFQbiuM_}I(``av1cKI%1p)8FZPL7`4mxMo;CLKCez
z^4;^>1iMBvvf?hw>p_&3<(Z4Y%+5*dvwcvq4V^S-fFu$bJxdoNF5slif*W?VDO!fM
zOVeA|gCD08i)7R}{E6*@8PC{jr6Ss+w)u8cYT5>xF`C_dvs>`MEBs7CM0R(j2x;WT
z2Eh+swV9`y`_z+NBo!jJcF$n!gEl@H2^-6R#vxR5!=T`8dtu%BcJ_)V2;#t3{NI+r
z-1qGP#4$5g^8kX%XL|+fp6BGC4sGwW<4Lgn@%>z~Td~2v7Ps%C%p|1&IUNXNZ`*pQ
zpe(H8dHY*`>R)Z)xd~}NB8w#2p}0s6*yw}HHrnjeG_Av}1Ud17drS=GtDT7=4P-@Q
z_Y$zLoEY5phiH@5ORE{Dl6@H@d$)1H;<s$BvD^CnR;V>P^3);!WwcbpP}XwZKrds;
z3A*5<k8J{>0jQy;3dq5!!<KnnzIud|ed}L;-F{=Y13}|$<+Ntbcdv~M&b-UsHl_Uo
z@oTkD$#?%K2`*Y44TDZH5>e*U?U@@Ky1_<4{MvM9YhPA@p?3fhbr8HWV)Ts43fLT6
zTR4(OkQ9K@JwFnGv791M{rrdinh&@NJobQ4qI;dN&K2d03`{Tdmxs27;l~nn@l%5y
zQSwtp`3YOtTs^SRgS-g{GN(@Tua5M;{em^AOCy&TdB6ZQvh&9H-G8-5#Pm8+-L#W|
z{jk_Jd-)S~vzZ1)wTw(Q6L;|?|FEsqfgU}2b-oZ_a-KhYG{1)QL&}?Nd90M5t&6XG
zD_TUdTwZ5lxfwqx9>95g`E`8EN48jFTbh^X8>MhwlJ6hb(VkL!4#{0my3$gab|3jV
zKK(U&#OO2ld29-1%7Zch{w2?k&9w&`5wH?6N0y@Y)2#8o@iX7C$C~74OKIEE&Q=Hh
z>M`~J7lzCx3laSx^4;?3z7cTc3Ycg};K1nB$*60cn>W_~NvH*}OMoBA$VY|op^sZC
zH$l0r*#El3)<uiqDx|RLmP|8_`@KK0rRU(XNC61gHRwx~?^<^7>%egik#d=dyk>fY
z<7==Zx%svDeXrVr(RU*w%6Ja=fMXaqfP!v&KmGIA;=bOOZXdlLY>i-xv*lVpsPGq!
zw3&JU7h0v0wWIifp9fvwiyI*9?3Q*wthB>ce!D05SlAB8-s$r33FN!<5B+P8+K)Lj
zKCe5`vJTOY=Ii<H>}r3<cJ_wq^++wOBdLCyZT%O|*%S5VB%slcj*}f-xSQ|!&}NW7
z`tVNc)q*L%r5_hPQjPv*Jc2#(hC8?RYhJb|Y7^bUB*P*aYDa1$O~H|{Kaan*K4%7R
zu7-rkLj=}$b>oHQ;E-QsANhPoe`S5<PzB5aa=~TU7=PuDY<x<B{>JjA@M0#)xAzY|
zX*XY~KH2c``}XxaFR`Cuc_Ab-Iyc^W?{>cCy=ae+Sv}9jZ`;oQ01{~gV17yvVR!OU
zxv$in$jqAI`7}spk@A=P;@kK=p1Jk-+r@0b!Q2ggB)pRrPzDRJI@lGH<Op(KyDjx=
zxp^j=lFLwJFe3HI*Tg|znf7~BNBj$ynbwPV)4@9hmB;{Mi2#IIDd|epo7dbfc25(b
zd;(D2vYcRo00He=CO{}5d;>+cDKEGyVoWqIMR_%{FX0Tn#eRAUf}JD&WF!$ICy#MI
zH4}oHb(HdCA-W>jHUq~JDYPxw+0NJ{n7b}>gQ_D9>;aJZ?r&QLchR{DMm2}il37)}
zNRGZ`E}y!AR1MxS_}d;4w_1;M8gY5uzqz`iRo>qwDE+s6&a?y@$Z+#gvtxX+SMXO!
z0&rpV*ix@I2nqEgkcNCvjWEO16g?%Yr@mC2;?Xd;;AxwxN&?33h*^-z%6?856WqAg
zX6(Z7RY|DKBZdIj)xtb|(*D7Hf8jTTlZfUcGTLYLNb%!9B-@M}6&&-J{RE#U3@(o@
zqe)<sTjW5ycMB%|-ew~Tk?6yWs*lFKAYLf8`p{;<<r1!>*MkPV%kyCLtt5h>)|$oe
z$&dXWa2Iw_)rSa#{;D5v@G|XR<bwDA6Fsezr6syI#r?DUmCyN0Mek$+i2RHtz&o+k
z5BrxIY+OR?97;PagV^QE{<7CIzGkew3Pl{EJYebMd)RATEI2L_0s0TbgenQzdb5tb
zfY_;zW5H^`ge}jOFcR%5lFIU2aEzofyGMi)Q$xv*{8w@CYeZ>XA`w4QQ2G9fLd>iG
zmml002}km|i`gSJx={te@BWoD191g-sQO$gJD_mD$Ns(~qu3q6hE%(3%*6(|7nk~y
zX|_IoR0^dcoeEb7)hGx)xrYfdLNM1ENrHV~u)+obO5EZT`8joSWdChnpzT&Q5|*2K
zIymmUQFS#WgjqZKWv+U5g?qL&XkM99H<MbB%dC5mn|&A|-OWb_WtBN~(@NYSefZH^
z;QzHX=$5%Fg4?I()XhNKO82%c<(u8CSp~)JPfG%K7{BM!Ft_sSxfSk5jls+5oVr;G
zd$I-xZe}A(JXRN6)5=dNz1B?@0KcunvJhS!^yb(L*_{jv{GWEBd2O5@uP$>3oEVI3
z%&Ds<9Dz!=y|S-$VNK-YW|c}sf2fOXLCUP6Yp0tvl~3OL{NTlEdlf+$U_Om=J6#p`
zweF@MXLL^8WX>YprCNEe=CC3;&5r+MR9&s|*;<Jy;Kj%u4__N>u?34Lql4D!M3%YQ
zS@_j13${$=)J<12JIrJ)uC9jKDzkz=|177j4#^A{iuR7y`Sex6r$1sCp|Xv-zHB7c
zkZytaEpt^37@lexgYlzs>ZVGyl{-F0$QMDOlfeU4Jo+Siv_8?>+_n@P<dI@M^4-oH
zE<Q@>9-LwW=Wx-XL2fAvVVMOL7;K!&4bBNZZnLAE+m@ntee)s?6dN&jd1@7h09R1w
zR$FB9;e{@-Eci!mP90B*<zaSeb9J={%!!Rb!}?KmP2_!ImZk+HH&<&FU_O7-hWYsd
z$g2iF`6kfd6cqrW9YsrQu8wF<U6HG3vJc|ur?*ISZE=l<5X5-u#Nh1rMzsSUh}ZH-
zwo<1hKc9fNilcnb9i!XP`{$&a=|2uqmzBGgss89M8I_L~Eh^EO#$HGi-{kR$7P0_o
z@_`X}+Cu-$23mpR9-(h|sypQn?+C+NeS7?mZ`k-$aSFnj^DAWW7||CW|3`ZjbPX>o
zu0-mx=jRiSx2n`%P%uXCv;83xHnXBKW%EIo_Y;0gH%2|jkxKB^6aJD=^%-P;aN~G?
zs2|gg_&6sieHi(ZzbBsNb82ltLZcGx5D>mWo;xu3?W26rcFYm8&J$FnM-wBT|LFt$
zwSTp5u7*QOHdepFliK~8f3s0GP4Zr%CymZPc{e;0R5K`7B<Otq-*tR1A#8opG74yJ
ziEW_Cue#nwEjWw1VI3@hP?Hb)bL(6DWxryUJ<wb|jp3oaeLPj;Xddj4d11*PZ06rc
z@X>ftfm*yHa$&J<I_;0Y&(=kv(4&nhdTO$la(&yg9sYzrkJf2ar(3aV*~+nME<A<z
z#tct4_xQ3BTNr;QqihJ?kWTp1uCniJLe)*`8`+YYZz58$+($?Fr=MaT_fmqy&Aw)|
z2gG5n_2IqzdpBn`)XHlJIaZ8KvHL#l4|>EVs^IQzra1C49{KYEAKb!Xl4W>Hw8<&m
zDFTfgvO5H8%u;{Y$#$#eLzXt6xa^XAPHe&<o^D6_#@h7q<vg5<RVM%@MAbr_!Kdf>
zuA^;!itHEy+f+=q2U{RukaMsvdNl2K9cMqYIq7*AfX34jJ&iKWZ}7%%y}<9E&sj-6
zZDn(%1&RZkG};#|u+drAS=krDHbJWsM)?!ZW*FRSM@C8`=V&|EuZ+h&va80df}u|r
zELDEawm$zzz)+37iT+wnr}zqCWJ6W_vb8LO>n2SQ0g?7-?j)r@9ba)9KgR&rjs=Z;
zBLn8g-i?pDF<J$r(BUHl5HCBaH9r13`#EU<y{Jv5rl5a<Prvvue$JW9QNfGQ7y7&^
zn4fRl|FQUMH`qAcpgHkaLtne(Rzw@xLRYw5Z;Kb)XY(Y{V(8RkKx)bT@t$iKhF06F
zctV%O*MPB?&52L=h_5NZgho0Mfwtx)sw;^<{TR<sNg4*oYR%1nqCTnAUGsMQtXrZ-
zP&f6dxImDMgBfuekO^lh=>@QW^950g-Im+<i#u#rl^u!p1$+#frQz}|@tc0jFxi}l
zaoF=v8+7dHPTzKcjaLglNOCd=s@LfW_+S_Z|J2`qEHA=ji;aO}NI)?;b7JXH1#sM4
z8!s&zYe**I0@U!EX5w&rxLm9mTsmZR?=s#(Kdo*&<+?`b32dP?>3iP?^r5#Y)Eps<
zXdq-{rwaebM1#kwbPuK==${fNK$v2;;0XW6dRq?cB%gw<U>6|At#YY9>K#K{2(=#L
zHKIw+cKOn`ZM+_D4lo)+3FB2f1>StP#NYO&&EgrgLEK44F7{u&#vrMBDAQf|XdpQi
zglf4D^8MRiL_a6i0EFf3#BCJ24;K4#^>*<xB&hk?fE@<4qxme}Rpbt?^I!g$!&J2_
zP)HPuzRi;6q~PHvb2~2bf4@7TS+teK_6(v$jo<G-)K?cpM}nZG!<C-x>Q46G9mZ+U
zDwtSas1c+kWz+~+aS#8n2rEUbv6G5-=}_pI%e`(s-Osqv=7{=(Z~%I;@Ec8rldL|*
zpK%3WLoTKK0g|Z!NqSA@yF>mSfBh`mh_yBs&O;!$=lDE-elcH%^HBssUpKvzg?pOy
z8%#myUX#9zA1NYIg1Hc56Tic+Vu--du?NI2c+w_?JmZP5;l;7KzGHRy6?R)s?-M84
zdH}x~aF9kAR!*LqdvbC7rXP*f7A$%}iZf&q*hu91^Y-C6tae}kA1r)@lKgX3{DRwU
zydJZiF%cqgg{+fS#V@&+8BRdw%?CjWV{+styF~~xWCt$v`#0iLIx`eNK9UdusPfu;
zcTmcoP{SIyhKY$Z)&!AYcRRior@dx`Ro#)_4ad2N{g!`<&v=tZqPWX6_|_SNEfQf5
z5ETo@i)VXE(F>g-W=aTy(Q9#Zj^Oa4{X;R9R$>QQwhU(o2i)6MC;C%L?YY_Q$dRCd
zP?hED5;)kP3E%_F@2GCS=PLk)dJn+ZvHrsYRgptiJbM>^)&JQVb%1puM$tFfj8j5r
zT%>jL{AoPP*5<H25F-?$4ppC@7!4l*;V{I6qvX4*5BD!b<A;)ms~xaNiR<n3$G>No
zR1XjtPXyE9?MVCl#^k5b4ZbTP9mcSXK=i@nIV6mMh3?$x{*DoLCqx%DL)XOcd1YId
zrx}OtDq@1-h6&x5&GP09juEE=nKKH;2ke>jAI-GSuE#$nk1)a*fkWMW{-Ymo)&#r(
zhdL%9SE;*Ts^4&_okL~!a?W9ptjHm*ZuPIj1S0_tQo&;gk?3+awELqGBJF0ox*=}R
z786sxOZt_Xkb_y^fS?A|k5#tEW+i&rk$5zs0y)yh`4>;I&y(zEm?@3(?@8Yn+Wsq*
zt^#6e9U^I|<cn-$@8@tfEcPdTZ0~PCa~Rk)dnk3QTKr4vqs^r|`Z{B?`qE3HjbjRE
z_r;$uCn98oP40W(|HOlQ?!(6JIb;QkiuU8gDKBx4IzMBjZ3#6FzMIt7G*IPUcqMv{
z#k$vD2i=Cq*;k{cvnQ^tI|-GO91R)EJ1KtsbM~7W;Hn*=-F<Uf{M^4YBsm3E*G~2|
z3>p|kGJ(ikI@Y8q{?e*A=J*LW09z%$Y|`ZTPhpfyRwGq+LS-vR%B*mI**E?PEShl<
z0C7KZWH|4lneiuIVO%6nWJo9_J_)`6;l=K>Z{y$nka^-D^)hTiP$W^FGLg|^MPJl{
zhl3H_02EDVw4b1SfBkU$dI=L805WEZ<Bo)k^Y4$3{*~<pS6nxomLns44xp|tkMEF-
zW^flsAgrWtx=x*F8jiHGEWQo!!P!V*kEFb0J9cDfqE5(Y?2#k<`N#7k+{!?R9){H`
zSN5{_-c@4-o<PoWG0>uNzWl>wenbQqgx9np*()cLGdsA;zb&A^J%hoU2w^_UHu3p=
z@t5x4v%nhBRK6QF(S#RVCORB=0PK19#;Iy2#KH<=GBkK|RiA(N34=gn9zhI;4X1~F
z84redF6i}-yvx;N;6V4)&ar?Iw>a)xf84$-r_hZh7|vpiSZBc*lMbgH?<W+p9l|ao
zc|y-j`sB+FoD*NQhM5Y81>!$I#J5?L+|g}*&9*i(**GHr3z!z4>|gw+ZE$)gY>C&S
zFL2ffKu@h<TVneN3=2?IngNyZ;wzYDB*(9t<A3~H`-#z|R&EvLYTzfpT6&gWy^7WG
zhd>zsX`^-U)V_oKLH}k#37g1|%Q+5=(JXprp<l)X?>!>bAtHf{LFD>gt$y{Lwosic
z;T&HtUyX=@LgM~A-Tz~Ez6^Clky2Pip)8ov{=33&)?(v>L`ZHbBSP|yYJ#6q2-h%s
z>V29Z!MFc#fxrKD+e3qjJQBT$gW1joQpu(Mai-trHZ~*q5;KBCWkM$1>KXCLZ*XIP
zeky@p!2}4;K7M^}{K{wfy$UOFC&WQX#^n@7Tok8dVMa0lle)QPvw0f?6J5c9^qmwR
z^RfMg@@hT6N35YY0VH!Y`~Zn`*~#(moPl^fLY&<oT0*hQ`-#8$8+&U5M<&4HrRXPj
z{xbgfYqnr@H$GB?wes?E&f=Kk;_W-Ijv`9CFiEAjES?|{ecNBguN5WHd1baBS}T>7
zn2RE}Zl+JaXqN-UKn7|hTtWB^@26hMX0^Uhuqs<jcZZ>%c>cU|{h`|#e9scs1+H=J
zU9i+A5Cr&b1{pA0faIWI#OUu`Y>Zy>fPlz7lmKN$a<g5{2|fPW)ocYd4B{n|2s1=N
zmAJ9{`_Chp88U*@j<g-YdV!mMq~8G)G%?r+C6X_M@PkU<yi@equp9{`?zJ=g-oNW#
zz8396awuGYy90Vqo6B4{A+pHexQf(v_zF_;*OUDD_Zv_}B%Zh&9Umm~`9u7Qmoqa<
zlzIS6<6Hi^*4M+3b?T@Ro%SirAQioJgr9RByTBMr!70wpNZmH)`PCi9N2jF7El?g0
zQzp~>qRrnugJTshCNx@-1sGiFc3A8;N0)*KS0|PrGU?K!uu#aO)$cMdGefLOPYNzY
zSScj(faU(q!y|TW_hwSj(xm_4UK|xXNOzB^DMQ@PD~~@U6jU@J`w^~~$oS)j<NIH4
ztJF)2GRa#n;On03_BoBwBe>e(Av}YiK;6w%@eiJ7LQSjS5WrV?KB6oKOA9r<+bm#w
z2k9eXc0yHj&J{evx7JeA%xDHuAzWqo?!Ivpi$Os-S@xEQ&47yXndrSh?Zo={qhB&F
z^9>#+=o3_)cl`C1_``48?!Y!#b%a#dN`4uCNw|-WknG0CqIxkYsuhZd!G?ZU5x?<g
zOcxNug-HW)Cv-G9>4s<Hlxml}4HZIe?Sm1+7TG&$J`LzK(+D30PxHANR(LyJmtrmX
zu?Q9uT#DDx^zouNy^w`GjWAM(r&x?g$XO@*NB?E;VzfLqyGte~E)<2j)U8YVXQfap
zs~*#kodL2P3j2v&{+<5-fovd&Z#ITR+tb%-%9Bawi4#42qcz`<M)u>4($cwLqO4E!
zP2+9RY7C1Vh`|{QMwrdW&k%l+QB8z4As*ab^g6pVI$`t*;tqPezQ}+6f{iO39{E6`
zEI>qjX1CuxGXn|0f+<;=DXw?7<$hK))j;5$hKooebzk-R|3vC`9gv07)_xDNb)4Xn
z&+rle7~KrnMkI%{TL5L6KQ)r<g;of-z#WKC=q@Yvxx4X+TshP}hBMh{geHsJ0~LN^
zj!j0`j%OQ0We)CeW~Kku8|=fDOvN>{D?o+4BjvAXu&D-!o}nC~z_%U#F7#z6f!$xX
zm{A%LLv*6T{qqn%|3ae^2>N!f8pnfoh(BNIuoRmme5#!^%#<YQ#eNTXyG}X<WJ~A4
zYFywx?(o-3Lcm*yFCI&2B%_lRKjwH}25n*U*cR$Y??mc=yMg-z4c;5y{&`dXBkGS4
zG!1=~q{A{@0Is2z6mHN1^|E8E9n2K5vv%~AVlt`lnoaT3k@q=qBsF9OQTHYumEi`e
zWHz*IlYX!L*hc?vOg_fvI>!56+g>H!O=N8`UP6oCJ~Q6;Bu67}YC8rxZ8+a`-XAZQ
zp%^Wh;Lt=Y+O{d~^n(-i`}VW=DOX3IOKv$ZYI+H4a_!rn8ehZHe2QHLX;*l32&9zI
z)VN2Srj{Zqjl>rl^)fDvl)mbm_*mKVkO2%$P}teZ)JNklg8VFoRLqB>)<~!)$h|5~
zEg9`md`vQ}P67KG=kws2IDPDmE-0#7l4wH$HzZ#T-KcQqd~7rqw5*31lcs<`$q{V0
z$RCG&3V5v}&QRPN?>yt*7y9m5HeL-hO0zJPK<%pm8v9Y9o3)RBVS4l<Q&6zGr(?5{
z;{kgK;bNF2?&AafNhA1?K^)%${gJCqT)pBu4qTE&C-#5UAvB70#oh5$57?bg!HQ@g
za|G@Xt{d5uj&NuBs}A9Ga17zf!tH^ChKrWd`fj|RASeQY@oI`i6qZN?`!?mP(Onp?
zBLc=CyOeMVx9}MMI$9!Eix-A;79*PWj=8tTx7pK(rVct|wUAhWSrFCEum&RqU-4Lj
zKVT1bV^R=wfEY_?9%RCdn|TZT*N++&G#Ru)o_@8!zlEV5Sp>0EmR$(~1@54Ue)7GB
zue1BwiFtsfm%5{yeBLQGI8{oSS@n^hw`}y!UK3&Jpzkc`|4uX6f+iS^WFJC-LrdFy
zS$y=r40@?UMB8rAO!$C{_51VUyZpr<pL9h|O&|sP%6B(!jNf}6TjhMD@4=hcYLR<(
zN&Jj2Y}i<9Y<dTRVM?@-dC1j>pT}SMK6(t|YjR|fyLnms!<`~IQWiYkA?2~i&HG*a
zH<*Qi0>BvtXk?iw0-1MzB7XBPZ3=1$zF~GU28rrLr@s5*58i2$8B`EC$t=s(+aHL3
zA1R!3i0ZJ%%oq-8J#sUT!JN2QR31ci5hPQ0l}`ejMXV@wi~kn?%Y_^lu{WY>j1$?y
zeXqJE{$32bT%?opc^Cn(nRYlYGZ;j2K&cRu-O%n2x;O&X1ieWSk5e*0A)x$gjL#d%
zj8a(j0?4{0#h-YlkBzbMYH}BW4~7vXzBt8Smd7yFYl)pto91Qk03IO7$yWmo<17;|
zG#R_ZeTJ-viIPpt0qBLcvV;>%xx!EDW?WKE$NZG|V>z`C3fzuI#t&Y{grZwSpflPf
zx*r^O%R~HD;=~bjNuonCu@lFFQ087gCO&698-!?KXEj+1!Gwh1syLkiM8SdKRuK=$
z^+xrdO8L{q@jAs^AtXp_mi%VY>@oYvpQShf;G%i41yg{eio$oUD3};Uan%ug)hE@C
z$T5V(e--=5-{IrOO4+_%fsS<0;d>vv%J+6KjG&9wIuKf+dmyRi3*SJr5K%j#!FlVK
ze4xk>cSFjTl@Y)YMf&7{*d*Q|M!4Vi`qg_8SE1TSI6{{wSi#~&hzpT?V3j;Z{MWBM
z$D)TCk=>);5DhENPN0;sd01)e_db1{?Te@tWOm{aA=V0k`};<}QW2FZHXb8D4^Bgb
zIgUaI$S+6w<sEE{>OF1iiMNbiPKpAa6H4j3Cr9~tr;nCreJ)#*10Vls)hsT6-0Uq*
z#{aFJ%=1YaPIS2G_0ak+JA-96<kU5q?PuAd6m<kEtJuY@VK^O+KT!wOZGDJRgaJ^z
z^%nEH^VekEb5Cp<Z*jBc7P^lbgP=2~?hyDKWM1ntF}JDIeR4wZW!#+U+~uNVZwyz+
zQcN~&uDS^XyY#2Q`3DoFATgqYm_v%?&Y22CUEL5IxqnVwwS{IeSX~9Z*sm*?cdW%;
zOiQO1#i*Mmm;LO+0KjB0`v8_HXJboY44tl_o+kDO1!ouK)YX8PeZ4&vT`;R2ocYIL
z!5%y0)YVe(IMq%n(NZ_NmSN&V%kkq+E&<At*9F(k%&BXNq7^!lGQTZz)0-fH6gGSI
zs!?@^V}?mA1#U_1Z>S_Vf7DUIHGdeTP><=vPIN_a9?SZIMe{ADgXk?H43@e%(@Ndh
zHNpIDHb!@P_v532I3W;+vUS4LldM)Vjq~r>EZprg-U1YmMu$O4G_Wm3+BGqmwL}B#
zuqe3rqfv_QPzXnInX8}8HIq7ZBXK2D2~UA5$EwrRH(>^%Nk;CmlXL2(WM&!_5Z~ga
z9twS_sR{B9VLLGOq=h?F%_?`nfx+6PIdudeDnDX@G7(%uZLvGLK3I2TP94FLQ|KCC
zKd+lv>~3EW{FWDUcnw7R^&;{0wYIs*z}v`cgL%_(u7%1=gGZ=p0rsfwLP_4sf|FK^
z*38@lVSUJH{Ff<;37vLnu*>N-1>;??JhhO(c_mZtdU<g5sWx7hq`ecrR#MkT7Y6sA
zW}~wRyIZPochXDH_y}Hg$@7CzXGD+mL20OY%<D^)(|KWVLG*g^wyf(4%atJ;+;&N@
zdZ|4zjrbypcM*%O%ozCPofie8&Kh_Vq6u%QKouQxY4CjXmLu3~3q?>E$4vFvl|j{s
z_CO6u|DA1pR0YvDQlhNo%Ha9qZHh{&lya?5oq$WP2=4B*!P=xE9r<C2yZnma*e)BK
z3Eho`DMt9WD}uyw8z#7@*H%C>Kl#ew?PWH~#r4=IM|9%l!GHT~v?kdZy$$W>kt>2r
zdl(gGX;<R0DiZUr$>#^B%x1g*!i{mwQhO-5;x0WWSaOn$Pfo@-HT(q>-JuHR4=)U^
zKEWoANTwF*3rU4`9p?p4FNv11G@2!Rl5Eih?woUjqfTK4hxMTQEpWfOJa|j@Tjpk2
z-Vm`Dm|@-Zi-TJaW|)jxOSgoFl)Ao!L9*I@J1sg@VnwmJEe_t8Y(K39sPdNdfp>%|
zz;?Lub320l^oXQEa=$SfS_p;9X%Ffr+4#&f9d7|rO<)*oZV&D*XMz;LPGtw8p_jTF
z&kY`F96DI$jygB!i3XLM1IVao3>Sz;uf)A}Ven<c&?gGqOXmh#L{CghCR<q=PhRSr
zVE!EYA*59&fVltxZu^UaJ)3MeT6`%672T{k|1JpjoNIG)h#3OFcxM?}{Q2hx^P_jp
zfUcTNy1?yoPVn;K_TyR=q9Mq%1g!e(jNq$7ZM6R@i(Kw`!IjbWW~95xPqM8LDsfS8
zjJ6WlZ@_1Aw3Xjg3P3)8K``pPXdR-!WeZ~~63)*I{yfdbXHo=&jhB}}&dYul<ks4#
z5{tlCcB35C*d@WO0zS^15I(I@f;`-JR<K&1BU>uD(~5)zmUKr`FAdI$@VGJA8Iy(s
z8l&rtyDS+0Q(K1?O=R`*+LH2OxAx4SK6)*&Biv{S%Kk-X1$BqmPv;WCr32(H{&;3^
z{EX;%Byd<@IhC*7PtOV_)JLN#wMtDHt8QKfGn;&NP#Zl^)1Js+I<Ew(e-_*weNl}P
zef33neNH_yxG%bk=u($MWSAf-?abiX!|WAU>=$wL(TNqh+s_L2(F=+x(2!^)X^eva
zpOD^uac;2JN}Cx%%Zl6!mjqi!)Bv8@nnc*-9ua=r&o2s2jtG;;1j$v}7lpD)+>DEZ
zpa0C(!Y_ft3(|{m$9?(p;GYo@n$3krb+rI)ci*MKyl(sXkT(>#|6CMI(Hjboaz*<H
zqsH5~{b|9~qIv_QrJF)rS;|oCc3K&{F3M0q5gBMX!L}&Dq8i-D-sc3zMqGh8l>%dD
zDB$yd9-Nepmc-!0jX-@M$^ZRX@aAzgTxpnY)xox38RQ;ogGwkvw6dgMQj`kZl9Pg%
zXb(yFpoX>!kanFGOxG(n-L9w#1}=`1(gJSBmBF0?LaRU2x|IBH?h;<|#o57Q5xNY%
z7<7O&KMy|A#Ss0I-Cc>>YGqIt5zHz$k3Jhyh#PliaD`|$QHm<AWuqnT__KnidTlgw
zQ1T=Y=Z)M;hrUyTifHwLg^JuwX9Q<NOaStYgxE!a4Y<I87Y2(KjlPzzsKo-q&dUU}
zFLec<o@t{sf)6!QEEA~xx-)p6W8&A7A^(!yQIGi2o4bOaE@VGcrI6d1MiMH^rcgZc
zY)=l(6j3gt+8KG%M7O5X3z(v5$H)~yP#Hbeo(50h&lo5QW$$iZ5<I-OP1U7ZmO?pr
zqO8K5bV|^1fDKOu-zgD@j{{8_)Gj<bxFp|Zj#vss>4ZqMk^;a|wSB?LXohQtFLcvB
zj45*0+?vyZZ3;#|09~Jjs>w@=(RpAbH{R;6EgJU#vN|!@ZCLZ6D`=kuh=7d;`s4b>
zJ-}g1<uyEo9f`mPDytmqKV3Hb8CexDm`2aQdZ;+qlU_nd2X>2cx1iIXaLgu;(94rR
zs_2oSJ3tNj|4m^dL0I^oPZ2!=W*1ia{T7dVfXl)ao9c@J1r6j-7n2yub&k2mkMMjI
zDnIT85_k1gvZ{V{kbk)&yG7`(9DbYx(bL(N5!_AO5u}q0AM|(S1pVzNe&sw?L$v5l
zv?f|8%4qBH@<rvond1X4s`{2w;|?EMK0)3DBzBxP{56W-?mzJ1Cs9OTYvyxdvQ1Pw
zLJ6bBi_#U|D)+TVWmn5ypS*+kdMEi?d$Lp6?<p-PWv`<S^5>>Gp&~au(UYQt74Zla
z?(UoYyxYe;0CHm_HX|(jfhMSD`)T)&)i4GHG-6q2%P{`9XU-y1#3m}SZOMxvd%*M+
zeuI8a_Aa9=Bf~HcfAcG!etzr&XgyPjDsHyp#r~~@-rL_lG&;M}>_?R5m%(c@J4J=V
zK8>?7ElCtzoll><zn}VtaSxzHR3$Lo;GK=eF)3}4V!Xi3NTF*Hl4U=?;&$J=dG;j(
z$AMhe{}SN<2yG~U_{IuY_Ws<>LD6nZ{v+NE)_`a~nBpsLv+*g!69OrDtypfEwfZY9
z2l{>Piw?4nQU$;f!xE|f-RslavNiNAg6pW8NK7HTrM}l+xd*?e!$W!@v0Wf%0rfje
z+*#N8ou0F^B>X*@XtjwFK>X<&eAgQ`fvp74#=-_JKYXKK`t<Olr;1ee=mGimzJ;X8
zb&&vO(R=J^m&<)@C(gx;lxFeJ2@~Fg@>Syh^fFTlnZYf}#dGe!^9%EQE!*lJkJXu*
zjM7|44t2Br(J$CNR}%!OFl8Pheb!;`_+%tssd_P_O4_j~=@6}bq2IsJ&a0ZBEPOP;
zlHC~)mI1x#<W_1_Fh63YfBYFfv%t+pbi`<z#D%3C6Z}N9Lq5U3w1Z)!1zqDWAV#17
z8i@4-=l<uFyh!>kCVFaPYKC+{x5Zq)Vv22UfNt@vZhpH@9?gwG1Muebq;<>ep$J9#
z<Zhq1$4*=Rhcubz#T2>WEnlzlhppxWHaYG>zCC-~n@%F*WhNmW$}mi&21pklSL7~!
z(C@knn`9cxr!cFG@?kD@x&MJqoV10$<<bYiDu&%Y{vq8SZ&Ea9B1V+=@)R~}rTgGJ
zxWE?(={DI&DHSU+8v$*zsEq?9i`tO+=^$et#T|-mse4xXQ}-ITfE_ybU~lZ(*JBHK
zauyD-Ugy63N$mY+86Y<#(MFb|JGU~n`f>Zk%;bVZcZ@UxIGg*RId<YxHVn6kQ7I?6
z*tuQj#y;0?aR;=e7o$@<cSlw1)!*Ci8nJXc_uS#JXP>rzPXj@_W0f7weX<~S#$RIC
zSZRDM`G0}b`oa?Gc)DNS6x{d4XiYVIi^_+83`3pU|NekT3L8yyF6u?IW>0yfAs}n;
zAg$=!@s9-0{du$`ck)(<=xCEzjxAUvc>I`htle|asCqDXFTnmuA#fF>D8G^?X#bJw
zMIR>Z%~Ua{D&Y;a!L460iA74$oTiFVj;GW;azyYd6Wq(Jq+Bd4M+_EcPEEeb*}RCV
zEEti*^9zYM!}4%_@RP4uNyQvnNc=&9DZ&|9?t0q-Lf`cYoCQlZsy+pcZ=rVwH3z$`
zjovLKP+2&cor#5$7_vpQv&o2`q_#+vr=26bt7>8J`)}+)is2&ubb||$!-C~OoAykW
z5vD>CMi=R{Ih-qQ42Z?h1U3d_I{Tc$Vm9tR`(yB%E$zqwW;NC+EI|Nwe||N1;z3>k
zw2^p}Om$#MR2ahvU;2~owUuy_sSYnb7E;vR!H)+A{m7Q#)tsa3J-y7K;Jds(1@F9X
zYmq0LK((PW8^a@i9Ncks*0~_-up%WO@kbu*Cq~W^7@gd~1l5o~BAYJ%!aQ!y*P~yL
zH@rHg8u`e%HIIzjYs~J|)N77>*u=e)fCi5!asPQVzW6K4T#=Z;QOUqA4oNy&oB#K%
zX3SPh4<2*KhXvuvsLch$>wLTpqp@N+mdKl}0KEeD(Ek4UKbot=?Bf>luP`CWE=!vI
zm3Ku;V&TP6VR6ieHHGf}68|gW7La`E<bNka1n(xn>^!x3EI#5lV@#G!q8)KLblEOI
zr?_Wv@WfswVa}!~B%=l8L_kbBG5Bi%qgn~Go0P>U^~_DG2)>rqigHL9FjP6P!*1<2
z$>6%f?Gf@as0?3$*!6LJ(9&j$OFUP(OoSQ4kGGEt9{nH76VY>dMKB-jf-{f>2pt{U
z7JjrMH>x=xBU=-)uW;?95WyE01lPt`UxTDff#a$o;R?<S?uqo|+VqF&Gma&Ko(ks$
zQ)CkWz0`XKZ$H3JzBGl}7poxHwO|j?ihvHyF5IDWgN-$|G`UWy`z4J*^(0Y8K-eFj
z5?m&|M(J)ugv+>s+2P5~plyFfA+(sXG5><O$VA2Nz?R^nDkg@XXQ?}@BAAU)0$3SO
z@oKcJyu|!oI=!nZG&*0g`^O={`t9w*XHknOx;VWn)fTMxmJvzjG?lXDch7gHzvPz(
z*wb<HtENI{^LmOHsc`H;fAqhdgAtyu$I+nzuH~gFqPEio{_0;a&I1@#h-O4rfod^R
z_>%wq>GlK;ahzkAoH$2p@*B?f|G38TX<14NI4PGTnP&<W0m6D;&vCw+q{hlps(<&%
zT16xzxtcfmy=Sp$#jndY+Dbk(a41&#;&ndQFEd5-t4a!)pM)qF!pyJ%K{8q4hd=XY
z#q4LKy^$%YaXCI}F88@p7$-okyV<H{AjMh9Rv!B19)HOp=KjC~QNND-cHl>;wj@;b
zOyVi%o$|metrsj~JI#~)Jxcl1PCJ{|k<U-<OUBz0{>oeVE{XaJs4U0sm7jXegT78l
zsD(5pmdg{8NPNQN^}ZrCTKS&%gcfwKH`fU$pnUk2@BEFkED5$A?^HIq7|}*@&w{o7
zjXe8GIg>IK#YiC6>yXUcb$9svgVAd0RJU+ryS0z7hJ4ws%IehD`JVC`WpAWieSzDn
zH=J8c5&VIw|MY($m~}<e;uEX;Ky&d@TEZ2$-<%Pa7muZQ3+4_Gra3l~;AdC??%)b_
zDo(|MC!QIDQNa<-+S3(L-3oQ_pgt8DHLBUulx$xFYEt|Jmo!1PWhJFC@a)^~J#jo`
z{FI~?T?dC7<GZOR{MKD82|Y}<5H<{$7P1)-e8jfFEw|VV+Cel?QWk@hAGdSxz`Zsx
zxo>{vEo$M*2OPO=&~wumD(boEL}oYZ{YX4&m{s$I|Mx~7A~TgtMk%kz;4$pMyKfz&
zy6usMC3sW8V0()0H(>GRpLpvF%H6MNM}EdkP#WVlGVO8EV%2`DE3#U^3Dq!s|KEny
zd1EC@%%*@4NvlLLv|<Gj%$~H~KQ$jVkDRfw4Ff|8hX|wu10KrX+Q0Y>2Sc%SF_0gO
z2qeoByFhL*)(qD@H@I{>6omje$f^}_Rb|3bx8LDG6NHk9N{DucY!AiM-*NFnf&)b8
z<u~l?m9c~}i``1Uq(@PKTiY0%5>4aJ60IZCHN8NS(4cvT26s%bXR&rLfjr2X1@6E@
zf?rIuaV)h6JZ9;D?-seH#^6t(&0ueb*b>D83BGVfP$E;KS_JWC>K`rA*HpN(4hs&5
zUNBp>qil&N9E<Lsvx0PN^nUPv#cU#3Nq&-F(oOy<C^%va3uE3QCf|MbWbBPpY$QSo
z$$UMF;PpcB%U_R|j~F-Xc~k*<&1?*In{VvWV#70DXbOWt{MHo4k3HAsOcRdHN_8$k
z+(y5xa5wE2pVA4_7HQxRDY{}I0E(*t7CwzXeFYB=ac#rEQzZCXI1|j{^)|mvl#WQs
zo5IG*A*}AIQ~hBN!r1Bmm?m0Kq5wA4ee->z*gd0`QKQfi2q6sM*$IBbbqEP6?<(IA
zF*UsZ2iM29$Fa?5J%k98yLq)08$s!xOX7DEq{|M>Mcsvl(;o`ZczyiRabx8lM1aEK
zNN#WaG>FB%rQz4){F3jCw$x!>(1w|1?%gYbt32*Z%H;B0y;xlkL-1-&D=l^Zxiq+S
zi=0&`h(w+zm#3HXEJ~?N58^kq1NR6U{t#-C+zf<#hGiG{Djq(1g$)zNgyEqFse%Ux
zMrbJxAN<H>NdACD5umq-IpX?C+{Hy<<#pjV5RRyTg~{^HUH-NIJf1T!tWp9ziL&sO
zKQ-4Tuw7;fWVn;Q@_UZYSp~VC+5#b<PNoWzJl7H4a__iIn2q>9x~)X!OI!Vot4AAA
zOe`WeF+qKx!ZLbM7rSrA1m|A|Q6bqF29~B+M_D;Nm}t-bqae21*fR74=WhPQA9>rD
zRnQ=M6!sExi&D?`z|py~eQ(cg|M!HCx$MgJ*tEWu#Ilw|n{zW(joEoizZ_x1xyG2M
z#`SVA*17WTV06j&JMiLBJRKgrJlR6k!XA466&2+vgy6>AgC}kudj~t3neJJ>4Ek4C
zmM8znE9Jr6k3yA1+Pm3>q@L0;1l_ehSaq?<(bx_#9x`0S`V>X_<VG8=OZFjjQ=y#g
zqV>FXYxH9|Ur9=!z^17kFo1&045d10zRe>=B`n0mRhQW#bJZBb#4WzPNJY>m{?aBI
zy5QTq7TSKi54N~&^mXKQM%`jTYuyA5`ikAE!@~dkX7qJ{R3(lRGVCBpgcGfuAAbDo
z=o-N|Uf$G3)ESj0TlsMK;kM&6JR`k`$Y>MU?4sBHAv;5Wmg0yMRg&+f{~;{ddE8G~
zeio}I+o=cVZuPYvjs7XrZ7Kp6njCQyDmu#)rq#nf7_DAU{Tt<@39qE775#`e4|i3=
zXL8}+lMW^#UQkGPunPC?itz0c<I02BZy9~~$g4Ol{E?;<G0={xhn2htHdNqpj?P_n
zQ8a;ZYmIYr8*=B}Z3DF%m#mSR=iEipbFrt0IpY9?^AJ{6OuNfsxAk7Z!|#k4%zE?7
z#CoZT31Es@&P3%UM;yy^46;O((m(&lSmhD(iGXU8#u)=}Ufd;kbfx_sYjVWg@wI4w
z%f9ko?l5+Pu##L%kUzu!G4{BxkMf_KJa#og_)M&Si@-Om>4?SG>=qpJ-`KEm<k@Ik
zQ6AG$R6jr)m|kBdb@%40a&((b(5eKq4_jxxd*i0?(}TtlJmY2%Iwa#PhP9gggFo$$
z)+o0>5Z8%;fWQ>~4O=S+HZ(J3B}L)dTnfPAE<6@T(wLDLgKLp?gc_3Ya<}sjPa5|)
z00AK+yNk+)it#IuB=n;f{BgUC9X?mUTybV@6&E@a$8BPXuoHVS|9<8mf9q%Q!8cLJ
z$x=x*Cpi2TqJ=POCsgZ-@Pj@+6S+WQ`5!Lxs}IQt?1Zh$!G;L(#(93*>4U`hUdjEk
zS{J_R&+oK}8LG#*-YOhHoD{*1HL+NYXC8RSf2J}c(gA3Q(<Sp3MojmEJN#ewu<=T2
zz?jZJ3-f%}agjgvKpRIhnA%4T8LJE>!39$O?zMjNn9WAp2OO73e#f%Gvxi^px82ib
zA=as0%I%;qcdpOuWUJr%*C$7BL<7L{g-zEg@^{_tpGw(;sVUNU*u52q-uza-$6}jm
zA|Od$#fk7$6Q1)gx7#?ooGd9b+NG-1qDS28SGC&gtYi<p9XLh~xA-D|*1^$h^a><m
zI#N&+h&pg!5D@@iW9{AkxI^tX5z~o66Yb0pc;9%?zcguJRuy`zbRcCDELN&eW{I4q
z{XVA-`ce1#j%AsP>Fh<L!Po=xyyE{U{R=R_L{Hr*ZA9L1lzKEY?&q-Q{BGwCTE^bh
zGG3R9T*8k?7;*bP;rEN)H4An{g{uTTE~xfJzU^||3EL^T%-=Q9);WAh_j;a_a60=j
z-*kcvDp(mbz@Udd3Rl_c4!>PZ^jfYSn9?$A`0n$3bra)?BZ`rTiq=<VXT8hW{@W#}
zIx6bOsTw4?@B@D{1=xsV!z$KGArKH5vW%dp)X2NO@Gnr#&nj6__KYyMfp{}j$ip4;
zn%|ZxNi3@UrHGlQFr!F)`y2jLiY`S3Dx;cCa^$d?GF3GDbc3(_+@{$jsS03<Te!iu
zQ3;B@Adu03KzS8JwCxmJ`jP#TZKLS|ja_;NQ@{DpAE+{LNM*9<p=aW7qNv<ze{J;Y
zda8p#;IJ0ZS*qAQ^@;xhg`4<2Va()+WGbmer6&76@;{=~ByXR#p1vHBl1NoeK62uh
zep2+2MBXjNajf-lR&2Z0d$z_SPhsw*U}(3RbXMTyL;~IDpZ$})O9$JGNmLI(*D62o
zQ>kReCYoS?g!chyI6z51T;s2fK6DC_lGQ#d19<Y?j_dsO?`F0wO4N~%6ji<6|4OCv
z=pxQK(RSTWKky%@<Q$7rT!>@Mto_}4{&-$W7|)FKeBw*h1*@>bUrhZ=#>i_zwjxPL
zc7+wQ{EFx7r%lw)69|Jj^gfn4fJ;wg?xe&0gIk#*Z$L?|gc3uzkaHG#s$*vZ93d<1
zDq01YqtX*hh8364Q<X3Lb(<gGWbdv<X2}!`rwb40bZx@lL)AmJr3{w!X_S^C!qMIC
zZT^s*Z9GGdAu=FRa+!*>6&I-#-|8m+8rA|Hm1Nx^GcONo(F42uS>M=4H9+dXA-<I(
zZ*KN)QiPNTqBV)-Q$0fpWvL?vES#!TFj~q+_WD}tBoetf192W90E<7**VX%F7zlX2
zih^#6r^HbKDz7`!U;n=Se8^r~#^cw98M8SKOf;X|<(-bU15+7S1%y%$8sy$cPV!P4
zpQ7Z@Owl)Pr+cAaL5({$QnReZtU;ukFy64hFP>`SL+A^i!3}1BsYq4h&hGHLrR|4A
zVGx~;V;b8vEBxdbU-%RImd5V&)*}q{hReR-XZ}NH4;a}X+Ezu%%J9?Dw5P+r+h}uG
zbZk1a*tYY0O#}!iXPA+6@7m^#Eq>qH=mAUtL>ETy9{m&l#Zl2aD5oHlplSqE;_f=X
zKKfeLSAnHgsx!9qL57g(i{Py8s7{|BJsF)effFbLJgz#r^(p_!Y+H87p{OHYhp{Mr
z#$lgwsQ>g(`&qOGb#~|Duov7?*;TMD5W2q2Uv}gsi_r-~w3@7ueD~v&fBV=$>j3=;
zgMM9jbhng+aaSz#dmcXMXGYLyz`=$$F7=O4=?-|J23d4#Qc1{JN&7!j6-|(>PJM!E
z<g4?${RWDF0t`*yg8g2`I#QQaHQ(6R5sQ5FF7~pB8>o%|9*KPS?ZLitx=mEl)nh$$
zn|u^LqN&?&Gsm{jkX#1wwA<iy?Cxj1{)VpyVT)R(@M$doy$JPYm-yqpwQ2k)ODNuF
zBw>pS{bOI+D476eN<^apQNUQfYnz1sBUMTHuIPe!Api*yaryBx{mLC|4#>ia4%9IL
z)XiPtAEDNt4nyh9n8e91!^E)MPo&H$!}S;|du&`R^r@fvm}<LP?aw(F_$5TRe=YQ_
z^X&Ttx2(>t1U4+R^AY|J5loR>qrer6ZDK4SPul+}gRc16xKg7O>#@^hfL65PrKFz}
z(Y9JuZ545n$?~8hd?!^XtI?DwElPbkQBx7kt>*goq7si$CQJs|S?RDv{(Q>qvGY3B
zQ^m^a-c9&@vKY}5t6A1zxT4P-eT=^f_{8)&fGgO0C0QJKuD?QPiqvEUtW~1{A)BKl
z7itBpQsg8{nN%eZ0nTuID2d9@ND3AK^0?9YsK3tfy+_y%qe&!t*r2Ku;)e$W%qkmS
z?i0`^n9@{Kmkg^y#Q~&Ff6;$OrCz2gm#BhIhU=QLc);8KOBfMze7(e8bxffK;otrE
zeilb86OQeuv?3lA?#X&MUbw;MQQVS8F&i&{x4~oaPf_djQ@`g^(fc42>#-UTJjMxK
z{fWO!+}e~%YZk`#_`ap<{P_<=zsJsuQ&0RbZ$2c3o@PX_@hgu0v<-f{OfhaHBV@mj
z%qy7pC;kOiKt_m82nn>A@Ol-a22ZJDO*w2{^p{WlYLya2K2Ukn=shZs2;)_SakkI5
zKl`!&hhBtd1IX;k&~<XE3)~|g`PtO<=8o&FP^jR7=o~&_7hiP)6U0v;2}LDM2?@pV
zH_u;&JQxXzJcK?4bs)l#T`&8&?~pXFOcKncoFCCnj6a(86b%%R307gRMP`ma^;Ulu
zAkWLO;SmA?CyWGkeJK%Z1SGMMF@7^jVp3qS7Nre`1v;#F!r=${+}_MMXiF8<A{>8i
z`CPxld>d{^KxO*JKbz|}OW21h;Za5X+Y?*}CICKIdeNGl{rA7LACPe(PA-X^Xc4&<
zGG}trPQFHGg63-aS1Fb`_rbw_&D{)Q6OzK0)cy35l_z(ZQRn=l{SwtaHOaa*>P|!e
z2H+E%>W`Qkt;b%prEHrY#7>Uw)xG@=k_QNbpiU$?Qo_9_zK>su4}(EE(IFP-kgX_b
z!$JP7moi^2d2bnKMYk^Mj3Suoc$BhnO~Oy)m7M0Bv?`w3aq3!+t@Qi1+eGDj5|Q!D
zimd-XzTP{$%3^!}eym`jSWzIb_sm8?Pc)sxPAH)TFrf%?#GOJ2siY7RyVyIRqQ}kw
z6+sl`s3<C8#on<iVnanm?DhTJ>)C+>zrXjNT)AfUGksQ@weIy^h5P(UD;>xKqi_qf
zRI#Joa;c>v42Wp9Q~daR@45=Bvp-ht7TUH~Dpn}C$j!Un%2^?UO2stD??+zhcBM<2
z8Bm7?fszU0FU-E1`x&vB;z2~tpgDt@i#praRSKS#fs;T<;Vzu+9A)SD?_9T^MuYpC
z_A_Mo_zOtVC_3Analf7X@EX;H#}79~Di_}6zP^(WaWsU!vFRAhj8p9SfxEcE`a;+N
z$+EVN8`Xg290tTeXG&>{+>bT3F4!U~H%{l6@yyMIEF11VzcpMi(OxaPg!B%>-2ZCB
zVkuF@Py|8TqEGV8?0>tv=UL@QloSI5HpbawpnIp0VGtY@2J6_71k}U~P_()w!(AuM
zCmop21kZr)rvxc^?q%*f<+)-+T3JJh&+X@qxZTPNn~9&T2CSK*gOGB{!R}RfARmk&
zTng#c{C8&V;f}h%#uYAJnaHs6zZuB&OcDj?KydMcvnRQ(;ibz>Oj^fe)G_W;r~zjU
zqYF8cOw0N@(>;GlShx{CJUf3nn45~+xUuXMIGypTke;WRusrV@_x*pZBA3%z7V3n$
zEmD$U;rQ0=<?C12FW5)ea+q=jc@L6;PXNT)qLIq>^09?sLulkE#io{m^pXgJqNUlp
z``+AT1|dS(0Aee?QXI(>esw7~Sb3p1M@VKxAEs_BW;+!`#d)6D#h-b8IF5~VGAxTs
zwfy0#I1n^hU=YG`3FfA^BJ%Pj{Z{Vgm)vbX8qd%YRGeQG#dR(42Bx7`cK7|Rvfqpr
z;0H{EHw$9m|8yykEgLd#=ypWpNl)ht{O1Gwf9|kaLE493Nh|uQtN#lk!dGU<iO4Qv
zgicOYDZ#M7{~R`oiLSa-5actMkLbj(KiwPQBvERm^tbMn26Oq}uKGf2mII0B6QDiN
zt^Pa)kfLB0e<#F~E-}Eyk$r3tW|q!^9k9yu`u^{3%6;~WL4tI~Jj<st3gqtNze>!4
zapJSU3lf}R@E7jgtL^uL1r1Y$=UMpsk^B0^oO5->?}@%^v)s~67VqTG6MHs_40}Vc
z;}w98vcGlFIaZO6>|NKICZJf@-?+Ch#`pH{J;OtUI93^+1Pz~7Z`$nMUuGX$#=d%D
z_rkSd{)~2)-Ti52hSilbQH<%7(X#nJboA>l=kj3=;5jvsQ~^7ltSO43yXjAN4g7=A
z7Rsw4arh(&NaV7EAo26*Ki$FMJ;C0m)u>m>tnh|hzL%d7-Vj7zOgk7c7_<oFdq6$o
z4iGMt-4tfx{&qf`Br@R;`LP;YKhtD56TWqO&ku(qe#Z#lr_!#%p-4PCYEQp1JU$~!
zkv5TLEs3sm7;JJY!mC8e56*}-)DEr9m@XL9`G2}&!Wj?4UY58JOhw1&>7D(AaBO4o
zI^r%>p&aW#Fz$=~a8tqq!MMq|Qaz)Q+s{P#Znq!Z{tz=JI&5a0S)_`<hf)Ljm`)%2
z+6~kl1i*s5N8n*KjPtCz%pKetIkbPUwm8nFCKiu*F8#wj58<X}ptaPx-BOsJ-^+g;
z)`iXq>M1#nQBs2y3n~5G?Hb-^s8&H~RU=93pau+e(=Psx^TMHWG+XbNBt|B2a!5=B
z;g~#)<SQZ%?ay>btl<(wWWukAEhBBpu71xetVue{M>eT6v6oZNvekXza>7;<pJJ=R
zpf1q?zW^<uj`!1>UDZ-+0>3)M%ht)tEH`m4|3QL2hB6Sx8<Q=5h1)_xp<+A*y|J%9
z8d-oPvl;M2&sZ3w_+V2<KPJ3DL@sZ=J$fxhJo(F=8*bltR#IBH?sUn<dg5>)6^v0=
zY52Ep*z$0i9K4Z4m}q$<0{>@Ef5O>`8Wx}$=FB(RsE_`1!$P_g&R&ihI?lz2y^us>
zAEHiEcJ_ychnkEjtykYpE|KcmI%SwB>EsVz(Av#-vgnjxljAALR*=`jeM7Po_EfnM
z>$<u!KE-mQ1ksMH2FLE`Pu+S02SO{6L1~1Vy*9aV;R5E>ky%wA$e=N9Kfhn%gLq`9
zGDU_I?d46bBg92V6mX-^E=QHjUO)flemyr)#o=t-PjRw2oqgYsj)x<aTOIi^bs~x?
zwKWYmGtjfr{T;NkFAL9c9y{LJium$l`}-O9SO?fLMc6O{*9yrV-yT~qt?I6RbGRmA
zK}DpBu$fBs9PpD%z0^J*icPH%C>Bg?dI)H>vNA*H-r<2Ca!sO_gmV;20>K@$laGfR
zHiSb-5^vjtBR9Jygg&W`@?mO7C_|S0_^AzU(C1cH82?zgf8g-+%7{Yi^Bdo~r9VKa
z6|XmoV;KITawE3^ZxS8T$1iptwDcUz3me!8jq-qJZ)!{WoHB{$OWc7Q>na*~i`K2X
zc6n^syS-FefDKsAjhM~>=vy8;;T<a;%yT(|#&b6)elC{&rWLlfAXfbJ-LYBk^csk-
z%)l+2RlF!5p1d=c92<RQRri5x@c=x|cyNW@1gDopFDE1#kaAr4Doc<;gZ#nZoQ?FS
zT-akE@0{?#c!j|i<K)M)*r|KFLwB^AJW8n|9zL5`t)Np^H?N~rOp=Twzj3A7$nWYp
z^|s>C4YQEL6+e&IiS=VQx2j9n1;%A-2CX!>xU2j9m+sbcYcY72LHb_q_nqz6<LXL&
z1Gkt~Wd7Q?p99BTKhMY8mf=t?(e<PK-MUUzj<<Rovm1DqY{U+GJ6s&}^E{wOz=WV&
zZm92fbQ!(EpEr`o3R6QW&c@3E_tl<OI=EpLS--K0(Y%a&Pj_{Xcea{gEf|LNSc#)f
zFn%|8U0}t7VCDRlxKKSZo)WfFSW{HDMW!*F#exG-*#7K(EN`o0czR^u!7=B=`VQ({
z%p*MDgw2r3jpzx&^ginacYb3pt5}bB0<OF3Ns^3u8eICEdwX`TVwxKtug5!-R~vjr
zU%tnk;qCW>WoMr%R2+Vf=TiTd-0$^PGYo{A=K7YOa6^{l*Zl>zLpc>dk;W^_;?r<z
zW6kj33i2Lu^YjTOhZdrYF+CPz+d_{@4N7l!r=HlW7}uX6>x;_QSJxA#R^QOP5j%Mn
zPVlc>?H;<CFNro=4_B2^iCb|huGsF2VOBnNJ!}tOMio6V+U7BKOT*0dEnxVdCZ_RR
zd-;D|>@cet!rOAZzO1>lwvlP_2!7BK_wm8uNAZgF#YDm|`_$m+d))t`G>^B;`udiJ
zEj<1+!M~q!&&*=1>A{Gf>VCp~p{^LefJ~TVaLbME{iWeJOV?L7&s+}=$ixAA@xyM_
z*j|dvFGQx*)yNx(ciX4M{$B@&X$dMy%ka}9D?$I@$+^CA2&FuN3+A7g3IfY4^nc=L
zs*CUQ&rPtv_6gVl<Stf_N7os{{O`j79@v^;VHCgJWrDx90hj_JcJ!)bzs(4i9B-)-
z3Khf@C;0<zG&oP+Il6oPI1u1z6cC0cu4FKXL;;&W@as2q&mWc(OpMRc$VU~xWj{H?
z?{ovv^1#^=DJSQ6`S*+**FX4kiqHJFk%4?O>jYy*v29xhEAhbsxu*XDK4D3j3Eu<^
z;(53vcI03@HDK7v5L_)E$IKvkdF-a4_;wKfS}|Q==e)*{^IFxoq6Dv85WBFzJ{qj3
zJE#GExs?BUXN*+QZ5zWh8%$ajJ0h=Lsf;6C?u`AN8+IWp4O}!+5j7c?#*Uqwa3v<(
zE*_WPfB&>#=W_phFI-R*1H&-ui{yBZ%mf9v;CuI%9P;tv!{Nh11&F1@;M?tScSb*}
zm>?roT^JMqS%F^e@uXWf$m&K)Sybq72A5>*WA2*W!cPeOW?@x>Lm;4yAGj`iTMhmT
zR*Yvgp)Ak3obFZ(-NIEAbB3Y@`@Za+K8j+}$Np4ZUIxq!qF6AYvp;BE&$GF|NIBKz
zyb1zeh+oQOulN_o^gbJ?t?`^WA}g^k5v(Mq{-F3BU$uAdcHf|~<^=zF$sbnGzMQxm
zB%v4mr?iE0NMQw5a~L-44KMBNVBS~0Zey=QxzIzyI0IlKGlMlt-P|X7T4{Nmr3;eJ
z1wJz=Pxm|&Po~1sD)Sx%=QJZY{dRZc{S-^(Z$xv1KuEv+Zh@Q1uX#%yhiHwKgJ`J7
zh>Rd@v3vGOtC5FgoUIFM2$H(p-Sdn!RjAG3@q#d#p!`;M<ug4W<v0%g)I7U|)D(d~
zTpsBI?9HPLm`u8}W4EovWyhun_YMv}C01XX^nb+A=y|s_h6dt>hj<-M3mCuQ!~>SO
zlx$+hfL$?1JXnYf@8p^}#_e-B5jhG&D{hTY!wm{w%hvEeE)q7XhQ<gnbjUs!?Sr$%
zxHEt6y%H~{e8HHLy;JxqIl<n)`s*{I%lc=B`QMx18p%B71y9xZk+<Xig(Dt_M$K^A
z3Z5U6d4mo1p6jRmMHTY{jt>vC{#nUHQUvRt@HyRkEdu~yOic;$T7^JYlVzAqpW|OS
z?4OM(ih0Id|6b7hAN^=ISIzb1JM><OSD=Z35%bUsZx#$A9m+ZJ`q;~RM^@q+HWm$B
zUXRNC{#{b+&~Mw7DvF^Z7AxFrrK7RG3$7<s8evNCV~5y=JKO)9(rrI)ZCW`Hwv~>k
zX~AJwjo{e_df5K4ul}}1#+B4mRW>UcBUMO3hm4H%dC@8gS_lGAr;-kL?i3roA{>q4
zYA7b$Dm}RTpx6z6S#f^6g2$lp3adl$MbaG>Tlif>3=&d^RYZcqdV&Vico-LhK710q
zMcfmy65xN7+X_@nqJLPDDfhcoEwC_N7aQSKGEIXFfOG~FG7ujRxVul~W0cb}DfCEv
z!H-wC$_&bQTU%dUTu=TLtd=+tE^$9RVa33bHrK5$!uy6GM3rCl0BkRtxZ$$q$}Nh!
zflv=z;BJQBLgPo&RISJSDbzqvV;*(i9ziiL*e#5u{<rCsae4E?q2ZrhzwA|tRyRVL
z7Bs7ZM4h#M$SK`RITI6wq{0}-5NdZxiNAUfrE<h>!YmWqcfBvXsCy}kFfd+QOT&6H
zJM(nEFts~R9>F*a?~zgQlE}z-QE8O|8zYQ`tjF;i@KGa7upx9sL#~S;E}i83j@49T
zk<OR5VB+gZ0UDv-_&)wgyx`>9&N;^uNxqSpIBcZ`Y2Eyw<v6whp#<BBhrKnnFbjee
zb5bKX<*xn91^4l_oDA6pW}O;=4E&kuZ%{Gvcykf4wi#&=4*v5UeM^qH(T}YuR)|lA
zxw>a|^Pk+2v=Sf)AfPVsbAE}myVzjEq$e)6@VUlgO#p?4vml5rT-$eagU(A*KJP(9
zB12Pg1e4u_WVp+}?IDlPK)JmyzLC3}5sa#7YK{y7rHDYbWWC?+5cjuSP8EAv*8)fq
zyfs;9smpUc9_}iifWfXZ-o$z(>x$<M^sjfZNsJ~D2IjNOv<RoJ&w>8FMa&rNjGAeU
z2%B0*dA&lHGxzZS>E274^JrLmO$&ah5nOmdr$^<?$~NcyGd8=Th&4NKTC>!)Ox7kf
zc&xkc_+Ogk5R~dOUPFr%UW!v%1RgwlU%%kjBuQ<B>&t$dj?AinQP|PQ7u{b?CS(q+
zDXEg{aU8=D#wy&86&zP~i92_WoqW)OTH*+&zzcu_niX8|h`VBmon}0DHrBUP$}?T^
z#-@kdsc%t%pe=bC5>;BXk@m<F3C_S;x9OB^mGC9tj_frkGdTY_*KjuU6190+O>sGy
zvfz=)GJ`yMgTLt6q(`}DLYqQn;1btj22Y6~zvFNH)s<G6$Mv3$|7v<>gpYi74EQ>I
z#N!3Lj9&PFo%uB-M&1Wi<kk_h+Kg94db%PzrW_V~{nYJS;!eKOKlXOmQl5D+0-A(x
zO#~@wMP@AJf`5FG+UASGs!t_~)ysty4Z?bYf2YLmK07HN`c~MC+n!v3gGqodowzi1
z#ONL?8T~MnR-&2|ej)r|SLesZ4_&~H4B&<%*ArYC41O-QF+FJk)laI--kMfk7F&H6
zavhm+Wlf(-XaW_8AotuHyZKwI05q$#9(@k4O73-sTVttVd0r_wT@inH>Pr=qx#^Fd
zhtdwOhjM~Rm8at9`R>#6kQ`uk7|Cj?%^!lAwBXG7F7q7wJyH~i?TH8+<s5?^ng3az
zYuxR8Op`#MD7i280lZMNg6gZ>)fZa@hB5)B$>xD27#u}jmotOk=D8!n`dn?leFo(^
zWWIa(oSx#mxy>cOOScruJujJPv*5OQ{>Y<x<sXk5H<FT|u_hE`2LG$@W1>jh3Z|$l
zA-O#y6$1c4$#=#ok6<AIiBJcK^s?p?Fqact{%ovUSE~}Fg)k!sK48qhKM?!Z0ZD3W
zEJ@&aqv9b7d;8C^+MfSMLy)?#A-VC7hpJAiE^m&EjhA69mS;XU@$&3g)eW%&P%wjF
z&Tr8!yY`m$I+hnQB0$k!H(U@)J-WA2!%bjcBjgb$V6+<au8g25&#wewjQ)v)=Ot8_
zUQob=L;Q~udsH9=AWieADjd_`jMMvcf8~G*ev4vUS6Wd&bvg;dOL$L|=6y$VpD$kM
zR>2^`PjJ6N)TV{i1N)52KVShPLTf@K5_i2MwuBX6`G^R@@-5w&GnE3*`QxJ4(A`-a
zMCUjUFIH2pqbOa4oXWvt_r#h;pl2wqf&)sXE>Z(t5PQA5eIy_%oWXx-Ml40mNDqFz
zKlaxYQ&yC{UWk?;>)#)HZ3blo)w4k1fhL9=`n)VQIGJ`bajrmPMup6gsU$e+pq;Mn
zy#SJ}%`a&td!=}OdQg$xXVbG`s1Bh&q^pPJ0U!}PG|As|RL?b|@lmO%oK66h^m0zb
z=nLG->yp+C7ZL=HC9nwF`se1j`gfAn427fC2^t5g&7&S)qy?v4=0?4nv<B)=YNnYr
zgxO)8lmYR;dG5Q%XbMtUUV(db3#>Du-w@7N6;ZdGHVK6vU+ya3OIkykJ@Ak~RuPHM
zHE%p3-RT2c?ZxiqbxB=Vj!C?}V1k+ojo{eLU+ZeR^ip{qZZlGM&F~IJ!r&k6=QsfA
z*AjsE(Wo_U{T3@HtzI>BiH9OX{k-Z)cf+q%F)}WAEYeF)gFGYdANQcE`mMF8`f{Ss
z2s4iqf@EZPD7nwL=x#QELT)`uML0MjThfA!kGMnruulinDzt;Xl$z++)oxiw`(zB}
zN$ZIGN5R`qxyqe-tt1A(lI1{_6bOR6i34o#>aTt7x*mbx|ESDpTN&rk+ay>%gBN@h
z9Q5|Z5plW^23lC5mqkM1VO7IU^G7c>R~URQF%k>?5x0&nUF@YE5;@1lNex)jV7wGN
z7qJ(s-3f7cDKY5fB{O+wtt-Ji!V^}o--m9+B5IJvrt{>-7-$X6rFM-Y%%zxZ8nYf7
z6>co>@40UCj#ehtFFiLq*l@MGb4QpyE%OjsqgVrp3`DCh?%?zHr$+G}jkPk+rS^|-
zeaXuRQ<StesJW`9LTM8%1~E1GJL=t9t0|0^aE`2;Lt2^SH#~|Dz5GHNjp8FUp-b=G
z(Ji~ho~iXN#r4BGfEw81icao0o(}jTUynDuz2S<K9OsR@fk$qxBFpu92e%{79EsnQ
znfC+q2_2dS#_jAn;V3|5Xz|AE%hW{tc?ST3f}feE>aOlQ9*DR8tQi%++UMA(b#-NO
zCunVgG1L|Fog9en-OK&V!vu9a@ncQUH=_2-JGz_Owiog!b=!*18TNa|E^Zed@V2(y
z`bfc!6Cq7o^l|*|?oFOg`3+B#q?5)SOE2_cs^-Ubb+cB70|@zA;-e0GxR=6t55Qop
zCq=zF%Un*Qkg9FoCLmoH@HqK%&CQE?q{C-BxPS5Ls7`0u$4W&h?=q@clb!yEZdQ_F
z=1r<$dE>Ab5ck!8MK^{X3gfmFUh`+v9A&~y6vibSn-BCD@aT?ikB5P6#63VLO9UW7
z`upQraOPz`FSX}N&T}ql6M!c*x-YZRktzO=J)`*$M`AF=y2>Ds2^>iD!ifugH<FH$
z7_?Bvd}#B?QJ{p)_wQjJBcUpA0Lo+vpeMW-K+z`$gV6~g2S~57l=v>I%*XHpIOp33
zST@q3B-<1^V>wupgHK?4^Rj*ETcjlANHp<QN^6A#@yxh6%xkJ=!#Z_5W^hjM)>*!A
zsv)8lK$h4B8S}tIO%t@{{AE4vMTkX@5R6Jq1TPI9KY{$kq??&cj*H-bWzhwlyWb0g
z5=(*42?H-ZC0Taqq@$zBH+NG5!|=C2pXK!@6OAE_#Fx=u_U!)u+cY_>!>0LsKvf+2
ztnV{Zl4Td(J04w1ud1r##+1P+7#-Yz905GHWF}`Io!?Rt-MJG#($KiFkYj>SNkA~D
zre5!!rMwitoOr)Y2KXuXVOBKO(I$fMrYr?G{Mwvx5u;Tg;Zl+XIYr`z$FJ&kFSL$D
zoEazYF4CeJL5d2Vyfymn5V}P2#9j*D$Dk=AS4y&cSeMR>?lHdmy)bSg7SQhGnq;HI
zuoqhAxNV*sosz{*gv1LWsM-K7F+x=`zDU7u(dZ-nY|@1rY9hmH_%kTZYa`<mm!*y5
z{-~L2N}~}bA{84dq*qr)0)x~b7=M?h=xfQ=!+^@^r7Z|OazUi?)SzR(=#<`xs#@}m
zO=GuNB4i&v<?>t`i9UBY_35%_R^f1?H^6Y*o6@7t^|4Peq6^rX`QTI)T<oHK23onT
zY601vB7)muWTXeFZrD=Ia}6q}e%(JfEEYXuoc(%q<upwl5|*6CpnX!b?_jI2m5bzY
z*0z3^8Z7bAK4Y!A{i<Oq3Rd~(wc)Cfcmk6!E5&n!&G+--=)QZ~XW^jPfMguygMy^!
z)Bzj?r4_($lI>+_HJfhBqCFV~73h0<^U$f2TOV)p{3@}Bhc1m?Fq{n_L9Zy1;1Mkb
z#x{8HW6_v~g9`}25J;REI<2Uul@CP^`4@wckq7?)DTSXa0cVa*JhtTjL>EoA?`$Cl
zPTQbQ886b<-490hImm`JvJ?PsaP6^)CZm!B{U3<tjkFqG*@_JViJBBd?fDN!OGeS1
z0wL?lu^IAyqtzCS&$<7LPCAsnc;CZbqET?T?C@va7~N+WUzwdaRLs%!bt$=JSFVlL
zPUW)%FXWC%x4=8iCjRTi(Or_L4dWyrBDQ#wzHCvHVH)<hWc>Yu7tW1NNVhh~)M>vd
zjf~_Uy`$lxkSrnjwo9U8yE6#rQaRD~au3WPBqdq&{gh{;Yy0v&#FguzWOyZ|I&i~?
z;6t8f&7fNnR2Hs|_CMHuh)oC(JZ%w*69Wlec|1DVvuJ23q6FGvyv7v@sflt=%3qG|
zaJ)^0d~_u>nkCmOS-kM(Gop3bwu^~l5y1rwXA?G3M;Rl}ix)-zTfi^E5r(%|he$*Q
zYdD7ip{Uz+(Pf9&kH&17Sz}`eiJM-Upe3onOE*W4)j5LyRTlFE%P#SlrCq{0d}egc
z0rqviE-6L_zCoruV?p#zM>(1eukNbp4^dNkjhg>Pi)hW3v~_DxDW>TuHF2shd?k8#
zjxE@bkE^w5tU6D`$(fi8PkS`lKOFABn(`{VTf>>8GRbGIjZQwy#v&)l={A*ds7hiY
z92y3UN*%i<+JOViuIc{LDPmKyVA^kgB>J%`cr-_G!c3%5qYN+~^zFlDMvvnluu(YQ
zN#wwth5=!JdGL+snT6d4a&PjtU?_pBNyLL1Ot>*R<RhyXFr5o5XAHvVNj-9F^yF{D
zr)vNth>OQM3dLS<Lv*(@dkkdl@)aJ(h0i5h4g&|nC;0Qv=-M3KV#Q83%f`b&NKL_u
zI=K15=={^V>$5TJD>D7|pD5QYe3sP^elVAhn07+Q`SgvR(P{76K%kKjd3YOP1R6`-
z3DF5vbf;Sh^|Uu(?M^V_kmyZOtaoyy#$d#$XZ-0I$)bL@?BVa5hCNBLeJz&ntn_4s
zevBFJU(GZ#Q(j#&$+rdVZ|C>vtNf6=l9sWj1*Ow#z}GE~4B>t>7q<vhBaOp?$U4yP
zgyEiJGqR?ng|{x2JSSK<+22=9lVp*F)U=c$5&?gb%`h18;url+dIk_6dodUbR-6{R
z@uHu8a5y^Ts&Yl>v+bEdRgJ%3pU}`)(?Ui94O?C=b58aTN9^~*L0qb+X`-cU2pvHT
zv;F)ds38SXd3^=Wti>(ZCsQ-H(9CwB|E<I-2a)>~ECjwwO}F=n-q-kH7txb&-|JgS
zsmRJo7D!Ofa(~;yNkR^S*I-cx<W$EpgT$!*4WN*z7-4UK%CP-92tNH#pZg1r2h|qD
zAK3wT<Vh!4w4ZQn&z1ZNu-X#x71@Id9-28&q1hc=+SP}va!h<?Wli!_l3S971C0cr
zeWlYLKgrE|;qa9Ryg_jE@v*l%#q{Jlvbh?dg~6P!+h+T^iw!s)?pA5C8^H0|!A@iR
zJIIY=Bp~tjSOt$l2rS6sA#0Q$JG{pNgq6|ta4leKfG4;vwo4C8HpCJFs3nsS)`gtl
zy=b2g_n<iOQ+w`c{b}pxMDDkK&h)oF)nYBaYI*F3A=o!sf0>27Wc#lbmAHMGaI_O;
zZCV6yu=Twbnm3eP#Ez0mh+^>asj+=BLYqnAp%@^S;G1Q!@_c$nM@8Ed>={5|%4)Gg
zpFX2I*<6S4x)zr?hPdjSptJ8&rpcxgT0*MY`k8_w!}iAe<f^k`i)EF8HRB^IbrD_>
zjQc(Y)XD;+x$%a7j<ZO5@cQ?$vJ$h>Y+H(~?U#Zm^3>p)>tcKCMSmQy>A%n_gos7k
z?~&LB3`*M#d)x3>kphSXhzUF-2X0BMi(bP8J}8^8W|A2+M*EEDOdG8WFIv^Q$nBQ{
zC8BjXT7R6?X7z<{RPqaPt?cp15B2$eal2LKJu8@YXAJD|1su4c=%WHJz%z?XdO!6k
z|C1j>ez8XX!a8OPL-Cih`<&Clz+in93QA1p87_#N8T-#SHirUqgm9aH#rP)H=d-<O
zqAgGZmf8@gVf*!g1GLTq?~A%m0mAyFnZ0A&tIvpmzNc-4SJ&2~i3#tPtJh(6EW4kL
zF)>LY%{<g+>RtR87xH*jJ#q#75%=o+KKa>g)-wmgNb7ngmJM!!nJK(Q5S+2U;0M5A
z6r)HDiqDQc&xu2D7$Ar)C2q_LPP-=d1Dix4be_j>P8E(g*}+5qiJhi-Z@Wvvgl+Xy
z0J0RvdRrwxZnJ~)7sj4BlwV`tN6h3{u+05~6Zh}4&xb7OKTNr;7T9fP1BCF_akE52
zNE%*OUSS)Vs-yw$oE5u1#?;#%8`dYW+zfLZToh}eyfF{|U##j}4u9Ki$C?vvyU-s;
z2+naV=0D<r_il)M@&T}n1R2D!+(+_}sF@k>)wPjpU$zP`n;Y=7V9g-D!6BzbK6;CC
zR;&?JouK;2$UQ3(ziWsLs8m@^Rb=-MBLZbMq$2iEmSB>GWCxF&=R22#bX$;e!b(Fa
z0{ZCP3V$r{%B)sFTkyE7;DBQPENDbj45+LX#1cYkM(}in-!B<jFJy@6um!myQGCS|
zUoQB0OA!X;Ad3L9A+95EzZ3F((FkJ?xsv(Kyh?~pYA~hQXQ(ZPOGF-7wIPwmjPub_
zD-(o!X&v~AL<|a3HfxYyS42$)@h006H89u3SNoTgr~!jRxf~hDEF#c6%xl@fMRR-%
zP-})e0GDNib=d2nC;455GBHF4#4TJ#O!&<R(#QGF_TabZCUMjc$v|LR)%w-s3ZR=d
zIM-a^x?2CJQ2MfPAJ}FxP7gXx@^1>3n(PU6m@S1`0xKghYpze%ys`pP4#`ag;W0J%
zbb`OFzm;McEuW5<%`!-~TRy?RsWmgwW<E6lC1nSx<NPbfPz(t{2&!d!d38{Vw$q#Z
z6#|vgy=k+?AigyFU07pwQ9W4J4eZhB0@wQ}`j2_R%xe8~%?khpB|&2kvxNGw*RlTD
z6Ky<zlhv}0+>W~^`#FLgR3fAjf}VIOmq{dPlwbdQ4;4>pEVpvj7Zoyia-`qsFRKXi
zbAZ;zAw;do3SK+GpTCbaHJZd7TPreyZzlMk_qGa|j@cFE)Sx|Col#R}cCtE5Hww5>
zaaOSVWPcmmNdKc}8q&SCm(!Lt#-F#Rl@EqlRF#HNt?9wK6Maco4!$@WV5?0KXnN34
z=#SdDwR2G76Md5tFUZgL2kjVEVPHa)M<2Eo$ig=E!FWHTn^h{&f!#HYjcq!lz`wpj
zqNcP-=YyqzOrJi~_Y0?)S0l|L1DX7+LjPeG`z>a-sU@`}g3zy_Q$OVU_jlpdOU5!@
zN#oUcwPfaCbHbOq!1w$N0T$!{tnk<qx#dW7h=^y8^F8iC3gjuM6xlF68=FQ}u(_kZ
z=t%@X97%vTryYSHA>^LBufK80_HWwKa@Xbhuewmt)@??f4TsP0pUQ1U?-=Y<CBn13
z1G3FZcHu$3=lou`>4wH-Ukh3e?me?l>^63O0zzSAL>ymHpliGKerl?f9^Y8UufSdI
zQW{&yR+EaSyG!crgkA&GJ4OYjKsH0D?tZt&IuACGqBa$hiO*jYyK>0(6|y<se{1ZU
z-0dqAczgA&v2O=%Um?N!irZte@~mPTbPk-cU~%m40o(sx(H$S&8hd5X_7y^0oxUh`
z=P;|lL5~atSk!3ewnee=$5|=og^Zr)>B6B24tpY&ak-VZc55ELD;LKe%<C;=q{40J
zgQ@8e=KRe$v5nb=j5PKW44kPr3?K~VT^Q?<W2J3BFtoqc4|oVigc1wI3oC+bwdL4Y
z=`e#|O0)!87rv|ikCu=?T3gBro~WFuH+aZr1hL@lvtuu1(K%GL94Iuf6@g)iK#!Wg
z_dRFO10<`lx}tPyCG;L$kaw|EyiLeA{#|SR=vg@W<2@8XpP=-YnfBF4y<ev>T4osg
z+0SojTWUB_+e*WuAw#s>7V$8_>u%>*q|7p%A*z;^DQTJv9mL%z>#S_N5LW!#NF4k+
z@NWheCdOv(VMOY}T!4t)kZXy}FfyX1VF}`}kY70%$%~eBDzsGGOezH%idwwdz4rnY
z83-DnD3?}O;c&~9mJ7<PwQj*VR%diB(G6rEBRJtH_pfV`)^Kt2!9wEI4=?8$Y&irx
zBllhHR)3SU2BbOR-t%Bc-p4TwjrM5BT|Dn1cg-hBYetZg4cVqdk_TE`X0Z8uciSDj
zI+9>V2^;e<4xvk`!Ce~MO;0DSL9ZU5<PC}w#QPvq*;W_NNm>IR9yuMz$mz0}0mnr$
zwA0<jyLs8f;~OOw3kL#vnN)szaHzW4eg8S*Q{rYo^HrE0OrG!7Fe>gf3B+v3t!<*S
zN_)Bb40p})B>6t#frO%q08M!iyW8!9Ya+$UPpY!CpvQ7|L|8VsjO;mjJN#yu`_HpI
z<FL!|jeupz<pP5WQPM@O>fgQiN*e=#;(8Ff9Nhk(KM6odP9%DzN;8Cc|K4;z>l8{c
z7RiEHZSt&q*!l-YUFYww$A^@NC7gDRUEpxQ8qHYip1-|k7uJ_GkQ51ko8UqE-QzZ&
z%jS|StGu$M3e-o+87Qe1jy>PX+x#9*#qTG~HnDRw9@$6>Xg1i!f<q&HI{ad~0+~AH
zrhy>eKX|!UpQk$7uXA|~#VCzWN3bQ*=gPnehjLB0c6c)&bbus^he@A4qxQ2pT_L1T
z+F>-Vd!LTG{i9bR__y{tzPzjq^A8<l1WTiR&iT{EGP<@F7ziGf#ec3%>GQzmP@Pf4
zW)Y!*xPJx3UHV-AvlS0jAd1P%hB$u|dXBs$+Dq7|#i4|~lARbKND`ekWu%0|ed$M3
zM#Tt5;4Ld#4``c|_gxc9KMksg!vQx=9>S1}%m{4!fN%U8^=*j*1dhWLk_=ACU>r8_
zHo&(RLknPR_+_0J+wTwiVn|~h?{gwF0)ivx`Bx)99E$;9A<Lwij>8(O_i>-t>v!2F
z?P*Px$Yw}uwx`%ou2zaIg(nE|mc@>hLpCQ7OP~4Y@F1TVd~{>%#J(&NK**m~qS^6a
z0dDn|u|JOiv(Fp{$a99D1QH@RW9wsY{1>LtuAKF`bbai@o2+~|0jY?ea;?1Ni&)|P
zy~B$pylMq3=LDl3b{DTU7hnYt@qWU|!D~1(`2JRR!dejf(0B3Az%@ZQ(Rfk{BCp#K
zvByQufsOd70naliEsm2~>Ds}u6~l261{JWT4$LJ4dU+Zm4()Py?B1vC8_YMRb|KzG
zaIU_8Sd1$sW1r+)%#Q0V^{?!O7?!a>q{<|C*OAfFPa>2>4odg~LubJx;^mtZpHJV4
zsSthz0c%FH(uX5U>m%6acueJy7A_ze;o-H>g;(@w>qE%0;6TvzSATUzbRdUmfD*cf
zNfd^`CK~BGONPpiHbrmWzlVM?gwUv}c(a^9fIb2U<@;#rK4vt<KF^twxXp{~57C>u
zw+%$l4rLYkQ)jm8o=l>U{LnX9p7W!amwYhssRyha8oQI<>7b;QoY4^&_p8ZOkz9k<
zWLBo(Wn8+{U-QwyEBPIdvT||A!u_ASwdyh7{l>m6h{PlCkp-YK7}CQ{{i;t3dy*S(
zhQKx>e!cm)n{aU-(;*Bqw<2NS%MPM7eo8;^I}tbquTtF{0UA^Obj4^Z29yk{<x7AU
zV}ymFG=l{Iqv>yMiCZ%Lhj&>GPSX`U_u)GTRAYbTW$d(s3d~A4QQ$HFfF(ShJulhU
zKOg#;PAV}eGONFeXYK1>yC!s7kf31D#Bx7H6`8%izhMPcnOH7nDq~A}P6V?Lz{G`P
zag6}m5Ck!#40^Y!R3S7jE$p?DgFCUYWm<I&&T6<EhY~XhiI6RWf?HhYV^b9=Hk<^W
z5C@nzxNjZ%eEteCVOUh43!$AO1z)_BAhIZSZdPxpTKOcVG@M?ZuCO9Z_FsS!%s!07
zsnU))*NhmjQ~ZKal&7LvwuV$FUtVgtU*>wYJ(M_Fvv=XCxQ8(S16duJNL&LDGdCR@
zNxe7n0ZegR%QURcJj9bfjl(tJW2M<p1zJL_JWDuFk$2r~?^q$oxcH<ZwPc%@M)Wgx
z<R`s8;6MNgKNGvCUN8J1{_5VeP5cYL#+y|B-9e8(-6h4nKS1c0@KC}i@KnWLDG2(m
zck32{C25}8tR?ROyqyInwD`|X$7?s0oENM$Zf|@T4wW2aDbV=&U1Iwl=Jbm~&N_M#
zD!)bGjrh)&mstf?M!fY5_mxK=ZvRz##4<Zul^Kt9+A$Mg3+lE*?A_h0A|LcGS^fEd
zleuT-*eg3(IT1uiyP=_(7f&wj^I!V+`dQuoF+@Wd_;SBkmtOy`UqBplf^)mXMud~d
z6+&$dt~Hv5(yXoBHMW0`u<N>beRXp)_*ijN7)B=Wlot<+m7nMmkquIF>v6Eb^^l{H
zNbn=36ek{@F9@9@Qe>{1JGV6!qV)@81de5EECi0e77LLqKr&c7q1wbyJme-cS$3zf
z@H?FA@W>U{ICY>~)nIvC@}}`N#d{3TX7b+oyv~gvT@meWpBsnxs4#@XKuas91C9U@
ziS>2=dau_?%y7IBlM9|O6khd|e)G#BC+^JiOw~{Fxr}g3PTb<V!J65$VX%@q0Qu8l
zvsq#$gK+5O=OBt#{xlQPicWxQ`rm#~6XoW?SJ&_fPxw5-!)4NfORkE2d3-N(5QaAu
zHS?;;D*<dG!g4))L@ZEb%C_z^BdE_|_c2*bB<ji&dm3>C<Tv0X=6&ct-@3$G!%gtS
z-I~RV35>=2g3lm^4BfI<98}<Ln`rrU^2&*YB8yRq@(5-HZyn+usOT-C4tK|(hDDw?
zIb^2S-*s2+YVu@ZLt{gO7_MyfSgO*$aKFAE0{`NL*UE{3FUtz*e|O(JNEPoe3S_DW
zm7M8v$r<_3&)u;*T7!A@#nYNFn()4*D4zd)<38D9ADOKW7a$pAi7sV$m9M$go2@SI
z4;X&vb4Pq-c98MByZ(PYt3`KMrHaVF@`mOhxC(Xb>qs@?!hrf|k-};5rXoTaf-ieV
zCVdjoj|a?%3t;@ezx00OMGB<*SCkh8!SN-LF5g(eaGC?NI>;`G%-L)ugvi@ReMd#=
zH&LR-BZcv)fZ$%69=Y)&`h#O3_5ptcGWEfc<j?pOeN|#ZfGN<})Txn8Uq!0XNGZ&1
zteYMLy?*Y!<%P)p+@X<%BZnO`EqEZ^-#ezK3VA(kEWsxbSOS>>m5aUK;Xc36Dv1=W
z1|a}XL9!?w?g8e~C&L?SC2z>G1mT~O;Y&wbd0~TbYbkZ?46Rg5wsIUPh!@e*BdK}6
z7-waJaGuet8YDt3Tt41Phg5E4C&T{0eI5}0RwyD<<IPxxl!trvVH%wn!EnO1Fxv#d
z9%Care-u$7ZQOEdaa2X0BjSW>`_l2Q{6|ZD!Wl0iz80wFwBU{*Zp0QV9gEfmX;nEi
z?6qUvnVWj*>6W;4W+?F`6P`5XljxbLp->Yi86-YpRs);4^z-P{{#G*(OITgwMoy#N
zw&kku+sDy0DdGFET&PIHt_r;SQ#VKRqG1I-24&%6I8xP^jnTnrRt|fjBmG{U>)kd*
zH>LE@z29cnXlsqwT8d^8+9=vusM2`rBp+3^pS^fH%T)$bey7Iw!*bQeqLqdtQBE+V
z$}e8pOL<Zz#PJ_T?m-L&MlChC^E`j_bc2^Kz!Mi#M&4Q!$anrA_rQ89=Z4Qjm&G!k
z60AAW9lpUz#~=?<3f?GKjQ!k!cUdW*3v%v)3d0E|CcFRMYQ_2G0<@<bQb0K40Qc>q
zR*uSC%rmKe&w?Frh<pA{D>u8ZHN)8Z9_)tP1bQ8w$n2J)_=)8ZlIN)VT+eF^0geb&
z06B<yleuq)^Id8&#TiJ_#2?S#C0ffq{&0U2cyD0}cH%e4e2R(wt1a%-GJY(1e&$Bx
z^DtnaTn4%km^10;;P2fuH7L6Tq0UqYH)5Iq2*M;ooxXJsf?ugnS$Tv47ig`tUPFRi
z3=6Mtrn`?UGwoy~g(gR)`;oo=QJxW8G~NH3a#8fQcJQ=dQnUXC133)|<`3Oa;I5z7
z`f?twRj9mBn5Gn5H>b+S$Pz*6=u+|}m6eJe6K04LdX?YzAgd`TpI+OfBv>pibv!$E
zt@a}iLHSo)1lEbxs8-%ysC(5-c>_fs*C3gMcmu-AQhrMCprqH_sHd%NVo{MIFW8R9
zUv@K|u(F}tDGNE6hL?>j$Tz&;Hg8T;DW$Q|>2v_Of=@qlk3MNNz^N;rmU)1qp0XS3
z-0$C7)dXdNNK`PPonLpKe_<8qS>*M?feJ^(x)Ql>55by%rY0xl#+TfH=fj`z!om*-
zOG)J2Ao|jpIZn;6j^-I|9pD+B8XWbY`|fx9a#%G=SY2cQ{$%(I2J_x>_kU*<BcWh0
z9Aq0F71D!K-gD1AZWTyrW_H24Zl3}lLR3DX62ZIAyUS%slMSE_)!qEIAr*AUj7UGF
zs*$C<PSxp6iyFkgthMg6u%@7KS|a8ceJw5c=xz7F>-Nb6rIpsRjmDTN#)oN3ZB2rS
zGRDNh!I{5a=T7*<s)od;)v=w#g{J}VA8dKXz5AtA6qHuP@jgX0N0vf%+3^)u_L<cT
z28*(ucz1=Kpc?MB-rfB-6|#ZEi<DL%8zkXi_HuXO>ZC(Ckb~sy!Rf?#D?9k(ZkKzP
zMF8iQiknps@kbXRasiuuyX*NFb*MqShg7np<P9f(<Px{^gPw0=Qyqr(K|WMQgfdA?
z@&nN`-|hW2^BIPp33f8_Ev5vE#zp^k6Q%8buI#oStc*6Uvx?k!Suup0FO*9&IPbye
zkoUL$0;s`Y_R8q@uWnxfmTwS$AUah|VT)r9vYoPf_>*^w&VMu_#KiHO3IkOp)CPJ|
z@w&T1@GE*-t!_y8C>zD71Uxle@Z`acQTK8uND7);yb9zL5RPPEXM9iX?<WF<3N_;E
z;sjb34pm04G6eq-`NDOtOVBGy1wRh<9N>`P@MId}p81J8M^sO)sgOK*r~}V5i-#0F
zl7BtX^%bNdY(s*CAfUj?Wk!#k<Yoir$-qMg_cFyL<LnLMcpYwzT=)#p%U653pMV?X
z@hJS+HivY89Yhq+QDzTyi>nMK#b`G<A`pHR`VhSHsk`&39wPT-akf-?k}k8P*#&1j
z?@qWfoEgUT1Z<Cd`BH+UPu%=zR1rP3k-$Frj#K)`o^Gu`tB6Ag(Kt(pogz&NbZPUW
zE~$jcNWViO=EUoD<nue+U2&Sx8v-$CDFloIzS7$@Tw<XUWWi#hA>tI{RV@5(U%Dya
zdT!+_Xz0vh*G=w0p?xx(1Ujy~;_KP3%8kTcp!V?E^PYPMR7zlE3L4qJAUN%7xAu9O
zLb7M!vE#uowIRjT?v`Tk?ueDvjV8WGCg5eqyUSj)g&JGOdl#fN^d`XVgXtagiHqNC
zW5x%D$5NhdGud6GFnaVA`-)fk;%U=rrcR}fZ(z*tf8{c-XY#BTbWw2Pf>fIKv-^Ba
zxFJe4hiB41H-scabyYQ>^9WuZ-+o#|TTThS|HZunC?LyFxRH9^f@I$O&(p5zahv$C
z1h^_Ubu5`jUS#r#!zBRZ5Wbl->?~+nxm%H8V^biYyZ})Txb_eI=<ayg+9IA~EdKVD
zpe<2FH*+_;SJzq97@!S-l@;5zBtJ@urvUC#wz#j}+SX@sNqGrmh?E3^;O1U%uHoHU
z&fj=SNTYl1EG}_O^kAe?!5+ZcY3QnY_r>8hI{ZxS%GD!)leq!#ah5{QWyk*M7QVx1
z#Lc1OCPzr$V-D+f^~VTv3@Bovi4Bm+49d@Z?4}6%TY?8-1z&MhF)opA4UorLZZq&2
zY}?oF(xd4dWh_36gb7>-mj2sM+%(;B0XPb_4{+RiLJ<jUftv8RpjVuW4{?_%Bt(xF
zWKa?uVmA3N!99A(U9HQ3*CSn(*UMp08uXtZy4QZ|K70WBxXrJsRB+aqP305c_^msO
zgmhXXtzNhSybCG5CnO-ZPH~-qyM{90=^hu&fE?)3|2V;InZyb(STZeO2`YQg9V&!U
zU~~<I%=V5v7#Qq$c|o(LzaP4~>j5M-s9oqI0-*H&)ZpN6-0$!4EoKImt=aa{P<#nZ
zWMP){^^3l+z6MVFSlJUpd@=e({0W|V*7g3_YBdQ^wRC7@^nCdVH}zAi2&WEi8uwT%
z>7tL^VY;^MP@cI^>})I4Gm%aRNg&4Zwk;QgZx8d!Kcg|BZR6q)ZVeOH!9;lpdj8;c
z3@HI)6e2pv=TmL}LeBxI=w`Zop~@|4pzl^%ON^mlUh$WLZULG5(ka$U9!}^WOc|W7
z<uB;|m3!tRn+@)llAW0f6ky&4Hxb-a_BRjrMjky-__gmXoqRXt<|DGJk_z5}jDqd>
zy&Jf{?EnU84yBj@cWgR|c;#><vHQ2r-69b=<=tt7sDR#8tvoL57bl1xi5u*-(N#ZY
z1a4rBV9Jn+>GaDLZtXXe8Ujt70i5YwfaS^E-6v-oNn%-9*H*$O7uvO-xlT(tg&1w>
zHVW-pi0wE=(@jRTdu~dI8%qDvHsU$K!OoDOd!K6e=#{Kv0;VFl$kM)r0LlN}>{1}K
zY!-JPkrOrwf#KHQNd>f27f*gLTU7%By2v7-hcVIV<34u}<=V9<B$&+P^(;kjo<G=a
zPEC}HR!lDyJUBqHghm;#yGX+u<t|J72zx6ES11P%AIRsg|K)O^Zqy6_RJ)-?6qnvI
z0zdP0D<%@sj=upu7ekap)A*HyrL4c)ulf~Nq;6wTh+jthAZC@)KEB%~+pht_@3+%W
zvngxc`5P$4W0?oIFoQ?7S$uAK(=FOeQ^1wg)_#Gn5|~%4&FF*ON5?U6c`|b-A&Myc
zJiH*1<+&$>o`zIQP^oGlxU-NzNbARMNNx{w_0w)4QF@{?c5_oqG?=@m|3$eiIqZBU
z4#itEH@fK(mk)d#!yFGTS(OmkI9UMC;A(q|>j&!u*mpP?cDXfHO7_<yVQHd!por8O
zG9`qM!7W|qlFzp;gfcC(a)s0Y_j#V%c{X2|MkH4p&XlQ@`yb=(<EAp30fHe^IJJJ?
z?Jf5;Cz{;>inf&dh36&3A9eC4LtR*`!Z_w!NnRl03V1#^pquNJVm%L(?m4v%x@%6W
zEXR9I?u_&7;3{7R#_M|2TAmOYaOt7$xF-5<B>(^nTeE^1=B*`UGa<^|;J@9E*U~wT
z#9=lc-Bm7vj%rq#fM$<6$ai|*`pE|d4F`c_(6kYz!@LntPsZ}<Sl915TEU!ERSRo?
z1B$91I?WxB&hQORe@x9+$W8_Td`6Bt1Kj!nM7=c@%fClX|2l$~{urJ0xnb<*BHdOa
z%gO{rus&XzMed_tY)*>S2ovz|rbc}TdwIv7E)PIL<e@=W8wA3y$Ba!)Zs^~(<jUTW
zIMZ0ifZpxsuaWAHJ(;H-eE`Es30~UA9RhiT8%aK>7qO7+uGhGo3tga9B`yUMFN_uo
zMM^OL2ltR}ERXSa{sd#pOEg3hKev>CWb})wscv&u0rJ*`4>$jn&OQ|mVmG!l#J<!K
z7E*mMv9~{5ClVf_3_qAMBuNjbbJLVXLW@@)KAvNwWAR>k*rnw#bV2U5C>KY_L8g)I
z7Lh~==z|wObkBpoNN<IWg2oOlg2c-(^E*2GtN&tplC=o&VAj}QIGyS4%f9Rta6!x}
z#KcV1US&MuMrSh)MpqgUUqp`O@ktW))ERCk2oy~XnE3^rqeRj9?3f$>9i7XWmC><C
z8Y84ZBx=8-+`j#78I?Y<22yLv5tvz==gh9|?kd`o8C$fWkwgb^;lfs8xeP%kH~-?E
z<u)Lk=;R>SDQHJ*A@6;+Q*YZ)()c3eWLakD13SBlA}b{`Yl0H-#-*b?-2FU<Q4;lm
zdX0_6s1z|IY{=!;xV1t%B|whkLK0KcjfcdSxYKUq8#y8C=gFWqv4F$}F!<*(-5RlV
z9vCo(GW_uDmV62H1A&PgtS?r%IW)_e!}i5XtHgPw-%JT^KH5#tq2?kh`-R9Q&Iz!I
zf$nH159JoeD62}F6Uvrg+(bnqGDX)}32hWUlb$UB;Du3cm^3+((jqkDSE!#f)qEwi
zQ;h2@LH3U>Am;`L9XAw$AhqO))4uXISD(eli5M{QyK+v<O=kG+ZZ2?{>RZeJQl*?G
zoLQ~GqS>yFybQWk;ASvA)|#VSHQs%ClYL|2sE!K0o}8_mF|PLDkPgreXN&#Di5T}`
zXgizwMWZ`ew+4rkW~HXmA^Gi1H>HI#5xq(_C+vmBE*a;}1m&3t4~0D-d;|RsG9UuX
z^X|9l%v1W<#%bsxutH2ww13|+H}u@Zo&l8&1JW7&^+6YftV3dk5K*S{X_3hUuxMk_
zC3f#t;$8}=lwRgb7&eMec%d-`)Fk<zR<({Kv8=Y@y?%5Xv?r|u8#GfGknt<_qwrGq
z3L=U~l@4pXSS$j2k`za{7rI7DFf!8}C$WQPow^zhAYrR$>G;9}8HA(izg_B+)Jn#V
zV2>r$n{8^Cy7`35+$U@U^8!*wD+isnG((SF=<W=&Koo8)gJ0<~LQ`*a^PaKAfeu#M
zHD%RU=o9a9PYB(W!-4K@i;}9<{Bo&Vx!lTg;cBhO!>D~6fy-ZWS7~Gl$!`G=kHyBU
z#!A*4>gG#`RVt7&#f_8UgSFUqvRkUN$yJkVZilxXrBGZs!yFNgzt_D0IxJ^nEaAXR
zXQK|dq|0h)C6)y)_gR-;&WMQPMfk!B&`Jt1aWRogZ+CMrme2{JKx>AOkcXf5w%h#?
zz7%2}<`H`3?V5R99rz7*QO<Dd2{7Y82;-TP-^E>uOwGw34RjZ?3s!e_FSDB>j+Nvm
zqXmKppaO4pb>qU*73vaF6QwkV=~_xBxg++p6EXm@NpdxlK;~TN7Mw*}B0Msr0xF<L
zafYQMGL@rOBu1_{K)mY~yZ1usC2Bp5z)IHI$jsbT?)&*R$O4Q85EIduF(cjmjn=jp
zo1J0-81j^Sqq}gCZ5g4J!fLN8XFLXJeNG>@1`CJiRbo7$zOEhMy^<_58V)p!`}$Lc
zE4|n@SSMDLJmhbiYu%$tDZ^Q9Y!OPb8Ep=`+5NYMUlSh#))-}+>Urn8C#1^22}=<p
zkRej>UW>mL?X$tCS03YTm5))^IEk}gc0<E-;scnHpo1A0aoXt5(l7YMpLe*b?tC5U
ztGvfc`G*y%zrKgMvv&&5o@R$4k9~!uhF*&d8Z9qg<sQF;F-chpGj^dB(e6{<xX1S9
zTRHsbTk<p%Ba`A(CbF^UGFRD;T7(D*54t+2t$g<CTkgV*wnzi8c?*q1Hkt2h-FMQ&
zO}Pa4!P2vFj6`aW+RH6`$hKezj8GOhQxSPvwX>FCkKSh<>xxdZEyU$A9=>nP{DR~M
z=3oeXMASVU@+|UzH78>!v~z@&nWNrvm%9|z2YQOZn(G{PfH8rWR<jlU{Hm*wct_}m
zY*^yeWpU(Sv2;XXc_L5#%pDD|H*E|?7UJ?E4CC9F5?ue5+gb9Gv5}V25DA$T(>o3e
z^;?rWb&xRz^rn!=^N!4*x{r2A><zbGL<znpyG9v@sz0GSs7%keD@09<%$OWQ`Vw9G
zMo2y`RVl$9o!v9yU&Q3mKsZ!0*<O5}`{7L%RN}eqI=UFZ^g1|NJCRB*#j_W>fQ{nh
z!~S^j3)zpB>$Vfz3Iqyj#?ml{iD+;LS%-cuo^SopEax<_3EX%ng6!j94mG)BxR%fw
zbWF_A30&yVGKrxvB{=I#_p#C~Kyf#6XaGCHOvT8Ix9DL2GX=9h=MgvTDf*J+RVKv(
zI~+r}E!j=Jz_{{AgS6*rBC)W_eMY%@hD@^@E@dm?Y%`wHJ6zM1wurc+fw%y^kfa^m
zeLDFy)qMzMWar>91siL5`^Kw5roBCex+}PKNS$ckHZ(XQULy>l=Wad=@^4ebsD$P%
zG=*T?Pi{H10Z~@gX5LQ9jnncA(j)V&?bzB6T(0DCBvVEcqJUfWj?8Rr=!JK>pC!*q
z?gCujbj?hKi%xphC4I#}@qHsLSZGbXeLBy1_TzT4Giqp&)M%EG)vg2km=9a2TXN~F
z##$xhz_iZ^s2k#j*W3KVa}q+SK$3Zflnw~d<KSn{aJiERZ7`>$hGu!`rlpd7nOq%H
z{i7Yg%LKWVM;&EmM!qDBRTqBfEq+6#MJwPHrz3(_A~~CRDJu7V^)B|fiz{P&3o)};
zXNY3Y2!5XBul$%Axj+N-Cr1thaj*!;tG$z7c&;_K70{1(Y&>W08R+Y~S_Sx2tR?R|
za)HZ9ChK@`+c1C4x+Dcy;2eiw$f*D|AuUMm;TL~sAB`m>xClr@MhBn*9rYaT4+;Z)
zCxB_Dh9s#SG{Dz<Knw>2q`Z<5%LR@qtcgMCFu(9is~Ut3U?OA-l-WWy79Hi6eMkR#
zWR%;JeV37zjDKcu(ZT-NBF2ET10dGbH7(6pDRNi{x?4Ehj~Z!pVBt-dkG2pCvVy4-
z{hc$dd?b*j`n85!FwWmnYO~q8HhNws<<HSRvWHdV)$y1F&DX%RJ2#~Jr+#G6x~EJh
z0!XT80I?~Ap@bpIOZW8eH}Nq)0b)@8nl+VL!3<vFv19My3$-8k0^@(e7N(~X=${q5
z(cM>p7D#z6D=V-``-JNjJg~pNU4!o*Ou{1rxJKrszL;<Ku70nu3WcMR<Dz6i;Jao9
zzwhRk-9QWr28-tU#KLE!8vJ0;*C&m(s=UhbaAg%So*umD{rd%0fdfin%~Lo<S;4bW
zzfYVY<OqH~-h?YuRx;tn_+a}(a<-d|V!`Hh_aC3tt{k`p$m**H_<x^f<%3W>YnqTy
zwS`RrZerkC`xQz4O-1Wyfm%xITf%Xq6HQLoY3JVlhQ@a7G9{$#XS(}S+xN#sW9fSL
z@SlaN${8yTS1v7Cyz|+8{BajpO9hR%{pm3lxCWfZ_V)LlZfj7`Tq1y;CQM)~Hdo=!
z9)A8{`($V%-axuwcm#La*<W^PyCHGESb}jqd|KG`2qOFdY~>4r?zycg5r0GC3!?21
zsp64IrP^1b*=-@%4Nl7Md;90NpKA(UU(7W-(eTz2Bs7@Mdia0Owt)<f(-LzkM^~?a
z4{K$iM|bw}dAHcqauIYIC2m@h_%%IzUp7}q1#`-DqAHR_ue+rAzsjt5cpT(V5CHf+
zX$pg(U489|i3$MH?5J8*X7FcMUpmRE2A1O+$T`9P1h>)mGX3eJtembZIgiOjMDJ6r
z7I8T5>OYxm)$I-*mwkSC@EF?&e1j3eL_qWv4$)`q?LP$zfI~S#dGAYELFUxoh|8V_
z`IKYA4$(pl|3DwIvUu#=bEuE!huziiT^W>_O=i~c!xInpv8goLiinT~$U=6|JlQYT
zUbL2ilYp~WFxfZNP%0>d(n{i>MXBXm@k2ik9GzCQ?R@$Zy83IxAIMA@^CUhIWo5wW
zytQB6&kqr-0_I$SJRt=El%Q>`FZ3f)tZR4$`FKk0#^&T0Il8jee^q27AR4Omt}qDs
zPU7K}w2Re^<hV9*!=Pc}miuM+HHxciOM)a#@6*FSow!6AfSqtm5P{##pM4<>ZTo$Q
zkhH41AAP2k^LhlxZ-UAYjfamw@YL>ppA}Xc5;VKu3YT8j(a*l#DirYtrL&F{$2nvl
ze}L8#w|g{dQ9$DT^zI9sebaMR!6%$VRN<5?Kryh8UF|Qr)oO6{g(-sC3c!!vzp|$L
zo0eG(PgwYs6-%(pOctJc?`r?#O{_JsHwaq>6_E-RhAMox%+J5hKANBe0{TGlhP%f7
zAmR-fm{@C#){+`YF9%imht^n4J^`sM&BO{o(*fB9jyC90?nlqJe)0j+ZIN#kCl`-_
zldkhyW?6-8jp9L)C8h0mi@ynS&cH@jg7D0729-sQHJM9%#x>hl@H7*wSmHNaZ54pi
zG+<t}E*Mz(P5vmI*ldm<o3kx;vTK2#z`C^WLyF0qrG7;?+BTgF(&eHh{ssDI<5ZSz
zEbF#<??kD$g->PxZpF2z_7&Rsw&lb)1RvG-=DXUJrzdAC{-W0ZD;!Z_T@8nbWlFV!
zI(@Z|thNvGC}m*@G9)w<Z<dNCzvfD-nN-vWU1w{>(zAk{r~Ah?wCe)_0152iTEF&Q
zD<2uMwieq#p5ksT^S3`4HpPvsv0zNTVQv3c>l+rfYb(`+qn<PT-=Xu}Kp1X0+)#%B
z7puiJ{)<)i!3fL(cwl82R?lvu{nAB=zM=1&UlZJ9WgI@me-O@)^HvYqvXF&vOUteG
zKeb<4xD#8^T<s52WGc@vGW&8#Feym%Nej-q!Y}*6sz%f`3m+zxrD9N^(Vg;x^*#o6
z*2qB+)D$OVhqL{Q;RV^&w<M9-HNMNza26a|&U<;JumM$7v($0;pw`d$uhqAH$F>WZ
zyUO1gUXs@GR2X_@aDR<I^$z>}KqIx`YUKnumHwn>D3_(TNMs#`Dk<dgef=|aRz8*|
zm{y`D0e~}mQ<8rO_RL3xr5qJVho}wK)DC|616ICGtjb|fH+1*+3KRwlLwT)8O2kOD
zksOl01R1;f6C0>+CF~LofXkljo9nHVfGt=z!kq+3#DnQ4`l&5e(>l0FJ{EY%&isfC
z2T3`2d9)v{PI<jD#w7F|<|nC>OFp>JPdTYgmm>4&!RAT+oa%O^Jnjd7oajGLsf>9*
z!ON-?QcIZ3_`Q8?vwe|^y||J?#TX?)<(=S9t7z90megR-iM~<GinRj1BZ<dk<FsJU
zBEQoNt3X6gAO(RjYy4%0e1E*Ai(-Kcz&z+35(ZPq+|{3rFhR|>1s68JlRbRDP&(ly
zU&oW*V-*RO?C&4C&3=zG0rvJ*u@3b#_+WqEv6!<fAcj^gK};TruVWXVj&K6Q%!BeH
zag#_v!Zre^1pbQS{HH^x&cL27w{e>kcX#RuewR>q(b?q~i@#$#4pyZ3_omnf<gVca
zMFust=slO+O%2?MJ`(P3D;yH|zrl(VeNAnm4<6CCao`Nd#{*OS&!<{t_z4FHwzOoj
zzf=c^?18W)oPRZ49V4A_bf10q_tT~1wOu{Qd>wlDH3=5HRkp*)I7si|-ww-Lk8vw9
zlmHfP+{Jej+mLY^-2p#6rV9z>ESwbai&$AYDy(g8XywqTA_(vAb?}=*VZ5M)HDzl-
z5JL|?qNhJNamOkEJ%Dd=`IMvQvTpt;30w&^voH=q_5aUtkQZP7o_^gK;X)9J0e80F
zlXGS_|BeXUwtJ`Gz(4=(7l%g?z6gDjY`{rW(xnL#{FZa=gTh8TrFKMFvYdS1TT%#@
z4Hpn*Xq(B=SXJaZhBBL2Bhpbqa$>6?iw_q2S6MSY8#t|w={HEL(G8X2KH8`2jPSq&
zOQ0g5!lAe-gWi54{JJ%!xQbCWb0euBg-Fmf*Jr+L6<hU5ByV(t-3I#Uovpz(6@vRa
zG}j;5#VW>NVx}Vwx!TJn7Y7;l()}VNIAo?VH7)q>VMsBOeoUi3YxnKS2{aGxZ}j<l
zP|jvIa1d(6FiGo?f^66PkYBL@iIfA!N=T<hcQdfBLs$70soH#0QKx8Z`wC$gH{2`l
z^E*Akgg993A<5H&u2=dlN889pBlDQD5#CIMU<?8XU}H!4*BFhd{t}HaGK3PcEFk@Q
z`SCm2P?63E!RSwi?AiIt{Eg2t7|0dT^^yRUmIQ~>zn<}{yV>t8lZgf8^_MscIMv-g
zV>hb`MX;6<RDT%*fos4Xc8`B$sZC)_IXV$!I2%(2ks!V1_+w-$U~Zvk0sNSH8heUA
zS;~O`-zr1lFdMxM4twN7{+$U{Ludq6KLSjRVJ&*pFN2`7f`-6G7n%)yPg?H3d4}0+
z+dl~q{ev53`d)k5%8V*6trBt4hO;V{X87MbhD(Mf#(|_<M!Lu`e)i9Hu$ZE5vDR3a
zViS+?3j?|ad!o5akxrnl$qDA^ll`c{R=(B1Bz;0I2(M1|wY{v0$S$y4wcS}61|^qt
zhJULA-IFZCL?Jtlv`Jqmv;#|g@*B*C`1_FCA*Jb&F}lQmB-V@6QZrpl5S5(b4rBe@
zTPWTp1!4j~w0X3~pCa*spGyUl1w|AcSs#_1@m*QwEB|7AfVRMSO)};xWG?ncz|-1G
zt*H>0BbNF|d*Kx625#YM{l0X=2jQs*PoKnmTKoE5U;PhJHx;AUuS@(Nw8mE>p?vu9
zAT8+%rv%qs>5D=N%tNWfqOH6T|AG$wUI~QY>a;Wo@*)l1g`%IE=`#_@+AV>yq)o5&
z!$tg9$x#2$+{L-SDD?Bb57&ll8f4PLNXn|Pq32clA$tJS2YNf{G&y?+!m<hWt@nAS
zSQpBl!NHKm!tYax{cg)`A_)*ZEJI9Qr}BZj{PW0T%yB}9>=z2$diCt|u%C=bW~+=q
zV=|<;$kTWGYd%esZ`Df_4mxS6uL>73m$Zaf$P-w6nb-J3kbr1NY#E;ctN}#vB$mI=
z3jf4BYIz`OY=R3by2QBEsK@=JQQ`c{1;mUof~C|5<{$1){?ckjabQc(1|;$0;vHOY
zg1_iZ>q@M)vW6oQvc4DY_g_5{E=_Zp&bhQUNCpHxDej+=pf1ZSW;5IexX3BNgM)nb
zo-8s)&jj8y5DzKdFwjqZBk^mw-ze7|XAF$nk$%%Rbj><Qs)ty}G$G})bYFkscs{{2
zQHg#6g#;W3O2&BaJ;pCM#y)Cm8<56)xc41T{zna-d?cpwm6K^sK5bjoe6uFufYIAO
zca_z(5yYTld-e4H2?ep%a+%=z2R9wycL_OiVGGGRbi_@DP6=+^&5x3P)=nq^f1z&=
zpA@z<u!SqhAyd~7#4_jm%?)R{)c})RK~5#sL1vhY;Ho};UnUC=2qApp$wr+;*QCAQ
zl;Lj)t*OwWMl^JUY0f;&Yu#tW{0|bM2zaR~C$35mT##<m@d95aIz{dq34OBtVE92G
zL^~Os?%y36jw#;I92rgKLc~P|1RvyHq#x$XGO0EQ6th2(S}EvqpdVQDkCn&2IG7&w
zw`=9w<inAck{wJQ?AM8g!#10Mt~CZI=8eFMrotd!+TV|9U4K$}0Ml>lW}%Rs{mK83
z^3Va^?e15$F9!mZrv5t6uL_%jUyzx~lqJM!r24@<{q><(-MY(AUzCI2yZgOcdk@Xb
zhz>~FQ?X%6TH3b9kV_Qmu08x{y5=Z@sDywXTAvm5QrpSDgCwnqG7T{$WLVk6cHYf*
zy}~N;vCspaU=z;@Hbni(unP%f;dx=rz-vt3%g>dvwXJidDI*gChNtjIj;Q3ys~v>F
z+ynd(Vf(F913McV^4kaa!RLkjhW7PPW@1!IJ=J3mpMODED;8=Kk?M$|kC{`X5;J<E
zS<zdiExsgCXOP#yzde&B5RQ|KJX_gf<!S!DkSz{JxW-En*A!{?1oxli_u`oZ86v;3
z8O5O3gbVn{V^{co<LHYADZ^^b=I(Q07F_G&BdiM~2nnR(*SKv4yUg&lJ6J_qNiQ?#
z-RPf`q{qdFujmL#o`buVuJT*N_|bfMhB3@nk;(FN{i+qAFvn(LoIuRu+S9{~8~qNT
z!SX>{0Z_V1^25ISxBvJC=g#1i>-^96{i8<RcfP@Yz07KmkP+*+VRbE`teF#hz0%L$
zNTuF<N-H%uBrZC-@*e+Jghe6P5mm04BgQi7qA#4~YhLFA9On@GweZr_cq(u4y`tN#
ziXi7lHu&q2__h~IQ;B~XKi3yz*}6!C!8R=%Skf*L@)o=@$DjJP4Vt`f)an|6m1|k*
z=J?|tWFwK(ly^rP!_XM>drkhA55tKzZ~XxE;p;2>?T=YG591oL?Mr5`aHW4{OQMgW
zX0{BbqpVNdm#)|O{Z?6(E>i2>C`f7g4ZffDCJSf>91Q55CD54DgY{E=W-nU;a<7GQ
zwyFf7+Fb8%*(Y2bEPQc^g?421?s3>@{w<v+xyU6R_cU2fA$Ps^Q~s1rwnl9SBK*Xs
zZuGY#wiSMcncmii>7F;&pBqlM?dj1dx~=jR;pqvVE0O0Ir!;hgU>(VMcl&!EW@$lj
z1GfUl1heWYMagT&`=1su4s*+t<<`veY<oZ7VL0WPoD<+m2&6~Wp{1D*`_xa^b}~Rt
zkGFtNDjt&=Y?|QH64Yax&dho*?d~55Ng4va@hxpQW&pYUO#7E#JeEFWqAA8z4`ZD`
z=Q4v+GyUxLtw|})4sPq=uRPs4m)Hv10T$T|K61CY_XK|>0wC;X1ZJ8RvJ>gSR1eVi
zck}mrY&B!bD{%5*1k^|lZ|dy7_>KnK5<_4ug2_Gn`{!;~4kkzNW_N$2D0)^fjQ0xe
z4ypki)E4-pr|eXX;ZE5TiKv7abV`tl<@Nzv`w@I1!4&*FMtSK_|H?Aj%7HCc>5hs_
z!m^b=c&Ees9(mS(9-@Yn6QjqZ&*<&<Kc9+i0zFH~3F}<t*CNfbjco-Qp8SKs&gY!8
z-4}XYzP8F=D-~c{OIQ%G^$e`?$4Y1g5QagqRDw|FG@pB9n8$A0@0CiRe=xDue<V3t
zDqIVeJ&E3EcQ|qf6Px|sddAsKb4?|tdfgnq2ogcnggA0xf@<?*AG~<3KL-WxA0Hus
z{W!-T+y9?c{jtqVo9hQ1!Ke+g(@vmvIU5x~tb2_gpJA0FdDI1$jFEGi`mOQfSY(d)
z5MI7bJmd*Lit%M@{Jwe`pfyaz;t{yZKnpk-XWZ`(9A;xE0F#5uj>f9@oR7}-Pxbxh
z*d%|=oa?_q+!6mMujCO#gbJRE2>i{>egk?jG)KuKF`<X#Ba~gH&hX11unB^U7KVZ-
zBjxN<e1B{O|A&G|AX2cn*v|;bc!3x%U!^Atn5kr<k9D-xwlTL1fKtXa`4d!5mImZX
zUMqQ<HyXv9?tZ~%!z-u*Tg2uH(PItv=Se^u6kwzhI4=7gPUov<{4JDoq&S2SAD)LY
zu=ag;vH$$q?Yhp!nsoL|f5#sD9Ovj3qKeG;lZDBX(H0f>tKYGO;XH-P4zrhb_W5+b
z?<T9kiw&VukSJo`nL$a7Kli6_F}E6OBp;mD<lo+Y=Agv}GiLgRaD9osVR||+YKp75
zw8_sBW8Y>o;01`gb;~S&x<=gg4uD1y{IAA84(Z{{vU-p)Bn|oRRFP2T-&WktawB8H
zQ*-<@u}Dssv>XUF@;asrk*gv1`=^SmE_~69jKET)JanOvy6Jx3kLP|qW!$DvZTDS!
z=|ZVfS3Km?;17(i^~FD-kg|19FbK~3=lDh1y6vv2(qEo9*H=hd#|c|P29B^L$rz8r
zYmPTvaPLL_E#xe%mRLP-VmiQ?!7a^x=H_-AlFCC~deEuKKZw-M?<d94FQJrtAa{VG
zN?&mpJ<$+kw6e5T0)V8@>{9>2tBhX&0W!$oAHyx}kmnzfEd*JlyjErkTcC^}=YC&u
zh_yceFgg>85*?gb>F=TgdL9v)*fdhGPf~0A=-+Lmgnxr|56?{;w@WL0I>)W8>VYVS
z_%mUUAF`J<)%KpH2FFkEpM<AMbHE(bV&^J+Ms67IPd_~DzaAjRi0yAps2%B|N<jN+
zn!n)y`;F8wnKm^RX<Ydw{+{0$i;RR)0k|t#wVg}-Q*z<iy1Cj@8PUd_;$M~#joD&r
z6airrNOW5!`kh1$x1DbG1>4fwv;0s*66QJ**I=P%>1?C~&m8T`SRM8Ie`r~B<huFN
z_Ut+p8*O@!(!;+Ma#0`>%<!(|=7IM>UoRy9*b}mY;*ce!9K*{{|N9(@Nr%UhASGZ$
z;WB=j;(rzSY|q*<$V%~X#OIyN2W`1`I&Ybe_3%d{bWlEoOq?WJfaV(054FbC`}*&y
ztQr!cn{Qqu4B+V<edi0dYp*|w#5q0vcquz=^iOm`6w``a|7=&Q2=}U{DVYNe9g%7c
zeg7cS?<P{+=0my4WCd#m`JclN&G7}s&ldu!JTb*zx8wF*X){k9<Ui#LR$)xM3E4yQ
z!OkI;bnE_pT)}q3mT%W_J^gFpGHlb`@QDjXb@$i&qa5#tcMkMk<%~9t`L?ArJfE@`
z=h%bF9|QeivJ^n~1>R+NX;g`xJwM*x^9?r$dmCpqK~2**pq$&ca{S4w+s_H*6_H~2
zK;Il5IP?U2eU#S(6!7fB{He0YD>BZ~NNBda3#7572NwF(p=dPLyq4^3i_^RK0RP-=
z?N$Lzm07)bfL|0ILW0Tb7}-|yhTMQ=_wr|5Y+r$V)5612;-rXz5f>WuX?lukvww&V
zT#1tg`32$rK`^i@Ko8L|SPK!%lSlY-Sqr|(Z-z`J7K052EIb&I<7cDGv~Lo`fM7|k
z&)9qWzKBB&R_FTNp)~DDGjx$1zVurEeYRB<)U*iA2{A<iWJa*V<vw?q)r^W)RMte4
zta(&T0}2l$pDp9Gubb=l>tjF3!)PrD2T2Bca>luSe)9JH$-OW=ICGvqI*qEf{10ra
z;G7!2Vu^hsidM#nVHkobLztU5?VoLBfQT5I=TA!KK%+dj;3Y*6s%a{HZ}l5=0ib3w
zS{f~5Q2##5pFWabha4bct6s%aWSAtC<w`%`SgSP_WwILb=jpfmVc|!4*w~R25c~i>
z2o^ozbMx)zW56EQGYsvB((Sw4e>U1Gwh1<Zbvf!;Um;~k0#9p0k|5Wv@q=_02?t0x
z@v*iNAa7pmFFS7QEX2FR4f}q+-{~kTN69v|SRY^#y6a~DJUb~~1{f~7XC&-NOBo7X
z_dV(tvZMS0hlg7I#A+Z7??3EcN{pJAL=t36#6?<y@&EdqzncCuaIt2aCpYrAWxi&-
z6&JRYR^gwlpF<h)p7g&QY2^hq73C7)v@meH)%W|O3%8D2^Wm65u3o;(A1n>7e^7ws
z)pUF|Yy5nF>sujXW|pDEOGA21dwrQdkf&k>WIBG0?9Q4XR<w&*%;T+UlC6Ns<z6{r
zx&LV(eJi!HJ*;AnM}vaA{&2j%<3Xz#4z-#JA;<9E#<!@=Ic0v(rtfNe^4<19t9Jz2
z6X-@As{K_uzsk9ejDxXKEy>Av?CJiK>#339Ene4ThFXTj^?5wWFT0cB5(q7^9Rh^~
zR~quXU48xgRzdFQ>891C>&9gU>kjn0KWQ}up;IOJC}v<-)ZKsbD!uSdLJts7F-4da
z2kV;A{*m|i2Eoh**6Oq;vp9>>CC_(y#hM%!nx;@}b%}pG#5XetW+e9*d{neJp?&|v
z^ZYN@SygUh33yE~dA5E)x&Q5TD{WmG=?!VYeKr0Jrb$Di@pdn21cgA0%xqRv_?s74
zO`FwM-y<r0?-lKug50AA9aQ6YxyQ=KRx(G<3oYqTbZ_$W9<_>LQd#t{qGX7u^yU8O
za9>&ng(occuDQma-d=Z2Wk{$-GyJ=f!?)2VUgCh}?o{DFQ#%-(B@S{Tq06C2AhQq_
z=>z@Gi)<NlE6ZDCKSm^hf;4vaYgyiQ4Q7zh?WAfy_V(?{fi4NARQt?uU|0mV@lU2B
z*Q8Uc{icVkmqE?AyQ0)f@WE?hPygOqR^H}Z$R*?X1N~*~H-%RfPUU^I{$+R_XOC{o
zNl+c62OoCx--o9G;S&lWa7)=hnBjsRe)#8%m`61Tj7%*l$%Hfn*AMjrKDBb$13Acg
zhXGS9n0B;3`M2#pP%f!X!~B_HL-Ia1;{>82A7!G}&&u|V`{Pp&RCzh@>nyTld+9=3
zs{AO&kbwim0HcmfrB)t=lzaREa1}l()B_>%E{&l#zTMz62QUJ{T6k=;35j=UHalG5
zQxK%7!fgpQfNwqrZ}_GDcit-KL(~<oZ;=qdVS{~F`utRW4$KUyA#;@7hGyau{IHiy
z?w`a1xSkKxw{lY#p5#XlvN5%)%gD%xEXU3A5ASJRz_tEA!rnW+$|C*$zU_Uj6seh+
zSXPXZp6FVV(2F3=UJl72JqME<Fo>%H_J-Jd7dr?x6j4^O_l8|TQBYA?6|g_=&vhpd
zaKFFjujDmz?y1*Yy`Z)co2*F?gT8t&jD&6q*RCTHDv<Q@!mv{tQE4L{Dp9fe>2Oy}
zorX=6Ez<;PX(o!Jhn@-3V_dIU8YhwdT*9H4spSuZ3u21ew&aY#>6!#S%OVwQ3!pgS
zyih2E&pL@9BX&%O1ac%$B5>!xOT+s*Tpfv=z$Nkkja=~7>2N)2MtV3!Q4JGdICoCC
zQ%jf{y9StZ10)Pkim45EoO~fniG|w1h+Wcqn{l3eH}k{4<NzZ{pRJm@N3(HiAB_*u
zM|K5=LDr-qG{q~}jR9{?hd2MSrIglT+-lVb!*1R;DIEL;9qT<;#0CsIHvH7cGzyf$
zYd|jg7^^hU$$dg;EIN%M3L2S8PB0Qi3ZvJ$hFvFeZGtj#TT%#1;(*G5Ox!*k%uxfE
zZQd1aUKRHb38h=xL`NW5Q3VEepIJubh37Sk80b2)Zd6$pnCX)Ia4jlnWSf|4ZL^8B
znZ!2RKU^=NUco3FP%D2AF6XM;?x7D<nPCT`mo|Y}3_0lO>jT48aw67-30P{=V!%bq
z$F1kT0vTpCr>So!L2YkmdO?`ch358B6D2&OySs%?Pq%idt95&vkSt%HbPI=!xB1sO
z&LG8rp6dICFJmrvT}Pe?cxUzvbGEaghK*Il7IQe_+78+@9CZE0BazcED(n;b>|z}#
zP}&$~hy#b(sU&poZe1f|6Nh=4asWjzo?G<^@5as@z-nvs3R13ANc~R?6+A~>27bT7
zMER&!KsRregpalA_4`MdLy_5~OE_-IM(t8#Y|}OTu(7x#p6I$RVM^SN$85bgfDBUo
zLOV!%nZf)1Aqvl3X5#_bmF+FYB(#bi@80IrH&kcM5kVyJ%y@OX@H5J?4OS;sGqY>>
z<Wy@nBNSB|OnG36VI};W*C||BO@AJ_%6OKs4<5kN@AyzuLp#SnEDm-e@fMt({2AUm
zDBQ6W@R4CF_My_7V6aWQgr{fNWHAe4k43`NLA!;<8*G-+#&oROzyOes_N};IxQKZ+
zlG2rSuH1#gj<Lbki=oojt?Ck961=s&VJayi794y`7~9;gRSrbC(duKvE_&H*zr|h(
zGA=nTJeAs@l}P4j{&C@fxK%tU*hwn{cYV+=JR2JiTAlkj2z<mvPF_DTyrrvR_)7GU
zZAZJ|);K2g1ww50Fd)MZbO~#PixE>36i4CbV#)qFDxB2PZdEwwaIbmChd;F{;uT5d
z2v=yeaX4=7XzR}5ZBP(>+#M)dR#aA%q?Aq!U}U5cPKbeoo;S7+n_O;F46Uw(W>Pd#
z!Z8GGSh#x_9qoWVmXNkB3;lMqDa08V9H3a@x;JzwY`Y;mVYux}x`iKNj4*`Djx}kr
z)1r$1e6w&oYm2X&xDCZ(<V0`m8n!#pW?4UwYCCM!E!-I^h-9~kcSz#dXkZj}Ja>cN
z!;~Nje6)KQGtJtE!bJeF2Ii#Ai;n9NZV)b7|9Ij2xPZsIhHv68+RY3x8{93d&=%kb
zF-&AgCpRAaB0?x0lZ$zOT-XWLk6#>(?gp>Cb=>E@xUt_&5B@U})?`JLj|wQE*P-E%
zF6N_hG}05UD6;hAMc*D88ar6CdC(H`BF`DwobwM2--?TeMoEXNGDc!AXYU)9&9@m!
z>XNl27eVbJ4;i^Gf%=X+ARHiD8{0suWI};%6N6~4uv$JZL}GHDWPnfMB89+$;NN&@
zc!^@7bP>K$BU*~#PB7kbb2#No+h-duy#Z6Y0gEdw#?KAmadt2H#*C1XZeZfew+>5Q
zx2Z+SW4C|JfY96jmN58(zpttg0NCf!@Z2A^6I_&lKRNG^WJs0MKIdH8O%5(bAUh-#
z>cmI?Z-yP(4D#(9bHFAIn|6<9&H)4;_WQ=xE!CRJb#tRI+EP5?2-|f-c3zs#ylAhJ
zLgvPD1{sv1D^tP!tsSWPcPi|+ak~_fJyPMFnEj_*LQ`$*)(o5#u;SS#gbugay5beZ
zN|@Ch!^l?AXHtT~5KvuyFB`<uCxspPeY>OKjX_ra8Xtzl0vXO`X3G>HgLf{f4!^`5
zZ5NEu6d9eUiz7E&thDXL(LD{}S&p#X1Sre^%2QKe(#F3hZ$&hzHf$4bj#xTeb*Yy?
zmNA?$%v-i~5!Y3Pk7sQ#D5yl@B@&z7(t61ZiwcriRw}IAa5DMF<woB%1Q#zZ4)JW~
z-;Wq8c+NW~EZuM>hyqA?*YRP#MwBMf#F^L;?ZxtN+>#9z0PZEDbk~OPW4y4~1ZVZ#
zVe5q<6hQ=B-<1r*L=D@oJqH3-G(Kz<9|(~}@?VdCKBO`%*zo5VR#7G%ULQ`HYYU5=
z)L9p-*`njaW~p|qQY;rn#m9xo4c1y>5&!7J&7&Hm@Y*q9(1dm$Fbo`O#}mTud;mU{
z!zK?*x?v!4eCM$5QT!SoxKyLE_e1pZ;8wYkyY>xd{<F2K&0CCf?X^e9{FjZifh8Gc
zYbPI`ktJEF0ve@hB2vdjlj>}<uHn3#4VI<q5PuvWdV;ROdosoFYXxU8$tgp_hnL2`
zt{yMlZUGEsVYGL7I7Td(+{kglpt?$hu7L-^4AIeH3r>nH4l~bB(}2eW?9zS0wkKGZ
znZ&Forbxqg3-7M$X=N;RH1G*0bPk^#Yabm=7_8g|Athk(^QkR2%Gxn^P&yF3N*sL(
zkGw^faQhJJGhGxb*I;bu<xXKQS*=Mr0I!EFnepUh5AI*ReP|KW8*d6)mVu<bZdc=u
z4iiMsNa_dQhG?YIfb+$7V%wv_4>dN~Mk@d8=!K3Ue?+`S325^B!KXsP!Z!Pcdn&9a
z=7@1AK$-#f;lFlXDHCB`X|5;hNGl-lNyFaZyj|=QSQBW8`uGfPnfT5{xnZ`1AnXp3
z_2u=dEyG7I=osD;Xu%d~KWgO)^E!q33H$wkv=oRMhRv<aF)suSLp&2{km3nID}(aF
zjbr24tK>SNf!cX*@`bUQtrC$oNkNl+!^(J*^cg|bG(3aM{lk7JHd#~bQwoD4dRe%0
zxL{+}UYe?7cMqq>92VTcdd)v)vaC~hA0|$-Z=iN#aSAFtd8aU$r$F~$)skujMR8ya
z2ZUSWOOun1iBYX<E89QpA*CysUQ(44t0xg2Y!UqkQb%?VyQ2VtZNm{8E`)PyWzm-$
z6gm?!pdQvy3Hwsdi%=)DIHON+ORRI9h$BbByy(udaNSNe-Vl7`v1eAdTA2AzSGRlL
z@HCd$4cWxry^Eu*OT&9R#tVVrL3_jpini!FI2`tL{DH*=NvxFuWz+$o?;qAaWMXP!
zvbHTSh|lE8OnQSK<(elCDAO$=nUakoI)2~q$e$a|uTXJ#_p<QmZt=Owa?8@?n+_>$
z1sANHxuGPEQtF3?Pm{4r9I#X)i}nde>M7xoiq?cz(QM>V=xzfjKLQ<)R6TYt<O$k8
zyd0wl!liNPXuV8D27d6*aD6Q!0^)XC%mW5)>Ja9fZ>^}ZVr{K)=2Ai2wnf-)THLqJ
z52_fc{_-y2adEos7;_mTfuz16XNL_t0A-G%q9p7a-=PV7oJ5=3E@B3&*mLi2(C-_b
zVazptUK$>b?{FPdNWq>Ly;u^iQ3nOego>fq6rqS-s0;so*jn4z1_`2h(Wa?T^MHYC
zSru0yRF4`vkAReheZxh6Q)82{C;D>taNyhai80JFqsz~VgS>v{@W+PKSK96T=(<#R
zVb;cz!(c6L2tDR(&<-yH;C!44kHzf5h(wK4McRd&tOlpU*>~F1c<))5u@vEm82{`Y
z_Wsy9My%Jl7tnD<=P>TA4W>Zhjkyi>=kbl%D4pJ{RGVtI?VJ!zVY8bW!uKqRXFUiX
zE&w5x0+)vH@6W6mJPaVmJSeBv*dgrt`Udl&P6wq7uM7Qe-Jl)b6lLO-Cx!A2IVUuf
z9No^f!NuH1TSzI4k>2FqQ^Te41}FkZ?j{*axSV^2g)KHbYSvF-uhSdC=kbxYlR@;6
zc*^Jcho5flp|WWuWK(TPWvJ{KEE4d5uO691qn&qfuP>rx8rB&oHhFc(C{q9?{x$Nq
z9o?mj2}ti#ksM#Wf+RiEDWobpkMYD=ZtEZT3MYRGPxU3?{#gF@N!Dd38IV*c<Q9ug
zyUyM6Aiv7SEJH0I3Qm%VQsNm^^`biOX3e%v3b>J{n|L&<%GN(UseTEb=vZ%xqUrm(
zdFSyX9dDw=`b(${LfJ)t@{#x4cHdLgjeznbZDi)ojcWgLOZM(k#(l@h`c$__sqLee
zJNj=gvknk(1y<>dQW%4BoTcbzu)1zO>mp{tJg4Q5|Hck$kkXbw7dgvg*18$xOb0Sd
zHdg$K1|D-Za@iX9;AonOflH9FH)BjS8&NhhnV*iRa9#V-N#GBx0jJxf8=!<-qMDWE
z6ic%(qobSlAv5E~M%qzan)Q?T(37fzf{ML3dSj_;dX67q)6OWBW}E<SM!j_l|4N26
z_ak=z*T5lL7iNOZ{J0(HQrVl6($(V><4gw5=$haz{KGERrmL<<Cs*0Qj!M)}BBm&x
z@P@uuxNm>6Z~Ib?ljBM?Q4a>khu+aM2f05krwdgu+^CSdmW%olLzGgcjCkGs`(t)Y
z-EV^N>J6flIJh`Eez_a;jrEj~?{Fnql5i*op}zLEyLPc1AX(nYJcQpT?p-{D^eng6
zR@Tvn6jD@3pq<3F(THo^_=t8ZZ9{2OssSdbLP-^7(CY5bx*hB2RNk<Lc<r2b`4UoB
z!Q@0!w|2(?lISRgHI}ES1W4)_>0190`I&iL)jog(%Or;5*PI$j`?HJCYQ4FcAGuFF
zs%0pKobgoiqSJf1*DmBVl$$PD*|-wmCW$3slacow?Du2{9Gk8oBNGszbeYpSxlPXE
z3pwdz4B|;PY2_q9k6wAlC5Q5jl1NeGNcI;@lHv(RzSMK(SDn?PD<fMTlvPD6P@Isz
z?Dd|#7IZG-DU;;8S=BrMc^pS^am{yihqqg_IAq13wJkcnB4AMuw<)8<G6$3T4l~#j
z?(DPq5~E=qg(q1Ez{XYmwyWPXo5d@&7x{rf2)g_-k}sx!J#dE}VP5q6=KlO%_OlW?
z8`G=Qp;YPD?dE?du+0xm@WSlQcv)9J;U1XG;cvKwe4OW}6uO((0xC_aLX;;|j+mGs
zc75C>u2-jS>d;C|=;QG7$dFE8(lmGH=d7N*vwCuMoEb2cM<{r4G;fBR`Uxw@CZlq~
zK(`dvWpE=p8~Iipe5gB|*TH{i0P3v1V<TnEi66?1j;wMoozzu*WLP8@IAa!QzGc;}
z?pV9Hcr9g(=}9^lOckUS<lzxg!$JqW*7LC6xkbR1c=&oUwxSbM1~FL#`>b}Gq*<4$
z%9FMf1VTz}+V}g(y?+wzTs^){yl*bINM+zE=Jx#Uk<L1RzD?ls${M8j3}yU?qPs74
zr+1)a6G9s)e1&p_<YWohx1*nVuOUIw*a2iL@~}kRk30gbkLako`FGB-?vc3H(M!E7
z>=NK0<e);_vizPx#z-J7d_(d;-rLPTy4^a*KxP*)i~~ner*F%oxj}ozfjxSNtDa`Z
zjv^pY$=Bq`1|YU{Zu1n#2(gP?;nmy%G$|+A^n3T)4qeq;LUzA6{}X6)tYIjAksbZ?
zo!c`0h0dI{DtSr_j=U>oo&>Nkn&`wXtK4Us88l<N0cH&x#ngTCi@TsZtBP?MpDFpG
z;X<owSy%TXC`yj*`#k5qU&IKM`XCWHPmpXwoE^3fUJdCLFveOLg&q9PyYn-0>Iv|y
zN<w@T2qDDXbEmS3U$DmI*V{4oudcDfml65nu73AxY%#17`UEN|%0Z9!&Z};#XKnTW
zk2jYc4f@M{xvvchtrfRIrb-y#uKv04cJ3vl^fvs2FF46UySZLj3@YNVuATdMwWAx|
z)pkHoWd)m1vJi2Z$G_?Zf5|{9B~VYcrBxzvsEo6tjDPqiccrIw)4b9aeI)zDxtsfY
zzF|$4<C8K{6saOW0zhlo+25#F$o;NE&Dp(GvSra(?&umm*$@@vf(mxdbB78&;uqQ2
zxCA6fNy;K*g^v5WPrHCTxSK{&iYpZ)1%}}r?&|E%)Fjl5Ms=aria!MW*vsyNE8?Ay
z?bP&OVjdLDOs3IhM^`ItgQzuE>z>PmZY?1m*)zb@3*L3ruNWeLOdB+S2}s5nZF{Pl
zQU%-=8^Z$x7(s`q7Sgom9CzpPR@Bl^P353^QX#6s_8mt$-)M*4pR<MFQxYZW{D=GY
zP1X|gBT3*yD;X(-k&_2<Kl&$^bG{wN0Fw1lj5G(uc5(D`rdu)As5`Dv+=RVxUWDp>
z@Ef3+ENM5o?_ObOQ!(QW40bNcp`_cTd%9IiX(u^V8heG&Td4##pX0jxPP=%Ib?6*s
zBAWFN|3H?lu^s2q7i+X=F;Mo-%kHw{4STmo(ttIV?KUKh19dwDo<p`v@)3RS`W|h2
zi^o-l)(Y*MJla(AKE&<NWXmsU)MGRp!?T)vi2G>*?fHV~C6mfU?}bE*qTSZG>=t_)
z!<RGy3&LmMkWaVu#pm+@iXB@*nZQA&Jko}9991)2ZU(CW8k8ZHLZ_rY<UY>&(xsNh
z?RydXz-}RpK+hYC-8tXUUSx^&lj1xJ@&VADesewZZM}r}#SGwxl_@4tMZRohMtY&p
z-39Uo=!H>;m>0q(O=ey+vA``HU;t%2flyuBjdDlg9dbwm3Jtj3^;&CljD$@lKnQ{-
z?lLF3e>Zo^2lNz11IH#fNHQR(Rvgvoh<csqcAjouiEzY#AWHRhaL0X3dofj=p&k$s
zG+W9z&o^T__>S3jH$!o6COaoN6FB@)d%2!<Hq=18MzYG=juNN@4V{?jPCCkZ*8!^%
zcpR{oD;-C(vbaKv!Q#XeidQHCKvrz!-_Eq>Qc_2{;R;GE3#qCeJc^Ek&Uf#K&4cT%
zj$fI$LrM1&X1mvSvYyeD#pCzI%2syX9JiYU7Q&vIjO?m8Cz^hryMB!=3=qf|ky0@g
z2ov1unSW$Vyw!SeEKM3c=NYXd!ph)T7#+ToyZG$*Nu$hA2}I&0&@4YU#SJ~m5Ck|R
z&UQ_EZgl6_Zpzr0g8<T$DqUZQbj&)-T~^Ji5iU|xIfO)k`*}kBSGnaa)?U)MLLvuQ
z@T0+ByK8wLK+bT~3j7uf%_(1hiW@o3e*40BcyAt|vJdxt-5nwkggpOZI^dE(cD(&Q
zTlq5ZHp30)8jajjR}IOiy7^>f6$fHgpXO$~&8N8$V!%++f3QP1VtjjgM@wJndC5_`
zYYqJq@L%92w1^TANtD65KTEhPCfQmzwV_}rEhih~)AE|TZm@M6PNe{z0H^{M_xKmw
z5(!smYT&<-Nbq(O>zkW&zrd2PUaA;W8^gBYHDtq`AFzpgnQLH+ND#Q%WK-Cd3?q@h
z9O}+18bVH1<6@*`THC|_7eSC`Jp|rXOae4HC;IAjchSWxK!m5EW=V?#8mr~`LpOKu
z_H+<nw^Hwtl<(C1S=#g9vAY}UsIL6o>e^-(i`O{gakq(}ua$&Qv<&*7(@_d(QrMW3
zlowUM<_>+IpGj`O7=vRkad0@MG4$y>`3p8RNu&fnuVzijeh6ax#Py2HYW7JrBqt$p
z!&st&A^Yt1evg6}&Hf0LV&RZ}ly~R2W0x3|@VaA09my7$gXM@Go$j8RXq_b}*}yBv
z>>$P7(NiPcz5=3Fa?WG1%N;5_3svV_KiJl96~CELD{B-j1|8OM@8fdC2r6+mm49u|
zE5O_FP3A{ujCEV<CapxS*f0hpau)bQ+Su(*zQh{JEaizwEHDqOk{=zlkIOmJZhz<!
z)DOaGl(dg-+1XwGVjCre+fhXxo)NnL(Pz8K^$bPEc`@~MfP(auukY?p6ADI2pTaj)
zg?~sviygSiJ%;EFaR$1PNXE+<3P)3(&6N9Hw~uYPnENWpeWROWoBw#z9U<&rL~7u%
zpiJYn(8<DOeB%}r^MzHoSqV>FP|S+n|ISqfYaL<g550t36C37#?dI=kyO72qz88WK
zVF-S|+6_P1E~lSr)3XoJVyGWd>lH3EFg?lIq3Gii6<~C(j)F%xg#YQTUS%(OBshmM
z!&Wf+xvB28Z|!uADIIHC53shd&WU@w6OOcVIZPCP9b20*GQpOW#TTCN*2~=MpV^N_
zu@H!dnAn0S{{q)TgoS$P$?>{?e0eZ_d!f5+Mf_vZtkxxkQ1kLhryhN9raSICdI}?`
zAF-dH3iPKib~7(>(HV5$$=0}J9Nt)x;z$(pv>Sa7>y|4by5tNv?`EX@C}*Bqb*){1
zsP_MsLE#b(+{9<^&8XSJT_ccC;UL(xc%+^8aN8xUs~t7!y^b20u8dG%A}6U>$cxy`
zjlZ9t!}{7q5YNx+I{kZB)|Xb$0;L{#iex-4jy`?7XMK0@0tH+W)vLr;7NcVP^f$NA
z+fB0x_y~!U6gQ}Je>K?#RoZr3s*xhWdg{@Tr`%w@2W2(^Z;_Io3l>JZW38KmaLS(6
zJ%>VW@w1)XL1GnSdA=r1%4%4WJVNBI{nqXJgN=lw0ok(`oF8TH;7=B}psQ<Dt6)@^
zc8B{wqvu8gsl(KOFvgw$s}=KlcIn2RT6J)`9!_Qa<8Jm%3~eEE;#njHaa`Dbmp#>U
z9}WR_1}Rek3+R^lqF;%-a}ZyUiNeG%W$Yn`GW8MOcAbXN(f;A!*AYJ)@WaqV6&OKe
zA~#B2=$3XzwvAsbY`u7(Tq{_Az?Qz(JK+0bDjkT&<Mok`v9mvJS$y=Ii-~hNQOg<b
zoLb|mh9@V9HVIjY^%@0*1C+&6<wTp@;s!_wMlw-eA<~?<2?+q%(Hrl&f4*ktT2h~;
zN{W<pY~<E2-7U}C7yVJ1h>@g}T7Go+hwffbhJ;+0e&gXJnetkC{piA9CjJhrOoH7C
z6ajkHQa5*R21kR{PS=E@w^i3<!%$7gv>L>~FwTri-F=sDM9b04A)82yEEFLP7r7gx
zENxYaP&FmhsBO1BBA8wwu>;R`+izh%i?x~j0;IgMnS3pjL*p_wYjNKMBTt}tDWS3@
zoL&E4_b4QY(KQ~DbgTm5<t3YuX~^LY+02cqu5i=e*yw<OjGLCYBR=Kpf~a2|b=UH!
zp4&TmYoUAM0vh$~*6Ejs4r4FFK6H^VZ7Yq!TNlQI&7iA{`FpYbI8OZJE)}I0Lk=~t
zTOO7cu@FHeE-v!_>}m``n;fp^{(Bd{BXT%kbW|FxC%c2kxuYYcVy$tMWK3`uf-IcJ
z<vaS%mRS1;p}HFJ(0l>(?BCIU`970_9}>J_>2A>6<br<Yyw)>&wQ2L>vnp*|St&9}
z5)bI_p$mFmzdNrDgJC)eveq5J09RAOiG1J`-9)YahFb=A$#KC7i3)LIQeh8W<lODn
zK4N7W%K<o<$`s_qSm65Tsphd1@Q(nVBe2pWi8I}1l5u!?mJJ`}zcj2b?dU6yw|kNj
z7g9j-diW#_miMOH_cp$etden*H0jWPzKZ_b!*$uyW{I_K<53`h01ISP{bsUjf_GsW
zP@NQtwksHVAcOiM0MG?1U9W+5kg#9P*z<)piu0HTp?q$9kTIXiIZ1O={cg{a$4vi4
z-Kom)=>~MU&}izakiKN9`(4}>R%BBINp8@LlA%y&NuLSg;rfmo=FT|X_BlK;z8ZFc
zB9k1`7caQ^Quk28GqEZu%1`->Xq%VZeXr6Q+dRZ7uZV#Tr$3}+kry=e+0mjk?)_^S
z6zG)Ygu|mlp0M99b=TcO2N0bWpQcaX#6j$@@8oaWpB^-J;8C*lz@O;cjvwdxOY4#^
zB4(;MZDZjCaranJAVYI+bf?^CzvxfJE0gVHdnt@k*SJ$fwc61NW$bHZoj4j$wlaen
zpIs2mKHgm`7Fw>5;B1&y(QTol7iYNX@7h2z;+XUa+-3}dr>2;0KEaSL3~~#*aWL%>
zmYhV6-rwyn@sco3(}S>fi4ifN^)Ar6$~n@FJ%yi$iewB)RHi|i<g%vci#K{6wANk;
zTOYcDH_lruqFiJ2>Vlp_SE2AOjz%}|<^VwK4t#N42mi{m211811ww=#shszI-O}#>
zVX*5oMhi7+xm~uZKzDoBeg6WhN0Kz<Iv^{}{xO#so)d?D@_5d|>M)M(;Aii^Z}nVM
zCWdI}f~fgNR|Iueqe;uv<a0!UK&bn2_Z})aI!4040QRi3pje3M2iH|!$Q!l^4eSJT
z)GAj2Tmta`_v6#tw+n5>F^U*Y;bxQ%+~1I8?#B;U0eK;s;8qiqsp4s7qZ3D$_LV#K
zOJf^{soXF|PloDntos?|G?;rNmL)5g$HDY2RH4eRCc4w4v4CRoDrCIiZBd7H3;*5L
zHV3j8<^kY84;PSe@3^h?s+byU0ehuFr5+4y&xwoNphxLyMaa-N_+Qji<c_V|!rvgZ
zCV+*ku!>IrZEkCaO1H;y+DS=D%4PWnu)W?<SqFc(=nv?Rn?({fOi@>!8YlXQ&m|(^
z$L`u@`^hMg7Ko6&ZT@n=gd~6o7k%I!mi+>6l_fRO10k~l%H5vtIZc>XI}kr<0682j
zeT9w$r9*Di=><3JF}}pglped%8VjOLUT}{+V#BTH_41-i=l5JBUXPzr8feuLF-9=_
ze=KqjwDPSWeGr+Dos{AA<AskocI2JmH`oRaORwPWITJ*6cGhvBJ4(70Z62E&k6e}^
z!i5&Q_xjtSj1!@ZinuCGmmj^e$lZD`^jN4vvLChou-+cBgTEriL1cdst;bnH_DD3B
z5ADWC*^-YMmNaBF{JKh{9Znxcx4_-BfGa^afQ~!^k*{3Z0^HMjNBifv&e9ofr~^dH
z`qw}FNqf)%u3XYUWmz30a&z?9Tdvnzwq}8FhVZ_wN%W*1HNMP+lr)RZc*`9n6$5E%
z5T%e!G=S=BN7r8G?ww}?3uwjqi<`o(`;of@ZVF3X2{q*=Q6!#MTpZoHnZIhUm@fev
zbEHVK>}2Av?re^fU(38n6q4F`g3JGKsUqf;M2MER)!MsGz|k|vz0B<<wpv+no5o5D
z#;B5VaC^PTUApprb>&2v7rH&aw=OZ11K762Dt%ahNA^t@xHS*Ms8N56UTqn7b=GR&
zdGM1xzv~Y`sW?@G&^>jcQ}rw8RjhjB7d^*G<$!vVqA)-W=OoXy(#PFLy0!LdZkE`l
z=5F7N7GZre0DuBfYHbwbB2NX2T+OLAP(NN3+&RtgY`lo{6l-43kg&d(MCajL1k1F<
zxn}!G8|jyhF%MNgSos6@j`V1)sG%WE?PURi-a}G${^COE>YsHV#0)IbHg&%+x?|1d
zt=u`q6|Ll+;2aP!42L39aU6H8cDL=$xW<QY%#Dc(ifW+AF2H`Bzl%E*t{=I6fX1pZ
zegg^<^MUa9vb+EKn0rE6&Nhx1o4*#e9tPkfPMq#`j)~tW@-B(Hi%qDX@8dqZfNx1n
z2F-<`GJXa7dhh5zFZaA$gbSlbdDRlRJycU(ND3_guOOPUnLh>+0zeMu1W^8foRBA>
zqJO!aq~F2CoDz7PUtA@psFPoKAu}P|B~>S0uK+KUQA^zcpl)`EP|CtmJl6^t6s5iZ
z1HN;w>lUkhOIdXd2_5mDW_8~r-D;^^#oCBD(R0ng8|CK3?!#y7xnlaN08fj<z$!qN
zj+fnsFScrm#wHNLh0dTPsYYN2xGu=Xnd8jUOnu3-J)8nsoD!ZddC_qxcO-gB_PSnH
z!1lDpEfzBf_2Uf~rdwrP61s2(=rh^9@(;SPPROAWu7Kz_R8(B82t<u@r-*LA*Whg}
z1*%>_ezfBKjF!#q_@qr~R8kJvz!-2!SATN_e8C1M4jqo(*~EWYY<mU=h?B6>E#d|a
z``l&8g50Xb8vtTzB!PRP92n#RC>krF?qX5H4cC#=whr0{HZ=p^c-in8%eHsRA2Qwq
zg|JBoMfiRATXaP-T&<L#K`FiH#@&1$`FXH=p$@^D(C?wy?(MT^mU{xV$3^EPY3D3+
z11niXtJ6v))+lP{=Ab{1hOcl(T|^hbW5A7QAT~-|$4=PJKiH9TYA>9_9Nb#wP94b4
z4fm`U;B@*X+rxV)q-E~no?{jo1vRWLCRmCl5O7ZP<EyUZJ%$j1V&&^NMY~}kb-rJF
zwL5<{``|ZlbaHP2iSa7#de|NLw6*KHQ}M-;QjuY|yT^5S!nR&2)BqwDAHXH;`i6Vz
z-?sVwjfqvJ92a9T<74+`mAwps7kL%Le_N@#O>TGJf67Q4c$?J@zxdwK^p1Y5cn(z`
zR{2^i4N~7>-RvEmI=APeyMT4gP@1ZQ9%3oueLdO1Em>r%I(oe_10o)s^rri5luZwh
zu~1bwnOy;1PhaB-KjaJQr3q}?5Mf<L36|lp)lK91p^0mGgWR*5u$=#g${Tx2<Z90~
zy#_)?-3mQp6i`vO8u#x6-|BfI5rN#*BgS#b)9z<6Hu64zdPtW6O8{>^`eS$Fme#?O
z7Fz*i;eq<DdmS*b%PcqHI%AM|3Lwd_{X-VIWRJKT_F|IoxF9lm<0V%v{=)eAVaf@G
zWfHL$zNpX3J>P(B2a|*1$<bp}z+e+Cp7Dh${1=t(>VNLeF}2f8LEUTbbQ#+)ZXP@~
zF%~gbh!PpS5V?Sv_`x}DT9*A_2&P_qWDJ!jYRvZpO;C2!;Z`?a>Mdo{U4@>v6+Xp|
z@N?Y$blnF(;+9=umjq0;S;P<_+ALzczm+hQ_+%?f#Enn7o0Ck+^W&&FIy4u(qvl)P
z&wXfZrFi4eX{wKs^##$&_gvX^wutpMX>k8~sw~QnHwQAhHo#**z87B$nMA02^BH%D
zm}&A1uuCpCCRjWpqUu48ufF2e&a{5`EkT+3V|=Iuz?SX#j(hNub|aY2U0uc)DZcpy
zSNr{oZYXo`!0bat;gG?ksIOLZ@ckS37{ixrH?5`t7Kwq>>;qQx_n8yjeOKGB2AKBR
zQ1}SEZ6HBXu(*NlC%Lq!WW_qt1P{<gno#&5DmBRa02*Yb*k@|ol~NJ6XJ$}StUtE(
zrwQ3<YgTA9#Y&r+QC&zXX!+A!HG_-M<A@dRbm&&f=DBfKSqGkZW+$ha_>gzqrkBtR
z?;-U~c@lLHJSFFR(oTMQS3~D)9s$CZibjY@hVAN?<8=Vck`poJNk|wB>-W-bz9&2*
z7z%X`ID@M}2uV<D7=fD$hD_u~`=0LlgS_<i6BP)OOvYo(+14G$_96DMg0dAfN`PIx
zW2q~1qe(ZrPCs!*cs8Z$#v{7qNyNK#U)M300Yz-Zgab6<qzfqP8m+p<Rqje(ezZ`m
zH>g;IwC)~v-;;LML&+k9F1ZyFadkl)Tc;xhZ}VObpYQ&h%a2WQk*fF+cE|Q5?oLV!
z*^9=U;5K=i--xu}QzC|kLoAMVeWd4hT~QO;(qd^AIFsdlLP!7AX$FG-!w;#T%?}Bj
zIy~9T+rZAjQf5wZA4=EVjzlU=_^vD5#j<Bn4oSKKm;$gKk91Y6zHhzT38u)RTrXXh
z{NPIWj1NH9j+EQBC9@8Z>j!+W#_gepm?tq&&ec*ZNghVu1-gKTc?)5LZWtfVBz~xa
ze#Iw&Ux+EGImZ>_Xu~ax#3~!ZPc~Irqoy6qn8!7itn<w2&FeU*BMxuS70f3jlWX$^
zkqZG)$CQj*;lA3>x`%McBCOQu;QlZC!R^jx+;LfY5>>VlmjM_SnHNod%e{)Zi03fI
zc-Xoh;pXi8ubk)RTxmRlfCiq2E5pHQojaa=QdfryOA>W0DfChQJ@caL^qjGYe1qD|
zc;y1w*x?ONs9*_F<V!)yA&KZmXI|`H0oQVkL*V$6;w!;JXl?*Bd?~SNVZSPh-kajm
z-`EZqcm(D<)(>bGN6EijevAx-G%@ikF&CLq>`v9nJcJUM&$HILm1vkaaw-Ti4fGHr
zOYf-jKo^c;SouA-7#Ch3+5G%3+|?pKMNsKVn6d)tJl8IFXGvd!$XVSW>tsHx6g1~O
z_t}9A0jXMni#S75qM7!@87_(qX4tHoaA+0&=7ZkR!pUxUEOLyb2mC<0j7fW)>Hdm&
zgZ7u6-*)Lt+@GsU8anU41gg%`V1jsDlRk52Xd7T_`2SdpMcE)llteIi0`j(8;dTWj
z0aC;2WWt7nQ3~^2-LzNj`i+&dJ7_aiQ`fGA-(g12i8?HEPd&s8BpgP=NbP6N->Q37
zFLqnsZ70}zRFW3kj*9ccYzo{U^-?7GS9h0`1Ul8a#Ml(=RP-o{zW&;64{IK`ujh$i
ziOj51pd2cf{Osy`@|!kqPIFfkWo#AZP-HX1@@w3!d)PS`cV(uHVdjd+gOl7fW`>*W
z><1&ICzT1<Dnj2r$sIy_8*Z&vK`23@k_ZF$xVxjo8aT(j_?;p3VT~XJcy(#LUh3!%
zM#==$Ljo{pOW%mPJNkAvzbZBgSZQmUj4!Y^N1gp9@i->>0F8S2_8pEw@9yf)5fp5M
zlZ2EX{=r?Q1B9f(X^fXCi%S5E`@G@)BVAHEZw4jWZS!UjUY5{Sp;eP7l9PJn7&oJp
zl~N&0Lp`YE0Q0M=-Aqvs`P8I=AB;EPOZ1UE@4af=qL1Ugn06YXM<j|(u>49kn+J|`
zgK-VuNvi`D5;?$;oIp7kq3G{;ma7Lx^BB3mBPEpJEdu;!Rk#mZY!{-mI)2zZd5ELf
zggx5(Tle4!>n=4ToFp(%-n;H!AKJ}vCKIZS7g~2~3V6M9rn~oBBb!FaD*ncZ>w4rs
z#)Pqgj#q`V5Kh|rx(7~Ww~*l^^|~WH(!3~ZRYs$@D>0#%W5fr_A)UaH8{Fq&Ejeu%
z7c7bhlj?%&TzQ+@>o2-UZoZ@(_bVxLIL_^t_8fnri4{21wYvOMNLNCxbclNuxZk#A
z!w6}dhpvcMhba*O@t?ijlV91=)^n)X3ZmYb?i_#)M31^`9Z#!3<f|TWo5Xn1o(9T=
zIMCv#WSwkbaCY3s&vV_?lkD>n)B;uOjiMQ)KSCUNu=wy3i1(mNoyX72^dw&jdn;v#
z$BFv1>@P)y$et5kbx%tjyb&PF1F8*>g$Y&(^5xMHZL*6WSP(D1RR)o=a^YfkviOtO
zFQh(Mvl3+_uAR|#d%2G!e9=+2WD<uh4W=S44;|??i=DR0e#H8O>Kg4OyupFRuJk`P
zzN95EV_h{)-Mr!4Xz?5F*~jTJ)FdC1Mkzf(TR_-;Yur1EuE45^Oc*~E^mxcwvu3!1
zrJTf75~cvcZ|4BeL&1P3unWI~-G29Sw@Au4JX6duUkJG{dgn^_-lx`DCiPHE%*(ho
zxEbUnd{cNU4Yh9XrS>CeLPFL*(gU!luM=+CW3*!|Me8LE17i}|y1@M|wX-CzCI~QI
zF0HtwNTSL|FZO(3jcKLYRQ(8B*e_#MKWs=zN_GpX9^hNQsjn%Gc@ypxZ4Pu4L45B`
z{hA!Rj`c)J#=@nY+$!wVdh{|I#WE*KDk{WGbtf(7i&l%Zz3W)E!4`qrG17m544SVU
z<6f*cL@Ed+07NPhX=wJ?$-nmzdxe?iXh#xcgxg$#E#oCq7+v;M&!<0NPwPFi80(3p
zJ$on2FKtk@6uu(&oLaY|+)WbIuu%zRjZc|@3pz-?w=CCJZlI<~6m!K_rs!*L!$Lou
zRurA~Fc1qco)nVxHeKxU^crEWq;+ETZK}o*NpZTp*+zDB!l&*d`CFJo$ou1$Qij9+
z^BXkb{0O=0W4F05#rmg(OrR`zC#`VDNi~Pgo+qP0<$x2F1vhMK!=<RlNK4IACYdky
zbm+P6yA;>Qp)EnSHEM;&<X^k_UcVY{9txD#rN@DjQK>~U|Lq21QR3(D7}ex+<?Q9p
z_4Ka(;nnf6z}<q6&7y{B5!jsL-4|Edh4m%VP?b?I*{#m)<d=MI?IRK-0uy#Amip?$
zUHlMOP5#4~0C{I@Qob0uh3KQ6EO)&o+BQtKVZod(1M1qKW5>A3D7g3#Qi6e2*C|4B
z;|cDg<2VyJlgS1o^OzX#`#*AL{A3WvL$8qPoo6HUR8)77`(iTNX@y0670K>Fm1Q`b
znJvywwJ!9?GKx^7Tqp(Ke^Sp~;~o`a6qnqd<%NUV?j?8g^Gs$2VW=JaMvPe@ZYAaA
zylZ$+y_`{hxWYM%K{<{kWS5QA7y1znWYQ?%JW?FZ{?ir2N_2YG^SS6G{&L4(%h#>g
zv?7_Vhq{>c_mhr(t0L>de2?yiR{Txg+t!cHv(_;t)+i_kL(!Ig$$qqMY`){#US8y8
zKVqi|6gPoYxHttq<VMGT<_104+9R91nP<o{Pnov&T+jc|gHu79S6DGnHu4&`2G>0H
zW5kB*G&E$Sw>bLc2DcJREZ2d6sQMs!=UnqUo%}^Yh&fU$=z!pEWlFzund?=}B=P}i
zv|TGr%j}(fR%hE^SyCq<OL^xl{K-4fhA;uN>W!P&mN7I@U2j;RKpalqX!n)qy7|1e
z5-(00Y-!;lxSaA3r;l^>x(LbOpqn~=2Tst#*U%*vM+vJ>t=-<y>H;@R+IjtU9ihe}
z2bxov=jL5X*9Pxd?m%ttS;}SXJ3mV3qWQUn?gtEc{9da!Eof^n3MzF3S9yoY$>{c1
z+`#+R{SH1AaLDMhSF&M(Bzwjp+WD^g+)whIX=h+o1cbDK2pnMMEzWi;7P7d!b($RG
zm^q7KNRMdq5Zrr5OU`hq$c8}~jRy*Ds`N-GtDWxlea$v!%8bS(k`|;uBPMejsh#1G
zh{xgNM1&+2^MnxupOVdu!&*n3rNyo|#Jw>esK~)jz;K2I8s>fLzUytjW{c8UK>D+z
zaeKQ8Eu3&FXj7~tva3mCU?1UELXOc(SGbI8>{rq?DvYBdW>l6C>m@|lTWo}%?6z;Q
zU-9lIu!U@rIiXs;&h0dV<-i8Z{)Q+C8pCl1O3}d^-+?=ZFbi}Rpa3A`f<xRKFa5Jw
zF6V~$TqY1QfTJ$eyfDt^MBhB?=FDe1;xkOJlw{UUT54;|Ue|~sNAO{27iA6v&+qBF
zV9bQl_7#aY9Tr$zVUO2c;GXEw?SE2AIM+5xiM4Z`QxRUopc!d+BpGlb(bf&_C2>h|
zn^7byo70b4_4fsG)Bd`_Z4L`8T2BvZzX>{Y1a(OC-BaA1zu68;q-jc>%%PaBrTZ%P
zTtCK@?RZ35tx^M?`MrB3VXZJha(~4?%A!AJt#E%HXdOf3DnzTm{?4C}-~Rq{Sh3ch
z<DQ6@E{m?qK$hj!D$QqC?B5NG+^#RMvQ~3WKMY4{?T+)sWKMbl?g*J8`h2PDE1M3Y
zZkzueb4Txf?4J6HW-NMW5FkVND(La&Z||4K{OK52zWBh7PN3Usl#?g46_<mRU0mtA
zEIS*g$M!u%(Y0OOvGPhGbSr`HQv87m)4PkMJkT0&@#9?VX+hgc-*o>zi)C1Ri^wE|
zL$TOb{Nm1nx`>C9&RSfYHhsiq{^~t#GbLztv|a2ci8y2<zmRH{H-6+cyWV~<q|Fgt
zf^wVah`9_9*LQ6ZJzUzdm)z-N`DSA?QM*t_aqhdk-m||#9oOB-|9K_EHC984d10i=
z&W?6m*mFcD<RYAYITEZfD-Z&uq%Drp@3;#tv*k(zp0Lu|xt&gLxonhGK-XJBU3%S6
z!QRnt+r;z^nv@z321Sg+#e~JZxwF6iH%_>f6MzTBS{Ze&bOW!V6;gvch<tUj^981>
zzIJy>8wmYJb%DE^SdBb{(r?~(H@wZf8>+F3*Qv3IN>34F$uNZRMK5gP=jSjCz7@Zs
z?nSIND%z==`-uoSv9L%OFotpxRFKoJulGFY7f#R!3l)Xg6_O#0PnLUqduA20N~}5C
zvRGj220%Z|br0@t-R-TT1k;#xbVraag(DL6m=sVTh%fHD*nj(T_Z@lA{o#6(4HIFT
zsE~@FdGRd2>w)y-Mgyc#tmFd>!cp@#zG5lOs5Tj8qTHZhQz10Z`!zGVzmLc}kW6zB
zE2*xdeeQFew##@Q$Ac(ZbDXPca__Ub!RWSYQ!P>S%U$l1Z+pHEs>N8EXc(JDJ<DT9
z)$^E}_({+A*>L~W4bY?L{mb3tSv`mLQE_9ES0PCE>6;fVnh{<u=&IZeWpPRSILU<=
z_h<G9Q=aJYB<6sT>4u7?2|V=(0XhR7qx$#E{$2mpm6HKo{NG)L8GvToHIKCphvii~
zVK%{Z2(Q0Z?$IYFa~@%h{nK@|xa^i!QKA^34F0K0xj*qfr#^rd?IUcuva-;t6bQ2i
z`+G02-jP+w@lE!Xe0r+)_h*cE^9X_(j7~tdHDYaxqSJm29aj5!czRJbyV?@BLd#Wn
zZp6>w;u1HHAhe<6b>a}PB_P*FJN*)_fDPdbz5S-D>e?!njdLv6Ywj;$>Y*;l{gUdJ
zv{Kle<m}ZFjX_bh;_TqI?vmstP$hz!qU~!!!vS$amC83xkf0U~=UMFA9Cpm?l7!<M
zN@?^KkX%DmqCSdd-X0c@p<Q)|P&DB7(Gd0Hy$-!2WNRc8*|3vfq^hV7^NhSE96pt1
zG+bO&%UB$~0Fck#3WfdS)^uaTxKye+if;Qj^k!gwITCrfA=QXvV!!-Yzr=W-oCwjZ
zh4Myg8p7;OU6R}$YbZ~_s756yAuhWlj5&{`nIVYUl~G?X^&OK!QCXKH%nbwRJn+bu
zb9{8pJ>k&4{8~@0MIBL;duKR@#iDi@h2n#IjiQI@Lgy2^9DrJI3~wdbNIuEv)jcv_
z|GwJ+3^}Hn10zklWX29VW}g11wT^5~RpFi$MfY{cJnN%w2QbCR+O-vkhiOWuD2?&0
zKZaZ8Sx4!YwY4gl2QFE&D)i;o3_EgsjlEaYk<qhTWnT9*tr&?~>f#}a!6i{`cII}!
z$784J5xRLiyl^>8hUMYdrPec`Mu?=LlJS9zEx!o^-m~#X0q0F?NlUCeDgVg4?PqHp
zvbHiFpM)FG-;SAIe{Q1;V|bR$x=#BcJo2Lbc0ghRs%V~`B<+K`WnR2RcWrZcqJkV-
z%qR8w*KdbkzKBPtZ5q3_F5ddSKZV~Pi&vLGVx*dhD)@B#BHX=cciTH2NXlHy);nyM
zS@f6v^su!EFBv7u=9w?s)7+I|pI>YtC5gtWbQ1}U+4v#bWZud;Sm=NW)fMIgPXvcv
zbF^~P%vT?@p-P&@Cv^`vqZLHgeisJ(YR!wRO~=>g>u@TwGRn}kbrovH;VCCt+$FR8
z>-e0OHL;E&$?!L9ojGc?eLt9lR|#srNEQ3ZJK@wXyY+%tW2i*L7(x&s1WZc-J9IhK
zAMjSUUR)@Zsz^9R2Dx0|^x=nnKRyCY3`sXvH;qkmjI5ksk2!wx59olzBr0{$;;EF3
z8<cnMJ$|oQ-FktoMkWc6!x)hp-8I|4|B%g&?2;Ng7QUvSnBSg#s-OH0zg20kDvgkb
zy(OAI$KP`ut*D(6jS~`;<WxiCE{HC?%J)B?QF5a(I5p#E4}t^zu)GUq_@-vo10%tn
z(kDYdK%V#C;*Xw2D=~!)aK~D{7MTmOn{kVO=1JQ?|LP_P1kJrcd!6p|(`aUfkqNBM
zS>qd%Co=;I-j6QwS2o!W`on<57?DgG`O(X#_?~aGSZKdKL3@D`n(_wHo7{4-U%19*
z86kAS6ot{<GyR_nY;(w&;}gvZR?F@RqkmrQPq}~&iTH%H>Jq3)TpWFJi(ha#gHZlA
zRX2{uV_lY=<n}rKuaE7MBZNS(o$CVfX8NMbY=+T|O&pzo;*-n#fm3WHRQ71r*m$E9
zMyKBCyK*m#&71%P<-8<McDdbeyPRe+0pjb%tP$>cdC{Cl{QaLWaIpkmA`I~h#2`pA
z)N}m5Y3D<jdE_u%E~?qir}!=3Y#m%D)1NO`BTCqu=*hXhc^RKzlZ;O-fkFsBaMS+v
zndZMcC*Br;Cy*)?LA>V<f7I2ss}f)_h6zyo%B%cE=UVf~WPOu~om^LLG;N0e{!H3o
zHel2yFmev;)2nCrpT^n!A~letNOw!3*o%BBWvyf!l`aXENg;bfF7z|%X(!VRUUCK{
zc!d{4d(8G%zGUkg)tDYDHG4s{;wHb-J=Qil*-SDqK^oVW8$ED~f9gsbd<c#Vf>#_%
zD=zf?>*B@)ZxrZ6AY`orru!o&S$ls_r2U)}Nm17e{N+`)nKH^Vl(TGAsQCR1KlMcW
zF%kC&N1T;-H$tbQ#B`rG!McV47sy<2myK8XW7H;|o_m;xkZrGlTV8XIzxEl%=gF2=
zVPI}*OoO=d2}+Ho-|zG0+E*|`@IuX1=|(Uiij*H7_S?K{Kr%GlKsIzZN8T@PMN#)h
z{ZaSx4VmMKH)U_U_3Y^M)BNv?TTcyV0^o!Q5PtLhJ^s=d?n`httAgnzI;9|*d82Q<
zgW<_Q)=beCjjgHy)9&_v-fTd1gs_xeS>Z$e%J*y`tUlEMnImhm9tqzR<)fk)`-ngM
zqj+YBOm!1;AOuJX+wMkReTAJ<ncO!TU`fy|=0#Uu>Mu{*fec8Djqx7wY5CEi5Bc97
zwy8>aM%9&7unw98GuZa?{aPLYPibhns;&_j1yzE29(=$LdYATWag#BoQRe(9_xi^k
zU<L$WB!2^EW#G7Sn!i^!%@a$5LqK8^F7pGo@2<CaSTbE(-B?})Zf2InkN7^kAPvB+
zq=ZFq#)}S|;-9auW)ux_HxlH-tbKX5ceU|Os}d8GhE-by6HdR<e=?B|FmP0(_k!Ui
z`6rZ!rE{>2^XNjCm~M&@lH`RBGkrf0600S*7XX*TQ~B*|zX|K+wuV6YW9%jMPxS3Q
zzRR_YVKNQeQzg<aMP%S-Nt1S^e>Q&S{m=%tVm!{~uUq`mOKlHhk}dRL`@*Xxx?_re
zTW3?iNwg63Wx`S9uJJ=-qCg>2_M}8^|GC;feTuEHPeRP2o}J1llwam|)Ly}BDr^C^
zli%<AH~NyF?boG=G>#DbI1eiH*EN27y%${dCZOFlrMKw(={NZP=P?L4Gl}mkheeP<
zVRY_oewnZ?3Y+Fh$+}vD3|NkW=+ry>1df1#%7`~d#9#uY0J-=wKey4o7?ntm8>i~G
z$e%dK=HB7c)A<0N5wWhB7-IH-S`*xU+HBvGv*)%<=?^dvNtYX4^RR#AM!rBU=ceEY
zC3L}h7e(dg_)YJ&i;)a9mSmnyL@)4|6r@l;%Rk5)V`aGR*I76_z!LpF!=EeYCmzL&
z<Ao~ZIQ1HTz$$ATS)Rt>6+H~x&9#2oHUOutJq8?Nqp@Dj@ps?Hq{U<sN|3*^ysB9Y
z1>p#f_$R)yEep|bvmi+hJ9^+o|NB*K?GshM0|8B2kaeoVb$$mPDTsFf6a@T0=HdJ(
zxxmj{7_TRln1qG`J~Jm8f1aQGX?)hEPD3HvoK=_18jpzz^_URLxU2m^XD}S}G!c_R
za~}WVexD<jhWkURvI8V0jBvx*e#SR8qEt|JMySD}h8cdV)0v(-LTN`{QGk?`9Z~L$
ze*cRYMt*vvZl@Vv*xYFH?fzx4B5?eW5^g8eBnm;0U2gQ)1HKA|iJ428S+u!WFZS-a
zJ`b!FQ`KfB29L^>>ZfV`4A337!-9ytHYg?>_y&L88e8X(b|i(kuIc_LND2@mgph0o
z#cB!;t03w$+jn@vzQKRosIwjlyX$wk-{)leh!h(zegY@LjPj!!X89wYvPG2=<XmZ_
z9;}mdntuT#$68CE<LpcoLKvs}nSS<5)-H<+1YR0iG$uvS4gdCUh~vcA)d-4>ij|)2
z@Vouq%b7NxwN`^g#sWD=>73tvxB4WI3Zpoxx>;mMAgoF%%K)|8tfNo55{ju)MTSL_
z_Mjhm6CJ2`D9dV(4hbN7=5oK8(1q|(Ip$ncJ8~cYa<;Dp0NH??&57}ZX3@OOWIq<>
z4nXb?z6W5%WZ}e~7x^drA0OIMDK}!|DVIp=X!*7NVaO9ZAn`SfQ@kJxby|D9KY}hz
zp@3S;{$hy){x#K~q{9<HBDfWc?AFcof3C3O8If*A#wRgSUbMyi{<p6goTR1bYMb|m
z;h|bM5H$ZfUl*U-$m+^A-cc1IdR*l%<aC&`A6Wp|l>EVZUhEHejj=HnVFQ+5KI)nL
z=!2X5){|}Nqea@-Xl?<l#NOBXGNBgCVrib4-8kpibF#mX`xDt9J{U8qZUmqr(rdQw
z4p8x2q0s0j>`HjD5UMBq7XM)=Dc_O1aa-UT&OO8Tx{!flWLJsoZVWNn!E<l)JI6hg
zoTwI851&l!oS07rX$^@}U1T+-8?(R*>-eam=<Q4VB7mNI8vv;j?kR{)d)P1Gkoc}&
z3f;fxC5E+(bA4vDohjLQrR>pj0_p5@gFoaK+g~4&!|KH#_u!0or_Vq@;JCnS#PHQ7
z#*a6|4R*_k#@+0f3p<Np1Q_FYL)3Ck^xU=nB+&qvN+O8KHw#1pNRXN3Pxwn-umynK
z;K*15hQz|&th4C`e>|v%;fAD|Cut4Dz>pv7Za;sfZ4NC+T@^0{4us2|`<VYJhNJ$e
za<ngLn?umF%N)Pob2djGtR(DE?h!X$?N@_GxUn%(L6ScxFPe9TzwLEvql$xtcobmk
zjLx~h-~W!Sz7)nrH;pu&9o_qo-{VCVLgsxorB>Dv-FCNsSZqHE3tnX0S`c-=$G^!-
zVm5NOAW~>T?znWSzvc~VMk$H%r+~2ZsD7&d2+oq<qOK<}1BRL&JjtTvll&&a8hL1}
zjbFgqJukZNI{)g!Y!Bp6g`QC7q;$E@JnRSFV9iHxtmv=|H*kbe<%2%l%P^>Qz<cAy
zwVjnjqWT5?!snSBrFb1NW+GA|y;$96`-h>*>}#a1sFlbP$zBi@-|nYB%QvVzQ(Su%
z2`8FRDUryoI9heC?^eZU^rgWph@U7*KD)^e0F2nt5!giPqz}<SNsyTJnE#Dyp$i|_
z22nd=kfLoK_ggQq8TyuE8nZW|0M%13@rkMIQQT#-{hTnqyy(w|{Hx-?IT1o<4Av0>
zkG{Y!6s+fql|(8+&k7e@5OuiGUkU5Njh4b6kd?=z;oRuIclg8gk|iBB)V34gV7k`}
zaHA*0EE)-0q94!nzkx<$X15kO3JpzuRQa$^EMi`?3ss3pX-Sz1YZ-m5Kk`c!sfc5e
zBdczeu-w~^`AmS7wIl3cTj3n@@rxUMlV5wb?Q{&zL<aS^N@4MQ(4YR04UVlPesSQ$
zoT$t7emoeIli`jhqHk`j!{07~f)+&oc+8K}H;6*x#&P_{hv*`oxZRiEZXJDjzk(!W
z5#knZ@QZkHj5RbxrLrW3sI(k2^P<)F`4Mw$v84q10)5C|a9#dN-{(|o9;xtaaeS(;
zUU8{k6!V|hijxhnd=&`X$Qviz>Zgmz$cy?`)M4Udp`;$9%+%e!0Kj76!H8>ZV2bBo
zG;@wWc>yPlw%0g5eL`GBVRX$L|MvCv$!HSN+c{y2$c?s`<?ovv?;%}3ejJh-c=+^3
z{k?h!kSj?RG1sHgqos5G@jxNx+qXPz3Rvwym6RX5+J7qoYS$x!drVqUpYK1zp9o{c
zCPqtAOe9fFQY1|Q8Po3c*Rv1i5f=))zz^nugXYcho2;arQk_Xak3=Zs3f4*8d5ixF
zxMr3<>%`iEXxeoDzywysauu&zUdwssN>VxC4*&5j))8~e2pX#V2%oX%-F{lUTvIe8
zNf(yFk(l@dEYsKdj%l0ZFvY2u<wKUC$=CT$PqxhyM;x=o^0m#l&ac(}pwnO^LqG6D
zh0(FI{ox{OTo+^+?ZL(b37oz64BxMXjglh9ge;s13UUyEI^OGld(_4((Qyg2BI*=H
zb7%SA<1yuWXL7v~Go`QbH^N5p-^j#-SP9Y_8SdLl{4f7zboAUQo<@U&^m<A`3p!@{
zy};3JiWYcbq})aXu=dZD*A;WZmU3|O$Grc7?PEtwPcob-d2{X~e(^naD2ig0`d-Pe
zux4#>lmG23Ta%Vr5z}vs-qFn$`xAKtV6y)B>p@xD;5Qdd%+n9~8^k~GfRjY#CCWi-
zKp6hB(bd!al?*7d$JPx6Dnz2?e*gJ1%ma^!0@G*(aP!Y8{^wV$byQr<6t!|*bnw~!
zmRI9em~&Jk7`sqHkpAx9z7a~sEPYZ&QHwB{MYHGmexKWnLqQX*ybrf<!j=Af(1C8P
zp}CIax_Xz=25x?<Kagk7fe%Cxje9l2OYr>p4*$_Y+F|7r$S}M<__+c&gY3C}#``QN
zKjKx!xK3$aQ}_DOtR7^jcVWULfjtG$`E&f%ci8$%u>p(omxteoss17uH%?%<Bp%bh
zDO<#)r}*2Tt;|0VO;W4yC%WJ1R{sEq9T+XCZcM@>5gjT~67>-=fm8j^ayts~_=bK}
zHEG(T{$^MJE@pURird$v@TAwy@P%j6Oh_5@J6UhWyF3-rTyvlQ{GM(%^8profeUCk
zC(1f9yi`alrkd&+BKIT$<`$q2`@JFb&$o_}dU&0>suVSjaH&LsPKA(1k6~p_Lqief
z8XbIOC>v|-!_XXSAShpcbk3n+*Q01gYnFr)1{W|6nNp(TCWVu-tYctJeHx{^0=MAJ
z%TEp~dRaSq(Iml@I@7IA3y&B4eUyUe%a*YFet++Pr=Aopi-#|j)@@>SjpoJfHK`?}
z;|_9S5r&TP1?d-+CII=y=^^AWT5)tVW=xKvkbn284i$Z9#Ip?7AIZC@+=`-O$Al~Y
z)$L}W4nqQJGDz2iq!5E*-8ZWX%lEf$h8eqBl}cj(MP`V$J~GVY`1lMC3)jLbwumGI
zk8@&pzt}#3RhPFR$;F}}qr>EQoW91;k>4~Y`eJnWVqY5qnwgR+4b2DK4~KVJMYv0s
zBVPeMDM?w_NV1O)uO4X4BdTjaiJS%P7zmCJC&%p@E;B!R{>U&l9%vXr1l5W0NpL;^
zo5j(EM}~vO*jVk3gL=ZF!z_-2AE4U+jS!%Z-vPN}q8qBiYyGT;m@=%PIwW8Wb4Ds`
zQe+*Yaep+>lkV{Any}x&);u(UOekunFN%>bXI6z92iea1a;HQN8QxRQ**_}64TsuC
zrPvnZ6T#jISk{ImC4cY8iKf(s4@#{=++|&@ol0&oI>Nojg)QQqBe1_?Q&MS30)e9A
z>%tv}*e7L%z*!XA7(FhW&HmWw5vlk+DECwJM0J=Szn~4CR!($KLl{g4zsH-UqDcl|
zD(T?gMw-Z1szcXceGt@)0f~gX`gxB3s0#OX|DWFwCSD!B*!UZj)P1osO!6C##Y26$
zDlF)>al43IP53C|f6kE;?OYS?U@UHT{Z&DNcdQA+bX8cBVQ<nrR#nXCds0{y-^IEg
z<K-M>)r4gS#0Q?@TmcR?oKYXX?`xADodW$sb;ZaFY?fDrC-=0TGN2E9h!IcWJPjEG
zYk+K3D*((_mxl-c`Tz4P80PYDY5Xf4xuNj!#MZK?XY0c6d)fDdMPLwz3fW}{+9o8z
zWAQsf8<d_1<`VKERwgg1NrtOIQY;fv&a(9l9Ab7fuRP4lv`r4+$s61v$?RGc5-|{#
z0Ompzu#~w9?)tbkd^FU4A7`|0g>|0t{HpLuUo#N)Pgh_@wLI$QEeYrBZuZiVwad)z
zSOj4_<kRq8XKSS-6iBTqBDNsBzbyvMLfkAK|2e!c*8VR`jfdPRBRslI2wSJsp;O#L
zZ3NDx8f&YRNS46$fYo8?iGTYHdvm+bMx-0C{9=V5WE<7P?_qF)FVK0VTkW4{sH5c}
zbHD%EPQYx!lWDV|=0#tv3=OfB_Swd@O|@$&d<=4xU3mE7@WT$aqXEg9h9;P(Sl)ks
zb$IAqOsUexuipw;0@kgmn4%qxF#i)M-iX%tr@YLDO>Cf&N?czxvoxHSeH+&9#7Zsn
zSTZM~GQaM%dFJ^tM`OyBwMU+IU~Ld+)tjMYUmNB<Ea~i*R18RJ%ff<f?B^v-4PVNW
zQX<!{AyxFZW0O1F`qSQE@eu3(-Gf5+|L74i`rqFug;Lxj?x`<+84_5@|8n)C{^w6E
z1-#g`M#^L4n$t)9u6{ILP7pu256WNNf_ud#UE9sSesPznFb{(hEp^clicSHSb(@E*
z@@`XE^%2m>iG+1Zs2P$~T#P5x{O;kR3OdDP6V6|mqyxEz$eS%g)iKu5w+dou9eDa?
zM+>(M1IJp&P|Qt@{2o`e;^?hy!ntvCza;J^tsmsVqhG&8n58L@7!yg{gN9^THoHf6
z2%Qr&OK;cEAj%MPSVJg729myK+mNoIo47eb6!rdE$IQ<|((Ji)xHDyA_LZW@I6QVl
zw&rNaE+J7%7uM-&!_``$Dg$=jJ}f=fMjXT=0ER^M=){_o9sRI<n5wTR4kXmosxBHr
z@m)^vxh=w<4K^EmELO8hzADDl5`DgN_(prc8-iENZ0aavuDv^l5T8bAf@ah$@yQnB
z1$W9;q37{@gmFHJF-<zQEDTLr3RX4JGHw}8uC_r@k;RrNMkU}gD%dqVTuD!k@{+K4
zSpc*F$`3@(?-Y78+NdK@4vrhQ?#`5mx$_nwL(AbXQx)WAj&BElR5<q?!mOHZL;GU|
zK%|Zaj4p^iyf-YU>e{Y}{N{Iuy=uC41TOj{@#2x`lQ;KEL3p`$x4ytOF8sJ!;Q59{
zlri7WoZY#n+6R46-}D8niyX<m`6~0KVYK2+lunVVO*&RYhebQ?am9T-=YbJolQjXs
z-~(gZ5T<&=z#es7=Igs;{9nIN9pLyEbzt|>l&RN<Sb&vS^pcx;Z}&PLK5p8i6GPjD
zzMywhk?Frpb$^s!MA0P^{qsNfcod4*m+}KxO0f?rOHp?8!a_f5M$e(65%#cuH=?2K
zJAlP!{~5OXxy#TI=EhdhlxmDhM}gj+elfg#QJ0~^<tA6u7>+rR14O}tQyAKdil&J`
zRa7>LBe}X?sGr$&Xg`9SlZlEt^f3KL%Q#mSjyj_2pc0%HtCABMTe3*m&}5=$A?wMF
zF8b2ve%jhEfAOZQWJ4DI{K=@WP*o<5`@&~`Y5o1vD;gz=78c5^cKFx+<FBo~6c{6k
zVHQY|O6y2&g#>R9UcA`P|IB_cG9l+8^hLNMgOv{b-aqiYb)XQIT_07kiQo(X1QeU+
zD!zov-?JZ$0r!G}o9rh|(&RCYB1+zT&!4-(enOhRSmCS=+$?|eOTLO{PE|Lxpx#Tj
z@Qp$f4*tZiUense*`wKl!{8x)?jLGhYju1^*zp?mk-Swt|HOZ=)IMUtLsuj>Scy#a
zn}6!R`PhCiM)I1l7h9!c(|7%hW$|=!o6r&I{Ny40pa1&H+KxwEHOWK+(tcAGK^!M%
z)o>G18nS9m?Edfl;FUJapcE!a-UIDWsmAa8<*T|5DusBhkdC}5t8RHymTYL;A77*O
zML7L<XP-W?n|?*%7@jYlPUM;+?y0-Ky~^6juE)oy^W@q8<UW4UA+60BWw>K5XFj~s
zm~X~E{O(6uSE*zQI|s%6BBCOrFyvLc`RVbH!_$??=2r2w2m-^=@8VaDvybtWF#d|b
zOum!9)LzcdKgRm{iS>%tC^|f@gFm(={-|*Up?R!@_!C$U!u0p>ubtIxP>K8_##T#i
zQ06n-A$jp<eBjP|+xl?7o`m+=^5XDx^P{K!>&{zFR}q;T+MWR``0f*b%UV0);b>|Q
z)j6hOs7&wZ-j)8J?^{nF;7CXnzrGbQ5VnUkiaT*};AH3^$H^7Rqpxg<zv2h`df22?
zHO`0y%l&Ebdy^uitSV+{rGrkB%~x+kDb)Y<mCtK^b=ZemIO*ypT@e7u_O@K+C$zrV
zlrrD9WD&I1oCUyS!GGG%6k7G#xBk6&kP*pptR>bVi_(jWaRBN%h$y<DDHO{v>&g|}
zVU4e?u-3Rf7JJ1In=Th5W#b1;+}Dr(wJQ6Cq0}s7UDOm6Xe#!i3K)Avna$7Uul93>
z+0TZcVIZrQ9tC|$8FlM7{`mvqNzC7&txq0}Vf)bSVCx%`D92dIdQmiR8o59D1!JuP
zm4$s_FNI23+!8g!d1*tx@zurllXz+4u>)vr=`4Bs^Xec<OrQ0QUy-n%5#XDOC&#wW
z0B8T=zpS^Op}2F&!6T03&;8ji=+|ywo-pcvJ8RKj+)T~w2dyS3?+<_RsrK8FhVtfh
z!^>%*;b%Yd80$KW(o!IvcxRng`|k02I4XuRRY~vY%8&f$7W?%m9@>hmaX4X+o|Rse
zOql<P|FiuyRIF$MveZRx%+>yx)9lL^u$I;*Vr8)IkIsjpaBSS!zj{U6$*aWGl2v|(
z!|khnoLk$m$RmF9pZw=3>lu-j{k5$RR1uB-&5u9P`lMnsy1{BWoT~Kr@f-`YD*MK1
zfBK0>+s}kPQ3yyKPs|cpAr9ucWxjff^^U4qw<fuMuGl7gcZhYMe8<-(4j;ucpl*U}
z3@Cm%@E`rx$95gW)}%*9m07_H;$+#<_5bw~<Hd2G+*EZ8IGUAhbzS0jzS0J71sCEZ
z5qO#b=BD@!>xOiv6MykT<Moxm-56BRde&EdvxC}wk7qZ2IC=_{V!&=|ldSmIUoyjf
zM0x}b-~Pxy`@vU?u+CxjgqcoA`M{O_<8jsudO{0}9h2PdVAf@xA`p7A@q$~ykO^_3
z6K~J1`PtS#_;=%%QidF^V^Umj?e9Kylzm(ZVzX5k?iQhn!=``#(_eV9{bESEyj`E-
zgRlO>kBz4uumU)2{hR}B&ML1<2&Y~6i|=0>FPgOeK(~zm_JFr$0&!BW{OX%)>?c4#
z8xSdK;lIE6D`EgEX&^~tE2<FH`|Epu$bs>i(5bdtl(>s+|M0Wp@#6DnBC!qr3ic~7
zCin*So2@Tc?!TKJ&r4vw9&6j=LM;DT?Q_fHDH0hY#h~+<p3%}TeUJDY!H{C<h4(pg
zbTk^61>FC+-}3_dRG<fZvQf3)@r~~~v}+M8F(wjmn^ev~SwRdPI&iFmh^V+Tec>y!
zy6Z<HQdO`wSe77#IDS%eahcz?mvs$a-P|l>PBaM0ux*z3_x85-Qj}p?@@#0+&!fPl
z@W&T^T0!@l;r=n9o5ByxdUmw<#85rL^b>>eAZ%``lBAR)7qFcx!&GUKL_cxwgKbtS
zvSXXWBd3@eqCe`chGZ=_h}#(nT53aDx*WX75{ag<@)rj-mD6JC388kFebTBOX{v)-
zp(tbey&A$tsCr<r1~*p2$~XL7cZ0HeN_nX3)h)qN21CBkU~&ccns@cb{N7!y_!BhC
z=8aP;mv+T&{@kcXg2UrTiK-pbs2Dpi4W(R;@#i04U9u2mVBn~zR)JYnIHNN43I5jZ
zJ?5hBptKYj0KQU~Q~|}xX*uXL_d%B~a}jorM*jg-L4jrEte<__?RYdDxGMiRLD@<0
zfkd9lj%puvTjX?^i{^khh^FSH%H_$)=2NB@0f4mDk7x6l;_-+wQ~*87U5a?-N55b1
zrW`~UDItI;=E9YRk2s_B8*c0PqcNa7^hiatV-#C^m3y=+QxQs&P+n#wvPA|jh`wud
z5A0?`_4}OAGk7%W$L2-LUUumW`@O9h@XNp=OdXdJV*2<YG9LrOoqRUdW$kR=AEvZA
z`1)xzh16XI6}|O>duC4?1t;+2S5l1=Ld=4Sql$9(_CM&tfR)5qp8`xuS3{@jyI-=<
zeZ1e_XHR4dR1P`j))<&9lde|>8>5WO23ClUC1nxzA64AsUiUVFa$FE)CSNs-yJVy6
zP5EqoaDsbuD}EqsNJkaHx5JfLL&;s0QV-D;k?nYw=xh_HJ`Hq<pD8<A@2n#9g)5(Q
z?*toyP(Qi1qPf!D0Vf|E<<8e}<9Q+`f_VY1tlpRmmY?j7-_CAzB#$1k6dYs4R4={M
z<#1MvOA0*}^tt@CHClG`?R73=M3=d;=<#IP2MR)sClBp~cewd|?fi*)sIJfGV=xO`
zV!zZT3Zh?LbuaYd7kCPag22jDC$g{$VTb`1VO(s*Z{O=S*|$qaPIZJlOL2Y4i)QW}
z>NC5ktwb3tB|;&AB7aWZFMQM8I>rdw3R@d8udD)Z@*nauFSq+X;ntn)SAF1U@fm{q
z=naKgKP-2{h`oW7_x1^scj32%Xv=WjR!S88Zj%Dq%o!WY5f2A|yQwflBWNv%h8d^a
zgm)POEb0($?rT4mvJ@peNB~QI@92p`!{-C&5V+u;hiK5)j0v7~T)R)m+JYXO->?u@
zPzI`*wKI7>9unVo3uVPNO}|zSsF9h7B#5T%60RL(0}e@5;4MNG1V%Jpp|+jH*@Sd1
zP%zkX9TGMhEhqF2KWm*JS^7;vi%!T3U;Ts%gGddL7nos;)>TX8^Z`kLBJ7+SpEq&I
zh=!<@#3tJY&d;*36b#q^??<jO>e1{Us()iR;I}b-vPcr|PKVrB90oZ1J%R8mCTK2B
z0;O-XcW_&E>j;q@PFZ%z6Tl_kzw@tf+Wvf?{Y+4;aG+mtGLPnlpGMM7P+D~jR!_WN
zk-8-?goDEo+tY&uxEkv&F+6CE4hcv8&{gM*3PjRrEYxwHl>O`-9ko}e%<U#ZUYe?{
zBb*MDs-bpzIb6N6wOxj<3Nr0cV1+p!3R!<y#{jdeVb#D#`KLQV-Vfd6Xow@z#Og|H
z&v<HQl+<U8z$lA<3%P!v4x5EdpR#WUlW&6omA3Hqg`vY{-E9R5?ZT%7R|1T(R7-w7
z9Jj`P4j~|IjjbRrI`EP3A#<_hAviWv@wx?>lOGGU@5il)u_>hpliT;zPlwyKVsIRo
zWTs~&(v{+dHX%$MVbmCBdTg9H&M;^6%WM9;g6>JKQ94vC&@k-{FpVX63GY8I95}v<
zN*9saFk=Aju3`?b&Kh?xV0Fw{V2N0q5f(q!Z5oudlycW3#fXNC$>OQ!M4fwNroZZO
zGss{tjt*E^idCC$+Et;cvfBm`ek4A~Ym4yv-wH4i+!RI2Z_OOCWriSxSO+YDLVk7G
z;mhIOhW5qcF5<)@TcRUM@}kSH3FSL=ZKJx?Ru8PYCOM%z4rt7a@{aLy%X%a@)-nl$
zz@U6Hrd9jIkRB?6%>(ASVarxL`KpQGt|{H01P=^o!JlVrV;aj^c3uYCS@h4$y2)`D
zh?%$*bnLxzGSKVn-aYf=`tDDnrX@NKk2%H1kys!Dz36w-GFKG!7*wV}ybO*Fga^zh
z6We1S`OHhYsfR+Fus@(*vY@lkk6!X?uD6adz19Yxn@{92^Xc1u;8oUBqCDHJADK4n
zgg5<;H(D3SJoaiTAg>Wj$pT+>emo7YSsp=#Js_H-JLdH^FZ92iXZ^VQPHb(Q_mr<Y
zH=YP4A^rrW4t!)8b-#VeUw%=y`$5^I)rq<mh#;2h{Hy|8=nkC`=KeuNaSG-LFH-S7
zKhFqJX`hg@y>*PNM=w(jJ~T?-uQbfr*4o!qj;9tpfI6uxjM<^bJcu3o!MYaQ_Y{Rn
zwz}Q`{i7I<-p#xpB-0;Oo^}`#`F!O)6AnC#(O^3p6Sa!0&CbflP`0>B7(I1^cE}^w
zy=9kh!xY+!@H}j6N>JLJ0_XtX$tQ*U4GW-W!$K5Br>DZenLR!MrSZ@wD2*V`W{>?s
zm(CgYgTV$v&nGJU2!2P#?ju7u<k%j<9(@~O#S{+6;{VknymCpmPhe7p!O_8?pa3Kk
z^|_1ug1s`@LnNp@CrUSlnwIVxZdJ((XZ$B@uC1<LI$J_7eqbsLiEFgC+Y(&IVJC%$
zH{4QAmh3lA)`#mi{=HK2Y=2UCYQx`)qae{`D(tP_uRmh;iX*@eox`$e8?1-%@qIa`
zK1|-Qwmr4y0p|Cr!>rqS$S3Bo<k;4D7Py0l@Ak{&aY%Hnydzsh30QVgF5T@P`%kxx
zo>_Kb1_(HQX6hR7g-oxYTGT2TNE2meWlrC($Nhwn4Nf)T>%vQijZ_TR?D^rT?>N|v
zdRW6D^TSTx|E)(xhsE>5FW-0X3s8<qrxERx*htdc_Omiq_m2$#Efc<Is%@#m2!Kl|
zK}Bmak1D4J>kLKTnrc%d5fYmmt+*qzbU*7D@C7#I23Dqo3a}8pqivqed^oqKV1F=y
za8%h-94Uzt{|ryh&$Q;2rmE%^{4(eO7V_4FCm*y9+%#*eD)CirA(nT-+u`-GnKDZZ
z##oqYs7*ETAPKEvisyITqr*sBG4_WqYQCTf0$s4zQq{zE3mga1#55+-RI1@SWxycF
zWkKe&$9mY9cu}B|R0e2h+NTd@UizrDZ}gEI<QC4$%$@(gI#o*c&;^-`AGgj?2@;R;
zAdvYO6okFt!OW8X^holfQPmBNE$E0VqUf$O!xz<Ev;uVWsP#D?;`%^k@BDv+op*dx
zMfd-&^-(OKA|epj%)JOI(QG!=#};}?5D9`^mn0-hDru0|0Z~-!Sg~QRh}f_^R#X(b
zqCPf)phj$uNK{1mz0aAuHTeDgx38JKbLY;SIdkggEb(USsGn5a+)TiWG_z_?J>dOl
zn@59nq|IXA`C*Ay*V%tL#Do9&YWMGcuKb=<hog*i4%UK+BbV*I*!_AJcR6?HiD8U5
zk_b;Z6c*y*bKTdbrAs8%iIQ^2O`9AcT_Vn0hz$$`=iY0~MhVa2iiIn3Z9vTj-ewNE
zLEC_1L*gS2j<H2c`t%O7n#fB&a1_cB@|>T{Az_I7K4MP$FCHjTR|Rng`XdGlSkHUB
z7sgpC1C$$#GDW;T?k;cm5!yPAu=c7d`FPNy`1oNDdh2ZuTA==4eA>D9d#5G0iplrN
zyS<%`8t@#9i`Y&nb^~m4fbfye-yJw^LI2eDkl)_rc0kp2_Pf%}+S)(WIW9$?tw*?c
z1cl3L>XA&O8doV7->4$W0-faUlF_$#f&fF7&BUTt=}a7j@;T8xeKbx60V~2T>RSNO
z1t5iGTg>aLwGTsf19oT$?MJCa4ksX<_tpJuE){=EG(i_L8x|umT8a4x>ju6tPM6pq
zcUob-{10PM#sj$np^AHyn^0k5mJfE{|BSw<^{Y10hM6g&v94LIbqE$f&D%0217@3|
z-gpd%hZB{cfg%~XQVqiy|C{;Zzd8mMSVWsv0UzhR&zx%dm8gpW(LqFUd=g?C+J8@T
zbt#Sl#OmrgDdCEOC`Cd`*BI}^J~Efl2)2+O*<_IaDU;3VL-{+PS0t*c(2l}S2_Z9T
zUu|aeiKP0AHw7dj2Acb!8P<~*lYtlpq*9DegbOjFyrt&6Lv+!K@Ysn$N6-;7YPi#U
z{iym9L=+dVfUaV72QF^Mx$zrwvh`D7W)+_t4j2>!aY8&+XZAdqNsu>YZH@3Vj@At?
zngid__e=(Kt+qpK8*q_f51DH*TMo?vu0S1n8F+G<!ji<>VK;?P6Gol$fvLdRQwaE+
zuY9TRu#6;~8WE;Ya2f5QXUq$O`AX0o!jW0%J_>|h^_6+QL0fV7Xk@G<9lz=bfsHKb
zm^Eg<2!A4iUq7@#!gYNgm)h#UP31EVoNK<sf(YT@QJF!~E|DW5-48g_?IqqZLPRPf
zZ5<9#Hq3g-x#l6PnRvrgQe@dRofqw%p$<COl%K*U0TqT_369J~CL4xNhEF+dNB7{H
zG5O(c1AzwGRNvL$bInuVG9bWZ#2!=f53EM9a`3LLW6WOJ`jtb4*QrwhYbc=FpPF}Z
z$?+chWnx(r{X{;<$=_twEzxZe^Mks)#I|0sR#K2eiBpK(58pJ?*YPh>`X#vtZA~HC
zm%U|n|B2ZkBNJ0tjvIr6D0{t&+q09uOHrHJrfHH#BvgZ$i(~xV7W2gb=E)I{wCNL2
z?&&+Zqqg#dMZc5~m=08S5()7^VgCHU9ASN|oP4oU*EQFxQ${vZEDdDx0!j0;x&BpM
zn^7HgEf|<^4+!*<xFehk=9uvlcq_0Nno=9<*nW<gKb{UTHF8bye@#ZbdV90xeg?z)
zkI7qCf;?rM7x$S{kJI+y9km^89hNPig;zHN-9W8NzHsdmrt!?a5)L^<f}X^ZLR=-<
zWBCd0%b6H22@;n?HIxJFN6ywfH+Y(wEk}|4iob$rF9EdpzTDkTf=qFoNkpQARl-6-
z&JR^?cL@Q7tqL-?hA~iJsL6d;g1sa#I|4@~T?it?IJoRwcWi@pj1bQ_E_r;0L<peK
z<q4j~(evDu7tv49NMt%u^9oNBath|V*I>&<K9&%%N-?sc#pO7^%yjDsPoup=++JlG
z;VQAa!E@cw5?7h$jIYB=m!T0OGv$jUH4EsU^W1$y);cSV64e&7&k`RBYa=qpdA!Qq
z(T2FiLlLvc@OZ1jb<_1}X&-7W!sPzvI~6CnSNG?=QrHV7u3;gRq0MpDEpUIo%zi;c
zlIm>m*?=bZO&joP2V$C3ZbAEg?<9Aj4XBL2S@MC_R*I`ofQBZc2Z9>SC5Fx-H|}|F
znC&i645D#F9QZk|^f=9Ln@8_Yvq)ngIcV_*#k<?Ik2&9#Vnfb>9SAHFtK-mKlc}gr
z$B;27mQiWXbIN;}0Rq>QR7W^FR!2CgIX9sho`JU%Gd7%&652V=<-3_DPVVvo%5m&t
z?y)Z}tm%-qieqQU_U2YWc~-YIAzMJ8<~YCqoIczFpUI&npjJvQif^CrjPKLu2|lf|
zIqauc!lg?zi?y56&p+69HIq0AU;+RC*Vgn~PSnOi5}f=$qb=R`SNbnU^f?Mk>u8d}
z5p0~t3cUx;9&i+*5&8f1G+cj<*LK)|MEe7FTBv;QKioyx>BVDVjD(zUWS#M&I3dF>
zaR-d(TRe=*2-tFoyPnmA_hiBd-qEwxJ*2MhlN@TvY!dr}Fbe|ObDgY0bJ&alsa^O3
zsDZG}E@I0=u`VKJ$n9)u4veZS2V4eQ3nBqwLe7R36PcDYc`~d}vn)K4@Ssr=aM2RR
zq5zNO2En$~$K3XE-{lY$yssYHo#@}hy9z?V<Eu<zx{<4v>rQ=5;tzvoi%awG56$WC
z^v#38U@ELFYn1|jWxy&@W*Y@QHyA)(o!{G?wlNKnh0NB?*nXUmF9+^F1GSga-B#LG
zF0iF}L1Ni3q2BCX_>k&P=y3H&OkpQ4D?_|(Pu%JL_^9>_<D4-+1c3}Z8cyL&ZplaX
zk=S6F8F}c`r!R8fU#30d!w@^70|o^?cF85KdtcgeECu7kk{&7%(AbHxobo;<ZGc%0
zAs0?96CW842%PNbb>H6O9)CBoyudyQrUAk{LG_aP*ZkMOIdcNbVLg<fMJI=?Qn-<o
z8MoSfa0yxh0iUfTtJJk{3en*qgsLH4@8tv3RaTDpk1Em_MRA}^ob$i0%)q>~<=EG#
zh|5Y>aVvwomFGOx$J-?`_&MlsL~T_k1}OqZvkL-DYUSnL344R_mDH0HfLi<>82V_^
zDXV;Buq@0{A?KpC-pTtQh7)Qa0AKL&0HKnTU-6D#f=LP!&3fWNY0u7;fA4px_oJ)t
z7*`u<u^qtxH^}I#y?qYRj!6(kJrtD_fH9Un;4R?)j6O1q6;))F0QcwBk9&7~qQfVD
zL{4<7a#BFKS|@>bdHLC53fsKY8}?qBP%aTE2$dP=QwX)>qO-aScQ<dJ!CfijSq3k{
zvZ~bws{5Iu=Dv!vDa8_DFqBdYIq7TDAEtB!=8<9~6p@wakhq*B-=~*TJA{rxus;>5
zo*wE-NNr{+&Z`cFuR^n~(6&O(=G)CtqHU3aQw{omGYL4X-=mAoKBSJa;wLuO+T<l*
zL!4(GHAme;bAjgBv;bU4CAcidTxT|I=qG-#p>;@&vaDH1vKbOybZTAte!HqGg=i-6
zh2dfmsD=IBO<#OSpXKOu6mzKIBIhUy#a(iid-^G!pxdGCun-vP1kC=|2gHpk%@ete
zLA!&^Jrrx=CX<k9i6wDve9$~UBrVx6B!S;c>)ah4=r53v<mtfdN#9_?ojpzO?tR6X
ziC?u+&{7ePnZ^;l%&d(#IYkI66O)z{vIO1MGcSLsrp|HtndH6%2-bV}0xv(i|7;X!
zTsO6mW@4fEd$x1LD!1;~0khfQLW=w1@{Hh4AW9Eua)<BSi~G_Qe?%Pec}~R}Zu9s7
zVb~|GQnJu7vtl&HSX>r1`(Kn6hNMB_ZjnqZ$%RB*Yc{LCXQue90q(+4CC32GpV!}7
zYVQ3{+EEBPC0GQS>)~3<=X>2U2OI?(14)2l3C^wc-V+ydZD5DmgwW$S&rSBGj~pQ5
zO+eelXvaktbZ$S+EPaFz$CO9RPHuhx6WRGq-o9gK!-BM~1x5p{lUpOl?3T^$sWY(^
z<6G+_ECjbSavf?~fUvifJ9^hYtWQa)(#{s~?*+KmAKlTbxX+FTeF|ncbR==>XxsSP
zcJO-M%7_$hSl`f!={Y|?z$$*#+uOQMAHv>W70#%hPN=Uq8gg?3+|F}%_g<R8Q$z``
zYY^-)Qm_Ir&&X)+k4c<%a-Oi4RhO&Dnz|7Igqz=X@tiAk$f8IMQDfrv&JA!uw*KPw
zV=xxx<?5PBiIkyQtMHC-y}b)=;Vnqy<xOIwVg2)1hivDH!@T^L*&D*un<Wto=Xa?b
zVOD$0baPNXQ$Qi;M3QY<S3R8_%?SoLt5==lJu?WdlP?xk@&)Yt@SO@vdUd9E{Ljp<
z>x22x2k9F=o!|#+iO<gpU>cr(fp?{S-#AGL5YB{{SCAWk*cV^qT|7kJSJKo#PwhHR
zU3N|YHuBIs@4_B-nsM8HkhRZBFgi|*)KKs~FE>l5;_!vuvf=s!%vv*mB-BLw1X<^K
z_vg@qv#Ar`g3tscA3z|kAK^VZmT!U?)HSS^*s*MB-aNuvUa!rCLSBvZWXn)F&Y<z$
z>eIC+VJO%v$R)9%5_)(E9<y!tu*%UM)Jyf0WrYGTJMTC5+BV*Soq85wx7>)bR_Fih
z{@$Xk6G@g5)H<P14%`0Qdl%oK9iux1`wmBy+(cWpxb2r{^U&$*kXWGTkb+Y#`OSTz
z(f&V$2J;hW5EDdAr|={>Iwx&(_iI#g8Vhf)_o)d^<9twMdKI&S0@PXELOKTGKu%5o
zE#bNT-mJ&;HOHt2E+3MmR@`3Rn(MWd_>YvsmK8m0e0lWsS#p}}>t#XwWui40Tc#xM
zPabAzG6Bx_y2*wU(rwRjp6+(*_in$d^ySgvx#eTSqYFxcfW)^1Lvo0g1-wWDe@`Nt
ztN@}#bl;MCLIK_v?>Vll3@K4=NX%J6wk@Z6&kNTg>=y5moCVqQY#0}T1h<uV>xXOS
zxOMn`#qbm0_StcqH-A{_6!McPx45%fVH5GL3B#H`%)6+FM`TADL<A88M;0v4d10RS
z%sd@zD5=-HBP%O_bav!$?^JsRB%n<Q1rWagIpi>_Z;#>s60x6fprGjJfg<sdic|s<
z3S|NHe~$Orp<T{wNX|gqQIO!O3uXx`wOw)(P6k$|0Y(KnKR)~OyPHt|{<DEpD6B>X
z<ZhD?3Y6iO-AB!U*?1D<K5cH}N_9rO>kjO%_gzVZXfgzQSd9D`0MO4y@Mo-lVN#o+
zIlT&<1uNW51N9a}kcmtuqJdyy273E7_s~gPQwlp70bbGh?OgB31GuL^q{fiL<Cxx^
zBPzYYHx5t(2@$OlY|F(fYSW*8nq4;`PXT=>M$0-IAMBg?kVDyqnOjUYVe0%vf?1}A
zTL>t_c9bc`@rVB~o1W3Wl5nZU+j0>@C5R#nK4h!8ODvYEE^vFuZ7*?5!Hwqdzi5}5
zGQ>T@#>nC*aMro*{OvHCU_cFHt&wK2{Ji41PdnI}e7sg-!%=<|p?>k#=E5Fo_JI<j
z_SVb-=5_X8W^ZhXym<r`8wni7nSwm}(NAXG7HuC^*`byqX(g2L?aj6|TnkPNQWLiF
za>wn~uC3s=h+YleB>_!X1bez6Li=^ixO^r4B459EXm_{mEA7DarUp?yA|JpUsw(f}
zK1sAZ&xji8&sF4`OsD4_?*6h$2;-7dR)LpSZHXPFf+dD#$?Bl29%0;kSsgKBH?vVH
zIT0rMr|DzANKK|xPr`v?El3haKNT@kYT1iteA7<uJUas6u4p3IWwHGrdXD_tOn=c%
z4l@dA#A5W2J>)+A_;0hbo%k^%NsxyiL{T6_u^982d=KeKQM0PN#~HP+n?=+%T>uwL
z?02|11AnrN$LX2Ay?d8^kom%G;PmuJJba|n-15CXM{*qtF8*igh|w!{k@vQmExx5*
zU}+&>a>3cVLH*rx#X`rj3?lPZ6$Wco7KBGq#&l=$_i*>Jdr2@5v{fdQ$kSUo&EQ}4
z>4^mH+3zO$jqiS?mwUn=+H(xwAb)4_nftpnJL?{3FaXC5<0O+S+|7M#KW#52epH9i
zEo>B<l1!BUEa~Y!`K1n6NdCSbLW-J9m%G`_dsDk04*PNTbPmC;`6C?y{A&qH(o?YT
zG4=fhyOl5KLzL+&C&H<N7m4+~&;D-h2ik!-nMjc4X+ne|0YBT@J=(7QFnNu97fVma
z_&?3wAKD3Y#5Yq8!9IJrSG=t~C$woshSV-`s`qoRSZUv_J0)I|sSV$;{0t}|LwD`u
z?)sKmYnej;D+BeoiQj``A#lTaclen&M;43}TTDA0HcALr3E%bY!S3I}Qlee*xx8|-
zara`1Z~@|PrxC`iQN>?vF_-M63qLGUi-ki;I++1r#=xMf!RG)fQMhMk_iM`<#O4I>
zq_9FUvA(jm``a)2Q3_K9>LtjQ&~s#W_r5>1y$}|MA-e|t2bzjcwo^BmN5~_B0E_uP
zi9eI&mV@w1FL&hz`yer48ipksK~MKS?irRAaLv>R#v4QjAza_XeOo*#!i|XulQqM(
z%IYcZ34ao!{E*#UcNhH=Q57tC^mPsUx^IacKbIJ~Mi}}3F;mG~67vNbJYONs&wF=t
zAA46H#<FAGV2Q-rqnA6wo}ZzFg;@e;d=gzywmHEtIriwt9`3(Cvr7TzvZFLrl61v6
z<TVIgKkw+~uh4%?mV7E6V@H;H?%Pk>$HIi@tDAxKpr>OW_eaaIiY55DoZ@iG$yvf*
zd%1Vum*Q(<9*AgK!&IR&iHOT|e%{&b@u?k}wFKNp;^<|une9INx%*nKKbB-AOw?Qv
zC`x;}3*W~_67_75y(cmGTw9RHtAkCN#N;E`MQZT{W$S^fIMAFkR$B{^5Je*pUh(;U
z=HC+F4Ipfo_%S4MGJ9}wA7&c;KVw)H3;Zm9@Er!5$19j?f&HTLz(|-pK0&71v(e1Q
zC&*YZO+0y+|9OjKVNu_Cr*eJE#Jc7h@^(ZV(Oii&Cz}f{(4J$24>BoMZI2!%=M-%u
z?zA2@FR#atLD$^g=CYHutB_!`>CJ6?HJTJ({Z~(O3>kR3BofY7j~9f4u1~G#YYI=&
zzR~z4ka`HekuK<TKwop<Y1)NB1Aus3oIGY1GWxAxs>xN)$<+)XwqNW#Fc6%VOB?jz
z<A7RZ=@_v1P@|4qY(L_-?3m64f_Yg%T{q;ITQ}<eM~DlpSpwnpi=W>!Izdhg=@qgM
za_24YXKF_11CSQ;=DySHv4OjrdYo~5EVZkdPX;$sn9Nq;6O71a@X3EjhJ!{%6MCpD
z8EC*v=dhmUamoLYz&F+cwj<$&BFZ47Lo0k&x51{D-LFEjrJ76eW66Xd)wTW27(1+7
z<e;!LWr&x@7W2|`@^zLuTQYnkWxTnJy_0Vd38FLIY?feu$Wnm7<W(?}BeTrVM(7E9
zhk)M-rVoBkNbr%j%&4gx9myb$)Ys!E$Ehja@XG(1ORKb_NQ%a@lSCHM{=ru!{Q_+t
z8BK7Y><fhPgE_KR+Y7<u5>yTGGG4gF43l&{VhBOsQr51QArL;|J(aUDw%v3)SN}4x
z942S)U69!Mmb~}PV!YNmYZefh3ojQrvLBioYqWV1E_jBKGG71P!Tr~%Dj61I@@2Mq
zByL-4+ROB>xaFwa$Kk_INYWzbsM9RErk|wSjPk<(a>R`8T=uOwe6oFnxC_0~EPy8f
zX>?z_v-{#$?N(l+TPnpyurx9~2^N0j1Jm<D{fFFl$oWDQTy|PF=$cJtsa$qhY)>;>
zOh6i$kicYLy1{Ijqg{wmBv5OIgz&6iZw|3bE(sPk9FNpU@&x6Q#cCp4VWZjSDm!k6
z<ca%ZUi*_7eV#Vs$j9D5APF^5`1%w6H1lTJmtj(c;ZeMU6p}a1kxkl)l39%(l)IIz
zaMD~mOjU&)o{&Un($XUPL1)cs^OJpvY`xvUoIJUx@A%5BiSKQVRME9-bnge|cDqJY
zpdnM2W5=5$_Hduy%@Fnx$LNFxy(T3ek81T2Q2_D@+yCWDruT)=GPZg#50OcR`;Te#
ze%-tWlcU|<0;R2FjhAPjgb-jZ9#-5Id}H<Nre*@dgOC25VIvNRVrPhZKQXW6CiInR
zVI(=QnxXa0V)I$PzJY=P<gOxHYOW(C4>YnNAEL)wb+uVLN&hALkIuoB&2dxz-03%%
z5u>zkvLdx}0yv%DEH@3s{u6;>i5IDs8(TDRax-!IGV08w<{46~_&P3Z;)-Q8<cu^u
zW5$!FM_>RsR(2LxgyBq=n<E$M|0SRyx=bwJtXIrkwb~(}Bdj|m*ZKbs51OMSlz{O?
zNa|2T3Dlt%&DP1<Y!?*`0!MsPh8(0QBf&BUGrQjWr%3;ZzC&n|><huru$YDSm?3ac
z*)Ivbm#rrLmz_A}dQ%um7&|$hW}4Iy;lIvv51I_&T?F4--3yNbn?)7A*Ugn@YDZBA
zT$wquRGgR0XUs_ZDFBrTY=S1*QdWx{-sKU~_f&lb({&?40F=daB!ne&h3R8=*QYBR
z#eoptCX1a+VscUFqDt``(gHs;Q|z9DnPH<GL=JBGmP8bum05kY!lc=C7gmU4pMKOo
zxr8+GW6IN}#tu;;XAgluG61BgCE;i{nKcL5FD3AXAQ}zifGGK*=EqE*W3&%Xut+Cb
zW%0m!%pUeTiw1$8kWn@WQYLLe2IO0Jz0y1p)Q9Z0)|14jxz?m4)&f>c1sR4eywQy3
zII!~eUmYUq+KWsJ>XL7(d&&0S2)S{p_^T!k_)K13DIX~5>bop4Z?y6k$^H=0m;*06
z^1zoSO%A+X5z=mXC6j!&-5hvav<LCrE(k=A#P^O_Y(s8F%Z#FzhMeIk@0k_V(Wl@n
z2pV#6$UVQ)yXFylN0k7Wh&Ducl!i|ieqb6}^cmvB?L{M$yJD5u)!sj3UPxR6GO`G`
zAZ1|xecOC+hCVa8)e<!cELcH4Fb7ypNt`~2bi%kq^Vj!W^S;Tp&kU>XAXq}#E323F
zgXyf)vFt+EhGEr|Q2{iB(nYIGILfMdkqxebV&z-GEjUr1TPfB1@FnEr$;sMdvzcM}
z_|WRLIyrmSj%+vA&es2<vtlG?b=Xo_1qmv9=L7RBVcqP+1mfBxP)ZFr_(0fYz1oic
z(2OI-n}3YP<3<ROjgpB*_V6!J=vJ*ZH#O?N;=$-V&wTe?ZFV6wp7?b^SyAr?5@Mdn
z8{7S8=3J={v2HMI1z#XFjqz^YWL8-jMOR0!+z75f%~1bN>4jJ?V5WXIcZGEbSmb0W
z#-i{yEw7o`Go#HgZj3s7FXO(k%6xs6cGy*~5O2CrA1-7HVtr*g&)43G#0vR}JSQod
z4wHJrO$k>M>j4mxJkPg2`;|HSQu}<QMn08xkvsO<WWKi_%6To7JbR`i4C1r5&1KyG
zdNHZQog>~~=f0&T@<*TeeI@r9+?jB9IN)>Ukp2nx6(-OcPKjI|<eY<_fI%A_+u8TO
z<|`3!G2hbN6c|ewE-}3#t(<nMISS2(w~isbohkunKMc<Co4nHO|C@a=ibe<PNr)K4
zy3d!U?_v7H1hv}4vsp3fGvaw~n&q$SbHl1dUv12o2BQFp9cG?Iqz5shub6W`)_>rB
z=E%=-oM5|I-L6f?Hh0tz`lR4*1wb}AZ@*<`tk$mKk=hQ;w&q0)^Uizb+7Gm&s199`
z1BEA+LI%v?vae0g@3m{Fq)${58KMRS?{jnQ4m$UuaBXD=+rmf5uDG9>)rV@wsJfbR
zt`c0A?8!^-n4@}Wvri&?1Uwcu0q<Y@ym>xDJ0~?TXFFqg`|+=sfB&FwmleWMB_;ao
z;$*Kff4)h;Wj2=?6T=K5HZN6hFUxXYeGmRft!18IBcMcZhbdlsko$)OuaURIV)1|6
z$GoNY9_|r&D)CO@DA-G<rdg0axR9CNx4)XXVu&J2t^rXUe#>&^I5UU1ABkxI%PM!6
z@YIajI_#*5w!nWxHLULMPM2sy0_ufcIBKHG(Fa-d8{nR54Xt8MwLHKw3Uq17`hKdr
zJ4V7}shp<R15w)@X%A3O^JnJ4ZaQlp=%jiU^A*nd+3)5%<}0?{%C+1a8h}|EgP?Hc
z{A4~(=X<avhLJ$U)FJ5BGt%5&pJ%S(0a5FM)#%&yci$4a#=VZ2UFw#wYE1vP?c9&@
z^(`wots<o$i?Gw(J~J<k&~})ISnjBqLp%=ia=tLPS_}2)a&%G<k@<Vo0Qc*i^zWz}
zQ46J2pI~&E&g@@Jy8TRoFX3qZO~53i_l@rE<yrbP={;6EU`JW^H_ZhCS0d(8qGbuM
zSEo4KWW}ED^6mAB(PB=9K&kf2avu1X$#iv-M-pFz@lTAk*pCXFD>B>xYjqEiRZ1(Z
z=~b;Em=S_b%>Z}n7ur3vx<mClD%Wt@hG)6oziivZTx@Sv30%&1g6ZysVnBf^>Z&1_
zL}sY4WQPuLH}}%Xj22Z7dnW;|D!F65=Oa2Z-KT!m0l?Pw#WFEy=Q&^Xci*$SMMVR<
zDY71iykXWHtzS)u0C|)cK6x!3Ys_Sl9x3%aoeAHXqyN@X3%La0evL}AREX5WB6A0&
zevsQkj8;_O)5U;8B9`0bkQBe#0q)siUBxSep&FK~2AU1KyWd&c=1{HWfsn*UH`a+E
zTC5@0Zs&e)SA<=Tnq{F7LJgh82fGs(5dtg`o~39uSOTOB8(YW6eYK+?6Iyy#up-2M
zNKTGI(Z^=xLAsE~qGr@lFNBY!CP2uUImmr=N9}>`kkwF|0NKiR-gMm??9!{kA^s+z
z-M2H`Y1X(nse!uQ0(_4NosKX6FwT1YUR_xTfY41}5wk(I+wJC_^Q%99;Q<x01F$6G
zEufMuW{nuXvA|-ukW@l;n7z1Uh`Yn@y3E5#_v4fbHHy}?Xpr01p&i2zrJ%+&F+?wJ
zGB%+55ckd1`a1LnAe1B;Uf7Pt8B=4B?2~8AN_#>lm$StZnQJ9<4bjh0ZD{1{=9A&N
zrs9M08B4F<&2t!r*@=<W;82iEqx^H;9`4(ge-^7Xiii#P!={xcO#*rG+#%l7h`F^k
z!y*ugO^_>LANRn1I@+jKE5%zJCxB;Rx;wvNKJ)CRQgotD&m)RIOS9vTrkCA0Yv#@n
ziA@xEIj%X*6^FWOFuHONbMzZ9MMH#K-Ynfu?dIWZ?Xk?bW)OeCRKz93bn@Rdw~o`^
z3DwP*yX4?u_9Ofv(<%7G9Qu>qLrB~(`ex}6*|mJN+3R2Sq4HY3v2+lbqhPY(Nq9-`
zC#E5Z0&J`dRv?P`H?Nxkujydp5NP#?)f26%;x~VhL-gQhrg@dU_jp(;U$voBY$($S
zi9O)LFU{g#^bdMtvKu5KP|O`kW{o*ySDle$Ef6!yb;)ilc*D%GVgUfC0*4O)0@I8Q
z=n1ozy_i=L4u|dAU#yHT%&&H_$PTCpZ;;uGLkUEQX<zG`{YA7JD@quY#wim2tTX9(
zbJzf#1>ylhs9j1iZ#AzqJ?)i_pPic?vw@i6nY~C4%Re<I{H19WI(mTgc5%gP8N{c{
z&8AE!LW5T)sDk4-&;DSpd7l?a9f?N%UX3WAapo-aFF%+JJa9Y^yPy%E#7W0L^2DQ3
z^Ix;%PyZjPN?DzNFm>i~@GmCgDII!f1JV*6d~s-8`=+@QPQ{=U%_ESW+)(~I@@r!@
zYU@~gpyUNC`_`Y$b;7$84#I!27{Bh^U}nQbCHI05dD#(Ft&w-(33q*O@^RMiP$Bn_
zuPYH?&wD!7nq81NWIVO02^N@Iq1KykaIEQj;1x(-0yZY9+6!NqM|lD>W-)d{Y8MOd
zv1V?J)4rLTXjVysg8N{c=2Gt0-L#kJLw1uzc)+Z#VI`1f<pgv1B5N8IW4n4A^$acQ
zX|`fv;AIxsJX|WaTCA!P@s=lNuzZZU=xo@Rgc>4FNIa4lWv<@WJa?})+ZQ(0;YX&r
z5lgk(F{b;Y33K6n*ya4;o*rWsoU7}ox;`mfnzcR5+;&{TBVxiAv_Juz9$sihoXVS`
zu85j2+?8tz<TQ$rpKFe1IGw++>L^}RIao{0_>d*S4Bm7`l{xxm{hNdV`_^Hx-CTHx
z+1{?(=yF^NVoDald#`}m9<!7T3;l(E!sf&dFwm%;X3-Jafe~{mT83Su3&xsNvvrQ(
z?o@VU09foB$p`@z#c;%}W*Ke}Nn(*Q_Zj3Cp;Zv0%s2c#!(2L9$DGhSy-u!KxQkfI
z<+PtP*c>Mh3UUIM6b!3UbQ@)I%hSwxZFVvgllLLW)RrLyOGP74=fuKk=J?C?Z(Kl_
z>j*>($-y{#xVdeHKeT{S&?%eCS3caw%wh+5=`hGhlqs-lnCU~kOuqj@{4$cPCAs^Q
zAed+_zewLOsjf7PSly^hGK|qn=D>(sPBr)NkJu*CBjzW7=UJR{tIf0ZbP9lSV?fxQ
zZ>P@_gU!-5GjN&xN^ZVztq|x`Bpg<OfI2*xN1F0#?dNtO5T^E<X2Pl1E{OM=ZsyF<
z+DEN=AztnPcKxLilZ`!w?VZR#(kfrqZH!5u4`~v^iL;K%)SNqzpXvF@m`c$nDEN$L
zx=fZ9{hD*Nq_>$Y#+ZEP7(uMWi_Ev~m~PU=!mDf#dV_e#P=l&U_Ax(;bwCjOtQFa&
z!~T+Crd!xN+QSGu6lZ3ZzYjK*V*HkI$Y5f3K=xxn#^jr=8QMOfnL2Hy;>ULurI~%l
z!D}Txlo}drf}}tIvcf=>@2CIzfgMO#F1B~E%A#SbcPc~7BKden2)vY{U5yZ@GCsmT
zSl;=A&EA*We~8*fj)v@Sb3>p|pp9i5VZFHdPH9tCKRMhgE*TUqnn!(VBJcOTf)`P@
zr}i5WI-Mbpq!kR=TiTR!NPZ9TvQGGcv@r*3^JFA>N`Q7aPT^x|9}U(v$GLoI+MxsW
z_wWcrDdy2nA4r=zC_YjKJ~>Rwti_VF-Rw}J&<Ljl$Mb=-3o`V-VnjwjfkH`+eJZWs
z0Br^6fpZtZ_`+NcUzYYSSDXD*KL}dv(aw_(rHwmKJH&>{QIix&=aa|MPP5aryl^_{
zZ}ng{=RKNsj~#uY6^ESb9!-1wpuJ<x%?#hHC<rhd$YZCPT}QLjVu%h1VjN5a?vD{s
zd}gQLZXDQz7=tNW$5FuOOQ0{d$`{QKM`;I6e*TZ}&$i$NLaVyi6ywe0nNa{@N=Ope
z!L0nGYs^*X@Age_4(z<bcYr^us}XNbj!3kpTw^{Mu2&Q>C6fIka%=Ry70Dv+dvnvP
z%F9Qp`ACV!qWK}ha4)W2Yo@N$5s++2Iuo`=4^;Kd*QV%Adhjn|bFi*-%1Vlw+_uTo
zJfWl7)uc$Xra*#}ulQ-Fub`7icEE9~RrnFp=W+iv(=xTasDomZA_el9H-2g+57O4R
z_`0U%GKsz{U@f10$(&{FC-xmt>yZdWvV@3K!tMWj-!$ebpBP#$aTQpO)O~r<AoCD-
zW6T0!sQ~~QScn=~rhj2Rc34+&=mxmph`YxA0aIn0df{q)R{MsN8PQBOoLsNNb}^^$
zwXmY&8cLg?-rQ`#UEZ+2*>#xyS&b#rBC}vSl0e5-RqSZqd|LYmp%GzA<000jn?~_^
zNInh)T`<;Q;{`y5&p6&Shd-oUxS0j$KBF{TPne^ADJ8<#kDfvE%>()uK%$yZvDGv3
zZ4dMPBif20jsM?1LGdDH(LdeHMF3#pBWhdFTVSHfaf?m<V!Jfl4`P+K7Ne$@%}EFA
z-|dRCno^5RkR7>_FtcWp<BB*r+B|%zzR~^-c5C-Tspi|BX3I@Fxb3Y8b7#vNB&6z^
zx6Hww|CLyG_;v|u+b7MO^rW_87KOR#C&1UWvs-^N!!EuA!PIFC0+ke<*9MYH%zG#Y
zDi;#00tY+!K2$jSDg9jHZ$vPVA`wWz95W1m6U?i3`R_))LI{L`)yefoA{}#kIL#b(
znf4Rd4M9sTq%8X%dz#)4YkM))Ej3rOW$b_1zGji#vO-Yj8vy=E9*Ki90a-wTs5vs-
zc5!FUBO!?ZaFh>CKgcf#5SqC#&3*8xG;v-RHCNTO@b^#vo5RvA=JSL5+y8TCl7bKz
zP5v&aKN56L5T|EcqJVK^I+Mx~M#vQ+SUTujx1ak`4b8l#w!BR)3=%i80<25#G<Vb;
zX#fT@gQgZ@MPMb!OnC(XQZU@D=I5PxU6wOeipA)2Ihh*O{Nn-cthX3ZqDZm%5JC(1
zw*(JY_i{6j)G1QXgL|f`H82Sbo>F*TW`H=)FI@M>YxIS~>tz1X5631T-NSx0LpE#o
zWZ0fR8@iAu3A%cCt9DV6+wURDnSA?(jb_s>ypu?<x|Y_!#MaVE9tFXGBmk@@jyvmZ
z{dl6@sXz)$QWg9pk4LFDpXQFdUB3gkCn+l~sam8d5jwrQ`w<_)${^V2>oi-e1b7RH
zAtgD2(SuHSi@9zG{oDBRn$k!qLrV{d93Wus`xo<-O0>Y($hw9|5yFr~&k^!cqz^{6
z`_6QT{5?P2y~_3sZEaL~Ai^4p;f0?2_fnoHaE3)>ECi)&rb*((^nvbkSLz2y>Apyy
zL=yM-2BP{&aqQuKJBEefVrnjfSK3vRog$F^(|z3jN7D&t8BxW}d^u%`<&$nb!hLax
zPJ9C4!Bm;DQx8cWoACa1+BYs-?|)NPfV3O)jj4K2J4T1A!!;~JD38%{o$EH3_Gfj1
zlDO3(1c4_9au*3ZK*~mS4|hpGDTaLaDnh%6#VD_5hlD~EMkaVC&xc5~7J`{jS61EJ
zCJBFe620Gkn2UrV+jJsvO5qj)t!4d5O$+>CuIkhWxdh6g7~May5tOpz43G!K<v9P&
zamU@o-$>GJC4Y_7D+rZv?x(ky+h=JzA=FZ5K)-)NH@B_T4$5kC26Y%BN_Wb!Cl7hQ
znp>G%Pz+c4ifqTrbZ@;^A3{W;;*hMTOdq1o$#S>1Zx@h7P)&qxB_#u|<PPptRXTxU
z0r|1*Y(byx+@cxUKCB#Y#Q?Q=b%Sgo#}ix4d_bCrpDwBDthRX>Xj}mRH;!oaGXBs2
z^Ms)AEbyBEGF1E~!GoHt;aOyCgt8=B{O1gB)p42(GkM*t>7B4_c0146b)fh3a)#o*
zY%Q$<i3S9-EaKs*<}z{Mk_o9n>2NQ)I_7x;LfWM)ov3j^g2^W}CC7Q^60fp=zMykl
zeLX@OB%H&EC~#V@_vQ_zgV+Z^WkeQXe>ENF^10qo=iAQ_UE3dyyg-iiJr{b-+2l#!
zNFd5(y?~krkiZ|U9XR$s{Uu*%qF7@&ML;eD@HYM0&HMcg#=?<7K0qh8GZGi{0q=Z&
zr-2)pHPL@u!hSwbZl=WFmt=Y!lHrt;mXIebC!Uso`A$j*Ws^u1bb5^ON=_t!D9>3f
z8jmI<U=k0ILXp{b;3k`Q#kRE|GT>>Jq=><%d;46iA32mc`4vOR7a-B_!a3gcd8|xg
z)&;JYc-F-vuoJ;Rll&XNK;$e<`OXct>S)F58aORP?dJ%u``6{(+)Tbv!n?I(0{}g_
z^1!&0yt&Kt0qo~VYn&5ZW4P923H+{Z?6gniJ7=Bk?Q*!Tei4yutbQJQ42x(Tc;ClK
z&AL~9vm`T#XF=X?6Pkp7kOw~3dpF2u#&d@9WXgWd5Oh9*BmojHgqU(6S~)rMynVOm
ztRW_3*RsY8(2Ce?>P`ia=!Re7y^+O`si`caEksjUun6Isj%8=$#j-QF@Yc!Zt;e!O
zLI;=l_LqAf|Ha!<9w~@Dl0+Z*l4s)62kTu#a*@rB1->)D_6-Vqqdxh^xnm29&3*DZ
zv5-m@T#$?`?(!k?yk=RcTscFjpAD;wKe~<n-2YEM88y-8^9ABomIgSY03ynndEUQI
zg{+Za$qz&e$;=9H7oV`)`=qCCToJiuQeKOABH6m53%v{w=4AO3iAqnKe{hrd0DBsY
z@d5FMl!>F9GsuY^w!^@D(t<g-fQ%xbp+Ld?Nl#m~*}JJn|7v6@QrS_9DXmCl9JXsl
zdiwOIDIOsegQSCEse!@(v35;llGn+&NS_PdO@De3f6C%%K@Jf+E`Oug1nv$ArM-WO
zx#{|Tl4V-hR#g`vjS-za5BX>8p5~FXzS1!PEr&wr+9O)x(ml-Iy|rglxVo$zdkbl@
z`BJWju-2<~(Vj7cPNI6yjtfYlNWuJ*v5-E|<K+L+-fK_u-|pI8SWOC#{vWg^XJJqC
z$adOZ1n7EOy}nvJg*)zQe(P&H!fjPyu`h`DnZ1koZ@M<0*j&?&YF(jUfn0ocH}ju<
z(UD}cc?ZvMAq2ab;jZmzj)X<KaDWpbC-U2F=HTtMqmb~U3Rx5RJQg$9!#uXL_6#p4
zdnrqN8BW{Yrr1ttG7^m-)3Q0NchBw2Cwuno&c!Uz31kRzT-+B7>7CM65<z^GI)M<A
z^whs-$QhF!RA@gjT@$M3EHy`0X$PRlxU*{|N1AX3?h*2dpDoj_<EVm$8%T;TUj2;O
zTA_`jph=Du0E-F?i86?#2|x@nGT-`?xvEwFRa9Pw2BQHIV6{GKiXz%P68sqq2zTFa
zzOip-G;(72pJ4r6w!|FUqW>$=0<pmUGzG@gAkx%IMmGNmIyn!U?`P?MinVe#_PvTq
zTSQn*dG9=8E;vK`EsW(fjGtNpna~SxJRdN(%(PE8S7OmGtrQH;(b$D3SV(;vhRAVP
zn-TUE!|NLU>G`gsgE(}*IoKZ^Je@|WID#A%ayGtZNR^aLpj-?UQRFq8|K0C3H(f<@
zkdlT-krJdK#Usn_G57zX|CTr?sqiCHWV0pcNQMM$Qo<1m+VoE)6uvJ<YHyf^ti&sd
zUW={|=PP1s!h#=|Bc=iWkqL;v$e8FxGAQOE?$Ru0>T_nUOrBd%fE3txYWQW!<gc5j
zZ^9XhnU=b}$<vWS)w~prC0|I{0x62i5!vBobD#a{LP4U$SjBfsDaWNN3<;n5=jzBT
zAK8zE3Oc*3F!wiWk657^D<tp*@<UcV^f~i(o%R$?l^{KcfnaSXXSuohT-!{hq>ut@
z2(KISg!z7swgac57BK>S35R*uJbSkNJD{H8CF5%n=!<o54t&H+v5$iM#J2DzEKWjp
z56@0{RC*F0Kz+gqG1Ff?b|c%lex-TMzL75?yh^?%%en4(GowidlQNxTw#p6!oe!Uj
z(jAf%IySYAqBTx&(PqhDBwlw%2$f9_mw`=2IWXZMO!|cd^oZ}4+gz!H0n1)CADo+3
z%C-z8@2eg&sKA>BohKhROHW746Vx+_VvtjwA4Hy_z}FLAXy^Xj>7w9~RCdakDJv*d
z|2RI!ekdxN%wSA)8}-H!%zEE#?p#k3ILAQT6CU7D(KOdtcCT5Kr87FN8hO6bmTRLX
za?p8bote2%2N@w!5f!45YSez`e000<UP_z8+ht*@B(|BdTvEUmw5Kah(K1hkXrUx1
zO3^6fgJ*VfE2aZ3i`}9UqOC>`0Gfl<WI{`~x?_i>i{O!%lgbRDIjPAV1X#p75|XA>
zB#KL{lh-#?tf!71LMy5#kOC9E8>_%sKtHOR*@|(j6fE_SVzY;PxQCybf{}?u)G6BE
zJ>b0l#W<uX$68S-;YUNqLu5S)+@EXU?R*SLP?};&Xs2`59cIG5y2P?76+~(y;{%cA
zRNibxAJDY}``%6F+JV|JqOt*k6sQ8W58k*WU7I<}<g!dt>MtS2B#hE7r5q5OpS#-}
z6VyLRF$T61CCxeEJ~O0mTJdOvpz=n<h%%=L1m0`U7N{J-($Mot<@0FqYXR2$`A*aA
z8bvll6=u&MvJh4U=b}5!Ay<KpBz{2dHOrluUbeH-ljhfAef1QCa^@p^WZdH>GF}_8
zNmf*GGC*FYi#+gKDHTUXFgO0{1`PO8SqsT3=-fHm8@dt!ikjdxB3=iPcsMi%4LoBe
zqENIo6KI4S=aTG!cV5a_5S;GL#!e0bGBQHg2`C&7C5(YO%I)s|J8=xaA>*wRJEyJ#
z>WTWPqVul{4ZQc_{)xy#R9EJ>TI8X`_8{ymH;RZ%%~mpCN`b8vlUZI?^#6#UC1IGB
zkRI5PK_9O&5#l45fziOZz21H7KHlpeiUuORQ2V8#3tPG8Pwx6)dO2#*aFV{mR3*V*
z@V|&#THGgbMuNPV7kx7$4M$4A!lj2x>d_p&ySFkkJ@E;?0S07&iIUsJ%5U3=!C@qk
z7%fOn9!6_0g`PIcUIbk`2m(3eK=hOtKj;&&<Es_@mUCt&qW;&lWRUzS`C2%sB>3Rg
z2hEl<(xnbvu?jIFh)`xPm;c}1gUW5nFeY?}jb97=iA#3CzuZnKhX?bcC@s}8r52sA
znF7?wy>@ZGKaEZ*%~fKZ6D~tUv-9jO?kn~B%utyfSr;5aI<ZiPoGW*7?<m)2Mxtlw
zO)Sib{ZHH3EwRP*hQiD<s^qf8%gbe`19NV6-`PD|>iG#^dvy(Jwa$~Ih<xXrZZ1*B
z(RmV6uJr?RoT+=dMU{3g9VoET@_<CMgYVtVy>XgOWs17Pry|s8)jq|R-+d4F;AVO=
z(NB~qP;xLIwnI_DY<UwviB#XvuO_e_l$*WXS*87!BbpDZY{ouB>PW75zjB?@lf7TZ
zcv94P5;*7$VnpVC`t?Rra0LgR<aVi&1(qr89FGsLGv{8Z?I;NRd!{%@ff#f0ZZxZG
z2Np{%GhPkR<vV}gY!=#qMm9w3TJ!%r=kps(qir9JWLREH3=fsZ^RQwxEizN3GBr9f
z$VmQ3;8+#iWcIk+@*w^!QjNTvmlQbn-eQJd(XTgp+ZeHHMk=w;vNX6vYc3lgmqt;f
zEUJ299e@unD)S1&I*{6h;2ZBMoYf*W7(_17vOYP@3(eO@N~+}GN;BwPn@{sH=W4UC
zKxkgjZGc#SX0EUHj<`w@-HXE&Wz-0V&_Z}rvYoH1-3O1*o{?cG97>!HJt5S@D`vQp
zj!av|f#5zzT>~_=4X!5z9^jJyYYaHw^p@U{%|s``=Yb*se2Ap;zh(q_f2Cc;kR?ts
ztW;VS0*6#np!nNuba8$4Y6(1^Iv|A}U>FGlzEIH|4p7)*0@9j4DqO%Hm3;!=39vcp
zP!QEb%?vCHm!<ci><HT|)tXS{@bF~do_Fr~Px@M0=c710jWx`|T$dr$>xWgQuj|GW
z0tgGpqkzj1c9xkz#c1b~iu4or>mvrPsEGv=TXxjMl5E)sDn?Ee5<&p2Q=mYQXMEfp
zxaMjMW4d94GYKFXcs;M)z+UEI=26W^AW|?;W;?xqbUy^ygu@-x`@ylGXrtBpnc65R
zJZLd7fFG2;J<b?7>U}l9DOyGqekPn0d5ZPYV^^=w$Emj+8j*k7Aq;`KUxR1@U2sli
z1{<b(1;6PG3ah7~qLL9NhPg%WdxvaDni!^)*u?mfE-L`dMpqygJ21dFiU>qds)#@b
zHF;C8Ci3747=?sq1vvKSY;`eAC%1+YTD!aiX)+FP#M(gO#QO<a5-|fs-WtAy&rLuY
zW0hl|Xng*76mkE=BJBr)1x~L@Z|YAvg%n#Kmt@q|muMcO=ycpX7{_YiB8oSsjD%gu
zA1OtIKxnce1eXb5G@>)(;J}>9<@xz;Ug0V>zz0Q1*k*)4yUmbj3U*O$0(Q|h3{=?l
zq6VlW8ys$&tOOgJSm!X+AnZsr3`7YrOXE%)<{b$d468U2r(pehGz$uQ2}5eA_6`E-
zE47C`iT5NE9;6f{ynJUopg!2e5!Pk1N``sIgTjM3WNc^5um|ZQ@=O`+9VW<D$z32$
zkrNZ^nk;BEHBu6oSqJg%dJo^I&x~$vtO8Gk(;_&942LaQV2A{aD)AZd2<tPP+#(+&
zE0oRLNUn9gcdpeZ66cJcAU5aZmq0B3OS-TV<c}yjNwT5BY2wa=<fr%`WaGW&dMmID
zGwZ}TkTP!PAdjS=WMw6QU5%A51w0G$f3EZK8D8T+4rQuiAlr#L2C|4o1RP7OTDiIC
zGGGE-;(abIgE-((NDQY@z#}z(3wsgkH<8P}9h+HMn=edQsXQ3M1RZqFInx_`7&8!9
z9-saR7?7Ul&#^Y^R6>mzi;;g)A;0(}AM&e9C*B((C}((eV$@D`Q9%8^i=s;xtSj1;
zq6+54R6!=cPE5%8c>;JiYQEQ9+%QSI3JM%X%0=hLyf;aPX99tJ!!ws07MFO*5SH05
z8Io{K!8!pFw4MO|P=cdOygf*F!q6}H$vq0wFo$tPQ%j`GH+dA~iR%8`@!o;ovH;8t
zM<8^NTOdc@nde1vw=rer6`yi~!wU%onee!|-sGcGpW;$sp?%6u)Ve~lHc_oB7hE{*
z8miFAr<^p~n|}mO4Wti3y+p2u(6eL6k;&^0huEeHo-4k4Uj>KFCVPiakfPopuD}#f
zx11=b8_ObGxRSj=WMsfl)RzGl9!pXaNu`Z)dkKq1_|4nRoB6I?%{btjoRa+5vL#V3
z;RV4Mn}uj3SWFx~_>Xd(J<jub549&Dp*<99kDoWS<@@I?<w}EjK(KJuh+Jv;PBNkw
zOBY4-f;fOmR*MVUfJ>bl=e~=)eVIYZkld0W2}W;8ft2F>M&adn%7>Thvg9m+zvQsd
zLP0iU!zmyqB)WE>_rVfKl)FvLwuD$fP^cWeyysTXoS>^~fI*aM5UR_`XAsp^*0^Jo
zH+yngZz!>(ZkpKXMbm2iJAKzb`uD~hbRr=tf+vfuoWzGe(*e&q82#lKsw;^R5cN36
zx$Oy4d^fT`2pv=~#PWr9`tlqTsQ~4Zut1`l8mzX4wJ6`&`Ehf()L{VJLA-)36zBm6
zDdZe7&)m-w2ytSRi$Zhb{dL}1W+vUGy2VgT;!Y?N<H@w!O#hp8ltQw-AOQwJdH!jh
zDVpBz7ARq;q)LF;)xTTX3%^l2hbwVrWGeBz+1V&#dCsvz+|$QVrvx{79Ttt57P~hq
zBZrnF2f2Toj5&$=jHL9H3UEfA0_`q8#NDq*J4(n`q6&|+L&JLq-Lnd{owHX%D!DC6
zlbex=3;5GacU8W=DY0A)$jHu+boZW<KnMkNObb0=wc~i7(Ko&D{yqY!ItI%=U<Rs2
z5pveuyq}HtLUQ+s{;d<CAOCe3AY;h3ct41KD{#^sQ}+W;V=qI=t;5M54iHL)zaL*N
zg#;nr)kmlAHM;LGSSdaQDZ%WZy+8`TOi91Bgt`yh#FU5>?Z0F^(3&OgwZXnpxpA13
z6vM4X%4wGKQmN}5L~)ozZzy(?D1u@ap(+#=s$k9~Rn3y$1Qutb$Vj-jiPH|iUjFRq
zVSSdEfn%t6)~SAJ0(^x|_pb6riGMBWLcrd{Cr2d!vW1Yee6ZdeH6ul~c%%CARQ%j$
z3uleqv+-vB9f~&d`XpB_S95`Qf6v&Q%BJAcbVc94O?M}>8kH8~OQkS-(WQzvD~6%p
z%sEgAM8$s$z{28xc-OmiFEuBpz!JkjqOimWG_6tDJczi3lvnHB(p^_Bg<Bz6`rL|L
zoGkS*)o)2gq4=&B4D}XND|<=eI{>U$z9W1d^-ZonJ}1|Qq)pkN+?)VRWYt+-)2>Oo
z05D=fbh%Tu6wV*J`q;NF$_v-2ue>C(xEv8*qY4`JcbaRs%X5jrV6Y#~^j?33FG;)^
zQBi$NWtxX3Atyt`O9eSusAe>`n6HFpXNnT~^d=Xtg?y#h2IT9rxRX&%&+~3WUP+vi
zDn?PR8<Q0f&pE+ySs_Ko%ZcfDiBBNrMxWTmim>=moe_fW0!s_w_^`A{Ka<uG-(J>9
zO&P*%s7LVlz;icrIaN6Eqg${Xd1o9x-wJ{CrphY@66cnO-4Qn)xE#tafno@7!;K4$
zJqLSGr@L}tU^#aJyuA*Ou)uKVQ7kmuIpA=2*j|S&hwTF^PIi&R#fg^!zH;W3=F@kL
zlvz5C`0=VR!Bb@306aydgHPP!r+CXbvO@`9X$ACE%I0#vbQ|aW@YRszymLH29AF(Q
z9ZDqS-fO%W*QYPXd{R<Z1v(2c2^uIl-)p%hUErU`mrrY=oNWzrqk;xyC!Otf_I7*D
zUCvn<&&P;IEYeCZg(nO6lu={N1Bay_&ygspZ)eAylA-D6q=7^()_BtGYl&#b9EuH{
z75TG|yZf71Smk!BwRa@J280h$QZaNH9o(~&7b0T_<B(L3y=w>ejUgDDaw&_nq|L?m
zCFRQ|VXSHpOBEO6qCH(A<K@XB%$jPaVizFJP20P>2etO#6e^8k)+D@NydL|0X-;WM
zOR@}OaSLtJVhp0qHrfe@hLX2sJ(ugzT9_ZgTd3C~7XtNOVV{!@bBEl-Ef}wm7UBZT
zc5Y~LZ@)LG9eWdty<MGquv9kVngt(1BK!zj<bvkf<Qi<sbidA|7u@aY@+vI0METAn
z7K$Qj<TGCAetfLnsi03+MFLZ}0;}Y54`opC(Ydj^`_vTeF2-`%*2)E6Mxh`wLvZEG
z|3cXrgvmO)^>BYJ>n{NQh^)Lnqc$v7ZxX*UN$3bU->)-2^)=Ez9F2<*Nv!+MhyzGK
zHp`KMM${5Z!io!hRZKMP)6z9cQ=&J>+!WkrLjN@M5+1LuAw`4!q|*ij5~LBqzu1B<
zP4F4?^t0nWusUrS<X#BIMq~7bCy1|&7=DW4g4gW)@k#nJTUNIy0xls+B7~=Iuv<<`
zKVxs8&kKY(5kW#u3gv`xQ>3TgK1l1>7ADm@4q-spZ+3dy{%YGRhKM9Nh0{zH3Ipak
zw^gQhbk|P*Rg$rnA+Gkl!|4xD_?MG73P)&!y43>4LN-!H7QM%>Odm9;k8sI^D<UWH
zim-}PUS@#ZkFvJps~t1qKPmSbyJ~OU#hf&`^(9V?Tkyeayx))SCyj+@=z>a2bH1}+
zp|^I5HX|^hR?|op_jTSOCurm7@`m4AMc5!dAIzpK=i?i_b8J@$5gz#A8VLXaN#42b
zCa*1QpJ{GX^b85if9QJeK|A~_whfVR{$g)kx&E`{>#4u{GXehn8gI;G+YCjwh&;<=
zvYbn=^(LIC?Z-8(N2!q3khAz2@AXq`Yh#t@r#g2Qc<Lf=?8(|OJffye`vL;x4!FsC
z;&gTK0DV|Xl9Xa=i8~Odzf@v{ZY3U_I;`M|ATs~(v}xX`&7<ou+hgq)_W<x8NG=s`
zm`m3qJhP9uriGa!Aaibxp5eYRG|AtF(;D|hlw(jasu34fbzNH}4^fc~#5d>qTfDgg
z16_;0;lZ>;-{wLu$KgD$E}xD}O082|==shI2Y3q)9k3XtxPq&gO(F}Mi|nec-h&ma
zfaEqY<Cbt3LmHrv&hdYHeInYC@c*2I{{ynq)YP(`zf0c7WjhZ1vqAqpnTuYwFBdO>
z^W=5|7ca2Qf{D-2s8)k_7<g})HcAA781+bE2|9=T;T=9N<&E4HMSpvTSJO;>L!?ZJ
zh53OL{kZqh*raA6&Os#io5dw5^?}IB%yE9&b>KIb>c}IhLLt#+OfK8W+iBn#bF_I9
zkt@@ti<_9zDA~^M+YP*DR=;vyIZpJ;nRUbq563Wd()I48XHvpXy<a$hC{qI71eAO9
zJzmSvTCondnBRe)Ak&$6ueY@@r6W^9#1`G{O(?cC?&>HqOzetWx)&_<cDssJpgAHU
z6r!k7#+ZUF<PG!~_|c0=4@f%SCriEX<+M`6DWQO)Wa~Zio7Y^SJs@IF=ldvJf(k_P
zM5fdFwzs7JfaP$Vp<;rhf_*M>0)%?kjqdQH26ySm^*cm+!SYf)Qz{~55xVANOmp9m
za!;&C7|p0bdx(n9aSm&A_n^2EV&S;zx^gm1uqG2W8+7iT=ziB7jR&bv*Q&w>w2D6g
zAp9M@K!sWh5<?)6V0<$RbUF^(906wa*i?zy4LbkM_U;wjf9a{MSXYhEBZ_^#vwEC&
z#JDbFA;!f`Hi<7`sAxwQmqAvdI2kvui0O&5=9`|9!a~ugViq8#mg1W$NN~U<M{Xp>
z8Yj5m5T;`;xFS(1!SMxpOT_YxM|p+E=w~L4gmfH_0ZHgVC{4uePZ}(^?ZHS@Nkriv
zw;o~MM$%$2!*gBeZ7tRbZ~-)EB?oR|Vw#!U*Ck$`ChaRkV8B{}A(q4YMWMIGV!5N}
zN1c{g*ug2YKE=E0LVY5+3rkJBiy9a}+gf)37hImxccizI0KG%e*i*_y0Tb?<3x$N7
zP1_9|(;w*^3IWMqTnK1pSqZ@HNrZ!9A0wQEb;AOeSfn6fq?~^mDJx;5g#QN<{tqOg
z*!YN9C44QHh}j%x(@EaQDY^iY*I{<BH8{9U#WwofY2M=FwXe&Axd{(;>C8^(Oc@pF
z;QtsEFbX>zq!=|-5`rk)3IUA0`uK3~kMTO4goV=Fo+#-hhW}$pkB9$b9Er!pBPvAW
z;=5G#U~}V@J-TSINM3QBEu|(1U-o}I2|Xn|naYU@Vw@;Rn##)&Lq#;EyekJo6^wGQ
z)K1;MXlK%(xoE!Bj*BHzB-pm43+MvBD{f{%Cl1E+{&+J>pS_J{JOPRSPImj|M%}(J
zWDqyCXa(aWJ}|nontGZNbeAQ^H`n=XgH}}GMzkA3p%baMLWql)ZoAF(PPiGWP|X`r
z%cg~3L*M{K!@-js1?-gXC`gzDVQeu|5^O)w|HdTnhgv6FmwQC5;n9Uo-GyASqr^Lr
zdCD5CH<MaRVhw)uFSizRO_x!5Fh&z7nZ<R)pTXsD4zLQJmU}n7h-D->{9lVk#KZp+
zwiQk%Y-z4H$*&{>6Ns&oa>4jIbs>4~?*zh4DM7;C*fKb&<`@jqQF9FYLgo$m4k*;Z
zzbnr54wvkXF6KI}5I^&R(Gt8Nxlx-B95vzKV>^nMWJ&6Q_Wz+LCxGY>Wfn=#z%Bma
z8PbRnZ^=R=i)da4a!<VK#!wuE;Jg#qgKn3VFAS^qZ0{%Q;Y-+!pax9Ft&jL$YcTBu
zLmDfv=zNcqJE7)LgdmddrUrY8cF8^V=v?oH5!#7D6x%|SP~H{IfJ!>+7-8`X#NU-V
zCLa(Vb5a9tZ57pJr#KC`WfuP1nwb)IFekc$%rT+Th$?<~vozTzX%gbGz<3+$N_kH(
z_MX(!qf9?~dh~dU+Yap$(J`uhraq%-M+wiwr6*yg6pV<~nn@K0QD~yir49<+;z#yn
zMZS6+BtRgZ>@&O}=zKNDTO$Q*l0G|#aXM~g#*~1fB61|4OG3G&Q@o=t(39Wg$RU45
zj~uS!^-?8>H0S`$@kLBnc};vtsPU4#joGo~P1-J4XDFdC%m^}V2@&LjkTJ8J?dEuY
z`n;m5Q}bnnqH%R&Fjb09_3ecce0vGBE{0@sX?#O6d@LbtEH9ci#<C@}!xa5=vXpj;
zT-r1<j^k<)G9*1wD;QBZS8j;~0|p*D(QZNtf6I;C1IZhdli;pR**m5G__;}1ZA1ir
zwY%~#u9kTASR$Q}6P%wwCyDDVHnrG#rx=#0Y3v6Nr78&=-GA%~C3Ge1Mv%SDPv8d0
z@4~hcA241hh#PjBg@Up<otYA;u<2l3^rRRDXe%1Sz>+72WB?TB7cP@EPws<Q68hq2
zH(R3%9zDl<#1<?{dKo&A|1xgGlprS*df$D^UUdnX2u4FDQg$Dz%}ZD(VrzYWu_ins
zA}znv^10M-E6UdS)hQ{xgFOhgo`=#Ba>mc`c9p3o3aA8?<;C*Sk|`7NizU^{+^W_!
zNKT`29AZZ(b~W3(L{bn_#-sY2pYJNNfkb*T1H>ejVc5JVGf%w)=!{<iVwIcPYA>BU
z_#W(Io_Cbb+!Fg#<MjJjTTCkn72%j+LPfa5#}Jp2hK%nq!YA@<RQOC<50OiA61oyU
z4IUf+G(4kCgi}o=cv7NpxOjqcw*26NgrktFE<i3@KchHtL@wHd5fdiJ%464$J(DmT
zCksJ6fnOl#=?u7<bN|mcAP#>#4k*>rmmBl+by<$Ybm)YMz;Fo#i8I{fF4ijEmCT(u
zvGH5%Wop9_lm-fyc)dQE?Y(UyWD+0Y;>(FWf_&XXdV|zrlq(KgB@tIv{ptqJ&@0X_
z1cy|c6)OZsM46ZciChq+BVI)>)(YXrTStiBnSr5Y3`$$vpUzGhm^6965Fh4`#DvjM
zV!~*AHzmd;CngT~k%kgzOa%_vv}pOY<X9EGO}oab;4X>Bu!tR{zE<)a<kGaFk1qzM
zBw^>qlCV>fpi!XW!DI1oC8Ut3+yg=Q#(1v({KV$?Ckj=@jPdZs#N=$aeL`|}!ZS#W
zao*R(l9ZKTNlGy?1rxe(%_8s%)(02j=2&^g<d7UbG8&STB#LAINfgDCA7Z8B4~aen
z)DA)Om<TkSYVmMy#3U#qHT(x@HvZUf@^(6TA~Qg;8QH{xZ7IJ5-GYTnoI-*zDJN!3
zN+Jy5lYS6W5-GtYbE2e_DlMR};UM*M&65Nw?&+97wT-6;lZibgIg02BD8yvGfZKtd
zKoHbrUdI0j)%2$lkDp~&KYo_JBn*R`7=}TTUY@s2{T^FmJQgEaj#e!+Dk@_YPmbTu
z@#FW^I2Iu%k(5XEtlxHoXRIL>6L_?lI*YO9C`BQ4P$M};QSpCc&OZJKZ|OAM{OG@-
zKNQhz{F^W6IyQkERN9LDJ30t^m^erRnUIVhx4I^=Xi>Q_X89_2mzc{?G_X=^{zN3z
z;RFt$oRYGcK9D;1qT8!z6pINVMJva-tJGWlt9GV{IVj9gF{kT;OeFf?He{esR0e|3
zl44MhK>Qe#)E?xScuz{m4?ad4^20+ZT_kG7x{}_+MG}p6iAU9_QrmSiXpR?rO+JD-
zu_Ktg6`5iVxMxn(`jHTN$cIEvZ9-HgVyz#Q*+ndb0ViDY$!cIh>^4l+5H-rwzgsaZ
zB?c}NRS*lFPBb_nw~)VX4Ng!(Qph=Tjt7=wPLG<i#R`xgg@53o#4eaZ3>hM&OV`u4
z8l`jrFq8cc19Hj<8}Xqg5@k?^i^;TjiENezsqO^za3ZptWpll2C2cTihY-dP3K#i;
zRpM}Z8O24~1Zjq7rzFcpLKnlqj-$h+FjgeyDBy;abP%rDNpuQVz8+Uq$(dZT2ALbT
zBqsUBgE8ND>U~21Nc6rz&Y=#Xgea>G=hsc{v(21g3B%Cv!2*%bL(b>#4ji`tvzP`o
zfP`F-!z~bW7S9>@=2n{V$TdqUGQc)@%3D6Z!<+XS<0N+=#`zuG;^Pz<L^D6}nTq9b
z!w>HH62p(U!M!2r4NQu;&OF@PQ>xJFm#dLQeFITpLn2#}9S2B~iI#d0`NWk?;EPc1
zu19$<TXzdsWwv%-w#edn&a#o-;0e5+C^@;hW0}=ZhRv)_%mz~1RU8E*iSHsdN6mOC
zyM^(uAg1q2c7wz!Cg*ctEZE29b08;d^ACBkKfq$5@$GnOqw(#80>}JI@T0hYDeiZn
zIbNzaX&tzd{B=k+XsWCj{i@`^ZwMjoEKDSIrQ4{^lq5wdnp%9cq}5}%f9N4idz(FZ
z$ue2OXxv(fj;e$nF5iD}3K9$+H^U}r$|&%@rW{ibltV>j`-D~u6Y<sr^?+ogn0nB~
zw1#jLHLX#vTQGgHz<{GQUg<i;t;1{LZk?1q98A%^B!(7J#X0Jz)ryo!283YDfB<>L
zN-}eHeM<|RGnTQ<4(BC=NG7%yMB6#*@oX$MH=d0ZZ-&K0o0B9|^tf29=~P*h2=thQ
zx{W@f<*Xb^pSVaRc>qq2WeEP8ccG2EO=Ra-MA@AfB3Bo04m{ZR=5)O~U>^4F=-QS4
z&s`ub_%{w8t$B+H&Ldb=)OoaxUNnvWt2Y$w?J^%WApTNvo+I@L=;)RCn)3ScRo*i4
zxKi#~F4Wjv%P+CQG!md#g-;psB=vu*_rHGFdk6)M)HJN8nM)w(9N-Mx)i&!BEiiTB
z$JEUdjiF9@BJ>YWsPoHz0_Gge$3zW^r9CD!!zO&j+=Z3%^*$@-s+~kUWIfm!n7Tqv
z=>y&ZSL2|QnZJayDXc~c$^a^=pCZU5m*5Y|iu!|SMn<nj*{9+dc^oW=?{rG-L6(j8
z#E0U6XgDz;Fzagt3?YZP2AxOe4BYMuy^V=r#gbFNdSfoQWcI+8SJ;LaMgp6YAHz4u
zA;biZ0-n5xItv$hKN3Eje3sEew;Ar79}9O*KKj|){(Fx9_fiB(PF@*-S0G%6oX;LM
z50vyTg-phkH?~RT4JtoLNu_Q#m{a%fU&^|SsAw%0s7CBn#E{){cmGlX4@b4)x&qad
zkl!39`!VyZVGs&rw$_1v&_LKRd-?cclfEne2Ga@$7`DhV79Gy>Y@<186zy8Xr?kAH
zYI75L*BtZ_ADQy!buuU7ylez`si~r2BQFtL(tq7%B75@`3^39Ns5jN@2;<AmLovI3
zw%Orgx-dSJ*Ee<m-JdU2Z{AsK)*YqIliEvZVoEdaGR{bvIK6dk?F}^)*eX|~f6N{=
zXBq4?^2MX^$+c~+Z?A3zQ7Q{b6P%CFUZYD;PHPDm4k0msq%h=4Z5s(_fXYm?Lzyp`
z;g`}*amJ3)MhD#0Jm;HpOw*D2+Q|S2wCfwW(Ds~V7lJT4xV^5Aq>KFT40GaGmVub1
zj+P&Qg^`*wf8Jou?xkxpv7;=)z~I#6JN>UV-)shurU1N#wmLW}(Z&KfyWHSalNF{s
zLMx%G9Hup&n9)z@07Ki`!kC&dgS3L3mQRw*6_=a;?8uz+oD<utWO`EU%sJ=+bIcz4
z#K;JLt!!s1D4kB@MW*}i`sL#orBo*#3IPZLIF`R81o{Fh4rG6pKv?y>M*lsOYA3br
zf^3Pc1X7xC3C(P0dwpahh?4k|07*q=0xl|jmcDm<xT3XzRb-m7&zmkcV6VwG6ar_~
z=n#vT<rMtK+%QM~UD8%g71COWl|aOxv)2MMZ#O%A$(v~i6BCwC6;WsILNlSezIt^-
zl~4<H3-bgf>Xcgj`>0ld?<|Y7v&g{zI{VyU!hKlHMARRtCu326gqX$vq0an8)aJ~W
zG?|sMf09PuxUs&yk^~}Z>t)M8t#%J5gi9OA9?xT%1Fkc_F&qAEiN3wIX(NB<Zh!w~
zliOQAcLeUkY3eJMH7yYIrY+ZN4>0o-@o5Z~$*zSEO`Lx}tA_#V0Ux%!v7)(JmMTAs
z;O1u*nM38A0>B!suao(L+m2c9Cety1?*lC)Tos<$*wzk>HWCU6fxUmd8Qjbxc&Uhq
z4-*(K@qT>#wR6oo#Y`cSIRA>)%5s=QqcDkV=d>rxM^DoOOJSgm<P5MTwa=THdVR-n
zjcpsb+o&_@47<`CdZLao0^ZY(O-^7LfJ-~@by`(%k|=#Lqrk+<b{>1tynBj{F{-_(
zgNn|QRB+cdX7g+s0p4r}G8jg}6ksH2t8|E>au#M9iINP#h%6jHO{It*6E>EDQbBz`
zG#XAQ7+SZ!rya%ZVCdA-D;>GcLo3V;?`y}HsSUEo#0X|P&D5cLmA8V%SJ4`#Kqbto
zp+abh`d>k3r>D(VoRDOSAu98k$IRMOb+Yh*8r?E{k<JDGH4i>YbI^GKa5a{aqb8xK
z*oq!pWOl66FBwzY-oT`YZ~?*gL6bY3)*ukI1Q4{b%FHz+kYwHGGZ2ip6YzeldxZ1`
zFEGn<Xha36XeWX+D;p|#^FFixc>OF!;KR!JE)LTv@0*?8(U}m?9U}x%+MTWQ%)4wL
zD>uINhlc6xRU4&hN>HlLw122i3<a#b3BK%8k3gWUnr}ulDD{kL?F34I^~odR-ue7$
z^W?GiHNY56B^^=9mN?7im?;pO>`r@A11Y4ExDk>9bFw!=sU$BogZMI?!$USb>BE<q
z<J;&;I-0oR{G-VN6^E;;p)B|lipq=T)vNh;Hp=XD;UJs<=q2dfvfA9Zf*1SDsDjBt
z&%%xJ9DvF$fxvhf@nt@pYkg4I)Dbu7Xrnr7sdkc&z3q(8%x#bB37gyr`cV@nnN%8Q
zuf=Be!HkcF-QnM{RBd!lS!f>aPcvtTHEs9lO9Fh~c+y-B)p4V8SyP_{&>1eff?Nc<
zpO={%cGg9bhbmxg5^0Ipb>{Qtk9T7ofOX5QP0XHDB`SVd*AIZAaE!b{EG^`9=1JN$
zDLl0-LUb|b?A>e3;D~;hTq?C3@0tiGC-4_?N#%YUc$<DpAz_}vTDXISr>+R`Ocn+0
zrZscx!BLMp&k(nhyg9-kIv+QNLn!;%44xhZ?^!3QP9ya4M2)WXq>Y>?L3d;IKtwzF
zBHOArKe7u!`q|D=i_CQwq>j&-@i(6xQ%Pak7KIL_zKb*JY16ovC#2rk^o=d;oE--+
z5HKR%Gke^rYc~qc%*8Kh7+KEQubO}VOf!j_%82Bgg+S5f?!WkE9cLU@MVnl8h=DSS
z$S=_ENck!_gUU#hP{|amxwpUOBg9%mtE^iHh2gzLW`C{()}pwhx>Y10w4nm$w7F(M
zH6!^1$y!K0COAw&j{iGHUp*{R(Jm>K1xOM*eqf$_OW!Qq7y*pKoaInR@uhELpIg;l
zuMQwCJB<48nU8PL7mVe|;(rPgf=xz99*!*UPScll6+wt&(o7L;@<kAYSf`oGOz-FD
zA|;IN0W63_RzSQiG?$*wd*Ikxrj}P(?v=-aY&p+dahbkFriJB<^#<b(r}qoSJ((xO
ztkY11t^-hJ(5b%O%zuj3#M7LKz!AM@F-Auk<>sPRJZubO$mm<lhjN1;)LNmCXkEAl
z*S2%{yXNaJ^xdR9mRAUiOMEp;8*c|_RHn3&Dbao+NI=TV`G1~M`=aSQL8m&rZfaed
zfM#YpE3Pw>9^=pO|LTg?I>%Xez7;_wi>am^#=^&Phk{y#L*!C3Yl)5k0uh@twLQj1
zfQfJ(U0{aYr`^LE!^lTmvLs^Xkc8(fy25OCx4tH}+%Pv^+~uQ{NtcT($8807aB^3g
zlQ!@GA|TRpE0-jo(mDeIjHQZ)Er;M&krwG44f@&z=H`D>Tfpz7=tD;-7+&;BO_+h#
zo8=Tw11Xq#C~za{F_7dSkbt-e-uc5kf0lL<sE@c#mJ&WZPTsP1^OTe-DnRzHuKtc_
zaBgcJc<dvy`vPq*rm#`-EXEP2+Md6g7tYt_k<}D~0HsDN@SV89R8x~xs_jyCLCXV@
z2sJI-%IP6jHq-g|9rO7#s>uj;5!vK~JcxM)lAQmU`E{w*OCZZUOwBina5*7Od04r>
z`SEVLNMo1e4lPs?uFzUasD%QsmFc|MV!j&5e85g>D3@YF@OMfnWjY@WH!oIcM-eIt
zK6@!LR4+xjcs24rukKf3>ZO)9NJ({4%>^W4;xI`Ybb^Pwz2DKEiCV0}uN+CWOgO>Y
z1KhuUp_BxnWML|``b9Ugfc1ipZ83XLW{JK@l_<!h!JtNPz2{10^x8e#i=|=`IzYIA
zdQxav<X2=mb7z<rXJ|d15n32p$`olaKxAPpSwt2gJLMc=j-kXK^@gENPF9nY_Q?RJ
z6IKKTWIF4gHi7FHhcyO-OlzPaZAjIW=?9r<b9u9zVyUUsz&gl!G$EAY%9hemUmt2J
zq>^d~p9G7DV$X9^jCuJ5J_nKtPwgoEmPe|?l6)%lXo7(IW;)ru%ng)p;W+>}iGzz!
zT8iXJJ~u7X43bhYEHCTdVOPS|CtdKdxkIWSVvnF^6kv<CGmHEuw)9PtBlSI^XP~jQ
zx`kO&^*dZUo$?A!(-Y>0vV=eQ6~d&}Mm3474OAW}kOT45gQmYNCJyhC>a87gNUfZ=
z9yg;abpWc$wMnax=<oNMwN1KrLv1N5b`1*qduO*n3XKtrQb~R0GOXnt90sYFcJ~Hz
z&I$I3j<#m0r9-;FcT^D3!ghnUbMJgyA0*wsn6oIb2%IhwWSrN(Fg-8SzG4ssSb|nM
zBn{`9FU&7fbV#wJ)KMMP(vMWwd2vVg?m2zO@&PP0VpkJFnpRFeb9;9jD+bj`aT6#H
z%o+4lnFn-p*=Do(G5anG_>#~`p(SK8_Pk(?`Q~b#Lua6@INAdL9<<056==nxVU^|6
zrYXOYnr$^tn=%UINPQtHFv-_cvu?5qGnblYCNe%alE9ZyZWdvK6DE0h(@!v~PvQmg
z5Ije;1Ju>lU(?TC%PVBMfk|QN1#%Jue$82SwYi8x%S)s*8jC4gDcI7dJZhHJ(h-8c
zU~u5$Q6MypcyK>+(e>JcSZf&oCJjDh=nylV4ruonG_OdbAbNr&%UibWVfOl(M=*{w
z;3gtnQtnJBZ(x<VPwHJ#v9>wVh_FlI8O!we73PAmGz)?Qrzcvn+m>4dSr5fY)?xHR
z=D48#Z8#aEtsN|=<Y#TUz|5DDiSl%Xtg;{=-*lB(I+7)jjBPoPQk<3*k~0Y#6YNn6
zqym(Dj(Nc7W{jeUCI?I5lOMU*jH8MZt2B~Y*5#Dd;(B1vH4BY9%C=Jx-Y@4VoCXFY
zb>p0hSIqV;EJ>6N$XS-RLbw%cNvz^aSUc!?y=jvAY*aX`T#I}v)1u&J3*^f!&kFv1
zvALbfsQh74dBb$9OPN5RP!eK}nfbXkYc&fg2WS6($9z-RsWTf>OY$DvSgt`b^_`++
z<_yXNQmu^Zr?jr@Te-2YMr1k*_cNCt+fS$+4^=bqN2Jw?4D;7obCZ-TmC3=`sS&MJ
zbnUR>LL>Mj@};TzTM2uzvKO(zu$(u)YTE3hMN~mo=nVV+57(IM{?vsT9|5D1IUuJ)
zcFl{-WT~2my{fsC3UW2nag&R<?m+YWHSCL+=$bb)DYF)98kuh_-+>34*B5B-Fw&?k
zD`y*|h8-3n9>3R^+0A?cjJjI+qCKs8AD;E4DSuGcFiIJvO?3^_ZY9@JYS4<dE3|sw
z>831=mq4ox6k%&@)k&1<N0E=o0?ymr-Fp=umF<j$jcDmvtsT|l7xOkx(k^_irM$s^
zw62buiXyEHzIuasW`IsmOTq~g@~0?tR`r3okJ6J&e`vT(3(I9tL$s{9R*Jz{9$xa6
zX_AE#w8KcvRR0<zGms6uVmtTQPm~z^FQgC~+4Uq@<p{qmzucrx((YlfEB0MKtb$r?
zd0Kd>`y1xAnY>+!x|T~gBSq}R{4a%$Sp3&MH#uvlUW)0dMrsOjl|lTO&ZTXplXd0L
zKsKeq^X2xs{C?BWq^-j#{vwNqAyDgnjr_p0BQPNxK+9AVrh27hH<AGxa<&`dR#1o-
zervy=F}wltMCfO6ZrIIjrid2r;nJz-P*JE_YSzg=wDj+_Z<xC&aLGR=htZJuDkgI5
zv*uQKJ6vKS{#GqSiY*Z4GyGX|jIGc+9-bt|SxauE3EOr4_vS{~E=g78Y}q@5s`5Nu
z_qn-`>Q-!aaUJ#Iq8nWHqZug$2Vu<Ar3*Kd$t&3ap_^Y8nukv05sXjVKMi5XLwOX&
za@}7kB-iglGvp=yBVj<oTJ6#a8BAp>IfcUHdVX)*?=3r^cqN(|=22=RpJ+l9Fc!j%
z2<ZU;P$#89GYJ=@yuem-7AF_ZQrJMzZEBhc!Ha;h`WSO&4?Z%=GT|Z(9m+7Jh#@ir
zqLR<xYj-od34=!_i3qo;tIkj?)mmx`sca)${r8~x{SEySb?sXbiDVREh+Hf}<+Bel
z%P-OXqHslX2SSE`NWv6e2$_B_+YWA9#Az5TtXT!E6+yG{4*#L4+*1)aCyE)sx%DEa
z>wk*)&z-Ctbs);Y#1h7)lGOJ5ny+O|5qG63I<zQ^xfE$xOQ&XmZ%jnM|I7>a1r%F{
zERnW2u}t^SL(J7{^l2{D$s{IYpr!eoo!rN6)Mn&kghF8hjKqPs|2K2b678V~yRB}`
zBXpeH&FzIWVfBa!Sn6_hdY64_Ze=}~9zv7IT5yC6#OW4&m+W2Vj_$z-Jp4oC6NRux
zgregt#~ns3HHaITLJN26nQqm(=lOcUk9@_PN=bMKayVz1D=qna3I<gv*Fc+u1geK1
z(|I~zw!EinjkwD#RYRFdk{{V52=stMQJb}MQn<ERL{i!FKZE8q>QZy<7EzH~Ru|qm
zOJ!*8J`_2m?9s+dW+G8C!yoc(8`KGaGBU;Crh2fQr4%{mY%ouebuasm@gfOa8_WuB
z#ayisT2^5is57j$sTApJ%$OP#ZovL#PrsXK`hTN;AeeyjEmDj;EPP>Y#H{+wKFsIU
zQTHO4Bcj`!@n+6j`hCbS!sTp{xz4>!KU;lnSe=wN6zUM&p=yNr<pcdY>nO^BoVZ+o
zP&ijT&7Q*OeCZ~mw3U*Z65*`n>^?o!^nO6MPJ~!J>w+!A3NQSR`Fx1p5yJqJZnNTs
z6v5^I0Za^R)&nMVCXaFovAs~dFas*1lnSR5q;X<$?l60G=$yuYbAb$@r4Ucr$t-)u
zei*eAx%D_7c!c=>?g7*OijK!8ONfa`#=tf6s#8BU2XiE$JcQp4Bm&!M)vgowaHn6a
zos(Hymc%mZJ@#;qyibQ?sUiq<6i-7R!uX&G^v}Fy?p)Hh_yj2*^Zy7t5AZ6BEbfnO
zEvt*YP~_g3U|Ef(7khw^APGT25yWys0tu-mxilNawzjpdtM1x6y7t~tckLaqBZ>uG
z7j+dI>i7Gfxff9P`#zsXpEz^h_nmj%nKP&S&;P)i<3^6c8?xoNaP>z0YKND*N|s!L
zO!YQ^_-^EAoDuCaw9{&bfjxq~pNg^_Zd6^F+jF0=cvQdIY9$^`Zspf9y+>Bz9~^R8
z*t4zQ+UzWOxuwLb7IcKiVPOHlI*Q;-(+qe+pl!iD@y7?kkwbq$+fo2+3zeWc!a)mu
z)n1B2B-I{H7oE!*`j-Ouh6~*t9pQE8U+_2&ZBs?%1oZvlH^`N#m_9sA|JF$TVVG!z
z;H5C1hZMUH`-O_*xmkgVWHfZorjnj3E`yW=JV0s4`;tr6Jcl9x1V6Uz4u{@oFH!|p
zH@p*NdAYdXD9#W*sihrKgW1F~^^9UjnG4(_JB0tdXdR-D>BI}xl&EjzSzIiRm~wuF
zQMzpy_P7lnR<x$cBDaRr+s01}=*1(#2|o;|tyG*8dOne+4XG=3KOP?TKc}CXt5c1z
zkxy-Q_4N=zj0qH{tgYoQeNgD^biv3<a76dN9+vOlulB$aH-1(dn%~GuoamF^2&?w!
zS6fF&q%+k9<y@~DGptPI08ZPkU+u_JH=a1#WV8sJ9Ik3?xjUdLOc>v<b|}N)+Y>p1
z1ROQPjX8+-{dl)f^(ndv2oq!pCII>!&SN6A_+P&CdpyiOKp^51!<aDTXP0OE$Fus)
zBeF2Ag_3s&HbN^PO+R=(+&_NcJVLW0sD09v0{<lzY@*%Ygq?5R@iD#<DY>%}DmzT*
zv6%XH6v|rUkKUI)g4=8;D>q23onp#Nmbi~T_h+AJeN{{8f(0nA*h&B%^Q9kgmQ_?d
z5V%6B9oDGg@`41&r@GBT<9k$}!%5yb-E73(P73QKthk>%D+LPU5Bgm=eL24(){LjN
z8G0MM-^KZcNKEz*?|y1`s7JA+$OjiO(tKCAK{)v%D{M#cL$){OB_$3C^8Sp=pLSe<
zsdjN&6_>y|S?KQBF7*G8wFALb`7em0)IOw-9)3BCs0M-(rF$X_n7)Ja2VI$G?IU4T
z!S~5qzzJJBsJ84^tpM9sw^I6n%};&6JU69w(7^}WPlt&t1RG8!E!0nM9Wm&O(biF~
zT0E`O^hlNOShV+`1LMuBJ6T@{j9#w58UJGapl8S16?N$5m^c7$ctfg3j2!ge;R8At
zm~%Db6CZq;xCj3*Ud$$9zEn@dh^0Oty^BL*Pf*{;mf3LmXPC91=EmiI$yZ^*;nw-<
z3-jDpi^EIZ|FaLav(-1nl81UMQi<`z0@mE-&xDO;+l7PEgfT%xs)M*;|EI#kCs@Z=
zYH0SP)n3lx{_*K>%_YCRAb+h3e)AX#DcECFvl9OUYpVh|q*5{Bs8Yp9M9V%q2B?4A
zI4xB47H2u%9xo#w{IN;?-8!a~b=pH1AU_WRk@GLg*`VKm%h?J;<p|)=gAlpUy>wyD
zej5*{<usYVd4Q4O2IBy^Z)O;t*KhR=@-S91H~1xuOP-GON!R2o7&>ra4O)a8QXQQM
zYF8#|sC+f8g(I0b%v;C!zV`tL5WrzNCrmG;V6^ZQqe&g-;jUBAaxA`y@*+YpTimH)
zqLYc$j%%6Sqo^+ojb#cPj6cTQ$Vj^;!yu?Azy)Xe8x$yB+drSr=8OLMwTZ~kl~D8|
zO%OmE1|wC9qO7c5fmEk%5YF4eikQ~KvZE>hi-mpadI9!Dv1>7%xI0iQRa}$l-EyU$
z^|kFi6``aucS{4*`_u6hmyjJ><SySKEL%B1vXbv74|3JmVu{Ja8xfNj1%xo#(G!~8
z&@m;do%!ts{lt4(iO)v|0@?=>rrr6669dOdCF_(2k&jK)?(}B^j@e{OW60}H^>pC3
zHoiNIPTq0cmN_?_v#Uyjj6m=(S@Mi4a{Kq6!}5KSYr|6kny!t4%3`K~4;8NkjzY<X
z{;mwlNmhE}-6|@#_D!JH&)(!W^$Fl-!vW{+=t&Ix&?*fOwPHb|Hn&i|07NgmVw856
zow)I}?JqMRjiyRbHWuQtF=5EQFy)lEI#lHhQx0T*g)T8J>{nquRp?=|=0$f}HYQve
ze?O)rdmBOxiLoKIpZ$1EGcWSon6S-0);yXs7|9H}@bmgGc5iEg3JHab0~cN{K>%(X
z8xkefvvW@_E|}@mmg+>rp&*vKohF3C%IFk$s)^xXNffaFChZftj<Dvzprnxs?Fyw8
zxk3AeO=J5wZUM+9W%Nn}ULM>lY;$<LQ74awJdQJ?1mLk-AMNU}Uq6D#_g>+}RBTRX
zh;glKPIB+?$syJbAf{Dk54Qm>RknBNn*5t~SW?Qvs77mFd#J^3$v)w-IMh*SsO@kE
zmJ|}_%-JW*jkj5=xxj6@ci6AN?lM+&*J9p3wn3?Tt~}fmUu>-l5I}o}=i>#ncnE+#
zAmkMBEps=Ng?GkrD}bjh)9gmfDz)^e99$nB-NSmu<G?~A$8}o9hF&x()a`EV6Jf3E
zP?&@7*VK`y)+9m@SM2VZ5I)U?U<o%cnhWe4J$%X36dWpS^qHx!BHykD8wL?sqOL13
zv6HM80@k3G>ch`F{_kE^>UyI?_dx3%sg>FW=^txSaoH~>hWVqcr%Fy{4tfC~>L-PF
zYOJ+7B}+&lsuH)(_|Q7UTI+fU)DhcuZ%zs|Bduw$mHlgH`)IM|@e%GFA1;oYU?k<r
zXSAk8F-7fnK(Z6V-(t^D-h;v`Qejm*=I}#8zbd;Os~G=ZZznI>knM+L`;c&A>>tXC
z)wnRiT;GYIX@9Q54aST!Fyef7P6`|Sk4Kccm4}4SD*vyKC~;d)3S;9VL?(c&<aoNZ
zKAdr&T~nn(;+i{Q6pk7nI;*XDsN6w37+Ep+@UTn0HCE#$q5_TV5_-y9@nPYj*pt0;
zfxECiJU={hi?wEA?O{|l;nrYnVHLY|CWR}bO!y!3!-09;#849lUyn08p`w0bK%UB*
z=&KMKbCV{7&oyYyZhQmg*~c4L?DiNM9*#Qz|1YG41enoI-324U{!{GdB)iB|6{pxS
zm7z?(g}}EdQ3Z$&BNZoy+w8dTSIHSplm?>Os??oN=*Inie%KeWg;6j@a9ctW?%ESV
zO_SYsbW_VTEO_(?k?65*{$3hJN7?X;O~)c{Ee{`#v5Ts(ELj<GKXQz_bt=MB2U{1~
ztUM(I#~(T%6i$pk=OkqgDfB|Ij{U;9v9($SMUi=Of7e!ot72<CH63Mr5(X-9_v|13
zJ}KT7CR5Q-@M{o@6=APm-<i6~`-L6iz(;rL^w!29h70ND;Lsa?{);zaV{X1z$Qf_<
zABkjcXp%S;R;+8^a7DZVQyDD@oxQ;I85v5Z+K;o1=mnS6h0^9<H1g(8*M`RU%fSd2
z!6dmssoQa6*foC4><uub+iJrtY9!;ai692cSct`YCxkxw#PS=bdYYTC)~O7MLO(Wq
zD2d3KCwV~?Jgb7(Ju%#(c|vrg@G{Gi02Aw~4h|I(&mad74C(gVc9`B&Wmcfpi^hi=
zVkd5d>Fg=ol9D{@Ot335jqq=~dnSeJqp*cu!1(C+E!eP0;jqj@d$k-8!}eh0((lHH
zDLRfAK1zuwBLSpL49m4d$lHR31JWxUk7b}YDi019#`~bVVRkZjokjKI!p#TqdmPB5
zw?M<H;!}BKd97a+=4m+OkMYqs5c2r*g6dEnzvN(cJR&xpX<#rr_6wiIqw$wtzr@Wi
z51+&vt=*H4j&#^Q;q$nh*Y3eF>-N|y91*V>*D}qHa@_5%PifdOo`bb2F%{d9T!)s1
z+vBq<K>(B#fL!I|s)-xDh67X4Nw|xP-G-&%fOt|@sg&ttEJv+gY_*^F52vqQi@D%x
zFsmr<sw2CYp^iKx%!p?si%O0-JkAAfaeYX}+tr{?v&)JFx;gBiaAjPV<MBgC;eg&1
znKUMx7f*M-R{V<Gy2QP3NVp&lwN`oy+W@*u*IggJi@zoohn(qvm{^iphvchuVaND@
z+9o!jSWbm*-2b3(QyilmMfm-6f^s_q_NsB=2I&eGziFS2zQ(;IZ1<fIZi>g<_|9~r
z&VE)d5E^9V;h}dgy9C?K#2n2f?&3qk3W+~e05ggrkkAxpnG}4vtrjZdGTNz4GgJ+c
zXBWEH4-V-l1;;Do!7FyQsHenD7?a)W)T&qZH6_cYk?zh66uKS8gxBI_zgQg{d;Rwc
z2S`E+@|{&Nd6nzNgqte*&*M@E=Anzm^FRb3-|e<p4)80PO~WPiFmM5vpvzzKRL+o{
zjhV7~Sv!)GLrfWK1RTg}dOYX5!hyf#hb(dPdc%aw0SA6epduvP!Q&yxkCTFtu1S}h
z<mB<;sZu);CeBbEpbAn0f1e#Xn(*qX)E=LRQlaLFe6z`y{tE{o_;A&T7AzHFn|G7<
zzHA;~f+P4*<p4H!&DH)NwYY0kOfl8*ks@J)v<d%Sb&7warQa`{U9oh*+#SOYi_M{i
z*U5ZXR8_@4m*+<99S+=nM{RVx7pNOrHd<$ZOzXl0DX3woUqe7exhJ@bu=)#J@;kpc
zQcsWK3}{HDkuvn~v2XfO^+<IM<|ha^qQP|VDyx3-1Iw*ra0@jjaY4|b!lvi1W98Pk
zViW?Boq^J7*HCxy2i;7S3hJmEr+^6&UTOilrNff=xn!u-wzP6e66@Dzpj!5vbq4-}
z<8=tQTimQxhoQU_CRsA|CWJ>$`GtS7C>Q6wd#*FI-n?TIM*N7Dwq6h&IP2VF{|Gm4
z*H;|Zb!f!YbHGL|D9u$6Z@YcNUH9&|kWDoLdk>RLG_ohn_D!!0SZDz?B3F|s@-6H^
z(Ru#f<pUNXyEIRo(^y|HLqqn}<Ilf*z`|-Jd!?E?r>n#U1`bTEC;F>z8L)6TMb5gL
zsY#*r$m{p*@{ip(U?H2lh8$P~m!j50A7}b6xs7g5xJ8__I$Gr;IsZsM<+1?_IctWu
zwJ^*S+}EbsYXG=J4r=u$Uol|eFiiGrJH8d%%Ex;D=75C)1(R@zr-Nx_Kh5?#y~f>e
zXJYC0GA_0dud!&ZKkPAnP4shGW9Rf9fYvy_G#@w2@aO+!z(VsiPVdm`0eA(IbhJPI
z*#QgLiX42rH=Yqf)UJPzzxetAwFhD>w{*8Q%u0avLLtPdIkX1Y#=@}KUj1r^Fpl1)
zCL&w%@hO+4zN*aiHiuif`>94H{;?(0zyrOl6c$eL?`{j{tm?0>F=i@qLttRIia`$E
z9QNM?)^!YeNh=ldEhrQT`xZBcziw<DLrKauwH8k(eg`_P`V`@^#uZ9oP*%eg&xcFu
z2mYd+XhVU!`?>JNK?CIp9YVRk>2j;6P}-<R{QO)To%kc6AtucPXNICh3H16+Uhqe4
zMW68|EKdwY;&*)33Us`{ypM~Y^5^bCcM*;@j5N8p@mHrQ-#*K^k3RG_RMVMHIDn8&
z>>Sh7vlQ=Tc}am-D9T^*^%LzUpbH3*Oh!CHM-IGlu|NJO>p(P6*O#yUo1RA+@Q_bm
zN(XFtP`$t55ALu_>Vb#Kt!hu<9Np_Rzekhx;Fe|8$t6}^V!qsezTq3|=ptEt`m)|1
z69=Xd8hNA>=exeI_<Ogbi?9VR4NM1?qUkc?czIabsL1w~ugJICTHQ$vk+<UD`Qiot
zhY8j(4u~hdW5!rYDk8ay%lx3p^c1s&Q;ndpQ0kQd_xwtK-fNknt*h%8gAOco`@Rzv
zlqK&$@<9t_p1g9V=a7fOT}8AK?ZHDT+Bo1Rt~Dp8{)>bKD7rf*x20xa4(8_Z0u4jL
z1Do6JM*t6FQ)sW?MJjSDmWM6#lb17n^*Clt%o0v2afNeo4&NPLA?@(JMBdbV;a)eK
zpHsFg4nrlFvaMKcXJ3;uZiJCXk7U0?P)Rf5uwy~aq-tv(oH_GV&358Ha`vkFRcm3k
zm8T)pIq+L0*Rf#O3+XvI1>T-F_**eyo87r^LCz7w`mb?BmZJk?JegVVCaFb8oQ!u9
zy&&t|RC318=jOb<0rw;ym!~x)DoND_c8`1Cy?<U#?$3<x7gv;KuVAx)Vi4yw2VRl;
z@}Qh47cz{sTJb7nTXmL_7_Z>mq1WfE*v1}M%}W?{dm(Nmcji?&A8g1hs}?l%1oYBi
z?epC4_8j!w=iC@}gvcTeZ8fNbJq8{6t+m#*_83h&Ui4zOPSK#lzp&<N_8^{eVLd+E
zeNfXg);Jnlm`2HkAOAS0Zk07Y9tpZZ3gx-G$_HKZI~xRYpTx{rQ#A^f==Qq|y8I{R
zf(#9+W7z1Z3SZ*(I4tMEe_DGr`535xVmiXpLS?2ya_)HaH&>Lo+{1GI!xc=_>YQbr
zwMay4#j!cdZln*KJB*MqB2gqK-{aGBiea!{{Xt9Cd}LN%c2VhIx$*j({L23OGvta!
zj%&n=OSk2GK5gLsC}tzS2J(F6AvsIt^S}5&Q*977xXr6`uIjRey56R)Wy_q~xjv_A
z9xWW91ZbHv+%L|ZH8H2|!yR?&1HTrdyK}$q$Qg3%!2S9BRNR}M%AJ;?41;ssvvRt4
zAk8C|^`u*g>+{=nx^jw}Xk;lsLEb{8S#CMy=$!X<r;#$lFegZ!xJhj}_k6-r@PseJ
z-OiP7%*a``V#obiBcwm6p=@T(-TM!GofE#E#Ha3AoN1hPdG7R^liP&E>)4|sIwz+%
z9Y{<P5be#|lRJJt@O7OgfC5|LK1WRC<<Zk{eDd4{+)419cD@}tmlnr!4=2z5CZS+o
zH9TW8nvry9hlKpf-NtW*!tMM0uR_d4c?3DzZt&-vm{d1qL{O9fWdePaHv9gAK5?P-
zAb16n0zcn_@S(eiDLvsf-+EqB(^Ctg)@I_FKjoa8KXBpjVyS8^)1-m0M5i6=EAB-z
zKz_6+3kn_0{qq<<>f*R;Q)~y0f70#>+<-xYsF$wz)`+$b8_4bu?0D{egU+k4-%@9c
z4T7xvxZj`~Hn!hUlYq5N*a2x<xZ9v5edA4moN=6&N<+A7n?dWw-^P2cz8}@9T7hFH
zh7;s#kEIZd6aJ{$LHi80+W_3_XvAh~Cz%N6<vN1~)oo@^T|4?#wmSNTlwa!t%<0Sp
zxRR@z+L3>f(1gjb#sJx!Jt*f?qzaZGU{s~(G37g+HRy?+0WuOQ*|Hqt98@24hw_ZQ
zzs8G3t}do}b^m+Fuo~BvYHXoKm<;MXMA$YP<?MG^@_km{n9iPN+!(#i?fH0e%tkwH
zj}=~zjOL^^tlr$uk|+Lspjt<$C^H%rhsuv1C;xQ2HCD`0L`OwGT-guF+b=;WLAj@L
zPj^cii%KWLq~+m=yn*xh#TfJ~63Pj5r?ABeRXE|}Md8i9b`c2>T&BWc*g~wB#DBxi
z$5E<T+G^+IRuKpi2qve0Z4#TcyP#BA%{qu+U7Ie9W%Ix3!U*aXt>(m8Lmg$@4_S^V
z2C$l|jJ=X!75ViOSdNF}9Dkdo#{c5ch1rf@y$O#lUj69b6!k-u$d<|Cq(YVgVdTIh
z37<)ue^SngrQ~so^=CEJ9Reatb%*vUiA_<x1kRZ(&BQM!l3?^2qBNiZs|o5jK4)bZ
zD1LbbgeGf~1g_zA;~U3G*$v@S)siNK4j8APHwA9Re1FSgv*rflxMKyYWO&}Qe$EE5
zh7giSUR;&4DRq7R<FC!L_EDW(RO18pPd+cIm9TNu{X^G!);XNi3i;D<d!WcXylL2U
zBWp)dSCxrwx&En2RK%Jsf89g(FT-#+#j&}gU07zI_u=pOX}ek<W&x$A3CDq}Vs$_N
zobTDqIz}?_R>9eF%MoZrOZ=>%)`iMAHI>#r1r&bM>;AOuQQ-51p>3rZTq0lR$|FLb
zKU;HEXB%dMnlX;{pB!HQ6F13cTc<I7iFzd}+7qLZBC4P%_{h%-{aF{=v{ho|TGe^t
z=4{+2b__fHWF1PCT-8juZ}Ld;UFi@0cbE{oDEA~B+uEBL-jNvE)Sak9qI8jTs-T<P
z_d{0s^-JyPgOOaF-BZv7sPrsUe)kL986n?`n+i5)g7tYIq+H?0{=2uWXK<=9LC_hV
zL^3n1x4_L=?k|1EMg+i~z-IiO>|v7s|K%r)ut8B8-X4YjlV#Wc1;1;(wNGS%G4BCC
zmb=}*@mDol>)2S{lF5}0b<Qh(M4xyUyfte+Fn9+rFK_$H24^0Dmj_IWEg3vO3_SNu
zf5bkqvt??=#s`~B@vY$>_=^t6^pMYJ-V?B>2!oB^@eAYAs#Z~B$kwI|_64u_GmGpB
zyha&`Useum(|z)u-)>v$LH7p#(ryb~CBr!E{nT9Rs%f&-QVRUgUGbRza@}|V#`A1R
zd^P|ok<#KfqzF8JanQ~{RniLM5~|PL<4@>I4_jLr6q$-Ry2>e~Q{<*@9Qtf&7maIb
z=~d*ggS~;STk1CdT}UNafO4m{umH8xfcbH#E9!iFNgTwg-Z+N1&o1j1I^*a#kTM&M
z04XQcreUnND@g5OeN_UcXTo*#X(yIBziAj6*C0RuVt|;q(R))0EW;hNMM(eNF0aPp
z(XLe#*EJ{u@`Be78!=Me9CtQ4F2H%B*jsNH_A9g2`lhs;?OLw9TD%~Yur3xn!%S4f
z<vx+(E&K#mzuR@au-$g{69z2z4r)`myY6$pAWbXGE(Fx22xjg}BoXC{{M1Lkvc+D>
zhcUlU_STT0;PIkFRlY0x&=38TUlqH`ZgU+Go<!f;da*z1JG*!&PDcV)RJW01F7|%A
z$bTDq2?s>oL*;OedDma?p>3c#t?!J8GMxA|FOvCXZ-9>1DAxq|aX^*;_clZfu{mlx
zn-!FC+Z_-_oM2zNhSe$Ih-4~po9+})mQ>trL<)(DyPhnHLU+XWVZHNtq-7)!1LG5-
zS|Mal=pP=qkPeD@0gyD$Y>#;`RE4kH4gAS>pGG&)ZcOYn5n+LG*4;6j^)fDxLX0q|
z3V1kP3O><c6=B?|Hl}KTUp-y8=2(2fB9-hHa;q7Zozj@kO!VaDL@gVRiwoIQCGMKK
zQ2x2yv}z>?L|uxv4YQy!9QKgCQMDZ9as3tJRW8t5-FQ2fAXihIe_AU*3fYF&SBKYo
zZMsIUY|fO0%_I4w)a|`jpx&e=Vr(<w<5#mF;D>D)G;w4v;IEVB+N|kA;TV@|l57YR
zus448`#oY4BN16I(iNe;+gGs#xGjNjbi+X*?DT<6ZaqkAmR+vUdl^|r^)o&Uj?52E
zw?}ZkWMo+}arbg}+fL!N1@;6vUt6buqSK)PT$NaYRi{0j1M->pi&fyY74^q-x_^@}
z^*Ouan(}@{?ub8xXJ%PzrJUn35p<4Sw_SMkGHb4BQNpvWiSq`8Nq@1%YG&0I3klVn
z7zm!-bw~*yuh+~9Ujn;KIz<WXGHNg4IFn<Z)NtfK+_Wv>tc$p=6vBY+-gc=f6d^*n
zSUf7cq}8XY!xH8u870YzT=ECM#~yqrb?FcQR1sy1m7p3tAl#*1mWQUF!!A8Vff{87
z0w8J$9V(BABDJ!c3D+W{HW};n_LIVAORNX<hQ?Q}@$GwDxaUDy37M(RS)3i-2*lmX
znfJ|ljKSg&3YxWhSgvtn(;!Qm+Dsyp6qVxg?6-M%<aN5R1v$v0mzj3h2>OO{sWT{@
ztEi*c(w>zvqtnggH?vLi-PU#CgZZ`xsFJ3Y#JA4FsZ-{z*)N=Tv90L3Hi@aY*b9Uk
zo4r>kyW5uZNKjpTLYCE^28I*<{_7peW;$_jC__QvO({jlv?_!`)QXGH<gVEzeqI9a
zz?BF(qfqAYfC*QISAMpeaj0}OtfZJAqf$xB%`3wpQfy#yL%hviy?zDAt=%=;cezbO
zEqgF4%7M^OKYNq#c}^UKViO&?R1mfoV&$Xl?wJ$jYIdpWjBF>jl?V@$Tk2-yg+p$Q
z1HmXo9OV&WDRTcMg#H)1on#o>tQiYV!4XN$f9xGbT}ugPw45|55t+TkE^)V?f19-d
z`;8xuWK<Y&?(ttQu=a^fq)c%O8N&<j@IT+$U#c!41;9+wbjwh7&YI(kUa|Iysj9^Y
z>yVpul>h1l+KSQ2K)-SZm66ixcDl>&v@kX!WI6t+cP&c}Mf#9Cebu9suqH0S(9<(n
z!d$)H6@Ka&Hj>Jzyvq!d&WH^cyK8Up>pj4)Rqc(lhI_Sf*eLy~_*(zPGxmrvEUv7E
zBesxBZ}ay*%e_d32EgB#o(<y@>+!jZ{9zw*0cIr$?L;vU<@giO$}c&`A2f>#h~`dC
zH?XbLj+OA#nf}5Vb_JeszNng+{^E1|3jLhOj#P2`kO22N;{WCcsCqVm<1{C)vaNVK
zd_LD+>W@F&MufkD=oU(_>R_%q(|`Oe&E|FJXu`c>XDRhbS>$*5tsb;#f>Wp$83;;*
z^cVtIoJV7?@<WfePO_^YSO!kV;;FpUkDnb|o110>L&&832)oF>;!0GUtNmvu*eea`
z?9QZ0v3Qy2%l$|5Z90dhz=q=ek^dZ3?sk9KLyQr8j8rRXjhDKdJN&a3*tiGtX&YN8
z=VrghckCK(^{+B+y^|qW0G~*;f?=cmCi{-k)?4@&jgX9Jck`7#?>T$!=y;PN=If%{
z{lC?y+N?bS)b%p;<&0tKd_UzB?oJp!mEaA?4HJWZf&1!jzEm@u@5Xm>&I#RSYe*K_
zgxmbH_wa1igJgiBp|G%t!{f8t{dlct@GQ&`aSXNqLH#`U=zYHONt?<F<<@DjD0Ikp
zF86OSO$=ZRvAgM(QeTSK<;=hOEm*%St{T=H^+56vK2MzKKS|r5z<G;PgbgOg&0}}@
zL3i6^5M1fOW-P<Bed-$TcxN<OOGisou~WGK1w7BaeY?MNh23a$3*W}>!=sM6)BpZ1
zyQB&?7(Zp_?Y6*g@v#lCss)TiHxq|)>OQ)_FFMoiP&s8vW|@g_sOnDtIFf;<GDOV{
z>K`k=_)32~ci|aBNQ)xT1?B)kgzk6e_z^69+AF$<7;$q2`ENhVr@Cz#tMQOYao0Rz
z%DW5i^2^xlx(~;>ay__&0xNF*`Tp{GHq0S}_-$*IG70l8@XP;X!>q@i!G9+e$7+Wj
zbGN@Z?uQ}LXyXULU)%30zX>aXPcwwVnC+CJw=Y%bmR#nW^`(@B%mIg^vDEE)ng8R3
zHqZ*-D)KFr)B5m@{<0{ns+(jFY4GLjr<ecXhdjcqaeYb=Lkm$T_=Ow%-T&aea%;9D
zcB1}-EnevEyWKy0wRH`bjmQ;<umaa|ho5+jHCKUo!GRd{SIA=W+{8Ql*Vpk3oV;m-
zB<G@te6G2}KXrv&F$~NL&oCK77txM8eeG58@#H@MQ@7PjSDAb8R)UW<71}k`B-MiE
z<j9*&kl9W)=dbejGABHNAcd?K7B%bi)r<YB$8t}$LAqPqCz>wS=}DLS_0FT6dJ7y5
zO)>orcP9Jgk@>#3g_*>GViW~!O{AbO^U8iNxY3_}vfZxUI03AKjCuFBYkl=e{f96m
z69IKk?Syp+w;GQ<@}=YtWBLu@K_rH2_j2As<&o#Y8Oe)R^c#ZVF?jhjW(P7Aylk&s
zn%wa(eTU%rfgpp#;mOE41+nu1Kd>_QOdkKW_0~}9x2~;)oL()vGO5Go?wZ_q8J(<m
z>1*Wn0Xrr+(IO7rPbc5K-#SNwbHKNdsN_lk;qzoVe0ERr)0gR%g^IV7FdV-i!JoL`
z)K29TBe`~MPv*>u4^Jf^D@iqQbv}RzcjF$(!%yowglRR^kK_l)T-?!{`2pwK?}y<i
zfsmxv?kaJFGl>X4Uf{Qiljpo+!{WJvQ(qw43B^kHy6Ds7k~8Tc0LrZO&L-KNL2z(C
zzOCP3eddi6r{0-O4I)mE{700OZ{)Ywh8}%5P<|DdsYJa?r4G$qoZR3u>muVhmD`;r
z$^fj2u`hlo`Rc9x1Q-w^%BB<GD9T1}Z?bkmKfM%A6UekQBNQT^+(ekq@<ey|gKwO{
z2ni3RzEIM?iEA=MmnDb3Z_gr>ISc57b#ScT_<nNx4>EUDWF1N~RwGtesr#wF-{*|J
z8ileRI#@!iMWx5CIw|>NhrKQ9YH4q(y_0EB-eg%H|A!6ffZ;0D*v*a5kT}2YUzPka
zC*G(d)tts@T!ey?=N@WF=BDiD<Jekck1G}V-sQ=scFsOkU=d?eupG-r(#h|p@Owmd
zCy`^E`f}?ocs03bTUv3Ib;|p1PUc-ha=S(Lorl0k10KY<dC=bT-Ct{xQ<k$ZEU-ho
zqR41K9_izUKHpbP@X<}JlK4;#p!`n@pB!V*m%(YW$cej@w}tKI0g+LD-c%fb+PtNb
z?A1qvC0&LGHm@N_4n}nCl<<iFH5`+vE-oiOpwMk_a`?QJUvj7lz121qz#gJeTzoIi
z4}TUa5n`-qI*&NF8#y7F(0QkaV<U_c@rv&{4d4cy)tzx%I7#p(Le4-~8`CH*OnWK1
z^WCS0PxrI|jYBgsq)J&CCilFl;ffsE5r#@7CF7J36Xs}%JLr&b$`;&<<gL#1j2`2R
zVS}i0EQwTZ;^^>^r<*eu5u^9!i@7)2!tQ{_82nHjfHoh(CVV_Q96cirtdoorY$1G0
zrS7Gp!a@*MJbm~yID8tx8FPD7X}4-bICXt{y0D&E6l0P5U~G6lK0pXQK)Ri1b39;=
z-mvF<`+daRYc@6?6}|`JEQ4JzW~g5HmfiO5;O1blZV2B2+Gc)hn&_7t)8WH;`Q3S8
zw19I8%#r|sux35-yH{JoTl?7Sk+;aNO_PELG2h*LbQnB~E0E%R5o|OAgcdQ1oAwQT
z`Bsc#JYTk5`Rb7H6%x}7-wxsm<ro2@)qzEE6_ka;!Y4eNInYMa`{~L5?G0m(vS06P
zNt4VVCJWgE)5Av~Ah~;88dYDAwnRlrzN(JI@M%IZgF)x6gBn9G7<TR|lr5&BB>)&<
z=S|(AhFjBx;A7}K5&7mG><ovdc_OHe6!SJ+FkGA(C>&>ocUZ9uTo_^wNO-wOhjw|b
zVXhG6U=zrk5af?ze0+WQQusZoe`3l3<6q>KcZ3&&&*KhOjhLOI_!b*ukEXCryS)w`
zN(>HMQYiOWx0A#Cz!idmfGoGcl&Zw^*K@-|)2(B4T<xWzhT8sw@MfpI5&`<mCpVq*
zr}?2WMzY4IQn7S08N4O#i3uTB9~Mwn8kQvVLNtDkRM4dOIL3w{{dfk9q4<-hgPKO?
z&jZ-x(&4~e?BPUWnI3duktT<oPPA7TBc>BRHUj#phH(D&{IZ<QWFCSZGR!qFl6E0E
zEO6Jig^FT+z;+^1AZ&9v`qhq8!grdzd>xqV0@8YzZPMjR+-E0;oRjQ=HOmL4em6E1
zIs}R3624eegn-cj?wAwm5J~Lkx-QU)d>&N3b;pOw_-pJz6G>=N3y%*+_Smhf*puCv
zdnnuMq*NFd#hTU^83s_3kr&{8Yz`v_as}RomPYo4&0W6uLBBg8{0WJ~;;NKcpq&rx
zYmuAM6}COW+N-c&nl*b?x&8WCVX>aD_UbQmAN7VqkG8Rcb1-}&;*=zwYYOeBLxmwm
zw`1XAwd~Xt-fFQQk86UDO13Q4#;oz-h&q0q@2WU16s-{?l==SV@bEs^Pde6mCw#E!
zmQbs_3~Vp$6%!lyq4V7<UEvJ@WGQdf)`i~BLip<B@aSy&t-0=4{3SSmT;sHGJy>AL
zcDRP+Q6dDyQFHjLa87N!1D<T<CgMy#bY6Iu8L>^l7R8?_4p%u4*yB%28fk5qq@{wC
zE9?lnYog$xLz_c-m?x2Qqf}q|;Y0bo(zH6Ka_lnbIWxm;1$GZGTB&wLSCCD!C)?q}
ztJpho8Y6`{mq3L)I5)f-ce$n<G@@2L^nvISjp1!X9TTR*2X_G&TcBoI`|}#ZwwyAE
zfWb{oQ&|WEggIp19u_g((j8zA?vx-XD?(}?|L1TwBjr}ra=^E-?u$U}xVfotjPk8y
z_oiVGg!d73J|7oiT|?M*7(IB6*hmsg;H^;9+%xBf%RAzu@$Iz;a4Y2f^4d@=STQkb
zEF%`P)`M)~^r2yzZbU4EZ8{ACPL97GlrBtAf-a|oowY9rU~|e$Ze|pSF68a9w(zme
zlwwz<gF2pkC7k#_P7k{t%N6W!K}bwOaUzzuojSu`O6*n@<^<Cu7P|7u;mVoz_@Q`t
zx?85PlH>`<IWIgaB(8GZo7$D^4AiO|@8Fo(;fW}~>tx~0Mtrf8aOvFA9d6XRVL5gq
zMP=6CKR*=BjZIB6iGPXwy6%iHMdM>4IIpELXv--%=)9hAOI%)TXzr~g1`kWI>(>z8
z6a?KoB%P>DcBm0!0{1j0j6UAFhIFzv?Bv90Tj2JZ6Sg|e9y2tm1tpZ~a3?p1;->g;
zJ5GVbBF6Hhr8S0=ku}Vxva$4;L64Cj-yLS8``;$KO-md4ekaT%@Q_Hut(Z+1>V3em
zfKd&c_Wbzd#@qGPZ-=B>W^%lebS2nYvD;=`^0qDd-o`hsn9k)Wm7pVYg+c!G`sAMm
zS<g7k2To+1S^#0o-OOu}19LJRB1GXDbp2fHX}9>g<nFoloO;kO?G0$a@kuO;AIBu`
z-^%(b+L|$Z#u40*2|>~G+&nCk;zN^<ZfpHO?TwH;JNop&$?@CMgIxm}T3P43e_k%x
zC+;7QCSNSHvB-{!@85|H($cM0!5GUW)7*V|b@I+#<FK$PI`Q*D>cY~<qZ?cQ;mYLU
zNp8aZInvmuIP>$s4nu%^adP@j|IgbipW%(GlIh*-S5+xW*fsMFWPjn|TF$H$=H(I`
zaTi{ne9tq65=_YMUOYKd(IN?D=`)ZhK0UeaSR0{zyVP3W?&I;vL3}%H^d{7Ga>nB&
zr9+e354HATl(EmgdWGz)rfDcBKrHRn=T;_r_Kml0o4j;#Q+Hx$Csv`h222S!vt9A%
z<h6h7dmExa6qspv60`(Z5@#<+Rt>gGq4fd36TcP1-Sp7p=6n$rgI=bkowX(aN-h)b
zK1(K#jFUZz@Qch|G)b)-!q^j&b^UCjNXo^-mcl5>P35xG;r1=$4&<xCsdz(jo!#wM
z5S28xv^D>iK0b)pX1~2TS;GfGs~N&Rls%V9K%U5)bILLR1r?8+ovhx{u78&Mf;F~p
z0AAmHa9wgoeFOO2Qn)O&4{(6+(0upC@yR!|LvW44D9KClaR4CN3_jkLynBrG{r1yQ
zDRp}CTY8zUA*lxFm!;6)Rbeuaz@u(Y&fn$#^Tr&PtKXRTu{MRhuhPY~xGDLcxByxD
z^e|1VncM;tpMtxSCCoFcc1UO3YJ&6RqEfggE=W$=gD#5G*j7R~Oy^}wA<@ju<Ivse
zu;kluhSx|9=1~l;JcaG0sifeN+u)w$r90d3>)-E89N5W!5HDzD@eNB5Ab-0vxtup-
zvp`Y?y@WDu*mera{PD`<{A#*@GyQto32XU>s^l{Xo7N#DAd#1xYJmYoe4EUAnM<`M
zhfTI;ul*VGNW9wfy5vm=AU<OSWNr<qkNEibs&Y$NAXRgck88K!LDH6p<AiF(J#t5~
zAB+4qOIEmt?~};~ckNqSDLc-H|8Oo>)gW-m{CZ=H44;SmTvO2?X1O7?Y!#?JT8_0Y
z!2wt?jkK4$FD8XP=Nb{q@Q$ep7uSr;cjsLgW*lLJF8JLW?YF~4^a7p1m1p*=t&(J)
z+ziYUqP=D}WDIXM_rNfALBHA&m=?HQ7*E~7Oj+*1;j$6^YR8m=dz~q5rrC`dTI^o_
zBJ95{q%hbLEmJ{oiTtH{6i4XfL&N;TU>Cu#;<)GJs2#!Acy?;oevA!$ywWebd!}&Y
zYxt$^w8oG;CBq}r9yvsYj%0h}{XM*JI1DDBxH>v#-~<><34vMZaB895ryloP_9jf*
z(u2co^ZQLfWYK|-*SP`5CT1;3Op#j}y3w5hTYg)Y*!x*psL=t@1M&0S>k=y-rvX}K
zjI(O;@;ci&_nkYgHBtE-9p*u3Y3y|Fw$4P&qJ$Vt6nntaGAox*ZWrRDhxJEhCq9=C
z|LZFk8}ZJQ&@VwztD{DQK!080pT3tI8q_0M7htu4-r;sZVLTuaN;W0!2EsiNvZh1}
zhO&UbJAY^Y$NiuoA`t_>eshXIK9k^1c-7Z!!v$h4B@BRbB9}_P;D(!K%1_NOhPC;B
zPBK2RS{#JZpNy+5)dr=Oe3*IejeLLh4*f-Jd0-mWD$t!GT%AgYS={X6i9Nj8KXoZ1
zmZ{xl!zDPzm17(H0}!%_;d0HOGBK45=_1E~{PWcp_$wQ^gGKw5Fl)?MJ(LxbjSN!A
zUAA5LKxs(8!<i3-b8@>=Fyo<83LW~Vr+nh_NMi(7BXiS9bUiInJjnv1^8NZoe=!uh
zyhl|^4n3kiMRw~GbN%H|>Cu6JOhJv7+axMV=9ibmcPvjMzQV3b|5(a?R)b@&M{Azq
z2691<@T<CFN0Tx{sBK0WSKjK)I=}whI4HRNAi-mDyX=Nyymimr?(c#9l-wLeH$-#R
z0W+quGxOZZmwD*r^tyE|aGK);li&7<JA6Bwfwb1NMBXhl8y?hkhrdxDKxa3LMSxG(
zp!)hN;k;uV)q*9#6qo;94!Om<g`wiO#pl@EDe7KJLS*I5$qjeC$?Ywi%lSueIN!Jm
zr!Mx7Zf%QX81kB6A!{qLwRLUbLxusbDJ{|<B~?+4<r9Afyj<MLVljBpu>e{iMPPIo
zp{%>y4Z@AvbIZtI*}^8oG=a3E$gTI8|I7Pa3ueHcq^w3TfsAj{<$mCg_WA^mQ8Z}>
z?2_k}e&YLyaSZ|!6jp|vS!2`Sc}1p>H^&2ydDSmt@8~OIfa3z5Wu(G#15*?80RQ8K
zb_X))Gc>%IxJ=fA@A`@Ru!iM-ZRl)DPr)2gw$%<Bg`Yp?qZ>X3ohCJ%X(YnK*Z9wT
zf7J@>BDmQ7k&YZX_^2nI;itT6pNY7t1vfdMc*d>kg?-`R<FhJ%m+!=a<#k8j?mrfX
zB60;nzD`0&_#tr0{^^hYy}#JcE3g1WFN!yT+xPv{@Bg6vz6MpZTSANN$&E%<`HF|^
zgAYS-fJC#qah4fZ+InXn5RMQToHQ091e3W2xS-p#!jI${*k2%!geJtkIUYBL+y5Is
z?;fsD#zK0QNE&Uck?cqI3(Ggp&HTpqg_BMT2`6~RtX$%J1Z^X+6RtrXd*By-+dj-I
z)tmG!d1*u(YUs~<hGqY?=hle8kJL|lLvlHp^nHKub70Uz{>2cV^kgWRFw`Mp3;vOF
z?1nn6S?wlrmrwtgwMy0?^OlnrYFBb=a?jYkz`_B5=DANl_ro8s-5ZxG3MRe<F)B{R
zK`cr+SeBsMI>fIy%;pd?SN;?^A4pllKXPtiI5N^?S4*%=K9Y9Xha+-A@!MR2Q;v0S
z??LV>Vnx}KiiFi&>+6oRAH+vbUM{m2^9j{H&u#R)-wN?ym#^lPOG|1|0)imXE&dwB
z5#8}(zA7;@(L)nG;5XvoPT%df>)|(K?Je(sxD|;FFDw(eNw1&F#e7{PGv%UKqv(@(
zllZzT{C!$QTJZ6_BErQbA8i;0e`n7-Fx72r(PFn-cDFAOBXPMK3JJST4`3GEV3#1M
z?%U(%z@f}47$&%Yv3c_GdB%q;{8BM>%AiTGNgB1sBX#((KlzPs<%U_pQ3)+^_PE`{
z*mtZQiqh$trPzMUZeb;p3|TRY0c-;qW?13cp?BWv=gen8m`@ZkL6IqHd$vC0`yI}m
z6f0vl@S(e4kLMsYNXwyD_}k8~=M2%NBeYR$6sdk-sDSI2m(ix4jGQ($zOR1t7jDIy
zkiMW38A2F<d_27Wi+(ykhY7w`Y}3%Ua-inIQ8nASgTMAKkZ3D@Wo`u}rvyAmRkrYH
z=lR|07&DTfg(C_^P8`Y-P~BVk1v9xHDkZo;ox)52_7Ods`=4ghgL{FO)WjF!pvrU4
z9O?gFVSbsld}8>EK5Y(P53u%;_=6fPp`YMYzB{`!ysa=oK4Ao<Z<_<KKyiY@Tf#Rx
zVfvF~ASXO(IMWXXufQEXHSD<`Jyrn_9}m(Nu~|&%%rGL7b5trgO-KeOMdR2|Blibs
zDj6aHa>R;VYe(1`zwnx7bAC@$>Z4G#*LH;Ezv%u&Gf%FS<6qAxAer#(L&Cay+kot?
zjsFD}bhpEVP==#X1I2YlIJlz~_YSH7h)=hCVpu50Ewawy7s@&-cW2KJPYkx!@h#JE
z*RVtojAib`<HA!1SUc!fHI=&IbHZ!PHGhqnLGA*Lyl#4axN{$CL_?MrH~Q;I*D7-B
z&I>=wrJ4zA$d{j1i3oJllUl-F8mWk(S_w6fvIFs>n{#Z~Nr5NaXM7vdP<cujV;^>0
z@I}^+R~?^RKC9Rrdt7)=v#|C(n9B8!3&Z0*?9=lV@g?LFE_1IQ9s0(*nDdvjNx>b!
zC`X0e;*Ab$>FJUilAzM;@Ob>~cm+@xpI{Snjt-Z`UyhhTA_;y^nyHj`RQOo=_e!9Q
z!y}M&!JLqkYY^gKk=Dmw6DxGj92d&)<I*v4299ZU<jznm4eVI4dvi{>CQj(cmWGCw
znQ~gHr_3EcH@p^m)?6nN5cL+hx8{cS{eN}WY;V5%-Mla%^EvUf#(S3HbeKCY42omH
zqEw)YDJj88x%>R^b9|!;ByLakf^zqd`Qh2J{xTRwHi5XsgqVL|V#Pu;Ar6A$H`R*;
z*_J{PbME$$i9bDNCIgNRXchT!-qDG--?AT9HNjCx%NDhX10SY^ypdGzY>7Pg^Kpsp
z<un1YOHJu??(~U?8+4x{mwCeA7G-)lch0QDQ!mm1cn3p;6PDcZ@5Uy2p2)P#hGEOS
zQ=fQG4bu0H<bmh4BnG~~|C5Z_($$5F-8nx!QS!R|WMWfydI~?P?@ny<Oy(|)m_e50
z_H9$*KAAuyTsNm@V^zABs}gBhOE?~zQ&SM5uBA4y^ijL8x}|~1nAn2YbB{MCHh9{8
zH@Io%CUOxpaUc9V@N(H+SaXySOH`vEIJf@f#3KDtHbQrzqLH29=8sOC{<8hB4iU~f
zmQ6{#t1BfIrsHU9f=$M`hLMSjUP|<ly(g0b0ScO{hy-$~++4ZNj(w19cvLZd&=on<
z9)8iEzjA<nJ|0y9`_s@P@C%c5@lSu!x7G!u1>*vUGu}F!4&AtU(ECY8a3??LA6RO?
z8G*%R8$S)=yZ~65t9ioT^*Mc<3!JXeH>CWGeD~;C{)Vfp$1sVk6FJ56+>w|0@2|6V
zoD^W{h2W=$Rgt{V7he0Tp6p<%Fec)!j=#{KcMZS7*RvW2BZ0!3tap~RR{-wU<4B<?
za?d>HPdb%mrfM=cFwmRoGJS@!Uy$APVRzyskl&mmm^0wo+x(nLyP}q5ihUr+5$a8$
zyYz8?#~1WKMMLgPtM)(6+kCg_b^fjAvhC253-l<?s>N6MyI-+(To%}2Gz$mYd9lC$
z1#2FL8z7Ut!>4UYa9e8p<sp8!^s$%hH{$)WA>a<imwl<96mK~UZH}YJvLeV(%X6hy
z`|m&D5?Jj4T?wkLx<?z_?fZY#U+=&6+m!NI3;yYo`gBxF5{iM*m8j;@@;m(PpK}4s
z1Z}<6idv~Ul|`{th%O`%zb$mFclc9R*l$O4Hb@kJ3uRFh-s}(fk2TkW@?_32$jCEt
z*DUaF#+%e)>NDL6_i^Ws{?q?%+q9E4YTUE<I;zk1XP-UrZv2C!IZuT(ls!-FI~5T?
z;d=fczi14-AW~sc68;1`j2uypqJj#)*O3G7#%)F6RY=T*3So6AZDnq^Pu;%b-Kes|
zQ$5ttBf%U9_HEbsBW~mZ$R#O|*bT0`r6o}dWk3s$%d>Rkri1;WR{O~)sF348xFrSK
zC^mCa=fGc#UirtF(KG9#NFlU=vrquU7uETT1~YJ}UBYu?`lH^FGnnuC6#IWI`t86~
z9WOg@>Ba)VHASRR8k`dILC}hVSZ#X@wB!ui#bCB5hXcD5#A&;Q4Zk#`_6Ur8LQNvW
z%y)}Mg!+$YF2%EjPbzMUV$H6rDhtn^)jz^&2nEW&ildVu_dh6kWTT;es?tOSdYWJ=
zM~eU}LjdugQ<IgMP89P*1<Qd;Ne!+^e%oLd88(a40jRLpMe^KMb;)5zSXX5mvWHgC
z*6y9!<lBc>D|&`#Lb~-b1fnniejc4X1b_`<BzwjG?LH-I-KVlGA=fyP6L2qkqIr69
z=`;X2coN`!V}0ZmFjZuXCMQIk&Ja#~aHJ@{rLJI;<e_s7r~`TnUSbvqJz%HY9p5L$
zUv51}GFTS)4>>T2QJ~&c6va~gSL~8pw=Dzn$=<VYt$Xrg=9hz%!mR}QaO~iVylPeA
ziz^LbWDXoDYDSOw+WE;ZW-@MrY9*>#I+kOJQ+omp<fY^>OAUB5qy@{g5#D>^ikV1J
zp3A!~`TLo6!<sgH+6)uvE(MTJhl+M;OS0myH8b9c%a4E$?&zI+lCAOE;m~fPK#qQ2
z=00gjz5*<Yub{7-UaI>L-*U$so!qa<+M|P+$H3ID`6a!j-2LmY<T9{fOgktN>>8VQ
zj;C{*l1()ryx@^X0}*mvJ61DXSd_eXROW_Xu;RE;3GU-ipPa?I;R1*&$)DBx)Hh9)
zCmq5Ame9h=<kr=8-B|eS@u}g}%X2T!Ngh$%Pe~ENGf2aR!2<mG$)V4A>;w!%3!kbT
z$EBFR%l;PIDMyI7DnOu;mT^kBn8X4`SBVTGu*4|IBylyBp;c)Qpk8n_A(J?lBgYP4
z9JIFAUh`Lzszbk=IuRsF4_A@`H|R!s2r+g-mX|r6mCsk~l5hJJ%Gx6;*_7_Jvm!B^
z#EG`Hsmn-|gY2c;9rdWc@h7`;g~$?g%n);@*7(1Cavd@zM2@YUZ#Z16DPgRV6T{X6
ztxw846y`X+E!l!@0ve}G2+MY`?)qN&UM-NXF3@QW;Zst~xGPFRCd99M0)9`$gf@WZ
zfJU>ate6hy8LzD${&gv1BtioF6FLObPr4w8r<cF+nUtC;0PjL6fdnVphIP5wPyW*@
z>>?>1GcXgWO+e(EG(qea1%ydXAdOCm9{PN#p2igEp~P|cd^wkd7ha{ES#6?{NJR0X
z&XlTHUt$1rDh`OwB`I?9Go9erTzJ{n_ooxENBc^`%fh&m!3h{*W@&hloG*Gr5us5E
zgjnJpI3RQ>nN1Ur6|hM9GiyTm$JPwGNudCKO-QV<A}n1>GocSMcU3)-JP52(LMbf7
z^B%J<D`6cUO&URg0thGZg)y&CVp_VCZi^3)Q}W?4;T94<=pa0&R>WbksO(NS-&%2n
z@Ms%s9(<z3Zt}QLbF_7hVIl=&SDG0@2O#LUP<ks}oW0ASM3ORyU=;N1(c19CeX)mE
zVHf7Z7USL=9+q7}D`zl#86+Q(fCY&WGcw>G;Q`JTda619Syv>D!D)fqN<SF}yv8f4
zWN&*mRg9Icef74V8518zk;<0Mq)}g~d-g5=(_Z$)w6~_NB7;=l1tXkOz2#B={vTF%
z;+EpPDkHO`-0g9XzvBm<hMnI@Y(@SQ77eRL^)p_XM-Q8|Ig=&JUc{H`-}LitvH=cG
z&B|skabT9JNbJ97+G8p@Slw%qt|^P4wA;ISth0*qq?dI6Y)ZC5(X$u(B~8{_8`;;^
zbW^g<{d;jX3z#Kgsvg{9_~EX6&);{{>KEgo9D@|Y;ZuFK#D7hiA&ZC%YHbA~3LL=;
zo5P>KX7Hf+RSz$2XxIwzBP>pY1xHyIs%WD=Jyhm&5fmfG>zw1PtD+5TJ-ZdxOW&}6
zOv;0Qu*Y;vu^yJWt+or79AiHw17`JYgz))#v+(a@t!H$a4qJ0%bg~>sn!}T+Vb!h@
zU$802+>R3iV(-mkQr?JJ<RS4<<1QCI3KT8FxGQ!KWslm_(1GaTy3@PumSc!ok;-Y=
ziVWf1Io3K-dM8yLmF0=>FL4|05S~w47wH&N)2wb?!{Kx0=Am5Ipl5<jGgPG^5D{h<
zd}i$xAXD0eL1Jm6i_!7lf3vu$a@^fc`SJ#B6F@bEZqrHO3Mkp=8Ho_ao`@@7oq$~r
z3me2vK`!l8RCKD`Z8IsnU2IoT9f4q$$aJAlMIIodMe)Y{z@v4qc@!5BXWVLU7JvYp
zIM3F~r5l4RS162iRr{WQUKzUrD7MXRPidjh!*ZqA*3X|<54M?Pe<p9Olp@9@?&hUF
zC}|VJfUr}XMAB3!quwX<Bm0aF@*6YlY-_i?PuTZ5%SxL#gGp4PW;1!H;OkwwCLEoz
zm0GO~(U_N30C<REv-9H&E5DJGG@g}W-2>D2u0MCWT~*Ia@=@Y-0Fbe9`%Dj|@9{J$
zax4R52NX#e62;dWyPZCZips~YBGtHibhth8;Z<TLu#9kw3Was`vwq1So}sj}j@j9E
za`K<`ePhn|s8z=6$j>=WN}u*0D6c&J9IZnbd6xb5mxY5ED(wVniPgjnj17SLRC{%>
zylcT#RZa+WMh{L{ozVF3*m_}=Z`ZSM0jLw%+TI0vLzzgQ9}_-+IZa(?L`0jk+hmV3
zsb5_kn$P7s2xpgWCu3dtECoajIE*e12av9e*)$lhnnsBayxe^-J=`3H*WgtW?6w6N
z12CX}{^0lB+2)~wNwaOM4!+O#{^VdC)yj5ZS*e|H%}T#~SK38g7Y%JCEta}Hb`IZM
zWs7QL6YdrrkQ~H}Y3kSh772ZGM|L-*Vv;LtpA3xkapS}GDnpScmfs3`gxPGK7S`LE
zc_lQ+-DbnZoo8?IOij3YqP3Gzj_H?KXMJkIO4b=a2TO?46UCVI2V$}Y3UF&zf;5Td
zv}3L)+^=>HOCpbUm>_Qu)f09Ox8K5eSmKtas3bhrSc&q2UDKf0DOIB}LDXE!*7gBm
zOYj%Rq{2H<5gX4sVD`~+5*6)<kxU-O2YU~JGjo}ruid2&o7r}S)G{j<6kz=C7?QjT
zol6p9W~^%KiV_4Q82G>K)8R?2K=FC&6;;J0AC;6G^|QlwniHW8bl$=plj$irC+r$~
zL@Lc1)QTWixx_6$Eo?E~uBl45_u8#8&5w<>=22<NZlWCU2n5c7=ZDK{X_ub|Tg{e#
zK1UAQ?t*F7Uae9KqHPm9_3y6=lP<94(W;TP`sZ(59}b>s)6NOi5$6uB2hQsI{t#YW
z$g~t>?NQDGh&)j3yQyTBW?i!Ugc=>-!k&>yMY@2FVjM%};QnUa&~I~Y4t%mVC8U2m
z07*i`Qh-Zkc+9xvkd@|RUx!10r@OuzhoSK}A>oUU3O)e{ZMnOBlX#|)wrvMWJP66V
z$a9yL#>{AH!=S-s?naUcg6$t2VJ8_Bq!`01j*iEn3JZ$cb<b!}5RedKM`S%f?Ew3C
z{}Mm-W_$aX?_>`WLkx7bEBwQ|+gnwjzaRt%<Ksu7K#bdpLZ#x`$alk8YMG_To?|+n
zUg2+f+g2HJK=~2OLWz6**zmlzC~o!^9p3n_h_{!y$8Pr{BB9J^RpN?LfG$4#CHMHs
z$Z&xp%KSlP*esCu-|LrdX2ar3BAw!NqLHEH9f0Anz4eXA=EG_m4ChOM?m)Bo^ktv!
zwjXH0wvc^6wg_FAN&Of5Gh!E<EUN_)2waMsyy_)t8GWT5CtZmB^!XycB8s-m%2Y=l
z*nfWh?ri%x9uDPlX7$b3eei4kTy>+BD9I%weBd@<ji0e@xb6Yw3H++2sf|bnW9Pj&
z|DXENpZ=ot#bw!`ne3br*K#@Vk9>F6#sL?aUCt6US<5D3Jsq%KnED1C<n3_7+y+Sz
zj>RYt^GGqwb6XUK)6U>0C_nfN<-@_Dc65GtPWnG9yG#BU+xn%2_@5Tu7`B%t2ycVE
zgh?YTE|$PL-}~g9+=*jc4&uyaBmPD7XoIlf-PVQrprvREL_0o6gmwu<rV8Ct8-#1_
zu%F<ao@uvLSh~!$Z4!Qv9ScyPlkfBYytE=7>ZFjc##;-*H-EJY;ml~s^pF!nRr9=H
z1~AitNSC(d+zrK93Wf|>KyK?Y4m9a)1WL<X>&_uJTIVcT#jY7NXU*})hl`?H3!`MJ
zZk3g>L=nr~DbvE~_c4)1H`~;0+l+8K2gN%T;hQQX7LjrEGXa$Z2O@u-x}J+du`Yrc
zZB|=vuHrDUBe^)VX_=5F-rk^NLgi-5-I3>psgd@@)crP;4n!1AfMWOF!0^d`xB_i~
zH9y;UM#^!<LWR~p%!&I+q!n;IWrUXyA@23f!@lvd@hcJH+DwFJIhG2cPIA4QhnL^t
zrb4Wv_BV2jVpH;=(E;yx(|@L=s02^ggFCu$_Gv7vucy5km39P5U&4GO1`0XB8>7P_
znW#D&jiz2b5X@OUm*=A|Q6UU1{KT(+vUgQ@Pd`CB1275_9}o~yMs!wP3;k(vUJ$`d
zG4Cmr6n_IVv+6m2t4=?ldB~+EvIk@^Gco;Z!)>CnU_(f|%K9Rdhv?oO8!Gg*A^S;n
zOws)`P)_30hlNYmx4S9$fX!hFH(n^d^oadJ>-$_pYzMcuaX=D)AR`P?z;(mlzldFu
zwQ(~+IE3TTg+Vg%*=L*&S)~~Gh|B8}DzCI2P95btt?tC^LNiXugJEn$azH}r%&x_t
zmdikkZ5Fvv=_!d}FhpooA&kF$KD__9b=IJ=w}~r+4y5-hi^2?u#kdL`hjC+8|FT#9
zC*2d7+PF#q8c_Cb)91ojTBMSis}Bj#cjQxG1)Giue}KM+r2^<owf7duR*?z<Wtf&m
zi_YJsvAh`kn9ECq-AdyTzY=r~Oepf{5ZlGcvEx1AC)lo#S0lPt;y%*(PY}Pv?R{6s
z6N?WWow9Y%U_kwryKC+YMHgE8#HME4fBYK5@h=O)dZVnBR1ju1W`FAuMQ-U`p>>?~
z)vn|`U-R@Lcl5ns#u)qfI+{@&$U#QsyKL{U0c0_zKc%AshYAiHSE$-MBSRS!Zc7c7
z)T9#k^d;d6)L$u8Q3r%R9JArf)3a|tE>l~>N_lqV4x#kZ^<f7NYHq`5O$Fm?Lj7_{
zD331zO)x@2?_4e~$vzi_?O_B$76H2k`^8@7U;yKpArM3EA|E2R7Y>p__xs0vZPdYF
zp@ynH<}4DRD07G35|$oj&mPmfsyiMJYR3~38mzr$RkNwN;AJ=)plmj^7!UYLz5~ye
zyZ4)p_-;iGF+(al+F$HguRY{I%EVBClkp*9Pd+F4q_&XpPmW(^8bt$WBBq2?BW#cr
zANlJt`w4C+&NI9)a^lHB38l-SPkSe^#!hS(i3}tReD`t%9En+}eUyM3S&|*RsI0ra
zDXII8b?UTgUL}kM7!~C75pVfZ<7Goli&<^dQi9#BTI%oT=+)*S!b3b;QXCRE67#MM
z4XBNn4ppMygH8mxNE~>S_8_3B_WIuLw8;6?fqY!FPxzM>EAB1wK#kM7NQEU1cr2{{
zEswyjsA_RY@MSo@!0JgKyCfJZJ4c1!pcYaD=t;Sm^TIgCVl8lQ@kMnre9!EZ?H={|
zqGl!to+#%-p4(+g_yFevza9-6bc{4oJqBmud)^!Z=;vwbq7%ezPh_=V-4iHAnS0^^
z|4dXR;hn;+&MHJ`lZY2M?=IWlMq-LJ6l0mihuvi^gUq@dZhoJv%K&&B3iN-U@aDvj
zt3l>vH|Mx>6p5=uHN%rz*%F;dP;{YNT=d82d{#Ki%zJ*XBa+TC_u8)E8*E}O8pE-U
z$fTJ_14R}8zO6M6fd?8})b8}vu0fP&{Fv}5p&X7rk?YwNJjIB>>?8v6$B0l*(Wc(I
z&wmpAzoR>s@RD6Z^w7oEAda>Kzc=$cQk%6cdwL;oPPxy|*&<HQtlW0_@uI7mvkl$!
zv-|wB(Fr+Pw8BzP`Hpxi{`$DzZGv4!&RR>ay{SIV5K>9oGoPD?$co4Pm512Rs^UB7
z>QZ;h<GyMV%{cm`!e!Qt&|vrcB@D$rmhO>lR&mhHuMGETcUTIZiVVn4il2h->#hnJ
z*22*lbsMD&B{|(?&#ms9vc@f0#EyZx?V^#^1#5$nwoz>{L%&$&jp0!|s>TP2q0RR>
zWNf&ngD(M@PFqihnd>47m~n8J7@Hw)WY%UQBxIVe>0)h-jzWbVlooV>@U9<)0)prz
z1f3Yo-jh@&gk0+Wc4{bU=P?+;JUs##Kp-K-C(H{=j<E?ryAYKJZ%t&Z_WJO(jz#%}
zqUQq_B-##=O-WZswhYJNFit6`1m&EO1ER#8@{oT6!Oc|49v9>bXY*Hwhu@!KVx)Q{
zLIKo;G{h@j3@=3CQoX8&dhoO&8!KNlPoX}ZicW$565iBpa(dXWpUvwC3eDOFLLp<R
zoVi^{OMVftP>dOi1+_%p*c*2+e>xqU6fD-&sv*bJx_!eyIr$XkAc<N#gLGyJ18f)W
zU&nSvb%s*Z3jY$@JwJNA>Qkw<EV@E}gLO5!;D>TT;ifjc3VA)z{UBpQ2Zbcj;#){J
zPz#dE@~-lp9DSSh4d1P2*VG`EG-`x@V*4;v9#o7LbZLYeh8gBzsr!CV$d{W$@7ZN4
zICsH;G;o_RSxOt43W;od2XLYM{Kzdsl{OxXQnpS~#u<+*wm?QWKm&DUNzj;Q>M%^f
zZc^$$hQ-11bBc^g8cy~k!NJCYfIzTP;Q<b8b_wAV`4~zG#emHW@5PbW(#&|p2oMyw
zB{`uRA+L+D-q@8|RD3EC2x-^c^pGE^1y87kSX|l|07Wu^BxndXL13oWmS&t`Mk7!M
z`|P(q<G?Z3k8A^ZUWyd*PE0os3zyYTZe9r<6eW(Ws3qU;-(C!ebU_Fi7m~6E+!Js6
zE04E!Aa{{BmaKm=0^jqJ$NV0k3E~n-i3ttXZMp9~&Dw{pLWJTDjiCmmS6}*$pK)C5
zTN6vdRA+-!z2*ND*-OVD4(0CB{ZJY&{?Pw4*RB~ss3x}SRp18A81U6A1tLLKXIEf_
zj0yZW;+Xhw({PpKvskmF@v~QrAMvibFc)otFUNkuzo>`~{y!KBO5B2j!oE8(?Pw@0
zv~2782Su7SF>hG$2^0m+pV>?N!{74_5h9Yw3{VFEIz*vMzvIvO(Yl!JCV8}M;fk56
z(6zki?^<b{m9!G#ZOkYw9RKcsr?Q>dE2D!aUb^9n{(gmK_*6PNGKw^Bi(&SqKjuK2
zt(sJd`{D?J=-<8mv1xl;F}y3Y*9^k==?39e)D_xIX@~fzojr<s2MMxrVE95hE3#)Y
z)ccCNm6zw^1pocuFzAogp|ibVC9(H%Djb0dJTT51JE)~ipK7)5T*Wx(Jr&<@JYKc4
zY^KWfFn3~gSa(mxAtJqW16DbVwh|IoT+M6ZRG~h*2~%hmS^S8wRd}BGKE~y^+Ch(W
zdwxV{8g8E(@STV;3F6~)bhq?|jSz>ZSwnF&tOl(KqP5K<;YIvabdjFY-fX$vszK|1
zemIo#`RJ&y2+RyZzer<sz4dT7Jyt2f84obX?DZmnd%Nxr8_S~z@`Zi8T1^E%E)rL8
zWtliK`FaYM3PHhyW1HfW%?V$jl5=U)dnDvICh!6Ee(KG(qDPbjH1d5O`L};pt4k&V
ztjW9;YJ&02U;B=Kas)TRFcL_uRdMVRToz?+MgOq3tZ~8#D>F_Uvb9+t?EZ`7h{9E^
z@?%-EQ;2{qwh2GpZ(UWXbnY)aR5-a&7q{IeG~a6j;jn~9fcSx8jw1T^&v)85SjEtf
z%#Mo~iwLN79~Wjxmm&4gTom?wp%6yW?z?Vy5<`RWk7*)$OWKUQ>BQzG*Jza=jk+Nm
z7z%^CRjd5tdJF`I93$w9aI~41l%T?H(eZ=41CC+pnbcSAG4)aZU|zf%GbhqAqb|sE
z0~Tgoq;<G`S8Jvse-^kxp>r-DiD44WKH=#L-Dc~B&lUI(v_kZZcB)1-m8@~RWSuMh
zU!$Wy+dZmf^l<1N@~uB4_Gp%t*#sx5P^TLycQ5|~61636cO5OwDeBK;&NFCJHVflL
zP^(Ciy!EEBmdKd8e~XZV>Z|D@_MAPeRv*iEY-xRLAjzdnyo^N(7e(KYTy8I^?Va^E
zVbPtO2yaHm(Kvav>>#5ID94M0Eh>%MebX=oI0w(vt28xaPjz;<+diDJp><^-Vp8f^
zlxTY!Y!?dU4&fxhKaq8na9(2ueY#C}o;U@4gqo48xD_%Eg;JJg&S!rA_>RC}7*S?@
zku_fKK6l|I{Kir5YhJZlP6B~o^=)@r`0Lqr-`WW1;KWtn8MF9+*6bT}0OyEWwUTn)
ze1=jyYYl}x&tT)SB`j9t#%>bs)EeMh=p+z8^Ort%sy1a}*}NPE*ausO)Q((0B6h4F
z(&kkAeB+au43%C<$M0F9$d`NlCx1@#p;mQ^7B`aT0wZ!GHw^u=zFAPP8LJq-EmxI%
z?>C51R@`~!d6m5|Sh6CzW{Wlm59?xSHETT&F2|q!R`Gd5*GPnT&4LZW=6Bf#s}+;=
z?4~q!E^?ez_x_INw_pw`;cb#qhewV@e#g`PM@1l68FKw(zM=Ru-`XfF`vc!e*>G*M
z$?OK6XY5~Bj1A{jaEVF-N9hj-8gj32%P?tCTrNV7X4aU(;>6{@$V47ianff@POznD
zoK1Z~Z`4FbtIsr1vBn&=S=d<=w)t{wBm1-JSs8-up+AI+v@<iO<7)3Vik;Tbi(6$?
zOjbM0av8%DEt?VxTZ9z?>_|JpF3i3F9uVjsHw(w>kp-MZ*g~1ZNbKR|f<)}hZ1DLZ
zFpdV7LYT#F=c(ZvZFItgE4!D#BN8K<{aV6x(Q-p$hyG76G|m}_dCgU52Az}}DJ7(U
zAnA$K8F)%SWs_6nd2lF~yWOUQzX?@^67fIzk69m7R1<k@F*fRvyM|SN=huo$DRGB3
z_K4dh5@VwQFq?wjA?mR?>cS>6Bsr=$D>Et*jLigbKlJNhiPK{e1GBWN6Vr*Xx>6TT
z`^c|if7_|uMrq*QUeoZwH=#UV^GtXj1&YqmXgchDJpJk^c9*;mL=;X>HJOLKol~&i
zWO2Fmp9_L2&;eGn6}uo~bs>b_eK{gAsIp;_#9U=ug-oE7nG}Dn;-$z@v!@ieL!S*9
z$5JgQNg<>us_6257oLf)8WCtSL?0ztM%rqhFgPk(lH=-#YZt?$$X&KY*e!nF(M`=#
zQ&lst(4Bv5fIZTJJXmDpRTZ*GejZ|g8bn*oDpi@};b67!CjuvV`L9`-*SHe#jhl&{
za`(!?q5UFTK9#d1Vojan5v-@z=7xQ65%U)wP6X82&mQxLb-=8_;znR=P~~pyQ5LGe
zH&p|(gg8<q{=mp>JdcN~wGpPv-*{sw=q5#pmsVyChGn_?=I-$4bL<+4Bn7x}Uyoj;
z)e7Ar3d_pJ!q4;V2gomJl;$+%Vz%xLw}vY&wLVbYDy*h!uw-UG8)nV1_K5^bC<ACi
z6tyuPV^JH+;OEmLq4OaPFI73Zzn*B#EJAR4w#eM;O<8Vpf|AnDd*TLXW%9OEMqHwh
z5r7kp0pyU>2L#>VC;irPi$ReGHbJO<z)1*V&_|so@O!c|DNWdH&FC(N4+#G`-fp8<
zZB`2@lgCavHn$&ZSrWpT5WlE=+Sl$vvkbyi8udi@P1zj~`;fC)UchgzdE9%nV}4W3
zDTH{jRYoik@ZBMg`$?BuU*`H>UW1&`Hbhes-#E)wOm(0bY$(Jpu}@h!I!d`t-tHC8
z`kUjk2BT@(S*Vhh`Kkf(u%K@Ybfw&vdJeM&iuC+ztr_xX)J*%DK;=M*9{sQ%C^eJQ
za|!`>n+j@EqS8O-|18%@fjclmVidmvcz+HYkbZm1wTWdj8R}DMaq=OON+KVk#FNN-
z#E}IrjC*^FaOiBdGWn<2(=2vd8~_u!<oWvW#T|C1!K&?z4lA_$YoGbgr&#NFQW#N{
z^b8f;pt`~j{`awKXj%kSF`hw<5DfdT{X^C9UYUq48Q$X1m0{KYKYs9Z>%?;A8zNO@
zKX6k-W#T(O7n7g&8BO4=r6*%O6Nz$v|1$f$)sb+t7Jy$aJmNpDvx_oTUpWMaMXu~?
zub=?;s!h!_6^Mr@1YG`|Ule~oycrLc%yjlE37|Tu|Kpz?7B5mE4mk&k+(jSxQ;(z(
zC)!$TK*-=yx8*<m=h5kGVaORmhD2`;RD*7GpYVt1QmT{>G^$JJnb5&+879UaGj~{Z
z68pt$iq56}{lYi|rp7K|o1!7CyU@?8v<}%pU;wN-OM}3b*xXhd<=hwix<re3=kZOm
zjE4*V42ZeM{4T_bXqI<_vN3i6Wfok^BYx&V^dL-?ht1h8Kv&O(VV4+rBw47JVyPKz
z73%-(!wqlQ5;jHNdPoB1@WTbP{APOw6h`&{qRYfRpRljMqofKz5zjHE-g5rQcZ(~-
zS%N0T-UcS2t#b-4CzO_QS2WyEJakGGXMMrP!&L-=AZa%}Aqy?S=!v;Ppd|4`Qfs95
zY}-t~FjScJaqEVzo#I5SLcx$Chy{a<S+s6gN(ZMLY^J6d2xtowvB;f!XShTz4o-EA
zJuY<OU>rrfvwNN{5Rb?@)Dl2tEb$kw4l^&XE116MO~Qx9(TqbdV*tlwv(>g~u?iko
zF#$Ph8+6<NJw!494Zqhvf4jYmfmY%+%g3ed{AS@*JobE5aefIi%t_0nKE6$uCET^-
zJnxd#h~-dnCoc3~MG;tGyOxLOFnRJ3pOE&0d`6k;>Jn<42pVGE6e+RbK&{%n%7|D<
zbws4MfA4RWsxB^utUCjMI<Ag+>xZqbx1P~5uQH%usWheTncsz>7h0eBSTViy4TNha
zUiWPT?`HrQan(WZfHPtJkV4Q(2Z{Ej%>wEUG3ZeX!(3Dc`l?rE4oG#By2b}hXQTtn
zr*Pi!_xLpwhGkVzi5mIBCZ}|Bxw|?)ydh0o*mG3L4wWs8JDG0tf0{>?jE9vO(7k{_
zBm~S4wer&_%e++#cSuua?x>Kzz(!ovy%G++W)2iI5e|(@uMW?FPGDH(o*<p3y-R~5
z`@P6LbXiuR9W30R^q{rDMx@GGXqXg!a8rPzuD-#Z3<^X+OjA%w-Lm5%5Rlp#st}b8
zMWDU#9yiUlvIh*eim5~uVZ12&8yyqgi(qXE3gQrq-Z*q!J7cU2k%@>XjyQZu+}vl)
z1H);eoy}>|0(c3dUFm)O_X~R;%S)0jN{4nXN*Zw($jSEzjZM}w6u6ndW9TPz5k1T;
z3%hfeaglHv4YbPHgcBo!t{VyL&^|n%d3;UyDNUUrOoH!UB8m$bFPlu3Dz}kyIQ#an
zsS?C}VNdI0%b3ScAiivsq*8a;Bfe4^s(3p@%VkP1`U?gP0FR^;74(|UZl;H%7j%A6
z<>mNr|B2Q!GNae913)(#61ohq8>qGTa|CprdNNgD*v(R1L6+b<9JO=UBHo2q2s8GJ
zhx3SS=w!u=hjjt5gqm0AUbrQkA-@Q_gCcx7a)fUI2Kv0;R3HyxLEr*nQlm;5mbtD)
zetkvl0d_9SI%)V`%EcxmcxZ1{WF(LQq%neUk->x0mCe-ols`7&u%fFp>Peb(N%#eF
z<0H8kxtzcF!G+?F{#_xajFFNPzRW%Pf<KNmt6j$F-y0R$JRqMXZs}e@S_54}VA0Jg
zC)RcJzQNVdg+3*lQR<ncxS>OX>^6rx`ray{h^Sh`y^37tJKi!$P}>y2;xk*9fJ@U}
z_ru;}2zcn^A54IEnY|{CRpc-#hj9MVKVBMpHpXQcJ9kYEbqbvpv9%OLlv^0DIqT`J
zN#S7WrhsltwaS>%%6Fmm_g>-hOumb$P?^sgQ8^%3sKsg)h&DG~91cMHlv^DgM$1tp
zf>F`(<Gr_4e8thhvTg(($6}F|4f>)~?uVNqex|ksnauBFI~fZCm9u(Brii4Q2CJT8
zcT_T58bvk5ZEQ`;<wi=ttV`k-%{ZLOP{29v9`)zGYwb1c-OQYF5*4^dmiSJ2&2;2|
z6O%D206ggWcm0ze(D6%qo8?<QIcyf6L0rgGCeryM{+@*_ybQIp46UTnrEO5(*cYS+
z!TF4z^O8MnD8cU4J-p9pFZmN6wH|3|#FE%#+)h;_Zhpnjc!<x=8j_h4*AP&AGIF21
zFYHbjQ6iZNR0b#@xiMb`(@-3GY8UvjLwIlOUsJ~Lbf1NTO>z`OBO95#5iB;U6Ukf2
zC8K4QXQdB5U#0*9+)xdm-_U_#$P?L%!JhuFUBk#w{v#5}qM_%!6jVHq+i?ZXT^*K+
zh!!|{G7qXlgUxj4Aq(O|7(Py4dl{w^b(mBw+0xnf$CT$@xC0Sa0CC1%!h7NuZ<@uz
zRiGR9Bku-->%LdS6^P%6)FhFuq4u)i|J)lM)M5~^6l;xEU<B^duCPc>BRn{(NXTNF
z#`gWY!ir_IgCG#9p(_@Y(-08y1d9N)Srs3{EOYuc$ljK(I^QjN$O}EhrGr`O8Bh%C
z5%cH!hy31A)3I;LR{&JP>5DpJ<*v-F)ne}hoir<F?vuV$J0Ty#l8CIm4wqn?F#riB
zCa}6wSaFVC5XdF2B^~ml8JTUkQa<siAS{>!stDz~Yjz8JFsY0UafXG&T4dA;MeXvO
z&qTw)>c-{*jtdUWXQE{r-AoElQ7>Vse-8P^u%zjl*hLS=^1xzz=0+RuTNxdT5X7%c
z$2}j4rX%R8S-Ac&O>qVyXSbG~r<~*rJ~WH9mj4Sk1&$V>!!Vk`Ml1*`2C)EeUQmL{
zU{xx1M{-04hBZ_NGG7b+O(Md=;c#YL8xGmiE*eURHFHt1yXYEHF=#Gw&_XoyK!9x~
zG1T8<WOQMiriE2Rz+2uFUSf=ds^BlP(T;Cv&?I6;v2-Xx$gAu!BAf46ujJ8=He?<Z
z$3%tp{8r(j=!&(S(`%stn82B6mOuuAGmc0Um@pB9m$<F|=?@<g7gK5$r|IP8sOiY!
za3??D&(dcQ%q30C0QW8JyvW1;UoyP%&3qze&Hx1VE_GWh^Its0z?CC{Zfx5P;}coA
zJB;;g1P<Gbc0{}x9jJiFw>x?7@Z#-Ek!VqY?wd249*##+8pqscJ%DDiM<8DAa-|3k
zy2g4&q#NksJ1N(iqZwo9+8b@uRfep$K@d{|{qc29_#}qH1fyz|pknCdR;}&X?ZeX%
zqeMDvm$0r=@vK`gE?>bofeV=lESR1cKd|dc{tsQ}0bW&=z5VUjdjT5|xY_4i8%EQM
zo!){Vf!LKx2oTaR4T2p+#exk66%}#pN)uGD7cApA*0GH`4F7?#cf~TO-|t=L+!XNR
zd3?;X_dWaUv&*XQTFd>?C74=hU4mBdO$fC>@Ls~2pVmB8f+%e+VwFnV{d)%);sWTO
zo8n*&g9l{0-x9%+KiO!*(mI@cbtUfB?!kw#(bTYhkv0HdEOa056HF83!OEU4>m-wO
ziTic8V9<}&K}fd9l}z^nA_xWcr`>~mISiHfrVYhP#;IaOoepLb*^W^W2EpD%hzYSn
zzi#l~VacYiL+lLGduezu;8eCF8(=SI9DFF+{*(`b8=m6Fr0;@)G$8oL23s_K_rsGx
zPwCX;l)#rm0zxy&6uX;t4SF?O`!G$K3k>9(bWh*=CLL|jWOMwBkx|uz{Oue4S_C{%
zYbv<vR)PY;vf)l28C-HUbD{%98u28}eWGsUWr6tVrl1LMT|EWIqS+vuG&cZX#AM1~
z*mp;oRWK$=Q;DXwQ;%9mAj8|fXccqAH(}X6OrSvX<-^a-3_gjxF~ir(6Nm&Nn`uE-
zU}7J-7^Xy#L!>k|<+7)PV_vZp8@(|ilWHde$y31x|FCZyQ#r0mB04}P2ql5FFG{Z<
z@;gOVc`TSvJ9qlHV7nNk5n&8akFa8Vx6yBsQCU*BtcA9%WLhCHAI^(y6vHVnG1HXW
zMQCTL7!3%PMs8*Esd0?O3>9io?9Tnr`zbaa=DTP#I$*7f-uJgeCau0Y`t}|QXmSCk
z|I1$+<KvLfW2ZlSl2d%(r{3VeNT{esqA18IITDyGd<C%{y#d39MN25$Ir%^TrtA>X
z!z2tvY>m||a7X>m50VIuplEE`y2y>j)%)rO3;yD=#1ZjEZI}Z4NX29`6qx&g5><AV
zRNlDIjrqXeeVE-#`y?%pD%=*z3A}7uI*{}ftdd52h#!knp97O;cLuVm%4ZjW&5*tZ
zT};+~+c;3kkbh-x2Q&r`pLu2Q8DZ2+$HZ~SzYIi?7)IStmSp;mK6x2mw}lk~&aw0t
zf59bx)CaAPEfh>==z1$!7OM?PG>@+!CYmPN;pZgd5X1$xwbS4I-Gl7YM^?cF%!}8_
zltrFVY}mHOM8LtN@9z`5kg`u0Y&e%_@&!;3>gW9C6?Y2(!GekvB5P7=ZKMq=I_8Po
zpvPFA#2695AQ5}GG#DIEh^V{RM`Eswd8(0R+XL~2yJ6y)9kH<!4UK~l1Je%xuYH5X
z**5nwL@enB(OmRYiB7#eg|EYMGr{`VYQWa95ewOUGSE73Jpcig1l!8cCyPDK)@ovk
zWy=Q!NLAQ_B7()WiY)oru4^LLZifAQu&gSP#!E~z#;`7?@j@FwP%$4_$qbx7__g2;
z$?9lKQQ8zyGJ;r8WM11QxLf*?)NR&dqX@Q4QrOmrfUcFO5P1?J5CS$@%(^%ag^QtQ
z5OIjn#&OfQxDV_eOnAcHB#S^JwcttIsw$AGQu!5g;2@PXBRiGgbt!U*>|j?RSBV9q
z!fHGaC6@6cZ5@3296y(N8tFb^Lb=g+L?TQN;6fF6FFC5RQgO~|#^`l-a7l?ZgNh$V
z3X;uQ$-Wd}+2b*4j<7AXlZjF^Uetkv3fP7bA0Ho2Czw=eBonz}EGaMIvLnPE_UB;h
zovph+xCEqx!~kXcq*t23*m;2gYnAA3eB{xhgU^CSnCCdM!XjZx)`RA%5L1r(^B%!>
zGIE;qBg8o(5mv?vzVz3~@NLM_$h=OX3C`v=U;4cSR^-~HP`ypQ;t@{HjBowYt?ZFe
zQLWHe55`4~(B5sUU|-ZA_77GoR7Pafpex@Uve6&?xb>l-K^}-I)E#kSGJ+drd{aEU
z#cp#(b#;E|8Z^$fcHAj7(`}0scbX#%km<J2ye3uEPNO3c|9W-_-tK8Mst-w!O@c64
z3O5-G4!m{m3+R>IQ0GxpJ`1R03?317Ss=-GF#_-#EN}Wa!43FUY_J%b2~7o9&^tJ^
zxBUczJ3E9)d$V?``Nfx(G4o|Gi}7Y<6_aWO+qAFYDb(w$4ow3NIN4N0BaaD!5G6<+
z_FF}CV3;ff5O0j1IquWP{HVyZF^oKpqBPkUrVHJx1kMj-V{nxi^+ne-IZ=Z2h<$>P
z=vMkhvmqEnNGgj&kK=IAF2VnewjMi-z(T2PW6Y2G+n5oq+ASC;2!oayLvYjsNhox?
z_YA&4_T-)nMyn-meo|wkkIR>e5ATj3Z?<()9sp^9tstW|dIt&COQc|2GtYX*Nak)3
zR!AOIM0HnjZ?JZOy^;;U@FZ#~5!K4JpZAeJ=4$I4YLZqgqGA`v0=MD6e$pK4WF_PE
zhot7a-d!SVx-=#mk4*#1uKMX{^={m@!TBtyh_pGfn#3vrU&@!XN6-}oi7xp{3=C(?
zmtGjdJG%!v%2i75L~0F2r=2cn@7UdgLn0_mw6GGS;&qkVk=zW@AvtB@3-KMoTgmCd
zyl4@wP)931tjS<4<omweBj|Cn-H85`Q4FF~sA4y1ufQCSvRg%4#6S=W?n&=Q_`T}p
z$m&03LL`ddlcXrgfBd&13EEjA2<(;=LpyV%_U@}NG8OTyUrVTVWSIpygV6lYcERo%
z6M+m{G4~kpfF73WgzbY7tL<$TO^blY*;E{v#Sxfm0)c}KZPIp9Sq++iZoJhBd#1cz
zoTVv^@}f=?%x>RjBTS!6y)hCK_!ldIM^_QLET6o#;*kVI3B!q;iqva>60*_TB^NnC
z%|CVLbdC%pYbKWkxUx!TK-4B*+&FfHM6hbi1hJ?WdA}d%9-MG~^xdph>_Li>X#muI
zztOsgbOLC~bfRn`m=GwPZJAXt50lbB+!wt70sDk=>;aBrTRxF|mj3Qtf){0@#)6@Y
z%+Z0;Lj+*?bjp&x1iae3m9XQYz0yfO2B2<>l`9V$NlZ=@?UditOinRg2@N^h{kTg|
zx1F8Z!Sxf2K!e=D<Gm^)7#U&eVxy^S&uCr>ob1{o*zI??Cc=Nc()7rH4U<27b+EH+
zh9z!<Oy05?G6CK}f+I^X0vAPYPs5r=MvzfmJ3g^u+u-NuZuJK_5CIP9QZc&TpZiz1
zJ)QD4z?)xf34W5CX@;CAAd4z2<O0qO9{HSU2xujHg$^Z<cbM(Stl-;7YaLRfXmM^m
zR6JL=X8oUn*t!6nsg5($(8UqjYP+D~Xx>ADe`;}?%;qrI%J9c!64G6fxuVn<*7?L&
ze7CPy92|XI79D&$j!}Xr3N=^^4Xn3$t=T=4Z==xt_^bb1W{238$zZgza%cQ0I4NS)
zU{NJSM{tGsev-XLSuJI2<VhnfnqGQ=`AC>Mvx0x(L{Ppf&OjWL8m$XLCZ~yW8LJI#
zW0<MVqRqx&`{A)+7A}~+ktjnbU0}W~G(I+#fSPMd)-?Nh<|Nb?zU(Oe5T7!4b=OOR
zJ^yK4($f@qL>+M~{3R;0zTe+iH%mroVvyF9s4}>~&xL_#Icti?)@tU$=SbBckFvlN
zbXZM^bb=T-(pe`2a}KtiJ~eH)ZPki?@s!|y$5;m;CJ|p?EMiLmbdOetz9vc!LaO8v
z_hw7*Sp@R$t4J&hJwdNP%EF!<pBX}NCLmwMfK55m5G~*LGe@y>QdXxS^l2|T%e5l5
zTx=0Q47yw(SeAj}6hDD98XK$%5Ni<=717B)7-Bk#t0EvPj;o3qHv<d|<Wv&ICMlT2
zMJ4W(y@LlLWPt6m-F1jHeEpd1f=6VUz@1=v3GxV8DIo(aiVLn@Ze5!{RJvX8T4Wd)
z)L_WFEfAbY14BqcgUtqJP9k`B)jh$pz%JNg{Bh|Bb3#K<(GCx0fm5YtXo}MIcD~7U
ziT+Nky9G5#-D+xri=;bqF?Ia=h~RfcJaJ}l%QYniOspC&uL_THHTEeA#!9w^A=gmI
z(E`o$G2HaqH~1=o^+wbk+obRdd~d#cp<A%Ev|*W|Bxgm!Ajbphdd^<KR*{*iFWGM*
zD<3Wq6pW*G4Mq!x9*I<u+=`J3$lsdXg1sP>^q~DK;ywyFK@Kc(KX(ZZ+{xaBKLoF7
zOnm_&DBS1Qh$@dlS29sS@$3kXy9c$=9ERKcI6Kf}7GPS}NEhHxspJ89nJ|#ZQic=d
z{_TT%f3r!97#E2hL?-15q3~iPy|?cz53uXs>=cX=dBbsvOxwoalnw(>YRnqT3|uDm
z2bq_ijkl_e^>G;@hXfn|=f(qFgCC^TqyHgt+V)1zq?1)a_?l~?%w>XB6}Vm2_;R_v
z6lh;7)jUnrN;x1(ln!-FC!{fWrX)k<qQN?VLVI;&MaC61z9xnWS&l9&BtrFx(4sBy
zgv|1}qN0sUc$+m7{bRBU<{qxt7*tR`4zFixWFdf9<htfT!8}A^I!@WxfI$m-q_P9l
z#EHRO=Bu?G1=EBeciMBlJfc+O=D|*%O_&uRtzp3~k(>@c(6UIsz`uZ<T3GADpYr=d
zL-?fQm7svAC;2Fd$u>+?p&MFRJJCQYN<;g<`N2K&`36zlNsuC#1-=@2kjFI#2mRN2
z2B~g2WEu|%Z27_{$rL#WN%R&ADkPfEajl02pWJ8+zOSs-@d3b3#sR>$_GmBWgrStn
zsLklq&bi`X)L;{mV*xFNnXP}!ADv?d9m=ZM6X1OkPq_M6gVsOlgGTG+L2?RBuZb}D
z^un{(J)TCei_;F;sFFfLtnp74x7cW6Rs|zls!75M{Or39WRl1R;{VdO0ZX8hUi_7R
zxWZmWMif|cbQTrCl;`$d>q{|d@dd~Lje;>KcTS;u=Xbv>x{Nkh9IcC|t=P@qD#}YF
zR~GKc=+5Dn$#qMA^z*vdU>$PcFdn;F@jt)SHrCabb6pS1j&%W9{;+YGz^b$jH8r+~
z7+jI40csgj1!f&3M`T}+Mp#AScJtl)@A!29ub4c7t}QO9)e2m}2maP>ECdKauucjY
zR)vRR_uH|-sgcK`zuBo`s){HCzdAZt@t8d`XrqG2&<)9+Juo=`PHSwpn=6qf&Tb21
zkriHUKI9J|DC`|!K9hpaI7M74(NY8s-8VpXNSBEE7JP^@0&GhR&}1iK5|lrV`JGZP
zcb?rJ$(DuE+U$m+hhTG4#)EXPFeN|k9+XEMOsf`aP&~+jVy=qAu8^;l`6!~M=oBTA
zuy+uVK|A2FG}2EmEOuk}3T_eSGtf;VX<RMB?6^UZw2tx!qmlFirVFKV`yN38IE74;
z^_(`vIV(oBQ*;JbhU65?T#jNiA=uzs!KINw5DPG%>okoU(x}*Oj5P&r)_UJ{qU|d{
z+tk|XSTqG4h>XE9zE)<PQ8LTu1`uiq>g^kESqw}%ZnH9^%@=G2Gz+bZ31j1^m6b%s
zqV+Hh3U)!Cz~yoKPU;uT((yr=lyYK0``OqS*@fcZ^&)x{5wOXOT{vangbRZDNLnHX
zH`!Rg^Rl$))`Te*xrx8}f7jT2IV_R>Ea_agnFIcXpCtJU2HgOHLs4E}SvbSkMD~C{
zNWYUFq%*Goy*#<l;@J(yV;vu1>5^`CZg5&8FGX1r+Lq1I(W28@{s5#Y3#8GZmHiOu
z@R37<V<fuT^&3ACt(Hu{ba4YnQDwmL0yl(cZ334JP9(?&0gi)$?_c9FJT->GYiw#(
zaZj#bj$+YXmy(>0(N%oB492J=92}VDDg<KIv2VjB>^fK|_?y&WN*%#pM%fYs)Cl!$
z0CzIyS#Asn0aBtp0nNvVVy)m5FvUynFtj6^`k;k%aQIF%Z{j$rNf6nG{~>rZ_(!D1
z5iedhiA*Ix+L&>Pa1ycjA@?;L!1QXPq6i!Lu4bQf`T)hQ*|&hHbHn!xzD79dC_yWX
z>aD54%NN_O4^wDd1UfMCpAEIidepaYhIRZlAzjm*-eO!3@~pnu-Finy){HC!Jg!y)
z#JNQAA7hGwFXR)#(>_HgYmJLmga7|6e~98KWM%;72=7#y^^tYKcahs-RHZ`aB}7q~
z;KAzP%#&=2eVZd=isF2-6}Y<h*4B>PQX9iRAXbFWyB8nz`~1SbN;j&F^Caky*FNc2
zNvsp<3|b_21Aac_(cORc_v#=pRS0yt0|y`>bH4!?;zU!M9gS6zG_^2=2t6X0J(tf{
z(ecX0>Q;y`re?QkaBwozn^*T~p3qpi*6dSc;q4k2uuu8}S}7#b2o&6dFpzGh_V7rD
zK3&g&EP>Ur2ZsRZmScfj8r_0?+4Hi+3e%TIa7)ZEj|Zp0*ys{EEE4k6Q|QirBsdde
zwR&XWYN^@?wx$3xl1u$HSdZ_Q9+t#-T4XVJYjt4$B^eU1FF?L@0%gg#^0`15G@ekB
zBJy>MfoNR>1|#0(*&t81MyMRhEtv~K5iwn#4{ATOc2puTEQ)v`C-$Qz=<sV?HjqAL
z6A}!Z%rL?-(N2^jKL+QC73%49CZY291E8kQzLbXTm?JogNPfnNro;EW`eHC>Edv=s
z(ax}aB;<?Z|3Ow->%n1%v@F^y6-7zU{+AQH*KGSc5@Qh;3GfKw|2_G^Z{%xWJS94d
z9YrFBB&*F1eyq1Hb|!iY=bF2BaIh`$r#ymu$pryBDJv+6#eNt2P$oAy(2e<#Ko_k5
z3a-pzJTW4Tg3hY1Zh*w{F!A-p;`ujUXJht*V6BbvAxpqgniq+n_BKH{Vrb{{hXku3
zyEG%p5qZM36NHnpiU->LqGK3f+ljGpm@g9SB!VhxtauG@80Whyvx3(q*cmtNgb8Tl
zxY~$!-Ma;!%Aq5-4Rdcd?_y2fxL@$+g!K(+njS%W6w7CMad*hH4vAe;8o2)vMH4FM
zql}<$q!U`oq{b*07~)^P+woiffAYaVZ#OkG$Y#X%Dg#umyZ8tH=`M6(RF{tvw~Q<q
z-~KsxT_zb)(N|1r5CqT|3`y@fx#UE(v<#~4N}@M8qt#L5>TV8t04HD>(pL^TBjfqM
z9`i$@4hy&>ou0rn+9PEnuk9Zs7uk}RZXBlrWa1rsyLTksDK$F#9-R~t2$2Hn=-{Fi
z_Czcawsmq!fKGh)0G;iIs0dU*egUB}nO$jp<sZFAjDjrl(u6S9=DMHz2YcUbt2VNs
zUZE1PJ)A@=L^gH_-i$yZqc&PRkX96Z89czY!DE|@s74tCapi0JMl3h~g}Ilp-g2&u
za?sClx^I`@)gNsH2%xb8ivyYaj9)X(<}-TJT4Rqm;8?%Q-tg6tLV$$RWb%rlzR^tx
zjd!0t<`<2%ryxV)!Ayv+O1MQFc*zfnWEm3vVzf7`Y6;$#0{80y!TWd(IUsO`Izfw}
zs&I_qU4q93MRRC~VsZfW<hd0GL_z+sji4R3!%AWQAA1z*ju;0)v(Kb@3XE*)ykJpe
zFXgyY)*;zflhA<BEQI0i!Ga_0HBms0oj&;}a^2ZG1<OGJbl}j)iiBgF8#G}`6%WQw
z=z#A+9l7HYE@?czew@S)eB&^y;Ft)FUEoG;Br5{@z1gq9uJdbn13jX?+ZIHbvpNh8
zBDEyQmO6|~CstJ>RCNS^==6E|ZmCBMB~6T@`%Ztp3^M{b;iyXrk|r(elL87(dT{WD
zP;xT&SJeSnkz0{v1VX+Zm>{>AD{1k+v6LaB3fZaZgRqd<DCL(tP#BCY=@(*w)N|Sg
zBkiG^#&C5sGJ^5P2G_9zbW$5Z+KSyVEJfJbZn-cRE&QFLfMqHYtH1)x4!H5bPu_au
zPf46$rnC0$4Hd!pm@V}I5MrZ3N{~v((qX|cxqBpG>clHJj9UYS1|jH@H~f*ZIp+e=
ztF?qcn`MpzIXaGY?jv}Snd9=cF%JY^i*yj`t&NQA)Of5}5J1>z$g~{0Y1!JMSh15T
zuLF-kaVjSRF;jpu2=SBB5-90zZ7txw9Il$jgDwO{!DR=;<ETB`?fhhLhuRThBrXtL
zD9IF1AGtbK1|z!i3e&_Br$DB`C4g+im3G#x!3b;#ynV1#HoY5jOwGt(&@h&*Gb$OA
z>dXnj&41w~;FGH)$m$01&}MorSE$VvKpz&pD~}02Ue0TD{%Tm8$nFcAfDbJz44&S@
z`qHO`(}{*Yw<P#aUu#z&bVPA6>*l!6hXxnqSqFfOI9Rm=dqj!gfs)vG&6wB-fZheD
zbg0SKG>fcah8&OSS=-I-K(pvx$t{My=vW#zBDByQyGxLJfHn6;R+dgf=mwmnuxqe1
z=7@|DQG59%i-o<|RpbEHt4qrbv}9vMZ@|XL5oV$?As<swDa2dgY1ytRKlu4{dnmHH
znEWWg1^Ek^!m^sN+%k76<%5C^kV2{&;t6X3B*?+Zxv+TJl%$MLVV#Z20CdD4_e>ZZ
z!&>SS@e?ByvB{qV!TE!u-^zERIvSDT#PSlH7X&BEO=I?__Fieckp|lFSFG&723Sv|
z(V|IUyMx}z@<Nvhw&{2g1ry~v;!K2+qH{ola=4>?C=m^L@RV9d1PQl%6d#L2Jm1aV
zHMl-9NO1LHsY`eTx#%p=R@#Ad594fjZh7YUU4wN?jd+nbLR@cL4T3GI13Y5t9>H;G
zyadpp7#aar$&q`{YOyF7fV&-yHEp-x1IB72^umBdJ5Ty9#v^Lzic6We^jwY#1P|O<
zw)A}o<TOVH38xgJ=CF|kpf-k!^HTuc$41`1=!}lTtZSbl3BpV}<_5<U1Ll@|qy@6B
z#R=an;6!SiEu?I3C9dSXC>WHFAR7eR8#zpHiy#hT6Vn%ROi6QU$z+wN-0p!4cC?$8
z9|gbSa4c~@jS7^io5RotLny)p;619BWd;WX(GjTxvn8V-0$zdpYp-C9EFi*u${3}%
zt`hh7ok5naIXV!go;c!*3?H!m`=i64;CfSkp;{3AvK2uwQYjC_*vD8!;2985_nS&h
zr{$#=1lEXMv732cR5XS=BX3z+x+9H^eTT(_(`N#P5fz|639j|wN8y^WuP;NGjV^pt
zt>o5|f?e*TN11mZ4-yqcRkk@H%FSqTUuNHwY)3Navf!}`Y#^BC+G-*BF}+w2@d=}X
zUJuzwxG1Wl1<sRDN*NUuIEilC#+W(+;30j@Z;|0C9pPXSE|7&nw`NH?CqbE1ph)(`
z6rC@}kR|vnLd2G=7=NbBcOMOkDsXU|>Lyy9Dj9M~G4hT7sM-!N1R?@BSwd)}jKhPo
zBmfeTM20O?aN1Qh?Y6AoedK63sO8mRp8;qxt^Vu%Ktb}+jF~GyAc$lnPhx`y8u+t+
z9Ck-H*jN~^&5b#r1(AOIj!CSJv}9Rg5dL8UaZ*`YiSC-V1v*YOsVk$4gmwsSgj5&@
zUSsp^FY{KkE|{EfZz4L$bOhC5i#HM?57|*YU@|5M6#^3+Vfp`Hf~@@KqXXqYWu_-u
z7AGmrmO&Wg?2CTVo>7;<t?a5Qxv)j$T)(4rDZ)k~1=>i7%YD;-w->L#rG<z+RWno8
z9WfzfR;EofrqZXfoC4NH(umeG#~t^E-{-H)TBay~(Z-1s<AR*>k4X8E(NO6n>5AEr
z*tl}sm>=2{CrEgd$2ay?e0D)Vfjntd;Bwl;Egc{52A8E%TbVH2X0V_$&%He-n52C-
zziw2;goF!-$#p>)wgNt2AScdd8O6>{dfGoBL?Sv+6;;elS(TrNn}6sl{_hxtS@=<#
z*l{675bL=6+y@y^bxI-_g`&BQ(BT-CY>R%=8CEfX=VPdul_h^2GOqX|G4-_(i&46I
z_tgHuHf#i<4L(i`sYL}yk<fhQ@8pJ;w#xV_Tf1ee;A7-d2g-N~qzOF-6SQ(d)LduG
zoNpRnXH3$8Fnq=C$8Wq!D=<|21OkVwqV`~p9yCo~-BCp(283pAH9JxR04|bru#L3<
zTiIcH@ZM}YoVFQuUr3z|p&^d-BE)PvpbET+qzxo+<l9H%>;tIMkj*IliQ9ixpq$z)
zH;}6ISwS@CEqRr};N$EqKwmqB`>_;y3lH@XBJPicZ%RUqBa{j9m#yT3CbuEbnsUz*
zf{a+*uG_~(r4f)Sn(9f&81ZXxDfl<8`QE2x7qGc<*Gn#-)<~gyW4GY!0rsU7OT<7C
z%PCYQa2vY@8zbcqXr572MFbbS!+o$9qM$8~!dTKo2;^D5OYIfR&gGlT4zIpwKtr{B
zcTlibLG)l8Z>O^-!7-glKti>9{Mjf_NyU6DWr~HxSsG>>fkqwJOLQE|R>*<P!^%m5
z_gXW+BH?h&!E(biWev}jN@d<13$B$=%bG#7Say(Riq?m8l$z1T=1TMmjzx@XmYM{<
zjJIfl6f`;z9A`cqxM>;tNEzVlvHhxEgCP(sHZ<_)9_l%T3eOZnZl0<%JQR8=4yGMr
z9eoK}7^f=9$h6t+$RmQAimm;4D)}leO*9k?sW7<cDC;4M25(8}UgCqy7BB4`y#(kI
zg_z+Pa-xt!Gj1M5EgAbUiZQ{TUHaHCilU+xri8WV0aSqa4M-Agt;dxFza7~&qmIAl
z8$OJCRBby#3h8(=p_jAmk<w-&!S!tzm-Omg^R0O>2*bD?VjTY*o;PBO74+6z3t0@3
z8-8EbV;?$(6N6hTkrNgpJQQ(wM+H}vTi-~P$0ij|w!5Q$@V8QH!x#sIOVM5|1R+T$
zpJ4CpTRE|6GA2nY<ZQLk4m&Q`GnYqHl)O?8<SC#1vB9f9b=R(yu@F>Uw`A2Sy~wQt
zSEH9t%(EAvkvH3%3Q#W4@Z+^b)FahEJuYngtjO8#9%k>i;U-hBxRLNu;fASdn4`0B
zdDa&FVoK3;Sf5i1te>ig5lzrMpgS)e6U>UvMBD6bW$rGtpLbm5j=Ms7d~`w%Pc-Ku
zHc<ixs8AYp&H0eg{jCvgxSpS4FU%8OX_t}KI-nXkhsA}CP#tmh5NkxxtU*$roJAc?
z+}PyJAs@x4XcWwq+Bh6vV*l~jrIqy->1DDMeI^>jeSO-;i1!X#pk1qMSo32?1nZ&|
z<z6>3>CTIR`5YUlHY*#=vVD1nr69yDz}s#4D1{L%pUxK_nZ8oRoPaa)gI>ql)Z13Y
zc75I;TUZjlLl^a4oaLOB_{wUORMkYHZ)MA4+dnC>pO2DRS~UW4A&@l3w}7)#N%%fg
znJ;5G6+_5idWb1O&Z8@?(gs|e_$HJ$)VEO>!k?tH4v+7M31CDH(F*1)-YUd0DcM-|
zvZdV=oM?l?52~xFtzpgV(+5#=x<b8FsV9%OU!J0j=S*FY6@EB)Ag%I=la4|)>v4FP
z;&t^A_Uot~rA`q);+AN=_!f=^mG6lZjp`**ELntZbwr0wk>tiyI()t;DWL-6q6^3O
zF!OjV$x$5NL#!~E^Pb}N@^h=4r0>i||BiQ@7mpxKuTe6L2|9W4BF3j$iTQP^&l+yC
z>?8WZA??&C0YM8JkrJE=@w&8K0ralu3TV<I|IzeR@}`}bOCi<l6v5EW6HXLW)Ah1;
z<mH%N_pb+^Eix`n!3K*{@G(aBxw@>CL~lm_&tU5)uK|!2Jt0s(pa0HK>nLlYwm95E
zw>npJHojebE$&|v5?{lPvwc7N{VC8_MhB*=V=B(YYe!MsUh5*)6+9&#q8zbvDp4i6
z1xjGgY~pi>{Ro1uF*pFaMOqlEa#qi8J6r*MlEkv~;C$&((FYC1Z^sL{h%Cz3zDz^f
zU_G`-LV1`rsbcfo9wUOr9P1iIW;p?Q#Xx~{*jdaWi#Zgu0U``W)iyt-iUVpYr&di?
z{(iZUj|p}-&;~)MSN^u~nmzEmV!6f7Kis-FT&YH0fqxG?l-BFbO#7?>khO`d7(>}%
zd^8zNRrON=yE7$miw6e;A4e1A#=~?qKJ#yHMklCdql9_l_cqu4#gw3~DqPE3p~+l<
z7XoV>o@Rs;2e)>;mPH0Kk0`6@YnEKrSqc07XvImePu9#ZnmiAVtVfh0p9HGBvPE7w
zIO1vMJQ0MI^g&p^;HmL2ed?&xDthI}>Xj|sHa(vdQUOSV^fcpD7~KY*)yY}jH%Ksj
zrrAcwnL|v-ISFO8FhtI<=zc`-7L4ZSm?P?O%s{dmvuaWp&E<}vSUAfHjgyoC>n<m{
z0-BC>!(@i)wcYnY<U3xU2T><56W(GcG;3R%fw>GLu0z6DUC8;pQJG{`L)|g;1!n<A
zpl{D0=kGmMqx=mcSh>2srCwlA<qg}fXV};!^EN(bL?cH`rcF10LAY)Aj1Fy(fVhq6
zN&%{z0P{!dB0kFPac)??9lyrP-jr&Q>`ulU;!555E#b+ddfbNfYcxR)QPv+&PkC-_
zBDroyo<NzZw)7j4;}aKzH-6dUHeN8QzNV$|r&d%Sj1t8&!k$TfTdYB98-K#*$M<dM
zdcc22^z7K0%}hSo_kg9R(whDj`B&q4qqspUq&I_{0I|F{>^_jGwU3&OW}1GUm`P=X
zArzre${reHuDhc=9KVz&(qj`%-8MGh1}LkvY;3CRDOR4~#_-`iIxL~esic>+^Lnsv
zTP2etcC~LD40+KQKuoX>ZcJAFnsHmlspHn_z9h_N>YNLNC`1FWh@{NhG5OJ)EtVQI
zKs+=j6pkiCrYSOsDIqTR+c<H<>k~r~c<)mjI>xzvUUKC^W+GpFyp=_TtoKPd$=kDO
z?>u$fFJr>wZhO+P#gbu7+`l~h%L5&jOlcI;+W{rzNRNj%5b1&WV_f*f-<c5jwZ>|;
zp47PH&R-J3S#=^h9XY-#edLO``waxxt2T$RyV`TZv%Y2=;ZUGx$SUkdJ__4^=Y@+h
zw)g-{XuAbTN?~a^2Tz9fl5rllQntH!=j7K5nERIBmE+cyhbJ$iul@KU#>dCE!)75-
zxS{uiT?WSs-8lItjvuy}Z1>ZQ<VDk&4Rlc~8S^ZGd5|g2<5e$(`|9AthP&#?bXckB
zw~kB>EzYQ93qZh=%f@Zj8q^)!trC37@cP!8`sRrw4SM6jpgQPQ$ypx8z^&sdCpJ3e
z6g@PHMlOF9wmaous&)PO;(0d)uU^<~HP*K>TALCPO3Ua8Zk}9j{mD0lukDps4O4LL
z+aSDhUa$m<Z`t&U>C~C8g8>v3XQ|f5FN=fTTlLib;p_x+!ZlN^&(;;;Bj?(-4yYO*
zkqkh6K+Beg=U;B^rQ}g1D-u74fB$x0*m|}#4?~epHMCS=NEe`Y@#65&Xq<Oj5m+Id
zAdIu!Axpw!mHocG8C|u#`MDY!Lim9}OT+K#?YHShj&*zEPzV%<5$8aWTXRo%cD4O<
zL~Tl(T9G}18)w`dmW}OE!O9J3oZeJb`w4L!*@y>Sm-s&&)3XxVaD0kl@)IZ3);CnT
zk-W9~s$g(Uw|1(5sWE*8+9?SdM*3P{#%uU#TuL}8sMLGcgsuB<HaoUvr(4^fZ@*S;
zZHfR-lbbZfQr?Bl+vKoHw{@o9oXzK2LZs}?2|G@NbVqt*)yhqe61R~AaSJ{|y`_#{
zIyhCG(wbY6?<fBf?$OgewL^2Ui<{fNtAtas<(t|@ZTlS-kS%@(W@(EyCCS}<Jb_0x
zYa{+;i!T&3Y|Gzqxi^0n?@79idr4N=$c7=G;O}$854SZ6Kd>fM-PD5FN7;A_T-Ne%
zA#~#p$WNa8^NHa`$Paf7!K6v@3Ysp(aF>O@46x=lMhAtOw><n_j4r)Zg5abl*m=V_
z`00H$M>|EJl#qwSi<E%6G~9u)+eVR-Dm}^;6q4(4e|fmJBePVzNBZ~a10u~b-3D+9
zafq}NNR#U?4X@eP)}&l*1n1$IcsP9XtPb!0gDv8~ZLu9duiBPAJ@*_S|LOO#grn>T
z@?KDW_l3J_&C^RI>7#vu$e!Q_bX>^<<bFOUoLmT%PXAW%Tj}4XKTrx>+{TO2n?j9X
zcgm9Rh(VpU3iL+0wQWo>ip|E%CgN#}Hev;~Xj2lh^t+LRNuh&&hPcb%B{zp>AHe!{
zJc>}N^ik~C3=jXKW<-;8b4SWVL6C@EwS7T{ErEuW{v<<R4z3fIJwF7t+_rp3bX$Iw
z0L1CfS852s52+X;0ZS4|^95n9XNb0=1MiHF4sFBgQe>ObZ^?t@MqM2i@yWE~zmxh(
zI2%a|&k4KaTPrdL@KCDu<+;^!!r{HG5y;3C<yt0Zmy#8oI5T|okf;NmJWiH-%+Gl)
z?}G5mLo+0#ltv7T)@)ZZBW&Dq804+(XNJWGGfev6C>vG!E7NUag`2lgL28ROd8E_7
z>wIPLO{A~vW*vDQI)>Gga#0Kt3}lYmdS-aJ<Vr+5crs=J`D%kJ!&kc4VHrrw3Te;P
z46J=l_~G6(D>osw5Q)5)7_Sd6MslIC9Jm+^uwyGr+j$E)w9OZWZ%DLHf42-`>F?>d
zRfTO^mHs6eFgpCQ<4z$BrI#3ph_pYrsdA#Q&L5*;gtmpl8a6O(Q!zLQPn{nUUa8~J
zb`bFGv>k-ut+G2oN=n=-bHW1;w_kR8XHmy@b~rYyW&310e?DF9C%EHa@ZI)jVycLk
z+J3a-HoQr3TW5`_$c>vBz8rmK{8L26_QxrSHbu)pM$35l6}H!Y)VVHOzQ65VtWo;?
zIFcet-QLDuTeLw~({1V9BXp~6_u@7vK--z;01d@4Z_ZH^^gMUT?cs}DrVd0Dk-=SZ
ze|U;GTZfYZQaydC+up_grq9$CoQgGku{_*aItsF}Frp1VVUog;_-I2&ynXx8ENRz(
zJ57Va$M=VObz+T7BK^YjBuK`VZqt<^p#*3mC=Opo;@aE8R}bS%Z81AwDl5vvrAwH`
z7JZzOYs<qK@K^>UZa|7{u2@T-+d`mB?Gq;<QTo*od4Ni7Y@JVzX+(!F!dS2cA0mrL
zdWa6cl*qAeS@;i$9ME<IUJ_%~Llnt0<L+4yE(@4NX9)wrAT42}S4MX9%~wlk?Q|O$
z^ZG`SC^FV%yUhILAsq+?_KPi_R@7Je>Ga`}TRv{n`lm@&k^Az7aQ0puR!c!qn>|cK
zVH@S`@c96$(+kzH6{Nx+Fn1R44_eWWwrs^J<0dT*EBkd44^(z_#qw}NUuzu@DMm;#
z?yP0uzLF$5aqT~5=J2XC*Y5OdtaK)YK8apkM$kV7KSf5O04A8r-Is>V`8};qDJk$p
z!6<XH6A<9LXNIGT=>qLX<?@Znm6PCRpZZ;}Z)3)0PvjIN_}niq3P0)mL~a60SNaJR
z*TzXdf$~+6(nS?*JvQs>pvPH^NCpNpbj&QqmEoM~yl$H?G4T&NnM+QG&gWEul7O#5
zCX(-V-68zXl#C}4WCpEo!9a+=H-TV$^6K!tu07Q(g9FEoTZP3^BklWen77>@bfNjT
zceM|ON*xadL+XS5pMr1XtxBNOm0c2kzb@lRY!Yt+qiU#kWc^IQ1Mip-_Wi514{NRk
z{11FP0fGABobaXRH*02J{-_y2y}h|@@Vo@_NIW=OJbb+@Ol)sK0vU1ptHX=3*+a^+
zU`PR2!g~vg5{LsWSA-wV+F~1vI&LH3XB(R;Z8I>jBrtYP84#`<%DO_YI1+Lc=_4pC
z*drXfF&b<mw#=sWN{EGYm;eBB-TC2T2ljjtT2YDva)S^W37EBSP2T&ioi4c?8ZF79
zEF@aOmA?jcHM|BBY%3@W%2|>-Hh~-Q>Yc*5|Fpx9K9ac!{0Qv_ti732(B51sO(!=u
zUnf5NF_=F+I#6VeP#rqZ2?^NP(jS8jm(W3y(<xILQ*2R@jvxuvZwN0wX!AQ#$N|iE
zpIjXF%8R<{Nil%Pn4REkxQoN8!l;=ykHb!5;v|QV+zc0o#};fpT25gCJ45>ZaERJ3
zBPW{k`SQ78(~hhnsp<gEZv=fjkvyM;36z}!Q{kZZI6<Ae*cX!J{b5&00$LGw;q@K9
zu_iLq<>hD@Cie?3D`gov?S5_ofg-*87@xq&3RP2`a>NlONK*0cQQ^<Wce-(f3GPmO
zN!a|ssVOO0T8Mcp$kW`un~~h_fL>2>f6CXRdNpilbY#0pAnp9=>hRrPnE|$T@=VEi
z#z`ZMicZ?q*M*;b9qk?=`_UB!c%iNzKa0o+tJnDuB8sLDVX-SuO{|-=z5&$%3sVAS
zvZ*;dKVW4oGuryPiFNDA%8*~6HCl3Uc<CP2H2@6)^o0l~u#5z3z3;{0-kVr;Y6Egq
zvaoS+Oo`b{fLDEIaX92-`e2WEg6RO4l+O-lyB+G1i&wJwTYg$m+oyF}5SFT>!-8~J
zD(-!5x~C(t;as-U17^ShY-|A#tu%cJNJ!PDa8P%q(7B6m>ey8}nX+CYsP4mUlVf^p
z@$-D0$@Y;(SJgIbkcC+X=m3}8F?ymyb8cHRkbb!k0L>9loj|0i8XQuGL<df_WzB^N
z?oUT##lY~Ok((dIyaZnxAH@#5iJ=PO8()L^*tfo>ej>Yt9}|gpXdmA@H={;0h@z0>
z;u6T3-|u*3=BJ<aP&=lU2Ea;yI6)kfUG$R7sW0@Xk;^7k!$Lq&l~g&~wVv&P)9Vdb
zrWH1mO7JM28?2;IuG~ETd5}@VA@0+RPh@(1qJLGQUkY@VJoysf{&9`ZI6Xrn50cYo
zdTJtiJ6W?SCUu(9Kw3`&t_f5$d~67UOV0K?{o5wlr(wD*`I<Wx>^Yg0(cDXk;;tu;
za@;ZZ>dafew%-pS?!CsEnb7vPWnTGJ4^6FXN>yt5bTA*_*0bHR@g5*o4dNnEgEc9+
zd6{c*HiYlAOa1G|(52dRRrM7W&^Nw;+&`th?*qJnSS=+bX~NmW*AsbgiYG~21qL0k
zevN$dM4&M62n6o4Kk#=w+f%010Sy(6Rjekm-S_wVOHZbeMCiiFp%&*{;@>%j7S?^8
z@(-}V87qD5emyJL#lfk`wd)$IWtByGal72(w=bfD;Kj;`txDL3y&6kTj$5$UkGY{|
zg|75;oMAPs95wg>1#ixL)gBnSu5mhE&+jOdQ`a=HmHf!KBxIzRx!g~>l=pKWsG^gq
zAdfxp82ArSPww<L{lPEUbca_}e>Z8}bSjnU+sHxV_%@cKZ)!68L#hkQY4O@{d)cUU
z)!$W2uli*&DfK8^Kt%=jw>$i2a~KIjMkNzh^fRR|^WDTN{OSjK_GZ%sxu_%Ol(Ra)
z&)(zDc(6xrrbTFj&Kj51t@e8_?9rRc0B8ZG+dLikD8M)dJ#D4G{$D+MvofX46RBuw
zRmR-E&+&Ktg9l0!HNXSNK1wt7#3O$6n>1r9v$S3jGM3Es`R-r$_)p)8o)E&>s;ek)
zz*Rov?|Ps4C{|opUcBf?up@5u-51%<`!-V}Nt5BXZ$0c!`!F8FQjG9gj=}#P^*!F9
znX^*UOz;QD9c-`%+~RW{v4QbeRNzp>8H`-z?!Vvv?P|WrqMMX-S;G^RlkXO<@Gn2f
z6J%y0d>XGfcT$KXJQP$da_6r0snxa=+(Lx0LK42Y&(HNE-)>tUa$QIoLlM39JpZJ=
zm(SwzHnydj0POG9KIjjAH~M7oT8dRcD1p^4pX+~|Z_gYrL@2S7s@%P1ng1^f#18bu
z)7Yp>4rVvsy?%k8^EYcB32Wo69EKat_RC(Ut-$riJ1o=y{^0_**Ajp0Yc#Xx&G>X-
zN{XR+_-;S-X{G@T43<N6C~Q>OZrY#yULP|FJ2#*SfH0FcqZq%6@6K{E4P1Z~AQBvS
z=Umr)s=p-qPT?2R2M2bt%}W0w)8>ePjY!9Q0V&LL|5@cP=18&QeaI~WEyD+T$36bC
z8*KE^;2PxE1`Ai@mY(kiv$`B8jSfktWG87IT=^Y-=^B2nm`v)NbMS=*!5I(bFIw(z
zy~$n-5`?m}iY6eWwa^{;xIdV|7}k&}6?lzRm43~I{(%Y6hmlf_#U*>Zo7w7**Nd5B
z4KXJchY#b$+xN|KpZB@_ye!p1@!aS_{P!GxF&9GDq#om=?uqi4{__&Qy@n~_aO1<D
zNGPJB@x#^r8XW)*8dbTJ=o5D^;t%(2z$(AX9dr>PF`?3`kg<t;a<K~^^pA2$c?k26
z;u|=&q*4Yh{gA)%F<wG74OWiLRYk7R3;p?Qm*^I#K;VB0L4{&KS-xEES1+RrL=!aK
zt~yv>Wp4C4)6Ty1OWzhMAl~oaniqd=UDJW^l6rFK>+>L+U1!+m@zwpfNDTmNw0s~3
zYFhjlzMGD6reudj*}0E8$6xn`HIJ%dmsvZZXWzKMzbmQ%{L3PfEZ$n7P(1$jQh(Gx
zZBFbNOjw7JQ+Me7e#8=M9*i?ivF6+$h8p{4KkP5|0_y7lY|&i-`s*&5?yu$*3^-Ce
z2{t+fzSsyCqVPbWJNG>QQnY)*Fmgkf7<c>psXkw4TZ{&meH;{oGskVS!k@@evG}Ex
z2^~Rfer!zPResflHZ4N_;xdzY%5ZnYE&j$^>=QXoiL$1{5>Y8RJ`(xw(R=;h*YTL*
z64MlioDzj@+G_uo+w3(&d)1PAjol?@agMwE8vkiC9RQW;0S#08PeEH-uk!PrXPhX<
z-6_qmc!7VF&oX?(7e8vBGMMUPF@~SIfJDOI?;p~!;-sTaN5m+fcYkrGKbk3X5c}41
zjYLcEGv>H69`uFx&|bo;*+UZUa~2rq^jZFIB2$Q?z}UGkTsmmowvYP~s1z2UvL-MR
zP#&yIU*GB%Kxm;yR!j+z2IeG)a@Ku*@ly<LSJW;j4_-FY@5cpYCZLm*BMV`#&^`8m
zzmIFq$BHyiumgjGI#m?iox0TTq!*<3n{Bn53LV?_Y<~hIlIJMD72UdA*JG7maJx;O
zfEq1YF`?RS`_+C4vtj=R>C_;3D_8wbOZ^$^ZGgV@#yfBX=egaM`qx-s{sM2y4Pm2%
z5kK=vUs`QH?zA2GkN7>b9adyFDpA66@vX@x{J>}VJ-bm$mSp8==e>Y`^W5dv`?D7I
zn7}C~7h6+;^5QA-VEnT@@$hqr0X$03eKlMj*fU~Ut}2b4a(j4GZm$7cEPNSNbRsJ8
z32ye1aKkS>)lP~I?E1)P>`J!V=DqNoZua{T4ct#eD<E{VSFH{EWLx{_=7wsbt#CnQ
zyMHYWd;i-;0i!piswOq53C;^V2Ru??^671OK-mzOP9xZgD&#uBF<0Ci-n^5IH4Fe#
zb2FQ%SNk8s;YZmMgt$u;B=R=ftz8~wU)!r6Vpu;EzLpgCH4ovC%&h}6Z$G$uKjgkL
zu&v5}KrKcL1aIt<IpOkdD>wmI8NtlgGf+-JmRxSNFJ%7r@NWH3Xhv~nTh<Ypsjqg2
z49<M0%!Vr0K<I}}Utq$=?49lQ**Ej48@uT>eQHD&q+2FRQ;AWPIQQ5tezNkI%suP6
zX^I0HQdtQ2nxdT7WBX>_IK;+f?oFvyWH}<&vfbqeW`1!dV+!m_pe%RPVcO+Rm)??j
z@PcluxLD*IYOHU8Seqm~q0XOsX0KJSRQxJcQ^3YmRVDgYQnhS6`E^-V;Ex4vk1@VS
zWv^A7jy_UIRSE}Jz>t~#tA~58;`EeNjjKXpgaKeT7}?}+I-u7o-PQWqie?m#;VFh9
zcm)u>G8ccgbFWn>O(<PejrA-&-^9NhcVUB1tz<l`f+VM~nUn*}<DgKEgpccbo=?s1
zxe8X)55t@Qa-0cDm7oc^T@Lk+ztw9M$HTI3awC;91<ZSa%kATjI4j-7N9n0-EP4pq
zqmS`tH>bOZ*RZD)L0ss%9qZ@RZ{CHNh}N8bifc55iq0%0hpfOII^F+%DvQ)<iMi78
z5{u~)Q>(W_v~!@x`6K*-zC6&WgW$-xV`x8Rl>*LH**r~1y(y_F2rg9LB1>zN2YT5L
z!~AfBMH0#a6y#08U74Fc?zV(IAmXbrHI>iIQuxV5wZWP9^<0A5(zhyA18}7tM^r(U
zLVn-6CRqMk&r9KYeL+E0Hnh6o{j*R2v)#2f`KcRw37S><Q%otyWQkGuqvTf~WmIs#
zM}AU)SVxKj_tE*jN!k$dC`Bf9ia0r}ROv&0^w`bX!IZjH5BcS^L!r=nu(agnFz^?T
z`d6zq`>`N)(U0vC)FeiwxE$O8j16D(&zwD?yV}JgD^nB6e`41o+s*Bt`AlhaJ(_`!
zHFBbBV9T{rPyor+1Fg@`d}AB?0T@g;94axw-2n$=o^+_S>iFYfN4KD)Vn*iNPwbwO
z$GyHWF;bc&S3}i{+?fYtzOddpOX=!|s*T>G>|lZ~PDx~5xzalA_Sb1Hx?H1ED7M70
zsq*#8Aamp2yIsVID+3o@ovJ}PEiKPtMT*>$L3m$IuZ#E#wYIVvtE9Scd=|LHUBZ)}
z>3I>8E=!FgnW%LLv%jWySoKNIi#T4Oawn&(U7-dm_6p0p_PU7GB4ar98Pq}I2#oGW
zhi{GUbrILKZ!@ppc+$fK&v#u83HR#FBYAGjL}_z+H`Scok@?{lZ}!wsqnalpE80t7
zo50CR!^1~&xnbX_T9PR>*Ca4YR8;b@7$q3!r;~h_!+R})1;c@$cjEzok*BoK9a<I4
zI;O_}4)Ms=N$V%C$FqQTp}YVuWF?=e?UnAq+zAJYde$A5EU7cHJ_Jm9mBZn~_q_j9
z_};nE?@5AzH4H={QTHI;^OO6Y6mfx8f_Iug{qTt3Tf?6Vhn_<ZVSEIckXNZ@J?aY3
zM>jPux!?KLL#0t^za+O{P6dY~&-m2dF$4<4b<TGGsY~8ACVDMbpfUOac9^a=>yv}8
zx2_S*DApy2$=UAgamgD`?$pTZQsa`lol2uz-@v%*F+mEje!`68XNTHvN2jV<QZ?1}
zSoxGgjlqwbmR$8>+c<#LU`v!dg%j;DHu<meUNV046K|=hYc{kkh}dj*L#dLGsjs|h
zVjU(Z8BAD-vZFjvToR}T01$4fRgGMPs$4g9k>4aW012d-NFZy?cZc5Q`%8u)(Gkf|
z5Fnw}R?UZph*zDo&>w)HME5{S(wg)KwII6dHh<pZ(O?#wXpyPBrogRR<i|YIV-X7w
z#X~4Qg@hNB;XNTJ8QNnJr*9M)Y=DoV(vrThIk;*@5BW(kxg^FU`jg|fqQ1o#b^>2Q
zMvf8%3u7@7S+bgB{+v1Fh{D1Iyo}J~fB%@F6o-S+P)SdOK?JLKu}k&}-n=_wKbT@!
z{e&u*E4!HOuK6W%_wBF)3vG#Tfe!}<0eZ*SFN6CoHcM~2^**<Q^<Ihku&t+r_W(C9
zOX7z+hv%d+R&xx7Ao4UdRx>5SxPksO1fx^ES3?a+`AcyU(t05EU>VGIhn^Ztx}~?C
zDXVE7-wLc6MFK^M56L|_7%;TA;TbVB!`#UOAlC%}ZlwJwf;}QcwN|9+F#Hx4C!nb}
z{@`EVyQkuP%W6_BdZZ}7D8V|DY4*dz>EK|X^`hLhkYx<BLPAqIAlT>sY`w}^Nx6*+
z7%WHSc#nEAgUiP%Lxtr~$xpCgi}w#2@8<U<Zj88IUP+Eto#YSHYS*fRRp!lA71$38
ziV_fkt#=Qee>8eQeN)t4q8AL?Dex;Y7Qrr%lq69ahyJW7sOsNi4U}$JeeJpi)J9Zj
zecTUE`MF2-Tmz9IcX-{p1QGUA)^SZs5~y9>KlJZ}bVBaH<W^4R)3b|tEXO^x$rn9j
zJ^d&>RD=FeL6^D2F8SX7-|C(^md8W<?Mz|=`uK!k{>UDiI~Xya<Ijy9jCdfhXir*?
zRU0u;R{Wc1g*!!FmB>UsDP;u?`6OIgx$gXP!of%M)Wt;phX5e=aFtVo{Hj-aY$n|x
zH9=_8!boSqM^Tiq;3HrH==LcFngLpbbah!cFv0{45%OQvU~r+5`9pqkJexI9Br^gV
zH4ZAnb>s2ta!1tB*h<s`@?^1_`gJ&Krr{MBTv|jC(nyRwW|+Rfg{!e7P%l?$n@3Ix
z51+s=%(tO_0v<ji;VwBf`PGaJ(e^ZDM9h0HmF&7X5oC%_&rDu%fYC;>C_(*z@)68(
zZgRsBM$^&W&_P5OBVqB2rQwtl;~wb_IQgJ^-#;JTlrnlgx|yPAE$9xg2di(rwM$+R
zn64vcy`CaQJX63kJ=TQxRdpIktv@{*4xePL*w^boEwcu^8JT~{^01`bdde|qq?B$!
z_cwJ<c;zr_9?&?Yo&X0dz1i-EJHqMF2ShGq%^$-nM)o_x*M`{7J9H?7bN=1oegmTy
zH`h$TNF#1C;BUazt#Jr7oA@SjokGsXzZyQU)|yLI^%u*iW`xqNAkHuU8df~>N1b9T
zv;G=Zy%cq7wUt=}V)bIUW~DWbRE$4dQgygUbNp(EdLWH#a4V4O>h<eQ>&SMw4~A=w
zp#xnot=lp7najenJ~Z8KIMkRL64Y8i8Y-dd`;WrBC#(x+RpYn@f|lIyTf<lXYi;F7
za8&2Rs3)#{<O|_{Keu*v07Jc%4*l}o@PQYs@wsur8H!uaT^26a`ve(M5i;ZNC^l@$
zr4NLqr$;k4kG?HG?gn@9U15G-oB1%}`s#V95;|wQ>ip#I|FiK&V-#TSaFY_<pgj*v
zZraBl=mSLsNRAbh-?wg?{CW>-UNfm_y?$-VaM{+$^?@}HQ1lI@vsuP5y^|kDWA~}%
z*nt0G+|ynO_uSWhIl8`Ta!Oxs6FK+gaJTNX%Wfg1oE-DK?)I0$?FQMe$23Gg=0w8o
zUkDHBYCi^eGYP6fkaM=X?&a{P!f5C=O<h5^Gu{i2)X)U`HB?PuGbsVf&-0%OPxzvz
zgp>FJN=rEGg5(g5fxr--YKcu(-W^Vi6mC)`Od$jgCa%@{_3g0YTl;m}G1ci^^!IS<
z_pNz!3InZVIfC8z{WfdDf8Appo7o@eE4V%UE+^`Xm3p1{xetUH^Q=`RaxqJ+=aiCc
zf(K@=4u4-BKhWHwEycCN+vh(Oj=0>~bxE2U*29iTRmKyKKOCMobu)2{ckF*r^6mpW
zQX<6;PCqZXOL3bVCJ~GQ_8phJHxlxOH6yqYm?z3*W{=*}leJ|Xe=phfPvestC8Bn?
zFSPErEIj&OcIMWs$8}^xj;bYG;gao=ca5{(W9lXHmrt_zxF0u!b5F4Lp{*@^j|5ue
z3ubi9#&G}fTlA>5#JV5D3w4QQ&%p&=yPms{Pdr?<TfZ^<pDaCc0?AN<wxkD+T@s#9
zYR&1bmumXSongjt)=Fk}qr1ARrE9{YMR#>tI}sw7n0xlcFar^mHxFp3iUenJ@6s_k
zNdCC9b(GsN;`Z2tPVJWLDpL}G+U9y)PQ8dg4AyGr*TeGYD3z@zDO#j1ke`S-Jo#Zb
zW1~F<y&#BFA!b~#PnU&b$I?uGh{{P#DU%O7-BBC@C=z7WBF04D{q;}bFRN`<!-%7U
z2H>FAXY|`P`NTT5DW9Cr4fVzlC_PKZm*0g8AC4ZdXf72zV!SC35WWbLR<@h?V>td1
z+v0X|qeoB6Pk!!fazmSW$hKZ}TC&{(`y}@gfyPrzDERu8D!G26BDlj{vP$oh<6Or1
z$@RPkk3Ua6ziqPL0=fh&YG@Ij4K{>)_`&UAHm8^N4%|jG=^uB72Mvun+DW?#K^8p}
zzA%^$B2Lq*fE_X0_1Y=9;AQ)gA&vF+W-_wy=HQ#~_}6T8;2qVC>+O6Yjk2KI{uI7D
zpP@*%$8yTWhKrL&TGxiZF0@y4I>pTDnT_H3(JAhDBl78)vt#nOiS~>H0;njt899{`
ze+@sciH0J^8fz`+Z{GaM|AmKh!SxY1qu>m<0k8&;q@LGz**UpKJXBQ`T(wEWmoDD&
z+>Yt4jx*C;d2wUdZ?cWZ+D8XdPjEW6P9jC@hiuqyQq`1(`j#eHK&7XBySLxrhn~_l
z`m)8aLW{*L{$J*X-+Jzcgx9C42`!9;%62raT-a;)@kBSJNESkRuTg^ms0;}9ozi`H
zX&$jr=iU-r)VKTaLAYHNg*mN%_u(Uf`6$fzi%H$3iosYh^~=A5j+W<+xYd93gqfE6
zplnr6LlFdkR(rYsSCzH)n`Aan+*#DUbw|$g$26J6S>aU*Ggp8WnpVkj|I~^etMMd(
zldMp&U@RDzHuw5DxG6tV&iryl#{thxWZ_Sr;$It`u^N;UguT9HqQP7+E3*i%91-R$
z3ioGE`qU(bQ)La4%302RKCRcF?BE%E1VBE<)l3$?0J#d(+YCQ;dB!tC$pHoYftxp-
z5956YR{5OEGGy!)T%gu~Rf<}uy~_{3HnPTBP7b2J@Y7SK*?s+x-|=NW4vTz4^EgO2
z=E}t@{pwF?W5t<&3o@aKz-)JsKVhPcQAY7MTmuY%$~5gkf6CvZwZzFdEsG+sS#_=W
z##z%M_xxo(WKB_|Mm3vhzYue&JNr(*Y^B-c@oY3Jr3^MKbhle>_ce0Ynv1QDWc}JP
z7;&Dv@-DyU_4b53a>#Vb>%`S7ai84bcfqT|$M<1(%$<%!=pX0!XXUoVHZ3?s>|ZNz
z+s*W3o0n5zKt)X@QOI}|$gbfU=J`1-j9=)=o29hUEaO=3x&HLo*33F9S%sBB-es=u
zevwUvAY^5YWcs8kbAP(mUyC7uK`8KwONfo3>b)YBzPs7KJlCG+gNZ{9`C@nXt^O{#
zqBL>PF!J+prY@Q8^CLf>)*dJ(v{_v!nw2fS6z3Vk_pNWPVaq#B2J68T&{Gz;o97O?
z&hK!A4L(Q~!b0H!ewyL0i+pkv`!nDHJ{i}wHF}{8|52@H@;FkV>=ys}3-+?%mDBMA
zV+O+7n&*zZ&d)yIz66|tV8>D6INL!$DI;(5zq3y=tkuKwENKKFPGIB@`kOI}a54u8
z(T`0+`Gv@7=)Swf|6?JWUV`&9s#2jWtre^M;tl-1#0)tpJiVNK$T@p5+wc6D^~m(V
zi@Aza*;(Wt{?;}Y9F9EK96xel&+$*|_+geuDN$rEKi$Yw7(i#TQuQQ_EGY5r>U;ft
zz!8{Z>>5=n+yM$0gA6iR?(iG8`i8sggbt5vKAg^c_w=3qI5u9Vs;QnGpu~miewE*N
zmi>~lRnz5XC69lu8^7FdyO^I+hztl0qn5C!d6)SC57;#O)Q#740E%FjTj?*wi79`7
zb7Ld?Q)zdhQ#-BnXL1f$;}fgmq+OP9_3ah@{#ThkMhnDA4P!;}E?eS@9-$c>SlTSp
zqqensYN0>-5(W{*JM!P+B5AaflIL1x`oBg__Cd{Q_bCw=`R>_A{7(O8AKFI*RhNf}
z-f*3thwqeiBdBFc+TjUU@owMcR{J%%vm0>tU?FE)+_Y=_;f?lgU>}yORVN%)c-6W7
zC{CztdMzS`DynU|*k1-hg^Bh{wSZ><e8sO7QF7)?zZgfTRvmqUWJWron7z7O>rcAC
zrZa;2c{-o?tsyYb*$;2?<3vU*4_fpAQZGl$_Zu#@C(2S2>L4%}XCOLYm`2RA7if(d
za7kbQhas%J(qF*+=f(XdAsQ;HfR0;<`)0Q9F)5xa7!|$%&xLE5?vLlIIE36gm|8Km
zfvxZGLq4)M4#r+kWu%dm%DL{%JN%<i1!g#^p6U=WB~om-zgGLDcM^iz5HT&z?B%|O
zS3<vWDv!euCTI;_p8u@!Z_0Lw;SLf@o;Axr1#l?W{cw-pO7o!{799c_arU=+)OY_k
zjd<NyGC&Ms{s?&xuU8lP!#T3XobcHydP0y%rZVawe<sKcdIlR?k&%P+UkVU9Zn?ia
zx}{}RsV0XntH^D$z#pWoR1rST8je^kC?OjQX8GeT<s(YmKv*0yr=UqU+~!Gkr;SG=
zW8c|zMs|hg`A0;>SO_gK$2p(HT5^M5cMdbrwc<EW$C|-P0Jkb~_ul4@pJ87{ZjMGW
z*_i{FR76-Y@AlL;(fmil{Gxnf`Eae>?)2w>V(%E4VkEtTZNF%~{}b=vZRO31M-(4o
z;{h$Xzs~nBUq+YsE~kgHhR5tS|GEG;dG2Jq`ef8#6pUTnZt&Yrx9MnOrbP7yDM5$6
zu*la$XpypJQcYtY%yl#G^t)ceAi#2n7Hh-g6uAY<e8Ek&WCG2|KaMpM!K(Q>f7qAy
z)=?^w%KEYy{xbjjENjGB(^#3ZgN#}7+Bu#A$C{$~Y8pt6QAu(PEVmE|?4+#=eJT4w
zfB$A%27v3X^h$qiEpH~pBKGe|QB0quxLv!_mv9^)K+3po1c=&O?#QM7%7<*Kq*0Xf
zn*EjkZ=ruozvfyXOhc;>q(55hf9BM35RfrAHOj%g=S_b9oij8Ec{!tvg~H~$>2v(I
zP*^(f`y$#mq+p41Fa2|#p9?+WEVIO54>;rKV+HQ6+kM`H_C~>#(wC0QGG~$R2gt=h
zMaq_Dp$EDZU#|9Z{>2kYCs_j=aZ;RX7#-0)ywW$Y(!9@d9C9A`fo^xMyZ$b}g3H9w
z1z?6Yk|?X6(tu023V5r|F$iWiYNnqfYF#KIf}4dyhMB~Tp6fHOVpJtK!6AKCv!SrE
zK}qj;mp@dOB!Xw)wW^gAN^0Y!eq8ibqbSK>hnQmb#ctZ&zWHwZJ(OWO@(7r8iaEN=
zAM*F|dzNh^_|wYiBqk%@kerto>9gnhsb{ynq@me#Ob+vkd;CH2YEW#1>(!u&@NgqA
zGVZoJe7?Q|LIcbd2??8&d;CIQT0tY93Elz$$$n1?Tu$_Sf9rkLbz*cFaDgE9{Mj#F
z#H2`Z3Sx}nJF4`;vggk9S0R8gZF?{HBSfMI!h!b}Fy#t=)YJAcqsYM^q!AyY__{7v
z`8QcdI~=eL$wfK%8dhHA7jtHqEvt@yNH$ES%+5bK)6cA=2iGsaUuB#o$1vd`FqHD^
z{hd0gB2SZ3f|(<7kO$*7e<UIY2Y|yd-V$z#aTmDr9`swoC8Mp4_(N7>eRE?Lmyd6Y
zsYbq=eZ4<D+EHXFL<B*LNWJYAJm?odmb7|N5png9ETGt(ce7u92R%xlS~o#nEXmnW
zmH*E0pO23_8X6<{2T0F^i~WSjwhHkD*D4^6&hb;~ZGws?G_jVo*<r39FG5K%47SU1
zR+@k6mqq?B(Haj-vB;1HsKBuc{m3i$ag_CWDhq(t$s6~5&_AP%WKoPdSZ;10lX)(8
zvH$TE`znY~yj8e{3f)Wh`qSpvBYnmrkcn=n?wM;|=C6K@cEiGf7Q>BvAgT^*fW<%R
zY`-MJpOJ`#J|NRVa~t&sGpb)P%av#Q(rAbin!$`jY5)tc^9=ul)Bt!({A17~znte!
zM(T-J>6RCUnF^>9QB~!`9yQ<Z!o1mx(#pm}pNdok064aT9lUv_{|0~+$65MWRts7*
zWG_d>dd|7bA2>7mDk&O<_2$6lxm{=Yr^MLwxwQt67o|Xw>~fLMdEPoeG8n>6cIm9k
z{Gzwm0CLM9){Rr8cXX>l_x&CIl83E*%y<Kz#cCG-=9PE)8Ir-Ft|{ZPT=*pm{e+Ft
zTPIa%EhJ}ypU8J-%<=DWvH1ohjs~hd>9ASuz44d$qZiO)@=xs)RA??;K6u9mZ}dM-
z<plsLQ<KtVLJ&gPh$X&2qIE>PCMfZ=GAAI;k6Y<)Ur7%FkGyDwNbM)g^-o`Da~e*n
zJ>h@V`rIsEj=0Biw`--vX|0rRBD$z*nl5a<`*4B39^r#SNTu`%@Tlk%su;|a<-X^O
zEDw}cRni-45X_-tSbFdB$Gpt&C@2jnG}5$&Np+?>{oi1<jD|GK<+TH<DEPx4@Gojc
zg>Fz)OBJ^cqE&=|_3i?H>y@+%(5LjPnDlk)VbDC3aic#klKh5OR>h<YzcGG;>-}$9
z2xXKZT_jjFQkg2~D%;iGW2B!2?+dfnNs@c|-9P&mSZ!KIb6mvcL^V}2@t;@u{hF+Y
z6N`UR%~&b&{_Kx$;0<_FD=VjpD@uqPdAlFWis;+{6q0}~L5t!u=la`q9@%9DQ?!@>
z!(@W%{YB?7if9l@fQ%;?Y#zPXpT&u1tHF<9{Fa0WP5I$2|1y%4jvOI6Szy5!-s)$q
zyTaf8J;NhSNi88G8{P~=fU0HwDA@pHl5L)1QUpl#JogPmQ35JRBhzjWf_aC;^qU^?
zU%bOeB;F#qTCK9C!-ti*Vyh+on-}bv;i)E!0MgV!7Zkg59`+@C8|OhhQ<_<UD_Y^d
zkeDkVk^Ry#Pu;xC-+M2uBs$Ykit)1fZtwg3W3VwzlZ<2RFi2!FVuQY4;Y+{bi{a~#
ze5EuZ-$A}h+~n6GzuT(C1X@+1x4Fun3N_%@Whr53usRgD#5|vZFL3k9Qq#2T;Jw_&
z3;iW9G>%7^3Lxtn^C;Tuu3F^tZnlXa>`d)g5de(RMJxRW?=ccK2E;m1&LX#Vx^ISZ
z^2+}8wc}MR7G+sRB6o`~gxB(^!@vy4a8HU|PzP2(Va8wl4!{?5I+4~A04Dj*L|r~^
z)~)_G5d@j9noI{NR{rdpR{PPS_z|+BwS#b3#2yU3(O0k{tf1t&Mx7T7W)Jv<ktR$D
zSMH1yZxR$2xOZ0iKcPEB2dO1B1p|g1B($_S{(~RrAyr?cz^qnu5XmUdZMV!%U1@VJ
zMJc6R8X?R1uK7;?y>2IwTmstZOt6rk02cW>FeD*#;I6fkk_}1gxx)YQv8~|ocur$x
zfrN9|Ilk_7X3uw|Qq(U3v*HHa=U+hL=ZLEQTslFqQn);^(ys)bZcAI!WHK5KWfYKm
z{o#CWnx@IRhftHYv~f2%6j(DPuM>gc>aOugacBjJ@TD<4w*U=xkJWz9|5y*WLv#~m
zkVLVAteo+Pui*%=JXjr7#g40{Ko=zIjf?##Ep`ru1SyUrmnd}87yApA*zzFNPzuYg
zf+c=DY?1%`R(@Wrpb!~Fko|Ed!3itw_j{^`!-1uyM%WK6Ao-T^+<o`@5BPMJ8@bBx
z=0NNV-5K}#AzX7_SgJh7oP3psJN-sKlOxEFho&NtQS~Ca-sC@zOnjn@7`f#1F)3i$
z*?vKEmiuzokn!*gyJv3l<&k-gGgLu{EE_L!{VAaE=mr5kk9J1}9=vsF3y+BRr}O;D
z(aQz_d=s8s0YfFT{Ay?nqmTi=$~KS$gOo$R!S8#UwV&8ZQ7@e()%q>F%ioI>#LrD^
zZNv+$s4enr&+`XEWH`o{TT!&7>gK!gxA{H3?(rl$OrdUm>JAQ)v*ugW=<vxKYlvM$
z<Vry57Mvb#qj+S9=6ZmO+)^SCO0pIGd+h1qSC13psib<Tx($k1%2T}N=uu($Qy_IV
z3%n#4FgG1|N#7ch{!QM<@#8h5l9>^{st8%?a3QkNPAzHue%%?#W2ex**;u&=M6D=@
zQzwWOA~0Ds4_xh3OWx0im8LAcJRg@21ujvw!A(>Zric0r2;xrVMILUY1wlaBcmdB^
zU7u8IFmahRD=B(Ig<NS=SqF9vg*mh-_;6K^H@UOJu!xRxZs>8D1sMmt$t4=X;^4R=
zteW+lFeh{QZ%O@*v__Q&I``9&nUCyyz%v7t(w!?-S7nYrw7R2bd8$o3(^uxu+Nug9
zQAF3_b^iDlGoArUIvi*(afHy_Kh5=vU&wf-l(oQwrPR)F+N#7L-0~G@v(zYb!&-g!
zD>7y>nKG^fyr9mNW)U8khsP#3cYF`^kW^d7SduiCW}yiIuirZOY@Bs*$Kz^_rCCL|
z?cDym2fI~U*B}$y$H&hRWt8id?Hc4vpp&`+1{Bs=EY0Gs<+}@Z45roFbBe5w%Zkt^
zE6ac#gRIHmdB8i?D*ijWAb~yOiu~jqb1bfO7=n%JM7085A!<3tUH?<KF~iPA`~bnA
zxor;!b|ZF94jTr`vw-pIPD-x22P7`8)KpVF9vsEUWl<u{jrGB#GpwiI)G7*gswXdt
z(j#u%zQH!9M?DlTnT~HIKPL-Vkn0iz*{AlD6XoQ}YBV?qlpQrfTckQ28-`yz6z<N#
zo|vj4w=h&PT~K!PBtgb;|KKM1)PMYP#_kM9dVbNF^l#v8)A>*$@Cj`ydxxJ09!dFZ
zAe*F01oZoofAA`UclDc8U)$Uy+!<fV9i~(e0qTO?l`Cqnu{xFLTh-Lc|E2FMwteqS
z{`jAHme4EN^$qMrqHw{m-q|X+>;mhGjw5;ofJ$gdc7hqq+UWm1onC}z9^{qa3H203
z(@toiy}%vMLC4+6U`+kg9fJ4DdPV@i6iW)0P65GBe-4o$f4*`7SxjP7umFDy9Gs->
z%zi&qOtREYtgno`Q)CIl-@aB(Ic;Cx)~0&aAty_qgVU42Z>L1NT1PZ38<d|#aaK1X
zGdO&twPSLpE`x1qewKhIZ)F76L|q*Z0+O2R6$B5TW)GF7rdMh0xJPK_oCaCOdiM-&
zI5B!x#}fp3y~YQpozZhOgAb#WMvBD|t`JI#@U+8+eq`6|)$GXV`f;R+rvqskN$=*9
z!iIH8b&Q#ULP<JS5)Tq?<bK#K+-Gjm%4ATV1foP_6wLPOD}$F+9fhl|g^LaxIlEz@
z*IXDh{lmzZY|tW0N>xZPf%EUT2dFk?#dqA@vqh;iM*ofJ>H<{YVi$k7ELi=7^}xED
ztm=xQDvR8Mmj>DIMIH52YOpjjjL-Ev^-?Qa$zU>|#|5XUrOpYt`M#iE^w3~x6`>i6
z4lo`f%j;LC%PtN}A)Q3-DV1x4sofA96x9boivpX2JCx7(+rpqgABVNvvX98PO9&21
z>_6uOhb^?86Gf^UEK5E$5BVJGki2lKb-_CXrX`5bs%2!&54MY*;nGzb_+~<-N~cqt
zqd?g(552`6D>G11G;QT!{Lca_EXpiYWm$lI1*h?~Ft=C#5<K!{G(*UgxX4YH2mKzh
zmH~V^j6yiK0{8OF;Ho#Rxqm~|1mYXf%jlAiZ}v^WJ1<z*u=Yu5vA({`TKllCW(;Ae
zxW&I;AMF0CbqrSS1Dgrg|E@cNfI6zoQn7?ak~GB<m$4*Rx6WeH`w($1Z#rQgIquMY
z{zo#GAqXJ<$WL1=o%_Z4$v&r8vZaC2t(0n0A&lEC4X;1WG7$}jfSc5X2=MI*;e;El
zl~}eqSia7m%4n9BhlkxuM_UFS*i|~Q4k*QjR=ZjJu)a2YxZFl4Rf!0y`+)-xCg;%6
z;k3Cn>Av^`>(JQ<r9`w^*2mvWm^vd5L=qGJOeVmk7x=3mrj>J|7(qyKJpv|mn4CMz
zQ>AS)4>=-A<RS0auF9?@>2@%fqYd*01evpO(_=w>e&%W>Ts8?cw_%(>3s@Yqz;3s%
zf(<#D9pID_hu<Hc90I0@H{nbNNKgWBDBES9ntZ(8T1U4w)U9t>PrHP&ypxmp0Co8F
zFnE`s<U)beO-vS-TWcvE8od!TEx(?6N^;YQ)*j<GmE~#Dxa6WUfk0qMPvaj2kZZUv
zTnM6$k>lSAkNKBWviJ;s3x>D3ehQ|lB13+hyhn0@pjsW8HMs+JOYU%=HG_qdA&H-B
z8ne43=RMH*=W71FOY->5niVd&^&ZK>Wu1R5h{)@EB+uTg8Jgtkc1sp7?fh#YK(^j1
zxgWo7{~95TP8gf)8o{wfp)4XCi4(j0m%|{!G?Mwgsi~QEtMK#FU&G)%L&~Iotwf90
zy%g3zg-p>Ys|j4SEvF6CT*zT;=xb^rH^T4`Pb#r<-rSICd&)*LjD#_9rWz%r!6vcC
zj$yZVO<Lx7x20u4UMWf^Sm7X-ub+m1OFV{n<c`Vk(bYWBu^D-|y?ISdEtNW&;LJA6
zu>HbI7XH!O(FWtUL&)18^1$rV32xve?O9}UczHX1db4yu=vV1<Ky5>jE2QNAI}{U+
zq1dQu$G65GUYLUvknM)ng$s8#@oh6fjoTUtYFlPtLMn~ZEU^z{F-D*<b>OMX!?N>H
zE!rEAKH^41%l;&_Z!p|5DQXkkhNCVFzrQyM8rV2~d}TB-$Z&pP0@Tc3ehwZcbrnZy
zFuY$>4#6bBlC8QoyyPeA7}n5Q1HzU3x{{{=Lq4o*Gdb?<Ms(3A5lueINUrO3Pxxzp
zzEYW((F4$)$rXf*d`VbLJ}u_fAwd&XswhFzK8RYQt7^#Z41Oxx%{<KNz0e51YQgVR
znN?YrRiWr;G|GIT0SdB$P?cf;ahb_0Uv};_IZ=5GC@rQH8Gzto*=jy_nEm#|s!3Q`
z5pLusr82>ODv`mjO+!EtfDmG#D~zh1s2#Ok+BtHZ0tr4IV?Sq7l)PiA+_r^T!3iop
zVN;D-xvr~v2dhW+Sk0cmiLt&Z;DV4~GH`5lzy%u)T1{X;Sqh7s0A6{dEpd;|4Swqp
zY$;6XQwbs1*d==(m{DKMJ}_Hk6$DO3`}C0DH4@^}L(&753FQr)8ROG_VX(HBb)1No
z38P>O-WH61OqhD$RsSQszS5dBPiKh$g4l9eDt@yoqvf&U=w?|^e9Y(O+9|>e;=VdK
zsO)Crk}|uhiCvjU1P&t$SGQ+g@bo^`snxIe1o0PtxGFXE&!8D0qMm4qR++f7UE}uA
zBEz(6lta&U8Op-q-Mvdxq(q=WRqtV;VA6%EOGL5mF$dWz6xCm$dGf{bl%oS!Ne8qz
zsxHYKELio_Y?VYff+x#lK5kMN4JAx-+(-Wo=I@!Ij&hTt63<D~ml0y?wZU_{SWj8?
z2Kzk`eD1n`2QTfP@g4+0$}M6j@DWRKaO@+QZvy}o1H(au<ql~==i;e;$pa&nQqE#j
z)+)kF)cLxcWRD1Z2r{**E`sb8S=`o1K3Q?cW<v=>dwaiRM#L$~3CU$Q*hrbpzdStY
zg|=5f3KBsK{{!;FGn;l!ZrFzC0_GcoQWeXb?VdO|dDP9Dy+a_=8~P`Y25R5wGc?`F
z{gZD;JZ;qa_0<OKC9y0W^*@Dg|1Wwuwqiw0*F_LZg+ROVoMhoG)(fvuaReQ8bR-`9
z=740c2uRvtW_-<Iha~U3z1Oj@aWb_{X3ta39o`gPo73x9?NWUM9FC@E2Zdv<<7aa3
zaH_2>b9C5vQ?Fx@HHTt7j2mawhTSiu5yL@M6~V<|MR@$|%fr`>BdDs_y-mc3>?=yC
z!~z^NAiRo{N-S7kYSv(@E<}OOcUR0vwmfe%yD$1=rE{l^O^#jhM?@U6YD~mCD)h+y
zX@$N`&Br!W)S-1VW`Ngei*cZ!dFdzEq7GIj+G8sdGf(G{vkX}2JaU~FJFlj6>Htet
z*O3%sUdV6Dl}EP9+703~w31+>HJlyg863^^RV5t>6nPQ=HhdkNa=kGXR2NHxNJ_SJ
zvZ;>w5pAIMtaF(C04BpWq#{^f?Ki<|ciBi~lQ$}m0yYCzJmve~&N<dRcw++>l$z*D
zBerQ%u<i<L?nA+s>J1bwfn8z49Qj#r!DZHg+!&3YQ<%Wv)cS2YlVXSQ$@tkee)<ED
zd`jYMS*uaIp>h@#C;uKm6qj`2XXj+fG+`<Z=z%6uB@t}}o|8;c|MK@-)k);ek(8ST
zrHauI2}`~i0Kr^f-qiK}%$$cT$JA)l2+*o%F~Dx8d8#=om)5At>14KIJy7rR-1{SZ
z)en{k%Y3ahmEarrbOlnDoaQNPp&VJ*nG!f-(ESsNLgtOB3I-rno=~T1e_9vIu~iC;
z24jOVX>naYZ1B17S_-U@&4d;AKQL7Tppoeiq*>r@yU_pNDH;7xxml&u#P9Hm<VhyY
zJ1g^ne-m!3D^rvDMh_|(3F$HnwXdMLY`5#g%;d-Rqmh-+J8~GPB)Yre+RWo0v*zKc
z=@5rn5<-fzv&!!8voeqRCw+2hjKlLx05j#3AoNir%1#ete!h_IV$`?h#uO>Wh_&Le
zy?)DFlR@$Vfc5Yb3&LhL<Dvj*QUNf}HGBE&N4qJGoiqm6EWY6=o27oqg3R}SVoYiE
zDAlkP!ugA-LF?XsBeVBY#Asu>scH~do4QEcio>7oHEQ4eHAnOAk84;r5zID$kYZq;
zzMEOQl+gfm5s*yM0o#c_H5Dl2#8L2zcY0^OKA&G0er5!9)*+Fyk0ExKyxeQrxBF=-
z0%Ak6@SMQkmj5mD?AhIw@u45kv?i?z(g6IINLS<&jGitvEAy{)Oce-s%|r|UOsBX6
z@AkZ|{(-G5%)H-sU<=6Q25t*7GXB`i*VzN^86oCCnG?1Z4eT!>2`_prH*@=e-TU#i
zeX!@UUg)BLvN=Z;&bJgZq9i1s8h8+>S5J-Q)tRsCM6)(-d?gmb$qKedBf#$V^n;n}
zuIGyt<I0}k`T`?KO8OFa|67@>j<@L%w1rqjFfkJL|D)@?1EVUoKRy=h2vP(o$=<S9
zFq&Qz(a>7}2}DH&mL!A}val(TSWy)02rBw)Jbm`wK~e0873+f^HWXA;Y$za#{yyKi
zyJ`6TOJ?@Yojc{snRCA9doFOD<5DO^KZxRVfErc&ZsNbc<s&D$%+?Hrlyx(kpHRCr
zbJe@f(i`cm=q=d#cHLl81Q?*t;edJj1n1fl?GKuY;n+7f4sfaqXf78YEc0$TU<A_y
zpU~Nzk!n}VfT+Tp$qT|J^d4~b|I~iSc-By(W+(_B*s<QZEQ5vs(+Zs{`zVvgw!_BO
z+5MS7f5vnG<Xy3uOc<YH)<vE3Pvr?=;7aj#)UdoH7BWrMQ_c<REWZalVysA@7Z7|P
zN;(d4ju>xS;v<^ZRRh(suKH7*oN2ZXV`(jTKl3%BvpYdV0}y?~RTeB_PSAT^Om?)0
zWpJ1N#e#t;0;6?b=bbC;`h{T`PYf<>5fe=B>a4$xV!4x8BnV^9u|2jq7cHeQm-Co!
zu7|Cj0S5sB|K?9lPuErzpsZ;`s6Zl`w|;W&>0<}BU@N9D>2T?}gqNFBZgGZ4qR=6f
zCa#>U^3zJo>gX}-1svKHj?;6w-Q(=6!2*U#N|DA8LuDs-?;CB^(DDkcVH9K}TTk~e
zk)Fss)&TZJTU4;q(yyF*@3DOwUk4~0{T>Rj4bHV;JLv2m><;$z`Bl@TyWo)Kfd6y8
zLsWy^n^ncy5?Xwc@LS(@qL<lm=gJT%29hJP7NMxl?&S8}(+>S8L=sL#GOHj%G|Zcx
zPd=(Q!;dD;KB++drNTFrYA!Ex@*3^F%&)4bD`tN~K*7fOD&NT-K~q}c7*(SsJDGNz
zfF$PW?X2xcjYt?mV?}z$tPys{r6bqedycc?Kq~Q0VBWLzA%cm$=H!;zM+yi^W<&Cg
zFt@;bzsQ-f%#IAKCnT07hJr(yC(1gw<Hu6L9U0Ndn7~7VbXmF5S$~dQk>ks85NfU%
zEDXGtU2gd@7<wXbSQUgRGSN6cnJoVn=gyV1m7_2|4P+VnTeD3r0sRQwgG*GoQ>Hlr
z?Z7=OGSz+(?qX7rEp{%R7tHl$n7SI7Y$aH0*w^h{7ffK8_A=NQHW~->OU2HI5!*+d
zjtXtkyH;1*(0zbDd8U4bb6km)bs#PTX9mp3ep>&r^D;6+Qg^y8QTEfY=w0fZb25Xc
zRmGJQ5x}-(^nZEW>HC45xh4@Krk13EPOp*tJkK7^%n#dH6zF;8g#Fx%?zU!Pc_SgK
zLY>eO-+r)rTpwF8puDkCI~fl#_q@kDx+k}@LJUrzS#?`j8p03!-w<aiqM8kkZ-j$H
zmhk_3F1g`*4ibCD4CR{vWKyN!zxs{jnX2N_EqqA@SKL&RRp*!u_d5Ih#*ph;#9k43
zNv2tIytDpKTgVYsR}$<C8Y}_x1ICqsU(&}p;V(Pzal*TrkkUEMs$(Dp<v^u5*X|q!
z629eHT<f3$F_>Z{SvSjBP)XOVCnY$w$8CvDi)~>Cfg2|r@iFHH29-XE)d9XUsWsyO
zZ4!;c)_b<UbIE6REpRX*D>buYs<$wM9Qk?X>CSG^gFFqpYOHZ5pG3aIJahFy?xJ+t
z<{;D-Ab?ykwQ%ux5Hf$bv;8VtIjnAm#3K8N34;icWD$;YsTM90ibW(XO7AP=Y^>HV
zC8zL?n+1D0-{0G#iQeioS}!-onI7u7Iy8-G9LFsMkC^$OBJ{!Ml%$)}A{aW2`Dk)z
z^BcB+PSw>KbKBHV9~EQ*NPs_p&gvpV#;aE<LyO)Dekr^N_V<C)LUZ4w1bX$l7{7xS
zgzavQA06uZ9>uurA|;{GFbMIUdq#$~zG$Du#*RbGn96aXMK9Zup@P+i#+T2U&C@rY
z9=c3@CRz-CULkotxg41}r-Y`x5fY)!_zg451G-Q+5zto<7A%OYhusy85bki`ZHR5)
z_6~@f+xvqqB)`S<WOSsgK{BM+`shS12-%XQJY``2tlU<^eV<@8<IZ<aI@3N;6sf7)
z2`U~{Pe$+6XV5w}7uvy%RMUt(T*%&&UUyH8@OzBU8(3lKgj||-%iPMbmW6a^gD6G8
zltZnUW|ltfzC4EC61Etr*t#vYO>!AIH|jO_llv`M&{!y{YU))}zX4Z@2ug=OW4p<^
zE!Z3*fe6M+v-$;h>*qYcO{)RZx#d62RQAlecidzDYkM;uiCKZ8Ar%^mHIKTzc`v;m
zS<2-B0E-gPksmv=%zo*B4aEv0-GE^O3xjDl*S)&Jw*Edoo6WJ>tulb+nmbmx*L+~h
zM>lMNr<FHX&>sf>kyqRWAK4d-jnvj7I(Y-Oyf@x-|5QUcX7q-#C{#+h@SB;w*SVdu
z?0W}osE;!2C{yN#v)s&yc4$xlYN9388(2#OeaQ^=&fD%FC|dbiGUZ`<V-S>XaO-RC
z()Vm}K34}ex8PwEwp(Kdps>-7Al{Heo^-DoVShM4II;%b$!~M?+oA8<a(xex?oiQE
z!yWvHw}bEDjVuEDd;IvBZ`$wYK05~gE3qMI=BK;eXHKxMW0NR|5h6&iRkypBo=hpa
zy#gO%8~8}6Gjo=>XIz>zA|J(%7|qi97?EAr)v&E#TKUd>=&PP12Bd@bVPBUPTMkJO
zF4X=0rTbKQFVzjll!$X4QZ}M=KX8*~+0wvhh5c0-=WI;gj8Z_5P$Vc``Iax;2Pg15
zt{`A|2<PCmL$x4S?i}~qbX!5b%o-4lb#tgu5bd>%Zih@;qwJP=VG@t&&bi-tZm*19
zBl00B<2G7l^*G)|uurPl<6C#$KK8*xpRgWc*8>fWt?(P2v<NF2=@)aqIF=tOB(x#^
zvB78E`GI>+t!<(};TRwV=`E|W*If6!F}8d>Qbv;N%9uMm=zs9C;)YmCq%K9a!;})h
z!@Nq2acgVc2k7s>G&3jy^vuShv8?EA>gVqHH`|)Qs4rDE4@wH?K0a7}bbc}JbN9tt
z+Wewbl^py<r4=)=lHz<PMlpnB`LMnB<vG^DKX5wWDN9R3m`(`qS^ERL=y?DK^2``U
z1tbcW6>AO3{mr#hGU>Rf)f89`*+Q^OfBg+jrCX+#^3XVr1`NdL1>kC|&*Vt&_#gNI
zYifEF!dBf)LYTt;+s*5Hhb<pnI=#NUu>={El^VjZIJ>uZ%agXI5On=is69f3uyX08
zkgUl!F{g_+9+nz9iP{(AeL^oF$4f#*5cJhY>lDZqLWFer!(FSF2xZVv!q8U8a&3)4
zZ>M>;t+G`}aX6505~lG*Ii^0{Tk(-?9O`;Fp>@X&VFmr{H`lDT<y=jsBGxl<ELvj0
z&+gAp*@lYn`9i}-KkYkUXi4?HgqDZpgio}Fos^v`YZI(TmpL%}ATe2erIn$v(UQ=B
zm_`5t6F=zD*{k`F9f1L$fppMjhPW1ju$Z!(V!SmhJH@bLpv|C3@}PJ1_S+Ctk$=3_
zPBu{I5VndxdU)UeW~(M(yGB|lBr61jIjOt1LsJJv3T3yn*bZP}Ju0h45M4~Dj)wN$
z!GG8v4OGYvb5RsUF;?4%mjilu{oC;+1o;8^wO9}fE=dh}FU{hq-1w^C^D)|JhSNh_
zOgne;PQRaOviq>&8)n!C$s3Sn4(cPTlpY+5wqze+$~llG^zf#?NQI*MWR74VVLc9U
zq%3Lgt<Inia1Fsv3<d_3j%AKDe|AUjqItHlfz!dmY5nkir2XODz4~B$3(IHHs~nO#
zWSV^slc`MaCU0-ChMkp<uFA)(`d82ls((GjIqK23eZ1%Hp%^1$If^(2f9U4Pd2*l!
z2f5bfD9jw7V`wCYFt?xG4Uh0^#Ah(r<QNjc5myF_s^KLwKc`-dNf-kdE4v}n%(?@-
zOV6c3I9L)t*EfWUB6tii<%f{pmn3@@bVHvp8u95EZ&c0>x%N4p60Ec~7Uy`<fU#EU
z_xG|+V8961COtHxNiR|JLR^1w=-j;6_M!lE4PCHQRSP?Mf*G-lhmkiN*M^pHrnz~S
zyOL$hm$K=jsD&C~eJ<C+?%UkKj4*eeLD4$CM;ueF*H<>Xhm*N#Pw#DG;X&g|Ym3!_
z@JY<kK092qgRbC3U?l`3Rd~DwZtB|0%ZF5p6QZa*2I4S1#39;qU+?{2?e9lmPh_ft
zt(4r+%f7*WQ6NnCDC80g`?vPq+-fS&JR@A{sx^41->SOkcyHRPt=P2m-YoNDFK_e1
zJR(dkA=O&&`Yi3<F)APgDwVI#HYbI=*T3e6EL)Zx!>hHyE&r?zUbimxV+jx|u^*d<
zF*d{O^^<#ZM=KG=B8pg%xpr{2^z=%!=rQ}2V^h@wa5<@q%ldd33!1u!4zCptjZ4p9
zW9165O3a}iV6sqEJ00YGeVdhDj01CJS7xqIoDB?gAlImgG}>7j&30wgAV-mXJpJ8P
zci6Lbu!45keVN%XxG`3l-e(e{Xd+N+qU&bEBbH-s>Eiu)tDXO`Q6NV_-$AlTy4~}W
z8~xKh0wo-PC;P@x5sjbyZa_9k-UCnDUyLM-MU$zWm}#C&^6uAU;t=8PY)=JE8mp1W
zuQcz&*KFMgEtlXk*nx_4<}64vwb?;WN$*u6%n3m~+9|`0-9apFY^Ronji2L%UA>3b
z&^Jko9v2e_x)5~mc7mrQ4l65LA9>*(-rdL9jWkFpaJih(VwQP3)9b#}4z<Y7K&Go%
z$zAOYwC}&RyKA(J0Bh4Q5>=~-8;BjcJab-GZxAy@^~Czb!pEedC*SStEnh|zuF}?=
zaTB|Gd!^D7Jhd>3aw_B^O*71odwWN(wM~sB%w1Z(+Q~6jcJ{8(29muvzKVmlXPBEi
zd6#O4QJx}pG+4RJ**p7tgM$TH2o6<}9t}?`?%N*TO-MmD`Y6Z;7#k2_AvEFI@7(VW
zp+~?h<;#?aVO)XQmSuY@-mwo@s4c><vLS`jkzWA4QfiUSzq#-4V>d$)a35YLzp{lG
zPCe2)NOBvCDN(g@oNB`%(pH4LOFyN;s*v2G0&zj&Y)O)5)4dm$1Yc`UXS*~8mJ^Ru
z&FavS<E&tBYZoxxgd0c}z^W?8$3wf^g~!+}8=RgEA&Yv1r#_d3o@qY&$$d7-u7Lqa
zZOLseKw6Jiq<9xx+51!gLwHPL(VcJu5h`P@8SF&5B%jJajNUMZQ^PzQa^@8!pNfZi
zF#B>V-coZ(U#E62iU{#x>D6-WG2K(0K?m{}x66hZGdF+_hG!@ASbzJgv5}cvU+Rqc
zeSov%Fx&WBYC7D>*)Y!jTeyWAp)vk3PS)V$QyG(yyhtQ0=FY`Vhue})<s9X9y`d64
z8qLPI>qFm;qU}u1RKUIE8;qG-<Q(0>zHV^k1_)xzvBR7bdeC}~87@ZKt+XF%=Un&_
zMFc;@w!}YpR;m-*kaQ|mw~-q#s4JKwwnfY<=8@6Pn%8+XK&oAkGMT#e&TCK7J5nn1
zHC(Fs89khQuJieoNvARwV>ifJX;#)be=bfs6>IU(4L|C$N@C9Qm+=b#>t$O|P~g?s
zfHBUTJ>U8Hehcqu=E0UTV$xc_^I^DRTT<=dn87G~mp>q2P8v+QPZ9I*>!<(Y@66-Z
zn53IHy5#Pix6VJelP!nRnt2jc6Nb3Uw)^c}TU@x&I){a;1o*znUlp)vkBZ_JK}W$<
zj8pn0zrRU7PF=@NyaQXm4G#FvuimUP@wn3^$(%Zp>wNa3_xO<B`sF}!brSn4Od{sY
zEYoe9*KO+VHE2`u8k$kYNv!XcH9~G;qQc;E+&1rvDLjS=4#PaJAlnw#ye$8hJ$7p>
zhcNV@F`4W@hQf*&NtuJ?Lt+p1J~Fo*;$Gi1u-lPH1h&ai>uu2mXH!S_$b)T_EJTF}
zJE|q{z#hWw@qF@2|A*y``DN!-a0A2MhnZwzXZM4?|KllgrZhcOP%hsZH_{q<qHE)i
z?cFah2+|-KP_QkNs+Sr~!t)2aC+);kg+Bs$j5DGZc5cj$eD_`Zy4Q61A8$)*@wT>K
zpq0?v7x*-%Mr7ws<z&e?#Qj4I$9bqJkgs5{l;;Bv=N|65|1lgKsLhQ{#AZ%#2fi#z
zdR5cj9U1fxG;&Gl9E;wx*=+_M;#SL>rC{N*NaIW_KP+9i+xB<2_q63>syJR_u`T*q
zMfyzG&wV&#YlfEA&asAhOmqpa7&BbQL1&rZ<wAM5ll%B#_SeH>J2h>>upZOJotPFB
zV*hO1FcpZD8qY9g`?@A*9Is>T9PB*!4(&Lz7Jk~-?RltuEWc5vbnB22cy`3W?xVeX
z1}TlWAfq3lfM=&-?D*jf_l><Q;z|jsY`zcVv=p+EWq^8Y&5#Hg0z|$gDAqMk`u|zi
z`$0@OB<pAdD4C+vp`9mrzg8zTm!_s*Wiq#&=~YErl%^39!QPnUEs7>79thhvR>-MQ
zg1L+Z`F?z(yP8mA&P28Weq?PzKKkaX-A9Aaxgq7G`@n#Rk0_hjK4h_bp6EI7HE=+X
za+78NG*sT?<||y6*cllS(Cn4W7?0u8OWaE@=_P+U+p>Ylhc(W;`j%UIuf_l8*VbC@
z6)iF0|2teoF<yBr<=hGARmyrr6UeqhfPab2T7*i?EMBwF{pm7m^clZx#<p1HX3i>f
z?QD~Cjr-O`w&I1@%nc>jV8GSmZpcv0pEo3ZN(aER>lOj92#1VW+RdB%cSz;%K$K1+
zrXW3&3uXNw-dWp21w&C!@D~I2HU$#0>xX+Ca6@9Ci#wL+`Jm67CmnVoP*k)7OhL*L
zgJJszr}y9<%d_Pc&>5HegSTX8C^(g4imV3rD&>py$0hol6RmzmQeFa1gCk$3Hk;^_
zKisKdPGy;ZV$qpW_jGAN3*@oedk1PAU^rc7)Ep_t{&F{SDdPN(YkBcEam26L!|R%3
zt0o4w9~1*33)*|HaP8!QVXSY6;n4EcREBwDmwRZxpoR+`c34}UX7=0V{*jxc;Tcw5
zhCi0k$uMV*^>AV@W4Z@KiV20|7?Njc*dlk)qU5vr&H<6gR0Np$WNB#dm!ajLTP$Cf
zW<repca{6|yMU5oIRfaZfvTU?D0}m;dH$V0x~eE77AZ>FM7V&=UR8dDV}EX2iKbvm
zB3wvlJdx+%{g~z-(Zl|LEyZW4J?t{%YMA7|USumKLZZ&-P%es?*cAWrLAIRT8I-ck
z>qq#{_6$m!-_9#!7i^s2k4pBWtR_qf<4~W`@^D&)SdW9-d3(MFW(5AGfPYzRnY@gn
zcu#*)KgUk1HAZNTa_yC^s=fC_Cp+O|(A1^A<=T7FD_y;#yCx~L39QA;L}U{@$mY#<
z-Xn@oV&DK#DwHc8_C(yQ@%HihMl9zpx!H6jWtyM=)9=_|%SKubL9(3)DG!-drun{m
z_?rK;_`PC~|L5-!3fFcIXWe0ckGDxU_iP2M?{RSW|1SBbH(<QKvU~Wi;0<lxPOkIr
z;rVyj=LSS-tEb_+EUDRn0>rk5{;gy9x7%!`LIGsV=JUFS)9$uqgGDPLdO-8g&%PP=
zPcLUJZS5Ye4Z7R*<yq#i!@|*^V?~?FxT(vOjMo2u-NUP&hK&vp5hXhmNHHeSW;Gc3
zqqlHdC_=L%>uM{A<mM(O^!M+@?zq&X&aCM%EM$^`nn;mbcXHBR?2UX-{CEIZzuTO&
zM|!G=SaR|9pmT#j`^`D;QA$OZN}`0QEeStH38pga-uO4G%0HJ|YSb?}hfU94oV99(
z%s=E1f&(8}Xgd7rys2kkZ~~At1D)%MU!B9A2z~|@0RRWe=Jc%&E!#A^*zT$~8Cdo}
z+T7)v{;XNO4>8ZzViFd<X!SE5KqT3bm0Unmodq-n>fC+2|4y{_WuUXu*oD)C!epP_
zy34(Es;w9nLEXi>SB=qlP70@x9v1t(>AcgeZm_?xFx?ahldK#lR!!7+-715c*yic7
zwv)CZ0Fq*=XPTpXdIy}@OQ_8Ok+NbiiZS9lpLXVdn%ox2iOTo!(@wW9cdJ0`2N2J7
z$O~P>Yw_E0Owsz!qnzy%9F^xoBPnOI6fcuK)_K0#Y4d_SfGjUQ?)>p{@;c6J@S17`
z2WG1ISAXZ2s?a)abC|p$Q~xC8GpAjune~kGd_$;BGa9q1WzNLSyY&-m_NUJ{D>o&t
z<75FyqX6M-bQdxOEOqYN5n6|xs(=xY-Y8(__eVHaJ)XP{6WjoXouk3r`K}Y4Mn`}b
zutcQ4$zL(UbD|%$?M5!1<5f>OJ9g^^9NuQ&)6S*AII=p*ak;VNr5G2kboTy=&j(Hf
ziWQ}Y_4P)IGv+O49m?GJQdnF{2<OfMvP7q!ccwqaM=F>UfB+g5+llTh&U1S7p*slr
zpx9I$=R6u}St8s=s#)02dBY2>WBOK!{Z!7@oF2|4;m|sc^Z}9SUt^^yB?WQ}uz@7P
znk$_~hMUtUpKd5}RcPr{)8ScX^dHP7>{i&58K(@g=aDI=o3mskZ*5U5aBHZObLsP~
zi-oS;x0mzo)1h^8hepU<L^7fnoIjd|f8XSMwK92~!Y|6vqEPFUS_R<2UCuQlSz8<s
zRa1qdx2Ak5x}WTH@g04{ATA`ht%6TbTLTw5N6+CC#MV@TDc`)D<Qy6NHlHCtMyBfA
zGb0x|6=yLHpn;|Wj3tw-0M=ZYjCnWNNhzUqs%T*wa-#YOr}R=fBB%rQdsZ!x?GRa?
z?%Z%E^OI$UH_qT|h*GEJe&d|n8<}DNV3jqz5S_~|wr|Eb3+@Q5W7Qzr$Z#Nsirj1u
zJm5??jNxj9suuLD#}iKVcggD*y3wWeH4rOf`6NXM)GKE=54_3~2tVlSWMjB^l(XiU
zRz1-~BoB4IdC+c>!E!PxUm_+j^s`TwJ9YoH6)l0>sMp>y=cILQD-=D@`&p+w>$Y_#
z6}h+X3TNeKZ7Xz{o4efU80>&yf7X;XfbvGWoBgb_^vAZJB;MC+CpytJ3=XMBxCdz7
zdY$GJz7kqTC>BQ?b7QzN@WU-9INMh;6>Q`>4j(qMWb2zr&dSxc7lrsQ1%W^b1D}a}
z{C$P9B@lJE^}txpjL5_=n-SPxAAk@O>hN04vmQXrT<Ltf+Zf~^@h2~H{@mF1Q;88b
z-#y_>{IzX`GIn-;%6a1J-6~Ll4_@Xh_$FB^d+48**VC-YcOE$0S%+SlUqbc^eK1!m
zK6vi&&Ld;(T4x-vI@nJ$CoOcM=h$uBw5p}CTy~|iwGlDbETzrplbyfESOMKaa5H3a
z!Htz>m>rSW6ldM<tsX_d^Zus_ov+x0t!G|$#L+99*^+(omm*1wIdv~**j=sny<E)y
zAP#gni5Fv$99~w!(iT-RB)?ZWFCOcz!;v?jj%-R?ki>QW{=b|D8F}`5)7Q#l``Xpc
zjeITp0G*0Er-)6pajqKf9QvQO!w%iM`Ffdi9cuw=75R7~2tPqGw5XOlPj#?Te_&~Y
z#2)xV+PS2svwkzhtxhF|F7%vp0%B5^A<l^UGC71T)AR9Nobv_-B2I@-wKh4Fki4Pa
zxz1<TB)1iQs(H528MwsO<X3);urQ0}I@=e;3mQ1A;YC9fy?3^=ZAJ1rRF(W`u-i(K
zO-B+Txoy<`$WkYIL}(pX`qQ|~NgKAR#Z&h>|M_jV*Ge{=aGmq&{p>`=)8Jhr%a!>L
ztM#_FGfl)xi-n(GIW+=w*4+P`vtze~tqc|4JnfwHi9O#YmNsy}A?S^{D(u|ys9nPO
zWMpA@&9Lj74oF{=)nO4bsR>a_pN{C}%={~4G4rJFwuUh|sNZexFPIz$z?VgofjgZ$
zABXG}2l#JBf{Gw!7fXStPzdLO4`OdWRE9|aLBX}AxREs5>Dejb&AMc?x8;eXSt#Y~
zC{gX1#}_*(L;B2Oa7UorRHg8ZCB|eu>8$yeEgg;jjh~Hs)%o=-3ZyPnHB{oqH0H~n
zoddfauCjpyA<vAWx^YgMdA~bDj<dxh8yXv`KtN!uP2J+OpLDq5p2pyJDUs!vsYSCT
z#JE?1*Crr}RT>Y7;(?Lqf&lDsS1};HulH6RV}A~t1PMP7?%a#GPY9fqyU<(P-MbCV
z7!5=D)KR<3{XPYIlU6LttgWoEw*|^s$UBeeQ}}t3%7<cwtN)7pv=BX*`D6RcEwVo!
zfk$8}euR3H$BAr?J*rRir{v}AqzUje5d{q*lej)p+26l*tfO+EGI(If`a6}ZAmT$I
zMi%j$;Wx~*^+O}|gn~uuQxI{g)p2%9mVfZ&&T>3@7Bm5N6YFG+4PgdStxUD2-Q=(7
z6k5)wLuVGX8G5)O=H?QgVlr;`k3WpdMIMCP52U+yzTP{6l8=WDE2=a&>{HxXZyM~r
zvZl92cs#ws3`p>>6fy+SLAQBd?Po``brp7i|5e45?QxqoV~>A$3XvW>rO<kkOqQ@R
zq4Fbl5&-E8vvjLFdv%M@Xknp((C8|9JqGX?+zotNj+jHAO?6*?#0Jojo6lN8fG0{y
zRvg@C(alGU7!V(^6ya=2V<{!2DbsNIKvK-y-n6H;Y6a*WEDQ94dqHp~fOnM2TmN#8
ze%DrxpAM=Arfcqm7IXRaUfzda+Zy;EPX@b)Aw`rSgkW~|{{5`28B|wq-$G9=*y(N%
zMo9A78f0mO-wxc%JM6ulBl3l{#;hNWzZ`-sr1{yOxi>!56Bw8wE>QbVA!nG)GQ73-
z5y1}smB_V&LXt^Ynie>Jh#=H&*}-Y%MaR43R%<dFjThFE6Cldj^=V(aZ!N|a7U0>Y
zmzUIUF5^@{ivSgO(>)mYh+&13EJ3`8p4jO^_rXZ7Wo#YHuh?T)6$&*s_qqT1BWW3X
z1FM`43aj${w$RPoNIFD3;FzDP(d}7aSd*awIN4oiNG!;c=9zQdhK~HrVa`5Bx-o0?
zZNB^LdYfv|n4*|FleCKnS7?~I@R3UdUm=5Y;4pW~SevSG0NypO2UuRE22@qM{!2;A
zxXKTYh-!mA(syVvr#wK~M_3&qgyX3lVp()#ruK37@NE}{Lv0qV!Lci2W~w=FflKVx
zGJY~bX}h6{!Fa@!fdo61Op1J2K@|UkK1)B36u3)vB+1}tnS^E&e8=Vt_y{D6K&++w
zZmCRQx1GwB6<SX6{3<bf?sY+VWJXmve6rA&z}CLRz5gSMA%4MR8t@u`F-|iFzT)0G
z+g8v{NjX;_v3-BI(mk`*mO@X~Xhi}laE9sjlDnhcwytPU+Zzu4RC6S`&0n|Wm|l4$
z$Z(BO@Aq1jWt!5vp|G}PgUf>?z(A+d&C0vn8{Y_un@B?~d-$w7-8F0Qk>p~#6%~yX
z%X9bjv-gh2NPZQY`V|H>S-3vh;JyA9(Ux*6Duc3+eIUdS-0sad)_PgU9nV%oE|g;N
zz$Zjf(sur)(bo4PUv6b7F|kD1K|e%R`47FlGI}e6fufxx&oG=2P}I$B+%s8#)QMbx
zxX>>u3qA9WMW}LuRn%4Ks#i2QbiJUk>1K3!EQDhbDP*e0g${Z#q!`CIBLLA3X5*Cb
zm#5pn#{{JS3*wvN@GfWqnt!Pb6jO`CRi`F*LggAAnNzIvD#omfIY*VcatIeHF^GlT
z2+~3KK~QblJHUE?!HmK&imeFqU6y%kha1D?%R>_*wHA(MAIUJQe|10L5pLjx4GFJq
zCV-$cbA{`TxybsFVeA79CD(J%*v=j9lYo+FtOy8laW!CMK+B2xY!mw3J$ye~ANQh%
zCV;+DX98Oy-Ry9Xt*2D1mvqs>B;uXtDJ+SJ263~!y50SkIw|(37-uA)pA3sJnfa&t
z0@xjTg3}mWmd&)L_Hh5czujH2tG7*j0bD-HI#MQ%R5Ls^yeLTCo3HQypiUU=2(w|Y
z9veP$KkHc>EoUBe3Vyd$3yuvxu}|QmER89D3*}NL4>>aYc6(bMoZVvRf~o**_RwR)
z&;4k9qrl&!MG+OiJC^nhfBv&A#-l)3Eu~EU)klPH*<njtHABs=lyDLmiMT9cv?HRL
zc5IrV-l1?~Jb7?E7xKs)$`w6uSC4RZkeftVXr|FsIwVt>d10GBccpEqATmd9W}L7=
zB!}O8KVBNNB2&X79m6la6ffmgEq5x-a|gJqSNQl3Z3U=<8dNYG89>!o)7`@ruiA>B
zpCZ5vdiqUr_y*;SfgBAwWb&1O7@gU`Y;c1DYJ6n4?rU2+tUMO~4%yje`{6r23tqGd
zzEe$}95NRk9lqf=Rzj8;*HAniuVe`!zLuTf_|D$JgKbR!3K>;bYrPWGq6l2q#oIE(
z))K-i<4j0k#xX=i)N#`VPmpCccksUKXLI8Xs+wLJ8cFCJrc;PYgdh5Tvpf4WDsc{2
zSQ+_-LO?r#v2hmxt(In9|3CM=cliYy35BOv+1EoHa^1ghmlxXy$KpUGDKrm&k3x%E
z^qHG|4K)}p(a`YGRPG8%sKZABhLj`b1Gi5P>ID?B-jBQtYl;8jU3b56wp<^&IaCPp
zv=kp4N%_*us;}LB`r1lhK`3O}MChb)z#Q{mck&5Tp?%`etwQyoE)|dkUH)a8`^Izj
zF~TY>RD>k$8n>5!aJy+xux7?9%)6kAR3tzWZbyJO5rPtmQHjw-^kJQMxC4U@j<WC2
z`?)FIvfjOVkZo!-R7JWp*>|LyeSUJ=9iOE5208G!vB-VSn1AazXMT$di(5<GX8gM;
zwHqpQLCaN?{TScrOSBr5&2ePf!#j>~9{U#wtTFpE*1@=nM#{=fktb(cg;Rb|kH@%(
z<m0uj#x@ItJA>rbtgGLWohweTk71f5%nG=gFj4T9(UB9TIM4GSZH_5n24&C$N<?yD
zq~?;T&IKK9oedbG7Qh4m#;g=6S?5f0Rvr*MslKQtH#J3P-z}4z%MbkL=eRSKPIA@;
z&+XPKAJU@LM1LUC<wNjp-W+kh?qJ&m9VrkkDQa-UGXJ+ucFyX==L_FZJ_E=gx(*+h
z!D;#04bB<IP$dN_O0XVhs3_YQmmW_#$7b1wpg6F@DO05K^O^&1aMmBrn~3!hvn}I=
z(w35m<Xth}$xF6<5N%K}UdW~t?C<7Zb<R%*+q%I>Y%V7ZiROn~+e0Qhd+tw_B4shO
zmeUV{CipB)wz@N&Rl#S8VL2K?KVfqcg3V|$p?6Jo_77%gEOUod(awPQn;xFztfx`F
zdPq5Ot4u;@P$V>jz&CMV@F6*--}TP<z3h9T|Br^o$|%a4)ik2;sneZk7u(_1ldohr
ziOI*C3Z_&r2rQ}0JbI=%(-{)1i^M#T{4XT~lYC+xxDVrSC0?nVaAFx?Qxq2cz2hv(
zwXYip*j85pW=dNE{e*>+XO5WceB9ptAit_?GtO>Rh+^uH$<EWk$QEMh*20GrA|(}b
z%6k!Kr3RLG9t|E=o?O~Oo6MW)e9ovcI8C#Qf&_V6x_RsxXJLBqnpjNabQl2`5Kfpw
zDx7;55Ejcog;2AMxNDJvJHsrw$0<z>o|yq))pmi;B7?l?6mjlX=NPHd+MO7WfLzl%
z`fhri>Kq&lfBp>nOl~Gyix0Zxbmt}(tbK-5ta=q`cjyFi>DdX+e>>Y(6_%FIQFC^_
z&={GoRh{v0bCKZO;u$XL?19APUiwuf{*<WzwYf3F$)eecuJX3sYOj}ZQ$gHTkY-N0
z$@_kkx18UMM|xXYmCPWIW8p4u`V+3G2{}@*7|Z>OPhSzU`*iV(?)3kewUA{Kuof!T
zpCq#-M12ydz-9wx*L6R?|G%NW!itheF@<j%aH&l()v}yjjcL2%@7{G#Wii0RLDJ(A
zV@s!*O%HmcfcPIbe1<(cal`*-8-Ts@esjA&YM;>mXag@zX1opMxt<6IiLzYNr(9Du
z$Ga<o^u|b8ROOm!Fv4L6SMbyL8Qy=D-&nDvGi{azQL5fK+52PEZt0NuiWw(+8w#iZ
z{#G%g4mT>Y3<Q<wILG_XQIw|{aHHaNLoZA>7ti<3nrBNf7FCh?j>wN(bLJJ^z(!u#
zBC9SI*gNXHy1}hW5ivj4c;6481=uYV+J@dw98a<L@JPx?2!VeTa^zg%<xRt4@5Dm;
zAw_(hy(WP*%QC-C_i`LtK8U!rfG8LVW-giTT_2(q%+I<$K!2mWM5j&gzMWuuTv%II
zJ`MOjx(sK$`Se2X#5&u|Xqwk|6H}CC_MPFaVqh7*aWWuawg=8jZf~=8ns<^0gv7Q{
zxJYb6*i%7BF7{qJ*FG^Gg=Uz|TMR%o+Z<Z%of~v$uw@R;%mrh9$^`GxzV=&(Vt)gz
z#*T;f)H`<yh3H#R?r8GwVM2LsxcB5F8qP8kXN$Own;)&7(%{`)YWtzV0>dh}a-Iak
zr;EH_F6kwj1no&F?;I`nbaK;g2!bffVRDF<=5})53`$1}Wk5hBH?}QZ+`ph-;Q4Xj
zweS*yezA2Z0^7U0H$P(Qnq#mt5;533(OgPCpdd1v(tNfu!jljHnz*r-yXLAMcQIn4
z%Nu8JFsAGFq&xcicQK-cb=>w|`X=dy%Y7S!4pXI&aG)d!Uga47cD=K5J8FmmUTe?@
z>t+B0lNkYlo@<VNCplxM4TqJJJQA`Z9VhvC0%CAVaUW&iunfGDJo-=jv+*#RQ;Hdn
zu-g^MKlM7y!XhDYP9%-Aw+@u%+~C&HoJvtcdQevQwII7{Q@J$(y^|Bp3~n#bvnhv>
zn2q@Ti0<L7iQmICgO(Xnoekvrq+Pf;xRRV!RX%-V3^pO88>@WjVc{{s4Tc*AOmA>z
z($t1d;mY7vg+Q*}7-U6Em5Jq}1H<L<-<M9G5wDT8!@O~580(I{aGZRzOeruY#)C`7
z<$v4q@!Z0QQWr=DQ!HkdF5x(zT+y}$Wt!!t#b@^jmwX)meVsnQrhfhOZ-3)!L1`Tz
zXA2dDRh##c+VIvNY|YpxN%pF!<{|kM%)9%B2M4z{?l;6_CsK7PD42^(h7whZtr{IL
zUS&<`C!6q!pKOZ-b;42598fdzhxG{$_`;SKMXO{4WeEAe{N!-TR$FZ6Bltj4Bc+<}
zO!$o;Z?L@{HoYFrV0BVB+|Is!7=SiqCMJm%?-<lC{C8JdK9Y||8@Kr#Iinb_;_v(;
zU$Kyni5y<`Hejwe(S30Ym^1Lg3Rgl!M9)R)J$J1;bynz87WGKH)HphndfPk7yDk}1
zFhX82fW%61u7fwhm=4+`j~n^lJG|EiI=WUADk7P?IhG{dDWcolFCI!N7=ig7pn?z-
zqw<MTUgm*fEf^}#3HRT++UaKO7%nc$GQ7L{^%T`4_QFxf8Wc*_72nXSP${ws#-TdQ
zBCAKK88Ds=-0fL!@nt=h13+VB8>a_{Ifg_Ol&8PqRCbl<dn6YmVLC(;zF)0>+R2!L
zk&=QBT4)g!+2)UV{vE@5-Npp7NlQutdp!#`*K|C`FWRT~ZZ$a0n`=fAtOYL@655P8
z-ygIW3C0sVoH+TLcsS+utG0xjdFo=3-)C!G(rq$uDYP2Rnq+mbhnblvedY%hu+q<{
z*}-Ly^|HBJpNCH8=c%aLm6)@@YbZ8x_A%kyLwO-9TDDrCdH7$C3jgHWvO@ThxgcW+
z=Lbg}5gwdOv9QGnO3|z)N>L2k_1K2R@+BtPcYB22-O5m5%PyB9$ptyxtVjtT`nD|`
zwL{R8P!ZYB`8~Q~kHf-e{9>y{VoqlR=5XgSm`tvHnNr+&2{@OIILwk+=7mE4!-uE?
zQW1&G<ennTbPhwl?}dKuk@U0mEb&B-1^#}6gC{C0z7o{LDg^lY&6YX-ls-Hoe1=Tl
z+(aP@C%xQR{<kSXdFw|wP?{dehbImDpPtAyH=XY%ox~H|L@Rb^n05a!U7z#6><&w7
z8o&UwJj6dIGFgYr^SAqH>HHk^8DmJ9(tZeHmu+U8<Innu&bFyYZ&6{B8S-m3aN1cu
zY`nK|{0t>w7Pt!rNe6PuB>#t3+m-_s`NwjuR`GJi0l=gk9pPZtob7kcw4=~mn)6Sk
zoa>3-lJ*HsZ{iX-ptPng@Q>YKKZmRy2uw77G}O!s{mV7$IrtT7qYyk&jzluAU*T{5
zobuLFh#HreLM1m7j;*GG^(OboOGk%KdDA{I!m@<`Qpz+*7y0*2wcB$1j_LqapOFRz
z=bZEWo*noe$(!mDZEsL-dFF$6{5kz;!)_6kk~=Zm<W36@(}cE}2p~pHGgMe9GC_>;
zStfM8|F0hya3oDr)2zwiKZO6i!gBXE7qhCHi-%$0!xC>jdgzDgrs0$Dj(_u7xa~Jp
z)^93fyD}WVrG?iS%l3=i8M7QxDc!t!t-oj#?<7VeQJ6z|EdQGV3UR>KRk8uIg}PsU
zVEDCpws1(4pe8j7{5jp6wbLJ8$d{8P;wv;XyT^3OT{78Uf4ePjv;UAfXP)N2aKEi9
zqVJ_OLUw2b2A<&`2GEhV*47g<wWD<@5|VrQR4is93O_VAye^B6Ohu$%1|&?8rQARK
zu(q7Sq)-DY;k%;(*WQQ6hezbvZy(2P78<5>^l<k+zXOt&@rM6y2TCOKxapa&`$#a@
zw4e}-T-;b@*<0b~Ua-aSpK>5hc_#eJJ%M<}?4s>TVvjVl`6~av?dd~Y3`56|*Cd7+
z<@j_XujA9L&cdcFA3g{0-h;!1qGYz4eQK-@M-igrl^gs64xvqK?)s+s9Sw+U=H$P9
z`o!)<Fz+VgSaGY0{QeLA)A*zN&za!QdVo4?aaBs3idmn0=4Y4LqQcruN=JreRZ$_o
zZuUo=YN!1bEOQnRo6f8s*Dl<n!WNGdsi3txw=N$FvAW!h$nJ+s_{(XuEgHYzQ~~8+
zHg)Oq)fjsS6-4O)WJhV{?!Eeq9Bs=;@5Zsju-L@nC+ywlw0^dHh|sUVCONP&5E-*N
z^;v&7K5b0%^bH+Dxht~G^yU7c1L>X)f6HVJ4l2!zdc=QlDE&Y}iJ~1-9;eMqSNPu~
zG2(Fiz$5^!Q$ap=PWF#@o#%N5eP(){>>TJQ{jT*N=C_QS)@SGyE<v);qXqPS&wp1d
zw{1<jiN5DU?X4R7bK%;wtayqHLhtw~U~8!ZhHSS^R*oXIUi7bCXp4tbkS*O-;0MSx
z?|<l@e=Zd;b~M!NXwY=PV*+S{J5hFc@eW({N}xhenrF7=g&%H5hshC)3Pd(FkWK04
zs?_j~EqomZY=b;sc$p~uak2lxfp#Du!r6p%U4GC!dKs?vYu@GO+)qk5X7J;&U3F8O
zRql5RDhg{Ob=s~Zq%#|*`G<c*PntFW281{tc+2_V@0T9+_vBFJuW<<b;QL9mVfsGd
z-_eg26e7WGf$<_tLS#eH20xd@*roz4aM^kO`pIo8K+l<1>iw)!f=|WQX4fx93gXbO
z^H1N&1MC2}Jn?$VYhph8&`-a{mX2cFHMwT**Zj|JvPIa{8E$^ahF<)pAHB$y77^nT
z0epbhohm#*tJe9U1-6R#k#fxi0yLLf=&v96_o#7k6~Ko?td@3-O&?e{*MBd}G?DpI
zEXF!N$ljK2p1sJANyfDr2sxMIpVhh|jhBp`>-Rg8m*n8@oiQy2Lkj&O$QN`;%)fz2
z=N&C|9%gCyh5luS^AgPh_gWn2vWpbo;+K5Ez#$xCJF2UL#fGz&$%@p5-zv1i&@v|F
z<{^n*IXisr2wPUTV+O`+dJp8hI(*?cTiB)zi2LGg<e-5fR|MYRM8YU%7Ch?1T&zVg
zBwDNP*XXFpk`!+Dq<`QT`w2=Uh`onCZ(QJC-OUainq_=M>3+=x{?|Qubt2)5Z9Wg}
zW$8-)u0gi>d_dfog~>Mgh`(t-{Ea$|BtkOGr04us^LSb7v1gx5t@lq8jXg~ha>aEy
z4_)k!v;3F7rwzjY@sVM2%rQ?#{MS({C_>2#lwK}OW_z(uo<S9lYe0|1^DE=jhAIBT
zuTe@oNW~5oKs`WzlP8beZQc7UJs`B34w0MCA^3piA(Ya@erB}D!11U*n}I}|6mchH
zK3d`46aM9Fa#lfn2s!hbhj1KOtCbax`^rrh`CZW1X}w8;avI!lpZ{Jy-IRmc@}k43
zk#0_Z#2+o?7@!?aKiNX_%-2u*5j{_EoXiz0k~H(^+2LD)MZ(28wh8rJOXtbb@P!<C
z&0Rv}Ywl9Kn@I0O8HP747*S-(!o$KK3CT15O<ifD>F&b>CUOvv!4GdVK3mc}ny&Nx
z%Riy3c(gf3tfbWChodglJi6KMNKgoMq6BBNOSnsi{r)?@N4?brsn9!N;lggez<;qL
z@5D5#-5<byWQf`$93CSLfNM=9`8(wyBn5L)`1`*ZImPgm#{v-zqzT~qW#PJ+cA!{J
z*l;-)P)QerN1b8|<2qkW#SY$!4>Hr_T^hc>ggV&9tCgOJnbn<c>?8gOC)na)NV-j0
z2GB?6m~Za!E63V$eQ}DtFY*9E5D)no{p~x3)zt{*p!`|KE(#w~VG9Q-FDh?jAD?qY
zxX)x;*tR#A1uqRhtKMjyQG@Ib%mr6w7M&CBeC9tsl+pAFZ3cs@+$G_>89anr4WkQZ
zZmzjvkzW!D+Cf7V!MhG7=-x2L+z@{CL0dHdC4_rdF0N*iaaH)~#lZul8Dkv4s3<Aq
z@Fn31cTvu%x1&0Ky%2=%*QNfZ11N8~PdPb~ruwlrm@t-GaOXl3V<?vR?`qN$hZ|%Q
ziG{{MjgQ852ml0N;*WFvuDT}#YOz>25ccNbQ~fipqtRA<K*TJ(!{4+ozec9uW31K6
zgHSTnlwIYA1t8-}u)~tL>xKjO^OC!1MA>Trl@OW7jke71qB0r|&JUtivd!$fe1C}j
z<UyoVWDQ};WrRNb#&-)S4yXu?oCf+S`LLuqPpFj|Wajn{|CYv&2xM<S9pJiTSD-Hb
ze?K0Ebw^ckZJ4JPJQFUzw^bR*GFF6>T9xr^{WIZ@AL4fqGa!|)Rs!M7VBwv-((iQ?
zBY@Qe|2%Y|q8Uqy`hB=t@Z-T%T<tM{TLYc*l0Pw6>P4Fr3xM^5yVi35^1-&@7Qcl-
z@+JTIfwar9hw5zKmnI#n{apWfGNLd@BkMO|r2u(o3VMgH-@ny2WSjbx;fEfz%_>KV
zCMI1l{(@ip=Xcqjkqs01Ms^;&mAm|n7(eK)GSj2C&@+Bp@v;9R1_Fu^)WF(EYl9AA
z&Uo7Yj|N!If%>3fE&vmL_AkV!qS6|vKKgCC>Gq6&S9<Re0~GNJ;u4N6CHTb>03L%~
zPKwDRy~l;j(+_6A$&ZmgPYkdZrF;8-Pq~N_%5knv<*<dqK_02h3*C7sgc9Y!0T3zP
zEM6?;XTk+;Mw%@hpp=NhIt%`U6>Pu5ZLtzXBfU3cxP#t`9xpl9ZP(XUB`CL)aJNSI
zM9w`+_m!Qed;D4Fx@$$bMdS-UMcWVA9JgKUmLF-0$8d{<?+)k!sOv^|_))f$lLl|O
z`lrEk=eQpqW6N>>$8f3Ya|Dvw^DK9A@HzR)%t{gne!X&zdk}?CZ;=ywrU?FtrGjHn
zni^7erF-CI0WlXIgZQ0CK~%M$xs^A>Uv6<&xYqJyDws6e&CY^)OfX}qX^Oroj^acW
zq>{{$eC5^Ox}D$b8Mh3UMau*Uq<?aePW;OKSH7z%P#iVzmBvFS#rlXH*L=Ro9XH5b
zj_?@_mxKa<SZeIjJ`3Exawr$-7&%u8S&0=790tp?UH1#nv{>@w%Of<h5+ocNoY;;h
z@8=#m%)YOnypk9_a2^OrE;8u*W?2vK_>MFR*$u9BHOSTmetnpGa)!H{x8_SL<1xZ;
z&<HpNFT2=<C{R^UjmL}G`A^okKi_A2S5R6~9VOh(T0@av(n2mh%01wDM}3D3MuSnU
zz$8`j!Cj7a|3&3L^*$}pdn$=AEQzXz7W|&+yBmV9f?5_sc>JSC^N8!LhxhMW>=z@n
zTMRx|kmkXk$WFjetQbCUx2V~x`+HkQ+NXvPge=$%6+$!3>fpT{!kP=-1A1H_GEsR)
ztb_9C;qJX_Te(V8^D@wo;;vGTjngbckKTi$mt^E3Q$K&aJA1mboLaI!VfrBTat*<`
z!4L3bn~`~L_Zyt$2xORR(Ha}4%dSAyOFSR3p>9dOts5Jur<>T?HI%qAXnE{hcgiKU
zGFV$BKvm$}m0KqLG`DN;()^N!vQmX=DmOYcQ^vZzVooln*(v2U*dY-%d5m}YL*CpB
za<>t?g;7yBiD?!fiXCOCclN>5q#-k43DkuMw<v_X=_XX~<uy{JV3e|wAR{AjxU8=~
z%DsF0Qv+(4%Pd!PQmJz{J@zcG?4s7iB6vBh(aS%-RdG6zR%ZHaZ~eU9_^Y@RlHx~!
zlfYsHIm!6O{r!_(dhsZovf_r*Jz{&c*KYvrDCj_-8Krx+MyB&F@b)dDCG4HsungPG
z%cR3XM|<Nr_boDHAWreJNzbz&)~b&F2Y>fc>9`%%Af%L=T@UnggF+c9EDly$^F90f
zNxxY*=&(&<CJb6A+U&U#dRK5>Dkw+cf#&x|LzUmU%Q&~j<AAS;3Mn8r2up2l%#8pR
zMtEB^wVXC2%g8qKtK3U(1}luJR~1#xN))6(t{|M}M*;If7YoT{1er@}O};4IbU4GE
zw~!iML$E3MM1nuWB_%g~pK<P8rzLmiMg!l3XpE3mxKGdxbIoUeI2Rq9+#L@LX|fpy
zrCnY1xAV!J$=!vAvY{xJ8Iow(?)_*)S=_~2NR9)6%OSKgT{k)3SJ|qekQdmzcWJ<E
zzWd#&E3wTK)&k%FgTjKe@caxta&4CNC1KG9+)O%5oJec^vbT~7@&OTZ(dO7G9Lik0
zQ0{$L)l+!_LD3=9GE)$GW>`1xy#b`|Q<M@Kd=#Tz3ZM<M<t1<JU|1jo7MP9G4T}ef
zAJfgt2Y4G|{2suJSyk`tb+BcMIK@U^=H>Ees=4xXZ&5*#rl0=STdtN|9h9H%>tD5}
zT`XfTKF2WlQrNGZpR;%G<v`Ps)I_g<&lfW^7q4Xxdyn1jsRpEXT~!^z2iziqf7nId
zpqZX9^&<!awhnF*w;J!2FD=j>lXq1^3P?~QdAX-pZ2sPVxeMP2YC-ywyt}T-QZ@#)
z<NtQg32NDH)uklKNg>1-_zH&@J~cRL{&N3VWgj0MEst#$U8Nf4K>TPQZ|PgMh7-Ej
zrcjR8Dz4+Dy}Y-jOF)`|1Z_wmlz^yd;;0n`Km_|f-jr``HQeWVmk!MIzuYWB19%3%
z+OW+Kh2gH}_l#B9e%`_lZ50vH_ABWofQsN362Dz{x)-gnzZe3fJcSG?I_*gpfzn~T
zjE{PXMPpcW8ey~qSaVKcl@bFjJeH~nAne#@Fi=|1I4Rr+r(Ns9O=$TyV28HXIq@}{
zy+3eg+}OKdgorUwDz(r?4`qq$d!2X5n4SeA344uT=%jeesTrpDOt14$mLJ53<zhzy
z$&EcCB^Q(A?TfsWzgbgls?yk=w=ec?{5wdkQbEX=;Hv^o((C!T;nk&qOSX<XCVLn*
zU^%uQJ1G2$eC@5dj2PMX@A5wh(z*~W1U<5tT#5cs2o>Ogzm>m)lM}@~0_jt|CBI~Y
z9G~fz$6!=xnR1NH8&5gL6T|R#6KqaHY@1V0@XsdX3T0Fodr=c~xk(Li&~8ch*UxC%
zPIilS2o2hVB_)-dTG?jjV1M~cn=Kf&LfLd6n9Rux5%hBPaenU0wyUHGt(7A{uV$J?
zo#@|C@ehxXgfn;q{iao84B|gGhO~}1#^((sZlz}CCiLp8%$yKwtaP@&@n-vp6XXeP
z2)+=p^6}yRiSv6aLHD@Q>7}(%0#ERUvd%wz%zaQv=7B_WorqS8ik%Vh?sY%By_b^j
zpq7+i{3ZbQvy1%q-DIU59v7*G;17F~tcP22y<L}(1vkgMBGWR=C?VQC?{6>d4jbRr
z<S@~lk+UqsarXOOewU@Tb}%=gZ7R<R@o8)S^7gxhP$$81ScUZ|Tn@;gD3h*i5mooQ
zi!Zin0cbz+&os!pJrg)RcY8DXT6gGNM>2GDbT)ZRrbBs1(ud4+z@zD=<5Auv6Nv?Z
zViLmvd#IEcW<1U2?C0GN&bB8j8<#DF4!}U*L8X>3&2zl++Y`0%m=BH{?8pyK^4i}=
zjSid=BAjq~3QKq6UCPAP($YkjxS9B%e;l@YmR^BO7VK_mLAs`X{|DDp<sJ)SzAzgq
z@%YS({0?XEdj<Sd)|6VCp$L)>pq(MM9BHWITfz1w@{~V;6lSb5D1_@I<5J2v8>0wd
z61@;Eo8hfUCFvIU9a$z*B69$GSr|KUOAidRPY#9il%WRVjLu<=17ufQd(8iAHMgl%
zK~}{ej5LFtm59qsZ`VOK#g~=#6tXbM;C5oiAnzB)p5Boo_tIa-c*BE?V+i4I@Iugr
zytt<v>uo=fpUW~=Cw8uw<zcQ7Mp7iCh$HfarO`cpQaIBx>tXTeYkQ1q1D<8!1GphI
zrjVHch?C8%Ce@O>b2EJVS!2MElmYj~_9_T&Vw7xz<QJIa*t`rL8Ou&Mn)g617Xivn
z4qs%pKJuy}N=1ldrE4N5TIm?ur$H=94k7{-LFN$qkwYm&KM`>73T4lNhsF4=x5~4>
z#)e&+!m4A-vH+wem?ONKa&7yo!Sd*o5#8Ay2PJZ@G5v5}ali`4e|RUaco07(9ySIV
z1O6(s7M%8Yevb8CYj2y$uY<Ia1bGmdrkca{^VXbZ$6z$)X^lO0@irBU0|WgxN7H2o
zmjg+m8+<eUC7w-B@y+?Q+UYcvrZjN9Pp1$Ax6bD(d%_|ZQq5l}-rmPi153~J2050Y
za%9+2N7yn2gbPn^Tjq7MC)(nCz%AuLE>#TTn$eX(hCe`eEN3#8+f;Y<*97PRc)=UM
ztvl8G-~ihTB{7kDfwWd9NS3!yo!~OXz>CB`M+EfbOSd`nkQL=K8d!_$(cVXSw;y7E
zIu8D<syURRCj8RZo7v5liuuIGA+knO5s}Snw*bQ&Wr%`A8*<mrKpo+-Nhb<Ox)&@9
z@qdfAo2A7nr##$pUy2)=xzLypOLA;5CLjVLGXTy3Jh6-Z^sHXX!NMqF#0KxkUO?~v
zyvAL0QrdFHqEMGUY&dxG>Ho|1UUDq7H_zrztplw+6+!+-dh*s6J)4TYMIKGqEFsjJ
z=WotUx`st1GdwZ-rfAf7bM4Qe;~(t3m-bo!z2g<2yu>a8G0ii)bR2R2SOkY3m)!As
zcSOD%70r1c>r3bGRp856kqdUYYwjny5`t~6D}+}v`pPS3F5KWw`~vj|WtXH3ScRG>
z+iCuRjc&&%CJY-yD-{uWV0qnj@X^`DTig!QZT;$*XsIBPc*y<1y`RE-04STa_L(DW
znW<*czum$dTW(D}pc{x*Bj4;Z?t|Ot875K|5VoGWdYM>ih)}KmwpPE=!@sX|cl{Xr
zN}`s%OgT>vUgJKn%a$X_tRTaXMS1_*+`;|r%kpFBpz3+CNSbgdF+0njc7NU9*2=xs
z$XIa2B#!55cY{N*qCy%2$;t(YHSwuCbt^AX)IlBbc?yBh@BjYJ-E@~7yYbWMdsKo)
z+TnG-xIc-j9{mW9W`YDiORDViKe%7hFI6eZLeg6&55yboys@Kf#pnp}88uej=8C3z
zS(AEfbay};Pah<MP*j@&WG!TB_6|3+%ywnq^e?m%o6UPQDaF4kGYdd5-m_zyySE7F
zrIBd5DOQZc=x^Ms2ijtG6}hI1DObQ%$1U!IMU-br^)9p`5&f8N9CD9aJgKK{G{bgO
zaO)?OQIc=ue*SYW*n95K(h|rjaR?w!4l@47+ihv$$L6cO{j8O}meJAxZhR326)Pc}
zjvO)L`@3h=B`YIU%fwoMiB_jOAD;-mj!QZ?)c8gr0s{Bb;(HwT*IvrZqTFZ2M8v5z
zgg||Tv*MVZ%TSX@w0*VvWj3L&Irbt8$3829alvrLTTi~)ou8e20d6?fVRboz77GK4
z+evG@t%a@1!3MG=uYA`VG>&rU$;md2rp8ibfYXe3kiYzpHV-JiW6L|<Stlo7fS8A`
z7&U?ghOkt~YS(pMm(IzG03205v(D0{<>ZMTmP;1lf3h+bmR88VW@)U`%^7=o6GUST
za55my76repBbkE<nB37UXGVl$Lq)~F0oV8PEP}@}xV%=@adczG2w^gZ%)75xelcy=
zM=KPTs0wcVb27b4#6^z8U~U3p{VW?)+1TCtI-n*VBSK!wNStMk?c^2R%<oB}8xR_^
zl~t|x^C?ALz4t_ejCa~rkClQ^T8{<^bzz9RHuf{I@Uzqt&ljurS=k|m_{hDyEn*|*
z;u{kuZ!yn-GY_%0lDm2ndf7nCK{CkMh)aPt3B~`@EopCGS%?v`F(eA^apa08S~mFl
z9P>bicZ|sL#o{0;?CR1`k$wlYL2YRX1_ccgG?v+3Sd_}73Bs+B7$d-Q+1~#>+Ph#>
z1}aAF^w0#Ld!a$4GU}2HH^X%Qw>NJ<&w^nZ5|&6U9M_O$3>wUdh5hLC<9ikqDNP&8
zA0?#53@^e0cJBax>8>7n288_dD)MBE8k}R+&h`EnVOuKHHL=<jrp@)PE$AtC@W{w?
zE<FVCVRu`a<1Ihl+PH=S3bVE*JkhXmZE(MB7uddviK-LE8zcu7uT1msyY9Kq5=M_%
ztbE1{kg);zKn9n$8@_g9?*vt-^{|#;MPmQG{G~hX7h60`N@!W|1YlY$Hb1-FKDAYY
zw#6FRi|7jE0cO=3Z&u<NwmddGbxwZGbaN?rL;kQ2+55J=i`xzoZ%S~=;QzXxD}g<L
zHA@+(=Kx6Om?wU4bC&f|{NVsX*2}s2v1ah)inIHGHSSrRiPck(ey}pY0l`PkUO(s)
zcf6weT0f@Mo!<0V>$-H?<cxRR^Sjv#_V^~2U%|+V*80EnOcvcIL4@+Bh^E54wZtvI
zz><KH*+4pPa1L>L;nI+J;ofrPVs~Yu{msBSvcI$};}ZrK%h#gcDgxoV#cs~rK#JOo
zC5ALu{*GNXO>aKV`5>O0MnhXY^A0~0zePr0|C&E~4MgVU$6`Uy5`N4y^T|)n=;WSC
zQiyI5$_GlaK`v=!_WSXB=N>q9sTxrCa~&5>iV^LHedfH~-xfpqSd8GrMai!Z`_ai1
z#jCs-<P@S*y4S)(-IWuGXh3sdq}W+l%h05<&Fa6Mjybj!=wr)C4Hn85=Lk=s)gJ!0
z(;?SZ4pdsNPyxrBZ4s&P@4uWCS+-8`6S!~{QAW==RNwl{IkI2RX42O56pm+8Hp$Da
zwPv{y+<juv*+iITXQt$_Uv}N>rS6B7PK;(s#Szlg)ua-Gh9JtA=`Fs4N<JT$_-u>}
zDe|lAf4q0%!AX_aIf|kfj)~(zt2!>c?x5}}8;!>m<QQmMemeKK@Tz?&wgIPgK-pvU
zTQJq};_I&pclxedC9cC4s;0?6gDQc1IpV}{UeE58SW1V|3{*1KAD?cX>L30hsk=7j
zU;^wg2n1UO0;x2!<rz1$)NYxPbu*`x#%wxOb{c-%?49n*KU0OZ>CbAei1@B?EvA`M
zUv&p!lBb;bhH0`{2b3v!sDe340n+PN`_x$IBJ>b+ni;0o8h2hc4`I42o<2Lmd!#ey
z#3Vt-6W4N$=Gfx49Dq$^j6AV@p98A`{2f+*1SzH^J~S_tsk-#QK1ZHLT^n#^Rui}q
z){Yj)Q2c#yWN5-yuJKKPGBBod$+R#CxtYWU4xo?ETX9gIRkGlc*;WJsI2jf8N5oy7
zckTg9E!qqlOUiL-3R<xFb(lB&D_cGedBt6U;7jZmEczuW-ui=*TR#D~&-{C+xBBZg
zEoITtwZps@)Dny&82Tc!i4RT@Va>v*_tHIW%Ei}m+)VHHdokuA9yiuok;n}KqgJlD
zb*DFJc3{bARRa@CQ;h)F^b{Ku*V^sgl16?HV5G(Eg0nX}e!EZ==#5zI#wr~C1YPO$
zy!=}K+mm@ea22_gYa_%s$cK|doHpJ5?kYd!XBxH6#u>s*2;mW8ThBWrd`C*sN<?ze
zMy5Ex@o*y3^O-~a@E)|uZERz#dK<n3se#t0_<p<a)(oCP1B+olQy2hqhCUS{IwQ*o
zlR`z^9Exs0P_{h*FcRo}kI(b}HP|*<$Vao<NFEHGVu<BX{--~*Csp_-*lZR)f@uM*
z2gBA`{(U(~EA0^(<K$=OqNmc8O!L@0f60SwjgMIg<0D5j4t2BuS@}txoN2xY`yV`H
z=R;88ZMZm~t4QQL*2{~q@5mU7l`6z0ymP*P^q}23%v5Ex=y1!aB3ndmi>Yc+mBEPP
zRG;S;on$|=MOC)dfi_?4Co`<9q9Ge&Rol?X_(oRw>FxXoc1b>_XyY7mcH`y?AqNtM
zS^%9hXIgYzO8rKmcSxbC`azfbZ=};4Y&+Ym%#l%CYwYAv{*9xtbGDsy7E*lDIkY$(
zm{dD=NOdiU<UW2XY+Te80lk*q!6i9_Z22k0e{;fa6|@$wpa=Qd6g8VLWMtA-ra64H
z|Irkt!SY5?Y>mTNO~zpXO-PAs2-egjf0XRsy3sDFmSYAh0AxoO1!IQ3Zx=9a0rC!U
zqV2iRU%SgbG@ej6g)Qf3FFbml|M9VQ{F{sEP`ntaqtrV=c5Y$|WS6ek-+$woprMT#
zUDQ$p!_Z6o4teYWT{JZ4#GdKL>jwBg<p<Mip+dDHN`}lzyY%h_eqE-W5cQSt?;){m
zP?-xtn+|hXw&^_3??0S@#GK8R!v=ymnN^-)x}^CJ-$)nIG}Sc`v_uRs(x@A5@Gm}s
zox#qI2<pIHTubw|3&U^WT%h<PEW}Evr7BFzX=J<$->{XcZ1akGjmv>;`CWxy{v$8W
zFhh}23ZjI<0rsus{<<!~SOs6sy2lI}d^vMBl+8a~IyMHDR7}t|k30t4)}w-g*E}lY
z6GO;&G&fXOxvd_wA*Wji#pj4Ae&=iWT0z{K%8|;=<wLjCl9o#=kp5#Ci|2G_=e#V@
zVK=an0`Y164)PzwJHe-+A?a+FqzV>vx2OD!eS*1ambGj}d?Sgi*jfzRZ5J4MBq|1o
zuM5*VyE^%DzkM(di7fPpl{E8@S?KLlCwiP~Cg3uZ9Ap)sy7Kw;ll<pd1sdPx&&&!j
zW6ck>-cQ*r_ftgt7ew`j(B=9M@+Xb>ho;gKO>ydvZm8TwYH~t2G%C0rtNmL$*aZTL
zmXm)bS5g@GbIs+G{QNf&L&5pe^biXuGqHelr-zJc6Krw}e$)52C}u}xC5EL%u^rjw
z(Q5U1Y>b4s_-9dvaXBvPu=odOX_ovXiL(@A3(<@6SP?a<-afQlZU(IhJcjl(OykH)
zHzz;t*KB3D7=$SL1L}^=e#6e@CjHwye|#?EqI+7)Lx}AbKZJG{9$8JoLq>s;_?Uq-
z)F!>D#LsK6ZzK6!S<ObP6+%BLAK-15`j;Ke%Rrlm3=?y-`uEc7e&0uVqKz0xO^5+H
zj{Q;sCp%B8*j((FXCtGq5^V#90rVt?>}RAiImlnS)-H>JZB+prS#l=bR1EYl9YqB=
zVtlVG3N)w;&cPhm`n?YsGHP&rPn#xuwU$PDW|p3N^H(o)maWYX4lWJ`=DGA&@Biv3
zZncYeg8S{`bN$UI9=liNB&t{)!$iJeU4-0yH2_;L2zT$3+*;i6oe6P=Oarip=B>ji
zOFI*0uT%Xazo8Ft!7eu%G(lSEFI?=exY%}j7}^FOYb6RQwq`pZk!-UG(?ft+n>XP&
zWTovL-k=Z`r_6x?T_ucZGqeX%GeTSuF3$|#aV1~M+T6xg57q$Vnu#39GPnP3mm;g`
zBchxTC|J`&XuNk^;15{MX2br2Pfbi^5?naRw5@8+_1k@9D@WGNKyZMd(g$rh+kgF4
zTil{8ZnN>WY!7G(9~y9qREg^;o&59eWFw#^)kK7;)RBkWT6lm@QZ6k&E>Bfjnb;Vt
zQnB+9f8cw&*RY)9HCiE940T2USJWz)|D$)}*>;@4ilLaIuOqdY-iBY408q1;5E?le
zlDHV47)Yt^0_eC*^5qwV>tAI{v^wgV=N@`@tas?XHZuY1PrAj$e%C*Ff$$nJzQS@}
zvHnmgAH3LK(2>^KR<W4lRV>Y6b@EN}@!+*WpnKEj`uAnEU9>2Ws3^^+LJJioElWZ;
zUbXuPlxN~6&~8<z!_9|N(=mgUEI4Ku;}+U0`FOT^-LyGTofF3^<DNKPrBKH=a~g||
z{r~)V{<~@RJ6eBXZsH4BcJ?A+Hxd?MExNgl{uQq<n5|YS=JV#2I!YL@K;0+GP!hP~
zRetL0b^^e~BgeASP(U-x7d8HJKNv^kQv51||5pn7k~w}@bxh1gyN*}^kcmiUOc~-o
zgWk%Vjf~*Gt1b;lzce?*xXt!Y{mG8OV8D4I-oY6lHF%E;eNu7Q!D+xyyp2l*GAm7}
z-|hog0WGy^Hc_)y-C`oiC&IxT*EOX8lO{$oMw&4iAozd}(PpJJ6SE@&4Duk|EKBj>
zFtjVS9Pk`=t6T(smigq}@W?Cd^$Cw-^)%e<gd=E(5APOU%C_TP)v5w@IjCUX$8FjK
zz!*WqEbi&wF+JE<!J&uRo7v*fBh?(9m_Vo@-r3fteCwrg;-L7CBSWf?-0~}_tKV($
z)?H%TYV#DQW&9~#-lh&Q*<4pxS*OHOYL73O@`HDuWNWJf2}4$JAT<}~u(k2m#*15N
zJee}_#f2?8M?u9lajy}NBk_FWnf~4qb+li((T2RDJ?iL8H|J0BX8|LjYE*^JRS8vT
zFj#^*l={m)u-}iitot$WK;3Mv@8wU~wp)2xqMWs;6M7?LxCF<A@J`$}(qB1@&ui7;
z><~82#OZ+W*oZL?-56{`I=e2{e0ib&`EJsKiJ@bM%=2IAXOH{l<VIX>g5*YRH7<@7
zj-f-R`%_WbHI%KD*NlHwUbC}87$4s}$FJSr?ylBqC)1ozI~B{+@;GFKa1mNgWgTMU
zAoau;z#`=Q$}weo1^6N+Xrp33QHYtK9JB92e_pEHbuG#{4V%kbbX(d2I!*j$+-gv*
z<s&hu1dXDt#n0SyPFGTa4)NO!WEim7HWUN);PR5En^>B;U|jg2v4J4r=#<mgilj&S
z`2?x7nL2KU&6kK)SIKnI$TeRj<LVV^6dSO4*>Xz8FR^@j0^zjVRWhxGHaH$N#fmRX
z%u@KiKgB=ydfTlQcOI^*&3B$wPw;(-C$KL!2|PZ$Nm0cZlpmWaQwdB8(s~Q$`@e2z
zyJDzfJ0*s`m6F8xW;7{DEidXQ<neE015Bt=noN7F6G<)cwqlsy|3dpIZR@gI)U_Bg
zbcX;G*1F3~NpqJ6p=gl=k|0S;0(9WQ`ToV2gm|LWy&o+sK3Q$9DQp_VT=S-B-5$BE
zgZ5er8cvC3LDNQ>WF(}C1P$@!!5u0q*IqCVkN88^SsBzqY%w)0T5ItLcWp#`(<3cg
z<95sKr>UxCYoMi?gdoJdQn)ZEO9rhk^>2RBPIQ}#1>Y0DShN-!IUI=O_`S$KU^n@c
z!}sL;k194g$<Y4kDReB1YH=MO?WQPFMUKVXv|O!2GP#iexAob;I}*F8)r@k2rzd8#
zb)VC@$>f^5FSM63ssQ<t&P=B-_HM0^1sD1^Xoa+v#ONRCEhTYqUDAHeXzBqXl>>EZ
zgFWIwyM{oFBzo7zK$zBKAZ$A6)K*sF_vk7^xke%v37e20eWSrYFR*fskcme?IeiBf
z&YCbPff5eHPbN%)>4_7F@@9h=dp~XvYx#3V3dclnknznlQ#E}f)>U07@jT4C#3#3D
zo8y98FB>SKy0#j4bcx)ifp05ZGn#~J+nVgAnpWo$Qik3oq)eOfwbtME7yBo&_)vX5
zl0C^rXUhY~Y^C-L|HiF%_o|FU759`ufM|73W>t_2^C>^|1vWrSH5qBrtR@#RGP>|#
z&BIE>o#W_>{W@vHNJ*w1odHlbafK3R?f&+E?v+@sxbd1TdN~P;9`~n$ZEzFn{$wv`
zoA>vtp0XVn#j=E{U!F7Q{UlKz-{n<TS!II^+qE^*WS4-BQj6n@e!l;Ott!HUiz`t2
z4tpleyg$%iLQQLNhk(v(nj`K%+-y-)`SnG$epf6=ZABn=qO61n{0AkPp^hujt(RLy
zV!5Fzzg#uLqKir6r4Enm?$5u~N}3j@JYyC=<$1{v!8Nndn%LnvjehpueBSQH<;;X}
z*=}S!ZN$PTYBeoAS9Zwm7x+IO#}we%uB;<QW+M=LUAxjv_ZxjO1GY3=vZPZJhD+Wr
zg+cp38xYMj+vF_p&)P|sTOMc_QWGao%VN6RTnq}nx)h5nutw!VMvYi;KFzc=#c+Gg
zZfS~X*2{9x4VwjQla-1INpGRB?`9uhD&zKn-IZ^E3C+rP8^xS6qq*)hq>uD`79Usc
z@4a4&$&)|=)@VsBz!@%AAaaR|zS5n&i=-K-^s#7h6)vx=v=kWE&F=%f>@G?2HWEfv
z$<72MtEs`;h-O6gZo(v&BRt2G{Xz;L4H8X(KKACm{=PSPsu~%A2#{hhe%a={onF^%
zt}yq6=wR89U(t}>0+{z}?&J6M7QZFv<Ec@lPy*kArGj;L-TwZR2i<?F%Z=9^N^iI|
z39X8wT~W}nJa3rOtEKxe&4QUvneC;wXEn7j)39U`W}23z*-fP=#T%ie2yUFjvgx9+
zeLvq^&9@8XO)QAb$B2`V{=d-M@AsVFk|PtV5>kG5?o5%uB?86T2<PlfU56i@@8@PF
zwc!xu${8dG(J%@XDNjwE%;6%JSpTN`^F=nQVGyVeawJ$bs7#_Dl|*zex{Q)Kw$!q8
z3hD&M??Ug}sjiA`D4OiYOd{Inxz~6XrnriyGG@m(&y4D=c$%SjR%hFY8X{-7rrh(c
zw=4@kZ90?{Q^C6DW<n2}YWDijdpXatGY@Eh=p7%bC5^sqhdXJwEgl#tQ85ZI2h`|2
zy|f7wXW$Jci69staYD0a+2vP3CB57NJ%+{VrZ&LwPQDT}Iv)FGjr&4!(x<Fo>|~?}
z#JERHqgi#O``qE74v3mTrAUn8>C+&P!DgUr1VX-?cCVZDw&nZBD^OVr5T31oPdqey
zMu_B^ji^(KAm?WGq<i5z{7{f3n59itHuIhTp!;>DmBxi6M@IVwjvK@i<AzqR&bi*-
zu-*!paob>A$G9#C5<r~6qkUjKl0JBiDusWjVWV+oWSA=k_*ZZ)AhTK-vJmo^1FRvd
zJ4;9j#+82s28T5B$Q#aEdnP}|SP!YI#^bH11XymB@MzbpQ1>spi?J3Q92Dcx1mkdN
zD8G?7m@lC$CX6*Di{HL;inD(=Xml0sGMx$$I}#EFLqu=qh{0_u<bh9AC>|49Ww0<Q
z(G;dk=1UlO#UK0g8P4Qvp3OC@A#~$thN~n60(<k)Y0ljP;LF9=R0p#jwi2kCk!G)4
z<+vfsquY`=8Pappcd~PHKpLDNFa}EsFK=Fgz?i>q^P&M`^#N)YkPsh{?^GU3d&I~A
zG!;)X-VCGo;FL6Un|m(^W&Ga#F{D6#SsfJ4SZ5$zvh>A^BTm`L-86P%W05k2d4m(@
zqjJs8Go6DEp-sK7q*O%HVgVMQ{^{{fub^gZISIR~7;&*elWd0vafP4Z9Ng26B*4Zx
z79%5~+;DtFj@dKh{GJ(nc`Q;cR_K~gLFDT%L6tC^DUzDIik+%<_9w(kloL(Ht5qk|
zRYs|ExP}KXhVaF*Gm#OREl7;%oX|>E0h1s-#J-gX6ULi0`qe}y61EdGu9PSdQZVPB
z>sqSq?PoZ%#s;6s)bc9vAZMW*y?VOyM!<vIk{6qIu~R-h-N_1Qrt_=Vzly{I<pHrW
z?^;*pOk{<z@nj>6q>!f)FP*+YjL}HIOC~$VLCUOi3DR?|WT7xq1gYKbI9DD;m381T
zkNM=SCyg~!y9^Eca`X^q`()eM!T{_G9GQw-^KHKKs@R;f&B=8l^%NRH-v<P%+Ij1=
zcy|J3a=_}0bMu0NpL%P3l&K)0gavI6x3uCA2GRgJLaEcYYpVu8*^*;AC$S=V39%Pi
z_Jp<DF+FU!Gh)2`45IR3js+0~R8+%5;6bKy)rq#QU^7b<Wd+uD)&>**V3xCMWUDu6
zOtV>waq{lAn_tw8iOt_qE-)zCmhmc<JuqPQI#l4Wp)*C0Ro8Xvru|R=Bnz#LWkfKE
z?R(v+&V9Y8gJ&Bia07KXqs4o!c*vPHjLzk?pwgzf45l$orOj9kM(!dZ8d+Y{38j2v
ziL+(2{iYVY;c2L!@P<DX@P@~QmSBMDU@E)h$};B&k;X$A5UIEO$L>n*W}o{`j4@&$
z$408RDs@gyHuIUu;uw0I^D*4vbR(F?5rU*3i$omHM}IQKxpfddA@=7B?16T^N5KaM
z%qhc8b*2XFoX@QwZKeySM+y^c{zlRw&?lwDuwqUGV;xTq#9Yfc&~O5NO-v8N)?&qS
zL5i<fJ~6+lSj!GldUgp}27+C3x8od_W<Qk4s~2*P6+~Y+lG5^>tA^S!g{Qp=x^`CX
zfQU9qkUM}8xM_-WctF>l5ThL4F!eVtCFOS@jFZoRLz)3Z>-=((lee!O^-&RGfjAU-
zp;E(L9&##t`$A&8qa?kL3nY~0%S)ZF_UU1l5^-oq9gSxel2Bpqhn(oFzPOvFaa6Rf
zYBR?%4W_|^a9-H?sh@olXA057Fev~H(vUIK&mQGGcSPH6h&k@kkaM|Xhh!pP*t!bI
zxX_>|@{|1~o_Iz6q^3FDIa*jC0}14@!98{%9y-GLm7|FAqH?5akfb38!fIRl{z&Jt
zA-0yoMIQ)1fO?Z={$1d7VZS2I?4c6MujV|}TgMYm%y9t~FcOHtD{+q3k_F*bO6#N_
zuF<?G;)TV=j?f7}$i6vYyz?CbSBDWWO2OGVSAr!9G5*?797dT)F-<JPEK+*(ykp?f
zXFh426Rcd{ONhS}x4(~b4m^n(5*b9WezQjC4~>uO?M%zJ{U!pi)JB5^rwB*->{6!}
z6Ww+%r*fBQUgw2;=2!^J?8goiMYHHqZ0lqyp5WY5Xj|aY6+^b<V60CO>0hrg&d*BS
z5LZSRr~&0QGwB%0n%$;r{-3Y+j<2#l|Nrk=aa1kVQI#Pl?{~mjjV2@^32HTq1jtEZ
z5~es#l9S|+aYB+q2trX2K|yg<wC*}_pw@+}D%QH|u39IGgQ`{QsOzJ@=j*yp5Uk(d
zA3Pr6zVCD2?{U4aeZ8(x8Dm262taRdjHE{J%|&V1fCJp(GIn)a%!c{nM@r9zw~Am`
z&~CE+(%OpvZ_lEU21jCxRp2me_B&0dq-VWt3PA7zbW$S@oeJ!S<t}4%sjU{2syzw!
z6@?_duj~n!mCZ(PlKP@_J%oJap<7!s{uGKd<x#{Ub@=Gg+>A4Fw9i;|ID^xUcP5)Z
z1C|P=uNm{!bF(vAISO0sg&HWZ)#<%34TR1HlFj@`H6CM*%2+84L^3uMYPuuP_q3#d
z0Ep_t9YNaC%d&&RkILA7U*q|u)UPEYq~z-S3{oHBf+uo9>O*k1eG2h04keqfh-KWh
zol$JaSWPe#0ZK&|4*={tX=rLhJ2)1pg(@5$lv>mysIp%CNwQaG{6F0p--W$8w%|gf
zKn-%C&E{tBgFg+vPZcAiI;l|yiP6@y;V&&22mG1^8B_piwh@k!TwP>gc97d2x%q9h
zBcVMt!K1*&W5Ebp{_e7jMOn6#QO*gP(O4=xEamubsf>$49=f@bDp-MZcMpchhNd?r
zpTiAgOL}8|G-ZJ@{V?U4aN(^fi*W6KXv(tr>twoY{yNT|hz`;e7gdqdVXYZEhm0~j
z`noQ?<bp`XN9rnLhovt8-tAb_d<Z8uIOyn%TlchERrF{CIY#$rMk4`v$B`LVqv$|7
zRWYh5#N%ocO;Q`AVL~A1)n)9ykC9L<3NK14_Xbb(D@7R}Twqk7gBBHog*lqq%AOw9
zk})gP>Y;?D7z&~0VeM+5puZoL(MH=Du?*&j2t?ach0vNY83&1#m`^z_Zb~v@tJFaT
zgpC_~U6OI%l<?FGlF!K5G;Ip7f(tV;=7o$%tEw7cB%02<dh1O08M}q&9hD{Q2Sab{
zEFlX<kI6U^YS-q<(JsXwI3DA*hb1$%O*duPYzvi}|HBqCK>%;i`O-hbbi1HEW0e+N
z<kAG@DLN7-!Q^}qsUR8Ud)ca&#v0+Zv@Mij5LzhgXz=Ax8J|yKWz#Bunyz!8YpEW$
z_C`j%V=4>pUQdydwhfH|hOG0+ns(G>Y>!T@ug|qnZ>BDo0f&&=CYkZ5)aNapDFy9^
zacaew#BSXg7sIxBB+Ai?n^mGu(8?*8)s;~nwnf3HL|aMEUG)K{c4cHhRQzm{nx{F|
zQN1afKyQ~uI<h09Y#5KpCZN5Q5=u-VB@^(a85u`~@?uMKf&EXL3;&}QvucBS7uueR
zkzvQc^oZBz1&5|0+rDVlpkV!^`f_f7K?=rB&-gWJF>59(GSLZrt92U;hNx9W#$Wa|
zQUjeuq_0)1{g+HTX>2MvJu{N=clyxqa}*Nhpo%tAYA6&AuK!KORiO$6fpo>@(O857
zfDBhP#J0y|>?B>7E#}2jiLqg5W7(m(s%R0*?%-G9U0|N1dQ4X`otMm-VEDL<kA5KX
zADT<aFOqI9#dtQ;zJ#{Bwaa)W>^e2bu_b<Uh~oUfVZmSIoNAPGVAXL%n`_MYGrO$g
zC^y5@I0yh*g$cAwA`LTrEU6?}QJnG1nf73Pyr)}=E9X@*=!D{o0gM5ykZO=rVqk||
zrrn)mGEU9q9&TI!C$LC_(GBI%MDU1=YdGbQkXC0>sw1J*-$DTc0X#S;o^iA6)y<V~
zrbUI-X2c-oFZ$bpC{*lzZeOI~CC<?g5>=|sI8u7jYr>%ae^dyDIjBP52an-hYL2B<
zjZO|7DvnAUA$3%ZIT?%L+W3BK8B5#V(jpG-tVu|qV}jXpGX5SJ_E%&|eY~AKOWZw$
z5f=B(^=|G^{9|0lc%gtwl#)%{2Z+&kT+t}=w$-WNc|Gnn%Qe4oE1z3$KdFk-t+1n+
zayZmmCC03N*&UF@Eo#?dD#cPQUUs4Nbj$g#d-Ha?HFG`HXU$z3xkHG2T=2?g?$@_*
zhxA}zeB{1E5ag2`1Ax$T?)5|V-rO5X(G90M-7yH`Wkwti8jVFlCnkVpG8DG;nLFN+
zS&I6|=}3H{?I%lI$N0gFj*8)e9E2c4BtqdEy?VmvH|B#Kp`I8&^e#rYf3xqHT|OE0
z15Treda(9HIcDvugyE?F=eW$%1(Hh0t|vJ+gyk&4GaY>J$>{BN16Z20nOLVqrnpRc
z&%Z`5`WDzg3dbOOu~#))JYnqU#l>4*B}$r=JNo{DA6?DfbQJ)3#Ghi9;{?3vHe?P1
zr-BU!XAp=t`R_q2rIpOG%=VXTgrrkhO9uHl(%{)5#xHxa;3PnTtD9W#z^$X7KX>Gz
z9L~wK-1wa4lEGa|GM_wqlrGhN%W1={ds625Ra~$X7u3n%=~FUqUCaf+k`XpRr=mgl
z$EOfb8g(dAp?<>#UAT5?W-^0XSK^hB8=6zL+@7mHb~S)-3ZN#IhW)45GKBJ1BiR{^
zjXW!b4oCF7TXCzZ33*SeGCBeb?!4fjr`(c<>^hE4PRt;j4>#$&_N3eKp^?#AHYmoT
zkiAr2&9{cu`gbCr@)(a5(0D^V1AX{0e>_+{rE+xi_w@_}wdFWXI{O6`6$N*2S{q<M
zO>HT>O+jTXu8mJ({^qH}qgD9=nrK(zVU!=_T<Txhb9j{E&DxF>9TDQ}MSVFma(JCT
ze*SP_1W9i7BOKZU5=4&Pnf}tryhp=P-J9w}KWp%{0}L@ADS}2BlvKi0-pcb8``H_)
zhV3G_Fu)5qN(HC+r%MfGsI({9kDAik7O6<I;45whZwPWLn(8a7?1%Mzv2L|T;7(OJ
zuN=MD2h+KOk6!&7h#!_!Bi*K6=AZ2u9*tr%#hV)`y(OiwzJ^S`0}u9}A2K{zP56eY
z)~*=7^_nhv0>Ok?#DXC8h@V$BJUS7d3(6D`Qx&b&mh;NT7yB<y7#^*qHVe~8mrJS{
z`&Z-qkT?ag@D3miiR_eD5_7!a|NQW8hUwwbWPc0HCa9}q<ERzZW=tkRuNKcS+OL2n
zRH$;;=p+El5C(#;sje;xmh}3?M;XQw6{4ilrSK2ta*nTkE^HG_Gui$GZvJ>ze~g$1
zUChv6gWcA+XFsM{wCK@p8uZiHJZk=KdeD9FIfMoS2wxZ}?u<;NYX*49*};*|x@%KL
zh9r(+w_7FvFlyw|KIE$2vEPABn&?8oY*8dx5iB~vJm6maGdDT7q<5sNX8=GO8|=8+
zEi4}?j5j)7CYu6E&n3kV=yrbt-wnV1RARvj#{uz1_a8*Z=#$;mmjc(eMP<E^=g~=u
z-S|1&f+mx&+L)Xj(jKYN2Ilg&Zt}Oh5(HWl+}<R(-}s_IrNPWXf2LXW;j@4IT5#St
zF=4^}S~eGuHW0c5&;U9apdT`SvV-f^x-a=D3>JpW0YsZ=qGka&kNn`hHSWs~_r8sI
zOL0e}zAdKeyMb6+5R98Ts<P6nT%L*3_J@9_aGkTB@sIC4Dh{txYHExR#e+IFtn^%e
zd)+WyF9qWaZuH3?{qxabalT%GOA;oVOttdXZBFywE#fk{z=@9V>;=u8eq6r&wyur5
z;UK6x-+y!@4~hMCw5SG^7uKKZrw<(#hx(#Pp=3a!!Qbcjk+Zl4EsNy|*PhcKym74m
zCY#?2c4)3ZEogZBrhlc$F4e`l+dzN}9{Y!%Q*BqO1RR4N*c79@5;TwdpZCpU?M_)z
z#o@4^V7nLnnd9u5rUNohFIaQW`rC84hVxAYw&XDP!K`o-J~Yk$Wdy@gWWP0Tv*e)l
zGqU%t_IGGiWR<mHxw9gBEcdy;;1U^J8Y)p*^S}ocxB72t?TaOZhzJ$325-ON4{qSa
z0FNYlQR#$w5d>>4@H_mH^#e+{b3le=5d8ao-`2{5==aI+p`&l|pO^9wu~wEUL1ZTg
zru@lI;VIUsj4a6xt;$0$`L!$^tITLv66$Y*RF5Biv<-SfTsUMwaPcXA`DmV^Jb}7<
zKt_lX2jkB1Tea|*Er;6X2AMIxp~$XiYFgV`4#9#ZzvsT;b68i2*1rDq5Z`a~{dv3<
zX48|5iCU%{>sPRl9LtGvEH;VS%9#DSKl&q}BEAm~0DzPH!Ek-6&-5S7;RaL(Uk6U;
zbXtAcx1xzYm<(Cw+J{=~>NmT61z!s(5!MRmi%9CZ8U9*t#8{3bA#;u0uS4bE>3sis
zNI>DjaN<?i8f<vQA5&pptnW@VOPL6ASNT_V;1!J8QXYfg!`c2ZP6yutZ>r0twoj|C
z-N!DKCL8HrMU3WyWBkt06Mu2G!1oOHz0QBj5S80P{j~H6BO)%pIG&#x#dNXXL^p%>
z8~mIZj6<Gatty+Wqj2}l{+ueF<tT8JByNI?*Zty2b}9X&7V5Y+{go5!VhKP^$u7Cn
zf*|s;-<ZW!f+{d)a<n4T7=#V>teCIL;d}56P)gbC-Ua@;QCyJn+1J+0ND+&{TTA`u
z8hb+px<dNEKi26V5s^{;gEo|8OpN|#B{ow$NPQspAyX!>>Wi=Sh5PYj$VFnEvF2u8
z8eHMapdi?AeH)C9kKcQ#r@^XCGu6^UcQ0~JCcoz6N7x7_Bq2u*Y~$~JY*)KdjJ6Sz
z><d0z=r7-M(*S9si59|#$2EC>pgqcV_r>F&>jZDj_rK9Kls;+zn`uC*tNWkkU)1T4
zZ3<p=zqAvO0T%iRg<OR~V?eAbnLA{FoWqeinbK7`)7lUwSt;I0q*|}+1Q9=&Ktjs;
z+x;289Tw-v6!*4;d-v9<{-kAgNo*(%XkifidWAn=DL)6<0}5`%m}igA^C!&YE1?H1
zrDhJnj%WB>SQx`6z@_G{=sm#_xN1G)1bL4Ci&^r<=a>1%I7NK8Ud#gnUWf71#ePFS
zzc;nMF(s~e=J|e1IGN(c#`r+U`I(NG6ht!__bI5MLGbfVf9`O*M5`LUO(qKbLF>G2
zlfOc&TJk_m@8Ur%(s9=#{5H%S(N>k1*F{Q8Fnz9H_5EHVH#>gd>p=8V5j-H)=KY2j
z6a-*=#2T?ig2@Q$b1(6qoW!EQ?%?ji>=66?;%Z;I_=hFHtOv@3@dao4S{)uquSAP9
z$l!)Wp5UZb(D)@0XjF+HSh?B{9AKAqcw#-`nIEt68v?#1#OH3fdJz0|jsKXX=Ic>w
zLSWigG1|n_tNjbd+s_;56(fo;2^!>H;J=c@fc3G6hU+(Wk*{#+FLkh6L9p;5|177G
zA=N-S;SYB>*FQDP)(->}6mrBn=`2Wv1_<asExuZ36pJ9<g*qA!rjkm6y8JG~Wy!;{
z#*MxKruKcKzv5sUbQxy~u$!RZDu3Jpo+MpNhX6IR3-((WoPLfkUc!^AnqV(Q!}rbe
zPs3EuQ=&=jLGbAX{_%-iFmOIlbkjR9{$_tCT!M2^HxO^3M=HOaah*R2*2=sHOfa)%
zX%<0{b)jFo2ba?vt*KoaE*c8_9@P>%^VC24gAd{pybEeTIEW+<yu<Gs=VA^i5hSUI
znV_{?>o3w71$Y7M?IzJqaLFxxZNjeEsRMzmmnYA@Eo7tWn$_CY6>EYX=&>1GzsBdH
zEik__wTWVnXJ6rS8yOxHDFK8A(27mg@85ttc&uRn&!J!{*$`BU3w+@;8&y4QkoQ%s
z_E&M37$$<M(~9!CAYAgLuJq@KM2*l}1gEF*_xXjeL5N%y4hO}^S(0$?Kl<Gl*&X!!
zco&LjP&RH_u=+fIm*|Z2MotA9ADsgj^fXk&U!LU)n}&_&l$9oF8kNqxRoc%UU-&&5
z0mB7)4M9PRPt|+j(7NQm{`#hof=4Qi_u-0=TLBO}Wxs-`cj(rJ3p5jx52F)L4=IC)
z*9F`9+rS&*M>F}p5X~b~2-(1h=)xHxY8d&-o%My`4b>25PR=K(CQ?PeR~{f08*YY8
zx;%q-ld94r{yVmiPmT-r%=A===<*~=f+@AvWs>on-}6B(W7iV8Oj2CeHxLox5OPmA
zNbP9Sc{wEd<pqlm@b8~JQfREygJJ^<X9|t}PnpN<HcGR9u)`{BKnWKR;w?im_lS**
zmXoig7OL!WX-$4``7!>`vxY~@5Y7E+D{Yop`E&--T<oK-3==94vOe`Xyrih8fJ1Y9
zrLT1WXR0_-Dk*MQw&!Pc{_V+IUWK0X>ikEQKf0P1>|f_knYiUujD>4zefMOuYwF|i
z{#b`hDbmSsi;$K_X^<=>f|wXyd4+_3j(^PkY{ljmDSr=+f5J_<*e+HuHXz^zt#?xY
zih>VbaIM$;^j)at)fe3^*V^4Ep#13^LwXI<w%}QJ;SK5Eb<*NQ!@|3M-Xm_svXPk(
za}XTyu0QDIQR}KPuSt)x%rRgfbAmILxC<U0xlWUq4N?gG0!g@5Gl@C#-NI`|uB!yU
zItdxl36(mrmF~lrMy_M)YvaB2CzaDZA=4^>)J=iU!86aF<t~1C<T^s;WZmJvlNb2T
zQ{9{VZW2mzLbOYSRw3OtSGtZ@My@MWfgvV5AHlI5)Sc#j^ZH1Q6a#%ev>}|6UoUaH
zJj5H|^Rd~zOcDH<T=wtPliiE2j$Bto))#q5q+Yh;M3?vE;^pqkf2M~DT(^Q=3?+E@
zOm`8_!%*oy+1xcd5h+XI9^h@X$_O4>>7uWVTsIM;0p+o$4~VRKunq}<v?p*d5b(ef
z(2D@+In!OU-d^;>3&sXzr@J!7j{BY5wXWIpAC^T$)(q4;-yL$hO{+f69>FN|c3g*D
zvw1s?S#0D4lVu5if0DcFuWYAm7c6zH3n78+o^?lWw|5hJ){y9(AB%N#ug8X0@VV#$
z_vT`|Ga2^N9&a6JTTg#+K&o?syDxDgyZ3HlsY+pz&0lnW(b10Akz@GTb#DLN_ip0A
z;HXT}BG!6+7QN&ayvVy0bm{#RNsP|Ru+-QL>U{5S+!7{tbF5qXDQIuGLF;YKAM-!g
zasJ)rZsI!hSu33N*>D9kFA@X$AG50^2_za(BwT9ni@e~fYu#IS*qzA?hsn_&HaA##
zgFF90u0psQo0PT!%YS!~>-$~0BX6%NR>$TOYzsa+KePBPyG$epI<Wq-FI|_}|6TYj
z>4XZg$OSO+>dZ5CH0boY7+JXroERLhyCt(m&5UvWNkZa^Gl1LU?#|2@X|U2!p~dQX
zZZNZV|B`vx9`>H8F}6{!7jDn`n=-fm%05c-kFLZQT-K8Ba%JYya4a)AzUZ<Z$JB`N
zn#EUS-uTtt>naLR4x3@Az}AqAfY0Cr_lrM|Tvt0TnAwVc13}e`FyY{$!rUPLOjrBX
zNd2xX*{Gl3>N~-$;U~n;CxS67$I4mr-6Lx_;$*m`OsI$=*@??ekb_ag%1c!gZl}2(
z)KmzOUycj*pYL|LYvj6eAy#%v<m40F4*Xnq!?`2ZA+L&YRiH)$<XVwI((Wdm$?IfP
zf{#D72Tk_31Ma!=?F9%3BrM@eUNJVv>2q71$FtPX0u-m|(n}gJ<PNuC)yQ?M6ez1o
z{~9Zl`c+GuyPvB$nq&{X9C(~nre#&X+x=`-huo1=6QaEd419u)LDNe2&PMxzMgsHV
zX{w;-xz;mAt^-@W1i2OKnoV{g=kmq{uIO=wNO*>{K^`V#TM#T?>{8d;9OXEgPisp?
zNMgiSZ7#_q%Y+k(n~-oNIe)llPIPyNOF}Cfxz-e%>zwUQTWOOorF$at1~$0g)%_7R
zMr<k7lmJ*?sO3Rlo7-;r$aOWc(qgSisv5+C>5aF*?X?;fjD^KTTss<DVGudd{pJSK
z5+>5}#<YY;HO?q0F!=N$Nc8i*b=A8e(W$#i!9qc*l{nsSSO4<AklY}ACmP}N`Gr|R
z9DP2=ul#_^s$_3dUK@~@MPpU+vDMaoy6%wJZZLY}_J)GJa)iHl5S9@L$q4z#a$AMJ
z%L$hM+=G>(H_CpSpN4b9$G_@l;SJnK$})>sF178@xS|Mt@b$m+i{7`X@y1>(2383D
zhuwR78$a;%|K5RZJid+3`pP~wDF)PTevTFM?6i$v_?}&*OT2&#H6_#lo_^$YyH28q
z6d`5U+X!?&C%A7r-~9&nX$Bkb25gcShKsjiH{Zd~(5LGA;@w(z0(6v;z~}b%yX<HR
zSgADk2;tFi*vNY(eB<}_Io39%AHk^<2bj36zwTo~F%oD>f*ebek6@40nFrGPNai+*
zoa8voa`S?Z`!lm>hK8ovpaKhG)D+sUjEwH1V;24f3NGpS{$(rl0qA#OaNdQPv(%aL
z$Gr&QOUwI4_csuI03(m}ZyabPrl6FFXD`Ye{?v$Q1yTZhxL$dgDQn30AK}^NVqG$c
zHwu?q4X+1Fc~trE=mZRIV79TiQ$c+Vv7U-Tf5Gp-_!kse2bmE4N$N?+g9DU*iQl-j
zfs`TTV!iXzx5ToCobA{B%+y*m36uy^Y9ak8zwpHe@2yTmV9*iwAwM75Cf*t>dekky
z$hr_!Cb~CuAz}`FuejYWOW)|}3-K7~|HXlsf2XTD!|sqwDO`7J*ZQNk;h5_qniAf#
zCQjSG<5pg1Kby)V=h18di-=K>8WiNLa~H3$d(%{gByT%$DV*l7eCRUhg~Y(CP|~PR
zA}<Qu80Fao(>`{0+-9h|<eI~BX_xuF+vP>TY%z8)D1@pFk^oP(9Pjp{5tHzF$%T`y
zMcz7z%&^@5xUK#%d=l9-Vf&~~GTq}H);)?rQYqDk4xtARpWrH63?~-=(s{zRCLql+
z-S&6)X}`Ui-10_@6{*OyRp6^9zu~@m(%xO7QD-%$vdHtK{}!bu;L{!Lwmu$gV8jL9
zkG?FdS*!(pxd|4DJBKe5Kj*=*?lqcUfpc8SiuGv%n5A$VAqGEjll#NB_LkzF?zRDb
zqUIL69_Uv6oS)ElOT;X>OXxg1I3&wGKE?+7NMAx=QRH2b7LXl${-!Hn;fl$S=V5Yj
zcuCV6?g$|RL-!CS2&Lfc(%2<C$Xwz6U1o1rH!iHRaGXnX+}Xe3GE7qOfeupRgq*E5
zIrIv?#hut}`&dcpNt!CO^T)pF9=sBqU<J*z47241LJi{9M?ZJ@_c18>g1h<}dp4?W
zf$OgWS-iW=BD!(D(7AgD0jA;D7*Y)JiH}_QJ&c_-Q(F_zuo%OfIj)G#BSK@g{Dr<`
zUslIHP=mmbqzS=bm;S<Es$B^|rNOZe-#s9NSC(9#Kj>!n!B%`8pG#_f0+XJk4c`9Z
zX>Q1EHrf)f%Jh6z3*B~*RG3Q?+P&q@*w%hktd<4BRkog2!SM6kyMIY9Gp<U~gGd@@
zB<IB3(q$|RBZ&{t4@H2;yyx*_-H1ydDr{PT9|H&9#IoTN3y9Mo^G`p??fALP9PCgU
zo5WHrB!?7eJs)4_+W*8YI{$8L?b*mH^Q;PLyE|R$J~nc-cN@sEek~vwGH}T6jt|^z
zLv34&Q}fi`ft(2-cu~RBs+cIubw}H@q8qz5_R*LPe0rgM!^!}>CT)WZ!{Fvy+%Zq{
zWyN^}<kqB2+i|E@R8eO8`A{CMc|c%q9N??jBFM^*+-v3hLdZ|dk7XpCSNz~J*BCZs
zDQAW8n*h_p2M+zro%o17J|U@YE})dt0fy!J`7ixSR+p2naHF79$$3;r|LqT4=X!3W
z4}Lr=CVXy;CRht6C1;2~b-oP?8mD6}L;@s>_NDI|m)mTsSc*#qe=n^OP`0vzN1t|I
zoWTv?rU?h~9q_K1`tfducD9l4aKZrwB+FE~*>0!1f1Swpaa9`KcSCDEaUK7;Y^#8v
z$X+L>Jh=3H_rhpiAV)Y1lRi3>ry)-E9pM}Av?)W)g6(F;GR!X>;#aS;>s6dU><W%~
z7Kb3KJK0AM077Tk!OL6umG|3@<9nPfW=0`BQ&{+-yW%kW*5Im-%T^!1XTEpe!X@Ft
z^kCpjz`E6(R9l<(p1b&*aCnSc?S7gBUETxEx()Le!~HsKKu%B%gG2nQ$|C5!&Siqi
z&Z!57x<|bwkt{6xKlXAjJZgil2CJ2|vX((dkMMQ3+EtPez?#R3V#wiici!4Z)J}+s
zB@&XsizHblJGkdeH*qmv6(}e^xkQ)oWmcDk?Gz^i5gO{)?>{b!HH5=V!!l%W*30yO
zH(dKTXj<+EFy+y)?F1(`y4QBFnU=<Q2V)bVe!HuGi55egN6uRp#}FJ<COE6zm3?W`
zo{E2scZ@aGdDa?t;3VEL$n+I5+o-;P$Tc#FnH4OS1z&rdyW|j_!vszWR+Ek?Ssm~7
zX3--AhJtg0zK$E*h@<RPuv>aL^jMz)I=nFb<uSKie8i=SLPJ(^3+JjU?xa4y+Y~ON
z`Nyd^Lr$r8#M>);*8o@f776^w1P(!=Ae`Hm`s$|eEoLLB*Al=E!TIg}iD_I{VY(0-
zd;4QrdD8921`DIUtSbBs`W7D^2i{-s?a}@KeVEi^=&?D8?IkXkAI$CcuO7_}+5oDD
zYCnU8SrOgcZ>7(v9&stZEk_^d;1}G;#f;u?yw9G_FYrH-GeDssSk&s;{q+fc%zXPq
zi98IfX*|_$-)D+n#QZk3c9RgZUWZ-)$GNt}|7SKI(RzTYOCB#nx~|24;A}`F`YDG}
z10tQ~G@li<SCp}&da>FxAKd1jW1+F8XZA~;ieQ21Jl21#s~ndUi{EDR#l2Dx+;z17
zY8Y?9v7ICXNkC83BT?mbyr0}<Z!g7#O<yuqR^r|Zj&1g5mf8n+RaP?D2Ql<g_05n9
zg0JTKgO+epu6_XGl+r?jRY1^c{FlGvZEATZW1#@YMYO^D`t&trp+;)DBQujUTcY*C
zxL{bFe{^pfvAi;bEQNGVu2>Kp<F`7<23FjI*zS}?lpm~a_WwB2K1?}DAHp6Ag$|k%
zv(;D((D)A;eCpTyj7B-yI%Rq&2b_-RtNhM$?3XiH#zgyk+%afq5Y=@5*P;A^f>22{
zS{rH0a{w3)VoUv_hj0rpW9f#RT~>CtCI0*q?ILLy3U}HKG9n&0!GCltH-uF@uaS?i
zT2j@5q38JHwS)8=Z|-GZ+fqP9bFYAVlUDi<C)wMo6SL_gte4U7GkEg^Uz6ZE3O;cn
zF=ZUf1;IH<f8}qvEckZF2_h#k<iVIP=KavZw1k2SdPe~Y{=x<RnQpsYv-$Sr1nqPE
zb4-CBOl7hthCH1c6n6S=TkL8Hz9MZkpvl4Cy8QCr+d#_LJK%DdF{^_cDPy_6J%{HB
zge7M8_G=61CYu-R)aD-_W!I@Qz_l7F2CkbE&QrL@RjG7VyKl&{Co1Spfz2eG^jll}
z!~<+<HG;6AZz6Qo>*tCQsI)agU`XN^CX^p6Yw(Gw|ND)uO&{T0&h`uRzOhgOT!Qdh
zD|4a_l=|j#{IfBe(-u@@XF3OECm6cKUwa@Az%5~XP?&zLytMpaeurN**}klE0oDhG
z5Xrh^<9>dO-$_3ji^G&`2S~Xa8yxZ@2`6~u41X>A$&!<vL!q*y6u#PX7Wxy@{8Dwb
z!a*QF1|EZILBE>k6OHzp@-Ds3Dn2>oW0L+1P9LM2O7=#WP&SV1XC(cL92qu*rl?F=
zp-mXDs@Lvl^5ZjX#<eMObJ;=KuLs-B_Zy42Dr(}<@Oec4xL|qQf7M`j8gSt7mT^S@
zeQap=w?ZMDrpjao;N&oPWe?Mv?0mm&u{~a{%wK`o!qCR|`km^yD!UWgM#;nl!Ln2Q
zQ!{Ol_2ef2o(GVGlI#D~<ZIx5wm`5H*b_=maBH7m0|`rTBsd+Im1?N|^-@1VOe@{v
z5^Jk~fI)E2iT*9PD&MOTgX=Jhs1P51@cX6ygd^-uc@vEq(cf&Z>F-z+EM4Z$U_knn
zI5+FYbZOOs?fM75M!!-@6<2$V#F-gEoId{~JdMF_;=Uw#md*Eznt7gZF{+A|Azwj_
zeH#3eM{yZ{Z-1OkjFivoNWKs316&hZkn-V^{XQqzck0LqCs~TBm^R<jy5$FObw4@a
zN4442sc@-I5Id9IFl1I_V4lCP-(E2d(qpZ+5OP3?61BCq@lvgWqQkw*=RK%^<XhVL
z+@}w}lVUYMddmQmGwhIA{*4j#xf)2eYkp!jdzec;@eU{XC7O}!nbe$=I*))YP3?NG
zPwdZi_)15T$|<!-M1tK@=HJk|<OMU?!!EHu9gAGJ%g8hR+evQ0GgAl{&I&G~&a?e%
zI-aB(!ahX8^ivIf8}}E6qO=V8i@GxoF&Js|7l(BEgOtb#UTpS#ND0PQ#z{<nkGi|O
zAbX+TC6_xKLqbzJowP5_4_XiM`T8P`yJTFvxd=d%py?03s@+~w-m2Y7GcvefGTwq|
zM`-Zf-}~WkGDt*U5<f<TSl{gHMNw#mQv1RajT%N5hhG1p*f%;U++KN*I_qM-rAz(J
zY^~M^hSRS0k_5r>f=B-7kMCp;Fh@9|lJmI;$CDTNmtlYUEZADe#v%mmoMyj9r;~P|
z*g!l9WOcC1N`Jk6j~gSNXbuwt70sb?h@R{IHYps6$HrSlHPnrOWL@odt>m(jI+6M8
zd^m&LaV*<k+WjT)7(PO<SU3RfqQOF1Oa}Wb_jl_1BzthOP0m-)9t*vcOV<?nMYHT%
zLV{u4^A$sQZ;D@EXrrq|I0*L>SFxJeU*F=N$h61HL@gQ_kG~T2BPJL@N{vkOD~jN0
zXw&1Dp1|`8a^aFm%Td-RbFrVDvKvHbTOm4PM~9v6=l60gKbR<^VlFaJoj`MNtWNN&
z#hjF{0=i*Zk`@G?&G*ZA%jV}D{&vg)Un#mq$DzZE$=xC~EdJsQzsCZut7ljX5C$|F
z;v59$9pyiQR(XjeX*DZDy8@EC`uuyL2$+V&gqM<uUNXyXE#->?igKPrk>lJTCh@q>
zYxeUwyAW4B&dYFT)KD;Z`gs56!Vz2Z)o23V-$G=*cGRoy`>pwOu_Y?@%vP4-gHuM$
zdEal|H7L7C@tK#N@+-FN8YJT*Kj?eX?>2o@6RT6tv2CU)q$11eG|>E4_kHYt;zc=w
z@giuMXfXjJ&M&9w;(xfO9wq+6dtx1}pAsmXy<XCZ$DaJVo3_wym8>VlXn;+LcVUr}
zIf@tb5x4yUzJeT&wGOl==MzxElFkWYi(I^P?>kU{tOxj91+mrB37C)EVCNm&%5x6X
z&B??&q}7q64|Xgd+QFX+-Cet6>mI2Ea|Zy$z|BjSEtWeKxPp21vl+1-vU-8^SC?w;
z%Kuc7@47BOkSbmYaSBvn;5Z}D;&y)ATQ6oc%tlb8z=q7nEvcO1qhF>+Ge4E}NB}So
z?^*E3T|T)LVQDUtXpK)sR_)k4MK15T$E$CQJ|WF4-i&cD_^Mz1({4z+p!rEt8&R-i
zE4LLZC--sXv*DMJp88P%5{avSeUX+`ayW0^2U&C%_CeM?6e}g;5~`3X-qPT{I_7`+
zEvubMy5BPD1a**|1pN}JNFD9n*u`u#NH83`-S#)^y%rJ-g1j1cehJC9N)SrT&gzPF
zCyCu+f>Ti+?D|I+`4u<idhVG|zA`kz0z>(=6Wz;C?X60PnM9;olY~F9Y8m95XEMHN
z7`_axyd1>_5fv??29C4$^i%Gi|C2nNpPi2&x$O{FOY$(JGXdr)x2DaoY_5CcCDMk8
zeiP(TL+P;`TaHko!CjsC<Ah;s1WrLZVHit_ZtwDI!YT!JLF}#LfS;ab;ovkGBndN3
zv8F@{w#Q15Y_-^p@uQX@{K@BoTgHOUW>6=X=S7dXr*9qA1otiNO|;Kl4~<zH>h@dR
z=aDTdOVE%C(v>BuVQ3(ii+r#YxqZtr&&nUA=BN!|dUW+bC3I5fln4K~){SY+_;DMd
zv4-qA*nOxVn6#b%2N5)s<%n`Co^~TLt=?twdLeEjxfL$?`f0aj5{*)EK+q8x3mrzY
z{c5-K7i6Iu1_4+zREyJKN<cICK7fEh-pY4#?^W*FFGobDQW8P#Q>3OPQelQ%P+N)e
z^ZdBX_P2*c%b||cJdQxnP|YaFpieEZA_rW{7zkG5@NA!dx1Wp3(8Eqbq7MYqidn{w
z&hz(=AUU5<9o#)aY7%i0^px64Mn2@g%$oa#DL7oYp%asfh`nV?i2QH<Yv!bJVdG&K
z1EBZTOa8TUGe7*=!pT@bRBjPU$IFM8?eohsHy&b-*QVOr@p{tJN_|<Utj+wtBg5Bh
z`a!l@6&-M8=C+mLjRA57+Ba+nvhgow2an&Lc}20^hz<}K9_Zi(C@r+=U7OjO_%T&t
zM-d)OQzgVgRxc?#IxD$ot}R_|;nAbkqLNKwNW^<-v?X8gkb~TZIuP<sle@s7hwSAw
z>OI9>{>|QNVHphx?4-yfNEN@m+SqSB&E3B>pC>bessoA<NasiRo!jRA@MqWrpxu(^
zun+pfvmpECyY+QkhvjVE;ax&K-QhjtAHqz5Z789B?0~DdYVWn2CS`tx2Qr)El^tAl
zfSa}LkEc#{KRY*A7yu9bp&K7+D@tK{Rrn%O9Qby<k;II6WD;R(tpqaq`4V^I-2Z*E
z4E(`2Q*wZlbv7UhlpClg=@EtQonb%z4ZX!#@L`9#)6|N7i_wq_!5+PTu)DU`N(nHB
zQ4%akLgkjR%iZzM(eR!D$JJUwLqik?PaW)T`=9+rZHI3T4sFZN5OM_7IQ-0(Bamf<
zhs(MXiW+iQg(iU^;AGd=U~IFB+-Q*m8gUBFM#fRLbzS`C!jK}i_!JBZ!$1ALEkDJF
z(B}sUlC%qwdc|6Cu0k+_;sA0f?ugHm_Ys~)*gy>rXJonO8~#V)WaHUPOPuga!X@B^
z#FGlK;eVJEDUiqm^&*Cp^MiXPxbu$UZR~!cQ5+Zg#ssYGa~F(ZheY8`DE=`09BX5F
ze66e9o&`V}^u%Y&HpWcNfh>p4aSz0K5oQQL?un*U1g|5Nzw%)yruF4?x9fr2=P+So
zMCf5m6h9HC1)pRCWtca+C4sFh;p7Br5I)Zwq*BE-?!otvlC~7Rc+M!G=JCg_aPPi}
zRKis`mv{l=#!;NDQQW~-wm9P1NVN13-*OYEna2nAlT<>f4RR+<r_2e4LEG$Pc-ry`
z<PNy8*(RinO++uUM2n=N7gW6px8HtSE-I_H`J$p<Y+@T4-|bV~)7$*diJ+*lXpmGl
z-ytQOrFRGsD`jP~UYDwe3wvFzMMHo`q^p3`n3`kx>fLVrP*zAL644(Plpio=5|oa~
zW&|kn@$Ozytx&XD>Gwv{I^E~``*U5Q#n>cj2t~&b7l#5qIbpnuz#ULzHX~!T^-F6t
zn-4vg!<Qa9Ck)7|G}-ea!P&aKD}S_Z5KQ`c49I%A?}<SZ>806@TBKb*@5ie~Xq9RH
z^r_3mgYeV0a&l-lxrr8tuM#vuJaN1&;BvWJG?EX&d{UOUMF>Y`DB+7e={K4iOr)cl
z5Pnp>dh=>`%=J91Vnnh;LA}dnBgY1px46&#GC117;|a^b(Edpp6nT!_bPMl+BG1NN
zfddFmEOal8V68|bZl29H0zjp6vE6a5_kzKX$h(Q{kL*)R>A@vo62#~eoIF?!ggok8
zSGW^z!mAMLOW`FZ9*C}_c`sP!^1npZ7?A;FWHK<%7{MMVyQ%xL>6ps2if@h!NiK!@
ziN?mETDa7$+3P1evEr#qQzuJO+@k_kNzS}r;$rvF?VM=NNxVs!ivXZ084R6qzcqH9
zrgj8abe*<<n&~Z9*!3SorxI=PEl%xm-722@kyKSRds?b)$q4ZIv(kg>V?2Cte>j06
z{ht&UKq37<sEI;lSYn!euvsNoClC_}rY!0sce~Z&S(_gn&OFE{eK>!Ti3%=fkcs{j
zlSMn&bf4oa>}^T%te#j~UqZY#EcD9{?w#u5J$&B`Iu;a?V%cCRAO3ETqhaZ7x`FNd
z(>F-L9J~S6TAbQAzL%9m+t16hiSF>AyYLr~2r`hi@$59$MO7dtCN`QVFC}eU1_IIu
zvn(5od{^G_W9rS%!M`|Yoou;rP&}0LlcxvY3>+wJ)BN~Xr0o9muMn|J>nFDxN<c9F
z<SmNQH#@0Y=l~>tl2Q1Rzmmd}^Z&X<xF>x}DMxrrnmZ_tB6%ABQGE?e_lh##T4dF*
za)jWDBp78CK-JakY;MwjI*amLvJxq4!wG?=ADxV*-!|K?<i>P(b(|tc%!Sek9I|KY
z{b~O;BSOW@-7-VSF2{>fQeB{0;Hs3>`eM3(v8h0Kq`bLPc*w!TTGZIflYaH8;n4=6
z>S9+=IzrY|F^c2D;h7hoJS;jvtpj?(a^%Xo++h2Je<QF$X1T`Y$f0~0PBzOgF0>l#
zDx$FwsDpIKE{d?Zck<DGo5SglYsCY7ZIQ_s3QVes@y)r!f7N1U%`|?|sLG+zX~?nD
z{o-Bu1=Z!$X7iq^dbl%{V57%bVtpAUc?rrPJA;P9#|6)g_V@g2ShN&mEW()WyoH*i
zs$!0Xzsn!_a~l;3a=&GSRZXGaZj=9P2KC=cdm)J`!rGvfmev#o&&K_$<nB+RgI1DH
z&<TxiPyr4A>*;>>6q^L|Zj2N7$1p?Zyl;saW}7BgLxfc|+EvxWr7rU8XWQ!IE#WI_
z_hT=tBb*u=@MV{<ok)j{0fpBTORX=4hF?3zpMBS`=nS|_&j20c<anqrW+87p%ICi^
zEZRURa!-Q75=-(aD`TP^duHA`)Rv}vUZ;vc(C*5oj|+a4>ks^hB5mx?M6>F|vdAxq
z&1FSPh^)`*@ZTQ55Kxkm%`JGvgQ_YBZJ%@ee?Ntyhz7=}zhD(0DvHkWXuWcczlvIP
zY8zDT7ZHY9c(>v3f*|32@~vUf>CzKBWAWZd38@rSRfzP}7y22G42xEvdt(N-1*HwS
zL8{6>dpTKof|CY;!HV#UtBBAX?du^4vgs*XVwb~8poyyHf4#@gx?p&83i(eESr;b@
zdMTHo+xxT3i?<mbok2ke#oLq(*3aO1S~FLDX$_n4iHh(B>x!wXFA!|NM^xNLtr`R4
zd|C{zEYk_<>+!ub_~Xv8(M7Sk2pLfH(izlOz>cWz5J*6+G9O^heL+3Tds?yIZ(j%*
zS5!}I0JXLi3M>phUFYu(_k~=dRx8wNI2>JseObJIm}>B044By=oz*espPlUQKQBD7
zggyX1sIEhbeS55*c)fkI25bYCo(<7wUpdTQI%atEa8<lpU42Cr4CaYee@3P~P4Y>b
zp&Qf|1cx2wXLFTJs2XTCUqex_;1ECbd`pe2f(8LjK<6Mg68xy~#-ke4=(w#fC@x`<
z@h0Q~n=lo3e~&Vc+k?r)=ofT+>bxGR#1%qb9W?>H9F1Zc1YWv(<|UobF~=;du#J#h
z0v<vw@^ky6{KGq$lY@#f@jxwaX$iJ>mp^NXZU4k>VyzsriM1e4w)ml!+SQPsYW@>d
z4p`RhdvCGj60JgU!m{SbYAKIc=KId&Fk9t5AAnbtQFl>ruRk5C=dvn<!G#|PX4Js5
zpT8qSV8H7~aLl5O)#c~{ZSVT!xjz~aWN=`ckE~`j6mT%Zyf>IUgVS@zuZ$ES4>BYN
z4^Mq<UU1$7f5=$gLl~L*6g#5z4V<Y9mix;NwB52)LWu)>{&A?4MmM(6u#)k0etY;U
zco?jGpRR)CpyqK@4>K2y8K5Of4jFPmko?3STfo7_9|s3%?Ps1ki21=ctNf^khefGt
znU?4>axAIG;hCuR(LpkWwE~Ha*F+zoY^fmF<1qi(E9|49U;~{4Y)O4F9^83xzxIAR
z)RW_#qG8-ukm_$H`y-FD<%OjSUYpe|R3WPd$^pd!!7A_92_*!x&>!|StXrN|%X8r7
z07ckUpmeO<-yd?TonFpPvxyqR!+_%o)5Cmflomuv!V0U2Q_&~rg4*!Ju;>&i#9ebz
zXwgAgMP4v#qc48VK2sZOW=;FUFXU(W<+lxsRv~KProC;cKB#{N%X-UF|G~B<f9hiW
zo8-^PH70-X!BJx0hn0bI&U|nOpYQh>W>SnWV+T!6LoklXtOf#Z2?vw~FNI~XASUBj
z^rGN_sDER7lcWeI^mDB@vNShXI?b>`ki6yn1F>GkE0Z0~L1i8N(we>a93!rzJONK{
z!-S&XugiU6cRK?Wu>rjWFpsgpRf~Pk^5M~GayE6e(5xV+AUH8}>&(?G5DWt)0j5V5
zsikdCtAi4Uwwo^z3Wb~WC&fk^kh^c4;Fr7M(K>q*(<AOQKpiy>s6*fIFE1LVttckg
zg;WgKg|WerlQQ?YFkJ3r2h{~2DAranvG{2J^xuX>5%8rwF)%|&KZ#bc+%&4X?mYxY
zK~Tl9>zA2^yh9a=o4jK@rGUpvXQ*$0Xoj8aj|Uru^^q8`ddKwI+`bj(3)Jv=M2y+X
z$qfwV$;tlggdJaujj+lb#fLhwIsR=#J#wZhHg8bKFv!Qc{cf;Yl!Hpjo<g})TEc;+
zEWhX^JEt5$DnME3O%N_%){G4{MExYz38fED&EN^DS7Q3_4)xzuavqgwPAX~JKr_%4
zf_zSxq{2$+wwdzN8n$B#ZSl+!pZ7Z>cM`tml2rren@T9=vV$^rN||V{ipP-o64DVu
zWkKmwtoAwGz7r4__PL%gYg?qsj<tw`oz9Uic|%sHO0m;SlDtjbl+Lg=*Y_jFVPH_R
zU1fH8!8P^%1#iNa3@@^NBzVUK8@~1BoD^1zW5}9_l?(Nyv_|NO{=$oyHHoySiX7{z
zD)ie+&-H8H85WHSMnavuq?eX=<8e)PCxV7z))5D|4o0QcvAY}b5Y*Nc1Xo=ViqbI8
zv`cDnStU45Py5nCL#bv{j3{ZBb5V_C`mod=aJnr*71AoscL*|+;Izh@zW+WZeJWy|
z8ZwFsvb{(e(H`Byqs6FRM7<<QqLVT5Z*4b4jxobFL%p*YIeT`I|8fXSjZ8Ud+#wN_
zQvJdl&-)72rJ`K;EYWX}5z66D^Um<3q)UGy<J*W41!g)ly>q@_^CU+DQcrfuYgx<O
zcKuam@G^&${tY;adNAUHI%y!l6vfd+Yv~9fEet!ML%OOqu&$DEJ%6yj4!|BGZRH_I
zwAS!Dc3nyhS_cH$O`HH>ENW;a&EYa5TmdMh@ssK*;K8>{^6ybm!O5(HXc<II*|_z^
z(Dd*oKjkUx1MM!#fRG95VYO&SzAIeX)IeK;tTfbQ>S%uNUj{766dofI4HiC?8!SK0
zjunHg#46$H;85>g!L}0CO!Tx%pDsq)|Mwol9GU@TU?ew@z=5J)g>_wXiht|rVVbd}
zV(I1f8aUdDvtfd$vTz{?38F$kOXi5a+aP{DD^&{dyd6h^zo1sIR!FJ=!+V@^hhEGx
zS)eMc^ckzF$0T_3Mt@5Q<b}P`PNEa<nNfp9MfLbMlZ+xMtyk>czEI9OA6Mr`^_s0!
z+)a00v?P2$AMBO+pDTw&%g`4RCUeUwi-L?7{04Ld?5z^=Cedu*w-^9tKH={;i!~>O
z2hPW6(80{4{JzxJaNJ?Uf{qYNw2Js{4hd5p7u+;1a~38N>r+Qh3w*!QD_MMW;H&R|
zQfMQHsuH(JmrlzST-6hjXgZ`lwqK^4O;7rLPqF2M7cpm0TcGy0_ROq!AKE2(4RZ>B
z3R$ak8@>01VbOZR_x*Iz5KIKn8{>k9U+~ZOFkKdHpq<tm^c@LJi|Cd9;A%dJZv#9l
z@CwX^Bb0NWFGB0YVkjfgkR%*zmj=S+|9;fxO*0j`DrL$!I$x1g{?RuZ=}WPO@*`xI
zPgC}GzZtwaL1B--6_uC5TxyemQi2K#gT8+MW|K`U3XTZ5)mk^eCVrJEUd7&EB6cOa
z!xLUz&iuA{(Z7yX$ZN>bVbayr(B}>F{ZmI9m5aCS(;Gpn-clTM@*%GQlYQk9_DARW
z)c5v@X$V{$)v_wybmSBMmhpD*BocdLs6U}hJg&vh_-Du{U=skEh*9+JlG*)|3EWAs
zrevdOIIxx6U`W0{@j(PM$B1GbkSdcch{b7qfKHh={)+L#3u4&75bx$@F3NGuJY9s)
z^MYU9=y$Cc9-T>~0d9<mK7lOI+8Tc{JkGR25Qj`ZGrh37#UJ?>qcyZ~6trfb3wcv1
zDcP^g_V+?RviYRqrshRz)iOYaRZ;MEQwY9>@zov5>9Xn~!MDtqW*iwcNUYjMHH8+u
z&Hm_S6UQW>fxafmv9ZM8ytipvGq4@`s3}@#w?)X4G9>^=?beMl%$2VTeDRJLfXWKA
z<I6k1@+$K`+rgNj03pI1hZhz|u|2s4ZZEty!MHcGDeOsMkUYY_f?3X~6r8A;XPDo$
zHM|VqGvUS^PBa}FOh_9pky5hgL0@$-yUvPsVwXskfkt=Y3V&`XpGIt$cCLYL=5vwM
z*rb>9a^$3pdzAm`cz+`%Cn@ZW15|y*vm}DC1oDCp-}Jj53}Yx%!iIv=RI?)lqgCLO
ze`}NkA4Da`(rU+gB6mYNaCKe~tMgC8ffykIm6UR1r;ZYi2Y7D%WN3@Xvlu4Ru1ogo
zt-X;DHH4`b1?$KAOcZ|oJ~@xXUaW?)as=Izr}**6Ym{hwL@c1V&2LWihoivaaKMAz
z9>)|%ACZ0qL&X-w?~{L|9W~P!A_8Iocthv*vITxE=a!?&*!6?j@^Rt;()f@y#RR}4
z;z;pZ<R6DGpr?fT5D9CcSgwadVeCuTOo6CleK=JoQ(=Y4Fz+EmIGj;376(G85SK#<
zx7YaT@Nq2Z2C~n!dssd>!KdZ^;>CPJ@foo1LK?0>S3iBG??+)x>$lAV(w@wr({_|k
zA>jFiK4Pj+4N4r=0CKaU3atxo$V+fP78!JRmHS|wlPopPA8}Bq0C2=~fWY1x8{Aal
z55nIBX-`B`1cC;&1{nkBzz&&HZi3uMRKm^xNj$Dd0sJRlhW<^Tr`5=KdjuwA2L~lG
zKlrN4FMtV|au;h(t2Z^wl%x9kpG>pE6^W~dfBij3V&XhlnCHK0Y<Xg6)SI#m(-kI0
z1L+H#10Z){@HiFN82ah{Tx&DvG~z87u-O;-4je{l4JR~+b)rn?np1CLq5<hmaRfrB
zRA;~WF~2kXh?SbqlT0i06;qfz=4*B>yd9Rt5x@u3jXaX~q5@5D(f9TtJdH|2f-Os<
zs7KUd?Db+oM>&hyf2}^`Rb7tGd-qErz@kV4o+_)PD0uZWQz=onrzHvYh|i#E^PbuM
zgHcdukwms$QC^x?7qr*=8=)YWXK450xWxZSCQ5xVv4GVx{iAmpS&+RTI>-sGn(6OF
zAVYGXm&fq1ls1r*S>fCM2yuj(x?YYFOPX!WpE}R@T1krWag^YW<AUj>KKV;ynB}4A
zUk`iDo9I8z4$lfnU`;wg=5X4X4BRU)H1XYpHUOqK2)zsa%;}+wmPnN+kMgc#|Kab!
zU&v${u$Uxd<ga8GR~_jOKoW2e(X^7?qElX8AeBm9CwN0~8ojEloJ@<$&-QgJIh&qN
z3Byxt=v)xDc_Gf5YaRqi#FlsyX<2+ne!jmQ?`QlMMo7pT7gj6!zot>a@nKgM;(BJ;
z@CT&*Tb$KG5k=FfkT$9{d)3K5eo|6Bj&^;1K@yiSycQTHHWvw46adX7eQc)fE(|tw
zRpTwq4Nix7VFYl7!`VluQk6E&zL6)uNs)^cqZFet*={_fVhS=9X#)7Acmf_vk_3=}
z#VBM$Vm`n@BhL+*HkrbJ(4gTK29@XeIsZV!%LJj@kWI0alC}N&`~wSZSwK+>y$cc<
zxB#W(vM1D-hqE)%`qd0S0pD_zEg?<G)R4_>YGm}ZfhKy{#O1or39_d9D4udSN*Qq7
zNGf9}x#}@5-;9>eYFP~Fv!R;9G3H=D^^DM~AzT10Yt3{Veu(P_%XyO`YGC1Ya{7rP
z?{IMDsvNG$wG>ML`HnX`JNRl;W>QQ~be-%oY|(nQ5Y^`qObf`Sj5N{E$x_C;UwyKl
z2o0m9H6;5ZRbYalLZL-GZI?w(?0pkij=f@&1%ly`kw-X-Egp!}ZxIp64MuhQZQ)hO
zY>D$&i(FD$NbM=eDRP=&BBtx+1lMerc|8ii;RcpSIygpV14MKC<NokvMwVLy6PW7?
zfBi%R8h;s9EyZP~fkA5dLI3ss4wNmJZUb>_5mG4{3bwRF6dO^~hz9_!PSMD2nf+Io
z_eFqXX|EINKBxqFnftzJhGV%(3<fY8#|1~$nhOqHzaC?p(f~WB4IFE%r`7Oa6p6}s
zGi*e*Lql5_w1VaF#P%<H?UR%}BnQsB&Dj(qrTl2n)hWv#BT$xq=w`&S7d@3|a$isO
zRlk56;&j1)iA-w?)ijvP*kG?ER;EvU3tTp|b-V?6!T2-$smuhft_WIM{WH}H<6Dae
zb3th!vDBQtW&rGTJ0r~t#3t}X6IH3MMO(V*2)_co4hIJilD)kV;ljc_Af|5r*z@Ln
zB7t*@K+J?=d^`LL#nEH{)oNPHl1f+(5_k&d8mh#j*o++}$tkBg6G0D<qX<$DnS1E~
zjRZr=zB!V4++JuJB*&1N(?L!I{>egd&|VlmT3S6&4c)y#1*{<FJD<t8WYh61kOKI9
z@YPm~&CET2SX4FEF+rH&|4eq8qr8OU2W!<vvA~rCTBJtU+P=2fFPLOn^t2?*0~qAV
z9E6wReqYQLv?qCw5m^L!tMzHNLb^4d))9zoX00B)XJ+l?IQvPp#_0`SB^#)toTH<x
zpaUyH&afC@D0y(i<Of@q`Y{A<@RjRVrh;RPPsWbFdYepzXfRAU>ZZv|<iM`(G=~KD
z8*mi%whVMBVo_DaXE^L~<)T&1VAa#Y2A%xa-~0dDY13S=-!&P0E@UpA;+yA$9FpSM
zbUewt&kr5%SA7E)Ln$OWV9c--fe+7q7%PQk34Nqhp}JC5&6(TrGJjx)&60o`1vILm
zF<%qX_5W6KY|-fDaARH2JkfV?=1NzTo1`t#jWaY<qo$#YJv`G^84flDscCUeWPPDn
zrHpTjEGQj*@{FP&zC-4(wlm2~{YS6h`m1nKkzak5uBr-E`Pk-~DlOr&*R}gq=%UcU
zPX@i<BV2Ey_)`AF3ZmnCZIvk!L@zH+5wON%gkrvNh5uwX<3&h|G$?hXA!hiUbs$e4
zJHv#J?Ov!Rn6^ipPI?KJMJesjWll>YAOuoXZoZTX{5LE(D!kx1w#xQ*PcZgPlSX?I
zZ{O1A{6@?K1Po7-E6K4V3PQL_Isn|DG8Tq&(eQG`&=p)@7!|;7U~fX=C_My-Ho0>V
zYyj@!rRob~(&$Js=2!<%6;UO`QeoLszVuJvxh5hi?$JDe(N7>xLD5~$_B)^_!?O)l
zn{leBxLLE9QNyN@&t80lEmcS~HG;#%RIY&`3~BZUuI8SKHafz<O63&1jm1}+Qw&nT
z)jS|)j;Z7X?LXyANNHg<p`3%U<OMHJw9H^RS_s5I8S>~KF(h->M`0849Ks;ebKi_+
zc)c7TOecIjmYLKwULVE(EX5}tFt)-VW1>F~zQxgsh9P84pq{gZ@pSFh#?Uapz`u%f
z;z4VJ6ZH)b<uS;r2H03uPO=>0P0lFPF|*hBfH|WmP7ImRPD_0U8$Jm}kM$A<)ddd_
zgmCj^{*qR%BcMnzgqm$=I9A36_a|(-U`WE}>1!j<sE7uR@Vwxj@tLbHGd?M_Mm7_O
z7lj}ziLpF3A~SY_iC~68WjAk>VrUVb7cdHt9#yC#x~c#Opu#yfp*fSbA^n0CE+yKD
zlWecTkXEqzO^>J``HGlx={j3S<s^sc+Ykzy^qXUi5V*{8;TcAP6At}L%)f*P2M*n&
zNrS0zh~_9upI_&fFSRAHFlJ@wk0`5#-=BY#aU4{n@@5Kzh+&o$1%b;{Tp3o0VInkL
zQ*3YubfdePj@TuOUJMZUrMdpYHXBg`A#S6}C?aff%zV*0Vli4)+y0@#p*@WE&n>gH
zsY}N>v^q3JUg}T2ir4F-R5BQTW^EOABGGKp%%ha^6Q}8qL}RTO(H2;|C+a8u%1jZs
zAC)A7nJ)PG^MczBHi@i!kAZXmBd~Z-<Wnz)Vm)Jok)uqJM0ET^e$hcFv?v<_&!liS
z3?!dA%fG&($@}zm5c?HiPG48}%TADT?~8Q`a8DKm7i^cQkS3(YX*IK~8WsJ*q<@by
zjD|!lGFT2KTD4x&>d}E_pX5Kn-@!pk$0~u(1WSaVZ+7t49WoycrH@RPw3<>?&7EWZ
zU`i{2PjQq+qMMzuM32IZMZv^{7WYEEW8IqP6B}<ptS>0@$8K-SU&a=8#0QxfTzw$r
zAG#7Uk>Z%_rj`I9(@<X&ocDmaoH1J9i)O=?l(EC8lDq9^f=qzbQjze*lLLREuMj<8
zV{lyB%_nHt9U$1AKhrjN8jGR>)*#=>A4dB9uQ3^2i7m-nNXEb*==R&6#>41emg1zN
zRfU;Zc&8t=vk5!}6GFEjaRI1JeF3D?b9SXQOhb{+2t{BGfiaZ0^twff&b@G<`8`lL
zfd!_=l&qt1!9Sb*_y;U@gc{07%wOJ6jGmY^!QcOhscMEx%$q{)QPu$AE<4E2!Ujj-
z2X&hkEL34=BCvcEib-Gi9adTT!UP2*(X4ZVmLN0xB8V;Aw0@AKr7N;@k1zI~&u9ZW
z0E=fWs*1-3%hp=_SDG4NP2h~k#R{fgP3CJahYFl<NfaBUTXS*d)%V)x(uzE}bFb~0
z8U2GjXnq^=`0-UwW#w}VGROSWgfawTE(Jz`;sA6xVjsqik!WfQa-&GeUOVCiW^mMQ
z;3KmW4I$(PcirlL=Zyo@B?rXqN~1jAbfozS*pe_h82KT~#heJra^V|_sHArWpR&S(
z2Ytw4S1u3aX|A|*QdR#k_5*f+WF|Nj*#lIX9qNY?2;fC%9D~Q)T;J%>4+M;gBPz^h
z9W-oa@{d~0*oLwsE@d{$!&4Njd%*93;NrNbZa+OFe6~5kUnlzaMjAzji9V$Yl_6pc
zCHxh9hsF{+8#fscvT0D2ZHB1n)V@peh{zR=@`HDn?IVgNT^+`YW!;G#UWSF4JuGu)
zg3O1@jo+f5RH~R0YA(TnL0IvjeeD<Y4G?kY7cUIU%);)N4EP8BIGqxL{1EJP>%xI;
zA?PYyu18;*UgGOUz%PMM?g_~|Qi{%kgIm$4dX7MTgFo@tm@)V|=)ek!Ra2V~lF(7;
zrn<_%33Z|#$<Z5;{~Csic*lQD!Bv&N6@!TY7oK#O3d)Hh#V|ck&@3$_)jWWJ!<_}`
z(eXry3yKV(N^7RYI#Ie=6f8Qy3`Qx=5^<55-U0c7<nhK(J%daggnv0AT)%*|fVFs`
zxr5QE(NaXoA)7L5gM<#5A;{uNK@l5^LEvNud!6X7z0BAhI|RnPC`9b;<-hr3D%oz-
zKxHgNEcz<jt0?F`)E|4Y9d%hQs4-2_(9A(N{BeI5+CDxxqNyQ+0QkG4fsDI7{^r*$
z#NDV&rDpqn9SD^>*Vt!RPV|vMx4v$Sh*~=njG)pU!H-0g=w|+mJ;rA$mxqN3wLnR8
zmY|dkJ-5-9pJ=!0=_}sI0PHe~=u#xVlsy2^wJ8l_gX1Tee^nc4DWJ{r2rJSDYbx>2
zmzuv67q;Y}BB0by<BdQ08S@zyBhREg8DlUf6ueh*KtxM$+>{`)0DvEz?N4HlwJA_0
zHhecWO9d`d!hecm$p@jZMLIhxnk{~<>@=iQNuo!GSyT=(&=UiG80K*J1?(bi6_g7Q
z6-T2?oD)CQg-VVf+7O!2_1L|5spP4IB&Q`BO%7qL76iTXeNvQ4HlHdWQ9{**21`n_
zpa&1sK)TLgnhl47ESvk#(2!^{WaFV{-$WWJwvvV5KK7$QEttSap~c;xA(Ba(+B8Y?
z|G`9MukmdnsXF0&yim!C@&?0_21C7&R8G+Uq~!^5$~VbC{0b5E+A+%jKNJNbkNek0
zhn%#xtsjxC)J%4g*xW~i{L4vnB+<8BD`}C%-Cy#H^6^(wqmSi-$BisI8o<5de}>$E
zxl63-Bn-~40mGh|6S^35!NB=|d$}sKmB`KIv*I81kS;4OV;EBj2`Wlpmq_9iu#N?U
zcbjJcVMRx^EI1%hz)-;f<(?Z_t1?!?lmaP{*vd+1fP@ZD#jsUaMRbfD<=)+ckBxCv
zDYr??xIl44<-@|jLpBX1&<rUkDdt7j9qQw#4TzO!oWquO`CInIqg{S}lTnG;6UMqq
zhyarmsfEI{E7mDfT*%yL*7*rOBzw%n4$4435f4ii-f@io5ZzJ>ph|Wzt!$YW(q%~G
zpdT-;z0l`ZiuH{8W-<yJ3Iq~X-IyHyEyX{ODmZ&FaJz`C8JvcQnwRa+6SA|U!vD6h
zbw$C3MfM|{8qB*>P6Bx}0Qg+&<1Zp05o^>`ggXUa=0MBk%o&tkqL-ASCXu?V6b__`
zl5;4=CqoqfYLSAFGMIS_ssi0-Ly;mc&vj?}H*+j{TTY5G@NAYgeo&qN3+sUP0)Ow*
z`pI8G`?Be_apXx<#s|!wPz4U(hqqd$3%s|O3epaIcQ8((J^x(mA3NRRG!x>e2@JBf
zhRvj7l%%ehn&z24kHv@;c&cJ#a)*R+4RKRpvET2*ct{XjeU$&~9?Sa+=_4`)WW-4Q
zCi9VgSR#3%q-EsuqM23J<;i2DJfvw9f+pK=WobIKpfi5_wFSUoOf`x*nFyK2W{_~D
zuoJom95(Gnf>-8i_mrgxK@W;+b0Xm))ww~1l*_g+sF(uT+*juRJ01Ci9!4Jw=~ZU*
z6j%9OF$NG1^g!Ua(|j9`8!5Ee!L^y06Or#6FRYSzX&Fe=0guU^4JPTZ9~gXq+D3iw
z9eya`Y@8JEK}lu{<`r(6*>J5z0$^!mGL|Fu_`OU#L}&v^j1ZmPVMZIm^@eNAq^(RV
z6fme_Bi53lvB5)g!|WD}K!6OxpsQ3`8jS2d)Bxe?R68WZ56}iE^BCg40Zfp<Ljy6i
zq~Ih#u?h;e_0wK4m^T8%WM(%>r=g-qH6wp`+nxVg1AD{Y5TZ#^m!@Le;~sD=b#}+p
zh%CBZbZ3DqhCimW8zWLJ3iXD)e(v`gVb7@qR&bOQ#0c6l`K)_?54%AQ2v<Y&%7*{C
ztA1@TazJOY4ir%_#Ez}~JO5`RuUDCaS~^hK%#C-xcSFBRPnB-tW?c#wPgsv*_V7Ck
z0uXtQ{o1Rk=`(^v3@*;_7XSguJ>udGN$_FF@}icDSH8Tz&k5o5K!gY1POw&mRQ-bw
zx}$&Q1^ZYHJa_&8V-V!wDLeU=Pwn!g6e^G{Usk*i{}LQn4+;PBv8{YFIFYRVG=Uq>
zXYB<>@ZJ#rhkNa}#b~(bV<9^icwcr<^_BaL;QpY0V&){cr*R>PGVXJTAN@Dmvtr=N
zdbE04({Da?8}e*TQ5HJ8nKFQr3^l7$07>DyK?LB*>z;J43G)>WwNdFz*@bEbz5Skk
z^nrGDYJwJh@{+ZXlk_et9t2mt<1PtlVX9<KRxkNKSsk$~7;fK2HdVloU;N!oA8Rj|
z1cw7gm#S8lyKD!a%TKl3N!G}AB8%Ddc40S%J2EQ6pE$%8sAQvpbm1}@SSA>M0L2(k
z>Xe=R_V3%0)Ft1S24%ELuLC}E{}{jEIa^ERQ8jmn9{YqcDk5V0hV0<SZ*O0yiz&Je
zcq1cDedDHpbjikqbllXjQD7JP4I$=>hWa|lk!5OVOKfb!w@Ug5@9f#AKhlR}{M&BV
zY@1y*sJO%#xB+l1sCWgw4LDBuRzR#BFz8S1GUN-40v|7W!Icz->m8~K)Z{VJH7~l-
zJ#C~U9(N^LS$&4X6fgXbEB~22FGvfvjo0w}cTc%_HFi0KDAlS#dz``W6u<hedsNu7
zGJHA|(9zEJg7=u3m$k7KkDJbgec<zF+=w)|qauK84j5d(aenR&+Svva-G~;NW)W-&
zG&8WX|1w-a0^W^sJa8R7^p+96<!)QpN*XAoH<WqkeOC_ke+rLGH5ig1H8Ey6i($Gv
zBwP}3y&nb>mYo4A2*h}{8@yT34}YaUvd<{LtKebL=83p!OIRq#``hjP@4^qTf=%(c
z28qc@<h5G|z5<|17NaWO8>yoar!l2)rS5slE#Eg>De|*8G+G!jnk!#%({pT(37U4r
z0p?>2`9*>t9be?%`=^beDk+Fhv_4jVFI_U!Pkuby{<b&!xPjk!^Q}?M@*$r)_Y3==
z8XAErFM>{=s-BHTCp`7Xw_L0!9G1@YTmjLtHF`nQ7j7!&hUrX|-^cJNA#6VX#&-U=
z@GOcM81O4P5D4-R-Y4tbjDy3^vNTk}h|4ik*ydYLxb~2-W888lJYv-Kac}8&Zum~N
zCERODhTID71DY&%fBU672i#OnxiJV~G;^KBTlQ=JUbq`kwg}2Z%JCcV#m=Am)El;V
zXiB(Av~*B(G~$m9_f@gRlz@CSMw4XRzU=3I%)9n0a@V_9jX`E)5<^{#Yqs}$Y|R9V
zB&>01(%})pqiA}Rdmn)z>}S+tJc`sUbFjt~xW9?F6$RBB8-<*bV_3@Tw{q(N&gF8*
z96-{Gg?rdR-)(VMYIXrg0#dcw?SX{Sd!?EJ<B}&Zo|V6G*9#t4uIf~`DlSc|KCzv<
zAI{F@;(36g0`AK46@H&_;S+YT3gBkOOgEydf9dvqi;1E|*vh4P0OAlt?BQkZhFSLF
zV!Ag&TQRE9*+ZdKWCz<E;C|ukuHuX#<$<qFb_I36h6`}f{%&s(I;K8Oub!BobvyQn
zwL-kWgYk-j?=ptIGkg+%Mae7^J_WxN8wKv74Y`fx9<Ir3p|S&foFZ`zL{O^JC0}l?
za4Wn$RYlhk4s0{5k$d78J!P&`n7!-`Op3(@xq>~|qtbo2S9lr16Cooa=uye<03U-^
z_U>~}ObQ<mopWOzcZ9QibIi>uw>tnF_i#~&4d1o914_cjNyp&K^k|Y$AG83>8qzM|
z9ubVJ#sR2A$Orfo!~eR?9XY{n;i>6nHw%IB30_RPe}z}&i_B`?Cq^<BP&WCU?txN!
zS|<&<2*<3ST$^<N6=pD{!zu8`?d3x{+>na!<)j<6#alq(gAfZrg$jBTZdy3UaCKYb
zU;)6ZX~5G5__0<J=m2%`xM#L&Vjqfx+TI%ht_qgUElq5{x$Xj(%BC#}Pn@_4&;xVh
zNb5YX)v|+AQ*OD~`ruZkpJQI=m<-I22C{?airk~n%BIJp<RBuonvGb2?`Z>tHStV^
z8;AD5b5&#=4p3;p7Gli^l^Mu9p12|ACXF8<qACG2Nxu^_%Ae*w+TVUxVkxQsS#fpx
zTz3#hlDCmn-w0vlf!m4Zv(P;{(q2(PSv)>)UFU@_BwT6uc$Io{Y&1A5#(sjE8ICDj
z&*lV#XoP@^rBg8gv1(d?%y;|3EH!o@UI}nBU<fNV+1;DVF~RSK;z?Q_z}1|0Dy80X
zw*ddnjatH%F;kWLEQ5*%iWvSo@4L&x2Z~eklPSK*A(5{Vu?=V#I9}Po(Q947`Sy}3
z=|qx4TGY*-;#}Oe##Jt{r%DrZ8NrVq;Y?=T=ne(;oY9oUI*rB?9B1CvD9tVW*rc^?
z<;C_4G8cq@u0n7BTI~*A9u7fpl;|e9vBg(w<BT5w5aAr`@}S#rnLQpZ=MNOqNRK|i
zLo}@`{_5@l*`LuwVTG}j;cMGS!b0@Pe|PstF3Q~9*hF);5r1<Nq|NGrc$o;<K&7Xz
zbthaCz6te!rRha~k!?YJH)FiyR`;wx<%ukkDMwEsL&+X@oh!RO{1NX$du7vjp3z@<
ziyJ^C(evyA1U#_O1ab$wLGP4Z^VHogev>_;OyQ3BTr|`?VZa0(e|Du;Z}#hsjRcXX
z%4J{021o~?1rRiI-vcf?{5}ia)f#Gj2wAB{jDrQ5wbm^|>t`I5DM7BWMA8eINNura
z#Ac7Y(+#=No|!5LQ>}<(?4=L8&(_#waDv2?!*6c&fZH=1^`<v&F)TjXd#_t_k^Qm+
zV{riNc^#X^E8X*GZw#fT*A%{-Lhb%Fm$<E7x68#?uSVT-L5=C)S6ay5p5s17<>6P*
zTN<0)%mMU2FqusKxZoLgA9(saqedmk5IEoRv7iE&Pjsz2F#JTg8RQu!|J}Fwe&hp&
z5nR2_tpXgM*MyI?&?1Wy43+BGetxMtIwa~%%?>ng;(|J4bZ<hmU*Jx^(p~@(cqxh)
zTMe=i8@0y@w=~?SsfngJ_T{b^&8fJpcTc^_&Ad6BfI3Tjh7m$jFGjxK3b*Yoc0<}L
zTpg_b>|p*`?s1wbY#OL3!wI@8(D)}iIO!6%gCxG%9IMYTd>@6?M#67jxzNoG2@^xX
z1|T7H>Dlh>tL!%=srjN~Sz#|;<ZccLfU^>gitjU<qLr?A)2KxFp^_hR0ATI2gB||p
z-VI5r9_-Duyc=s>8-BjQeH_yEB*1ClQGlfu%I1CU4L3PF@Cv{V+Na@<`rmPp@N~-4
z98yX5#x99vNC0A8_LN%@P77-=lwCB>fEM?E#{F5nE1<doNPh5^RF_L$a<@ESx8!{6
zwOf*0h$C~OgfH0XA8tANAup)FmV@6L@BD$}L80Vb(U)B%VE;TtMqJu%;P-6dtQXv0
zF!J^Lup<J3Abj(h7u<;OY}TatwvHyP8|I^p1F*rG^xxw?-e5m27kF`6C>zGc>Cd_$
zA?uqeJ~lTgBUhM8jHcr;_vWkiGo^>J|5PX%(SiNS@}ZjXdN%TzhukRK41{BqE)02D
z1GO(Nb6{}mDny47$$*78n;rb~Vs{MM1l<R!<8A%=DjlJK0;5vyBUgC2{Y3r)vyO_a
zC!)K@ZF3?wa1{5XnnJrY?BP*ZB&FrvyWIZU*ei<#o7Na3P(k-b?p*w!+du3?LsgzY
zidF2R&#~L(|8^&yA2u=Jm@AJX?0h2&;J=T$<R9!Fkq^=v+SCv}2iN#JPr6y*jc5`!
z5q?P~;>)+WE6%hrlFoq{qJ|G5ovsU916m#H0ANxdlcFsQE1_GLp5hJ$^M6y*h*WP%
z2=d0(uRO;cS!VZWP(utG1Edh3O-8-WefKr1ofAAlg4f`O7{HSA+@&&w$<0aiP@$pT
z80KWzXPLWXl#O6B<_C@7!IoPTJR-3Jce}f7HZ#T;N_GH>JGdI+Ea|R7^e>14Rb=!d
z7mg5qg6!|z2~zB72?gdNEC;KM&TrSdpv49gC7y?h%dEJ(*D_Z(#vU$~+KG7=K0e|G
zcVa8oRUVSIi<vE?JM1AhMcr8_m7$%2sR$_)X}(U+I9}-g<dPkBf6KW6*$7*rSq%$w
z{vEDC1|kg(Hkw@>UOx49w_O7o6zP#@J0zGWo&XEyt-F5b_Md0JkTu7#hDeR_o0F+V
zeOk)sKW}k=SYQu{Nkhl!EUi=%4@k-1>jw8x%pNH2QxO2m04RL6)RLjMxko34AK0k;
zm0a7}7gxBa54Wr0xkM%8SOp23AJpIG?pVUD92FeUK!uh{&015Yck3DM8*B+~;Y3C|
z0S*l^sW{)2WB+r?qNz5lz@|2v0AMT@+6VWapSs7~_2KCdxNuKTTat4pG)WQK-5cG_
z*V%i^32buq(*$_kz3xA<NNI<FYZKo=ktrJwyBEWaipmrmq>%z3tuWE=a0jTX5*X?z
zShC$i`&SOPkVaEW-Eom{5_FRr{M42Ax^KQQ&QjWjH&7(aN+F&0y2g!+re7#k2x8$g
z=dN{EVIDB&X$c{tr27&{#~J^YJL;13tzO7f$ePj{4tULtJj;ln643m#lPphE)B2Ws
ztj#`wsS?@*pgls8y{EgUP~4e}a*sl0r0s|FO`ZGldRJb|{XqwvIhrw!IR@gHAp!jT
zX7}1udq`<dA+Mv^A>SQxn_H5!J0&>7krl=_nO)>6x2h(*L5i;m)Oi)-`DBgz-Aub4
zj)xz~!@ymw$*g-^ZXb7*9?2$hy5<4&s}@+lUhm$NR8W$PluKNMNZ=R^Yov?N>wsqt
z*yxtheu!rtp=z2h7H9<yf5Gh${!(<xk;2;%YE$}du+<0dM%v3Dt4ieQ;ONliMX~~x
zcje>m<+r&v=-HDWR>RDH&izT|4Cj2~phv$bU(IbE{>*Lnunj>rtX|if1sXoSKzRYd
zEQVAkf8wtHz@91PkilT3kqev?M3H~G^ZsqON;b|9ZO#I4?X!aiH@G2Rn5P2gcxXx&
zg6EnYJh_+qR_jSwHmM6SD&6Q?i9bCzc>3#%v);Bl^+cPKSzzzV>tVMEH;w#HM&(B4
z02Av;sYwrLjP!Y;XK7Jz?r_(n#!BSBH*wTrc+LdThE*Hf`$fj$7x)>)89Mb+rvNl$
z@rNfJslj%GHED$%2$Elt>$H{b|N7`sqgXn}xvy6`JslzOL(|_(>%2#)%bmk-2enX3
zm_>$glQ(<sc3(vUAcbqYaadr-(L7Nyzoyg;eawE>zya#j_~ls&#_i`0VHfx!C`M-e
z<1eCJP>rKXLS3yUvG6R0`dUd%@0#O^FSi?XhtuH*l@5X<3~ucrw-Qs6Uom5_>R{~B
zS(rex8B00FQJ$UdwnedGU1li50L6l4!tBqZ=eYfk<GT94rl39zQAF^KvmtVw0NFrj
zPLegi)TG;G2e}8jC1|uvp(?H(xvVpAdoc3n_IE3*eppRtSxIBGY~;TDJm2r_-kEM6
zL=ENO=|tv8?RaCPTcCiAWy9io4ZV_M;jBc9mbx*RdfW?77eNm>z(XT9Bv9ITao)G<
zbXQ;rF-;1ZS#g^t)4A~im$7*8`g}Rv%sK$M^00mzti3lvzCUo1Qo~+qau=_*A0S&L
zj&#yN70wPOo#&pNZFe4N!k%ZZjlK@(a(`Z79<ws}-ut+2joR*vyLIZmr81&K=*#2`
zqyOowtKSt2c-eAy`=vaCJ7FVtkX5XSIL7J2T>hWK8%Z@=?!ywm9c69lvWK}j;k|H8
z(nKjc8NUcMKO#2X@u$)5a7-w6Y9b{`+6|n1d1{#X-Og@Qh24p&i&_V=7|&34u;=0K
z3H%BCVsN#w7Iafh#&(|KcEeU+tZ)aM<iPl|G=-)cy)nkUqAjGqX-vuE`V|Hxi`I95
zoA-CSQ(^APChOJ&a`ykn)|m%*J$?WGjVL~noh0Uc-Vr`xrfIgU)3h?xXq6<hHBHUd
zENO;RM7Cs0MY6A<>}&QdN=Xq}T4`)aQbhe8&vW1J%IEw0tLAmzcRTmov!8P*DoFDW
z2inW%CUnd$EumzY8`8ObDSCD;+S-Q7B^RfFzQ1-s?G%_;Q_-Q8uKS_;$@^N4Qj)Zu
zY-ueX_l;!BWT<@$s(T!41T%!|N4-s7kmPTd4StQ;g+)GA9%44OAW)vVaE$g|SL=qI
z0wnB$RduvzKX;28I5gkR64EKdFHXTJh%G{V;0<=o09trn3VSmYKUHrZzFc9mV1{lf
zBlMxJCci;%QL?hKF?LF|w}5pO5<lE*z3(`iP~o5Z)>V%PFJXyb>^0Wb4f5~vr63_%
z>5VL1>&$EH#6oY8SJI_dR*LL7(WWBdG4+5tYN1K4R@uNv#dte6JeZ}>pUMgnV(_BU
zu&lwJhJNQzHj>gI@@~jzhneF_D@4F$pd5#6nD+8(tY49TMPFQx0;l1*e&yA+FnrIc
z6BzvCj%s_Nz<=Dm5pSc278dqIYi6w_h1Sl+3d_}ZUCiGuwf;lAR~M)U-V$<X@b_t1
z9K}yp+MAbpYtKfBnl6!d=m3svxYC-}c?*UBY#?aga63+;-6We_?+sKHU?N|%NZ@PZ
z?CAz?;GMDfX^5)7H^zPl-^sqN0OV|k&u3j{|AeXMkLEGD_}7-#TPeaXaGKA32ZZi!
z3NSqCN{a><_AHH`s?M(BI;%y}r3(f$@`nUO5&C8|mWwRI_iUx;V8O)0;<xMmF?KSC
zL<{PT4jWO1TQzxteIZaK*j8b^*i-OeAbZ0fs7UM{_Wn6mxy(^p;u&-`-_4NVH}y>;
z9}Kqvm_l?rVJ@QDB0@Y}oE$mqNV{%=UnRFr7K-|yp6X!)WJ~rk$Tk*-t^`w*7x0Jx
zw4UQwbe3HZs8^rL5=jz~WSpk>y7sgM4|<0{d*W}7LVpVyfsw8vXZBN`O~Hb|ig=10
z^B7D96<Tap<g{0&{RfGPR_Q-QjT}Zgb&ZoF&70ZEv7w={NR(DATo2XtYHg!$_XZaM
zs2~sO(5BH+&89SXn_MAi-|UV0v51O?+QBz^12*RhUQ)sz;okn#<L&ssQ$Y}d^UBsE
z0s?4OP<e)}SQ7?=R20^YVnbqZf1Yly1ge@{onIi*qMGg)ruVUu7Xp0wta{`wDNM%S
zROQ2Tc7ajGdgnH8H?bwyFW7n?86OA?k-dwTa`1OV?bf@zsY?x>mGwMvm(B|($a{O*
zC!@UqVAi{s!t?AjWM|tifvk4JE){3iJQu{eo^50IV%vd5<mAJW;Nhv7W7XL~f`K{U
z0|>00UAH>a#)aMG>A_0G*bo$x>RcmtKidoWi8X`oQg;f$KV*t}2~w~CR&ss|Yr@(Q
zvBLQ%%8SH2z4DqI8GMSp5x6I@kSJ|@*7c3Gx5t7g(3cQ`xOu&<U7_q)5`GXlnohET
z*w&%wSg2qF!*@ztzn9w^7~c|btZ9tDAebT{V_M8k;!t!!OB-kr1LTIX(O9i*3{EU@
zf)SPVSYvP{0GXL*+ndB@_@(AC4R-b~p9tUk60`-O6W)0=#vOz0;{M(vr@FDqeG=lN
z-w(FD;I`_6K7iihrKBS#71@hKbR@>%=ov;VXyXW58YV_iBj#CAFucVBP+uEvk1B9M
z^rY~2P?QzX;l<AOJw6kBgYu@i1uGq{l^nVGkLY~iZrop#bPi>Rn4Q<PB6p9nr3ZxF
zv2UV|RPO*k6|-#UZMWiUrdM7aMBbI7;5Xn0x_fQA*h54?@PqE*kem^e!w7%_2{s*T
z?U3Mh>scxHO<lX9Mj1hL58aWsZMdbJ<^#k@hI^Q?%1clt{~)7-bk@fj>;sG<iPbxq
zBH>JiVy01rC0lx~x8ra^B|=D(?kDeoOZn?BwIhiIK_AK0QxeH2H`v%twk}Xu6cIQ0
zwJR!ZSH&%@aU~{$_trK?JALMzNcgA?w4WlyO!q(=dti$9?54CNGVf7f5O*S<eHk6T
zEOe<X8&=$IM4ddr$Ux6u??3O0oR=>@W@$dJmL~Kmf>J;JDY^rN$-^)k8n78iB~n%H
zCf`K=^RbV3j*r!@wKbpYf1{E~yh)aaBXVh${aEh(^Kh*3QYq1b93qQKjl8ftx_*gw
z5nk)|!2!_4ND}zy7#ky%7+tK^XXHpXH%7l-;NNhwm#in?g<-e^sq3Om-w#v3yi^9N
zG7>p)Mf5F}hXnxP&1ID!)=T^4aWbyy+Iy|V7PL-&AtHpCi|`s=4W4atqjaR4iW}~D
zmXjlC_n6&$K1(H>kbB9G<>)|&Tw-%sCZD_GPn3Gqu7G#_VE0(5#Hq$^vkbVa3=ylH
zL@){Gv|)}tgDTA=c(O4c_)DV!i=iZhuE`DydYy2+wL}!7J2bz6XG>B2-Hd^sjV<I|
zXFE>uVRl;9=&1Fc`KVnx&}}J%KoI+ZL0aY%89^sC+HX&J(*=6?8}->Ou_7l&EwrC*
z4y%>jQ4a;M*t~i6a$0<`GHdb7GC1sbhZRlB?D4qm$1<50yDI97>>h66`hBKd&8-JM
z1EKWscpHI+bc@{IZ56LAvp1|B@CQtd3MnI<52;gg%a!=vJ+>FrgdcU|{xrrlRM!<>
z`M|!Col+@Vh-xl5XZR6*H^u%w%4f|Z_)+f!`g!OPlGB^S_K~Eju+TCh@rbJ8(5be)
z%6KhHW-07|u$aP~R_{!4iu{-CgFC#r6ZKFU5=JW)ICP1%xZ7JoWWHPRxaIP#V~+lJ
zXW}y{j1)Iib2-jhV1M5bK%g2SP=~nf1Ta9#Q-r2Z@qR6Y3{-J702P)a){@V=(^?Jo
zt@I_>E*?>%M};FDx7*BqK5QUe$aJ{;v1>Zq2HbC%GBp#4P57lwN`SugZtKy?N9(jJ
z1Sd_-&q%B7);>&>+X%xBXAs_KxWCah=lS9=dDbcfj2CmuBpn3H)(5XzRxm0;U<w<V
zOSdNfTHA;N9ANhW_p1W_$*hz9o*fHHs6nzZpaLZBc>oPZt+5%?!x@y;?mVFIMlUiK
z(imzlc9*y9b7&f4<QD4z%lKId^J72S4Rd|xohvJR=dzT&IN2T$XHwy=(Gcb|kEgif
zPFuBye+@9Kl8C|jrPdT(Yt#ShZKBWc9*#}M9o#aCBNZWG+%M+YVJG;nIzeCJ61rd8
z-q+em;a21doD!{hFqVOrY_N5xaGZ5EOLs#w%PxA+o`q$zz_1j&Z#;A8D(Z_<?F12k
zaF&9vjM|g0w;fOyK+qe0hJMQ1g}kr5$XZYFuU)Gfxf8rIfJj4F%3^DGlTS*0TA5<7
z+B0kU!}cg@1ViWXgczZAvLcI<U-zQTI|xi6s-ZYZW_5&u3}lGp$i$26f$?<NsTst>
z9&uHHm0RAjURVqm5G{_l6{s+$dgTLFzqe1*$Ky1>MqsyUmaPd85`>EdT}X}tmse2f
zma@uTlafR1JYKH^{6_z3<G9^yoP5RFh6MWj?=6JBl%k~)bO;Q1))znPuXgBjzKTv{
zP{}TZEyZ_66e!bWJ#9OJy%;X0fKBJ{ehsghX4|C>QF9O{r~8PZZ@~NbNNh-jH{e_w
zRsxL*T!G=<+GK;S^XX8GFa(K}r6^Ko_H#D!WE#R{7iKtqql9p$WMr28q0>E<3$+!7
z!v{-i^`<1R({N@jU$j%8-|@&Usd7R8)$7B^wW*?jWi722ULQ#uvVQWpgZz3Yw6T?v
zhZ3?dicbWYg6aAmZwJkccfdf7l#g2AGS)vQ+t;^wi;Nn<L=-eUm^kRX`4Bsr+s~NY
zP!O>?k8fs8gS3Q2Jsxb;-UXMT9qsjA@kx@1B(EqXpeXWv%r=Ax{Gz#lq=6r6Ys+f<
z*I0zyTgZag+xiqc>}vn+dW!3^$krV2y9e5reQ1G^qKWFoYmv~e$JzmS`jN+h1#w3N
z?JIOF-J{`t-N#5lP$O}P0E#y~o!OlhvHFSro!HcTMJgf70Kqe3_Hv_tSCEGXmN4K>
z_3^@v_DE14yNJitE3(c{r?$GT9`&73BrpBe-44g0%dFi>#SNt{veJ@c?eZD^nM;Qo
zgg3I$znHcCan>W~Y^XWd0`y>cS!E5eb#W!9X$zYZ^q3wE@FYK_wp7EFDDMpBmZtXN
zZDHuf$`P*Uh=~xAw{}iqJB%mqK><O1Qf>vinTJ|bmT#%=)Gzaeas;cRRx{N<^I}SA
zP+nQ)&&SxxOZ;=+My%vYMMVru#k7lZeyr8r?`@qM%dt_qw)<%tTM(3L-o%lOo9*)3
zrcqm2?Z3^zRp5#?_vwk_?X|F$UeLy%fJ-v`vXwnbEEH>WHAn!@AI*U=1+C8?Wj}?}
z$6g*++ht2`d4jzcSF}NE(B1J!kBKAcMD4hsRZ4JE)`UjW@juwcvI%-(F8Fl3hj4Y<
zaaJ07h<^h>L|o^%9XnVlCR`c#NzhZaK-{Xi`V{L9p=6|7*cw`3*!sc8+KH8Xrfiu4
z{J6NT0?wLcpU4JHJOXH1q3Ct8_E;12;KUPcP%uDb>$X*67LcWKNO!w2*g0hK0lcUK
zVq}E9r3(iy%C<_PTNtu)abbQ#BF5j3{roPrc(JzyW>iyGR>kuql1!aN`X&HW`f+y1
zOZ?8IJETSht?&jZzUX{w_kuU{MagyLI3-IG$fWb_fnetC#_Qs4lo5N5bu$Y(GtUBG
zh6<}>hLM?eKW5kf@Y>O+72K8%9%WOOXOo`yrrtc3>OC}d*BmR5PeXuJ5<NB^ItbYh
zKf`K*Eowl%!U8cb^YyiuJ@o~@PlPhcCWw0gW;6m9X#*;pj4b<)u){(mBXVp=Q^A_$
zqAbyz)DzVkwXVdcz?2EC>{qPJkwjo#p%QZO9C#E+T|cuW7(l=Y>=fYE|9&Q|4965N
z%gV*Hy2$SO!+$N*Qp`ens%XOFm)Q>dX}i`<40LHN@+i79+dASj8yQwINL&dZkY+)*
z7jCxXAHr}PI<V9mH<1kk?BLeEZZeSdOg*|%yu%;2+0viAgR~QRq|2@nDHvrrOwT5|
z62Bw8y9`bySB_hA#`UxFkM;ovphYMe1(T5isUxZ7)}*Pokj4vzU>afZ!`E4p&wRXq
za$GuWJt`ulNME@w00$6$r@_Yj>A%YZv%nPe9>h_66Zj6v|7LZd&B9Uk!^Yi4gW|~=
z0bL}rk+*ULa~*5Tfo7}xck+;;O7mUR>ZV-lMKlh(<G4X=(J|o1aSXi5@_+M|^XlTR
zhV)c<M0PaTi0^ivve>yLc?SuvX1arV?+Sb6AOBq+)!z;q;|TT}Y2_RIdv_=}4iGlO
z%Xe(%fpNAX^x$#`4r16Bj<n8O{pV7ws&MXbv2i&f>JGH$_jLfnEEJF$M!EfR8y@k`
z0l;86${2{7s#`F9oJCiHO(dpsUYI^z)o^XPh`><jP%`0Ok@TZtljN18as!lxLP97U
zq&R_BwMWL<E%lZ@h+WRqaH;~Zf&*hi6s6#03p~@pu>}J^FeP__zOA>~BB^p{<HUZ1
znQLV2@qko#DCI{vSuE2Tk)?abdf>O_w_RX_GIr`6t;l&t#6D@_L*Oby&#XtZt7L;p
z;n6BaHIH>9fI(9bk(FOZa-nhzBv0LUXzc6e-c@yk5P&@peqr-iL70c^2=@h$s=%-B
z*dz9aIK0Qf$i@>FzK}P3iO{&~o5WuG)_;P;gxrd?fEX#|C$LvLD7I#yHx4KkPCBF%
zb&h;`Xlw^pKtrQ}=@O!4QP_q%l9?>59CvK&@Brh4@KIh|+d!l4)vQBeE953imj{?t
zA$zGPtS~nuS)9M!%HQ!Hh>$46%#-9e{K>!AfrN~Zei2YZ2|O5asQ;?Y2(9fS2b~cc
z3LoPX3ICz`DMSKB6z*Q|r^O*EJ7e*GVhaL9!+0fnV@TlE1$ywnSpWUQNij+Zm1}VT
zkCwo#jqrnq4vDRnLm?5iLH&j}kYo)xtaa?oXT4Q&gv_y?@iyzA*hgRb=T3Eg>|iB#
zA+KeuF8mtL4H6Y$vLZyu^8B^iVfJ<y344Yk3YTrs{;>?m6SLzZB62f`Z-{`%TFO;H
zQ`=~Z{_=i01%-zA)>vEnJz^8X*5ufVo9x_4a!k|Mq8;8xRo$e2g_NRGci2VEe70=z
zLmZ?!Eml5Z|5z$ka@IlqnDCsGOHTR9ePZ`WYyd~<>UYm|BTiNT6f<3OKy2!#{u@%5
ziW=KdN|E9u;24{J`N-Ip@6yI?lp)LU16x^^#OJl`Vz<L-7@PX8MU5JbuMZs)J4G&3
zWj&#UXzgjdV-IUij(z*9{~R}eV(AJLsog8K;dO6-UX9+_BoFYg?RFv2mrMZ;>S_$H
z3+8pUM}kYFaIe^Ft3y{pRow0B+aB9A)*>KxwyYT}jH4Q~XKX4I&DR@@k)Ect&vx5q
zAOB3n2Rx+O2fr>mES3_Eo2Wc#lOPT&n%*L|4zevpH$SN>2AZ<qQRSdtyT)Fu-;H7x
zHP)0?H;P{|+_Wi{9{AO+NGh11FbqY_Ni>NC=R=}3G<yM6aovI6OD5Sgsf==eHUt|n
zV6LpS9zo$Ivaf(jOQbmH*H@ip7t3~>u$<??Gu?Kst8#U%r3>N6LlJJv&nd-v+-Tc&
zaeM~wR$fM3%UPG(wBXq7FJ}RQM@9!F99(s&ZN>!%vpWY-9yd43d2q1Jgq})9sgAqU
zQJFj}=k{uAE%N3*M(z!g4~V&Nj2(-Sg0H#IJVYecuYB1Dd)i0G>{@@jMnafnT*TQ&
zmK?8#C|plzAOL(&7h9R+7DjSY36a-+1naH!);VaD+10CED&{-Ce{-yjZ-{TdM9d%i
z3j4hKO6yhaYe#%fh+!~xb-8npEf@L5iS3cpNUXSW0p-SVb`n8^YJe6g0-6*EQeKpi
z6~On^Slb>}fp+7LQb`(fC)q8yrvVhcW;uXi!p!q?KRf1cpGWN3?Vj9uKhZ^J*q<%E
z2eq(ia<?%&nnheU*<M1p5NLr7R2ZU2m?CJJInJ&~@#X1GN!k^c!qj=LecjHD3^}65
zA}o?%A_w1S6VBYZ9seu{!{)nVRbT>0Lv6mIa^n2Up(nxdlnJ&xpl44pmv91;>up7`
z_v>3aMgYlRwTE7AS>yd<ZhnbOo7y1ozxFKqFl2BA@{a^pJG>Et3K!Qk@|1!0r0l(E
zk*>UkqSR{-!D4*}{u6!Yds<|6s!5XK!qSy!ml_#zvh@K1xDByjK`W8!-JI5=gIysV
zl1HS7-$NYvA4`V{_bIi7*TW^#@`xWROtJPDg6Tt;GSLq%7gq7OI9Z#SZhAWL6#Gq{
zB^gkvWwj=IPUkwLqus|{achUGDOirc{*H&+9OZFI&2tkkKNpQG>}t=I`geDZM<QE}
zwR1QZwvOhET;m(3h|u^A(Khq>AvamP6~_{Gr^rz~ZBXBMcet8_2yhi4<OJ&~hm%SK
z;PXXXV`CD7?o762!S18vJj@&l&Ev6YFsS|67L%zDXG<Ak19^L;?P_sj;9r47MdodZ
zKDyS2l;r}AkZ?Bnl7l_zxK_5$NN<&64<iqzoUOVp${|bYlV6XRNgykHtERcF2v!?b
zph_QZGU6VoP=aVVB7Ds1MV>OT4AarwMTiuRh~WIc2T~+5chGq{QR~c5zS?SKV%%wf
z9FD=df*^d|ho@Iq>C@gwFP5LhQ^!<qSZUuOwlY>w8iLS<hgJ5rERSLtz0M9^;T_o!
z2B)~YF&-_(I3i{juC(vp52HJG5|yYS?k&qLvcG+0YYEL`mj1*^5!(p@%>CSc`O3cq
zUK|%|%Xqt)`Vdeo1%O1(`Pq(#3DFZjC2?({d>I7qM^0O5E#ZeAP9+<%{M(HbTmecU
z)~rjR{eTwF4-}5<CKS}O^vI&~jKXW7qhd;H>Zz?*!@)X~DdNrT5qlYThCP0}{|@7r
zBQy`mvhL{}E%V0EU!28*UtR6oJkT~>5br>3MFl`%*Yxn3@kRD7CLUj`=0s>BU00O8
zy0oBC-gOzX5WFt3pC<b6^z=ZmNf2fLeDAo>T4F|FguK$m66{!2Wth&1Ii#mnHKEeZ
zzbW)2y&WXRHssv+i=Ni3WVfjyk?fgZO|t6gD+1pw*N&HoCJ~v&J2Eocd4%=t#n$<v
z-MSZgvb$D}HKKvoXh;pW>wvB{b&?OEbbU7Nz$C6iF6$IeD;ipDr{?)cJ?Y7DQAoh`
zZ?L?E^_H+2(a06O?F%eu>{Rs<95kZO1ZOBhj?V-^z$w9Cv}0CZmSs)Ked<1>PXw(Y
z#Y4-Qj<U9;;10E6+(E8-JlKlU(lyPY@7wn6N2#&9LaM2dLKQ+~aFR>A*yc9dtsiO@
zmx$<E5=58SO-;P1AF;@&AMHH=W$r5bv(X3ZR@NvJO`1FXd%s~D+W4=b*`#*kw`iXw
z{!sOnQJhMX6M9PY4=0H^l7$i1|E;y^=zS=n1^&2^{qc9K_6PqxS5PH(NEhXDF&Jwq
zc+2))?2UbK5IUxkUe6XgeQqmTg~h^y8ks;M!vhQK%`W~m54R{)1GP7u;jgRg@qN6Z
zS7kldTxv@xsaR>`j&fZWSxQrHb#ooK+1QS>q@bRlzBAw4Wp+ZA|D;njB@M8*C}k*8
z`y)D3_*{w40gTNOIoxlBZFw)TCrVIrVPI%!3Jw~)#GZ(GkNLzqvOW)(%KF$2S`qf?
z$BE@a_FPO&#TAV@2w<^knXNw5d-jx($)lSAD<EI;wv7zH=mQmjjig~Ji=6km9d;7P
zgF6<kia??qf(%dOz2s9{jTv+&_TVv5E}iTo(rC3-Qp_V4ueQyn_|JH5mJ0!&<w;&9
z?7qfs-sH>8gKatV+4X(zT6wzvyiX%ChQyVyzE9pU-bFYkD`9L)kcc`V2Ph(O@CU-{
z(v|HVY5j#Y5Esj@bBUQmhhdM5KK~o*bcuh4SH=^|b~2B&WQjj(H`y=_iJtSzOXCh@
zB83@q!WO%+!dr4wD4c^wP9>S=cRQ~~7!$UK+9x!|&kS#G^Runcm6puJop)T=Ib8~5
zl)#$pcFF+%i3C@~5OgFjZ1C;ZHuvl>tO(YwzC@wOAjK5oh_kob9+&ygcKQm5AiyhI
zyT!f{U1M(Y(6Fw$aI$cVy<8B!5<^=mo{7zmZNK}KU3G1II<z}(v{tOeXqLwtZE9z4
zoewQYRCP)7@+)WT72BNSZQ_tnMj1fi2+*|-GF!CRW=G>E(L#_~YCJyy`}YsH){~Vi
z@zYj&q)%waBOvjZBV^7cjkedt{vH24vEVWkYP|%Cb7^AR?TsRDmApHmk|Sm~8unao
zO?t;0WIJI4ETZ2=yYbxkB#1CBiE!The(NSn;kvWDUX@@W&;U1Ed|}_*>>njT@Y<qy
zm9GG_A%qQtVC5|~+4vFhsQ@Ng5xx07ca41#V2PnG(Ob{}iAuLy=PSKWHcY%M4uchc
zQtHmXLW$+1Q6Pt83;@cYl3n&&XUhw@7zrk{GZ<Y#Gx6$2?RiBV3;HHI3SPsGAf8f~
zIFABZ6-Y{O88GW_s~GA(=*nEs22c@zAOEvWsP@lTk!xLY6=mQ~eq*!3WumsKuT8Ny
zGE%TMg?zsBqrD=QuVAX3S4Pru+HW>xbeKuDOdT#r!*1$+Fax{sisrFlqGfdAXD_pJ
zuSL!zx<5Y&-v(wecElyw`yU&9l@CMyef%!y4CwRL4%_nz2Md(HAC6mCh(qCmEp~BO
zbYO1rkWOdJi8$`GWX0%C`@>Go_R+&HYf8(>vesF$wHv;&C_)QVPTZhGW+TWmP(JKi
zyXkEwUzoKT8=TunSYEN%4*bf$!vRrI2;UKX1_zrgO)$0iiU{O!=AwPf{@B*-=ku_S
z^W<((%8I-2=6-7T1-=7kL!Ur$aSwd-eY+-3S-AqLq)|Y0T7;+A<Giy^F{xrD$k$53
zp^(q});f$Mi#2XV%?^=fmxs)^u^b1x%;hl>EERl4aq6+mChOLOls;^>c(j;@2xlk|
zIz9fu$j7zTHdvFz@k7OzxC9KqaEcP>hEO=%u0%$bQDC&kfTqfwJ-*BqBjWNkKt$?D
zgJfGQ%K$8=&JIMU-Pv4EJq^^UU?TZpq)p!()>cYg2MlRkJ<Rgs?3gY788-@-R^LVW
z*Is35UxuGcbq>T$iK%#bZ?c6u?coYTk5@&2{E4?{6gOb7jm$At_0w)EDnT}_D3Y}2
z;YHYYARc>PZ-=75vuuu1in<K%lGUxsj==1-Yd<`Kfp+MY`dv2m0i_ix+wF4-1NRwY
zW43v(-mX6l8DNjM2u1)8L6CNY+YWG^cBw6jcuOwK+GCWZhXr^YS!#a;zzk4~D_<oW
zk)JeUlMjwSEs2xDUBR!wZewHZ_y8C*S*o6^la6g&seKh-DK#6MkWWMxxV)cxIB@E*
zbJ1m8$B?bip}?M*>l4Wh88?j<*TYTREy1Xzm9`O6vcRTbZ!tYABErsZ`r4Gkyd|Is
zZgudzR`J_zI(OinTxs(HaETC=HWOT9)BD+GOv2$Xd`ZFxSxj2qVAFr`md=<O>wVV}
zq+2xDn_(ao$RNka&jKt0A}Ny+XpE_?ntOn>CQc7b&bO3<eT|C#cEglg!|uD)p2wuf
z{GM9tj^BW(lO|Y6a5QDZEaTIpD|Rc=ZIm_0CE>;#Bqq43*E9)H|J;m~<Lxet18C$9
z5zHNk=fDevoV6_bE82Oz&&h`6+k<Nc7t{$?+p4fPSc4;W6_){iM#(K8a=!h%+#!OX
z=k75=K9#Z-@I~_drFFJFTmXL3z^m=Zq`|7W#}r$RGn9>DWWj9*u82&YRBM+9DANI2
z=-yU`O!i<qdM{rk)E*Cet=z5hKVwO6uxG=???djc=Ps~*FyZA%b}$|xCh3bMN0_55
z$fxS<f<OE#ku>beO>nqs+(F2`Y9`x^zr1|_0-8#|C}<*b+hjYK&?2EmzVNU_yw+o2
zZYi;b;3*6USEC9xq5)E@-z&3DD}A&<%86kKtoWS?cF$V>n8O3f9EIG0A_n`OV?(g0
zGf7Y2MWDF+rZNXD9ArljK&Gv@w9dNqN(a5bv&#qCLl`Qwv;<d!gm6ht7-_!*V!&2G
z^H6|^<Ad3rd4WCjqvwK=&IB9?&zG%}pooFC_5h!%A2uI18e-Mua5i3S`yCR804{ae
zs-V0`FdOUa$Zvdp(jYPQJIu6C8)qK{P=-|}N(D(c<30-0ICp-ytjc}~<XOfXj-<wS
ziPSDXbXeEA0oE$4s|QHvzC*!NCikfoc30RZJRLPkxGF>g{=eR0t-g1agxnyPLXc7&
zq}#r*o6*HlR?x4I<p3qeyz&c+obO+;=aIfkAtIL`pL)U$I?KNUV@Vq-8>2P=lRDeZ
zMc!3z6((u?8Eyx=ZH5g_^RL7VlV1-jq^f=?gecM>OH$3eC#~Ob|G_ybmmrCdHE>_g
zSZZq!-n23oxH`CGy!dIGbsS$&*_C}BjDqPhiN9Ll8G^JR@IcHwd;<8wby3|}U~Pq6
z7L<C<8d52<PnNXT9oN{wY9PtHxV~1g0GX(3cou7I_7ncSn{yokoWQd`N7)m1`B!|m
znn&k|{}@4>ljJvy*ms=$`lSEHgZT(uz=}{k8uNEZew<%sCp_-$0VS~6;*iq3QaIne
z!bVM}RY|8mN^;JS$NS<jwy2kX)e{^ru#^nfYcIEhQ3d$1LLymC&=Y86tpkSGy8^Dl
z+IR}v4O$$5O3P-VhoLZx^x`l4pbKw~D?@M?EfQdlt+kV%@~&ZtBkF3z>D<f&HqxD|
z_0ed%R1nJeS2myuZq=df#aDRWczZakurCw~AfXL=9f+b^tZ$k3R$UUJQ;1<^(R*BB
z6RY_gC)D^>2{^$Po2LA<_inTg5InWr>e2@Cl;Dgdf)G$ot+NL78`|*6*3^K4V&jqR
z6YV}!3qC_m^?RK>O~CZn={9?UH_60AIyZt^4KX*IBeVlKVv02jUAxqf@hlBJC4=HY
zk?*gv*+_YenTrTX91v?4gZ$_=dkY1O?{TPwumoJgx<=Z#c>X8%+8!b7NQ~VTKyXy@
zZiiZ%cRBqPoL(=JLM9tS46d=Y5BO*3KIjdavO~O#epGMN*gePzJ13=z6?VW~X8=ka
zaJ3zWhKI>BK7a~T$sQ`%<n7OF9A-}%<E064Ie30~(k5#K>!U%;jq;X3p>*#oU0Lsw
z8|>Vl{TF@V2OK$uRBq1CD{O8U5k=ay4`)b`f<_yQ6vTi8m7&%mPlJ`<GTngQ;Lq*F
zMsJ=!+HJZi)Q#U~osGr;hA*6@<1$1Erurs(>af6Wz=s!BS6)SCJdzXn`|N1kYWs{p
z6Pmga;>r|m;RUz;{?&4b$Dtt?H#e38u8aJW9Bf90)Upp&+fdC$pbhK|as)$26Bp^X
z$i~uu_LWQGo$iSuxzi#yeq|NPe&ih$p7^C6phEFM#tqx;tq@H+0RKJXNTnPupr>_^
ziSe~{RvY@|AclBUO<|pO9m1Ap{ASO}{iW#&F(D~}Dviw{9sF)tmwQXs(lNXtm6jou
ze8!%!yfXjV328Kx*dz=e9G~{1{f;xq<C#enVXp+nO6NWHAscui4b<esgjN!dG{<}j
zu)JDF?0Ng|dEPT1b4_u48wGL;Dwdv6Ry}MjdicZx*oVxXivPzV5c%{Q_uw&c=uX9^
z%4+g00D3{7^IqcT>btEg;S2mMM|Mun83EpZJZ%Hc3ZL;PDO8%^W>D*-hixpUu6Sgu
z-VM~`BX&u#x&UF&d@CmGnl_P02o0(A!xWOu$>02nZNJgiDT!A3D`JmnuEm%BY~|rB
z$RCxFELeQC4U##(vqt1bPJ#eiii3gVX$S(zkyAI=!d?!)o+1s3(8rz&4!!!Uojk!C
zJa9w-Q;39a>>zrEwR}3q=2S9d!Y+r|o5-{fSX`5@1TQMKGSI%)*x(Kh15lr2C#g8Z
zqbrZAdX{~2gs+NM$!f?JCE)~2VDK+CTG3VBDS*9^s%gMZLe25_*|7*1fI42ngJZyP
z(8#0nMI5KN+xDldwzK!{1b`IRLjXTFm`!I&$awXBI~8e?AxI|(t`k{8BJ-wLCndY#
zjR9Se@iLM9DZ!L(Zx9#9=K(<+QGvHe(TUb91TkZ_FTe~y)kcWPwzl@4vzc3U^XsZT
z&5F|Mv%iYge(GO!aK$A`!t$&w45hDbik|w358n@+k&?ikaSbX^-QYCKQKb<c4<wSd
z8ZW>5-bho+*c?6V8}F1OgAMMr?~?3EaKlxD>Qav|EF@V+xlla8b?WNqF^g#pzG_KU
zqv4?xYtENt9O9Mg#a`Yy+3pNm<(VBGnj>S^BhdD0V>7~cKSYi&7{#RM6JpH`{U~bB
z+`xiJ?-LrRvRTL`&lqpFRv>FC!H=zTIpQ3+T+fkUF9nucez!|X5j$nG#HLl4Fn@8D
z?SHTp$Th*Jg}K*bhA<R@S@*B8S);ruezo(<(H^CgqstEi!bpN{sm<DCZR18j_tH4~
z#=6EB)4sC)_3@eIB`Kibn-G+Bfe_O++m{s}imDG(SHO;Gz`L0o8F8=uB-+da1&S9y
z4s_FH*SGAJyZtkH8lj|hJYApzbQ$UPWm_xPUMdlg=#W9fBuO8<S^uc@K-!{7%#HXp
zQ72S&CVOa>Exgs6IydqrN+fdCO#AdD|3GDz;vzS^%7h{Zw@M2~`hH;L&xaoDl{-zD
zMF#q7j_p9|V~%(oNgPbb-!A_8#TopXopPuDK$tEt`B_y~6HkN_$gA}=thT<yM={6%
z9<RXB1w>eX%FUManSahELPgzVD->dR&54WdvP16;y&ygi8Lyf4)fe_h*oZ<A9P*A=
zfevNLtoGpwd+FgYE>YDS4Q>)oSe^W>9rB<zkSMK`Ei`gJ(haXzv)zS0Sq&7}uS+|m
z#_oH?JN1)NN^rUh$;Uiml~?;`#W-*a*_7aT;4EuEF_zTjE=}zV!Y}ekkTnSMG?kie
z3#%j8T`XE|T|7(_0t(RR3y9$diXp%n_O#tN$A9it&ctrm=9OPr(}%o81Oh?J;Q$U0
zo9(vPkLKDhkA|6)CF5X_zLoi@jY10NI6yhwI_N#u=HgfF>^uB3DvPgx5_=revp?G9
zVFlzy2aUO*9SSi0977+NXV1qmlyx}E$0S|i(TKpEmA>$m-Ts)542huJr7sk7nanl;
zntdL&l?a?HNm0oXmD_vy$CsDbm@v1n3n^B(qdoloki8;#g${M-!a+jYy-w!&^K9MI
z;Rg<6aEiTbdBBR^^RF`4gxERGjh0Ji*hvdGH;=h50RUw8dS&eeN7)OvdxL~l!U!=H
zc*VP!``Xxf-q4!>FjWTth+VctBX9agrK;=dg*5p?o7kOPFNW_+ntVt%_;>DpZoZeY
z_Y595H>fnfy=|NAeX^@dhe<sPajeH#<`O=WO(km!z9LyeQoK;s)GC|&K5Yp(95y50
zcpWZo4o3P1u*<r~W(R#ir9EnxF@)SJgH!%5gmn(>*DGyqgAawssG1A%H-)CO3HFtO
zVNe`(;)zO)*m#p8|6F0eA?niR6gCMq?I8#R=7anj%52eVv?ih|LQtpZFBQ{9%TX4>
z<!86CzFY==C(|V2mr9%{LTUBc_7|ELu4}Z=3N}uVb-HWFjfWYpr>dp9(v=AnqF#!?
zxG~9&JBzVU*4TrreV+EckU~7Q{yDG$PnM-k*4KT<STX3xSQwkA6et-MaiJ1dr$?6;
z473vm?Y510-3rzy+-%a(?#8{&;<NQwhzcJ7n56B|SugI^$ITm16R$9E?*Y~ZqOcP#
zREro5Lnd_$BZ%jjP}P9Flpk*|a@Y7>C^JA^ID|@+Xpiv6R>|UvTibQe{+&3m%llc#
zQ)nU&<Xp4Nt1q`)og%3j3UvbAWqsd2YJDchXP|T{wtvVN=}JPJb^F^N_*N2U8$vJe
zZnMr3{DZRJif4=%Y8P?HK(9B+VrT$zI`On8Hn<MLtlozhPa*2=cJ`|oDtV@UYkBB;
zeC<<QfK3MeAqpcQtK)|@=L2uT@u`BAu2pew(I>8Z#Ag2#2Gc9Iffa{3z9Safwng5g
z>JUyj;dPMoqy^SqYFa42A<<nI0L}w9gnvQ}DqpgSn?qN8m{@O}!v~EhbAfI6#@moQ
z5Km+Y@+_~7A6WJ~-r&SaSnI^U+M$k<8xfWw-Lvi9>-<*)Ik~~o$su)Dcm)7btOdUC
ztj*=-v%r9xAx!}!#M&aN%L;Sfwf)0nD!``zLW0-B0uNkh-%8s=WT<Y$A*nu|p0)X1
zs}39kvxw-v*YmvKL%UEvS9*=dIHhGu@k4~@{X3_a5Y`h;L=GEZ5s9mCl;A<{NTk4x
zJ|RVfxMBi`5aGpl?A-bOosxn|qX^8HX=yy>bsM+N8#^K4!5#q*=lRN$_VPIY9JW5p
z-vR^0YT8v*H;Q3PzHa`GeQ;ms3}+>O1Md}+%69S4M>c4wH(~Z1?PYyQEFyo5zG+ev
zPJ7FK`q=MBPp{@d<h)EO3EN258MaACPRvZD%G!z~&<p>Q!im6rTn@pZ8Ejt7FSkP^
zJ9zS%Vr(May4oi{`j?)S<&LUcAC7EIb9+M+HF2sV>ZmFN!4vx#c(UEQ(A)4LV+#~d
zB3<P~TNSv8FsfJ#!ezV^v5uP#xAR{1E`2<N2L=S{B=2jjVKlmY;tnMUjjC(LVDnnp
z;9PI<KuTRkjsddCb4vPsfH&4kkCnmfNFLP?<GtCi=_CwK?r1@WX0(-8*q^T^nh+SA
z2~dDoZ5=1r&u{HECPrNyFcY%C_Ybi(z350CP88?3+W+CNW>^haMRq+DN|;5dcmhuk
zw@zK-YvwB&kT*$txc@Ml30bF0r~GO~PeHk%kR>gQ7qaxZPjLk<O*Sv7>y+bcpVBap
z$Fq~EBlf_0)}+|5lF;JS7&;`&s+*T--xT=Q{ul{r+ZD={&zk7awYkj>YwDzjxwJ2#
zRr3R#|9~JlejHc|`SF5F?dW^hZ34V_LB>es#o$Kx7cSUyZ?GdO9gcZeQe9mjnh=C2
zw$FtS2`fSs2NS2S4-ByZU<H7t8Z*LD;LAYkiJ8V@hr9X=54^WsD0Z)`IZ=+1AvXI3
zUlNKvZ!0@Tl&Rp-p~j<?!q33go$1PA(ypVu9Z<ZhL@YXl+_-nnvqnZr_$89g!Rm*-
zUTTXKhL~~bCU7UhUu7%yIDo+Mj@r-ap|F~)5xXAr8Kn1MpQBT4P>>OFbpNEGcqZPR
zeXaHx?-4Myj0c}!W}rQn;lrkO^8MaORsmuqw+evlnd0T%gd>#|Fu(tURoPlugN%lh
z>kEO29<Tr7iFQIc!|AqTfk5tqnyb7vTN_?wAHh~MC@bg0#0QJZX$RGS*5YF=qf=<F
zLjhz?p;^loHnyjK?EyzEBkoYe-h@w(g-benOXoVGh;jOO98G4-9vb1FSppu{TDg1(
zfn-}9bL~-R5i97%%v>UHmVp+ZYM+Fw+zE$|a+y5rhZ_;AU@w%{tMDMfxU?J>z|l(R
zTQtk+Ci{=L%Tx!!N9~f~{}BcQQN^6>;-uuO>u$H)V(;2tu2`2gD@!rd#_iCjUv1w`
zf*@0m*L^dX7-TR4lF9d4aTNvtGVd#ur38b39=g5d+a)%sJf4`2)K)>FQCV$6s4wCi
zdfNsY`ruA`7#af#5K3aY+vk66v=$F|V_zLmqHu$Z<yWt_;d6qmOe_;umYd3SF}A*B
z<8Sq*ykYsOj2r4bc%AVF=Gz~%1#1{7ONqiPf?eUCwx!0~RJ&QF<fZ>qOHq!Kw{JJv
zxxpyflLQ(G9BflE*w3HalcT*WhfMG`6d^NHB2W2ewgFoj^GUgrm=xFUTsgv&Dw@_L
z_BX{GF#B;Rp+G@AOA$i>=t$XXj;HtsD-X3U29~nnon>+r0QJdwE4eT1YG=G>T88Ll
z^l#f1?6BFRODlO!P(la3Br=S!dgkbzSDd}W5RNd+spZVcb_hj3kRosw>xFfKy0Eu0
z)T>WeyIgPSR9UC`3SMIUr01>iH?YEQSXVrHSV;8*4g8Yg5Yi+%y=T)BRy$=*VFzV9
zCq8T&5ldtiFXj>LK!Jl{e98iQ`VikuS8Rg_uEQ`^dtKW<|FI7Nvx;GG&Czf?$!_i2
z_DZe)9`B&sjvh58EDDCsLw>W*75`3HD<S5^WS7avEy#CRYxz?g@)T6XPA%I7k^h)n
zb*MkRVN+#R3(xPCP|{i3x$iZ*kAec6RzLC>cGlaLQ~HZnt$jc|YH{=UXsB5(9)J1<
z8=|TORD>w0h=)sI-Ubc}zOtMmZ|Q`c66u9=W2mlw*k=J3yX(2(P~%#L(`z@|vPu5?
zp7EN{X&FL+X200#iT+(eaw07fNZ=_E%_H23UzL1jdsEMrb#yAmV!(H){#2c5w5KU%
z!S}w!lrkcgZ;Tvq9-1iYK;+uhHcr_<MCY>S#F@zHG3y_DKUnVjR})30NJy?eTS)%c
zx{Pu_^{FIe)ver8t5V*wyD=96K!VV*dhRT%<MiO*4fb`o@;vT>zYT*mHy~4S`KK?o
zbWV#kfHI236vjqc|3Orsqh$`ZUSb%LMcfi_&^=ZN-tqJ990cL&PLzautC!olU=qhl
z0qzGs32qWr{m7oN_M~ipmrDKA({|*c_;^R|A6u_H6ghJ0!edYZFJcJxZhwC6^ZjDC
zs=N#7a_%VcYcu0V>%5<TL~ZptIOr~{`@2<^_8<T5G9en^7?;QcY1cb<oY%gq>?a}y
z7?H9quHY-;YuDiU8|>Al-rk?+^|;o=E#h3>S!NHl^``m6<RpwF$!-ez^^n*D=50MI
zF`&t3?P}>szuJoj`u7}(r~r(yII@awtbniymO<5yaKZBHMhMcx^<vw6&$`HX&SRE%
zV5!t0VaoGjr*E?q*_1jEN{1I*ukd+ggl6yAp7<W<F;GGM4&?R<xLtQ->{}v4XpmD!
zsl>YC$&t_Y^Nd^uBA&zjn4U-6;S*bPlrO9w&=F1`3sZ>VPpiYbz^^$fTu)GNgf15#
zt9j8O^w|0IV4<8Ms%Wk2{re)j`$X^BCm#;S0s>Jwb%9mN%@cogj0l0+(qXhoysr4n
zT9TthTVHJIL8<i=+>T$`bvS!y=mOt|5o5G)x#XRtwl*AoXOj2izGHP@-@?!A3^MCA
z60Z&rKv7pVhCRulee@O^8JZ~U6}JWKM(JGSDxGf!pXc2>lSCiS5Dk^OA6sg7{nwk2
z|6QAhxgk2ZLY(3SX}2u5<bb|Zli*fB9JnoPZ>{wXh_7%zI_MMytLvBBKDY*0ZBL|(
zfEVs$({8x1h4bx~<NYu>w0JEm;>`+p@-F_OqGFelBawY#u|0hpA{!Jh>Nfsof3qjV
ziMUN%4LL`{361^8-irEn6gxjQrrLjnWgp2$-oFwe#KRhRlf4QY_CmFv9ccYA4DyRy
z<a*HCd29hspvg>0z#zo+oFnX6u_|08@bLVC>h(lL)989v*AwiZlYNRHw^oThu_!;C
zuMV*VGDs?+5e_0DPsS$c>{tRg+2#A%$DhZ4kR*Evrap)6wax6okHVa#1bxVOUNed*
zMI%<7V2_Z_$*5t<o#~K7z*F~F1e}r++>hkQ$7flUV5nR;9>Vn+S#GCp_$xYOZG3#>
z5*Yv$$VuThl5&5KKD^%BlmHf9XXE5~ix<g;T8ylF<Cf@0*ufcB^?Jc=H-!|kNx$VD
znR4@=Q8(fymMI-a#w0|q5FDz(1cY1viC*_b7_6>P2}Ee+9&&r=9v&6SED%WqK&*%o
ze5k~PzWZDB!?(RtuD?kk4&AP}%-a<?cJr3#L|KmLOL&G0|EV3MSymin`)~3F=|L*r
z%M)+uZZy1mQ*>iEu5)-*OD8ORjT~pm0f|(}g=`O%d?g9R3Bw`jc1So2)GhL{bgs-^
za-f~J#wR%^f3%bz-syvm9p1w}{nI}W@N%D+<=owM!_ju;R{stU3psZ#DuJVH_2I*<
zSSFm{s>`P`jb3)8jm2Htg4_^q^H=LV%}{tNQ{iU^TYZ=f=R!$%xr#_UY7L%a8$`7@
zy?pZcblD-zJTyT?m(9^9zxDCDRN%*|<#`nc_tzVvf1;HNoV&mHr$AA;c^LvK_P@{n
zsSXRtM^5u!ImJ#D<B<UugI5XN@SBjLOj#{(ZqGwv+h2k$`vWs>kHZMX!<}Fy@jK*M
zOKmSbIQ9<C8h%7Lz394VH{pB#iFE*ae3th%{=CKiX28=!F)64moLgF?#o@76WrB9*
z6puoUr@ss2TbsuQqXp88yo=NmJl(J_x!>-I#NKKQjgrJggVK{F4rTmpUx3Ko3z)`-
zl`%~Q4BW1`*PFyX=H7+ec|^hB+K5Lma2w$6ueXVfl?AJVcB!hxB-&7W2Go5wEjB{-
ze`p^fH8Cj4qNm4}^w=Z<5&7O3hXHDUI$%YLT#+1`jhO*rNqoP5mvIh^nrC<AaTsDK
z6+CeQ|7UGu|FK*-<`HrV_2^}sZ63bWUJvZbeVFkdf3(ex2tQVYmi%Bmi_+-Kfh+xN
zqumqOlGN)sk*~?80Fbn8k#f#_$~L<sFwdS!0dyaswktltX`iu{3ODcxo{dKjkb{GF
zZOLbu7>mu*af<^GA|4P)2B`K5lDWrX-5{K_Vt_^K^!miKDL?grlVeL{UsumW@<4dK
zx5aU>!Jm3dwx0Ba*|;yI|8cRE#8Cs0eq5g*02e4sMxv2)^|3$N-);N{o>CX$wqS#R
z;7}f1Iz6yCT`<vb_;aBG(ZObZu<6LywQ;+*BHtY8<BqY@KCwS=Z-GeN^UE7c;!uP5
z!(Iyxh~;hbHf)J{L_^5O_w)CN9Un(o1w#j{)Iuig8$0Eb_+VH{eI9sQsPpjT{;?U0
z!)Sg4k{w``kWon<m{WIH+0NM*Q`<oOgLJznQ@z7R>KbuI_<j}f6LJqY3vSWy_ObOZ
zdTVFZBEcl0N|lk^V`B}g{Bv%dLVyzJy`V#EjR4X?Bs*@EcePFCd$;=p$S(faUd{^G
z3s%&&3z1<wP(Wo#&PDv`pw%`!=09=GyRNLpA4ftkV^5>LwbtQOyTR~_Fg(X`de(Nk
zGR=Dh;oD;(LYN~NXc9C)%QqI<!vSkaSOM{QH&51f8rkuVC3eidVP0M~lGFk&b3;>>
z+8)RFcWNX8MhQ!P2M$0_Vl)8Qx3UnSE=%|P=hI`qEpq^=j5WxkdroDGdC}OX$o;}!
zf-&?x-QOy{D=GH)F9D#`2Zu=#s0+dI)W$Vgu?eyxC!WQ{(5^fXe~0|?SZq`iAJ6v-
zF=Dekai;?j1DV_^Hcf(nwDF`)dV*avLHmjQYGV>=N)Q|4brA6mgvY=?*lH)H`;HZ?
z=E^2J21N5W+w+I|y^!rATu<&h7~JMJJ2)u+-Jw3U4dKevRoC$ZD#yxoJFU_3Qt7Lx
zZ=Rzd{j5?2BFU3ywI$u{(~G<@uej7-73Y>A1E$*Wi&+TDt+-${IWWS_v2*N&zdSpK
z0RED?crL2AWBx+hE5fc5$*`1q7V#n3hel$E*L)JsRg}*oks!12OPkZ(JLM7+i3CQ@
zDS$#{Z?vr&y+dE}wW(vqKw9m&Yi<88j*<;B9!v`(879+Gh;$`70bJW!W&b?qroim#
z0yj2_Fj6h?MPi79fe<|nOQ4&AT3ZWj<36H7NQK)NHASW}uCRxnr72;juBPTaF{@y$
zn-%_^U}Lae(o;TXRm0kKngnBV-oMn^rSb>JWr_l!=Z`#^l+|22%f^iMraY-shyj`D
zUR!LuO%66kY2eZuB@8ejC;h?2ZnR_v?#9p=Vy*}C4~*LHcrln~fIo*uR3vfe#7WfI
zLK&~qf?bI7fPke5onE@bzCDhXge6@C1LKa0Q4_6~{40qj&q4yz81K>v_P2;-qN!Y7
zpHQ3*TO@Y0U>;GXEI*!TC(iL7Q|K9C0Gb<*^<yx0v&$(ij8;i3DH=|ihL=`x-Re=A
z!fPx)7udpg8A>VJ)vEFWJYZV8f{B$CjbjRl$Md2i_uIMvTr@vCh{UkEA85cNTU_Jg
zD1)n<dall|2H#<whxzAhl24^_O5GszSN2+Za*`*Fx63PiGud8gPgkUExjWTZ7599A
zu$OC0$SXgeJ;|ys@)6^u(&S)w{4ELY1dgyC0vhbhv03)$l<;d*{-BNu9l-Y~({27u
z-V~G;IUHr+XW<}dyBqEGI$GsCWA|9eJr()9Gp*Aj{uy+r$manDg=a{yDcZ*(&-)#K
zwZvJcSH{`9zqP&58@f<AQ+EKBi~M<&U<_QbJqXRl23p-^{=497S9t&_BM0Q!wYYRZ
zO@E@h5N_zQEv@w0m0KTnfq)BV3c1dTn}e4rLmabzPunBJ7$DInb*V?6RFmosU){&r
z#AhI|Pm3c^D8E|oCB)Zob1&<Bm#;xi<U04Ch|yD;jsB$lzl~>~6$;%F-XF#W6)D-U
zqTbu`#5YQKx{6*IpxDN9tV?J?cC3KJhZhqTpKd3Wdk3t{dUIY4s%SR8n>~DqH*~_A
zfz5~CGeN6v_F(W^<j9+>U(3e1tgB^(&w1$CjE>KOU(Y|?Zo1G1fhzI<xxddLZcf;m
z7AD_Ls~r0>9DP>^vA@UzLd<Mw@4xORj}r&*kgJuYi<`T@UCLc#^JF^3eL5aY{?=*s
zSXeJNiv$}8Z3iz1v?$wt7#G%niPi5WD1n2<B??lnS^ng%)*}3-OFh116`2s#DHv>X
zr-!b3yfyIRcB(1_M95zEibzLYWUat?A&f#5eN9qx3n-neLJ97-tSGW;Zt)-W#HS<K
zjLvNH$zits8vmXR0TO%&<{^0+J_YS|>qF`wdj#JX<6~!$57C#WK-!xxu!`HfB_QL7
zcvybn?*O;Gdxyps8?TkAbFWHxZ9CQB)8Z(`5h`keHW1N$2itLBc^(B7ynw8b<GE|7
z%?#KYCLt(yG#p~5$DYC%95m%PUI+jLV`Vtu`4ueRgYCK9i3g7@C-Wk9An=rYL@0J~
zQLYr|fVMQ#YH{R3iO?HDR8k_#0AWi%;#j)eW6ywW5Q|(?507mTsXG5y+i<IY&Ot%f
ztyR>EZp=kTSU;eEH$ut&$ZWFaQ?i}|nDdmKFDn+cru8g_pNz+0{rsri6B<a=slmJn
zAuS{ZSnu%q4+cDBSA`$A9HS&N9#3Sph8JxO0*?DixP!yuK@;J@&&S`iBPDy{7@>Bl
z0t7t6qV6qw{cm4kJPJ>8IMI86Anq?2_^w6&Vs~)BUARb_WSR5dv(gsvO)w^uf|YQG
z>t3+Z9X@KdgCoRZ|Nn-?o1x0g*c_?B3D;0jC%~O7=JfuXb|Rtq{6rhY_^&E)3i(cn
zls;swF`3guUMP<a!ET7W#&!Z>pfhJR^ci~!-&p7@({XrBbLdlc9yNvp2FVQZcdR8p
zC=^_!R+`VSj5GZgeJTMzUxiU$PPaj)_*c~!rSKo85-hp;0rPz`!yfGBKR}0|Fr0Sb
z66?BIHl%Bqk%Ws7P!nc4aH?I6qQ+W~RQ1kNijsi(&9ZWeH}Q2Bzk;O)^I+YW#DYGb
zX7{G>Gavw+@6P)*dXNDuD7xEb_SmgI_l7cI9_3zfuU#OU5gsJrQvf(ymjP1U74-kc
zG+WWve-oz9#{$8#(;hr<!erZ|J-Rg<4x+n=wc10e^%L&Vr&F!3gkFBKt3k5NH8ZS_
z92wNG4@m(#vor|8m4F6Jz?_)`z5^{hf!Y>?4Wtk(!|2aV^Vhw!0XH{r6yC(Kojb$w
z<PH=@0Oov(3P9+cbborYogSv%9fN^3+wDBjdH_a(#kF2lv=6xge_d@u&?0u`6gY{~
z-56b550N9pgQLO)Jut)P?BqDeTB)Ju2Hfzj?1Fo32+k-Lg{)ttyYHgo*E8*^@VN(4
zf(sGAzr6>gRnD>fCV7_t{~`}ZP+&($dB^JqG;ey&+UQpZ&WK@>=YqSm?e%t}Ooj;e
zFiDsf#p(f0|LNATsei^-$_pS8vn$IH4rzvn9&nAlc5oOC^-dTj*X!!Zwoe$#rAwJ1
z1OR0Wprr#okgeHuwx`?^<S)SC;;tBit^GVDCI51hO_$O|-T*d;@a{a<4vI$&7vV*l
zcWju%!hew$se_bVlGH`;6&rZ`GwUY#GQ2d0rYM9>a}{I#Vw-w_H&JU+0-?VU+IX{V
zI4=wf9_2w*gkza>LC?C?cu7Ko^^ry#76nKYgrZe3-<5CJ<&r1kNps>`M7$<a4M+%9
z#W^>Py}8IX1_gnVEFq}?H=V!P-N9d#KKw=7C!e7xaz#~OK_<mx=|8>1ejOU0LaChE
zkEXtLz6~XCNC0UIRV*ipjTi;x>w&JtH(9h_ys?xe7qxXQopc=<_qx_P_whz}A;b;7
z1uz)$!<*~|q#=gHMd88bs4xKHl3Ofw5M(+YImY%HN6VzHV-}O(0{L@Mu_+e&z<;N#
zR!j@-P;K^zP5(N4m8c4Ug;&yliTGsn+n3v^A=(fL&*3Z>b2~JyKU#U}3--w!2nh*8
zeIl?(^M`0HSH5dMvn0d~1s=+j>PCM8zCrqsmGIMj_RNgXPGF+&kQIoSEM0DG5NGMw
zop?2Zsrd}LH)*ttXZ$l|{7dSjtte)ZC9iwmRuN)H2Lg0MZY6txtbM)ApZ%giYLDMo
zsm#C_8N7-Sv}b<T@^c&dk`Dmsf~N!{ZK}ub7EQJ133p<Q&ZU*2x9+T{nQ4y^mc-X^
z-xD>A2)p-l=T{tUzsYvn6aK4Q940axh2Z+b=2_9q_<W5@{zF{$wAu@2+wq}+ohS-1
z)hm3>dB|D<@tw1=LZV3Hje9+4hX-&4#aWyfxB#)s7uovn!t?~|iTCY_eH5v<@pT)&
z+}n3$lQ<TMud`GczoyQyHy`9Ts=Nu?$R~WONG}t3y_ydXv$`c<s1lnbSaEzDN0*K^
z7gosEZ178wRPM#X+!l9pqu-Icb(}RT@L!2#I28F8aTm=esk0KRlX|iWPzieU_>oqN
z-Bd|D(x`=Llt5#2R^pXuCT_E55FI_sN7m60Yg@qML{M4%NZQVGf7#gz?#sfFI;sxn
zhSEllZ?*+R{yDpLxD3M(*W}1ojrM}9Ci2B4c?kxlYe({)vO%!0sWxNe*!7lvmj5WA
z0a_|Wqp10fSPs&I>ne#x0L{0yzjUy~mC-B5JR0YswfL%+F7b*u+Z%09sR#0uB_vwk
zZlJ!b4ZPapTU&Q^_>pu7$^lB%7s^qEVzoU7;nKSGI;4`?LVcr_-`lCZIZ4lBt>X6?
z?qk~PS9_Q6Ox=;{QYE)Sgc4C3h!4=AdsbVk4>{$8XcI(wEEKwX4HwvH^Su$zUbQN;
zq`2YhwgNkX3j+NF34}RuWrudpxjwhVPLoiM<c@ze@o~7#A$Ux>Q6kSu3K0m<Dc6=?
zAASxKA-@Z)h9qQKHq=>@gbGkb>2~MiDH+0=v<iDIPQ#Hzxz(75JXiSHF?J{OFuCx}
zoqZ|(a`7W0Y&eImRT2H{a|m&6t+Hsall0`ef=+%b+gI3qVpf<m6fA?bA-p;BUTa$G
zUw0E*@K%#7A_JQ;gV7Xkvyv+RQI|2n-IL)^n|iG^51qXj2ohd6k19WX1@@344Ak$x
z#SRNmd_Yfhg3p}Pdw1IKuwiwl=ndC|s{;SR0*^8TOisGemVoRmdH}>-z!F{Xgb;Y6
z%Zt=EIh$x#&Kqh7b^!)T0f6ljtL#Cj6AfO4S`ol97(zgkF0+ZRdrP<n<@wwsInO+U
zdUln44=13XU+Q|9s~p@`Zcjbr4cVA$La~BM#VTUXWUUjgw#LVI8#N(RDU?}JN8<U^
zJQ-_;zwE#2*@*lINx%$8?}8ib$yfb5uUQweS>!5OSZ#|NY?Az961SvI=)2^tJ0{qz
zaa>NQ=H7(NSbnKB%J0F}75BWe%ZFE3{(JtNtqG#Vp>RK7VF|yDv6n?3F_clqS!6zB
zef7S}&YtSu&k>8&&L!H7!d51u1<~c#jPyZu0HBT#*NZfKJ~Hv>bT6go<ENlOq<pV|
zyuB7?!UN=(>yIG*QygBn^yBteEz|-ma^TS1O1pKEcL|RI$WkY`?OT+H5G9wbsF5=c
z-{%&2EVVEPmlm!anaN63{#H~1?R}&j4ULOq7XB~qDZE)Y+V%}C><6R^7tYs5V6(r4
z1BCM3=H>`1LQ71B|KhAttCFM{5Vjbbp6(KjA`8{EcIf5ah#j!3M0Q1y+m+YZXhaM8
z<Vd&_hL=MDf+dBwG&#_gQ|;u-!cP!O)lp!4>IRz;#>00np)b>AfZ|(iGt>u~`fsxc
z-Z4c{k?RTeEZJ;}#`upgyi}<~8(fE(hWt!DUjN<`))2Un;C0JCwiPkXDLwLHoSEtQ
z!rohgbu7UxWczeoQVt2W?gq&Lzt~Kf(5T*<D4mw(KBeiu+m-#i0qblYGDlcm!4})b
zhWULS*8zW$Tig!$#TMX);OqP<Vll)L#bCN`ut!Co(lB!nzvRljdlRQEx3&OCqbU84
z4ip^(nF?3ip`HEvPDbcU7WsiZF&TI;?l0S#=|9TG)yj@sBGZ(BZ^kBjaJ)AXon1j5
zE%7U1<@@|;%j!dm>)}C;``5^0w%KJF{u2>hWFyIT+$Cst{de|K*mn=`Bc!N2_qpwl
zuYp~J)y5O!$UBq#iuF)YOI}Rzjg?j(_C*DpVkOJcprFrf>+I_;K7`Z4Iv&AA+z-H5
zMzvtYe0vm4Pa@Vz%jAs-MdRxJu**YZj^Aw$HT3FB)xTSt?A=yXg;?O%LB$KHeurp0
zr_lzS?mr>+o>d}?1ZWJGiIE=(;il~y+nVY>!UxA0p^mX_Zp&4TX0my5cuFdDQAhM}
z+&4BGOq82Ub}&g#NC9wJ4~18}HT99@)){z|wHkuVre_jhs1Sh&Ndz3;eSg?#Z}a3(
zO5|J~jYfphy@?$Anw>w>V>D4Ee4P~e!R|t7*%h|&<`C7%%N?N(0f*zl_~)P4f2Vp|
zH)2!ck4OqbA`9%H5NC^nKe*26!94vJTI=cFqpK`JiAZh5Ce^%euiX`z5Z-wTv`jCv
zNy}LAqvbpmmOw;vB9@#kv7hao(4{lSornp~5Iuk3C%gDM?{jV$k@h8(#lsN0oX2IY
zvmG<MDYuS?)5;P7=-TZK-`Lk7qW9e5nvukHK^xM2z-GVN;4omPd<D0L_;Zg^-up+}
z=LR3JGoccR7w4#+Pqf7M_Wd2+)P+Fp;Y2peeTyZAc#$tG8k)Kj+Kh>k03@hs2uIdM
zee?zEd8hZqJh1B>L`jYv*4y2;ho<7{G4XJBk<+>FS<BnJAw;(*F<apw9GD=v;CU+u
z&D~KyaWFD5P4Ws{`I0p!_!+#wMO$7|z+)$BQV8<fuUSz*0TK@Blqgf75l?;I4!Fg;
z5s6ephPh^9ci+#mL&HJ$B_j}`SvXSr2E>1TWk-b3vRMM|r~r=sU)W!vLyt0Egd!0F
zXNDF4GS_}$_l6VeR!P<S__7`L{Tl7}>wW%C<dXqmyvvLzD!&Um269y($Jj(l%hkw`
zW7gXAfbd;K&*fRy%4tat4^T>rBvOIPBW)bercblgUj*q}el&aqYJhB&-D%mYyrCyT
z8njfgenCGTxzrw;=}izjY-adwdFml(vl7O}tg;oe{F>)bu$1k3r0@}++O-H_tU&sf
zY(s>_D}fHAxcYh9_-I%KHV}Q4{eg<Qw?FA$=T|BAH(s@b$<REdHn)A!X5Z&Oz<9co
zod0iUMf8*xD<Favj_RK0>{DEEEW~|INU16?io(pnC*N<^&-FGW1rO;>lsFK_%(>b2
zg38ddkDDe?k3Elj{6p3Pc}`mkvIP|pfO(%AZ8_4VKG!MFoO@8dT7D!Kb2>j_H_r*J
zZXhq`0dSV$#uMgRagWWK=gmD=OSor!0E%?|{oe4eq@~K56;=)`hCFQfuX#&gDTPWD
z<K*b5r8i8qvF~_ur^+9pQBu)mpl-L=)_k^Gw_S>%%B5h~bXbEAEnc?ycgF{Sb_bgs
zS<1d*cM8v%X^R6|Ncfk$!;TfA0l7gY_N%%Jbrj6Vkp*kA8}0NktcUk6T4P=Dq5?NL
zpRf-}<qqkVUgw%Rp^dM`*UXdDVi@d3Y#{X=n~5|`Pl;m<(u4teRiy(WlzF)3R(mJd
z94NCy*aMz?QV)2u<9%xyx{6o0p`Iu>;abT3=Q-R9gY{=n19opVCIJAwR~Z`k6oKWk
zJFMpnpS?#SwMl0U^vB+6D+6e74oHg%pRbr^&jtixqZ}u-uKiLz{jv3!?E`^@L^Zmf
z7L*48=00GJ6TPVyjEg(2b7beOKeAJh^o48w1eDB71^GZ&KLM=#<iJJtH+o7OtP-Go
z2f@@Ld+z;D+DT#BfI?-Su8-`h{262-0fYO>PTRg>H4pnx+0IuJYFr7$;5>Ua<nk{1
zz}5v=vyVDO9kD+qYO~f}2qrDQvqFdV?tM9rb|2UsU-}eYVoryQh9cQrC#HM6_nTI`
z)_<Ym2Jw~6m}jd3N$5A6EDpDudWqgekK0eW04iswnCSWl<^#4edcBn|LiR|AVnup0
z9kEAN2$jVVISMbe%<E!r5~Ia0sXc|{i33Sye^LKEudoXTgeG_%J96V-=(e$oy}_%*
zbjx;cs1FAami4g1PxkK=&2<y7x3Hx83*Bj?9u;JE6*{X!`sEC-xyb%e85@LdZa)@z
zsv3>P*`e%>$oYNk0Q?GCpx&>=;~?V;?~?$|yYlQ=awWViWN_)7_O!If)=TXJjQBLf
zMNtg6BD6#xH0Z&2)^qg;8{OM~;_+u3gJKBe%z*CvcBKtH*Bb{2*Pt09I<!Fm+uUHk
zbPki^HwB4`F-yxA%bN9+HtGU<>U){xgb~6Dyv7~m3lMwh=hRF&K7Sr*S9RQNory>W
z@SOM_42JASxHZ4hURD(5zkxtj25sYTt)J&@-O32X^ph1jAKu%3ZM&<F7#b9X-QnOZ
zveS}66Z$pho-erZj(g8yn-=<X<zCbTT+mINdYzRk2}v4?LV?q>B(68V!Y(>4{*@OE
zA<o39>;Bc&RjZ<eUKC;_11_=qm1}^a#}jBWFH)kPm1mE(FaPV`2UIHf7FUuNjazb|
zok6k#zwaq%>9eT)$Kc$l{y7d(dD=PCLcotVK?jr}@u+1N8ydPR;sY}bE1?L4j3beW
zB{m*_Bdn7V@2_vlhU4jw8-BBGqJ?hB!=@_xPo{!q?)lO7f7h=hsh}*=Lwab_D_n&?
z*dl_V=_Iv~t<^xCA$o#E5n{aVQQk)LP+}Z)+WpR?rYtWFV4H2)=Zp}HV~+D#o<slX
z@Am$SJ}q)UB37T&IN+ZDqdgbcXy4+BkkL#7gfzC!W(S7Y+w1m-gt1b+4YmA7oB4td
zht=Non|PxHrXzo`Hq3<zk_}muVw#nvtv~v^l?2Z0>Z6|>8)s9)R@=nDS+JF%#O>S_
z_D>da>T2^ybq6Mxhu$M_N&tH7XZwqu%!M_c<pBn+^0$B3?U;g`)K@rbVA+ygez7wN
zzT<m8o&kiw1qdAblZ^=wkfJ!ekxV+^O&d#F^lc)epHgH<izF&bM(0i21K(m^iU{xs
zar`MP@}Wg9zdhBihdC>lA%Ao!4kiyCp4`s*!{GSZ2Mc{*{7QO*OFH|~>XXT{BOqoE
zTM6#)%N&x=xo7EKw&yR(2aNI06lZ`y^I6m-Wj|{s8<Bo3*kEjwy~p1?`#s&}BD&C)
zO%|7ANw3MW;SBpAOn?l)(_U^sNjt;tzZa1-5m3lOe?-i={Tng4T%k80%fNISEIZ*&
zr;1{`&@n?TgO>Z*K;XNpwGsM{-HwC0eJ|^OOK2ka2m_acYGjseTjyVOe7<hE{5y2A
zVTjy})0r~sZj0iT21fa_o89+V7zI<2-skmAi8b?lY6nnq=iCy!@Q}E0(W{4bLrkU(
znGnYm;)ur-zuwZeB4F~J3)hu*4HT;+N7jhL?Q5iM8pxNS>>P9(6Ki-u_m{4A1+o=w
zL`O=PMe;;^pi-jQb5p!Q@n?#qqCqBsc_-R8(?btD3Am-P)`GnFa8vBrJH0`<S^!Zx
z-qr)`#;3hnKyF>Iw~}rtJ`2orjk<TVb7A{hG!_M3@>GK;;0Nd0<==tbp=c#iA#WH_
zdnqzyy?r7%p}nx4m?U<u*xSh5ckRzJ{kv2Rx4b#M6_es8I<;<}*@5Z)lRzcQaWw~-
zhzM=c{MeyamrnZ3e!?!IDZDmwc-EuwZ5x{8U$g7L*kaNWv{3wnRKjZG4KQ|cs1T_Y
z!^<8fyk|@Q4zaa}zIrUEUJqO-)}J>7mf9D4c(*)xV?ufRdp@*s{5w8%z6@IYSUhw6
z7gpZVzjv;4!w*wK8ZKCF%|h_5YW^2DR2H@!?(w_rBmb<n6IX{oU@#smK{N1LuBU%(
z6Hf)=SeChWZ~^(0!^6eh2V3n+G;wPbw5aG|Ot(yb-etB-x0Rv;Dg-D$h1bwKtiW;=
z8;7k_tWr@m9+f#|qWgqofG;LZ8b`mYAervQII+&E5u54cN}&WiTm>9$&pYjei)fJ9
zezfG^5Xu^2eXy8=E^WqHJuYT`5{{5c2C6u&TgA;)p<nU$3ntlC#8vIX;a-Em$5r4A
zIahuhWmg5Ciyjuk+zoEw+F|tj3vKho-mhy}BSv!ZYutX)g#XuF69&dufbfKTLq%-R
zC&g_n6UwaV1-oXak+?0-48s$}!GBU}+lM=CLZ(wFK%t(Rhpj^BT;}gT+!_Y?0O;Fs
z;HilN|K<`)!nVuK2!{#>;g37@DzWDI;71%Tp%zA{9r@w?cEz9GrBfr;CHFDug55ee
zVf1$;mfNoq9b$Qe+aCD|JrH`hAx<r%UJ$~A=B(?4Z-9LqlyA+%t-SOzkKF&;mjKh|
zVF-r_2=q>g%?&Vjz{%Xs6V$4O>(6XHah<gy%99y;Rk{k3a5L;b$UcC4Fh>r@L@+91
zP4HiZ_~Xn6Y}R<%y>1$LMWgEE!ji0rbzgRa6cL%fkFY7C<UmJ!RUkl+z)O0ut@+4D
zpI-}xvRWKce1HFbOVw)mJ?vn(|6auGqXKLHLaQ>$W8x_mr6kIxedNEl+k%r?mjMyD
zCvt94Wm4z1`FPp6)EOAPBUj|x;#2(xvSPMX!n}S_HY}gt>Nj)+=6_r3vg9ninMa5x
zi33#5%%GTmWaatx>Y}5|n5i3vV#SP*#Ygqaw8&oNwte2w>eN@UB*a-2Qa+Q+GG39m
zz#`k|<cNYTn5DK)i&Rauf7-OxSBQE(3D&TPEOJgF_s+76G@rg7UULTVMFF3KzVz|4
zfm%sr5<%WL;RrA!x+wByr4=vmb>&I8qkuojBm~t(j_zw`JbJVMLf`~;Gb;4MJIIKR
zJU7-Z>cce1d-<ReE$p8>)s)B{m)TjP9Y%8N7B@6FV8Hk;7ufO>=t3^JN(!q7g?wq4
zcxQCfJ2X(KypC7^$>~(fkMup=&e|{RgjgIFP4S!pxR<<lnOSL(nbmgsD)vM`A(;dm
zL}?P4iChf*gtb72#*VQw3xN_*J*YlK0Evow9Wo=WPKf^TGDEA7WHp47l~A7`EArFm
z=u`V1Q%2?x=bO|M<g3Ioo}88$`QtcSaw0vbx}aUj9EqeuJ{0lYUq)xnVG_w66-m6M
zi(|Mlf{?~AWA2KsIsF)|5diWm0t>^Gl@_V2u;Dj5kf5AO*DbEr`uiytiR!Gd90q=?
z!g^omKO+CCC~OdXVhob=lOsJw*-z)QBo%3{s05SHGqWO#&#(uU`jPcPxdM}%Ymyt(
zA@W$YHDx@|Pr_k!eiGyY>4y6MI)&jqtm=z^f*36;@r8iBY!a?P>s~cBX?tkJI0@oV
zqXyH`D68A#UkPDH*Wf$kzkTH5TKjIjf2T$%L!@SArbm`n+ke*iN9z67R`MOO58OX|
zsNH##??dpz<62w+&OrUaft!+T`(KXyz37mX>jqE&kj1-Mk>-=_-7LQY4tPj7v|DYd
znUPng+o}N!N<MZeH?WpPaGNqB1P|=^fdRqW$_A<ealXW3bcjU$YZ(VPtP@v1eh5jG
zR*~xi1(cwW-p+foqRjqU==TO^A*kypSj+`N@*#sO@=8Z*dcU_jV)Hp!SP8E^^uF*}
zYp(U5cW56u{Ty5Qhy$prq7eWl&XAPI)C;U=qn~JwG^dJEa<2RqVn4suo;k-CCn|ue
zsFo^<l}TNSk|@VeTdF-1JG=BEyY+A1bN~33{nj6Ol4Z7}GeKg0eRb=SBbVjaU5EQu
zDIIz`n+S2;5ah1*DUrHf);ABBV^W2B$rZ%w3CZcHk&eymr^z(9mB!Pc=>z6;NR4D}
zi#DmFiRukp0T?I}rLd>}r06A|vtL;YOL^K8p^&R_a&ffm4;GM0tq1fSgs=!YQfgXc
zdPTIB%Sl65NeS#T<WrP!dnve`8fh{i`qU5JQ|4jv92C$D+0D&~uK1Gqi4?6XEi7~@
zM&K=TwK~<>aI0xSNvWzVDHX-0xPU0!0Y}>lXE9m_a(xR6^RbE!({(_iW-U|SjlOp$
zjg-}aMkFB-J2`VyYCk8Mz0^DAunft;>Vt~?Mzr&7KAC6R@*bpcuR})UnUihcK6H?<
zrr74nq+Z2kNjas6OMsBRnUS`?MqBr%ue2%THZ@=_;5>f0Kf3xDD3-k7SVhDfQX`9R
zvrRf#u^{X<4A=)xEEh=EfNmL)A*1Y`-yH=9K#HBFIsu&7VDG-`D5x+RcO2k8OpQD?
z((Zr>F=7vuPLnYOC6B4duZk0CV4!88g`$r=T4Sx3^Lu3$<Jl=KEX5C~Gr#kh=)`Ay
zX}wi&l%+xTa=kRS6C3ANl#6@)qp%9dEN`)jPXYBQ_0|*q$trU4!DQH2r)tWP=vi6_
z9MODrmZ$qD*{LF_TPZu{VI^H7%22OZ5}h+E+;A!oNEU+o;=^p;UYu!EH(wO5vOwBP
zd>fFaXRGbMD;Y407-o1qvW(AjSD9^o$e~9)eaFKJ$TBt@-R};Ox&nLQZf~Y^c2Q|L
zwj`#)7@e6GIcThX^AcMS-(+p9z!_DudYe${i-Tz@tWW3!nFlkQH`pnG3*_WO$3Q{s
z(y8f@PfP6No-CTY^2!otz)5|Wt*TCcz-Dv|D@WURSNX;eb5M1-Dgja#R@+DO9g+ws
zuFC4@(la5svkNW%dtZGvGBx@0kS8bhdknHS=6Hh>8|NFK2Egn0rVrIqDd7%oF8#<s
zcEeVuT76YVg}67i!&9#ZTxK6#045^?dHj?MI++-?BC{&312PaT{Yu$`E0E;srAPM5
zvnJ2@42rsTq8*r0PK`YYcW^uxWg~mX@jESYK&^G$5*C%80A~=VAij%!V-{Ee!X++W
zmzz=}U*BejoW{C{+RZN|iV*xr%0u*2tx3R1E<YUiO1r+TgOdUmqAv(nY3(Bu@~rRI
z@yXCb0wno<^~JVnt$!zsRbQR#A|LJ#l0tR^`GP}pJ33^D)Gt5IS|C+{%Hq(qxZnVr
zOM$%3@{*P(uz3M@P>lmVY^c@Ea+r0hu4~}R3I!1zNZ2{&CMJ=sOQ`O$8P)VATKh{J
zXLb`uz@<~GZ1ohMmx4s>IU#`@Sz#M{F)Q*=C5wbGa<`_&?DNhHqG~f0L@w3l2l0=j
zRjAxo&qW`5+^6UyDos5;pFATg^7Ck$T+Uz$spYvMC>RKl8oA-EXwAobrbG`~EcK6_
z1pN7WbUwlYUr9h#q?LFE3gPWnNB{W5zsKbhS*LXOpT9DC{bFyBH9H@RK)hk~716HC
zLIW27lTjsuMZO;sUHY+q?S+N`rA5Vvw74vKJ`4$QF&8!~wgV`S9u#egtjI_40lf@_
z$V3x!-rXs>dXX=^H!?7^8Yw?D^3jvgExKEZb)#N(E&L8ak)I#7F4{O3(73*i{-)31
z+iBlM8}8<_v}mMkojG}jpj+kI=q88)01Ki=wNPL5GEg^=m$DVk2awP2k1jX(fd4kQ
z0$l{ni2QeI^!iL%6xojBE-9NJ735$_N~K4NdPeVA?njA!s7n_|_i&VH&qtfjrWJ;(
zwhA&fi}f2=xU*b<b6HKa?PmW;7+k}Mk%NViON*m(cd&frLg3KEk|H4VOR}qw_9Q1D
zUsP%&)tZS6-xNLVB1Y1~2(VjZi%MMM6rqYV`7)Y+*RB>AaV_CALQ=tx(2B-rf58tW
zH*5hI#+y=qiKaZb3xcXmS4MRjY(98Wgn=M*W~A(~=-wwFSg1w?#(e~1cX5i@`z1T_
ziD>5Sz7g0%73>c*Ksuuo0z9eVcsnkM*|Q@3uuvrEE8_C!?}Gzk%g)kuq#5avRZF8o
z%lNgcZSEa{i36*pzeGn>@*QICbu}uJ`YU=5(GdQ?9_Ng=8!q!%$Q*L*Nu<u{$^1*L
z8Oj?AI0rTZPbBs(ski>8AD|IVtFq69>g^>vsGyjzh<b)%o0+_z5c#gun!n*A<N;Pe
zFOb(~YHi96|DH|Wx|3Fx(x=Xv2ASV4cx`E+x1b}es<6JB{r3o}Xlc$h?ya|DgXG}%
z($!^UwkZoc^3Nr9&#x>^Rwr3BT(D1xthwICq_ErFHJh~EG@D#3qHz|PA?1Wn#r$vv
zeFzkX%SjOwd3ITZcdI0eFbUg39fcr8-nib%k8y&>>oTt8ql2+=h%H<Es>XVz`uvjM
zig)TsNSSGoOHZ?-5s?6ACwUR1-%8rYQFMmAGK1~=MN8^NG}!-R?7ZWns?xZB>;>$g
zKoI8MGl;83Nlz5f1TaAeAfehP$&iGUiIWV0*t=`l)wQ=>>)IPu)`E3iJ1&;BB8m#D
z=qeZ+>ihjYcLM0{`+nZPAm_}z_tdBSp2l@%5GIm6dQiCfb6Xn_G1RpfDSc%HwoQV{
zEuCivhRb58fr*nyhlpxdjtE~uGhu&~cPAACpTi$`ZbCOPdjytrhsQi`FBf=6+>k9V
z`8^Rfdet+z4z*>32uSP7QygXIb{uL}1#=Ioy?7k-`;arkZTGdgi^|mCo-D<(m}|Iy
zc(j&LCJk;N(gg2{?)0@mIA)i1LqrcTc?ZOV*Ub#~`N&oaZkKF|aeT9Q2-IWyY2hE2
zSm)%VY^BD%P*fkB7OuU~+Eo>aqr??qfp3@{E|1WN$%%T-V+0qwWOz;_yh%muqzI(;
zgiXfMjEFz$v~XdhiX!3zz1zK@q)mbAe?+(+tHVY{^wf4MVxPz~1%I@zLo!<EjP0@w
z0=Luak^MNE6_z>8MoqS!e0R!zCI&#`)(wxZtRG&K_smWulVQU*dzVj;f&@IF!*n8=
zpPCcA{12KHKE<v;P;k=arnK)6JRpn&Q$ebsk+M(dHahwjjSYTT&Nk}z#@v)85)|gS
zs$j2^B7qX|D=Sc<^zg&a5!goY2tLfB2PXYfuehwhz57b=;$Mx>neJzN1`!r>5Sog}
z)C;@Yp@Do&;%IYmNP{Fo%<eGux=(_lLl|QO2aC?G7s6vwu<WO{E9bo$9B?LILZ1;!
z(Wb%Um9)oba)JB#*5Cwh{0vLF$y5L;Eb=}V1e3;Ed!^j~F+?d#iFTgk7lrQjbAq$S
zK+RFjAmyZ0Cnjn{VX+&0VQ}_4jINMr<8#EQ@z~(N-~L$e-hym9Y5KVC<JyQHLz9Ma
z15ojk(U%3czrjyb3x`|-It*B27(B|d353XUa%`)Y0EQaPT3oY#bR~#iQ+x}}*jWo)
z-@U^6B=hE-8SGf%Ws>M|AZFwz4+xKybS8+DaYXCNaoVIOTGvPp=p`&rQl)$lmntL7
z&AonjFyV7v-OJ~tkAX<AILPH<_*#VWalvjc+K=$1m~E}x!=^)nJ0#+Oq-Eu6slenv
z8W0{mk^y1TAqXi|o2g@e(6x~qUOYZHViS`pjO4VCAscyFI2<Yiht{}Oc}Z~fg*>lZ
zt|pT~w6mP~fX{>dueUD7sXc6pv0YpPcs|h1xc7rUN^wEl1r1{TOih%QE%5?xWyGun
z!Mv3==&6#)w8nTF(6Oc<d}kx;0F~ipfzcZ7Aq9<7%rAD^J^T~;G4stL2*agLqN8D1
zXCJovIVd>Lx~DWjs5u7=n_xWj@IP%7juJ7JJ;G#PB$%Wv@&pVpTm;oJa-8m^2n@Oi
z3CS}0GW;Ky>5zAVuBr53n$IBi8!-aR%y+fv@EgEP24~_AsadFro5%`xcU%{YL&@i<
zYM?AcBe4}bW;f3bZwA+8)2Afr>w%yQ;N+t29ei^q-vQfUUUo@_>l~<@GRlUH@}4S#
z^jHPk9ikB>jlMcCTq)is>>wR6Su}mL+Qq4Gkcd2shPp29qflIKGc}vf58sevA5l^k
zOu`j+a=li}fhP#y(g@x96<y%65xI(61nL>W-kKR<XJ7j~8W56t1DFhyT*T+2lf%8x
zD6{;v_bWVK!;%0WskS|NeT%}ICfHaeNlZgTPH~~}J0+3@M#5s3xbx<Of4ZAhqrf&2
zx-l3kMi;sVn!_K_aGCp9<IFhGl)5K6!v4}kB+AucU=zfW=SnULA0BG-RkP_G46-@C
zY49I8cZqUjkp;dqS}dCa_YsdnW;ryx^&Vb}+LKJrMxc=okxt*}1;OZlG6=$-kVM7P
zvS+8_z2HbNAQ3P-)gV<7rjofYDAe^;c5)P2lWbw;fWZXUG~`A-a9_)LVWN5B#Bl%J
zY?Z;k(;03q2g>;M{<Fecq{~7I*pw_l0f~4z6aF~YcE3`2r%k8hu)cmq_%D$xAu{k*
z@NHyHeok)la!mp$-*^wQ5MqQF**+EF3iU)%6569~5S79Nxvj_x7uVR^NW5%!gXA7q
zo?F9nk)2pXq4gPCLr8a-OO6enxr%r7*7sr(239XfhgSerOWPo!Is-6+u%HA&LPnsw
zZpfpd%2^)G2LSiQbD<KzLYvMAAC7R^^@4L&WTqVT7KqF|5gle=L)%zJ%a)&hwXNVm
zvJdHsaK9fqH5@)C;>YsU26bSaO5EDkZ~+)TBa_=q0`Om`AbhOY6%GiC_Oulzkr#1#
zl1`y-CGM5>@DC{KS?QSLA^9xdy?;RX0}IR404GT6Vek<SMf1XKBS-=23_JwtO&7}z
zf<#3s>6hd)1|t`crEpsa1UMHIqF7e7jqbJeokaAaNtL{Qc~>|gT3uNf8k;0E!<jGW
zG603mFrmPJBjL}5u00vnMtZ?yC<jtrbkxWovka2Q8#%TKWDH#yP~2(ZD;2g<m6ZI%
z?4cXQszev6X{v1?3l=T>I?;wTL)RT>=bA-2D8*@)F3Lqf#X;KY&|(5A12RaUL41N9
z|7BWmoR}t*fRn;9OL>58DBcv3A_vj}-J)k6VHwDal2VYSbR@f!C3$YASA)K&t&E49
zwNgqE9XgB`A!XwlFerRy2iq%fJv0n$vMvIofqXbGMFQY7peABOP<Vkdun*jKVW2C*
z%1Iy9g*GUo#Qo>^;FAc-KrU8|<micFss{#VV)U^mGEL6SJ13Zo)Xj(^rHi#fbEqNF
zx`xKrS@d6C3{ofB$RR)trrnd$RcNsR;3Kq{*B-#w$#0n9T95_+nMg@3IXcw~g8y7g
zpCvQlc<Qy{+<7kXVX*V5)>9#-YVD%SAAcU)aGHH?0!K+aorBIA<-2Ec!uxlmN7yzf
zHF!CK90R=Y(jY*PV`=3ABW*{&FK`F!8h))cm8DpPh`4!dCLHFbNkO+Hf(ZUak!HOK
z!_s2Icjw)2&*<1dbyy98fME?OTuo(pK*L#hRB*y~Jdgi^&{7m8e!$OQoD{s|%;0mt
zo`PU(HY@s>#5c)cH~~_59Q$S8Fe$M`LsPUbvv+yt1($!?`)Tl((cCZDex(U_5ZNpl
zkYSodt7u|S^@;tKo5)Hq%m|6(NMcvCUy-(Re6Zwweq{ihtk4b8VasEPl%kD@wM^mE
zhlA4>GD-%eJnB+YNN2@zr^g0=oX697*jG{}A#Nyo6}kNPgRTF-gLt(`2$tZLm6A9)
zM#5j{A8rDfW@9ifplI812M{Z8(>9G1@hEEpMr>S%CHZpG7VQzfezXmmw<TsHEX(3!
zM6mv;;PWf!%CZD-fHuieh}ej=XO)NjV6@B#oupS1WOZ8E4)}AC+oErH@;UZ{a%w;D
zZh>4_5dj&nOkpQp`%^GVCsKJjO>B|ldnEhUEDH9#k7uQX)#Ht07p*kU^}RT#Lot>3
z$>QlL?J?2E3}fLn!Qd}!{i0==8^J*wl-lGm8M_9kuq&1aXNpLJ^~sh`>P7^8D6b%`
z0ypoS;Qp)lF8(n{>1<7ON;9tquWC3do{Ku9-AAC1QpCc;kWSk%d<24R+_po>!3}^e
z699dY%oJFeWt`5+qp$$km&)An!^5w(<hAg0XcM;x7hiXE7~ZfA?-HrB9puUtqJw-E
z?1#l%f}=!s8BPg8;n>V54C^`d*-eVHLTO5HSZIr~4s*%(-#2WW#E&9qc-@aMoS6}f
zvD7~wEV+!afN-P48t>;;aoaZ?9!{&JBRbS@D$zXcdRy=SwjgV7RbYqOxzQ&dAB+)p
zfF>m(skIs|H5ye48bN8WrZjI8lG~Y@BU6hsAXvmVqk_Dbtfv~ch3Jkm4YZi(q_a&>
z8o3D+xEaHPA>1LZ^F%g*2tVCG!in6UX9XGEQ)PoU#6LC}asiKwj&!LT_)KuipX~>|
zhs0oGow^eD-4ns7ci9j`jDYL7ntTu6jp0GZ&DK#a^5gKk<A}`LHK@JATIFiNVPGO?
z{_ddQx~FJ{-*e=9sQ^=v?rwA!9S)b+t;4%dVI<P_d(E;$y7Jz(Rlxylg`_8~Aj0NY
zLK(8wK#pm?`^&8GO2Br`NQ4w<m3uXQG}e5VS{%%hR9NarN^5FdORO^0G8<XQK>2qI
z!X|NkflPSiFxN;IVj1$?BOeFSh3Tvj5?YIR%;ut>mAW%O2=)=NV9-!vQF!hR>wfr$
z!O3US&bET0MKBLhU+{ZBCVb%_dX#?{e;pl3gk#pUYhf_p8T(3g#E&+Z0jqfTr@=Lc
z*>kE+*eTp7A`P2877V<F4soTrIvK68-*I(M>Ikmg9IgbD5aBk4O0GTrF4-mg2|B|`
z#TuZgAcBu@ea;ECmcxNE0TUMqbIzX^e1%y^Cz?;rL)sGCFLgWqF}M>HPZS#{rvs%%
zM}Xs;=dKwW%<SORNIj<O=;FZ=*mq!cWVsUe#?Ww-AkzpVz*0zYZj*9Kxw|_Y8f*k(
zw7GP^Rxq1pL}5|ok=38b1b<m$OQ3?Gh`)M{vs3K+vqm0!uQLGx9Dr%kK()9$iiP0E
zhwafyuDFH_?SWdx6l4c)U={Qx(y2Zb9RH-9VL{Bjze2^s;J~G2mfVZP=wR;?_>qn(
z;0QNP@<uT!qumj21*hD=hhSO}9>9SR!8v!82{AfDU<37$4TFTj($ydQBzU};XQYLj
z4m?)m89kiw3|ktsb@C~^nw3M0^JT_KOk1n4wIYfzAK8g8vh&Bdn}e4&GtUETnJ9sX
zF7i0Q&G4*<7l_GXheopH*yp=VCWNn|GQvJ^K9Lk*5ES*<FA9zm<7Sf(K|xfc!eJ~a
zb~|Q*)*Z|Q5s4l=Q7GQE=#Jpx$83RXSQ37XSr=>kMZvPSY-S=L=&%wK#HQzBibK=Y
zBpDsI=)9I_0W8-&lQ&X}sbz;5Q9FCh=%A-up^sh->W{T%Y3`g7JKzy-7$J&-{i+=5
z&Vo#$#5V|)A#S9@{ZlYYm>h_>Op~}XLZraNdF1tqa2sj4B~FTLi+RbJRqa_qM}Qfa
zdO6pg4T!Ltb4$X_h27}Zah$ToiZRLI!qc%pMv@_T+%e_R2RThj9Kuyc7Egqy-N(mD
z;d1~7U@maY0(al`;f;;VE6dWX_+2kra8p^haW&rq?U0obE>Gq_oEL;tFdtUH%AqhF
zT$oDTIjDURa4<RrH8EhCYk;EIc+udb7%cdEqN6$4mgYTwInlo|cu<n<#`QB%52jP^
z+?S{OZFd`#)DcT{vAE9de4<}nYd;%rEH_0!&?aa2mRx=%Dl@-M>1z1l`&al!wzEga
zVXo|K;)*+W`FwwP-Jm2QhibMb8X6PSx=APX`-krK-wq$NFOwV3JcyFOG(hYWKyPff
z_>zrx-ItXb+mH~&V-f@U#0$5itppd3#_#5U$FP6TuJ*Uj+I3%U42kS`aZ|Rc5MIXl
zZr>jN;n8$rw<bWE_;$SVNFB7oAMETsqf-P%5?;<&@E|C4yY%>7YX7UJ7&SQC^WUF=
zgs%I{e~$sNGCKxFU7l!eN;fBKmHCJlb-wSnee8dY9D>yQ6eF*i!>%-cLYQy?TKbH4
zJ=O}%sA7H#)6KLK=Q5YRl6*J*E&sc>=|jUOCl#T>EM}qn5TAV6SC-nB{>3V!A&|Dv
z^dSbm;+yxkg&v>aZBTmBAiKA>jUWHsU@d=5`*$R>rvvjp?sP7`=N9&B0-LQ76aOni
z<I7&NF_pJqrzQwpYSt59`8QTtYh|Lob`BaGcY|>+`QD$z40!eUmegEQGdDo0ii_MX
zF8(vWr@fLN6D|TXbC>ps-@4iw5BeCzmXKqb^IgF<@ljFpgzq3<G{UW~*d@M4^n#ks
z6k*M+44K_d42X|obeu7)j|{mC!?L?;RD8E>Z5}$4h<=6e?wW1mKWTDhmYXYk80E!1
zWN6%fVXr9X%JU9)Z!Dho6D?4U<h<|LPvpJr-uDOpoyRRJkX+qqW_7wg@$(j1b7iK!
zaZa+8W>#|LM}CLLZ3I<R=$5$8D@JV<KW`H|uhWyWEovL8Qv#g!g%3Bi_JcmQ6+_R2
zsx9?17_ZJkdcI~+qznmruke>ft<#fpqTv>4&6X_n_YI7GtpnejYFCE!BKPlCebs>I
z-CWD2PCFXz<xl<V{j3$%WKBhi(D~xuK5xgUIhD?kFM=$-E^n2u+RPejzT<Eg0rtCh
z-ta%~Oq;Nt^mmvX%8K14U;14NqBca)7D$N#>o}j!|Ht<kX&vKrL1JS&nysuED_y9p
zE#cRGMTPZGtK|cQie`IjwLc^`YJ+gJe22zlDQN%lwLgAT^bs_5Tvv1n$hGg@|H>ab
z$@XExTVIUl?Ek*?KtSty<T7Z>KunU{(MN6;FJV78s}<kP)jnm<w`y=bu~Ynx2kmHV
z_?;3=2J635CEir~Nizr-Pt4gY{(Qnl_RRkufhYqnipa{&kZuymWwV$RVOCqbk8k=h
zXJ@FAkYj=YT%qF5igNu9M+{aoB6@DB(a<U)T=wz{%cEw(x)kQb(%xR=-4tt_i8G0o
zP|<&dL`~`Kr_Qu4?wG}4^ZL>fchl~E@hocxe8s+k9|NQZD!{w0NzfrQtW`BJ+?z39
zU1L8Tql_{9j0No);h#Q?Mvk&VITeb+@=qA+2j<hNP>>&q<R$o_9bFaY(jt-mqX+nh
zhtW+?nley{*(3g5xre{IkF`!xz#CKt;Z?0C?PRS4Lcq^~$qh|jyqmvZdut~@8U%w8
z^o;PYZ5=hK{sq#n{W3YsU$&h!SEjm|2$gON9gP<Zu}1uH6ywLJ-_4DFh)Z5FR+X^S
zaZK@@asJU&IXjDIXDG31@yeXA1N~jYc>$Ot^&gVW5CWyve|@B1{WZG?`$G(?PZHfq
zOcHOQ<J=wW_hfJAuyz@n+(V`QxgL99Qagz@AakVqbdMhBzs=#-rS4E<PmJDLT3BGQ
zyQah!>}c<quCz|5$jGrM1G|s((?5(xNt6qc3wM;fVnyz_{rx6`2Jg&K!lMyU+Cn}X
zKeVFI7N_R(e39n|K-7?L!q<2#-|e@rzlFy*cU1(S@L)DUVF!iqwE5V%-DXApCe9mA
zR<SaooUr3!SSN?aR#&nakO<*S#ORl}0dfEParVwxd}$?Blx#!_$OBH$QMYc@#f9A=
zp(z3u4dmLK=&;KQfiom$8naQJ?m+gG%^*!CgEB)hC;G4=K0*Ybq;_Fo>$W_md2&3-
z<E?;rR)`os-Hq0`bxb03B06LEyBE3Ue1HA#>{XK!@@}!ir<1}H2XOe9_@NMlre>Cm
z8@$g*KUtebbs!{6%PrZSNOSmGJ^(IZO}Rna6xt6akban3%dGR<G2UNQ8m*$dKJb}m
zJC7>#FZJW6xEMEC{3lg{QH*rosB)<GgA)XuKvM-&ow~OtQ*QKYa-^_397Q(a%Bj{!
z7!Vt;wEsfB?4Tzn(F5vC_AMC&?4F&!ul>3*)k<|$j$JREP>eZuqkNimSD{yt+eJjX
z#O<2rzdVR$8T#fLUqG9t(qP|+s$k4VMTycv%*Ee>P_-g{;C>wB|Fee;fa*7rjiYCa
z6n@Mi9bG}6eEEpCQ6kXp+^$4Rw&)JPn|`t+u%8h7#AZfCd&xgbeziUQn>w}ysyoDt
z@vd%Hz!}@jaXEH#x}+{E{y?X-P#k^S?*6W3dj^yO(x%)*roIlz^*ve2K?+6$<p!`)
z;(xRePv`mZ+uB1_6lzvsSe*_vmu*5bc0OHwQq38ucqh8z6FJmI5LhEFa%X@0<s=Zi
zbgG-`ouVQNv*sjazK19f?9XW@G9}pz|6+OvR(idPgGbUHObR&bLtD<;&kq}6CulsT
zfOONGW^z4tuIq;MJPtM1L#zgJGZz{Zh1WqF*6z+23aM4d)#s*=IHE+y`;O7p3{kg&
zNQJm_xrYk;tNUBCP@O1@yHKHYZuefkGg>Jf*2OXx%7yiJ`$TL*c5THslI%v=C=FZ?
zb+;QKl$8C5D%F#PNZ(qa^JcZHS~{rkg>@e>`b6*3M-HCN{z{uA5eA5w+vJ$ov2Vv_
zqZF%7`+Qo$n%HYk(~<|gmPXs`;8M8v#>BRNoJK+D9X!hKx-+pqEVtkBy5>Z8tcC>n
zz-|uz#n{hJM(@N86_w}r4Y8Te*-xtyo!yjRaT6xTPIxLNxpC^p={Dq>e2I;}U*k`$
z`!8`t=WM+gv7vxbfXl=G?kRx{M?KXO1xum(H6{~qyK$2timhF~?!27pgJn)-;fSWF
zcN52Q8g6*cFVD}>BevkNgA+=6J#I4M@%)Ux^v;}WB1gwUp<)L$VPsRfw2AqyY`TB6
zo!6Dnm1Zs#6$nX3-QzEa=e)0z)0CWxGB0@7@8K^Q8han5cRX$;09)w}PA7){Vt3*v
z;rRSOT{T!7=VQiK58-ug$Y<fD1=ceLfT*!KHMbe%5XM;K-up1zEkD3dn+xA2Y6LNL
z(+hn59|xDh0B0cQBbZ<!qQWl;3JP6V;?KKfaCH?*Ra0l9yr|veDaCHZ&Hjd+a;nE-
zqp2hJ2N#??g>Kd))c4B!eR5h(broo1I@M)MHF<2YJLe={e+(;CLMd~Wg9Kh&^7(H3
zR8(HL{_RQLh76x-H~o6_q#}32(f*`MSS2~&0xYIG+B2x*6DP7lIZb}i)ST){9ClK*
z`tq1^TAL>N56;M`o{XPMqP>gT+2|@z-cIk(9w~@l##tyNF^h&C0LxiggQwSo%a_;>
zqFd8yo)1dl%2y>aML+v}PdJ*NSppN{ts)wUFvD&A-B;nW<R9V_x|Cvrkc;T4eR{$%
z3X&)OM6^pQ1yxeDHBvkk`04tv#87VQ2dV-~q>PF*@zS|__!mF5?@d^ruK@~yb(tX*
zO3?XiW%!SGh+IV-q=W@wkyN3e`42O~*?q|F%|c}ARyxdPVM~-$NphVS6d(>(QDuBM
z;DfMS0i75FEl(YmL8aZO*xG;amc_3MK1#IX*FZU3$QV@&9-y)+@5ZqNKCP_MVp<pf
zHSD{B2RKf^^u5`61SCQEElI>Si^5x9viac5qKp<DxpN3-B@c{ckbjo)pzq|21yPxh
zXao?=vy|&UJslsJ9I96GhoP%rc7-EAwHL>yb<$qw#%EFpBrp+`O1WygVei~!Kkt1B
zn54V%nfTd9t$WGxR<IKCz#|16_*i_>FzcWO2*CdwS#?GG3m=caQWw1^!(f`{w=9>m
zMb9RW#}7HwdM0wMZ9qj5sIGY`{!8o7v0S2R%C?g#g7K5x{)l0fP1ahK$TSnxQO`mG
z6SH7%Hx0X-7x6$9FfR@tFtt`;sDcpswG7*5DqoS`8E`!k1)?w%0j=u6c>h<1jAd3e
zi6rAn$a*Ac_=soYH!dBbN2WKmHKQ9Y=Ltm*-?K3O$7ii$3TG2*xXok63-NECu-1u4
z-*W!P=R+IZe?h$AHS54pl}0N`eDRy{A78Y_shM;$3Au4?AnVS8c*lFzI-M;8Hnn_<
z?GMCfzHhDLiDlw4HS2*gE$a<$#w(Xt*A&>2fL6;scEUaJOWv^Ni3yFIF<Qy1+SlSA
z{4@LWXyj6ZN}iA3^jP%%rcAS>E!M`euAKjJ{EFADr)IfrS-vvzx@(?|H+}Tq4{-QT
zdL>@)YV<%)50>8SP?fR$t#{*HFId;Qq2d$chAoKCiH6#{m_n&ue=h#X<Mv}HkMvCV
zT|t@Duh^>iBj3`a^V<R{-wdkDG9h&SHGby-(b1Ct%bckj4S(O|!T4uqS^N42@F$||
z&0phFDy(Bds*!_=t%1$WxhcN?U~8R%YmmVnc_bVf;b#3g-ft&5aCSuLO7Q+-646n9
zJs5W33LEOgRI?l_EW-WCH{+xF+H1zaW#GxwcjqM~FUD_w*IqJJ(hQ`K5<D>a7ycEW
z7_;{A=}e|A(>|Y4eW+O6%MrtV`hnxAQw`Oavz**6z~&n2UU|c6b*2lzG3C-h#xOo{
z-lF*AGon|env<=|Ss?OV@biln$M5*S2D<*+N}jRs?RciYy=Hoo=md<CUsv27zjiNc
z-C)@yA`HAG-hHrjQ2Pa{VilD>e<6PKi0B<U`z$7z0`O3}C4Sq1G|L`{ghG_Iz%hW~
z@8g?2Ogn->vbBBra;{cEi7x$lOXBHWe*GRCRoqUu#_x;1IUZvjAUtG+cDtk5?^5X)
z<QESm-J?@)jPF0lzFXC#TsTJm$OJ>zM>`IS^@$l(Oty<|SswFSo{v}UZ38-}M*>7X
z=`F}fab5h_HFnm35!gm^IFZcS_xAWB1MTO)mx?;I5?c3v7$4Ke2+;Tpj-QZ#=({DN
zjJJ&)_QHcUv+>9TI0^G<G9FMm=5O&uBZn@+&1;Ozu}IO-=@@MG<T3FxkKJ_<AkwsU
zQbzMYNl`(JVa>lhe#Y)Y7V#|gny72aos0oNT=YQvhPQTI#7P;4(`lL_o&|+5X1vS3
zapEf%ArWN}E(_5vD2U-jP;o}Q|60BQP(nHT+WAt}r9#J0kG44@en1hQDV6oSqj9-h
zbczcLHG-0};>Z5*-;d?TkiWB!F^q$I+M0W~y$u|G243c7RK@qbh7n4ZPq!e&w&L%_
z$9UtMt>P~{%o_#$f_e3jo;8mV;tM}6zI}&vRQI&Bwal+$fzaM!2uA0Pj$b+Xe@zS%
zb#`J1G1HgNo700&e0~h4#jS?LA704Y@K0Mln{vwB;XJ)6=lJ-zcG`)4TW-*roVpko
zw%#B7kzMr2#F(mUHiQ=%tFA9ji?1vlQipkCGz0Ew5V<aL4=xJ7smr#eT9;8o3O_Wr
z_L1=U+15G<V{&IF;-xzB-4>69^BRZLA=gh`-PxRKZCQ<AKwcr&aBev4T6<#pGIWJ>
z=lo^%NTGXuQTR@S^^9MQAev8^D7V7{VOb|_N*9|>HuL*LM>olQWY8{rG<+&Eq>f3C
zYes)rmd1b%Fz9Xz8~f0VO{rtG)zx6j?g@7pZf#>5<~Je%VYBJLJ%jQY1+MGfaN1z|
zt_4T7E~~>5n2-42&U!3tY8f(sLqpm0c2F49eZKq8VD#{z2XKH;-D;t*?!#H}QD<Ar
zR3-!mqHWPp@%(d!-bo<*<Wx6m95{Y%F*c>HdH$R}L+(VKnt>l|OQH*<D^~`GJ4gFx
zcldQjL9UFKdsO&g+x@yDFBc)hJwFEgc!+W(kq;$F=FNE=WRZ`7+lI%Hm4l8-1WAU}
z2-YWAio^pXDzoxigLe*(m}0*%mxWGcQY$vi@u&V_>rCq@$6$r{O1l8Wi37sIiP^WN
z^%|*}#XE+JNO__$;7|h!MMf2ED=dH?a06c4E__!>rc2zkwtB>2iLKW0^A6$XQ3o+o
z<nN_fxqfclJlwXyem_YW9Jue%&-dLnJUkjN6)W*x=p<tm;D#!u>ldukzWu`EC)<-$
zAWD)`k_t}f#7b+K{l$Gdh3AonpRrV65GT(Q^&}y~!}^Ask>sD|NUj&qMLt3GG9ceC
z+`7tot0i??Hd~v(=xxF+qY0EFmoXZ0=jJAO5V4!Nuwp0n2~lzM;_@%i@I_~2db@eY
z@aB=$3{HX!*s-o>!cJkAQa;Q1n1E2yu8~z1Kq;Ewn*QOM>fYxlU!a_^sCcAJ-zB^@
z+Js8wd%_Kl@6*1`_Te87w+Gl9GGgdGP|mCRh5NKvvlM)-g7{_2;IO&YS_zoIxJ^dR
zlnS;M%9et&!!^;a)U1S$L{H#5o^7n4Hm0afp;*!KEyJ4G(J&F)2~SdDP~x*F?LeVY
zl7~jKIe5G9MhdoRaWY`bYQ}fgC8J`aT7nhw>9T_3^9F^h8cpUWuW&kJ+#gp{)^f@1
z@q5M@{~<+I3fs2T2R`(Mc;Ef3wTjbkOv#ep|LeW@`)#yupbbd!&1^qx)t&ZpbdoHa
zr}>`S;!l@HZ&@dkjZg`%XKsuys<Mt=?Lh$B=%?d-j^@V8r@w(a4+L45pGz(uciM3O
z^O4+O{9>At&8o3pke@4i`C$Y7+~bT&VzLEkX1!4o3fxXtgpXf8WKXDPg)&=OvS&7_
z*j;&Fc+!o7?*-nNym~IjMxbIYGML-y$)Kcs(7nuT4EjG(6Vf|9u&W=A4wBo^!y~A=
z^0QM1^z-J&f)985ZHF-X^&JzEpW?iMzqnO%N8HnH<c<KfIOy>p>3Nt8Hp$K(YNaM3
zLgxy`A3QVIb}(Jawt`o!o*xaqU@p+PGF=s%9~AOoU<T!Jl1&6Tl59G;_%XP*UkFY;
z(nd9%$g&g}-%wz4CH?&LXz<|fgBG$Vc<HsJa^<ZyA26dB3l<MPSMT4yXm=y5O)c<`
zqOx2iZ(e?&fANW3e?xCMByQg^zGwUYCad}Gx-ovyZwPT=E)^u)gfV_25n^RUuj_73
zb-@oH-6LGv?*8l@=_q!GauINs$194(DlW>E#@n~vH!s=sVK$&9Q7a&9c>f_2zY9)-
z_a2<cw4qH<a@b9no(tnFc4fojV}=YpjlCxFo0?P!^-$U-&y5@q-)X^+(~u>=#X5*=
z>#!~qFE^kh-u5$H#mH3HbWjkj55`^MHv3)tt=yrfaS{OH>^q3^dG3yW@xrzCwlPiJ
z5ImKt(U&Nr=e{2iAG~77X>hn2tPFTD1JoUNaJ=uRp`#HcB6kte?G_hM2|o34FleKk
z(ZFI=nU!-1!!A_5YS+F;(C3svqj{MjVRMs2b;)xaA?bnt1Q!jnt|^er`b?{|i(*nO
zyY1ElodG=-qGI0JDw+oSed*cYfUEdO)~AEyImws>P7<Akd%LCL-sr*L&YSJExH2w7
zm{NZ56P5;FjJ7vMj(K>A%j>gLhSJ<6LG5F_6gdZHkoKl!NQg3hZ-tN8a{Cx=aL5~k
zKJvYm*d&NCVP{BoO!ktyf|cj;VgY&?`FYDgozGD3_*>ACvM+LJEJ2y97GHc8)O>B<
zszHg@0E)@o^Hz|0&^|<Rhzv<M(fKLO$=eV6IymskL8BRruzGF|YKLod;U;_MsBuCv
zy-FbkqPCBJ9qhY@y?H`QDy=zCxJ|x5M=i^#9s`Ek-Y!2J`0?18$g1__e#DYN)#K&t
zA~(u5H)$rP;e+XZi*Y&C2VrmOns3Nj%_Jmr3~H~A&Z(Zo*$1GT+tg^z$GXmN6FJXJ
zoLu6*O85si&Z*`KPLT&c8BAj{QmOimCQel41djcgNBb`U0m*$@m8_S2nFnho<hu)}
z`Nc=&RFCFjv=hWU7O-^m^dc9V>kr#6r@FepDGUuqTb!BO+|+V-RQ-Ye<UR}&9E)7`
z9kEG?W;Yh7@E?bIii7A2)D5g};bv9|j!hkA5aT3yFm>Q`=%!S2ul`cwFFZY`dYS;#
zbTeWdQTWYnOeM>JL&!U82MNEOG9Ptj9d_HgM^5!2<U<7&YvcsAxQeM<$WNd4?U_Ns
z5!qBNT5Phyjyl|oDZK0O7JpZ6PW3pbMFy)-s}SNm_v~EX?`B>m6CPzCW=tt|W7_@U
zLk*;?Btu$b2Im?#bt3CFbF@G9_iQ4V0M=&|4z0r&Fw&pT_LB>3g;?ljR<okK$URZ%
z&)v?zVl>-U15Ia5LK3fk%wJp$&PtwL@t8JOGb7(!e~90O1p}@nN{n*@w4Cowz0HsB
zms33nTNwl-0!C*XROZ}`{<I4A3CAK9tag433l-;Sw07jd7X|PNZ{H9<*TIZX@&RaY
zH3Gs@bMfa=bh{&bxFHz&CFf;)qHRu7Hx%*V6T;3jAfTKx{BafjQC5~K@cN95U(-kj
zl5C<&`wHU}^-2x&mtSJ-;N7Cc1$nu0GQDDuKkO9R(ZDmcEExb4T&2Jb9OtiHL3=6A
zn%H%^Vt9w9x|%2pfKFe+r^s7*n(zOr{bU9RNf(!tc0P6OS$^p=_Nl4!TT@-os{Gti
zG9cZ)qd(+oYac@)ZfnKLdUSt(z+Z+eL?^?ZQOCd(9|fn|@q2$&VXzPseRLy{+1Ln`
zI%|Y`;~jtcAb%aC7N;?s#_Q3duqx}rTWq{rW)HLvyloTR6p)c(MQVUeLNEZeR^XyM
z7k@QV#Ww69@@KB{!JCGb*f>0K*P#Q@rKYA7FAzOpHF3UvH>k@Xu;gLTCdU~FtyTgE
z{y4wmH_Sn92JmNCtfWi^``p96?C?+>Q>ZzYl)0c#c~y(u&<Fjn8ta*moZBsj2-<P1
z`1gZ;^0aUO6sa0POm;d1C<O-uY35Mmrjjos(TsLv2`1O<6MlP!&5b36i$WIRmpH0Z
zr~R|w`dx+&fP$e2VtT-`597tP@rHRr@kPg^6iG>tU@T|L9`r}OGg$5AEqoR2wj0Vy
z`BgXUY5&9~yQ*hKq7CDXiB{Aq=3I6@<iFp-y2kXR+hK|I)O0E=g;1aOjQ1bg>(KAo
zX)I&^D_`~_qeiT+^~o+Y1N9&T9RE)rd}Kc#-_kU%b}jS*u1bF950-c$ef05)^jdi=
zl1UZukYzpA?J8pn#jQFFt0+R1Epxj}_Dy$TaDg8RLr%|TOAC;UPr1Y&xFaLQl143B
zu8S%N6|u;fwD0PoLq5gzF<io!MOt}pNDtP{fyV1ic1&ES!SrDxP3_%H4Gw>Q2KQ98
z|Nc;${`d^Z85lB%pR2jofBzmskR%F*5;bDFS+$f#Ov#KEONR355RXYv&8Qmx@JZG+
zBbiiOB;IKG?(-S`uqIluabc#$qgXC2$cxC*JM{4v?Y^tHu>9KbR^m`Aq(L$#svA^Q
ze)u5a5Zv8g3##8RUPppv>|B6R^pI59UG`G&#|NyZnmF3@YMOPYe|jl+R1f?{3du(p
z`ff#VMi{Z!bd!Wr^5wf@*9HxxuvmP$=aS0_&I`c;%kLll=TH3B(p#lLGC((>csp+s
z{`<T^qq&rbs^n@DR!Mend}&Sya_aeP9z?NCkst#15R9a-G>;12g0<6!e;<6DxuL3+
zxczqy_S}VMWEVl2&<e=gH;SHOAf(MKcB#jQp7Hqr&4=(Ge8#>4ZNq$!?|$AkJR?46
z07kv>gh=7I3B3h1m;M@j6pUXxWB`|RJoW)DI;4uLgA(}7u%Tj^m{)OTj<`$JWGK<^
zkMf%zlB45QnO;uC7`r1xmcToYo#g@VWCEPBmaLUl(FBbJAJfxz^mx(gtimKz2}Nv-
zfE*s`H_w0fz3sjg!|7svqI4*pL{XKw?wx$Aju<w=PIx^SAL+}Hkc!;!e}}rp5?zrv
z8nXwj2qy<~5b6ArJvD<kwq#qac_)z@nQ(&d!dJeeiy%D-wp<$FLYN}2dEZ)*5xB5a
zP{+lIBYd_eGlMSW_zZ^EHZ1$8W=tZ=8L{7ko@5+)Q+2YgQMN^U9d+#8wU>D^p(%{G
zss~$~92bB~`A%utllM~3P@lr)87ps%O<9W`r>o8K=P?7fWw-CMGWskEZI;?Fu@blH
ze!FraQH(RX_Hc_L$s3n#Ws8ryk_Lm<J#M(gn01QXeOr5yXy{sxPbq02KY;xaf{Wdh
zEC29S_Fy%MC2>nGE};~W9(nc}Ti!8iHGyb1i^;X?jt~4x7tmFNBQSJwb|&4aSyTh6
zs6-UY)`;iXV*3ToFq{PIDd70K`$FIKhP`%zuoo<#&{_LrzCIa?K3Sz8kT!}Vq5kz2
z#$n1MH}}^pu-A%$RgpD?eT_{|N#sw*s(L`Bsn*3kx+U;c&)QciGvJphtwUuIh$bFO
zFWzBqK!I9Hj4M%&=oct9as(lBmu4lpMR{+o3M0e5Kn&P!{`?264@V)~G|aYLTmWY2
zJ{sa5dfPr#qdG!-1{Dw&iu>-dMmw9WYa5AfsB5IaIgxunW|R&Bm~{T?%k4+VH4R<l
zq~+LY@r&JIef-j^tgFg)(#SsU6i}fpe+u{dGhJHz<yeB)XL9)B(Z>4)h(Ike+xmlF
zwWp^MbezEm5Avt^op`&of-|72aFNKLjn(%*T(Q%wV?4_a$uF|Pe)x!dc7-(~qUk`X
z9iJ$ckfbNNcaWfFcAg8?0FX{MCK|bZeSDsEPfL?G7svwnz+Jqnzv~8Tt-{}wm2Hwo
zD~OQ$W*dL^S@fVQC6n5z+&P)v;|A!%2lKb{CC~8-Kv6Dphc-a2bz&XI4DcV#FqT$>
zUqlbLNPLV1#KETOKn}G$4md%Gyhf*FBrbD@ZsBhql<nl40m`RT`l<{YK$*L5b$I*s
z)~OTnD{@p^>Tcc1zYINK@)HvT!m@<L`JDHY_weUlXZMS1ZJPy&LT4@C(-TpoVT?=L
z3Bcs8DRq7pPH3VXt)WS1V(*IB;lY#U=6m^u(04>_h$Z|JQ+=su<xY>$ljp{)P1oA7
z#<s+a(l3UOy==phGQct77{Z_NtRrQwXf*;BkYHC*3{%!=UUuJ^{-m>Q?WT}KQW5}M
zv_y`KHRAL|tQ;N)>1g59M|GWYfB&rPBaQ4XCyq)L==t~`ky}6yP3dXGpf9Z(UXhvL
zbARFcFdp!jRAVdby<U9~_Dv7*Cv9Vo7)xl7n8ZY*2ZM?JrnUB971u&BToF&8mo>vh
zqrb$oBAN49R!G7B_|^84{N0<`uONtZR^BX~QtCkpa22^XrufqBvhR?XWMAgp4Ed+c
zt$oJY4%$VdvQIIgSH_z##?n?~cqf$;x^X2a0(I$m+W&GY&k^RMh*f3CmTG_d0{`)u
zG{e3aLV7lP#t_^!zxM~T_Tp-Zs5V^*RVIj;{3vYF*5?@w;;7piM}4Gzw_`z4G~UwI
zn$e;}6a$WZ-KXKeyLqyRbQPUh$3F130(ZwiKj}U@nw9CbZPA`l1A^2jzl$~+;f;mQ
zZgZKKUQMy@Gu!5ZfE**>8J$Eyd<eUXZuO(`tqT`LpmSO=V&q)!UoW-Rik7vKFlZN4
zH1bMMW-T3aDuqCYBUzA}i%7tcAvJ>f4q7W41b#%A`pVq*#hye9YL`rjHIc)NXqqoa
z$_uWvwVA<<u<J}FVTOD8bKzoG3bF(fky<AfP~hgA;Qw(PgNj61K(rAEvU%>oNyhGI
z9*dxXfNDEJA7pz(jo<2e#>+8IL<>T_E@q8yr^zT%9P7JapAc1Qh9RawXP#Qapp-`0
z4mYtd-244E_AUGJB2a`(8&wN%A|m@NE3#2vPgZdq6N{DA;o<$S{KLPdp=ND_Capy0
z2MK%lInm0JfyK@-T4PB8WV`>J{?ha5l8gbfM5h<|L(E`tw`=y74zoTYF%YMv1EV&U
zkwDacF~N4EdM&PG>zNKm_{GhA-fgz>5n(@=7-*TMFie%WhOK%z64b(C8fF_CD|Bmr
z4zp}*gIC7N+l(idxA0>Xy({_k2kg^Wq>9Tx#ZK=D#qGGy<hCXZw+(awI4w&kxW~g0
zv*@jfDtbaCh%8~*+7Ixz^s}DnsTQn!*?Y>-!52(Q6VFU)OxLF~v-JeA5*#iP4jScH
zn^oe<%A}QX?a6><AF&beF6sUykbK-ex7gphrg2TOXP9zq3><grts)XLHQiI&t46_o
zR+ajT%k7!5o!!yKj3BnDL<1xDgua8s67g(a1+rUF=ug_%I#`3wb&nu2GPG^>ww}tQ
zd|IV`MRag*buWd3Q6RlbZGtP}E%`h93g>u?Tzn((7x5D?m?6LVH#Qma&Lc(+keI>U
zPx_q?9=6>lPNyErAeTe(90Gi)<e!c^?WroZ#v~0r<wg!MnTa!a5JjViNRp&WN+?L>
zjbr>r6%3nTA9;pLO+!g3b-R!EKaR2!2sd9x5h%FpJ{jnbzsN>VWl~}5+K9jb^76g~
zJNt@AN`b{9pGl%8CI-x8i-CS-t35X!|0fy?5MR&V-v8xzYZOi>>Vg5ORLy15Kyf@!
zHK1NWM2j}Bpa1*>>zV=#-1`h%uVe?mdxnlYd<p8J5}zucUE+RzCOlZAO58xgqA`9P
zh(W53dMqphE})B?5#8%LO5Bf+gy;16ZHK7XMUN;+n4TcsODn7w;kEc!I4$};B~ja@
zu+R>fEL#+wCvm?R_>WH~0St82g!^*-zHPIEDG`E!Ng~jb(n|~7qpg1FMr;haBrf%x
zy@a1~#&SR>K3p%YU<V@fgOVTx?#-+Hr(bYGM*tJ1C{{|u1JDGz2>H_^xI|%a4H1-r
z#fkin51IzUbR<pVNrH9*)kNWdn4I^w@VwzR*D0!vsz((>jB#xBQ{j-Q)>Fe8h|qwI
zmKGFq*8cirI6w!7H_DNdJOX+Mk<=~tdsuS-J?Nc~fap-8s9;b3$0oimVkYach;^ii
zgsCc^3Nv(*w(;lO8XXICavKvS$Ko;|!H0hgvq}ksuXp=Nj$Gtc{SYSMtb7(<s<sXz
z{~~lHqNF4zEX5mqqP?qGN-rBgFSx_NE&Y~}EX?Ng;CQCvk=u+8sAP$lZHWxZbNg=O
z_q#MAicG2n1W6bTsj1w41%4C+iSObHgZ7lYs3>}+?(r>qX*i0Ck^Zb$ju>$N#nE7U
z0DL%K68`huPP_P@esArFVUf6j0?Gj+-p1r|Bwd?>4NmfIR<M*l&v~ff8Z~2YLaIS4
zCV_d;t$uQUMu%36`%?>tlXFMhw)^u*{zyb;p6OM6c|y^AXFcSf-IXUG@UR7piGr-q
z$++}86!=PENs{z*N_2>!BIHip*C&3WL*N(g1Yl^`SIXR_CwPiisM%gMy9ap}6`#I*
zcgU%JAL*pr7y-@*DV#V^#syvemH*f`kSnx_+9;?yS&aJoy`P~62N_@|oFuVdl?Z9U
z^}4>9spLs^Vfmw*55fgoUUi9Yp3iL1Jd#aI>5_^%t_`@701{I&*uvAl4&V0NL5vFP
zekA>4eHYJH_lVy}cP*o+X`$Qy^Khh?dcLXM-I0`F(AV1!`%IhlpsE?LT~Nl}?r^s!
zWuJ)^$yVb|U>zLF`ycYb@2!1|5p9`;Xx{W5e{iQYS2fkM3LQ!0JLD7a>F51mA%|R)
z4x$uD&rl!Beu*C-0Iq)0H~ztnq=-Ek))4b`0n1#$>M$?Tgb@LoIwFB1H^o7Zl&<Jk
ztG)@hmGmk~D$O78UBrxP>YS*%mxW6Q+KN`T^njz5f~1ga{=M*tNKeD3yc5P49S;I+
z*`OI8hLRaLb@JAhk_Is#hUMGK_y~$?=h`&!R>sH>F5yuq$A)$=0PT|mtym?da>jtR
zP~!Gk6z-m~F^t7RWh7=j<Utm=Vz*#>zmMPpGaS`5@_LAigf7>)m4AvJcz(6YjAr#f
z$at~BfbxKY=&Ar-0*Nry=!nS%EYV6x3~E~>SR(7@NoentQ^3YEvkh567~)+=?dEG)
zCZ38eEaaOvBHpk+g!kz&4NgvI&G>=f-lQV&UoBUO7+ZO0Pi$N(rc=l?u!j|!x(~^N
zrzCNU00G#+s`~vH-Viaj840c`MY=Jm#GVgF59afbgdPR%3J1rWw%EU;%N4N!U{ioH
zlT)~n#ja=*UwOEFVCr(YavS+0evENFx~ZQ$(`F;TeI;{;`0+wi+L4GAyl^TZd0Y?<
zDO>=_W|KwXAEKUWg9x&+1?e!6?>>K1c~0%}bFw1NhPN*!nT!2#%NZanFOlwo89{m=
zW5w>HZa<9q&@q+UpaTIRqo=^#)$L=VS3E+-CTr!6e0{t>F=W8pThJa7i{Pir^~vW|
zn9fM_s4nBxv6^<gt)w^#StnwHJa_7pTodUvd1PEEbA7M(A9UMPiA=&wA&dfM1&ui5
zb!9N?T~&t0wTjrDs{0kXKP(A1i~7fc0*X%(<Vk9vm%<Z&$76D<U8-zZFr-4vQpf!g
zzP`{d2KiF71QFFCs|F<XnT>tdL)Hm{V1=?Mm2i}tpTg1yj0~FOkNyGo0>6ZG0$`Gd
z+wNLjW2*r0h_#iJK-H)H98Lp`WE}GT%%Z*66Nr%B$Pa&n9&l%(fNRrhBXkf5uFQ3P
zA9jmVmAQ9CJ#gMK-Gr0y)DPi`<BYQqFeyoc!$<8g*ZxSPoMCP=7bJv0;6cz~?;pv6
zQ9X@nRA@Eo<v^KJ_;Dn6a{KM#aT8e5c<48Q9UJk$B{I{R+rCz3!X9UtP-p)o<w;PB
z(6TJ*%P=r>J+(Oe&rQ~eyn~>I_bS+-8@yPljrGhF;S99uw6IHtm1B)$p1le%{+bVr
z@XJt>7y{GGM8vCDLhbh6e{?M!cp@eMslhr6C`0Np!~JGmG;{0{iH3Dzk6f_1{PODB
z{oSx?tX;B79L*S48Tx;z#6a>{ijqVSzbQlNqPStPpRZd^%uG7bg(rIUp>;isj_eS!
z5oINGnKjPY+#fU7Mqa~t><#4;{)a}obtI8nZFe3M!|NR@su1^tyb2teCzgjvKpz&%
zSWNUYe%Vrs?5*Fx%J=^`JW{qYW2^NhL|f69*WL-U`nwRs1cypF9`aC032eUU6-I`D
zL7o$kS*Sh95C{93CAM-0K`G%!y|lzU<StzrK7O>F?J=5XbTL)Ay}&*BQ}~4dIs#(l
zvn_drWEaS_Xg#l;LI>7Vc-w3p5iT>x5l$CN!lf&$D?-GhVJmEE)7QewS6R<AV~Ww;
z(^L3SEe<7-^TLW`C*i}{i&;v9R=#`XWhEFFO~JDsMjGYa$j3TJr0)Vxp(N{TSqn+0
z6)+H-!Sqs+oDp}x*aY_!x!S+_U_Yix5?&~++_+>kYPql%^q7i~ZT;%tLr=c$XT!^c
zFmUQ3{E+)kF=mKR88)tBH|O8sje@?i#E>;Fg9a73^k-pshP6lN!=w&GK`P3!AEmBw
zRX785jd5u6TWj%$MySN(*6$?W{}YxWqPp2_Dl<2~FTV|Ii<u|~s|Q#};&WaZ@4~}l
zugk1`5^-6;j%vr&c*7(gyTIB7{5D%cZ`nxn%y(0KzpMB@8U|NhNVxKAZ07y$x_43l
z@M1UM9L#S~JR%j?Gevy0(Z#44l4G)bg8%>%O|!7>!}I(?of-qU(bbSBC3qB<Ab9-y
z^RNpshs!FDS5^^R4bFMv6Mh5+4w@&d?VOXnZ1_Yos+o_Q0FF>oxfVjy03t{B0}ApL
zy0?<vu{WFxAW>Y))DCr1SRM6FbPJ}+Bi3Y2)IKb>@9p5pCa)f#z-+tBa{Ki6S7WTE
z{ooDIdNI@&w)L0)!zMGehfI>tomRwOrh^twjPL8=bG3{BAIr%8Ok%`HbE0k(3yEYs
zPe>v*RzmX3bR5A3pg@8R=$MQU*iBpocmnQF?vcYinJJ~t9*R^+{w$F;g$_SG&03XA
zQ*_#RzQUq#0^i+JKuM24NZaajK@*zRtHGs;r0;){^=puDR~;T<`D?1JbxKbsP7IVQ
zLqFf6(&t4YjHq>+1UzE106>b|o;&%^q|xJ^F8vSF8m3DOr9i~rhsVnZhJgUZu~v2?
zLYok34?DqcCas?MM!P)5G>gh0Ztk0d{Pj=sjH2`?lWTi{Z3Q+0aAAfW&Ktj1rpahB
zR7S@WVS)1}jI&`IbKpc5Vq$XlRQpXkta%22S9iq9$coFQ$FqpsWm+DRNP!&K)hQ&9
zQ^5P!c?=I!15A;C3rUJtV%+CXhM&Z2+!crw8Tn;$=3VI&f5IQ4F~fiX=qw^smIMOz
z6W7zDd=q?MpO-}l^|nmQPX;AjTmlc#Z$$^tL@<GrxOeCHc``9abG3QKDwOVugyaYx
zoMz<HeTVr^0a^J`Wja%<19*@boatr94h#GPs8RH4$MEjzm3Ig^XO5e1>7U-%x~US`
ztAAlK$QP%gG?yNfX4_e-ffH4ru&RlD{4FpimP}Sz35&RUlXEm8I(R&S`;EJnX93q`
zmrdK8+Hh1y56@@Xa;95V%cOA~L5^xM&x?G<>prdYq@^@zGlAG4lEH#^p6cslkmLkq
z8Zac!P9n&l7$cQ!aY?Uz4&+|cSsEm?1i+?rTi-453K^#-YuJ%=L%rU?{_snz1ATrr
z6exSVIC_H2%w)<#nwzK`2$Z{bH~++i_Q)g|zj5D(IO%N&uDkhLBrBoND|}?VnVYwo
zZp|pa*xr{u8T|%=Dq%)iKk6O_`iaf`>^H4%BBD1g8+0H67Ao<AnU$5HE44IjGK+*j
z0$tpw@52)#4qHj~3)DAM8J(>Tol?~!%@bQR5s!1hS!@x41aU^~hM>+~t>nDg+$z=!
z3aq6=Od{x1;+sL4kWE?Fy5te4P_GhKd!;`Qa+W<y?LCHMX@m0JtsjS_E!Kt1!Pz&w
ziZ1Tn56i=P)ODUJH(@(#eJlbQ!*EcyDP8iigU?A80GkA!Ezk2`cd#bNmpu(+)w7|O
zfaw;v#(#%RYprXBsm)>^$^cb>44C^tI7;3QSsG+SP(V?!`}FznT5SL_LZ-zuT@_C)
z6*U=9WrO3Sb|ui0Bh5l;*$DUNZTyPy);mtgXR@XZ9xT#>S=S-Kq}iwB%bKUNaumuO
z-y*^oHKq$AA?dI3pytVK{9*bW?j)3m%}$Gl@)ci0Z7f?QNlTDixCr_*D0=BP;X^X}
zBK*MIj6CO29<kINc9vguq}@X~2vnjul9#6zT1|LyvAd`&;{4Ek0T_^EJka4IiamD4
zBYo~Q41`d}6v$w&$R`6(flKY_ANr2l32M$}+A5+}!w1nC-s;N-i`+Eb0eNB3ff<z!
zIfu|8)2HM!Srdij@Ei&B_wgyH4Bgeq##Sg$ww?4GA8&0dr2zNr8%f%Q_IBg5y)a0H
z$x}L>_)q1z%byBIVbqXt1fq$rF&Rd%B`)cV?Ds~j5y9kypyQ4PS>pcrW7tPr0cSHg
zQMEu=Abwn<BVO`Fud(VN5=jniFC3;Df5sMm@$0rBQ#qGe){fC0{ado{t^Wv*Z?s|H
zV%i>I(ReJlThjh$`RRbWZO~re>O1__QG0~iN_oWlg)#i|82?4&B3GWVQRAdjgk+Pv
z&b(?kD<mH66_Z4?OWa@I3m*lF=KR(`Jeel%LFD>kN53%AY-gAcLrPu>N`rzwf^1!o
zTQa{Q#OoLsVcldOKMB6bi^k*Umqk!9GuZhS=*J<hA-Kj4BnlIvW|?dKA>6aXcC9*-
zZ0xma{7MYvu|tvH;TMoNH*bJnAdnP^Z*5DIevF+l`zJtc7S}Q^!}&GiC^``5JF~0b
zMZ&fG|4HkI6kI~qG9@_}`=iYUUKs6~eB5A6nZ5n8Inl@z8!jk-OJ3^UTA^wl8o=~a
zqd}BegB`UE#ntUcQ&xln1vCpWr6hgiwIxBN%<X-Oe^O?0^ZYYmObUaWc#!{?OGGnZ
zhN0dPppgoZDNg*Wb<{|>mGmV1i{=NT)yC&BtLy9Mxf}b(BYsrQfsP1Jk#b46=eG5w
zf3&GiQM6UMqXDb7Cd;76O>#Mt<?B;{2S6Q!Q${qA|7n92VmHE5fK)%4B)DDooF1W3
zfX%Xg&=V<QdMm;j7#%4i)jXP{3z3lzAr7Rs)V~5INC#p@M63A(5(cSvzMIRsp?M@Q
zXGR7ya{Y0HFMU7!4C$C>I1P|A_#r|ULJwBHM<jFNXqH~91DubmN`V`3wI?6Cnqkb?
zcatFZ)=5cwx9D2`ZFGvJsuFuI$r2t{=tjL9KD(3cFajPpbOf%EU=(5F`-LH;dNn|#
zdb-Tt4wodLrBfG&GbR4uM7RzHlHu}@?R=j{890~#;}GhGF&#dBdxakwGC(2p65}E<
z3@?{bcgBAH`+clyqO$GE1j{P3<)UyrFqTpmX(T9I2oM7g^oQ(b!=0izZXm_7It6a!
zcAomQdJ2&pf@v3)=xG8&NA}`pM1SE*4r`|141N!n_+fkS1op>vI!uzrGReLHhTg%k
zre}t!&XHz-6jAC<KG+K;WY?i<ysTc(IQQ=9JN?WC`+SYos)^(_;33QgbE*Jbj(+qm
z`QRe@FTBVLA+^<#<&%+Gf-X{~YVXHqC2p7?vI0`=Sbs^vdVs5iYSOMfJa~%#M7TR%
z@+5~>23*=1<{?vTI1p)xuo{1sPMh=Hh*&SC0s0r=&_qC%xeJE-BO;xRh&-)F5+7OI
z{kS@1u5GCQX&L)VuBDdch^++>oD!v<G3BbzO;vD58k4L%Xv!4lcJHzNf=UKQoO@48
zyEJlhJ-ENwJRJ2Rj6%xKVr~h5AjQ%@w+!r&8Z_?)xkW^Z>F@@B>J;03DljHh?G9O<
ztlN3+{*C?1k+fbx&Ip9HB7~vSdcun%>|Zj9#Po>s5?hQrn==m{Q7uVpvU+muS2Xzm
z!HSD?5H2P5b4-zNg5Ce&4-}AsUL~Qh7y1N8bq{Rrx09_LIgL;sL@^@X*_9W*3zwvA
zuw&GUoZlhX6sUp-dUx74;Ta-ndI)z>G#Gmf?$s0itj9PiGFX@Z2Qh`S4?ESHfx|3Q
zGU(N=g|rE6!Le7pS%Vt2JR}k*Fo8Zf9}<3WO%AidBqS_OLK5EIC3(CQoX3bEDM~Ts
zv=9p;_iVfd7x<0ew@Fpw70=kSqAu_r@*<9DhLfAnuzYqWp45mLr0*?rOP>oD2~UB#
zQUHOYSO&x|@6p0mYyA~<q%>ZM|1zSEc;LYyavQ;%MQd4sLic#SPa>!pndy{=n~A!Z
zdw{)S--lVK6=#G0-7!`Y8jFiW7`c!v{U%)UXPcEdi9{9?b5|twnCJleQ9-7wUSSp_
zYJ_`uE58`xN*A|UuIDxgDeu&Q+}ZEN%F;K5r&@?wFffALNU$f694Q3$AeqS|R7p>`
zbR$pAGc}KGz!(pS1f(i-7pw^vNyH^IE7Km)$9#Om-BI6$$MF{36nQ!seb)l<{Xz%c
zQ4QLlPhcc&X=zSV;0wwRl>+p@lx05l95QW18L&Dzn}_%hWE1@_@Eph+3B|0rvQBY=
zOb!s>KKUzEc+zLaU~BJ{H!%_xxzoM~pJ%^e693mO!;zr*c3laAEOpoa5=lacPtdEZ
z@(GFK@}m`+Pqw*Eu5%{_^!PON3nRaeN(yK|+NJau=)Sf0dq@lrBNhCJp9&Y^fk(ne
zB)bU-PGs6m$u7Y7?8Z*@Ip;BAG*x0hK`54jC`hMyXfHoYrUNRwpt-L*@gQ79Zo4nS
z_BvYuQW13^%L+&aT_r2F?o}nK3d@c^8`llhnncxlPlZVi>G~{4iB>{^<u&20z)Bje
ze9E%c^b(`kJ8$BT{eTh3?FNq^{9^eI8abju)l=3!B_&S?1LXkq0dWuC#SfCbS{zsA
zO^7n28kWmGXN}^bev)!nFtV$H3geG+aRd^*n-+usK7^9;r(OK2vv?CpG87#Xt*<K3
zJ=5R6C1DDo1LG`_c@nA2qz06T-gfy@UUCBcCMSS&V_A_{NzBV_=tH~_LcUfY#)eY0
z)`t^~0Zc+|3G!~)5Px7~27Fgw!8!>Ui8tT%<oF}Ev{gkm>;%dX>}!{>au+{bnoR`N
zbo3zmM7|=Z#6?O8A*WLaD!zBw`-#sb`-JsLki~{F2GmW!l380}r-rbSk`luLreE`R
z+|WFm%juEs8)+Y;UH!GKR+;A{&VV(MkS~xojpQFpn9)@*4e+f!{qEaX59Ved`bZ4q
zU0it7JXu&6dgTAhwTDzNn0_bttK>~yjIWV7_tOj~I{tV+<6W95EQ^l~F@41r5?i#X
z56-rm5P5<`UzZ=Y``3>C-N=!K;Bo3rbo8p~%E|ZA0KZfQNn|6<Q^SU(h<}&3f~1#`
zP<@>^wOI#Ajq}|Bb$%_99-Dzk%~8dUmE~d*ILq7%FN8${=$9!aqbf~u;!w~s?xcm<
zd@WHr3-;oOjU&sxe)q5Kco8Cr*$Q_~uEY<Ihr>VQ=O7)3C%xdDoSuLtzY4#AdBKB>
zAn4@lJLni-6N{?+b=NZha<|BNUxVv)*F#X`863srmcy;aE1$C&nOU#A$=981^Fms0
z?WOa`yru5KH^R&JrArPVX{;iqzzYclSefbjv@l8tXH$E`H%hWzWK!%IedXG9Fb$Wf
zz^zyvE)(dB)suQu>%wECrq0~nKNqQ~<!Kzg1rs1J!iB!t-hV6ai9GUSph!R+q6wFB
zKT6zXOTz0Uy6Cz=0ubO4%eGt+t`dU832JIZDnn4<3nS0<gOR#vodH@%j3e!`dR~0C
z|AyVxG<tAAz!-zA4ZnKt`yOm(cN~gE*8WFINgemc_p*+1obaHeVA{aboZP9S{Tgft
zT!e|KM)4%Xp;G5Z^*S$3Nf35w%}^u)jW-%$KQ<%=7diFlHTP6RJ}U_N66U4Upd;}z
zeEPmE^GD^|Q^a-3hbbZz<{E#`zP?x{Z^=+7=f-A*CX~8ky8MZt39S2+^;T2RAYwH7
zUB_u)z{!lZHj6&tF@Z`=-cEt{^j2`lvNTDK-Z&tPi(7|eZz997CCa=<VIuoAj?Tm)
znH3smOrFQukoAqXXqoIOieMmODYDc9APYx5CMq?ga9rdi3`uGtI8nbP7uWDe735-~
znDFUdCsE<S!J&}_$D~fSMS3M{1dGC<J{1{MU_4w2i5GY&VP~QCoyi`^SkXRWXyJ;X
zTf8bP1JaZLQzm8+A-Um<$UVmL`$5-*n-V$#@y2##Q6jPxOVW?NjpI2=+p@`iRj+Xl
zXJhLU^HCH=o;!GJKSbIqPc|h{P~nK=IFf!Ie=fQv=DTX5I`@|+hW3weW#zM9C(1=#
z3wP-?&zr5q2w~KNAU8Sk`XO6J#QL(%KnkOQ7R(?tLJYo;8@2cCe)FvU$92oPbrG~@
z0b&%o*YAaFM7As0PNAmFcUi0nU6k{RLIO}}%iJ3``1pZ#x26&(r#hHgHujSJI`i$&
zeBMM%TUzi3;a+!`u7>LkI!6Dc;eT|>6tJbewpGAM9nTofTGgZWT1H~3`>!n^WDj>0
z!~9=$tx;+?pX;cg`R;L!%+1?oB68PjZJ(@^xJVfSHwxXqw(=d&K6pQ#vdxW>esgD|
zIz?wik+fxQvjx5jpq}4=x}kj_9Y_wlXHn#Bgybk8&@dL^f%x@+(&R1)?|qqvEbf4k
zo}|TXl<%YAu*G5uGS5Phxa3WCk1-wc++nYVOCn3#lw>2=zilR-Pn_AYZ-$iK)lmZL
z0JPI}wF4#hF)r*!c=3s$;khO&5jTUq=AdUogh+G-ca{(<z$f3G{zTYa!_>iU1*k^?
zmfW<-Cs$^;Eu$+})IRC}=)kM*hd&>|@1vCJ_HpHTguFg?l0W4{dy^Qg0bjfaIeGt5
ze_0>v!0jkYU+Cdv;BKxsK0ZE%n;Gppo=PQhy*N$!S0oQAYK<IA3Qf3B;6Fwwh5eDj
zLNr`y`+NF%uZx^DS0T|*03y)=y#}r?b2|<8r*hOeB4)T0)5$f&4gqnU)}??m{QKws
z#cs-Efln6O0XZVJ<0=tjGnmLeXAvJb3Y&vH_J%YBpJf15awUH-^`3J=#vPpNTF{M9
z9uc$&dVcO>hELI=ELnkM0$wX95#r3nW7F0hV4xKg2}q7%<n)>UY?r(|r7VLC?0=%a
zdS@F|4S8+}l^_hO%)NP^e+;VyV@1Zdh#juj_D}eK2yxRv<Jc3u&#y%rZ-2n=G|@Up
zL82RxTc2oE;3-Fn#9wUl&X4&wwc*ky<N}j@6jb*9$m~o<Pm6_J@OifTn){-#Pb)3i
z*&VTyJX~3YXD$-oGAIscPobHe*om<T=DU+V37^$fDa1j@9P;6|XwL`}SiNoa3I33E
zNmL!?c~gylAGXb&&Ok)XiZY6xDH2eX4Y!$*#KEyv;Y$`+Q=}tgq|g|l9)jVNpiFGE
zr{9aAao`{{+4f?{IymVx1VP#-Fy3e`SbHrUyj<AnFm(cS&*T8CR8nV`2&fP{t&dGb
zRF3Ef%$8Fyf2_ZLi1k*A=4Z(rqhML!2NudAUMLsI2t`Cp$fAhE6V~fiXJ-qqL{=vN
zB8!>K$h6GX#*x+rl&f@>zk5^rP<cB8@911^@(X9zUACXUE@oX*QMWp=X4+E<RlDsF
zKOO}IiZvxs-$Z&$LWyLWtr+X)+->bLN7iR*ah^~Y8px63{I<8-PE=#I;^s4}+&c7l
zG<fqkClJVdzcy3|i70Y^+slvoyWQs*SSaBd>{AzdIfE%hB&9sg-^0mU?s_e!5YjHx
z*GL*}TY2uPqkX^P!Pg?&$aH`|CAr2puf=YkQ~Ys<(*d3C#H3HbAbN;KFLsAd_gnX)
z2a}3?ekln8$d+FQ_gZwc-*GSNL9rn%e{*hAJ!zE;=O%W$0Qvodqx}<m4ZasZL@DNC
z1f@@Hs{IK62hy97?Fl|~*2}@xdqs($6z863pg5I^LD#LMWDHsJb4fGm#*GQCR<<Y#
zlyW--;xaZeN#O+P{`&XeoMN&;foU|gP)UIK@M;ykIo}8E``D}DTi?*bs7a{=54h-v
z;Ll23mCduQaZwpX<-4LJQth3=VWW5_SxFKd(o#sal}j-m_xG!V1;Ym23rt^*1ce!`
zly;Wp%jbiIq|ed=6s{sJNlB+vkFw=2!5@@Y3wJMNO|4gzFp@SD<&x&eUGPNk-rhDq
zRc<9y1qr8eg<hUCHF$OVK~HnGu}^oa;9p5ejK6MM8IGSj<Y{j2gr@e+)ZC8d`LXJz
z<_txol%G^TxoS-~Gs8~=2(yXJiP%I&6r0ZU$=n`e^1FQ*rmo-@Qr{?3N}NAfydK^E
z$*^Gx9rCKMOtHA<#$a~)ei$ZZ*aPF!ZIrUbog)U-KXqw1<UpErmopvIJ;G+JpRfKQ
zy!76voy=)<qy>le6vbGjlYb1izuI0j4*L#Pq8Ru7!^Pp72hk{%3y(N70Fv6mHDgfr
z+m?hcZ%-dl_9zVXq;M`65rd`@&v)}4_9D=l&Zh2VBpD%Q^5qZ1*<<Zhq$X~v!}vvJ
zuNVT+zg`OqbF8BV14$jtHsK}z4A%^yIS&V3CZLYe5iwAWD?bXWPoYEZ35oQw*aT8m
zFJt}6Vu18F_k^?0AChEHq&;t~BPkABH--h@?keB!R4Q}P5hahQXA0L`?k_)O&`gMB
zP4g<8IY`mw3XTab=sR>Kr)cUbQuNPN+bL%TpT9R`CX=ITHJKpXIX46!yibFSN{N<b
zsAM!wyfrxR%ONwNEJ|<Dx{L=uJ1$uEI!zqO269ljznu|u{)fNG=+i(JK1$Xu!>q>-
zA3G(u;e;Vd;>0ClAT6oZrqxafC62zA-y8C!#FlecIXCOHV8K)N@u`g~)1-@bBX0_3
z{4iuD+f=iR9AVCVu`u|k*3#8gTd+uBL2eN$_D22u0n>-v32V~QrC^F!+3S@BhWxw*
z<S5H?bqoCXYJQ@O65T|E0V*Y1D1ijD&X0-<a^*&F!O{NF80m2kZ*frU#-oB$QJSj~
zJ+GbOFBoml_ol`q8y?3wb*w*hTWcTPjew%GKE)-_2n-Rw_cMRqRjKtzluO<oG8~Gs
zz>s=E->lSn%1NK@Ae-ih{9KCQxWn4~jyFeHd(w$oOBQU&G(X?j7oAPJ#?F>>&u@!O
zgk4S287MB!Ro2FfkN4-_OU5{8UaF(J4ojWJUZ!k7m=>n`_W3*yqMPnckwZuw%AGr4
zroZ|RHjqOZBL2z6xr*qRb(n9x%YHv4p$TPQ^TTAnNB6ImAdl70clT!e_I+trjxU@V
zN((LX-IcHU;k(<f$15isBQ3~Pj^-nd@}pTW)_BHzm~A`w0OXN8Tz~S9@_X9HK(xB3
z$B_WdDrKOY?Taq;V-viL3JIAy(Wa8pT)BKcc8Nd#b6exeR9!b=N7;2|&yfWScJ_S_
zx9Rn+Gwq0=U#5NfPMaSpYXdL>%7qrB$St1cTa}8b5Z6hyvM=0)dk^=!cKqr+WK%+g
zU)b#Tyxk@~BLS$A{Wu3snpyh;J}9ux$z)cn&z?l&#9K&2Q(+y^5hW>ot~>@Wd&*xj
z@i*;?DSGxPU(d<K*ttG!l=28o&hfvT_M1^5)wxM+e!E+F4=Lh6_sC2&M~R_|^K+HP
z^PDdKlur2iqsPaQOva@AHh28yBf@fa9_(MxM>hO8Nr_zEV1LD_e1v`LR#sX9d5hSo
zGB<aSzqL0bRqxrBu<~)6f09vc@ZmfTZkc;O<xjckSM5qUOBvOa-<Y-C;P>1ec6?3B
zCvT&jtZDcFQOrg;w~E}{GJjP-GkhVP=xF0)ajo+6ElJkfqkPH@{Y`!?7V4OB{?jPG
zR`2o1V+w`t>=aRVylefOVXHXWjmq)Ioy?qZG6xgEGbP^+?%&4v(!RW&X!0oCSAKMs
zz8UG4=oW3b)S@I?lR8Z^P}FvBx-W7nxtquN6)S)9S;`8z>Ky;kiN9)Rn3(ey=lDAr
z&IZHGgYM+H=X3l}<t1A`{JdOzn%pKie%5c>r8O+b@mu`%J=iVWr#XI@ri*rBq*Uir
zmhur#`j02^{`K?Xz!O_>UAuo$x8XPRjuRhx|LGCG9T7~eF~@&$`fuA&KHkppkNkF|
z0yqCUh$MKw`F#n@;dg`m-}yaX&Za7jQ8fgz4#8#W=sE8W^N(r(>xZ15i?^UVrPa5w
z6~7s>Jhry;ehH-G*ON#7$bHgZ!Q^>j3ZPAv+7!YeidB?q#ke8Ya`mT4EJlnhavRO^
z57k6+tU(TFY#{1*AMKp*F9*NvAYqhyDB%|jvyL&zwwNL$IA;jaPc-@^vFL%OIUQY;
z=J{1SG_nE*`LuNa8Wp?0&G+x+4%Tp{S~h_>8WeWSLieYce$5Daup!QG@9dz~BDP@J
zh>yI)k3G^laH&i%R793y_x;5_In};Q?k&9pi&}yErq%b`jo(_bMnOoL8a@*R?%T`#
zgQpBuz9+I>HYveWK3E-)z)!&sN^5B)dJ@#hMyFDh-59YFq=Z5fB7uJ@==j+ZO-%;J
zRVnABEXU-FDsy*j6+CsS^;I^Z(zGO3%Ns>0>__hzY~El!Q*meRK<=O&`oDK!ke8sH
z&Ehr5ITWBL-G{=Z_|%~<4DI@IfbwINlb2$p@?$9`<d?zWLh@tL3~z`{M(Urh%C+c*
zcou_h6p(Jy-I5c|Ki+;si9MSGDyKRHh?Z>=o`0crP7rrVDj^pZdiVH_;iSu~y}V^^
zBE6DkF_D%1!`seekTQ?bPPS`F<s)#77~$d@h5s5zel0{o27~DZ{;C89O4UjhQRU;~
zg9pA6?EC|7z_UJ+s7FMj@(2rx?SXLFTY^d74jPTEro4rmpv&|yic^B*p;W&R3Ukp7
zfm>rwkERTQ^xQcrjjdE1lOGQL)?-~{C*?*_J6`{yOQ5v4PtFZa{@8jaC&?^Nl3uKB
zrS6wYgPw<JR#o}>bSj3<*SV@KY48SvEgBJQ@jc!0X2Lz1ywB}*P3$Bt1yHPkPYrb|
z$rV=Q#?>Yh9UASy<mUud!>%t7<i*c}*eV_uuG=&xh3g3#A8PVf%Yw3}X(!8{rAQ!(
zaD?09@nF}xqm*W=(Smf!tU_e{0l}+}*bpl+b677WpT_de?w@-=5WHwTs@TrpDXL9W
zu5&Mq4pu~u*iy{pT%%QKe52RDnjKqqP%!RZdqH^vi<Pjfugo+G*wMBS-AqZf5y8|a
zY+DW@xUQ3emo2dxHk6yr%5HjJu;Uk;6vSB;4~G;bg93jlb8meSe7swZdd9UbOV_1j
zgn))~JF;2e*k~OUKHkBq^FAVLUE%G);D6ho)HfwXl`-xV(TVPwpJD|!SkF|_<8b9z
zXr;m@r_P?iMJ@CoP$u|2BT%6m{7EkgPS*-$v)V#(>P^KSN6J~^kg5Ms=AM5#NdDd4
zYKzsT0%|N(ORQWGtXydHP}Iq-_X>{I$<MwD-ztsRvYVg1X*li*djmXDd1K+fu)H7Q
z!D&pNCnhJqO3X%rN2gcLyh9cTXTK4BaV2HmVlvWD;8|`-9J#XKowyx?a<Ya>;}y}k
zy?@ZQ$i6;>>Q&rrW!AubjgW>rf=3q6Q=%g}B~=$)@I*{8<+_?!Du^p<3)UQCUo0n)
zQ(HY_%p=_$CH-Q-zgA?gKZn183mMS{fxCMR4DZx>_g+;}zN<6@@7v_)V8{Ej@0*>_
zT7vo^<-IX1So)a_W^|%9*_{y#k;f2_|1J+w7ugeIR>^YD@5NJx1{Z3tL9|kJB*3zZ
z%f2Z2!J21+U}e<Dkmf?n?S@eWp{aqydsdt6qSb-BfZvGzDc2uYQ-zd^-8MG`@AbE}
zpF{>fJTX|=bJqs%e`N=CGPI+`2qcG*5)wZJ6$PAA<!|j!)<4l}NGvuBAle<mJ^sZf
zh?S)y8bbw3i<9t5_$E$0Kp1ZX*H-g2ytp)jPA)I_4JEy(3w2)5^o@-WyKS1x>MV&a
z;-oaSoDJ!q+O2CnFX+6LUtxu37EZ~9@7{qIVh!QOqwFN8=RHEz=t^D+uB)))QL&O4
zck5kjJgJ5mGlv4}05|20(!j4Cw2(tMi)`pv4~T3PXwR0b4E+J|_^Jou|GOL7|NrP#
zCd4g#yzhPgm#2{vvrn_&<4Jpnf(r&iNg6(!=eB$=oZN4OvS<UWpmH}UAvOiLO57{)
zc!?jn5b>ustE-qI0Q2|$60*9Y*GzBfpz7IN)Du-+gM7<}=bVk>=RXwxO_7a){1`N6
z+G+9W2M$qTkO@uoz2!s-DB6+luBwlh&Hrs_j(o5dqPtFszfwG80CL?}y9q@jIM&lP
z4G)<^)>P1lD8no4LkW1ldnZ_2N#@rPl3G;Q8SiIKOgudQMy7%=oUEUl>~3s|O+vR3
zHN{!Kz%BpD?>Rb9Kh<|gYzz9MSUZT}>A(0>M+T~5NeEe8<LWk0h3%h+eRBfUSkM)g
zA!5M7ldY>L+u+<)PsaM56srR_saV#QYR2-_*4Z$>C*3d~7yzlQ{esYKLDdbyWtPoV
z0^L%wc)R^B3||^ZLVPML*L5r-Qz7{h3SH^E@V@=5b$Vh>M|aC=k#M%~hPmMrMb=)^
zEq{gPl_b{1870rfjtk4j@pee=GJqG^-Q*_7>K48jUUrf_Q_+;3L+uelrApk^$A&eP
z>wi!3h-IoLjD&aI3*lR*+V97tmjMlSCu&nIbyo2Qy`eK)G15A*NiJ)dpQO6TG7R06
z#-Zx^ap6uHU7?$@a&Aj<S=;=%%Ww)(E}~D~2*<r<pPMY3G}(ipTyjbJK*dg!slS1r
z+nTkn<btp`oRop*grDs|6_Y~eT=Dr~(YE$~^0;)6RZlCZfUL963rks7el%S=yb|bA
z<-5q;^vCf1sJ#+Y96ghiYb07wpxA+b3YYRO7OSQkD}WZaP!Qb#C;uP5&O5w{GX495
zU9o_OVkkND%mj5cnqFMXhEPL73B|USLlTmZa$=Gb2=?A}?Y&{cg1uk^3-*HOs#p<?
zU~GseBDVMQz2^kc-(D|&aKSuho_WgMD-S7&1HZ=zSkp#bH&xl-MC#5=Z5sPz8+3vy
zN*GjTyDvxB^KtRo&gRbLt#paOpq=M+ce)?T?E~X#n&>vf2Xd61qKn|G<baVbi`5X<
z9L08DaWBr|Ia0V$m*#1S+C~n}Jmhs(xz64HQeGM31OoexR$jTR6oac$$x_)()Np}-
zp7@MA`|?3$6u2gcyScgpBFKpnY7PPHzs6m7#-JJyxWf96#*rF5Z)tlFKQc{xbwZ*}
zwI!5KKzcX@WJCogV1r~1*n5612GBw8_?uok@J3cKRVUk=IXg+B8xmHwS2!!!D|65e
zOhjM+dbH|fsXG4Mce;jEgXXgUg>^`R#OnjJ0U9|aZr`K-N^0=#&@jkIO(Vxr3XxG!
zcqGm|@2j)i(gA}T5l<<WK>sC>Rf@(<Cp)TR&EeN2O$iDB$p$Wc<<kFzr!O4zD6-`w
zviP_Ol~SU0${^QqssGo<$maQjUB&snEX|XF{m2ZK2aPK59$M_KFU7!0t|pQ&u7k)7
zoh>Wz&#$<ni){>F3I__^;hjS7+t=Lw!=iT*vk@Tm7*t*Gx;t*fkdq-Ru&3sF^H#S|
zzoH&nGDJxQr83_R-kxlx%JQ0OD(_J}I~NN^uGf1=@WwQh(a2ayxAdqV1KI8MtFYj0
zY!<+;=&c$P?DWNuza2X*>WI{we1JP9NxLf1{tf+*atdOc{AZ_xpXAeKhciP)Y>yE{
zY|T=U&|!H`C)_8S4mw5ldeS1>AvP#*UOAmGSorx{2SXZda0Hn-Jwrs!=Xx)19#kA<
zL#1)c>1pOA(rmK4leY<m$D<h)<)Ns^@=S^?7I;th4rWeg1XFR!fyOHW)3rMWXB=j)
zjK#CXbnTi9f2r59Z7{XkMy!%>`|QY3WitZGZQBOfwb8H?&sLseNh<VaY#HPpZa7m(
z-hpi?pOSQ0-m{wqtB)KczBP)Hbk;|XsEQbO(K3Q&X0R>%!p-#^06XrO>=@3F(U*k%
z_J-9Fu7vMtEiqX|F;0BkDdE=p40#mHqK%TOK&jJ*s*m1!N$~AHP7Rz=1Ymk{_H=qR
zQQ5|O<rX)Y-c+Da+48p8P~z%Dtx;U0%{=dv``n4AZWyI-YBzYUVzrANbU&SIq<B~Y
zMXHt|C{7ZBMrxo}zr=m^XzI0Qy3p1msW4xzx5xc%;2A^IECCaKEBdawCFFa*9T_!C
z5J2F*r=tES)QOtlmiB==U?X7ritRS9DRi5bHg~!AA04crKl2pK{d(J-?$P-+Fr|4m
zkzWlEWEF*{h1GU<+Vk<#q8bP4{>|Q(JZMh|D2RfliEbyF?iRPt^MkFCDl#C~sIZ0M
z<G6??t_wCf%32T*Cr=rZ2_qm4rRN4uoNEt}?1{c2)NouS!V1qPTsLq%pO3)26jrW)
z5AVgFoEth&xQ-{PJ4X9YIK7PKQ<vA#pM`jRIiH?d=@#u{*o~G-Lku`57!Cp<l0D;|
zC}D`8p3XL+<-6t5N=<~lK2NXz@GDip_zhW+6qJg5IXPJx`SL^e>E4Wh%;*LLxyy~i
z?`ExcO&8g$lWSTqj>uD{Ma8wKtZZ`-^;_?*pTch<A*7?K#(px4?#(!DlAhPJ!X^GS
zWKU450x7g7h=zcI9B=tk?n>1c&i3A^Q&ttm8q5{IQtu~S)tiI#4uW<xK<s3W*Rp_X
z7_=uRIUMOo!7vb9)RZUPXD`^}kt%AZ@O=%*O1Z}Z*Y%<e4YSB>Ucm2v?-Oq9OUzHl
z`^fv-Qx*mSHgJL4>NWc|#D;j@DBqCJQ*_}ecj+@Wgml)16Wf+tBpq_xlkS|S25l_8
z!p33C5z{nL5Kc=EI2H6qY0iQO{r*F6<#1oUEr?#iNk;9G(y8p8vU4=a{VQn|!|6RH
zIB6x6cw>^Q6wm!e2VGy<^HP!;(E9MWpcY$GhWEz?8DIVF9jQlEV<;>)L_BR6N{IRZ
z$Z~*KMcsDrpsvL&Up{CKoMwDA9&jn<#oi$c!p}E@;o&o%v95#GOQ`>aUjGH*X9EV$
z;S%vpwu0|c$h{%Ag+FE6(~(hT6pxXkFS{)qmB(W!7NokmZCYn7FVHo>3m1kT?r)Qq
z16y#U0`J-t;eOBABFfS2^eo5QWJP%1@<H+zR3ayu`wDYz9uml5!Q*>k=_GqDF%wsH
z1FzUos8bg|L0I4Yupm}2<VHR=T*Wyg^FcmA`j%ji+Chc9iZLF)2t2MJJ4UVsMVJrV
zYzTn{6zq~ejC!as&dwVWtovZF9`kz$R-%qKG-PG0Z&+$W<@i=n*`V8qFK49(&wk5e
zs8eGi*#ehmGW@-OTUr0$=^yM3OgQwjN?@x|A4h!IdEP_mLG5=oIF8UZ1#3o&U<)_-
zf%iTQ5iv|*1VP}5p?J_n@_`rZq2fg8U8v`X674I(@@3JFXCzHhp`wx)M9YeB$ybA=
zT**h!Nq(ZWqQDpo?#*8wy!TG{KL+Lh`u_9a;&(%J7?BT?7Gw#}JF~)VdBc!LN!B=o
zUe~mbY6IdqQO${#oCO9~-srYJFk3$v&k#>3pO@wRa#JvLRJJa!$6JY4g`4qa2G94V
zk0ilYRKSB}AV|f)gg5pGOYa>lra{O^M~(XH<fy++_kpx>f&A8~9)T2eZ}?=I4`u~d
z^dC3}EG0yVR-ZUpm6HZYVAnV(+~S@=)_$<21M8Ia_DjC)(;9RDs_3K|ibXbc(0kX`
zdC(XB+|blO;!)7Uund8(G&9N{ksb;I_^5D5$+YwUJvumapY%u3?hio;meU^FFt!}d
zeT!jX+PVICbTAp6J#WQ2|C+b`g$U}48au!WVs-P-VY9u*j?K8?&LI|YY~d?N1DI8j
zG_7t+*9k%O7lYJyU~(%BlT}5DUDA$(wxDNlHR=~#lZkZ(S=PHWa1?G6i5go+Otbp0
zLWpv_?%#vkGJWf$z`0?G>M<bwX#^xHD$854i9h%pOcX_264Umyn^ITb-M;f53T=q^
z60<^(69Q7U{Ng{JohJL=aQwS!t!tf@R8ZsGpZxK=nSo<uE3p}znc6iS^`ZY%jXhPn
zJN1afoRQ^Szs`U81RjGwY91G(4O1-**kZ$Xi#K8hq>(cD?ASVf`@+BEOMZvB6)P-F
z{ql?$&0Fd}slE>i&!Ko)t2T%MGto#3$*uf^%xVh$mL0k=F&kV~cKnD}{ZU8TTu);a
z2lkkYBR%kafA_t3T&RXFv+bzJ#>X5dyAP%=xdk@6+W+NjwvFU2s{o3>vchuI{%`E%
z_I!-&(|QUqrSaaR^I1ZwD@7aK%+VR7GTgTy{q>!9wLTVAGG_A%MmtVn{6PPguhUB5
z(7NGdJ@A=DSSX#{PV^uDiq#=0V>%^}wyk~5w0L96MpTY%R(5}=LZ0{I;`D_-W4i`j
zfMgjbsH#FqoK=1$U9=#VvMA9zj-VNZv7L2<|HQG(O#F93N<+SUbn|}ma|63~h!_2(
zW>fZ4=?Y9b@OyvLp$uhv7^j9|4~q^6I|tW%aDo4>?4PKFIz$w4cC1{%*$dJi9>k7u
zN>LzylVG{nzyX2&xBK(Yv~`iDLOe;zR!H-3Sxfdm$A7!gM$5V>M#5%b{xpX?-ya;e
zJDf-<UUb9g<|mN(kF}MoK~lTl@#lB36#10fTE8J|Px;D4-j$2}+uk<Qwfq>mTQq0B
zG-SR15pWAgmk`^qJTho+WI{yM#!(P&MZiV$C9xbQ_8?b{Z5nW3XpF-52`R@Z{phZ4
z>pS_h8E(}oOoxpZyTDt0uzz@)Ey}JjS&PO@nhg-X?<@XAFWNO!&?sv;F(zHh{W}No
zTZpb?E}1{MnftHz<D2rkJP~%C2T62T$>;jxvUwWeQLK~~ghe$-bnK8`f7(1iu<{N6
zjSr)@>#^onr~Fz(T7v5{{O3Nh@0qESP}U{|Y-O`2`r01l58jd&5fRL{Q^k?XelE4<
z%u)W<7=QuVVMHDgGFF2ONmOH&clK%i!7FT8fHNSAO^k&QiRRt>hCg#*>ejhd$PVDB
zV6s6I{iD_XCAE{X1mI2t5+!Py+ksB%`4=KC`$xaeZ&C*PwwhT@^{PE8JJ6gr{PcU-
zh0>Lf<LnSBzo8~K$d_k5+$VnE7s{+o&8Bu-3bZy?M4tMNuU_ciAeT{U-e%n5Kq)0n
zv%Eq7_0u1-AzfUBd=x@Hxe{6votj#yjQ-31)-TzwN-4=GD+dz;i!<KwAAuNwd*fw4
zp>GY|1<t3e*8gt=#uZR`;^Xvto<I1Kza?%NEs?USGwiu6E=v~qrwFi6I5^F2#0m;O
z@@eqx={Nj;JQWSeK99MasrcZ3-tljK=6}3`di(AY|M_UU>ig4@kWoKcf@Ihi{Q+_`
zp;NFwPM*S1Szg-}{v$0$_e;QTfD&sIAECk2R+$DJBN{s(T9_~gZS7Cj`|_`~#V~Z>
zXca(;rh-Oz{`i%$53{__pGyD7;9Z4ArHME;eUOWw_3hGJe|iA|RbmaXGU5l}Y-E~I
zl=4LXt<UUprRxFj*36C?&Oy=1`QCq=|ItcTX#OYhr5@S<K~f4ATXQ?RMIuruoBniG
zl=7{}M}T2lccg<rYv=Bc@z<^4*VytJV{jkF@!i5=p&9!W`Y%0bA44qDeW&R0)cPtc
z``REeby?o8eO%Wnrbxjwyd#PRg)%f^kL6_1L}@iNU<sQlk|`%n=olVrO;^%Ne^+L*
zs^L}Z{Lf>|gatwU=umqZ$i*SIUzb1AH%DG&Vj7Ive8ni<s>|znQ*ZGfS;A|P|F$wd
zJuZ(`mfX)*&+{*M%Z8wBC_lKx46eZ$ej)454$u3EW&8rdh=W{h4eSRcgm6(8jHZtC
zHHD{L_@qCwiuDsp2fd5V0`zE{PE0I-q7JON-pP0PLnhdd#DuiHO4{W{U}s%-Prus#
z;1K)46dGM|dt3t;2*tn8-*+kl5TNBm{o_&-;60b-=j?3$9RUf>k~qkvX-ngsa^_Of
zifZ#ay06#(TnL7!1W!3bH(+iKYF@54WR8DebPSUcCe3IPsCo&pZHNe2`NXt(v1|RD
zMRxjdMYV{cdsenL#CNYuiJm6eHzpEHy{a@t|IDk$MFX6H{O=}c{JP5jp7;ZZ>Ucz!
znp&B3W$B=k@>4}d5{>@0TEqb@JQ=ybKe#R0dy4p0!Jddl;OjH``kiMPX(6US$<8oH
zuC?nNzc07J5fQ{IHb;xacE(h)^zd8!7ZNrmA%pxilpP3?Do7nX%g;ILe+}h$n|As%
zoD|l82Pq(fIjBg{0d4*kZy1D(OGbXH5j27_af|TN#r~d$+l`jA65uSy8p@e>@T-2l
z9{13Bnkg*TnG5*A9phN}NHZUN=x_g~v1R;#&~rnvzj*nuhW+NhTwuQ$(@M#V*-1I0
zDP^aAe>d%89~p*N!9D(!e<(Ayg=Z=-miw(w$4Mit6j*>HKme4kL%EXg{ngj7yA)Tb
zu4zG-)Sx1`*Z$yNu8yT(mLWV~g0W@pJN_GhB~QyS{~16Ims1;2Gnbo&N6q-&UQ%`o
zu@oR9U!r8n68}Z|!2+op<B(9%3$OFj<ugs4mt+^UdfScQoM93l$#AE6UYB3=uAxJD
zeS9?lSFCi_Mg84A%Z*Bv67_00MY1UC*lcHa&0<?eB~qy3Ehr2Nmezmm_oHQ7M2Zj}
zus7!v%Cb3i2X{l2f$sbA40HK_!+AgZrFm?YOc_$aiJYgiEp+qvulzM7HpwuSV%Jtd
zVkc`=3pMNy-TwJwZ7$%VnV18x0Ab?l?cJMrY&p9BMUSBI-dRuhCwyS52Iq-=YEH6K
z^c~jM@|@pK8&bqQ42Qr3PKFGdLT~w_{=2)|BLAY}h=wfv!T&VJ7Rr3HYMN(pZp8i<
zdnc~)_f59}%oO<5QGFoh6MMPM^6Y6v#H|Df-s&%X>%L3z*?7JApH<x2o43;66tWDi
zo5rRP3TDTHLj%{3{S)$Sqj(;5Dx7e!w{C&I*VQ)rc(D&Af$yyJ+gS(v5!yt-Rmr%7
z^1zNC>g&b}G*J^pyumIAE$*-^@1M{5{T4AhN`MR^_`?MIBs@OxdDNg+aD?cB1WBJ3
zEKdtw_A}437pBl+Fy3V30*NZu>$TiJ;9DC}1rWY~y$9<=;WGcq&w0EtgNLCj2>6l5
z(wA+Iun+hHZem4^G1NX71^}kC*Yke&*R-?l=#uMa8@Gbml29aB8N6ebd)E4jUt$Y1
ztzQElKwZi53ZC^pe8_N}{_Bbd;p7O*qG8So|3k<p>w#mMGNgjw-jnGcs_9>(H$`%r
zVtkMfwp@^Y(YFL%6`M*0%ho}q$Ub-pLP)+LSqw8qe^>j8t(W4xZOsUlV39F}Lhr4s
z{09-R_?F_95?~{EgdYi6<mv+dl}gaL&>Od$=r%TnGm0&I=ik1qJuXiW^$YY$)ybA-
zb*{A82*nkZM3lM_4}>P7QgAtvH;HM#?PdR@*X)O2)HltBTa}oiDHH@y?1J$4yb%$_
z^fbmHW>CHyD!&(c?_cBh{)~-Klj+xblO9yc%4>Zo{pPiHN+Stc72qL~;O>4tec+E9
z4)6b?bmnYOI#m=?S?Q5@N3GE;Z>Lw%Ut@9(2*xpiin#Kp(HSz!+hVxCu#CIhsADAM
zWYt}<ii?K|PK_f3HN{D<!I)^(fG@koFD8zRGZLei4$}u56$N%mx4(rf1jq+#(DyA0
zCCj@t=GR40C@G#w>>W(zt)55|^&A?#+P~^QcDa+0Ng|aRdNtMLaUnNH`lEkZvoYBb
zjR>=nuuw+OpD~`Uul9GGWh@gzv@!sjq%|-GI~^SNe{W@j*#=@`=;{m)K&YZH%;9DJ
zagt{u!2HY5`i1H3-<bk0F2Hd$>H?wgK>61n`~O^JSHBT5=5IhovXVFGO6Zjkk0W05
z9|9UUFeGRQxy1M)?~`SIxY$5&6wb+rpHU*C&>Pg{XYTQTV6&(PHUVW4)Z(q^^}sT6
z#)04Z?OP9&l#VA3)+i{aoD)*LJKaC(H$JRDmuZOg2Bj&vK=FBfmikAHwuPB|Ur`Uj
z+2N0DOm+Z*i29JFD^~bJzczFytcF_yH0jck?JfGl|2c=ZMSYOdddweec>l%eZ8Col
zX*i3nR^&7Aa8_@(Kv6f)5{!YJlDSp!{k-@6{Y53I*`t(L*(%_|4?dCpoop3<qilpi
zdiOq+9v_IRg7E_oLE4N$3IS)Po^zo8q`;Y0-HF-F#A`x5Pz$}1on1C63BUNOklGl7
zVtk{eAS@oa#9yiyL4dwK(j9~%RB-O)-rL?*&PJs?nK+8op4`Y6{PB<3_Xuo?tWmJ7
zLhp#at}lu_>nL4A71k=$P<Rovv)|5c?whudk${zy53vh%)tI!<_s_P2h?Yo`a*IDA
z6A?enbWR361`t}DKJM26(QP*(ZHu}iiqj#K`1_OnbAGXfZqW6GYD76Hq`(e5-@EZ$
z|AQ1;0_f!IMf3$k-h0oV@}0fBv9YGO$5_MBjYlV|CdieEC@Jgh^PKISfsHwze9DhM
z?H}>DO$9o)Tgn+})mh#S_xow*@LXX?s7|ZZp%$qI((yt+_uHXH0I-&bc1^cfNU<T{
zz1Ld*v>T#PWJt~|WmMRRhGcnbzVi<!T1_&2V;s#m*^Z8nM28z@$4y*=&vzplpc)5N
z1RwHks}=tJHvYF#&oP)OY{m0t%}?L9@2)yx;(_pX!Jv_sIp6Qj_4|FpJcV9aP1|}7
z6thI3x7p$T!JW3cl1_9<w0;uZh&X=9pT5Q((=ADAeTuK8LI<&Uat^zG>_5Ai%~)z2
z4Xu{ILv*22{X;8xSvXCGQUY1PR!q1bQ=fUAf5}Oy(bYJgp=jB74CyJ^=|6L`4Wy0{
z!?1C$$>NCFki8tQ_Zj}DbB&PVXtO|15Z!`@OK<frJJ}WkX2pBLRi}!cP*RHhpLm%+
zNwSXF15&7`T~W-W!$O6{8@+9>@)tMRuRxbl$_~=9m&i7l+3~aeR|%*F*cd^4j=<mB
z{sw<x1K*7}qDX*}>Ala=PpUF=CH=tLtLt096JgLBkNIP-<ku-(powz>BbD(8w!O35
z?;<1>n33(ju}1t}p7pYC{L^FhQYkzab5rUvrpjs|9fQ^rpZQlsn;RGJh+`eCinc^Q
z2Jg-*{7%V1*o3j#suBR#1lS&VuK&_0Jjdmhpw0$-0s(>W2w;8jLjU-O`J%XF)3ikO
zH#}FH(U~v$WjEM!34c;MSb3h8^|Ie<E{`oBMMec%qLC-mdkXJx{C8a7KMw_k@)3&+
zR~8HBK!%n0E63R0CdA2iBp8{J()^7$tK_5mAN6;A(hj|pwr$92<oF=K^m^DoO=f>J
z8H`Pi!%l%BQgi|6<ZJ17K)yMX610hkYmBK?vu1)ek#72L?{<4HWfqE6#<gz{MDpC)
zS^l0#033e_t*<E$he4gVm@oXVBf-BUhUu~uPD<f+=tS0s{{DkmS`k#au}XdbDh2>2
zFMj5i?ap)JM0z6C8xaP;MKo@OguXq%&zr{&Qs$$csA5bV=tR|YgT!#8nh(F8>Ysoz
zCpH4FFzHD#+#C(2{w(j&XVO3U%DDV6MW0qLhqB4Zv)AYTZqM;rO3^E6#u14Z!07K)
zFZfrz!X<D~kU~5jGg!4!x4oYSx-HuvK(;7xGNXCr{oU3IfY$F@QH#MP8N0pdE&eb6
zH4XtBr0gVg1@7lw{)Au4j$6~LJZKIDoM*8IkN5kWW`|-z?(|kvQamt3>72B$KdXb0
zB8Y{76v8-s`{Nzl$5}i!KUiauP!iH$A<pmn@0b3$ImGOCO4TMo2yAPX9*%gD>lH8a
z&w7=gX;K<e^a!|OWV8y%_m-{oPt9O<g&v>{u`jp+8GFaR;_nOG14ghhOonaUz=lGv
z=hXTy-X7fr20>B7#uyeT0UdPM+yC|S10*vPd8B(FzS%hYf&8roOE8*16OR1JAChJ?
zzPx^Ryp4BJSgC@zxvNHxLt6bGmN$$`%7mNizsPY%1XZaG5jh6x6_HKF0>WkXJIL=4
zmP;j)h%Efa{>Ei}@{GSkc6sVr;t;|=2HVo}uh;k!5AQK+AtEL+JEWGFwoWhv6^`%l
zXS~mg(uiu4CXY~#KFeG5eEMxG4f6i%1W(!xu+#Cn|LlA_cW7kgdVtHkbf>NIUyC!5
zOnaP%%mH*0%kko``iqkMJfeonl}%zM4shqjH~s6BUP1Ub(aE;o@w8Nsodd!D;l=)`
zf7q5L#AmPJE9#k0wZbnQk$Q;8KmxP&NigNle%%o~Cl7>N9l~b_y-`qoE*9|u?;j7O
zFWV`i)beSGpb>WQlAm*{?PJ4z#tb54WkPhN-X2v7d%3pBDa+ZPE(oUVaX}QrljR^3
zxqjL*v*B}S?)5+TnPkI=MJp)9HaBUFjK)A4c5-j&S^g!T@OgBRl)#2H3Mkw>=1-2|
z-pQLGtPn6VNSmOn6?LZ|QEQc7cDJ2dq_F7Q6-X2&gz*zj{gv<i<8d|u4^U!ADpp8*
z)kO54J;qK6l4|SXr~q%mkG*5xO#f%(5gY{oDgIIjL*Tae-{t<EPZ{tcEVb6mSYuf|
zgkoX{W=TbA{L$}9e?B@R0RDG<vS5QgStzC|*5!G79^uy@2Jl&W04Gpcl^5bAr~02v
zj|_`R_1%(wL~v8wuWGl0V$maJP(cB^E_#mlaUXx=HVohr_)~e{6O-b#x@1^1?YA!U
zV-a4AGa^PcE9{Dw4RTF|oC9e;)}K`<f$albsL)H#@EfHKW_z|<qudP1tl;(aSAA=%
zo(PkW!4!+ATrN}2=y5<+uA%4vA1^>+_4?QO$2J)yo~+ayQDNxPe*N4X)9h+06SHJ{
z!qAiDrElWCl*bg7)}Xnu_~ux||GoX)@+@{qM0#6GBQhOmMNrA6OZ_b+3ZcvqrUVVf
zLId>Q@|yqo#XKgLL9qzHBGTngKl;^uY#rdZ#rcrU#Y)EYb>~SgjPzt!dgMDHM4-#R
zb%mX*Nog{kWl~3@c{y4;IUp1*&i9({@eh{ts3dO6Qb^)J`YG_bj`062Cm=?p$f%6%
zc)11g5`X=UPXwICu&IJhYJ!=~`7L?V|KVJFK3?r|wHcZD8b9^diXiLfW|G&>`NS9R
z`fZq@5EVzX&w>gzsPdnh**>|s8;gh2ENPHUmFj|(fyTYp`R|Fr(`+zGVL}i=DuvY%
z0z@~-B7fU^*^AhDEkRVmm}~|J!(AUcXbvO!SgG&{L}FQGeZrU<*9iolJ=g!~0{aPI
zh#MD6l_VQgT>kM9KSL55R!`G|pugZ2H!dmk6VK%%Lofp$jhiql@d(LZ@T2z5W6tuw
zsbkg9W|J}`6c8oTwJ80|&j%RtC>&AeMHx~^$Bgs*ZzC5#DGqlo3Rx-3%h|?1T(Y?3
zR<bkvL}-&3*w(ymHXsIMCc*wk$vhNl;?`Qe^z%`u8L|8;lgUtfNu#^Ze?clBp*k3h
z<hmq{kj7q%{FAQdu`qG9gd5yAQ1AyY_FpYX>HRV!DNccqe{ac|{vBWN^NmTLGE07U
z{@!FG@f<9c456(NrUF%YDaRjilMO)x1XvpwB#b{2*;ow4w6naM3jK>tv_nU7kX;1g
zCyn>fP22~E@f<TN*qGw4qn1OGl}|)+4Sh?#@!!F*Bn_>#A%T1Y_(-nZ-gCEMy%sT-
zx){l6kRci`;ygXpAN~_BnMN;CT!K0bRiznro;Pb}cR5>PkS!t0M>&bu{V;B<+sUQ9
zYYT$?O<RuMsO@s1L?}P%uUDFn<rp-X+ZTdHLX!8ym41_6Dw6b)ss@7soxrLn7Y?96
zLQ$^Q@Q1$~;6lzN)UM+jaR6jAIKcP*#hcsFV~DccOZ0a2?auN}>+6@k#mp*NM{s~x
zm2ow4TVz+lk8#(>{!<@CRxGX=WPn0T+`jHe|2W(<2FbFBM&7j&%o{K}2~XZzasN6f
zJI63=InIp8<6eq2HFZ!~UfnLvhqi)fMs|(mZ7>HbRO8y8{PT|I2gTkPI31{~aDLog
zo4b#-A?PNBY+>8v8Id-!h1<iyvSf)$`4w=G#3m=Ep>kuC0+fIL+MnJ#5(5*>v5`2q
z>J@kZ-VzRfl3%@?NlD#{w0ttiP_oDadV5uLnd14nV?oC^1KfAYEiLj)0}u#chw>Eg
z6CTWS`jxGZtc@yf_FT5V-&S@5Wk`;eWJFjDFF#f6AM$ZpqvTRWRjB$Wj1CI!mA~%S
zw+?Q!&_(E@YP>)+_xp#x>@uFRM`&FN=5W_~^*6akiWrDWbV6=$;ud&^m%H|bgER^8
z#ncI78v1!)6)gAHy<_<e)J>P%OM(OB!TaDix8zfPpGz*x<_j?35ibfMYQphG6%2x;
zyeljH<Tv)F*@F~33Uck%<j&+h99%SdNz@9Yv0GCpuhe<_@axEyNk$53Gh|>Rc#QEs
z_|kSap$4Y{8zeZZMKY0!(?IT*@9VF<*4{i+F7J9(WTH-8mUr(A|K?sS3!hVcRU$SH
zdA&S7TfsecK+nG8(}JpzyH@J1LIYsI%$Vyv*6QAAv=Q+x6d`;~`Ce{=vjUXV1i*Kv
z0MV$I)0HEGn@^=g6<TdQWy)$=`HHIAE2hHR<Cx%ssT8TQhO)`1+94Kg%;*;{b!rsG
z2+^SG?lTiLg_bf3fjW1kyRX|SRE^}&tyrlNg^IiZuempAg2YSKWV9~HD<mDELw(le
zcBI@VRB8k#(9;T1IdY^D9DBb_R!OB<0tKyu3YBn?opueHC<?}O<WbW!CMq<BF$Idc
zS&)-wLx<KAhu*#+HX8*u*SqU&_q@t_<APK5!Kij3RR}=DfnU389<tAkQ&n7g_o=)&
zS!6Vic+|~RF;ya~lhvs_2tpDNh2p<DYmp3xRW}Dhy^EDX-SUh}b$nEMBnG59s{)T3
z5oz_GPr9e>i4G}2eLp)T^@5~X<r_}jpMffzZmA8kU5vGR+!^e9n60~{Q5-(1aL7f0
z0k?nWtWF*of$H0-zF&nNh5nNrd_?83tvb2tV;6bLpLEuJT16Ndquuj+YBEsO)q0{6
z=%D(fslz64i`>CpL4Or6g`u+%%9v5x6WVvy)9$*cagVC_q>85#o(|Yfe$MT#>TobZ
zGD@gRq70>MkFGP|yKb#=ZK}Z%{d&RG|Gw|`+`$G$sW2IZ%~BQHDA)!COncXzs8Y{Z
z5!*?W0aqx3M`s=!*I&4w)jk*b$GUjYmJ|s6zE@DF23Qo(jEX%XLvdGsJRkMg0|wVt
zN7XFJwc&sUS=U1WQ&hr?LNsz~@_gf-UU>1Q>C03o<%X}{Cg`Mx4=)X;3_w&GGmGbU
zZWWvv70u;<tMTa3tbk5Dh2Hv%Ap3V)R5>LoqXDc-+1`@h-8*!b0_W6`4C<ASU_|Y2
z)hc9q;Uu1AdqJm_?G=6C4iyZm$G7^|r2vwIEQlA~%Fj57&*0jzE^!R<y4C&%K~dSM
zpl`+HdU|(*I+m!0Z~zQgy;gW|dyQ(|tAK`piGgQl+N5+50!gE0ZPqw>a#}F_Du!TR
zJ-s{W6UTnP_`{t`{b?n5(qa)>go;<_tr=l$;dxp~W`Jey_LLYM2~B{IVFm)t4h)8?
z35mMVvO_E9$@2NiIh#f$TWMARDQ!@fkXT6*Y9cam0rauRdu~ur5*3LZP2I|<tSc3p
zi@n;dqayPu8f1lVX@rB)K?i3wD&XbvwXHpgPE=XOI<j;BpiX@rh;gv=t_YdPM#k>M
zC8b9#(`X;iL|rX3cZxGBGm>wqr8+n>j4tjyJsYt9QJvtCfDAjUMqCf7QE0I4R|_YA
zG;G=wT)*D-O@leEJVJAHJ1nUO>>Ru);()io0>M>LRpI*7s@!$8J-0&aO$odbQGOx4
zg{{>mDa*tFViaVrdET@agTsHY-%kRYHxO2u<KeZX*Qd%E!p&g5=q9Ma%Kmfb1^cSr
zJgx}jBW9xHHt=#ouxKeyX_q6m!U3pwLM{a0)C+<S)hSBmS-Kdui*l3k4`9<DG}W|5
z#KfS?)`egExt@yO0(lJrx$H#oVU*FePRs<OE8kmmG*@)A*8^-s<isq)=&~Eyu8A|(
zBvq@uaV_COh(9^%5oK*Jkd*5i+f^?q8+QuzIpzc>p3SCBZjb5|tJb}z_E9<B{Eywc
z^k9V$;{A&a{}od~#HFwfVi8_n7F?u?pb#g%MHOkQZZ1_Q%R8$f*yV1<kXTSpmDfRD
zK9IQMoZv|HS*7MFfdR&7xG|CWyMh$|#7Ivf4yg`EIbNSP-S})42s5V2E`4u%$Rn^;
z=xw{y-Joi`mRE#_MhYt@J@=U45!EmS0o7uX<77<PNKp}MxW9GHQEiF3##Fmr1bApj
ztRpz9ls7e`(!^?ELLGmMm}pltAm46pTe}Kdauk&A;+o6^Ku>^F%W{f*wznJZ(F%xl
zQ?vEee?*JHhW6)#kl8^M!H;YXfh_7xK9l4nBt%M+!z%af=>b*AeBcAik7}0A&kdGc
z!>!QHm({5$5(zp;AQzn!9Cib<DPWH~#M42!L|rsSQt$4$!HnZ<aCjW6puq+FW&XWU
zpAz9X?TL*wK+EBZbY4^)VAf{h!c1{;gjdNe6an9*nxSk@y))HkF0)R};l!P^8dyt#
z+JRfw32YKp7hfVw#FC)=s7h<o18*^Sf~B~|`sbjT(e{8P<wmGgY!!G@<ePfN-qg*5
zwdb&JZdJ(Bnt}wHtRas-JvJD*4Qrx%k=nuZl!hiAkNO2wL3ur6l9N@+Q|4qDN=Fq%
z-R4kEG5-SnEFB>Aj;s!DzSQ=odv2#OWfM&!vhr}Is@JEs#j%WLx43nhds=O&g(?MB
zt)=;&@JQ%izPIhH;38`2vjEDninf_N7x~Ls#D{c8;nr|^f%$eb94)<-c2}bqqJJn9
zSd$s2Xo^h6#oi|IV6dRZ&@O6E0uev}!{i3RIJY|Z=zbd>tuRnEToK!*Rdi?Y&m(L`
zj)9Ac7Gd$Ff0PE{NQUz1zlFw-*+jcGk^*4JP{7S{f_bW6OBtiYGMK8Wp(vDZF2!bN
zftqw>twDsw7DlL%O0Exhg?m*&$ojTvqFD$)5cv5MgJ(~$3x{2%>ikQf$o6*JEO=>K
zBSPbeU$2d%LW~xL-VT4be@A^E=skw4YbA|oTn}T;IV4yWl}O&Gw<;a%CI<VSZ=a94
zc97mIf#!hm!3!7JV~m^}79KOmE6r#tg6GdOLMrRB)zufBz-|cn3my;dI)sfQ=p-c>
zM#Nk;MJs8nX1Vaq6zZnrCs33tqmf1I20kaT4ag$5k-DzZZ#MbK9jRu4Ry>$|U+V0t
zZD_9d-tX>WL~!UL9@35oBOong4T&+)72{Ft5@Tl9)u{G{N>#9_AA*o}UVk4zsEh^%
zpn;M!YF-ZjOM$BbCn7MP-pq2IhPTFPMXW4zqN{VfV?On3{d6UMR&>sgO&3)-#?rc0
zx-&8?Ar$dVC6Az#F&w{*@3^1xNk-1*2*?hr?~L&^YI)F25OD-6i+9=%;n=;M{erKw
zH6<X!)J3CD2eoA}O6|E_xOAIn{C~{=3`H{#{SP-K>>VEfk#v?(M`m>lsJdqRpkfp$
zeX5{LVFi>i5?!;s2e%0x7(S#1nPXhd%oYW;d3_;uo22PcDN)|hVz67EIX{@#+a8yY
z+>b!$t-3Gxe$B3r5)gR^t!3Ml>sCnUTejEsZMbIGKGObWX=x&ePDTq%EeJ$aJNfs?
z*CTu5bW)8mzA3JfqES$!LH@Eg(k3A+j7yRko{S&ud5PzT_J3waJ)1)CjH=-@P=WNK
zq5FT%LrxU&RzF)lY`0z3_E8?$1eC1Lqx}CI@4@DbvIXSPsg@aablPUndI}ptZVaw`
zWM{??Riut%Way;JtcrLP=TJ-_+dH{3<DLnYR8FcCY6}HhFfJA6#DJx_XNJi<#`3&(
zXnfGHwz0ZROCr!Y1{XdrJ!4|!{~EO~dV?~kJf|;?Llq%QQB`h9rQYGljEOBnDoQM8
zrEz8gz!)|OJ#}P7aPm$AC6|`gsG2XuPMgSm#ujSTe4qZ>T|NhR$A}3qQMya*&@6%R
z-a~@Vj`lSoxbFCKv;ZTI*D^N9Z1eYoh)u$HVyZdG)RdK*=i0s`%U4>4HRA&aIY>Ug
z{cY~Q-8Mq-5oOsavXbRJcB?Ds8Z-yYo|NQbR0aaEKFiyyU&aov+H;lhCP@(mE!WH1
zHsit@$!Ucm%vgtd3IKw`XT>tw*YaDOx%kzs1QVhj#(>!Bu<HQwWr-JELFmr(8Q3tG
z9x8iW|BSPqw^v3Ws>n^GH}IK#7S1TMHz;Y|h6zQ@4G{Qcr(C{s#+>=Kq!9o?$LF<V
z!S~KM<9>TIs&$>pvqHT_ZjrG)D<{N>gP9SBS3}~giQ3P7hqk&Qb09~<lC|qPl@db(
zzkKh)aOiHorRzE2aBb^kSIYKI*nQ~KUNKEW6_|Di1md8ngx>pohxWQ<$fFo3rzRSA
zgQldA9D{ql*VZe1t<4{U@wkNJv>gMi-tTL}3udM1F=hR*X9E70{}}GmYL94QnY2e+
ztq$Lg9!>68N5%~XXYbq(!W)|GXXDm1wk0|}?}cxAepOLlZO5?Fs_?cW(#}Dj^1SC3
z`rX$J83D44=0hlyI11|3Uz$s;{UqG#-1J8Q)=70q%D&)CQlrfkLHNrHq&ngt^2Y3&
z-scMUDB5QwCZt41W}-P$1q^bz9oTK-UGC!3{Sgufx|(P{3W*a|S=_}5i^5xT)Bo?7
zGTg3wKD;bD{eM?%!Y>@vTq<J&atLDZ)!#631p{u;EBNl%fn_Di^h+}Gh3vL$2a#rv
z>)gjRR)b;~&LRLQ6K;<03`H7+Rz}yll`hskNac`lMq;%c-`WX8(4Paz6USGU_ib-i
zTt%`hG7Lkt8-_3hKDE87Cd~n)#<!99i7zq7yZq{K^MPP1c5TAE32Y@zPUb;q^Pwx;
zRV7YVOEdn<O`+H}>`ni6A6#PwMV#&R7!)y4qQdj>KgKweFulTI3)=C6WI?ju9_FsS
za!?KAaxyh%AlswP47Ty9J5AszCM(DpV6fu!Aft~xn^aF~7>!^EASKq!>o_GiIhIxf
zl2%fUx<SPlJ?~cp)HM6`Fu4?J>pZXbxxwu1)2jIT*aY?Ml(!D)l(u!&{#3%?E~o+2
z(%Rhw?6*;Dh~fhf+}9p(FYaT*BWoIPl_+3MBsW{ViQ{QDGI@E6RVHexZ)jWtlF<>>
zoByyoHOod-`^Sc<t%Rou85Ff)p<9w|qoX?4Hmx;OgF4^%uxrTRu`sqej!8n<9oTl6
z?7pLTo`-NuA|6FN2%9eQzJAv=U22a<A_}Uqk?x0~Yz_T-r43cAuhI~Yp+k56*JWQn
z#H!#lAS)weOCW+Y=Xgh+5#IO-bfo9{RWvHP{yAU@;;V?3S$r~cGoCISJco;$ye?(H
zAv~Spj3<O{2Z{pp%pj%wf6aisKAM3mBNMv0I+6)x=<St}F@C#^rjUy?H3jm*q;?8t
zV?t{}St38(d*$wMz%Z7ai_L@-oqFrKE?*W+ZB7hJLng9-n`+5oXuUxF6}xAg{XVZC
zIzXH=8KB)G#$mLgLhtHv8FT)@OT-B9jP2&B<Lvhn!|7M?3U>Q-u`w}%N=ad+swvTv
zx!#UvhNrz34X*XPSC0#CTg?BYApqc<u!s0SoxR~17i?pN6liOwq-tV`y!RdmpMQiO
zV=_{cM&wosz9}L3?61Qg4zvNS(P%0r1IZ}`-riq^`%Qua$WKI{Z*lRc?%KTY+EV*6
zjHEr{NrkGaQ`tA8S$q21Q5W|dH8Txsjkl|My38W#9q7%wD}41|OjhWPoFOZkcfzqD
zW(pn5q<Vt`>^8Yxye-T;nWsW1YdhAVjC}q(;OdY*k~-vaiZhDg0XQJo!Pyx%XYm}B
z46Y#I3Zn4rq7eVX9EL{`86WXXbbbnp-=6W^<s6!dF{f^cC{c*^l^GXzGK*=oaHG^_
z74(^WHe5AwkRWrCh+;Gu;V#srJ1(5M1ut!UwYfc4%O}`@L?X;d>Nx>5{OFpD-ZS}n
zq4!*EqFua`B<})m;oafHf7<y^g@l2iqQ0o^z~H|Ygnc^gI3oI~nvy->--8m$rSEz6
z*Be1{>H&VWvLNHK0j+|c56;NAP!&6hJw%5%{7)-X2cAi{Wn6JOTPlQ_io~J!q7y8<
zIz;o<y31=?+SXC)f{-rn%bUahjNz#q#7HKp`=Q4x=7!shvkR%j^CQP1*Sgiq;UORJ
zTNMZ;YXrHDOU?IwstW(}#zxyK02+HxQ?=uP0HUyU*HA1vHr*PYHHu|pufVWl$fPd5
zE2o9uytdISvXcKf%gE0S3*`FrE`BvU5mLaug#}yyvH;3ik$2|}85h^sz*6Fgkn2?U
zdcvI<bI#|X0)Z9uZGD1PZJn|5d_E>Pl=eWAGw<t~jAQ;~&@+}knh|i4wwvb_zZSlB
zAwNctOjaAz$|QrDI_Bx{Fo8MTi9jtQC6<Tw(|^KIDw=|A8sJbp+>34tr;fF=w<o~)
zv|Gb&&K;==FDab}Oft*%Ug<qF(GN1rY7zTt8aoi!Fpku2I&}Itdt6CbHW6ou{RQ43
ze`ItVV$X*Gibns)hR^k?b{u+f4g#KHn%ZWp6JQYD;;lP5<J8%9Ks3mudv-)Z7()$w
z_&*tcT*&tMGQcazgYwK-=*sclL(3248#0&3IVn>p_4MxuSM|5k8ojPFbyyg_yjNZi
zS5>o9O!Zt2$1UCSv3J95|7|CTTxm2N!#vHcUJqY8)J|o19M+t#W%Rux{9+0}McJBx
z6408!K(73$<OAU!TiMb#+7X`j4LkbtF{tt9V=6NmUZ@Yw5$9&?ezDyPmTmg8tp#&2
zl0GyiOh6(3%C&&As*}T4#d44Uv3^kAgG9Gn@4SWK!C%^<hpFo$pn$yYmE9ip8_lvU
zt^m`J8Y-f_6njm_g-3t)=go62DOiBuOhye*1*VN@CWwfBj@g0tB{ThTN%+y`toiSV
z#6(8}LSt>H1m!@S2f|5NFz>55;duue8=izENEeBPI^SzJFI=}RzsDFn<8zAli6$c}
zd{q-Je}<*A9!Q<|A?wNVo|zHecpQ&=2$Xtu_Yf$&2AyEF%++{@Q0l#Y{fBOM9zX(d
zhWd$dwi(4F+o0I%KOy6=eK<&1tJIij$p)+m;2bfi@r?b3u_P$@I{UN*unk|Hv8h0j
z$%tl2u?ci>@AYvRuf}YELIKp6LV^8baz;focL^5pjukKzrOGWhDC6fn`K9qCi^U*v
zCmtSujBRu@nK|(`wflx!<#@%1hUd(*fsqOfMq$J5a9DWlNq@a&ILy$y!v0*dXlQ3!
zO;6)H2x-3e(QRR78Iz!!v&UA0a^gI&N}m#rFXWw#FP7i`d9f-uhQ$oc0%`iq^TNxw
zXW?pPg$QPg#34}RopE+J;vicj0mMcDFmUC1FHSbz!iqM4BMigc8SW6RlO4?fwUiCk
z^kmqy4>R=KsCrHHP}o0TSN+B>?hMb_pI@pdkW^L4cM^DJ4b6DWHwc=fW~9?vlQcpg
zyy@Db!y;rS5xi;+Q1v3c2W|{kci6Mab-20kxGBWy_$$H=j#aE_MzR5g7BWw1z3alJ
zNK+MEBI6EWSfQ6Iw;1~5XrKzI7vD^Z%1~m#Td^X1tJtO)*@+gU>4}5O^3qNS4|#x(
zVxn$cH;n>lxM8U`cVXDMvz_TA<f(W>5J}xF@^-#3yrzkHijcG-31b>`6p-c{59~Db
zUp0IjORThBV_=vg$U^T3^SKG|Xw(c98&Wq24t1Xy;cak7wnmOZs$mwMO>e=haK}aV
zd|aYEL0c(p8u{zx^TKY#YG7X?342ZvYLyTuK0D*CYD4Ww$dpYGWQp%GnkFs_%lg_C
z{K-85vK04Z<0UW?!hDoTdfesVl0LTYslat4AP|C;@3o&24us-y03|e-r&}_p_|&hF
zkb)q9#!b;y)B^9~O*6jFwRMcAyH0GW7z2mR7EFyk&C9qwGdfu1>X3|*>+RDXepAWZ
ziV?*OCAB;sM};@=?l2DtjJuqQI37)cLAS_T{AL(7+Bu9)uvNT+3QGZ2%G)!BOlI~J
zywZp9f5EG&h#Y!%xbG<D7LjaiqdWu)MAyMzmzMEzFV?RJ@kY8fO4Tj&p1nWZWCTC&
zK?G%(^^mrW6`K4Wb;S56`>&K{iuQ}PaB0Sa*RwViK&x*O{NZk)<Aa~EtT&JUu6OX!
z<cVR9v!lf4PB;~*;o08S3&JaQ`*Vv~U{23U{tv}x(jJPxF<Zw#k>Yk6_9K12XFqEH
zn`n|Phql08_bx;4ISiQotAq*L?U69$-#|)|Hv&QOjbp=plzH1Qv9)zK#owf_xCsf=
zywCS;_#(rL4XGGU5>abnx~e}OG&0Zo;Z`f<H8LN2O4H)tvrz*pCKmGV`d5O_uS}~L
z8O0x{enqo4fp_tlU0N})VnTsuQCwiwuyK5xCXjd442)_^nrx!^#~;i!td3iG$<de;
z>)ShH<EO{UmF?B+jVR5T>YX+zxV&v(#RypyDF4^0%I($O<Z%Vwlm7}HIbonu;S{MP
z8)QLF47rJB8k;34)CN7E42O*50D6He%g6Q&K6}(kxDlAtToWV2N{xMy@UseI%!3O^
z72|+s>fTv_w}Qgr7~<~WUcrQQya;<GYJ$RVSV>~&>u=C-_nN^{C<wqLVi1cgA0ilR
zNN~+Pwggq3AR#X{fmonU8S!OYrM2sAFEMOXrYX?|KoVvc0|~C~8ytSJtw2Td_)=^f
z-rGr-c&vb<mcu><Zx+1r2fsqGA^yuu>QGL-|HCitw2PUUicuJ5@B<Katp;Id_6o{=
z<T>G9P2_Z|@FC@FVvzV<^Mi#i+gc_x${$IDu69tmL-5-vgB6HK6*!7NVP=xTqHnaU
zck}Xw=#+*L4xcKLhiV&xP9Ct@y|bLzh=9Q0hP#P$y%?n**9XC+xBvB^D5{sGs(y#v
z#qTjQ6J^IaP}m^`p&8ISxGDqJ06~0&;$Rox>@*Y6#xD5iR{H`4<T?@!2p0@l*EGVb
zu4VHqY&4fz6~`<>tX2#?ey88vr9azCQ#)s4u9lF+RfzTO68tdVMoKsA1w&m7h#j$K
zFzRX>8r|8(Hi=YZ%>}wWT{?t}OQ*?Z<hRK4(zgzhV^}ljXZ{ZIeGF7M8Q#J*`V=R?
z;^>u)Hw1H(vV?%8f?|N8*u!*A_?&=ZY@Cv|(kEg}glQ*_va&heinVUhnfBReg5g-F
zRmV<K$aBJ7Ub=1Y;Ap!Us!1ubq##ewd&+Na)q38fFn3Q)LzsIEhFRhTAIA8ml{$@@
z?y-J>=uf?aH9Ob{X16%f2c$%YLgd(#K|Ig#%G4uG1y{f%?2|b$r0uP<gC)!O5@Hgy
z73)azO;G<-QeJM1hjX_Le)D)4`pk)TwhQiyDTkWx?XXFZSj>xPr5!a?%vK3UzIL<=
zE@wUfy+R4qv8jpK+Ae%C2ESaoS#VT@&R|z;LIOm=<Iq5%Q(I29H#s+0uHujeMcDlW
zMC^|CO+oP8jkeAyK&j!__*QO<4;L65&)YRvy$LHN_@4Z|D!a$*T;bmE-Geu7u{kH<
zT4ph1T*QzUo*xqI^#spJ9ct-8N&z#H(X*QcS$o-8qTjTq5T>xWD2DX$0)at&8H1yu
zN4H|ex64G8-ENy;{zO|s83d#X8fKXM=D?tFP6Xt@2x0qD&#a{E7Hi$-y;CnB>O|BA
zA4=XX!IL^B_L7*v;cCtKSuyOC^ZcOl?w-BaCNU8R$(|h=On;gIHOpwH`m;q!=F1Ot
zSKr{q5r7y14`E*{3qB?AE?MQqMHH_b$yr(TW^ahWmY~P`EwssSsG^hi96(-S49#WA
zF2P9!w(1FS!WRWn$cfm$S-)0E+<Gh+f2ZwuvdW_hsq<o}^gn#>MsC5I)~pJo)+g~}
zYn9jS5^QxkpA;%qN8htcR^>{H#3S(*<Z5Zta)O5!8I>!?MMtbZQy8FA&HiV%)2_BI
zC=;%I+YmH^J3C@vFqF3<up&xdqy)%#J}uboIeUzU3(pu;bQR_;`m;ly;Dr>>2)ykE
z?46Oj1lvDo?~o{(pr>Q>nS34T6FUYMatRT00hhoBVjM&@uNV+~3oT*i5D2S=N__&6
z-yvHB6|fKXO(I>*^kheDcv4w0MKRRdeucqmah+ms1JIYpr`4dkf@~;@G{Jr0D#j^j
z-PtS()DR&CL7=Gbg(5Jk1_fsx$xreH<Zu@ZD7uMRI|bwSw3|qIdda#-u{2s7>=@*o
zWH>yj16&fHF1A9)Z*CG?bU%}!QDU_cL99VP7sEnapR;*zdl!SE<%ww=n20j_s{Kc>
z?M*zF0j%0C9KH!c_YGE@z+>{=YpQ_-7+*ng4Dq?FcktU91|TdANqTH|*q+4rp%U59
zbDX$-aI1bIH?*?Pqf4LywYE01cTiPi@Q%jDynr9J8Qn$QH}2F23@nMesIglRU_zHZ
z{Lwx5I}_r<$Jbnyx>RwZY%kn3xbAw!RAS!V5ottQdv%Lo%n*)HehNZH3<u;{;cB4Z
z<8p#qc?)iAoGqHM0G5v}<A61;&rl=!;~S|P(v%v6>tMno$o7+;Y$=C=tcoTVtIYF0
z-8Fdfa@+G*I)5N&Yqz)nw+VjCH=u{Lb-<paBXCH?Ufwpr77KX+Nr(FSILNV?aD40*
z7Cr*eg0-o(e+mz^HZ+q9e~7q+>``PFkOU(FgDw7%Ao%!UTh|0Cv5L2Hr~p_vD7gIw
zTh}BQyTanNGPKh@`vez6D=VjiI#Qjz0hSOk9KV(~a^b7futoA5x`JG@XYdXL34S{P
zf>cik2z1g|+uOgnoBOcI)O|+`RG>icd!OLrQii}EO5%y<<0sU?5a}cC&Gj5ALLn>_
zKtgH;>>V7T6=O8QVgl6X!6);*?j01gr;i*8H;_RCpegX)+%=fZWpVw+zI(uto`Y1%
ztT#T%p2lw<JR-I%<2?pi2>=kQoqu;zPBla-C6t3}7A(RE@rV4rX>bi>gw5i5)8g=Y
z3)-gq?nb?5t5E-4G<7WlzvT9Q@IK4n&Zd&6D3U5zD)jFA-km>?50k`O*GXUlVp0UQ
zGj|PQI%V;YHaa6iiNIkjTWP_>xzY1D=C0<>*aS&s+%wz?VA-=@Fn6AfA380WBI+h7
zjN3IB4Mp5Yat6|w5E<@2_t_=^070N|ys${pIk0@>+tIgR)jbS?;JN)`L0=feU#Jqw
zTI0^ap4oQR6TsX=Pwa_!a;^e$MY7;yR4=!W6d6%!_`&7B$y_vf1FK~-z%xTcM1lAE
zTGuIIf~%8kqq1DU2Oyz?es8B>)%MZ1sHQ1pL<7*DI|c-^wzPrqiU6Qp3(pa7S=`gx
z*mDx%DPPCc6ahGSk}iLW1g|n8SRj{L97ZC2C38S<##Z)H6iX9LmaWMi+IC1q8I&7K
zMq6wW;pV1YA(!k{8$34x{RyRxEdTcQ*yO}aR4cwTu`>AAOe>6E8mBZR-MsORw^0IN
zTqRaA${AntIBFbtm84`B1qAA-h>ktyw6-9f2`g0EDoKc66OoFv1Q^d%UT{G0(g6c2
z4h9zxW~kEXO)7yxUGeYWt3_!Qqx11`5NkZG(<>iA;Pr6<#bhc<<-=2(34*w0QxIuF
zIpoRPJ?OPCO=A_EDpxYO620TIA;GWr@en&B;nQRZjcJaJjhqkV_|u8_^0ynPui#lH
zjf4Q@L@U)~%10D=zaA6(QpUoNfa^M&tOdXXwo-L?@W<LTdrXKV8=oNc=Aa<s_q2*p
z`9KErgb32%B{|+B<AcLb99S`l##1#UcX`7mBclClQLyFsw2DKh?-9ida}Fh3?w8fU
z7Wbr8OvZx1&XnsuY%;j{?aM*lL1`7kl-$r7h18Vic!%5^?3QNh9!(Y5I&Exxb8K=Q
z(!WBQ%DK7Aj}P9RFtFkfc3y*RF6oty#Mx3fCD`qUw2JZ4!xFP-5?tpUGzkaP@j+~l
zffZ8;i)c~3{zzdSdk92n$#!A#kF<(Ii5Nz1z#guPBgCiWkl>&1**=ETnyRy^F0(VU
zrL&FJvkW7FJ$^_qit89IhBgz{L{=nagLE>ZNvwG@Agxe?lORitHJ$vxT=&CA7kS6L
z6a2dOz>0G6yYb$8lhC*Z+!&lXY@il#5E){W!=Bk$t?%S}M;;thzn@kyPR6<f{jn#P
z0HqJ_7o6LBV8uad0i~)mjkM;Rz>oL;HF)mDw2CQWNUiON+z`+PZ}_NU@4s&caZZ02
zBC4k80p8IQnC-s@2LmP#w5Se@RQ1hN-p(Rsmku?zg=@!JxCdEdiZVb!CKeWR^)umz
z=cWco@>imp67n~>BRqC^6dv;DL^6(EetQ^}F@QTEfjFBa?*!L3J>xdbICayQeVIfv
zKq8M&JRUzB9(Rq+Lq2hWxC|;=QYYlr@a_ZCN5Dbp;@J|P(S?!5qvInq;MnX8dc$ZQ
zf(06BRHPo%RMv!cE_oolA=*P3FVr-*bagR;slq$zzHq4)1&6PxZ)mWZJZj<S-FSO=
zceV|X?3$R7&|HMQkwte;c=fR84b?W#wza$8?+UMr9*^y8ZD?!kYA0Kq<e6;mf}6s5
z%*2u@SYxYITHobG8JF+PG{pT9Zj0>>Wta6lR+w?=V0%nyX``{^!&6)=E90Moc>I^M
zW0tQs&DePpJG%{s#M*DVHN5ixn`AOXhyZ`2f0g`fdp|sW$DVIeyij*Zeg>bdd@uYu
z#t6PX%rf!l>?pp;5boV~i)?6W&wkY?Z`kdG4cc52>RTHy$w;gfyfiKiSM6j2Wt|;e
zD6@@S$O^iJ3x5ocuS$)yHR!1pwg1}i@H%@ssjIWOi-;Wp1@f}wBA@bo_-xJpnM#Yg
zZ*BPNbVif{7f(i?CxM9R?z}tPOM6Gb=|m7{&`lF9i;w)_aOJ=38Y+{#QBN?7X6iL1
zV?Ll^w^QE`w~MAM9W%XlSVqnM|7Ru!`p*x~Dz#;CbsLUR$?+#F4eyAKar8#8&sUbt
z4UZWe&GqMidR9JmTbPL8Z!%GoDlwmB0Zp6S8>Wr47b@3wHgH%JGh&|Q_l4oU_UVle
zSI2n9+VDUfqaxe644RG-Ij!X88}1HA=h-Xe(C4l$u7j+4pyc20gqQAOZ~O%*faSOE
z4=aT(L>k2Dj1aF=r!L%=B%>}3>jbrgVcJvDA~@P3o(sDUx8MH>Z+d>$yWz=vfwP^^
zS=VJpOH~-wbWBCYM|;>b8(>Ne7S6aU+`YmcZ*+Y6>^XD8m`+^U8{kPkFO`N6iEawl
z7T9-3w01?LK;G0W@7)hW7Yz^`M@w9`OcXwjhtI-`_F_SluAUK3K@Ei}vb<UI!l_w*
zU67(9|8;x#3oxUDptQDb2XtYcS3U?I2_smF$LlN<m0!oFWE`r%IDTE9RKhU%E2Qcy
z4gbBRO}*jB`0Y*4g}WSKPdD1C0yX!(J-lx`0~=$ydXgNpdB&-m8>SOALr)5FZ?vJ;
z!h@IECnwZHzUtR{IP3J$d%}hlL<fQ&iFTPZtu92)gW)e1+T0lF%|@o1C5e_dw);JN
zYwOs?R7#b14=&6w;GtXz;pOcHpB4mg$-Uu#{cQa`gh$Z4^7il^p$tT=OHN+;q!W~=
zvP@KD|2XVQvp4>{bH2Og&hUW<0eU7<1&e8O!{yOLD8D5A8w6Tb=ZYm^RbM-L>U@)3
zA8&@hb%D%cCDSW2j)hhMaFspx!qbUUGcJ!X;7{;WtB8K@hkFgM6^-p|Y!YH*S%u=k
zb3+<y7?3CGC`v>X0v5XNw(vRMo>q3Yw~MNgp2`ueTo670!Qq=@L6r!|4OeH3$T)oP
z{~gHoHXD)g>JVlkb0bO76T)jDcfiE(@59`<y)ZSwWx`rW*5eE1i^8u@x8G0bYHa92
zcqA2t74?5B+;dNRzA-TnSe)@wc$3H@adSyR0XpJwqK;rB3>~#?#?3$4OH;e*x*9rL
z*GeT~wqtkBnEVbPLt^^|rlET~`@QhW{=9&JJfS3mTEZQb!&G!r*Z~fR6cBLJ)x_y#
zt2)uo^TOkb?Rn3Is&f0oH-{_#nZAQuRj9&hi`5FtqokNxbsaZ?W>yp$Bk>16TvLqP
zkVY!1VWw5W!drK^ZT92`<ZGcuHz@ZBWtI}pbYFkVc~_^}V^O7(I1qW(ZhOFOb}3IS
zWhm;IR7|NTukaFw%BAOcwHoPq*gUN<iHBbaamU^4&TF(W2~A`LDZ2rX&h~!2#4Wv^
z5ma65P;E`gT4I>V&i48*bA7&JKrOkcJWZUvG-+9hj=t4R{F!Ed_+Q{aab*ZeTgTpf
zpCg4_17!AEUIvVx_(a04?sLUIF@k+q$;zojLGpZZy@H2`U1SK|A+FDmXTYh@8LTj$
zr%2N3Ce?<wT0t4~=Jhf^a4#*hp-IWc**Z`XdYRLL$H~6P@lJfro%D_UVqBaQr&Q_=
zF{wzSpE^3`S&Om+<*1ahhUJ&rcB5XkH%29q@(HBxxd@6X5xo1V>$k>+iRi}+faQ<5
zi1xI(0G%4*{0P5Lo()5J-kA#=y@s@W1P)8k!XQWu`i1ViZXSccB!Lkj3=AmlX8FDD
zkIn2kh9mm^r6LCJy~8C|TUSLHs0ii5@^2v8a}Dcs4dh01-;tRk*E{|m7w8={9?Ty~
zWXzM;N;lBkFXRgnv1{<U*W&jkR?Iv1ZTH0O_FNW4E?ExoETr}F|GLX=j0WN)5_2!G
zq&)AD_uTil@EAVKih6Qkxm1)BNK~GeT<oscbchaExmLDX&MM2xy2o9#k{4y#pr4o0
z@U=}Ldf$iLX=x0h5VjLB*(`6Aa<;u0H@RCswgK`EnJPM9atsYVT0XHM%NEpkdKLq1
zoTm5ly#6=3!GaW((rBYrZacY)urts&+go<CoA@?k90-=__86&yDl~#ToumGw+1ex&
zOzFJJH)feM$@^rsy@71bDbZX<Jv=WIE>awi=94;YKormO2kz~Uc&rkyB%?&=W=+qs
zE^{ZnWh0Z?>t_<+N1PipX25L@$Drn^FyayAd08$2{Yj5m&k*4m>{10+>J537W%SDB
zF08TFMxq(lVSJ$q%$gV7nicj?U@5X;rR=GL01BRrTY^jgxuB3U2pz!0_sFZkb}s$o
z0xJ#HTo2A>!EcJaKNbg<O#0h%B7(h_7YEBK(@(~Di7gAYLUO!U^?q=|;J^HsDw3S8
zdn5SbZ<7$ULyY3$AaBB7evbx(neFD+f+<YC(PAis53+SG2@d?*?@7EW@IG1`6#Vt~
zw3Goro?0CI@weyH;mP$n76&g>rk9lv1WW8mGqLu&QG1+BD^*pO4UwCk_p2Lv_rNj|
z*2bWv;ObyPl<^98!NCK|hEaov>aI!1A+JF`Bw(F-joYux##G6|%FCc)qv<i*%L`mS
z@0Fk+$=;FKSVKd;pH@4H`j(Ysds7u9oNOiF(dxb?7Q5BGNCv>OLiksb;7E><w8ve8
z{>uiI@h>D5D!0@?-+4p4hnVm_zcLk(w#39^O~l;i?GSTe`k+5QN&sgQU(amAGfpN1
zTcuSKCbVO}ayxy`R<ST3Yt(kKy3DG&Pupw2XA&1c+}GE;Z%<-ts#aK&oRvvDOLILa
z0ncGaF4%v2R*UniP8>~7bG$Ve4F}j$0@$HU@I6Kpco-WJyt)(1A_JhNg~(4Lu_24G
zS6$Ahwz<-}xIUeU!+#p*LNu3%*TUNzO~uNFiAT47F`JE3NP;xuG<W_Bc80^Sd-2*V
zogpVu^^)6qTfUO2_Cv-*>lZ{b<`UsT735;KsGl7$)!$iNdnTQ1r<-YmBst|{Jif+l
zyM%dJBo(6LNt%pe65xZIzUnrAivi_uK#wRJOyGzFk{zCRXEhJ9uDp$;7dN&=VUk7K
z@}tkWxz|Qx5Jc*95ORXqRRK?{9(R+jwslVECd)~*gA1-3?7shn-CCwdHCev}R7F8T
z-ZU8ex!uD-L>!TT!Kr3qg^L3S`Nf*<z1@OG*YOKwi8NOu7ioLAM5U{&|J<!Rid~bj
zs;73(^w~*`{_>f7oKZFwfoNTQ3rw(+k}OpE;sS2I$DMo<<Cfu3m6)#Vc;zykzQUdK
zL7JYIvnEaoN~sI0eah|d2hWvXqEbtcZoCFMLdvJ~&SNGV&!C-!F|+c|m%0D!Z%;8H
zAy<Qy8-bx|*XO+F(s#F?lq4H<@}y}q-(4TNi2;wTS`v9%R8X;1%fxce9q!a5dxoe2
z9J4`WbOBbE%y#o`;~L4C>~8JMY)iIc{glxX$&bYh{n(Z4z?6z_p|U0pSTfQm2>7mh
z?!Re5f0*&KPs!Al=m0=<-QcnvD1;iQ;wfUpMB8IWp5YGtf$N|kRXmA6Ncx$|KdB4T
zjz_u+|2aqmh8kw-)`g{?B%V?3ta@IMUMfOCpb_@rOzL}OHYYlDhD7VI=k%-H!=?O=
zK$}DoswGGONciI&wP{c;l)!I}vA%^KxoyA|Mg0KM&31INzu-0b3Tm+cLjOTwHr(eQ
z?vor_P4wNi&PJB14HC1)_fFW~-E|o+s;rn5{DO?=%+xGKuqTw;e_(Ld<~E0_f<aj`
zYgN8bSchs&h4C@&)f(oY@;*=F?KT5NQMqdZ^QBz9)aIIQw_il7z=p{pG7)6Sm(q`f
z8>cn9yZI5clxb?ocBXg*vtO~=o%R*)D#Tv)O(0HKJ&kKu2V;Im@+#;4`j)}9&)V-s
zkr32v2*R<F`3f)}xn(f&X&WT?8MhJkM%ux%vU%GC%N}C@0*i>;!VN2Ti|j?luGrr#
z8Di7~Ih6)gmexg51V?hoHbL{k)W^UMeT-N2HTAC=-#h55rHDpNgUQtKCUZ(u%Kex7
zaiHNUDv9FviC5=S>sL|r1Gu!DHbu>wMQ!LC?lK{LF}8!w8cOGA6289eaCh=9{F>k@
z**J7lKmoItY~e0@&Xz^ARV|58;96TIb(vb)xKiK_Fq1XL8;}+psTD#p67@|4t+ule
zRf|7wwY#g8^>LSVT(%Kj;-9#l+YfeE+{-KErx>rOuF15P&z8)aMVuva;MQ*N!x6)2
zt)Ha;EZ)0%i{Ol6BdoC2a`u6LOIPyiO>XeS6n1w&^5pl@;q|-1y&XMA0^#(8LN@T@
zm2Q~^iZKo+XDeZr5ki8ok?!ga`^i2r8F*@fOY@3A>Y;1hUQ>95pqSQaQci#=q4k9K
zUDF44u+#yQXN#0?KK=Gg_vnfIoDg?@Oc7!3L58-n7u?AnhhjXZlEOyNPHR{B^`UO%
zOcN$3e?zDk_3@0LwFd4MFajEY$zKL}Y(C6?{Graj(bgHE0ro#RBUr4MK=(!Nt|R$6
zQgk92pRVmiBFjxbyIJ#iP4TFr9cX{`FnVs5K7H*x;+K@;1y^?c(Vy0B`zlir!sfP2
zDz0H_fNr7qa#F_}<Fc|1mCI||ViTZ@^eWOhl5v9p@*qclBYmg@RDf-!xK{7MZp+_!
zj;nyL8D<$^(YB<HmuWxE^1YAUBTEMwpG+jClNc{ni1Qvx&%3VlCcA~QL^7huDrJs$
z%<AWk>vlVFdyt@ENSm+?%56ZB!{F@Ryac0eG)it;2iID=#j*LtxM$rhkFzSV@=rIS
zU5ylgguI!dzhb`I2hob(j3*6Et}uvO&krQr9q^d*yKL3Nv1KbuOr!xdgyP+gyIJS4
z0>yMTw@XR2GY6ZdMWlcR2mr@j+q)s3*bHOq36X_IY1>@J+%DJe4$itqHtZ48qKj*5
z>xRxCEwj~A-IU*Kk$7P`McfF^VFTh!WzV=H{>vCZk0FEr43T?s0Q$J45*Tox;0nPS
zAmaw41QW>1tKDyx0<7vhUfV31#j-OSu|EKZssT&k;otp+^X+Z)Be-Pa7j4umuI1<p
zMbD2}=dNlr8dXC1LuGPC&sVQ=wGBLn5_2GgQr9<91!ERuTzn1<oT;y0?MD7+Q&*xt
zG^(@~Z>tZ{!Y|!@XW4~DvYC`hGS6sPywvS;r)_@}vZ<jp15os1mbtUV5ELUE!M##O
z+A^Cc*MuPhA(#8>c30oU_YkQ8SVIL|GeAeM3x%R=KphJ;BDq6i5e^qNnZ0xH-jhs@
z$^^|osu$aoNCZ$E@qp_mIw03vV+TTMW_2=?)BnOsmh$q_-Y)GWyYmW(B`LYDuz>F_
zUFlxCaU+J?0vSngNZbKUN1#BYG;)ET9PS=E!#)r2(t$xp1$#s06u~KY!j)(NMcx=v
zzvN)H;*f`~cKHA+w_e#TCe~bQSJxs5SrWduiKzR$@7>tbBZkf1?Ea~Ctxv1K=<Va&
zRp;8LE2-HhUoT%3E}Xx>&75syj%|yI8sNlx@P$Z8DC)`XBxEv>b#yn8B!*8_M4%xa
z7NE-&dC$gzJ%CKkRX_s1MyD#l=pNT_vVl)|cP+~mSrW$-|NCx>pihb*+f`#)ltP?Y
zy&ENZGy_FEvb^Jta>wQ}1NJN`QmIF;MEd$2-7E7sl|s}ldYvLYTAzknTHL%tjRu!?
z6R?wsGGHt)a|ZQ@W#*ya2(nFun|iDLYD6dUrH+X6-*vS6@N}jGhm<R2Cy0zEv{x)G
zM?A2%`|$$aqg3GZ>Gg!GQt*<sEI7^`zt$d)M~Og{ip0f#H@M+q<nldGr0D2mG?DJA
zZ7X+_a1pl3^P1_H@a#~j-D3<3rJQ+3Zs#hlwRs6hLEP2%lvsI4lN%-#k6_69s^~H_
zHNFjY(KXS%_>oOL+>jNv#p2oY+XLJMk(dw-7!={a#LNYDr~u)%{ey|G^QsA5RW+2x
zrM?2iRhadh9fQ}oDtKFjl`Y){CMY>*GuAL_^E5YaoPAdX29nj8(wWh=_`3FT?zZm0
zs~DE_(#=(nUt>w4$JM#U3WE=<OXAiMl?7cffS$Nx&<P>un8+89b_7Ps2?+C4gIaId
zHtvCIQj@B-a9h0q7`vAG;=M4--6TOyByl#EjCF@sDtC0tJ5y7NydcOR<iRSba>zd2
z-frS840FRGb_m<V-a|i&y!3&tyEvK-^pbKHz46SR?z5Yt3E}FHYssqETSUvY*vhrd
zv9XdQ`Sr7?wJzGXPvFkJ)E*<b)G`yMEv|K$@78lfoH5}85_zFKl=$I=dHL?rS)iAg
z9);e7q#Lm``oPg7>mm0L3kL&Lji50O^+CcAPc6I5on0Q0V54~gP^u_{S&!fC9y@_|
z6v0OKVIs2$1mh5n{lV?I6>lgzngS@S1hyT?Ru5n6wyfk73PE(PIfA}6YE}vUtVhyw
zEpF%WYz|W!>zqc>W@;r;`4sGV!!;joBa^i|IJ#xF?emZ;9>HS-ohpD4??1Oe(_~KM
z)DzuhXyMp0CSeVOMwk?Wh$&h>a?_wW%XUn1fJuxpmeGp}yW|X(*dsVa;=RDNO7_-i
zCKpj(kzbB+&knX<a;!wGWCDM%G;Aa|*xFr@gh&c9E5fjicox_MpZ$KGyXpuVAiMy&
zLmfyyI{jXE%p|5lWh7QyaxJ-<OtaY-cS@E0+WLv<;~V5RCKM3A|De0{STiTkeFu1x
z3}x4g*_b#=<O&roexlnoU14$sUWz!}8Hi#2&!@V9GS?JP#2n_(iT!|30<5jZQ6_Ik
z{XILPk)Se3xVBurx!cq30Trl7)wPf?@r7!s6kA$fyK54)m#s5~F^d+cv!qc0(7qQm
zJi~<4tL3b!A?L7jX}W8^a3|fv0Fl}PrOb{mJ0xLJzK*Ybe7$=^_ACJnC?e%gNvm02
z$9lI&qOs{6vn5*ah9Hnb9>N>&JbFdoZ-T?|^-sQbzqJ@R3`0dRG^n#&4O&%l2M6{J
zTK8eLo{NV7(bU2cwFqdR<h$N~*l1~dHUI-L*^ML=GX|logJtv6+!O>}_6@Zm*hB@A
zw92tt1rxrt#VGnrQ79%~2?M7ag)EXU__}x8`g1uoO6>vM2)we(DM`*$VvZtT!gks3
zZrudCY>fHvLGsa&g+6j0T@*beF$NKdI5i;cu@7B%p*@~3J=s_bUZkv0<bvV6{mgwl
z$419CCqUDb=q+*Voi2C(Rgokhnh50)A(63Wez7|d#lMt@B9bv?^C8jw?Y?#E?_ueA
zFsc}a`9@=TaCXwvv;E-Ah)0ja%xQ9RvBDN^JjFe^x4kn8m7$tWvXH$h2n>W4K@MYy
z3%-7rQzJSp*)2ffF|cq{dayu>Jq}s~37T)xmIC_9Da=fFgCDRLh9S#$Vj+P5XI9JI
zsHGHmTLr;CzwCjQrWTbFmcf*7jeW&kw1q83J(Enp$Wcem2lfs|pqc`%;}UhOK~i>Y
z;uq{Ew7j7DI5zrdZ!blHl~gLcYe4L&?tx63Fk*Mu7CMo7ArP`W(9)8Kj-kQKr<j|D
zH_cVBgZjw$kP<hD^|M$}lJDtTv`sJsKF%`AyHRBD5$Y-)c9*QM?FuO(xmqB_O0-|T
zaKb-=K~LB(#<U?M=)>Zq1M`BFNIrl$3E<o;)efL#7dp3Q4L`;!NrWs2OKDdQb!C%V
zTE~wGpH3p`W8vV_PhRXs=0lVyTB|#ah$=%&e&cy=rG|RcZOOjEjoo*2H-66aa3Es)
zt=b6(m|f_)KDDJN<)OPthHA9{K_eLKsy5*ONneDCLRO8UQR5nzql6#eu|?3zt1!C}
zodA%OQC&&xzuj&}+GA{T(6Ol1d)hd+U4tE<nQ6f<P6Jhm7y7*Bmc7ryD9(ZTc6K*8
z<dRqRe#Z5Qq>%|IpN+evyaBY2U~qnkd-*1&Q*%5_kIaQLo-;i0ZPzET&y>eeH`;5k
zHzhl?4B992-p{CwuiAx_Oj8pS0XsqNWagdY2Mc8xR4h9hHsTzUQil(&*L9kkyI=GY
zQJZiEgCk6rdNbdf?t*KO<@9C(>xp<MF5FYyhy!_OrXE%6M*)H*ilN+pwhL!+uxRVa
zY29Xmw4)^_Ms{>sN3xOMYTS0%Wcd+XI^LF2E+Y*Xw<Q>JPu!L5YXJTdXNd=Z<!Fo3
z!eE7L={+>G8+l#UTLdqIeN_~q+Q1oZr;+xyVAt3kegd4l<Aw(5f<g?joB^7sz1fU7
z&HN%Ko9z``C8I)t_mZN1xOXyFIi;do-94DXfEST=K|4wl<y%?OLj!~PQihRA5jT4X
zt8fMm#Ort*z2J5?rJC2R*-ni#+ggY`^Z}udDfZvW-O_GTNRDJxGCS$UU%Jy>0^0@(
z%e%2*ic0eHdk=IC7uuZ|_Say0LEqzUBt{puxicmMp*<%woqSF$gceKS$;zMI#pQen
zV-jhET((fUE&hXyP}x?p<$CubhGJ+zL|M8U6P=PxKu$^;ax<m3yJz3DyB}$SS9JCI
za{0;b1Ee95k)#y~BR&FD%e&uwg=WW@SAJ@i8BUsr);o6(o?UJ8*oR_eHD)2fx(e2;
zI>l|5v}?v1B!Qv1W)=XZuauqS#=&GksL2!u@9u$}ZZ?2ejnQ(kn|>PeVqBq!9@4)M
z&YQfgOJWo2ftwhGA|oRgv^~eeVs^+uj8dL0QJ+E_u9l<zu~+c&^L8^Ot&z3{78_J3
zX0QHcciX}27{E$&#v3!6lCxQ@aEI#0Bt|~wChuY&C2STGqbwmX#-wY<qGrG^X;PQN
z2-AIiihKGPyX}cdT;}En6jv;&a;qoUJn|Xat(iWGT?j2GHSMuU=f&;i=;Aui3}Gi+
zT~l{;LM}y#C{Nb7k41MPI2H>~uNeSso8XI|?fKM*w{biYcN9=cOy4%ace0;g&)^10
zZi`;3-!{18m(*lcXep_aqt-Pip58yW0kZ(0%ZwNT%rLKjnN3H#T1Y;VA-=IuFbN?t
zONPMQ&4XF^!So&Zzz`C_ot8mC7or;g&5zZ1w@1j<V0P~yE1x$oKB&7YihwLTQej)Z
zcll@7d0?ZO7N`CKilF$@kNw=DcqC(}HeDuJDNs=Q_Au6Kl}ne9q^ty@d>S)l>cu#N
zR}jb_`v2%U@4%{xt?h5ywOz%ol#sJ$4x(Z-z1T2>79oHMO%U~vge0V#kcJ616ch_q
z)T=0Vxe6kRUTKN~3hEVXpjc24#OTE?f}(!EXLcev;r;$1%$&XVlr?KsdDdFyue0a`
z2aGTga1}9L?=Osu<6H+BA9Z-CbIi64*l3aiL4Rlssc2z1lHFlX_f0c%`?%ltm)Aqy
ztu$wJoc_C+B|Eo19~n1J25|7Un#}2DQVE2X3W3%WRjV{2x`MC%%uG3l2gHcE$B+n}
z75jyW=F=XoxrIScaff}A$0<EaqUhxnX7kCs4{<m`5n!42rQyA}(kzf0RSEr&;8XR9
zj~ALXshj|OS`j?D@(xf12%-Q%FyU>MUiN41PiPGh9y=sgWu^{lhf!uiU@}K)8!qM_
z@WP!>nwewy2+kzrR6U1Q3J61@OMpoxAnpNKwn4xn6a{7|WNgkzx_9p<<|tM|r-#^_
zuUfbd<6Lr?d0mET)yz@(iB^8~=Nz+1GzC8_ZbW~9rYS6gPp-)vGTOa}wU&D?Xujk!
zGyH<!{W3gY1Yr3`4KlU*t@B9N%Ji6}q)ZogwO4Ujh&vN@?Su=mWupi5Hs4h_itW`R
zb;+|0pLy#yQ#al{5S-DHVs_KnaX8AwL<?Z47t7q}n=|?`W{l5B>9txJm?ro59BaEA
z>qZy60Er^P>Cz&S_RujV$9cw#FcW(_;d_Ll6G*=#JBZts8LQ12gn4KTs0puTl8G)`
z*vUQ28(5ZEC{)DaM&wisgvgXmk16U7t5A^uTqg}?WpbM_FmyQ$<v&G#)nUdi#wtu5
zY7(JxHYC73AQ3@NiC)5UX8gR)%YXt6MHH@<YdwTxzi@7Nx+Og*=&v1Q!^Nn|?}?&H
z_p1AZpF1yZ888`F8l#+h6`4GPP~{}=h=aqOK8({-=OM&_%*KOHf>U51UHXNu$)^We
z-hu(VW-Ag(GSP==-oCenKm3CpAnIGHs<zY;C6bloa@9VT+3k<Z83XwaC=QBQo1jC|
zqda?M_><FJGr(THO)|L<Axs}m3fFe)x(rB2f7FB^=SE_32*T(X7rwO8jcQ<7QTdK)
z$CXkTaI$w_Q8=rSE@%d|q&Aog3#PEE=l-x&760c%Q(7mADSbVuhycTa0|;fLdXHTl
z?)7@yG7Lb28e6^ukS|20vh%9K4|H&&F4#dhL*14NVyme+7UKNhab<XE_pVB-Jp#8)
z30Y0a7=koH(&S|C++*x@WUYtp`*ZmU*2nr4IS?93VygG-Gq$Jlz3<ge9H;EINKE{S
zoZ*L3=>+r+B`&x$>#;crviDtz-8jJ|ktX>DHAGtKdjLvfb*7zZpY~mj=MlKf#Lb~w
z!mY@)aPAxCf;C;Va0M{t9mMewYYLfN^q1{Dkp&f&3k;yr&*4^24Ka~#r-Yj`1CpwN
z25>lnp(2tHo5q;%edF8)^=sP$Ti7}#{7ld@kbD)McksyY0~6zv)lume!NHK`N`R{e
z7YlW!B#^_KB~8~xD=U5qP<s9ghOEMcz{v`l6t4+9AS<2!-SV_~>mX7o5`bSaj>K%F
zNY;W-aU{Asu8_Zo3??I^OB@YzJuriJkWvSyVpWvve2L)hE_l)mxyfZ?%&y^cz*bYd
zvUkikH}g}-xvXSURUP3nC_7mH5VFpC$dq(<eUPYXJ#du~Jq0+kTi7)ZrFm0T(T<uO
zCGL?l@A`)gRIP~(jgWVVas_EhZTWLQ+Q<%4M#f8lWQg2;+r0T=OJgkocPtOHBH)>b
zXYZsnX2MH!f+O02&AD_FP9g#v)4Uf~n5Uj&20Hyb6{)D^efY{VysZ1o=4*nnk|?UA
z{5M%J$wM^Y5wnoQnaqz2oJ2TQMU<~XeME%LGWVTIAG-iEtFPGv+XwbTTAO)pd*A~F
zo7nhB#rVi?<B<;}SQA>fbDg<mm3!x)#<H4COdV~_OMJv^3Axr$n}C_}3F1Vron>a9
z>^{+JH+!%8G~n`XI>7y|V0UFP9_>w(-DI6ei}0XJ<;hstdN~^EBIJ4IMTEf9H~M6E
z=K2B7AkLn*0gong_P+MW5fD8q&P@clV9lh50p)rw7dt&*r2<T37HNIbz4v}K+sfS|
z1EZyKvz6`^3Pqhbymy+@C%R5oa;F8b>&lCr`;93kCqFMl(Fm}YT>RWPdpdx&V&rQ{
z!cQky-ur(v>n?Fm<qPam6_hPVQ33gHelj!0(3M8KR(&gim8Up;BfdA+kWas5T7ff=
zBE8%okA7k1)CZ#|#GEwFNo{n&IqSY@?P{6WUUMQ`SV-Ss45T>E@DBOK^r>il-HzZx
z>?b^<&j)7vg~1Roq&YmMTiG;k&H*+%sNR&{QUZmw<5*YzW+qp;Csdt=kBcjv`m0ff
zcV>bJR2HG&TI<rOV8>fun{$J`AYD|&Sf#RO0k8)VMS59;$H?(gTt7AdYmycdlBO<7
z=?wC_3zbXlF^B-3bn6i|>nhi%%+XbV=lG2Bb*80D*tq4?AXz+FJ(!APsAw5r--^50
zM;`C85w*N;F`=im6ua`S8g5cP4b9_z7zmn$W1O0jkjC-NIL4kfy6Z-6k%45!Rx(W-
z5#5inKlt%&8<}ZKBbQrl1NmJXUah=LY2|r{{+{2O#<Sv`s0t#(>1fCik_)fyZbCDi
zfFWB$9+hPgF){%hB@&}+W=CCDegs>K>ZPMaqnS{`u!Fg}(RJn4x}Y%^9@8ViJR+Hd
zz(W~u#-q;x6^83y-rcZ*5@7S38cXP=GZJ9YKrMUP<R6Uak5pWbOd9A5APpG7(w(Nc
z0?CROVtNJ1#OH;*xZRqmrMyo_w%V#@!dqlD{{lGtIsDq`Ju<fn($nEUd+SOk#N}}_
zq6VO+sc;OU@)(mg-6_}j{2b6o))K_W>&>$rnFXF(L^<$LEk?KiaD+QZ4#U&R%xvH@
zQi~!X4wD--K6fcXY!m#r_W^bvK8#d|65u@YNM3=#Pk7ZMjlJg+H?^Uxl`8|m#4boO
z8z11cs*KW-16qPK=k*iwuH<E)^DR~XT5Q`XbIhMVJC%1RJQeXk)@0bG%xwOH=J`QR
zrh_3-ecmZGNzTIl+Y9C>3|%aG9zNKLgi>;Lw0I4<=TSV8q+#6jjY%(Y+C=LVCCRZy
z`Af`lIhR_^7JuUs>Jtjlk+lkvp~=zljd>IcocuRj1LzyrZ~`L+cw`v?<a^oqikVr%
zXK+;!)Izyx2$VjuCM0^R4zXupkDyOXwFNkWg_IC*ejy#hJHYPur2EC7C<2H8w9ZG*
zF=YSyK>4#6K<h{WJlEkeEXD$hvW;wl%_v=F%zH+gCTx`ws7VsU8YYrRH_`jLuX#V7
zW)i$ag*=CRU@{u?81w40Zf#n%gQ{qKHEHdgKKuPM=AoPE<!%d<PsD8*p>Sb9@?Sq^
zUjNn&3cDoX^e9{DGPN)7XMXL^h6QjDTt7HAp-H}W<k9A}w}SWafP-fi)kDb+vUT^9
zW@VT$vdF0JsDf_ykv{wj`A8tUG9ju1F`*A9neEyU0^FNxBQjrUs`3zQ9%}CF?p6RD
zOHmHI$+;5mX)q@p<~jhJwdfix=isMOb4sA%kguT_ACn$oCdnn{!36indCU-sz~_^t
z{aoB+dY(#$GiebntgU8f4hcPFm^o%KlSGliy~G9sxP%H<zHTm*6_EgLbR$`pP)@Rh
z)coIkGvR_Zn>!9)u)KauNQ1a&r1A8vRyT92{v`tBDw9b`b~pv~UvjBgD@zOKt2h++
zAco60Bowtn7S5_R{%rRtHWb4&R~e5rWt*HpyTafk4HTl`!-?mc{16`|T_ngUbUCN~
zm-Mi;OWZ3s!$32|h6TuD#dy`+QuB-m4bfFhP)2uH4KF*g-n`$*bpSv^i<Yt+I5byW
zX*$Ye!Cex;Vyk78iPMfS$2{ZaQqU}KiWbsUz$`2@|9sDN<l{`o-AZpEy<|RS`!g>!
zPjilVTR_lGQ^cquCu*e8A=4BAOfB+}=0L$>T8)k@CBNlE$m^Q@mHo{{Liw@9x-vi^
zaMI9u`4LwnVIVq}m6J@f>=A;?LW7#Ed->|Q=A~NK9*hE0Lkmz13pt5BQLY2aVaK;k
z<Bh=&<*;>nbsc79SDeNna@Q;}PhmRZ4EC$Xwykv|0XGD7*W)H1p2<>E$BIJ<wZPJc
zo@Hi;@3+8fixb8xQ)?`@(gAvRt$E{e_u*_PzM0`@QM$ZmUb@Y-GU*UNB2R%9<e>}J
zX}nx3&YbkvvF5l3+z$~?iV+(01|9M1-!*B$du7ckbHGdN1i18dpt-Or7MmW`JgK-U
zVN4Uo)`J@nR)g?HCUAVUsh#Wk1!lwWUCmt%zoM4~A3xc20tpqnz0MF25F3RpnZ_wK
zW`{5a#2t{tfpkk^cUrT7W6cb`oc)p!R0mK)dd{3U!L<%0se+h^;5Jp`l}U*h5x~+*
zO=Ju|a4@Jgw7^wFiE4!yahX(^(?$8MxaPkv6CfJkPj%R}KB)`Lv%}rDU<25aX%@Er
zllf-XICdFv4?2*61Zj?Ky7&$Aa5h&I@*Fp2X#^jO?lmwIiQYF=#`}U-;VI@u!f?tQ
zna!{<X5=FGh2ij@b~Bl~*vt<;pC4^*YL2A~y|l+`=5t{|kk)W?M^){O5z=wh6J|4X
z$k(#jFXv5jff;?uOpZKq%2P-Y44p_FMV`oMG~EQhkbF~5k}2WlB`U35We)7@+Vinr
z)d`;uXcHspOXm4sz@E$Vy}5z_9k!f3d$7t}kEf94KAc~jP}m)kGhV-_nJITFbwj!A
z_=cN~5LF^3A-twHn(2@!Ll^>=YQ`i1&vSrS|5J0;JA4dFqP$Z91IH%9xZgX=c)gsI
z5**%&X7-YM)<FZsw$q5MO7wQzXVS35A?0W%B?(fOl<~enDb`8|0fTC!TFWn!wyOec
zt+^At0#6JA5_l;VP>j5UwyrZjA)(^T$;Mnt1RU;p#kG4^+-T<E7)NRt62bG1D8Q76
zsmT=vmPo1kR#5^OLfDO+9qjpB*UX7S3C;+bBf$-kCzqH51zy0+<!VvGD`6EFi_bP6
zX3#FLslcSkI)Bq9n%|FbjlDQ{IwK@o2NG9ic64@QA@yQaU=L5gr&KL@25#ocmfd}n
z{a}V0Td;D4;%IJDxE`HRPrnr7JoI3D1WtFhZXoz1Syb6<=>5ieGxp!KW0(ji-FZ?j
zIn2C*Cj}RMJ_OS=QM-i(PoMySqDxKr-HewyL~JoYcz02ucSOT>9IkQhO$?fKEf#z{
zz^vg_73NSxHH@giIBOyf0TW=8SC2NS0xt!W!QMJ>Hv`9vP6_A=)9DIF97AxoA-ZVG
zkABj8iSG{{&Ce^Vi+;v;-O`o&q^XfxFiS({8qj;hQU;DUl~4&n5((JGiv6Xhi@}}#
zgTLiRci`DWUen?v7T!~)GM;>-(R9Eu0s-`483K<hSZ<!3bc8)CkUT`w{S}WP+;fWv
zPV!gA|G%Scp+Zv>A|qpKL*S0%H8@4sZFEK6bnge|*t6X>1PjEfyL4GW<-?W9W{AFn
zzZE;4I~R)jNWr2)Nd#+d>C`1Jk0?~kP@x=hl+<{=vN4y;?P-gTaQSmc@klimWoN<C
z`E{|~_ifVD1O^98o#d$@J^UCu{r66J!*Lpc-YHWO{tE1NUUn~xAqS;~ZzVU(d5SD4
zETqS~U@)m;<L2432DxOa{VE#8CVCCZ^k!t)j~jzTJj$06%E2b(vVW6{hXg`boN70%
zak+SMWx{7rWaCNmF8A%!C)^jvtW0Kg94!6&QQh(dJNitr*#KuRu7mp*c>@P!dC7O#
z)CryQ^2zO6R#8KWp<Y9=%Z&KMQXnX=kK{n?9?(Td^$M%JoWYQ7uQI#eouqe_YTY12
zDn?Qi-?(G!<I2QEa}7xeDuT3y^fA5rI@)gJM&y*_$*+QWo_uV{-uIpzsa$g8-NERD
z)=i4XBx&f_5S3(WfNGn;WLxrVJ^hC{SV{D7jYg=dNctt^Y{Cq2?_st|Ih!)QQHZC!
zpQ|xMq~!-8yGu!~q`L(9nh16YVNC0IkiAJMJBf=bBQ+aNZ{>1I#NJK7qHiDiGDtlL
zU6JRE<f@p+t~|gVokkID1(_geBh)D$yfRkro*Y#2hIfG`Qf4fd%?+-0Zl2k+iIO~A
zz94=;KtMW}KJ^^r*0aVO@d3T06$A203OFoFSUXO=!kl!aD;EwQX^N2Xo2!Jw^Vqd!
z<xcmqeyTW+y_E{y!3Z9?+SskG^bc6@&>#lja+nZ+<@GzqyqXoa2)j=~qy}>!iPOk{
zfsyj&p|;^NDlo-%VC~$~LG2;c#Y^IFla8dsV#w3)Wml|K+F5#34rba=JL9mu-h?4+
z&zlNx+?Gf&0+oX9y-(DZ&u~v<lO2MDs_Kw&w<2PX80I?iqS*SmNO5XNlbGJ$Ui`vd
z-@xX#=NouCB4ZIm-OF@G{JYwQZ*tG<>GIM_?2Kt9hif4}g8fxVN{F)jxW9kvu+D1j
z1HB`VQWhfF+nDEnI@*<>cdAGgzSKwv1Y3w|f@ABo%ZL{#-kdmp#ao?n0JyTtEDhX5
z=^bkO_}kMus~PzxKSCWW+F8D(z5G*hU3;GLS<r~(xu}o->zVFTgr*=`V3d0JB>%p8
z_u3)op(T)qGW~cNIsRp5@k<p`rS=X?44T3dD0zdDVBaUw=QvMsRpTadN63P>^h5u_
zHSX>GfROWYJnMi}3QzR=ztBl37jn6|ImphdTJ~z#ThX<gOFX+Ax3;Q-VNmh*yS&@8
z&z+#=-WcPlEQU_yrBCbD^hj(Yz<1Xus?UKEG5DzD3?AzwuS<dHe1xkfKOD}7ag>p8
z>XH?-vQMI;c{+;9YC-F;x+z4~dM8Xb?;J|;D)N$Xbeunx$ihUguF6Cn=~99H0h))!
z*ON&Oz$>^$Z}CZHnZaiwb6!;u_H3fQvjD_+Nt5le{&9IZ%EMiw5Nj`|7u@~%ayz++
z#8-krVuUG;OeBvNCfOGT*(E=^MB1L0nrrhe=v>TpBWRPmgd(s+@g6<N)?Ly`Vc`V?
zuVY7Y-vW*6{ju3Rwl%I8e_Boy1D)L5-knQqLHACvWu}NkYbi4|j~tn#bOtYh@h3rL
zFE-TMHxBQrc9MFsZ{*g)DW4z%^c6L>cxRjhuR#d9awxm_5302Q;^(r5{Lfr$#usBC
zb@<07S-oN4SoN?OW!Bos_t3>%pi1Mav61G@>uED<y3B)}k`S+{u2I^5f>P->&av11
zi(!yeMZOgbA_>4iysMrg`>Shi^Lts=KAdB>-9-l>u>=<pybqCQCSc0;5)QG?t?oJx
z>%Mv_Sm(4v-j(Hb?rl#vGPWZnA&I+SO)op5L;DV}WnMVPrXS%xl26eA_BVlwUET|E
zcFt?GDokIIZ-pcs4w0{rY!OoP6NEy!x`*90ir;Wt%Rt_;lN2&YO918Q-Eq5J{8#YO
zCW?|#=Qkw{LvW(^N+&!29fqMY_duv8a^4bBkil-Mvb~?=0mR%Or*uYgf+F@Gde|mC
z9jD(9AThFbj?<N%AU^uyFdKc@y^2dr#n93dI2&H(Ap6X-?Y=;Gy7z0P?J&FR0@y6d
zE)kn7WnyB2#ISFk^sn#MX#ocSb_CKu89C`9deN(_^{dXN3&HZIhG-<D6A}sKVvOf=
z$!QEx7Gl50vF<kmsVK`)piX*b0wqSh2QKy}9o1=poI!d{p!GzyFUec_w!e>|LkZ_U
zdegt=qD~9(MEAlcU#}FIh<M!TtEZSbFT^k8+XWz>nR;0$PZ=~-e+}+8`7HCoviOIf
zN|H2i28)Y9py1c>P8)6e_UfXJJ{(%E7pN5`mF`_N*hU7r4id1ob^sCf9vx&&uIm_t
zW!n853;rSbcKcwYM5lI&Z|_07VS{1aKK#Obyw*wNeSj3VMuH3D@V__B<Fb+?&cU8q
zG!%zF#o^7}aNicw6>J2rRwfu{=|hBIPbYtGu2l32nkV-=_goqW1e?~!=Iug$?|``Z
zfiNqhCsx>MY();`JY}89ImQ{^g}sYVAcHfZ8}IpVP4)oy@atqq5#qx8^+)sRk#1^k
zUKni}2#BH-VT<|P`|(>dR|7;qV&WJnDLSmTifbw;3Ty7KCRgS{;9%h31KWp)Y4fXQ
z-DG9}vnUp_G%HOe)}wZq<?qv~il`uoYVq%;*+jko577_=u`iT~4r4V#KI|9cU*ulG
zTnbC&0gzts@7?BM>AI92rM`t8<M_yAbK=itzdsl*kOwTPE(*=*Q#cp7w6?!y#u1-|
zs6Ld{hAX14(0tpzrgoDX6Y{-7W}`eaQBE>flAIRDCEF4i7gQwa|F-e9f-C|%Zeg@i
zA?dC-&g>7&gU`6P_mu?}s~FcD8krxqr*2~~S|2D=&=E>nGKc>xHdkHaa8nouxwnbV
z4Fami^*0}2x)(MZN~%kciB1ZhyO4ihX^y$U0Zy>W0}&<$K#6tQ_MvJA4_1P`gMT<(
zl#&F26Nt!mhd=sIQU9%WKnYkx@w<*EF?2Fo^hXyHM_2><dHPG{vmj0Y=@AdKn35!=
zjU&yN!1P|gl4^1QPuaPP$C{UN-3PF}lfg&tZ@V?jO@5m~r7J+8E-Is_6w0HNwX5fu
zCxBX^S2|h+IS;jA+n_i#$lG=13gJqrS}TJh_1s|2Qr-?OGQAbTA(2=yjS)f`Il&N;
z=6l@^Gin2mDa%0<21NqaWV^-@N@v^-^Rh6b0;mfnRt&_BPDp|U$xF6VWch`V2}j1`
zFS9Q@i;mEoVYfZcS|#Zw1uGLE{Y#1oc))IfT?*xNj`;y38|#c&JO~$nT;vBExWVjN
z;2uUP2w=U`hQT{^k2yHesm{YeWV1Xft6Sy(y~-xD<YF@=pBJizuZV*{>jbIsGA5)s
zwfwT}W*+V>u9%#t3L^7pI!0=w%EOGU;)@`+6<O`<wk}X?<ZI@LR~@|p`5)UFKOm`a
z%Lirz(Tq^y2>4_WSl}RO!(KIS-0J2fdpMGhqH<-uNnU3DT<(kvj1M1ygCi32$no2H
zp}F=pzE6-*X&GY{Utx*v{?_co#=>|p^&&w*DtIL6s5{;a%jEaMPbv4S_H?`)E9h=`
zvb@~y%`2GvFbM?IUQ0#*mJH()alCAAu>W#2Q7rgi`~B7Y7KxgJ$+?7ao%bKJLKZJM
zSwf7~Sv(SIn#l~|C@0w!tcw4|oE=!6h{Ym{SRp(Zas+7EVwyVrXY(&vSH;(yE0WY8
zd~r>K*(#HK>*%z{O1y#+1DLYG)G{1LaglF|8mqB{kZb|Dr}-@Fi{r^I&|DQQ3L-q=
z#0j6nkOfiWZUcKj)cgO;ltMTB-tZe|RmRLDjvV(7dklAqb`47=<}3t2ID{;&&;Qpn
z$YsnaDXT3OhX?zqb2a-o+ZThTh{IhOdkzqb&4V{>F&D`tD*K+(R45I|M2_idW;HlE
z7>pCey$_un(KTa}+4Um7cM*hmisVH2I}-~e<Q4sFo?Y*LFuW`<BnB79^*c-sjt+J`
zUoKqdef|4E&HJ(+%<UXywo>*!mK-mjbN*J(G0U>ueHhR~t1TL`ap2O@;so|>tgajx
z-5PhAdO1kpBub%x8qGDKEBTy%n#YLfmiaUa>{&)Uhj>qMaa?b%F{Ar3ZYlH4Eole>
z8{$(9W-fOuQyv1KAX?2$s9T4C?2Yfb2Zol)4-Y4YMM5EeRhmn1@$#k?Hm~6JmP@`+
zC`qw{evM{Xrh6&oZndHgC3?BPo6YhZ3%<Hp_A(_l;FW)FHTx(yqxF@o5pN2k4V+Id
zXXLtav$@QDncKFm63-ixmxqzlSZeNps(3^1=9U0FCy?|XXNG~i<%|6kE8TLqFugOz
z4?i(!!ItGYmaL2bkj%Ib%sz+!JTepmEY4eu)r?cOz>(jXjayt-Ha28zDDr%ZM5qwV
z@pg$nCVX#tZs#|$jRYWfO4P%TPc|0<s1+fSW!8yU0V!5>HE&F$LojG46tpMrlN&{F
zeYpH%6=oMA2E%d7-5La_&xt$j+Gt95(5(<i7%RscDT@VZ_{hvg(%>**$ErcQR7@6>
zzws0E`8|#`Dt8wN4R8ldEGw0PRs!M9H%vbSLbzHlE}QYV2gtF&4jrFkQYNrNsf6jV
zaWJE_EEU{4;Y2%oKez4yF;IpCG11-JHKhs~2z;}(<IIiR4om``#ciczPfAkZUDfOy
z61r%bOW_lQS}KW%_w?81a#<|_2S%v&sT)z(8tDB`%q7pc<<N2!kJlr}s=VskE#{sz
zZipN(ZbIRmfZ<}_nQ86kTB8=8R-6zemrxC5>zyo#l)}p?wL$8Xee4y1=U?{NXb_~T
zcqW#bwJtoyR?Cmpns*AzR}t|#Spt3JpJMMNUWk35=!j_6tpU`-wTt$SD3bKP*{3T@
zB_%_<T!*I(fU-^j!(?k-JlU4*a;HG*4e<aNIox3yFwtaX?OEgy)-YwxV&2-(3qLp8
zR`Hnd4o!bkBr=rlR$OAtYsaHz_z1UXgNYo(KZ1(Tz_k#htI>Hqc#FAT5~Q^20MXDL
zi?)Ifg9HgXzcc%4Y|^6S2dwB$LVBR|-mH#h4BU&2f}OLJLi$3$AZ>vdz*D*KrfoOZ
z{KxGj=DiXw0xVpR+IjQLjF;S?a-t3j0!2$?yON>6$8?n-jRq5vq+D3~we#nsD#Y`n
zFU@BB&=8a(1MQ)r5jcW$p7pKCCq$1<2^*4_bwu?hexR`2D?Tw@KjjDHegu%9Fi?f@
zC>_Y+g=QVGtn_4KCWS6yT3ZEFCgEg53VSe-`D;zmfo&ZWSWAR=mMB-#&`eAd;n8^L
z3rw;YH$u9C*7h3IoR7`gkAhJ*qc8*`J@pgQQ;i}T$<!??EI0vsh^tc42xGYFN3$7+
zW^lU{x;g7N!d)>5CpV0J!93j4o&0RhXlwEZWl;R?bCZd<#K?NpgXBUrhEXbaSu8^&
z;xXzdo0(xw|5|5Ncjnt$%sPph%ALSH!ObRAxVw9R#KFS8Io?hZM^!>kR=ZH<bw?W@
zQol6Q0@?`X7r5`(u0~SL!OplLl)%`V@TEDIdmeVypIA{Lku$`rhkj`?XESnWg$PFO
zYvHo^;`X)X=mdtubwH*IN0lv+50BQH(@$^Ze}69mG|~S<^S~o+5zyHj8=~>p@64z`
zR@>u96JJ4K;n2)J$acMgc_FeQ!?~r-Aijb;O9$Ef%iLDt(ykydDMP%j_d3&~l`Ijq
z9RUcDuBZ!&f-}n=@0&!tU~EJ-e)d*iT86_)%zoD-iDpp_ah{H4WrCpJF(;U;-`!LT
z%FsE8V@CyW39wdFn8A3D#LLl%V7c52jC#SzW;=8UA3{{aqD~3{2RiXqoo%aw1BtH0
zCLv@oELQW9b>?561fOt3IKDXIT-B(y3}2s<_~uPEqv7#<E*ttm#Sx2BzAH$Aq$yNJ
z1-vra+&$f`Sf1ERE4Zo|L9%uIgs-}5Ut5n53c<9%3c$^94@*|(L#3<Cyk@77XLAsd
zYwQ1h6P5&V(jR^_i?iJGLy-FFp++4Bj4YgJ3WRcv{P>``PG3NJ*R|<B9^6`-Jcsf6
zV?VnC@B*A5uek|mgbE(=@m(*NYo<abq$!XiS?D@C*xlKSOs{Jllg=T?iy33xXDIJi
zn0wLhn9AS)DgY*l?{}PFz68a?PD_+20g&O`=NJ8G?%nJLE~qG(4c$fvfI_`xw(c7<
zP9eKOa_gjVjlcyeBP7B_L=l|A`|KOj5D3J8*J{-2?w+5_p(y!G_X1ui`W4gI_b-z#
zpMR^YPxf{YMRnlmA}uKu@f0(MpZB)~Q`vt?aLLar9E3}JaLRwodSpr_5gcCNitr3-
zAUntRo0yz9fGiXEP$}vTrFCwxIYxS-GJBF7F->EB{04Jx0q=nw2jNkyC}dZ()Ev%=
z(mcckJHe#sU>Sa1YWfBp`P}57nq9KAK`)vIv@=NH&1fu~8h(1*X7jR6jkAo5SF1*6
zHklRNcD%V4WkZ}WhPi-_|I9ak5PIZBLY_V8!;0tkUU}MFL^~|57iKzmDlYIuC45|U
zv_1MwH_zTRvb+$22^5pTmtA4D^>y<+Pl9Iv-e^hTlqHVVX@PmL$StZ+hR%2Iz$NcI
zYnChetyLB-YNp7IUhCrD>n}2Mp&Ri*(iF*$*W^IevZV0RZHvwK0xh^@Cq)>$rLaiF
zl$|@tEK*z)%nHR^*D0E#G&=y1B<Q%>j2g^WH9@Dokb_hVO>%7(Mo9u|e>S(j#+q@w
zbz27~hMNGMgL(i(NkD$$NZSig0|bh@0gFPw6UnBBr)IlR$~tzU9}-AwkGN(0cjm7^
z*3(&FT<F7Mz<TP)?Pgco`vDU=xk;sM6tOCDuSr+wv&1|)&t>aW@NF%*e3h+$j{Uwj
zm!K;nwg6{m8<1y7+{1f&q?(^Ep@SRUS<EnCI^I(8qj^~|NjjHkt-OsyQ5bq~nd(Xw
zYOeMpGg`5ZLgPa^!Ayt&h8lMLYDNI2jOlV*g@AVCz?dKL3CG+7trT}6N1(e0@E3aj
z`pDSt-CDJpDX@6T0E;B*JXRlkWh!>^0~r`=TNGG|48vHmUN*C?b`(sK@Oqs`*Zld*
zX6j^`(K6t7!I*J=K^M)t%m$%u$Za9aL))%jcbOHl=u(oOTB3X<HJ0g;g%3k)UDuj{
z!EJTE63|GQ)1CawCexE^PNYNv2~h|XEZGb13j<6##15A=6JdjhWwKKW_?qcR^!C%u
zUFnXvT}B9kd$_a+O5>%;i_8QOwg8z*A|)0iiGAs8b8QbN7a)EL^1sIbK;{A{VEcMA
z5PgR^1Uw4uTKO0Cvp|LkC}_-LbASMZoDNQ-k`D;%bJKW}+UOR5eGu8Q1(Glz+Ok#V
z!rpEgec2g=S}@M6$%&b!|GAC=5IkBmc^8<N<&F8mygMo&tupKb+H;Wa!JhNN5g(c#
zzvG3Zs6wqkD~pmZ49!4Jp89ONb3+>mvy$@5HAS)*wWc1>RR78~M`C=3`iAS=C7@3g
zRWv)}2BsH2aoa!akwe`L-47wn>2@lBuwbB>!7Qn8bROnKU^(v85)RIMZvM*jIK!;~
zLOPxBU;-!DkeVfC)`#vA9$M4f0$L#&jz>QH!wiI*!-HOLHSahO&4O{Ji=bBcL9h_D
z7^?(a&+^K4nJQEmq+FRBx$B*5q#C>EPU6d@@0$D$?pe&Q6n&GOo&9<IcjIFL<dxza
z91kqH0>g`QoVMGX$2$>6NM5A~1i2yPAtU=67Acn#Ce;PR&pp$uoy6Dw=D2_j*&)2o
z3R50<q8Y6VoRfo@&uJOt<Yk`WpUu^}X%)Ru8|s4>gf#ZLsQGwLve3Tb)&LZH1tu$Q
zKbahcUTSUwSj)K$&c4J4ylNba@BeL*hcLs|K}fL`kyhhkmFVW`By7CYOzOgq9NuqW
z>m;&tjPHEG%o^%8Dn?OY(qn5h?v~JNhR5Y}@<ww9*3KMfLPT=L6OIWV5~}XwLZ6vz
zeybd`ct88h9H!#-rWS2R$|~g@d)PFfPc$oYMhn}3T8ZFlKFwYeP%;5x9Af3r!UxAB
zOVjM7Z@Fc0(^sA`iB6wgY7XTA&S+k}V+RU@rxeDEX6v)Tm)%`dPedG#xZK+Z`qpf8
zefcPFti0L@=mGz7vA9cs2OEr#<V-X=Z1U^NaKS~&5>)1y!vSiudpayml&W>YEg`qg
zDvkWW&(>@)qknUoOaQ<1+P0h;kKYd;n{GkBl=49D=i-o1s#HzliMkkwf_m%+_nMqm
zD{NpbI`K!-0H+5+rw{<f3X_%HPPzSx<ymnm{%Ile@T2bW*Bc;m-9$;`I-m53NyV-q
zazMtC_Dc+l_xVRA|9|esL#RRTY*#XQ=6qr<+U8a!kFY($x8PYwQ&4!}wWdI%r<BPq
zuq4>cz%5WHT(1kg1~3VoJ+aRGbBv=?GCE@?56pseOdV_9(v2#7A~~vLEflG(jTrA@
z_wpcrlpH6TVIV{iX~LtQZZ!AkoeG~S3rraBOo?w<o6JSHZxDBSm5t>bwdM%o#pT=0
zLsI?NKtuv=C+YZs8ICv*@1(8fR%nXjADo9EeV+Rf_*+yVeRyJ`Devdjgxsu<0bJQ_
z9+JINTF46rtNU}Z`RX_~vq7>I2qdrO->x*j2)r#5RSiXn*ef|(zcc1WZW6{NSwwfX
zwo9}$YO_h&O%M7QA!@Qv)t4dXAi0s+^-#Mh*x{CICSbxX`q%rW`^P*;NMwMX$4&xK
zRZcOr;!MhKilf2Fykfxp-Zw|dnu;M9x+b%L^7lK+6=Yq44udJ%Zfg25dTwcL1;Mvm
zvj{hTnHzVx6&YL&43iwQDT1GRw*k^dF8VtwXf456z?iW;yKLMCU2KZC1XDwKt_iZ(
zF*8`+=tJ!ggb0Xqkd|16X<+UWc>$q|bM5=4`Ns|XK&TDphm|0i^OL!H1&yuSSAs`I
zPh`nQ(cwn3yTq*rIatUhsY8h*A>Snq7QXq=17;b%8D2RQX#pjd;|Pn$a<062KbukF
z&B@;2Z<u+o(3#FXboK|PQQ|*4#APQADCOz7!|bvEhYr`$6{ut~GV!pME}nA6+ot<P
z&{~T`hvf}n5!S}dc7B8TL1ZWav=J$u#EP87!g|yAt!u^o;H(_!F75TaTJtqWmot=&
zYNu%-qaa|*5Gc{}%SmQ-iW^_H;@0Hkh7?(@7yf4!-{IDf{80pdBUU)EwGav32>^j#
zI{i<x3quU+f{g=wwG%%S;)huFr&-T^4l(H}C2@K+g*PBvS?aF)#+-&N8TwPcU{0?j
zV&rtO5Eh*8Z<=Mkz^cMoP_FG_vY~5*@WUcxplUMZg-4n{ZglTJ^AEB_K*en4+WX8@
zpGR3ds2Ieci{N8Kw}(ymPCDeE3Jm7pDHzR9=bDj9+yzoS@IbnSY5)MJ^~lUr$Pb~%
z+plDyl>Dx)Od73n6QMmalBUJxo@uU6GnFlyxwznkc0T}0D4s5$ZQ!E3?SEz_C!RGz
zsZ}TsJ>HnFP1Cxdj34lhpd1l62X<@Pv*Ch4t}ajB7IIj-a!09R5jQLhHx{^#;hM55
zXva!~o(LbK+E)T`6_?i%6%3Cet~1na)uGg(;--xdKMz8XqOklt_qXr|i`-js36%tK
zMnEtpxN=Q6{$pwyfp4W0)Oc5}FUw`DefY6%J05jCRDfZ<2rq{iF(6Oxme_}OFy=tA
ziCE+VO8oTXui;4x-FWtVSoL|X+!bD?54!<Xb1Z|8h*U5{nr>e`*V@@KTIZeG6>fgP
zwZoL~fKX(rC5+|7uH8PKP7gZcmdfJdDy|gpdYFhgdX=w*4-d+U?J1EYch4IihC6oT
z83{tICDxpkY}b3?U(})MC&d+8I9sqNXE8qf_3-&;x<|+uRPD-4rMNtAZ?6r%`>Ctk
zHK@Ll?dA#6%E0qFJs+N%&l7DIUV6_jyTX6{CwLQ<UP|#{-O7@0eEz2JxOZGZr-2C3
zAdg%+^s4v6U%o<X+t<jZaNVwOwO+$eK{;=sJ|5yIbIV*3-g1>|&#n@qB*aM`k-rv&
z_r2MDb!dH!KIwAbWIPwX?sGSIa&|SSXd_}Afu>J~-?})yCn!B?8Z_X4{-s#uAH7en
z5C7{W+NsWpyOf5i%fl6^u3=!LEK<Ik&w0IX2;ZL*-xKaN^cNoXyxl{>!z*Y&4~$?d
ztb}5{M;cU)tS9FEfxlpa@j8}-uL|)Za&WNf{2(+T-1tM+o*?c90ol}h-)IQGay*Z~
zc)=6X@WH_F=d)WrUP9?3&s%+6_~t(Gg3AryPM;V_Xd?UYc<>GhQuBX4+3x>ioM3r_
z%8HtV4NL+v$8>Y=vv1$+FmpKsr-Oh4W|!_zgN-BX{5X14`?#hFbQ~NrIYH;-(<D2@
zbDtUnDvcn%Vij$w5Ns|@croho_Ohj&+*=DKmf`LQ4M1?JX`&dh`vrSad#+u3G{4C3
za;Y5@rS2($G<Y~rY}fkss3{JY$5TO%FlFrfwvg>|i9^s8G%+6dKk&r_<Pq<%`|U&X
zm>)`LaZzIx6qJ#gAVb~zH`v{exQ<@MO)b;N05OTFwBZ5!(;T|wxS7}(8XB!^td)?Q
z03mqyR9pK!pu8+^Kux5YWzhgrSxn}C+R65TREPZIK>_B1nWfOn%uWp1H$QW8&z-2^
z&S}Y@4b!~?vu*ZKU6+GLM}(;=Bk4pkbG@m-JbPQ*BH)C*%PPz8Ha3(X%qq`H8nC<H
zm)c7Ywu>0fs8Ufvv0}u5Un(6!!u|G%{axSS^14R+*{+LYN&TT2cGgy~%wRA}YZ`%H
zBT6->upWRPFzfxEvRi(3-BfIkme)6qZA3Z@UX3b{>2<iujyTf2dT6u+Pcc!EdRAD)
zeIB-z`~06HBKeFPQAb|Dig;c_LwrgP+Yv@XB^yjg9#Km1tCDC*r~G!+c#oZrAAcJE
z7ibF+)$<Y>;@2n8Aa6=hqzn|amohOP+I9M^Al_*I2tlObK>VZH44fmS**yPGZk8Yl
zS4rD(>PsyQ(zL69>>xarr6Dd)hvLl}!25rQ*y3S?P;gPzz&N>hi@cn?G;j4Nd&HGQ
zQ4p6yQ681?^@j8z1I~MOc6({(8N3!Px}<{GhungJUgsY|=g*5%t6okz3dzTLeFu5{
zc81P))O8e;m5>E=VwqRaZ-n>BccD|~#5KV~Jnw=8bIIl1n>Z|<H?qzSi=L?V0iaKn
z(#7-UA8sB$srw?fGY7XY8%+2Sn~&I^lJ5Pu)!y+z`2Xlk<nmg$$!=I5UIw!`Z%du$
zz1b!F)MB#OAh|?}n5fQRR<iQtj2j!?wAA&ir=5z<m4Ko%2!<fb-+AGgZ|?mN^1+^m
zVqS;du&0Lr4TWtahJbkP92kCalY7&vbq%18F@OT%%%ZwG8RAEVPyWjF4W#y5OD><x
zv=A8g?vXGx&zErsTpbu*mqF?w3fT=0f3eK94==96W&xa+EchXS+_#+(&Rpqw29Xa=
zjfjqyWrTlzWAAwYTx}UGALvtFJAMZb@ZDr@darQtYwj&%Rsu3#UQ0v{ok<}W;kN8B
zWz99HJ<qTkALfKlc)5LZa+~IYEe*jZ(nIL~w`GOB=iJZRwkQ36+SC6(?a6K0^LJoN
zg`=={(9rheaL)Yp!%1s1oHm0`ZE22hOrbq4e#(v)5`E~R)ghs17xUH5xCnf0P{h@w
zN3Dk5Pbf2QW_G;>>Lo@8i<>tv!384TcDQ}DxQp6Ha2$}71%gs%GTA&1Jk;(UM<)@E
z!6R8RoP2$Z4PWdY=^ZI0)Sq9I?<Lt=e~_K2c2$_JAu9>(NTFHY{G;sf;1k&us;=jH
zh}6&W#vW+*FAd(0+ExKCAP<b5B2cFMDEn;i6cMo$b<$U)>@ueHMedniF8_)H<?{^C
zAMci<ZMX5R55N+Z8aISgxX1cq?dxT9;5+5m$l}23fLkG}A7=NP;CkRIU_UFdt73Yl
z7i)$$=TQ4a4ZX-~6!U5Ml#4;HI@F$4;(A6<aH_Q@gVUdNq&+eic)nc3E%PPtlu`kQ
z+Y`ohQ6$qaN<HX;Qgjs^Lp#|=9(1u!1?BiVxg|5ns+I1Q9AeKo&RtDZ4sRmklDmzO
zSL4pHGY{&zh*cjFt>yl~9)z9R%d7}rHaN71<-<-_MU|SQO!7Qrc%u&pUwp1F$oSuI
zaKPk*kF>zS^Qi2dQxQcEB4jOZ0PzCUuP5#|?|eXvaJM?I_XSzrss?*oxbs6$UVhnl
zWy9dkPEYY3tFgQ5x~yd137@NK4i(hZlx{-#CW}>wmHXvA^G-$AmHdUk0xmU#3=$&W
z5!RZ-41%vxyazru=d5?X7(mz{fgU8C4Y8e#pPK5sU3)Lmws14={d-U)ED9)~5T;}M
zrFram_j|D9MAQw4RM!J}&~sTjXK#OIR<3jXLrELP2pZ@~Q_q^sX3nZ$1bg0yyqCPy
zbXh<<h$C_z^CieE#5zx3XY7Ek3)t<x(WX%EXeb-7VJSf^9JK_BhkDB<`6D`X%Ilw|
zW2H-JU>}5@C70TV26Wbq-)l!rg=BA~y(t@H>#HdZn1S3zo%Ki=0v*XzRm43pGo}_F
z=qd!0GvBrMo*z%9I9wGRo0jZ9>3}0V?<70=^dMsoz6%a|kQs;@D9yX?aC_y+uCKpx
z&cgySF~?+hpRX~u#JP3~Q<dn@DF0!yxAZg9`*_#RL2Dwwi<0U%g)+T$%gly<x{f~F
z4Z$ZMGqS7|tyBb%as#O*ChyOJ64$OVE{&PX=v0Osg`%Hyq<G1%n_TODjVrXg<)qNX
zJ@eOV=9qZbHDEU^275O=J(DQT46pEWvnm)aM-uOdtgad}b|?1bO|x`A0%wThsfm0`
z#t_}V$f0MvVV+)%M&8CV;&3a9oepB)oky%@wVC>*`&qw;gXtiz2DRsoT5H~1=X$d7
z$pv;4dSI;G)|sb)V*UMUv?SqzWYCC`NQLLcet%qQR6x-EN(mnrGoUw@TYCO~%vEyG
zLKN620%u8U{Tsp5IxaC=F=pz~Lg%ByB2z*&ohliLm>xEu!ZqeGKnwh&cN8<6fZVbk
z?7!OFi0Or9x%HiKxT3fzp-|O&G%prrPlX<E6M7pgam1_U%vJ6&8T)f^tzZU3_$7bN
za<e>`#ord-HY+HfP~u9nZLND2jH*&&q>`|S`Z-I@O@be`BB#n+#tM9Pgi~mVG|zu8
zG4;VbN!^A8%stD}J+jOszvG^53u_D(f8e|3y#Knsq11PCNlg%$nb!qxn>kqh^+7Tw
zWBbrj$sO*$XI9AeLo}ExWGBBvYu%9G7tg$7mIPzXh8tqEaC=$F-!dX;C0HZ7+`IrT
zLraTystgxhyQS+*d4N{1g+9$hvfekp25S?TY1=~oF%mTHd3)tbb9?ai?E1QzmV!*<
z$tmmB3ikicb*A8T_j$RnK{j&RX=F_Bi&sn?UI9kNh1MDmFMF{pw5`uy^p1Hhc>eX0
zfEExG`>rvUtq+z)Sxs7rT;`qk-#2&5AuccmUla96V$WD@(gnjstw(uoai%d@cJsBj
z%*S{}=^6rTCP=Fi3~=VF=9vKZkt5ZZyM>%SyzHVU%<3ub30H$kT0_*;#o~qR=-`*l
zUoX1u?0Pa3(8!QKTVuWiip^Ir=aVI$hjj4x2k^RE5omJRe@)d_?ni@NHUueEpf*;S
zzApuj20*W3=zyx1uH2*?ZePD>J_yhydvDh`rWAm5v<xd(oA(90fEb`O4!whb2TOG8
zYvy}di{VJ@agE4OR@*0EF>3=~f3~Vp%Da!E0OI*Av-suCZ9~yeeYwE9MeX)~qrp;h
z8>6fgcOuJVLAkTPT|@XDvWjH*=)~f3idk^8V;7uYJ3P9VRxYU~)wf?0BgbER;@y(D
zKl@hM=6`pMDgFwkG0VGVt(`C;egi32vkCXZ`i8rdu`ayBZ>kM#AW?WhSpz-+U;*sY
zuzG*}QGVN2-DP)7_2atu8?qE+(FkS_5sRFe9Hb!&`~$K=8@OwGMVodvl2uR<5{cf+
zH~Fa@Lb2cE?O)vL-*Rba1J@H`Y&khjyf=>V|9FuX5V?-dT8^!)21hD2-n_9>{26oN
z+xO_@|D57aU&w@TGSo!IDuXcoU$*?@h5nK${swNcTylU`5pN9eOpyQ2U-Wx_8@mEX
z0^Y1!{Wn<wexHqC(@<Ymz5`b(3GC9mNlW}!wgyj>ZzHoK%JQez`v*?p*W`F9Zqy2p
z(txG8ZJ>Y59l>A-BOwC-s`wLg{EgEYh?{0DtdM;B{4{iwf5XeIvk#iZu+Ql1k60Bn
z*K?Y1`2o>7+^@SWv;oNlSQy-4hXiu(%Paj^`x(7AyCSkJLcJgN<7<!bpSZ!jU?^%a
zR#&g6qd))k*yY#ezI3zyTVrSg5tz9Qw6qN7?cEUPo5Ovz_1jG#EZ;$gy(Z2-<Yc#!
zt5Cm@#@xaP#qh>rKjX{z4MdVMFid;cO#psh<nOwfpJS27%~no6_%fU^I$Pgf?En4;
z14%*KA#F9`%IKp0RW-gyL$T@*qdZi@uky{*V8G>#a)8h*WBpzJ$Jek7*fi=Z>ubpY
zQ&x^x?0vkze{a3pi`=G4C?>^WUzZj5BWK2MNRv;Zsh-iH_A-XhEB+mi$7^&0BBem3
zG&ZeqLW#fm=g<cHka^T?$6Vu3+ozu5pZY$(CLc{*MDzA;`#p5<PCll1QQY#}+-${)
zi2v3WH-ZZyilHSg5IgBezwjYPHG^yMg}8O_F1g)5a#G9G$`xtO)FAic?)2Xr)6%>x
z0^ze4EARJjAIFhYuAfRJe3$TnXZK})<nJ_N)Kr)f7a`vov&cW?5e_OxGD6*71d8ei
zhWPfKEl)`CJAJ-?=WKriB5Pmpg=L6r{8|f?zryeT60hPM6h*2dO~k_C)D(N_J;%@M
z!j}~<$~_6Yr$dKx&Qtz~j*jH=$ZJ-|t3VF(z<-bOvlj<U1tqc!D)YSPrT*0iz&vDa
z0Sd)$f!FYk9zFc*UF~KIg{8jaZ{3H{v|R+9vt|CHUb|*Uy0sba8}5&4baKsT{c8X9
zcS0Kw^|MPNg(d7cME%S;{tN$t@Q@wK;SHQMTwJ_jO=o}K8LW%YpmhWtvqKJIzv~2l
z;E51l+jf~_TiRiU+3<#PXu|W7m->s-gWdd_$FfPU-s(Th-ZPi}kp|Mnrn!6f$rt=V
zU%6Ji8>+a2!a$~qm;D<%x0@iV)G|Ss)PUXFc9(A}F0Tab2b+?#aPLC@s*fSoRBu#q
zBP1{uPba2w7~x5uyJpgd!LH#+{GM+NU+hoZNC(Fe5wzO#{+sC^n8`v>=8&zCla9MH
z(Mx;JUoeGJ-lkdH{@UgKW7oRofgD{&Z{Exe{(U#PZ?$2%y1)_^`v-51-@so5yqU}o
zf!F1t9)6cE+cRlx!-6ILgRixJ5iVWthsFMEUc~v!rFsS%xxSzO(<cxgYF)ItJW>tu
z;Uvddwa6d8i663IjSUfP%hvb&!{%_r)7UD4Gl73#Sxr-%!S0Bk!5u;mSTf{Tn)Ql>
zBmMJehRJ6a;#t?iVZ5Wgr{DZ&yPva8b4K~U&U4LpI!fy6lrq@4wssBo`#cl-d#(TE
z691L|#5ODJeA;OL9&xCciwnN!U9-sl@m<$3fJ*=wR#PSX#hbCjZ~C(R6X;Ohb&LF|
zU$^g&$a~XbfAnYYCY<i@`LQr9xY%2B{hr4<#@%1cBjDM|7yF<7<rWRQay{T`zMAU7
z7|*}N_vglM$beBa1Y{+=C7}rC`r}`3zo$TwydxL+h3p9Y1NILtnmystgsS&n?Aznr
z7Pg@p%n{x-FZd69#R@5ZP2D!O@T8;t@lP`$><{=|*!_3T@fRKKhSz4z#U}S`#@|~i
zT3&I1|H1RIYc3U|Wz8Xg{@f}ks7^x=8E~$KjrK2j$~_}6W~o~MNghqZ{a2T}_O{<<
zbz8noZd(LAI0&Z=YKqJ7C&JI$wnBP)w+cUU?>YWy6>u9auf`%o28IFMm1g@VtczFc
zDya{+YZ%2Lss7O~a<U-OQVs;8^A@l2pB?C~qt*)%7?$_iK>v^#tew&bR&0yPk+mk@
zH~(@wQUD3ytzbj6N>|VIt1O~{xGqI-ba+B9`Ca?PzH^VfqZ8t;Ua#fW)ko@i4AcM%
zI4R$M>OS}7*6|1ivNYeXexhYOzyWmwVfSPC{x!@`)X!rM061N*Vxd2(Ip#f*n1&4U
z2jAjagXA%CLU2wQ-TfE(A6)Ior}a)3Yu)!~|9;qHo10#)xOm?`a&=6r-f(O;|NJ-I
z7Vn{=7;?!jFE8FkE_pH&=lh4g?S3lRbu19<KzmIc=8yc)wGY9kg7Fh!5k(pU&$a@8
z#u~O04uzSUHC}aqA379bh9U2+i<F9T@M*Cf4gQSZctzWGNf<5dlGYHi(7uYvQSTy&
zGUEKRPH|$DZlxV4kDhnW9exHh#nueKl2(N5f`{~Mf5!s>@lb__D(A$f$WOg#vHyF1
zyOD?jTfWFUT6a?3?sE(L{~~I|ZWvqdoxj9i_XSeBAhoz?R2qv#oifueqqWUTKzVw1
z5Axr-7g_{hj}TFVL!xH4=T*Gqr+n^2-)!oz$vDX99=*|zKLE)WZ(iFQ4M%m$jV8?B
zShOdJ?<5CW;x9vd$KKp;M@1o8iMQ-2ziNMX=Sr-rujJAdLyo-WPyUk=ircXa=L6Z;
zi8w&NB;n+Z{=!?`?caycBzDky_5}Yg<bif`hUb2=*grm)^PsYd-B{saQup~?xU<?U
zgI4Xmd;NJ^xIYoB$i2}74Z$X8fAnnsl5Oo*lb`_a@P+;~xFMhH)401@*BqRp%M!nX
zt~q>ZJDS`MifiuV1$>UeAWFyJ{V~%oTFZ|>-{T5Ktx0ls^6#O2kR&DCBI=YwZnU#M
zoBs?AMNE&K8lga~*9pRUzbFBwBA{EZ_di01<68p=<yRD^!_!}RkALC+AZ<kT9gS7H
z3)u^A<U{_Co81}$@X)eU?&p8=m%Bg)AmnobkSE;@vie-V_xrxoiar$(c8T%}LGH^(
z`>FN5TSf$A@|p3DTkmm88#`7Em|ooT{)^u*Wfd~Sa_1fVduW&xT(qU~66rRc_vbVI
z_vdg?wOJL|$>c-)SqCF|$=hFq*1)#`$1U&=%x>E#k@dL+{<S%=GMa2(Ghg@5MMG#S
zvWlfIc-|lPPrjCn%dtiGYpaB-wBIdv_&+m7vRrxIl1Kb2E_XkdkH=|^+MD1>fs4TZ
zgTWFCNVr7dKU_c)7tQr`<`WgkN%nH9t7VEs4pz+T^}m>P*EwL)-bN5`*(I(_RZvD}
zWx46Dbig==QS2IJ>j*kJRG9?=OsSR%f)X04i*xTa+7yg*pX`SLhQ-Zvb^dz2XTGFx
z79;7+Km#Kbwl#>nWV5-r*7Xe6RqHH0{DJnK=>mVwe#d-F$h1sOE<J?85J*VDlT*Gh
zJ+Wv4;3c9LFAq;MxMTr;{y4>M#W=*^FysZngk;8S!sqGoOJqs=4^K4TYXX?HffthJ
z!>ta4TKJQhd9&*PpiCYY@}{}i2bX2^x}VJuVsv<FK!oI@bjT-4Dl{+rqnRH(mLIK0
zHgN9~_Tlnh%|q9_M?gm625S4dUw$$duoJ*T$>LGhTD)EG#??QWGjHOlOy-Rd(M>K%
z8miYVWJXhUNIUQFzKDQ?uggLP$P6kVp$9=CN^7h%cRkK_Kh3Feg}YjyZ<Wo|r4B-U
zoON-ES)bNL`N@XkKM5&a8tXQpz8PzFisG9N80jDOzfL(&at?-YqN+o^BICKIYTx#c
z9?>}mr=K=2!uRRY;{&5j6zd`4nP?^N(uMxwZJm^<Z6NXR<07^0CqrQ3DMIfK8s%r!
zlIhHu`vw!~EocqY1Oe~&X8fl=o)CPO)GkU(rngeIi7XX6{C8?PJ<I|ZumZ*7#w$N!
z3T1A+BQ6gQ|3}=zIApRhs!=ONF2O}Nhx2;GJ&a?XREMe^4muu1=C2vyPY>X?9P(Nc
z@FimI^6s7)KA>~EpJK{t`DyzPB80Vkke;DCt7@HVo$AQRUg6c@{~pH6DZv<pr)4O`
z++W$<-eqvy^?8w6H)t0V48YAxdnruv&WF*&Uxk$GG5&&V%<%5`EBsUm&0so}ZUlNG
zpwt^RFMLM7E)V1UBkc+nU~V{XYGt^1Fm0qrXq0&fxCrjXWsz{<)$Vy5WSDJ;*QDYC
z$<w{(pALVW-|mBaz2$?fAGPFb%cCXanSyU+-5Gwcw_DacY&PIKbkgE)3ges7vi9Fu
zMHTH@P{i0my;~m(Z#|G7EAIzb&Kl+HNb@e96Ta|hT7gtW>!L++OQjIy;=M6F-26EM
z;n$6|SUoWI5pnFDFf%;lSoiWl#kHZ_(5nIg;1W&s?DOHQKX?FqY;-L3B}k>0?0t2A
zxW}Nly(uEO%?4$I&t!<?$MWvJG`w?H7yWz~Cx`+;?(NFgcipw&<bU#A#i*5l>*A{%
zJpi3|g>45no<1$j0E9BVD<2KNx6O^dpuD&U!+kkP3D8KBsrBWZ_CPrEM4Vno(1oQH
z(a$LRB*SDXw`gL>E_x{_hfxeBsx_9EE6&S3(5{;Avb|+1HVuOef>A-bz3?vgdm<L(
za%1@@A4^8e^LG=3Ob=|NuD-60<Wj)0$-k50rF>;}eM%21yAm5zjm7hZfrFrW@AH4!
zxnH=4MwB^_K=4M`9Qo}o{LXyws_PsDV-4k23R}jmb321!PUmJ?_LBMI3HN3&I>e=w
zQaL6aeT-bD-4AyY9<YPLOR(m$Dm_0mQeTA;lBtuXZ*06hc{vZuSWT@HswCm|lkmlm
zFFD>0e$Mp`tS_3#8;G5BGZi3gz<ze$m)%zjR12xKs1srOUgPmLe?#z2Ng(8X7sLfA
zB*VJ~eACmet502%^PXZEgfl&uVM$1+b;~afmPfFdEMVQK-nPT+O~1Kk@>ny?oApF=
zWPb0>qFs(!=O!g@bqyS?Ce(ii;XWAAF==Im?Xz$2BbFUr<1QDXzz_;4Wkl9QbtroU
z!TnTVNmty*i^tjpfd{lt1?%jv2LxV#!P&Ca+}_(gGGs?h;1|wBJIeA#Y&JbI;)>yg
zdBqr5L0NbOGwiT4J1OO%%NB#g_r@f9{qRnU;1~>-T%rjC9Lt4A)f=UEte9)=xYqB$
zcm@!a1SDGfC;;*+cbQ?eaq8$Fg>LFfu_4jJ|G&G<oH*U}IHs=$#KxO%H&gEhq5?_|
zmqmlid`P4V{@d3&nJIs{o>puNC`5$ZB*FhGx|lw{&`G{kv?pi666YU$k?E1xRn3Dz
zgJZTq^b@RpeVSSSF+Ud@uWtg4MXFh{z`zLBUT+TkAx<cX0aSTa21AwO;PSfiM_YG<
zuMQkJSOaNy<sm9}+spy}LMSIMqD<djQjkn@(#7V9sqw`?8%C58h*^R<<asl0wC5yt
zQsZEkI{^uW)}-t0rc*nqG8f>smilAFn}+~@*xSSBkL<b#SYxlKW}qmk42GGMV-LH-
zU&OdPZ|QKeexv^oq{M;d_E7~qZ|Wd>P8likB)ed@cPx@$tS`3@o(XS<kL;`&yR%_y
z34$2RCt+>)=xo>COE;j%lu}&Y`)k9O4{*(WDIBwt-?DR8eHy;?4A<BjjRuBV0B;U1
zPJ+6jnfJq~=LPR-tSJxfB?cN=9zG*AXeL!_?U$S__ztkiZ?=U`st-Q06Er@Nj*NQo
z2jPESNF$k!D#YN)^p)uyn%=F?@9vl2NJvx3<5}MI&Eel~=(3U3<6<jPZ9lAm_@+|5
zBknZ|j`7ta&p}<3x*A}u$@uK$-fy1&B(&EvoZt@kn&*!3E94s~i-7hMls;7~<BSLV
zAJ>wo6!R3i3JGS=u<0RLXVatp6R)}+f$Tx#(ad#l=i~l0!2=wbLd4i;OUES-`Dtr{
zH_82h9nd|3%k9&9{p|ljd<s4w1<^!kiMZZm@2Fk&zEnqh{SfZBMzBaSq$_^1|0r<H
z*|nt<l?sSbaS-0Y;knuL?0HcVju1qQUG}b2e<O0rfU;r`E}3Z1-jm&Ir$lNXVdbuF
ztZPBXrlck)1HoU%+4a@914(lU#;9#4r@rU0_Owe~C$et@2V-#XfFh@Orypzon$UF-
z)~O4M%b|Ukm*b>({1cHudWOT>{}Xn{4A6H}cvaFmsq*l5&Gx7y{|qkooG3wm)P-mF
z(PNXn<9FEO$GV)(WWIM4os=0unF730IN7xiAe;(Z6L>_LYY((<-RPPN8VgI^*+~VU
zljco1*lrt7ha!`LT-BH+g*76+|I9n-NFzC2BVZ#<2gx&p8IS0l%X^Y%nm`JCyKsiW
za^-piqQ_O$(Vq2r>tjX5<tR^F95PAsXtExikj<lTlxP$36zXycRSZ+TQ%<nHQc+`u
zp(F#$4upGVh~4X#X+K%x1~{N5S{-2|)CH}ncd4o=Ru|&Z@88YF|0hmLG+2rjych-B
zLXhVJ``EMZ<7q;=VUUr~5KM98gUASRp`;~Hf|)*22y?kbL*&4gm@GsYr()(|_Djo1
zNg@ei*I}`!{v07g4!_6>akP&<-oA3k-hN{k$Ys8Le6;I93@B6)I|wK<iwckSi}M_f
z0KFC<JtZ-LTF%}{9qp@E@Aal6NTZ{*^<!KQ+f4Xx0M_PhY{OvR{yAW;r%(aCJl|g5
z`cyH{Yd!ThkR7PEkP08f*`1m0X<V6*t9<1lz;l?^ND#{p?m5NYG^}d}1_6eJvh>me
zlf2n;j5m;*O4iGYra&G5L*w1|A5%P;cFE<XgctGq%q$50hy`Y!o89lTi&SDAZ&#8R
zeaW1DscXzr7#b=#XgXl9<XWDm+G~3K00PD;)yjPM=*b1H6@+=Elz~vTq^F7^Bx%WV
z83;);pHjUwJqj!a!APG<RT09^n`lk-2)b=8H7D)TJM>jk8jP%c&(CuWrS%kqkzZC;
z8iZj;1WEMXT@t?VY!GFbl{kuHcQb5qLBMyfd*9A{r^__xY%p~)%DlYZ3Qhp*`>g5y
zY5X(_A0j+JfS7gYLQY8bLQk24Uyome3I_<UOshYT0SfCRv*bZXg!c=Dbo>NYC=+(I
z6xvKl3t_8WeuUjO7uuu~Og+~%cF7P^8gjIKFv+#|ik8-6wr~%?Gv7JdUeKqjw9)=9
zRW<@JzPDt|4#=?n$LDmGCP{^)$T*3{1iD}zI=R{(mgh2TXIG%I2fqhGRpu}1hki=v
zGYPP{WQ4H5(c>NWnLq6`_o6-(V3!k96e>P`gx~W5mx`Ns$inRi1P=6a%1izuw>q$g
z)3*`z@C<<&l%bG}uM6Jmyhu(=)(dPVH#TXuu`Z{g6CV|R`i_&;nOBDB>yYD&78sy6
z_zC-F-T&1^wlmiyz<zI{9X;>2#`vX)b^&()=7@@B5Ef(uCUu$DFW!Im3{v|lj~+>e
z+qElGbno5ZIV+qfnVKp-mXdEXZtJp;xhflO1WXGq^%P<;0jr*4Ce_DJ<17s-t0lP@
zlhp1b3MP3MJ#KzoL4IH)go^s{300A5c{eeKsyN@#_nOd=@fC<XIc226tqV%qB|=5H
z|1fdG;*?E2PZlbadc?6T@6|K?$|0Q>a?z4mPg<_r&1~uDo6W94@zdm|CxnR{#3c80
zL%;>+)z2~?{Es2TjGUDGoTXso3lZ4|5*7v8S8-W{NN0GLE;I8dwtt8W<xo=aP|Vl_
z+V7g<cNyU5B1aKv$~8}fF^LKM=_5K%<DxI92hQBOHW;Y9$q$>ZAH*+&2J<6S7el_#
z_o<Eqbx@nMc(LmvL_N|3Ggf=LSVa7j@e8?PdP_DW#U`O0%00lQADLycbK<9gf$v|#
zZ4@P#A=<!d>yW046Fg(qE{dOqDj~tnJxLc?g8=2fW?oy}e!AEpIOxgQ=8OsP3!w>A
zdX6R<2Ud3~l@7T!zM{32{e<t&{@CAjah#Gt=KxAVIv|}i-bjMAybft*)w=kF*c2#|
zilvA%$et?J%$r<eBF}MXWz;<2UH|E!oqHfyOXUR~>@+TpDaADBnB$)7qSYe33Yk!(
zrHX^ZJ!cNOofQFsLimOdynwFLyt%#1=T-5tFS*3|*mtn#lH}$g{~y~rE#wA=QOVw^
z<s%jok#t+0S(zK3gVvGr6HrB0;TSUYihBC*EbTN+?ZuIzZ$XpQ1H^FTMS=#e?-eHc
zX}l7Q4~kBt<O4-<lE{C~A~fD@)7Q9~rg`-wNJgZ|r2asf_ug9b;2CiXp@5;d2r8j&
zFsaG#yQij`pHti-^@Z(X7fp0H!QKt#^$lIy5ik-hS3p3E<9TTTXR<7zjB?@QWv!ol
zsNZ~xRl@E*)uf~qVJTrZ0D`Gz8bp9*o1@TR1OaFu86dHD|G&+gjjm?^!RBRE-!ueW
zta0fh=E{x4iv<9&rpQG2UZRr~ACKCHlonq0@9|u((w#CK5N+%f`@as3QW1sAs8&@5
z`wI<Mz6EY|?c6QN=Hz}XxB?k}s=_uW59g3y{U`3nUdRjK(F_j(k><tS{Ox7zoAP<p
zfpFJ^NG*s&b=k}2n`xXBR9WbS$cN%cLSY%j`dB-Ky#Dukb3{q}rkrdU`v_#C1R$9S
zNv)rp1>oZC7eY6r9K3b*!Q(jv{Q%xI6qkD5)4#>veyUx_ndu9c(dv=hK@hiHXPKKW
zV}}&~<IORT{tn$js}2ARTT`h*?;of5ksF-NG8?T_9yM5jAdp87_WNEE)MWsliT4ab
zk(T+j^~Ze8lu>55Jd~V(<;|2OcMMR7C7ngvgVAI(4)SodIg}iRTmr7O7{mu-d->*3
zlYL9PZaHo(@?Jn&K+5>WA(#7Cmv+u()csTAt0#4Qo4;<|c1-pBZVTZYy%6QG>*1%$
z@aEQ=uPd1%mk?EOiIbwta3XuO{|K|_bm*K|ez;X_6A^IWZZgO~pW>~VYA+~_0T3o7
zWO0qXKEeJ0O0f;FPy!;}*{Hqq>6rEu0yZ+e+oSgTr`oma&fRx{y&$$dk%at7-rT6&
zG&kn=$aJjMZ<Y2ms50ieVC%i<QTxHX_U&jL-$iYS+PMd!MNMpWLMBUl%0+f~H0IZm
z7?ZpMD(%7Tzna8t(y7WGrt$y~QV_wInUs)5d*4;|lUQ*$iP8kjs*BAfOtQ@=3BiD2
z&5YXf_5PT;32eJp+1uVj6@)eqFd$e^PL<8j185t6%iCc2z2+0_(!Jv_RfFOhV^c4R
zd4i#`K=V7<>}%S!6IAXU*V$g8q3-#DszPLX%RAezu8L{b#w2@Ro?uUiZRh<E%GOTy
zerW)0mq=v<3SYNh<T@$6ZN#W3J=NInG}5-%R4yChENpLWaoZ6gb9wi7vWxgaOuN+S
zt)1<iSH`q6QVh0pJKAsdYDYwR`*=H5?Jy^WHo~4@cpQo)xpr+c?R&<PLNN)dcTBKL
zAyE{&UX67WdPwC2KtorbXrCO>t{Fk*$ZmF3EaH|D#MoX=nP5L|Pv~3@-q}%mW-Q4O
z9E)&0FKSoMj~Pv3LK<RFO4L>czaLD>T9Qe_mlIKl`1BRG+J&#QdnA=D{;A5Q?e%Gt
zm{C!i!mAJg+lK7Q|90an`&AIKyQc@rhSSlLKHtUc#`K^kb$Y<2&=a$)+UAb^?S<d)
z6%mHB=43JvPV)IH?Z_eR+GQ9_U17K9wQEnpv|P8`enflB`;~vBdw)A<Tf26V#WnqH
zwYIbEHe)XGF6(dK-AcQ*v#2CmOSCcx`w}EHUUs|9lt!skCQZN$6!qk8yty-M<i)*a
zO)Wg{)(7m1?bieH<MtXd%YM;*4HFYoBkTK_cFuym-j>K`dFJ`2_Ua*a$E$e2cGT*&
zB~H+0UhM?CE_QE|5`;ScDr#rJvD*9|MV)UCh}s`?tGC?^sp7TE?Hz;Kw{s`=Sz%`l
zY`2P}HS<>H+Kug3U2#g!=Gte~zGs{;GLG!HN_$Z(-=>{idacsF+I~D3+`Mti?Z<=L
zeODZJM1Ol_`|pAf^)hp9!B;WgO@-qodz+*7w%B_iiKs0M8P)b4-Cu2)jJ)83y4Zo&
zw`(UF$*b>de~IPjjGud|ccr~m<5#!~Qu{;_s!7{*CX-|r<(}BxUQyD1Wtn;Pa@&;|
zwmW@E2q1O$+voSD9O|@tIkW7a?Rz+voY<ic*pDbw6Z1CW31EZUXIY<T+Uy7niJkqk
z+Lp&sP6~niDc<~QyIBmT?aC+`vqNWlaA4v&k6={J2XPlIi3~6fC37j|o?uh7XM6UZ
z+m;b@oM8Jt5z~%L0AH$#+T&vPhVub!O{=n70v6XAv_PaCBfd6j_h~<3*)%pp?FO~C
z-tka6cEQLP`*~H&SJ^Rs4R-CU;O(P|OPEH8ia+&Kp(CI|@f6Ajka?;7R>b=E62S7M
z*gw(97U~AtGeMS&o8z5oYcznrf1kn~3WHtN*-p}3x##!E#Ltq*wcH*MJ3&Z=r%S8s
zANnq^1`^oTU|$Ojz^^XL7QlxDK{J1u<gU{gu9k>`c1f;XA^LC2?R4$L_qW&RytI)x
zU=Wy<PV8g9lEe|yLEbX&s6KWl*&o_*h;*-Uxm^f{h?yixy7y2gdrNRFlRjpw(-W{Z
z3#dQqAbYGRMsB2uLQBE<B_n?HvORNPyDvy;`fRxk=ePR;SU4}**)BnJ;XMTy{i%_V
zlz^`49q^j1;WaT+ruK{XNUr^;J&PdAmv?2Z?avaqiMccsyhobWQLF7&x$WBJRk(k(
z{V`U!gFFGM?&xS=zn0&l(O|m51e!%o4#GE1wkIrWH+mEm@3~HPdayowL^yn!-inU)
z3<+dyiGvV7Z(NmK8AE)SSP8oJ_UULp3Iw%&HI1w@c4wChq~9U-3UT@j%wJTx!Zq)D
z;AP$aVLw;EP+PJjmdd-ilYL(M0@9Y$AXvq*9m#q7@R|0Gd)qC9bbz?kc6LA4zGwY8
zj$K}}rCR@(*K@45cd`ZTB}z#yvpU%e+Do7mjQ29T*j`h4J%;l(IYp=}>22}RpJKki
z)yhte>}aQ4vG)@Q1LeNG?LvCmiZn2MCUNg9TfaAhB&D=>*8}$F_C4%03$=WvjXu+k
zsltlb?9y3ws_KHZox7OJ0bT55=Dz3fB&G9pu9X#bRP5p53y^$DCu_A<dx(J3$r>J6
zZR29EZz8>5a2KHuEROlTSSkD>YTt|HKoAWMpOlVvK<xXI6Ue^iU0z|ww`ZmD*AAXw
zf1^ES{Sen+3w>wV*Y;i|s*rgn&a$Vgr>#hVNydw=w7<7M=EU-OD_7X#S&Nu+s0-<Z
zRd)CQ*S?3$IL=qRYTs}F8Yv=uR@y`J+AcNRMfJyuR@kAmw^>r%YZ>0MYWwcon05$*
zbNENpX6ts^vz5ASvb;Mw+8ZXfv}67$qO_;H9kOKf>1>bFk=Cv$P=Le8%^}WyOPRg%
zv6zp*@o_W#G2YIN{dh7;1matz?K!XA@6&POl~mfi_P-|yyBA*>D3F;-Y6_;8FB2Uo
z7xFO!ZPv@~P3J|Mgt<{wK1L-F_>?j`Cw8~F3K1&rsI<R`)$E}@66_#={90u{iKRZO
z<RN4%ud=nV?J#s0{gkMERPSkXm#~H?e;4N1U-!CXgz2A_V?R}jp*>$_GY}OfR@-T_
z+qL7Lfbm-|R)pY&<@ftX?O77zl(xp1S0sL60ip~bLfbw?wsd`r=p*5egmY0Fr>FLO
z9RUU{d{NXs9jkLmxWX|r!48a_H|v40dwA5&r@bBJCwWyX?dk1FlL$cX{gw9Jy+|1?
z|GgFV<)EGFlX5Hvoc*m=Y^PrB4oVW+cEcNXa{CJ_m7C+R)pm7ofZA9oAik4V*`)Jg
zrprme{28gX_r-2MH7Q|;`PFtNL<vJ4fz3pLSrg^|6Vi3f3ATIxm{-ZMoZ`J4wO>5l
zz8yM#FKTb1y&XRxajus(%l;s-wC%Bzp#9qkc24Z=0ndjfJ9ToxM9l9o^m%7?v{M7&
zV2^sKJ-%m!9npRd$TshluCN^>cDJ=t$PiVq%HGntc&%z`Do~_%SJ-`8fB$zocSG$8
zd$~CJ9vWiP*vnt5Z4M{5-EAghPCsk+xg_QZ*&Q;xEm1p_ZHS>F3GPp>uov#d$hfrM
zsJ6Gp@&*_j;`j5__KNoHGNbx6cG%t{QegC1)}9_~f#KGGPUlB$bu3}%3#s0`YWqy=
z7r4bB$ZM<Y;=S5g)BaWVLh+rwPp3?FnML-nb$j2g@Yg}J>@B)oW7ZZs{`v`aLhN_2
z(6F+9POu|m+ogKBs-7Rm&O=IYmRB9MKgYHwkytFlYpk}9>zw}|<K<ZNE3$XJ&#1^O
zL$OiiXd!o61t&xf`3x8>8Ee9J`93jQ48!43PTKHThQk24+oo69<h=&Y(oC$f7q@TE
z!Zw1o`MyqOTk(eD0a-WAvb)-AhFsiSt0QOG4ze8VJt<}8*j8xYdyn3>dIKeiyq*1Q
z-*1>n+jcTBde8K?kuPcAb8NAOL3~p?+b#&jZMIA-GLwi-`*JMnM8M%V|2t}XwP)yA
z0K4|Du@}Z(09=#^Tr(@}LAofjkaBBXAyzQO<e<R{p6Ph;eW%(NO}haQU*|noWmm^8
zz3zZ?uY0wPsJ*=z2$%O`x7)Fpf!cQ|yW#h@*_9b|wYlk-58}}uz3n-B-E=BA`FwBt
zx;om@G8q)T-zV6A>uj|9J{6g~=Wn+e`Un|i8f&BY)mxMM`RVqpeg1aV=zdQ@(IVcW
z+WNdJhJz60?qx5xOU0wwZek{j{93O4Q=7PFOh|>CuOG{8p2pO+9si#<CTgd*KQBpW
zPFF_l?^;7Z=cE#>DO91|)O6M(+57lxKyd9ojpy78oo6$f+qc7{p31eytG(@~h0hsP
zVeboA2tGIxKY;m4&v4lhKe))A^l3Y>Q{pIk>Xw1Li7k?I9RM98;zC$*zCF{6`9i8=
z2Cr7xbDoK5N3>vrN}_hOCbx&uCH#@GuCtwmT-c7mQ>(-4VQew%l%64tHLQgIM}nfD
z<4{K{4c;HKLprwkEA2aZd}Qy#3AWh#v&edI$To|@#f>U>ezje!{fHSFrcF#V<yXZ_
zg*%B~y)(hy13PIqWa-Mc7+Z+G)aDDMkwoP#tg>%w@@?oG5ebQIP;Yx`hrM2<(Ay`C
z-9HlZDr7($5|g7g67aJ8Vj*8h8%dxR2p$3ps_hCb{ob=Df1vkbp?xagw|^Iz7VpUL
z-t27;Q<3TaN7#D@MpbR^-^bp?E&_p>y%VuT(;@bR4hcl6a4k%dAsJF8CYeZrid_^N
z_TGE%h$1Ssi@jV6cJx|exfT?=zMp5E2_(_)@BM>o?%8wp*=6muSAEt$yvCG%tMWVW
zTCd3}e!7qMXCD5K?<sI+QMGT==l<R+Dc(UwwSQK<c2{y_zR!8mKTy$Q)+l8Be($8;
zLj0=R0?My~`Dui|UXpLO2HBX4g0kWMhAn$G00WAIb786f_U}thVoh+o^Aogte;+b{
zZ^04Oe&4?@gtW^Koj*qRKG#TH3?NJt8w7vE^3EOnJ#%U3#gqUR3znSYx7vp$AtP|o
zv3sCgC=Bb&gr9!Db=GCy;6`9br}X!S^i(|&rs4cJLhjU!(CZtLkp5ce#~0c+x(t69
zanWvHNcyZhdpzg*#7A;yqko!n&}*xe4nw7p+j`SAB|U@V8+}7hP9{mAAZTm!_k=x_
zC2B}EA$0<+cW6+zogdV*A1r}b2;qF2Y7#w8AeO*g`uj7bG<N5>q>ltM#`wEslUmE(
z=m%E6ebWEMIfJa$>bzW9A3o)8g@^TcjJ$T-Q+|<Ho0S2uSZYGy1XLZ_)nB|{kM1R3
z<OSz8`YXcehQWiNo>ozqzDqB>H{tjD`}z?w5qux<3Fh5vWx;z7ZixC7L<Ta32?XE@
zWr!_8xXtsg<@2~3StFRRNAcmlNQbriiVzzbd^pAz!SK6JaVXsT^r!u+<9f_QXP#?3
z>Gurfhzenq1AT+=EQRD4zw5c-@4+sRK1@Y-O8W$*4gNSCK&xZXL4$=LVd&ze0agB%
z-a-a3SV5}6j}f2jp&KACb}aL$vAv!v+3cHV{OuZS_qoYy+d0~A({s1OtK;IN->`T8
zB&h`ZE%!UpKVzNL(OzB8%|S#QdcAb_?MC^c8+v`CkbTJ??QfDBt2;%Bb3d2#eI!_Q
zA5#GrY3C^a4P)xHqe^+%AnHGWE%s_rXhD(l7byy}r?@#3N#WEh{Qn;Ko9s@d&|vkY
zzDYK-9&3m!Uh<4j_S{%*8cr(m*#M1~$RfZ*C@ziHtypNiLxcUM`f=?vtvzIlJwP$)
z?^nWEP&{TBj&iQxgs}=f=7*oj<8EgO7|EdaX}_xXhn36l-v)o>t@iV^ila(sEPB$v
z8=k$j&k2+ZUVg$)9pCHsLWelx2|to6y!&Sf`3XLG%0HxT2r*7_<doin`ynrwF~_%W
z(Q8tI`n#jQzeP5s9tTMApIZ*|*XaOtYsllmC<x9e@z3gB=(#%zsM`JtKexAaQZny@
z{ry|Az;^43yN4U~(BVFlu6hy^KPzwY*Ngbp5}9D2K{ssl?{OM?ZZi9^-!r~Ugxrg_
zlN%JAeXd`=caN^HO>s-zRpY<E&YoM8G6_ZX=u;5CB6xQn>vMI8@$3MAjb)^`*!bOV
z316-7<nBZ!8L#qLf7X~DAAt$6cV8#{O&q))^T_3}{MO+2XC5#!04pi$qoXIGjjv$V
zx+C8&+#~&!F4Z3Zv*1(w6cXCHuL{+Zbh%9H`4z--B$B2kKjL<N-)-3$7B2I<hWWSH
zTARk255Tq`M=BKU^xRp3wu4_T^||-;kO(EYlZIFCx6wkaJt}Y<*m7xq|AZvM9?!9$
zkL>SrbWg2)j#h-d_}%{g@ZL6hQgVVf`}-qAoojzDV=Gm^`}z5brRcsCg67C=@ZYl(
zy=Fj)O>khEHha8*xc$F6f3X&+`xlhxcuaqPn8fX#Ye8UNaKh#Of!-D*3Qh$5cJhlg
zhwfh}!f*3vgWd5xo=eVL*y!su)?WSxcIDL2|ImZXD4Z8;{EYt;GUJUh63|=fLZ`3t
zEwh!iwZ%YRcW|#EbKOHBpIqS!@bC8;0%6aMp-HFv<nyuU?Y5Jjb=*Kz?kK}gX*C}x
zu%b+9t78NgYg@-Jx{5et`-Lh;RA+bp1yuZV;QR3lGJ{KqeWYH5;>mCrAL7QTt|j+)
z6^YVx3Ahl(ZQ=+w@mmbB7X&fMhw>G$c0;Y(q}8yzmEZ;3Af-CGBPteQwkC@1*XSc)
z;IY~`0~?6LRE0DgCdk(#XSgk?sZ6;In#fL78A8%Od8znvH=fcL@D&n?i4nnnrCi?r
zqulkgtuGRx0G-1!&A6XD(;XlTO+Xw#HYIDrFyzkp)a^<gYARy@8E8r0+2mnU8^y}R
zz4xed#|{|F+@`9~8+EcQ>?c>H4$r#NEyyMt8f`f-CmS5mdMmLE*gBJ5XIK9XsE0IC
z+*Z|%sRG;r>L0G}lxjuiqI`cj*gvnTC&a|HF)I>QNDu&s{zrEvWy=(jt$HN3z?P3q
zddDnP%H?;GMQ#av>9H0_&a!}^PUN5<HvV&++f4YR0?SifRF(52U{Y(m<N>!EH5ggr
zF!X$CqN+6sY6zZd0-+yvx2dX2S7qJ$P9;c_G@PfqZAQLdDlEdTEO9^(JG7gsJSgbQ
z24d$~dw#h|mU~3y)AO`jsxin)Q~Hx4G#|N@)nP-j-DcHnDG^|Xt#minTV8oZtV*f>
zg0XnJ(v8^La@ofN)5scD)yCqpW+m&piXKVEsr}q7xZZwLLIIDi7O~(VAG%?ev9DIp
zw9ST*XSI&W$N%;^W@6$U5x6QzrBuMNU%Q=Ix30y>4)frdVO8=7Qe35hE$MIzRAms0
zURd0!3jmYs5D4OhSKMCI{WTJ%)QFB+jui{fKFi(6dyuJBI#%|fppJsdDQ*^}fY>Sy
zDKXtvu{l>k8CPHG-ppe33^LhRL#jFiiSa8ZIOt>d^2>I_<i_a~b;F_f_~et^fx;h9
zxjez_BR1qoz<+5MzbROzY)2Wv<Q%<_o>a%tDiVjV344CzGUnR%D##UYp&np!QrPrl
zcB;A=btgOB55grS_@2Q~$%cYHhI>a*-JMjw6#NTS10?l@GVWk~yy!~WY)eB_flg35
ztq2cAph*<qPu`alH)x)7AtJ=^B(<(|Iw&W_gcir$#NFsY#45l|Vuv`ym*%=t$MTdE
z3}vr33wIXI2`RkR;ohvUl?jQvT-6lGS+}aQr_{UaR8)t%z(5Yx6bvL;hU^QH;vktR
z$GeJy=s_80WEk*|Getx(MdF*>bu+E+3J_9jh?9pG3R|>%ru!{~t(e$VyBsFTv_3e{
z9ZM~$HK+=zDBPS~$(yP($Zy!o9mlvqdRbXJ93_eer^FX4DLH7&uUKUH{Y~!Saz0Ho
zH#7&FuY?Ry+e3@oca7FCF;-chE}F@I*|LIS!H7(~(-msauuY;B`6>bJ%yRJzH-bvP
zbf}#qAAsC$$Po&9!CiU^4P9$Q@h~bo0r6mTl8f^fM6DLLZneD(kbaBm5(+2+m{XM|
zWKtY+syb)Qv7dk>qVo@!1c(>el~f*PY^*ffxc)2d4Dl}Fq-{UK!id6TZAkuRfUaP_
zGs!nDaW&KyWecVfnBQSbr<m()hq>&CEidIMsduN^@Oef0{K@;eKPU*x!cPP&N&BSj
zm|o(}R{<<=M`}}m*xCN^>v^NyRw^J!*u9n13t`_ODAuD-n=3xt)?+e>)l}GoN*MZ|
z$GDwDXM(#*H3I5uyK(OWZaG(uwyFDsw0u;oVjLPqPO$$Q?oq8V@)d>F!%>TPx0~!P
z+Q-JnO{~EQUvT;X?(ALcVc2Jj3c<46+$GIc0#QVJ#o=zn&ip9N(_vSgAe4k<^ThV}
zG=SiYd;1~ory<tca*D=6hM<30!P5!<azk>hfeS-r-mIJzg^l6=a4<Un*B$Q8)?J6V
zOXa8z3R!F4i89v#(`DFIiIJ%E7GX+)G|mjR*woDo>xCMHhgW}#Ef7Ws^lEmE*gtmd
zb=P#CtqaGxk(}3FV-OzK{6pQ8@VG#@Rh?G4j_ffbDVifsyFZTUUyoP@E(O^n<jl%2
z_1$Qfd+&gHY(%6Pq)6mVMo2{AUwsEkKM}k`(PADx!X379Ks{nCKqXkUBEu7r3gPty
zzeU`*jWe#s$~IN0C(1x3*S{!uufk^@Oj<Q>B<gG9aUo`cR}lC~K4Uu1mFKQheJBm%
zL|(A;bpQP%o}=Hygi<KweR{&*GJC+)h_(}j(T)HE)@lw`w(Y8X|6T3JqneX&3_c3t
zd4BLjmA|&qK1#7;Ze4PnhS1|46aA<uJVsS+5K@8qArAt>V9Mw2Js?g4cr6WDs^Kip
z-k11Ik0tlKKtSL?lC}hs>HDIXUzW{NQhH*owLm@u!<pQ&i+%ifo>B@+EK0reyfDbT
z%ztuXKj8$=NMLp#JJXV6DI*}H{NbzIw18Z^FbQ9tmRvGY!Pd|AGZtDttFZUmBc)^<
z)dA%(B!cRB@6MhA7s|#Bv;HcQRgi*|s@!6-Qt`bH@Xhz|18UflcT1o4t*!I@&FYhH
z$+xDoTB>F0Yd_}rCFfa7MY2srA_?Y+pd;1g`QNX!=Tpe^vFuhVqEe#5+H(VXyz>g$
z;R*GrDw#O*sT@!gT(yOtb(FmahJX#MAm4!gH`~LHJ(C8|1j)Z*m8s^U0krSx&%2)7
zT=I*dX~AS@8Y@=2b5~n8!)ohOz-)%!Ee`I__qSYV4U^-*D@mJVifql3xqdxOQQ1~?
z_zo>|n91h{H*M*^Q)+X!g&q<iji+m&i-W&S5i|jA^L*caG4GK`t2I;RFKff#Hrm=x
zKhUx$(+$}j1gDbz!WE(R=B@l(r9bQX)ee@E*~#7``W0!$cW>e+A3?^cVJ4@-iWih@
z%OzyhE&0P5#*y{f62~#6WZ3s!a4&65o-IgWRR6K-0hEQ{fXCb&8{1={S{!NcBZ`G0
zLw2igtru~C+S=qS^Z*v<oTuCdTiEZ%LFD9#TZR}P2L0o4xAJ#;1*9k;Qq&=4wRWJI
z@X@Ota(@K&9?9GxMuq?bf_<NL?`^_!w6r*vh)`v)H|+f%H|06&YILHxffd8V()qYs
z_g8y15g}C{Pfr>UiQwJ4T<YtL@(L1QsaY}$BSCdAaWwkpjtBb9n){cJ<@N(9YK}@j
zj31A^o(TO_hxC7+^CdQv5=_BR@Kf@F&u(z{=SKU&U&vG^pDb2gRZD3Y1R_e*4sw&f
z9;gg@yqY!1re;D?+oem8E016qWZs<<U5trxVmp|-Ooey&)a%dti%y9Os)Q;GfE6gY
zp8Ffu3Pn_>zc@gM5;K4ph+{ixOIBkx1;rL%xS%=T-M^7rjG2D2ikNYEk$x0hw!|k3
zqC&2i0{9i5A!|r^;*ZVCJbTZ9dT#hCwaI!|6Q_f?@&BEe**P?9;u=Bc<0TFnrto!6
z$lPnjz$(IIDmtsUIaM{{vw5y{|A9xrv`Wa~kFl7fWW91t<jRjCi?Jq@CTmD+)G*0x
zQfTJ#4KsJ>@6<Go98Qj_4j}LiOzZwVGnejcO(2g#ySyRwu<=WO(7N_`e4?YaG0`3w
zPu(u{$}h;e8xmaDCv&?!?H9u-B+yPZP`#@xuJP~rtGBWiSem{AQc`f|R+*RQ*u$yR
zVni6V(eXxJaQ$YPGq-T}auUfUL$9efb(11%1eF~T>HBfto=vh?<0)U;M4n<T1=z?M
zrcxTvGr^vz$g~xIe@oz&;aj4Q5u|*O_`#eQ3A(0YOgH`0pH&HcsMu(tu~nu5RIN&3
z-Q-g38S~rmmt=0aQRM&lMKRfk!Su^AU*6{b`o&N=EB>E-ko5ik^NV7@PP%=C!&<|N
zvixYgDopspRhjd4Bw-w`l&mLfmf{xq`9oFhWmq5IdOC~_`021_OX1L=5t0GM{^=qs
zjHOOeHD9~D2*r&cCY-*Rzw>x|Wq7KNTu5m;Lkc6@`3rv#`?(jsH5sWniH3*%s=z+X
zR^PuK{rC{Fr!gU0MxhQc_Z|R!IJJia$3GMuS<vrZ{+bvEvZ<PEMH)#SkrJ`+@#uSd
z@~#z;Ba0LV0iCir6JCr?>)DWt&jcwY-9UGU;jsqgBhp<lwm}BB?UT_PbM0FiN|G`<
z%}7HeY~xksbmcuA-DwZLCM_q?P#Naj>U-2l16`5t(QO%Hgwtq@yak>9@_2OJy=;s~
zSLD7hO7`ANs<*!q9p$ZQ7_TUSR7stsg!=P76>lMHIXt2d?B9Kk#5_W|g~3TLMi&;^
zH!0YtH;@~#cv0$OY4oF=Y2a>?(I-JpI^iWOC+BC(q0!H`qYdkBqNNh{NlXDP5Wtm(
zN9S&1EfuTUl0uJ*gsV_O*{_f3f>b1nll`zVn!PnYG#;<L5+pSXlp8ELC0ablx)>H~
zsY2sILZNqQpC2C<E#9c-cR7H_THU@|9&g}URDBn{NPx7`FN!Op>u>t^KE;kMI6V5m
zhSsD75I6xD5kw)vq<Jg4Elrk~46tfscq}rJV+tBVSVRa)9yvFfrQhHM5rQDlV~Gx_
zLinq=86U5SZnwR)P5@Y)&ZQ;|QP6fyaA9Ti_^qrBaz>krARtTm$Rjrj1c&0_fX3(r
zTi6e}RvFwj0XTG<ZAm47X=JVDA%x&{$`4i_9=#!)Y1d2WJ#1QTx0iaXs}P+3VO{x>
zyyt88Q%E>5YRyR=gs2LUPS-Y8#6B~s!v+ER1`?&Ht{`~fu;}>BZ3YLCIGkc(F!ey{
zFw9u=(Qt0V5OB0)=s6aU*ijWdV`JVy)xp{bAQY1WMAKqZ-v3v$FkCWl;JN2`E1wO9
z?k<Q$x6qe{08_+5C%{{w;u8WkWJ^4&$R{tj^O5KmgY6JhV1}ud$Vq&@rE6ZWJo;=-
zzvBsfoJ?47M<Q8+WEBKMzwtx2pu7{ZPh)!>=s_y2s=%6)zV#1|117<0%e12BNtr>Y
z;W7d|2#A^o8OktZ2!d<K5f0H0060)GO8ai^)}MOkjwAOljdWr^_w{6$tWZh~X#9yu
zZb5(Yf5}Zt0t*%6>H!l$lyLYWS3SKqNB}1Z55kxGx?5XF!bTs6BVi&%3*TYkk?!9=
z4tx;qhC3DvIOW>2RczLPN$!*+AEA6VJOqNIiCk#i4jt|8udC?_c@=>iKoC&0Vl|kD
znGbjU<1TBUWtF2mgK7=yC0E+u4<_#CZma1%JPZhkCh4i-P@aH62fV!SB~D~~fA?CP
zud#q!vJ?^z`5B;X*o;X8EDT;c$sIMAZUNClc&@ez1mqbNGMHB`aKkqP8UfjkQGysJ
z!%1PVUW;qk#%2J%Dc=%aRtI1yngSD?ztm00vbBQQrC2NEad2R2Tz<fcaF1b0HDH45
zBqtQ7qMWP;KkaHaux6YIDJIQx0sT^8YwiyNrQnr<vSt>Zpnt+w3<k-~>S53qmxch|
z>hAQfj7jTv4OF3y2g8e|1?ykp7a!Me7?(vk>kN7ajse{hR&0EWb=`IUp%LgH6k^N^
zln3FkY_N@MIFE#N?Dv38ijNSqg?Hx3E!>16OJpCFiUF7vuBDs_RDvl8Qm;opf6G8p
zDzIH~tK<*mpzQNRblWE_E4~z{Qc8~}TYxVTEMC2|_v%<RoLr{4;FDdW&mBqkvP(Bc
zCILAQ*&u%kT`E5~@3BEoyba)|j3dhPACW@NP1qPFhNqNK3fXktkI~KghND+S4NXe6
z^xQ9^{UYI9AxPL9b7g^#+QMaAXpi;Lu_@hjT7~@J{XXvYi)^+fRvQdvs!XT*e~+$v
zzReQW2agBIY!(#(HCtS2xlcwne1g`YvIE9Yy-Cs6GL>N6<f6?t|48%C(T}73s<`|o
z$68l5w?MG1HSMdLsSuAJwlH|^dY7n2Xa+eGad&04o)!i3Z+0^p?djx|O^H=4E5STg
z(Z-kWai^s0`P+idQ?T#h_qxrSd6XL<_r_*3Ar1hf6uWR>6?CoItxcRsPAi`22On^E
z&+PpiI!-_5HX0Y}SV>(2K=6Ws=iRt@)^kZy6&eHdT(r!cHD_QI8q|0&n_HSzwl=TA
za*UAGIo}=GhaayI{&AFq!haRl?C4}mOUJLszMY6=q%{->lXmmrj06zwPP_yl%E?$y
z#QeFgFG>V)*y9q7RW0$B%9Vo5A1a`>cW-mY9B8v2m23dhBM({%PPp5RVE%jrOcR6G
z$1ji@%%A738D@{sF<4f6c<Ma&S1H4nKGs}I{Zlf_@bx`<qdR{en<!#*au%3c`Xo#l
zyU^n<+1_JXMP1WcJ5|N|&U5tzJ$^@|t?53tSh1RRN-88eAPby5xk1s{u5e463HTg!
zsYaFTTS>YJ=!Ss5-RgEc%o-;Fb{%i6YUu>W9ef_)MJ+#s7Fccj*T{42_7c)+ZZP0w
zchp<Vx5tiiMR)BiWj?WFQ`rG-2#Mqd*FWQio=so5!PJ!;`;JwFgb|2DmAyWv+T#*w
z)|BRGU8$-k6e%heSv_-}HDYE!#nO4>&H<LH;e1=`lKPfa4ausOWWAPLwUTDdcYU;H
zYv=+=t!rVZIEIs-8hs7eIvL0jH@Gc!vF$PHYFpVLNUl8Ou*~b-E4kLfV4Gs~3fKZl
zgmS&N+SajC-Mb<bZcSHjwAB61Z((Wo-t4X}{(C0{U7bL4WgH<P_liu>qVj{!?{M#q
zWB3KZ*konp%9?hH66h8JGbhSH;5mELyb?8A1j<v<B2$^cj?-1g%End}Rw*{zcIh`t
zQ?tVth6MLM<?aYy(C)N!#Ohbkm5_;8(~}n3VBctNV>q%0D;#t5m2Svh_Ixt9%&Y-k
z-rL>$A-%R<Kx|!Gj}3HX73Fq*ojoh2s!Yl#S-RA1S;uuw0qR5y|AeSQcQ%fvl)G=y
zzz10jfXm=(w$6wJ;9*W*VzR{Wl+=$dgeCY=u<hNhu#L-;yCuZXlzt5<4m-zfcQ)6f
zP%cC4mIo34N&z%#7D|b#&cN)dZ*pS_xRrZB4GAPF4K>8DK&k=`MzRGegK%CS*w0mf
zWfV3c@rlP_vQq9<mo&s(&h<f&608@9F_J9LYIFZZhNA0I*uR7aR1kS2@2Ym!AHq;U
zVG-gPs+^oIkPM|hdVd7ZYGKz$5QwJ0y-XY`l1m^l+5I83DT1^S1x*%WmcaPWaz88`
zG>gMOVOH!2U~Yrd{*g-`jp)g!cv}jZ=3d`Ba@JxV$)MemLXccp7McI7{f0uFkr5qS
z=fQX5BY!;>8HQz}q$(}|FYu{QkA?&v91{JoeeM00Y{B;dZWRUBwsafRalNr1=0{}d
z!BwI<dQr5Gu041FX5v^Qkp{ZK>LU}sPDZ9jz$=r~((9-Avq1PEp995elii~GZEqKT
zMS@^1N!Enok<z+tbjqVP62R@ZcbA{jZyCd#m;gsQ9-%Hz2=R)V6?}0l)jKnmL2je!
zQAvp2#_~YgV~1P1g2(I=LY@?TfDoG#k+RwN#6U%2-&A+K;b`~R%^AzMnI<*FnrDL>
zA8W#az`@O%>o&Y6V;O>Z*DFBu=)PERf=k_QJp(?C$!oSj2%5bbQ(18BTz5Y`j*`es
z)z`L&WK)d2d=8|nV_f?U8Otj07V#?l8a05crp0aiWX7@yGXK>nLJ}0}+~CCd?!b34
zmdP*Al|P%yJwBV?L$4pE+(9p9EE`WWTdbb0%}2fJBzM&_HZ0Xtj58N~5=PeHj=m*h
z8Gp@)RbsuiQ&Sv#1nSF;8Oz4v9>y4uLU$4<@nZ|!?{8)-!|GBFo-%-8fE@up9o%q<
zTk$`}O~x>a4Pc$%HyK<u<o@!x?#&M}mZ7#zYD!i&&Q3(eU_6;^ufo5p&vhq%#`lr?
z0c*nkq&U5OQ|{V(`MLnS+maE(qJ&>U{ST+yrEF(~p&V5)Iq;72f>mwqz312_EUK9F
zz{0E*LJ=wHN4ncDw#~<Dqrz2Yb;>=;?eliVvSEyfONMGz@|Qh!qHB49eF5>8C2pME
zosifC9BR$(*e5cUVblasv#y?P9dA)O;crpdbV9Z~*%h(*m`lkk;6|3BloPBw*EODQ
za}22n7d(R_{-xhpbZCQ)sW)IglYF;<#fHL;JJU^hIAhs3m1(X<M^_MAK3BsQ=emAu
zFTTm)DUg;K3H?D3w>P_U&dpdh8c%;SFo3p`aKGcvaIanhHQ<s-by&Q79b|%Rdu__q
zFU?p+)Pjxxy$~A+9MXK3e{IIH5jdZlv3BxN3IOK>{hHj9Ol&w_G;Fo_GOS4K$P?Us
zOktdg)3s_K47>o;7<c<)*tgL^6V=s3zhH<d#oICFXulx8|F-ZWiW*RBQPBS54xo_3
zKs}q#ERTWC;qYXmnob_&UP6Lndnc}}q+VckTc<#?iRVJ5J$(ba29a(WS6Z|=7EPpw
zLr$~DAbLwy*D6zRxOTohr076Lql&cX_@1}Ky>Jqp7X)w5PE`|npd!FSgMAjdjU{CY
zqKu-=v+?P3aiPsiQ0spRFAxy2vZbSXl|(H}@GyqOZZJLZ3aT;sQ>VQF1@MXW7T6~y
z#T#aKHkvHO^^q4mw!pP+GH@rfBeFA@b`X5oI_QcVzZ0}DrJ*5GQXiorRtxSrB7g?X
z+lvOWL{dir<Bg6T1ip39B0U7X*Yw&}e%?SK?;zGPD0>gT6X&Fa5(tz_**`Vtls$Zv
zE=3@fF<4?QzHFhb2s0^NiOGm*1`<Oqylm|xOp9osNZ%?+U`VhVJm}ibwY?a(5^qJZ
za#+v5*=@2l?;xwMs%c(X-GID^8!%tm{5#LP>^AGK^!K{DmX1zI9cZo>FLyVyCVB?}
zrhXO7DHkOLp|H5smdXS(Iz#F&My6YEiQB%<K$$ZDaip@Z5|ksu2ODEWxsqWcFZlVw
z=*$D{N9H7kLFzdm8ka@;mJVFZHBv!{gdpMN`T4LS^Tf?FdtbTO>ZsUl@P%^sN*$A7
z5g0{ev|KkK7d&REz4)T!9kzmtcOL65+JxukEd#(9b^yPZ$rXcrL9k?hH?cTlZ?>-V
zQyhB0mqU(w_{=lc&3Kdz5rKhw2-sjwUIfKtr;N-w4ZT|mBZNkGZ^35~)(^;uAgrw(
zn0dggjKvJNG}hWq4SI}9P&X`R<M;jg4?DFCtHrWhM<|9+YylN42rk$pbLJh^HV(ZP
zVT5-iqI|ku=23UJYq&vx8OLb_s4rU|E6*xCjbaLfTBPbgQk04C=)9~COYGTrN<|_>
zV?-_t+RC%ahuYIJ?s;5C&HS2~9-NzXT~3B<VC)0tc1n|Al90)oWB;#*qaVxm1zVMw
zvxdr|1bWHP38#Jef#_Upy);hxI2jq6<bTkA*<}pS*v=HYw)LXu&|S^IMpRrisFSqG
zuBN_IOQWl4LoDkuzG3brlUo|>-T#hm5E`z>QZ$1-lWkB)@joq(J{KCh%VRRtV^abD
zs3_QAS@cxdopB~0wML{2YcQk2A7S&Bzh&d4(Q7o|ZYFz-;k>ifGT+Udt+<r5Ih!|-
zi#|pQw-E{~a`iLOyF)8Kh^!RQV$oPmvkD&lbo4*rq|0J$@S6fuG@J4F%c6I>9^c1$
zDU)%x@5dn0TK3Ggpa^l6B9GJ90uBI{%{GQ0+aB@C`N2c4M~|IkbM6{7=2uyDx{UC6
z1lA5fkZ0)u*j_iv9S3x-?8b^>ee}`jhd3bE%@Q0n01o1;qLro7X1%yLdS5uFZr{>5
zTKlcXYf>1y&19qDvy-wpZ2EZg4TjGryKNYUW9^1L-rS~pzJTN+GahgCboAbEl`05z
zq5<m7&P5H(doKE(MktvI;jGIHn?t$z=)R%vBt1AZ3#bB5d+3dTnNEc_>F$bzrW{_z
zAPWQmc>%9QhYakoDKto0NN)-++c-o{NLy^D4B0aO{ripRccEbzT`BYcks`$rp7(ro
zc1Wb@@endcmxV#!$D-r1SPTguC{gut4U~X-4gj-+XVMfPprYXD+0k2NjmMNJD^)^b
zxVjLbU-ejYy^zp{aWLc>P$3-ls3_QaNfc}0|8)lBgy9<8I6MQ8lO2?aar6h+i%j!F
zgT0@MelTin4_YpcZF+Bz<$~Lujy@1w^8-wKNg{4kx5EtP@CEs~W;_wSGLs)sRJy(i
z{Sux*);43LgNIwA8|-3jpmDbeSzb2xcm&N6qKB(!DpWMAi$0Dwr`t(ojw-O!?WA;h
zil)YzJ5Z=VM9{mr!L!dqzlzux*Eo}U{DehF|3uwmx5NL%D#}}=NZ5B@h%RP<|4*6`
zct97;=&XSL$u*4lYuTc~Ez#T9VNTHmi7oI-(F*p1d!tjrZR^bli@O-1PUTu>nq<ti
zXG^E5r%w<mzso0xveLB{M2o^abTpVvJ~NHI6di^Oli7@tmnluX%7>ZwW;C+9@f9P4
z^7zLg9Sp%*@!r$X#pA*yM71UyE_5ksbzgZb`a*ct{*lqLhKQ+YB4bAX^dl%y$?$7`
zl%BSzFb6wRdfHG6wG%@@jyE8z*wX083R_&(gDPHPx?)g;$cB5upmwt%qj1&Y?a<jG
zCQ0m<qk}%b=Jc&uXFF5O>AJ_FcZp!dqh?`aH;QL40zH4|k?1brq3XUl2utZv!YF!r
zWTD<JkL+4Ur+L#@*tGAfJ6*#vxG2+fE#Ag8S`kYyH5{!ZT>u#Ie6*$KwWY(bmP7rG
zjI~eazZhL2LL~H}GFBbe85<v`N^?l)-G0%H?4TJ4r)y@m93b>cA`q9MRTA3Qk49g|
zaSQ{&&Cu0qcaq|N2fq@1aH4HdiTr6;*mW{=uD-k_dTMwwDzGfs_Q*vnc|uNQ`1`V3
zqF1hEF1_z?exz`YwNx`qMxT@zvZNK|;mv$Fnh#0q@U3y@VUS0!BD64&+X?#04W7R{
zIuBnu^ONJT!#w6856ulec_@0NICRhJD!<!x^-mNn!sRYpJGOuPkw7Q&(myI6t+IY6
zPx6<y^w-zAE(%dI3}$UlIHmC|$bnjbK*jYAh}1LD&LW%UNV_*o+RDS)`^){&$&#pG
zOI?dEN}(ma_?ogr2$N!RxWYy~6Ma}xOt&|fi*jC$x-DAUgYJ>4vvat(yXbzc5XI_K
z<E<MB_hPDCO(9cNygB9XT3Qrxm0jDJE{a4k1gumCeDB5+%ucYX)&gT5r!!c1ynCd=
z9+t)Mh{9>9Q3IJ>J=cAqqK4+~6~4X7SmK%@i{x<k+$dTs<R}cAS26?)aOPnD&Szm1
zZ?Z$iLR61G7Pv7(224e~rc_2_Jp04!`oYAC2La`X-rZpv4R~xa)t;@udu|Fv$`=Ak
zPW8l9?vpA$gZfXcExwOHZPBl-wTZ6$0zyt1(7x;Y4V5OrFHx%-sgtNKn8VgTyJhhK
zk8(LsUo?f9O!>D6HkbEa$r^VCAyz|!NwZgD0-<nuK~98NpN1nciT`^PLc@GfAD`74
z{{(+RZUkm@Z@;XEcj6ta1?@G}JV!l?a7DbcU)Fus_k2Dyf)QZt^C=Dbbxu(POaAEv
zS=XP*uO&A&5|-60{A!{S6q9q`AHK0Z<59S98FiIbH?f1%peu;rCmS5g9JPXR5qfD+
z(>7)zgd;@QOxP&%{<ExYQlf#-bc-0n@~1&GeCJ=jk+$4mN>fvdJm*6S=@3YVi!)E&
z#m0e3*RWb*K?Gv`*DAkb3%~CfmSzz{>98~jR&BASCfvKo(LwN^<ypIvCWp7KG(q)t
zWGPHo2q}o%AD-j?6ByY0qy%XnC}<?P6D)49NAIS5+3LT)Cq$6CbNyL={k=)p75kp+
zC;$2PCgpkTb*|s+AKp^V*Aol<-T&~GYQ61wt{?ReO+(3FTncpUKXh2cIqW#sC;s^R
zFa-E<>$(14e-6BcD{34jNrGN$eolKj9)2?Gw?$O7Lmf_5|BN+{UFmo@>!>@zXGHR}
zCF)cxDprr(+`Iz8fe&Wg`%L$DkRYc$oVD96-Jd}^$2^?1@tyYUsTz{!h*1)zBQ}`!
z>$6%;vIf*`ImdFj$ZK!Nx_iDoEKl;miOB5)W5f0?IzQ{aE3H9>L59QcIWB+Pk#)^E
z_Lw+Z&S7<EMqGYp)>$vu<1vkm)$Lf2bmkttJ8QQ~(@(3L<B@R)X<7ookd|DQHQ<PJ
zM~ci)Ke%%4%SydWt+70U{y+#OU>pkyTs-D3ye}gLTPaP|#oJ`B1rmhxgCpFcZ}~aw
zu*+hGZKV+E-DS4>AlHhSQ3yj3*_cN8>g_wb_uk?KtVNVLHlr=}V;IuKhr27M@%y28
zHoKk^?h?Fts4JW_FvkAiWg<0=4=cAK(c(V;BCLsqfi3}%C?Ut#4rG?y_7r#3Pqd*1
z#p;_Bf(M!zW{3|P-9sY>%0V*$XCG2Lp(FX|gE_%lr?~l(EI4Bd!nM`9C|2Ylr7Op{
z%TF1kQZr?-TKPQ+mAHGr6PcgJ292P7Y6@jeN12<JFxPFf_Pcw~P;LOKK;Vfck`<>_
zL9p-$Pf<rbFON3@I7SEq*dg$e+~fR(H&HXsimA0Wr<&~f(BR}_{DfQV`6%sivUwH_
zdFZ+?CHzBo4k(`vR7rdmMa9a>Q1pL1&ChwJU-`jGih+p*lS){|!w>VHtms!hUY6O$
z7E;oxgHcn41_uxG8L|H5qYAl?-x=eR3;K62yoEOc&f8VNi%sgP>_t{d@tWsD)<oSh
zvLtb+7RpOSr^4W`pZ&ALderj5u}IK)SC^!K5*671kwc%Vv-0fwej{Q#iTvz}<n7fb
zl}OTk5?)D6eSN$ge<hK_s!pF3WM=I5k8kq}2Gsp!Tsbuf0%9W-L<Ump0#^^~K4;6!
z*GK<j5BdmQ5Fh-rA3fZDf`A^Q!bBahZE9m@zx~yZR_!tbsPt0x9vD&JYYOn;!?6N<
zV@q*GQdziB`CDB6mW?^`FSq*^+?-g+k_mDxfdWDR0hDP&ztuZj<ajn?6z*vV(~uO^
z%L26h;U+D&#*#*&ET~loq38YS3SYH{BS`BZMW#)85j3i#X~}AL^@r9tDwQBwP1%#g
z0_Oy)H}yx5>B)D>u=iRrA~D5K^|+0FIZ1~!Som!`oA?w&jnCVt26)-;Zs!-QjYK0G
zfbjCF*7Hk03f~|zFb<*x-w?m}azno!*@tvBmVCJm4Oj-knd|t&!%vrXwh|v`%c9(w
zHf)?o5J<b+VMqS%u8~B;0+D0XOpQ8HPUH*>2L0?d{3_j&sA;#X8_MR=ieec2vW~xG
zskIJ|A%n$I;i|J%Om6k&{>)|8IHA!pU@=taMZq|pyN*9BY*P|QODm7X6At~^E%?A*
znasL&@>E=B<U0P%a3>~pHYa8&0a5&uIB&LTm%rS!CHBe)GLN8P%}L3@o2~EPR;r{W
z^^mY=DNA^$J7`D45ANE)KS@3??Io?0R3m7(_ljZr)9yB_M@-GZXTP}z(>v0fJR(K-
zlUn3e+H^DjT(}M;)V5S2XLgg!oVLDr0&ZL1uMBsM94oH9u4U2$p8v!B=TRF+SuIWl
z(unC)Ycykhe`B~t*i%j1gPS2Z9MR9;`MkYAwJ%Dg8lls~EARI8JG{`pdzv^nPFx`i
zj_~)~#uZ@Mu&N(v9zfz`FeP2k?)(ncHWf9ijcfp1O6KMc&Purn1MTL}!8U&%KB}6S
zyn5VSL@c>U?(M1e3&LZ_z)oK~+O?ULZpn;+PoiCNesN%}#D_>?&X8d7OYY%aX+SH-
z&7t5qlu10A${^YFWjA+Q+Q^BDxBbdM@Y3t~s{gv}Pvv<&$Q`=JiIRw5lz3#N%U?{!
zenBv$k!sO^xPbE@+B+rgXHV$`3ZMwyoBR4>d%_xkO93z2eUL9tKPS0DfUPVXc{O`(
z=&!tZ;9@=%1ot2AmwmK*cb<+{9929lrns1;41(vJ-{9*##k5dekSs!WM&*{^$)9{;
zu(7jA+`{!%Dup0?#l1AH^sX?fN_}BXvj})d#J4N0p2;JwNBu7!^-R~vrGZe-t;3Rn
z1hkU_nj}~?GCo!vq2v~&`nYaX25^Hyk8JgSbk4kr2Kh%;(k=xk*&t6NVQKVU5L~*O
zU#>`aoHB7i6;KaLO1}+hTAsiB4%(<Ej^i)h*dCcOJKjOm*^vAQvd+~5{PoJA!WkLo
z)RW{zW*FD$?%VpI7w{Z!I@P`K3KjA=H^|8FekPCcyih!W0C@#Q7Dixqx90fMPP3K?
zE%@{->8nr~Q5M!uI%l_3DTYjLSD&-Oj*`_}?@9(6qJEyw^*iukD1f@KazAp&hSHK3
z<o@U$&Ln?k?Tt*71>%4DS{1AW`i5l!%XxBXX6C-T*)~q7Yi*BJl1q_5V?=U7<~U-N
zUs_5w1=0e7CD(Vn4aX|hMv4Fhs}A-Xq+Aa-6;lu0REt@u=?EA)3zYTbLnvSymS*-l
zJu2(xSh7Sy!!AtH3<PtJk1mn%OqNkJ^x0Sl^UQ3Cb?U|Aqj$;5BdY}NLW@Brz6#?B
z2Pt}9wC`|?E{Z8tDB_RsD6+Rg`1%8GjNUnvHvw3~bIV@i6OlP&?(*mlGKVNKp$cP}
zY(T>}we>R0poPLmurK8WZ@dtlQe$5}D3!qSMAtc(EoE_wToOGq!;C#6V+noK3_V5Y
zXoYV?_nE>}2)zPhAvEHWcNNCuW2+&SJ$UQ%=!yO4SWbCFLf{#Bj>ta!!RXdn20X0s
z)?Z06CT;{ng%W87930(pfZ1RE(S#xsM0e{*+H9gc0^O!*+XU+?WC@VH;N&tX%L4o6
zNzpI%v$dzKH8ux7AtVFrOhGXFi0F%0j5)I-8s~5$@)pnsR1V4se!DPw>{MHuVYZb7
zbJ4&Uk{3m1%0q>LAk|2utql12TsM|nQFM3o1}4Z}4uc`cyv#<51c1l8D7qw{VPHOq
zH_j5%w#a>mjY<X4xtrPC*VuEr8?LecbQ!Ms@kCN$QMYlkS~g1_`+eh!(Mx6+k*xK{
z5jPWWNe@rZ8Q{<i4K7|9{foVWnnY@H$`ztQU>l=0)FaUs$J)qCQy4tDXhA7O`(6}1
zmaXBfvbd$u<cC=qIl&$eMh__CCH%(t-4IXGUNWM?{~gW4zQjA@p#YXa=33=~oOVO>
z3=uSL2vidC07P00uYf531usW$oo-8uwn^e2I)f;kXo>6Zi2jcEfJGml#Qtk!M{-4+
z^6Z=!Q5dVN$}Sr$j$VcJiV=|^F56j{xKfZ#T#<e;8cwe)U1=nAy+^BGvAJm^qjew3
zRgOHJ6I?UbzrM;8j}eImevFz|6eJS<_wRYAiy0dUBg8{JG<ZDW6F=H-si@nkb;Y)c
zoVKvef4GD74Mb&F4!v4{84CL*#QU}W);6p;M((j*fxo>{>mLpkBv2G(E;H2$M3msW
z*}kx^y?`O6`bezvIzE(k4lX>#ANQSoesr7|Z+ar7LLazpBm4abVjBq`52wK6^p7XS
zYl&>OUlR~s>q|DaUr&wI))Na^lOE^&b^e2$(%oQhOMmjqWBohd+9%23>cEYzNr8vi
z=)c@C{Bbjd-ILb68bBKF>ctk{^g*8Q*WiB%UtmE$fKfHp;rY|*<pzh;`=7$4D5-BH
zt+b)?cMNg7iH6B7d!)bhXBz=wbkZf`mih^t1)(kp|EJ2S7m+SWl%DeAOmox{7Y41h
z{{C$;7V~wYp3}NAKGJ!=`t4V{I94_yMhGdc#7Ny91ZUjhKQHOGH{*GV4>W%Qi-0=%
zz2`GO8=$9S(MsdeS4jgRbM^;+&7uLy2}LNt=tocScJlXBvmMOnSKTvN(SK}(cHjMv
zi~E0WWhVcRcOl2H)u44a5CW|rNE{is?+n6y4a)>4GPx0;1q^1nU<~>JhSuv3a~qyx
zKfvJ3dnR_*4@S(hU(m(aL)<0{5mF1gmC;f~q?bqg#|2E+{kfEr@nd{Vr#%m)9GMcq
zOM>xD80I$*TP7<Np#!Zw4?t$VQ8>zP`f;zml<ycD?aMwJs2Gn?@O80FRONsOkJC5H
zsN(6=bRaR-oE8Gcg*q}+(ekGeE6Wf|W3yMa@)C=C#iMS=GNNVK^aM%20F+u7HKt4i
zftJ(UoI440$*0s}y#)cI5(n{H-LHA{!^PZ4Rl(Ku3f`9lN%}`!h5dX2ysg8+Yl&p0
zhVyOiFTJ5~tUB_n>IwZ{rFW?H`Ix(}eBkb!V<kxgt)NT~OihJc4PQUxR=zM`cevZA
z=2Rs{Sq!_k-{%&8F+dTo#H=@lY08){v7T-;-oJ7g*ivgTqy#uu7(4@j)`^x`T#g`%
zUaDI6)HTZqR(<G?L^Vf@3xejy{frf^o*Rxh)q1>5gpo14Ymam<7H6oAYbik@s42vj
zDtvj~`fh{jbdhw(gCH9^WS#cCF`D^AhPtVco3ILVfO_I%Zxg?kpYb(kWHeDwm6+74
z;~8Jy@4Jg^7*|-Mw8$os!8BEuA`GlmNw*R;(2Z{K7d^hq2qrczhBF)uQm_iLQ8nzA
zb@_H!qKGXgfSI8Jse>|gW+ZFlj6q5sC1SL)U9uUwn<pFgyBqmU-?!BMieyu&jT+!Z
zMFkNeC&&Nn4*Sg-6r9H$CdoKL{y&}a3sgbC5$^g65fx%WV2)#uGnu_S-kO@7;Oe5j
zHUZ3g_`SZfAEgD{-oL?r_3~bxbX1Awg0oKW5imOlRx8NYXK4N9&5XsYY{)l262xA?
zYUGiw#zAOYp~EIKtpx#@wNpV*|9&p(;F^r`;bt07H3yR_h6cAB;J?i1Up@lMB{xf$
z$Ub>I%W%|wK6O<8^6{Wt5t}OW*yMuX>@)o3u77zM^_2x(K|)qMs2EWkESTpjYWrUe
z*BVX|GIq;kliBM?Jg1ms@Z2$eU}}J%(ME9u(r|i!4C1{8;qayr15e}*9z!}F%3|46
z0WIeTu3zR2y9_#!$Z_-rg>I__^)EMAu}kI&g9gPo9i<6?j4WhPaTAy3xX+)*fGK}H
z<&a@%ti{_^Zr)ZXvA_^uKqOrR?bb-9xXOLB8x3d;AdN)Ip$!PfV&5Q}%og`U`M?;b
ztkiPP2}qR)FVTcne~3G+u%~rZF4+D_clXB(0OypnZShrtI`f0Sc5%<W!+F7-o@lb9
z)yODTjw-3TA2=4zZ|<mWzq?pUyNW*(h0Hc@vcNr%0Nw=o5W9M7tSw#zGysPU!093B
z;=4iy!DyOjBK<zQIWZg01uiR`K>n{Bdvzp&yu@ul+*pl2K95p|Tv3vkJkifhRYI$S
z>VI^nZZuHE=4ZqKP*+kPej6^SRh{mgiy%c39}<;SykX=zm5e#nj7Kw&(<vw7pTCiQ
zVX`2<a1*9qKK(QI%q8~nxVCt!0c*gOBiy=I_4D7~M+><q-D-Nnb(**LB>kvB{nQv>
zHf`vvd|Y;d>$dZEZ%a!z#nZ4j9^2esaV=eeOj$1{Hnw)dC5y10f9&N4p<Xj#fm$d+
zw>rXK2_m0U;t&zc3;n-xS(!{7bQ1JB#5&aBT4j%@onzDIe{Re`1I{37Ez~cE6y!w^
z2@c)R_t|IQ0$}GRF+CD76Jcz(%tn{I9j$&D2aC`syI>q;lDYp0|GzH8(5`}0`FKn>
zTkaQ)8z|t2VYMJs)kaV=kBkEzF(lZ$-ak9JzX2Y|*kaHGfbaydO)>`;y6+*#3IcbD
zBF33@&vtHPoiX-_fMKwBvbd6pFyj|ryg$0_T2+`@-Z+-h1`doGr0X!d)|NFI@3r6i
zw|W|-**iF9$chi<o}9{w;+ua>h^`0*9ZYYNzXsqZ2;#ZXN#h3{%=KDQ*SwOI42~KT
z{p<aK4{!tsjGdOMi{Wbt?kgYEJlQWpoKiTsvOlTQB4r23pfFg}?oMBvv1|-J1bn*9
zT+N0wcaFPdC4t`-Q4QRIoqovXtTSCJ0rpVxC^NvwsZkJQo$9g(f#+5xs5}Xfox<z6
zcMh*}3&RlfFq*qZq_~BWx4CzglNun%wN`ScEfyOyKwePO?(Vpf&~4%wvGu`4`4A~o
zC%Kad!5>BfL#z#^h)!M@G%Rp$EVD7eryFPUOD?iSC%Y8Cv>O>uuZ|#qfh1=g>t1~@
zqkJ@1SfcVsbhg@{Y{bxD%3KfhnVkP473UTq7=c(KbQnc?!PPEX8a*q=G{vr*Y&Hoo
zX>Ak<D-{O*D6B1=Z4dr?7##BXb<rObX@!z)!9$ohS5fs&VKK;nT`AHeG8eETTOATT
zb_Y{Er8*)4a?vWn4yU1kx_|d{^xB+$eWA>8U=oQ?$=J#ZNN&9Gz(IX65lu{?Ns%@~
z9_ub{NdwPNQDa<_s%1xf29<)pjGi!ZP+yeTaR>wwONv!*W%E7U)pyy?$EE5B?dQiZ
zgzS~k=?4tz3;nR@O4L&b{qSF+`Y8{`OL0Rm=Q*s8=jY!us4w1Txg#1AXb$G8dUzeT
z*W^LpFs89UqBKH%0L;2eI|k|zm-}qkcra_2d#=u&ko_mtPCyp{^ufJ{xo79u^C@zG
z1;JsvxN*nWgVD{cp+hd1QsGXUYtJkyUJ=HXVk3O1rPzIV>_9PoE+H{$41?6+D+~&+
za%Y`7V0Xk8lA3B!dzILJ_C4;Wdl3DIZ0FbT8rC5n?PiBX?%CT0?9Sv3B&sGTQu=Ml
zCGPX(JeBQ*z73!YR1H$l?p@$sIm!B&5l`S|k=jT{aNGyo(pz|iXy|zBk%{_9Nh4ZT
zGuA;8h;hdjli%{iy>7op?KhJJL5WEm%M7*-0`Kp0FTG5+qF@+Us1^z=XWk92>PlWA
zeggfw9%}>v$Y3fS?|ysH9;3mF+mh3B=P@qhb><yPzDFux0=YMz>1=wRJDe6|@=*zC
zZ?URc88ZulD;Bx)ucsSQ6_UUPa(T*^a`ZxXf2$312I<o^h@y&SA`x`or|gpxT9Oi6
zvAI)pcD^fp!v;Q?ix2!lVhojl{PL}?_G}x>_*6>^u$V|$QqD-SeAxBXR7uN9G|kFR
zGS^vft~&OKYvHyB-1m3dh`^0+<j#;AiA<d#!B!W$1ugddQknN#s<af?6%Ibt9si6y
zM-CC3O)-XolB3-fukm^Q;&KUhNkKO=ZgMS`*^i04L^8wNsk(R@9Pj@3+JFuY94^6*
zx>!dI>S{nrVbzOS9q^AJ*mym+-oJM4V8$S$G&QEtVuDz!uSoJ3?Ex!GdtIbdSqBHX
zJ!%Gbzb^ppWcx$re+}zC+$<5&u#t`bIxq9R4KidKuSm7j)}>u{vNzSQmszKa2UkHm
z4uM*n!8*KH#=rIBCR;;K?U!a@+TFBamxr-uk9l1^B2AKE1;(S+iw^O6FWx%yiRu3r
z;tdh<xxppZWX{|!BIRu=;=9n_hYD}H_#Su5&I1ju6_-m@E#4{Y|EN8mx|(L(F~!Qf
z7VIZS4$Be5`^Zf9RuWWAOzSa10kM}tcj7beZ{n(-G^Efnh=x-`$}+0+3n|z613f85
z9*-GVkffzFR);P|N^xW4*>ipW`xLrVN+J*x*)1GSm=pm9!0%q<uG`$=gCLMD&m`&q
z^3yF}xSYeR31bzeh_FkbIvM54cU|NVy43A~t6$APLIS#E{)HC7@(F;1aT=N+_C*fq
z#RYD_+x-PnPS6WNFJ&D}P^8=wXS?`dzm>`{bi=LALoO!|v(ztCO&hYWP_(HiAle2}
zq$r3U>vww2ifBwscElRt^=g2(opF+1`GRSulezJzY>L!LX*^`ErQ7(aS0FvXiRxQA
zT2cNnJ)+MCTi@pIzmTuM2Jk$!SJ5JL5{7;EReqDbcm*lDg8|?#5`G6t(72uao3GM<
zq|C75!jd1N`aDFDTtPjKUV!x~<$#arN*}$=T5!ArJiypURl%PGMc;XeA9d^B-jZqW
zp3AA8Yb}(j=xA@yve`?8!OF}0<n&9e7Obb-XNnl)2A^K+Z-17TP;>|o*LQL$Wy<E=
zbca9vKBkH-q{CK+^b^DK`CqkPQcDAYH0>=N3=JelBF8Cxag={IECfmPWM!&V5Rc|E
zd*CF$@Nruks+-5GBv1Yj%>OyTJ%jw$3K8OhB*%m`Q%}%hKR+59OV7o`^%~5h0HPK%
z2QjsQ)Bt>4=<*iPJ$Fan`KE1+Li<={s?#cb?u%3W_60WF5)LcwJuDEw(I@@uchiyN
z<1RTk2QKmSazB4Gzb@obuTEQiM9P~S<`;btPFl7nE9sz`Q~-F_s3=W$%aXEmhK}~L
zRnDmUbGb|J8||+P?Mk4#6K(=IM#fR`w<Xb_I;pCwgqaEMf81CP)JD$^6!?1HDF2)4
zI1~a#Nnr*SATm7FA*cqc#d~P6|F2d7oj~Qlj1E}`W{|OszkWF_@~b7eD{_iCQ29aS
zT;JKjLf|)xHQ|d2e_U~vKbqh&ZGKbI4io72T8Fvi{+)Dfi}X4`%jgfcC;hKCTkl<E
zQgRKn=cy+Dy3p*`0-sZI29fHVq_3geg?1Qe$c9NtBpBFMnZDq4UPx;MR#H|;a+~br
ze+KrS7YHdzs?r%^t}yWl3Eau2p0=iGu+&JpL;Q*&4fWYK(@%QEegKt8^5I3fa_jr~
zCm*)wFnQ!9K1Ksv=DiGm>r!i==sE{oIe)a!)g9aVt9XUsvHWxf=7*RDMxvl^#IM^p
zP_|m!8LiD2h?FlS#GqjPU;O)<dNmDikAX%g*_4tk9KR)B`HlYs^bQd$rP5G(E@SAD
z75<>t?fI};lF_L#Od1SnI1ubNoxUyCI$LWKMq&+Z!s@A{z9HU9%#8I0!U31>o4&fm
zFGio3o+9!mNfI*tV@&q4VHLBl#X<aP_u>Az`pI~VuJzV{9ES<(0=IlX?%q;jk_1Q9
z5(fo4)Op`=wcoK4)3r*|%d*@k<27lW%9wvJ-yc;oVA*Je4poJ*XR?RnHo6tcNF`uQ
ziV6yGq<hM0PB4x9;77^zB}0Q<M*LMf;uh)`RCdwX?q466LN9nobX2}8ea&3fkM#F{
z+-!{#<Ag}GE8eY;umBQock=UYATAV%I@w(RUt}4SdQ4{Is@|PB>{Y@w^U0b_$C&b&
zZZW1nt;!}$$Y)XT!;k)vR7RX#8-a%erA<cn5+awkKi>~OxnCUXAXuhYYfbd|^HM)}
zBDgqcY7BGMEQv$^z1VNx+E1o$vNI)A5oj!sPR96De>Z)s8Mh~e-aSQ3Qxm}*$5XD!
zsTg613bFWIg*Bl13EvjC@gR5hBiOtNh)uL8gHZVd#26@)@V^6mpWDo4L6!kI+tpx|
zB1p*vzjUC#Ozv;kfpiLx4*}c-M-&!Qnc)|lXcmpX1r6j!AoQc7zWO7it!~PEvC3hF
z!kJ=UC;zunti(L<qfX82Q%s<&nf<EjLZC*P$U*9AQXsp<(B?2S68h3Hw9E+nIqiG|
z6GG-s{=$x)TZQP<wN=F8wKx7Z4BgGe(uvTrTWjXDf-q7z?4~FJgAcpe9gb2KPw7~r
z7@l{kd-19Pi;*v7-DNcrGVT`OV5RY=v3}?2nY|l>!$$dQ54Fb=1bWDiWrx41%r9@u
zT+Cloq>6EKqa_q7Z8VtkKi_a;<`FQL2|NrMZ-`!Y&d&P3Q#y2@f_v|b&cA^N!nbLT
z;o86&{lz2E<a&d98gW#EZPYS9W&FSgiOeiVif&0Nfe>J4Wc=W^QukrwpeO03JUP4J
zYm`O!BxM>S$UBKw+{_}V;s1!~Fe?}5cKW|fh5#Qa6g#M82qnhv@Wa2bhGACY7kOkT
z93HRCwSJCj-Vw6ctg`TAhJbRT;02vB`$_3F{<RP7C*zRk#CM3Iw(OAXC4S{M88Y`z
z0m232mzGj~=)&Oo$Nh&Z+~1qfAlEjrUtl|745)7>u9jC78X7b$@%20S-me;n0R>F6
z;H!L4Tb=6mQIo4@KICVvaJ`wG?#YnZ337EzD;Cejnl-4aK&>3;N7eQ(pH2-dbbF9P
z@IJH#!$u;dE|~07tNN9X!NSp$m=hXS#!rM3EjZRsxfKI9tbla*Ba?uEPQ?0h@kqaN
zcK>o>KF7z81U{}BUNvGg!W}`AP2cw`hoMf63DOx-udffvFp$q#=$n%Cgy4?Lk-Gx1
zecB}S>HX&UYxnA3j<ITVyotx;3iHZnB2IBwwC~ctd@^ncp>kG%f{!z~q?DJo&d$7l
zAOk>yM-xdj0{>7Kj8kmtmtXtQFZEMW{xqo~shV02`LL<*P9kNu9mR*_!)$4dlqHkc
z<;yq(!7hIBv;E4aVtYxp#Bnx@D8@`>`UjR|9`Q!M^2v&uOx870ccY{fqe;f@nH5ni
z{6sk@IHIvervGVE(bqQa@GJWEFDGYW!W<<}HN}I{;hf@^Z}Z#j-oJbTo-b7US*<O>
zw2?)@=QsIb2k;aWLqKupCzv#e8|>ec{QOh<mruiX51vsS_f;dS3s+e1ho98RKp_j3
zoolQ%7&o2Oc&blk+0XsTM<Tw|#zC(pkP~SDR#}1*;;zH|UiJOc_g_^lY4xi{_{;9c
z(aTn}l5#;(4Ej!v;70O4cfY)6EmN?gH8=d;SVt@~Sic0EfS>x4>%f7p3yLUqf}ZRq
z1>p-1?}K;wRbN>f>AlP(^sgZbaNRIX^PBU%s@nQkqSai-0KyX|^v+6m!Uy)n(%)+_
zz)*VxpNW#<k)eR%wI~1%?e9uWvG;HblHC9P2>;hHya)G<lcs@f2Cq(W@IsBh=yV$f
zd(0d7Ly>bSB(%hD{kA=yz{)i9kFWtoj^zFJgZ{v;2V6r>$kIyT1biZJw`TSkJ)nFf
z9v{5FGUI_NFlq|7!C%AtzT^Av4W*UE8vux?A*3F6U)JWCxnB)9o*Mu|Qez?ohCK^a
z7<~JZ-+bbrqxfr7EfsGt=x%gVWbWq?>H0uYHn!p;lUosKGe4NU+TWMi)Baqn7}T_1
zk5{-h(G2B<#MCwMeM+iES5}nZ{i%kzqDS!kW6zA%t?uLQ-AI*Q#wHVKU6*OW2G4uP
z?QkIA#@#&iV*8;~Rz4g(w>jB>AGJCdKB6G_ZJ|#VVN=hOV<17CR|Iy1zylW`1c7+q
zpiexrWWUG?;OBzihegpBZXVR@3eCk`Skw*cxct8?zJ>~-?9gDNvolZ3>3!?+3f7~w
z@W|<F8m}Ia&1<h|D`5);p03N_<jh1-?|zWCxL<ENA#-vFvpf~Pf+<e<LAgVVBJyjW
zo>}|1OFuV10wep|=Me>1{xzQ`v_(`0W=I54?C4`MH{SQ3zRz8|=KE{J4c(1vI>Lj|
zC2lZar10>|i`ifNCFoujcf}qp`d8+S4>&!aK$Id%qJ&@I<!I_tm$|6HTN4I0tVasf
z;{4n=GxLsBZZZ3gu@N^15pu$;+_N@wr_Jo=pqWTJ#Y)H<(sVyPB=hz+>?5G|aMj`0
z&E>Yr3lgI<&-lt3CJA1Ml%}M$<<i#CkXbg!`kMjp5ef~RVZI8QXJ(#0Jp7J*o~%1T
zN8OmnJY~D^=kZ3ojhH|fE~fK|)tNKC|EC$|1)JApZr<n@!%T?OLe1dJ1XDR$3wBXS
z0pin%N|8knd(7Bb{;gR9biO7b#(@RScEdBE!o@*m-Yy2x-EGk!AbJf6C@k;Oiv1Pr
zPh{SFRx2mi)w?ftG%J=03RNcr;U|^-kZjjL4GyeZ%Yoy>T*EAaD_2Fodz!)?T(Sti
zr03waVpC5Z?Ecu&emg1#>JmN32mQgW?iH$X@Z+fos`se;hoM#GW3wWB+`Df#vQ}A0
z@z%;jD$A`3gFLvY+x;o~PDLC*4DQn~+S-i9hx`$}m8g39B||{dP~`8v8Sb$!?4cb5
z0<D=N15svOcCMSZfqjZvGp%&EW&t$#YX-ZCTZOI3lxk{pwOU5NbvwKAzSdewJbjDm
zR`E&VK?{PMEVq#ABCMf8Bf_`B8Ydh>Rk|Td0zv2-=ho|IKO4!Q6mJETC?o!Ej61(i
zxB&4MbEULv`kG9^j;`_*n+!!(DnHj8Wexf`)BX61J)Yd0BnVxBaz%zF_Q+4s?<uck
zOU*K(rO4jT0Ax5kIm;a$?r>;S1Yup;Y&~jBM|P}U-CK&m-nlNhgAJ%8MZ{@HBi6&q
zS#F<j5lZUoKPQ=pH>4mRS>(Q?3=W?~v{2@(Qcr_|L2dy#1w0i+)npT-iZ;ba!MzAx
z`IbNsYb@ceY{s*~jx*(5w{$PQ7|xBCl3*NZ0<<yj6<fLUR)+7$m@cB@GoNnjTEjV4
zq;Q&W%ZJw2C)aa(J!8L~n5<@UtPqrY$}iC=<bp7$3bfXg3R_hPghl=F3uvzIx6wXW
zZTSUMf-e`%QuCAz_>(=|(NvwGiNYep0$FMR$A`CywsjwWmwrnY+pbDT^k1XdE0)nV
zZ-Xqi^KYSU2{GedC{Px|p%t$1Vtc(b+0bPBsf9i1_vq`LsGN$tApH)aTVpQ9986tx
z5=)&wb31IlggSIKcFUSD-ZW`<KlKydCpkjqUXmDCf<u1?P}VBDm4Q%^0!R*DE(hS*
z&)j{(7z1%BwI5+KfeJ0d;??)uIbm82aUpoc5GyRRhL6wK*zfb4^-s!1yXnIXogLxf
z;A5=IDSdqB@AeCc7>y*9>s=Xw7Odx||HtMwqOwxLR4q_hluYB+{<XkYzHUvW1T3(1
zR&r?iE`Ag**!W~<Uy~t1AzrA1f@;SVvN@=-3{%;)T@h=FcYu1{a5Ge~EEJ}dq8pYx
zqI2kO{XP9Buh}QZ$5XSiiRlHsm*L1zGTr$-;S9VvLMf2pIF&nm_&$EI(u9<e3z^#R
z5rd!I&yP~RkwRmLn8ONDbp&1MjScqkC2v^MXjOevI!a+N2>ijn`}?JTSOaleFhG@C
zBWjVw%2TN3vsu33ZEGG?+m1<y0Len~EDC~SOZ>MhtYIRDE1hs+%k|yP{w|mYqnMV^
zFtm&^&R<pFza+0j%UBP$#R>~_B?XVR^7Uj$^B6HO&4X>9M*iC!rrDD~gL5D)Xf*>S
zNf0#|KAZUB_xOr@seJuQ+g*sPVH3Y!xVuD3NO549ndXkW_{$gBpg3I2KD)~PL#wJX
zUl{fKe`~E}$trtCH`9%K`Wmu@7#YYp9Pla?^;5$cKe|5$*^ogMZsc*8QhCCM?tpFV
zF`iWDEi6n`1x-s;0_zNH80u`Vc2A0`E#jBW7DKlnM(Xdewz@Cg&h#6FKbe>!n?_K|
zEILM+or`^WNGv7rjSi#xYI4B{?$A6j0M5$v+lCoVA+J3$K|&H<O?rL*2X~h^kVNYU
zSa{GGCP48FL@k&nHUZY}s?XdQ@kf4z8Hu1Ll~tpbk|GdWNU;$^zwm3ffvUC10fK|6
z%ilwS1w@<sKeq=7Q*<y<7gjo@3zaX}qto5`e(08pH8EiDlX8N?lJ1+;_Hc4@XB!4i
zprzQ6moIR4e{YW`fO{ejmQs@%n_LWLhqaB_2?<gSiWvNGmdk@yXn=^6e-AS*)bZLO
z<{p3%(J&o6K6}a-b0)ehsG6r-)-Bmh&7Yfe(3HYh3)(RP-BkB50)_g6e^tg)sz`_b
zn@_!PwmbGOdlyJ7JgauoVZbBgIVUKa;STR!mo1&~2WSLjbKEg*-6rS*C{zO0@m!!)
z>3aEeg1d?;WPGfQi@1dNFkAslOh)6vcDEVh=U1g@Trq4a98EKh1W!+QUvpjZ+GMOL
z9pRLD<>cvZ7%6!?4@m&_XN%3ehqt-mpIZ|_7U(WD<{D&Dm({uhR#`)ZsoeH`9kWg9
zTpkTndDBIpFg|n(o|jK?FD$kfta2ry6?O_L12QMVwgG`Z-0cqg)tq7?VYEf<2xCZ1
zaPz~p=Pu{;0Nz9cTmJK*?j!CTUKvIh0!?(rB0!U0&v9RA5E8gjb5!_KpZIsu^*h|=
zAI=leh5~ktNI>Ae>JZy@{V>Zt7cMTJ<D_!FU>^T+kHVt(R0Ws`H73g7S?3jr0%vx(
zxBm<Wf_=p#GNc47u~ff2%w<CPyjTMClsx@m3C5Ssb(e<Z8jhu^9?S?kS=r5<NOZQ&
zT(|ycx3fw$@?j(igi?KyJsaNW=KN&Op<k%2HqJ>1C$M&F!mejg1j7!5PU{7;-AOPm
z^;h2s_CtDpBWAdx5oUM{x8v8@oL#^=iR_?HX87J*w+hjP1sx@@<-{D8R4igey}MzW
zEh&-{5)eOEa&)rAy%dgGry-W8NwrGOr0QQ|m3m|#Kh?Qkzp*dka%O5eEpnA)oa@dD
zPfIv@s%a24E9qwzbg3i7aHh|9Ux_S3bP;?en68!AI&_S?b(TFJCL-pWs`IDdMA~`p
z-F@A;ZPp%!mk^$aAzex4kM7~_oMtVIc$V@;F;ysSIC$wGcPOO+`PQ&x6%j(PkOInR
z<OIha;6|&kAof%&HacY{>}O1L>xVw-@Ec)yS@=aIhC`*8<;sLGC(C8tVaFt#CdsPR
zR&0^YG)Wj-Y{+M)X1AAaVfzLVj?fPg(=7ada@~55+o;5Kn>7)rmnA5i=my8_jS0<-
zop`QsG^yg?C;i+rXW9!mI>{-KILG5x$GV>u+Bl{X-lp!6d2@pMnqA-Xd90Kz6j*H!
z0Ftaz3cn8F_VU0JG^acgoNpVt`QePm$J&rzNtEE1e+_W?kQBd6lVN8)WoeOQg(xP`
z+ltn<^>yno57<TctEOhvV9-i5A#Ee-l90%(&O5=q_kfL_^T!o~Jj(>cU1!$18&0#9
zl2CSlx_F#3$>r79*UMumiK(mtk2801k2LWZ_@-ovhzW`zFoAE5bKkQ03}Rxk-Sj2Z
z8bTk8x$j7LW$VFc!Dp1pPF8iwBQtP{yJWOA5CueDMiNPk^`}Zg@bP$ei$09HYgZ-y
zbO}efgg4~`t&MJ%xi%`8V0{B63n@*I9YgLGZiH^~#|F87KWo1ru7zv`+*FdfpWM$q
z5z+ymWCT7StFeGma3AmIPP^TPqNCQyNfSjw>w|Z7Cnl|@vA=Pg5h$QN%RYZN!_7M~
zoEF9x3HGA%R}XUQpJD^o*&+EJTPMR76WgT4<)v2*_bm@4Yrfs=B1iFib}p&1n*3Td
zE<m<vcH7---H(>?It$mI_On&Tx4^2DK3MFIy&(J)HzGOML#RKDrZwMvo3a;6V?=%-
z)iN>;TG<4*`#I_7?R+MDT3zmLKi8hxLR;Bif>xE(p?xTr;INcy?@F=tivftc+&ax+
z^%hZ<#cG;As-j*n1tztWtk{t4+;YyOUf}{l5Jm6i_>i<z5PWi=ONL8;pwIGabnGdk
z9^c_UxX9ij*pc`cu@tNE`8rOOlaXu4pfP4-Iqq;=WL_xo!|U83l#`{-v#|*=D@xJY
z(N~2!ZrBIi^)2=TX?HBJs!WpzniG6=hg(rWORmWpD#jaT!HZ=RB_cxmWTESOfW15t
zzZ5vnCZqGd^o!w7xVMf#pd?8y1ykxIL|<Uq*Z$(3oN13quEw1;YZh=m63~wR(k)$J
z4O3%nM58ksG%+r9eBocX+e@vflxu^Bx(>g6&mBM7iXbZ!#Eis6Lsivc@?tmnJo|N-
zHn^+yFALK`nt2*PNS20-uiWL$_CvyhU<nw+fKp=W|M|uh0;Pnk$k1^Jp@h-zuJ60r
z*KDOpOg9FauE)K@W$tc@X*1LDECTt@99B{SDVSLpL_T%TpKePuk)bQ`MPqk2x`!%l
z?4wkSiVE6<+lk>OKXJ*ctbqU{`QCWUr*Hqp&AK~1B|zB_TO^+oMIxp6{a4)A$J<5`
zmx>Z@#m<TJqpsm8?$>R34Jk>tb0c0|<RpFPl3F+RDVq!L=vXl_JLt>rcT@JW&Qut@
zJ-eDwv*8?HBi<XXaZ7V-I>WeS5zg5j%u)}zY`~mEWgrzOgh7K|bcV|r7ycIeKGLsF
z4TWJ4WAAX+9ct4Vt8{T$Gzd~);j8}Z?n+pLh4gYCu!^kLZC|-1P^m)1gyAW$cYvEX
zw6kAxkAz!ju=pW0$-1=8ckc9~?F~wDwSa662Shd?!OULeMBTI8WzVx;l(3tPt=ye5
zek6&{k&!A~+jn1bXPscnVaGob(nH};v9kMaa^rts4S~1dNFEs?E$|Jly-GNNF`E;w
zc6np$BV~fkNE0=&zj&Gc>*h6tT}#8|*jcITMVGjBhuNxCm@SJvm<5CQ%qnuRN`#5u
z>Mr<~^(n<3xE=%W9<#z-P;T$Zx<mvgu2nn7zbtlDrx;0%#EyxtMXnvl3YSyPNABh;
ztZ58ulx`sh2)XHLSAI@NhgG#l#wv+;6-{HRVr|>Lc3<COjj-O9npjG7YD@C$LvGml
zHV9C}fdH~)V938+>4qT_vwxE~+jh^}@3(u)70$Nj;)R?Y9b+*B9i3A?ai{9&5cUr%
zfD;apup7L*z(uGJtj7w&rWiA(y6h@MVuUHy5UP0gDmQe08^&nJH(YcIS2B>cr(HJH
z*rn`aw!jK4^;cq6pU>ReMd=1zwyZ4PO{(><7>PgJO(J?sO2`dpr_d6?(^4I5g&SXW
z36<FvT%qQMyPY2I>F?*EBFRp`C8wkop+eE!w>$WWm}F@{snKJ=G@$*_zqnl=?s`l&
z;?&i(DU6>aia~B?{LgK*E?+4^e5m5uSc9gaOYOc*{f)2N%SIC+3u-agHLGKdiHT#h
z>w5mrccEDPlnKH^KvkmO{l9l7Z*Q}k$|jTO4m1#@q8RA2D_jxmgP&sqvMz1vVelmh
zyG-(p=iK?;jJTL-(nca&j7+C)JHM5t!%71vCab0NEi)Nlnhmbm$M=!kw)SGusy0Z=
zV5jK<@7ibm{ELrR7t?^@l~)8c%BpHZ#{4bo19RUm%fI=X&5H0YLE@!3im||L|8kpS
zj0S56_}sK5uBRE#3IfaYA~K>lH4bbUEpY2j8|c>uzJ&RQLKc#BQ?2$K7IxbE?jSVr
zZsQlkT_<rBveq+xh;6&A{J%mYRRu*_ERCFSb*o$dN3K6Tqya5@7=dn!J4<{WQe}w_
z_}Tr5zQ-p_y%9<1a*xkp<{`<f{@I-uF3>Oxwy+m{8<Qahmv;yGbI^@=8H_`i0UQnN
z8aB1zH@8G4)NTuJ5+s)mA~8Rb-tg{f_ad5)W^Vg|o03;|Sl^ds89hMJ1X=+6Y9F)%
z^hu}t5_2Q{mQbmx%l{bCLiTokea1<5!&0i?%)M@Yr^!#aH+4ghN}?n_$V3iQU66CP
z_Q$9~xm@rv3Fxvj``S@k_{cjpe4RyBN|xHkHueXh&GGASqh_UAVB+|bb7T?Ta2tQ6
z41e%x@Ee+`!ywEy;di|p@ed*I(_*`TbYy~Z3JgMhPY3JnOn(>#1<07fWnI?CdoukH
zZ7h0h0_Zy|QJhtEEZYDv-*mlqw!0MRiJu%K2`_B|hSxx^<6YStW=(+?{P0M%x^zf5
zLj#JD06=6o9`fQ3qG!Ek@0XHo4Dsl4QqdT=4mq+c(am}8gnhzpVo(q|7{Op5Bv9*q
zRdm-^tYw1q3H1oGAM<{6#DDB5X22R;0IVs$$3yn$>gWk?+PBJi%*BCN0sT$RbN9eS
znS$(wo%RB_PE78MJ>3}CJbFABqND{#lLC%|H<8(C-*Aqb!-=FFJC+?NX<^tHXS$c+
zKYGsfU@Q?k11F^*>6U(G4d|I{5lC^67QIPtdg=uC3&+r`1~LnRrrN6A#oVNe{$ST1
z_C+hZi(uA@-7#&6di7xU@32X37}L1qVuRVwaQQNQ7Y8HeRCSW#8^_XM0!W|J+)QHE
zY0)i8^(Y;=T38YyFXDSnuwJdZR}u;?kLEbYS>pG+%A`kixOWh07>JH5=x92~sGnr+
z%y&0-ndV{*7{zQTa<1S`Y;m9cuiNC-Sc_s!M7_yur6o9hsvC_7m%c>}s#Z@!x0z`6
zmX>6U7Hf-+>zL^-8Cum!B{1<l*z#FNyL(_fyujAj=&^OMj6YoH4&t`rd3c22#7K*R
z%Yvg~-J(x%^=A)un;`@9vy$c}Lwu6)qs2H#s8lm&=_?<f=sx|xe#knpopBSt;6t-y
zTw!#3qHF(QKPbbxID+s1<D8i3Sg`{Ra#!vYZmQ%lTQ4R>zcVMfv7z0pOCPi|3#b>%
z4cWpCUY+DNz=61CD!3Ie4$%xbv4gMGyUF1S=vM2b>Vnw-MN0=vbkBa-Z4oeFBh0}$
z2~;H>qtV^;Z8)V`oIY4s)glhFUBd0qokA19b_0gVaA>^$5O)EG0g9OzZ*L=w5_*vs
z@b-Ln#F0ixWt94Zr;~KZ=trLHPH3~o;YJ|R;x9+4L<~ppPa7GxZ*p5Ivq7G5+(?Kq
z!8Oxdv>;qF92N)&x^J~@41M_|w+bHzOClRPL0CFLh;v{)F|Rsz$cFafa;{id7(kyi
z$qQ39+wHba*e9DbSqb+j=9mg{f*&c=gf}znQrTOK0dj|Lyn3pex0$^JPGHxu(?xyk
zp>AE|Bwj8HN7&_$MXqCzi>A1<aNUTuQXTZh@-e!~YPV6yOXP)%*EgYi*{9TFztddR
zdVER&R-6j6)-ddKrnq;oE76l#r$fmcsZPHLt>rCexQl;Hf2$I8D%qG_Jy`BdK;T3u
z;?rj}yYto$C(mKT)UNZafnG4zHEl9rk<BAQP*kgVOM|yY_N8#C9*-c-PCEwa1g{nM
zB{)q_;iA}p#b1MOOZ(P-<~8n$7|caB5JHIQx@??lzn*b**>zeFIY^Zd^EY!aa%t#)
z&X+E|aHQM29nw;w3RU;$r3n1VoZy75T@J=XtV5+3zp>BD#3DX2^=S9!aWsTFJ#MY+
zmQMWo=nzWX2@XEm-FKPwHwoS*z0Z8TSb_<0*wdYNwzXB@1y2EmE}Ngk#Gf+UZr52$
zNei+z<~n1Pzem4&H0(<#)!g}TdRBGMEVtlNp3A6;XIJNP2vwFa@}BGVXtb$MA*`K5
zJ@xXht=&Get(P+HMnx`|Z*%?@?k8=qK-OfE*PfX@W>9}uSDF55m$RBYy~r?PrSU63
zz3><M9lo)ffI*TDlm(6jMy4An`Oz|0$0%6R$&xRMtPoJcw(ic8?AL^Mbfh3nSbk2h
z<w$qFY*{j!D!4#b7Ku)5z@Yuyb<c*wKp7-VQSohbriCP!`r<ZgliG;cN@G%YPj2UK
zyfNKf;~MW3b;4P-TlaJWF#qtWl2i?A2D_kwFujdl-(_eyX=rIBH_O}sr*7=tKRR3<
z(KN8DSnH%??74?Kt2sT92x>$v3NMP2>6XI(55Ah=KEr4y%2Dc*=tiF>egEJVd#_Xo
zRqTWkDYf_8y21I@KmsjUREW@a8PG2lp*eh3m)xs^-C+mYAY~5|)*q(!6sV7w`7oG4
zc?G+<v*+0_0F8-ZN7O#S4ZrXA{}FcPaXyw`-2WydNooC+gmcqs$~LyvG4^H<l1lxW
z4WrqbMfO%LM2i;5uSF##Wr-9@drG_Z1)&U;ERnQ4@6WmJ@0fa?*Xx<TzH?vqeXZv@
z*EyfFT()e9Kj-Gsz)L!SEwoHLbc$`k9w-XH(goX!n|k&nn|X;p@0V8&Pm&9}Mo^=*
zy?ljNluoi5T|(MU`z`8j#+*|PmP@BP^|$O`JNdt%a;{tvEeh4U;Xl?thW#ODWswXd
zbA1ncqA=7^G#W`l`NNp9j`mVm1A?K+*sHf?9JuIgYhLbe_t)+!OTiUF_F(eS^VNM#
ztY%K!O?F4XJ8`NZ1?TB@esVua3L0L4hk<ZgMltRbyIL7Iktj)P&Dh9Z4aT$7uAwEK
zVmaWbuS80NMk^ET-R+_2t2X%tFV4s!eJWy%XZil@J^LCMl&_G0-~f7?g*f+R`zusN
zdW4~>Lo(>S@7UvFG^sjQNG-t*sK85rgPN&**)lJR>u=Hz{si;Z3My9%z5De6yRcib
zI8%nT^0-u^ZG68i#`l7XtHcq9E=wyF{;fI$3$6N}S$}`4HzE;gBR;A4{@rSe2Zx&3
z_;QQY>lFNYn?2as3k2^gPN4uW2w1XZ;;V^vK&BUEg3}bTWmTdTd2*VSLQp=$GPu3V
zrf7K5U=rQ_XU~Kh9h74d$&thJ$~SDx#SMF<b8A*<RuWi|c`z|%oqajov6BlxEwki<
z$7R}_&|9oB0DmyiVFaS7K=btC&vwi+0c>$mAbx!F&o+840zhkg^l@HhhjW_|bbjBv
zc7z02kQP`T4x)K5O>X0*=#L#XzLytu(G`+0@`^iWzrXC)D?))nN?h=hGK_!=t8sme
z%9)FHZ`)&|Q6T{1q1~_@+jFT3p)ogGgVQKM`{R9ObpYzq#@_gtou1>LWSq#pMx-tT
zYpY@s!GJH=1{%BXK3mwy-xa_r;WX%D*iVaoV2fbKXVH&*(OyF}q!WD$D#99~tuwXb
z=h(O|K2z9s5in%J1res?uJ^3%?Ot+W{xB>d6_RTy)2{Bn%I1f%H0G<6$-jzsC=^RR
z@qJr1)n}%2rTeC|*Ri|&7aLRJPcMX%uv!QtfD!Fw6Sm!U&HY{`WfL4}I5Hcv2l>7J
zmh~(OQ<2xCn>L)^F4^iHyOM<anp78~;{|{}%I*);$fup>*@Z$I$fHwSxCtyIOpJ3x
z;eSla{U6!5(5Ws-?HhZHHcLTe42Za$yW}gou{X^rLA0Lh^e0mijl8hb9-82dpc)JV
zkR*tfRrzp(eNpa@yA|V715?*#g6aHjZTk6h?$%^)CtGDAWF)=zce`BhW|dB^OBoS}
zg4v;T2{$qOpwke)!#W3CiByABe%%T?J=iVMfCc$10LNK#?Y_aGQX+{IEDV`~pF6Zp
z&CJ7s1vVXmW9uP>k&4p6PLXKcHCFhr7jQLlZWW+eZSyg`h!a^!*J&SRlRcK#$4BYd
z{;;rXWYcW6-oClnhp<vN(Ss=v$^sJizJ0bEtV0<Gf`10K5?-HkyX{Kx=KB=`bR=O|
zx!$ziVn2cI)8#&hRaKo9*jev8J7R_xWfTwfdyc?vJ8;oi;^=qm>1jR{>9{R2heDj0
zxz8T6(j*QHrXq`jAd=L1c30Sk;)v2Eusr)z*L%fgfTuF}9^_?9f@k>tlU#X+rC?c5
zQ5MLX0J=O0GVl{xI{HU@FicHnnH@lHtGJ2|y3AkgHDC@+Dk%g5vyj6N(BMzb6I6nW
zUW}&#F_7~Q&Q5P}BL2c29qS)=*4jGoB|if0YKFGXTx*L5cxiR5H|(-`@7V0H%RpC)
z{mWuMG01k#h~BZ*$n?VOK?}05<w_^ut{~bRJl)PffoJ6$4MJBPA*VUy8WNg%syCPk
z1H0^FyC0>4_n;P51)a>jQ@@;M7oFzM>D2(vZa>ce+WBVtblcI;%b0#B+Rs~$qu=_V
zwQEgDH4Lg68xY;o?K|h$y;sIfqHwc*qBf|i?Na;WZ$D`IC<-45S0<y5EO@tV_T*&O
zUO4@O>k--upJYw2o+#d^j)C6{%R>3VY$1m*<Ss-VzFslj&N|e;?j>jmS4oE(2481}
z$pgizFA)RWIU!g<CxeZ)3j8dnR6fm69sbV{>E$D=T*x?n(ddt9xKYD!5QVtH9M*fn
z_4b%34;ZFGiiYm*0=+uV+HnfdhSbrdYcXmYUkte3eR23g$*bLg1*8~?$iB(GIoGS=
zo;_KcTe2oFgZ}m~Ix+9}k|;<xDGyte+XZKaP7#pn#{_qDFzB~C*s5-!5-baH2?<n7
zx<mSPaG~w&>ZK%2m5nF`swZ(4UINOnDIPq#!n)~%71&%Vlx8H!rNsK59B+kZC7Vp&
z>8Tk792|JD?a2r#rt9Te03Zczy%Dw+BBQFXO2i>UsZvr$bBMb4Vn^+3E^40*CR_Dh
zE?bTF+(ZFX1j~&l`xUOdJ+<14S;X$U(yK^#We6TV*m7F<3*r#jm6Az0SkY!nY|ycx
zKwyaERC3{+XZMEc((u4TRicDdWlUX0S;v+>CXNv>A@1=;mDlF$lw}<P9)}VWJ0CGQ
zC*|24JDhfKYG;(-=<0r1)=p{MF8m&St@Ur?T^Lx&_(8hS1j!T0p<iUXm_f$hmxLEc
zZ7e*Gv%1=Qjr_3;iCIPXi!c}(%NlMsHuHk+@E)kk50`dwt}7d4)39b!6&;5^N~v^X
z>EWZTr@m1{nsT`#5wnke`Pjyw6!JQzJ=*n!{`eYe+S%)15>ZSgwm{Y_RB@WE48+yl
zcYmVENJ|a0S?%0MEFngK0esWPIvnp6h0?P8k%4MB6yD3TQ~G-uWF}`VpaVMe{7~z}
z^s4_dzL5=EZA)1?W1zJHDpm>hS*@#to7F>X9Sg-%B>kb4(gX{$vkEG>v(s&>*Js=Q
zsmZTg$EF>cFUhe2PBOkr$D;%nRJJZP(u3c}+bXymB`X0ybVrc(X38!0Sz40F6)gZc
zD4cBDrS^3|VFNG5;Y6z{HT08w>y3~C4{*>Yi<Jd9go>ER!ok+IjyDo!hIB!MK?otq
z;aFom)qSeJb-1+*n=!ms%IM?`&qBcjc8s#c=T)nPJnu|Q*y(o{+U@)JK#8pO9!)T}
zpQQ*8ms@}S5MnHSH|Wr<ywr}0r$m!TN?YeZ48Hr>HjE$xO>!yfl)6XmG=^AEW+tbB
zc!Se>I24RUM5pupZtf#F-OI_Cmo?mX9&tZ72~M<5p?6_i!Ix9x4-P_Mk@n`;(y+LG
z7~v4*M{pwX#ZbExVrFV7=#O)rJV^i`U{aS`ZrC$K0p*dRBkXA@A@`54*Epn5lcm5{
zNQ+baJ&p-y*$V+_QubXa2&RI&lep=<H&~h!Cj=p=F^8K0P-vBA7#9SsK!ZGc^(o4U
zz!MLayK5z~uPiSfcd%!Qy`=r+30jyr*M(cTrx2IK%nvXI*AhWaMAg8i&bHz5F;l>H
zg^nOx$#{IhOj{vjLHUTtaz^8VP2RlRrbwFxXOjqmQp^=OJfA$>&c2Q3AZp0&uKKj>
zC_KBgjveu2P}}`@E}@MS+*_SZ;0wen#aT8-;2Ovl5h#Esn1m`I6Gu@riyQOpt0Y`k
zkcCpiERt~)QtfP0@vfqMl0bsoa=LSBU`HX{OaONjERds!6nAu9oMPRXbuEWd^5{gB
z|4?e;pw4!DR<a;FPYJrPMbpB`UG0^Jy`UfP$NwWc?dVJF-pT#~%+GCp42oTJWVYop
zAvDz;R!+}g9W3s~^X!69A1vs~3W=EjDlHSo^|uzn0?F7Rd$5+8)^8bNMGA{x4bZNW
zfTx>^*4|?EUJpIyK2-!j=l!x*u&Pv;dxkxXdlT*ZC89<6_CYGdOG)km)MAzj+uMlq
zkb#7D=KdSQ(F(`%R6en}?&9fw(?A&RrSidTHvYf9Y8f~y!^k_h6jFY*HM`Cq1DBT%
z!@K}D4bF*gOtZ2uB}5^WGMkKDt5xGdTN1kZ&y9Ja@I|;PGY8q@G4|l~UU6`R5asFX
zORlpQ!t>s^^h-`k`o%%*W5Jh1SD3Kn@4zJKZg^)(OYXEsfI^{I?jix2lL$>t63+7`
zR{EM3pblfY&UVWloDrwVCN}h4pH!T_vbk?fGfCe*Xl(6)Gni}!T|(fhBkF=qX7;dF
z)4c>T2p+-#&T4U%O|9?(>^!4{7wK%llc$ee9Oy}YWg%)vR#F_0WjJPa<z~{qtJVG=
zUyBL4Ux>zrRRG4C>Q~52`_{Vk_7`yJcQrOvL-4Qi#UJpijXf)_0az@?9aG2zBHV-f
zGJvk?Mt`?LBO@$;X%z`~(D}XLCo5R6?@M{v;EUy$5YdlNZQ3`sRZt@59BeX2iLWF+
z-u{h!d|6eO1nkia^F8}#E6u1@A4Xj{kiwXSTmb<he>!;G^?Qp#y>MVMd9vZf^$1p^
zvp?;$XD{$tGWdq<Y@8RqX4yEX<T48OJo}I^X5?$A>316>96Ko{68c_3f5Z<j++dG%
z@gg@7<&i>|Cg^C#U+nu~ULXUQrbOyhw#>|sy5^O^um8&ybg1fw8~Rf~ZNc}0&6C(=
z4yi3aTIat0RzFr14<3m}sqX(VV!gEu1M%jw@_pfQmBx<&G5=&wtpPXG^uj0ku9fei
zC4238ykvPikhDYehn8SCq!b@j?2lz|DUZ>1nu15ItsC8ZMkqrb3W{oRE>z8UDIUGc
z?g}#(_T^Bg0v8xcE6d?D;1wLm#~%<~fq{bwraxt2UffwS#0--5j=Dzewk2?6Ug}Yq
zUCD?MC@5jV8vSjHUhtBBJ0WqNYB{@Yu?7#tmFCMPr(h~-%>k7}bzrx6wQcrT`2+i2
zgKSVLF~O0e`=Ds=^Ip=Qw%AJQJYR`rT)f9dh00|xi<h$CL_%mh=~{aaEWEOA^yz(G
z0n~<|=ihTpIF$UyU$!U=#wP~fR*!BhCCJ|w3kUVk9A00HW#~cC@+t6H{FX?%=d>W;
z3xv3xG?t!;Xm=PxZ%Ao~Z!||RYyN1B?+Qb3PArz=8YkAa5D?1sDGVolhi#{R<~CVD
zY*?mS@?3=C>2#w%?4>ZzX@x`ZK5+V#zK|~zJxol!-PZ9@uPI%aG>21rmnwg?`)5__
zNR{Nofx?-`oYN6#?TEd$KU|59r1=EI%OT<GulmutXT1o(7Z@iwKZ=PNSSu>vOyslf
zy0HQRVExwYwU61LJRHdB0}p6VGDqq;B<h0QfyaUgVLF;ct#{u;qTEGZkT$~4oYw9f
zOZx0JGyQQt`PfQ`4)2dUIQkM77Bvdhmf<2Uahx(b^!kxelQ3R)3ZosM@b<3iHaH-<
zJ<K)7y>Bx}f;ApoKk7NjtNZ5}20<VeVE$!T;yY*Tu^+>*&abGX#jp$zb_ucN;$~C_
zs~MMw(nAmMz~JQ4I!P~<vhPag#=oucGu~b|Y$0-_$&*Vy#&G|B*nZI$IC(QV4y1BL
zNqZFlUcL!5!Nq^tJ+e!ZqEqJvptUa6^aSVUHjgfnLWIX$UO;0~Dsu`1U<Kcvu2FQ+
zGCozT9yv;VGjrt?!&~x~E&awzx(25t&;S1X0nsT6%_jPk-ayN6c8v)7WMWcVyI{1&
zZb#GSos7y7F(Zj9Bd|SJvi2m0VC{F*kNQbvmunUo-+@u&jzp_H>qfQLdaH~!hfSo}
zkme)K>(L@griRN7YkT=2(X|4y<T_Otdg0I<SH@G*)5k?M1S;XND2sMHw&2AzcfY6t
zF`u%Y;d(M*EW$4t02DC#9jk{zt%@r^0m7_c1!bxaSZA-`Bgs_vR^Xuyj@W&IY((^F
z!kN*HZ~9WCSL9rY6P+NSTBk-6<zq#dDVe|gZZKD$8>U1rt@goo2@zkxIr6+Cqm(WF
zm^@aoVZ#slyu+e8Dj<9lY$ZeiksKHn+cbLmGiZd&7%re9q(OPxAF{+$f4wj8Fqh9(
zK*4e-@5nKeD2}4^u#){N5c=>C@x>3>GVcG%+M%y91N}8Gf&jC#aSW6<DCgFl^`hS*
zp9Oh)5@-iYWvuGTi&69;U7?R2lh7m$fmt3CxD(Q7`{q&6w{(;UOI^R|?g)x0mW;A%
zwT(S2wCOyupaS))ROhm^@^DlLzDJ*_v_Ak|sHI<C(N$8iov02yENUP;M!CT&3Pz@k
zK;(=mx^*iObxb`z`V6lZ%2#6Lz||}saYq?6x-^e2+(ls$tB0U-MQ6-oej;io97=ci
z!Fb#ghn0d6-+O%Y_rmZInyW|@a*y8#G<xhI(VMlst3;VF40RPUI;LjyDb78NfScE}
zHdnDd<Zw%y9_x8m!>G1&SG}N;vJ`NJQja6k^0iL9c}x`j=1uzxI4$ZptgIb12t!n+
zAC6eIu7@l$!i8r>O~3HrXMo_teyE6ab-hoB8Vh=2E5<t-B^q)lVDnL{OnIjq6rJ#n
zf7x9+G=34KNP?~9E0EhbYWAfsXr_>d*ddoeLJAuWipBs)GRO>&Ps-WH2(@nKdSkC$
z78YAvjpgES!=08LbmD4jA^_zdLAVeB4vDyy%AiFgE-d84<D>L?{$3^$k0wcepDKC0
zQIt~G+r=k`53mt4sT9npA6){PLx=jvQI`hA=#E|&vRu$jbf4JXR*~)8jMZ=Pj?HKl
zMuDh`9lHV{LGnLhnR}Do^MQQ?yus${3UuM8fUc=x#^-!&Z@uB$5+8q>bD6txp{@Cj
zhuFF*N}Ke_VIjcOnXao}wdH&KZ6c-|;o}QQ+k@s>z4yGJGYeCR;=qNXB&2@DE`xi7
zO`iqN*EW+c7A^^QS^iuv((HyEEOc8!#1LeEc>@%GV*Mo`klB#t;y~e~6fEt;4IEuQ
zvW(DnI1Gav;*LTiRWDss-<!{|`#<r@!fOSUI5zk}CNW7bvB4+KwmG;<(PDq;KLNrG
zMQxt226*JEGkN6%Pph*)@wyesqvXDsX{Sg`1C!vnTn2RLXl=>$EggB{TwD0Ezd%Zq
zN*-!AG@EB@Bw@%oCHOr{;svfl&Ed4d6^_|Gd4a9D$zSSEPzCl+bZUl#FV+g%@R%3$
z$&NEVw9^sr?SuBxgZ`W&zzuM8XGroiq*g7?4YO^JPHklphRca(_%Vp<hpR!MgUc7%
zp<xaB$wL`+m+QZn&bm+80b#fZtYO5gtcLXc9o8w36#ipBpfM1I%ci+@zP)jG7z8*b
zrU#FbxL}plU+zzFzLx2T+qPJTKOV7#p>LuNbTsxmUx?Kmy3$g&`WM|wD`lyu<QoO)
zw|vAV&GUkO9(ogKO{aay6uT+VTL0qw(Unk_Xm-&D_M1d*MK2QL<`l-f>WFXjl1+kX
zQsjfna(_)<&)~txve3z;PumM%R=m}@Vq|QC(2Z(|26x-?rCy-kLn3&axE1Nl#kN%P
zAvwjE<Q%T{!h^>3l3~x-G)bk<K^_;6IC?;)5<%r*FWmdNwPOsR+u|k8N^tIAJ`Q`+
zz7F$BV+v|<u1I?feEdr52OdDJ14_Aemc8d_%@cF&`+NOyf5Hvflu*Cqk&FIkGd6}!
zR6@5-WsI}VJZl*yHf=;KD!JKS)oDfgK4EX%9QU2|5IO@Np}wc5+i|dSniq7uS$o0v
ziz9xs@3aMBjt5}=<ugdakIt)}u^oYaq>_qIWP`c&eJc@9()Qx0b%vo0HX=`9<4htQ
zIeM1ecb&hJ^uKk>Gr^9!(LQX`BWK%I=|7<!$Vz%1BI{<LEL|0ts90q`eBdus9X86W
zi_+rm0e^mD)1}QNlhUi#nuHsd+Q(td1>TG8ux@O{$=}*m5J}z-Y=>KM1&V2xm!Kaw
zh!SRN+dbCc^YA9auCk@VV42F>=iA#GybxAM_F!+873NOQlcWTZcnWD-Pjy}tEwBRu
z!OPqdW|lpB$%}Sc*t1<E(t1)NW)5Dk{$ZPjJ5iVw7ixob$8{JTT%sICGkuZ0mwXSi
z40NhvFUhR}$N29&yZI5Xi>q`viL^?&`X$hdNz~R`XA7T?n^Uej@1a)k!Nv9wXtRc+
zjU7n;$}g-kFa!5p0&5A>{p(xSe44+E?^aQsSPhfK683o5ia+%NwlA3n$}3Znm{B0H
z_6uyvtKkLEX0|6Rp4J=9vKcG=ae6^zX{DUsJS<1qBe>lDA?qDBuT*qd2?VgSb{yO9
z&$WT*1oRt89y_*1L@Eg8JbS*qDOHV)9iMaYCzGGD`r#9oj&PXe*ybaFUPsNb`e;jh
z)Q`!J6|&$v?R;eTBAXhfI0Kuvwws2X`H=Oje!>mQ$J@g_TuJ5wO63_0Ty#73F{`P-
z5wJF7Ncj~e27PMl!@lT@i<cT@Wrvb{L?)_uYczh>y68C9?NAQ2apOBF&&GXbHG6q&
zfyA?L5eO#<7<oxxjA11|UTxpc4&x&Gmsq-IPr7e~y%8SAN3+rn00Jj_5EvIs;Mf-&
zMWx?qy1_!^E_R*&k`0!+&z_W7*-w0^tocl9MjQi=`xN2k?_!Trqx)6B_1N&x^wA$B
zr>%->h-715^;CsH4O?QJ17pnKVAj@Fv$@~f#(0-iDt)#~_)mRmOG01L3yQ^Zp?FBE
z`P()%obzrfD<Zgs<BX*~_)XgpL?pGYK01yOD*N&i+xDD~APuI0HzT$$XPzyl+5@1X
z3@yWhFgOGK7`bw;Jzb4EIlCoO6O3Z=d-enfKJYY$l`BJG=XaWE4+Mxn(l6%`GBX5y
z(Iz`8u&wGRAa-q%!g)FxNR9=$biVZnI}NU^HRCi1^AA0KKHIMS!8;k2HM^M5Ft!YP
zkU8zM%%+D$Cu_LOQBK3BJ!B0&3?o*8P)M(p&-G(ZSbB9K4|XEzkq~t2D^`bnxer`b
zAA`>k2~Wx$zf=BPtjgco^S6ds6UZhQJP_a`ui1*w7h$dJH`ngUDoZK~B>Xbxba?bs
zTNOkV=~xorBnPFvXdA<fljEKgk}NkZz4f*oJl|X5pm&KwT()eroe?+)Mt~UBg2wT|
z^%IjfS}d|tAz4<5t7PH29o#TH|5m$iyw`@1v`>sff`WW+dd~&~J|ZzD1bh8UhSYS|
zUTi%vTtG3b6iX;U4hMSVhspM5;I0{2Kz+IqO_MGe{ia7PiVq!}nz(&PFzUZfLH9HD
zUBy+(Xy1V~r@v|U1lFwk-UBxjhfR6d3WFreea-}%hqs%(ZDYf^gujSyYbV)*-nW+n
zJI0R@=Sjsk2a*4iPl9DcM*Swlum(v=MmoF**O`rEpzRYYOJH7sdFEDd6Bnxkh78p{
zS1Wo4`3H&taf@T%1pbqB8>GNNejVKz+wJ&57K8hT*ptvfsz-!ey54>wsDlRl;tbMc
zQLP009)H-WlDfSBi9wjNX857M?HoyA0G0c&P^6B+{FD*J4#MGCpEzT`XsLKQ8&qAv
zf5Gjm&mS2r1(@M678=weJr_&LJTf{B%#Jan$utpkx_?*>_@tjUx&x~U-M@IJ9R&|U
zjZTZ7O6a?Hx9t&UY7b(ADyrO8B_LsH27>(ZuxNk|<o4VEos1R?lh|+nXr07o`Jh+z
zKr9<Cdi)3Rm-W!fo;p;5S<ul3v@;zj?MV;@xgQ%X3%DXu4MN&J_UGK};QgZW0g>tO
zN&+ensoJ%aKk<Wq+B5(`YV9T;_rTW?mI+RB{8`on+b=rk27jk3eg_;!@<7Ce%8^~z
zVNu;^!98A%I2{}V+qZ-06D<#q+DP9aNit^sSPmEH0b8W)n-7gnmd3^0y66@b>07RR
zTjWpU6VS2qJf}ZC)ZU-7Uvy*mPy(FdV#AVwKQmDoyX?Y=UIBMgv+>;kp;IXKwxn;Q
z$=*L&BT<6nw552|;%$jnFWB|ZRuITekqVHApvqwFDEQl!1>!-)bH8r~&sp_jcG-e}
zEO#dX7{kQaA;XXmU$Kjex7wWBysaKFxJZpq>6Bk=&C~wel|~uG!Z;YEmZna$IGiT&
zL`Y=}rXD1D-XUIhQ_bkuKvHbp0U9kn;laQ%cc<+?!)s3_4h-0*cmfnd`z>ll{Uv70
z#i0q~MfMLv{p%0wBXz=|dZt+VL;&UQ*y+JKl(2)UwhGJ1F}Lcl=!l?piIEiJn<rbU
zViywMt+ro+ogfS)h82p-*xAV;YgN+gM*HieltBvPhU`>&-1ERFMMny32pX+2g@tLF
zbx^ceIvX4TjuQyjR~v^lz89e_Y!J;4&2uw?oSMUqYTqCl9A+pTY&XokbKj7vCTy$Q
z4~>42V3IVddxka#M1VZB2Uug8xM-{OyV+msf$t$yDTXD!|KV=?D|8QO7VBsgsY=bB
zywiRUdpb=gbm%;xAcQpdiTZCs=$=KmMRLM)3hz8P8lW>kj6;y5kd)#=bc68aMRlWT
zq46%5paiRzRiiPs_Eq(wHMjWpy@8~|jBCr^cVM(FJSXpbGSG(!p=cSA$CLdNs0Ldu
ziYOButWa0%vWsKBTYWw`?07*RH>wd$nBX7d-l43B|M&AMHWU}_<33J18lb1Z3%TN0
zH-!R1olsznU+tbbUi(0{LXiDnuwZ9ft*1l?cqfOCa{TZC-PyKZ^kG=sK4J1j8PIEK
zy{Km3$0SH34@`2(Rad)u(T1=sfkuc@MA={h+>$0}?9koz3Fjee^Zzj!dTd-+@qLV5
z!HGNTMXRNT%K1T#I&S1>?Fvwv-L^f9BU4(Mjuyy|wmST37s6tM>bg-0j;8dHq{h#~
zRON8JM?;<Whg~np6>K{wYaLoj?rC&Pl=`ASMxeoztDtyQ`@<gV_KiOWVpn{*L;D_E
zJ>qw}|0gdBTRK31YB!mEfs<iw%_wb)zXX@nP!w<OiSxj(X?NoR(ZTCNyA|@0bx`|=
z+ELG6;+n&uQR1j#Na&FNx9tjD@+m-b#K;6DhL3f<=<wbC9f`PHe8xQv=R#yi)S9}{
zkF^}s4>?AHD8p`mO9$xw^m<WRNH!sbH7*xGh^b0q=z^o712=i~nId|ZN$3(}_e#yE
z_YYo@ft^q0Djj}JYDE9r6F<cciJz-nHHmp7BIcNA?XJ*MGVmZNIKPmI0aMul(e|C8
ztU}h%zz7I(=exs>j*dRq2ho!fDw9%t{?XBgGK=Be#*vkjUI>R`e#tAZ?0NuQaB(y>
z_&9Mf6y&{bZw>W=v;Y_r-J>HZ`z}kl$e+W*yH}vLD+IrwfUYnP#Cx<%%$jJ^`-eIu
z;(@|@cE6if+Jt<6j1-GR&r!@q>i3eZ6|6^uczyw0=AIX-c<6h}eAC|@fK#DTA!85p
zP>mUn*oO1GM7~cR<U@z)*cD&d(#*Je#exx2UaZbBVBI~={k}Sa{+ef}o4<v5Q@b+&
z$8beypz>m6h8w?VPnA@w3LiXI&<jIHh$LfHKbUKsLwoM32L|o_h(uLUxNEvy+}CU9
zmsjM$Wen9mvCRxsQB!380m_yq0GI5(Xs_SskNXHNWm=F3K6%9kj;Yp#B0SVwn*&Qm
z4SL$Rb-`;oQF4#ZJe((grrmnHKgR)?-Besr1)I0U{~c_0uB{AfAPY=CswC$dp>gs&
ze{7kZQ5^a~LJFU7k>ZL;mU?Nmo{;&olFdVStOLZu?zNXscV~MK#t1=L@C-!VcWv<9
zkR35e?qMNsO{5xH`g*EO!ULWXabcfY*n;f$<oIBbrY*EgysnA;=r3>t=Y2^#rE4tf
zzVMVSLHH~|M%WDEXcme7SFE!G2n?a#%zQ9^q5;@tw=c8h`|*&h847Qc{YSAqOvdVE
zmPsTBuj33xO(6=)GoH{JC|CKN=<Wqi*j3~!@~9p8O#^OrlsbOYqn1s?1<!RhCj-1h
zWuu<6&&P*0hh+(PjH4;upJB&e?nB`23t%e+v=PgS&(I5YIDrXN)w>dnSbfOF-!yLM
zyhrS#5S~QTNEufSwCN~$e$^B!y@1UwfQZ!D5@`y#wF4%qWI^nrV`@Zi6;dmyt^hma
zseqK`VPQ7cI>{2(N)B>K-57g17J01!JzB8H{^;SA_xCkY?Fc8is+u`DaF@*sA$7#W
z2Csf>P>@Tv8qwK<yk;f^1R7Dw*L1{#wy2{&S3YuBnigA7$zQYWJVFRqY)PRGTM}o+
z^bT8Wrv&=p7{zp}zN_ii7ur4Y9`+cT*ovbG!{?dK$>jXs?=5jncq0!zHrzQ%LN(@W
z*H#;Qj~4|8Tls^NHH(fne8(;iA9V}<F(G7Y!fyNN3i=KC5Tr6vC}pl^^(O0}N0iQ<
zYRfP67phZH87c=JLx`~weLQFCWz+4(0-u3_1ct?VRa_C%lrs~P=UIPQBeh{bg##II
zhl#I=2(iUec6=a2aE`+4<TQHt&$2l-p3Gf*+?&%`jMRPaFTTr$DoB8YbGrPBF)_2p
zZ?m6r{M~NEYS0jIe1s4%JbEGtX5kZ7$zt&piGGpI^r3dli@)2mB>JEcBs<(zH%pFm
zP!TiKCGw`%7ak(ZC!W-I`9|9ak@87rOvP34ks5FQJ(dXHhz<D4qx0)bs1;4=%QyI-
z5I2LFWi(SLt~mQqE6fd*u}$c#82?F6+7HAG(855pU5{rEMBer(JDs=#s>y)UBlS>=
zs{is?yPG&Fo_8(FE*_mitQ<*xLV~`xUa?clys|EUn|b7mPUQwy>}d<Fsm@TkBoHGo
z0ZH%nfNkjK11AcRpvT~hGeYnObj2vAt+sUN1NzR)8<h-k>mV_1?HhI%v`9(MqM?K=
z#GFhBclTdxz+CT!#4UGq@coTH{?I%fsv;RE{r+cdBNV~3`xHV{oMfE*Y*U}f^8KUv
znO?q<bC4zgpz-%`E%?ao_Q(BRMy6g5mgDrM!;>~xudosNk)0Q~$7K)l3(~KzezJRT
z1HnOG=ZD&)LJpAD;)kE+S?j~SZ~*zSA;HAli8ia;pL9hCR(ue)ITi=EnR0tsM*XCZ
zCYN6@1!R&^j2)b7lFb?8#oS?sc<s4pbTmZcZ4?y1cbOdjK!?t#JyQ*<)Oox;6WUXP
zC-=)BDFI79@fv$Ae1<7qXpbxtiDl#M=kPkROc2Ji1!)(N4;F?(7L;Tayqr4L8Y$c?
z#H9JK0~@~XR%?G@=&O$rDWa{q+IXDZ&n}~@JxK(@$Q5(nGBISl&458_1ma9`%@nV|
z*OZoVF(DBOwDI5w>&s5#t&9M&hkQC;kF-}ICLXiPeH@zjR@YfEe4eL0va;!NN<mff
z6!yni6Kn`1tp;_dd6E-mnOPZdo$b_irV$7LRG2F;sP4x$_KJ>Y!iPN4pB#t`r|&^r
z*NmX16=S!8TKY+H=AqVbn?Lq6210pxpJvC^wL1{Q{e6vZh$o>%AS)=&#Y2Z2#`xy<
zZ)ykq?JtSDa;%FHKu;Y++zm2q(N-_)g2h;%HFwMqX<XaR+8Dmk78MP0D+54qV(+g_
zQ-$t>(v_9?(uGScZau*cKhg(;+)q+s?%U%!SJr}yBrg3TuBr&IA_#-nzsYFFD-yLv
zH?Rhu_$$aaq<PRJ>Eeo`TiEg=yiO4!z2J;@-<a}N_9&5IRpTDcew7?b^fjC@9z%~>
z*5>=rQz8YzWU}f<)Uw)P03`BKv;@;6(I@p3`;hP+>Le2cxe;7A3Ae0VxTER0=xY>d
zM`lWk&<uvVR(@?}sRxDc;Bi5h373FW{@V2IFo|i|bY8h4_=Kj${m1r5M+#{^mH#1!
z>|G+<dTngj<<ODhkMLz30{%?q7zhT2ooSmXsv5JSH>jT6{K09Gb-J}Z&`Srh%kjZt
zxiq!=?`N;CuVzY!F&~kLd?I`tx*(gAagCMt^f&v(?ze)_vhf6W*KCMlTCHeQs=tvb
zgt3SKI~6IY=)OA9S?xj*D}@|G#xVbkF0A_17M|&4@&gTw({m!ey3_9NoUD)2F_?~V
zt){|GyZsIfz+eOu3E6Vxakll&W-A@&Uj>ynnYfA}m21<`G7wsL_nJy;Ho)KQoi#);
zj`Wru9sZrwM8Bc(fr1U3iUIPVxUavo7C<$WbQ5&uzBX-@yy^2lEdzavg5Jd5`m`x`
z3T|3^xGvrcWLA<xrnXn?JO9Nddn(ThDT!TzT$w=7!o8eXpZ&YN*~i}qqfvBguqm-B
zaD>&{?XZkceI5x|QG|&kAv8F)$TA-G<kH{llOFL)LA~_bU|Q|9rJek72zLe}B8;A{
zNgBR>v)wYhTEkgHB;yaJT_ooe#byw80H->7y=6}dmG8^+6=0t-`IZJ7#qDeDj&c4L
z;ttrw2%iN40-(*twWG^V^RgaUL_&dR2a3CDjn!4R1#l9iTab(21NF6)qBN(j-FS|d
zg-9#UeK@C$J=xtKVy7U#9Cu%{0^^!n&&%Rh<pUshWOwEzsxL9&9J{5P7j~%_CO2Lw
zPcpQ*7g>kMW@!>YIw1lc>H?0(QtbL{f7n%Ng%lY_lnPUp-_~~Z_JTCc|7g0ZjoGTM
zhsjWhOJAOy%L`W2PZor=O>!yrAZ+JK)yhaOZ)_)q9>V0x$Z$;#2yW;m67y)!*F(K&
zo(wo7gW>6(A>N6MEDknQC1r_0q<Ffa<)7~bTr^EUOo&gTo^v|d2`nIiI(*@gPQbTr
z#EugKkzYoMfwT@;+|F4}M14w5<!Cwn;Y{mcSCvP4dLv#5L&3ZW^MFQ3as!PtZ)%gn
z%=9PbNL(;3xVfpli30E6DfBi+?wYtBV_8dnJEEzLM2+W_KDq{p4<!Zv(b)Qm8wpRA
zSQ%<$Lp;{Ro=Ee8SmRYa5(PFKZ*PY_kSm4Dad<4%dg<v_k=<}0Rgw-A8Pu_+#QgP*
z_B1|BPs4byrOD|g@x!J@FCFa9W89GBRt1Sf$K8!?JJKI_=T2n20kRT_4_h7IVr>Ie
z0XK9mnb_Om_(MKx(3eN&K{p&kiHFWTZb8xEckskXya<C|lP+vup-_q5a~oaK{4hBm
zNYV#Fk=iT=1n{RfEe%S?wi$cSOG1t9>l5F!bHAp{b8^5LOZY}%wTG;-vG7@~b6yiP
zFJ&5{;g9;*?a%n@q%DcJANFwg@@rO6+Y3-Ylnh9KY)4t*&iUR>{_a?{K=2dmEE|+N
zVt=yE2JM%uE4PBX)VRrp5B~nv9sv^xBjMx<-eq{65_CgGT^if^nhmL$e8c7F6r?`{
zSeee~Kb6c{V~JD!m9Qq|!zxhhXxf2*jJJ%-DAfcBpxyDyGx2o!&_0E?sO91uyu!IJ
z8Xw3qm-f)=+!qXZyQ3!Pg0HRh*Iq?vKq$OWR_>yOP=0yC8XxI3F&(+w6)#xaU6CK$
zWKH%Q>tHg|otGp1l>1C2Xj9G(+qS{Z{XOnmC8h}(98=2jm9VRIM~VB#ud)|kuGVs4
zCFA0rJGjjgAKLZ6Obmc#sU6V+qXqX^5?}a@-TN9}p{t5&X%3%NdiwlpR<fOiMj<IK
zC}f+WuLN^oFcP79@YaUimM)Q$J0%gRVqje!vZSfoZH1S3QEwyw<OS)hbo0-xHs*SN
z-m4P%C-88xTQI}{@7uOK*P|{J3n@*e5fKL)`>8$p5V8kGP4QN=J(+?LMNy#u#Axt|
z7i{wof1^9jV%++S(b6NRnl7;!72aYR48=WNQeE1KDs6cO{{qZ3I3`K8lu<h83HwZ7
z0J<n?NpVx@;2AdNl3_#go0MR&MZuY}xpH<-wU-E=rlhA5NO|6%rzTlBuHN)n@wN`(
zyRY211=b{VDBYP(s^?<LtQ9Rj*J}v)7Qvbw#iDC2x2AEMO2`o4>VNBx-JZ4IL3wD(
zrC2yKD@j&pCVcD)d-W<GKI$P6mgw_B5C`oaotW;;^~)1RAzUaNL}=p>#v?CV^HeWS
zgOd=Tp6dD7H$Q4Q5|{s#&<A>SuO~rd0Vmq_kTpHSUqmcX8XSfrslWT1cFn>5d|<I+
zVh~2M<oc`t6R^Q2Y*knijf3<;%F_uu_q6B&DSSm+EVZ^Jp>7mmIkiL2G|R&6o^Eyj
zLlIaWnQrNh5EPg8(iU6(P^YdQf+&i}ZNz+n+eun0ecL8a_d?~{Co>109-gF%g9p6w
z2-JJ3<a&AGsnmzW(e!CsEO0|B9;<eK9mj8vTAKOm8Ulz+NHGd_#H@Ze&l+9pAAxbW
zktOLhBVdnX85dca+&#q(@8YlZ=K^z%Ccy-pKex@dS5Ef2aRl*64S8`+nQf;AV6kr&
zGPh5Z`0~1CHf5y0pT;aBWYBfiVB{<IvozX&W?Ukdp4`(x9F!iX#ae3`dWv9I2`Ua|
z1}0I0vDWcjnM2wvu`wrj_1s#b(NMp(;_er0J5$Y!aY|%VkZ>5QAQ3oRwef_V74QH}
zjyoBJEDrN8u<J>T!fY}E_r(olbj!mwOJoFLYh+5I-~jkhPud;8HN2mhuPGLJX;m)z
z)F%Dvd@B<_GR2Eww!>3hP^z@wW_xW6L#IAqo)TT`M3Ol=R&$Q+5MIO;>ZK?NbOCU|
z>E?rH?elCVs~s^zVm-0tSz%VB@y<RrnzWquAPz=JLNN&~*lQ$TJas_SM#i7Eq)8@r
zjT|DaWkCK<v#7^P|0I*laANVIaIWT&TR;%|gC*;ZT2ZS+Xc?$TlEuFaL4+OUBe)bY
zl>|7+O8mpycH2PzBy<PJMW!gx&X;wgJakBU+MTSh%$MtQvks5G`@}nw&hF>vmePrt
zjJj6;We@)rhDH<>GZl<>MAz-z?2kKFN<(m1DS*~2vu1^5COy2YmjsisY7i=M8tUFL
ziKwPHVhDZ-Zm?XvOOqkle2tH+OnZmuB&i|PnopbyktN!rpZsbqlr~G5>f!D&oaHH0
z*6p=h6*9uES3b2+L`rbB(z?H`7s{!s^aDG2S0gb~<;1%PWA_wRUAEg_(Y~fjMxp5;
z93&fWve)`(=Mf&J{Utjq-%)?bE*p8M7r4X$a+e!tjYe0*TMO0NJ({gnwC5=A;=s~M
zoQs$!nDc}~qZ@ETqvM#d_H|r3(U#iL{`hQA)UT3j=iE9d99q$$A(46Zub%FhH)IM1
z_X*?1D9LQqsv9-<lh1V@eeBLhSP&N!AJif`@h>ls*PbXnW<eveq-&EolEw#}5S_xT
z@pW&uk%+=qI5tX<!=rVgNwet9z1}~BF;#<CmPkhoU~sKy7nI9v>9W3Z6jA3pU#+&?
zGR?wwvI-eWesFW<uqsgYE1jd5e!k~eVoZI4Y=BN40tizNjApFy_Oy^B@MGV{QQc@x
zuzu32pTt4wb19=~Fl-<8n^ms!^-pIpa<xHqYD)qJ!`o=HPD*~lDTnmq7U020L@i?r
z@IQkUwKZ6_I6#r6h|4TU!3-)}uvlxSL{uq!nJBruigIM$WX>^H{cHba&o}b+kmu<>
z4wsyq*|IHQ;)Q*^{G-Lm-qZF)Hnw)}?1Q64N+`oUlkywmP9%n-<?0Aa;iko+SADqz
ze~7KRtacSRBv%VKFoj14b97bPXxK;oBKAzyh1I6h%}$Rxy~P}nQrOeOGv^@46kPR*
zo%yL3;4lk)!4qN29TI2#Vv~3Ha|Qea0|%%JQi;CQIXq&cy}s8~qOk1{YN3uq#`leu
z9Op_7d8W#nWQ3=KHZ=NgBY&EP_96roe@3wH#F*b3Z92jW&|dJq2l0~z_2AA%(TV=J
zOYBOMNL2jP=<x=JIjY5GC`b1p$svq=WIKEPEapwwp~2NesPyCZV{K+nf9j6KAqS5_
zS>wHcmo*|qz{@7KvfH@dgOv7tvk=MQw)yBJtXG@Fhrc(Sx-nFaYpkoa4(ZV}bI{Xl
z1rh>HE4<5P`3`NxGn$`hcPh&b*jxc9h$C~_vl}C8ucHPVy0EAYp3$Ij3;UZLLGyr~
zva6BW+;iJ^NHncs3pV)s)kh)Cdf0auLjd(e<d1f+^DYkk=QMya@^W%eE*SwgzJIl?
z=||sEDA=(HdLUM@3S_c;AU}^NYG|tvr%;jQXI-MZ8c75RbLwn|35rST>Xn56JM1|U
znZf?A?VHS~8y3H86FM46T%gq9-Rzi(Y9AI>LZbqNh;@)P#LeQXF0<Efs`e6eMUpp9
zZvybcAco5UlpHFoZ@*S{PCy=dqk#a<cho`i*56H27D4B@yyK2SULx=)R^-}LYb72c
z^;Np4EVGV9&pXJz$JvwuoOR+`Z{?Uy_-GSb2^(gl=X2KqTvi!TBx#H}-)7<#P2Lyy
zA4WWuMz?oS(tE7Ud4v)s&7<5~xqDcjE9{Y6e;;Q>E+ErgUuxi&q4xJ|Zvemv>euq&
zmLmOyhB&yN?UPLBOjuf(Hf>vh4rGsBSyXM3IBZDg>!0sbz!`~(`1s6RyL7O(IsnCu
z@Dv?_wBQMh<+uU1bd!Ddu6MT&+Y7EjIJT?Itz4`A<Qn_rZm)rRz6q3)J9EgWJ?R>o
zCx>8RI)%zZ81P<CVIEd{XS#JB#kUR@49q717YiZnVsIy$y}>_S=`o`6sv@C0!&-cq
zeI1ZCr=8gJ>ci3{dOrQ4vC}TLnW1qc$udQ*Dkv#Go8$x`{YtYm+i!;VJ0`+7+qllM
zA@1P|BVfT`b5n1&XYj40oA48-3Q`xbkb};(tnfS&&f{WMNYOpBt`*%Ck4u6GGvfUH
z$A(slXvd6j=;n`BP9vxKEnV%oGTsLR6v!f%0OYb(*q6vEG}2BVRIQ&<XOIUu6kx45
zgm`Gn;u5Qz=M`X<<<uyF2_Q7NyYRb()|N@8QPLmb>!s{M8r6z3Y#gXDqe25Kz*B_+
zU(pu5?5xGrS}fzj&1CW_DPbdWt@AQ(486E?DBQ%otN^?n>>*!v1mQ6lT*b&q;7%bT
zI8VM%x740ysPqN_8<(n(`u(CzduEnD&8Xn&!VnSZcPUKnZAX`QFF`_K`dk^}SUC<R
z&`Hm8?O~l)iUUK#(9MV-1>kHa*aGU)^GZMKU2E@ixbqz!F$u#<xeZS7L7ZIVmJ&KM
z?nFzu*}Kt4=qj8+EFhqPHymeqy^>uFu%mFQGg?{OOK8b&=PJd?g(RxlB!V*_kz;?e
zI=B^J`#ryc?50V(Fo{pvCr(^%$36&eMMr@<pkliK>Tad6$$Q<C)=<tAC`$2-!kj7$
z`}<i|Il`aAlHJWX;3Q}y4E~~L?Wdr5a(9%BhtMj?RA$-)$<8ENm3WW2n}?4rvh_%T
zJnV+S3Cfo}wD3F9vGJAG`ncO|aXW9xaTVt}lEe}#p0ihjah*s3nIauZBk5?Y<IR4-
zc3`UvgHxyi{sU~^&9_;mdLhXO^7Yde9hEWNFcm*5|A3aH&$u55Q+W6@_8?wDh)mtx
z7=n8mukT%Fb0lyBwGa#94li;jyK}bv-r4JiHisvjvr{F-y#0W^fo+(kGm(Ih+gw0u
z?;w1mH|$mUY$yo;&Zw|3T!$Fty5(3_{CRh-GDm-D?~&t8=i3aKXB{=oMCK^)3t-5m
z4H30pZ#AilB|op2m}a0YBGB4-!p4V|S>0(~gu??4E3qel81XY-+Kms<QW7``-o=_#
z-h-??zwId>+ox!ZbhFQpA+GMiK^&(WNNk(dTmVlpBd(@t?UPoEJheQ>%~p!ARxp49
z7tOMP8Q!96CK$iUm7oY1hIQKguAMCj9m3!fJ`4n=Tn;Sav$i9~e()-RR<(C}JZ%>!
zT%Ple3=iC{P;eqKnF_{r!5MgnHK_Bfwf)0)OJ`tJUx9!uL3~K~>T#E~cDkS{_dS6~
z-03v{W;1TFnWP0|FzG0k4ohXru^(zhI;LaK%(l9h`wN7u#X%}`L#rKY>*MCxU_>a*
zhsKr6|Kdb&&TBSQE<kcHK}*M@k>eKm8!jf*1&D=-d2^0UI@Mo7L>E0e<pX~x%Zauv
zo938D?38%hB2#ve29FihmkN$??*n#OAaq&l;GH0`><;bRbEnzet-W`>i<JmKd5wii
zWKXwxpc2qq@~kRBGexO)SFE;)sIwdsl&QEX^967`i*nos+lc!Xw3tCsLjYgw=M3WJ
z#diPw{+KLo1s->=Kn{uL_~7xvl(qIeFE}|N5BNo~F|yL}3F`oaK$U%m2q-H>iA8}A
zzFaRZwi9mi*-0xJT7Y^SUs(nUEtZGR^aOiMJ_qvE(Shl!pF^B5bLZK9iE}M0^%ufW
zJz)|}J9~c2nn4;2v=;&Rfg%H%{J?J8fDBGazpy4*a8vQ_kTZGwcedsNFGh+Tm{lMh
z8BCeQsQI2<eT#QEG#8wg{hl?v<lP$$+Jh`hAFywOH=4`RNkt&G{KD;Zq&C`RD_}8n
z1CH+fbLt2lYa0Hso2`bxRxT?*Dqwz)Mtr|rGT$!G_l?oJqAKx>yW;fNW|yUTon4av
zy5Dng-4Aw9e}CSinDo&Opo{&?-)0xw<m+=Gen`5uP-Oe$7TYkz-%c-ulR4iNiL^=l
zZ=DUkB-EoBBSor1@eH|I5^H@R@36Ll=+CXRD}e79CD(*-RKyG6`gyZW_ArW*xBxj|
z3p|OtH2#hcTgPB8=)sM(h4RP+<M61r0q@vz!@a{7a~@RXCYONq<`>omM^9+2H!g{g
zT9qFtu6*qi^H$n9uu~dC_3<N1w3~CAjX6Ga0Z-ak`GnN`FaT)uM51ZWSW{FiYVM3|
z$yp!ng=BQcS6Y)tyretlz(2av`%Bv!P~iTAaOV}_nO6!z>=XR<W{al!q!2#=<A^5(
zAs{u;V3$qO>7slnO$IWTO7;rEz-kTs!5#$<2ow_l&kl|_f3(`_;pa!ez$~s;hra0B
zpPQ{^uneTdm${Pvp4siO+S*^_FDvnh&NVTu0AP7U0^0!cymyD)&DK?&$d{TiKBp7&
z-m*il^C1r`&Kp{e(WFed-kn`YmH6=;n{}6$_n_xRvG1?&+R4joK4ir-29r!#d=;%g
zzLKRjlo_Fn{8yywaT;Q_bQb^djeU5ZmvvWW*yKs*VbnX{w`awi!101dO<9)TTdMYE
zer9QGS4MzJA&7+Y%0Jq(%8m*%uoB$`tQ-i(y;<JgV3PuQ6GNeCcemCVJ8cGhk$OmF
z#_^3$lFyo3Im!WE@DETzq{PZUEj4fs<O!N90m`QiG0`t}*)5~Oq{~xJAT7y2LBf$L
z@ju}$IX|}EWT!HBFg%Gh*!mm=mq7OUGV6r%u*L$#uo$7ml0WT6kZWG(5ANj=X#x70
zw$a|<yypFGOl6RQkvN#ml>MURVT^-<;-Z}@rZsr2jmKg}<3boJp)avnO=Mz@{T9Tx
zeKBDYHspSb6v@axd)~G(qdE;mu^hy5I`mAnBX%m46<)e@@)I!r#@<AFr65MOb(@ZI
zO1}Os`;}u(JFJ*3=H?Q4Sbp%e9myur)U(~uM_g296m7QIeo!F=eQ<bCQe3S@GU>iV
z#3MG??_n`?Y{sUpsu$=?=^lHP1A;a)aB0j6Z8F;0+ilwu{+x|_6)uCxGfR2e?p$FP
zb7skJ4rE{MHt1b+bmka)FUy~MP_rIu6Yag$z7+Q(bt6)dOpO$1CeE2?e~yU@HV02e
zRiAo|T@$L2Dk~30K{;QKw@k!iC3&vED@&>5C2zhw!Y1!Q$><Pl?xiH{AtgHRuN-C<
z*YnD|$-j<7+0qSfy3|^o#<(CM%<T|onFlwtRS48$V{HsNLU0ExCp|tbYvoJIZ5vV!
z&%1^sD*xz^Ue7NIqOQAiv>b0Ih3<21a*=Y5TU6UBignC5JM~7di3}#FqoWCMZr>&`
z>3Z8P&V_g0C<KGxf|+%-P3BnVp=J&3RNKJ&v%1vU!~PkvX9i(^a3=Z<Uyt?2Il#Z^
zEP@x{=HgY;tGQe!u1m;@tdDr6G9M3LVTUxSY9+6L(2F+Wn{`U;W*{zF52t)JzzF)w
zkyWdWg2EFMbL>UQ5$;1t%v2UEUMaz~-`^c%0|$l5Ne81l?#O1yME^L}`dhWi3$sRY
zF(xXdI~0%4v!4+-sZn0b!8MjV-*oDP%k0(ep+1Ef(N#&vXBAmP2!r>T4)Ah^(_Zaj
zr!);sQ~=I-ns0~h^6iaKMHrV1q5&Yvf<_n;VB(YuZGgbU<k-bFG1joh*-<Btwwj&1
zP#%+kr-Xdp1N&Q}bG-!o1Xz=sj>+QNPDDEEQhWKFYBk15$hBMJ^bVd4Fms5_7nm*g
zxk3z08Vg@vdY&z5>5rYSlq!h^qBz6Xh#tDkvc#C<-sWM~kfjA%DCf7RN!gGRrxaN8
z8=Pj6$t4)9=Jepfwg>Tp&j;!h#<rkYVDbJKYMDCvJbgI@IN(x1cdqJdcT0>)P7jiQ
zCCUpZ8&s<K*Y5kRhowaRQW{-Vij9zf|DzJ?f1W?@${|)-ju5Q~SuQoAlZir`8%RER
zUqcFqv-TmGl>l>x*``2F<a!l%<+=FFQCHYC(k&fvB|sp~+Kl~|5jj~2BK|Gk<`3|<
zGK<UMK;TF%6MIJ5e4PUw6Mb;J1#-d|aIyUq$gg{4G1g9rCfY~RHta^5#YrPrAN_^9
zNEELJUgP?2d-Oo;Pg|`XvEqs<)qIY^z?AGqdr!%*cB_5=tiM278b3o7*~RE5?Xa$Z
zM10vNnG3+#IRjGoAoh4q@pAcg8}|~gB@_85yGp5$Vgfwy8y@$a?Fq5!z1ZnNrV8~R
zv%?<Jhd5^?lh3gmnS^FL?K(9~Y8bpkIJc5tslKueHsv`AVY_&GjN)>81;_pPwY368
z;%TqgYtWCL;d12BE7aQOTigD=zapx|q{?j2%Z`o?ci&()>U-oWF)D$Tx;p{S*A4a`
zqVA}8AP0-=M>x+wri(V(%~(}=-sMCtSfwU*&c8$U>VIud3ENV#LzV<p8tqIuQW6_e
zqj!QihZ2^Kt6DU-z+)VnyrU-OTlBQPmNFY+E;=~OT))T`5s6Q&ojJ_`f`Z|vyk#^{
zueWCkWE28%fO!yNbEoy6?5I~Y4g*jN<RiB{cGh+EtqwkKG=#m^^*Fz&;N*!m1e*~R
zq9+T?A;&z_ea|F&@&<p5vjpT!L%`om@Te>8OyOvHAJvx+fIsQL#F5q|i|4Xs3&JJ+
z9uihAPMqpFJ7L(#(Gg4h1@Qt;DGJW3V;p;Co3@EMEu#}F<8m2C1CeUfZ4)mvj23V4
zGED6`@~PJB0nJTq8jS#drd139P5Q}W94j=TN30@}9ZGqJM33X5w!wT)5>MTPqUCAT
zwtXVEQS{4?d<=F1^ueV@iPnBM=+bMg3)H~#Om2k*5#_XG01pkfD{+p)tv5YstqKm!
z>uX2Zsb0_nuUYOA0aH;YBt-<r-|u(Z+1L3SeT0L^p;vO!+rQWhLI0d$=tZvUh4+_o
zwe^H*@5`8jC?sbFoR#_VuibVW%fpudi^;7MDt&nyN{kovq)5)iykD}xZo1PSa>-=2
z-?ZysW7n^(WQspe9=Q0x$UkJL_$Q5NY02#I-@*RUKQJbod7<Ct>uqnj7b4mK*s<J>
z`!)L39=#`SQGT%i9$aLHn=m}*(y#1*JF3dcm0Cq5^mF}ss~5%v<`R@29r|Gq4ZpK;
z27ywJ#d`?0G0}lwbvWwhwmx`PhjCz5<xVlaQ{noxR%fU;7YY?vA1CQmzyfbc-a4kz
z_M+J{rT!LMm9TX=O!%JVBtrRAM;P-PYwdqG`l}gm1LRxGZHlMy7le)7{f*s;T_G$i
zO0-y!nqlm>Zm>>Qd$c*SF}W&;_GSUmcQ|uV1Xcui&{JI|&HAbxcC6gDyz=RHc5o_(
z2OCYgB}r#UB+ULkyGhjYU``3rat6~vMZT097yd8XWA%>oGNd{rH^62r`E<1I$M!5A
zQCSbUTWc$(f`>-Yz^%Tk2z&4hVQd)2z3}Adrx#&|xPw#_vh(qX;OT+?iJG78m8S*g
zq~HVc+9x*aM1Rbl6^hWx{povsVV@rEkHcbkEN{SZz|pj630J{Gd855XicmQLu$Sbm
zB|B!z#5>!quDl-P-&0J=H|#6!#DS9l4EL8r6p2sBYs}3&!FM42cdPxCKL%XYS~w8q
z6VRYW)bGns1abm5bq9yv4vsG26!AIE7M{|Pkle(_Cqxg>wq{tzpT;lNJN)qIfHppd
z1K`Kxe-WKKgW1?Hs_~0|ptW{j#+T!$-|VH}0|2Ozb49E_l_nDBpA@a(l%`!+jOfWv
z1Tivn&csvAqgQ_RQgS~^cNG(40ZxvhX&-nq;EI%JgwBDGi{<0Oupk|#=l0ds0vSr{
z2h1tYOWufY<L2HivV*^Gr^+i(D!n8SM(%fc+_u85=;F^qTCdRKkWtzlFizNDB`v}W
zw5glC^r^_TV1pfs<VuwRMFm9wM#VP3UifsgZ4D$6Z@B`zEaY4tOb5%>*;8R+dvN~=
z32!y6tve*<HjV24;NuNve4O4mBzvv@k^O#D7=qkx#Z<kw9EGfxT0Lw3=yNuZdK6M4
zLa*%q6|1aG=nO9ONpuDtJ~|jb_?D^urgrq&3I6Rsa;$`7(J5x|$M&4?p%9Ihhl7po
z5b*0E&aM}|2o;EwVc~$>vagE4GQsl2VjH$QF#0ieAChCMuOOr-Tw?X{Q8uPXzD`1w
zEGJ~mfmEwbG-!p>Lw9tm0^Oj?{%zMWQPM0b+!iJXT@V_GO;&OCMeTiRzV~Z;?hvP2
zZv82$^!*a{|9~i(5a^byr-e=^*`*c2&4as5zwhmTDgI?I%zRiXM~gxcL%TPPHb@hM
zeo%1PobI%Ocb?dvuidLnqLYbp;*HpANt;Xlq`x+bZo-hEPfH<SWH$QJzC&Wr$<ZD(
zZQzZVM$n7!H&VC}BNNM|Ug)gvOzYW>mEq9FRSntRy}{D%wBu2{1&(NUhZx+S?zBB^
z{b9z5!;0~Q^aC3NLlKd3-PEBmc9J#JR*=!JLNR)f5ev?pw#1Lcm`e1#9djJ-v_lxf
z2bM<NKGEfM`)HVdI)E?|kWFk8j?AmCBDI-w>~$$-!VD{N!-fSP6aJd|v3)2sz|E9c
zm?dBVG(xu5y>ACfT?bYw5MBy&Bu#3}kM=magd=-^vQ<H=6pj7Ct^t+xDM>~Y;W7}i
z&A64X)*ZGEeU$<9%NpfDw0Kd%DE3=o3&;7F2&HTv-E>aZTXQ$gLQk*G7is87nk_eF
zKJl!zg0s-MG!g;mOlm8?qXt{7j+A8VA^9WX3>{TC5EJpspH{1@mt)C6Vw2<%pX&m>
zTPN;YV|4;t*gc?#;H%8i;zV>=zJJ#%k30-XWSjZGtoNg}!3M*G^d?n>Bnwxs$ssW)
zK-3pvR|r6+GltPZ3dteEgnj;lz5B3Nn~_iawPs#t&W?Aj&b9tn`I?w`PqZ*$o4p~O
zl9h4};g!Y9Or$ZR`~53>;l||rOVah>5s5=GP)#Qj-FuOhHTMM|#i3`p0kg#Y^GSOq
z%fAePE6z{D7fD}T(YaR%80h>0@(#Y&yJp!!_!}M1L>?}2bj>N~sU`Nry`eFt%r|8q
z*rY+tW9m6;i{(u#@!-XI)(NN&3IggYuGj(u*g=@%NwX}AphV%7Xa`9XZAa&Xxy!76
z7<C$AAHjtoGP>ge`#a62D=kjO8F1f|HrbxR{#?jLm64*Yc*2e~))0_^<~{WeiWy8b
zR5x(Gt<i}@5AySpq5q5SwUfircSnIvVuy-3T)>u`7=T4$LyO>MMY{EXD|qnvz$C{0
zN-Vb?_jpIT;IRQ6#wQ~w3>fkJ@9ii?rPYRBpaBoue|o$9N`pK_{eYVTTEmyW-D-su
z-tAbW3T)?|do90x=yD#2#}C?5e(mX|r|l`gEQZ-%Nv1)$p**)IPI<$A-rqmjmli??
znkVeRl*-6{TWmchgpo;N=RRh7+wu#0;34{zszbMP7Pg;o&nMm$jI`&6Hf#Vq7~|G3
z?pqqB{9H0`L64oDvCda|QD!CX7Ff-Y9URzv`a>Ht#7l7YgUsa~4ZIGS6K#`G;U&(Y
zx%3;=+Jgf}peIQJ0Vs5X)RN`4qldrQS8BPMC20wSI{7wReqpFQm|CSfI!*<r4|!mu
zH>`NcDo}FicxWlu-gB{EyK5vvX9$<SV>8iz!r1#3<1!A4=u!o6E8RWfDNEJplLtzZ
zG(r715V7w%l-Shglixa$q7MZ!>2$>3rGgIYbU5o_dnt@0UEWNjazsJ|y?WjrAMM|x
zmJzkCV1QDUlI@hu{(^N)54Go&H9;hF(MuC7yzQp1tS#|{Rf8i<3C^^RP;Gw8MoV>1
zMd-yZz-I=B7zCxZ{1KhC$nHu*-B9X9jz{^VaqByEUftUckxqk)kAy;UjB|IYr}awd
zW@Dv-g@8dm2wr$Mw6T){jF4WD9d2gR*^_daZF$JwW?ZA>hSNq`Xy+j|CL>gj?}N9h
z#}jjH6WyimKz)d@vRATo9Y}ujVjJ{m_=-*`?>^VRL9`Wlwm?c#(igERSocKv_#wB`
zs;J<y%dO%9e-AG&aesM=300og-5Q0?<AQ{a>xAd)`b<yzacs4!b4DqsP+XXc2+3fQ
zVcSEGGT~*VS=nM+I>3l!I^ABBCQfRv3T_)jOV<Q)R`f}=!P0Lv$Pxw1#WQ$$Yuo?U
z_<557>bb}#8=F)jaa%WA5W6N}_CNrneH~|$`r1eMK86YFSFGq-1g18gMyWExdP=iZ
zy2lERh!`gbHyd_6$7)>bh22G;Aiv@H=jYfP;0<_#_IA^<Y!ivuJDWB{O>iHqkl+AS
zMesO)8`JvR$u=LMPdcmTU`P2En!fKMu5>bcm+68r$tgE{WqmcH0f5H=OPd)0f{MCs
zvl?T(2qi{|-xQ54EcE!j)(MD+UZn#a5jH1`rj5t1UU{?)`^mpSBZ_ad<s-Ih{mpjO
z#eBp(s||wo{DMDE2KU2$(MfZ>tZSLl3<hH^*;8a7N80lnQ!lR*{qISCse1lVm?*kW
z$Q3DBy68_^`R}*L)TZNq-$hOPOmI3kaPO4<phS5(E2Hgp&;Ps~f(~&*2^mB`J~a9b
z(1`AHGY0~b(!U9?oxa^(f83vAw8|kV7G7>R&;}7Ri@Yotb?HA7a8>Q-o0<M5083xS
zMgFvuVU>a~)G|x7{uev=skko6lyOjEV@PFL__NgjG@%2X73nHyzMW3Q8V5$>9*&>G
z%Y(`xS2$9Q9TJVeyN*u+n~n1kfkEMw8TVARvkUIoYs>C)Gy`Z_X7PYxkvfom6>qi1
zp<kJVhLOF)8&}Tk;Ri%#LAO;c6jb7;ty~-4{`vKz?(8{ANxtM;f#(qLO%0--!%+Uw
zFPTI0a0bJ=6f)7a`@{Zz(7z8kaO0V{?-$Fs-5>k)fC2%MwF|7h>YykQR-_mA+HCTW
zK+l(ZW{v1vJXGmUuL>Q{&Q};A-=uD_-$Io=B-ABud<%4Q?k>AGESxWKcBO_W@moeG
zvI8<h&;M!7rg_zxzU1dh6pHu8LD4ioCYnvJNctS=o=&)aNCrx9#=RU?Rg)N>hOAQM
zuu2YS+7Oa^`j6Ib23rekTY#i+5*|*pQNl!Hu&W7{9~dcyGD*;Fuds^%bSTV(U>Gub
zw3t}9TT@17@;j7TR<Me|;|Jhb=%f{lbMI$a0(piOFY=HeH)Ma6V_iP;7Sp*v8CHUE
zjH;N#c@_54KyNM}1hMU%UD-16(l9$K*UQ3^b1}E)OKBs?JTY#N9o5-O(HVvNx@_bp
z0;V0v^OYg?vD|oMO=2XjR+0da**$xNjXvK?xZg)Z#O&n*<08w;=?$F^Ehf{*3oLPG
zYw{9{TaL3-uo%4tlLPjI$x$yZTZ7CHjVXwosdaHJ&&Ooj?|5+Pd0rE`>%MN-uj%DY
z{p`K^!Ab_Z)IQ)Makl7{H`zU)S$x8s)9!wuHuzxIV4DE9WLVs1i6s#)KFNNJnXeu!
zwISs`G8au4n9ytPH_f->WMQJm72)PU;v&Sa`=4opq@-cULRci{Jtr18Ol-rV#=nQz
zmM~XZ>nyI=kO_=Q{BWoZK+#n{ic3km+oppqbuZ4e9hdo2l*eFb#AM1s-+YN(5e#h<
zkX-`0LVx^MQM|P|nq17uFB2XFuYqUQDX^hsUU5Hyl<+(S6!cU$mtJSfgEcV?Sd7Qv
z>h^uNiPLW`)>RrNBoK!D)o^<-@|s+)(XHS(^CV84VDnF@zV>8jW%(p@9MZ=Q6CSB4
zmun`(!v1}Dv~3Cm*f(GC;}~8wFYkA>=cV5(X9z(dWP;?~+|G7gFw}|wVB^>u$O%QW
zSLWDlAWyvRQX{9V`om0qJJxE10?s$Y60Gseu`Vp@ns4WH^iM!1BtiMbcuOy|_s<N3
zBq~zIDYVcl>~Me#bw<3Dn*b2%6%ZHZ?vm^6dghK7l`f4yEDHQox#JuwY3$$it}^Ag
zC?k^^q7yU8sLmK`PyWYs7r-r?tneOW0_xvvFCG?m4?7~LWELG)j;%im>`R)1rr86W
z<grt_ghySWi9_o^kHe$8P6>G&XDDOR1&{|>b<_?_$gIc%!|aK4ZzGTlwr|9caK|=X
zk?_Y>XL{>Tu|;Q9d$CYZELxv0`41Cp|KySvDJlea*t~F5vG5FV$%VG~K>vE6SX@{F
zjpW%vYbG}zZ5xb7IYN0xVEh5jr)BwxCN`zn20YvtY;SqD!$LI<T(3aGxC$9HqTId~
z=%tI{^V#`20~ns<%NKHO;Tc{eN4!|FfjyK+XacaL`VM2QxVOI&W?-KyGTsoZg^(Fc
zMc3O7Dc<7d7(P%9+!gJND{MUqw9m7f%XBt)B;@yF>~X=aNlSY&6$ug+;nbo{t<&@?
ztgA4<<XgC7%L|O4qhUMIr)Y#hEX}iDgAYOIp;sm74iwl`vf!Cfe~gtksa6*=p?L9J
z3I4joK}pJF;z+r{-aE+OQ_wGq9czh5a_A9?x6lyi+@fpk^>$3W6e1QCSt(9@()d_=
ztq&|UDcS@(QHo%D?p!2-K<HP?ldZIiztk(Me55Y7b@BC)BW=bx{<wRE%u77h8NT^g
zI~i5b+tNiF60t(2llRQ(ogYfrcaE=yg4`xns02aCWTL6k97(Hf-DADrI6L{ju=dmh
zxm>x18q^FWPd25MFW6zNy(A4U4bG2BDUJ+w?JM^8K;!@-MDbA$IE3%b&a14s00*oI
z;jS);J38h$km)!{5H1VF)fPv(iY9V|LVVmNko%#%5o|}@vT#h$@B#|l<9j=W#ie>@
zEQPohA+!cCed@b*B+P@dzTbI-iyK?6`@|a7@u#9`7rulq_)WW0ciKSNM0CTG4=#WU
zAH8WO1#p4E;iK+5D24<y_@iF3`B(X@^vfezYogne_FO0bKNE=>gH{{iA<w^MYy0w)
zFf!bo6@Ai5i7K`oXPL4K5!RFy!#$oMQiCUQh&fu{%a*(x-XMt(hk>-8#NA!(@wfbG
z_tH(HwRV03!qwd@3-g%5R=|kF(J*S_wb0jY6HM<hX`+G@Y*rwUN<sJUH^NHf<OeST
zyvEt)Z}+lRZ~ONc(qvj80hr$kKE96iM}*g?$fCya>l67}ZCgCupK6kkOkj1g0wx|l
z(1zUN1zmBdmp7-&OPDqNuDySMox$dl;x3+F2GuBoZ)tfk^!V>kJM<m+ACJ}B#dSS(
zzB)w{9Ess^a}pm-@y0W7y#)DCExi8jAvXC5e;$TjLVM)A$)(qATu@tE%gzI+pgtmm
zAPgFkLkf#`ik*U#PeEoDcb7wX9%<C_ESvVRKSuj3@q6vTwDIq3VU53Lmn8WW`6}3_
z9$fQu2m5ZPf1>o8YC&0X2^;HbAAAs+_VG(gLCo_TLx;4p4YD+fbQq>`VM`R@xINd7
z!#Jh>N-#vGc9E@L!ahPH=W*K5Vj;G<S-O8$$2P}69eb?Y3;PsQa*`m*mcfnql6`;n
z!8UU|9d}P{7ELUekU+TW#vAP}8D1%o4H?W(TK1af%xdt|Ga%sqLYLcnmhP6%Tk8Po
zr{l`vY!xF3U;H)2ia3+`q8IQ7<N)#wmP^N8e9l(f>?KGhoK5n6bK6nYa$AgC&L>IF
zCuC!eW?*CH`kDn+1Yl0bl#GT&3u#GWS<tDp<sEkV!Tw71;|)zNH-EU~C^t4dFyFE`
z1F5I;ck)>P`ei>I{i+o<^QVDibn-~b^)3DRt+q(UJwBmFsz`d;qmS9$XZusGkl_j+
zSDr&!mNv_53??f+z@W_N-ExF@anm%r6sbYal|CT(xY>R7Uqm|w-kTi^b^BphYqnj5
zgv?V=JvhB9t%QIvxhtNs7sq%#5LZs+KLWROJTJQ0rgGZS&OhfWj)tNCtn~TM*b&GY
zas3J#mp=fLO-HB9v00kz&~^^`3i%g9Cd}?rEFWElBCKCA+(9xK=CISV_HDkGgjg*S
zD8ubuootgrGrFg_Q1%4~L2NejCEM=?e_t*j%m!`Kufn-DR{omAQB>v-k$`DL8)xih
z8{Ws?_QjQ;Cxe|5pm2H+s?L&Zf7nh#n2*OzVpnHITt(-KH`o)IS?;ng8~Q7q5jmkD
z1dtT2Zwla!+xITK(;n0oP~aU%Rv`2nUa;$N*w(`=lu3{0VWOJfVjV;16^d~3@L@XO
zLM`94D}(=af6_x&MVzT9^>up$wTXV>7K~&UHrZE;?Ppmf6&?dh?zJI>r%LF#`aV0P
z$eYL8fB|bBmEu}EqsB5@A2w9CJa*bXVKeNv9~avzvYq(e<(6vA6%#@F-?2lz51Cqb
zWJ`uK^)6dm&mZ>jbnHr7fOGRx_9rR;HIUR8CK}9h-z~I78hR_=;ZDmOe}~*<olo}F
zlNmBOY;0H5{=r99hn3}v48>!}AR%V-#>aN_e*QR9%OEduKnC7lb-!&73*kF}Gm)0*
z`r|LzIU+%!?TFo?9Cx94ZI;dJ;m?%-HqSS=>WMQQhyLTgmtQm_#45^garrWvP{2oV
zkX(E<3k@-t{a&%MEHBICUQ8*CIM8dx7unIHydiR|;Fch(5BDL_4Z#2{ms>N*FtITp
zrJ~GT@4buT9=Byk$bu_5;9`KgrS!7XPP9hHc}WH~k^<ri3A69WX3sdmE@|WiN!FA%
z63v{>v=O?HIHA40fwn=F!9N890WdIvf?L&6d)aM32Mka8D*G(AiM+Km68E%v)OG`A
z=wq@CFhY(TXNcd`v`>Lns*bieH@yyS`bO84-Bsp^5y#m3`1Mr12$)*Hy$C)fmGX<_
zJyGf1k^QJumRiE#g26$S3{vzXyYQCq<WWc2L7S@8mV^oSL8~xvNZ`x^?ay%XW)RsQ
zWCD&IjB<_bqu;#(%o^G$j7Lj(?BUi6v20&Am1iaKcT-!3@L%;b_GV^~+$@0f#uV%P
zeZRd$VQqTLcolNM9(KCDdrX+RTv!RGGBL}n$9oN}p~7l$#08Mx$~~|Y@$MYr;7Eu|
zb(72{l01hu<lY8KNhT|_2^NgPrkyPp6pcbzA{729!ojt*zI_r#Ok|7{5UsE}chEU@
zCXz<g7)pRSXp=GI$lpfi$-n5Ncjb^F`HDYpD+XQrIP1RGzn9Z_kcF8zjmI+ur>9zf
z6e+JC4=vbE;<nZ{=okN_I~&>a%5pUYx1OA2@5sM_6t?6VXG}g<5XpZ|vA0hRbH%k&
zbV+N%WvYkSf)BkO1aYM&B@S7hu3>^-KHc(<<s<j<8R&LeBmsJS&35}PC;}WoCCsf8
zuJ;@rmAH7640`kNJGMlu2tPD@M-f4W%1sle5_a2h&7&(|bd>cW4{-A7Em3r)*q@Xe
zU82q0`?%ivz*@2e@s|+{9}qib(n+kT5xpwUljQy3o+iil2prtcQ+#n?3BCWcd)NAV
zvLcE2UHA*sjpvOUMe0Y-F86nOzyO4`;5Wv%*ENW)`NE&$tb_2EBOpSKJWSwKM@5Nm
zy{uc(1DkoJAUzR1BW*$%eh@%VcYS)WVlZ9IKVGc3z}_B3X*i#0T>iXbi!Mr0#kU<8
zjoQY_plh*(6^|oCJX_ir1klQNMXj&w){}g;`burae(kCIkKJykqjd3U;8)3{N^4Vs
zafVyD8P(7~?X44hO0i-1{$NN_Nk2R!>cBMcxegFK`E)uFj>XPOd*4>0fm0-02xJ0-
z1PjDRmwjP7YIzAhAJBieEK`ocQU!&zb=+e2wF<pb>H!`5DuJ2~`@znWMBu6}*O2J4
za>*fI?zY~C`16cm6+eR+(3UphO>3=<__4+(x4e+TY3F{?XK({191l}&{0s9%608d5
z3#^WGV53r^)$CyRy3(yCIV3mr1KesxGhuoZ3>2fN@(LPKst6YkGo%qP(>+$c#^38H
zR0_z(Z&%rJNK{*lNKGfR39|#3mXeR`@34dVhx?wHdqyyzc9hpNjF?Di3G?{IF~7Ap
z+c}5(b3q6dnjhYNakEXw-HDN<0craY!A*12e&z|$!Qapw?N2Tl)G*b{N1~{%7?ns5
zK9VGhUfb*_rc<L2f)}V2{E68K7v&TrqLHvoO#)_UPIcuJle^AeHKWslv)YB&brBkz
z_#UViJr^jykE+vCR=NM-(IIbo+ky6~NA&)Kb`SZ|+6KowRMIARoqITLOJ}GxkBGL4
zSvlV!4Kq5cpZ&p!^sn{yfZQh-9vRxuhT~~UY_i+Hu6Qmt%RteAklx*Ea}My4hfc+Q
z#0;A`KjX+~p0G~2sCgWQ&^$0q@Nm9nNZ0&nR{;|9f*geih=I53ZZK#+Bq!Um&Blc8
zvenBG@I0knD_74RT5Aiz0{OTHoYHrai?|)O*&&E1tZwHlbVewE9BlOF);iJSVGww)
z!;clUfRm!AzJ4^NgHr(<40S}>5ln;_;yz8IB^>N591fr^a1(1-G!#|SvjlDZ-S$(w
zf_x1}`LsZ|;S#6c5>bD+BE3V5Qd|W)9cMR4>zzZQ%e7m%G7#NEMkgeQF@M@I&&G?Z
zq*`HihwQOu#K}`7;D~KIzQDqWJAiU=5G<W<T~7fT>zI(s5BKFDu7T{r7Gbi0>kRzq
z)iwhQyCAX<A}#L=afda}*h0J=RJ{`lTY$)*4z6Oao??%5_p)>(o_wx1*5bup-EBKc
z^c=auh6N87UKuh3n4534H9Os7dCKgPN)k0WrifPw=`8Wfftc{;Ua}j8`wP<f;rsq2
z1!vrEf4A@gGP|)x?k7T14=k~~^WxsfLsL8`3ny=3G5AT~Ou|bCFSCo~^#Mw#ha_!b
z#};SVxdHDI1*uA3Mpy&y07UuCK_i!1k7EDQ1xb+QiXajb+d&<3?zbJPLs*1>3j}_6
z=;ICTlvjddy1MEph^#hGcCdGKrs+0j9f(T7!q5(DY$t~{fYkB;Em)$EvP=nNSf*<V
z?B*-{yL1nt0L-G5hr3wacl@c=s8@xDV}OFuP|b9^2?H#sC=R#+ZZN!1&$@GynXzS!
zB<l<^N1OI6%eG$DbyR3Tkt;dMV1uwEVav1roOHGgran53#NslNdrRNf#QIG2$K5eO
zg0V0d02p^+N~!@#qhA#i8nX8sU1DVzw1wLi7mfBF>Q1^tFYpXbG=w@(QAu(o$PO;e
zn4UV@J_y70JfT2WIvi8m+L@q=)I%z!s(~ULHZAq1<jC<A2m&7FQb@wL)l28ve}dDA
z47O4$nF@Bz3+LH%Ek+w|P|5Lo2tf!L*E<K<>kH#42ow;W|K}jPWPv~TQ><(gkOH%&
z?fm{Zc5x_Dt|Yh@eHJxNZ)0yf?Vn`iYv>BK<dUA&HuW)oihB(11-Pyt9k+3O`Si#p
z-tFUo3cVdLZmsC{PL^>wAH{B57?!hgWj#ZUVzV-9A5XMZnO<w)!V;4usSTGQ3BJ=&
zV$)sw+uG;+B`|)FN>1RS<kI&$*Y1c(X%tc_(6sC-9+J4Ur;X0_Ug?5G&|9ACIQp!o
zt+<lvgu?(Qa+afgbEX2mTw^~815Of0Y-dN#D)j7b?j*9X%qE1H#$$67ZoA4Z%|uAz
z8Q;Wi8|h856Xb0g5?i%Qw=OgMF>;$GPG$pM-*U2@R2W_lI||a4M8_J5mEtVL6dm8w
z8Zq&ZP<&7kNa|6PZKUYk-^H4QD!PM!RFHi;CZIRcZPk5oSBl)n0S_ofUzTB?Pw?kl
zSg8%Bb^7oeyOAlOjR8VfnOygLT9|4raa!PU+Hl28xl>n*OKjT%Fnm(p#i2~Hhe-%k
zszI1@%OA|8RN2MjTj?FoVYjfVC@RCZ+AxW+#216j>U;^g3)`-?EuZ^yxdw4iv~REV
zdU}J^-RzG65Ma4ndaV)!{jpoDSb8b`8Z5>C6$$y@Uu-6H<LT0i%antF)`?YQ+TPt{
z4VHP4m@8P6q90XIvdIpA(W^u)&zGPVga-Uln5Vb#X1U=XpMmRS!E^<e{^R>L4wvdM
z0|SRX+Ph!wW0iIl1V)cmqO<8HK98w9f1Ry;fybWWw$M#tLYSb)rVrUOg&ev6hpqDt
ztg6WV__a4!M8raUZ{|j@prq&7Q-DAch=d|oLlTmZ>PrF!b!`Z?wX9uKENgFT7aP{K
z_ugH_g1yED^80+xeJ=+0_h0hn-nmoGoccXyB&VrhP)D_VzGNQTZEkVfPO+vE1x|S_
zRh%<jyG15W=JoEh19=EqS6mV{5;;$QKh^DnC`b6})>bZb;@$~p&41;NoyI_-3IkT|
zCMt8Z{|oMnpR56isTILmp@rQZ^|&kl0UE(~5^1y1738bmc8{KJQ-TPl60b!?rDC8Q
zK)7nH`qO5YI5*EGfNloY#zc(jPThH?TQbQSuzi)?F4e%o9tjzmo1Wv|!%xQ-r?aQh
zyg<q@H53>IgwXrcgdUSX@n~tUvAio}AI23n--GS}5fevTVOXFP=2+S5e7CI7)`?lP
zRI3_IlvZ&48LmgVmy!dxGl)!ooHUkbch%+YfxZqUfhD7ag6vb>hKi#JxZT{z!HL{>
z_n+%(WXGntOHBju|IW5{oP*H;63{`kZ5QM;EOE`U5>z+=(2krY>PT})WBKVww=F~k
zpQKVfa<5wfNC9doYP6CW@{{V&H$C7UZL@|#&Rb-wLPbdF?^d|sk$WG*js$hf(CBxv
ztD9+$vw19HSBpNc-GN5d{L}4u2#p9^RwPo789!tsLgy(f=Rxi6N?0CG^;NH<iJG;_
zUGp5bgD-Zedx@!9tMnCkf1jS@J38`eH}oIYQwf}@VHF?H&(p7Tw}`-qwOJZMw(*|#
zE_csI2b5Kd$^x-$nU=klILFl!<lzn7$-Xd(RMcRnz>W=~f6ra+dt`~m%z?&Zm%1+%
zHq6=o@d<b5OV(P+;u-?MvKTP>P==%X+LyiHPJK4&L5xFcAb1vD{^wopQ9-;=#1PvG
z2iox-|GcYsK6;+D>l_1laS>N^_53?;yD3Dy?3JhpMyA!=Uv-;%|3mwoDS~<?Qjbb)
z!GpJ-ac^Ck>Mlu9d#1$}|9M9}fzosa1p#f?!-8jBrcQ(Q5~B}sV4K%|hr2QA2Nqw$
zX^++lKG$p;tQp;Wx4YpOdo^{s^)CBz)HUv)<B_2xx^pJUJus6*@W!q&{;F?`Q-J@6
z3q-)>A(LJIrlF6H#ix<1?r4MwBy#g&Sy=(s&)>282sKQld><I4YHJyr8=UpN`!(BI
z%Gy9-q+ZF)4K9Ay{e4dwRLQWpwL4bc)?VGwHb3Cx$LQzA58UaaY0jlw3mP@=VMWEb
zse9%R?%_MFp}euZvu%DylaOxh&5bop)s$pS#5h91x9*oEQQ!FU?QQ(zF-po_{JvYZ
z11&kh?5;WgZ3383piX!E*}bs0b&3tSkWt`Jj*ZO>zVC5QKVTirAPZvts%UiCLDz@w
z<ejaXiOq;|x=HBq!+&)jR`Ro=jChd6CApYMEnj}-u6&CYU|!8_prJaNR>fGu`P{!j
z(wLU;KVP|xr;QMDLr1~5cFM;Ur8XIAwqt*HK5;G{QkB!1##MGm2^!7=YX&=t5LO=^
z<KDua?FE7KsW6djFkrTdR0P``>E^+;cr2ClCEiV_&wM@+Vq?K^?(W^~k*ENg)joi)
z4DWVZkB@$@rtGNDNxH5nc=l*FzrudU1<@gonAyL^whunSolUfl&lRFmlIbg9fO-ja
zMHs*BI^CFQ_CN^+h++jS9-MO2WH$k}&Wl`$f|-Z}SCh=0A4=R7yIE5)z;at~JjlE=
zu+uploV;WC0`L_e<@~;Dqq}-r`yJQQLVnK5qod&0@ox7BTw{EazN9b%so_YLceo$p
z!-{he>vgq_-~Csa^%UrS^1t!DJ{?+|OW|M?z(!#cSc9Bkw>#oLJ~^bAZ&iXzjg{2J
zs^FE?F;3@K+;?P%u<m2y7-4#Mb~RcsKNHW(49<Hd{?@reinGb*>LNnW+@*Lt`a^zj
zMREM7i9^*w>0*@^M&H1(Gom;?tc-pLOtn!LRz3}VaC|fT%*L6Y6Ri0p{_K~WeJh$O
zjU;jfj0^lBci7Jn&qs~rm?=M`V+?Ex_5zlc+3)&;+X#dJub1LiX1xq2{nGbt=2iCV
ztW^LH#Ua2ivylBa_xs=l;Bl1`NY=Gu0VCM(YvDB8!hdu$+$Jv~Uc^1Q6kMiCHa~R~
z%!7OQ-~7>1^@I>ol7{JXqH&Z56^-EYQhnC`;chy^9>XS0KP4z=+SUcD%h>(K{>Ia6
zdE~XAK7jylayDiM$!FqEKM^e`xstFeg((VxhsVXYF6E8PU|e&o63xD|?XNp1mr_A6
zY(TtxF<Yg(1Q%ATN@0xKMmpP&yWl#5mTg?WFNSDi3Y$?_=dr`sIk~}rhvKs@9$HNC
zHDDOrge-(04xqihieKQ29-x(2u~dy8I9B%Qx_SzK>!PeoRQvDmjBoG;{Q_MBsSoZ{
z(X!4VZgBxW!YZ|i0^@V#Q7vOJmHe2?<3}g087;ZCZmzc0N-^#GOMKAv)<Br0&E_x;
zAUPl-nI)7Wy5;5gdH=BoWXs_mC#L@c8lfc-9{y?kqEm-hHEmQ2>Y9BfjeV>c?gvkG
z4<E%TQ$>(2?u3)0RiTz((%x<)F<_P8CX)|WxfMxzZj6f)_7(=#BrCdJ4OS(fM>+BF
zu^3dhWSBcI!qpY2*g2R^w)mC;mo?7LGdZz}qZn3?Ri*8M9QQk_DczzOVR2bz6Fv}x
z&y|DSAmW@F2ld9qqj27#;tb1nQ_Jl4scm+FS^=m=978*}7X{u09tl;Wm6`6-4tZ!K
zQ91HQygPWhu?d~`_B!x{K``sz@kJ|)o{Fo9|5FYJzED*ZKlT`-o!MNE)G1g%PJSZT
zbZhs++bk$5kHT3}+ofT_MgIrnvv)uDH|#|o1-(F>)*75t5&?od$y@N!Uhb7!tR3D|
z&u~yWtYOAJ?!1(BjtXeeQ<=lk5w;)g{)3J{pJvbr?lK2;I8S+I!AJewt0a%mNG@Cy
zuChSwcbmH9()U;x%snMh3qZt14;<(Y=7hqcCqyW0lQ@^`<!<}Hx|!T&VJ{pOnX=@j
z4|mxwTf>wj$qGyeCAK<>K?p_y{aE4gzXk5sX#C_CCgpRGhjGpN?xO3W(b-~|V?q}=
z$vGhf4#SPd=EYp{Q8pt&#^Do!(sjh34yv|rnz%q@Y;f@r@q2f+rwW^qgth5Ms;cY7
zsC5xYQ1H+A(2s@`!<ehuTH)_W!WG(G*;t1j7hnD!M_j;85=N-{1U4Zvc<ZA079VjF
z6f3APQYs%&2AD5TPQK1oH(JXpBg8VcGR=6p`T#fSMt)Y3jrkPi9F=xY9u#Gn80=Ha
z+${o+!7pLiqyfR5S^e1guC_k%1w`OgFp+%bjm=%*0rqowHP<^Kd(lx)8nBje+-&Ez
zm}QO8A*`O$$nIN2_`$!q-J0zyxRX#?ENGL7Y@{^7vF_ZN*3^4+O^S5s#ud>ptDm0`
zY-Fdi+==+n7;5xn6j)$~bexp=$#Zg!jlIHc5j_V`UM55|r9GFr1LZ~5lDAOMkcVM?
z2Oj6fci5mS7!*J-Ml3JqGXvZ^*v34K9s=0Js)5sa#}O`B*JluLnh4TbjZ+}g1RhCs
zD*P_LQUn*wv<ktL<sOT*01qa3tSaahLwV4<=MJ`Cxn?biC=#Pq>A=Pv++@7OJl^L*
zKJc*S1&lDI+;&%Y2p{6+8>ml`&KM;cH54}Z7q{qfYa}a%;0$-PGu`<;Zn}PDyJ2<W
z5x9RcEsbpO9P`J@oW#t7wxYC)W`H@$(aX1BXZ^!&J{TAQgVL5|bQL(D(T0WAK=cor
zjtHJgH3zeM+{KvvoO`B$V=4%)8S3_xM=c$%O|2kCe=F4v2nJa2^!~u#$w1)?l_acM
zIYK#{&|kLr)H&1<-tSd9Nnff_JR>u~>2{wzMys*xqE%D^$Ft3q7;Nd;Te=7KV<?e#
z#gaaW|3Fyz8~e``z7XFea|}l`?p((H&5myC>un5a(&Y3=z0qAStGK12c$NDXE-YR|
zH$&mG>iH1KU3<D&xZL$Sq}f3nM3H{Ov6XD$K3r-|lennPSSQ@^<j`g76!HSjS<y3b
z16jsmtq?;-hWp}7YmY`ke3ctQp}1(EckSZ7iF~-JW~#yhClvQWr-AFJthD9yZn~?R
zgPF;Pq9<!W!00hy?4>WO0veord-oX1Su`(Mgd!5-@h9!;7QP;}5D3?$%Iq611CEFJ
zjj!L`y(9WU2H?hq3ya~@tZK$OwJ^aJrS7B1Z(c&-39#0YJAKQ2UE@={hJtR6GSqoy
z{m??U5X@iiVDZ!>)sY+mm+s}(T%H~xXrd@QAYjl&rS8Kkt)(*M-L#^4k5#ydB0I4{
zJS@<+5a_Ck#ZEtVo+~=a-l3vygyx@9{SB^yJSz$C{UDcfT-0S$#M=-Ov~kWJUmO1b
zTc1IeL-cGi17CkT_ZdnkzY){7kPDbswz+eV+aAv!6gY|1Ndez1=bO{X&})Bmx4uTZ
zT_pmjFctP0d!HL0#lMh|^Q9`2K?y-0b(<Tun?0V|%<hOhx#<lOw)-F{ANGLQ7%ut7
zdg#eqPLx826+CdBySLJs5MLa5?y`?;CW2!eitkTz1>>V;`Bpd>X~2Z&q##$m+MiB$
z%Zlt7u?!Wklgk%i1hH&FLg%=D9T<JvgsLS8h#n|0WKJQzLnkLb@9siuFvJ-w7P=*O
z@S*F!^t8JLe||cc0Fkzm0||y$cYF)}%{mWw*ljr1o++e?8wJ4m9Vs6SeA-n^@AGcj
zG?8(NM>+ZiL{$HfyEIxIp<O|TD`H3XyL94zJm~KEd!Ig1sf>31ZOcfvW)IfB?)K=k
z$7bl9sB(;*x#&{Md?rXl_j$Jh3#fN0aJ=Yjw(060bA4MVrt@*P)5-Q6F4DPk*?#$L
zg2QhGuh!>v!W$_w3+E*?jCLZFK(LYv29OwhMmlCYN#P_rCuCF)y52RUwi?@xm6A1^
zka1RglY6Yp-bpdjYV!hs(PtTFyx{T|SYx3Q@iov~E9ZItlkSg0`;4faxEi7homTa-
zs3L%m&5-P;-0Dv4GVQg>{KyD5j$2M}@u>LEr<+}1tA-&$V1h5+yegi!!+tONFP<|N
zQ|i@}c`{X$o|hMF^;^6Ni=wY`gw_;nbb0)ePk0euknRHLZ0kT9i|XtgAHVZLl;X4>
zR%{9O+MXoxLgHV|VMK%EP3`D(TS|cxUN{{mO{jsCtm5=xZWR`69e_K5bE0~>?j|Zz
zbn{E@-ffI$0chZ)L}0ECmQ}!a^|w<$S8}mQ6*(;_Z;C_HR2UW2P=P|pst@0D*C{xH
z2aziwBQ6TZ!XVSGz4>ofN~DHwb1+r4B67|@_o(alH9s3hluEGzahlY=<RRDIWFFp#
zQ9$Y1u2k!VkGf%prCN2-SL8%K=mB?9Grxk5<vMoY={h{}%wxnM#tSHM3n>0Mclr-}
zF*8EVP~pf-B!<Ig{_?V09z_v=0fGb8(T||ws3K71f*ai)cnEoUf&@Io^_QQG>zGFo
zaOT+Hq8r@Hpi`J03s(_=lA>bD6Rvd=kF>FpZe>cW-S2thiS9gn_DB_!;)PNDT4}L6
zo$NjrhRH$(c0HwJpIq_UpQ=;bfSlBF$Z)FZX4w-Giv^dtUxaxDswMmqyi|)KM>(@S
zda2vD+&X=-2Ahsce$^k0<oXNTi9oa%g)KgNZs4^Xy9MrndiS4Qtjnng3d#rLA2Ic9
z`mHWA0&=qo9qAH2@Wq0wq8Jf_=Y(6mXBZLe_N^P-0Xx|MX6SZS(Gm@;^ZB>CRlvNM
z?lj7*N0~Ngv{+ivRTKYt!EGC@>o^?zHl^s6jgfb_gu+RNK<6qxbqjUaQrzoq#gwKA
zz=`w~Q4LG<`#o;O;r6YF(wJ1Y=@$~XEQo~dog}V}uxE;_PNWfr$yE(lJ8-qTTu~T&
zAG~D|FebiqxtpeHsp*3(FCJc9(PZS5hw51FDUY};fltx$@UN@X86)GXXFcd9YGl&>
zVAP!Bh|W*D&u!dpzfS>eXbVlOgpP9Vai^;x6Zf)JG{`NGQnKCoZttl7%5`$p&@?HC
zKpYQRIQcd=aK61d9+#64?vQ?Z$rTD-^O6gN38E-DUJ*)}%w-8BJQ$R|{rqybewVdZ
z0zJb!ru7wsw(~)EcC|I&CYR%rNw7A%J?cE}1;$EvM5!JMfa!99+aGg#uZ62+^(xCk
zwlSKyrV|?4b>yoqeli3~ji=^R@)pXw5_5O@(Iw<;QMGq6sqJ0@266NE?%kv9=Sdd!
z=sns3x+>U5^1=rG%L!4RT?<$BI^n>UT38aV6BJwWlRHrUTq=<hs%W7W9C=-4N;Z7p
zwqX9Wlql^2@{+zm1%qGQvgy&6sn(^s@#%V^Dl3%}#L3&2wZT*vu2oB*nifMI{Ha^c
zy3rtk(|gxX3Kz*&MZ7P4;+{Cv9>Q=F!=m>nJ4#UvOWKKl;-*#EBNHfmg@;k8XvFQI
z3+g{cGoFCgFT#28JJ9-1+||I%`811Ym0hXt13|vA#%(^^e%A#yQIw7g8ECokWjAB4
zwNxrMu2$b>4xj(zI$=L_MACc2u{3K;#s9hsBBM->mlS$Fsv<V?bN6oak*TQ?`^;6<
zkH>%IZbc-}Sp`m)XovWYRO{5W%hn`A1VIT1Evm~YjoI*vBi?YAMGH~HDn%Qt5E{mg
zcw#h>sV}+p>+K_icFBxGfru_wSn!hDg2Sk(nB5ww+#Me(^9Bmg8hqq7h$sLgE*wNA
zIG5YvfTha1=)rDYc_Z+;3x$60zeEI7fNBbld5);CHSFKkn(S(48Va3~sgSDuHUC-n
zHRY9flgy#{smjTedE#*X^p!hU>Fivu(a_jucoaCZTA?gD#Cy<NF7H@-D&ll=NE`ZE
zW*dO1Mi5`H$^sKxyT9S4a)>zVd<h%?QzVOr9=<)pt&O%>&Se;OYHM!z+&$Sq&kBW6
zV-)WvIx#i#@`Im-`K<?A3ouNTZ!n2$_vh*fVh68!|G>ufgweSUJMQx_tuhEfGnyE?
zD8p~DwLQZ{_E8xKeL#}&><r(!nKe<ACOUTsA%$n}<ewIXLkb5`KFdo1$I3#_-oihZ
z%j^i~iPZ_lh{*)+c<L?ZN#mxWs2Yj@?rVGp-4`w=tBMS`N8FAR?Q2TGfxUo)!{I&9
z`}WAdCvr&OR^jG`MzTI7LWpuO&W(ro+oN%sJC#C(MyB`=St}JJ%nm+?`;Fd*^MN46
zt<EL9L2%w!pDE`d3ky_Gan1#e0_foL$x=$!nOXix8K<apb?uN!wD90;g9h)rlzS&-
zPduSdaZ`$$DeEo;Oy22TyWW~Ea2sh-EUY-`bus@93?JPb0J&tZAbtM>PJ{tAuM*&{
zRpDGCk`o_rxd$;OlzPlJp+V<rK@fhLD$hW$bvL_9NfhQ8vulNKv9*qrEi`eSaksd0
zqkiyyr5hw{-@MY*<ACC2ZLJ1?0i>PHf5IK#iUSJmi311lP4zB<Cw_9*%jc9E6oQXn
zCy{p){Cv!foNB*TL1)n=+yYqzb&tBGP1Zo#QgfF=IR(fTYS^FbF04v@Hj24KfJf*<
zVaNzCw)7NNJjEXBbq-_dAYex>b$3P;w<<B(y2O=oRp{>@OWiN|_QEv%o~pY;)#Ez!
zHJ*_Gf9f39(fj53m;-i-sJo8C-E1j6^tba}b@UL%F@hdys7A+U>`dz6i`={W^A$Xa
z3Ry5(b4fJ(({;*;ldfWx&YS6CN0soz+hQE0=ehUrq1uA4YFPzh6%7U@fTfh~(D0<&
zB(iBE;VPR}#F_cBdpol3%B3x{W;BS69Q20UJu>bh+DyaP#(=2AHOcTOHpZwge%;*>
z8O5^q$@qbSXwq?-^pwl(Yir|l#r54~J?QhiJ@rj@=sG5!v0@`L$c=+ZPf*jsm)w{(
zn;akEl%)Zxlr!TLRNUZ}Pq5Y*!X@VD0Q`QPTQ!C_no8|8b+uxbB)Qy_i!5No8@s7A
z(JcsY^lid#@})P&s)$f25XayX!4Ko(!)6aPS2{8xHmMC{4mTap^>4?<fB6dQGnYG|
z=SLy7DakhctMZs1@nC!vQC0$JQ&0y{C5Z=VIk);LzGPEgl6#WwDyzF>g4!3w4=7!l
zmlF*7JbvBF=Hf5s#L%VH`}=Njd`ORZ=z(5{pMyl9$J4HL2g#KwBuXmwBMl75PK41?
zC=Hy`z3%!5EQWoc!azJC$S2|gc|$i#?{gV<S~nAvV=n&12XrP2u5+V+ck2UMC)J2T
zFW{AiJKdO@tYOxCQ0vec$IJXj_Q?<LjY{|v1Zw*N1Y)K^@3*?n-6JkYZBKDQp+uw=
zym6&F6&EBQG3yIllwHbk%aiV`=o309pw2Wf{D|gryYxJF)UEc8Nh7>NxNcM#4Hfxb
zw~B}h-BsebH@`KvGBD;JE_Ab_)tbg?sqBkQlUMe-*=_%+y#oFZ4+fLx`5v<8zKA*!
zV1=h6tkJBC-8TQS-&5o+=>gmyGQ8_~cmBoJlvYbptIargL=5J(7u?*t?U5Ob&D0xO
zboeK}>9)kT8?6H+6PXfjKclxJu5~}3V@)ZQK*p%{&lJS2``ji-pXfy>ft^w?i18fu
zup5iOqh+1<`ttC<^e`DghZ4l=@Txr@bu}MG9alrBT7LPBsATe#n=Qbk+|WsQHAKN#
zI_5ua{?+#D#8zCxXwl}3>Vw150u<ilu0PhEA_v`+FZenH85x!l_~+nj-4lz_{nHW4
zAa(T4yPUrS0#f9Hn6}1KkSC`4))H5vbyw9wBBl^ytJQ!sV9Mf6{Abr%Bc4hV`ruzM
z-ttryr+Z`HC_*B3qVkoIvK&>*x@>)aw~hq?aZ)zK%n^^NS9NTz-M}x_PUZul{<9F5
za%VQ#%x|uRNXL^R#>pW;+n7V#0GkU~eO|Ed27b{E%m>R+oOcy@E+T}x`};jbj_KEd
zC3dvK<@58TME)_r-+sBZ5;IRL$ldV6h?b&KV4H2>moAAOY6H;Hx9OzK{V69{Qz0l5
z3vlob9iP3azvC=xz^T!QTdwyt3F7nn`IodM=|Od*(GzgIrhfihV!E`U+}XFZR8)+>
z<zvu`=Qj6;o)$fjPGU;gKq=gO3ej=>ckYW*EHsPLaBgaBy6Wb{&HeGL6klNHshmax
zmXg6#O@k`BzIBgsI1qbw9t92lYazR-Dl*r*2$Yi>u&G~swDmWQO|SlQrW~3H8~QlX
zmT%1v$3fo~wnOxn{j*#DQfrBhQ(6w|Mi~OusjP11EI0GF8~RI$$IwmR91y$;ql96h
zNBNVvm0{lX_Rx5(xBw@~F{`+2ERC-N>B5KK4E#fY;phu}7JGw}#aHB0I(d7aBo0eU
zG$i;JMorfk1>mUg&1a;&e7V|y<2+SK{0-udfHpV%;YQ!a%a%u|)R2@vp-+O+l0V$g
z{(baQD3~2odXA33K5N{LRBbX<Tw-I43^lYwbA+20JMSGgA>W=TZc}APbQ03~E!0SI
zA9Qv0D{gw0JupLlDs_$9lsNIL?gvbGy2e&Q5~8}{i)JqW`Q05HeN(w0(WXXOhuf^@
z|A^TulM%4J`BtesG&3&u+sGG!y|MxK9(RHktnvA4-Ht=7Nd~y_iC(9Ify55_#_f`4
z4-`^xGU60b%H5ic{jhk{E0Yw`fH~0R*Dt!a_p;w1K=djzFSE356P|E)3mc-mbaJDN
ztB{P!^x8M}hxFK<RFb^XO^i+Z!ra9f_ULgxVT3XK398p86^!aRG+-Uv6EzfeVXdYa
zSv0eWfgie!eXIgRvU)49{IP~D{c=eM8B*N}F{1WRZ|g<(Uu9>R3z!@9%sJ1P2_ik>
zGK6wLfq`$NcqL{NFD==|Z-O_7m!`^?vc)keleWsF4Bq>myD-{PfU{UOkSFFEr{IKV
z+yj;NNy?uCUdH!mRu`AOrwetP&cDGsZfc=Dr;{nsF3qEZ3RU2_8Q_%X+;4kYJH?NC
zlS{?D+MaM%;8b9I<2qC$$()#M5+6VPIoAT-h9+eZ;N!Pt9cx!LW)Am*A{&$n>Lh*u
z&|>qJ_VZUpD}-RM<uUQs??-niHZ&bkk7%K}QBpxt&MWtJqlpV6OnNN~Ht{{zx`jOq
z*sqs};ldkj;ul5dp;Q^}Y*#8tmOu=F6C6o$JVO9@T>wn#o@)+AYdwGnJ8-X$@~6KD
zH)Q+JwIw4XCnhWhTa+)qzKbt;GW`Iqe4emnjH<lL#LWzz9^oJP$exj4l4Fgh^a0ju
zz$pK`;^3BbNVX5JtA)79CRu))=Zpv<Uc}zln$T31nh2G(Tl0duEIn`RUFnU2Owx#9
zxcqhZedLAU%yWb>ar-7Ra|1wIvX)hWQ|g<lsWz*?pAw})GhND%)0g}eiC|6K&rr%P
zMka}FjFY{<fB7K>yUM}wwMVMl)l=<>^6I%%8bQA^#dFW;?v`2hd(|omA*gC8wor?E
z=NL;CFm4`$z|@aCBaPGCJD}XtZumactVunx+q$@`=>8h_;`C@Zx_|}2#R%#bxCsZ_
zkL2s2&!uEyV{2<0Rh!Tf*e@b!hq>toMg8{*Pl;Cr$7N*lnD%wa0(ZgzeTHFyI);d6
zCfKajEuCg<sMr&_K1{8^UDJD4Kt3!EF5o=cq{GzLxlF;((!m8O_^R_r;Q{;_l0QVN
z#s<60aVNAyJyWyAfV1^DfC)+2T8^LPHadi6LxspBHp~pX;LwxY-SeO#Y77b`22YA^
zH7h;9J)k@SpvLAP`?F>MA3Gw;y*J7l3rY7+fl{)q9?M>1+%r2^lQi%Dr~CoR5<XJZ
z5Y4fpy{z2jE2*4{6@d7`r;WjoM&*&9K^`E1MsMXV`xtVL+!XCx8^El9{o)iK?QT|1
zc4}?L;FfD|YwnH;H_N$Y5D=c#?(OE@j|K*GuEU%HK^`^Nv3q`xZ}YD8Uqyv~sV#X1
zm%04M_+c-zG|JfMz@8SwEYH#~5Bom8Or9rwm!dXMk<d%aPH^iJW#d<hF{v)Ym{sk3
z2Mrfxo$EmU?sk)dTGbr8@Mf7CkqbTTa!bzheVwj9D^9yUhi(NKu)F4yd3AwX4%MgH
zC`xN?xS-*1chzzBGpQ8pgN`a6gQ7P+(JkrVm~aalN3E{8zN;HEh0=w5=>5ap7DVM}
z!(DAvL8$itDXgh;xo_F;6B^rVxFd&TKp+~YyYs%bUn6GH(arrRa<>s+rN{(zsMW6s
zf5hM2CadkqLNKxLDt?z|K5?Ym@_YLoU@}#>^DGCnrpa=>7)6C@3sEth-x>KR4mhJg
zi!@5%bm0d94FU3}{uXy?0ZoSd;Zi;vuz*8(r)v-Q6d6P`6n3<yBeHY4zMyh9Or9x^
zEu_$%JwV-nPGXoi5G-M1{+{kfo#_I!8{Bqe2kSJeUkS>WGhL;8%s>~bSwA6E^|{<V
z+*&!kb;VsbpW}H&wFo2+aQSkX)6m!+`R~W(sSHqOhI@XoHOOG9u7x-_!lRTBA5d<Q
z5&rXUZu|Z1385!ZE%7<2j!7_ch#SfXdud#r4CWyELFBZ4W)*B?^SUgT%%F$#VMsqH
zPQfCkGLG^Rs$rc>x(!2ncE+DqFn%+^eS-F69Vlag>00XQp?kTR&VC<{>kg9+hk<3T
z99ZlAh8n;NDv;G+5!Q%l9airi9&attEf}d1QFfsbNrw<iNvAt`nB~S#x4Sa!63*`N
zZgupf6s>_kLbS@<!<7X^T3XMt1#W<x%7#FK7esKO<M(urW9#wjxQ=!KSRyp*PlfIc
z3>H9k6<DIxB<hHn2S;VQO;1lhU2TX6-7rKkqD*(%h4wrl>sr9Ye7@6Cm^yh~na%Q?
zj^58*FyEd^N!V2s>!}q}23Q@b96Tw@AJ(q?WWGNGT0x7Tk1UIS{A04a8UF|^6Qy2|
zh)shqM8`~Wzsg8UU2dmP7RE?Ad@4)p;G5k5sY67FQRPjZs(@p3iOA@y-BHr?)krW-
zN=d5an5*2VsHIYTNjjSZvHV!*4NPl`E8Q+d_Nve_7W^jDo{x7_t1>7LL6F<r>>izD
z51CmOsVnR$WWL>9?wdVmQUrGHTnI&LH(!b<rv#NNiXcCAuN%#&;wgN-c*4<o2tes7
z`_uz79&i~+d!W+h1}9avAa5fNC$Dg$qhJeV;$Q)(m-|8(mp|z8qU<=dgD7f~>Up;n
z?t&;3jB1F+WOW`m9pKC@04wEn_q*M7HPP@`8M)dO|L4mm{?px7W(_mQywEAIV9U9e
zx;1DNOh=xX=+qPbVedOHau-US7EH7YkB3$=a?BHG=1UnDxwa_K9E}FQU8Jxxq6m{4
z1+dRq;T|HAXUhs(jn2M?&j{4dp69#kP?Tsd7PrJ-MGYQ78Z?MqE^$9aar{XfKPg?7
z5;*T<S1pd1PJXe&#U$4|#m(K_`eJjy4l+$5-caR}H@Gheyz-H$vU_{O+2AuIyv}!b
z6VYO-(**LyM`DPDyz|@_+u2L}3^dJplOJK)ZEk-8n)Fsl!~i=uSEl;h8{IyK+OHrV
zI%IwrG=M2mmvAVG6VJnHP?7N7KvfzVV_tTR`<r6pq}y7&n9bI;m7gr9R;x`>OqU|D
zuyw1;@xpO#hyCn%K{C>xNL_@ab0hVGxQ^Wscis)|CjwFYtX|ld#?Gh$MS3U2HQaS>
zudiSyM6-bmm`5gxk8bp`%Sx>pM8?2GVLvW+{SjA;7eyg`n~xm$&pqx=L=UCGj@F-M
zRrKC@_qasVS;Telwkm_Qu0>PO(LCxw*BT)pApDe5L}v@jVXkdubZO9jkGlV8vqZ5%
zK9hn5WQ$!K`KWvSC{|2Y<*3AyYzm`V+@{2+Etl|%AKVQnns(_p;i|cH&6uV^aPM-r
z`z8O+H9b1G(Jeiv-S0L&&z>mbSj|meNUyuGgHyk7ul?KFO1oN97av)f{!_nkWj9(w
zi8x3r@Rk-`3&mnpJ?WlY`sWwHFQMdf?*g>C;yd^I4c1gnVVTxW3VhL`_{8DgxX#m=
zIuhE<K&q3S|D}84si7;fSdGrMnx=-f<`yDhxiR{={n&8Tm=S84MsX0~4QR=WW#<JC
z9v!}zIpR2mQ3#`~@0P1UaPQ!w_x))@MlRwN(pr?JAjn7gj4|S!!3Hk;edNgF=((ti
z(kN)Cja@--=GXqGjFHu2m176sfl?g^FHl{%!GWi^H+qKKR~B}W>?4(!`c1jP2A}xH
z>*z><sAe*%8(W*WFjTII%wYcq{gX3B9tTiv9JfiRKO#3{38Tbc_m2;>ujA36kbF1z
z=E^U8%T^2*w`((1K%=p8^Kw=Y4hs|CjnG6$X{&4D0*sc9-ib^K!+-dZix?uH1JW9p
zAb8cx;MKhF(?e|bgoFXFq^F)695f<4dRH4Uo?%MVBTT4!7M%5x5B6oSiJ*)^C&?yK
zj3yI7Ar8~YGh~@!LB9NwpZTNhLX~d+!lMB4FFz5>%M5;66dthSh!vSAk+O;~9zmDq
z<j2U~I^ekQ@oiIY^=@l^Zj7m2d_uT+E^i@BR<Z^=UKJkk+wc`E>x`A?a><YRa8^z%
zKQCDSjPQ*$v_KkiT()*<u3-IR<cC~yV%U{K|7-z~Dn^A}hAoyW>Nw-9@QZJw_x>cQ
z%q%s1y(nB&Fygp8pa&>&miHpnCo?$tWB=W|BNj5KV#H-@byE=3ZsW4v$k0!-@mJS1
z#b!gCQ0$DS<G1wNLBDfL4f%h;li$ThZEQajCbg?CuZhP#%~-*OizQ?Tw#X|JW1y?b
z!@Lt17Wy;ApU`?lvoY@CeW)fJaJn_<8hBdBgv^g&E&s4jST`|hnAekR0zsT4C`lqK
zcWQ3Cd$`-7)>hToo$Tl#eQj*4ASYN^7+zXzzfb7tgi%w@oXZMgq#3r43vZufEv5M0
zs}Zg8C9+$2!RT?}l?}r$%ghXBH_nrz9Ja!1<h<@v>p$OT*kyR>3&|lxenDs1K}VOb
zEE+ZdplKN)NXUYK2=q7lIXCgL;rh7>)Ri#{5-D&tz3z57-+qVm<*s2&W1*i7Uvb|?
z&jXw@{1ZQC>E|mhwa3dEi3jio)rDh4b&av|#@2-_&e*KrgE!qN|FUO_AXt*n7zCkB
zI;KEjFz+Rof2XyQn^D)%q;51w<xL;-vb*>!Ynu#PWv@vCo2#a*VA*TwrU~%D-nVcV
z1zpc;3e9kdVlF<!aKm?u%Q5)iK)2gR!|p}<s%rX>^yc8Z&0;TH5Wg3!)Fc38)m&cm
z(25cJcEm3y6$$hZVI}AxFF*M1#_*x?VSRr^Y6i1!3IRFw{Z$Ng=uKhHcz)F-ffQa7
zfsle9+*2Js^~|u#8TgbAVx-tQiQv4Y;YLG;U(V;NFtjAAskx|py2s{+xikAbER`zt
zFsR?6Bt;2Y885DK_)pOIP<WQ3n^e~Zx=(kV{#<5WLAr<ZbNIIY976gzsW0hwVKlgS
zI$1#U3rI{zsiS6um)^|C{-=%ede6-8n%mb|4|0bCcYQdZ)P4oOg*gWu<I@XvxFH-I
z{cH=(@yf{#ZagDAv}oA!0@Y%H!J$i=3oijyAeeYa#y!(VsjVyt2DA+!*3{LGOD!Ql
zz%@r@EbTX1ttzH4C)v@Y7HSd(w++eIWIcOty5b#ex?>zwFfX|5)QtN_k6O;sPHw}6
zg3N-7Xhk$|f^IAeU;D<Z6-B1INr~}MBQcC%Ry;iN9=|-FyI)`$oOCtQFK^}tPY(;X
zJ10YLQt_t6UJJU$hj)(&^&3c-x{e04*7`>1l8*ti4aQ9hD_*nyrgf91DF{xk2JyTL
z=g!Jl4jiDOu3q=h<3L112sV5o{A|#uisI~`RAn?;gW@8JCziB((%uFzwNhPZTGP<g
zKr$su_re9P<CWnA>QG|j7loCg@?zWN1T_cw6;BUS6XjNM&;ZAx)KYdZ^AO+u$*|=)
z%IE}pzJSyeu#CCER=@g-a^ih|Cugt#B)a`xF&QZb$LJt6t2vlh31#2W<gdMW=yEP1
zpF&n&CnX8m1fCHakN5aJM#Y!IZKuqEp|FBkBrif6-S7LE{o^;~X9Y9Cq&HVDfc1^Z
z<T(Gk#Gke0h?`h<AYUE)K6dOFYLx_St^U*-`Mu8z*<;4C5F?8GCj<W407@q)F7{46
z^?76L7!VY}b|wChf$KKp(2y4#RN@=@uiL;IY{p~7{<y!qku^pnzH^a(f6Ece0p!oB
zYf`#2S29}dM1&Zb&ijPnS9gXFL$Z}^wOmME1L%SvV6gI3ci-p3A1;+;*xB0Hq-3JZ
z;G{+FoBM`84A-whdUm$9#b(5&wk>RJj8X3at%lqvmh`eE?&ha>mzp<iIBDjg_Ggh^
zea-3a*Vl(XTqzU-bxZKEW2uoXl@$~n;l6xy_`?&Fcs<Y3F0--<3WDuVb>lu9{xBK^
zoT+slemmeGSwW)9ZFu%@VNi+?0a!@2$^XI^<TGq-jBnm<NRf29t&k#xAWSmR5E8+G
zZ^u9WjCK)J^>-vNa4AM2*zAk=WJjh#7Mc5Uku5~djwN+HIP9hP@6&i(D2@)&{SD|s
zss=?GNW><Bj<t6G$n3ASvqAz2Qt=s{p0qlCz`4D{Kr2^<b~Bm0++xkJuYDvwS~;s|
zDP)Ed`Q`LzoJw_*`<h4P%K-_T8?1dMe$;dJENU3PV?n7FO8M{cY5D?dhwIsLd{|_a
zWZGb5eDKN93ti0$V<=I~g0Nq{8?XJ^usaw=<C@{9<bGHH`-G$818c0MgewPQlPz7G
zGr-z3l*TWaWle=t{%x*q{t7o^J{rllhsJLvkA&$=Zv3t-2A8RABt4xI3RPY4k9bzn
z2EnH)+wgekOEes|Dt-`C=Plx?y5NsgWD>THv(gE)Pi`Zv9_yWn^c&(X`-)vr#umY3
zOW7UIQehD1N(dbJ%*d6qwpaNC*?Bf((!lBY?2`Dy<wMn=<t-*c2lcRDsxA?9?-`$_
zEwy3*rQ9-Emn8e0+w{;t|G9VkmE~6Dp?nl-`2V*)#YA;rT<no3j{ch3;<we=$9ju6
zka8Skm&7-n%xAKLX^oUptDdWvhhP)CzA<w9dyHO+lZML?eo2r9c4u25qf~U3NwRNA
z(Zu9Y4P9I>Lu4T@`0n%gCjYTV3R~(rc|s3V07X|8dI7HS;Gj3-FFt6qD@1=`KiFc)
z8IrMM@fV+FHC4T{BSzw<3V6y3%7V@7ia*Or!+y1rP!lc-%X}uq`Pbv($9>5B6rcR6
zhF3tu!Jy_2caz8#G7Uv_UGeJSdo0Kd&N(_Byki^um&2JI)HKGo<#6&r6hrDwsb~Rs
zGZyiouK2HWZ4ryP003)&jbw*UE{U(5WLeh$BuO8t@8Vbp<AjX9JpRImLnz)AlvNYP
zo8KLqq1;OphZtiT8}pww4bO+E5ihN!L=BhuX*bDYi=o);y|q8Ffo3cLYJ=f$N;ctz
z&x++?CT{9WcORiQXE!#;Uz42~L*VQ%#CIG!JRg=njoPe~lF7@<iy@$<|KVQwm7X&3
zu}FD>G_Ax;QOs{y!|#OpRGy)R?(<`;=FWrsqOsO}84hE}5;UL&UtYZs(~Ej?vUc7b
z=(p_P<-A~e170PS$>Dl~7<_X1wtkC`Y~ZXD`YG5d>lv~8{<i)X4IB%it*Jv{Aw2Lg
zN}Bw*qenH?WXl^n(c&pQA@>2}0fcwy*8aj>cncRwqkV{@6@!CcH^Q&f_)#wv*JT2z
z0<lD9u;&Q>?yWR{nFQ3<Z0~>-iXj^+e{(mzOB1RQrO=aIbJz|hgwnoGe_xlRg`%j0
zoQ>;bYoe!T`-}(pT?pK!q;mEbriR7|x@l{FLjDLX`6QX2(XjCr#5hwMeCsawlot!w
zeH4|}y4dWx2Gk$T4B@3295~#6a-lskqr0Q6sXI1(Ufn|S_SqjIk0S>9XKt`B7h%QH
zIYw-4EcJI2h&ZheGnu)i|L-W)M<eX$q?6brt_JIBMH6G?voWg*g6xg`%T>09xXc#f
z?V$FdMsVnMzEQK*rPZouRMmt(Kzo^+CDM6xl;7p^;ap7!+78ObOv=lRaZt}0?mMpG
zHB^-j(i!j-u#7l2GK1=k{70QegyqT%RbP1p*|F^0;N_p)f&Fdsbs7-X`1oSPmA@G5
zEB-}aD(%$P$%R=W-TXvBET<rNV?+P!ro5x=l0bt^Qv+XjS5V4`N$^b$ebxH@6`iD<
zAX+~_N!oy&2KYJK@G_w<;j$n_Di)5lvA8@x;39jYlpLML7%qTz`z~;HEz2_-`<*sn
zU#SC6WZ&YK3C<X%;ClZ18*Sp#<kkRT8_UTJe(LWxIMXJric*cSvNo_QnmGdj^@(!}
zSAZy?0%w!q>0+1#OLp)-Uc%4W5rI%fsyl|#!R)cxVls8|{Ca#0RaokaRt3UmFD7r`
z@7jZjf&1%(p~R}HwI0kZKZb@lJ;!HhZ$M`<avUDefl*E+@Z1{4)fhdQ9UPM5Gp^=I
zZ9dt6u@XTxa<WBx8JT`lofBABH?A`=A8`#N(x$`xBZtz0a3rIzvxx(guvs4WyF2zN
z7J)!zT}w25&Kv@6?RW0(*LedzBPF7pTOuM#uB+ifXeN~{rZ#9}KQEI>QPrI|VAn!%
zjRNXZQLk&HKX@Q5efU>_Ht7%VYv!y&oC*96Xm&$=KF6O!siY=m-%Etq!C^nU%eJO3
z6o1?JN#Yy^p^jnDk00Xy`Gw6bIt}Dkpk)=nbTfk^Hut&j*ev)p)hUateL8Lnf7eht
zMLk6)VnN`?jPK6DehvJXZJ$P6&?Zc42p&HD{z(7SRs1f)P$_zt|Lv$A>|PFz=$-v0
z5fh(b7xOjM#mdn5)6~Qwoc^2p{%7kJvaUm|6+eOT(eno*eY2>O*>OFjjz5NoSm@fV
z{hDuRkQxFLkFlu>=c605sX5}9n{4mzuU%&;^Oypu*hBr%8Y-!ie2ZhQ9*y}vJjlQP
zB`p|Ah$pMamO2bu{LNo;1}(YLlVdZ$KsVPd>}ZPERRSl*);=L2fPvTD(bV0^0*J3o
zLX;6gC7Fd?M+)t=zCYwuBYss|!+;m@Lru$9yT#eYa*HU~Vn+-{vCGeHv$fH1<~Qmv
zfc=SKz7OBf5B)p8qX0_6Lg#f&b+kgV$k>b5^G`lTE5#yE(D4JYmZ`zu<YX*aJO^FO
zbpD3B?YYTyb4aXV#VMbn1-f>ae?$vJ0v)iZ=$xr09Pf(5a`;(7iTOS(l*7%NzYp{C
zuH(&YlZ8mad^j!!-LC%D+w4=euC}`%G4#ekL;aRF(FCBYjXT-}87)9`Wd)~h<4@mw
zg!n``-qso@O>4#M%YJop3s`Ef*KA)>{4bAXL21eJoh#@HD+lOlEp@cI=Eo|UyK&-h
z{yF8ahD+bz0Z>=q+Ujh|5~0X<<Qf)|(UOVJ+{{=uUSa2-J%C?xVHorN6yNw#J{#ya
z*C60$^FbSli)Gre-q?R0=XVv4qF`X8-M~zD?(dJuvgZlK)#`U-0s7LzYu&S3@jIJE
znQjGlvc##r9PD@2s!+nIsSQua{Pd<B75B||(SQMihytce+#a<*h9B*g{{HAy#;SDA
zxqTBLTx!t3fnr$0cYN)ps8_OEc%nOoOH}Kfjf~3@yFb31kq}Vn2Ck5*^M}4KVTAfq
zw!RG?ry#~Go0J_R96M)Af7f<4{1VU+)R#$V0+A5BVX*&MLJ$MLLzYMb?<III5sdJ@
zU}xSV&!KTnjYLr{G7Q%`hkYCj34UALq(}h<b__av`6qYeS=Lh|945i=89ACGhv)rG
z{6{%92xKj?NTmy7<qfEXWHFdRuvb67iC9QMz@4hJYdu*KRPxtj{)@9|p&pymMfOFi
zMSigOcQ<$OIs`5@oF&3v^>3aZE8iGsOnS=YI6+(|2fjnR1Mp{8O?5kQCYC5aH#lNL
z|Ht+t`W}@`cHX$q0aAnrn8+!s<7bPV85}vtw{Bp}pt6lh%4(6!g<4|2x;HmwrYJ>q
z&5>%$_t07iy%-Ilvo=Uwf{u{v`N5Zi{Iz%Rk-wakoZhp72dQqJeVp6<L<YC)?k7B9
zZy=sKO?`ul5jcxRD9?OmaM!N>!B^~|NZ_ErG^2nSyU)!J{=2*XDLT{SIk6X#2<$uy
zjuUbRf9BxSX4TcsX`5$k9s>%>HsVCH#6F6Y@2rB{7@ngSw)Wjmo9ru7eIa~w`P7HZ
z4K`ilvb7wX63#&_Mr~@pZ|LW{wcnYnQ?d#72z-ly=LB^bKBt8Su8B^9Cc?KX*$Q<}
zU)JYWbOQAHJGSyOmh&sgW=QVT>4!S-X-@C&i^lU|CAKy9YPi~P#L_pL_??`M3hvpU
zkDEP^7hF5q&y6&bsogaVkPhS~l@x7Y{~i2>QmcVpNFb#d{h$r~2gmU<T&Am5T!4{F
z;oozxA0e$1zSM;R34fOgIYkMzY-STmq{tZGf9@v!fPEuUs_tl$EJC%(L+iuE((skL
zZw;OQKZYF4^l9hE97(GJ<p>Q_9Md>t4&`MBj}7)_2FR11ti=j6@}*yx{nnfN<i~b|
zp`aEDvNa=pVpZJKL*X6JFfqjCZ6CYxYi&oTz%z(NM(1?G@9vuonU}IdImuvT#oCO*
zyS}oa0*pkR=0r#k;aR(DnExYE^{ZOAZ4eGBMv|KyY!~{bmw5%3P#@|wZm`K%KMWx(
zvS~{(NE3<F6O8-!#a*GnZiymsW7gutt^5s_^D{bkSMB`9l%6Erh9y2Z-ya|*7a1G!
z3M>S?i9V`u4I}L2_7SWN+RNISvDZy|VVR!a-f#E)@ZGWK2~sFlr)UFSf&5_G9>47z
zTHsdQZG=mJ%aAQc!1R%U;o^Zb7>Eead`A;S>T0?DC_CJGGkc-5t3^Sq;N5M*eI6V3
zKb^yNqRtECN9=?=!LtxIgruLC?aNLWuBuq$8!ZT|tHTHxUFv__cKC8U#iXC=A{&YT
z;UCTmu3G9#_8GmLex_sKk3rUOD#t1YNl)8-z4LOI>lD1-#276@`1TL{@t5qd9A6JN
zRw=BcCa%S1NN?8piG^d-gmb*9fs$-p+)YfYlB0skWBnbQTWe7p39!}rT^{PMck<l{
z`@M=FAS5XN*#uSpv<LEo<9GEXIb)VX3sJzJZH_*v!juGG-|#LzT5Vjn&`kAZbH;;L
zLbvJnuwPMWZD?2Imd|OlXacSr96@F8`VU4};}lh?Ljh*qz?aaaXFlT3{(O}B{OfzU
z>G$@*7fU=3M_X{~3E|!gM()E{%DV8#G!xvOa8mfUStIvh-`_!h?@~%skatkH(<%H0
zSmY<X7A@7h`tCvD{jum(4oMKadQv!`*#4hdjnaxz8tl6`{CRTpNF$MrAo%L|aA6@o
zAUQb8^XqtR<79ZwStIu$8a4&M2fq<8433!_K64PyQ4w=xJMZnbIK1HRQAfxX;Iew?
zj1$9m%Iu+O)h*H3-QUCN4(qI{3v?3YCRx)Uc(E?bnr*Ka0*%$kCZ7<FF0o%Ia6}=S
zU=kx6A3XxrRFB-eI9$P4Ia_6I%C!lCWB(q`+}nPkqzUMPmX(a6?C3CSUt6vj)eU@W
zM0I%f$#j&9K%J8s>EgLzxR_@+e7M#$q5R6Q`P7jW<1ow{DJowbR8{ezFQ@q@P99n@
zldxY~t8zDj32=_>*AL%)bV$WC5D@aQtC~G5tg;a1dGuPp^-V)6#!*1Ifr=H>&Y9a8
zOejbFzVAT)uR%jAisfSFofxlnwakfCRL`S=<+Q0Fb9eNo+&QFTGAc(~ThoHJw%TAS
z&i)_9d3<ygrTCSx?>d4?9xc4a@3+y=iWv|IQ5DQE(%*x!S?F(@g+Kg4AA~P>A8=Ms
zRhAbVb%`&?7^=CAC)Qwbp(#vm%^`m4Ylc=#&IBe}SKS$#*`3rIGpq7~%wv7`=%E$+
zV{~)8gW~b1!lzC1^S>CPkIp24lB$IzC3(RngTlMkXMyCnLv^NzIFwgWo(S&!$zT2U
zkcx=}vE<IvM=Q!O`L1pDUmY;CVwUPr*Wjbp4TnKhA%cFvZ2!(3Ln?|HJAg_dVy2YC
zX+FEg20sfX3q$E#(AbH8KB-#;8C5|LPWP*R98yuqZ6a;WxKPmzXOheJ^fLeNfkP|E
z5-MtBu&wo=3xXn;Xm_{&X~+L<2=W*DGsm#Zn0Q^Cj5Y?0y%w-a<v56>W07zCJ1a#E
z4i<_=Vt+XDg9=zKi~Doj_J_81)~|AEUa<6PzZsvOi2K44e?faOf9PZE#s0vNwsS>Y
z0A&z;t!x~Gv|0E_z=GopW|rj8)S_uKL#Qn_(+~WWm4v(3HKR<|*9ViQioY)LCtb}e
zl!I&Ns;%X<pu8L=aoPF))o+GWltAxjyhgMolX?F2i~VI~e43Bh=q(mkQJxnpTH_zn
zR>1?XlG&(fRrx{JlYWzlLn|f;Axbvvg4lFSqZo38%?#+zh;Tx~(2CiJfMhqfLg?%G
zQ_t{SYlnz(Z03+TTcRvnb}Ku$zseu;2{fd_x(oQ2jjp0RGx+v5zw}+s4fCgfPBVrl
zBD=VV4xg>}cO5;nVn5`e4a6>xFPf&a_LwhUHl$)EhnUJ*gaH6TataYud#(119^)7g
zy=ts)SfDKkswU?JOJ@2va@faQ>JGPbEMQy&BZ+og+~x-?<r|qAmUh0rLF-UliiO7h
zYG+Ce>Wy2CNB|1}oh*69pOS4vF}1E1mnEMlv&Tz3^aUTO!z8M0ThNNjN(X*YTSIG5
zRG1Y!H`y;3Hnf7QlPT4la}BPjg!v4=$+zspmpF6{Ao}JcVFSVB2{7VA&+(*$R}|yk
zZa2nIIgaRX%K~3}7+ZwN&Zrn~Q5Dagy`NuibLPUYZNSX!NSDlFA$REVH;eR$-jEyw
zN&w<6rJGyw!UI3&-0@j*hLXf+TcCR4N!?wZ+m;OLGOvr^Z4(L;7!fpGAl0+N6{X-%
zs4ofJzjI|XAw^OzW!Rj0PWbtLBUWIRj8FD-^pMe?4caF=m^Cy5?SBRKCRMbF&;z8G
z>*M&*;ePY&=h8Z8tDfI81!pPD2)C`Z-^-PLo9rfYmN!7n3>*_4aTMRq3|{LXKRiMW
z$>hrkMqV4PDFIOgO9L8aK4UCk&`Brl#jiwDC{lp+mz@(Mvi0Ln{{AkT!?cyS#>u9a
z4TH2DkT5(HH;WNjk2=m@80M|DXDJ6lT%p5;%7uNhuy0=!UO3MB#|kyju7P}jB1@-z
z=0_hp!iGD&ow}LGEjcW5vV-mm!o{OmDB#w$9dmF;6l9sJZ?jj!ZU4*6vB7YKH+4`x
z$L=ADaez+#Fg$P&pZe>%qa>x)ohDdu8ia>U$znu^sTIVus+v|NvA9*lAB=&PY=io6
z|CPg6Afa9}nghp(qMQh>JT5GH(q>%M!}3R4OqPRuvS%F~-Z#o7Tw2$Rub|!_N&rx0
zDW0`q7^|m48P!cl4=F;qG5%e2LYVWr^;o(RqyYy>*OsHm=La7hAASIw45F*(X>M)q
zu4#hOcne?4KZ?VpmDb%1KJ;-Dr;kdy^5b3B9q#uL{ecTd<7)1~c*hK4O4n>0zJD$a
zIDA&lB@Y!d0&hijF!ZQ!V!KVXs;RqK)!piYV0Bk`(u4M+JoPAU^(+k*3oCltqVPN@
zRx1jwW=?ms=eVxGwe?>d?xPW}yV^N2+ES~{y5r2854Avt)?ew_;h<f4M_LD;>Z}H7
zmkW*L1P?6^?_1253SdmlJp|$Mq0p>gv;D)J^X=zCPG1X40^#Ha?-hn004d`nm4D2V
zbVNrcJJ@l@@a%)^cRcGLh54Px3szMuB<`V8@h1ghUUI@y6sX#`FhmWA6eN9O`{Ci?
zEjIN>o9B1T>tUntt!4&q9v42J$LS#W_;G99#}v#pulMc8XRP<0?celTl_4S$3a5Y_
z<OlN)4j+v0Z+~LhvWOW`aIrYtTP=TqhC*KvG*rv6Zg-e`sqP@Babidvh9?w(!EcHd
zhl5wMm8v{l3l1otB62K|8!S3L<L2{i(CBs=G~2=XyS+7I(gU2oL|_#Dag)NFcovxE
zw5`LpKW8QJTC*^q5<z_H_w$E^hxV-dyZPl(zoRNV+T7BhtawT_$|F#=UASZ!FKEkC
z@K<8>>gwGs!op{)D~@Y)@<@q~A@DEQH>~~8S}J;ygtpLzsi-1c;BI;8mKlwzwgT76
z#b3yGUM>#Li{2?kpX?OWn9evP|0oK7`N2qNnqJ{B0J9QNY*-eqIo^n3Tx(Mgj?sF^
zl*3pMJb6YqYb%y3;xVZ<Osg2)w{052Ip6RWN2`k{A3Rn8FV^_53l0B>@SV}vqy(3S
zZrv0?IbuBMS;4^TBA)hFO3Un}G%TQbE1N+($~z3@WCgEG4NLdsTlvAGK;WpO3#yp%
zBl7+4*)P0F<Vn<{O<>bpY;H`g-^PW@b--1?j5}boa&nC$uRvzqe!aa=h04_|dB&<{
zLLS+{&U=Nm3s`S_vmYa|Snwb(%iP)5mxZ;5M2DQnD#u_BzCc;y>}^4?-tpmfMYc|4
z0D<oXdW0<lU$rCs{QlwNk{D<-98wxOz$#O44sTax@YOCE10^F_#vbK@Mf?+oA)MvO
z4Z{omZ9^Sj-JDu|DpiOdTs<>9>qO><hoUpNvbDYy>@79N#X)Xb9G<wP4fQctq=_eR
zws=XAPuHCs4rZWi+IWn<_K5Kmn81AWtnju==}~^mZuDo}A}0T5?!UsjzGV=c%}6#9
zC`+VeBg-x}Z5T$PKlpv-6^AF6(+!TNb(knU^<koY#1f||4dm4l$(v0re-+G>mvu*<
zad;L3Rx-a~s%b#<=c-|8DGl;cv?VDkWXzS_fXQ7PUbB-ez~pY$1-(EZ5~3?)lrIRs
z&bFqi|Jla8^fp3f6@-zi#~5)yg;~UY5E_g6g^wJ@N}$g4BqJ%4XD6$9%aB+{N)6Fj
zoRjR5U!U{H4f0ooHUrY>un_Azpi%rCn!>2b;cLSD=Htbo_W#Nn#fFi@SQ+buKQvm)
zI#QLdF^v8jMqi^t;Xzp|uCCKtjiupdQ&@UMt<ncsQ9LxRQPtsuH*JJ}@_p8q3w|TM
z52FN}D?oOl0QyP<@4lE(_779tsye$=c$*v>ktA420wku=^`y9%TJp%^-!+5qqgqPA
z;Q}jUX|lO9IXoY6233tC>Ai^~BQGz+wC@AqlkZzY(LBP0tco>c23Ou24u6TE5@lGK
zY^g=w;NfEm7o8A(Hu3-EMOnSP2+f?Z4!SGyk%i0_<hqb0fqTOSI_l=mTM1Mf&!CO?
zoNYrQI)7#Di9W0ySqLa2iH3?g!H$(~6OR7U-l*sSB4X%vYNc!OTXqgF`PGI!O<9Z@
zwgpZ4A8V{Zlnp!SFv<X&ronBrHvDcF#E7eTB}ux`(Wg$Ibe$E4gqQCht-{9;6!gon
z%M}ivObHEn3a|y!&~X<cMi{{kIpL#>fDM2p^t2fFqJEF`t=ilS%@j&2<J#kDCPe82
zF|La?H9}+i)AG=S_<6~U@P1os^lFMoL7y-)&Rt$`%%S11uh(5P<X(R7q5%_bZkx+n
zJ+Np*B?CLBf4Ex86I@leQd5K29z^&~%fekgpha8^e-@`hESKU}IyjeAg&&vvKjh5E
z(&W63`h+7kkyf8L12e=DVr5(aATv!e5b_0^PjvOKM}(75knR&oh1o`zBPcL^_MPFs
zbaL{zB8ZXqQTMSB(&|3>DJ$`Pay^Wxqi-A$c4XMb>L@f3+8{GuytHIq_)$?b-=?1V
zoDymy>XeK=G#qp`i~1Lt$l9f~FX9v*!;+}J%iS6fRw5XFO?XN?Vr74FQ&={k$8<^t
ziabMZmD0vNRT88tyG_Mq!KZN@M@vV8jw)AGXuWr639rvgZHDMaIv}~$B9ni1g_rJZ
zi$J6mCI)rGCQuNH7l-HU!65qTlW4w)G+$Y#f$&{UpN4f*VlYc7mAG$LM!YE&#hBM&
zpvcZY87Nnl;WDKbl~xlE%0vHPw3x9?81{8@JL^maaCM1}-FMS7ZoHi_b55Fo-RLl&
zW5Z#7{=#RUWV^rt`Z%S!!rWM!6LZ4_)2xYbN`1#1Gn>dwklFgip5d>Pp{aE>KDb3n
z<6Bn;F^w;+gCJ;7Dtk!Z$(2fVzz=@g4qN6vb{m7{q)cBF&e+%ZF<Z(R(mA1+nQWY~
zSko|GD74R8nFbn2*&o=CGujRZiYl=r(~?E1c_qC2mFO+{>SNKMQ>82#)F8Mf%!fi4
z64GxLh2IwbmEwqxu@f-oktw<QCo!riH{FE4cv4TVRKo0KKWCPPyQ6Z@Gy$|eREm3D
zJM?0H_-2$rQ}yRDf!b2XMAX}ePlVIMamxw1s>61=;b&l6XztYc)6c&h5{_MDKd(bK
zsQYQU(F?uDkmH={A8uGg1im#$U@W5RoO)cw{QnriJk}AJ^Po#OoBcNpKSIa+D`B!*
z=?|>4B~qurUZm2ca!pjB@5%H8WGX7#^7L@*Q$}Ud_fi=!a)Q8zM(z-fJ;Xi+cC)^-
z!}5KEbmYB3-QmFL)>eYQG$t)msavpkxY^B};oUR;zZZ#|?A2{#%?ygrK1f4NqDAJJ
zrW9)rkDtnG>r5es^dg)bM~AoW_E$O(EmDhgQTW)Nwp2(#7zGd=X_r74Hw)k7Z1E*L
zi%Lj?xllz|O&2tWdz}?E^-(1us+20pJ7phpj3Z44ohmoDqA*-r@xQP1YM;E)R}nz*
zODO_OXPx9jh$>}aA~t8#nJ)}oN4g91{39gtZz^UJ_k-gv(d9{M*=}ig)IPQXGpY}d
zavZT1IaOCJ33tKk1O@3}Yi}tUl8}aw6HL4-W1CBOi6tQaQRFU^66AhGMR>?Lb`1KS
z5V$4&_1+T#uQGj$046KP9<g%w?;ciP%!~QKbos?P%q1dqjBU@2XUH}7KiUAR*PWa3
z$!kVtrQI^K#1-UFgQOqZF>F4PDQo<?_*b<$X#g4cTX?aI3e=b$UAx21f|eKY^;<9F
zrQx>aTJpMN4?s?YEpEn)ApH5CbheI^#+oWfOKEyDjX<`N^@fX#yIV%uch(s|cAo)E
zMqh+wRr3nxJTI8{b67UQbfWPq$!8F0adyc7h=B|u@e&ZQ6sE~&<w^|Tovh%sk>N62
zT@0YGxwVI$Oc}oRk8q?uo{#gFutMyyq#5wR$N?dsU(@f6^P<JcqX-BINa)$&rbBJV
zDI*_wK^W7>#TlP|Xk+U28bIrm<BGfn|7%c#1WX&$kUKJFWi!Y|9gzIswX$%pGCnVM
zRoC7gS+i6F6_ZO;hA&jnw$3p{y@Uy^T5LQS=8tk>dIRXnM6mXr@ZYjVp?A_SMTP>p
zK!%(CEHtOYX4%JVZvyE??D5$HGFDy3n&5CYqgHGY{t6jwGc#lJTWR_0r_pm#pJv2=
zdU~+10e+;i7Ge1_K*^h3o+}SmW^m^2VZo!RS@tqznDw7bzpQyBCE|447=%0n@Q5!b
zhmR$AE2UmbXcGyy@indvC$KZ?j!$ZIURsS_cYGW;3YCpZXH~8{^4#7Q**ASXorcax
zc{=~%CCX0kH@}z5(J-gmn1xvr;8})-kDyAk6VvP-fynfSkrJGm`MJ;RwzhJKdSLa^
zAH$#hc?<cKCC597&6Ej+Br=2gW5PYfcGuksGbPiKd7Z7u7ko24)&I@8E$Gd;l`ZiX
zKQ>$`<;RAKQLk&7lGt^oV8cN0A<LJA%`v$<?JtsW%M2#9hRX(UP;l1?T`wLY&og>)
zcCbrp*twaFpMV~X_!!xz0;P;!h6mnMwK{6X5!0>w!e1{}eSR=YCmrH7@!0*PA0{Ef
zfbq>JofFnds_&2fs?+ReyhF01s2nIcRq~a9_hL;{g(RNQMlo$V;^gjsMmV|F7)I~O
zwWUw{`*efDI<lGNPswJ~_X$)36m?2ygNVo-72Yt5)gY?^*N!|CqV??HrhkRcv-6w+
zEGx<+;m)GyObnz4j@vh`qy-;C7rqO{W>WG9xb=D&M^-cFKV4mBk!?9KJhs(-?xW3s
zQuy=WQ~@rpi%hG?R2)1bJZhYMWnEK|ZAuG=zgm&(ZK{dyV+Ew$QIIQg@1oi;5s@n!
z7%|N&e)T1?Y4GN)#0hL-3r2&Zi@f$?+*(rma9tU;7CkO2Sh8OT-c82Y1ch>%k$6T{
zxPkXMD16}sUJ<T^8hh%DoKBI>A-kpzQCgKYRVt-Q^9@sq`+gqRDF8h?c71ddwlSrn
z@D7>mCZ8b*mZYjU-2V<<z<z_;wT)D^)i#FPWYiVI<uNoc7&>t-(3FLHBN3eSOq!zm
zD&?@4taMO-6Ifo|-j4SU&<SZk0x@pdnz5t{de1~GnTS)W10z^^S#%E8NvcO=<@P4k
zuhU||mvp*4?7xS=y}lszvnJ!fllg+-!s<JElx5F}$O#TRG2B?L4MI)S1ds-4&Js~y
zCR!hS_~G!2fg==r9#`Gb8JpTwi%~^*kl~G3;x|2QXhj)5O!Bf(`xJtlvVUf7P*CqD
z>`O@80?JKu$&#xL%E!UqPC3Sp95=LLJdVif1%^(Tf_q~^fnQWa#1au$S6$m36iq|I
zmOt!YO&S`aq^_>LrVA9sbZBIBndffBig8)dcuL!<I~xct7fmh*cH7fGauo4!1$Py0
z&JE^F_3IHir(#<XfM;Sv@(C1GkycjeXA+(VQ$cL8zM(BBq7dW@H~3SxwLmXcay00Y
zQY-nOm@(l|-F<Au6QZ=*GY|7!M=}&ZX{u|sfM7dFkGx>BgAEX{AHoToBoMr0BM6To
z=2VdMC+q<Bfun>FT#)SSu8qyaR;4He(fX&F{q>&?shGlOt7|)=xbV#JiQwuh{oy6{
z9oUK1nXeQCo6h!govks6kg&M&afx915f-y2fJ`m3ZpsjY(HMvQzurlH=VHTul-8jS
z8LpwYA`uKe(0_NPZATIKAUd8p0djwPqW@?zVP)J#RFjy~9h*WFc}_FAzNHhggA;D^
z6B9!#Dk*xS%EMJm_?M~vGxmfybS0q&i`-iz`rZBf!2TAAo(5o}ZVt$WI$MYLlRmcN
z&;s;~qGVTH1Ls|J(t^hd{BMhfp=<|L!bgJb?y$6e)d(UF>;!+=J^<0Eh27SWj9N&m
zMpJ6v$A7$pG-f<aN`XKn2EGQ~Hz3l2Gx;B-e%WuNGULcYgexLI0(fxlM1R+J_A9F$
zs{$<(y^xa?96QM;*3bkGV`EjFCCDerksJK+n|uCNYnY<qEBFH%Vuh`-lDcGUzpgq^
z&U%iJ*AKtAg?HI=Q%QE~j7=vwF&UfMSf|Co?z7I`{N453W&;3}gF|KkF$8>+RDu*v
z_WECFg2?L^P|8d-@uB@UKXd(eWu8ca#^xrg%m6Np<@#)A|ICd%uVn3LVW=~M$bBHs
zmtJq<pq34J-_b28IWYCoVZQnbYnjYFV5}IE&&|)n=`%3fzkG?cjK>h@Y$1y))s`FF
zo$XJ!*xE=nQ~Xw_MLv}mtQz3&IESqxYh|@;65BVfO(q=t(c!-IOdEA+4|O0q&Gh9S
z0@y+5{J&4M{-&xlF}QU=>$D_<GM#ynwM?fs+k)O#tbvoex;bh{FxSi=G03-U4tbFD
z0f?3%llO~r<(+f<fk*SRuJ$1^sS5_k<5%$iDj)wl!^#XwR=3KvLy?CIe{~ao<*U#o
zmEZJL`k@#gN9g<2?(Nk~FgJi5MUN*6s97j9Va85;05%pa6+g2>cVzmJ8TK>PpGA&i
zSbtS{1>g&g5+?&SpMvEX{*N*C)Kpy?Wz;d2kZ@iwtiu14$?$NjvS96VNs1)i2U{j1
zB|jMUw7a9k2G1th*i}!Pbkvou`F=*JdhuNMp)HRpV{lONbAml~j}8hP2HuctYbQg3
zJN1I$GyR+sm^XCM*1XUNtAIN*SkyP&6YJS1rh#$m)D++n*a*lJl2B^vtj*jeExM3`
zcq^V0GQfVBAB|lMlfqy`VkyLzBb+)Wl@WGpL?aYM#R$6O4|nuL`#n8?SYb=d2#_}^
zVIK_t*{v#LrC@DrA~%_IHc;Y*g{0sHC+^A;zw!z?Acwf6eJ+F4#${y!7(Vw+cZ>=d
zC}#yKk4|%z_`+uYb(=g$3+`8V5HC>S080tf=`E{RLkb%w+upBhUC>ykDp_1ak_diz
z-k<$}kvWLDM%7<}K`;bt{os}T1s2x`4P;`gPm}77JX7p*AwtG5fh#tIE>a05iYein
zZu;J>e8&h2LZPT33ucEWLA|uB;QT%O<uTqQxKqv9sjKZo$;`r*p{B#kjjds()dy*#
z);;ch>VXE$H~5!y>J{y4HMY(@A!vrTzU1QLctxSx=7ofAxn38e2?Jx<t8UNT7`k*5
zEuC0dN9RgDMkN;vcZhM%B73u}r?s&@+PMPWOaxmz;_l41SBp6KtfA4(zRi9wK1GMB
zbrN~IA}$WFaQPl|C2+a?28s*`>pN(LJL7U&b@UeS`Z)<^f6%l3#1HL9OeHR7&&r_!
zY%ux>Pqh|pP!$+)&ZxjdYRV2CdCDIPQ>SSrr__2Or{opC{ulP6W=9Dq?o(3}WOM&Z
zzUo_BD*RJTow0FAaAa@-s_ue-xnM(o$hOSFK18Bu1JG~Y<Ytz<VC{o`;9J%yY`sH4
zYbp}5lyjc&2mKg*3{{Q=(c?KPD7E8jMr-3*>{rU8W(DV7>|4&~VMwOuePat_3qYI)
z*NydOHAIVA*N{3W01#jcuO|J6a2u8{5_J$@l5K)VvGHee5t-x`8(fF)TOv@$s7kgR
zk`HVz^%)ThPu%aG*~PYVLLFi9=txt+T**!w&9a7R++HN@QQvf5xvp~iwTj9;si*VE
zF8<C{R4_{Ln#4%zFaRV)GATfs2zFcUN1ehuh~#FXrlNNZg&KVzs&L>^V0n9gqfTEU
zD2ZHLyi1T58TRuBE-}!)*V~eovL$5Ccm3rt5)nv4P2&E+%wrRR{!9F253{NilGDu?
zoGD6W6yQ|}u6)RMwcCiRs>!XPN;uB+9PMR!qy0?QhVFyW<DB*_R``9J?01R`kr|8O
zZQby^x?#bf8tU68J0npD&J9${OAorg9c--=lB-QeP_Y&K>s!9$UOm(rP%8vU)$iC7
zcfI6BxAD8_TQv<03SQvpFwXqJ3_p0W(aof~<l)9Ph&*C5+|uZO5o3_p!8A%0b<3sv
ztFoLQyqR}Ur;|PN@wZZYP^m26ox+b4hY~x+mB`L6+TK5ZdPKy!`UgD}$Qty=?&WYS
zw6j!FYXC2ofD0UQi(i#(<1gkOTR3Bo$fXi!Fm)^6yqEo6wz?e|0A&{_-+#TatR2=<
zUDq6*rLYmH4$F)EYm@EgA|UC;=*FUT6a+&K@Oy~AgIdJXxR4Xd@9aU_0e-tu`+Y*P
zC;dCm$7lPe$J_7Y5bG2aL=sp>G*E6!n*;oDZbuzx*#b14>|n`T4m_a*^|aN7Fx3PS
zRB;H7+{?#?TMG=OG1*EY9^PB7)Ck_#(f{nMrG)+Bssqi0CKxbi?aIM4k**9XncRvj
zkT_H*e$^j-FY7FSQ6myNlBT4qaL7qBY?GK(NwHRWLu$E!N~spGLEBoK5twMlukW8z
z7X>&2-mmZJZDJRzHt;(|P2-YCpNQ;~)=&`StaS_jZEsCP&5qa@E%^l25Uw}Sl8XwY
zU?%*62GrSo);f2Gy)w0nTOA=|)6EzKw)YQ#Z;W(UGLMK#qz4GkAGV&~Zn?cD6s>82
z(U-1R>oTN=qBwJtrFM4=(DXmw#Zz_bdj6q%?2+_f(r0@n+GGb|=l7K`vhMJr8ei#B
zUK-!nVDWnX$7p=y-Yh^UHBi06_}x^73YXyu&P4FYMt=SZK8Mc=UkKZWjV5q=!S;{{
z2ZUR2TQS9ud6A9@`BSLL`C~h6j09HDnb~s$D0=ztL%eU`Tu^EYT&+||_)Q`hd$_+-
z_6POo(Du<7IFUG)a|l^izUPK|YpOuY6qAfB6I{>i$E?@fRRgTGh%;hb66S`c6pVS>
z{c96znYlW-(DcGYKG-KESS|U3v1O^WGZRi~vNm?qV5Z68|Mx~lmg5vWX=p>qqy7uW
z^vi4gyOCs4qBv!C8*mViSCcBM#zW``O*i|lADAKVzMeUf40dv*NN>2G|9x*dR;heI
zL^J@sZPuY<xZtX96bq1LLW#T7Vq#F_2G4Bnv*9sD6Tn}kRcJkFD+ua0^T(WFZP<Y|
z4Kj5Uw8x^r7rCW>_DpM=sSFDlSCj%H5$?r7{ywopGGm*&*m!<c8K!Ic`DI7h&p^0g
z?fi;t={L~NJ)B>G6DL8HM|GCCTY!_g%|-s3Ep4T660$WY9Vj$tEZ6wEdU%BuR=G@I
zU+F!g(jVy7H=L%*I!vQ53ba$p8YnLnPDQZT#7<jF$7-xv3fLg}AGpNVqCCM&OR1*U
z8lz|sYI!r7L3RRd=9cUIfl{E%7H-AJMq@<x$T(j4r+RC`YLqqlQVFO%m-@%WsgxoC
z=g`v$iM$n;`SUXDcNWq*;nP{c^XK_<FcWyZs;kK!Rt?LoF87Bd>{l)=0+Yu4w9V9#
zgIWB1wVy8=(=ZAAirPyy;q6QOMG>a}4v|_#b_1T)e{=r?Haoik;CjxVJBX38{if;N
zoxNI8gctCG-M)Eb^O4TNmJ@|)g`?){mXzWFe((lH^HUos0Gs4z)s}j4E1!+!#nMO0
zr+8FsBKa9q5t4@sz*Syw;!xjjYkRlQIBINSORN}si!3?x1#W;#1SdV@F4^B6De94Z
zh}i%~z2z}?{$}>;Ot~jgmLQfLls5N4_qKFwi4qHI+Dq_(wf}KCWHd}&Z9waV^d{Qb
z<9>JGpy(TDh2nf|oKYHehuh_kxDU6XF%!2!cXYH=nkpw)?^Sm=76%QLB*TbJ$ZW!X
zQQf9~ueuLb+Vt6Se4teLW0=e;c>GsaEfqjsg0#t<7%SuPlns2U1!BVxY#2k03HlZ5
zC%TPcH)F8hbC``K()i~jnTWngY#ETrukQ0FqHoqUvR07=2Vo|H)ql935qo^J3R!8f
z$&R_JIX{xJC^LiKcl*~vTvS;?HRW_*Lzt6h+1`Fp<fJKAb@-IkTA(WkDCQ`u)o3WP
zkfnp;J77gO_kO2yt*x}DRn9L4$xVI4luqBp55VQXTU8Q4x_#An887BQ<xN@s0QqXD
zASU@GN&&VBHoTvoj!5VCA~UH|W@sjNZv`#Cxihz8@F@J44-B$pbyOgkgFzb74_}(D
zR0agDm5UG?NxBktFI&O7>-<0EP10U4NJvgB_lGAaa&O-%C0R4FEOLl{2T#1~zC7F-
z%<d3L!+*F8o^?B8eZO_TXocHBEAne5Tx928+?u%kN?9YeWX@_FNeQM3KyfQis9y_#
zSBCY8BpGU7R&e;%{)($?jfnb1>Ld5?qP^q~^pezOC~2Z&<We*9l8R*<`06M9%J;0j
zoXwSvf@;Xccfqiy{QjTQBWYb67cGz}tK5s4AFMvYXJUA&Q%)W`nd(s75ncL_x2<iw
z{4lBGB;zO%+_J)NBoo-|tkumj=5je@{$9Ty-WYx+14$Z);eT`UA>aG&_rJbtO%tFB
z#5((6WhhU+)1MiMKa%IQ5t<I@!iS=2hVT$5FC{Ly@>8XKh9U&mHw=2|w5I03cwoV-
z(IW^<Q{|M!K<t$z9XrkMFP%9T6O$aoBrZD~M8U6l{>$|t9V*hu*~gOg=#WyO5=MgJ
zcP-orK3quTy|ul$4l0%{ksB<0*dKV9HIa<Un!zwqEjYk8>|$ssujX8?)$KK*P|)CA
zyL9@CZsuM12HwkNDa}C9P_phlTzU4IRarH1NS8(A1w)4VO<rd@I3XfGw)r3us_K{X
zjGKO?HC4`)ttbsfk~kk@9;@kbx0+TY9t;?bLAt!|>NsMS2i7JFPX2_*3k8c$$c)_Z
z|M)uZ_$aIF|39v}>e@v`smXl?!4jQxVkZ!4fIujM?&^?)Fr-XOGJ(Y2cI_1v6&tPv
zMG&!JLsZs=6)dbS8pRb<6h%=K^!NUpI|E_&yT5-3uY2dY&wXw=^>faV`I4JyOr0~y
zbwPdhCR5oz+1>#goEa?z@Ztgxjpg47zaibjCik_ZS+m@m_>)&ieP^Ymlmx~{lwij;
zY9O69IP*ET$Lq{d`9(Mma97G#GRJ(fHcqo`84A%1qM)0zWnS$G17v>vNXKX5KH>=1
zvU_%T+5I+ggR7uadMQ@4i0+TF!ufx<?!mDsFd%Z-`rqmP8riWSQX=pG9u^1i0$)CI
z61W5x+Cuj=t6t@1j3c&g81<OfEr)qgNs>oAW!t3MBgm*u#@_vclKM-R!4E5AX^|2*
zrLH+C5@5r;Ije@4Y#STlgazd%b$8m0L42!BU0Z2;Y|_Fo6C<BaG?@T|M}<}vNw9t9
z#IQdaA3Lv}I^vz}Mx)BH8hJxPVpDWIk(0I>8c96MKvygXBNA){cdE1P!>EbPa6<3!
zkp-+EsS_}|lU&hOj>vJW5_=pH9xly5=(xr@6G`BI2$%g1597#iyolr$o?Nr#9J^ji
z!d1WfZzA_rwG13=6W0Oqu$!j>rNnY_<BdL0uQxdH#qhgb?Pe5XiKmiknklL_Q+xOD
zWywBV8|ei#8&N6|#~}sijwU7eePbQOg)o=r>uR^&ZfBz0GyL>+%dVQg^}r}oWNN3?
z0q;s}7^(PW*iD(Z8Pbl>5#9nn9DS|9jN-Yfe!~h?{LS74=B7==z^gj&Lnz72Bg19a
zSuX-J*L2%+sH&M>MuR8UZat9s1eD-8NKL<3x@v0jHVqi4IRcb|5Kq6{TAwXtwGmX4
zxXvZ0_GQ~nzE~N5v^#^bA#f$PQGF6ZJ{i`mv>h53Q@kOWGU4fmJQ9BWIjwS>k+F)A
zRLM5D>&)<>^BD;Oh2fQ&vc9hX5*75kHv9ow6Nh7b3~GTE$3S_(sL|mwQyGa8VpKd=
zUCAhw5s2(LDO?Ooq<u6Sxz)~qXp?zzcp=6tJ+ZO24GQhe3>a@gjH|h%wu!S;qju!V
z5vPXNm03F$$VrpXLOMROa421P1h{WfL@?Q6$=tm-+`p%_kEeh~%4ATa?7#$*e~jMA
z6T>#+^z+tSvg{Pe<D_Fr&mhhMAx#o<Fis$^gvW<x1b#SAQ0zKUfrb^wo^Ntq+VSO+
zXOoVA554TzuoCtGMI243Bh8xTZ28InQfQG&WzdBFh<4G3>t|ixaQp@K2sRrT`w^+U
zi3USY-(XtQXM#|2VWkmIEh{#EG~?`WrGFbFe<ShB66;lWt{@2dgjZ<^kqSsBE;~sf
zBx}Rd;WIh|$~?&wQrDV0Rj5PL-fmqacTFu553w8E>(D=>fLDZdf8$xe35&xwBr8BV
zW#5%H1LqG8x-+cn!MkOttHlZkKg$btxxwsMG-86t*s5Of^UrPxTak)23RQEIGAQ-P
zq8Uc(U^@dLu(kv6M$EwHz3y(jk4pzXng+(+b0ktYA=Nzdf*Z5M?jzz0EQ$Oi<{yOh
zW&P-yy&sVPFMst_z!hNrUM7}7ftVV|Oy#d2S2MT9^0FJdMSU=vgh?vI%Wwymtaeq>
zoIt4vQj|Jb6h+DnE~yV^OKy})3nLlaj;+NI+*j)4?n~WG>-<W`rVu`ngT6|dk!Ql}
zK1K%1CMOXea0TJ*hXiIpY?&m<5ji=~KM84b^TYkI+cRS%O!yL~W}0;3zEJ3b;GuSR
z`XJl;(J@SCDO*F<WOx($2Gm;iUab5Q7dZUIP-_UXyd0>;T>HWS;j#HVpO29Z3ss8x
zBUAwafplHe#rjOIu9i&$&c#QwA}<UNzy8(6<UGQHbjayp_IS6SX00@&+#D$eOer)J
z5qx>#cl>HFo2gvLk_)hk<fO?pSwU>~<&4Z0J3rwHTa$8%dBrh^m<gPRxDq%^kDFti
zKr1F$J}!HRd`2t1L4?>QNG^w!rG&i0N)DcH4~RDbHk4x=!JsH`hlLk<(msHzqDlYP
zBcu_ei?S&^l9DuDx`V+uEt{=SNXkzjV*2=Iw*$Tl_KcHMFVl*`s3j-%MbYWqH7xK7
zr(sx(L2ea1`3a;WuXA_{WSs#<cM$7}$VbHBox=yDAZYOV$`mDI6)7p-JG^6eJ6EF#
zC?={>1$H2eY}evQn*MFGACbz(wi4%)EM9EbNTU>KimLNbT4G*O`o@czr7bla5O(ve
zqrx2}bqndnQu@Y2j|v~%&l-o+)+x~*loW}1=X^W!{B{VmmoP7H=`|l5xRR8{h!a#M
zEK{T5k=R`#CfM__04Pw)@apkFxPf-<6TT}80VgTm*p@|MNCYdcjSdu215Wm9ZefwQ
zOo>|4btRXc9)?T&Hka7Rv>%&1kn*~dJQ*hy1xtAuxsWB6a&GSJllIs{=~Eiaf1ao^
z{EB>4YzpQz<L(giuWq&(l<3+TapECt-dYOpJ{%(z*Sjeobs5XurxmPRHrb_tD>PO^
zx{Nzep%N~G+f=SyF&0dNZAc8r2P_e=4KoOkn<QmVEGi-`ad6(?unaw%759vY{UJA%
zB%_1zP0>7%TcZ_Y->}K%6@>T6y)Q_S<X<JrOC1m(LE?~5k`zmm-jywfSnthlA^N;T
zN@Yc22?A;^z+#TB2%C}QnXJ)L@@G@kJ(xL3`5#S**a*ddfmy!obH;~fEua|^${J!Q
z6n!HRH^-)5Wq8^(_JqJ4{$^5P3lq#fBf~{c_=iAuh?7u_1}$vZsp0*1(Jt3Y%F~;T
zC$(=d_u=rPQPwdUJBHlA=z;2Z;vwIGldvk@V4jgYbe>@E(r{zU-oQw_fUia^1RO>(
zi>v*7C&s02`c1N~pX$R47qTGCe7ffnIfY<kf|^^xo!_ua>-V+=pSLYOWE|J__)p!Y
ziFTTC&cMY)+>3%6K6S+tXf;z1VJ20z)5zSz(hI`!r+veP^7C5#03AK}SRRHrl*m|U
z>Lds?rcF8*JU8_84gOpfUVN&Jhh{ycjw=A~;Z22NBPRXf(FT)|wpgR0aA|)3(%p8N
zJvCeq3fv;NvFHMBRk7ZkH@QO>2B|cO_Rqflr2|^2FA&Ir?Zfk}Kqq@1=<`~)e-+)r
z<)v7A@bt%S%{#0V_781$2dI&X9pZet;#<xY0q7{+w($6E5zfDA2&eb8-6a!qGIeiA
zw4WPnTIgX-Ig}b9vlF{+l^<}nJ$<e{P;9Ug>;f1DFf#TH-g_h*DLEOUBk#8f&|ICI
zApidG+)M35kjMi8&FmZ;cK{aL!aq0D1!l2<6-V(==%E+xRJ~h1Fr5s3u<ev-A7P~0
zdcJ5>k_WjL6jjBBm@iP-1bOTvs{jy_%w@nD;A#i>nG+){le?sKOyP*eWTv^kpFM*7
zmJ&Uco<Cnb1lig*(PQpBKia1I!mlp0j<IUjOOR56>u**jXDN~;wUb1~(IG(rBNIr!
zWOn5$o~bL(Bk&Qn0F>HF>}vG!h4sq*?<ok6#YcpnLtHoqW}opC9?u{q^iy7NyJuKe
z%FTq;9SCz15{fxY%DRWIA8q~R;tTddqgoht3sigf7Pg&%QCrNzmOi|KWE2G_t#G?(
z4G~5XAA6ny{0Aod_0aHKFNu^J6i$cJ>W3kS6R_SXy!9p{-Xl5fCfvaF(em-SreqGT
zkP;wB80Z^(+bvvwul=6Ul#M5?iXv9h_wg*hWH=h^$l%}vlZ^73>(>jOJRLI3P-<Ku
zl^aE+F_to<(UBc|c4+vIz5JJKtiv#D9#ohx8ow;!5YO$zEshpolalbXMf8zuttu{m
zGH4k*Mkfvm@4vvB5o)|=m!B5}JDeD{J!|bs0i8O$_5>=I0Duf6(-uqR4>pI+0He!i
z`n`pskQ5&vAJXF$uNinj77A=R&`yvJ+(yI$DY-IGkV-n`8lwwb5TD-jX}?e@aRS1L
zj3HN|9V*%VwsECoX<Ba^2Q(+OOGve7Jb;xR!Op-#W@kXlN(qh<dYMp(cb#*Ht0<m{
zgi;6%d~;ZM+#!4izDG(znFRt79$vQeS`UZeDv%5p;oopOg+iTRzcF8xL?;pyZ98BD
z)eQ@q4!1e*63=Ig06hpq+uQHsc%Uc#hQO9lv`^3t0Uxf)Kcr2;D)VNNl_FY6z(uNP
z@H0$><=ADBYsN!sQ#U*pM}DES$I3M<pJlv;xx)QSlJ<J`Lw^ZVSQ1INqy;z67Bu{l
zS*GH$R`_5h;aBA{^P<N`rVl5k5U`WL5dn6ZyvRbOME_!}IHJ+o6c!QV?E|CCY0vy7
zLLSX?m?tmfs59+L!2Nmya9@xaMZt-$IvK_|3<md1$;hy`;G)jqvSoG_iqWU+0{TnC
zS8Dlq1Y10n|56((AZl(f|Aa8U6KgIjG#T5BU_xRc+X<n=gx9D_w#fo4n_W>r<pWs@
zS+da^%{wCuMS<|F`A7=<9<(RU8GhXt^z6tzL#d+NG~tvdB`H@zPQ!eeOv!t$pOgHc
z4y^(a5Z^#wxsq3$Z=0nU=aj(+Uut0oUn&w$N^0X77~G?o;Ue#4El23^WCVe-P+5Xg
z?piQ3c+A`6?t^|}x=aB%LG~dctCCtCpCQ-87pL=fc(1%&O+up~I$&5V+&LVa!-P|2
zI6e_=!5>kCfx_T{UBinHwSH0SYQ>#<$s6^qFxdMWM`)ChT#RJWFqk+-g@3!w9+Nm+
zX96Qn%3TE65yCJ(=)Td-^umCbfnp5KPxU;Mwa*&20}ND?+K5_iLV^i&<W5e#50#x|
z)W-xs55Y-f{>$}~tRP!UL)tcgb-O_K<f`TN@q&))2|=y0gZ%H@1{}6LVQDmsjKRJ+
zBp+^c&%bD6k^4{@e(F8o#Z*S^T>x=BRRY&%YK+GThGgPd``s&J#Zdj!eMFyUorbS)
zbsTOEBPX@Zj<5vw{NRO4!cWDDg%t8>YSmsC)Ls{oox&eGE}|_ti8?t~^Zpe6ZK1t?
z1iU`hNW}%_!7AXH%@1DQ;sU%o5Uw#mDVYQ|F=R*z?PA#u?hZ@ws<Eu%Ct}#E0j;Aq
zaBwSMOiO3DM$G6UHFOAuC2l9z<K(y9@>5b<BJ;1TL8|wh9o+F`8fH2UPLYy;<&rB5
zy1eKfM2pc2l`t-)-bf#L(>*@PI?B8Z$WZJ^xWv7gU^Oh*1DGg21Yj8X%F0MS8Q&g5
zxi>Kur65ms@xPrxkFbxprUdxTrKAyF*>l6dn;u7ljuFejYgQDTbH0Hq`MsGvnO0j$
z!us*ja2F3XfNf8s9S@lLG#D8PP5Qz#k5ZSWv?iFXz1)x*d?L3Ow0Vx)p?Pn+iRk=#
z%VtiGfSR)KW7IwESetA~^ESPgKBR{ERpH(;zE~nT8UH>1(1Rp-s|??k^`97Z%y6l%
zRLAEPUed*q3fuGV$q&x044+3#;^!n$L3v~f7<u#_qU9!e@CckO#+TTk2cm(}cm56G
zi74yhc_>lMDM}>x2I(bk4x8m-z~h<%Z3<;q82tRMyJ@ODGfeDz8lln3b^x!0bQWHz
z>SY=bea*MB2>mY)KU!g}1PBnZWo})54@mI_@9iYnVQtz$g@+tIiHm)h@N^_!<W%@O
z2QnL6$&kRa6DGa6xy>JT<%1Ncm@7IYRjZIB&3xg9%iIO;T014nJ&DLla2Y8zD;pa|
zPv-i?tIle%k<AbvnV>g(l_I@!xZ*hEXI^e23{FhOhbFfjyx)8lA4reiYU$;~Q6_@#
zz4hPjI}A<Sa4I;6j@b4gEg>$k7RHEqDh3gk++GyyeN9*qW%r~3D+4DImU;kZTzHk2
z=(!#hQ|jaxM~F)SvX7IVi}_g&4oO(P1L-COlQw;=7XB>sR$3Jymk=UIC#lYmT8No0
zmbcq>nh{=DU_0x*I>drWcg659%)4~@2~{D4Jo4QEueg!@?Z@Rn02S@boWThp@y=-s
zPs0_>!Va&JZwU1SriX;FvMF2$rQ$Qa$YyiGqYB^KwJm(~Du!bPz`6VF7QQ@BuKWpJ
zbuL3I@MKvaeGbn%?sbnuEF<!p{S+u=2-*CluMjZC9{qip8(GA#C>|bJ%aa_gthZdr
zKx@Vo)~3_NSE<I+(f@Sc>#JmVGtp+N$qOJi62=)HIrD4^E)E+26fR6SMEIloy}=1s
z4~@Eg__Iym8*-MxsaS1dFgRNNql>^aNiZ>`RTxgzNq3pt)xk?GX*wqQ(uSypj*DcN
z(PBOtwtSd5n5%)m;sYRvRba_|@y9T4AL}BF0_+|XYTw}1PT>!@Ug*;@c>^_E7iohM
zdI#96^jvM?;{cP3%rtw3FO9PYij{r^V-NQ}JJ`HW_;p8i;8mFdnR^Bt7*-<eGE8Yz
z!h1Y;2DNzPfnmhY%g{t7WRL~`U3%%~?snf(GNmf52!QEBvIF8GrvjsK<^gY}v`p59
z3w=Tuu0_Q);f$LF_!#+2?&DzLA>O>Z)mbABK;%j^*t>t&&(og);Ee6Aa8hw&eb^Gd
z{F)ue0kX4tpBq}rvJ1S=P0=>Z#FI$D{tw=5o<Xk~sw+E4UK4f~BNI9BFf+AIzb3q*
z)>@I`Qv{yh!w+FTyJI}zS`e-YB*3I!g}mfS6S`02KqmC02(yfI9Wk+TiPe(?ZmV@f
zuB^h~-DA_1+;S=qAw{LdV=p_SOUcQ~u%?Aq>kyeM8oyfbeo1(ZH|A0dRs<zApOmKh
zy4P9KhF+xGZJHVUL5IYg22A~kuJ#VH*Q3c0BtQpF4@~?^_F>;pa1eSn3;5@mnhbqG
ztkwLOkc{!%oTf<th-C-i(veU&>A@ZH-AUXRAcUifV<hEO*MQiS)Q%d7Tj09Q>?z8h
zB+UByL}R7NQo@nsXdY(FR8R_6U!GS*Dnx_T=a{FK=f+^#kXBfPaqut2X(z~d4qFQJ
zuRbmoB8o7iJTaW*k{V=BAv~b`rC@5NNlW|$+?5;reY3l}vz=^Q$Ozr3I47`C`N8_Y
zc1PE=5jTy|B+^Uf1^fTQtwG?1fUv7^fC&;mp{IyKaJ^&xVqK%5R$?>~NCd9W4*vO6
zn5?&V`7j%#x3rAUc7qa>XOqh@8lXN{27FV5qR2{WP9Je11vnw{W#_5*5j*r1(mTf+
z>AkKB2QIna_@u*X!gYuPv=5H8@J0RstY}MG{oK&9B_&KsX=)x34njn)VZTdSu|Xt(
zBmq&(3%<WFjC^dYLz51u7K@w;-P=ciQ9_23I+o@G66ZDzGWwErO-#$geYG&i|Hjez
zjMa!dc9szckRA{S@<j{8XcP;eI3aT<A`PFmm=3c{V1$xWM@9>{2uDhuMue*|xN)X|
zT;OmDq)`}rG05aQj`c7ALQ4I};!<gApH_Y^pPfgrqW?g)f&H7Ti<i@a-BVkMFU4{V
zn{8YnOmgyZxeaVY;f}Mz`yR9v9)@HI$Ig=Z8m0{tsjr;+<cBjqFWKw`#KY@{E*_M;
zoyOAvzvWYeq$a`PvhXw3l6@Z>L-DI=q|&00U3gj-hF|<-J-GU}dY`ccatnZW$wR|a
zKogLTfJ&iYU`Hzo);$__|G+=C5qq-#J%F>#{`cdt85=qTm{v~k;XlGVQm8kex>=Jq
zPC-`H)N~Sf$=zSsNV*(4$?76Du!wA7X>eP)q9096*OC?lH$NVhOt(`$P$0>zyn>jF
zzQGCqcCwVR*MsndrLdw%Xpq?UXPn}Nbg8hV5vzqgguS;{N%`kf6~&O2mO;Jb3EQIZ
zAG(klz^gGgj^NG@htq(4(K-OUw^#)$&F6rwGxHwp)Hqcm+D`nn^bms+llVk0mTkRy
zX6o{(7rj*%PGKUW6hq!HGWGjBs>}peEKO5;Y$Vh<^q7W@&KzbjR%8a(Ku$K<xPt!I
zhwDTesb5tEU-g;*_{w~VB0^uXRK%;YCoCoQ6U1D&;ruObq||K1yKyo_MW7e*ev{O4
zvD<&BUF1QELRXy;d^*9G)#0K0(u|#Iqd^(iO7EG&37di6l;yOrU=F$z1*2QU6L9<T
zCWenp;cI2G#l&n(0{X}`9GDqy)=@*sSd9*cev1;d<4xgVS{#8|Vs#Rhgk`y|)#lWX
zm>URbieyNy$q%Mr&if+|pgx%G1#nChc@}KtKmN)?l7wR0+^QflA3Y+xc1Qb`fpWhf
zQ!#mpLZ&>^{c2G`<SHZsSTML}c+90N6?s@hC<I#5eED_nYpj{f9y(Rl4j!V1M{sNM
zn0vg~O9&p%Kd{2Zf3yu5FAp~62Gph5Z@UG!YMG?`DI5{$*Nld-ms_&sQ+N69_6gue
zP&U)DYgTj0b&s_GVQtqB-AgI+52ChFz`mG33WMA=PGLHX&Qg-0jD04`LL%hlU$|W}
z?F5Qyc)tr^er7b4Jp6LVz_m1$+HF{O1ay%8v-GBpj>GLVBn~K<6J<9sEgpIT-<l9E
zk==y2;s3@=@Sf4hNokKvRF`jW)CQW%W0beYZHN?-9ens|c)~^YB}1?S3ZgC;2QmG<
z!_EkgoPUEfcozjGG3-wpo)4#RV(HRtG72NTzA(7=>9E9;r7?0EP6AoP%?IBR#GVg3
zzr}8-8XWZ!SjqaVY2aoi$8;c&QCOcXgTlsh_zm_TAD=?>MLr&eo%RhM5qLp(W_HjR
z6exBMBG~u6rIV+8X3cg<`w|159UQdKy($#bc1O1;$UZAPUDkP1DXWQdhYk}Oj*NLx
zQ@HDG)<YHq-3=VB(Cp*Kh0E^PejL(-2X~$oZjdWz+whddE($Jf2|t92YK<jARAwMJ
zvDcmy;W6V$5RT-1@s|)}83HhA`I$q?TPmz<hf%q2nA_o77jM@b6*YaWHT>f2?V54(
z6b031hxM96dTNHgOw9mu5h*^}LK30r;tc|RQ|}oe9tQ+FFa#E!#qCT7Ukfa0fJg&N
zDq#w@4}G5^=)sLUgk>|?84~Ly*%`YZ6pLb@Q3p^6)_Ra=0CD=eLmww=;(p-`k6E8Z
zhuKp^S;0{L_Pbm0l=XPCC-+tt3&DaFMQ=+(QsS7iJy=!h3}w#`2|x5`71{qKSD}QV
zX)X!E4T|gJa~MikQXkJlbjOq#*3L;o;__%;z6p3Xkqo=yj@L6WoNMwN$Vv=N#XEIV
zgY{r}XiGf=f*l!(08&wE9ul0y$Czpkh~#_yA-rmlb&W8|H?3#*j{+|NM0coV1!-hu
zAtKqpDBix?UD4cC&HWR}+62^scux#E(crUMw_vjMSRscj$W`OotfpjRR?`|%5F?-|
zp6IZf-6wzUI<z1B5!nC_BQapa5l4er@4E*#b{)!H^^db_YnrkMz_MTuYJpQGh@b5~
z&K(=~&&wv9Rl61%nN^w0nv}rpQAh=-Xz<Y;?u*{t^p4`jL@RIRx=_ISHn*}zx1kt=
z{0rcZaq<mle)4#em4z&>eBlotx+zKCAW$`251b=)Cczg)gWA2rk~`>uOj69TZEefi
z%C+QkQz7VzPh8~PE}DIDRjZbTy104N8)w3YyLZR2EU+XhjUyyuxb3T1&iaQNcNPnb
zgMy2O4S-sT%(9m|?OdDXxL8vn*%}1b?-1^APS>5Fvi&9{Gs+P+i5LljEn|9SeHAW(
zc~arGLKl@(1Te4tHifhDG8aLe$`#IHm6`AuGLuF7MqZeZxd?feQd)^RrDTP?v2(Ak
z3U`@A$F`wl<%*_<+OE9-BA9wbhxRCJB=7%dhkzk^?6WDnfhqCgk+>R^uQ$r24*I?q
zW=+VfWyuFMChM3|#sHb$Gx|+}J_#m_F39|X6XK4Tx>_z;8I|heP^2gXzVkrW>Dg`-
zEK7M?Rdq`{^$w(ft-aRWdPNU4BQRIC`)YUj!Geq3wdYy$#HK{uqzzmF<mi<byYnxw
zR+1<*wl~%MqM%PKL`|2v6a3E+5))|rs*X?ug}Uso?ucu9R6xQI4Qe(Zks(HuFLJk^
zZjJpKVpQalAARw??xdKtsdQ1(l=e0i)WEEG%Y&}r&vd||P&J#{_-^V;J>~9wfr-e+
zTUp(TbHBRP9x?mNeOI}E&GpmVh;-IY@^lhH1m|4rcAaS>u>$qY4Qu7_WGyI|$4rOM
zwIP}5n6;#H$-%uSckYbwJu2i;2tK~Yt<Pal$%;DV?UfW~LtVjtP2%`V+y$pvXaA-R
zwXKP!hIW9STo6`x+U2hDZ2PkEHi{=<Xl-U0*yeW^yV44q=70?qtRt4AqpxruU&3#>
zb4*NmHwjh?F2C4ad6A6{;3_dW-qZ#fl|;Y=*{D~AGu)Q5taD;hj57*_#cFk#+j}~V
z;4Tt1tY(bWBsCs^byqm@)v9AqYZA8u+DvwE;q~s$$E=Yd><n-W3xjWOcLyz|8Dn(&
zq*z1hctCtOLW|tkZY)eR7~0;1J;6UDzu*N6+>V#oLql5H<$yu}|LY^}@4NGB#25_}
zYi=c8jPQyz^W39*@LPO{Z84qU)Fz@esJe<PAH`Bg#v)A@n&Af4Ey|63Wr=G)iO0|p
z_~KS<CIInGFa67PZZylM0oyr-By=NsEQs9gUL4tD_%H>JscaCnl*q1xf_YMtWjY$m
zCBlcORPjM+38u)VwlG1FBC=D#`za=bp_I}{`N90Q@VNP8B+?O>rnFQeMsS*`m!mvI
z&;`KUP!_6gq0^swVEElRU51ZBewY#`%_0_;(Syw6eb5-ojU=pbMhTd&@{y1ZtkcS+
zG#>d65RKkQ5uM=Dy(48mbUBc-KZL|8GD<)PU(61_>fY@@ws0Jga#co=h4(bN9aXqT
z^8s`te&RSph{m{TfQcOntQ8_%ZD|eiqnu@aeRBSPwdbgP&pdlc3Ah!Yt_jJi#5P8S
zGVJqnSG}Lm!MY?y0boMW;KoD4<M!eSMe;UMx6Hzt2z_~Lf;En#QHg4RYw=nD5jCe+
zdl{v@D8H$)EK!*p1`nhec$ajpsw@lfnH+<o<O`XO^{qPB`Y}XTVXHu(K=389I(CSS
z#;eKo2JvB`4Eow{thM7U&^vgyUVYXu8dV-g!aMq&BG7pC>-$@Ce*j&CDJ3Wg80CP&
z*XttIQ5;9Y&?;k|0)D<@7aMv^ocd5?Ng*pYfk9c}uLEdC@Flhr$M{-i2yr<*4DUMB
ze%`O1B@o+WX{ttAQ)zsSp4XvgZ)x1da{(ta6>TDQ1QF^syT=E^^HDO$LBV4B=3tAv
zyT3J4n4V=$p9)+~=#u;>hi4Do;MN>%KN=2Km>l!JqqC4Rwfaxt4JFozeTe5<H8OiW
z`*Zix@z!1%%OJa91@nooq2QjxfEKDr>3LRf(+1Z(+<r$jEfq{p4Z+D<wZXkI(7Fa_
zHa0tr&Q_ea#Z4}-F6>?uxzNUuvkMj$-8nomH~rqyWCa#m>tfwLT;nb}!Mci*=xaP6
z6!6?tZsI6w^}-5aToqN4h6JnBBI<`az59IZjvi`1MA5E*7O*;;tbea}hxjENM@D4K
z`TD&Q0zCSKYb>|l4@lHatr9#os_lDwz59BEwf9SZl}>9@EVU>sYUEEGh7NOrgmE9U
zxU$?PK9+T2Fo}Ynu5o2U{4b>_w+INvyclEY&S9q_>nS7EakW)0*3mxZQ&-_%PgUin
z){gt3+0FUZ-Ri$`Oyk;Evg6Y3^T)6`+F@2rt#u91K8}iJ))K3gT*%A$_GO#h`Kcqr
zbhYocDqQwke|FjaT$HB{T<VdcE$+fX8+|~$T8@|Wt0nZ^vqw1lNb4lI-08`!eUhE3
z_XzV(^dH)|wnCsBt+X`L`+sl``mG(Ywz_faLt33%b_!qe6CBDnvO4+%xVmU1M~sE&
z`nfyOKa3X`lSLAkik<l6?%@i5;z>$_IJ?#+nuWB8B+8lMBlp`id@^+itC})~C-9{D
zJ11$h?ss>tKZb*1l*ZOMf&v8ZuXAS?+h-KVJAV4W-NK%J)$uu3q`%#^4XYy$ljb;B
zx6ZwHj6FO~;+)15?S5jF8|z;+rjZil6hqVm`M6n|+(Z6q`9oh}&WA(;gcAXOa)N@k
zcAE~^B^>ELWOyRM8RhQkN@x^r;a@hn;r=N3QIr!HI%m{H(r*2i?hZdIu$uLLois38
zGj!+hq5+n1Z@AKpNX!DHe8+EY$2ZZFWYWW?FU^bUU&@+=twjO0^lUR+7od|q|Camt
zAJ&d!O9fO<mWitdLE7$q!qmbeK5rLN5?b2%Ke-0~046=m2-rY8prw4HEA)UC*@_fF
zX!abeR5*$jyA!{$p$4zUperbeIgp6*>@O`A^=D(+35x}YL{ZD#v4ZX45Ch+2CJE&Z
zD3bPa5FRu-q!TwxCUGr6IP??*JALGa_-6(vkAvEQ)048}J4gDUc}%0ct)k7UE*EBJ
zNnGD}YxwEh?z7oXG<76Pl9eD880u*ArIEpZ>OPb#l4!7%9305I-1oYiw|?)YFX=k8
zKWmv(1ddG)<P3M|?yp?-ZQay`O&Jd7j~RG1b_m0AG&tfL7v5+;V3LA)Xr4UFxgNRB
z&AG?A__TPV*?0656P>ZvZGOPI1|>Ki=@;rUeCzJ^4-Lg2ix~++Jw8<q4~Y;6OVLyS
z9HZ)|OaxN&F8j=Vd53?K%&vY8WVwU5z2N?SrS$;SO!*{GGnjZ*yNmlT8_Y_iGM=HG
zBeaeF)O~QfpB?dK(16sdbc3e<+vWNB4UlIwJ#$uZ?w79rY<sGdg1rFs^sTh7`qsTX
z$J)snk^WSXoQuA3_gvvSI1|&vv$U!J%7d<J+}l_H^sO<R38_WJ&>H;mk$d18>lvJa
zT6jw{GiP0&`ll<t*?PULM5qD;S}<7A;Gaue)!(|UMB*S6Bu18**Oq3Ee52<)d{g~Y
zay5=3n^TyThl+A?zp(td9_oQpQ4W`?)zQ9LQW54<hrK?qwBmqQw$|k-Ox5L)7Xlz>
z${a~)VGKK`TpQ**!U0DsBrHpgA6x<W76#uGTDTS<2f^Zn7^{ydnE{Cau>{;>UJ;%e
zP8ud8D`n2Yly+V?+=JT(Z#2Yv$};VffDq~VqkomGla}T{An^MH{UVgpB1|R&8bu@1
z%)q6N^gri(#wJr7+ul=%4Urn5kyq>~!|2#9bB$O<GNh)`3mC?uJ`m8!l0)FtNKkeb
zo476=KmaU|Pu>(32nUT@R=!*iMR*aAYk$4bAhBAMSjrtHutQ$3{w!}iLoY()MmLvp
z75XvqQbpcWA!@4r=cpuHBDm$c@VfoGsI3$cmjg!<*I>wH;cdHG<A8)p{|3S7SBB-g
zc9{pwEK9Vh=3YURP0kLEo)$Ll)?*Q5WGwf#I-z<R9t3}RuV?!7UIYqoY@4r64GF>B
zpA+ozNH}z8rg}zDV7e|rlx+)Hg4K)0x!a@Rvm-KBp~sYh7gm|<VDcxf)3i*Zho}{N
zK4xDuyDMLC1J-wwRid2CXjtLv6V;@+kxNt-hG6Y(k+oejhZa+EI2Lc?Vo-67%-L8T
zE^r5Q?<OtUbk3Tprna~$hZF>R-R2H*=y(`X*5b&O9%o)W9GNRNnBH9~M1KWZZykmL
zoGg7Q$mQ<oPM<JORn_S4bro1Xu%hM%**Ch`$8A*%+sStg55NEdJSRWsb%{IY4pYOI
zpvqFH66*p9!scRLvp0>1Rky}!+nW-|ShyW1S}@mbM#nXUW-1wX;U;a($PYx;VmN=<
z?Qn083xVtvBQfzkrQ@>5bw?@MLn8wZ@3{yjq1CQQw$&5C!)+$Z533DeX6BMU>K)z+
z5S->5fFa5Pvi>7$9wvN!mG*}&p@)unBs}+_KL1$}9WI-yh|akmmTaBWidnV=TLgjf
zAO_ZjXHM-sj~y>g5b!sxKCV|4GC^2yEPU%<*p%f8txLHANXJkl%%s5`ur3M8heOpW
zvhQ(Mm`+|oqmnE03XEmMW0=bv^*knTlWrld*4*I5c|PqKX*VQ#gNPNzhllWv^PLtu
zCtD7FOEP)cXxSPq)j`HmY+mM>S60USd&BtxXy9|(th@)Qf$*^?UkuGq0Rn>s0D%4S
z8N9;a3Dy&rWQ#1#+c~y$DJusLmB43ljHbG<v|sRmp}pvWbXRLxvRDKEQ9#gxD<24R
zedvENxvk{6;F8MgZ7=)^bc1Gy*q-_%-o{p2b`B=eoW$$txsLXyuS)XD+rcvfdDYg5
z(8KDbc3~pLgzS42B|rkL)C1TUlHN~a-^9d)S7f9z;sHPfX;RsGIlFTww;!2;g5W}8
zWCx$$7M@?;O|4^)e#jl8uqv!qt+T?C)418&?3qz)&pBJ|lb8}(1xIggGFxPn0S?<3
z?t6lnD6uCb5_L(k8)BtIh&gFx`13T#4d)W86CR<QC`RVsoL|BNHaazzn*XgOK@TLI
z<sk|GAHzl54wFAKJjplTSauQ46vD7)Mc&#k<A403uekF0H%Io`B}2KQLFdP09VS(D
zUU2rXu=`Gy)?3~Lk{|_RMnE_~4DEAH*M)FKVs=o|F%v~0uQ;ym`dj8+kuEZw0tcwB
zjwj?Ng@ONlvRm|QH?^a=ASNWpGEoom1Ij~iJ|9s~>1yWl1FXogdXfy7bvB;SA0?m}
zs0l^`{VMrx<`1uSw^Gbh|Kg&z2IUy#U@T-R-y2F(mc+qgPH1eBQK0}cZtkuQfdi(*
zV%RE$j~w-`JNyyaNywY56^sQd8?N!sUG1m#>v5!(Cj*3%k793uGiNVzqyB1LWwA*e
zFzN)f<p#IE=XQD0MpJ&h4!t=bk%G4#cKfWi-V$Ymw5x_=I!}pi_g!Hf$l#b7Dr*I#
z)<PRDHaBQ^-krFHACR=r@>Nkoh@j_3l?-WbOmwA|AWzTq18S=qj6pvysJhQ3{$Rrr
z`m|NBB|U9^Q1G5RZKdy0xEbbd*68c^-L$u9%!A4LR87j)=hJ8Vb<h&z$d*eqkA7D|
z?rddQDNTifVyVI`w9FlKBi*U+0KNvIrii`lV3%2L>0@-I5M+K?g#!r=eb|xOU~ib;
zc;yyT^o4*WkYN0oS)1s=NS5@lTf_PY_?`EqwNu@py4rB4U@4=)Z%@1RpVJ{%FR~aH
zle6^x^{)8|Ycy?!Me<Yx$2ab+o7|jd=)`ml3@Ro&94R}reh++a&luFeVta*8G$pBs
z{GY+oce*_n@e3tAwuB5BhK#ct$4$r&l5e^xyZ6w@L(NG9H3*ix>`vN+Ha;jW-+wy)
z1u&W%L5WY;$vTH)rHEyeAQelTQf9k8Z@BONV0|QyR(l%uh@%;7%rbY%p4K}!rUc7i
zW>EmhX-bJfy{uf9A(noGm}=bI%iLMdTW6_6QvqCpT=`u4EOiIIL<bOgzf3^5qDnT6
zk5pq>Sd=9l6EHWp=@ob8D(fgCPFa{evb7MJx6*ar*=AJCEt*Wi_$Kvm4$3}o@BhvN
zO58>cP&=~J{LKlTzt!dF0txIY{A>z`n#bLW-sNf^x2}?S^E7-7wsoCuc6UB)tqLZx
zg-1k*29M2fo3t|qBo}brx(G3_fqq|2S1yW_n4PlZv9#1tvNr4j-owgov$Y@7AGIG-
z@WoQPV93@Y<pympx!EsTm)EE9bL1$&+!bqS1k*}5jg&#Ke%Zkpv)s;g){Nl+GqAPu
zqa9|sl~b*KT-@+Vgh7$Q>Mlo_XiZ+(EYe^aa#rNXDe&40bm6WsI{}hcjuO<`#ibFq
z8@3CjI^a%oo_1Q{7B96Iz&q>eka2-_^_!=x4;qBDXB?CqCf@BWN8vebIdXt9L>L&l
z9)uTxideqUo8oUfVnB76M@m=ox*Ru!%JKI*O6I7CQ)a7e>bjs53+MPQc#@54do8eZ
zu=pld{))ZP!m7Bb&`?6aRycwVHMz1xYm-k@k|UlA8f$!Dd&DIJm;(<&Ov(>deCR$~
z%mXSWs;b&BZl?6n8}9udX+@pYY8aVf>m-oi?crwNGI{O@`@vvE_%t>rrw8(#QNuv1
zATnVjIvvx3f|3(l^qxEBJbMU|ie=N>QWF=rhflP|F;%sbIsL%l^7Y~5s<7{9ouc43
z)V|>Rx7@!!q){ANsRFQg#*A(&XaK1ks(s@u=f1Gf$|lQrifcGGxaL0hWC4xr9RecA
z9npB@WW4k-chhkDHOrfVPV+>zwxlrM-ZWHH&{Q}87A*U{?xQ!XL!VfaOl80YJYt?Z
zYOvTLu;~q|B9>Mg(--R&s>F8}*@I&m6L=D|#hgh}zdz#Md6o_(S)fwGc63sws5C~Q
z8|s^q%RwaWh&$a!BE{0>EU+?=A8NwO)}#@};r5i+il85S{<53tc_zXPVh40Ds{-^K
zKu)Ffl`{F}8;&YP;)CfmMVr@qWu1?)hHyiO)ckwg&`sU+Ga{5&!p4{a^Ejcw9QV6A
zpa;C%AZmI$(F4K#FSwU<t|c7+Tw~R>S*&zDNERa=Scx?IlRQBg7V~ZfJ7qb_bcICl
z@~<`mvHoI&wh`#^ISQXD(Fv6g%yWI%4tssjy)OPO?T{|)BC>s?nQ&=rvavaEvw7l}
zCKJF~<PAt&N8<Ex?%d&iU1uXmC^qW}ln>50+nw^6wWrw?X>`Q?(b95*=9}CN?erEZ
zNEb60M=uKLiqCajv+W_d7RVDY$*0C9W;=M{LHC@t5*Stra;cha*jXQQFTO*&{N~C+
z=t%`xD5CO^5|^be<rTs@Lm+_(1^|t;(6~n6uVgy53`L~R$Q9rD+t1di6PpI(p>>NQ
z?Iu1V@iVbiG0^SincIJ`p24wX3Tu=DRv=jMxvP{Yr8iM~*d#s}4|d4T`gnX<jH6tB
zU>@@@c#wkUx{Y)|+Tv1Uw0}BW#dz_kQ!ZNv7TN6J;UzAy#eQduJ4GDjG=*gEBryV*
zP^_tfoU}TST$@W~D`Ah?M<m<8Og6IMSg}MnfGgX1hLn>5jb=9Wy1QNDuXaoaq1D;=
zM%0w10t5y!@yK`G8Ncu%NVwfWLNX8`EakF-^762D279e?Kj{(^_5)7SBs0A3dBIQb
zx?euAXTd+QD4?=(6}L#D3Q-**Q`?M#<|BOvZ!C3tHK$&LB8vcHXAI*-PO#+@H|YlY
zkV>IDe6KzVum1zC`bV3+r8mbQO$DKs9Vs|8y!I6rADAMx?&4=vokE`hWS&g27E<Wh
zP##)LaN2S=;tcEWD5j?6WkjL8;GGZLAFsBblp=?-KKWe6;QrU#h*oR$vK99j><1B1
zRQe$P;!XESo9`v43Hb@5nsFl%fod|s*`=by^FiwbSH9sEG|`ib2XQL|&yLv4&)tV!
zG97J@c3T`GjH60UQ7OGb(ijQu(J{qWhpl#*o<@wcW0%X@n9a-`joB$*R_ZcH3?dce
z7I8tU({U3pm;!MZFC*2T8X32a1EWN~KR@UON31cO&YtG{;D@=&N~_<J5XzrAu?1v;
zPRG!UnXEBEAR(lkYcXx17as&L<?=U}4bey#<|wYvTz|`KEMA+9p@i`%jH2<ev^Q(}
zMET&a(0_1g`N0<txhDp8?~jTOe8_?>3WFoIWImPMMQtN_5A`6~FXZDjnVa*hwLD(E
z83hw1667Ql{Eu#VmUWb3$5*S0q1?75bMpSyI=TwQ6=$VtipwiF^qb7n53`;zxUT_p
z+G|OF^+o0>z5F=IYE`FG5{!TD>H3ve<M8-*OvTcN&f4FtFYv#NWelREKqbm9Ve@FZ
zoj%IEwwwQbqJA<3ma0G#Wt4&mN7_Z3EC{A-$Q(Sni?-d&scAkkJ_dY%5_5UT*5ngk
zAkvJu607t=iVo$1N8CMwt(mowpT$I%tLD39htaxK;(@S|`SmTA*i0*YkaV9|y^-qf
zp64pp+qILRoz|<;!hb}Pq)Kc-WNcFjw9X5TzS+Gb3e6#vW!j4l7(+OFue)2s4!v|#
zljO!?lgJG^f8egZ&xRTxD_IL+Eb>^4yUtC&o@Ouzb>_dp@6b2cX_i|Nw;zi+rSy>u
z@<kI-?IW%8F+=p6>0k)`K`lYcJpLGIPyX6Lo!#X2E(>L575$zBe+L^B&5APi?Wbm*
zv0s<}Vcvjpk>K+GX8_?BdH?@kMDg<lpWGa2Jm7yBQ3|76y)}15O8@x3e!*F#N}`_!
zbYx7tW=ab-FrqT^VV(P56DgRHv4{?pCBuLxvv6OeGtw}>6q&!bA633BqB3L;C8&)|
z`oX-}k+R+FxpKl?w}wYCs>H-SZjGFko3V)N&!tC14n9~McKZGQ9xE?B*8j32fkR47
zAL2D4-bR2MHOL_L1i3+=xwl!ps^9xxb}05R8VtEU@@)5vMSSlFY5>OSNx((83T6%Z
zmb}ty%2nYazNuehjUhs6^_c}QeD<%b*QR?i)mg5jHi=4>&U$ef=La{B>h;=XW=k7{
z@gE~wJ+y&n3U1O_8^V8e-41Dpga_mEh{D+-SMnK7o(eci;94}$`y+Ra>875Ncx9@c
z3~IrN4@EAz+}f8m#RR61&+Os_k>Ww!7SYWDS0{uE5`tT%hbRAyvCgHs+NNNv#+*+V
zo3UM2$EUJWUGs>D?+*`8P`plRCvHxvDZB8XvvE&B?FFWkNm@M!E9Yc}f4Zc{JcPNC
zjcpj&!NTNb5tkC2*gbq{OpjIU%}DZ&##>Os6;HO{XLrxfJy)@=r7biT7J=Xh_TDeN
zFVh;!6EzTR2q-*%&0*o|hxc3s%^5}}!dm1|`w%>9+`E@|2w%URM}S!hJ_&RVAAV8r
z(v|Mn-Whu9M4kbBW4;0vvU%ZqciNJktAHs_jNwB_v`qml3sQiafmnRrN*?m2)kH(0
z)*wiDUv>$npUMp6%4)2_Y}^DAj8Z>v>F`T;R3C=J<dkTjx>##{b5lGBDt~mR*8CrD
z;d4@NL2AOefb%6$skssKOOnA4-1m(c9To+tBOurGq(gcN$TlY4!o4GotJXu=0Ig-*
zv$bX*dQl@5O(uvC0ck3qz>1PsV8M@FREV)Z24}$$sKSUuH#QtIl){BYFjw$jJQI}m
z;~Vn+5yp4uI$OI^6|a$P4>k`5I#|6i0tT!<E{lHR9OytONkR`?@qXq(v%B`^Iu3-n
zQIQ+A1?S5RviEjpU*E+#0ILBkfN4R=i-JQtx#MrLj{cBP{N(B=;P@`x)2+L~I*jmU
zlz?rl6|Ym&Wbo5oZZF2u3>eN3I)oB&l5c)D^MEV6zQ|cnDh;{CVj1P+z-z%CK}v>P
zD_UH(f&J*A9}SIBcdve3O)Fgm8SKZI8(ja1)`i`qzBOa8T=Xr3q~~UEc~AYtbsuTH
z;~IZywx{}LuprO;=yLUx3LCb>+Vs+5#RJ+qvkNuw^iA&5GJ6!!sIk36e@?Dy!G8Li
zYdYEbhqX50E#8t*ik(W%&<Zk1ScUM*e{=oD`M1X!*C~LWCxMG@aup|8^GMu}mHtCD
zC>34)5H9y!rEFjeM@uWfG5Y2QH!IFFa^fR=!zlaO=Pz3B7Mx8xW}`-yriIH6&Q_mZ
zy~;g!Bt7}T#CEV(py7!!)5Q1u&CR~fUOz@LzBVf)HtONrUvAAq<v6yL$SG1y=4*nm
zq25L!#aNTAl_Vq^E<3p6XV-LtJvWkj)kr9+eSJ<4+3ZdmLkGc&_(>}uMtXEi72p=$
z**61;{M~Qd#-r`oQk)xV&&|nzmHxEB{n}vdti9IM#>CI|{0?Nuu?{Sm6#nFZYf+ix
zzMI@p!~7%Ao_O<GdxWtb+bOJ>K!;_D1zL{R1JaX$&t>9U?!zwhAUdH(A+9J<KSjW^
zgVR>JM>6OkKE6d~yftG48vcklywifxRSmuPUv9@^{L`(II9UYNYjuD8++Ebo9tD0F
z<2bKPpNqAmR{GM#v?t2If`?d}RYYN7P|k0-lj`iLQrs2V-h8UK<^;EX=6an-yDX>4
z8r&UPcKhB_zHtNR&?E0Bv5Zr7bJk`I`vp6KKnFaX9US$WJNPjhmDD}dD;*tgz>m#T
z8Jw?vW|jM6evcSrU>xwimI}B54kVDvF*k3BsSvWWnBPE`SQ^Bbr%a05+D;-BQ-E%q
zZS5#VXt|~wk|Bod{4Y83)=BQeQdb93Ri2ebaGLP%f>&Li+q$11$MfnMD1Y$asgdKa
z?<w&S#}7o>>(ZDXqO#QRX8FBG#Nh0plZ-t}N&bFwNWDkBLi(YsET9R%cdBSy)+_E#
z8QnO6@v6yCKDj}S?tzIR37<4b1=cD~3#cWY;}_hDGp!kR&>+MsM7ZY*F5cQ*T$5}y
ziU7;a&LU1C_;c5A?D;)X^5mohp$Py)v$9zzFHP3!U?oVtiyI%Q;O7rB+yByC7-bx<
za*qufi>u(1{^3<)yUvEP8JYtuzuZBsyY`xY7m@<Cwd0jdEuUkv6YTh%J$v2uh&2<B
zT#s+P>1XINd@LI5wtKIqUnH~u?_0avsx9p}-PtrlP|cs&Lt%~Vj&jY2b|^3&^lK_%
z>bQ7A1J)wKA=5d;eU|tI#UYkXi)e4$SlhtaBX<fVF>=C9Mcpg7TL5!_&11@^7VB%S
zq!Cv=7Xzk9O=Z&S<_Fb(b;nJ%R^a8eH3$~<&2{aK0&Wv)SP&dJ+x7hm{ggd~i`97a
zxxNT2!?kX?!WOjW)vc&LYlR9RL@7A!7Wdh)_K<q&+N%>4sE|Os^o+s_m_)yZL{l>+
zYTnW}xc)Zx<H_~_nnQJKf*&)tsn@$(F9vs@?DK8lUdTL7@UCp=88d8*VM!2CQ}rcm
zROLDDkoq2nb6h!{vT~Vn4(K8;IC6peV1Bp5d8-bSVV<}aIYIU#?tz8YJ`P2e&@d2v
zvKb)S-SDXU?NRGuQ^;ne&Wr)_Tw^CG4DNiy_4D2Rwq~KABR{BJ=yvcOvV7DfDTyg}
zWL~i9aaZ<Wx08TV42#vRtB3CfXAa3EK;tCtNWa>3Xw=+_V8f`)nOk}sM06O|0r)q>
z5bz2J>(4SfpWgF7+F|Mke4e>eyytX?XZaMk_9TXV;Palhzv<fhm1vF0FHYQJaO*KW
zN6&QOj)6BmO8Eo+gk4&>y?1`XHA%^n+gTt5OH>A~FeiBIJ$H*YshMBMGA83?%#|sB
z#y@$aP$pMd^aREdiVS-NHCby}2|<TZyxHFT;E)1$;fU^49Db1dym%TYpE6E3g_|-v
zf$8C(VuQf?%bJ1z`E_hK_rNZTAg?2;CO22LCaVo}L)u}P21mUTIq0fG^dW<-_JEXb
z&K)K&l25H$+5KovWd8)XfOI|tB-_p#!_JesFTx%P#=d4seQT^WmQe;Eq>j^rtr;7`
zoIa6fAC1U;O*sJs4GC@78!=o=E_WYXz||!+m<}9ZFHW<>b?khP*Krc%#+P@W7~0$b
zzt!6NX#~E4y`x^iIQ0pPp;Ua3Y}$ID;c|wpCBUOl<z<LA$scCFXKj%10O3nS;6y_M
zkIUeKG3huXab<IXyT~a0x*}bW*SW~`6&t)CbjFjeJ+$kH0D=?EEY4S5?8fz^k+=&*
z#8fMu#bSW?WDpB4yV?cTJ1|k(+73~cs)0*-=|eq)LKp!(ZmdEJY;CQ|=&#CIf-7N%
z&JA|?IlQ_hJX*JHsvs{dLGaYUkw5Hc1<l9BYpCXq!Gt)xoW7Ed4p<&3{kQd%R8lgV
zgGW0y<5yNhdba;pdtQfjf~fg$QrTp%N3)hkj{K^738a#8*KwqJ^vdAT4<eVmh-w63
zBbopqk=4%5&&mO^a?Z8kSHJ&vm(VKt*M(R7A6?2hKKa^k(w6^zN(nN@TpPaZyULT(
zpqB)W6~Jq9g3XVIFRTZ1h5}68L1B~fz+A9LKZKD7ZwLj&A__}_L!n|^Prg#&Hfk-8
zZ-`a53!5u{>$J<<ziDT{kyy*xYBvx!!mYaRLYIAvHJ7&$OQgUwjPz6*_^Vquzz@^j
z*q{&~hT)vOcab}-+}cN1Rc{1jM*MVc@Y=QR(h_SO*@o!DOt}2DH@RS-HNMi=ED8=v
z3<-FKyPg*^zX89rF{o;E9DS85^p8`Uk4wyy<p&{<>=FQF{B&5X2J1ENg3vF!#Jx4#
zW;||fjSVZ;9rImWjDA}bOss4}7$@*p+HYQAmYf)Ehlg{EdMtuJ6OdQ~)=d@?kj&I}
z2$uik#`exu-`HwSH%H5N!5pZ)S{GW^7!YtA3m!q;3-(#!zKB@+h(vX*!Mg~nM6lU%
zYPfKub$Cld7Ot|mED^zyobbmXxr(PEHY(oKPI3lWJ!U`S)|PQk&`-6-Q)5kSL~`Rv
zA}}F%^+`8}_%~=6(FgQETY#Fta9?=Kt-jSd#zELNsFCdWZ@J@WWGKRLDym38fTGVp
z@U{0Ja}R6Nkc0X1Dg*@NK!il>w=Z?J_WlS^l^e<RCEp5{@R$ePQ3qHL`Pq@0#g#YA
zbE|i=wqcMGLSZ|ybZj^lQMTMamHGu0Ut%cLbmA<2$W8GtOLf+?qo<p^%M`Kof85DF
zX&6h^+)D5oxgK)l3)5Gz2IXxy{%YE5Il0OSDiqFTw^<LIy$OV1Z52>Nju}>StLV4>
zmaWevs@06Di;E}wc56mdX-ZUrg={21(P}Bdd75VT_!cRxJl;YCZ*XmcE2*`H5#%fg
zg4;W}m2bd7<&<d@%pwlfNGcg7c@EO8KWDb?12!0%-4u_tafAC7W~tcS!?%Rbo!X-W
z-cNup=ZKuo+*G2%Zi{UB#o94rPK`;5l*HR_cI2r}J@s>ICX)t&2z-Qt_v(F-x&y3h
zF#L2Q51`Kkt7b;l`EjsR*TtKFmO(wDGJGzd6?tuUdtkIM!I(|d0~|^(-`~H5p=yw+
zqtxjQ&YBr{`X`%G3D}O+Sm!L%VZ&{aqyMyRN;XrbGx*L(mrgykViU<Z7sn<*9nR2w
zKi#jQ<bKpXq+9H}QYwSU7&kH5qdz)ZzuLM)<pv@+v3u8Mj9w?9Ufzylj?IiL>@pHE
zH7JJE9t3~w<ObZ5DZ*SzF__iL<VVD)3>a^3iX0ecQrIWu|6?CGOaP_ndUHYKkWcM1
z2DhS9)vR8P?nLsQVEW^c=TGzt$f2Pp9$<^&=KlHa$eN*kFwoBN)x1MCuo1sS228Tw
zk4Yw*6tW3-W}UvC7kNlOm%SU43P?3VcG%L>?u|qavvx8Nn^udWLYVZt$bo~bxumHf
zp&v`4Ir;9$rsKD7Ws1k$9a(?E_N{!;&v!@W_=%H;4cmac>(SuBg^`D6@LSji`CcSf
zpsn%iG5?Gl-^1F=DBX!tEL#kg@L<dPk+1io1J@LK6!{ex<kUTSHSL?BK}IBMWVONf
z77hBWj5O_G)9CQ!+kMIqj*ZTZ+=z8|M6S%V7gB+N<42lq`Kegg_63o<KenwXk57V>
zV8mpU(;tldb+pZ+JPzTjpSqfWIOw~!V)xFyc3NO#QB55BVY8Pg6)gQAvP_?)RkvlN
zGJQ1oW?tmk5!O1CQK-bG-L_!Eiyw~69&RHIUR_6dwwl()jd%p)>m9Z#a^enjp`Ipd
zr?3=UFv1IV?lo*zTM9dDNHkKVNS7ZCc3d5q&()K*hE>wfx386ISTeBJquKWU^yW${
z%eyb~u{L+BKp|`Vd;g4Fv6RIilW-h9$3Bv(h1tA)e6Ozi+Ys1g&~kC7;-1y=ZFn|v
zTR-bb@4G@Yc3BwN@md>v+rH~qX8tpB<h~tWs>AT&2a&(MY&*a`!G(y~MDg{({gKa#
zZRGT{wUIC19Xa&4?OMg~vgSngE8M=7ulaCJWLUnvt-~zX+)GzR{=Uz4zgD2r<ohDd
ze@Xg%60uIaFVdoO%|67NK}jjNCK^<(kKC;z3D{`cHC0g9k#iz{7|1RN?u%X{>u|Cm
z>94WQRpZ@}XG-kVgJH|7Swx+XKRq3}gjV(r>{5e(qtIqTATc3k_j-4X^^}n`GY-%k
zZUqgA22;oNI$EEs)NB}Fxn5%bqR+WGy@nrd&kRvw(HbI`84l&0q!L4Vy*9)iDktm@
z9VJ^t;o%1&o7dR}r1wxR>v0c9?z!4e6_bZQYCt^bd2~VK>MN`#{rem~jo-g>jlFhs
zRZAlEfTVe1$j0~DORGZGjF{p<_yUIcZfvhRb8RxiIQPs`kay5ebankCvNG^pF$+my
zqO5MsoJhAdexj7fMds4=!;&t_S^RXQ;3}KcP)rOoN0o9a81?ta*Ll|5VW$K==sYJf
z!IM0)A*+fP6oI?XYzNJc%oxQZx_XHQNN1s?br`g7ulFCaIc+;lLNqU08F}Df`}ycZ
zQlw0GQVE};!45&M6MnWwhPJk>ZmMamg>EBcMuWtLNM_Z4_K^GlaL})joBm7>;pp2a
zI^VZqZsZTlx8oY}^1qGk^@9Jrt#?NOo{v2cX&+{Tq|dS<E#AH-^2@RI($TSaO%1qU
zq6nyv^<L!aKGuwX7vjVuNpQw1`@9?3`yd--bUaQ$qt)yWej#q*8BazI@wc$7bxJez
zjDx{Jf|fpdfjuySm4KB4PT{?eER1v=V9mve>D+Fm59#zkq+q;%DV9S|t}x=WG0h)G
zzVaeL`gBQ9IBH=eah;7ZmV1DiPHc44^O1K%W>_oY$60z^0_?PW)XNV<W_Y4EEWt^K
z!H|)g_N7ZA7hKFEvaZ**r0FD@24S{)^;-J9O=&BiVLvYYAX3Y8wC;cgQ*@QX7!BS%
zyjO$2%Xq+RY7+He5qUkngJ{tE-pH<gU&>N!8S50%!-B}c8TN{C@hM=ulahB}IGl*+
zuaV1YtShD9i7*UV89C(j9(wtNT8yt;W)wocJsR9}T(3Kh;pY?#;q2Cveo(KL*L~MJ
zBBe*!KphXAZq<1|McOK@XJjJ|ABapYrbTA;NhEnB?ULh_<%xHg%u%{)uP1jgZes#W
zR+0sylb94Xb<2B^ec!OVID+pM@8aB`R<VOm+#mVZp*FYe7#_18_;4iY#gd^=G75sg
zNAM!>`Pa>l{M_5-HX18@0%Ife55C>K*QO_V3(5}+2@us(lB|)JB^o@wPp>Bqu*prR
z-IzW<L^K5rA4T5W(?-G#i%}Z6npMesJJQ#;c3c(wufbn8MqZW(MG@5`DZWGp@MF?(
zT+nOON%k2XZX#d4XkKKwj&pvn-B28^o*N^lSJ+u8qn3?HZ+JZD__nOq+^7weKGQlt
zXFePmJ)`H)ehQ-_%D9U7WODROhW=X`3Lsc~&cf&1;>l#+5pFg{ISztzo3kpWeA-+!
zNiGIYn>Ih~UO1cNH-ca$2_GhY6+4X#eb?<A{`^uZ{Z5+@fMRMNY<6!gvf$7W0Cu)U
zDT+ZAf9O8CmJ|a3E?A4^tf`t9G!}<D()vm6x~{wiSvMxD2v-gejKb^@XE^m|VLHqw
zLK(yhxIm0kNdZR*2x21>?zElx3?(S9P$)dsB$6nA!UYvWW`vhr`_XjE@>2f=HZm#z
zF`Iuq<kl{;kY_)e1_mX)fWnuV6@F^0*L=_Y-@7v>SW=*ql;NRnt&$9>7CXl0kKMc`
zA9a~*!pLl}9Ys&FE8P~kJ7-zSAf+!5$Q!y1{|Q_dcT)=;BoC`<!t*I>4vFJYp%U)U
zJ9&{199kWzOT_GxNT30;8_{;C?8MKuxMTa+xH7I{`>5j3BCnIxp~!u63_Ya(7M2H(
zRh;4=7;2g6u=Cx#<E#&KUvrfY=8fWqL>D^WeKC~P(R^B!<B8BO&h(tWx{XKK(I6>B
zT|<k&yIy)6bg#Q_7-K0u5Tzhq?}N<=Uu3oRI550sIg3hiB^A{}@>b%Dx#Qfd(H$~D
zfk7cQ&31~VRt%jfHTARHm|{jQBqmQ82hc;aF@{8g117nnYFQd(8cu*M;QNqav<3U!
z=5EemWD>GWiG5SQR*4syviLqccA75>UVVpqUh@TgRn>}RkDUco%d@+WbbCL-s9X^s
zfqqTovp^y09FF1)_v4^iXg?|K6iX-PIlX6n<97SjW~0>Ea;)&-87tiHQ)ooHt8ZIl
zr3Z!0z%+CCb9QRADeMQ4ZS3NyliatT@&aWnp`=w?R&8(48C)*x;F4vZTH`K@+DeqM
z_;}x@D`1@QI$h>AxA35Bv0P+wIau*w_;081h`;-V0O6%%5F8<@wBg!S;!H8Wujabb
zmBmWvMD@ZO0dXZ8D{ak$%w+d5YxDlzSG)el*=x4H8&wR+0{R^X01b<n8-!2ZVynSH
zr#LRzw(#VWut7V--p!fe_97Jp%TGXnc9f8G!eR^EvR7yoEJfT^S|O{r_wTOzF8(HS
z;=aIL62&+T^WQNfj#KO9=YyI>J`g(P9$LCrc-*0Umtqc+B3!Z~i^FZ&<OZ<##n{2g
zmtIBQ60FjC`vMovdxs7HA*pq;^cY+<04i-z2-S&3vA@SnPuMCz9+jBDe>c`*-nwax
zYnaIxiiWO-r;wV1SI#-Y%{ap*3QPh#19!KvLV#1!hV$Y@yN0_(Y^t~t72v_f;x^_B
z&)+Rv_`Rn_q?(A6OHHO}rPg7U)&Hd%Q_bt}YLJ6l+1KG!I;-Ct>8|7>p>Cx_0mXbi
zjtY@K9du(hOBc9%9^)rMu4N2Ib!cUGa_l_4L~hCzU37n_CrWM*;6og9%i0nwc7vxg
zSMCkiAj`l3W#d9!mhaA;Yj<3L@rJ54)gZEU9aHGmKg1+uq-XZk^#CI=sp=veJk{;{
z7id4`amah(bY&r75@tC(cB-3lt9^Shj`ZGBlH4i+1^Bq<-gl)lm^lIxl9rf7@ZD-R
z{5_hApjUhhMZ%$ga0q_gHqte2vWbZ{5@JO)bA<w_Z|zt&;c})12}vz%R&^3814AYz
zA{yj8=2rQ=_NB%+0~oED_n*Q`=i8WNvDP+Loj@Hn^2ti~`aQNC<A^$gjn(V&!lyVk
z=XQ5Tzh%okD!DebSCl)Z=a=Q~>X4@(ogCm+aa%G8V73DT$5mPLtK0aq4XR5KU&C$W
zwxEt>xW*T0C!Z{K6+7QbFRSdDqdu^u@W)s=V#F^hI6q4GN1(NI;C~+BayxM*i&Py!
z5I{QcHz4M8bH4>f5SUI?r7pi1$*<SDpGaK7?Z8@Ylt)RHj=a$=ZK9QGJTL@~3PK}1
zl43I4g(~-s=%w##5Vd4?8IM}i+=(S_qUdG%wxt=Zhza|&7X4AIW5kW_?VI=+{A)@K
z_(47Q5Cj_&x@MYNGnNlv0B(1h_(&x_Y1i=K+wH}iDit9ijSP22A_}&71}(eP{eGm~
zM`%MM==ECsNhH#a2J^@pw5KIOQs$<$VhXg9E%)Bhv=Xt-1vOC!CpkDD<b{2G_9m8P
z3hbDGH$13^hD%T2=YWe*Z^$$_o%AH^7`3F9MQxZdoHlG>H~@v~wz5J>OC?)4DnBkP
zup@0%&@yTxS}v~nz3D|(VyfC{&My9oXm~^>!*La{dB@_@kzg_Cl4x_eZ!V32F43}6
zMH<AficbD{izUj!k|>@|G+}T+G%VhmQHU>BI%VasBACz8Qq`Vl9|1qB<=prcCJ$So
zvPWG%$lhGcWvU`-P@^e#2(`PvQ_`)XU?eVQ+LP1x6cA=)&P9KrSo1eb08c(32O%|Z
zr?DRt%gEi&#v7a<drB3_zzcCP{iz`Q<V${z8y|jz&arK3haYEC8|MWDE4og#xE~As
zq}Wt{AxN$nJb18QCXpXa#bzTiLIs=TCYud55OUNv;sa1EoQsbM&+TN(Jvd28U0mTx
za;*y0t&Z_2EkivG7KxoEjeVzn*2Zy}gew!HD;^e>kDg7Z(IdwxtEWxiXp)a7BRqDn
zwU17!iU#}70`&T0IAN5HGe$HT{s8n28pPQ<{*dtEzgQP;TaFU<nAG1&aBT^5NfUNj
zG2H?N)B$A2R@5<xS~+w*tAZpDwt7lY8Z7GU*Qt>7=gHdXWGHINz?sAB<!-n9Vpkt+
zFB}mk-DO=6{BUU45Vv=Lu&b}+3F5kya7Vez>_m$jC}YJm^4ki8igL&oaNAgBp1!pk
zPm>-__a8J1|LUz-1P`@}*WtuM;_MwhdXT*YQrpJOvrK9SMZ%|g(b^ZJ7fOm;F$F5%
zeZoFAA~{ktZzVI((Hr2?(2Y)#wFXMfHhh%jbHl-4jHGhQqq+x{{H%!32qA#mh(hXc
zL_4puLoon@h3e$!*cB;h2PyF~cd@xZh|!BlCr+gf{Hn+M=@bc#hQEyCi_tba*i;aH
zxUs9QEj#B~C3<(ZD$j22<1f1x$CL=Ri4{Sq=B&wX@^N9fKiS-%2Y@tn{#YO`&#q7b
zzF(QlQ>k}2J%z!tKZXa5poe?HS!0KwS~!q6f)|`*&7;xPy(DW{?MRqs*H;oXWS=XY
zqp}^=Rsf<SX@?a=+V$Q2VFeJ0cZ<`7U{$EhbXSdITzuk5!f+(gF})c@;dwvtweqMD
z;L(_{d*i8>CBsuBL!IegvI|!AO4G<e34gUo@o1Z9>HkpLrcsIsEsqmPmc8guUI^a1
zB@yS0>z52*2?VKKFbSutS>!I<&!?~>&@3i?V`NFtD+u_OJs3g$CcaMQWQ0C;hDw?*
zh1M~esloRR)5F-d(>k(ka7>~zt<pyPS58K*I8m~x39SMNPr6~Oj`NHpl71t#{xoM1
z5s|v83K9~4ZR1OB8W>*p2U?4Q67D|P!8s}tR%w66pSpgNk<fJD_(bX&p7BSU9DHoB
zj;a_Kat6r|?Mex}pGwtdX&5bkpH(XKyUi6M>znhRsP%^qAhMBz4j~_=q-z5~vc!tQ
zFTp7}z}n@Gxe6sVao|(hLsPtNElXk|8p~?0R63|h2${99ERKl;Y85@BR^AWgMo0T4
zwN7hs3@bl@$|Q0&N2Z81ave@e=%yN1>}=l)rI3`1U`N{nzuBsDxf0M0xE3qWo)t!R
z<EN4ypm0qluoLbGZ4@i#vq^}UB29y)s3s(7pd@h<y_FMejD{=z#M2$-jj2nYxpn5o
z@5M53ilR`9fk6T&n6dk}Mjc8To5`0T1|}yV`}ee_gK7w*#C}gb+^BelC=~~-KLDeu
ziqqlT&~z@~PhI)Bpg0wpn$KTIz6@P4-a}QDKmvy%$CWpVtO>efP_te7r{)c6Mj8?s
z<MFW_l)k5uT4W;0f>ktSO(FfT!3%ltGjSc2QNy<b@CqgcOf)x~QDMz^k5rKdGDw%W
z9YkvGsn$jD46&WsD)doPqd?u~hzRUaM!!y#!~<4cl@$<uOlnZ7qUOeJ*D|%7P%c3L
zwKV;Qg!Rx1NeT*f7R`ia-BB1mzS$OdB49yc1IZL3>-F#b!>@PXb)@+2(4LcS=Uc{;
z)q-!Ys#PNC<|aiD$#fjmkQut-Xw~5T)=IKB5$%>S);L-ybFBw&VLgtTY#&8V0nR*H
zgr)Ts&wNDLM^gu8`%~gKNtzY(O5zN1-eS>X2&9Q}S?pkw%KgC<DDy6+Kp(TA_>M6i
zArGLRmc>+C#DyS|nbC4cwSt&u{Fs0cbf>CXSR?vsZgAw`;d<Bz^r)0HcoHy(U?CTO
zet5-?_5zR)x>(Y=Wh3H@F3{N}pRjnE7w0Jci_^NBzs7`UpiKch<J%DiL}d{s?Vjoz
z$@gYl9kB$?L8+@h+c)CnsEJPnWkhWez1@f;0Cp0N>EnuI@#NklcIDTY=@1K3xvJP$
z%u6NV?Sb`-WwxqQ&t;)<?5N+FDq*DH7Rh8G-OqBpa_sW7d>V-HeXzd(v<PiR;rTk4
zs_}YNZ47qU!|w$%2K^ykZlXBTe=djDLO-Y>ZH5Ul$mdG3wT;%#DXZt@6cKn?bXZ-s
zwtta*_5hivJO!7$#}}F~$rtG=krSF?zPRoB`P{fzz7piImv~0Kpu@uZeC}H-)?;db
zm0v>!dQkV9qnfDX>Shy^!5fXa!$=yZ0avptA$KYV=Aqr~6UJ4sHSlri7%((rpb87*
z3MhG#(D6o!cGJ(v#s(*WbS3IRwg^<i-Lf8TA|2R!I4^uEHFb_!YX@m`6_OAaR2LDU
zru2K;fMTr1HW^VS>S_=3a=$N5kJnkmv9D~ju(8x5{m@2qqop0PV4q8fL$ZU!`lG@Y
zsNFOOiIiq_V1#{-2ru>eL4WMKCfsS_Y+_mtlwmlFM1>@5^ITsMq3N8slmP+Iu7WjK
zIXPkAascyY!D^6JiuG|VS}XKl)`>6C4$~tDwbdLGwuWh0l4GlQD|iem1Z8=DXtx5k
zi}D$Xj8fc#&9OS6P5Ug*n16Z3B6OIswZvsvelr=g5wxhULqM=$YLXa%NUip3scX8b
z$M7)-b|gRKr1vZ4g)bf+>D`4?mIVZ+*G=LgDZLWfeOtJk%3d@VQxMa_4e0>FdR;R7
zA<~`H!JHim;A9MEmvJN(<z|4g>v=#37E+z$uON>BP94IwGRR$>*fShb)MH1`C1tTD
zi@3xP6B7dclpiyHe6s6~T#-Pbm*+gp{}DKdhDJ3B%6`i1wXmyVq{cV4p_oj=-IW6l
zFgKWyA0Ag>Y5&GUfMU~dw`3{gc4k9(=iKeubFwHy70j;*J3Z8+3ea1BRLN?_CiB<+
z*_M5dTxPYcGDu>93WBU_!?*YCQpJHFoet3#m1`w6<lY#5w0jo?8cih05dh*AoJrcA
zW&4B=_3tTUYY?n>Gt&8iL*{X4fUV00mRmrmV_^_>36FlS$DJ%EvHX%{(U5Y3-A08?
z6S^HvK+a%dH&uHN-#~s4Tj0Kb({Ree0BB%|7Em5z=jKIj`XbU*39H{4BllV^!X8`l
zXlr=+RRqgHq2t8-0(#4pB9Rl^d}g@r?9BfWV2K`GkP3b51j7I#)W=OI0ke*toSdSV
z0VM#$wq?bQ`h0JNgi2~H^wbKUzy>!fwWWT<GVH!Mq&Tj2YEW(5Ljd!#u%HALVR+^6
z9*QFvf@lf6LdpT|$KS)^&i^@U;){a&&kom~n|V4v83-f;^Iq`eJ(<tUIAr^PH5Sze
ztZA`FD|}8t0{K}QA%1WeeFwBFNK7nC(kMXfgDu2HN?YvE$Z-oI!v}H{k^Y+D;FUpn
zS-ym*=lXKg1c<1rHN$llu?WEjM~9Pd?Qsytd%#pQILSiLm6MibUR+MJ8X<(Ffsa$r
z6<HO>R`6g^See!HKZYT6?&YJyop0q_a<&tdZ5Sl7U~oahso^d4Jyvnz2h>+#YiIv}
zY%y67lB|68M;wI=`w|PF-1a4edIY=Q9VxvvqFy^~39|HAd?g>sT!LOVM2@@1cau{s
z-9zS{;G*jz{jUFC4`!zx+&0ymES0!&e-7Vl?6C@p#rhB&L^aav;QBt{K?i57VmF52
z!>r*_pbnFc?vBpksYI+2VLnFKEm>jtoLNtYiM&i5c(QsnA?zDr>5K6?SpS&&@gLo`
zjc$2h!^6TGdS=w}@^S%aGGLZuSwc%GrE-RlRRn(oSGT&e&hEYl?ts_Fat;<)8L=0C
z3HM!fn9dzRYSoE`#$+X+XO16k9bjEML>3=q!KXM=6BxY7lfklcI3+$k^JUny9|0~1
z+Nt;rrACkp-1lMk$6vUF<PNQAZjDVsLnlHs`2PNI?NM$O7<o+ZsB4l9YgAJtIApP#
zpPTug=OG$AaCBI7Ylr1jzPP}D@G2GvR$_6fgkdRG{JQnzG35&}f2@`{54%+czyD=H
zr2jkJ_4{FnmkRO>g7qJ{l0Oi6$vH-LPqbp1q%sxB>xzP(mbr(nBUloJ0AB?laM%=E
zQxLrNolB0+T!mQ|@dYS1XOGb@D+o_rN1$kW$GJW*c-s?UG0E`)Ya#Q75}ecp?(^RO
z`U<s!0wzq4lsBcrdG*ea^u!(0>=De%$=J_VAVEe|uwN@t$t)RlAW3P-!tXLHJpDM^
zpfMP^0o1Z_(rv4HMyj&Ov&ZFb<p@c^2CSVEeC;CZ=0vtl7GMqWbvD^maAK)-pkAk<
zb^<EH;9C;jv@l~dbZ^e)j9c%9u&2K=2Rvr#!Nq<->NbMr&CWn>J9$Icxrvx4tPh+&
zg=;g^vDZgl%j1;7Sva4#9e^1KP#SDnoVk2v_iZBso!Pp@{F>7YzmaPXdnz~R4^O+#
z7iV0^gP8SUout+@it@ss$S3tZ+eb{mEIch^DAxuHFgON?%AlE<2Oqr8a}VtzvON?M
zv5juCgwH$^ez=}HmA^G$m>at-V0b_yiA*OEfQth~7P()4a}9g4-MM5KRSHJDMjV3Y
zj|jiqpEF~v$PsGIPqo%^r^`v^id8=m0BayZ`;Ff+i*vh6?ih<F36X>dw_s$Md;K!b
zI)?2yTO5OYU=!f(et4%lWCD@p<cX#r5xgCVke#i%I{b2ydxDd}m2Tn+aD3(5m|XA9
zIu+U~fG+i04QC$Bk{Mz5%y7*qP}gnoV&oX$oS)J)yy`rV!-WQvO+|Xk-ucQ)nNJKO
z_(mtb60VQxf@|)z%={9rPKuiGVo@`KP>h;ww~%?Mh5Qe?!>X^_C35A@hw03fC+ieE
zuA^|;vEg0+$XLWG4v$0nj5JVSTbPAg{~aE-7Glg&g6Dzya|09xADq4@d~VlFJp&xM
znR_XukF?*LuL}D=5wTM!iVqaDujTDtdPn5<Zis_2(pI)AeHf)7i-KO$dVTvh*eA6K
zE#U*e>53`DcXGt=Ch^&mSGr@0G8QAI;X=i%O8pfsZU)-(-N#1=*%QG~ETQ3i<(wqF
z*9I4sQa#906eOw%K!sx9_YA7fjeKwgd37!Bo3y(z^1Y(t$q4rAYwqMDI)-X1HKad|
z`j+xU6UU`B0~)6flF_LBuaOUylJ@`#LGBk0H{}-PlgJGYT^_zQ@qguPzzeZ8cLd~r
zEFpIIb0m3~gT2QO;nV%0$T*DRr1RzMPUA1{%#vTK=De`e8jH#w-8xB@(!9JZMUS1;
zBm8=JkBIKAaSD86%G~wDLt&@6J+~)rszmc2#H}N3BZ1OZ+E$vZA%IxP4>UWObF){5
z<7-&ij+=;3=r?f@TwjKgdLnp`^70gD_t1p!v(u6C%tpnvXo12-ar6gQjtN`NgeS?U
zjl7RFjuMX|SijG5dtAd|)Y%8~%3+9!M}tj;q-@&Rz44gSsVk2e-Z`H%!a2c&e}(6^
zM$}x4{(<*_W`-i`X+}dtF&sf~#hvbz<Fj=k`oWzonggs85>)Z@aN&r<x0m0rbb9&i
z2@XLq`MNlE7%%X|XY<6E<J}p_o_d?`?bw)PnL-;a2u}SpJmngjhuo1cVA~8K#}M3}
zXb)Gu7f~wk@~WByT2ID^#58CnVj<My<eKn|d$*$z*;#U@uId(Ecdn&dKm+;3z4~U)
zMcf(!V(PaBr65q{1o0gAz~0f0xv8_WRJ(2OX<_!Brg2O}9zeLmoD(Ggfx|?ByC0vn
zuJNr+ZHi-62fKXenPKzOyi+Om>nsFI8vA4U;fL35lcqfV;f{IwGkiootGpy0F8_O1
zePdeh$;%>TdN8vtT(_`;JOTeha`*gCyOwBdZ6cfq`mKyby$=cNqZt=N{`$vBP1016
z4C*SG85wepzt7G5xaZ+;JAi}~+{PrAML+=N{%l~RL3D<jc1Aaahz@J7t!uBZK#4QM
z^;2iN>fU_Pe`blGqLR<wun1yT2I*_zsu`_FjE$^&eY?AZSArAm>wt;e20`!r!tXMB
z>N=1k)+A%7ns8S)#Cn}Hs`nxyrkG|cK1BtzO|&oz1WMNanP+=FS_`>J^K~L-i_#0S
z9fcR~OUtXI;-fw?CO#7LtMU(dH)I0XB@+4aF%y`907L9(CP{4Yb7o}8Es;e;v5g?-
zFVj<$D}({F@Q#tgiVyuCsuv1SUU2j5$Z7kt1E32;XPQ~Y;RCX;G35stOI+90#Ix{e
zu)j9wbY4N062lbs58oTyV-YOC6HCuW3UIV@jC=kXPTkX`4@O%IRhjI*Sl)vAMEL##
zJr0Ku3`Z^l{z9&pTkdq{{;S&}R%Z~JI+@@>EGeitC%9{WS9z{e9*|V-5Qr|HMA?m9
z!i`UCCl0bQ{)AcnA?(K{e<%_a*&GFz_~Z*0dI6{v)c|_W(f3cJ=PAWK`v2%U5Adq0
zr44U8q9P(TYBK8}wnz#IM6ra>Ngxu6qNpbY5(r650Rmnd7VN!a!LHaV*u{#ycdiZ8
zsHi9xEBe3R>=TOj{?EfBxYyZhuQF@a%r^~%9wn|m{I(EP$dLu?`%F7}^*wuhaJp`$
zu}~n^KEIfVI=g3pE+#b;uR!J@e~WG`K6!9Kf-1n`lZcI^nNZ|bem|k%Ul)c!cXBhe
z(F1Z`+wd22n#Q(Z&Lct^dn<(Znk6P5)=SSP;to)O|8t7=+}3#c&WSUx?zO%vJYD*y
z=Cv659ZM8J3o;H8sMu{~QR3C(|EU2W{FLn<{zL;1f37B%Iu<ycB(3zki|q8N@Bspg
zs}T2O8X`0>Gur%O>o}bY9w~yuzy*(R!V!L9RXFi87nKz~s=!TZ3=`%WUG;Zp9e@O(
zw9cf{Clm`8GN|W|PByLHBuA;Td`ghYAz&{ndUdBTI~g;{y7K8QfG()j<g0;8mvs*p
zo(>rasd;9uRZl?;Vle?W738WrTQs`wd5I&sq;0spybZ@0T^DX&7_&lRv`EeldFF!H
zkYaLrIP@V}B<;<v6!-KG_Kh~*HOxI5<N$yh_QM@DjZ7|l$1MXF-PLQ`!(Erbb|J+N
z>qYeVt5#6UN(h#WiycyA7DOO*8^Z_3sa~rjDNi-_%jStqZ%O<&&*B)wJWI~7_%~3l
z&*Nm|E0P(tbnDf(6X$ciu*pTj4;OU}<4^M3mJ@OJ0KEr}Dp_b#H|s8{J}imh4~m2~
zpzJZPnH`ue9oy@oG^jFTz6x59Eqi3>bu=<7YQ5s=$&mqH!Ns6&blRusqkF+H;o5}G
zBRC*5P=lLSJ`1_AHaiC6TQi?gSQqzYcGUmNumgG&)Kk>bh}SUHBy@527?&749F8W`
zYNxp&{Y8GFa8Jot6iAf%x1fEZU#GqP@i;T}SR=<wU#4N_gY&?DriVW!^>~XHM`HQ`
zON*j=`lOF2+kI;u6*S@%-k?GrbyuY)20(i}BVl3-wYY&=h`3b<`ho?a!}iGc;&12)
zoCh^9+MDNx=i5<TfWBp~Q;0V*9-%`~^ZtpN<!G*{TL-0fb`|R@;RL_ur|pw>(!`wP
z>8Px&%2Nygi)wi7J9hE%?*BiBrrNl3Xn}SZ)-iX%9mqYHAGIDHvPW<O!eZ9I8_CZQ
zO<rt2k0AsUDRwrcCMY5x`(Me!R$S6!F_&{G#~2iwSVjU9^3ibSpBc9Mau1a%Kte$+
zsjEQlEhA3^>rc1~s38aLq)DOm`R<;7M$b1$hXY4bI+VM=vS-RYLV0KnX9~#=y_!YZ
zeSD(F2^-h^WXkIca^j{iL;MWn0xFTTyymO$U}n0aSx1nMNO^!{qa<}rUi9=|_S_Z-
z76NtA(oq%_9DU9omfp4JKZLg|XfZ3wF0lQM>A6^ZttL5z+&qm{m^egOq<WBI(_vXy
zu?e(CYQRRKFW|ZT$fg#}Z<k1P+<h8|!I;XHX;b0%WU9neskr$A_v<x&i(NO;%v47`
z%Gxd5_H!Cl-bqqahT)~MJT1-|gJF_0(?1Q)gRzLL%1UH3zJ+kr&-@pjKZxHbZw}wy
zEeZ?bOg4qd3gtlJF+2GCrlCg>$y{K>HBh7{If`4}+BDP`fp<uN0|B3rQJc)b)<NhA
zIxHej&FyyKsW5$5Z$*nzL-fz0CJo~C(oi@OrjO5KWd*`NET1a{`TiH1dvMRioaJ>@
zM#zoBn&nUn8tR^xv`=4&>y_X@AgzTqEL$9o%U0TovHmH*8@M?!b>ii?fj=E;3;jkV
zb1awP`Wsce3t_bmek*1xrq+44u+<c}FbNujvg;`v=!>1gv6Ze3m2gu4>11cfwWarf
zaPb%(Z!|k@kG)?E^R<iwT&QFhK@cPn*7}Zr&hAu{IFdQod6G&{@Qu8TTvjBnHq@T)
zA1<wz?Tq4_`LNTx=#t@K#80qJc|s64P(4Fw!W2B#Kf0a}<QlIA#FfF-sjEa+ZAM+V
zMzw$>IT33wfg90@fZXV!KH;q#M!XSNtTHj@>>9eg&8>!Sro7&28<jDffc|L4CD!wX
zZX0rWAO%?OR$ar46I}>v%ceIfm6VM8xE~H8(FyGn7w(HB2B@1PNIhneLQPgB!yUR@
zWqfUDN?p9LPx)D%Ss8XdlFK6xlO{H8<uvWD!$R(f()Zv~q__k0m-{53KY(Au>*2jK
z*mc63s%y%@PICHX$U-={W4K}!m*xgnAO}3Rt+*~%;K*iVP3doJ<X2yZ-A_+Q5-3Cf
z@dQ-TciGrWx`tJQedoccrq!f`guck3Sy9Gr;rJ1-1o(7wg_!z2qpk53(!c@iiqYx%
z!2rSP4tvvH{1&BP;|4UmxIwUJNpfae?>QO77)48W4!IB)v;wYQKD({flLX3Dh2hi1
z-ZXKh00Al&Wyl6IuQ=TGG<zb^WXi?iz;RqK+^o|YW}|kA2pBgja@$U!dN>CHdl|0e
zux??!$9`om?ua14h14(|D;no2LI6JOO4tfK937~<(pg3^c;{3ourCR^`pQXS(yH!D
zO0ajJK-Er7ri~{yPfp6wSu^dI7a?3E!N!(mN;$WvQ?gex(qR|bxMok77o~FKi5x~^
zgXE@fA_XGnqQ6UG{}~vjLM&)Lz&{v*u(HJnMaKujZ=ZHw%os)!=B=DRppDV}pN6?t
z@BTk62~_AySrX&|E#>?Nq!Yl|%xJrgcI@=7s!>$ZN)SI76YQP3z6-21!`Hb@$;9Xe
zk^VJ3TzRWMA3>fLC0*n0=iIOTSJ>@Je=dbPZP3iRhO}ZydHe>h!RgEb8>*ZcUcJt_
zL#Y4<BJ0vP6u-P~J7&dCao>@8h>0Q%7JA}y_S6urPoTucrVQ?HpDmaf7w(rOi8<+e
zt8JpZl4rNoWFnylUV726-4Z8G^k%&}tr?V<*GPh~Bt7xM6?-pM${u77Ru8Jmf%*>_
zWBmsM_;bo+CvVGvjXf?}d6o5R=q|N?XmV=W1Z+dPq5EPR%8X{r3eW$Af`cH<L1@t6
z(XVM(vS-N4L<$CCshdJ<nPhL|V3x{u36;n9kW@uRjE0u_l+vhNt}p!<ZrKr~kuxET
z$DuP$sa*T1>Hb7<mT(CPSD@so?94>Z-_KTD-N!YBqy$2#5N?iZz0$^C=ov<bCYzM*
zNP;uLn|Q>Wk@$+lqzEDZRCUqLsG^-ntb7oTfOv=A<5kx9Qe+1PyRS#_5b|GRndL%v
z=zmyA->7_2n0YjIGw2kS3&WEmTLv;@w9}&`Q0cxH>p*D>#u5gHmH^7cDi8<TrGF5k
zCdXR&Y;Gc?gS-qPTcc|SgnbY2Ola7tsc69Fk^eF$dgNo9O$jhKa0vtRETi%u&Wld_
zF09DnYJ`SiJ}pT{x`2Z?ZJTxtPZg%=J{nbt@Qbs9-$$g^d%>RCAA-f<1ay$Y<<hry
zZq|tK;_=S+Hnd|x7$+n`??Vu_@YZXy_;GJa%-pG6;=l#4Vh}ilT%a!!rjW^#cP_a+
z%zP4i!Fpy)>SOjd)<+gWUBu>BW8cMM#U-^_qY<#G<fG#nT8JWYnTh2>_QE0J(@)a1
z(cCu4H1e{v?Y5-(%P+U@&-OhP|3wmX*$$LK^4QnC5+6U7Q1WB9pV28<>5y_9KF`Tb
zgB#;u+x2YHt*r-@vbdWGh^`L_ls0I;xUNFNLLNlSKtHPuzej%F32xB^N5wtGt*%Li
z>Zdlkd`Px}R2<J&`B;e)(J3LIC=G7iqg|-np8nkn0_P<@A@K#nF_YTqwQ$D}K7zK>
zkd%Hz4mg}oq9?k9<4%H$|1X;<Tqd@ee!;$s#7K{-b?Niz{qFEPZe%TLv)=~z=SNqi
zhmS_n51T;!DzciQTF4l~f?}R~-F_|yf&6cb6dH*!QWp&*LMi=44k8z<|J`lEaW^`V
zt`p<p#5Q2XWLZrWi;IbP2DWLXu#r6y3Gbp!5>a2M2;`hTr?)h6$ou-L<{lSr`W6nv
zZG^N_!FtCc9{n{w9j-0#1ssYM1Af+Dxs`LGQ=SaBk9Lz`Q6)a`O6-G+23p#JM-l^{
z^1jx;ki$2pJrll0o`s>7qMxcKIHs=0PZx!b9h{YJ)Ih#@Z&-wOJr?tKV;$<9?7U(Y
zCpK8}{@4I7e7gmEt)Mh#OtW@R?D2g<?h-h@5QD(c*T)b!IN8nbCw>~xOO1yS9oE(W
z!4<!m=$+nco&4{1<}5Vg7`KxY<bt4x1TMn<)ovROdCMuct&kw{H>YRejBvnqcw$I<
z<qCt>Q*)>v=G<p52{$%lEW@rz9Zx)09beCkuGuskuoTS2wZKMd%JZCChRB6MVg3X(
zcvx7aFkfVi+Kg#+v*p<uqrbcMjyJ~z*zzizwU9%I(ut1QBkUPdwsSw1!Nr=tON6zJ
zh%w~Y*W3X|;Be6`MPX@e;=iDONG68<#jDZUAeyPnKO5<R`M;hSI$q#}F-Dc*@v6#D
zV#4+d!|@q-=pY6+S0I{V;p&&GTllWEDvPmE`Lay7<Db8VQ`R_AwBgywi4IB&)uTC^
z@)m5UQQ#YaG~{6<9`=UNi5A%8hHsGhAU)h!!fE50kf(sYOeXs_<W&m%VCrH_spA^O
z`&g-vZhO!=JjE3z<Dj%+z+sBtL}58{5%!LMSeoT6y6tu0%XUHE-jH{r?9a1sR}q5(
zn2p}vExdtu2;Fi4W5MQP#QMsb@4P&0a>oDXE(2%}QO-}iPC+)v=&&SiIkJKfv7H(1
zy<K9b574)jS-+9u2lzv>eRQj=@TK2`a74N`6^*Y=PGM`afjK&k3EyX9upoIBcx?r#
zi=22As9>34zu}xAx%3g(AzuP6aMkn89Fh3smb4A+5EOAkKR9t#XlajBE_84<W?kei
zLb!6H+}*=g9X+u#P6f3sXi>`6BPceub}T^G!WQi5+=<o6j@q3Rx>k2v45KR`)<dV0
zVsi)~x#{8aiJAX^lJZkf(toK|WG3G=EZ__Ra-cm|2#^NYfDcAzoE+A^0I|t7S2rE>
zp1lRuqr6^GqSvd4O_Z8yz-1Y5I5!rwwjUJEW^Mwd>t?qk5tI=MbV>BvE?lr|BO8MD
zGN%pk+u-IE`Sfj5gG3^DE>ELm2ZFbf;DLAvdw>4t@Y2HdcoMe)mmUT%5{xdewAa(b
zIk2T5B9_-t`b=(s@;xPE=>_4I6T1nUM<1Z(FgFRnygZ%8bxTay&C~)YSv5_Pyjob^
zF=>epyE)X3my8l&$G~lL`Eu*{Z=8z|H8$Kas3K*bVyW;VB4iq}NP}OAHry@uv_}%%
zFNqV<*HsYy8RzO&Be%z8OA_txOgSo$@gQvsTpPo(ycOv1;HT0LxTd=tJEExFW;T4+
zl%bu3zff~E@s4<gfSjTUK!hz>;qgg+%!?_3H@hWe_)44D63hJXG;}V`OzZaH?8(qE
z7Yke!4=1^JVCLXtJUZUq{dfA3;h=gA)w7ihHx1Yzt!Qd9bx$iB$oi|oWTh9_Z7aF4
z{*en%UK&?j5I+8!qnsU$C%GEOL<!q<O!Dac@@o<&_lotpn&x_8ACnHWv|I5uK>d?1
zHk+WdhX)KuTrkUoZw)8x7gr!G4X`H|8u_{ijM^#ey)(cJ=MbZ-d~8Iln4qHNLlaFM
z(-)yj;IB~$ajU?3ZuH|^>wKPrw58mA_#BDB2#k%k+$6Ej9^4o)#F7RF2I~Oxg+}h)
zH(dWG0@!~wWk-1#Vava0YI7XJ8;eUSYf|`6eUEvPIoV|pD~w0*ecaJrw`*SbCpgU|
z-LG5dI@dWiMuHZ+Cy*h8x)P=^KkRfMP!>y_#My#u<W$GxsO-Na%=(z&qK8*f)86f<
zatAzOdN}wdwqBwUnds=KAE*%I{PuNW)$`qDR4n~oN|X-@GfP(V(lyrS3k2JZ9aTvm
zm>aElG<^Ru-a*{2&9m_gVWTKMsOZ=I9}3N5I5+v|f7EWTmM4KKt;4u%cf08FK5l?%
zNm-UaS#i`I-4jL!&joZ8$iejTqU$TdvK!p@0#|iJHP4qqs+aj;$7kJmH&UTN>O2oC
z3uHMd@#f`w{clk_KP77a7dZl9Mzb#ngCaaZ<sv`|5Of{#Q)4mxJMn7gAhL_1Q?^fx
z6f^{w%CQpOB51+0@ny@+E<3usAmnZWz3CV(>67?+MlU(jpjt_&-zcYBa#K6}rVT8<
zxE-{4JpI40Hk+JxU1HQuoD2LhXDbF4?w*HC@<5rrzYMy;wFzrfBNvE*5?t#)rXZZr
zwZ~M>N))A)rQOhnE7l#*br!Hpa&)%1JwzRP3Jyg*Q7A0NEZkh=>#T}>tCrXu*KA~$
z!7>Kv#d^V=m{R#@<y05`Mc;YR-j9Xn8W2=eZ^<<kuFEvEz#DfCw?7Iuz@m*NjxLc=
zMut$)3<ytNbYG`%&{0Skc^e+)YB^MLHo3PC`rcXwV8e{Z3E&ai8Q&ahtFFc1hR%RM
zAk~V~A>cK-VX4jRz0t@s-Ge_K`8>2}u1@aSr0nOosDo_1Xfq#ji!~?*RvM{;%J&P|
zcD}mT7uWXsr-uZ?>N_WNJj8|Uv6ZB8gAzfR&~#1==Z)~k8+ud#<fl9;nC3uoWO3aH
z5GHDzJ0L51uGOB;1%FTZ)oti{LR|)TJrM*ZP?b$mMiP1SZ?|c<1AE%~hPZ`Ik6U!!
zOJv*7UEoj@FRgqaP$YF@sS!pH7rpJr8xt$48-R&Ojwg4;_qPm_PX{hp?~q0xDTg#&
z?eabJ4N>y2oM@ZP!r5<d3(4<s3N9iuwbAmZhB-X9OUQlQCAu+f&cAZC&Wh5zg@JFw
z=hmyTXhg`RZ`6ga7H+JXa;x|MAA$lm3oI<&;A7a(v31j?lYcgPJhGhCy9;-VqPsr|
z^|$S=o!r3blp)8?U+%G_Vs@e<*;gQ}-fP0ri(Q&+Gfl!{d4G@J!}8u#9moCa&x$E3
z;n$cd`<{o!PM+CuH*Qc7-W_J6^Ue<2-Q!P(RaQ32NnB8<7i<6F^6<_V-c%fWXZI!g
zIzPJfxX^D=svp9Hyiz-pq~QDkx4LKdFhaHIgPG?=x8EBk{lZg9jia>8<od#hD)1W1
zx&}I!@70iVrfxEItUYbkl{dG2m4rVy>j2;5+?=>3EM4Ir9YVsQc!-?Qe_h>HPkxYo
z?0)8C6v&S*z9Kxmx|>d+fQn{G3Y6JlkG{Ie9suF_M+1C5Zm40~iz>?n(^B4+cd-)y
zGohmmUY7pU+1*v1xR8+5%6fPbw-pXBcmrLOPD1k<PRZ!T>bkU29E1^zF)e3C*H5>b
zR(4Y=d1aCSEWwQpp$&8leP!e~>AMai8#b3rd0hjt0@57Bnit)=CjFNSXu#~%pzITf
z3GzUEaDbioh<7F*=H7C)Avy$z0h(O<b^1F;^NL*K#Y55tQ93yZ4AS;7f+GeD^gfvt
z;6I&Wv&fI;71-?`Q+AneQQA>sBRnKO`s9!FZ6@<`PQLp~7vlCsNH!T$(*_d$h<QvN
ze+=roiB|um56Yu1F?WdttoSbd#M<t~!}?<inVlqrU6%5qd~WZskaE(4<h)o>QA1Vw
z+Gx<=zR?@!g(>-6i;Jj1*ie~lN~0)3Lo^Tw@6S1*^WIch0b*=Oo6u5GF$H^YR5+|(
zwBtqLqd&V8PgLj;*$|3~*qXi13)gH(WfggO6I7Kp0+Bo#I|dK7AG(FhF6*L};%0(m
z_$-g9DYsj=<Tihd!);l0BOh*|g{yu=&v4y>F2#dY|GR-|U0(K@fa=Xp^lI3|km;}>
z$_yL@7u|n9Z#Wdm63`c`ZBY?tf~wTVyxT>CXAvt}$YwIRiLn#Weo^SSDYKH#6cJh4
z`>3>l={8k`!X;f)Zf0~d#cruJQ=-IPoViISbXA}MgJIdC($R>e#9R_)P&}B>#X9kA
zkwZf?v<RQt!@~|~UA6p0WVdJ_&t^?jgmn4Dg3vAU<!8-s)S1l1N5}%3zu>a4$pBj5
zb#y~!lLjwoRuv5@;(Gt}HE$h(^_wK}H5HgCXGViYvC+FO2-C{C7SlprTrBmzp=!AA
z`tVG$Yw_@YsPz=DXuwT6FDm~q9KL_o;<5O|slMUZL7al3UqZ)Sx)vAYMiW|8VNyMe
z8b!mm_2KoS=mBSrn!0$TqsFkwEXMM?m^M-@u`V^_9w&>8-YOi;Z9n0taLV-z2p8&_
zBo%4Aj(KKu`XS+>ZM?Gy)$u4tjp3dceMWfd@~*`t4&0Sb^IpcIeDiJUi5C|_T>N|r
zZd}o*yy&~Jq2idX#ifMdL!V?Rt%Jy-fnyQVj(s>ZpVXxox-3$7MQR=;%$XuU+cdBj
z*&Ky+&qZP9-Wp!m&X=51j%x-df!Du#Bkabe;-ELIZWgC(cnQpDpC+$0G;ZB0x1<e$
zYFeT}gL0!kIwuBi<qJ5rt^)DXSFmUt@^HED%`kH9G*l21+!9R~lB3VwzaQg~Q(j$7
z2C2DbB3MkW#4Cn6M5TNUM^p`=kPId$BLJFdip+}&3qSx~dm((b(&t%P$sL2P#(g$w
zC@>pKS#UVRK&efVRbqO)_9W|BGAf+WZNu)=6Q!5qo|ph;Z<YPl;tv|dRRNQ@xHzV%
zX4RTV8%K7DG;}@!iyQP4iW%M%&OL&CQ>`#fnR7U17=%jX-rtRU3t}QB6#gf&n2;;R
zaL~?l>Fy(CEh4b2sDFdkVd7McX3O-`F+-W+*~3E35Pr)pS22C98>F5c4Y)E?j&oY^
zq!OTwBKW9qJd-*9n9y^u)1<!3fLKflLR3bD#ktX=M}%wUb}c3&3^nK}q&hPy9?6kA
ztHS#$g!Y=7e4r%MX=x67%<+#D0t#sI<Ks+sh2zn1Hk<C}XCy(E)HiYNNkyrgsQ2Na
z6XZHd-aOScn9QhRI&@rLMMUmU9`g;zn80m9YndZnK1E^gLVtne!et~Wt7_r}potSl
zgt<qufN&Z`g%W`XpNNJX>U1+av#W|(x!EQS+cL8seJFRx-A9JPgLnz{kgOnBkKK<7
znG9sx?O%`@CfhdVkXF#>D_S%-Ke}snSUl7Z0I32Lf(}zIg_(Z*Mz~{8*WyDs0?Aoy
z)?uR|ub~e(QE;G;3+R7n5oEy1Uf#(M%Sf~|(Sh*kQDd-%JU=6hez<G#P<)0Ph^oQ{
zUNV}im4Ip0-r}H*X-51^v74cs;AQ88p;gYC;=5yDU85MVxKv*B)~fL6_B4{84bI3K
z*AVlFbrT;!onh!|0wtgo|1}Ce!M6vDf*P`-AxhtrB9y~MGvaxR!aZ<<Ls4w~hSCXZ
zXoUGQWLVd%=ex)-#%s;Qf7V9B;7sWgeG`W}o39Z`SBii#qgST*i5u?Bi+Ic8!Bn*=
z2@}qxe+HT)s5he=V8`zkq70^mJ6`sq8{e@6RyxrajmnR*FA06c*&rYe4SSKCDPO^X
zW0~WK*TW98x`-nUtsxt@&k|M(f;2UZJl}b0X;pQ7g?1fol^b<EF08sZevT!&ic?TB
z7+C9;)59u$J`|LjT%hc05p%xx+OV7(dr&?;Tsi}s)tgE~ag9?`>MX_N1aW@S5I$<@
zT0F+p2Z{i4`Hlrwx%;{Ba7C9V`0~g#Sh^@~k%QGYC))h1#G0?%vvcSgQb8gQqsCLG
zt6x+<IC1|7Zy{q;lcLAb`iMKFZ26GH9wptM;39#_8>Yqm<z-^<=pXG|l_>jxx9~w(
zuB&zhA>P^9X)MvE=Ox}>OAB&G6D99;Xb60AyVUn5CtCZHos+@UHPkEPbu8z;c0;1y
zk{&xE{Ee=cy(4-l%MRV6#}d@Q;w1PLIx~oUR<z$-JL}f&OHe}4T<WHJaVdEQoPLQ-
z___NMt`#D$sST5#4PrBVzK!}%_a(&$92nUM>;%ohsNOGnslis?+kJ^3^SY_1x+-IX
zzrwNh!0A|35k;xWluS8A14FZT?Uq?d=S;P=1=<MKz_fy}IpV@_z>nUx(R-f9xa%@o
zvtwHuv4T=3^`0{KZ#FU%7iBI+83CM2Iv}iwxA*^T-)$SeQa8O3#Smp&PEh&<kSX99
z;`)ynq3Wni!2(`rk?Ybi0kWTDMqfT{2Y<V<W=#U!zR}8G!=k<fK#;F^ol~1&)DtEq
zuA1sF%J>%5t^#h$M6=oD>u~p%t{d<P6fU%P5KXd3l9T#rdwdVvUx8q84C688W!Xl~
zJ}unUxUnjRSPXQwDvarmw=u~k)-*usppR+r??3+xpPdDraQdsKBT+-y(zdb{5H@{P
zc>QK?BexM~0@oK!UWjhRk743vcp`6HWD>a_SH&;wih_+J;wbd6&P{bAUmroU@4Or?
zJ1xD2E1;0jWv~XfvqfLl*)Ek-?BVimfb}R&SP5h&y=4oVy)uu-HCI$t)s;mOgPOPK
z@*C4f6=HH?YMVUKMLGo7i*yJDv`_}?uk`xz?z%B1v`8Y*Wg#2?tU+C6;26U~wuP(6
zZ>{~$;fZnSPoVXTSW}xidAYfHGAd6Pme}uFKVMPwpOX_~`}Y_zP>j8L771ZV3`4S4
zKI{2cay?<v6CYdScu%#4wnIugC0A1Rw@*5Td5cK2#=g`k32YN-KuC~B%Pw1nHRscU
z&;!?(4?7Wa<fuur#pL4S1@43Lj8-@C16p9~!d-5w@XMXvNbI^Ni)@UOfhzSPu88CT
z*gouk2g%@Y25IF?lje)GBNR>q;ap?)9_%ATf*}<TfiO7Jv*s-w!gjZI6<js40UBp9
z^ZTa3KKJh(njaxtUWyu^vilK@0PE&v^`F2=I_@3bd_4Y1<?M<|#p+YeTX0EZ?~wl(
z`WVtUDLfcPZBzt9M=U}}-<so9KrtzdwNaEkKYjKP`&FCEO@O&Cx@fa-=MG&zfB_aJ
zTd2h>L--{P>AUwx|9~?+SoJzIEnHza9{*mP-uzzA512>6v_=?ow12Pk0dM&)iP=sP
z3IS$MbvJ6}-Jkx@%ARdqAe!)87T>uKr|<Vk&kxW%3tG6hRicW)EEtmh-BO+kF?sRS
z^q<<<2b?Eh$7<fgn3oxKDNR4|lAa%6u=$wWJetau52o*RL%L@!LA)bl1GW~d+Whv=
zLgh4(A#G?9Pecw3o&9`BSX`FSL;R~1-^+6)bvymwFzkwiOm%pC1NjnHh?M_Un728$
zXLbqiQsJq9^9)1*!N(kL-Kx_Ub72)Fr!bJ5Ts&+tqv{G<c#n<dV2q?@1}8j<eqWZJ
zY_dx9Q~X=Yrvd)~4uP4ReH_UIU=p!hI0y;v&H16{JRV}7sBV}-W>PjG+!;PD>mrww
zk<>XO6G?V%8c^S}uiI6sQs|OTlSga8#<Gd>?HAqrn$6s$&8w1(Ditax*Utlh*M4c|
z)OpkRmhxnMOGaJ2Lcq9(@^iD&Fp!siXqV*k1FZDuJ|Zpx%hOnvtd-WS|Ns18|ET@z
zHfKlLSSK&D*_sBb+nUPtfKgLkwe8m0ZxpHJigbGy3I#Rm*z+~phfQ|uS<WwpR--vl
zS1Tu%d+_HMyo46qhN5(3bu~Qi+n1QN>NjlHC#Y?MID{qe=NX?he%7GCE}THv#UF0A
zKf8OY%Eb`?0B1+D-r;V0O^*>UTgk<W0S?&u=7sjl_C3x-oZ_AW>+x8M=+NiV`#;rV
ziEb~QcCJ?JhFQ@&7uq!+bzd@q1TRX;9XIIC9df2!|7Q0kMJVA(>}SLaXUp8O@N}E@
ze)lEhBb^9P;NE`tfq7>+(TSJXfKR%QX7YIIIf*><Y5KQ&+L@r#_@RPOkU78J4VKa0
zpQK;$L61UNE0UyBAw#GNFGLe=Nq^@<FV$LFS*QFM;~@JQa_7pWbIHo|gYWKI2#pU+
zmcgqhQ=bmqmi*sb^xr&`e#rG*)ZsvxGRaVh8vwnErU%@YKJ82IwFsaa>ca-gH8$s`
z^nIS`suFF3F+t!C#9@e{!Xv_@E?&5edslVDdG^-0u+5ItLT90&YS)BuI);HPxY|bF
z$<;%qqLgPnX7A?N%CDXk%~)W2zVDUf#Oz5`7spXWYwolChjyoKF{yzXF|vu@;-Q@#
zegB)i(WQqPCQ9z6WQ~}0e_bNG{bA#1!a^XAURbENi3CY#+aaVM*hBea$*oP|Fy*51
z6kU}WN))Wj!z@tob#`wOo{bIyh@__~0r2$I_SaN@x)cls!yn$}YJvxbn{0mEG{|#I
z<MtHybjJ<$<I$unRlY6~Cz6&&cN783V1{)A?Lp-^m9K|nc!K5-b)}uN!Az|6HQV;u
zuG<SXWadq21>`wOs&eK;a=*yun7qDT2kwDw@qMGJAve0GN8p#x129^%=neEPOV!*S
zUCa7n#NcJ1SVx7CRw!BfylvUZJ0Mdcghz!#zEP_Fl@;dLCvD`WDF+j(DJsHES=b=J
zYbJ%WJ_*Ot=RmSlk|!skq)uAN+O&QEvqe(#wD6Fe;tn48-j?0lUC{#L8@Pf1_(?CC
z2J7tojqULrcNv92F~{=J{)7;K$#)8Cw&@|ao^j-2bY~yddDj~fohJ5L00$YQ$aTSB
z{rVC}b!%OiIjx)GE^ua3HA$Z3j0oG5@J!X|CB>5~N#Tfj(TmNYcQzO^clDa8hUqFp
zN@P5YFa13$&jYT8bdwGEClU8Sz!w+Iq6aN&4;r$f!Pwl<JkZ#p6IyL#JAYU}iq2Xx
zOCn-qlSqO>zBcC*|G+TnRgxwRQgPc*zv%L%cHap91fu6OFyh)&LW^9AGe<8hYik{w
zY@R%=T6vy$6NJ65GCEu|i6Wo67%H0x3?Yda(sq6{cVW2wFz<3C&@EhE^2pc@;rSSk
zFZEil0Qe+5%2Jw-XuuiayK}s!BBXYPo~n>2<F)Xu;$nJ3jro&laaWU%E$TQr?C@a>
z`eWHo<#~bfqdjjApRV<WqPnX1BiXrf%Q)n<@bTLY<YN%PZW&`0s6^N?b8idhzU6HN
zkUg*mZhA_v^yV?)``8dMiZ|j>A=jYI4?H$3+k{b}8drK%Pfz(kq*6oZ`=hTk;$L;L
zZN(_?24!vinSC_fUt$d~<6`w<eWG!5!j0ehkf}eQ0-=AR<TGeUjSNUTF)*&-VW4ic
zRn3Yn?uQ6_>cQcjhgdR9V9FDRPbwLY$X8V#0MA*sXjrpke=XZCk144Q`JEXmiC2+p
z@>F&2v<dOL68xdu%Tfu*`m3yeD4o%Xuh`dbG7kuhB(Sw4|7K%=CAgHJ@SJRD<F8Nb
zp09jtL&!FWW<t&jXbnIb$sHc5*eGO9uC;un%p7?p-C+q$sv|ew#7(44qiGSE!*EiB
zH>Zuj7Jyu-I&ApF7ua^za}nxsA-=lFTI%ayk$_dbo@=+B;thDLbDfZ>gBEEH2j<)1
zC(r^}CToQuR#$tPRUC=P<J2$eP+(h6+PFQfxS9+P-cDFZf!#<u_wtZrc@ma^bVC9_
zSn43#b+LaE*pPtZxPj~Ohr#yTT;2fr5Mstq$mNY-5Ir))#(v*JLm5jl6{ba!;=cXl
zJQVF~uMhQC3Z|ojW8kRPg*k$gPb`)M#clVo!rsItiPttYBfB({_#Jp5H+s6%&b+MW
zBA7w}_!5+gzaj$ZT>Ign9*Y>~27%}pp=pW((HB7g#nsAKmo~Bvlu*1-E1eJTrxNDT
z1MJsV8If$N)eX3K`OFy$e0A5otow6(kqKf6#Y>V~SV_DY+>%>t-_UarT0$utD%nWo
zT$qEdtdH-ujGucfLc0|VMpTOD7?iq|eze_pAPY$(H9L;yFoTr;NdH-ub-7P@AYK$c
zU&_TqQ_Jjtv;A>NGg(SESSl7ozO*k@*y&gMj&kP8^$VZ}CdDOQY^RlbfLCcHAWuUY
zReDLyf*a8p2inYL#x1{>#+qiThsl<o9WA54<h}72$aBo)RzvApzN2{BpN_U&7sPFq
z<ysy+XMMM>uoec$Hd9KS)S1u{*%Za4cAjV#4(E+*PN^0g|9OmNS<#MVHvAPf3lJIi
z%{rD%BNo`e=00{POPz%`<YbgV=8~JmU6dF7b%t&ApB{@io4_%mcNP1AP(B)MTNLw#
z>}90%SKd5i1L%0VU81?8wE@1WBbb4_&Dxz{$1I{DhfK9#fJDvXIw%(1^D=vW2j6B4
z_}Ult7%!)&`~7xwCNFG6TI9<?-c6Af|0==uh-AvDa7haqq2g}O+gM>D;i{X{N<{)J
zvz)}4CWAX1vSAE`HO*6jT<YciqckHR3q%X0F%H%f<eeL*x^AlC_Hlj7jp~xN^^8<o
z<>Yv;X@Q5IHpzaSnxX=b5{Az!8a}V&*LuTPL>X3^-!r~XC)r1wb10QPR!12`ZdJ-n
z(chGrv|Fi7n8||3Nl2;>FRL0VWI|wV@_e6MY@S5dVrJyCiEeFlj>S8iL&(HmQSeHj
zJnr${*;xGbeB^W{x~JvROBf*5lF7}}wYBJZ`hK5*HnPRP(&k~0`v*!ulg;0qqe?a#
zcpvMHaDmzDRy+C*dck)OGXUI}m^@bcw*hv;tbcAE;lzlzag1YXUje*CBP#pAVQym?
z_;KU8k|Iz)q}>m-`yfzASB0Rts})StPtFFHo?~MNFj|>Fr*Iwi%Ym(s?WX2lxPTr~
zLcW5O*51U1mCvwrn#3Ken^<!>)R6^psNHyklXJ0tj&m9Oi9_~FlRd*xg5XP0$S7;$
zU*?v;hxYx`jAGMjE39S#H6%s9;V*HC{e3ut#ZxIseP`9EP?MI6x*~&X{2fjKtT6Qw
zL#Ac_G5@t<?EAVEV{=Q%=qOsx@>G`;EPmuX-;uF|Mzg(s3N#(KV9BXWhg&wu1<PTE
z_HY}YWt(>51r4l;g8_8hmvM0jOBdT!?Rg=#9w-HYJi*7EX!)yHt1RVv;|so5y6|Yb
zeSgdO7waA$bmRv<&h%NAH_ou<mUzpMq#tOWD>CYy)9i#Llr{o2<9vbl$?GNyPW|oA
z_SshsMS)I}7!<0PcA&lVTj16%u5AoyjkAVQjt3@w#M$=EA!rmrX)x%B*<@7oPAbJS
zuzG)>6>_8QX~%*&p>-7XmSkQFD<nrFH325sQ`D9L<ywjhD`Ec*iT5J{ia^K?;haku
zjneQmRX1@53Ua}ZmHw`^)kFQYf>hlZP&T@IyK`u|5!4GbvAO)1W?&#fiDjGZ5jLk>
z43?o{+!{Rl@?>m(_%NVxkY;12u-`A<Jg`!w_ed*G5hP4=5L1QnaKq-&e^3FA`;h@*
z;jL>f$Cr>aB&2QHB24VXSX3MYZ`$UX4An8f)j_&%zGSh7KeDlpQ6mK31E6kUd=A#}
zDe3)0#$-mz-?!XXd<2Cxtql~m(C23f>B!Xp$E>kko^ZSmSsOJ^?T|BRn!(?J^{`q0
zY^0#nVo_8M1s>dy`<XE>vVH3rT|W7_v9+q+4T<pB&a3)bCk<QvxeUqcAm!u<&)VlI
ztGth{P@`&EVS1!=bQo#g<96&fJf{p4nX6eusfQeAFX8q4!#3v}%6vctq>jZEK}aS}
zknH1<qwNV*m*VDXt@#{L68|S{)-C7T94hWm5TmqC#}?T~DIav4pLoN+LzX;Qn?2_&
zk<t*`LpRwpN~f^cZpBieqMGWa*(|hH5g?}W{Vv*m%;c(#kn2V3jz2J57nk`UD7%)b
zAbEJZP>S*A^x>Z|<b2L%HN`u)IC=W)Z}#{=e;R)wDH@<nGuh;4yH15YL|&{}jH*Im
zD0lDo3=3Lm66S){8t-3e@5Irupl5Dl=T)!(oZg1GzPhyO((|pPzdtQX;-G;hpoHZF
zP@Hey_VefQ003wax*-J}Q3^9&VsB;8oU-FdwuP-Z7F|ZZb|otZS7tHh?hyW<U<+R@
zs%%UvR;uC_mYCc`nbC2#*jt<*&f^&7=Lf-SSv@${rVXQWb`f+}Y=IE8=*`uZr2dHL
zK1uLVTnP<}I4O?f^9ruaG|9boN=L6ylNvaT8fDW9Z~=pgpTJApVJxHAmN(F&Ch<Az
z1gg!b3bzjrPzlK)Z;l{g^<EhPb%pFT?ZR~zc-sgDmVqyAhKiqIs1QFG`?KwOo40~o
zP|Ft11u7+X$!OMpta2e6Bdxo+p_LdS<?)(xsy%XKY5=M%Fjf9KD6g#B+5a&WtYK}&
zBF<~`^Dt}x3bt4;3WpJWIuP`X_!#xmJlMuv=>3dsXr)?I8~;+MLD@FpqBH48ft5mL
z`Xe(@HYL;MT;WeS$~6p0m?Nj5cTfBB1?WzmIWroP<vv9~kqR$}Ava@&Hp*}^aK<gC
zF3i!?S|dS!MvGHhG~ff9#R-MY6>&=-a|1lc#Bku2VfDYg@1dj+ghC*H9v_rp1uOzH
zEulN@Q%!Hu&TCak>W2I=&YE(4#`q|)m8!KN<E$LaC=0fyEuO&JiV%0?iGzT*<e`1S
z2-QlGKT4XLE=bX*!g#fCi)OECz{W7)qCf2_76P^~G?kwkDGD<wt9sF+c0QHdXc|V|
zl9<XopE}hIxw}`rYxiE~(<wp^^O8bJti0VJHs?HlJW$Iq1scGViAgat+PQ~yp6E?N
zy|@D4K|s3f-x$M3Mu((Se6_sQtNcy>yqswwKQYbBGpv2z4XB#(5MaAntjWZiH1c&)
z&Y=6z(`Qpz4#6R84PT%NCNkRIpV`VXj#SKNHH%aV{>crk71U2Em&OfUboj>ZdCG@4
zz7+uudf{qf=*ai@Wq7$JETzb3e3|RDcB(W&@{Gaace33nU<Dt8_|fRdj>5Pf`O@A$
zg7F|?;|U;2=1Aa_&ZKAVW=HFm1SwWU4=B@**tZv3&TRiue182d(`BVfT9N{^lEboW
z?%qttQ$H$qxUK;&^Mi7mDI&e=eY<gc|HTj$Pyp%Bf#eotMZB8ULtj}C%%}^qcDib1
zWcvXdx!fjy3HQeSQd0>R>nkp~bf$d=kO@iSnMc-$#+cK^m$KO9S6hXF*vV8zYznws
z)NWTRm`m@RBZ>yLa+H`iKrAEMwtd*-=B}Ib(zxl<QSH(WNw&;P60s6}GO6d$tHS0e
zS0lKIs!5I=MX!(UIc7!Mvr3+=e}ps(enVmP=-F{SkNGypU49&1AQ*;m8kMBj_q1L!
z_b0uff})fbNiC#8fVR7L*nQ$u47bb@GY7@$)gYay<hfpFo%{c#14IeTYYW{%Me+?w
zLoA|aM?gVzGJ)Pw!Cn9R7X*srMkig7=&;rQ_Z3}NZNFf>MiJXhK`d?<rUgUDik@29
ztLj|r*Z*u2!k@9U*WvTRVo(AMEp-($Qp*AV0Z1F!>xg^O)uzCW<ZMrVqcC@mip;wO
zJF=pI;P;9VsKY1W@<jPh_<u81d9`iO9W)db9@4AFnciK23SPS_ua;gW<>;`IUccSs
zjsNv3tydh<>m^=AQ!C^Kqo(}~MLB_!C|gjke<c<j^j{evX^1mIF6N#mb9og&a(&%2
zrRd4(?-$oWA0~zqQ>SJ^w?VVxrv6wbsQmq2cHESVU#x;|Qtuu4VdCrfz0u11qJe<E
zL7&5(P3(BQzeQGs3gV4CQ!DXy+0l=y6UW@^O>95MSE;?6x(GMSjutOZti0b_3DldR
zU>{69-i)C!Gy0)puPYZj@%>jeD#|K&HY&}cq?)XWxCW|_I7MUG+?<aSI}A=si8r_t
zDqD%9rL{xt?{ZEX)ZAP~rI&RYgYN8s``TV<e$ZovQcj;3hok7uCHD6k1mbm4T&jUc
z7y4{?-R^G3iAGt#fTO}sfT!@ecdP7I$`m5v%G^;~=UM$4=?^x*YuStJfXQSchXKPq
zh;GV?YEHI;F5{6f6J>N`eb=Y|+Z(lTD9NxTJ_$b;JQ&Tq-QIcE)0r11f!k+t{i_Mg
zH=1y})jdf{bG?OdA17H+So_!W?eD8-fJLEG=<3mj@@RSXJX?8^f1gwnDpLn%&W+wa
z$L8=9E&)yt?pimQPaxgqMZex==iNz9@}@(u)ii{U|8lY&In@V+8y`oWF_TzDfoWSj
zV4u7gPf&^%7Xs>CkMnJQtv@6ot;%dAXQN&7;Xg05#0)-+MKxJoh3!Z2V^~z8tL@*5
zc!4Um$tqxD!uz9B@3Tiw<r!W+ZX8RQ#`@z0aMI~^!GnyFD;(T66@N_9kiOAHkK5R1
zc?o1sYR(kObLYXvqvRR(^4ok^IW22u^KIa52AaFjW?kXmC?;ZsL9))#=BL?rr^L(L
zfMhyT3JayMqc?7`W!L%ODT9eX;bZR~ExE$B&|nxlN}{i^5}uE`(hg8B2)L>&OO15t
z>V2bEuCQ_c_U99u>t<tKWz;ubXvKf}7Zr}vhd5xikP*Ty&b-BnFYpPGmS{#&NugyX
z%8C9s)4D<@e0B_(;KX_eO1jv(oEi6nWLn#1^eWJ4$-$Q*y6G0%?^0g|+zu&;I?Z<;
z?4)1xz%BMIOMyL}m?~!1hQ{LrM8wh~_Rhz2tSgPU0HOV2E%oQxO>-HXu0}-oSQ{aw
zBMEHpwgQF?g}EbJBPtx_ATy(%ZnjhJq9cVNHZ*8y1zJTj?zHnB@}F}dd#--iAvx`C
z$39B`ZVpUY7d@5mJLlQAGksMCHZ-H=;xClfpJXTVX4+xz`vRZ|Q(6X8gIqXy(UUjZ
z>a*!zXvZvNuOMmG?RL-C@xs<kQ6&mxon#%lpJI2v<Xu3D<nlpP#GswH(uT12j0EKh
zO8|r}+-K-Hc4`Gbj>Fph)Pe0p1((^wXL%o_lqZL`4mbK{-)POn*5gL+W(YY!!Qvs*
z*&N=Mcp#OtNjib643puoTz9-(_LlcjS~)q@3CSg+<yY7ePCEx<2>!Y7lfF^)C6;w8
zKV?~o5zwT89k;l}F20c85eLs0C_wI28l!vfw2`m+T1XO=!!Dy^NpJ<e+dg0Ev*Bi<
zz$iRKEA``*cEkxhma!e1wmkpXvWDwyxPGjFY%GBCn<BuaUv%<qw#%(_@8XhkwQN{d
z&n0%r^Zpd07z0r@vb&zNWlOyWY+Gc{gw^>%WkGP`ueE^?D&kNP2!pd546`}WulL%N
z%YE<zo14TQp&*Jx^09kt!3W;iK%GqP;k;<i1-6$?H|T}xeQ|U^C6SIOopY@H{tmwe
zXB4eZR{awJbG)>6k!|w`Hd5HFf_dWQQ5;OP)8ugPIBywMJ#{+o!2nc-=KG^U=Slv2
z5R3{10wW+PJpL;5XXrbidsOD*IS!u5aPGl8N7ksM+@cf&F?UW~;*t;@)=g351-KoH
zz?9$gzQ)i^{kX?hQzPAAea($(E)DzfW3~i4^Yk+9xn97vC{Z6W_oD?r(Pr|Is?HzK
zwJIeJXbJQCdCMSJ!|<AVcr|Ve1i@{g$3&C4oTC_SJZbt25BDC<V+_B<x=$s@jW1(c
zUwcWIpvh)OgXJRyK1H3sY#L6xDC}S14T^#%B@e%6lM@$*r%U~DG0wg|eni#RFAl$s
zkADnfjGq!BcX3#*rz}12B4t9o&`VxEobB3*uw9ZSq%j3GYqL<hqeaDGHgCXYhSoJ#
zG|o)Aijj>+%t1$nQ+jw`MJjSu>-IkOzHd}l9R^H^zm4W5V=oh+<IOGz<1_($ln^{p
zc71N-tf+2kxV6qdj#Cp6-0(m2x?IIhSB?(Jct0mpH&pmUxSyt97`{D>5G?I-8Nil;
zSXK7r=fUCADxw1sLK|A9kyk~z*!qE8<GQlaZrzWNN(8v(GVbXd<uHvl+bv|BK$I!g
z4JI8Y<(XE6i=+||Ov6uW!vsBwI>i2iD}iJWF1<cGhbt<G<mGfQ;y51(ssSX{@d~@I
zv**Df@n{RIUSW?LBuAZ>Csj_;T@uR>LD62pWX;XC-xodSk$I;uS%oQ4!P5EA;M`eu
z*)u)oA<@PW%OLDDfmmckd5_weOM1>j<->`^F>YEYQQJ4_`@YrO({moACbx2jlhvPu
zmfh~L(#Lvw1T+|ezeQMRUy83sSKefQ|C>+2tbo_56)uWYi8<$9>%ENUxD=O@2H3}p
zN`OQ02e#|Y<h%sisUq%1$r=d@Wdu>qmWlTk?xmK}nr5vIjv+MV!=|$j3xkOm#eNr;
z1R*gp608&uHgSBX#9bHe>5UskJZDBvO-tNxd7SAJxq+kt>)*m{I(~~IJr+@uU^h=)
zKvJQc*F6|=T@o@FN}PmjF`@_zSLy#G;<IEs=ZC6I_gRePqLdt8NY>P)h{!UktOSjZ
zB>Io){lD6BH)tDKS5u$F_KkwWd-7-QIw|p4_dWC;fP2ylvtR*(^sFYa=a=5$KVQmj
zdkKC#vbm)U`XN~^@<$Hf%ib%)y;FNHrb#+jBYBy8>7*CofW0hy+G7tb`M3=dit*NM
zX^C)&hv;s+OMN%kCBoB4neO`lsG1%9Iwtf#d~Z+SM%8nin#k?JlvF<JlSf12<r^()
zCQK(4ZORtFir8<@^QA=q`ye{&UuW&EWuQ_vfB}uZL;@U6KR9vhLB2%XbmSUJHA$Q~
zb=SnxBjeSptB^~Z4}!#k?8w!_67TJ}hgM>A8LNZljoaHtVam?_OhAb?57;s*`tYkz
znc<73gQ_X=UFeX2sMQJo`9Bs@czgLLVdk#?s}WmCYNdtw6mx<EfB@5Tv1UfU{M&we
z*^#Z{R=ny^KJcxQt~C2Y+et7bN>4JabhQ8~uLFGcVRqbLM`~joDpk0#&4AztDaqg9
zVdF|{$>ILXLz-3LIH$kR%&(5LJMl-3`z>7Eqzdf<Jh_+vL!<f%dwh^L<E({GFMLRO
zxJ&Bn&Iy2C^8Ke8B*925iV*NQ$5`jJKFl`A5bu4IG!R2IA3xZ(*x$Qjg}I!(K`7Sg
z2UwKn4U%F26CK{92qrcRVO_BU+Ry{7Y8U@iDfbV^lVIM4Dy>G0NY0sPbvbeW%CZ^%
z0H4;c8F>y>5y|gTX-8!HFGef7n_x6T;87}zt!6+x0OT&r0De~~;Yf61sV!i#EYU!;
zO-jy_^i#1e0P;CP+@G(uud2L#3^9!WVZPj7jJDek^`{8U1Q7}Ob*Kp^<IE^|w2eH)
z7qAo)3ILEB(y$gn?Ty2&<sDx`)$Ww8LGmhwxO<g-R_Z;*TfM%_H;iGOX-qU54W43S
zYP|bFT*xhmx!78?&TkxP9V2fbbs-77MdLhvtkG6~>7SI;$z7m$Hq~!sq(|D)WBjYd
zbX47{>A`?nr`n^?odcs-V5C@~_dxjD%(vbLdBZUBS;WuP&)uinwJf||Z~{ZH14&ak
zb*dK&uH#hldcS+@{=Xe?Rj31i9R>;3c>n9Ief;)7L=p@q?t8uW({@Wc*Z38SMkh`X
z7-ZyI>DHQ@XDs_L|3zWd=S{-H^}YIrR<_AaLf4*a*G%#s6krzf<09L7W^}>5_U!1k
z@izMGAmER$wXb^n&!uUoORuh~d|A9R`f596qQB$RPxW~jPrep;a;bvPKVY-cy<G-E
z6*-sn5%J;<`#hgD7B;LE!+nlT-2O)!J1zATPSEJK14{NfI{xQMyWmtG$k0|L=2EG9
z;jpBCu91^Jo;e`D_t<<UN57as<H?aXh_3(q*^V2L>Y56}!V6F&MeD7$;|1Qp36qYI
zi`|)BSz&iKb{kR1<~21CoS;Hca*|lP*iJj!e?A6-H$bu1FMjhaD?BrPirIwN;>ns3
zKfi3#kS=2*PM}Trqhe^lHb(ay@3u{1Vk!piZIq@VOO&kF?_Ot<WCg>>i*Ga*BSk7`
zvSd!e*+^67skU3xbN#b6F}9=)@wKSKo+(2kGCZ?h{j44Iz0;N=<zZZqLe1AA2kO3n
zMZ5KjURE!(-^BDt6T;OcY=8iLct`r@)^mzK*Zt5`S*42GED*!I?K2xP!)HcuN}Y7%
zddj%)(Mh-1n_1pcKsqJ1L7T2UczB@=>E#V>bB6wfz2kIDg-0#XATep^1DC6-@3ACo
zlSQD9*auiK8w63{g-AO38*PS`Ray1GD{ITEm<(-lvpN1wdvvyc1$><Ap0E@#O(#E%
zkm+`~!~V|nX$^!It=ll!V6I+iBad&Ju`Kq`rdu5rd~Tny&{`reIMR8LW(ifPzb=QD
z-nH>ZdfSkiRwr5x9r!>Kemu39#qkH>tG9k`*H!zk@Zza%GZZ>#`1BX{R6*Q%TT26!
z=x#$h{$ww+(E2cTPeBMVX)W6%6i(;4{JpU)ucM3Hd?lfJr)Riq3synMR&34#envc(
zTYB;@>mv%I4a>S7G6!oH5<02m&TL}~@vq<b!#eNh4JDMnrcm<+yf?OQ%zxibYVRYF
zS6_T;89ntGxy8GMm;Zv#QUzR5K2CH_f@Q5u2*9vo3XPHFY@g6~89&3Ju6Z&6=5jDl
zJ&?|ugg<}v=VV-6S9ccS6S`Szue|3?SaZ>7^orQnq|RZY%pVe~NaU3|KD8Ler#H3A
z`vJjk+daZb*uV8T;(gE$c~^^YLi=zpmj%zU4zs_wk73Mdg1)ggyX}xM9o;Upe>HxY
zE4@rBC?~dP^wwdQ&HZK6ve*nHEEeZc_T%BzHaqsWK%|lu;itN_p1%}sE{CPe=#H(!
ztUovkE)mKz!6_H!hJFCk?DDgH)!BD~QplBjm#7KGlUQwUcksvfM9v_eLVPDw;#0-m
z>c#7~4HxMy(I&*)!?$2c1D1dAEBZL?L%S?CQN`p!Sgn{%eDWwtAyYX&)%w={+sZbi
ztm!I2&Eiu*jGTEL!d)`ew~^hHYB|8bPAHOwiR4Ec($ibfz6kl!ZO40T<{q1bw=k@-
z@T0_MH1+lM(X~0eJ?B?DiPhmZ>nN19<)hpGZv8*-9Uq0fEB5EpledchADb>xJekVM
zcsDRMDs$AhnJ%t?qcAl}SN_M&@8*MpChFs3Ec+azdt;?-wvRXY9au>;HZ8jUsF<}4
zw<E-c!ms;4^aXN|2>mfH^LRLDppT}N`O0<Afo<;hV|NcTWtrwp-4}6nY#Ckf`05=>
zF&NWCWL!N*p0lJ}xkv09PXCVQS|kF}V**ilgn~2W2dy3GxYo9jJeo3zWl(b6=}Q*X
z#ttF*v$qv;PKm}LLn%hUox}NW`BPLbCtPj_7f|9uv2eTaY#Uvtc_=exbeeee_+7$C
z931!<9vf{D5{=GqVp&aaI@JH}A9g-RMg-W<T93<*<AjX%t&i<M*aHp2z^a<ufPqi9
z5Zzo9n#?F|g&nKQgk@qoV}9&jAD{njgJY^6?-~X0v4~ls)3<NhNsNkjikfG&x`Y#V
zR=>gyj`vZ1$*?j^@HiB>2|m|t#JzsE^7wOc=wa&WP&g8OLxcyvVts=5Jzf`Wd_dPX
z*S~6CCAy7Z;Mn@dRyE`CM9~43{_gf+&d$6?w4=cE*$kHCV*GB|uhw!mD}Xmfa}zcW
z9?Qx*>~}jX_U=GxkFOL4TfW|z<=O4Rzi}_(y|Gm&PR$^O{xdAQDzdiK_Tgk)Eii$T
zbs9%wF9HADU-sx>{tlQ}ql6~cxkq#i1sD0_rNp6&P9-PH)ipDE^lzIIk7F=iYR!{*
zMJJ*;3ZGpc_f)OpK*kCMhUDo2{%w<xagDbPYjgjI`+6k`(=K*G!^)m=49Qo;v1p%P
zY`{yrA`jfyy9rk*FE97bD>ikxcNQ}y79HZ?fLF#ON-PSWeDDYBd@sL}%dc)bI2LAF
z`~u2>L|o1xI}pQOkzucJQz17DOi~yKAyzIAPhM&tp=R*5bb(|uUIAW;y(D2T?cmSj
zUZ>(7u1+D~WI1VEkW@GW6`R{@OE>toTtf6Kd|x>3!r<i?%(8T`bGTb%7)0TK_c28b
ziJ8%bgY26%8+3r0D07+1iSKW3t#~rDO{_AbwU)HJ*#BI0C>mgA{^_kHL?dM2HHmrB
zWw5gCZGhb4_!zM~z(1N2+j*5)nUoEZ+Ej4hNM0Kq{d4+j&vhM9=zdxyN#&TJ4;J;;
zEi3`M(YGbxAppvWPGUXzT|3)BOT4YPnZ8M*niahsY-(4Z;2<s`f6CS#vbS{>&u`lr
zY*Oy8hsOq<<k(gK$H`?yR_d<yDH_?jAGYcB+C_y1(IeId7W|v<(<dM+@WY|V!9>St
zP?B~J+rf^Goizv2F`?^GbWmTr4(AMfApk6;R)a%wiZ|QWE<pFC3yhjXOQ5Gp9nHWv
z(#%R~LQu=W``WiV`me}u?F0@LF@R_L*xTFra~!3m(znH@q2I@Q!wNlCVh_Z-TGSl7
zE-7@YQZ6cD)9-C(?V)R&QG{+_N&{C@;I3qa9eUbl@k-!jR8w8AO_i9rvXf1E(I;NQ
zsD%!SL(X24zT=8`IS3L+`KLl3*nfkaE<OlGD9Le3EPXLKEy1vT?Z~}o#OzP3Yjrua
zO5h`DsF3=9N<V$MzsGq1M<9Iy-`R3IJ4EtU4goObt;DuyiPl7R`K>(c7mY#Eb;m61
zymUXJ-nKf;8_*nN5o7JK2|`vAYVFEXXpveha|1|8j-=8a$JrB*EM55}oAhuyW##1C
zk2hFa8Ex{a=LNzucsOaiP0=+e+puf8)P$ZaGc!{^p~i}u{e@!uR0!$@{c%2=n_+!$
zPopQoe39SX!SL9ww)k0pI95)45W;j35S~mjsBl6%SslDqFL7@+#vG+D&@gIxq5Y(&
z@-`*Ev1NKaQB2UdUk!+PEMR{RCY*enHQ($THHI`1e$2Fl?f*{ijGLS0U73b943nXn
zn|HqaWSfuwR=gxbgyoU%8v?AIYX@pM_-I`-?xSV$m5f*M<k?oJRfLnm#ThG>1{jUI
zcMdJF-#N6jiO)5*PQlSA6E_(`#W%6H9`}|aFxPm7TsD~cF(46a#ZL-$w*{;b-gwY6
zR9`_2K`5VpIgk_k&%Lsboi)Y#*@$D3!2vD-kAR3D>0@#|We^1lhDFqvLP-h6A6>eY
z9f~g>Ey}k;g^n^#1kx0%ykvlFDraC$OY`g$UWW~LhFqm6Xv2nowW+<>690m4;Q=d|
z6l93q>)FFD`<FNQpkOCxDYG&NWkg_u6SD^T+3KzBEL`mP#$b2~Y8G#^J<so99pX`y
z)HPSOOy+(<i}1LS<F~OJn|Ncr<0<$LK%M{><uwz<i%_4OZFg~pYGT-^#Pe{GbLi-U
z?JfOwZ(-f>dq;@Nmr$_h4mN}PjKv<N8>v?QiIQyg=xrC&`0qzRSFwX4w+sRv<pel&
zO@F7iKNk`sZc^zw$qxf^P@946ifK}6lZC=(xobE7$<Su55{!_Zvw)A5EVJ$(xerQ7
zO*7}f1y6sc{Bc{^#ovjywG4w444J4dF@}GAU|CyvD~PH1J}EZ2A(q+R`Tn#72g};l
z8LhGVx74g(-?3}I*}&VSqI!m$EY#T-AKGoNc98%@WIL24#3Wm=ZTd2sv#s|xhHFmW
z)?Kh_xgGqw_XMjXlxvo|n)9Aq==7<r-m!(>`VS5xR2rd+XvNH^*O%5VqBH2J5>H^c
zOfztBXS#g%4O=N!OQnb;43IPv<-Dbn+O)#<#z{y1uHb5LU>ZpGh(=gtH=W_zMHB=w
zD!!@`08pS@_{3L-et#*o-RAp`mQwpvnTB|o=V#Q|i|iS_5;fQmd-(DOQ!W{9cf&Af
z86>vDX(01Bb2@8;Z4*=Kc#yDI+5mTGogIh7!DGMbZ&#vR@TO;uXu=xKah|SPT7=%J
z<aTuTj&|>%PP{Pa2IR3>GRO1P6Hc%Rr+Gtx`>Z=3tHHk#gEb7(ui#Oa+8dYqZ-Dc`
z76}l*YuAOz&rh-$v5)T%NE*G+57)ul*wpKsaPcZt=~s@BuDXFc*l)TFbPYn$v7`$z
z%MWhXZdQH2w-w?QN}_<a&Q@+?k6!Byc#o4_UgV#xIgJn2=_GF$Qzsa~&l#6j^l_R!
z#d+d0F#)G!3!P&=^!wJf8{0=K4#<+~wTB3YS-K3b-`Q3?<V#tabcZf^(5lZn(rnc*
zZzyQ4Xq`%+A`8pzEZfEQJj$OBO*T(WmLHSyxLw)P#>5`CqB-)GHIr`8i2w?!uCmkS
z#TzE$2s{D-8~~f^veL*{rmc*JJ{e!wSt2h<`#6sYGV^pFx0l$KSH!ErZ6BlP&j0S|
zVn3hY4X6@8pUP(gmO(CB>QHsED`$C|E+51!X<h`;GNdyzEIYoB3mU#cR}do4(OqEA
z%;W_qOP4x6Wa4t-pRdfYt;J?_k2Pihf&xxY$L(L@IxmY!FTByVi@(Nc<(^47dOz9I
zUO=u95#S(=9||GV9E>Y^*e|ibF_dT0YBD#tBXk6TRDCY-P95Lb_IxC@QVnH*{qoD!
zXJ6Xawwe|%t_<n3bZ<4Z@;dGE`YznpeyfaML`IX-AwJT)_gGK7%otZbw!_)+r60!y
z_8D)F;rLDif)xP(2z|H*u?ANhXajS+0V6WfATm*vho+P@PXPu+gM>34Jll>Q<3Czj
zPS6A%y3-r&8MMxnNh+mB)1}bVw@U3j0oQHvv!v!))E^>dqzs~3Ky&9DYX*G7k4Cq+
z@{Az^68(Lu9R-T25EMtM5am30>eD0aK56{!AMNsv5Yn37Fnx|Juo1Ii0~SoQ#j%Bm
zX%c(c4CKW37}ShvduaF6prC@<)q*~N@EOXH$JzxXW}xq}$U*2il#{}gk3xK;4UQ)n
z6LNV=L(EzTnsI|x9=aexYqi~vcRBBG2q_5V;P|=L#2!Ei?FZRI;FbK&Eg_Bij4G?m
zn`Gnq_?!_V#{#cm@KG+G71cKGQ=jwLBqJ_I6rYtES@V&0JMb7?!M??^yrY|rwlnti
zr&yF&ALImA$r5MT_k-dOD?QVUO2v@4eD(K8doQ;2rDiA$4eOCgvK@4k?R~JnCE1Hl
zNVa%!w4DPU!G{ZFX{3L+(Jm+3Hbwq0?nSbexO2QGb%)w%GMq?rallFVN@i3)-oAtI
zP;5ux{3?{3DQ|bPy;|!JiATUYUcr926Y%o~AGQ<Z67Kn9xLI_Y>n$zReGl40@mt_v
zARFv&jHl@?D}(#UriZs8WH97GdknCgZlEs_xFXSU=zhe89p{g=HHfpYf|RO#+eNnJ
zA>LHPLo|*YOy`-=7U$Z<%vs~nf~NWzve-^gKjaw$;b@#8dxe5c$rF91y$#F)CQkC#
zb@;tn4*A9QXmYy^i5>8g#%v>IcErneK4u%tIk9iobm}a~VbU><rQcfXwcc1%T^~o{
zQ{|PnCNHy**T<h}=45b|0sN&refgf{#<nPdHZhVQJ!P+3Z0}L=%*B}Cj*k7o?BXR5
zy4UMki!hTit6@U$$Z6@vpfTx2T_>@v@3x^V2csQST{)QmSUCmd`H_DAaoa7PNNE#x
z8nUB+n$f1=e!R%mUQEw8XKB|m$T#H7Cl>!ynuO!=iCy=T%R@!%I`<QICy6Z}mbY#2
zo-X#pWEX=SSP$!}ryzJx4FhY|3hTZ+^>W&fx`uCLfkSWB9`h5?`D4%7y9klsPU>Hm
zgZuc8SZy~P?Y$Fwfo7+V(&5w3+w*(49EMS49m-V(X9IAft|-g3?c28J%fJ)35)v?>
zy!ImP-3a14pQ*-bTt%DFL?RqSQ1Y(bhE^(X0}{{F&LANZUZ8Zg>sNN-o!;5dx>@+@
zDR%?u7+9CYM|Rhh-r*1rgUs@dZn@RI;AV0;F^%h-<i>=sz~%mY#pYf`gThbcNG-yY
z;Qs1)c0D*Y&p8oDTRawB{CI`k0#joWV|lFjfz-{&*M&>nzQU?5;Wd?sOe;~Mid=2z
z4R>4hRHr}ia@p@B%)<|Kw-R10qr(ng+Ry|2gM(q*ZI-r-h1M#gEe_Ry^UAwKz73+D
z7F($d2$;<TAh?AJj|237x1Yrp#m$!57II)0EBThJmBLNLe%w$s^=2D>tapqFB4v(;
z289<l<0wsv4%TuZ9Ap)XBR?-7%~U)pHNzP1E{m+wiQWO8uhn|Z?H{}dIn>-}^Zxc#
z9pbl527_bsYFcIfCbTEo=2`n=t?x&hA%nZxx#o@!+3WZDtD}(=VOd&vNTK7ImMOCq
z799*CF~`x}cJaA}Z=aqQDmaOsyD4GsCvE;Q{+PU<Q^bh0$j3i!+hV!n$A~r%er$Bs
zM^p%n@<R*lSFMWs;Ug-+9a-&FH`t{|`O|^TvLnW(%T2Gh(mLPM4bE8uyh{89)1KQ&
zezLtz=1r%f>Gh~_Q^YEml1zJD=37UI33!`pnX4@2<n7k~8$PlFL3IG+fj5ZIXNW2%
zj?S=6*zZx+2h$Rege(Hi$hO)#oN|Ewp2yUx*&ud__qdHZ{bk)=<Jx5Xq=_Pz5?_ar
zMY$80<E}e}8=qO%?4llFBgj<mZyxsi*c-+w&T_qZQYHs7>#en2zW3pbr`12pp=d4V
zbO5wV5j_75J08GXMi7i$PGIG_0Fblz?wk9Cff7!Y!bLi~LR+!&u(9`Mgk^7f&jtE!
zEFfa!qRXytTMuq@Eu5M_kwx5YgVG&w=yqYLu5XpOMeCdFrkX4qwYJ?SjAsq#VW1Lo
z>Rkq@9-n^09z@uX{lj@VtXziy)TdllLBU;{Y#y3^_k|dbKN0JP)SIcpea8-A)l=Ru
ziY#6}9`;JxfA41D0HNXd=2f-UviY8n%I#zsn}nCJuW5hT#*}ja9g0(uK)v6xxI@oT
zg&-r30vSZRZ|d(9gHOu90~e`lm?b8H@sAJQ`m;^^kAKh|lc7~bg^;o0ZCj`ScQ-^q
zgD@Re4aWXyE$zL>5y|O_*y9xA52aKIQPx_!{z)H&SXoV7i_|lG+8D^b?b>K!blWgE
z-SIF)6f1tSrSJ_lfXNZd?Yk{auw7<&3E&DKQ^|`3d<Zv6@*luVT?ZvOwp(`wiXcV#
zH=ycr_5irmq5l|g9o4}O`HVi4atymOc&N}$rI`3Mz3B^omm?7SO@V%c9Q3pzHjX~y
zg9?2j45gsvIUQ|!t2c6=wUXUB1;)<#HN6{B=DL>@MJsh<272H+_*Ekwmu>rX^RL1j
zWKXD4&m5ecHnpvg%^5%ea)o-1%?HQzu%(;%3+slXC}$~x$r`fPIFYa#tn<-*?HSpc
z{0?qLHAQnK7*3}-$41J)tT~AriW*~E$NdRAcc%@y-vE7w373<{01LQO16Gqy3~z7G
zY&cKBV%2UE(KUPbrnb|o{ux5=6(<N%%}c9(Nq-6GkFSr#HBrjB!|dHN?T1eO>Csfj
zL?m>GesCun^@aZ!T^<(?e$J;k;4?S3t#mrrYeto_?)Z+)=x!IsJBIdECXbLj5ArDg
zExpet{zef74`uemuDB|FAyyB1DL_theX0y80(nLGD5Aw%S{X-PAECw>zu+~^?4@7Q
zpTJYipRcDcY0}HvSsy6El?a)jYFhF4a>)*-Wx2F5D?H^N`<GQ=Q{ZO>+*6Ve6#>Be
z3+LL0!5eVZ5$rB56Kj?0T?N;pdX35H@;|{W%&6LrZA&Im%E^}`4}(D~9O6ziQZK3`
zR+D}U%|n5U(R*|4i&(WoLPC7=S9pHyVC!{|k3x5gt_fA`i{3xL-Z8caNj$~Es3^xi
zKV-J6TRT%UsVhS7h(uN%XqRGoVH~<N2O~VASZBKJcH5cOM_eqQ`tESP`16_wigjIq
zH^d#*R=cMcVr)e#Vb~hI2q}4-mBz{xKf_5P#dBTb&+gA+K68wXfTZ}qc<x6KA_PD;
zOJpBlr%GJPk3Ato{~SBm)<<j8F9wCDK^O!=Imf+120D7%qQJ7Y-r#IBR!^QRgF9!6
zF^|l&KQ=UQ$*(~tlVej~$F~6o;vYWL$38-7;S<AJv4Ru*0jZ1cb?IThDvJiA)jc5F
zgU*>msUJGqb4%AZA&JcpzO2q0xHV!L7u@>W@9B@pPMYc?{-I8;QrGKJWs(FfcCtNV
zMk*(FKE@8m$uE}V*|pN>V+@7`Wg0@?CEnaV)P9cp22CWP6{a=u4UcVpe_y*467Y3v
zgx{kHxD+6hV0Lstw%sdtMHn}1zLA5*pD7ND@xIo5{ox-Yv!EMxJ$M>eI%bGFY;M=Z
zM{yK7Ca?$QHcm*&&;_K@H_Gf4yKd++c-FviG%ao2n;G_$Zm<oQc)T|ZRN3}?RTgxz
zJz`!kSeJ`t#!*<FX*a|iI;O=k#W4c8H!}eRj=L4D+ursvNRXxv6f0|{wx;~+GBzE-
zG&9QYVsj<2whf@ohKyGnao8!Qt<U|`$Hv8<BlK?uVRwGVN#~X!Ot2hTebGFw>0u)v
z#x|ovWd;hE*b7-4_}ocn+cKamEJK(q-CKaHU&xF_Wp)vU2BC;}wg{m<2Dnn}6eGrO
zlf9(?y}~Wm5{dGhqdwWe`e1Kx9GOf7GE6x|wA<IpuHiE>y}4hqY<mo@bAwe?`}0z?
zC|sz78uIy@ud<^~ji0-Ho>(QsHbw1E$0iD+1|NhNdd;`HK!e+`&Pv?p6s_s*r0|=}
z=(R(v^DX`ZhyUV@CUAgh47bZP@f<84&0n*%7(|#|w6#4D1J#Fl3JErFx`bvHUvWsz
z6OL@Kr@>x%m5RiUy()8`HgC^%_Vxqbg7cajBiw_NlmW2Bd%KvjI<$>7qfHqCNUNY8
zB8sBt;W%WdtvJDFJ_;}pnY;}y-E@Y%b36^}42L?9q8{v0ILBu>Y`#OKJsoe`Q02gk
zf#;fFyN~rRW2mA`T4iIrnUMRG?TsYT@xCw>tgC()W7^pHT$??`8)fv?=Ja!i;3?PJ
zTiUd?k$AZ(okTG(aLbfs@$)&BFHye@h)$gcA%{~)MeWDQFN<%>Y}O?I;n?OWtqn*p
z7;zzjJ<F{){(gZ9h3M<-&|T-)6&kVvG$aWr%9kVP?s%J-y>y|E48dDLM3BHmWwuLf
zs*H~%&Y0X@vBlt`ZkB-(NMFuK*Kx}>R!PoZdiZ%8+xvWerJ^-RWiDmP*>%%?;a8ZW
z<bRBhXsuL>gnA+C+xH9q;&O-uQ}Usq1Zmo2y^tfAtJaNO!(l>TQLSNga;=hj^mnIl
zl8|j;aUnPnkQlt=avE2644t<1SH{PzT;jOygPqpeiQET#4vY`K9zLNMzRmXuSKuop
z*&l#Jx?OzpIkrU1Azk)wA7<%I;d=0Jp_Wnr-Dm%AD||L?s%o9xl7TfRKG5zMv)K+|
z-*>&0%s;VfDwL|~skzban}oaKH{%so77Uu)M6+pFNRu=w>_B4iTqvZIV-mOt-UB~l
z62oAZ)iOmg54qUZ^bg|@1GUc8vEC-W)*&Y>!o*8g8<_u7re2E4)2o(d_IviM5DclY
z-%=7@5}Q<Tvf6xZ$LIO?26KFH!$WcFwpaM(b^p>>-F2v$U(a?s7@8P^$tCpW*PfvZ
zst<!1REZyz6lPW%7tv{5!ZW{l!@%Z7$qA4GL^8flxaI?YjHbawEIO#^%@LG2fj4o}
zOWP~dBdN0q<eXXW=^Lv@OMkarMZQ1<^{reNvFb!xQBLpKJB0fsLMr5vn>nVHfBNVN
zKXU;g-tn{Bhi|^|@!)_col|nzoZZ5w@;zzu!W4MPfs-!-Y5qR2#gef!ytGjW6i$-(
z=`n&CYpoP<gSMfPo1j%`t2#8Lox%tiV;DCk6dyGrE*CPCpiE#dueG<OkVARO!PTY_
zN``6NDkz5<O+bcX`=UGNOH7;5u1*i7*lpB~lp3c4OPz$bNFlvCrZ0_BnPMu*kAfPa
zL2<2h2zTPhEuuljENGb#4>@i;WxLP`g9DAYo3*)H`x0#ap`C*Ks1`}As6iQVf*aIc
zdaeK1CPdy$&hc6CJ<RRy%4FR2TOGpjLK51B3@^=h=h%xLvR%&bhM`J@Be~kq)d9EL
z2%NPMpqFa*9H&Fgc<6rn7BQU1<MAVs`~$|Li9LL(y(*IgaSS5z)OsUXtVUq~Bx1!6
zU1=-9>G{c+x<*27$yZNGcHTYd7kl$0Z$P%^sskyMA#=s2mM6OfAs5s{!N(6|(DfcF
zeTnKlN9lE&hPNsls4T6=5lWbpAR!X<p#gdJ@sA&ad-^X%puMERk>w&1&3V{%yVO4*
z7iX?gXG}n0O!S4%tnWN;1JZ!`yAwOd>Bu#9vXCw(M)Yr|#T<ZSysXZ(7moI|0k&W%
z<*&(5yi-m$ogQ_+jg&C&PQzqC6vQS`>bcwPnJRxyia|-ZewjZ{T!m~5(qW(_q)@+v
zFkYf+UuhHRN%n*~B@gB(Q|B@>>bu;M=lXLrC~2YPAUy0xQ$`iWDE-Vci)L*Z1`Y8w
z@p4p?Q$z*0t93bLnXNu2Zmq0FA67<V!Pp#)!pE%J<?)iit=SR9lfcIxd)9u4w{T37
z(*i6uy<V{fOs?m1cKLDsN-6mN6aZ9C0}%l*>gE5j4th&6kl$;#Jn@ko_OMT}iX*A`
zAyM8jU3zi4C(^4@M{WJ(-`GM{2Y3bPb6DZkhub`XIb5j7845CryPUSC1<7;dJ8fu{
zl^+6N*js1V*}6plRq%@!??8FPxjb0M)Rhgc=I{&`w$$v_ZSAkK`~^ku&IYy-Kb;}9
zCN@HsX4q#>#RJf$O~>G^`U$M+H<@<Dt?{>z<>^n1@0;!Imn;1tc?W9cVh&L0PAYq4
z+Chs_U&4SYfCvjQxOOZj4sB=qT$F0YwW)24;`sM;upcBY$ag>tQF0L)r~CYpN`OnA
z7(HDHZi{e(3Ze2W`wn*GdGTYy@dTc2?5PxQhg%yYiHUG;ImvFU;uRcB0QseVxq829
ziq+ToV+l?u1I~%E+)udXI7=c7^2*R^!rKs}wGoG%ZSS1sPva|lI#@evN*#FU;h{6_
z#0nbSMJyId9BjafPV0W#+Ai7>#=r<r6;f!ryZe27m7RZ-zgi593wcfXHiC6PQP~nS
ze(GiKp6kCUkpmj^sm-S6f$eNpNpq^2qC}WLj4acMeJqqhv}8ij!J<wi$_|ZjT+C3r
zX)<RvHyT`ykD?qD@q~<`W$9!mcPx)g4b}K_L7AX=<kjBthx7}Vdw1N2m}}x}o9FFe
zTZ{LhAmTtf15V=MPyz)w<xl3@^8@`IZp1+(UXeZ(E#A#O7`A?3cr;MzLmg_8-EwTq
z$PF4Rs$<UyhpvX~YcGnM;B+b%E07Poz`cacfA+DX%e-Zvib0YhK^NfLyV%QcCVo%K
zAl>b0gKN`LflUl#R3|(35T9)k2fn#_HaaRn*vuE=YyVApaVw1qK(AMH0cBFiu<_of
z_8M?McPcqT8&eTbN;sBJsR)8k*H|GSBh3SGgsA<B-N5(`;e58n_LC~ymv}Y7@hwE@
z>Y$#m%>G0=bF&@>5G;S>PmwdjZXa5&OL##JJZUgV_u5SHNML*J7TNLW;htx0stgdE
zlIB*@wMY~hd6$h9un;>WqPNTFCyp`f2|MVcxK}YNOdrbAN>tMgcEF|noZ)dlNmFpo
zk_)b|ALHI-@`t+Gh7hN?B~>Qt{OV<P?)-QXa?V$`yv(_~>TTN=2R+6y2Dc&nz5b7`
z^Nz2o*xvrwQ53r(B;lOd2eIXnMvBPQgpvRWAOsLBa7Y4#loQh+QLNX(wO_HJ{sim|
z3%1w`DqagJVz~$wY>2%eD(L%t);>W{UqAj4X3m~HduGj=Ri3pL={T9iLv#I4Hza3)
zD-}<Z1kIC{_)ivg&J8SJm>J=soBj4MS%w%0-EoOXz!9qe?9`Zi^3|vOT7l-_rlFj|
zYqW(|_&Xo8X5a@LxG>i#9&fmsg+*rG?suGRKOiazZy3$G=ZD?sf4d-T=9R*MiFvkt
zhM!#P3zatB<gbD=@xsy;4U895m+_6ueKFcQ&1JMQoLNLkcKzUO_(q|LIHSR@$Rx@1
zia+&r*Yax%P=F;^nI?&=PwW!>m-DO+88YObBJ>~M&W=GfU@Ju?poE0tB?%5i1KR|z
zYQ}kP=(MCCg}m@=z_Lxgr&gLr_(0}qZm^B({g2^5Ar~XbZU`N3!RAfamM(mQY8>~A
z@3=V}7ic|;2%ly$a#`QEZ&1QD!N}N7xerX|39CDO)Fn7J>;m>h;VOHK#Hp4fv+D+b
zS=fmVh7oN_I3gdh&91@N+igUun%Xl6wAgVszm=tVxJ&T(jrJSrrDFH$?9;biwpZ|f
zIx#TVMAI~^H@MD;F~|7nf+1HLe@x2Bp`<aRlOc*yNd~<lWQc&L5tWT2l3wJv_oF|*
zYCK{L7PvT}02S5o^hy%_6LbVXNp-;F&b#J|Xw`ehYB;W3GOB)%Nh-|@cU3Qct<(ar
zLRcx76s{;HHRlNb5l&2+i>s%h@#wBM{NSV<e;;9ibc~^+4Q3`E4=Tjrer@<b5hWBX
zMpEa-t;zQ%hQBYy?q$PB$~){3|L>5?7LpOCMYn?PimNm1I~l#a1<!(R7l!8p`t|p}
zD<W0b1ym|qDAotXY>1Z@xXDr9>o8jguqRgiEDwSA!{|Y8fC-XuRED4Ae)P*w?8${Y
z1+QltSAhF=A`nS51iKls$!E8Q3<KaKcDBSirHz7>%v$ZQZ0=+wgcj(qh8b}ueebv7
zLgrlq5i=UXorhQQQ2W<@(dpJTI)TP7A`Ls{uJc!5B;uJD&`fpol$8>E(3k#;hVU)%
zNC|n^&0i4qwSVD14f{$EWMQ?KbCs}{#rt}l|Kf=7F+hFb4MIX{kXS`dJO=LZkw2->
ze!+d%c}6J+&eib5FFsEuKb2PM48<X6mYxT{_UjN8>4C>`lnnL&PMuwuvDQC_yg^q;
zR`w!!7N7sozdM2sstP1st=Zz^^Un7td>y{T>=Za0jYyvS!VjNf?cs^Xzr)S0OBxOI
zJ%0qUhu%@eVj!j?erHH}e`JGSQS!%A3cV3SYQ(W00wt5nCZo%X-}+D5?YDqRCDDq_
ziEHitl^<}Ibx<G3phlTF^5QSw=qr)Qcx^Z(`2{p8$WwetW<Ne~wci0rkDnm^C#@&O
zi-Gxbyi6u|dc8j<{4!?GJsC#k69ZF+DU^#0>Clqip7gQ5;3T+%>I=544b^D$cE0ky
zH~g<hLfLpnDbQdXD|CDi`~WS90BxO8*ZVuVazZR5G3k(2$gU;C#V$gcqS3vB3cT-T
zn`yCfIcD_8bW38vEUeXZjHjNnCS@Mv^Rt56-mvBuu&&$UaG^pHzr}*PU$u^5RrOL-
zH4gc|&W{DZZ*OxLZ3SO3^T_EuQ=wuqu;_cv&j>#HjAwI+`>vycuHblP{(AElKm9xF
zAkc(}b1V?z6p!y3^pT|l>j>s6U3F{)f||U}Fvf5FGP&7hR1(_V_`Iw@81nlBw=c7<
za0jL0NOUC-fLyxBX3QBU!s6VZ2Qr7o=VZzTj(LK|pXwQ$dXKe_2MR@&j22W7ivwy%
zQT1y*p)?qsCJ!VEH|TfY@PYLRydZ;SXhpempJ12&(QbwZT}Q?RWNBkxGTlGYf*n^|
z_fVumUD&zipYMnUcZKUe7|TkC8q+hfT0W8!oc6T&i-8fC98a())4uwU;C5LHiRb2P
z;VHIcp~=!!qz1e0$^L-qP;Pa^6rv9#TgaRvMe3#<gKt*Z2Vf&bg3$+P)28ehoD*(Z
zNs>6RE^>OV+acKSi2c62(^`RMS|Q|-p#nDS8>EQhs4RvOr8Gh2K6!7KAmtfrCe00(
zJ0E3emE*ex>mRdr*q1RxhJl@Y(Ie=P7N^_@HYb>|D@hA32;W^Q`%&oC4v`d}Z4-1y
zY~}Z3;$#otzQ6&1W-2g^UWCQ;ckkEp3z;dk?OLc>LR(Px`2e$1hvYgoBj~;^oKh7x
z2qTDm_&|)LEX?UU2mg4@y17-coh75NaazI)c@>9ccGsZCPIiD15s3je{e-AeHY?*r
zzfU*o8lgHf7POH70D;w0I{#<O{QEl62yB=_xb=|?84<I}p?(s|8mc`x0OB|`DsVd}
zsX}VLUvU-F=>)uY3K14KRn^5mDq9_DI>!!Qhj#XfZT-`?&?qraX-LH5?A}n;2rT#-
z^_!FZZPoUhG2mzMI$$$o7I**KFOxzkOt|4`LT}F9*Z3&Nb^HoN$}Xd@Es2evPw-bf
zY`-3r6qA$w0m_oh)#xg(Cr7op2YPhzsmQ8);lReV@VFc!r{~jsdXtSYIv!f~lDi6Q
z!Q479?xC~%HI4S05o;0CDUt^PrJm$>sJBMBc~Oms7r}@r<`n)0TAp#Hf9I(1m7!6B
zHI;;Pcd<`Jdeu~jRoJ}LOY;3>iEW*Jk!jp$q$xGOSC3i#zq73mf2)`Wc5D->pE$v9
z!>z*Fi1|@MQmZ2qz`|qw4k!a!OB=?1JuvS7HH}6RgL6ibRucJ2q^O3GL?`a<Peixi
zC#6zfWuYMVg%OIRuQOu43VFr48-ddiF9GjJ9O|#2l`krb*KfAIu!jmX;i)&q`KvFq
zeud@QtCMT7OR@jrBI}`o0UADlc?e<WG{1bfwb~?DT4fef&yU^xVdKL$nXUpyBwakz
z@Jyk<gjdK@FZR<))f<_aGV&yvy?&e@a1eA~fcl?kh9k>ki9f#9?+aFiX2WZz*Wpa(
zMC9wbUNPOT#-eI{veSixFJd-$dmY9I6l5~IPW5H79omv|8%U32`S-if&zHjn>CF<J
zAU<Prl+|ZS?OK5(^!_Om{8e%_U`;SgkZnVlRO#!H{?hREJkMD`Y&GzE!4!WHhH4%$
zWMg=Ho9h4>97~xPuchICu*DygZa<W<4jDJp6#twJ3iB3rAoIhMi=U-h*66oUA_CSV
zLA?w^w=*Tk_Ut44rcQLbRz#i{aO)hfJQ3XF5&pyQg^0f*QB7Gl>c&BSFp@MQf`11%
zrWMv!epBOjmo3HOg>iy#MI)Q*iI<P?ubpg9j1(Bi4pk=}MJFFy;{uZ2@MJPzQzyk1
zH;yBX_nM*Lm%)CU)^L1Qpxgi=0ur;mu%OEh^*exnSJ)~m*Me2ZR3K7%9``}?6@+{n
z-NY-#lgiY4h(8$crfCfN{!T4Yo7#!3vjFW^`ucq**w90&Ib6brNiO*C#pru0?Rg-T
z6bG(gCURKy>FW!z8re*!a*L>0tpX_+C_~H4ou5a?W0|q{V%&w|l@K$-eYm$j2sw^+
z+0b~A%+O4gtx62^-D|9CH1VMbV9wn%$gi%lx0vt(Euz_(SPQCyi@;PIM7k5+h@SpV
zayI0uqzn0m8C6gasoo4{$U-jlyJ(55MOY~iL6O(OyPaZ|e9)ASeYUjd&O4)_v8{D2
z1{ndz7C!5XF$B{`25Q+dDNDd3+dkvFBOB=ysYHX_)FEtphgbcRSeWQ3YpFFyh^&2N
ziF@21f2XwrbJ7e#Jt!-*2d(l$@VE02)5Cp`jG+~BL?#qS=%5b&@J-3b31$jUrfj9C
zOq2&C0m%*i&M)l;QeRki?u_hEqrcg||9{p4yhoudR8wU_7q0f_AwBTUP&zb#M$(x-
zwR#qNfYF5CUA@9T6q=q26-%MxfY1ge{x<)Ah$=h}Mq5&2KP=Z6b#Cz+ceIr*BsflN
z+Dthlc#fZ9zb<T^zBY6pa)1DLSgoUb@ABQQ-eNMz(h3rG!AT-XP{j>8d0>$*Im>>=
zC4rHRuMf+{=6Cpc{|Y;>%rdTcCez7q^PlifFR&iD{6hJ8iUO4I_M@X1{Q8u;{160X
zEEC~U{1MBHj-<_-i(`6DIJ~wSt<9>Sez3qF`jRz=&mqAOiAaiS9!bpivt%uSaH=Au
zEwCLVS~l{<)qamVtljv&9?>*(VBcHpe|<N63w9T6ZD_Xo{!Rb<{O~nwA33bRfWqoz
zOq5PZ1<<*laK$7I$&${XNVrP2-gna_KIOykVTcYuX7z_?04$F7@Qw%llgQ9avK-k?
zQ<rEs{4(G7zAYYUh@;_%&a}V9clc)n1Z3N}(9AW(9T8F@77XTd-3$Kx&?Gr3K@|<{
zVTDmL21EAn^!xlT*M<W?H=W|5{QXRe0tmdLw8K|vKf>eCz;&;}!Xn1&-t;{Y@944B
zo60`2+u=JzO@baFuq^Ub;S9=^J0-+|u>4H!q?i4`km^Sv1leuDD)P*|m;3*`Z6k+!
zxj7LK)5ple++Y@*v-AJ!?~#2hoPi89lwBbl&4`VHv@61IOP*sb8k?|sp5N<rdx%8?
zgdU##kYNmZ-Iu;%eWSRAL|R(rZnyc1-lR2*r_dWXUd+GgZr@X>4T!&xf*_7Wj6KWx
z<RyNe6zkBdK>|>zi8ptD(!VG4tZI8!!1+0l%6^Wo@CM&4EgXoivo{ks02O9j;`{Dq
z9VCw==G$0Jv+A;FOqmw1yvJ7n<;4AnRBlh=Xr%qw%l)C;BLsVtR#n#-tUs4rRzRbl
z_Sc<n9b=g>8O`a&5vY}Ed)6<UYhB#JiZ!Ddw!7gqe+<r6{E}R>B!*Oaa`|_9ed*gz
zvi5S89$2z$A!e3KY#Z!C0z6(`jKEe&g?TXoc_MksxvP930YVHnd@T`Q$h}6D5*U?b
zkF>*X{3icW=v5v^1betaq&DWWKK{X9EW;ji>9jc5<4qR0L~2g9D{raq6{g=q02Ed+
zIRHutcgVYbyILDys1ne#jK;Ck{_DS(Xw8(xln7{Qs7mM|Q2sBxyUF@YXkw^wN`=GE
zfHROKQED}QH|Sk|1Rh`JRw$%HatI~;aX+v2ACy_wkj84MbaFk*G&SHe-|b9WsWPxt
zTBCdkQujXVU&n*5-6JSN(LppmzRu_U#~Q~}OpjOLBk0^cLp<H}KY#Xo>!x&GWpc-5
zKumkcZ+EE?5!7hcG6IjSx%N0DqxO4!2FM}ENQsO(qh(0R$Zl+S)V~<6P1)Mbfi&db
zlUTFb4{5OP!o*OwdDWz-bgc5}mDWYp`D9!bo@xnikA3ZX;7ekm!s9))T8x2JR8;(B
z|MPERT&9zHPMzCepTE*?3g4xq8R9f+fe)GASqwXUt$#42Mx~cdTKvO}Ibx+Rkwl~9
zb@f1&q+c@?(YF8Hj~*E=G-i1=pfeuJU<S`T>VIJ6jE)tOs?z0C*$sJC|M|JUEnIFZ
z>l_}VJb|!}`@}ypkJpjoR@q9$1#z+u@NpSkxPszb3KFQf9Lxz!VhqUu!BPGTZWj9m
z-fXKVB;yis1gfOXz=sU*Um~{f3(h)ro2ghDq<PUbVQ>E(Vv{|r5OyR6Jk$`_eFgrg
zP$e5k1{4KDa~>_rYS_Oj*Z&h)h6f9Ytrs$olp<{UnqmH-r>q^2K6zn`>xM4WL0$aF
zOX$Me3rE*|5JLODy}-XX)!GZO1BdQm!eOv#p6GMhtYa8+;7Gzk@=b{;y3l_Y_F%Hb
z%Az2vOwx;k$ZPdij7w^9007(MbEn`0Gdud2PB`eOKk^^&rPogJ#h4+O77z}D_JqhZ
z%&=w(VV2tQX$$<<Qe*iU2qEsN5E+=|ewg8ZJlZ-!s<iY?f}#>i6LN7r69OeP_5oQ4
zuqY6@h!i)K)GG3+6g2zyAFwHh1GHlLMZuH+QqA5XQnAVdQS-2oC>nyhh57VP_m3^H
zu2S&cJYdWJK&h|qT>e_zc#6z0E9e3J{L+>7_A$tn(gTbyZkO=4NMk3}w`H0E^luUd
zpDw);YG#F6sNxWsF~Ir>{*faL>7fVsFR=oke`9lQhwm{cnm7A4=@{Q~j!g}w2<>xj
zM9!lAUIY9MQc=Ujmegc<7go>oPo8GYp@tb68w}vOTazDruFbHpc1k$)5Z*C+qW|{s
za3~={Wt^~3hE_i}G?I)nvw&<TtYk%nKextyZC5LfYI{OmH&ywOp*f?FP&W>MVP79^
z@~b<zywUf}ltx}FcHPQS;{y1f?}bg1PO5_;jXSs2M<r3=HMcyI$=~I@?SGRZfpL9p
z{n|e;(~<&mGyQ5{{y4wOC{#vFsTTE&<$lT_9#FFT2sut_E76fG6zjbYeYalLLnx<d
z27sA);_DUuo~~hg<A>%EFw@|s_x$oOw}=Mf3lMl22s-?Jh5v9L9*`o7;3`f?xlrh^
z=tIBD57vQz1B;X(LpgOcr7vIe`@d&BL*-S+<-jgq{hEIV&crxjx=Gc8!`PN*iD~zF
z-;cozjy%ijwc?%nkcMU3m3aiL+IT;{SD4;7Q7<uoq!GOChU5K&F4kNw9)evpTbJ9{
zGyIZOHYTiPmI%&7Com&)-aNza@~d@HbzAr_f~OUr;L>LMiQiZUzEB-n13g__>PH}*
zGCyLVk;jp3(PbrXi{LN3#6R|}_2MkT_h7dkTn2H4UufoIFZK$I<9XeU6n{w~P53Uh
z_OeQU^Y7v4jfzv{yL9UnRrtmY)@;Z<n?2wX9=L9Tzvvz78Dn-YTG`rBWBgbS3op^s
zl@Nq+;A8{F``5$u2^oe00l5c>uVn6J<NbS3qE;R@FPYs=pIx8>kMRe5mh4MjCOoBA
zZ8zHA5w1rO8I;(da3RjR&_9WRS)U2>VJC93Wr*BowC}R3ZIF_i$mdO(P(~Rz*U$La
zeolUQwo^eC2+n8u4dEcN84yOe5g`bhCAJ(=W1!(cl=qws72AlY=%kU-PUzWd&h}ly
zb++iC(9}s{RH+Hr!brS!yzhrIfEkj=#2ym|+H`?WhuhJb<jHI6Laniqf|p#O(1tvJ
zPtWvowo4hv)(pmxge8c&KG|+{S#;I0JqJ>&!eX?bGn6>XZ1mCI(cM<`P|x5Q)tpTC
z@ZQnGckVfm63g5}@F&DsLcjnX<9;oS-ZHG`K)kwT@yf>PN`XGH&pxmqy5pxk23pPG
zdUQ(Zcq;AeemgI^Fg0Z$z~4fo7tD2(*5pfmP4Sms%qt1Gs;g?RQ2_%iG!&9~t&9I}
zZ)PbwUX#d!cG3|l$;fF3&@Qh*5|Q))@9vk8<5s>K?e_ZSu6SfHx*r)4B9y8h{Uw=j
zaKu92{Is8&@^18Lv|@Y@L)dm`s55;no)l)aYtP^lv`aZ2#N9(fjPiWux;GC9{15gL
zWjkZ#fcN2`e>ZymjkL=0g;q>dT~>~YPX!yJuP?UGgORfH1TUcQ=aM?tztgQJE9Qo6
ztgqqs<gkW8=I6Sq-a+-O6!nl%nCyU(|FEpOk-G&upKI;o<F%C-yV#6SNdYO1SMS+<
zg8{c%KT`1e`Y>P_z)qHXD-uu}OCyftnVM=1NxG>V_uAgUc305RFPV1%4u=c`?MOhH
z+&#GZHR}{QzGf;;kw{@(1YW3L;GB1>dj>nc%rCg>@V=`Civm-qyK&sU!A*J;*b^@V
zeu22Qxk40%2dXE(?%(K@s$Yx(15{Pdq@Yg{7*SR%PsV~%54PUoc=da6?)ZG_R^&J|
z*N*<F=w2jeKrQDEcLfDx)O6iP1(}`)gf*Qm%}U}ZCN(B`?A+kCR2yqNAQ&4fmz3qo
zSaob)YabM^tzj@%06q3|kNoOOt9ggO!?iUOc2P2NKwB)=^Q}Sl93I)?dkH}!NcGFg
zVB!M4H{X@4Z>%H_Kc%5E-G6`br#)(|S_NEIP#InMRIoVUN59j(bWt)yA1)a=GFG8*
zk@6~#!g*lz$cVef|NArh(U^FXwsR)?t|9U?#P|>WkM~*c$f-Oi)UNvYXsYY{&!@hf
zQdZ15vAO~o55g4iN?EY`89mF60W31J4fmCd#-*iL+wZtC7`?7X*+7hJSWzlxRx^cB
zgQ-k)R#VV_M$fVmocc(!FwMaOvkTpS#su3p_vFLfaNMU56L~sWotMrGE*izc5vU^i
zLjsOd1}HNZd#t-<PB7^h`fwh#G`H6fJw}oyDk~i`Fc@&XwNrE|xoz}N;ON}`!F!im
z&uD<OSnDgBn`~Fro#Q?@JQ%uwZlLAh*=;}*4=MBU;t+dm`1<<lY0xAe$s^3K?-9Wx
z*U;4uhnKRaq2ojCW}2hw+R;JAPS!b|@eqp@>aLn6x$dFtpkjOL3X_wxR||tI%FAJi
z8jcJOILvw>Nhpu%c=Tw4zRV9U>25v6Rnx^ep)g856u4Dc!LunwM$$*ABc<YK{SOar
z<tQ?{a+IIOb`3&BnST9)=XYli!3ruPrAk`b)cg@72DE|#d~-$wpM{^RW5fYUelYXS
zcQc0uu8L<dg7NI2jY1P;K$$u2{c*tyQ*6`{T^3<SCiOULjt(Z3*drt0^pGsR1F+C;
z<<Q`$8f!1(TX>ODxWPy{>vyIHjb(fdJfy0n^B9v>jFh9l<^~(<?5UBe*oC_*LkVTw
zO9jCVGp!vv#I&j@jT<32;te^-Hx3F0&1EzWGJyomaeXP~wj6g@Vet7vp6Q26E*??>
z8^HU!76sR2*<kug@|_wnkd!XleOn&<a6er+3|47nx2XWnq8?Qn3>ZwiY0~T&IC(k#
zpxl{v2G5*mJ;lh@5Q+SLFoikS1WU%+mW5<B6C))nfIO0y?e@$L-nodAsN}(dJP1;s
z=jM(H)?dtqV*Y?nD~%trU#>g#;b2l%`@q34ygD%{*8Q@1!Toz#D;O1SBWRDs&31=1
z2e<BH?ZCcR52H$Ic;>siPY6EV#d=1Ilxt1R&L)9;fqQvcaOKW?1VBwyPvah9IlDd)
zbX{xH;nu8ahK&RB0!SvNOX>??SP$JD%zfW}QM8fLTkxVmRiI;&e2ZI-vRx}Wg2LDB
zH(P8rL0Ejkkf(yvdfQuz8rg05W(}{-qsZ8ePX)*S#6uiB8N0B~QElppSYYfINdp*B
z$h!)FOt^VV{SG%9UmKU0)*M!gMZbie-+S5DU2i=jV3PQks!>xDQ^PwD)rd2`W}~0F
zf}cp`fPNVlecB|0<^K2>%cY7IBz9|TPL{F6sKhZUUFz?O(#vGv4AhUo@&|MgQpx<z
zU-Liao(0*VF4t}(oew0z89H%(5Yy4ia%0KaX3fYs?w0w%kGa;2^&>J7t_^A~3>SQF
ze$Y#lY6Yk{sL(bwbC4KzuLw?y*wPhmoPrjE44UUoe?D0GjlG$wQZ<R0x_ie|$@om_
zMEAo@LCrWG!NRJ9pu7S|T&DZz)S&BBdqq(#TbN{HAP92ZdyT<cgXn?<LrI7s6c5jG
z2lNd-9&YP0oMg5k_aIi3FE8#9eEpU!Wg*KPZ_)dQ)^kJWAZ@s9UiWuQu;+@ZVQqG;
za<=l^(JTD;9jyZj!SdZAjtGrmfTY|O(M>bU>6O^ZW1TVq!U&?$*D1kISK1rF(Lk5A
z2_#lHcXqy;Pw)y{R{P53lq5+iy~3XFS?<^DXG6jr;W8K<v8`mf1wDhvd`6?}VxkgD
zD<_buYDmI6?G?;?h7NqOcBO^}L8`svxFgbn%a*X_BpH<yF%?HGBPQ=1*nOUREHn66
z41yZzf?##_u_rlhW=8P6BnQ<3)J2V@cp6Mnb@sTf8Y---xE7VgE(0*<?ASd;LHfz|
zWhLvy+r{w;$aW4CCnYExX+6bAP&OB%XV89m?!Yzvi^=xYvM*wJ6AXOaZo$n@@@0Z_
z)Q7bQwQJ#N!J?iA8T9|!59XA!EQ4#CLn|V=9=W3LJRle;c|vNHQn}e7K(d5LdhHvW
zcN<;g+?3n1ekPwl4aiI+wewe!y_FABBvf-m3u<BouY$}kUl5!Nk<dAunuFmos;X3h
zdtyNlzm^_mny`o)trZ-H`v8Cl^UQZ=UlII@umu;xb5}u)V(}?e@hiSR`0_nw!wSLP
znh>fb>h(j8+2QJ74ct<Xd<64BjxTT*-5RuU+0s_r$Y;?Cr*Mxw77RF$<=a}4<0vA@
z&6Xs`YZ?(3ZNU*e^IY(h-)TVVLY^q%CWoM{81yxF#`+(VvXJ+T-cY##I2F9XEm_$6
z=+@MQOm$=v87&Bn%yw5?9owO2`1l4hvMO}*>DyzIhwwCrG~%&1u8M8Xa=*`wt=fU#
zs(PWx4OImF(1pgc=CasHj-m4i9B39<%g@Q|{(C`e?fZ<x_srOU)Y|y5W{CXj`rI4)
zZIJbJ&N~BooVX}<c(JvP#Ndm*<^Fk7?AKCSI2GWm5P@VHqsr&pD|$au!DN7y&H!uF
zG<8NoX`%U2Nc5l^df)Odri0xT9JSIH=D3f}ja{<8eJL_yRqMwX^rdsISRCs<!rnNz
zx<<Etqjlkuac?~kdt#_{jbSqpi10<b7cP(OGkmK?K5q0CvE|_)n}3<(p1C6S1C5vs
zxY<YyqzQtcq0Yk|vt#3SO#N#Qd8fi2h#h1bLZCQ<JFiRcBd)R~7y^f^F+(wRQ6KF+
z?|EB*&8;lP`49I#<yF311^S2+<#Pbpz_lA&Vw*;#sC`Ux9Lq@9!9G0O8tXUSI)(#7
z0FfX{htc<Qzt+dT8uyn+5P_4AXiNC9sD@;1xo+rJy%#)cuP$n&imGCdYuaL`mfH}|
z)<K1|<+uTDv3J84cD7}?m)c@Kj^%fh1l&9#=jM%Nv04AL58t9WZ}W@#x#6`|RD<be
zxr#SpyYhwX#splnkwU(O9Y%E9`JUL!aK{Qka8kXK4<r&2QoTR+*g$)tlLWE%Ie&X>
z_maPSHXqyh*?*k0zo%owLbu<d*lR`M%!w>eray`n_2bs=ee4}9kxB+Maid~7E^wPB
z#NNI=Wf5dsny5s+&Y*l`zUz8?P@PCqP0;ZP!9zGuAX(hMtAmlbDYY!OrRc4#Z=sGK
z0ui<nDtcmn19yqe#i!#6%2ig`=G{|ksmED{jv2x}*xI(=qGJ23K{1IC|Il*fQ!Q{g
zql5PIxNQjOAUrfNQ}!*+^0g-iJHZ<{ld#i7!_->xzhP}9=cn87qyHGm4hBCSAubeC
zFn;H`rK|iyh$%dyTbE!HV_f}^3EYFP`;0-UWh3)-D>Y%`bK}Qx=)Rd9Ebr5^3<Jl|
zO3Xz?gW!;<i-PmAdsaZa)aIccW&H<Iq=8j&xqY<MFPxE92Krz)V>d-cfKx&tEMg}k
zt-&LQ_ADDBkY;nmbi$)5T?xP&v<wh~dHFb@6SY$n>H~C)ybBRH<7bBkFFupnfu#i?
z2=^B@LR6;rN5%fNYpetDw!BT^3m{r-WLfU%zOm0*d;h5&=JZ3~*yx7d^{~T<_<iEe
z?SEY4n+=hA9vK~Pt3&c~qbnnKenm^h)<5Y$4H;7hLW?4wDmz6^5qI$N;MIwdy?L0x
z;u%%?bXQ#NW80^xZ8!{<;74G66fWp9#J`=Ib~rlD82km5SZQE$aw32FY4A`=Y6sHH
z1pSf_6q38}4N%68MX?^|M>}%FbHE9+-IRpIdbZck!8JM24s32Cs@o|~-p1OtQXNv+
zF~RMjeO$47Y@dJl)!f;XBX6rz<^#o{65F`U4?ifndj{DVz|6D&mre>KS$G}XTc7!p
zeo0l8%5qYqs!Sx$kltp$*ueUOo`9TSq6kxo+B!0=<VH9QU;Qh#Hb3ppUD**9=Z~)8
z)krCFYebM5?mj1$pOdy)S9~>PJ(ZUXo7W-1<-H<bGr=)+5}>MDQOY7f0jz4O8+L?G
zxh?GpeuyIzD_}+hhBWCPvFqojcBrw6^f6>3s!?c~Zj^$B!At*)sSCgzOciT0MdR51
z2d@rR?PMJzIQv$hlOBmBKOuSi9_SJ5E7Pjm$@bkAuc_uiiczDH-4wjIJg9)=%c{t3
zkNFe8RE~S%X21BUG&PsRXH@>uicQn4c!IhIY387k>rp^`knI@Lv0rA%=Do@LljU7g
z<eYM!H37wF=Ir2qR4S(lz5Vv`KXHFj9Zu*zgnlJwSaP%<SdKGPfu;!d@;D>d;T-s?
z$$yKt2A2v0Vt2P_3EpN!Pj=|-&)qwvR(D}_YoZd<el_@IOp0#zAEG&RsY@^=lqhFZ
z1g)Vqf!u&F89}I6vE2Wfm3BCEI6B@`6DivuBQZC8wtH$*@cdUP>M4P;DyPM<wa~*e
zZ7!C!G3?>W5=$|h@wGe0_Ix{~mJ3(rZmb6^N@Ses^`b~85J*U_;oLO8COfr*D{)j6
z;8m1j4l>5gi-XUn_zrj@=e`x>Vw)A&b<@g&)hmPU++|4Xa_U)j|Fd`UGk#6m9Z6_J
zbq!W(GXTkZ<qp2r@A`bID1Ug%6gU*-wrd{q2dshIGu?!$8X$&fl_r4;EyNQ?#$sPS
z5UY@^Qcd~STEYmqw%o}t_+4&ITg)qlaAB<>Xav(+x_l&uUlHv;y2oOUzS5+j#y~w8
zbV2ng9nr<Tdo1Soo57!Ob#@PzI=%42jc-SP8q#Ai3(9p0DXc}yXAbEo!*1Ql(Qk5l
z%;jhRXpa<6kI#yq=!%ay+FkW^WaOe$bsSSwH>-L^+>IGk<j(y*^6M?u%2BB!o~)>>
z)OGnb@<{koy!IHc<8H`^a<^%HWajnuQ_S%~>odamquuS_MaJF{ju6L+78$D0>S@z?
z>xg4UQ?o3x`u5Z+uAs7(dOm_W593Y^<^(;eU`)fI_7(uY&Rw)1IC652DkfLVE|5|e
z+9^bgeC5jEi*tH(px6~rBe!Wf0*c}--NiQr@89gzKDO3M=jt%y*x{DN7@!mvbRi(&
zv*S9A13%Z3a%S!EQgGbYe|eH}xc%HK&j;BntgD!$uHk8id0>0L@800NEB^8jQf=NA
zuN#QLvoc<TD@U*5Q<%xipa0EMknA6m+&nq?aCYwq&UwV17(-Pxs?OP13a~hEaZs|>
zKY=}Pc<V>1P!8vcAoX5(T&$oy_0J47PY1G-q2{|GAIY+SK*lQc%a35c-D_HG@o*l)
z`^p+ISWX0uw%4(-!6&9Z0cn=DRJI~TV+qcT@cnP!5IcLR{k(Jr+lV;E?{i(jsMz)`
zsT~+wV1fyFFt!8mNm(vuUhIX;h-x8^#`tC{>1MtiEL(7(93Db87ZSn@jzUo^DiHQr
z|6o1{Je(z^Cb$|RUrw|zyU4XJ_)JJPoJ1-LFPAHKs_<&-7y8?jaF-nI6xD*4kwU2t
zzhUfT2CixQ`>`8wWObq%>#Js2UJk2>b?XQ}PrTItR>)6Ou;!eFk&hew!$K=VN9NDR
z*bMhktV|st(^%oq#Nbf(9qU&KL?CC8fQ7tRTuN>>h5iE4Q0$Cw9koGl4d~V)$;N;B
zWgYo^Bz+TzMCQ{)e!&<%Hrq|WMkc4T;iL{*?Qh4ME}RM101OP7ldV~Fls_9Fo^A(a
z{INudVMIrl?fje&dP!AE0oeY?8HY;8+WmaJKW8B?BAN!vvL%v0)|A9_kH4Y9U^M1)
z7mOjSlu*#cFFnsbR>|3gq*3?_Pu#X`(EG!%qbhPV`%2|$KD&U=8Q(4V^nJRFSxLtr
zB%gVo9P@VxmqmqZEi7@!>6q!DQC2~~ypwPD{i<vg2FtN5H<;mde^}+CkOI$@l3iUf
z5}~95azDQ~Y$xw%xB*)&Yxg^Sq}+Z`1Rhgs4IgQF$nPHpk`Qj!ZV^yS(6R!&e1%`%
zPCPV*If|vSubL)W7&a9)^W0YdLYplS#tZ==@WDdIp9lUp0)N>J@on<9vxCAA$=lMq
zz~6B1=DzqeY)O!YL4{`K`CZrvJqF5`L`oq_EP2brOx)5wKC#$-QA(C9gI+Ky{Oqd%
zzUw1&7))R^G9{KekX|T|d-$V=hchJ9MWO{_jbU<ghWS!OQGwdVpjAy4)v)T!(%t-9
z4_kYo!l>0OiF4$(KJA+18=4|R*^N3w<+_S}{I0X@4TbHJRxBw?N#GZRgIf|3lo)*@
zOZ}h2{b3qLWxJH}S7J<clVVbl1bEFm^?q1_(X2F?!VqLQ1!#Jze^y}#1jGmm#HWL$
zweypNrfR$R-PPy%ZxwCSiQ{fqtDp}e8dQV;@)auL?Opsm3JC(|i*Z-X2L&d>jo!<D
zASe{8A8$ACRBk^>R(J30PZM(x<?6sHi-r_HOWLsW-u}>bn{H{FmWl%f2w}MYROy$c
z77CsoP82_b5(1*avXPIB_sbL^f+B@QqZ96jJBP<#e8;aAkWLP7nShjUR<Lnm{pa}e
z8ewy`3WTJz;yi+Jaxr}HyDt+mO`LPelq3#ttEze-X;|SboSYEioZh}tpgd_|7$Ldz
zv1f9KpF21><Vl7?F9c}QiK4{cN?gplepw5T$aaUhPo5yiOm68%_x1Y?p+|1+I0zJl
zYf88okP=KpEH!Ks+>+=b1o3>W>IwdH9c)5u$V~~^Sm@C12l-F5a-p{z?qO+{C=|(h
zTRyR#-GV#T*mtU~gvAv?R1LcY6>nPf<7ndDn?QcR7{gSpKm8PSpg0(@%zW<_)2@7}
zZpHpVWLtX|YH|3Y5b#gwKD<GOvbuDa;7*}3v)v0s|0AMs>RF=ipY?~`#-Os8h$O;v
zj(vcMaJ_OT5QM~@JT%?!FqRi2!=Z`sHS{o%VHh|0VoT0Y+Ul<<=0}~^!4%5qU}nb?
z&v$Kerw8Gz)hi`+3@fM5?4!zj`7l-v!%1jYB|!r#-G75W_G(+uPBOKN3hK9CQAUZm
zp@0ehxo1~@)60hHKqnBe*;pEBC|H*7PxIMYVY~+|0u1O1C1V?V{P0mhk2kDmJVzI>
zChdxu-ZL|J@<*E`!5nfch%+`E<Da?38pSFEXp<~-`&j?(xlB?(?hkbf0G#EMhM(;Z
z%VZHcPc0D}ro^M#FjU2X{y=Upda3jWM-nHMnAG)Xzbkiupki`~CNZ^K(Ch$KW5#V>
z=RX6+&Xc9ptf~@1gZjj*ZzwwE6B+Dh12@;1m*ZLJI~bS(YV#uA0n8Az9H6+WisB|^
z5iWn*pAL?OO)Z4{<Lx9zgaEdvQj0%_HJNyZ-(DzZE>-06kf5|n8@dONg07-{FtNvL
zfi{9rp%mHL3emC{<ZvIH|1`f)`fCCcMOqw8ea+B=f)d?%3N%)6gmCvcW{kUAk6?td
z&EbNyaw}m`ba*<CvV=$X4Tk6xa9tvG8J<LZF}wg-%7+&FC#TTgNzfH&vs~X2Uo?5x
zt%C7{Sei53@4dfm6(SnZh2q@qlWu-zE=jmES3sDbtMOMdl#pqNMSki$e^#CKlKj%@
z)uPpl(H(rUUjef=nJi34Y6m1l6?4;b2;h{H{4eu(x>K^6mar^#1b{M|%en-8wVV*E
zMONZdw>a(sZpvVv5Un;y_0uIpN@*bd_*nl_5^^;iJdw3)-A@_gw-518+%Q;FL5U$N
zDa$>lRaynhRCugUVU;(dp)9YrMW7(GB)G}>ox*G;o#2mzNcbIOg&6~=l(L+LxHqhu
z5XdWI{9NiMvt)+HQZe?mkS;-82tORJwOnYr@qfP1KXI1PAwxA+u<gzrdbwXtHG`09
zn{o2+5kP79^{3wNMkE%CMMj^nA^?%x%;<nF!S5`GPJ)6LfbZcHVRbVOw34el08v;8
zIeyQVzVn;k0}cV>qxdjoAMiF28uq@Q3BH!q=7vN~S6x$<Th@t*J%XQE8IB7o3pggq
znQ+pkaTfqiw(80MxXe#NMCV$;f1Zpfz_X2)FT+h=?dP3seWO_I%>f6-NY=0RmnqYk
z7D^czl33?Y&i7}ADB@A9JS+w@rOC~^oa*ytF-b@nahGW-S8r!&Ax(8*oqsT!O~i*0
z-t)|qC=`y0MY|rmXJ`B|ypia_WEvD?Sdv<G^<5wCS&QLv99tA`LaG54jz#DB#^|;y
zG2@bLLGnl=h6p-@B)U9W{i=10Nf5Iw0U<lj-Fr`T$EUHbAmlLfX&_Sx^vHE*o#0<u
zXU&7KkO<m^SZ#>g8`X?;muyEBWO2a~gLR<b+h|oa#$auBOA{fGvXEyGKIs-keR(vs
z7PHi#Dn^HSVDLEpNWbI}8=d>UMQ~X2Yo<=}|Mv;aW+khXQ<@i(Ar(_beQ$r`LME>;
z0Rqdhxv&Uaf0W!DG|$>gk!-Qb0NNCZutL-+oAaE#q?Di+0-6zcs6L+KGVA<BtdI;!
zT%-<D38wN5E2AHrz&zm_*t)>b0vv>&x!qrk`qTI_cp%xksxUpFkq~EieYD#<wwN$E
zGY8o!6IXnBw2W2e8;Ti3Mnf5^Uj-ulhP4*fHefbl$LPtxE!Vfm15&8P&`GE|5`j{9
z=mjqx<R7c#z372)OxV-H`P+y6TIIX&VRYHnS60QFt7UQJ41GA>k9>eG$&(6lOh`Fk
zEhaCB#(SjM*VO_=w~xaUyJUH^<YN0caE@`_!Fsc*tZT!Z=#1Cw`#3~Z>_qbOwz({t
z@jTPz@PbcFa1+TIv43fF*%vIH64k<1v9_T0(wT$4<<7n}I{QgF<yUCMjF^awkY_<w
zP`vsNo$33`2-m%$C7c*v|KMBE587x&B;yI981X~&iBMA*fCIZo=2drOwGTdKCi)4*
zIc2X(K-EaqOsM|^KjM9+4<(^zVBO=3Wm$HgZ{z<LXJ8zawcy^H6TmgG_pnYR%YljC
z6s`U`e6K8uA;|y~X|4}<2?Hh8Ckyd4SL4QNKX6C;eX(9r59pHH-Ofut+~BSz;m_Td
ze(i_QzV$LsvSyf?N{^0y`k8e>(UB22SD*>HFc@_m5p8&%ZNZA&7>9Ck+@RCCpNpc+
z=hKXkp;eCPx#DU@#PO}q%P(-5yZA4UvkeuyNXYhTI|un@G(@k{nX?lV892RK{+#4i
zAZ76JC*Bb~eH}B(0tSd%NHj_ZEG6sm=!aj?p&Ylo7=FO@f)Eb*KK)R%%bPaULb8X%
zr;-v68bV9Mwtss`wD<)cv#X~$F>M;`0;0zPnN{Q;#hl8UIR6$K%=(K?U%Wl~=q84f
z^i|6_;T!Q+n2i;q3=7gRKe~6nG~)wYWev(%&q<<-pq~?b`BQc*Y?dk?+=&0Gj}%R?
zB4nF#|1S6O`^=0xDqh)wgPBULna)-D^NMYrn~y92$K;Xalu7qYkU7cT1!{wXbMh(v
za0U`PB4q@3WotY_@~jFz5Pq2Nz8~&~-n`X|M0}^8;1?ZfFT%7bW|)-$nxl%0?RT;m
zas#lmvL|D};4pXe^QZi19by46@<=JU=eTxQL`J(V-w*kWIZ#qb@OyRy63BG3-i|K4
zg_p>>1Q=P_sM|aDnPp<!OMZ!VFX0!G^J|-6f!Z1Tn&r5qBsPEsb{CfUdw;WcYfT_p
z_!t)KPCk~SbIHb8oM*Ms0-3NLh|YeRagnGw1hS@Sb5QWvoFl)8=3h=9sDY40=jaTd
z-RgJQ&Sqkq%wDAXC*Li}^Am>K??L(T$rxx5jLx6ofmPX=S1<$TliEKV5G_0^9*eR~
zyMK6@&D*{{-rf!oBp0kEzmwJCmjK?65QKpnKUjhLw9KCf32=XnigUYgGUVIhVjH`?
zAhTMlQ9!)N&I1i&^yY_GW&6{ZA%DTRkpu0*gSHn$1?1H#l*Pju)?zK$ZoBo-E6=9g
zmM-2vwgirs?Z=*vMl)};Z!Ls7%5V-0Zc(c*{J<!T9K^y<b39-uzs3Ef*BfDtldJ^^
zBhmm?tn%eCCPTV9WFA^MfW+3F><2P=wj5hE!5SiXamOALeA`j{nvY_K8mqzs3w<6J
zjV@s#O4g0|3hTfF12re={q#%1)v-&TN;RO05FTFa;ZN-ueybP**`+AS!U|!l;Pufp
z(SI$r$544-r>rR}hpdz4-`b6K00Vd<6$XrZalowTx2xDV88_?U_GBACjzzQY6B)-;
z_z{R7iUYZfb<ro!wRaZc2;xmpSLV9t;Wt>@=xP$6qao6G*rw>q=h4W5D|iqo+AgGg
z7riYy|1mm9u2?0~j|{4g42;*tW$l9lD;dYP#nByB@)J8m&3zK}3BX99NYKyaydFLB
z96H5G8<oUIY?AN&*VWN`*4Vf@93+n;UKP2G(3OybVNqf6w`+@T_@1xV#oihh6~n*C
zr0c$@^yQ0L0VAji1!Zv^a!Im%k6-NXXk=ua*m~y5m8d%l%^t#fH`_0Ot8i!vHJaE*
z4o*q;$ToguoxO-`)5vzlo$Tt|cC^p9!f0!delH%$^)GhB5kI}yzjC*ov7^Z;fX%0w
zO+wApJdn1)5OoSSAy?pjNOA>!0DPYX0WXES6sC+Hw%1f2lp75i!P>2Y?!!WmU1ww_
z^V9d%+xd}x;3lVeaG@p;@tyh{)(s|i!3h89SIi4ApXMZfXGFg9jOfn4GfZgU#5KeR
zZFOtF6`C%NRt@CV;94Q`IG4R$7!wynFYRx432>`vSdrj!Fb0?n>q->LiFTiufMKVn
z5h<h^jrEVkn3m2&!GX3QqVSlFy76@1^1ZF!7zB$-Zgrj;%~pp(G+(&=c>ise@IlE|
zN(z{TROx0l_?O<aClMmz<f71v`2D5F`gQx;ij+ccw!>VOIH+g$@r#Gq3W_Ww%<7EU
zPQiu1fQcwbl*4+VBS5}(oA=xheQHMPAO34YS%v=VKN`U%<R+cke>9@qXaA)U8^vFL
ziEPlX^Ou|xdHLJ0_;6au;#U}~D3AOxDyr4rjSAoS^Q6r4_2)*U<;}0+P=!8uz=`?p
z<Md$s-jUV3e<Zw&+_sQijyq#Oa7Fr-uP2ku<~L<y$iib^ja#3Zu9<F^0m1J(Mph%i
zkF8NQ5gbt924K%8<_2@V>$RF!Qvj?|1`~bSvYx?RWxZCzK*m(px3T9)&8W^Ux?6Da
zj9#nx#qjB9DfMl*`r8m>x#n}-(rtp5FXJI4E<loN#<|H|#>=Pw;{Ush4zO$S2EY;R
zNZ|za0koL(puhAZrX_SDe6;~nkq&5<+i9m@)}*Z-!CaYZ+2ksh_|xCvyCpqBTg(j&
z6drtfm*CV#|J)AM{n0)W>3TY!!>vLYY<Jgwfq#N!#qo!NCTj-A2{G#N%lwoR|J=^6
z{=U6mvb_Td$gG4&_iR!Kex|Snz&dxvyjZuLB3r^osACAHOu|RNERmcH<PTmxd2n)F
zmrcRSa_}Y?DXWQZNuX~lgOj=mn|HH+3O<`|-NWNe2*7M6XcTDrniWCsVb(DU^osn3
zKvG75k^q@0>t~i5{|i|Rq8)su2t?|ODj%{;_Z=L&_rbq(;1d7)4p`719b={w%gjJP
z#`4|4vDoX+{beBbH2HfN#HcnjJ=_O;FmP#2>yy5|XlLI+9}pELPN`k%BaxEi%Ck0t
zlrb@{-EaZ85wqRhOa1;0;0Q3l0aM2AA${-X4u8*78nGI*C^!jk6kgN9<$l%a)(XuS
zG89)B*T8ar(rjxktS1Z(46h=k6yBWUwtvHOISQpvtXoG3ZwzgWX)wo~^sYZ=gLML(
zt&igZ#{M%6x+0_i18K%n)>qzAJ4MKgYyvOc2`l``U)Z~b*T(CRPN56%T^$eEPfJOZ
zU<e6f3bNhGm;9mk(XNsY6dFJvX1_QqH@{#56eI98HOL+hA}iZHzuf!(SVx)Rnt}FB
zof>{*7AN(KH~lTQS~nmvDm~Ok3MH2iu0-G(leb~m0v6-2EA6EdF&KsLS#pQEBNq6X
zuUY$W0^PV+Fs0)d%5<CV_jd}%K|GVy(X}O@gQ)vOe)194gJ47|Xd=$s>IeK8W2~(#
z&J3#~pqtS_F>Dcera-K!Tl~Lr`GJBZ@wSq@D^B@c)G6m~^}qj|q8`G%h#*mGmfP(X
zfA%J8CD4ou7L0fS)}fmF{ZU`hESFPb4c4-$^>~Q@gX7jA!HT>64Zq2OOF{9kN;H5V
zwRMjSRdgI-2U7{_;RaMR1H1F>w)`@Tgi{7ctyKX&H`jlG|FxaD!XGi7Lm7gL6N8rN
z_PEZkzlk35d;%m-qTLBcuoqwUI6acq2syBu^88PI=_mHhC2U=F_z`^D(f9isHu4df
z+&DFGQr;`x<Q{y`*KHF{o*0+TSUH6V{O1+F@MjynP*o7fO)^b{$5``M_{%<`2Vx@O
zuRbB4n#S&y1^)5Nta%i|BdZ72+v=^p`wFdL%u=xeuz^G6keJ3D_LzV5-_`}q1F+XZ
z(Iv$*f0h4Eqyu`M6yXY};FM&!^p*bopR5@p8#fmgRm$hNQ<nPkpRs2A%$CJPw7}Jd
z9>APQF0Cv)PdpnAD5=v<25IC-NAQkc@;V*35L9P6JTv5{L9ANhzweS3W9DVXNd?>C
zn~99s`;J~Qn1nzi&28~^;gb**vfYdK2ktKG8lGrq6L}Cdf_wbZ;Pk6{2?0k~1!h%j
z1aL|BPK`fxUYa$xkoOtD;@E0m-E1wxus0IKN86Be|H}Q=R-CACZrFFxZ!S#!v$1|g
zbtHtCD%F`Q>+AQq-1<g?>f+gh_VRPCu?9E<NI_n@c(6a`b88xdXCgjB?r^t0*AH48
zHj<6ilJ~n4OZ>`9tqlz+KEq~w?I8d7-0*io!|grMmrPCmWQHtJW>IqP-NXFVP1cTC
zio9jj&Yga=&o~n+n*j@O`J=*wx@Up=N4}r+sfpahiV_U%W8Cs^?l(^G>*l3&AVrN+
zZRjdiTJ=USt~8DhF0G3SyG-65RG6B`(8w6nXHG2pQ2k;oC`ow-A|A|r)l|iWh8<NN
znAmC2>kf#he2#E&)tC*ymtkSa6%2L!2EQynO`YT53QY!6R02<7YxIjucf+rKNN!pl
zhki_rEE}W@KyZw3CYJi(?l)4^0~x_$8GG!Es&+un8F>+y{{?-5^H!u*KtIqxC8$w}
z9&W%{{)%hTs+gE_eXk6j-?xWu=s|U4SxB^U!OFtxYWIjek+C&Y6x>d3=Uq=A*60L*
z53T8d5d|qwOg>}R-r+AjJ1S6Z5pr&OJ;xrl2%sa^O*%K$Yg>@D+?$EY8o-j_&B$r%
zahPx46zu^0S(a$8R6FrMoZ^jvZ!P9FRZb>$0gQx@T?P5EWh-Ke_Zp6b&2@)boR=Np
zI(zC1f6ZN~>LGwpxXyx%2;64Cwn484SS19c+QgKW8vKy_9v=Hv5ZrQA>LM<?BDBV;
znNn@iDZAp<%?zHIz={JqPjDUR6~GQ7h@CI&A6&w20S~5hP8`9cEi$pXy@qvTX(Ox~
zc&__*P3yqU3i?qX7s8Igy^<A@vpa6D*j<+%yp;e|Ky|Rqi~6^sSB~Nc<}Hj(-Y1d=
z-kb{btZHNgk%mQ86|Lk^<8Fz7*m`Nl;D7_u7O>fa6(NJ`qJ@Znd{$%p*x=qnQ~nGA
z;~~Hy2De?z;*}B;#6D)?=T8^n_qs{ZllJPNC>=21#B!5zLxfIhAvbB8;J4*Ky@^$8
zAh62h2?f9Pa~J>SbLn9?wm%Gs&1bCas-RL~puk>}p)&k}=(TJ210k;n;i-yJQF<kJ
z*z2+Jm!yaw$?@6>H!^T0M9EQd$L<hYGGHsBB=I$JQ7C{e0=_+lu*gKq3{1joSynni
zxO?>OVCNeRnpV6XsHkw#;8-K5)(wMW_YF(k8M1Y5`IXT<iu|G6`p#Xv!0-BainhO`
zr3TFpeIhTrAVQShLpulC9+_4HpB@7+hKso|QNt=L&q2$nz4x2dy#|e@<onvXc<Yx`
zTjGO%oZb8JgJ{llC9MS5VEhKQr>IT0{KVe92Y1((4u{XwwuNU;o}p`h57r(L70`Wf
z<+Lf-F4&hM)@h$vLHw|u9l}LokKwSgW_WctQTKlqd~nr48mkl1IJ~7H-U=(1B+l&i
z`8D|8u&6$1bX5axM^=X~;?CQ#Tkvv`5j1EMWY%~{$=q*me(PV~hC_f<58$Y-g=3lB
zPb7Za_QAVzIA)vAK&YzAE@Y>GmA!qfe{FYTYQ~S?cGQN7AU<CEo!{mVdmTt$PLMKK
z7Z@J|b2*AfpzuLe%^WB@bOrelZo-SV39i_SE)K9xJPU>T5CMI?cK2Z2T;qSrE1YQ8
zGh&TALvSa?A3Z~SF?mbrA%H%DzEm6u?z}N|F_ckA?hbAQ<+w;!*u%QpqH~0)#hW{|
zdMZX1?ELBCY6ra)Jv`Omw7}RYG|0u9kuHsB>1ok5>2zR3<K}EdrX%vUU%Fyhr!I-U
z9Dv=$#<3=WEjQ8peLW^C;LaK8_@LaC8PTZvnZ~DBdj<OFmys^1Y~~%&2M?nM98`-e
zU`PPz=>KkhG`edx?HJGyJZB~9q-Meq)8&<2^Kx`UINabS{PR+#Fgo&G%(BPr(L)Zj
zS%Sc62Vk5-X*&*iwp;gfv{&EFlf>+T!4u?#9#mvt!;t7(NA-9b7jS7ps<sq>NvHUd
z7gC>wrUrp=mKhL`iJLRSzx|)or$=Qf(4t}nmYGHjw_)7X>{<St3sRpRq68=P>@4O@
z9p;iNeROT=(<~LHT;#JE7}6=-?yf(>uf03<>4C5$RqatCV)u`8{Gb;tAf+gdJ7;s`
ztVkOr=D5ABucX=}I<t}?+vgKdHRo0T=>gVBrnAi{3KX`P<=%eTKi4DKM^YkIn$wi!
z_I=OihmVl9rm9{6n1)i%ar-}`5F3TK3}!5#D_~%F2-VERSNSX=?X{bDYMR1_a&sW6
zH~;6qW;hrNgxLN^+$d4f=tq$-F9dwlB-&hrZ}<CiVJI*WBt$t%(1q<%YV4)X2w`QB
zu*N+1#w-5)C|8(5YnahY{J-g7)7*dSg7Q1k)LvE_pNZWgHyuvlF8NO|@8YyYuz@iR
zZTR%L@-nlaWQ<@p2EKy_l+1TZV>__of^=YPZv24Y=4jer_5iWFh7fXGBwX%y$GUt-
zD<8$zVu!)ug*iOK)!h^uHLTZQ*gKh*$v1=r1u7u!6NK7lvB|4@{lqNBC@#w_xh1yy
z92;XSfrqs-5(<vM*+8c8M`Pp9XAojwn;H_>$qbZLd~@vne_HDw@3dO8OK*%FJb;eP
zQ?%+@EANec{DDn;IN=16YEe~~`kRYlW8eGJ)Gdl);tjD~``a*M$j1s@>-@O8yY*gi
zaIe8^OBon(>Wft|O;t_HaQ}NaR`q&X6^bMEaBADo-6`|pD*1p9<^?;Q+C!N3fsKho
zopb+f4<7J_Ubml;WpLVbHwa#O>eWH_GwlF!VTy3U^Xc>{F7?g9(c_Qg*kYnn6$tzj
zq!bV<$a2{eqa%CLwfWk{OVf{@0(bJ1=qr0!4`%5Kr6W~l)^r82lunNRu!D6K)=pbX
ztR%(*VhJ+co|B>vcl+xzB#&`xPKXxlL>GBmgu%sqgnE^Zo6cQ5JNo?qdkEVa+9U6Q
zjY7cg{CM<{F7$APD?*E$++twd3b#BS{SZFH{PDLD8!{aprO8R;ntyY2o;WFl1G^-l
zG>egFLczyYtG(muf`YT%f=SVCyV&nK1r|grM$b$NEL*GzL<g5<6GBmDG4v$49hS;R
zGa5lUkDe1P=(W{oSeMc>kVKQuz--}}9BJ5M4&;*#dw2bwj~?5Hr@)cmw*u>`ogwlf
zA01)uanZ;2?jgAY3lPRQ>?!C(^PZ2qKRtpMhT;>nDwB|#`&49IGi~s{sx~I&K6oKg
zpdS%XQjLq$&0QLK?sEPuhvJvqu^%+>qa9y~481ub9d)8aQzDWHMv+nFpf6G%VlPLE
z1>)=@T+iaO3N!t+=k$7rZy#9OGJ|@_4J1$}P?Z0e>^vXYv)4mVFv2`O$7)4rE5Q|^
z#_#>Rmy$LW;y|ca%bQ>nBmi~)xjK6689g6D=qiun$fpK3;4ju>!!iEjlXwrjfeZ_A
zDayj4a8g|PKmAE9y_CSIuon0+j);7i--Z37OAC5Fglt<{)r@7HcVpuP{xsn>pLbKQ
zbCH9{ej`_tD;t!KNiN4-+2L=vr<df;5==WGn<pV5-*)%we${&^4`F^82+JW1NVt$Z
zxil|3!uPD}rPrWdRpGL2!PVDdFB3{E<2K)XYw|<!mE$S_XQCAD@iEbb$5?VCB&zAP
zVFm#zph5ZWpfDC)P**u*rpHNfK^Gr&aNpq6JCKa?32m3nOdu%h=$GEvL6{tIlSKEb
z4+9VgyX=6d&@k*>k4T<Iwy%y5GZC5zJAc;uPW#yyrIe{Mv73|_h=Zw_!4<cpSo|K>
zD*-KVnRv}~&W+W8&3B*g8{0jNm?z{`BuDI}>fp9>uS8=r3$0_|^qRPtTGb`w)pe2B
ziF;UADM?lEWN0i@pbdM+=Jv97PO&vY43F&*`y#^{$6=)9mqI#LeG?SrTH{1611>)q
zzZo1}G&nVO(Z0z+EYMI&lK69$dtt}eem(s-_5g@9t}ZwD$JCmhd#QoUB=waP_>`H-
zA>KWdV$B%cmCHN{-*jEqq?YZqmjby)RipJbgf^=DU!!aL^fD27x*`)0L}Z9IAId$y
z2g3%My?M-^`m$WIkGD@ij3nSjsfVei$*Jq@VyRL`kh=f$7|GVcArUhQabHijx5+NU
z2M${m+`PaZ`-_T`@pmc?X58#f6_LmwWjvB~00^X*_bGFOGt*hgt)krWH%GY<5R)J-
z(Yex3gL{9+c!6rx*oJpZS@hhzy4b2QDJR313Q^*}!tcBHO_6gxiC7DV0skd!-EN3n
z{js$ToK8CN>Z!y(y0@>3-25Rvk3YO2=GssMdeXJQiN%G-+lh5k=nuCBV!*GT_?4@-
z@b}<d&*}8{@Wi0{D)Lx2$W)_e5Wyk2%y<2F%W!4<rCUR0xz|7T&8w{Y&+p^I4qM}Q
zdOM=jFN5pCJVT^4LeV6<lf*pQM>aHAnhenLaMGNh{GSMNoRo^`^&1-reh$wuj%eh(
z&))D?ZAytFr4MR>@5|*Xe&Ob~_(wlaRr|y^L2Oghj9uZ@CZF;Z&B#2>fH{CCQ^O(0
z{nYFM6scK20NF4&>>3SQ0oWM4#o6w(TECJJ`8AFhL<7R{LgaU!sebPF_AoKRoShj2
zZ$ReM7pj4vfih*f88iJ3tG9S94%oT`ns0J+7Cbov$u5M)vOk#2c!A|idStdw`7AY#
zA;DZgaWI?M5s<^(!ZZE8UDNDyz-m=T<a>!sgi3gp59Y{MxBFG!@+?;)zffcyam>1J
zWZW&7;}6<CEzXT>pF|~8jf{me*Daglcj7sA15-Ped7#N~=h_s%^jB*wN?_PTmn9|Y
zp8m~k(&Es<D5@y(Q_^nmLDMGs>;=4-TcZVUHxq)*p!=*j*5CVYhTuLX6`1lcX1Kk^
z`7`gf-x3iKj=;dr9phjAKWiNZ_?L`csOfV2xo=1McP_UfaHq>4!PsPU%yd6a@J}tW
zCu|#SDy-<-@&1;1$=^4()XrcWzJ^3v6~5r6<W%Cd7&ld~lrDJ0Rg-*eI3q0^7QzH@
z){4j|rR2rORAF;LwRB${>$_ge&Tc_xiUxqrDnGQLOBxZS^-aJga@_%w{kiv8I|z~~
zyj1OQlb4S77vGm$0pK1|o3W#0x!)@M``6KquYgn~nja}sVb^a?^aG;o97-Q0kI2$m
zjb28kd3V-izyB~gFtH|T*-&do)ay0I7awO26jir#Cn@|Xix=eA`mz#s56hYWaq6JV
z3t!N0n!kJnGnK_&^hCQXiY_|YU$E9ld5Z(bh4XTYKXnr`1%5zw0+f4%jXd|shG?`u
zueCaUi0Pt?*x`QmGmH#rHKW=<a!OE_=`QKvZ`x=hbH5Rvp$hW4-sd*>cR#h6l#o~y
z&oF_^m^!gqYdx41YEJ42eiUzK8!$XbafJzFx@%kf9^Wu0!H1cWEMl2%`Kf*ZAHaz)
zeOc#J$AJ~Q=>ot1@4QH2B<3$>3qE63wjZ^`M(+GxogMOPoa=wuiG@QMU?<H`V*??_
zxikOm-}{AulxM!SI#Sfac~&O}Bh&Rg$47Rs2L~l&x-Y>jiJ)Ugk_hAT{hf{l!`O|^
zqwf>;!IhosUxRP)*Th<hdG;+x3#a<+*V(s#Vjxc@Qb_nQx$f8teS+0wewL*GVzW0C
zxZmdZeqG=hTTm=Wcz0uy-!Ei=os3V+Yiq_=o@gKm3JOGy(y^R5*&o8baKb~@LP9l2
zUFTe%dG17is!nenlxs;3*cCPaT0i1s|KE?SXE+OhWiVuP7|jnp#s8+Sgys}CZ)bq0
z_zK_s0^1hs61-jelI><?`oT++t<_v<asxrooRpG(_^02c2a=}pibxR^DPQ?GPGiGh
zEaS8vA&Vq+vwJGxTfQ{98xEmY#3Ss!*r#k6U|jmHvblzgGg71w0oxb8CD&~_$)ENG
z{a7ZG=bXw@P{7TT{SanH`{=k{rj4W?E_d5FKcAa`{pD)JZ-e!0s`i*^rJms@=^jBs
zQ0@<AumvaCa=S#uT^s%NT0}wgbsHIDfE~0R=Z`tq&VNz7L7Y)pZ~D3CkMmbfv*XV<
z0-#VpT%KDn&9570KQ2p5m-wY0Q$Obf|3MWLDtiY>f4DKkbvW7kO!Cu0u7icN8Xqs?
zNc-KV($6Zj(aWoJFNUL^HQir4hG94b39`S~m4z&Fn!jKVek+E<rqxCepTLJ3=g}pT
zqf4gXCtLGBXdRL6wb{Nxw64S+Q}9XX=H~X9?GMyCV5v7o%|#Y(jEroo;(K%!s85pT
z_Bqvm{4+ly<e2v)593xxUa9;s#hG~<pl6~%;9A?4Y}fEFe+;Kt45Ouf#^$Hl+vCpj
zZ?6wuo*;cd$UU*T<hth5{M*~{?U>)Vjcc$sHYR2?HM7J-r*ID}Z};1EGh!@>lg}UW
zkf4y|E}7|9h~Bnl#|%?XfZAI|q{!UzR>9#Qr<-T_6fR`;M%*dUiYG#x7oWf(zeJxu
z+}0UyxJ(rk-pg_m_VthNy5;J_YMZLXfo0WOkm9fAdpHw=a9v@k;HV)f9pq<nD(N4F
zZAl|3E8`iv`p>!c#i)`iXRIpAJ$sHnNsEnO+)~Gsv<swx>*xBM>gTRB(#N#Y$*UlI
zQq++w8OrAocqx@Kg{}|}`Q}XDpC@P+tK?udhj*a(2(?yE@?U>q<CV9xqYiP3xQF_j
z?dv7DDAGdyF0SfG3DNgDV`%%Q`Q3RFz2(@anH!oJCK0v{X$^CiF_7!e@hd_C<Z=Zw
z7JdOwzjUVWqFbFbV~q#`N%jn|;=kwkyMLpDn*)X~4u#};<DveN=V`>vq_qSnN=3n)
zedIf98`IJtQdK+r;;w!Dqi|~m7#(j%SYk(Tq~yD)dH%jvZGRzY?tg7AY-#e2KG+ZP
z!ZMMdTClbkn;fTq2Y>56w!K3Y&m-1Hc4v1<H~*NLReJ@P7I(jjcDt0R{vJk=5HUli
zg7a^a=^6JkhFCiW=ovB`$h?-}rdIpwMuqJyL}MYMCLg$YlK-UGI`AYS0qYIernB9L
zQ~kt$(t$K0HWC?T_U2GnkvaPWAD>{|!*mM7PY_~QrMQ20v@sw(mWW6?WqM-F%n<<y
zy!3JY^xpOph$(JU;oiw~zfAOfH5EDX+p943D6a!r+!Vj>A@(L6AM>~HDz1@tCi-8G
zwvHmqwVZ!VfrD~Hh5t!YQ|Z9UxG`|NEm$plqhFk19pWY7-7Z3)m(ScO;RmPNaJU7<
z5A;a_Oa8OcKg@VA%i(G!9GEpSgV0Hn{Pn4zEc@{$;xxcNz<LCvB-ktrgi&+@2&AIu
zC6^g0Qt*9#1K>z;LC7L_$aB8Ic`m#%NSwL^0TDtyzfclAjMyB=WHgrzmOqf9?ECcA
z=ygBPjKt2(DH978PTC1BAm4}qg2_P4_&fkz0bO`5I=RDMUBoyTrnt8h<e_LNAoZE9
zPo3Z4T_%uAe0ps%y2+xj?l{;V(#M`0+NAgm95qO<yItV>t}!5|<|}{(_C%r6mrnL1
zTht6js9p?_Z%P5{c3B*~O7LYMJe)_ZO}Q}nFiraN1@rvqR-V#c=}IB8AyFAutPBg6
z?cVqxddxJSo)(?K4}bxH=wd6Akzg=(1!V~^ukTU1y_6aL@epiHm`EHJpimI38o>YM
zlE`*HeH<M%k1+`aAp!*;9JmAWV?e=@HL~5Z0{<5A4V-6%q9mir@l+w90g%+1qE3FJ
zUkD^^VJhS#(w#4`*}hY(Py6=w0PKF70obrP`J{kBvwYlC=gqX$)|f*uAOgh`jlfA-
zC;Ii@*_s2mMiFEYNp#d6XZHmS%y2yuzFN@~&><0ahRl_uCwCh)%-0n0wX&8HQzG&r
z2e6wvI7*&Mp@s=22B@y!EFp)p-P)_7RfhxgkXyDMc(|OSLY-qeAphB@|1d|0&mvwx
z*JD%CKIgd~?v1_;(4U>cHYn4iY{R%y2|(E4f#^5HEznhnzJr06W)8($w?>`989L)F
zP^>q{bO_Ck0r<d$(TzmeFnK^SDE1b7Q{dJNi7tJfd4$K#K*K;MVHIx__%&m~2@0SB
zIf*fa2Vwq`(eg*EPwyF(AVY(|)Iy~yB!cHT0xO=4K6$Gly7ePcS8<`SlF*F-#K~4}
zZr^w%xyXcKKwRj*PjFxk4pk_Tyz;F=@kNjlzBoA8|DseuQ8*5uZ^-a2e`N&K=CGf9
zQ*WLi#;vUh;iHxC%z_Bibm&3B&tLEc){xZsILiBxT&=*xwh7ksGH-6V_z%BV2OAXI
zHn^aNbrd(YO;dY5SPU+f9fRY0+6z!5p?@^eOy<gtMuN+}wNEIaA{YjjyaKQ<nQro)
z!HzxCIyfA|r7&Wofzxu}G2W7|>(!w3%Cs<-lQL16;x18wTb^*6F8lWC&L)Sl5^Igk
z>iOTJM=b8u9g9I}Tgw!JoR}EOL$99x?pFIT`f5G##U$j=1v=>G=+Mi04FvX68gGh>
zgY(OQ3jokv^>nXyzv<oq`m3-OO&O3ML1bWFrpG?J@*i6}>M%ID6Y7HR<fub@u^hYH
zWa*S;aJ4;xi_Z8{dp;)3MLmQ4&%%QTW~CbOs3t)M3yi&NVY(9f?XpKuH_5ukw>2s^
zP`W_>AEg8v$EW>&puPPviFciFP3+aZA|2vQRkdc2m6=|k_Wl{cA-hHwvGc=VW-J0{
zBtIveo7-*oYOrt=FC$YaUy8LZUtaMHSMzl6(}=VX*#Lhu5Rh(qRx9O4%xlpOcxNGe
z7#p=TQTo_{>2v(6FM2(NlU;dFVNX1S$#Ce8!Tm=?|Ab%3%7}2|ccw5x==lg<-1srx
z>#Qsh^R^eq-rhtmE;v@gJ_!6F5C#}HG;sgzL0d`muQ~EK8)1&TEjKC?_fo!FmI%JQ
zCC&V}LX6edhoC(Y=;1ATwQtbUfE)IYUBvUwu~~CKaQ*3j+C{S*^$6zwd3T9AaR>Aa
z?$z(}WkyUO^ubMW?`OHj5y7kTZJ^QdDe=howsuJ`Iq4+1b+_&i)SY5|;|WS@N{~EX
zZu4}(p_lC!j5@<|t`)|ov`t?>18RqJuj~>VyM3yX2LkTJDr%|N00odPYGv?dTG%6r
zuI3ZaEnBoBpx}3-oE+-4)m!;-+t{x|QxE6J4{Dpz$_XqG;-DcXwyrCqWU!YinumbR
zVJce@EX(7!U@{c{v_TQu6zp>E^@uHdAVt5X5C(9_>Y6Y;G3B7M-Qnwl4=3A0<;wlg
z*wR3F4@6P5N33TG?cBnci*drp*#aIOH~sox|0(tag^udvNR<CR%U!oASo009vC4Oq
zP)j8$4CfO|{*mi~>t3=nb7K^mVUJMI%Kc-9*o;lqUam@f#8JA+U1HBaLetjoRl3v8
z_io*ji>*2Ac?9YzX_-n*D%WjXud1B_H5?6$sCv3{{m$yOe*a*#bPu@<6<4dAK$-5}
zDM9~VBBEoqiakfjfSp|PXpqQ>?ko{y8rM?|?)1j!)JuE^my`*ymC8v6<v;`Fvx7Zn
zMz)5OGW`%zs+5khHMD>sW|_!><37E~-=7)X`uBMFI)4w1<KI(E29-9L;QalANxxgp
zN-!{Ht8f#>_`{0QR<qJ$TI%3JCQwd3BDns!NC#U=YEN!3ol05wQ4P2@Kfg9u+7?^Q
zeTJOdhMY?dF@?^!fsgz7b&<aV)ZvXx0_qqO>}wT?{1`45yrJ`71`oZ>aGe1t#0C^3
zy$oBz@7OjdcaNWg%X6Yy2@-cuHBgQRa*VUgudecwi%5)_<3?KgO5_uE=<bz4!)*u3
zn^p{RizH3po^Wfi7Fj8=Qw|_aCguSGG$eg-z0rREO5g1SoKIXFxbl$|QGW0xBE7hd
zU1LY=*;{N6&YM7qkd+=6lLBO^oAqVz0}&K37K{XFjIOy`?5a6`-puUe=5)X*#wsBg
z$;_n^zIT1>!U?@QP@l^aibca|iim||kneU~7<|$t&}%zWf#TcaB)s)~@Y6q{A|u>H
z#?+NfgP&Dj5qx|<8QZ`DRkz{;Ljug_q^Hgd29r7zTY_m#fX+~En`+W);&r%z6;}iF
z3m_(v!o@+}?b#jd@Ho)bB<n-{#os_Q-B-c$3vAH<H7YO>52kKk_G8yI{<qv-n$5)N
zvZ7&NLg`k5kgA2j<JaIu;vPg-(`eijc(krPEV%v<s0`S1E!qa_%qb8j9NZGzG&$12
z#W@aGa&;YIIii9hZuadG`zQW5m>;BvADpu25CAwW(ai8w!TV_kb#P};qh8Uo{gfc{
zUl#?n;|>;q4+pwOm@p)O?UH%DSsom7QDiEAjYjE0TyblUkF+nR#c}{d2G=@w#_Y&h
zD`=s533UP+G4dh7aD@A`Mc#fbvgOs2oi2xAPIJ&4f_XYYJ~_w;fP50cBa6}=g9)IB
zRA8oY?#Cy4<bTb!3Y$lO;Y=iakePW&_u&$Vx3r1`uUrt+bBqu&TK|%t5luT(aw)1k
z!XsKx7Gk11dXYa47&L#8C1qNofxHm)ZK6wH6$nW#c27oBA2o=iQs5a_8#kgk^3A)<
zAJkA|q5|9z7S(i#T=y0Rm+Z+6wM7S#0^k4Uz~I<Dw(iITikIsy9USbt_tqWYGEkI{
z9T?2f6IiTJ8%SAfY98_kM`_;3;Ig;URF(<g)GPt2q%9I(`%<*+rJjqBQAfjVK}?V%
z6ZP|u;OP4iigIx5lJqu#)`U0$@7LzDIvm^43w*aDGxd{^bkUlVLsG+EuMZ9^w${Sh
zs+uNL7bwskvaB?x_YYbQvhLwZY#VkcSyA5`{e&1De+QjL<_@9Lx*dyZKc2o}hI0pQ
z3SN2BF04Xwfh&nLRVdtRUkBworv8mH6kjQz_0U%;0dYJzrsXJ@85skxT;`@6);8O1
z>K^Pm*knW^VM1vk2Ve_dRvry<Lg{hK9vQM``=C2LTL?H3Qw!XwJ%XWs5oDl>8+!yV
zosP7`F>G8<Qs7$ZEa-w(miz)ie^ohz-jNd8!h#bRPII0MQhoqF4D6(0x?S}Y6XB{l
zeR=RDg&=5`J)DHe6rtc)Bb6PsBsl0h>p=^kN40O{$trLcJR3x}v3HbK*H=zoKb6AL
zIkNZil1n$*Bjf4NvN9A5V&!wegX^tb4^+)0l7*fEuI~-Yg88ehX9Nkllf&@y_cs9&
zCUd?N7R)Cq+epQf2wap(23LKG(vsoEHW9T0{ySH?O!aU6ko7dnM2#E9w4B@mX*0Qd
z2NR{`C@-8G!7x~^8Ua~9?HlyC+MWS!A^nH)H4#Ma?%jfizq0n>3A9W~_()G1v0re*
zht^uc5uD!A8Y#!wUlDd^xmEiGFMb3TIuDIkVU;=znGuYoYj=*_e^IIxN=&rG+t*?&
z()BZZxj!MFTt6y$VQG)RE>XpLEdUBMReq$@j>}f~(nIY>u#kqP^!gTx{L#hpi5L8&
zf}Y)x{Ys!fabpA5oVO~<b*S5U6zr2+xNvVA%vtW1KEag-11f+?gB&C*6J-OlJOAzs
zz68eBB0(OePV3IOLB`l#heDv_fRxzA79gTq=+<d3rYwQ2VHneDX5?pSV@Chv54_Ey
zL<Uyj^@n2~)yJROVJ#C;c}bVyT+t!^iB)N;DS-8kA|~KHnCj3oW9RiT$(Z7#dKHVx
zRdC4H!GZf*^XN8`qCrk1UL}R@y5OCCt(hC&8X<-czYgZ_&+g!gY^{!0Vi68u*g)fU
z4Ty;Dz%F7+X>}DqB~C1rR?zWXmpx*&k;vco5@oqZY`d_xtcqOPEVA3z$GX1UOAin%
z3i?E*D=SRdJuUY8+jRVGqyg?yO!lS;3IH-J(Lz)Nvg!PrBLDd$qPzv@=8BckF7hux
z1YeW4fWJskLXBAHIgG5Q8wPt^qkp!5<gb6+MarX*mlU@oIu<3WrX+U_@F1?B+>iaO
zD^kvcfs`bs0DY|@;-@q{pJ))5yK6A~gp>~o2fIQnLV%YU_o$gY`TvP+-Ji=*WF^Z{
z{C_@_mu0%ou8)=O$fEx3QV1)WTnd4DRXq&@AwV9*i@5@PYh?D=C!i9>R^Nw(H9z@%
zTeqXibhh&skO@Foq5Mmn7@;Gs|4y+TJ~_Ao>1bdRBB;=m*~$jKbQX54TsIa|u{17a
zd5E0i@0vwa4@%+(<d0XdGqT=Acln!#U=P9eT{Vqx8ErXutsJ)^qxTbwBkC{-tsN+q
zqEeO0j&<(%DE8%j)=L&Dg(0J3@Su!9(?5v4);pro0UWOX$JcqsS5>6{e_Xp*uz?UD
z_nf()sL}MIpoGwqP!gIb>Ls}(my{b*2#N06P*B&hYXRG0!LMR3sIaJjWw9Y^TNgV5
zA}TgCHqhVuGv|gR?C$R$USZ~*Idi5w{rNmxEbzG4hfBxX-&Dy@In_b!a=0SG$n=l>
z4=M?qA;2CM>Iwr0JTu*#+0#DsG}IGC+!Z~OXv+opcdNZZWm^#7h`tFbie-~vm}3SV
zWG8Om0c<OYH>46-nWo@6R{@KVs`^?EM>ElP%2tG>Q88}|#le`=$S6^&fHbO|Eb-rz
zMyqyk2?_cl|3dYvNCHQ6ofozjWY9_C=l`#BR1m9287bmnH#{xdug)&zLaCKYAeuVz
zO#CT-uxdtiEDPo%A_B?Ne6oR;aM;P%87UkO7q~}6H*Dab_x(FtSp<Brz{0S`Kn7!j
zdHovudJYdE3TSOQ*9gjj>78Tk9*^-Z^cCc_L|P$hou@irpk1j43CNYKOYmKCcbUvT
zN^Ip<bY}y`CB`dmNdztzuWY)F|A9Ah85*hoqlzSnanYR7_#$@umu^c+3I9?tB~paA
zfX}Dd#dF;zQniZYORgnDymqSny3Vy0H)$YXS+U4Mg3*%9_X91!UV76o0U<P_@XI>D
z|NCETH@@JOko&<VA%*6e!+Y92RelV|Gj-~#NFC5&JK|S=*_1>pxwqU-odlJS`(nF)
z+v#pawR8dvL$29*mff+)HIhJ5hnV0pG3jG5y=iuj2V5TkUo~;y9|)p%Pc1&%E}-5U
zyFhs@kbv4NT@s6IzVB}LS>fh7Ny%0~Oj0~EkIDmpTkLNukLEE#!~jh16sRhB<-#}p
zAE;L;&Zl70plTPz<<ia6Rqb`(-dA3ME9d13!kzVq1;AU6uwa}8JS!9c!v>Ne=_h`^
z>q5$Mj!YsG5oKOpYI|JeX3iAar>$tHL>VOnDYC&o3W1fTeMXp4$$0bGJr=)?6SF{X
zC+$dOjQ}joF&E!w#~;ayB+j9SHN%vN2s7{8YFBsXJy`Q<UHMRU43Xu+G4{O%w>T3k
zTTthkgt^K1)Qj9akDqf#Sn3!!|4O|jN(STpyL;GMgHlr^F`_PX#Mn><JLIeOGGC<%
zdkwZ4{Kq^K+2Ic?b;FIH$ub8y!C9)PLM@W$XgA#{81@@x?BF=1Q(g-R>=paZf4Lh_
zg5fLiiLU<L?F(J~I|RgukO)V=s8k4dcx$TdOW{3rsO(~`E7>S@KS#Ib8<liJ4Roa*
z@t!o3E=FdubeOx=_&v7-%Rpfm3Xozm4C07Uds)35zxjs;r9_Dd#<Z$JgREb+**nV)
z8tSI6H%1zO&>{E(<(Ara!+&MOfS62VIZ$#^py<fgS{#h*DCH(^v;WVR-HXTWs86gI
zx^bSleGgIu-HN#sdvrZmY>>Z)m<<_N^Rr+|+zCir5(@KSo8`slZE`0gzo|(e1vGR0
z?|sDn>037+F-ZKJn5_aCEKga^KfNt@DD5}Gd0A!Rl2Aknv%x-g&*R*SirW+p?Q{by
zrg^etD4mDL#|nNc0Vg1+3v=kh?NtQ}cTkNBMU`rU?unhM_r?KJ-VJgo?tg3^FI{CX
zQ>hw`TT^vwK=?6nP^zY%9q?PQK2(tmh(Vr8no4eWH-HQuGA__2>Kjl3NdG1KYN=I0
zSgs+5mzv@3AkxLT9(cc96_kck?7OnSp@xpigG~m@eC9nrs``}BFeC`fY@n-Wm<cQW
zZdtB%iWpfg=F}|n$P2zJ*8{_HjqW(#^}c^S#~DI21>=0Q{X(mREah_>9^_Nt6uM0A
z*lNe92XtuALrMTstpcc43Nc{O9OQd`_dlc(BWz*{Is72vAg*Vj9>1SrM^TrKUyLF}
zhlEg(P(Bg)eOR5nCev*T)!y{&oJqG|RP0fGNcO9=jV(sSW3MQt@`zn~u$%L6?8Rc&
z<QEfSMRgPmA-(OQKk|O;gTS?kLAa8&?(lxQ$zS=3+Z@8*Rr|3<)PoK9@*SaExK$+m
z4WjFIK$IoVJipmL=&x>bsB%Q*I4R{s<$+v=E&3_zcm*%RB30-1g(@d}E?M|npK!z&
zCk~G&t{duk|D!<xP~;xM&ol|Xin$T~dsdqDnK&Oy;Wt7v-PL62$OK$!dwt=03Std-
zUReg<e$7iO?C7BAqmt9Gu{H)570b4wB)i!w(%R2dq<&^Q$<2djv938B56&An3oM^(
zIZ&`PbKMg`eOZNK1rJEJ2Yz?CJ$6X2KAb|HXpRJuMp_#336fBR0*{=*@$os1{lTsB
z^2|xy>{4+nPJH6-LJ82PmVWR5PB~D7Fl_RwuLv*AlPEykbalY;i#W{f+aO$>T-BSM
za<Ln%1aKbqP1TQY+UAcF!w(K3@=8z^5Y2~#O!L%7emNC}Sy3dQ#+e);@dU^nsz}vC
zcEZnYf3SPiMr(E?HWdlUu5gtJbsHNuDV|HK15AzC_PD*f$Ss@Xt<oLU_)u{9K-<1w
zX4fhSnMa~gE($kP0$C(dol>(S;J2I?qC}ptZ;0M&;Z?Pfuhh!((hX0x*V`<jk}Wc^
zfB}&*I|^>{zQmTe4r&Y*AYn4pcn+B6n1_?l9Cf?>9(q7Cx-4SYu5E{PJ^!HH8az^{
zIqiBTyvSxvNX!a*O2Xd}kfyyKb)-o|fSjP9;wD9&5t)&OT-iibg|3{5jNr~PE(uNq
zGSr)Yb1PrE1E&jIIvr}`3ef)kdC;!QiCjmv9$iQ;7d&YFujxW&k5hz~jUs9h>)4Qy
z_UCDC-$5ar>8e9#o5dS<Rfm>{gasyAD|`}eVKeB7j!}x}W|*>%{aYS)<iM3+4tOM8
zkde)w27{2)E<)iBF4P@CZ`xJ%EBFKlw?v@nuFy_9Bur5x!iklq7F*y$oBi&hzTAKD
zNEQ2~p1R?XbHpeF<9IZ}T12_*t~t$I`)~hgST}^wrT9?z5lA@siOPafj;JQlSRLg=
zSbz-P@mz7R0Eo|8OVap=i;>QR#~HG5!VPxMZcL#oy-jVWw`?4~EzvCuMSPsOq|HBG
zTf?P{&7n0oz?}KtD;Oo$1XZ8~Nv{n>M@E7Ydrz|4<E*0qX3DC%bWzy!#yZzEysXOU
zu%g6iDtP+VMXsF_%2?G5MJ$!6*xyb#k9Go0;dQ(Rl|POBplBLaFI`vdM<80Ih)pJB
zEW~p&?=5>26rA5o2`)P%57`D&9%Su=^>#58$>|J45M@xQu4X1l8K!NWy>T0FCCp_<
zEz}UHj<2W0D%W!L=l(yE+<p@bB>M~7i^0OoU+=F|fxCdqC)9I6g1zF~3l4G}h*y<6
z+)#khLzF2ipAgKb!=zop?}d;{h1VnZ4Bj9Bq5umiH%A4yx2^CUH^V#CE~@1LiBC+=
zR{wWIHQr9vx}Fh}&C8Lp_2=&PU5O>Z#2jbN!@rhis(S==lhI=(|NmzX``)gRIu49z
z#(}5aF3IjX6k|Bu)O5>HLdu#u?I1p1tvgf^B0+ut&(AP7-))bH2Xtn~4DvnQFj@Cn
z;=1%e2}+BI4}xb1tq=2M!inl0Mj3DqE7=ab66`c+UujvSZj&oy&;AQTaB1qveG5c1
zy5Im@koA|jF2Zf2)hQLEeQ`^I&dp`E614>KAuSUANp@tyi;hl}ZZ_i~e8lzRA4Xo2
zKB>5}pR?^czJqg}PqqvTOzI|#1vPl_<?faM#sHdkf_=jQmS}d$AFISq3IFDJ$(wZF
zYj#~=EH2qmApvH$)^SeYbhc&6r_1asBESYpf`SW*cqUjX^-#=|{p{AniQGYkU|=Rt
zt&u!I22Jwa-cw^sU{wi@E3?Co2V09sz$F`5>o_~f+2WHZqBoCqUq3DC1Sx`hkO-lz
z4_`!cx|tTMcl^KwD4n+0evDR_;HoGdKo>&2KnbH9=_>zwRglHp$>CyGU9ur@GYr@J
zO}}Ze>yxaS_#WH}5V2=o^phTTU5-%dEJ-I}OneeqtNlqLNf=b6b~MV0!Xgn^c9K1#
zC-cLm*?|+13g8*Lb)3tkqRUlihQ44uBpxaoQ$K`cMY4OWkX-_<q=76;;#LXtLNGdh
zh`mXtnv=4lj;N<r+Ep6l%ZZA!P&+9Z#0Jv}-J3VXCagSeqvELIxr6{`ntreQ1$(<~
z!0`i%+f{O#umhLQ?<$)+)MM(Aqbs7i0S%C47OwMe39JsKjctvM&eB8-0lXdo{i6UK
zAaGqsFw)DiO`m`IWqSoLYg0{gcTxZn<zugV%FlypN<(P_Zyb31U`wbe#=5VW?Wzg$
zQDarfj%8AbZxE(2tWx!!nuNM)Zgr#Lnxv>=4s%uw9Rd14vI<R$Xg_t+7-&eDef%c3
zPB2H!#o0n|x8|8Ui|vss-BV74#i$7$2v>wL5t5=M_K5lJL8^BXfkV_fqUG?3&Jx0#
zaJB;BAPWiLq~_ey>_<1avE1y)Fhe3htjkd0P0)4S2G-R_<xJs=NRrMoi%KowYMS*(
z!7J27B2pR%yW|Q)TH4E3Bl|NcQ2^l&n`egFukQ<nL-`_fu_3V#yY&v`s<l&;JPyFV
zW9{p=xaUAMaNIH&5;t1W@L(PUJvyDWQWC35Rb{FmcK^HGQ{w^8uS`rn8)-Rnv?XFt
zp9KcPOwONsKfiCdhn**qLZ`Axmjmnvw)X7<?EY`D@!W;L?1yTG9F=pZU45-<CTJXo
z0m5#Y+1uJ<bZaq}@8GS80~93qV%Gz|T79F%F9RZ&BORNb{dAvsim)VEp;XB{!(5hZ
z0piy(cNWv}zM-#DhkYrl34IvKRR%zayOnMp``tfsJtGkjz)Cr;#IF$|@6WQ+Tiq*4
ziLpSgLVG15;@uto|E+Y*uAn#-xgm4}^yCt~_S-N1x<`3C@Nv{#B^pzQmP}>x#7k^)
z9xI6NySh!Hek#^)XGyuT+BKK7C0qj1qg8F5=QuWdO|ZX`m&tSZ8lX&@WG!($)5lw9
zMuDC>1=NvRx*$M(irqs{aFmM*2a1RU0DU>&P&-S8PzjID28CPz1pE<p6yhzd6XoBc
zz&Q4lG_&p~dxKP2$Cb-xRuj6<yfGM{+J}y|(O-Cka=1diYroj!2P04rG%0?=gV+Ot
z{R}Cun|PZlZY5mR!Ot-i_98RkP&*-bJIuJeku2EOs9c(KtBUxKhuBX)?K&7S3VG0!
zC%fC64_r?PD@u`HockDaa?KA1*~R<1eHLB`Io!@YmPekonfHd@gsG2tPr?l8gaFWy
zp=2__ocM;nG%)M9E6OymSrF8lY1RQZB0}a!jyobe!MX4Lj{g~sTiOc&^b?Eb_xSTJ
zT<gnjtlvvGnbCySK$mg{_I$=4j2l*qEhJa0ebO+H_y0KDT_psqcHJAo1WBp-)qm$4
zw+-T42}7DQC$w(%`@t0$szhdsz$<__`Q*?33o&<Q@@t|2SwI@cT(Eh%Eg!@K&LvUd
zWJb)K5b9Ou+Kv5O2V$=i;RVZs$Ow&=FbNk%G7D@!#6fU5kjfS{yAEejCFVC!+Sq_R
z^T#{vsh7Knjl#l(YAAjx3xAfW+~zk=bk7aj6i5dM`J9<<D{U#Nlz65<;8-)Kdc#j~
z8V?NYg2Y90rvk)B<Z`Sd=C&N?)MjV#66<)fWJpwB<=aXXsz*G<pj*eu#Yn9}<E!=)
z_?9}vGDU7;iL>YoyT2Z2|HYAqzPPU{X#>Uu{SYw}HvgDCHE`Y&D_0jRYtU2isC{sM
z_mtDUaYMPu%Ss3TddwagtRN`eQfr-Y`=9sQpJuydm`Jq=*9woqcqCH~WHvxpAjqR8
zLDr=Tneu!)341=rO0%C)&k7=@NI@%l(Vv4|o+k<aaUwrlhkb?;T!Uz-Bl7>z7O@|E
zv(e8$TVzRx%chFg0!2E@95&NFJJZc`d@y@#_J~5y+6lqzM^X}r%2CAH<jO$foFXpv
z%xV2J;}(0|etU@<q8Mb|>h^`hmnfzGgTU5<0xwnx-9@5cac)U>Pn2Rli?FSVD5DRz
zGqzAsJw9lBVC_M)V%rJH;t)-E+t-71zR&t3aEeG*!Atk1@bkqMij}ya6?dfvdtG7=
zxtb?PpX7;zc*5mEk6Av!&c4K*q46>DvAEkLOL12o+Ud{9buR&p42jUSb5Hl%>Hm;M
zJMb7tc8*9O(s8#B9MEp7ES5BeXUfT?z!jm!A<Q52h@%vaAT{%zc6voAG104&MI4<R
z)QlkjkarvtIp*Nk{m%n3G6ml6&KtrkXJqs~cH0Cuz46s;9|ax6jZ${}5Zh;}n_po<
z$Kx|03P*))T;C~J57|9}4MI)En2Ijx)L{_Fq)#Mxo%+Zg^6Zy?;yHGhoGB?$Y!V2D
zu$l9Yvj@m*9$0fRB_ZhKWpEZ!Z?$q=&;c)SNTam#o^Ninr;ZMG93LEZe>IaGbhEua
zpDB~?B3jKpbI#DVM*q=%bW5-*)cZu=a-WI%h7}V$wIY#TUI8etkgTOLGi6{|-}b{J
z+|mrMkmnV<tV$MUnVD<+e?ojX1tWKeD^$n9zNGSPnprr*E`P>-BuFs{6B8jGFbjK%
z&40u76z`x+RJ&x0oRepoQ|&cRy1veiO4a9ndWao`ivj{eX1_uJ_$t{5fY-?~&%I*%
z$@+pxITAzxIqSe%Z`ot84$#b-bT<QQ5JxM=tb5pgkNK7JLHao5afsH1(L({j*m?|y
z8_O^m=^!{#1WjZAn(&VQ&`WM|qbSfR(n!QFPmIj90LJSH_;5{)4A1}+AsavVh5z?#
zR>!51ve?jA<xoOeUfRs>G2-Ajnkln=77o2kbIZZ@;rXruDX$jr0n|C}-9WqkYWLcq
zI3Ez0k)_bDfN;5co%`{~wz8`Bpa_JiG;`;V{+YqmC<M=mZE@nCI6{uO;Vb_ifzTjA
zjZmCmGFW3d(s&0-B^ls2Kxjsw!B|Hez|F@xX%Zqi4m#wHAC6m&-;7L~h7TX+6IhrS
zl5l`L>UUGTVo2bV*0NBuJ>X?v+pv;fb+@_C@*0Go9ZES8Ap**W@!xvScYY(e@}04m
zZQ~LM=Z6%B_xy)HW<L>|JM?D+5Dxr{2ixQELvi5Aq=)V~0g}=h2(RcOL|y2N7NV|K
zM<CGvGjVwHCR>VDYTruO>4c(=cL03RE&jRl9MPj1pfEtt*|=CpNZ(#-pBfePkmt_D
z3hXV&B6;S(%k7ONZo7vfJc;h{wJ@?vkFbB#*E-;kXniZkM)v@}HuVs+)}uge(@^da
zNBJHbU{^gvA2tJa9DjEvDx;ZzH~u>J1mvA^M66n%9$eGiuKkN!m=UaW!s>})jGPST
zI~ij-OFK<WyN<+R8DT{XkgVl8;<5q`u2=$TblE0;x_$9a?up@icyM-r=*Q4|<tR)2
zBC)!W+-c4~kU$(M3=XeA9oUwUWHmcqf40zW))iXnL+Izz+Mrn#oHa2=3?)Pd6a{kD
zsCY{ajS{8yKGTN91|%6H^ktz3XPV~0HXSPhi!?2Uco5J^2rQOZ6q!qI4c4d$12?fK
zpc~?5%rGg1cIcn!!4?T=CHM%slW8s;VlRH%4OP@eM1s_2X9;!s`@X&GA=lH1JQ}Y|
zP{s6YEY;mV_P^TbI>z$Fk$Nb3g3o~Dj~5<q^T<G8azKLt>M6#5Yy#b0@qbWI28t`$
zfSiBGCUQO-iPzLg#mM<$9J&FDABPct|GM9M7SDhZ&?I}QGn)|bo?-eOVLul4R4#;y
zkE1tn?sxv+KO%zJ?obYHIv`QhtNF%%XANCg4FkOhoq^`_R{4%K@CGEI1l=HhhnK?v
zDi3upNBqS*8;Ji>-pq}k`v30Uw-{hYi9_^Iv<!^VvA}HS*rKMS;!$XUXerUg(6A_g
zp?uKz;o0Vj3+()=q~ZeX|5yhA`WA5<KOB;Be52jcoK!r9NOR&1YvNKw#}3DI@Td3f
z9j7D}mnyLcfN|jPs?5-dOhMM{mfpoB%3y$QqO=U1$gx@XqHVgUcku|04H8wT5GxdK
z7Xs=OHk~W;bX`*M2pp7@A&NJL#?^+<)k2ci%_vF?UOUO2JS(YqBw{MAm3VDvGD8Ch
zW{QV%d%~mb;HzD4Q8Y@BqHE+DObHrGQFI9X#4<Q>ECgk0fgS(1q~c+?zzA4p_HHm!
zS_s>QBd-~lR9vj8;>~V$`LyDs+5ga_;%TV8;EXh|I7LO=N20~M{~@V(v`V9iG}N21
zB`nRR^X)Aw+-jmb5?MwthACi6TAFP4^OK4xusBf~0Bjf=K`9Z>gw6giIH_3m3me&$
zYKqxZM_PowTwDkX!Mys;c=vV11nz561rwPR{OQj7lZuOoer{o*tJ$zT?d0Ckq~hV+
zeKH~&LlZF*G2Mc3S(M+k3;)UqfY3)~NI4!#fyL$rY*HTv5sFE)PEnGj(3V#g*@I4U
zUr^c{nK_dYLS)o~3RW<b^}}WS(?zTie$)tCIV#?)sd6gP&HnG%aePUE(n%}G#~fdT
zS^2c1?Wz^Mi>DHY9I0*rjJVO1o(3PqDs=aIy^F_SJ&To-VG<mNvBM!@jhk&n9>*?+
z^Uw@`8&;I7K$`KMn-qzqi64(2PA2HNc4R!Mc&aN{lhOi=SZ!k{AMl2XW+prWMw?!0
z=YG+<m}pmbrdlvsjGdAv#&TXwQt>#Nsj#J8nmB@8js3}9nv_&L9?J_k9rBg4OJk9-
z$4s`l{aIU_L6xB8B&IO32<E>aVt=xr%DFNnE_$xrR+M439b_kqpwZVRHZDdfD^i9z
z<zTzwP1i%d$s7qc0eQq%#GziZw_Ucj&v7guDAqHDlSDwC`PbwAO;`O#nv&3kgJh(`
z;AD&zshvR`cC%oK_w!BuVbGnaK&BA`SZhrFo!)B)+cM3EsQEgl-;kbdmObG=a(2Hm
z>||pj6)j~ATgw#fi{7*SMgNv1{S?9o^dXsoTmZ!hWtqK~`R`TGLFNy!zTm@(gp=m|
zl79fdNBGa5MT9CE6*|Hazv5_qO0bQh60jpnrF*K?4Lcl(kNcns$vDC@%*jvt>tYV#
z6MsVOCWjzOU@B(Q+1>hY`p)%?1yVuKbpjxme^CDy+Fa{o$}cFHLjk;R_UwP(8rK@&
zidGP<i^9Sv#YgtP>J`_6JG-uqP~bQz$JtaOOEus3?f=dS*H^5BHLRHGLcmKkJA3qh
z{GYCioKZMg8;_`}^s~MD|NS39d%TKeU;+-j<=w3Qul}}MyHZ>-Gy87{+Dkb@4Q^UQ
zu9}6t`#=1=`~9xZ;MWyL^*`<f*LoU)4Av{$({N{gf93K0ul{+r@s->ZOYgt)4-W9O
zaMyguM>nIg`u`y@pG{P!+@u5^nlH}k|4X;v=Mli~;lp{DGR&gy!Y!Y<(OEtYPECaG
z!tDua#F70U+#d8`G>*9KA&P>HIAL4(`1kus9wL()0DYl0BY>K{2HDI@`Y6|n@N{BP
z$-5@UjJyUj>i+PRhaGn+2Nc>Mna6CLA5I%g3^^fbfH==a)l~W~tQ8}`hdxLf%VFn5
zz<3F5gH%$gMPL!ES`uE`hb};^JC~}->r|>{I7uBq1aN}!vEd=Y_O|F3`>E>KbVM@q
zB3O5#@C{;Wsa!|#a$tTGT8p5_Q#VcM|H>6qkohke%1Em&L;1gT^85DA{}!@K##j)t
zi}E{>mtu4vjyKO#g~O%ak|&5<9IJs8VPByNnz=a~9&{|&`b-hwsZrP#k^<!qAY1~U
zY@(`985E6#WjV)D`5-!V&-%As>24wxB~YOe9=8%lPvwhD-Spoh++32r<K(&3m(8Yr
zPqczaWciM(Z}cBZ;z<y4XT|C_v?{?DB<4H(jmse$uoXOl(Z<;uFct$+YC`AvADrmu
zNlBz)1L4eQyf~5H^>^IJAYjZ_AlSr3WGK>Xu6)J+;;R3d$}BflB9$3+CXp}+)=av&
z<SDx%i$pqAGe&nq3NdwmwT~CMrjE?YtVCvIr+iBQ+Q4L9WmOKLV^C~=82^^pZY00a
zT7bbARSt{*4(pkVZ0}xOevF@>)4+)Ppa|n#;rBva*|F4K9Slx<aASj#iO2w?Qz&7C
z-n~REq>eXJk|eFu=j{4OY^uE;wTp(h-wq|he71(5Dw4^3z+M-mke1>lR1yY5vyJ61
z*qizVKi@q?I?JrO&qhd*=Dld>@gT22^Tp*iYMGrksPmM_luPUMedEgG!OIm*mHwzL
z?%w&w4)Ct;YI_cO;GJ)j0x}XeY7VDlL<C&bC|b4|y(M|dI={G3R+L@rblg-}U*#;D
zJUmG~BZ;08XQnyB9DTYyY^al9U?SDPMAVw`C7E)EU%Ow@Txdu>B^wBMsY3E7nhcsT
zO{u-ZKaWioxg6ct3iFjQ0-JD_3~lQVbW(ID%NVo-qg3Oke&ImZHF1ZGuFjB5jTsz8
z(_iyXI0j`26GjwKI2Z~u-~M|84M736=!_XL`PW!ZesgQ1Unm?B#m);FNbp@q`swEF
zp{@=lylAMBRbW?GM{ke$pCu=tBoK~CF9Gg>P+9KmaQ_JPh|xldRXY#x0SIngp$E>B
zt2a#csVitf0tXYB_LH~ZPp%_?#|V{n0<_>KoSrAPdR0}ypyUaw^lwaMZev0r8H0qy
zWO)fUymFkE@q-(yC>jDFj$lmY%+Y{(EPciMm9oNY&UjEj9Nr9qCm0qg>y`zWtG6H-
zP#Pkb2%}JCOdvw=H=Mn%zt352#mGDns0TES6<9aHCr&XaVGO_uiGZ3^DIvh5_mL#Q
z7vC_)FK*?@PADwqg%)ofWo}&?$rs8Zktu%GC0>u$T(drYB<MSGe6s%Fs@?BB@NFNZ
zy$MvWSywhaB?AF=wr{u8l0&E40qmiG)Uz{E1k?W8G<(h7uBW7>yj7}Qc95O;;~93z
zA6!b~wCZ?c3)6)NW#yzO&+6~T+Q|p<5Hd$(7FY@)msZ-Wq`i!6Fs!*oN88h1cE2cz
zl(*DqCOIh*YWyDdm+$D1DX|);La1>oRkU+6T$1Cud+leX{g%V4hLM>oz<x1947>0(
z)AMP&_yeoXaaEKQnh|6kyZl=025W5FBG(DV6ug*vVgyX_)ESHHfW5+cY7!n$rAf1a
zMQ_^qL8IUa(Z)r=ctB@t%5%2o5nUeOpm#igE>n-KK7xT;Po%NGy>GP@|F+991&(tm
z;@PCz<e7Vl>`S%bF0GvO!J}-r!j0bLBeL)@xtu<9l&+6twm;&APndit*QX@sMbqt{
zKT7<*a}VWEcJ*LGf`+n%!8Zbk4&}WsV$+{;t2H({vypXH-Y4cFw0g70K4H8%U2`W1
z05^N~u{!~K;0%EsMS*Ux)l=ld=snv$&0!$R0D70e^p}OHtk&LpuiNRu`Y2f7IoY7M
zXPGU}+hHWva&|_lJeb@QT!I|nKyu7z&rbiu4OJQ`S9_}JJ`g$DXy0DkZybXf<G<}~
zD)Ps%TE%=)B`9H3Ls{<~F~*lD&)3e_fKDOJfdHw}iEwHFcp4O2+R#MgSr%%|1Go5_
zZtd5RZI6Amql9E8@0j_qe|WRk@dFH4sb>4p_LZZ^FCr?AsD>0^>4-lItY%<pQ1NYl
zoBc)~S6qWURVZDhK-f8ODatzBw$gjs_Flo$`PHG~2x?Y@&};r|s*N-gU>G5B?cj{$
z2QTsjvp~m~rWuiz>d@%ga=}QDavds&HKO~xvmklMzE&lR_*Ot3NKZmg{CIqL?tx*o
z7RGRZ(u`l5QckVmtwUY&NQQGs!Ni7gl0K;q?;H|Vs_-rh0d9bR)HfZMro4PAomMn8
zDl=b5We2Vczk26@-P)PwTkFC-?;9YH1SE=T?xYha@z^P|Wa$R`=D)(~9OqyHIAB7T
zF_}Nx#=pDv!j^{0Moe&Y5YuL^`_V338dd=%K8;dA_0*Rpxf!fG_OS1O@T<4DPig;d
zZ1$#RM7Y}_Vd1+EQw`WuAiU6#%n5#8E$Hr?93(N07rdGSb61%^Y)!vqaGud9#wya8
zqX^oUhWTYp{F*vUO%zCl4}m+74iF8S4o>{z`y{Vth4aw~1gu0E;Z*bJm0quNL+i1!
zk4Esu3@hup{Ht4*d&@Q?@7BQ<ner#S!Vg>riTPD=%&>qjl85z-cheTvJaR{EMVpMO
z)U)G;Ubftu`%&_Gjx?;4PoRw@9ektL@M-d1!3imW2A#u4n+GN(uiR$UIt*_PwJHuR
zO%DBLA4Bjefx1y#1+!R)y0_xf0RQ7dGbgU~=8T{yz^<wXuqq%}a@(sOsDtl?K@qD-
z2?gB4-#+6VIn>od$nR8%M#+4MN;HT;t10FprlvXxXd|ZR9<My8IMb=Pg7Rb%#T9ss
z3MdpuYFuI!(Nr#Ne(@?Vhmr++0F}KXp%PHA(7C9O079F|c;1^hrt{R*0qkA-n3CBU
zb4;AlF~q?#5g6h<k9h~F2tp1^0$3Tkh2Xm~cpc03-AZr!F|Ko@(&NP@sNbOK>i4hm
zUJK@58V5j|asa~lO~FZP_FL`!O5GbqbaMoZ!7Vdo5qTbdm7=un{hsme2x{3RzF%{d
z<)FQ|1eOCZPI&_VPYP*LX5sVRh=KoeSgP>|{;6Zwp>cdi<Snv!+*<pb_c}Fqm=oqu
zh0-w-%3P3=Y%>1t)dtlp#>F<WL7W33;>>sd=RFa;4%bC2I4c66av#Bz<YzhNAKvp}
zw;Ki0bCJ_<&5+T|R7gvF)muEpRUy(ckY-)U8WF4y!~tCVU2jFd#K%CEm=1<|Y7}Ld
zq&42X!AuhigV>dVaMivrd;(ZJ$PMn>l<iUay!Yp9H`aL77g5O|<!_}Zs`mGPc$1Ff
zXabE}9|6{o8tXzd$~NO(^QN2-JQNi7aK{`cK*#yhy_g9&m8g&oSf1Iw%3G?rp(hc#
zx}`~_=yH(Lm>(D)=X#6y-cGOLTNPEldYzX}aUv$p^{7vYr_^8)B8`ci;j^B3(Hj(U
zmq%klWhxy67iUQjavv@B_F{#dg(0ZWA;h{AX@W1_=$*kA&_zrNP<v1sXc=R|KyUIE
z4{~qR;Y7gIxz$tXozHqZQxgM1p-`ci2fb$8_1+DA=m-jz6vw!)e7SZ-)n=Yv<2{t_
zMx49>I42IYikmbcd*VB$VhaRs(F*UBOnxFvIg;h(5EexCuSN$$Y~QoJgH)QuAss>_
z_{JPv1+Bm*b>2ItxCen`a<$tKVp8PASmbKAX~_JFrbxBY{IUA;P>y*a;-wwPLtutr
zt|h$9+30k1^UPvuzO(6WCS_Y|5)WZ!y&>Wqq=z6s*vBI&krX^{+y$noQHeG?%R4Ek
zAS1k|s1VV(^_b~&0tA?SXRUWaP__m84J1{c$X2DXvXy6h7j$!jmjH)c8E06W=T6GL
zaE9jvT>(v_y1URx^eKqMzn$$J70fChOdSX8p_PHP3^>!f`cU>nXbKD&JEsXn2w^#e
z>?iZ{G2S8nn;tNNxJw5;(3>gc&A)6N00$^1B3gKUQnHY8+Me@P1(dG++VPrf%qkuC
zK{%U{+RBZI`v5oI{)|`5L%Wf8U~0_fyS;w}<gqBa#hn(xq4Pcwa*)kTJ0Vvd50+3U
zfNZHLa_Ss(pZBur1&LO5m6r(5Nytm;O-vL?io=p?T335Lg7s+cNN0UngT0^iE(=KQ
z$T%TN!R>=CO6Y8Q#%tptW;`a2qRDzd{z&9BKfdI>qT3}rKrFAKrRqwh%X`V2!?&>o
z6!zG{PC5nzXrlS?dGF3H3`j&pCgsE;a&GbCXp0q&>iEca*LefD;2oc%B0~~u+8+_%
zV-paoj)xF(6rswe<i}t(S>~>nyk)^kCulR*QNaftUp<~P98A=$zC)i`<?S16-1rDz
zASnR)SX&NbM0KH>5=ZXcC%qp6#yFt~uBa{@7U1;ES|~1Ee6b2!5l6v2pi|cwPQTX6
zgrM<7U6&gisP^Ti@4vD}Hj)s@jx(Fs$bdCww=apT2;i=fJEwI}!6Gr_LqGKHNa;Nl
znRH^TkxY)Q$Um`Z-hE&8o60_quHQf~0tOW0zZd$vD0wQ(-I(*2d5gdAHx;YnNIX07
zUx58L6lR?GIBf!jt=pib7KH4AUdd`2yA{OJnr*m^jk!PHd+12lI(|Dw^H9l#nW}bl
z=&4?X=bE9ERk2p4(LBie=BVVU9K~TV6_CL;#t%mw<CVVNZz{rg(Khs8-qUxoS6{{N
zINBQ;!De^AIpktDSYfPot2CO@q22|1&;mm0wt6?a{2VX*G#?3(*rxJM=GDWz2h#Wn
zRE~jp)3p)rkbPW3F?hinT+ycCUUG_C1yHayluKCLu*_Tgf&1|M#>#EA5gz2jC-q2{
zg=#e@s|}<jm9wtA;)p+bC*0<KTe!2)RXjIm{2Ge>%;#_`K=rKNrWfz1^{$wktTqy7
ztK+rXjCrxa+oL&oDrcc^tCAXc@n;u#(=Y6&rsA!XZbWOlz#DviKUu&?zG&Fs1TVAn
zTJOjGnG24TNJUkod;>o`<6bXwPxlog<4rYN!QO_|nMF@{zii}jZchC+x3JL%y?1hX
zmYPTAipAc?ANHHdRip^jBi@|1+>5j^k;V<ww!Yu%#gTw5l}0FoR>`^HLk2JQvd`c}
zxMO4GvHI;*92a<>`E|AT%6@KAIvEq|w+Wrhm^rt)P2!9Z!mzXb$JZ?L{{9)?35TuP
z4wR7g>gu@nJBP?IakvT3KKG>e7IT8qjjONO);`?vhq$+(;Y7Caqr$tqXWQ6wJOi=D
z?Jyfn=E3W|!#;J5g{nPLUca3eOkV6&ZsrsDp4bLF-8w_R-t4`xiZ(?>V(+irV9XxZ
zd$@u0fn#G8_1pBTzK?t92f58F-YI*T0e{$gVhr<OVYj*~@Xux5AM;#8L1jI7s=tsJ
zstp{n%zN)-4xIajmd@Y6p)9T1iAZA1cQd_}*_?Ki+S(1(L}2R4b?=6@Pp47X7}4#C
z;o^sQf7!so2`B`6Gq;;xww~;@+)X2f_38~c8JXXV%e_Tg_y{y$T`_m6yR8ciKh@or
zd;;EBywJGnmYO;(;`doz@$>EwkKnu-Gk>JF;&6^;p2^2&!m(rH51H=W^K-wWkR6Pv
zIK*GMJQ-g*Z>(13I~in0O~PtKE>hn}(s~G!F|VEEox3IZzv28zY1vgcS2m|k#v`H_
zqfK}ilscSd3jS=*{~b#UAwZD^a%J!;W>LnFQ&L@MPx!nGKxbNtN(Ze^vI_&i&30Q0
zLINaVVBGe4po<L#6i|rt=W*M(q)R)PTDY8!sI%1%(e7eCtIL$9lLZ&08s1C8>=Qk@
zJOQ`nEMv_%_JMv5s1D|Y>4U1K#JjKwXZ_V~U+W<3u*o9w3h4@Jmv)~0%jNCJcD0QS
z4!24w;kdcBaz;qVIGmtnA>#1IhfH>CjFMY~98$3naUtKnJu#$`ZiI10>czT>A~@xx
zlEPT=o1twFIo0bmHK~B5gwJ3>ZUV!OUsfXlHK6}suLhKXl<Gd-idTE9q8lP>qXJJQ
z5aZi3FQ$8TGy^DbE9O|Q(8J5*N<$yRZ}FMe{7I6YES70Nk0D{3<A-_6$GZ0t#Zu2@
z#h|VFd@mmBy|%o!<^#eVlp~nSHX*~3+-a`K@lJZN_kTxJLo`nmqvjA!M28`WOr_+J
ztU>9!&mT|$Y9YSDD88+B$iM6i!9w?#7Ji>9&2$PmmN-oOx<mj`;unxC-*rrC#j~$w
z`7Hjt#g-i({2n2tsuChVk08b7e{Rn{XW)7f3<A^HOf~~MBd*tl-n9=VSHmEr0Jf47
zfc<&|M4JTxbr+bss~iNj2q!|G^gL8fLW@sT#ZVc(OPpXUBMG|rpeFz4OPz@xzfVH~
zc^#>H;W=LGc8uUE2~fuV2}qmE24Bs%jGrrCh3Nk>@m8c1hrRyv2><cJcqCZym_W*j
zD#lilVVd4{aM=t1;+Y_3@kTgcarqojC}cgKte0bdhv%>T#@lwru8u_Yb(WF1krjLR
zJ<I#52tC%~R@rFG$)9=A+wlM>Top$O<slgeF_631ILRNn(m|J#tqp{DZ9GJLxd1J7
z4)m(MrufNE1@-SZ^0l#+5XJ*p_*II|LBKCKBz(jPK4wQG79}o|jRZzSo-)?woy$@{
zUh$YmFbUGhn>k$=JbT>Y&3(@GqSl~Ca8X@Pw(0ga@Al{VD$WQHIpUWHotX$8$|(Eb
zT}gMac$6;0XbJ$6>AyUD$bo$ifiadS!Y~n54A4M^nfjRjmtXt7%|4tKuckIN%P{yD
z?}T5&QSJxH=Vj1)D0c75><ROF&*wm6d?H#iVpI@O&fU;zKWS6)N{$0XF<e+9DX}5U
z1mC2DU!BxfI9en49Oc*oqm|{df%dg`Ryc&MLa^+V+b(=9cK5t)_WrY6M~Ncif=3AA
zC0OiW`%$^;nTRMAbYR8EGN0~gN0hmaQA#dA5Kg=YHgw^>_VNngBRjdwfjnq;@O5p+
zgPm~v^<c)%Po08ai3kaRRpoFbesYcN(}Q)Lj4zrvdl`U<RQo8okDho*Tm=&f`K@r0
zW9*Up(@cn%iub0#ypS32^g%JwOjWww`z-eml1~dY(pyvNVq3+KFz}`+GWJc67s(I9
z=Ros#nd+MH+!6ihz|$CygVl*KGfOi#<S5rz6m1gvpL2ISb&}n1f@`H%hT=dKZVC?q
zJnAGn=@?#)=OossW*#9W4@b-p`{zUHK)566hjGB>(yt#VpiyL~sTrdJJ_CYmhTHzB
zw1Rz$LZq_kTu!W^`S!%ENopoN6aO~)u298ZI>k1B;F>X^03D)GX7;)?+fLt^q_3HX
zErN=BiZmx0M#wX{T2ss#1V9kns*y<8Bv@y#eYl(JnL?~f1ELePZix&=3LkDi-jg1I
z01=%WCC(Av$DG2xy(imsjErKQSCoe=%*%V)A9DJT-j8Vsa}>Uv5I-h{@~NGD$&ZF4
zM6jW7_o?HJ&HDf)ZV0V|)I%!Og(eYVh9?l4hC`Ic0koH$(}$AcMAs4RfkH-d!7S=V
z1QaTygYcDKa6e-xBcTb5Ixc2j2qCN4+8<WC_Q^yzxF<MndTXB~yH-!&fP(EH;!+sZ
zb&$Dt6y?&pbmZxYhJEcdC(yxHHOcOg9%2z6?QXj-al?$45Je!009ZoY<cANi<4^8a
zOmta(d3h|#_EwwWqc~H8ci7uL?_E3|aXlIlcD2rC!DLuMZoNJIWEZlB?AoZ{zeugj
zYy=G!gSK$C3$}wG4aYJga)cT)+<tTiPbet99_TYhI&B>40#G(D)e^a;vfgu=<50<x
zQ3$8qhT22Rk~)CeQf81@!tqyTK;HRw+a-P1W7o*9j72F<N31f@KdGi*skd?=_IA?5
zBaI*r3$rQJ{MC40{ua{DClcvEL>V#hoqx_v#8DXmcSCXX=GptbzB`iFtCi}s<VnEp
zRGsvX_j+gSfmZ-Mv{it;WQg&~4`+D)zK&ORYUO}#7~y?%XYzV%x&I<Oj{1~qz3B6y
z_4JI4w4#Iozf>2InsfgmZ*F&QJ*T}OQbGKrV%<J@);n;uC$Gft`o^XTz!*Y$%9wAi
z^48*);P@FcY>9W*0sd|urGT&dUhqzNDtSHhBOl)_vQ!#Laptll@4c;|^(@}FGF+Qj
znVEa+TJQShp8Kin8I&>IndW`=!S0@qTm;80%e)&tOun7-OK5)rGewwaX0HXdZZ^oH
zXxbEvn2qnuohn{AVLyApN$wC5=%I)xV#cW66++D)e}o<O1V@omA$JV3#B(G>%%O+d
zOAZ9AzZ0QWtaf{B6H-KBWn>0kMF(-q`g76u`@kQ6M5>sz6BFx0#Hl;>h-C}`hn=fF
z&HwT*j%Q0M7>0_5rq#Jit}n@_#G@#5&J7N~gv6h>E_}e4qh-89xSSowE)9*t|A8Na
zu%M7P^Z4G+7P`VkRR|9%^M>pS!@0&kd3)bGm>pUiMvmHs+0bbcd#EUXTexXxA9W24
zh%UU7(1!=ZCyne=fM&H?{%x$l%KYBvNWbSLy}K+&n#wu^p<Z(!(Q+jcn<5ST)NhkF
zKjkZ0g-}_!9~(kA%dvTxK3^rD_o{yyr)KJa!@qg`$Pb;X^~qHGY;*EsnDJDNo^m#v
z9vOdf%-^2!Qt%!zQhrSwr~!GHBB7C=U~T0^88XYKA}!8Z>^+jOT|!N$kd0vw^AWX4
zOzkS~^<z65#AHJwhrHeT!_)0%AvzSV(P5$NWK=>MccxwE=8*UP))n3({oS~nDHLWm
zF{ur*Nn-OOvgxQ*ULikW@*@H-0>P7LU76<kN4%NAba%H%%6=PoaNRezHgS$6`tmIZ
z`%CWi?g~t3DDHvhm$x}bN2WP_g|{*2>@eJcQPs(Cmru$u2b`tRp~*9cJnIz%OOtp4
z11B+h?N8{2HN`M*ZbXJ4?uKRKa324%cS5`82R$Vd4~VmTcGw3yUa#`w9qqgM!+<^6
z<qyl#3e8g34<7@sF~?2!lCV@GJ-f}pfsOD<^duAK0^C^PorG_JUdnJ|W|i3-b0GdV
z^y*fxIw)O^EfMdBTX{Uunq{t8TJJsAlP!T>gHk!ubrOxlwqWQh_Pn%{85Z||a1G@G
z$Ywri#40>9(>tLDHd=7^D>q^;NEnxMjk(VoJcI#r#6uhKcgfzG3e%l;y?17odlMbi
zTUC@sr-C|%p7&hfo+yA@J6oxOg7`cl6H^p4(HQmKILOU|LS4vuu7bR7!{##Y%6;5-
zcXGGxazUoUVF=nvGaoj2J+wU7^yI)oOCrOZ-9yTM_cZT{q~40ZA{(c?0!k>hzZ=S7
zDLmPM^Ri;Z&-8iOUio#Om6#hQ)zvki${}H7hTvu`H-;}grk_xgi%{c`!*W8bV)#e9
zpw(e1kDC)?V={6jd0+C45?b|JMTNI1P&tG)eEN3VvjOr8ATQo8bPPjsS_lVEpKkW4
z5Bn}>Ji=HJcL}gVsrqPccpDZ4wlASK0r16;6t1(RnxW5?I9LZnG^PLK=+0c1XU`tg
zS3tPNtU5nD<f}gV8}MP?MIc+QnR{8d`spr>%%<eB@V5`SMsTMq@HFEM(~qyeJluO#
zAC<!y-3lZ>k(v<o^Sk*ATa%B11&wxLL?{6nCi6u9l<io0_yAX*LLB;U1O4AV4HgXJ
zcte$(COTswi1E^$wzitOEEv{W<e5_XDdcNIR`~3ASRy_+pK~Oz16ZT*v-&(c%IhQe
z+Tv*WY=CWBAe@Q{0;N`PDqnZ+fAew&U<)8T)xOcP)ukx#Z@v$o^JqwQyu^f5-wYmv
zLYQv)o$P=AexK!p-k?y#YZ;YjW@=C6nTJoa8_)4Ja)gXI@da<<egihL++$+somE7X
zjJUy@{CfY5Y|PlEDg-@q?YG{VtHTcxr;glO4idMtWen^1U9YrTbGtHDg5BCVi9(Ra
zgQ+h>eQ+^S&1;|78!t^%1rM52B@MSX!)i&1P}D9NSB$dw@8QaKlLMYsRW(Zy*^b+h
z{JSVTGvIdl1iC0x30Hpx&Xh0z7XEFpV}pdAk*eCJ<_z=r9pQLE7w(t=A((!9c<d>z
zweu*551-u;K0KcjqZAxzUAhruX=R(<^TYcM?{geWGXfTfHl|u>7u@3epLA`^F>l`D
zf3?9ur(^zXq80-aq1F@fOb@&LBW?*91n@^xK!CxSV+g?zECUeLbqvTh)&>jw;)1jL
zU;A`Og=5D4gxQD!$I|o2iZDrU*;QGt0L_S5!WklmhB8+mAelSAwEsNS0dp%W6S<_R
zj=RY5{q__4EI{5eWYjSlqPH=#4i4Y2X98<Kwp(3tCiOq-lH;W2Mz=%p<9FedDJm-u
zUvidtJjt$k!UcYn#!0^<PCo-DDUn<g?4HL2Mnue)EtKV(f_z`a53nUF2=LZ%_QarE
z0x`LKQ=~ZtwtHT#bFt=(w4V-kqZR<LhCR78+N_a@95J^|wO`nNsxCuV5keJ}975E%
zbd^hFbTnmq+QWMit4{c9eU$@PCtFV6;Md!Uk>i#_Dn?dEsK14oh-}MrGhlMK-v#z4
z{3-d^b1^tmSco6JxY0XsMe;`ZtDBgDR1ULYvFEq-mjt9b%JDjR+~xW+51(Y`T|fvw
zXz#==Aqf&Kiisw}Tzj;=u~(-W@gyB`p9a}wdv<C>(I7tKSbIbAe^&KiF%wliI?1(w
z?Qjc%VlTRWMe!K~uXFz#^r^RJxa`C(5y>j;l-@1}cNzz~F;52qp+ahLO@avmO_CK=
zCb9CDJs_Jp#ADEzkRafTkh6Hi@AVLZu|gr7FNBrgi$6>ANv>3A>S*%usDe}u^o=Vy
zH|TEfvo{iwv@#h{N4aqf#;)Br#rNjA!6<p_Ok)_lUE#NzQw3NiyVlSqh%cZ55$q|>
zt_Ar!<rc4TJ-reMQMT9%4%dYDybEicz0L{sNU~UtLfAo=yDWO}>u<fc&vtn4!)qnI
z0`m@q`ge<eJ}B_qdrWBf^M;p)CSj#gu}GOLYfks8cO*U-D4>RDsMrPi$ymgMl-rnL
zwkP}XLdI~bqM%0^dWlow-&m`x#Mn>LO;)SFwVGeaMnt_q7NQIUTRsYuF!YAe-gWQN
zOR$>?=|yBgBJ)NYQuw)-djnlaHF}1TWyqso4|QZ7^zPd1-aI*05f9iJFC*LgTz^=^
zZ6d+WV48@7k&sM!Pc$eR>2mj};SdjvZBkGz<FOk1-r*vxc_})#5Sg6u*3Dw^6#vF-
zH$jSq*Tlflm-&NRmScWy^L(llLK{Ys+@(sGl$ydqxOTL+;B_8RtO_M_+7H-W>%2i6
zFes)L!r5H052O0NR^Wea-PeFLtAgGvK@bmpO^g4ziYF>OD%wy>C?Hw#z-@t3nP+af
z+3ThFa}?ORx=s_zG>?Dp4ZF@wK!qi_pF|Wvcfa<gH`0pLRPUFJfl5gf7!?%V8RIvE
zbYr+taexBsHnUk=-Fp6e)mi@bac+)eP7$0h(>E30C>YL6;UnIk{8tzp)q@*C@CwHk
z(^0VY510GDuI4bQ;!TardKjCtMF%L~cO&uT44)4pNW5v@biqJtRr4F_SUjxX$QR2;
zdiP%1w|JaFq5-#bG-^sIGrsdY`{vO}^V$1RU!juLIWub>2I#iO{Tm)hUdFkbC`zY7
zACzW*oIu026#Iu3QV3Aatq?eLW!Rn)){F9FulK{fmq9Fv10CiUEKXjAF<^9*sM$<%
z+2Q&3gC;*P`6AR#u3T*ld4e((D5RtRY0oZARvK^sh7qftiDOdcLS^>mDofeH5vK78
z080l-Z4QOEv(3^s{U=`Svy2d~(G(bg2~#E`$2_*gKl_1XMRmgTh$$7-%gKNUU6kp+
zI3iiqVhZb9TVz{z)#EaAh;1U%sHc5*2rMNH$U%A#o=}Za%~QA9{6Fvz7*6mf>};qc
zK-ig&PO_tKrtB9bvn%lf$YKMXV%e7aHvSHTo)9#QMD;TW(XCfqD0<BcP5!|<=mT1j
z!qw#SQ(Ds1(t7W9f52(bdj!80km_a3N8sd%{ylB4g`p22IE9s57L^I9YJuFi;u0_J
zVb@-ttO{IWkyVwHDFdg8o4<Lx-<ae&un)v*T3n4OC03h{{K2Cg7otqg?54&Rj9#g(
zLd3dK`{!fa3?P$@&PJg1G#Bn?&wq+4B{=)yt|Vo4Dngto`GbADI9bI@RGJ7&x$cB3
zS%nQI)uirWUw)tWDDn!d8>QhO$)%d^2idJ}xzX@^a2%=Is6y)ImGAxQ#|FbuqnWW#
zJQR1BbCCV(2aMC6_=a-h65qIuLE_to2)u=``39IT35MK>XRh~WoWqB-b6~i2XAb<|
zN?)N5B}!jmD8p=`k`XG2#RW>VBTE%BF|bHP6LQS?zt|(&{N*%H!)ja`N6k?TJT5XW
z$Ae$lzkNe>y4~ZNiSbP}%Qo2c#5E&6j0O!;rl3rC2LpX?!w=j*RK3jcvebpfQ>m#Y
z+IqC45QPZtJ2rgh?Y8TaaLp{UU_dy2C4u~KIGjCF-|@Spo9H$6^BI0Z+d`N@h?Ks0
zcPu>b2-~%p!+JtxxL3E1<~Y8DXdN;WE5SA3t1g}y{<>Gk58QBYqTsnP<Y_zSXEf3@
z2b-Y2bkq6%{po#*M`5OyvQle?7i5ezt)({9=(3mz9eGSv-nrOQC*zod;*y|5)Eeo=
zqr!U^C(ng~3<K+uTNG0lCnCpueN1>~ujKPM0HY%1cyn=(-x<2{laPwI3`N5gco4DZ
zIk$yUw*0SxCj`A`nw#zjpM3;{$<nxs^`U%MAjn)XEVO79iG^wAH1Zm73IM{d^g(>0
zGIL(;hd+JP#h4TL?ur)5^ZEQ?;nb*W#oSm+iZNz>1$(ZHg-0w1tCZ&p0v!vDip&O*
zf*B7wH~j6Oe#J#HYSxwm(xG(fVn_)X%E~+knqU~ktdt3_{QHeJ+e-$J<jra{m1`jj
zrevFyf3@qoJM4mzc%A$0*pUbqdt4^FcJTz2IIF`9tSBcO9+<*2gf#W*7?;Fdgn$GF
z1{vI0X301^J<Nur1=;b<_;D(gT9#u5R@gm;x%ZAGuPe$T2^}{vtyDu1fjvW{yk{Fi
zBP9F|E#*{?Ewv9EMw%LOi~MH<l_9|an_zaFYi(`Pa_H+Y3ew@<p6xC(2?BzM`1L6}
zXMgKz|F!3NLUMvU&y~!*s0A1n=b%YX3o*t;CH)^7-!IDii5Y}nM5=^}VD6l6*PPZ{
z@)`UTmZ{Q0l8%tia=F`ko$Y_Jsn472&8S!dn!dSevbX%J{<4J|Q+$<oc&jVEI1NdL
z`u4ku)}XVdnX?WEpa12+&c;$iAY43wY`hoWFs8``7Na?DADcXPlf50nTq0w<Gl6g>
zOxo$TZB(DzImV-KEK#tNyi`0_)zlSC>2o^=e;BaQbXCA*FaTdyX<tls?Ne}<W9CzU
z1Q8M@R%Q4187I#SkJgmOW&!7e`NqtuvlSy<b7`FrwA|69C*35~*&V!?H%!43Dxd>$
zA`y>f*%z|i1Cyx63}_9_EYlM)Yfq+`Ws0^mRyMWpZk)^bd;T@r{{2kXGZ9D=_g#6&
z*eyl&nhMuU_I6`vWK^Pi6UhW16K0wE9DDmzda=;x^YG%hOkVi#X;;{jQ|STQtUNA2
z&752);Y0K6#~0BGvILoql}+TN;5!6#-K@LGX4ShMYMUSmw8mxu%_@7=^9$|SwXO#=
zAL>HMlLya!f1&+H+%=PJI;#$sSv{z5!bM)Yz}`?pkFI~TsX3*YISalZ${Zj_U(T}=
z=eq|v#_$6~V$4MthLFs!v<v6CuHq(kMXkK)%PZ`R%UvsGO|&~cF%P}n%)Z(_8w>=B
zhrUDGk#?QkF~|Lw+_$<0Am6ZdLSTrNzt&#%M|uKC5Y$(#mhb{|%>7r}wZX?v)Lld(
z+%+qf=A_H*!r=YGYny6dp;{RBd&l*5@i}h5@uFw#?~+S<+O>8;Glv4Y5`)&)GHG@I
zNNn@+IrdWalOBLc=)%y+af~<EeP+3#96mV<#T6~T#QreXHRkJxf`gA^@185{PmIi0
z?D{3eXD+rqF6r8sY4*6pe%G}Tf_K_ndulKy$fIsCnU`j~`T{#zizxvVOA0B~*(T{i
zdxF*yr(8T<p_S*yLN<N*B6~}d>ljhpw5x^!$iQi4*2Om3@So3QnF}tmCk4-R84UC5
zMYdm~d!m4RUsp<oDWR!feu16xC%06ku^DAe2<gBzgR|OV&uw+hg%moKdl~bq5JRyF
zZfvo8p2t|(=IDkL=qlA=xvP}01kY5sbw^C2=A!G@eHq%`k!H@EW~)a0XGg~qxZf(b
zhK5t7J%SewhM#BF7udZ|=NXja$V};4DscSZ&Gu=1Ce8qyrP2Dt0R&dioV399Ki74Y
zR#Q!liEC2<IWRdl*ds1<J%PWxIW~)mM&uzw!qUv&Z?ernue(pGwn9t+PeR|8UuQ44
z#yv>@iQMT5|Hu<YQvS8J<}%k)94pr>P+Ww8d-(M>Eof(gq=hu-dg?{F=KdS)U(OF!
zR%#JyLOPa<rt|E((_QN{^5GgA*zpExg~8|R&bQ6wyrL^D&N088Za;w}Lga|6gCZ%s
zAd3$*O%v?z!2`i}Rs!&Yp$!7RaEhIu<zC`8PD?}PM3e%$Vg&W)+RzLJM4G8qF$FOB
zsSaYkm}j4gx#mfNZbHh*fd-f}FR?dQcmB0IxIB?%9-D8!sq8~eu5geMoutj-^3O8s
zeLMFj*Fp9G5ZJEF3voAeQ7~lFfWC?RLf!Kj^*e;}24+*9A|q7OQCDOKR9m1bOai&n
z-13~?cAM)N4lxb1u5?6aK%5^~<=VM{?GNN~oPZ(uU>O|>Xh7qy0n9AOVkC(XUC!7q
z0OI9E#MP)?MqsoT(kf^xZ~Dgz(hhP1sdu~yYd(iyVZL25gt-Ijq(URXGnhHJUA^`T
zz#>r^nMZ(9C`|1<g}$um>mDkJ3lQ9mCvfT<v+vvf=ljs*zzypn;&uZ1M_)X^{&b$3
zyhCVp%SUY=&?l+971BC@P$ewX1R`)d9O8ZFx-J6ic~L#y2n<h|hy*Vj89)+dQHU68
z6@iVY4Jz$e*3%vx0Nep=O75gO!0O6V<iz-e48|JZ_!P=IPYA*BqoZt%YBedefIH&A
zQ}KT@R^>kSZJ~GpYJv2Z07xUg2XaW1#L-}<@z7}8qt%XmaUaO!&o-yN;=c;AA2yJo
z*n|@}!Scf0HOxLRxUci8L~CTm!?Q^?{i&`}8HyGXOJX&tB83if;Tn7By9}fPk@1h@
zZf?i12VNG0oD3^iQ0Ab@0|Ck<_A|mh)=je`mhd8o4097bz|5DeBJLmN+aE{r4C!>0
zF5wUMmaC`^2WKip9}kwBavDJp+2+=`-FY!1>3|3iIjGe|e1Jq+$}Wn}2^O69AW;El
zldYwB=x?rLEbv_9`3m1ez?|J1Z3-B+?0~8pU=?Ehu?k(^*Y5qkJDd}>D*+64jvy~V
zgw7wwNYDvkKC(8TUnBrp!MDycv$O5cLVke6TL+$LRZ|zJf5v`$kbQlr8)0IbfYI6?
zriP0-D^mb;icS*yB-9G-bmAa8KFI}Dp^H+Zn}8~GkCRWbgO5+NvIWQ;E{cipCPgtZ
zfJCnpjvEK7mb#_*Ix8h$%8Ecyfy9WTV2}u&SdHX}>ImN&?|{#^DTG6~Z$6`!8+0U&
zJs6knP+DR&G7fV+po($mA$~4AjA<mo!$w8xA#(vOap0URU}aDD$duTu3PwXAm%F6n
z<#-IB78oiL;~_R(o@d_=!p*t{mf<`L0?XPzn8F|;cSN@##p!DutlO=9+zZFmAwSh&
zYh(R@x?Gj+TA3k6HkCuy@~=I@H6kAdrJndu1@8j&+2Xq%*n_a#1RAK)INF}b0M|2?
zkVV8`N%2^UnAm<tyY`L<xz1mS8<Sm=6adI5CfvdH{1e^JM>$sxAq<esEPH)0^@&Up
z90E{wsh4?@UDBK2GK4}Nmpp-ffXNEbHU;X@?)DySkJy<eIx(mUO<(7Q&T&**Orgl#
z>}bkt^f6@Jh;%GPpePRN&VlY%*m2l2inbB*rvfG%8^-_USl5YTSt>k{J-{RBp^!op
zi7SDGFi9j$F_{&bj6nV(9C3aO4No;Uj<Cb}_9;N>Ex^F3aA#B)xZD9>dwEwA2CeuI
zG|L+5ugV6FtL9sRLE;cI?E6>}a3j3pU7hcKNm4QGiq@868p?9y58iJxT~~espwIZ*
zT`keu+Po2wVC-1!hD7R;@T}4?5aya5KY4f7B|Xnkfjl?XZk4fAWrpv4%YQhT`rrV+
zsg4(!5DJB(*7gE_=Rcie565v(MTM7Vn41>*n?E4#lQd-Iuge4mm7)GpmigD$_K!)P
zqJD`|j>l>V-7%Rx{G--)agq|3OW0VTK`O=xtp)-Y3l$+EVHV559f-7cKsWovn4pet
zMA22|*@6DRzhbJy#8}^o>6?|xAv7Ox?t=Mt`l`O_DQzulRi-FkkRo9BJr>zD54oNx
z1T?p*n7GMFC-Q>NSY++}uB(6;NIjC7qKMlf1okC;mlGd_jva9oje!_dfaIiFd(KO~
z^SEHI#=U@54AAlwUe2R^qwo;v<e-57xr|G!=K|Yvuik1dsE*APB^d?p1mExHuY1YT
zBH%D6mU8t0@k}GgA{<{7-pD~3hGlIw*%Ia6TaEpfLrDu;T3ZyMj%6~<oPN6f*T)0Z
zoL`kv9-ob(&luT|_Ea-xgdIP|^_5cR1yiE}*g@uY<sF9H=6VSABI2kb($a{<2BDLK
zO-ShX7X_UiZ^|$)PP0pcHw}%nqyU5vyom5W^YCzc&nE-BRC~|FhDDrJfj#zM{F~st
zsFK2SpY@XnS_-X_9RqEesF4#vD=gvs2(Jn&g=~S4W#&O8wY)R@ja;yy@fN(!Wa$@r
z>C5`dcFi8uH{+$@d{E<@NDT9AUz<LT;~=+uEA*(`*#J9rEl2h#sEp2tQ^36*s1p1O
zZ2JxShtGb{*9?oA1g1&24Zi$LGh?)kf97W1shu_bew0nx?BG=<Hnr45T7`Ln+zat}
z)s9|*VNwWL)fH3~#m0pRl3+?R?Nk4zd|!ASObwsDvQ#o~;j--~bhm4s@An^1$wV1E
zwR;!k+#xt_z}>rW5K<&7=;HZ&#j&zYm}}Eu?^)*Ti~P5q^_R0P=#2<hScF-EEHhxf
z|67i~eD_BjdH$>a-s@OTIfXi$7-V_KVZzLw?*F}kuttT~<FCV0ROb?Wp^JUIwFA7P
zkTOPMfgqYqIeaeDVDVP(F9#-TtxEwEZY8vrlGkyEd6Q1E4XfKHYAgP=Tk4FWH*SgB
zr2E}&l*X%?aQX9l?A+$lGW&V3OB0d9<;eg^ouLq~Ce5&;-rj8}Vd))SYi|tle8{zl
zE8ZDjr^`J)J7&*#uAi)LLkSOYR$o<IVn;WP3^xkV3R1JnE|=K}f2~ADY`7HXFxTvL
zP<RaWmH9D|#Gs@>GSr1#-V8r6+~X40H5L-XZG}<-g2imBx`i)o{x3Z_iJnB5aU*qt
zWc$y_2tj#k`q_rtT_h1&>I~I*mf4jP2f1vm2^S?hL-kmtxCIt$Y~p6Yso`Ia+|7cG
z=-pxYE@jtb@iqsa67GR{pHNa4pdac2Bu9pPPCM`#7HT4O$UA~`DQc+dUHkRd1n3~&
zM}avNL!d|C8<XC$*X=>j0XE+NlP#oZoW>T-kDmx^Xx}yV`X4bs%5R{|2V`Y@EoN<n
zef8zz=X2glqUdNrMg;LYrg4>j!zamt{)7FuL>!b8acxpSX5JkBF*78?>7<(IX82o1
zh)wu&X8*gcB2)>*C{|w8=Adrj4O-A!%ENgreOGcy@IEvl2Y@gJ_sdNWac1vY5&rXh
zI#s$&KmpXv2%*-0(hy!AX1Go-K`Ci}2`s1)oK(mf@;WypGb_YmzxurmolD3VIa8Zt
z6i0TT9ar)-;kl`d1)^x2i%Sp-Mm&S7J4ATH4|Bs4b6uxy5AbXf^V72R+*fnM1RkyA
zW)~7-?IsPja0t>f_t5@#rMTIZQa`m?NJT6JUyIN2+Nu4QEpdGlHwEpfIUx@4)0zDv
z3jo|BY)}^-z!?F;JpM`e^r<JR^|VMLUWCMIq=bgA!rO-i9gQs<n`O_3Q-`0ZkLWzl
z%n+9S_Icv@12mv<Q#AqsHElxB+dp3){(M5euB*#Ox38}J-U`pl;NTN1cXRl=-^uOc
zj6|!-IC!~vE<AAOo%YC_e!`3#A0;4wXzt1L!j}w5j<W5Av1-NH;uNW|zc%%jx49%b
z6NW<^2XZh@`BZaliQoNcL>zp!s*wV_hfga;)x2|qKmXo74$i0r2P5%_oaP`DMX7I!
z>|l9kZ<FkX?ii`vD$lNJmX*Kk%~_pP#zGBk10WS~5Mhs^;{W!+IwWQ=+6ul-yh^Bw
zGCO9HJL)ez2FxWMh*z}48(OQkvt#US>2klNhl5R=94Y4pP;nqz)yD6<$u&CA#_}24
zMc6?sHBY|bhpyutM1sel_XG#kHe&gWHnbwxrefrp|BOHXG%y|0QQRZ3UuMnZ%wu?x
zm+KLK$-xYY)Lb8}C?m%MsgYE<G?Q_SzZM)wNN;H?$gISnD<W`htA9tn`<%iES?)6t
zswgC6@-FvN2D%>?#%FIRYp9H2*&-l4$2`&GuO8%j#senXR8B;=8!FvgeV%_XL-B&i
z@v05LPx69XVY^*ezzZmZ*s_f&wN!3!>>Y`lB3$|Z*ws}>#1an)Rm|M@5=D`B^>jSM
zg#lsq>NWi$tj*}zMA??fY00^IXRiOvmwh8}Ldx8sh(eLD=j5N~AO1n#<+v8c3F8Ym
zOaK|p(vR)Me;eR{;_z=rz>6nB)<s$0;@gQAz<G#EhXLb67k~jYz9`9FDD*F^3$5&e
zItcpZ*uBup-uH$RT@Y&^6yjvaHR*s0<eE^nJ+-W#61y-dVo$4*hoA_k5Tyg}V;iQs
zbgV)Q=u+=V?NV0fux|F;Ac1RWAgLFnxOF_dyPX`g6Uql^M&NP@Tzn`9D*M{-nQpWq
zlxW2s@RR^gMjT}SJ=1jz$AF=ii^Dv)m;LZ;*Gis_@<#M)R`k$=?YtSmFcCmHQ1-xs
z(nCVPzh@u2*BO0YWqXZ@e;#@qkV=k2NfWz?&LA|0?myarJ6&rbpeeY9<1M<Lm^bmw
zeP=UC;_UJSs32`N6g(jzz)9#Di-kRIyM1ZjAi@$XJPj5L!Fb@H3@A<W#9wUMboYbd
z0S0U$(3D;d&;h^Mt7o|0&d{-(lgoD6w%yQS@jSJsv_()si1*=4r_>QOPYGmKynOCi
ze(~k-4|xh}8|pR_ZAk2|h;)5*_}GtJkH}(zB_SJ!kdAv)hG%>YtLPk}oDo8!><CdV
z#RJlYCX1fLU_X9gGi&;;lm<#IV<sUD5*mvP*L`&Oip4Hc`2~Qu;6@o_CS{sIKiG<9
z$Mr^Wz#x)b(j52-MKG6yU)#c1F8m6pTaiP|Ov<F{`D8d_pMHAHNQ&{ecVvWM+Vdua
zPru*20~c2Vy0i;nRd$p(&R*eA1)aNiWwt&s!7CYRs6#(*A-ps@Q!H<<!Z7wLv1(j-
z^$mO^WjPd5%$Ia;aJ+aNk;82+Bo)C&b3UvpJo0cRwp)fIl~!Daq&Q4r1l~}KgA5Kz
zEhW8aO>=naH*VS;0pD4>0>1hFuG|w2-@!e1>mz)qqi<5Zl2TYUD7a?VV@m%69_`AH
z$=ynHr<-pl^?zWg>n>`W%?XjYKO;4SKyvNq{-d6xM>amJT7*0+F1ObJSSCqbvD$V)
zCYMFXG)G6mBiH}eUEuB{c7gRCLnZcv07Tq7gnY`V@JYA1b=`f9xbVRmJ&3`vC|=%5
z9wX>0WT>8LzdxsooSlh2jVrm%UiM&@_B29<0J1yBmV;@C0ir$s9t=c?%%^pBPLO90
z4<RN;Qn`{MFNoWsJG=ZoJw-vx^|kgw{l0xRsSd^J@acAIyvwgiO~7h7v(EnCeY>|4
zU|3LR_eZh7R6wL^D>1a_{SajkySA>dnO`Ggbj*_!1Ohs~sI?KPA|36ZfO6xP$L&1n
z6`iR*3bi@7m)&b_mv(Rnpnvxy*#j=xof}}|G}rdBv)<h80p)P~l4Oq;a6#u6C|P>H
zBzwm0?P-j2Rd4&~f3(B<1|``?#GVk^k-P(iNnGfIQMPS^Ywyr_MFmSn*}+?AS1epT
zT6k`bL%&;njU712F|Co+u^@zujYL#BFKo{o?>dU%WzCL{;bng{*TySpCZ85nfe6oB
z&I1y~UN73gV;H_;J;?~d0rkgP`;m4=zjsyv;gk`4{O$Ahsv_ERkRh9imxhp`U&x4q
zAoI=L_P`}<8W5!Q@iL;NF`lIekp8^_`+vkycR}7%5vt+McGf|=wG+EVtiS!8b_Q}V
zuo!p=$i^&TYKGZQc65D126m!!b8dk>EQr+Z^lC7}%(P+lWY9W0&k3YfXzGtc?PeKA
zlwn-nis25CKrhNo!3t{D4z^pr!yYAMly<C8858!MZQl-N*6BUUtvPa-eSP;&%tDm8
zwaM;xpnJ{uSiBMWL0U3UEs8MbgMJ)sqyO<3xBZtUdtva{uJ>dRl8&!?sQvMfV98=w
zQkb+7ZwWis%ML5Dr>CGp6WCQ32}0f|g2d_Sdyaqnp2Ui|JnIfy0+xQ_D+c<X_i}xc
z=>hB(!H8l<Y37(T|N6aM2eLrB`2iClW|$LwkP$T8ShQ%_z8!#e7J=Gn=Cus}$^-mP
zY$ii&F2QD?r6Z)=$!{)Ja@`Z*#Q~`tioa48d)ZBt^plYmf)0@0gWE;A)v$O?!>l%R
z4JdiK$^o2J0zn3Jd=p8RsGK3L$jHmWhvd1|QbK-aw1`y8d>z96a?qvWQ?uwJ&JO!E
z;u?`5BD<K$E)73*Depk4Cf=&CYEwOyx~yy^Yv#-kue~B*OkERem_m?Pv%72nsc4rC
zgiRt#A<AW{S#?FY^n6C@qL<}lg*ffEUJ^b)GlK)i>o*IgD^tAum*L^%b#MbnEH)SP
z#+<YeC*5!9fA7Eht>^9*MQ2u_Q7v8MJ=iUzjNoBy^^GlxHFOS_V|sdZ<OIW@)+i?!
zNz+_&qc?psV4!5PnLjM|j-2OGaCZTNYHQd0#jBo27A>F?MBTO$t&UlM`G0+~*X?W4
zeWeQ4$Q+1^i~aAt#`|I?`MMpcxQc&#d!QHELN2iK=whMaL`D)0ch)st>3N~`JTz2!
zz(hX1ezbS|P`~rTN{zUsx7X+W(0Wz?pwUPxMjX;RAM$R`;9FD<g)rBKXp3@#Zt)^3
zLhF(I#wptvGpaGu8ojq}=OxN$X^CK6;5|b8!uXNy4PD9iVh2KDK(WR~i^JqT@4jw9
zesCg{SpI?<>&5@&mTuf^46R!bk71tJ@NV_a{Im<Esm3@3#HUxgw91n5=1ty%o5-3b
zFt`EnNqQkUQb>+NyiIA$S~J9)#Kg&j<QswDrFZ}1ya7GD&Zw#Koo%|!>+vOHsUixI
zFy^q|LOpMA^E-{|m@(W&Ob`cxdEswf#xHCzuDq(ors^gP0w-2`v;O4m2Iz_%+EoAD
zdv@b)N#L?uKlOmO@&G1?ReV=+xUxq&+7Yj-$c90|zu^(@CEf>P&>5BgJJL$)i{4M9
zhI7_WYpTV;S%Zq7o{fFU)L-gN9L~han#Tf-e8v2{D-5R>d<9~xTvk}BNm=K;`xu9f
z=yF75@+ENvFoX4#-keuCY=jMwi`zt`2KpdY5WFL6ymKeG9wLO%qp4R;>q9SjCF5x2
z7;-?cb?B!XF7s9o@Yll{$dYE^%uUC6-!Dp5!|2+w7|__lIxz1J_A(#k%Q){*;8Cbr
z1+|4T;;A+h3cdfk+C5R&)Y2q(NNS$EZ-a+;-@KN*9+om3_oKe9&k5enH#l^N-1Pt{
zVKQI_M;!09oa-7VlXnb;1Hfd)tnTlfKi^xAh^awA+#2nf7H>V)ko=lR1Lg@W0U!_e
zd5u3NZi4J7pFQpEzs#*)KIgQmjf-a2c-8m05P1bllHB6FiJ9hg-y8C~1NRx#v=tyq
zqQ!INN;_qcx8ra;RoELEabVCYma%upo4D2eIsmO9CKE#<{&wmu9O)I^Ll>uv`g`D+
ziDW@ketOBfV?^Nc!tL{|a)MFwSg<|+?VWxW9kAmVzG>Z5%!-_c>O=jjk98eIAkft}
zqKJ~Rhn)A#0seDG(-BynocF8<V7Jk=81qz*Mxn3})sMXmZA^qUsxRLz3n)sJ`QjU|
z+uvL(A`|W#nq}S2_|<!V4$TPcM`JUHV|JkO1x{@cB_B@`P*bV=xS@O?Jarv2P?*0s
z&pW5o^-acp<MLxd_}|Dlz#fA%dY*U95Z8_Ka6_5HQ9=<)Hy{1UyDsKBisVuTqmK0<
zL}qo92LPAmP)bZuY=aC|q>RePDrsQO$KDT{cI(CoORvzE9@yv|wK?&&GAJqlP&{+O
zS>Ez;o>8nnRJFcohCoX}8srJT+I#t4K3Vu?7|5WJAsn5PW6@b0Ct{yc%~!L$?u+;Z
z+I<rb$7?pQid4rYqIisV(iXRhBbxa3sM~{a-|FKt$cX^c=^pQd8h#)kgUGisd*$(>
zg<p7wgk5Vsg|1jfE(RJ2cY1?&Mt|3##2<bwYsJG`+8cr2A<W3(YvKpPXZ^YN)ByMM
zUFeKh+>ldueCqAz(SfI@Gh~)NESM+=8YH%uXV3J$JSbQf)OxZ+xZKKLL2IIS*_Gby
zt!@+`MuF+pM&KJpHC5UHk{)N!k}mxYzmXvwsRTC*r;{{}RI}tu&tB$wilXk=DIe<j
zpS*W(c8#(}*6U>&RmYZehS?F$HwTvi_`0O;y!+<yTLGmvM&;@z0@+;pruY7xZu^TU
z6OXkHS(wnNE&uecl9w7;2ecOq2NZBkH8Vf;vTky%?tV6$)3lA)7Ie8R6W`>$vz9K|
z*lXhDA^<#+V?OBVFUaAoxd^rFDDEL{JCYs^$A9D96D)UWgcqj)Ns(u6IMSb#>3&c4
z4*~GsvY+%IxF2$$zo0uk=qEAiF<_CE4E%g=@7*4}7tsV{C(cAW7-(&X;3P6y_?^4;
zJ-icp@jI7>(}8*x%5RNF1VuwM6rcU=hn~5qcLBF4zqV`}mS9q~fxiFQTj>F4292!-
zdIlXw9oR9(|KL5D?AC)EDXO2v$Q+6_Y6tKL5?Kt*VRew8Yd-d#eJ!Z~aoIrtC{2$V
ziaClo8F#Mta@(#kTr%Fa;L@`I+xQXAH*?nO-oGCXXoAEGkkA2a;eaPE_TIY8Jq+2Y
zkIv*exkv-IV13^7wqNBsm0@4+q6~oBDBteFD0uZ}KX|?Gc0UkyVvVX*fndTZ^gi)k
zxW{!AL>iSzC$fdqx@4ud<6hcHdcarG1W+I#$V}tHBmCd?O)6kTz!z<*7UmlP6a4Ie
z1>UAF*fUXWtR8L(`B)%1z-UmM>Y2}bqf*?5k;((jB1{mW1hM$Q8gKI%yeinQcs=jJ
z5emy*u*{o!mm8AJAU}}I1IE%K?Re39W00E#!IR*yIoj#&LU3A{6XtgF(Bs}Th>Z5Q
zzJ5FMrZ$uIciX(V{oNb2nH(l<(hN7{qDTWIxOSGKEjlL;ec(N|kV#OjkovBWX18p2
z|H+&A6Rlz(ob_t7Byo)_EEa?J^)KAiTLho5G{IhR0r^l&bXQk+k3qKiGN=O8<r$Ap
z&C}f+*wg=igq;U;6;=24kDXpb6bOMk=UhO*XnOHgF$p1*1Y#0EuyK>zkU)|f(;&fy
z6$M{=7YlaO7Zn>;tk}g~un@t56+{sf^!x2S2}uC|-&!md%(*jj=9GPQdG@oXelj4F
zT{IC1!PGK3@Fp{J%Qt$x<@m&WkcBsfcTu{VeI6^@yzio@e~;lMw#M+<WxImt$2#@#
z810e%NCI5Td$>+;Gi_&<Z5yi$cp#4C-G47+7p>W}?Vr!s;3wGq_nb`Vu&r6VZO=y?
z!5Omq?~z%orIzcAX#oy(s;c0i<+ElCvMCo(9Sax*i@&i_Vz4-f#PF#2h)R-V%aGQ}
z>IZ^JOj6=P@n-mYZuRs%w50x93jxlSd)kjHg?ZYtiwW?fb(8odu_sX_&U@DdOV!)V
zQK{9JVwzxM6fg~<EeYCKcTKsr3lN213bB3K63FK?8~=1;)A!g$_3NE&Ek14y6lk5Z
zgq?NHAb6NfZBL$u?gd7rb5M$3i7F_?9LOd@>?#Ve{y)Kr^*VkWNv+8t;I$<bd)gB&
zw2)!Kp&x0eim-XnL|BBt;to24R50)lOoadih;#A9TQ71eFAE5|fItZk11rEZ;XI5r
ztEbqNd@N1r)!<NJY+#@ue-I$`)=@T*DddGDC4&n@rZPt}^KCQ3hiA4>hypRAQF+k1
zumQR)ao==uduU2&ZQ^936pBu{u*S1|243q%cJ)^5+CaQ%XM<=o#C9;L63x6zUGN{W
z(s!YkK<)PFC8R~N5KG9YQ4|G<94J5aIqs8F`4mp!8i8tnOO^#8X?JO6THcUtcWM`Q
zzKMgc^-bh9F)rb1jn;DuWE=73tn%QO6gcAq&MC+A3}DXFB&UPa!Gnjn{eFu>m2S=4
zX@4EYPi({1eI?d_kZ*uym3lcphuk_owEeacoANEs4!a+EO{TcDqzV}1wSGwzG30hW
z1Knc}&k&Ds%hv3;W7;HwkF04b^Na9sj^luM;v0NG{E>ii1F$ioMUqSivXTPERH1bL
zVKnI86hz`|3ejrKqhb04fn;C>K7C{`_7;E_tWxql$wSdhNsNXB^VAgk;TNnZJPSgD
zz@SL!mDBFB4>vKyyUa9F{o><Y1(QijF1YWoVAm3Wtn-q?k8*oott}b#7&v&DHA|FM
zIkqoJb&KxV^@+HDz*Q+ViLM>CJRvsj5K*!BaQDFqy@StYIRz$*`+-)q2`)U|ZP-%}
zK^vavuB>joj{)0BghK9Rta)RCJGS;;TH{+<1&9n}xFTGp1~sen(u;jCw@}Lovj$s~
zoq6j;?%i7zuPq@%QK%q`Fq7xG;tTZZXjqI%%0tyBW*Be!T<K0(qYan_inEpL0FtkF
z$A9nNz>mo+t09+8IFTsVnIPre7GI~Wc!Z=HpAQKCvc}b24qpkm4v_FG%s-Z2{~R3h
z&4Ef6mJ<Sf*6=k9bu1GT^}k@^m=0_xQjf*w3R}W5m{9XIVe_rH_$b~fL_3ph^b!;d
z&f1c2=`5*1hq;nsdYvAevcI-W35y_;;K+ez2e)<Qost(?J8P?i&*-_?diIcWn_%vV
z$8RJC0f<_2%?-i*qS~&h4cc;z+cP31Tgl`=n0@r*kY&sCGcx=v@FWSwK7Vg;1|Pwe
zC;$O7Qz>8=q<C}vJHe6rwe%n`F2IQ3c^9nvwO0*!_~zX|g#G4!$O@Eb7<&c4Bmf@L
zvIIZ8eXAq?UE0RUD)z&rv<cMxhOWW+`)k|u5FHTS9=T2Gs(uy~%sW_{WS`b@yow8$
za!GP4qy0(u;18X&9ZDfsU2sp!l4Mjr_`%)(8$vLS@b~USuOj%*>lvJIxZaBiE<R_u
zRWyM6*1Nhc+Ry?rQu32nBxS7WvR`n1gSPF`S3&~O!AtsT)1KZa91T9Ttn{gU+P6PO
z9CC$!x#e;CfC+#)W&+i189xO63xB!fDcXjd<Zy42&dOQ%^RKQ~rvFxdODo#6jM-v{
zKqr`64hnt{tv{H8B+$zeCfNF?`*VjUwuI__xl;K;ZArNwXL=nrgTVG*t?)w2RG$^g
zh@(a<Ny&bE=vVKu>H!kof#MvW1QD>72+up0xYP0p9B|S!;qzpJl`}7jyrX3GG`G+9
zL;-+XMo8X;6@yJ45ArU_%skwUui-w@-pMbW1BC>U1`g8eYTdKfa2+HA_y%FRsrBh@
zWJM~0(!+~f)sg(7EyNYaop_w1Tokb~WNZdiyimex>M^EZ!4bXqgK_ScY<*n;*a+ah
zSXl%r;PaT}9{7kZ@-%|Svk4LjJUGehb&<RLB|<nn4R{v?`^a4cxIx-jsr#WsBO4j;
zr-*AW9?G^@^JlFq%InZALQx#;_w;u!NQ8~;DcwT+NOra<ALfo2&SS_MjF6p(aYn!_
zRuY&~B%swkpp$}7Y;15v5@>1rXr4~@-2nHnJe}lTiLvlq@kBm3v6rQ~!Ywr5o^C9m
zumKons7QE6s@Zaxb1B-RY_<{Wj_@0!#QIt=!u{NT*SGWRh6eZkE@7THyd`O7>u5Ke
zFb_v7;6l;9l9M4FqN?j@?!pzj#HEl8W@3ZuD)FzjI9>v^?MOGOcJB}e?(o@?8~ETH
zx23CIpCpkYiF`5KqI@2Df}3;<Ezk-8t3iw7vl-UkV_oM8eE|*)S#C_Ts2&3%?u#D>
z^+RQWq*`F(U`iXxL0!O{VFpLpl;MN>p$v#lFU+4(4#XV)hS%+w!NO%!0AB?AN%ZX0
zRQzL?{prP24-OONQ24ggBjqL&{XZ8xen1$xSs=99rKQF!zR-O(f=eXm0#xM0hu*x*
z6cT-ZIqdHDTl5*oLNG=YbeQh09x_0fp3|Yk7niyD-~!k8EdNpiu5M#iU*Kk*%R?1y
zE+x_VC9s}!RH(j7+|6hEP4Ej;;y*E?nWs;0bWP^~EcbK38;htXs{xA-FLS5P7!XEd
z1XUr_FL-!=zS3olQV=>+HAnz6^BVV2Z+#{P?Q99xR+)4%!9KaxC0xMGIDGK;kfI$C
zPw&F>+|gP5TH+^-R1FB5(VUOZ-{?yC?anTf0XCZkn82=a188XNnPA}=$rBg45hVjw
z(DQU4H^foGLYP6IR7|k#v2N?hs356;3~M6LT{V#4gO0?Y?w=7Hum}yaJuVa>@8d#6
z7UwC%N2RcMAr9FqxTdoeZVrNq!We=Bo88HFF8kBI_BM1HM8{gNe8ky&EZ-M=F~@2N
z3xyR=mKLha``6lE_XhlnYAe|ddgO6(Nr;l8{O`l;0lifNorV{cAx*f&?VW|vNpha~
zPpli!O%Jd1nkF0`<XORLL?{uO_^m^&FoW#m89}cj%}jYl#01SzZyl@By!xs$VXXp?
zQRDZE7^i$k`8DqAM|`AIS$QQJ1>;SQk_~^myJEZ#=z4Y|gu;}pIMzG1IM`mr$A^Z5
z@lEP4_!stCxQZv3`ET0lM#?r~Kr{%E3Ygg>)AK-gw+F-)3DxdJDJ?G&yRNNg*n3bc
zEpgA>80d@w1eQZ4{q-8}&xMw}c9U13bk_;-5=k7{$9;Kqw3sV+$Rabv?Z+^n_su*j
z`0>S_$V4#I5UGjuP9UX#y|ZZ_cjf}513}49F~$_SAQApp(`l3ogA+lSm{38j%wj@0
zag@YlmeZTu(x0@Y5JXvRRRE|5b=oSpH;$76jke2w-D7|0FGP?xvJWuAq}o%W`T0`!
z<6bb|z*5K|BIzWgjKGQ`3UkfnZq%RtE5)=UgpVgKO{3~FZ*=oF?*2q6FC2Y^JNTat
zf-)X%cg%+>_hUzh3cwO1(v&I}en5XOg@>dIploBQB8zqY${FsU=Q})0?nyLtRc;XX
zNUuA55UcW@%iV$d_#f1v2_>@Oau>(9BEmB`M?qQRt<M%XSS;{b4$jom+_b6=Zxe7u
zqWL@G&h~pwybkQ5^iCA8ig|AJtGo9inPI(wl;<7#C_)}3!YCw%Haj4((k=Sb|5`W^
z19>%#b4X62IhnIH(Uf2AdOpM><?NnWUo6K!Jed@%xw4UN^$i_5C)x<-PnCP?F0La{
zv3KS$>A*Cl97oJSuJd&?v;l|&D01gX?&|6ek6}bnzwU{+5k8zLj~Io&?5NvduA1hy
z+(kMQ^pN1ZkXEUQl6`PakD)93us4x%oNiKelm<Di@?IXY=n`!}xke)3nW9A`$;>~7
zyxG{+A_9mCq++?$?-+8<IpFDqeh0-F{a%v*(8uXmYvuUe8!>?Xy^*8u-y1O_S{f0&
z6X6y|w-7;)_GXX*+$*?<cou&)K6>hF7&m0d{M+>UlzMDzNy@~}NipT5A>Skg_vGH-
zv~F>4?7{cJ(rIg)ATT{KG{gV{*NY;MIi&hsb(&0qlukOKr9lFzLmnTam-Em^{qzkq
zXB3K8It>Xf))wE-RD{|mUKT09Xue+)e7%wE7t{wVCj^bWM=15o<X?kVoS-f3>kQK<
zOry8G8a%zbHWo-SX#{kn&KO-}Qm)7yGGV^HaaX?%2UXj*k!296g;_+DL_UIzyI1Ux
zz~LN#A`z)8qSU6Spvbr7)xpJ2XbUMYI4SV>#4(B6E(|t^YhibH5MMCl^x)&8_SneU
zX!8}d7rsacU-+uHFNa@4JfyfFVc#%Q-f<IfsE})sK^7H+U%veZ_C-+R^Dhc6x|IdI
zr&gi@J6j7H;c-E#%btK7pJ?{&!Al}~V?M*-Cybb-cL(>`u6Z3(%9${zIeh|D*;Bf8
zS~rNe(fkcU3zWL*0g~N@$x;2vkV~%LeNSOEw(cop9iNDPquUJ{vNUt)q#?at+Vv(f
z&4J+VKlCjemK`^HY`e|gp<`^AwvO>-sGmMKnY4A<(#_E91xn6@V-RN@qYPIHf*|v%
z;2^8RF$LroOSwuA(5Z0#;un26IKSC%BUl}-6#J4kyb1~Ci93R?AF>BAkt)dp|GwGz
z;<iRGPWYy9iNgtuW}Ewxd+YW=yGtH|d<4QibbZerB(YryNJw;6%QDwQHt{JGLL!2H
zj#pGm2n6V$gzrMdLS!N?UKF1vR}TJUKz|9<k%^2vYl-{gHB36tJN9crGHGUtL~d%u
zuZ4~EVIR9-4G*IPoiLBgl>ik1CpOLZ-EBXC6`)OpsO2R|+ESPOKRdkhCEklqBtr0y
z;ENPGH!}iWZV*ct#h9>is6kTUwC{kgrFW1a$C@Rt558%AKY8TD2nn$9c>WU1FN5qA
z(_o7CQ$gE#;88MO-#d7C5J*L$nOrNDBM<_t{b`;jkR=Itk+dqIvm}kwEx6A+NVYj!
zilP88L4o%oM9n<4keKe$l7^1e)-oZ2qf*=)#E7Yv(JMIiC3SokG&Z3j;Ps{@)(pMH
zjrrM%*BkE`gD=;COqnOIbbk+2Z+P2vu@Kv?cXXhm3;wGEJ+@s_ySHQ2wtIV9uf$7n
zrF-Qw?Nwo<Vi*c_i<@4w)g|tOzwNmQgd8*}+#||_CIm)vMg-@bI`~{xO-@Lv<po9u
zqhbf2%gP0`Q4jO5P^O9N;g+~y!s#@S?h~QxM}0v2qa}WOJaYN%V}cozv^~F^m4!Qu
zsJu2KOjFG2;lY<;lyNN&M0Fe8+QMPM(b3#S+FDI{m;^*^!f}~wjz|u=DT7zA9d;-5
zif<+KqII$upDLQ*i;x13cRc6Teq!au_D!0$aKs9i{p9XVlG4`q2{-gTZGuve0I%#-
za;+t%z2I?o$uez1Q-xhut_#i5rFXiuciGlL&@2!z4g^U#`zQuVUe~+c(bKd>r_==K
z*vuAgX+{=EZOh^^pD~{#S)xJagIB$*v=-KOjA+ToXLD298JpoWZ>ccw;~$bjz0|Ui
zqNOs(3+H<IQmR#n`V?+K=obq6G}HYGZ<Un)CDlobuSzi#unPpx^VMGk@)LIu=|-n`
zuFHTG^ln1?LKXP)p@II~Zs`*%ZCJE3^$dk}k~%u^=GH&$rq8sg!)>I%#<$eB*zJ)R
zBOTg6fO1x7Np%TzCy`X(%1((Ds2bFw<yi1g3$yx?9`G7Bv+;#46$41{V{A$wA@_Ng
z_YH_~$f?8ODGZl{yZGW3Q;`-4>)<z()Ml(=U=zkW+VwpOZ2}!reS^k)o942tUK!UQ
ziDUdw*rLBqch8bh!w<z37Ab*-PdF|hh=RO6!+knLZ-Gk!HC=BKcNL^32lx%``lQx)
zTc7ap;mVRIs=%I-&Gm_H`Oz4*I34O|*4NZysUvriCC}K5xXZmb2O>t8ZQ&q<P+3s_
zOOJDR7X{@ap8yIuLfJtQy@6mOp8pu{hECH)PQp5vVsxWmWAj7-?u=UKE}p4R-0kMH
zb~o?VnEZb=QiFEqYl*M<)HyOqtcIIUa*MunBIxzQMKusc#$@yIkM6Qz8fPV1MD#Wk
z(9|W<{dX6^N5Bm^_(-cFF(tUMeZ5Ig9jE`{zAMw_2^cl%PnV!BZioD>?tMSbISK4>
z9W{x3ATxTk4B#>L%=cPeSMRF`lC~aiR)6G5&~<s=G~vb{h7(0QN#rut-2T1WJllVp
zfEL8e<t%5vz4nDWphz3`(95_Ey;Ln~XXX{WA-}d}UQHs`nZT!?lqHDDOW$*5qTk7~
zkPqMEWppy`SNH3g{_A{3Nc<Cks?7=e1y4D4xBjtr+xnLu7QR&a&C#D|rf+j;$LI~y
zg^1VRH<IFo);oEtyWwC?KSC*hoBZrA!hgabGx%k<l6V}0)G;qCu3cW3D4Yl<21xGs
z>36pS9}{;>A(Y7TG$Kr+(#d}77WuhiqeBgie)2Yx$kv~~+4T?WZTZBZ#D+j$!$-rm
zuG;7(NT!(RNHvj|QYdm&Z$&mULQjA1Y7f-bR<cF-ej<c9P>uO?2KSq-?&Gl?9<2k<
z`JP}t*yL``@gBz~TZjfx8(~4RKZ!;snfWy~^zfj^+1(kW#0l(+H~?&%oI8cb*m?DX
zcWV;kqooP+4!Sj@7G%OGOgwJe3Oj1v;N9Mo%;Wa>CbkM@b$q%#@>HcDrofCEYG9mL
zpIOswc_~lB7={#tuA#x={30WDV1d0L!W{%`MZ1OR8z2j~u|y>8Bd6N9>vr!0{cG(5
z_Hio%avUg`76xQqNHK5J27!WdLL`{LX?AtC_A8w{0JJ+8RfR!z?TPl@a!8+XnpA{l
z5gZi6i237e+Yrro;diX4pA}OTsuo8rEx?IQpX+U)_h4bbMQX!KjIWx?dN4$;apw(y
z$g{(Bj*>lIr{8<L&J?#@F9^+6ON>yEIDS6eH#q%LL}J_?!(y>GW!i#NdkkZt7XE*J
z!7TjWzmP$03%>2~Ef`uY&p@HYI0EM;P79{9X`_3L;5r{L0hb0><?t|1{^kDn>%T_(
zi0ZdK?q5DUj?M6YcS*{9`oEC+aZ}jh<OfU)l@K;)0*b{6m!{OJfo=BO<;u<_$gi1r
zppszfMr}LV9dX`3;S!PKhQNW(CnASgJl;BZYz_#1`Uqf`-N;5*VLsW2v`qu31tLMT
zw|FfG*ngv|eQpo8L2+%qKOlI({n`dzP#hZqtr7C;Sd+TW9dMyG0ScZ8@fc?`P2wi0
z+$)%OJ)UWnbGW8aXsaR3W;cNtqY~32F7wTp-AGp;FjCT$T^m@sZ4H<ojnt^XV3jOe
zjM9A`bsI+5UGG7RwA_Pm&L@uo6#=l4R0#Os4ah@PXj8TtfGG4f>ppV7i4`Mp%*se3
zYaRVZ&I^vu@ECWP#b%H;sS+x6J&<#$X2?_*xYG8=VO#*0F3$HK>IUBw>-u9T2#6Gt
z;ej=S=Z|zkI5CMrnj(6Ii2{YB@k=+gyO+yQ<Ukiq!HsNqE`I#SZGV4&1OY%6Q8Qcs
zN#HjSF-sq{J)R4Ez+`0CS85fvr)#{2UUwg`lnI7N7DWZX_Z5lW-J63SuyX-0mSCAk
zGQwBuy`h(LQ7GW%)Dxp7CnD!4FMi<=xt3lRs^tDUW0H>cE}F$PMa$Gla>IWzy|j~p
z!k<JKMrfER#2vPWouxEL6UYZBHs;wP`%R->$RO}Selx@eXo<88Ew&feQ5z0%E^0Q6
zt^riHce}d_JgpcvUNFT(3B`w+k`h1+)sAqL4^WLoO5vm=yQg2^-(-nG)lpjC5ExyL
z7N5pLQp|6|-K|e)BfMa28;USa0piG#kS8Gk14G?OkKozgHIReYX$j=)*2Gt~HRU%F
zy%d!uiFKY}-p>!llwdDwf|5Gt1yO1a92@)|?qV)a2J%Jpjh_n)YW6X~tMc@E$1oCN
z(SJohqWBs0Yzg(Gf<I0(`)u(r<b)Q21tF9iz`&BsJG1P{XMmWf<vCNJEb#dzf!#_o
zw??_icW4s>FPZebA3r`u+KmI;vv+C>%zjXYm4j&T8#zVp@9)OlrHvD|RPd3KXHU8_
zJ@_of4Y^-iCIQf$Bce$j$X333pxf7f)mU&9tq&tgRB^C7Z?WD2MJ-uylK;~3wC9g-
z^ZcigB3W76O4x{Zj+<I~Fo}ut5i;_g6mxrD*Zo2NaYD5WP)Qg}#a2X+|Juzx)ZjNp
zDoS~qh;5uw@n&Twx60>@%u)oK@;3U}S;zHtpFgBG<%Z_g!URC?z#Yi9w)TN<jVZ0z
zQqw{=32{WC`KPOU=MlXvy$*(+ndPO#bIA%#6Q;$Z@6ndA+l8;GW%!Wg=N#_#TCOem
zf=*&gxfmViCOxbdCFjbY1T-BcA#|JnTbZGz5S<_+kffbNlt8=q3ICQ_NnmGwprGJc
zd;Mv>N3~&eeGT;qDw=o+l|#(%Biws8X~Wp<!fx97B~nV4@}V33>CRTNX1@(25dn#1
z+pYEAG!~#zgc5cPD5(u**$&|$kyV!~+=s3AVBnfN4shLMWYWmz3D2DaA1Hy{WO6My
z8uxM&7V2I3RD#s6rQ__lySCVu{XxjC*<RJM7@0VwMEv+(y(J5Rbg3F8G?0AHo5H9m
zQnYGzT_6`_OeZ^$0N&9%?AQLoFtACm;HKmhCZ=D|C0wF6<x-Bd${%dVUEoQI_cux!
zw4yalJG)G2ShLZ%O>~)~5sq!~qQml>md1YmEX#$uD4isVRVBq`q<phPPD@hU!?Tn|
z(%&TIU+SCE@FXY75*RWfS{w)fu`8$&kLpMkIiAGBL*BD~;kouLm|*|Xl7L#j=X=Bv
z*w!MB3WldxTpz@PK~BV(zh`*;x~UsO;r#)aYs9097K>*j+1z!C*V%6tvCMsdr(%Hn
znZ1g<82ZT6j=@#{?L}EVDYKOy?UknQa-B+Hd%PY8Lb2udjKaUWQ3OzY>nUE3F4|8@
z$50DfV0BVIkweMO@E+>qdtwy*K91az0Ocvun>GuYAH|=arJ7|WUe-bSvz+qUBFOLI
z36zhFGdG{&%{#C|OIn%`tEIGS0TM?ca)A-xz~+G<>3bJ>5B1?TV82DUq9o5sQWklc
zraEm*)?sK@;7}SNmoR$=ylshkBlM@?nd=18?Yo=KZ1SEP*`X)k31Wmcv8|6<SV*Q2
z|Ap4KJTBzD=MN1bng+knBEEUzv?-=@nRk=Flt{Tk%aBovjY(x~{yEc2_3zUBi`u{x
z$#3DYU^!!09%fXPcXh`Z=5?&wwi(W<t=n8KQ=bIMN*r;2uQ@}%`8blJ5V<HhFu>Bt
zBt0?Mt2j~{Csk0o5!jXt24m-<y+gCKp<RJScB$Fqd4C;E1H+5Uy&T0>inh^v@fWW@
z#XEi!1BC|)pOreZq%t9;Cn>;tf|t}w2Qi&bmXNT-`KccXPB`S<*F&2oN%#0#EnSLO
zyy;|bQCDr*Z6CxT<6HIt%YBz`BNfSH5BA>W+n6PCR9GdrEak~?Gsw(+cCt6!A80;M
zbDHq7#E|@L`j+_BH6^Iq)*{u;+qL*>Rrjj|7TWeJ$%Md6^<7x7EJ-xMvqRpQJ?RN9
zJ4w2b+O(p3z&Axs!inBl)Xo(BGhFv)k$5@r)HBtIX5jH&52;iMX;4Wy-PeuIBNI@6
zuPO4*_D6FJ?qt7-6(Tn1x5eH;{=VsW8-z`*xACub8^B)-1b_U+K&KE#;&BaRt1nlu
z_B<N(;(-NTO@Cb#ZQ?~Z8e7Fh#}DKlMBoJ{d7rgxaB6_!UXcAJ+R_Q7-pz~(vz!+q
zmxofNG|HBPTh#n~m3QL^ZOn|oC#!A=IzcXgdF49q#KU!1I&Lgkwrv|LHv}=4zpq3s
z$t?5M`_m0%s0x51WH-2<nebHeVue>g*;B@uC0#G+UU-Z_{HQaU(;1*1Vr7<hkN+9C
zLt5to_cwOHno_TuNF45OUl}z4VboF?m8QJS4Uu+YFC*-Y?5p=^gE*)Kd>IOem~4@b
z46OgNTTx#}N5ZwLnkA>P60a$Bx0XVB4uTxcbt%(;R+PklAD-my7)L__paEL^S`g6o
znwTng$|>4F`2=92G-8*ap8hZF9uo?Cw1L*r6_S2;Y`Hu2*nux1BQirpp;<A-I4xk3
zNs0@AsD1N2dv?ko<$cBMpu!5lJMe>~_5%=KZRhpTHbok!fr`l%KwZB24V%)RCJ=Bf
zjM-4S#hIn+?OqRXS#mg<$>C62dIEHv#SxML<FOXv%}d7pF@@g{h-+pMK`$S`B+Oi6
zmlbhU2s7al3sp7hy<-8T<0ioW831{I=4*CPp598zx0uUvGx9#+eS1kU*Xa%D3V^8u
z_n<$DHzU^Bzc14ppd@T6hq4%I{*>eZ2XFQUn?74#NVy^+OpyjGpR@$(P{x^~-mpJU
z^527Diw9cZrAYyl`6t%cUmEnTu|V!f!Gwn*Fr@~wiJ#C(+_dMuZ9h9sZ>AExT&9oW
z^ImI*&fqe2PLL`aL=Py3DIzUCDL}t_zHNU$OrJXrHf$<JB+GZ5^|IaYAFdKZZ#OxK
z%Dd1yId~_jdJzsxq5>#tI1dC&1);(^TY0$NDx79?l2{csTUBUQxl;Qgcox26$IBc-
z&ff^<Tr)kTls%;MpW2kkTo)=`)WbS43FWDr3Kuuqd!?HR0`DgPq$3R@QJjhY+74V!
z3xvJlCIXC@Wq`Tmaf`Ru$W_`RG+2`1CYg_Pl6tm3+5t~%6Pa&BK3QSBi$X~O43nvU
z+RZDq5e6Ezg&=w3r6K(n+vgz~FxtX(hyeel6h;L!#W(irx3q0^7*SKgLSTI3%)RUE
zLre8~Hf5E#nkb*M>MMKiV|o=3n0zLuUjUoWePi!<M6ZJp1NI~yAu#t1vWU5p`FNn&
zZn%?Q2yITSFq3KLI8?X)ZfpHpae=Xjr<3<dBWsS$wqvbrd~vt;C76%DwYT^;Wrn4I
zoQ?u7Lc^clY|mb%FTyG)XSMMn9o7ZEpn321tR$1P-bTqpq;l(QaX`c646$wimGTVZ
zn#;6l5^2S?vzr4_oT=GwPBHiXW0#cBtR4c9?*!&$*FF2YU3rY&HW5ZJVbUcZMh4;f
zZT6(8+TgnxbOdSQ#4i5JzBgW*Ce-6Rk%^#z^T_>f|C6r`)8QdxW1(!w2DtZ6drAS<
z34)L<2K_X1&2av{)?Rczmo?Xz^#(dSPGwWvPj+CcKBs`ZVeGY^Sa7_8O@IGi_BPqQ
zd`C?KW5%YC7PjVpx7mbjy@^Op5r-|Go+3+X`VL!Etqtvam1Zv4YWqvCsI0}NZ4MM5
zSJClW_SpJ$_NZ8GEeMsdl@pQ!^#9>E?QPSznnKY$@;Mmi4J@8Ae9N+r;*d*_aeQX4
zKU9B%qfVw`N1&i#ecg`0_-4K^HdSW+#AaLCQ-4EJ0<I^y6%C}*$9BnZF5~NsG&G}B
zLL!Nil9l+yYWvJ=m^wQ;#_)~)x6n152097H2&4~W!3j}R&U<dbzM!#oUZkFCyNm5X
zPJo!ij}lqsw%n|Nw+<09PNbFy86!MNkTV4GqzuB{Iqub};I7guUiWF6^a78}qK0u$
z#%^%4eIk}m5K<i96^H{C*NZ9s#HGKYK0>(PYGY;t>Xh^YS|vU2BiI+O?chPw+bC<h
z^EQyRL{S0iO4=obNmjd$F7lr@n~JpJixg|cth?V02dcG;kCN!hP9G&9Tw*eaH|`Kz
z$q5g+DfjKXgM2h?-~kEuxT-6CnqU$U<PMU|6xKU3IQ`9CYu1wDpKMaP27h~qs4R%L
zdJW@28Cc;br~%@T{>?f#m~x&%Mew_d*iqOA%7PF3K%bCI59oCy-bkA;XN)~K_&)A3
z1VD$Z#^l!IMTUd(U2-TOp_dT%i_f@$e<@>c2RA9n3F;;l|7k&4MR_%n4fPkcNP_=4
zPrB~!1>`08IwfC~;8TJiaf3IzVOz8zr<~}tTu$XzJ?FR`3Hqtny~BW5H<4K+jS>#n
zbcXBtz1}kgY8NeCMT?MQq@3?M4^_(GoJJ}~Bm1=n5)vv~=Dv75&_1;w7DF0--Z^fW
zpIXpLoh20SR8(qok9Gz;+LnRA?{R6IHP?+H2cqM3dOTr{yRqYQ_&u`2&T*gm*E1*=
zpd|9iLV6c#ie|g-&8|;Et?xF+UDxqRB(`8S+}hxN5i&2~Lk7!CIvnKH$jo)q+?+2u
zJO{Egpd!=exLdnH)I^*aXP@MM!Q7CHq>DEjItNb+LGP5Rcz66(#JdvMVhN_MC^+wQ
zT0n@_lP4&(zY>(+>A91Jth|k<(eO3oOnNoZe0{=@-<Rsuj^u?Ydm=CVn!6}>pSqLs
z5Jp>yWo+R?p!H2MCv0|yK-4I`T93CGhK!mm1l^FR1k?i<5`8j*$Bfg?wQw}!K8|nY
z>XPr2%6U|j6soS^AMTnaeoIOU6j_1`MRO(!CB%x$&kin%S6=p3i6_9`T_v9QydHbQ
zE!;tgNgw%F6K+C$3He2w>9yPqoS^~|zI>qu*7ywc+{|pja(BhMt{=hB45+qoh6BOG
zeFS*%XYa&62TAFd^a?se%^`6!5;efyU;2|BumPVKAs9*o;mX58Ou@Yl%hK02@EG+V
z&|j&in@K%|y3N>+VoH#ol>-Td7*v?w9EfiZes&vBGy+P%*n|%Nn@GSnPkLYaY!5B$
z!<!K|i7evG6<+DJ0Nk)IK=eQYB5Q$A4J-GbmEK8r(!_LVxefD+wS98I$jPcvP86i2
z+4`M#z8xSrW#ft<#X*+=>|$Q3^hzG$UJhAsb0ttP0EI<%^t#2nqH9zp7JWv9?*nwi
zZ0~!By>}KEKJlg#rV!&$@@^jPWj{{jw{T}P6*miW1>NGjI(Khdk;AiLtp`cMT8srG
z4u@QkmwgVsld)xJc_k^xY>&%&ds92<D>+O>MF0VX{Ox<7&A61G3o3=^4S+up*yhI#
z-i+_{awfK4iEy^W)KUkds0L0Ce!`0$-{h?Ta>#njD2I50$W|(qTFouJ?UFyZOiibn
z@(tB|9pt(Myslm9HSK_k0lS~sLop_VBvdOE0kU0Dlf@Ch+{Kzt@Ai)QfCmtnE{>Gw
z?E2;@odamdm^HjQ`0lTnU0n#67cvQ{P(hecFAttX1Md)YWd)2ym<htkK>>$&)BASs
zh!3>~Btr#qC7)6pBp^#sHI{m_KGnANz2S4NzT4Y}n;1^@PZd)+OrX64)6AO5-tQ}E
zB4-cXO598d$QuYrzxVDDRu<HM;BwgdlElJhVM%|za`1@g{yu9FEF{G=fNN!gO}@bE
zldY4PfqQHglPvrOiROo}x21G|+>px)5Jdc5AX_WTyj7?2doqYITHqTH>5u@l)4cYi
zx9E;2DQY?<Bs^;7oh5;^uLG^b8F;CLREWnUV&vb`=xr;dv?eG}04kb06w?#}3ht+S
zv-LT}!h_{x9EG=mjC9gOVCpjYCj}qBWUye9cIq<p%GYJ2SLqmUd>afVDdxCGyxRHn
z75famT?tBHNKQ3r4|$W%h>~*VxL*()0e=gFVf2e}n_7EcW3=EvIv|RYS`bC&G6iHl
z1F0s>s-jmg=cK`^f&$h<pKLbfzHe;r!a<s|L<t+TTN%)noF%4-s?1yjQiAhugu8k$
z#f9<y3PdR|rLl<=HwmV~{vT%+<hhM;6h&s~YH3?-qG$?>H8$WtSbV|$8Yi_##J=Is
zeEu-^{XtX`-kA{upOX2!xBGaYRyN+5zmzJDx$d3ZrpGDNObC;dHvl|14`7P!;SL?m
zBU<~(0#4f5Pn-hyY9v`6hbK1<4Y{S4YyWd_3J7xt6|3moh$J`YNIz>!KNfF0MFeAA
zWFSA@rT%nkYyD}_Ti8651t2(l|CjdsZHysoN;M$Yi=^zcR6|KIfBkK%yE7=97{es(
z$-MKTz3eJ_Oq8GV-7is%%Qe-sl&HopkV*P_9p)?L@`NtouT6G)DYcv1_e2tGO~1kJ
z<_`ypOPeycWg+AP1$t1fQ6-r4FVFN6@W{6Mm|9&)kwAJ$O*uYYT<v(`&=1xU8~`=R
z4|Btn0Tvk%8S#kX3x=D^q!oGlii=E+UwlxBaKEU>dB5kq3y13UF<(&tNqnWqTTy#b
z&FRm2DI*4q&tT0$O;y$yBk{Sqm<@n(1f{`2aQAk*<fAD01*T|2gjkaRH4uQu?B`xw
zsSUXsNQpzq1C@q+PdeCL{(Q>~96XIN72nmyRAZ|Nh#Kwyeo{EV#lERO$q5G}Q=_(=
zI$cze7Z8XD*P4CY;os>GaN~vRg}_p|_v|+N^vC{<!zdyzogqZUS^7kOcgf2wH&Eh0
z9FCe;&a>+FalbsPO&P?8@d(%PFv&6Pd4Rill{OT>R}m88KdQ>J%%*pCYrfZpLJ~R~
zW5QK2EFkGVH!>tOf7r^O{3mXpq#D%&<e?n#v`y~iI{y$giKk4cuM3q^_QXv6-rM^x
z?=mhG;yo#^+hEMbN2AvbKTs|e$ar&PRFku5%s<Pb9~+_9^UE8`zpDwyRF_vkZEDP_
z`=XN$)0T9&`T)cZld`$oGV%WC6NYF5V~L}@NG^W)NOYd37dafO2+X5*7_;Gl=#mi!
zO2q-f+cO&}!MGXR71j9S%{y1yy+#bm%}XX<S;`*gk7Z#}^{Q(P#6g@D96i+gn@Iv*
zN*cQ2hxgi{GckX5X+c!9w6LMlMb{HT6E-#bCeD;yXji|kX_BMsi$t}dtT@x~+7qrv
z6c!V@w!lEdlmffQORiY%<{qyN{9dsj=7#&-rcAw5SkE~qNH_Gp8=rEKM7@e}+>rr<
zeCW=PxM#p7^85lq_ljBJ1ytcM+aGq9#Cj6$r=Xw2p+r#<92!fsxY$A<A#J$q2!x~Q
zC@Brsi5g3Jkitl5T@i`n=AS2muYMVgPG{0fz^!1NrQlK12=0Wv2Q3jLbCz&bvg27G
zoi+tun8SmK>!O(nT7nf17UgfRx;Q#F9V?)oUd$~+MKQS(=;bG2cV9T_J;s*g1i_8G
zpYM(AI#e!jelagGb&d5!ERo>RUe_%{DmZ<|L<naiVmOJ}8<q3y!VG{Ku#-t%E{V~_
z;ef)O2zghE$Q4f|ans5h^jFjI<|B>8aRK;74D{~~bNP#-pGT7Bz#AqkR)D;Tv>bn>
zO?wuA6g=}_B3h!lNeGuzGq|t&@r;2&8$T9{ZFa4UEs{1dz(Tm_tKf-!2KD5@_+2D^
zuR5_nEe?6XuKgogS~3W;P&Ts&wrOJTXlSPIEB3v8^)4yQ;QP{nn8umzEA3l<=}mcP
z6qu$+=EOJb;$DMtv*ZLM$Bt-0CWYCf%AI!+b-XeDL<5vk-FZ1oF;JGVZx6^FFG(E`
zOjeoEIZW`Hm)#r5QMu#5ZHDKd+Te8zOs<Yp1qvI1f=$fAcDv|vw{loi?lj!Hb1F&+
z9F>%qf^@dUb0@ol9vP53g}?<gY(R@9q;o9Xw#lX6Hz0R30zAU|v1+o8XZ^lB%ALM`
zKyD#LtV@JPL3)rimZ@L%hr4dufZSXO$5mBHq4KE(s3mdpUE`rqxl?7wAnZuv2Dy}A
zy6+pj{|%nblBJgr8Jf{q4A0#cI_M#DCrW`Htxi5Jk549tZ}PoSxua7}7T(!85nSYa
zbfP)vEq7>=ULR9lTSma5$`lsxl=9bI<|w`tWuA^>f*=iZa?qCsU+#h*49FcLIsbLi
z^MY(1LkY{{YxSj!C`VqU8JCATl2z|=uhh#qsQ6MqJu`z3Vu>F*kB3VV@=WM2&BQzm
zyzD9N`Yy~CbR2}U5K0tJha<4geLE*gW)`Xs2nuJGnaoKkW>m4eXK_?+j@b1QGp6T_
zreIo<S%0Rxd4FoX<4Y`~mWy;He=K{1T9l}Yxp|z)NN?#kBa}A9O+Gv-cMM-yUjp;K
z0D~(`K^}cPHd|LiHn~|q=aFlbu=~+iI5E|Ho9)&#QaK(UT)m7zOnFsIF&;il(~Qx)
ztM>zL)o{L#ds#-Pt1&3JvQl_%?`iIduLejzz>vwL74X0#^Ihju`oW<3%b_3}^6C=z
zbaj-7h|G#mwR{Nj0gqvYJEf%E%#?_nW@-}5!xy;0uMEgdj~7wn_jcmc6m!8;Jam++
zhw5J+-UQT6)?#6Lig_^8y|J&BvL73o1HG;eV|GrO={v>!9My3%#PFe%ZIZ1(3hEm7
zcS=<5WO3P|_CZXLHI@xM{U0}r=P{s@tI+`hgdI5pXUcbGPsa4&i1{dw_oWfMs*B8(
z3YMmzkOjo5-Ofym6@5`?u_{eoexezEpUXNxmqb3JE9*zsM4-WyoT@*D*AOAk7}xOo
z1T*J;H?P~yv4JtfU$ZY=?qc6#ze_R&r(GaN(l=!djGl<>_~kk`Z7N$p(^lrn<%!v7
zf$v=E-pP#0WdQ)lAp=~F$=obNoj1;1cYahZi;&XI{{DqRVd|Jf^V^+nCDWL$ZiY%>
zYskpqS9iK=`$nz6(47F@RFhOCafu-3u*=;OSHSP0X)zexXzNl1E_|u`zDO^(W*khw
z5EKV0KM?c#!9^}ufU8$hp4j*m!)TzE4M_**yTYk<B!?;L9jb~%!s74{m=%}UXCnip
zLHSE-06<HU)#n%3UoILrie;HzUs8iz^x=%)2}cZ8dN#?)Aiz{)U%k~QWh;fh$!A<o
zAceyWKh7@1;Rx`rJ(C*=OQ1}q*~EFfH34u)YDe-mxmJp{`j9_Z-Z1CQNhjH}@OyF`
z^Wp7@xl(o#bK$fQdwzBZ^9D}>sxqH_N+)~pSS?vMQL0^$EFfA1{%qo+aYxx>&)2@R
zaRM^*EyQEH^q!zpsySw=eZN5yUHlJ|Lg8@sk@;cFNu_Q{6KN~Jh@~6w8VPTJuwb*0
zdUdszTz$l^bZC00sA86!-J^f>mJ|<?OWE}R%cL0Qd%t`8oT16-Jiet=kZ{jV>hJdN
zSTsT)E93wUa3`LlzPVkBj-bZ16&=~7jqhq}!!uG>vz{T5z$YhbWYUoJi}&<IOqYMT
zi^=)dyTH%+cdbD50o{TwR;dhygkH?gd#-Q=aU=WiFIdDNK-sj9J#p9|`9GkOidhmK
zGR0l(8zb~uK^?XiNY>OYc6H()G5dXQhX{Ffc;Ilxe>-cm_xH4@@yI&WsAG!CiOs}I
zeMi&n6MN)7+LRpuL8Bx(l9?WO&vyQ6fZT%SOrUQAx)`j(I8Q#bckbKnS<vWKMt;Db
zBl&A)uTSmr1GQCL6*U{k&aDlRks+A;SQC23j_swbg*6*0@e0Xp!fU$!yY`dl_75$?
z$f8ZWH6!1%&mW*|nUPSP*oPduJPxna)$48cRyvs=xpy2$F~l8XiZ)Q;3e1$0orL`6
zHG9*C-0j0YFvKVUTpL3uk1_`QgnSEg$0~aO<`F;P&_tl2qH*=s=WN5uC^7amLqv>y
z*3k8&v-QF5rA$jvJ^5Y|<V-=2yLg}*=kz*MT3RxZpMw{TaRYiQFXj~7`J#Ubu}FgX
zZk_w~q1~>hnTOW7*Zk`p7&g(4+88#oNTZMk0nUguN51Y(zd#>EqK>k`&>&EWR~~Zz
zG_`vJ79_!*mW?^^EB89YDENdr+yxQ9&bz<`!}lnm1i!fUgfCoO9k+m(z)p~0Mlun3
z2KcmxZLSw54WtD5`<s;YIMefId-oCXay`8Y1|j*m=-ZvHwQnW+Kga$dF-{6Y(k7mi
zUpCt5+1gepyrV)jfL)L#g5F%5<^~?6ZPV(>|A}CWbMT=bvs1|hlT@PoTWya~anJMP
zJVKHfSoQcx2_nUt&l+si!_m)U@8(5{!X$)~GLvlVEb8NSC}0E62=3vDRj&D7Vhgyt
zDr%cJ#IbH-0H&C@r7l<axp0EkLyILQKw6BjRNkEIRt@70abBqbAk|hlC!Sv7R#QzE
z<7X<|C=^?Xg)0NAYih(f;mY7a=mTm?K<>eViV$Ci^Pu)MT_jiKwddSeYPYs~kkt4=
z@>jWI{aQi!pw24shTt@bH#bdm#%Dx<NUSk1n)4Wsh)<G5NJ;3%n4zZ|T<((HzcbCu
zU+S*qJ39^lw1sBueeOzWNHNr2hbsga00n|)hH6ThIB)rAap`_{w+p_YA3X_>i?E&0
zD{)F+I^K<Vib$p~tBYOVp<E_sLabSPeXxe?&prPF4>n-=8-uG4{I_4=M5SKcRl#SX
z1MP=OkXni6m57VIuR~d7V37b{TWLJo)8+zLY`K0U+CA1ZTwz=Ji|m3=-Jb)aC1(W7
z7dI?nUEyf|tROi3NdhC1|4e0DgdTP-mM-aKJ>1q~j}WITb~<B^0|y(>EJzBTdjp3z
zgbZyZgxP;uLU??J@BtLz8}&K#pWENg6=xEnXoFZlc==iJ&{^+eUleB&dJ2?G6#U>a
zQg+kdUi=EZ>`VL74He~cV@kp?m|A2F;_Sd;WVD~}WamHb-(Fr^LZ5Mv3x=4q{2kta
z2cwGFlDVOojlyKYA1VzB%6<KL_Sp=IB8rb(7=oBttjvq;wnDuKpAqHGDP2p=MsC2`
z+vh@i?tipkA*`RZ;n`KqB^3S!G7k9rnse<9V`&p_b44-kI;o}?yu%(beNY9uT|OMG
z>a|TVudeoPIVV~#MvAdF!~7*poZUU%@)lkk-Rd5X6jcaY0qeaKI!tJz37~-Ee%4!c
zCo&#r5CFw0I6-j@id;EyoBfmq?B6jJ;d&XNxyTbatRAbkhsF$)(ajCjmC=A3UHq&Q
zC)vo8I&2{Jfxj@%gbs%6?~Yy;H6AJ954wcvCF56)%#+62|1y8vn}c&I6PHzOObIS3
zH1q@tN~fCjrFMD}a5Q2ZmBf?q7Q$*H5TXlzvA<pmvO$ifD#`dn=4exbIenvj_Zpfg
z#R-`&d9m6A5+}}V-)MVZ$Eaf8OHE5cXANK|Ky2gue$Fnui6%;GV0vzDlI$*!2F&Zp
zFWS!sYYXs{+NN@eoB{wyGy_)J6^<&A$`aUIf=dk9iA#(^tU|FjJv5sG56&k@5%Gtc
z6Xv?H<%7m&`m`0))g*tQGN!r)KPNoi64W4a#qa)j4Gh#k`5itTEQ}TmKZ<s&`St}{
zccr$C4;QsI$Vm2i+h*RN4WqGy=ZJx?&*PqBp0TCZ4wOO8rSd(A`a)BWPRrap{-_;x
znck(k4A95QN@){E?XRote=Z&<TzdKSCB&+gO-~4lJ~_;7u0+;x((`?I!eQA<MsMvr
z+?_vNuTS85wF+;azwqXx-SXoG{aeam9By?#ua45=MgY~bOMQ1M89e5mDEHaR16ME)
z1-Py1@xl_S!pwjF?cgEz4qeW298-@Anz$L-v*3zBPMsR)x2~Tw!F*2+eKRg%lvW_7
za?ajf6Il0oKXGj2Vc3@f>?tu5^KoSzG}rz9M3f{wO(~z<SfdUvQlC--oS-WXaa67n
zCmB2;<VZ;%i~rnQWIr53h4)<?nhb{T&>WAZLk^VG167v#eFAoIcGL=-@=E<9Cp1({
zc!VAq5bRWbXnRJf6ks>!pX8PZYnDKgrEDHm(va6BC%bc63f0m1azqNpCkGeC)TX&^
z#odGEBAyB&^;oD38SyxC<<En|uiEkHz<=5KMB$VSX-I#2-rwwe2}O$cepVQ#Ai|Is
zCz9gSdT}I+=az-@fwjMF*PrS-sjme|TgOf%s?0BhC~3QA|N2#bF(y<$lRM=tlCs-5
z+J3xQ8;CqmNuJBHUVrIti?`}!JY7}fqKL;gAyLYwEIQc!;NOu~FWJepdXrGAbm?d3
z{ucE-2Drk)@xHQH<!QspZQMnuF@UqM+Thm@WB^uEQU%et7M^e8?ugEvD5kdHv`g?J
zq?*lH?wpfxzqFe3xfHz=kHN%j>|6X(YR%)Ft*X*RLd1b#GNZ?)nfE_%3lnexA(hJN
zMYRi?3<5cwnp|y4l+^GP>>EUJ90E`}aSAM$ZqK|aI)nluwxIM2`y0pB@Q{6f8L>TL
zr0^vPuK~HtVlCv%b%!;QyxpMz%hxPD!)-WA8?sSbn*`MaNC~oyMz`pa-EJTR*>(fQ
zu)q?~9Jwb2sg-b!n~~>9jvx;3@&MI`h{Y0lxUSZ|b>pCgcrvtL6)qqt9|Z9k1)!eu
z&Rk9tIsuypn*dWjKoM7|N5<Y-`-ZoTX8bk;VB|CTcs^#0ckVY(0io0ZkQc0xV8kes
z@|+uR)1h*mQK=?!Ax|UzB1KPyUCX&g4;AkOVFzi7ncd>|(4R=jxa_xF`Qk%&0kKKp
z!Ea7*U!IO7k7uJj%?AR4qKBW`yn|v_$Tk<IVSS|p8fdZ`?2w$@*i-O^@8n!zQ%(X!
z+Tt7F5Rk7v@$(^_76lGw-m{7b`h+V(m~X_DK>?(=8wv*=%qf)@E<P0i2jA5@!PRez
zl3$aNr}@D#q58Q*Y~V5y%S$Xfa?ei9<vupPWczYlN)aILe0HKft>q+btgI%KSdPCC
zON+ZkxZ8RUY@Rqx{2qA01LKhPc<6w=ablL;<6SqT*N1l<;D@W*(N?e!+h{A=*Q@2O
zNB?qJEi451SjDCQ3?k-uryXvM-vBX%kF65e6&mUjZ@FKJm3W~2vsk<BZ>bJ7use36
zD%iEo0ITQbKixNl-X{o2W8&`e7QYdA5`mmv5y%net{HpLprRYSCsCBrYXbRr_>FnF
zeDFyF?2{<gV?)CT0-A!QgI|XX1D}ONdWxtyR?%2rTgy6v2@UbFWms@d?r>>G4FTNC
zFGMtxtAwL;`ia3`F40EckAv2yjhHd<X6`=0wM(=y3-D+d%q_R!S%@{K76tFRVE77#
zkar5*M~0Z0D8CR-Q|0Ca*L%lEX)TZ#Sxi+u5QWcjTxg%eeD?>MhVBJ;m-vo^{evIf
zJ3?B<)wEPlCv%A1ZEIX%Xrxe^rt9pG-VH2GoLRU?588BCN77TaOe^Ur_1-Ceso^mo
z5W>xV$t&);$A-4ARV{ob8=rG~-=<fE$)2stkNLV2SG(;uwEwXdfWzB=@$!yWu^Jy(
z<Eoc-xJn$=JoSm|cS-xJ7{PJvep`s=j=bD(i>)htj5YIKcdz>|5C;+1Md^=}D4>2s
zpt<AI5HP#FnQ|Fv?LMisD7U1~?BTaOx8?H@QGhJLLJ1`~&W`9EE;+1{Ynu4;xJsDM
zJkce1=UsZWFa$@G3Nm&|zx{$QUEqs3NyTmvfYf3#k9_BvuWNZsD_J@(V9^iW?w+5&
zdkcbS^$wSImbPTzBGc6T7MaPi3T$@OzC_)v5yzF^i1LvxE-+C&Qd!?HSM|H`&=olT
zWpnIY{Ln|D>s5U0_K(^_V*)v{X42>Gt3ii8%X<Z(7nbsmfC>WWJbPan{CJ1L?OG~a
zCIpByW&0H_k%l=q^NS*6sXrLpv^RB#CDys6rpkx+v9bdU{lcc;VSRBg3S<wegrXV>
z0#Y$Pz*=9vIJi1jZ_8qrP!CfeZzSLa*dQ6_2m5Z<SC5aNQ%DICTr$+Sl4_N|pBpSp
z)n`h%?7H<8cv49;4KNprt_psCoIbM<y@JQZX-({}YJ)3++`&ej9f3zfV+1K=T#yxV
z$bW-BJL*LPNt5UVX^hytunq`%|NcI~&))I@hg4<9Ekwa+j*9?(p`{lE`)2S+B$h-m
zYZ*3xRPw-K6N4Yl;3m|B4rM;$Tg!a54Ag82L$mT@<$Ehn4MzB0fu@8BJ)zxTVW)v@
zCo^S!@VBMJS>u%_uU6O*X9m(M`NJ}-4FiI}Sr})MUb7#M)UI|M6!35Upa=?aa!o~q
z1Z7Sd3Vf%S;<dK+e+o~ev^*sSxh|TH__n6KrPoPx=J3%JXckMVS^k6l>340(iF{ea
zW@4=fPy{Bk!sq-u!Z5nE+(7{XGxaN5@}0I2IcX|`p+a7tCUjq$U$L6X9Y=l?A1#+t
zIV_<*%ak;0sq9r<O|+3Z=~O^UHaB&4Szis5A*Wy++->5IBP<H~OIF&K6~X(a=>SYw
zuYqML%1R;*kgLPa57x&qSD>CLE47|`D4`bM6z}uj;J&{`i+-OID#Fc!BR5g%xX&AB
zPrEKk0002xWS8MjLQX$^ynXpLHKwSJ?U%hJcQT1ov6nsf{)s?~G`I^_)=c30B@!qw
z=J}6o>A4)FZ4MZzEx)rq5&H-!h(lM_LYkCpT4`P1t5BJ+%&4kWB3Kq0=+%8m?lkr|
zAGAldAjI)MTit6wB>2UYa-aN*b6%*JrfhQgsqiU-(JT+)pOE^$(B}(?`k+bftn?0!
zBRshHE?Vm?krRX~2<ID&MpD@W1YJ1J6AqKY2qfUxjTmK#=ISrpZ1_ufHS}W2B~95T
zNm%cFKyYLC4&U#y@a*oG;-E&XwO+@dk;vRmYECq&c=PVIA<J%50?wRr6mt}PqQkN!
zvCPa(hYY=Llw!!qR`4tH;Cz^OsaED`H~s)j*n%zJw`XS@74q<6-xkc-KaeVp8gx6+
z263oU_<geLc@^tZ01?1(SnG1cVbUff0kc>)$Yp;yumU|4r&S0bV1|_K)2fo-J<T5x
zdlk)S1H{JRR|1TZW?p>4i|R6{f+3y4<Un*FL^n4cWb1lH%SFO>we^)y7{S^n3(>rO
zs9hCJ6SOLT5Q&`v`~+fYCd{<=uT<O$RL8h2BLQ8$5J?Dtg}K-|-Hu<v50o6QF02}#
z7+-RrezBkJe-RI5*@4}u;-PF3_Syy4cqQX-S5XZFX&V821Vxp|EyUL7ZC>it+7WQD
zb&)_p9YyElo5K|x3@Bx|yPg?mKYE;Z%6DK*=~n<BO*L0J!aUq8I-eAx!Tc5F;kGT_
zALU#Ypi((P2@@3Ci0a7~+u!534jux?RV7guv@Jmll8#?z8!zA$I_7}CP{3)Rf6X=a
z^2Gzi;3xKua{()pLECtteLWvv8@_&UZ{ke@j}h>_3}ENLI%A)gzU)O^&yUm(NU$au
z3m<~LAH6g0q!a8T0i@!+O93@z*4^dxd!0#_?N4l~G(^!m`6AG1X!Pei=0TPst?BAd
z5m;rMng6tR#xq>S7s|LYi@Z5iAh(O>dB9i16)1yRjzbO5ejqC_I#j8n#|!zO1uuGe
zmvcMc9IC+6f;WRm6AqRW{%aGu(M1r7xXmcf&Bm4Mk4?5OJ*8uzAPK^y!tC`xiQSN(
zkIAFlp7a?-4At<~S@xRlItv^PBwLa5T`CiSN4e{D_AZ8x3Ca{lQ&W@A-AXA?y7k}!
zd*2{!%m;@QiQ%}y?qd#hfv%oocUXN}rUI^rcF}EygHlIzw%^ALA=w)YN4Zq+LVSZl
zG)H9Eg3q-jo6JACDlXa8N88)q*L_BwCs9Ih(^xc&c2vYZxIr6a6GVv8NuE3IP?@L~
z3haHKX=5P=4(1i{A9?#dwf5B4ba2vTyOPBUmYZOQgc&8&Cd=mWd|P>(c0L>Y0mnip
zz(eq~@m@CH)it(un{GbV00%gAT*2u9CYOD{LHNRGd*=UmwSZLMI~N)|!3HDn3s1Kv
zpTdJd?#rl@7Z+;_%Wc_NcF}42$|>9+TZh5oj;^QLBR}L>l8Y$otsIfdI$<$W-Xaxf
z#eKu=SH(<&sDs7+V9IWe6^hMprtaqSA`(5rGiTye!%;}nlJC58WyRwv7TOoyrAz*p
zBAf8LzAF#^0`nr2RU#O^ooIhOkar-3h&r)_<U^T&l5AUcrEYkjXm~5Mi80~;Eeu$S
zC&??IjpRvzaa95R0$IC!@3?d9nvL8l=P}wF>kVxr<w~2{UzgNmzLjyu#iZVn-!HY7
zChF5BNqNn{xC+KV!Wd%OCYZP9*w25X<EW*PDoje@3zid%vhqoG$xplnl{ZvDtzBGK
z0HwiCMyjQ_HIY0-$%Z4mQ|{rl$Vy>KASpH=&?=N0LC4C6j_hx@Ht>E_@#<=dKQJ(e
zqck&eyv_8uGme3*030jx2IiE*_l`HcgKpFokv5SM{Qs~uvGH}JH^1doJf?3PgU4I0
zgJ{55Sl`M1IG5`%fs|KEUW&*HC?y!CkA~V|J+upcDO!wF+=Uetc;7il(9GyQ8-MK%
z#zB&ManH!kqC<QDZP6cj%TL!=rdJbkD3is2_=`8I2HLqN(jaukwTL>9j*Z?&pD<{M
zzWSM*c{OCl>hni6d9}~#Xd<ry_y>#SkN{Z^tri|z&QGYA$9Quep`W4z$t2=UWlYjw
zZ#JJL*hHCgJ?HAe)mku=9f<dX``LXsXAo3Fy4m0uIwVjj{QzVuD)yIud0k6+FrXD&
zDCm76sF|Bi-+M<PsJZUbw=tH8&15O>a^5vuC#PSB9u<<ZMtmQSV?B&p;eGt5Hm6fd
zS>_F=QoOnBe_r_uIs@AMV)S~>Vx&TnIr32Z>ml4B^+Unsun4GQ!pP2D?5+7;pG2+s
zD#E6a11N(hFG3GUe#qOw6Ina>lz?_J+5T+J&$F+7t=mmTb9AJN-U-o~U|rWtvhV*x
z8>yT~AUcik;#&`EvNycLWmIPh(~yxCU|ClHu4bJ0utZ2?P56J_RsLyHP%R>x0ft0^
z&53S+tATlV^IUJrZ`xtb4RC4=g2#f`pq^a?02(i{^gPxiJ?dS!Qh!J0y$%pMQQS@5
zRj)BXz|%<gK|f&HamGg<?G0u)WzA5PhSQQWf-;e}d#mLWvBru+Qj;9<gWCALw@Snh
zQ5}vwa-gX0z}d{MlReLiRDRvC+&@btcovo?vO^NhDl&X#a<2raMWO{JvR(0WNNcQ_
z`ki;|Z0%ewpB|Z2&)Or*K+Ei7yb0%VpTxi@)yqrN1-Gc$!z@rqh^y20Knrc5Ii}D)
z7q1Nh8s_We$R$<u0((cNXg{vNzC|TOfHSDXDredNni?|(yhT0()d<b3QeYl>UL~4t
zHTFOLd8Il^5g<a@pCWvzJ#(_XVmm`6^kY1f1Cd^DJIYcl&p&`kDJzx&yGTUl=FA0l
zW(;4-(ah90g>fu152_Qa%h2mE2Y`v?`Th+fueLLeYU!U0GKW9A^@|ESunSj}|0$rb
zSa@W^yq~9$H!#d@zk~M+7ambQwy0=&M8?P4!4K;4%*EHtw=#LzB3Y3JB_fX4ORA)P
z`!l~{zlRCx>QRR?=J9jvuvxlPa-`^-C|1~Og^zl-%h^vUVYGq}3l|a3>XhT0H*%c!
z{?vb?kd^7Mr7|G}rFQ*y^iV<!h#L$+PI;KUPPO;m%w?P&Xt@4zOg7iv;C<`s7X@(k
z$=J(hCY!H@S`THJQ5aVVd{Oif9n3cmwZF)9!apkSh^mU9BdCV==)tk}vVJ<!LOLpt
za?y*>q8HjlL%H6H0)<4H6lk7Dp`v5FecoWSg)do;V>v}AOgYAG4C;WWXlKc=v1ZZ>
zU+Om2dr!YYFMN<Qoo0WaCI4@QchyU6cU8%Opfal>tSYu{^`bkxVb60fMf~Jc6a`q>
zVgdznOfp^Nb!-O}nMmG?H+z>Yq<;w{VO11!lrp33We1-SRqxIJfuG3UtzeE+)TvBm
zlKMUBUG@}>qL5Z2>Bz&t&me>H(qgaMR(&#OFC)x}AOqsYdvE`!H%zLoE-xXMs=ipJ
z#Y}s^JN7$1P81~~f>qe&DuoloBHHI5eG*45hz<XALC)r$>>apC8}e1x2_VaW9`JFg
zq?waJKi(VtsXkIBGoRQyf)U9nCkY1+#|<fqd&RcAl+hBc4u&@lV75M|%R%;Se_r!B
z>jh9GMBKPmkM#zHc(3H+)Id4I;$-Hqdt%K6YkhG<=OWl{tOEiHY}rSadUyGHzpuFZ
z)5Z#tu!fc_+bnib%Mt1y)@%Yaw;#57y{GarwSQ37Rk6Z!615N!CERtrBKDbYneupi
z&*-$glRM*0k7eF}86JA&zm1GKGyu}I6U;3K*e(lrsAPr;UR_p_Dzu0<wgQ4O)qHY<
zo&E?<)shUYIyky;IAXVK;ks;*N?CV&0dDAmqwIFnKLm#y?s5nTUWDJ@G2TDH0BoV*
zP)3W4SOPF=9jI#5x5&=lq#{rEoVb*kiF8qPN(kl4CgU46o@1eZlkVihBqu~osx2Q|
zZ_j#<-iXISC{xJ5LSV98SZejQ>lu1S27^*n&qs>nWf8`lY>W5R&!=!a5)Shr)pSd@
zt6tXc&5Ur8h!o<d@CJXhimUjgM6(YSpIYzB3O;|hog)S}qB7K==otJBZ;!QO-`1zV
z8pTfIm4viF$CTQQoQtYZ1OH&DQk|mJc#k!akcDMXRzC^<9NnUU$ihGzpM|N$V3Wej
z=0xzK+cYrf$lEkg8s?_@gU$*^9;+h(iUnLXPZim7SJ0C^3j$G@*#Bjly{L<MK1Z%V
zQ_z4hGgx-W@=-r}4~q6BKracE@+A@yHQUQ==Kj2s)h{N1u;(&Es3GNN*t94bAg_~b
zN8<V7>R2$$o3WV3Ah-!wv)I6T5TC#)L0TJrQE5TqARq9$P@-wJcjZ4k1ek1XHOZo+
zLUDAnj)>mAx5L}Fo*U%AL|><fl_>o}3w%?&ognrZo@hek44#?-4Bj<E_`L*;cnXV8
z^eW%jU;Cvu`DSg)D`&Pvw?urVn1?oc!_VY8`Z(^nmX)-*-Y!3zi+qD505b``q(Lyl
z`9yB{3EoM*Aj%C@s`N+LF}klE=UpK?5YY*MoHI#jeg8VwJMCR2MnaAyIvjf5A!oCG
z*O!bb2Ln(F4iNE}QByAmkgvPES*v;{x<dxRF|O+VsejAs@_-ImUZ~pF|4FJ#GPmt#
z_nXE8QJh39vzienC9io27xH8AQHkoxiNFDYWLNdpw<E8(#`8w2%Sx<SasI%MEUHGo
z5%xw@Bz7Z;cO^$TLyZ~3V{5zHr_Q29(tPn|?IycXT7<bp>JqZH*ag?U?R|^h#;KAS
zt`iLzRhH)l?^RnuCXxkBh#F&>y@=NgE%M_o_7RLyHiPtCjw+N8Ig0rYN!=o{la99O
zS^CZS7_`zq<TAH@x7K^FrbUY@VFy#0fWV3g+lATmI$kii@|i+TqA6m1o>7MZov0H#
zUy=yOW*4TleJX9{ae7YyT)ey(5EO>&=t_IiqpUzlaxc;svnhDROY`kThiRYl)%Hi(
zXJNQ;_S3z12(;|zY%C1EFV>*{p0-{W2Iq>bGTa-G<Wz@vISYV2S=Qja@Uy-gF;N2W
z0zue8l;GVtBy68YgJad_v2A5&C6hnZyt2vbwnTd(LyN;n4pK?WjWtbKc7to_Bu)w}
zP_ao;L`@lmu1MDqSCTKm5U>o+s_++<q=c~3(b&Le;mnCt*|N*%ogCp}Ww5NO0u$x4
z#iGJJmue0V+QM|+gz_e0Omq#5XgMc+aSMI?XX5$MT#RBqoM({RhHnVxhbWExj<5>~
zv`hFQF+(E(T(O)&m^x_X^z^HU-CGQF@P8<8;=<K~h?e7yx4%Ekv%!yH7pj2g>W@3$
zIEG_KWUPEVGm|jhX79~|aMb}Oz{|@mGN&o#zvtLPj?g~PeK}NlGyCncB3s8)^Gu=_
zlC;m0)Li^ws(o~_K1sv|APRjDNVK0$w|S_6^r!%0CsBXpTx>nszNoQ7F$H*@F2j0Q
zU*%31s|mSJv-cmZUzq`2m243a`f8Jme1dPpS&3sqw64}|_4z~mT#gr%3v55x(<&q{
z9coXIK8VIb0Lu4OBE1sL(>cCWlTyFMy2mh4xc=?Y_RzJwLz3#m%d9&(%{0H@t!>gp
zq<VRvP)0_EGS(b1$<E@)&{GDV8k!QZ$-CBg+whEuFwxZ_ZYFt}?|*rxzwa0ETQQ=g
zg>ou!=GVRLWtVUt7IBEQWwkr`)wSL&U$FnM{c-1rVuGaM1V^Gj=<Sa}OiMb+W{ebu
zDw1O8rQTGz0aFEW#o!}LTHFS#byPsc8Pj^CePBO&j+oL;vXJrca>UJk(tG$`?S+(6
zkY^%NPhIS#yr44%TL$8(os&_v8Iu+}ntPPQpkCE|5YH$yU2W_MTo>;lf=0GYo4=h>
zw_?HnxY4^{xc?jMFFZt2pJ=hQxBHG<HbJHDzhjB=$Q2jZ?=V#m0`!|XB@n=QpKR{g
zqUXJC(H38UD!VD>peS1}%B~WNU^irdg2G*?1Ht>#M%pxSg)oW|L1<lA*Dv*cdXT%s
z$Zj3QY-W)zqWH33=PmJWA^gE2hT00m3-c)0Jk_ldW~)U@TV4c_i7}%#l3?1f$dipX
zL$w>Whx$CkfJLo)@(kZCCT2HQlcb8HVj=imnPDHtU}WcKRnbQ@H8oyYV9_Zy?^<24
z1r)TIDdGk>Ps5sbJ@vi`P?Bf)i$J`Wf(@2)WAzK(?XT-N%884=0*^@{=oDFvs$^gD
zt=IiZe!yl>k2J;(V%68`@d(bZVsKE1@cmW^2ODKSn4Ld|dh4#$QJcca?3-xVf3n7T
zE$d^(=icydcq$cj%8UHt#P=W_dYnCC9p5Ov7^==f`zXD9InJAaVaU%5)X|6FVUZ@7
zL&n&~f!aBd#Cak0mE)}Cyj$ZnpG*tW38t9wkX22Ar6;|u%k)7l)5+-?=4pgYn4}E*
z=@c3XoJvtQ-)Lad;Fgu~z%|C%+5a+c>*f~u+&~_*>dQ<wvI(slmu~aK(PaKrm7w0p
z(kA5J`6_$P-Q7O#(Y3i?w8TqAPiTpgeKXwlyuVxcz^-x^(+%WTjv?6+pt*0c8Mo<u
zH0J90os<e}&1`$uZd$yv0dfPvd$i!A?){d{S<>2~9IAmak($}H(u~SCd6oUn?+H)b
zwK?A0waUJ7z203oQIy{rusoPkKoidB<c(?Qv8H#IW?FKjCX{}JP-CT;+HHY*PwH`V
zFKrY=8F4^CPYVro!N$O2`}gSM-v~crQ<#NPM<X1l=F%;Jb2fF~{CsD5swSthlLG)G
zD>UYUx2<qv;GoaCuX$O2kr4*!I}`MZ9)+x;Q@;(Il&8I#Qb?+8Z5=L0Pz7M<;Y>>~
zWxegbg}pMoPBmx;1?507BK6=FG*{rUgQLe~jBGB*1X_-vi5i9rleK2{UKTiiLeDji
zbZVZM$q<F9h*KmnLlEh*$F~M%jPJSfy91;(6W)9{4#c4Y6Gxi4_T#{Zw&&Pyv=Q)u
zAUR?EWi5~XJus%S=OLHqL-Wx^CHa>$7q-fEKL)DiXw#&zU^#IBfM$lOoZ5Yldh^%z
zm^ZRhGcAQ>!Z!i>6Ql;rv9ZQBdh34fvF}ZtnsW=7D~P6$XpKPLv6x{KTE8Ul(c<n`
zzubA~ahV*i0<NtHK^nu@k4?-ob!B!%TCbgLf%KVZ)(|c9zuZ1}Y1{QM$-t5FxyH=B
z(z^5XdS(dH2+kh!&&#&#Grg1}o)Kh5*o;rgH^+x<?6LkMIERrWGi61OkIgZconX^O
z^%^>9qKHF0TND(k0XIYDMyJ`fKDy;u=x1hZ%6PM>%1%k`a4o~sN9<Ea?tC^`E~G4u
zkDFlrF1Df5+kP7psb`b%lzg*jmi-{kZwUvo1=m2}b$oI<XQdsQt_@=4)ohTrre&Gl
zW%jUG{|(SsA<i33c1odH^@;uDhF;CNqrs1ojan-XL6Xi=%rE8MdCPldy?H=$HqWG-
zSS?4Z6fH|Ik6s=a_<N7Ne?6di!Zb6wd@iFPxWzP67U$LV?UDRlXKBa_&j~|wAwF*k
z@PMyPHuaOd*Jt-Q`JhhHo)eziGK3=6;>{76-qb64+%~$?(1``mCCo)UF_zTn$g-Os
z=sk2|4oXWo4@9G9U?DTOX8nP3)z9z^;O95y?rv`V*LoF3UaGX$hy#rskRCV9G(T+*
zo7!h+dWIQInRHwy)FC-xfjezV7r7=T0Sb<J?mTzJNqS{$s4<WO5EsznjH}#HDP5Y=
zr<<v4vf{{GL}oJjlvf<s_;8nA-MUFrRz+z|Im1U2=hF`p11nZ&)6{X~VFA^U(;9qL
zW57mt?Xj}5bMv@#ygsONNJTxde%sGxzu0Z;0&STz8$L5AVnHaPpdNOx9kaQ$X{-oL
z|E5H9@K$fk%dIV-HiZ!Zhrn!Zg!|Fd9b!j(&}}thm=VvYFC_*pKG77Eg)d{gE6aK`
z^wG(XeO4DJU|r*fkRPDtT^8dFEY%-O<z7JhRl*j5_>Ri8kA2sr;G(Y0G;ohkBY{jz
z$g-=tca?_RLa_OG-lz|OMoMh2%)a(Pmq%%tm_<CKg4)rNLLnHr+GXCt)4F}NpEfaV
zg3+M~Y>k<6uXpU3txf5g`9v%p2gh<R=G1QIa?7}hzO-*B2dJM2+$_mlpW(TL9);gC
zj1yJ=MmtABAYM|WibC92FDp@-!Sbfpqp}q-Wd2!#O2_BT7-jn;_xgML0nM3(#?MBV
zxB{Ua(Cvsgd>Zl0NtZ9ZtIz0FGNhBr`1(prO<7cdF~U^KniJC^&Ro2gcSWG}2+4z}
zi=r|#3F}+ge%{FF)}tr0roOUTjuy7wXCDP-{M~wb6qHMzO3P;8SRzZW+qS^?klvV+
zj>RH2E|3-Ym<$wCE0=Y@aDM0J+)2K03_!RpEIC5xX1o)<ua|eXIW&(W8HDXw0AUaL
zghFcnNxVHbw@3Cdo#gD$_28c<0Eq}bJVoZ_?>$nNB9$i@4B|53r;z6gfMxSo@8Rpa
z56SJ^JcTt~%Xm&I4NT=IfCe!k0UXzF{k%2L_xycQC;34EmBkSW;sH%HwFi6Ik7`RU
z(o?)l1Tj&P1;V-QB3st2d(jDcMgltm#qD<qqCM8<w2gs5kM$USPN(Md9QH3pX_clk
zB&EQEvi#LR(+NHLt?JaA$s09cLpC$EO&Mo@8Vd!CRhf6<p`E)FbrTVn6Plx^Wy>2N
z@`^W0?+DDjv&UC^ak^#cLYIBVs+Clv2fgm4x&&oGqf?c%BEkj38*jdP#Cx&cU!pnU
zSP;Yvi9D>&d!~B(zurBc!4k<3ZVc7Wkt%FSi9$kNb)^09>+aum?;?#7BPDy67Syw!
z54V+XbdREixf@GuA4+dyc1n<(rJW}J+Swbu<0Cz?u4RtKNuQuRNK8w{keWZn{#2q<
zo1Tw45}L#LR8s4IDYQN;xgj41*8Z=1>8j4n{2~`C0mYJ}1jeB1=fG<ZcfUHB?a6)-
z4<~UO@+%U|*ME2~#`GE*V05N|x36cq86GNmv2!on=yh4pv;U`P4Ac0Ia3f-+HlU#V
zITDw`pc(h8cij=Kx3~U8+mcMluin#%+9n5utYE*hVwl96|K@sQLVAp_QZu2Jl4+-g
z2M&&=R|3T!w=Pr0k8O!XAQ<8}^JbY>JEQyJw9ax+PXNRS<k8gixAh0~96B+>WVUT#
z^bKRm=h@-2ICnBw?$y;`PK^1!(O!I_ULq!h<Ys`gl5)+ETKo3NdKr_xu1=EeWLk__
zbDI4)!*38YL(4~)sik&tL@#HSl~;?vHBX&oUoF>5@QA^}S1byEl*D^+v0g2V%s~h!
zyNP(5k4@IAA}!fTS;-U3ai`iVuhEOGhd?=ODV&p4cK@qeemrM3<SBFbdA8|4&u&T7
z%M-%2b68DW%`x}Pv(Fr*R||?Gb;Yo7uw{&CXtG(O^m4Yu&gRJIth>U_xk9hyhn0{c
zD{-pHxXK=WS#KF$h92coG@!c<x4&H3b7)4UnOs~!`4^4^^T^LOJ+G5o%LrBaSz_kR
z@9mW*canR_PR0oh>J!|(z3Hu<axEPvtjx0cBijyHr<cT!#@d&Q1qJr2cY4Y(o)>}{
zKs?@3k?7_MJ;)11F{aB<3jJ8ASMc%>$Ee|2L9+YjME@G9Bm%~mhljeK{7czkREpD%
zc85&UUl10jXcUir-MY;ucM&n^zmDo<X-VX~ta&;xV^q)gP?JT178ij6mckQpX4Hzn
znADz8$E#=+Jxg>$%tBPACms)+n9$mk$Es4rge-nE`<q`3q{g>CFTWn-EY~?PuX-VH
z#F2Wv@OX+MMk19(iup}SLdSaO{6ILm`>^S{lgD5efWihgnPSepD6s#K?)&=<K4yys
zth?Mx0^eC_kbx!^gVq=^xp8C7mZ1IXl%CC#CYT9fRs+NkDG)%WnH`<IqCdL*@7ONV
zgxOb7i=`>ivSc&9i`V5FZ9*)L6#%Wy5X_kz6Kj`wWefE<r{6hvd8+^_lVlKU;ui%z
zs_M4>N+dmBM44n}l@<h3&iR45+HRxI)0Um2PXbm)$bWTV;IdO%Z<{Iyl7F92Q=Jo7
ze?n`MFaM#omjqy8upB%;@NQ{qYkH0N)dHF2btD@D7mYI$uL-<4Q=5^(*wgBYOiE1U
z%;>SuzIuK4*##<~#p%O2$7j$8nC#T+?4#$lHs->d0ZfLwD3yAZeY~l)VJsZMzNMTf
zDTg;-ZwD@FZ7V?JR}mo*>jK*rb1A{hU10A&yY&a7(GzfyVSy*2E0|9f*i8#s+eGY8
z;DJbjv@&?VUT?p-R9na8Fj3+Q6fa#ertJkEdw=xpaaDZh<}o?AP-NBNp^Q((2tVN6
z!85w`ykMAaM(j>TN4q-_ODDX;o7cIg=m6t5(p0nxx9y5-Z*)jSD|;FaYp{uI%eBTO
zr*xKWnGu<zSD=J?uh;*h>)hjfs=oifyO7IVRNn9R5ayiYl56IENu|Ls%#4w7Np8Jo
zjG4)p88ZgcjY^^1x+sbiks^|$P)byaiY_D-<)e}=x~Wg8-*c_~exp9$-ycm6d%w>)
z`|Pv#+H1YmYptc5355%TxDZ!_qy-$1-p7n+(Q4kL1|k%Mg(aAxL&iOJ<e>B{^KRpo
zcjl_Z7+4PdNGw7l1<w91(Z(Fo4Dh>L(<!3m#idrVfMARfhb0tllUCKz{ZpHVRFJri
zEIM}`^WxAPIGtEjqA`maD}-D*yoauLDXjD03O&7WS5=e~nibEUG_S686Gk?g{J8e?
zA>~hXB`+eKpv!xobL)@NPUduggva8AA_~g<^jz$OgHg*av#O#!v%{K<z|!Y^?A(;9
z3Y}G1M~UoIeKpMt8||LeF6!BX^+cUzW@H|Te*@eue$q|Mj9UFgy+ebs&`6z2EL%D(
zIr0hL>J7QSeo=L#sHVX1$WBo$*@9`GImb_iRm<*W6mVn5kn$G1@7qtDyBq2tP^VDQ
zMXi(*j!G@~?H(NH{A!}|_cxGXNRp~bwa&;r2uq~r!|sktqQ)Lp`G&?UCj^oYQ}Kek
zok)N5PlK(FfOWy+aQktHpVie{ax(hWp!Q^rn#d^O2Pd-s%%OBI@{e#=f6zOzFz7<W
zPVC}!IH!?bl@-#>ZGJCcK?#*@>+_o5)aaXyYPAAZ6<6z0p#~1qJg2?0^6co}?qR~%
z)@t!&!7aovOG9)Ws^e{45V>MweL3>Qcqs%`Fy{MOZ`YH0&~*o6Af3CyESag<X7ycO
z1JCwUjH*RF=wIV)AEON%pEaW@YRHi@>sGJG9^t*pK*8+Q=AK#J7oF^-Aq^liDZ`As
z)w{DyTUnDT(lb+YO`BW2bK7aF;76gyr(~Kgw|Jwi8h~AlaurrOaLPBXw)Z9=6ppZ%
zEM~+VUUHls%_<Bh!l^N4+~4l65z%e(v$0TFR~&65G@JWKLuo-;>e>3Avs=b)(H8vr
zqN>a<Xjvyq8+u^Q6rm29+pAli*HN38a=e8CDw>6NwJfaEMv&FAS{X!SgO)W1v?*^=
z0Vz7n>lCgys0}$(<x~-|ExzS{CWP))2|QU$7-F-QP2RRm;4aqQk?e9^-fbWw?Orp=
zrv5U)+Lmhv>JOonh!-b6=^AsqUCUo?v(J!<Po&)@FXQ5tZ4a@OF%3#9Y9?9PPmUb4
z#Ec(YXR8|2eRF|Jt7`;|PQ!FeGV#Zp?zs)Wj*d7)*Px=}8VEV!-UF3-=mlrrCEA6#
z(Z7fRRgAKCWkX`COzrHBdbi%^{Ub!&_CYc+w;>6TAm#3w#yIz#75xKC6G_d{SR`4U
zNeQ3ACW<rH9&@id82R^AY6zjcgq9Hw19%Is>~<d96?r?VJJw)+iPRxdnIuJ(;Wv+U
zympbF4%SPv%PS^@o|-B)#jig(O`cE-icxbcp;3WLLo_i9`nl)+QSYp_kun~^6U1VW
z(STG>JnEkNnU1C(55xtmePmWoO*N@cxxZZ(eeQOZR{hDfN>o&SjmR>=k*_Ir({716
z{ONfjL?mv3wIU)$O4P@j$ELcE7DmmBR4LiFv_kNvRA6CKbl7P>C#vF>dNO%>aO4Cj
zW@uM-BI!ZW&EwUv%P)(*^n!Xa2?Nkl$weyZ-pOZRlBu^dD{{pB_0<#%k_FH*LP`I_
z99(^kd+oRN#$Ft$IM;ZVxZ+&MM3eKVbHlw+<4ry35{-Dg?j@3-fFtx>?0of*c8Y-s
zNH5713Wdf3Q(4Lxe{iXL#g2L>uF_8qY9%DYAQ>GPE(_xG)v=orq8}Tn6V(fZ7r}_l
zi^289B6r*vod%{imy(g8uN|K*5wmq4a|=I-_SRWg?(}dmrSDnf?7LsBRm?vE?Lgg#
z>r6G%Pq@jiM?JD0JVQo$`u&q7uED<lw)T-?ns=)ZhpYnC!V5&D`O0xW?H)bqWo*hG
zAw(e;>z^oW@}|TSk83_Ea0@<&esFi__Wzm)RHn2pZo-T82HCaWH^`}&PQsOV(<RTX
zeY@U8`4NYB(M+6R;TNUmI|t4^ZlkTyFD|Pmy;dP|x|92t86@Znoum8-H+4vK(yQkk
z>XE4#2{mITr!=Qk-CNw@N270e<~&(3A?=SdDG}|Ja=O!F-)$YedxU=0Gm*`dGmuSo
zxH$8ujG()pc)gxqJ5hG`bEx(WR+of#5{@DB#~;pR=?e2OO{DG`LzI~=?F8bjQq8uB
z?!C(uOzq3Dg~HLDFOEc%5*#F(ukS5irH2-qEwgM4pd}Ij4uzs2;#S2_IPakQb%Usq
zL{)?dbVFAqjRlFo&vu&ai)dF-|4`pPJXxeT>6Zb?noV|>*KZW_EUHQ$@}-bgy@ZT1
zbV|PD^~>E${EZHy$MDtdfD}|DrvQ|QrYY{6snPe`q;QQYx&2{)Q`fbSRY9tM^L<};
z%(&=nPwNySkS59rE&GD3t1Fy?59lgHD<LJ8u52ik`2Ut|@M;g#J2WNYP%d~&5!tdN
zV><qf1>d?2MmAdCheal9P%nW8hvn4#TleS38cpA%5+h4}NOsym8DI|`D{+gnqP8J2
z{?ARAa>gdaumGdbTZ0dw0UtWci9M<l$0r*=k_0pXRx}E?H{2~f5MI$7US#_akcD7J
zzC-H<?!u1s|4viMXwkvbnzaO9@A|>L{(`8_(5zXw-L3BIkc=021O*4rJyLR(oBxw;
z;(v|`Y|oDBqe|7w|9w#4>fao2_SDgXBCkJZbdUpHL<g&$&OnLRWn;a-?GcCQgru(W
zT)7onh7<0kJ)wz`>d{hqj@jSS&fWM)y&tZMIOR3zR3?y%<SSA7gygg_^Y8G^+8pv9
zh|>jk07pGKjr?p3-;7*bru8sy&c*tpEbwH6zht&EtFQK6Xszy%+(NXXV#KpCJ&L`Y
zm!d^M#Q{jBFvT{Iy3GH+cbq02L=%<Mo%HOC)U0URGN%f_xi<}9I@r%hL(JW*GH*;o
zl)z$iWwQ(g53@^zqR+r>ds4jG^P@tDT0e0o$(0;8Hw^Kbo*V7}uK*DMR0j!7Flz>R
z=hxFNTu}Xl@K{`-$*rj*Pw|vy&WRr)hZZ#ydl~Cc6Px5D^)hE&;x!o@Ejwxmu1UN7
zMSC{iw{o-JRFD(rT0R&|$nloW%Qmg!9@-!MXRZp^!H5-RjW23tfcRo?iM6S8A9z~D
z2m7N}1-XgHx}}7kWyjt2L&G~q-Dnn0p%>7$<InCxgTlSNAc|S|8u%{VMEu}>zqrwh
zvHDyqSnae)=vA88KgG?lQk_Q*AQJ}A2T+3CH{B$C={`1A?~DCJ1}jdz5@rt<o;V%i
z%<eDUl$b^Xt^G6v>q)kcj3~i4&$;)-g-t8XM}&@NAIzZ%OkuutubLda5af^thn0VM
zED;Jv+`=K@*FidC)`Z_y0Qs(mU6W_uh*`1*jJ>nWRlNE5n0sw?qfXccB4tSb&0M45
z<B*1gzVs*eNVZ;#v>YHo7W$2-7sqkpt#dDJ-)Q$T6{W;i2&ugok_uwY^jhV1Xwv9D
z-j(gHvJz+T1dKwlbQGulW0m{v#_0B(WHMW7_X4pL<8A_hA~g!WuUEIbtvcz1ag&Vj
z(ZcbH3AJarn|?#|2vjQR3*lhcGw7<br@JLXwTnB8{y$N+7G)ebKU?f@lRJdJfoR}t
zR%KN%6Gu<FeVT@$S2VbP<}*QMcx0K|p{3+AIn=+mAWT@&!1~NM3{#1`O?=s1a#y1l
zer783LW-Q7>6B#2hdQIP`%!Y_f@*a`us+7xH4P3c$*;y==B`Q7-tKv->*|d;A&6q^
z^QgPEykS9YL-DBfD-zBo4mA{A^Vj{(e+M<#J6U^R5sspiT^f*YylJq>8J*Ig-YrOn
z4EQGC(8xooODCDyHD2nbddVC(0CL>~5J3KebqXVcXoJnpQEQtb6ML7}l4=O6o3Lq+
zlfQm&zN@JJboU4~6(LKBEkr(G4%`*>J$Fy!3jBdw1_z#tM3PDlx$zb5x=pIlaFF+a
z7lXzuBfR{1x7inwU*@UB(F2)Xt{QqWa|xwwm)mGrWcTZ|Q!H!rL=jR@7E>ks_kyU%
z+oq|rpgZ|~L#7Hdl4|Py=Dxl{M<S2I*#;tmdPH_W7WB2(xzGI;+2k;8upAP;k1fFB
zBN{rMWPN7yEpD$rZ6A6+xk}idC^}WFN04%``L`pz@|lr0Y}AX%kHw3`rNgwIwA{V1
zZj{~>rA)mlnIsJ--5M7rVs1R~rkgS*a@q^_sX!pI4PZPWsqcN;eQ9N6W@&@}VHogr
zd+v3va>EP*Y(WJd0QD*93s$wo`LZOs#dE6vcP|mE0k$2AG)d^qws&G*zevz3RrQ1q
zfV&Ut8)l=FHhST;*rZ0`?!4d_U2AlK6|CM9TXVK{aS9J89b2jBA+w%rz8~NWii*qv
zEA2Zd1T*9WDPW7EhJqP{L!_9@lTPiC`u=w##NrVDU^UJqJ^`LM$wc%+jI(lT<SXCe
zuF1o?4&`lUdjKN!h;XlLp&Q^#oQP@vX=7~K=ZX`Z*}+iF^Ra*04u(27D4`mVo)gWo
zUQW$p5u@)^rI4eDBUeQ{atDE!e~xqYjEG6kXfMV(hqa`Vz-HV#(Rp!gMER|N#JJT<
zVW5>43#mhrJSUl<^PHQ~qF!929@IW!5vVK#b;2@CTI#-5Y^}7b0lB#=hfyjNBGLd%
zh;4O!M6>7B5*>_%fCa`XM&9_GgV~YpE`3}E+7u@Ri7Pm1pMT9c5+9W|6X&|P$z-)a
zljPVwe!uhk6;VGd)JrnUD7zx=41D3}%O5Uvdc^4XnA@-dPhwi|Q2$VO#Dd6CIM=wJ
zxSMM6oU)s^Dc-g9tDS*YM*YBxVIiqI5G|Ay5hTlEI!U(7qygSXL3Nbz1MBhzqeYrt
z^SArQ@~8{;BJk)CW;21mauL8$RS(Y$)QeC-K-{q!O3Oq0lngqs@RPi6Ya{1Audch$
z>*KLQfZz3n`+kk}*yVwnLVCq34t+7zwCUsCIY<yy9V)yOp*T{SDGfW@OxWkH+!S@k
zhVw)^^+3m#>&TG7c6gz{D;*S>KU@Vy28=nfw9o~%VO|*LwK^KPZkwt~H~?VY5;g-^
zfRi4zpIQiYyet2RykrckKGWodG)vr>7<u#7xH-MloynAUE0ub6$WgM~AZdP1cQ0O|
z-d_abDJ=s}I+E}BD(CAl^^YP)nYaGIv7}{Y)=;C&&9l9&n<Co}u%i(!Afp6^{CKAK
z{xgbMBeVNdpjE&~K`6(Yw>LQb{#4%{n;?Ho=_twN%+gCFzr*g=V!O<aXxHwaOC5#%
zjHS+1V(H*sswp2W_AB+%5QcaB9oysPh&FFo!-|byGwid4SnahZWB-^D@!UF{PR?$`
zvpwiUxlA;d_4b@*qA02=h@vA4*!<qyyC5d|5T{$-gi=l^1VWPeWt}@`ubynVnWq*l
zF{dnA?^5rk-HpC~l+TG&Eh3PZ*&qs+rT*DQZ~o4DbveQ4k`=2)ZhD$nen+10MsC;B
z4c9q=GO~jm`HgT)S+i$%^tzsixNR6qNKjyvj3p=ncrufbatWqsC$HC-$PThDafk*%
zkZ~MHRUb1u%}a74<x&|@rIdkYL?kHXJvMutW-7J}=Z`FJ;<`rULH<bdTCP&YpB&vV
zd0BgUddnL5qo?!0Jq<!knSQw7%OPJ$NG`#YcRRy|H`vO-j((Fv@)AWp(S2AXN%P%R
zx17>_ApVHlmqa1)=F@3zm&wsR-%-7*2f_BBFX%TQ5{V{azFRykd>KAjITM1C#$K-_
zB4?i4dtUh3EVhp-YblTp%!)_d$XVe_yH^y#upC<>*NMhZ{g`|Fi7+NHpn`f4JdcFM
z*DiFM*^7E({Zo|)%mB1K-hA1@i`-m)-z<nKpeK}YDUq-%Vj%&*?``N^es+Vo3zYXV
zn9pW)SyGGvJ>B@VJ8*Tx1)Te=q8>#MA*)zN2|R1=G`DwE!`CM?l%C$=kStf*NeVfU
zCC9vWt6Ns0{h*sdOi(@r8gRO~?L+sDHjzVdT@D<;f+!oWtHnwxq#Szaq&4m>qZ%CF
z3W29Dse{X~d|4|}P3D*Tz12mL*I#8-7);9&j6yUePOabHcUL~53Jfc|A9x;&GtfRU
zvD<kYUeSe(eu^4Fs1@EKQeOV*p7&Dp;OkW*?k$n$WxT&|2eALl<tN;qUkUfZ%c>Rg
zA#5TDjb-YeZuI0+<N|6!j>gj}=`_fe@QXX}Cbb^e?HQQ+_(W3Eq+sb>pVMwu_%Q4*
zcA%p!0QLpH5Fo4VMNY&d-Rp9#>iDuQP!%BCo~&_BEQ{DNRiy;Q_<~S!1fUf$K_=!F
zPU}1M=Awv~)#ALSfFCRI#RlHW&C!Xq`lk89C1&REWr&hBu7S7w<><Fkw9g(kT*Oxx
z(7=0mR`~rW;Zj60IdL+<kA(f+*jqR)`lD363Wdh58e(FQovj*p`)&_kn62g><^YII
ziuve5?~*y;%P>LF6LiL<(yY1ruzN}Ku&t0AthM|@?g-1{^S9hOt!y9uZb2|rg-Sqn
zCYtwmI%TP<wy}316k+bO<*}~W^1<zH>$K?m;uvVI$-7RXT_A+<u?0=Xi~Q3$Zl6A3
zG(Cf8CEWSa#kTqVH)nd5c5&Kd;)+541iMQzQ>xw3_v%ptBAX=^lwB8O=|*o^OZMWu
zQCHWsz#gf~M4NzpmSBp9Ig<`W)q7b{)82Tv?V^{2ppf|EovC+3`L5JsZ=lA};c7x-
z-Lu|(@L}~=^RylnMHD_Fjz)y}n^!oqS4KT`4)2!9AyuNT5^-{;nYE9&ZQhNj`dROG
zTJNSW#cX)M{o_6DV{a1MURW^}Jzq}r-#&0Z9vt}*Ta!oi4c0>4<xwdBz6G6~x;yky
ztjcRxL8x(PabkLYl;RvZKQitE=*g&Jl3PetD_IcD{A-+uc@g)c-_b*!4V=^n5U#?q
zU)I`5=@9wCTzypkU_lL7LlEj21WhVZ>~sn@M=gQz#LN$p_#9!+kTu)nH*qIktV%1l
zJR^xZCJ_h5kB>Tier?#|M}1&__LR7H*f{`#twuSUX6sns@(8*q6}*LF$ol!aojY?<
z)Szz4LCh{M9j#o^gj7_qtk!M=+r<=zJPGQemki2jrrj&<ti}3mAS`8!Ro{I)2bB5c
zX{T>;WcmFK#2z5p5cW0d5ypaCbygjx-{GjU8=%={phs7N7fF1RsD5cLyZh!u=3$=D
zl?O3i#2asJ(qC~$l}7FmTZoSajafb!I`raK-Lho;WVDk`3jK7V>{Yt?*yi%BZt=O{
zZrK`QoQ<)E8_~50jqY{4{zYnJF{3$X?xILT;XqHF;v_Xv4hQd!T`w@da3ZAu%dw^I
zlJ&ZVSScA*9BZ;BS>r?Vosy?@p}@*u6Nf}5fq|^A#&0-JE{IrmOjl+9AcYR}hDof4
z4IA9o*M=9Yde?c9kO_CKb>lt=cR=7Sq}VrE&&ZdB0kOnAF;l0X5fVp$F34vg^lFp)
z-l=vtc@`<*8YIa#OWeAz>iu|Mq!V#~@G&6Hq?#wLbe8@aAuE}=%nFvF0zhDuI*qLl
zx;OqF;fz!}Di3sz5m3vPOx|PNMt7+wU;*S{)oW!W2qkb@Qp}ypoa~E~?837!j4+N-
zZe(^-O#M5YZV`5Nb7dC>QDM^XGbI{R;2fLR@XIF^x<yZfj}JhKivPlNw{xoc8jy2m
zaOdeoNt}D9yQ;hP^04j{mp~WeSz=?3y2{ybQeTX&ZqU(WgQ9A88SY&EkZuaTB4rvt
zEg>POiUM{I$e26Mx&PUy=T@I5J6P6mL9HG}=~VAAw=QtD)s2wd#xCs%LtW{wFk5gR
z6*YF3Ulh6fQeFQN0uUtexU7FkNZ;mcXY21#N9U@sY+1={43Lu7&UW^E8+EXLeRXxI
zuGkCoMNBSG)&%o=3n%~kC~=)L9032K0xaxQBm;TQlby+{)CT3-2?A>oX*LNP{IRFp
z%4TQm0@fYY25>;U+5L(;Xjr&QOB^z7@{YtCrly(Z-@C`=SO|jcCHg^V?+^fivwnk{
zH866>Qr(o;jTBS`6+jh*2bpNbMtOaQhPSNf{2X{fU&crUHrcbo-8MiU%*TXxTUZJM
zSUxl-=%zXDEc+?x%ZL463=M}areNB1_fUFx4aiM}Kx+?X>QpC~{nOp03DJiq;L#Jm
zo$#scZbH7Wkn=XWyKb|{h&;7otolrl6@0U6Ho5~NBd;FTKvZD0QFP-7e#kz&=~?%_
z4bk4a))Q7+7*xAQ21QM-IqvN#Iw&4WJg`gwSZJJiYn%J#NSy+f2--LkYv&KX6(6nk
zUbk`6$oETh1qrFW6x%EW;U%Wyke<}kZTdvy$>sV3<+q|Ik?@gy{ISp7wn)1WG=rIT
zIa)A<Nsjlnv;FUg*DeF%$rOo(_AGo^KB#%(X*YkP3JeBHq_M68En3>{H~04I!ymdA
z8Yi385w3-bQb}OH^F8<e`uf2T=~*FAiKKDN>Y%#LK)Y_~VwehI&;xh3jx+z8s5e;Z
zjFQCiB3xDZob|c0d6SAlIx;k92fzkj)8cyWp0|~|#z93y1vnFH2Aq{s_~_N{ve%<-
zUZe*Vs5GH0RLV><OY+>IA8I?V1ry9_V{)PpZ~T(m=+qa_LGgD$hE-|iqh9rv>p#^g
z9Qskg5@MamhmvUS+wUfIP(7XHfN+qE5jbT<-Q<}Zsjofd?wF}Y3eqD#ydpRT@HH&S
zc0PMfj{%V^0w=1x(tVt2D*HIy_NgKyixj{JC`J(@In$^F^Sb*?JAE>%hD|5Q{}IxZ
zCgQx>u)_WG`-m04g!Y_3bRm=jqI;aV?xg$HZ{bJ;7O}Vl0Wq1RLBF|kZ4VPWMCxwB
zSf=oJnkl;2?fXj9^6omVL@JldgoB7Dnl4S;`76UcS*6eqHA0AwLF7VT_sH(>$B?aE
zX_qz@04$AWIqu{q^h)$jTyx|klpt&gG3oxZ^VTT>2amgs)106Nbk1bcrJj37dc)3*
zA|z76dKwvu@FOQTb<O6e`<tn<CmbB|Imoic#4$~mxeq>M&p~)=!YokWA7B@|e*RwP
zyqGYk$>I=&)RBOFiJlVY)xEzu7hkGDR|G-{%c2&_o8Vl~EYVh$?{c?oiyC^3#!2;{
z5`(Y|(EpgdM5qGh&`fvjiKufgsxNU=`jt;H2MM%7N>1JC?%EN)0Yz#pXeB99Oq&PY
z+h<07l%@B^`vv5RnM?TqzT^*gyDfG`UC~kd<b^qofo)L0Q;qK(H)C`7mbv7%gJT2`
zMy}BWlkkq4v?kowPa?i#ps1sl-R1uBiw=}sO7so$K$vQX4Iy@C&av2>rqNY^xcCD_
zKP)IB|FneXlNse4_t*!K4?V6&6GTFB(~%kz3!}>#XW5%k4?dx!50z2a7}(diAh>Sh
zFz2SW%6tK!%`6+sKESIkonT4RMmysY!krQaDQ*FxGLU?uvz)mjBR_p#QA~RXsw<CP
z?s|Tn^WHV#-b~E$V)itmg~N{1?h@y@>$H<KMCQiw@gbRt4Z=bSUgj=%U)L>f3F>Nt
zC?L5I9c|iw?9`bYwS|BM5pojk2Ut*aYL+<MO{){J{a)2Wn(K3F#=}Nqk1@lz<UTv;
zG+m=q9-$?pFGy}ANCFbkl4{;s?L?iYG(3exb&Z0oV?%uPlyf*sAyGksHH;3dl*RS(
zjn0j26l9fvKxmpM#IR|=_|5aqHM64sDpoVAJGp}aUf@<hbdEO<k8lpZrD_Y(Cl{bv
zEGE)=o51zXFssif&|5SKjaHmHoUEKy^B;B|8X6u&9y|r;n5Z6TO7Uj>!_Loxw2xcn
zVe4y%5^4z>D88Gs_4}wvn-!MLvD|4va<M)KdG}i+SLT|$X%NaKJej#pG5$Tywti8Y
zcIa}$aI%t~J~ZW<{^KNF6Q)59Mg@es#z-Vv&sR0hZ>3QqemhUVWt^>YM1?+ZVhW0^
znO^0@Bu9PvxT4uv!~$60oU4(oLkgWf<>9M^NH4XuxsHu<*%+tT7j?zMidy53gE%aT
z5Ijj_<bt-&9p^`_oYX)BlcE7mIH(TqaI*QMq5J*O$hVhi&>i-bTnUQ6nVa6k{j6P7
z&uDw490i<%ByEzaGQw2&Cf5D@oA8yyQINDjE)_`fmNxF-PEk>pY228uM!`)v4x}IB
z{nAeE{g;O${c>RfjE7W<+X<m_w4-~XiC&8HJV*E_BsD|DTuKV3HzMnwK$FjhcBfHI
zmY$2kf%3g3%gNYysvrFzNNsC+l1;O0=d5+%9*#6QmJ`#-A7j$`I@4E%dl;ZbB1jH3
zERk!R5u3wZ{eUf~{moUle$3#ZPK*CU?%1m%$(17G+zl=N*8$FZJGC8oYBe~byh%kU
z!cQu$UH-WH+Y3>*biz6Y>8I#qNMl9Vvis}&=nj8Lc~)F5y?U@>#K8C{-QgCui*C?a
zsi%45qX!BE@Wzv5PF&*6{y7}-W2LyTo55btRkONz|Fuj6kp6Bp0K*tYLbNe$8hXFf
zjZ&~4oZK=BPl<mD&_l4g`vd3Ke$i2Ll$P5a6$r`}l#evid9f3n6%GYv2cHi1W!3y6
z*cYN5RCGmT#TS=o7HxMf8?3%Kh38KNwE)p$wbXmVdB8+Vl-U2o7!yW3=v0g`6NIGJ
z<pwh_(TrT{4vC1qe#d!olI6ma<<OC}ND}ch^V!qx?z-B^2KZ+%5L(;mU?9B|U5V>R
zBNcD9tZ*B?5w$sdjEw?1k?c!i?C)RVE<F7_bWPwE@-ktSd`Mn_$mp*a2_ymQ;pAjd
znlwNS+xY1tZt}E7Ghq<`^@*-7To2s%@o0RHKjn_<*yw=p1cVn6vIHe@Hz5uy-Bt08
zwpyM5zF~E##gpzV#XPv!4Vp#|tkuix-gdw}i*U%H{z3{`x6(Z)tx<$!opY2ygR2(O
zx%kCzI_&Np9xbl=e~pLy=h1822TzR$wt7&qLZCun=-A<KnRqU82+kS>a0}1oi_5()
zKC$sNu-Hljsxdcq_lDl4ZM~qi7HRmmA)i6<EgCr0r>2|&J4DXZo$KvMK3{z8S>k4>
zwe~~;k(}hPnc*~xk6!wn#>OZn!&($^apg=WEnPdrdxlsHvHoELAcw9EcuyaUJea0l
zBKtY|3#85VNJH2A`);pmWjOrdlzRkj1XlT7LGO{@G+>S!XO;;cl6&HgySkN^{It5w
z=|D;gs)6r`Gw<@dybITbZwG_KGJ*uhy?MA-{$SX5M$v9@dU6fQXuUhUxW)DwPCU|V
z;wPaDlR0sZw>+zU<cJ7?{^4K1IR*H~A84*B^x8IQaP6ZFg{75MR9PvpV(Iv?sIMLL
zI;GX`#6|dB`ck<`wg@04w$)YZypD70J%T3)++VarA=#&?PLh}9uCCLt|2ygu=vgsQ
zgal!-&?(O9=3aSU!@L_cAUBH)n~WOgQHmM4!n^Wh{WeSJ5EG+pyckXxADo=?zH=AO
zZ?p)?9lT2GHnLg}hA@OBHtQ6({juopSg!c{6biQ=8fPd#`G&XLE?)iprOH7Q-wVV!
zoZe)ZY~g+0zkcf(+Q9<h&{erYND~8kHqAS-vfkxT*8muDi)v4utSC2<qW81dXC97t
zVK%l0M=$l&Nq;Kp4Uc3-n;mtRz9Nidi5{_5@Swz8v-&shw`Vnqh2m^gA^(bby_J{V
znuUwHQ!!rMX&G@@rsE0krgJYm&49y6O~HVwA}N{25x_3^wZi+bP`PbvQTY8J@{&k2
zSbhd6j_jVGF=t#9Rpm`7Xe4f08*#;oVO1Y(<|WTjhcF%a<8dUZm4#?ZGik2(_pET=
zAW3n|Lc=v>+BNm2ED3jrVMjce^rV{i9k2Moa1TDK5>9H_AyPPQdaAd7Lbwk&lygaU
z52n1?)55#))EzTe?Q#wJ|L`uJJ6^7lNC?ejRRn;n7=baLOro%&h8JKT0%$sXN{O^L
zX4qhFLeKN%T|xRot^ld2kY?8W?Vc5(XB8`E5WYV=btF_nDLD6W=gY$S-(^G`%3?1D
zCz5*({5suK&T6q|^*JTO8%ldV^*q(ECYFP6As))F$lhVTeyK&XA^NLqNg04Wnj?(J
zavKgnx;RwdS0}lT{t>ae6j$b;(4pR)I(;a!<kd+t4^+8FQlcGKJ)M$iLpL0lwy9p_
zJ@b1#*}&igJte&<Fb6w3$^5m&x#Ql50pDVG5ho%04Uh<M0UNo~`_5GxB2JzMkV(*@
z2A>ilg932dV{WhJQI{XlAUjJN)q^89v5)zyl@}PK^7T~oU229o<an{yL|dl3IG!y-
zQjW_60YC4&Nr?2;?_44F60wSZ{^j-fE=odpIbiIjL=j-iUiG$fC_eJb`%p~#18z%f
zuOySKe8=f{dAM2Gg9;={XR7&Vhco)pa3?w0<n@UUBOBLFXGco7BTIZ*dO!5obKi6R
z>KyKY;w<fwN@(Z1&I3IoPuj-=l>@4s8XXAq@VA_qapB8YP7>3~qkvr=+~L%1r#&3~
zng_)ug}|QT+<Yh9y};U2q8W>RI|vJzCBR`$lBG1$vx~drgD_C=k3MoEU+VVQr+xUb
z8IvGnc(R4Q_*1pFc9wdw=|Uq5O=U8n(&U6G@wP7tcY=gceFj7mMlpHe$9qH8hr2ja
zi$_b)1ouR$9xL<Ase5J$8YQ<&Fqe$=${*5eIKFvzy(At-Qj)pj2Y2}g(RnMC#ICDb
z1T_#s*m4#x+U$#*?OmhJzCp87kZT@uv>I11xO9SfZ;jLXQYFUWk*Bn><b0PdB<9++
z&Xx@AVhQ6#l=UlAtE4}j3;qg+c2a^?vq8xgzWfho`bXM<HI1fCeXxoA5xSE^c0BQS
zY?~J&S4`Fn0BA*mi#q%tjZ<0Edt%*-cPaxGcC5ZjrZ{J9Hw<{!z47&McNpR0N|gWq
z#=2wQ)h<TL#*s4_BMuDH+w0V^J`EX?7%xERQhk{S0Iao5&73=CD+3D-BNnk(fI<;K
z?%*xC=p(n+J<4E|LktKBV_gFpCHEyPhv%F*m)1WS6{#e@BH+ppe1O@(Y1M6l^V~!A
zFI=Fp9hnf|%AJhSlxxIenqVe0cdqQNpM((;J;*~va)2e7=3h7)7b^BBw0nv-i032$
zatqnMn!4Nf=zH=u2wj|^&?<P%s8-IJ`}95N$S0EpL~^+yousa6>x{lzJLNS>ASs7{
zaK?$%ol)g1U!ddUTAnAwF^yg+Z0HPMsox99sYa#UkWvpm%{+R$d(XOvAy?RtBI^wZ
zlAf1rO!C+i^Ic=7wS6p?4?<sO%gLpQ#y{NcbTE7=9&({h$}`bad(?HNJgLbkIO0!p
z@r7^F|2)U{opSO2(UpK7?KC0&pIu<6|GzFmhW>wDP=#!l1Wdq!5Z1YVI?z1ugb!YH
zk6df{4;(weiKrpamBh8a`eXO@jHqva*GL1LSC)q(lqHirz`cE&vOdH5Pzc3?<^)QW
z(9`|CS^aM9bSZJ=c#9FIbKfMhHN!pdss;(6*I*43_CYEHPE(19Qlp{ht;lb4IZjA)
zGv2vItQ#qvmu}vi?jHRz%<t?WfwBUg(uV-^ZgG#ip?zp~?7{-U@5n_5@YVA#_u%qI
z1%jA}r>&fLC5l$Dc8N>CySU@H+vovR{s@W~NJxY%8R$05_6JkkHd{0*g0%~p2}Gl3
zBJpdeeaFYSf6s_cdRyr@nIsqFnZ?2cKu&kr=-wHpOaO7JNbb#I&ROEVu$ee$)<5nJ
z9vi0I5QT<S4c3IQ#n(S~p?h_1*y(~NRO@?+O_Xj*x43(Q(X)yF!59}M1n5;h7Fh1V
z{cc`Y{a6xbCgvUbkQjatjJLR52S>H|L%$<YABDAWcg1f%G2LzOgGRg|EC<w3NE&^e
z!a@n=>!8#5PUS8!e6php!-35eZ#vF#pZz6z7mBbv1{jQC!(qob@4LX=SD_?HdN8nw
zldJ+=#aEtgu2|)+OpMC@T!B8d_d_TVzzd;%uJgt8s3lD_sCNLAWMC$O^57{@7i)pH
z_AWI6gq0N>UtLitJyI-qsrS@k?O}-75b}lKb{d_Mw9ph-U*v9oKg?bNHXmCt2DwE#
zQSmdeslR;2z2T*>pGlQFCr2_vz)#>KUip~&dQc<#cm(NPnN!6#_=cFxxsSQmjnQui
zxHEu^1l4er1#UrcEhu%y{}Q?OV{EuV<OU|k0lJsSiZN5&pEIK8zM@}HjXS$FBq407
z8S$fAv`yg@aK8+(xUAWmNJM13*_-D~JSSQh9T-vl!Y*=HZPdcPwbV=5qQNdQPl_~&
z|B$&#fj#v5bnmx~^`=h^*;s-nJ7PLww~4N@>=m!`0_C@{%sFW-6qf)JnP3_WabH@X
zi(F0|@;FE`6aZzu_|g(5F*Xb+XO1dX-!?~Mx~UuCbX}%m5AiU7LleH1I9_Dk@#)^_
z>7L)BzC>CgN`;^-9&SRr(#$Po?#mZO+%i<@9jMf7aq|3NC#IS!5}dO(M0A;@bc<8W
zUYVEliO#`iBG%ptl-OS+er1Vd+#m*x!@Xjb^X7oaJLW?I0Macv6ZT0v1NPz6LfdEm
z@`+Ik1cMy#rgPc1divuR$}Fp9uOU%{lapxvs&o(7<UhP$9>}xgj}|Ij#|U>sFO8I9
zw!}lP&Qg{l_MG!)Y}^w%DF`<9yyP!M=z$Xw=CRRjc3#vL0;ojd*MwX@IBDo>RpmVP
zT*N5SK`@X|aFty&c&I>jrww;~%QVB09G0bH?bec#XUXQrGG}qF#(^?5Xnf^5*P@}u
zo7QhQ56=p-Mquc(lY#UQ&;!TCwocc;Qh_xpD%moEq6t*=+fwISS3z~&0iCA07Pg!S
z;AGQ$jywOb3Sc=BaQGmDFk0|ILB+^+FF&b*hOdxY2<%!O(uSeL@CBd!-Es2NDa7j!
z;(TJmXhbIGDCB`eb6pE(f3y;K*lXP?h|Y3wb4jvo;8Fz4n(od!Pbl)qdy3nMlr8Af
zLb`qMn3LWtGP;YNCmakKVjKrvVp4ax?yr$D=}esUz*vt6f@5G;=f{+A3^Dm>DoZq<
z03JNk>wV|B7c}@-z+QF{#}`5V7@(30QTR(o-*o<1C%=%iZh5dUCgS?h{B~x~_1@?X
zWNYhY27@cH4+(nKtOA+I+2)=?FVg1Pu^0qol1hnt%1q2L&4zi?60kw@O@<<K=It`?
z-U#l*d;~|0Dq`fO-V`q>L7PN6I9WWwm<Bg_PGfECUh=gty~w#`CeQPZw9&@gpyq~{
zKH2-RN$76XR5a8q6lPVSclBm{DCu^Eu3?)G<$FU<oE{6n9Ys#qIOb%TcUxrWwotQh
z6FDprG;Q<24DYg5+S3C7Sz~rg)?zR7a@xefU0GQhhWJg^f|hS|x9y}VP>E}LeA}{q
zFTFks%$|)S8`ab;^D63Vt4^Ymf%Aoe(`{yWd*ue*uw*z&006{+n3*`ly!wQ<yS0v7
z+&i_WGYG^D@cgUoD?!q!gn!4NDF$%XByH?V^qnloqR<p{OF)Gj=<VC4y*3@6j;Q5T
z-jEq*G&)oPA6EmcQcxi&8P6T;UG#x=D}6_$gX!aWk4&?TLF6P3JF_p<`(;_^cajAu
z&#q{*i~{j*X*)y>Ceq3Q^Lr2PDUuMe76w2<CdD{;7)rR!flBZ5x9!iFGNm}uO4{o4
z&erM4l{3v`CUrBFlf7pO&KDt>kLFLlHZ~@L?!$WS(?!wm&Qx$4@d<m(+T;iqz}8tO
zoQsOWsW2@=)Os8N<I${Io^;k1XgAIydnn-{#eFCAI<qy_F&C<nM|w%|5{_;M62kM|
z+*#_=UN+}|8XV}P{$fGlvZR(@vMKBYg*sB=D|GW(J~QVMgFbqL6Vod4B=P@pX%!(m
z;;Y21mXqULSE$mEj$Ek&BnF4L&Kg|oRAfii->sK~6co)bgj*%vtn299^srhSNEhs1
zMNA-F0bTWc!1?UbaE2iX{gse;9w%r*x5dt9>DtHRqz(i&gB+bO3qQEoS?Yw3&eIW)
z`fkMAwst-o6Mi=~keK-zD=Pk2bfP3DVMy2?n~TjYKqm4YVK=|fxurV%hMcS+t(;Dj
zk`<NC;t8iZl~alLH`yfRJJZX;?d)aQuuKc$erFSBamVnq@c9)o<z`qLrG?HV!}KCf
zB~Yv}Avq=oWV-oJsk?KwjY;WmPN!fHgd^E(J>X=gDZ-&AYnfCJ2Aq=8s;TBk6L*Pa
z+R)jLnwyr5i4pUu-<>xuat4|FP;uDUm69EAqG*Fyr!TJYK6+NQLFO7MkJ+zBIr$*q
zB@TBQ%+RrNG-cHy0U@ELYn6rpPq+^(srUI6K+N0}4Tdu3)*Zpo#k-hyM!CP$RZ|A1
zD#`^Sdlb&mREe|L^qDg|SN*13jDVjQKGisP0QBbF;J)~4J+XpNue%Y54cAv0S1&&1
z964W+2-Nri6Vd%4&jIcOd3R3m&R!L@ouC`YDw(J&(j_6wai)B)oBCy#i^3~n^-_gL
z$j4A<Fr4;paT|6BbG$+!H}RS~vi>LTfL*HP;xFnSEVPvbg{AOfsrxB(3KGwXCxt_!
zgfxp2Q1+qvB${V_cR#sRxz)@#1wm0)L@TEn!%Xj?XH=h*7soS$FqV@(*}UDyJ#nt8
zcGAP)SQUy_O@}oI&Eg|xYXAE4QZ@g9W*`!KDs<FKI*oYK_ZhdcRF!UqMDiaY<T4&9
z(AM-Tx6bnD;zyOFK{*OZ*-m(6x@kVbJ^z5spUX!g@@!&|>dwhZ;_bTLJ934x_#qjD
zLzRFnlJJ*2*TVU`JZeuJbzWOWi2COfdDxySoE?**ZiXU_^C3fYe=W;JtTa_N9d}!w
zhFc)cut<f(5<(Ivc}Qi>O!ui~$}>Zm=|vV!gbbv%RI{_4bHVzs1}o_^Y#f(-4Wwym
zg1I@<nch^%&EoGU;^4Apo$BhGM@`nc_g<s%G_1vZ$qkOCV;_w<M_~02^#N3(KD$Ui
zXLk<I@)9&DrVsop#YDCBmVT`{hPb^1Er~&Y%702eAmZ8Lr??0G`Up$`a%7>Y5s)nv
z8R`bz9e1lCKo8-D0*>N50UNH3aX+e#{_hsGFBRz006N)WAaarKx?ilTC(aR8#3??!
zL^t7-{nU9ssLKJtI&f^I#3loUvkJa_#_4P`w<!b$%NWr~Qus9ULL+y_Ct=DOZYff#
z0ewo4?d|Q|(vKA0lo3`{TrUK0sf$KYpcMCu2cplNjEOl2(mt!ohN?qMO*Fp@cZ;3q
zehXPvB!aXwL?R*?`(MAf`3vj)hp~%Vj&zW~iBw^7Za?2yaZcp(<1F|mf>GGh%m)hM
zpH1ABV`M%~yH?7-uKJpj_o4aT%vG8d;1ueem~Gx}>HTT3aO--f*qqq*>R`yp_J(I$
z-z1p?opAUDi{ahw-mo}}po_~A+l8z|xGh)NMo}+0r%(&~CJitzMtD!)0FtbN*99k;
zocOEFh_>F;B70|1O%XIS=bDiny)Uj)AE&005?#Ft)hW~5GtnECfiBTagC2z0&6aR*
zgchpqmzkVn4wQSXbM+^RGT4=A-XG^R%+^-oBPBUPW)i-q>%BSiwNVIFBC0dv`<Qw+
zdd=_Aj7{Buky*Ir{B-Y@OdTZ`6UHT`qFLL-o6ssWbj`SG7M}0TYO5`0(DeHzW|;VZ
z_f&iJd}T}sS?^}TIxlg^h4LmM@#N9T1I&%(-jkA`Qqrnk;z)eM#nt3c&Nq*(^Queq
z*Zrk7cxb<6CJiyW=X<x_pzn}VEAeY`EA!SP-u)%oXmxmX-t)>=o8RVp!)9que?pc^
z3u<_6ItH5!_j?ECYDaD<OH(>cCh4ntF7h^yv$vu`084C?I6S_3)N5L0e;uB=f7}E8
zMEr4~$-il#S35;#)Y>5?J3iB_EB5vu*V)P(TObi0X3I#g?SHiekOZz`C10KOTIKT=
zyV@)|3TmY>EXeF(+9ZcQnu*{{W_pI_8?4iu3!@v(f%$orw{tYpmV-IQ++b5^{<@6S
zUUjiH^G~N61wvWM$xmw|s}q_C#*)d2>t^c2d#Tm>pg~kAFy@B>@4yLNnB9Ywolr!J
zn7qDb+*I${75|!!|Fbo|muY>Qmo)pIza{14;aj~6?NaO~TD}NI7GpP)dXrao-ubeJ
z&qxTEnUrmcXL^BW8p--Wxg=*u6^TPg2U$aE^?p;mh?O=QD7vbWmd(gZy{oU#x#^`+
zQzehdKI|P!y-;@K0Mxgl>e1piF@x%Rr5A-}SDB$XX@kw^DDTZIy#aXzYO0(bMNW?7
zUYpmv<-RYi9uGnujtk067-X7H^fu+|ivo8R!9A3$t+Y2C?@jM-C!kPQQ)WsZlUU|m
zAeLn}k#ORN3MW=&Y?&At#(1s04PA9q;YE}%*xXj=9sg7tv+;%@p0jyC%C+9ppKD`C
z&I~rcwDCHP)+XRWMNiF?q27Um`YC(k5hsN%!!r|a^YZS~>Bi$3#QiB2*x=8-5B~ji
z`<rGnJl{h)Vm!apdXbfIW~<$K8B(?ZZ%k%#H#7Wd?{VwFRr65+Mss|)H^RR7zudZ+
z$yw%+A>Q?U^h=5)#StJJ)ttCKW^`Nck34-J`xp|1NQCC;Op)?UamcfdWeW{D$J^1s
z{=9@5St8Tk`O|$gQom<TMKPNIQbR_3hWU1rmp4{dL^f)#q?Y;eTrb{UYgzT?rz^ZB
zpXtr;T#gSjEzQRlcz?9h`9%7aj>jdW(2{Al)!T2A?t&$9dRdu}nU-T-TJP-_%a$bY
z>go`A#|p`kI&7Op{X<?P<(lh<dyS6i{bBMdg@FXTNqx-YH+jK3^)C9{LZTgmh4frw
zw$^%WZr7gdB4`@|sb;2iGb1*8%gM;cW2GLF6y0Qo)^GQMHU(e~#Co#sU&ndV*Q|fj
zTh&{CYhgQMdcEoOzM7VQiRdg7^_=I5P+<jQUMl{D$B2PsnZGA_D;8kalC=GQa(*P3
zfls<!FV>tN=!U1VS8}}D<O6SAYO_JrP?l+YQBZOM!32b15SQ%k_)pk(hbmqT_)C}2
za|$Be?d!Bl)K?-9#s@XjA|V|O?3@1H@>or?j)r0}nqaMHVO%Wyoq8SIqkE!T_0z|q
zE0qPMypj-5XLNHj-%tgH+sa#V-lNx%T|eGzc+owpjfN|VPnf<C%LImhYMNPjxqHJT
zsWG4y1zH>2PBQHCv_{ch*JEM!I>h)w*wC=rd0N#;_kxeYJxB!vxL$;zRT||@Iuh;@
z1BDLKm?WFmkGngLhdXfQjm0dLh$eI*^LBl2?ZI##)CS%R)r@E1kbnF~x9+#$zWx=p
zMAAwD00_MGJYzdh4vEE5(h_mdT=U77jxQK?u1l6W-O%)5tbg^n)1!a5uSYoKDnU@f
z^S*(|7w!V0BsHRV8h}GFuZDf*49nL}Jm8r^cb7VDNv2~buibND4>vXf2B7r7Z`gQ=
zcj)PGk3`1GJAqCln$ZF8oMqvj9L7NT1bR?J_h0BmtdSm(5_u(L5tEQq^JIPR(aUvX
z=U~sPB5~kPcUK2(LY38)ohRJuevE39E4xRH5lIL+{x{9@s3i$3rZ4!}LRVY+ahAat
zG7UzwT>pgz?B^Gi!J#p4rh7e}*PF9?F){W2&kgZn>!@}rD6?u>&!>A?0sUQA^EBqp
zL0;mI+J=Ux%g_{!@>=bMx4~gASOw5*DD7@Ml-rRXyKkHoRX3r21@E6rB`Io9Jm`G+
zd*=!)seI}TjVUFhIJpz?C~0QtZ0FHkoqhO?`!f+hS=5^|FMrcw^7M9-QOL7vP*=!E
z0-Zxr#KAv!s9EvGizj1+2)!5sTU(<Gn{9lSR%*LRKKTMEtjF)o?%SHZw_Mu^+JeDb
zi=~U%LnX31nk7AP@d2C~J;W_y?u?3E{9dO6Y}p<}eH-)YrLnutyW{}Byt<SsCrseQ
zvHL&k^b}se{s?-?EXf&01R-{K)<e#;#clQgd*hrQ>+~zB;Z30Lle)#c{dV*Dtvc+%
zoa%=C2V=#UvhB_9O75_Sch4kCy|gsFsKuT-`lG&Fi8PnX$<rBU>aS~lXPXXtWSHO-
z$VG}}ka#i9yqMhL&Q0z2fMoS0Awo9Ew#nl9bn}C?9i%P0q)5sf2EnHx=Ej+%qs@EW
z-eC_GXKt{Ba8Z0Z`j@auwjNcNKWKjbNc!b&PLEPbSqZiJk%yaK^mluCFJ5Up>ZrsD
z>B#7uxV!lq?HMyQu7eOu*y5GEJnlcrs+wTa7GryL_?p=hs~3HT%gi5#T2y!IP{Dg=
zi#b+ZLz0>JPQYWN+FKiYqD^P%8o~-7wvf`&B?PpjCv>8w8qxPz&Vho?%QI7v*)^5;
z0K}O&a*pq=!70morh@E^qS^v440Ri?1w{^TZ(LE9{8U`B$*E;@QdAQezkf>X&_k_@
zxnG7<l`55jEs{uaP+^Oe54I^rq~#Z3S>fMICVybEnQ~U_RhM2|%%aNR-sM5?ZDSfe
z8GFFAl}4hSm?;7Ru%dJJ$GY7vF4pf<hBhyC3jrn@?v0(+^<sG<A(*UU>;<UhNFVd(
zf)?vPY@<CyrSMr9i-bf@7}nzK`)G&OFsi0lvI)S)6=`*_viUoGFD_;wWy7aX>sYRU
zJMdMD_@CNJN3W8aYM9Iz)I2`bY&hDY>_<kL26K8W>C{G5)<BtrtHyW_9&fQ@5f>%$
zYJ5GRHVD#4&o_OXr@znv<kq0Q6i|4HM0S+^O!o02qyhtlkoN!+q}+|^@=omVG#wV(
zH^>P9778zkZ~Bpmo$-f0q7NJz42hx5o#5d%GSF_pYJ4XQ6xJyo$Ljqp`k8kBc(o+j
z$rE_$)lR)L9ZY?wgICKyW&mD8+vXfI{p!bVxvi~yhV0-NEgU8vg0=F>`?0%I8D_F1
z9;+DR^tB&z{`lrgpQV|MxYg)ilvd&Q=HU1ihl6du27!FV$^9A&=wORin|D~=Gl6gy
zz$uC6U<XFM>KmP@%a5of9OeLGQq-(`LgRfmCNJ+LKUR-8lGah64f3^+A@Y1XyK@<J
z>5<hXMWrCQGF{g?zVT<L$aPS|fyhKalRz}i+?VRx&?80GJ}@=adTPsM@;PHu_xg@H
z{~kcRiJ92A-}T8d+PpDAzFrM^DgfWN`2Ev=p*fNL%AA$gu;hq`Gl7x5^&Rx~{cyyS
z(>Ou06Sm*wyDUjZGnmaNBusf?O}y_&8*Tl+-Yw1y?CX1(cgsvi5TfTJ6f~778GI?R
zv8VCo-O2JANMgm)5zw$iKkyxGu8)TYKw5q#S1NUNSmJA*%ezrS4065<SOg-N)N{TT
zBlYJQFt_zE$F)hM*L%ME85ws!-7cSU&O5$+?YIw{LpC-*Q=GY>ym9UojD(y;s8kB2
z%ZX6?PUDeV^}{I+BJ&R^H_ddJ*|<)M{#*_yq7)UEiZc&?+_+?y{yxXntw2Pg8S#ln
zckp$Pha$93uM8?QPiTDGB)&i@9&qGI4H;qy;do?T<L$Hb_WzhOiPj81g3<Su<S2zw
zgdJ}RS#uKDLygC`)%jGWoJ<88spRCH{Gl(7FUm?9Km}7E(-hH?lG^)j@^pr>gE*L2
z7Mc!e@Z-MmV^fCmFtlMf?g;91QeefK!aJHjG&^280LV(oJWn%nY|PZ=CuYb0>)qna
z)=7<@xj{!W7&rmxgq{zk8gFV>_&QEvE|Mhqn7p(yooBCW{Kmcda{|apKwybkjx*7X
z{okLbLp-$<*=O&);oI9GWg-1Nkd$9zC7tV!N%|y7T7Z(qcM=9OHddpU($7PUq#2O(
z_wz4~$=ISz!U<++nd5C@CT`P~e!=gtV9iQ@%ugRBRj?3;1Pg)yx8#uNgj7v7YwmEr
z+8fsh5obMBYO|_)ewphZyF`01vWm(JY8~rFK$k`!o9I^lJ07B&d~XnWv3i`Im~K+%
zfa!Z8*Z<jLdTn<~jF8wyoHB%>QE$xizaW<-;~%JS1pAT<Mr_cZI{S|=u#c+(0LP_-
zV2~s!OH%wBZq*KpYB@4ce2$#xDdxhK{&+h`a*HZe7$`{s0F2YefBa$lAm-CrqmmHG
z)Ta4&bkPnex5SP|YUID+yLG3w;p~&baa0V9GgIdJFZ`tQ9u7>=NQgXTf$^oLu4}&O
zt@e9Z)HHK`Q&FN?>=_~z;>^tH&F3DZ6E7JmfoLGb!nva7@8aeizCe{>rdfjHo%|pn
z8A8es;QgZ+&7)sxzlT7d{30YY;ve;5USbO~pu--F6Yf=v63oiwZiJ^$R=uiu@+aIa
z5miR+;}92)!45Z36rpeKYku<O_Iq&UfTjn>t7;;}LgmWd2bxtcR&_^4n9u4cd#QPR
zU347TZRN#d<lLa5tK|5kHs{>t9e1|h!@S9_dx&BL!;#ln*{wzVo$W`lq+pA;Zu(`z
zP8G<60dhL>NVZX8ClV&cn@^g%zkeQA!50Qj0ZL9vPemg}uU+<@V+O~`MHypJ(BfE-
zk`rUsug<$4$5mj}$TW>XbHoFa-U-)gqDdO)?%oo20Iea5Nk{CW4Q{+7cHO6)D$qi*
zg4LyCu_!3ADv#jzTh=+Rw~doNax#g4r7NB;4#F9$oy0&~1*&((m>{Y;s1Z6yI)flp
zg$ZtSE^Dd1+34}IO41WMp;IK7r#3l1c=V9fAy`@<XEIq9Ma750yx-Z~jTcJfO=T3R
ziJdS<lg;&SIqT04UxMv;>XL-eC5<@92NX%YJ`{b(zNBt>!k1JPFYUddWJ~O*5T=<V
zxUeVJ`Fbp%53vx$0+5(4QNpPdyvFy{ZF<qEvO(g@APhL(bXw(m!}jF{%OxL;=vp^C
z<*PqUFX&DUXClfp8OPYyd|wr7Yi2Et7($Y48y#fTGrni;&<^0-f{KdJaSu9xC;35N
z(RS?<R7rAP5@DQReA|3Sr`k&pVUE_$;x#0Uwf-}{w1>3I=FcXeNrWkfwYlmY-}95S
z%SH+5K^1ZbvG_>~<9qiW?I(6-l!%a!2OZBof@F(t=bhS{QD#F^IaF~ln~rbzRy;#T
z0%7)}B>4y?cbb`;?;m_?g0>c6G!V{>3(eHr;Qw`zw)T}U1z<AT5eZ8_^mpoSe;vAq
z)YR<X%Rh3Owo0g=M1uj-IN?0eSQ#ninq+_B_4*SI%i;>Qv7G;lZue&`)>ddbVwtjy
zi9jRKc(S=N*T3Ti?UVd|_%6{{l1y@wK*2lqQLscE!Pv+EOk#;@fAypG{yd!QkfA$C
z>C+=!{WB)eM+hRBEM!TL2h5ax>8p@$L-HCZBSP3wS3LPVQq8zb|DH*DxA0U+QiVP_
z{v9*4bpVAvMYah|RkKdj1OkWlYnP~9rH=k(WZbJ@jK9$W?ZU{d3SK871eOJhe271>
zT04foI>s0yIxeS;zhRuV<tR~GvMlf>oCd-)6!+zZN&aq6>M#1kdaM$Wk|1S=4j=b7
zdrjNBNmMZf9k?T+bIDh}X2Z2zkqn+gl?U^FiGSpU+S<KFASX5@zovSz=bvL=9Da*9
z+im(R=$vGtyUSm6lYK(4te8-d;2Gao%0afw^KZUOe?S=`$kN=Chz&DujK6liy$*-e
zSmwEie76i*Fe3ji2W(f3#=DZGDBk>fnSWe`w!%&#Q>lmrI#7Ay{Z6TNggpBBHH^JL
z9+PegEB#pu!;h&cBjy_VTB>>SFW=;#HunUQM)3*p8FXmxjq%@NhsL+jkb(r^x2)^w
zUnd_r33$r7wm3Ob&E|~2V|#6LDP$rc((7_fibIu->>fyYTRXc~0MnKhjjb6~RuN7$
zOy12T)3#gSIeFVOT+5QPP1l>be3ySwVkdbR7qSk;^_^}eRs{~dp|{JHR=^#xDdER>
zmjtqR*g=$308oU2NK%m-FL#TXmTrfDrwDEzIYQFSC!faLzK(Uy;dGkFfZILId@w!c
z)xG~mPrO+<HD<x5+9O{;kTI>^)a&P%@0Mw^S~{$9d>h;fQ9LasDRcoo6F6gz4eX#|
zRDx;$V$2O&^|DOzT#Cotj%>!KF$<s7_TJ^>UmqQm`i&BmGx5!sq>Z7+OYRvoZ+Xm_
zBeuM-L6#{F*(KQ=TNrrU&X^@ESyB<Cc5*mp2R7NRYf8)T9t(WIT0a^%CL)Q6CkCXL
z5fBkBcY61sfVW*cw3x9BnYrf_ncpeUYoB&l@{S%@Fe=i_<5vWJ6|s~AT!6v}8k24=
z>lwJfE*GWO>9XgW$P;Sr4~*GqpFjjrP)LnfjR|Jqh``L+aC>!usMp*o%{0ggZ1_Oi
zmB;P?z6*N-o<A&~tiXezdr1}wcol+dh*6XuIIvqU%B`SSs^ns(pFXJbTdoac*&8B`
z372Kvg}Y^Zk3JNr5MhG#N{oFqJDGx`apvBPnDw&25{!QTkn==CiO2T!ce+!%(3Uxu
z$$N83{>LL@ujuEmva*4sp!md~my$|>vS)q$QMO&#S$Gtr1M<=}x&FP=^@a*P_NyH$
za637V63ylP{QtRwE&wY|3#&B{5MZXQ^nD|mL8=LRuc6W~8bl|BJ5$ZfWxlVL=(5rz
z@U}1?I~$gDW?;7cRA_l)c;E13By+Qqg8~&YSE%fyS0KrZJ&IB1iP&!G-)`0UEJ?^g
zy4y5U8tadKP?hOk1jNeO%pRhP5W!=u{rwivMch7kDn-qidejb~R==^qci0~4nHs?w
z)-D7sn*W@y<05^r!JHnX&y_<GLpj-GulH?wl%51ogVNEXiDZJ04p-&lF8<*!>lMIP
z&@$mf!eK>8o3z|FaJ_cGYYL81?<BfqnmPAPUy_}?ZV>3$SCU8|&3wGb_nv(;lnl|f
z)Z*j&oVVInV1F-!78Pa6^GaIeJMjPyNRc`e<+>UH)zi$wM;mYaMIVewB)XR5icenP
zTk;5v9DJ;Gr@PFd1X7sZef^1{uMaSV{GmiQhH^iDJ*z~VI+j7k=3nI>KTB5%RDNoZ
zB9pLb$oV$F|D9DJh&976fhsLWuQ1iT5&kyzP(&TX(*eyS+5FJg|H@46!=jgXUc31a
z`@tT8-#^rLG_~;lVo86W6KHQYp1ggbu=$Wui0Dt=jd^)BZ-tJmsk3q_Mg!JE_DV2~
z9DmxQEC6({Qy#Y@LGkK#5BTh69V{M6*}}YV%ZY*eUeHIMCL`fBiZhG52L>*u1EQh?
z@Jg@@JATT|{+#9<B|vXAB(s%Moe0z<vphHEM7Fl)%b5Y`1|^87oOJWW41Y>2Jq)!F
zPa@#6Sh0+iV|aGJf5@(F<Rhs{Si|xP+hYCS$txsdd6kw`+xS#XNqt`{|7^RuS)dXu
zB^v@wZhUKh-$%G25mV{0xlN+VJImGTCbLW_ECR8$dQI`)d9(gb)F**BL4`3K?`?8^
zC6_=?6QVonzBbpruSr$~&0=X*P2|K8wSsjey!6{1@eQ?lcV;M!m8Pkkyxx~yqHB<y
zJgx@akzc2opBMSeO`)Yp959W{@RCKo`qye>E;MZP2JxF{=8Pvc_(tBMJ%Ehr<bzzF
zYWz?8Dy%|}*BJ&MLY0$-EMt^JSm;|fTdyF;K0ajz6KDEu_6@XlMz(HIcC-XFt-arB
z>4*r<9k?0zRT9ZEZIbWxO<AosA^fo_X!#5z%t<ygpZ5)XOna1=R~y=m@{n&g`OX@n
zUBoH{$J_0m22OY5Grs=c+77k4$X{$WFZaFsrM79>*RTX4oZno9*pNq%cS@H@Aql|5
zGlH=YZz^y0H+qD{NGGL7v{Wb%t9kV*|Hjb%s}*fbc&yRI{+I8wKdm86Dq0HiiW9$1
zUH|bTdVe{j@UB_{wAlLQ$3Fh4R_(^N5*(P+X!dTej`H`gcgtnL)t2G*(VZVP*gyN`
z(175XikVs<nibKBsU~Tizw_nVDU6View%8Kl?_$eA@U-Kb|a{brazl<w*TitI=sGG
z0HTC;NuqMY27ixRLYI&PU~C022=OlFa6f+|dn>I=NDvclYn`iM6a0JT=@ognF_2aI
zvCzr|gM2j4UnGW#_`}M|#a?I9;>;zZ{d24^q^1>YRGO3Vzg>{xzoD)En&d>5&?h?e
zJ-_>h$XNz39JGfcx-+@MyZfKBN_7wN<3X7U9dUS}<IJpk{YzfdYh+Fw)G;J95sPu=
z(6|22tz88(7hb(pH_?(4Ovg<B@u_+dF{hYr))qtIZ!^|EWPx^M5L`1#a!O%9q?qlq
z{iCb_F%WMbSTA66vibEL|A=?>*SIX%9r&bWs*=oYH~5R~qX`T_AmF^f)*??`t3cf&
zdO;4=EX4p6-K0-H|8Z+g4aQ^|9F#A_kGFC6p88`eiv{P_wHRj>4)ag3>k0}%xfnb4
zU}ehjzFgt=?3V?kqyR8dhe1)jV1hj)5;(yN3c`jrADwM@t^W_Z>c~=CZg(NGn8bN=
z#WMdiQQAf9k1iU|T&XI?`=^-spZQzc?-f4OB=y8~1N_76q1OGhmajI;j57ayc6KrJ
zY~7d8xaH9MD&POrB>TQKRTDXv#O=h|BcG<}+%i!6iT3qp&+C$uaPFPE{S)m6z`rY1
zZtd?=O<~(W&VTHvi!?TcKy`9MX8Tv#nd!xWiuNTNOZN7W5`T>tQ<N8jGp9@yxVV&!
zzc6rkiQb0uvj#sM_#)$>l343NQ~Mz`h@4!H@n+IHzJr7G$JubeS)A$S-lhI6+h`Jy
zh<O!GGW$5eeE+SllgQx&aeT4RWb+X#ZXWOCPr6ZW5sFB%WO?}%Xhv6F5ZLi)Xf#rq
zF!UuP$56fN{QDlX7s5;f#W`bM+vfWRT48469aQUN;U$oU&|hiyIzp&Iw11jYOx{rc
z=E*v0yYNWE$39TWf5QvDN-LB_kqZMm+-mST->`YSkpLCNxavcyE%fm>R{QRLP<#F%
zAGLJKu@%0hVwG_a)@XU6Q}Q2!Vv}#cXzjD3fE>X#(osy==v!+?kr6I!tmjO_`+bL3
z=p}MOTc*00Y#fz|X2f#eff?G_zob?oJ|w^4OY?o_EY(Jg38_;7jK%jU-s{^}q|M}q
ztD?lD=p$@wDrGG4?X^eWzmM*eGmh>v6;3vI@)}>WhxK;ZWU~=x0BNYPw-)$Xud*Ym
zm;@RC@MP6vDOGv%3%=s}v@?UyAIx!)QHcm6lQPR!Rj56=72GKem*Lk-efPXU6W;-9
zfoe}wA4)dSm)S3gk}4^LR17>c$^YI1x>Q18OPntuu~jj_f8E2{#R-WT#QCj7jOwKM
z4_oP%D>H#CJ!9!DDE0qrH}wEw(zuhP{o2&qKhwf$8I{EJa~n>|PF?+1*Xr#l!dgC7
znAHiXs0UvU_s_}G_A>((*bs51Ym)z<y`+!b-yCXuh3)_K`Rt+AuT+jYol`y5raWsU
zJJ573LE}=NXW8{J`J%pyMTkh})2l(=b6U)*kF=S^Px^kb6G_o=c}#9RW04;tx7EBA
z)aijkF&|rlzgq>doQ|gH5SRke&8<^o>R2#>{JEn4rjhib)uAv#&__zA32uNXF>zYV
zA^Xz|%J>zry#?phyO^mlLqF8<{1fa*Hl3%&jMyLQkwOogBnjri4`bq=)W+_o5R)|X
z#KD*+*J&#%fJ8bdVnNWRd8JFtktBVw{=sT$DTIau|KPTmh4$`3da$P(A}-FfIvlfJ
zKv#q!1_JR5qIzr3mM>!R>{A9H5=j6QS`T!ln{i*o%vx&)hLXTF)uL~S4o)%bIJ0AP
zOk-K9oKvM#D8>!&!(09fuSSt)%8Sa1rI11|lnW_N!@Q7LYg$a{CwjjuGALUC!FNqD
zt0u-YvfnjNU?z&6gR;h%)|bUxovtt13o37TegW)nk9pyM-UoS7Rf@(X-vslq_l}sg
zTXaN2II2mhTqy=dlDTuPzkf?LJ$m4e44KYqtjxO6e|9t5Bgdsx#Gvhy|8cN?nY{)?
zjFRx!0(!SJb9}mgx2xA+3ScIU7af!^RZQe8|GS;_{d-B)9E;Z^CI$`(;0E*sqp7Hf
zsS^AHCF%W&fM@ZVj8h;v78gmniUQ}oub1@T!SZ&JGJ1S@V2b@YPMlGqi&*>Y@yftk
zTlLqcO-2lT6PXuyNsiPc0ZM?+PJaw+Ve{3Ofi9wo(TlqXG+c_tCYw=3fe%(_^I$wb
z76}9ssy{d|`%Rkh!bw4O0`+o)8-MDSU=HzSf#XjV(+hW)bQV$#d$cu^mfYK9lNely
zrhl-qltR92t}(Xjv3r~RV7qb%2a)^`7*+|U(|t{*i@g;uO9@@PT=X|Srdbg1?@nPP
zgvgVk9EpKKmcrJ(JK(=Z+VLZzNQs?9YAtG+b@hELa7zk{RI?<6AttDFapuOa8fPEZ
z-pol-?aQQcY??3H`7S-Itr7^u<Y`tBY}h#C{?K@<SSLJ1iX~J_D7YjLZ<^$LWrMco
zkf5<79OZ>UnP%o4Yuxz<?Snlp@$G^{j6K%)%b&DS>A`#+L^0<A!%8sYzHGeP4r@S7
zv1md#6ywbDPQKuqdI@e;pmj;x!i1#7`@C1Qxd&zPY$3E%$(gXfldtO@`v}ev-d-dK
zJt^kgw!U#YLOojd4fbH1Iq%oT?Z4Ajo1V-XSE)#EvoOv#>>yoaRe?Q?uqP{oX%*w&
znyOzyvL&K%NdAq=CjPl;+DJY^^dT`HB!l?Y3;p*?ySVJ&TB<ZtUvx9izgY}?6e!$Z
z+*%^CH?{OX{Ws4O;$2mNkR1>pNoLg@G2hvZ-w!;EMv)Sab&2V7DR<_#RAd9b5hooy
z+H_NMN#L8$=z->96Tgv=Fv-OA416!!D9!M71yv@~XreiMBrs+(TbBZu6&$;KR<Zih
zzH5BqN1YPTU+Xf^`S>fr_pV5?Gk(qUKl!Hdc=<JmJsY$bDGNBt(!47>aQ=HbLQ5XA
zsv!PlR^Ufh25KIsFOiK!YBGt)(|WV%=KR@Bq9^E{$;NaXE3J4n-@K<u+i|qAZ8=6o
z*R!**rfW=@m6d&KEOaC6kVkq4j_lDVgM*=H>KP)2SVnbV$m`m{iwQ*-r(L`W_6&5}
zqOI}*@@tMqTb5oj>Ld;fJZayfe+Ai!^!%l&tcmXzcr1+Za%@`FN3){uS{t}yoxYto
zt9nrtgG@r?gW4BZcUWJ|Hrq2IP7am-&TVpmg=P@pW0(&ye}T^v&7p?=i|=QlK&#^D
z4@y2Cq#R{`+W7AlU?*AG$!gMp93_}XeEw?T9w3cK<5L5fl$0$}{4@2TCOL!XV8PUc
zQi@7ts3DnwofeJGKz55E7RHYCRm{pj>;|11NYJSNOwQ>a$d}ySJ+O0`{s4W0V44EN
zGoY$zePv+48?-~xB6>G;_+SO3n-N}MiI_HN#KIM6O%|%<nwB&DbL_#BWg{lYIu~co
zAL9?U(L*P@l;r?Hl_4Ko;BVem&zmgbUBXTn_QYqYF<D)8EWK?2FUMn?`TF6Q7q;p8
zMAArj>**H|J?FH>A@;Y3R=czYUlBvz9ht8zPz>xQ-F8beVpI+%!4}0@D~1N3deP`<
zG28d)Lwc1~k-}CgGJbkvOx4%g_D_Wfh~bWycV$PXnjEr!6xcur{Co)}b(L>c4Lw+^
zDrw<`DGu@12>-_dkfI>70Z?u6k6Y#QtdaiDv$RL}{{sJ8op)E7zrvct)?p-z7ag7Z
zVS<>|*Zbq==v9hn2}&)dr>N(1d-ywBuQXJ9C}xOH%yQ@@$$r-=(Q3$tMvcS);3)U6
zS)_OC83bD*kDPraZ1WVeufM-Wj$FaX!6QN+jJJw6x83DGx>>uxf{QI9?_bXv03?MJ
zP%F27p}+KA{kg8Sa<l}721Is!Cx60d?Z7Pt*o@jDV<s(Hl0V;$nMqKesklF-M#t1b
z|I`P#1kNAYa{*O@!1|>A0<eC_HpBhy$bV!j#RQY%`SHhn^PbZ023uSqDiSXznA$IV
zufC|wy`}of_#%)c@w2Mg)_a++#Y{S3(&(g=s{@7;H`T0d<Gab8xcHhUa6cT42--Na
zv8C^Yuk@O*SSG8Ix$#)zU;on9T(G{7Ho?i3WPXeFWxuUGxFQ$=Fmsu3@c;1)8<3;Y
zExg75^{|YBf{O7(iz$^S+3fA;YbC@Aid4b`QG=LpfCN(z>udVGwqtWLYEe2QiO1jH
zG;UUhDTTLNB;F9t>15NXv+pfYmnA8wW)#)d)3-)BATnN3dzVG}*8IjV;dql|m7vBj
z2r6VN%=3EI&Xo{3VTSNY$Utif*ZTTBpjVMCYJ3T^h)EfrPE!0Qe4m9$9#vKFrfE$z
ziy!yhzEFSOUvyQ8nh*v{qIvRJ-;=Ynqn~CJ4jJ;2@8+xLeQU&1lF9)`atFRGf&z0I
zu`2GN(ETz?H4qcJN1{3KhVNH#qNdtpg94|Z$|RVlp9y=(B$FryPz{JTQQW3<NqDf`
z)EKhp0~H0#TWft;C-qkUu*nmQ^R(~W(5S}L3fRpTcx}1w)y4M5>ir<GysRne&FT#H
zUaoy2C)8$E1RgKb%Ime=#xd~G(v7>?_k;a$*u&%~A4WzCj2rSZ@ui6SFW`1zFb)n)
zyy?B$cdor7yE=p>C#G^@e)W#;1JT)_kV;Mm;ey1Q6`%MrZ?a=P?d5_aX!bwj+c{4=
zx+7E+lnzmmq<CA!8cRh=HCKUaRfU0fsadjezc1kiy)YAHRdxbg_5^d+Q@$B1Y;%pJ
z7z6Iy^s#TD-O*XW>)AJ=6i_`p&b+hO7qQb03vpIMem!O}Q63wbm@_^H)t$u=uxP#=
zE#f33<RrVe%$8$6N`L)Mm<+QP`YxWUKhDCzA<_kMwE-3CY(X1}Tc8o~M6`y*>wS&w
zrx1)5bOf=&T?-!bJw91)L7FV__;3?R#DB{Y-!0-TV2;Pzw6y<narUC_IZIF82fX;%
zRlc+B`=cz564;wV9q75MzqT!RL2nH?N>N7Q&7%ST+d_G?A0B*JY(Ogi5G?ViuR)$Z
z7MvXGL~bNHPt-!6D>^qW6_J;+76Is1zv8?8er<)xCSadfx}Za{9%g;)8z~Gd3`b7g
z5+_$dQ9Sf%=8~>~EgvFa&@^ktO15LzA4%qeZh^~osU*+9_(%AO0h(mKPYnF^iT)U@
zmgyA5Bp$VN?-hanSmhAjiHJ20YXHbgkHlQ@G>=U{*o89ToV(cnLrc8_Ab&9^nq>Eu
z0*I5l1xoEL@aa`iy8?^vf0SP4f#HjWNzuUgz{pqiPGp0&>ZouU65|5XKh|b~7O_;r
z9&_kfsb<lof#<E-DQqW#FXZ7^+c)+IEVT+-CiBUs7p*_uBy<c6Kcx5SQNz73l<lKG
ziVKXhk0uI7idSMiqa41N7nmUCKoY!X91dqFuOF-oOx~nDJXf$?N;->Q5{fBY#x8+<
z_RX`fb#+gIa>%hcp=aQy<$76$K$^u`Btumubo3XjrP70VKNfq~Iv5lB45ejbN;zP#
z#94V=ZVVh=tM?gDIzb~yC_HA|jKHDSw3UF@s+s~p86=%zX_r7ftAmHqngAK3nVfNf
zPGYtvnSS`wLvB(=nPTp{EHGYRX7pa>NYHRDh&NA{1_G8qB$-3-U<m3XT}fvD=)fO#
zoEbtz*7PV!25O%iD3xVLC{QUX54rsXuzd5Hz=tnsD-JX3;-@{y6kijFwU!6#f<x+`
zN^+7>m8x2_d;L7O_YDlU{%yj>B*uYB<Hc_45!e?Rrx-_-3||bGHJO3S>_gcsVoHTR
zKc8i3ufSxho}=f%0Fzyij4pBVx<H1kF6D7pf3Xz0Hr4xlMSXSm$$k~Z2W>vZe0^nL
zodsLu2`sKt_@Qjs(qN#A%n>BsQq@4q1n*A~Cq~21X;<r)gfzm@NH_Pi@Hey^jebG2
zSW!1{RmYjpt^92kt3`8$rGpJHt+oFw%g)Z1+zV=e5geIJjEMj6YP|rEdz6Z9tvlWB
zV*lKg+K$Z<uB|{mQrH1E_}9;%Ck>sRN!55fLL?GQn}_^=dTM9Lx^@QFil8NZj?}y>
zd%(Y>z4rA(Fp!!pjtPmG?|-?KHnJc!0vnWuVAMJOy7oSOiO;PlvmAhfIWhP2)*q`U
zSTt(xoMMU|^ana>yV4+0-BIcpPnvmZv45GPJs`?K`)(<G33JOf|GdBLt+Z@<R?#S=
z07d=ed|fs)rfRnB47s|1Rv1^hxn_octi2!p!q8Lj{66GA+m5yu5RDw;CWY*U#($6h
zIs3*!lo$E~9g<7&%@zKFraXYdrED~{2<1)Gp|NX|FHp*|!Jw&?*|08TREZQ}`i3;O
ztNtHd=K<eT+5Pbckx}RZniSe5xk-^-=pKTj14`+j(6Zd2Ep6#YX&VX%PTb0HAtE9&
zT&N(!1)?}m6h%?N2}K1eD!5)nQU2fa+yq+i|9)Qiz<rXNd!KQ}@BGd=Ud;an6CcC$
z;PgIXi8Sf5cxIp@qQOYLU14c3RZ=cn5C;TRLhWl&y*k!{iOz?8Ax|WqH`{vbCcXQl
za9o3)4!nYRwdP{$4dQr+-BxRih14mgf4us+%zCLA2bP|9=A)8SNpek|KiXg#dcJz~
z{1oMsa40Yfu8p!DpQe9IT8m*^7~;8TVW<7HS0-EAo17}nKTJ*C*jUFJ&uO-1?$O`O
z$Bl+5CY~MosNYCykQr$hPC}s>ks|yXr@sB$YCNRBFhb6BwfV+kQ>V_bmOQIRG9;V<
zegqmA&+fP>%VcLI3fv@ANNEJ60eX>gA(i2Gn!!dLkiwSr`4GCX+#Bau^N#3~Z*us?
zizTfk-N#AcKbwf^1d2JLskICN_njQxWa72p>(p^IpPkC$bZR;j{+&#{mb1tsqzG@c
zwO@G2bNZ?vj2YTVK#V7<1!>`V@9KeKu@cCelCIb%2Z!HbLdXcg`WlgrWNiq{B{gtv
z%LzZn6#eNn#7{&w3&iu=v{U+SCOLN+ElW}d&+XYef*(l53=#Dt)>X2!OPW8+dPkN%
zGG_T5ZFo~MH%V={-&!On1NpA?Qgwo(nIcs85iMcqe=$#zaM(!D79Ao<(&_`3<>yZP
z1VWILgl~=jY<G#ZZZg*-e5&18kW0vq&sa`~i59OQO_i{Xgsm%^Yl_W!qEX+1Q!3yW
z%Sy{M^<=Jf$aP%T%UUA#74M2}dbc9{MiJsV<xb8bc_}HX#$|oV%uC5d#F@4pa*@1)
zepcIKNI!W(ls=l#&>lH^heLmPt#!V+-QX_xwxL9|dylua6Bk<SG4>jZDLMq`RK*+(
z|Eq}+Y&)qN$pI#Wfqj>vLbm!trrIB;x>sYF-+_oD|AIV%u;t7EIb(=(FA)X-hqE5E
z&NjtS9=@4Q&!giZwb^=w&+0u`o?9$nA4@@K#}C$7JDTA>wmU7F{U{T>5tUqJtr4t%
z)KyQt)*0HYU-qzNlX%K00Ewk^j>2)0E`Q56TAsdJU#0-KuW$%vc7pnIwPlRyOK8zu
zK@~JaUMzL`8aJEtzZ5lsBZkdD`4H`dUB1%ttm&%4MJSVMn#5HWKWKT)`~hYJ?^R3A
z6mE0v2Fu9j^e>B8fUd|B$+VNBpf`zRPje)=H#vrC^YfM+W>9rpU6YWagh9!E@^O&h
zcTz`Q+H}f%{`stB?E>FR%@CMh+7qeJ6@Ee^l1sADL;+)@rm4#}SS~lCyu;m4uBaM=
zlOXM}F8$K)&`HaT60>|HH;Y%lJZhO^I-&Y2ny#xWl>0M9fLE#kt9;>fGSkEd-mup9
z!a^_xLntc~tOQxOce&-WYxLMia+K-bDAky~GOySH%O0}yHvK42-6_!Efo9CqlvIu-
zTH`hWE7;uP-S`xcZmYV<5`D9IQ%IK-ALqwnVdvwzZ#3u94A=Rf1Iz>_)Q2hPjm;eC
z<r25+vlW(y%qL{a0hI`RAUy<_)qBkAg%xFP63EEd*U=vTd2mZOhFyoOuB`E&1=4y{
z>XVkmoArbHIVfW3{aj!zH#xndz=A7H7%)xsD6>AXfL+a7nq*ngA<1f3j&+2oLyDSk
zxjBZ=Rml0CYTdqAf7*lqrH+N9hsfRJN1{esZ!uXo!`Wg4xIoPy;Hg`tS@)O(nCzJl
zW&Nr)MQs>v?I5Z)QE9be8pF~C&`1x@H%T@bge}}ih%-3;0@$Jb<vM!m^GxeJ^Lg{+
z?TkYClOduPsIZG}*3YaRM*l;_s<2ts&?S0c6w0&44G4<V1RBaw)<>??13AJJ)J8On
z%sBP-SnE;~GnKfBwhuwnlho84>yPGZBhgv`lKlG25&mC?9ig)*sD-Eg$+k|IefpV7
zL|#+SSY454eY8PeA4~eTj(nV<(xoksFQ8y1*8m}`8fAUne8XH^ab&qp(!rR$WtP6z
zBu^6zZi$L9A&_^6TNj(=jemd8bWL5GV_j%or2rD0%=EL0YklD)>lZWheL&GXrnL-Z
zEkO-Qvi>z(4+tt`QjpG|_{|iGpO4@7W{Gv-z53&MVnNiQbtE^4mWMgkx37*b=kP=Q
zsqw0~)Yw=y#CKlfWl3s3eVN?CWdCJkemW6g+D1UGU}^3h<A^IEb6xO-#zrqm|FK!N
z!ts6O3U2>Yp_nMcW(&MSU&{1U;<+@+RkG+Pou^jyw#`e@W4Ti9h|IrADMElJ%H2P?
z%637yc`r(;RbT_h#|p+b)@D0AgB1HXR5#uq^~%9I;ARyVA0+T`lIJ9^NLOl<hg{jm
zc)q7DPQb^fG9=mk0HETXue!{UbAVf&e%)BXtWM8Dp%)Mq;F@OQQjPh;M~!E{qW}UN
z0eGeEYF#LR8Dff<i?v%QA|O*FAbcv1$~S(!+;PWbeVK1e_L6`PWWe<|avZm$aXk&*
zc9m52V)A}>7`rdyNp)H%-G(LIQtt73nd7~(e&tBk9I7od{jgQ!9*<q@7__s$e0~&S
zURavc$vQaNQRdM<NIoaCAnS?-y!c9oqfuYZ_SA{gt(_{jmzLj=*E?z^=^=Q!6;x`c
zS_5skHMB9u(Y%;n##nb_CM)&CwZ@5qx-`M5LId0$)%%|n2n3?=55y@*MYyPSRCJWz
zRr?m$pMQqU1JxS&E8sH|Nw((^dsm7vaJkhl#FGE!zfqe3DGlVWaloQr%7NDK(iD_O
zpx!y#vGXn7jQF{4+37sNR^g3*c#*Br_EyBC{J)W;vH;*K%e}aMB+VhH@9b(D#M-d2
z&)CK6x6`{=dWVuB!WIVn;bo45+nzV8DVU93lcgX6CfJ3x6{T#u1Q`B;nUo5!ot#Dz
zbAr0-^(eP_BruoR#@tIzCOv|u+r~VvpCBFYypE|<Dn8Hl!UC#k#8bOfXos=`I1JKz
z^SI6ac-?;tVQH8{_pzVEO%_j!dSb(`?797d-g42*%rS}t#!%N?-t+bgxeO)A%N7v(
zk3wsFzVM2k-)A$BCg==CtC~5brzfNLr%X0U<k=qb$4G)u%4>1%2(W$1T+=Lp;yf7O
zDrTOstefo>EFnou6#PcLGS}AgTl)|!aJ;<onwDyk;Hiz>5;-Z?b_}Z~9}a09K9Zss
zLY!LkR`~PZI*xJdC@hRXL6pbF^2<H$2>;)k`g&2>WU10X(}^_B`Hsr)mQDIPxXnyB
zM^G6VQ0u0Lt5@`O%6uU-d|k!kq@%==>EYR1^;lLVI5*OhEC;EAl0P%N`2{^N9u>wb
zQEFCx2iSH`Mfe=~9pJ}?N;%fhl0Z;lYMu-ZpE%Bt5n*_g3lt=Ys#X734_}}!1Jn62
zt^{fJao0iX?=gBr@{8aWB(SdPp8??)gmIN%4wI?f9J*@IJYiP&m)rC+ffoz5Q|>Es
z$d?Fj+#25ZRYnP9RFlX=*}9qGn?BYbABl0x)@f4e`q|;um-MwF2vbr*7^IBX;_e4a
z!^6!t)}Dr`3U$H?j!>Eky*j+h>-w8`BvR`o4i83kyE^=l_w>~^bBj8OZ8f(=aI#2s
z#&J(j{hPwyeg5ok@Pdi0zA={lIz@bMocXvEzGj;lK60J@+8IN!t%lk>1L7yS)g2-H
z05`|cDpuuB3(wx^IL7&*l%kKJkGY$swr5*+jj+r5>8uN~8te2l2yC0IroLr880A~6
zdIYEmYgRW~mzzt-MxhxGMSmp!wBToJr$oJm^wTV@<mj_^Q`9fFgonI#=1&XX77}Cs
zeEri|q-t_=_6NRsi*-*tccGRGHHWBxS=oqk!(^kcMY8H>3;+5{$JN-|MHDSYj8swK
zUa8Ih*a8~{hWd7)_*3v?>NpHS*uLcgYyEZFR*)*3rdYt{h*hthZ*3}yU(C77CrE>C
zNMk2j-;EsEXW(L_86gxfX$n;#@>JGGk?yYga(cCgpsRZ-x{%tx4BfChGCNfNxVG(e
zNK1@>kmoFpg>fE?=v+*0DenhcDTaLu&+8?l=chwjuzQrc?Rop4y9P?ZAJkMOq(ZXo
zDY(s3WnX5yuR~uCB1VcLH9{bkWc(O%RmGIxP7p2TylhO5i7f?o!Q_T|A|e#Jg;HZz
zM0|Vmz%}5X8SZJ`N@_94Y$U23M{MhN#K`q@=t`QY1#qugzOi-R6|*LTnkeoP_e?in
zR3h)Tuf;a%<Cs_ZTRJQ-W2}B{b^eo)Ir#&n*vbTVrP~WUk7bT1fB8L2we!p(EGUv;
zZ(H^m$x`Ag3vo0HjE@~d%&XI9_OEX2|0H*(DwP(OkH6dVvM0`!D}@Aa-ChKsYIv*X
zbu09>5pKx)YQsDJe-~0b6|vjy-JX%F&z035EtLQfrnuM?2=8XS^7A-x<1z1XYQ@lE
zF)H2GYocPb#yh2mbVVjp5ow>iq(p9vYn-Z5mRhbCKTJ|s$cLN^=+8__fBLOct&vCK
z)`03zsL&f_nLBt5x2LS7#lF46U@2WQ8j&a{6*0BZZp%MYlNZZv5Xj|FU$n%hu=LcZ
zq8$Tdph!ydL%>53#HvH}QNQjSP>;Mu`8Nu2MHaP3ldU#+U_G)amz<qSN)vUv()Q3w
zu8{D@%3~o@(Sl+ZYJ0h@X@;(~rBwHkMobCJ9uNv{<Si+o+OW=uA_E~+UA)8EZ&&<B
z0JOOk;?Ec;DoR{Pv}5Uf+vJ@Cq>9#QHB5diBfTd$dL2BkoCje`R7tQ@w0V-6__aMP
ztB+jI*0p!#y2JpAKD6)8>hnFe3%*_hkcwK>zSk4&bd{n4*oUGw#CSUCv21LlT8uoZ
z|7x15Z?N<_<0?~hS)FB>Tt)JL*A-UJtP#waorMec%p6NlV6yOxFz|rqL_O0+nnGw9
zz203lWHYaTcSTLAUehAx7ANRMKONr{6ME!2i^KH4PnBrK&;xQ1*OYiaE_e&K$DXR7
zpX`aK_!kGtx}jsF4Z}B9=Lbgzm9p@}>m|1VL!wJm<U5;U#Hf*aAKD`T_!5V6*Dl+Y
zi~E-9-7|h&WT&}<#fC#Fmb=9gCuR@pTP+N9gzV^N?!;=&r}$Hums?}5j$cFUOR2I)
zZNq;95@d^k&-q{het^;l<jXt}U(YX5ZAbR6>R)54aUiqA<!{muixj0e@`h#YE$nqr
zDTIl{AK49hQg!U}y*+-k37$IEpw71toxXd&<-KKb9;SmT!0VickHt2p4_E2bX(Rcc
zP{{2MM0a^N>Ya0x+<Jt!TK`}wA_)BIop0mTAkK+X0Fjj&`7Ar37-FGt!XC37{x;?#
zR!ymkAGH1W7}aB9Mb1ej7PhE_f;Y~$jeCE92a^l)tI6^1FM}5&dW*`islZSXVPrdh
z7dhqc0rJzZIeh34et_Du(lYp~xHTELC7=tGl?8B?ZmUpAA)&6fxqggU!$u@7FblSa
zIfPtR?KavD9E*{)rOb$TDs_h52#y@LB*ufGM&Je!jm;}{R(O!+cZ}B_9`Y2zeE1X(
ze1G+1w}{J5#y!Py7J4|Yr5KZlw4Fx8QcL_(=zt0C$#eu)A<H9fEsc8$bA!wR%sr|#
zshRyEzc|XZSUd=fMmBHp&WM5Q<DcTqax2T^K9zGLo=#49N*}*^T~Kz}Z4vM)p5h2j
zpb-uoWA6PS;zzf>kd7>nB5dlL4<nw=h_j%LiV&z%wGWjHOI9t9cg*P9-@~LAQMswy
zU4=iLL?IY~DLy`AjC>oo7IYV;3UyK`7eoT~Zj0?Ju5x}rLRnBj$51c*mRV*#94AU{
zeC1Ts3)`B<z4aQK8?TxjTMR9&4v8lDrIK0Qc&DxDzP_Siio8(3E3nzn=5oNO7j{FR
zWT~4cRRtxkji|y8EVJLZ7{PO<$3Ua3|IcFp?fd_Rc&pPxK%#6W+|wixiWF)~wjW>8
z_bF`EEU9OuJYf-P3^Pg{LC!T{9AycKyt=~~HL~!+`Zk5lx;n{%{)e~4BnVnPRZ1t}
z@^*9FJfgq&H{u;pWU$<^bkiVNl0x@n{0K53W7Pq}ahIjPcCVzm8m0ae8Qs)$QX$=K
zO<)0Rm*O@fL{;>N)H<WkkFPl}ejn?1p5@`MlNR%)N;Nk}CUwvzh#W2s14xFi>R@HP
z?X&#8zGo)RR4%}TJj^dPM|=TJIwdRIL|1UFNqgjOmvwU7H@jach9A|s@bXl<7bAQB
zGC=M?aU2n6>Wgz7TQ1hyin7PV+(CqKK-gBSqveQk-#f93S>9YP31n1&OlCXe7e(FK
zj{-!gY=>E1X80D5V_Mxn`B*Wg8`70Zk$i4mMbzyH7&i$%c>;J3#vwGniO<?@JQlMi
z3%AY#s#PM*i&_noB5$crCQr90C1PFE5L2~DFoq3`ph;3sZ?I3g8;BqQWJ!!joC(&B
z;ta{^@P)>LlX{4fQy#1^Dte|EHGk_%>4JFpJ~%(g$nL7wDZScD;hJQr#u%@9pJN+l
z?;DCx7z<Jdw5B-=g~P%N9*-|aeizkOVsXlL0h}?DwAhFHIvHcO^pS5t-ScIo$1({U
zv%|wa;(G!>)Pq$?1PD|pUM=n7c<pTsK@5k$uH!;z{TJT1-}I4ID_Qt_rVpg!SO6u7
zs@-U7+D-ARv+)nku4V|{c7K5-Bs*E;B(-R?`9ZWxs$Zt47dP0Z9gERbHD!s)W$meP
zfoxQ}LmWe0ys*?dEFs;RNQa@dE68Y?3M{m`1cDUcLy~NKShc2WOgg`3p735#qF{c&
zrigh$o5||;ORXXE7%-(gz&zmxR!;R-R?0iJ046E5cDDWX2M5a1rq{UX`U=!eH7<n8
z6)Wu)kseaF5dRjmmjTLGsrQ!KtCs2kEL2%B_2D!2V^tuD_*DM7o!VG8>voEbn~#l4
ztW;OqB(RvO(!Q|YcXj`j92yF{5<8;SbV;P;SYiwIdsZb7Zw7zh2)tyUFl1mUS~|0m
zSi8KLDwq@T)++<Q=c`CyH+CTZDRtc0tFdR2$lh`F^mxKlMKmR<l}>BQGR_X14>>zV
zo)=$$0>!$vUidGOM@0)#)~kf=50v4{0wOP(T!Jyy>TBZLmd_P6SU)#v*6O}%_@z9m
zmp0VtnvrBT&#*l)aqyavB))k|FiqL8Y`2FVwq4zRuol`nTu%%Y&<Gm<(;~RVl3~`W
z1V;2U>GYg5sEz8uC1HckPb$UP%<xuG$((!~No-dop;3QNA0UQWh86_sj<ks5yAtF=
zo}Pr|ANR7onYbDAo=hiq75^y}xUZLEkiJI7M>z_sl1jts^^OsF`>^o{OW+y-FNl02
z)E=k0TCJ~U#ea!{lDfP6pC%h=j^LIUSp^JlZ!KRC(NBHDh_`kiaKyHtNHOUTQr?V*
zS^R6{Z^sAB6VM5kfE%sH`ISazi{2b0Z>3aP`>3j$s0T;!5y6Q?TB%QJA`VU&B-e7i
zvZB_qh>QCU5}zTPqpW=x*kkCLdo3#;P8JzZfE`;3oJtH6suRaQX}IJ0mrRX^O!QT!
z#orZEv7)Pe-D7x;^7Fq0JAb_sl`I=mB3eX-SO8WG1$O-6@OH1opRF}n%+va>sH{Yg
znpP-WlKR%LKR!)sZYhr>=sV3_1eM;>Yzw<eEAG+wp&Vb1Jf7Z(X_l4k{>xTpYutOi
zr9-FWa)f`jmozM~0#e9KW6uRlcicC<znm$KC5968EV?Gi3kDvrFP+t2)S6N+e-yUm
z{Ulj2$;lwX#42{WK4Sl;1HTuYjE}3-9ou?3`k;C>1g%Y5GEoWBzv^;yE$J_6K`dT(
zwO4`+K3h*1+5ziqnMY&xiU$KFhaB(lh=LV^J*>y*$!KtK#nV#LVsI?u)$^A+y?@5e
zV{CXe$O|<Asa(f*ikG_1jU3e0VqwRb7K_x&Q!4xeqam4cd>r$#S}aN=idb2RYV#2z
z_PyA}?2{ttl_sxtQ%2O`4+oT^U@_n-tF(te=|HheF8bGgasRd$Gu{v=ogYdTlZCLd
zSW?iFRrGGhoq331q8j)Ml4$4`3doaGRS|9d>EYOVu_`8iFSdD$XnNwhYVqB+pxFbZ
znl}m$BUrRaYBG<E!2*>2`&R93`XfT3x8KgO9=|Pqg&b!Tr@K)b0?XG5LSHH#I(OD5
zP^pwr5zpL@>4O0QBrsKfaO_o%C;#c^k!kSOP;XM^9mYF9$gO)VG9J5ph!{WVwUme?
zv0ZpgI96&{rESUKK28oT(QDD1YQr+etM2|zPAlsPJY7fM7u*Ta<!bvpM~}MxP970i
ztNjPHY=L9!1^os7@C&CJU>~*QsmOox&?Dld3Y?BuR_e2k_CLX~xtNV%+URZ&^930p
z#KfqdY)@_KOK)PlpBdtR&ED_4tJ7dv@ZqKCbP6|60H4>vC;I)6F-DeL2NtBY1DK1V
z$s`Z)<JQQB;s=UUf$KHdEon8}YuPzbFD$@I7w>EBV@6JiS-e@M)3oFyj+CUf*4VB;
z(C5?<ka^XmBln!NZ^Mw&_!9&|Y7RqsNl=Rq+0ISFCzZP{o)K}yLj%`{-V}?94bbOa
z+pgm=vZr}G^0ztaGQUK>Xbqr-PPG5I1>;9RZz(Y(GAmJxPIs8&mTg*{%GqGj<_>UV
z&g$dgSF(Y(IDvw~#SjG|NqnKvwQz`Rj&Y503o?u%w!J+_&b&$0^63zy<fF^Nwk9RX
z4#<VHF7I8<+hH5i>`Be*XnQ+c+gz03rt2h|m7oM92IT)8eQis+GlpF$E{2E~Xw+hd
z=3U|FI=jE<4CFmbd{V*5J|QV$f#j`-9zZ=X#pt;Dsfbl!1&PV5^8Spx^%ssOHN(Zo
zqRgEXvhKCivHc1*2fz)vzQW=rfr#TX@_Bpd5N3+fr%)qMeQrrvkcVe$vm|fS+Hy8(
zLy00A4UhtP4B-)V7;atJh~UPbqEZwVCsPc1$u~e?9(hzxahnld$sEz96Ep+OCx8c;
zsIKlEzHL7tQ=trTzWvLXpz1ES58ukIbd^`V&+99+@ec+6gTBT;gNfQOQ{GYv_?mG^
zanME%HhOo_=ioGGB(WRlo~Lz6>!G-K=HDC=g$O@M3hpE6_SQvQbsd6JmK7wpM(=1A
zPX#60D$dojk}h=!;B`p*W(v3#SU<Zp{$X}(bU^rf;Yo5B1#Tl4Z=OW~TLL=TU*4{t
zudv=zT8fgFz7#~T$QIjVd#HguuffztvB}1Ch&*}_&#1MvCm~8-m3H)G>u4UJpik1u
zd$=Lq@w3>%QVD*{ZpYtgJTpcAu@MX(SrfNKeRaRJ={!yHg1riD5&1wEIZ3_ooOShW
zF;DU~g)zOZi|8odrMfGcSb!Hz=)7#6^*N`8ltfBY)S##9sV7B_Ez13gV0+8YIzWt(
zR#l762htZw5VpV(vg@n?-qAO}!waI8Rpu{b59y@tW5@mr^?GMv2^eq=>42;Zm(e+n
zt8J#Cb$xbVj#JTE#Fj5w%TJ911ZwaJ4Y8w=)S)u_nn&1e$o*4441eBNL0<xtr{G$=
z9B`S_al?ArI_N_~wI!DPyaBdpxAIg#6Bt_pmg|sp*D1F21${;4N+!O5&~UVoxo{6r
zv%TNPMk0T0rbjrrN<DnH)$&K2>>#~f*&MRz@*TA?(7xv!O3cTrGv}Ni^v(Hy4DyD)
zLCy%il+X>>`6B6va9OhScJ^yb5e+Tb)|8v##cL?2B<4r2-;&7tk0#0mG6`sKp>8RO
z?0PIwo@6ws;smvT6U7X8;bU9kGku>z!RHA)KC~{P?z=cyq){Ahgpw4T2ge~(=39G!
z#P$W1g*L6t0-68ajs=-WMMRjtX94kOZoDhse$o4VJXk{`>7PIb6)2ai_MT^rch(O%
zV;e~FgLxW6TACh7E>$@VF#v!~rk@iv{I3DhQ2^8lUBF_<WPJChV^NECoW&xmG_u^2
znJT?jQvGIkfRXwY!x+jQ`T%Mti#!xjoYP*hYvdtGjU_0d@VO(0FCTc;Q~3ky8j)ao
zR3USx^65y&#R<9xK?Y?kup$L^m6ih5_Kwy2`n5$KWqqh5eQei&yEv%%qU2DDm)&kZ
z`b+=2IC^;=3^QVn&KdUYc>~(U8nj(!Ze9--o)}QLn@Q|M;$JHBH^a3)woR)67JSm{
zmWtup4Zx-6)A6t{;#AhHj_V5gF6Q@`T~rWp30R|);SPxEp2&+!J#D&Tu>U#sASF6F
zzXoxd1qh5ZRjThc+s{XE(NjfCl4i&<q>|^!QonxK-ZUSE1f~WIIE}|*swd^zpW2Lh
zAtut4N=Xf(%`E%|HQ_f$*8#vp5=5Xt7126DUK@Y4?>DslJ_2Zg>G;dOw32`G=u#ve
zn}=E^pGG)V4(snhx8eftH1^yZ`yU#IP3G4)7^{GVI{1eZuXzNZV+pFM*!J!%eOpjy
z1P%?-i{%CD_S@$FPvhKKlpaR1k|>#~ZeL~D`$C)?cUoLXNj+6G*E(rb{9X=ekyk*g
zrmhi|dk2f%&n`qoNc)Pn21Kk_r-`1$UdogMz_SY`hFNQDzz*>$2Z{uzl6pt6Dy^?|
z^EvveS*JN0!Hj`~;Vne?52CCUq4834zPN#|&6Tt8QxQ5u_^3Wl$!w{<f8rKr`W|MY
zEuM)Lb&3Ij&6JL>z+6K(meLZ(_t?D8L*fB5q#vJz!59z>r^BZ<JVj9-I?OE`J4Mm(
zcvTu0-r@Kl8JHkvO>jo33Uf`j@BzOMk~5Z}X)|RF*l^HW5Yq{2>0Nf)0_|grlp;0+
zL8WCzvRc_<-**gK9*>se%I=c=s0zkLEWHwA{`877rH3qzju-Wpa^On2w;7*?#|lU^
zmhLjB+{9#EhIC^`hY+sB@j{6TR;LNCM+Y0rhH5Q}8(SkF9tjDts&0w3os&}M>`U4#
z>U!o_qR4hO;mwDPVLM{QiU8)XEMeiOKQ64m4TEjpbkv3+nx$Gg1L*-yQ<Cl94qE;p
zr{Q-3@d-$@u)96-V-xvtV?IeRT-wU0FTS^ReY%h7+IUQVrQspR%B}kJq{EH`(8v0X
zW16c*+k4)x&As$0{H7XW@wm03p-7aCQv*|M3n%fzSc$m1VwXUPMZi3=*Jd=cvYPKx
z>!w{A8L4E)s_qXsXksLw*Xeve1a+*6e9q#&FHXKu<gI2U#M+0hC)y!*rsMAuT06E@
zsBF2@3bpkBg4H*`7E7ndWvN@(IOqcrLI3<^-*ZQw7R+oUsLNjXvbL29+$PwE&w>w7
zz0ThAHp~swaqU#TDw#+Cc0ca6fBU_5Rrolp;|j71H0q3Q&#AWs<mzQEayJop)}@{$
zlNT^JQFU8voe-~`j~vWZdf}kur*dc?XzyPj+yI@N1;v8>|5_LO+ILLL0%K5A4Lg}&
z#m0{upJTl+U3oxu=p?GIi|o7ieaD{8dSm2zW`PG%wq3S{OrCGg@K$4S+8TLi&>JZm
z#S#F>yeKHJ*gUmzVkGqt(YpRZ#~Z!0dM^~<2$K*xJyoecvCJ;UgvXCZ2*~-<&joX?
z>sOBNlQrgkN=(N3#N-+*$zpJjY7hHQ41Trqji`m!5iivC(M)QbGDnaYQxxXTng@}G
z5|aLQsr~BJ16v(K@g{d#90x|Wmd4Wf+`K3|ijrzHhcN3Gkol6RRy=4q{6w5EBZy2&
z9id_$I7UfFZg<{?kuP;0C|j<Txhe9>v?>L|$f@&G2;YYj8$BrMk^{hzI@d`T0x?sX
zF>7%=7Fz3~F>70!f^4zVreHdNUlmxY=r(?vK;m@U&}IHj4Y&X&Wat&PFYng+K&jFL
zw&O~Rp<;YICR(aI*Y<XNJ{*nD`_QtPWu(gjV!^%8(ZPm)aF*ADEHZV_8tB;)+@L!k
zi32(?NVDY>_5OjVU$Qj`U@RcG<Q{R74|KF|ItMlY>^Oh_6U5a1wP70`F#DfSS*bw?
z+2%~Aq!F34YzjN?-Xwt?Bu&ppWLxuWWT*W92+|;d%pi>j>`^9Ql0u@f?ABHGRV$Fy
zXA5#J`31QQa(+;A;=xM?Bn<WMuD9o0sf}FCofKFN`w-<IWsIi{u|GDX-<o`yF9ANI
z(^#m+bM0a03>MTvscY9pjshNGCuEgTw}t#KxQ0mtz$#8UUK^tYD;>KltAt}D8|1Sa
z?V&IAY16xhiX=&D(ASn9Erj}r=Ct<Q)5y*`<+*F$5Mm6tk9O)=z+=5_kA-R}O5QGb
zE45pa2sSe^F3Nsa?0>kXER*SfuKv$Bhm=71KF<=8p~H^j1i<C|h^Mi9qTTy|mgjy;
zOVdkF^B{@zQ>~LH1D}sq?~bq~{n1A<`eYl<s*oNvLGzs7r|Y(IEQ9t6U{bO>ca|9c
z+-LSA(;k!*3t_HqOL6Rc&%e?AG)g+!`Gqu-C2S*Ve*iK7gC*g1-+HC(*kNrm!ytyr
zE_@9+v#9!8y!H?4|8s}%cK#ibfRT!%!=TpU@%3KD`<A}KImq)g;0gZhK}AZ*>+_e}
z?0@6P%7K!egNUId)ifsjM@c!8N<hTBE1?b|>8RcqtA6Moepf~O8a6PL6M#4YOaF?n
zE$TkFfnBudnaI$ul7vZIL^n8AQLJ=tv*XrBv@U^pL<o+Rph^n4Oyi;*Uv$@vzuLO4
zgkSuwD}{x5d-38#ZeSW9OP%$$>h(+~p(ZSLN!q56uk6Xkwm5EGtu5UQ_P)4k*jR9;
zUUj_Fr*A25Q$*iY_hfi(N<B9>BIXU#(V(tslTd+yT}d?R_P)L4$QibhY+k>uBr&Pb
zn<GZNF|Y-=wHUKCi;@ef`ZfFQw+<9zYgDBhvkY&vbdn?b937R&qza(e&gz@8h--Gi
zIpO@eMH{H%QpdQ3gM>C+2qq76O4!0YbLAArkq`Q<$&^?!-vwh*>cpK<l`95c3%v+I
zd2dwMo16+lqh++!6x~iGY$}C+Yp0ISnf?>v$<HQk<Mj*2*BsFHB>APn@*wduRy|(O
z^QuXDU*xgv>vd3w9%EGV|2^D!Bdh?7yo$;i!Ag+J{3|Wl*l~ddD6#<ACACnB<O&Zj
zNtHjWku-5kWK$q!SuX8G=h_o?v0@?-+Gy=WpVn^8>1(C2&We|r>g?BFA`kzqaXdI3
zX5gB5u^ho4svS|!X({G&jbdfP_*^4)QaU+HVsBxv%E#YZ;<!j`8F1k?Ucg+N^@UJ<
zFoc$fzL16qY>v|Wp6?X^Je&~@VX4e;NGT=-8(9-TE<Go5+WXoP@{=K$ia1|rVGS@{
zx|AfN#sp1wgkRiE+2-6j_^f-gWz2iG@%J#;d@seb7t=5f`bUy9!=+w+2m9kcwYE^O
z2Gu(ej@>cX6GULyWHJL}4aTd#N*${#t<4OHmCUg?MrQ#!>mFG^4`Nb+hR6c{xYOau
z)Da}5&f8<@;ll521OAA9`fpnm{LMF@cL9f;9he3-kgEE86lLqHpLi5_eWT!k%5kyd
zt>pe<X0(+VytrRxkb>Z@)QgGH!s0x8x8F2uqmn2Re+o?IVMls2H$z$yrb&0JKgRcM
ziysJ$=;e8~vG0NnK=gt`CU#^B006&jX>@e8_g{mFoZ&5%%Q7nu+!<9mo0UuBfk;;q
zvMiSg3GB9CSFD{9-(~~?!W1?AbTse?fSOr)dO@P4Vi()7ytc0d?3J3a-nR3oj?jY)
zNfHM+s>y&5_Z+hqex@zikt{pD9F_rwn~=Z~)MtM=0D(kgwjT6dF6A-~o4{3LCq}04
z)&Xa;E-vOW;uQ!oQ5jRM8y3a;{27^Da)z|mV&*UK*r)L*wuldpYHL|yMfxmDVaXIA
zq$g_?0Rn=Zmg1Ok6m0-|61t%&(&Q{2I$%G1f1i&qMW{D_qwT}z2drUHa~j-KiNXDo
zDjv=`QLpyEkl~QgIGK**G_c}6U)M)vyf&b%Ns1k3nxt!3HT+R%@uoE>(KvPB*{JZ^
z!E%3Kh^wQniWn@XE2E+kY)LdAsXDwuze*t(l(Iv?xY?8AJ4SpV^uIW`0$%zH^H?ct
zVH8f?=k|70{lv!|-AIC&P;OA+__%!5*<ySnJ}$J&HYN`Q0n_B+#YRdIDegu_9(P;1
z+urGrR!yw|Y~o^m09yhaSf1J_l#*^dYx`h3=^diVi|T}5sIwJGgVdSk5>Sp+uU{B$
zeK%fqSEi>1nbuV1re_6?4G%eQqb>XAGl;iB-twJUIbNeG36HsJr&Yo~R>$T$zrKLo
zDQ6I}lztNR#7&Ob5A~DHGO?0^l1gQbaaR3rkWhZo!C%;_LhDIX*FR}{;ix7<0;&^s
z_qkoED(+KD`w6gP5Gifawvy4nX2Q!F+#veUdu`wSqkWJ9_f+>3eFDU9#Ax{OV@FeR
z-%=D6K9Z!QsjE9iHT^ZPiPHhYR)}3nz1Z8?>BGSiKO=Ihuaw*x@yZiK4bO5cm|CA>
zK^$7C%(XV#(HOzfMwO8}N605d+Bl6-j{af&+caLJS&jPWy0BMhH%e1UEFxk^?4cgh
z!rrdZm(0Y<VmJI+0@c#^ZP<*k?;4YY?Mo2>gZegXB0)1dEwVlT5xwtZ*@<dNKVhR-
z;yR2=Z@mBAX`8-7pJv9Zh(t+)5&?|UR9KF+@9l^dO>d$1oMfk{Nx_bnQkj2*A-Om@
z`H+}$f|}>F4v+$X5;|?D(1{)bODIQ)^{d4AvqJqqizx@}cV4aCv;q${g&1h5$g!)Q
zc7#8ro%%C`H+8qoSVbG`GTA2+H3JOigKZ)$59hA6-F7TSvhS4oGr_3&C+03rzEY2T
zWWU}R5X;|-bTen)TWy}~irYL`^UKK8z{r*Pk=hK;ZL&@JRhu}V$CAA6V_54dh0V`~
z?|T7p#}<`#UF>a**rf=r6ZJwLc>Gvw=C1j+#aPuo<|9B0r4}By6&)NP>K;-+Io2uD
z+V0bcmhF05lc_;(3yge7+|XcOw3fXYKLQb_)RE_UKDJi7O^6iOD53<(o#5Cm{xNDu
zZw|1QZBi>FmGse3i>xPlV?zkjoZWni{KxG0{K__dID5qudM#vJDOFWy|Kfg=Qq=|<
zLd2TbkSsMh?z|tc2Ow|N3CsJJ1A7Q{U^+X{Polz~N>=-?u-7i>vzX--X=vaP)q~1V
z0+$+;B~fpN4itQGEP1JVGD@dK+}b#(B}MjZiGi!7)D?T})k}3`9t?{_QjP;=yX5QT
zM%pV&uyW5-_HYCJ%Kl7|AZ0@RIdCijkdC*`=Oqi@DOtt*YG2ZkAaU!8qr?u6guV4M
z=(7GL%8iKnNd&%lZ>ME@y}mAcL^ll)u~@QBxa1OaEaa{5V<AB6*E<p&X+d5fR9XR-
zq6th8ss+TMxZaCJt<?L+qXw+!wTUd1k#jfMJzXkJz%ER}>kK-_cD+lRKJ?(L)DaWm
zf2hm5IaUwqZ}QDV$Csn*)VS*+?5_>f2nX30z^jt@p8a)H;fTSwydcYDo6AH$aj7G9
zYfKC3zW6|`k<OKk-EDn0w8EG$6v^?nI6lo_hECUF(@}eRK41mxu;kUom9l5^=*Zkq
zhN01fKwq35l`v{R3*lVpsfiGxK&iU%9edAd8prpA$Vh`E!}A$S#Y3Q+K8Y%IEfLXb
z%`W@a+hAM7iH?|x3}c3-U+<V5KWGi3N_~9XHtfq7VXrCGa-VIM6@9CTK}<g4bKISd
z5vuP~Y;*z=9U^}J0VXeXOeyVAM{z{S2TD@)JuN3!C6zKaO8wC{B4kL6{Jj_-)r?%n
zMl6ku@vv4oG+&Yc3YFMV)rhn24jCWpiapb-0_`vrujqH!!SuuhSs_bSFzk5sc8jsc
z?7|AwlPb=5J>>GFs!JT!q6al^XzWZ+xkvcf`YTw-m;^9~bQVgTr%`xtpi!yn$SRBb
zS}f|bAt9#5=kW7`ZQ}Dn>F|Z_krMgzSwJTdZx@ZNCfeNnaiH7yg5r*uuOn;?Bo+Oq
zq_6=QvXpw?8}`^HP1b15RVL%96^l7n`sA^HwN|<3M3k+U>2J|TT>JclHP}*P>g+9l
zXpavPjSdKD2nh9E9%K7bx|Q>^uoHxxmP%pA1ogx3wsybq4cer7Clgd83rvc&eEGhu
z;piEcc_aU2V0RDUYB5xS{N)6KG*8%p4V)zOGAJ=7r-Uxoh=Q^lTek<8k+WwQ4e5te
z&K|@9^bN8QFuP<c5+4)0>rgM_y1~TxfcHF9bTcyC6^KRlI%3iFT;!Nsgak1{cvuJy
zZ6@JH2z<~v#E_=+Xt%K>nF?K*LlLL;#~QnP>oqF?USP-n5#Z<{9puG)5fz|6$dS15
zV&k}7Ph(rvfFAclj<jB?l%n|%oF!2;Dbcw39BvJs0-*+piN0p7*eJ8dIhKB|-3Buv
zA&MOSXQ~R`=J;Ll6*<KI#9%y?(*b@wYNEztDKw?j@&t#Fuo)#TS1REXK_$5n!k~-&
z%|8GQbmA`4BohH@Kn-{%4yWaL`n)p;I#!`QI(5qrj$t?IYw6N80{tX`(m2)kghQ}o
zegg-`T?5W6(5K1$@04Qyaj8ZoeC!@D2|v3>q@0kLb%_Vc!X-#Ck@olF$_tJyq~cZx
zHgcL^fXQ0GF5)IZgKf*N(~emtx$2rjou;NdXWL<VXp|m8*=vqbvhb*`V$Q^(pb!}0
zHnAvDSikk#ZTGyY-NE!arUoEUXz}o|Iy?gPOL#3%#aUp%Qq)sN?EyI9`tkf!57y9B
z?~+$VR8XKM(%@i9t_^!<Xi^I^sFdwJ`%SM7Yynz?>3Y8XyS0G5lJH+$g%8P$i`zfu
zkb|5i(O#{Nx#nT`k`=H8$gq}$qVuuNFZz3<eSR=>1h_M79!yh7$Q0XjgZ+YU^$vk4
z;B63FR;{kK_1}O}10|7sVab$Mg*lEZ|I(m!Yw^XKo{E|BT<P=)gJeU(zCfWwdSA7r
z-=$X@56)y$LZgr@`%k_SzKHCDbmBAg-hlE;Y!*?yvYp+#ju8%Ot($|@ND&9wg(%xC
zf%ZrK?Aw9|0?GF|`xmQq9KL|fSXW0PAF3Vx((XvxmQ_6bnY`8{AFowp(j}Fe?W!t%
zcJyl077bYdRqiUCZ%go2+8XxEus@K+xjh}|7yRs08b16D1QQ2Z&=sllh#dd<TKn(6
zYnhoTG8P5TR^SwxLRP?=aoCKadsr*g?FxrC2$-f7{R!7A!B2m}aK%nzZb;8ffXc*L
zP58@x@);cr9Y-!I=sQy!c$;I+r)T<_V*2=eO@1EBL@<0j9jpc_8DH$!yT6}@zvZ)C
ztH8$yjVDPrX<qN5ADp3o6EaR#<MBeZ<OdwoF6N7C92H|(m^4wv#0A+E(oGPp0~EXK
zK?Da@MOg*)8l*w?mT=?pD>+52NlLt&Nm3FDMlrj;4k`)NBvRG(%PqgTlh=TMjwNDG
zVIAq!{O^~x-+zv2E*K8x13Qn|6hCO~56<;l1H0c6Ae*NZL0V*mNsyL-Vp0SsJs>$x
zRF1$_+G6u@1jkqUs8JM!l8S1bEskNg>GB+89D&5Mq*BR3!tNzr#|wAsA{VWP;BX}R
zhnS4?8YyKibWf3QkG*c+Ij)aLtD?qAAP&qU7B4}yf6W4EL3UFv)S7C&UB&*B3YSG+
zMID)_Csy*V>#IOA(N9=$QdM%x3-&uEYHgV96%Mt8APFOp%bj7H{b*ltDhmNeI6uld
z-?sc?U=%4X#=@dhCAdL}MZg0d=<xyeelhw4)7Z-ckr(JLp07vlw$)tPSDakR#?<I~
zS&$@R)q9J=7LCM~AO%$GJ+<^68|<O8PgcC|WSwpQv&a1YB2Gf<(210O^My{3Vi<Cb
zBnJ}7k>X-Ya%}_JYw4Ctei}+bA4|!`VlXS*mfk}nn1#GwjfaVf<6u#``_IdhW!|%O
z>V=6Fq3Zm}rf1Oq*|nE0wA}tkvWGb)XC%-WTZrdO8i7Zs;7TRDXcn&~rxNe6!EE6t
zWXh*jS(eS#(SOcWy_abg2>@pRWvCXcauhAmDh!Y56!@0nD;^>-VhKdiUmmQEM@S#(
zI6P3h-&*5J{;Nm;YPSg4gee*Uu2&)VQIj@1D54U|;!+`)qd8eu<w-(dzL08tLJICd
zrZZc5Kw?c(u|up#h5xdY*w}tcsdetL&`7a*{kACSufA*@HRx_TF?JDD=w(FCye;;%
zkLs7qsGLd}TD)XJ5n%T%jyoz^U-w^Oh1)E?gl_$dPkf5ssrMOxNV!ziZH#^McFoAh
zr(_o4W~>Z3-Id>n0Fp&2!1v~8nNjW5-U?cpJOyN|%o%1AcAUB@)9{|qw;QQ{g_4XS
z$WQKdJTXq6pRv-USA;o&nYuKwYSUe|teyHGF$X?+E21Jvg*V%D4H(!KXe}OE<f_EG
zFp?lTUTTY2rF9y?2+c6zb$Hr8f3<zQ<&5i6ZQpmDLxT44*_J{(0M>ufNNz^ZQ&5{+
zCroVBWv%1fIV`A@k^tcZGNJG_KdepBtQ^}ztNMyIA4v)_wx}|WyE?xdvj#D)qklrz
zViKt%|EKNvC%}Zz72Uj<PGM3@svP_FX{KT(;;)p7+i<BQz>=tjj&*!7P!EmgbxF3C
zQeEh}c=buKqt1EOi0oe9h%EXkPlGS`JPjmfEABM;nShNZtD60Vppk{c+!b`l$8Bk)
zfswF&s+~Yd`DK+=jXDM8($)5^JqajDAtkMubTJ>6q|veOLuB5W@g9;-boz^oqzfli
zVqKCLL!>o)x+APnAIfp1zW4-Unm0JQ&ha5>hpgyn5-pE!nsn2VBCjrV#_k>5Iz1aB
zWOww5Lz13-h8rg?#Ay}X3MUrH=o?_JGQ8|Fv`ZR2CdplU(oW!1D4$BLJ1V(RXBu?L
zeuECb9b~JN)>py_N~XL=`djwBKOj}`D%?`N62n_+uCU35_Au^}0!@j)KRUybFo#qw
zo|EP{dW&`l3NS-RM1Ta#HcD0J|IhaCtJ=w-Zi8^FIQ~G?>aTa~#uwTcDdf}A-~+o^
z4i1d7UsvjZ)^EyWpPqs&xQzmds%b+V4d3X`W=TQ0IznSmCjf<zPFs)JKR&L<GCaDF
z7M`c1EWO;r@$6^5@3cznXAhc*{bDMcek@i8uFiSwY(vbPUVv>M2Z@5eacaV)w(Uo>
z30F{7>a777q_GK>M^X|l$NE2_IuSbM^dK%y(^wOIG*<Z$Ue64S@zyE6z*yVsvXjh!
z*;zZ{)O4`$dEn|qG7^$8d^KZKCq^bnGEqr|C<K36vQ&e>bQL<AM5kW=$yRfq&s}Vh
z{FxjNrGC83w(AB>1<sb52kdilCghwB{lIZ~>KVQv!soPaNLb@E3lWRMjI5un<tfnX
zNBP<!6@*oN>&vkvJdJfDg=G;eY`Qf?c8xI$SPnx*=%!+k&=Xo5t-Y06;haV=rH{8S
zF@T$$;?1H-PRCKr^mmg@gQW{r;W=TO@CGV__^=0~2Wt!uiojm5^_!vbLW-fK1kR!m
zBV*P2YD-**u8&a+jYEuk;ZooQ-FSl@X#H`vN_?$lOIKZxrByawlDd9|Wz;_e2+pdU
zkrJ<lUS~O{%YS9+al3ZcSgz`%Z+GgM;8$$%SdzKQ-KaZJD(%J89IxeqAX55JgKZKC
zcmuz&)hgzX9FO<M{E?(W@6~v_@b1)(1e?0#R0is-wi&2rNlo_5=}2}qW#5pS)$XZ+
z+ekX!<v-i*{6M?MRIm`6NF|or>z*{ZM}p?ljfiXk_2U<oOa~|#u~|~6%P^i<mJ~r_
z;?xC;90QN`Yr|H8WSFMD`_wXrST*{L{I6MXL$t|-w${Y8f3mefs67hd>>|A=9s9YZ
zmalM>+7c^~MkaVJ294g7Y`ivmQY?(tluzC}{5i{I_s0pipIcVj1pk6~CZ8I4uk~oZ
z7|Gxz<T=;&_c$2Ld{?J}lAr6vrcI!%wz}X;OAbgU8wfgLm2l38Y!K`^{F$X)3|1@K
z6IQXjlk}QAnPHtFbsVX@B@Ge;_Gn#OSDw4IqD=BB$}c$!M5ACn2_`$IkE5wMrUf;S
z?J>p+%)8xYTlmVr)p%*eWk#;Il2lO2N5rb_OD(J8u!Ds-RW%cABu(c>vcX%7Q3O8E
zS}3ue%!NAB7r-)5W4^GzH%q&<7^?a#O1%+`&h@$W@-4UzFmF6FQS*f55n6m>Nv`9w
z5dDn|Bw6WnL1%p&u%i?0-;z77@%vIqL_wKB|A7v**Zw@I3bG+Msa4uWrbdSR&J}k$
zy2kda=go>KC}-q)m_9XssBQO*fz1Vz^r4v~*N}ne!pEL=mJSO2a#bf2O)=T;PzE(5
zDWX3O(NAj%U13iQcpu48Jop=<9E&o1Ab+(~xl-1-5r3~6D5(da-$#v{w{*6_sd636
zM7$d2v0U4bER<#?CdJXKHJ4dx+n7eM$!0#+WB=qat$SPJEm$aiyhR+g(TGj7a#|vp
zPSN*;CCo+c2<4$pK<qSWlUp=BEWRICQSB7=MZG4(gKc=$SxN>Zul`R$9#t1q*l0_3
zrY7W#Cu5&XD+D1X8E(Zyw|)L1vQ)&wuB<4NUh%OpsFNhM?{DXvQE|dtgCQ>q$N~&q
zVe51vMzSKr49%xDA~n;}NWe-{Ti>#M^@9#r3tBf_%x_$a2Lf!9?$oYu>q9H_F#n-F
z<2)ne{pWcv4^=3bD}pUFIO3+d!FxGacu?f?5E>*;*%9&9GA@#=4Ov~xebv5a#Hzao
z2eT5FX7_sJ=62#dx1Mjz&{Ks>I0vna7tu$ia;qmGkXtX|l-x3o*_Ke7V=~bc8awDl
zKT;Bi5HoegJmHI$bF8In1O_LKj=0Vwou~-^Y>~d6O;dzYLf!<llGMos;kzHum+454
zAu2aXR-ZP8hdmnaVVna!&Nw-DhzF!3ANN7BC~U79;}VAGol%3K!_JWY97FC8yLcjd
z0OP?;9Ef~UuN-~$Oy`>|P+`s*K|`*%)$*B)2u|y(HN#A&s3$8e^Bc8PC20$+N6-zy
zjea<4ziU0)RVXwyrY|EE33+XpZbSQNwQx#lGhwFE7Wn}xE*L+WmSfibh<z8S=WJqn
zotc{$Ek3t8?9D!UYfoT;g!)Eac)YTegvDg(%Q>~v%j!#@tPwC^3{BgwB5e0y^DF)v
zA$V5Shuz{#n#X?3k>Vq&?y&2g4Ff&`6s1UAm61n_PAm|r*DYUfn|xUFhgvN;Ca&L}
zVK0cUgcC?%RZ+22=b7Lr|E`~$G%Ax35khLjt4}YoK*1E)rx3%ss!CHD*G1Uco9OLm
zv2QVa5HqwnU>X502?~hlr(sH!q|`_yg^@oB)GgtjOm720GC88<Uxa=5Mv^YlBDOif
z2`T5o3N0y)+MQ~KoP|IEVuaaFU<IvV#uX%|DIZ=58)P!rp3vE+oQxc1p#UE^N~_Q?
z1$C*t938dd8%n6bN3Lf>QB;+S$@NjOZ{U0Ab4@Hcv)(&PP;vo5t9IKifB7uIg<$p{
zBsl@pLlocBO&%A00jbmx*Q>aPE@1=^;*XO{YIVFXwOXoY6k;mObi=*HafwSs{(5hT
z+VEK4Yx!F`L|_aO5ug%I;D74rEm3!E2G$~4Lh}|xm1O1t9q;XC>G?~NsB#34#OY5f
zauJAQnHKR|a5z-f4vD78yr(xv13lT0DMEnRyftjqldbO|(d<_qupV;7$UP<y8|R42
z$BB<1x?(KB{j|l?W;gi-h@6@t9-KmNX@Vq+n+KCh`x#Q;SRW5^o1|{-;$}MrQUmV?
zz{C$25+ie$Bl6zv61gC=os1MqR$mpxyHAas`&ML$r@h!26DSz!@pWF+0l*V^*4OUT
z$<EYn)oK)66u(eiYjeDKgFew9oT34wggkPXtm@zH?X!X3fhft2P}YZ{LKOTcjpXP`
z&(g7p&3xZbd)jOI4!LeX(y8)#`fzQs_XjRU3ABxTVdt4UR2xyJE5-r*sn4FU<gd_q
zmaV1`-Qz!yZEYfsqYpgbmD3xMg$NkXR1zB0x^HYPjXGlQO8}ARsF|*y4Kb<1kHLha
zLJ_zGRX)M`XCpc3y4ajX2J?Q2T=6=Y(`P<DKWaX{$Y1zfCDl@5Q>97iuFEUJ7EVAM
zp|V*TE+)Znxa!KV!m;{dn@<Bxm4w}J>DdE`YJ6?j&*Sw#F>*u1I5$dB56=$!JBQ2U
zph@(Yc5w8HY7Dz;c#=pS7?7u`63YQKs}jq*>b7~jCbu|NV7(IN)>$vbu`^#vs0^bh
z9|8mfC#&lEh)dql`4X)o)>K5%5$o02QVO-k*9kI#2$Y(*&az;bHhKsiNGh75YU`N9
zeorF|is*x01#KQ!4r0R9RR(UvS%)r3UH5v}_~rUEW@9nHw<GdT8wFyDuY~ox2T{mL
zN7>75*qj&t7MX5RjN5n&5<~{D!DDF7Es}J2Po?Cn;e4pYvz*Uf8+iStU7APaA)tiK
zP3L+|s0QBS9R|*DTy;Un`Q1A==T1^ta1W$2Rx(poG{hOYC-|DBdLYBC8!jZWIjKJ#
z?o``??~m%-oL_{qAx)_{1z^SMj<Lq)^MeBZ=+c~-PU>LgtXb7Fb+@es)|6POT5*|k
zMUQ|klLO@gz7|($)UHiaw>@Fpb#1`#EIlIq&8g`}=#1dW#_rCQu>mJjgX9TEio;kd
z{SqZbPLx;2q0Yvv;ORX&H|OLLwVq5NB<b!$<^g5uoINeU#qj~ndFirwVcH|>2n!{u
z%Q_g**9JLv1~iY(C54-U$C?_2u?^+H`>L^MMc_Z3y2x~90?R^6gg9l4AOOg{lOemS
z6$Q@5ErDNN(xo{)kFW?mg+wwEFu|VuJIPoY8vN7@Jq_u!$G|;e2Loort8G=z!+Sbs
z^beBBlMbz#JfEy)zHN;BE9m~W0_1u+)u^Ps0Mjb0_lK4nhkgsXCc8^>evX*>jMigk
zQQww!uk&3smBHU%+*w|v*h`HnRH+c2-}%=#@<HG;7xNO6fEF65Zp@4cf9sE)&dG1+
z^()H6Mi8-1sl2o#bik`m8yQ!Ie6g`}bMZtef8A(I;15zZiOwXb`@P2FO9S7T8_*{s
zlOFVL0;>i^+mX}vZi+rs-MM)}x}t<sO{I}zwk=9a1({HjzjHmhweus_1)j?mPNyL+
z1zl%Sw@0Z<E_2-Tdvu?IB9+y*jMCEH2Fd6+ug0}{VE1MoZY(vC{Y_9nf)doGdB*TQ
zA-_&w>y2jC&EC{N#(?5!>d^<CPX+{iT)`BMX4x7@C}DtIH~UU!^tnM-ZPf#2#a9{O
zeZRTISs$uL2*_cbLBx|DVacf}+%M&KXTmLk4|eM+(K;-nnmV06nkMAG?yH=ge(3sf
zt{y8wCPMuc4>&nZu%7SVbUxZ4P)6B!0%(k;SvDd<+EEizzcj#D_d?L)*9J5fri(vU
zUO|Cwod6amTVAE!;fy;R;#%KH#<3lUMj+<7@7E7IH;oQSd|eM@l$8SV>Rw%Osp9jN
zJnCHdZ^)u`dXx^V4Rq{k!uBJ1P}Od9zP~TTwX3t-5`1%}*(ZfTj{3DPI4}6pKPUyA
zwX4M#;N<!Z&htLkW9eg=ad8Pq;FXRpCvP%ta|hl0K!9wp%xYQ}>%=xJCbs!C7dXFu
zJa~0x=jMXU(={jv5{e2+mClpjd~P@n1cyD@Sr!_GN43;{Z}9J&_%u=*)W9ZV?#Pf8
zKXsC`O|)Hi`a;^psqvGYm%I@)Ha|cFiEiGZNfc?61V~o%RvFXp3h*FHI1~Pkvm8yz
zDDO1ZO$sdjF+leBNOz6+G4v2XP<}SkSUn^#DN>&?T0~I28-Fh~4sDtBlQU;)@FN>L
z$<dT1>AH+51m^@bxy*QSy%u<!OtT&~E+5qb`D!9kZER0h)z`rvJ+Hr-N2w@IJ0Vcz
zU29zbgg)&#1#B%S7W#O~F;m_w=gWhG@3nMp&Q3?qv#sD|z=?q{araVV@BP6yx9cqX
zDic&z)}NcA?SUoNPBS)53%cU|0GV?{QteE`Oc8{62<kTcsIjqU$jF18<lWgkI{KFa
zRh<T0vy8<n<zUNwsT)HZ4~<^|H_~LT#uzxpyls|HvvgZncu)wRM;5w@9t`{{m{X9Y
zhD)IlnNY@X-#XssI()Z(jE-MIUrb6BgkjW1*Cn_6M??ggT(6{54y$@-gDb4YKbTQj
ztDlk~mbK-1*I}<7D&j#ZJ>D5Ui44X~iNH}#*M#Q+%ew0$nMWroPqmz6k@hVcop(MT
zc%Vbqv&0%)*wbQ7#C@I^{<zkXz)O!kwe%9_9R*r}G6=m#&o|SFUDurBoP1H>=8j$E
zd$_-5`#rvuqIzHKjLXs5fg!W`8cZx6hi+2I>Xj^~Q7WUoF%)of8>$FEVa3F%7uH7i
zSmSsaJ6<Gcja&0D5>rThGwv})Kh&pfy*+VdJU2y^uI{T913V@3fWd;nJlp&~XV$FX
z3l<|Q(S9EN;J`2lul+wdXDtgo{!*ttqYGf>)9b9P-u$Lgqg}bjLgYHotoA(Bt|V8F
z?)nm`5!5xRu2BWCxoT~s>voI2j80|)%RW?F2e`I6Li&th|4D1%7(^6)eoSdu3{^w~
zf2vWVVl&m<O|Dn23KcCPNikJ~bJQopqO&Jx#WG$R86&$@+W6=X(cR<I5g_%{;3M1z
zdpus*OP&4JgzS00lbn6lYouF}O4Gn$6VwYUjlY@#zRw7JhSVNPUW)`wh>O8QSJNV+
zhumn-A4wR3XX0)}6XMjevC&o2A|FL!jc%YsGT3W^TC}8hhe%ti4^GHLpcO^e)<=r6
z&nG%0B}h@hQhz>4MO7O83WC3WOxswJ+#r?1={p3#=Z-brjt)NOYHcNCYUieg59rYZ
z^_|PO_0(uq8MMzz9CkBR0%q-~zQ$EW0^@W=M(2BH;P#?oKtz5{izr=Xi$?xn2G-63
zV%j;VXa61cXbj<e!jsw|pSdNRK%r^DRKxJ4EI~36?Icy^a;`WL_-#_a1Gs4UWiu*E
z^n3Fg@0Q!2ofs%z8C^{@jUxa$lc0j9INc`$KdjWUw#ZGTb9o2MGYrfWHSrSXRX=v#
zG9XB_zrea+5Fi;ytLNss?y&>}T@l!vgPNnrc%2ANXs8II53H`(enDyD0%U9gxV;_#
zImrrjd0qYiosFOkGrmP~T3AolhM{^8aXY~c#Zvg%iD`*2%VP(*N{fQCFVv<B>7>$Q
z46qQdA+5>S|6E}04FP@9Gt_u8u-S@KGAWOK?S?LLiFh~#3BgnUEsP#|yS_vhpUMW=
zJ8Js$=oR;w*E~W|Aa!F>bbf}uf_N&GZbj6?JwN*Q6<wMO#<RCbD$-dBU`W6m?*}?l
zP6k+ap^L_1{75e=Y&xQn?+<lFFYer7s8&)Ow%W3Cy0>BOv7;7$XjD{dHHF^GqYR19
z2uhAm<xT5LoHKq8`emQCcqdXPg+wIU$I-&=GG~vUMJe{l&k#C6eOU~FKK>|+p-&bT
zB~N-@$LN(cf${;4tu_i(+_}*o8v4?3;&58KsZRz**QN$G=ND@lGp8{LmoG_mJ>sgm
zyX)XNXvt#KuGt(x#z6RQJ?#45@UA!9+;u2Q4CPc=L9Bp!^B>#hTe^!T&MKn;E^nBG
z!@Bz!<BHnA+4pEgJeueMd!NlgWl<zo<<rLf;{(6FR~zT#Ndp8*tQ4E$TjdP;LmRc+
zPl|Kv>xt_43FD>Xr;J^eNixSIghS)JSZBmuzaN8tfVh?7+`5?=m;etxXpnR6SN>1r
zmyo6c)FIzSkY~p@zdGdwp;POm{Rv~zmUnurv+)=C-ehs4v6Exm-WbVqD#3`Y%e6mQ
z6M7yFDgIcEbZk*7te1V~ks#S}qi2e@_(p!T<)JPjZ23&Jug^$s>R8p3;5u(rNOOJx
zbB2v=J}jNPP^<Ue?kYJFIQi0mHh~v{LkTMAE6ZihWbM#sK!mxWSgmT_WNhgi^zB4F
zn_{PFiy={3jrH7Ocn${s8_-36NfX6QBM!fd;QExOjbHu@^nJ6~+fe1^5X(}CtMJ?F
zhH=FIUEM8D6ZQEffr5E!jHmT)iYkDmTi@6qRUi*t<2n!<Dld#N2iZk`LuFp-Iufd{
z7E^Mk(f7J)=GCr$E(wv@8cXS2tzLS&qWfN_Ck$~?ud!5Bo$4BwA0luH9!YK06c8=p
zu3!({9TmO(ov72wsKHC7gsjcOURU6V(B||@U=vVyQ~X!Dt^k<6y4zTg)}{0HU1f~k
zfF%{Dq%me2@AbeTqrFpqAb&Vto?KR<sGUIo<$^0+7aj?1itj9bc7CP1251SJEm?(3
zaXfo|$hwfu4`7F6dnt-QbkQxrAi{I8>ivi9yViAm4@sO}jopoKul~o_=5jtRcp_^>
zN(%;H2?~-_oF7Jq$cB=zLr!_Eo08NNaJSeG?hE>YTa5rOo#K`9><b4(9Qq*nJ*Fh<
z0KbIpFfQrf{FTp~>P%p|vg+lRdR|`Pz%3NM9dbk{h0FJckL1@UNqBANk*E)DCtU!D
z2htikmUbk<JTz`_R39Jw3Kq-g8p{654655QZ4}$N4_lfA$1^dg9aKvm8F^CUd#Yi*
zdy95DW$du~Ok?L$6c3g-Jx_)1XLNA>VX=+iqqKyfxdo5ZYkSW-?nvH)wks&B<PB-w
z@^H^iN7M&Abw*1q5eL=()2L;?**ascjrCIDlu*eY=Xta3ov~gEkJRfM?|;yF!QEWp
zq*70jYWU34-MgLX_u0>gp9#)l#?LNX-KlxPc!>YH(SU3~sia5_Q?YZ)f#AZ2FsyQz
z+lDGSsS^%K6Z6#?>KarK?07)?J$gfmMU2OTojLy#qyH<~;~6~?`<&|fY*o$@>M&u3
zGvLqQb05Zw9|?CyoI0UsNYR4?HDaYR(iZaDbUm0ivv!7%x|#aDS2}-sIoQ3glYD6e
zb-To7=YDMc7iKvd+K2pL=gg1ftVt18?I^;U;X%}u&TSk0UxZLoR^s*<juf9J<zSxk
z+%Ep#%ZDvN3uI3dZzyGWRBW|#_p|!T;)08FVvN92NFv)_Ju=hzb3;&vUp4TNC;L|a
zDghgi!Ij&L+v)=HGXuqllH?e+wx>j<l^_Y4-+q%ZYC!OorP@n3ZDy_dq+$z}-OwwX
zo1YDG<pnh3i00}3tcJ951^|b@qi%b{h@Bkt&%J1-A~hW21->mNA?af`8QXUSjW98(
z9PC^WHuM#GwCO?Po!J33CgfC9Le7g|n9?Be;zym1J38NUk=D%|%o(DWIeAg<8gJbZ
zxax-h5h{7u=QOoIo?PGJ`e8w+_(1u9MR+;M)O(qIyQ|L^UB_M1MJybADk`Ol^9zs%
z8|C*7u8E%pj=Yt3WeZVSkb)S%<djiyy6zmV_m9}NWq`Jn*=1RoLbmR|S<Xks1st2K
zK{BjZYM|@aVK7O}@9Lai8?cu7Wnlz#7$KQ?qKuGj=mBGj^Uw`JOViBxZA8){SwJj!
zW18$<=zMuX(BcODW^^Tz(#7vx=Bh3YHD9$PrltkMrm?a_WyelZ^);?;%R@yrPryfM
zC~;$BG%y`*$p~v`*ZV}cX&^~YGDL&p?&yn7>fasVo=L8w-Y?=@)j2DRf_~$Xig7p~
z`BnK0orDy`s*3O8e9IO5MK=tqd?|(l?#10wNm8S6_%!35@m+_628v4ub*<W`xYAOQ
z<D-g=Ppi6q@oZOlcs!}H7__$ZU^}$Kb>x74r7X65so0|`qRF-P)eu1#igf!cvJn8S
z9&K=b@kdavZ+U7S4b%fchOvNj+iZ8;7#9?U>B>kkkfI?NSc8lL8hsPx>X;O?zE~T!
zGGOGh?u=r<#;OmkuDp0LV7G$MVNOu<Li{P5djq5Br@6gbQte_#7u6y9WTS#Iq^aLG
zyJGGPC~F8ZSrVk9=t?*eg(;hB-}GXi?+8qo&Am;Hdi5Mzb9DFStW1`NPn%I2So=tZ
zo2EFw-V}1+y-t54=dy{sF%JmY5992E_IDHhA*C}!nt$`6y{hwoX5b0@9i|B<6a&0y
zz0;Z)oO__N7?8T#ILu<D_K%N#yIfn4xMQF(NPQ-I*<Y@ED)iN{?z+lSbAi;+sOa?x
zfwC~-5&PWE3n#lgb3>y5m(7Fk>r{?puP|PJpj#BrRU|G~gXoAurN+30-9$7)Fkw#!
zmsTQ*n-iTo|EJ}$Jhi(-LecbxR9iMVHxvci|HfV}Q0Y~&hZtb;YF~0r8LtP}L+K@W
zF4BE5jWUjEN40VOv91%JWEllFZ^Z5?A*v?uY4TF1qkFLI42Cc$#kj%ZfGVw~J?Y$W
zjyaSi{s}-(8TAoKB~ytnyC!W9NUaZQ9$(D6fEWVK)X;Rkkvs*FQ$1X+s<P0Ce>*jw
zjcy=4tD{`sZ47*@TUYI~SHSA`H0q5<1%N!)zSr5n2n@V@qkw=0uPCg>MD@y7&fk{=
zWlq&nh-1PTWkkBHHGl2=^-&q=Q<N*SRV9i_-P90WyjGuGiqne`tp+tlfA|Da)n|)p
ztc|@cX#UXWT!VWD%^Jh`oTLj+!FH5Xuv9Sg<p-S0SBI1@?<^~=7qu)#`U;9OLIM)j
zE*)S-rcG2omAYOX94hx8UQ@~Z(+C`M<JkvX-J*jqbLF)%NWT#toe0Pu4mzX$2sEzb
ziD($)EtegP4Mr}Fa-Hv*^I_=G<!Eh$Dx?YRZUU&%Sv<gX?(U$+Q@Wh3(Afv46*_B^
zL5o}8iJ?;phRE=XTup_tFjD-60A;Ck8x||UEQ8a7vqwY6soruA#4n}p4|c8ZZx7<C
zq)wsX#E(WRt6KxDnSXYB09}<20Nz;Lj40zw#;U&OI3}In^*p{ImR(_4skE7LB-l4}
z4L11wbZQX#8t|zPN*oVd9`YW~jLF2YUA5bIue<XgGNRa9;;p0Xky6)u7S(vNTSsn}
z>7jJHdH7XOKl?YGx_88!D6A|mM@=E9_w}&H25^l${4xL$=2-n0Xy5-UU#1QS-8*zA
zC-p~&eUE%hs=HPjdM){KRyXs@q~hR9nR16~J%hSm0xE!|D>WyoLDQr|5~7M{-20qu
z%ws`wMDPHy#Z)4gInHSh*%l4xK8JT2Us)!Y9-b6T(D}AfuJZmg8KKM)R$l7;wv&Un
zBuP*nN<Y$*RJC7do85<NDX3$*AmBl(%NE$e`*VrfO9bUOBgR;i4qJPXExIqig9S+F
zLhp7evQ8Y-{T(jhk5nF!o^P<sx?LXiWoVCgcpwyEQ*A?285dKAM&$=`F^=N8W!@&^
zw2>yCpC7^y<QRh1qOQfcyK!Pv$cNk;xT&mqCLJU&rw@;dS|7kCCH-nL*c4B-XH=Bx
z$|WJH;f@QK!2R6&_$B}rF$dw`u#@DoUrvaMZO>;B(nzE_qLxZ6jfxu9j%#ToKLhf}
z^YbhEd8mR$6Tfmc(_>?!E*{Y12|h#%@_LVvCCyWaw_xvo(#!I3h+X8XHsv(wL3tMS
zy6n<!Cs-&wg-lKf_LN$8zWuYk-TnrVnh|f`y}z4~JMutEq=7W@R46lxK8lEcH}qpZ
zvNk;8y3}@)^kUC!oKBxYCZ*eu9__!g3}b5H%?QUr6PDo3Jl(n5FjOMCrlj&$KKOi%
zJ%35)x<X<OoQYAw^@pm3mGf(+eOh(5Ke=sD<6t)9bZ}s#RR8wTqe3G^Hqr-`H^U60
z&M*l4kWsGkpEXRG3v*A(AE<ZFb@ll-Sbr7^s8QBTtCdREtPa`@MFdp!ZSaB1g|X?X
zUyW<SBz==YPZNc#MM1uNjcetlA<db^s0W`MhvAf}_J83_o*i0x9v;9Xp3ysVI(6%T
z{77Fz4V?JNIV3r>kHP3j2`B4F3*IWQ<J$hNFK-Ji`lpi&O#oA6!Wbc*xOt%Ko@@Oh
zxneDX&C;F@QUl#GV_m6BL$6-J*CvU`sg)`QP%#PbCaS7X*Oezjj&#xwLkNoqC;*QP
zvKL&PUC00O51JsZsg9XBjI-+!TnmqfyzbT#9E_}i{Wh5$*MCiPYK_Ktxj32V6_UuS
zvQrC{VTm4R*VfepaYjm|#O8v#qG#6WPfJy7`a3aoOFhwXvza<#7`k`?b`F(vpytnY
zK56wwhl{AN=ra#wG)1+4)OlgBe>9`4q^gOPCpIagY3ilhoxk<eqZ*=RcNybBjZuU;
ziA~v)j5|B&m@NK5CXxa)T0*aYv|qn#O#0mn#(=gVE(BMigaih+;|1q6p9TGxkNV70
zWQ*VfQ*j9(?C6WmqEiDBT@|{MMw5oW>Kyk`(4o=#D*$S8EAk6e<44Y0UI-dqsjvHs
zhSSiMSpUSAop-(E|CORLSZ}@;m+DS*mEG?AW{>}l)N@A`@>8hr`CFX#?ec$5SL*fF
z0R>7cYvpxXI%rD-YZ6_d3uc1L#^b>)``Xp@bBV_`=ZMELlU7Q8%o$sSGj{MhSGTPJ
z+ZuwzEEfwBxxzfAq>|M52{oBF2KT=am=)_+P#9mr5~FeIybjLiw#w*v2yXC;68sM_
zFQKg0{2f$>m?>}*=WD3oTKc7tH65Lz-?L`2q4Aq=<PufNL8sFlbjyp{T>yt=#wjO2
zidw$&V1?g((X|yof4MiKgjDYs>s(){M|r0_cS$uZmc{a74G->e%~-81FL_-o6i%;<
zB&*vtx`N-=Bls5-7jaMZC~P&RZ}6W+^2c3TLIRt|6~inpD=`YFTv$lmLM%W8{bN0y
z&%D)TLAO8&4fCG3G`g%229uOXNl;1eJBKgQ5hon*Ol%RTWcZ^g>bE7%$_T%6U4+L}
z;d6Ot{KQee{dVWFQ@(dDE{~^LJSYYUINi9&nQ?B&=0Q5v4=z+m3JF|DjOMqDHDffI
zDln^;h`gYz@oM3##>-iLl+};@!1fYU!TY5n@X5dz=LMW$En%OWvX%@Wui}a_+D%bH
z0wU`y$8XC+ZbtUz5IL>pbYJ*`{Q*m_^~^|~bRm+e%dtYVPF2gUbY9&(;tXs>O0}Ni
zCbu>WDfd(1!>JoVXe$qk|1jhZ*M|#3Z{%6WdN6ENUJM){irt1ryUU_vVSt8B8`v~5
zSZpl!CC@rvoYLjzZQA$K#)^R8a1}@auXN=WY58PcpX!x-fmsc%lw!R1@q$i~CQDd@
zViaSY%cljL#M9<_wx_z(j8TH=^ApqJoNwP6Fda{u9VMjzqy{<~e8)G=I-|>i#a$ON
zMF<kJM@|ccsW#cZ>EB%(yL`_Ks)tK_Bw4Ll;5z7#_=xtS5%)SirmpP}9X?5$;6iX9
zQyrCcGBbKln!c6;*hZA@_UMFb^uIC5VEqcJS<@8#e1-Wv>3}%7UdJ@9x-a^VF6LE8
zh+YXFbz2+#=T90&5e1}(31NhuJlA>AjG+6IyB=hd5{|%{(j5c-joKI5?d-e^&|xz#
zL)7SK&NDH*yto3@uD`2qb;ub;u9UhR(avEV*7b}5IP_{+dxt%(>)H5i60UUg+;^f{
zMX3n30oM<!vX>MG%J1@+^)oTIXyq!7milCf>(@s#Vm!j#R07U`7<?ysU$7ryH`V`%
z^IR*Ev@*x~Fqc(@c61HP(^?9oro`9vP`!PvtM*I3rt?E+YX1z^!RJD*F$G+$Hftt5
z=~{IpY8$H#xJc;~I1U1bZM)6&c#CaYA+{M%ado9JR`3(L9%29vsdgQnXWN!9ZFuVl
zV#Py>Rl9F;&3nzZO*jX1XFzlcZHoMsrLI8_*s}0r(kVmGV5CpRdZbI)o~UoHa%Q1h
zP~Jk+KX@Q&$G1)inCktFjfaUW>VOjz;oNpGI4@E=?$ive!luNeF0757Gg!Om1!Z(V
zl|bwqXY}k*+CSGfDT|rnnW?hl3e{^%T+iL79W}}|BSZ1IQ6>*w;QIVf;Ek7QG(`B#
zFzf5!3DXWw4a;=x3k~v(0fPuToNpln8ZUH3eB=MtDVUUR;l}OFbS3|z$215}0U~I0
z<f>6CVg0Sf+{GGxhsC11Y!uZ{5yD)=I22HdTKKv1vo}LBmTTHtE6ysk6c~Z+)15<J
z(zF!etcXAA!;R=AjL`aZsI%QRiRg5~fbD&;edq3O;vE;1VSk#0RLhL$NvU1MbkPYh
zm@{}6z^g12u#sAw=Nuju(5_$5F&u@_?y7PjcoCb4RdaH!7Zuu%;Y8(gv<L@bzmb%p
z_TL?z@S5WoyD7KHJ<F>z*!g(FE7psC;<A*&^009#CG3Pr7popQCwyiXLvECV$lxy0
z$ztu?@EhLLAE(kbSxH2w*khf(wGNBrqfn7gT}_ay_YKiE087@yHl762wEb=2mu}}C
z5dWzdi`HTPNJdFA4BZ#54u9h<$1#p8-Bo=+PQS(BTNdlj1LVk5nyfsy<_O{G;n`am
zgLML31Qs)5$6Xoz)KAO+fVK|Qh?@sm7ptz#55IMnzR^gaGUS$&i9>NeG(9|rn}~NN
z37KMh$;a1RZmlh|%VkU@bTWI6(l!W&j8WG6hVuhNNW=jUXNa@|A?J?XYpw2Q$m8os
z1B44$+SR}Y$htT05AXN(f4l}(+o{(ON_c~(TJA_D5t{hLE5r9})L+8gXvCTXgOF%%
zk2}KuC+k3#6Kp1-<NqID=N%qZwKe>GZM2X8;tVC_oHHnh1SUOEQ4)f*P$U#VibFCa
z14$+%nS?}9Y$$fU_J$3)SW!VmQS>S*cC2{C0yd(eB8VU&-*2rmlLYkro`*le*>m>U
zd+oJXFO;v$Hm6j2r*6}q7oa_8Xc2K&e)D^s_Y46OO|j@uRt0Au04&=)9P&Q?j6NP7
zY!aU2mtdPaF7qDkp0V%+u}5a&#542ud$tW`Z>YPqTIWe>I7?%ry2SvAKFNfGmLi3+
zylm6)GVgOw>&!)g28qZa$jfi8sP?XQcXP<eqm@KY9-z`g7+VW<L16Lb>$f~~@Q{_a
z0zh)zVgSe%>t0)=;NYT2AuH9WCTzv{3iC|oGd%et^=b?gi!@~kaNmla(0I8w?R^&x
z=sdB<Wb~(-$1d?c?Veie_x;Qq{XTz*h=>AU4GmPo8m!@-MHlHeMg{9)hz)d}X!I@y
zsQg}jXH6782d?Hk6By-Lewt!gn}IyeGCIJ{57{AvI)?VrX%A!N9CBqaP7;n|a;ADS
zKi91kbJD_z>FP=P0`l(l-Y;KZB;8D^q=QslgET(LBs<6iUiF-rq*yyVkSbS(W``Uj
zmumIZ-m%Z=Y;L%T*!!3)FSdOq!!$})EUY||v0}#j;F;B5?|dt`L~Dv27fD7mEUOCP
zS`t*-{*xy^O@Dsq9@}1Rl+Ag>_X?m9fKZAaO!WSosmm%L@<v?VIE=_BtM?Yap^wqX
zh-#&iIUWr#J<Hq>^ajCnRydih12VOfq)V~={8}&l^#sF^bg`4877>R^Y?+za<o)7V
z9ifj7IzWu@kZmI9`qdMRwURv8t%=*=>6591a9C{}VWymlbi^^$9lh5c#d8S>BFI7n
zHnLx8O0mi2fy_O3de3NgDAaI$w;~zR0vd1w0eH+-nD6n<R2)Mw4iH2@+F>qpUsdM~
zJ;j<J3R1v{ybb(72nYz;bG;9Kt2=>-l-3JPqV7iq;o{z==k>X`V#>pFAc%<bL(cKu
z;ck31&9!6DqW^WC8F{w1*D8Hu3N{WYwh86KI<R4(cYt7**zRav27wXn@ZYuG{{Q7^
z2Kif%c=O<2o~768Ef`lty(D9f$nmr<)ve^Kg<T|jAvPRk7B9+q)if$O!~{Wz`ZRCm
zV0|B!0r{3B7t?37=bbS+N7P7Oj*hHkFQMLhrHj5}LUdZg2}Nx_k{%a%uXb7CDC)n}
z1RHBrNWptW<@ZsZdkb_QG*gT+7b!PY14Qe}skuv440Gy(-mb5u-0IJSd+%H1Ev&Xa
zLz|f<AyTsggi(kk(#%-g>y!ERXZ&ak9f`=xq1@2)UY#~tL*T*r6&7uK#c*G4@i*P4
z#DAWaX5Eu(4MEFE^JBLkHwT_yi6=kC30HZnDdVhaFoq;y?si|^LA$MR>}o)qPhEm2
z12?yy(!04gPtk+jVojgr_x?Jb2WbQlmPODc%+=F-=OpP9s;P?q`{c2`H>TL~^$|hv
zimEBcTKz_{92g)C0d$2m@z#YWS%bOJ`9D`#Sh_%CVQ-xK)xYB9OdQM?s1FPrq>L$Y
z(plZ?8-DLS7%RfC3M*ea9f=KW^e@(35AtK;un@Z>soFx$fqzS-4V3fLcJ?_<IvH<?
z$%qgMnUELm?P~Y>wYPj{G>g*D@byhy?PGq?r%(&YAmhi_a_&p8kLNMGrzlu!4MU!+
zXsoUS^BBfd{&T#&#GQ+f!_v7H9~(`YxDXUVJJQS(-Rylk-C1MfQsPc$M+zHoj2-%|
z_h7M;2ImHT1`@20+CSawje~XZ1<21VpD0fxrF0RX9_nJx_(5kJ7r}Ob?GHaC`fWG+
zy6=G!k-S@3XN5H`5|rYcV(JX;v^JfTI2ak2vJK%f+-%$~mghHzA7dZ(lTL=mrO_J6
z5mBuk<9avye|!YGH(DYjYQ;6EDVtIoB+Wd3!20H`=&mA70m|OHu%%&XciX$&ozSfW
zLWTw#I<}i#{iFLrsD_$7r9oVYz?Y2HuJ$MH3PwmwJvdP)%wECZ=j2`37eI@xG0@~v
zp?AFYa|gTYcRC?k&8LPIrd9V--fng`KE=_E>02wQuu_AUDktAt?;W2gkS@mBPl`CY
zZk#=`KTw8(BODXeC=q(>&u`v6V5PjQhfYpJpbpdt;`;YPOxh>dOaEYmU@19I&G~Hj
zj1xqZYpx5;k@RgQu>Q1WjpA!mq`+Wg4aLb{5ny^`cL@G7A6Xx6)U$GtW_Woi1`>1c
z4(o<&U80;FcKcA1Y)eog*IXNKFUZkB&~r8`a&aZk+}p_>nx_|GLU^7;*hz`HTyvnK
zedo1_a%&3oc9ex9&}RMo_I7sKG940Zm1Rl6b;=m_u)Ds<OeCs?rS2i=K>R)HC2Pq@
zeR`V2|I5#%OjMe=>m}>F;W{vlvURf&R$^GkIPmEDU+bNSj*sn2;R~*el*=J{;%jT}
z1U@ezodo+eK_^!3viA4VpHfg-@r<8B5F^djwsKu55UJvqR2yMQ5AU?zT&0hxzFVsn
zbR@bQvv`}8wNj^<7yxt?>ac|PRBy3vnU^>iCIdE0gozw9$K*GIKeOsD(>DsV6A7P1
z3<!K`{Z+zK>2_?5Moo;6sma>2%!UKj(~u~RpW+D|D<=JUpgw@gHkZC`oqhn6q-+#U
zHfv1ZCV`c-smPOHp@(L%0*dBnb~fq}GWB70WUhXum}cJiw4}6;-+bHM9({p6#+i>C
zD=|HAVbBlZ`v|+oLUt}5GkUt}8(4D^?fng`O4qA5RoFTAw0C#=b~YX*wx<Q~D1-Py
zZL`evyQ~i`Jml+8h)rI*)5R^X6a;@}UGhSjxnjH3{^pjEF@3SCxkKq@$8IZmfi7TT
zfDk(Udb+7S+J1V59<+<*(}K9^;8H@AvdmG&zBv<wZgX)sAi^d~<>J7pAymkh<UDfX
zk94#j?5fzGPq+b?1j6Q+!SVLQLZFI*i3lmt#V?+pvJVti+$xp6Kl-se)Bbns+%y)5
z>LqRf76BRIR^8drUjK9N!H`uvoxq0k0&wXj<qvDxtuDO^N67TR8-Q2olkWDYX1%v0
zYlbY5k!r|UW<N|^zt`F)x0k%W3it&6Yo!HgX8JxWf6~Dl#aQ{rpVn1u6o~6(=N;^0
z!AP0XH`sS4`_!*{4@M$X(nk)c=;2cOl-#uho4)G;qp^XKkQM?2IdaW^y4hdE>51ky
zHHqCt@F~sA?q<Jr1z(cF6SI*(MF<xBOE+I!WNj&JInma$CS~?}E9oZ1SLDW;pu~5{
z)m_oSF0cA0)Z{bY9%g?o3>VW6M7&r+Y>e4^z$y|N;5Q>vt5R#Z5Zo4B6}?Vw`&e&F
zep8UO@&Qh*+flZU54b?gr{EQdTLMNd_xSzR&!@3iP#;_V9H7hQ^31n~+YecZOX(;v
zT1xR^T6#C}-3RnRKINjJZ<NUA@vKi1`)o*D${iU^$f>BR=Kh+b<L=^@R5F$_!p6M!
zK;pH7c_2kQ2;o7T>X6iULef$w(KuR&t1n<|Sz_fP=0S0-4Fx5m%sDghl#6+b5=Sf`
z0{6^pO6>A@;!^Ok2pLOMU}KKloEZ8oaVd9rB%K$~tLOrBQR3wGiAzP8n;R^PXvzNt
zwTZ9p?Y)#;=HqrXW_@1b9n0O{l+6y)KHXH;CSLP<Z+Q!2Ci=25RSk)M@D9r+#!6at
z<Eh@CILS#`3|=E71mGoN0v|rfYVOl(v6Q6{^qmT;4+zaBG{0sx!rBwo_lp=7jFfjK
zlC#ZJm-n(3C-B%$oOT3@qxdlUUu|7EMrU$=It`i)B)(m14Li5jV)l)xS>mf|uC{J_
zhToAH8$r^8J({$Y){tHLXd*m;x(U2DXRY<?i#(Gr2Wpxm=76Vr23npFPvN2E{4`{Z
z4Iq}AMJrQQ-r6&|OxWZh%S53Su20I|tzTLfUC#ShbgM$8+*9+^&(>edSRcQE5DCkD
zJ;zEh`kRTU15|j#LSw$%Y&~}y4<*V$XF77cb;dw_00|?P8mK%x-zxU;C<;r7O2G2Q
zs<ZxUU3L!xgeA-im0R3iD>}=@3hUeXI+EYS3ZW-2OtG%5XFXCEs1ET4BF59C8?ARH
zC={Vp#7gS4i?6a4Ki_LH7b(AH4hsd4L#^*O>Sl)F<^?{otgO?l+xG$-q~aQQ6C$s<
z>@BNcr@Lu#bfhg;QlWL<G<_1irHQkwKQnbR`8DO}ee$D4FIhcT@Qk%ZAtRu<B*~hZ
z$gA)%)<z=TNa8kXIq6GRSm!L|=b2`jYy;YxIvchrDHdkS8tbu)-U1TJ5YEQg5Rd|!
z=9X%!^a5VN=%s>eej~!Wc`Iby7T~FfZ>6F61jsg9#mn_)M2FVOx$*9ecUX>WL7I-B
zR|B=1?zXl+-K&~wF#%Apfr+Df4|Nro(E$pji(T)}fxVGWMbjaQh%T)-$;`h_?!E6g
zyA#Bee9)kT#dKfQv**3ZokZ0}JJ6_vYyCZMUYxXu9~FnHs7*zpb!Fni@AXuDJQ$2r
ztN8@YF5BGvfS0N=zpxHXvdgbPJtTAy5y8AL+0*_yhA2(dNSHWYk4ji8cI5KMy?4FI
z0IZ`$>6bzTQKcUV#&z7ys|bhZSelBfZ8I(!?K!z9S>B6TO~qb+a<k{-bTuL56OAIK
zGi)?|Giih8Kgs&I<;Mtzu^+d!j*0rzYHn%yHN@8cgJ)re&Oy|sTEL*&==AYFdL9(>
zEyZtOuN5$8Yy*DtVLR`=UfowA1~!r`gql;&ng-B*@8r&hECwrlbmh=r^pF6-#bV^b
zwVY=b%=WClkf{!_Wzp-o)s_W*wHg~-V-MEiJoDDs-T`81!Jr*e;&U)*V78g~sG0)W
z*v%xW`2V(>wc1&+0R(B%s=@wRMe+Cs@9{6|M_TPxen1lgq*&7%=imr+7lw5q!)$Hv
ze!un~H`QXi;_Od@U05T+5HQm1>AjQh*(2sYu1(E6$;H%?YFO=lxb%?Er?vTfhQY%y
z4}_zVA#q&k-it5SU$=o6Vk}oQW|sOJps}#Fnnl|{EEi%BgP16otch#&(CMDY#eV}X
zl&;lU=|)cC6-Sz_8sW+K8caqf2ov!xB+oCEyQ*IGmVd1aW#XvSo?>wZXp5B}8E`c5
zj&&jT0#Z{x&Afbr_naw;T0=?CtAW*4x>p7zC*3^X?CCN<ZO~&RbyE7T5u<?kWcHrw
znYf819CQ;9L}CY+Wx)9sUju3TStfm?=bIUa0Nsz_^}Q>+k(c!O!Dd8O7d0b7f(R)O
zR>myF^nE05{7CQ0dR}7;-6b|;3XhZYI9b?aHPp`z&82{`_&X#rbVRAz_ra4kXCeW-
z0D7C)s`1Mp0#%Wo;WnpBC*AP1=RMuL3Wcb_3#%E`f3u_x1y!`=rJ=-jU<;y!G}<AT
z;*IT|W?R9UkCR#q0=2bb%r(|l&wer3Vwep{#u|cOsIEyZZc@b5O#Ri<v)4gaoyrAf
z`!>%+my-O$Tg>IYB|Kwf4H^Y}f7=-A<U06(DDbmkMRBXGi$3T7t}2FnQHlc^Dd&Ty
ztO-kc3AhlxAUMJ<emdWq?z$-svJ#V@-S$QwIz};{sQvCB%ECQ?@3h{Nu@L{#aw6>r
zJX3me$~oR5*GbVrZ?Z`SjTsFOMzGu%f^mYQs~Rbe4LZUs-W=v>w@<D5E%$_rTRFl*
zV|xMi$OYOZ@1oB<fq0;M$aPg~ZtLm~+8JwXrI~op!*qPc1dmCGI=W`=x!%>^E4Ja~
zt1O4eBTs53K++}NpFYtmEnXeXb~d}SJOyE0<#;J;UmC2aR>R-GiJtCQRM}I@Z>dpA
z?s~T8$~pSH0H=2&p=;{gJw4CUZW`N?fKviuB=T3RqzP+0YK|9vT{9oiuv9{*C_Lo#
zes;gEWCB;bN;@`53R#9pALTh=Ec4^u4%eaR&xx{GQe4x_-6h^l;s&G)51u%Jp+R5V
zxM^m6S8wKC251;`h&eai3>fCQx=_cIpASRN3}EY^aFOhX^SEWEu4HVWS~G}l%Jf{k
z$lW=&b#_3jvqD~O%k~_HFOY-E7p7q$%t*0>Y|diDIo_Lum>qJ4MBHY#U?4eTcxdDf
zM}RyLNYZ?AdA;Y3OZYlo6G_0P;Q-ZSxZdYn?7i|Vov<x0YGLY}$_TlqRhVR$COvj4
z>|Z_A(WGNyEr@KW@T^<IRD|u8)1ZS|+#*7fiSIXi_j&h;K*3NG1Y2SNa}nEye&D^g
z>px&*4${;Afst_WmN7OXi>L?^$OCIb=$Jg!+jq&KyWuWed#U%R4TnBQwr}-$6orW}
zl)4kR=rHuBnH8fw4(Rc>jk4@Fsy*~Y72+#F!WL*NItUWjmsR?WgRYPkc8G1JMfxHx
zBD00CNmDw)?Hib;hL`|u^c^R9sr@hT8ZTW08<feBJz_R)@`iuWf#DR`!sg+p7>PNs
z&70Bp?{FkGv#oz}7zA2<C@K&hR^+*1v?5<CGf;=~h*6%+;&2Ap!ez+dBqNyv3q7~~
z`=9pK`T<ZfhC!~_g4M-ua+i3=2zwJ7D1ks+V)2H<CODM&KY7;w<EpVwL;=PLPm{vp
zm?0?lkYzr-)@#@3bdxHZLY4Cf%}0FS_pxV-Q5GeML$0hzR4q>Rk)B&d9kNFv`r3+Z
z!^qK-ASE$|ik#J_(Hr4x!TSjzOd!E|?q<w+XL)9xp-?$J0{*(<CX^!2^t;7FuWZ4F
zqChDDO5*v+lc3&@5A(jg+`V$B&xF)a(pH{-bdfhBpuj}q!)=b;3fTcBu@`?LA0}mp
z!lh_NsIa-xBD3#Ro)f3)w<m>grj`@i3rRs}9zEW(c#6){#-W9b6?JF{0cmw~k;m7g
z!u!zc`i+Am8a{DtfoIUid;%q@MR=0((G3f{v*hAP;lff#w(@FfNYWJTQg7~V{Wd9M
zvxPolu+B5d_1+z>JmbPiqm!^WrI|sOdB1i^SL-LFnn<gBRt!qdj&Ki9b>Oyz_jup>
zMprwvDTpQ;^`Eaj%d_%iUFsqC41l!WGdYV|38R5*gNH{XdRH8#UT3*#oNH}V50f14
zomYC7;ARxix46r5#eyG`Ra;S;pamqe7}+3jMA9A6B#5@A+K|NE7G3Ghy$rZyKsX5>
zse*P=ge%><^+pBOL2IVZZ;MdD*T>Q46gv&kr_?Aw$m=}Cv;2R$(}^^R5E`JK=hgGQ
z+r{&Y?1$GKH)^hUgW2Ks@%o9_H5BK0TM{=y(vX#hzCX+pSIESNM1bVRB0vs;1eqpy
z@ryK?fdQ)J;8a#-WuEQpxmV&bSh{*xwJ&xn-yT88cCdz2B5Ybe5A%FHnNPM*K$Jlx
z0dKf2>`9dr9jFUMB~NqdFP`tS^-8xM3BA+P+8jw+EXrxYA`lqfFCj!}f<x~v@SX_L
zu|i?Vv4SAk6lXO{Dm@#fvmz;OTowAEqIO;c;{Zh#X>!)zdvUzNax#ZObv}Hj>S-dO
z^Re^1e%GISD3cc-UzEuM*~uX)jfjth3`oD(F~BSOyudFA8Fpj45Z*FO<7u8Rcj#H1
zCQ<Bq!L&Zsfq3tHqFQ)`_LOc`Bh-U?G|F=c!aC0>j5Rv|>yzF!(mArIgn16S^GLig
z=XP7<)*@=H$lWH~g5qN>*v*F}La8i*yw3-28s|w^q9^Fa;Snz<^74NjFQu{MV5L^7
zu3zGl;7Tc9diJ^c6KoP;m2?$lFg-?j772qnRE9|-7{I;2)!44a)HMXEnSbVIy?(hw
zJ;&5pmkOC?M3H!xZ^JM?mSTZHB1q&Z3Dxh8NxluSbeu$@5OBiFzrERmB7*YM3AAeA
zSEPoQoXxK!^&1ObnZyPLp6yZeZIS>~qs^^Y@D)P9eWN^m-FO+d8k3g5px}t#G!FIL
zv6@XB%%M4+Y5(&c^LvU~<HJ~q$ap4Ng*?e@@o{uN&|AJE(F|}9N%N()lX-Kb=Y`?P
zQRA+}r$*`%hy5#Yir!D@DhPEAMe|!KnvJ<&Nbh0A3`<(0<VIbzu6N=t{txjHAGJB+
zuihuGPgG(aV=x>~l$7)NHdhK2UugerBiITOH7uHcq;*2b#x3*Q_o;hz0)ZMzToB`E
zE<fGl<I)^FNe;FwWZwo6ms;-kK`fp&r@;ovo0b?63Y(b1le`zV|GUIO97n6ZA$O=^
zE&)6Qwn_amt!UMAy!TI65@}_gnbE!Z1z>XcH35LQ>g|*{4XHxL35hJD);7m~V4Qts
z(LXf#gu=PC6Q!!~KeXh*VdA#rf!`lo36m()|KFR)nE(7Htx)`J-W-c1RNDzsC7H!^
zelTh01KNk=?~4I?t^I-iVVFkq|JPbuzWBFo5Z4;p1_VR`^recZ3K^@HBq!ajwLuFp
zgJP7+r590_lo5XDE-e;3nal^2X}SbNe<y9rr1UEV`K8nrcD?KG(_a=7i%TpRi33mw
zQV#rP!SLjcY1%&kcPl2{aVI2iSfN$KiGsm&P5oT*-OU@%B}=~=K8t&tnhi8XBy@=P
z|G5GBK?8Voq~<OqQ^hTSL(kBCC&_t=uaf#3#?gfEo-`@xoeX_aKpS?}C%Ly=?(gO$
ztvpQ+0!uWp#7Je5X(~SJv;Rn1`H~JDT!tD78tu#jE={T+0i!wq>7koiI+{HV6NWsb
zZ_(beR;u7?GkN07;s+$#ZYza}kxC)~q?U%%R$TH-@`raTh>8gYA;1R6W|FQ0dE&-h
zyZPXP%~1Skmj!?@f>XfIkd7OTvM6g(N`?VLX>26M>L7v^sTO2|a`U5Yh6vN7BzS0c
zIi)tmR>(J=`!J>YK5Z40KL;;0@I%*<E<)*M<<69i3)qX4K#n!egQK}!R@_#2^JF9G
zQg?+=+{3KyXX#91pfcj!rCphXS1wqQ^5W_25C>+U4Elq`pJc5xjwhp&b@>2&r63@Z
z{%m744ei@SC|@{IFG@bglx9w7^aK-W2P`i0ngIGT2`ds`wIIdw-#WJ)F|G&Mv-t8e
z%m=4=n>MC*L7ytdzkn`YOL-P-d=kM2w+3a0c(<<C9}KM!9#}Jn7g^5(W4&Lzr_YDY
zp4}jF0W(TUnw9Te{+bS`=?ohz3GkFqA+_kz9xr{ICf}NXW4Hl72!?x67#T%^U)-bg
z^EBy@DwqgB@}xvN)g`~TZfo|3!6nEI{s`Jlk$@r=`#sh>Z&Sh-4<eFDtlt*3CTJb8
zKe20XMJ)<`gLYWB2t6lI)2xn5{`fFz*9-BgAjFQ_`o^TBcC-}XQ$!|E3zUnUg|UiL
z{jw>Ewy`pTFAeR8u4MikiRq-!PvYYY<e7IcpULeO$!2h`6zwQSa}!odypUcoS|y6t
zoh0D-S1Iivgid>;_{C%J=*`KSZ`Q};CxIbKYa|bP)iSABA8nh!{UFjGhXhgXru@?6
z=^yLJP`ok7)D)T#H65yR#M-u3fSPkHR{*|WK!q`sYT|_XG4_{FhHEFJ(b1k?QX@Mn
z+Ve}c-1aIHP7tf$FAeiXQG}%ebzc-%seAw;WtdZ}<Uv&mEJ|8LqCGN+j)v}MelK0$
zWK!%m*q11TYorBb(vA918c(qida|Yw{z>%Lt4SSPO4D`?0I{X%EHgn_E9GS6P^1k<
zra5MR(y`l=I!K5g1d}?RoY38Q+Oh=~a!V<9j8`$r0Ew3roEGq=8^VYW-=tu~sLni)
z7_<lG|K@ycZoouv)@a)UVy;<mwCw>S1z|eu@M*D}`OVAAlOOA%E292$^bNwTxC+sB
zvAiL%IPeUm?)2(<EO|><5vvGFT`ylZ-~5&Q-Q$WPlkvx~SlCG(FsC$|+k=WtP6*7c
z4oRAcp-kM)mHO+0YuabVYTEPb0;<J;H&|XI1S9Un<UK?F;f?GzZ;ZosPFx)F3i{Oz
zPbbG+`wt7sZL=U`{y-&}qudSbRD^E+mE1X^?-WviAM2=FhacJmoI31H{$VDA(h310
zBT-s%(YWI;9GAS~6-APRQGrCo)}C)z-o(;C(XK2=`olTN9X4pksQkHAN<gJNIW1X>
zt&6{apNcoKE`X^6sMF3wT1kyxoHG9chys5FgvQ}}Ci7Ly(h^R!D$(jY4sL-}gVw<s
zXC=NXRySgx)u*G55NSfB1J{ch21vN(hf&tbuRtO#5`bO|8OM~yeNP>0y_^b4q?t)b
z<&YTyI84`JmXIs3VYCE1i$oy7{2dM?o%*(7;t0sG_OqZb74$CLnEd0(`unkgTDMk+
z?C_Hdle;_v7+aVSHyv&lWkSkRs5URGj)Ya|wt4c7luP4vp6Jz(a_w!dM$1#Mr1ipp
zS43+gq0s5Q=P$ZGoEzk-!==f0H4V=uuY6Kx<+f|@CUeVoNiRLEzbpvyCI=!dn~s=~
zeD+a_>@9`l#gr2*BrkZ%@xh6rk`|VhwZFUlMFfSBWpLEf%##jMX4@;t7v6H5#ClCD
zC!zo?`;X@2qqm$OwRogMIhvdK?M6FgvbNx+$uU*@r2l+Q4!i_q>&&06DewEki1j1u
z0u;OfH^?AOW$H|mvCDe#W^JjRU(4~xYyK=@LE43T;ww5tCVvRSmbAPekeX4r#53Pm
z>8~-V^l_@96?X}<Vu()#sj|%WSFNwp{9&+f94A7Ba!`&6OzEi<?anYOKC(P#`NOR2
zG*mi*)?r||8L60x=}o=XdbOX9O$~%oWvN-Y+6Xn<e7w%;FGCWGSW83b45kyRe(zP*
z)qz1_=w5MnE(PAw@=`g0Y%}jgYx5U_!bqm#+NUF0Cf^X49euxb>dk|M8BavWgy_&h
zFHc^|q51Uxtp99OhCG6c#B1S7tW{Lu%u9v&W|%8G+0TB(&ajI^qov$=E-!+gWj9-^
z)-ow=M%iu|F$oy;(ozYp%#yLJ*^J?|AQ4^cUK!D))IDS;bw~@7949cQ92j?(x;cDI
zN?qMM(q8#FJ7zQ-YKll%wrn6Q=#}t?b<JA9k7=qr#Ej@>Y!2U8<q~V+n}fn!h_Q4Q
z;cjNoiXHJQT|(o&euSkHJQJy*1O*_Whjl7CV47L|fbIOibkGm_E4qW^d2*VV8DAV~
z_x%x=P}g-Xq1HqVjk3%P_JhY82Y^^s>1!fqFU6&M@3C@*Fcs0<M1Zq2^tn{5`Cvt%
zec#nOGO-rP6zEZvhqXcPc4gU<9st*nq{B_pBn8wJba;W-j4D2zZAL(IT^JDSOG#8V
z)M2i@^Z+kqno$Hf;cO7VQEy9p7WOm$V?;dqG@pr{JO;h{t#3Gao{xnmE3mOP3E=Q#
zud#+LQLG@COn}3>7~#$z^MiHeF2#v)@Fxy|bJff9#lP%opvGMp8)ytu_=Gw-@`~R)
zev)%ork-mtw@OMO2@+#cOr2ma<4BoRR)C=+c62D1E6%fiTc>COd=S8Ks$}GX3Bb9}
zWA^icb~v{|OB&y!o3REcZRM@jx_O+p$hh>$a3x4-uwA~_^1rFjnaBVNzaSP@Mvi;U
zP`lw%1?w1@jz}d^b8=J3L7{x-Li?@5(!vOl!^*&9w;M5}i}f?>_^+&iuX2W<xyUF)
zJCby)AOt-=X|SF+Q$Z+e!32;aXwE&mxY;@i3Iw2J`BjL(atVacaEnd%cFwEq(!zvg
zj19XG0cF8-F8T`V((Rm=w0lS3BmqDUhF-f&3wFHLY%O_%#pDV_z)70Hgn}4jp0<7&
z#OKiafEB!&95=KRp%?u2?JupA=c7kZ86<gIu6J5$hDc|x{ASJmPTv%u)zwB)fi*;!
zH-T{8H&(m#`lf6{(lP)KCaLar(GG<)Fu@Qk#76J16dE5=Z13I58WF5Q;U+>eq3YZ#
zspriJ{re(heBsR0OBNlG+T;=;^3DwFLt54Yuklz!Bujxx&_Ye`v;ym4HH4Un|6Y__
zoEg%8-0e>)BNH&wBmYQobZ$oX%dAzux^LhdCNZ7gi!RpV39I)9`g|;BQAJ2ZISTWE
zYHP;lJWT^TB_2_P1b%$GWxZCwa)>~z6v;t7gj<TNtGnwOM?*`{_E`&9$!R}&h4mGz
z4_Z(xk#VBtk<khK-Z{Yvd3Bz)8<rD`ZkSi7sa%T~!YicerJ2GU>(1SW?wC5ztvkk?
z7bufTRJtx&XBJtvb<?jGlDmntW!jx!Ef-0Z#v{m5RJ)M;EmoRle!Jaz^Cx$9ff^gY
zqM2q&!q$1)^)Xr*m0%^Y320`Uo36255TPJldMZ^$c#IsEZoY|F&$<Fp+kJuCv3(tU
zU|fl`*nzR*0t7Go<a`|!0a#!#JNm$(TjrhY*gMR2FvzpofE?9fp4<_ci!Pj<t@Znv
zD~$y=5EZ8g#y1J?6OhOeaq`mYL*bo{oxn;Icnb!o4W<1_R$d-*jF@B)L<uFuFd(@Y
ztm2)%*8YJC*n&W*$it@Hf2=QP0>{`S=?bMN4d~eK>V?*^0%|lBE(j-s9)V_)W-h-o
z`F8nYwtP`u(0q%WSi2aW=QB5ULC{<@#IC0%zkyOI6GcSP7yU4^jRaRn%_04{h`$ik
z%aaeBz#2vTq(^$aM7=)vYf`@_nZi#DYD)u7Nu-H3;6y_u09Nv@5Cq-cB&t*&)V&F>
zL)4VUJT#uho+Q5qfBZ;y+uuqF59PBW=dm8w=qD)^nJsTIbkKx^u|y~2N4T%V@eB5D
zzdYr48l&<|#X<>B5Jqyx3n@F~Vw1TSsSvG`FXIc%HF+PUtl?1D1A+)%M{cCZ+e9D+
z0y+&i3K61Q2|uB)we+-O@_g#L0-DlwDa-%hK^8fUuBnm+kwW+*)k(q2cpsK3m70Xu
zqHUX7<|Zv@)W`I0V#QHQMLKpXMES##t|-z$I;As+%?BLWRh?9@NS{jUOEQfqKLe2v
zTOStp4AU?%>5WUG;~*SA;4O4ixiv3OO1l0|9YY6;(AM5X(jh-3zCT?bPpS|HKutCD
zK)SNSFh>kY%D+a(un-19+VG3cy&@5vZIafU<IdK)S+NGRZk9AQS!0dtn1f}EhG4P;
zEawy#0lrd50NL}qUy>Kq>Rg(KNdy^S12HEgC2hlaCIH2tAdRDRH;j^mH8QE|%{n%m
z($3fp=%HN=C=g75FU4$VB9W7H-w5|7f=6^g6@LbkOYIc1>)k{;W*=-X)zgaEOJN{D
zNvskztcaT;`jhsiKKLb8+G=DysH+}Dd}1A);GN@@9ugQ&dW%r>=eH-HwX>h}#cI<8
zN(7cz7hxehbLCbeXNh!(<!9NwynuH?S_zA5gaQMss{PH$N!RF1BM9CTu|ht9t8Kvd
z$zygO`Uw%(VvTIM#j5X`J@M8}SP{7rBM`Gy5fmxm-`}VFe1tw0TGtdPRjMRrm2^>m
zrQ<HI5PFWlWg6C}BxV6oVMMIj5J@HclmEBTk9iXllB*x{YCe*?STd2;%opvfObp%p
z{xsz1Ci#@1u<-a#^r{vFLUSn^#Y0h2g~<M%awls$gt`*5DBLniUH!n8if_Ea%}3pO
zD`ktLUziY}v8WJkEP93%VP(gn5Ww}66k%ND^d9SKbxPMgjtXG&!8$emaBE=)eKH!C
zqw+UdJw=-jw`g{!Y=NsqJ{}=gob9A8mcPCJenPk$c~MA>6b$J1Ws2`O{W)|rVnMSk
zj0@aklhW7f`(A9zRjAKGoY>QhZ&HR^`bK_bMHogxrz5WX*N&AyKYO4?2e2CS85UVT
z#VY^pP$Eq(R*Xmkc-g5!7@PO0qXDBB2g(IhTvfIcvrvodHBYG96?;>@n8tTR-6HzJ
zm~(DSIlYpPNNvO#taR9BXh6iZ#X352n+{B5YxQJxAUhFZm5$`w)R@$%Kj0uTwUxF@
zFp)pn8c*k=CcKzCct>>jpK6nO3!=$874_<0FcqgI?LHn#Lg8nz9HKBH%JJ>#?NV+y
z2lFMDDnfb(Wv}oenMaRF>2V?V0Br{tagbPr%t=F1?(EAHV)sFe!{&o%lx?Ooq`W_w
z8Ho803P5QIH#ns;_fDRW*&)s|<aXkIp+Y5*l&7!LAq>H=ck%X~ac0W-EA&|b@(;%<
zvyiH>cWlZ!7Qr+vzeO??p|ACg;z+fWZb5xRK{4UllrE3(hV-|u#KO*J#T}4m-b_yU
za<xu{l!(hPBqvGaFcG`vh)~M$SLsVdn9%t)f%=}5_S1Fy1>B*S`5BEDfDEfhx#NGz
z#U_TU2xDSLOWNr%Q-Qt=UdIY)7WSW%V+!@@sAv;;Dv3g>9=$H*W5I5UOM(FNq#HRc
zQlwN;=ftEM4k$X(#0i;~1}5#`>Oju_&b-8q+RD80YpCM^8CU4^3nyh=r>`NnR}<+3
z4~0!Zk`Wi^r8hq*A3q=;GUnfZCMIzg_<N$X)~S_W<&v12)6!oY+C=nIT^%Fl^1ex8
zU1L31-le#om`T^KP5ifXMTh4=ui++80~l3C7Cq$6V{?*n>UI9nVa#roLWW^Cxa_Gw
z5Z@uG=olRYO~q@)kO^idor@(+_AFDm3=Bl2^-gutbu0DfLn##s6_gMKgp)RVs1XKU
z%7&$HuMiWrZ?EicbQq9ETfIYn(#)!XNuoIDklY8E4Vbo>O_^~WNMt%6lawez{lU|~
z*zqp3Oe1Fm_-M=^9L7#s7kB7lp`5MLLlh9iVZnd|Vv&@zxrhF~Wf~D=Tc^?X^|TLr
zEAdp3Ff)joZ2<y=x^>>R2Pw2V)+qi^jPu7Z4p6r`K%pzy|AzyVaH|-nKj;myd`Ab+
zs;TxVybN!iH11x1nAJYQaz#F@DyyWPyr^!{6as#<@0R2XKZ5MF2-nh*IVN1QjN%Z)
z3oJv4#c7;nez+>R;Wo8=OXX#lE+g4lNbqL<^T}&R=?FG)I%mL(Ky~xdw&d@!^fB#(
zQF??=VMRyRYtv2`6DHX?JVyjbH+!}x-*$t(0-->1%|&q_X`p+`$a!k<#*iwd^e}e{
zHA@Vp96k=xApt^V<s7A?$x`6hByLT)<Wxwd)U(1$kL(CUa^(Zhd94|<lzTwtuooyx
zdF<m9F++nl=sn<rJ{7(~#Rv-i<el=jsfde<O~u#qxjS4v#BVm9F0Q9px9BSq#PUYT
zZE>$sAUn-GnqZwbmmyg(W&mm6S$liRk8AYT^wt2T>RE-yx3fMyQ-7H+MIID*;`Bx8
zFP)ll(Jq!N5g4r@29VO$5Cf!$GALN-)}*uZ^_Tfb-Z3W=oQLW#y^>AGelp2H4hg~f
zR#!LWg7IO%*szE&(A+oqr)r(<pm)fnZS&6PFk&=sV1g&->A2*C;=jFtx|$t(15k{{
zaf~q+x-CqE#E!x<pg>~eA}>?!Kjr+2Qu~URcT^}sGMAXe-`SVa<G9oY@EGqFHGz2)
zOtTMvf1s4S8W9apm%Iw}_rvU)va~N_+dgF&$Fib*%IZveDUUiuf_2e%r~-^~l5XyQ
z+dgSRm-iiQMK@JEfvDQql#D+9R{OHC+TD&4o`p0e5b~Ts$v0~Lt+N`^;&ZQ{QOO8~
zh;a-_kyE^4thDDd_G>*7Iu6qQ2nAZ{iu&lNY?)@klXm8=_@)ioB0&n(=zFnJjr;~`
zzG;oUc6aPIs9>}^(9kkGHHf~~y=`B!D*nuAI{BCqd^Lbo8!)7q%@O;GE!wp~n%p5#
zh<iNR`jGN2K>gAGTCcs9@b&514nj)KOXwq&!p!1Vti^A}2Jphyf)5gaO5iKDzzp-#
zOIFeAvGL*L4wkTZVxHygTr=xsYw3pAC_&YfI%fb<cHwK**>ANBP#%%)G2>AhWf=G9
zu>V?LKdZx1l`<S{3zaFFtjWB_zUPhjQz$Me_2;R!BN0e>$Qe22^JkppZ?->bk+vNW
zC|X0q^ijYXnkJq6;vcXI7If%OIYi2+OF<b;Fw4mmPxxP3Q$D;t?(_{Eq|2W)B^XA0
zpf+wv&y(6X=U-!ee;~f(S8Yl+vL=84MgexLZaY)0sb6aWb|$4>YjuRk1L5YPIYGa2
zO!n%ORky|+f4sJ(BC;0G99D0lf=tmStN(-!H{?*Cu}BIbNnj~hgaCEqN_%&Q_;qv@
zqfHAXEASVvOX6Mu&T~(u<bD`G?qqG@GE_)(DFhkOM<kpVwx;auno!eM2glWLS19-?
z^<)@^oORura&dwVj~U6$!HWh4=1DyN3oD)cBjX>hZ7*Ff3W8)u5$PsjZV3N}U1Qyx
zt{pEZOg|Du9X-7ofr4fbsKhYyOYK#s$A8!f>={K81=a7PJr;=<r{UdMkJt|%-(}-6
z?T%O+h*o?gDH2Zb%suv-yE;cGQcp!t3Cd({X|kQenaq8_3jQW-eWdOrl?f>^N}lr9
zzGEW#g!qmy_Uu?2p6OeCgPPo*hNWH}CECrTJ-)!r`iv^!<?P2y-s3y!27NLdr7g0+
z&3!R{?(zL_wLYHESW*+FxvaT&uW!p#cRu&i6a6EiU*D2H8vCM}wusvXe8A|2xBINW
z>4>kUYU@7Otrd;&0}0>@rtfblJ?6(9v!O$-uo<btf<X&9NH}k&!M-0Bw`u=VK@=t)
z4)bHZGqajHh9j}h5MScn^;|k=nt>kYlndh5f9#f0j!<w$N;skA(r)4~r%P2r`KET#
z9gQp)+CCr@Nw>JW^X&-_#9IAnLlT~I^_QjEGh3eHA14r9O2eA%MfRi(ajOPvYZe$|
zgyNkflS&Umb7GTy^w05H;B|z-2tpr5%yU_6)!env?zlsTCUZTd%T$?517QgC!;H+f
zt(DRfPb^AfiS?9b8MF<-D3NZq9p?L^Z<5?VzDMq==2s$RvgI2ateu6@VY8(gYpSXq
z=E2i_kNu}x+xo38zKaDX)*vVQUq-Hc5x%;r0Ca}zIl`B?yr)dEj=MH)&Sl!&tBB}L
z$*3fNle-ys*vf4mm;7r7Dd0Itntr*cQj{^lZ0+X^o}qQ2M^n#6<Kd})iP8AzS$1=u
z4jayL+XnLv901Q(Hd%p7rrKR>skkT%YI3-O%9M1bqdixixpK07W>+184CE7FQ7N^O
z+*mFD9J_G6_75GIZwL@5vnWYVNj7O1mu=EMv~yQz*92;6qoJz!0-I9f<Fu9bj?^xj
zxpvh49ao7Efs~Es(|q-UJ$z$a%`V*<RYnBPR9_#PKFZjM&b)yM0!=WaoB`I4H5}GE
zq_eYjX~HKt?e7MGTZ_tL*`P{NjV~o5Q3@@Ot_nx56uwAAhTS{KBiAa-U;|z9=7cNg
zAqiDUGuM0U>F+1}HcngQ#wsnMk7d9s&9a5|%1fj{&twi!qOzqioYWM!WKU9l_ih41
zYK?@Y?F?5#^1^Ulo>FH&du#`3SqugtHU+VtftL_)M3JY@vm%`nq6A#h*CoG!3d0c8
zxAvwiyFYHrV~Pa~QIdN+X=sF&K#A~XQbKmIb>-f;zSFeUGsflG07PD>YIY_8|K^4&
z`<3>ct7$w4eFV#J50VDKHa0(IKUx}Jv>wVgme4&UIf?IJ&NTC6k-f_8o+>PkPl?$Z
z*%(vCWA+oB6GRrE0yuTm$lh>KPns;}nU62EzTfFKSsn)o#|G+-5}?FVE;!L%*tv7h
zENylxZ3$y|izJQ9^>UxRKPf)`WNrAX(eA|7WA4Zy(mlugXjwC>W6h?Et09n*SBI18
zhfUV~9Xh{qa!0vFe`j*gw^^%Fez>89$%U!?3g_VlbF(FBXzmK@%!&?I=Eq4}-zkkH
zT3~~2z$EUxdb|C>5nZC)fTdN-Y>f9vT8K5~$*XNMBGyNk=yd8N3NK_@%!Oo)wOejy
zmn0mqUK!8$5dD4X@O>b_<szJz{AG5>q%L1C*FM8YAJo1s(&AS+QrgvAV)wZ%;TyVh
zvLxa72jws#FtG239<iU_6l*vv(O9_crHHTOBIHPY%?&H<&L8Rz#^kq=_pm4c>>qd8
zX(e4&kJ8oQp(0&MmX^VdscW)ditA$2IT?=WN-E@?&12M0L}|uF_8(9Sx34nt+U#&m
zi4G&Fz-pF!YoA+~@b=brQbBhLKHVsRC5$)MRQIyqemdd9bNT30d`A$B)6^o2WeU0L
z#6Rrq>k~2>+ixixCRdz>hF~OJX_1p(Ut;I{obZ#|mU#@9NAi-SPYMMPb4=V7_Ju#j
zdOa7^V9uq$yCw)D&LhDtSz%vNq(?P|mNJdhW7D8Ih(6WAOUmrhPZMt4sIYDkZ}BaO
z<gw#__6N%nvhRTq6w=VMRHZUW?awkFo^Ka7CJcLvtH7j6j;e5NqUa%sr<;!F+RMvg
z!^64j(ThU6PZ-!WrFP+lgvWUq7!QM#(G&z4NfeHp0amF6c6?{|45q@)DQH<!t+rj7
z!sIwdZ<m$=0^uUrD}rkVSK8cotlj)t!bw84WJMKVG86`bN`{#^$^P&OT@8>IgwmRY
zxIB@&T8fDave7XP*<F(iC5M`9T~O`QhwX}A5=PPZS`W2^FgpsXmC<~LXi2Wg37PiN
z@0DCK!_Z&}i7nLD2OIM4v_Cpg0ncZP>!^q2(gSqxoOBcagZ*K&j|1J+iQ-oA6O%Lm
zy1v;SaAFtj@jzP~;wr>vgY}lk@h5+@2RS;#Y9<8S9?TNRPHS`9UVB19=?l8h@j`#l
zS*80!U)#>wETx+jXyjw5#DdxjWyuQL6?bbZTo#E3%@W+xt4i-d^v5|X?6mAIA8}Qo
z?AZ9hy(pv0OP31xm)~g}zo5efi0<qj%z^|&cS)z_JX8I&o!ZhhTq<N(+QXVQNZhrj
z*4gEs#x601QRWD#75{abdHZQQZL52ILA?c<)eOc$Sr*N-U;acf_8&xEB!?D}SL6|q
zTZ4`6EgY3|hH0AR6!tx+emfD#NObl&&JkC3kxl}tYq~o?c!WUCOmLpOwDZ}|XnE=h
zk=k-yOI8+5p3H`R&gA;eCp=9@hJ4EYsL!0Ykfs8ioIwq-w_p`Cfr(C<l?R3ox1Gl>
z)fef4Iy6*6a<%k8CGz9UHBO*d`=cUqu$bB)6&z7LSjkl@?VFBP)q|k|DsV$X1Th!|
znE!g#UiYuqDE`+lCO_3#2+3Mym-Lh&w^5U;Dw3abz3<g0wRsbhK|%Swd2O2S`VE~d
zG(?2>hAL}>Byt-=KGl+&5+2FPWl2QRHxM_HnvDWc7507nV6q5e!qLjzi!~;FJk1)N
zSKNLlH0Y4lK*$3yS%mVUoYCg8eolFT7Ep)mtCVKeB{`dq)kki|6Lt}V3e(Z~Y?51P
z9f~*4a;sRISI==a)7?~9o~zJ7_QhJ9Zb~<&TwEP@+#7J&Vj&$kXOIOjO3^>dwy#;F
zVm8g4M64+ZNhrDycPfKJC|}QV?(QDHtuu|GP{E|1yp(3o%mr7?nSa{-E{LBoS35Q;
z-HxjGd6I}ZxT7;{T>M=$$_6Jz@|4~{2xrjHuWzwW8Wn#-XMGWlK|2pIY)W6%TytWc
z^GHBD4v!g!RfX(#t4O6OEY`5@_omzPp3sJch)q&h*hQiAJdsTYueI*m7@zw977}nT
zs!xglO8sZ<<*o7d+@We)`G;nQBs#p@((G^?N@X;A9TP1U)KIZ~`Bj~d9iu{%MCUb1
z8!Qw*GP(X5Vejj&t>w`Qr9=UtI}+QK#cq~7Z*_Sk?xFU;uNe6!Oo0g3fC&8VzSf%a
zpUyvRan<Gsb&8|?!ZUDTQ)m2tDQkDckMG<5DWpnT43FsX!*-u^uOCX*v4jTY5OMg^
zNbBTh;~zd;+uD=%j>EzQ2*dEfe-E$@tccI@>Tm(-jjTFD8kTSktihMXh9)*z6VbXw
zjxZ|=txunbO-Z4lYVH(6xm?8irdhXL6#v`rD(npn&zTd9w%5(bC2qwWzRY^=HCNax
z7IzLOj*}x-Qc35mwwhN;HyF8YbdDnOiL93{<9t6{*eO~Jo+8CKa%N@v-d(57=3z>h
z7@~wVJC`EGX6Hxt_m{_YyQG6C31cwE%61qMarzUx_@>wpH>k8$ilxvqGSgiCq222m
z?Ha;cWUOI=iQ+h~va9z$w<laDugaYjOcjzV&Dfvq<s9ZVW0wp?0*1r`^{;NuZ|(K^
zQTRs%VRKc2Gc&=xr@`5xL%K&`zVbM)_DGOhS4?|v{cScSWY9<g_BEU1rk<kv7)D$X
zYHXhPm;QL%KI=fI4@N5h3b8cF{urS$-Uj=U=VK#9VRAUJY3OSRcHtN8eQ$MovtHGC
z=p6F_F3@jFp|$k2xEn8Um4%WL{9lqt$}#h?MfFzi0dZNql~PMr1I|kt!bz^+vqw6i
z&$X4NP;r#2Mxt!#PJrJw)4b<#?%o>rZnsWC;`RQLkHGS?%oQG|;Jet!cqy?WCnQtm
zn4U*E-#5pm99j`9lQuUp2AL`P%l>w=jzPbu^P)?HeRq#oR~@TM<U(Vokmgo3ktS48
z3H3c8(H{13`=!gUNJ%?8(nv5;kgs79<D5s2i?ut~F3K@Q6#smN>9W^;&*^;TOx?K1
zKD0=~<SdC*2pYHUwiB;$+0-~~QUZgHs!xJwxA(WF^;Vrlt|H}BP#m}(;$(e)inZtw
zy*W_RiL|}cvK@FG$WJ_Gl+$iY=iU%f#-v$p9jR0hS&1Y#Zi=(GYrKpN<%>{XIV1dD
zEOq2PcISniW;g1|QbI9YR;sEl=PO;PUm9txKeDs`LuQ?dq=pBKqsN2;AO7QI`<7{)
zI^EbwY*oc|aGC}&8AF%+h&V_5VQpI;>$%FE5N!mWcI(y7`&e-hK_^O40?y8_SLmc$
z?b{MW`V?ndG0rO~Rs#uP-x=oqilpOL^*ydYIuh2C6+kLpmhXzAI>?g(+J4hlxmG22
zGsXC-mbDiH8Gz%L+EUTH81k)+xD6ADRRWsk7vuA<WZ@H}+k?J}^%4>Kp`OmF``qsC
z6DaInO`R1fbpUwp>h9#<p(EV35olhpS9qMLpwC}nFZ09&+I5nPIEsVjg3?+Nn_Y&f
zy2##feBAkGc9gLKBCBAU**GH!X`5hwJ0$kj1oRG3E@*uQ&}Uz0I~T;YKT0Q@5~@%l
zgzAakzr_B1er!6)(}^Mu-y*tuf&Jo1GI-or41`$tC^O4x4a*&B=Dg|joZMBO6R25T
zje)d^=f!6EI%mg?U4@y^l%;|MGAcVDqGp(di>*_x?r_&FU_Ncm$=enaqUh?d`);%C
znSJ6{eW|w5{Fb(h8JaRTce=H-SN!M8L47ge&QZaQ4xHT2y?5Bhb%=G~90ppu#Ykw1
zh2#Fs)ppJ6v8Gs2c?Y_VApP1>`^F19-@QZIRpwXFj0_`;288VI>C}9w>KkTZT##Wg
z`{r>yk9jkt@YsYj*X#==2-LW!iNzS((*w_@eDOidVvJ*#By2kE;y7$rmtww-U*?*U
zr3tKJMh5Y*m<pax@$8QO*d1$Y(1e%fWSd1BQhsiZ-*loHnp@_ib;-_WQgXM(=0s6M
zlozZ=Ax4X-T#@q7XYt1lR&fH;Qwg`7bb9eLyj)<1Hnsn)IBrXks7TSZ<d7|uZW?VX
zbW!IQx5M+t5$3cYL`%SI{F0>H^tR7^vh)7?k()s`w+R(lMHpCigse;c)49X%*eu3!
z*n%9af+*KKv+xru@ACL{ue$xIT>O<aVs-|WMa!+v-i_OQq1x*;e>`U4!y>V<%zo$y
zwK0K0SR5+D(fS6&=0eI2|G;`8zQg`_wenG4Ly`lP(n%-hEHmK_tD;`j7$}I?I#e6W
zVO81YwZm-R)o~NI)9{EEZc=1{dylUi<L77f)^kJSXMkdS)J<Ebq$P+e9_Fi-S@l<T
z2p7_>dIBU8@fV7O*6lZs-eH}5VdttFJ09HYJ+rmfyAU#I3?42Eig+b9*yTT1Uo^)(
zGDN>6s+7_XvR0wS9hX{Jb31%LRLz@O0RR&wffb}9cC+vEs~m_>TSWU~EX8@U<L3uD
z{z{cS+0{YP6oD6+COp~lC&d4?K))vTsF=Wpg9Pa$ZjaS(tWL{9VJq_xC0M8A;%(|-
zpRioPMTeXsX*;6=kTj$q_swtDrN+!$G>C0c7iri44}b3*tJkQ`pHI;f#u4nA5d9$U
zDG%5mt#AMMkj?@bkw&P_B0b9Z;O@7q4@T<;ArOL}ExJY~HcOg@uC?#8;^+C*lYvTA
zM|mY+kZGRSYmGg!vp`g2<lq9r-B=`ju-91|@9aG1)efWbB~n%z)6_~sF^UW1NyVU9
zH#y&)o;WI>mZ8B~tB`ApQ;tR?ev`c48M3Umye94>ywAJ=-!L~`?woN};-~@&@lnsX
zELfWwtinuA2}(*b(&@-=UcbSqE$%&PD2f-5CY02o#b%M_*UCvtkrIA2Xovmvuf0bV
z5Gop4Aah`%7X=3#_M3r&eACx6n1RqqkUrIGYPDA`%vUUl(ss^oj`2AC7P3ORh1N7z
zHit{F!V(>0K3VU)_dzdt8P>{HB|le~J=o<pZ=c{)T*%_^=|U>YDL@P7z^i56`_75G
zgM9&}W>6~?Lr-cMCPcIx>1Zr52y1_LW`4&9iLu7EOI)S?sFXgfsm*10s`w$XNX+%x
zR;S;C{E)g;D4hf=pwDHS;2>wxK)yf*BJCWgGuk9wPbfWX{&l5Om!qd3MQp|NNcBi|
z^1=?s{}l7&O5lx1r_ETCxeI3K7U#xafKRr3Ai(#7b*VH*t*dROX$OZzS#px?5p6pA
zHYMn$P76||q(V;~!V4fKd3=#?nVTp*x(2}vQ!BRBrdDyHSfuf*@{?|_JMBiYEIv;`
z3M#2%s)kqj%~L-(Tlcu@Vp6K65YeWvz=%libABb|wpMI*hX1IG%&)0rR>iwi0+3Q!
zVaa@1B6FR+$GKpi{;B{QqBOmg+z~ckeuVFa&U{^*^z|WdLtn*gBiKu{BVhRK4`*LT
zU0@OIYQ)dOp%C))i__y%mM4`t5CJd<(AkYHa{y%Zf1L<e$CifjRAyzdQq1S%Uz{0&
zj-WecMe2@(Dg-I%#K#6Xe`#Aae2=r_U4BDCEiIeTaa~Z;H<RW1-f{X*N*skH0S`7E
zVk;<pCeeswwhnQ|HSx_1k$uolK@zlh^VMeO)~9v0@xV{uSi`;~&fdIuz}X4l3&@D1
zV}Zbp!q%wNsb#@1%}zlxXf}v`xpVvLy+;u(z?z8zfnAY?VD<-{m7VnMBHosW6*NTR
zx-WEAzsL75qD1Ec(drbaB(du@a}^ZlRy%(@(&mR@_$yvaxq!qY;m`zcnUV!;obQ~$
zlw789G;FGh-X@^|^ENt*Zs%l32*7zvs=TaPVs`wd->pv8i+VZ*p}HEHpkXMbdBT&<
zWk2iFLXqmZd;t=t<$M_D?)A9KIreZiB@+rHW&=oS93wUp+X|u&bk;tvFdi>^ZWM1k
zk5B!?$$N#ZP}mX~ksA<&;~co6I4vcD*?hmpdF^BUbP?6j1%n9iV-J7**QrV8lR5Yh
zgP204=!)NLxXT%F7QZHbo+Sux6+EE_tvG~{y9K8=ckt~znK$u1La!hug7hE^0g03m
zqteEE&e=18P8ufT5`5fr#dQ}3guzO|I5cyXaPm55&=GnEki2KhB2d_X;l?kW@jgC~
zCxwmC|FAFhobP<gYMK2sOy)tUdxi0qXdaV(y7M8R1x*OTqfQKxA;^5>MCZq??1Ky+
zoVy`9x)ZSl$WD04>5;7a8xL9tEfQkuH?Qn*zDeejl7(Hxei*<^#m(v3+2?%|7=!qH
zlh`b2WGzkvzq$BqXU46}Mf5U<R-0N8pn)D{N+FYga{qfyA>@rKgQ<w>D>M$3E5p7w
z6gszFt&5<zRqURzY<6?h`_4(HBnr+=2*GoL6?IKea9PMPJDl$xR$#%gf;`3<Asao)
z7Z$QBJ#L7hlv5&On4NAt&X@73A_xAdCijpKgXI*75b>J_cR5`SV?J!08XAE^h*kT|
zfB)s&_6CbXrNR&{K}C|w<9XYj@;RTuOn|vkBt0<<6M}c6GZuy;>=%0&z;U^TP&B#7
zoDfc=hn?hEdYn)tG&r7%+067F>eP(Y=cB^(?Gf6TNeeYh*#YNzTL&hCgy{JSIw^Tz
zcFuEBlb}O%)uHz@@d!c|1ZNJ+bLQ^UYdu_uF*ll9EN}c->!b*?O*3Pg-KRpeK3d>h
z^$t&ki&h64mFo(1x#Vc4_98tr_af4gMDD9l2UsATMM)?D>gSJl&ZyO+7grYRaGP(@
z#Nc-4u9w=pU$P75hRDPaja+9KQ-fmTsC!(CA4^&G%}4w0h1(QR;vLIw8L17NkmRYG
zi36QU+#^QZwQzcLvPi9OCLdIOM5}qYw%>X1Iz<bbg2Sa!iBW{Q3w8j>VR62%xi%C6
zcBjAvT%C%EgTt1@A@lk^r{PSNOR4UlrQ&Gpj?zK~X`Eih`<#qYJz(@rLYA_GN^E<=
zxw(OlX2a{b;Tnk{k~DCA*x5Htmm}9jDTA;P*Y@PHwFUc}?(NtXadUyXnh@kxYLybl
zvd8Hv+f7$tjSvIZra*`kgDbZ?PYbR{AtJCWRn7w9DOG38pWixV#e9=!e~~Y^=>om-
zH=KokAtz-bGo!X(%|{yE)Zf?TFL%FSD8-K?+|X}kf9*UG;tYft>rF;h0NV2-;#|t6
z$fDo;mf{=gk{K70$YhN!&ww~$Gyo0d_GE;d?tA%wP$O#KLHWR(dKbY&b29IRoy~%$
z1XgkvLQTz>(nL$2yuf+(I5we0Trk5Z>y|*zte>1!%^W}uW&%o=3Jww^!obhJI{Thr
zrYum{IxP@^yyRv{aq50cocf^*NOq%KRLL_mjc+=CM3_I#1z<gv11YzP+`ytvdc%1^
zBp!$er-nu;9iqgM3VZMBvj^yf<MP&4hj3_?khL!?zVZxbdRNXQ6XTd%Ua2~hYr6LF
zP2Z-loG8l3{0R6cG)Xp@-pA+rNxu_C$7ak?sns=r8`9dyElT676l8kexyYly7+1ms
z>RuP!%DnTd^PoF{Hj$IsbkJ|m^x|F47{n<-^kBWD9TT4mqTc+CQ#xPIdtwct+Y*o^
zcLZuIK3ndO->l!}jGDrFbHr)JIYQgPp0_HU2hZ1CP&Ovm5P;A~uXT0)0Q=G$-&LP8
ztkt+;B4TM@#NkFvNO%B6=sNmT=TX=*AdiW7e7ZJ>AfJYLz;s>Z+#_r>&rGckha`eP
zI+L24E^}s9@feDVFalepS&Oz(t3TX#Z8t^p@m%A2afcC?!FP`N!l~HMODH)OVVbN#
zi?m1D<_xE|3q=>&xGuG<j|i~5ws@;^{%-aVBQLa{1NnvB%iL9@wM&8ousAx``5vCc
zLfv^V&y<N)fDQpZAOJz(DDHx&vB-J03oFbp8%ji`K%keBu6}dw{m!Ro4D4wHI!A@8
zqT$sQg4@ma$R9ccK^LtAE?Nl^1|+&mav1%l`>)P1`+;LFyuY~)y%;TlH}Cq!F|1#1
z44R*Gjh0vx#LKUpAGu+GozA)<)f4XpD%8K{9LEI)TgRb6=)IQ9lH1>xx=Fw9ZjR82
zQp7f-ckmUtcbQCuG^E@OqDX`{S8t<p{?U4wM6VPvT*cNb<W}?6BhC|Hpe2+F^O9&Q
z(ybP6$;Zwq(-}ZGr=}w`ql6R|(NeGP?VMAlZxjR~w1bGfB-nZON6wQajJbNM@WEWY
zAtxN|dv`M{6M??g+Q5}1YE<|w(7x(H=l=8ED=Ts@!WZ%x`4b|$h!71h-fVDAZ_fsh
zO{mL&FyWGvr*}H9KvIxCrUYo_TG2rCwW~wQec$q}^Xe_UBx^wk;HbE_{0gQB-2G<A
z3a2A<Sabw<GdkopRz%PYwOU6z)};#M{0Kx5b;;eMtHy1N^9?|vmwQ5GK1v~De3AQe
z)8$S^7JCP;0V9l_s4_aPEpm*-uZ2*;1<*?cWe9=87s90mH`w3hpF3SY(+`fP;)2w&
zk`rZ(4;o*u-xUjpAk@e?C^zy_y7?*7cmH!bf~BsEWJMwTOw}&O*UlB_TW&Gi76Bau
zl{ev{%be~klnoR`lyFl~1HyfU^IUJ1uk;z>S*=P4x+6zEda*MgP2a%MSX+zYt2>@?
zg)==Px?`?@#OWY8*I)sLI0((}xzPC&^91K6(aW+g**sD;=2=-zjv(6h-Ok(_*a=k_
zAx9x-8X_E2KK%mcQg|qk1D+LJL{Via?P)sha%S$(trrkD7Zj2UzZB+k%Spbs|EKKC
zy&ZH*BA&v<D2@=`?Mh#_%ykY&zvSrM-^nFvR`wW~-2|eGx&jY6+j%Ic-@&(`Y`i1}
z7R~?zUeX}nfiL+%Hu`I*UbrXJr~)RY)QF5o&ZApLpHO<Jo$#tT$cNlzOb`rx;CKG=
zGem9)XshIhP)olldD!t@q5vsEcIE1Yl<NYL9p^jWouB}B*A0n8k3rmvq}D-W;evPy
zLB-e3a=Ol7W=S;`DGTucvjR8HWs<YI_}=TU!^9WDxe>ltPDWSXIXs2pObJv0Q-n9c
zHSD9u`h3$}^c-5#48oTP!4b<)#!e?-l#L0>L!~%WP>elXyUY3a#a#H<p_ZfycGSQ*
zL~s{+KDwK;Q0xLEJfVf44^o~@?Jxb-IM3X#U_Xt_YRpA+BxE7duXWuCzP~<H$V`+g
zCg85cU4nFpA%?Fmt8)HV!^R-JLX!m_;b9s-gsp@h<bCE0`${R~gixi*f$rXWb@N@_
zPieu}W`g;Mgc4dH1b4w~C+-&B$T6o!)KSav<zx#QKJhQ#1-G*p*#N3mGieiO{H!v5
zfRlM11C(W>5;+6}$&X@xnK((Ezl3svFO&xoaZ6YRQ#Hi<F8xjUzI(1w%K{jQ*-PvJ
zf_*|#Bp<{SZ*z_gup}%&@*MUf!MI{Sg`527Y=b{=@~+@1v{d>)M^uwi<$i<l{m_S1
zNK|r!L<Z2OFG3-Tj%+PYSm?&HojtY860=T3MR}QwzNUey@Aze|644RsojhUMlAK9v
zPgfAcp-;EFV|*9OF$%w?SdFWcU>+;M76V&Q8G2oRXZ@+X9b?sUzv_Sr_k+XwW`Hvz
zSw|&4h(m@>vBgh2I6XJAIE)XVhY+xg9C`lOLr(d1`W*EfBn>v9*%EnR{=LaL?{QWF
zTa@eK3in_(Wez{Ke6zMNghCOp1gC@ukY`s9eZu@nl^i-@)H!DlVi{5qOALkVT&TmS
zSDg#MeI7$BDdUGGDPs6mx!=ZjsnZWdhCvC6V<_N)5JXKAC&u{8oC5<H7d4%mCVNJ_
zfC>-Y?t~t4HwXF>1REitutarqmNM*9=l%y6&6ID##6c`EKAFj{I`@c)iqZz;A-Fni
zb;VZ2uspIa5GQs!lTfdP4Y44gBlndGZQnZ`&?{r8q_#t$vV7~@cbsQFVMz3w2wy{b
z6I)Ws+fMCQ=qVf-1XW-p9U5+`b`F43Ldu}ku6)65=2S|bb~-O-8XzIIr>Zg+P9z(U
ztbzm%_FGRm$BO+VCfNlV%OVwoF&yr3zF5ffOtS&iMorC-UD9{^`>uYQDf2Yi21+GH
zS8zsTx&w~mz;2Z!2SlysG{nM+-{=V6hc2z+sEMzy7O^f$t&aKCnE}N`Q~<6O!KNS$
zszi6>Kt??5Tvy7@#74Ol)3?fVQj<IQzVi`8kt4*c1b(|{MOYjdSF+2w^gg}ML_jrT
z+LrGCjJNhU183?xLZ5K=ARI~>q}lnivk~J9z;+1$hHlu9RAE3k*y?QYDf;F&K*h^2
z2rB~CCi|*IHb5u}NOWC!a~0P_3}f6r=OSk|hB0NTbs;QtQUhD$4G0mu{v0Q1K2Q=p
znph>Fm2QwN!@PW4#OZdf9tblNuZ2qh1x&I-u>Jv)gaqdm(Wlecdb8+cJiF&z$N#6U
zk}0btn*?&DiompizORI6(;=<KwK~%l2}w8d18P5O^_#Rf-wwzh2Oaf3ASj`Z%KNP5
zkN&=o*D<QedX?2;k>gM)GzT`K_Y7&!vHViGXtH}I?0%EupQjVji%ktL7|sZT%Qcqe
zv&C|W>L?P4KIR*fGkqt20sQ4MyQeI?Wi}LA^jFn?;%;;Lh+6=u31Kq&F!NUDA|4`0
z43GSz*DWJMy7bJL?0BnL0DI=5q2$0zv19S20Udmwqte41iV^jq&M(sERCU?D)w#Y}
zS2qGnBBmrjAnIN53BJkS@RDGBGafT+lyE%3s1N5kTSKf0iVzTD$UTLl@yeead{(~8
znrlF3K;s%nR{!bbh=HW7=;PXp`qJu8WHQ0}|7>@<tWX3NHll(XluyJ6Dguh=Ce}%K
z_!rLHt8`rxh_?_+8?u`;t-9+x=f+$G7Q~<9Qn4>4Jb@J~@azYj9imSHx?t6J+ypFi
zkg|4{Ij1jiPePOgRR~0Y0Uw}|Dj=MGw{w*c*Vttt7>|QY*V582z3W{4g_==L6QRNt
z`de1*T2+o1;Ja0<DmfS&koH`XFQ$D}a$FUldW<vU0(M3RfCz2lNc3jOKXh=el<i7V
zdJtm_W-_$Me!i}p4R}$YR-RM^REgC1Lp>5a0UrOm*_jHxXS448jxto34VpkzkY>Fc
zC~kd>i5EL}W7`q#CJX@OKM0x#;EC%;#1J7L1N?W+`H%1`ZVWs?<*AyT&OJvb-pw*c
zM`d@d(D>XLzAoJopCAt%&pa^^-w~q2vQwdMX4EFTDBSA_;zl{;fHgLZuq?HA@etCa
zGgS8#{bew-r;;yb-kD-|@bX&~I&dEnd&W;OTILe5No-Zmh4zp>I<6r`*qboLQUpw#
zx^LCm35?-29ur&;!Y{9{%0?)2mO=G-``P1k8Je0PNeI$~f#PWCX3Y%yKgTeJsVf*-
zAp0kAAyvEyZ<N_%+v{8T0Ed-OQYDp)2$MVA9&j`R(m$&rh#S?CALu8gX-cYKS*X&!
zWR$*)Ziq)E6#b-Jw%8}7x(`ezx*REymS!%QVQ=oP?}^M8nk%p6FvOKPX_mdZ$3G0Q
z>((KXoJp9JxAHgwREU>n+2;#b5B->gP>-BpZ*xC(I+ghd+bRr`WFg-qbc<SVG_jd#
z@93#-Ppk>dfdB{?I4~)^wsnSmOT3Qd6SFQ>X^|rMtn9z}Ec+&TQOHJ#92IJ4D%o7-
z#(>>9P6rToD~J-4ZYS(7%M1+I>pJU55oMT_0!y$iuEnLZ?6bQaG$IHl89#p?f!s4&
zcFTw;%Q)i&<)~=S4oae1koq{kPPZ4z7O;AA46-?h4prdt%-T!ryp)4SC{ZXG@U0_S
zM!K-CC`i1R%PxS*w(|&E(-+5ZxPc}SykO0#l9qSQrS?tkq>PE>P)#Km(bBm|sZz=C
zn@j9Ty?7hrH|luVR}dsl0>Wy}YqDQFLFXO6vz{Ow^6~wt6oWJUFR(uaEl8niy<TCM
zDr$@NDo&Mz(I4-$#}DOgF-3$HP?eH6q^vwvO#VT;m+dD8F@ZFTED2P9#fpIqV1Nw#
zxY~ZXKV!6@mav-&C>7zfz@7}ItXJ(b`|5k+#HS^fRm`BNuxr!)DSJh#eh(`a0;Y}<
z9Oh3Is{Y=8?Jv^xO))J<91R4JFz8eSBJ<{b_DKVDa5xwzK;nXpg^t!>J<A175`cf}
z1NK&+%$ljriSF#ulwxt`$W*LC%D)X<Z9mOa948|}7F^qu>RxiIr1V$nO#3$hAHShG
z0dMmO_RjqubgaEm_5fx0ioOZ}jY_j3Msw2A6zhmt_SYTV*@Ly@D+-A~Wl5DNsQnY|
zHINAA&#zN}B4<&}Gt;bp-Cmc;OBrO7&B5FqtPvWhRKuTPvd*>d7s^7_1zqjrU@6KO
zw@RoAS0rnO{gOw=$I;J9hlG4W2F>y*1kmxt4Ae;O@>dAiU=HSd^VA@F|Il710=1#x
zYPT^E(hY%&#=G0+ot-2j^ii#=iBz*WB#1@3d{cw^xa|uP*ByO<4dNT2YfFe$B$8{1
zGL>mg-0j<X*56(u+9>wgAuGrxiRJ$@VODHHk}4)3S<c>rPc}`e;_ddG{bk}B9*;yI
z2!rNitq1{Gb$p-4pRx}fkYr*VC;=lzHq~yKha;F>R^8@|o|jz0d&8-|S=%IDGUgLk
za+>Mzyp!86xdi+gzPqNRcDHyRawU?x$$8`?o{Iq#gJ9XbaAYp2vJo(o(4(avITKgw
zTg6R*iY-u7-XcqX@d76@B)J5JF`~IX)Ku2Eo0ubnlytNGS!d~d-bf>Me8f_x!#O&)
zG5y|l&b&W)4YzDujYgEfO|cCx@x8LklBc7~F`43&5KWdq9lxo$&bR9`9g4j`tcf}M
z8eg9S`g9sbzj_if__+wvD;D{BA7QthUkU`b{+zZ0jkV>(luJ>0<O{zUdxh_V?{z97
zqeLYp>Iv~Mp~1I5Lnj(u5on5V9MO+37T@GEhw0elMuLax1K6sujdE0&d>%i~_i2(2
zj%B2g!qVdL;AJzh-uK;+_O*O-vMBQiwx;6Iq_qRPtpSzzaicYk@G=RrArvYNIo&t@
z6kEoqc0s^Un9?6up$Pvw$?xkQ_xBNqYwJjHIsLn$`@{#IZo>V1&-bu<f~(^~(a2CU
zpeAK&s&5XbG>(ir8g!4ddc17S0Xs(1|5eoS{ij<OzT!TC*OM4)%;-{U$LsnC5@<~e
zHEPi9S(B|7<%bk+!L~q!4>L1jz44VbW-?+wrssJiBGsDFQ#riONA&sd=Uxfm+Q=&C
zM6HD0TO(;ej=>m?CKQ}N=o4RY`rer|R4|3GNa~^zEuUtFylbyQ-9w(=K$<t=t?^4S
zPSatk^U0t@4<$b^(pO^Gp>BYb&M40IjgC(oQ%F}=3jNb~vceSOlDYe4-<sjQ*8q$$
zQv9o=T#H;0q$)*2_8#fH{iIU?;Hel;9WE;q8HdwFp<L`dxF=B}K8FXfN7H{u6b%Zs
zkY1eRJNNTM+N<FstEG~HSRS&|EtdRwysz}mq`QGkaUH$W=-3kwg^=pIc_yyf*Ho7H
zGaDdWy#{<KF=oxl&M(g<uOUK`Hf1H@265L5x$CmmcVnjgE598Ro;%O|?IlM#X?4l+
ztPmNM3Q*MD`OQ9ip+1^aQ4*?}Ys}G~*^7eikHRQs)?^%A#`NgubZk24Ge}hkaozU%
zZqKyaex4GLpqBfb{5wffC@IHBDEBv;^ilJ4hOf)+L`l&Y2em~|6Xz7U{@I9WLx%f)
zOG}cm@f1~S(liU=R5^p|^L&(rs$go7d;8)Oufv=PR}8@wiEzO0E!^tjKkX|klEw@d
zF&uY7xkRT=91A>_75cth+`9q@i$p0BdKgVes_7l|o*h}m%ya~XmEg8U?P7%NlKgk=
z%O2E`0v^smUgkM>?aUACyPi+l4#MPXqg$!LzvbejeiNMc+3-Xxrje>9N@5#fM^}7#
z?E9bqeX~gRVxwl}aC=jy<6h<&ngYS>()C0FdMsp@j_*2WAD#R%$UZ`wX%*uZB!tUC
z@ZYl0SvER(4N49<HQ)>e5@MmHYFNqiKD$Qtkr85QD;vQwoYjzbMj`Mo%;{4#${l4&
z{3!MGQ_@jhHdoE+GjB#8S@z^Wc_}^tbLLdrd*Ik}Sl&d5e=y%&W+i@PNu`d0KMAdv
zBUM+-rXzeGT#zUM#N)vvlq!-+Em+aMUcS%oOTrgr3U}8KH!86hgrXzVWSg=MzCV}g
zbtvX(O_k0>;WMPg^6k#1e)`&IO3&#%!COxx=Npdi-un}SoZo2lV|tq0<a;U7E6Ao%
z!&MKb_Kul|u_}I!@9+V=g5XCXb+QP`fc7*z?E7qZuOPsiKm`=7pJi5F=6mQueuoJP
zW?w;^0>*Tiy5s`iDJL)>4g}N~&6PDrKJNQ&A>YF^ApP;&M8rZ~PQA^ScR{ZpGUd<+
z@-2<U%uzw#hLQZ1a}_T-K^r_|f+drfH50=HZg0uOoA#n_VLGo8v@CA>TFdRBWmdi5
zySE=d6%1{J1p|9elP|ABFPNt(hU7@pa#otfW*6GN?bDN7@&T{m29zS1MUcJfv73_1
zW#PH%(B1d#hx{ndjHn6EE)g1o)yX1<<K_Xrb=NW?%3c-EdEXi#AB4GEWX7!R;9Jox
zIZB=C!elj&kWciIg-9^Cx36JMk~je-V(9{NNh`B}`lI`u&j#@hUjG2qg~T<Ln`<H9
zt?~MPPhdd(u2mt6G9cxwS<3oYu#(r3eT6~R0wzgMJEC57H${Qjcq8boWpVaD+r9~3
z>TgDf_+0|+4^(Ka2F95Ka8xsnS~YDpxo-6Y+hz(a9q_yJ<8QnNPYFlhsU*HzNH3T7
z^8I@rkEvIP;mL(dngs>@Zh-IldvtH3;1&@`FR3fp7Bpgv@y*Xn)?HIFCs4vSWZ$HD
z`1d(m9kvH2gCd8C+d?%+vru!s@cSNpOjkXz2JT8x6Q%RACnBeYSiaZ4(>0^w)7WKR
zBfA1|W%W7fva8>BIH&LAeF}4jbd^Y@7L@TT$M@c&NuTST2-Xu6Bx$F<{=OSitTqp&
zFlO{2bcGl=Q6Q=sQBl|x78S_Yr@ef8_F11ZOdY}+cmyOvN_pMo_02lKbI=3fs-lYW
za!8jF;X~ZVN6v#=`3_Y~NePhiho}Rf^V|E*TWfjX2ooe~vJ$DBz(10~vV`9EOo!Qu
zA0dMG4tpb%$&5MPcd^A|5~>Je<#uB|V}u#v`upCJ5d!EiO_dXhEM_fCIgky0!OB~I
zF^-#t;||VF@qUUWWcv2U>7+zq2N#qFQ)wVwt081~xXsIHzN;te%;HPH)f1M)AnwZY
ze!j{+Ixs9!rn3n%ncCO4BVM0!Mp)Ys2%2OaA@KzfS0GDa8+Rlo%EqT);eZh0Q;}u-
z(qETB3^8F7HRy{X2OK}hH*dN=KaH+mb=*gAlNo~Jcqm5kt&;nMB!yCtBLs6-v3{N;
z79r|VGb7i$JIEK>*IU3dw%L6u0YvlCeVMy?Dp5C;wawghDeBnZcc;h^P`Z|LsDs~J
zIMCOe$J7!%R2i(MG)<Oxf)*d|yHAb^ua?ADyB4<cZR|@oOdEzY`TUq-$T*yxS2;4x
zmH#UF|Iu|G;8hh{8{YPcfRX@7PI5B)1W<@3q$`#*5=a6_0thxv3h6m94H6qF3SLmG
zC}PE~AR-p{0Sk5!JNAZxf`T1IMg8Az_K5=Cd!Kvn6K2kyJ$q)&npMB$RzFB9>Nocf
z(kIsQ%#8Fbr@h$iv(Ww=4nr6)5&f7lUiG<?->{MlfNEUil4M>TVUBz#R?<yzU3)o)
zMe@m%G&8WlHWrDcQoUwJ{NW3{25!?1z{8+TXG)EEvC_7Z;ay+LQEJ8GMlthx^FX6*
zM^UN6a>{$o9B9_QX4}T&zN&-G)@_ep`HF2B(^6X=LI_&rGryf>Te2If>T##&!TvEO
z{dwD1EIr&CZT&Fw>gBdEx3*lf(Jy0N^TUm{QGyncH_pkQ#qW2sZ7G%bfn3~R@`GLj
z87WHE{G-H7n`c`_BX_|fHPY+?GiHu$920D)r6D-o)SPV_5ODAjGyO9P%$x_jCen<s
zdDL?(ot`I~4<#596A&UAgDW53h#+yF+v;995Rq;74)%QJR(Df!yo{$~x3tNoihCX#
z)@32HeiA}-vV(48bJfUiWtU#5Ht~3z2xO2%)ykd8_NLl$oD1$Z_jcN@LPdXWp;?gz
zNvq6oY_8!a<eVVFLAauh{{=Jgn&=hq)3NACsGm}{XkY)bd;QFK(L`=Lh)1G`!Gq1d
z{}-!Nc3_2S5O|X^ux=(f4QIQry%_rd2Wpa-ccnyO3Q6z*C(LnI9}uUWoZ4VRC-f#1
zltjV&jJVo;@sHS#IlXqD6`x@72C-8RD!9?SGsCZiLc$CY#Ea>}E~70;wD;HU`@Q2I
zAfFFMOc&B*I@Mrcx<f17x}84Tu6RsM(e?ph=p57F#_ymHRydVBa^~L<n(AFZiG*c4
zWdZleiLoo_A1@3|xG3yN|8XJ?44iOV{BjO`8HqE3KqD7`ZEzkNXI?9aTaMULhHF3_
zICB(KN5}U&W0$iss%uOKkD%}~!<bU@U`O0?)R1f}O8~oIc_H*G-I+had=kf4sGK0f
zL8jzQl7NXD!I_n9BHH4X!`o!+4f-iQ1u`13os!j;Og9f3+v&klsa-fBZ+4jx{dkeG
zW)Rh}_Q96WzewHrXqDN})4s}L7jO^b(jXNd8S?94=KfZmQV>!HK0@HZ$r1t))4B0V
zb8Z$7Ar7JVHB&lZs7gIJC!b<I`HyX<{#83LRIU10`dFW<Pc?uaXf!S}0)Y8o89_^I
zEH~qd8=ZWGxqhf!kkX2vw}vPkeAsa(na*CeBbzWC<s}IU9(;AGCnuRxUET@cB&cE(
zFI8=7Om0kb>m&n`q`C@FtBIQMx`YyRd6`*T%1TM^71o;{2o%b4+ual_%a<jl>UbWd
zx}W?S-m<W5@ZF)==Ge3L?2_`I;gp?V&IW&&8)Q78vwWW-H37*RN=y-P`41X*eB5&G
zvpf)U;hCBb*yqB`-BfGNzhTco0l??3dh~cR=3noFz#-1?RCr%0;n|6>7oY;DO@wuu
zG2`wvfg#;vYMG%)$d1M7evp+ZQ|<s@h#1RtV?v7q#+tiXHR%~GK?!m27%lXaCUfqY
zwtalNu)S!vsY|#d`<}vUL|kp8lhum8AQf~T7)S7Yb3wV?_Ixg{+BT$O!mU}?!ShU7
zzU>%i!?`SRiHP=^Ykr3ac3*nHIf2p$Q{?Vl6c^&%|13RTDZ-XHOhSu;@G9>yBU0m*
zqtuoL+jLJ8Cjo-4=y*w|8L&831cKm>=pr)YOV6L>Z9dNZhW5HdApv5g$5O0{4M*Hy
z{JohT@t^4a-lAfqWcM%1H#6BN2Jnt18JQ}41I!jrLpw6WK3!^7aeU$aIH9qc=nAs<
zQKT%UndjHr#}x+T4UAQoMASoa%>EUY`g6HgT1ep`R~uBXpN=ux6YNy>*hRiIyo-=J
zMT9Fjp(!@RE9*4#A~XnDVV$bQPKd)9f@IBqeLYsqrNl%+M(Pj^jlRO1yNVUs;~WSf
z<iDN+1WoRaa2Mj}2v~ry?}e|l>|Qf@F`q#K8-{VNRXRArD3^Dd10LWz{=MGNczC_h
z9q}PhkQp;m2Gx`_+6&ubHCp#O$bRX5hlmjYm+uxCa`p5%&w#PI$9E7K@DH2Y{S$$%
zfK!EuibW(6rh?;IE0#496F5vw01J<uVH(b6SfxsJaqDu0%4-JWX`CDP1c#|?Bd`P<
zRX+xRf=dHEvtrc>hEYX*jjC-D;Uk;EH!}iTGQBP`RX5r22|q$@_4L57VS7H3kuLr3
zri%jyr+Hl=X{3M*Nh5VG3Dl;?Hb82*LENX<OF4$%ZPlBValQt2G#l0vl5LDQEPj8}
z$!2aLrWHH`BoShCrcRSRxV=}!FMmI#0tKUF1HuL%nu5i^q}=>IremT*h**$mB{h>~
zywD$Pw9Uh}G!ZA>P}^2-CEsM{y|>JzZ`-b-E%g;d7f>7*O!T+Rt#8;?PEk`;&4w;*
zEDL?>%jUB6wqtCtF;qdVHLnYjPJOxinSw3VyoLv`1jf8(7QJR4z{p(=>R@a62C0~w
zW%Zr&uI<YvRHQ<VBs9L-*Ud5S*j6Ion>s_S%^Ton`o5vg{co8U-?M!sRb7a~;8*Y-
z*>%5q%Z&NJ_T>Ex`VL=_reAMZkIqTd3<@WDeOhLgG{)b4HxIt)>68!+T10xP)O}(E
zPuw^5SZHoH|AzC0yXn0cv^Vq)PJXana_URZ`BQ5B!V%Bz<jNj}uMo?|EB+C8`v<d&
zIe_k>weZ*ekC|g{iW$s~<hNkunJQP>P<Z9qrRHriO38E>)3T*iG9C<$ycIa&OJmIU
zid2`0m#{A{@`F?gN)#*3L#ki<#pbi97}<9~1|dDFMjmCyd9TWCi;wDu+)&h1g%Ak(
zFcE`MX0Je8E?1+q=rxpYXwoss{jsGoR1RUX=$W{&;{R`Tlzy~JI}d-77XSDYww*M$
z4#mo1oxu)G)&MIuH6?!43sLzTXPKuleJJ>A{=0$9mt%Kn<j^@Ez84s`HdfA-N!VT*
zx@sgKrV(XA&hW6n8JprihP@O>$C0iCt3Wcl=4kiq2)_z}%P;^rbJyt<r8s}|b|2h_
zjU|Bw0k)yd?rnOq9|`KVKJLIju?D1LNo=$#xl-3;n;_=9LOrAnhfOP~>6w1E_23k@
z-}Bxh9MxJsDsdwxR*!)%d{^J@0cC33y%)UAzAnWj7joT@F^s(tVS;bWj!P&ykXFoL
zZFOY5Vtq#j&2Xj-Ncg{a`|C0Vb=u%?;s;>x2??Wn*pA^CkuU<I!zSUaJ<Lt0J_I{2
z!1KUD5jX=tF|oRc$QO)s*Uk1-@Li*V)t%LywT(X#DNlx|llGu_Ie@21e7rJPK@?>t
zs~W6RZHG+f?gggYwY_=mR6tdZLb{W=#1y5{2v-6G1iWz07QBhmnC85DlX+z}ekLOI
zNJZ(C`w@j;;(exIyxq@<?Oip{11?_3WoG}tq)-3lQ^Qo|`PBA76e6Sw-#NSwTVnJN
z@$W8;mQSE0*wtnI0SvP7Vspm<Fhd#rfwv)F!r~@U=1}%iT^ENGnyK%^G;qsV?`4Si
zxo~Wb6_XgFqQV^Uc#QZgOa$vZ=5Or&ZSqe^>>1o_KCOnW;<h2Qi_J#ahw%@eWt?c<
ztaLohhvXho@>4p@jtW|_Vb+3rhdhcE-43($qj;+KG(i6t+mU+PLjGc$=?EnF1%)2t
zj*Ks^<xzmc@#jz%0l-PN=(yA37k*{mQ&!dDy$6<%e3@C(>QmI8J*Wz6CL@7^FlDK^
z@=~I8$cf-)#wQ4~AbCq3n(<prY8hSHYyz9O9S~QNoaO_}v}Mu#Am47MCzo=jQ)o<9
zQ=HVq;q4%<I?mZ=m?539vw`Uwg?+$Zipw5b?2GZew#W9f*J@L}4!eASnZL(VKUdF=
zt|UqcaQ6>t%<a{-1w`gLt90%hZ?2zdo5ltkq=in(GaWa?t|?}PWFe~v`bU@hQT99F
z7Q#tDRk`FX-<o_xa>C*D1KJVR8m>0WpZBdHrfMwJwCk#NeGCGKy~Z5)l5b5OBtk$c
z6Xb%dZ8y`F_|_D2z7^4n=?+QfN;6)zT~-c*rw|jWaIhfDCS~~9l#>%MulQE*!_nvi
zl>}2VRwfu+eB``9#9;puNEu^0E33*kQalJXLCmLhufUJBzJ)9V33zQ&>adFIfM*It
z@UG5;yXX6!U^Z{pRh4(*9!^d1V^G@}N=RCXG{D?K%C%^Ps6i%8PV*D}@N!PVZFka%
z9Z@+ZQ`)LFDd$C9%c2ri_P1S_avSYKq+$CJ%4YOVxHHlAyxoGf{c}SlAYt{;7fdVJ
zxhyW><gwoSEIeyH?@E=#vfq&jr#IP-!k>Ar?q|noPD$9&Y@5b4@@9PV5_#sNCfs?s
zH6LJ9vq*T<CBy|EY;&)@4_7lWT2j3`bg1x>Ky^6YdL3fs&O1h(<5~&MuI-cqMIa%R
zbvVv!{g3V1^EpnK_gsJzhM}F)h5bd=j^el6$N!33!L&!0Q>|2a3W{-a78SVt9V|0k
z)cBC<X$B-b&G{zievbQ^W@$JKqo1=)w->rgdc{W~1r~*<t>b~mBcMZ*=`JZ=vg2Xr
zYzJc!c^?G?U4oN?5fTHQESBAI>0Hx<K$CN)OfQHI!2)yQ$^=HBd=4B<$DVnoj&QGx
zwN^s_7_3zjgnOdulibl6_HDY?akvrald2I`WQSW7dq?On@om(!aNXA?+Cd6!AS4)L
z8BV`|TR5CXFK;P_I7*}jFqMgrJk)(>r2RRmEmP5<(uC^u(~<5G8eCpdfjYM<(TX%L
z3R)$)frIStF)MqJ2Hbdv!HfI5vlDHH7aCZ-rA1-9pi5(M9^k&5Wc%`}ny{V1gEE{a
z0$wBP0ZV`@R@@1D10fzm+}rly=a{Z*H(Q~M#qlM3W?ThPDF9m&0*~r%le8inm6#N^
zRtujME9@$7uCQ2pcW{8=0?r_J;}FKrBqy!1ioir6DJ405Px5wE8l^U@L1~hEnu--i
zs#FZcypn#&1x>Pqv*0K<bf6t^6dF5ttQ0B`I3fT+Sfz%!(~p24@KZMg%gY6*2v8A$
z1IM~IX4>{5<>6P=0~JjV6Qn0W>qSN%seXzIMJ+)I806j?<*f^m(p9w}GAjZ#d$4<?
zb{we&+b|wCg~S71OJ&*v-Lwg|r&R9DEJ8&gk0(aiF|s8w5ol<)hfFxFH`(M3nDZ&W
zAd}zRA@0PJ?c>U|t4tKAuFW`AEs3ZE*ExeuOx$Y59xcMb*lr1j6DjBr$X)l1_WFur
z`7yE@rLPcD6imvZS@S=JC_qtVB4;kk23T(fi>1A30<A_d((KN!1YktlA#fwt3V*}P
z>;h5;9W2%z>A5uWlp+}fbeP4L6?MNf_l_RkW5G`Lv`QWZe20*lUdP(~;*FZ!f>jtA
zXTvbTPmq^`Fa<a@wUGD{i$=J0FWZWaP3Whv8{iE;Cc0BaWGO=Gt;N|XkO{?^^8(10
zJ*(+!H#r|?Bs>CK#Uy9eaqc7iXhp$nX{TM0^(w{5#%IRSjsPeUgvM=}EiRsY*m#<8
zv<V|b4jV7Y0lLU^zE5#iiC%Et%OOnWETD(5EUHUDP3wob2OZ+|imc^e36fSX^cB`f
ztC#7mk^ES4zLY~j)!wNtjB%F?<XOw<!d!*`Rp-M*chQ-)oqTGgYr~UL#FHlHc)xC`
zQZAo`&Z2e3Fj_t41E>)u5||HUk<r^FZ$>nf2a(JD1gt#e?S0+sA_wGYWrrx_5o)xj
z7IBK|B;736ijR0lo_86?CQx#mEzry%IUbAE-ATHJ0_PFcHV^Lh?x1V65|M13Fq9mT
zKBs~rRS6ywhM&NMwVyb;liYp(jMfRJdOAfSKrl{62;mygZt>b8>20!HD#D`E*qxO<
zG_e|X!SN-k%`UU`$RRuuZ-~gCJbEW!+#acRb#Q_a-AaT=U+>saL=B_7Ws8*0OA)8D
zj;wG_l#&pu5=pLZhHs`St&A1=ywDp;>Xyx4K}ltyKkDr<0yruT44joplR(GkAx6D5
z$U}6orpQwAuaYL6;x*&hLO`6x;p8yk#<Ry*)bN!UxxMgMox8{GO3ZvN?`+9(3*#-(
z;vL;g%wsnii3qSNacWS<MHDWMhvzWt#00R<`Xv8md13coAxU1A@=5IHaH%Mtu3EeA
z#ElZ;hzFtj9v07`^R|4u8WeR4>E_)1#zUnbVac*e<oVp59uoyeiE9L7G=~E}Oqx@f
z?e^Mf-GRzMRO%QmPdEj{k}AFy-fcLA?)P8=DJrcUL^$xgg%i3p!}W_c@j2Lq1bj9{
zaU5@YYXcRwkQu0h&YU^u;tMD?#Z}xRs9vxLLTieDU<NcQGJh&J7J4_dHmJy*|D!iG
zZ*i)*5}`(}%J>89m!n+jpbPvIaipim`osB2{!yenlfNgGgUp?L@69mdpdY5xsjMO_
z)ycXsM#$Nk;dx-gN(9IB+ZeYjj}GOdRVmLb7049v0Npu|P{|gtdKvA-g+=6ij6D@~
zA;dpOw+Uz{)(P}xBwr$shOj2sKE^lH)<GMj@?qxU>1~<a2SS-^<Qnjh6?fp6RRi4h
zlXxnV3cTJ`P8oCO%L02~S#&bUl|JQpu=zKHR&g-Dhg}0SVL^eojgTdgQ7o6#5h0-o
z+7913+2i<mhOFk)+T|hu+S*=dgO9f#REQ~<uatFV!?E3LXrS^P<q1Hd5@%3?{0Af4
zorCO53qw<|5sUkxCpzv4?z%qS+E}rpPEjl2#rgN@2$l)GLgBDkN|A+kTggLVHOvD|
z9%EaE+x{zbfinr?JnvC)MrZzTkCh91#jj-{u$BuCXM}U?Ah)?EQ-iY**~kS-fTLYu
z`6pSibBk<ej^s=^A=6n8a6PSTfzhgpp<2n=RXPJV+uCCL>j_nz2tp*e14Rij9O=3>
zv=i$=c!zi`+f){%+qYy?n#|^u-VsnfeIv#&-8b9Z==sqlc|zC$V2EiE?^AYihN4l9
z{4A<u44$E?X8pWi9F-c+Io`edl<1NX1Xwpyj=ZYHKNb(=sIeH(emlqg<F@D$bVY#1
zE2w$`61P);zIVrD_a+lvG6CZi04>25vJ$E>#f&M$ZZfQ2;Lcy7O2%uxBpTLM(~O2t
zKP2$SwYE8%tShe>1!nGmK*iNjC3#$Noj4=Ng!GrlRiuS+atbk(uv`}p@a6}Uukb#r
zm>t^3_W!t<3!}9LxTNZl%YhJM1t6z&)o!1Am>%4gz&Q%CVfrY_#uM3dvzxmnN<nz}
zoeagMIJspQ6WHP4z0oD5Sh%GvTH9Vu8MpPw*WBLIqDl%eZn0#jgOyHcK1c54vF?xU
z(IvSG1h*@nOETiIZ@ItpjV>vK-C%2CeOaI3W8H7PAA)6A-U)-S1r&<2xe^~);imr?
zrIjB+<az@@%$gJ0^_YCN@zhyvXtw>lGOv|SOLz8ZbgLh=t3h5Fh<SW6i$S9O#qKXR
z^94jpqY(r<I-Q&{HuwE?ZuLb`mQFy#6>DIH>?mK~%GeoBK44Rd|7&!L%Fu^Vq;9RY
z9R!f8ZhRv|!ipB>yADKBN-ik5AMi$y+H=aVTc7ldd%)=K7ij$OCQzEY(Ot<VjDki4
z*UeR1TE<9Q=D5!v8C^0S+Yh1^j%FgbvU4zSU62>pv0rq_@S)Ttz!|`sbH-vwFLCF0
zu%?K`aOxU_ce~uhqu_|&&UXi$9bGbx#E1%T?x*0=MrF+_pzDs0ToGY0b|ngO`U`|5
zUN$_-d1kg-8)1i|^s`DB;f*LBmE{bb=cb;;tgryfSYJhiZ@P2E!GZa|a$bZ#pt!ke
ziFZwyw(zUAI;Eq4Ss&{jl*v)kiNfYJwyK(roI>^^l;U1C&^tQPDuAgU-Q=gFwBKHL
z93n*iq99;L(IsUveqo_N(a6q$=2(c(VbLXH`Q$c`T<EbOe>r8`5vQ+nE2lz_TBIh#
z0kRA@++)Tf<18g2FS?`{kqRtk<x2~=s%%1*$|W7sU|%DYW>u)uf~PpA93L1H&l4QI
zhR&u6;t!nCiR{qGneMPZqDoGI%XIoVKwPoK#az8{^W0lsuv@LPD0sw(F;Lh|A@`um
z*=BU8&KmL;oYJvFo%`N)S7o!DHj<Egm-Clj2zh<I(_Ouj(@y@}G~rr1`KP2g9jWf;
zKSq^IRAvNPOG~SNqV(U~;kYISPIR|!k18oarbH;@NR?&7mtd8j@~s{<0_aj-6%;iN
zbzWTQF7~LAOQ+Hcii9T;mfYk{pT~JcWfnHDvMd^%TmnimTinE1ECTvfEhn(4T9aiV
zxW0!ia2JoT`+#+@$^%>9l__v;x$rE(ck`orZ{i*JUV$^#WLeHsXU1H+F`R=D&1z*i
z?Lo+$<1R^z7B3p3lZIWTO##8^Mfq;+dC?_ffG$%UXs1)cGWWa9oda)SA*`vgLg-1X
zMVi=me2-}DRyLe#%9IvPCfh~g+%+yJJ32Y&psmn(-Y9TTs}{Q3YNAV^?p!c}8mgG(
zs4*;Q)dctceV9BLco2@aayiAQns>W3zUY#XSzgH+42jsbIb@^I-G9H%T{{*UM~FlZ
zYpY_<O44;V5YJpP9P>4?dn(OST9E0iu5~YOg-p1xYCusSiJ4I>0kJg`=0=yCj0zG8
zp`ErP#X7l#WO9AJz<m||$W7unhYSmR{(4kDZj3T?K_aU%2}X40Y>R*7qPTuwPz&-|
z@q=>beDZtz`m(qcm|r0zifacuR5%4cBye>(fv7q0>KfZw?gh=HDZ|mZd2HZ6mA0dR
zXgOlwIucc<9dJHX2KzZ9u=;Y_yZeX;3jd6_dl$;(|LWrCdtHiT%xkJ@ZsFW0Y#z&+
z>=Hwr<PXgcui8LIue*}`0;=gM$Vc|+EGO$@v*~f79npyJ(^Ih(3|8DA&tGmHALu`V
zX%W+wSWZr-<K$(SUx(NT(eVi9s*Q?Ji!nCc`DDBKF4p$sU>uc8$97~n!0P-FV>>1h
zhfH{=?O^!^|723VC(5t_w_+L5NEyx*Kbeg_`vCSqFPapH3_lXp%{xuIi{nUsGr4-k
z)m3$o6PsooM0f1(rUq>1qy}*0n1G(*?gQ<1UbHt}2M+Ua2OqfjH}hzGtO9DsH4)Ng
z=Zr5A?sUWt=B>YQF_MCUfT+X*Lba^(ai9I%Hy8N^vnXVl5e~y4q(%ZRom6Mk5_A5F
zn8B<C?u7a_#2Cnum=}yj&ha;z4Ohhs#)6E!4h@8;v!S?wSmJl<cmxwzIkG4w17t^)
zRe1JpbIXTzEUr!>?v!?=D3@sq%>2t~$9@}xv+(Ju&Ns8ouRq1CU^pVJ+cZ_7+Yu_Z
z$XtC%yxOro<NN9Km$pk4NI~_1un&IDOuxo<gJ4{*o0ASD$?g4wd1=1wm`EydOG9UU
zYdtwTbgSr{v+_z)w<!Jy2#eZjRmj%_%3qjZKCX$)MNE}pE=X)AVN>WK++A5y;^RZn
za!rm2B1}{$9tbT9gSL}DApV4B@J^=7W~2OhKlzo|QxKGu3vttq_=|7%o>XR>KU-ky
zz%jys$K}MQzG(fL2+_E*!G<NSN`aVr^^1QRY(-uN6q@FO4Nb~RFed({o9w&79;K=V
ze|~Fo@OyHL0Ca=hk9jiw;knWJhS4pxHKeODBq4AaPVd6_wz0NDvGj2CA5k=hO8wY5
zGycUU;`zd+N<ZFqZX9p7vT!A4IGb+|6z}i<AHPr`W#@*4fysURa!=W%gXK2iMIrx!
z9bCFLzP82sxtKKGck-!Jd)xWC!^RshH)$Kz{e@5AwM)&k<9#dm*hyHQstDHeav+Ef
z!87f=nrtpU*r>Z0mRH~22#2FfFa|v`%*%(Gg-~ubA_<%ys6((Q9ruyIf>FK|xDm-T
zCJq(9d<rno&idKz_<pY1%R<C8V4Wi@3OqS@(V+|7FAlU_rJY@T3+;;Sb4ssqU-;12
zq5f&-DjIOBJN%nH+nMb@?M0X;*dxLO@ZKz*=b{Kn%qZ!sv|`}IRHyn9cjm#-D~Q=C
zBPbZ31<03tOJQUnw`tG{CN<i&aw_1y-#z8-efxkFh%EA%wbqu`$_D{aDX+5VBlpwT
zK`WS-I_ulJlyygM8WB=d<Gatj{;AytOy(dy{Hc4<&Hr^kL=JDjl^k$z7^h+|ae9a1
zwtd6t`mZ#DMwjG_xHj;(51Q#d&xrsYNC8k`LuL^^)&yV_G_(`v!u2J1K{(Q-+udP%
z+gMHfpTcfPPfnB}FRRmi^H5?&tzXo(lQ9d$59)BE53%hse|A-LRfS_XIbk18aqs`r
z#&?#|(b<MCUg30!s_a=b$(@_K$9Spm%HnD6LkI8CPOzM_uHEh2vppFv)2;39R|oC(
z`{YE$yNv8`-`aD&xEr1QI@}a*zW;n5kUY+i4tLY;zvsItLU#I8cR-Kb#!n){96fBR
zd*{E#;jm8WaA)s1j!XkTwz>U!?lund#3`B5;oi#cajWG83HzB!uvumzJ_YBr;qHJc
z`vBo`_3h2vEPldugDssEP!z<LD5UMYac=MQJ%&~C_si|>U3*R&0mWI_;cnS;+A44U
zM7z7@u-(Q{R(`TGqupJ-`|^^I4Naao)h#&C{=T#ey{tCK#M#*-F4)Ig+!GJjV<==6
z=k0d4>JZ$9IHZX?ZxgV(GD}mPtJb;ehYVVQ5rGJIq^)okg<#;hVw#?GS3P><e>-dN
zXYXi8ycmI@Nl`idhnQbaiY+;rh>?)W;yGJicZ<(P>Xe)(NzN}3S+ZVnKHBS&E-NvP
zlzh@+?L5vXw67~#-A~VqJ_UL~6t2YhMfzWU{OstsQ?L|{fr~Y4Ly(z2Hoo!jxKp^G
zN~)T+;o5gf8{&_8F!mG{bVSPrEC2*?IpzcZSH*E+Hz3u8VC<cK%)@*?+D4w_@y>Sl
z#7G2Y>~(~FA*5&Xl666MpQoZqMxw=FIM-9osC>>127?0;(sS`ZNq@#LT<H{^LTuPQ
z?zp3^j81}Tw>UciC1~00F3Q^)>}y4#`d|w|{NV3W$a|(4_JnT@3rx&AH#F^F+oU_I
zYE9wwzBPD-@Ic9h4oyFQnR(>{-x@fu0_n*ns_+y2k5#6ca7`i<1>BK;vH6JKphziF
zN4WwP>AHNHIcN>9!4y|T4sQ3OBpuXa+$VxB#kr}|-25h^qtxPQ3p@IYT3{8Vf2KHB
zO*NV82@e2#qN@RIjN2Oqw(|lz{Sq0_72485Gy+IxY0k<k%x9Z?YuEv5&GAC-8`7O8
zW}7EJVj`r+DU|^$JHp58i%s@DzBR~JV;Pxnq!hHQ^=+o$F6N`?T79ho5~z=q>@=Qh
zp1jw$2Ga{k4M<@AvUVikI>i)X$$4mo`QS0%8dQ3H2KK_bAn^hM)Tq149QuWCO$oLf
z1yv#lA-$2KFV}C&73Pi4eQVH1#s({yZ7u#w<fBzLn8UX+SQ=KIdYoJeek0kKpqul}
zC+`u>AYl)y6=fEcf$t}L0l)C6i)?HYLF_FE$u=YkNk`)A=UMIrYitk%5x~qrVk)tG
zetfr`L)`SQd@K0A?3ONWX#6=u4dY&!^_9D0fKf+*a-@|yo=(g*H{8&ez<K>`&lofr
zT^@8O*s}LtfuZ}`jxyq>mD(2W0>WhPz=sFeu3cY)p!Dol?#?4^$Eez_nx@)LKi4J%
zNmh0`z6Z3r>v{(I9R0t3floTa`6?pNGuHkh?;pK{Imy>_$9{n?egEre@LW=yi+cu&
z{^$6_A!qF}gFVMj+GYGPTyNe7D}H_7-hpk&W)_=SiYgK6>W=C!$x9>+h|sorv-at@
zS@7gsY{mFdoW@E}B4A~A&NClvikrpdPy%gNI6Q%@&G~)E-1h<P;$$l9B)+Rodu|V2
zVQyR<H;Wsw1jA3bLnVHmy3Hhf5jP731?^YiUc5#nn4ME^G12eDDY3k$3ZNGMMBIE`
z#6~#IoREM1hc*!%)waDu3G4|~{_kF<328*X&8}>3gn>I9WBu2E;9tSn9XACMMWsa~
zD1OtOwQoR;L?=`SIfR6=LN|QcpcmYC|8#fxJvpt;+_&5@-|yN;wccF^!9`1?Fd`J5
zGcu-~IS;s>jq%2}U0q%e?5Wo>H)b+D01io8!7>|a7|3O#KvYGDIHMkPM@HC335IAv
zIHM?>ogML*Y0l<t?xm}}iD0+`pNglnAvdjYf1MRjgx{_)dz|cW%pR+P@Y6_`jiP|S
zAEL0}Q-P}u5kfGLP~{FFXJMnCtW3y!(6^AiN4EokUtxj5XC(OL+`#z#iT%S<-b&zr
zMX9@PL14e=UD`-`cfxH<iJ(W1DII!KVB>&Yeg^n*_s_bAOCqSFyKT>xBc+93&US%%
ziHCt8+Z5;9gA%^HJZ2%<0hYkl>X!B<WJfp<OfYcPcXW_(2%v}XJaB*DLq)EhFg=jN
zH}gzsy|9(RKqOshdf<j{>_FX(2%X)HNVH%kx9*VND%si8XTTSuW3@hIJDNP05Q1Sj
z4;KdJ^zwNCX-#c-dT=$hw3TlOM@I-j$oW0pee4DDr95j?C8=cG@R>+LLS-=>FVcnW
z9h6r%wxVfudK$~|;t9G=h)<J;xZi#ae3ihY+FCrYe?Tsgw3NYxEWg#<O(~1N@mX6t
z8H<QleP;?88_shln7%?Wvp@+=mCfz7FicQi_?(^_OoTVK7mWhIJpZLrv9FJQXJ&i~
zVnT{DiMUTlmRv{b3d3g4{LDS=%D}&SGXGZ(D?j{G_wm{P<(aJi^$e1x_l&%a==NPU
zrJQ*adPWHNmPbiQ#O~TsMO8?u!sF{u$cJ=@?>Cy0f3>|tDiD~gEKkM4ytmmje?dDk
z0p`3WZ#<Pma(e7AMH}oBB|B>x6#9yN1N(1_pAcr8QQ+jDx=dSZ^4_q&qRRXy<v3tu
z>DFseCo#!xFmHcmyYXgI5Khk#<&`d^@-M%!9TVDHNNW#2LokN(!bj$!_1=(NjNu-X
z&}64}lW|}39@>d1hI+9=Yo@Rp*0M*wF@yil_VIyJgXJDcQv3)WN8hS_NW;gOh^8xW
zhEF&-;LxWyk^8w%z32^zYk(o!gr+HU(qyEnSsxqUPTLE15^)vY@(>%A;XMAialW@*
zs?cF)`LFfiB=5V{y!NL38O7YY&>1+I3OUYn?)cmsx{e-|b^tE2RweOxF(woY^%48K
ziI3RF3OLN+HOK_FQBnK-)&h@%cozguMfs1^vlK?mj<Ig$se@M_Oie^GM|w=e%S<GQ
zRgE8x4(xmuTL6c+Q%PM)loI~mnqvZ+I}&zlC!%4f^WBiZp!x*8W<*PUyH$y~y!oeT
zam#|d1-llm5p__?RH?@Io#$?uPLLn$9OIRAQC`e<=52Gwg%Xt42y^NRR#N$bl!!!~
znTiYC*(-L7Sxin;48;Ctxrz7Lb}$YxA7Qt!Poy}Zv)zr4psu7~vH^PwK<3nxM2a>$
zQ)AuN%4`SBwyU<HOF0X4u?64vcMqov$)G5N2#&@=7ZX4+%5mK#dG;xy0jn^Gr49wj
zi|C}I-I-p#Vo4Q7IwDE9RX^$#*sl#`o0SiF%3n$rp8@-gajRA_illP|SEghp3ZuWP
zhnx7E{fdGh#$vqf$P)0EY3_&T*wjowp6Xk<T>hP!39V1UphNv8__;P1M>am1g9GPp
zJyNPyx4Gw^Zr(Td(7-#Z{zv!UPiq-?FV`)cFj0wPqy6sfcQZ|F!EHG6aLlL!(zrU#
zJ@O8lXgeA?O<QflZOQE>RpZqC0+$Yse}HVN;`VZ-ChI`48o*0Ubqm*Gl+t1A!XwN4
z(M^FsbIvXdJkl$E1zv}2Vyin99bto?=bVzzYfie>uN2^)&eksCa9Kle)tqIAxyzO_
zIgE8!qfuMa)Sm48Uy7TykGFA6n2e`l^CQuevK4-J?P!k-I?GW_u_D<mTH4nQ4JQG0
zcbh)3sYGWK2Yxv}eg(p(6=_MDz~3fYx(Z<+MV#|$;NX!1SFlpp7ikv0BSb!}!F~S!
z{1sd_!k1EJi&R9=rBa-8o;0lqMBryRPqlVzXzFa)(DI{tGMv><n|F=v$!o{)Bv7j6
z4Grp}<mpppFoFKO(E-`a9C8|evnNP_Wck#fUtz;_de1kD1~LFDbfY4@2(Kc-Hq&|T
za<j0O?@o8d)wP0{rleg38Qn40{dQm5-fcj^QozX@(e8dPO96^0DLH%<=xj15UHhcF
zuhtJ+Raa*vNxY~8Ljf90a~jWaA4?&~92J+4Y-KBQPM$o>6rUc~4`HXc6F(XnBVh*?
zl)vB*lUo_5dxgMEpu|Ay4dR%=R|0?9xVO7>lJ5aN8sd?G8sIo-NtYG6?`@1-0skXE
zpuVQ5Q@~MUK&on#y@D*-bmyW$fd?N!R+k|Zv5)d#=leeGWwvo6k0>v9oHwuc9hqjf
zVW`M%AQ=`02@iDMdcfE6vr+zWQK&<CDI@~P5AtxYK;g6T0wuzbj_rUjA`xY>^U@S|
z_~e-XX2%eJvo=G8d0_A-)B;>J5k64>#M-Pu(j*e15{=S7f}>4PJ@wasPB_;jEx@w+
zU#);>-x<z@Hv|ql;D1?;Er7+u8w0N$?qA4to((80b0s1_)4A@^z?L6lWXlDz6kiU~
zF-TC$1EWfOaz79cQG<F$m{X?H>jtw#z`NF&z*PvgJw`@_oE{u+Hb%rKxPyc?dG<P;
zoKbLZVrc8jqX%<l$1%9Q{{S??Ci#GQ?){kE3$Lrt>*Y=E0gEluD^_+W9KVW8b};N9
zwcgEc&%112cZfRMj`OUh$vx3~rn?>D<#T>-bO$Vpl}jIYY$MSGQ=QV$@DbuF`)5Y$
z5*Xe>tUrewhQ&C8`nh8!!&xD#4)!=xH=lF)?<PJvPK~8ViZWBEW~JBq0Ee}pMfU~Q
z5(g|14b~ZcySsXVJsKs!I@w1vxklg)KP+;e7!&(BCZKHc*Fp9W0JU?~iujXuCVb9p
zg<jO=$FoA^cTVt%_*=#e_#8oD6!}x=G|r*d#{17o5K8qpqEl?e8F_7-9>dI#E;2%7
zFb>IcO*JGou=h~YYl>|i-O@}b8Bt+LHtqSuW6iacrsMayc%hpGam)2+1J*~5G{;P{
zT{+<F^ANaTHX-H46U=l_etD);BdOAfV$hFIHisT>o8?iFj|#PmDV>ySR_oo0ZE9*O
zN1w1Y0LoE)v4o^c?t3-WtS_>UQkD^H^%fN^BtB43ym~34|8au(V6y$mn07>T8)F4%
z$>wr>i4M#$d1hbG_L-GjTi(QY6l(Nkn_In)=NqLN613xe{rkt62=Zrux0P9rTI=>J
zldUXz*BvH`ihlHs#Sa9Wq%D2<{=?>%>9!Ra4rN;&bSaob?7wPOQtOPgt!(-9gSB2v
zs^U|=!Wao=3sZUI9dqbq_Ho5%^AS2SDDfyu_nP$OwkKDR<s_mAmg@2=&4F*))>6I8
z>ZOpJ^T29j*3zyhS`rWBsgl1^U2%?k0chWULn?dQEmZw>U{hFef}<%ywcSiwVt<7Y
z>pkw(znJucX;WP`E?k0nRW2`s^2tfgt^2vzK*95QK%|1l)N0*hGRZ0P<+yF;qbcF1
zS}PLCVbvZs@dst_2txs7fUgPeG><H>zsiSX8=(dpiCIn(fA?!9@9)+LaULrGb(vUT
z#qed=YH9BN?qcwc|Nbzd_*6zhLDa-TeT5EUf0nbq`@A5V6>7l15RykMpl)tKF~q6M
zYX8#9ecSuW;pl-_IY2?+2KweOH*TKyk;HbfJ$#;omy3Qi=Xglzo)*_#*vv*9L&yrK
zNBhSqlH|nyY;IfZeL;6>MIsWC&Z4(LZF{*pZ{PJh0Kl*-<;_C@q-*wbcV1+FLiD9v
zXa8P<?52)zDwsF*8xD0NuCb4>p-mpLxx!pMMOILqcyxa=3-7nT0l52bnqm9y+20*?
zt~Vtj%cz2e3W1VJ!BsAzNO!fso!R&;<-smUGbL5AzRyLPdTF+V+S=-K<m~YEgAO*a
z)I6b;^g{*x0ENJtr}s4Z!1wc4w&FEaVnF1<5$6Yb?%jjEN)c4(;3Vo)*s_`zW|~QT
z>=lCz**{j*5P7`<uHP7Fe)I}3!4F`8q(73&2=aTtY$)*9fZVr)R}&t~3c|cpc*~)#
zQ?Jf2n?Q8|=#>ufkL)b7x5r=r7Lynw#>3t(Jl<rf@C#_?5G;lVz08XWrj%U|GmM%m
z;YGlg-zNNStjuz_r2-IOvlSl`6g~HdSJXjv`xcY~n=JIoJ?4PZx_c>yCxX_tN&HK-
zX&o2dV;08SU%<VfBTf^Q${0BEa+6um{peUu3gr+L?n?$Y)825m*;HbC3s6OcEhC9`
z<b7sqkvCXKRaJ-&RZ6lgl5*op^ZroVH--;|{vm&qOUUEWH_TGOj}zQzgU-;qRf86&
znk&u86T-t;y9VY>$am25=B+Z@%qJ^8%R;*Ayld`?alhndb7sIBkvJhS8N3Z_&Wq-V
zYgtZ0XvE<C1>u^eFhkz<{XElK)u!Z5R#ZN&4$}TT9#W_CrLfr~=j1tNQI`GLD5Z^&
zEfP#@wkyjbXh)hCn-@KR9r2ikkS;yDa^m}Nx*N^a<Gk5d`2irI7LRs>R4!hiY?C23
zn32PFnFn-U>y;A1{bDP6dB4lO(PZWDI|Uu8%&ZeX$$X^JAA%Ux2XwO$6;|Oo2$%N4
zlmHz+bDnvb(sA9tRakuYwb$C-AeSKOr7p%kt>)5x_J=u$aSD*<MjEO!b<1Q^d8F+j
zyQA7xNmC{VY_85+kZ9|H=2s{i2wKHI&Bo1|Vd^IQ^U}n|Em(~!byDH5WR+pc;aA7i
zo4t+wl`ixO4w+pbSUz}sSj|+<j5^Il=BShGuLxNgvxQt8do*<Yaxi%%kg!m~yb5za
z@cDdaaXY&SDe(PBERRkzKMAA0d#!@a%__{JZN^i>0=1rIUdgjRAXtv^^r%onxrr-H
z+;H0i?4n{xn74?(cgWliGhxW_GQvvy0LYdHuAN~PNphisq2Ok;Yn}G)G^2BEdoG7T
zA`l~KbI!iNoJ}nl9>C#KVGAN@!C#+lUS(a?%(Ak@+`8>u%FXvCP!KXBC{IH_AafO*
zNn7b|@>H|ln-<u3whjp1mMrBL-FA_=O0{udim(*1Wc>Tgt6#B6P;Dec4WyPW94x*a
zBQZ0(ZIW5x)x{eV?Cb&?3x^I{cISy^LVx>&rMxPCetR<yLehj0LDI{z%)}A4Un?L{
z&->6%r<=hsUOQY5lc&IomGyP>RI|D8p8<ig<Em}Y4ntA6r(nHETGVR>$_4H|%FOU4
zoLj?W;o+Hz5bIZMvb~C31^5);U3#tV;kRndA7CKZg`@xm<$mEi)eI&g{iV!YnCf+M
zAFzquIhfgM#`$b>85f|XBfa|R1~c0GHOarN45c}Vo3s>|m%PQzCOt>YNr!-rv>E33
zGJ863r%;NoCH%mH!%eeSSQT~K@(Tt+;A$UhfU&c?<kh)TLJ#ACq9s~p#D*^Os&|&f
z2*@mfCqb5qmGcr>vJ_%e+-iPed<=!zP$#Dfl@vi0KNY<G67$qS_8p~LB#c8@R`5|N
zCG7|=d8^L+qKi+&Qiamahk8`Ez1{@9y)Tj9Nc=%LgdDL(GoG>-JV7KA@cMe)P@#}I
zNjYY&w=p0uaqF~tRW|IwJigP6_YUT8Tje~lLO}0OA4}1Ay4jrWP17<s?p+*#nkzTG
zbudB?@T{bh%~-$voeqi$+QEVBVvZbRw!yQq!#rMaE>+DnsPx*hO~1t-yV*WQ(ZcZg
zRkCa|=gxbrvRT<lF?8*lJ;l|XrkT^tx>5_C+z*yibKN%E<WZiGW-O+jFa-D^llvxQ
zzWvg2Y5VauKd~F+kJs8WrH|OF)HHh^k!?$?@u94hP1q8Fi%(qHVt&r={!ULOutjKg
zTwpe+x*dDPF=2VTA7~Gm<{a+}<zG;}An>9ffIlxVn_(S<#Et-(rV=hmKohB4hjVWE
z2>dQ~!Ryc(xwcVC=}b#BNlmuXUfb*vwryDMM}18}4IkM3Q20Kvg||4g_(hVfHFtWO
z@sH<s7-uDe%KJi`kJ7iQ3273;yQjBV<JBb@yQLa=kI%46KJOrtbG3alIG2r<cv7LO
zBqw3G>7234tAVsoys2z@?Bg9%OblWu7p9^dEeVtF&X+7X+nj?8%8W_zXuz<ITxkXN
z)orGe3Gn^7TZBGHd;`n=Wsx}%e~el=!Qz`344LkT3X_LwKs$vEn-SKm`Hicj*t|=5
zIQ>3cwp$lI=ukqv#kwnzJnBR<@x1VFSYzEdmfI<$53z=D7D(cvT=Qa!_ao^}l$qN?
zR)IQM_Kl~TH7qA@!5&53Bw}y)wAI5+3L+0{LxxJwqeEFZlbktqwoEb~jhI4cAc%J4
zOer~9Ql6@Hf;e!q$p>|iF}?k7z%L?^ND>9=tXxg9FXHJN=apo&l2vv4W}JPXCcp%8
zVoX2OML|f2#S*&9Mx1__`4RntMujYr0uD>75U-IgM_3309-3$lpKE_YO))UoknC)t
z+|HrqfhTP{s=R>6Jc@X=hw1Prg7aCfGtauJ!t~c!=6*W#l|b{du7Dlds&Bo|Gf%YH
z4xl@<w-6=2f4RoIS#F!jUJ2)Y5*bxq<<-E(8_DD-b5BN$=ARAhaJUd+M-@`Njm3i!
z_BV%k8)c_MwRnMRdc}73DlzB%$G(BAmTG$|0h<L0OlvnYMeTN~x?9;NHofOrW+vsj
zL{;sb1Z+?~M~hC+%+n1yA?nG&YRNlfNflqXv5(zaZ5wt%(GSsyI!}k2a~ka%bm9N=
zis+Ep>K&V6Sg8(1V#O9dAM98gi~Dkyxm_hfv0*_0br7DQ&4{4Ypf8OuN3FJ<<7=54
zo(WQ$`C@iP-B0v4JFo<B=sXevKoW()V|c;ZY096}e&@8ARcNieVhpZR)iLIAu8MDs
zX?@tXQ#-C9*hx8JC_$S*&jHWTgV{N}z8I!yZ>}^Os#z7~z_oJBt;C8GnXa+zM)k13
zKFY3XN2EbFOm=QwYJ$hv#)9r@a!nx%Q;%&GipX1Uwrxjg;2{F`u_Z%@m>};lJNLIw
zamA2Cg^EEWHRuuZ4N%>-xEc;k*_ndaRdJkfQf%7tmPgF@RJ{U+B`-)#U0SvGpFUz1
z&#=Q4qf%HomFjPtpUWOJrC#|`^2y2jA=!#~3tDo&hs-eU9R?!3r@O{o7J>hWV~?4V
zS#~tf<1DW<vm~)c>YWM<6E$;#X^XJG(Tyg2Gxg{bzP!OKME=$XdzE{E-+|lTWy<?<
zbzpO(#-r+wIL-?{o1drKUyg0ZiR%@+`@8z8uGFt@Hz|}1Q>{4_6IXc%>JeRU+Rv~<
zz1SgyTNbHti|V3Nw}LnQ_O>~$(cVS5ocm@Z1kBu$%yL(nAFr^_<v~K|xM}u?`@c0a
zWJpxrwH&RQn%A@V8&i6&?I{eBt?Nm76#n5Q-)uDV7|UBdJkXp6z8?@}B%Mdip-uKF
zB{g#`HA;AM2L5P{k!DZq42}cuB{&lS?>DDjVn@mbivYQl#9OcC?k)G4TgTYtp^|7b
zIsrQ;3XNE4?u)Ze6odE$9pW!W>b}?XZMVP9<}0KFTWEq_FPpu7h5U$)B@LJRf>;SQ
zsbPUB#jwgI6@;lpw7TLkbCgB~F~Ev`2x$-tpL^5)nfDP9>EOl$%R*n|O=kFNa}aVZ
zJ)(n#+EAPJLje%dTgBjQ@iY9fXGqxtGN-DBE82^Y$fOQQl5@tp=7(0>mks)P*zyBd
z6sP~EpUv|SsrIH;rE6uXCpwHpSoE1mg$VdA**)+cO2<`AN&ZDl6OxIy8v`CS>+1L&
z0BJyNNL)_C!^pvS#+V-|tSxY%PDEkAyI7WWYs}sQSuJAm@CyW~=tL`;(>hc2n*A|w
zwf_8S)GY=YYNhAZADXgvY~PrMEj3%%LYxvZOSEk=tM{^F6;{D@f#oOGl(ii3r78W*
zK0xVBSQ5=*ba%dO-u%lpdyKATi*6yj=e+;M56#M>7>evi%cTivqjdLg@%N~vB4r7v
zcc7PY-cNkb<i*%V6%r@=2Pg{aL0XUu#^MtftTzYzYTv^rPQkW_H-T3i_NDp3@g79-
zfXQm_Z9TpA&&^{8hI`r@DzVAna#pr6gB8DE7Qbu<EBFk6X;3iJ6_Q>2xGDO{HnS!u
zLF@+8gTU5)Zj!v|c^_F<MeYqURs#iQ`Hi(X9rCRC_SIb$LWwBW`@=W)e8~*WglP+f
zO4%N$oP>tro7>Ah_5kRFu=w`oX3FCwiJVXC?+#pLe_g2SP0f<>W=Fc?F#_^q0z3#9
z57QzceK?5wy8C_X^(l4}Vr~M51$z?<!sDWx!(!YREa^OspyZWHhB=7T2@T-mSM_#}
zdd2qVU`(J6ATHxpNLQ1>xA;hmJK<T|EkA^yRn@_4kBM|&Tj9ML%P{1k-w$>6i*?VG
z#KP-zMTg%=H5rW3HtNwCy{|h=Hz@9D71yj)X<B@KY|psg&4n-89-K`e)N+wyW+aN~
zFLN&Td7dc5m+LKn)Iy?YIJ=mfDDA*cwPSO4nB^)csc7FWPIjvm<VluBjwb|?mu%i)
z%ntht>Pj_BzK0Fc{?qqngi3DWWrJm4gt1SCtzwL>t@z|u<EU06{2h(~!ZFXPeXm26
zT5n7Ck^Rz{I0Xwf3>%~X&3<3Eet_NV?iJC&r{WI6fGiMBW)HWw3e_t34dN4eHKGk@
zX`GKg%pKm|kHY4~#)hZmse)Q^c6hG=ZsSV(Jl`z4mNiscuM|<UINp1>e|^_I>k1XD
zMe5Nz_;3gSPrxWxF0YrRG7&jbC7?y7D;)Rm{p`%eEQztPVP1SPedG3Z&p{&KDdcJU
zVaP$#tVnGcn<lGNZ|neetUvd1mryHPzsG<D`L!Z&u?k%*vz?7(UP}e{9_H>v@o0XT
z#{ekU-2|_5zfTYM{tvy$2CW&|+U64eG(V{Fr`;EQp$sS1)WM{<?P}r0;jg`CKR43*
zS_%d?b$OTglv-<V^=5j}pXO=r%difprZ-8x8j+xO?lj^LVU}BZx?lcer%|eeY!I_(
zT+`d_=`{jS=S>=#WP|RBbdU8&PRySVR^T0gx`_%*(E31r8;)?x{;(q!QVt#ZnZ|NR
z*KiMWANk65NE+>43*9LPMYw~cT65GOCToiD9%<<5eugu_E(byPmLNE1+@|a}RP}-5
zu7h0ZCw|f{7j}IraT8&J@XY=~702!Ee&YQG$B!*f0H`1B5BGAPM?U0PN-A@abx%l!
zrZxTD)83&E&5sk=p>N2@lIT8Zjwz9iSZ**oPXuiiEb$CaLzP5tjZ8#naA58_&+K<5
zzvhlc+0{jqB4b=co5{z8h|DZ%#B@oZ98t1*;2^X9PTP~msf0!A1P};}2*wZK3J)J(
z9=+fGpg4$Rg4NWTPb+vU%m<eVgS?Yy@^wnUB+=pUkc5(~1ed>$8T&Y0VZG2_Vhu5T
zn<(;`8D?FxeGVTc;q0=BfeuN}WdlvtEw%?Z-%e?;=n!&(YysHZn@#~%L#sNlvUj@X
zlt-+7Q!KN0JHA*VNLi*Hz08>?;JiMYk7jOmT}3oo&o?uqnE|XPCWu+tv){|#;k@5z
zrk+eE`ac@4s#;iZ3n2M;*_wKD`7%2<s-EyURILb`gRRNIe~8&}o$bcAg_`5>3oJdN
zeV@7LM%!10eym!?Sddx3*+-enrMqa8+XdQ#g2LL*yU_gKIQw(&4y~XL<XNb_V(gz7
zbL!3TO+h|kz87AKC+$D{ka_q74)jokabOB<ZzjCdmeK9`nOUmx##a30;z!bNY!;lg
zIN=}fo7<7l=>-0iTh7YuX|`;0;uf<KB|*>0H=tK(K(Zz_nA1+R9b}cD+Q0(2L}lWa
zxx$m{&fji|J-LoZN_aP7lK^?F<SqLC<wtY;m3E90N%rEf)|TkWeuFlfUr)0VKC#km
zZH@d-L4JgWQov)2d2Wd}V}T#p8P$Jgp5gbbinn6rIviN)$;jm!qgR_}=i1S*w8?^@
zuteIE-!>bswe1ry=6S+@y44tpx0(;<+a402NM~pXO_}0d5^^T#aZcCi+swtY?T?Du
zg?JQ>P^A-sedrq#eV?5Xut8Q?M5|(Nf4;#ShV>GuHk(NzXv<mxt0ef4!>QoIBxmw1
zX1PRnZsefIh{Q>(9)wl#&N(J=lI=pPlqUoGhLx#4y3L$F(!S4IfpBO7;9)HGU)PyA
z33kb{!I42CWR+=7-e4X_a%O`|u$@^<Ku^K?dc9eIf<?zzoi^mEG+W*4rSDB-n381G
z5YNC>OEd#}&b(**YEH(8&%7<qLKU@~JN#9bUvHj}Z%28zaB>loSl956OsK*(Q@{Ri
zbWw}=)&8Z~>Ah}L?X=yrhO4)mA=ovsMvfD#F>9~TS-`;9)$7-p2Nu}AFfB-@wZ>}C
zpiR*he%0%J)5D{Q5=uM(mtqI7UwPeD^YU%p=C`zi{A<-q1<76WxOsS<?EsVpIW7E*
zNUZD&lX-XdieVx5PQQ2lp4ntJpwKhfLYz<>PSBmgq8L*aA)fh|`T7RCa47elB|uWh
ziw~H1)F!Ap8%Lu(=<He#0Cr^?*Kux;1DjMnn$zDmkNwAv!H-#y@O^4^wHlZ#KyqB0
z<orHkd{gY8-tx2taVWEq5`&Q+74Cpu$)rwOX%e}cMXB6cFb#MpSegv6eW|&X4-yZp
zm5;?MK(e*boPDZg#@QI%y<n^q-JPkUP45cJ<w_|&D}OI1f#n?7Xuh0E``?Ea*5o;#
zu`r2~=<pJ>G1XiL^YqL$6&?z&gv9vK=4J_c7Sf@q(yu#+^<_4C>ADW{`Ec)QAlRPm
zl7)+NIip{<<tvBOI(#=)9-NwFQmQP+&BelQedw)NLlLmJ>0sc=8D`^Wb~NNoeE~uW
z&6~%Y$c5H+nj38P4_C|&XP5}}H0PS(=G^Z0`x%r=)2SX|1{T=26mDjVU_+|b<cvAc
zL|tM(q<cp?YRT#bm6ESNXoflI0`DuSip@P~O=|W3F{xMC`FIgfo{WpvhbvrPDpqkt
zq<JQ|>#&~JRz_naX)KZ0GkL*DA+v0>{TcR5fi~$>!wX4MWD78bGSs~nn0XlTS!zOE
zSv2pOYQ4y;E2R~au7D?Hgtl^7ylbxO@P3Vnz+)5DRGPxj$dkHsme-kEx#0e`8pGwt
zJRsEppU`0QE;~V2F;}I`#P||eq>g|YeTr=_<M#DT?Xo%z7-<@1%#-Q7r32d^8Z9$^
ztk}GKt2YeM&ID`fvnv@;HYU>L$^9xa{W|S0Ea9lSVY@a@Rhm9J(L8~Jf<edQzpX<N
zh4k%?-!jn*@vPNIG>S6g5$jQjOfVP7V$Hm({89^LpdlUyI)DBubI@cCl2F80Q=YKq
z^)Ih8<<h&l$^Rc`eBu=FPY@Ci;+W`$3(P4v?f+h^W-Q_e*qE=?`*gOs^73#mwiWN(
zv1EM3)3N58T-!B{^5u$PS1V*uI>okPA18iE)WVs@@*8f>CC0`(8Pc@Qj5BAQZhtNj
zQsR;x;KgGj%plL3klTKiCd0m7lw=;d!u~j0hf!V$LZzLHPcr3gwmH`dxwTl2+so-j
zqG6<p$>wcN5g*7au>J}Sp-D~)$q9XjoAnL0bF>x}>Qn@f(%Fe%9%3$;XxF@yAOa{&
zH5xH5D>}yda}KIBr%$&JBWT+A1MK4Bx2K!MVOdSES9oNp-iSS?hxz4hJ05z!yvJgS
z)fD@(2SHo8{Th=3D`TqJ+}*aowADvf_{@?sY`cvf(i-V*JKJZT3)yCFYmy>FMY`a>
zsWIm-2oIzCRbsAnPd$}uDqscPQj`aU=<aQEL#`P#$94eQ(ZUYNS)if(Q%oxoGfxz3
zX+rtZx+w}Q<}~vTr=NC@sj#jc(hIC#04?IN^P@3yI;CxbM<u&}OVN*LH@b(rI0Fz8
z(DSMq0Ic3MpHn{}nE1xS+_Fsj6XIA2xUjjN>LV<ezT2{51rn7Lng%EoBi=sRofQ|o
zf`C?VRcs`>L}GUD$<N($4+N||jrdjtCJ7~|I^;O@FS`f);#YeS_6TK!@PO{vzK^=s
zZ1oG>dJL|pO`zf?`-yOUxG7=e;}$@A6iIE3&@MtIhI!4k>ZpWXXT?6DtQ2tAg9yHG
zNK9Bm{RI6E$`2fPvriQ_IOV7>Z3M9s_L%M`CF`|0ftsw?73mam+6^IsDCvTQ?)pEC
z>g$r!TodeYoaH0^7e2-3b5A$4k(mo`heZ*jOf*uabMD!$`+(1;m?Ja+^3AoPBnUDM
z$sj&Fu;l6^KV~o;4Qe|8BZE4@*Y?=kU3{v4cTfnD;yq9Z0fQH^Hhe0WcA#CPQ9>fq
zxq9D#zZ(2+u)*>70NlpDX4vo9c5mR7FYULM?owTZ0*HTC7hxrfVU<)lBa9_usGrFJ
z`SsdsJOnXpRL>?1;6uTeNq6?XBJl1Xz9$r4yoqzbqJqVdk>n>De#W7J;xBjzMo3a3
zR>2fMiJ^gC-0Qk{fRNqBO&ssaRt7{whgwMz<|rox9=wpJQk;KKz|+Gh;MyS|_o&;Q
zp*@Y86X-E0c6Tzs>J}ygg1kp{*8dFNF}}oP%5V;KMm7a*=^49%;N?k8SPzsRK%|}&
zt%FcxS^)1rkfEk!4g02qOl~MB;Lc|E(FFRi7;=FSfK3rVLB_9750tKr+p|5zIWZ&f
z`b)Nbj8X@*i>gu`8W-5MZjWYm_n&3~b$|^oJRs7}2{hBCJfv5^*W3T^3S(K}3S-ak
zG2z0VT+n`&_0M<BNdqWJOO;4f$Aywf`SL?oZ@+J*#mDB7K8cV|ZkMgkjt}MP_~x&o
z{#9)a7<uQUtKED5B4ivDbGJflELiWWUFW}a5fSNpeWm;RpZ|UeV0P!wtKBKizbm^5
zJ*Mw9?s<FtyGv%1=dO0o`@`~?yec$6wm>mw87XOgGAfSm<2Dz1Oej=C><-QVI!M?|
z=;I!q8>`w3B^ZT*E$u3#fbo?~54YIlJY~x^*e)uf!`JD8^SgQG*;RB=B##<ZLEeL*
z0<!FRVtmO8Uj=loG8YxCq`#0UNa}%as!2)RBlusY;Zs8He-`c5o|>2jde_Gx_qwIK
zwS%DnZ614;o3J?cIRftCj@2RTB&tk}is`HzY`RY01G`4$kXByf{u$%WqAY4Dat&!7
zHV>P_m+U-xk9p^<I8~h(1v~;acLgyhLQ$#VC=|#=Kh&9&BwtU+q=37hBLW_dbNplG
zr&CCBl^zK6RaoES^OLrlk&Q9Wv4t3ZWmsYy=fEMR=nUU;P-#Ish)=Z@6-cYJA3Vft
zIo0<JKQ3)1NI=yNxY)2^6G$sQ)Bihj#O+Y15Gtz)8E28zla%T_^_{ur7E-fFSI2RP
zrh!nRWF?}>dL}GhF?0pEs^A&VN@#5u7{=S62882`A87jJ*p#kGFd(7*vzyq(or~Xa
z15+rGNPT9Y!m4m8k!h=7gWryI3(y%9MD7_uU=c_lhi))EFXKMstk>g<t;g=3k><zs
zd*C1DoR6u{z^Ssl+sjZR`Gog4umA4;F=)4<+R0f;<@Snd+e%LMAgcBfnbBVDB_#%p
z!U<Tz-KJn-At*q$bBw#>PTy$mOX#4EJOIa;`Cj~!5k?XvW>;|AaBkR8xsBJG_0yx3
zi<GS*QTDbYB00nP?F%y}<P#t#NlK0SjE0Te>$*A%h9va7C{9Ij%CP+qbt@?Wx^H+l
z@NJ(x+U5Kl@=oB;zO)Oyx~&bjy5K2Tp8H=2tT@L0ehjXe+Mi{7;O8kH25vf-Q@m^b
z6<Ax&!l&FfM%m<(fAX@la=o8+x2v5BVhycbZ6wGgldwfb*_-#fAI=Lu(5cME%;ZGe
z-_G#o-NfQO1`-(3@lUx;d%l2Tht7{rxdTV;@q5+ZUBAZtvV>y@VkE`@;dZ7ak%31z
zVV-+SFCLH+q#E!cTMIIsi}cnR?p^B8r*+SW>(P1r1^2q5J>S5!k@B=Vd(RoAAp?(l
z#w{lmjTD`nPB2e|Rzx%}S!$Wi%&XjIz|mpa#Cz4-#7eg8=&A0Y_B~&~VOhJz{bA1+
zprks-t#J<=6<abAfe%Rnw^NgUM3X<ip%I0nxRg8mwMA~j@aTn*M?TIPYM+DquP?cv
zJaAKxEP2&gMgSmEKv|r!yQVldjt}^k{I@<Pc>lP-ql-z@!Vb|{ZLf3>Re*3M^6BdW
zt@qf}dkzk-+ktq%-Mzjgu-}*VnZi(qz~TV)O>>^RIB@4Y`xf|*>~<J6$Y~)vcw*qi
z8^f;v(MG?fFzVmGF2dE+Kph$4)QJkI3Jku)4pJB-nNZ)L@rlxMCZ7`c<e?aw+#hP_
zXcfE%$^8_Yx5@qX3&2Atuc}8dAfd|nI2ic)C0>gNqYxJkd$P0Q^1xXocKCNYiOMM7
zp&1T!>Lvt+-E5oRrmz_dnXEhJLn`{Krv`4CL1wd#98qhk-f58r4*kHrbf~TCN?1_^
zxt^-`3ai_9vwN|L?_$wUCO#7lmn5t2u65@PNm#*sQ;KSX&fZ#2y}`tKlqc9etXnRG
zFV8T?7gE4V#n)A68g+DNcTMTP8&hyxh8tJ#SNE%vs8f&`W>~wnGXxylV`NpVLoOk;
zK_`#DHZ5=`UqJbElr=62i^ZD9iC#3{&7@wterhW!)ONARd7Pi*1@5@>Z3p31)vDTn
zm_HTFOy1k~I(PBRs1QIfg<KT1p*l>{lD{&@uVcxh-toV4Yf^|byd0J_geaSw$k$~$
z!xsAo{c+49GU-lk2PLP;pIb|^GqF0E&WMM7kAIt3jo_v1A>>Q;PMClXo)dfMl>@fw
z(xSi>st^n|a7O=`NA5KhvE8BcLHvYwj-JZpl;7Ui3J_>@Vl|;W&Z7SD&;M}rRCa}k
z>FPS<49W_`Pu_BLFX%qErWUs)cDW=W?G#21m_1a@AdGtcIixu*(c4QRCtPSd3I$DP
zVT6?q;~aK!<SSitpiHumg27W6nbM^ZldequkmE>%MngL|Cj;Xeze-%pM-+2wz`Chj
z#}5CV=O6aU05uQCBok~vgJN0f;~S62_rJT2KExRkRV)1^is$eb0OsU4&*#PE{9nRu
z!)3w%mlpb`zA+#~KH@lnAJAWw-VOOYJm24%o^(6gQG)u^60BocsJ#5s(ztDB4?+vq
zem7NPrg1*q6u0DpA!?dPab9E#FdX8JSTH0cT0ym{XW<ippN6L=Cz8SgQ06WE56h2P
zgao4a2KmXMyCkRjLEjZWCN7fhg-<(J;cYKgwJhg{H+|6`Coam9FpJlKYl)HwPU|vX
z>^HWR5JD_x2=~d(kxPA_)5z_V-PX{KMT=h#mEJkyC7=Hz`)ky`s-`ZBln7c!vSS|c
z&D*-i=vmGg5BRRxp16pKWlOb0u99_u!tb~H+^@pF28#q=P?!#-2p+x6ck~a5|0Yog
z$vouyVO#fGV0G;jvZxL}Dj(QEOMSWD+DEg=I3SFh!dT>s%Imhv$1+e(uo|Qzl8W&G
zB$09Z{&HWhEq35CdVm_YKBi$yeHE<3zYYt8Gi{k~o%g0f67#WvhmeOkM$WfOee=Fe
zB=Vbs$#+5Yho2hz+u$J~&Q%GUTTcbDp`23H8ku`he7-+9gs?O*h>XaU4QihS-1%j?
zzjw_sZ@{8Tp+Xd6D23g}&W9WBgP0p{J?ahaEzY*TFvun4Z2Q(%oG|zeBz4D0zrgqP
zCr7=(@hPeSBv7A7xG2Gb&-$J%AFQvz;z}7;o4!Rl@*}<zzE8X>Uvix;u`qBhNq?!%
z!7ul5Ur4(PaI6V%RZJZ?C@BznXP>qCX(6}?l|+J6X3NaVO2omI;v6%|zhB)kz3h3D
zbS1nt+!5eA4C?#Zt3ySu1o(5oaJ&(TepurB5%Qol2Ze*JWUg!!^`I8}CjV?Z$nB&Z
z;$|tLAMhRdOX4CHG8-1pZ+T~`Gk2!1vEb+s6kfu5H`dkyQUSRpr?STImL6aDUwtY`
z-J^hWqI|7tRH={4eAO5J^=oY3h+Q8-toXv;uqLUJCCrg2JE(eSQ!kGC^pU}pyfK%E
zB|tU!f5$msW>oJd2UjA!<WNo;mb2`_s85&LpOunxUXFg{AJ--w-+5|ARQ?)%iq#q@
zS_L;zVcKyHtBbmCqa7i)ma7zP;E401oCoX=E#?{Q_OTgJlV2TN$&|}@s|{}ENdVS!
z$0Sz5Hp_rUvx9w{7}fu;A!;h3ymfWGZT$Mks9r}TR&o_WFl|9Q@5^qETK`PA4f&tx
zUAQvp*oPA<F&LEcR5j$`Y~MSk`l6#MVPN=Hs@XMXZ9<G&ca(lqs8x2p_$+$T9Q*H5
zpijuLx6EtNXVFhg<vA4XaLe-AsQlO=m57l{fqbv3I=(ZoH0r90?006v8Tp{{P*l!e
zb}4eO97ERqFNkXJ785)_9up7YM7=OG%J;NgV?wKKoRC_Nxi~7QR&IO*bvu#iXGGoi
zILnbqg(S@Aj?*<cYV*~$0d0{Bg&{%zJ2fhJhi%Mmt!e~Ag1P;5YSe)HY#X+5$qbHj
z>6oaur`x76!FnwD&d$oH=NXKno<sR%eZaCM(MeYxT?s!_#yBdnvwdsS?3)vHQI&vQ
zADZeX*s8il_I^nfh07z>T$8L`{81Lh@SlDOHt`Qc?7YMF=Xa1m%t_7w`C!7bh!J<$
zR^q(KwBve3Uehs2;nX@6OCxT-({>jM4w|1xV@Y@J+b1%VWZOXj#3|P5FGLJsA_#^I
zxz9XrNH3I=xpRe~4J?gFztMIK4^FLDU>~48r1L%E{hkmQY^uQQW8FeV-RO^aXA{5f
zhBhch8bBtM?TgE#-HkYDo9!(i;tW})$q#Z3zBR}q^P4`u{9ya?I-3B>kl9$MtT|uz
zdG32}L?RA6IC0?yITI2hmcC>=ilIa#0DcYx@Hc(7e`j0AA_0i~*ka2k4vKi?72E8&
z5xg&_ekaz-&3&r97ng*lBB?2zk)7F*5Ha>^`^4xrK&dpz45!a`eJ=aa8y#^Axq!4_
z$sOyz?GwA*wikdrK9&FJ_xKCG>2rc6Zz<9So^h=>Gp>r9Zy*U^aDokuov;SNG%}o{
zu8BNI%~%p@1#j!m1w?~uH=W{Aqav&S<H<+dx@Wbs<Va3wK&})GjU3cud$I}GuSDxZ
zRm*bvkB|IAauXs3Xqx4y%DQzQIU+JDjaCUw<+fs!Ci!$h-=f!P1<91Jw;Wpr{pYj$
zo`0tuxlo`kt(rcjQfhd|MlNr&V-J@Ng-B1P@0`#ta#O1Pd6}wW+X=$?o#x9UhpnPr
za%zhgy@SOo#rfg&i0UquMv^xGA0VWwl)H0deq?nAKL;#G>Hzu=ClBz#3}@|gk>yd|
z@>rq=S_p1HtUO4HDxeZGF7mNU?2F(qO%xd^M~#z-6lvq0h<7`97wTOtUSE5P(wu`H
zin#7>+X~u(l@a8Pa^AZ=;>Po6PDPuosQ0j=C?SWJr>t+ui@bot!cl9eBIHcTi9naE
z9ojejZTsqcB@W6!fC3h`EaI}W?D+Y3o&02o5TC}oMFOEE5ns=zPoD{haw|dDN&F-K
zy2vJ%Z={@0ODI(DQ9DY1mUCc!-_2|7E0}CcGolY~$;71f>MaqMK5O6NVP2CR$lG`e
zqW^u%B39pL`wB7Aw^GZYnW<r$yy4}D_H;U=v8zl0hezSDpC(4k+CVcJez2heNEOgt
zQk^eXMSgs}eRUBs2(`uWEoC|BUqxK9FTd3?5$%ZLCI{K<qx-(`v0bCl0CSQjE%ooh
z;=T)Sv;(N3NCP4pL!csMJ{PgCNI>Q5n*1Z%alfd%@&`9X-0wA)P{Sz{YL;{l?2&W8
zR}lx^Zf7mN<()D?m|i_3qS<3QqljX{GES&HO60Mh_c?fPUW>Fq`b(1^_*b};9GnGP
z`<$`E4&?FAvF(kj>1g}*-qvU9&$h3$BGlH_YFFBZti&A?5q>H!T$KT)Hq`k7*779}
zAlWFR(f(dVke!k%`k&N-EClSMU1VG*tn8(wk*iKkQfo;SSYhC0cqN{u1|na&iFQ~8
zG+Nby+=`(etQ#n={DR0NzhxMCloGD0MHPWuvYfhWNiC$E^Gt9+XDdbvRRJW8JK1^i
z`iRkOObdyDS|KAjlWjWjc;s35=ExN{+g-|o)3BCQRjNTJhjGlE()UR*1Id;Rm6lC%
z(cSY=#Iy`rB{$c5RX7k|!7iQK|L8V85hIg4Yb5PSX<I$F{~2m!41BF1Q`#>9EQAVz
z{UiSrvqc0&Joih9(7C5{M@HoQMmr@HAi@a@?u-hOpx<XX-w)}#`cpe8YL!&BhFbi2
z=xeh7VW5aEi~OzAc9u4>GOhk%rij4+N;>9}$g{+I6y0uP_@=-rKzegWN3N2(Dab$Q
zrM#VJ6fHHx{#SA2b3-hb$(4T4&<<b1z39yE-S^IocBrx-j6Vd|BMZU_oe=rKS>791
zfL4l}sI;U_Gd}eD$h38IQ5grQ0<yWdCUrv#{3-tah&yj(8DL0LCBoZlI1MrRnqHAd
zPP83kEX`PTpF2OpiFhz#^fK=eo*0W#iv5tQXVJA0Pk9o;D8Q#UDOnhN-@Pf~+NJi#
zMV+!fH0l5mg|{`LP+W&HVq8(JwP>D{-Qt8Vh}iD~Z|n+;*dB8ca_*ev5yw^74l?aq
zg548kBhPt1;^njH8HyZ8f&nNbfcw}4^Zlns-Z-m!NeHL)9s<=U*_k;a@`bZ)7f3|#
z7uHr{!JlVDelW*-f|s!BEFjI#y&pOLHQP+eZaGGIs22=+XY0bqyI-*F1yd0f!cZm*
zl;pgZ9$9oQUDoVdQ6HYKbx*H~IHaEW%1q8FZDZU07-6dXmdRu3U^9E<_Dz3<r{TWH
z=P(TTKgS6rBh87=?z`bR+ee~EMQ!)Vz?hAfHmC3UrM8cFP+1`vEyKAqyKl~`wv}Q&
z1g>_5iIzu_o#nZGx393BD0bBp%YuJOsCo0mzUMxLrVS`(JG9q+7Sidl15CpDLGzge
zpmpMHDV)>0-iuz|WAJ=Y5Mh>FE}r~P3>P<aznGZqZy)t{C$Qc2E|uhl1~E52=GRZ?
zO{TClcL^d`O$*Wc%I|U}J{&!&gkiyDBS?$&L%MdHK3_%q`wpIu1d)R{DLJ?E&ghda
zAM*DY3f5rxQ<p~1DX^0Y>m$1Kh%IBnO!VLbVm|(f_mVdYk7ktQByIB-BV*2a)=o!i
zM^N8FMFA&zZS-S4#zHmbjigZOwVR)f&P}F~f@E+NdEVJ|QkT|6cl5TiW-$a0iqvNl
zbJlzs9lt*vl=#KnLRczkD+un&M@E}$h`HyfqvoTskF>f)s1a@>vvuqj(Z~HxhjIe3
zO4dm`f;n)2uGkX&jC!P9=?fGtgOL7B^t$i)0zjYt4y1CXe;IvNw4G`Z7EgZcrv^J5
z5{OD3`D$Hseb3!LL<@NPy6A)X5XLW+%2DkfsdrP`f_3`p`{=?Qyd|CKVkB#8Cm_KJ
znNIJRmm&tg!BHf<AqY?^7mC#V;bUW8zxpUb!jUn&U8}h^{-Gy_yn!A#3U)}UKO&Tj
z7W_Ex8eii}N4>#)Hr5_Z+r{v79dx1Zj%An|I8<;R<u<YtuRrYDb|Cf!m7xq`d1QN9
zgDOU#mHp^4-=NJHAh3$pC|BNJ+^&ZRr(|_sU*MbmMz{5%+7Ey?grLKF!(87l>v+m)
zsn!0X7BGA?J8qN<uk!6!dsK)ijIM8|nvULx2Oukvt1iX4<s$zT!;h(E2%_V;<gv~p
z(WIm!wWT?$m&eXNWk5BYG8<=%@-{eV8P4QkzKo86GJ0g&@C7Lf#9=reJ=5pC`_sfh
ztXR`w<t#ZN%aS6CPD&0zdN8~o0XPEirmnVZb{B2&PkfWRo5N^Ji%r1TH-*#2UM*W1
z(Q++(N9)>zoy(I#5OXq|n6n~tBo<*Ps>N}s`%HrL&dA7HB}iM{8QTMLAm74~FL)&)
za{)sUMWI_u^^gc+B5k5)<WcEEtGVxrLJcw$N)wV!w_$T^@{fb6p-b5rK^F<O)L_?2
z5;pg%1O0y-J@CKuaXiC)dkl!I86J=h5@S#`c#k|-kG&In`xk?%v9*8#QZLv@L1XZe
zK3Bx`d~Klpl$PL>Aeho<k8%<mb4$dVYm#NW9*v0v-^9@5L~Lhtto46?MN%~%?^PIU
zfSMs1p;I@%75C{0b}-QPCBx&;aJGCJQGY6Hg4>Shsv3VzD8!a|cA;NS>ihEZEF_My
zfkY7L0t;WY&_$-x?u$HaffcyOTElZ$N%&*BmhF@Ik#h%G5de!0Q*Nn6sARLztlu6T
zIqMvTL~|q61Sw3?<l6s4-fI%A?G{?^0(-}CLg&Z1=MN!;!I@~w?l|v1<^S_%DhFXn
z2?6zk?dGAl124B0-{PvU$@lv6;$B^1n+hTQns&@9Q|^zOb;1yK6K_f|)VY)Ic9ut(
z<)e?5+No`=2FT8NH!}XG2bcnu`>I+J2p#9F$76TIFcvL};B}n!F>&ixTI1jDc7JHp
zGXdW<oD#s~#37VAu<LZ^o{m0|Q`7D$0Ni@2UW8HPwTmK-JU0EV0%7H;jv00IRPHp*
ziTbV2%<Hie;_HPib90hYN6cnLpV~7S0WFkk-CJTVOt|-whzpNTzl+)cMYT1Uf7xX)
z7m}T;?~V8{lkovACVcAu2|MrbDyr@8Z|q$ZPQc{MnTaAjkX~#UdIu>2dj08v#3UpT
z1VU4<1r)oepm6O46$B9h!Gaa+1r@~tiUkGns)$|C_w!wIP6~3L_Ya<j%sw--XYaLF
z{jRkp$H&y*Q6qnVGH?qc$1s8;QiL(ED)DkW;W=*GC6N_}+1N0u8N&nFf0*^tmq)%l
zoR<_S(gAYCbSeCox$a-{nyxC$`{xK4wOg9rnQPxsTva-SL&L+0^st53H~nG&1N5OQ
zEj?F8GEjz0cgi7=NssV_#CogM8$%*VCCYC2vFT0M+8by_NmU8m06aX)HCos7pm%Jb
zfwPrEk>yg}Y5K%E-a&9WS$MHPuJy}5YkGNj55+-7f`_-)!^qrg>zX!ul{@OWXVFJm
z&u_Y@yS-x&Ny(_wnyn;%lXXp>Si{e8o@hhy!c|aagFE8;rX10j6~vzquc)k6<r0C6
z{l+Pscl~p+)*wE7^+qTh@YUF|Dbj6S&lCLE5gj%f@2W5uk(+y@f5s;n8(}M5<5cW&
zu2X0K{{M0z4<=G^u8H+&$NK%=&)A4Rxi>lBqVa>a#lHTSD|ytn4X<2&qJPjfA~~i7
zA-0$VWO3Z-e&H9#SMzPXCd#u;phLxCbKRC7gA2B0O4;a5ItMF&_z~-KulI`nytb`^
zTvYGCr-lqi9Vl?G{42KVj+SL;UL<^vr^7e%Ktzs1qXQgIyq}|c?F-R(UMu^J5P?t!
z=7GjAfa;Cy{eJlN|L->>zt{gwgLmW+E~vX7OPpf2AT4m<<h$3pdwIXw+>5IywNx_=
z(>)*mI$t0ACi+^`rfkfDuL7tg=ZruiNTox!MK3tMl`ShIkqC30n&mHi^Y{|zxOa6K
z?J!8#fft?BBek%9`!XI{Tt0?!4C=@QHy2=g_aCthSDTO(F#vOxeVWOto;JxlZDlJ-
zUwreUP5cTW=FY#+d+0H)g9GHXCGyR(rFdC5Q`@hLwYjdf<XPwHD%M{bF9Yt$CjOES
z?Ro<_mtQNE#1QM=4oxK9js@8hdk4LUS>f9IV7zzOU|!x(V6yfJ`34OXBX(Kd!a_yT
zU;HilO<F5C{#g#8b^dQgYWwHRZ!H)9WX0W`yLnRTSzGNQtvWz`VAydYj+~f!=LdFm
zAlyt!V?a$cz@+Y^i&F1a;6O#P>5PVOa<2c3)L&MI52mL$pYA5lNIiR*T@f9JPVEVo
zrut8}tLA`?sGdsa8L*N>jpWPxaci*irA&?VQ6Pj)x&&JC6>I_rvhbVWt~EADi$lD{
z>av3^!5~F@*MA*kzHWov`J@TVo~ITv#<JY>Rj~L)#?02hAqUj1D3b^Zz%V!aQoqw5
z9rQ-pZ=qqJu7<P0$u((f@Gi4q1&L9ShBN_Qo}<VM@0<5s(Bd`D4fhE&LGO3x{yM;a
z<?{9t<|MG;$-sRi(=Fb$+3WXb-^<zUT8`SGRef!xKcK3$LYa6;aBi@6C?eU(@Sn8|
zsH(1}f=MDa2vE&ku*^G_*db5E^&f^Mu(WW7z2eQ=Y}Y%-M^>Yt(ScYQ<9xeox5m5j
zV;kdSO#pT6*1X_-^J(JO6epA;04>NJ@|;&3K14Gjn*sJg*xd|`vgf?R2)y#*V#*i5
zki$taR^+~W(R*%_#oYNgAi?xf<KSR=l$;&Abq;450S=Ox{eV-+2BEdn;@B4lw5sMe
zLkK8nRk0~pRX!#5Xt43qjtUz00u#U)RZ=HIoU^y@2|AALNWuoD1^rs2r2N`1xab9x
z6fVJJrAORzbNY%d8QN)fOaMSOTACTNXg0~O_=zYRoOVJ54T)g2A|2+lU{_H23ENDH
z<^<ZD3I0PkFfSkN?$*bHQ8#wfR0)Ai(?m^U#&NVPnEZLiYP@8<r~_Iias!df^Kf-;
z^3wOa7{v^YT@@eXr6ARVF7QXE{IJNhY}!|=Fi_|o%_#t1gg-Sa^mHO3EwCUr5-NBB
zrrL_gf}69Xg?6D>yZJ&8dB^OE412_`cI73baFWYyi$CeVPek^uU_h?fDwdtNb&U|m
zMXvILlwMs?3@r$U)lE?j?H2WryEj`Srx}D>Rbk2jMK-fsv)pE>^Rvrfql!l<;4Z%g
zy3NP_&Wu(UaV`{GBod4M$3`h5<ASQ_!;2YGW^t85qS!{ziJN<Aboe5>J_y>S1~y7D
z&s~3Ibe{!WRx21t8fO}12l)BbH%1pdZa=4(Jz0B`E!+<RGSgK~kLEpKLzGdM;)%D1
z$8i$LkGwc~njTm8cD|15ZDvH*-EY_XA!PM)OUHX<X7sj&CR^lwU_qR_sEv1hQ<QYv
zETkb!Bv3))UxhKy@Uz`-`OSuXl3fNb?*XAuZVR4|w#3pNJjtIksm-1v@)?CAVj_d%
zm2$6O`LVbn>TLI~KZAD9WNwr&N6mI_obTWHZN^5J9npi3sa(<D_x?6bf?gFCJdC&Z
zKitX{YJ#GDOcnERGurykea?*#J}zV~WTp5EQCm<+Xoev$%e&iRT{fE9Qmk5FFrjOY
z^-Dft9%@KRq+43|)zg9v@7N`D8_?3uWe*Lm|H-cOXN?4bd1XMb`j8G1j$8?Kq%J4;
ze~dEqy-z&Uh-SPKoA`{G3wpK?Ap(E6$JY2G)}qxHx#93ZB)R6XVL|#cpL4gAz;pQ}
zmKm=ZH!r<c7kkZc`+LYRzuQ$nfI>?mdFuh`ew&PHR<amBAyz``kAjJ*oMlc;oHvRk
zQIbc87P@WobnsGZqUBH<(giptV!og-gH}vg?!;GuoxgUh#z^cn76CG*!XQ9&#D#l+
z-(2v1@M70Yy=XA>D;ANZhw}4gZv_Xnw>JtLF&55(Jmsad5P&GNUFj>q5#dXLro|_q
zjBpr>GSGao6{XMplb6csn85lYE;LhI=xc+<|F)SHBg`~S-bOhU=RF%7+}P&P9j9*v
zP*JoX*>1V+z1M<!J7kJ?;=HPmivhd^+>gQt*)DT_aMc9(6&_=1+Nl8^;*YibX;m;Z
zBl9{K+(zokR$$)`revCPOD;b4+vXY9K|TaHQ6wi+Q!~sx`P#AX-bH{K05M)A@I)Vt
zPJQ)X?aOeK3_{<il$nXM2b*&H{=p3+TFIow70EH7jGVBx!FB%GDQ0Qov>RQ`^<2wI
zx$AWwZ-#_?mpIxxbOv1<Ruq)}WuzxMpJG(->GQ$3V!Jl12F1&{{YM5H-m(jPHAJRs
zbI%N>+?}{a6E!{S;V!}XJGg|ejOUb<AU*OH`s<$JlAHnKi2wy?70!_oFymD$0L2ez
zJ)+08_%k+%v&AWwDXJe0&-Y7(?hrD0-z%fnUE3jKlBlh;^uaCYikbx}`LGsaoy0tB
zgiuJ9%lNOqvVfJ5ZwUs%VpF|PjT+zD?C*pdX@J<Qf>#u$N8982s=0VNR5%nxQ~bZs
z()gd-&!4x{v}XLO6WJyu!GeHBIr(q2V+&(!B=Vq8ORI6?BHmTacn(%F4RsWBgmdM&
zLpS&{JF)adSo%}=wmUlbZ${hwA6yeT8&G@Cxt*J12X1PwOT$>ZfHd}iq6^OT-5k5}
z3%ibPUJ)=DkQGCF!p~woH{12W6*WQM(#l{&jd%&yH+*T=X}vy<-{W@=6hL?9Zj4<O
zK8d39!4NhBOW1D6{IY!+oB_`r^1%Rb=)i=4Xf69;Kl?-yg)qVC6Q@&>kN0hP2M_&1
zRu19mcx5GOzUoTy;fF`P@oiXQfOh2+Dl_HW4LsQYyB+HS%fO>Qh7TrMON(6B^q5%m
zQJ#|zqbrj#D^g_#tCq%^U)ey)$ioBL@tWw*4>i1=sjTm`%cIxmx<N-25+-7ax}fEE
z9WIToeuptyK2R+N2h#+A5E7?qK}XHWInh5?+9SKtHv?gAk`5`j{nDrlrJxPyfpD7!
z1N|w>QdW%$g#>2cnd#A;;T?lGyRuh!3)IhBCS4Z&AsoUiE5XD<KFVh>>#FE658B(&
zDaT?Do1o`$XuS_#8g0I?)kTmEJH;APZ4@;t(>-@nv_zs-fR%I4Rak(f0rK@j^r}$)
z4=yb&L3r{CW%#{vZFEEUYN!E3m#*vlygM`cV|cwzkI;H`oe{l=*BW2p_h>^@C(tJ<
zv-G|h(ZfUW-=8lx<pZrc)4e+@`u=>osdyr-I4RFzAJ0v!%k|Tvr!X@<q))u02Hrk4
z&g`)9xbfZ_qfa~=z76La8XKq2=FV}Uu+^o}XT#;`A-Il?_#Sis)rJrNDLmBiqQ>!s
z(U+kGp3U2M5f(ak33dPY714g-m-XY5P)4R|9-+;D^ySe@8tOGz&3y3JmqlX_+x(KN
zB#Q)x{)})FXf>nnVS!)^fL<P*6TNbAD@id4bM-?(cBn(#D{lntTVf$W>f&&fAr?1N
zqxh7ut@gbwQwr#?YN-zLO_PFh%1@D_KFbn3ws<Vy3b^d9D3Uw`%<^}Ma^WaciTrXc
zPfaiX$VNbeP7qf;_LTHj-vV??#t7ykjF$Tk+7ztW#INww*Gw&~4pF$z{~g@-4i{C;
zXpHW>c0=&YMlN6nQMPGJsLW)q4=zgYI2q=L4b98#)y_SWnLg!pySWDyhA2uSRcPUc
zVC{BTHYc7gO3d!%s$jp*F#lC5g|7pYEi?O^w!wt&?P~EDV0Q|B;A@fsyuEku$QLdD
z>3o($BI$h2!55U!DhWc!W&h>zf!`Xloe{QVYzfK<55!MJ1He;)S%34uByScWu^Az6
zmK5b+iUSEK!aLF~@xOh%)i#11r<wNGuSYEUpLW~eF#XFn2c5S%cSCdU-RIgZvb{lf
z#^xV)v9|!3W$0O)>=@nB%bP6neg$q@do^Kh5@r6ML%2)6UE<~akg*6es|#O3ECKN{
z@hxxMR)D)WM|BOComKce_#<!d8bhFhR1Tx8obW<-+Y0Ye9sv<|rWzJdy=HfL&xH8f
z`X+Hs(j?}D2y{rcqk@YctnsFN^$%PtXPr8kA+A-%KJo}#kM8T(dVJ9C*S$_)cH!)l
zG>M}ZNIjxZ`Q&KR|8!VHv{)0LK<y)`C0Lw?Z}Gl;pWkESjj6$Mo_kEJ=?C?o$%Kn}
zU$<Ah!OR<X!4Ly1>nb7h@G5Tw-i_9en3D_YyF0vPe0ANA>jRtdln$hV-Nfpk2fRi)
zq&!V?FZT}M`8)~8FN7Tcudu^%*9~3=EOy(v5Du+)&8(%~bbgL6Ma^0!V(~+LMXusT
z?_Jm7pFm)UvF&4Crw|C-(6L^(Nw_0`wbKUL5Gc@QzAIbibqjIKr!&_&95scm9`sHD
z<GME&MwTmC?iGVaW<n5-`8O=%(mi^+w~bjt4FD-|3Q(>7K5shY)JJKxocd{TqR*;5
zfG&H)La&Ly-C4H7rzOhYxre{@W<V2M7Ew+h+`u;S5qE6$cC5GSLrE?n1z+KL6yejp
z_KpM!E;WHD6;`^CgovJ(pYl%P%{Yep#)F|Cumu}qBhoL7&RX7K5r?sOl%6d{@bWHi
z;(Hm3Fz))q$Fak*&nUo17v+bdhn&%25iAD#Cjerobn!ye3U}(g(au+O(6(_4U|!%v
zifQGzvmWu<LL00N0pxgmLeM`R^a1owasvo&ciCL8GoW(%9QVbkOSbzsta<?t|326|
zAl_jSEt<Pl2s2)0Hne;3#c20l9TvewFw&)!9lxJ9r%Q)L5O$Yp_%$a$pN2M-<sLoE
z>&qiptU=XNc(bKc<ViJn<3z6@+eV6sN#Yz)fzv$qNTF95UbY*!Sod4p|D?4NH-`mJ
zAlwRs6F#SYw?iKDT0?0e#bUNM0KXHsN`T)v>cy1qf-!T}kxfr}C7;7=gx#@Y3r!O?
z%yRdyjW)WN4bgzW@Fs$49`LT;m9eM`*&tLcvh84MGairLHQvY{<Tz#@EU3WcKj!@a
z9btWeCgk8DB`J;LmZW<H|L%}Ha2WoG?YnRE%2<5XPAa9A!7Yn=4^M$@)IVqdV5$~+
z_rPZR;4mgBu>wCFY_PyBUhWNoz<Xk-RuSSM(MA2Om)z>@zaLwN41`yO>6-X7)!lL4
z>)z>{ZrGR*$l$5uu!6Am`@mZW6XQBihEljvxA(oD0RD4yy5N1I`T;4-VA}5X-rr(u
z0C`Ias9di)Jy~w#L*AQgf{t1hMS3P!&U22t>rO8Xs%LK~e?Vk~UsKn|-T#R9zShWQ
zIFTd=a%v?x^4vc2y~F+rpM#q=0|v>9v)$MCc&F*~@c1!icC=mKb^bcJ>7g5kyF1<M
z{raa}HLjizJ91L(_lUQPW57fP%0AGc2SesIukoJ#axXX3o*PcI7O{T?PE9BT1ue^Y
zC&v!JacOc2I09~MeqqFoK%i*tdhcqnR-(96KjD~5e*fR2-qesSbOsfOT_LW3YkieB
zi3LTxfoxELOo_+~pYk@nWvoTN1t|bwP}U;f6@24;#Y419Nv4g=C8Ov)@3D||;c<#r
z#}Q{l^WFE`yl+3W=g``YS_Qm8%nNzG_*?HM`ENn4KnBDxjmqsEA8z$phUqZ+qF}(e
z0ngL|7g>RwCzg6KI5f-BISwd_4Fx%u@4B5DTNV0pSuHlS7!{rR_Swk=h8-dXVIu-~
zvqt}3?K!p&4@ogNPg#RE9vxe8AdCe8OQC;Y*tVkf{+b=t(?q64ZtQw*5ME}UM%g1=
z^^_Hm;xhjUuk;JM%({%^)Z$RWrAVZGm6yfBz*@p-bwj8iFJHXNd;2(!xC+z4m~e2i
z6*-M#*BucuVi3$~RPDZR6#Eg;%%J3~j%O@AHWaSG-jY@bt`X&3`<w3?Kjf_l*SZ+o
zlGu2zyJWlf;Hx&Rex*}K#cSm9&@xhXXzOEMcWA_xg~k$`T&7Uuo>=L<w*4Op2yCS`
zu_okl34$+l-z@Ql?v3DUDVsNRroMf+?gj4JXT1MNSy2K9UD#2OPMB|rPWm0pm4nWT
z=D6moy^D3w^}F);REcQZU=yGBTEi3|n_`uT2+6X@jo<2h7%~;*Oq1$rOeNDj@s9T~
z4?)x6Wq1<gt|@S>TE>1txET>spUjkw_3OMSLbk8%Q=t9`@HcFsjOE@G)`J)75GLfE
z`}Y>_{}8=)meJjkryNKBMf1H%J`Y(D@@`vknSO4~Qg1is-$qbhc$(0KaDgl&@(ato
zi+AjCprzbpx_0ZmOV}qE6=iqhDiDm}N%!e{ypq37sA^s|UzB@VXU_IE>~;TY#e(gh
z6y?OMvk~$wUhocs39$vmuoIRw5Nbm^0ZFu7<sHW(ZGTKr>mN6yu(Yyy&v>6{KjaPq
z{D_+qZNsEnr`6tu&x}rs=|rZb7Y&{MnD-LLo(~9*J!e!OdGv$c?d%_~=u$Ir6aXrq
z*ra|v>8%Y@zq)`OL*PgO>F|iRs#ew}s4%-8+r<%H|J(B1?Mu8uZh)(4iuj0?lBbqC
zuFHSCC$JIv0w;rNcEr!C36DHmf;@S0xi?FC2?!&dXTsF#sd(RF?=_x=`i5hhr2;`U
zE}_Cv|H!pj<n@L*)qf<?3Ar$Hk+%ds0OkR?06B-rojJ@Zcdqv*v*3w+(NG3f>`3Y<
z6d(hTy4tHizlGcN6<ZDOGjvhvDY5-SHc7<-DIMcVgZ?$D^<nGOlzhYFI@MnhCVAHq
zQ^-&W228^tJS}{v)y*2eBKqyWIxOPzhs4Phkmg~<`xajit-7$oq8?Nm0WeZ68cEzG
zUfS`p=;CIkGSms>#1|?hG$EPMDC&kKvvb@J4|<!lH+wL%yjo@!(p9~v9TM}|7rY&C
zKoi}#Cn)=?BT?uU-{&36k${MLuwBxgji(`Np74sHBl?1X=~t*Wv5MT~c5d_b=OpjB
zVMWOe<G2ov(~=NeX(`cmNCVz<&!gT*tt~0Xa)eM*7KJs}%{avS<!tyjde>NZmT+L;
z1GC)Lw%!3(m}cCNI1x_!+~+-ZKw>Ci>+qn23c|Y^ST16V|6>T2nIxq8{296U!D6q=
zUnb`ue@q0rX5_nnM`I%oNBbpURzpoYsYR@nTuNP9#qtiZkuIj40VV@)T;$UF$Bu<T
zaRSubihCroirmtDW5*#gc~CL_m~#yg!gF%mqpf4V9n1j!KkC;>aDA}a8%0VXHz9{X
z1BPet(_6iLelo+cn9y>W`fNx*AuqST>HWGfApq#2LlOdfCEpEy#=8MVjlR-Lcx0}*
z^>288u1yexM1QEuX-5*P1@~s7@UvnjN&U!nKYiofg$XQ;915aNn?3uiXT0^HF4l!?
z5f%&AJ_VtddUx^ZwYve99+y+X91mAJsq-t?T|d{g!S+duJY$7-NT>wT27&S~I_;cS
zW)xlGZG=J8z9n&fWZx%pbvY%<omB)Jnc-SL?p-bos#a`L<SEm=_n3Dh+{DCdeXAOu
zBpsO-c&{Q$_Qq;hiAIaPHt?>!j)IR0M|mA-M6fX2AUeS#AN2lW+Ptq;OUD9v?RIY%
zwlY5!&mCAQS49>GFL&9)-rA7akwOAevMOvm?LJxPy|*{BJKMdu!VGdwduJMV%elc3
z%yRAS^7=OFus3TQdu+r~uaZ^X+m~Q%C0Hs2=use12urYR;m|)f^Sl#aamM<ps*!^_
zz4Sfn;B^Y^+C5G$oy_W;-ugV2Dg4hN%1niK@yfoOylLYIkBLiEO!W>L2B*)Im5Evh
z`LSu3!3(|P;9mbzEp^Q{d8w!z#VEv}@|ZSsKm>YywC|n9S$daJ%{}N^8esMhEZqTB
z3mDjTnRjYP)x~27C)%=Ri?dDmf#g%1Qh2jX!E#HgQy1>vUYVs-XGZB#tn}9Zrad&L
zt$x=9V^qI%uH@gTpMMkLX5c4d%f^&~Pjas7`Kik`SxP81bIV9%clTbN`UUB>Ja9-H
zZfpVK*<Yo-RzqSck$PFTLL|A77p0yYri~U;?-++T9tF3$OX|B1wx7%wjF3B2PSVi%
z`QJZ-BYrjXWnUVs;QVadEPd$576&^GC9eYPoEtdt*x6${Mu5)rh?80)SEX~sz5N?A
z+I$16>MJ*SSme~5-~5=I-*W|olBPmx3n6^LlyclBPsjFu61Wroh8kS;%CJ<c+8lS#
z+?Y4Z2Bc4v5DIec(^;{V58E}+BD}G50#Q^0RN=0>{aW3i@&tV>=m~*ajRNDKSKk=)
z>X^9)7)sJ71Ve2jvu<EHQ7EEJ_s)w=zpLFgp3}8rY<Up+PLFBt-S$DdZQzqntC`Bx
zzBR-KdE;5P<4}e1m)DqIVap}4Yv))BK|evgB<+jb^dOqC(Xt3aIDeqzX2nInc`dD?
zX}iz546r=7F(J@{TL_EHzb?Js*h62Mbm+5CUuPb!a`4praIX7;w5k2tHD+(oD#PW?
zRV;PW!e&Q3mMsLq2qcQax@2I4p82P~3;uZ1P)|Ux74WW@M!vSVG~+P#EnfvAU$8hb
z(3Z-?-T8(-fHf{!6Z{%vzQZdLX%Q3zK?C17Ec*5rZQmhnvol<Ypcv%z(Sqm&&x38x
za{bve`Xvy$KmZBbzN;#F_AY)dC|q@A(5H&9uB(0``rzcYdi0?97)}jOCK7hm#OP5w
zc#3?p<KrQEzff`EpC9%HY~mSa^kZqTz*d;D*@e;9ezWUL1xUT-!U&JexHMYzRq_tq
z;NF-Xz3dxanN3hOZ?ji<X1jNw)q%L7kXx#_2MqsrFL<f#JAC>;`SUqaIL5@iaC99M
z>-vJB`V)}<A=Q9AaR?wRj=bJm|5n?{tmm+JX_<L{I{X~0J))!HP+?_^5YwXW2JYEQ
zqwxiX^Cl8OFKDukk{Qz!0dPQsFH=4;yU8&^yeluGai3;yzM3sa$FQ0ZKymVM{(gWW
zSYMD5f;MG;7CWxAy)N`ErDGk8q{(lw-mB~inr#T&4rADz{)#nyrfy)YMbl$P`|&$#
zFNOfBGk3+-2|xvuwUpYZ?)weFLrpWr;|Cl(3FUhb<~{E@yR~=7ZS53*A)$y4intP=
z4i<i95g1HXgN49b*n#!IX{|wT<pQ`y)fVJjWSZxyzX`T(FfvtWn<4?DS=vHHmpG>{
zZwnq5jbcDlSIQY$qyZ=`dt1=^RR9fWB^6VN#j^-^y%;Qi3OtsA3_M6-?H>+He{XB%
zHd5S3=0{!mgR^X2*Rr6$V#qyDh;4bK-8QiHT`Mqaoa>kFUG^Loq!5e>DDuP1`+Xig
zWnQ~&Amn@C2qMHiUh(a$AELuo*wrE9H*-qIa<T{i89i%hyKNNm(%B9Al?LJvxONUb
z*ZXNFk5%vUpAhEde*`_5-nHAjtv?$l5xXf1Mko;e?fBT=v$%)~UO{N!TRr&8mR=|3
z$rQR0`%+m9CV$8G(dbGZ3cHVw3HY)0<C;fe^X}my@X2pTK>v*2ZGACz>tr6t{C^C(
z{G?yy9Oi9b&9A^4!~O=AR|k3cQ(AblxyX{@uqx+jjl3uRQC_c^?Y5CvczOk&6W4Sm
z{v7RdJ<~}nWltUItYc#XpR~J&@+Cd1`Ml%rj#b>+PBC(w1A6JXV@Af_xs|AyvPP-q
zO6CqC0Zmn|>iI3a>%bqwIS0j&DHhVA5vw|}ot)|iB`pmkN#1*DB~!R|lmGMgAQQ+z
z;JdA|r`x?Wi2U46B^nLKF;al+LKn1o3f3%7H*kAud2pTw7DczU%9sbGgqc%)YYdOd
zSx1FS`!Q{)(xCPjBu|pFc+-z*O~_M%N$7Ea5r_za6lJ*&{XT8kFP7;gr{(ydM-7T{
znKI9K;YUl;8Vz6;dpt9bVgpol+L6}ykG;K6F}R0zrZxH9(y#1=eF(oI`m7YB`zq~4
zrCBkT8sPcF1Ezw#KunKuJeM!&RvmrgRqjPJ66^^&6H}}~yOy(HWJ&adqkv!m6GLh$
z?%8^M`g#A?K{yWZ8bP1Q)lk1kW%wtt3%9hdW}$oGbfeM&=MS;H`@7)V>6}`=2&j~@
zmRu3QNVN@eUAm>8{81=)aNUg2Nz5uJ;yzs9>$V3M2yRQXo=)t9Zh$<Y@H2?y^|uE3
zFK6zhSPP8piVvEOC4Ydd3QG{eZ-94+GU~42{Yb0hfcH!1B$$Sb#p%P>@B4V9YJ{a>
zC^4Jj6eJ_#4#;%VHbi1Axj~8G6rVN~vCutnX{6<qwb>cttI=vO^H3yLN51QBk0~bq
zhu2cQl^C%5d_&~%bh|#7YtreI@|i{Mx9k6Y<o<vc5OIaa!xIYxG(Mnp<n%AePry#E
zo<I|jDgqTUJSI0CS7YB5Cix5|Ymp3vd<>n(K8(ybHeZatcx<I{+f$D99~6>LXpxGk
z@TR%F{2@CG?$?#2rZiw1zsY9cNI9eyRM$+_3Fy$<AG9B!C1Me!#P7vuq}g@q>mS5r
zM7jV}93VJ+ia%0lLU3UGXc|BIWJ7G!wu}b)6B#bNKA9}F=RuaT9UkN`CXb^QUb$p-
zaM{Zplup6Htk&CqI@SO3&<?jjZRA#~2&LQ7y7~0yb9H4Pg>X@M^O{#Jw7<!-rk~X~
zen&(jlHPpw8@Y;l4;T*<r238=@I_<&%3BOk21KYF^jRVzjysRh^H%wPKZwvZ{Y0t-
z{stPiD#v8!(J3WG*^N0vNk2K%WzeHxvJ&yBa|Un&gLlbKxm?+|3er&Qx&$|q<pEK~
zHrL(JBV}<|$&2I`s*Mx&<Sw*>d%C1NJvDqjC@8`>!m&;bgli%@xX4W`OW8-|2eMr^
za;TNdVg<nb(^3Kz0E0xy3AfgCi2y6fXSr@tMM~w(HcXZ;5i|v4=s4&u>Xq{A#o^ni
zzeAN@&4RZK=$0}dd|VgmzYshWd>90Lp8L9A%1u|=9ewZv0uD_~4K!i#n3Q#MvqSSl
zxJCA8M^$RgClu<DPKcCt)B2|V+{<dl^ug4!O7;hzoO<6?fH=v*tf-lai^EMj)1SMr
zoqT}3#*%P429Fr#x_*(p)cX`udQZO*1&Ykk_YS8FY_U9<z)*<OUFEG?hgJtX#tL5%
ziYMua1HJm|XwIs($`S3Nc7|m^KPZF10jKwh;jyP~L8&AzI~79%Cpb$*kqTtWy<RV#
zrsPL-R_8_!^<GG8C;n3ZoM*YU8zMiX=a;a_1F0vAX3ILfenr~9kM5AL+;IM2XJuWS
zdiZx{xN&yC^;E<&DBQxvxX&+5eF;kqViSY_cIO_NnL0cy@Do~d!C)X-tRI!qrl;N&
z{+2unj`zJYQ};{!l5#A3ni3OT|I1PbtTCiz7os;9L?{TOQvd3~PRJ*$)D_iTnv+iT
z9<p3;<&KG0vhEbpx+L|um(6O#3<Y}$)QgwyOzUxx)j{Ik8d~dA>CCSAD{W$l)jmQS
z7%hEc%0AHtXYxB$c9C6*a_8J5XQzJjl952)it!`K*dQyUPwI+gcBz<xL*p<{2{7+-
zZfb9;5Mkp0sFcO(-1|+^etwSvPjr>WIGjL2I5X_sGj;6;_B&ZkVsZN|N!_``YB?!<
z0ULm(rhb&_ugZu}2cr)r4Xd0B8q)RuD)wkioBQ!T00s){<5)lC9?K%X<>f2EmWt<<
zd`clHB?JbtT-v3<FU1|T>D0_7i!L;*4EJ`^Cy}=zxFieR8DaWBtB3pp!&UF2lp&fS
zuoa^RruIAw5F#KPPFq=A3h<f%vGlbqtD(LDsG+DqbAlnS1FuDbhJq4^CV~>)zdR*9
zXEsVKpP>X2JuzF^1wato{C9&@p8_4Gtuh>i%)2lnA>XZgI(Th8kE3!ZWsyQCZxPi{
z&8vEK_w+eGo4(w0Di#EI6XnOCcY=K$g4{*V0^KD;DH}mvh%!7QmOlL~dygW7pvnre
z$UGLzZtgq5(oYQaJOr{eF`j3stSmJ!s~N?JanesoO~b6ul?X>6%v=)udT+-teTPrd
zaVyHs0F+tewtf|KSY=<^i*;e@QVjIHL^-qE3mb#MpNBIyD10TYYIz$E&2!g&7ED>o
z7=;5c9ZcD9Z+#S;f2hsd)(#svoH(BZVC{M)&I$?2UAIE$L^<w{!RaISB|A44b)gbL
z!3n@s0M47I&)pGhdy@CScVHG1Aif2ErLWs)vjXO+J>osEV5S8%b^9Wi@~r7HeMoR-
ztFd?);X$jn1y7T3#3G_Jk$MYSmjT{+*4IHk#tth;#kAjo>p!q(lOtupMt(yoNY@X8
z-Aj2ap#{UOlcK4Ce0TMc=|2r;pg?;FLQm-{6g|jsmre9r{?b9l5E;j8A;nJETo&%Q
zHv-$-d`F2#zK3)^O^|%!H^XhRP~BAAh{A&6o8dOt===wRWz(?L;F^Y4r#xu}0eor=
z?G9#jV$s2;KzTfouSWC3iOFLTlIJ`SkaQ`aJkA*D+vK(|!iR%|r&^>QY1<VljN~)&
zzC1Va*Pv$~1FjE&Eisc2x6TV^ziha5l%XNSOc=-}<EMx}GrkV`G%*6~$@!;(Rc>}h
zHs~7n>wQ7LJJ@{E;zF+n-KGKX2+xn7AwzBP+}Wq5fBCR&Pw|8}`<AT(32n<3E%`44
z!T=Mrx6~b~(`FFMB8oUKc;$J{0~uf8lPhI+T2>f&zkDVx%c>ngjE(2*{iag79e;#n
zDCN7BUivk&jI?^xfFp+cr60RB0v)Puq6+%~&*rDBvP=6dnDQcaEZJlDWw34`4yvSN
zAh&W{R^#+ui|jdlYJftaHHRe?FW#D-_l8{`Iv%=)2r~0@^!b#ZwxmBraz9TVQFCsM
z$RLyA0<;LucDMhQeo8a){^ety3`0k_W#(8`LxJl)KYiKZb{j=P5!x~;^gvuW`ySi2
z4}~51NIWGq9RH#`eJ12ynw36uAq2p?U^7}jrL-vD0cMlqZha|uwH3qiR*j)o1<7_f
zHccj1`D5_ga=w7-YUOyUDrq^y){r2?lQ|Xf%hD_Uu$3KJJyvN5MY&KbQDK+fGJWzx
zY#J)dXl;yrd`@8o1$1%{Q0d=)Y=azkRj1_hcqW*QJJNSMK0;wLK0>@#H5c;5i|)8K
zm{bf685tXe7ZxgAkPmFuHMsUdOZpNYMfU3Z!ptuieChIF_I9{mf#eb@k~aFJ3;oL1
zI@rT-h)<2{s|pLnLXg(;h6k@G^#YU$Ypf~g2y%W-xiGk?kMU9DrQCLK<ZvMX+~&WQ
zDZp(%>?b;66RS~O9*mwMmDKy;{;bAKw1-l-LIg#Q`?+7UGv3ag%n9wG20vv6yUoo{
zfBJ2bXtWvTA(FY*YD)0;rVP1;yI>ZENZGQHHI*5{-Q5yN|8PfG;FcO_aSLr))wIce
z%KA{j9E>kFl%iI@Xuz2%FH37CwpE*QP8sM-H|C_~6kXCu8^L}}gb|C6m~{!dw(Q2>
z;6)rY65{!Ks1j%&Uyq4+<-@_sMo<a;y(Y(PfeW&Yx8}K9mIsfm>G%$e5(_p19fq`U
zgz%}A9@?R(b#SSYJE>nw>?g}T*gSpIHP9k^#SAFqS7DE%0R$X|H$VGsu;ETNDNIMw
zsyP?D81%y@7G7ghT;-F&q}mJ9!jz@A9}CWSyS*vzB<9LikWydhvId3K?08`{TZ)I1
z4Yy+Jjs6oke<izydj~L}%x=_~JXJ;7J}<1wkz_a&c*a-<fgvi%aW`)deqLu12>vd;
z6TpQD3(66F6@33P3x(Qghm=%9g>qHY922$GFDmLGFLUUv7$n>3qeW?t4Q{84#U;|J
zs;HgpW-dwly`Np|ZL#dI0-L-4p|n|j@JAbF&8p|Aea<<fQc7<ybD}d%j{`_oz4OpQ
zIMq*1N=aK}W8JIN9@EOFQdTv~wOkgNJ=;DXIL=hcn5rJMs;H5C_*UezQCac`V5=i>
z&@||r<PN*9>6Te}QoH1lQlcU|UEoeFjZL4|(vAj28>{FxO+E~17VeLyA{X2gzM-xF
zq&!OtRz}Xg#0CZf{gdNL)v5?;=en!9H(R-m`RaJEQzI*?kUxB6fjhUb*_?M7F#rZ0
z0UQMg>r0-9WKFe4fpCGPE9Oh*l$4a;{^GPIYewn|RWK4o>?l9-b`u^W8#+<YFHeOD
z{=Oll@t=0Uhv7abA6HGh2Z5OHrp!s1)QS{MA**Yu5(%OJ;N0XTk-WLQ8jWF!=q>1u
znQ4$FT<oW%oTPGK<YQ8F3*?Ig?&ON*?NaRGAmli?D=^rr&ubQK%{8q53ch!8Ib|h?
z$;;flHRY5R8QYML#n^`x-=O1u@>BHH3(X<fWizYR*L=>8?T#L?$XtLNz#1^QxDN}D
z@y@=)oR3{Tt1$HWmP5RZ`Jv+!_iE5Zroef>L?=De?tGN(f%r!$wj<zu@r$wN4{dio
z<fukPs6rOxy0|PhU{~Ao;r7GvdiGZxku9@hlZSD)&?yAm^}vpsyjIJ(7ba<*)!{N=
zKDaaX`vL9t8t*Jf#5+~$wl~=!oc3UtY+4*8*QB<-zuh}PP*pJ{kP&CTm|I`-ynl0@
zJ!T>U&9roB*Lojfipr|Qi#AwB^UK4%jwyJ^m9|+5qS6Ji^l?gLu)uCvIk^nHCC5*n
zx`DI<)B%-d3p1rL&?o&Xw$E(xxZvD1Kri_zA#fozPJGKhtI#r&dQQbdU{;@k6$BZ6
z_hJu@vmgV=Y|enWBglRNV!b_b#)HUoy&6+3AFYD0Tb9&8OK`+%jEWG};?`KMjJ=t`
zpvx@n+7f`k#Uqia+2gj|VX_M%$17Pg0dt%>W8%^PU8Bd|;AP2~(-$ZK{+n$WZ7&?%
z{DseQRcK39y;xc`-k`I?eQ8}zCr+l&C~y<`Tj<tY;Bp&9KiL=erf_GtTEVZFlMP9T
zr9)JxZ#43Pd14z>ld?9yMc<_jl`mGeR#j96f*IlY#Ek&Lqi6J^=gm($w5kRNE*=Ro
zK~|)_*dPC_f{5%dp*qz+CXk5{Voz+|CE7WU$uRdy9J@$x%aC~c(X^|2h4<mTslcgZ
ziOzFcMRQI~Tqb9XPYp{)RRqy-C)rcbX5*YC`E7ZWKr|Vv(%$Z7WBpN`tt^*Yv^eb`
zl^kP*p?%!CIIj!bJ3XW0-{K1la)sX)vc%H>zm&iDyZq?kZ`)uG78$Joh)Jfqyj%35
zFT=&cKNb|r!l#ZK5B}r(v{Qe!-}f3<4b!!Bu-n>3hw*dPkAhe-YvjYes#o-*mw5)S
ztyee<irY)!Fg#}DGo%GS@(?04WJ)Khd*8G+tw#&KNC0<y?wlu;?*hO;b<#|C$bjfs
zIIN+l`bEol!<pODvcp*p6ac3pphTb~R=?w;jo<mlchRCH`CU9pMU*8|gG9M8RknF%
zXWHUl?LKHrXPr!P7{pV5rClaxyAnZhRY~LJ<!jE3UL-d<6*c%NpQ7gIG^d*o-AskG
z`j_P=q@nH$(3g%opC@6>1{Am#v!XwqV%yuGE*+{ZZi1z0Z}(-4!Ul;w;5i?+jqVq2
z*&ZK2W1dX++Yf0AG*g`=g%_bB9e#Jm+i4$V@F)bMj+oApoY=qbOiOEGZ-+B02A%p=
z+N?|{RB;T@2>4Hgcer9}TARO_J4PCbhJ336CSo?<bd3%!$gt9M9FI|>WGm`*$=Y<n
z_gRg;fH0koFyI=7uj?DVRMqeH2ter0%g&9S99Ff%?EnTH>s>_l-Ir;N_hX_MV0Fdr
z6tX$=^R#NX!QM}(_`#dqqrG$N%f&{J3dc5$_E32|>=ll`PAr_u&0UpNsv}i*RkIoW
zNLssa2aMN*3Cx0yQmC;-^wH0aRMfza2)0&LN3F<>`!+4}2R;uK3tttUJ;N}#X>X*B
z)u-)Ig3vNB|FtZwX>S{Y1B@eXrYs}jTGKMQyvNzn$*n8Omm~u^mx%n9exG(LQKLOp
z3euRrIc;ApVUn6CVFSIiO)>!Gq6jyp{h7Zb?aJ@%+Xf>)Dg&H?^4BZsT;MJ}B-(5<
zgNm>ks3D7sU0Oz82h>n^QM8>vIzUXK0=A#yq(BT_zujrCe9a`4s1TM+LaXD&FXcq%
zZ?NkLidU}HA8n#XZn2A0gOQ66HJFe#LGJd^U)TbOdQiM(q$0;0;WG}5esv(9nWQbN
z^GN#zKK74M(Y1{kl5Sc(J{SxG;Lr+R;@Xu)E5*cAAW7@s@`gpX5DJufWI;6ZyV6Vs
z5An@!q<wX?J*F>n!KRjg6G^nHj4ocuLmF~Iy*asCBmzK$HC1?__11Yi(~1cxik~Km
zLt3?_{dz|q(D9)9T~!Sg2RJo41C4q`pIK{&0yQAeGI~D-J$=fX<N-}kti~>0{6(;s
zLOIydeX7ftyK2UT2Jzv)2RmLcQ+Wj54S69jY$-R8<F*#0kGbD$Y^>pmX=W*B7iQr2
z$#;icl|I;IS$RghtRiw+aB@($r?uN<G}0B3SV@Q5TxymTxZl1?YniAPX(CfTY{DhN
zEa;pa^ix_d%0|{MbRjJc3f-xLq6fFxTi})6weFK0X{A~v8DwKDF$DtHgItnqW)R*W
z6-IaN(TwPSzOwlxkESU5-W_Rwb2RIb<X}DuH-D2))2>A|z%1G$^s9ZkduQ79dkOu5
zEMsrK+mZI9riW7iTMOkycZ8KnttOErc!VW~2*n)sb#VQwnbM}ale3|C3tiT-T-n@|
zr5#Y=B}-8A08<kF#(1b+p0eLT7E#dA!E1sv>U3FZ!BZAE=tF@a)DfDw@WE$Xmiox^
z6iCALTF+|-F^+v8xb1wyKZvK}lu;##JbdKKveP%<l!AA%>vDF;cMs}Ct~p?xN52^C
zjscPqA@N~ynM0Dl_xCS6n1ocW;)vmas;}ratWZ9D82K25rw$ps>5|k#KDKF+t2>c&
zE_cq%)Q{F$EQE>B*C3Aa&gD-|ORYZ8LK0%KqtS7=_)&Rk4k0BDbQem|P+f!44r5Zk
zI4BXz(Cx$zN2gvmw7u$h6;Fd|72r@^4vNQh^?!Wy_y+Mw4k+K0j8B3tt|%EBS9+|w
z_KVnxSFOZW=NjrEqBp53qHDJ$R<_+P*RQ<A4%I!Q!9c;@2b6&j-k|_Qf0nC;eIy=*
z?+yw4#>&XCSr#s)_+L*o!pOtea~Gc+Y2J~jvl{HN#FGiDP!SaaJ+mb8cdzjGR1F!c
z3Q{Nkt7+aTR<f|COksYH+*a7HykF$ae2X`SM(l*Tir58(_@b_C6p603$TLPX4?`Hb
z1ur$-da;u&DVGD)sIXxvDX=oKUgoeI?NTeog42aF-+j|Dzf@bz>w#6JihK}^41=Fp
zI1&5xOgZwBY+0X>`beeHkjv;co|)2qKf6jrSA0eI&GRs>cD7G>X<Bw|7$5kR>hbCL
zAO3OV?N~A_KTfPEPsNXJK0b0<CoU7-FEzQM6;e*pf96J7+-kq?NeUbY_DV~*psKd|
z4Xmw*JU7u67Hb@;RA@D?00+{F+{o*C9y+xYWd5Pg73I3Gj!9{>zb*KH@^~q)=Q<to
zRG8_8zgfKczt{Eej!L<*k^O#;xP5_p_QOb32o0zWC1$EIQ}mNaN8fJgiJ*l5i2{Qq
zC~!MBL~a8xKp3hEK{-U0Ml6ZH{Nu<W$J$7}M`3bSZ;ZUaqq^%zgFFRWW8M5(R74K#
zomdkpt6)j98UTcvltnJ8<S{tK<6{Xl2MI!P1*+wL-XBf9_xVICETodt6l-yG*3ELC
z_m2z*Ljh)C0Msy^idj-U*3D^p%ymE((E27<SpWDUl%1}RHGOroEtI&-ICMv}q#XD8
znUU>h+e~qNXcuzjOaFF6<N(#$6m~_fid?ia_x8|84=#2mLy^7#5FZuuagID1IUcx%
zFvUa@t#c*SxUm-s-R7l{zjGR{4z9f%cln!<&sy6p^#g&0?&jqYUk632h6{N-{06aE
z#O@z=W#q&Y?GCV1wZ%M(a62!GJbluhk0Lt$@FS64`hfbe#zIgYlOK+}85a4hd$r_Y
zqQqx|->Y@dEe}V=bg<{p3kU-@5rU-Kc&<D9$;eTi_jpG(;Ih0GkzFA#833_>RDpBw
z8QgKw{Ky-5d>|ozYFX$aT<MJ~BU{?oDh=bfh5ktLvfS0{BVTa6L1k3r;(1e=w!D~q
z%;GptVZ+c0apG%-^4wj$Bd6qYO9QM8hjjBJk?YU0R}7SM1kW(<29lsQ6f;NKJ0N*_
zoPi6?WmN~yYC83Dqqth40LgRM8IfO#_Ix_F-0tO(t!M194yt#wcu}OCbxS5<P+KPA
zn(6+%<I#iYwx$vjQlIV{73{i*+KxDqIPn-T<yLkmFN@N0+3xyT-pzNl`bQlZML-jE
zWZ-O|aO0Jnv-m_Q$n-zU0wVZe+gR%iD_B%aoe?TdBbT5*NzalI{*0fHo?uJ~zw=6E
z`pT>LMYG^uAEXLL9nTDTw=73KCvEon*qSD-1#}!L0j<Cq-X3@zM*uO+6k2WxW`*sX
zx=~1~c2q$ga)fXCB6u0kE&A4J6=OpH=c0A7W`|gnT)^BT1@Jj2;-7z<!8{X%d;fYj
z7CfIQ(o<a#^u%IyZvLk+3hON5l;XU>j2v50q7Ne$?hg3FTed0V9Rw_rJ>U!U`>gri
zil>2J0DNM~g#1_n_v_%;1M<3~Eyc&M=&<v`LR`~onepM|V86>dss;~&Rj!D9kWl=x
z<vUTY6+6N4Y*-zXwXUlU+Hj1IuQx_=e}z)tDE5OIP_Nie{Q)8Ybya}s4<HQd29(QP
zR~{%gSssYV;nl7f$BJmy{CUOa(G!ogSr=oq)T>XLU9UbVlUC<3f_ylLa@>(edy|`o
zUuxx8Ri=ijDYCF$*%Cdjr497~P^+*YT$BdhyQ1DPhK{tBX`E~dfET(h3u9YvwnB<>
zgk$xFE^q@Rlvk7Kf{GxwSC0FANbJ1_?3V+ngUnUvG|%Pri9PfbwM9U3mdD4#5=GrK
z_#i9&!&b3T7g7%fz^<u`z}gAd0=RMK4N4!T(3!XZIs!Xusw9s)^1@*HC<~Deppz;2
zO+xk&QE^*#23=Qy>}!aw$#h#cMA{z<G=p#sQ673s^K*289TS4eGQwgCj?z@lm^35&
z{ozkR(Pf$2;IzYcjtK;!z38sksD*f)kreT2B&SI7p>JdNEe42-g$5=WClg?06u{ll
zT{m-;w(bJB8rpWz%9uYJ*grNHXj={n;F5Ws`_aI$#CKYFlUBFeL&3xYTTch<S3~DU
zj)+b_QD{}`+SbZ%_x(RqO0=JZO3C@ak2R{i62}CtFZKfGXUm{4tCfN;BZSgpx+gD5
zYc&A)EM83U)GCS-S&>)fpDb`C2d9RF^s>Z?oO(lOlqDc6^5_=8{!cr{`zsr|LTJ~F
zq1GVRak=HXu@`#>p9rUFP%l;uxa-v4p2W}NQ>8=0!m@}}9{gRb*{}9}Jt$K~{xOfr
zLTP2$t%xngw2}ZQN{e$@Ak+M{{vBENa^@Q+eIr?~7C}0}D;sF<2fSrfo6z~?4zlJ(
zSEu>sud+8$*@T2dw6y{hRp$NSRes-}|FOpOZ?2nnJ+)n58V;!68*P&z3NlYHXikn^
z*w;W!w0Ntoq%Flb*&u_4q+Sp<Nb5(hHd0VJr*682z#rgNF+B_-z|5_KC8Gc#k$)Z^
z4Mqpj>DJ6Y^7u9~?*=04D4|{mVSRi{%I@RL<|Ec2x0<w|e04IJH#_AT6=PS?nTb?&
z(H`cx8#<>vc%qq(;MhvY01=vy0TNknNtxZwo|JezXV`7JIpx`w_K;*N4scSHoMNbK
z?C~ilsW=n1A{}uJp{mpE_HU8$)NK|w96CmQQbC`DrBrj>?cWA7p+Y2A7abi1>YQ8O
zJ2-wfadWayIXQO3#^nbSb|HHJRp~-_@x5OD_7m)PRJI;nL4Z~fkdpj>ggxCo5X^#}
zclL=v)jk$T25yPdV5-I4upILE%1HN=C#RU@K*1&9V!%k0H%e)94%f)CP%V3Mj6o49
zdp)qG1UMZ42(F*ptogI{qu$k1)y$2YFnmq@nmwRaHQWk;l?LjGf;K}2%Z5*z-?kiU
zr*^lBP%0YFNy*WkfJ&orj;di=@iKSJbt$Vma-E=G4Vwrm1MdXj1$Wh|$VxR|p#YW$
zm|6m*viUecw>=m6<raH>SCk)OsZ-u<zASE^-IrJ#YQF5iZ2Tqe+GA3tpB8>I5ecXS
z!}OFHDa~ea4XYQ>D8XHHUu%Cw;Ym`f7e<zUZ(B>%5_%x1OU(pT1<G~*J}71Dl?)No
z3O|5(X1konBRj`3n>^ROf)`BCj|uyYYn<}Ze0~gKqjaJyJ`miv+>U5gB-|>obO1R7
z@=)4~+=E{<J#;IN08Ye&Q1iyCpBx(6eyt;)ZMHSAAY&MCQvCLZw<8@(8Bp6dv@z0H
z`CwHiJ8Hj_CMVd(^<*h9hS|T{PfY<+uBBIRELx3)dxesg=jJ|=l5;=H4<c4RF@!T_
zCciwVXUbJsJcrfCHz<`?-}>wG3LEQ5VQ;VyA>oEEX<qar>krN1-lwBN0y%+~#J&4+
z<fS`priL#s8*lyT6v!wzJLQ_0;Z$i7s8gyc|Fh?%^t{>DO)S{9G24C9I%QlYKc#U{
zHErd_V$9Kcmk-WzuN;}uqMHp3R^`}<wfJEb!5{cS%C&E0H$aRdV~%PSIpH(Y#Oop3
z>0NNdW07kHH8guL7K_}<k0PCdd{z4DsdRcBw4w82<>ZJEyi|_JAj{rp-qZUw*1k4N
zg&#WCXN332uZTuauF8i~<aXR<ug&k=Du3750HFcy^#PNN<Ye{TTutN_j(5qH*z1Fd
z?~)g8FRXkcMs2Zb&bnG?3L>%fiD1O(AaDROPL9*Q1P&e+L(W#a<^}h3+{o%EfUE}N
zFpEZh@Gb~;oinRVJE*ZgX=BEAPBK89&s(W!f;)TMF^AsbbggeG0bhD}^*rYG9(Dnj
zuXBxh9&<x4XHeCe@sp8`;^Dh`q<RmTU&&JFWnemQK<cbM?Lnv^W5IuD$>#3xyJUw4
zos(EXnSl^qLos;w+x?L#PZ*u|BRY<1f{lv)?uN~dq(74-bn9S}Vae8Ol6LmDFvncH
zD>%RO*i%OYzplvGvyTX7O4vt41AABz6opP$5kd$wNS9%Y6X`M>4dguN6>Y|hHr^fG
z_LSwB6e<ZtUjy}vOpOA!<Bdq~&@>z{wv>p!*ik;IJ~yn5eBUax=W5D{Qm7lao3bU+
z4hKzr9WFZ`Me*WSB6C`!!|AY*5Xu>}3bFv|T;5Z`>v?#h$$N?$=93|zOZn_i9t);s
z8&Yh5>g&iKCWsZv-=?R7gIXYJsZkArT*Num_dji?;O&6%C4k3WaB2F20(Pyy353Nj
z+|_>cIo)jza#e$6#SeVgpYcBS4~J387B~P_s727_U9*6wb5&+tNW3Hbxv%puG)jJw
zFd2tt2I)6rMZ)Q*gJ6%FxI4Bn)6A)!rBcjY^OOA7zHO%)dkSL^{_3Qj!7Z~bHLo|+
zWL1)99Oqxlr!fyzgAXsY2nruJvKwAAb}|GV>F!?<wGS8}LxGuI_?Yj$<tLQ%qUC`q
znipIcbb7&visGx%BS<*AH`sTQO|vuDGUjydrr05!tSBl6meV#Kl~H<LR#MMH8AH*5
z52Lu@?9EdPzC2fSskdf$Qa`KJCjqGx)YB&$s+!mV^|a6i3MvPp-cU7gN0oA**0^+0
z)%uz>)+;^QURR6|(Ja_HK*bZi`BDWTcO-AJ(E`L%*Jz>s086v?0S;>2z`$y{sG*x-
zzDhP$U*t7jZtvjOSkU*TsbRN<hHphlN<0IKq`8Nkbdqw=CuYZf0+F%DEFt!~ch;XJ
z8tL8#*onOl;3?eu0H)a92W0iv_M#w24H1{3uFJAkDinP;s=SVO+gA_fn`y<XO127a
zbJllE^kU(P)SoumY273150Hjie}G&_y6`&sJ$W@t|FL&~hwA^hZd37pBnRpl9vD_w
z5qnkOfiouu_#O+zqQxs0PK9@~+@Gg-eeY-^Gp2Y<nRt!aDs1@B_CC%)S-3q(rKyn>
zLx&_GK+n6$8`?Xp?OR=9mqA%&xp(J!8*k)G#Iu0XCX&smn}%AH{d25p%Rh_`fHlcE
zV_TGtmt#l9k`_42y;TuArmS`7?Wk9bSj?)<+W`K6W#mBOxe(C$)swvZCY%ttNb22$
z=9j#Q`8BX_{)gd%V<kB`sHE2P#}Qs<`V&;M?^mVpEH|ckOvRH~us(porD|bI6wz7L
z6*h^zF<>u{BZ4;}<VZL5rxTWPRm_cm-qH1_*sa&^<t9iYaT9hiUcj<1C^nawqbi77
zU-!O!#%fm=ld+@p?JxKBHhYQX(B8@^0v|~@MQoLlm*Hl0m%9<qmXWRE*TC@#UD597
zQEB#|hC_H_6GMnrV!!}G@ti;?$i4r*8#`!AOBIF|w=yr<1C6avG=<p}tRvm#y$!K*
zoL%dM$$&Mk7&`B}^ShX$Xb5+_MkPp6kr703(SLlEkFL93dqto^p}FX%=G>S$u|!Gq
zLDsUOR4A1#ll{t#c5j1@WYna#j$~zUQc#RU_`nu`=W!i}_;*i(XrU!|0#Cpnpc)7d
zwF^q|G;tj%s%>`DPYr&Lu{!^7PoN%|d*Yu}ZH>bJSGzS>T)m37=<Kz1Z3Smc)U_2O
z-9x(pnGhxe|8oq7?f)F(*L7pX7`%qHcGKE>*A*KD_MqwtW)!qZj99{8m)GY-8=+DM
z;y}L3975p_{ph{>p<OQqO^Ez25k2GM;ADQi)uZj3D4h&n`Xq%T0@1Di-COXEjhtRH
zb*hP8Zovq;=@)O}8!R-;0X*KAFdCU)3%VG$T;~EN#YsB&g4pAea4JIw<)q|6g+$@u
z{0A<No%|)cP8rTP9FAZtZFuF08gsP&%ye$h0GuC4i5w(3?q3J`b1s1KsUDfYiLfMf
zq~IV^`r&+kdtd8F(Y0cN@hWwy$aCjS^q-s3M&3ixU348hs`6RFs^)SYf&EgWLASHQ
zE8Ag?!+*HOh1O5F#<3ZP3JFVtNdOgP_r-Si;~py`iP}z0RU|44^xy-rojEp8T#lpI
zy?%G>k`*uja99*w2f0TCg=p`Vn&3$)D|49~66tO<LKerqsVwk!H~2Zu&AOi}7sG0g
zU}I|6-Ec2Xp?5xO4_7h|{$FlpQnLQ{7-nYTJ~0p6u6$W8MlQ6Pwx9n<cXmxo#lp~h
z-D`*Y%PIdaegcA?c$lT4J>JnD)`MALLa^^jJq7B_2o+WS&p-46Hl^W+9N&o%<WI4{
z9QfftS+I?}BL0E5|ML!1w!|Hr`R;(J%SA_^RLd(yI`^|5e7~QugRXEimAQtv7Pk*h
zJcx@V*TLx2;}DD>kU~DK#Y+Foo#;U{jsn{QO~7l!@|N7_ZwPPUL&k8}T;v14<p=i5
zA=P7nBoYMRu2D7ql?NKLNw}^DKI7kXl)bA9O~w>4(3|l2#$WVX?_&e<eUGl41i~=)
z760D-ZKzLq=|s8UMm*(bhObw?dwinJ3?&zWD7(Yo(aR1fx*s|c2sz0%z7#m^@R)bA
zjVbLN0gh4wct_<@FYFZCHOhwiSKuPITg1PH$78QoCazCIqmlzyw?L_t17k}@+E7=V
zXt+1B3bR?w$!~jVd;#w$#%!5ri~t!U{{}5bFYa$c1Mnu`@XHf!Fx#zK@8v#h*Xcb7
zM-#gdq?17QVX+PSm|~-v{pBELN^r+8sA%?rBVyZj*li=AJ52X2`~8n!>kAXV-jnZ3
zNlNg2zA3SrN`>MC7v%@9p3LrXxTM>&W?JaHLa8sV=vVKe|8gMBJuO26&7TFpUQ7Se
zJN`QxDXyZ(18d0<h8lNm^B$x417~6|aA@HgGO0x4K6@{=|9|W<MR_cT%RTjL?1uMw
zu~-zT(Ira#R27B3qhgV+cD)!+m~-0}#!fD?zcI;erE`&ntZ1XQv1bmm0etYxVZ8A<
z+|96tGuy;|{uxRYQ&yo{8bA`ULDibGDmJqS847Gr8;5u%|5?pUaD2pXiFJ(G7&nd7
zYS2sa`Pk1Wef*yIpAw<$Q2=i96tC#p${0LQa?luIcQ`P8AbJk#8k_P9<jiUtJV;a1
z4EWj>t7ADmcp`vS)GImD<b6|}2dKAeFYmVb+{g0aC6wCF^9awJ;@w+fmpjV}n*gke
zo{vyNh35^QYy%dU;yDOJ*ux;t+d75yR=yy*Z@J!2BUruS|E}>5&9q==Sk#7NICeD2
zt+)C&71(7qP6rMRCtm=Tncw=`Ch`hd@hqi%i5f@X-#*MgGQ{BwL`bSllXEK$@OR$F
z*Qql^)wp=l(~n5Zc1KS4OB=z>;Me8U004f1HiuqYKa55OWt^ynG(Fd~nO7{`nUIc}
z<x<m;qm1DR4QF=smbSH_dLn`A36Y?K8HQO%J>^_*_+->@nI}o?<w3+e_qUzi`qklM
zOmnjEix9E-?wK*(C7(m!cp|ESwu~KRy+?|0ZsfY}Uy2@?V~;DQ?Fw0o2nsd}*#gkP
zoqJ%c^rLVTbwlbOpQt0)>@#oPL;rXifw;Q2A!Z37a+;U~CMqdUO%arkL!IS@^;>He
z^Tjm#v&sSif*z$-{jrJfla5C7u7)?_W~sHn`K)4@Bi7PG(zM9oP3)rfjQK<m*-Z8l
zX+CwcEy14hwJuakNeflwhRxBKnCbMH>7DS6-6JG+WqcC3sx*e?3nsMl_77EmWnK_p
zHM3UDTngOPt-M?DBd|aJR6_XLq!MDo<qhKZP<wX0@qttt8;^_S?xI*_)6iDqw5STM
z+QX1|S>UcX+xuZ_Vus1~l-lsR_LOjjMBB;&SV{7FLscp_sY*e;AaQF55=kGW(}SGi
z`xFPivX+eL_$hZ<9Uwqa6a-O3CD(B)11U3>Wn=m7kM6-5*coF~L$rKr@PwSQR)c~S
z2u(O+*NTy}H8BpPs&+Z<xd;7{9~0VN{UP{&-4OA%QJiNqMwG7t_rR(Csdw2uIQay2
zh6ibkax(6`6aC|Eu`$4l6)2}L28LwH-P+k-bRB1xjA|VEA*rFyq9**YFvwS1jXf&B
z71gT%XDDJqNZ_hrv<0rstFggzjHx2pVPq;Am!C!a?XJbK9~Rm`{c3W2PF*#*`gd@G
z_jU(bNmlX>eu9&jIu2m$5M63Y@xUuyb1k$G4HJp~V})`&SsHv@rB~Si4V5euYXe2D
zW?XUr&AdWvhyn3s2J+-$$fKTm?Hx)^PuyVyJq>4}77Uh_M;x8ozCR(hGRq`>ab?A%
z3i?!09Vr```N-d1ug~oq^r@aY6@n_ODG_5KEt!@7v`OrsPi-`zyaRku!`1s{c#9CO
z#@#^ZjRCkX?E*+&QGr`<gD3XQU{d3+`}r^?mGBGX%f2}$Klb~r;p=gIB%36Wjhbwd
zw1*c%q+ZYUQQyHK0bMsVkWWcsFv$F_hry^jYk9b^l4ngZOT~~eQ7V}uqM)g_4F-XS
zfx^#915w%wJ_fq}t@BP>jZx2tzGj+nVzpvn0&Cv!8b4uUl-H*`n_`%i?<TKxrGJSY
z<kqe8gq@JiVuUS#54%LMDu0^kEd8q|Tm2XiZ(_ccz5O+)nEbv6Y8);GW|&)8AQwaR
zFR{ljupx>Bmef?1tGgx7<Lo(FP-&a=8gh3^NCwOW)CpvW7GJwIv+UBcD4;<_1?)1^
zBf&iQb+J@Tu}kOv-N}Fb-_RRb!MMiCrLCh}gOh|$?YhZNThBSfQ&Ul*JXj5YyLYqZ
z`}<03mv@FfIw}}rPM1I12d&<*>*y%@J;)}RTLX>?uBL?;zvryUe_||$CS_9LuZ{%&
zhi-5F4&JUJgi>n${=i=_)GqhaEhrC6iD#YmwZ9#IG|ClK{bWK6+&8#keE7psI5o9q
z72n1M{e@pX$gWenL`j#~g>X#ZRHyl8j<W}JraGuz2>o#V+im_cSK4(QN!FPsNm-%>
z!ES%@oWvbvr4z72brVClfA<fLyO$vhFtj@{UuJYeEB|{m7A|%MrbXZc(2T6hUd??m
zsfO1%g?qiu-X*T1`6vfNR-dpGx$cz@W5Ii-5p}J=S&yF+-odWE7;FEoUGAr5=4N>5
z4!$jkZ<fwkl5|1h_NIsU!q}lLj6V|HBaKxtIMevtlQ+k1Kg~vpIX5FQyF!f@(C`zn
zgHJX0L08bmTEYSlq0q%|qx}_Y+Q`c^C_aTeR5H6rt)MmH9DjKQA1?3*=fV1?S(aS3
zcH@!NHq;j>43tjMszQ*ONPckUpUq2%T&5snMZhXv^!p}tZ#Ew&@lv!7HLI(tLRl5?
zimJ?;qchXP@p>)pgrKNvaR;KElJ$CKDEjJ;B%o)QGn8itp=V<5O232^>K@v1!4B>{
z&TBK<^e>q}>H&q)A`zQ%i#MFcOx!dWe}qa}h%4HS27O&z=$(D4v3b%AYoxj$0LX33
zav!wzp2Aq+&K}h?jDQR$0x6^3jc&$4Ly)&!fp=d|`$@O)rbFi7qRDc%WqT_IH@qyo
zd);L!4zjwqpU~;KA=9mD>&>jOJNm_O^Rn{9;AD$+`!gydl}TU@Gx_8oS#SBS^^eg;
z=h+}kSlKu-;&g^s5OR8D#&Tn^eHL{USY-{H1O4xBq6dY~?Zy`=!IE?mi{>cuPdCla
zqPGvT+u_y>)O)(zXzpMy{Y;h{M6v9NF%!f9fNCmbdSyH~J8EMH0Kyn{okP_6te`U0
zt_xL3o;JV7cj87-*f7F%6}5wYz*=D{(o5#>U?MstpVB+7u(M41Jo(n|8XB8(DFdWU
zvmj*eagH>mcYiWCw)_^Rtwz};W*J$=Wxi`N&EKV>hK70?D+d8`S3MKg_3&q0Xal`D
zkc5iW@h{7rRqiic9R4229e9Eq^Rl^UslVXN1UV&)IAJc6M%+IQKRzpA_`z3M5aV+y
z;F6nY0v4W~q*f{vLY<^+U`t_~Bq53B`-K?c_h78a2`Jv_zn#Y#N|BvFMk%RdqMi?@
z$0Q`V+-p1=gv=mH;JzOjYmaXno>Twi3HV=k^7gO_;F(G9ne<*BrA)a3iPwY_X75JT
z$?hzTob{x+3&F|bbjiV~2{E?X$M12kUB<ANr<~13`Zyp77qko4n+@f%JS$o5s1bgn
zeQZAmA$ul{6q1d6ux|e2I@5A^RZv`;wB=I2#Uapyj45fop;$waM$#p`+iV2%Vgqj6
z0l|hM9{Ugd9%`%8@70e34WLRIKJ?`_76nfqVH8=6n^5e|Tsf*Mu==prUB9uU^x%vm
zpz$#k!8!BYSvx#+pyN6$OQGCCkc2s|Y@v7Y+eSqVz3Rg6)Op9v<ImB<+O;?!zLtLD
zy?M**SdzOY&o-JDTF&aTyzB1^ceK{NQ4_N|N)m%00UR>JRx%IkvL4>1Uu<fFE5_5|
zkEx093m!GIl!cJTDs-`tvB%l!b+@<d>IB);vSo-Ui3pZ9&dQS#D&7lWx^7dv#f=ho
za7r;sc{u>ue0Re!-g_XdAqbRf)ExzX-M;5|!vylqq2qD=kWc~6s@jlH{UagKlspnv
zg@iWG?z{2c!~^Upy-?Dy(DMuP1n1rFx9AHxB71l!fa=#h0uT*pJh%|>km2T^QsTwX
zOtpKa3flHTbz2|zcD!iYhb9=d_syn1X`Y+@Ui9V8eAb@+l%k|Rg=Os=FCh~K6&|;G
zfvZ~SwU~+8BHloAN{lkjt(<Knam|=)130WoaW+$oP}yvGZqciu5@aP*Sk@Xg&${p;
z!{79qprYErpuQ=(ikctc*3WWtr}>wC5*{!ZHhc~RhRdt^_-ZuE3;WiTs4yS=SFmI7
z5*-2^DW26sB2#<|4~S&LbC+1ZRUN2OG%#XS<ax2FZPxhBT5~?|8z@2m`dLbRGETr3
zR#$<}=Q)6l_4~Q|#)iFWDm>LW=}D5%{B_iR-{5V2&W2zUAQZ)K^zBEjH?9J!qTqFC
zC}^(ufL4aa!0Cj6u&VgEYGfst5Q;WpY7Cipg#0L@k?op&9BcQdISLw*8irCmQfmnN
zre;|P`-W;^<UpR4o+61_gnQUM{%G|4z9D@fhwJGXYA~Lyevb3o+i)$O9<!W`fm%F$
zz3WhXQrY>ZM1dFAxf11;AB`sl4gr^9DFV+sj8n=RscRZyj;T}!F(3Yrr|!g32m~RY
zgf_&PoB3B%Mh!nlzhIZmqn?j>=~|o`tA5sqpN8auh2Ub~=8bQL91Tf>08-p{^RM2A
z>tN|rzle{nQHWd~c5&~+_lb2n%N{;VG#5sxVai4ItWg}5BWp&6UI&DeZo>^eHM|Xx
zEZ!jFBIf{e@N*V>P(hYd34}FYjc-Abf$y*KI`y&1j)0%ACg>3YtPsHNGTEDs)83?A
z{U|*ISZBo6%P;^Jl^h^u)0b=u%u5Arq!Xt99Gg$j2KA&{r9OxxExwFJ=rPb=JjHbM
zAr%wV2qfW4=3#}i%$F>GF<}PLzdL+>tW!6BEq|O4{o&^q6cq`|*rcOBeI_Ugu>`z0
zz?k_B6DShke{F{Uz$G@QUDU%E&=Dv(!uKaIfLFW}oyZ(A*(&xo@S0eQOVI08T)CXN
zk|va0K(H>$J-*0)_8U9<7z0FMLZJx};bd-}AB<}S`;py>41~c@=Domejs`cMVYlqj
z0Tn<%*a5X+oQo$V<6I5Tzr59n^N)6d@-R*~Labdi7dpO0?C*z7ZDC??ICMw=Bm`1j
zlSgB-?=T_;r3`mZ=(M<5dCG@}c?V)aLn5>+<7AF(fNG+~0uT87d2cNSFu&2to1})W
znGC*zTecZTkR3qW6QU#A0~l$&W3M5!7WlW0Jp_^EN?(u4xD`*RrlwX>2dB~l`@JbD
z3waObDj$A=xf)T{89%_jlPVZ2YY3icDC_GVVi!*c={G)srAWFv+37lWXML%t=O;y4
zLt&Q>U}*0n(&_6)df^5fjYh93Dstm1f=xvr<+iYdeQL(R^*NF^J{V-b9;$fMwi(Tp
zl8v!N$8p7qyaHq35UQ+Hq1@y2yEQimrH{nU$)eA4|GFyn%=Na>NuI<9|NLO=UqkG-
zFms}OsE)vwsTF;YfA46M36Nw-=`>osf8?Esj>#D#P=)9YwbDXK4|Dp+zYqE7GLaie
zgPG6sa|}APx(cPiQ{{{=x^1!_l=5vlai-arqKq%IU#uSv5mQLyuY$D+{Zj~yX36-P
z*TFWvKh-10kE$l?9#J5%Gk9h6n;teagdi!zG@f$`f0oPn-84@WEH$J-{*-LCgo+I<
znJubUnuRFz-$`eC1M&44#Xz01K?zu(K{R<f`h9*l4|tUfE7J*KezKy*)_CPB!i5Ly
z59A$dGfxrkTbr})nVgids1LHCS;gPJ_LrgH@(u+M%seIc6n1^!sovXv@q4&ILl9wY
zDhp~tv6)GPHc)@?GrSfm587C&7NXIs+(?#tbCiE8YG*@Z2)YkDBI~Twb#Tt9*TET6
zC8J_OX$A>?054C<3>2bdYDAmSgpn>f@<u8^-GBRUEM8{w9SWKZ*+u*Ue*e_PUi(k&
zG71NvG4mgxsjFrqaFXY6v9Sx}9ijNL@+$Glx6oBfo>M-4Fln#~p1f7%E&0iwlXTXS
zQ^dC=@D}V}tvi66hos%FEw2|F%ZHuT9l1S-0mkybP!1Sg$uSWM%TX);<?l$y{|0lw
zQ&H!8;84Zoc;%!W^-{DCqLJU4A&4FC+-EDJ4}>m_)5$0*DMvXEsZDiuz!w*qS6pNW
z$fTk+)Kf(8&W(v#s7L0e?$TQnf|a_5{Q$d{6O(nsupxa2|2G?ho}J|u5A+tbwTTpC
z%-5q}wDYy&y_1%kB$BaL5#a8{{jf81)6#}mKt9=q@*XPQ7}?>seuV96fJ@0q;!>c~
zS|kJpX)O}Mgb=c3e5j!2;zY@H*IXLgI*Uh<;Z{w7QkXtr8x34~S?rZdY=E<G8m)XT
zS;@GO7)d={S4X=})}cCr5Ku&1j=JsF#Vpod5B5i%Ljv~4PFo3RXf9W-l6>KacEed1
z=&$-8M)PXF$-8^6j-3^nRLm*#1%>`GgH^zGRx9|7{{vVt>{@n#x{uAQ_6I1M&bqK=
zd_ESo4p_cFJ;i=+M)TOw0s0|~+qF2sFFib@8Q2=E231R}5pj%Svrh*v4+99sf*-t+
z<aV2(yL*HG3qe&bBhV2ZxGmWCY<K5&{}8MXm;q@6mJFROj1yJ#7WmJdW&^bl7z`tT
zGen~9^Z$Fh4Rwx>8LuwG0kIwlq-+3(-23)_{2?Q4>I5U%9DS<R$nBWwZzFOiO{ikD
z+7LK5YlgqOHI7Xt7B69c4MCdcUU}F5x}&|L7dh^vJh8c~(DzII%kX-k6cvvdN$wo-
z4ZTR=rN^2D4=}<u?AiSYIt;rXX%MHB0%e8b%$?T9?zzY`#;yo@))Bfc$TJ1_>N{d?
zrVSNyO6;;qO)j4wn=-+?);)0EqRW9I!`)wKL58#V3aiR$;#CG&ksEb>Ogv3w#P3HU
zHAP8<naXClXjAN4NSI&sRF^vJL=<1lgkgWgJ{-&`RV_qYRft4RBM=!ySY-UKA0Gj5
zQ4SsGXZxZ475Cfq;_@*>M9ky_M}kvo_aCthSMz$I<lxaLFV3C*VC>%Q_SyzN=PV?D
z&YSzA_9Dv6U&X4?07e0Cy;|C!5NTNSd9Hka|Dth_uEaJTy@WEXg#B5q{R^j|4CAyg
zUyzvHtTx_9vj0PurGbClvcjOcixD$bF#t%zz@|*K4IU^XgWWZzx2tg=BZ>H;OM<hQ
zB{UG8V?owu*2IKpg31Q!0Lf}0@`w8gc6W4(*tGI+tQ6FMNK$b>96<%{hNEM1{<ayM
zu5X(pNr^{HHT}@;dO+xWggh~|p65&|r;&BCHJa1U2K$hCK!J|XX{-*xwCH#$T6BsH
zN{_(22tD5J@=4yAuu_(kDlm$hnw1hp#5!(>z0nJr1EDDVi7lp}##ye@_Sn2c?G>_U
z)r(B&ok~|8af3gH6k6#EB)^RtM}?BwbZUy5)l@NUxB}Xg4lWT$K|XlHV8kG6pfPvQ
z53$&f5Op1^t7UT37^)eAmd@t=xgvJa*Y-suRWkSRYq9aM<<IQs85SDHWV{9kAwNHO
zl0Rn>W*UO69GetCC%EMTAV~S{r(%Ep0`^k$EfAMcnS5m@2eD^=fbi*|Lu#hZHVT%o
z)@b;Y(^0UfC)JQKD`@)cjtTseF67hI2xn}?NI>&a7zmeeBygb}h}#QV0P#RMAe@C%
zw?bV#Joe$MiR-Ezi1i@_8QQ18(k^e<8m7f@Bo_khR6ew9APryM>;1V81L(4R`6T+o
zGO+^cG-tUE$9T^nH8lkHgn^8~qz^UJBBmlAzG<k*yz!9mXwjX|)M%34EFlm$ZDNvS
zZgYKejepK#=G*GRp-tv@pd2Pr0r(#ovT+(%v2uiIxn;w1rdPut6}bv!3%sPzJvqxi
z{6~}c3L=<KgzrL<LDP?1>OFamO`c8W{o&+X$!F280ybJvVzy2!8HNR48gp16kTxG%
z-)SvlJ>j(Gnf*&)K(*v<4v}1!8uhN3W4yecjFE>eA!Fb?c=yD8g?!>jKKGYjfkLgg
zCdRh~?{Kf7s0c1~(sZLjL~NbPFStfR<u@x^CWpX`(EQRf{BGDiu={~E<7Jdvur1G3
zoa=9Y%TA7kf+mqliCsaaYPNgfr>KQbP=s;U!ZYz-$|!!hk@rwhVgX3(6o(<oRtSg5
za{KR&&N$Y__Ru3?BXxRYv59Dm(u5<b8*-b~3g4Zt@;<wMh;{{SZi`&cS0d<Mov&nI
zeCkxyEFcR4sFhn=6cVTjMeGt{Z(@DIDiydTRo)k08U@rknN`9l;bh+PJ-A(K--9O|
z|CR9%In4noeDRF;=_Wg%!(f#*Yrwa#lV{t9rfCQVk$tQ?Nb2T}lL0J28LItP%Rv<b
z&U5~2(S;c9&~JU`l%l!`s6@y;piQa##4VOSkX-%H`eKI*l5RQ{s0V#VjQhyn$9^Sv
zkiA?A5*)=MhYH+h2{E<2n&)xeYrShsCFxyLJYQZ0sn80gN>$`IUqGmp2M#I6?*Swa
z8&Cy^vfMQ-yo^d48pvm=YpDXG1~D3XtXGT<tGj9@R*X{0E@mo93+(&N=uj}T;R6A}
zQPD(znQYm&$w9WLSjTe`97g13y1;3>qBD=N8;i&DE@|>G-7TKiOzsy2Rb=!UCsGu+
zz#aZYbRDOfArVg)qHtRWcnOC4Pxh6M+a<xiSfV~MS;VSkE<o;c2YX+)vBl#}QYW?F
z2;rn(UdT{VyfxyETp2q8H4E8IV7L~tEoD6cvt}WBR;zakg{*Sf^UY)ZkM98}1puC;
zYI8oR#vYVTm#w?*F?FgJnh}B;uaf|aE59*^g%p>1)&K=|m&Te4$54REWPwo1$iPV4
zoe#&>{{`jo2Ey#<Ud$7aJ)fX}{%NNgjY|ho`Ef-|RR5__rne@s=5TqA?Py{q^0m74
z7kENN+d2_8F-{7XMXnUM3*w#u*72Hx*sZKqa9*pZMj9;#d#9kuhwCfpRX|Ba%-t)z
z>B;C|Jsyz9K}+%gQ^e3ILP#Yb$Gm!wN|+|}lJHWA&nCT8BK5HXhVp)iynTmzr=*2M
zVZJ<+Dfi8L(HdwRHrf!|3X@J?TcLI&E^R)PR3?LW&Dq`y_o3?*x^61FIH5cMO`@GA
zvU}S%rbS~iid{;*#s}eUTM#=CUoDF&(v}v2IMp%odigIu9&+Udz8MMAIyPG8rxzQk
z^WS5M;_1<GrE61;VnOd=+py3LFp)H?1ZfjuBKfL*W>v9Fk`_-r?ayw?Ez-|0kTo;6
zdQfo1aS)576uxylg7AD*U`TD`{jkiKn=E><7mXox(1(w#`G0(!2Y405_x{JOz*j-<
z><w@?*#Oc5H$AZ@^o|ffuwEd9NRkUF#2^+FY*?@(il8W>22m*rNKp|~taK4YL=X|X
z*wO#zoV^JF{rw*w6=v@4&d$!9Ipsa?aqn2vN*E7ot6&f*M=|A$lTr<gyTN`hSBhZZ
zf`+u66bC4_C{zMWVf63by_4x7VL`G}B}Yjsqu^F-JI4Du56TzLJ6VH9YAN)QYA2k%
za(`+7z+$PsmZ3|$3ns!clNu{`l9dWEjlie9Tf7DrYtaP1rbZRCm|CBMWyCMY?3uX7
zdug2(py<o_MA1{J!42WRlym9!o!8heP1ma`3RylbZn<rWxq6>>4z(s_HB&vI3=Rv?
z-?camZ&J3)o6cp#`~6A=ux+MDtq!0qxrux3QQk#rlmLzv2cIx;ikpREm6sk%pAtbv
z;h__zT^S?q-`(3WoYy1t51v!XB7|d^(IY?bW`9MGa8n?^F=Hr1PO>o#Q;toXywV>d
zLRy(UQ}o5ysi7U-d?}wpfDjE+SWKmS0K#e38O>&dw8RI*s%6v#p)3XN`xLXdL$g(n
zYDaD%5emYF(06db8n>BEOO~pCv5!w~gOvS4SIaPO<R#ACt)wEuY73)~Eg<ikVs72<
znYVO&{R+#XNq$it78|{+m~Pv>HIxQI%!zz2mN7z03e78_rbiQhZIE2akH};w7^}P+
z=FIrSrhh=8F7ACilj4k!3NwFhP+E1s+BD_kwndxX+&1yhCT;E<DXEN>Xfe{htr8Ec
z?@-Bx?H(!i^YfQ|?#=vJoBBqu42br&ebe*)>>y-n{i$&x*&3J|?7qjM_WE(qlu2Is
zVUj%(`LDEx#%GkW^ZJjbx{(LhD`^O4xwll2yDk-7;S+(~G9mHlg_KprDN>k!RUx3`
z$!_9iN~Y0rAvKr9Lo%*y;;b3k0=u6SPt8h7ykU+ubOSZ6so%xlc!3vbf_0I3A(F#&
zzfMU^Z_A8k8<JT3TTx8roXvVAW&Zp({jz1^T~jpqd?>;Z$U|{L`5Am)J}M<kxJ}$1
zui|3825m@-e3-U7y)Bn()6fc}hmPRx%M-Ug+kP(Zi+I9FDE4}kNs1o{`q!@xynKt9
z+Xah{ddx6k;wK@(borz9ABfyw5Ez0BM~qpvA2rR*fNHzDR6FGNh+yz^sfux2VaGv_
z2i0IF@o$z3i55{NGA~k0yLSS8-_y#8IBD1pSZ4sWahR;M$Moa-NJZZ9MEEcr(~!<)
z<(2lGkbXCqBvsJ!d%S=@J!e-5$szmgZ~@7~?cId&ix15q&bt5NjlfSAD0AHr6oO#!
z@43YegL{vc>lJ0Gpm3*|b#L2&Ir_-{g?u+&DjS}YxCia2ZD|$G63TUw0Ya?-9$<cb
zGca_bncGbO5@RCpXGj<orq0SKMt+@#D@=Y3uJ!GJxyJn0)MsTQu+EqkX!E!~&nUWO
zO8FPg#(DkF5B7;T9gh&W3@?pBy`GZ65mfb-UD_-|Y$LpA_|`Bp%=f2zf9-8~)Vv_~
zw=b~|T$C{vDnqOu<P%~|G7e4Li}p<@OOK*BOfwfPvQI;mC=)|f2{c{+Zs0KH*^^r6
zB*2p{P)5pGu>`*wA6QK}%p*t%8C7Lf;EC(>TSIQd+#n!?$Nik0HemJEeK3cik>G%a
zQ<LM{%-m{ca(|x6hZ-vk*6^^xJ-5^jO*wjyC{8CXw9i8g$<N{Q0()PkcS0P)V!p$c
zK<CL<=^rT~5CN%6Ne$JgAocFK&<=$n@@V=@zQdh)_Qb&%bD5jI`IX+Vd^t!V3BwpR
zvro0&@p@By1yVnSASg8t^6Vm^p-eG@aCww^aHtUR2C!^;gl)?teaJv9RH76+AP$nv
zipy=g_VgsnYNFZ-QYwq1cl0>>Qx{%{ol`+nk*F4=TB#h8^S=+IZDoe#bs+rUbC9oN
zR<E&McYS}5($oYYwF+mLC=?4mvA=iL9yTpo)BoUt;Xdna+pLfF5Gp9nFOxM-eCBPN
zDi6*yeL1#;3rWD7IqPhn^R)FaktxNo%%`8(89u4Vfc%l3Pc<2a+s?GyWuN!SQfn_z
zT<p%RHp%}Qeb|&SVpn0_eEJ+)1Y4%EhZcH+iMFxv;XX?@Z??Bve@dUrM(!LPE^}=f
z916^v!5rYSW*>~s2kwz6m1}QFwB3(ol<2hh8j4tzQgDVfu>F<5$mvRX+9@h&kWz>y
zgH69+Q()mDU6-{}zz$jdjy>UmnolyCvM0)*nTkqp+Pr2@?yvK3#B3s-kQGCE(Ib`B
ztGs@rJh*mCqyo>_C+xloy#$vVw5s5<!{+8^?L@v8n+;(`9;ueAMUu{3X+L2WXeWNe
zS;}${emV2yJo^}%ldm!W9j3_ZNA?7UY`VE=v(0FhA(bOLM=B-C$MpO#pvepQ%9PWM
zA*it5du5Y5FIMvAP6WS|`1!1<P40PKshfL|i$LV$oT?@d9;?3@2>u@XQZl<9y{*ab
zK8rP^u4HL(``acp`G=~O;_fK~pdqU0=xdrRei5#9qJS*<eBtbYJ`IhMy;Hwe=y^EX
zQDToQoj|AA^L*1pA?_!GNJ>qXk@L=SGp{aey2r1}(VuZh{ULsPdN@=q)i;=6IJyuB
zAkfiF-l_=glY$@upOQRAAQXc_LqDMfZ3KCXfJR2b{BG*k3*9V5Ku{H9%Egr2&_2J~
zMlZG!{MdI54o!nJpYdoRf&OB)iz}VSpSGsy*0x*?TDZ2f0j~#oW>3>KQrbWwJCtdr
zmS6;Ca7r&^QRmq_c||BM34(f&V`C}ZAon6Yqe<w`{rVjI(^^NPKknU9kDPS&s7Dl=
zgMIDuP5<hz<ITZp_i%<Oz#Ob3PyHkmnzh4!Ns*{TIAlvV{Hy6VCvyop55r(G@DA|f
z**!xu*79T77tvC<v-5=43IINHy|-s*A}sc(@JBJK%Nbq6=?-%}U)1YNSti+lfVa3;
z-u9*es_OANb*nB2h}iUL5juGn56m>Zi3)2Lg%DJS%`e%Z8+P(E2@)bsy}UY=TEs7A
zhII`+oJwITZpyBUmXv9oBv0ijCl6o0>9h9Qr;;1;!8uFt6{|NvgD^e%I?qo^Q4&^4
zYYK2h*x7v5ck`!S0W||fD`!c;Aj{e8E9OY&-{0__+TJmd&xOWRF!C=C+DQo<vzR`d
zm+)JMHi-<Fr;$kV$=rlss7)dx%@Y`%{AB$D3G*|xsXs*T2p1GZw$qpg6P_z<BT8`|
zg9L3TI<eO27(O%c;bW8Mvp^}$Af_BBFuuh0Dc;*Jx17(bcPlI^pt6i)Y!EK{(X;Oz
z*(}@P@2%dHSL-&{`Qbn|uc(HLKk`6X&d2{D{z__s88f23cjn}lGJAP=iV&XY-VlD1
zRW{Wb@{`&O7;wX(NTPlURrA<;xV=tqw&dnysevn4TVqnDG#O5vTLh~vTU_GQHHSpz
z#wG{1YO_?aC2oZdT~VH2fe@@5)g=9Zvds6V;K|6CpgQK3CTFiwNrDHPmCvm&xT?vV
znR*YYhmK2%JV&r-H#X_@cI<LV4iY&>VTf4S-6y9sX+T+Aea%wwdrY6)q=nRa1>#jB
zq1s;8#9iA?>Z40M2S)!g50(u+)80?wf7#t$Bx~(Km4X|>WNfxu(egxXz+My`n4o{y
zTphM~XR09X70H(Zj`&4dhn%PX<bXn#r}#AP1W_^YW$^QgWcy;K{=D|?<YT6ovTgQO
z(d6JB(^DB7C-RKPKJmA$ID-x$NnmmF5u*!ieprtLoFwH%Rlc%`$rd)pzhdKJtn{@?
z5=W7{)ZPirGvh&}V4bImidgcxz0*JKvFb~!ysk_hmLbXJ2S2rw-6O}SN6U!Kwyc>R
zgLM>ZtmwNJ+T)-EKWfHErQBd=iCzrE2me$|a~H45Gh^)D8jB0pWnHRwme5&+b~jY-
z=wDp{vvOurx*{_(+gv`>{!flVRw`i{(VH=plg+-{>^=&*`}&U_Q?m9*HO(?ZGVD3f
zp~)4*<YU~AC@Fi|+Us}`+OezT)1YC6&Bk7~np0kWEsL73OY&kzn~&B>8@1cyG|>+!
zIXIWKu}h#a=cWA`ZIaLvHrqZ9w1JwR-;0gOB0+Qu@|$svNVDBrWk@Ya<-m>l)g-5O
zN?3De2XVjj!B|6}#4PM&vuwXtM8Q9XJCxT|vz$EaG&Ae+#K&ST5BT_aRZb9WM3n0J
zKX@Zv4NHA_ipAI1kOz|z3Z;TP%Nc-$q`v)nV#3T1wCKE8;Kfo?zDMVTDL+vuKHUt9
zM91l`wr3~I+Q+Y8rKrGrB62PL?1b;?ci4blmCJ6EqTFW1W${g4fh$@>eu;<OW+ViA
z+-jNxanGXXY=TZGFTU}%wi|G~$<H_)@RBcdmv(5kf#Xw}h-C4AWl8a~?%`6!gfTXK
z2EhS7&bq$w{qJnMfm3@Z$ApxArLkvuXv-cN1*w1vkF+R$*d6+-))bc(tZkT04uqtH
z8|PDBl9f>P2Nrsw+=;82vz+0D&HUAV#c{=m@La$2h&gv<sBoU%jc8TLSOQa0p`6d$
z{NvE1hudyoiQ%uH?oTNqX>=p^r|J9{cm_%W_A@9&-f83P&{Sp!bR`cJseyNk12Jwv
z=;<m(CBZ9v1O?sz#wu9yuzB<P_;E|9Ifu$8vqD6N)$!Aa_`BEW@B2hxOC_O@SDQ03
zK6x&~kmNvFnM7L!kZtmAccZV-F3v%G{AgtScy6`Z6<TlL?Xh_fS9%mhS;uqQUGA^1
zGE4z+@*y#73ZQnEcU?CrwD2ds9i}A9nII|gQ8eGM8GguJG^Cw=R33nA65JLS%wFN%
z+@YO7?Uc*alN=D!?k%_Q&6X0KyGULaan0O(dUC?R=h`>q+`F(MiYrUT5;jwl?8Nn)
z=d4)CZBxq#&k@Nki)`0B=^zsT*8w|}GSudpmX7y$Sbp8L0?fFi_h5GJZRY&&5Up}R
zQ9GrQ!kxZFws&$|-d66xNf6C1i*Z4w37gGDqk>z6SC$A+v~;YbaQSsl$za4o>p8#7
z!0$@tJVIc!tg8_P3GdCN4xso4N(!z-F!w$w@ie~>V1FJerPIBH#5G$wND6-*zX1>?
z3PXIea}zqqF6~NN6&finqqYgJey*EM{a?ysc<(t0^-iJ)w8ThcpYy^}>=xBEY$iRI
zIP`b*zU7oxAP9*@AOg@V?%(MhTBbfb%-&craa2B$4<M4i@^-%+R#ip3KzM7-Jx{}D
zgEk`tztDg@kqG4weGA~XT@gAA=?UVOG*hQ1TqtS}iXTcp$U5a?d^U-nqyv*ezc8lg
z*@P+mRPX6Mx&lK(?sL-f2?>!lBE|3%3az#ZGFB;W@?nWLd>*!lM)0+g%$33mtZ$sq
zCI`l4{rJ8$h>r!j)qCuiZMrDBM#W6T^TIca+-)=0YHL3#lj3qorLeDgWr-aY&zD3r
zm#VLX$X}ZI=5gDorT(^mVKE*r@!kjuKJ#<Cz;DO-UR=gzp?HeaRK4?U+u=H0Dg$vA
zRu$<%A*oVdpB?;Wo8Es28UwrB^GS>GgQS_Xnf8Q_^)Ud&;pQvJ$0sHoAJ4RHHfu+B
zzNg+zh+oW?i)>DFeGCqM!CJ6T5pzYK$KAImS!AL316kFw<<6fJ|K$voG3?TUF;Zv`
z!5=o0r@79%u=8V7zykrjJ7J1s%Hr~E-mUT`ck3ulS-vd@J9F&ci63Qj6kjQX(Bh1&
zzs3s&JI-e+P<HvQ-;DIW3A7aE@=m0!iNT2Qc&6!Hy^q@KVSe%JYIjviyA7lpA@uOl
zvQz|F6*ix}9hx$+t$c${6}apw;WCz#5cAR;n|PzX?ErAx;>sh7&fI-Yu+Lk}D0o<I
z!@fkf#)Qe_uzYENlTnpYjWo$E#B{}F%Z^(=)AfEys_v8u%4X`+ka@gAHK8+OPW0S1
zw{@sSUK(@4AUE(sQZ+B07a5M_fYXo}Y%<Bc^`Z{doJ74NQP3GF#Oq9x^WsnVG^rZ5
zJ0Y@b+*2Cy1Jc8Ib({vqB;61iGNVH^;*`B00#)`~x@mpD{cbx~A?H|4MN!&WPuXVr
zGw%8SBvrHF(A7?I<1g({-CZ^@vP`fdZ1-yqg`P|6P|b_yFuSC)NSq5!@5XL8!00o$
zaP9A*(0LuIIq!4vpvqO`)1;X3@3@QB@l3Wy0r!)gIjFUJQF({z&X{<ZjL@JL;$#57
zl4*{A-u>%)1|qL@Yij&EA175ap~k$t#l3egH<9Q3^_Tnl#-wVjjZQ#2m~%-n{q!xj
z?<f2~f_G)Z#W`XMhPgR;9je)(P%_=-?#S&>-6e%TkDlr#cA_1f0Nf+6=2Wh_<Gawf
z%Q{r!w7~b>!9AZ(g2qJF)^fLk2lFsvzFXri;m^!7PW5X;$4}>FWpMTi_sNO+;$U;O
zy93uGRrkYcMCz)ufuMVaNnPUZJ)kq+w;~_9V3;0KO@n#vU*9Fks3g8bc#BDjjgIgg
zJUT>AC8Pe>>d>l7I#lOM8p{Yiip(vGfF1XG=nJ0AWqIrak;`&an~XMYH7~$GN!*65
z7L6gLX2f(G^X|dW(95|FydhWNlSeP*CtDlDAKRcqHGaJQ6(Y#I{unPK@{zh)x$gO&
zLPPIoE>iVrd@<nQ=Jxrn`JHu*(ghk_JX^;M55?cb%~@o)E}|If@cxjq$t#U~)V=s8
zy@T=}m%xleaaR5MBzl;{6>g!?b%9(VLX4>3BP@HtjsJ#S0R%%*PdJa}-s9fDWFm3^
zNeWDjfuxy&t3r=Y;4=t>hb%oaaFd&{Lq8qk@Nx<&BvQg^;dpAW+U@WeOG_PH)Y|1}
z5%74}g#L8jV1P`FjJ=RRFZIFd#XoR5YaGgM?$eW^68?|@`oO60srxkxmQG#WC8*)t
zN-7k*{IT1J&0Oa)DlM^6n}6nx;&o*4M~9Ogh|5^c5l-_3?v4JfaPrDWsd)?@qQP6-
zByPrj&V@%s0{v`gR`%$<ZoBujJ%^WIcBGwQJ-)}?y){Xeu;ix>Xa14f*`|DzJCxgW
z7b_1?5Z_CJh$*K1boZ^l^yk#66?mfjoXSHh+&y3V&5@c}l1T1@%iR0+a2tH8!&!9v
z985*38GgF^)Y&XMSyj5z5sVVEO*W|wTv+F;`zvi8m?OCa2TZmZH!CzCUFSBZNJ2Ey
zcJaIJg0FOf#LV?_3GI)PX=0YR)vD**E7&tkU#Dm>crj^4yiQ->c46{ZbUB23qf*t1
zA8&os{gwqK=9~}%;f_c~wDefyuH+U>W=@gd-IxUOZ_G>k+@vi@)xE^M!UTJr**Rdl
zQ%v%+ZUJA6j@}XEeBlrLH@0Zm+5VyxePjrTU0F$@d7Lq}jlg6&N2*wfkyE{i$0Vu6
zgiA|m(UhT%VW6VqfahHIrDxxVo?Oh20=h7esIes4QJN?~A0Je;i7gSCAkNejEv3lK
z%QkuEyvTAE1(k!0e~o$R%!GRql>C|PSb+5;jX4M7|9D9$r<Ep}(2#lK&-e@9qMn`P
zO;PDwQY6Br@?P(8@yDneP{3(SV%Q|y>pioQRtZ8O(g2;@?;X=me}-9v9>moG`Z@Pu
z@1|umqo>j+nZ;>B++(&q=vCjQ?Rap+)4C|b8@N#$x<LhzUy7=bE<593SMTQcwY@ix
zMoF|ygC)THc$W9Z8%H&B+o7Gky&q_E*T^{hjzjR^0Pm4%w!`DSysp}%FkIYIe$@gb
zJ-rZcOc<oS1e$<&qnIH}Au#Ca<;ZIRoB(y*Uq;&U!-S%?+JyU{L}0<B;p2sMy?1kI
z#-T=<1zR4T4v>yvvt_n-@@W0NU<C!eBgg}Ur#Zi`SF)HMT(7{&xi`#GyhPrDg#Z0^
zraTkbBCbv;M&I^YFD##dfs_`GQXn>t7?$h)Gd$AE{TU|HjR%*5iU3x}o#0N4yDQcw
zpM=8MIH6DWt{+MxXSoFb(OhH#8a(Kodl{{w1*^?1F}|$agqiQ@NFXu;NsVTpbGhkC
z?`!|Zv4IN!ENo6)n9%5Ve$G*WQ91%UQzk+1P^MyzcWWDNFWZGXdE!zoVvC6{Y3Q@w
zm;pM<t`X2dMaT)T*+^at+IF6~x24OUa&d~`Iy8YZL#y_+mli4CjNb6c*`fL;CJA<<
zuW05VH<FV86Q`L&<GgOgS|GefF^JePD3i&c9FjSn8$al+A3{k=@>_&D14Wa;s-KQe
zCKv>QM4x(QmB0V;$3!PcNH~Sk;|z*&X8XK`AF%&85X6?I)I<{WFsWw6``)~j9V-#A
z{R;A>Fv0t7;tiV>4?yr9xoYlP?9F_M28ptZpcUlF&8Kk*TP`Z}>c73`UA@{z3$RYG
zZD>pK65rh0K_W23RKy=6@!@PKZZ>>4o|`O+szoYLD#dP1F()swEeIPEE0W-?2MkaY
zeiPXk7`R4*P1KR7DvnkV#~^_lhtS`FdJk!+2w_60M==T|Pr~#)Xismdo*}93;l-T2
zh}%^2#YXV~9pNd1iW#Q*&+Q&RY9@ij-c=<OYJ^+D+`HNS5}(nKuiw3bR1C5Ugbro+
z8P4<!)t0;9J%i8)kt5Ehv|diyt+b=a=Ywy+?iGhO?gP`?aVDqh6`bbcLzP!c5n{<3
z#yPjoq6Y^K)C(13Vu4V#Od2k*5s$i1QgjoC7#m(bW3stxx%WkKtO@|z6&xpM9;kH$
zbC6+nyyAV|kp&=ru9ApUf${-4BsWa*e!i^Zb?BXf%gq;s1c~&;<j}M8T6JY%;+H^!
z1^m1?Zsnp3an0tHO+XakvXR5j^!`i=nMGyW^GjW{=D}&+buR%ClI<PwQ7GBjI?i-c
zFf?)29+n#iG%jL35f*f&91}PQ9%|NXUUQHywXmluS<RTzByaeK#XtMK)$j7UVH{xN
z)Jk95HSvcp+c(4}?iMW~{_2Tuj|Av6Gk3DnHZe(hU<4j6UI@NZy7}i}=h`;fjB6R$
z3}Kk8w4Qf5Ur93&Dxo}QO_c}%61deCU7Y)*ObbUlAF0eQS|X@sb6pST?kU<c1YgEj
zRn?QR4hHmbT3%oCWpQ($=Lsu|>E6gmxIo(npktwg0OLqW&L**~hjaVnni~~GqkKSi
zs2Gv$yEuDpqK9%L`IWdo;2pr<aeLV5JO@t-ZV{;u6RGuzkgB<|nUgR}`()WlL`dw^
zbaQ4)CoJ9<35{U`6C;X+OaXYNna!s=Lm$*$F*(TgU@gL$nrS9Ab!I-Q9pY?d$lQ%(
z^jmXh@eFO2S3yi;{qvYqv+Ydh0_k9-<rfVnRIcz7VxV})J3o}%kOhPV8!3(9SXfD1
zD#|lX&Ek&1OLywab`xJR1m7ZUf9Mw6{=QBQ_H_w<X}ke!6oNEn=#S2!8&YcYF_GyS
zS}i|Kl`&jI-S}eBC|)zsG@K7Y2k)RV4afKYe+1QxzI#4vfb$R-X0n;N%)JGxlIDI4
z4CO^u%;=@=BCI#Gan;dfNT_LNf9$^D+ip2bBWkI{Ma{N#?yb9GIvw`LSkZ~SK@{Y`
zbOOP$(A_DzFOeE32}g(qpJk3+<9^HSX=D@eiNy*8|Fq8i=?iV`R)O8i_(a?PWtDs1
zPHk25DId;9ew}3=Tj4JJTy~BbhOUIdjjB}K(z|UaZQ`4g4P5k4!k(8Y7oE%*M9j@d
zf%?|>v_HZHlx!9?PKe8CBXGlBXlY1iK^tZwh1wsNc=Ju{=Pc6~D+qvHvV_lwS0s4N
z%Q_awIsjn<yir4F$&8j%jSUH>pVLb7@+4d;>BOMl!e;y>@yFf=dY0O8m}F{00@h15
zPY#dg;FNYSlw!+a0EmYotsuU7c1w{ZRK1Z=neR_%w(CnpMT&n8Q3n#uheqO}NHupJ
z@N#Zoaf$+j8wf#ITH|fZ;_k0aiaU09@=>|1*qDB9tANyWOBKaV9MLt*1rzO1DP2on
z0Z<Qg;jQI%+i6(3$P`(SRZ>=@d4F%!xOO`*Appoxc~1QMxAaYL|4EW_r#~?ULMJF+
za)y2Oj3pT4XSmd4aEW>AXK?vJYQF+JzA-=*VC$LXdMAZG{aJlGr1+9Fg(EGU8X-6D
zu;V7M>v#xd79@~Z8>MB!v!AioJ*&M#B}xl&4<kJlE?RTJZ}!ra^dP1SOT;Av=Rm4i
za-y?+zW$zLgl+2$5J;6)gKE9XUOig7L?8?&Hx&MmuzBJUd-FZo+#CH;w5S3w7m*Qi
z?BkRuU1)FgZ`g^sQ+E{HO;6Zo{W0g}6XNt?3e;-NG{<~x+kV8|&=MkJ)QgDq0_XG{
z&eyGw-Qquv7E?D2?}K;=2KET{eFez@+XJ<3DG4pda=8c_oR?3f1!rtkVWTC>%4*Oo
z!p&%^tkYGbSTYg>cav-!&TNXw1)UG&lt;rMyOtOOh&4pJc{bgy{8?Xfpz0$62uD8c
z{lKn%M4NF_aPrqo7y~d9m)gABwXat+npByep9IerlZNZnnPVqDqg~x1r5ajiWgx&V
zeab%fg0>Hc7MJl+NI^?8=dQ6`@6guX`GtV@d=Ggl6;I8pf7w$fYM12vsLreUajWI_
zg)y;9pjBbsN$N3qU)!lq)5=i_D#n9FpbT?^#jy1X=W17v%x;n4=(9)(wm4Bf>V*Zh
zU3v1*MnoTNe!Fu@Gi}91JBC@82(D6yK5&CGUV1pT1dKMaFyG?^IkYL0Mh$FJ*}{2y
zCbKU7ZM?x8DZ&eD-2QQcyK)(h$f}VgvKED}W$J~3Balzg6`4GSI3NZ$zmEGNuznA3
zk--{)$wSUqp@uYXA8X(IN#8j)dX)~U#zUM8toZ&HZLa^NwCJ{nZCNJ8;KV_iZg$SH
zjc?&vIEpEWm+uWh)nG^9C;D)(GrWRPFg6~gm?dT`&E%IkC(qRO&fEp0TdbBhQERhq
zm~-b{+9#(sYYWT*7J4QnzdBv&bi7=<w8q=0e9AU!$1%fdI;a&lf}M=_RA7ZHq=jGF
zQ#}86qO^E}aeRm-nG8<sl-|w_SJQ{{W_)x6dmG+pGx|OI{Kfh<Fa`25axNfL!6;HP
z?mQ>FO8ZpVsTp=Udv!)5=l(JN*w6?|yupQ(h)%%@Gc!ZZg=4h`<N<pEh7!z3^YB&9
zx`${MFE_~~;*`hFChR1U_D)x+hew&b()`MrkPav5h0UC{qHRD?P57!tn-e0!;;qhi
z$Fm4D6N~$(i+bbv!MHX0dcDcn%#Upq@dGzqXN_zMOag*_lmS<C7#1w{(qL!tojO`R
zBW@4{zF;ba&9n^XrfcXSx3F+z%&H*S$YdwkTXu0XqP}EFMwwiwAX3ea?}9H>^7Go#
zhEmb9+kMU&S>tJ(hs=b>fjkC{RBgk^d2vgn9v`~DOneutO0-gZ2$Xx>7#IIMj{vSJ
zW%)b;suF^)m6C(2=_GiLKS-o8ISQ##^YVFl)Zu+W+O9dVn-dkKR6*}}Qb$HS1-@pG
zZegN}oYE7uIO2ecGE~qakJ@hN3YZ9UdON97flrx)q?(gRYE@}*$C%?rJNG@Hy`901
z7fb0!bQk7kTW@EHe_8G3<Q6>#I@x#V&%2COAhR&qn+N+jKlo}cMN&#5S2FjtGMU{(
z0p6ibYMEY^12mFu7C)P_RlrF(O`AoX^|~{qj1C2vzA2r31sQ9MDHAE3Wv*`QoGns1
znT5x5s5hz_II8EcfU_`D??hmdR7W+rB-`V-^PC1fv_nc)R@JO~dG%$(o%;7_SC@){
zXr-8M5a*lgE_IG=s?B{Xph_T6%AyDTTjBKbH+N@Fxhj8c1M5#Q%X>KQ-li7}%m>?4
zJl41OsJS$$)VXT9_T-AOpwd91W6Q=m17^^UMZutIE@9S_&4#_fpG&k$mlA?R))<TO
z$M1s&WD5N?RvS!}YqstQzAoDo{wdjYBHhr6fcKvt{P9C=$1edV9d*bhqW0ri!MR&#
zhOb?81DQ#D94zr;cR8Kp<YaGEQ6;oivSpi;LTCB?+S8*1I4tXnN#Pt!JK+3JteC?q
zRb=ix{hTju)Yg8nis?e2v++FVSCQ)=|D%=u8jx(VMZa6Sl|8`nWCP|`dH(-cyL`RH
zL!H~i$R;qup@nBw-VC@@!>+-#o3wpMMG=K<1-6S`@a*Kchd$+AfY-s{iu`5rB&F*1
zj=_na=<mt+LQfD4>XDJbw?EJ}F)%%#si-_hm@73~J*Sk-3^Ks1zcRQ(qSgX}EE-+G
zDH<k*zka3@*Ou){9x`PwB^ZJh^8Q24=nj5kzUWzAuHwayvQ%*pz=OgeO0aI?ROfoR
z4G|G38LZwnGwD%##tM}X-K2CY;=DwDFLSf)QD<Ya|NCfBF*Q$tXs1eD`fJv40qH~0
zO0Dtge@5Y#G1I;coc9Br#0fc`d?T*ru*?ShKlVxc&STo2BkWpbf<G2L;nx}V#!7AP
zlaEIO@_7^s_G9^eJE7)qr6{NTTwuuz`uy7!utpX~K>@Xg^&B$sQ<^MZ4KNI}EY53U
zeJ2cPGVL;;vItsy3^WY9q{)D}>h6VN%TJV8`B}XCbbB#%dKao)^J+iu#dFn9Jg{(d
z1^RZwlM_zi7mTw{exYCOZ}|xci*a|+)EiYj=1bnVCO)xOd*6AE5h3c4l7<ZZ);(^m
zI^c70kV{;V!}p_kuKQb36g8|X%L`69u84tu7|Ng@y~0;D@}CEPvE)L>yfxW-ybWYK
z5epcKg9NoffD<_D!W@b9c6nb73QMRrm(;3qgs`%$PzGYY#CxS<prnyw@?g##SkUy;
zetzzY$V7AV^@(@A(q8sSw;~Al%X|TZUY2g=^zlWdAUmk6>DNsKzLaUMu5bT0A4r1K
zVDOaz^Q7y&_DVZx8tT`zAG9qYZA?4ysRB1C6hx#4FcReoMLyZgdL|*~;F%I~%t6UV
z+@esXo4bsArym9-I7JRWoQb^E0(TgJ4B{Jon6C1|Sfn9^h0=O~+rjV3!?-QPT`bFL
zcD4I5(F_T@qKa1y=Qt(qN_zSV_sREY7u+j~9?@hDnG7>!O{h^%4Q>)xDTr_aR}o@N
z4YQu^TjgH&by9Uti6#!G1U2>+$;>U{|M)F79wPlk6_WlG8<fygl)d22<naK{BrrUd
zf~jIQAKDeV{#K0;bwaV8;QwB&k#m~6ExT)!E;llwLM50<-QvE0fzIUVP<b~b1!J9d
zt@~SFB8dp$Xem1%5azIx;?LZs!|~G-atlWQGADv2D*6-i-Sv!xpm=T+M}d^BGLKAl
zC!fmmNJxrIkN^Qz`Rb2D?+_W5U=eAkx`q+;>1Ng=?zmqCYm4tv2-}SJd$W_5Cn+}W
zUwIee&fYW7c9rCsWPmYO$$^CcO*5DDv{#bILDZ>lMD=vg@@b~B%w7XV5NGWGeD?&Y
z2wSEBmw#(|;EQRBzdItEAkDN+whPI6@bUG%A{Dr6CC>%_yZQ5V8zs?)C*<MGR85>0
zpqg#eURS1<2z(I%D9MF_kpAO2JL_Ea;)<WDCLM?A`R*Ir4-hA2c3+OLXr<RTAH9ma
z>ogPk$WCs4q~{mQf;h<*+gsW}0~JN|tus-$%oiU8R*(zT6*bI9C}tCvFx!g)sV%it
z&%6;*&VX}|(&N}D1%We~YeoaUbxo4W5)X3YO@aLP{btQG@%2_}&_Fn_J+Nq@&J{R(
z$yxFDFUlJwxY|qpkbEm#Yhs7+t!X~BjonW(uS&5C@tgy*Ofx@Z*>F4kac@!)ihQ@I
z{QS$-whb@GUBI0RZ4FVVFbi<bS+<=dzkrft#&KpwDvB#=T!g5{W_q^0)yLZQ!m}qn
zIK0^8H@3BB@OZ8xzY&~wO(q7TNS9H_HR8XA{7H%q=>#m^7`Xcb=1iWIe;6Jrv^o!F
z*dKw1vfvQyWAGme0F8HB`FG&=U-go{1*G5@osk3WYGy=kUr~q$N+l^vv`agMnF<uN
zI68)7o`of*$DWt$9RvM&$)|dqRKz7=>0G-eTN^oP@kh!+2mO(19!#?{&u26srLbk0
zTHzB+Jl{3|(8~<|N3Ih6Gy2+Txm*N102jH~VpKv8n?c>|4DyZ`Q6II_x=6N=LMNte
zv0spGLr*RKSXrSj-)vj>aMs+SiczCjQ@p^t!vgbVy`?gxa$c$^5lv!*J;VnmscS%_
zWEA+GDnsIVin;2(!0s`A_6+c2+(Oi7G##heNrUu>LO39kLzD#D`Jg@bf867UtV@oP
zPsiAHmHKnsYT&6EwYmHR=emYR|CUqcsxkK1vD(fz5oRw@t-|K!%Pq7VN8K6#@r?1d
z?G@bmh%Cko^Zpz=Qksv-VoWn%R@<}X_L5_B6|0aqOSVLIJ53JM@6EIb=(T7>5fLF!
zZE|`vC=5Jusm>R!w-Ua2DKRItxrPm~Cj++TJLZ&)Cg-sXy-sYgSUWRJY6&rQysT+(
zbecbV+CNDi`aixqfrEZ_tpDA?xWbgnV+6U~Ym|-etCtBhTuR7edC)~%e8q74T_;}V
zh;NC2xcGA0g1z{kPa@0Tl;qi;xb8pufn}R^ee82&%h8YZOZ=Au4X71~{$_bUdp3z<
zM<!*VDSv#X%{j)uqbkI#h&0jB?(Ak?l)TLpJl`VGV}lnhF!>_;>?KDJp7xKfuv4;*
zZU;@Da)n*Rw&7*FNTx5~U3mu4kEe63q0~B~9Yl&LI=akSy8=71xBi-dAjH?qn8@Jo
z$J^H>>+8syFl9G%vhxLTt{&Ff&n%gs!~58ahyUvm&ZSmet<y6j${vxFbDY;0f~a5|
znm4ZSyw*6i1qXz$1!<F!orLa^YBqi89XJsOvjl@C0926>oCIQt2$)uDyz2<T$^8n;
z2+pCLr)O(cd7626sdrq0-Vq>cv`U4y+*5o=H}Cbn{GE(*A~U0LN<$gC#XES8f1@f&
zPL~k~2C^;MA&ly;d08#=M%@dG^X0tHlpb!=ZJqbq@wG#%8CIG(VU71-Slh`dU>$&0
zNkZ=-PyZe1ka;Im4LhEs;lVI^{>niA+f>r#)FcRGg2gwF?hdr%)Z+L%`k>1;w?_i!
za?r7?x(n}#crG%<|MWx~`^4|M`3`?YjO4e<?01r_dc>wrG3E1Y+aW9jT#@-?QfU-e
zHr|SvcC)M;VyF-#X_QC2-pS^eEjF&39(@vkt67^I$}jb^C&|_(sDWNpSQ1l%Q&ZVI
zMa%3xl1h41RtHDSG0yZ;=>V#r$8yYhD2L|8L_44D!8wMP!_UWoZ6s_08&oCu?~O?R
z>wRr~HY(TU<rfoPVTKvq{VxS}`BCbAf)o;YBxnEfa$7E;1PNslNXQob>ynbdBj+K#
zkC-V=qo-`i@Qi8}ByLAf9H1i#%TRz#^_o!o1qv`DIWxax0<7G^2#$XzYl*uBNEu3C
zPNgJ7^GtNM?;mpm844l9loR}zU`;2v7ooti`sL<5h^mgl8Ws;Fn&ky++$mot9X)$U
zmOoE+5>C@y+&4ntOSB5)#}7$%dux^BeK?v$-Js4rs5E@d37&qS?&zmJ@D^Mb83=Z=
z=zRiF(u5K@wpmCWmfK$t2Xc6F4@L>xol~mB9(M}AX2;>MBDX{Gx7gVmt<&JR*spPO
zRiW--$>(mfzkmT?QE)N|ghI2je|pP4?H|6hN)32u@xlfVxyVV8ps15rR;m&Rn)`|*
zJCNKWmX9hZ&<y~WNH?PzI{Qd3A`aB0h_eSzfYh5iwajkvC#64jswC>7Go_hR+u5hl
znOGJ$t;#CJPr`BnC-p&~`8(VMMF8I+CsNG0VuCXQ>r+)N%p<C(_lMgoRT7=9X`c~A
zE({eq2*D`}3kQTBLVhtOqL>e=TZ`^O0vUpWxu5=nH+wf$X$ByZ(ukt5(!$b*O8n+m
zUipK{-NE-NBX3lM4`BwNCP=u!KYEWrI>Nf?!vTlH#N8&>rI@5Iy^FT^mM&iz4~*o+
z(Zx^q?DbZY8-qibC>^&$LpvJQ!l%sPDn=v8PD!}&)6IlXv(y#}2Iz<Ftn%5vr5H7P
zy}P(2GECqJDuuH}3X^GJ`XBPz<!V5(S9A<7Ku8iw6DhW|xvw{H402Y}DMm&LlSW{Y
zW{UXC!Uq2HY47!aK-kE;DTFPC)KAF<Lm}qPMH{_7o4GM2NpyI=;JHoVY0Yv@BOMPm
z>iiPn^oow6kgoEeppjwZ{|RXcmkOUX*rDtsFjNpDZSflHWR8W9t{@hngy=+RS6ZEt
zIC5L~KN3Af7{n4i83Fu%Xu)XbLduv1=}MY;`@~TF&)S~A7B%MnF<$<nGbIgzynl2)
z^IGG?WgmgWVPWxZ#>}^g{a@wpr2BFwz={P**%3%f?7E{vCCj;={w&fkapr#h4k0Xj
zMaG1?CLVX9VuFAGl@ahjS0Lz`ka+MToXVM;qoq-BO+foo1X>SMp|m1`3B(A}2MJ=9
zJY^T=Xge`jf}ycw02GHeAGSlXwFf7dl;J>G64)*dyC-d+h4w(+Lx`L^VfEAcU6<ra
zW)!+wv}|)#tHi3W$lFS1gR|h7GFBk|xbOn+*Et<`<@7f>Oh$Hw&?MdcQ82KlWB52D
zet}`=>F~e;hij2=aUsq!2@vOB#S4~3G*pByP<(IKbqYSW5yu`mYK&YxsN_dbAF!v>
z#Rq(F4)IpP?a3NOE9vEY@B4hI>mnH>fW)%R$AMt|&$$f?gG6i@`N&&?Q(NkdbER63
zmn;5p|HrMJ;6=OrE_^or8AnWt%8SFCr>AL0rwYtq0yyL-7~3k?dyn4=Qh}W)&E#b_
z3a;^ew%v-N6(F8vZiOG&q&(nsc+$Urw33L68Yfs&h<lWZkA^r6eRncn5nrG<hlTm!
zgQjr<PUR}l@@1MbfbThM79I*bxu5TZM^uJX6LtZCpJwXy3VtGUhe8ZI%FpnFfX>Y6
z7JO%J&48n|s2Jj8ykIX07XV8xt|DWz#+j`a%=OFcTLnA{1gf}p(VKJvsCeEo__csY
zu+B&`EyttkhkhjTMilK5an5tX3udgWa3n`Bbq`HZW$@(J^ih2xl=WlP;cVGdZC@X+
ztB&AVNtqAo!aD(3(R@Erim`$0j)k2hf;nZ8{cyTo(!YYZ52riEx5R=|O!EzPm*16B
zig7JrbJqOZYwggkdI9O=zUEB=3026l%|kQn>?^d(w-<>dNk%-<7%A85HQVTBI@8Et
z!v!x%GX9%9S{ZzLmA+yx$fk<?a2)TLX39nfr?1r>5Ke-k0ZpV)v|}y}F0Iy=?;-A7
z080e#h4w9c!1jvj2smEZA+)l3FFwv`UK|@2+<GHqv><CAvjN}ts{x5zDdCkW1zG?2
zpR+fjKkqA8S|Q*j+MH!p{bGB}(smt=|I{>sKxwP(rmM9BpBOL$_LGFg)6Bvd_V{`J
zohr&}CLK^cXSL_wX&~#i+{*#@E%*aWEVJ)3+iM`#fTAfZ9f>DbvdY$Ua@tE&R0J@)
z4NpH2hOp_e&bjX&Hb2faq!ov+AGwB#%`~6oj5$Z0=)G_uDMhC6XZ-Y#z4!(0jzBJk
z!_^;CS}K;^1*Zo=Cdv09rA-_FoCntrZv0Dsel6h~ipXgEMRbi<(}Lq(*Wc!WRRY0)
za)a-r`jOxgzqt$ir1=xru!Q@=X6L!VYhLB&%B3)}Mm&iN=Y-zDmLKSidb5;Db={k(
zyMupK=~GEi<e@~vSSj2;XJqiM_w_zGz~JD6Vgn&p&5{ad#68;H4RG!#-pf~%E<V?3
zxmI5`56MCnpeIl};7!@4(N)fzd3p(~UMwMzTxsTvrojYBAd<8K{Vs^p{7S$EnS6tB
z%k0k*LqNe|y{S8ii&D%JCj|#d2nK_bXbU{-po9GfNu>F;kn@p<BjD~zQWVpVa4@8s
zLwU{{w`(7vp;A&9O7rsxk;|0zf5nMj>t7~G&#_pR-0;_y&V;erL*xj^nbzr%un*C?
zE|uEB(N1V$T!o56KG*pA&MWup$c5n&hoS`Mke2M`j(N^9e|SQ0BiN>L$Of2K%A1<j
ziO#Y#?nrWNG&-D<vJ#66cO&$Q7dh<(&WFe%H64(Mx-}8<Ve?_6CTJ+!8=}g>WlB2s
zQYT%eRy2WP=yJqVshJCjSuPmuy!oK^OEz2-oa*o@A0ZCm8X7`BXOYCqB$y_U0pBsf
zFcF0VJ3F`e?=Yy8br(Bu(lDHkPY7nL)T=s0hYyFTmchssle#*IJ_e$9^eR2hbsY^K
z?@YK)f1V4MiR@zhlIdpbK|A9TZT2%!71%3NC}9?)?z5|%K@yF`w~PZ4iUpcEz&JBE
z@9^)&)bdiE$Qf>lI=7>tbI?a7bmq%TYJ&uanTC@Je0i_94V?O*H>3+>y4lpmnf-}=
zMPjFTHVAe{S)^Qtr1`PL*(S&Z0$>O%UWt>`1Imw2?FdwrY(c#CBI@u*n(DvowJ&l{
zw5(z!7!VnsYy$7tvqxyN8qTqEL=Y0+&9&E+YLCYI@u}88ec=c+4?kgNzEj)F!j<5i
zq*KgXY=51h9le>im~jH&C)JGp)}A{>dj!HmV3Wuu;t1BWx%S3Q+R>x5s+bcS@tB=u
zzCG7@ueCOJt|&#L_kaT+IptiQzN7{t)U5*iipoObC7I^HJUiz}y`~dBE^i<ph7v(4
zWb-AqO}FFk_3sy{A~NVJcUYQc<{G=9LVNJ37mz88KNB<xrJ~-q_sKynmYq}qk=9hx
zbc6lcpBY&i*b_W}VVMgS+lja7uO*YjpAy2HX3%zf;Y@8GNPb{U6qiYE3LlJw<d3X-
zt#;!bB*GpkubF7k(weTY^?f*$;suCWN_Oi9_t`bu{96+E1&vfQ33AC*uh`{RYG)tT
zqK^qql?<;T3+*F|=)gD?Dm;!-#nq&o<@_zU8VO;7My@D@02kK{UuMgJ;L<UAw2*u`
zHcAkf)s)Ov?!UkmKIlJRd;~T4G}V3@EVK1|-2f?9RtcJy>0#Qgc-1y9(rXZBVBKUo
zkGvNM#+n5q@A2+(J5t^QjV+%{BgA%!IlpyWaw}Fp@iywfGFBuRM+SoGykWu9-_ssJ
z(StLpg>P_v!U%dnu+=*4&Y?C3!qGpl4xS&pN8|=)p{lj2ah-5Y@K#?>5x$xlEscXI
z*&H7UCU5qC4<B?X8xz12x{An}7L~#6{v-MqjwmS{p+^HTscduJZE<ls^-a2v+)@K8
zmV@-ohl3ZtsrSP(UPew8$~+T4v`g@v*kf1|P{*koCTu3W8@$mMj<{iDL7JEUc2)_@
z2xSZTG8`HvO<V0dB>0rC(fU%fR~6`F^kbRVnVo}6MXTkV35Qbn9Q8~Pfny&HZd~NI
zBUvb&>7P>iZmY|Jr-%|NIs;P7>jX@It9a|2XM+zf*Pfn|<yCVL<k4n$|F{$4^tEdc
zJw8Do?}#AFK0mnVQ!XTTQPO?IFM(e!)tvEd;O0YI1up`{#1+#f_%(sb(L3=#;FrI(
zw@*Y0fI{#UHjn)nSg}_diIJ$o=BVG26YGC;H3g>s6L{T+;R%*o7NRzH`5`dmTfNJ`
zk_xC12s@aAUj#;cr)}Nx^T%VF$d3h>(rQ;==I7c0@&=z0&Lbrw7}?IAyq<PWKZ4-C
zb^yV*nRs%rqnr`s1Vf!9297YIzi*wSY;7fLYpfo}LK4>Ubmzo$no%VpW2vlKQs%R*
zfT^P_?#a&2owZZSOi?F8&Udth{?5b+DMGmm$d)WcL6k_DGR!Cnl*3|QEe;5AA4D|2
zkx(2vzP#MsdvwxgW=+y3)@v@vJkpIZbiuVQb-&rK35nu+(^SmP`9&CIL=N}`LtC-f
z4G_cbEr{OI$PW?8RHhhHs=2w^UGVLH#MSXf|L~kUo-VH8up5DYmXi<!01!TeArVy2
zS;^+zYWGTF%jCJj>OU&<#xzZahB>LV+a=DAr}I_?<(g{A*EwmK`|v)7${IpHB1!ue
zcUD(o&Y7l1S!6imO00L3z-I2xW#nmtx?o-er3o^fe4kbB4FKZtTXaH_FpT^w1!p1C
zRk_lgOIV*2&OEpoIIr=frJE(w-An#Z^aUY9<^r2C!(2YkozKkXN{;eL_1rheZw68!
zGuOE=UqT+jUa<CIx8qJc^hi`b8p$1)`R61CzR;!tAVDHHNEUqJ9lJQmr*GwS5b{})
zMa1z#eBzhHL9Osakz<DQifB6hSPb}^sEuVFd&Zj{P|sHva-foxU=}qd<twiz2oKyb
zuqG<mE<9+sBd~-&SgENx__2iWNqBg(xS6uqR!sKx_lKYtR|-@S0wxh3RaSZ?J~7VZ
z<8Jn<J8Oc~Ks-N4ru28cSKihPtIo`nq%Mv;FLBEroH6)7kn_GpqKO&bp6S$k1SL}x
ze@Q>X%1tM7X2vyhR?G-X4#nXV?RqD=w-4o$!+~4CQbt=PHo}z;WxL;W(9C(kPn2M(
z;z1xu<z#m;+1q?fnfk7P$dILG_UrDoZ)sA3z&4<G8zEjn$$za};VzTBWpaHX;8fZW
zToGwz`)BT%AF(I|86vFhKpC>lU7v=oAEX{?axo=}g%+^wdbbY{5Bw9xWLCRB2|Po_
zT2L_@>w+h=|Jz-5P@y56B__^;frgM5{#NLU-kQIQeacrq*wW1$p=sx&w7wQfAk!Q*
z4%kR}lq?LXN%!*U@jLLEGt_}l>N4ZUe&<$`3c|pERLkiAKs4LzapF@1v>^-ez6ae^
zC&Y5RkHEJio7oH8w%}W0YqX~VNs8}v+a01U1BIa&hIgNKpl@UMjWbA-W5)u7tyEth
za8Y6VA|-pfT^rCq1uke_PVqz85@j7%5O_MG!CpN8#|uOkHi``M;uh<`^mtUzgL}2D
z=OhS~6)R3?sPKwYr%*@(1HA|9jcP;EkjtXfY_#VE)pLCWSF99-H=k|@Ong_b!GBkY
zJQe#eEMBBzKCwmOV~5-s-~HGqzB$pC-`W;9#>YYQ8_i;;F+0Va`;q#<dGkEPC~7ov
zF9jUih!^Y*!io|Rjv$jIo-dA&Lkn&59(wEA2n&eH&zA=3J*xh4ocd$L*H8KYSh$Y^
zFMvDHduX%gJBRQTrkDvk0)Kpn^IdY9W2pN~VW)t8@~&liFJGssRKFxA7tHZ3?W|o~
zBBd*elygtmZ#K5D1xK|ad^VkFAN`cyV*N+PN^HZJism-U{Oh9#Zp1jhI{)fGCmef{
zGp&J60%I(Q_{JG2H57UM!@lE(JP7&9QHcZ8+|s~VWc5C}P}ovhJLtZq&ZS>66k(^3
zm_(X@pTnbUCC}{kU#Nymrl(7u?U(a^^a~KU;6nSPAAlVqD>8;lNHOCswaYs)2IR76
z=4uhJhf~b#@isjc8~GRXNWN_Qes;0M&d9}zsLKUaDBFa~>|H16?F1O)zh<9nY&$YF
z89I7rO(35ycj1M0h48H^`UGf*1UR`xtJ#5j?&S5=J04@jW#P4~3}hY6ipxp0xiYYC
ztbYE(QBpqVyRQUtZeb}2J5^oMWLak3j=-Z5DMgg1rw#Q|(o=~n7@IkZjymgwebc0!
zJ#(M7=0yYyBg#+M^gY|o-F###yWpivJ8K)Qu;^F#KPE6kaPN@q%*SJ{`l0tkh}m$^
zq!{;Dr|k59ts@@!`f<*D0dE`?1I;icCpkGM>y2a?VL;{=qT@%<3?aTtGi{7BkL}M&
z%mE`rnNl_(5k))C-s1zg>JXwLTn5jzJy{b(-0HSdjPgmFDm1JDS;Ml)0|SI(p0Izq
z8MHbud4kSsjsO>!41s5Fc{_054qh7#obwW`iw~J<8ZQbA7KYh6)5${a)Y|s^!r$b=
zNKCRwrg?CKeauJFpjs2yi81eTr2p?@`!bxl3=#2L8;B$cX_5UHdOn88n!*NBrBozf
z>6?K`&+8Yc6QLwG>D49nrolRM-FZYgq~kc#P`wsQHrG)hN<weP$2mLM`zne`$M|mA
za5kc=_1AVpbM1ifPUtaZCuz?~`|TBe&j2<AhzK?_!03j~hu`b#9+uPsGP`xNeLt4I
zENLl-%XBIh-mun=^I>vb#$pP|;gD(uZLw!bII<4@2;(7aMs2qb0VyK*EY|-BEKR)D
z64gEFNn3WYUcf5En+B>#rsmZZHL#W5;v~hbgo{~~kHf@#_}AsULc8HGr~FgctpC|I
zWRddpBV}5$Irxix_HTW)x;>Jgb@%bkL&W1HOf1_#Lb-%}GuPUl{#WMoD<|ti%mB1X
zslHPBf!*u()lL&$Ifzo;v)e^H)xA@OX|Tp#Aa5>8wiMYJ9mUnec_ReE^Wh$>J5?!y
ztzGiAy#a#gBiaQxaKQ$97mxi<sVY8F+rwUe0gtZ}Hs-uMvCM8jH2zDt$dhtE2;BF&
zzd_1IOD+iE7*dgU1jhPj?_pt?VxB6tgE`z8RX;?ph<}NiCvUcyp(DqNT9IOY+hG?7
z-KFeSxZ^lKHoj@U@kKBJfc&xf5(_3J%e=P6)&uFpeF1up5JOAeWy(7J{6`+3{JQz(
zz-uq-h$TTS<|Sv;8D{m)z>^#F1NVc4PZqicMS}M!MvoiSGP*PD$EMro{BKhG1;gT2
z@9>#j=L0-B>j4=EpP#-b827K5FiKQ#^>X@4PoE+j7dv0JQ+#NXG7(^0!lDZN<)s>E
zoMNX?uTVfF%dkPUoj%cDDTkp6hp7u>1=VRMDEXp&27DBgRQE;%I9{o?t*VZ`5q3d~
zrS^<Gy+C*ogm413r5CL&(0Ay@CieR4AXTbV2vSBIoB37cLKF;M5wKs1ZN>Jcy>|@V
z$jLk)*N*YAw7OfxvO!B3^t0V_qCQQGXi;7ONu-)HxB8P-M;3%h>NV$Xw;#yjIP%0`
zN1S(p^EpQeuZi+MvJ7oo5FR-4zp|Hl+TJJ1;*mUm0ZAQf=rlfo`zZW$ESeC_tb_}E
zaj0r2Ah1G^!>q^;ZVeQ3$R2r8Cz~tB21auva~d3>|8n5GRS<aLigdxk9!3X>E-_$o
zplKgnf}JoyMV7-^l4d4e8F;kcQTNA|Z*o;&`!z>3V|6Sq57awaL0}!-TNP+~J-<Ez
z#K(5HX1M)}t<Naylt|!UKYo;bm+i-v2d|6OCRmokiVgEvyMtL1PnFoUV3PQt1NdoF
zwY4m~rhPB8ZviG{8c8!F0bd-AX&{Eo=3#cHtm=Q|Dl<Fo)pm#gj1UK?)|{fivq{do
zJMisIN3|xKwbKKcle85Fr%sqydee&oFOQ;?=u8FLTrr9DJoAsM0}&vm%zEv8Ss1hL
z54?Ma-hq>KtbkpqpPX&RI`#zQ7lWt^)I@}xTNnskR`W!1vts@jskvmPUKiNgpT0UU
zbmaYeJ#2kU0w(83N?#^9A=y5ip<S41KyYhf#}LS-GHCld5FVzQ9V=%n)+%<y7}+^T
z=mDtst6sEIGLLR&X&(E6&Eo;gbC24fDGA|W^Y}HkZGG*K$cF4pq8edy;v{<~+pX@-
zq|jrIZG>`Aw=vy3+SR@;Pb4^_PF9(G0;%|^GVM;ZEEd{fTrqO#u5NY;OF_h(Xl$ZE
zikuE3%btGHj^>=^rH+Qdr5O8?{e~CjQ%YR0FiIvfx|~`1ZQyEbgQJfg47?Qc_J+X4
z0#B;*^$#n^e9+pJg1m@~4Xn>s(OxU9fnTSaYq#3vn1ak3(i&mS>ZcN^**wWM6@@g_
z48Xl3e8@xrQq1XPwuD*cOV!>5;Sx4CePbVp%aEW!SN5~IS5vdG$uFI5Po1uSoSZV5
z1&)3ngw$oX*ZoZmvBlC9A@Be+)!jMaCUx`mDvU*_7)!4dr$rZ9k!a#x#1~NpCA@^>
z?|8(vxhVM|0pLX7&c=Eq)U3X7*8b{xq31q^P8~I$fE;QnTB<_VL+>_i>9mWo2yp69
zWlmf=#Dy3bc0|?jiBlH<5+c+zx&pwGP&LxSn(y?GcW;66`gE<JWDNK_K~xF-w71v0
z`9%e3^~2EOW*MMNB?Q{)7w`LOAWGnMa2ZUfAQy=wr6d@m$X=M5*uRNVhl_q%0)z=d
z(Lv1ygkqH8#Q*}trS#qPO`5H3CvTsdPrP2_Q>q|u$Ng+C`bwRyTHHXwd6LbutG-ht
z-c@Wb*$0}b0rDRK{F#j(tR0<{HjlVl8XoC4&kU~kOq+*L<3SirFz!>#m7hB&G}2}~
ztH57y2#RZkl<1}T&NmnPJw+A3LK(Rq5&X>!{_f`|)@Ggp#c9^dNxY7qV|$@GD_Mki
z&>KAy%wMR@0}9DZ^ac>K!c{LR&*kq0clsHuxlq92s^Y~M(WK3G?>Sr{;o1`5C*taX
z{mC>x&3ROkOI7lc;5#G&aW0qe%213K`YZt5DscM8f?o)c;`Kg~gm|GOkk-UhSy30h
z?HuQWGIEI1>TbYjXb}$n{ggf<M@l!~s1>k)rcz$E-x=>GO|mYDKFe32v|Yey<WKg1
z=*Zegu%z`4?(MYl-ww#u@QM*6ffGT_GIQQ`+W66bbag>N(9A1*wcXjbUf)_&{_^Np
z*bYx}Qr>6lu&(iv$2=x@R*{}5!3qAi%#&ER2E1h^QUyx;RReA#LVm=USiHi_-*4}e
z5DjY`RIXN;!dsVV`u<>FJegnPKP)U7BmRH<yOKrU>w@4EiS|e^t&)Q8%tcjg$mxiP
zJ70-;Qb3P-$)8zdpSgoaf#uM=LIO{O+t_dOm&a{#@sF~FV`KsZtIc1z&i8(1GFU1o
z_%Wd+S`FDzoHNYF2Xq!7F-}9KDb-xE&AD&2KVlMoAV-z(4xy%54+nqt<MQ2=*npdW
z$+|k(+0jIQJw(oX5DoZ4{j`WnGlDCHwif>i0W}Sh%St-ibqaoB_!(x9NH_m@Pe$0T
zyCB$RlYc9+j`1SlF3{LpVoq?EEF@vBA^tf6RRN0+<L=K*_P|tb1$Qd21D1aO{E@Jq
zOA_erQ-bj)@nt2<E#W*lX#hSYo8WT$UOoL#fQW>4PkUrn7i_n``QV(+`GBIlKKKSm
zAeD$|rVw|WJV!6{J!MEaPLzo|?5Df6wGJbYgt6aQZ0pTPmO37NsZu8ubp;;HL;iT7
zY1{7Yq^fr}5<G|jkO!E8Of+Y|pKxgw#q=;0Nvsw6zA*I~O#Q71H=nP~!Yc{9vH8Y?
z-_B}v^bNRQ>;_<E`ViWz5Qe9)+_-Re!sr1<-5AwAc4Hm^&Z`2tyi321zv}zeQmhal
zBF<e#%=Ne;cI}H#{z*F|z+46E3}F@N<C|4{8GnY~SN9^$!owHU=@55CO$XnswumoE
z1Vq>4-3wo8B_%%(cR&l2{@)#8w7bJskhO&b5I#U*!s2$R=7KS9_F}!A6q+V+6Q>ST
zJwDA~nCA^}-F;X6pFcqPIQ)Y;1Coz>__=jE__&8Vaz<8xUNz^GxkHxdGX}5-yc}ea
zgwLdKuZ~ndalLZ4pZ_C>y`@&OnN{iDFU7D4>rg<AFoGsjvtxGWy45qZqwbSY7Y{$V
zS9H9Dfu3yP-kDzec07-$j;tuNt+o3~XYJ?%|5_=(&0wK$+I9Iew1C?5d{nroYAR?7
z0cdJ004QCmhG}fDwyfsSzh@r&fZ@My#S7KxIwH)-$PRb)sVej9ce2Q`jk(B;P*N2u
z1$Pz8l3=s=1*rzFwXYG6kzxsInGwImZ!6RvN@Nq)ZyKXF4fn^-``Kq+iU{JHMhPia
z4~%yop*TFkGJgc5iMSSp&QSIYDLP+x@$<$p8G?j|%w@a;0ox_Ve=~<09sR<nOoxYl
z<lG@n4|kzNKv)c;QJ628w#&U^^S^EenM>U(j=UM)D0VaCTThlz$w+xk>VOMR*1q$+
zY5(v(vVCO8_&1^Hlkb;q-f!g{>cBUr-X~0wyo<CW(x<oaex^$Ik?km9hueEsjFfT#
zl4l|8d8T^@uSGpwJ#`l#n6kqQux<x>`r(fLQUig|DesT3$0>Dhd_nI-uKx%r;ENa}
zD)*neP6AwqZ&ddQcoqM<Llh8SqOgEr#boD+$|u_{OG}V1{WA1%D?Tv+A)pNeZz*0X
z1fKW)6>_O&OM4zdgJQu%9Jn&JWeF=HYY$gk?Shs(2DVVSEiaH^vJZtCQ972@Dn*pA
zT+<0IC7T^@#=mih0=>Zcqms)Y^o)F~&Knb^b@FF{XN`^RQz=P*c%RmJUCDDk{JLyl
zzpg9C!WUP$*Busjwf9M@b03j|H65JXbsi8c6gZ!3IS~>p`lF;r?5ZQhNB?{gy7?n3
ze8~b?Q%kpD=HYkoMUJ2p{_iKjf9A_6*;Gf!1A-QZcTOIJX{Gt#R*CDfd@zPyALl;b
zRfW~S(a?HO*&9XGI1joP{nJu3BgFs|i))Pa#`0|akW=2i4uC*T-E4F06YdhBj3Iy@
zsl-j>iOXIHn>bu@S~-u+6k#Czygt3$-<No2>}p@jM#@?eZ;o$=A=<Wl?tMb$2IdW}
z8<8|p*_6<Cnt7s6qW7uB(IsyK?a(A=X$DEAB;B3ydMvr55VtYMJ|+^M;Ees=CF|MP
zVE`W$u;N3}{&D=;SE!*WMN36O)6{Lgx8I=&PX|XF69`3H<HS=t5xz%66vi_2pZ_u8
z*ZJ)vJU<j2jX3YVgeL7^IF=M0ww_*g{KCXDQaTWDAz^@q7+=JkmlIx~Y^N;Ld?lLL
zoZD>llO1Z=6k^pRuJnF+q@7Ha6!-M!YQhKJuiLfYC)4LMQamy+anCbMAGYUc9!r9@
zL`8+7BGueq?Tz^YgAi%VRxB4|5zIL=0h;>bQ<^Q$)od9s1)Ntt^)fqwy1MJ%3m5Pc
z<URQPkr<dP4>G^v64K_iz7uIO@Gr^pGv@X$n|(H?-JJyDJB^NhN5h~=%|_O5e;xWU
zd|X@#5EdPcjmL!VdLXp;#a5bm#IC^51Ww3MFkbH1;9Z%ARw=YdQeY9lL^*g90W)za
zF7f-F5yHzU&f{8!$Rok?G2j)|$kI*nayz9wS@hS#xCIh+%z-nV&cbtv3jixz?M`y5
zvdr##ok}5tBWOW;jD8HTWtQZN%<|dLx)uqWD*^s=b6%XYCk?&14nhh#Bv?OtIoFHb
zB<3F!W$4D@V+G4+#(iV|`CcE4fs8psOhkaoc-1G4Vw_UA&gU-Tq1oo6Irb4BdDsaQ
zVHriO5Q9WZ!e-WD8<?vX3;|+<nM6rCs#l_cqpLLi&R&&FCs}JkrQ+Mwkh7?RCQZ;%
ztPsJRm(}1>1ysFcslD1KW>Fv`%vPX3Ik_rk+xe@Kzry2rA&alTyQo6f_;*$DBOY$|
z6(1Zj=jaH+C9?8gZRq~Gyxmv4X>VW$7wt0U@pbVjH@EwWNzW5buHL{*b}x;8;jVVi
zAQf^-0U()U*2j&0>UjA(HFLxRZw_t<UjD7N0NCO0*R6?b^~CWF5p_f4jhMIy7C87_
zGOOA;R`B>@7e<Q(!Yd%qWb?@y`$Q$LD(N<a3BjESKwFJ4se3nNxbx>b$ww)}__kxx
zU+(8S{-yY7KCo6n1BD*5U9RDtWcbu%w_-nKm>McEDL<vLBL%k$s{YFEPRpqrMG&7b
zca$ui>h-z5onUl&Alcv(N=g?yYtN%zRc=SohWgZ!TFM#jlUnYeU22Aij`VXv!j`WU
zeKe4KLr6U3uAc=HqxVyS5dIoSw>W8u7c-mRztD7bFX|Q|FDoKN5$2vsgix)fr_y=K
z4^5{XqE4TXWDwJ&)*2d~pAGimiJ{k|gdeh^0`zQw*Hg?ZKyo-d>V4OA!f$Q=t)t;q
z_Ky?6vq=zNOWrt-CPq3lT3;|qv6A$+ynz?Ce*hWF;Sa6gXrQdd-rh8QddmZh3b6lJ
z{-Gqrh{nBAkCCQ9kx_!(F@FwjJg2X=41|;(E8jF2-uR`&V?@j%0+AGy-PxJwrgsoV
zo$g4#n72$bxoFz-t(QasB7f?O<%@$$RtkrKq}4U}-D|ftEXpdCh@=|MSjfZKY%*2I
zg?Vk`TPL+HKmZTMWE~liMTVNmce&`(_}P!EmfJ0ICH^^Nu3W?Wam|-)^ctmESLIhY
zWB440{)pc?RWJJY(~vd((=OxPyUXl%#~En;`80n0-u63??Kz}w^QuptmN4~Ym4r2r
zN@^8knUwBMYw=17g%<`H;*&2Ykbv>$2ao?iJ0Ry1!(Vjtg<l6htBN%Wv{?ue)8Ozl
zU0VdZEutgS3}E$F)qqA*Sh%62U~kEh!byflQmh4*#iI9vtt3|sKTid<mcV?+u&Dyp
z7}Pbm=o#(oPG}V^Ks{3Aqu|`i4gR^zzfQw!K9E=<yY+em^TmC`r$oXP#*)|AZdkZk
z!F@i~)z1P@wiDm+lf@4Ha9v#MmAXrZM!?%DZx>LRTjQ?StgWnfGAN{SEL55)=7kiW
z%ToxwqCN|wqHW)NJa~?eJQfkllrv-K=evS0<m<2qFCrPRf}~{S*%Ra5|3U8#K`ErC
z7zj+H|AHqi)!!o^ORD^e&WZrO?4sbf4cc=gH(1RKS8{y7jgI=DHPQLxe+3iw>;tfe
zN1<Yj=3M@?nd0HP-Z|CTs;U)%btfwo>m&6$?<MplK$ZP81(q+H1d9^r^p)O_JL$k&
z!PU%q_fdo}UVuNj#VhJXqAL<=0#k>!L?{|n{atU{Gn$VI8<hZ%C`T$=2U@`W-oVep
zH6-9{I&cBvf4l02(D%=@(sqP;k%X&29fZ*zOufmWd!O>VFp&X!%Qb>KXnIrV_Gh(&
z15avdZ~<G!R80vDj$J@IriMO6Zq?|f(CVjJ$ujY)vEbn=DLw4xQ#|!4or0t0rAPos
zzAy~8s736EdLIXV69ic%S=SOW5)uQj-6>}OX1f-wL^o&=>M+DJy!^ics~<?0$|{nq
ziuB^d#a_uU?MgzuZvPM19^1uNfvdZacTcLwh#1$CFa?FrbeB))AoXT@qY#2o2GX3I
ziFKc_x9Oe7Q+5?_Eb~_32`E^^{DEUaue-=|GWf*bLQ{5Xm^qlWu<2cW+RN`jIaYYx
z1!yV?3SA$c8rmo&b-5Kd8BtrLj!@n|O?#iGt<dh^5$E^^!dE|3?^qf!=A_Ck)gMa9
zN7l2V)u>QfBOVN*K_YkRZNr*msMEe`y5>*f7Lv?@9#!h)M)W!oMCg70{LshmXjNLD
zjf~hvIah-m5g&nB**&y;{l5#-rio}ZQ@(E6?k~L-<gL6ub`!TO>lr$mLbt5Qf0vhK
zK*+hSp<mOW8iP~~BY|U2)K=s!Lh64x-p-jVg(7~?7(vcr?4fnyVjujCmm-xJrK%hB
z8oYL@^q`MoJ$$pCosw>P!1*QgNa)Ps<!tz=x3nt|UH>o<<fCZQ5-Uj=l(_adCE15-
za&+O9*uEfsDf9*f6;YN|-cudJa~Npfe7t4&`mW?qUzt$wbt`GittiLCOU=a>5{^%8
zE!uN0K>JmKL-o~XOkiUk4t+RZcS+88s;YzM5#KNLr1WjSDRl87?W0T!+k|RzoL4e=
z99FO07~1f3t0+qx{twJ2eM??uk(1cwGPF{Fs?bvlxtpvMPP@F*oj0>nD)~w02yDuQ
zU{+a&UN~{&b_EU(MK;B#!3#SiUjB6lDFp!#EuTez@sT34$P_)e$m_SN<46RTG4B4x
zO9ylqi4>xMZeG)cuR<Sww1R?=$gW9PXX(bY7xV(~IDR<~8+yM!Yn8wefe&;Sf`K3t
zWHYSG5A9jU0s$Y);V0rB9v9kw`myQEB{1^|F$IOFp&3CyW1{X~;12o|2r!Q1$aofh
z8E&pg?zg{!s%5#uMh8Geyd(P-x|_irGq4;fzJx-uW}5rIuc=!@<rgti1=LMyb+RdY
z!0X&hbNvUER$*olU_*JNK1o8em9EAYyW>2<ew7;61)^G|_=OnK%{`xbQ!rK;7V;ck
z8Kg^gl0sD{_DIZJ;rF0{(4Im&0(?g2#INqv_FllA5sTp9#Nx{|TiYl8iha#a5pWt`
z?VrRamSU8$bL8R1lub-bKdn{FBrGKnt%OgE#LbeghL$w{#Ac^lm#lRksBMZ)$pV*S
zrRYgvXOHsL@{oYCjwFOgP{*9pHnHDQ4hgaOcso!b$x?fPVIH_T(fg7);UK}6fTUo)
z1R^hD;H+1@p{HvUvq!lQQ4~j#WPDPi1l|asE%$q)@~8*_J>VGsu)@KVq=a0vKKF)x
z)bZb?(z0qwrO7fNt6oZ7)K)RWXVwk<PO_W$n%VEVYe|XFYHNfsNF+$k%*-&u{BlzW
z2Z5!FiWNntky>2l+CA=Nn>5V=_{0P<$)MOLWX`+2xWZiuoLsUG_^eV_iY11|_OScq
z@njcB5RB9gW14n%2R4FhKyE%J!dCRN0)YQ3kpIALZ~pp@{+GgyEmuq~YS#G5)*E<<
zoZ_(n$~<bmNZKLMnu=mC59=JWomCb#Pt9<%-=n%G_$QbIJXBqYJ_6Na4=kJJKJ-r8
z4ao7n>|0N`7#X4LjzL-RkDk?T14+*i`NPpIAtv#on&19#E2Gp2WG~2<5o~~HlTW?n
zwr)zXS1e!IO-KbKBLP>hQ~ZguscI^Kbe@181rXm6JyP+2ve6<)Kpk<(+hgNLQO=dG
zG61qgnnC*DBlxGlZMU2EKnQUYNo+RHzU!XequmCUU@s79^5VI$#eiXx5tZNWe*Jpe
z4d^X;e~iXYUUWa%)mC)+?(pu^@jjC`=*G_*OUUNvE(G-d)kQco*2QwpD;y7bK9z28
z?3>x!+)J0M=dl+tka97xKqZlEWX}IB;rsknh(Kh97(b(4Nr-!l3O(45YMyXth!TZ#
zX?Sts^i$buvP8-%gf2%oRd`bU@4W6CRqyHv6AR9;Z2VemMRWWo-ise{X0e9E(<3}n
zS*#!2$mZG4yt5B<6rG5Y2ZUDT8x#FY4Z42nx1Xpeb&Plp0`c!b&R^wdq5#5#9#_iD
zluE8JNR=lW2hA?+682<OYmW%5qju4b@n1o549h)>NZzoY;_iN0<;GAJk}$S}WvBDm
zCO_uQE~2i3q%GlJL-?^YGqb4r95#1ON|@cfjq06ZxuKgQRG<M8LaQh4@-@%03Q7}+
z-NvxFBPSXKz`ooRJ_6&RghjKq*aDCu0*<MRCgp^mlw^mr$`FFsK9J#v(q;AzYjRFg
z{AOf<2#btxz7W}<>PUZY(nzhFB;{uEeTgKl<L38yFAX5mM(WlO!IZNu3z39YlTHy-
z@6st9)#POd_;qH+?eVrhsJ^;^_)2_d-HDZnuRhvdCf)Zl_-XExwMHS=$fCJD-ANQi
zaj~aIg0d0jH^oZU<i=y4*Cdz5@{gs6$VpYs_Gh^)9n-A@#}h(=GLW2&#2s5W#gfKD
zWdiXU=^>wP7M||Bo5=;qre7=K2LcP_@aNb)-T6)0*-=Em@k>yH2nQ1e-Qrb#QZktX
zgoU*eGZ3}-_Ud55VlH7Blh7A|<yEXY3?jVrbbnG2{N0Z;=SHCTsHvZUM~f15OZ;*Y
zVz^3Hy0~(DBlVVVgBM+;H^t!(YM~4bSJFepfPLiq;POhpPk<s)El1n?d>g#5!fzL^
zk3R?SE2o&(#{@U|37vhB34WF>XIHBEp?&a{kM)vH$a<<!KvJp64O4shwM=nsM)j?b
z?DXLAC@T*R6C8wK^($h9Y=8!3ncr@W>#!+VI)+A}48$B(=n2~+%M9Hc*KZ+x{7GI1
zlmsSOmiZ^@RJBysqrV>Dd=WEC>kCc2%lV|O_T}OU<=r!25jV32I=3~7wN_P(tzmx#
zp<y2C<IK&bixq;IP?RqU9VIBz&AuC*<70J=WCc+CRKh~pX6<#(7k+yWtSd$(Eb+K2
zA9Ah}mUyYV!zvP>C(&Ojb3Ep(O3+8M0A$UGF_Iyv+P6IKtmx?vN~AeXPRRg}^EYhV
zM5obs?E`)y)h2nluyO8jmiR9>1ec^FyK3Et_b+!Eh4jb0NIE7)#E5|Cbh_O+=sSQr
z6(Q9HJD|?lK~FHHaPJE>3nU(-s){4(p}m1857NOrC@UKuoX|R^QI?5wol|6W%kIL^
zWHbs%>f$)lE}$74vm`h2(=@Zvac)f4Har31EK|%5szuk+okP+=4H?Z^6!=djp^ZQf
z=ixqjf#fI4tR0n1+MR%d|GZ-wIrW6rKN-Jy;i%fZmwUQ1O@Kn67=+eCPDKGseRHa_
z`)qw+H^evCc}@yxe?8vGJJ-L9s3<%Q<^b!=%+j{J3aKB$5h1q`+X@&`40qKHND*c)
zt$=YGI`RGmz#ehxv-)TU{oc?yS!Rmb=u+jYtOz_itK+aUUbrrc*s^LjKpUQ7;_hnP
zp_~&a-3OG!G6^vzO<{tw^D#t_?|H9rEJ2KuAw{0_D<W?Q$rB{OYy%9?b&37oi9BBF
z@fF8Vk(546HlM*$@i4a%*2YrS2%0Oeea*DSxg~n|4XGkemBT_4hJHLR*mw?iVXHFG
zd^V*@m&0WE!uwQME_~p4@C0l;`((dL72!*^BFZ&OkVpeyxO*FKiR#NiSs^<s9gmB-
zCe7))pV6e@A|!i23tZ@v7oQh=?+G2hdabqYOS<ge4y){#O<Vy8p%7@*NQ4^Lnq*YY
zZ#`#}lt33$CME*Kh-IGwu{O8PcCKilyMns0Qh=6XH~{;TP24eYrDN$3^JXN+g(%-r
zb-MpY!B_S$SW&wuC_qYIm@ulDc6a0LGD~a>&_3meRN1A74){OUI#2sT%@;&@U<Htb
zP(+w@Il+w&@+xw69*(|XPCmBS&cBC!hGq@+4pQ<0p_|A8um0w9w%V_r-CJx$)V4@1
z8$8RQ{sZ>IrFtQL!*a>X!}vGrKC_pk(Tbi_T1?o33uFF7-0%ceAG04xSVV}gMfCV&
zS_C*!%&Kn!jla>Zfkay+bxJUgao-2V{Hd*k!tn_r;^^Q(C;l1mPT_?_T}4ci4}pGV
zS|r-Xcg5}>rP_C9Dl=wN{gDcT8~(^x#XX_uX!LhYxt4*5FCT6t&imz^f{K#k5RkML
zIVV|+LJ}L=6qmn%2lxg78(Eq;PCksA`J6U0%n~+o?AXcz;r+_qxScO*Uw_HCFJ+<P
zzZBnCt6_0>C+NzKDH04qN;uL>7-sp-xC0CIIwD%cd}?mVTy2>W_rxcDm(((;jBrf(
zffYTc?%or((tn~*;t1;ub`(8fvwT<F=l(tGWaUZ6_T6z;F48+{?pp2bgn#bc3*vqk
zL5I!&5RiXGV}O%&ZqR+||Iu|G@KqGsA0JR22_%G)Ta%mY-Wx%MV0uw3DfA=+5~`wH
zQZETfNTEbfQ4#c6P(VRJu!D3J1rf1;qF4|M_(UZN3MvXHD2V$1p4o(={y*|Q4`%P~
z&d!`U{rrv|&IDW+Ng``OUB7>$v+^Y#Wt9)Xa}gGN&XHO64}|@*a(F(Z5t>fPlzGvO
za;EFPDE)ei+c!H~MYsoF<Y@Yze$5c1YGw2BlzCNL<@{4}P;unY^6qq|u=Z-_>~!q2
zyxPNc^QW`b8Au|rzvJS!^{vB8K$b@fmWm;*Wpt`?Ed9Xxtm-M2HyE8&)h9aIe5{9C
zN(uCPmh5yS%6oA5mjE=Szm{ZO_40iCw^lzG3&UA^pnYFBF1K<>c}A)5ALR>ntX{<Z
zaA@#oq<TIM6P8%%tFf9_WYhrKQUu)~Td7@83+CGY@aa_~Dn)97UUc>^{wwEA&*}vf
zi|H&<x$-vWG>cSvqqA75s3wKTCg;y`2a>m;vWD`>=5vbmlcHKB*fIpSgwxghS(wlg
z%0+V{Bj8B*HY*k>DgN>uph0QiwEPFSNphO$*lFRVawSpSx7_yee0^mgp-yx#k~QPi
z1?y}N&DNuZQ>2F@F&z}3l&!X?n;6BUfgv%h`~TwTj90G@w!bI=Lmj`c@O04s(nbFx
zxwsgOgtW50?zB7|r5Z*CsC1Vg!aX<Qt!27l97el_wxqU2z#&srbcDC2Tw8Aig6D(y
z#YRK@_-3Dx{3$jXVo;hG$w8--7>f^oA_4i{x8v1d&n<5dX)cIpFefR#6mto@`frSP
zwqXU*dIlT5Y?3s73qBO}>RUbHc<Jy43<)t`%Abmkoyi?A-v%pRVBBNTiAyA_8>Vkr
z8{b!%d(&f=vndvnfZefF%66aog~{>D`QZ?hTChn}+=uRis}lr=7@LQhDmsDjXqN5J
zn?{eW$Rzk5^>=kG5+fOd`}^azkFH}yaV$ej(&C8f#WZ#70b4~sy$9K%9#je96IQhU
zsBMe<T2N{6{0ndhS;#3Wy2w7<7b{V(;UJp;jj9$jMcw{&4-t?8N!A>zMnI;B7V-UJ
zotQAB8b>(m@<?Lz`D-qG@|+S35<=B=8*S^8QzQc`V|;C(zE0<JCC2gg?*|xbzV0el
zhBVYjb8wOt_Qn|>#^4u_+@fOPqdJj`IPRuy#>yVu<i`bpTHaVJE^MNuYDA22Bud}$
zx2!PuLvvObt4o$)QMqI>Np6KS;mqu6q{Zv!os$42N5x72L(jmjm)=9t{RnQIo?^Ux
zxxNG2tsFEKf_RdfhKZ7@p1RaXw&BVn;lv`QDHP#hT@%=$gq02C0Uzx*X3$SWVxxZT
zm$ssxqBAZ3$#~#h9Vp@`@?SlH9{?xP!~wDXHKXBr?Hk9hBL2bCC>7Y=z24Rok&UZT
zm$0*s)R&dmub!8n{f6{k#W9f<FFp&r36A@X((ACBDW2d6Y0OjLT;;Gp?LkwFh5*h1
z!QiN^C@&c&=?A!8Rq%<ZelvA`AzMhI64{y@aqJLvY-!Xrg*r(o4?2Ph95;I|AQhK&
zAbe3N{`$0J007j=)F_?gi#uH`xH4cG@h80#6ZOZIZaZ<*0DmLco)TbC6CywV1$Pv|
zlxiGna>5d*gNRc<PV>Be1m_ui0|(YXKnIA(9P_L^h`WpOEkTxsZ1w*QLEh7OW=7O=
z8@XtC;y}S5QjMx!5%ukZ__eUcYyEZH1ltq8-A|i5<#^!OcVO~s%5iMr-YduAM!)Aw
zT=R=Zt>o?EG7K1bz*liW=6m-^Pt3ZDcZ#F3f!n110kTciJpfXl@m#Z+8E`Q5he*CA
zZ@M%p>}5P<=$$k;;WO|V!DF&kdfIGfn6z=0NV0%r@pG1XUipwwA$;a4d5sYEOP;*9
z{_UOI@W7*<dcK-O<bjeStrjMD<}77Bkxk65UeqAmPWqc}D)E$t;B>TB6hA9V&GBZb
z7kJ`XR{n;3D&jWlE=t?khnp99jy=UkiG?N`EOT$Dh`M9y#a1B<*bL*KxdalQ@OrAN
zA2c>K=t>xYC;@r59_q(zO2G3bVS0*tCcmQTTX)SC4|7WfR2nAw0b}}mal(}HDcM24
zW7B`$8};>9J)|E?AxsnCY{I$mDrUOp`n;aPA+iyJJObqmM_--G*xpXZC;R!QNS;Lt
z!jhc3R^`r4m%s{>Rd2E&wfV%OQdGN3?6+I`KRuKtiC)UG6A_tb&$q;ObNK-PD!`<7
z7rBMNK+OauR;jCUy~nnaLWas;5*RB&BmaEk!{^9PBLK>4tbDX(3!?o+EnV*|A(6W!
z>fkUvgqsSXsno$EQ5#<AA-R_Q@ve{^C=L<GY4MLy(}KH6HYv$$&8ch?3#0F!(_IjC
z39!_Ovai&e7n$|a_M3bo{yk0~i)lgTg6%yg!5=e){*}7-6JwF>5*ZlTP)X+n_2);%
zo+yn}!}bF(%u!8v-U!~RLr#J@tZ(Dlp}+JjhO?1hkK7URR7t1Y?}x<}Bi!?)krlsW
z$+IP;sA-0~_|5LcELfowUQywoihgxZU)!@-Xg`2aAOc|2P44H`b(bNMY2nxM%&9lJ
zU!bKFzISX2{aKp}Ba&_)o+XEo+%`f+LzhQ<<n1B%WkBON#98$hD%@?pp%oR}9`3}n
z4g6R5!`1w;?&zm!Nkwd;1X95z!78k~GO}mR#p0LDMAg<`xPPd7qsi|$A1L%>d5H<C
zzPQD`X)7NhA>G<yXd2ss`!^kpC|rE84AXy*ke{%_8-IxCxJ-}bPzqFGK*N5lMjZ)O
zHLW8{?z*@b`7I1bKE7~9#DN2haO}uBC54A*g)G4Rliaae^rG}7mrO>wO?79l)gxK7
z>5xvv>Wf-;>U(-<2wq>}Uh0GE-L0(=Jgwq^P^!Zn?uS-)FGlGpq%jq*z>Luk40|Y|
zu&lc%U&HBVJ62-MeAA3R?k{s$0D=!KeXROaxikE_o!3B0{m`iR+10(>otEjbY(dP_
z%W-S5d&F`*#^R5o3J*gX2Yi)#;&eTl-%vXVcEpB4<yX0%e#&~LAPVVUt{>qpIQ#xu
zFs79H@oIOe^-EA*nZ8mF7rECzrtj^`lFP^qRqjo<>Jj`EW1FWlG~iCSTMy<|kK?71
z(A0gr`^g!MvEzg(aY)GEiox!Xp$ro2l8QA=x*HQB+ZO9>WDE@(Fi-XYPV}TBaz~w}
znF8X&&?||rDt3%J;)WhV2szFBci@+ZSc?p3s!AR*X=v>tTTRnX<U61&q=pE6^?K{b
zVbDbL+m(8yS7gxDPy{i<YQ0Y%Pjv5JqT8!w@*P#2F>G4(-Y|FTuA2G>Af0(2kxRAt
zM)&5AG(iBUK+><uy50TXoqB+CK%7lIHp88<r)7XD9@(MGYu$_2>qC?8uLDOw_O~p>
z{q_dd1nDhvC3Y&(`-<-Fx11bx&c6f{D`hPGQui|)e-c&;s!1P}?I>LBj(dxriCmSN
zjSLcKA;pZYk(USfR5_hw21<?rnC!jWkKe05gxaMdaXPA*rS5);A%Z?=tC9qL^R4b(
zFF>o>?Zp#i0p)}9&4|xG)_V-KGRomWUoUq5`ZPK$<rL(ejJ29hrILlC*6j`7_oG&i
zaTrySaAD;%N_}1ZcKZjG3#KoTbOKG{bU)nBQMOEL*%DkO#YH>8<I(<(T<JLZaf0*}
z$;B(6Q+;Ue6dRY$2>n3@b|F5D;xEx*A}ta=qK99Yx#lj$i4hUjYn1j9lEHu{8no?U
z=1qUa2`4A&U(Q`B$zxVY<`KsG6yfZ!r!p8yERkq6qqTWwq)r%ukC0&vNuZ#S*+`j3
zylVH6(P^2EPZtsfK(tCkn-<C_w0+Fk8xg$d8^kGe!a!1-2yL!0>l@c<!>J%ZxEO~A
zx*Vx7h-~Ig0D5XIaT#C|>REYocS=<g)94+}vc9mw{B*yLH233*EQS?qj*q4GBU#mM
zHTFA*CLz&uiK}{No-uv}52NKTs%pBZs$y1t`it?%03F09-$}ScTsm1*g37Td!E4l!
z-$Ah)(IQrWoU>TOHYIF#8{c21bFAs-ClNWdFx=~k=eN|{OG38LSeovnfPJ;3zw!Fb
zyqG3=4UK+Q86{oJ#zd7k!JI{~oHz6pMu7^;oN)e~tTVPmp+4gll=PL9L~^sxO;yFK
z#yiQV?~<B;rX)*6BLsS9LbJ;Z-{DIn8>XMX7G_jObQ1q2E|xg;L_cHE&aNw{$mRsF
zsRjj<>??C5?4GWQ*Lm6<jXj7BC8@kw<zK-cF8eqtF&WYq$t5IirJ}$4K*W*m5PmY2
z^DAi)Z}!pBsh~uhshSyAtH|f?yto+h0S~h%qH;J#RM5`I`;0jXdy(<tJ0r5LXcopb
zC~0u11-H0EHfxbhjP4uvu>V|g5bA`VbF7o!^KAZ6R~nBL(0j1{(|~@v>LHu`eQhrF
zwp5x0Zll#-J#;2MJhs@+p2Vy+i@s$+;SmiqcZ9mT&hvKK-E$8snN8}7Jbl@ZQK7qI
z_pl0iCDf83oqI&j|B6<3Fhb&wEFli-cx5{teqx@kcPC4jGXXXpsb#3XGu{oqXp_Eh
zF2Iv`yh?V47raa%JYNFWDK8<AOil|q^`@=i55{q>Hq=5a;&ml+B~|sb+xEQn_ZxW7
z9Zp-qkBkdvJKgP!@$Nyk&yW1`<unPQ0oVuOv9zHhE=urUxF-DuB&3t9n%kj~4Tm@V
z3_2JdnP(2$7J|A#RX<Eo+I@<z2D~K@gV%)LKcA<?<EMsj$ULT=ToOTQ7TN*=tfs%E
z0p&tFYm!x)1-7H(^*Alj${WyD<0b8H)JL|X0*sTchDy@EK?}elB1F7KLkAq%8Qxo<
z13<W}2lJ0~SWGpb&nv^{xEKcBLdvqOmfOHsK<g93LsIn(0st(s0p^AmCTMK<9~ZJR
z=o8g!wAACWUPaq%ORNq-;8O5*!3B|2XwLc@vu(p3)nQ~@7|kuBfx}NwFD2SK3G&l9
zI18yPR;yIo4lXdMv#~W;s|!ZiUKqt4vR3tCW3wcZ`v2$}+w?yF7*A5O*4h3G{uq{r
zRlbabCO0>p!qOeL*zyGeCdvA4&MYpJRKd}oVA@8Vr>~qvTD;?iXj=(bNZdiBLGNAy
z00yu1u#FHjG^`JLo7Eb9bzy_96L|e1+aKR(5~AL}YU~u*2O>&4!#{qT$6!v1ii>xM
zG^7M|e|`9|0eYASN=3E&A?FHj=Y|R4EBfedIJ0leKYL>M^-etub`Bg%wv*3XeS7%!
z4tiK`r%W?loM`dI;U#W8m%aqC08_^CO^_``9e*kO2B_~$%Ok$@*Ky(gEIkH-rGA98
zT)3k;{8V>6nv3TO3zSFWh*N!T47W+=seg8*idVgh!uwvrHK?mWce@4+fmw!y+kcWp
zBc%iVQP8z;v#aw=`<(rnurdH0FTwH6W`Vnvp#J*S)}BNJNG?z6ddZlE&*R^o)Ykq1
zU}%4b%3xMB=lC@I-mQ9C+P{t;N|pk;e%v4aK{x9)bcm3RmmJ1;HEWmcF)+BGMu}lj
z$t87M(zYSHuLcm~0%;n$v?4i?oqsCP_SZ%FBXa$CEFdc)tM}Ywi(aG$2UTGqND798
zXRoQTEw0zYJX<i;_;H-N<!0Ne+f&5l*RNzsb2|kI_sm;qE0=H&UP8&PXof;eplz_4
z9^|-1^cPOX6fI?F^pdP*KW@MK2PC8b-Bi#6mk-6^D3D1FBh21PV@?2IYxT@QqYw=s
zS#7<{du*7lSi(tG>#u<AB%^Rho?g)p#>%bQo)^H?bIf^szXy!_-qRN|np4ThniSzm
zTaE+9Pvn52DD@AF6Y-iT#buJ4bK(Dt!PE6kQa5n6i#Abp{>E6zT}U&!>eN@0lucZN
zoN1gV32NVG#`Vj&NRSOzp70wg=Xo314livrhR`Gqqkbr=Jgy;8E_fHMkoH`|I7wqf
z(MW<rtzmj;>VetDmQvisTmXVbTzUwwyKal_d#a}_o-`2FdzOw*8h0wbv5{us39aCf
ziXmC8QZJXr)9|XPy<>H{5g#jyRL9EenJ1<t#gYV`qTXv|-n#(pN9Q3{Rp8zuDHdlO
zuSF}I-(=iIZz33uz8k$}oS<aJORZTPRQL5k<Cx@~Ckc`W9v2i6!g}%@<dObt{K_@%
z%|N*agugk}Hc?&it+AX`Tdu%!kR+1g%rnJJ!#i;{7V=J12wdq>jGUgrQVQJi?_JG|
zU0jiZe?pJ3Fm|bt;x@_82{x|;)P$+91y$p5hUk(H@rSni$+(_!5Pp;)+WUeL#%DKZ
zb!?!hNE}jj1VyKOqFF&{A=`<M5g)!%FYYw<`Se8lixAN%PMj28$d=stopB84UYt0E
zl6MQjKrGeN32Na3=J58K&P8h!$E;2mmIg(?4l%v0A#_P}m8uk$OKt;14}`%v<{#XK
zNj_AsW13EUf*0R@tC2DXda(TTkQNB~vAD)*loev$bG5ZQc)IWf@H|>jF+JE$w*!Wa
zMHZJrLsbRlVsk!Ol5&1-WRXwC0uMr52V%#|&ElJcmihUYt<1N+V<GV}F?msDiIU4A
zv$P|28ndtDR<tD!2!{@uLbNvfouB{0Sb>9$6ODDk-U&<%l!ELdeW%*En+z*_j)R~R
zf>WaDvLvtXF<dV)E_p<BJVab_z*%8|&p36|_-MV}(q>;bkK{*Mg$AaO2k@$A4;kHY
zb~7b<2eO^b@HdHKS-kQbt0T@kSOB6V2?`U&@%2jMrF$U&uGC3*hj*gnU=gu<qgNW+
zUel}1mX8y7yL362Y3x~<&HSrYuP8XQT%d)V^$iW5N%5pC=t#eW7htHQMsN*H{=?f0
zHJW!p%}_d?Hqu780-Znmtud5s5T1cc05zeGa{%K=m(@fzOxbAsWw4q;5Tb>0BsHtK
z*NFK@N0az0h*C}+p#wRwI7n5^A>({#oi7o`J6%}S_JiiFkToluS4}$(0k+4;lsUw!
zHHUP`ENdbU6XqdFRk8SHlhoX8hENwgf-n$0EU}n0X{AZ3{MDE0B`@HM%5Va)f<%0*
z8SMF=vHV3%l`u+cHLO4arEye{%zjDFE`xbPJL+<~H$24R@4SQg;`n85$c~urjd^eB
z<sMR9QNa<D97b&iC8|dc8TXMZ$);zpf8v^uZM2v&5Db#IpQQGFVw_l|&vSpSYMz;b
zuUOZ<;0xYw(~}$uKDGF8h5Mk@{kYGV1lNLM2eOYAaU^4|As<qe?_J~TT)kzz#l%h)
z-jfDr_r7Xe&`m#$G9LQblR=1cTRtOR%|2k<V^tgwiQ`zvW+ll&!r*`X+PLwpxJUU_
zzmoC5!w_-7?d_Z!vp&VM0g@TzhdtI+kU&j;%LJ9M%r|fRh3nyenUD&?zYY*R;C_U}
zukc>q5dF7HkPFhj`4ZCv>Zq=Iq9h2)mzGv}r(GAFg;J5*q}?3})bhuvxeoK0&F&4b
zmjWU^xSnR-<^6bvDFb+4u>%cKO#}54wNfhpRQq;#)7F?@Kyd>DB@>yDKuq~A_T3+C
zG-YLQ6B#(-*iMHJ&_e49bN%~4!-j-36=W&m1hl)hiVy$;OjgGy8H2OK9{aIvQ$`L9
zp{l+Na;+ujn*6aO6%;Uz<#zbusdmCfWP3<0*Lni)&iTk#y&8)drzlG-Dz`2R$AZ4R
zgL&nBaZSTADEOo4w)ALecEC_K4D5=_eC6}7V}pVoWp;(XRn?IXC6OBRn9euHoM`WP
zloKFLUHmj6z~lirWNu7+ut(}222nSaN~x9R921@q_X42+)f*RRB}h4>P+`~56qam;
zecteB&$Eyf`Owtd08CScy8^YEHmfACsXggt&Rq`qK@KLmT(CmR>hVgmTY_T))G`dm
z9ga{<t%R{LN`LazU1V;+jfApW1jrMv2|_ul;|bsWNsOb3R!^+1sivP&V+DVc@Q>i|
zmZ+H47n>Wfu!mJwmQ~Zcff6>1APDQlZ@e2)z0H>z%j+rvm?B(aZCWmY30a9Zpn4+2
zLF|xn0QJPHzP+Dv7tuaQq(Rb<$@HbteU)$8K|Ox%Er_Qxx14*47K_c7L^C2Ih^%%*
zF%y?GiSpaMJGS#c0ILuLbh`p^4WKtBzGkHF>j`|*->xw4|K|#Vw&jY3$*C==Az`7O
zGnhhDKS^CMEoS|d<_4^fL8KQ+27+J+T|e6w^Ovy!w_{;|bbDIIu?nzLS)hj+yfqJ)
za;-p6Fc=22E<q)Gyt#LCeo!3YQ}rA`)J8bGx?s4^nCq3_52V?Seh#Zf@%0dIT5od$
zPs}X=`iuq%#5VC7O!R#?y!!@Z3ZV#*bin$O_@y?^_5B&?vmWEGL&k`U1hRs*cMS8s
z63{cs@e?(%rYec-Z}jm_U8T?TkZO+K#8?Us1*M*h3aax|<qGed+s+{@I4`@~`Gjww
z5Y`!jLk7YEn#Y+twZ;BYIPpaE1_(!<r@m|JTXKr6`8(mDL;b&0kl1pGY!FSv{)v^<
z6XBg?+e@0nw|#xF-X8yaCX;V|CYlrK9c)rooYW0un(8ys=Q_adrQ+m<w8&?LPg9+e
zq)Pk8>|66Mb7ad~=J+pElHNik(0X2=RH6)W%0K~vdt~1fvwSFz{O5gej++88U*?z_
z$lWO@r|#48r=Y9iBR%z;@18hw0|8{xT#%4Q?umJSuTOqjC}{;`G>9g)@Fib0Tk($v
zpr`bB&gV<kmrmb+ggNVmhKU>=SrmH1rmM0IzHfq<r_NHYuB&9FMS4k8@jsa{?mPeG
z60>Z+L;>+Yf1?~wOlB7U#*;qVaaf3O0@yHl6;&AFWDMi9;EQg#FlNoVn18zry#lHm
z6LaW!eOdNg(zhU4Zk53A+{BoSNB_TD<IcME?=R-4(X8n7lmB@czi0DhBoM+)bRB6X
zhEl%eWnbj)#)fmpS>k^khgO=$|GAdQEepn_p_KP?I_T7qg2GmDMa;bXe_3Np@0R8N
z7Ya&hp`d>uFXr9Myig`GNq_*^RG2k+ouaHP&ha)Tc}3|M0-T#@BM{L?55-*Q^E`?m
z9YofzjM2eyVa&!05P$MR;;uS)2@_0K(F<dyb@L3!l!Bc=BO&W_aY^M&^S&4zDRLHn
zSSh$?6uTu;)U(%R`aTu`+mtsFH-5PvY(YZi==UW@%$K%@4Q~v37U7-~s2d9hLj6N=
zLTy=moq2s{_k1RtTQZpzNcjE9X+Ud<dU9BZC>B&$5zECy28U4{T54Q2D)`3?eI<ti
zt_-G&YQbeeplP?*NFJvz=jNg6PN9?#+*o{~Ak-ws!MENl^{yKn+GTXGC?3-1uB8<?
zSqBN~!0W~zS9M6cvz@%RK#W7&J~-K7!s(Qj;Ye6-czOo^(IK=cKSSk|5Xh*94Wz+x
z#;rA{JP>y6)*!h;eQQ<Slu9xHP(m=|tLW7!zk{cHR+&BSYxx~XjWl0vPO!r;25ofe
za&yGpE!RO%)hLIOr6CJ>`}5`-^Yz8NY*oOi(^>jR4JiNehrO3v7&7#Rc1?M?=oV70
zFO6M^P6&Y?Ei!6i+s|CpJ_|c!C_(1QqWZv~uI}Vr+ACr+k%=vJIBJiRGMpM`kU;b1
z&%Q73_s9kEk|7HeBQ7NxC^;V<@vVN?)0CT`BVgo>RpX9@VDO1fc-I`cy5pTMww0?W
zb^^mAs3@48@(aG<`;W}u*2pgg(5FY2$Y7XKJK(R3r92|G>L8>cXaOHqcv}Y|24tcr
z2~i5-DrE7K*IPV6k4pIh&TDjLIHejG>YX?<Vm+cpsq3%vj(jP)JCZj`{A@7W1eG+y
zdw-E8TCI!ftoP>n8=WbCFxwn7HSFkj*7gDUAwI=2>+mM2<Bytw%&=3hww29ob{>i=
z686cN+Oo`itzTHu>urT<h;fpuO_-5%dT81r$cwW=<h&I6=^9JU9MY0hmozi+JAGUR
zj^q<3H+$hJID*bLXPdG2b$BeBv&3c!nS&cefE8x}M!+S94ab%34~B&_73L|*P$pYn
zA`RzKl;@by_*93BZV8e%;&v~GNZC|!rjqdYm<>;aoquCccddUCpv6rrmBgeo&i0OI
zjBFY-1V!GD@7?mWieu}BabDZ1AjgaljT%%^O%egYR<iScTYI5=asS$h;=oM@bDs@e
zV0?8$@c8VIri@X@u_6h12zkb<v15(w+uL;v35n)y(sqGXt{hF`r$vN>v0wX7b+$Pk
zE?4vMHeg;6J03I9`T3&oP}rwZ^|kgj$2&%2bYQSdBuvLF98+Cu@3%#BJ<C5iAV~|Z
z4epXp^;3ofs*Pb}NCOSY)8AU*Ed7=zp|t69ozuW;rQc?}y8bD9^!c5lkv&;j;VL7=
zh6i2Y9&OrXI)x?Gr2(2`4Ps5u_R=Lqd)XG}%@^8aGW|&ok-P<jiBv@K5X0pksV@yE
zp-m`{+C9>B<49X54kx9ir#pg|b?U`Dlv*=2>XKC*doqRGYDgR%V0wgo^Zk4ydGP+a
zBKAQS1`*k--{J1L#3pmZIIA`W04GY6Nv(@_&plv^W;cgPxVwl?rr=H3AtoMEIcBfC
zu}dhk>;vopE@Tb-5b=UN>$gtP67HnZj{++a?RfW~la5a_!{rqP{%Ru!u}r|c+Q=rO
zOzbT6=@stsD7(Ci7H$(6Vt*dqZ!cKg<q9;-f<ReafH+&EiZCXGU4f=f3>*|dd2;`_
zh^sQgLglNf1-%G2G7zD1oLl#CY@XU#7CB?A?&GD7-QnChGh8N@#Vbg%!2nfDE_aUn
zvx^M&2DDbG%Fi4<23u2=q85X~_;RtbRQ#3h{)_c8u`QxJBZFuO%A20-=Wg58E*mCa
zgI#9GR}QF__~GKaT&dPwS@5aq61+iGWG%t1u#@{=?7sPs-p=0iqtxMH_49Psku+OR
zBnDLz6tN3$RJ(`RM=t0n>myGdMjZ#=Nd~z=9<@@=pX?t;cL@~>)^9+X<78sYYr-k}
z^uBsC`ipy`hLt5hsodGQCySuNzctVXgni2iXVhO^M79=8;kz1ebm5XlDGvmBLp}{l
zoD#GV!>Mneu?dIfsdiCi$4nU*ptZKs0~q%pitvgVw?^IitJyTDAGsEjM2vvRB_$@(
zQ#et@Y%`yKw!_t<f|_!(*)%E$%bJtNagV^fehQf1ZV2oBE^Izq^(8_<L_>2-GAk*z
zRNZULEvxkP!VyqegEsx?34*=#`1!`DZ$mz<2^QV~Sz^hE>x~at+S&XtIXL>#(A+!@
z9Yz=F9s;G?KOar(yz#!W=OZqMkz`WSP7hm@SKKZ%CT(S2XOFxb7SPTA6PaNp<t1a$
zJH+t1ZkzG^vk{l`J!COsh6|nm+jD1=@l9Q16Ehnwxqhj@?W6toH5widDZN8a3l;&i
zQlQQlG&WEtJ>prERQ1<q#;-Ol{D%*d>^VAMNFF+(9nAzMd6%i?fj(h|8QjG6LAnXA
z6mwxztEDAoSofAoI6#S^YXmXDiDuJoF;8TL%|^U%BZ>7^BQe}4v@ee{-wF-eHY-Rj
zX@oBpT5>8efS(&+#)q|BJKM!V^-{VTFxYHt9hSc^sHuM*acPSBS|kiL5*Vcu%>1kl
zTSEW!a`IW1p^yyf0ED}VYkS&lrsIhYpZ4Rv>=t(fAq}?grTN|;7Y3)*hRVujXw^i7
z2uLKj@5W9t-hDXaty_beh87~wB!?gkrvm<v56l6@?QVIsJ;{uyG#n*yLt~Q^zu<jm
zJp!p8seCXtG6E!oOLQ_`B~36-&hD_`^R}0wCqP1!f(I%re-0i<+94nJeKp1-M+MD<
z0y9*AWI?HX*L*m=<IttZ=|V}Ku$oU1!r;yQcbU0kIu>6LB-f;~lNA9YPJ^~z__A5l
zzvG8bv^@-~E)Z-EHeS+orP}1f-uChHqT~vk*(#(kbj>2!E%4H-2H2+#iaHGMlm7F#
zlO=+HnzHU5N8YCB#T;=BrbjJ-Qr}(U`ResZd6aIYTPPTFsS*vmH`9J-n0^P;K|WlA
zM2BIqpQhOFDvk0%;MrJV$is-9&Ne%u&S<ZqBx&apiq~<U>DwQ4cyLG&Ob~Mcv4vkz
z<1ws%-n({8)O3W>V9NBM6S6)&wEwg=dODBJ1;?|#jtW8bR|ki4L$rL$5ID28_W&rs
z{V>Uq@roYrgVd0!BXZR7TdkPp$bDIlbD)Za7;qY5DBR~reD$2+vwkhRM(rUvd&RPG
zap@SFH*YX|#>vK=wp$n`fc8*Kn+T6M;&OPr>_5PGqzR+Ysn>US>$-b_@L=TNJo+Ay
zvCEu0F-q8#;MkXtTA*1~g4#CDEPb|xm7Q~q*m{jwxLRLBm&&Ltnaq1+2Z_ePZ#ov4
z53LK^^&U*HfJg|%OZ=&+2^i$$3EXyiDnZEe?lZQ07kWeAc9rnHOmW|V`Bx-i3IsHY
z>Cx3@_Z6N>OD;%T28<?}awn<p`*=fEMpi;9Xt4l!)Jf<}pvJz<@DAC@1^m3gd+E$;
z=<KP<-o&QJN+hYJ-yl83DEA|XkWSQI6I%dVh%H{6Xx{RWN2Y^*USCq$z?_I<h_}V_
zqFK0+$-sW~B<uZUya3-N{N%wTv)2}GlVpDIz65v^R{$2v-ePa;Zap6aMWcK<nmPyb
zRJ}Ljx5!7}HKQ76FG(34CaOfY6V>QRzMx)_O?~kFo~b%aNQX9l-xgilEiArU&<GZ|
z;1HY;(RXmU8Fn<PX?TBVu~=u(P@}?gw+DOA|1flEYCCOnovXCRsr8SV{W7%DZW(jB
zeJURlk00RlS&*$8TBVasq|BC-BQ)N{>x{MUhTi{1uqGFOC5f1lDUI_FP3(<&^NH8O
z9{fOyJ|Z7{nGV}aCv|M;(dN%@hCTCc+m6hSlz}?Jr6mAK$MMxS&bJTfrg2Gz>iS={
zlO~sIJlp6230O(4__ImNl6e5Nn%06dHBf>!KxC23MS_;NogkLgPkUZD)O?$O*H}t?
zGxE*phY2as-FJoO*Pr!o3#pSpNh64q*wTEG-=a<zl@yE00;NzPE%c}USnYX~9<kz_
zL>HIX59SWuc{S?^&#wn#S7cH<&#dTG3zmwWvb5|Rxz<y`*N{swxS^zxIa`-7!PJ}2
zd+r2D1%}suJp2paC}C$;RQT>#;qlpi+7_XGU_&OWR<q2T9}*dp+mDuTf&x&bhO-_8
zzNe}qbUcC7P_Zl$(o=AeHEuJCc6Ug78s07TSLJvsJ&4F53g*j3!Gz#k>@SN5Q2n6#
z0BRxi(QJ`-sj+6Pb{OOh;9mAho=dGKbUu5X`P~H_KVI5)mAEv^t0%GcX|ZS>YWZEh
zq~lRvAc_j4sRqghl59*b-(znWS@?4@%J4ek$B=-)jzTm4+K2%eEw*kAox^KOV#gjN
z9B!Fysn88-eFtCiqKKxvelRSu`eYJ`sW_$E8s6_}Iu`uVRxagpGv=H;n|wg^Ll5u3
zDJ|Cq;ftw7#nI3U!54d-ll7Hm+P50u(i9X&^~_1e@dd$M7K9AQ<O9gztdA|NJvgqq
zVKQ+k$%xq>@Q(ZlBO5tHWq}{ED5=Frufu^Ekl%<CJbt)0c5{Sufz3TGh<4@G(!gE9
zae+Kv@qtKjr{q)z>KmoniG{jso$uuakBklpl+;KBOzM7bS?=2ytw#&tai~PizdrG-
zZ*QX>Ctnh4fm&PWlF4yQp7cG}(-X{#`_=jzb+&lu6Xr7my#ZKdc7rbBdDJkAyLkg*
zR!o4QstdcApIzh?(J~|eN(D?v`US3d&U|%v#~YtwX-AT#CiG`rc;Q(ya)exPa^AD6
zE2{!zZI7)AfVm+xv9s;omGRL|n0En&AxBU8wtx7Cxu~5UM8U4tb!l8cEuvlUc|p-m
zGHK*V;!wgV1nWd~nE$=`m?OG^2lYdBAehYS-buP(#3-j^7fHV$bV0+ad=(`I)1Q7^
zTdg))r|VjIOQKr#iEWnE!-(!;_0lO&LSr}{)tYB)A>_i5rIt^225B{7b=<k$w&JRk
ze^Z|zUrT+u6j71kmqalFsp`(4n5)nCT*{VZ(HR}<NGcrS<@t`|KF3(D$ggn&rKRGf
zEBMp5^@m6q+bzxF)5QLt@tg0LpY@n{0LMx24ZSf=jcFe<@qGMD)X6mzOTInZlN4`|
z9-S~fW_fayTp6gF0+U#1z@693j7dw<!z?9e-quW#44iATZi!it$|a6#O--GjCB>Cw
zpiE9#5OdpwQMp-YTP4)mp}S>eKpnrm@ADmTi<_E6XPikDv6e5IU>JEQNf6Zh&M|r4
zX>atu{~}$vy2MQXE~Zk%RRa#RI`L%?yI_0E?lY%d8MTTjQx{eNZIj&#KBYS3^j$pt
zoN;3MxLbF*eI+-aGtTdc8r|gd9l0q=R0QhOB_R`ql|B4mxcAn_BE=}~3zh+SFq~}&
z=+bW-QzEqOn2+v9WFGms*J*nP^I3wD82mVsO3ILDs>@gQtDa&U@R$aF4WLyte^;t!
zTW9eB9)LR-cS1Iv#6b|W_*UAtb<XXGw*i4fK3W|SM{Su7YVX`(-GD-ZHGYn5U30#3
zNe6vTF2*=7Jrd$9b>OnGkPyUeqHf>k$oOxUX3q{fOC4`DawTU~%HE|kknghH=qkQb
z-v<}OdO%bY4Vdb<=KC)4unZ~y@sqWf+aWhOyodFL{$t6xp!e;gj)`ORfUK6B!6F<9
zAc9^{sz(d)VM^|M#9GJWS=!YwND6t%MgO?tm?Q9+9uv!+hAFkIOSM6|1W_RM)Sr%u
zy*wioHB=(H$!TfGuq6%dO>4Ag#?r@#zcGt-DUQFo>YYHrVz!`u`2#%T*L270ab0@C
zJ@XsH_ht-Zj=VYfB3ou*N9_|MzGdAY3q-xnBhG=>hR+v2iNLiK@dqs~MRIRFnNjU8
z4Hd%3lP@g>MpSqwO#A${&aMyX56LHGsiwM7J`kTxXXh+y_{<IJst{+>gZx(8H6mIJ
zdg#fI|8%^%D_k~<*p1)7&%!(SG=HNje3agw{s3YyQ1+hV(|&qaW#`9%I}B|ta&60F
zRUl<%)j$$VN@|)adBMGQEAA8teYg0GW*6J$48WU0x({+vJNwRC?R@=W?b-t!u*A@-
z%}QK!qcigb=v6WT#G?Z$G-!*(j{L!TV^0qn+1;vzr2@2jrz5_&OEe~-rUgl^7suUT
zpL=FF57OauztNkbX!;SxCn0v!Up{A02d;^uaeNIs0StJV_}NIBrt-Uk<LGs)RWniu
zw2?sqJN~f~$6UrqygMjM4Xl71uRomboVA^zacM}JMxfG=5E%74$KAiy>aC&R-(S`M
z|E||dHgk{T-rM!8GU{0~WQRKOlVjsGdLckd6DI_3s`NMyEYf2c0n&KT%P7~1be^}Y
zdD4=}&Xmx5NXY_I^GEx2<z418i+&t2k^=;}2VKgX9QAorNGKNZ07^6rLHNLb1$#k`
zOGhJ`q3ya&JM2hl56F4mc)624#zGH$aGW)teo3oi0yE~jE||e~TP%uFKsimxUpsb=
z)-%P*#f+$w18{P%b4iUJ%$K}Mv4;B&cjh&QH|6zKgGx(j9cyG5eT+;n(U_>Zag+JU
zM<KPp5Xb4QGH}sg5u#9DH7SBWqgtsm!%5guJ0|*`_-{merG!ed!I%gDG(pu>?SuxI
zGcu7t)Sd=MV!tk-Y_{;dz66a*(BnvFfizyeze~lp9mNlw%W{*MCeFchbzQwZ`Z&WB
zzSB{m*e~8rDspM@^pySJpZeV9QVAlJjGQwdaZvPnBs-03^_Lc)TS3^`E-|RSkYce(
zHs`boYaQ^Konh5qcXn>C*IU`YvYGEvcEjUVhdNSk*2h!`y>B%&PQ>-pqEn99-{@1C
zS&b7~&f|!iU5=yr(VF+@{1n`<8Z{*{(P`Yq<Ao?2>R1)RM&uSKZ=vIevc{|H8wd;V
z99O>MrxP5lc-YHCo(%Cl^phhH&m=6gist!A|H(K?L0t<zgap!H7XX_Yd^Dat$OOM=
zbrJS1lXblBI{uFS4YaT4`rofypohs_divB$rBnQ(CTwweUp#wQJ@>ln(+!q)wxOsJ
zGgHfstOoJlN=XbTC3{^r-mG21U?7Q%plq$T`>p$I|3jc!2*Y)TcD1O1L7qu2P294U
z1?b^*#HBQ^7g>ts$#Mw_ZgL;z<^k3o{(nDIiG7@(4b(f<r`j^VsWY}8tk!2-^BoBq
zG=Oso?&$B1_wVI-l7kYMtkENtx;7yq=1Avg?KTiIUShavNqoc`zrsCG+yjWA7T<k*
zAEzgrC!g6rwW83mLbeVw6n;W%z;EP(2Vp&C%W=o$a1eeEI}_+^GB^S4i&Kw{aM(hu
z3y>0AU-(VkAjim=`ss2q@=zWuxzT5$W7$E%3sTvL_KdbAaMN4Au^k!ES$Lj|HY*$K
zcOCD?t02DYfs0%R|D%7RWr)QHMN;vy_?52Xzwm`{S{)SO=b!x7{pR!G-=MJdt~B~#
zB!g|E)Vm!#>AgG2XpY~2a4M^1fyz61=49*JEyl06PhO4qBvwd{je2sjJ7ovoNWy<z
zot8mtsbi7*^N%1cthXY+ln@<GaaSkk0U8z-m0&VzLV$><QHAf-XSv5kaUJI}<uG_C
zaqn^4C2buqUCCO}U#g*GA}R&*-*U>{J5}$yte^Pgn11UJ=geec80h7gtRm7QzH?pW
z2w#dnD~lBPz=VcF1i&^&zWQy4`HU3?#sLs2z9&J+vr%@wFt{g%dTv7{<`+JHT8lq6
zLB}6*{Ntn#n^Jpzv*+HfC(|1h4gnx>A$0Dl<M#SH80QFU8IHISZ7A(e$J$TAoBH)9
zfX#Zc)V0tC5<^t2VVTk2eAuddbo*vY+USGaXE#whs0u_~PrJ-a*c9~ZU@K@Zji8Hp
zoumz2d!hMNc<>{sq1xjUpr#Ox8&8;E$>``&abau22s0Gmk*%+%&_cTvCD|)Q9ZWNN
z><WErSG%UZxZeb;k`;!;Xf}1<B4hXc9qLuk-!8FGr!R?Gh<ZY`SIaRee8kbYrxyGG
zJ$&mbb?F#V9wCxiA~m9O@`7X?I`j2+_jc;=A7^zknmvV|sm@Kq!vBY)6E!-vx-_<~
z2J2a=Y=<W!ytD8VNc%Jo5e8c#(jBV!ainv}_xdo(W?OQyMH^{*wR7eRYzEnfejZp0
zTBT&@&AQt0#UBhq4R{P78?99N{_CFkz1Fg{9)dFii-nzjXS-wN6v9iWGz3iq4~e=U
z0jXx^+Wg19e3K3_;ewW)h%&Ey8ZF6Rlp5@CZd$^Nq=bqECaywF60yT<=Y1wT37!r>
zyA}63@w?*}i=Hy8PqU=r5J&jc$b;rkXc2BlQ9hOqcP^Prz!f}(O0*>nCW6Z!^)$@(
z)Sb|23b84z>1bIXF|y5-j(I0_xKdszxf2{~!A!>MpQ!HGXn$@Ep8?OJnL`O*rv?pm
zJm6>QiE4-x48v>W2%=1v1sD}Ky69?3-F1O;8_`-mQJBIR!c{XPoeQ4Sb0^+fC+sJ=
zz<G0?X6^YT@u4GY6X)9;=ll8L+lA9nUr4f9O%wax;Q`O8S3|c$5IKG$ho~`F=*3_+
z-R5zB5-L2}+9SfHnqyRsaK2^oGClzHtg>18-q$)};|L@*c@|pjLnttfWudNTS$*N&
z%mO0D{%7&xl)t~TD{O;LmWNx$60%B`@7`Vx#LNH0LrV$2=z7X_p639R$xwdD5kVm@
zI^UCQhx4Y&$*2K>6zqa89Z%-z7`r%jF}sjU90D92Usu{!2Ej{lqtyB*^SF1XIN!|G
zi<6B*R9jokM$qNi&a%DXQCQ5DxkK_vqnI}=Oo4d3xcTsA=er;3{To579<Kn!RLQE#
zNXM=^HVfPxJ*v82?f8HJo`gRVA|rgy&A(scTs;^m&IV|j;llwNzt(+eq-LS0+uAC6
z^al4*SvCj)RbQ48F)q}2`*-$Vu?NKaSP$-L0LoM9KTDk-{Gu%sY`xR6bi>=O2{3+k
zHPauM>?ba2ZC{7ST~`m&;}~a+C0d2aM}?tB?sKkz`8JV*Er&0oav~g*APvqCb;34(
zU}w3CqZR+P2rn+gso1vm*b!RY;DID8%XhYmbxxgSk)Jj*QNSTVcsVL6yWcd)dHm&n
zyR4p`?6hyzS72h6VF%$yU+)ZTVm)XDho(Cop}^o{e>pz>Ko3F#FnH16=Kkr}`hy<J
z3*dF4-cO~UaGbY~p?_#@VxP<QQw;sN>$<n$Mk4C1;0XMr+~+>A5WR)--QaJ8*J-&)
zu9z^JJ4d_kn8YG-1|&yTsh6*Dzh0+9>7d|Y=n+p9!p$0Oe{0R@V7j(N&=~u(MkpnS
zG3iIAc3tK$lbihpa4tf&joh1*EO}P(5w2EK^lqW`7?y^Cgo|)pKThvdA9$L)OPksv
z8ROGP*&ET#zIJwJ$$`*9Sw1qEw9z>A#|7@LZSCh=P&qN~Ho<yK{2ub5`q%7iM6~+_
zJIMyA2!t0pxTbew8A+SqOwv#oYb~9Om^c;J%27TKnk4_Z7J39&ScuXW<E;1ad%zwV
z0*$b=iA+L7LbCdNtYdjA_82dL=G4MCxfSUxOSUQ4wSAh_%SFo|^Q9P>CJqLaF#2uP
zp}nf0xz24)eGDY_Lv}_nnxA@iylYIber~e^N6eqvB6JdJqM^Et(XNOFeMb9_MLidH
zif@?1b&!`O$tE-HRFZrs58djTx)zF-35pj(l)k=xDR+Tbo_@}C>vQ@XKr94LB^19k
z!5%LfH$p}j295&qIPha62?T1yEsm>T&cg8hRlvEHGoiF}fuvOpjyqoC?SH#Xow&hK
z{0MjG<P&z6iC#6$UF?MQGbPKgG%|syVk!Epc70>O2@_%7xNT&?BvnXMB;m6ME_5tf
zh^k;^!?X}!?=p#dfuP1OE*$LM{-$jm=UPJc@CaeKeCO!-j=7OcP9kwuh6&qHX$%qA
zo@Xz2PJ3RT(q;xKZLBOA6?CODadUW2)cwMe@eRUOF1y>7U&I+`ww}otQLnt~I93L6
z;Pt^dP%n~y&`yVItR9lrWsyb0VhLqvnK0&at?1)g5q{6n5$S>#8v$<{<qmm7s}kZz
z6`cfifECs{!z({J_HWZGEb$i!B$C2%(2=xEe^@T^tJ$bk``f$P?AM<p8j9AEON;>}
z6kK6AeDAD!Mq8l+{NjaDYaVo6H%kj*k|$vYv%;Mvz4YO*#0JtwNO|*5_B9#oBM@)m
z)<Xl8GkD^NJ#Ivo&Co+0?a?@~iSY)$^G>(MZ0!{#Eqex1lOR0`$dO~eCx`pYTO*}s
z_$bLA#4l|ilEZ)ZF6^P>z#whYU5pGuiQJ{BXY$R|cO-HrrJ4m&Wklr?q>foc5f2<R
za;CBLx=Wh+=O~ijCBu)P9-ZOd*luq4A#`&>uuNCJA^<rls-+>3zuGv`JbJ~1(~4y)
zL8&-3r_oup$07sHU{#AFwOg_C6?{05?-|O$-x%;qD%_`W?r+YAp<%V4q{)d-rWIhE
z`m?p$e*Bzq^}~7YF2Ctj9>C6OgZh!Zj<i8Mn)4cnML7^lLUq~UTG_h!xK4&0!V3Nh
zaTQ;z&)fh`oE4x_2kIQpo_99Y3MZyci$^rw;Ouy_z6A5->!@l|u{F*PH}bA@)wi0|
zK2%PAIM;A3{EY_-o}C!3nxcGZuA|>+D$9hT0_1wN5N;YZJ8^2uqmH!Jntpm$VZRtK
zHmGX-<F3U|Y1R%@5ru5v0FY;~)pdeQK&18{o=qG<?0;(9)cG4-?>@w0u&9CYHDqMN
z9L0$Psi$xqwAF0)>`u0U{0*(Mg!l~288)Rx1@F?Dk50G4D%ZL)CCP#XJ=0n6hyLbs
zE~>Iw&bxot;}$Vn;z+frb0)pPa<up-3H?iZxjpUl7|cie=od#ho@&DgK6(=T>NO*I
z*#3JXOGax>HmsK2`SpnF*7x`pL70c1iy1j_g?q{tPBGdF?nH=13+8wFIp6tQKTW)e
zmZq65HAre>H-`<6H}A>wSI3SoiLJ*!#Eg1JJ6z>mE@1uG+B2C=%Jzq6$_edEMju8a
zZ_$QEzw3C#&&Q^r#cKo-HU2BdNIaN~@B~TeY}TDSedX9vsTI0>@j`Ik(xoNRpLaNS
z^wOdj2~uS_!SekGDRw1EO;h&%_&Hd#d|~`8%JP^oj(uab#P5$Q0q`<uX`$9{ayf0R
zK?-UJX@8pFJDqetcO&0PsS0c{H-M+5Qiuy{4mQXKPh901vtMtq{NOB`;KCr+wukkX
zWmL+u#9Asu=m~@8zTX~nd~mo+C=9{c<vwJ3P^zK!K5qXwv9pY0@8Dq@3$`w4N6Bi>
zUG^>^o#(^Yh1HY1#zP*zA!_@Rp&~o1hYSgb;o_L(NbcC>??E<^z*dk==M<1}V6{X9
zVzIer`g{^6M4n4znaCBr664g3MbW*whR7AZ7!R*luwa#t`!IcMbg%CE%GvjbL^yv;
z^raX5^9t{`t~3po9Ofb^rvbcx$#+`m?Y%81`KFMj{u!95ERZq8UlRbl0tQU*`{Y;V
zh0{W3ZU`1RD#0sB%G9Z~CC6=7oHiD$*vQnw?z^(c96jwhp{-<I#7o1&S~v+u|Dzz+
z(jA(M$foHOJyCJw+i}TraQMysBhF24LL)%9m-&m}oEuuZ2ky0vVZMU*L@Mx?o?g)%
z<j4#w!Qh5Hi9T?s!CCq`M@CdX#JLt%3)@7DcW4?#F%o=n_(ie`+icrCPP5J228;=%
zI(Bef=g<^RUi4^Z_#pTYw5a{AjX2hY%k2Kb{lG)ED>%A&_=V6_B?DC5(-?97OJQQx
z^tV!oRqMCi_ogrn48M}GxQ{SQfX~Ca>ZCafa>R<H^lI-sXywVGxL_!wK1m=N<><A}
z&ZT=;Bcds%uc)Lh&K{rZK@qW)!jW(4;`Hri2p5vSR5Z`?u6KMYzhUZQC0I}_E8GZx
zY`LQlKE!s3Vu`ZAf0&X_+~(Xkh^%HYbER>bD4TsL6=;O)`QYIV_H9n|D;ix^<7W?4
zl2?Xyg_h0X-`?3FjGsqBokXIT6MaSVovjAg1oHwWQ`CaZ5=V4<P7m8p-7JWXmM)!S
zp^~W36#mIhU^OI34SkdR5nSwQ&j{OqRDOL991r@#V&HgM>!<V+$1a#xR5RgAT2*3u
zZBmL9gk*rJS6gMAoe-3ghK%1*V|-W9;o9HYHp32#*YFABrIcGFy66W<>Y_u&+*jh7
z@`j;M)}c-UY9@L+xdFpY8PDwxw(kg$i$g^F#C)L)YTuLQ*QvpOjScBVh?+oRpQzuq
zXq%@H(;S35_GEughnm%eL|=;ZYgl!0X+y}b^^NRbaoRjO9g);3-^io((TQv$jzz76
z50NgiYHoXH!8+(lS9ud~qPq!aGSI;><12oP6BAcFB2g9pVSk=zru+^BMp)H?PL5Lq
zKcRbqbC$<w{IjlJwOZB=A@lu=<;?g5G48C$G4coxG6(C3Ye$r3<%Q_1+FP|g$}#Vh
zo?;dTD9l$vKv$h`+!U%E_0TO9wW5r&N{H|QneH!6=qs55+Gly{D0UT!%PtW`^HiF9
z&Uadu)pi>r&PrK0kw%igBw-#+eroP?N6gJ#zR}zmg&!|Y$K#ROV=RoDaE#a=6jJco
zYd&$*NmK(SjYV8jQmp-2xBlr^wOxyc{uo}kO{v-B)O|S5@vyj}q~p#+u?KjRksX*E
zTUSz3Pw13<M!qrnQTJn;v}Oj~YdJM}w6mQvd>LG?u(n~G<=KwE)O}ugm?hIuK~ZKT
zN_$PQ^U3vErVrq?foAs+K;c8L<-O<)T2P)A&^VoE4C^8uVzS4IfM(KMuGQx@b5KVa
z)n4ryv>}$DZny2F!Me2KEImuwo&emx*tKpMD~tU^c7UHxgDMwycHPyTm!=|i$^rn5
zX!r4yQ0FAPLyQ(`V;0OMu{Pqh${U>E{K5*L4h3XDELJqML`f})Ib^SX6-JS+*$aD*
zcRf|#6Y;vUVkNK9p;9SDAo!r&2q3P(M0Ry^ctoWX1_TeGzYDqrTbHIhU7VXdS|Na!
zqo{*Uk*q@7MlAb}UOxt_g|t6EVt;HMq%9m!OcwzzQVYLy-*TTOHc0>|;(yp!S#AnA
zER#+g4I-{(HU+3Y=&c}-b#`{VK{M!~f`~_M0^DijPtJjbdXNUMmcwM$G-phr-hYw%
z5+;U>mD>70N4&%YQC7qnAk$*0tK(mtrG`pAn0ytTokZFP{-ilSn9un;t{V{4H6s&S
zpxjTG3QM;zy+A#(!`H57yHJR`IgKFKUtBu{s3FPNT6s9U*BzZCo`eu7swRvgYol&G
z<<7a2<(E~YxIzTxyFHvuotR}joQy*}PP~sQ`U2;Pwyc3J{}{(g0agH0?K{`qs;=3@
zV_PjJ2C3rYDs?Y*-Ey5~69Z6kTl^dAN?pfB>rn|)AY)j^Lbw1PQ8J**U9AdvGp9kE
zhH}6&@T@S+r+&82_)wFa5H1=a&D}dVS7qyyD7#!m<pgt2KI+&iz6va4|2S|kAU}~5
zWBWRP7fS;Fq~(pAP~r^2p{R8b^h1BW@R5XcVT$7xIOj_y17;vGSTUESmS#we`=Q59
zZym3b$?@W5RUz=T<0<^cyjMGeB-*4#6gs~QWen-g_m4fTJSU_PtX4-)I*kA5Z_Tcz
z)Sy3!-P{D|3#5JLQG3O5i}J0Mnr3r;*my@d;W>00Ky%UCVZMSu1ha}f=IZe+-vj@F
zuQbT2;v}+4tCCYC4AA+6D{{9c;<F+XQoA0f+@qXNf5%FSCrZj+#QJz-u=~0;IsgK>
zh>4=hN|m$BxnNni74t(zLBG|;KoG_7pAl$($*`}!8)5>83)i2x<eUAsi;|pS{a6YS
zE8{pbyrBCa$Da0j#j-`*^M-hg^*EK+!@2DNy@R6T4YACVj(Z)6ee_=U)e1ucyNz${
z0msxu+DSvsi9A-kb=brMV%-Zp%smyR2&-fV<0+u;KH04#c4BRj-oIw;Tj%CHUgO@5
zA&nIw+(5h)k38vaAkqzIYB{aw7^pz3ZFUKPFLC(8n1=?rP7+Dtqh-R)t|IC$n;knN
z4mpfT;Y}I&s*jYCaBPy5^R@`b$cW?E&kSeiVUqRK%I}T4UX0s$_OKv(-0U@v{;y{{
z8E#2-5JZdiHNMJulGSk5FzQU8)ED1R4^t!xV(=pGzBM8Ir763&$`;vVWRy}NL-Ig^
zT3&5t{~Y$?+O|?G*y6+GxDjswdgF#7^ZRFYg8S+B#&a|`IDCVrMxOItG6ByFm!bfS
z3IOa5;Nz++<NQsAj1&}OTZ7R@l|r9bW9l1*ByAI6q!F|Z`3Wd~ikh&{{AFX<rYERg
zEEJ2j*h*?810BGqp5F2G9o>Jnl@wrPpw)&cJq_)7(p|=`lO2kVw(UANOXYM6P-hwI
zZ<riQ5(gEil0mA}-pSt2o(o%scPEQsah>g7?3%kaOg=rIgrb%LCXy0U)a)43xiswK
z8-kj$vnUe+AEvoIOdQp=YDTH~#q(iby+h_`F3UEyfukt7BxE|qb9vJTc$##5CJdaM
zf6+|I5Joq+<VW+G#T`#j9!uqBE~vkNLLx2VVe5lGF*dyvI^)gYf4-3lkjbUyigohF
zu7mO<{#99l5MnRYz_<bGiz;vJk}#?B>4%zv5-jinYNEM&j1>6HXK%7V{P82;#GA!R
zzW!Bo@A2()ZP%HO9Js;Q+y!IIH#X^#hrfR~>B#DvBJ(xt!zrW~G@0Zejaf@k7)+~m
zk-6&yxit#PBE%(<3AkjXQg=ABuj@1)(UFgXSB@!&k`yo{&Wu`I8ZsXSgo#jp2suT!
zB5)E%M#Vji8H)HR`B{*^1d^xc+Nf2(w4aaBMy8%V=~Q@u3RNDZGWji#vve*e4v$w3
z{4q6ieAJlz`scZ9Emk)csX)EFQ4;lHcF26~7HF>V$_GrX?hqbq$&j1<e$;E>T&F~p
zTnT?s6H5l*L7e*Nis*yw+Am{Lx$wtQi5@^x6RvZex1Y*JY<ql(sC+Q2)0sdpvv{?7
zQuxysYwedn9+FJw@JV0^`twe8xPR6<s`%-|y8>qs9UgrJM%aIk<MTPNAL%JnMPm)l
z^2@Hzr{S}ZJR5v0#lnY-jIr8t_v`bH_K#vIpe$jXu*MWxh!)a6Cvs-*j`8G?S`l;!
z3#&O{p4vzTNh<)xMRH#y`<Ti<1o~x>Q%7T3;CZ2{60xkkRmpg(SY#>t&>q^~+C)f7
z2$=}@>{)j*Qzl0&UBSl)h)yjT5on25MZ7QZ4S7-nMXNawCu_DZ!SMjm2H53U8s(E?
zopY|#gQ6-k8+BP5=MofKzBQYS0rA3+;;_uIJc%(<Ej5~rwvLktBPOYPC%M~&X_l`A
zgm$*7+6wov5aKX$0BTD_ySw8D_a#|~Nvu*FNaV9On*~Gmx%c$a(w+FAD7lE2c>Id2
z$F<JT?s{hW!AcDo>2x!|BM^+Wl3WT72twz*KizMP(T~Ov(QJ{c@BVT}O3;uzI~I<L
z2tI>We<;?sed2x%hb79vkP@8Ml2WoI*!kNkUWKCq>VlF)iJ0tgUiYOQ%&02UiBnuD
z5shreFOF@`=_{iDP&J}P{@|GY_~}sY5Pzv3s=+4!1kNS)--GoLEDSV)<t}FsMn{I%
z4N>KzL&Uu6{f`7HwQY|p;})%=WN~m$7sjf>{r2}Q^+Y7z8Ryy{E5EXEtmEAQY`ny%
zYxn_Fol_zVcl5*d$@Q8>&dI6CXo+C~a)3&?A<eyLKeuz#{8lc(dA~V!|ELLY0JKFN
zAW4AeJSmY8tG?6PMoW5&puFJGz0P^b8~Qb}Ft7#5<l-JWQK%&|+zqejYlRdx$SH!>
zjPoPf{G|t5OhD!=5?oO0^_?8TO|#s?k927oSfG02K7ggucpZ-M<RtT<UqU_z1Pkel
zCqz#1IrjoXQ!>SU{Z9RY5eO0;F=IO9Q_ie#+a!URQ*+u^j=4f^;i)}t6OC0KiVXr{
zw&hOcHrDm+8SY+RpL?6EvV5*sJLlYf<~z@|gD9<$c&St)sG+Bvy$Di51!%(BHUHCa
z*Ug6@E}cSy$5aQ7=+Va)Z-2w};}-1|%OR(%(vRy>mtDT>wJ%<bUrZm2fX-fJpCI+r
z9q!^E^gfB&WEJldy^-j}0>e2wp4Wg;eCCq6E7}>G2py+O4ghC~F7sp)!937pfyv9U
zZ<(w;w|QjriP)tk9~M3L6=zI8eTGrN5y)5rggw5Lu!lruYT(;qk5X(5-M2Yv|7~>_
z!3N9?SWuc+j<EpH#0wbtty_Q?BVqsuCQx;$0<tO0eBCtTg7p@lAYgKn2zy$vWXUS{
zX=65Uf;=v-dORGJDEr;U<<Dt&PeJR{04B}&lVfH@|9Vnmd=3(@JHht^RVQA(GtAue
z7eII@D8Sg!<()P=pw$Vw$go+){bMw`AlT)CBATFKN1@8D-x)ve03lBn9otdEsuQhZ
zzA*RdGPAb;uA<Tg8Zl*<vD#m4jZt)hxMG-WER-555Mbu<drkKsZlJ?B%>bkiAuxLU
z>*MW4Y&+2MU}K;SicEi_qj~*JK;$Lru2L)#elqaUko=ow8D)c+tGEGx$ATmU^i&!d
zGj#YKV^Rqh!JjEc9s<fK(0agDT(J;148B7njAB8@@#QIKcJ;p+PWe8N;bp4h<&lDv
z#a&caw%KB=^DqlxuT|r4OzW%Z`ty_2Z%xM5H}y<3iY3lE^fOtRWcA(y#-rB*;wIu8
z^{|ru4d6yfb;h#8-iDte<;p->iAnEd?JLAnlnT5p-Nirk&iYDU$FE{xeM5Yy>f5)y
z+uzdT1R>A_N-5oq=Y)Uzm3R3kdOS0Lx2#NViKVPuV7KL=6x=7OH9vXheyV@eUy}K(
z$EHeQPwZ#j2bSt9M41UYHU^}XF87h^pQ>Ki>An38eRY%{YoxTKvRIyo5;gs2@39Xf
zJ7V8vQY%l9B5?sI;-f8g)vBiq=VQE-TlIMe2;|ZIcFzSgh!U4<J&nnz`67@i?S}`2
z`g-5MOQeFSe0(fOB+?mFe<G1q08qAjeao+p{5#y16z9L%H|E$nQ%c4A(}EmNADTB_
zQ95QNt9!e6Un_6-%DwGHrPYo0bTiA`#DVHPpZC<TutU5tqYftvP4VdZ@UEx(N%Ihr
zG#m9-U^V*Q?YVP+w`*PjhC+39g;lYwKDyR><@=pvl!QVSv);%NP}<DILY1BEt$Mln
zQV}qi^{{DaUZ+0J^xpP@zK|=4lanUm=_L2Ez*~M7qnR)dDUuV9jUb)$P8z0i@9-X*
zr|%Fat8v<)oSB|MI)!(Kv$NbsU_yg)pL<7k1M?y;slJ{(2>hI+1r&NazNMd5$V*rw
zq)TSvDD_caueW(#fg*@oWya;H_eXdyepCNAhaWep%!C3ppuqdswoVeC!FP?4A(i9l
z>Dbe%=WOpS4+NLgg*N47Q68sjpJ+vn9(&WT#+OxLj(dWn6c_{7K+7!C`X_=<^jkT#
zNYh(hFu&eREncz^Mmd@o{f4YKJ8(0|hbOXqS&7zlx&+nlE3TJU6KI-xxmDapAJ#w(
z5e7btE8r-p6DhvKG5VG~+%6=|k=!rP4Yh{ACQyDUCRm$fU$0DlL~SHyqYkFwVW?Q`
z<9PnVMuJe)i>2lkZ6gVJqd}EWyhe-3Bz6C6`^y*Twu#!CW)TEe0OP&SZnK)NQqE9}
z$-)hMvTct2j+oegyd)X+Zkc{_-^GF(LA*eC17}gzbGFU6=&q2-&jdGNclRNq3)c*@
zPgcbbdrO}Q`MiV9oF$!tu0a|PDIGwnIQ8?x#?=#ozsn5iC{~kLrU2|v+6v~MDzCL)
zz9=DgpkykG#xZCF>TvbdJ`kI_=H)14uYin*0MA|FjlHZ(6R1}OR2+*Mfa@Gn^u!Wx
ztL~wVgWJi|n|n+lYvR-=1ML~opz^Fy6fVy|`;I#j&P4N?p|ik9NK%&`H3NPL=KZ58
znk9a}!OVI?s-kzIiw_lmFTr=Ac=&D4fyv#a!Z)J=$REKnL>kp?G&6$28sE~0Nq<A}
z!Y&-Q%(%KT_$~|N3zt7K8`hhkq8~TjoDzI9#k`Uaj2Br_;uFC*O;E-68226S(E4cG
zovG3nmu_y-ZjBVpkf@8wyGwzmlvCmo;~)#F08m8{+sqL?1y$e+#M&r7Iu3o@r=Xsv
z(-=e*Z}Cq5)cAr;z=JiV!jA?E%+C}+Dq*nneN&-NdwV=#e8I8EnHZReCO{U63hV4!
zYDRy7v>G<0uDpr_Z~#DPNucI*^DS^0|9lg~cIHh3%dPTbNuy6!FVFLiouFrM);M(5
zJkCcq<FF=Rty(y&UvQGMt4eAlS^?~#M(zY!oNTx~-lOj`S=fFxA##ixJc3Zc^dR4j
zFBwIwZNHMTDdkP|<<-Sab&Ya>scKr{eY{naT+FIFUVFSA40$dfbq74+{pGkvE@Z+e
z$X}RJJzg?i;#Ki7?*i+VfyX7fLIyaisdhc)UGtZ|0i9!FQ+*>@$W3&QqzX4tO?uWl
zT<O;gBL}zfU=h}kT;h0+eA=7%AAM<H6K_ZZdFG0zyhGaQp@PP0ybEAC&|{f!4U&9C
z%Y%?@C3THeY$k6=Ql95pKBTvNWFzhzAZ>oe*$UdSn*4;f`+3&;L6VaXfgTpG@y`3*
zQ^bM|p)8+vI#4cIg$?g}w{MD);l3>5L{iM^sN5w7ML_<+oS<!Y5qpp^)_-zb9Y{R&
zKjYou9fLpij(L`M&~1ma$?+&c6@e_m=6K!V`gw(cx<*8J5iv<13e<(~d1oHg7mzPS
zl(J%Gg5MXf)^7E_e!#k8N&{%gGD<syE#610(E`ei$PH;MDI@=d_a(jKrMq1vYzQ9<
z*eayFKtnmn-bn)hdLY<cO=oAgK1T+~BB?GV^$t$Z-|oF=vZrgoK$Z22nBI#Ed~1Ge
zFH8>#s-(prA)1tQ)h62*^hZeC$L%zn4r@WqU^08B9`0l8KB+H|Fhv`9-SrUf<Y#r}
z+>b(C`+{{MmDH7L?;nSR<xQS!u0GsyF{55LUQVIjJW+jlhdKDymMb|DUt^vEIvU?-
zHvFY8aK@$I@5t&}`X6dEz>}-Y@K_D_at^`(QgO^ov;1L=Fp!VzBelqnES{o<^aUQH
zz*jgRB6ox&^V_cReSgZGn?)*LJ#9x|5%sD7JchVMzHA@G`U5Or9r*;BLtxbd$G+U$
z)vDuMKxPEpqPf-q9a@EzMz6j!?7mLaI`q~Sq`~1S)=kcV%b;08H}7SuI{x&ChD1i8
zq46-exg`G5^&wu}_PSBoTO$)9#s#+!PGMzd(RUnE`1&u5LNl!2H*Nn`4?&dqbUlPX
z@1RUs3X!GxaiZWOkE}MYEp2z?wf17%=1@OCt~ZUB5FdNX&GoHAF>af30pAD|i@^+C
z0eqvHqP)2eci6hC?ONEpkdLJCDAt{C-O(p%{n$>zb#adRInCf%;F9ci!t|$f>}mvc
z<g{Wcqp>2WNQK5{)!9BfB|#)h21q}asY}C4CbueJX1y7<@q@M-;Kdf^p=6PONereB
zC)K^kSGL=yFZ#hW#p%oiaFx^x5BWZC8zUD6Rn$-MkFB*pjx99K>NkDI7wfw+%1An<
z4K@&#SbQt~@a<dc+W^ZP#P4Znognd%r8&O0s$#6s5)0^*n6H4bEFSH<^Gl!5a(;>S
zjG<P*j(=WZKKOR%q1<+5;*XO^FD4t7I|TA@U3A#uZZa-4zGSTnf(!JTtUfM`t}!nx
zgBGmPgEA`Bl?wGnPubg5evh-fn8a)ilNzsXd@wrl8QRoJLLHe1g1{~<lfYDpQ%0xg
zJ@fTFnKT1Rz(dZ9_sou-)SzE1HHoFA61tLm0Fx4#Jn(q*tAo2)#XUvZB}i-oux?&F
zVw5@NP|%i(Lq(2Ta0HgJodl?6yn6d?bMi_#Opm}>NOdi(7onG~f=hiF-bm3&@*60_
zsF;E)N{p7Ho4t7_LdISVQRU%VC+C8cO|XyC)!}8{o}Y!B3~4V{hy>#lMG;R<Ar!5y
zy~}&w>ANgMDtaUE#;%6<z^Ra1uF;PpyTUpa$<S|-a_4w2IvldidX=DOH1afn)Yayx
z-b_y@7arl$DYt0wy_OZ(lta7~7J?F5LSrqmeZVhOLqm+;)`u>=F<1jCHb*4b1X53b
zGR>EJgcZM{F~yZ~-x8DD!Bd7zqncA{?WkJ>kApY-^0sI3%U$KG=$KGd(oEoFmJ^m*
zJ=EJONkfum4PyDK#H$ae5mYpLrrE!?{hJfpOPE0%>O|BHBD-UeH~>-L&hGw=5q7ym
z8bp!HoH9vzS+e%=>Moak-c_h~k`@RIs917|s?9C-HFw3yPl>Klg`{=rboFtlJ*PaO
z3@)qRfnzI8i-0+&B0Vlz@18Txzs`&U3tLOlCJ8}=p(P8Dv~I~VOi*{d9_dfk_YNWs
zz-95<p<N3^L7F=8M`SPS$=DoFFFHTIDdwow9*oS1)%TGsDDIm2`UXr_lmQ-E7vtH~
zzWE}xVigrs+W_8{$WmR?#nZ;4FVPNITF5bzG(4XPYQdq%OK1Siy!+$pr45$#Jb|Ct
zXL@Qn=u3t88JQyYXg^O_XU`<(-!8z16VdNZU%&>f;Q&j3gLH6MmHH*uv+y`wjcFas
z1jqnU>b_o{E4t_had^RolCck)BDb2>!&yE3aq+B4km=bRqK5~POvSeW{fHLE@yp#2
z`F^6la@PJpRA=@9KN#q4KqY{hEm*^olRb{$=4Vx+3Zf=+1tzTC?&V3bCNxlRb?U`y
zeB;HQW!5q<CcPeIHwXpLBRkA<m0Le21I~|aqNj_yBVIjlfoBB^j^jg445uEq3?3fA
znyvXLdhZq1+t2KURyVD^$N~!qfk6sIOO+6vg>cuE;>g3xK=}6k=)6<TEXkarkc|+B
z{94?|0%3=;l?)G8z3wwp-*abC20}q<OBuJg2NOcPhXY&yjY!vZP@R~lep_qa+b%+y
zAmGJ^tMDYOro(N`x1QC{&@})wcs^!6bP)rf4iJtHG}f1huMK@DMLinibw%?8!9=er
zB_W6a3%ZFK)Wr)_sEi}gB<BmiCYoK{cjl=mJv=PHoD(^e3F@~4=51aEIZ@>lSV;Ir
z3iVLBK+z{GeA%nf9e;94U{oOJ<lu00Nnn5orrlxwm7_ssk&)a2bEa7|06|A@GUr!I
z)a`6rPM~K)^6lQ+5}IHt^rV%ha2TUFLfiE-H`KQuG_}2G3Vq4w(pnaPC7ALv{Kg-<
zI+U*=u9+n-0k957LIS=fS{3d$o_;lK-(VnVvs3{Rf+^^0gar@pHMYLfaxK3>*e7xY
z4;2tAe;B(%!d^L`Bg|I9sX*XrZTde$%uDixeG2Ss9(^$_^&4@d?yvEFGh0As<!x|N
zrh-%<5}2k|>@$uH(NBacX5+3VUPkZ^Xu_q&wBzkA>8P=G(V&W}KsioG6tTX&liBCq
zu=}QIP+ZC^wa%HqqNl3oL(E0<^d<Q&5@iJ$E-jVAUa{L~f1pD+xKdn^4KXq+8%j&L
zDsbutpD|{Zhy7WmQKxz%e+li=Ra|v=%e-N2(EkFu47Q)Yre+H6l<_rkmAmS9na38l
zT%}$C$z3iXLwG(vz#1I(skwYz%MV%v5!r(5^vNw|<AXt8U14Ea5lbvKI3K#@Mhf0g
z_2~c1_m}BgWxfFH03g5);U`T}Q74UC+lB4krvuNDBgYF9VHU|M@^j-rpu@(uf+Qqe
z0Gb2^oI;Lhf1wABc~$xn+TU=gal(L41J_R3el~B|-r?x;+JG13?=-#?CQ9D*#vgNn
zTR*7hd9J?$4`iQ*jj2_ZzXOaT{ZQPUH59l}L;UVW+Y{sCtvqKuAvh7BO0~iE_C0!V
zq$I<L(Wk9`6}-VVZ(+QsEPd$PA;}ncz0h`WSw3oPpDdmNITZONRb(Ec2c>fS_vPDv
zYtVj=K@tw20+Kt?fzY83_O^R#^(763+OoK6XQ=&~jvOQqzbO!am&$g;s~c9B-`^ZG
z=gJU`User?RyM2TqL~68cDH%nQc;T}C&BU{j>A7+QyyDf5=-(vO6P#YA!__I@AY{d
zC6`P5lm@uF0jUreo$uTAl19rMR7O#pwCjWR>t8Xm#)_t%TZrBV&%|xryC1RLqLaRP
z=SAcWg$p$Z#4e*~r@R03jX3Vs5E|qCcrFOXkR6x2#k}`zjh#W}L%-(SGW0zB7aKk1
z`5$Od>T@y|P$TvpG8?VT1^5q^%Na~Oyy>UCKcc|*2Er4R!+OiYK($3QnhoaQ%^EbX
zfV;(83n!Ow4ncf1p_g~`Ga)6N+e->=W}sHMyg)QT5HRuk=NWSoJ8W7MoI6k&`_}3^
zQQ1}hz9}kwm~VPxL{r8<eLgWYDg=^6Iu)M0`hxI7=RfOjf39wheAv0lT=GU}UOqtS
z0yPN%NDd^yUet)R*50M}gt`9LHiE^@gSSWuV>NN(*MdDUD<dR8Rv^8st(459v~=!S
zqTG|O&|xQ9J4^8_;V^9bIDAje)j#MYXCeZU7*I|6BB{63KM<|jevk7%DLVdJpi|>C
zN>RnH4kslfyu5c20Y9NoxKX;KOix_toO78@PdY0sc}{5Y>|keeoKy0&be4Qy60pUq
z91m`i`k|Y>)1A5!FGnmUE>QHHCKkqp_U+^X;`_<><3GY3Ac?sn=Q!^eNDxiuSd7I<
zpg4XG7a>|y1ic)jCS3llyA65oct(bfm-wdS`QN(B@qGbN%47}>^*fBTZs%I~T)0T5
zeA1awl62&dNxt++#Edt>L@A@x0?)Iwfr-ObitI2$SHKZ}MqlAv^y%pwFcOf2(}l()
zs`KFZ-H|^I43qsC3VXm;!V#syc8IIET5pXcZJ_U1h9zM7*sPtea9&6`8!Y>riz@tb
z=Y<m7J{KMvp#;|D&J&JyS!BN@O3)rC4XGfN%s3u*s*fXeQgfMal|gf03W_D8kW2mj
z_Q(3@ir5U&`DMBh<?b#3<FGPAC>v*Pr~>}~<Lf=(qbRrk|3|UVdv<0wZFiQY5J)Ex
z5RwoQLJ}ZBnu07zNFr&b00FEtyLc^tg4nQQ$F7K?V!sv?R74aDC?Ym2ApiF{vkB<^
z{{Hvg*XxpJW@nyxp7Wf3KBvK7h{KS;e!m8L_H!B(&5$<kY{58VpYNuU0wRZSRqdsA
zjoo!XPf5VfZ6d5B$*+*(kA<Guky?jRAO+PD6efp1^Gr{-Q?;-a&7&np7@@+Z7pM9%
zJ8KzhHo;k>pQ(=b{Y?2PXC;TtAPOc^KG4_qb64QM`2nX752ITd-`{67L*%R$CzmQ4
zh$C&Vz3DX_%EJaCKcEam88T*haHL)SnO?~X;W<}e_TIVnAPOyo<|wA7TLRmJXc~-Y
z-sRX^>oo)}X$EeuP!^-j?LNsqMkk|W7$7sPZ0$NQ@{#WDn$00A!_ec_n&RT0wBr2u
zv&v{mPG08E*6QDS%s?%aLIW+@-1AWM!JjB|0{(-uDy3n9B74_*Ut6j4!iKMRw`O@t
zWa&#iW(b|OrfVPB9sT(v>PaNa<QSxojFzkhvozVa`6nifbJk5|5slBx8tI+zv6hjL
z?vL$+t^eU7?}`t*cg0vQ#Ff^Jhls9B@NDzLW%fNg6Y?^otuhsiZ}p7&UtWoGt(8~q
z8aqaKB~GodNCJw7r{;AFly2?#z=-w|a>GkrQeTU)J|-RyUB0vG8WNfC%Lw#>s#<3H
z7*F3`%n;Lw!X*MYWUxruFNAS$qi^ppxAdL_XmJZk6yop(-`2ryo(37=Vvv}Lule3~
z>;A?AL&S%N>1O$zc4#weB9OzvYxq`VJH$`<tilUvA>SOA_MR)WXWgQkTa4>M7Vq($
zR{pG>31|nSXNFM!1$ssz^y_*>oqtGE=Y>ncyG4o6<36>}Ue+F7pvF1u*o8`x^F}o`
zhxCe*tPfY|Cb?BTgSD)%y43sbR~%gd13>@bBrwG{R(qGN;xiTTqM8hNg#}76*ABNQ
zj{e8E`DD0#gF7T7OeYOax#VndAVljQEQ!Fk<k`uR+X{+vZM9#EIap=7PSdi-cm93<
zx?-9i@lAhF2j$lAlpfsdyYX&aA@blP%_;!}F5YY$Vy6q`k<KRBsF+ZkMtHh7B~r`@
zr`u=F*ZGosfk%;DU~b2h0FWIFRqY#RUo52~;_i151;zDC&cg=Zr4%!WOjP?ULo5Q$
zJI@H$|87|5z1}Ut&#0Dwm_Xpg&G$~O(tXGw$f!jbV5njB{r;`zjVE=kyk@4G5o}I5
z&0h1GPVwj<wiNqyO1k|ZWt9*RK7>+e0In#BbIAUUyR0|=gLINs&RCf(C5u0I_oZ)O
zzKI62i^@Ks0dl<{TwJV7p!g);x0E_S-EL+&Av9@j_GT~NE*bzF!{Ko8F@a_2_Ro|^
zLr`MOk%j{AggDmk_7vZs!<l3%@xkwYrXW0QZx$JX?5qHaUH_8L&+K_9iaL&tR?(!{
zS~I5GPrlAlNXaO6vgDc{Q|Ygc4U^s7_u(_#gT_a0pcIHa`MVXhUg4PXTj*>m!2p;y
zqAStFo#HX%W(zGKje*UiaxJ6UUiqxMyyPY@@aAm$^{2zDDhYDf-z}+z0<i*TFl(N$
zKr@nTVl033F+})aSX<eWK+d<4O02ozrJ4eVznnecV49Wxi8$#<x3AImFj-uwX?{2%
zdb>x*#Dbs|1BgdFKhQQhCbo6hH7rcuw$Vpyw;&f9R2st>qJ;@{Rrb>#0L!C`g*a&4
z?>0T7hXnQP3a+*iKRZ<?WzO9n^R6GHq?;8|N2rwXo%w+G)Szy(AUe@UCdOU~$^i0J
z&hF6)QDTwMh@EVI#v}OGX!Jy5eu?m%KzjZE!C%b2HkLpsa!^K-F+!bzxjMyr<e~`4
zCMAh|yf<wRdC9`t@B7W(3pS1rwb*aK5wNeH+-RM8vL<JVh9?>+lUuyZTm8B2T&vKb
zfb@txV2pl25zPRl=9PEN{>i$X+%8BhAEQIu9utmOy{>mRnWCmpjmu=$-ej#!ZT;ME
zO_^ZofDOQp?*G$z68;JKWMHOis+rbE-s88cf9CO;^;IWYY?@}$&X}O-{X(B1@={z0
zL4F?(c;FFhNO6x1I7Hl9$ZY966siGL&)hx1DtW29WPY&#xH+l4z-6=46MqGjE9Cxa
zE0(adng6)=YqAr?!b1X)tpZj)fOAK@mypKK%>}r(SwUHY53ch@3lJfCCk4{2Lg>2=
z-gl+12yJeUYBcBkX0HPkhIyh&B0NO7Ydqav3&bg7<a}a)x@AFMKW-0-beDwO23aK%
z(U`)o583@74el<$wOJC9EEK+N<nwl82X|QVKuJDf*614M_C5CAm)*StQj{uI3HqRZ
zG_JBoJfu5^)2hxzEd4sqUi6CsJt=GOYwaxFQOwuRBL>~w?FIfdj<)1TK1w_vh>R}k
zFZu*HQS@Qr97yK{f|beUrcbQ*DzSE@O}F^jB{CRqD!#V%R_iFZVti?(+>N%gaG%xG
ztmE+EnzClU8%a+_w3>(Cx4K{9{zh;aP+25mwJF{9#;f~DtZDI5kko+(WXi39N#}K#
z*{p^c`51VAr9_s`eQ;f1^A{2{kpynpJgM80CMPKpSNJ@tcNa_n(fg&PCg-Aji+Alt
zHWiG231mnq#`AA_w>}Zk3DZGX3U_LsAeBhqZ!$B<h5g`VYw8kGvPIWv)z<_lr6fd}
z9=;#R%JA4zd+KREwm3(skTmhNrPM<>5s=Qc)VV0I9%<GXe)mV&3yXB$plp;Lv<=xT
z<v?zg9$zKkjpz5YpD)%Mg~LcQntwjd?2NLfaRW(M<6Zn7kuaA`@=Z9bbQC55bZZe1
zE!Aiw>hlGkb+bK!!XV`if-oX?0FGKJ93}aPwGGq;c$Fp^Bd`^QmP|xeZs!o|@j)uU
zT2hw9+Ta?>@y-nE*EkhSEk>wWa6)9omE5ifBUJbzR%lPk1RCD3CXd$%;PxvQ0Zmf(
z>sHlN9pfCiH=7l&Sg*<=0DjnrHZB%J7Bv&XN8~%^j<jMZQ-+VU2%wL?vR<g*jYm-s
z&_~$U%OCJ{c~#dXi=q-W#Lcxm?9{9Eg<+JpRt&@hz~kf1WBaV3rS8!q*h+E}f{V1#
zb@pvpJ&)~4r|xUFC!I`1Ve?vyxfB1icAU$6z)S`9gw0@&*8gF3cuSv~iB5-lRR<Sf
z<)<~;mop!+70BEX(=IkM@*NM{U9<clK}-Pz)MLN-Iu2H0ok{j@qojNP+0%Pa5Etae
zMio$P_IhVTs9YHbFgsbM6tiCLogvy4+_(f`A?4O=n>WJBg{8HQn)4&983%OJvT9XH
ziQi!@am&|;N}?Ksg(z&k1u`;jhcyz+OZNHyaYwwg>@=Cc)pDEizD9xPFdt2~ryi%<
zl0l_{U#XGgz3KMxhjiCDyuzYCO0(V;t5K{d(X>e|Rxh`CHN(1)Y;K;NA;zBWE0Hr4
zP;Z>?j=xj{AH8BW4e*)pAWkZ+oZZ>q2i}0p>6qGF^biy_9*Cg7!CnTgH9m!wO}T%n
zoimzcbfI@d2O~)^*3S4^eIBHx3vWV|pz?F4uj6ul%d}gNA=|#?TRS)6V|G+rK4G}W
zmF=Q)0^O&g010Obr_57!6hhOGx=z~2t&i?;Cnl)MC<viO3;ikS=MdcRo_)F$OuK;-
zsT-y1A#1y(x7FmHRhPkpRdB$&0@kI#UqGt35Xgq1{Oe+CLm`i#Gf)#itYXqn>flXy
zOeI|=tRB-n34q#o^Ie(!8D=*-5q>DTyE3L@tU$yv(@Gg){r7}_-^of1vt9zrL|!iS
zu`CuZo3PUoJ0H2szDnM+8Ia*!i{`)xuxX9rX<B!ow}V$@w`e-3=%SMLKgU~mBD+UU
z3acgREd82bo<GFcJ$y>TEkLp`RgQGR33e03v;+|*ivR<WdoT&yG;L_|&FZ1!E+Y|!
zD6gT5*|WaK1vO3(Iw*{V0c?2E`!g_kOwDDn#7oPh;F_Cnf71IF?mmdAsH_A!W!jYk
z?cvZeL*aT^o<PB4nb3CvicE|9W8h)y-VYh0@`d-()Kb>vg|Do&E}xdq1Jp!H9z+a;
z3spbdX63;~Sxn9aK4wS?w+G%q-b|)H`*qcK*3ZxB$>9kU>%vpcwC?GkZo~{cG6*QP
zKni)DyvF`)xDq;2+%2#Dr)q2Ny3zhCT?t=nb^(T!Ic6IBoiSQhA_@(PsRZRQXgZwe
zS^0s&B2Q?lX%crHE~R+$z!cA#{aQlQD%LX5TNS|eqXNq(SVA-cg)~$u$tfY&FW$Yk
z=6T=y0k)@}UVJkMD`GT!<M26FSw7T5x}r)-u&G%hvC~ldB>Ded+qeE86Hk|A0^!dE
z@ObwTyP&hKcqZY2O8QPAoCGERnvbl-;7ub#+zsYPiya8M7@c?i<2%rXQX)BQ*vq7;
zH|ad}*o#Jv35S$_;}c)Md+`NA2)ZZ0i^0$7ArIdFgP!ykwNC3;K_SX7J)54grkv4Z
zD0fkY)ev*_&D!oS8{jHv6|DZxe8E+G2g->^3^ngXe-Z5jumPeukn)FZ?X5pC`y^x{
z#Dbn9Z0zhKo)nS9^3w)E^XJgEmWLhJ&VGVwW8rb(=jv6Zx$r@IFxPII0A)+@E=he-
zZ(({(_Wjr3^^;_NR{;%y_uZ9u<9&lrU7yYEA?uKobTKBqArOC|7JMT@1>`%_%L@I^
z?VJNx0Vf)x0e=M?{*%+}d&FtSS?4(dzh&P2!@BWP2uAFSrj{BGbK3*H%fR<%Uit-6
z47~JhtGkqVyM~BMxQ90TK3}Tb83GhRD%DrweXoAgH||otRd04{Rm`RD`MlpzrXp#$
zQY9yjE+8@%_`3g>4H5i4$#CFJ)tOeur9GtR5YxM+Oso{K=_j2R)AwKp5meN(tIu>r
zq3`Wy^)zJwP{5EJ!qPvzLv|`|N=Cgjh}1|fzU2uO9-ukJdLAoYd7?OyYRYrBZH=fM
zsk(s1Ph0H<0m;Ss+;3NGR{lUqEb`37g`gOlYt!~w-+iR3)Z!`<#S?|#iodOEr7i|(
zBso}q!E|P7DJR$mCia{RBO|kea(W10-kQK;POR{@e@GZ%o;n*t+O^&LDrGid#Q+Z~
z&-!(&{ZNV$9P`2yW$5lgyB$NE?r|(Ix)zGg&@Zh=m-eVdm=w~Ou(EPCFb=Z?^oDxi
zI5J5R%&xuu8C&9IU9_}1Yam=((CBesbxZOLyAW&fSXg#Gdt<%Fdr)l!hyzX_@&|o^
zEAMRe4%wvJo`KT^;wzJReUlOS1uB^ACvIucOJU%5jf~94Y}P^QN;Nz)BR8_|NW6}K
zDiItf4kV~@DIDtO+eSrv&_%#*StWm#fKkITD0qhQt4Q1-q9OaSAU<NYwD*)$dL)2r
z%7a(Q*B{<*-v}%MYm*NsBR<ZspLG6f*0mH-$~deTCMgZ_45fe4xr1HF6Oc&WM0O`%
za%yk;;C2`_DP)2;f+ni%URI2@#{S4Uk(r7m0OUSLn|N!y*_3SU_@#RS^Ol~gRYHr&
zRMtVl_iT(@@@W^zuNvLZsM!*U5F?+ubwt#bm+-LSd1X@tHoEc#>#4aq#a17QpAtv{
zKJc@%7YaVf3~tXR)xq`GGyLEGMlbKC7);?l0yt@5Y`ccrnK;}DV;r@qOx;(JIVs(x
zvNfv$RP0KC59D-_7a^+A9Ys-_lDZ0cC_T1#e-hHj&&uoT`SvpR<OqL<4De_|{*$NK
zH+-Vx4+6MQ`PSp??Jw(kszHPZK@kxC_eo#->8mxy0uZO1F0wAr;k=a|Z#=9*ifya?
zE(#91w(#apPO}c})<>yisZrBR<-GuKzHzag_6I^kd`biw@UvqoHw^J~B0j|SxSC0L
z?<p&QW+wb<AM&f-glD$|nF%_`Fz>E;94$N)BAq`8c(-4uf68H2Erq-?e%kvHZvoKv
zDxqNdVqIbbvS*c|xu)Oi&1%xC$C$xldkL2`mp$tJns-29I7>Ot6saRSuC20nQ~Szy
zGa0l<bw!Pj7DP084P1`sATNi*j@<0+d65dT0%3f5ezqmr?Z6Nb_Aa_ky($;`PqTM)
z=S~0mdh^H6_IrFdv?)`TU;>U$^u8^deGA2y3A^Pady_3BDT6QmwU52S!wcjb5>h~|
z)NfW?q@7LH@E`acb_5D7Iz3<c<|1E;R5^l`Bnk83Gk0!VJ7pI~U!4B12&OL!rw>`s
z$F3+*$`RxnbP%{P&|5+(qdvEGoWmvjyqKR2l}In@U4#*vSF^22$-El$VON1w2lAX>
z?Dy{G1CJJu8}n+&yKz!?sRqPrBC$oP^7vzwiGF!iXMHy4iLSqH@TZ<}Z|g&;8sVr*
za9K>xzAxG*2!#JX?Fdu+zCBh<2=ND0s#<}V{@ObC4EI)mVqjO|izdmG1JTEu>|$CR
zgBebb;gYfjKsIst%4)CcWtU#1q>h5w(6V}GwX+|(NLP<dRvQL~1a~)du>TZj;{+xk
zv52tB_tX?y!0}lHiT_bvWg^M_dS8`5_ePXzGN{af>#SS9<pYvXoWh-pWa-dvanqT$
z9`A48=oy+IR4H4AVkE+i@*MF%{}|<M|D&q(JT+7e-@0(3cjE;Rix!7+uvl&L<sOe<
zoGJlnh8mloXla9{TEZc?AmzByiG^ZIf_MeijT?2?1yvE*C&c376q!*))^9Jlh~|JW
z0U`km0o$4Kw&&zK(GS7+B|^()D3xZMBc?xqV-Q~dxX7$MO8m@LyoU_)5&wyfJjgJ6
zt4JO#akuEb_R<C14LWumOsa&IE;0$!klGNtNzV%O)peEjrGVoKN3W@+Zb+!htZcMD
zy^OP~aWwfVBGw?#m{DijC;3$zsl!Tm<b~H;Km6K5Dm-EC7@zS7K19e{HBp=QYver)
z4j>B;M}bL;!Y?)S@utl2o;3I$OD*%$6P3Q#lg*0r&1aAg-ttA$ud{E2{^SS>T(4R%
z;<|#AXc%;ATYD8=8w|E0qR`@BK^f7i+mw0U%YV~e-o-4YG~A&MidlY`<y&{W>akfU
zVsLV@6$Mh;gnqToO4Ap?ka2YJp|>5e`?XQlH;w=XyQ3_XRe^OZ=<e<L1-GYBPJ!G7
z2sJDOldrL?pngV+eyv-e6s+*&OI&x*=(-jU{zK>6qg+uSQ<5@gI4vYwQ!BZ1IL9l7
zc<!!u(=@{IoGKg#B%g2tP=AT0Uz}&#C3*u+de*3x>QJt**Gv0*re3O7ChC)OfEcJk
zsi}N5V$92`Fy%J^-XjZ_)zpjvD{Y9cpY3UoZZ>GT1ge@{OhL`?{<F>#a<3Fn)8n?k
z!9{OXcy3`Bf(DHU+SWSKQSqJ*r}FA_DLB!#ql#Sq@I33j8yH5l6k8N&B>Hud8FZOv
z;N#t7oOC7)gfR|%|FKw`7NCg;ClA9KGfyhC%>@a*hkk;Z@N`Qi8%rYe8F!WM*WEoO
zLr`=ubj3ZCfk;vFm48J=-_ltwNP@%sKXsU5?mwe0b%zOggEN9$=Sz<JGs>)1PMbk@
zuU4y{*0<+fq=!cp1Wgy^oiF6s-GJ!8*T6G`dW0k<V3Xm`kOcC<A_=<;@qN(+YL!ZW
zurY+LAR$lROe>nmjySc+f`$obF2W1%dy608^ZqePAeJ9|@PYU3N4bPKhUbcylmrs^
zex`D1$R7WQvKn{GNfcrF<XDMEdin~_mc_WdTVp^}PH-&89k#lzP!EjDY26*uawY`r
zqTSw}!y*JKFJJuIRI)1c$KjKrJ0xh|6`TvihY+ShV+0eAM75RHE2%~dV%MTJ7f<mO
zeE`RjqK4My69s~$hZ_6Ei{7p$x>+fqnP9R(h^Yb?Fkq1Hl{s!~4VSPSWFDU!<EyyZ
z)n;mu`SQ)ZV|?STWI13-sA1ut^RxH*mLAZ-a8mCzcln~_>|^T_{^Iobv#V;6-Q*S5
zl1@OIs>^)?fVyIJ#KcDsAm2nMKXRP?%j2!ANyW_42K$RX$}ZHe$999ci`)_g;P+4L
z5CDDfEP_lS74+u#_w3QD*<mqtc{Em!e9D|7mOoKPH8({QVE_(-peOCKlH#}`mOZ>s
zbd-ZXdhQSrBXrG45Z5+>o=w7851#KE-o;z^TEW&K5hk2JV<P%mGv@VJ$u|=?sNX|H
zC}MyF(=-#hDdvxUAm-q#l3vmxka*0h${2feN13~7t?us05+TFYmIdY#<-gs9_U_&K
ziG-~+cJ<pb`{l27<p1$Qv+x4@%rAPL&aVpy)0K<Qdr6<j1rt<eWH1tjc89*1$f(=A
zn^prZA%GZk{!kd`-NyRdWrW0USwTTZ*WTM*26_$;?Y;q#mRl>GN)hU`1X=v6Voi(&
zni9r}hD<yOuJKnF`-xL^(Xstn<jfBqd%oaLptPy)U(5t!%6{|^VQ_5<2^UI2U$Qwl
z#WSI~yI6lHTr`anc9&=tAC9zMSBzSU2+&f+jrIKZ_SYh&rQDLZlt{!;wSp}VC@$aF
z;ehv40$1=n$!QYab;(@s)*cF}0S;#)m93Q$MNk{})nw1_7pM)x85N`{zRH+|0Xqhx
zo3jRD;pvfQcZ2aI@b8QNj(T<t?2DMFg22He!W(t%CB9c~ix8(pv4BAe(^mqDTo$wI
z^$rpTEJ8~!L5z}qN(3+7)DE@ZP1CquF5f$gWNPWCWv1O~FMBOP5^Kkh@hT<^`of-R
z9y3Pog~t(gMU{ldOY%~xsa|duzs(OowkJ(jGMY&1eEMnotY>s^5@1&NdL^}ZaH83^
z-Cli{J1$Wpm}*P8G(Sr;i=MFqFY09+V&um+w7v+n;F_=O=O1x@OPoMHh1z-`qZiK5
znGq@l7mQ61;aaxDzG{cwn}?cERR)$H6@Fz@k4Z!EjnnPF`z1=jPq@82U}J91IK8c@
zuNWI>Sl1<)&ffr|396g4DNix`I|ZIT-xmf(bB85!{=gUhGyBB;V>p!!N_#A@?vCiC
z$I+Aywk&Y?n7EvheLd}6!+Nenx5Y_7U>27yJMJP~k69D5?Ezq|lC@x2;I5Jhj;5L6
zYh$vW_$N9R-KEWw6)`<BK(oTUk*Xn7VXc{*H7(|^dH(})1z}#77JF9D4nnv1d8HFW
zz4%R#A1k+ds|l@finMPA6niMkxBosJ$)XIqR@1*m4e`DI<Uhx#_=1w2O!xKRf^f!T
zyV{}5K~KkZw+}Tz%HgP5I2l0f+z0nr-7i%BD{<6vc%C^J=l$p)H%k}=6QWY;-#Kuz
zD||Ed9Oe0H3c-*s@x^|vqiUmxSL*JCzTO|}(Q`4WGG@^MfahL$k}q^yL~ph}OOA#)
zy?e}v9i1e%l7vK<I~}tV&AI1#Rt<u;xcIinGcn-NM?oTru;1USX1$6%6xNIqjbVa0
z2He`Io@dWjZ^3xdaH(3xtF4IwBTB4ms(YL+D)~%trP7sZapb#~!x>ZI+m-X+4%J{-
zQp=>6HIF>tdmgd)?~5kueqSNBI=jQ?NNgN6B;+5>@sai`JoWlqU-zf}e{M+847vY|
z_Py=irC3CW21Q{VTj+bmQSqq>ni@-Bg`U01H{~Q9*0?pyNywBc7PhqA&A!v{8gur?
z!LJ4Adg3l$Ixz|;057iVZwA*5YJYdI{mWXF9~@{k!J3BI$FCty6Hg6}ssv<brI_RM
ze0R3xbto<PW+A|bX8Ot`Tc>3J*mEfOwvg|hKzJ18d>$d^D&HF;p*?Uz&=Ion6_5ZV
z7)f*=`N+4dpGpLzoVaJPh}+u<gzh0mEIBtmgaDx&gs(dFC+ojrW&IDKioXMo**>ew
z`8`%@gpbIhm`I5fm2#lR$6nUCqsSO(pQ5_VOSaW^8jlj-jk>b=;%{6t(EItb5J{pG
zK4L)$pf?<vBE}mp_dQO6E;Nrj!p+tZwN45>PpkK}p#=?>M$&(eEf+mxPor-Iy=p|A
z5%mz$h@98=ezUp`*KbuXDz*X~9rRz^Xp+oUJ={L>S&y&9yk#3_N?D0yZyt=0Zh8_3
zpHLO55`IJ2kJ~S*h`I6%J_)BA(ObS#;)Xri*dL2+Bp)TVGfk~E-RQ($>@M#fm0;+7
zAGfhjCHf-TMpz@u5b9wStP}0Qv)yM91(uGB=C~`p>wZ(qUKYlft8Vbtp2XUT|3?F}
zbWXYbi|+rU>#*{!t|KcE4yF;6+n(tL#w4FctX*jy@%C{0l~|~TXo9#7N)$eI0&qRB
zmOUri%iR!?Xtm<-5nsA!pWFVlUP@xF=(~VZVbn0$Glu#8Lfz$vk}(WawM>!WB}Kkz
zi+O=`xuRZDW7wjqNPh>`OMM3o{%n6fBA65nG7x%sGb{OM;dA1w>oC)oW_iR+%2&iI
zbK>ouZ{NgjqCIa2kR?i!G{mPm)NB8Vs3O@8f(z@jFdTEGC;IhEx=O_~I;Z5Ma0tkk
zN-$Sn9CgRpnsY{!6Ur+>NhMr-#LB8A(V6la)Ar`*Dg8PRMDWpP_7iKwQvgU~6p%cl
zu5EK(Q$(AYT?eudR6MS;|9+P1+6Dn0Cj9};^68#=OL>Ltx4c4Ze?)sDacL4}5L79b
z+dF8220aN|cN1YCTw<Y;TKB*qYc5`GJ|2dT&(II6m`zO>UJ;2xw;kh|a%(r?)f0s0
z;_#q$kv?<nt(cC=tuv&1MhIOO;9Z2-b;sGCW8cdj!E~iPs>H0Ql7bygJwEczL8^!q
z0njfg^}O|h;hxtMd6F9tY;DP9&ih`SMSRvsY2)HHIvJm3SAL_kohjKi!ifnXqRC1m
z-*oG4Zx{N;9uV{j(D~BD(m1o)_w$2FAAGxOBXlaVv?+4}C-VOY1e$g2?4iG^=2{3i
z95xHk92~+vdDd%XsGdnCJZyI7x$W>|_P9NzS#V^sHb7?LII}e2%v9cJzxAN<2g&0X
zPf(o8ra|Xof-63?Za!BpyJtHbQ3ehc={I4wwQR2Lo|<8J5D{5Y{s%&TPy14mKiC_M
zgo5-gY7`{#Mpt{&AN(fWWH5oFdErm~WGC!m{sbW<Xf5<33@jw4=&L<enz$>4Nrjy_
zAb}$sK8Upp_<cMKeOugrjaULn=XmEFWDw<t@8*M)?4(iN{0KXekRm%vh98=?m}EV3
zy;B6c{+KapNO<-;qrE>i>V>RY;SDU`q#@p%8r>~1>J;b>2s0|%pC4ttwVYS}Pb!my
z46k`tuV|+mH!7h1uTO_qi?*rVJ{A^2PcBi+sph+Ar6>CZJ>WFV80fii83YJ_lGF+J
zmH4lak?;IyC644<C=-_5#Uh7YP?yS{o%)II?5lK|y7qVsgcp$z#2L6J-&*>Y&ga-`
z=7Iw2T;i_~hFX)t<O=MkC1XoCz4}$vNoaC@vrgJbTqIt?I+#Ob(ZVcwYl``8OOLWT
z<p8AE;Eu$=Veg8nJZD_iRiwJIM1Ka^;NkR~o(aDDP%!X2g|iZ{a^>h4Gx`?apyfSx
zO#*KV|1z_eYE+`{iRPS(0@Zn4mTx*)ie)EMDm*&o64G+Ty@7WZcbWcjTLH7+kV#)!
zC{Z9u&J29^O~>(oS#X7V>^Wu4ZuK8JDjuBkN&^Y+cARp$UWN%)@Kfr`DXl~kDGsFl
z(DKtTiWU|qwNxif4*a>c<EK;GZ-9HSJ1wnq#Eg9SGV9PT^?8L|GWho<kftS)4iv{!
z)BKWW{PVbF()sc#a5=FlB{^Z=LHpnw6(Xva)CmZyT!=Rp{_Oj>TDKHP6+|W-s*E}R
zOe^y<Y<=_+T8q>oMCzrLJ@GVtG4Gz(T{&vl^DK?G9A9pCAa4P&lcBzZnS#wKu1B_u
zQb@d_$>yV})@zbigvvqRXULNCH0=-TIPzy0Yw^0Zc2rN$es<-P?H471zm>O{H)?zv
z@MMV;QzUiMr`GrNt+Zl6MUarNAoB`-qgnoNbXHfwfnqQt(<%CH)xAvH<<>bwXZ3J5
zV4Dt35@qA9Ja5|>ZUIUaemV>#GO4fjR#IysPZ8b$Tmpmdoo{(Z@+mDgjj#c%Mj+Se
zTm7Z?a%uXDwuclbRYuVCl{e*G9TQR1%7lnNeBmAUAs+)D#o>eCAb;a>-*>O8s><P$
zf-koW=F17bv$D7o!7gXA#o@as%e#w6hbxv#l<E14Q1GQ>QQQJCqpW`T;{T89=8RF+
zx0h=amD~XRGT#2=2hq=EVC#d3DUm^75kY1l&NA8e#68Lp#5XNFcjfs$8~Z?bga{p>
zCbcyGzRowLjCm48M(1&((TFJ&r-H8bC2pRkSYDznAh0=qx-TLw;i6r8+C7CEV=_^4
z$|)DCOEmM17yEYY=5^uR8kg7M_tqG?c;n;Eu=c*QXdJ2LRtbGZ<dOWcOIu&%dpfM9
zhA3O&R3Uy2pOtb^iM3~T^qu=M8x(Gvh?_(m%r|$j|2SRAbFBDbq?s5JW2Sx8ezK({
zw>~}3dS^erZ%JUs1R>HSO~%ZW1reKX$LlSjbe!1Y^Kuc%B>#n4;sg_#9&yuZWnCE@
zxzIUCfNuu*W^_g!<9tYXqQRe`eYX+>v?{8<=e;GWEvSz+%t!^HG~PU$V|_c6+KGQ*
zipRr9R?G^V;6iKTbpUFolu~2mcZuR!cyM-L+Y<FS{QI|nR+?L81vct$UAaFeM5JAG
z4)aZS>y{OIj`Q3cq3h4K?*RT5Hr-;!6_k1J2DX^*he2SUh-PSVX4o^g=;@O1JRz_!
zW&3CN?sa2}MR-kkg^12?`*`2mp?a)DCvZY?d|R3uXLRvKu2RW`Gee~(VS6a{nJM-m
zHyTO1Hu~7|7+-<CPI7<3IhP`6Z=7h)Izpli!2zscj;J7iOAKu=7*0E?V=BgiT-+M#
z#i=ZFFW&Am6v_&HkdcM4D8Zu!qIhLBQdoU)AA5*jU!!MRopWSSN!HS*-&n&ZBK^ep
zb9qXu%8+x|`sOZpEYZ^@D1gu|d7D%lVMV^15Oc=G<ZXia#?ey$;WN?Joe%3t4rkG^
zNWXao#p+O2O9U5F8PC~!J3TkP!RnFnuGU)koT2?{G)fxIr<q?*v!e=_8SN7|X_{EE
ze6#PDeOL&h*2%eqq7kVwVO0dQa-?jH@1loMoP}jeg_3_<s8P0)Q%XYwI&2Q~thkbx
zD4?tGsZupf^MCizu2#mh5)jkEH48*fAU1Yf<WGg{Cy`6Cp(Jfns_{CGv#$UA-``-&
ziXnDczAiNlBSnarC*tkX$1oyD;<&cL?9Y&&vO_}iFenI+cpmXdf-B>!oq#5@=5DTp
z`SE+J?FfCI_90d5Z9`A$G`WjSgT4qj<FXRLm+`vyo425AVxr31L8oE@FHf?U|IGa9
zA!;6c$oJF_ss{dp)5{VPzZ5@i)TQ1*%Oi$j1WCtBre7WN+#_AP$<tjs{*tq!<6iGt
z%3_TnaeKBg-!1cPc%gqOYEB+(e`XmRrJQ1&i+w#`)6pDRW|-&67y7<@vA_IK?yI3$
zl$f^dm-q@^WfWIG*lrk8Wxl&F9w2{{o=}E90#ebLzN&k5Xbi=y>?Y^IJU85zb{B(8
z1Igbkfp39j=E`SFd}}xLFUR4T2W%^W`!qmW63tgl{%5`fswSR!6Lq8fJBdhHy4m!1
zY-K9YEvbfr7=|&4_^)|xdd#4^xE=Dt=Zbq6FcYl75oIxpR`n6oQP|(yP%{=k__mEA
z&!iS}`m@eUO9XmUU{{J2X#qcGf|QT;>mTTJnNPaDXTmUCFe%d6&@#7-^xyu9_Iww`
z4hHC|Xn=Jh+J?O!C>Yh{?Ju+oLUH3jG*5tsVE3@<{KR6jqN8)t*)&2p7LAKq61U=?
z!V&>s$_>>}jN%U?TVnO4m{qxsv!ew;Dz9wTEWp(y62+xU;+=aA$fbwb^g_}iL)g;N
zc>r(o@R-QjZqlO%Mk1$AFblvlhPS@9H*nQ8U9Wih<U2=+GF0E_CvYK{8!U~)%pYy;
zIsbx`JG03LA)TV8)Gvj;Vt|_a`b9kDqz>g7!UsfG(Q~aK%S3ZiZp@Z9y9(5v08B}@
zWMYhhrfbevA3La_<0+>At5;~`z?S)QLrtjUbVS2@<2f&|$=~_0&p}>;gH?r^snkSV
zg8*#6{z@}}2O^fN#v4u`je@1wek~UYiBFyqaT<+Szr2nM9ngF}6SBZ_muy~)ikRMk
zQJmMIIWG7HAWf;}%ZDRkm-8&pJ;c#46W2Q0pS(%(%J$tKG5iX>nn5y~K#c%(Wo~^m
z;wl&7V~koEwbW+TQ?gXbW#C4ZKORwcoBl}9Kxcz+DnCpl1ik(Ch}Gxom4aIIFJMFf
zQ!`K89uapDqY~qiz#?#kDFV+4LV4`kcp2ACnTTou3&YPzk=ecdJfRD@CL$ehG<0GY
zmIag)mhAJ0Zrj~iYl}Em4SwJ5k%*D27$vX)ujVyw2;<sq_7nHxe%J6$b*SOzaxI`+
z_L6_iBLC4|EyN7Wjgi6go{B0t{+Jdn2`udyoq|(xqlp*@EC@l_MoE^bc7ZC)g)@55
zDL}4dm%<VR^kibnWYh8X;N893_bCvx;)dDS%ZwKfE;NT`2R~2jP>{{pEh`1LqFjEE
zlMe^Ha8__Y-$+50gF0(UDLlddyeIbZ3Kt}f&1nL2ht?~^zAC?rttirQ5O+dzu~y_t
zJfFV*-PjBlR<0QADEa}R6M%Ac-P<ic$duwdfvrmhY|uQnHFm~%?hBwV-YNJ>JPAP6
zwXq*9(JLgAgEWW-0j88}URV>GP^sgT`OU6qnhT>mvMsi8oQ`oOCB$d$_%-&iS{=!#
zph#Kb(e38M4vOig2z(W&r{sJ3<+xSLhl0t<f6VWH#GW$R{Z%Q}kw863Ot1X$*s-My
zi(N(?rTYU^^c3@k&wt?r{Xs$N`oK|-S)Ysstl>s};?IMphrb)A?mMyN?ss#riRj2P
z&8(+m%dT=?KO5{<J~^2pnk2L5``F<%I*xM>9fon1f;6yCVxL^uSB@!13ss&A5}kQ9
z$5VMOCoz0_G2?JjN@Z>$OK67Fc&4t@tE2>I#0+LbGn#ZWAloy1sb0xxs`ig!+Q22j
zW{>;c)Ak}A&mx9aS$d9u2vS{1Sj2NmUCWD_DFc+?9}O2Lcydl>7%>GpbO;nWaUs%e
zG}W{})jn-7(8~h#Qz1yPJc?A$!RE5xBffkqVLkhsNusv||0MjqVZOiknm#g`4_r9z
zK`DpETan|>f2WT~RZ@@0K%u@71o~yZ9&f2o&BD1;rDMC!^;Nv&3R(&hYRYG-{qw~|
zzVDw=VGHOs_Rv!o`YshQiv?U$4mP+Mw#@gFNMray88l43PG01g1ifPny(5~%spQWO
zN$&S4i+roOl}(yJe@^0yMd$hYtPMZBMj=hio<+Wu?kw;!gv4uZHaGfi-$W%Qj(W@;
zVO4~-IqA9kB6{{x#*$sv0E#Xhl*vKa5wUh5gJCumMmqKjf-yD_>v8tQo~VV&tFmfm
z3OW#gm#p>85mEX2EGg%Knvz7KT)EnXR7y12<@nj;^lQZSxU)T9<g#g!*)O<(+)nYl
z>GoN~;k`V>#i~FJa@_(%ZK;Mg{+U*%xA+k&r`>QBy#CUWR^DSeh!+9%pjmPv%K!@|
zHkoX$nryxQs$Lx@Az{7&-p!SCvue7P`-aY7Byfu^0MuD8M69aS*N?7in2QsJHYI%U
zOQ%~NxfQ=bZB;2ajty?(As}v3OhcjF;{{ej%KgEm7mzB6);%`Nih7^l@Zq@JIT19?
zmTun?uD<>(&w)|;yfKyavlRhNOIeq_YklFOVj~AD>68T^GTPdq*F1GI^--dcGzhLS
zCpF2O_PeKcn~tA>wj?Yo31vO$El=tViK4ZkbIoj;%lDe&PWQ#%Hb5wtBLWjH7n91E
z&?4VU8zG)FAaa|Pf^VDRtGGw?yOANdvIG$T-#yzmf1M6eDFv>z{Pc{F@7hbliXcY4
zoQR4t-&t3Nhw8BBK@?d!)z`3oKs>9I51d_vKpABR0}s3uC%PACsx>v(?Zp%)k_aZD
zRKzNIZt3Q8pZ~OXI$d{uI{~*Ma303VqO|~AbK_-!>K{9w5UHrJ#ps!(r0#Qq!SFPL
z<D66O5m?yp58bdih*;9CVND?BN<qXDm2q4dF!JI8BuAD;-R6`hoY7s{rCikUf2?Dv
z0?nHh$aq5fUr8`Ki%k&@Pvbkd)q%5PvgeY}!ihY#wN0`)d|u2GXLa0F3>v$LP=Wsx
zjxrc{Sab0(XOyFuQ-HPOFw+K&5>yjluPsi~Rf^ZnwQRJu5Z*M2w~;*avNLM6UP6<U
zy5<@YDLgbK2@}3uuJb}{r!W$!z#?Y2$^ut8p5t<zTRj3fDq3hh4%22Z?Ucij4)Oiz
z&WLU;Kh3F}DG2KF&=j*M)0xx0<qAPbNpr+-MCP<la_rhp{hw^VYtm?zlT;UAK5^fe
zMH$Y*icZDT+Lduv4)83P*cB!>J;4lG8GJRuCvbbjRwQi;v}=ikF5DI9`CZ$uT+q7W
z&{6!?6ukJy;J?zpHr!6apH&HVq|^(hntOlo-*iCx+lncmO|vlp1k9;vqcd*2m;l<3
zp={<%VGX2V;F(Ex(${noBEih0UJFzNWE^1KLzf4l-s*h%fVQ{tWHOEs1H$$M2=25=
z!NN&V1)~su`1Z7>eB4+J=bfho?;90akV{7!7o#FOD|w13C=O1lk9;asRB7?s2=;tD
z@Mq6l7yLUacpY4YNJn{-$t=n-c?bMwKM*ZrlHZ_}0;7rwP0a!SU+Z;vLa47lKdut4
zT5gIbjW@|Z`A6PQbAkjk%nHeUG&}2q`IXU<JOUSjtQ$aKD>YQ#f`|v2_u^Ep5v&8&
zK|HhgFLIu7M*I-f9|kOk8sj>F4rON466eLzsHZq(6Huy2JVM6;im+F&;sgGt0Nmy*
zQXK?xD*!J1bju^bBlG=Faej!bVS!fE&LKogXc%|*w&3akfv1qFqw8lkHG*a=xfp4Q
z#;FfZ2=&k6*RGAhd{OGL$7#GE(NND)j(4PB)sLZhXyu&QoHXp3G?V<YllP;)U_3Ir
ztO~Un)F}}sBd4Sr|D518y&{DW={{B}bjZ(V6gfX!+vzWtKqs{}(Nir97RsIi3cabs
zc|W=Hx1E%Vv+GdaBxx5@Fu@Es(>eWAxg=652Zw!aiAcH>({F9W`pgzd2R8)oPW##|
zSno;?h3<mAAWtQ0dhm{jA5PKRi6qUHMA#&Ok{@+z#PJ{Lu&D3wP=+}@arZ~;`aHpd
z)ijZIDrJI`0=gtcBU!<pe~R?Lt49Jo3-y862tU7MNHC&ZlnfVy(76bkbEqh0F}Dm3
zesCfe=pIQ>QXu>!()ZfwL2DmR0XUSPu>fACN!j$z*}<kibeOQSzEa?3_oW5z`&(a0
zU)aVtGIrxCYvQOyrQZ%d<23Wh=wN!AC=cfSn5ODR5tmx;lam%aE>(y1cTH9Gm9rb-
zW{2wdcG8SQh1hjk@L(jfQ;Z6NlMEH71~(S!P&VLvBx6f|nk4CvedmZ^@=*6?YKOq>
zMgUVMPozL+o-#?V6*62ajTGf)QVR2MX7JlHxRfT|k^0JWP_?wN@;5ob&zUvjV+jJG
zDUd2b^fJv{nHzjo))Mp&SxQ|8Fh8Y}NY_K*MdQV-<6DOYrybVy$z}ru?Vr!ME<G40
z>rM@+e6I8jz`SEFzaP<CCyDhq2X~<KDPavS%5(2e7p0o8GHyL~`?(Rpg?l46!^4W}
zsOF#nga*p!7*FDRqMxJu!G7oG8)8D}B>9!|QR(5noVz4*W}$QL%IFZvZ$8xzbhQ#?
zm?Mdqo3zOJ;~<x$!#T1FPYUItSXaxYIkAuH_&5s3FlQLXzT6UW(jJTsu>hF8kU1;@
zW{_wOHaa=mqs8-(D`6GRU}XuO2Z<=9?+t7i+4Z^Dwh|Z1tF5RZH;bT|^k7af_S(Q_
zRT3H#_^+|J7wXCX$WI<)BK~sb|EII0yB%$P?jJh~3pgAF1Hc|~bdmyB-`3@X3-BV4
zUx>_v5X1~jG>u7~zZRkhiK9$_M&yTZ2JpEPP4iWriTyDFuukxSXz)wz64K3^#V#S!
zlN=J)O4rh}*#~<5xt}z4c^HlO01iiX)7T0;<WxU^Oxu5S21Lck2U4`ws0v1fq_L1a
z_~dPY+>9=VHl3W8A;t*tEdW8qK09ZhGxy!d+nCPS2B}?;XzhxddYu><Eo)JXEroz6
zj2~y#?+>gw*tt(;mTCR?iK&xJ;X&u2htONVL6v?{0$pDYmy+EWSLk&8v{Q%8;7R6%
z(b2ILp!N88(!b5~D*{XVciny0$=flYG8(xc9e?gA3Utiycj5TKgJ(DTb1I=~C<uOK
z9(%!QcQM;Lnt9<j2}7-ejGStw{}d?O-1(Lb|Lz}3X5{#m{-Kl6gvQlY?JGep(Z2n@
zz{-O$(t$}~ut=FJn@d<jFk#<n<9If<+jeCK(FZcHb0Oh$fLO?*h;d$7*{=81V6@2Z
zP;<zeoTWcYHN67Pg4^Y1sF&vRD|~4)`p6ni5D;4t2ZixD#vbTgVRw<`Dni*61xY((
zd{yMMeXrA_o7>C!W(km?>&h`7Ob#~mX(ywqs)2qd(6#2(x?XQ=ZmXL?(+R9E08KA<
z^gi5pC1Iu13@-_0J*>B70KnV;NS&$v(|PU-?U3E-B$<$y6?T$Hxl3y&%af+rqsB(a
z7Zf1Wuy;9?X7iE2^(S`G!B9yfilZ49pJh5sbynxOqb22>Nb;%*<BQBkUk46v?JPG#
z;Guut34%HP5>U1;aoRS8A6Y}7Vy@Z&Kn<Mh{P>stdQ7NXEin)j=Q(HX)iI?2j+5vD
zX5<{_@Kk*S>02&YnBGgAYfE&j5Ywu*KJ3^uJAZW!20F>4M0*!M5nq+)+?T2M7FU3o
z&3@CA%b0HSoHhqLi&i>DftD-O_eq1CUe4QZcWeVLE0@UUWe#D(4&Ny3ZDp+U;ESR|
zM{%}`n`&yBY3st`nOXjV8@fe_L?Kh1z_NHZO;VZv+-tkJ4z0=t26{XcY^rO26dZRB
z^AVSVS^0(YWn8yD;{X^#Z?EuAs;p|HG+00^wl8!3eoK2_jSMw6AXCKb@eOhQxJB<T
zhTY@XRNse*y3!f`v<~xG(rrzM(+s%MDcaQ1YO7p!)_jofBz~(m(yhX!Ve{Kf&T|jx
zZH3_EV{HOS2W<d6c$2d`ljdH<&~I~TS<BYE66;*jtoKX5S?S=^a;0yIbMkb3dY1SC
zn(&R4FL651!HW-cJ9)I++U7E6{hRs_IjgSY+cefV#j)Mx=2nJe_Fe6)epDYYwy&Hb
z7VXm&&g6Ubw=7rqU}Vy$?8>3eC2JVZC!ZcdaQEW+8-wY?`G|a6+M>G-wR>&sq#vbz
z(UCYn@j7wg+VRe_zv@%-LvxYqC2ma8JU7a@!<{J&)4(3BZ}7{Mp)vn>XX$(Ti?LyT
zkeQNUUhnH%cD9aE12Bu^4nH~(cnrMa?upJwxA&RiALELocv=i2^Vb+B`_u5tK}OC-
zq~PZp?Of@;IlmUm+CQnbw)B|oxir#QQ>(urDTP>wcDF1T>KtC?4pw~2tfYC|t5ckL
z>ltGSTq5K2wCqFKZNWQ6YXdj;9nvI@d=%K2x%fP%-wIuMNw_TM^jxvj8P6=)pNSMO
zL4BEc%*cr}qZc_lKkIe@%3U_V|F}#M>-fj%B)=i*?`Qf-YaL`LOX_#Y4*hGg@n0Vt
zK9PP8Q(Q*Ko5O@l*#Um&=wj!7Z`Z#M0nk3h6tQ<RYv;PchU*BM(?>Wvd&_k>_&K;r
zFi=$%neDTk``34o(>AG0)&*}toilWKSGf_dKANL>e5#Xqybd6D5uK8$1sLskr~Gea
z8d>$t*t(p7+on02kLZxvVc|FIpXt=Sp`++sF2k9Byz`=^L+&DvVHr5laKk(EoDVN|
zAHfD{<3Hoec6z#FF0;||y6<$S(dBO$RpnY$$kbPjc4mFoMK(`bvDUGH5XP6z;mjWL
zfdw$T`aP)Ox#`8GaF#PWrK_G-F+BZ6R77Hgik4DOz^dg~x1Hg<cCwxTG*9TVWfwCO
z#+c9oCnZO(;V_X8a7kg>LT81e!=oj~C=>DW{Q~EvfjTq^DL+>Ti{^e+&X~<gX<7Vs
zF0gzRO!wQngY7nRYd#TOq<jnMC7clKwn~Q;V9ihbLIOa#6b~MD;@k9)pMdU10o80B
zMcqyKMt?yR8&#?GlU`^W{OK0Gkl93d8xI%>4hS>Z`^N8_CEN8HPDR3DVO}%fpwl-`
z-@txB0sf47@{6wd#VKp+zPGHBy%HNj1nia#`h@(lxs?sF2kvM}SG`s1KU{gxseSP2
z{dy~mIfSpM%w#0wo7;~#Z=9(2=EB10#fbONU7Oc7Ib90>xs`dz1?IGKod0C9m6@gp
ztrucIyUR|>G*ykx?tB(F6Zs`RL&C7v&Ub1?>X5i$*wSX)ZKd3uWh&=7CyvoeV?(o*
z9mXe1ABT6&a*j*sc2pcu<}C4TlM53aTkcFbt*gXVvWY+d!-Mp)f&)(IC_|GVY66fU
zQxreO{C!d|W`qtGSAZlGJ{kq51P90HXht<lKsyu=5C#Po%+fJ((pkE7J%jaE=-)X2
zQz6Pl4>>OoJYl*HGFhB_eA)m{u<#)rBE1C8E4Q)2Tgr8e?tiV4r{bL8k~Z#Ws79Es
zF@JOjzO%C9(T^<QD@A1Qt8wmIpdVOBFjcwlk0w~0<-VGvbId;S+2VtPQ#%UBKxr*)
zc0aC&2J}0w3KkFRB#WV%3htft-r%JJ^w*PUcmv)*xhYC2Hdl8GK7Dg|N@CHrEV8+)
zU$EyAy^ssR*GlfnrLn=~(K<8+l2g<{W14?=PR!In-97EcP?VfwF6k1yX^oE4qk+bA
z$`ZbB8yx?*4vu3`4n1`~`ix=jN>kema)!i95TJ3v;FgYZx-#)**4Fi<bjrQ*+X3e|
z1ECUG6MfvDjVpyJD5vRMC8IMM!D3>*Tc<jIk76X>y^WnYdKL$6bVdwOT9<yw_*%8?
z=$0K$MS+fDa8sC2(eeY=)o*5RaQ-^12S;`AW5nFPXIg#<5!9jcir)0{N@q=xJ`ROT
z@|X}vvbmqU>0DmojzfFG>2JMRx<$%VaedBic`JJ7uTH_$`a)3}-JEi;OT<-m>qR<_
zdkm>73{?82Vme2@qvK*~xA=9;b<eiEP}PZ|vU$R(GSHy2wmWl&g{O#+M3%Jq(P`ML
zkI06nm9;#%>)2rPCps*#Nno$Y>v_s~td5~fb4DH55jusiRQ};S=ec7#wfb}D#f1pY
zPRTOIO?B=RPJpPu#*^(29(MY4(>X|KoXZ%bLt#QGg9r@a+Wv5>O!MO+=h<wX$H>}d
zMOmU<qfUcuF5`f^3&Bo3I8C1ki^Fsw+91iJatt26TYp~A)BwcJ90|*ZHOViJ4~A)?
z7(q@4RB4q4A$EA#S$)9$bR0GaB6+bf=ice;p6R}V8S37Yx`+DvkDO^qT*+iNOW<g;
zS=a2r8RpvuoK1hI=+n&3W<*q>DJ`KBq^<{FUk$PqkN)yjXPEnFcP7FwnaKXNEz$tD
zYWdNL(@ycB44sLJe-b~i1D|soShk!Vak|Wrq)v$Rjx2W!0XfIT|2q7IL*<LyNTp-T
zZr^pE^X9A`q7k7*Hmm7(c5<-(tqw9oaRurZ^JzFaxbi0*%59oSy%g(9@7acj-Md7v
z=r5m{7yPk@j%A?DlVbq4#yNZSa2-<&yGoP;6I~E|Vut%T0bAk)p0k2achr%I>_kZ|
z-$jgka4#Lo#E`2h(-kkK$#28r;FcfTyGID$fm9W%M?52OqFH}=@SzdP8$|kK!Yf7Q
zK5(^DdZv!L3B)ZbMs{kJdFVptnF75=epd<a-C6By8?6IVP*uvq3zeOmWs>GQi^{oD
zOs<q93AShs#fzK^`a?D(J@Ywk??4kQakkv4k0~gtCQGG6QX#VO_~g!WD%R=+-0yYb
zMj>bDXhY)p3!JHPpokGEZA$u)Y(cj==XqDbL2F@}57#+m((0I(HkHrC!wX#B9Or@;
zR3AR(r%19ZoSXK#(-wELo<#5E&eq=g>r68ABx$hTWF|~BCoXjoM(TK8Qz?i)(9%P5
zos&K8t(E0`vS`?%o1Hq}`DK)jtK^|{q=KbhR`1;Wk^6O_I{!HF)n+FbnsXOBGwyc3
zs<~85O?kox^PPHm0)iYvPmZozx|*GmZ5oQ4JKT+QzeS&(oiYxDDaX|R<7-;Nq~^$F
zPS;bqi-;wIMb5iKS#r~h%;7R8n561U>nW2k0bHucyfV|-IY*z@Qfix-RAiE}olP(5
zXNYlC8rMKx1FGZF+nw{Bqr+u!5Gx;;R%o7o(OI!rAEQ4&1~g#LVm9YGga50#4UPkt
zPz_Ne7WKy0oQ-0%!Z`Y}!J@#OFv<BnLx<o~B*?egY1ye`%#w2*bGlxHDTiq(CDWLx
zPSy||Cia6M+*sv|yGsAgt|B?Zn1PMX$6|kF8rRbC7ih*-c5<%Co$Dm6(o17%(NZfh
zvdOV3F(&mU=lIL?LN3j0#c5BnmsCPcoa5ZQS}&+@3BO{%`Odo!>S&niSSt2>g4ubA
zbHnBC?Go&iM?bm1SzH)?bTg~-`)p_NSpF_{U0oV=&P*O>&YbK#eETua4DbF?nUab5
z+)yz$Bzk1n=-aW#nI1mKq2_8$dy?}#>mp~eJ1lC8l7#6s)A=i2A1~+~q$l!mgRgUj
zx?k-oQtD4RtKP}L=4AO?8W;VLd-;ruU8`1MeQR3OmEC=uA1?miX&0OBWzNEoUcf?f
z`;w<+o3Ac#?CZj#0vN&Os6KT53}<4Jj<=Zpt+ZgCE_1FK%r(;YKsQ4pRxz?*xD(5I
zwRStgGeJ5KGyUQ#=bS!zVPsPsD9q-qz3RvkTaA>>YP{Db>04)9rP`+=Y?{jA>ZDb3
zne<8$14ts?w3#nmfAsm>Lda`Rqp*i_FL17}=qj()Iyg=WJrel|U6cYZ=wU1ZLItV=
zXVxFQC`pGz0IFXsa!K&h)AVz4#ShKz&OOE1$x<CP>UHIf$zSYj{+v5WFjUiBEwE)D
zI~R^dq!lB7XXARo!D_xA>MWOyloAvz=;tJcb%l~lr~G9up-xuQmP-BeroP;HqDt@2
zlZL#a2MnrncHY|h2ykR^HyJY{#`)ECH08_6V>pEkvcZ#`HTUY25#J4AuW?pFmiWwG
zgc<TJ<Z>fkTLigZH63FL&Ua#d(DzJ|90tj}eG!Z5RUHZ+*cS4Bd7%?mpv)34z&vLb
zh7`}0E^@O_^Vy`Vgbb6o%sJr`_k!wS?iWs5<ShGMpDDL93D}S}x$l|dY<}FG9~%;?
zEY*kLR_VIk9mV}8d$Mhrv;AFlARcw;re~W&D}uKK+lyb3c7JH674%_XrLpfJw3Tau
z&fV>VE{-|{;8-75I8O~za#43v8PZaG9XScP=C3tQ*@~|J^#7way?@Zz@u+t4Dk`h4
zET^Td>AlHW98!vv`o40=7$}C$!AEa)y)2;y@$l9$_*nbkS{x%x0{skvZiw4M{Rl`}
zfLmVU%s%Ko1NBHy!^CHgF*GPar>8nvTum8mDu7~K;T-x|Z_Y$NlO@?y>r}p?BNN3c
zpQ%MHDDmPk;dNORdusNC$>Z6%&iFPhpIjFbb!ShP;LGjZA>2B1L?^oH8)w#J{jIXm
zIKH(?&tL;C!P=_XCNF-XnbPE()>eN<H9v+KTDvi0b~^{%^P5#c-YF+g?7O-Ok`~d{
zDHp%qX>&-QTm&jKbHAs-x%)VMifWAL7s4t|eZ=XAmz>FuY(mC}-XC+Gb1rTv9jenb
zc6fH}XU_H+dLK;<2pP9{OLsiv+;ygoPY5-TZA7{#DKAV;eD6F0nujSNq)zz2xu-&h
zING>@%i<~|25-)O-`TfJ#}PMip{99pD9NJu=O9epdBjO>r@RC5<tKWXwM1*s>-!#Y
zmbcaG|N5~x<q_xlll011tm}He>y*o%<GlNpdchP{0bd|s)PDpX`MI-j4q?P$hr9Ws
z-kETR%M7ZTtF_$CM2&EY%ezTmI@ecJRMrgpZgH%pgWQm6E*=&5<%zZj$7?UX(b8KM
zR|P?_Wbr0Cxq*@ma#3>Zu`^0*=h7pY`~itV{Wii*qPm$YQiMi#5J_8Nfp+b%?sj?}
z#=Ad;oF`JDi0fiKkB`2-BiKI)%ti8+;d<QL;bi+=DcvUUC5dO1ZfP&|0^eD;{;gFZ
zk{k;6AD3i*^^#UcNRc%PEEzZE<lUb2&5FX3Mbf5(Kk0RyYzB|;+}*6$R_S8oYL6)(
zd6`gMS5IBP?q8D;BF9>onH-yIPmaDPOTl<~%uEIz{m#l?7p^OixsC!$xYh+D14QXQ
z3ODfCN`XApB;Xkn$ew(vZ~qBY)KlpV^pL>xR!z71yZEztWP}rW50Qch=xLh$jK!i+
z%2-Q}43QDA0HWJ&JD=Y@+isyuf~$%lXUvElzK{2EKR#l&2L{W`y7_kcE)dA;B>51U
z#%h7Gnf;Y-_jcWpLXHr(<&Uzr(oTyAswQ%{g;qEjsiC0wV!Cg~EXrU=KL}A1NF}zc
zmasvHgd<l=>NtV!cysYD_CfH~3FwTI`Uw&@(@4fNcYW=9@(JCNu{0~xZ;%Yl3%>FE
z`eu(Wh@kPcXL>R^>jsgWfuffnezZqYJ<~7jzAIy#V2w(O1c^~+@A3coYWxs^I-yEN
zdSJ1Hv7dWhTHnJ>X0Hb<w3<|QNt!<C6#pd`b)5GIb(m9dj-sr>E{LBK{#?*Ku)TNZ
zQC->}&7uZK!}OUS`$1Ij?Ka0`QA@(rh`Evc@8y3Cv$L(kLfeXOuR(%@zpc}<b#;qD
zZWLbh@?X|gx7@_dlc72ltCO7kmg1%}|F)us=ua@P*&~+JZ2i@`N-A79P&g3bJ?UNS
zUVkdJNwIK4gXX2Oc_&8MpPlBu4;?*J>*DsBdxqKf_Ub9!y(Bgi?%qXKAsH~=zT`hV
zLVLiIyGO;|Y>@%L`I0sCS*ibmM?1AU*k0<0pa9YVCB@XtEU>FOX>r#-i_y*4ZuXy2
zhb|@cSh`fZ$Qh8shbcx~KM5SN+kq^5tc#C%Ol7zEKEf{eo2iqDCrFM`bVU3I+)(I8
zp)jxPZExwvYl+}Du`CKuOLUb@ziGb}eGSCsf?1)smg|d012$|-{8!fgg)9~QsgcLB
zno0Nj+5vsRn~pX~q==si#V`M`9{Qa*P{c2lq=G{`B-^^DJwt@#rKrU%UpFbseJ@3L
zhLYsQE*?|QNd%Kf_b)jyT{mfmK{+L@cru;dvC2z&Ccq=}r3ORGOM%>z0*21{QBQSO
zxCH%pf0$92c6VAULi%NzD1u{+Jnt|z+wV78{TsCE4v!<rKvL`2`5y0*5-n51Ef0JS
z-`{Vab?P|X6j&}ah@>L38FlPA+ruvC){?^Ga)VPg+xy)DdhKk%0p&Qut5)o{XMUpZ
zVt#Ch@Pf4z#@@z$q#9fzRsK<|7&DV1Ve|b4-$y<5*{I?I`GW-NXRj7O9;GDI0-T|4
zufOwp+4s%Ua#x`5rCl?H6J(bDIl{Nu=Mgrfpe0l)lVKZkQsnJp`8-{Am@E!OZ6X50
z8JlKB_f^i43uBoNM^dKOJi@w2dW*<w1s_y+6p2Yvt^Q@UoxfaPoIwm#l9gFN+JG!v
z)1zQC&3n{kmtR|l#$ZN|g8)cJ8+UVLK^|#iRZSAeLe(4zJwN$S(0@u~!ASCm8*9nL
zkRMDKKUhqQ6TkKSNTSHN+D6odSq-4Ul8&872QYJMiM4H2?2mjOZXsG9&a6B~>e{98
zReYk!Eww({5Gy~ODis0bDki3pMEdwO);s6M-pUPdUCG==#X#XrPb3TEvK7JON}_J%
zOGk!?cA|U9rNNRG|Ki->(0Ngk`bf$TdI|~7q{dDPu1)0r1bNm}iXh1TBbl?HKDe=8
zcvuu_QWIJFL=$sPa9V(8q?kfd%t&|>9{}BlN$JiDo-&1BKnGHdB#2Y|`#(*=v@CrN
z{m^(Pn8Zou$MWE`0a1CG;7(IESXo|1gIkG~b0%2FwH{|;5m(8$Y=#NZs2n=@w9fhc
z^eB-y)U*jbU-GPd{Ixv<3*=};t$DQ3^V&mt;)Ea8&^*taG2FhAgR47V6N2DV#@bE4
zagx)+g0dA2dvT^WpB^Zz3H%Qx&5zseu}*HJR||QUW%H23QkeoI77gNR{gbw~lPYXI
zkpJ7&Px0NPZX0i{Ac{k3=KJ2Bs)cAQE!CLtQj}2W5ahFX(`&80W3axS<Q1X}F5yNF
zw6CC*A?qDJwo-!#oIMpcyX<bIoI4jV3L^?oE#xnNtO8?sS1<d3oCCg+ym^>U1LuSt
z7W5_PJL_}1;}I8xPFrCyzeMxP08bi-=iw!tK!g`I2_vJP*Y7#5ug+XJnS%Vl(G{44
zGhMaLzN8Q6Z={`u>gUrFkMG`xs86Low)rF!JEONMffLyhd=b>PCnyBmD>?Qru0Df8
z%VS3ZOcVlb1aIc|p7XXU@?|UZB8<|16#LS2^!j#0vsiR-=erdN=(#1{l04P>IL9S?
z=1e}g1*X?nyR5#h#`%9-rEn3h|JY~Na2Ku*KWVjS^5C8bOqF?Wm&bXFO(4A9D#T<$
zu4M6SvOc*@S&q`ev0%^9hdiHvKg%v?)Z3Nfb6&K614)2oZiU!{;cWK~JD`-CSxZX~
zG=!al?MXu+T+m<<e9T5AsQTWx`u7#qsRw%8f~u5X_A?gG3DcsNrnn%^@b<90r-O?$
zGXj5NBtVUj2CWF`koJuC)bFTUhoz$GVcIo<gF`t~vayy%{9*%kL&goHR7n^VlBpsl
z1%sjfOt75RoMzp58|~6Wr<cNK5hLu_pWVG<qk2x|n<zn;|FggglA$I@?CZ945{jon
z8-^&x+?A{Br}waRAXYVosGcROlq|&|Ct4#vgu-a?OPx4JoZcLCr8eE3wg$~m$%p5G
zRBjIC%O6|P1d&_EP)R4s)Zh=T`@yki-r%QP?^|WjUly~#?U9PkOS&IZzjKQ3a0gzT
zATOrm79#>~iUjzim;ETc(>P<{);Xki;Jh*Bw<o<XW$OjliQ?8!gnPfYTaJoWDM;tQ
z2_c{pU_xL<2oiZhx+G$p(%Fu^lsS=WU54=k3NxAF*v6cfhflTz@Adz<#7|)^H+QhN
zG;^I?xlnbj6jYl_j9rYb#ZO$Qcsyw>67@chEm%Ix9$*s!yA;+clzH7QZ`67fl5U+i
zYO&-L$D5iZo?q#l%nwjH74Mt$cwM2$b>8Hq?4s!3_q`we%~GvA&jJDp8%@HdK>B|$
zgqg8-|3D*==3Xi0z7(rZB3B_S6|xysbbbH{0mxm7hZkBqe$|V@LjHlC&JBEZk6P<x
z*Xlvx74}D;DEU9?hf_pd>@&qK0p*5ibIfY}E#jT+KjTYphYG$FBLiU_7VbdNAU2zd
ztRr9wFu4qj2v#ylarF0h^4`&?G$;@dF0Lj$mWk2{S)tBygu;pmb@+&%*#BDp0qcN^
ztvE+terah(6hZ6+WT1vuGna^5Z^l7xRQP;|wcqb{&e)!k1SxaVM1l0dq}!N_E1lGh
zZLKAAk*88CR9Q}{1R@!9DU+0GP25ECD$TeA&j<rWOqW4(tm->;lvqNQo6JYiW4sxf
zVfp^c1+fZ5trIazxmALRKM)bzO%6I4!67LiO%zO@x7K^S=jq*Uq*DSCxER7^(j<bK
z$onGBzbj!b?0gEYR}><`qiq6{z8dH%TrCh<A^#baB4D+X=$w*b>e8)z@Y-8-GL9?d
z{hW<l*Zl+XH=5gqgPvs%stufhVy(8KU~gz@>Z%^TM8Hv)?pTCGi>*LO4eNhrci*I!
zT<{K&6r?ptw*o@EOaJulcp*YS<gzOH@KU)}um@SK7~+u4u&S8#I3d^&Iiz|SjgTXC
zPOZK5Zb(CvNY{qtJ9|d%d#rWLm2+kA-I<~>L;gJ?zkCj|p+ukj5JZ7YgupNM!P#AX
zFMOq!<Y{D2Rik*<`oYNxVd<w*5efr}@O}E*{{g-!z$4K&#r*bI2R)Rqxsa&Jqw>9t
zkqWFhfo$lI0x0w-@~!Bh-LoOOCaR;vYjWusz9T(7U!#l^>>*UZNbIXoeLxj~UAWL3
zVCZo0pPX(NzrYqr**KO0y1v|7HQDV%3TvT}T!V1)H%ja$pVG5R(y7~F2e`f|)@os&
z=yyP#@n-36(xH<zb}x6rZFN8M<(Vw5$Ji6z&;yo5qi~78g`FTDwXrPv5-^8cj7ZIl
zHoe=}y+(7hfUXccV$sxu;PFi-+K&T3rB?`uix2GypZyd_9@wSycv8WCU#0K(-ilKg
z9zi`~yI-vE?Fi~H84G1i^Qf{);uv)g`Np`zuHju&31gE>0H}m~5dn{2y}?Ow?n(N2
zs_EJ2IWMOB1_*l;LKJ?lpd#$gv<!RsZ3<VRDc*4QG?2QWxRb3@zu*&F6ik1Z4}#Ig
z)#Dzu?>*E*Uc%w7tDwqNOvQF*c=n#8jn(tff-1;);_Y%_|76ds<Ml!|vJP(rl#w`?
z%y3$<-_=c3GH}L>DLUPL&6TQ0l@~L2w`Vvklc~4DytQrwT@JPhyAzA3kqwgO0&J6%
zBGflg5CGcoSi9{9EIv-2N|s(78G-NZRW3iB&?Mb8)wt^Zf&Iz>ZUoo?rx@WByg+!A
z&vM%|wLqnakIl^c+nNoKj?2VR&QJ$|5lDl<naJn7@2^y0D=^e8X5qRG-iUSTWI$+(
z%vKd(#wp(Kp5={z5Q@(Uhzs-+{9uR?-+s@8)jdv!i)4YGBfuJKPm08QEMLkws%@mD
z5^Z(3bLIj&?O;zSUnHT9WJdU$zgJ+VXP`hzh@KVVcqAwk=JmY;&ENWV<!A8FMv50^
zQM4rZKEr>HUG-q6OD}4->x>CxV!HK3d<_J<WM1Hvy7r4Ubr9?<oh2kiQJc29jH`>?
zc|k{Y#1P&R9~8B@lo+gfz<*rt&d;rBmj+wPt(`^T1#QEmbR~U$v^ZnM%>ZW=kWyML
zQRuaIiNE27cDJljAM8J`0s-*Hh5lb|ldI)?Wid$xWErO>(jX+s1iy+}awg^8;%AYH
z1JQ<3DPdR`;n|UvSk9yYj7JM9Z3*enFN!*-1QY#n%)#&a<z*-UWXZWW)`Yjc{+)CA
z^N}0*S<Y{b1Ph3G(Co)Af+4%tV|mdVp$^PqiRV>m6Hh<>j~^EI+LIRZD0{Vu6E9*5
zH%J^EM$Ke^RtNb0eI=ely8f=fwn4r}Isf=^$TLT)r1&l^J}wEYqQ+MPuR8y@h}tR_
zQ>b~{^lG3os26dHpkkxGaWNr2PO4`PJR5kgk6u(A!T>fGAD7A;?|we;g?k}G`ne}l
z;TsoECD$#l1ioe-2x);iWIx2FiNlgGSHB%Nkx9ThB*V6<;!Bo1o+(g|_WkOBzeqnz
z*d;1G0wfE-ANRxKsT+&CGthk?ci>!TlBRE50&g--a8*vdIZ)SIFVRLvIj4YL#L>dm
zY*`gJi(es_RCoG@4+9B>7FQJ9?FuaBSA1etNE{CwamjWUSS!80?Xkeb41MZ^T{B_n
zEF;f^K)zZVxN#U4!0rYciA*i}(xt?uP{!?lGcc{c{v@o7N`V}6L|vc#pTN%3^hcNn
zFcFTnOrAp8_X67zeO-9&Scq*dxt@3>zzIk(zi)N=wvE|UFcx*brU4$LsV=D$uqT-7
zYXYyd?NkS<9tAn5oLW37!YswSaBm>9v`g|!3euMkE{&MKu$Tn6Y=TL<IWYH3x!NC+
z&KIXNzTPs>W2jnBHCxv?{m#?s$Z<_|@G$Z{D3zk8<6`Hoa~OwH0Kr3u2OXPfayC;;
z-&>r=?unAe(Ry7N9FBk#^X|>gsdJ+Q6lN6q4zEuI6(P->JS&j(eW#*=cH)69M8PUA
z6*N=4;&hV*XuQCGC#}r4QhO-=#8%{t<aprm;zwEg-%&l!Eq9U_L`X0USjCgiv{&@f
zYZB^buch@dkmH=ni|nS)wBAs>2c*BF>JFwJld8oP0(ma>T4ku-O%F(lr!?)rhKQXv
zaV3$3rHV%VScxp2Suo1eus~ljvTukJMikDiwjVsjGF$XQmVgZKwLlvtm}j!Aq0hS$
zM*6c}I{Iox%cz_BqK<ZH3pORox^Nx0ONnebX?h{Q7R_;hC_6R1lCAokTunmx<i(VY
z3UK==nfCbK2FX_(t)oeb=fWM2MI2ngM<kd@ZtgQYEWym{;n|z4Ga3tgX>APxQWt6R
z5<5p02}~6!wRfYJTuCx}7uknC)hlDTUtnmU_5@S@wbj$bq!2Hge-czC`fwuf6DBgx
zQ@f9!fX5k9#a>Bbuz9@D(`FGbPa&QICVX?aWQ2lR+;u_EhFcU(Ag4((&Uuso&%d<H
zGi;=Ov?R0=X(nfvV%h}r>^0uMYW2IpU1<o-!sM219c&^Via2zK&bL?#Rs2Umb)aN(
z$1v+@7t(;ROXaM}l2-I2ZMgl{kJkLT`o2O*iY@_wA5lZsRdd<3-gPy+5QkT#_$sBZ
z%f|hlvFo`zl>}u93jwC6z!gK`AGM{)CaPD&q7U4alZ;1p5f{VCIBTw$B+__A6V$*0
zPBy;>JzZ{$7cu6#>}WH~k)X;OhJVgI{xhrE{g9#g!*3H8mhfjyZ6zSv*;Adhxo(WM
za$Y#%yls;6*&-ba$C9h&?}1EnQnQWk3TMIEu2OH9<pM(BkE(;!;Egf|O9Q^k1?f&=
z@HkvcY6*VVn~8&`nBqgu-t}$}zNIj6V(JvrrPf*2)Kw%uIeMh-7a??Tq{NE{Zj8@A
z<eE;K_Gz8b_@+HG%StpEYsO7Z$CWy{@L(Pl<L+RVxPk=s1(1g{Od^xBI?($w-#>;$
z91XuCaQx^098TwSTyk?@*lu4I>`2Z&RsxmPP-+5f^p^hyc0S`1F*{-R%x3hKBtK5s
zoJ)IkNsrkm>NaI>a5|ODXqJBF|K5qcM$D#i90(%%xs;Q@k`kW=%))}9!H7lbo-G6e
zpL#|y9{L2FYp!Nc^azQ*6aJnlpckai-RFFo8rdH)G*$5YD)1#i7qcF9y1W|Im0uEO
z45yqYB_z`#^udU>F5d~~!Gene7aZf6d^r>&);A%MazPkM1<ud>a;;}zkP1)atZ-N@
zkD!SaTr1mp<Gn;#iwy8Go7EUYdCq22tAXP~n>co1s$kqCg$kk^pko}ZcPBZEZ;z^C
zQAZ&UYv#+x3+_^=w{!KtXb)T@v%YB_2LKX9fB`O*7F^<wlG;xcu$nT`%j4#-341X5
zU)<|Neim8FO~quH(W^FYHfU%l5b+|?XMF2V-4ZWXb8BbMCI>}YI;5eJ@Yzl6oEzJ6
zdXOrpT9rquD2`c_T?Hc{K2YDOZ>1!b^GyT1x<JR5yIk@<wK~~UCb$Xg6ox0Kn*)yo
z`cLV&_(WPQxJCH%3&48CU;$pc?WCRpP&>9<_%vNEQKLMyf%zL0nih1gF}1TnwZ-9(
z&Vs*iN8s+F&ewNpyQ{DOynM-%0$qTm|Gd&aKB>d92RcZde*ud?#)%a8OAE&zE)2Z#
z8H!-4$=wZi$8|{THZfI*@ykWMK2L!d|Dg#c#`_U^t|q9Lu$yN#qa&0{V-!Dc>$J4j
z@RXQa5eZXkwfF~;m)?;>N`vc0X=tIS@*Fe=oRo8kF|b6*l<_+?!N=mbnu0IuipF5>
z0u6i=lLmOsEGPpC*i}TlhS5YAHJUNS^3-aW-y4E=hIEwt7}C*8O*+nT^YV?scc$v&
zri!ru#VDSxiERjebso1T!5p=w2@gu5`FL)y`YavI;O43ZLL?yintd~a=TFk%{IVuA
zaR}U;dv@@@XD~)Zck9@-X9u^tW4X0ulFEc`sq?*x01NY-NJvLNRboEiHhg<SaF{#i
zu}!7!8mP~0^~#_#OMgNACf@<7OxLx+mnZ9@Wl)cfm=nDxE)*<0O+QXTH$)_WK0%Rh
z3dSwe(ahR1?qxWI^IKaJ{Psfq2mrUGV;{NbSVOo4N`s3lxR7r8QgciOFCL%4X3eZ%
zgam+E!a{Ks*ocrs5<B~GL$CwaAT@q5l?O@HJZtjfO~J1&0Ac`tJ2*(#7-Ws0TP6lK
z*xXILmTEl_>}<|p@(IlRWx;_L=uF2-RoeUz@|#|6N#@1+VE?6Dp!X5^Ph~Y^uTwis
zyORVnbYk${c04UrQgab>Bm%-u>+7gb1?c&MqTnl|^@nthB>@(Eu_O~1AAGD6Kf#|y
zS=C&TTnQ%enqc;s3}UYdy=c4&dJY9|E@L#=jI9%TkzS1{X6$vr8I}6ZY&aQk8r%+W
zdxH65T=2U>y#N;JIYRuh>9l_}<HrRDI!uHvM8b>afPv6ZMZN{t39ygTW(2R0B?0+K
z(%uA8LSQ}6?nYc1To}*qgsiHX3H}IN2yyBj^Mk<xeG|Dn(!IR_Ky&B|PCI>4@P%Gn
zN;IQLuB4_=c*MWxi$tEX*%A(r%TN?#lD;w+65<nmN0T1GwT{Q5zkF2iPsZ8KsdFXD
zV92jYFpK90vr6@Qa)cYBVpKzeygl#i;OaCULqrGaE+uwK+nYpl)-}O|MLJBdgi88a
zv~sTCoQ%3Y*j?yQbPQrxvhsuv&HqQ(d4NY%ZGU?!DxCy{Nk}G>bIuG+45SwYA&n%Y
z07>W~ObSUznV143c8Z9oTon{W1OY`w5$sqf3MvYU*8-@ZC`eZn#fIMRUHc>u#Q*bo
zpUVSh&)H{}wbx$tw>n(qzPdm^9wxYe9I+U+Y=C=(97inPlm#VBf}$tUsAFICcNb1@
z_JQk<l-ya^RD^o}ZtK0tPR)r<v6^-JD<}gV5ffpc?%#K_=k=bhLN)_i;y&;Lg%$tr
zZEO21S0Mw>EUPU6&P()#Sat9{Yu6Hf8;{kYwh>KQnsAIzS2jj1`OJFb3*DG?64)}N
zQ_fGnoz`Dp(h;M?l39(w31l1}`1S?sn{oQbX$_~fxdeeV^dsx)J^HIT4aafA>$67A
zkLL|nAp+o7Z-p05zOM!Z5DwbI_gD=M{p%!O5p{9_j1)Yu1SCn+uX*qAP6Q|)a-I;B
z)C+f68<KQCskM#bTqY)w{llcLR@`m9)lN5IzLIQ^Vt(-lp8+XSeKW_p%Wgd9`w`9G
zM?d|nrt&bIVe=LGRjaIwMQ3`eZ4|$!{t_EG?rv+8a-9RbgULbT?)2f*;>cZOy>>Se
z3A=H)#z&eJek3drKRB(Wot^RgBnj&|M|u)Qf5C5XSGXr$qCs@B$Ul_}20G$}&6l~0
zf<o3o%9-`GrC=?>C-5+!^MI3qW#cP%(P6hV;}I?JHVRr<6xx{T^P+pm-|ltL*U%cW
zwy^qufTISayFDeIbp#ag6$0L(1oa?JExp?P_l@Q{`pfiH0>;L8%fqU?VOVk5(pU=M
z^6rT+cj<)ibAP1UkQ#rz!hNhhd^6NBvZ0pDvfTPc(6+H3hR4PjoY{VVSqmR>ZKfA^
zJ#h)#$B|J6CvM$e)~Gxh;#3Y$BADwVK^TcuoxieP>7{?4R|fm5I?V4A3=YNR7rSRv
zx&qN+$#wYJT=<v%`xwZn#&+Q25Z&{&Ik`)yC{Bd+7M0dd;`H%4-D0ZhxDM<hV0_3R
z<a0=m7^1Ek;U1PBGDCAo1Xt0xv%;_%00eNcdwPje)PGx(u^kbheQ|gE?lIrHvg3ob
zZ6zZarjH6=2q#0jWn&`L>i?Oi`}+4V+KAaH`&5MphoXEMm}e#@d+x|$vsn(HlJrdu
zHvn4zo0;n6erKsuMxTlM3x+}%XLvLfmeqYD+~ey)MA}c6ECSJ4<G6cZr?Ez6cE`P+
zXnZXUbCd87(_0i0{K9(c(On&Y-a<4&2oRZv4!LZg$4G=?^4PGoNhk@*-6UeFsnl9x
zN0PiV#T~y46e)?ZL#8(DOc*UjL|`X?&txp{tPe3ZFby(&IBf!d6dNtV)J2(|XCDcX
zmLaFA%1_~d0y88g%7EjKO7~p3R5yVHQ^_pkR*Q=;xPeX%^h|p(BpH@~FbtuK`%+9$
zVkl*>Z0)f3&CxT1li^@uFXGOr@=>t{m{slsv4{&qlJQ?NY%!QvxK8jM)%YgWsjNJ<
zeCji9>cxqzh6Io1ByVc1voO~^Z2tV3-y4s$(IKT02`&z1h%p{jx?q{{V`JOt$sHv2
zAeA}>a4+sLHcLGh?MRw=sR+o;+Cl_k?M+#Z#95KH{S?QW*VYQLX>nt$%rk}!?zDF$
zaeR`3$iirA7nHqyj4?d3xh0nXU|4l*IP%k#<BhUhX~<5dIxWJq<Wwayy&wML-f~HB
z_Ar7fb>1eB@tirr_{nri9?5mO*ykR1Rd9BeNH+!A0>PW3M#iZDH@jbS1!rdhC+0<w
zwy8QVCsutu(p?)DoIQfb5%RZ^>no|3Tdpz_xhRGmb?^K*C_6h!*+ECi-XdtBK_w-^
zDxV(cF7{{5;Wm=7hBri|q@vW^Jl);#O1<XDG38?E5~r>}a6?uT-!yl8<7e$?BRnOi
zxE%X|PawC{1-q;_yM_NBl!uiU==z5}J1#ZWf$=%A!P{6>1}hV|Or*OW9XvlDFxMe>
zjYI`4BNPs|XB*GekD7a70K`O8HI&=HULbzOsXa%mMG2vMnO_=5m*vBP5rs1JRS)+i
zD~-K!`AQaV9UKdfEe4{}KdkpY4Bg9xnnH}b1Rfx0g{z1!NiH-5-4CLZY%*jjXiM#V
z)mpi&%_X;VkS0tnSX^jHfb$($W&NVscD%Mj1%#9*#~E&n$yCjKz`Ag3i0FRyQ-O$0
zP&f9pHeL~O9zq}rmzp)n+-u|KW9dsRB2T}l$$EromkTqu(5!ny+xsv(q$5`e=KwMZ
zYj8=ZnfjsMFGJg$fccTpQd~(@IO?i0NI-@q?qSW8P~mS_wrnzv0G=pDz4M~E$Lqgn
zWor>dws7?Il_d^|XajG_Q+If}CTU#?ASe;YPU#j50dw#4EYES>z?n;|MB5>rz5g@D
zCkKs5oUI%$H@`6y44bD@jQ_sMGfbUCcqC3Kn*stD(8Nl8H_jNi#pnYGV7q}cCIDxv
zetyBa<_m2Z&8sd($LHvvAx5en9<)kV@m#E;rGno81T|w{Yn30wRx0(~H9sr{b}b<S
zhWp`KYuR4s|3P;EIz>0po$wHF(k1;9J(?50WtI6ue6zV%!q6q-1*uX@w?t9LsP${i
zT?=$+7GBi=o6XrqsBe6E-Xinoh0X2fcMyHHgA%zaIh%yOloGJc&CGpL{YmK8SN9aR
zNG7QYc+Ajw!o~Z(?~p6vWUuUDTF%qQH4k=iFwy;0clZJqB$xqgo)~KLIFYTExQC|)
zXA|58a6-9Op3)_#aLu*u#BssdBe_C|$d)UhRHddzsBOwK=#QWlQczwh#9W%|?q3_6
zorY7p!b<{lh04$2wusJfFPRZ63?zxDL>+&Kxnf_sd*Fq^Z>E9V1W%Uwt_ZH2uI_Uz
zwKe3;6f8PZr~+;zia|FL(j#?p?uw8%#g~JOUaJ9jBSnJByVH9AP{^ASTZ0J;R5I!)
z;D(A)0S{Y;ehkrPQ_|9GaEb&h;jt?GW$Ti++bq4M!wEJ?5H%!soq#XQCW96@zOEwn
zk?5cr2vcq<tctqq*0ci0i!(ySXp`q_Y{VRdxlHPAttqlLypPoela;=mszgwuOcZRR
z%T3m_cn-C$aaWI>hd0=tTA#Ie3vcikQKg>zC(aPkL%f=Hoi*om-I86;H^ed&70&_s
za<cXPYW*DCA(#>#yGT{hU>(`)tU!VlCtF$>4leQkml;{WC!ulTrU~abUs+{soU8{S
z!Eq%5ZgBoM<XCB=5~Dsg)*3ZOe=M=85u>^UfJ>DN`7Vw%_1yK=fH#~KFxC_wGAkhk
z5|JgvhY>HZxTugRmf!6m@&lab2<nW4*+r;^Syq<@J(6sgjdTYTg?g~oDtL?TBxnV1
zP;ny>vKnR$dG^-HR!4t&0zFXM$>7HD$|X~+N>;q-4ZfY`EucDw%nSc?xLPsE`tT>a
z9f?AWTL9JZ{Pc}h@Rv>RaY1ung}vjrE|_W!-AV(NBVmLE^=R@4kD}>BeQ#D5>Jiwx
zi`hzEgTg@GtGAAP<@}wCfC9Czx<lU$+5msy>cFSP)qxGvVDDbI)zg1N$OgVYvRK3B
z#U(@<MB6wwd%n6q<Say+cvWqPHf<Z-FU4E6XOiOR2CDwAZ9M88?X=82#pR?uMA0zb
zNVV~1&o6yoyqtHGj*8O#1V)Ljj(8PG(t>C3C|)BfuK`dwVwcbrL|S`boaa=G9#>X9
zC?|q?i9m*aziWl(ws(0$te6GV*TkqEX-GWzY|qd8^Z-(;Y5{%}4^^aC$}X7U`7_?N
zf&Ca+R*49Mt(THs27>6v$({$kLF{AyfD{xdv=SLLj_%@Ak7&>4-*tC+Eu6411`M}_
z>8(Xmlz}1mUz=iSq9*Tcp3o@044INbuD=DIzs%Kdg6GnHA<Nj{B-@aI9u=*sR(Y;T
zcMfI$xNy8v2#s3*r8&36l0*#ZL6lWd0T^>>f|?#{j`Ve!av4B?U^rHRs5e#MzQdK@
z<$>E<hlxi`z^dd57V%t6)@sO2#)cO<6wPYe$T=Tc>t*`3oHMeoyW<@_8le>M#e2AK
zjOiuDktAOMObyD4PcUF+-x}^QZ-rn<;zu*vxQ%Wa|4;K_BI>wbu>Po42hEoUN_hxz
zgxE3H6oPLCz2S<9RMAG)gSJN~S8~YZ^1@RYt@<44a_fl*c`sKxFykaJ`s=W+6W8m9
z7}+5`aKK0wBO9y^TBfrTUw64hu(FX+$U1DovO{o+Q}^`i+T&y0lI|<ugxDV$@Ld<b
zAMD?g?}9HBe?6#|Yuj|~wt|~iqF2DR@z&NuV@UBb-p35*WS2h`jufEy<mPbGO3-G*
zP-kwczsTt%iIKjK&nbcI1pFOg=HNYTPLS_~l%w%W4D#`6kmxv~9N&OR=B71%J3naM
z2T=p4GHQaM=41DaUT1B8K}!#rSPVroibbRC^00O65u^k#8p%efM3m&1VPY0^%0J(*
zrf<PABR+J1uYjZlIa&ojZ?&Dr8xry?+8}686?j}RYvO~r{~3NSwiEF{2>kieuUI#}
z>&zZP6+oP7`UcKPgA!)Wb5{%wmZVNZ<th!?s*?TOlSiU4<SJV<I15#&C~FL!<4Y%v
zC!Xwhe{B09NrX?;H-r_{;{hnd*d|2^-)^+Fj|Blz$ZX)}o_Qmk;_1%vP6NzQl0Sj&
zj!?6=TkC%bSq=2$C{Cw$Doig-9HKu|xo>*Pm7R?vv4Ri-5gn8AU=492-49-hNFZ^-
z#ge~XtTM;&i9PK-(Wiq%gBXk%SRjcq3C8I1i~F+of<(<E?M-~z8ciZ6mmBNR8Sa`T
z!P)s}7=#d^AmAsj17TkcOQbdRwEKm%LD@s3J`NHIa!O7rlHKdO-6Q&Hy&{=_fht?)
zAsU6FykdcQ@;WU_X*wvYk@DTbrQ?*V$n5pBkbuO8BvBh)r?Zk?1qWaKxwY_xU=ei@
z&!_`pr#(wuYCPg$*0Trw-tubn?!0OrK>32_8VM76<#p?_JKF;DOfeE{DqMoN*$5ai
zU=Mf1y6ZM@a^oeMtQg%!PBk_i12!|&>3()qh)BJu#Nr`<s+6I|@0*PNu&5N|AYFJ2
z-#nOAP!XC3!${0<UH`s+f96Qc7V-_YGM1~BXr|uTu2~2C`}3PL>YL+WM}Fbi11Iz|
z{7#Ys&NZu64t5d9-Jj1UHcEsXNkCUU?cbmI^P`bEu<Bs3YwZhXej>_svQJW-(6-OM
zfPjXip{t@vj=H$5#3OxUw(F-YbSF`Z$WbEDos{fAsihMyAOCGLJ!5^LumHn}2uI<O
z(k@@W%S)iuR~Xq6x+m#}_A5(AxbAz$KN;By`AADLQtLQU9lgOkUWy$+(^CP#!{R}Y
zQJ-FFt#8j`jKq@YL#S8<{DC+*E}%`Hnd38Pv&Uw~QcJ)sM7DTS=*!;+N^glJW$342
z2!KcnRLG=X37U)YxB9o{T>;OeM`kV-0G*mPx2?77${^u6x%TOR)G#TXAvJkPr>DyA
zp^=8a&6M6aNs;&@P`2t17#?N@>Ja~74lLjs5(>&x3y}l`!Z}6_`r4fRc932JK91Be
zjql5yj-TM;Tg=`Q&P?jeg3GS4p$K9kBVu60TvfUwbl30pB&)E~^I0?(ynY?6F+J#k
zNGonF_?8sNqO!W`(93+Qm2OC_E%g2<ODRetI`jUk&DFb^f&^y~Ta1HEzL$u>hQ$Ui
z7ivn1GzT2!Czv@g(r}^H@<B{hm~=0E%k1`Kuw*1>R{5st1ot7~sVa1$l`=^?#<5=G
zK|oBSpDpF)JNNn>{}4=lVwA}@77if5?Xk-5H?y{LTY%e#B;ug0@EvW0&@kJwT|e%(
zP)j82Rwu?lOt@qdRR3~UVZH|Ol5vawKn?3)O&;whx4cwC5G*MIjJOo9>ug^1d&dtR
z)0vpb0DMB^ND<Ns@B2K^yzsDY&Ch||)--Sh$||!W<1R5<pYFJ5rG7Dws4>E0<Sh()
zpSL%2Ps&>oIF==`g=O5|l2jBHj$V_u*8HTm4uwh-e`OS2k1!Ec$3AHejwSX>PCdD{
zgeI{`h_}%+WBbdPXg=RsHxDCPg%zL*d6;0CAFVTA>p}zM2lj_#Xu{_SC&P;7cZ2!V
z<v{}4n}V082H&WFx2L~gu5$Q)`b2BF1d=7$4%sF$HcV2zejn>z{fg_{+ku*+;5fJg
zpZ@1_IBn}H_rz7M{@j(q2!@be(L|Ejkfi2Bob2Zp!px$Y9psW-1K!q1SMNtPkN78l
zkvQZ98Lky@KnO!B%wS<A9|z6?NBN)E<z54~OW=bQg*v~ltitu+D|~@lSMt<Pk`G<$
zx_Bi|gxg^(le~K!Z2e)GEBFgODq4!vG-MnP7P(&kK#zlQ6>7&kZkAXzZ%Fg=e~wS8
zg(VJm4cz)~qbK?d2gDFp@OIrQ5hm0rlnf?bL&$>%e)67X?Xq4{W?P>r(kOg2$6@gB
z>G=Ijk4sX*e97sMDrdYb5Y%gKaP?cQR|TU42Tc?{)o-k8{;Gc)3W{L3Flxn6&{Q?g
zt%UFq>zF}ynyY@j|C5Y18MHsClfW32f2VG}J^lr7g<)KpzGldQ;vud@KK}xwG7Qo}
zl`5;y)vb{q;xXeUB+@~tsX49*y?G@0D-t^K4R@znl;#>R>|aMGr~b=KSJaMwZIuLs
zP1&x|@9I)uf&s3r;6U!jseKn1p+`FO_O%t$Dg_SYVv;k9FBeXE{{mxvlmxFXWBYTk
z0gA6RN+NCRZuflC;jH#W`d5Vdev!xHMk5kG$r<}~JU4fg>gn|WL9SISV7$aeA_p9`
zBU%Ly_FSACvM+J08dmC~0Nymxgd~FZzyC2hl(&n%wY|P35Dq1BmE$PENbMrbD^>`y
z_<5#1{5a~aN#;py+7lbIq(w6)U9*KUWbta;P>27GkqcREYSa@mS}lK|)KLUR?O*J=
z?)mo8Hr8A1Bl(BtQtxcj<E}fOY`>5_OBEFx<}ADfruOpw&=&$aNIY;FtLi0*C9yBp
zG2RJ6$H@wbQ(-4vVZ|L<uvOw#5v=_yU1j5_LV^LM5Xqw&0SF$%Dj%(LwHm7%@<DGZ
ztE<?D#)o$sscDL<XawI1CpvAK7jB1<4528cvn%mMJp_sO#&k=b71wX18uX3JdmBCR
z6a0E2Z{WRv$91$qU%ZJ)5)mz2WpX`HP+~P_EOAe}K&fmoST=(9Csnx~AF0RGbTx=%
zqUZ48=$4Nq7b!v2SGlg^*BsEM+y&MF5=ef^_27FQWyWwe%oJFxBt`Gj9AiVAURrn%
zsX@df@J)IT7#(_|BV&QB5)(y0E#?k*>|K*wA1&9T=l5Lf;^x3A3sEe8$Yor@aHMQ4
zd&CtY>BiCO-DxgwTgDT~rpj6uiuMyP<qH#jbOr37FHBD`2#~Jys&d803n$3RWmOY|
zN~Vz}ierOWQ;V<6^=t#f!pd4djUYiIjmkNPVTz3?G-A)X^J3S&#E$w0-fHd;sXRk;
zCM%HsMu@L~6(GM=68xwYizspE8P^5B6H!iZjkwy$zhedB@uNknRo{g!zP;T--W2{u
z>dIm61HrYTrXZzH7~6_JT^n9)C-ka+(R^dTD8-y40nDPr<-h3a^+o%I@Cbfo=K$Jc
zM+uCFh~c9PkFh{vVX49SQ{O0oB}hL@3tXvNHN_!m+hisZb)mPqzCv>TNu`7nv~?xM
zv+UR+WwwRbyKpU0wweQuWn1~paRFQ^G{s7i2#s5jeW#{lnJXGHK`@uGYrqMTseQG_
zr9>e_cf&5%1D*blc1S@5?sAQxol#4PbiFdU$4MDrT@cW`t`6IInN$dgwJqcjap95d
z{Kvr1QC(Q>a~i@CH*ZV|Rh`dk;INfk75Z@?L~?#nStj>sr7Hq5Iag>Re@hEZ@=lJI
z716VfVN%qIxXyJEFF<lb%D}ymb58<1BHvY`T?g|SG3HU00|SDuVxK^6P<}{xAF!7g
z*%5(~-~tp>Ci(0_SGTV8b%vfK=QwnY>%d9oVfWJ{L{K@Er6FTnYytPVR16=Avt?=Q
z{!pD1r<F_OnON8V()A&2IdIB-sLQKeo8&-nkbR9nrV@@rNKv@DbfN25WT$`WPI%M0
z7}weiP4Pe_;ItI+9P?eg+V;F_-4zU-a7GE5ukcdhjvE0C8ocR?UAtDZ;ODim=_8i9
zM$>k7y~FjYHZdsfxgquYG;fKLGDTCjgbpv}*O(maOtR)y-1-q}dXAy4;ydT(IO7k!
z-WyullL5BiR<gQ-(~MbH>eU?%$2g2eBg-n0b+<q0@_GJcMnqbwmlnD{-JnV6pW|r3
z0hw>U=&k$YF5**d7rQ=qMK8nIyC^(9L9JTiYJJWU#K1@r)O$WxuVL&D(nftTVVoE_
z#FpG;qN{h~xsS<@P{9*ix7d%VPYfKb=471PrmKtCAt>J(>$>ocf0+{gfis(gKf4BY
zU|%6IaN&q0t`wygj-FwSa)B8cjT{0p?Wyy_ioP<<wKY%o+hS&nwP|K8r-1!R?V8|9
zhU4;BPDUac{9!T*u&)Vcjl;SNolS7<k(yrrBpC^?e`Jws5O;b@lELP7=1vpYS5SQ<
zWeSs}<hbLgSGN{~ZXx8i#arZogsX{@UAGO_vpaK%i6y(~5@Q?ArUj88h;8?xiJ@2a
z)+0Mt+K>#$@I@}a=h)%6ri;mD2DsbQ=Ao`ZFay>q>tuCtBillblLXi#Frb08uFo06
z*`e_mZjf5zdhDFX=trzx)6qC*Q5o^v39eWO;A|)S8cXfjn?A9Q!0>AJ4yqW-;VkhX
zAfGz`t=Mw|iXKZgnZ5$iiNaNMiK~y?(U=CReMS0GB~LC&y;U3<9;O%L?8b}3ZQv4D
z^2_%5!2CxAZhA~P?rk*4w!!r+rNfy#U69ya;`(jEIpY?42+Y)#BqT*-8hcpCj@lv>
zF^Tw#N?ox7|M^+gVB}-2<-%yV%DI`UkOZr^&>>Q}#xJgMmC$301rj4l^R30yTCiyu
zuV^Ra<g!SV&B877X>sU|9(?qC?!p3{ni%RwBTQ%*!S@vvC-pLmw+DMJT0Cc0?my=q
zdvwLszPd(VlPD;O!*@5h@?^SnuGwcjzBdf&T+VX~LhppJ3Y#uPW+vZA%AkuuCysk2
zToo>J?GwI6an9zeLf9imwY2VVr4-DHh+%2cwuf%%)$-5?M2435G+nlokEPDcS)N4I
zJW_Vii-gM{<jNJ#0{<H?K*XVf=M-0^T%aOZ7vc^RXA>YQ9I5=!C%Q3_^R6kGh2K@K
zDMPteqE(g`Yo4h7WO4DuG55MY6p4=FesBlTK@oeYLde)R&30|C(_fM?5;kGvkYmWg
zVEkalqj!aVWazPutrzq#-s4(kBOkiK6@Zl6f)L2ofLZxmUof|`j|rrO5H~cqR{i5K
zX<Mqe*40UF_XPA25n6@Lq_lImx(+p3n5=m13uzKPKmb*`HoC@-Kc{~}2wLh5ImM0M
z(t3`|$p%ORuaI0C3oBh)Z0(`xruqN;s#*CE3f5AyaG92R$iIqbk`{LNF4wgpeu-5^
zB2*?H=hX!Mi&r15cBQ?_C8=$ASOyR-;zj3KcwOk$DNGgXg;uSI+#vS2!L_@Fl{x3f
ztXS}Mq1Uoq=RSun%$iWYX*~Z|u@RZ|`rWQQooSa02(nqZcaT)YSRJnR4|0|CM>2;k
zaUaQ<(v5H|_H$0PYkz)+V&w2NpSRBTTdT+Ka$lSfl%3KX&6P#&ym+ZpQaS@5ec*Io
zTm)D~zyie6QNtmF&5e%ez9Jmm7<pR^eT1fxwneUZR`=`#`*ArHtau2UnUUT7h9v#4
zWgq0No#~_H^T-y@bG(%ZPPL@nA&Eg5N0Ylh5q4fr<XtxPgi8o4iK0>o+(0deQx|ma
zKD47fp1R2dUSkJ~6K(JEUfoke_49N&AUtI7IX${p_YTR<K%zyV#>xT5$<K>ZAHM5;
zCPRlUWHn$$p@d;JWy*VHx_2)K7E1}9iR0j-Cc3_O4Py(&9y_svP&J=6w`9GnjZJa~
zH-VFAPKu6$z<?Hw9pxgQ>-J}w4I7~Efe?vD0K*GOWZ5oro9<VDis|vwv9|e2av1n0
zwySxMV6o95XkcmaXy0hpmf5@_;VojeG7`xZ(H13kZbGgr42u%uO!j$6no#pcY12R2
zcQ*O|g35y3DD5dmBP7uRA50%0Z<FB()yBDj-$ddD#UPI5CfzmX9v<L8;VPxn8PCG6
zb{$&Gx8&Jm#=!{$GeQjf{1+#7e~kFM^^(=1k*Vbun{huHyRk+jV$Y-&wwHsYzP{W1
z?Rujaawj%bXOpO%<?gz~ASo0H6jK)78oW=W$0Vo?GprfKPBB5}>54xvO=SKARo>5h
zVqQ=x=aO)9GKz=`BX5SY_QDgMO_`xXk|cl|E4PoZeJ&BGwzRMN&$lsiW9g}Y0J*X#
z&>O7|?lAA3r`<t>&Ji;v4sP_=1HYP^!~8Q1l1|1@(hM&j>y6zkMjbq24gur3spZT&
z(A%}Yn>}KiTgby;S;*f7yRW@<WR73A&s)o=lD*{ak+)M@Un99Y1jRExx$$2NcTd?9
zd?m}63>q|HGvbAez?rQAPPqdLLc}j%$0Iady;)u{4$9(_*Bh-)KWGk{7JRPd7Ewa&
zu5|zPluHtZGHjev()R>~GcI0O;<iK9$!)<BP(lKzj>*9R6(<2M9fpMHI1{{CglCAc
zg+bn5Vf7!NpC^MRBe`1WGHk;4Q>>q_(L)>tJ{7)I@mt^^QLP%xr;CF{hsz{u2D1=(
zDG93PYWI^f2seR51-pm)lg&#ImkEIvvf>i>G{z_RV+4^zt3hkbnPF03P6x|D!)awY
z9ThMpR6%m4umnY_<)-yZ*N~P;Y{W*ztCt=%FFB|kH;Fakk<>wP!~#UA0mWv;i{d7f
zdLK<ma%mBHO-XX=Ai9*s;+jSxWu>wx5*C!b;$qLi5bIys#I#|z!KboG5WuJ|2_x|7
zn}2fG`J2s&^C?unMCXUPqg6z`@&5g7=RMHjTnZOi>Kn`abRM1+&JI!5D5084Zu!AX
z^kUH;!%>!4UEv`_{%Ejs44N35T77H&_eQ^mKW}|*m*E%^Zs}uwc$fC)oW&Io4f=1F
znJ4*th;{@l2%x7HkV&c1q8&mCq~}L$q5e%aQ35)YCqb$V*PG_3P4>HlPY5~UgMuS(
z?`F>YSU*p!Kn!ns0qgCN&gL!abi>H9CT9~b;Lr>(i$B%Rv7HfskEaE5F01!tpt*m0
zkffi9twp4bNP;bp`^(KC&-$fq*ApcK0(X`~*oAjDzc_*;nV2{Hbnqwbc}mIQ=;l1(
zzH)r99Hhhw$P|HFv86;uzMo`1bWO0tk~VJ~#EvF(>F@4`qfN>BOF?7gt|S<rQ2ZeQ
zy|+b*p*EE(l#(UDF_Y~@qR(d+2Q2@Z7LqX76FZI)q}d4dY-+$W>uA75AtGL>U1KaJ
z3Mbo$1jmn?!{r@}X}FbzJc$AqKVD$=;}N@An#?kRkUKHO^er)`@!3T14e|FiNP4x}
zb1XFB14}<Htz;mo^TAMj{QK}&ksmE!-IDbp;BMHU|1_?s?DR$FcG5}|C@G5iJQ#M+
zJGl$MT@iHqw=up*el{c#K){;ARPv?^{JwC2mCst!#*=@D#Zu7oDd~cb3e7NF&3oB;
zYnpQ}TQIc1uF^}=G}p(|PIs-_kmpJ*zQVoya$_$_1QmTQbU!oBSWR>pD7)pH7J&*N
zOylZc_xM|JHJyDP5hf<T9l`Dyv(9-gzb7#-*uD3be?Eskz6){>`e#4n5vhJb?gc!@
z5=IyZE+mFe4nT~Wc%}Qs#gviE(cGu$HW1}MLcN<~Zn(D7{H|@J)vk~ObQB4I=y%cT
z&HtLQLpvS*O}CEXII_i(4@>y3ntqqrr=Lz<<V}q`TG~Vw$Su+8k__|fLCqcOtT7#^
zA?eYv>eN*8=P8}`?`<t#ZGs)JVJd~Uf}JtPT$9`B)AocYAz9W-7?utm(-a5PWd5sA
z9FAE$-Cn5*gb9HVmF``$_D1Z>ks@i$^}9fF!7piEZ2D#TZ9LRkia0lg7B!_1#9<bV
zR?Gjk-abZ33r2XnXN_JWTu7?GCjIs+)=kTFL(-{I3=(p4VGxCqZrEtWd}6nNWMIp2
z<o3p>4?nQ7cj$)PdMR~7^+TVeZ^UsVz{ogey?pB2`ym`T*}flyC1%ybLdnZz;yb!o
zH^&5JrxI*XR#Vgz6hAaU)s?#6y(2g~#}4;2BnXVvsZ+^A<0#bV{uS&@LQ!;Wn>1))
z<At7W>vT7|R2-AAgXNR6_0K=KT}R6@aW71l{Ni$8zbjOBCinH7Mecdm1ZO8F5Hu?n
zH_ww3k>6H*;O^=NLT7>w=5NBb%1Oh_Iqe?zw>i9l0!0jY^E*WPhu-TBYtNuj)d`=f
z6JC&)6QvSHy7x!g5w#4UO67B#_sMiGx*#}vF!zJ@jpd~QAL4ZvT^Fp^0;i*nDN4=`
zSH5xX(ua_7MxuJw8WR0ci@zm;fW(ofjTa6`S#uw<R(ctsSwKrhCxl@LMehCF$a^c?
zhd!C<EeoSOrG&=esz$#lKVrBaf@$H+#tkXxqs0H=x=?f6j!SN$Ax_!J11yzYK^s0B
zt7fe3I!ka8z`CL8iQr_!fWfQ2sc?K_>fVTUt1FcwK#~l0el^<Vm~g#rp`e7U1`%LU
z>LtsuZjpXUO<C%3$Ya<`S`Wu`dr(p_Q38)7n;H(W#qHR!l;4ZqCjm_2JjZaf|KqMZ
zay7SRl(h(dxYQ)(<deYxjUVZwW1j*YK_|k}4=20){$)f7-WnkP8u%>7LLgDF9X-9Y
zheTx)T2WP0Ep}n_;YbcZ;cu=nt$Irnk!l14O2jsPN~j}#M(Agk^)3<3uCx*ZL;<{;
z(1K_rmcRaR?VPLoYZ>Lu&0|M->vyV%k&?n3#3P`rGYIvTYsW)9q>W4}pX8K~REw|X
zZC7ngk1x6XMweAJqI{E}qs)Gxmmdhz*-l!DAV`6$B$f)u3Cg_2Jn($S*R$Ie(P<v8
zT`~hfKi}pK`l)SL5!!E7F~Q4d72ib!bz6CbOfAV<qV1X_#Pg2dC83_bd;KFuUACcV
z^t^y%fdEd7sf5~xWQ0C^q?aBzKEFEVgB=F*%TumH_xF&+PLk<FBbUR>zU}Y2=ym;c
zm_)p&m`v9y{>`kj1-6A7rd{a!clFqposVcq1hb5bz*H{LS5{hm{oD0e*1lN|6I?aC
zN#ysa|MoUtwL=O;+CL-H6W?I#0Z982x(y;<3D$E1O;GZ((CD;#&CcQ9H<)@)oPBR8
zky>zD<h6tZwc2Scf2h;4Zf)eoO`)(@1!PQkIp!U%sBeBY4vg)z#2*9}o8<!SkPL_}
z=(hqO(*82X%oqrfKtoZPH89e5T^xVMYofJrS+cMskwi(Ve2n_frvY7WCLbx6n+EbE
zBoj#~L9JYG6p!ur*L)pV2+nN@dFC`>vR9=Sn}eQ{ctVMZf-X8+br%Ki;?o#Ns?k)C
zFK)U#C}UUOU2s|{YJq;)U<Gws)c5hhWZITZg`_1nEmrv=yZY~mkzF5xQVcFMCxGpZ
zQhR!b_W41R1A28iJItqvOaLXRRcPkMUb4a2AZkho7EiJHPPxW);rt#xXg8Cn&vG9h
zAtXKup2SUj<56SbhvDaDr;48O&2v_}5?51Td|gkmY)G_H8MwYup@_fac?-q=rwv6<
z7FgY~v>KCDFHm!Y(a^_lqpkd_iB*@0L0jT)jaLPUX8#We1_#wn;>0J3`K3yCNT8ZA
zSisQ8bHY}Fas2u%<{g{(tptXGoQ4~PUNeuFQFG{3e15<va>}U8tuijLj?U+&unZ9_
zwHk*k0R+sIR_=b{(xtXH#3VUXSUynmue3gTmFEI{A@O*5GL|Z)*b{*R$0bOou(a(-
z)|P`hj$a3zF<QY@rIqnvo=vu9Ew=k+8z6kdPl}I@`9SwOn4nl9V(_Byxr5nOogd@l
z9HO&RG@4v50ca)s4rSo3Wb61yT6O$BvIU<ol8FN;(z=`u$oF}zgWucz`iRhw90b-m
zTB54f4YgiM({Ja|q+ijo_4iD*=6|gRpGKhyfb7mm7T}`Ik?A0$idS3x@*l~QlHC%c
zMiaWJ-ZXM)2bkm+%9?8!Em<V=F`PLpJ`(0lt*kE>&@506qRZe9BUvF_{pUf`Gsq>A
zMz+<-1?X>RbM6!^jxb&HBg#!lxdVs}&8fWJDq+adBGw=(9OCsrKN0&r#jtLWofLyN
z2@^I5JxfR{k)qEOS|5F;TXQiX7m7+CiwFZi($je(Fm*ihldb2s>z_${T|Ki9?T5gX
zfJ$p5JFPc}<>kXnL-sCO-8#$~)>Tut6m$c`9Q&2x@UU@|*G?SD(u=K0M_J-)XX5|c
zW`gV{k3lyP<R5;Iu$Z8(|JXcqhi(`mb+f7WE`z%L3v-Pmb!gL2nJ5OxG=1JMpK9xp
zhlx_ofKH@EXlcU>=8b_YtAr8Sw8Y)dK_K8GLVb0>oV}JWMA)ufDkn=JYw<|PmtH?$
zCa>X3`c(o`Yb3l?Y@?zW{<*{a_)-08hE7$9MI4M#r6<kcyLc*gb`4$)#lkrDy=9V3
zBvT|Y87W#Pd)QxCRj;3Oi&c4H29i&OrQ?LzCYLX3JqLxDAp!WsmVf@YIrSnMxDJqQ
zbZQOP9{LYQCS;c;Unw&OObXY7i1FmsEPtGxl1dCPM!e)kp0_|&fEhA^wg*lBTHPT*
z=5<~>7Y1>IeJRVg#yzLIO!mROG>9iHaMkM3R_<EeLi{p!60l72Ihf{$*IMtdu!kWM
z&=i>}8ATkQspZy7WE9Ef3oFyR49~@nu+2PK#u{*xB(&AYATM05H<5;7)%=0hf<(O%
zw)ts_P%BwS!<x<%ws+R|i*Rc$X*(>7*yIJK7oLNxwm#EZE<7iJ+fT4Bun*{|)l%(F
z5_Y8C2%(AML?L5{_5FH^HF9bb^@2lREBlR+iI9TZrdnxvdYEY#pI}8Yy6geg_c`|J
zX}6SD%!iW9&ZdafFT<+d&1c|aK8kM39Ro#fO|dFnyoBrpM<EH4EoZqG)>$L(W9dYA
zoq}}@Di#|7{D$o<xzmb^(O+lcwd^5TPFf;HfE}G-t-FdgjShqetJhZO4i52}nE{c?
zrQ*e~4_d0&eq`UnuP|SnM+>w~l2#q_<eL&K13#mV3`8D|h3M#i%`cy%YYd=;#QVU)
z^uh4$w+{wRBWiHis{|9nTDWbVx$|mH8?h^5gtE<RnBC&l_Dbtln=cURXoJ|<*Wv8(
z)|gC2BBn<gWWh;Uk5U&;vyODpTcO!#fi94wO@7eX(ka$=6ZLu|O1c-ElGD6zkmb8j
zzmY2ma|8`zxZ*y*CFQf`kr&6jvy0(x%(O+)8k-WX?yIv7l6J)}@Pc4ikaL2Qkh(1F
zrlbmnt1Iub-khNK4FnA~L2n$qhw^bF9%JJqPlF9L<Z4doiD8&S3sFU@xB%<s-n@t~
zSyL~kxwsb3J`x3fYmYUkCr#R1F2n}eaFe2I{;x#8p<|zg!8Y|36kxUM)zlX<1zdx!
z^tI@{(2Af1VnaB^KQFh4ERAl=8fdK<MWbG1`>L>60Q7j|2eX&t>j}66VOd<Z@}AAI
zvrn1NmudnSOra{d%%K3z$*4o-faSbHq*XD{X>x@@ZuyJN&%-qr&eC2~t@T6N(-xck
z`)eM|P08gisZ8Oj=Lz$Z8|a%pkeHBZ=^dL5TVPB#|F^%nrLHH*ag(G#4y9-q?r+zc
z&hPb*@E+IHPZDHd$&Q_M+N`@%ugtkaeI>!V?=;)Py^4ro%T^dGRaB<=_GkJddfEoL
z$H?sBdc!uYN~f6dmuZm>Nr<R)PA`fMmr_u%bvj$mTx2IPWpkb))ZI^*1G_UtJ()AP
zk#M6DJuQTWIQ2uW`Rq}?s3EBgGEKmo;8xRI@QtnJTi4n2hmMGIqo)KxA+bSwtl;eF
zR>L^mJd7NPGA<%vOGt>n_$&*yB$O>Ni!w?9jr?Phbz%&kvYjsYZ)@mL;*-Ugu5%_S
zBf58{evz95^;3U|3*(QQtsCT$mYDjci(OubQI2{mc@`75GY5!)lK4Jsuv^p3D{j%x
zg;o(KSSvYS+1^G`MX}$qJY!?bG@Ho_8z;6`B4>0S09=ei6005?ZngU#ywY}4(kR)e
zQZx#VMD`QuOtKEoKWiT5O4h%^+ohk&Aly%zA?tWfriRG5@_mf+Ocs6*Blf$_8veV!
z2a<H~l$K=lg?;s8>&9ccg-S>~=Cs?dZ1P#-f7K0)7_wo=x+Pvstg;G@Hnr4{ZKFTJ
znJBHc+8@?;Uv4oewp#9mZ5$qAeI%*0s4yfE$@N=R2X~OmNMg#-tLK`tkLVv{!9Tc<
z1cs3Fap6*P+qe2T$os(Cgj3W4MWD|7;0yh9=oG5d>rVLi6AR3zNj2p_B1FM<5k3$s
zb@pnj9cKE*CW=J@YQ8~PB5KMCXR&`aXotCBOVd7{{h5|&L0(8S=WS<wQOX789Z4ON
zE~g>oVe_Z&cnP-2ZRIPF6fG_1#;RTLBT+I)(Gs5z0x*}leJ%aI!R+!dO#+7?s71^I
zk&62|v7hw-f`v4cNk+fUP^5|Dy(!unxQ+?h7_JbRx5fY-w#Zi?xwEzq^x<%8#;5u>
zLpABj-msE5=3Xzbydd2Pdk6jjo++RgG3xe8E4@DhfpvRpB_U130E`9Q8mSh^bCPTA
zJ51f3ZC#DhK?fp9Fj4s`dNc{ITMMlZOx8dk#Ve79gjMK7?coj9k{<dUG&Ptf7YQ%K
ztEvL)ZA-sEo`PI2gu{XDFk7n>jD^7bVq&-D_r$@1e|?iRq(JYC<m@z`yx0~e50gf<
z$ORlp$#9;Ppao}bG(e(*$*?|rV$~=s{2fiXcvVXzzXJ;ufgV2VmX6F8Glt0c=p?#@
zWiuvQS)zz>tmJe+EBGxrZl}wv<V)=5a2>c59r5!eldU5A=QtY6uz?9)b|m>Y;c8rs
zb<);VIMReCX+;IBKGn6#nklM;gfob%kFXgLtom7VpVA{0M{3hIL@rRP>#S^B^&lxt
zE^2QP80Zp8%my6FwPydxYa(#j>Fh8U&O~X7HTz;srr9LB3A3Zv11^?5J+0PqElMJB
zNvU{#**sJvWV3Z8)?ZBmwYdCPc6kkIf^49snb0D{fJsl79Q(?R(!1FDK7!tCrI4yo
zFhIJ~3L{IeIS~0Z2%K`wa5iJr=2y(rCHj@&#CXdE$j1rQz1-H6V1|sS8re;he12cE
z(VX=x6XBQ(3!%^q(gq8y?ErF)fw%d<{B{Ff%DHP&5#(D$(!OGbipCPfN(+AyCdoc|
z3na=Ei!96DF~d}Q^}BE>10n%d0dWYSoF%|)#`w7H;+6ka^NUUP@5J6nAprYm$Euzi
z&2Ja$7CW#Hg2Lp<sxmSBgU>#1USl`QWx<Pl87&u(yBE!_>v<2%=Nc?T<S=r=MGs^v
z7VI#8LP6wja(Q4tMUlqZJFL!n;0ZQcV#4IObCN{Ej#nRFU<Kb}@3x#GlwYuH3`B6r
zh2b{>H1=eBE9^G?n?!gMyjYyLk*bHwdX>jbS2Pd@_}Hq-j9d)w!ce)&V9a+OH=`@{
zkGQ6UDs08{>#xk0QKeY;Y)xYLDsb8U{G7QTNr|UpNfH+`025|6CcI&SJR#3nW=M!%
zLqbnIXWsL;hHOf#Xw)7H;+gSD4EJ-l7YGDgc(4*#PrNi}Vi$*7hfx&e=yG~kPewz&
z9Sgc-jJ0&H%`Zi<6F48(0GB9Hg?Y`2T_R=P8`%S9h44Opq!l(@AG$0~oSaadQP!%~
znz~a{J9q+;Tq;KjIjqD=yM|ArLm|&<&I#qdc8AsPX3g{9oVEa?<!h>u&KstGoda49
zW)yZkMn%rFZo5(cI;{*#62ZLm&Q8RrvTEx;(Yhts2l@s<e#ko<xYwpymjPSD-^SwU
zLc)dFa`L0qtEJZG`T7Hi!i41m{Ak@B*19Pn`?7P8F*UlBl&y}55kS1iJnO}zj+c#Z
zyKfX_5KFz13``t7S55LIR_2^`?t9zs7LmPPPAk#<Y<$FGbJ5?SySX5e%Rmn$o%SBX
zG`5+$Id+MS0s;i=9mbbmMw&&7Lgi^Dq*X4tK?os(@=VH{Y3FCXq`C_vZxj#+5$Yjj
z4%yb}t6*)Xl`7a=QHF*9kD}%ruq+pt!@tw*n0dj3)&^cd68z9@+}z6V#Jz3yWoJNj
zMYivc@-DF|!LYu%ztfhTVCO`r5!KaP>D=@&(FVu7;X%)By#Ovaw}Jke8$b*r-<;@j
z1B=d*Y|qcxIu$8%zfdYUF$T%eSEqQcwK45+wlrY`GFo}#&IO($!~fBLqyc|!?jIk9
z&ea4~z~I2HneB;>=J!aepcYhD?I)ibM~?xOjhpWI;Yy9MkXK$@T`dz7OJ1zOXcLBc
zcI4Ru<7n-#m_kFO!TNue=^2m-3IyxlP*V;%1RhI+YwLdlJY=5f@0^8shy|e^bii57
zSPphxQY}msr$lV5AZLJgacHRi(1;?88e$riJSPF$m~yRWV+KtOy+xPt2Dfl?m*Prh
zw(tZJo-m{*0D1wgTPsf&0LspL5xaQvi|6zi9V5d8+v9MUJ%e+R8R^kRW|SV;Zds_>
zuqpd%1qV4nuX4(rp7$epHx6_No&wTtK%q}`_I&-Io?DBe1^hm)sc3=3ERnq@)lwwl
z3d^ntIU;t7gQxE&X5~hmzMJIz(T>R?G6?)((X%3nvyV`dhakr4#Nxy{YIq6Cj@TJ6
z0g@Sp$Aw5Mw&w6dX7+W#$%vFAFb;^B712ap-o<MCh_DQ8+933lnh*BdTGilG3MzfV
zedd@B!TYik)hIZfAj^rbj%$?2%4t8CKaTK!aY&nexfwtXlo#86Rqilkk^@`KguDIM
z{oHzAa=rqst&Tk}LIW57z+<18e@*Z&>JC=hxoz;Kvuy&igj)ql0e+gfZe3yCcgSzW
zb0iX{!xoF15wgGlgK3=dnfLzD>7qy4NG9-5k<!JGgusS)bcN}DxYOgwx+#w<lOQP@
zr=HV>^(nz^-gAd;&j4Jj9=6R$1*|zzy?WIAE1~1=YuoLk3563{)2>R%p&owR?3>qd
z_PVyxCSf<=u24N4KniH-fw#=4yL4mzXhKG6&}A@R;5!G!Q2o)tSTM3fkN4XOUQD`|
zEoVDn7;V>k7WNDg*gN70DkbqTE024q^BVWeBz(W5#PgLppqQf6+9da?TLF%f08toq
ziILQR-O8(ya_DkX9I(9jnz_7znglb4_|Ck1uK4aV-1m4iYE&w*nn+hF5AJ^5QupD3
z+TWa2%tcWvY1N}r@OqeI-AhY?vopl9I<*k-00YbjDp(r%!q0OEt-N5jdw2pUbWv&q
zCAL|%VLY6BvwK)6-f^aZv{5Xly+{$J6RSEbcYisanUIXfax@Xsn4vJdr=N2#8mm3(
zf?eUOR(R7%a9H5ZAHqbqHppzR&}oyo>BRY^y0=yZPlkwxcuTPyE6~Y9`!072+HS57
zLq3d*08&XfQ-LGgE4w>e#*TrApP=r4*i85}XdTWmVnwD<1d_A`>aDc0cJApXSeE%Z
z0}l;5&VXY7-enEy;hKwxoJ6SwG%hJLjexyjqv<^C3dE|Ei})j#6bF}5i@%udesitk
zGngBF<@JqH8iGJG32TT}Uq0ntxT#k%B!s0AVL*<)&cQ?BL1XBbZmyjcv>G7{A8}!0
zLkR#i0KLTN`WLycy6+DlBqoMHi2_y-fg1N&gxZtt4nE`(T$E8|b#+q#2Euk5rP5Yg
z#cKgZ0o}K(1|Z5h0W?8fA*AkE>t|XxSJaXM6iXC?FXmd-eH!G1yncaZ13?};<tl62
zCjCodB#7wX$4o<wdd!-)(Yc!2FqyJ6)fL54#aI+3&@<6f+?gjsRukzY$HGTLTvQmS
z0xI%9?o0ox`C&^mO<0|crYRY@L!p?O0xl`OLxPSh{^@#8<s$tSIAT>5lev$u*hNGd
z7^nLT@DxqeZRriQweUrpAqEE*9Li58h6JKP<_U6vZwluUBU)OhwR}XVS429lY%Cyl
z`D+-3oWBEiSpEMBxd<VC2(Zwg)*(=;!)c+1zj8}h4bvxB6o;9JfgpsdmA@HTi4s>M
zt-#8QYKLt%Uj6o$u~YeN{!TZ5$|+$S*d{2P!JFcnyYH0I^UCHo&-($Q-Z?+`$A=?T
z*WZlo8Ge3;b^rQk$U)=d5<E2gb7N0;zx4m(<4pbQ-;AH*nm-QHDDVlxizJaCR!weW
zKL4cO{^3N&CZp$Jh~hcc%cX71pqKnkXY1!_RPK~1(MEunTDafnGtMtyp8bv-)aKE^
zT;BQAc*|@aO^SC)nMPH@|Ht*{_l?nTrY*@=CLG~Rz#2b6sF|_L7<GZXUIHNqj8A<H
zJBb#FjC?ZWlQ(*naKELL)g#$56w<SnxY}m**q4_=tc0(Ann7#^z`cNza$gNGtx?Z)
zD8974zRtKIWh?6mNI@nRef)d#otyj@zuH<PT5WAEX$r9ehZX8budpIIcLayEkTp!z
zQ345sfvWkhTMvY~_KnKmBylwpnSxC(LJc@=_P?}K-}1KSWrcHfs|O~T7d2&t(=+Qy
z2%?S*P?tHz$3zOaRbst{?`wkDLatUF@A1saa9+tY0qo(8vT_?{7#I;O=%?J@Obq#F
zlrf3nO;N@Io|o?>qCouL02!;dAG4xAZ4+}#hw}y~Vs@`d=6yCICAY1>>fwEn7)IbV
zfbUFDTNaz+U+T0wz0JOn`Dzp}ki~|^+cC~SR$;Veq5NIe=0g9VzgbnnJh=!P5O>fP
z0BaLeicz<iYrpV&=%d!>XZ$05tekJmj+c!8^M)uHfk!8q*Vsb@N-B$qF+`DI6Nsmc
zQ{nF#8C%+>rgV_-jll>nMiv;{Alzv^h{EpFp{NZV9q)JLrAYX601&<yl0>*cCMx^M
ze5phWH#%^n7{nIYBa}QO-@UD@tlK2+TVN!I!Ehx`3PJ*-1ZH+>nOT<PcY0Ine;IX4
zs87H<2n^H!OE__eeY@mov&zqZ{u5eeBK!&@PYxykvhe1LSIx(-_W$^?*59z#TK(rJ
zQEDtgr!Q0aH{;t&zu{CQ7ILTT6Qc?DQ2j#=|H#YEdqa|^ay*U+`+0*h6vWYrfzH5z
zQYra1w7&MXWB4nV3dy8Otz}zZ0y>|do<8qc4-6ByBx#k<99!y302zl~-?k#JYHrN(
z77El0#>@mYdxbS^T^mpuCD#ErGC5{>`y^bJTmsS>7Jj1h9FT?c$Wb5^B`@E#{Cj_a
z>lI^(m|blFI0+>muP9e3+`Rt}U2pg3dctQCdQp0!RC$c!vD=%TqfTIJk>~>M6%lIj
zqeeJV>}Kg3GXv%aX^BvuhC4iSbTK>~WPw=&)?HSIUrCr9adqmlV#oDKcDcM-7Dh)q
zskjx63oqh(wrxsVWTh^>EeqVc%CSxwB_a{Qvs(JnLi&gr%8LQv7A5-Ygz1hK=j$Qo
zmx<X@V-xp?aqOI_9}=KL%y~TOg3sf4<Zk^fbOE><^iGitgo;-jAxk^Uf~AOnM!^i7
z21`E?YGIV)Tf3hmJiM%)UZubo$2;~i5b-LEnZ1Yr6k1tvjw83)pOu6Lv<Sh<-s5p3
zF4j*o>gpxzTjDec5K_~_9EWD;5!s8zf?~0Nhj2pgbfkaGpa{?guZUNK%fU_6Rku5y
z_(eC^@8r~@`N=!DcxF28+@U9uhC;&%b8-IbE{U^5ZW<}<jcp-TO`X{_r=5P2rD;M}
zk&$21-SPdydgP+^6E8{_CsT@5?|U4}7U_nTFPwc&!q7QcIg)AjQkdg8S$`3<;M#P=
z;{VmhQF4!dhyfCct0G=TTCi$_Ii8=VTh5(DxcW81@zHEr{`nE1(B?Mn+r|pd(g-j8
z>lw$^r}PAY{vtmLr<p4Gyz4b1^as+t;%djBAFB%cI>K+$50gvrKoi)6nl3O|kGUN=
zIW$Nh6fr5bS(M8U0<3e~zEbbVIW1@b6DK*IepI($<+BGP*0dF?9WOlD^q7Lu93cYk
zz>RppvFs83xFvl?s(aTu-guSL&*vOy@oR`VNepM>A91|eU5{CuMPN}$%^jlDQXlSm
zZwk-j)L<#b%#)dY9kb`^U#2z|lNZcNBac4X-7(HSySd&;UhG%sRLtwZTF1Pudd4=T
zNmzi?%Ro+~jMN%?(!vC*Y(7S+LA?5;w?o;R+>}_YJ*R75?&>#6e^*8#iAIEGMXDi@
zj#v5c`5Or*IuPx6|MpA!qLY!aRb3A*_E^X9r~Lae-b682lEL*{*G<>@%P)q3eqV|=
z6lG?-<NB5Q8R>0Oul$#Bj_S4gflv_v&yx4&Q)=T#$G)fa^DLi{T3cN_nTO-XoOuWy
z2m(0Bi>hRlBj7pxON{i;j(TFO;|=?PbUDN)m9h!_<S_;ArRx1~GIgt^PIy&?Bk4ap
z(m+Ga#ltVy=>V)rhRrr7BVo&!lzL&b0~{kg8x4Sz2ofA_Z-WprmJ19j#}vDnx5$9Q
zbZU<+$nGn>9%L*uA_!iEOmzJItR6`gcq`l#)G)7dY`DLv_bTrsHbJRwBORR|vj;-p
ziZ(*4Pp@&zVOcl`kiYO)v}Rt9__S-=JpI#im#Qgj6x+#QutIdXGm=NCD}es|m~lr<
z+apOGBrj(O<nL_)PQpk_bZPfi*46F&kG5_j$<DS-9@Zyx#{&Mg&1rq>CzgM0ga#T0
z`Kc1rKcI4O$RQ!lb!JEU6Tw3sB3_6({*THk9uoC;myp=*{_?Ku4zbX@gN}ktajNsi
z92(Fa$>zaL!H&yS&pR)F<Gkb)-;;zdq;te%{rHK;gX^E>u~b{8yon@*V%t#tS~;`d
z_Y-SODpM*E<2^AGB39j8>a6|VPu!vCx;_c_VRoF`F=5X6y%}zc=Q^s>7v}u>@_#%R
zH~GW}=dFDhDq+j4e{(*iIIm<364*TRui$|9_!3?@8xkvtGK(yNuE$OJg^AAPUHxT<
zP)lkv)RBym3v+9Uv-+4{1Z<zIM(z%A^fRpo4+r1%2VDyOi<sF9gn^4=O+<1E-K1uo
zJ5mf}5$dNf=dpjx46_;f-4)I@@*IZ{CCbGQC!gpL;~epi`AU+c8qm)f#&foYIv(}x
zijI~{JL>$L)nuHqlbi<x3c|}_SxjQZ#$f+X&RuF^)Tmd`*ExlyYq`|aTO$v*x3f<#
zf2lIeillQ)<oK*!=NdS}59bV~B>PFtm#!Bp{LYg;1toV@Gtj);0g^L7Y7!PfxS^B=
zb=>+=XZb#7zW{>38X*&YeuVRx&3;R{Z#Ap1aecU!QN`2?eM7pA?<8$Zn!)Ue3Aui3
zC+S@9pM?F0V-pA^44umydCT<8kV;T6_9tR%5NHDKcKp7qb6?~m9I%y`h3I8XKgW&t
z>61E=@F{UoD)pahH4kK(%smfLUFQDBcaCo!@NX`@%~3Ce$4(9l+<$|v0gQhW?j#UG
zAnbA*U)R_zY@RLw3{Hr28vkfF&s}!)--0p#JK+*mS>U+!l>X&TfcPhI1SF^f+4jX#
z0r6k!Zn>KXCxnTv%j?#mQNNCYL98Y{?i>}k`F33pKFKFkt3!aHY4ym!z#}v4e#Iwc
zP_UZN1A?Q~^tOSy@90+q)4QsvGBMr`t}kD4;7bqdHap6+hyZ0DnijC3aCT%&6`vG%
z;JEHL5jSd~7uO@Aa#DR`ncSZ9{|@MPnLT6li2~;Lj=S5;6kX{&&s(Q!e&2OLP;W&c
zYblg~uhXuoo(&+PV48M25mfz%9svBU0x6BVQ@O4S?7vSxY*|TN^%)TuzfC{pKJgjn
zzrdnq)Ol^Uu6nXpU{!ktBETJ*kSRVIpP^SX*;_1Iai}tI)^^>W9A-Eqn|s%1fmaPX
z@6(bJfm$>ou*UvAVVHV<CsqX>V`(8rC<Z%eDI4*|v)vBOX!^`F)`U)<a|U*|S2?v=
zs%PyoY6J77Si1z})ObnVm21hoEpYD|{Se)UqzfUqA14IHb+mh=<ff0W@b<`&fgx|}
zePPP5KaPQ#)+X?sr+67!XX~#+{NmwF3j#L%L7{9p0PLw3D&`)(H=v^*Zxhi;U`tuG
zM0TnEhXSUJ(+?5BmAdvwz()i17n%rZY^%T#n|1ezHG=dca=1D;FW~U8%VY`8)aa(H
z`rK|Yvou-cN!@qpJbG5Q`5XoPJL!GL{BB(z*8k2gE}JIBjKxlg;eiv$^e%rd&{d+F
znO>Dt*;4Cv1s)yRRmLpzsV(AAt3Isq0dg3|73<OGi^&N(J<~LCPe5h9ZlWeMzCV6F
zZFfM%*rs1ILLrBpCj$;}f>@|*Mx(FvJC+1QI`pryeI;dK7+{5FzibzHVYYsn$7gKi
zk#hIJflGVor^x_3iP2r{`!3*eh)Hf!ey9OGIa4hL_RD_*QtY0F)FU9(>HPU?b_Beh
zuHQ<msTbkOdm!K|duGy&jZ13`!yBsoa4LOYK&`jwD-t}IQHvx1_eeVwaBrD@K1_tX
zKfh{TA3*0zHU8zJCj;uU^e@OJtA|yj9Slgi-2Swzc>$09Ivo%hsvo66PkMj{qXS0-
zH+4*u0b&g@7)z$qBr|YIyxpRqQCQUzy8^DfN<YHpC7vY}kP~P%(Vlkki?VTcI>`Po
z!%l+(hqcvjX|cyR_c!W}!GTw`*Uh-pF|+9{U3z(77KAP|ZTCyUj8c!s2Ojaazb_$f
z*l^^}v#YoMSirk^y4^k=1UBg2Rv!rXyS4ou3|<4Vs!<mQ1}?IHi>4qYpfO9O3dA^C
zH%sLS44kP4kgpFP`zfYmbzxNCL-r74|MEEJ;!zaaih%5N-5Fp^w>xDG3-v*M;irHp
zMNQ8zIaSJ;rz>F)5B?f(?`++a<f}A>6xY@ha0o}n_EqE)_2s4?0;(tKABbE8MxzAP
zb6_}K#2<1ks?3W5@6XY{$cH~+hgao21OGcnKglR4)9F!Hd=c<NlKrF(#0H^+`(p#U
z{;8)&>X3;2Ep|;E|0!UtO*y1yz=36`5au-rx(|UXwJGG?zXPI&>Sw4K1QW{oEd4m3
zTV>O?SONgH$PpVB_z~ZST@dvvt1k#PvY+dB1P;sZ8jh?nh9yC6m$bB}_8ILTxk7vz
zX^7CcLZqHL=G_N2yC-LnvD@;wB!kU*)4e7O<ib?JY?5lG_%aq>6`H%yA{}nusF5m}
z_ynw<8vC5U6sj`So9{>a8D?8snlHqGCP8z8z$e*;W6g=j+ibqP<3C$tq-^5ZR+7t-
zd{l|^qRo=K9tVVt)n{(I@20mGpo1)G$m0QEPULLyCcYe3miy3hvR%(>6r)#mx_jAD
zklFz|VSyyH1~c>R>#e6h3u&2=E@D<}Q$~7Aln0Q0v4>2ocF$ks67b+GQW>#BMSx2e
zh9gyVo?yP(DQGl?bTq3ZbA%&QW;e_yS&amui&5w%W6q+s7e3TMa+uJ!N{XN*PZ#rv
z&0#)-%M1*D-V!faSVW75ffqm}!|#n1uZ8>g8l)$37iqv@*pQG(!_0e+Qe_qtd6+R4
zXGtZEQNh0%af8C8w@lxp`f_irm(sM<U9(%GP8vVHO)CtxzLD0c@ZCa5H<j1PNLP=2
zY{WlGCTb+qQde8ge(8$ybho^{d2vy=4{niOM&zReMdAXJob4-aGagRv=fe(~!|1Dg
zcpR94ILM?f@acBu;zt;#L<&)y51|aOcZ_#3BKCUmS4PNQx=j#CL?^8!L`TbDQAb?n
z!h0AjjyL>5VvP#JT^FI$%SNkEJ(4^E6Un0mqaci}r1t2oM(7YmLai;YAmvhuFAT)0
zD0N*w)BjK171`Tm*f9kDN-&(_`4rQhy1|I|Fm0Jaxwo8OK&k}7(~2hf>oH^DCN=@h
z3Ct`i=5l5v9S>cFA26cB`;8M@^y@=GS%GQOh$}+gj#l^WHx_JVxTK;{*MpTwNC?9#
z6`|g_*c^VV&iWl%#m0-%i#KqVE&0aivQl@K&T=u<$}&I|Wk?ZZ(Bo@C0XlAM`ash~
z2JNzuXvop*2lP;ObLimT`s%bkRsm)U|74G`O7bo~rL<$lmG97f9D6LuC&cW95dj~m
zcGrf+|Ds<+6y;;G;DTWM(K2J=W<ExwjF-B})Y_7nA;Y~N8j;Y?M{JYW7$-3Yp(Vha
zq&Z%F`;77H@_s(_q<pBNT!+gNBoRi+R-{_A&e;5IKOdV$4v(xCzytPckkg_G{d~x#
znPuf9aa6Lwu@Ov-wJg2CSXx1wq&^9Doa|u)Nz@Tg^n`bf!x^lzd=3GH9(fD3F+%-V
zYh2}HoCJfEu$EyGGeD+^&?jYf?g;&~6^&4ttd`6mL5>TN0cw}O>8^xqa7yFOs3U`s
zZHmKr3Vq@YUuh7iEc7XKkC4f$z;n^a>0YzZc*o6XSS6w~>{-M^jiUFyGR~-<t=DZR
zXH3#JWp<RYUvAVb)@zb2oq@DN1R}@_u&%rBH?|k+DU87rjD$#?F1C#skoYqtbUE9`
z66CXxlNqT#(%KV^&C9*r*gan#7a3-Q9Nfq-!u~13+hBZ@&IS?URSL;BLiplukO@So
zm75H&On{<^T2UbuRu+ZKldZ;_91b+QPK`XhB2YA8c#&$|<3@*FdV8{kd(ffin(V9O
zGR%0xSdgXP8`{XEg=xy++I63CdJXS@9-vdT;#nnXI!36FamF=OtcD<8R+ed|!Et76
z5o+i`<E|Z0Fn1as5nwTJD;V0E$>s*0!-=TuDI>7ikVNJ@(9s;Wm?nxpbClRO_!DQB
z{H{LM6<s2P0p%gAK{g3`3t<Yxf&a2jb1t&-0nVsL0oMupQOa@17$G0Ro!tQGb0acn
zaXt>a+`8}%dXqs@Xji&pKAf&-i6hv0gzhL<!zGSaOCCq4m+mw}ILSQDB>a-BAnw-)
zJ+?^o%p>NI!<rEYZOSpxM$RVwn0CatM$R$0C@3_V2k0X!D|E|YBlQhEz(n?_fN%$H
zn%zOx#NH7yY9W*&blq@G%fxS87GfQBM#zc^xnjghNQh;9Skol0x$!IAQ#MOr_XI?Q
zY($*8x6pD2^O`Jp)72HB+aOEd5kr=bwv0+Ivx36qrD$mg-=-UKSi4FuLyHh(eo4Y=
zf81COCuNAjh~<1^9ixfZg#*Wgho9ic5;e$D72DzlmK(s{rv#*J2yG9CMkqxnK&)%u
zGpO$iAw80kb)Ab!AHHgkP-eS3q_&lZSqMYgoi{QeN&Wt%_50#B@|ZFjbZlf1J*B80
zVLkYb{xyM-oVo@zGA2i*{b~L3to|`ZhC0KJwH$(Y!$<Gh;(q<sHhU3NhB63ZDT!#s
zu9P(2>hCtBIOLfkaCrpLTtCMBM1Ng6{cMDwunrv|*aC%0%c5D@hk`!P5`;>AbPkeG
zGNQ5$nQi&2>D;qe+p9=3(CHQ|^A5LvZm8f8iCU<s3VUX_dNa_R{-cHlI{RG5!1OjB
z|6D(B1_vV?0Jd}%=Lkn2kgH8zLB^V`g?up4Fs<Q1F?yKa-4ZlfbPd>j<;j{!fLQ~<
z)?mK;2DJ-0M-sQJ)X@8l-Cr6~oF-X{Zc5BmehSp^&Pn%CHz9K*mXu8vcx)=MMyp;y
z);$Y@<Y|^Tc|`00`8r<h39x+k*!4Z|E(^+%r0pZ@#ouJ+5s8(KN?crAts}Y!-g@SK
zH&6d>R3`X@TGrWI@Lte63}q}PY{BLiYxmZIkVpRvl&47&P%qlr%JPuXzXF#qXYGHl
zHE<k@w!Agm`OB@&C9utmN#1e<^LHAZ;lBsp3JXZ0gq}C7fIs=&!Ak=|-VP0blrt%A
zPdtQ=le>9D$o8P%6TA!(Z7G(7I-(k2bGOfNbYB#Df<98ki&Bn{K&i4u$Ntf-#Vl$L
zBQ4?nRBA;CVL30e!<t;fs=-t#BX&rsl$gNfzq_S{O(S%r!bc{cP1Io(#eCX(b)es&
z<{yZnNE#mR-JBM<_?TP1oXdHWNRiTd5Z2U;>5kG&mpsS0N9v#k4#Z%mcHHO)xYo4<
zF-Z7GO%bD7{+M&qTh1i}79^I-id^0{WWPH^PWUi9|6=)q6~a_6n;URyOXvw?g>=d>
z>!?0F-?8eq6#-#!#=md`_QU1~=eNZ{EN9zVe23L+{tiQ|mk5wriXKwx7QqRe(VGIc
zzr+|w11;tLHF9u_AYY=(BwrZt_`J}MIJlYB7}F~cEA{S7=U?-JKhk%nsQIIgITt(@
zd?!1SQFWN8Ulg$KLQek3lQ_6Ond+)fS;(oYg6?D+^1W<3Dd0R@b<DN$3myWBHTiHA
z6`NK3{UI~A1O;KernpMI+!ZS0(%@sAj38JJ>niFg7PU`<rnfSJ<a0zqvspDi2mN>|
zbU_5=<;BG)8FB>taY8{i1ZHAl;3tDT3s^KA2?Aa(fjU_11OY(ZUKr@RibgmqHr|GU
zLp2QJ+R1@y26^5^R27r8h+>#B-gFLFYrP9I9$Hi+rsx5I&S!gDy;w2yG>IWdc|2(6
zYp#A=g<A_qwLoN5w;u}Lc6rFVa1uCRr3fb+q~N~4n6t2Hq?Hmet9*k)mtGVyij~SP
zqr$nA6GMSr@Ln((w%0IbY~xj>`vh`aU6&T(?9lBRhLDC{Q_1N;Qy&@fS{%<{DA;F9
zB`pC3Iw$1hMLdk=Z9TMKB0`S#>-Hfg*ThOApF0UwG@wVwJ@Z^2@(B)NIYp5Zu_y?)
z<cw#9B);wXkWPge5LBTizZ4Skb;yV8Uy3+oE5W!&bmgby9TxA@G)<ia+yO}WY*qim
zj-8QEE=N>6=DMnek?Rv+8W^jpZWnORCB`1cmxDMbR^nCdg7UT))l4n3%(jsNtl80F
zu1EXGg&x6;IW{fiK)tb^(=?*8(#Z6ZFNXtDsax&{iN7OsJql`)ZRd&`6cTa7wH^+Y
zSiwzKqIZG>gw(^K>p5*H^;Opa=E9pN3tbnujL+}~VO#ZS+q8dI^XUshK4W(hYm8hx
zqzw&ala$JP$@ut1=V#0(Q!rUjff)1YPmIbP&d)dn#MH7MvL@P|()onp>q;ktArwzS
zL{jC;jNhMfW<e^@Qq|#t!$M@ARs{Q98j>XhH5KN@whf;iJo<=cp+g}bZGvsp==}W;
z7$dQ*=a$-KZ|qXL!Zd9F7i^`FJBEO8b<YMz*|(ab2&xiCT}RJJ(S(^}13oz(+Mcfx
zYB;ysZ_^op=r;|5oB|jBF(@T~M`*K<7zxQd`*TRJXK+Z6*g@+XYzx*;t%DN-jU}AZ
zY(l27Al>S`>91h<cVYo44Mu8-bawp=CkH^T1pD7d8=YytHUFEpzMA43|0{11p6lhX
ziWzq2=T7yoQywMOqKM+GS37q(ix%rgX@C?7^d|=N&z+AhbZYj(Nh8zzuzZh{=~v3&
zC-}Y)7bS&G4UGsn@L<rp9B)J%Ol&IVsPj-6$Cy&Sh|mU#T}^QTL^RZS)m%$hic%9!
z1{ptv260%@@X&}sYRZp6v)UNK^uY*aHF2z#2v`kuzy>*}T_7#u?uYTzVgsngoSf$P
zywr6I2VbdWw>u9TL9#e`C@7WOIscjNTz|2135rP~8Xzn2=$p=A!Ol613RRN-)lh^L
zdYB(L;bm(8LIr_JLoo&+;{I&33UUr$e>BY*Nj@Aehz8;;WWd0r{yNP$097do@e%$;
z0uI0Z-rs!pNvA$tR5&Za>#5W$g~5;ZG^=rkki-X(7<5?A7aDp6e|xz(hqv<Ckvamj
zfkIjvm;p!}tCI+oNZ}D!7kRYe{(m4jaOi(5ebk$Swy}O-KTEkPKo$+gM)pv7Eq5hB
zc;XcsFhowj&~$onSp_(2XsZ&1a&vaT^RGd)!lxxz0cnTm67@hvK-v&v34%3Hg>_;J
z^d^L?o9~pXb`&-q)DyM;NoUzFOi-U>Hi#cB_IK{tZ4Q7NBkYzI@iRnAZFiZ{-h85!
za}clR)K4Y+Yaj0)2pzJ?7{p>^Fu?+04ndua<SUItEjYlq>&bE^#)rsuwf4c#$ntJi
zkm~~5P-^=^XWwB#S71|wm`FN?TW%ce9Q1{Ll!EJl4Np&Vrfmzlf}%paQZDJHs@-$W
zsk4Fxz<$}o5-)>G!1AGHU1)wZK<^-Xp6{)hq;sfZ)oquVp|3k-IDpf^swE#=m{5c>
zbnd`z16aOvNo_VHFJ5j~f?PzqS(I&TEOZV)V?qEeGZKFgp<QHKKKr9Fubp!M{4^ho
zAs*w>qWd`=%r8C*mJU<IYa#X=A))RIjHO;WLc)@cGK&komkcS<aJ#fN=YJQhiOz?X
zM0B>Hfyi_`T8t`bZNBxea{%lkqlC6ffkj|sueCOx?WrH<Yoi2D;iPl@%*zs?Z?eqU
zMTs_3<()~G(%q*Yt|)8rR!Z1=yt<;TdHO-70Jo^DWbVR$nFrHDb3S3rSr#lkrFd%$
z7Bi{%2d!O-d1-uS^NpYBQ{u8o(1JBk#a(wf`#0mk?hH#ZE{k#Bk!;HpLoYM;h3cnV
zo`e9^AT^=*Q$4qfc{GIaO0IgnkzXOW1CrgwVSjnQ(J`NIkftmsow%`e5+2s1d$$?)
zj0~0)!BfI!k>COlLzH^5oq1P`{tALBny8FAv9cIpgN0_gMV-vKt(^n7!$|tXWv=&z
zFV)^}EV)s?mskU8VgVT}z)(f1kGhy1gFQq3BzUD>GB8<=cUKt`wg$^iGA?5JQSL?6
z>CnO4b}aZuju6I@Y7V|q&lhxCQDbai{`s)|+L{KaDpn_74Gi#HyOE?USmgdGNMJ-4
zNdD27b)MZ_bXHOp!W$`vq;^Fr&#&$W8g;E;qSZ*7!on0Szh1q<^WpdBMduUK)fAnN
z#ELhkVn1PgB(msY#eb~zBooljoC&=xKSla_35Ics-o~6MvIUpr+XW4pM^h@@K!WIa
zn`dB*9#<NG<h2#2rbzI!L9{;Q$Pbq5v7P%VP#5e^!M=!7tz!MK;6)pR_w@|uzVuaI
zfw6Ga9Y9EqF@VIi8oEEV%O#bX(@_{Olgd0<l?ZkGNzVrd^`N(a<O)8Y+#Z<w4d`dX
zXix7$y0f(X+#iIRVy}#6jpNm-7rU!R^q@Bj2AKxrjAZ#4b^i{Y)s=eGS;ghGT=1Bi
zqGS+{z2*tuq#JUn<4j#<u|rAf-I7h7_qVWN;DR)LpPpEmTT?vV#k>%&Qfn#iTw5p3
zp4g}ugUcl8Hc!{n?2iaNH8df;#l}P#5b&nkJg?tI%Xw?fY@64*Wj-RG3O|!C*s_5&
zIGadFvP;eWN=ind{DsHK%GD3{kcBI08n~`t;oN|Pc1X+IRL{?o^}0200_hoNH{o3R
zfZ9lAwu`X+gLGKwmZXzjUj%9m^hQ9D!8wb()w9YboGn~5)si-4aJBXS#a%)cNDK03
zTd2R#ME=q0vl^UEr^s56Eg&6Rk_7Jx?LIu0Lf7Y<nKLi(SWFC6`vKI9<o6NksgFHR
z{c2BsKgo3{M-`rJEA@k6Wz$eND8VLUj867|#MQFjC<7{N9t?YQHkmOZ(%>FFTLwFS
zzoZn#N6F~Z=6L)Ppto~hh?e=<FG%*>V6QHcC*q{=tZ=n{r}^}?I=3#H{5fxdWV>Rc
zDkr^~L^(D0sQJtT{)=C0y)P?K2^Kf0a^Q|qkOLMOsU~+YVmEet;^wyPnZHtXj|7nf
zDiT1mG9j+E<A)siQCj*+_M*Gz3+f?>ZSl%G!~sye6wroI5`;#u88PF)3gjB&uWJ9r
zv+d6hNn&Bnge2|D$l}FXSU;hv&{$QOnY+4UZgyKqz}4XdMy|J-1QLY@jBcl2Z0#)S
zwDiF?l7uwO*NC9Tn_|CKpVhgaYDJn9zz5#KM$F6+v0)M+^45#)zfa<C#8}c;T-zwn
z#4%(hMXKL|+&_GzUl@z!lT>VgLSn+WQdHSw_qVHbOLJ9alAK8W%ByzoUd?mTCmS(>
zd66>`;xWonNj}4UJc$<a$w|+zE%$|i$$<2PgGR!Xr}?{YxK_W&oC?5LfMbP;XW&qt
zJGNTCC&@{*jm4w};Qok=2qSMyWt6&~_6rs8WWHBZ)nK4Ec_&k`D=Ionq_`;;y7%71
z)Nu6qN~V@I7BM-#D5#@9`nzj#=vXMJzNk@8k4j%S%vj|&u5~ZpNwOA~n0Im^)@}MD
zdq8Dh?0(P7OMLJDv31_@QB+?WzbZ(2LfcK-?941x2&NZNBn<*21V{iuP&UZ|frO1I
zgn-x(MFqPEVgVHe75OPe#DZe)VnY!W5UGj<3n=RQJ$JI9z5WsT%-xx}bIZA>Jm)!+
z;fn!LNOxck!%fQyoR;D#&DO1@LZsddy?$y|qBu$Zjq;f5^bnU|(9dk<9>N>MXjM^y
z=i9$&!E4=EKa)?RgG3^bhCx}L&6g146qXN6BiTvBBgv{;@v^zQTWl2SgD&YTNk?=+
z!hBs}L4G?Wisd*!^em|GK<G=T7m#T4A{saj{1sD$)sGuE^`;j%H*8Fi2q};^Y?MhT
zxzsIJ4=*+&jo^@SAfAJ%2Y_D>f&?I~WV#SWzyi4YDsx+>C`z>M$}hm$CQAg>P>|~1
z)S8`si9GyFJDVUB$_3nkQt3-=a39|tvHZfIT_r<6E&CdX7*mZSm8y<v<r_xotgtKZ
z3jT`eQ0jt<&A(nUca@TCC5clU$L!>k>@*aB$uo_Q21Y(|xSeMG1w$e3!@S~DRWaW4
z;{3Q`bi+dOU7+xw3Y!`<jB_Es!IS&|*}7#oAL?wDV9qs^%@69W4<|?%`vVk?A^_#u
zxb)RH)dhymVZlEK@TM9+ohZJ7jsEU7^Su8e?|r7-Hg@(f7$5{}wz89JYFvlYc>E<a
z*I)DaZ(mME{3-G(3ylL`-25(+vlC)iibEUg$Pj{A3Qx;FP44}@JY?SS?aap&qCBXu
zzuYsP@AY&hsX@RLs;Oe0o}8G$Qn)V9^J+&{+(`|r5e&&M@;vuNo!Y=1d}ptGPjQD+
z8$ca!D*ch?X=;CJ19z|&>hnCeopuNEghi5->-nfdf|f)0cSSm+WkId2vh%D5pAjMe
zDQ*nEYkdWv1NL(!tKb=@)pl=?R5#9*vjoOIyx};7VH-Z%y7r;CZbNg$6au2k(k)2N
zQ9;*O>5JRTWx<zAmNL+Nai_)4x8`)y4TWgBtk6nTkU30kz0um$Q(qoNaz%qL5i1po
z*Oyr7ORVk=rI=EgZ&+jR(?5ZI2E184hSaxXt<cdew@vex3w9sB+vIwyc(%R@Z4gNx
z1RD55#-e;sK}xA=@3q=Y<p-sjK^$LpH6@}iQEwGm=e?ot123X;nbcKRSnC?}rO{sO
zIVSb_an{mI`$rUa!zd@ShL_;93$3(9R_m4_qSDIhFGw4$a__PF+@UX1`LC&JlCR0z
zIF)V;RQLO=J15(ZBJSXma?&6?g;-a0yTbZrnr;%}&AJwres%fF)~_|~g=w9P4X8|N
zI6v^P!U|hqruB<>Jv>N0s<gt-Hq{Kixygm9ajvywNC#=i7b<<p|H(}rs1{vs9T>{x
zBK&Bi!yDS=PJ!H2o>`l?%*@$|d6XCALsARWolVxb9QstMC7aRO0~KFtt-e+_aE(|y
zZjMrG_$^$K%C~T)*VY?$@}m0l7i-zS`lUm}ht6T0lQLAj_^tKp^}2@?=D?f*R;E{m
zdZocyd#HW!K-7N>HrZ4pTxThBkZ17?alP29r44-y2xnNx64Omro7Pwj-^ZU!%b%1;
z^g><i^emr)ycTdyvu2Y?PL!x?$=jX@L)bn-n%Y=74UH-d(a*Z>-o^7;7cKhna@BD{
z&BTMs5i8;!3Ukxb?oZuH>N2NtpykBDfR^a5q}*pxA{cM7AUxh0eO!#yu?9ITNb*!a
z_4K@Td4lL0u#`aA)WAy20Fy>B-4M^%wSaMi?x;%m5GG4%Gx<g+KHnvH;Odk%DA^=}
z!1XMOR<w)p%)iyX=eSUj3B$epw9A4$scUpgX#-4>tYlsWbUh0Z^vLg4<a74Z2)ed3
zQECmnz<b;}bf0c215hj!@KWO_oim6mxb~h`ueWb&oXq&!mPa~uHPzY>&!YMEZQP*q
zI*F|5-tfj`b#+@$zWvzTKk6h2nQrP*j~AWo8Ma8@Si<A%uE6t&uR?}}aG;6_^7MXC
z{{n{y&fogUe-QYg_BRo&NB*<!SfbltME6ze4)I*X>gs>2nq|6$H1z7$Pt0Q4=}YrN
zx~a5+&%j-vzb{E;w)a4CBS?lEjxzn>B+x_hVIHxbaBJ$FLdgxD#{3Hpd?rbcJKB3D
z->n~(i=Eiol)*W2VFypsz43DF${t~EWLJ^Ni!bD}8_kTL_1P<GE*?iTdy$odxj8!f
z>^F03bn+(0y(Y{cz>Eozp%$$&ipqlz=7mX;Z;5xRtsC1*WLB;9dpAk&m9_yyWB?OT
zhm_!U536!l*g29oj1WOGlaosh8U4rn>~@#6<g)OY!$W%EE|J_aywUjRNGVQN=}WEK
zZi<g$YludN=Mv&ixaXEQwslRM#8SrKhbkXZHyk|-+VJVF;m>t{Dqnj+IFNPdRdsyI
z_2-d9Q6-3>=);1T5<~FQv&I`QhCLM&B2AK-#k)~5WUEDgX-u0CR`z4CGz~@SOA1+L
z8t@}EZ=*5q*RX$sL!^*3v3mW$6mrs&m9N_LJt{?WMByhX9YHMvt}Em9@8JCYs9Pcg
z5=}#UkoehrSL}~(X)j$)6HpbU4o4cZGmZW@C~)IQnCbZ_V{2di3&H%;2{o|2QJ0~w
z46K^z<2bq^)Tp_D3;2x0wY&d(W8OtZe{_~1-ihKTqCA1GYAQc`Jj3|vd|GgXHP$ps
zsHQR3_<cC9!^>UYB(A@SUEEJ!sh=foB<)2~_oo_>Ijz_J7Q-!Y37?Yq*@=ez>^{4<
z?i7X#XDo`A`um9c=Pa&~sRbK2afg$Bh_8W}E@z)I2ysTYLjBEUgl*{Ok!YhGAH*O4
zZ2)3oaQ|?8$PKVVsL@X2*?u(g)bd7NMVta3uW1--i+C5<7eYB)l?b`o*25UzO%H{n
z=*swR8)&?g&hK#GGcF7<zbfcq^k>ZNYvKr&j8~e$PRO?=CmRpTXGraFQk3<Bw>;!7
zSjshF0;Fu;i8;XQP@OpGFh)SjwD?7vRpB=qVPno0Mu1`=dJtF&V&yyFWIHq^04s^(
za3Wr1406fB-x*_iK94*)G)T;&TwkS}0vJb<==#}k&ts)psuPH8F)5M~A&ys}rYC<K
z#|n3dh2q6f!FJ#_2|T9_@_by(Z6^#pO2;r>mrnQ057XCk@mtGrqgg1#5}xJry!w~x
zWI$yK$5*OaFwOJB;|aRf1HKKrJc9s$Sb+^UB*grzYY^aJ5k_aw1klW8sMT=^-aWdZ
z$UhmN4ch_&2;rrpR}a11Z4zD!ko06xi?>rialgHu@cfnC<t^f(pTa#t#)*?MQ?)Hk
zIF>*YJ^@_(5?&zA2a_|1CrqJ8!_0-%Kxd6nvX<*OVl&mzeePK~`lb=ABqr$9f8Edj
zN0-EHh<!h~%E<Q;KUS*tGxyY3`<JLqT!E`!AUZu?cRPFN>w~2lrAQapc!=a5a1S)}
z^<lor5}V_VVi-1u81Hn`*MTEx;t**N8|@rJ`j6ux-^X{=v4E)Jp8s_>xdfm^o(&F8
zkY_=6y5(!QK14FfD4Zd3?$}WG>|lMh6kIGQHj<Zwi!LY6z2qMKl);iMiJKK#K7POY
zPWRRz{rfz!0|j1+ln2)Kw)^<rmX}VF%i>SXR1LSfd;O~~(>-DESbUj#-?RDxvnr^3
z`av#KvYLFI`?<_O?`j(xq=h6q_Qm*T+;2JU7ECurkpYh}+>4*lkIAX#3P0r&K{7q%
zuI;XWIt<JhK>!SByuDP0y3>7it^NBcq>A%<wnm0(xW@g!HoG@IxOwEV(5c*2<9`3J
zz6?@i8fjvPsYl!$nPC}Jyp*!G_;AVHo4ww>=mYz=Ad?V;KUBNhN|};047F<f&>GeL
z=<jax4SjL2zjCr3PKhX_tBy0>$CuDRyhnhk_|X_@Dm_RN<6i@e*TeW4jxy@hu^LE~
z7H<D+l{wh>_*~sGR#FL)c^1q6_ax)q{rXv@-Wmb~(!io3$-b9SB_k-&_)1<P>rJ){
zn2J6|mk`}T&W8OUysHz=GwOdj^Fb*mJ!k~^0Rl;86T!Kt_H;7Bf2BZ(9HW>-AXiz5
zOo?Q|ebn9fr;mO|K5fjoyhr#^RkFj7ZNvNw6o@?4CxwzKLw!`05HqQVT*vLl03xhW
z%Ve2dy)<EXnr;~a2B%U|h*sW`@c51T(qQit89ga(%tO{LPgwp)k4bzET@oK5utx-l
z%IxXBbPCs*A8!LAfrt<WuKt(1-3|Kk5C&UE#K1~Q*^)~xbzi$uw-78T=MxwxFpX3m
zQ5B8u4R`8y6ygy8h2RcyKR@%7hoekn1s=}!5g4W%X_CH(gXB6#!kC)w!l#mh>}deb
zug|-(1ul2FzD#yav$uK@!FFx|5t^yuLK2QG(QOQxx7LeWoad=U=Oo<ny}mrEY6|<l
zNlq6&06&cKA9sy@UAI9c+9WTLhl%*`bxkm@)h&ZKp#XFe+?XbhJNG}==vQ<D9n-_g
zVi%n7w=oI*nsoyT?9@Pq7j1TZb-lhi#18<3sNScGT-)!|S8}y`x)FQ~$CdEKU;t(R
z>AGuU%kL?~zztHZ2QBTFvlD_}qXET2&SNyPT1XEdnHO)}mfi{XFV=SrMZdx<=Pra;
znhJl?b>s=%0JRb)HvVt|vB0G8vr@%!Si<}Pl)mBEZI<|_)Buw4#}YZ_N?1{gT!nFy
ziJhiTY~dNF4o;T3X}Rl(KalFguaE-XYTZrLLl#$6o$IS&eIF(0CZT1bohIS*RXzN!
zUk2$0W}1$08`D5I98ECF@A|L5Zp#-5((*Dj>=xG(?e*nCC?52DDz$Nzt9qcmm{X4`
zE`0(+iNW=(>jDHSeHzk8n#d%(4RS?}r5oqD%8uFn<@peLlD;NTtJ#ZPT@Yt-kH3~_
z;8`r*WVQW6*Y?hAOxd(jCTgneT;wh`8n&p)xZHLBG~G-PoF$V1$dxe!8dGqgzAOs1
zmlx2$@vC~A@5;!qe^0E26I*m_Br03z$)oXSU7?$DrcIHZB1b{}aMy(K_QeLF63XC2
z<M|UVbY)K0my5lu4AID2&c?svSF<VTE(_mRA6R;8>s)uOwI2gCU!EgE9Idz5brVaH
zpXcyd&H4rC51EP@0@n=H4TRFsZDg5I8mdt=e?CNYnc*6^&Ta>l$9*bzq^rQEubgBg
z$S2!I!if>&N%9_;?3gN8wSx!fyU=3w>#-42)smsE74}#Z%ZjVha|HRNh_^#dmun%n
zXaWK-^W=&_79ly}obQ8N_b<0Q;jcoC(M-5{=(E)FF0NbCbz2Um4RPjbhD}}A)iu1(
zzC-GsNZ?ZJfMtVRmyNK0%)qc7kQOzJKEBB`wV;P9FHbiD`4Z2ho_Y2rmRxur*RpH6
z3&WmdQq{_?q?Y4FznV=|0qVU{nBJ>xY;JlAB2umW&Mdhi&`QlG{A<GNBVquW%J0p`
zW=Z4Qh=hTVnQFYu!cFmsJFK^viGf~kH9%lNhCOq2e4Dk_GR7S9lTFO(o{H0$_b<QQ
zlQT!xt{q_~$cuyif1S+DS8EU`1Qb{YjnkU_aL{2vW~tY&Heara>&FM3oM5{0fw-f^
zk^SfhK|nG|HRvd<Iqvp(k%CADM;B~85TxPG#ZYlc6hm;(93z7d8qbg+fm@ryD9Y?G
zDJhm4@-R0VC=3ZI^4z#R``w-4x7KH)9KKLks9eLnHn*qjO4dO@x=^l}Ww5Enb?xqM
zoi%DgNa>XNHO##_uBSwE2=;++z!oHlj^fcc`Ir6X{?Z?|@ok-L1#>NXi7*E0SGF3w
z&WIfpyaNjx%7l}uy`~@)TfM|nQ7A_Enx{_jPXAHpNO6r^+_jArJ(aN<>Z_mXZLF2}
zCM#G<b;nNb`oe@5Y0IDTS8dgFKON+BPFIJ@x?VUaW-5}ql+#LLdlKaN_U5kRe|Mh#
ziY&FTf7hFg=&1}^A+=NLr~d(h80r`#=$z!PeZ9Q=luog4M)&Xflbbv6wEu;4qpMKg
zssC>7dTfinIuJN{J#ai!Csp@g*Tv8258%UyjZU26C*w~#iY+p~qU%>fVy2>VVkOW>
zTmnog9t2{lS9f*Hh?Z~2l@?AB8YBR-aAMb(uF(=MIoVR;oKQEIo}%$Bp0RR*FNAt@
zXhxzvK%hE$>W3zXSAU=;)^72PfLlisIk?K~a4^zZ)2<hvSHvjW9xu|IveiRttzD1A
z>l`v<Ij$I{6rC_lg*;@WPYGVfloFv6t}j6lifaI$IUbO`1I!EehM)I%uq@hKDN!dW
zdpOQT*YDKbDr-oVa?Yi`YN_SS4#k}NUzY*tZa-EI)$O($_0MBnj)A%n@gr0sC~M;K
zkMCfuyFc=)%pl>(EU72tk7bpv?p@NQZ5$=RTdonfOgrNm0EpIWL_EYdMEFG1aE#D2
zb=$jLoKY^#vQ|I!C>0LH$ctXx<)7U6htZvKK(WdZDB?L=-SuCWRg>cXUp7a!uFdB7
z|F$w!Ct5l0aBok7`IdAqp@PIzR>#(O*1g*!8bvzSS2vXky+i{ATcUbKS@-=5u_S&1
zpv&NsGQ>%^_#?Azv0Hm?PA+(iKnR*>wp$bV$NMk>7Q#0Qa}py>7)_07V}0k3I<&Ff
z940*1PXa%>gRW7HWX8dxiV|@zCaJ}do(s$4<wrxsJu1MdX|yp9Sg_}M>c{K0JRK0I
zXqFZ-1Jy%8o;SzQB5*sr=lD*G5{dZYJ&f`IPm;%J=P8*F`c1-`*e%pE<1&4Za5U*#
z$ec=6nNgmOm+M;?i%CAnPbuEYy7{E7XFx@Kx8ZmnK!evEK$#evF;vxhtsTixXGWCi
z%ZZ3`UI{kpGzr-W@oJj-<3=;4F7&PGp(54_fhWl-hCY^kxa%y#eK72++F;o^BYd?&
zuUUbukwzT%qT9_K10vI2(|m7s>Z$E+M7ihS{P1=&u798zIyiEK89Y>1gvF!F%)bU}
zGB_TagAyXiU_6x%yZ8?Cp@DMSBKAqaG%2Bk{*3a>UJNZW4m=tB30nozK%BY85R^LD
zVQ~B{NlNHf)N9v3o~Of=EE#rHs=D(5<I9B+4GN}fJ`QYN%g!enh2S~2yRmn7*zRe;
zQRpLOb)u^=$3i&Hky*Q@^LuwEN3ryAqxh#Hgm4gxJ$TD)jvePEMzK2vqIbz~Nl_Ly
z+&>weyN9O;X*%rwQ2Wz4%qu+j{jKR;T|)9+LN?NLJQbWSti!v$F_&KIl0c_sv$TgV
zg%E6-YIw)^<NJuLCxToo{2`4f2L@^$J_o?&=f&UjU2i%5^L_Q;$-wzSRzi=nl=D;5
zkraOEWg(|U9FsE)WJCZ`Aq8b|4wnNNA`+0AYGgu>ThZmw>oslzbAoy>0;FL(3N&hQ
zb(f3oqUn?vW^$?lD9?T(xF;ex&@^N6r5cRGyX`!gNeO5As7WAt=^C@&VeO+vZ07pF
zLx{u_gQodj^M|j(WA<qOEToveX%IY6xe*;QLtVkyz9#Ik!@4nN5(jH$8i%g>^Jn9t
z)%yC-d>ofjaS#Qa<@fMXD|1=cj)+i^p)i=^f<QF~eRRPG=J`QU>05$MV}%renR?-O
z57{KAMt9N)X&!mivu9|+1*}05EfB_nW#Z=#ySwDP6EByCHcvf@TXPcAQHPgemD%OU
z$4Ey??n%`IKOL?l!JEny2vrrm%`^L6m~iC~BWZ)%Xr@v0UX}f^XZj*Megc@T#Bbr}
zEW_oOA~=a8^<lc_ns0S^dpn1O0||d?Hl8K8SPoljK8+ikBl^!*?^_M$#7W*Lis%#w
zwAe#<AV?$qH~z>25ygX;OtjjTBa6De8EWzr&;Co}UT5(RCBTUzl~_O1$u_M0#maq%
zQqe_XpHxWo4QiQSBi{I>`Df>dx08ZT(`qE6uT`sA#O#%nV<9ooS+JpHsx2$rfB!FJ
z5z<X`C|w`k5Vl{hF>+d!q!ndKFk|ye3A;LkE#jyt_RWyGDu@R@@-lzIz|mogu$o4R
zQ@0XlR;9$2;VDjjDB<U`A{McE#(Hb1VSzgmg&nSfhY|{&4wd%}(s}w|DN-{8lJM?>
z31|NodeSTSHM3ejHNjmLCjBmy+9&m#lY*;D;j6CS=bkf{uCt|g%|uT&@^%qom<IO;
zK@7UEDJ>!D+t6+$Lt8?jWBh=OiZgOlcaODUbfnO53lrj0E&6eku~6SAGC!LW(a$F0
zCh0?%`v}S~?EACKhqp#t^+1rol7xR8qX7e!??@VH^vVnWW^}N$<YIwLBX6Nm5Qrp)
zrl}X=jT>$afAvQl&M2-hV6YY(i1_gOOg7`5k#L42S`~Y%cS#aB-@K=z8UA_fuAH&#
zNz?+k8yZ9j#Cm#ZtMTf@kf3WdK`a)W#(Lm7pxW!AW9Ibxqq@J?PUueM9I6FbO7{_Y
zjIJlk+G~@X@>I@;=2}0he-`B8*p{~&(--K60ud-hu+}h#vc5A%SaEBDoO8o;g$cqv
zbR3N-S*@tDDyc$5S0Obe^%l-{f$p-K;`|l~38JCpHBxIRz{?3xH(8~wFe)YnAI{N{
zEjvk2NHj#pL`>}&VZE0detaCT6Cx{qD*vJ?izaqoKeJD@Ay?7Q_CYy|A0_r;b0*i2
z;W<;GvI0A%MZiX7e!((8k7sNE6^r!5-3`P`#do$!&myA@T>%E8W=;usR0$QPszYy@
z&%PLUJu7U47yI0+ibf@3^rfi-NnKW4=)Rt1K|wikz@&j3vkdh{WS7+0?hT9($&0wQ
z5zt`UAj3+dW7e&Hw`AVKRpOVtFzi7<URPY`$-9v_8#y}|UciTG!5GO>anE-4-jgic
zycqU2cRQ+eidqqDnV*EO$P78{6lFkKPtoF0Vv97@5JRq4#YF^tk9ltUHg<51Ad9N%
zQ5wmHPEtGeS?~6U7f}RKfU}E;b1I=_td@7J=LR67B#WI`8mV$x?Wz%Y1v-bA1s#62
zKKz}Zq^c6~q*~6zEPR71{!44Yi*Zu$*G~E*8<(2wP>@22yu<h~GCZ=cF8X^~Yqr|^
zxzWKPtxt2(wL)k}Y30}f-tw@GlqsdMQ-dT+lLpJ%=JfT9YO4V;u*uK#LfMV~C=vIV
z3h(BLK8qIe#>hyPki7)wAt{gbY`Ko>=#<Tsll%hbV!bC)JVN!j%M+c7b%H~I90T2;
z6WG;fFMFOT;U1F7sIw-ZF^)qr{?paJ4W9Sn^!r<ToC^LcQ?1YS_#$;fsZ_44&>d!M
zvvWL2A@+66vQsA(kl_4UKBzX^v%Ssf50p3M=Tf;{$BRJGO_2|R-vW=Gx^9FgGw;+p
zzyz@fUHP7Mf(ep1AmMRhR%C3GVU8p9GEa0REvJn^G8-i0PEV%{-9*9xotsJmpM+Mj
zK+hqxKfK%X#Q8Ks!Pd&+4njapFZ5ipm+P5`^>W0E#z=@EMf@k$^YZPw>BL0HA#q!*
zXWX@?T_=2_zKizUAQP0OPQVtk*<E|8Jv-KLT^6y8wE&l<?i%lTa~fAq?obx?_U(f_
zTlOWKqI(ynjZxoBx6U3PrK^lL7_BA7nHRgnxK$MV4P8ca6`MvBN%rnir|0tjjMJ`j
zjs&jbZJJh9i|LrIF?7k>tzSRl=W^M{Wn8j#{^=+dX)q}yE4x`NAwj^l>>M&9vehL$
z%p=!C9-kc~rDt*x1p?p|)A#Ak=JA_CLl=gMf}h_?<cLEfMU_8i-tlIn^>NVaypR~|
zE~$Q(otAE(Mtt?EH8Y#Si}+Vinkk0lmjZ&55I=}z3HGTrHP%a;<MH)#Kxw!#B7m%Z
ze4kf&+DhGNtRTuJApY>5pl@fXx;xDk`MQ`R3DjOv(!pM!x6p_LDp_d$Ht_T*#c_N*
z+H=;Ngy+#(2BEzBr?Y>t3h}zAb5cAP{M2U+T`BffptsO>juN1iR2H0Wtlt-{%V{-|
zC`X@RF2OGOc7{bRmdyBIpnbB?Qh?WRQXKB#SrO%q(<;mK17!C;6F=_DxHz5-j2IEX
z`EdNZ`2Tiri3kF<P$v5u`B~>1;?H_s*POum#Cj+#qiXpAPh<ksA+&X)O^1?8GS$Tu
zp8Na7iQomK2rUjQP>dIDP*~;{8t2c7xZ$iI@g(HHAs}J!iyT&`u;icV0B93%DBw*K
z!C?6CbESZ9QOU!dtIFI$(}s=(y;d#}6M9O{=G5rhw?bPaHgwe$jiTuhWcV#+{g>^9
zL<|kg%T!Y3%Vxb(s%Mk)qbDIy%H}M@7V~qydZF^g71($%`q5*WS}CW_OFFc$ib{Ii
zci%bJ*;HUc!6qzi2K0Qb#7{~keeWDLq*FgSKL|c5w5XhBokzGjG47?lk;1u`%kyw~
z;t>$#<o2&)Z+N7W)G@*tGIhGxVHA2{^@jgoT%Ich<xluMB+L19Uq}XWDR2!wKkz;R
zz)O}rzGiNhD|+KLVOa)B=HPtCL5UrI^QbQMt8sn6jzZXqlngkiX~U(QtTsN`Wm!SI
zbO}fixa4}NkVLV7EOp0TWAuuMo^yhFVIKm*ndYO$GfBRjZzOu8DaT^#mfN}WR8u>v
z#nkTUKa<v7u$HaV_&;+{BfJ{Qh2@Fp0hAuc90yFJH#S&)qmQM?y1W0X_}-VqO78^c
zVhaM?$|zp%9yijmWyH?#moNk&6V35!L^;$Vq`@d|Mwufj%(DN{XRcZ+O_C^?Gez(b
zN9*Hj&W`_rC5AJe`Y`ZbZZ)R$bbWz9rK*w`r7HMG!*IE70A5;x30BEO3$nxahH>YO
zv2rzsRY}s3QcK@8cHJ6#1CtHdgmYg<^LJcsgu3*_GVf$0ff}~bnD?%}QRjD+lIYEQ
zfEGVvynb8k4ccQwm>9c;V8L_c#?}3~$QF=fuwpOzdLwDFm3JEhig<`1(NUUZQ(P5h
zoZFd8Y>KHolNY^bltsts9x}U<<2DnA{TnYB`Pc9>F{+HgNHy7s1veYV&(nP><O9i4
z#%5LiO-7r0xd^k3uLhJ0ecU<Jc)%AcJUt{^K5cBf;d}{%4dod)X{BN!6%vF#B{D4G
z(jU8LvXYcCj#>Yx1oTW<fmP*HH^dSI`DP%}7aXxh#wGM(+6qB53T#p8T>P}&3i($1
zg=}p%7aQNN2B(fvUDjERpG5tv?J2?Z;e!wpwtGbMQ(=a51#1Ad8$0lcQy_)?_2Zwe
z*MHUFJcu?)P$bH!qmmf0VwA5qFQG@Gj_2i57*xU<OcI}wLVA?*U)TI^y1S9X&=sMt
zicEozh5<W!Q0!zU%$lqtX!HrZAbo+3^NnZ6oRibJD_tp-LVfj<IYmjY1@58Vawd%a
zF5JxriZ~P6TtHLjI4^g?;mB<8J@p3MpO|V&ZFxT??rTkdTI8M1HS%1uqvtM0=E*l!
zz#NxOsVB6_r(^r>hM-b1B%$kI+Y5pu?*Zq{7a-KgFoT(%&^8zG=kojeN}RvnNQ*da
zF*AtXBPhw!=ObhxWM>mfSE~!1AIyQbl6*yUbV2lbD}>-KmD(st>Z<P19qxdvQ8Rwp
z^p)9h(Hk6Ei00vbB8%QnhgYOWf6_+_Y0hd0`MC5~r<gyzorEL12v#{9<`uHP5})dv
zIyUMT#(=VoO+HzqqnE^7bCp|ovI>bO0c8-cLm~){bhYmbW7Qi;ry1)MXHk!>GJE!p
z0;s-}!5@rgwZSK}6eLtf4U3R#`EW?u@OZAhHZ(#g%b_POul5_lQV&g+xWxahaWrIh
z2<OO`SrRH&c<NY5pe;u`&poGOIUk<ytL9_}xHcr=hiNu#wU&))&``(SPeyHHeQE*(
zLzH;T1{K`awJE%V;O#lXSU{2@t4RM&cW@E)!`}$eG0WJsT`mwc0z6bJ31aF2hpQ>3
zgD@#`4N6K(2yw79m&A`Kh&qKwn1DV2lHTzV-J>MzQbw2+y+bJUsCegy|K^KGxjcf3
zB&<vE27r$ch5tcM{PZtrV`2F#AR548mNyhW8rSX(7>tpONNUn?>5Z60ba!^RYsN3!
zA<1I$G*NFr;!-a*D*kAjD2ZkAnYai5po{W@JueBj>pZTwh*SFvY9v|hNsPa|$Enw`
zX`q=tKYrBdT*=~2{<c^A)jgtQ1)#T!hljr7;rsqi^Yz52ZU)6_P!Dnc)ft7nUW1;}
z)aqPo+`-7#yg^bnEr&y1c=ll_7A<dBPQ2Gg2VmgvP7y~vzF5q1Rh}6?@AM7`6Mp-Y
z_<P}l#yQ{0qfJyKS^W%;b~pW;vB(iV9;qOYLe|#wjj!#^$Y{oE?VOaOAip90wMb?Q
zwgULW1&Gab$p~NCBmVb;48E}INj>&tDKCcETom6GYHZX@TOr~>2qO^hGQ5}cac%1o
z70%SLJW+i}(xS83YJR$7!c`qkb`W91CaH<j5*`~BCNd(&4gea=GpsvQ@+P39;tHHI
z&SCeS(X1--oj07@Neozoi!c&GY|biK@QLxr<>CL_9kQ!%5K{l8=M%<EIER180Zx(a
zi6Hsy3QK4`OhKEUjcEh*8II4x{u*(=BZ4Szm7#p+nG?Pa`gu4$4=KS$*rTNc9ZN7p
zefEbrvO=SP^Yc(7kPmj$3g8kkzwJJAtzA84WSOi`3>lI!?8G0i80_q?o-{wN2>E4m
z=t=|%F1z9ue$;U*Vm#|3b&q{DWXvG)aM=@?|H63b#qhar1usUA0zOp-&lLXNB-O7&
z{HHt4Tg;flB!yO)OHMY$wSX1_-g`Fg=%8M*7)zTGpy=o<MWI{Y5@fynWn^k|kc=T<
z5VT}lyUC=4RECObV`f1Sj28gscpf}|bw*2a9M&ujtG{-eJ!Xd&Z8+UwDJ%1W)#j~<
zA_K*+8|Ez+IXwPLYu=Lfa>4etR{T~&76~5P{lo~!fwIP~jS|CY*lC$U9N2cI5HZEQ
zC`@@?60!x7ujaiIf8Lu>d+}HZ6*$U=&?2d)dbpa_wcpE#%H}684&|FvptD?;7PQ|r
zw1Cw@MsPXsH_-Xa;o^79_m_m#{dT6Rm`)si-9&SfJ%@}D-c=|;aT{i_Meljah)W1R
zckKUjA42l8iRN4OeRziSx?xUm=%AJ03C*?s3W_)!8X|tSQt!!3q6COfaD|@MO4@U_
zx@?45_LJrrE#|?v?tCq^MggDk-bFu{)+-S=Jl9U<6v!+p9sSK_HM%z%`MtxZEew%d
zvJqaX?=0Lb;$~=!Fe(m39K1b9W}1^9za*gy@o}osAI;JljdWoBkS$Vy<4uC6l795u
z_vSut<o(nr0s}r8HA0#)p+V17hmIJ#4}?A4KSZ3gl$H_b5*bYtHA_-`Q%&dCi0K{m
zvKz(Az&-eNZ~~$=@PX@%3C{4VFA0`@!WKEXwO|5gAA08aHpa)>BhC&17;tK7N2J$@
z(vAc$$Z^3FMlDis@+_OS_gixuVI!~7VD=IUUrm;JPC5$@XDN=G2X`7D-V?U`2OSj|
zJ(-%pqQ;2DOawam8>7t~x-n-6f=alugc$-iHG_1|hh5&dx6OBBLdE3^|Bg(FP8b4f
z$AJ(z&v?!sQh4?0AwfF4t2HFZT#H&L1>Ffips-Fn+nkga{9jhM2H!W=p^b_0o~_!w
zXSAE8q4yZLx-OOtO+nu!jL>km@#u9CyU)_4(gqMFwB;2~M1-ER$2k1CuDw=V0@lB>
zlFUKLt;NHPOKE$p>AEqzt7O9tWf_RBO9BFR^1C-!3&w=+9Ihn+<ZPl}!!`ig;w@A4
zkO-NGs!|{6Ut~Cux|T}jTAKRp6XTUh5u4s(qKi}!aR*yC;=5#HmAr3!Xhvks50R=}
zWQI^cPwXQ~+8~$)npf?Qyzf0Kf00YsSc4g!lEKcHU19!vYh)TG6^onPOM<Hg^`^;%
zAZm#e+<d?oKV2_z3P-`BR86j&;JYcqtERnXE!hx6c__)Fqg*Cg(4_I>)!w?#{AZCQ
z(P^hQ6M!H@9)0wcF=l-5J(>D)kyHuQ(wk#JlAOyauJ(FRTxpmv1ycgE0sXX|z<)Y!
zsM;IMfBHt=PH`?tfcDqvnv$8&lu{`;$;iG>#}YW3hG5)Cz@G8X#><kVw$&x{{qUU0
z<3nZTgTN!fpvBr`yJf42=iQ?mkvDdymRP=RyQ5VwG_c%)n65R;R!0_mVAl&1PnN7C
zA|DLP)f>(5Av$=>upu(+6@ifF_<OCbX&M1nFNm%NEih6@OI2U&G@k4eXv#;@U>(W}
zGs%I)^8Va7+An+`$E=<UEi!1qY8?EvaqESFmV7V(Xn1UcH05h!zV~2wQYzbIgd~O-
z1BlMc)M1jx{A<jb6}~V-w+Yu3^T2|~Zpu`zo@?G(si&3uU~BP<fyN{0#h8DMjSB*|
zjSw!T>gvE52DDHO`^w133G}7VM;03rie9FwS$m8x3Ii>mY$i^`{~fqhFpu?H4C5-T
zNAT8>)r4bHgqvpED@O5k`f_op#4i!+(>N1Svoe_9ns<#q-k0-v*U(~s($jn#WoUQ!
zMl#jp4~^O%LJmZNT9UelLZyRjk|-*<&TU|o)`<>?ffiFqoP+4XujiUoUk3foN<+4w
zpBSa^^-AzhvT!aNW9)rDBr1$&7GUeww1}MyDy3zpTUML@7KdHmmY{6`NCf<wfcVI0
zpa|I(^O2YIkw;4oS%%<&$jCw^2>!@?>DSQDhJ>CO5GUIE=11n?M7`ZlS9j9E(wx9V
zoZc!p{S&RENeXD|By}kbbt6Uf9%JsB8gX~$AW;zp;s~mm0qv8^GqCt1r9mXR5TkW_
z$QtryRJWX5RZuDMHHM@teUzH~sAs34k5zI}xP~ZYm5l$#_`{<`sYp!Wf6_Nd8Tu?0
zdb@GmwurNTwYRGlV6Z2E5|Z#B=}h}djP`bTkO?2m8E0=<CY(L_^%~>TmEjBDq(ZMw
z=#qZG%g7kNy579MI3nS1UE8|=&n#|RPC%GGGSv;&Sr<-;IM`pe*=M-4puE=CS$q2H
z78D`7r&KnQJSjLE2>7beJIsQuk>@?xPN+RgtD#xPs>_S?th-sWdXiHm3C*fku;<4c
zkmH<!zUlx<1DrJ$QCPJZ{(_biET}SwiE8mb5lP2ivwNX2AS+}m2bE-@!S}@1q-Q|w
zr0Pal4{r@?Nn9J@ZDz>v-2u)@QHMubU;Gqk;%#<`Vye8QsVN24$A`k^jI%XFj`+#4
zTL35t9uF<?_F}6nKI-4&K#BnJwdD7p#SqpWI@EeLC<-%4!oT)mETnXAe`n6$9U<4)
z>{Ob>W3=BqzAZvK+~FD*xCzXwxFJ$+Hmg62d}%r7U;)BZLSkT|va&dOI<7KzT_PJp
zmXAI^w05E%-QhV{8Y~wX`Eqdys*QJho@yH+Psal>LsCISTw|92zL@y9Ipweb-FBgD
z6gOkYf<VU4^Vn`{TCP?!xL&C7*R-UtTE-l<8YbH?3eG%4gTKjEK)4Z)qjR^Fa-P0X
zAA52-3mk^XtXQ%)SZ4L8$jVn(G-V(pID#o4h3})nTDvY}{muH&C`8-!F`cRC0-Om|
z?uyLFXCn3aI}lU^3<@xKWT<yW8SP3UzIhzkU8Kd7A*Cs+r4?XHc&+hFfo?@fAX<kq
zXv;;ww0Ide^f0@>9sbW_!IE-}X6tRh#>2Ws8{!<dc5WsSTCffD-Pdx|0CmQ7^;m=1
z<9Q+5(5$q?=Loc;p(|C?(R0a9eAZCZz3S?g5lIJ<qB53QyU!0VxAP@AW+%~(5=}X7
zl>4Wxef=aWQa)m^7g<VFhv49g1C63F5m)sO7BN!f1uRj4XP&q0vDz$%I$?fHgj#Bb
zB(mcIC)f%j>2=oO+$a%zqK+7%2TKYmAi6B|`={oZd0Gud(aH5SOs<vhl|XNbdO65E
zG(;>&`K}yUBU;s0J<s>t5u;gkOQjsCWQZtNvS(#y{i)g%6x1NDFWE^foDpT#qT_*`
z#7>5Ekru(3^yz7p9?=_VP(ImS_{-S$qzp>sS+EowbVH7tcV>sYa!2Sc0BM9#?EF#U
zFd12D+kA6nerS2KJ_t&2+y>?oS6n(=MdsVrhwZkHi4zJVxx1M6&n+|Gn5`R!loE#(
zk&6ExW%-Xg&2{qwcb&i&(TEh=bHC}jSvRtRMo=@HItG~XPu*oMIVXI=Cgf5HUm^S#
zG%$iY7ns3ec0-w62^J_ARn+SYz6AX}TaNlc+pP7yLq5DgFLWIzfS+7P3cw}+b&EHG
zmqa`q!(vCQ)q91UfXWM)@M+47d@tno_WA?`S>>fbr8t++%y0Y2`1v7?oZzM*%~Smi
z^))~wTNgCHV%ui@YRp|6_*JP76R6UFbj^N9s+w@v7_&q-6AsM5Lc)cHvW=VMzhmYU
zGjzzhP_cr*>;ht|#N7ycu4Mazj$m?1vdrBVXlqE+0x`YNf=N~cul%L)@SsS?zIGy!
z*iUs@nGhy`&PTPB($oMI_{g#7Rral(aZj-qM5fo2%jV+yQ4;X<4K?0>N-GJnFSQ+S
z*T<F2V|>f6nQ!k1-&cZiUxb$jj#Mf1OdC@8@-5~cTf_ewjsVZ+xuOJXgNb^MsOhtp
zS<SZv#90B3F2tM|D90bS8kPjE4?ye3R;PtSvGP7^Tk9PtGdjr}yfKR-XPI^G%)m{B
zC@XRc+j-n->(vE;>nE%-=>cTT4_HwT=tfy+_Oa9=tJ3*TRi9`6JUx7IJu41;Mn$<m
zCqR{=js28iJvAd@V85VhaajvAMyex-2dw#Dv$nz|r^YCRDgJQ=lKQyp!iWDf_e6)K
z6tTy0#9M<%72+tE5BcZ~8K!aspVcE=4k!F!Ho|deQl2_1%UaSWQmnYaLhJztg~0Hb
zm_x^nc^kz@)<UVFajLJn82|?{ork>E$|+h_X<$da8kjUjeO_a=U8XON#+L+UlZsz6
ztRovE<&CW*%0rV1)W&1xmAxZn*+6;GD5RL{_IuvhrjOx4+{yYUR}F2#@rxPzUgYSR
z8qb;QYheSS95?696YsnC%@6C@Q`_N`Tqfw~^CA#czdPLL^^X*f8VV7<I!+Y==4tB1
z8AkQJ;RF7(5ihn!ROlQzZwie=4@Imx2f<e&(e!FLia{b~sr8NK-habttAYi#3HE9-
z2&ya=<+*no{f<Rcpp;P?dJKGdLfpa0n+6CiQ$72F`9zP%kn{EP@+59Gqt!_OUm2#x
z*g~^-V0e0i7BvB2PDVQCkV>3wZmSF*cLc+;j6hmLHDM7%jFcHa^n>-|jL<%_Tk_r6
z%D6}}Ns7x-_y1=cJ1blq8q6bA%aOrEkE9JiOpLkjcvwVcux#@}4hDOtl5K@-8+U>E
z$R`?iCg08jwNoJ@ozAEurn$CImZzK?L@b)bCu1KTcZ7OAc_g?-Oc)V?>iP79t&1XM
z;pyOa9h$9xALj*`@6QZ=J6l(sDdEw;nWPDI{CZ{H(HQ){JZuB-+Evw*yB825r&*SA
z46s(-8#U_@O)4Xbh~_NeG{Aga{k{3c@_;?eA&3@&sVs3Q_0><tl|jLCmxt-2wOQln
zRsGG@^EX9_rH%$C6Nob<OMR7SrhgdOWf<xg%8>*?jGT$(?CDHgF%v(v%FY%=N0w-r
zU&^Lwu)q4>Wu8||eKn^7t6v=*;aSmDtMlTMZK=jXW;i~Hgc0UT2ecoIBe7VFWnt^%
zobY$C4qUEJLK;d*+Bew8@(naIEU!DPvuEjMd;|rAsbFP+PY3HKU0uJ-O1wsDOH03s
zn}IU0$Cf<qNws^*XP_0LZ~wB`^TUh~z0v)!Kebq0L)hz&U25GI9M!EjSF2ShtcQ+R
z3qA>xpJMZfGN;-mSWY8S)C@bQSVS2$5XU5CW~h0=R!nX9tc@&Nl%W>zc)FZ_Dz1kW
zdsTR^4I$0=%yqSNI<HiZs)S{ZNby2wzg=^ah^rLLJWTs>X0tc)%hkYCM%h3~oUOWz
z?A1%nrg4F`QpiZ_S{y0disSU|(dM(42AcITqxDeQ($pIh%pR8n+VZO4hH4QT@>VEh
z$C<yCM$Xuz-#QX9nK}a~cm+hTxLd(xRhSQ79=IC}gs;MD2o6D<Cn)FYuS)aKSly1*
zUF@AisF)7|mc|g&er}X?vmMfSo0{NXu}>qoc0_HhF&{WTV(m_?afxWIl&BXE9+gz6
z2A$=(Z>R=%is^Y0BOT7=OM{JPHV7k~%n}=g5VhZ@h9nJE-%PXWmVz@aWmnfVXoo4B
zCWyKZip{1^!q#4d*;k}j_cZc$lEsJf>l(9iXZVlB`ZSd)oyb}_OS9Dl8_Z4H1LrKB
z56Q_#n}UixNljjBb~zwzix_<JscK<FBxnd2jfhf`8s$q!7yx<~BDg95E0sh_QIkO>
z;RnGuzyrCyBq6pTd<7A^)?c7Iv3_@vsr7mMtg^^ONDF-Y_`+ew+Eqs-Zfd^M;T4Z3
z44V}u?-l2Q1aCo*kTW3|VI06|YUQMa?gRM&5hEO?^%A8$xre-+1$l9sgkyR15QlL~
zNLhY|D-_my6ix~8aa=bqN!Z$zM^W;ikw86IY6-M}=;OZiixNKH1g;o_GUhxfg8Gb*
zWT-DI-QV@lJ+#MDo?IlQ&TvAC8nR|`g31M9jOPijkyJ&`${>EM-b+dNWqP<|K9p5W
zfs2(GSPDft)tfa&x23`2vDEGxKgpp$%}ZOV@(LCvNv#Ps<1W`xArvY>f+7b2ri#ic
zL4#y9FV6frJ0$Mv(7p^2_%y-NA+VObCsESAoKY>r^Ti~sh`-{uccnpuVUdrb3Y;rw
zFdPB9@3LNcFreP#kT%)k@}m_&xoWv}@srXjX)Z<NF=Je4;vO<rFmnO(1be&_<3(JR
zPQ`_#)R%2MQIoaA9PJ13F1tXCDp2hN@seBetcvr(L_|R=4E>f;#XUX8L-iHgoU`qU
z5hxNro#%P;6Fi_LjDbX0MW@!M+P>kYqb#)KN^Neyaovb!AZ@~^cUz(9%LyI*p>}u6
z-VX3aK>~{dt?3VU#l|p!<}kFwCi_{FGtg9pQ}MGqjB(?|Q64W#opICVuPUoFy4}-W
zV6H_zV+fW0m@o(rD-PmyRjT7btLf9Y?TGK9#+g(wP_GSgryfm|nEhyyf6G~DMD5e4
z)B=)DrR_GFUP+SN))6=v0h7pPBPA4^s8AcLcfOBbbyfGr3P2!h<{FWEAZfuUecI{M
zd(s~p00Xs7mZz8<R6y8IzqD~2?UeD@0MZr^EyJqujgVjq69?z)Cs%fUIy~dC0x9!=
z^2}O?_(^?P+j)LuhNMnH9e`DcnvhC#)SWY+r?7I2g4|~+CJ5m@xK&6GOINX5-M8m;
zx1&X^)wv~SE1M5XS4nRhgWd=($kz#xn!tka7W)7%3s2rX0wek)FAH9nB5xBuFccW^
z!(^(FMb?!aqEc-?%&<m5rL<Zp9Oif#(z{r_@&YmK(Sq2p9U&=M03Q5?)jlcE$mS#u
zqZ}bKtwNhQ2tP#6s2nTnF9~}uqraoD72wXAPM`$IK+I?Pbk9T0@zPWx=$n~dEQU-x
z0P2D|PudN-0f}Ctm%iL1MJg`4%5!9vZW41HoeM~kJdI*HGd%n3r%7j|UMDxCsDoE~
z&Yl^+41IJU;U?h6{Hy11&$`mn9+EiyMEB}p$eaSDt~|D4hUak0V|kT0!a1>2zb4Pq
z)AbVsyHYKpj>BkggD3xLeRXKn6h@1!BayLG<!ba4H0TD>AsWzeGKGff_d3sX`{%6>
zVfXiJ@bs|1u=OhX;KhxeK70marP0E|-=$x9PNT<XKcmn$Lwx5Mprbx$^gP%U??4_6
z@MA0s+%5^F!SiLGc=1?rtl^fl!$&w_*%gOJnj40Q6IPmKK@+!zE36SMU%a$zpkd~B
zrP@o&X-O&<Y!%W4^>w^;c1LZB5IL&w*)aw+H_rO~Tz$0&tJw~`H%`KcxY)9)gY2JI
zH$oyK9!}Le#@c*N%f)8)kXr4rhJ_FZCqY>2C`CFThi3?W{NwKHz7;Vd1yM%uan*pm
z!6qcBp|?7pe#I@9ORFS>LAEeEHA#)U*_rc>TT;-9e3F3JVkt`c`b+mZO1mV=i*g7m
zp(cSoB-na;XQStWuo=$=`xwD|8%SM=!I*xp=hwNhQiPr;lORHMq!lrL|2W6IRZ%ms
zU<l<Cr<gf;8oGpPSm-&=>?TQHWp&?U%ShrU^d<)9Z}_!c?&+IQoI_#(s-)<txp*@=
z&G3NVEFPPtN?N|4sEEsX^F2?ti4!f1H4jf8mKULTHNVocHQyzcNx?J{cnH36=>68l
z+<9Ywq3euzCnoUPokp95fp}-Bw@L7cNNDkxtTYxK2-`kKM?&S06e&(y1}0-;ka_gs
zz++*aki#9e)GRf1w-HyPA9uR@pR?>F_dk&loT56~mxaOzJ-`g(9u<0i6w<3$s}Ekv
z$r3cdCQ}0r7!k#x1Wk5pOQ^Y?1@IT?L85a+-{$D|WQRV?GtrdEjre7#Z?Us;-nCIu
z>U#vXkeo{let*aNPXdktK_Y%LrS4oF{qKwX2vy4us0CP+6e#%mg(%SpG)bh+l_P3M
zRN{vav(GmX-^RhTS_m!-yRV+ilQiI|kV4;Vo_`?X#op+;IEV?0qLaWKN4CnF3#<(<
z=x8I#;{e=dXjEPZagigWwDvKB+l22)#~v@>R7cgS7Pp$z^Hk56DbI=L>||IyFl+K%
zXViN73QMr48v?7RWEy+9cAV#yYO)Q00998>zC%g|oVz$%^E}6v@oQ2;s(gHoWXn(<
zkQLZ<y62`<x&<$HJ;4HsEM~Kz7FK&6eD;*<q;#NuJ>&PJKXuA=*n5%aA+?^#t53Pk
z@7X3#`8{Xxdj#%@LadT2eaU9eyb^wojIWglate=O7PAUG_0S^o^U<hKGpT1&AqQKQ
zRDMiV<39C_l`IE4$6%(n3D;U$q99&YZt-kLPY_1D5{5Ui+M8%^XJiz)BX?R8u8r@-
zc@Ci4I}!AwW=JHhQ+@S})qfpSlqa$lB&Qu$V67*06`YUYCDCQbltp7o=T|}hSl5KR
zo)^s;9M0q#Y`U)Rc`6Tjs`x3$)m(4AloC+W5{#tREGY{D0(`JzKP=T4{4FM)UkFfz
z>?Kp(HqQLziE#24c9rInLMH)gP9mb5FNRosmxlSE0HlFBg!T9cZQvN~IKpmdYwdhc
z+OOdqI&VpAUUhU_{0E0)u3<5kF**cPS>Q=`$CrH{a}7sCSz|d`jvdQ*bWZ%*k7GnG
zo>Fa&%!TaM`cZ(zPc1sbU<QiLoOU0?#ephy4UFqh;J-DDoCYA5-yO5dvh1qYgxYYf
z-}{lXiE_rQn?dja@pb$dbgMu?7YvGh%i|y}jOK&!1rG$=_mZT};>)_onUUCGg1uFD
z@wuxux<1<;-iIL&b7ins=x6~v2RW|49+WDRB-k<57voL!TsFeR-#Opi)v+Hl%+m!2
zPre%@B3okTUk*4Pn!6cjkpi@D{>vFWv6EyYl66Yz9o<8pO;Q!j3A@{d>1X?iFqJdH
z5TW@E=wrmt;9QA($2s^qu(O;iQvV$&fKvavHhR`rU9i0ssxP2jVi-7R)bQMB<1(PD
zHUigc3=(`do-0P<x;?QgZvyXz1%Yv-3n5cf`m+r@A17%oPp<$VD>l$TKcNG<shoSG
zS03p&I9E(3HagzhR3Mm1>e|b#E=A;xWvO9Al0fw)lG{GL3N?U&v<%Im1J>JL#|_Tq
zpu}B{@3Gq3Xx~qKi?<!=<mtI1?u`6*NeVa-%@xV#B@&0*iLg47Z@HEBc~JT_VQ1V&
zBt_jZ(Y$kA<nH&|&BZ$lrT}gtrK~1n(V>L79EOm!3HIWm3yfL+x#luFIh9~#!5pu2
z&zkL$3R)oeW;R{{ns%x?exYkFW1iDslzFE>MBLLoxvhIHHr2>-aILVG%yl2B;wL<%
z+L(YNVP;jcysq6eV^h6rE~|HJV-sV{rB`Mf(IqZ{B|!X$HwH}yzh1{j4da>s?w~aW
z3G$zVsmJ@q+S|h?zNOWV)AkeNW7lJoLQy$jt_9g%@w4%JN0*=ob9LwoT}7y>cK&G2
zd?@PJ#&!=O0!n1_R@@kW^vd{Mz>M-aGpehMp*mdPt;V3o6PS&c4iHpg*WAr*)_Aom
z8VpeVR9~~!$U%BxFRXpSeC@TMXZvfnAZ{y6k7__B@J*?sOHK2jZUSUd!hWrlWD7`;
zlGRgF+^LSpmCps8AtMOS2Wrg0=);5qs+~xWScOv0d?-#d)(%zF{&l^v$(bgxM|^=G
zy8ZPAY7H48u%tuTwAuB-D|Rz?aN&yAUDaPZ<&okxu=70`g8%*J+Hh3=uJk*3h!C^N
z&$qtnTJ?>-j?+-k>HFVzZTV7P0JY8<l!1<Z!{y$lpUH>ASjy@CYDmKW9<!fEr(y0T
z=jbO_dtSkt?Vb+xgS)1JP(tTNozLn12s>#a(OcHz$o|pCk9q{{UnZ6EW<pdXG$W`r
z!`3@*U+xyY5hp=4WV)?(6D9{ky24{5y&l$g0q%xNR1sOLtgTFt11dAtxcCKWkUXRz
z&62sNwsy1j)h3^@Z-i8~b-xKyyKSWlU{ln^ypl}y=mgK9rE$drL;?w=wlP{q=%u-I
zV45ng@Pzo|iV+Y65>qDXLaN4ORWvd~?rfTH<{lSz<kokJDS+1ksY)&nt1nsITxdR=
z8&P&p!ybltNvFVrr%xGtaV*a^P3Ghj@x{rl_;c#~IE}=4BDZI%H^!P<Jb`AaVp1it
zuEp;G{{+DlPlfr}xPTRsi;q5_tV?sM8dzhl)<_X~JT^#E04N1c3L9qfT=Sx<A`%Pr
z+vS)T#vy^LAdLWantJ>db7fk@3&(V;wpDD!fvz#oL%inQMxbkup3||G?@H(J-Z0YK
z*Cp`XaQkZiO3R0dGcB{k%xi7eek`h73otqhO)~l>^Da-sTzgPTW@vX}8vMRg@_o!~
z=pIqCCt!4G^^+$2r57wPw;6I%6YC_mv6dwSEaApvv+;vIvQ1Bvdz5fWpxmQWXsDB7
zLXfXgRfuvI;!Ub4bU;)oDvCf#FzM_$!2y}BCJb>*8k`^=&|zNe*gB&H>MJBD10K;f
z*%-u+9JZwwS_@v$SETGtT~#G9Fm+D7^}jLtVm@U^jTYAON3OGqml66ZMAjpph~L0F
zfPkK7UjJZ3&;T8)J;?=x68M>R0d2lIRNHSHrnN2J<>YL>Z^JC-cWW^1NGbG91j*e@
zq6(;5;ET!Xhry0Va&=oywQmM?g3fJNS?2ifD*eqxAaLq+lC!W{tCC9{f3HiBuoGz|
z<l*Cn!4S+=<+mH(Cqy0@O-Ky;SokJ1evjhstn1}%&FAin@L#JNiO}0tF17$Cf)#51
zzA(@RJv;;!lBog&RMnnszI&@~k{B-^RV@_Nq;^VfPsvtexEWcvx1IDwFk||C<YBXt
zA6sG^NYb6r{Uj(VokVrL)wn!9aGgqi#4fWXn7m<&ao;iFInm*?me`F%)X2AZ!pJ_P
zn+Q_LNg^Ei0zx1T4Q@ic<}|bKiFhn8NTgqp7rBm?&6a&}dp&(PMf1=uMNwKF9DU2L
zQN?+XR|!sHG<#oyk$JheMI)zrez-pFv}|}RrQYGz{H;109(zbr{MxE5z7k9Zf3-RO
zqp&gkv<F^CkqpiCP?TDxI(E1Aj?v+gQ~6o=q+dQVzw9G$G%3JYB=$BCA}SXD9yd4E
zb%q!fqhZiQv!{*9CN^XPuUeeC+GM`SZ9Tg&_{#;MV$V^IRPS%}8o@|^^pe%QC1}?*
zVNvM)d9YoR3Z9aN_iIy6=Wn}G<f_g!LAwNUmZ^q+=9p5)<xB<>(7#ZAQb+{`UKP8(
z^AEYnQa%JMhNO-mwK7$&<mjFK^kXPcqj5|^VWMt2=!l!IA2S3bDJ1ce8q4usp&mo~
z1{kq(V<V5EN7ax(0-puc@JO*^^mTTJ5PK*%<bI%%Bu6_gsO2&;j+_GR*A&8s?~irL
z{W1A@40sOe3X*goWRw(-sAHamY3Bc@38c4ZH{#3|LU^{d0G~3|;kPaKh=4Df!<Ui+
z67S1YpMPrg*6}{M1^FQHK51gtPW##-Nl#GOG*ROW!9<JH25hsy`sl;ZmKFl)HH2V*
z<Dk`JLC>{@-!E+<%!XA>^)=8B>N5)6M0A~_v@Ahngv_AcOvDS5)NkV*UB<M?hbk;3
z@!9Y|)TtyD^tOY7qFOSZs5c~uM3Kdg$`L$_oFv8)0!R#3qWwu~!XJ);PE<4$(uqn+
zx%;UASw748;`90qXGmXU$4S!n#5;uP->zwN=14<W9I(s8+>s*KaMv?Q&@_;JqEhl5
zM@A-`-f3n!Xo$mALZ@+6vq2@=AW&d3ckpRD%U1vYJ>(U}Ku6Jd-71lOjn2Z_9piU=
zyis2*;9MXI(6V!rxFd6*W0>4=@;M}_#DR0@G=+&h`^b7{o5#3=^c666wsTICTsY@B
zyQDFoAYzE!iCOd5LC04~{8XH5c#8Eoj9*=FA9MFRzUZUtLxII=Xzp$w148Gb8nPWP
zU8ZL&zoj~@On&t)$Ff8{U8m^k$>i+^Rx=U-m^aokfnpQ|wI<c7{6-4{vUju&-J+s^
zaYm;9GsNtDVaS|UZFH@-T9foq0U$+Px!oMxBTO)~__HMUL9ao4U7RkT-frBpFQmoS
zHG+Bwb%57NbY?np9x(3Pshdvsp9!OXYs#`<45-ZA5_6`C53=tH!z^7dvRe@615wk2
zag{|Pkek9W#$|&wyA2U~>MVgc$85Bf8e)qa8V{T1z!VKE#QuQ;v%V^T10m&zsK#dF
zlZ!Rr8Q^>wb|N}JHZIsS_0c)j_~$fIfEL0vHB!e-D$^vZv!bkXc1V*T1%@{sC?}RV
zFe6W;-)9YY@FWnPWH!n%GdOds+E-_tpBT04|IL+R?S8)6G%F=n>i_=*B6r4W^IH82
zS&&E!je*lv5vEqM`nbuN^NL%%q@*N*-pWK3NmkeYZOq%EGgW}(Lsd)27J`~=fNXds
zo=Z3|K?CwnpAtcKoY0R?ZxzY0X`=b9wsg-th)`rs+>2d6j1VU(;lK>_=TY}3muc2Z
z004w3Y_teEGwZ7FN^3!m20Sv8r2<<B%p!?FD!rpQye{%D;_e^|@aqdM3{eU&CryPO
zG=GiOxNY>0A--y@dXf>sn7w%1XkM)|LNxrWy15p(5CDIakGju{y!nw=mw~bYT&}C+
zX;(VF11h5xTT4~@rWBo`F^nP;1o1G8aV70B%m=Rsbc7v+0VvUy6yiC`{L*}VRe0VM
zus0w8PpD}qAPo1YrDoGL8kxf!L2}pfeOMG6gqvS6F50H6N(h>PkJFYGZWEF&5Tes&
zo82-Z4Pf*%OR&;D*HZ*|s~nl;(GHPs&(oNM5kzEd6-yX+)e}R^J-u}sF9ky}NyD?i
z=Be}d8x23}m4TZ!fZoGTD>aoJcbg-YXoTZvf&9pJ<3%`ay6!SxO41Y{G!#@%<?Erz
z6Wp1!r>Q4DHD_HA`X2OvwA)351ZABCzyWCXE9Qj{hMa>;5s`xw#0^F!2F|~a*PEBF
z*V2ZT{6?~D3<MeXfuc%PkFPV2yro<9Ly5TB`Zv-I&1J+F=IA2bB~}J&3c!li`(#RR
z0&O?*pVCu8YgwJY*#Hekycll{JxV)d?r+w(SJoUZbr`~G1>%#9J(C@4j-9S2njr^7
z<ZBkd1=MRexk=i%&U~>hvXF!nRyeZWt`&xj#i_Qr!iZcSRyj9VkV1pXanlnAOU0*8
z23ME(tB&iGUI7`1pMgkLDlks6!Gq%e_bW|Q&j$U9dyaSn>QwOa@o$rX%-N#dhY(y6
z*@Q+`@{>6`!eZhx`ktO6i!`{kPkeh4l({XZ!b{$ukpAI~OjiGNi0_nf+6~lhP%*vY
z%TG_j6(m6P`SIH&YdDpHF7;qK>WNgLacQE5<wpFJ1lnLOXtc{+6MqxM?TxYVmyS5?
zC6YC8USj;u-J@))M6wh)2Z`Y_O_LrsK8w*BKNE2>3t8p~7BWdJ!2@Y8ZXh$+s^1Sr
z@6^aw_O}!KV-DVtG_YamsvBhur%G8viG`K2sapiTn)|Bbwa`9t74*MN?P?oXq7imk
z;`q~ms1Z_QQmZO$I1JBIJr+AsdnWG2<ETwu3ZD9iJ(GJx0W6Q>mc1QzGY_Q_HOFa#
zCL%MVqPjUgJ)~PsAXYFt^6(bPPqO$)TzALPA3Ml%@#@xj(N1|PH>+E^ILZ%jFJ=Cq
zJjAI=FkXV|`oV4IIMxJrlve_PAs~}19OlaG<yb4v5??2NV}Jbtab9WDiC6K1U$PxL
zKjN7}Tr3ADcn={<qlIsHy%P@<l9vX3{^5&asnGO6mSe%w_UHKt{7b-I_k2!w$Lz!Q
z$9YMblB5x8PRSi>QyhDD>Xss~G&m-pIg{eOw5nImbM*L5fA7iT$RQ0tsJmm__xiRR
zLI&c@L#u)GH{Fr>n|%i!Yn<m&Zj0+T_H_7oi;SEN7#daOlbn5x)miRwJiu%C9s#zX
zY6(D&s5^dP0u9_9cY))s7xc?CGlB#{xcYUXqliJrw+Eq+jDsEpdE4qCj^$6#a$;=Z
zLY0pVjA<H0`Jjb0FsG;EzUJt~@<>vzUf{@n(eAwj$XeEo47w`l+PZGEV-S$skMeQy
z(NohMS8b<za2tqdWge@I0(^`u(>30-r%Px<C7f^)R!W#B&;=_UF|zWwALsHeJ6Hg5
zH%(0Srgj~7qf#Yj%lgPE7dK;yzKyvq$kgj9hp=KjD;0wPb45?B-276CV*>r+X2PX-
z`R&^-PIG+Sn@0+961g!Xj|eHc8rH?}&Av0f-Cn@m9OLYr0ecG$f!0;ksfVNe&vYE!
z8DoTax)4ao7hRU)cwMF&iX0(%GDsw46WMdXAph@meUp^@)7%>Rp2|E&xhyupeZh}p
zi%T_nmE*?;`8A=fhU#5_pOG09z2+UqdN`7P@1P^(taF)uSUcI|Dt@cc^keAy)xneK
zm>>oiaCkE0C7k$_irLw(yQE0~`I<IqCh;MH|Nka*+SEG_NrbaWq_t2ph_%~)r+MR>
zu^Tu?%c{Ua8F>2{UaVKJIcoSF){PnN!MPIp!8w~)E8K%5te|WaTGqu2;_s%LMTz*r
z{e<=#RPn$OD(+XK%?j6vq>ozd36!i4IMeWfibA7apKC2#437gT{P=9RWH2PY8YWP9
z5_TRne#_J{RC3b;S_ySPI3bhN9}k;Vxte^J<8w4X)0VRpdg%<+>7e<<Z()V=aFZgm
zC0jv`E%G%}RrF?ar3zp1yKd6?;kFl&TuAKO_3f<KBY_)7P@$N+fM2N4a4Ta-c=kwr
z7kLB~%`JD)N-?u&%QGy{s-H=05ubmC`sZwGeNp&3;7Y+O7J6%{G$R&}Ck&<wmzg7O
z3}5z(PVOZ=tD??N=}Z(ycKZ1ptrt3L#gPvvnIw6aB>v*TE81ncU4aHv9R0lX6w$=0
zo-*Ga5&ji9!Q4}TD$%6vY?d~m-yJ`g*K0~$X|zF_q9E~oC?inBe`Url3n(LnWR2sb
z68D0z8LJCkHYe^6YaOyG9*jepHjbdm&F1|_0&TVjiJUv4fI5MPRoeGM^T{b%k>SNf
zjm9X5%4Bpzu^89Zii-<;Op!(k0)0dqe=^v5<~j|><tF^h{;2{ov5)pGUzl;@0-sqV
zfisdEVBSksp0CZj2DY{cAh8DEGfkw^?1km|L{lZ-r$Ke_IAc=2xW{}~g&!QRM-J{V
z`Ep1*NCn?-cFPOgCL~nA8kksGW^s~_wkMY52PG)WS2Es->0%}SVLsX|@Lk0|$aid6
zCop*GG(T@nyDhw=O1~|qt^zj(Po<<sl4|>%`P`pj#^t(+41J?eYH4bf5XjU{^P1L?
z6t->&YB0M@U(@&If&PJhLf0+XwxUOZ%>2wetGspiIa@id8At9J{+W4`FVHd&z$oVs
zDPBU9rOy7uTstAqHd0oD)@_(_R{NW8nK|3_ln))%g7j(e<z<V3(!SCBI6e5ka!@6s
z(B1`7K(0QH?yJpn&ktNjuV8%zZp%c=>vx5DWs+`Yx95n*#Rj^O5<%2`rFrfV$@n{s
zIuza!2DGf7HLFqEm(<T{z>gq?ON#pD8N>HOSW6MTQk{h>D4T2*x5Dsl51?$sYG-%R
z!jm?xFvcGb+XDpxHpvJHezDNyCh*Zu8z27?XrkgOXLg!c>Bn9*R-YCA=7l;xK{l3f
zJ!j%7KI>6q!rs8^bLp7SQA-;l`Q`P-#eeIE5l0#91yKZBE^o<J-wrn)OV@!8eD`@k
zRHTv$jJYgRgxBMKbN?L?&+lk=8n-D+=cgrx`yR~@PO7a2?dt_jJ|ctr#!};<`8GGf
zDBPm;>_YTqsg{m-U;V4m{fA)3$6=ZS<P<r}Lf`PPS(u~cEGZBtQ)WQ!ka7}b240+8
zviWeTK+%?=_C;GWY>zGqaK5C)b1=Yl4MoMp2h84YMeJJFPLoji%kh>AVHBpn=wd~G
zIl4_C<}NyopHMqsqG}068abSPj4nAr*g3?=55=B;EpdJba`@d~KY#eqh${WRVZN#v
zY#Y9hYE`wdvG;YBxc(@ALn9F$PD7kr6=S0R_yUTnOkg89-dOY=H=fI3{wV?+htdPR
zJN@pM%a>^=L7BH!^j!60b#&5*PVz&^6{k9;{Z>H<%7LxAUmw$ZwkG4sqfW?7)J0YD
ziF0x>%vf@G*79sIEXV}m=!}j2{BSE2f$x*lXx)9n1FTlUuJs#ZA6msvKpfV2XW)9)
z#5`%u(Q!qsH@09H)UW$u*WL_#0ke~bXbDdc;mBQ%P1kn}r^6@nZQb{#W67fSf(gk5
z4vI#D97&fj+QPKhPz9+O`V5W?uV}o`cwHFRGmQ6%k|PESXhL8BxpCLW>aL-V5dfBe
zFZ~lTh!HEID+@Gnka%Mydr3mUmyK}tjnp>~`XgYhryQsWZ#}0xdiF+cfI|ldtsn?)
zJ3IQ<5A-;T@&a;%4S@SON%bj-sb$dko`QP#DK)FUs(T{l)u;44Nq7yzRebxYStLiP
zvZc`n|6ugRxPXI9!iG$M@;o2?_uCz107&1G(~j>)Z&KfPiGAyAhx{CPA<ps^Knt}@
z>1M%W(I0H;Xv5x60tH+?XiMi=LpA)RNEYW5v4#NZ+ZYv9wb1!|6K_ezZ6c*?SrF1z
z<}D|CoFQrK9Q%_DiM`Z|A)Z8`<_CPUgnLw0+{;;d90{0^EH3bw@B28@L-Z`msxS4G
zi$!2B!aS+b^Y{^mbE#%`ld+eVME~R{TCVpKGFSM|D$oNHDr4`T(OEW`EEMTBzs#Ky
zTRKY*<6s7sI=+A$sSl_2M8u?h#XHfR>-<yTEg`dEU(8dtb((-=0S9%&Rhb(hRBE{z
z!AXTl?B-<Uo#BXaffAI3Ps%K2l8~|e*5v5>6eA|8G)I_xZf>1#ir%$(b&WGY4bF}2
z^b-4((27_5bL#Dxv3)<(7fM;HKt6qw_{)u=Zt%#hb+L_`^#%t^0E$Txdj)McAUFDh
z1DeDRj}9j{A5J<5v;16n^u?jvfb(2ifi1g*RXxaXhO=DgT`_~D)bxtjk2@k5gzwk~
z$){Ky23{bM1@EtjZCcey*tUf5L<mTeK^Ta=``)|`B5nX{FlRiaM^yCPi<y)R;n1jR
zkde*8^_-+a&vU*I1cRu}<|SjG0T*Hb$#xYh5#cBRj4Ny68Y&`X!XR8?;t_<5%smgq
z_FJmOjbOWcz<;5hg5?G6c$xE8`F7x#NCU}Gs?b9$*eO;0kn`Zrwos6xfG@>%K?Gpa
zsEhA&6nx))LSWY9MxEKA?%w9w-X~%#(*lTVlk1YV;4#$nPp!KI4TjzSR&Mkgef4U|
zgX`UI6nm>sMnHt|y#+7EdP5j^*>)$|)TWKGjv!VeQq`-goh!9@c+AazpE|h0O8U=v
zj@Y{xT;RMsR?aW>xMQUA;!pJO@>C!eRSW_tXG!Y*k<OAJ_7~m?=2`Dep<>0udeQ5#
z(JOTeVuaX=B%8MEb#?WI*#92T+pgtcxuOvuJ8*ke&iby-bPf&HdO>3al>I(7JFb&P
zjV%K$R;=`AXfHxwlB&Or`EEKNEh30@3t}2GoDw+j^p?iF`lH^g?060))^bslbN?;u
zR<i6tXNW8jUkPlFY;@5OnA%Gpj9K}Y76JT3NPj>E<ow|%UC5L0sX-g4L3mR7DM|hH
zSM>bjdTdTwzyp2c#4~*A-BHe<?`ajzb)hPSaGiUWZgWm3){+|Kl*NbR3b_633DNm;
zki7Pa64Z`tLA{=`3ZwI~_;BEERf4)u^@E~c?au`X-VxQH>#C|<?41AfQkAufe383Z
zwS-Ce?A}|QFYnQkav)XlYS}Z+RWVopr57;klZr9KaY>=#+3jaJ2caLZvdgqI$Q8mu
zIBAm9fNjnNGf!(#*Kc)JPuCZR`Ml*-bqK!|TbzIMJNA<B2Z3G|7l!&}cWg?tUYo<H
zwJM{oKVJPjI<_ubPoFG@6GA!%k9DJ*<`k=9E|1NMdGkFU$|rNqRPY6NhsNgpZ4ZLr
zbY{v_vOxLbNmb<>I2iH7#XH2_7OVx#DNhHy#aT5;+u)h9EjNe9Mzq(z3ydiD^V+VV
zvA@c&if^b~N}n^Uu1T?Xb>k2Rp(ofw1AlIVj}?UM$KC@ajoJ3$OU}5Wj>2|1ti^}N
z@h?u;g4FoS4@Qc5DeihXFI6hRI<jrX8AbCWe*e=}JzES!+XyDtn3G`A1S9Lwzz=c>
zx=#iC>!scmM8g@-`x~(bBZ6Mhw~M1&8x*vmM2_!gjNKk_^v)o8?T{*F1NJ<0;iLxR
z*>5A(KdtXU7=jiR;Jr}nq!t;U&I!CsylC2c3C@@FvsJwe*XD?Hr+!=x5GR3yKr956
z=yGGk%MlMl(Z!4MA>-u~M;D~1AVg#TykKm4OgEmX=w_Z^f0I-{+(Y?VGAq@zHU6{G
zNFDcrJQm&!ai~?{Y?AkNxY9ZIHFr1;KS)ffeXz@m*DiBwr)MhLi{Bc&Bp=IZDXPu#
z0r8)vYF(m~V}nYIEcWOFPJMD@t3jf;Di!v7bnO#*Ka<5mP#h5`u<Lt=IhQ}ES2;%=
zYJ})6li3%d)u_~~oI|hH_sAL}We&B@J`GB+NKn|bWhK2^<6JzEUqO)l|F3hkxHe|Z
zNBSj$%ArJ+?rb{Xj9=CA-hg)1Di+v!&pfOfS%-2C&fe?HUf(fXYYpTJoWG*Ih#vBl
z_*M$wfgwmzyMJ&dm1w~)C*UxD^>hTfcyWQ3L!zJRXu1yhPtcalXP;|yBmIupZNKX?
zrxo+di6ck-sP?h{uIMBV>k&T&&Oxw2G7YY)9V>_N!4U7FRlwgO9cLG@gF5`-oD<HT
z=a?aZQL==yi0CA#gF~GI<UkQFW~^^C0$zTFFZvii#`{?2g@+BbK?t-F;IBsiH<Hhn
z;sPAmt@1+s{7Lk*OLRlv2KCj;(Fgb~VxP=hp^>C32)v0LJQU%;+S&DO%=?$<v*nB*
zsHeV(88=c38v9fwyocmKz)1LF&C!^xKc3mBjvtK~a!AW#Ta1qIV_zT}SP7wTI7>5h
zXE;m*Vm9x>7=Mx;j!_(WVhCZ;a}s5Zc18=QI%)ugUQr>FQMoAqr=r`JG8-b3rij2h
zWoosol9VLOGbymObZl(0NGm`&at1SaVnaOlWXywS={^Kh0`z~L{nzN2Yz{xR%K+&J
zDj@hV;mV`VP)_U%Q4aC5fe$o>31k-%5oW&pYqM8}h_aO6aNDk_g1kv`CgpkQNu5I$
zMhWT&w!2z67HbI@&;{6JS6e%74HDiuTJ0oNZBdi4PAXy6d)6(pBx7C349GL7(Kr}R
z0yfa&mDZFUni&Wj0=Z(1(BRYw6%G`8ludbQi;<ixsWq~YD9DT8CVrq&jz^bZ1#wLl
zF_^1bFCbwlI6^<er$^s<TPIPnZTepAa#w%*9V(sepjB*HV*wM=$M;v_s}fqcBz1T1
z=!$bYhqHf*8mAya8Q@IyLA7K3Z&6YnXeh+pQ{)uY5tO<2yI<WDBD06)R%h>XDD>z<
z-hSt`<FsN#B^E{>{R{YAlKLmo`I=}EnhsjdM5VSLbB=mPe+%DH;n#2zly8Cm4M~n(
zy<ayKQ0gb3b%CM7DV>@d9dj;=66@}yHWhSnbW=OlANi69Oi`b4f1^&Gx5xQ^be(ye
zjrIHg-%=UOVw-dBbIfwzhY-o^OGIM~gBfJTmQ-gJW*9S?1*1hukxEHL3sOR*RVl4X
zT1lvslBD=(-&E4_dtTRl&QN`SfAskH-0wN}@?Ngxb-k|ZI%TPD2DK?fWfN1uAj2jI
zLGk9iME^6Tv9e*{lv0~7<N&_Y!M|g<UgpHt(lLdUx9<M`&4?9O88SaHI4mEE=b_hL
z^)zeVPP{Zpr*A-FOKwwkVaJ8Tb(0g_LoZ=K@>&@6l<(_dHLO$TGSq!QG{0KxvOxG`
z5>!nx2ebS)cEHypK_^%}Q<InzCwN;l>Mv0*<d{o{gGw^Y%#S_&ReAby;%snG0O~k0
z|J&<HzDK1f&W4&^xBTV(^F<Xd(jiF05hg9dSNx~CB+O8-R2FF3$<}kv@n`=4GF(%$
zMBF3+14eeTTK&LEg=-BfCsVfxq|2fQylc<Yv!BnTP6fo_l#8A4<4M-5`5oMh*%Rxl
zqL`cNt9C+%780*jAm+$$D|2;XCuStSVTyFN<MlRe^M3q#LMQBzg7W&R3bKiX5qW=#
z1&vnzatPHWC`v^@V}m#OY%XyESg{%W(V<9d--5(WD4C(bI{n$;7p--4R+KWl(4EDG
zpo%Ivz~c`(dFRGdedZQHV`G6Fpi-1pOXQej(mQ$uUinFKXXVEP-$FbjR5z1yuz8^D
zSj<-~bZ}I?B)Cy48+o(8RiN<?9r!;PHHelbzKj^5lpkSBVIog`$p2)2L^W<A;*lgn
z+)atln6g#=r$?xU!3aVEWAG1o$2S!D2;3^#x{0WtmJLj3Vt4v}f0pwSPI3{yx=AZv
z{H>=wpag@1r(^Wv&Hd!LVQonFa25c+)Ja~j*!OAMkjBx=rpL{`XS{kvnaTon&@5rI
zZ(XDwS#{2<#aT_WttIPp;~aNO&8N$~d%wl$gaZv`L9|S|fU$+GBeCAq951p`Druo9
zXJxcRoPpOQ&}o{FvG(p$d7;N!0I8($)?jJ=Ayl?X&?^pC4d)&Dff(}J4tg8LDMaL!
z?5E6uNcytNeD}?bUCQ+2)s>Pv8l1*f))4Q8g9(>k*jkkDh{_-?2C3q#{f6nj1MT!{
zUA(G>>tZ%c9_H(qpx28*6%<XmuE^&*gZaiv!wnCL@!zqR@5Mt*Ds|{NaJUnakdaRk
zBep2b>wGW0!7XSfQB}bg({To4h9=(B<-`l*FYY|azu?u_i`Y!XT9MuC|0w>`G12mq
ze^_T2_u@z+CDa2N@vCp)&-x;{qB~SWVtnAE2p!aPSY_>cR9Bjs!BR5VT)xEDt`~0t
z8ANN%2hX>T+Pa##G+3|2p1~HUlx~JeS!B(?1`xyy<sBpfD%DYNOosWF#F0bBvVsEw
zim?!yb4_^-VaYzWww)Fvuc4W4RZwgJvXx9jyyt(5+R1ZsD4bJCsS06RaPyIcR!I(D
zpfs`|?uA&fBuS>3lS{l?$Ej?j9D{tCi0oYdjnRnEFn*GQvB7*Yk*@bl%F#~WsO{WO
z<V~&k@oCWH$gF$Uch5F1!>z7ps04YYimjPe?1{i2<ovl}5)6zgA!5-?*yqo>S?@A}
z<*-T2)fh09BPF_g#J6Joe+SK(zxnc>(v9+uADOwY`gUH+-=la1uA;*-xS%m{mUk_P
zjp|)#84!XalC{Z0Mh9!d{r?>_Pj#@)S;H$M5iwlZydn$g1V9w}v0}($&+=cEh<zn}
z@<jMg#sg06Zv7mI^e1ai;!D!@2xzaAoLnaL&hNaahWm*%=7YVK3dh}ivBFpPN6bOy
ztAM>K%>(4@U(`JQjwNkm!UoV&l~$X0^qM&*i67NuezHacLCJ<6xXAw~&NT~M5S*-C
zcV6q|pL;;B$cC1b8hLeECyKo5?q7b0nR9W`0#Z0-C>LbFm=_NDgR^v2@%oUD{Q03O
z-_a}Bw7?HIUs4^6q;#&=-0L0i4wDnsUsS0OX*znob$f5-AAAw_G}v=0Ru1L<XzG+?
zYL@%Q;bt>7m<A65UWp^cUMJE+iJ4pdHLZ0N^l2I|Gw)9SGZ7j$fGA5btTLIE(l>o2
zQ}{C1C<E{TwvhMdB&(UgpX_<t_qtJ;HiCdU7w#BuJuq7(+F*9PO&1Kw+~Q?hjJI05
zJ`~4}6Qq;MYl(wLxDm>$_ZrtH3%OD9Bn4%*9Pm!xio8WgHehDe**TRWT9Ty(+po!<
z9rM&6I6<07B$Cp&#uV@L&g!ghho8rmL7e?M#=2>sdS#<!?L|l{gGZgRXHq>2uGCYG
zkrP5lcn-N%_osNyoXvBxVZTYrq<qoSKU%q8>sA(l5ma<@S(<hJR`w$X9)BZ}NJ2O1
z=8{JLsdr(xitz@hA|ja8eCq}8`gyc@qQj>gpplSy#hoy%`dY0^=q-|I2J?<Iaik*s
zy`J%R;!~6QOjTMoxuDmQ-%6hLdDdlbtC|p`oJlLE^EhAs*w5A|;z}G(3MT;cvO3?L
z>y7#!ube>%HEL<ArznREyoFJWwgZ>z=yB)M6qk65!I<>R8>sLZGCTLJwwAFad7pu`
z92nm4V1>2(Z@nVb1Ciud!qETj9Ay0>5Va7kB)BAiH)2h)lcf&}7zm$Gk><@P;vw=!
zZji*hewrI?`v3gSyp-nM=Q^dz@+*^_DWAgTtqsc84D0BddxRwmA*^O?vG+AWJfYho
zCBmDlVubgK&)feqWmn+F;EaURN!jJE#gVoL)`~zm=cxCJsMsfwK*Q;~Jc%VYCU=at
z{qOpi9MLiyGt7pIy{+-C1wso>uBo*L&#EL`%^x2=$v=H3XI_-waqMs!#+`tTy<7VG
zzOE7h?JK&LSgBNK`ytQw&E=TPU|O@-45DMG<eOr8p6>bB#gIi?GqY-ijxX~5FhJD{
z6cj~Jc<^_<{SmWONV$rcTTnus@67Dxk6xk6qqddmSdrjY3}z|QMCVsBpOgt~;cL@D
zFL7=}6o|a~{X1U>!y))G9ih!OSkl?M^O$af5p=ELz`bA%_NWNVBh*~NG`dx;e4qL~
zxAWjkmYf{kN_-(xdBD477{Vht1VC_U!>`_FKH!ooL8Vu#qWIzU!)-%#=QMb)YprIQ
z7!mAiwwR54S3ortshzXIJF-$=3X~j;giwWO%xQcx#rN4El@LfJx(`rH$CyhJtZN%p
zhUH++C~^%avW$Z-xB$;Pt)+F~JpBV*MnXd2_kmUbMP>Pg)-lWzwzG_%;LVb~4T9Pr
zwm>$%D><uQdiri^f2PO<C8Fg>ppwnoVSM|x_o0v^QI=KJL&L!a-ZAFPKE4f)VRF!6
zuRh3bmyo(-Og?|U&r|7cA4*an)O!r~^_ZlKJ`&2@L~sgrHhybg{~<>Wok3`9aTP|^
zkm<%&nT6j6#pKwTo&hses17cL!vu2%AFA7UtLG7&LcuYDVXbb)Ty0(YC^JYrr-T6j
zd0EN*sU3GUbLX|mej5N@hhmX<CJL(cN^94bq5H{_xLCiLzRWsuFmyR=_=SIH+O4u~
z70W`+Q(STJ{|27odvdS-AV;`yq5IH_0PH2d+`4|hz6I(}I^l}eY};TJi!&(2Z;t=K
zJYH@Ue4&>IYk-n8D;&M7Io7pALil6%s`>N^YwTYtnlaPW(sVxaWIogenzSsoE%6zb
zV+x3HEG}(Tw5W46W882VUBQ#guzB7OPS%HwkQPeDG`reLK##JfgmD`rYR{I~wAk1C
zPSwAHt*{jQ;dRaYKXl-iBA2G2k5L7fJ5b6c-|6t_9fP@gThhX2sdciU!ulR8hPQL$
zx_UGeC^Kf?RO{AM{WuI!1`u9yV%r6*`(EcKh#PqVMCh>4uX)|q>i0HsKJ|mDnf|L=
zSw0s8$$>XST0l6cxG2Ng^0mGTX;0c4Yj|%fcTb1YxG#B>A=a7M+BqTllxQ()+04Wk
z5&y(N-}Ci(32m8XQkoQWD(072H^v*4=q|Q2_Z2IJtV*)gyZEeAKy;YDLPCdnB&6l!
z!KbWy%VGs=$|)tn3=cCIFuQ%Z=chAq)C92&&O#-*mJziDlgz0T{g>=lv4qJW>zk~d
zZo9wh?U36+5ObszzJy&+KCyhd1bl$aYeo~#gew{{<2a3+GHkhNu6gIm2;A{W!mOZZ
zD!ae?pT3&aJjNAkxsuK)Bo^wkn_Z*5H(ba!h8j<aWa&>=JX9JLsQ77{ZoactsGEt%
z3Nts5QaOZKYGgu`@$uvoYm}wak4P5?h-p0|+v+jZy++M#QC=UXS-Y$Bip0C1T$=aC
zSicmg2u2jCT5o6Fe?TvY+H~y>Q)XG`yrvibCE&tvojKgo+9XJq>o&@wreEss`h#9^
zCq(p(F+X1AANm_tB?k}qP|m{M=GO0@Dj1fFUy5h1c5Awnn@IKhoBgN~4U-E|DX@~c
zr=36LYuDA|im2J1&8?$E_|Pqc+-8-F)D0m>(zOT|<7;mh$S<7g{+P0r+OTZH9_v*;
ziFFi9QiA-n4%o23_vKs_saOG=K#rkW@N9x0szC?{ciiABx|Bb0@rywK40N3k{e!uK
zm^TY=vfdq}HoY4%2jw*%FZ1620&+~E&QeT7Y=+DtE49DAlj{iEgG9dZdGBRgUtPk-
zh%zDQ(LnqSF3~K~1W1$;l&)96>!<JD|MdsvQ^y-GYTNy)5VD|W3N0yzM?~?<-K;?m
z>!UT?tNG^UrY^n_$9OFGw2*!g_yi*4acNclexG#^C^-+TknS7oT9$e2%Yjr+%k()~
zf(dlT?T-XK2x&ccq<vGX*7F`FV`VgcD!W~i3W*mHure=<aPpeRjJPX87lfHbh7e$s
zmEjEuXeF7)tF1oo@-o?GRISixpi=mJvp)-~0x7?zw$DVbukZuCO21fHA>!{bzO%pA
zxpuc5G;q-ZsogB&=r<$EW=dyo@~ru~1)0{CF+2%)n(eNkT1jS-p&fsDr~Sf^G=ik3
zp?c$JA_y5%nMycs{LQ$dRu@-8iJ!n#2}YWqqkQYdD?mC4f5Y|DOvL%tq&94Qq6;;W
zu8S@w1~bO`>JxokLb{;<xEYaZUA>ENQ>s*{Evv!F2G)lFT<dw_C`N*$DTGaHY+x|A
zN~DQd*}`A@sUA4jXOTD>g{6S}M_=jx)>3b;ppuS^g3s!l4-<D2GeZJ5yvw)}->we2
z`-jL};)t_POAq>PB1VJcDyD{oG8fn*H(%)e^#>S5!a@7}pyxAjrd6a*D-V6`;Qm%>
z9~H%6t3wPlkZCC>wX4!IJsXPyDWEP41>c1;FOo8^m37~GT@bN^BoaUz2@m!U?=?TF
zUXxQXvPSS7bM7rx)?hW1L)MfaMj#v6=EC{0TmDi{Yc#BIVe5#22ykX*9<&mgxza-_
zbHP%?OEyb?x7K2{vSI@&DR(1W91TU8sJ6c0-E`61?Ia`!*{%TOGz3EP)1WHJ)c3ON
zvw3L_IIk=bL7`pk^;?hU>z>O&do{UI-Y!<v6Z(Y`@?@Ip#TceZBtLohh`0YHev)Md
zKuP2&)Uwr%l;pZTGC>ir!8A!nF3ILO|4v_X5Jt|_;AzrpPZsg~`+XbPwOoS;Cl^k6
z)#v?8Z#ksl1pBAqF7F-Uf@O;Z608E;H}+%JwO#amT^a~#O3M?PwRc*-WxBV(9Ykq|
z&0llTUhleFb*DqzB=XB$R*$vry+>C{=usj2uydKUqPt4X6WAQ|E25Dx`NA#xSzlq8
zu!FGMcpJJYv!5sASd;sNre1iGB%z@jRV$GjCNVp@_nC$s)>(vI`ByIb7{Fq96)UJ&
zEy<=X*rE67x(#I4gsGOp-6RZT4U~IRca^nEG?&nxO4Tg^h#z~ePR$4o2>a~S5x#Cz
zqT)~F;Nhqd-wkURiSevCg+W*{gnL1bL^en&=vCXT_$pm8-8xmG{x-enJEwt%xv^^Z
zg-#%Ty_)6wJA->kaU1u2DOmHlZ|Jj%V8FBoLJz`}pteq$xgpWB>Md;=Jy48!_5_i^
z6fBA!yS$HX;lW}vy1dN{&8)iefPda~OtWw#i5Uo8!5rJ>=d6f*8A7DB0X3bo7x;hv
zkU0R-XFbB!`r(VcFS=KAVRcR=;9{aidQT(z&Q0YHOHrG~%-!Ta@R;7T80$=Ss&`t)
zGu~yNP`jdu%qXiFBErq7@wZv05Ia*90%AC2Rir{HGX8nAC;oDP8aB1GE2*~&32ETp
zkUC{zAN34csgzLsB^(uz_WOJL7rv&FOubwIAYi&8pH08{zMVM6+^GnlMK$_&^L(wb
z+>o|8)r5W3Y^N(1LTCK1{zo6w*ku?ZrfFu7t%q4j6Nd{u^Rl(jSV7Q6H>$H^I&Y5e
z_)V0cmZ6#aV6#QSmC6Qy=};-Iu3#ZD{aeOZE7mhFsYdrg0d+HRV&UbWVQ;_R-y1e6
zV<*5ffBYiaSYMWnh_|VSLXHjMo{hmTQ_bVc{G$mZuwNyf7$S<59zV5NaaQ+O9WO>~
zoUoTsJl`x;ZKMDdsuG|9-5|=AYRtGCvofsjIq;$mT;XL50L1O9m6Yc~Y=aO)kYvFg
zDQ|5adB*efiniyerYL<pzV(`@^Z2538_Me;8B2*n+;HuLoGgXff>%VzpUQ)Af2v@p
zNeLiHP|GkMJRX0p{94<3O0RRf>CdRFBov_5kH&w$obt`cv~baDyYTQ#!QYZpF}saJ
zHNBL06k#~(3v<|h{5J8+cOws6-105m7Xrl=mzPRtd(I8<n|DWP$?nqXU`YvJhIA`g
z`hwH=p<9@H0CDY7x9SJ101|Fi{^Ydm*Hla%l(gOsnLsccY13g=e&Kvm-|Fs7t$&h}
zNRJm9ks>z{k#FqMf)axy**=IGfpDK>#w2;-rX;L@I+QnYB1kgXM`w+Q8#pfRDJ+eG
zu7}z3lX}(#s}8HdfB%=A<hq;gB)xCS>w5B^&FL1n_TC(8+vk*}%7U#VfqyCYgdGEa
zxPy0I-$bdLPz*2<#LUyneGYqer%(hz_~o@HRtLgB0;?F}iFK<375$^sg!IUKcChD`
zF$qF18Yyu}X|_raq%?D^!JGXY5BgVWz!b@NbxWYhnAWM4Oe?ZnlFe1qz3DIO)a1if
zM+Cy{qOfSP`L&<tz1{i{h@w-#)dajqm%lH1i)Uo=l@yYy!|D(%9a-&N@jtx{nh9SL
zj1JaD3IWy8DW3M%P!|JOriMi6@`-i$6*Z)DiP^QX)ce8h`ZHYca?o&^N?<#}6CUDO
zGw?svG^jP<7ITzY!*Z88-^9EDuM;lzw2@B-4U|-TDH26-ie#cn!$0s;bqf`z0Hk2m
z&>^Uh0Yg1Kr7VZU3-PrZ=<_0Ntouy#%2r{Xq*jE;0W4?g&r#&<GVhJAB~ljvn3g7U
z?3a3x3CyiGzSF)faWiCZP)&RisB2G&S3lm<xq0uI(u$#f%?vpb1R<oxva}`6G{*)y
zF%QL@JX<?rfr*ud%8oKCvmbWuTCeHsxx>u>smxqU`k;K~_4Ax<^IN|*z4as_F-17r
zxGoYsW5;Bf-yg6u_IHtyA;GCr=|w9WDZ_lxU_X06FAt@@HdY_ABAIlHC)tUA{^QT7
zz`$;8`g25fHN~eVaevZ(Qp}ON?5*Ga;|HY2C7<vEI;C^2ufE!D|Mx%sjMAYnXPWMN
z!rPsA85PW=wS2(tw@H8fkIy49{P^ePRzO}vSrZAl!@m19{cFArB@HQ&+!k~HZ2OOc
zT_!P=<O~6t!SZLfv)$87S(bfzY}ZL_aN;Slsi`}G!ujq@dqr>eaz*7-NsAUbSSmq4
z`^~fU`Y=KeSf3QNVe_2a*Y0$tUdGNWlgr?NS*F)8dwZ&09wZ<cm$^%p@s70PeW9C7
z5(Y1@_INv|{l9L2!4$p$IT%5~Pq~3Kqrd*WM1M2=YsnU@#Yba=p4U*o3hZ8;b)-L7
za-EEr^nP|hPrWvP^Nfc(jkpxo$BwdRSpWQ6X?MVU9sk8hKwtUWS90xb!}V{Ee<0Ht
ze!pa_$?$h$a2>ylHxCP=1`CpjVmH0p!(N!K_n{2=6s9$mVzqQF>tQ#fxvxUOe|V@g
zUzp5qnDcbgA;Z49j}A)Uk13FjT5a>}wjK3iQFwv4fAR?nG*q(3*sLrCe}8(8O{VLK
z>kN}H`-F8K<{lmSYs$*@wzIRlcH_+opy5gzA(OtRWBoM=|1B2+X8qtqXSZ8SgxawA
z5KJW0E@<zX0fC<mw|@Qs?L14g6Cn$j$TBVe(~h}Mn^H*;8uC&brosCXkG<^y`|^F-
zhmzznpnsrA>@umpK#h^TyX{$xTEv;3!SOA{Km(L<iR>rOw=>6t3pE$la3lzt%UxkJ
zJolSj|GC~3Y=JHk^(aDWRi?t9UA{EXFGV?O4CSLbpspdqR^1lp-Wa|-44#=JV#pY1
z_-pS3whj-E9Z&qrmTxm@wSgmtBjT@CMjUk~G=opu?E+@tc0Ij5;2jeFanZCIW$k3s
z7d_b=c`nfN`tVS0%?xSI00bgtR^n}eXCqohT@WcqzzBk1Vql&To6vH#w>8^}G!eP*
zwckIhG5&PSmSG%bV<MWxy>poVFM%$teB0yZxamjZx1$@ystuBgj7#)qZT#PR<G1qy
zgCyA%q0{M$xO?LhwzK@4B0w^h|H#Af!`CKs<LNonv*K?~`K;r;UKB&R7+5eiG!c>R
zM!@;EdxDD+r7X*U%9*-)@RX5wrwtA~|79B~%EA!bgBrS@FoI|99S}J3Wt;C-QV1f?
z46eh7(DDt`qCf^DW(B%OYb_TB#WWDQrDPOmnV0VfoY}l>%+!egY)g{D&D@F3HUD>w
z8}c_pqr2(W`=9zayirpHobQ<y>P<E9LKKse<U}p1d&@je<>7?xXv+bTNPyZksk{6|
z6XUzf--~CdDF?s5>mUC-Q_BiT3<yE;enk8;+gSnXaY(?z%=09yc$ujNzoGIC^P1N+
zesd}pkkvJ_BprRw)`aG^&ivpyC3F-W=-A@n#BQ>PB@L4+drl2D^1GAg`R%re-Ox+@
z8>R%O^TWK@j(2~OxPn_#7#!5hm}jTQ9r?YZSOrbhr^q8F`RTG$TTJ)@;XH!{9QQaM
zJlXPz$0_yS#R15fR!f0V>Bb0Q9UHw*q172oiD%%F!DfIvqNv&_A6u)3xn9u;K^lB1
z$;j!r%ldJG4icgetoZN_>kHf>o&u{|%z5)ml64QU8m<ghvIJp_ENhtLfym#mK@8O;
ztPjD%&^|?&swL19Om3e46*AN060R$=yT<Z+KH<jVu}>Dim0RyVx#Nujv*5CdV~QIt
zd@RVi{MAQ=-Vvaua$tz)kRZ(8_ulI72ug%hET}=q<N0P{UzjexcoT#AKEvzan3uu5
zP}F%$XKV43dL6RC#rn)p{Hf!aR;T4Uf_cLS+}+K3XCMDx!dskQa0VdQSpwDb0XY@k
z{Mm|jC^U;bCTjzdC|uRSUaKdZPT4eI)f#b@NOd{U9by1U=H3^5mv&`>Wgf)Cz-M!T
zln@`@9Q(yH_7OtU=`1;9KWxS%w$sfO311IV!tFl;F7(<XuoRPN_58Ynko>TigEZ@+
z)r#0LzdEn<)b<+EpikS>xOFEpDB*<JJkL4#ttj8;T1|fVRJ1q&C235O{))5cP3`hK
z7?CV=Dbl*c&Bm<T@Sd}3hbB)K4o4>A{8K)U1POFa(gV))y)tw=2aVVjyd+RK*0)RC
z){oDS<XoytQASLEf&yhxox7Y<o|9gy66O}Ce+VgfqLE2he*6s2GxPBF|4jf9*!lGy
zo(r#MOb9^CJ&q;;Mq#)=y3SK{mvT9nesLT!`I{DJdM>&8|G1MlC_kiltOYvex~-##
z^HBQ~J32GPEKl+*UC{1H{!9o8xE$;`$_}snPM?4Q0`6K^KADH}oHSE<rsuMG?Zi!_
z3uPG}f^^Oxt1Q#p`na?AmZ(3aR6+qwnQB$^GKA4zx6HZwfu_DsR0>3B@vC$iKRvO|
z`Qk+#Dm=0HGl>`R-#9<7lH$*j=l!1+4Q$({77gMC7t%qU4NCbC_DYMYggK*WxYTqR
z1e<+%Ze7CO(UDR<s()3(#EHrjhhYwpaQ`Z2Rf(2Q<5>l`nc^+dzm6Z>-NLE+MG9Rh
z?j<n|ywy~J?)|yGj?)lMAmzYm2wh`t8sU3Q;0Vbh)4w#mb9_G%nZoc#LQR8M1^9f(
z|96!lup?*+&p{V1FETp1lO^yar_ZH9<4y>(m=*WO`Wpu-`da`GjRONKld@OFGwr^1
z^7lCtae)Mpyr;YW@^lq#l8`1B5s1=xYoXUSyHKAgNAiTYJ=hyB&n07~{9qlF90kGh
zLq9h0USCmxUK>bq9?5PLM3wxrC3AdUmzzDJyiUaoU;kc`|HHj1M+K0D#)GQ{i<cS_
zqpUYt0_+JCB?2L@VItr;NN@%yLft6O6+0EVq~c6aFc=sN;>2!!+xlublPRU|rCI|1
zT9CrF6r%3v-7*>B#K{1)sV*bRg#=9((R9^a-XZ6yLKunV$o&L*Q-cNfr2RX-*0<@$
z<dkU|ti&u?Wb?*e-z5+7;w&4JPV7tC!z7tkCj0!c9hP$0eQi82s_Y1#aC>FKua_u?
z2EYoHL9<m!KS7|~a<2EjHoP==N7IP8f24OZ7dfVd@FFS7#7ijwZ2mdc6eJ~DMae7T
zLk%BpE!v@CdJr63uu-_05ONsVG{jmK%I%pBw@oH0D?>P=8(;R0C9{w{=8~=G^v?Ta
zV36|-FZeIZ({CQE)CuSm{Nl8czQ#%V!FeQ$uyjA}u=YuK3EWpOcVaO?;7yb)YxY84
z>t0cPA|b%`<y*ziPBIgx`OhYz+@$ZI^e}5(WBuoR#Jy2sl7Pr7v9~^2;#qkK_mD!l
z#5yFrh!`6_l~t6=QFufMAHth${hKo&fM5#<5l|3LPzyfe@Q>CO0DB%ql9i_an;yOV
zi{e$=5(n1U2ANbqnejdSJC5jEg<@Q$;S7Iqb7k@82<1{^Eu=+o+ij8FER;AO3C33n
zRKokxzX|PFa;0z0N?n=IMj~X!PesJAWvG6**=wE3Itvks)K6m;JmQZfCdIA(1;o<W
zh$C?BeBW5mSR(WAWH=aRXPMu5O%p!gsFX{P3JjPsBtqI{$6Z|Q8U6=^1k8jQvMrgL
zW7XbGKk=?q^OcX7EL&p4ul{ZM8Zi&i!xR(#`Znt|l6yEG1ZH_RuyWR=`Z@1_je2T|
zF*+t;v#r|bZTYGy`H+Uz-ZGL3JwvJ#fVoI$EEMG$JJoyAU+C=rw5Q|NZhJb}J*;jS
zj4-=U+-hhheEGaTyxZg{Qqflqf0%2@T7YcI<_jlVVGa;DBTOfMM>$||Hg1_|C2vvr
z$vcK9x5&^TNB!$_bd&K!tQTX>`@=J51CL4NCX-zbz}$TQKJq`fln2U%_+lfDxz)dQ
zFW0nOgPtLiy2fhpi|&1~b?~G~@n@BVc9Px9>Kn~ez^9NkE^T979IYt1`zcbwL&A0}
zdg3FVnGuS8yEakIqy{l9#}`^H1G*F%`{wQ-4wC<k)X5+&B|M=lLBu72*)Ar_M^Cko
zo<@G|{f-C(dyP9vi58Q5mcLt^XDRYW9$(2^*(1;?$X~P%#u+8tAz9=n{#MdjWSM*o
zIdBs1dT_C|^krRX7a~^{z%1c0a{C=4t(PT>04qkS3YPJ+uzd30Zmp|fYJf0hv4CWe
zIb=wso0q)acE9T#-Kl7@@roJ{plq&fk6I)D;>*=wmQVsaoRw`NAaow<?-T>)856tS
zjYOE;qy6hnb(y^YoIFp&#N~JUAKcAKQ*=vG^mwx{r;9`M=vsdgvWEGG)1r@UNcCOd
z8ux?i^#+uh!fxw4*4L{`(;wEzvYFZ`zB{|eF2yQiu}Ej2CI#VQ4nO72n8@wh60X|U
z`k<WHnp(&VAbaMIKz!Ur&E+AcA_1omGuhn#m-qHd*(hQZ5}~3rStw=KB(<`BmH>aU
zoDG~u32G6#0=pd>XI*x(iWpIR>}@bfUh9?C)-S)RsFc|nf<ab|(xAD^=bpBUbuGk_
zP|DP!#on_bxi>}s$(lwvu{KG@o9z9)r{2K5O75&T?F_w;Q&nCnOlosRKkqjkLzy0u
z#UzV^U}8&29w$b8npt#qZ1hL^t!Q(xbj>f8Ro$Y){hVaF{SY(|EPrjazb2nvG4grJ
z+M>Y985Skv<j_zOu%Q+W5Q^DJM{V}*sn(c*dMb+{1~%|AYw!1uS<4l<2iedeP8LBJ
z7VhDN*1D_MXa5{CORl#rzPWuLR34=pDih*fREm2cn-`cE8(%}ruRiV1zL*RRlE^W$
z*gS~R`onCS#}33l(Hi=iWLEL<k}839!9N-MvB8Rxjja*da==Q8rG|vsNXaMwLrSMv
zh-tCGds-Tk>SlX{W448r(<&uac<fsLCJ$R#99MCXTya1UmQU(-uC*_YRdcDbO|}@!
zk1PBaN9mEkQDut?5p`OFKQ1A3ZK@s$snGHM6#pxJZjU;w54r(SGkBQ)+JoFyoK0mt
z2)jx=OiE;&<$vk04mELP&4cs&AKC1_kdr2pM)FL$d2o_{b*H9XDVYd=f9>u6tsZqT
zx8$hEJUx?YP5Fts7=q=9xHg?fcD(bn82Mz*3zIz%PN#-yB~OdQmVnjeER}?XpgibV
zwF^eQ=lxd5)+`YpJV|P6U|yIB%{$g)>BdHK3o%x5FqCu@`Ge<>WK$fsrztgr=$ib6
z|M{u<+SExWr4D&W`BDZh+UVVIItm2Pfx4CCaGdIYb}N5Kfx{5BL}{=tsl}{4Xq_Tq
zU+fgNd=PbS-tFYQ@p`opB;FpfDJ6Rar^sb2q}=A)_?5=3@d#B=U~*@gB`ab#tyJZl
zgQU>aEI!|Q0@@~TFBUR4-#^WN3W+9M(Aqb$Sl5pBKY2Yb2t)%_i(Y1cnVf^)JQ=In
z9~8aC3J7bPZ`sf)zM(%yl-biMcjK^G5P6B0P4g~$SPu>cjLYphPAH(R0h;-tVOISR
z{S#=Dl7E1SJkBce=~@q<>$PYZ<}6iH;{SZw`enN+zv3FKah8ef#xxUgxu-sX*s!$b
z1l>n@3J>hYZSk90M$1*ygUt>RoodqGj&Bylxsx>PlAvl|Qi(}IxcoKWLpzx&vQ)^c
z%>&W`Ofa8p_umE?0~Mw0XoNr3gI13;A0P7e8_f{38Z9FQ-pd|abB}Kt#d<`dW6Xu*
zh&k_9--`ZiOAsL(r=bZCOvS9CK0s(=(Xs4BU-Orka3PWszrjkNXc#j%f158za*&>3
z1)tDAn8Z>NqDQvX5Z$3KN0?8Y)$!!#lqQJ{i7FPBO&V=!XezME7jp%R`){+Ka>m^L
z!@gE?Y=2gCFi%CIldLnz`T)KRdq*{r4NxOQP&4<Oj&nP3b|3{X?_mLHKK#ULRjZd>
z+{y)d@J+E?UR!Q8`$CU=4(-Iq!C|vaxY_@_uwvO+Y!@V@);g+d63{$p)Fl70Df~=g
zmh4!30E!pzvNw+Oe!rys-FVcp_$V>4NK>zkA3GrWAopW8^W}AwQ?>HYW)ok0Kn1cK
z>PjUYb4uZBeEEa_%*$LW*j3k$&GZ+4#T2C&*_;@*gvia_ll|szy;$U02IP(-r*;{C
z1ecM_VnT<_adY|%?-Be6UO7jqkA%>!%QC!M(4zdYYEh-sa0;5vykt_tg6{H=_kSYA
z<v><dlWW9V<Zv?iAF+XGktqg`l#%b=$~zlt4Y>jPhE)*(#@bNs1)pQZ%hozdK4FJQ
zu|s}a&I$dmzbs9C;fZKXYsm&Qt4r+5u5HyOGE%y04WA+vXT`af0@5$9wO`BD{#ySA
zh$SxC1Q7oRK9-^!D<(S2-A*3V(7-=IY0-C{&z*3IUG|t(>yXNIVJc%9%<W9G;3jAJ
z*66-xL`cKryqVO8pFt{DPN%y7&*=6dl@;B1Eo3Bc@yCzZCud6&XjSyeSr%DAbq}^n
za=!H}DN!Qlv~ZNzh)_0C5!Gf+p?@ko9L5lfWD*&(;?$1GQaAx2h_ZBrs$}~ip^o@p
zAERePlCVVf3U3n6*7U!{s-26>74tGUT}nhjha&~?nq*JRbqZaL5JOBZau}YA_5Gl7
zGDq6y$$QdHop*U8*ZaXywXt()rX$zQD+BzI9*?BaL5#(E=1?q-iZ8uM$>Fk}OF?$%
zZlWxUN19t7ys3IhwlDaEBssBqOhM|+o+8OEN(Ss^w}`ywUi1s*vm$(!^E(F@j!+5S
z623ZF+0@>>wByPj0dx>*D$a+2%&;M-@h$O8^XEstr`tl%&yb|QDsqqUm-oazHC%J2
z{y~2Mr<Kp%+|P=dqw+yqQc}_p<@DL5C2|+*+?5PaCkQ&Cq&7m`<_F`h_ue*?L!-ry
zHHjJV%#&B_@lA3oJv6cJq(~!c`JivZpZXz9mc5*tu~@RK>z+FQ$Mcy2ECS)WiEoNq
z#kBu;%saWIN*QusgBV|efAgGWL2u~;JU>+!m~2|(f7IXXTkbE8rK>N@%5(h`B9==-
zux^@igObMhW4s<sATQ-Aww~DX1ZGo#pv<p-Iv2klliH|x;01CZc$HMC|K8IM<nEIZ
zL8A#O;|1V*$N>&Df={P<WtQnaE#ak+^!hG#Ykvdp!qv&3x}@>F=3G6x&8`4prC}yi
zL=izY1sf@ywWh}UU4fyyBY%%<Emd6!d~g&1yaCe9fE~_jOSGWtn86Z5Q^XX{kn?^2
zA5PpOZc89i;)7MRpAGi_!-z~by|bOIZ$w|dj9yD8cIAZu`>EHCxn8>R{<l&jzdNB)
zB%eY&$p){kcf(yYg2^<uyzjg+p-tIobe|f@q}K{%2Mi{Sh<}@}?W60WZp$E?I?_-B
zN^D{F85Mcoy4P;sKimrt5zBogYDY6b0OkqX?D<Qi8KBe~$itQsDNTBucv<G<IrjWT
zE$_blzYP&ZR2-LbV@6B!YkMFJ^fFEn`FH8&i;JD$6fL4pP@sQJL+KP(K1u37RY*<>
z<b0<~KDwB$DKp4sH`H9_u323I5&3QWf3=WJM2<<wiu<U<zvdTJ_pV19#wkWfsM0<c
zo|f2@1S6=n*VVc&vxBgf-C`YDlFKdDA%`kwYG|)s^^>=5k}9FWAa>v|B6Gf7?QM7h
z*_cI1eAGMoZhDpVt$?f)dO`t-&4tjZXw%W&uDMVk2b>a;p5lGiOydP<)+voLv54_V
z?JNAhEOCj!kTp58VyQqhKpne0nPaJ*(=Stj=z{-3>t%$c-jm^3dI?4sNj&H~EpBn`
ztKPkmp#dI=`oeA#$VFJg)@A<ELp&Q$4~;JQyDI9;cPDvI5!{dyD_l{IvzyY+2YmdS
z=UEq0#76;lqo2CU+^633)(LH$2xF6?Ei4!G`kmiBKVPdOd9VlJ6%g<iu-WPBZFad{
z4^>5@`arGJMm5c|ytiJ)`%1dQRC^@7d>iP{VHUL1<PW~_AHgx9Z$RkoX7wRLrj|hn
zQE;<J5rVR~OXqvf8pYEjwkl~|+;5oI`oxR8%EU@hRJn;iZ@T%cx_H(6VF`#Khm1v>
zufM_<eT6Q~NLEm4g44Gw-CRE2^XM>Tg#QaFNKw`KWDD!D_fTxmhA>(nP0<+V*^9gr
zO3+^*u#$wOz7Vgq{u2LGui_=cu)S~!v@(JCVtEVvABle`aV1<p9uIbLj`fweS`ge+
zi;;{aUUCw0+ByiYSO%(sn1uP*u%*(!RVrvyTo?P-|Fq(j*gIeVi@b?HGdtq2RnagG
z<t52InWl1-_t-d8DauQj!&pX4c9QXZ?aOqSI>G7*35Be)KD&KOc0!rQ?5in}a4L{$
zvbizM+x(HX|F;#zy|C}E@Ew%Rj&7F77ck3!2HA=bCrKD4Y~I(~x`*y)VI+W@W8;fH
zQZtl|kp-ubM5tf9_9|s@68Gb@<VxEg;c&v#IQ+1u>PdnT>~ok(vc*38%D?L;UHcJS
zC|4%%wll21p-p4%salsu<W`W?0m&@Imo<>1EZJ@)5FVv_s;>{(piCtqL_r8SqSAJX
z_sL8}Cii;Tn{&PjgeLZ@+|eZr<0~LDF6(D)h|`-0&K8<QsemMvGQ2lmtlQbGWFtT!
zCb6$V7s*8(IZmt+t=i1SsouB8QBy9PjloMy=Uv$2WPL=(Wo?LAij>zm!E>i^Ac`i*
zd{CBnpj)`ZZ>V?#^<~9mkWGH;Z12<4^lZ9PQ#?sw@^jB!{k#)W6=Uj8kc*^fVXmc`
zW~X^l?$NLn#sroW<{V!*W3<12kxE~;&lv`Ed8K5!$F&P**Q4(dI^4MNOK;zLl17l1
zF0Mn)F7PLSu{m~u_o}vfc$xp&a?O9*`af?ffD?zot@FYBeD7V@)isPl`)DA4O+~;U
zvxojg3Y<0D`iN!M?JT52^#_iZ2guZFOE(_!?QNzm@rd$9UQX!JY@JDCJcp9nNp2o7
zcnk{iJ^1eAk)BJtC@e;KH^mXqCekf!$q(LdsO8A}H4T`$AH3H{eaBRDp3t6UYmNHV
zzi~FvDDC)Fdl;EYlL4yKlO}(6!sDGI6)D!Th!`&ev|7y{S^mXes`)IMoVf#DxGv9n
zX|sMiVwu_jf{Jr^SjtB)vOI1<D46RU8coDEpPXlH*@b`;n~=R{%;??zPu}H}D)7UR
zfS^VV4s~hEfAc%tTwSBErM&k4+IZ$YrQ(j~O{4xPrWY-gIL+6dWtD<EBX{KOP&9&m
zrq){CmU?j{c?VQkKyh#iPnu|b^@oaCd20pycYbI60^-Aah~zyXJ*`Oz30H>iT6IOo
z=VFnbZkpMU8nR@lh#T*HdU5-M%%%Vo;mWsXwvJCD4V1$wuLNyals3d%)8_$iH==S_
z?4zV~ZCH-Qe&PR9(nV;wiG3jX!FVUI3vQlbZFu}2*UjN6R_gi=eb`V0O3zEU{b?TK
zhD4eWKsogVgr9i9T6nht(JVY<Ek0Ep6jC;VnwDgODgOL#kb;7JzM1E3eHm5)g)*QD
zVs}a6=JoOZK@_Z1t9hEBy;CauhscUj{e`F^Y9W@4SloMCTccC;MG2A$gM;@6qRhU|
z+I*KHFYc*!Lt6Y4jJJecAhj{cB2F@PuHXN)E*F)jDy7FHYnb7)CeGCj4Jsd6*W%Nx
zwvrbdDt0S{LXm&zQUZ41BJW0m4F4Q5jn8}M->Fw~0TP*`S*nsGdYQJ)yXpsq#P^ek
zlE9Kez6CiL<d2Xt#L2oR!bvA8q)CtNZoMh+2T-z9qO>*BAC#Fba@Gp#oYDHQ<BEeC
zCtrJi7P~{#et5~TA$aAMr(1t){MU$C+SPKNQ8_M|RU(JK?{A%x5Zeb+FE`kzspXRU
zNCfyWzD>jAgukEEy%thW$A!Kb_q8|Ijk~~HRU!84Y;WI_H~>&0fl1M7^4ZmpjM6iq
zaGGwv`CcOs!oP?xu>~?uvJQWtkR-BKT*%}sG8AU_@SH?h1-2`}5zR=Y6Z@%daUs|r
zs_(+3SDGkSnjR+aCJ}3_5p3(u#tMvOf!&%RZeIMNr>xfBF(oNRYr9|<0F!eRwm#`k
zc#~sFFp|P>>>gu2yvX{%2_JkaxNvWApWS_l>&k*Wn`;fN)_uu&ZxDA(BJ&7>)`gZe
zN<}V4aIlP$Evf==3E0htMtB}PN###bu)KPfEs2K0a-p+WFV9zQ#b;ONA19KTkA_-P
z_UqaYA{;6E_q4aXaY?G)B?Dc=&vX5J^Wl?;i6l@1Z!DG}f9e}z#YcqnJ?ga5g(%G4
zcD@g<)~!}liNV$s(GbmYT7N68JrmVr|2Dw}vXEyl^mLu5N^=k&R;?Awq(5>&C(l(2
z)wBuKH<8#sJ8{ESZ-HcR0eR9vO5UsvI~bBYZOE9B=YH~Dv)<KE#1^Xs+ma<XF<G4L
z9jbBZF61}+yz7WFa~y@kA{CD@Q+U#W=e>vAJ$W1|L+JdsnDbgT=>X=UjF{D?xYPq0
zXbBw&B90(=ql&CQPo>URid1REqJcmn38j*ww&bpamE9tja!5rkhfDdw{F81IfGZ@$
z^I4JiC%opxC?RcB6r1D&nW7FIzj*@vn5F%c6ik#l0njp#Q)l0w*rR`>kpBxyAvg=`
zUy>&iE1Wrx#s~`&rdLt@nV4~!!YfUa`HFre&bw=)$_iWVrycxY!4rhO4)Br+^qp;L
z|41D9TlAMV;VT#L#SPOcDywbyqi9+}tLePSs~zl~Cq+Lvvz7dXn&;%Ti;RW2cK#c7
zYHW1Y^|bpdGI^ya(NsVwa)X|*lRt~Pe2`w(7TgSo<50NP9`UXYa5L&#fhmdIOA|kH
z>}mVsQ{`TIwx@-ZDVB`*o3pK-CAl{_6pG@sk%7#F^-r_<!9?WFIpLB6Cf#TCJ6{EV
zQw1*}j3k-G1N;w3884B!lCSsg6h$ifT2Dx^#U>7oxn!d6u8w*|bQ8x{!nrq`?~8XM
z>PTgYDkf_Q)JJ^QT@k7tazF~D#R9<=WhJFu;jMpLx1;-Dp3WB(Q$f6XA|LU|b>8|n
zb@*IqA_x0GZO^rHz0VxRL`+9VK5=#IV;$NG`zV~BJD|KmKrhW8yK|;z!gFm8qS*<$
zHPn8CWRCkeu5y<$l1Lf@gCpP~V&TENt#nW;nXjr7>UvDbw~9;ka{r)K1cc88%9d*0
zj<Y(f(19lS&72Xij^3?{ar|q7E;xu)B)DPsF4mFc*e63=!BBP(Ea^4gr#-HCZ3s@q
zC?Z_=i2pKluWA>m)+hd@&~jRivL5RhyNP?@l%OUm8tkD&4yi!?P{*S~d+Y>xBDn*M
zN~<%@ofLogo9;WI%d_{Z>nm_uSQU;3Qn>ZR_-QdccJjp_j+ORMN*1t!TjQ^Jp!-gY
z7r6@!%DGnkMf~0SyYIvRH>Pl7eB>_vodTT3Ffyrt^9C1E^ycRHoiF}h4?`$;%i;$`
z@OGgWao@wdQyTwd>mEDdN{%W)evK4bJ$W<2Y@<IDCp%|P{2f>K*eMoJ1(w+)<Ox0n
z4TUf)Mkef7+<hm8QUM!Kra(Fuk=fTfp?Edd|Me3wrL)dW=yhZFod{gb&JiD&SDU>q
zF0zr=Cd;ZyXALtSHP|pY{=iW#XPcp%DQV$Hd7BaOWwAYWqHISAK1S+lLQxl{5JZKY
zJCb)x(_6OBOt|qZu1j{|lnUsOX4YHr-@dBzCi6P9iWwKmCCfPT_4uL}{`DP*FY{1l
z!bf*?-$@$QFzDTOf8v7jp%omn!QO=37Sje|zycxEf>Y@$C*RU>Vf@PV-FHHBg^+zw
z{D)8QZzx#&Op+4lGsTTpT@}CMDXvpd2djV&a~A{FA%nY?#`k=%`%Z2(w4siaSNhhI
z5`s{VOW0DPUp|yFy>d5d#HZ;`Zfc*9*NdeEG?1Is+ruiSR7ld9F4L;H@f!~@=djde
z{m9?bHAEKj0*`zgSF)U^v76)@+0j!Bq%@W)?&A2=r}>!#a;2jXR9ua^y)!#*+t*yr
zf{I&jk7E|I$v`1V=-Rl%t=*H5`s8p;ny8!q^o@4qhBIDdhYY3ADXEC1B*mnqrr8u;
z`Jhkdqr>9wLC5542S64BXZ@W^JGW1Z-$?&5O+3WJKr4jkzEFWF!hhu*ougaW8~K-T
zK+p!$t9p_EN|F63m9UoKI-~l_6Fa|K=4{NS0xDsF>Y7HfWvGRm!4f5#naw+Yde7<q
z$6yj6oYCz%KeG7rN#uyo0mRKD>i1{jFL_-j0S4rvoTxZOQDqWIGtIfv<IjESUjtBx
z)4~JXBnP9xl{{(2w=D6s3%X8%`$AIBbo@GY<uAPxH(sXK`d853q>A!xtXi_^cyi*S
z1OIhva;}<g4U!<M3EKrxMf{FNt){Xz{=-7<MO3H)(~a~P#0;4=#yd9gsy5wZfc?gE
z*%;KgNi!YiB!0b7e~?o`Edb3*qFl0Mf?Yi>@tr!Jj|<gM!lvR^i0JRGOnfLu-xjc@
z0x`)mU^QgH1pnysgs7VTyfEi9G)e3bEk-N6a%tB^T4gtq$9Mqf9Rb=36v>K2-}mIP
zrJ13~AmK2R+#?%mPDx_#Kvxl6Lo2G-Nb+6WZ}Wusfo*!o-j%7CB0HCyH!?$RiuY{e
zqzfH(hR74p5_+St+b2F2|NR^8i4GzHM517DV>B-JCmcZ%^MqkRfX?8Qkc6IE9v_I-
zNAP4hAVmz1;dXpNl6huveAfF2D2Z-Xha{AH=Gx4SFXqhA0&4_?xQF8ELzfWou<y3`
z2;NO)V-2r{vK4X4oS5L)gx8jIPeNpI3h7qZfcky%vxMJ1=#j*f6bCCCA#v6*<EFZ=
z6S((`!#o#cbrO1Ge>KxL{NecRv1c5{Cn)}`+8)*TCF1eAuJQKf9`cu{Z+jT`1=L*>
z-!pK=VcO*8R(#fA7gu~Lzkc?&xUG-zmtgL4&(PJzxcEO_*Q?}W+e0hM@pjMd67SpD
z<FK#*s`)!!iu!g@@yi$XI4q6GK5Mk|e`K$G(JKDWbv+KV188h5_&$GD+&6y2vpo)T
zEC(<xv_POm#Dw^V4)hQMun<NBOHQNWbQ3c%@sYD)9*fa1Nf7|+Gz?gRTM!nnw|k{V
zoqAqNiIR|XR&FcVoKZ3aO~Iq~MN>6WLQ}C^sv)C6>G4etGDPnz<A1}sE)YE>iFAb_
zhIWxsAU%nAaF%)aQ75ufoA=hXkoLFu>KIR)TN<5an4~A{k6VSi-%8|=k}D1M(ug>d
zy;<#b?tUlc$Z$emxwvN9D_#;yh(Mu~M*n7CG(`G0b|E;EOI5vKZKEkpDKL-q@3b$v
zl~lDUB$sUl`z=k}kios2p1(v>(MF<OLuoHxRgUi_8L^m&=#-T=1@Z@L8*aw=zNs2_
zVT|`Y>$bp$1>rF_0Za0p8DwI{-xauVWOxv#7r;=)l!yJ^)d9Op)a&D0%0tHlYjI%s
z5mnmfuL)e$JN%;@T3b$+0R+c&a|6Ri=r0Hj36NS5dP{mLlXCP{r@+SUZT|X0t4a^9
zrpyA4t(Z<fb_#5WX(Pp?$;NZbOv6&qLO|$&ls5viGs6jTQvZ1-jJp)>*Kc#6*;nB*
z^aJGOt0&2)F^WO|?T)|`O`}RFz$;}4(7fx;z=rMmL$-sfP=?e1`jhcOG;)hG^s4BB
zE&7%tDkWQ6<C%!b2Y+=YejYPsmc}!SWVP+#^^_j1EagKaM{xU5=iWma{o=;?4P`Q!
z+!YJvmA9SXCE>dkmSUtxt51F=dEUE!at0iV8UCO?G7tVa1{|6RW+Wmdm0}-6<eeK1
z>yvRp#vleIQ-T6!I3Z^bwdY!4X9rA%*Oe$B5i>lYgbVFK3DKXdQBP<To3}!Lg&OZ`
zr^JVURg6`@Q+ZiQ`bjlgO6&`K;a?HnaYu+fn}>4j$Ghs!U^0xTshT3WM`-11o^;Om
zI(pX|WR2wG(E(V4@0XV|oGR|}M=PCMo5##znEejcQx%F55VV(!;cgE(d)|w9{G2G+
z_#;UBsjLr$U4_1qVuE$fS~uh<#}@{qtyLRHa$ueRu6L%L5&gucx+tVxy4xxXdQ<%m
zPQ+(At=v`;+4Y#EQ1~m^Jlg0KEYK(>X)|I(Ld2t;V!8?La~|6h_4m0nZRcoK2%X6u
zNEnIGDf%qa%zimg*iFk)F+QkVVNFI5#RFFdf<1Mg@|JmJNRhHS-NsBDOR=KNIjM`j
zC&LAe)zxm;l$1u4_Vyu8<Z02j#Og;JZ!${U6ZLdQmq5|`;ack>=;^F-hOL9KKmVxn
z!dJR6WM(VNDY>ANnr&`)-ibLDv8OU}Km7*<<e4I^(5GNqQwz|n*c#~fe9NrbD2d$z
z$yI1DTJD){PW#S@`#|SS=0+N+(ojWf20#Hpmd_dLjMy60eT{Z*mF~Lv644;@Aq(Yk
z#yQU2Cr96WSexF1FG;qE)RLU$?5WrJmL(S13s#aY2~2Na;ygGr98cDw0=S^E?b&X3
ze(m)8Ti&G0@L{G9Az8s|m|;o%&FdWl?Neh!G8Hs%1Vx?^NH<q)3N&A(qKWAUt%0Gd
z56koYhxXi&EemrsMVH(ziLfIM(8bs94)oqC;y@@k5}gM{m#RDiuJ5$IT`RpvZ*lF)
zW7gc)sbGK0E`|L~ZsRoUOkf|C!)EKLowkpS6ooZ_-2!HoLij$@eD_)6ydR_g`cl6@
z_Mk0W6qQzI3Ni<oQ=CBSyqJ|jJ)0`eB_FQmtOm#_K&6-lIM1=QonFm~6TZQaV51yF
zpi_3!h4bvFxX6SbAql}mnCK3OxiEQ|J<<vf2%%MY9+^}%O*7*ku;bf@hXx_NC{rXu
zNVbJb?b2?M7u=$^Q<olaNXA&Y#tnAY$Vi$g>q|%m52X(!HxFHaL-6MuyZNc%yAG%<
zog#(Y`6ZCV`aA5o-tf>!iDQVVq}hV{C&=(8?y(1X^iRn1RXr(bzVb?Q(gS@rYkDv{
zRG1whngIfb_?HQMe`m~xnGw=P`P_!XCFP}NP|7f~V?|)WEp4>7vIwCH{I5Z&x#q3=
z1E1fdmnExL59OfL{^r_y0@G=6LNnF^I03}!XxC)YCp(kAX}SC5)^dFS^oALfiV>;|
zlok_N;dI>|9whitB5~L>^nGlp6L)3H3*U+C(m$6np+pPoajD3&9v;`pcYZ_-{v_5t
zbtEu7nVsaGlICxE+-|?|axW2zVn7fArhe*Fs7zSlX^`aX<UuX>vSC502H|Xp(<fk6
zn%Q@^-Ni%;ScO?4>}^IdOOg->FFj%3*h|ckHYj9?4v0UDZ$&w$9PjfFr?kPw<jlH)
zi3a0l#t840U0hD1SFiAZ`C}~KG2OjSJfK%;Vo}wo_5^Y>!(5c^9lTEm)XI`h$&_W1
zN8rwN$n{#U=%5IBhzYI^AZTGu4tjg;WQf>vqjUsDMd4G>$!eNs$OU@6sIjaXt%g&Z
zZvHIxY`Ol#t7I+0AsFVlV1av8m2UwZSrPYqU<%o}=AQFBe_p7=BM{p&#GPe?k~rp?
zde7`zbVLMUXeaTYOfznjXTd@pAqptgo2aYn-uCRfGr0|#nfg|BT3QC6JI%b*-ZL|s
zKL(^PuPOnI7CkE|j+-BkU3@D)0OCP-0TEWx#v31kojT{9*g30oD4)`x(ok1)Gb;Vg
zS7O)QqXPrzPXaee$aEl_>E`~`u`@5z5y7bI-F?r^=(KxB>?!MXWDJ-a2054)x2oJ6
zyJ)FiCVoa1tYq0sUP_vYc_-Fe>E22zKj{mjlFh13u@&>(UjRx{;GXZ`EPwxC?9glU
zGFBK#Ox4_m-rDA?Ct^F_q}K}|0`p<m;)m{x9ll<#<+BB<6ceRF(!SUs^6tbVYN~Ah
zV`+F^yK_88yK^}M=0PLe{*dAX!ALb{$HvZ#U{>)6M2~>x&mh&4omrU@`|UHKA5rPK
z92;2^q5FDc$H*+e;|o$vfGQEG=1@Xxr_c48_E!r@Wp0yfuJ0ZD$h|sLP(z@M9S-)H
zVeTr49a|N;`&4!c;!Ym=c5>`l@=!wjm{KrRP%UB?96ikweS4BzA0<W7G>es%CMo8l
zfM?eoI*<d@j~-&%wCv+Ci}hMQ?P^8uqE)0^6-}LDJ$1_&!lhILc>oI;lu8&l_?f2d
z98c=$J!Q0rN-iKsQ@M_k+&12GpI@){mq?{pe|Row=J|!5nWMN4j9OV%=AH#yo>Wu!
zNryS#^BDr*V22ZCr$!PEK11PC1dW24<1{0u7nF$@>N!xDG>HQ)36vtZrk|g1(k)#?
zoQ(!X!REkS8l9A9qULpq%v06hzZ_vdwH%ThFPVZBlRw_Me@E0vfP2C9nbUd#2<#%5
zmZ?dQ<jy(I8MjP<{ldXmv7BD+3s8}kB{azOnSq55MQ_>NLQwl6czGNLm_aF~d!_wn
zFEvLY#KOv}M}rbQ*Q(Ex_Sz#&^iMBqTWUgcObjiq$zwk9h<*N>+G838SsbhadMEW8
z<G<4l_Ip1@cEwX9=~(iKgj7v*5!<Eii2dePNjjD$c-VfTk)`1thQ-4b_Kqz|;l-b$
z=#yH@cs0D<`VZ`<?~eKW+z6H9l`~~=sC>Z|d-5lHasQToXGIAES?Ur>RVE@xvT`$@
zvwteoVko>{0THk=J70_&n9bPJk(2CZe?-Q-*GhCQy?LriLiLT|e=?Cf3+)IyDxYtl
zHd23*ssVgL!j=+PAX0BNI?g01k+gp}q(O<{u!fX(O{1PlyT6_H?}<32cck2#6QqU>
zVgyzH&>;J{_ahUpZn=NxID$k|WcQoSvCf;_qX)+DF2exVm=hOxBV>qHIk?B}c24w1
z3)REu4>~icTtY2^#GgOIp4&3|`DN;p6TK?4hgR2=aQZ;W%&I;1Lsvxoc?-Y8VXv8i
zPlI~HW<s9r`qj=`7^Xa8FX48JBacCN(^C7E8g=B^VUn4K*~$LRFqv(gmDfbwUe{8C
zO_gPs?PY*9;sYHW=k#74lSZ_OI20eH-^&o8wuaHpoFzJh3NBFl%9XYxK>^R6vA}t5
zc|^w|7^rCIDv9slLXu>XVV2$PeEOuiEDX7c(xG1x0i^ugbM{S(T0V;IW-k*80M1of
zQlOXpWi$1k3h11sCq$DhDntH`S#rAl(bZ8eeWU68bRL;jQC`npqav8_L^I7L?>N6c
zAJuOPVXDCfDx#2A-3OC|o1J04{LOjp^5_YZBjjTTl+WOdN##$J+LQz*XPK7TVuTVj
z4fP>Y42*%qV$<bx=ZmVC-(S>itZ^>M)|bx}0@G4w@;l+rWe!P?fxd38u5p^*5uPBT
zvy(7<UEhqKVRLU->%8-n{tQoIc$JvA6jn=-H2#Xt&XG@|HmueK8&gvwMGa`%kpjaz
z%~VfxuDV3mg)OSymwQ*(87PeP`xF0nS!9>Dl-fF=p}LwxZM=RyBGV*JbQXLV(f{-)
z*}+AX^#UxzFr(H$Kc{S$Qg``$*qG(+aia<uC}o=%XZ)t<f{q$eEUYP^8WXYySlFD?
z#cmg&3pNZd3MSbM%5J0E>HCUW+x}8u;9adpUEXRxqe|mrfO1#n=v#qphnfcP<w<C(
z(y=6S`>TP({W`|Sg(fYu{CG;3IXmXri`qtsgyL1lK(d<3e>S_Q7Tudd1+;8)xVKaA
zPIxf^%E_Tr2aaG02>ge=oQxeYok!><=#Qz6pTZAi#h&f!_;-YVSParB6>Cy350lL0
zeVl`z2xO(^v+T{Dm6UNSE$>-Y-m|KvQHu*baCu<$Ftwx$x+2)iDGVroNa`<=V#2P#
zQ!mjnaIh($IJy*mB4U6Obhu4mzz<QIrh>1H3)7#`V$fztb|4_k?(@9l%<tJ|6hIpg
zoEnvOaS($A98S6$w_WYrg*apwc_y~9p6_gqcZ#{PGLZ3NgqPY&)Ur_YWDIO_dZHT4
zTR!>F7tX}n+gwjY3!F1lalK8pNLYnKUt=BD)FrO&6LVHO1)xqW&qU>>=K}5B@=RFa
z1W6QlLA)oKu{HMAuc99N$d!E9yDC^xGg8^2?Yr8aH;=yj95i7O#v<C6AQ^U(m@1bL
zPx)4V$NDQ6Lgqib%`|k$J%1;b9gO^Nn)+HU&1RsCVLF(1e@r~{=g9kOG%PN4#sQ>7
z07Af{N9%!06Pxvm*>ORHe5HC5u6U91)NE!NGG&=5D-#!`#jLt8V!ueA3JhVWyS3EW
z;#8%X%~S2b=~17IY5Ct#tcK&GR9n%Myb|#N=}*CVec)-QRYlANTfireD^8?5Ktubl
zoi~cwJUJv{Kd{H38XDgUBnA`T+_>EtdqH%<u?V5e7d1?!Sh8v<fOj^;sf(T1liE<f
zMfm##Y&CpG4J0O;l-R&)*G66Pj2a<fyGJA>vIEI{t8>matvw^?1@<#F@~UJEwK(!d
zXYlLcvHsXD*fhi`Sg<n|I%|Ilj{tRJTni8l>_c`YYVM|W&Xte51ycY+u?&djYk3$9
zKAK|Ea3)YcIO?kNb;0SUOyN5hjHE3HR^N*q?7&-5w_MIEgIJVHyB-N^t$fLO?@~nt
zc~?>M;;hjgm(PfQ#ChEp{bGuKBpDLZYosbKiq(8^pVKfeYNcE8WjGyTW+3E*#gT1F
zpK{hOiOQ=)I|xw5`sz7BsIY%#ofXJFO<$22&7-{SOsTFT&cNeN$8WXp4sYQO@D2b$
z#V<P7HP?6Gc0<c?gwTM3^`@tqZI1`;%2lL=ALXbGD?MM)QXIM8-f)(#(Dz`F0!je*
zvN*}+zPZl4m%`IrD0#kcZCrDL^}(xnXugxY%l!kE9Tc$&(@4r&$}?x~aN^c!=7!w1
zp{%NAhRhaT<b8KL!Be88;1F-xzo7zI3%;FdW^4$=4G%-rENh)>x07g{VQ%Rc_%vPT
z1C!20bKMoknMA|C-onXwC+3erAUT2lr{Or-T8jc1oSDty75r`Q+pmA1&vcD20V;U5
zU<EZp1Dzwn`1zn<BQd!$8RDoV=LURUcej9RaRfzFk{m$2r2&D~zeUPEVv#}!a(Yq*
z*3_tPo%!RV=55ps!HblJ+*lk_9EWpWa)$mL71}O%r!e7UY5-3cuW=6i9iH;x_&<}v
zKTM|cvq}8XNqtN4P99jOaCcRxLMWaLd#cqg=l!gx@fTo`aJK2l5oF&`p)k$-_O27`
z<BouKv&d?X3EmC8^KEB>i=v|qa%(tEco8By>HR_=c15SalZ&HndRlLqQ(Ij_eu?nK
zr?4f-BQf802<-VOGJn2KLw_o($S<i@m1eHp<V+Y6^`X3u?7M346t#_*)v`C7@)yFp
z4joY4Ag4Q(wM=^3nfRt!O(KM7D=U_^ylApnzsV_@6F!2)<qh>Ak|`Ci@d*0YIOiS>
zZ^t}wNmvYQ$~Nr+uTF@1Lqrg;s}w;^Pm=m_CDDOeD?C}U7n(i_HF$$3aQD~lM-`~x
zpU4Il=Lx?s&1_%pRR63J2InJ(&^n&Uqy`f2h;OHxDc$TLi?wsNEE7hbLX_z#8RRK!
zTkYI<WmJnFbxK$vNweY{@^KxuIzt|DXGCy!;rQ^Pg7N;g&WUOpHTHb{jp$qQdoaw9
z<s%&DrafVF_q_5-iZY3RM<;BP-Ost@Q+J40loGcnStbOhxZDJ;%!_)C-O1ZaE#Q#H
zDQ}-;s?W5qzA@Z)+>JJbPz~yFWtq2o*zc~EVS#yvyLB3erWBjnVBqMdF>-NCBl*od
z%*-7Wh|kkYqgW{fj(PvAz+L$<U5521MoYY92B)clUhVzOo`%59L)vy3hSJCNs&HXE
zbLpmlJ+8g{xhxy=k(V;sJT*OVXAyr2s!QNSJRF)92)3je!kjui&@;cSsHwtI6j*I-
zqid2=-jf~KcY*WF2B|bA=Gq`|6Rg}I&IhJgnu$wtp53XY7^Y7V*@LCbCe^u!vJ@V6
z?t3d7^?{ZpFT-wSBlkSueD`*EME1D4Z}#wN5JHV9VbS73p8u%>A|W;t4<67^FE`++
z;8FMYayo6(rxp&7&>cl3F|Ct{TbfHQaYlU+bH@%1#kdv*&n^i9J_*8^WZrqoUXa@I
z&uAh8LtI2wN>Unj4d-@WqciT;80!hOrHX~#gZYt>m2G}{CNb-?===I$0Sq84BE4kQ
zYoU!1Zd?7u&b#Yk^0w)l7L=E}5+6Sh(=NTnsaolh0S9p2W?-#=gs^GqE1aV*g@05C
zZlm>;ga(mne!0lmw@QCRIH3qyLt~ROL#8-vkZk8+f6VLiG3W?4a8{teOQG)+(kHXc
z*=IY$+Bc1I2CGzZrJxRz&Afq5mzeM%=?styT^N%&=iqD{>`ZPU%|+ZGEvSf%TL4Ll
zdrQ*LqQTCZrk@MOA*d~20FrogAE*0I8pV~DhRGl{f`mb&;AQ^V&Xq^PgN4XSsnW?1
z+o5B&)9`zEs0f#Cme}n43U*U(=h)BTA<T}_il&zp$*{4n^K{d2PHAb4d+PWtF7uMJ
zoXgzXibup6hkpw79(%HfGb0dFwn@KpAW1|adnSc0iCA^Bol~-6Y)7L!gT(*P6eF!Z
zA+JqEKjRHL_kJ6Gw{ci0$Z$r0FMb;8jCRA>IB8NiLQrSor`a@HaPIhAy);I0>MBav
zVlu?WE$iZ({#o>GaT)_BR4p2gm=D&*1sQ>)k0P75Bh?eLAdH&fpqki4&I=!__~z`o
zXff5E2#L&~MjB_3l45(EwtHf_6M9u6ln5auBquVMf>q&r+VSj(3B03o08*kNh^P+F
zTyeUyIxc4EJRQm*af9<iqzg&-%5>-Rkuf*D)I$6qx)M^e1+E@JN7Tk0S%D~T^#7t-
zNtjgBgQO0EQ`eG>RUtw{fO=|1ZF82t7d`&G2>CORSfouzB}>CzJet>>JM5TNy>wjg
z5gtI2BggQQ2b|ny8ffKn)E7FjI3u+bvB*pIIX5T8y!{!jR<0SN?yT#6+5|_$!_1Nh
z%brK<rAuS}niL@+20B`nha<8u(bLTBYwWYnQt|_%`9wO)!=O4vZ8OdEGW!cFX7h{s
z2zGjPcoddEmbt5ivnNm3527nV4sb{vB%%GygUjr<=0|_lOdSI^9Ihw0l#p1aglN{@
z<RrbR5*H5&{-K^;I^(b|@0@K{u8EwuKpm)j@)AWTQal+mcYiZG@yo~&7poVlp(ZU^
z>1t@yC5L;&drp+45*3pU>N}+g+|)U0oS~=kivxi^QD2LZkDekGP6)khTg<3_sew<&
zMy)SapM5}W`Hb2SU?<=Uea51lWe>*Oe3=Wb5NIf`Rev2Io%3+(D5upM3Zp0%)`*J)
zGR}U9d&2&rSV1yyK6PDD???@zPM8~+X4zV&th#kcV{2KYAvG1%H0yDR&?K<I3rU-4
zx9A&l@3$=k4H>0zd<qE?NLY5J^Z9wv)7z8CJWTZF@frh6)SG|UX<B1I&O}ZFex49X
zrDMdGYn`h<)B_<S^s(VOZ)zeoIXxc?UsvZdm$y`f22g}~zSenYZ_L*1`uVQXVbi0%
zDaH&=dgVI1=0a6DfN4TN*BngxDI!I7p6)!eH{$zqX#<sSip!@?6TcqPPMVo(0t2pS
z^A&zQBbcB1c}Yxns=4CiK*zN@B-*I51iPSVVhAr~nB`NQ8@H(z#9NkwsD2Vq0DJqo
z7ZN?cMDIqGF*k)gv4Za;Xih%Epm*&J8>6mvld9R*rHYVB5m{iy9H;n5M6+&DqK$K_
zY5+LYKB7(;xLuDP&PfARoHBDm!JI?KDLGq^(zEY$CjS<*<T2HcMc5yr8Bl{@p61)h
z&f}|9)iF6Drh)v*AYEo*^(W*wt+qytCPf~*mKmLb%ZF(zR2KQlTW)f8OpLxY>I6gw
z8a~9~=Su>~ofX9y325gQ+cv!?2JSo8jh!l{gL5W*wR+Yy)b_09xx^BsJWRs0z^a0O
z#Zr^=%(`WP5qF&M>#7<mlNeJ!J+P$sgv$aH^`r<*Jwgq0?!`5N7zyAstcE12p2WWu
zZjvf7Aq&zR9v_%C@`PJp2hPMI!Yee*UI;AOtwXM1WYfL@bdKkaofLTQv^EmGC=60-
z5jwPb7v}1got7>*VLm3J;5lyQ-1h>f9nm`#1cl~KqSRq<uezQBuyVhQw*x1&Y<nCT
z;{=1v3QlOQX$-X7&_=9OAiDbUo}czC!2~ZO&`bhdRiMz{MlDAPpx9bzgHuBWR<?O`
zzVm(Gn6%9*2kCV`Lq!5+BYNqBd+jZ+M&IMgKvDn!v~V(L9n7ge^-*W?rHZz&m!$HE
z8>YgTLWK2x!WsRD9z{WykWs=xB5J@rA2{1ylo*vgR%N3^Z*|i%24uLuw_WOl$HZ(Y
zpNNMkA%4)tbxZ8AZ?_JS4aE7N92H}D>{QLa-ClQN<N!hjI3@~=xXe0S6Lw&)hn-7Z
z*F>C}+DVN}80E;YBxBR<xAsK;cC%9XM#4Xm6b*?7W|(hw+YeNQLjyxAYfFgfNV9K~
z{Fwc8cSZlH1g~-e`k+lVDicn+43QIa)35d?gIXVs(XMd?WaSK>EV<GEtI6iIHqN+Y
ztrgGIjHxJxyN_9%nF)KxB%f)Y{BmUP8#MAk<!oF44vJK8OflVTXVSvx)w!yVP<A0e
zUOGG{o4Id0n^I%GP0~RyAyh^~2$7f4#Tn+s_nbwks&3_}5J@l<NRT054ZrY~op$6W
zt%X~`Qo`0iFX-l=0Q!y2oPN4F7{O(23=0gYj3GeQ{i!jZPmd54Dod$RQ$khPX0Kmh
z|L}D5^AEL9hn=*WTDLSajvuzgd5=1kk?KFA5-8PK-6#esq(tI(9lJT#ZVp>tW5kgP
z8GV=yI4quVPH=a)`UR=rm=63@_ExsBQtjXVj!Yt8#Wo;D2P2dnz$Sm-ac9S+u5$`*
zsJu1i6nNyrH=Sd-t|QMcN-GdGGb*LvGt6Pr>7cXn3x%XuX=;#(g(0iRN<DeZUN%%$
zm?u%4f{ZsFlxd=0a0bnG@ewTtJzXIKs*#z%7N^DF@RN%9B*h_;gd*mwcV6^HU3a0r
z_9!G0{9Uwp<9=u4-Z1=77$m|V;3FBSG(h>tdH+bH?fxRaf#P+d=737r(|sOyHl^r;
zM2``*3T*^J6R3c37du0aXlMeRGaQo_bpwpld2M3Z5mh&%i!pgi8|o#9i5JI-ecuz<
zGg)e8?9U$zPnsAK^(Dyf!$|74CgJF9%_}Cf7S)a`3qZ;gv0?dO$L~D2NH;7$E3|X%
z{&v0%$Gg0y0$!}}o@noyYMy^4;m0z)1+NRdM+h9$k3IeDZu`6mEpN@#xL5HEaDzr>
zK(Gu#IFt~<gfQ2vw=+J~2p9A+*XVFXY*uO-)Sqv20z(?ZO^OCqicc;MWQN%k6IgkX
z4q)qq*&}v7CyvukS1eP1lG8XL>VgJ0YFIgG5=W6CDl(X~W=@Yg!*M~0B~smt5v1Om
z&75afg-4o5WW@P-;?QGu-i+`VE#WxWK;EeA6!Xe%`_frqNi&+hwB?X+Gzy!Nj)igR
zG5d<T@Gphs5IPQ-QcBF&yX?1Pqhfk%1XD;jBrVE);oSCn)-Jy`T$zOcJc1oT!{=q0
ztB%=^T^Rm6iOjmcO6Lq^p5$zv8GalEfx{$7q8$9N+ittffT%-mz|@V9jNowB;b?Pf
zJRvjTCwpi^`1kPhwU8b^W|P(Lu{$P(-!+6{@)ekvt3R|y2Erp$!v#;1Xau?9=_c@@
z{YzH(k?0b*P`JwSG>q_FzuV7L>(dA(6jxH63@M$)KHr{W9~>3+$-7v|1g9$rTA@%0
z3bVKvmwo)sA6G=3=5hpvQlFq)l1vq7PtU;bXddm{H%J4y{2HamrbLm5S7138C5H#7
zUjYMxQV2kFNlvfHQO&Y(MF)eh2*=DNz(}+|-7K6HaArkKDS}i@wI4{rI3uh-gKVfZ
z)qyorqlzZ9T#8!F!{{KhRgzvqExj=Ms5qIKu;unBk+V4xb&?Xf-~bus=4JK=w~3b`
zM!^WeXtjjk1V+ox&M{>bfz(u(W%=MT)qpD^BRJ6b`F88TmIY#(3a?Oz1k5NX*5VsF
zeOMdj8jAHNkpL6_aHq${>s9fwFqz<GB+u!z^b)<sn~rg<Y%?#b)5NxVu|SH~iCHpg
zNvAcxwN&<E%@mPe#{Q|(H)Hfle@RX<CcC!N*rEEX9EeG^R5A&Qt@F!*PTzg4f0s9%
zz)Ok5c}%nWIu(EE{+K*=JP@<d+v&UXR{v@Rl|(eeeBQCsMQ_Fl^5(+op$%vLel?KW
z&`z$C+)>U8T=-O=@(C^!k)>I#OzS#Z5p=U|Sm5TD6}-b9E0PeFY47dS;*WM+iiU<Z
zl^j%F<M8#JHeaMwo}^EjOMGXd>B`(9aHMZk_9(SX3J8UxDKwVz%`487pWS$ehO!Xf
z1T9Fl-RC^NFswmb8$e*)tPJzgch1P@FswVGvI=saVx|nkh&7`QI;SRthmo^E*bEG%
z35?P_(7tQ<CB`%g!%o6jsgU}UK65@<?1r&KVF^Bh{y{Znnz&N}&sT?sa-?z-w-d77
zBX2ktHH)GVf~r~dBi#rOUQL$y_LP8iFs!zQmQ!-5f$$Lb1b#9XJnVd49p$|zWT;gE
zX6uKul~=vx<kf{gJRg>rz=dc+B-!4>&KGZoZz*)>I@S%O8_%rbW2e;xO&GYe+LUtz
z<s#Xf^}ciVZTkKkVkl7TKj38`ie$6>K4<OUk*~a<uOXSCl(zvw=768{yYo^`_<kgJ
z0Oi&YFi8=6=c13CoeSlLk3ppDADoO$PclVP5`8C4+kpw*p>1VA(*04LP>nK8?O6$r
zT-a7ZnFDGYsj4AlIph<oHD!pMHAdwV8i@9IRdx{xn`|WnG|Kbm=1#?E70|r9c&RlZ
zrZ&JA@XiYf&cU84hUC{!Lqm2MLXp_+m0#P}T%v;iKM_`;37!~X%?Y_Nc)>)fFcio2
zwd2p%_kx(zq#4pAg#GfL_Hz$u3nY9?X*i32LjI}?*Ff|mgVN(%vRCs>FfJ&#G6l0g
zgsBktPd9$czNJ~r_n6y^|1)?D|KWJ>7#kJRHf0oHZeti@{Ez=Lanw1=wirey9^@Q$
zI`!}IOuswiytg>A-8}8`0sEoS<?hK~wz=~wXUnzW!TcJs@MH^QNg0Pp2c0LD=@6Zx
z{vTiG9Un#2{r|C`bg&>wHp$MNMNnKwC5e@UP7>fD0R&WBk|kMEHfFQIL=<dT5fmE;
zqCOTx?C@a3hS(?y3M!}|sFZ*RD55Cn?|sf}5dA*S?+;&?xjQp=?mhRE&uOlM&kgUu
zQ;H*GOw?Tec<XE10&4V;P*pE&2{|>YX0gijb*eQP3tI=l`}l!4jziELo7dAi<4RNh
zWYb6t7-NL5NC}z|&o_;Xz+jM&aYm?q7d6Fmn?{C$W1)gGf@Ik>-gKYeG@_-CAXTPF
z1bmU{vbbraa3T;f(os4aF)W<t3iHg1O~b^3dKCgY`i;<RyDQD1rA@z3AfYr|j>^pK
zY1T!fOzulMNU#GQ>^jg3O?aR^H#}f=PxI)&7M-VSY!?=XND3KAwKA?W57;d(A`*fd
z`$TEZ$AH9deqC&Wzcr5yAWA^P8Oeg^p6zPhyHOtoIU|lrRGnpE@Znwivv*9Iss_Ma
z#56MvWzK@SqRw_T3wEogQZfh#3w6WgP~SncJg1t)b0j`nkTQU)n3gR0{nqNM%>J%T
zeo<lK%7_@swDwFg(;RnbpuADserZ{PWZ&G?{7~7p|HT@*Kw`VhhSXYuEv!qMdC%<L
zrp3n^&{r5Or_dUXJzmu2Pp@a4g!3uWkdDrB6HEgnt6k58uQE=NJT9W$Nngjg4jjy;
zr<8dP=cvUl=}^Mb0H#@t&3D>8$2S?>cpNIrjv8bVvlF?;-do-@%nEBFRg=#XH!4Jv
zwAp^(;dXy~p-?l7Me587u7+iL!9v^lRE+lgKIC^(6u8DJ{1>`M{yEN#TRRE3Ct;7G
z2&Z66P?q?9?>hq&*8}k;;8pVPW78oJ02+DoDSQ2_rmiq~Sl3tM5tNX&5ew~8XEp^7
zpbiy>%d1Ld45Ga73HyyF^d^*@VK}U@)upYe)pDLUYmI^tM6<YngTw%{D*5@|`!}^&
z@i_qpZk$UAo?O5(j6!S4Bi@A%x4Hkl79!sj85k5S#`;B+UpUY_`X$nx>jE_pGbW+Q
z)YaQN+H`+F2MR#V(HuuW9|0+?k~`9z_wp$kJ`o^T8m^fJ+oX(FU;C~?$(%Wg%>?}*
zN2Cw|#R!0d5G)t1rpLABj}jNA5&s=Q$S(i1P8?}o7^N=7e!)uhlv&N1n@h&DlT*aR
z#t9K{j*t!QLuTN|8fwJQ02m$xG&p()uNA}0`?Y$G$QsCrR+crT%t*tF4C|%SY;T*E
zXRIY2aCFQO;Tq+cxb{=5183U9PS;@2;e}Sdrg>ni<1%{cL3`}8EpJ>#GD2T#a40-Z
zI%z2TrI6DfwtrIV*{A53t7Zxjqhro^#@@I_yDZ^9=qvmI8ws!2uWRhg+tjbXZlRM4
zw#8;ijhez2yxaejDi?xd6-r8r@LTK7OmpT*x)6N>n9VT{kua4M>$Y*G<wv?01iuX<
zR2l6BTZ5#+Tg(gp)&MtR6!T)CJ2Y8`w-5NmzWM<TPZVvux=xH2!fTjYw=2xSZ`-{5
z4xx0TunQ@S2uudGXIjYx=8p@T(gwjRse|ryF($@g?b8ZPx4uo|h#~AIQCUf@lZ*)K
zr2(d2jt*le4-M2c`6AMY>dvqR^s%2Es6aTQE^4bt8>6^NmY;8@T+%c;P+U$bh8Sd(
z_grW<%a=i=yi&lBi2%u#b>k{C=(bY?Jf@6Dq{*w6DxGqykAL%y7%Am@6<c;47sS!>
z{qOzgy?kiXhzq)_1C?Y9j^=Mad1n;rDDk9XF5w&`i-6S`GRWKOk2bMdC!{%&d6e2S
z3tEj1^{)A&O~Dr$o`zeyCR`!6@T$l9$X?4W8VwN=@ycluUFz*TdrNCgQbPx!HhM9v
zl!;rnuk+4)Nfi*Tj{w;g7e#7P7CF}Iye~~|8o@h3hXffCs!n^+d-7YY7dFTA%EmiU
zhvGn&GvMxf)|k)kYfi$IScvG$k*26o{8L0}eNt)fZ`GzMq!t}gTo6o}5(o<&X66LN
zUK1igMTCdSk^>sT6vwBVjFUBsltFEDE&g<|xpQ+(?Qcy9bj(pmn-N|$GspN_yP2mF
zkq#sX7h<Cb+477sCDm<yCqxBOmGYZpOOXj!jg)4s2;{%Q{HC^}uxG*L)lPyUK|iwJ
z_D<^5?wRds<PAg^6k!xt)|y=BEW4%JMX0wV_Cqa8e>dsviANxqMZ;ja2s5l@;G$(_
z-1#~ng|;vWc|drxdH(X#<cJnjgt6hgV)De&6Rp5u6FFY_7;chKq%0t|hUm6PU+P@^
z$BfPAB>%ktHPmq74BPXe7N7<!CmgW|;T5n(qz<rNJz@qdZY~%)Tsi`DS4{%IVC&3y
z=h8)bc_?)mT}C0--}E^R4Zyko2z5_6Ce$5eKtpd`hdQ1!^smNv^L3tj&bSj8<!F`D
zOrWeZ>!EABuZCLwHU%!156eX+fCEaT@9J`IUVN)to@*sB@O@!eC6Z;0V@#3?D{i#&
zf*SwMAcZFwmgd2D;*K^C)<`kY+FaO*ybbvD71x-Q992LdSsGblcM_e-j?TK?tPM*m
zPI+4)F+zkR$h+V_#rN7{&QT{ELnsYoG4V3Iq)FD@7us_sv>Gx==O`i&!efL)_cI;4
zLyeB)lH65SMM)2fcqF`|p3Cj~XScq742&=z*&dasJ9!{ANz$!HKJ#`vq%BPm(RrbA
zXpR6-0;6bC|8MVvM--31LZ(DOnR8!KD<Ks%;$2(7`lZH<+|*V;fu{6D@;ia|Xg+tE
z^UBPYve|{@0`iPVDzqN`x3hcr$zpK}ox%T+2z9@jd-Gb!wL+Y-5gf)4SDTj3z!`jG
zVN--B*%a87hc?>vgS4tK)=*!%Dg=<FrK+}NT5bH^TL!DS1Lqw{uCQ=z)IEG08P*x+
z*v>|Un#IKdwiGjFB;qE;ioes|^tSqc8KwI-i7zfnA@`<Or$1<ir#9(gAVrX<8}}!}
zY1Z^v_O3gR4s+(gGzmk36hFP+&iJ6|x%tr$SUl<(@yqk=Q7hXmCJuo2q5Bbj++_CQ
zmw-L4c)~6xP~c@%?Q-}=X=Q}RBEvfQ3Hzo`+D&7G$XHc^2**Lela}*v&lh&spIp`6
zj}Ma-lB1#6O$HuAV#z$-iW@W)U>GQF0LQ1hiAi8{S=QW5cIs{I8xG+8>`RD`_zc6M
z#3o^XG<(NB^F5XS5ElXD=vXKXST3nneU|;g{jC>{YAG*_@m5|(=)mkA-Vg8A*D)ey
z*ATpa@MbAsBSO7}_r+J*%%7~$!PvbR1L`|un3P0osmD9@F1;H&qMwxAtBFlljI0#v
z$6vhXpQW}00wi15hR6@Rt>f2wf4EiU2Xief<xZl_dQ#}qdcM1T@wV3ArQ?!8x0Dby
z*9t--g|==TXpj7(^~VSarkhtMZ5lDp`S>o)y@#T0><{&}zU5S9K;z_z2&7FH*mL)_
zURWA?BH*G7U{Mb2Wv}0_14!*YVby%ehsm<8-Q!&{fqpzHuib!Z@lB&L<7dWjet(U3
zaePzuiyPsH50XHRRB*5?Yx<ks)xow~{=}~vtNTs5S8Nwa6iBtczr^HKE5Hv_I5dPT
zOQP;ML0CP^l55%*9Esg1xs-06F@6DF+dS2zOw`+Wu0}{S&5aNMJx0Jm*i+6W=IcpK
zzazdFNl%P1&IQTY|E8ar5^WmPhYYI=mOx43eBhJ~&M?>4%D6C*A=M}ytZ`mat~IKk
zxwcpZO>T&wcd&i<M~@+9=@`9OASSd}#F}z8l$5bYhL{_Nw>zq!`|BGeH^4gQ9<wG@
zeXcyGSYT(X*JR_p_!wVr(E+qdt8uEiJzZ6ILg^8vv5MolN&T&FMws2J^tFT49l#kg
zmtL$FXfgzuVJY&2q9QYD9zlW-5+v=ef>m8(URr#LD!dr4lv|KVeRs3DcS&2hh-oTR
z9<vg-K7D~+hhtXPxLF|LgwL|x|I^;Kwe8W*3;HV>G06n7oOHdJb;&WGQyLX!WDQCy
zw7M=g?RM!m5xU?if_WK*)}d2P2cj8)lyyh_HCmd1b~uyF&c5!Gj=ILZvT5`H9&LJz
zjJ*WEY$g7k{u#N}(;H0IT)mtZsHRLiU8Sv0zcdS`{WTx&utp-YtqGIN=WX?Bzi7Go
zpa-#O>#j6ygF3++I7>xr&F=7<oafwahRKQe2|^Qtt&4h?^UhcGf)GA*cae19eH3&$
z^q76*v~~w@RZ1|EWbYMWj!2-zegC#I|7a^!AsA8Kcubrbkxq!oe(&4g$7!UK*bBk(
zk`Qu|q!R9~>11AP+qQcdX8!<jkP=Zq*G&N!{<zUDy}Rwk0s2P8aor<FwO!Day;JNr
zrnPO@q_Igf2EcG3pc^Q`8uzpJp0aiwr#II?&_H=9Jjb$@UuQ0zqf}DhhFDs!WSJwQ
zm6-HQs_WJISB+V}R6|H}SQLT+-E<x6hXrQZRQEco2+xE$SmPcw&s6BeK0(~uG(D&+
zssU)k5AditF{*ECii1tQ)LK8*G~1&gu0sQ$7%{J6-^^jwg|C|*ZgD49g;+vG9Pzu|
z`OH{2EM>K@XRW?H`&)lrW1daZHxdjBcq*+uiG9r&WIcAZ8K0{ofM4ZY8ftC7)qLJn
zpGrBxAj=@t5H=>7R=wM)lSKkwT)YZRILq3UZI%|RR?a5jU?W}?9XTB}Y+1;>^=~!m
z7;*DmW12LZNDzcI`b2a5Z*61~`GH`bT1_38Ee)rx^?Rv#W_Htqb&DmEPHT?m9kds{
zs+}6JF$*Y4sEm!cS`2}0N9@EYYGg8o4OSC{GO|b@v`z?_J8o4JNwVjFO;~--o{U1N
zAC55@)7xH@4QRz=0EV@)1DP|T$z5wMxwP#|5gpTN!6?^qAJW4cHd}9QdTO7*cv06F
z!Q8#{R<r*8w!3=iT?61TEHESBv5!wO*)xxh5J@JtNDbiS1I>itO%EGZN|Q<^k6E2!
z6?QcT=W2ee0MlR(B(}s1;hx&-E5Dch`@AOC8fsCAt4)Agqc8l>!tQusn~%>2sUbHv
zC`CjNwCOZ(vVOPi9z&WuYXwweED1szyb`(oS;W3=T${Og*JMq?!J7KmSt1R!r?ulc
z6MCfSD<r;LJnPIB*IIcuvv;1(7Oj|Ie6big^vJg00{hiVR9|+9Vq$=NLec`zVW)O6
z&p)bZ0Spyt%7ly{h(FIV<ujVBF@&fJIh=SL_gk+uO9M?*Qb?*K<v{Qo5YmutogFaa
z_qT~7;1bOZb*CtNHF%!1>l?n-zOYWUK+&XW!*#U;ra-f=U*v87TH9w&&>kO!WUHgF
zg7KtV*Iw*h|46Ibp4RZ0+;9~jD!$O3vNbPX?tN`$>-%rOF3kr$K}ZF>+4%njyppg5
zX0ooW{dT$rpWtloi!YBQ#<BpbJK-zuCk0L3_JTU#P{3J2iBqicFMA7$TkPuHTGeeT
zMJtGI{ocvxwMpG}IMzzYCetbl)@>I#7aeXPKLs;Z---3@LrzkvD(ke3j+EEIU@m;f
zS^q=Jg?%U(ii~1<$x_$t_$T69|KXQZ+`ba}!rY|ANRm}}llP2En#yX$Hbe?;C0hq>
z@~(9YZt=+lfg(yBN`3)_UsJ(3uBi3)9VK5Yg7ohS0nxuE_p){mvU8UP$^%4@6P7OS
z*Xo3;o+T$)YfX`~1zG?yLfA?Ax89sQ)xiKen|%9T${k}RQ?myIc)&*clg~7V1@{QZ
zYDBXwB~rYnRT{K^xUVUdG!KQAGmmFOLatx4y_;^;o-G)A1;MgVRPYJZtNT7R3$Iap
zLQpqx-$S9&^OusZTkP$#)OR63OqBMOK(EY{^d^dc%=Nw)Zo7|!XNmBj1U<fDoPfBm
zb|*eXD0CO~zPPH|v5C|K{nM>^QDWW3wnGRz6r+Y5RE^xC@fkrhPd;jgiZvJr?fL&S
z<tEW%;WyrY%~ma%-N0j-9|Q%b4J-!l#w)yW-NjCpY&@VNsUNrXtHeRCoL7x~LJxwB
z_?=gGliC$vhy+5SyAs}DO?#!o^d1xt_*<<DcHWxtT!-=p7?47bLMw9Qt;-)iV{$+0
z5b*1x`W0ACiZ!`+$LHMYA_R{R#v_5=0NX=*b!@qonhzj?k{b=vz?W~G66`p9HCK6x
zM$7dj_Cv%}Dg}J3)P@dSYm%#R^W_rjNl$9Hy0vOZeCx-$RWq5~aH%&}oP5@y3**~%
z=b97~t-w&{fQXE@-pGyLeOI??VjgliN^%|Dz_ON{5kD}eTM0j>aRo&|p~#v_elJ=E
zr*r<f30?hNr7!{kgu=d)DDs$MRb8HtfA86H*MK@GDliVQE_EXKwnOm=^Q*f2b4XKB
zn}(!bcxALiO88?WCKFBZSbD<J6?zlR*Q8NJm846FrxgdFwdI%i(91eH4Bw~B4Z81X
zbvQ2}Grp_5iNy`j$E=*^VITw9cQ_LN^WHAa*mB$`0kp*57J2s^@IA}JXnX3VuNP_G
zQtCeSDQ}Cav!4Z9=o2WG7Ti(|_xd{$mw(hb3<E&Upq^5Ukkk-AU!H0`xXn9jMN$}q
zF*jUBaB$@W+EU2VQvFF1r1Q|%-Zx%Lnni?HF8#8ojY?TkL=BE~mTkz7adUn@cNR0w
zCc#0HY+!b1WxR9$m7eNVI+TmtqV(V+0nZ)l^uo|UF==c38WheV-;ZBEG}z-^^M4+M
zf1gU<LC^Q^pF4|19U6s?ObFCr{F45eY9%(t_2uo%BUfS{k>Au_gbnS9oBN}CId)av
zF!zVJnOsFL<U0uakSq>qwEbdBPf|v=SuB_aI!nbPmtQ79x2reCJ@qFyQ5{w03dqQl
z1`hPx`hh+lMWuu~t2xB|qXR==R`CyUJ7qzrQAi{z6g^>m+zmat$sGAysoPMBK$TgR
z{~T9)$bB^A!Q}DJGo7qlPqX*9Odt%!g@}fvQz4F&-`aR)ZseV*v0W&Xhn4VyC}G8t
zBJ^2b&s!<H=bzg|o4X{d>c_aYhxKl_sl1EIKU{t=$FsC2pZ<^CliB58>G?x;j}LE}
zoxJ6zL7u_x>|A2VrCumuvHdRaoWD}PI!DT@0bE$uEQ)J3RKI&Dwu&5N{5#0$$$R3=
zuS|t)pt&`*CaH=`y%d<6_!$>p={c!~e->npWx;}5zrP<hapHNhJF<LKGEqs!bJD(v
z>v|G%r`<;YFdSho%YSEA&ylT61g~4PEL7tqE@d2#A*Y$a8`i{q)RtS4QAH}4XFk@k
zR5XOMN`+u+^owzuhUhq<_fT^V59UM@5d%M({6gHIynlWV%IVEN#9j8+HWD;N5GhQf
z>k!ZNLL>j!4wp#w?uqN?Zil;y$8M&6#^L^+)ycf<?<6nfdRI2a?Guv!$8)iSxU_kH
zTu_KFi`A=%dWXwu;R)n}YX^9qd6(PJI*F1Mh?J;F+VXk9H}&8^dKp%a#<*4P5&7o{
z72oBlp5HHIPD0re0ZU0h2TJp#dnTO5hNUZW<~XowygFN-Di~*yHK3noT5JC-IF;@=
zMQd49Dd0<G)u5;H6kTyb-z2}FB(@c+UW(f?Sa+93^?);auJ`xw^x78tJUJRtlpy3S
z43rA62M0~EF39tYW!0e;8i}Btqv}x=ifZ8B#f>;k=UyOvg-P(>YtQ^RuH!9`)-eo0
zYhw&M#q)KR{y2wdEJ8HJSqKGu^HbcXukd?WU3on{r7Ni93+Luw`0_kov%vf;wsi0W
zSfMrf8qa%jotu;(0X%Ay<x^{giQPKL6I{){(2A)vS_Y*e9=IIxda77!Hm)xmgCkDb
z7?s&J$Ni_DUX`-evQ{K0C0V^z#ogMQ%XE@~3z9odT^uey{9)X^vbHR{Fh^l{)_wgw
zkDToOl;c%IV;R!0nSINT;u`oZdz(wCcAjj_SsIsJtsk2&C0x}b%_7U>J|E<%lSSso
za)KoQw}b{S+9tSQX`CmY2mMzzCE<Xz{XI!(`lde206A9nb=>uLyQ_*h9;|lrJ>9k{
zKMeHTv4S_j-&OQbDV18XQq-7sTf;oxeWDai*H)&OBMmw#&^v^#HlOI(`i)M}WuNr9
z<7(*LxEcPxFVry~&s*rm2SNZK$B##j^6V7`NRa_yJ4jL_CeQdPF1Z!YfStR%AH5H~
zo128BJ}dA{V>@-t`4;Gpm~qzk$FZJavKRUx<X-Bz=u+l+b_qXL`V+xQ!$m1GC~yC%
zlV^Ghy}^~Mu2_{GE2oV2^cQI;g`E&Sk}aJn^l1f$cpmrZG0OqOmnzBBf#OIMdwO-`
zNpu{543r8Qji=jAT{?GJWuUS|ELJ5P&u?*syBPili^0@GeH#9A+$qAorGW~sX9FMG
z9yeH|t$ao?7qHlwX6Ktcb90%^KSYbr&pYEilSNqkeMtN@*68t`yZJa-C*?~*vxf$G
zX01C{>hO!cz&uePtrHi<EgITwvP1(5_b-hWM<<HuBVm7Irg$2j=^|qz1I6xjNszSO
zxW+U5X}u2jLpMTqmAu;|Ytprz>iIe_q&iv>E@n~5Sq9OU!H1`M20x{Pg!9(~Wmw+B
zX)C<m^Th%kksNJ0cyL{$>M2t_Z@G8Sg&CJ1Rttpx=2Xwc&+%(?Wy$EKbD7K-{gOL^
z&w9$%>5~Qri{Z*@#R+LzH+t@uN5NI3#3p6ZX@i1_d(d<FVlJm*-GO&NH#H%YBJ3Ht
zC+yj=Qttu3rlo5!krR9?vXtAFztp9eDdYhe$tiy&+Ub(FySc_=8HgJ+!{~)C#uxqI
zm#c*&h7iL~HFf->&&Qv;&%cnD0*Hkv>3rWK@fG{^XC%xLdce9!R>lo4#J|kl{EkA%
z0jUR#d!0nSdGQIq`6cM04|EIv<n_PYX)iDB{uP>BpMY%j^1g|CPv&n-7b17%7n4s<
zT)V*^CTZ4HT+1jpf@7YK#qaDV0V3VHf1mf&RY?<JIeo)H0r<B1?YVoqPvl&U0{1AH
z7%umh$n^%t?te-TxsHpvq>|tAg455pvrUhQaK3?}rMPe1kYvYw-hDGdtq_lY8CC2E
zILXAePqLB@o7y&soB0f|LNOGnr<Y<aNpjwv_>ZfpN3W*RpEg=XEqJ(u*qqZm&Opbz
z84|*vp^i*MN=(qyE#1o6Y_`4OEr*C%J9J&?qo$|$gowGRXS@vbr$Q}loXQDUC4L=0
zG(S<_<Zlr(DG>h-3@aaCKsw$KyXysW&HmXen~@+z2l`X7td#J7NH{A~@Uv#=PDMhz
z45=M1{V)j~z(WcZEKGMO3oc^=NHeG$ueA;t6QAab=Q};S#g`-1i1@76+K+gZ(yR-{
zm{Hq2-MCIWVU6<7ux^@bPC4v(6Zr34f@mTD=AtBJrg;HG7ToUZkdyExUhBRD6jDY~
z+M1E}=>-JHnd<9sI9{3x(56!ELc>n+VmR*e`&JK+e-o8t2sM=fbJD!f$MTiFZZE~Z
z3GI+xA_3Q=ou{UIv3$?`!TB`82sQZ14%U)X0hHv$d(`zx-)Z;i_2I?EQjUOQmzJLF
zMbg$@;d^T!L+RFt@5pPb-lpH;1#LclhHt|WMu@Qaj*xZwL3vrL{<rzsWhKbfJSqcK
zmK<b&2T^)`s_(uF_&^z`EIU{wAR`^Ky_}OS0bl=(`lP?&1xb*U$Ng}VuQ4;>F(hoC
z>R%CVC~;!=-|eeAgH8%qU6FEvWhHClfros};*Pl{ZHZ&oShzlbIG{K<l-aXC@AYkJ
zcFa#HP}KC(qmPvO(@nQ0TO%+)xm%i5S=T<``?x)Kqmhu$f>)EYVzl2S%Y5thdLBbj
zCCaUgQnB>RnCMH}$EBue5~<Ym%%j%`di&=!O?7hLJ)Sc%igrfAQmn78@ZPo3+rS6p
zhsnsGzLe|RZGXtQKh17njfe2&(r|5<Lc76Qn6TK(nbu{$I}e2H2Edv^2^J6qpF>;b
z^A+s(Hh_1brjmoDWi_REL)FtJ?G}ApE{PVEXi>>jKqdRC@JHv*_6+>>ehgOpm8TwZ
z=A_x@6O36f;a9p9PzO!Q9F^{NrtbEf4@Kup5Z4eFlda!R_l^3<qrU|T0A7ev9#Y)J
zZ|-rH{J;Pd6fG~NJQhSQ_2F;%%vqZqFE<R>Ch2lyQjo6oowMM0y~u%pj47p^ZdDy{
z9$UiuwACz64&io}vjP-A*!Dr^n=ADWPCjqOJIW)|_c`Bh_T-PG=R=)@ln5e|o1JXk
zywBP6PN)2#bkrivT3T239+72zH`!@(eq8>g^zR75N$dPYbrY@L{fN|ix6pZYPpACR
zT7T9%u(Hw`JT%RkFxpvkTwMOB6uicy`ng3_^YRd3uUzk}+0ZF}0JV|HX)Y?`y9W2?
z<R(sceh+a6VKz)%EHj=Dy}v%%DcY~|85z1--B>w5XTMZB!@I}j_vS>QlvYc)(9k>x
z>#45J-Zh=_`=(jgd=h8cdk9yz6*=!e$+PL{QC)|XU1Jqw!#EnpIG=ylsW<CKL5ONz
zD&;VExO3S4<mFBcOg0<cz81Rzq)NJN?kF@3uiHh!vct7oiz2mKOSVcW7xr-dmnQgD
z!bTu@QX9*F#K@~<M6|etpWElpOWcU=m5u&gj?^L$0NeG@nRedU-i>^F0hn@0pkBK0
z2qYcXV3&TMm_Hz$+P&do*HM$#m+zQ-gLCD8xcs5$Gz_prL{kQ>oWbc<>V?j(^0@qL
z*ffC%60Mn^OGuWd%(*fUx0ze%=78WK$Awav=Q{T%dXHWte~C#FlRD&>i-ftLE4jbi
zNFr(f!#m0kmx;u+&br%<yGExyka$ZV`*Nl&0%H48d)V;|P=PcUp{|@|-Eyg2^l0Kn
zxNJ7fOT-WgG`Hu>^=^a<gIDpz^)L`IYFaO{`wg(=P1&3}*$HBRDF}VH?crS<yKJr^
z%&hayus46hBk}GdFeM{q|46&{)WnU{0JW?=>+Az%|D2lyL{D36_uQMfktMOLoNMg5
zmfnq`J4Z!yNXBQ9l`-26eVe!x!6{Nz@Lxfz+NLHxcZ0oDOd`<6P{a#3Of&-u@1;2j
zmmRj3!eiw3q2f{y49g0I5})sBF5%!8{#=d5AYSV6V|**8BwoTV3j^TdR>BRwoC^My
zMnU6{Hde`G--gn}OW37h-ys{gvbfOKdVXRzID(|rckx0v1ji!eahebbbAvhgGmnh2
ztOP&91c<q^&b-ldS*MqCV9oMlNe}j3XBN0urC^FQio~@+O#Lk;`7=+0zJYj6?U#er
zmtt*s#cAKRn+y<ijlv|J5VmF8yUr6U&;74$bO=AzHaa>Orn96JE(35x3+>gymlD$E
zJHzYooXTa%F5b4o8GW8!rnIQ6CkRkD0wGyDPWGLBmX72FBTSc`sya2Qh-F%%FZ1o4
z{$E@9pnM%Ohrc%g5_I!_4f4TB*1uZ#!Vl?VB?zdl3LzpB1;DXZ?Q`az=Drc-nfweL
z;Z$4mUU2&U*PE!)di18jbb!X8p*N91NH-SWxjFysO>})fdec987!lY0Kc~;9{eK!9
zNeB8^_akUcld*L!go$wC9=Oh__^L|-BUCW2idM#kXmlvd^{QrFWhf_rInBOEHCE*2
zlMgw4F42K(`~$Kv>Ezqt_N;Si&ip?&zzhGnVRW>Z1S?sJbo>`7*1AWWF@5wFDUcT!
zM~PWLdPdc5oHN%Mb1I_(h!A?p1k#8z1~wexd~&~Dhh9qk05Aj&GA6+_SDxvt`a{Q1
zjw{1{RA&|K3<LRFD~g@X_jYaIL{Rpmf;SO}0N<-Ab;i!@+JMu#FkAveiQ-Gnf>`UT
zzIBF<)DbuhrWH<w+gCehB<m&mcmGA5wA+RvR(|R{(pd*tHBetYQzXYCMlNe~R+n{=
zm;B>C2?o#I<ZMaM`*OqOb)@FW1W2a0x^q|C|ME6+u~2$9Ip4T<{e9jk*4FQwd)#@0
z;wZ&ZE1gYR_O^3YPL~GY)m+FDdkjN{Ah*fCIUNofx!k872OG!=*;EvNvhMoIx%fs$
z21a8Ju-ROfVrX4=I{QoY`d`lx*`&`Il%0uLDOz+m6!GIrm1am;sAAN>`@vkbHtrP+
z^1=|Dl)eFybBR8dY+YY%0*ev`WotKPjOA)fwZ?kMJu9NXsW?8~*k%qK=`@IHWmKWU
z>p+QS>#Off<kGl}2+aP6D@5E{AG~I-806iET3LwSk3t=&*_3g_ukf1P?uEpE3<xe#
zxWumbH{t|d45imbYswDd_ey)!KL6vyjVv=jU0JX`NQ1Lto`2GX_AA>GH(~$`$EO4d
z2?X`cD0|;eu0*P@P+cL58(+D^ZhRbpgE$$l5MakVyZAGnNtdv3;{xK#3{htb@gwzx
zlB}`y_QmNcl-%EwT*B4lx%NYUBpxfOq{#9`v+T%ry(;)fQD7W;4mCyi{pqu9&#J@*
z;do5Ev@%rZ9ZnT##!*(mrmSC1^c_Fn*MQ2CODEjQ;ySh!o{U^<G0d5s;p>e~I~1u^
zUjCD27i3vGUbb7zjOz{8mf8S33vf!CTb<v<&KciHtes)nN*N!M7;G2b=X<$N!e+Fk
z5mef#tC8}Nps#R`(%;O=HHpXS(8+*ll<8F+{!I)=`tk&~Q3M6^2MeUSv+s3`CY*@`
zqm`5Eg3&3KY@nj^ZLcQe55lI6l#1FqcyNXU#s-JSJx73LpJ=4MGE^4w*MpKwAo<EK
z3dT8IohiS>mm`?PVwRpw1Q}r2mHuR3a7BCr9H~I!Lfp1;m;#*I%$t3^+G2Bv@<ief
zy|}RRn6h=#ZNAe+V?O-XwsoK!$<~(HzUmJD>lY-0rdp%s_|~5KzkWecDPW8L-!JF@
zmuAg=%y;GKYQ_*_S`)7Ihb#S(7DBQJPU0qG1}o>E!z7`kTjdMQ%&E3$xhioW`@O@=
zrct(-MX?(y1M)n2se)3oBe6TkIu$ln7OfjsN8P+yVGYvAF5P<TZYSEoX@FMxP|U0z
zW-2lQO_HFQ$D8?f#2XnK9I98!<RQR~B!ddJfj;~|JKyQul@sNVyrm2W!c4YieBnI#
zsot3bI?3b6EU}(%@0*)sL`@+lz!e>2qW4U-UZ`>gk3)Y!5vR_dD}7OLIW~)TI$LLT
zl@WLP^`y4S`~>byv%Xs3Jh-f@9G%esq*7u^&J6xtYwS19Wq130Xps<N8Q?r+b$Q%J
zZ#qvUdxQL+6uTmn9<|4+e$ZKbW~VdYX+$VVU=Tsbw7s-?T<BEzJOK<e%bFfFLlP1M
zqG29ey(l`BTNR~Y(|rfcS9dXnqzKhl)=AqsHkRHgX<m5j``gW;=M&E0&K$AsNFqtH
z9?5X7%J-ascG(|%24*YLwK&@eH}^Ea#Zkq9b-|CIcG73tnvCA2NKo3XwVX>y_&xPS
zQ(2QB*9z*{48AVin)IeQtGMYJ9%%G_T&-zVt9MPuD-w!0+y$`bnv$*Mv~-6O=RakB
z@5Xh^;J;me=XSGxFxPQR7DWz9_zwF&V4m^b%fnftt(-)_Gi1W76=wHcdNI4EY%3S_
zki2QSPH}%p>}A!~8h9DgMn3nn(pH;w_vlzbeW<*4E5;ZVSY(W%3LhPPL$K^%xx}1E
zg39$Dn!Bg#E%~9cpN>8&O`i4j4EH^lDZ*0teTF<Hc6k87uW)fm+Qi-?zQ@|J(#)Nv
zUxxbwJA_y#(bUpkFsI+olUU$Tq_VLBAeR;8#B_Sg+*7IpLk~x)4wglj^wtte=MlYb
zefp+Z6FO!PEL-#d^zIbvx@BfgnU3|r!vXUpe8w8Jz`cRP6ey{y*(w{9N>NU$<8t#p
zYYRPRSBEKMCA=U*o<HYlu4Y<a(8LkkFB5pgnmym#+gstPft4kMCq=-kQj@$e#njt<
zPZlsDUR7!zlwo5C0f3ifT8oZ2mE{0(Spaeo!m!H^BE!fw6V9B}$+!Fm9UE3x94XmG
zWn5BDy-@S+J<i74fVp_$L0~o)0|T2&>*+=I{`-)#1Z<8Ih8I^dX7TjN^Ol|Ad$)$W
zk_lLot{D<TMGC8knZ&1kNBShR<0t?y2&#c^CY^4Amb1+GC&jnpSva}rj20e`Q<<}K
z)syC}r}a9gxP*nozmrPuYqN88{9ewHI4n_6p%rUqGjsQ+334&FasusLY6C@<)h^yF
z_$uLl@-K??yZlQK#u48U#wU$g0CJFuh@Usd`X0NKF9CgIXM+(zis<y}1uN<>!gp<7
z9qNCuCg|Rjoa%*ys`~mC4bqXqgT#tYI0!zR;e}JSALx6%m;n;q;4pwUdRIz%iWkb9
zd7{r-qJ#Mqb~y-zfkBdg{gczt#Xqw_MTr(gpGy;PGBm)qbI5;rf5tKI2hVJREmM=d
zC{%NbeOYzx)SxE`49)U#%1<cqd1tecd}g$gx;EtO;Y*X8>{Ks`WZ%KQ0k7*_*@DeR
z094`SvOZk~`#!r;NBR*r7(+-?lD#bJQzLydZ`GlKU<u(R;w}NvO|@qA@;y<i10%Lo
z3$X#*rez4-6b$n{RHh>Xu!QAX34Ir&dC5RuUWfsB-O*@QG$$`-aL&!X#8f>E#|*I#
z9BLPc6?}R`pro?&JK-~gsCj`-4@Z5I9fht3*TtqyXG*zgP^E8PyMI0}Bg2bwI`?K@
z%XEg6tR+&IMWT>QTBfKyYoGL8os!TOIW#O-StdZHD4C1i@-6O`C|3(1b@dG4;<O%m
z)K}U}FZTs?{SIN1B(3FE&h_nXl{f^Q>tBKTaa7_2iaBK4{mr0kybxG9L{PExs>aP<
zY{o2z8v?oY50mB#X%a8M4coTZkMFdH;J_h_vIcCGYcu|^FFI^fT1&EoqT}chiJ=S;
zCDYr(tUnYlBLy{egds}|UzV4N|La$C?Vs_FVSx1q2?a1BPI_szZ|!Gb!|Z|to8x^Z
zI`2hK=lZkb-|h#{k1kJ%W#ZE{2@w5$QN(Ot82@&DGQq@}4}jg9VZB#vX1*BzG78y{
zVstmjk(91<sCz)o<Ln#ScX}BvMesSg9;S|8IPI`_dwjNDA4-|>Z>7FiQW9Oe(yX5n
z>}9<>z07kZ0EklVc+vdyMz-d^VSjTr0|27(5=0YrqhCa?bBBFRS009ej$SM!W=LTt
zmlwgD!o4t~;+O0%d+-Zv9yE~<afO(&a=Qc{7vE{Oy_iA#17S31HHT7@{GyD1Fw4HI
zdu#}#ICM47#1H9DL9M&vetYD(%%>+R0<4#`nIu2L-TLS{JDLZYiGaoGllo{W8tnOV
z7rVoCTo*?x_^EV&Bgz9L`MG!Pv{F~IXZrZ?`2f~F2qs4Wbh7oqsdm>5+z2N{WhTOj
zP$|hKZNI@jVJ`Q<t;>TVO~iegX6;yO-!)w?_ouxUER&)R$cw7q?OpfjW%v%{CH*D{
zxq^73pV-qL)sX^R#?-CDn*f7LweI@JE}5nS1Rn=z9#tb#<Mc~yNq)j9>AK!N;=U{!
zuMof>ms!$ZKD4iRNbk%SuZ5^!G9;xk{`}Y;I9rD_@iJN|I4q$P<PUAI)8Aqw%Nk7}
zsWfT^&V*wow>0Zp>Ggs2<c84W9>)k|u)4J=YOmLGNYx8KDnRgPIH#GrkFZ?Ccp&xV
z$AYCi(at>EMqis<8$!(^$d;hEZ|v*d;9?r`4ksRXcag6C=&hCHX$m5V;%TkC&feNV
ze<kgfifGY;w?{m)T_ScLM+XK*BH{v)+5jJpu>Glev3IbNoIL%t^eQZ^wO9Al0STt6
z7sQyR+1zp7css>?49_Q>iuF*1a9PyO$mRxdH*@lF9t&yqq`H{(&0hN|FW;zE6r2_O
z7N`J;v}32e;XEDC(^Dx(54Vs;vum$?eu9n+4wY1IRaKN54sW-c+g$F6&#$UHiZd`N
zQ;Go=zi%)2fS1!386N;hp6s7Qo*((bo;J%JAl*i41X0WbG`r;&_J8K+^=x9Six?3L
zRXpm}gir0lTVq3rJT_K{hbBcE?6?`R>*E{s*VsJWKeVrfq)<n+Yyo~ilpgFrCgtmB
zrcY(E1P96zMhTvZ2ub!O2Nx&_BNhkaS^u#gmE)2wn@WvBxh@-X=F9f1^?DtJBwE4>
zNTPX)_01yt_|<wH%7!_(&q=q^7Tafk=Dw_YD-L?Sjs|(=TXtYa?Dti_iBDffL^wpA
zv+thbj(`@2FkO@x9WAApL+wIzB%Kgg%8obe`S1Ln7a#ip18bzHhIf=Vk3Ep-!VOM-
z(N1!wJ2+4q(9f3_xX3hT0FMF1y`Q%`ex#444K%(EsmQOhgpUq+&(3zgOYR#;>Hvkc
zAYUHOH=OyZz1w9r*@W}Mj>L0I=|_6neqxWlhutEyozI|-Gog-BY4FpNO?`r1&&H!%
zEmDrya2CA$6f^x?9T+a~)726iDeU^XmgWtQUY7|_Dj4gN3L)~eWNYn7<{YEDFN5q<
z&7Mlx;-Q+VfjNNmKRMBa@9rcNl0#)7XhVRwwH-~13cc7rj1Qcvq&Qhq63oXlSqKS}
zD-l*q?+M}(Pq$m_=PIqA3F;NLMWrcW9Ut1yW-v1er-2_-M5Pc0amP$Lyvm*~hmk6^
zf%2_Y`Y<ZKBd|VSXdgVFugE3{RD>T~oBYxacK?lB7TsNV3p>f#q8R~|LdV)m$~*OD
zA`D3r(Mot)l7Nj?kAZggp}Yp&2@>MQN@zIX9Twy}#UjkIp1IimHOzB`>j%bT3eg>z
zusW3VFYT5G;(Ci13&F>Wk&)uy;w`K0wg<QI{LQJ8g{k-O40~1NZ~hl5;aTs`wm;eQ
zH>gYYa@=ft@fHQwa*-*;M8Qf9CIc~i4NIT^8YPy2D2|oCdLKIA-G~A>gkuT#MRCcb
z4A%GdbM0O~di%1RBcd=mK9Dmaha26>diM)or&Cmi8W<53irhc0KJuJzOC?vup@v6_
zG(vLfC|S;{&pPb;aIy{!!}JgeA|#%Grk8vVevaZsjA|L#LK0U3Qh~sJe!uVA2G!_t
zLlxo5vN|~uAhLugzv_FiUSB;RS_-!#fK0@^b=Lylitg@pC_5kvs-<rZJ?p!*AU3IT
zf?xu23q9%hu(Y>)GxuqDhp6}Ez$!#{5W$ft5gbbsiQq^k5UN@_y-0Kq3dsY`;d$|!
zF`z~TB6XFZfs$u7Y>hD&+s`rU{7`U0q=*9$A{~+BKWsd|ELU7hCx2yv{35p+S3G5Q
z%fjA~b$}`Q3k;AGTRS-)>MsUP#A{WAjNn$JbK4fqPwuV5$mel?55<jW?wt97{(e}P
zLmYcgd<&=LiiFK@{u}{`@KJ%Uptk@R&PaBSYyQ8mGhjUmcFp#+J^6qA0@_Tm-g?+K
z;CP&%1P+jkC3+NvzDWAK%e>L$AD4wV_40G*CV5d5HL^g9&>Z~|`!Hsb)4ec3hUn8=
z4m>2+$qedW@0?kn*GE#2mI91G1Tw_JWnAz4erZAj@6HWGszMrnAa#m>SdTY}ubKZl
zf=tp8De^spC^Hg2$#zNg!WPbI?(9p@b;2I6V*(Oi1mb2ro9K+~=xsm?wXCymHGgE7
z=Mcw(>qIbRqA{jgBhPV0#_2o;VkOWmA|idn5qL?~)}QU~-!Z}u^0$`bW)bGX<?l|j
z+kDzd!Y%T{cniS1#6FRTsNB8IjDy|=adJxoFnl@4If<1_vr2C>Ygd{7GDI5B(IH}>
z>gwwN)u|L9c<r<)rrn3k7&b;L*ondrQ&apI81g5d<qUj?g(Z}+jKX`ta#&SPNDc`<
zpwhn8ucb5T`UGKf+2yeK@xtSh$vhw0-!2{<CzFS%<9C#~Yg^h|zIV1IgL?vL)CKC1
zc)((kWc1Rv&dQg(@}S=2k-;cAnm-S)YYXF^Lwz1n9;v5-Du#j|L1n#>?tD`M6$6bC
zrdj8eBF&*lJzY=b2k@!$FLs^?>JNI?OU(!Z%?SOIL0Cr4`Oez`-HMzj5ej8Yj-3#;
z;<e1-r;MD_0^kXa69aRjajq5jy?H9lc1HrWt`nCLCcgZ8^GT8|C?fd^WeRG5_=;7U
zxXWDsRDx7@BoS4D_Q8iR@xID%wr=z2We7oZD9T&nS|b4pzR|IlGi|TuIgGo(Fan(2
z!V$2w{G#66G158vA?OeM5pfy;+4WMbrxp_uJc=32{n0F%#fj4VoCu^V3-1m+wcoU3
zNF)apl4-MASLf{`g*-`^C^=%jG<+Oq1g9+DfLBZ^;<at%lpW9YOsIPEoyNTA6-ofX
zE+Z%?HQ5jUv|fsH9+;BQz*!Nh0=O5Ii|SPXxE|+)V&l@U8%6|$Vot0-;5^ai?{7<?
zw2^h=Y0l<9z0U!|<zP$H5!LFKb_C@wIMciE%}2v3q|}caEFq}T2u#s1oK~=;o0^&M
z=LrogI0d~>^JrN^&bH#>NG9;0RmN$yr@Q<BKP*x!EO<I?#Dqsr8SmWsQ}^c(_Icsr
zdi-d9$wAn4nKQPU1JHCe)i0&+MqK7Btvco^zXi!_cDZxIvA^Xiv;O@uXH~VkXVrAz
z70#MUULXO-#3WAeHaTxXHSh}Y-O$%jeK$(o)Wr+Y&xMbJcBMkk%=4VIp$QF~yy0b~
z2oYRY!d;G>)46WG^9~Fkzit95Bgk}y7arHQ(S$oE=pNLemWo?NvQx6G<UgGYvg`&<
z5DQ2EEWR}ShFRRwp}FtkN1<nR1ywd;r3&IFQ?Sn1ZaVh|Fi%r3y$mnL$=l5Zx%zy#
zD@g$o!$rv`Fso0U&V!I`;_9K4PPO|HnQ71r(9}E5;q#P@=HLegGp|K4lv?NSo#YJg
zdmHGpM;;nlgOm%FJqqD-lLDj3*2;mt>>G$NlStF?Qhuuzzb2uLJ*_)tItBfS8pGX#
zT@6_iDn#gywdp!1Yb4|b0D>7ROax}mcP{?Yw7nv+fw$8Bf|bNN#dBf3UgB*1;5=C|
zqz~a_C_%zmIUBx%PR%9wa3l`Bx+F@V8QHy@fc0y99iKV7fvqOQB?`5L(S^t+7UnRe
ztGOzIj7hPEL(_iL4haWmQ274AR;K?14v0j@7UN<kH5Cm#RipZsEp~=qtYgG0X~>8`
zQ!K!WrB2pmda90PtgyVC@0|-$G@S0(0cgYJxX&S3N5a5S5s;h7S$>QNYvGH|RXd<#
z5VQbU0QGP~Zvh7i8comii;*99fs^)o{ANsm0;x#>FLxa|be-VyhU_ucXj?{y5yFS3
zNy=YKGVH4TCOS+9{?Bb3s@%Qi(-C$94~V&^g5FW6l~Rxx>XBX`U+;CMKhL`H3#?lX
z@i<CDf|`qCJWEX1Q&0ANv6vr7Vo_NHRgeAC2IptC_f7lrJmFJB56K6idHSUt`_ezm
zU5~3M%MTZqYqTyh4Cl7>R=l%%G9!f00@oo;Brd<F;!(SkooyL9GzhdJQV-+P!-$^~
z^=woZ=ktph%@l1fLL<(k6h97CYiWhE?ODA(I#4D~c>poAbjuDqL;j<z04Jwf?UawE
z#L3U**=JyU1PfG$i|VDw7pGl%5EpcJmPb^K<zWWLq+7amdaAP{>gqJ5Xv?*AASNQh
zB(Qx^dvn%IBjRXSxE?@9)Y(j71uecaQ)cN=?MKl#fOd`BOk-vG|LQCn{<nBb3h$sW
zx$%~A6h;#^60EOe_p4DwDmjg5NEL9NU!9e`ITC5sK=gcJMg*8ykKWn2$ICw9nTRm-
zh3b0lmFVa!R3RvJT5qSkh~*)kAC4F(61goySo6`|&IVEN((o*g3l-N(xwC)VQ&7Y6
za5H&@n#-iRl>8#Y+R?}9T*Ts1@gm4XBNCo(O&MWQH=&mu8(@Wb+<vt){G)T_%Rn<}
zP9b|C*e}p%zn`79#?~XjH%pCJM6DhNDQ|RkmUH?S@qd?sQZD||IA{M2%=<6t2!4n?
zaG;Yj`MQJ#yhwcs_9s@95I!6gxc8)z(8)gEuK)N%1I4*c5d~<K4n)lAz!AIGgRW{C
zs>k014vLo<-Jw}m)Am6_S_srl-E-*#N+KO!fBQ$K<3;fj6-Ly46gPzkHc~dBh#^lq
zt7^^><-Q-fgsQB<ea6N)jsH_^N1PpXn**N|gd>VF(eO#~tQRfvHN)f10P)Ha2rSNe
zpatvTL%!&E9iS^X*+Iey<sN?d<*U9>3vUB!I20}%LRS>kgtUH6`}f_=?JbQ2|0B2Y
zWY>z%4AJr9agNU-#-D=#*2}5nGBcmv%qcl8Q3PjhDX}QTACRCVt7Dz)ELfV@0EuN2
z!VROPyr0C#=RNIQI)N2nonh#8^~CXtQ+drbX8eJ~1__;~7a-vfzzm2$rr0LKA$W2#
zhlmdh!wu;W$@(q-*mNsTl*_m+<RnlD5kW&36|;I~t@)`au^oeX;c$eLG9J#uN8Ip<
zxo2&>Kve+O$XbH0#2qE2JDy)-PkkLTpYIFTXxa4MVuGqCQTpNhxY<6*g@JOUXi2q;
zl7Q7!iDwjgO}D0Ov7@i)BLue;5apOhK$tT&*vs5UP_%@ID}jjQ&Yo8N3cGm+l<S_5
z1$FK#r4eYVU(~)eqn$%3=omy9D^IUQYPp&cp%N_Oq&2>lgSv<=%yJ^!MTwGhub$RT
zTg|-QtQ#MMP(P|ALm94?+`y`9$x7}ZcUqzaLk~FH79;Ziu84@T<|-opcO)e?vROP!
zgr%Z~&=U(eK5CJPTZi_Gb%;^GiK<mA7R}G9KigS$@!vw)3CDuLx-9NF;#q-G1LH(D
zOYuuM_|NT}J7?>GhJ}mJL~oEGMB>AzIN6V*@v_kYsU{&&7t;I6y8Z;;>(gN!l8`tN
zcCC^Eg%NS}<QdNJVF~{uiiOjd)f9mO&mc4`Iu0w405Iu$b;tQ8ajeSq>?*8<pnMd(
zO3I&Kvfp_z5oJgK1g&LKDVhfrkRiv6o+hicd!}fEr#cq(jTyM{u(`KoVgo+Czw{o?
z=Z7WE>XqloW#XLbDqJmw{9w7|mXS{DUFbxd_d1TDgt}u|r&y1_>MQ*sQ98Rzn;6AH
zz=H{jz__3Aw0BH-i#L0>eudk5ha=%}NFqXdK+Vc>%ts{}ay?8O4%j#74S9X>oo~3_
znb9jwl39iVca(+#@MV%FQmoatnzOC=ZtPfJGEK^;DU~gVVYRnVB3&u3nQ3)zFpX<S
zgn@~G{E}}i<q(?9H}}otqBy9d0#+02mu`9QGl5&(oEb7;aEZYqw%%zTKcK%PHc1Lq
z*7IAoa^rpGs~bJt;6Vc@6vAvt=OJ#7Mvolr|CoW_F(zK18q_LjE{;-|ZtZ)<oc5~T
z)K{Bt@Hhz;K{nPbGNzG{EYeI%P{_kXyD@)G;qeXTg)KxBqaO3+YPXPh!CPLOVa|=Z
z-w?#z$HY>_HTBUvbJ?Bxa_P#4btzP6`JON*@MgFWn5&zVBUUqiPh4bPo~Lsn`Yy-<
zWl4(Jb&Jdg^44@~G|m{Q3`rV|b;1&J<#Nv;VjTKYy(kc+^sxdDJ~~0{iyM>!v?2L=
zG({(6PblQRt4#5wo<TVvr|7vLv$T+8r=RTM+;u>Ij}}`jy|3ViaF`p5%<>%1px#7!
zBYx{kg9LnHhVh_t)*H`*9&w!l3rB+RE9wuI?~M2Z=mRC9dC&s|wDSqG{rflxQOv1s
z)N(r7V~ZFhL3y#0_UtjAUBC|%nJu9AGY2D;usy3)o@rSYn-cH#Q>cfqXXYhEp`Qqt
zs|M)X^MVj`=xTp)mjL@jge6d(LIj%@n8=shFJLpgmidvQNT7(|72n)pw!a%UC|kT5
zi1|>htQ=ktxZdg8&9p!DwcLhdgR-!^5?T6wiHTmx$`Q&Lpb4Q=T#ovyOAl})D31rb
z8JKDQ^z#Gp45DOWU*kDquB}dRuK$Ub0nKo+hC<CiATr+~nQR8_Y0%zJbDo&PZ#e5r
zh<(vsT&R-KDl1EKBwyZYvR3IYhOzt75|S@sOyuM9UzsqUlY<<f6IppVNik&gQ)A?y
zxucvJWx+uLm5q2Gljtd!WK|3^$9t6s`bI=tLB>J|cqXkjU7W-0mjtW^q{Ahh!2%Q;
zfLTzTg)#w~%q{EmP1)LlmGZFALaRL{A;@lIBBAP(2r4o7_zrl2v~}yV&b;+CcM*RR
zrI#52U~<AiQHU9xk?BMh#|eey%UKeiUa7yFy4GO#IMG=6!dK0QvzaX$DW1zBMkD@4
zQuHZ~40uQqp!M)=#`gp-5V$2uoo|+2orUX+x#1QilM%99(n*+4kpfal)&~nrkh%rg
z60%ctRW!6yO2<-A1k(Gyi@D+yZd1<#OIIZmrqdblK9%KA2qB?I)|)CvU+L~@QDeP!
z@5Vf4&I7#Wu_??Mw-;csc-bI$A)_SAo@0XN@Lq6Di8$b_h*K6b4s+7F^hHzMiZ^Fa
zm6B>Rerjb2j!*p;`qU@{_~z+O=oQ{8s+LgGgea}*h;WqCC%<G#v@%Gi`^?}p{T)U9
z<Tp`0c;Tq54yEHbo8>D_#ZdhTJhy_iWrQR-NV(a6O#3_?q3$I>aHAiuR1NQwZaLzs
z-SC-7xK^ogMM+d0JlfH_Vw!2gW<tiJ!1P@bO(6@0tiknW{!$$&WQY9B7@v2TOjDpu
zk-Gz5F>PMb@d9#-;2-*vV3qq)cnOQM^Ko+tCt3~(2Y?sU$dAVHd18nmT2P_and?{R
zPdKD>N+Z+6O{IC}8<X&m4)iIFhGfQ4vIijXRnv^+<e3y%Vg;hL+(PLeHtM>E&5w;N
z0z(A2KzGs{P*Y2oHF*%s+BW9oXZ0uUX5de)V3l+?s;Y6Ky2UfLc+CFy^=HGSoh`W|
zJpM=vv-vu`DDv1{D;O7x+q}COH%~_-#2^qViSj_d9#p_KfKh@gFEEE5)}N4^S{K2L
z2-e7{DIp?|5KUxflJ!;}^Ty+R8diZ)N>QnHSFI{_YsHV#qd?egl6A&9b4Ne@Wg#&S
zl&CI3IUz;fy7nWpryB!=uA)8)S0~h$N7p@KPECVM@iXCM(=2-)^V<7n+adjR@9OB)
zkfY!ID#~+mB(8hfthC&FfQz_I!u*7%te9t(bk~92Q2`SL%^0%Ye0tD*6yzd&lHanw
zS1dKY3;3;IL72?M!bA4_R|51>EE<h?2YbD0Zo6F{m>rcFAfI&aA^~C62vfe`@h8lE
z7sqC!htTC);68{E4w3tvH_S7~!P0r1h?xNgNG3;8@L56R1(p}QV&81@W7z!(902QH
zOZMD3-NcPmxm?gFGR=K|uwthWytbZRaHT1ZZ{p1rRhS`2XvvsZGs$fJmkzkw784gi
zKOyb%!6*shz1wkvc|Go!pXr%_Oe9>J948uHShw74X87Dm2my#Rlb5rvJ;s`C&D@uB
z3dxfvxd7^!K;AcT5ZWr_n&IXLb_Lln0+S;mqC;TKPcAn<b=Au`oE6zf34vr_d4YMf
zulq<6>cInHYAh1wGvD-jnTdKBlyw9Mhoi_F<vc}{G$%-4F=`QHGPs%Jd=6z}GRP1l
zEq!xBJEZ^`(ksd8bi|y#Mt_h8r{FDE>ttjyD!DMf{%Rh7TSu98aU%u+^drwE--YfO
z&gI|fASL23ZJ}oZr&-L!CpvwW=>P>SU?+MHARfdNINf>jH}`?S7=jE+IXl!TlCMBy
z_L%Q~*HJ!fz+ZQY58$E>PUSDqFj=-dPp2wpq6nrBKVjW~0|;CB&D=U$e??dir<kgb
z)Y;?FH@9+j-l+pCFelvW*n`&PCpq(O)ax#N2vjL7C+c_C9M?3<gn;_l?72gKmko#3
zgW!^3HK$lH&-;&eq6_pFy)k%WEQri$ZeI1P`RraD>L=34J;$Wj@cxOvn7y|j^Zq8D
zC%YLC?#b)<`ox{)z4`hx;%H;9=e=UKo_(s*{T}xT(RyJ67!DMqK4b<gi9J{3JO}b`
zizR$#@ey;GNC{G^(fyg2{Dwj|uxH8oMVDfiZ*JrCd_;fbb}Dms)0Lj=rdQZK@-;j`
zDnC+Egy#<b!$cObjX>#AC9|?b@ES1?q$QejvXBPIY4GZ*@NUVG&ys3yr(EQOzi7Hg
z5@MMS_sAjn-RJcGDmGL;o;VY(3n<k&&B^#kucIMCd&2*$TN9jy?Rv4Fw6M}L^OUv~
z{YW5}PkT5QAkla~2M(YnCRHUp1?H3L-1epp622wizbY|=0$}_<7VlgSH%2GQZzQ}-
zNESaJba9dC8da_^LZ+-i3uraiJZ$d2?=Tyf4EBT$QV0UxC0czEO`Mq$s2~x3*P63`
z)gSf6T@)oPK+F!Ixx}ccKb~{mq?{C$6YQ-judwObM!qVIwu|U=&zr+lOiuD)m_$*y
zq9#zT3_%ig(Zhs>t*6c~2V4<J@LYAHMEkM2%MwhX5K5*+pck%<VY^J)TAoEH4CWwF
zP-444Q2!onCWykGC8}%=(heO87R$(=QS&)cgf->VayVJ_8b38<B{>U!lx(AfG<<oU
zlZ-Yawo9Wzsp77G{ID4`US}R-KWZ)ULS{C$hxz15W=8I(hzU6nD2?c;)V34e_T*Ql
zG7DKj{3U`tgxtakh(b|#%2>UOw&omReVGWiZ)#9$iU}u$s6>1c&y--C2>TW@BZB^5
zw48J)F_(l+PW+d7wuqbY^rFau;tCHFrVft99w@OTSq)vCbx<bzn-?Y4UX%rPjtx1f
z-aH5+6E!?YR20}&ld&iKd)b%f$Xw;$G`Um#8dQP1+O=`EuGgg>A}SU987jYHjQKo8
z*L_7zK<1Cl!83Z4n6V{#xj-!nCa#)cc$}G-s^0}(COS4mBFPVkxLk8dG0Q0>P;i7w
zx|ST)SKcwXqT^A_gH?pzs2zFsk9PCztgYmYi(cHs7P~M7(R8?#9l+gjX<OX^_g6)Y
z5!Kp3=-AsOXPfPbjIugi$iG$10%~MJ)+;;BU7zS&dW#JqL`!TD${23&ZD#X}46$^~
z2mXzBm}OWv-*oE3_o@ldn~Wf)71N$OeQEM1>9RqYA{-Fd!nsz}m}`3IG7lEXiYX_8
zi;1m0XinY6D+o|2#R^tSmZGVQESzdC9>OiIB`bY=UCuBs+36{q0RRAaSF8{EMDhC}
zx0^dFSZ%S#srrkwlb2A&f|h{an$|Z#8(88YY!9h&$Z9VdYkt0qS2t;q5q#2UeAeM_
z%)G7;jMU<zOe0?oRw^p^m6>KM+?~htj*hDgVimDad<4MjNV8?ClBg_HwflXrDl%Bl
zbv&=R_kdb8>DuL8V)Ky0v7*TQYmWY8D6s&pStLjSbP_5wy(aQpg%Id#BX&MmJ0tT(
znc}P5PXcen2A23as_&waTxL=cyUdb2C0r&@FGR=p{+MUl^RT94hJr#T9L6NPs&bUs
zAJj3lZXDS}F2m3i4#`M06K`P-fLh4XMov6&R7~J~^R;k`G;3s?w4FqDP!8PMbAj{1
z2EB}MB$roCCmC4b6la?&ABJK)zySDp7CUpR&-q%|D)uw3a)}9s_$Zdj3x4xBWtgfA
z<*<{eTyW74YzLi)5($)hhL!Qc>7AWNx9basvhH9V__H#tH3`nyC+W@7+_#z%LGlQh
z3`ZrstMl&<^%i6zi3zS4b;q`Jb`n0;F>Pr#p4@+#kW|qfmFQHR=}w4jEPNkoyUJ~8
z*30KQBSdwRNO?*-NGJd`Xu0VHpE+EuROueeDhO6Oq{AUYh#hr>TkrgAW?*wdx)`OR
zMah7GRA>EY?z}<=Shgb4Izg7$t@pk$$-VS41@G#pR8I*b{*{~9=jVSlT`tqn7$<;H
zyDDjU7g=B)BBiO;|7uzd(Vq=wKg4ztt}c=FNJAXQs2jV@!FoPQ#0<r@q)j^d418f>
z#7qmZ5>kB_f0A5<j+ftVM%3z6WKUk5+jd9>`rT&wy94=zQc+7wZeSmtt~D*I^oHKV
zZtFo~fJ4*j8q@j;9f&O&3rgav@LQ1={~2p8sBC%>ZL?vwB2zbyH-iQra~C9x^(Z`=
zZ`l$u6D~hyFgzaAvqU!{62&NzAb)G_Rp!%x{z#b-+9dhhgaenG<>U0SblR3|=a@Vv
zD2w#7B<r3cGa0i?7K%IuxLyh34_+#&2@o4QmNwF?<Piv=f}+yE`0-lgL!VMl^13+w
z`RvcPo8=Gdk0>t}Ld2ox3#ghY8vd(qnpOxZc>>8qfVP6#5;DZ=7pyi104y0A5X6N<
zz#{`<=eJp5zH;xu@1xS38`!_yOHCv5<%T{1I(Apaz)#VD;<uV9b94ys7F-mKQ6DEB
z@xlgEcrUc9>Pe9HgK$Pdt@yl2H<<HJ)Dgl-(Qx%Tq}XYy+5QJKhTI395yC=Xrdc0W
zm|h2tq0n*khY&L@0vJQta-lx~-zvW~>s;#32F8l1>e7&v@ZlED&J_0vBDQr;<bE~%
z`3dh{w#Q89t3S!dC=rq8FNXDq$pk@w0BkXJ6Lg%Cz<@yd5XOX`cid!7!ouJ{BF3m<
zEZ`XNf_!OuqnVoHju08OOL&UP#D1Gi!p(a97%AG5cH$^MJI$Tf>yYS1$jYD}B^)hT
zdZYu(9yYUt^$PJ&Zv-bGEFz-#567}bB|K$<!8ZRiQ!ddTieLq0Q2LQ@2%aQ+SNgO0
zXsn8B_t=aRY86!0KS2~(g6a5xLwA{Zn9c}XJXFYAnUBV2ksvU~^c$f=M<*%@a(VP>
z6=<}GVQJ>QV-|7vT!D=}j0)(ccl`Xc*}@4!S;(%XB8@O|n#D1#qLs#XvJMQa4@Sj|
zQZ!)q(`HvMz3k35wmBIpvA=lGjOwm~%u*;Kg&^o8>zZfG{tNZ8h&&f+p_@De@$Q3W
zmO#-GAAGEmq;`~G@`xcGaMeQdDCRmczdz_Oa|9m6RLT-l`RdK4`|eIM1{X#_70a=R
zB21#<Mc0^9w(D4Sbv<AMS2>fHFELkjQVpVa7%3uQ7U@zXz<Ou3acl-~As{9&BXp~%
zFeAbkiGjNMj9DP6zH26M(4mJ^yg+EfFPIduZgC;f>4i^s-3?owH17+1jpNsqlBqqV
z@N?3?&3Dhcm*u-*;$jh@47jd>8|RzNm~!0J4?mYi`XSfxJ0@ArHkic%0-|gNV*7=I
znaS^X-F*D?Uyt;cxXnqa?alT_-Y|E$56q61xD<$6M2OUd7T=w1u0R~~!rn-ga%Jj#
zF?Y_GVLrqXmG8pKBPy@ZZ1PI;Hu{nLUU#%8e3gtazfr5r-d&8)mq}q$Tz7cJtu1Yw
zHw3uC5)qLu$4C$6uWL>E>3UsIVGb-suB7lb2j}kh%#q$YL??1UXLd<d<_-JId8g@h
z*tQrZjX*BEMr6#L$2mm_IyMlEF@~~5L$nLvW}%3*Kg}pmD$&Z(Mq=h^vZxpH_n2+%
zbtJ!$+Wh|VMk&j|3h`uaJkxSsaG#9hFoc;W#S*x@-dxjK?^;nr2Q4L-qA-~eyiW-H
zl09aDSI1c>+?7-l<2&FlK=PYR<t6S5VKAuC@+x6t*Bmj)Xx(4}Smm{{T>4n3P4xh}
z|3X1Op5UAy6ok4P>vk!;hkU;Zc@T&kd$HxPnec%ACYziLMN8?y1%%YzS@vMuAYL_s
zN<-KOfQyK#Urcbe{#wr>`Uz*4<A!X~_ZLTrk0#m=%!K#*n>lGbgZI<$Aix6aL<KtG
zu@%3Vl*eK(J__|fa9|mN+_`wthb^4jr|~0IN1}}r2su^D9z<K1Bf*KB?&R)frf6@(
z$O_1XJB06g;taEUi{8nRXL%UFjAl2+wJ|4%<t>4r02As&lcKrSfnSY<Lx_O_=_xAy
zDA7XO{A5lPl_Z5Qtn%WCYG@*&B@vd_6#i)r*02wma2CM_o4iNItur5et8bxZD2r4F
z;=}7)eKegkHYRe|bbu%G;KI^S<9L94G|NnxVuuyRf1QrNBAdVy-p5S`_LvW@)}h{T
z9Ctl=9P4@S4s)F7NF)b}WOs+im*%FypO}X))gjhGlt9WWu$h59<}uOr2={@w5U}p^
z_y!6p;&zVv!=#LH-xVVt286#vx0x@n$GC9>>N2(l>&tq`f!w#tyyQ-Okl<lT%2Wbp
z63f?`J(JzH1xRXe-F?u=uV#l#Lf9B*8|Q;)9XE9`xuSHFsaah_3S5z&&=xT{(?wji
zXk)zB=xAOLToS0tby?gNXZE@-3jt3g90{0$vV6S#yXNMO7h<<~sSqygfLwA$c6iM2
z&vnEVF9A|^@B^Six|oirn3u(yU$5pj3I*e?tfdu@9HkmI4((NtC^ZR>Kg)^36UOg|
zSj5s|%DjfO&Lr#j7S7@?^%2^9O>W@og{L_KaT#y}TYyxhh!v!Jnp28A;Nk#MmMV)>
zVZdV&!+ocn;FP$yFHnWcKLLbUwBrt%`MdQ#_e*L6EP);u;+QBf$*=g9cYile3H%}6
zh+tJX1PrFRR{NVfUEJ&aNzIBGPK;z(6AzomcDR!ar~xbhrh1db(uZDWo#bQzQDc6x
z=tc4&9B{6m+Qsa}kmP#*un20BXqYB3gdKs=xSCx(0W7r=z+KBOP48}24c7q*1A_<g
zj_Pv0f%{|=em>1is?gyfk;qQDDm?Cr_NJ}qf=!NU4BsNrUWEZ6)7muI(v*U(2v+WZ
zX)p^$Nc~)kMkR9tf5i4g6rgo5DrEe?$)>=a`B162qq%uECYn(L^o~5fk_aT&9%qTi
z!Gkt+G(F0XnFdE*0q!nDpU4AbIeK(6IimE+hcg#Ry2JtnU4{yuI@OFCsAF;#xhUM9
zhkkWA3$LzlO?H9?vV^-mG}$yqiDD#1w73l@=7<z1a#1+(rtpO2<>suUV}8eBDHn1=
zqd|U&iwb7R>u(R5o#N|oHPs=2Z%mBFCd6J$Gz+@uh%0;{DZom}-hufIHjlZW85<^)
zDAs|-$+n(maxOaNy~R{f73T@XSp3yeod*bz=kw+<<tDkC{&FY?l^er>!IV^NcB2lm
zR-`;iY#C^VB-~s&$i%xFlOuvolzT=bMQu;6nGIRNGH?u#T|pBw)#OeZW-f*)@FY|L
z_!V+PMU@aF$S@Hxqb8VT`T7gjIIB{q&yRjB%LIoJY)_zYFq<c8kSVHixq1PPVg{yt
zZBBba2e2-qF)i$@rDhw)Mu0h@5)}W^7ZZ1aUM_(Pq=)S@V^-^L^3k{dYT2mWE~kBB
zUfZODIKiMI;?3dO4eQJSQNw`91Jy)LNb<;|A8<hwUt)C{W4`{+J~g4vtOsQ^Vz!CE
zJCN!#@0o`N>A+FiscsZgLQXZM8R2GW#2F`9r#)p#hq5kG%vXvTBB1=WVZvkK_85oE
z<)<ko5x8EE*}!-OVn`Yk`l@ZLXNSqX;TylmGZTctHl0wa16C2dCT}dlna)N@TPF&G
zRhzM;`W^1PCIpJ20tSO`69<R-ErkEu>!!i0KN<#{!lz2Uc9$)tN|bf*!7vsh;zGjq
zp^35Qn-9?(c{O5$c#)DITojZILb|%nyg25VS%E2%l#acnS`keO<v4SrES~B#f@~4r
z#RnaCwK->U>{k5Fs8SiUk4Kf7YW{VlUPq5}!!O`q^codXLk6;78}2gq08B!p(k)Gt
z68x$>a_VVj8Oo4cheA0UD$?Uyn0Ey{;t&wgExbv%!f|JriKF#u9x)(X6bj7fXl`_Q
zi_~3-l7%i$A%TEoiPOzF!s(iL1@^XNKIqC85tG1yz>wj*E1th?r+ILc{+b97;^&G=
z)jb2+D(m^B`SKPW>?d|AOCple4{U;+D*R^QZnK(o1LiJ3za=S^;AT>J3F|rk3wyFa
z-7)8h=nQ-jaSnWayN^xtdE6zIg5&|<w~&t_8sI;sH&UAcXdS|Iaaj$oE!k<(#j8eV
z_bPO4_7xLHrud$j^^jhtsIE9CT?K!9xGCa;UAX=k^NSntF+|&Z0nxLBPpmQLyrXw!
z6NV>WE#IamqLCx5=lmn{^t=2-Vh(rL5DFrnpw8lTYs~J`+!0nD^F*n2!&0*=Uat-<
zkCNbqss7KO!yD+`3q*(FD-J=iKUtFcC1z67oh-FlvRE(DV0y?~YOUt;dvP0SN5!o7
z%&>EHV?bl7F~L9|`J}Xc=AJ0;rz|cit-Bd=ist=dU-dEP0$mXmhVIL*21jFNRFdsx
zmuR%4#Ys$;JA~7K?fBzEvudGI=?FsnQGBF^I*$vdo9MA-C4s==pm0yPs6a&haeL-7
z#`m6{kAj`}T#34?yqXvuk$0I|((dk==DypQE{3pL`bVP(;K*_`sZg0jxk(ejOy#JM
z5F@o{>+}#IN?tqOd^%m9FLoBPC^>`oT8~G}K0s4GHb+rp)#~&1n^V#1T}T5<P5@F|
zE<hLrelXY0b4>U*ZbC6reA$f(5s;pmmyEyG#_6zE--TmHcof`BmukF(-7r@z;y1P4
z%;W&WgAqI!iYlQYMK`nxuOb3=*h^+~J-=x>p4`vjR5zS7oJ`f}oIAm^7rzX7doFSy
zIwi6o+uY#7m%3nH4MjvvCc1$SKkouFfOtc=b0MLQr8|WqXy#p@-t=ekE_R2@Mo<`X
zKUv(e%gmNP*#Q@8;b6fRDCWQ(*DNvDN^naCP7R5baOpyP@=4ZnEuH;%_t}yH%p<T-
zT%n>x?T<5S#ClU)fM5}vq3U-S@VL3_QGO5k)dCo>9@x98M!oxunK(rmHnIA!4?=6u
zj?nmTGQ9xWlrn%qV8!l%eCb1T-zxo*{vwuOVv_x4B}7ar))zMd3%DjR<{xPXNmg}%
zX-P1kh%DX<c!u2*#pI-cgBaH;ArH<loe{D8W)OrYHZeE^YjD;bChG)dCm#3upa7S=
zkc3c7e7}>A9A|`XbRx9C4Vs)J;v~B}!}${#%{XRT>^^bMOz}HQ#42d=Jx3Y|Ap|AF
zSM}Kf)AvICWSHVn7dkQWY}37;n*+}=K@q9ZBHdV3YR6D70a8EePpp-l0%Z`(aXdzw
zC~HLIS2tEPx~rZg)NXzLvoUfo*{4P+9EA80+~SNjCQf{7cz#3DVo#U~OFH})^M>qp
z6COuT2+>Vdp8OTzC|c!t^=1Q3MxG1MS{}rLW4-jzo7<V&rZ6IaoKh0!M*?%OlItLP
zP%Pd*;Y)LiM1rPRmm>a}$VB(|OH)zG2ony{^aci?uJ?C4noN!xpN|0604Z@TA>(4f
zE5JKY08Fu6Cw*)_-7-PW;Pzs^%6|NE*vu49qgX6aXkTh!05F_wI*(+wQqZV6q6Fc(
zIA{K1&V$YbaSa7v$Dpk;@h$UBSsu(KcBIjBf<?GkG~AbC0ECBn0@d8p(_9Wpb@b@h
zVoZuYn<=`>+A-#q{>q`?-EJ`yH>lwUp??I)KVVbjfnZCL&YmT{^|YntFh`k(4~+^)
z&N85Ih=&G(O|p7cnU4wfYMLVpufBC<+9-nLpG#1)I&+#QnwO8$X|52jv;-uGGzd&K
zWtZs$hla+BA}*{##CdSFx%fv`rHMd5=7psZ?4xKRU^RFDGRKqvRx>^Js#ao)_$G`I
zW}aSa@=lF?xo8Raa#S@1+EUdS9GPEz^@!PlVZsL>LQ(lE)WHmTzzjy7XhtBX#km>;
zcy9y>S6dDJjaQdenb*Ytm5_x%mFu#G{qfAsBTUs9JTp~n1@$d}=?Vo5y~oU7u8S!H
zIBT(H*eAKCI%u}{;~wH}!$lN04vPfm`j@LsuirY!kuNN5EEmdGr)K8a&hyyH@^hw5
zn4c=_;^fNTW$O1L+SMbBudxzP4XjKw%O3koCcrVz%7#y|%VI|<rbWCD%53eq&gz({
z!Sp1OLM07Of9a&j{I~yL`mf{xqPU=5xdsqH0;0;Nvz|%TZ9kc9MNmHb!EqLMq$m){
zTg;)0m@UP?j*-aXI*{Bt(R>xy{&tsn@__yfr4fZ!u1o2S9bcJ~U~gipgrn|TUF(Om
z3#PsB3$yEI9Uehg2v(8YCpCx?zcjt%Tv0m{TCc*9C6YHIlQeXz`(ER`tYaD;QzxP3
zoVoQIOe-XTSX*p4GD>wnc^=35*G*<83>|tPp<TkXPz^*FoD?<Rqe=^%V4|s?Rps`s
zN#?*LuE!|Y+ef0`3ELJ@csXKj=Kb80EyT&8&&ZMm+;or0#eCtqIMc;Hm`ofw&Z>z`
zDFL`btEx~XagroiCSvXrE(A7OE*O%`h%YDmc10ymVH?!ao`9&MYX!`d5U8i+hS;2f
z{_*5%Kp>cO9GR<4qd4Ie@kiLJjenHy@vS`InHA=7F_4>NO$;fKb4ko`IJz6yR^xQb
zmz(0-|MtTo4vCKPonL%r-gL1rP7fww1=5j9mTZjWTx2mpfTe1tU|A!7H$yk@90EX;
z14+D+D0`H?VmkZUI#Y#9(A9(x8aNXxEWu+~@=Hwhjd}`Qq9chy97QprrL?1}f~?_V
z3rypuN(yq8nryC!QYwM`|BtUTf%B<qANZ-HY$Y-0+&lbc#t<!P2E$B9V;jSaWsI$;
z#u$ud%*2eXRH8*%v`UoLw^f_8(!S6xNh+ZfLXjmz{lCw1?{60B|M|S1UUSa<-Fwb+
zp7ZRBij1PSKlo_VdSB{u+2QG9`hz_^(X@$3^T4{K90~@Dl2g-A+rR5J9YL@FG-80*
zF~#dCDzSe})7`)6qA?yL=t)`3YHOwl*5qi|fk2&Xl$V+|xu(i)Lg82h7_j5`_nWSN
z0~iqsp-w9@Q35K7D+$xYC-I3Fuj6~s`&Tt?5#5p<g5bR7^X(D>_bTP`Xy7QRk0Kwo
zF~8*{{`60^#596h*i$t3R_-MRJ9@Ct1BJAz=r}!hrc5ZIR0FSq>5B_3?&M~NYHL<C
z&6cFR2rOC>V{iFA@urtFW4yP@=whmCZ{9z-S@Q;(R@NKTB8o1M9a5r|0sb@VH#wU1
zOU_kvZTJg_!wA=QWHn&YuqvwoSF00D%I1H}Q2y*cX2>P1oRQ@4OUtX&7AB7=tS!tc
zus=y+uk=(Ph3w?F5+9wf6^ZH1aA`^D6fLGKX%$p$Ipw*;?TcGdzzFTWi00Rt%Y}^B
zmd-(~&8C5goo?2O9T`%~XySwslEf=Mf_5g~C2m@(b3I9;jE1)n<3#D|28m6+)TwTw
zy#=YiMAbnH=>oO#wZ=tBgbE^?1@*Dp82`nDi7zyHiF-qvi@~IhOIM5;ed3NCocK~w
zni*JJjQ&7$UVL^rl%rV6J9<On+V^D^?*`4yxS*y{S={CfM%wA~U8GUQ+5O_Sv`>`W
zz5y7yxI$9&LaEYyC5c;#TFFd$SsvcG63H$kAVMr(G;*o;nPvobttgN{>5a-nL8M+d
zRaljp7q+Dm&(Bj6JLI%_m48uSzZ5K#Jac-hOSS0O;mtNSX{mGgr1C&tnGq{O<EhP-
zeoDFgqkaWeZ5h<;`R4kobm)b?ER|%-FHUdf7U(b$1bGsksU6&tO}$H-J^72is|&Fj
zq{i##Neg`Ryk;l-^=}`c9$mOJ4y`u;7DJT4s4Yj;+Pu9kaqu^%y~<n$f${-_DEdtW
zn>DW__Igxj`jRlo^AI4ihSnr*WVAX0l0Ufg?L_~6ML-A%p<zK?3v<tg#5<o1hb!=v
zIE~83v*2y4r&Se9hc%MB{#oKKK){D`0d!d&ih&@zbjb0pO-$aPQ%7A92zz)%NTDJL
zQOagxn2}2A`*RYXy}GH?av|+`bP3rHWGYKJZz=%%()8Z+=+x9PT9O0Nn-Zv|>DH#r
zvnUyks)Hd-@L>u_gd;)BW<zErj-dz)$*MUN9T2^fWN9*VSAUXt56zz#r=NC-q^E{;
zGbpzPKluCM#C4ZznGYJHkP3?`&HEQDO)Q}S706DZeeNbLLdo7*m3TvqW`aBY2pmxS
zr2sdTBlfp$HnJl<Dk`7mnege#K`BfeeFbXx6e89z;{jhDdFPyFTP8M_awPP|(nX?S
zF$2VFc4_9{1o^B=&KVBLIopD&5+W)HOJgFDX@@<Z*!_04L_z6->a_qgyX1t#W_4d|
z_HR93plM-C72qZ!FW%lDeO{shs2cU_eTmDbG?O9+1ISzzM5N3*fBiZqaZ!gerA-o4
zAg_Qk6YYnkELo9o$2@JsP^GJoMA992CE;-z{&3zs3MNi1jQ=q2(qhU)nF)TvLb@k`
zl~Upy!P*qPl+bZl{1N5m+C<CELB4}-2|*X5Pwz;$t&B!QMBIuO0wOgpCn5ftgtf$z
z_Ys?yIe%Wl`YW~cTo;UU#nR3R-)<YTvPVLfH|aM-dMa854ZEZh1W73Ltz4dP{&3zY
zErh71h8qe#FWkKR$%HT0B&-F_>6dQiGE>W=wP+(JBqu}$(B4P{Fl0r+ACVWf4^Ei>
zTAb8-5CbOXrD@wz{RFn~-nogt{M|&-!v{>IOa;>f@@NgI&+kt>X%U4Wz$k*L8K(#>
zZBxv-8HqnqQH8w!jFGeil<MCUf<W|IkyyW1BoFS@RjXd1&2SONUDkBFp<s~|=f$d8
zG7^c8^OFvyT*o`IoA;ic@Cv!Y$gB9isJV#5&jwx|*tEs5aWauB&i(jag_K>CZ2DwV
zV{p^AYiLsns56x#g4QUKea9wV*_gQY>t>^%g+ueWK<4HP;-7vmeiS#LCk%>#m!`*`
z_zeSc&SfN?U?-C*8rzEFZ~B;Fu)1JW-uU>T+9qycLHy>AIRU9EdMQe$^aRGN#qDi&
zb;3fgI&z42t?QhGO;h6qyV428k}~SlS^x@_y}7EOBYp!jgVrGH6&>X$IZKHJ7wbaD
z6BAB4wfYBADbRiE9SM6Vb_gO5D5t2AB*POtj6LM#gw)MP;(L2a3|#wi!b3Fo0A16k
zV52Y>+@8>B6ga}I-Zy>}nbyWWmvEb@-sB34B^>(3R}-G)sz7JbN29T@H1qL-grW4k
z;^cbgP015~j6^<3J&B9b6MD}}ke$;nn34&yagd^^OX%7>Ua*^H1|KDy*`F&$OE&t_
z;5acKKb6pNQP8D?-A~A4HRUrCKA}Qm#r4{U4uu_Ra)Ox>FO32)s6(c(AW%3U#jJX~
z={qee8weoNP`iG@RA|A-u^^^Em~`<|Q}mHu8z;!mK>GA&nl5Tj5q#2qrw}|)FyY`>
z%J+j|*s-O${fw+gA+ZO>Y(Eq~^lVBDL@RR<fYT<d%vA)bKx*J_i}9FJi@M*s&n7(f
zdE+8rhU$c7EA6)+rwA205}U3*gYK663ct)$7)42ZCJivD8Hxr)JPm4P+@ge>SDIvJ
zP$2<Xit1%t3e&S&s#*MSV)J&f**!?pl{R4Fh#Qd6){MwctX&eDoh89`7?3c!k1+#=
zQpE4t#O^1=W@k&k1_^u}DXr@UbZ1pR<s?2;7MtB2w?29Ugn*jZ8CistT%0(jiGF}a
zYSOV_Kt_tWX=LKYvDy`{ACW>PHwPA<laSc?3Ht4UPsD?bFQBXesPgf`#HVWTT5gpz
z;X^AZFkQ3TnuH4^<tlp!B^PM+SvWdgZlN^#qXa;1;)9$0Y?{q=Cw*iRuritbK-g7f
ziH&ZG&87zn?X#r9^hlF2u&p^iBe6*y!)azPYT{^Z)H0w?TeEOL;@o6?T#_JAU#9Rl
z>uj8zIRAp!>|SWXSaxx0B31$klQjUGNO>~x{qDerRnW+m3M)tfxu{@wWF*e45gW(J
zf@V_-D2$_)TVrZB^ltg3K^)wv2W|yyK%=00=Gh^BpVWqNAQbsC5--Ss#Y@-#bDfua
z37b!mS9KYmM`;<#h;RcIcoXjDHOVFu6u@C+-tt_t_NT^yAN|YoNV1M6*oNnc?iTj8
zd#*kAu+9$1D~az_!hgDz#COdrEawXk9I}h1=wwDYSXf4(bz`z-+CS<wl=tNnmc;j=
z#&wA?2QRlne>gQxiiz+BjlidNxV~$EbV<9h+}>D+eNeMq-b5`kiWQ(0h}K$cAN@yv
z+E4np5*tLovB|u|z8(Bv06CCS_10`W-ZuX!{01$Y8JX&AgZ;X`XeVQ{aK1ftj}B$!
zN$a`~Zm_3q)W6fm=b@G(F&neyXM4qc!S6Ux)?-Y{ZrfoMFK>%2e0;evi`RRf{C-Lt
z(#QaMb-?SS<+y|^KDN{4oWxEL_KVoN)VMa&w#Tg7(?G|@N&yIngE326*u!1;h~(!|
z+q9IDHGI19DQ;YwQ{y0Fa%l8G=DlL1F@MzY4mIb!*fDX>P_4Lx_#O6m$tpM83&zJ&
z=Yllo@$tO?AV8hE+P%4(HIqkDGBFRQzhrb6lkulpxl`fPLyD*45-Ak8nzjw?-d}Y*
zy|hpo)|%qM_U|1!0%lVVCtl=S7P+&hJ^wKs&%`fSP96PP!|my{Ids57c{VBWY=%tt
zhEHh_2Q#LN;V$os2++b%Eh$>2_p>qkQ+R=RxJtlRVh+u^?_)mgRWXJK8}exyJNwo)
zg<K{!e2OUcw`UF3hcXBo86h#>#yo9ohkJF9Wm3b3-<|bN%;~pQyeuOR3_*D@7k(Wx
zy;bmYK{F~lcBAlfHqM$7jBcj)S$0{XPG^plU0vVQCUoM6xIuC!1m<1JIa3~8bcQ!(
z8N0)!NWpkqO6I|@yh$fC61*2DBQ@Yy#?{Z*)PVtZ(QZrdXv-hA<EMOr;++x;L|~IK
z?~kzW?b9)VhW5gar^XOvqq)(FeIKS<bG%*;@;SuKY`lJU$36O+z6AM-na#YDXqWC{
z2vZuW&)5RK$LMXp*b_??ABmpev;x%8OV?&?%-3)810=?hVhTo(a4RK>j5%?6%w;ol
zq93Tii%R0N(bw`uGS}*VF@N^gIa#bYk8qAxUgX1zVzOsNuTH7_PVaw>d3M1zewAi2
z>7r3A3v0UHJ-U@4sI0sQ=QX9JE_7*a6pbk6TmtQrw0>jiwDM;3S1ibe(SgSLPWOAv
z>IJ$IQr4&HDmftCS^B=1$8ON6>=LR45}OC;n{SPI?1f-ZUY<oJfe?xLdt*MnMprEB
z;JYNf$VuyqR?oC8KGexBg=JEBkoPp1qM+xXk+7tRC1YRTWs^=+qL)sk9rSKvhHkgV
z-=#mzgbIL|7)~XZq3>IE4ZsDdGRq3Neu5Rhf9Ec3q+{uTGfE3acJV&?2wF`WF~}iI
zmq**DN@DAmExazRc|O_nDJ+qyRkWb!<mT)KMzDQMO}NA*)`lGd)iW=&qYK%%NKsg!
z@T~}LUf$F0{9Z@3D1N{-sIhF`A8z#s$%$ie#Ag}v(<QEWonm{s=(18~&U{?rT{N&!
z9D-OTT+f(Jjornk@^>42SwuWS`=dZyur}tDm=N$%q19}Uvq@L$Ksp(t`s9T891exW
z#%+i><qic!SMp)>u0493_s<gz;-umjEh}MC5(i^$z1Po=Q;;jm00;qHO`C7GTOB7;
zgL4iJiPcaNMl#3cxN^4I)=+bfuoqGwb^_2GR2cu8ZL~&*#p*14tHrZ6{%ak{MdYCx
zKNLVh2%u?i+g;1pLmFZ|ZP}twUAV!W2Y-R;p*7GYULe&e)!*@CeL1akOonB7`9il>
z4%G8v39?Ly(+naLs-PENqN8j{$QdsD!aguJTpUh4ibw{cK?Rui-)nzApa%-;2(F}f
zVFfo%vrh&DCZJ>V#1Mji?<hO1mQs~WPMKg(V~!baKZj)?y+pAn8`*_tPyfv+b%SmR
zMWUuM&pdFgU;dV!qg)*&<7pb6+jLz_%S<NZZjUd=?Zg`z{%WTQd%^htT8$-&2$v0s
zC_C&&!eg+sNPNc_a3GnyIl{sB*_*%93C;*&JR!qv`$hj2w1h6O+y=c|mw<-!LA9Ge
zl>{8lK-idHd%C%sbR%MY;kB^8B01wt-Q3O#lpb<Fq_H%R8jRjoil`@Yey3ixpU^j{
z)=4#`Vg)ac3GLfl?*H^HD9&6tp%vw2;PS-Teyf$$$H)^z@3?!m-*godq`U!Iu0L7q
z$f=X!y-r(rf112suvx}={PR=20o!$4s5khXl;A!2bCm%e11b+T^^Obn)whTMLZKd%
zbVU6+Bimj7h@w3tPs9$9;3Up%&u!K_Hkja6YP&IW*N^rUxnvSN$I-Kje75rOX8Yz$
zz9@zXf^eu68lv7^7rWzxX$fbcbq0WctA~5?4;{%I0mUT8wuu|w46wF`szvG7i)Xr<
zYv@=n00>_eQnzKe%WbQJIXDP}0Jk{H{S&VvgV>J5H#4{=!!30>*pI@)5XF%yG<8aM
z*Zrp7rL!VgAmss<BkGEs7IbkneEp4}qw-N>`qy+dTLy2Z{GZ6k()aZ0_4Z&|_^8}I
z!p+LYYyK9k0XU_MTJAu*aK0$08Yoy>Dpe|pzroUx@SVLERwXb&3!MmPjrnqqeZKvF
z{L0+(o!uF192bo^`Q?xY?6%h<e)1NU3($k@nBz}!$JW#rDZ>*6oJDOnY8INA`|R73
zbt;o%6Tzv~3wB;g@UZxI$0<9wX}xXUO$S3XuDlxW{bbh-)2Z&oBg$z^Du<th6_#+T
zRrb#QOiA!40w1)lm?CUqJicUSj9tV+tIn7=e~)R*Ae5l{WE3%QoWK@vaqeF>d$gjQ
z$Q+8Krq12=pVf+T*jXmzi6{v+cysKFg3f4_<s$WSr0~hMSoY1z2kgWb^^1sl<B5rf
zGJwz&{XfGN9Z+eY8{sFo-U_vM2QQ@lg5b{LmbT_8x-6kpgtmofoKVx9bUC|AR!v9b
zjqP>Z%$Ib8%z3f6J+<H7_Pwq=6TXlK*Hvwxa}QmJpj9v2#X=LHRweW!5I1e@4mN8Z
z4<Out`$DX^tDwl}B=7A&x9ElOtT1FU$OXfn)7KI3hO!3Pq4*7H4JqcHW9;|0C^ULV
zTQD%{&8_yq%k^P75Qu(-XhH>FK5?L<ty#i64sE#&urif2%n4WeyZjiX<5F!&7A)GB
zINAZwZ(ZFV#q3h3JYnLnb7ha|rTji$`X8Cp&hFZ=0EUE<5~3HQ-0ht9-bZi3-GpwS
z@3AM=jspxkNXO3Zp)|x_ajOb1&;TBJZ}4RzMnu#tKGjXWSHIj(T#)gB$|<$F+052D
z?wI*}RI0MeB=w2L00!aQbjgxdNv7WxZ`9k3;xLj`o&{<6+ykL4*B;}?zN;cgg}g4i
zPN##nF>^ERsgpvuLroB`;S)fS1MHn@XI;t^gbxf9mc1p{t?R&2+6P=<Toi@Q?BdE=
zF^(dG$c$JvF2Ar;*m=J+yCYWLo?Bij5*8}s{+Jc_GepHF34KLu*GtU9dmi=A+oMqE
zm4_08!C0!Gf8Wf@`!qZi7`VW$Aifvv%fNd;Og`stZrroFsLXuKTV}~HSGE^)5iSc6
zLn7b@5cGg58k5`4|L#7HL_|V}0#wA9kzHaRI<=wbEt#dlJm_=E?f!VKSK|`E8XYx#
z7I+6n=|DFA9n^U7@tOLMdj-7$6{ny)04r4$Sy`?5c5zo$Lh4Z{d1MjiiDk}Acd-kW
zvMJV(M`#M59Tpe+I6RwY<p^`QWBLVE#N_&q2x;KTk^aK#6x4x$B>7k1fFM+$$(S?^
zLtZp8CS?fktD>YqF!Dw4eW14Y%`~Qv)JqAI=4>G@8e+NO2Rj4}pAAbxpz#5o3QB^b
z^=EtM&sR)70u2j@jevWwhs%oGIqw0*s#-chFi9q>me&$q#>9Y<5iqkru6*!RFYhcJ
z?L%T%ftXl`#uI8MtaDf$uaju@n1V<u5M=7OHRk5W6`7!lf*@()Dls>GA9KGTlt4}n
zPiUoCyep>uv$_)~$;3RVMTLQ$rysl8`(-YdK{+yFFAtNzh=q9b@Aellom81HFYdIR
z>*^RJGhFqpyX^8tI@Sflf~@qdoi<$<Eb%B}Q0Ri3g2o7(kF|@h3y@!IgF=!8*Z%lB
zX3e$XdT}aXWB@x=#xrI^f<1A#&Ph((2q-*1sC-XXjETH>c&rWexb9p_a9pG?)csp;
z(w}A{g>esd92Xq`T(D@e3e*F0UwwPlY<*Dq07O=(^0~g<7MKQD4BAK<)e#wux4l6X
z5TYB+AmY2VkaRAtht?5Fn(b{}sGvk22Ew3>F?V!u_80{Z#wF1z5JI3O_hq>oFn<Bv
z0ByU&)bT2a*0C<hof-hND?p}Nt1&A^xjAcDqDT>>9g68<{rT?agF1wS2hHcj>T>z4
zkDGB=$NRCe@p2DDMMWCH95!v0J@*_itep{2E5C$W$mYbwMwmm)39&b2a+wL@<znF6
z)#5}45Bg8^)zNA{F^RQf@9nAMxv(I_nxHOH<GudgG9AX_PnZcRx4eiQ&;Q4NB1dP^
z<&KfguMu9~9v3@us1jpne_oV=as~*y*>!A=a7>N=FP2j!R*zR@9E$lSP|?wCblfca
zE9TH*y~DXB#d+{hKy>lf_FMEcxiJ-Jk(MF}{P!Pgx8A5T=_=M?yXARX#}2)oQ6WOm
z$&nO4lOR3$V)-Du;&z=%2l@atA4@pN(zKDk#J0T~j6mZlP;xtOyMM`zx}l!s=uc|e
z<mJyj9aD0ieiCLTOk1*uVg6smob@eIN)!)rkXPl*s_{KDqJ{fF?6*QV$6;$Mq|mw;
z35GPcy?X0Q$%WR&CFWgcJB<JkG&(_%Q502tdG2%9aV19|utc$=$Y=T!vkYD3(mqw&
zzq59X%nt%FaLJ{Bra-EeKWRHu4y6<$1XUP>I7;v*eE~|{++Elm;08cz3@vGl$+^+(
zLc6azhAaket1;UpHqr^&c@f<y^kARowRj=qWaIEb1STZRx1y|wORnpU?vq4*Bxo=F
zXdz}~wh$pqyx<uB;X4(ZsL{l*aDU-x0bejCzr@eHR(~25jWHW_^^-rXK9-_Qe`<8`
z{g3tHl2;Up##|Vdy?%pj*@Y!)myNvmfg@OgaHob-y)7pKc!;A~C08HgK7UHlkJ{B(
z7)0gU_>V1Js3#$sD8Oml!7baT`xUd5%6af?DG_a6y~53UgVT{R-u$>w1okPDy^m(F
z#T3&AZ$0G7)Sv2=GE#voa=YXdMS2l}OyPV5PQSzUeso|?f%}26O8T2((B0{N*`}Wt
zHcbmdF_IZ`=keYPe}h|r%^edTJU}cg(+cgG6GDz51`^>q6H&xyTnl%&XpT2{iY`vr
za|ZGuv7D@BLcB<z{2t+)8$A1V@7bA+;`kR-BA?c{c_NX_>EZ8=LF|-5PU<ZHwHQ7z
z%{$?c8nWaaT;Wh4?|8mfuYm0&8_{K?$~o4jZ`B41&+bYtRaEdC_M+W3K#xUU9H@3^
zYJz_?-Juo@#W)00gvks3mEG@OkE(^xp_f|ZKY?aw4Y{D$PkmR9G?Nx#0P3qvc4m$a
z^e2ZKb7mlAgpYr*$1drkpUy@_gRx--r{DpdrCX=r+xy*q)l<p6pg-R(sPCTJ%;U72
zr^JbHwH~Lqg*)^S!jN#fQAM%BOcD9fb{VR3y3!sh<Zk@Mp3#pj5pRoc1CXbrNVNMO
zDgK8i#{@_c=ph&hM!3Np_4fi7*a~4DtV{x*ua9%hPiG2;kqXZ^`})y$6(tzSv0YTt
z2P?<t1*$pS0Jwh(n!19<`bOc^vL#Z%7{9Hd>xU(bbx8j|A!QTdGXj&{p=SPHhZGkC
zUvVlF3vZ(`IP~@MME^<~BR|72AR3}MHQOKahCVGzrf?#?MOhO@4D{}~@&20NRYd-l
zj~m5W8+Z3V_@6#622G6hh_~=tY&m=YQh8ju-~F)8V=x?3!U-|ScV0cyU-x^(ccN+=
z%nKhJr%r?zY`<MMzsXJdP`WfT3Vyl%On<bPc|^`q3t~C_a|CR|+S|e6vf=tk0=XP_
zzyG;8AL-o_uN%+Ie864zjSh%GeR33mZ@kxyy^mo;(a=Clr&gd+vd#VySYmqRaR;PG
zsWIt0?VZ9Ni9f8gSwOb{P=g=rAQTgpp#H(=>vx{wUH>M-?Z^>OJ&?EjnCFlBMpqkL
zM$uc<&M2zVF@4;b#T>KB<&~}-SRZ%lt4#aAqfiJKwZJOCD`URzYrjL(<Tt2Eg%X~}
zeise49fW0T>UPDmyoarJ>u;L}a}+F#N&rj|J8-a<EnjlPy9n6lJf9zA=f9-O?gB#;
zH_XsNw`hXyxf?WC*;`<+gvLq&|Ew$BfSEd<Nsk2#N>{q}!}V`r_dr#uz!3unI$oCI
z&fBYUQjWy4N;JAKo#fa2)Q6Snz&9u7iOkSxiGR8f>2}2Y>60esCEq?>?V)xOXJulR
z__4v0xwub+C!?1D#Sb_8r?%7Q1I8;Ph>{@!{cYR)wykw4`V({M&;H=x=`0%U2%V`y
zvRXdlpZFLUNq`qIC1TqT40K{bs(-Ct_>j(}PnZCA8hM|8^J;x}rpS6)8ZzN3zyHm_
zQUb4X;G1MtOovTM{PIaUt43(G4c|A^-^LhUOc&E&<x49b!J5fwEzk99O;q;ZkJOa-
z9-_-Z@|w9XIWh1XQa3VB4X-P@_;oyZL)74%3#r8&i2{jtbI&98jh-AjcCc~+heZ}K
zdoK2~59+e?YJ{c@HpFL7e$XEhY^ds-Idy@*m+LGtn_3M6W5}+#evL<UjiCf&O0(RE
z?TR6!giQ{_53``3D}qjQwJHbOv=fvZ+25Tn6dbLe;vlGFH035``@5JokSby0gRtRX
zUsempfxXU6R^ow~PkK{>P1tuRCX!;}eu~Kvr=65@2>l+UDWLHoymAiz{1tQFEX928
z_UMA*DhB>aLBPyv;w?OuJwk*;W)qpw+|=7UcPC2^VEeB=4-&{Yj@V!A$}e@z5K98R
zjahiUx9@m;9kw8fm5XnqbF#PQWCbH}gL#3&vwWyu_d3R;W&9C~qpyloH^n>K+bwOQ
zdzZ9Vb&IA+t19zUecPanjUQ#%L5BftgmAVce}SOM&%855V52L1$dyPCN56S@Z_My-
zm0ZAm#0y8i8-$f6ad!G~%B+x*$eTB&=S6M`W=6J}4)0Q1PRBleJy?)h+||#4A9$Uc
z^+iY;iLwA?i4@~VyNq$?zaCOW<P?dIfLzh4_`?iaaF>2x?S3-Y#$1qXOYhV{F#+q-
zW_EA&(m=X%iIET!XT9^>!Unp=^zov!3vZg&!A%u^Zd5r)C!Rwn*YGs=b6_zaByJ3B
zR1!iUgaB(50B+aOJtwNWI44kJFkzzg0EfI={V$iP01U+g^zsWyr<ImUsYIGCy4t^D
z$-mB<;;a1CFDk^V*v!NR!{;7f6Eoyt1yjGm@?!ehwLw8hG5%0za4Car7-FO?pxk2N
zrmfz$YlJ^mnJ~}3WAo3~F)lpDyqpqRznlD3_Lr{|4>QI3ERnth>do}-4n2yL>J}1k
z=V9Cb7xtTMy5!~O$q!%IZwn6Tx4Vk3THIT>Rbc|B{%CiN<1lc%6^@mhcr&+->#;Q;
zLWKb`nz`-${)sA$h((}`g0pbKE;=Rx8`2B)??f6g$;QPZ(u0U1J)yz#!Z|<2gkcZd
zJaGl60p?H-JA*S}(>WDhK)2N{dq6RxizxN%kP0;H5TEPaxQW3|^d7ayVdR8Ln_;Q`
zrlu;}K}$+m8&+!+g>&6@OyE!?61#+qm>(mqAfJy(e5E?7sr*6!o+{773*C*F2alLD
z1!LV?GTdJGmrKYLk`wiH+MASd{**X15~mkYYfs+at+l(QOy3d63`l6If9duku5-E0
z1)3SyAll-UsqWLcQ4J?hkRIyl-JhuR<7i$6!)5!4i~O&j03j)~hsnHPta8O2S6gq4
zqDs{HIEYHo!i<?&cbU#e|7MM1u{YSavver1vt&*{Lqr*BG0lD;oJ393g;Bfh{PA|?
zcn*Z)L_8G{QW5-;pJI;d$1ov-;1{%y7fkEr?h)fcdogmA#P_UJs9s2N^Y`cs=a1a1
z;_U2A_Vmm2Dt9ju(~z*g&ac`-xTbjpxmjgO1zy@}Q<HTl9g_}(>fu*yYCyWuMFa=-
zU)6Jc0$E;=Q_-f1rZBILJB;a_cSgnByvo_+)}kO>VcfEL!Dn%$8uP+x`(t3#tK#S}
z1HQ7)<>*tiQboTPy3_TLO(J}Um&<X8%(b+E>jb7E)@jUFKM5@2!Mfw@#{^@k$vNr^
zk&enr*VscnWKN8Z;9#ailTaGLm_FTI$0>?8a&5SACuh0E0V0Vy7*NEdrf%IVeJBt)
z2Na@_QZ5ee`(ho}G%C&&3)xd84^I;m=kG(dUy1&#R{^|Mc3m{Y-4z(ug`ja79S*q9
zn?m6vziE6q@myji&nUsnM;=ElZyp2}W-26HIIc#VU=>HVYw(75`9;baRkn}H+LK=O
zPVTS6IHpU8{bi4n-tnf1(JTeRoF8cU3vczZ=J8oMF#G`{g(8onbgE=an|kfspb8so
zpbaNeW`>mJR_@CHEuubHybO>Z`O(-^cM1M_P+Kl%pa==2&kRXSN-C}K#@u5+Pf`Ym
zADH|z`8EqYE8EW;rw0?NZ(xrcKPqIQ>o3wXLDK<vj47PsvYt}gl{ycjk~`HLIgZI)
zUBQ`P1~IfnSQ`*;WDTLRyfEF1zc@HX7_tP|-P6LY+rs0*(Zh>QU0jat@Y(j6z$gdK
z!Dgj+&8)t5Gwv?XXFwk5^<)V^tjGg~#XUXFU4g+y!Ktxme6*LC_t3;i5u#?QaX$uH
zKxn8iBWJk3gqXpOU=(6a5mLM3u!fK^npFaDSRy>7_yQ#vII}5ENx;M^`_5-N(kpKS
z9L|_kYi!3=I)Vw9PyumVZ(eOT24msxq>L$U=+*X<72H(B34BC>1E;+z!wa8t?T})0
zdt#mpT^h!u&2?Q@@)HS<lJJn|skukpVw7%xCntVnuoXHMDvkGI%qa2N2hT+H-0(c+
z-5FCC%RIy(w-C%1=?-~{U)AdGpVmM*A$SI!fcM<gT>n$dHv(fRAj4pYnr);6(y_H%
zVc-+X#N-3<3#~XUj(2B>*Sn2a1`v0F%=h~>3QP{YfEx2kV`dzP`2xGU_=xm0)YZnb
z_g>|{FB+}7KO|%crG;|DDdwed{u|w3mT+_&rBbUUO3nYe%C8?N!4-0`y1uxI>|%N&
z@6iK_pur`lI0KjY_HW&y4GQ9PoN>53v4?;{L6oI2d57FuAkEQ0j=4`z5~>>`l-GOE
z)e3?N@JWczBM>U@ZRXC!?!)t4@%M=d1;W<vcDFhiDiH9V=pp`nwVR)zqoOB_N8E?`
zBGazD&0W?<$J6;Bi^244-hRkEfEviAiJO+hN+e|B+=0{VuKq;)4HZ#PkR6g9$@|+i
z&VTY`MRO4nVG1k}tj2v42Ir=e2cUMbO~2U<;*b%sQyz`R7B@U#-v~C34lqiht0Zy+
z8}=mE;ceBHA<87|;f;;Y<w9UYHgQY+;TMGDjT++k`p6pKTA#An?(VDiRE(p6Jh1c~
zdu1A9$wn>@cqM%H`4e0VUal9KDnUv`0x5UIk9OwSIupb$Ac*#H+u@#|vEVm8k~95F
zw(7@2Tta-Nl^iYVC|SDQ{uG36<kAq1hd<hBuRMp>;UgFAyA@#uVwC*tUjHgFrv>*W
zTRbD;hZkD&L>+rt5bO{bfVyh)9Zd7$Vt6mjj)>@e%Mq_CoJ1slq0hU{vNMP~;Ehp=
zpF!<fh(}qQs?K2vW?`^f2Rr06eL5F6mO3Tm3+%CNXS=wi;v#9}BQ-MhlFqLF-HL81
z?Tk}s1+i-)hP6kI%5X!2Cxq(IV^=sf>Rq}!_Th>jR?!UkC%jkq<6qs}&kJ}&szZrQ
zi&_{6hZ{!w+m1&#1XqL{!N?IB5&k=t`oGoyY+`Rk->0;o#x3tX-K})+7mUpW@K8Df
z1q}i?GIkIW2((tb;uNdqG+wg1k=sJBizSpL03Z!GRfAKAXgv#szKAS7X_TKJ*DADC
zRiN$DTl`N11w(fvRm-9Ti(>>8n;eR%C$@ViPJnj2>(Pd>c>*R>aLmxeaB*&R4*HK_
zDCaJBp8#zLL~YFXAd_F_HZE5AAQy2DErKpQS^_C4**ocU)<i-a>=`JCoeZT66#_R9
z0fD^t(lqbvSbe5KwWhlh_iEQU-i0RxKL!_tOD;Ueo9^idT)V6sZwJ0du}zsRt-KX1
zP9+qzY^nk|wWqgWg^sE(9GjTbV~{ljSLnA)ulL6Po~PCxn7nGBw|AZHTN#x&ehGKu
zMM_88NP!G<O2jQgBM#`I&|r!25jX0NIQPWM)hA5HIQQ90I+lfM1#cGr(<{Df{Gtxh
z(nW@Z><ZnEQlBT1T>V#rH(_iLDKn{&d-*XX0Gi4m)a=u9UG28|5I2<{M|u3N(QY_D
zhI6W0GEkc<<U5L(afod;xGN05CEAmENW$`|rVim;u*^O?`e=?M+=t@4SNT&R@Vt27
zc-7z}vWc1|UA@KPoh7E8h_(v<#O`#j3?&~hMa|!)!#UodLLH)wBLp~*!*2P*#Udba
z%h^W|bNO+c|MEYaJ=ttf#&Q7<5xF=a#H7-4uQ%@-rF6n1^qjNA2Q4z)uv+fhp_O0?
z9g<X+=Iv)6?<Nk`J!cR?fXxvN9pUZzckS&+hb%vxiyN+~_CELc=fHtDV~jCU$$@Hq
zbiMt>Eqo8Jjd)@t7>wE#IGqG`z`<K#pP$Tcgw^4r5GU4&@2Fo1f=-z>#HbM!q_+GA
z`@O`VtL~ClO7t5M(>v`S({wBogCnXNW7EF2Pt4Xa2w%Bs=Xr12e!X>QAn|W%of`0y
zJr;$Nw;?z}Q6_G(&mUk<?Tthe@tX2e-166SK&2s3=|=@Yw_lv^N`KUu0it<Gti`pd
z?(>%VHlb$&2=8F9W0G5(5-g<hc83gEDE)TNg$DX6x1an9h%RM-P%9GL3<9}WQV=y5
zgnlKfcQvby+d&*JbAyB`Aui!b5;f-!TPG{n7Hm^Z3r*tPb%*p(HXm^Ht2(;aAYhQV
z|M2|2%XUlH0?3z1L10m_a7}SWKaO_IxOuV)!Zr)Y?34i5$R+OCz~x-syFsgQ$jz%M
zwoNxaDO^$R3Jz&4qcg3ootCfT-KFFSo<#JxcDCmgIwth3WW4yUdBwrg?F-pehs|@R
z+mpqG2GI>%De>r&sGgiv-zN6#bHO7NCnB8!ZFEDdd*x=`j~odeB4GlZj`5y>-e5u;
z7z(oH=hwU%uW&cuE~sH#4pI2THD_A9<K6Y7l2b}H0w%HOw@sDm9Ni!BPJ9+VC8bWp
zjfMGzRbXoV{%;-Sd5Kn#!BYzSXO0}C(<5<uKNR@);-v!l`$^C!>kCEUvit2C@sMz~
zhy)U9N@OYjhq&|VP`4h-D^uCXfaqj$yBA&P{zT6RPl%!LJ;d9mikUWQD;Jta>TQ}d
z1}z-rCU#<P(K)fBBaj6Z-cK6myslLygCCm3W89eZaJU3LRHRjYfMIi1nY*q_l^=v}
zGb4-KC*5_N-XxPD)||~qF#F_bu11PF%(#3S_djc(-?Fg^1Yp4giF4C9Eo1Jh?~>nD
zQkRY(2*nc9@~$5K5_wvj(xL+8h%lLoV3lGXtZAo+gdWuGmwYAhM3C+UPIVk*$DP3G
z2f|u3pNC*`(0uUMF$d1#cT&l^U@UhEz)ri?KNIzaF+m}fG6K3v_Q+^LG}46swYtrJ
z<XC+u#D%<~(Sj+a{|){*^>iXvE~0pB{A>M>jSfjPOA!8I&YJCK2O?xHG>v1BkTh2N
z*z++bKFx|m=MBcq)i1^rKBFhC;(^3sQM1!D+G_7^s$@C<M_|R0rQ(~0wl&#jR}JQ8
zY9~WE<$?(RCkdL*9RH^G&kK4M2<1ZKF#|$Kmi6&p!NDr>oahyy#)8&IEs@Cs{0LVD
z27#}bQg5OU(lLVwzzqMgm$*y#drC{V^}+*bD>TplVUbE$eaR~ma=CDG%rhVB);LsA
zqsWBV9n=2>y~2pSc_9X`o$qoaHc?_o$_q&Wki*}6n;W@Jt-hg|6@vob?)#9}Bb24s
z1vyz2=7i^ld-cotK8+0J!i4X(Tiww5AVV6Z870_(H}6>IZg9XcS%O^T#>wEOI_`Us
zqm$wLqQf75(5^^e?Nl0vl_8;Fw8l8T><NGTi50j~X;#T7!BZ<Tbl$W6fD_bC8fc3W
z9#A1AX{>+#A@}GrO0lX6-w5XH?(K9p{z2xVwti{e#p2eF^;@sjQ|eV7O`sCO!1rp5
z@>{P{@)DZN1<a|GeZr~nkL^;-mPo55Uxd3Oo<NdB$Zq=Bilz_1151`3JH`_Ni|P3}
z)%`6}5`Hle9)ve*2;Qq=&SX$xad9{q(>>0v34+YJiH<K&j6K_(BWYHWeS`6p3}xET
zo7Wn+Pk+=ipeP=ZCDF4f`Q0Ucq{~RBT3g^FZllGg?r-a+Wb=yv4plUf(9Ho*r~%6!
zb340XT@{#>uQ2blb&txgp&Rr<Es<b(VjsuZyF?fh#el*|+zfd0hm-A_ALw8oViD<7
zq^S@}{BQ4PSMAruNx~b3%^*DG*4y2zKn@-tsr=Ecw7B2(-=yn+utlS!5rd#_oWJxV
z2D;+6`14M;Yt{e%pjmpWtGh;@5rU*P)$Sw#NHUfB7EXNFt;2&S`-5|c+B#yWrXB(J
zs4)hkvG2whFeAle705D))Z~QDI@>*uQ(K-Cno2QHkf>D?m(8Oh=@k`B4j5~_<Ge$`
z#i6lSxXtzy!KXINUe|aZK!ajI#vqs|kH8Y&#^oIq-3DUAQC~pRW|hj%sP}M%efCMU
zFUhuoyGNL;n3Oo56Z-l$)a7Q$rYfRS%-(@^ZeDO|5;ugfD+G4(Fx&7#9i^6|s0n<2
z<^>w^#;VkmD<McAD$MkTnzlXu0A4%@)k{d9nKQ(G_XJCAhpH*LIm9i3rxb+Q=-2p8
z&m4xu=ah?O)^{yL<;8VdNDFbbPbC()mnDQkE|7-IN3XbX){VQ98Nu9;nGm^I7Ii9z
zkHZwg_!CyMB*`6^qsWc`hzmgO+cO*O2Lp917mugXaT8z1Eoh=+mF!T63s9B@5QsfV
zu34w>0gMds6<I$RV>!3dOgH%qrp4q?8XS;Z1zgmG-=N{_jJX|eDAQSaW7RZ=r<r4W
z`#?;-5DP?g^>@i9g9Y>e^R5}{|8O^`Lz#c-CMh*V?5Ac7g;D$283B)mte1u^Fg%RB
zb4hpm4{_c6s>+mkwWsa;i;jxQ7xk`PI@P*k6xO1&O5Cy@!Sb$NS`arVfUb-^10Usx
z?;Yz-TZmFCl5<g>#H~pRmKu{boaEirj47dI`MB03utN+G^}q5TVk?k9)I;u_>bRId
z#XPX9ji0}TZHj&)1}M0y@VuYbd#`@3!%>Ag@WBEh3N>f|-(A0ZCoe@fl4}U<#tn<V
zfYYcw$NOKv$fD!srklKLPUCF>3ai;hJ;)||Ps|b+X+X)LwWuA^5zl;IZX4pi;s<bV
z;RXbFYsxd87?c=fO(;;1i;LLAHV)RZ)4x>+QwLk@MFE!-7d4iwKDHeZ2fzgp0mm>V
z-3q<?=D+;egIQW@U?y7U1iiP)76nHJ-r%=+Sf{&5pV0Aae<BPD?1FDftD>uJ@JA3Q
zPhk^99ic??%3~)z&RRGjVgjQ0k*s}nIuCXaf{P-Sh?=kXFQz8Cr;Yaa)d@^Z!pt-V
z?m$t%bLsI{j$|)qjc5i<_~tVIGh{A#jX+I=IjWM--TqSluT#Qtjm$cJwEqN#Djr03
zrA&|tNLs&n=2-u$lORh{T(A&<MR9M*1~(e>bkwdTI)GFtKp3=ca|Adfn+&W)RMk_T
zMt)m{hz$a%H8v6j3&?Rvc<$ZN_R-(;M2?s?e~qy3|Dgg<m9&bs8h7{Dqh9~Og9MS2
zG7NZEga+O{(`z_EaV_X10+bhg=<Sg33?e|}a;hC$k%~GjAjHVmy_5rL`yugIY|0NT
z^O`qQuAz)RK9^el!n^2!ZPxX3H5chktU71z=;uZ;9LmpCZen^du!N-=bNDX5&Z!k*
z)4x4Jqe4#iy}SH|JjZIQMb?}5Z}d77R1dw)r6&c!lORwVMcT~OF6p-_L{W4S(V*G-
zv|sEZ;Zxl6sI`mH9yxX&5uKo&-tsCg+b3GP?@r@Y@_hLOR3G$hjZpfek8SvkvW0Xq
z)G)O3n!<nFWYLm@15`PJpy1fK*LoIFl*t?n6Cjg_sS=+lCP5{DKd<q!@O|=xP_L*X
zrotci%@S|@h2h()+PgVuAuvRaKI;w12dn<o!)w+Y<4&KaK%sC4q6fxq?)Sc*ZHLxX
zMosh0c3KkWDYh<<Rkn4>I{SV(Tg9b-pILO#o9j8Lb5P|WVkn@IH+^px@FW+5)T=x+
z`goX$SSYZgfmr5O_c!7bq)D_k)Byp3<RIX!;h+n?j%in4Pa$xTg+>obr2&z{w)QaA
zsd4V`;Yuph{`(klQ^*OiS`B+h8e?zD(6fo^W$*}N226G*zptn&*NUe{vVbU)CWVR(
zd{W=*xL+T^6sz7Yv$>vk?RR<`BrldYBdyx?!zgbJQRJ*AQ+$|O1wg7#KrKYZ0O2Hy
z%9vRt{&4{j$ssy<v}iz^NBegk16>hB;FjiVLeR^j+-u9(pU_fzkf|X0^JRXo^(w}T
zjaH=;O7^qL+wZc615<z~rYe0<RSH9;`Nw|VT~D)X$%Nvl9J=UO_o~Rl9BCl2#-mm0
zqR-oC+pX1e6w8-HnovpQ2Rlo~s)l=*++shriPA!>bx57%VkClYqAg}z=AR*%g2JH4
z%aqF05(a$Q+5YIjPDx?{%n?fTSu_8&{ekXSF6l?cJaL-8hX_5k6n%&&UTE>l&HSc+
zDym0=XTlu3_gi~zEMV6<U?^##g2~r1X89{c&jfs!zw^QiamQ?b16CX%Lhyxv05qQA
zFMUoAPMA(LEutUQYa}rPjQ=&pzN6+7!6{)(H{a+wpBvsy{TXCTBHqOsfBlW#gAz2@
zS`#ZI^+y3&e2Rbkd*PQva*=u@IH}p*lc(Cflv?1T^Lo<%_yoyS5CH)3{aP;<`x0~M
zBMBN-`MlG2UKtV0M?7zSU+pzwD-0vlVQG_f&VSvTc^@BbZ#2V7Oyp{jXfn{fzLQ(h
z8W#m0#4V!o8tC}PRsOz8G8|AHxfG=Y=;GU%<-a8!U8!1?&tgR|ls%71u$`V)%n^Tq
zGC=AJEbmlpC>5_YMVG&{u^sp{iUggh%cb-}?jHA;gvcc86$p|_sZI(#8hhAYu}m*u
zg)m&@j-qR%m_zm4=&AY$M$M>*V1`e2*Va~UkcnHynEh9|wl#ylA^e197<1j_Zf7lp
zSA}0ap5P>{;}bOU?LEQ!JGkpdKVhD}%*#Xr1GG5>R0P0P(xaeoEQFNYTY9IQ>K-H1
zjafpA5pp<-mm9j>L_q^PsNiUn3amS#^VE4U<`>byiNOkZkffJN3MV~DntP8Cuf`Mt
z3rXP;!9rEkq}uN4Fh(dCmK2idWG(O@`G?qcCA3cBT8kUI#aO`Q-6$c5tf9#xx3)X|
z4yYJ0)nOh7QlPX};xs<L(A5lVehkqfh&<D1#6LEWq3#Ckdk~Mnpj7LBwmTtZ)m_y1
zqw(zBd9@pd1cHNEZVi-J$a~cF&UZF#^;RLY0}s)j#iT6WIk8Dnd3$M0>!zv)!hwlg
z6~+J)tSIzkOrHe5jZj?dpM(WTyn((xaM5n4;~v9(0*;{};DC;9d&Uko?QcC5@|rN4
z2%^#@2U6Lyr5m_BI4>eakja)NxTQ;V1p(6ty-Q?Hz<!R6_rD=UjgJeFC_#)?4iYUE
zQM<pp=zKm;#S@MKV@qod<Y=_t&J;OB^2Mc}1KA5G71)0hof{=Wy##s6^$+YR4<@-3
z^gGT@1y0ib#Ljbid)IS-j;bU;a99_2SD*%pS%K5S{-4TAFFeWp4e^H@5XDY&Tz;GT
zqBkNC^aRPd?2o+WB{$;3V(^F-9q8M_UV2C&p=>cQfDh^A`ick|3cunM-~`V~bNR~@
za|08wxuT{kB4$S5f>DS&w&$R||5hDPf2SIFd+f7k1P@h_Ybw%#q~$7k=sWGWa{V29
zC(;Dg**(s+7QF;PooKXCMFKw4w{J9xty&VJ+4q$lAwGIh4#*tlc#t;M+eYa?j)-GX
z_X41D(w)DyYYDsIS#%m;udb4u(_AUBQL+=5w}@vI&Va7{-E?del~X_h321-tJ=s&&
zJTjBT9*?Nh2{ENwUT?CHhvQH7J~>NIQJ$5Ohr+fRl(^GA(_0xpMvmyw(XPWljwo4k
znk07qiesG+9<CgTqOx8w){CZTu5#Z6ws%Yjbm~&fOA|q$>qV}pmy)_{;Vmj}66O7X
zcSD1Kk4S6?$q{m>ORn$|i8BLlaMR@pk(aDhUY~QLx8@<8AdFIP917Ys-q6dHV@qs|
zP`OX~`t9R25D5DS_OKA18+zlmRVgPLgK^BqZuYkd0v^og>nZ{~_r1Fsk_&JHVu+9h
zK1&eAvVC?&=L+CN$rj-`v)zPlio?0%5ued<<GYGAP3$`Bvg{e_l?RDAgPvn7@X?#>
zbLjzJDn{}p-j@!vNv7@$`xss(up>u8SFu%!EgHi@<|V3Nu}H<}=dbf-k5MQDg<u2_
z$n9zsH1|&Qei*ORv5Hmyz?D`#HR!cfa=5=Z7<1?%ut>N;P-IL}TxbaMX3QHmD|Q9f
znG-p8k3A7%1TYb_2>n;nPu9{_3<h4xWMY8G7CzOz1=SMV1e{uQ?8jI)3L`l~upNyX
zq|pLfgJno5DtT0*Ohd-73A<>5eoF)fscF%vtGf(uH_v4e1QH~0$)_5g;pzsysq~TT
zAheNpZt2R!Re|b+^DL0DF6-d-1xBe}<%$tluc!|KnZM|B`(dweXX3p%I#1EOxZl1`
zMGsyWY(5BL!oIiGZVEI28OK*Dfg^I~CjF&B<^Wa_rm$oaJSI`+RctwC+E@Og_oy@=
zDonU{cq;<e$+g^;s}(JoswkF(Yy7$Cj7nCL*n`CWHl;!ABN(U{OXrp_@ctRG*EiOO
zLcgho1`!W(M(i@Uj+hdu(bh`Bw~0>&gx}SV{hC;?DmF$_f0O@9;8Bi-`l6Ttsl{9D
zO@SVkDg1$&CL$m7yu<DmR|(u$N6q{@?X#ReJR=CR<p2ahi9M5SrAt@1;t2}wz$+0w
z^c^FdO$?7gjmcui7FkHnkd37daPv>sc}#H_ZE!*v^TRNAFC>hEsqh?QL&QN5)7K5g
zeJqRzJyfdhm0s?xo}>J&OCHxq(dx7e*OdSaex6w>ddBNR+>@+<mBUhnnOA6H*xium
zA8@Z+q|++MiU6<VX4yE`@?IUMcUE9XxcU{hx{nUw8i58}=Kj1=KP0S#?T}XwIq7hb
zJK5?}0ig-R|BA1gxgA_V;6A6?CR9voTh1Qg7C`1%q##{|G!mFQHD+s2iL*j+5X1@t
z9gTJ-NDN!2yQDW5$LmolQWat7Dz9Kg<ML6MWmJ$C90*H+C(SII=$1dGFN2_qki&8E
z?AmhI{dK((LCwj(*4q;Y>#F)e<wg^RAlbt0sC9npba%m{N6eVgtK7(kb&$6PwOj(V
zM!h(VZgXj)6kM{!sD@a93mh@0u|3z-N8IG_1|5~WBehX3YU*b8WuD@asH&Cn*JGRA
zwl4ze5DjGo3it=YxHQ_LVr9PgH@hEQk+)Y>{LSFQcIbt=?p(<R0ua;k-3r7P&>tl`
zAMXt5H5ALD0LxNak0=1t8@ZbB_%|>2V>W<+tu_53unvEFy?^Xl9TVt^cCTyc1{R5W
zI&zZV{zs-UUSPW;&@vhxG3#&l4e_{qHOLhs{9f+Ep?B>!K_rFVej%~XZnq<fbR(gS
z2TmcyHff$K7Vf@l?b{=C8lG4<4%WVWr#*HMBkFl6kyQ+<>-_C{nR3df$bAf=B@5?z
z6EoR4f*ZaG;hubMc-PpDjd)fpyQ3xK6tM~6me89&ZuTt~5Udn|lzobyPm~GNdUvv`
zdo$mJJ;~0srjO#L7A&ObjMVUAvmrWQx!2g^1~=Hd$0%+Fg&sw^pAfINh-J54;ts6S
zv%*MM!5p4{#x4C^N2B?!T4vp}e%Pgcz_<ke5KhI~CBsGAyj=0C{Tj~#XPVA1G3HwH
z<@7{<HWpq;3;{L-G!i!`u_)4Lk5HnS-XGYJ5o)R1Qc{`+Xz(a-2X~!gmy(qrk`3mL
zupo{CL^OAZ?D6xweqr{mn2k$Cw4&o6l)6DL|73I-p;l$kdNHphudrvLLhGVQY=+d}
z5r@bQ`q=Ih7dr+Ja6Ctowt-Dx*wR?(1-oLV&elDN+yJb}c#t}1z%4o3&uXC_t}1~*
z83ko%7V0u#kt+w;Nw`cfuw;t-g8l)MBgTxKuYSbu)ebmHx_mWbhE%77Zqw!j@v)Bg
z#ug367n!Kihcfq5yCOyp0UuT|R!vet=h~mH)GY>4fpYZR&ksxN@nYHz+;CN+$omq8
z187XCtv6OVZq-_buvg@)TYhlo?N*6O)C=Ge+z8WYqL*@<%2nAM4VMvUY@F&{yju}E
z2Twuh^oMu<DUl=`@AwiS=sY<12mk$S#>j@IV-}hwHiYt#fQ+CN;PP{U`#MRla(a=(
z=!+ip<U4NGuWSMmC5NEqV)NZc?m1*7y(dU?BF`?J=Pn|ET25ZnC{Yf`tY9M>6W!Iv
zDZH?ihhYO0`dxFiLI$Qn2}BI|MBtj91MRzgs}7sK1ML(2DnVF2lB0p3EpKM0Vva^-
zj{4Wku!CL?js<iI(I8$(E}JInfvsKI&d#2$;6z*`Jd&s+M$dWDyI&%iGzMNg57FqC
zG(s(t%nv(b2EkV<M10B=p4r5^u2jK~!p-T+F)pp+-ExDDi9;te_DXXVRE@^o`alY<
zc$^7deMN0AWfETwN+l>8?<yUH#Ph+XLq{#r$~Xaz2tmyU+jiUr7L#7g&Ln=PErJ;S
zpedd!f@ldFU=NaIMvjg-Fw8&jv<`PKmb2fI=kHpge@nKuh%5OyeoF`dKjgAjScH}j
z_5XQ<(SUbXDJWJYZz3<vUH%+riVp$A(jZ*E@X&egeWD$d2FkU{)SL=q&cTGvJqXA1
z7#IBs^(>wJFe=ilst4iiH<$itn_Uy$ClOytOH?D_7fxs_zNwP<927TU@)Pp>Gn=cz
zR87>7(p|vjliJ>GxGsf7vSlTh@oM}P=Rc|dk6csBZ4*(DHp3N(Wb3}RS(u>MU!|>C
z61vHiEO1W}0L)C7(@dr^#4ID*J+_TuLS6z_CkdP2{<72EZ9l5Tl3><+$&PGG*bio#
zbno103gc=a4)QS+B8lFe8t>ZPtqV^F0uli>{dXJp7w6C2EgD4$O)f9>3<Z)X+GU;f
zZK0HbZIR<`Hqt#Bt7w@`U^L;s@;`~Y{_a|D#qElFUFnYkDDx;B0qvKXMUQm0H$J2n
z4yz+H7uJBdBjuiDKFPH1XqTh6a0Ve4lzK#_&SZc4<GO-OtcKJX=FqQnt;DA+IjP_R
zw}Kci&g+RKwlJ9wh(0$yj|Y>s#f<q#VXYw$%4b;QfoI+0w*r7DLzVP{pVoM@zv44Q
z;mGTxwK=H=@Vp<Nu~Uch(m*Pdm?NtFO@D-+qf6k#Du~aOk{Z00a0RI$6W%-MsyONx
z)UZ-q=p!%&2-i9$H+W7EhfsL|UJpP4(xgaEPRCI$7ODsu$ko9cD*1KGi`^bE{sfse
z7$wp)RsYl9V!jh(s<8B%M*aPRrN9Olhz1T+&OGd|+@&Mf&!p*^sdc9x7K%{28fw(}
z_Tp0lR7QUnyBNRwxRqNXQ5I4}UYsXTFb!V2Iy0aYA`5hp(C)O`y~4)>p3a2|bb|HI
zc*`u{l-@todE}`jXL!@D*AkCJ!vsamL@nHSFQ14Onh4!yM3AAwqz{Tcv!zao0|B$8
zm=+K{fb{R3Vo#)YF~8#%QXG?BMd}9rabWD;hDX29l%F2^TRX;y<qlJSk&uUtb8kNj
zU{V4X;~;z##{50h-Tfwmc-GL8*rOC+Xs?QWdNcQ{M5u6X2#{fZKzAwcA=Q7A(?s&9
zALm-Y3wWkN+!UEi4A9&IQ!CLOxI37JoKj3cVA{BWlVCgHrsCBG&LdR#3-i66{K_xo
z3W8Q4w-%uguQaClt^Mr9DCX=y><YNZQ986Bbz-(ly+yZHF+mr3_Z4F**h=iT_*K#2
zPjnwX$&-MRRySpcIml{+*+5~gXcL<!iJ?r5195O8k@1{l{x>l8j<58i)u^J#5z&&4
zesAa3&^ue<Rm7+tRmR#8_hzo>>ZTv$yWBwux`))qV}y}nL}trc`^onJi7TT#%4{8M
zw?NKW`2Y-wVKvz;p8EyCM7D!Q52qL3CL-1p=*k52JNOmm0N-7{9@NAXf+ZoUJsfP{
z^~Fd4xyuskh-d?NG@-zDhC6OBpyq^GkQna(hP0TaC(u7O(n^1$mdhZJwKXvlv|zlz
zoz_oxOF~{rSpiVZn(Aik)i~KMPzZdKZ0q3^|2;xeA#Z_QAV|Lzj!o|L#eR-(8mJGp
z4Jk4p;8f}Vx%=%0cxd6xgQLOd@fp|#z!V|SGcWPnWxC{mXr>2c2a+{;|Gai?7xGbv
zIyvQHhKJbV4m2Iw*tdRAAcsnY*c*rdXm0NeedquHWnKLDEbxOL-C3BekB-Zx(=*f8
ze&E#<w_cF8191`orP=P7M*_=8wvZHVocFLzNmBHOjZ~_nb-K7$I<m~**YR{6nINWH
z+`nL9ofvzsNV=jMiLi<)i-1xAo~IfIxN*d9&36s89J2fj0iBJ5Us6O_F5L7+cK(g}
z%5;(aGqj={QB-ixr|Z~+S-L`)1<o3^+?Y>)w}*!-vQ{0%F!}JsdJ#kb5HgM%M6Muu
zf08*=>TZQ9vH%GU<ET)p8D9H$%o*!~Z-W+r_zgic=9fJ&lf<?z9fj3uCpfe7ENebd
z(ja_SO9`V$7x>SOg86bU0TdjCvMm5=Wuae8tO3Jhca^BW1$uVDT>tVJ%Bg!|ii=vC
z@Kb(Hpaw`)$!cW-UGqj@v=tZ)_{;rv&5=(WH7&ct!pv<`X8XNZP5({lGDH7}QIKN+
zl>k8^Rd?C6`G7}krv;+9ncr%<Ne}5rI%Jm@-sHKg!2APyl%OyYAb+;m*!%cZ_*v|u
zl>Yd_-WoUxDu`|vl}2PghkB#$wsGI}S_4I`6d-J5W*4_2R>uh%5)y<}Knv+@``OM8
z{5e52w@SIrJif!$&)47JawN`EIPCb>Y+s4k3oFY?vq9D3RessK!ES03d|d1>s5!=D
z9Jc*F(`^V&2ZlhxpnABva$9l17SQBXaYGUygt9{jHDA2>9(&1Zp24yzneaI6#XC-J
z9NYAdvmZRD2Ouh+gdvFee9gj`AImDpb(NSN6+ekTpUe(cl)CY2^|e*~facGoF{|VB
zjg;9Rm#6hgsD@HuG?&t3EHE^Pyz+O<4fFMBwGXC4K=^*SweQ`gqp%_g$s_lK#cn(l
z^YzQ&aJARSUTBASC}!R~oemhbm`g&;>0itKAr?8r#Arnt^HjdS@>l2&t%nP#Fc>76
zo3-=(GGh8vpsa{wMTJR*{*4&p_u5)97me&8Sh$?<Gjqo{e;szI3Q;r&@RrEnB=gD`
z|L)a#&q8^;ouuZNAG7?TsY(J-p6RO**a?ff1RW!g_BoLF0hI8B6tqc^D(>S8U6`Y&
z_yUE3<_js2h#4v|(q^#zHEud_U+@J{WQeFzSCi@Rsg1v{;!La3#Gn8`8>0DA%-_W>
z2D=raR7PP@;8;5CPcQu@hN}4x`H)cf6nDmJKpY=~xS(mJ#^5I{U2I?qr}t+l7~-rI
zt>kQXpO7nYGDu84%_kx*ffooz7t1i45h~5K9VxT9>s8whJ<+1oXWZynEZRH|!BYVM
zItXxZ$MXKOKef+~&@BopR%8GA_O2_Qcsb;9?uW{wq;=GKK@VO4hitp>F8}bSI*=~J
zUX%m%A}w3ufA9$>8d?msC|hbfDK)lwm+f_rqFR)ckwO5a{&Po6Lcn+`65g5Mq+9Hd
z`E3qMqvIDuSsnA(Tu9xf?p2cc=67$~dQGtl&?6oZRb#<6eQ31{Mk-fV>R~|#Mt`O?
zWmr@<B2I}A4(m+f4r2kg%(54wc?dv-N(9AWLa{)CEO9kmV~4)0vO%<pamO{@yAQH`
zaeJc_Vtql2NijnjyJ>+y7IOQN_&x=tCB=A?#9y<ql{;%QkVU{!%9SJPnHVT5>f|KE
zxy6U|2~?|Mev%(?>-QlKi3mOl^?)P(>K6Z-A%HkwDplfmG%`#Sw+Dy2q(6B}D9RE9
zDhya+EHx@+nBB5S4<foqWByFDp?=?&(1?I?BTBt*^N}n-zVz|scsG)?ef8%*+uE4T
z5$hBIk?BN6{-D6^73oX`1Qwoprr-P$)&M6e2wEjEIOsRq{A_ShjhO&DbT}K6*~ASD
ze4#lauvf;oJ+{LxZ?7LyVkeE56d|WCa4DF<IJBtgfpV=s+3Q4;5;1)O@&+g=dN`%E
zV&7#YXx(rH&F0U1)w}I|1!3kmifEVRiB0*I`EFJ;gu0@FhB>Xo9d|BEj@pdn%(!M7
z{QVM8C#(o<Q*OlS@&1s86;_NY3?MA7NguL!mwAou1qFmsCnQ7mc9TTE=WdF-5C>j2
zH=(5tq?7t4wge3B`EY(?di8L-TB)RvE;2LhaH*F^SP0wI>W-P?P=wJQ0rQCuxdGzs
zPBj-$v_-Ol@H@a2l_;8l!`!odbym(lYST1kYk&8TuQ*+$ebUo^*>fNUe1w3_(gOC`
z^9FY%(Ugox!Q8Nv;i*I2E5so2#c*qQH$V!L<+hNUU3pE+^^IK$H-wQvh@V2XPzqES
z_@bU`^M#^*<%~I@u3Pr0eoS>Xkxh1;7LcdpAkIrFxM=ad)W7ZXUn|0iTq8yp<Vq2N
zeu{Gw#Yxu|Ywg2_{TY3r8f*u02bB*(AbJ<M=CAV^unBzzHCRhyar1G#?kd$AfIAQs
zMTGE%TkUK@UJ&XsF&xOz+&|6BU!c3EZlH=?Z}oClchZp~EIqB&sPuWRyQ8B*L6$+^
zOd6G?m@kiU_r9l_#iUeG`!|cSg&OKZlVZMpOF!o=|L=#)roQf%V7|L__=`vUsN!KX
zfAn?7zro^B`b3`=YVq-Ef8#BzRcl;_>H@;9R&^V4(BIWf=LG2hm?Q_VinrhK6QuMR
zP8k#_^km!)DdrU4PTUE!qN8S~XY*x1;-28UQ7@uI1B$C*=I)rM2mIT#$g$m+;hdm@
zBP7v+h2H#;`wd(K$+}5hG0<9er;ZYko<bK=O_|xu@yKi3(P3_P<6uC{*@!C=JtB23
zjvwT1;MxfaYbGlsILgq)K-O@q+i|UeSjcoW0;>*Gga$$GjicN&yh*$T*p!cj`=XH$
z(*MIa*Y6HRM2Rd9+yv*1b!WY&`+-qvZ@Nl7#vC~8o(>EooO{7&;X$GMvrRK^`!o6p
zf^tRt2MTGvcUeHD!o}<5R?*<t4Q|g9)gNz@Cb4nxO}+Yo>p1Yf=*Q)CD(|WMJin3G
z|9SmwE?(8JlK=r=2vB#{^;{hVmsp4pAw-*}CvJW3zJN4T*esO;BT}WMnYmNkKgZ~g
zI6=8-coUGv2$mZ=!Nt@IW<+CSzmRs3#H1I-^QG=W7$88+EJcnL{QTxJw+td8)mt<L
zx>BLt{;>bbIXsLH0W-c32ku>3T6kZH{gI)DtL(-<bx6G1l03>0Z}`SOagv@<MX(m>
z2Z(SV{%OZb^utl*7Ga_=lzic$?L@G?;ZOTYU=cr})j{Qh=IMjB2{Jh^i?*PdwAb!I
z?`0&A0B}uG%oaH;eYfpd)xa*vM5phuQuYTHs$z@k)l!B!S#x*$)pHH;>K`?0F0JQ=
z;2VX+YD|M1akQ@AReNl=Z*@woD>SH*Hfo3zf7%D$(RWo;o=HYM!1DEht=UN@!hA|C
zLD;3YyEyoCunSR5IApnyp<C?2zipEa`a7)8qMnRC)jj=_?gi=`NUF75BSJ-3f0yw@
z=^)s=UEd9f(;p4ULzH8LVgTCk1wFK2EM-uPDcNkN2hn-Kr-LvWU@rVE&@Gd(=Tjph
z-d#xu9Ir?0l|FXD;;%Vi?--zinZ)(sP6n2=(lVox-6x{bVSEO+<uxR0w#T_(YM$Uu
zdW&C3^u4H+fx3ZmCL!;l9{yV=tTat(_^G#z4X9f#QVV)zyj~xv)<CDMN4o0ot0c`c
z*s6ol2;s{)l<enHXdXz~es{+8O8A8SXw|pYc-!cF^@6)4N3T*J=mYjW*z+5%Yrx$r
zo;6JuyM>fX!pe^HPV^f$xEOCQ8irZk&hLSdgDE+A%%=jT2Iu<aaD?j5o7NrtwBq32
z20>>C*OZ8R&`sE@s~*UG3r&C2e}YN0nB&d@O}NWp$0@8_DRMT?PIbNS*NJKoE|68)
z3)d-iL!ng?(5lfW6@vYHFSs#(=^-hD*Yn38y5CBY0_UuyhEVE2g=lnY>;>*mgf}LY
z^@u-H7WTma*Wf%IPA^3!3i|eZebC-JheaLPK9-6eXfN%omxddN6CZ+QV|-zJ7JF~G
zEv5()t$e#O>3|SEws`!pu4Omg2A|b_5+bl&-z|0#=6^Vp9I!eisOde_)k*=XI6W(^
zjoT7q>j#8fJh9-ZK>Bb;*ZX09E?GbMVz@JVKk`y>;#ZEe)zYpjR(R*kf;qD+;<rF@
zb5^RG(^)qxUk)mDBx?kJzhsw~!b`)-0j%dE|L|hv_*?~Sy?6qI2p?SQ|9pQiEOLNa
zuQ7%sncu$iv+zWTf)YvyX5D-G3aDw+HxjqpZ`o8Ik}hbhyj8hhJY5I66o58buVlw6
z|C2|9hm<4Ls1ZANpl(CCZfHnHn!mZZ;!aob9?D&<!b*vdZ*;lNDx<>zLUK?8SH$fB
z4at_8SWzJEg?RV+R0U@Scuyf!6gYU@h2Eg?EF$y@X-IQh>GWe7U*-KVM`wC*f1(vt
z_D}X!&OYLKv*apo5RXDmkXi}A*ZW345k!x5HQe=ESWMVFA=;<JJecB5eii%zU&Na(
zB2}6syqq?~&f24tLWE6m1MU4r%ONm_A)k0`tve*gszuX{c{j;#C#4zMN>{*8I;ujM
z@A}$%d@rqyML{nGc=(!D+ZVo2o+KeDtTo8F?R$g03E7PYtDDBQ?6hTskJF~HM~QY?
z2ulf?mrwLBoTj}RF%LqKqvDxl8)<FHuxD>*&XGjlO+O=xO9a43gb^O1dgA6qIuuQJ
zr8nobYZWeHuEj8o6p3?ESV~Q2cM51A6k?-;PDuTdk!O2FMo&ActG`*~_KFsZW{R^l
z%xX8(FP)5ei_vJajL;D<<=q(RT+2y7@y8(DBHYSJbWF3;38|@I-I`j*GDr&uc|lb)
zrLoQc@jz(+yjUq&I9@#TIn7zWYQJ6a0~azN1yRcqRZYJ1Ub!C35uitnJJAkQ@WZT6
zz4>22ETR@rypEY#eue87)<;kO*}w5Fy+wi(;sU`Cf7qXrrAUgTrZt;M%p<<w_RGBi
z<$O(Yig1Sr>8Iegv^-(m;-^!S&V>z}_X!&p=O^jm5VF~AVmpx4%|mp;%G3Cj7WG^?
z3Nb@sAd)C8o@-LWZTgsB1_^4^L+Bj)0|XFYg3M^6dW;i$`k$P}7u8lKfz?uSUhG(&
z1dK%u-z=@cu9)SRGSTDc^$_Zv?KAvI57n2?rUNdnjbI(-b1}$BblmOx?0Izom?#Ay
zC8Mgcc3f(0Dms^3y}&;pRVs)d(2kc774_R8QUbm9U)zpBXi$|374jW*5K2O{8FPhw
zXO!NRTmnGGvNMU0;`{mE+rp96CrsS8_NoFM)1qf#G;+#vJE>4d#oK_dzMVK{dvCG}
z7b}(q+MG03#>IgnKgCRsvnQUdb3jwXI8v;jU>_c5J8e}?MZf}@uz*z3458KT*O-%5
z>6G9`v|I;QRUAiXDwt3j+mX#!g_1uqn=5=RxMow#-fZ_f;uEv-dub}9s%1JK7j~4}
z+g+8RXC^ohX2Ga)tzc)&heLI#7=r}1h#C?mLne1<<UZmT6tw|*Eq{x-a~MCv)uN_O
zu>(^6quh2z1U$+vXeRIVMiTA?f2~${hl~N<b>9`vYtJ2sO5RngK)6wETUcgNJe;DB
zs4$yJ-XbfN0HN21x#A?Qin6&8Sd1t{n-f&t)A;?-d4Sp^i)e1H`Pg<F0vyC}87=eL
zB2)wqz3w&H2l*AE7i2GqL1SU)G#9XFbN4Pn5k>rK*S4*xxzRmEycl4QD$qbMc)&cj
z&NU9ytiD`UIj{;@%S<nGO&`?bsurRmpr*p{1h?qEinCN#sfh11`_}!wIm2CXqO!0m
z`C!BYiKz@W1WL6|m0ETi&T|Ve8nNrHkY!{IRAX>+OecTvahe)2fVee*U$XynP4&uZ
z=Re9W#Yf9d|Jl<&=P4y>XgFwmWHxFD_oxE@mg?hDSE}Zsfc}YG!*d|~!W=&li3KXA
z=O!8fxsj~_*W9UoU&&UlI%7Ia_0J7@!Q{%BiAE@*^tz3<%MNg@!sVr0Fqvx%>)&9%
z5Kf~}R`LTm<q;cfhl7fonG$#fofv9ch*AIxhgFL-jmj%gaqY}Qx%RDYRi2g6G_z@l
z{U}>6o5b`7XouE!nfvr@l@hC+8Yay$jU=G()%G(R-GfZp4eOay6Km5pnd%4Ew}@Lg
zqmGOd)}(c$1RE-!X$?M>HI2JGc&2h({Ni(y<67VT|NK^bB=wrcExA&ksq$Mi_8wl`
z2a}E*=U7@s;<_=;h3i_LS3ag}E5Zs$lSC<{9%Ccj9uKCdr-c!!tZ3sn=0rCCz97<j
zew}-OBK_J+aIJA0Da!(JVwyXj(m8(HtlBbPWxOpF+5c_)zn<qiBh%t<zoGU$U<vt#
zc_TGED0}N<sdFrq52?@6KJxy&diTJ*E+{P9h>xE8*e*GxO`54+99eW)-J@ps%{P}u
zUT@Bf2KbfH1uNf3y^JJNvw!4`R(0=zqKn#6;a{hoz!<871y8n5k~+@a_cm$sd)<2w
zKyxvf6>T(alH>)`wlpa{t6uN|3E+%ZG;g0ISqO7>HW{{4f6|i{EM+K|ZIUQMXzG60
zr2B>S?rGE7TmYvnqg<P?4l&l7osqep)sYzlR4Q|p6Z@2wDqfmn|A-7(tus}Bla$)d
zO#3}D`g5HL@Cyx<U<1yD>UZ$urGG|l_*kcNMIr!<GzjIIoVYSl<Gp|RRElZ4FVf|k
zqd&!F({@Gd7yt5`HfGQ7k)l;c&+z^2zek?`5;T+;C(_8Vl;MB`ICCdQem+hQtI9ZD
zyXli6V{05S-iE3UXH1S<6g+<c;x+f0HW7$QYiC5tzvuOB5tXK*K?{@#v}Un0rbqTJ
zV@Y(L%PY#mMv;cT2zj_H((akM)rTQ7&lN^)dy3DBJt2RLh7-0<rjpjlvm%#|3XZ*8
zjxauhx?5W@k4?p9DOdES<0Bi>K>!53LMieS-**JIv)$uFZ((}n<8gmI2Rc{VK5P1F
zVr0&d+riv)-HgcVvK<MM8Cx!!3A*`wksaBb3!cJp^Tx$%N4%UJNK`~Rh=Y;7*p%Eb
zca4qzX;-bIF96JOTqKLDA*+N(Na<UO9YJ{dB*!m#xVB(*xO!aYl#G)br7;yRHhE+;
zn`<pm3gfpDcTV91oWMzD=lsYC!3+O$L3o+N1^qwEmhk_<m&UKy&9akG*NaJ(#h6L9
zkmO*#|6pWX45yN8y2(zlEl1Z!0WRjf=OZcgnU|V)Ay}ZTS(uHfA4X>n9{Kg9$ecJm
z@2(}>HM#n9$3!r#Q4*QPiC4vsBv?Y7%OZaS_<<9QXeOSPS}Ye%h~z(_E5S>Pj4Tp(
z(0}Qp1(78uFjMt}+kp68rbf<?afETPX%VT(4+u*#*E|?`{V%-{={TFprb?g#{f{`9
zu~NZ6blT5LBiqdp@04m5xsxKTkJs@Fpf#mi1L}uYmbo2QM*227@;5Na%HQPXjo%@%
zjf63ab*;`7krg#T3Q5VB8qoUG*2w^K;c;=1G-!SGiMDCxpX1`b>A=$QfA20Xm<pJS
za8|IflqAk^_wcx$Ps2W7)nY*A4q&Te1zE%6etPDp*Kz5>*B$X4l&s8S<5JE$>K8Dt
zj>pDrW&ub1g5cVJe-(tZN6ol9J0A55cK^ijapR8Kq@ea=4deRt(O-0*zySegmEWS6
zm)aVGxcO>#q%?<z(5uP|MsQC_H)nlwE{dFRIUog<VXoX?<VFz%=;wlz^86){C6jfw
z;zzXDHSb&;Nx7o>u=p_&E{Z%AysP4A%8{ENE{dEnwffV78vQScynMvdNdn@FBh8K&
zmZ0h<heyt3m_tjSOj8|72IY+tQo|Nb=oNXRp!)koW4iC6$Rs`sI;WSS3esb-DC)_j
zn*qx$yeINtV}7S$oDdO0CPn(%{cYUvLX``U8wiFjEF$cZ3;}THopo^wu049HHB!U>
zw#B`3+rLbuwKZ3-jk|vwQ;;moiFx@*D5*)wAkD9-ad*V%xnWO`v}C@ML=z;F(LV0?
z`Z`hd7c9B*7gZ-x)65AS;@)a>)Gt69uVdV2ryMyU^kGiBxJQCtWa0NALvsxJAdF6s
zc}!f{SGwRMrck&4V+vY+c2V5^mH+Z95cEHPm1cU5iOX5_FTY}ibqnI2`qyR9p&?jC
zwTqhsK^s3j?zHERxX_~g-hN?RzZd?U46wX^BLi};LNai~S5l&10mtwS=jDr<kcJ5}
z)!a}J*{~dx`%miL-t>GqvNB%rxGKL)F_ZczzpTzjLAmp?B3Jb1dGTLT83wZtRsj?n
z4vNxn`H}aN^kun45^6LxuN35JCvI@_UH{0AL16b0oDd{>d4A-f(~q8k?rmETdHpQ?
z7|}!GIDzm==MVFDd89?3qkclm52~d^ZscXazTd{OsZrs!9l$6mjnvwwTm$n#a9uef
zBCf|rYW;Y`xLo|N3nMEx9WgFB?B^6m{`i^kAl9Wq;)OTC7R~2(MULC5zY=+vGL}fR
z7f59bE>pWCVacn;M_yjb4X6$X5?aj<_eB;4B7urPCEQDd?6#)xe{oBn1t*V^keEh)
z2_+<^D}N^FQaRq8y4E<6c%5jr&%Yiw=4O3em2r?~@#}F@Zqf0|_edA59Z$s-BY{<a
zf1A|k`vF9juqsNxBe1;md}Q)2g-%W(mJo(haZQ*H?~J@?IhM8t%ot1DP!V!8raBJ!
z^}8b-VQx$XB6~pg+S2<CE75(CZ-TkXpNaB!!NFaHQeKA_q?lUsBJ<#yN4-FDA>Mo-
z^6iT{_g^naX=9e&6S<39dh`oeLFEe|*GMiLV_U4I?aZ~eMN+Q~-W;eih^svR>b;S=
zFaN(EgafU(JMu)hs*2x&p&Rduy!X<-tOH5T+&@2Z{^BD(hm3U3eUT63CyI;}hA*l3
zkByTUp*HPB^{V?s<U^o;B+79~*4!64FOhQzeoqwRRxBaq<42I3AmSecd;OD<_-5e~
zRpd7C>y!DBoIpOSCee{AH|?oNwn$kN;VvjG%$N9LJdWnwNQ<egwQ@8C>u&ouBM(fj
zHY%N2ik3%S4Myb}6%x!4pE+4%i87JsHCm<Tr;#?}^oOV?T9%KvLT=#M%OX#dSAQXD
z$O|t;$|hDHO=)jldnYnoRD8*pDnd8ugO*&haRM43Js%)8IMq_j>*bNvebHdjsL~y%
z(G-xOPxG|MpbHqr3_wo`3BgEBg3fgs9cl6~*IN|gYWge?3-wtcp44~|g}j}Z!Ok5M
zd3XfiLNhLyoKLxZaba>H|BtWpfR3v8{`lCtSV7v$X5I!x|IuVO6&q<1NCHR#DArA~
zBq5t@OtOJQEQksSD2mcV0g)z6MTGoN!AccS!Ct@y7VKcx|L4xz^x!!h&SvIKpSg3(
z_ud(Flhx1HX4!-%zhkC#zbuM?m*llQW~H3o3Jv~slGXDPvtBq*@k$H_5VE5V%(VI;
z2(;P)F(73JK4J}F3(%fKPDaF4$#L>j>8C@jw1uXP43V*o$R8iWXTMZg9j`GN2n1kc
zc;b^INhEwM9d&yp_8rc}taA4n>&2lh=FMOZ-z>Af8f1$19fdjx868Og-5ND7EwKj6
zfQ|2~Bcu_7CRlX<Xe7f>$)8vqPd!{dq~!8<t-&2=F^<a#kQD55oR~Pf53r7^M&SWB
z?hjyEt8@)Ok59P6cnQ*{UL9rS$jyXRaWDRDg22bafmu#Tw2Bf;xja-1*k)v46qs9U
zJ$0Q^08MegOaVo>0Mypr*6)`h@3lJu_I2_*)_cfXFg1d?5J;9QcQ3d=q~Szjg?ZI&
z-6Q@Tc(@@#(C&NJ8YmUC+W=eig7>TxnSw+mFKbkCL-z-}!jRyTnZf;UMqC<sxZ?1J
zL*KQ|I3qlRpyKG5iZM!~L8Gkqmz~n=5TMgx#fFz#3z<7OjI`ns9w`iS>nt=!AtlOs
zyHER>acY~}8lOo|*mgYP$QDR6yx#mXtk0gNOdP763LL*h4IsDXS@W&qmm5w>h_K;-
z@%APob6`ZLlPSRI6pvTLrdpLiEc6)l_>B=yo`3Qw*z;gjIL?AePK;AaF6uZ<{K$ZR
z`x<QpM3qK*ln9C<3S6|aQwqUaIQxBxQ%)e)IIg=tdv#9U-jt{|q<7v3tdEaS%CnGR
zbI0guohL0d$qoY`kSAj#YY37|STgodubVnQ2P%oucsQEJa7m}>{L;?nZvL<0>ViP$
zO>0rYqmw|(OU$JJVgeQpyaI{wA_|zi5TuMF*>DLsp?@B`+qw)gCixuZ5hfxKm*4BR
zTk~M0S|-P<t0!80h3H{H6QTzxQ%JVV_oSffgbz+=l_Bx8MpU|<{?KG($h%Nz-xSO{
zTlS<p*H=s1WI%};G7=QxJ1+w=3Zd-WIWI?~-N<4S1R=CnG)2%Ol1IK8aizayvH+&T
z$sF%~=rYaMf@9j%+tn$t<<|t{ZSQO0$j9fn{7EgpCQ5q4*Ufu^Q)j!$-0SUhP@cSQ
zCt1i#Q!-}<Z7Khh7qC{0n*44==k%7H;aRt41>i+^g*PBvmq)_1y^`h{nbxWROA>AY
zTcc=q*opF-6%T~b)pKvP&iw`zD&ltoYmGIDiI}+3O5bEMa=s$;yn|?rSLZLZmThjC
zEW6>#CDzKVCV6lftUl;R7W{}sR^h9yzKu^-)+5%coh_4r4ygalw?5m_GFfyU_bjyD
zYEd(YA(g$@8nLnEw`h^oKTEBGZ7q|fA3GLWx4dSOv*1OcPxMb1;NFX^1<#xG=40pZ
z^;u)x;?&b3!>i^!Yb|IsDY#6jnaixSR>=a9DVuLywY_C`Wc#|8T5hJr+)iQIDo|9T
zMhY%yogr8AlebzUmbA%WIaiOgGFP<C01sJd6_LRwX~no=LRnaEgnPBWuXX%CZAvgn
zM~}A7p5L}aoO*bGb=S{rO3>Ygt3Ynq#&HN^5YA{p(&5kZPq$)LwY*cfQn(+&-?In9
zn@0ja&t76Z$l|n|B`gK%*DC9-XXt3-g~1``nE!aXm9`r81&4)({YvaS_3&crZP`AU
z@6cM-`M@f{sG!s5Zb(*_Tw-<ZKwaWj&$$r8AeJk}wj5i4T<tA0Xfxw`>pCYRtmkbk
zMP@@OX2elp12GT-g6L0i3EXKF!7nxAA6qax4dW4t9VU19BD4DGr&}qEtoeXN?|<+V
zYjmq*nVzgOt(exyd_C+;YYEBhfRqB1sKRtQ(Fdweuu_s*X9!T}?vt!77aM+XV6e{T
z8YE6&7#*3(KUZ7DBTbH(Q->MHkDMdbbB6WU%=WSp)K$~1`P19W@+jYQYxa!xvf|Xa
z)2$UwR-VvCV@Crrh#lj$xz;rg(Q#lv1woS@hb1Fk{oe!Dflcu8&C)@*!8A^_&f09!
zjoGoHpycOr!?1>MUBQ9G1oJ`KWJ4|-Ydx{Lbrq1EiT7I}r;5fVdA=f9ojBE++a{ga
zSUA<%`C99GSd516JthvI7+PXtAk!zOTNgWgl3@OwyBifecquMw{)4G9pR$+I(=Cfn
zVgL9b8#qWMn+zzl`uz=SZo0{6vju7Rik;SdY(a`O?MxPwLM5^@dHjU;v5oDU=Qd*0
z=Ai4C<!$bGtl$5XyOzJ-CIi`SYtZ#}n+)0fFAsC&e%iW(#OW#byYBm{b%qy3bY9Rk
z>7zCoFtjtuUEa1CiOK5AV%OdKTbB@m)NbP<5&T{0>a@Fc39y~2u)?+P&DI$nmiqW2
z*Sb$yXUJu;xY+e?n+z=Pu*R;?+b6U<zT9gOXIaHCxPohHcI(Ssx@2=iem`@Gi|RXU
zR|a!Qu-FZ6MT|Jl$%0!XzzU3##8LTkWkhr->4X4o#&a?9)GU|hDbw9%84@z>w`^Cz
ziW7t`HlA)d3=O*ZWO4UWf6X-K5~AU3NZF_CqI1)&pRZ_tk1?<@JFIs_6p*cH9IS!Z
zU~vLJLkN0?ciuYdO3{qPfzQM3v)YKQ@C<P<{@}4!S)0Vl*=}jb{3Z2P<ku!YY(18k
z-5xc4wzaAql}UU&?0w9`RtHhCwpJ|3?z?K1^;dgJCt(Gf@|v1LRr2-2R)0sc(^5}G
zFj@8N3~TrLwoTEEn8S8MXw$imT8kV-P|G?+;%VxJNJ1jv`w>tWHfz`OQ7aqMEJI5R
z*23*eGSyxBh^5xH?S}CG&8ib#upgR#XYL_;iOa0(_LyQ#GM8MfOXpa}wKqv3ryOR)
zCU{^|UMe)!S7VTYh;bb5XBJo~>r7KkbIWD>9!upcV^a_044pjRx?yR117atK=cn1V
zY9P?>hpej*ppgdtOPRyEh<Mhdy={R}!1^SUlu}+;`4s|IaWEirjAsu6KXsT@SIHrW
zMU3KN66;A~d?FM$wU3p>jdj?v^r-L#bAh%hOQk(BtsxIn)|h^31u4WaWDi{UTEt(D
zs+RrHkdDU4|G$W&i5SHjRj)#7-+t0s^aGP601HQ{LMkDcO09=vLQuViMu|Yp8E0|7
zt+ZmEgmif2CJ}2df-hgsj*8g!81`)5!Ejg^h(j1X5+h$UO8iZ&7};!QiFHn2GXj}c
zqxTjIIR&z{>)5d;3dL!H5wKSuuC^X{qB&R8qI$?<|B$~%Adg~YKv}{)h<L~?9j7jH
zx#pdKicM_s+<@>Wg4lxB>ERkO$Up^}Y4~aPpHl04(d0KN9%)Nuy=rx=Y>`ULi$;xL
z)3@RozwA{jd34Kf5hZVV&bl0(Vk?~*{w3<VN3CgS@>@(U9ZByIaj}2}4m&s~Q&Csf
zi~s)DHw?640z68<;8+qtrR1A884|D;tK(-_TQ7pGY6*{tNlH|AeQ&+c4*rBHYYthf
zuu4!S8={St8z?4+<fM<R==~<yQIN75@CYCis;yo;IwH;~0~a0ExC#Et6g&6VwljmI
z`oV1LJ2aQA=L~yY*w{l(3XX9EhvXFSOgA@6`aG+bD5;wR1Y-H?=347TQ9w6O7gJ)B
z!M+(XhO7GJo2?E<w)#GX`h6p<o(?F$KzxbZg{3CmBM_4e#{$$;kC>aA)sO0>##enn
z;2u(9#_d+1bx&h3`!}`FR8tJ}?chz;OHRv8J64$aK_jg0PRlJI2g$MOgwfWz<INZZ
z##Hf#Kn2lo{e6q|qnKTqPX*{XwSAP;*J+?x!wjLl4#`w6s<3i?Yh4c=T3%ySI8)u!
zQ4dP+^F~;`KjVAj5I~ThFiJz7F-&^WI{zqo+A2$k%=1gFl6JD>Vvc;mikB>T#S8eF
z%dvS2SV`_gb)S{7%XCkuj4=!32^tYNNg>EYG`h*6`8#r~wSTwy%%D6BV1w5kz3Qlm
z*0_C6Mi>KSJan5dP+<}o$E&4{B$9(GF<Hg*Ags~=^lgG_@$%S~I%}Hs#v^pMIdNqa
zVd4sf0(l^@rw00eG|(}Ex|2OK)pc|aV^M3Bt?s+bb&cDA_Zn%qa7Sy4tus^1T!u|;
zBH|`5w?-c@bDvVM*MX&Y@wr2#cb9d|Ic5%<77KizT2yA;E{m05o-dZGAR$KVi$9e+
z5HNWYu?CbZm}e{?&|Lu$u_^LrTLVSKYHmf=#31y%gj|bL$4s{JA#~95ChVlhgWc?i
zlGd0?QH{i&AMx2Zy3pc#7^p?wh^mL$q$jB!c7z&BI$*}I5ki*0>}ALhuN85)jtN?o
zBHXkD+fZrDF%d<ATrr5tCgg+|aWj96SlrsyDgB<gIN}e-*4g~R#fNNT#GiA`CDzQu
zE@tiT3#^N`(0DT#i)ip}ywSQ;5GnrwH)A_Dp}TT?MIb(4mSlKnt3Y0WeFb3QcI_Nz
z_Csa}b_2pJ#uA>$j8SLbYI#AlIjhoO`fE`6V)vu|u-y+08T(qcZwu@l%Q62L>&V_%
zIGQhqaDJy-5qY;5=wHLmZ@J&ulKqIvR)Wi(q9K~<|6BLsLkzgJ*-P&0m%r<N`w!fP
z!ZI`>KNHlLZ@RmCqUmXFKx@L#{@2uTBEwT>3Zvx`>zgPqc9d9mKE{6GJYurpsd&NP
zqVb`JODe3N5eMi+8k!4=fM^6}#%27)(bi4p(~;(^5OwXbBjyS#)I1qUFzwuk#ZEH%
z1fK4w4v9tq_6c`amC`rj+Ok&64tB-{%p|6W;t(Dl#&N+z=V85nMy=YMHDTkP`igaY
z6{BckLSi`Y;Z#^NM_3SSD^?hGiLS5)U1cV}9oX%m?k{}LHh~#1ij=Sz!R-T5DaQKv
zFLOYI-E9{X$vlLonn{<~Vr<ZW3+N<PLeNg?XP@=yHlxD9C4k!yC?&7SB*dvdZnP3#
zHyO=O4C`=5p|y0Y$!JquLbK|cl@cUCU9qKKV;D_rXN;(L-zl|5Ad)suj=>aku*8}u
z^inK-Vbi52mgVU*+!~FRgmk$WF!_Wt3G)=M3QDXly-j8cXQdzvQUC%BtYN`uYkzXf
zcI3ADceu4V)k($#RD=r)0cXX23!C6op+ai~JTa}w^oG4scu|RWN};Xs9*iAo_4U^K
z8JvyghkzAbJlx8eZ}_f$#74mz&F>O_;{!gIV^xL)L-7`;_8zca++e;FcAx<X9mD*;
zx!;O^+pKLfI5{<6dztI4dyMGNtW(X%26J7u#JUT(KugL(51PJ8Lgh1Hv4M27BD=J_
z@TiE%z1Y2ST{J@suv!ylTLXlPXqAH^qu*@n{67rA5u37TY{S~cSc&EHd5v}FGP7kG
zMF@ev{Ze6dT;ABvCKnR3L(%w)c?A1<oSd@fzBN5+jwEHtw>)Zn{cr0Gf%W#AXYFg7
z!Fo~R$Tk^-`%!swtV$<?+X?nn8i$3BSF0yju47Fvn>8+G|K3#fk7<0c1RE?8yd81x
zIF~&qSWgI(*8=$pBtUJNYhB8LZI!_coifK-<J8r>bxzxaaaMO{%3HMVZEU?!XWfVR
zP!LNMIm-H8;51%ifprL|Cl=Y=JJ$LZ>pZ*8C?rZS!xlhW6QH2uLY4qj+h%#x)Jp4s
zqf-qFl;L(j=YSMxXso%pR|KwgC^!~2R_K_4g)weYNi<UwaIjGd-{in!n$krB*zWf*
zK$p+4(i~+@)At^9j6LUD(=aoK2ja9Ve9M*dtqn-at;CijhW^l0E7k+;bue~VAVs<C
zP{>5CX|MWynpK;4_z%EoJ!H8PAOQeFi!kWQwI!}fnC#8Xy5e=~>kqiM+R667(w4n$
zZE&&?!WfL~A`kdAu*Pp#6^ARxa{jo*+VElf^~NIHcG_v(ak$cKxJlcs0f#B=VSZnD
z)0zgTuDwosx!Et<Zp}YTX<7Y;wp%wIE}I)T<t?l9llCje<>0^Cj-~DYC@ospL2p_|
zO64YwJ+DzXPy=8A38KDPH?eIN$PaaSq4n#8wppATb$Y&)F{N!*5@?ZM@~tiRw9VqG
zQcwA;j`y~cg#lz*sdWLoa_b&S$g!AwYpYb)-d<r|-`-|T`?%HajzNlPIwg62+?GV2
zXhQM~T4D{G+v<Bf0h^tkyZ{cG{tEdI9i(7*9IfkWxzK#Rf>6a*Kr*LyieG=mYK|AL
zaPp=27zXxry5^-bR&zIs%+0>9JV40#dprH`g88t?RKv4xpLe=t6{!v{or2cRJO#C8
zdZ(Y4n&fOJKt#suPLo%d1m2p)N5gS_Lc0Y?q{S;|b?Uvmu^Q2Gl-C7u44v8OgOzkd
zyvu-q0b+u~R-W;ldcA)}tbsoi`U3#D6yzs{<6KkPZPNE0lAsX08(Jtn{zB)uOR{{n
zt9$n(x!ekh50ww+6n_HZBp!t3$lLABW5|Nm5`&}MkLL@IKB^-o*b~p~o<t)IiiiZm
z726Cg&4dm5?-<gNDTaSOoY12@O^5bTOs2t)_1N9rl9=5A1*QJ-;l#)W5-SnfW?X1*
zn@UasVP4@vcqaf8WF<fha2sMET0YHw{5UF2P+0^eEqA5<1@kIxO5`ALLsRS}XPInZ
z0=!<DEbcJtM%l-0=q8HlL7}o>aV2;v5Ax#d7wp~tm`*T@RbYfl3Xw_B&0(9gcimxf
z2o78{(qBRskkWVwSp_=U_dguYlE{+9V7^eOstFNx`Yfk1e04E*NuL-H^RV7+pH@qj
zyxu_|mdd|m$cmVIY_mgu=-9iQ>OzcF&~I^x9`(kV_LJjHa({w72P;WWh=cdd>1p4#
zjC8;{e2%*Xui~n;UOVDB^YJjgWEjK_!EgZB=q!8OTJv>AF_E?cFm)(+cydO1d*%z|
zfVHhAm5F9&5J@{BNd*h-XTLOA*?*OrSMFuz;pX$E+qa)$HbzDfPXtt%5h9P%U0<zz
z{G(>2aeI|G5NtHF*zAvZ_40Z>>QQQxcsGTp5Li`IB7tb4boi_CeN16uqTtb@KhTME
zmmQTFYM4Q9g2x5(ag%LN4$wAns(?>pN>nkig6J<yv9Fy%x;z&gl=-WcN9U4J`X#Ep
zN%qT~=v1Q0sAR%f;E^Q-r5x`>1`~aiUHt%k!s5i%cgB*O;DIdlin8~ePce_mJX9Gd
z4GyO<i5-}zu6s-S`<fh1#z<d@j1a{FE6``1-sY4^_m|N1VyBb`uLHGji@xy^x)>AQ
z(BSsi%OIHJROw24%#UVYI(s?OSMKx#OC3tD`<B>4k2QnK3>N##OG_%*qv*Yxk50~S
zsEpS^c*RPXn>|D9OHwI=4?bAZ;(R|N2Gzt=4Zhi4lx=bb1#vbalOnPy*9^9^hni-x
zh;1333eHWes<_-v^D<!kwM)wD{N-k?BxGm2y6^w&O?P(tor^}S3x4DP_47+Mu}M~-
zxXDE+g{`;FU#enaqJ_oHo?*|3vsSQGhSrwiO;wAAD_Wd%CuG`ZZ|hzU@x~9iygIx)
z5G{)cB#sI?MqNGIz4HuL1|uR4INlrz@Ftv0hfm#iE{f=vD)2W7M*G5{rwAA%el0&&
zXx*=Czm!-)x|USZ9C9LWd_AF`Ilf!J)C4ssNYK8LqVigBfualT+u7cFMz?+`JSGa!
z^>cYdSA{C0iLiomG&V{KU$a1eHmB=jY>X?utgI<vCna%9FUWT<+|jL`*&0?%nB=<h
zU=hTGNsl39T$1{5w0+T$k>eqrX+GK1C91428q*g#s)zK&zeJ4Z(q&6m@XQFY+j7#Q
zIsI|!qh0#^i4o(`ljcz;PdPYwpu}R;>SuN4)`;;;C6V1q2+d+jfmBuAmHLML5#!Ov
z=2rWM!@vy*f_swoJd{hBqJRCHTxL2LC`5b?R|-K!9s9D5_>f95+ysIgFQ?LEa<X64
z$3H<g<?vQ<#pScs+${7I9eu3oFhLW)Z#;yN=sqF(>Xej@PFbq2|C$Ebp=?Ds5GjN|
zQ>=P$lb*WN439w3OmO4yIO%GQeq&=qJ#xj>m|qLagSCXZBh~_YW#$o4U9&y?Qi&(x
zybHpOm4G-lrAWV=+3giBwcJ2SP5A+KU1EX@YPs|i9eUAv#VBk_eIq0zImU(4*2sf8
zX(Jg}Pim`tB*(?Ml48}eZ*<f%CV5D0Re7x|n^`I_ncyvd`&iF=(yE69q2waoU3i`0
z7Q{p5>qqQOwQh5vK~IW<<>h`ZwZiBkR*1_$fWeTYP8ZteJOb4*D?}K0AjV=EP$OgP
zvU%M)Fg5-Cgf0N=#7h|JwzYc2@7*PJXedzXtEgmU!lVjy6sa%igMX6mRYT#l{oE`e
zIql*{UigZ>?{$+!g$|{Xw>8wa@92H|yRTrZxe^+gdp$aq&)xIwJ|}UQxL^RE=2y~v
zdM31c%a8i+hd42a1%fzsD1doTd-yMU@eGqQ$X`ppYG6C$mNc24{iHk0=+>80lNIol
zR@E@|>e55*icl9x>l3IYI5F@44F1Wzx56YLVxxpB@>TBTsj43vQ-7<h*;^Fi%XQzo
z&lzUE<oSbg0#1k1y&t-B16||-;1TPp>dy<Sg+8(!H(zGoe~zJQgV=f!&>ERky%K8&
zdUX$QCxo|<g!<<86JIpsEH0s$J0b@@(7hh6At#7AYNU$wc!i%n<9B;@T%<H4`lV(U
z4X?l?*mre-hJi>eDXk&`BM@jxj4$eu5P6Zz^-zf@SSocT7-~3hsy+1|3oN+GtRzsA
zE4LH{1HMPGF4p?3XnWWux+pPOFxLX#N529L;JPWg*C>;oOCrn{$q>37H*0mhNzNb|
zUr=~K`94OSIY|#I?_SUOz<;$&?tSsj-!ssC=gIE(I2=45GCcC61(9@CWr1UW&=k1(
zW2s=%1I9^mvBQdvu^&2}j>dt)uHlZ6WVXvNW!HAJ>Zl|SXfvxb<{10@2YY<apv66x
zSb@rWrQW#E3NRkPb?AvuxAzYbwSx;mIyY`l<Zm_f8nWat>V#fqY9BZldD|`BUm=+Q
zB-N$C8Uxyb1>gvm?bUT5>oHjXAMdwtNO*=JQT?{r9s6)MNxmZB^TGKL)<vya@2;BM
zZ3O~#R;5oS-WwZDkRWw+SNqsIt;;#Xnegg7xT2n~bFb+g;q((S1Obx}nsHn)YV|LX
zpG`A6s88kRZ~?{KGc7M);SqT4g(#l9pUgo{QkV9yI~;FVg#N(RCES|4$>HR|!<=x8
z$-^eX3teyk3Cey^pLwxKObLC$%~Qu#L?uZaMs@j@dQY8`HGH@*Z_epUg0)Lf1$*?X
z$tH6U46QkqD2^G}mAkc_Z!!izh(-b=7dR_&kovQWU2wF?$&p^M;==k72S?oJ&v{LE
z=D0ATl-kCegt#P+I_G_TSvQlDE>TV^s|<sQ3l_bgv3Zx9yi8v}7<@)09+)?7(i?`D
z^jzUAK_H+^sO04mUx)_5{KTr>Tl8q(e|!QbI&*WwCwY~J;24=?u6CR<JKHDs>%N}d
zoP~ml>5XH9c-6b1D9l*v5shChrJIai-p5LcbFr3B+~Ynw)#T-3dME`6Q6?yQ7hK)!
zyWA08>p}Kzc63SEO}>0QM{=%AC7gom#$|L+V#fu7MI4HFXh^bJd6_-?u5KN<`%)`I
zqeMCZkS`~(GTF|I>{gG4n+Pgp!UP1PeWk_t$_qPy!yjzM8@K2?`$ft(Y|N^1?q|fV
z_!t5-s~d;t&x<4L#eJjL55rm|r4lgDaj{>j4}1_=&y-{Y=zFz^#)+Q>efFNEk4Vsx
zH6%c+^-^C=sd&5-b%JAX!|}RfrpW}ORVuub7mpuG1y9w_oo_O-LcB?jmp!gcoVpiI
z)Gzfj>8buI@x>t>{j_|4a$38saPGpbKqS&b`9azTW(EC=QPY0b`Tcc08GRuN0epBk
zS29yQ|JL!*CSyQpb*(R-2`Z_TQld#dXR{_8YCZFw!pUL+=|-FoFRv<|pm%Q7_2{Tl
zxl~N|kUx-?BK22YO?rROu?&@d(}8$3p^N_6G8uWbmF2ZQJW9PpRfL4CK3iuUrB}eA
z4P||NBatVfB`WI1pndNXFse=IG0}oh>s4;QwX9XT2d*`-!akjJV6Mc93Xa6{!W%8N
z#+Zlf>!-B%-W!bzp(?w{eq*Ug9|p!hzt#omg^LTYy<!rhy#jH+%ii%0HA<+1kyRCh
zl8|cy7EWzhWuN&IWijO7RxFJrai7q+;SbnWjLGQ7Wkvw8{1S<e94#B<>GAf{=<gc~
zmGBr-QgXChY1<yKLl=^js0Nqg{tB5)PL39<pKrK*<`B97E(7XTDzBqOC&b69*(+^t
zf~hOFv~pxgK+JoI(eae%H`)HP%H(8KhN|jng{(wFBUIO0?7r8Ts&erxsm2pJItd`)
z>R0W^Y?8fP+jJH=8grqjn@6%0P{DYj1>Shs<@Sd|sa4n#W{Cp@A5Tt#+Ld4@{@Z;8
zlI)<m+A_4xY@eiPu_TPW(7v||Ww0)BYJ($@LC6s!$7{B2dreMSF<vzI<BNVMnnSJb
z^w=j~WU}x>lXa9?B2Qp+b!m3dr6w;`Jdx^ZW$I17Q|&!b_5rCDmO^mGL(MVsM9Y&c
z8_%;J8Evwft|2+k5#8){x102IrcoY#_j;le;R@$<wqJUPX#q=Jigt+e=d9Gro$Vnn
zwyFrTmAbO4-EFLy#w_%uPOlKSuvIS9cINezAb<=!J4+kS9%AA;<=As0D1q2iS5QY}
zO)-2%%XPQ?5!=5K))2lUSclpPqdGe|Ry`83zd6y=G?drn100ojG7yv#)9t;dwaoBF
zC$PB3rQ4f3wCxoKHCNk1oL)87<zZ_>4O8twr&1R|HY-DgbtS$+E=YJ&cIo}|?X?4~
z3xp0M{raQxgCVpJXb#}a80b4=^}(WU7ofC3J%&&#>IAG3UN!bHy>DZ;3&e#Wgp9%M
z#Jgh1Mm6(v$pi`rBUkOjM+Z$0@w@nGJ^#IK7w~J4ztquR#Cz%VxO#p5a}+>*Q^Ji&
zutd>t5o<%e`K-Qm4<(3<N6%{f^avYU>K*!Gzp2OEz_@D=VJboOdQw0B0{ubOBx-_6
z!0@Gpj@CWj<WoHF*>?EOiAw0YS$g}&ru<-W1S<`3SHV@|mcCNQK0`+k%6QC=dtG1;
zs^<c|cAXiIG=~fdtHL~RJQ)`D{D`Nt`vck)>m7|0Vv(ois;BkoZ<yH`<S#Gh%HX0*
zRIl8li|?XoP%H4B;(!maOjN}W>R#i`$Jq$6K4cqiJi3uNMPF4%)66}rj_4bheOL<k
zCy#n<fu6RWy0B4>WVQSOxsV~hs7umk=zr%r17SwF*BMA$!$6q-EMn6MgAyu6KoWRL
zVZA<UgPEs{GSF0V7d$sx2lkt!D{%6ygu_Shh*#gt(Hnm@$=QMdVMf`)AI#L#WJZy0
z1%OvY$bLp9F*LT!(m#x&C(w~#HC^XnJ$QS0nk8QSuvV-05i990kOquIkmw|j3pRi6
zPx_b@My`Yo`tqwvzmivUUAR5Y{89IO$w-iC0z((Ml98SHsqVklq-Miqi!74h;#M5;
zp?>Ktl9@<}R~HlSb>aT8_G^9fZ1Zszjt<N=DvHEpkqmZzqF>ofPCVRed8jH_1JUe{
zMhzxB5DYn8h*j79q*K<LuX1^mrvfIL93xrG{#}oI)znN5xHMBZH3;&qC|G7XMe|$U
z)yHmjir17B8euxgv_9-_{f;9{XZ}*jB_9)?EHd`5KWcC~(kW!-VCh$`JYIpN%fhtB
zsxJ=duP2*a0YE`n>2pIzH~gT-OGmw2oeaiI7N_;=&-EiuI31`!lUj;PE*vRZ7}H>q
z`t=8W^u6S>>3ji{QnD_|vB@sT;qDLgik@UKwd^?hs78LSL;Xw&D*N)UT)CCpbUbeN
zgYMhQBqOf?R>>9LUA5_ZJvWh5bU-EL<*aF<M;2tySNhsFNX7^ss4Xw>mohrW4*UD=
zuln|>rWy&MUTAv4A~NobcXe;4T_``yk2BXpe8o(3vM1h!X6M75Iw6L_5D#B|0qhxK
z6XAPYv~$91`r9bek^Uu+VpkR-6ytRE6X)l+{d(97rrm+uwzB(TlU%^|UinUUy2PZX
za#<2%pQ%xQe4*dJ+$3iE3T5{BmOZ@wpx$tqNhZL$cxIH#RO3=9cX307ZywNJI28`A
z<h?PO>G%W}hx^D+^k!!Q`^oc`vZ}mS<bv#8^q!udM7@w31bRj#wXxq(AX)qMAlZLt
z@=ACq*l97dQW~#ptb)mVVV6G5>DuAGi!(d2_dB}aVpHF+e1CDR(*uwC{9Qdf-Xvp^
zA$Z4L85x;LvM_P)Yo9YB*${HL)Z_d0KbM;CbC~2}S*&b7T($%X^SU5&pMR~_%aFiE
zqk_SfMxmoV)gPysG;vSok)!b3aK*-dtj~1n>yJu8WZvZ1IFY7*|4=8L>y#mEEiy>?
zUeg4mIsIFGb)3@#9Gu9R%rjJ}+aA5lSv+z1cD6bjEM6V)jsDt00azn(%q?fL0}c`r
z^v7Fz=jr6|9{OGeBmH8-C3w_dZ|Q%cO$JZsux-qSBa2ztwNrn2fvGJQJu^}_g{Tc4
z^vm7)w{E78nJ<_4vC}*DDTc&Xx9U;aWXi<IMof-La={B<`i0)xfea&|?PYNVX2Ztu
zs!KQOjj}lKA50s4AX0(k(hu$`>rI_<p2;0%^qvx;i<2Fzy1b(w=wUMQxEBu41Jap>
zT_5W)k*1+kfPQj_ANyLnons{(2Ih!*QC7?p@TxmL)c3ed0bVXF#ik}?8fCkSWA*J0
zy}Gw)M2gnB(!_0vuF>&WRr9tE$rRzR?w6nnW=OFv_=DA3^#7%s9Ac-IBYa48^v$zV
z$IIFwSo-qKe4+)O`mSDbs%ZnN%?>Dmn#gRj&Hmh^FTBuX^@02184_vMi_JlrP2_^&
zJ`)x=ImWEnd0%Q}nH-^EwJweuH@;LAqZVw`1EdsK@?bH(RkE1y?{nUk#znXxVsr^x
zP^fscNKmOo_VOo9PJ=iEUj~~nsN8;Haf|f0=vbyoRoJUmwn`VTg572IxvN^FBR<jj
zJ>~Y<D_W$-!9&KW_k;GnmhF0@Md`4<!hW`;xaEzGflr)RWyd+<Q$s)LKll2k5%zYc
zpM+L2gJPk!`Rxan&?q)dBW$DBEX0>PTHf^hG}_*BbcEz(hw{ZN>WPUK>({mY?Bn;F
zGEM1%TpiHY{<3vCh-FpL&pxkpdJKYoT3>tqK2y)YU?F!tw~mLQu_FEc&;Ia0s}{tt
zbyHtE#wn3jT!u&_-xGUJ%}BKmIp1?lmIURbdt##nMI3dt?fMly8)G1Wl@Sv?%qgA?
z3+y9zlMEjf2%-FvXaI<H#NWBw-ti?ZC&523WP}1%pC_Z#_2qWr|0odyVIIlNA$kIq
zIZ<5@Y2Wv<DbX<9afo{!^=Q!kzU8vfG{#w1nY~7qAz2MzbBifG+QX*r;I+qN{XyDm
zE~XHNUmeu;)gllyD<Js(Y>y+VHP_#Xm>Jd8e)<kRZ%U7ejz=BvZf84*bkQ`()FGF8
zL>lDD@r&%^rnM>{LiVsO_QhjNfmDo2hKHbps77)l?a2?eDj{eLv}Y@BBOS*s?f}ks
zbPS@-v}^6V%1mlXz%MEZn5mI2`2wjqnb}1X?YqIgsH9m*mX%d1xz_$C*esPL^~9<A
z>+OT3EmCouQv<HI=ajch<vKZZy*<ro+v$-vIv&T5i>|f5mT#NQsDJ`<J@!8$rDA|<
zlH$Z@)IZgJv6U1TgB}7G>~#C&(_5CH1%%XKn%%KgiC89^rZenE&um$Os)Vqn*?+cE
zRlFLNW_w#zg$RkL^H-WZ1`)DlcX^XiEl#uVZdD=<ds>2eKh3`Pl$IqRRgmGwGwkn9
zCL>w(_m$OF1=#jT_99un*xT-WL7QzU<mBZ@yP%bvN@dWiH`DD0PqFH`W(V*p84@~5
zI$S11=iH&xy{62Ttn6B`WN`C~I|aT*N$MQGd()97FN+vjH6)7~Ty-yXA7`25+(0m2
zZqOh>KjeLiSXEc%&W>m*5{yQ&s_<8v_Apd{A06&KuS?ShrcMN)3ya;IPcq5r{xUie
z?gh3~wQ{}t+eun_m{aR3EvYI-(~V`Hwf-l|-REbM)6_rqT~l2Hc$!kW?GaePX21K;
zx900y?xb*+MBlNtw|n0AP1UsSGvOeeKFfZDVJ@xqRTZ-ssGQLCTyH;rn!BE?z6e_k
zGmcok5b^sn>@gqMl1}jGAQDZ9lL?T?tA6cg_qf^=N)6S8pmtI!2Ez64o%YrWQ>sNq
zvg&-7o$h477?c}3v-tW!TjpG6Px{0Z$qUki*d3`%7G2$J_qo&LU}6DeP%XA!d1lM2
zmR@WB8+6yB$d>`hZotYG!w%ZK&Q88ox6Fu5gj8)`XMb^x$sjgnK9)0f378WB`AuA7
zuQ;tu8Rn*`4D1&Xn)qI(EVkYrcvP$JV?;I%H;xR8C7ymM^dT_}WZi@IKi%wl(({5v
zgiNf))&YD$Y>6j7W`B9S$r^ytwGf7hH#Nje{n^8Iw;Yop^IsaO&9B7*P$MIiiAz!&
z?zcl{n-9SI`vbC15f7`XoEp%({j$)WI@o;BtT!xPxHrt*pirI9ZxqL9@Br~#yv7a<
zG6QoiZVs(E9Wrn+)?fOny(tQHbhGh+WB_gHjE}vN<HvIB7~<8G0rsgW?t1PaStFF^
zsFOiJC98Y$?3&R=4ec}|v6i^~$d)MBs_<j|PzJ5QNCyK>ax%%U7uh|Zb{5cI2LC4Y
z(Jf9<&g*u^4!WNERfvPo2DIAfPekQ??b+^8TcYYk2L`qwR86{gMyOpo+?|&8sD}_E
z<T116n0eyFR<O)=?>jz9vXBCc%S&qgE~4!7Dyta7G3!n1=H5KkEe7eV;t&uhu5C~%
zvXy(hY_EUcEgcCn*$^U(M&#V}gT27hL&~5`LnEJWC>UP1pcT~Gz4m)=n+kI=zDaF_
z0tA5Zk$rou+jQL*sKt^9+zF-7P4nFT8+wR+u@5#()bx-CaKf-wmF~ZLyX(2e`v)E6
zK1F~7$E#IcqK-S_Tr*h1kns+8857HR#3S>DF76?H=ry)!Ks;CrWSks}kk?&U=9Y$1
zS%+d`f$@ASwi5&^qREJx$8TwFz0EdX2+EvA5z2-UHcm|$=bjzuuBZBJh%yL2UT^o{
zT@<U-PWL50_K;!q_Ybf3*M^GB`IXTz=nprzqi$neh}sFAltH5|LIZxh+kKizPT_%>
zh6R=<>z+Kt9hcZcMh&-LTa9RGR*ENO@L!o9wPt2i0elCjd3IoVs1P3m)au~SROTF=
zc#&1WNlGaqZWq`z*ci1`zcRooU{mFlRMq*a{t5tL0pX+Adaehp0(K6T`XFjhdAr2}
zKuhgkp|2}9IeBO=pk5qK6khA}?|IZNfH7RlfLe&LinV@L6NFak$*lv(RQ<;YOpGCT
zPVVuXWqS9pR%K%0?wZQv_)7QEQ=kUwriJZ%%;^q)42|T}mHI$H05nm7nR>$iOtV?6
z6y1TB<t{sBt^S~hWR||JgvCcof{`#$tfR!%FcY`eXfC;D*DumjE;RF%F5~<PA7cqV
z@$(X0nN2dM;j3zYQEl<wI!x+d7}UWjy8daa9%F=1u&R>$5;4d@++x50W_@JuvCivA
zF?@Om%^6+J9pjHKMB{?Bn-%YQkzH_Nw~lP3K9!#qpngWv=?_&3^&=u%tbI=Z23sJg
zKTwRZVz_vum;IMbAxI7f4Cw-EDJRCZ^U}M04F8-};z!>F756Ipe0y4i>tlYQKPyI9
zLq@?Q0p(4)$WFD$Y51JDlwS3Atew@>e4Yxv)s=^yv{bC>9Mm}V-Dz-5CNmcy9=Z>i
zprS8Nu}}XeLYin(CLvrVgWEp$5Qq@h5JJ8b@t#$oB1Sc*@9M5mL=DPddkzwa5*8nV
zb@HnFrBQ3ni;!adeIc$ez|y4lT<E@Ghm}D~s9wYnA~z^OXSTX;o5jasb_Y3SWEHR2
z`ntX1o{(s2xjOJUT4iv?9G5XKy7zrbEkfR@TD`c({fstWW&0|4I1;Z+$jr`#?j^@N
zm4-s*IK?E&<B+>oxpx$p^uFaqU$EQ7qV>yMcTptbUb4#aV_xuM#wm|34c3W_l87*s
zpt|(1Q!a(GL$m-40T2#(3a}D8{KY=*gR3K761r4|JFiIiM7K&%_uQe6S=#+2PAeJ#
zAuM>y0GX)O-KKPZ$yhRo9abRbZjU;*O#iZ_`%AQw3d=+QJ`vOgOwfzRcfX2V@*;Wz
z9+d%;@l<5@ZI&eEmi{dO9kq64B(d_+#I69~7<dO;Ol-;O<I{BCgf5bi9U_nh@v~5r
zZ#!8(lxq@GTs+nh`cXy!tW)hgO+S87I0NBdk_GR5*-`pAyGu?V#NZ&1)pC`Q<{6^y
z&b1$@>Y9@wPSmYa>lwq<p~_mHx!@!)BiLZbh8nun-L)fjTPO;q5VkRZ5zZO!XU8LZ
zrd=6jO^j?e7qU1tCn{@9WW7kTj&++YCPek<JKWK!n9F&nr52M6k}P;HVKfiA|LO#j
z%hcCmL56jxBnuBd432x;U6M>zU%ca_fW$_eHz_LqaqciQ!(5c2Z6|}^e(KwoqjD~d
zs)y+y+MHQ*!WW_}EBZBRMzu@Qd4mzfwTwh^;?;&jQI)r~&JkjwLVrh%9cyw12B8H(
zFi+2R>+#6|CrN@3A{IzBL~~T{p59|lLhEYcyvUdF-$xC-(&P*f?4QHMP>NMo*M1ar
z{3NGTP{J)XWm09-?x=#B+s$NAnlg=Q4Tj3Gy2~{QVa|UdYIu<;n}ra|2`%NORqB;z
zqpm42$tlAtK^KrE0}yU!?u$`tM><)24U7P0QYwQCoVPOS<#Swz2X!WfL7j*B!tk(r
zX1OcRK3pA;LSjJ9cV{1axGx}w4baiUv;vF<K+tRfm&z9deKqi2vdqZ|@@B`p2i#q|
z9j<l)0ydWA3eOXEgu$}`J?i+$?xJWjFRho4fHWUQ9Wn7gDot+Ip?2`FK<Aq`n}uCd
z#5;AwSocRZO=7PP7V_3ju&$W<pZ@SRf?E8Nd)4y8wMp=q#>JqxF*LyWsfs7vIr}2a
z%o$dTMi$L+Z(~tqxFw~<f(D}j9urb$-S19#&}1M|75eLn$w-nNva!M)<&@|z=o3e#
zqL9Rm+%?f1`?^ybSR64M%0NPu?ghuW>QVIZ>NVmiluNFaYbQm$KE@;i9%ppi3dqXj
zqOeI+^`E;BJmci@aH(ltL`OC73-{m?0n~uUDXA{475PlgJz7341aO0=XE=p`poT;i
zCP!35-=7xM^M%7S7T?eqbYU>A>bxoRc+{&j&fmG^481|<;2;qEOr;*t<H}iwoBKq8
zL4`Ll?PiHi4zn}T7n~K)4Lsv_+BGw*dNK#1_`@P90tK!Wa?QQ+o?S56<h3k_97L?J
z#)7FnD&*RRU1r88D?pM_FWa|2;?zsr2aFftEK2_Is(t-3lhwb((Kn0Y63Q2+Zr*A?
zG0SA-BJ~TnLii}@4og)2o*lfWz3zxs>-TN;iHodO#8jTmX+|=eky(go(&2K@^n}SQ
zJsMn99gT%lXt^+#PmPb7(4!5JN8ORUF)BM5;Y-XBmDPa5<Pt?<q|E#;+=GT7oTB>V
z)(Wr*5Ml5`Jlg#U8xgwD&M^cp2N>ZYx20WjWg#5~@p`Am7|~H~yTv{I9&?xFI@lcq
zz!>$#E$-_*CbbWDXPwcTP{PEV>0RZ1<YAMCPzG1rm?^gR+e_S^WSdOX62g=im6AH@
zQTPA;Hp$JJ7jC8KcK5rJO-635udEItPAhU6XU=i2S_g;>$C+RNhXDu{l&)zc9BeRp
z{u*FX%mN1w)6!h`HQf(43m~!*)vU+dH=cF4FE~w&<f{Fd^oToJ6Af->u2GpJHyjeQ
zfqCGrMNvTPKVe@!y3d~Vq8U>=MZHMn|6Mt<N78?Pflb4s?wI91mCb;GwIv;kK~Xv2
z3ipWH4IOI~P6ab1akpje)lYZ3Gd}^&?vZT*cCSXM@20zFaMj8}pn3+^2xghM;u7F|
z!=vuZBM&#79zo)TC#$6%0dS|IM-YF90o)3;f_q@ir#+w-b;hd!%ViJ-vo<>5kCqJv
zuWACcUh<8;`6%+mpZ`-qK@;Yz8ZKOPf+frJ%pTyoVS9~(#R$Be{N?yri~@oK+#)tv
zcGX40^xIpyKE_NBKud#6!=ax3u=|*<-5*0~o+l0^zhQgh_oB0V+?oh}w^=IZ;)TvV
zKDo-ILdFV*^ZGF|A&~&%)x;BetUJ{bbwCPnO3H+O8Fh+0_@hQAx=-GZu7DlED}Br=
zQB{R%%o}I#|2|UE2O|>5<;YGE@axv$_P1X}o`bR}4-l&$LvRD~s2`5iw_d<K$7`BF
zUOR#VhNOApAkFdW%a?WUZ-7T55%}sPXc?_|W5tdZakf3<?(UM4iyfQ8ECy59d>6M-
z<O%k{JISMGwJ`NOD&1e+f&w1H3&T8e<ieWyeK&i@w|oOPiV?Eb#h1tg;K5yVeA}`1
z;BFRIH!xCxe_$Xa-mesU{cHVe2hi98brL%@9W@|}$A8o1cXSt=r5S{|K?H!whr_<q
zvr>$Tt5p{6Dke+dvbjim`Lza~gNjm2ny1|DzC6A)Ts9U@ERXu`PWM+yWZ^hJ${4kh
zT&U8}D}m=Wl{MjO87vCvh62odEw<Q0ASC0Z$SGso=LjShy$35>h7v8o1&8}_ihECA
zYBKPSvO{dfI2rpjKii$EoCXB30Z{{i;Z^ExcS%B<jwZU`Fq+yO@;S>;364}iT{KU(
zV%2S<-I=}Gl=Qlw2u&qlk@qZ#Q6oMh*WBTraH%C2chm?b)R<_X)V@Lb?8zos-pphp
z2p@A#Up;+;Nd%)p1k4%&iu3IW8G7t&lRQWu0|<xemMip?Pne`815%A-<X^6Lud-h1
zE38nBAT-!VSl>|)j1V;q{xO%`uP5$A{)7l2DT1QFX3S-G(p2sJxw}A`j0czlWJ?mX
z_J*hRvAcmmi9ZQ7hJEyKcJ->`*XoV+21GU##T8g8;e=`)*Y*2IL<}TY4o_g2!#~__
zv^Eg`BOle9s;N(WMnl65EKc;Zs{12)*KC708#vsD-zQK;p6KOtp0rf=*iHeIanQ&z
zBEcYkCj%8y8=uy1d~VuLB_4}Bn8Q)(wpwoo^~IgqM?#|GepU!6p`PDX>g%1a9kSmC
zorPHH1x2=gm9GB64DyN)P<o8paVmM8-n6FMJW=xa0S_`d=*vq%dvt+G%nk}1kMEu<
zuzUGP;wG$wB^7i$WF<}&-*4v^nsiWNP!DO29Jb|UQ|+aGas)6J5GTWtczB}g!i8A*
za_pmWn$;$okZ2qg;yq-Fd(_qk?3^M#f&259j9`TLFoI))sa}qjxvbkfq`E;RxaWcg
zuY}i17Lt>1N1t!XNQfO|)(RX>(4oZ^+vi`|O`I}Np8`8KTpf>~+I#Qm@iD6@m?mr|
zSdXDpUiIg%I(>V@$BY^nBt#Dj0XUQs66~14q>2W;t{4svIYPbgv935J;$x;IhsZug
zEdr7~*Iw>(wX7H`29x!N-m(L26OcMzVQoz<E?Gd_g{i9QZg0Pm%25NA1HqG6GootU
z@{1n3g#!2riE)eva)bjG0Joa^o!&Rv^)X8zZ`q=1=js>#L!z&|q%V7o9H67{OjYbK
zbY@Vl7ar32H<@&SAC&-NuOY4>jG4OT0e$QZtxBM0SC3EApM+4FLC^@z$NY#X0q=`@
z^&jUp)4qAdlp9voF+HHS!3xP?Pa>$WM_sjFANbOeiA#lvDw3Ngndp2B^-aCy8_Ou)
z5X?kXhXV)rfC$?ws=5Z{9)=H3WAzvVVA!jJ6__FrWz<`lcCYcKi`*Brf?BCX-!3!D
ze4xu_K5`c7`;Org77q25vEc(MAmf_T><9m~KIS-O6{Cpd*1!&c(r9ic`-Xqb)Eddx
zOgjD}lz4u>&O7MJ$@W4(uu$PrmW#AIVYZ#uuWL>}o|eMPjPOSR)xQsu_UZ%nsPwKm
zSD{?=SC6bxX;-ic%LdzLf72x=joGMVIs`J5Hk7@5=7V<EZe4TIQ3_)!f=wz{=^2DS
zoMd0>p>E=|R_52L^!{k!*3Yvmf~Gwu(u{oDzYp6L5AQ`+nT!meQUG`=nTs;X^Qb?k
z+w1d8UYaj}63QtARru&$`}^#!IsJiJ`o!u-BchHxWt`1Z**X2=Bssu~3%Pl*^6jsY
zU2`%4bmP(n{bZ_DHs8E4#l9%eH76UbQ!rFr>>65vx3RR$GH)Ae_q@SrAS98;ilphG
zxvcNIW9+xiC5LkfvmoqEZWhVd)g+l#aBHQq%-T}F)Rx^pLDfHKkGzp-5^z^R=}5_^
zzl?9dJ@z#hJCkDiC5<zTgZJ3(L0xmwSg}w5d^FJDv{b0m65trOndv566VAh~K3u>u
zOa>n-T|T83J&;AhFGp6xud*||>W5qG<$X=pt_W5Y(l0eIgDpFEf_-MSX<R(>U8zLX
zFY@z7W1-Bwdi5T=J2N~0pi(U%>H})%6>)0O0z2(;62;%K(vQ$st5VT$^}WSj8QnD}
zD^{hK6cs^B2e8>z&9^u9G}ULr(n&A-_lZ+qO|l=#Va~Y*YYVYh(nBt9Hpg{GnSq(E
z0B0dU52M1HXQF*)s?*6}un>9*TD(|hiRd}^nyT2rc*6unilbHkKEznM$3C-<DbdG=
z2cc}q{?1m~%AB%3VmPV}4zFewfP9XzFCJmOP7Rb4I!nXwV`X#v$@#cC4xm;+>2Ode
z%*#ON!QVI7yG}9{!FiU;<o8GDxoNIFv&KyRKtEBzSxt6w5!5w1BT1chvptQuWKzV$
z5#CI>)b;Me_DcH7HfG!7=wh}RE(bu2P|dNk@)+kc<LvntnU8p)p7FQ_6LYlE)!*-@
zzgQQ{&S&vs<4pT`Y>jeGT{g2f{Z{+4{-$VFNnuqH^vX}2Jk2%5KFVdrkby@TAG7D<
zRK$JupCzV_+%kalQU&_aMPuz}E;Xq`*#<KGc)1KHcjXoP#W{jrW@oVfH{4}k(!Xm5
zZq8=W1PDlA3_QQTV|-WHG#HY>@*o;vBD(HJQn>&Dx8qVPuyF~z;99CLxT4wT_}(}8
zn{l!V^L@o!G$M(De#<)25_j1Q{PN_&^QzO{)M-ze!p1j^D;m8P$O4Z9BRJ<((;lHK
z;g;$^wIfG7yj;K4)f5=y1Nq(1Ql6M4aYyEuRDYw_?&1r%Sg|XX3t!#vSvqm!c!$Nq
zQeMAHZ+yah)*qGu7bosQwdPGd<tY-)ErOSWNGW22dRq4`HI4R>kXwe+LimbR7rm=9
z9S`B$>R>RRI}pBb*BZV55A$^<jJ@Nohf5M~x^361Pi6vm9tS%&Ot%wH02>X6mz{d>
z9H%?Rad9NlSmOt=oY@yX(%m2B0~|^?Z6(-HV2%(J)$IHA;^n3};+;YmFyCRrWU4;c
zre_>QbC`%iRSjVU&|Iy3S?>r@Kq7b`$2k57|IXC=zwF*ICRq*h`|~S9M3}&Gf~5CY
zAG_DVu97h@SOLyoSa`yA#i$39?Hl%*j7*`%A+8hi-jR6zj{e%o@Z$pjX%N#P(LvOc
z3HEJYw3CDNwlOC|?hTl8(+qv2nZ5hkDHGeQOgb(r;8ih1a(#~JXHRxIoWTP6i~MDb
zkbx{nw>up$6=nOKU?`+Be>1PJ`#7D#Wi&LhA_%!>AnYVcEc?`y5Gp4eAWewb@#hS?
z;#-q}updUTm<;L)XJp`9ZkiU5;_gfAeZM#r347`*lQ;B4`}J>HLq<BRPq;)PF9q!F
zWv}_mlt>k04r`4w7cMfr>>a<E<Q%AZxJP2zoSbQA|70>?N;7@%b|@Ngyy$B`FJs1d
zC5$uP%rL%kNbJk(=T5*tnrwn%;M*>`2Ns+?y(7y$&uL=_E+tjr38b>PzINevrj4N-
zf8J1&*`ThbMvMwiT0jZ$d~f^PBTNf}(f&GfCo$O0%d!{zXu6amjCH_3fRYKfs`mA<
zkN(HxWN}L~8>Y8{fM6laY>23edk9KyJmt_CFlsXjE+_Vw>8WY^q*QzAk+h8yA&cpx
zOVIjZz3lssBAt60M2o-RCS-ng#xe2s*)kbP=pdogb)3DjXt>(&67ouSf-FenapoJm
zLMlr}2%<e1-3XoDBUQHST2f=zVAq0ReWc4t0?_4fJoUYq#H^sd)EOfhag?X2w*8IC
zfE5DdE?YzpBg|uXOJySXA;PdZ<Dp47y`SdnkQC0C*=q8LQEq~L-QVH*Mdi=SDm2XZ
z#1iT4?7;yc_@EKoEcj5tD#kbLG`VN}z?Djcr8b-PV&~uy97O`SIH#L>#_u<)Bnq|g
z+;Z#=B-zo&n28t=kTqf#I6Hr-v!>a|ujNn)k=$g`i5z2cl6hXf0)sG|5n*W18{80Q
zcl*PPU}#VVEbWp!{1Ur5d>BD+goFkq32_+tk?D*%h;q27zWGv%V-amKu;|8JF3oe2
z%r?Zn$bo0G$#ihE8HPDXa7+@_gz1ndITELrhv9{`WH_4|N34+)5exm?M0@7Xro&+1
zt9VFSCe|wx8(yGcBRRv)3PA+<JoLNyT<E4x)**a?ulm6xHxXbJ%5GS+7R1*KJWPE1
z_ybN)m?Nq_>HDs34slj6A5zV|i<LP>y<cuGyD&o1;YfU#A`qQ0;}Zmjbzc8~T^c0Q
z!%P(!LlD;oGH{GaxZmz@ic50(piecoiV)b^k#?_Glib1%;k?d}e4BkhnM|Itu9Zkn
zMzI<!wih2TJwPFYREt`N=H+Z(dA<F(O%5pAd;swX*_h_hNOXPH{&*|tqT>q&@~gqK
zsgB!i`wR2!u;L(hgdlG~0??(k_EB3Rt^#<NwU;*(d5=Y@*<B+0J`_<ev@hU8AoN!i
zBQT175lb$JF|~A$edtu6Nh~#v$@vBg$>RddWBifs0V{3ENh!j)jWAY{j)C`IyX(_V
zdRZO(2FVF%GJZMHjYY?)2zeKGZiycN7WnMh_R@dbX2dqnfS~||71pj&p=ehpziN+M
zZp!6_coDJ=C?6TD$Z6Z`{fomHgz<04NNkqT!lPT_hbF2IUbDB(X<Mp!b!|#{T9j(m
z33#@~PKc=*QBFDs<N5Ly`=WYVLOJA#wTy@ZU>sd3FcWok;K35*!h3RG<m(en+==WE
zPh^^8bSIa76PbQH+C`agXunZ~#(D7QOHw77Zk64jc$DxEAyI)Od&J*r@pyMA&Kkg;
zOvR(7jBpbB-iVy~M&xKw=mh^Hwv|$6uW~*9y-QLs?v#pc)&Gp^>~BaBH@?d64D6$R
zp=;MZl5n9nG2TYacV&EL3Q=)o@K3^7x}S1BiB~C=!fUFJ=DL!<Fao^5ng|PxY|rLG
zu}^>g?=yYeyRDQR;y=-#9-*OfKLKSx6vO1po`jbJQTn0&X@}7wpu6#x7NfcmJ^^EZ
zZGV_-R6zaF3yJL)yDTQw6nl4`OE4%IgtNmsg=UG%>Y5)SGl~J5fb0b9Qz3vI;A1!c
z7`bSE*EH^elt7V>xrrlS6(QL#jJ#n|mwGfYIoOqPqZOS!p*`>h8f4#ob!5v>EOBU$
zoKP(FoHpJZG(ItCbumXV$Gd;D=U^>s9=*kYHo`>^)SCd#FyT!A=Vr+~SJ8-}Zb$~I
z#i<FpPdd>-TyvS=yCbf~0!U3%Uta58{`TRK&!9`%L2DzcwQb3OAKFW1Oir>yZ5x6#
zUB#ji>q^4!&0lB&wjs(1S47lz_{!t!oIrKVtG_}VnfMwkYvk?r8<Wh}nf}U8LS;(y
z0B1esr2Hj@5ves+fYP7LHmTWMYb3@3p8CIP`_6ikI6yA_L*fYx2|}Cy%`Cgu2ApLP
z?!n!Ovlod|Ht2NmfI{6<hSpx<FU8}EhJxcu-D{rlUCJX?Qq5jhCOW^W(!E%I@L%$(
z4>#+R#8nL&2qG-6xk5Ja$_o)D3lo#ag__Itz0N5&Rfx0J-!5(zQ<^2dc#|#=r!dh=
zH+aw{QOKjt`dLpGM_h8m)CC5QbVR0c-|5ZENp}n~ep-UMixV8C3Mk9gO?sGkbHeA9
zRA7Llr!Mi7+)HN&9OYHL4(if|&S2<4^@l$ucAl^F;<KG{KE{CGD5eA;j1zv)`GYON
z6!r^MR2tS77<Q7d9{vIFFk-F)Wmtz$h=vW2A+SLK6JlaSA3z`yQJe0($R3bLvLF{j
zl>((q#0sv6f3QpVAi|3>hA`tRAPSh$oga4X$SlCCz+S@E2mF|=L^lf8F)_N^Rak5K
z1WJbQEfmXT>1C0Bb&R+Q5=f9PBIEoFHC1YJzsUWs8GA(^QPZjc=je$`%-;apVEfgX
z-SijhOoBYjggse|87Ew!pL*IPX5*L3hopUUtiEffQ&Nl}%(nXG7=83xCTU1z`3O{B
zK9-dqN*x!W7cVk7fXjj-xOvr2=jwZIcak6`RCqy_E+pnJWC>mT2xEtNFiHP$n@M6q
zmFf_yuYTM4(@&EEb`&UpO6{&o!!{f^Vx>+xO~3Y?`7WihgsPOf#;q?I-=sx_E();G
z+o(ltu3eQU3L3Pl&C>;|(v(i13DE|FapqqAsH^?aLCAIU&oRX{`@B(k%jfax*VFAA
zPm65Q9wTeTHE54pRRUM$XnI+A2X-n@&4!N=t4z%@AZo^=!l}7sC9p#c9hZxvq~*mC
z1F3c{jy5Jp39{<g8PniAQvwBmax1x*UAaW3lNiGo*Cc}5hc%JbL33d+EhXi(djXDe
z1*mb`BPVY)R|Y|W(+FC`<q(H9g3t>cBZp6<1S};si83DsEdg&N(O_;|<jPY_A(UkJ
zib{JJu=>Gziawolw!;;9-D=Yuu~Gp;mScd2_xGx|zKZO&zw25~mzbg0z33D`UDFrU
z<#K&*&;ikcYBvt>1Otmz@3`&fJGul>-zF>^lk0?qdk<w9=7_TVPypLtedNkdBg7dl
zwU#@RE=A+fsdysdjH@gkzw$!x$Rog|3bUJ4q)~<mw7oHk7qoqkiQ*-xj^_em7I(Oy
z;nBN1k?Vf_H-m;p>nmPJ;!}js9is}ab^p@WAnCJ0M0u~260pr`c`x_l=e9}rG*3tE
zR32>B4DQ6a?wH>}&a?}WF$VNz06jXwbk-Wk2^PXh)7>X@X@WoyBdGxcfnqR>foS8T
z!UKbiPAcHs5X~yU`9nB)>rZW&XXhR=E+H*lTiDV^JZ6_2VL!&A!k=9nH7W^cf;^>B
zQYJyf@Xqk44<n;KIf-NplMpP#P@W^iXF-*Dqs~3we4hIyqOSyfWS=Cdr~5@6bGrFH
z)sIb$?voDx^i7Ybx7{W^S2T&GBcvk18SK6|s-M#?kcjd^6GAId<h_ijs9_zu7jS&D
zL^LX>f^@+~#d4-*@6bEy45A%uRFK<)5WF6B<}7{Za#B$dHUj!R+=mX{eii#4+%IZI
z+yYoyykpsDhhC1{a9)>HG(wz?g0Io2B40&I-124lktdwgWfjMLAjb$-Y}y8U79ERi
zz4z?MwO;ZF3C3mrS(TilG<hIi5Ev#P(Zt6iZ@<vgOZ<a!-za1is!k@J3<u`88zWCS
zmEv4P#4ZzyF6j`V%~6pbBz6(*Ed!TH*iWX9qbrY|#i==e*k9(szX3}0l{tuC_;6<S
z$A9gjT$9lN)GVpR9A3rDV>uI=IP?$u#Our#;G1g2CB<NzxI($$-#%#f1Pe&L1Bjf$
zK13hN>?gf#M_(Q3XZU@IAW}>S9kl;+<JDPq-JM<PiPGSlFAlt%FT#}2l~G5z_dM3K
zolIe{hn(SFIko3G5QYI5AEZw4g2kTD;g`rG+z~H<Yk<U!@CloSq^Smv(Lc;1+#qC2
z#6zM4LgI*763e_j^{?G8E%E}`4h&I75y5-zJcgooywhzxeSTZiF;xQ9$7RI@v?Zo%
z)WN5XtdjRR>Uf}*E*7HC1b2sIkPaZ#3=rZA36%od!}~&0-0%Kv#GX{SY^6so%#fF*
zyRRp{8s`+PU1_b*I-E4b8y(CBzAEe4Zf_I3iqM3KF<xn6!5!|@&E412(|(7_OAmoA
zE5Zg&1OuQ3neJY53D#y{KVn^tO%^o8r&aEHH=W|m+=>b|J<rk+IfFjd&UD{>9vMye
zk3<)nu?hdtI5ZAJ!_dH%Gz=JJWP7Q2!Z_0aLBK*=#Po1iNGJ<@5FR<rIvyzy;J+LI
zHRqAY{ZmN+`BeIi*iL*Sl)83D<gpWQBb6{j9554WiKtCDaVXu%_Tw51{)P)S03*ZU
zlGvFGdfA^nVv1x{))M*#mt^+VXD8ZoSCa}ei9HBQEvTuaXxZcXdi(kv)FTKzf_Q-v
z7zuw6&El$|h4%W($ciD}mA|SEA69QX;k}YnY-jtjUEnU!yh-?3gD?}!ENt)x<#z4W
z7f4o$1lBYg7>ygzQ%BjW`kRctf`vC3L}p7?y3)?`waLJeAI@m!Jg|kE&O@${c_WYk
z8%SUSutce|?9sROtQVeEXaqMPp~U5=&wbc-U4CBc49@DphwXGHV-RP!n%j$Bb8Fu`
z(0+X5xvdMZ#hMC;RbDhKxUR$^CH=X?-W4!S;0IR&ngQz<m5BnnZnAylNK;wZht<TH
zjmJs=Rj9Pzxvg!_lAARISPiEDvA%=F70uTKdr5*R!X`qDH5t;*QxDsh-QaW~7!czk
z1;qYeHqOpn;uOGdRbcgWOw^v(MlTs_I+kr92I0z#Y2ovw_D|X=R0|dq0S4d-FN)Ct
z6f9fEm@KF*;gd>(vI4v(%o7KNcJ*kJ)knfwpyHw_QJg1SZr}BVGodB5&a8<|Z2o9F
zuhx7&41dT5M6;A(``wpe|8qn;U0{92%&|K-T}W-LjsxwPVE=T7Q=N}M2n~Iv{eoxg
zaekB2d~3ixI}0k7x=hsMPS|O<(<Bw~uKwsfV>-&fjSH|1Mpm@Zz&@twW4D-$Y~OHT
zE<_I#@Wt4tB;2iukP9nVj3tq?^x$(E^j!z4BUT+CZjs^%A*nh%tFQl)AiQFAM`Moh
zjj&)Ib>;o~#L0XPZ!QKiF}}I_V$KAs!d}MYr+%;37hi8$NyTxh+|{?tbp_^MWGlkY
zt8wq^y&sT^98Nqd<ZA)Pt6Lt|16G*SOhQhvmI4HI;&BSd|DDJ5`MXV(ya7O5Ei)u=
zJ1|At^$#zSBSt*j&BS|JE!&~XXPC+c;gl#^Mq?sm!Mw_vsZZT&^57yQBrzHth#2jc
zzSWQ{7!R|$o2TolPfRLdgT=xMx$vk}OZ0g%VZ!N^mm0_g^u#amvKkDVVhrULqA%_R
zdi2NU<ILdj@R-_uwRM5s{gLw(3uA`wbQwj9RPnsi<vtSPzj0zDs@rk1^nsnGU^b><
znU-Q=qti4iMWx1Y4E>aqa)P2F;j6pm>XV!$K&kG_=avndK9j^_>zqZplQf5JNSc$U
z5W*%_3BR%FBfaNWa*d6Li0}TQBH1pns&uvf?RT~d>f2DD&ZrC}TBo{Ujg!viC9+y$
zUE&4y$aWn(WLoM=px1CKgsCvL>5IcXG*jF!2wc(Zq+DN75sr7TNa6vcMorfv-=GTa
z8f+yn1+J7bwxe@K@Ywc>CHI>L%@=s_R%7`=9V}7#Fvp%X+et5}khw9TX3hRNZ@XS8
zwq3&fVzUujH~zp0>YZIWaT>{RK{8*%O9~~#8y7WP99+n^2g&1^1_{MyOhRYR(7WUi
zilisoP^|Pcp2)7qct^h|hlnV>A#wuJ>s+)C1lS{n%1e6Ft)|>S!rU6(Ar>3}f%7v)
znKF64QDG_&FPe<|R_ZlXWS|g{h}QrTxX`&N$qGEJV+0IfPy*aHLJ6>9C8_+Ub;d;|
zBO?Im20P$|Y^1KyPY-oI7k-^dk&b~`l7*un)D!>K3ljN+unvBS*i+bGeh2yg_8a;e
zv2c?oLPOJ<;&SL!zwLIWNHzjdc=LUsGLDV#aXgF?tA6}k|LDLGfF4LhX}EqyFnOz<
z`!4Mvt&?1Y3W^i)*~9wo#ikRSOY^uu!;!i=KcD9f<uQS{Z8~qA`Q{2NP5^4r37A$2
z{xQ{IXR30HonqdYHBBeXHR%L^<H|OtFIfzG5!3a*LQHt7Fn}gpPPyZHJbHt^vc?o~
z$N<`R0yPQ>0D9(nP(La_3UL!<!$KLw^>)WnUGbYaBY->r*0HK5J)`$H$0pTZC+i?)
zx}>M|v48L#hSADkad?K4*f+b^>!W|7TG>*pvP0L<b`X{AJzeDBCo)aQL$e3s@VimZ
zeyk73(4-9PG~H)6L&tY(-l&j?y#n+DCdlf#hDikNDFK`j|DvbsBktuR;(K7V;|c%}
z7pIo)(me7fQ$nCV+1VI$kj6L$kjCiI=KEZE5<<8(Ia&=B4}>3-`vt=2k)TXHg>=Dy
zLb6H_ZyfxEyc8fn6k8}SY?5qd+yP>xz!&34<3eIZv172;F<zo-*fv|w9b<Ab<<f9M
zE0RM8=jh;V<Rq$ef4(R-Fm0n_pRM-^fW#b&fUiV0VX`11>K@hi`pFOgT#4!VfPCaU
zbTkf9C59V>nf^q`fP`%m`*gWK)X;T;HN>iJJ9X3|@(EDsm+P9)uXORIm4s|06#y$3
zg@&;85^)CdZth>i3qm0{mrSgBd9glPE*UUkRMPl88~dI4I&{F)PYz^I#QjU=>9IRV
zLx7SPnS^buX6l7X0*i@NJwDLerHDBERG7HbJbDr*n4aoMCOM@rFp?vSXvQx6WwU<t
zF_Y{(hGL|1i4h@WtM5FM)5pYxL_qSWqj%|RmXV0!wX!5XR7C_=4CyfatT9oompc13
z7o|WTx&p-%a+L(n9rL<Qcj)pU)7di4BcW-LJAU4zi)GU_OfXOhbW(H<1gU~HcNNM>
z)O8faLZ0w}WBrEX#SU?WkyB%~>LZ+C4GiHQEhQ!71f6%yGX2D&Kit9Ppl(w$zR*+U
z7UG%|BuJ&XX0oB;lr;AY8Vi9OWj@bG#2PIzJd$uVvR>fE1y7U6LpgHc@+M{zV}Q~_
zo}J*!K{&vg<pB2WQNcO-+Ye1ovV-Ud!WbbzK}CL~CmjO?1qCJ~5by)LhYbtbYu<CF
z=7A+5e;QRAJj?!VrkYGN(hYlrfVzg(uKB@aK_CrV=n=ZIY^|QTulofoS{m5O3VJS{
zHnD2sT{>mDL8yb#V%V~2<B)f6cvk=V8sKrSO7U~d1z?t_;+E^4VB=v}Qz{GmMd+S+
zx`!}Gcj)K0flf~bwGkrPs?@>tq-xgbE*}~wJGY=HI^md{>l}U(li0c^^y_;~Fje}5
zvI%=*G;<Pms*%Sa3&-m(hZ_icKkS%PE8)Snuh16ZROuweP{#+5B?ut`T63j7Z<?tu
zH-z!B9M2qy{k`TP{r=6S*SW!RiLwXRf}~z}tFC?9Bnw&#B@tUQQQdK;p8l>GOEx~r
z5;``C&<X11b^1vs5-qRdaw+oi2hSbJ10|2F)IY8^)yT`;+?=R662$5>IHdF5F&Sy0
zN}>heex0B$9IeYG*eudbIgmbqIpTR1uR4s?UAEFJ%93KBmvU>!;U2d{?_19J5w(d7
zEpN2MdI-&Z?mha65^4b`Ajlo@K;pXDbB7MxZ|Vj%DhO8GJLA-Sx9CfDnMEL;aK0-S
ziW<Y#|C-C^Ym*F>CD?1F;I>TEJc8q_)<1vd^c-&kPHlq3=N~mzPv1!@mJx8h;-cwn
z7N+v^b^6uU$-=UW=B_FlOHNgEL3=%hQn1dTh#5z``g5E<qS!PvkT-Jb2rVzdAJ(<N
z7=2)enU2B3k)&C9I1sOTX_0<vDbvB#DsRLjiEq(Mb9JpuGnPP@EP7Rd4G7PzWTx+(
zXLQ-UreBz7P+xEZqTe=ftl2uImYVSP7ZMa09td$a2?%ZUe7$-;WzhBUm;k|Xc``u#
zeYbvrQ^MhNJivS*!o>*uKS5Q^(J@X$V0kbkI^c^o&wmj80`2JFhxC-2OfxcP3<J0M
zIQ9K>?RwmF%Xy%z$~>^c#l}WPaUZ9u#_7%z`2cXddG<mq_Ueqg^%@4sdCM|j9HM5z
zouYP9?iIT8Li70*oYi1a5n;4pz?0OAx9AfIs!TmYh=IX-qtGux+{(F?P5saqJ&P5k
zZh=RdFv+4dFMmp>u>2(Vfg5AHa8w68rN<Lvm{|$?nXvl!PKtvwPc2nW)LqAri)%$_
z_;AjDmAKboHmLS<shP-8E2rqw#X|<23%*<&2V-SOyIVhdBpy0q2$!o)`an$jBw?yQ
zS!pJ2C}#6;4zYGT>c<88YT4y5Wo$qPw1&i%pq4zN-x8M^1jAz9RzP=~q(;ruzY|`W
zG~{Z!g7<|-h34w~#b$G5`pS$;4#X{4-M&mu`k(WypC#l(puxosShY-Vm`b|1%m~~c
z)M^}};2Y2AB-x7u=dS@vB|93d{;PNB?LIRTnD<;bAXLfe1jDGtP1KJ~qE+0Z5lbt1
z4b>bU6ccLCI=$}`suKS*UdfSw%#3H%Jl%P+nR1wBFht-$8C5dsz~C4?f060wAiua?
zgw+DVYux*w-o)-@z=PPLri6r6xp<B~^oVJ}*>PNC!4Udlq8h2rGj$$;pJlW8P@@Kf
zP`hB)&_@eP8mFGG(Qb#3rBw2!3cM?(?UDKps0u4SfJO|VjaS>I>jSr#L^%o&ff~Q~
zxj}`|;eYyoo_ed9b)e4;XBs{;eStpo6kQXGvh!vc$J(p9&(+UCotYDab(mC+Eo=18
zEPXB;jk_3+F2kisRBQsU*XtL#65#rna>Fs8ut0PEl)e>W&d|{J6o$;c=lo2)Qy(of
zJ`ssccw0mHICn(XUaZ&49uf})q#*Xbps=6Pm*8W?Sh@9K4H!@?J={52A6aJl(g&L7
zEGO_AkMgh8$8#glNva1634<&`5PU@1vs44g!OvcpJqc)d>ofYaEv9ngSyqlMT0&bg
zXV@gpo1#08Hkm{G0JTD+*h&m$;w1eUvB^0#eXto+6|z?5;KVY5SC;5IWLwHhg95G<
zk2Cx`<JDQq^aOfElhP}R?k$&alIpcoKQ5!g&{v5yGFSnjAdCtsHE0N=c*bbG&bcOY
z30;omTXsN;>&<!Ot`0UCvcf<YkJWXuUx?*fVr~{V3bqj($SS!c<UR3nT=?oRfKnH*
zZk0YpcY)k9!*Xg;U<In>)F8sYIa!aqo8f?;LC6nDKzDX6E4Oiq?s6x?i3^hfBlmh?
z8N9P~nFL!WvSkSmPa*PPCRM+z(w7R!C6EsOqVNV#8=hz(?37yZg#K|8HJO9in1w4-
zyt;Rden4)0N`*`TUOM%t2Nvj$9x}Zh9NrG{9^ru*`hRd4O#A>ob)LOrI{?I4tABgO
zRFcU9hSDriRd9lyr8DHDqFNXC1%g`(M<LFB^PbTuvVS<k1o>&CeQ*hjQ3uT+CkEj#
zL_}pq2fidxJ-bYI`pWcZ5YQw1iP%0Y(RmN(E98<xFC!uu7obQajNr)mdh&aw1ptv8
zBzRv)3lGezH}BV}a?wFB5!m45ISLaO>zoIeAPLV6yw&hwJOii(JfUBF!`V@o{*cGw
z(3Jddq5e|3f}~ag(h`EjiO3wUPkodx0Z@d>fHKQ&jpI=`HSbA%0n0*jjzA@nh;&6P
z{#>ld3^sgtA<1kOQKSEIr``y+$xV`H7P!DrEro?IMt${=4jiD2kUyh$5&n&qR9w9t
zCWXXi!7b>oG8~9UExAjl7n#NHi?3LbvutpD1j}5j7s0&JwSgGap<+li@#^$N`Zb8M
z%#R}z!^QNTtLtY{N3+KWnEc5L^({O`AbbS64x!vgKI_Nn8ISR4_!{NjC;ot#Nw_@J
znmKyfNYnWgmdZRLBnu|v3j9y!KqXr4(FW04+*a_xY_VU%y`!H!=jrojnWEgJT+K4~
zJh+5?ceNhA+jKCah6uIri-6F)YTEzvbspeR72U%h?2Q)4-ObG=+3bSUKzdP7LMQ<e
z2qaWNT#}H4lnqIiCLjo6ub`l!Vg~`SfQY?|iVa0U?23wl<rNEx`u)ziyCI<eFV7<;
zbMMTZa_021!1ve9yiaP}Af;3Fs50=a;<W#Sl*%2&TZEucDx(Q|gxqLOxy5&pL)?)A
zrHlsG^8A&)AHgde(*zNespufJWT!3nUC;_KgaZOP>Ky+<M4D{V<`Lg+LR@(QenQHD
zF24Sl@5bl#&_)q9Aq<x!o2gsm>pn&IFqdjmjclIOewci_?~e<0di~-5Dw2rL7Y9&5
znPdbr8?W|th5B&Y1~$zR5ECy>vv7+qimS<*Mqnsz=2^Ht!aPj5&R4lecVaMEt>{DT
zoecBxCg1rSVHj7H;5Dp)`t-;$+phHuU5HZ{EHb5H1(3B+YWp;Q;ai?9-~t3!oUO{l
z9b98yaNl_JkbmCCq)Pmchvb=SemI7V$2CrhOz{@RZTgUZ-xu1Cn0%x;%owr{7yRLm
z#`^zX!(kb39`0}-?(Cu8{TDfXnwv?6`u`h>ta<-26e{1tpKl(DdJrv|HGyNf<3520
zqlk~ifBByp>z64v_mOP1hliR#)&<?Lv<y^@@9*_@FVoixLyefX@z}+{p9-R(hUVA)
z9@p!$5}~8A#}c)?p>3xtF4gAoXrZP+-K2xKZH_+ZpH!t!@-P}ou1~VKu#NBSrjVVs
z=hoDgH?i@~1gLRn%=`Yb#((w6Y|*Cxi)F-G#DJ+Vow(}ahA4~dPkB!CuJR=&Z9K2~
z2>|=o12V!jKR9|gF7H3D_<wLV;fUeVTJ$>N0U_l7=Wtx$!?Qbjx!En2d-Oc;t3KQ@
zd`RZ;ulyHJ)%6T)xz(91w)%(%2+GZ8Ku|TjSmdxJS<JrQ{3X}oXetRu$SH(N3UPdL
z7O?DMk_tWF$$xs64*XU~L~q@+s!}35#T&2iEZ>z;B-%M#yf7J?B2ttVFBBhJ(w{-?
zNs>e@Whou?z<B=`)A1yOKbwIQ7`hiIYuhOQ>coUCfEE!ocpL`FOv=}(HY`QLo*d-c
z_)((NP%H|7#qke@pBVd1;%zfQaUu*s7N-QuLsLPMppGYQ_IU-tquZ4z3x_wB+}!V8
z?^_1`lrETsmHiU~*Qv{W@6~H_|DYpQ;UtC_ynMOufb%-lI;i%5rXbCfuJD}<v4`G(
zpG)QhLpY^_(Yaq+7y4cmi3!Zz1(OeoE66<zwIsv7;YQze&QJwZ7s0iuF$9B^#<u-*
zo$ou*F$hnFfdaor>;OC=gZ)z9#%Yl!Xv>iBB(-(j^}cmAXs%J91}lZ{YXZqa^B#E1
zw{~7!%YEe-oPE`#^Fd-x2<@!)s!f(Sf}}Khx%&Gb`aAx=(vgtGQPYu#3jkJbEwP0|
zf#Ad+Px9aKF1`V{!r^UAtrQZ^rAS(QiFx;*bWFk)i1aWKnMA1p0|G%EVLBZ@pr_14
z>Q%8)OeNw0LS}hk#yXDl$L+`6QT)pY;ji+Js;V?*%S*nVS9`ZW+)!>d%qFT6Gjk0p
z@*FDTnG=Wkr}rgY3f?MG22KflW~vw7<&zWqMa#A5s7w&o2^9ZGdz!3%$3lPaSn}gY
z^gWW0nuj@AkwB7Lb+S$3k&bd4`MX{G8^)<C#DoAGiu%>2WvRo(BPsry-oUj&0!E}z
zmoQ>@R*>^N)nBoV2jXQ#f_O+2b-#eA_|E>})LN5m5GKElVqs+6m)wkZW&6{m3Y+Y9
zbqxXq9v6IsD{)DtzvE6FtA7wbp6~-Ec5hdI{#)7w556f<)XSOG@??M1b~<1{ZU}^n
zQHsCj&$0e|Nm`F+fMO{)Gg3Ru>E%uKf4ZH#0qN*!kW09JR1x9bPG9?;Z%k}ixFChf
z2uJ|={=x&!Qpgx9iAdxyB_wOeWPc$*AW8`FNOJNgVFN}V_Gxc_?62OV6Z4Cs>QbNo
zvUB--mgs*Ww5BHL>(YuONN~XFYlwist=ssif6=X{AJGbQIjxemff%g_NkGpCJoWg<
zx9?tHNFtco)q1>QNav7ZrWE-yZ{o1A$suk__WW$8n!%{Y{k_ixrQz&P1dVviL|mjO
zS!hZ+cDnOa^8Jun9F_#2!X2M<>+zj>9_zS*so!FA!Z=jL7?tScDoFeo<=KQlbGAI(
zP(g>(&0V;QbWSWA7czp~gk{Dv4Wv={i~o^+VgEAq{%4LyJd$nH@&oW}ICY|fH*xX)
z2g(#54<m`NcA!h9+55Nu-XsnYyh&^ku!_M)lkV>>^8ZX_I7XTfm|0Z@a8V~)X#89K
z{GYza9il)QC<!xZxY`?O>A~t*iT-V)v>X20P8m3<(}7>E&wt8Dpn__6M|6{%r`aaT
z@86rFdrQu$%CNs2^?*~%W5;wlw~sFNh$n(=T6OBtmnVlw4AMUYAWUM|x#A$HA`ztd
zzGRChWpZ)<L~+YTWUj(zPw<oZIM(;x4#yQcfL1Zm{J*xo)EBh5sDWhT_3C_Wwewy2
zoHiDSO$&GI-;VW7-l{ER(=LN}NOqkM{zxp?<qRqL*zk@Kukbg1Nc`#5@Q8@=a82gG
zcZvI)k4Qxg1t-%!$9KHrjXoei-7BZ>;{PRjw`pIDY2|qB$!Fdl>-+I$=QFqtOQv}5
zaF{W0DEY6<ni8MqPUmTZFsNo>s_(@Iv|$+4e2v*v<1-EVH(WHvfl!k%wex%<>zz*J
z)bys;n-hI&W`|qmuoh#^o8fzGg40iOiyL$G3BHDFwIMGsjhyr-B21r7zM#`>7;{Ax
z#f+XQ_N}<h8H&rGuXXR|yQx&0ipiYorQ98TKi{AD*j-K|61%v|4{!8s4>&z>53EuT
zYL4#WQs1p%r~2^by*$@fdcMAxD;X(e+vBo)c}`xVum}HDza);@?z~eYzW2OyYpn02
zFSThvRV@{vf-@?Vi<y6-Z{LsFPQG8^b4|Al->ePV(x05VI7gcwqkKEVs|pg5B{2dk
zT)q+O^(E>X1<<!14j*_g(Ko?Kyi|hK3_g`*oSfiWvsPcvRW-S|<1?wha(w6A6fYTl
za>)RMl@~N|!YKdBVbmCoBst5#c`uygjQ7x|5_<w)n{38C)#-+=`2R*;l)%c!i{h;y
zhG)^RQR+Fx{QY33F+*F7D$YWY)M=3cGP$`&w+T9M+IBIwfyD7QmRD9W1M&~TJ1$5(
zsVf+a+z~*RBncyOl=kxF{u%Y$TR594qP~QkBY+sSd)xW`Lksjl%MK}~Y`On=rvu7^
z`kL7l%$qKfp!x3`{0Y}+m!lpLoVVOx=sY_78SGb-7+>I@d$IO`Cdi>OmQbgL3jf<@
z9W^gv&TwO&@89dptHnqXguZ!>fAai)^*{|B?t!WYZWwk)vg4RmPx!a(Kk98Y_5b&}
zQDpwdMrDho>CpN9A1~FBMvKFiEI<OvM_2k^U82qXXS3gYQ#KZYamM-n$zzZDGBqPo
z!}C0%xCy0!z`A95{*hAkq-F70q3z3q{_aOsL!w+LeEQ&8f71FR-cL=E`iiaV{GU@L
zNr)-gj<ry%6rD*m1Ml}IjnD^#M&MXUT_BEg(nSAxFF{*c`mf?UXzVlnOIPyt5$zED
zHD~zGq8&D?xt0v`hp;B*`R_Y={#YGNb<qEb%m>=gqUb0Yz|G)W{V`H>l<3=<#yL&Y
zjZH~T%H)fut@ZC&t}`86Mjkz}08>f`+u$qy=|hfA+m=kyx=5nAJmkcDT<m{#;y!|n
z-a+`$h$;&MAj<S<!xQfs87prU22qKi!81F{6Zeddl}Ls#u|tBu&xm08>pIo`pLvXV
zBP;yIV(#H+95e`!Fa=|%wFI49)TLAVp2$$y=-wo90Nw?l&m<HQ2I<2tot8Ir-U2np
zn6IQ)N?^hon9iotcXJa(pcyE!<k;ad&4m~F;+Cn9gG2%b*Jg?vU*uc6%u_fF<928k
z`aLsZ9GaDP$4Ls8QU(|@<Fh(K(QqI#*RS#={uw99@jsYWy}x4i&m@4vh;8;>=lf_K
z`SnR046+C`!iNCU;x4k4*J&mXm3Rgb(I=Kg>o(s{ziG|x!Vnqh#4`xB0UurXhVQ;U
z9AnGcv1oxz;SB$JYR3YI!{EoU?Ndh>hlN$^{N*V$WBMV{0Qeh2Ql?avA|P^}e`l-s
z!hESuzi6#Lv30B)HQ6X?8FErcziH;lR}!0!O>krAWA7vhSIcIJv_YpSIi3(qs7aF?
zj<?wbv;y-`9tn$}`L(Wz+wM=?1=J3x!o6R@1wf%GQtPWSH}Ugp5_hq0;|UWZ%mg_i
zMYMrQ2fS^5^&a^Robt#byCw1YHxrI}kjc?q{8-{AdlGiB6}e^D1sN#=&1SNReJruR
z@92?4Id|yk#BX;c>;km<2VgA-IzR8k#6A_?U8r;O56wOV;d&=GaqbZMlE<c^iWNbr
zmz<SY(32*DgDX+oP*#RmJq`f$bm@S^LANCA!h=BUILKY<)ppFv#KoT<(JFEJBUUA5
z|CO){-fnyVnFsy^g<ZBf5P1`?xIJMPGA8SQ(*RgmMXf(E_?~x{Fr@);1!I9&4<!Tm
z=kbXPdnC%FbEmL{K}t(Vlm@EMoWxsacz5CEEtwH1{w<aY3}UwwCtfllaTm;cE`W%j
zijx|%Z@MaR*L?4P)N}`U57%@j-VY6<6PcY&<SC_6ujo`Mob6#Ql>>y@v^(g(AwBU9
zu=yZ}F?JYW+#lUJWwob*$q`~D4#6|X$ROq(_Rq9FCT^jx%h}u<bdlIW8zeyB*jb(C
zJd_}j<`@rI2C-CC;=zsEJ?5{^5*M!55OWIr0G~J*khoFZ0`wKG|7o8lF1wRg5Gu;W
z0RWv0+d!cL6B_O-E+QO=XbGwNfdoQ-o*^mVW_92NYGjZlWcL1sCiN>4KrYzoyZYt$
z8h8%uk0{*%apAqiD?NRLFY8fH4QF4VGCtdiyE?j_<kNk9Pmhzhmt4xfgHQ%AmxU|+
zzb&>U86lFEdLIZP&Y9w0GSPDfYaNJdY@oUtf0c6dD3Uwj(i=K$?1hr!aOymi4p^zK
z@;ycBJZ!eaF%aGZnn=NwGRu6>*Z<QFg#8w$LfCn;?7*4gH-x4u3AMBoBOsfRnBi;I
z`IbUq|2xtQt6X*@LoXK&zcsx!WRejIIrL%wh$7@eFij9$1&kl}f=8ILZ`kCYKUyEP
z?8AeXHu)_=jp##30H`@(c(4>JpYR9MwH0SrDcd9*6!A;|`$-S^-$XJz`s<nDuP;LL
zGo)7XVTcO8Ac+W=40H8q{;^e_MY638wT{DMK~hc{YkZ`=zhoLuP|t(k#56=7k{)It
zN%^-{^F%Ub1k0M#f1(k6nv5yOk#efPsaAXD%dVq}k_XVdCr<IdAwx=KYp$=32v3-8
zvfKJ6PSPHO#aR|yT0po7ijj(w{Vz_|2N=;rL53%)%!1YaagzT@nT5DWlCF;T;ad-#
z;=ePXUl<-FeNyu`U_6Jn@jrR4NAsqV7g0r*oteIgU&o7|&ZsY&=Ad_xjUiDlJcoCN
z|AKCD@@N84z16rp$^&4h>r8)Qu|9x}rq+OVXl|G4Cq=}EHU&vkN={5szhHkC&BBaM
zaidRcw;BL9=Dn?+TP|%&Nf4~DB1w`41kqk>O_x`A=In3Vnzz(fz&lu+(E>GIWLAU{
zZWLrY-7H*T&0N|3@LL0L92ihFJp@`8Z-*zZvL>(6#~6E?5Uhw#)2KOcL@i3oD!#`!
znI?U?6?JWUQZSnlrGic|n23+Y$y+>I2ey;uJbbpKDzDhF!QxEtqo+L8gWC0C#XQ5w
zM1ry3ywUpMD%!-6gqz<$Q3v9xCtELG-0n3LthuFuX`v<&I<qf}oAg}k*MO12a<s*)
zhp6X2ua2Aa0gWkQnr61SB0+w2W86F2^i9@QAyI^8!qssnf7tppfnu^21@N^o22aK-
zzTq{=!A|^2(`N{zPb`S*`Fra%pclsT!g;Dtc5BQlkF;IG@#Hp?PY+eq^NqE?y1%`G
zX|vagxRIVrdaNsNtuAlG3~7XM-)8-FV|c-IL?ksPZI4y9OxwiQqTE|Vb_`D1jNfYQ
zxwBm_aNrO!e#(}kU8<+Umqpg2cehKBT_X)hIWZeZc&%e%Pw)7-Y=#Viv`;y9Dz}46
zE4x?|_e6az=r>Rr3N)10PWc%hQ3=FdbdmMomr<W{X~@=sa?M;&Y|Zs{_?%TZ+b70H
z#lA308oJ9te6o`sf@B+lvx73N0<4Ht;zX&r!U!16wY(qlj_R+AM0X8>CI?YB>$oqp
znfwQU7hP+-MbJy=H~dDjnb*x){VOlvo`V&WQ^LAV^P>x`oE+vvibHhm@V>cJ#S<$o
zb+jM{-K?vQ<Eea%ir;KISef?YPq!w1r-M;sn4xs``<GaoQ}yM6q^!jp<mI{pHc}KP
z*=+4$t^R?H!W*%QK#{T*6T}e63*Ea}&p8V#LfCh{B`iZ}S8Kped@IKc4L0ue4#D{i
zC<l0wtcOq5nG5g`PFlmauwv1rPj_ov2OdE+7z%H9=A3M<8({s?u7ji-E)JGLXw^YO
z{MYw2dX@}nCp?8hS6QfDq;u&*+<e=(Z9JpX7;KV+1`xLZ)j55NCy>)ld}E7ALBuM7
z2RH+6#>_FEfn#_g85uxcY(GDI<fUZK30<`v9|@-w`R&?d&n{^d7?B$V!$}wJui&9^
zz2ZLT)J_l;URj_NU>eQ<EXC7wv&kP9+lHA@Z){4S0)#?1v818ByOU@Bp|;Y_K}+y0
zUM<4NeAUXc;M=xGObmR7A9<2z<>@+w{;=o*0Z=P0`~6>gX0)X}1D1tJ0fEd~K9OPO
zwT_$hQ(MtUl*oOjEQ)v!9~j^XZUt3JvQr=o>k_`;vW{mG<DO%turZ1$MbR&aiWmWY
z(#&Zwp3E~@ChQ2#;*viV6szBvQSG_n2d4b5DWpfH@Sl5=5!su69Zz!e@t`gRv#_IZ
zIO4qlF0DP&Q{VHy7MvFTT7rb)k`fH`@#iP5%O`bA0Pmu#stBR%KIkgh(Xlo2$s@B4
z5>OBe$P83Z6tBWP3h-OMu;UBf_N|c?!eoa8dgZcxI1VP8R=qk7s)7(e;OIoGn7GQ(
zFU7nzx8o(<dBSFkd7Ts-D44T>uh+U-k6#%j4~i5k;a1BDQMAuI-_3ewAx{tqS{^C7
zZt5QQuzt8Osx`<SD<Z{DASGh=nLgcW{I#7ng9k%2f|U=|SrdNO#=)Tg*_(uC<_W7#
zZ?G0SPXul1>$vIHThIK~P9{VVs0t`fZN0cBA<C@oY+ZYmPIVw`26WUrP_!*z9CjxK
z<&Eju#d`g6eIqYW7sC21Js}of##-lGpzR>SFg_z`IZ^Od?>n@e&^w~?6*^%J&9@%w
zo(GQZ0F#~5#TtC;(d|riv)3wKsqI>ivrMYGAo)cnSvOx3)tWDjZmbLigk-F;JLI3r
z0mAK81;u=d_X*BC9B7aJ9mf0gh#cI;^f?GtRocsX?Ghb4KSVx%Neo<zJcStBIoY~z
zu|9z!fm`8`@u24T7xaz(?SuBMl>=|&D+F?J8B6;{AA6~OAs4TRseC?IH%E+FUi4`s
z3NvQun&=h7n6OG1c&>?Mj!QYC#`+{tn{%n+E4zg1J=OHO&N{c7Gclk59{|_}oR@Jm
z{w{jnDf%E6{WWdC=BksdEk@fU831>biim>JuSv32l+#YGZE^jXY0PUMb^Q4Pg>iC#
z-_W7@Yk&uM$2ApxhM)$>?e^zg-IwV4h>E5c3*di_tIgb5(b;pHeN<;9p*PrP%w0*=
z7H6|c0#hgguV7Amc2DcXOLbo4`rsoDff5nqw-jsnMLhY}1%O-T0))@R;oAxWtRM6(
zZe0_4T7xdre$KNzv9in8@JBeVhjphs1G)oK#V!pSog&$k-tA_+zeFF53QP?^b`kN^
z-CiE!BGJQ2l)2!A=$zRcUO<GBr#Z&e%^L44ZAfDks&MJ7h6o;W9B=lpu3>CsPQX91
zc#NI!0cX1E*Xmvs1sa7@sPT>x%#g+DLK@dQm!?pR_cXGJK=k#CbRGj?Ys8)^_wJl7
zR@=*?g!W-0QCg=UR0*>SHI<|eca&MP>?kF5P-W~H@Dm)rd9%>-SU<h(LVt6~=0$;c
z=HZ2HgW)5=8fBRJTBFPKo6b9BP!@S*u&USaQX@1k!#cY>sxv?|LPZxZ?pLTR{>+Xa
zaG-T(c1>(RbKssj#>6-6qXp-A76tIb#0`vp`H$9pL`_)(>8zFYvy@b`Y;1h#o9+7G
z8vt0qN>GZ!n0*cLtJc8Q%K)V{dyOf1)>E9)b~T?y0{9tzbmx~Idr(_gpD;BR4iG9O
zIY!e@jJvd=%_<%l<0^|g(7jD-*b9Y{3UDLwT1d~Ho2|W}sI!FcK$|QeZ|?rhzA~?E
zYe?n5GT6g1J>aJDSrP{fJNZZSy4&>-@hMQ=nGgaB@3^d-v!kfpMNJZs07OlnZl3?p
zvuHybvBJq_h8Z4n;1kcDP0g*sBB2nKJ-Fyk&lPtZ{XmxT@j=hocQ!w8U{)L<`NVMt
zJ;&VHM!5cBQr6T%+Ss?}ua0}^!`8By#vB)nzhu20dW1=XreOWw7Jc?Bzz9So*a-LO
z5LHnqbm;B5!>=7+Z4^2<3iyQ_)9Rz>O>al_;j07d0D0(v7pEFW1XAfg!+bL&{)so*
z^<gp2b(DlW?6xtvL*nzV;(WQ^!O}4I&P;Qf;uo#bW*9lB3;5YAZH&MA)^>ehK86Cm
zL2oYJo#L`>ey@-3w}l5-89&2ahL*{r;%km?uPx-utE`$r_lF0>Ll^sSe$aJLB?KGU
z<KA)c6PGYCOzqUU2$0uYvWid@nHqCL;<s+oN6wtlCBy7A%Dq8dLptdE$a78+;d4N+
z7P<ibkso6Xj{kHkD<BCgIYWWz+48yKlK7rqF$w47i4?~kBYPQUB*J77AW1b3%#H7T
zKLf~on?n2fXf{V)HaY&d=aF`rMP89(Fe8rfNADV~?PR~7LViPI9&kl(9<EIz8VUZV
z<(5Iw?-qt%A_|h0#fLh^rPCt*Ji?Mnzs?h)&mM=Mh2}_jNCb2dBh03!qdV5p%$J2x
zf>(gSBj;Cj^y4%$q1?JsJnYTp4$*g~@gAz_;OxqPO30>gQOC}+^sSMw1QPaP9{8eT
zMIUV{BEU#^Vh-u2?C2zCh6SkBVCpKR^@bkNR~754cmWGS7OC;i<mjm*o%yg_1}vW)
z-Fhx>;Vl6AQhv#pKvDExCA@|CfvY9~ORVsjcdW_x=y-*A9|@aku8NBu$!ru3Ak^~K
zgEvI?tkNb3TMbUs;Hmnh(N~OjK8n#YG?huydFJBiiGg;4ZXHM&EK!V-hNr=c1Mv)m
z4cuMf2Wzd=tSDz=!3Ac+8?so@D9D8I-zydJg~wmAX@9kK_XCh$d}%AIyknqHB7d13
zi(OZ4Y%kfrO9J)fa|AhqCDTmf32`HD01>D-?<F%LI1tw?{vOgQ?(U^vI44(@$h)v(
zk~g4jmUV{1Jr1NSiXi;{Qo9P{0F|H3J0q;*{d(C4BJ&eNBb_qL^*Po(^P)ZgaS`Dq
z8f|ln75A1qY7I=z5Kc?_oA<x8Pa3Ly!}8%kMSYOoZ1Z_{>-$R}QdD}ctCGtG+XYLV
zV*0l69E^dPK%E@czT~oTd>11uR;onnQD6I6z*KId7qfpu0GFh<zfT}npf)ymM^#Oq
zE{)IaP5AkB8VT5|A%kvXU^Xm?soJ0Lh_uq5Fv`kWlFk{^{_BK`U-z{JUNmbGWOq!J
z#H^>Iqa3!z^~!yqbF64Uzt{~pl!k2A@ne}|3UY>ATDjA>sxbS9ACB(mu#E^ls$n5g
zm*fzaMQ`|uQJmX8G*CriWzsvro4tQDPfAt+*fWPO<pcfIhfXQWvOl8#fwFMH#LXU^
zq$uLf8R#lJt%DqEi>YY6#IbFyhw`IV^G%E>J3Qx?wC${`ko&~~m42QT72ofp)*|yD
z4Kxr@D9K9Wes!Jq1A-7(RAf{Rvh;1+b8K`1XDbMfQbvsdI7#rF7tI7c<_(DbG_GTU
z2q281(p1;KZU2gn31S(?--rkav9Ue<zWvYgXpy-_fr*jRxLiZOcbztoz7jG4yCLyW
z##`?${gKYNJ_bpRDn59m+u=i1C)zN@@}NKOPIa^f3y-xw`kY4mw}gLJY0B)mCFYYC
zbl4$vl#Hm8sC^>3pnUFyU056rYO*-i0KXk%OVA1tiHngMcel4<X1>ETF*)fp!+q0p
z#L9ElhcVrr|Mx?4`|g-Op3(Lr=Ik9n@EOU5kv7r^y-YT)y)g+-vX=mUeW*(E$eLr^
z?x<?!1p6zeP+A42hLubb!DLjqt{>7t9u-6AU<Du&@EZ>Ha@V*j3p>bAq-ZLysbm58
z8qn*8ZtlASy7=Y?=H_nhlS}!CRAsIrH%S%m8}mtD*UW1e0>BjfETM9F$asvDjVA(j
z?GIh%lMb@sqp`mVX=~)nmHz@kkOB;ySd{(7FS`9D<+$|-0s;AnyktH|kGXeYbOO7^
z#UgaH37kVwBqlr~%AU7R4-y`NqPQqo2b8Of4Z8g^=9@$MYzUx4sb^vmuxIZ+&9=5^
zbCHCo853pf$No@g8pzRB1tikcOzz|U@ps*@+?uIWA`QZP5)j)!z>CN|C-rrG_5+Wz
zfGnI|MB-D~BLgFY=`_y$(T}<r<d!d`NJ=0ij-hh^@a?YmKhh_ou_JS#_PcT((Z6#W
z@J=Bh)BOChD}`4WSq>4ik{R}ut3S6Q@~v=TA(Q`?YtPx*JcPh-yiSc-_dnOGUuxgc
z4IxS5X*!<i{{AOzDZ(2j41l=)v4lk#?xBg=p8_<Eay=IvbUj(1Em*Uwl4`-Hh@>#1
z$!7Q|?#;uTYfxW>HWN=fNj156rF;A?hNqqa09Qwf2?0E`yvy9zKf$^H&L)7fNdS=^
z3^e;1_XA%$Pn?0w!Ikc+o!Y`4gr*6?|Et>FZmE9F0V23RB?NDV-1iEAv+E&z?cf^t
z)&+&`<9g}Kjv6<Y1nGof2|85`pYhz_jy*<S(6dsF2sq?&_uI*gC8(5}AOUimBqx9R
zD=}}qqQEvpvMi#FCn-|08CzoK$5;*wDz69754Wk!AP9puaf5+bV?I~-V-Af1oYKh0
ziX*a2#F6^sUP;0Q47SE~S-vhgFHjHvp}4QqopGFVpK%T2*t7e%C$4m+9U#sN{hKl8
zpW(iGH3*FW&A=4cTO=mPtjI8sbiIgwFNw){M&IB<1bD-kF4JP(9i|tH1j=w7G9$&m
zf-|lzjmh{{-<NGb?*u{D3ou|=OzBO|8DJtHNHTnDN02^H@IwYfE&mkvA9EZK;wiZ^
zm1$-0`cNt04U0lF+1gg_E%O;Do4T{yLss$NWv=2I6d5=yy684xUox@;uLb{(Isa$9
zo<}@1%l?j8^P{$-*6<QgBn;2M)^`4W-88XdgeO_<<wDdE>xLdX2dislt$U2EFBOJJ
ztZhu!>F&EaaY8V{SUxB^BrYMwb<p*|Te@HeMaqhxLfHRhlf$?dXJ+>!=XMk@5ISBf
zkL2|TD-XAoDJWo1H~Zqn3PgBAlO2TdAMa=9&C(`uHNa6?=!v`z^?fhSKK?d6qT=8b
zE-D+vKK*`GOzs6t9KAfGkAtbvsUW~W1J}G@_X8AoD9ncJA92xKxVPT7iyqbXAy{z$
z%ZNJ4jCjU=k`v|jFm*8<ur#EYO1GywtvGdtKtWU)-{Wrjruj|_VL=(e!MwTK-TNtR
zN3Yj_K}2u0ng5Qv^SA$MCLJYP)Z-oZx!>_DLUj~`yn0z0s=!yjR=8%IsKAGygsw_d
zd+BPkh<(vLXsT|ATvvfD@rNA!u=~Nm+FDXxHA|=rLfo}656{syz1?F-PJm;Asd>U(
z7t%u)`YcL#j2fsqem>Kk^qih@q}?nz(|zBw+N3xV;HG3xvU%bx_wP@(Y&Q4yb1!yU
zMscEHM&N(B?)?wzYXS!)RVeHX<*M9QuhT}X-=al>H_+Wac9472W>$=6f}$yc?8U$_
ze7JjRB8za4(cl2~UAW9tT<VgI`#N`@e8neWd^Y+OYui-a)m)0n&nX9@M|5#jA5w&Z
zvWFZL5iVu!M0eImod+lg(#E}&qkMmq`;y_Dd5Rehgu}xJ5Qj-;#-k^4-KVwJyHONu
zD21;mRY%jz0q)JG>2^{(Z;IgPltJ#|*7{<LG0dTU?!j$!A>s9z)&=g}UTqnQFj7Z#
z0I%X{wVrv0xob{m5E9G~ghWJzc_7DqcIPlk5f%};snsrP_qcwU;Q%j%0J)hgN5s@F
zgWPWlh{1ECdJA7FQ|WhKyGL6^Kw}i10B(m|8L%_Fn_Dm3f=COP>QL@o`MaynHTq-}
ztdYXi>fc?rU#U$;k`?Z|B;M`V%KgJw4iYI9@<tj(WBPq(H%yNbqL+(a2?kg6gXZ>0
z?rUFToE(@yC}bFFcE`pH*vo-o5K&GTS*@IScCjCv`EktH=a{=NSdF5-<BN(EfU8dX
ztsmyLcs2_C9+|Gcvc|5YH5EMu9vco)0*hln$RLSWnt5-A{mf3?W|U9xGJ@|gy#eG`
zO?6LvQvqi<77x%$&L!?oT5-?_m(VUJcY?{-=U%W)S2h%~(*!MO!cfJMFPY~a@G6S~
z8$ykAz28;XZM*5W^gf2U6>LkOxp9BFHuuv#bym$4oWf3#5&Lgf+?o2IKWP<%GjT%&
zsPo(pri9-Xb@m8K6gp?~_AvKtg0n=>3Zs2vDto(YOB`5_G{Q8aZ;*l+GFe}(yD&O@
zQw6kyJaZy2Ca7CYk45g$nflZ@?_$_g$}6AZPC=^RFow(!_KfWGTvzV_YvgJ+T#^(`
zp(YxEm?9J8o#RS+Tu%p-Tn1wthNSnM`>Lu#us&YWc)(>tC3>a1j=h@QNBV_XX8VN8
z7jr6GGT>2Hs~U(T)<s2W0tb1>ui$w?O7L;oXAe#0py(SmM#~!`B(DV#%3|v5y~B0)
zBt2WK$yH*D%@Gaak}usC|EUWNH=EZ!buV{Xh9bAuD-~F@-@T)Q9^<HTO#Gl=nIfa3
z+BWrHySfK;|Ir$7TR5z!H(gg}X%l1w<fzBGptt)QpEfqD=T7^=RW{l=r9cC?Kvsog
zK?Bra=M?w6J9MuhccHqeZ2zBotoBQFM=3pzMTPle4|~Y^=L{O5W9YF27SUIW(P8;P
z*YWKbASH4SxT%5CKs_3$gRVI{^+{0xMKhcsR#9&8{DZFU?=c%BG!BxnIK>55xlRwC
zBGj{nGikvtxqq-uy+il3fD8m;ZZT%h-R^@Obd|^}0RdCaQh@qn*B?3Beguc$9T%7(
zfncW3@2=yT^y87!4;zlm?>D)AIH+GK!S&qX!_BUX-0RzL;DYHKU<toYE=@%JV~gx9
zr&t1$LTVhy>s{yCc`7q#fl5eMCJOH@pIdLP1-eL~2l9fS4RZ-{9;4u7MP0ROUd*{G
z00Hd(?6I7(<Y~fM{Ih!>$dygY6`=*D7b%bYD)7i(xZ-Z%WaI!!!LaoK<N?I~UtOJd
zvC#jTIpZxJV{dQ8%!%nE>odhbWfH|4t*RKu|Ia$MNcV!fPH7{#ROk!DTxI57=I-xT
zssyvk-s5p!beFsGRBeLt)}v_=r7YR`_)h0b-Im-K@H13M4B50Z>)U6!7bdYz@#ASB
z8#jYH>_7P7mxcDBV=O_8@SpVvd(09eoRqX_2ryO_@zxpU;+`?@{1qiGB4Yx$tgwqu
zw~yJ`RZn@S>;?inwqK-T`EtoKu9PoW8)G6P3Oi_mn_}9y6ynEJ1yD+(&JviPy4$iJ
z(p``_4u<!_UI6A2*{uFT_Yi?2E#^`$8;){fag9P=o-q9Em_u6jbakKa;5b3<VUbN#
zHP>J2-c_kXNG4J)LAz_+>l?M<NKB1a6?nX3mAkiG8!^6PgB0;hZccfH`^WeBEM`4n
z5cv-yq4=~dea-&LV&~EHk~@c;7pgVojF`J0i4soQ`Gi_jK>9XnS7{xL(S{V7AUr96
zoNP99v0rV^0gzr>I8R00<RfSJ`D5*udBOoYA_$?OBrp-hr1@Zl?KM1-^T5&w5Q{qo
z)d27}Jj3mKP|=8dAMHQ?pmgA=h-g>ky93YaQ-YvSql!+TD9!!b8y#eB8holdh5rO&
zy*0}2=hnI9){tvctnEyVjqr}MKl15=qN*m`jzDwQ7u%n9(Ix;|%n;@0*uVRaT9|ol
zoPBBsr=xH%Y8o4a*NBdrZG2<x!Z;p_ztCZr9UK&u55CGU?8KzkxNrJ7e1`vi$NXO7
zZhQD~*w&x|C2X)r21A4H$G*}2@N#5|lid?JUbTXw{O(hJ(uW1y1qZygzvvzoqpWy;
zOeBopnj3@8TV~0T34h0GUv1~!daLsMMZsxcTw~r{7PI>neXB5p2R8v+BK%aOyN^TA
zqVE_kGO<SJ-cVJ_wYjy)T@DWqnh{Y**h8@>0tZp<elP0Kd~O;B1wQvnPE23q01%y6
zkR(<J2}8)>Z#gkLDtREGIjl_HJ^mZ}uS}gt%S&cHTkO8EUPV5*G?+=@YmCVnZ1=v#
zdD+n_3f6*WZes3dT<<RaQs+K2h?0!A*X(n*%K*oS<15PXFcQO7ATl@7BYRVY-hbK&
z?p@nhfh0>82@RrGE9O90)c-wX|1c#yU*dh4vN4`Z?T!uFHbm?!{pQ*0F4eVSt7riK
z%9sD>74!Q{ZEW5E^J#X>-f7GRy_{&{j5+NE`>%b@&VgWwUuKU`?>v$jQ+U448cq#3
zW2)4c;a5Sv)7!YeWUd?#eqoM?yS~cZ^?n^DSG?U+pI@^$=B+#VK8DXwUDX`c%AH2q
zAh{NvXXD*%JM%Cc&dp^9x7EtUU9}?icvvjNTRhFVI;A08NzDA$?M+j3e+sGQ$c#km
z!Ccx+v`5Wnq9}y1vo~NgnsC6i1yo0igq*U(Yd&-J8K*!4l9&n$OJ$aWt}Y+bgc2X_
z8$;7YcDl`_5_YUXR6nA8TjTm<yE6~*IMksobH#pjyAB2BXd(KWc?VqEcj%TBQ)SQL
z<b=uyZ9IN~`}$4Jc0mRRBniU)sM_tg58VT^9bJLQ0<yOs4Yt4dLDvHSHA{1s{pR|x
zg71<TUl}Z6!qEl`M*eMg%x&+{A*{^`)`_+ch<+{R`!{qPH6n9WxW=%(B8!qfj%juM
z&9zP#+>|gDM*iXZuXk|&^*Z~Ek1vEmWiVXgG+b-X{+J)ywU>=8mcUW;gM#N;fA3oA
zC?labOpY5uL@y`Y{wG)YJjQp_nWEK)^U|-2+`H^gSHiV=wQ{H8ELSF^=lXm*3jHiI
z;toi<IdM)m*JiqZ_ULtMLD$WI#qOJX==vba;@b!=GUkMn+<)}cZx)F%TCmPv$GS7G
zWA_pLumePd%4Grjk4_x8$iXv|kIf>E3<UF|YfU!DpL&Y;w@JDxbLdI;YS?j_RIG`p
zgD&q9bK6%+!H1HH7;}u!D>LZ0m=Yo4=slEUH?2xsD!1Xqjc!k<O`&)J$Pv|_;_8cL
zTx1E-d-6c4O2Qp}n&`^<9%4fbfY36E46DA#JX>u)DFQO#&>%lWIsmJXHS@+NF+C2o
zmo5&98fM#{x%5>|)N6O$++IlVP*I!8Hg)I}vvOyYEGe9fSTA`05PC$pf!)4$7oI?G
z0`$WqhH^9K#T<O3Ly(W>SHbpGq9i70m6#(zayW-4B~x3_+*q90=9rWqvax6^YKe%M
zDFlVk-Xy#b)6D#Dy-9B;2hqmlHcI&e!ZU~+lWY*_?R;hDrpS{Ld|c(=lhbpONTUyj
z^lReUACiN>T1lWfAi+^^TuJIbnX=UT{`THM)>g>3<`8^?mOeQN^LCnfd9?SR#l3?F
z!NYJ{XbgxiQ+5*OcG9A6@Xqd%93<lxY4$6@E{}cd{pU^^u-ssPK)|K0B)ou3I@K)M
z>s`5x@23GPx^z~I`?UmG69Tcp`{DprM34`W0TrwlwhQmdH2TswceA(E`rbjf!V-pM
zE3%W*dBUpRzQen}wzrI$PZtz7(k~;0e$>%46<fW34rN%Vd}t0yg;TSV@aHC%cF)9R
zl}wbF2ykizTP&V}NmA*<Ty#akt;e%qDS5%s$Xs|RJC9HK$uknp{9mugJn=Xa7f_<h
zaZ!;<f+uZY7bQ<VXb5tRMv=lUbTkK_@zzA?2T5I9NidHNnw~^%m^Aa~+=Tc)dIdQ?
z*%@Mx%adg1$S=V05VUjS4)2!p=$s*CSm1#Xqe*1Mz$6vA<9_c4OIUx784vB3Q8{mN
zY^RuCViI4zoBd{uv@2R9BPzYvjqfh>_Q+?d#4eOiAyJ_Mi9`Sn`!#XKcgaC4rNcPA
z;52MLIh?k932(k<V;N5q)e=A_A`Za@JjA~<yKUm83!IY&|JKS;h-Qd~xJ;Gq^S<^5
zgAxizCtW)!z<9=IK3VMbH!_nPGo+D36xBpMU_xh0>6u|(`NVtsiwrB)^=Zlu1F|GU
zz~yj{_n%)BA_}W214P4O_jL{_!<63P{V>RwpyW!ilygQLJPS`V%eH#6p4aUfUR8zM
zo1;6z8N797;sp<e7chm4$}$b|DbWi&dfi^{<gI`a>Ao66(?l&qQW2S9mU;67@8YNQ
zDh}sXu`A^0ZsaOV^7t}u;3AS)L8?K@{Z@!3wFvN#Vt(7?J@s|w53qpobWezgOv1Y;
z#XPt=am2Se=Ack@Xtn^Enfywky)#*FKshO9aOq*eL}xO;OcS%*YbNy$;<xJH3ppG8
zBr!YkJpgdT|GdX=1}tU}D<H~`?wJB9Kts|r?+a6bc+N*49&QxnmaLC??)k?1_{+&N
zffPY|)5^uIV}DxW%;$RD$fzY8cBOZe+(^;u;B?i=v*X9^H?k}+0CXZyiDH7mcr>NV
zb4L3f?XY0N2v^sXE7M8d){)ly`Ki)8m@0~OGl`|aCyVQ3R$8z4*bpM^$dE&gUsHEs
z!fiM9lna(inU>5fK|_Ghx);3t4)(rhAf$-^6+!bRS!yQUyF2<=Z>F@1zMa`uF(0b_
zA%vTAK8)_*%e;!g->WP8wSf{LAU1Q~2Hz9odtQYyU<6TTC`YeZ>RbOqx2wQA68|Z=
z4vs(5S6JWkDi$a*8v%jjl^>VDE8>@i8lZ;SvT!}S8hlOnvsm2AF^oxY3rQ$g)Y`tT
zWpA-s(mn>sz|{oyhH)mTXr^g*XLRed6nP{}uy+u17S}gCF5kU5`s5z^q_|ot9ujOr
z(kjzwb98X5HdE5Jw0b6LdOBni%-8Sc=ojACC-N2GhcGMXvKhBLdgp!GKEO#$BVjwl
zSkYdwLEE9K5Nt{2#+Nfq@V@BVz0QN#4OB0{)Ki8E9N%y2i|D&Q;0a!UguwD)f@X-=
zIMZrco-C~ZA|f`ZSWGJC47J+cq0Kl0;@s0X1CJpIzJyck5wNyBq|XM1NRJ6!%}67@
zZcLta%EQ_`whEa+Z!s1#JnU+$vTJxCaU7+{BO*^hu)qC0dhlI3)8XPyFcYncEFptT
ztI_W`OUT7pLrQMQCgC}A_U7n^w>dq^XX?)3GP?Et=w+XztYrZbEGLrviWPRv*(nv=
z{jo$0l~2X4P=?Wo%aLiGpB^`{q>E7GaUqI*;%JlO9sEzyhk_{J;b>UVHQ}_clNw-~
ziV29U@Z!wN#LUeX$K82Hj|P3Ons^tptW(^yrXJhz$HC{_JB-V1l3K<0nyMf)tcoV2
zn{>(7e&<ZrtTz;bV6B3Z@G?#E8mxIX`p-O86Nx({gAFo*Bzg3=wT>T02XqJ6_i^J)
zms$%u3tSuTqZQ8%G4Iq$9CNDV_|Lw=+7qqg=hlIa1vt5IiT6hzH%Euh$5TCgeyK$C
zk~r3SVXh93LeDu@Nf=~aoaB1@VI8NxoGLox5Z*xKmq`(KYS&jf7;aRu0>ZG9&5K_}
z&n(s%jTI%2dRY^NX)=DX?CCmC3BXK|On_D*OYm`Aak-8{a1+K|k%>f`Q&VQ;rRs#p
z*Ih<nJvSQ_P@3sG)aAWVAN1FZ)pC(|kYZ~4yEfe7JYYwwQU2j^NTJ$vv+E3(d#OGd
zSQ~=#ry4q$90|Dj*0pbrw&#Iq8^uRns)MGQZX;b6J;?)t@#W*hYzfzvV_s=%wQWy3
zxF|>#W~`xs#tKPRl*W<%@JjUiQ&|b3R(Y9|Iyw!Vx@ogLdPf%RAQ8>HE4eeZLdf>(
zTnpsz#OhO5Bk@n<#NteMM6Wtecceg!@i?5N(du!#TCLNU$Cjgpfte?RD9PAYMgKHX
zKZ=sKnmZv-@zm4N3#K`ZwX>-;;jD~DDdz1*qyH||M_?P&r{y35*`iyXk4|sUb|fEM
zctGL=2}+ME9*v&sEDLF{rm-PJWf)>eq4_UGZ(WqKoinFs1zbEuU=UHobCu&8e^*@k
z9o@HsqerV{Akf4cq|2`ZhmkM{FR~BfZn~()cKF!h0O{7e&|R{rI&nQFJ|X_T0)1FS
zmkPN_@<>W~42h55Fto=`4he5bgv&yq*8vd}+S&)F_u2_9=ua#eNpa2ip7x2)_u2^*
z7a;$rsQY>syLvfIBof7WG^Da&2fNqpz19t)m_?`@$0~20l*b}wJ;Tg-B<_pvlh(l*
zLvi4~pe^n9c=FSGt%GF{nO7Z%!tVo5{!ink?oV2mkD(faIxceL8V7G~u;cDHgFZ4$
z6?-e=o3HnKp6J(W-2f3Q5QLz2qH)6(@=#p=pOV(~httPhA8S%%Lg~<^`i*g$m=K*L
z&>P5<I2W+oc@M`eqLW}#v^&Hw2)~|craT_kusdm;P+IgVsHnj*$sp^xEpZ=y%j>dL
zB8QTmTCUvvr^mncags2w`N9IhaN)A&aNxaP^R6p{ZxKF-I&D13f@zVUt#RAE)q&&>
z`5K}pK4AfH-h<!7U-N!aG_XGm4wEZQt}W8be4COG8rdxxQi!9lIGch2_-w(630V`h
zd3X>YVCTRujCald;_D{SE?gs`8mT<Zh20Zw?M;(-!I6_%Mop8ly(@bsL`|bzCJ{oY
z69<$m(RFW(O8D@29$<4~J=2_d+@6{+tBbx(F(2x2vruuCG&$eJU)R3dN`8~XpZdYq
zd%CA@PA_AmJk)5aN*z1bZufN$X&Q}m0BLEgvj6y`M;Z6K7)=uzS7Q!dWRHBhM+IsK
z>@{VmdPTkfN2L=qnvn2Q*9ws)1>IH9PUJy~X<V6b&AzT-k_);6V-xsJ%Cy_9rxTJs
z<c&haWPtidlQ8<NB-!uWx;g4bGU})JPVXwUqHbo5_!DIK6DE9?B#1>rljR;Kn=X$>
zmrYA?_^2kX9M?D*v#1&KQ*_#CnS!21u=}Jlz*AF{UJI{t&3hJvBSsS<6=~-VO1PS-
zyecNUvG=z?Hjazp#SGy)-+kt=jBoiOfo<%`594Bbo|G|@%UDdN6n12K@5JkOD7eF4
zVWI%o;dA>u7+3mzQkimH4Mgm#6Xi+M?9in>%S3B{vJ>{hn1^17HJ5iU1N=xeS1%NJ
zDA&=8HjdSPoa=dQNOyfdM0TP=RGw_pf!LfiP9tCALYM{b#?H7&TSPoF=E*N&w_nHK
zpk)LF34SKqJ@mRd_K%mf89E`R2f9X0j!k~5yBxWMZ3^X|bGhB)Nj>vXOa%NxPxlhr
zdWklqR4iZm+KU5YTa8y(8BksytY+3yWd5pocJ=exie+0eO+0$3J>@}dC?snX_7Zuk
z%VqY%Z__B3w^UrDZ(3+~bl%dcrli)xvBj8i3+&zRYG+YS!tMHJ+voqK4aJfjysiQS
zDVYY7&bMFsHvAPZr!3=(S@vh!wJDEXk~e`=vvQuj_AOo9Fg5Gqun;2N1hrtlXY}Qv
z=&$fwpJw0lX}EK>dVM8fyWvIm1$L`f^#SH7bOb0r*u=$4>}wtmzm7o+#Vn2QjJ6N{
ztd02~3EVgkL_icl`-EMzB7TI(23X<jZ`V5ehK>4e0ryP8Z)6D%EVQ?LsI4$4Rg(3Y
zsYTb?BUk|kmWNmg8*I9sZx52)lzJmfNe}Fm^X$3D_jKNxQYE0&t=7Khdwpv#IfcnL
zDBK?QwW;>kudyNG)met*E4JUFF?PYKp3+7H6e&8)rK9aB^R+>cDj6)WXpFKmZ`Tj#
zM#9?jjRW)T+#eYXB}kQO$-ii@m!3yQ*nskCQ3ILhtL)b4+R{Hj9YYKVRrdJ<od!5!
zXZ8tG?e!zVFOjN??Ih!hF=tiV(KSx9?0bcDuWPg~pB)*myo^b_e2)F<ph#!<bx3R#
zDc|s{n`-x%!~?10hw7REAV45Gfr~pQ+TY)&&vIdxrYMwFSK3V*v`t(h_*Ul$_LwWQ
zp*S#;fh)l0vWMd**bh0KOHe5Xs+~praE|@dTIX{DC%85h*sj&ic&JAKrX>~jt(R$o
zZmXDCd9C#j`;KeEt)=4mv#HQ7c8;T%Y$KAH6!#83`*0uoy$kh4t~1BhZJ50s<ih%7
zIJ~+V<?8;~&yJa;t*|mxnmWX+%dy|Mfi}$R`lfR$gX8R>r#o-fz<CI;o@Hk~9T|~x
za8CKy0=vUpZ5_^piD<wMewIDv^2m#P+S!4Ji|iijwH0f>Y*<pYa}pR<dOqH>Oi(Br
zD5?cnPvuRq?P6$!>8c@6LJ%7-HV)SpQSqY&;;mB~V#jvVrePtmwM{OIJ-I7@NKS()
zE?F5x=U|xbkFC43mo$n>(3rc{#2&b)mwXV;O0FFysY_x%y@he4P)JRn9;XaZaGDps
zjXANTR~bY}`5d;@H#&Cjvq@#>>cH7pW$-dKJ0FZa{&)bL@k4Mc<c4>U;uZ0pr)w3N
zv$3LpJ?m`G-TB(kj5sHM9y_^|CY&X4D*~w{R@oU#Bb&!AR|~0i)_>(_`w9oLhEWYp
zprdYp{qRbb%OO+ti3{cb+n)U#)1v`uuc)u&G5d^1l=KW1e#Y!AwWDqgBZHc9c9ERV
zCN$3;_lkoFK`svH-L%O53GA&?lTt5caDRK--AoO(Mv}m>8+8}jXE+F+XpRv3_~(W8
zp$P61TYP!7&@NfmyczcQ&pKb=qNq~T+;^e9_XV&JE{*7+0A@UzL-xGu^)-qHF|kEU
z?EDA`DGM}0_jqTKeJS*Ti47=Mn~J=6OJCb7*AbnP_>0S-p0~ul=Q-y+I6}7TsY$lA
zK=+mikYE{LP2+og?9@fhhBt_s$$a0}PM@g_q(LCw!t@(v`yF`3L=FCwUXyy;?$31>
z(ccSDofotpJV}pYv=~&5d)a>XO%6hs3bvs_hz?-3z&>?#7+u%1FR;h1N_*K(Z6YCT
zGtOJM#NN0g+{$U7o&R&89dd|WUKP2Z*s8ws?fahAca%)Xm8ur<b$7izP-Y@DfvX4f
zQ0I~Kk%F|gRod(JXrE$Geq*3qNJfVm`@WB~kz)XPR7@#nt_v5~mu+&UfXP*INi8X{
zAOB2Sa&bCymfe4>-S<Q`OVk^5*6TISZl9%1!xRO-SZUu??%ZSygiLT-zCCHMzThAn
zEIHz$QhAPDoZ6yUoQjz8h2!nX{hemvBMFaYay^FF9i7HuTyi`Q=-+ChJsvs%#t`C#
z{4OuX<=b0^X(LuZ*|l+l?Y|41w;(}{Tspq-<UspdFpGl%X9F7o2kv5fkTV_vK7-*1
zM{Dmv_C#9YrUonjje)x=_Wb9Rk;)BU{Hej%^fzh2KY^-8BB7nQ&Hl14D2VWA_>Wq?
ziq7rw*b1K_7g7ib`JnBuiLp05!DSWp66h3Gf!3Qw+n03j*_v;ThgQQ55;KNmBDt2&
zJI}RvK4D(!SLk)zoWyKf5-L>`0lSZj^<>xlMeQZlN8<5NfQi|y@A~N2YY8W2N`a|F
zh-qLCW2TvtN?q+P)G-SJ-ceE=N@E?U36g4R&UL*lQQa79xEuj>QxKD(B+ZkQ@`$+|
z^IQY2<!d;Lpnemj6v7X+u+~|h5TwlaibQEA^9KXZn&|p-39SSY0jUA(UgCu<lnI`c
z*ffOv@<yv`dL(d|umCN!BHlbin^KCTw^itb)eq-u<tRBtyv#B`Wm-L)U}~JSYRFH+
zGjRscq63eoT9-PVkmU$ZtHlCNDWFVq|H;;fTlf~V@Q7>)QiAWU6b%-aQ;nqcF})YN
zc5iaFN>invG|e`p=eU01OvLu6mR}SQ7-Gf74hh=yx9hFDH5iNJ2IAo@>!gk;g|7y=
zdi=__#Z{PdN1f+H!}Y$*+EYN52K9L5hJkp|N@SUzuXO!3N%y$`js(v)DVr@B=#Cj^
zJ@+yXz&&geZsY`=a*z_N<Sm9M%yGP_BvXqyG2q(QS2q``jFq?!Z&y$Nsbnx&nf{%u
zii`QQ<lhk$4SDgzW=NcylV#`i64yso2RUjWMYJX;(b3}Jy^uG_TJZ*RIC>+c3{Fxv
z%a8$rGcN#uN`yC&v@AL1ue+^Vx@v^`Aa;cf6Ulas+ZA=Ojx;<ZH8ISCDb`6>MBu?Y
z9A`;ruE4woo3d}S0q<1F8ag~+wHe5pNXr2cVNt-U-o-5Sy1uMas2fCxmF^EBI)=8?
zWY=vqI)nZJVl2W?Ep<UB6uH(*cBX7I7$RTJ!OkwlhKLR_*;Le8bAdHLTisLZHS-dc
zFEUNfVXoax`k`Vxs}cDDTWkR6l%BD^@4(c=qpDs3RJK(;Q85Sdy^Ef;;%?!4$ityJ
z&>L`zr6|=JAz2OxzY#KoekzljMR>*P2Hg<E`5J1Kk&GadcSfXHOE^7-5E?93i)}%l
z)qaGPJw^9lD~Q1&={=j*U@eh*hKr!Mr%0rriQQ~@KW7%{2Juf4Ly##f&7|z^__}1E
z$ReOADcL$lQVAS=(30Qsr&MdHbIsHhgjtb+@r4v?oP>=M){LeG-Y)1JPo*v@sFP15
zi_s@ew`PpfJB4>#Gv?yXaf_W82F5}0n`V9NBsLJs20oMcO^{d)mC1qj)>F%M-OW)N
zUSdHVu+HLCCiSvn=IRT@l2eLvA&CWww(q-HJH~1I5OLbUX;bX>jT8csO2EXgGW%@n
z*#AnWB6&O>=xu!=D2Fq}Ls##~z-gEb#4Y0Smn^eP0Re3nA4E+D%%gqC|JvG`r=7(A
zPhF<CKq=<Lk=BCu*kcS9!8y*QlRB;pCz(y|zRo!paR(D`U2tp;_Q$_(vo`E({}l?0
zygxX-%;VxN@8A9_;C~>QD8!4A+X0a|A<lKHzC|;PuB1C~{p0zyKwr%zrxGuH{k7-C
zRlJm=h9eX^;1FXrM#pVD0QL%}JMfZ|UdqX2ke<;b-DCAQhG&i*h4a9V4?ylyV|`?_
z*+Im^LsX>T5!b&(<{0tY)ci9bw#iM_>OaXAqSNMZvC0rjW=`H=y);}05<P(=p8*OI
zO0Ac_(X=#&Q|ypzlY#;j){Dm}<br3>DAjrKv&L2=Id-@k=g;ie=0wgzQ($2WVGB;}
z+@W74J;Y^;7!GlnNXcPc-*&RjaMH_+Lf=XSYe@>R@{{O|^$IF@a?S>hxpPE58a(|Z
zR}6!Q+BDa3F%;y4A2Obrn8&jv`$oPKINc)cPKId{v^xKyOF7&Og>0Eg2Ns!A$fEkR
z*|$2n#)09Ya#VpZP)Frw5z~!ee7sEfAM5M(NA!bV>iRJDV6YGhDv3@=f-)VX0``jp
zPLDzx%l!gXpKxLHQ(ftUK~Zu!AU7ZXUB}VaGt0woN4ziRct-$TAoz51&qdKc5R1(&
zsKXvACoZ6<N7y937?osga<Ucuo9K|<?sRLPlgg!p^z4F$*x5{Tc3105rxU7Qx$Wr0
z2_Be<3RoT=>SEpPq!lV4ksah*l5o7^wmt$g0+NTf6dL?RjrGf+b~3%e_}O4RmMlLb
zdRnJn?VKp(Hbs<I68Lr}YlAbJ0m0I0s3XZ8C{b*#?rl9P-xEF%Sy3?~1$aK}IAXRg
zynl!c?p!2-wNuSor(3Dc<VI0Qq^t@i29O{yKHy}qp_06Lv%9q+vH*1FIJG&{LNXtH
zoMW9jgOB0Ws<a|pY>vuyspiI>R(HvkB;q?rP7)7dc}RxU9MaozIU@=z{-1;rE?`K&
zx^s}OJ(45_vO>b5WG9ym)ur%TW!ae~)WbUSI_GOgFi0)(B(bfB4~}VE+*Qea^W@1?
zF`J-Xt|TaxA;%_L?r<_4;WcY;Ly;6>+@$h03YN~ACFTME0xUDlTZ^LK$Rz_J$VseL
zA;C@D3cL|aciUrjlJbliS`^eqIYsd{yuQu1KF_AzWF*6)Kp?3CKQ1&N;QxIdTlSK6
zp!$z94E`IpxAlCyU2{DinTRaigcFhR0TO(2rRBSzkvA>R$M3cMihI#NShF8ugCKca
zT=@%%XGely;H^NQubdjUGQa&-bbuz~WXwSmHO=ji7*<s5R@@(#kg_8k8%>qmI1#8m
z92URklXjBY1};m8T^Jj~KeN{}hsXc*cDu9qEt~>Gw+piaDVRpZ?p@mYEIx+qxe}pB
zW-z@tHhD$cv)HQs0RMgv!*~AJPe-=h1ilqG85-gr<Q9#DL;+mx`unLUd6+v}7%eo;
z`K}dPqc%ZRB-RQ?W9g6=zz-QeHYmq}6Ws8z;o)$qz|O{Jv9Dh7YE*lGjgQdkcz<6q
zIWFndcG5bWw7F$o)Cj^z;_Z#9eNx={ueF=Rmj`fZaBpRlPZxONmPbtjEwX(QmxOda
z-E-+hG-)wRF*%x50nazr(t>*jBN0!*Ti0y%{5F<09N9#}uc_q_58s;aDY`+&L*LF9
zL}aX<=&8!WO-?Ld;xrFSMaE*0qegw`x^8?&$(Sh{6~=q4_`pnS?gnytFa^?wigK~L
zb>3y92N4d}D=el&o|%6-T6a#Tm2(s!hZ<<uw`pH|p7r2Hr#p-+t8b8P#y4R)h?b9`
z<q&oOLqdkxm}Y%>zTVXSnq3DRo=uL{gf7;sWqK`TW=?RkIEEjAs&MYaSr#@E7G#c+
zH|qSEl&;n`2k!w7IMX%3+X_mAq2UU?b-jMfxq|954!<qKrkj+WRwo2VCKy3V;ub6>
z2a=7Yn^{TL=MMS+l(DPmOsR3#-MV+F_98+Nc%d237~!2X6Bjn+fLCJ6j-Gl1F>!*2
zvsWqT;a7loGZ=uyTU#X;f{;gmac|HKIZBX&Dx96J1doXyo*9)A7Lh{CSx<xxBB)kM
z{wftHCudlD9f2}@S>ZLa%-l9shO?Xk(ct6d1Dxziwq`gCIiXyljY2db*$U&p&J9bo
zI+4HxGQ<W*e28cj(nfnu>fBz;#U((Y@J{CP%VNLSK?*{kSUtZOm>Ex59lPmi@+Ug-
zzLVF16GbK=xgZ!sqDy)0+1;@h1?Y@9FsS^kBq&9O^>z1jl{Au~(8LEmz&__l{+DF)
z#tE?>ZzqMM=0?H;0{gZEU!|DaevQ59m4BylOpT;+6fqH0c4SJ*)aJB{&1eaV21f$>
zC5~5F=9nr^bPrZc@58w<;R%QJ_AKbe%v-jLV^_yso>Pu$C&yBXsp#fu=ziq;$>Owe
zpoeEZsVqhI3(7jD2>N9UBoS4Ypl1U)E7=`vjoeKfI&khIXIHXkxKDR&P>7Uz+6?KK
z+uJjaO*>*rgkYIByLt*GVP`5%p!Hlfk}M?iz2^pdhE(fLjz>d}S16}W^XOwe`(Ndw
zEf$uHFQzH$;rWWu(HjhGl#oCumiRUR2{E4NQ}jVzr8w6clX|+x{f`nQR4yooz_!Wa
zD@&|Qh3B_l^@+$y(o8wP6!UtW=LM2x^7R(Y>5*np#Sn%n&?Y(jILLu%p2?CIG>eVF
zci$nC0(el6zMcu}8GUjasJSC_Px8W=%X)iO?xkI5Of51KV<F2k);V20zx?M|P!eaX
zmRo`QK&H7Q+0%iu1Pby{Ux`p7>Z??9^IFfhQ~%YT*4&<H!Z?<MfD#=-5qE*y_{%*-
zMcPf(UfA-$HaKw!n^3*R)1iWU^zS^c_&PdyUQxKP&6Rq6Bqoay)6a-28q0}`*S!!i
zP!F@z6s_rz6s`a2mKy2CnPLYOafYB47_8Oz#D><fbw@N)3)pFHxjQfzDW+RbPkxX8
zoN`)Z%G_Si=KzS1=*P^Se`0@ojSn1|7B-_fEvy9kHS3^6s(|e(J{0@aTlC=>`caXb
zgu@ZdRr)cWd|09*r<)p?F3luWLklRbt-3(!!rvV`e!cc65gCO0&;H{)#k*T?j~#NG
ze&#UOmD<d80c16$k_5w;*`B!8z&!IQ1W=*T0(cT0HXzPZ`8f|r#?PsX$Aa7&4)k5j
zE~g!NUAYS>=7TPt54zC)FW|;l6b49gNAVGqmQCFKR6L|ij|5LjYege1Zctj}1_7G`
zaUzpI2Cf`ZaH_eW($n}o(>m%tP)*Od53D^`>?<hL!@E>_Z|vlMfdP3^9WdY%xn#=X
zG~cfAOp}p8Ad*o^B#6<H7+!9#B7v&@p4-3Rwkr^j2u^s%ryq!|dQ`U$qAxgIA#d?t
zu`a<yRNNqCE3}rJf?$!8$9v*N=wgYd5-vd2gz)rUrKg*GIY;#foTJbzfeIFrb)x5N
zfeOdHM-GBRyRD7quFXf`I>DG{_V9c!`Gs5HK=onI>fuTG7jozQ!mgg!quO!BNihq%
zdv0<PC?6&sQa$0~-kw2n#4X0h+dIW<>Eb!<=yAxGWg5D9#>srr46&U+D4Z8YCR71q
zJyybz<D|d@m`hSTZ}45DHHy8Lm6wKyk9N=vlghfp^X$lf?H(Sx;oU<i3X6cq7diL|
z_r~5W*F!`Sn1m^cxy`hHVo!wL(t7yB(oE#U{sZ&i59=g{K4RHaN;e&QdM;->kV%G@
zOAsokPcZY1dt<Nsqpk1|=zj?Q)zp5JS{4j9XnSm*DcVICNrI8!Jn=}Ax^o1jz7c!v
z9;SwjgX5XpMj#n%%cvAVzS46Hz{9+AVe9HOojw-A(>(V92?E8c3wIQ|=Cx^_qWz5I
zOo6Ip@IW^ud#ru`Jv#LkoY5KQNO>$ZB99%p$h62J|9#uREzP%m5XXVlRrW@33KVll
zn&;(sPM#=1FpwzBgo`GfH<IFg#U6L@kx+qae~Jn8^yGCuvR$d~UA;WZj)qdnvYp%A
z^Uu*xD*Rwpvgbw+{1L|}iS{n)=2^u1tR3XuEKPJQ@;nRS<+c~WeTdg+if~p$+q@Th
z1p+M(lt{^q6kH*^E@1)zQIaah_vXIXtA#o^w;II(Ccb~#c^-ZJ$crnfEX}dKJ>N&B
zfCWi#3nh^RJ5W`5nx~IohyQ>IilsW|#xWF-%%Pzkmss?YLp+zC)NTzpvLsL{GU+#)
z-APZkizNSV*4mO=X;n=6vu)*p!()nO@~)LJeu@In#&#57IEDrj0N8YwHnU54L@!{h
zgJBAGw11pM{QwEW+KXg3b%p(DJ%6W~G})37r9{+;*qzwH{&EgOqWY`BcS$(%)gxjS
zf1_W~iy$&CJqnO;K;9C~VA5`PiW8)nJaVSg$kf)4j>)cI9jHJ-CfG_u*-87%bM4-v
zbspqC5F#dmYvE)&Wp3Lw9B@$xnrWUtEoSM<><Yp3lBhyn*%}kG_IceGwQY#YBbss$
z)X6u+{PVa@csTlL-h3x5X7P!<sXEgV%+w6H=eC%bzamR$l0-GK1We!IU6j%a>|$Xg
zX*N$KbuRdO#jP>DH!@#{7<_Z7*s0e~i5WGH4{$}~dz(kbWbf4pu-jtUP{jngimI4l
zyL4D~k}FU4V_6$h(XWxLoAk`V2EzQrAMBCQ_T*x|1H-3$R=tF5k*#mB-RA~&2GgYY
zxX`lyJNuXvTF{1rd1{F4rhY|l`(~H!SMF@sd(Gu=a$L;7mvqC%RN>1bFu*aL`WRg$
zNL?cfz3c2n-S{Zh8Z6If&#S_@5Xg@Cr@PNJbSI`k@fW*MBU%%2pKW(}44P({0<{`v
z$a)=>&2hV82B)@L!*$CCNJ=HEk?JL`TpW{if=(s3u2fX)v)9I~f1vrhf_WJA_ycZ=
zaD;&wX%S=$K{ul}#}wbMlV*<GZV?Cr8=QF)e><CuYzl+9p_tG7d>l7lNyLVAZ1*wt
z&3Dk#Vfm2?H4RZlslE0Uj-`2F$exw;z@j8zU9%?UnhTwo%7$_0o_thC7=!G}_J{+k
zY1Q9;>s|+5V3DSVIn2j5#_VTJK+&lE0H=1IyGa{>GiZkhBj%@DA~#m<QY070FOSDO
zwb=o(x>6x0v-LymCdYg<fZ1Rg34K<ld1ycTIi_?6gCY~5mlc~#!+xgp`>A%9Puhw)
zra+WNXrE}jcZOwdLYWfLN^ne&DIQ!_W1YEFbuyf-$mD8SFuQH56GcI|IFe!l?Tu)V
zMx0}vibe)tCrALX8VLOG?`T!&i1)N0QUxW7bS$Ip2=C!^C6vN+`Z+ppA)hBJN2P2W
zgI)7kbjl2UDUxX8wBMpXTI76Fvy+ez9u&q#wH{{`uU1V^VSqa&hx6On){gs8108K&
zlT`Y<J6oMl@ak6KC>Ro)kuG_-Uft)q01GsmARCU3RF;s^!iY_mp`mFZf-8_&%`>mN
zmR`l{l3Iq?d*bATXZZSh>)l*66AB$6)fIu-;#Qq$YVWXaPT{*)q=gyejIq^9$ikZY
zT-`+d-O}{W&PGiCB8!v0Cu|=TLqX?s*MrYt(-EFl3!o^98WOPwqU+5xGiSM048+K+
zIzQ6dppzk;2GhReG%N3Sop$rZAw^`GanG}whUmo6IS62J`~-z$o70-CWj>uZ+7CEf
z4ve_>6tnR}_py(wajrxh%h)UY7}8Dh`PP!;|I{I6Mb!Voj59oE2aA+qeyw$FFK0%C
zw@XMR-$f!xH)rO%ZVyFv5?v5_kU7|5CAC4rENfM&PH7;{g3Q*j9gAXm(^szBA7gJs
zV~Ux;xk@pwyLPOmk?`tpmfOK0w4<{Bocpy8yGkz8??+TJ+zAOtXGR+ax_ZoJ5<25D
z$#MhphXR_xiQN=-p~Ga?`itl-8D;PmLa7F_rD(F)6PVB7V;wUyVlhgw8mC?C3@Gr$
zo-ZJJwBin8Hi6i1x!5FQOEcBAR;MJED|{b`T4du09Z4oC+T~AFM}pCkvsthP{AiBZ
z^{}=7E~W&25nVauA{5xP0_y9Vto!ca)RZma6i~5hHvGM3x?WgAAFMk-ELyi5jECiM
zRw6cGB`IOgm=^9c;&Y*n1K!bsv{3yJi^YnUSc}lA(g{k2-;UfO;=@wSor7I5VY5E>
zYiJNJOp}@p`#AhY>w^>YI7RE-z?_9?5KkGoAQ<rPbuA6)+%VQ)gb+tA?j_0gQmg@v
zsXS~blY9y0q+!<b3RRX8+e@AX-bF3lE!&zYraxy>iqY4K?~NvE8F+`a@Daw(CWF2t
zOTd1{Wo9d)S6V~P41*v6I9|uyhufSbM&q?T84f`jnMMq~SZ0WFM#y=>y5x3Uji8YT
z+_Dgq5f8eCI)*NJq=o=V@j!LgV(ZIu^h3kTYs6z9O~PhBe$d(o#sD0~R+g97%;bVo
z9+yy~RI_}9bud9!BWOl-DnK6F23I5)6hI(sXU~JyL*jnX0<%a^#$ESYtM1fhz!(>B
zUd9MJ{{gH2y+^%_b^OnVtY6mY-N`M5LlV-$_0Klzquu_^ybfnh3^-I7Mmo*h<+VE9
z#Jv86cmaprJ*<bYMY0_5v}W#;RQ!#LtoPVRS_g-7c1tOl&daRlob?F^<2B{v=+439
zc-vBI|3iEj&bftm0}0$x&F^upl}$Pp-0*DpPU2~JNlLnjw+0~tGpyYp4%rZxA25yH
zmuVZVka!mf6O2y;tdiKy2@ly}Ju5yHm;i#hPvAq!Wj0ucdgvI~#>2ZU;E;(+69bEP
z4hq6DblB)^a_D^Z9P75Hb*G@XQg8|@Yli9B-kJrJ%5DVfaCo5h5oH%HwoYYi;7bHQ
zadl*`u^+Z~uYFQS7{xs^#+zvcYogAgLqSj~enF3SoriUb_-(UqaqQcdx0MnKk=hAo
zVdYWEh&797g3{Q&b9kQ0^V?2{{jG|AQhRGk08yH;T=lW77V}(e3QcfKBCLu{Y{)Eq
z5pb&r)=VcczWHog?6&#5nJH*yinwj#-<=tI=S<qT{1jOfqF~NHE%u#YTd}8=hy$K^
zzbN+7<&1?gD%9{9q`oLI_W67o!rpk;QXuLljf!35)5biayI`=co)|msENvhs*znkO
z$^0&CxN@-1dUVlj2tT?R6IcNH{U-RB8u%Ous!B#yPd7UsiW_-v>;L0%M)Tt|20CkF
z+?JbL3$6^yQNm^)uv`r<wU1|bDXZSdJ`9-Sei6SYW+S&6HcKq`g26CY!$q(MWGP5C
zACHYbunZr743ImDZ!yZEJ^Jjb=m(#p6*?WE<ppp>1fSuTCXRv6$6HA+Fgo{x<$!1)
z<ix_Jm|a_<#bJ%#hQOHd9fv*B?Cta<_Nt>b=?Q&dB-Ad1EX%(H#QYjP&>8TszYaG=
z!dp;I6OP|jE9x<BF^SzmbLP;VMkSTIPqEGs$|?pi$#==y9NC*5>-LM=YjS-UV`DCQ
zIl6LkyYrwzx@W+<B%gy+eH!<}O>NGj$B0s-%zDzqaHy@<#$CL-bv$pwTU1H^XM4F1
zT+jAWowxy)QeqJvb*E?R%~I8>2wPl6xm#j~+g_{=UvfnuuR;Zdb59fgWZ7}9o|E)~
z9rXy-pq0xz`M<DKvx~weq37c8(exQ^$v3*HHe$QYG~>l6f~g5nZn<mVW7<|Akl(OZ
zUn^LvO~bJ~ApK2R;p(>@n{F0~m~r3n;x_?TEt1OWw_UgF&?k<|Jbyp_anvRtEstYV
zo_O;uuIumD(HujeWZkAGW8Sz<n*lV*_7rwe%!T)m>?TR8T<IGaS^ROBDsD+tB1YXa
z%=OEUG$UgRN#^oSa$)Y>1T$42NJ&cn5G}LS^;KerO)#s@H}mn11ms)a>FV=<c6OR2
z#UyVZobRH7lp2cyV#R<wQo|nPDdrW3+Rif1?B7+3#V7L0IbCrb;NI_=;<@vHK9Dsy
z^h){w?Uj|DI;RiNj;&Y6q8jn_HJ-jsm#{b>Y81ZlZK-E31{Sbc%lDHb@1tJ%4<ko<
zvylUT9K4`0KxUIK0IutDPn$y386ByhPKhX}`Oc9~vLa8gGULC2Kn)>;cYrKDbxPd)
zUmOjOh&h}FN|##M2EHcbz3=6o!c^6ZM$pR<FA&QdexapOGd-fz<jx$S!b)#eVI8>_
zS&_Y9?tBL?AIGA{W<S~Bxz*Wh@sDtX-mrS=tZAOBQ8m(sv%|y&ha<K<^Gc=XnRdEE
zLVUv}v($)YzoilmeHk#=-Lo21F>pOX)!$U?l&!h{+StBNFuEgYsXbbBEEE+)irizb
z+C-OhBbfuiSz+}uzJ}5@KizY|cj(&01r04ksVL&f(;;A$k>fcbnVwKPsiTR_0|ZN#
z3t~Mtc2L2QwTvnke;BiJqE+^=w)Iyxw#!GVOv>9LsH#V<dAh+WU#>ziWf%opCD%oy
zWb`pmOlHeCRQ?pf8HNIfADYH3wpOeRH#JJNElwUgM8LZAT5Zj*n&y;eGiHWWc(b-K
zu>#2oZ%pxG>){pJHk=GO;&FrG!fDEK2!~$Z|E;pllG>d*Ul6}wN`&}7uR!Q+$?d_{
z{j|YqfaBLGimN^Ql?``Ln{Vx$rsy#bY>XH{YM~5s&AAqC9KyeauR2wa#iE3}0nzTs
z*3*v9QE>o`jpXkmDQvpAYh!flpZUVkOrPZ7nBLQB@380vfjS(<@xIDbcLvADDoib#
zt!5-0Of@md)|KJ}arAiNxqjH?;V2gce4--HB3cZbJ@7o#A>U25`brHkRey%H9?JE8
ze!tZvygRtnLX;%u2ziiFldKERfD>agLxPZ#fK9ygQcd-e=y$&QFV(^k&JdD2s|<fg
zk)x8$9Jh6&<L{8$2(^&3C@soV$<d5bKXWlGhuOn*t*wik<2ii$@OQ@sc%Kz3>?iz(
z=JN8wvw~Vw<#SFitLTcT3Amp&%NJe&tpI!~w?0dvyWidz*ZH#lga6?YMc5<svy#rH
z2F^k_K9UE?RdP6@|AToVH$j-U%ET&PD&AXgIhgV3c*;F-zpiXOf$b#O;Qeu*%+?t=
zFy{ESa)XgrHr*e${w{r1ST&0+r<DS6A3YTJ<DLJ<oDn)ApB47E{kw66>;I2ep?=P*
z%6#IY#GM}9D|Yt)SV;^pka1Bi)(jF}SN-3SgpuuNThrP#Ce;4);l<>bXSd6UzcyWJ
zeW$gJ5)p<B`+s_#zN3vW^LbiE6$t=AwL*xSh`4E{V5yaSvX+P8Jm6@t>WbdYzumKW
zC<WBiKo!>UscTEzPS4iSZ9ib=aw#vtn-u(+97hQtVKUiR^zE7e@H<yrZbzpw5Q27H
z0Fl~U>y9(+X@l0+kWm2qL*q{;#npGEF~<y=O_6ia{hxe%+<_?VJD`d((P7S&f(<co
zg-$!SQ}hs2S%`^zMgU6?Hf*me?n8_2@GPOa5Ui3h6FbDk*)+jBg$UP?jq4b<${Y0o
zfF)xgVTg#a;$-a!w~l|3xDT4dR=PS`ih``JJn7RUl25Qn#+-dhT!wr`wn!IF>hXHw
z>iB%O|3}w(z(-YWZ+l~*rqG3CW^zgZDUtMoqNI^P5(p%KfQmyhBq3!Wl?22ts3@pN
zQ4~c`K$?O=uz(8K6+uw{deJB-s0dyaMFqZR?a5H|e)o5a_w1ZA=j^h|yWX`{H?B*n
zd`)$+&}gSnn;7d@jcKVrjHjg?nTTPw;Zon5;&JqnPnXqmcXh@(d~Z)Oi@5f@n#^8k
zd*5^UtTOjBvf2%)C#2@IJNFvmaQm2eOcgKpzt01E-M=y8*&_ZEAe%I5g>&|{Ksooh
zQes)8Xq0+!OPBg%9c~na9b>GXGt0zmde+&gTaXk}^+grSjbY7ay{KnMc{|-{;~yhZ
z2R2SQ`-EgM%u6J*W9h$1vg^TaS5lo`^rIJ?AHrA#|ARyJS$FDtNY@$G=)&$W)S@AR
zdHS#JZ%d09Xn@cH^*x71g!K5VgIvnNqAdWNqn_vdkN_uDeI-6Fzgda1@!QWKPu|9@
zL<V)gM|Jm}kjv(Gkx%y>{tPPrm%-iv&rv0BcFEd_Xk*j!@l`$~MskcexZS?$^8Ic-
zCOgpYD>0WxyZk*6BNXTHyq>x2H($?OVV&z}7u!>8&nWdyXXmx$^z4%MKTRZ&pkZk=
z%Eu3H=^VX|0U?<dxwZF>(4%8ld*{Kb<|bbdLXQe2$Dg}fILjAt*>`l|lpWD60OQn8
zCmoT?^+1{jX-_m1zz)TSNgSm<J?XgjT<gH*yX5Up|LN%QKL%hr{pHA#0d0wmst{`)
zaEM1G{^^+Ubn|<iCC!tIBV+d}=g`GxU(VMUQySzk^ylA>jVsO$`Q88~1774`j#%G&
z>oe}}gP5qs{N?!Y$$#7tDI}l`e>%?mdw>)9!(WcoPjCkcTu!{tvW(ZW+4&-8#y$Ud
z81osW+MIAavGgAUELei-|F<JXeuV?6@n^tK(F*F~Umd$v2MLgY=@0I&eQFiaF0^%x
zmZ;!(?gHsQsgn0N9?In!0ue4<g|{4;aO@4o(HO1?go2yioI55_!pt`uG2aA<O#Y{w
z7ElF#w5G;R_%0-A1gHkJYyjXI++rMWZ3=m@5?#Xnr7}RZ8*dcVa7XBoSz5seAYFy_
zP-<G5#$a#^b8F~jrhXe3+Uf!RMnG$Vka#48;<R<{8~SXve#aCs4<yVq_5*pjR6smm
z=ASS=v5Qql%lz(0NGb*w*-30({+3ORRH>b8zI;V!DoT_A2`+i$KMMatrlZPi^n^$x
zh7bcmM_hG*F%>nH>nCGfN;4WjBZ5I3<z9(hw>M~$le{o}<@Om}=@$7dYb5@Iq!*An
zdfM@Dn5J*byylCW&zvGX-?&OA%5ZWe<6RikvrapJsU^`STR6Qsgomg;ywLZD;QF*P
z5o5i}#rmSms}_p=LY<vj@*4zN`TvM+@kamev}4P`_Hq$Robq-eky@N_RQ}lhTXCzI
zSAtKdvbS0|rySuL!ExNNKMOIq)cZls5y||jNHaE#$oo56Ip682Dd)}I^oCCsBUycP
zsdLlAe6vJZ@#e%hATy|cUtWjT^JT6m^{wUX{Un_UC45={en}=QR)b{GAdro`&N<zH
z6@kjnYgkAIvF4v83ARH?QO7oYzrcx*uR)%;H$i<nrt{=abjw46NX)FR&UNg&uK5>h
z**Kas32aO8z7NIvGXYpG-6)0PED5Uk)h-KcY;}p_V(_AlfhZHyGiN$~u~hS>^C7lq
z7zM3_?2mk=%f!Dsj1yh$k!FmV6+vDI{bQ6m-NE(h7g%+|Vv_;@;zMwhG1oF)4jiYU
zP0AvkH6fwA#HoX?J0H1&dj#z(aMR6_PlG4}=1}mS^YRB6iPk<l9|t3vr@av1>c3sz
zfJMq~1n~1ek^7M255MYcF^@kG3IG9nc@6Dl`n2qgyd5^zIV)Oyy282eqM#d@j5K#e
z8311Sqt45cxj=rF#1{m+d(Gc|^Y5k3+xsJBbfeOIPNty4>Xz=IS=Vu3*;vhi>#6%g
zVzDFnJ0I}Lu4)E8`O={zTThl3Q+-oI>-zd`q;wVdD*I>dmm%^n_QN=LIRJ`M*`J2A
zDCJ>iX}~GS5)KF{ZCFgY$5prd&_VA8HVw&U9hnj=bdnl@iZA&;v+S~<hojr{V6Les
zhM^+0x|H{Cr|~DH2f@JQcXiJae#!pKb$wRwRr0sE(}sQ)7-xp-mQUM{VQz=lv#^vI
ze=)S&<y?)R$#+A$;7W^kyH&5a<YAtdTq${9Ov+cDZjD!mi=~$4x3Yfk;_TqiSpmt?
z?U20*a|YD&`D2&eFy7Z6$}0yL%Zn-<Q3FDjN}*xNA&__U<v=W-67ueeE-P6^k?3L=
zP+IRJN4GF+bQsy30>c-ELXk^cmJ*BJG<_P<z+H&*Xs&J|9pBZW7rVT_SG&TZ;!=@o
z8Z?!lUVcq|4VDHIvG)5euYK5Y6;IMrBAhije(Kx%ySK*ilVeV03GHtke6Pz*K%y*q
z9tc<o50fL#LMGqY`R68t4E2-5u4G3MHuS}|v_<Q#fU!hKP?s8zB6yNh#%b%2>{$Mt
zW*3p*;G-LAr68GLfI~bUgjVu=N}qPzkfyN?-Hl104owhk<H&BUkMUWG52mHRXT6+%
zr7FL0y-*e`{aQH|7!)G#*N^Dp%>@qO8d4j7QBL=giCtpGA@E_Lm53{=cHi9@Z1-Pr
zvPkvb<6W=9S!Ov<(d=`yF{Q_ZxBozN*XMoiKcTw<5$VE2jZ_8Cb@`&%BPJV0Y+#*_
z_C>F*%K!$Lw`?9$t-HqOb?+ppki5Hw$pr7eAVK3_C;<k@qL{8XNfK`ymB7k$!583S
zM7}wx>%e8cXPuvjrR9t-H%%Zfy*acWC-9^6r~kd!vF}o*TMC%qPL)X|Dq(o@$D6-)
zwDgh4B}`8`4x2oZ+WD;8lmdqd*_J=jF;!uJVQ)j2lQLN;GaM~W=|R9GEKc+ltV_W(
zKUwN%>toN3)%5|?PqQ7p0JdZybU1;>%VvqncU&dRRc!!OyD2dmN!W_h_2y(pf7riZ
zWSnQDA*X^v84%|fB|LE*W~l~Ug+54Xv545hfsUWP)Z0!z-4~aX3@u(}NGHd<eZC=2
zt&S`<Gl};&9WhOs^d>?B)RPxM;)h+~cuz75d^=yl-EahDGL8&zM1<&Ff0lOub|gP>
zbg-js8xGd_`G&03)Txrtdf`_jG=D`Qr*l*pTE0T+MEv-6$bmFUYzQT^$cxQ|Q@{4z
z{=PCkm=Hzf6bYdR+PIK=?&~Mz@uaX8l2KRki{+)qKIbew9wDWFrS>xAzT~YbJS&dJ
zgfEQu*HhP6DlAjSN*7a!jnP$UV^!&EM*ErU0%AJF;(JOaRMu}s!uklgmf@z59TcWZ
z%x<sfdUsN)hddPl!6Mbv?qSu5y`|zBm7e&F82U}BJ<oROoD(mFNU@xYC|Cok$qGfP
zcHcOQ_x1dd?<S&x?~e$cTim_N6)m1lmsZyh>2$Kg!O>l|TphoMS<S&oFEa9wFub+Y
zO5oNtJDrbD?7Ihn;H#%-P=pCrK0Z?T>68A?+2{2>d)O)YR92D@6G=apxNg5yUmI0E
zMQSa|b;Qqihn-j6*Jlr^Ef=Z-$DP7L;AS%Pz)5G`x4xnCM&#F<M>yPRQb&=;;cfrv
z{9=fHqb!O>8@a`(KVFCDtl95;?PY#ijy-#_geWyE0{YM-xt4F_dOWt8#~8yryc6$=
zSfQ`vQ<I&)qxd&L2Feva(&y>Ha(`Jt84!V(I-r<&Wt|sX7bnw}N^J`%TbCpm*LzAk
zUzw{fkCD_=4Cn+J%c%(~I**#m<pedn9N7jGL#r9k)3u%FOp24IQ=Ai{i-(XvqaJDK
zeDO{Ca!v^;*j$Y!tgx`WbJ9QmI3Y$ksyi2z#w|u%35iNlXCtK&pC`-l`p!PvnXq(J
zEpqtC>d;*y`WCTjRLz04V2ptRp)h>}4$Lid{dZB%A~EJER0LN&kvbkxYROY!^Mm^o
zv4j~l7~H%GAiRi*D?bdoKCxF3yEB#TN-t8Tn++DDM$|e-Z2s2(Eq(s?04VPN9>4|h
z53mXOVS4EaAGhC}ux@|$mKRMchCeEA%BGA`5mUk*iqh8!D;6QHC|DoELqcy2TU*&%
ziX_TT;iLm@38pWnAwkXm)ivW63MEPnC(aZ<qq6>XJ#&e^VVJwTfKa!toft2*6U+Xq
z|1^hSu>3Fq8gid+X%RO3h`v4;GLLVBipx-n$IT4;p)XG&uL_HU;2wwA@qlaW#LJ7=
zcBFpZ@2Y#0Ij5|y)XT#3xz_D^uT)Q77RU`m%jya@ElH%#MXdT}r(^xZUiwV)g@oD=
z^-^1yO2j3V&d+js74e(&PUsTW>apHM5Lia)Qj|qgYWQ6F-UNBqArts@B8i?lu_mPQ
zI<_{OYs$xAUtQg+h+UKqF%w*m>btZhVLyiT_4L#;L@{Hgm1r%pziFTAx_5aJ3W$J(
z)P#%XNW<KI{#aPR6Z$Rj0FbM^XjzT)(GdocdfWM2pI*X~9tNB!f`AI3N<F?m?46zw
z_am*+8YInqT4#IJF3Mzs{}p?WK|89FGam7|b>-=PH=`1AMBHc$FoB~Ssb)RsSn*0P
zFS`%f>Wu)UMu<?MU#hEC?JyDpsbwyx6eZ6pYnV>TjbdJ@OTIE*aB7h}q}0QUNbDOH
z6J`IU9>tFBMwfdT<+uQ)lFkvI6wf0m;c@F{#`ssL3r{W!5Fq((ROZK=>s4<oNu`oJ
za+I!mMJ%8=5D~0UqWsj2JDMxTSJ7jPs!|>rCjcK&Ih{vNKWtp}4&$T@0+*N2ejq+J
zCPJrAJh|F<%#0k*XC@a>%PT29iQRhoR_F1%qt<G7LQ0<^)DZA0Gu;@xyXOU$rTOr4
znMU0neHnT+%s6etM5%(l##ghsECskL*(DUf6$3Tzy0HFdddNehyps$7A)E<&IqUpC
zrCBS#i}j+lyJuk74^7-6opPZ=QSV2#E#aX^wZaoN@@G9nk#{4b7)Pz#$f<!KQ!e1~
zHygt;+n)bm{SNU$ra${4XP=4*Tr68nA70gNT-eRO=qJO^l19>87s)<oLRjY``g&fm
zyO?g9@&&vM7R`~;ur0?J!gc{up$sx_>{wweTgw}Wtyo%GV&J;hG0)UeN16RK#Yi8*
zAUr$vG9)X)%j%CxW9Tk@2P&mP%FqZP_Ug?>-+}s1v)%qB;cd<>2~t<)UTiK}S_d0@
zC+fc*N|8wk=3`iLy*$8JSk`=<&y|`&DB;e^_-UHH%Jfut>W~%Wz40oab~SoT)dOjW
z7^c_VP$J7H95Q*__ou>I^zq%u>?apem62d3uurwqD3S$*kXS6INyrYOHF7eIQ*-q7
zjGD=uUw(>Lqw@rP#fpqm@8}__8Z+T+BMh%7)iTU@`5Arv?1z)lc;1I6mzBs8P|lej
zNd6_v>zmPGCGG|gSWKNku|`Q_^ULrV=p>ouPSi(P$W`eWA`zgtNU~Se*Rzef?L8wo
zWz_qVCM`&Y_;uzpw_Z^v=f9>xy6XPW$8_%37lcG9Qav!z-2CAcUmyc9GhvnUt9?6!
zJ+Ki23v&;H3wny$-YRVSHGQR(3ZkF#UsUXimNqLQN3xC^Ynl)Tg6&|v=|&5b7MF$z
zaq9gO#=Ms!eO2E|!D_`*o<1YwRbR=_TsL$Lis$hfyKW76gzBgWU;*b5b+?y<{1Tyy
zpN+vC5Djr`Qpi@StFh`*fEBX~epN}xp(DEXo7BK_R|>h2RE#@9JfHY##34w%QsG3s
zUKiq^P@T`(DUf^nmW9|8`$?5vfEOxN2^j)e9IM(r*QMnnIv0gJM6of{HK$#jxAl|!
z;B2OKGXG(g=GTU8-xMMCHFbaKCBdZ+hK9ZNZNEqa@d&Qyzj7W5i+QE5w3oP+KOvKr
zKkK&9xb#x}XIbu&X?mg503+j~e$to%2_d@G*M<WD7{AQ8YYJT{L`*Zi{^lNtHD;K=
z*U0V0x8YiVih!ijRVmUOZ-HJmyl{-#b=a7&GjcI<TT12f^RYNbk!t!Mp%4A4TTG<z
zd)`v<CNT<sn&`;t(swbYP%i!<ZRY9f6sdL%bG+O$LatJ-j-UpJ?<mJLy&@K)D|B&5
zBZ~sG@KV6mB2~!<$KL%s8d(D24a-8btZ1W$J`SDPweMmr45f9X$Ve_H9tiEyiOW(5
z6Hr3P^iZYfW60Fb-V(YtpA!Gr!IhqR0v0lVza}{Eyt}WM2buLk4V7S<cEMuQNvCV&
z6qL2hRw0lzr%R7eF5hrvmFtlUZ%U%A%-Nepi#0Duw>B@xy%HM9%08~kBhcvo{5dqI
z|4vTt#EDSE<Sf!}DqhV>boI*nAHN2ps`(ymZL(*PwoC#BO6_&7i{|$fD|D#02(3#Y
zQzm-MO|I?7d+tF9i<O>+GnR6@tK}w2yR$@o*FYpZ>%>CUIOo08XAf^CCEH6qoGf{I
zq}uq4b8T4PJ(6092VnTUlM*AjzNQ+>9hFQ@KYzG&rSs+w`|P127DbdM$}-5+Nt+yl
zAL_G*u$T4~cm${7p%<M~c4-HKDq=+-J>o#HX8DP(;8*(`fm9^b<4GpTbHy&`TPLQn
zr>0z*pA=z<koxecv9EXkI<^C?2kLcCl({am?TIU}$Ph+uuQWq?Vu(>%#YPk9QsyQh
z0}M*!_fzkOw(Y=1MHfqTQ>dsErmmEJ1Bg=BkD=>Nu><*93OYkg)x83flw(~Sw*c(}
zB*{tiY13nGht9sOpKQwv>{mc8sIFiOO`$zpdb19bTEry=)x{y8@H8>4lGK{7L+v2F
zYn!X48Y86+B<fvraMafAp*^l<Tr{dUrN$^sZ0d~*AfO)F9qI~XP-uDBJ4OaPK+tK{
zKt@xt9YOE$`ZC+qHIxP}#ifOmjC9y_DD<?P6`h%Yn`+>s^Gwkn&+iVsJebeJ0rUM}
z3ehoUM0T;7aFHYJTYcQcHLrxlT<y`!4aS_~9fK~@XC83ESAJBi48l+29j)r{+7tY3
zwn{Nt5&a3YyrFAbqFO+|sT0U1M5x<CKO7WPwAgL&_z!Ox%jZT;$F%kN$+_;*X|fqM
zrnx$2_MOfOCu49;VTEsObe8YvI~@rL(U0j<bssqsw{d|8CNl<jsSo|Wajw|zeW$bF
z*NSANTY*fc8su>;wRs+aZHgKnA+>m?v*c0!4q2@obl|&*`Y&7G;`$~4Ni0EDudfx(
z-|ftl+xwx#)L4LT{WF_$jO0cA1Y8(Qiz#{IpZc4Jen%V1lsC)yCHsx-*YQVGzLffT
z`o=LI8iyyLBS>>*YfW^cY}dYI9CYhTY5a-rC%>&Ssvh7P0<FY%<(`ek`dY1R$9O7y
zKY3Z}unjlzsyMEo(!zdlsjvG8gfDG}<fR6;3M-81*ED39%#o2oDmEvb&UjJEUTvP5
z9Q1HtYZ=UdYo)u*U=$$~4pf@&-x752K&z(F$wEH$6xK;>7*Gu2&y3DyS*PIZwzZZ)
z4O<$(9x@sQ^(V+_P9GLrxV?4Luv8rytFDqb8fJjBT3hvzaofwm2S>DS8l25SK#BxE
zi6M3puUZBe&ILisy6g7=S^*Wqw}zjWsAd(KFW#<Shi6hM-=G3M?E6H>?=5~eTF=)H
z<YlBI9r!M-3K`aYS28-7S4Q~X6+)Sm6vL-T!Y%XUnEP)D{_pp#o3ip$PC=P)7o?B`
z9&d4_Ip^nq&#rDGLo5m1>aaRN5|h*&)6Dn33K;7f%Aoj08F{Di@lqwLA>G`*FJRNa
zHuB|E0)l5pgCyQFi4X7I(p>Rn@ZULlS^x-`PJdgMgd~o^h|@;UR{b5^oJE;?K7=WS
zxD~7FP8rK)2G5wI?@i%FE2^uSqX|p`8-4#5#^SR#r@M=Yoa9Y`@=`=t3W_@oCO$WI
z<pu}M)lZ-t7T;540F0E$A4qe7L5GZn+k!9S4_KFMf+3Qogqed$o1mgU3@bhwl-sLy
zQ_gTqDhgur^8(okwi>0LuP}dX6*#4&O;i50tSM=uU_=1qNE^_ch+1P<T|nBMdQ^Ur
z7zv`0#Ul~RX^eS0p#6Qm8N=C~;sGPmGZwEdZ(}ZhQ_mQ$1OwP(z)i#8i-{rsSN-RX
zu<j><iZ-`yN@d+kK)!sff|BUuk)Xa=VJ-`8({^G&Q_c{9KB|i#5LLqAryyROx_iIb
z?T(;<i(5C18Lcv;7J+Za06xX3LkVU|tKhe0>p>=4di7ALgerlcw;bfPL(JbV3eH`^
zRF3uSegR`a%_EZ%6V;L(=5t-!k6PKPDR~^=8d~7&N+ia|0uszUWK^|k`^RqHY#8>W
zo96Li`aq(NOJGyRt+cG{z=jcRWq6D)&4iJpM0LwTYg49wgszO<iLxmfW9Myr!m_T`
zV|<WcQjA0+>!a1$GV@48uwgR8V-fe|<t5e4uPZx8UG|ZAX{dhPVd=zv$!fvP!*5ph
z$L8^+0hPbDk?B1*fz7)PTaR~raHHA!Kdql16sVVgPClF<oNGBiAMG%o_`CK0l?2Gp
zNH%Ptp&RkQ8<M|ZTkP0i9{SvWbFRC-g5Z%aK*l&&*XpI_>j(5WpG4LPwupqbr8+C*
zw3auS_l^vn_gX7iL4X({%0=?UY>X`pX3P-%#SG<o>X{4fii_f{CS;nM&jiWRF_c_Y
ztOcH6@=0p%P_z2%5GF;XBsa+{#z~sr&=F>XZ_T+e4fj#+1}RanDcLM=`FG23gqi$U
ztP}}+A<;Z@seeS!5x-cHP4-))x%01}=1nHbwBENWB;4@rhl<QYXMZlIq_DJP(j?wQ
zJi3WP%oWG{pD+eepngX&Bo|y~PH(68rMx43ifDJlJs2?$r<oJK_1^<|9nzTxQ5PK_
z#X`SaW_AoddmCGwX4l*&B|Klg#{A|7|9#0-%yB*6mV|P7|0?rvzu-l)^h91bTez(k
z%og;^LUa}HLN~DlHLQ<$>g<P8RaH9U@FMKgt0tRUJNjQFkA2#FpjlN!(5Rcuj#v0s
zRiubt{(<a8s-+XmX9oF4VFS=Q%|DI}7^5yrHLpM6{}Oz)T8uX_^(c3eV{Q-kuTnO4
zkYvI^+XAb;*8J}geNPrAM-$r+oFulF%efN(oOHl=bNAt(nUDGA0XmAzTzrz6oNT`Q
zwg2~|$kh~}F?nzz?2q4L&4C^Llb2pZRD^et(BRf;b4$K|Q&V)gpwzD+;-v`4*t^UR
zll;Rda~>z$sb7=L?@#-G>%z5QD_yV_7mkvcalt4p&kFDed2AGVPNkdm!TyPXvjM+C
z-cwxGC+{_H>K8ny#wQ_R0?AH8vPP=Q#+iR)2T#K?kOQV0+v#3i(R={4nrE8zL;N3*
zTvkdc1*RGWa@!Dd-Pz?iCv4<R@I$^FVh#xMze$dJ8md$8`q(5UbNAKe+9>~EYNfkQ
z)G;r^(Y)yz^ZCAKhupHQdC3G7IMSS(;(y5;cRj2({Yx?GqS0pmuKq1J1~9V<l0~LS
z#cJ6vB9_t@n{k)>zdeJ8V&=*Y1`$;!CzxMY{@W=Of}2;ScXw>OS~|ll@9w`Z69|I*
zQ$3;4Y!{c;{4v+ReN&;l7sI&ZouuLA_G`@7PWhKNh2EAGQrkzsgsf5K$g>9~Q__wq
zWoHTnKVC%@np=PJ-<Dp;ZL+Y^qjh<@xxc%ATErsKEg+-mJ4$$DusQkcX&^*aT19CA
zZ!J4FHVM;iUA*ay@Xy>Bgk-by!N9+MpgHlZ$Qt4nM~IuGIpQZ*m^YmAi@Frbk48&>
zFf}jAoDkrDjZCs<YJGPQI-C}59{<~a2dte^tX-y9P`uph&C;ac<6&)NgQa*p`h$5M
z^_}~hA)WoFYSa|cB<NW{<`(y1XgKrD@B90IExV+_1G_^wJ8^<brRSP2bn>rT8dkGt
z8KL4F7-z1F^sfuQR#0r{J{25uP3$Rq#9VrIGmQ2UCDgB(s5(@b_Yd^nNHyA0BNdju
z9*kA3CYo*H&ka^VX2N{nE!pdB+-8E)|0<atVqcZ=>5?`3n%mskTi=Gc4#J9~K>jD6
z9;tecG;bdgG{1|soJBZtA`wxH#i{pl&C9d>W6<zr$zl^ksV$#nHr^2wk*V*Z-3BCi
zDzL}W$}>hiJ>0zQs-XPu+lX(F4#vSgkWPR!oZ?Q`4zprRkn1mfr<fa9W<s*o7MgS^
zkcwhF<QB8^&Y%}?B6tYyt9BuHD~{1qBh2&^|68TiO!StJnT#cqpn^u5Wl8>D9_p5S
z7a8Fsd_U5>HO4=}QAc-RA@e*|f8Q`OaFqXf^jM!F?}}kd`SlUz9sT?xVn=vzR`6*V
zmRdGXOgG;(f;N5CEW!PzlO)4`Uu1sNL9Yd`pY5sBub2o}@oBaBT2FmX>Tn#VNs|yc
z0QE>Xr^kGGT)U!a?ZgrmZQ-r+8Om6@eDxI$Bey8v#f{8rG8Qf6Pyn6CWCer?vJO`U
zPT#8Mdn7KV*n~=j%`|WG>X*m4fdoybAASB~5|fftT@Uk<Ey3ZrSmk-*+!c__z$S~K
z$8MY&Xc&in3jB3qJF)xHF=u4mi7oT`IY-TH{oD66S~m^PBG11bI8LJfbbW4VwmcZH
zZctl!`@xkpn2NG9*$}KtQnfMnvw$$ncpgY}w|oj`@0=+atB&k3V>@e85+;<+l4j))
zizH*zm6{=^1KkJMFUdj!sYf}}ypV4fT(ajM=9Y)`w__{jLV}@fqTaws(a|_~H?K98
zZfLV81A}=uKkOkeR0Y-_kGV`~p?2o~<pwUUYSWa5%f$pCu`-!=!VJ<}bJJpD=CPoH
z|7tfDYpGP8jEE$1j>nZ`cHSI($<5l0%|i-8+lY>p_g$T7j=fR4u(FJF$Sreoo)Y5X
zlW=|q8E>k<UgO#{4Ic?bhiypF$^@M|-^&VK-TKliwa<}C<rvwyP^{wAyM3%hxj`9M
zvr<D)i|`NmfLJ`07}bz$#ruZ%DS30UCb=&GY6pN-595<AfsOOp?qQmQvkLe|$wiFI
zALctxZ3lcq3rGcoa-p}r@`K~li=b?h?@7ZHFU<UhcQ~$jv5(l`ILvxWCB;hZ`M<9;
z13qj$dZaeb^FX**OC!YtzAOE#dH(o8=H6|se;*Mb^P1*`Y|Y8wy`YStLiXNi7}3E`
z{nV-{I~gflS%-`!azyiE6?i7B>%D=E$J@#faJg@X5a;C!(t8?KU7-1X8{b%EWwX%>
z--^*2dKg`!0^59qpEwK>BgRj&2}kX8PXC&(jLZ{(zr3!8hffr)6m4Y@ej#U!Gy4KR
z--WL}mdJZ$HS{h5zXE5n*++~uKbRi0<?~iDie-p&sxtDVW|qi7aPK(v>{#=GhM*fd
z<Iv@RCQ@FA7R$(NmB?HJHGgAtJk<6`aDXg0DVqd=^eB`BcIQonR>YV#5jO<LTc-%L
z==ZBhG$zXE2r}0O2Yue5ZPOT*zEFI6f!U%|smt2gDrkGTer-T;F<FOH={1Utga)B<
zx|pB85M<xZG0o)ApdWc*6hFoDr<!AD2Q~f&=VyrDG8G4kC&y9J_3IO6=WT&26WWT{
z9qBEX!dUET)O+ot=8>47@`GA#v+VddzV(TXr&hS?ahtjNnxK8{^e_^Al6x8gA0~uK
zU2M)BsG%ZUaWnx6K|mV>*96-LnxjFR4Az^ZMm|FyKnMkpGahL)W-ST&x<%`zQTaGd
z<=TuiG`AC(i3pBS`+AzEoo#P_t(|POoC2g6LAz$j!ggaOTHR?pJxXsk){x3=AbOR|
z1?^m**I#b_&=~Y|Dj*JWuBwV?GW|D^S8uw^d$tBGaOi=QG7q+#9>PO>ySsUEyMKt|
ztyLltfhd_}j(y$#G&vU)EQ~ymmELcdKfSESlC$MF5s)I_hik3|JYu|I2fgxG8}a!^
zdNKE@p;S#&o6w7TYLU@&XWQ1dwrk?H3~B`V=R77ZiJ;3D&l&wog1$PVbtLGVFodM5
zW1?z$)eIS{l`L{kdjrH&MWo`9Myt+~O;2XvuSptJN%huD(L0AN39EUV)A(vhz_jOi
zpOGq+##$m!#12x?EzFd$ffWlt7ls3F@_AY()8P?Mu>YOr)T+Qse_`LG5kwJooy<%k
zECzBAms%0a+ay*7iU`XFf~O)hDmzKqGKV#p*G>&eU(~vZJs>u?_|?9RMQ36ZOVmPR
z&Yqx)5W~!Y$WyEk&KI?1Kun5e8GrZIvxgev_*F=A+$46F`eu@`<WS&qpSRT@q<b3T
zIYyweyStl}b-{n)Wgs(06T{N-5~-Ee-q`69dD%0CtyEGbrpV~%vFgqf*4?kQmW!e$
zy)|NLj!sBXoljbKKij%zatauq8-&7L(F-pfY9Jx}i<9j&U$v1jZ9U6O<R@|vpR!j*
z=;s3&(KVd#A`esZU$mdC)rgP}>>v&fB1EAJvMDaHPR43=i{jKcX;dslj?}@^=BJy2
zKTFVe`N5H9g^B=(QT1<`b9;+I?KvV9=?|n9L4FUeq>vScMklMsYpmNQw{OZxqbB%S
z>z`sHkt)92+;AxPk&jwQfCp_r*FZO&-e4Uu_}e_^u04GO=Nn!ryM`<d@Pla8YERgW
z0l~9C`Sc+tqR9a2K<#M^+uScWO5i_aoVQ;3aYvKCm^sYawkP1N@on^V^40-4s`VHK
zcb;|C3I7-_4J6{qNixPRe5}y==|BE4VKK|(G6W|5?O<!ehXEINY$uOAZz`!Gz`|eR
zw4OSmN3mQo#8pp#Wf`NUUSdv949Gu<PR;@dM>>@=5)Z4V#m`3P2?6bY&?9MpW<(w!
zBMER5WX>(s_wY+&L8yw1WTX?|B$!%EQi9r_V;NT9pd0k57BVK=Lpn$##>tjmJ=Hk9
zpzV~K+co7TOTMDd_Y#pr=KLb_?<K*9KF}E8h#KtXW=#f2%>1{y$GE$qZ6>!0VqH&I
zz=vKT+~d^Ne&%Zh{=MyUb}`Qq;|b#3(#jZok3QDCvE-bvV>N!r3n$?_thcOhM+a`q
z*UORb_Ojp%VCcN$u&&M51DIcO{3Z$*0V0O%%Gz&!`9;9W-}Frah5B|Nq$r+v#$k0H
zsBc6C!K*G56F3GFLbbiaY;XksTHCtkaGVj^qKjWan#Yn1t8jR*TqISmS-GgA<E)*9
z!Lo~KMpInvsiBrb71qfcUs<nDZ7+Z9%O`ARfphq72(`Yt-1iv1v!GZu$grqf)w`2r
zB<kxFsUTMW>>%sDF2Ox>IKTua`6G2@y6toY$TNp|Yca3Y@=4a53Hp}dgpumpYG_iX
zDl4=i59y1(_TcGd^k#tUf2mbq>le*-Pm(Pw^E5O8v!dEM*|)uXfu8q>^1~d#jHG<!
zm~Y)RK@W_mIWo~xpfaL!RQMCtR}bs&0%O!~HGI4^=s(ThQ&J=xDYfd18F(Z}UX&oh
zq)EVCG^o45`glWdQ%<_VRwV}#;X;*4aa7cwE3FNu+Xt6(2Gh@r<j7#0ie6=H=+>cm
z&^MROH7Mn7A~p{`V{Ja_zuOld&=QJK{O!rhtshV6QS=wkJz{?f+dK)yzhSlU^K*Xf
zMYskRk)BObLuF~aQ9Uha<{*woHt`C*0T_}D+pqz~A0z!ksb2h}bKwYXMsi$~WW<lv
ze}R>lu6>gPT!Cl_2pk&WHxV;+%?qqUHr$QD#{EOIb;uo~*c3uf#KM4xkY^ls2i~wi
zYdaKuE$_mRaLiv^W&}kBw!~JKpTXtedNkpr%ZiM9ZqT=IJ&*XePyvZoKxd>c+)YOE
zfWQM|^z*XCCiWc(;wao||JS(rxxfYSsB^4AJT7>3)j}uNzY6-7sP-K+zMLL-YJOY!
z6RCNDF`6LMYt{Q(<F091{W3z6Ke5ah;fRhpVVszzAB$p!1W5rE6g_UVx+ltPcZ2qD
z7|Erxp9fl49HpX_(bjCA?H?IQh^~rw49liE+vc+Ff!*Uc)5F#9ssayT2!_PK@eVdI
zvc+G*bxo!O1?C8mdns979%ioS*lueFe1hTPyNXjwOd}euiaGmj?bKp!V&YM;6eE^e
z(Fv+clC`u$(BVLB-42FN4I!lr^$?qY{~R;eIyFD=uPu5IKpNJK#Qnh*mzG(xE(!|u
z-G)u%H<{zmi<IW-XoWr+xDsEO-%H_KQ;mnf0>%`M{;Hd-jFo|<dA?utPSc^qIG8H&
zs>A)(dz1V_W5Bqjkhd<{bhpPE^mE|G9r~s`_cT#AvB*ZXWv(@PmA(a^6@{*$3?0~_
z4j)B(mzwKe4?LQKMU+jE3ph!_CIcH+9haJs+x#OEE@QcfFhr`G8qNDY)&pXjlgHP9
zc|a}zyK&jYR@MsrU7VPFIpFlw6w;VfW*+l^@oHYs@yFVnQ}$D&GAjJ0uQyv0cWW8r
zGXn6*36N6~F{02D0aZ#`pjSy>(H5^-4}5aoA5N+%D<VA%vHbDp)|M6Ljg*lji3C%3
zJZwF&>fCitL;)LF1|E3GYWa*F$R=gRTS>Tl(IM+P_qo4~m@J%;p)n~c>Iv)9^B-PL
zZb?K{O=Seiw3wVM%D$;*z1I6#?R(~BF(=*{@Kll2EduP`+uF%Rj7I54?Mb#@8KEzv
z0G>`Fzgek%zgthd*=`$V19yt)Usev^Ho-vc|8z(AkwjNhUYZ(GNmiy{NE{3V(B`YG
zmiGjBI<_kZXoQqOiAM@&4RUR|Ew~*0oDN||zrfuCU6hFxHB4<t>XTIx!y-5=)Vm*w
z&6{oxjzxzvDokHCzS!n)cEB|6xz7BmMvr1D<4soR(-K2SP1Pn^aX+^C^gaZ{IG<f1
zjsU@@(a#z$&Gv~>q^yJ^DS#-}1n20=u}1V$ZQBO~NL>S%Q${+u_e!m9ux1YIDAz_x
zdLq#;^+%Oe9HB4e))dvDPALIUQJ}q9)vnrF_Zp=UQZUkphk0Z|)VSH!3y<r12^y%Q
z%b2Iq@H@cj`AOEh|2a2`(l$nVg;W|m)mr1yzoT!{iT5j}THjh78*%G$DCYs_PX?J3
zxa@e+UJ`4H?ZpfN*6Jj%IsugcIPU-5DEmx<O32z~*AaA(33<1baYtj|%A0kFQ4B19
z78q20sV{PRp3(ZwHsxtPkb-et8$l;YMyseA<J|>qE_x(DM7yjHwk#VG2@ioaQH^h7
zJh$ciXP><nY|M9Wr^Nx{AdkV%EfZ@!Hl8@V`fjKBU};eH&Q{`E;2~8v8!-uReWF!C
zFXO$h1GY@nAej8>SYa9n@hMR~v(_x^*ZzwYtu*h!U0E*yGlG)%xKV0AYqNZrj_&i=
zk-)4x58(ephjDF-K%Uo)02n=nLapH2!&>7tLRfsvJp7QW45WaxHz_to2u6!>bhdiy
zS2JO@vk`p+_o}LbR={vWiDQDz>>h1xFEJYtDP*}-dut=S6%mj%p^hfVzD`<W{d|}C
z&pVM%G0k_b!zIru^HRm66pl^=-=?--X$OvX9pF_`i#?SzsjniXj11Cv6?l=ocD#|3
z4oV_q0}hojY6}0ANj+(mISL4PwcTrSXevLP-Af>1$t;eAECDmQ*!+58=)FXO;kJTS
zQG0jnUUS?xu0(!kT%DW_wmdW_geRRfzqan)<&dEi9JPF@93-9W7>g6ZH1!?F7WP_d
zS<U2#3ilML;t94B0~pfj5zFWhwvK;dp@m2o9YK6VJ+<C$z1}I8^BM{oJOwfm6_Lm%
zt$4zIZo|Ju0L4_n6ZXb+&PGD5qa`og(@>0`njq|^C$6?n-()tjFnN>+uR%!Fl1M9A
z9%}H{_TD~bnI;)Y=3Y#aaE{9sTUVtxho(Ta^b)Gj1_o*(K|&lOezWE-aU|l$j}+G(
zwJE4v6p3~s3kUXedH|&c>pE8W*~sdP%k9{ULgd%|$CB=<EZgXx?U9LQqR_kwiiK`0
zz^6!?-D_;a>D<EG0j3be5wDG0Ml$8pivz9PsbP({ty!{pB$ZWfn|2q6*F;&3vNyc7
zM1&+WNcjJo+J|TEG(Y2?sMa#TEFETUlgD~1%MKDr#&L-?*x7$R7oNJuxr~_t`KkJ&
ze$r$B0wK*LC{OnuPrmNhA>=oq(AJ{IusaP#azC<O$#cm@&WB7!3(+Fk!xDYo|E$%s
z$SmU?=@H0xi7!C59oEu~Pnz9!Ixi4W*qhPKB1*PBrL7>%lGYN5<$I&cN|<Gqf!s^#
zEb$Z$5$}Jf#CmtIQ+6$T6Sj(^@B;-#tGRjRM}?t{{1aiZh6=HTsg)L`{_1FzPO*Y{
zBRC4>bc`3sg?M+2s@P?HKhL=iPb-@!M^!^T>NpnW8-Dr6vGyCWuAxvne0u!|4WK||
zM61KIE%%_b#H1iYv%uQ@MQ8zlFln%pPDn4iL~vNu_=xp>YgbODP*{arrhheu?e*qT
z`)fP2jH!Y)<1Pa%g&I!^ovQxXOo($fvKxtGm6epTgX0rHuT{WFv-_P^A`YlH4yBU_
zp<^*(kEy=h>^Zv}&+{76d<!RK=s=_2bB5Hd${>7?-&^b{!6YTvlBjMCuvcw%$W|N)
zagNe})u5J8jG<!T+_yhv&vfZylIyN5^VVXt)Vqy5gbe~r{}GPPoWJb%!pxi@lHK!u
zk$rf4XikRY<UBjVo?jBWj=xBu_hUV~6Tur7k;sLu58A0`T#bmZ6bKO|^;MV>eLk>T
z-s)P1$vckvrcgkP3=DDh9Hhf2)pL?<eZs2f?3jWQDL=%ButjgGuxt0}k$>M8t0qsh
zXMf_%$%xY=8*)iJ#&8HeP}oxQ6IJ*yd)2d{IO}S3SwRV5CUUC)O5<W;49wxpq4wlY
zc`{WzgnnMfk&7UKSY2FX&)C45lGRx0E=8-xL_(J*T{hHygD+t7=2jx1ipxB8xF`t`
zl#5XF*4VS0C<nkDK})eBBq1SSy?N<=M3<Dc)PEfn8zB;9)q4BIDpw=QAq$mIDHsSw
ztS}c}%LxDN1yjW8aD;7zUP*)yg5dGpR>4OO+0mI^)|fK`hms~5G3xrg){rNi+gSgh
zCn`!$Xremyje#LBCNq4%6HY0KLGm%(h52~I7H@E{y}AB)i0r!@VNDklmlDii?*Wm+
z#J<$};6-a4NW4~N7=qC;5h6SPJJ5dRQx{Azm04L+1uPh!6lDN}e0JDc6~uL&B}D#j
zEvT5nCp8e?vB#{sb<Q&8kE087iyrahUr8c(>DA_{2bdjdT+}p3QU63{2c7=bJNAYF
zu1=y_VAf8SYX4V7T0a^rNt_&7(Hi6+C355JA@+pBt~^4UBy;j~yb`r<ZI5dPcj|_i
z%B!hGFCa5%a7+7}j@FH9!(=l^hZ4$SVCWg#8PU~t|E^^VcAjVQpHk8dP@hQUios^>
z=uoZW5Ox3(81F225`;D8eBdgFR?Q%<o&x%{igK34{XX6vJ)L(I-g|?m5PztFcvOV6
zLfV^Rue{l{ja?$JBfAm##w;Pd8asp|CS`;Ki8AOp<!GjaScCVT+$Q|pmsmroN<lcv
zUHJ=!7o5tG_=6M@B&6Y5WrhWX=3E=4vVjjNR_j&S*{uFmkJ_Ey3DFz89tL6|WnRfV
zK*2vY#r|`ttFN3-LI+-&lj?#Q#66SLuM4d|svN19NI3*vunwrKhHtxnkl7(KR0Ih<
z`@DrT+hkr*si-M6|FFGdpcW$|>+xd<Ya(8_e(X1Ub+EY(7k*5o7e}TJCy)HESaol@
zo!HJLds%ilwiL;2c#M=g-(of0=M+Vf>PC2yWmiDe6@uAlYSfBs5uw)Jz0&;R19lEe
z>8;W-96=HjA(6d^YwcDEC@B=V?_F5PIJWt=o%W{tOxf^RB@HEI^&(FZwURW_C)hgv
z7^)P{gpZOf(`-thYGc%US@xhRa~-pWt%X@4{E-MrF<+ZtKfU082sEac(awc-&^~7)
zLL^_nZSqb@&r{cjhp#+t=&NiCox4H47J4AEOZe@d8aWxHO@d+<*MSMD+~Lf~rE&I0
zsiC5&GYMeg2tdAyQH33QOq#>?Lm!fr=B-0Xlj0|cMxAAEKI%GO-^w0|YSy=M3`au6
z2k=uA-@|V%OgC4*qK~Jj`(7Z^2xkm?1J9w1lfxfHs{WbglP^1ShQZ8WcN%&0Fe_I>
za?z&0SJ*GD4Bf%R6XP$1%TIJm5L*&B#m-oH!kRRX)rcXFyR?dYTI>&w-0Y&B@n(Oy
zoDGwNglgf;#;Q>-g+Hz$`VueAb`$9$eo5QZN39Qk!1%&G#WLbx$Qg_VFpgCF8f~}X
zB*h#BR4yJACa!vVr8W2`hn$wta#)!ALS3{Zqs9$8K~h;M{zD8+eLl*}>Wt+8Q=je&
z0I--=C~>xJ^=Ca+d>XqAX`JN~rl8XXuX4$p@DtxTUmqgL>l|INjEKX>syAm?k*_&l
z7lllzXLvIh&yrORS~u}ttNRP6nDbSMsF<)2yYe>I&}0r7sz=h~FcO}9%(~;4UTS!s
z<UR;v2ks|<i4)<w$2vs%k(*iAP%qlY$dw>?mE>DSMW8#>ZywwJnMaD6KD@>nJ<(AH
zu9pI2fpx_x<*<+V+w3{kDRVi@Q^Ua{Mj@0S#CFNM_L=YXED!rzz$C7s#@~3yUVPLy
z_bjfyNQ;PF_IE!y%2;vWTY;EKCjbk$Y_PTO8|IywCsM4lR_YG1>3Pbu|Cl|$2|d6K
zq_$HefG{rbP=YFd&$9bsG>U100>ld7EC%j39~kRwO^hR#<TBvvCiCH2T&?kN$9X18
zo{Fmd*t~8Un)cjnIEl}EZl0Wgl?k2EBl*oNf~*e7Agtn#zuRB+F~xW!d$$tXUYFa&
z3XNCqrkIah7mCtQrylLTBf;v5<e^Sel)W+6af}5`t>RF)YmWe1UtDipGu`Fk53<-;
z9yi2Xb#<Y=|LTxNn3?IN5(+G-&>p4~az&C~6CQr_#qgX|Qdy{{sPabwv^^PWS3e%I
z486$ts;(A(Vhr-J$D84^J2`VQNul#M{~ngXihVxMo;)fvXQ-SAFwsgiEQ3S0@@|`+
zyCOb?(^jZ|6V^(U`tBX;;~7pFAOcWD7>)ps5NGcHz<RFAS%5|zc?8RlXqQ@gr`4l?
zlPNWCq;y~|Ww9!K4sw)k`KiV(3E$n($VrP;WJL%%lb*?a3;(cN{ubh44*?N@8|iSR
zdhcP|86Q%HB1?vuO=f|_XBXaK(Iodt&U>1d95XS9i2_M#;p>HVpK`}JA>B*7FiBh4
z_ny6Imf4h?t_G9x2!9)i7E%|M9%;8zO0=ywhxK^)BoYheogZkgyTSD&lbz-*EoC;P
z5taI3vHgpiACAUtb-Rn|#15B4XsK}!rS4g1w<ypivEMr*iyT?y15M-`Fy5u`3VWMy
zA#b&Lxb@?E+;I+Op^ZDg?!N<nfp5b=pp=r4%ZVc;NM0X{E<w%fYPFl>OlR&n>Lnhn
z*~Jl!REL*^&$-Pt0O3pwL)0CRr6l~!{?u;&liq%LXgv-=R=st{ESH=u3R@KrfJltT
zwEz5|8NWSLs3b^kT1LQtmX>QV>fPSvf&a8VJ|dtDNlMUFh^d^eB-L1Co%)pXjL!(C
zm}Uxkhw%06v}wt9%h|{V#!gg}kiyQcKvE{6Z5I!=|9Z(;fHcW3siMuVcOtDPco}wE
zr{`Vgt|MS&AWq%)u9g3S%Z;whCCj`Vqy%Xw%6UP(Wp{OnT*9frm6j<&#a0Dc9mY6G
zn}lyujaHn*Opt+&M^^oVH9X4MS2iw~i?)V=fn(GYTdj|_I)<i3skfPVSkP#4&i9bL
zR-3twWjy~=1pmbPqC$LE#PGT^J<b%n2Jk|uV8#_bB?8e9v30_}Y$Bgc>Cl4W6B2!=
zOFFMbnE>@+mYo{IX~K+#bWl!OGzwS%0A7wodvJ-ByW9Cs95hZ$HXja}&SVZRhE&S~
zC6!CrFNCkj(a;Aa048ILC&c1#&}(&$ZLh|h5p%4;gDH$u7o>+L%}la)jKb$Yfx4&Q
zi-=*(kZ_TX_qNsbu7Cc1l)>NneqVgtVI>gM3dLfMP14ZOp-8)b&kOAX>2j&spR^am
znj*@^0;*pi%j7*;+2H}3!W)@m^gKyz9wWPkx5Sf|vQVwthhJ<MB7XC#sdkDg#WED%
zb@wNB;b3!U3dVmeTkZ&Gk0fN*zGY1>$8}`0xgnP6kBW?lV(WNq`<@#>oGx&CBQYmc
zvCH26j-w-fLk4-goQkqFX8b+Y0d~V^Xdxxl_!YbiK2`Cb);k}DiFHf%5dvJ!v3Tt#
z9<k=kxX`kd81~C4W}hKc0mOQyz7xc1ydeTpk>q3%$nI|%y+fBFTQesAQ7fL1sLw91
zhJVw|`Tr4~;F5{z@KfR0Ee)|ybAcr|f$@AFN3f{I-qV)vOB5B1Jgm}S5*ZYjayMUU
z-@L{#G({SvRx}7o4_wQ8&zNfEjr3iI`An(<*CoyIz%5qrFvrkjKpfFX69vKFd&qkI
zgU~XbpF_BmoJgdSWE6}4IwRHEz270G<W7Q2Kn1)MKGcK1h5wSLFAw%sRk&*pkz5%G
zI57Rs@O-ZG(t}H?N)G{&Fr(g4;Z^GpA(BzYJBp2hGXU{RdWN5xV80aRY#M_^f+!1r
z3OrDx`hl(1Gw-zyx+OqXocd>#RAUkEA4`$akZfnMx^BMQeyhZllOB(uE1V<ggrG9A
zX`6DR{ks{OlN%#|p&*(nb#$UCuCfmf2n`oiN1#uF1lSKTYRd+@)0(hULJpKWY7#z>
z&~YDnAuQ{%?iXBTAKkPuY)i-P;;7{z)tV1iQX)QRr22Wh9WnuHO3FmR4VP{sYUl>*
zg$K0@<imK$`s9aM3Mr~^`JeW|UgqtH-xOrDXu9kO=vdIoTH0$Sq3iw)|01&zRm?i;
z!`rkKgyN9eefXZ@9JhPd{P|ApxhK==T)LC7AzAdNZ8JDBv@fy|y$zjJs%Rr;-n`Aa
zbe>})4<sc^sx9eqgE(8#Ez~^O*M~;dSC>>3i#>=@z#dW+$L*|qp2rM$qyPi=i6e%|
z`N=Npzq4@*qDh;p@UVj@=E}JpXdPPZNPr_m5=m7lsAF_OjKObQ@31>Pj^9QOd=1P+
zybHd9X`Hdkyl$TM=SUv}&!7x(8Hvd>#*9|mHk;M2Ynv^#*yBfNxl3g<*}q@mL&PPx
zq(LbblKk2vb;&U6KrZMljt>D3o<)3;9oD&p6?3;Xd`1#-@M(}Z$wS$^$J$)=FCm?1
z0I2wcr0nlJsMf+ylx(mcCWkM*30zx1Axgs#uk*oa04kW0WnFFDei<E!nnxc=XjK~8
zE(x;DJM=(C4R9c8n}{qS&1e<Y#lCm79!aJf_t}RL>!cz~_w{;2yx@isRI;#c;+fB!
z-u7p6_0Sl=eRc(ivy8B<d)w6yV%kgnAaG)ei^UTwz=~^YEt;!mQwpV5)e;$Fkp-F>
z+$sFlq2|zJpdJsnS|t$~ej-xEbhLXt6Drq7lC)mg98=fr=I32%PrEgAD3oR&5L)!L
zAfe!(RS}vPE>9*RciOsbCh!O+R^WdT1CV4BL=4<_%+VF4om^3kLY;#7!N&Y9!+z6t
zH1bASxZko1CAFJZUo_cXmEZSCRu^qmQwM7ubwwgKDVoLh&Z`}b;7#=Wf@WO9mJ@do
zGY+(Mao6yBAMYWf`Sms88_>pC?EMd|@JVC!bz}^8;0Z7yg`bD@4WBeikDxL@0eA%&
zh*Y;<9-ewjk4B6gA@!274Xd8=Lh7<t?B4fZE&v_~Iw_()wH%{bC)%%HixYxDDrvDe
zeJW9V%FkYJnt!q3>HAF5C$t*>K+7A<tN$cY0CkgdF1aQUnAP$*_Cq5>hO&b*r4}dw
z2U(dPezDk0;;Ro~%V0f0Oy*B6G0fZFcIFI~umWXQIQnVX{Plf1?WzRymzIP=NM=r%
z<m4Ljeuuuy50W^J=Zj@dyD#ST;(Bv$FW_j9H*Z6O`1!0SL9UC-t<$gY!-8-k@#t`e
ze!S9a<!{FO#ApM=tRTr$P$a;NU8VM-l>i`Mo*=sJih83N=D{oFQ}`n!z^8-kjzRj5
z&SF5A?i`@MQtS@x^#CR+3mz8}A=wf4U2Q*fv8xRem`wSoT9!gt51ZX0t!<)n&^3~-
z7-e8J&bh5e?Jf<b{R1+KZidXnm?23{f+^TbWUZ;#KH<wh3D?)@<XJA8Nwz>t0%~wZ
zLU_R8a6uz83hPCJB}PS1Oh^6nroAvrhy5r-C?EkyPNcf-nECS^&VLyn@y*7^4s2OO
zB;pnbLLL<*P-xrT*7Q!U{|UNMTS9}bIoU)kC?FxU<m_~Iz^Av`$>T#$@{>bpp@J65
ze%<c7D<mfw#2ccl?1G#u4#R6Dc87w{MkaRDBy=izmy6kZ?b(;;?;TB;u-IEo!l1NH
zf;SVX7FLEAz8WqOB!E6IZXqEMmV4!Iw(EOy1{N5nSC|Y~S}Tl*?+7s98R-BRaHhbh
zANR6P{i=716!R8nnYu}_>Y)kN)>kg@mZBwZ;H<YKePuWrz6c0?bAK{hn|K!py(W;r
zi2{s5bHtWh{I>P}oy<J22jK#ahj^CI3**(4bnA^@wI0HduCA#P1CnfZgYW?odiQSU
zY^)KQ!LGDE`50pWV2@S6lY&wV%=GAC^WyI~8Bzp`8verX1!_%DW4D_3-;Z0J05gdW
zPDmit^orFx&-o;4N6xw7>zN^igVf=1c1F5GFa-i=P&(KzP_{XCi8D>2B4Q+F)R0Lm
zFN_%VEVJ(nA>KwNfVc1u_5(5}`Gp=`mgsAPF;j_mldnRwWowU_yY*EhQ8mE<>KwA?
zv54c<+{PYrp4Vg2=1GU_*jbbV+|Xn02H(>?)QsY<<?3b6^+?^|JRm?xO_eXQ!)XWj
zMntgZVbdIS+G~|o|Kxo(XiJn%aWQJ+$JULTG`xDwcqQnlvTN<Kb~q#Wp^#`O^eM+7
zn$Q{IvD#jK8EeJv6_ZdRAUOJ@{H-==X(1LvnrE^O3t)>H?B-mDU9ieYuvX<w!7M4R
z@YJH0Vni|jdBS?f!mp&PAON(m7HA|t$EuIg*Ybd$i|VV8-Z&F1_;2$p0N)*aW|kBI
zt`#{njF5C%O<}E@s2z|%l7YK4_*3iY-Y)U<a!wRWEL(JH5_!Rig7+K`zaS7qnKD*?
zS+$+87QdTnC;&$#KZDkj&>XF{9x>nP6(Vr~3Y+*alZ2#Ll*hhp*7)U)0y!v6Xob=v
z<wvlxnYtKt#ZA`aOeRRfRyumgSAFo2S#XQf%{%2yDZ_(7Q&EYIwOic9`s0lDi1F=l
zV!<bf5nN{HcF{(T_zvtDNoI*rmwar!HIvm6V2U!-oCNS`43F;<?D|Ex8u4fm&JHGq
z6cB>SuKHEmbM6N{KHoVJM}J<eeXJevPeGduFbPQW5{Dz@Gg3|a+`9bkP{G8q==LZr
zsGk{Ry}Z*UlF5f40dJH-ZvmB^_eMw~>zGn679uG+k)ZK&*IP>xqU16;_}XHZ0VMP_
z8?BAWQUByWXaMc`vDPmmFa#-~S3?;|(c_ZG7O5r&^?dL#)N+jew26ow@F3ylJ=V&e
zJyyHRV?^}o%e?$AZS7-Y{^9fr<J;%-2D1gE$~vN**9%-}-E|6Y3w#snn&__(r?9|r
z`lTmbn+L7UQK1Jo>HI6*+A`lbz>Z+%YsKVca_v6$f-ploq^uK6I?LJsx+N)gtIF-W
zQ^6Xrw!M;f;e%gb)^it>fvC$d4=7a$R*08_bubd|A@o-Jzl9+)QHS_j#CEY6o_W@~
z_Ivy_akdE);SNGmNKow>!@n2<02_^(uBSpiFmn<`eP1_I?$EN1B^~C)rPSC_^|$7s
z?YN0VCkWMZjBz>mxH(77w<l^N5(=yo55zEt73@L{`odm!o!O10$QPm->yOb%ApBc1
zd~;Y=gm(%7LCM=i2GWBz$<8#vh=HGQQe+2<cLo8m$Vxb%O$mR*6{QcdeqEKla}`^a
zKv9W@IYVi)S;@u#5%?|8{wzQr1@LBxd190B6Qh2#EGNhi;pCcf+yuI^CSb~MU2Hw@
zkRzO<Nw=)Y_Whm1E`;qO@y&g!t^;)5!a~nP(H=>Z#o?*9x$TA5yF^aQxnpjtCjTMQ
zS6(gYo*ruo{}pD9F*vTiFzde~uuRvvq0t@+zL6ryauL^yR}TybPu$`B3^|;`UJ#R)
zT9Y)^yv$s<jYyC#&&)|FYOZevrzb(h4zZWd3l$KWz&e9OM5xva5Iw<uvp12x^WzNA
z!qpGm>=`#>WJ!g%$_8|(4{V8vj*z|lO%FS8noF#V(Iv3J%O)Sh3&58rB&A;YI=uUL
zu4U});Z@j&;3_m$eKh>iP>fq&TMzP)sH@B7F+e5pT*Vthxbxh+t0WfCi8;%y1gasT
zMmhZ9R&;MD0f2Osr8N=-kS<UBiB)OmyZZ{QiYYfTXj6}XXEDVIUUkC!a)I+RHX8W*
z<L2e<%-7STl0EGZrFtx?;sLAXM`u^wk}3*1JPV=|rB24%7l&|$C4yX8g!e?|82U(6
zOtq4ihwkFHk_)Cb2PsrQKP%%pz3HjKR#jYDLStGE6$q9<2U~xzkJ>&a(fOn2T?fe5
z@Duhj{5pQU<BxXiFw`od-UEx=p!SeK{g{S{06t<@Ag7+#WQ`c_yjavF#}BE=m)`t*
z=*4X3p%R&q@?q~EH$Qz&`)58UOlSfn;)Ky|i=uZ`1t=DQf!egPm){w>4vRS3JrRJm
zp8d*hW?Q~;uiY*NxK--VS4-?2n@e|DnAXF}?MZMFClbmDDNx$2qBA6xq3ST+GLD-=
zn64~5;E7Uiuk*3+lVu^YQF3UhUSEC?vspd$OL#_ZSQ)RJLnBP=KOL1OqmK#amvGlP
zy_eKj?WO@^uoXN%yQRrHf=Nnz-?iTixi)kei!3M2<0Bwp_CZRyDSUKGrytk$(F6t9
zOHxsqVhByJ0Bty|NqS8}_o8n5vsS@rr(Bfkf~CKJgJaHZd&V*@bIDbFtEz@S$y@eR
zHB?iZk(8x))$JMU_h6T{OuW!S3P?SVHn3!_=xz^Ot`Xt%vT2}d;&3EIVNb3}vBNCQ
z6G)|st(*v=R8QPsX4HXXN<0Uy5cW_kIA)|;U0^?PT$@l?Kv|{QPLhzp%{STa87ztT
zaAlf`gDH-4yx~@Bru`4N2g65=>ts4Rgbq!STE4W@V5fKktpBUf!N7A=2%40u*_pQc
zdzV<GBSmc^>0{#X*&Y~Yb}kM548=wj#_P@Re+l~xdxmO~v&<-`S->v&zsc1lr2w8J
zIg((q%W4GEXJdkil{P^ghbV;Q_m(w$C4@s_cyx^c(-x<iVxl0VUw&oX5KEAsYND7Q
z1oA=9D7dedq}vCE{u9ZSO8n{~m;JzAhtSf1FaW`mq78)L=w0F0u6N4SY)@&G=!}G<
z7#Vo-rSO#3oI(kMS~ICc7<L>X=D1CvwY{J70N<WX*j|iYZeGyA?&$~<A|LgMwT*|k
zWm0zkZZ+J6vqBv%_|z2*IH+1BxqDc1uh0(rU^m;KK^#9am1EQ!qs{Mr(TvVyg2Tuw
zL7>=7Uk|sg9%638qRgUqPZc`^T7EpAKnsOG!cRC|!cRuM@gw4#3G_kA^aOLlBB3Xj
zFtfwl#S|Boy0KC(mL)wh%y=o?lBid*j(SNaia~Xu{JVP#CBmDvfD&5?yDc_C3Kj2d
zVc&&k#GgreE%6eH@rXl(|3#kV8I!(Xeet-+LIjFL{_+~QV3Y#1{<ud2;2JQ-Y~qYE
zXN$+1FJ$4f;8K=Iodz8iN)n?}NM6{SXT#}~_k>!7qsUeUL?}vvbs~KeJ{xN{eH<c2
zcrsXNaT8W|bezF1_;s%}qn8d{;U|@q!#KqzlUV=o*Uh#oL$_hr45yp~@{IM1HxLZF
zUke{`32r^*lrg#mrp7^|P>q4qcI*hhv$Lx!V}fpjh1W-vc_K)gWxpd?W&H#C*zX$-
zVPvME5HMeHU+u7OyUUd^f<gLlE&-{W-|MSBO^O4CLZv*H+HiwC_fYo>{bDSjw|=&7
zZNe`m)>~#^>rPgx)8oe8<HihLC%L@D`xmxZ=tkqOqrm=bZDEdqn+wkZAQ+LKYHz&W
zwNXw!s1W*If(%4rB`y%JmTxyVgyT|RU!f#m_JECHBg9=|oA+Sr2{lFbJt=u=(Teav
zpXh5@<jMF<C2DiWs-OqM<B#hBa@dN%E{!3^FuX^>Hn}ra-Ti2I<q!Wfzl3*DWmm1j
zN{}FX5fLZ>c*HEbZJPbY8Ws<ANq>s6CIcICq=%<LNJHXvk1+pk3TedgkV+d~lA{WR
z<SR;j+_%;v$(Fd-I^<r3YJij{eH<w8!QNT(zB&5d(41kECj>;7?;R%ErTrK7ml2_Y
zJ;0a$8ml3Hl^_p|Obb6jIV)dWA0SvtMYc<^|8terv&qE9rBs~Y?OR^79vud9%^o4%
zDhP?hoRK3twwh>(MhIrZF;sQ%ii&4(YU5Mk{hb7_NHp@6R%u!j;cEnDyA|Op!VHNT
zBExaQ*&>j-1uOD?ZNJf|ZPH<sw=35Hc%cy|sShr)AMNG5ohiuS27QpSBM2l#s+Zf^
zGs@YRAcF$jB5Mla<Emaa+m}uX8Gs7NbTbh=AD8&*HsSYO>@0;Gn_fg|IN|+B8A<lu
zD`h=?P3wLDOE(2|)<9^BLVc*}`fKcjIblOlhSXfFnFdTtXXzT2LlUyy>|xCxgtaeI
zf&p6XMcqNG!YC4Q&kr+9NUK6-O$E9ybrZ?1FK*(@q4m`8N3DA<!S6=e9jS&D>ec)w
zu*U9hS}zyrKo;6i+G>gWBu?bY0K4^at)G(7hr){!@*v>rdso>dAG*Y_)hQ1UG+FT#
zX~G}UK}=zzSI`>_m?kO8z&l$xJG>^A0B4k<dQ6oYcMgeUFe&wm!|%GBqom8<Q$PTO
zR2Ub8kqA~#Gg}%VnlBC5jr9V+2M?LQ-S>mN_E(LAW3l<`IH6;}Y<{!8T&A}j6?P1c
z_h3m+S+dNS^^GBR6<2{(8iekdm=J;PQ7!MV`;WkKjzPS9u_FBH^e~Bf<=2$f;qGwa
zqc}^OUa%@YY~Avf0ErXkQjrqNl1~Hkj#qC#7+&7Zkn=HwoJfvGFG&wUIAVmbB)9H0
zb03GdiZt+)Ns2KGi7rf3FU8s$7oqabdYr<U@p+u$4UZBsDG?l;VLt2TKzq|D*9?R*
zeG$PTsT!&R<{G1$^qxLH5-vDrb0i$&KIKHS14cm)+@;cJ2}?@MgOD0dsAiSKiyAuI
z*M910M<dDTS(Ff|f)Gnx0|LMNHn8Qs6ip#bF7v5#;B(mtr0%O_eeChSX?f#!17UOW
zb+>!%GpjWud=@KaQSoh0r`Vr&z^!K&5_j@SazM0%v*XmsB)i33z$ya7i`~u&$?Qx0
zG5T-_gg&eU<5UQ3c_jq^&6@XyZakS{Qmj<sD5-=SfjPx?!^(_Skv*+9raFa|!B+u0
z5Dt|L?gc;Dw|woG#BWk5yrdLVSH+GuPVNL3B^u=Y(r0TxV^2`M``f=SYL4C%mk}Vv
z<r4wDCd%Ial)gT=QW`H66gN+%xH8<dez`+TtWm<%gzG~l5~A|i*Q{|piFo<CYfBEh
zl$v@j)4F(}#$JUGk8rI)Z)@8KbefOKDzb(=qsQ|hT}fdgoD-~?m1C`a>-BYxEoQO4
zj-LN+sI_#9Bb`qf0&@%9%Io3wQkqz;&+75|?_n3PI9V08{%xuD2w4@(LvJA**T{%y
z1jA$3+Y7xcBD5j8oYMG7f}}~pJB?A(Z?H!c`o{Df*vd%Cg6r&E<;`jalSups<6O{F
z(7&b-^ZSlOUe6J5$liou<RjpG2IvgL1@jdnK!UL_0=AlU2f_rQ+fT%R$R-62;Ba8e
zOWtRc`tcL%?Lz<*7-KaOLz9SPl&aihzPZEMNbK7e;H50T_EQPN$Ej%-hkv!K_aq)k
zqOQ1t@We8W;cpqD5KuK>6PU$vR^wumBtG$WguUc9ZCRoN*<Mf!cnN6?j@)I5K#FUQ
zItL)ilgSA13g98wR!raU`G0Bl59Y4csp`)h>+J=um$+wSiKK!J84%Wfk=CxMaBim7
z9FcZ#F!of>AI#L>HQK{zkUqF*f0@l}a{efC!(TzYQ)3RBb^pP!)NXtM39l5NBDQ<T
z+W8kWJq~ltlzN;}>2o6mJ?aDP(=izMdh+2ih;<;Hl&&qepMH|X1mhrbjEI5>&pw`e
zxjiF}U4id?ep&#=v-<S`dr*t8oM8mjo9iFt=kWuO59bZShY}B>O42*P@@ZEQsm}DU
zKY83WnbVp~QG7zD%=vpqjEZaQE%=F~5qgR3-~$SQDPCQaVAb8mnoDpRznh>bEjlE)
zBXY|96wp|6<L)BZ6>NT3J|tU1cQK>x3>liD?FDMQR*8pQSyEdf8RZm}XV#atvGV5;
z=+ty+LF2()(R6{c?68;hV@39iX6a#E_%?4r6A@re5P%>{`u;T2dm{}fdFP{(g@8)V
zEiC)X%+ukxb_qB<Rb<PFcZVavQat>Gwc&pBwQyLg2rVF*KrcA;b6+rzY|wT`E?ZLz
z4^kPyYd`qV+L8((MLHmt%MVjN1f);BG~Yh$u>Z*s0)C<utIpMgk1K$zmue*q?1ZF5
zgW3N3w6(Vj?gj3?8{vs_fl8AAgqdMB>;foft{`;7-2iBa;?Mdnw7=@9Pq6gI(%lZo
zXNXsYJ<N_<LL^@xh1fs7ajZc9Fa2emQZ8Yb%e)PBL&(Igf(VwRLa#F49|e|iE+vB?
z9RBBPQ|ud8;;f5V)lkArvFvip*kyH*_9g#y%G03kOo73px$#E<AfUX_LMPqyq=e=`
zs=*+umLhX1dlY-zZO^^#><=}#DMJtm4}~SZufqQE8P_=#3sHjNs~Xf5=bDP)xNdT$
z=*@@aQ-~KLu^*T&>Qt%OG&z*w&sYWZ8?7h5a{SA9NoY1+#0a2FzxV(uZ>KS<#7O1j
z<+zJMZX=02M=Q^L=GRX0umrk8Y-m<BPMm>)nEsXZOfTs3SjCc{#4-q2)_#xm&<PD8
zq`H4bE*Nm*vDIS<l_#k`V$7}2>Mh87XV;J{0brxYB9$Y`OkAze9RMGZ{bJv<PT##6
zzVS8fyKzsh6h{+(5tsj$x6Hmf5Hr|ch%`xJAmSXY(!Mb_kAws&*aqJPrIRiD(E{t_
zIH!C@ns;&mA}-$G<2E0(uIYXOAdf>2Ug;C)vcXc2sKO5toIz4-@Ie;Zfi=92{3^Jk
z^bIE071{svFXsC2kOTbga2N{Ez~s<DiMii;wHG!Pf`~t+h78le7fT+-!pqGUxBC(!
zI7j}~Pe4FyFSm!T#juka-`Fh&HPnUjW_9oUBm9y_kuM357d<to6(2~AFHG|5CHB}X
z4u+(%fEEC=;q!5PhT93pG_>fansV})+2_vKLsP*JWW~$MPZ0EpGFZX!zu1>m0UE*W
zshNoT2(SP?&cLsm>{mwe>F8AH2uXxgb|7?WW3aohvP3FqQ<jN$+<cpP>&Xx);v{r@
zDXdpsiA@%tD8BfFSbOgK&e=?08pt;5CR~d0LIJ*kM(10vv@&vX@z`J*6P@sof51=A
zPm=hvNRZ5fME1~NQnfD0KmmMnd-zvznt-@p0!&~7B!WjWL{RRIaC(u+d7*9?ZkWV$
z$*Dot1!bC<d7+=No=S}#Wad0#b^~)9UMp#j)si6~_AeT0`qVJZW7Zk#BI%4F6^8I+
zgeL*G!ganGFQMH|Yt&L56@$SkdQKZ+&`>GM^`^D{ao^As`qq_EPsYftFP2hOFz(g-
zm#rSpXla%uIUimz?+KlWYJSv?jnal_8rYzOOCu!VU~GZCaJUXg6HYIJcM6LGwI@}@
z+FWk+8K#4+II4V$R-e#OsM%}VsUfD66+!7uQCX46DsY1J>fT^6>97oRkOg`kC7Q=r
zcRc0r@IwMg)R$8mO{tga>`@INa*^XqNQ-q*gQwbG+@!Z}c8QQeMI#G6tHV^g-EzH6
zh}%*bhdd4nKys#uB4e-O(hJppoOydwh(Hu08^A-kJ0>nd1Bl)2qkCM7*bC|6aO#_>
zmBUB6IpPE{S=UV~Twe?b(D0zAeDV=u7Lu!&{)v_MkrotukC-@3+R^}!K5SMUz>h)2
zN#Pb?5JL=#0NZsF5?hjdm|clrku1TqU)kN-@D#fjQ34xX`#nUl49wQCz3hND2_xh8
zP(`P(3}qrCSnJ!u?O)$<J_))5aKe6<c9~!di9(1-41>PN8S{mp2(u-sPD{cg-*;Tg
zRjS?GVZOXVZ&FG8qMM8GmqA!yrIwpJ+@V`|rStM}u`7Ay{Hv|$HDr<D22{Y|g%OJ0
zGH^UkwzKcb0-M4!udFG;wHIov%1*ae{2W@!=_6fBY9&Ysr$`k$s>gi^-Go|9Z<KPT
z+ea%V_NzX8()x2ZW@8dzd)XU6ZJf17M_3OvVQXlvI9w}MQ$PQy9_Gv=Avr?`SV=z>
zp+|CX)6s^mS$1oT2()uHFcDS~k_%Eonpw7)i3DLGV-p-eDmEn<L<$4j+7m{SlbCpx
zcoRc=0A~2Re5>&l%@Uwk0J4of9b~QVvkJF5#fHQZp{fB1Jm3~L9kx2|LaU-*n=>b)
zA|$4o<FKn{xwdf7bG%q5#%MBEN<5^cBv6MCAUDJMsWxl}hXuzQ+)Og|644V;s&TLN
z+)TZ*#71Jf5Z!0HM3S?D-}|PyvQek9Ymqp~T`q=jG~9eOe1Vx=gN9<g_`L?nHub4&
zotG=RUc_*9wdwAMzDE8aSa993c-a|&o2?rkcl6~CGTqQ-d~qc<2Em&3){2#yU!KQA
zQ_hxx#BcxsD3fCN)sI^AtnW(9OtPv$=7cT`yb!AfT-x(=UqE%i-S@7xZX68S0=x;P
z#NR+mA@eOtwOV35<<z;Aqwx%N;5^;{lv;J%dQ-v}>`Lskis~jDLj<~-`Ly+;sjm|m
zsA@PtV!#PfYouDHXQg%AMQ#VcF<(!vBWe#aB&|dS*+ZsS+t_xQQndr3sUd$J79Lyf
z?8e>#Kal)b66F(BM3Z?eHms4?C#mXDJMEgwWja&OOF=YJ=@TnnMZB#2frrgnL$3zG
zg&F42;!w$aQEFiiyXz|<vw8aH8c;;hJS8e8jbt^}_Z_eG@_S+1n6Y%ISj4>r{)vx)
zQ;NxWS9q7d@zB}wHNqF-PN<`l!HQLHe_<Y$q%~Oa9G?;%2q}wG;yq|i*yr5KgPAK%
zTZ1GrQ?Di3Oe*PFfasB+1_>0nHROHHv(^l739T&e1YL}Ap(VgRk?<MeBboW}GkUDq
z{SW*pModm0{&a!CAti5p28Y-`eoxQH=bbsj#CT9gFU_>p4y48a8NBZD2>6s}JgEpm
z={Dxi-QUjm1fySwy^@HBzov8XfB^*6-~XsN_`iq+HlesS*l>)qbud{8TR&y~uwT2H
zd3d>OSU)3?IT=u7=KbvpZ+fY}S5RC*A6Or88LK8i9cdGOBvcm(fZj*=hJ=0t3}gO_
z;mbcmNJ~O9BApg%#K6cKZe{)0JG3uS1*Z>$6GZ`1NPJwiS!td5TKld4kFfIqkE-bY
z{|G2Z4JErbo4a=tf{G%TN)iDz^dJx*K}E4FNq|5?LP%(02f>1%h!g=uP(V-=LBYnW
zV#O{f*f639Dgt7m^Z%T4HzCd6|9yPkhs^AqJ9p;HDc@737uRfYG!RsAe@3r*&5@vy
zUfNXNB76)@CcPLTg|$Z&ffQ5HBYJ=R$QjrpWP6rWPzg77nwPe;ZumHUD?!^H-xMA5
zRJ1w(<@~VyMY*um{KH%VFY;mRQ>_ox(NyG&0wyR7j`-Lp80(Tft*5N^OOi4M&zQWZ
z?)aspwyXA|x$WKEdi!dv<<Jcbl!#!mVu1m(uaDXId&Cx)1h=pj6am^u03?A*aVFwm
z>z2z@fZ&dx>L6zg0V4bd-^iyo!hg_Ov6%C-%Ot5dk!ze&O>x`ksJqa_<<6X_OqM(c
zb|&<=>Eq~8A4G0KSaR20aS>#Jl^JWEU3p&F9p}BmnWcI7C>*adKMKTr-}-wFjWKsL
zh`H@mAP6Lt>dT-HDJdcsi%+(`=bMmOM4cLdJJH?~uoYJ)MX%@=StY?&$}$&sjvky5
zS%s*j;+#v=J7Iptw3rcn@Rn$y2`<Pv9o;4wNJf0Fn8c{*__?IaXVG(Q`u!4UfHKNe
z<Znk8+~RDc6*fGgv^^>f+*?X0a9jpH*m`=$8n_bjr+c@U+~zQSz2SYBtLyeEom@aT
zKlK|KcvfPxH55Go(S{m`Pk<OPI2re1){oiUnHVqjs!|dYJh-EYxh&?6G5#r>AJK^c
z?<Ovb8dw%3u=kY$?qeb33u~1+^*27&`i3U1fm#aI=$bv{D^w$EpHDfHwGWgdAd}R^
zFkc;Ly|1qN&N!?RtB<YM?!oA=w{Vn6LKESw_=oU|U>2ps3dgzitJb||I<@5!int2p
z;IKlOqLSgy*Qh>mOp3X-ZFcLW`RtC^JNbk};#m}PEzaECIr^u8krvPO4Ne{z%9KeZ
zP~n$Pql2vi_)T$ez%&X@jN~3T0svD?>QyoSK2%A(V|cRe^Y*ts`;*8`d|D5})rq(6
z2x=Q^9%>yk{ltZ$?5E)dDkl7t#9eCXm|oE_*F@gM$?5wWRkwzrOO7BbB2MZZC!HI!
zez^Sw+>XL2aB6%#A6ych)%1J;3kYu(+fPbBP^|=?^WoM%*K_2aVS>_zi&qt+Jl1^p
zRd}7&9d|Q+PevAQX#7i~TaP|pNT+|^h!ZduxeuM<Z05Ph=##(uT<$u)kVHKIVP&D>
z@1<4)*361%u2q&CrV3k4Qy8KS$G{&2&&(J%3gu)1o24Zm-n}xWRhDzcYfBEVS!ze8
ze-lNnqTslh<MHx_m@PG`I82NGZ2dw!=}^?8Ajq81vcl4FL~|4mlPg!z;A4#^Jm$%-
zIfWdnNqMAKfRAc6Kt@0<Sygo4Gn(rp2H$J#qGL-dELo{x0SXJ(m{1h6cQp_WftH}c
z=o7FLiPMZ|+M0WHzZWeP`+(gl%;D&o`>dFQ)2TAU$4|m539`;?-<uHgQ!*I73&xaN
z$#PLutAd!ob51ufuzq5H!od{Ld~s>?Ilojh#4#L0hB)-mLo!T+I?y-!^p9>gj8Y=-
zHE2&1*D95YxR+;DOeeQeQATmzNR<>~LME7px<?PsQs$beg?hxQm*A}rVx#BIB+=yz
zO3bvNwGgNPyD+BynwXF0Rl=+(KE$e=eSOTG#pL#KbR^J|b9(TWm~-=>7f>ajK(T4$
zwwvL(nEfayWTwZOx4w*?Hc#=EuKNV8=gM0k*yAzLJ1-<5Uc^Nig`gnqaijM|k*&?m
zdpYcLEU*>Q=%=4r=Pkm2CMk(*1kw@!1dKGHOUyTS+5HAfl=N`Q3FS!IZJgP0D(2?K
zk^k}q&n;^+|8}^ecy-20^g!mE=+mR|Ac7<358H#vN%(^K`-(QtHc=<W+uBI^E<(%x
zi23Y27yO403k`vg$D5&JT0iv`@fadcy4~I8z2p9VTmTM+gROaWTB4MZc(qyNMy8rY
z5E0sw1ZTxbmS_50vKbW>6%<O{PAO(ulbFD@%Dyx5OO<<5s{%X@S0p6R`J(8Ne%-u5
zREWd2luSFB+>n;h5zQmTrPiAOK+S>VEs*$yPqk^ArYT(r%)S_S!jMzMiu(JLz~-aY
zMo3jBCZ+`}FE$C*c1LmR;Cg2#o^@loEQlVrhlxtGgqw>;VJWt%$M~4s#!kO}sQ-fK
z<9+K&zSqUQV`jHvf`knT&cKjZ@l4~KH=_UU3-e=RwZ;XqSyth;V=>|XwBCtUXhNr7
zR%FnmVPYC4CbpLX0aJZ3Gx}(7bT15hEonhSLo8r9`B4|o2l0_$Q(}|QJ>z1zTsh8+
zTpe@neCV`_m7atgTjh(%_{_;;nT*--Q`GxCTFd(gy%AGhRQL8$sqOj;VtiRnzn&O#
z`FN)%nao~r`T4_Q?wE`@E-oyX2x*Q;&eS9^wC?r9+~spDxF6TbdRtGfgJ4E7k{F=b
znc~0U<#UI`JTYElGmONW0uoCef-xIL$E?W(Act!e|1=zHh+~&(eySs}BNAkqSp-Td
zW${Ts(Bv?DQL*OOyU`y`_cwu4Qk;SKv_g?7Ac@Il(NNEa2bxO{P#*=}IeIz4LSvHh
zJZn!jcQ{<cLCuR8dL6&PJivM{7IcS@8^kXPwd9yL>+HGF-=Yb#=Hj=~$)#8;yaWP~
zXrQ<M@I1b_MHAFmQmj=ps}<JKe0o>-rgN%{>Uv>N;<?2!!OT4oe$O->lwdmmxZ(l<
z4S?X|&D5JbX};!<^FD->TIeP>-M?)}Q%T8ABa9zQiA_iKF{kgdQ&)#I5za12ngUrz
zWr*8D(uy;udcHch#W2pLYx0V{YxZ|>?(Z0OlY9)yu9QnKy>|N7H)?trMrH3(d_V%R
z@xx0F_+nC<NvkLU(lTMUFE72>Wk>=X+k<kmi}8_~F7c6Vd(wzCF)5f$G8S!FeIhSO
z)<?US7NcvKvi-g%FV`ngQ&EE$Y*kd`Ew(msyWuc4rhlo%g5NSQa$Bah58;49S*WQG
zwuyYKe>1t{U0{BxRfRfD7B~x#bISHS(Ug=z%)ad4<YQ1h(#gDf)SmG;&E$<!=MSh$
z-pOg;iFzmPk<;h`GAo5c<1kaLjGl={?QZLuR;Gi#!EsTXU7p1&#_h4^d#)SX;xgD<
z`WRU#FgtT^QRJ*!m@n`}De)V$c#9$_MkyrM8`vcq^qjX-njE<aZ1Pwe&%;kDL3Ym_
znTz9t9ZxXpCU_owrFmya8IuLz-n7kgF4!5?+5O}a5H!824j(K3i#MKL&JXW}b><-U
z=JKDyC~+TPB!Rk2ygRHjdK&;CrCg1P8S4D9Nr!Q<UQ{F*L#k2lO?O`XSi7Lhd;x<o
z!RQmuMZH3&Y)$QNXGU8xoaLYMc3}x6oGQ_Qw~cphe5&>*FuRWR)cNwPI}I+6z*^%=
zSoLqObl&?gtONh*OTHZKWF|E(@%Wd~hC5t6&Sqyv&)F+z&;hcsEzOh%!<UWKpY&&O
zg;b0QZ|@nhfHpboq)y7b{vPbjT&X{kvm}_WG1IzxI;{!YBlG7l2@HDpcYD$=v?%{@
ziN!>Q`Oodwd=KXcq=Jiz<#(_AY_C`swufmDUMHpF%+4nM)Trk2Bx8*@AsCF=Q^)^j
znzku7k_Q>=$^qJhH=<O2^ifm)V_g|uBECpt9!C(3ncdW1XSPnPs}hX4WVhYw*D(1}
z-(XZfs@w5kSxbKteuOqe8!yo1hdZvmLMNM5%;lis8a6RM+lOD$$zFxYBxf%5l$~)Y
zvp_kiwB=k~;~%igT@OLnbt#|u-EOj%HXNqp2P))+L#&rv&;s*3Z2$S0ehqX+q$9o|
zbAKcMOP4j5Gs=O<)k{z~pb4hUDLYIKXytYyht1a~?FsI|Ro7i18U0e%D8Za_!oFjP
zJ|G?G<MJq=!C@CscJC>B+cLWN^t=L2iKvPsHk`Eken2ZHa36t8#+?4s-n4)QB8BBz
z6*<8L;;}K8ov=4<)(+C*skWb;#~_%p5KNEbwt0#!i4`0dR8cMO`Tc}_=Wrdn(kz7y
zH#u(KBh!b$C?`Ob(<yG=YoGNP?ZAb3!^+?r63K1moUj`&uQm(}oB)ku_FYT0BMqi2
z`g81WcJCKxA?lD+I8Xv~J=UBC`0i(??2WQEf(wl)6qd#)31-d~`=&3nxodD#VN_Sr
zrXev2R!T7Yw%WhCs{^eNzejWj3oWd3;6eMjC-o`$Hg2I{Xa6{2Pn@W42d^I|;IP1(
zARZ0<KhCAS1_w?wBt1RiZg9mC5i7<o{l-5=cyNtpY9|U3Zn-GcUg0iB#aJ#wiau#S
zU1I?S5Y0GYH<!0lS2S28dHy)S*ta$3_@9vZO1xokl#2~PETqAnus?s)?GW%w7FO0G
z>ZCn;UX9-)o3l^a=PhiyffeV-;H5B+{^%`zxrMT;Af^9Hp|=-GJTJ@-Yr=1c#|*-E
z*e|UE13$9vMRDL^@J-H78eBx|NI=nT7kbPC^oit_NGk+PqS+AV`TFKs9+3FiSKE8G
z&ZwnN%1=kP^E^7cmcC@bsM2<xx9@4Ohi`}VxUx6vJ^Q`?DO&*o^7ucP!M`<no)1C_
z93CbI`pKv4f5yTAL>=vMh2MIEe~TL*R>I}CQ0f;={6F-73rKz>{Oz?h&856YS4=^A
z5mSJXCb^xx>4GpJ-84z56T>>ZvHyoF!noraQO6HK1H=M%66_D#(pqVNSScJ;a<To^
zc~#pv^KoYTCAP)yc?Dat+WvKTwckk4X~S6iQ1vkh88$bzwNGDI_4im@fUy_a7glel
zsJTfz-yYF6tOhZ~n|7z{!Ha584UDM&3EQ_=JF09v2bUB1pz)u4m`*9gLWBk7gv13U
zY~r1!{)Hv<XgH13;ejV2tK-eO<MtcNn{H*D(h0Bt&4s;BdcZ&G`zBi<t~Bn%C@enA
z@jW%m|6J3i9cYvD(+^fIxZ|X^Jnugj)`3;SKpZB*b4wi&ltO&yWBKCsMPLAyr<(QO
zg#Y$!^CpnPpuEB;G$bi7D(Q7*&D@p^3d5S9=%HhBwW8!@pxBq)>Gj66l%cq$oa!XR
zc_o?qo(}(ar4lzXN@4`qXQAQW(mWpx(DpP8qU^lkoCeIASaWd?&!Il548x@+;r|uv
zD=7)VXBB(aALX?;d<0q(g-NjHxuZSf{t3H`SOM%fw0i1*vnI19N7j24#goX`QW&SC
zNSXhoL=MPnCfA%**$Wf+%x-;dm_&`SRwcnGPRB4|{N$Rz63oj(?Yslc;=s%K1k`hN
zlo6T%{WR@sZ))KZ^$05I<x$<5BBzrl6YYTV$+H=!?J0e9XcV&?tbQ34`iV71=h)}`
z(@a#j%pkRc*o*iCLfvA`i`(oTe=+k=)lc#P<cKAn@RejY`<k5_<d(yyOqMb0JNREp
zY4J6KxHtKX8yA(OH2|(`;GYoD;%guo=1k}kBP_4)9}-5BAQ{CHj%Q4FuRqB{69qX?
z#sLPzjxx75(N<msqboqUF=l0~fAyvAvn-6DfaXEV|EWb2^|Bz`Y$>O2p7;3Y`j`&H
zg!(}EnG}IHCgNiMH}Tq>MJ+p_Sms@tqz`jN+=MY88B_y9UAoBsaR;<&;UoDyBhx3c
z41y7ZQhZUUOTuR6bD20p963Ak-LYyN@P&O*aRH=p%hZjEv;zDT-z9X<&26M*@as9N
zBG)nkB%6g$A0aB@ifbaLq_~6TQT`JCcib15qazx#xV6|aKSFDSV2xBx9s-2I7JJJ4
zEq_FnCBrTo>;~)t#uaPgb38vRY9WtkC^BX<t+@UF=UIBH#gBXk8WP35C2|}=YGS&3
z3g^>~o<EX%-KajnKlcyvobKQ9N5qyaDrR7g0Eu)g9^qNNnO}p);N6bm+)<GuN0Qo*
zs`Pih$a76g9u!9h4n4L}a$2czoamXdj7bsSLUBrgoh6Gu*5u6c#Qj1$P$@+jqVQD{
z$)YhXvF6QDo~s|$J~hPXEY9B#Fsl!KHO8~%Q6?gKhZZ<Vg`6qd(8)9FTbebh4#_44
zkvsF_BR$(*r$>%wl-!en7Y3n#rw(-aLQmj`ewEs096UMga0s1yK^sqcbN!}_f?>y8
zi?%QDlo&W<So3_akH`CzPDXr^V{-OOf-w#^*p#g1eFHtOe9wm{EpV>o=0IJ$47X+@
z7&pHfJJ#cG#fFM18KNQ(EIP7dJ>P$&GbiS;ICn&;bOU?1<(fyg_0*}$>^P=^d&riE
z3QPqT%qm@~v(NVo{Y{^D*$S~1#Jr&e604Ko>H8~PiJWG1Oc)mE7wvy{_WZD}{1Kwq
za1^kRRKuokd7LNXAYUWc=A>grw1AS2^|#y?LKXyJw=N-`-`>+<w+`N?RL%hBmGleA
zZXyu0qbF~@vfXlk1LyTPv9%;XKF<7WdnT=@)(;Mu7vu^H?sFwF=JW6_n_CFXAQmx)
zNnHX-;9%Qgytj?kM+XHb5cChCi41@463@?lL)b>S1uZu(nM30|%m1my%^4LYKjMhW
zqrO4zwufzFZYP?OSHl-vqJ#G?Ef&85F}?VR0o=C5db+saN%<G4z{3p+@WaJzfNY~Z
zFV$-<a>F$_d*>AuVo7jzD5jHaUL5Or;BS4Sl)FQoVIq)nEF~eXY3n(TW+tZxs0Ej$
z6y}LHZ$9Dqrjg<~T&znWCDG$hP^P!_q&-*;;|vH+W_Vm+mkjmHZ_C>m1LJWRtP@3o
znpdkl?ds^H&ImJ<s#^;6^M#2}mc+HTLdqpFFv%p2^*F~^H8I9SFalYkbx#Yw%dbF!
zLO*;$-efQ@;zw>8?m4(md&JDcu$QwVw=tUwZ}BwPgOOH6!4U6x@d>+uSXPn^jF^Cn
ziMsPN5uc)t;}*dUn<F`Mu+Ynz`E&EM6~0VHti&RNAV&IE=h6y^h(?1Tb<MfHC+vSj
z72;0L(p-WnLw3@Zz4qf`98{hOdR?3ucFcaix?PC=7-v2{VfPmct<n<|7o%g#@AeWg
z_t2-9rQl8Eh0^|dGym1M(@vx((-9$TtbgsVU#U6<@w5Em{p0RiSz+?T)Gjp79<^_M
z2W5(J3$uw8lH+1}Th@7Rgo#KQ5F91YR+CF3kH$4y$+R@HDTiRXJgC6j`HlT>rnbYI
zMbPwq%bwY-+2b%@u@Xj*_{nge6#ApDYx+3r-lsG#)RvavA5hrzabyi8;f2NIbK<ap
z&Hq;UXFaVyPRr&ROnLr=KK_D<{8q|zVu=eNRlkdW?aeevNr`b%p+kOjB$F0Rmk}xc
zU6Mch1_nwteTXR_kCh)C8Snq$>ZYP3_M>b78``On2QaAv%w3KaTu!}?oA!n`nd0h_
z!BX@_3Ar-;j)k`>&_)RmVyU$$FkPDlNMr|27h{UTJp1m@5xbTWKfr_6eH)HWDKFJ`
zXl|4c)58rt2OiL0%2`9S=})JP)Fx3(g{kwcQ6Ge_8b%}j$U@ZJkjD4#<(`dC>Zn;#
zq2Ba3&$D8o{z~2wimo=o6=yBcW~3^bkb)+cC%SJI<OzfiBb)nDI(tGG5^MrMQUb%w
z?a7{&_mmGRVn$8D><*q==4h*X?y>Ad^LekG=iA5JX5zNsDzuI4<k`Epsud!ESmv7x
z?Q6xdp>8c<kb>?|%tT_|?>x(1{yB;)sXV3m=rT0RRRf=R?C-xsQ5Abi(&&ZG4_;)C
zwHTXXGoX|~Kwg9saYyFuYwha>>EKFI5{`<hpWDtJ^bK06mY^YHq!iS_702=B-)8;~
z(;14i7*en#AWrar!yWAgmuPD*W{6HA7nhUr9dE7(*x^lhgH~Mv5tkqw1bec%uC4v|
zue^i=#9S%qE5e$Sw_so7%wv2N2MXLsK9{s60X2Fg*f;X~Di$GmnI`Wd+lNWXO1X?(
zgS12P6ecVFv~H{HOGok(a9T7^c8icpsu-Ck+t|0B&=rJpO$v&ct7{u)K03>Gw&^SY
zi$H601V`%K(|+#DW_$Qtpj`rNqRt@Pw`JMu&%^fR)T34kcp~9T=7)oJ%ipn+-RN39
zSGT`m&s>CkO|b!JO!NfPX0IIpMdVwku*cuOC;ETbu7B%bm}FvXnEJN=qn+S)ZbA}{
zX_=P_hqNL^Eniw~f7(tBaDA?)l=d_2>iNT7X}*VJi^HQx0xFm|PP1|)$*h0gexX^5
zJ+j~ejf)D?3k`{D4w(v7uqWQ`KAl&JA_|t2zn{D^?yp;Kf3-z>LW_}sBFG};zGC<P
znRdnZ%2zJ8vA;n_W+vzulK_B+Cfn%5_-c7?A(?Tbcwq=x;PI@|Yzls23!7cWKc@{(
zi}HMk$tx4P?NhtaOjZNWJzfDO4EB1Ce}5#emTIz!$Lk4Rcg&7xq!TKq5BxRq^Y*9h
zOIR*O2z>!TfXGK)cwLzPE{_gWnbm!B(4Ku-->AzgVvSK+p0F=%uA|VJhZSo~PJRE9
z#%>c#9ekuj_<g-FfBh!3QUwe#Dc0P{bNrt^N{fV{!M!E6m)0+u+NGWKck*&E`gKcq
zCQms0lb_oSp3&|!0A^^7{X#}l7+BGi|LwK+KSVeFkNl_})Of>hrFizfQ&1H3KT8XO
zW6H__8X=3pvLD8Hp0l?ea`9(M6cg@fCfWXW)AS*xN7@cQDr@CG{;iJQt#FiDJ%)<i
zafkU8{w}7Q#!ilbA2X@Gf^UHpGg3lhMWd_!#+Z%9-)|86N`}6u^ZJma1B}ZS%dFQf
zJ1Uo6kn{?#!dK1xzjx#P5VK2;6*HUpn*GBsI(@#I$_^x<s_QAassHl{Ob?pijIa%5
zWp)EOl4xRw;Zrz!3>8K2eC$EpVhiEiuuV1ZO@4j<t-$ScAnrtkF`w7-zx+0*H{J|E
zA4Y7;OwC#Ty1(hqcsII1DOiY^_P6c(Oy9#CxwQtm*s=qLtw$e0UO48kG2?!)N4>63
zis>T1Dg4`ha-X*7T)Gq3Nb8~|{!zPiurvsYY(pWaSzp*E<qcF{FWrxsjm$n~Z}>`E
zy33g`rp~$k4;f8S5d<BHpgeb~p8vi>?kiZ>5m@pfBF<{$KVKj{DH8;KRAx*Eum9ms
zX;D&=<R6~h{heL7M|}v;9O3YSIh$4c?1q=KD{?+{LC!tfKjmV!4(tF%h}hIqmEOkx
zOap!<k^pmBob6`)a(iy7J__|zNX>d@`!Bjk2}6$n>sL-tqSXjRjW}jEkL5YQF4?kj
zemn5AUDvO}AuDkqk{8Zatgh$(xvjQ_6sV|caoF;9xZ5ZAKNy9LlUQ#3`Gm9l!=m-=
z;32_bgnAlt#Wp*)J>(_+I1U;>2aS)sYF`6wiR8gKEaY+NZoBXEv}lF9{j3<j0t&?u
zBL0~)mkj<5_rH224N}ou&ab=0&5zns|K?EyT|U+tMy6VQW@t-)da<^nZ19Tx0l)t?
zc7@pZQOX_rylvkzpC16J%5eR#<oMafm+cpB)mAl3kw&cAsTKCru{xF<sq&pKtm6l+
zmN#eZ4@QZ#$nz~5_*cx~HGGMTD#(!Jpb@lK&tKY!HB&a`Iu$9HmoZ7to|Lf@CAjoQ
zd*u?y1b!nNyI+|glH6MVi~T=%j1o!#!2@{KVHDli3zc7~C++sVbm7lTPkum<PKl~W
zw;r*(Ud0c@1&wx#03JmcfiY|Uu<LO=T&9;MJ`x&#Ic=xHZ-oe5=)#;E@UMDC*QBq6
z+(4IPFUZF}v()yCQR7dN%nCs$8Gve9Dds>?_}V?qFRLu_l@I(iBr<JnlMXI(DvY8G
z4AnFRaqN7PHE;{Mrc}2Tj7)Uj**AFpdK7JsC=qmDeuSEPb(Z@hsaVDgFwrh~R(~Ro
z5jWs!$Qw3?*X!vv<E)hBe{Nm)OWi{)!-yeav}K=$M~&8|{v2h}Vg)TQBVP~SaFe!j
z-ysj~`yqV!VEubYDY6}*u=eBd#W~v2mk2t<=ce$!m-08Fmzp1_No=IOG`yLN;wt21
zZ;<y+vl;L4uG61VabTF>ihFN!e<*3Mx#J1IC3sex>DUbqxGxs{LOF2i)8T~!^kKNF
z`<*jpg}3kLHeqcs`{vWb$4$}(T*G-qxw`#p?g_^N5oj4!R-7y03*3OseX&WNpQi&0
z5YET7fKfduD~x?DNJ^9Ko-NBkuQ7+%X!6gPkc6O_uSR;CjCYM?P~<#vxCBV%PFVB(
z^PbyQXpgHd$bNvGB28qmlPFzawm#wMJ%gVBL5t8HL9rkd@<j8(P2QdTbsp$(Dq5&C
zPc-;bo(1bL@?DRLQkddz1Rr}xKgc+w>X(#GrUDbD0f{W}ra=#{?@Prw`iV1fjDWvU
zna~oTl7zoBPxg$xwFO~5?8NjK|5WsAA}hPG^McS2@+>NO$MgJuwFZ?=H3El;1}RPj
zI^H?UZkeLG`Wc5ya)rYso-yC-Wv7o;tDu+aRs_Lga`0%+hW2frDO{}>0~-upt=jpK
z5AD{wRh1TWPZ1j)As(jw(a5ar&Ehzl3j1k2OSw>x(FVL2`Qv`o=+pAy59}r;2mY1!
zI@n9l==r=%baE6J(V+-s2D&0B!{dLt0iT5mKwuTwX#@=r*nD_bWZ<CAjFMq;Qka(@
z90NYL*Y06nR8bOK4n7EHEs$$ExRFjOKXtj!?ibIuN>rTq-DsvBv$^&@yJ^3g%Nk$4
ztgJV5mcxPL8HyZ$kC@~Z{^9th*gy`*X#0NL1#G_v5y_CIgow=llD78r-*utH{Xii^
z3RA$>$z_oRPOWPfy;REr$D7asW5RXI%@eJqT^IYgOtpJNr&jGRiPT)adFVWQY>*zj
zLq$-$9tIrdapu{1kzq^N3-!RFa>E%A3sN+TjhYnczo40tMJD6R3bNh+XQR%yo5m2y
zkqS6~MB9&RKizrw_S#}QV#O>Zek0*iclWq)Sioy}0Yv`4X#bl{wS&||><i-d=wO!P
z0{+~loa-c`@ioGFKv0dDJIeD9M-lnj6)Z$b{ZVDrB;V-i6|JWXHG-cJ)|F_+4faGF
z(o<V;^yHq-iEBK&R#$Bn=;+`=&-@KKu)J^piq|L^NTOh7P4+z6(mlg~%$%o@@&bbB
zuJf!vtdI06gn~Fvg~izTx#O^b@jEA)5!*bem%9&Q`HSYu*^uI1KNonOX;2Ob5@#@u
z0?XpGB8LWOI`|tOUd<JSuQ=75ccEwMROJDvUgAXI|L_VE&TSTWJ+mItF1-GvEF#Rx
zO^@zd!e@`yF3}>0l@YhsWIev-_m$!KQ|PPtHgy<F@LA11Xhkp#*ejYL*U!3eDyqUr
zPXIWT#T<lWLUS4^@MlLeqOE7n+|b-OXR5fR;o8HUNPPq|A;pt_m3F(_mD+k}D=ZTp
z-19uy3v~)^mkMEt2Q>*DJSXo_w3#aoQMw6E;0%)|3%)7YjYCR3cO>v6VLq<g172BS
ziXbv)c)aiGRCx?O559$~h1n(vSo^^v?vt(tmy|+;=Szz{S$FFLGEV4r^=yI+5ff;1
zm0{kR3&x27-5JY#YxJ=Kf`r%VwU?4i*$JLo?uD(3GcbR=P#A7PIAy#!G|GNVoR4^f
zO67(MbuCb>Cc_@ogCiTNK2U&ZKp!4gwq;;vd;B3~KvcUvgS#Y@<1WBPkO%=W*`&yu
zhw9mpf_D(SE%nn&SVtuq&fB%eBinzfU7{Llr!fsrMgFt3SveT!$~1G|w(y{<M#;K$
z<3@M(O8gO=;OUFQQ?6r8T#N&X5g#h<6w$L_S!pxFN43^1PLtBGkQDL?`9XN{+1{N)
zTXbe-X^MV{5-Olhyjhd!)ZG<!Ez69Qk_##F(No0(84Hq>Y<8^k4_wjYT2!<_%p-p!
zAZ95NM%IS9!Mi3ksr^Zm%g~d&Vi08y#ekOe#`XNRzwy(IsCBw3+%3e!^UDuc_@}%<
zAN;<M$rJ$=5|GXPRn)iL;NMWJkIAxx*6Q7b{>+z|0&4s?M0^q9%o2Md6Q{Itz3oke
z?S*g&c?{)WTp98*lQGHjdOQa*89CErtv7OtYB+El0{`#_icBP-X=}PSuS9!XS&e+f
zhZ1j+2YIJXXf9c00+34GL<EHT@2GgNI&#$%2&z)l1@~`vG*2bi*I$Itm3R*jeo7Xh
zQ9fqu%eO16+70AFw6@W8J-_8DJyKH)i$keVrFQFqcH@RB8s%fkAy+Q!W3SA{QFh@G
z#1j5%7gyt)iZ_f@0ZCKZR$}k6^;z-1=%{$lQR7VNTKlY1`k=<CsHig!mDpPwgsnv2
zU|&CLXT}jITFFNsS#5E~bJ8wxgOtuhr{R$`=bW@(k$@^mXo(ukbr+l`c9C5=ZpTUo
zvIsqbOQ*y?iC4tDecX<c=#9$pY!VPQ_oV%U8*vH>Ly0F80QI3fal+nwZ_`!$qEGI)
zW8-9F1*ZEeHv)BC%&JPKa>Q|acM)4v6NgPK$6+CYo{}NPM7d-_R`Zr9|AHZGf>b)o
z2Uz8XKr*2D9nk=T59>h|la5Oh#hk2b?7paHm3N$&bjsMo+i$jG6pb`Qg%R^slAqa+
zNv-W(?Zf1Ym7aqH>*61(8N(L}H*pW^jwANt;!u(x14$YasVRY3cOJ3tUZL$QcxEZF
zgLFuUi+#k7+@Kw5AV>8_077*Vok#JJWA+>3`>8ydxOm?F*KV@1TD#EI%}4C*HQN)+
zMMv$cSMmEw^ns?zmqnehJ+5;J{a@5sG$NRXykpEUdv*2DGyRl4$L#0aPn2~LW~sAH
zFzt@nYbCI*GKo|Th&w}s#EY1ZPTBLs%~o}R#i7;YwB1R1;!J;bZw!DbL5ckJ`C0x~
zAE6y3wzLe-6en6-$=sfDw*Ta6?O@qCwpgRv8u|M_N7ETMm>ZK=LX47p7pIW1_v1(w
z<t)x@_}AXCy6I(bJyHzHir6|-v)`vizA}!miIAh_Oq3Y6$Ibk(i6qVU3kJvK<c*@b
zB{#X4>u!jtd%j)1(r08U=6!d7LI7#he_h6&$Lx=mHLan&lCG%Q>-&&6=GbVQ4-zOP
zYA}xb_hC&LW4M`X0u~uDBtr(;D;m)X*2I;_VqshT?cbAI3e!Zma(Z#$;zL~M?KM#)
zy=WHV(Bl#&YKV05JW||3f?X>haq-a+tM;co{Y^zW#PX9kDb^y#_{Zm#qYqi)6fyG-
z+s~fE?^IF<W9EQ=Yd3gD0hP*dH{j4VAP<pYCnT+mSlYAvj|YG)6q6bt4os>twei2T
zNudmw0|J`;!LSar^WXiIGCC}wlHz^k>~0u~&u$mz4yQ;b177I>54hS<$SRe}3fC|3
z;1>{qJU}Rw3xmj7e>FV#Gi@5ym(8|7#1cUp&yCV%?<CK}lg%3<e|mAhAfU74+?lDF
z{<98-1z7&B#7=7@|JDbr>3_D8rmHaAatqLfwLYU6HpvRB8!jE0!9rIM>gMChP*AT|
zwsq;TRsn!9Vr7G+^uZDM&}(1zwRumU8&H@H*|SPNOtgNrwJDwOH)KEFJMI=VQ^r}(
zd9^(&2-htYLut!6Yk{9O304_J5Cl?>U28GQXXa|FOh%pl(Bc3(rS!EJ`b1&f67*$0
z5_%LkSsv9HrweAFKZ4EvJHq$StndJSrop0tu_nEJH|2*11j-v%REl9s@CKvBn)YGd
z^M<#q(qX=7<^7O0)DCnpbPZ@Fg}Yi}P2YRHle@PJ5MS0)EFz3kx#5VJ$1RQ+^AAr*
zR6E}ogt$H%Y|Ut)pUoS^Am|Bdf-~lx0akyvy^nY=OT=(wp^)f*Tw~o6#vCyQ#4g6K
zqcOtfkp|Y(rn-5OlP3F_poJ9XC0MhIwO!muMDK_O5P5<1`^fUfVJOwy(!*y)oo$^c
zEN{kcgJ97F%#c&w4f$-Z#5x6mbT}r-zRNES4?u6}#Q+_Ai!pD{k9dgP;^=fk)Z_1T
zJzVhqQVyr&dDTDHI@uuf3kZ4~_#!$CTO)@TLOtBUS`(xD!R<>@$UL_Ib4y5g&;`Dw
zK9B6wnI5y|0^hxn+9;8OvcFMsdRWy(-F=N(YR@2oes}?G&s^l|-`rD9!&!vHz$XP9
zF@-&><xjVgj~PUz@sSV}BN4oVa)(BiD24uJtc>`hM88)6W6@+Otwwan;*AkyMM^M2
zi&dDT)a++fzCGf(db94is|b#iNlHyBfcvRd;%r^*^kM9<tl{9>t>JT6=~S7D6jw3_
zqayCz1Le^|6(M*TgrJy?dHwtd|JOP)TC^+{I}U%~it0zKix23y?g3$DJ+O$WC8@E9
z{D@EOw%lrQ(A{cGR5U|E#vikua!)zdn1cMyTI-Yj{0Lf;#5{K)j|}p?d03BD8rCE0
z9tzqrhqHZm*Jp*3Nve@Rgy6NlehsSbPln*L#1BDAvCVxK?a|HdT38Sz=5=m9DMxg&
z%csJ8d%ssAPcMPuuyn{>j_Qu00mlJR>L_`xpMB;1djN}t8xYvDVjk$dkn#&3d1G&+
zQ+yVf;i~sOxY={bqLu*!WuHQU=L({Ffv~a@ceU{STgM|ETwuykqiNph2+ub<y@AjH
z$Ca6(otr29zK@PnX*Z)B-#u;<fH<He=W9b7U-No8pnFJRP_h^0alE7djVL?`ImL@x
zTdZ0=Kv!G7q*L0e6`Y}ye7RHO(Qx04Fpqpmx59~e`I0$u=wk1IDawvmj}oEo3*x<<
zZ>0q-bRs95yg6eE=KI>W;z8C2YmQam$?i$kw=?;jw3SMgNIBoTlHEq}PnUDlLi9H3
z_D~m{G;dRXv8V5Y`oew`Vvxu|EDz0s8nW5*=6dY`zT?P;h=FqI*wd3g^n^X6omuQ6
zt2+37kN5GKzcvTAdbTjWaC(@X6fBU-F+Q5;8~Tq@0rAzy74%`kEKS{ut^BUK@2G1b
z*AuiMco5NC5GgNuq_y>Q8o$AJgKKCEIalIUJC)|WyqP|kRm#2a(EQ=!-oaOEi|zy!
zF{R}7R=@RiYg$qD$qNTex4f$pb=o~j@x-}qQn;MdIWzTaFZziJKMtAfB#B@g!&!Iv
z{xQ05g1%!Fr6$RZj%6o2U%sScxw{;avDG^VNm_A<x-6z$=Doj{K9Nc3d683Vdw2&7
zbmv2iSH6@BU?Q!$c}MnR5eb$cQbdx*=Kkn?e~H_|T}LWYH+}29=QeGUy>`7Ouscf5
zGVY=;yh0s}Acn>`H{z1j-1>|6okH4^RMZLTX&%h6UTdHW+@Je(qWa`=*9WYz05|v*
z-s_s^lERnxDK~iW**{!moqI8?gz#l?8Kdci&GYUSk_AME+2@uE$)xdKzpRgB=1Qo>
zU?NZWxNl3npRCrYmB$If>#5KrJCIwTp9$aSL*Rk15OT@?3ivMjO(ko(Yzj8G@T6Bq
zTW3A#vOQP=Jf5q>eAeJwb!Pe{q4yO$>0RDUKe;PcOK@oy`NhPunDhJ*8-^k*@V4so
z%9&r?Ig#(M)JVT9s6d>{olbj~qD|2vE3I}eD}~U}@+=#Vcq4Yv3&;<N>E0xRy0cI(
zTC>Y^pfqvB$Tsf0$lBOY<tE3S%W89knB@{F?teS&-Mv*`qEe;&_!)-(_fu`J6l68;
zwD*Enm^<v8L!yOmsglV%S2m0o>hNovvQ&9vbo6d4OG-x`KkYq!x!aRJK5q<)jwFPc
zX$`H(yO<=pF8(tKSA)MvEC{58yI$DVXU4kjcl`-ztVDzu^KwHgZl|_L?F(3vs}_+j
z!&yJp!20=@nw_S8BkP^LC{s8DilsV+n6u`SINwDrs>*lt1cb`(7x~t~D}~A=b4}<&
zYB{7(LFU9FZ%LAFsLqrGTNFH^)};!1tl1iC)&D~2qH3>sH`WUKTswM9z@@>(7bWej
z2HRK?Nrxw4o?7a{*)q<G*#D8vU#t|V<ZjIS$GqEO^_P990*iBysV~`V)&H4k;MORm
z?kCG~Zs*83FdIxjI0}A8@$mh;-M4TlqCk8l8d>Cd**D=<ZRm=`y$bC`j#|^TzVs2=
zigF<=p#MqVzgKC4&|EM4-QrDWQ_@gy1#&iK)UUojrs_}9adV0S&Q0mQ+lFY9a-D2B
zZ|R@=Mm(UrS4U#m^TlX8afMZ{gDyueVrGyZs-twZgwjQ?EhI)(cIdp`)=jPsLRbYa
zrY;Ersk7B>59{Hc2$&fhR1fzTsn(N`dRB#6Ax;IQQo33{i}pcX2;c?rC-)S7NX<5O
zI=Y*cK_@FDF`-npl*6m_aj5tIlJA@O?y^+sGdtG$hA*O-YBIvy256qOG0B-$LT6V6
z7iP*P@dhf4{NCFd{g1vLGiQ7*H%$t!xvrlz3nfXUaWEUT0N%&)inT-ic|_j*TRpe*
zhYn;n0ZT=THRiT{-W6x_;ernrMupOzlen2X#Y}$4*WgRW<2%@)@veNYAN01mP6v_S
zYjl74TT)WvIrfF)yeWU6$!IDVE>017!3_~fckp={&x2S*^FZz4?Uyc(Fw?X{xH?)Y
zpNN=avP0KIT*M|b4Kbf6e-yIYe%k20Zih14P{e;Zb3Xf+x9BnLkkcsKSGI+KWme|#
z6W+XMYk4T8V;qcR%@ObQBKc7~blszRNg@HH-X_Po?MEIHA23062skmihsIgo?Pc*L
zbQ>%>r*yo0;txx_udpt(cBdRnA%2`7bd4f!vUZgVlWr(*h_bf^d%Iq(@1xQu84_|S
zQVB><l3=0t_OO2YO_z@|;F>So>@0T1yokAuF4bU&Fo$vOxH}>|L3uCE4OKx21&}@c
z?wI$UZy-QSZn&G2?T=X)aqU_qB<ek~0p+6M%4OCB1S0QMUMz=P+|I23zd6>Yf9V*S
z#tP#FkfVw^3fDssk6@bejJVvgF-ruvOi1m>=9j!~UC>BL21}0&-NLA=xrI`k0V!R)
z?GEzM5?I7#rW%;VxgeWeNH?*Sx54$S9>Kz;YE8Rbid%eeFiA6R5^?*f`o#gr5BmQ1
zD;)^vqP&S>5TJJBdl|LfH|B4~k$7TZE)*RSXo*hF<yZ53+v@AbrWFT4dPL~{ondV~
zs%<ch9L_1*-l~hsAoQ)A6n?g`&}UrxK@AJ{=+qtQJKj)@3dSo|tK{y9zMgeat`+QH
zZGgw6+L38AEaIN-p*1TOx<odKVZ?bB8*XEiwL!R#T+0*0DFm@+iF1xC8IAd=kGBEF
z6gImmEo^*y$Cnk>N?Ke&FCiKP>M`}E+as=Mr9G@Itd(LtGQ_Dv5kCmG*OWa(VH!4g
zi9CewPo~#9(t37|S|8=kE=toQ0x2ht%E+BXN#>VGUvs_;(c)^hJ)x=|EhC;>uIHnC
zd-TZh5C<YZ!n$Fe9+Ls$UX#WCXsvfNIyaQ#jxmT1c>-%fw085B&&tfzM-VMU8B$;a
zSw+ccrdW2jx9xbICE1oh6G2nVZ%NiQt6I3jiEW@ej;0N}5TKE=cod>^A~Jv^a7@Ua
zlN7HL+31Tfvs;LfBT*?uNV>g;B0l<z(?yGW>h!~9Z>~1JKYy;)V<w!6*d&btm%tje
za+4YUruE$<ZIojt%JA#!t=uu%Lfk%KfuiWI+-eQES=%rT*&J?x;B-IqwRPe6kjYtI
zCc*R`<coYw8wsRltq^EQM1Lfi&oA>$$NFF)Ih@o7m*tSV9+OPx!PZ&tC_VS3f<>N&
z_xzM$?Rig+avH$}d@xntaFUzH?uhu|BAtmVxFsM&C=W#y0ls!d#0f~2--(?l{FEjC
z*ztXAg$xJOG1)h42dS!cUcC3_6)G3b2p0;h@%YaE-pL|i(3&OIT!S|=2A6Y732Aqk
zbzxKnd>69%?o03B8<bU4nD#QSzPYfVR16p@ub%Q0O@tT-z!WYkI-v=C?QM$|4ug^W
z7LnD0K0*A0dwL75r33dRNup>){P>91Dh1AA!7zY|**=UkyrZNto@c#qlF8zNW{7T7
z&;zJ1SByXT*E>fPV+m6au_JRh%sa6}UrQc<z%K}IDJm;9$njE{>^|O4yK2AIz90-5
zUnnm^?j8b(t2j?o5ds;L(;!N>Wd6yAzP#CL`3ApAhS!o2sOfiRY_7G+)#qH5SOr}<
za&yxS*18|`3HOWvRU@_(t$tyob@L|e!VbU*NkGX!>#N=Fk8@F9<=zmG(LUDBdde(h
zOrDg*chi4D2BCTWJMZJom7*%}MbqQbh=e}6q-p4T(8{VCtdglZj>>kbDM+Ysk5*Qz
zI!d7K{7@~VyqQRMfwcrDf||NMYvr7!q}d0$SJwJ$W<--<=!8@PWla0#z6|gfj$%62
zzvy!i@2r*)y|2~DxFAPgm)jq>!CLgQzP!T9Fh@^XYu0L;+E`2zt_-jWR~%uzwMA*c
z1xFwUB)c&)jJ51beS)y!alxp8c#1`c{n*$#wvbgJk`P7M1x+<#KYE#U=|G+0H3ILq
zpQt6UP4TA@QLYs>0Bs$@KiS-R;wJ{cTLLW!<L>%%#QYz5l4#~U7M1mDd#-Q70Ue8T
zmIG}@q120(e@8^b)QjEq2iJtBg5+tfy(BZ_Mr#s84YjjGf*hKCA6ut={1}12oeN+Z
z!YeoQ^A&AB(`Xi6>02WDpDQ&`8X%-%A|!a3)zJE+qe~-57&*To969`4Yji4~pb0&2
zTisfCBnmmfN>Vs<>kYnkxw?;i0BdBk-oDb;<OXf&G10vPA=b1T;5(kjXG*RVX^c#H
z@hIQx>_3XCEA)gY#hj%p>v`YsuXUna&xCjjX@(*YKl{o1IUow-z<ls1v!**=^9@_0
zLkq#EmC*3)$jF<tsZS6+v>4D*6n42+E#Vd4@paX^%($0*SHGZoj!>~{!*C3PZiph}
zAVB%{F5b6be4;1{V<1ph(3y}Pi%NR*5tW5~gQHx1qIs#6cb@x&LRVr&!2}4~>2#;>
zF&AbNri6flG`N_DEqlGp^8r$kElL}Ovk6Q#%sQCF#t<Z1oHtSUNJqIcZN{Y$6SwKx
z+!UhOgRJ8vIyKgS<5e-O?PpmLBN;GGNJTgzivXT^Fu{7vwSp>{G?j$?y^mWD+@}<#
zCRrupZdg!d(4nWT6BAq23}4|=KGWv{&)$1mtU|7_nB~P-%&Q%IUsyPSBnDA5zjDsW
z)tE5Gd-r(v2SdE9nDhe)VxsxHQ{Gvx>vwY10Ct0j#S{>i+j?4SUHmv5VJY%WvYleh
zh+C|Hs0ZLuMPk4ar-!cb<cHq+!m~+&f+wolnXE!?<L_2okboL<GPmsUrr)F;gCv{<
zf^gkaT#y0D-}R@r)4E!E&8$P-fpmzaNVGCgjs*0vT`R8g)qTjN{$aq!OpJE6d(Abz
z(b!SEA0Ywa%Hf%_*gIr8a|QIlg9daW?;bB_bY@GhK+5!}dEg!jW3FlH-9KNOUDw1_
z61u3+?YS3vJ1umF0)SLSsi>j1&7HcQxP@{<jb9J6+NLY<2%f-+3SaKM7=y-T!H64i
z1fXKT$A6q1@mUrhqMRqxW46wW_<VpKR|JF9o#7Tz_U`L?)(^O#pk<&xqT$^A<FXXS
z`Lvl;gw%i!iYdzFZIF6buWyJ~y(VcW&4LkLagUY#62vbtwBlLq_m`({TW0SH^RCqO
zhXaU)@m!3R(}q_iib@UC5p0i7NLKTv&mz9NrMYO<A~z&7OEIN}|3>_Q<$wwk;t!&5
z^p5a$I^phWF4c5JdnjJ-t+zp&1i}`t3kGE#vCWycdVhDJ=#ai)%>4G=m)0@|h|JYE
z;a2myMAVlhkPvr)rR*oHPgm)9u(}*&O?>9@UEYnNt>eVY)%>QPQhbT8gvrVg`UZR;
z7qrX1cn*6%>8xBjU3@qq%W>_ru(I0GC}q90T#78n=?2!oHTp}*X3*cgeYLe3I7PWX
z0;Zh7TR(VnCTg?GzFqWCpXj;Qn>dOt$!9=g)Rn$|S43;^8eyu)CJ7wO99}!(J-$<0
zg)@rmY<ASU>_;|O3@6tp5Jn<8J$Qgnz(cbl%9cSi%9vDTZ~KpT9m1TJ9&(lLNYx_U
zbw`UTU;23N%%i^OIac~dIyG^eb2y6D`R1Ka8dj-aA*@|Sm?Jm!P~(&f8^9Uw^1gkQ
zZh|};H2~o)(#%AB<lO+A!eQhH5hW%OnsE1!5}UEyyYw=)GLBM-qT(3y#4+zV-!TVn
z0WZiKA({#cKkJ0&rP=y31%6apVS4{2SbcFtqe`%pg+WmTR%cjO_g3i)ZPaudo6#eE
zm&|tirS6m(?56Zi-{mi9qpNMXS|$K+kuL@Y!{&<HD~b=mwC1`6_Aax7wNd;j!jpyz
zOQaq#r9(=*$=~v^0A6Bep$_H~k<UZiw+bKaUt~=wQ~s~XG_nq%FoU~iSRd}tg~pTU
z@>oi{0*C(Q{rVYRgT?RCwJ3Q+oHK*h(69RFV4?~O%|>>x{)ght+smmUsy}(&1!T@6
z(XpW+kcJmq$FQMArGZtU(#Vz3FAnp~fk(h#GsJ#jI~o7iJAJLDshm~cx>gqJGt-yk
zih1N-5fc?Mo$-gSeu4h5T>F|n(|7YT%9wRLlW~`?<8=KyD=5Hv`v-gt(DYal!W1Uw
zN=Aqqrhwab(Xh}Dx%W$Hl|^zLS?1!WeFLA;-q2zQwBF`H-%3{q^pOZPN?1<x9T#g-
z@H@Ra$kqH%tDx{#M*6~q)1v5zc3Bct;e#Lwlw+0kkgra$ehV7|c|%asec{jP6BL3A
z;%P5seNqvBuRZO1afbd>lmlZfoa1Y^+I_E-=jT@hJeuY=`9_S@)^t>+5_wqcos+lv
z3`Q_pMO^?%Vkze_64D=Q4is1&-sBMAh(-C*bJXBX??>G^`XGJc_rnUMHs2EKgDwm%
zDeI`L#=N`6x8ty@4G2aDGo&Q;{oXsl-+2{0L--!2hl{4^DT}gN0)X)r_&ee1@KQn7
zknH`ecZI>a_)ti#uQ;?Rsa$DhW@dYz>Z`x$4ywY{L)d}2#jcN;(;yKc3yZz2<R^$K
zHEGc_<G6s98saCs7rLeyhLLM^#niRx(ga<mVMU8hdRLBb7A{s=20-3|jW@Z$w*|7I
zB@`|o@R-XOXZQ3Sfi&cC*QG7|3gMIO^Wqk!x!gz#L3+3+`G!BQ_3b~(7Sc_HHPJi!
zqANpG=l<>uJ6~7EWe6_Uf_t6e8B;vgyQuIyTOOfM0eh#v?SjS3lcOhiw7K$pOQ2O*
z3Zc8=La{3gqbvb>Xq3|w@{t?!<qmJ3ffX+o7%G(5Dcl0ROeElO@4DOcC#tmc5Rdia
zW#0Jfv`wI3#1o7nURHbapWa!+wWC{5VmVkCf(xOCyY_kq_tp*x0}3iYf0fivfiX&j
z0ZscbW#4;W$<|+CW8g)TICu)B)U$HlM!L%0!lWfP|E<Omd5BETmarcwH6@`}KJUZq
zOGvxwA-)C7ete8AB41n&ACeAbUJH);iWX=?S0=Az&vt+2`(>#%$$(IAZYfS5`4?{_
z%EOppJAKEV(O<YLNKII&Js>*D+&_H}uhT9)FBGcnkMYiwPBxBw;%LRFGEH%_OqTQ=
z^UR07>j@-bR-sS8KFMqqxu2N|^e?Lf$Kbj?etTqwZzB-`Vri*;+k-S}VTV87>}w1N
z%C5TBGp_xMt&|K^%gX)Re8sq^@<=8P+<CFSFQbg3>^c}KjvOA`P^^jfXvF5f^#|pF
zE#?is&)-yI6hek@63H;JrsXdYPZF2GPy;FF%2JI$$)bpCBj042;p|EuES1dm(eHfM
zh>0t?r*e8Bu^{+@@vrqQ_>HfIMJsA9PK<2o&OYl~|A#hbk?TW2XLN2w0nT6PyBTke
zj^kQo=oTDXUh&y9-&ybTOe)p`&NfjBTD)b|!(AzQj4Je^2`7pqdg-2sWK{Rc9p?F4
zBN|WEHaU!h!k~1B8`eDeV8l_EiT21Z%!`sbE^IIn2C%S6?X09bd8zoO!Gu7#1x{*t
zqpIMv4kB)(TyNby-1}gbvNBO4BtTwn^2ADjkI9{g&kyxpG74H(w>(^2bj}T9t+Y<8
zo2E#swW)BbX)xECimAlzqkj-4iN25^ffVnzx0+qc`Un(S9>hflBJhgytyy`@RJee!
z1qqQzGS8l8)$gyr?@rM&;1idjo$g?LE6Srpn}SWbQFe)gy(OnyK0*_xn`%JBzF%%F
z|4UmXftctE;X`{5db2NO*f`^k7anc>_9fu3RFZ><!$wMyBR0O-LiDe`dE*H=fx$|Q
zu}Gy|T1iW08d7SJT@@(o?%m$F8yJ}@AV@lvlo?|NHjl`Di_s;<7xAEVOXL7+tU^k%
ztjk|}ysO5kdRWU(%;tRx8zSI1-x~e!#Miz9S24YibcZTk_ozlIc1iNi*%<m{jVnP(
z#x&)-TYTc3mCWpro{D{>73lpzu!CL?dizNb7I0L>*QjC!lM#U2eEOI73W01>Wy#oS
zsK&MD_Kl6WV;@g~wY%$!o_feTq#?hRpp{ZYEoz>k{H0yIt?KEv^%Gvf!N}3Ci5=;^
z2jhs}bL9=&ENkZX{{5?dgP5Yhs6on9er{`N*bPJ?0DUnO_|e5y&Qkp$pr;#uU^+Lj
zf)dk#7$jZ{GcE`BCccqa>wLU{LSh8}$$EU#(7OH-{UP|6XidY7m5Uz&8i%lW1?wi)
z%d_hj4zkV{japoc3<+0HNs#cb?Q^}2{^eAl0TVhRnjlpsq34T#^W6r*Nju8jD5)z+
z022Pg#oK((rB`V;oxbp`cYi9IFZXrj2o^2Zdvf#PPTxn#`g@%b@dm>bfN_;UeuFkU
z@pIp6oI>6u<Qz4ql*Q#^CT#Y-+*6x%xzTf(8V9-kAHKr=Zo8D|(aYLR;HdA*tF;m5
zG-!?#f|jx;eBsZ&;3L{2G7et_+FQIR(M=Ed&bw3f*9zprwCL?C7^FW=D=L*N4d!vq
zcfP%7lN{&1rEnnDRAzUugVkxV9&OjXuTsfZ$GRAUkyTbnCf2sNba>g6+r6)k(D(_>
z-O!2wZTk8O-0(<|NiJ^-T<QC5i|V7ymZWbLgWME?BKE~BUwzjf(LY$&z96@Ki39^m
zWGw4^%<;|_EKB5-KqDA9vb6t%Szks$Arzbv8y|0nq92)Od6nuUy1P6U^~3(&Wj8Vc
zXHud|QPtp^tl!>D?}cMjr-K(t=`GZ?3XLtY#CQE!2rpGW`B+gO+P39|n6CP!#eaEc
z5VyhK1iy<@!%R5gjsM<VIB1lJ0ge~2${W^Qz4Uh>u9W6Rz+l*)_NIPC4?2omV2T*T
zPZpObAN|-c>onRMI}?f)>N3S@`aW|_aw(|?Gs0$r%&#uB>iwdkYA`I6W?YrXmrIKx
zHjQMvvGiO^S0vqyV<R5J62h<AgIEjkTdAOj@d2N(^B>RfWgJjJqC(YW!QVV;y#r#)
zn}uiKk71yhbs|ceyKSs8`8?t}PLfRHbq`t(HPs$gg=_<uI@TI{+~E<cL$uow(q`}x
zF#nI{TIt7i5i*KHbp+~ptd!4n$3>Ts{PWaE>+qAx%FaNiCjT1iq~Lp`xbZ4IEO8_h
zAP@icUfI`OS0;;=$m{>u<^3`Tmn!;#SjnT*ZYPP184S7H_v2l9TGDU;=ehVwuMA&0
z+<@PUZwfvo;C1t8Uo%^yg8BgV2(pDy+uC;_L3sR7kbJ(EbzGL@Tisgy$Fi|P8ow-x
z$b3+@qXK1sqV9>vPGm{M))jG}P85QAN_<0z_JnC5in(?iWszEzue*FiPI^J11Qz!B
z$~OVEgAb6GAhc+^`~%+!9AZ4mDFujB^w0mT?+Vxi>(rNr$q^*CuiQk7Q}0&%U*5kj
z)WsP9pW_guQJp^s?XJJVx0Og-K5jrRxoG;u5(X7(p6K8!`o>)!N<fV%kABOE_N|jc
zuE4c~Ux;+$ys`tI?6rOn5eFT)Xfio`O#bEjt;c4#o5gxEWt}u3TOh7O8(GVU1CY-t
z;#O%_akj?z${x^FOG64!%>`wb_$wGew*p^_mHPEvgIuhrWomiD<zs#6Gno?_LlBKY
zRdfxf;SNGv%Wr!Q#Y06k!)?rtPdpOtC@cnRmFS#c)HOl9H`sU^d9x<dCGZMJ6o!{;
z@Q(2&g7k^JgrBhQ6L0jc{1d{JaIsJ^P;>FC-j{e|g_)>e8U`N?i8uM4KCRzYlOu6?
zDElzI#J3f4V-;1~S63hLV);cZq3Gu2;i}?uV4EJ8=4&bzq~dKw#6uZ#^tiWIGbINI
z7A=x(p8S`0_4iCW*@!YXrUEcUst>+~fmwed!=b|_gS>JM;VKoDrnpN0Fop3@(~Gd^
z2O`d%s+3;oCn#5i5_OxHA{ync=OTtoQC0wzV)Ex{@ZQK_R`hd92x*Y58%uhi%zLz@
zw(&~^b6#HWEv&2T&UFcjx#jBB=H#k~UX69wz8a6sdHB<|j=ByFu_-V#giV0&G`8ND
z%CKlgTp&wKjIzP5rIRIdBOXr!q2DLH7qnn7E&NZla4rE%1XnOkw|ZCOg5gmKDko3R
zHTjs{uwYT4T8gi9u`Y^a1zfGtO&<~Ml6wdR0bG`*p=c~N51}ftC4{e(31lCVHQ2@!
zbC7s~7caB=F00xh&wnE{7W%QezG8{g1bW}?Jzc1)HCPm|{%x#2&>lY&?PZXP)Htpw
z!;0DE-P==tC_RAETKhTmw6}RvZ3V;(Ihz+ZvU=^;F+#$tQjFx<{oc>SpvPDNnHV5x
zt>Tzl-p;#8^m@IL#I-!oVlVQ(N+V>8GDx{x;J#$ZWO@4nYxDTfl-=;f-8WgUzN&A`
zk|h;5F4)~Va$K9lvSyXV_rEp8>Ucy+5qlH61U@5@6HDf;h<#ToeP_V7%R$j3YABet
zgRG^883^Sdgju-38>VlV_q41tOn|LceAB#tuHy4d8LNwn;3-NYabVH+TNjJDjV~Yn
zMSDb|z)}ffhuJNxKR`U`3N4m<9MuwK#%s5G?;WDuc&GKm5CO|3pRQ|-7kpo!29Qv>
z&ApWBGeiPrmIq;<iPa_?fe*R9tG7+ME+?|Pzy<Y%Z}(#vkUuB0tZ!Gitd{vvG6s_G
zVfDUOo5a3@W8nrCT^VBzTP!`*nt2OTaN{OJQJp59tWg4hPk8@!z3oCQ<#`RftSg#7
zFKax~D%_wWR|a#*=m&#KwVKY>F6DmW#uMN1<DINgUu$z_9!@SfnPU49ycvRrm7Xxs
zXdIkkt^7fMJ0K{f0P*cv>8{e`GJsHa5=tREFz{UKM@X1GbM<XJI%47`B#Xh>;&RIx
zrt9n`5+Ds_L!sA)ZQXl9W)LV6l$WY0Udy|9&&9vQK~}Wftwm_2jkDhBr^g$nC~7x$
z2zPTCYpgY(FYSW2h}WpRIB!z2q|Ed^*SBJy_EKAz${wg=q;j!FL(cZ)Z`F?UF=$~#
z07UwhKCf)7GHPI)c2>z<e3}4S<@l<1ypPH}!j99Vj;gC?U$8r(bGC{**{_NiSXdl9
zh)+ub&oL7ZdnSo-<^oCOJWBlTOieQhn4C%c+tVL*|DV4ykN)kE&@m=};g*e$nEAJP
zB;xG}$~k)y11LvOwljola&;dvV$=QJeuq>lvZ>jqO{HwB7(iG4=yh;Zs_Ih&h74s0
z$9&JX1bCil^x?}@LFp!ey{OC39~%GVJ#`K}^SBuaAT8uM{k(m|n>VsLVi<~V8FP`?
z!h6!KZdWLKNFO8lPElu;lc=HVpW|~SOb1ga6bpfu@fWeLlZB=#L*a3W0<-suvu@y9
z^z`Njqg<Ui_BYQqG4!RbkFZ9$m&9~`%J-My&2q>@OiSFHF;};-?m#aN9li3M2!*(R
z+r&Eee|j!O?;~$Wc2RT}(k`K$*{!Thd{O1(E=GabUTo#zKw(SDmtW&uSf~+qL~N3v
z<xog(6qi7Yd$FKnL}!dZX)Y|E|Eu#Oy7y8V%#^Fh6(a6CU2_D49}3SAxi3yW!ke?K
zbxT^!rwUBJ+=;}uaL=(ICj*O|E3z8TXJLROCW&p84*^QS2?Mf%iBe~=^L+cJ^YPMN
zDK<V8#JL_46XNfc4tc`!5xuMv3`eURQkz)odUs4n#+jG?gfnMkqxr}f(xb_u)GBgZ
zXiT~1TfYi)n%!_dB-E$0Ofpmx;w8jl!rOs?x%vbb*cFb#E+Ckc=XWd!+_j~ljFbWP
zOb{OJlJeecRp6Vo+RjB+BHSeohesId^4Wn$Hfq<Ip(GG*+M>W4o2$1IX?xqkz=U_I
zzalloOn5o4;+dMSNagzqW(8h&wU#c}@k=uU*{^FCDXZKeDw85tWa^5*#HXvjgrXp4
zzT*wIkP;cB9XpzNj|3X+sQz>IWXIEip3gO$&nAcRd%2jC=C9JDic%ZR=RH-n1iYR!
za~N-uX?4^oeTilNuV2KP<0qWqoAej*Sd<JTcVVJ%ac^m&dHElw?D?v17Myf?|ES20
z`sTiJR7p5az@RgK!~_bT)WOa)Lvz2M7dWxBd={=nwO<lhB)NR*MS+!1XkRZJ98w<*
z#9gcUMZ6k#ty$Gq6U}L!>JgROiB|)bjf8&)rk)%VHI~^_ULM%H>Deo4+NITqD}@`#
z^PUb|xK3BO5~aWtu2~#-@Lg^17aYMwI|LQU_1eVe-sX*Z<v}JXwjWSYh;1S`#ZWUX
zeNjoLs(!T;1=!vuFov(DhHWn*1|aXK?)&kUWN6h@F5Uy&IyoV5b$(;no-^wODW{(w
z7{!`EyqQvVvQ%o$rgHf)uS#;Joop;Um^Oq-2D8QDrIVx`b5lnry?&EgJ29w|oEddP
zoxzgHC}(KCFlw?F*w1;L9II*Vz07AzC+8iv*R6m7zd!^4coCM)_jieM>i!#=RJEZ|
zD?$&$s5NQ;{f3LXMc8qr*x|nVPNiNnqAKaCd@y_RPn`41pS6xHO3+K49H)^Ek(M2t
z1lhu@1cWo|lAPX0^|8twd}w~6^WgDX$CIl{B0D?5Chm9ws<?$72?pcA;!B;uR_!aq
zd48{xv&fx@=z1l2CHZAC75U6fNlsiXT@t|aNC)S|mbH&b@0nFsgr|Hma&7b6PEI?Y
zJ_!0unt+lA6tJ(o^U)!gd$Qr;I`9!JD=Fj&(X%E~W1R`fwR{|}`l7Sb&!b&cr_bJZ
zPjaGbnZBs>p)TGgMY)J74;H~Upb192^b#k>ZXz?O-j`sWh<Bcd41IQ0BIY8~%}LJO
zbKF^0+EN6;RY}hE?v_fuo+<>)!8o&6HF||YJ3Af2YYd7ibvc{kl5W)xXTxW7bf!0`
z@eFZv|JOu1{$CTJe%KYAoPn)$&`jtxU&OCOF%&4Z2<G}^ob$2!m3_)cCj-M#1A=sU
zajlYi%i6*O8q{-VR)tDAF8>#m5`)^wiE+uhzXZ~u=t%aG<R~PhI5#(IG9RurKnlH*
zJqAt1ON}9OTa2^4o9-m&BULU{vdbBk3VdNH&P{!^lW1-+rRBL4f)&`vuFjT}TAzb-
zu1<2c53H>-7ER+=N9XF^?qq}s3xkVKWu7vXkH+XzS-H>}FOq9UKWyXV@N-Cw`rJjj
zr2Y0`UreT-YGZO(E~)hcq|o?Hsm>Sa`f!yGkg%qPmph+#scnv;62INa8E~chTp7Tn
z*mvA5O$W!_U;Agn3vWquHizC;=_%GfE!i2-(H)K&g&4081Zk%{ay-S^e|c@Qkjg>6
zOPv?o@yJpMj$+^Bo7uFpx;Ptq=u@JhN@*BLV&$89ICU<oZ8V|1DM`*?_aUG_4yHVm
zj1z5rTPN(Q+8&ApPz<}&dBmjvLiADjWVce7c#4T@?JT>i#vI~}>FH#$u2h<@T-2Nd
zD*qdeq?MFn_AWIw0pzUS@6M;2wY4AgHIY^Urx$+W%zZ&y@wkrDJ6q|IPe?F<8@Ff=
zM!O`64I*SkBDf`AAl|e&;y7DT6fhktm2!eyp@jREID;S1M>9r&X@#oiriuk*F5Ktb
z_8rf;*YqfJrxri!dC^zSq75}>!ZjG?#|DA)m$gS@1^RK_1Cx;J+?MZl>NA*psmQ!E
z(mXJOQqffj>1-G9KCgY(vY{myZ!+~*)YaGia5{XUJz4oU5}`OLJ}PlB_}V^j#=7fK
z<ta)T-g3Yh@k!0`SgEZ2j^|VD=~Z#7U@G=_iuvb&^Yv#npF#ENf52(?q4uElW0Wgl
zr4mJ*Wab=no>^7nA&K`Le8_3Iy+)5{i?1JWzGreAQPn!(aoqV7m6cn>_qh_3m?wDq
z!+FlL-O!Ta3~1eWm1t;=Z0D8_ow5&fXzueZ9a*vuT%P3;Ut8i&PU24Os``1!Cj5}I
zU|Y@k@ScYbI+35(+~s65<4Y&k-Q_f5pd>kkT>*CFBGpY!@;f?MWlCgn=I%OyI<ME9
z06@Wmzd1#`rZT0ohnx31W8B{>{R`KpsDJkUAS$`Q_43B5C!)$58Q~1=XKLjwEvm|~
zpsPj8z{|^Pe6y%Eb^dg&VRs1DmDga|bD@GR;I_lgW4rYcW&2=}z&sM46>C1+<-F@2
z)ym{1g!uLzXUey%AUlOu9E!&!2;aVHfz!*=xN0+M@tV2L+0~mx@IK<iy3J|XWuQ$M
z>7?MZKRc&6lPn!Z=tT<V;G%U4*sOca8GUxOH?Rq}KH_-7wYdlRF%*d)3Pe&(1?c3a
z4y@rN&P=cVK)-TCF?^RE$kwyaIUS}wm1n^>K6|$_+MUIjZ-jlkH{ZFsWwjZk5;Hu{
zS=_2xGpDb|eCKTUy(~K=8uBDYh&KyfeBgfPg%<h<pNX}UJ}x+n*eAR-Q~??}!wIz3
z&MFgzt^7LQnbAml27{6aRxckZ_rDLl*Ln9G?MXvH%Ow;hza02UARV})S+>ww8KFNw
z2o{dvLOIgoS)XKc+v84?@_ACyP|6x<1#rE^NFlsrYHnw(bnbDVmyN0QS4gtPtDJY;
zu__i$Oi5>f)74$L|9lws7rV-dtG?<;+i44(=iRkBGbYPB_F<=_+N;DW2wUKcb$>mG
ztM3l0Y9)R|xe1Zt;fdzmhn@A+pW~{jF$<lU&E55>AZxf*aGul6rLIs36wL=ECj#<W
z^{8{AL1;+{515QUhkNRo!*}zXPn%X73)()g(D}f9b7gYl!o|kZoDJ@WXMuhd5NX6f
zg43Km+v(uG{mibWNydP<^{BKs*SXKu_Y5IcN@AoThD1=G`<+(q#45jt@n%kQ-mL!Z
ze8{@F&YQdjS==p1;y~^suq8=*0i$`$xv(>A`3%6MSGVlSbG8hu{^ekDvRwCZqBtwn
zbnT9nbZyGO;D|uCOHC9v`Xz&%-=3+}ToXrRw@%KVu0E>;$+9s^@ojUE#2)@XO<us9
zq|Q$NhN?x^uo$rT&)5@HCM)Ltv^eJu_pLQ-@C5UDiu0mtHBjP>a0-dYC#@1*)H&JN
zj@FKfoyGT|WRu01fOsRS;5Gl1*|qc}RqiRBSR%#lQl;?o{bxI6Y5IU1nTi`<MP{hA
zB^ZU^s?aDueJe|U%F#yQmkNgz2{iTo^j|qr+cQ7`B#~QmY`*TThE95+I~jdtR4>w1
z_5sX*@gVV%Ow>8fJ`_^E<Nx#WSo3i`=Rl@vfN18jsYn)HaYsAnjed+Ew@)bWNNG@t
z0;lzKMotbj6YECiJFX6?6#m*IXXpxs5nu3_>|+8{lJ{+nKI{CF*i?t%Rymx3T(RN$
zM(okf(#L9yL`}m%6P>TuXa{nj49_poo7{QCoE{(O9D5vUh%^26X)*NFWQit<U*jzO
zsA{v+XYcro^W}ThnxX6HRnE+<)teK{_bZ*}t2M`CtY^^tj{ds)WP&B7DAkzBWdsrd
zxQecR?~6{+&(%JgcR%}#^K!?g)m9_9d^M^p5>h>OgVQp(+OOg3wGNV0J_tLLK2D05
zz0lnmvfBNi!V)QUkxaOyd3b}fbceQP<z;KDaJ=PnoExew6>-ESa)s01U8*y1a;256
zGGCZVrHK_zCVLWf1YnfAr{+6<#8>+cUV7?T=Y4lEYD2T3^HWQm9<fR!nV`jExaoxr
zC(_Zx40T4#thTyD6+Qo~Gbuz=6||Y0VlMCI#80V4vTRYqKF+nb>q_8NA1&52{;nib
z^sIB!$JNG$JVFG^CzIh!e1y<hP6&0cyV!ZsMcp$djxH^kOe`~l2}pFuZ0EYqtG$}$
z%naxC61UmCSf>(@FJB1f&Ty8M>Mx+L5<;W1NABa}g{}TM+bP`S?rS-<%k{bgS2=4T
zR3=#4YC<-5EOOpCUws1=r$kW6MXQ_zA5<Mq5c$<BolP!*pZPVbv+rr=ifYF}Y8!{n
zR271t+JE_?xusRrmKsn<Y{!1|RFUcRcRI^adjw_0>xbe4hFu1@!7)lsp}M}g%^x^D
zfFHnZ+=W6`j44xmAQ|uzY4oWxGf{sa46W)LM0t+i<s57LAN`5&p<i}5=OEWqg|7a5
zB5=lv9nLLi54H9SnAdxU^J+8g4^2>ADkPVt3P5r6Gbisl?Zsa=UQ>yfHWuuGPn?7#
zIxr)}7?XROh4!9V?_83uQaNp6p@<9$3G)%7Mmv`d{*Ot-BMo<b?OcgkQtKpR6I0C}
zJDhR<)i1=h<{KyfzxoAWTKJXYbw9F}MaIw2W2f`ne?2dlQ2933Mg|gGmbSw=)Z{<r
zFS)3ZJDeB(YkV=}r|fX%(GP#sWPIe^Btq0v@mytJ7kIv%_AqnQ@oxB?@aYom338TV
z<_80tV_5HGLm7$UT#-Rqe)IYp0#B~R6v7pGxFC0O)Bq%)xNs3R$*Jb9YXj-)=&kxX
zDSW(XWT02uniF9O7mN-px=4Ha@_LCBm0EkTX31rN;XP_R0ri-AHw7-eutpCCvU&gd
zK%jlKS#yoINxv=-&%A0S1Jakw#BI*y=l;hs$HTs_{MLE(KWQC2V(nMX#Q!7%G|4XC
zJB!?H61{vfSIdyN!tH;+f9S~TotW(MmzTSdP<ryE7%{&Qv|+*f&M8b0K0p#bM#{C*
z@BvwjIxPdcBFmqye$1hue|9*d|BFJz6LH;c=i@W|-9jah($JnnBL?**F?Ne;#I>%T
zM2YR*p@)QBKLbj1OqSS-%YuPtF4mor<Ix{?ZGIWP;lgo&^Tal)_5hstzF~p;-3LPc
zRJp7H*aK>e(+4WF^(Za@**6Au*b!4L$^1Md&=|JCkQJsdZVI;U@&190sdQBM7~K)K
z_mA3~45e0XhJebOs}ityp+3n8)IZOiGx!B|2f!mM5<envD~2n4nw{n9CBVg0xd-8z
z@0}AfRKp)oHbyQDk^ng{pKZ?KDgVcZ0Cx-xd~u2UA$YJQ+7+vwyNjs?U37KemJZrg
z`7n!B|4DXWse8KQFl#MXc?6aEnm~~|T6vklGs{DUAFiemf#Vm{7*ouQN*`Q-q_L}f
zgflF#$K9kV`_1c)4GY{+W4~2@mlz<o_<To+IKDS0@J=m5a8!ql3e0g2ca^~*!#jrs
zcDszC5;4^rJmtRz=WEZ*yz)A+dCRW~1Y>m>(zuN|h;`GES_#RfZf@WTcgZWY<1ei@
zBCs(u{|aiLnbk~ost<!|dBgC4&z*WX!oc>VB$%>6fg#A~YW!00_L0K^``u+wg9{3f
z-D;a1_+?Oy-^-qq=G3;267q9qq$&%_(KvHD)5xhCp`k87<P>w~OhHxK2M6wyGsQhz
z`Lq^rKb-#N+GB^f28YmZ>dKkH3!L50a*$xMV#>jq0Qt*zrJt1Q5@b_qT8WKx@k7pv
zjr!}fQF){CvS}8@t>bLxUXVxzNh^{1(D-2KfVD(D>^utG>`nm;zDWJTiPW=8HGLm-
zx~{LS55{xDBIjihM2Y5FB5Rn}m|Q-KIk4!h9&!3@(mr=Vh=anmPE3^glS>|Tt^jhD
z_X&%2quXCz;v9HF8zrLOZBIq7OquN%_hVR}N|WR6TC;PZvjW6h29hdUWemjyQRbq>
zj`d<~?`FBf7dSiJM<^-B#eU*zWffSpy$?D=-*N}5@*+uy_~23Ji&|F!8Gojan1Wz_
z`Tj|GoNyIl09fK%7C0T|*PIg3>XpBu>QaemdBGBAh5O>FeFA=cyu|s`{gkSG5~*`$
zQq@;2)*M;r46f}t37tOkzDm0Q<)1&t*$u+XN>_UqOIqb!wNr4Sd48eOEwoktMdmms
z=Q}>pdn)fIYR&D7oMA83@^T5#tVBx{B!E8k)8g8xCJCMS4B1xu7QXY$xAY-;LT+}E
z(<7NBNei7{-JK9(7o9m#vm-VvbG}~5<lN%_+1#xs-~%ul&m_)tPKRJIG!h9-1k+~c
zPAqUnR0FT2!r<@)&d~o4n#scjtDI>Jitav;pqG6plyZ5G5Jcm}PQ5m;5)gDvDpWX+
zO}+Ad=i&3UU3hw}5Gy?9vsKPA7c3;l1xE$iXhI5~VeXmk`0M|F9*1&PIrqx9hUyDR
zCA+A80^?I#pQU(vsuPZmO*f-!f-<Yh+|nmFS@pC%3xVJw_EP&1OmVog;kYhr1w0!|
z!5I7j6T@{j70tq$k1ula+@-DzSprGj=R~@YC9aWuTs5m0XcA^Q$o6MZRR@aY0+h=Z
zIJ4dH|8ucWR9dWbzNii<qo~YXP(F)H*qvO)4HSL`U#|prc9fvW;bWYquBw89QpmCP
zW|&au*Km_-V2=WGqVrQPyVzN}n(vTwT6Mo0#z4z@X1e3#GPs6sq4BCWlh7%X@kHQ~
z!EVSATLI{6rWXd5PjW+)M&`l9_>b@;2`iuTO<+lPHi3(Ssl6mr&jlo~ca!f-{i#~J
zc&;AHcc%TQ?dpmXH>4aPv>?uEo#9RnE<gq&D1}PGasvlFkXVmQr`3DfLo8Eoq?<(D
zW2iy~H{9gx*yTRN)x{JZ<Zd{g>WD${{7veot2#LzSyABJj{8a8L-1=5DcbS>F?Jqc
zQWe<(zH3}_j?X!_ZN@AzIVhq-&Wtdm0fA;{CI=?KFn~FW3MwYDSy9oIHDg?Jju=-_
zS;erfi)meVegCPt-S^(^9^U&t^&4+>rBkO)oqTfi0X(q3toy)xuQXo1$U$UZ;UP9s
z?){B&=vNsg;$pG}dDk@gP|$n)evQN|6v{$t0}ut%WViQIy5tt(;!!7k>?|V{%<Wy9
zbvJqB8h)-*s=m!MKNKs&{960KKZV5n9#?>*Np5@$q2x^F9;brK(-jQgh-m>A;)FW^
zPy%{Ih4Pfzt3yYQPeuT$q0ORa*=@SyVlbtPR}K{C5X~JICp?mTTfmoR;(#gg3#b8c
z4*rNF7JqTo5KHHN_=oTu0}fE4s8iN{X+A@xp$w1`gw`DVqMRLzrS`9;DY0#f68Mz-
zHbrvnN$DikCDB;Q)s+F%A^R{YX+3ik6Bu<GWzEJ6BSBF7k^D2)0!ja^m+#UrpWpkK
zKV041TW4_9*f@7+d6jImJ!}m~O{5XgVvL6QPyr#wc|0!PVa~>7xQsiaObO9as7`YF
z$gyWa?9tg7ORh;~L$x0@X)gLl*5rS9ZB`zM3^i(Z@Je}WQ`ceaAu{(Y^CPYmYFLD%
z;v6+8WPh5q;4h}ZE5oHSi^*H3KY*Q{@oCnQTg(sOIn6DmWEMz&+kdi3e+W-Yl&-#&
zxEiaPLi3$!2ttvw@`o&M@)5O(F>*CO#F<}b4Zb-shIOWnQ0=9r113_Z2O>9ol=bSP
z<|l+pVs0CZ!n1)Fly?<1-@IS5-u$m=O<z6PBJ!ObH)UOWtN8&2OU*Z~tD<xxK3D^O
z%z9eg%M_+TrA!3-kuj7MYo$u3=!dK$A21^XTuq80e)-O|Ut}%2#x$jz3UICbE^F2I
zMka-np{q4DF;TjqUfb<RIqy5u4f=<tFMBCwshCsBe=(m!M+BaKob~;Srhz;&cwE`b
zT?r;vH^aOG3E(vHm#mtf%#X?~^o${G`JVFdx%R7fHXKPYFVy+JWW~-4HG~fh!`Kg5
zmz-{X!E)*h(KnKYG6eYMV7pm#oSe9DE59gmb~#S&xybwi_Op{TFI+f~j$}9o$?2DE
zrE9UX;y5|{V)KiPCyUZHd9r~Ax}12Egk%I{C^1Q#|Myuvmu9s86(S4zUaNW-zPl!r
z>YEcJeh?~Yb(9Tz3#!02_5@jK9a@18S|)Q_G1H+4?cH0RbuxC;@aB~z^3DOKH9R9=
z*_!KJiSyg>a;bIv(@4`Q(pmBJYr&$*8S?FOz>08LeM}=@+&H3*)K*r2mbbE0{vE;V
zUga!Ri17>c4AIah4Z^^#O5wm8JLP_aC46_tFsvyy^YG52tWJ&exe>~Uun1aN%){eZ
z<FX0)(+j%K0{QAf)3Jj1YxP2;AP*AbbK_<33e(ejW(IY1X)E*=lg^=?^4%S#mDqbC
z?;%;nrC&?q6geGrGORr?Yj`Ra<3$L@LE72I0>WCb@?8*@gHAJRv4CKkM2zshV|Xml
z0!S;W<@_7Wz{Y=}Lp@uGTm**G7s$t#nHD3&*5W<{%deim&M)moP6af<9pbKGcgT0*
z?7B1<i_tVEWvR3CbXl~}EF`4~g=$<5u@f<x`pX#6lZi^4HO+D$vPJL=)LME`T=oy1
zfq@1UTIWgQMJc~Vt9NIOOl6CqK{&`6)pC&?#Jf*wA<&|HjHW3NUsxf>)|&l?q#?2y
zmpbpRk_D^_QKPIeZrn4AjS=>?izOR{7vBl!Yfve-*rZcL>QYThs%V16tmhJmqspOW
zC>{kUAC&i_6Hhj7A`K|PQ#%3wT~|qUh87lm&2o7MNhh@r{`r@#l4Fo{Qd+QvIKNyg
z52yE`W~Z~qwXy>(pjQY41i#{1wMyQ%VqdsTT?u_*G2Ev1s|nZ1Z&qUy7QodjHfO2q
zVf7~Awj!lC%O%_1kMNkP=<QD6S7#)DzHq-hT<^MT)3szRm7nbXe6f~Fmrnlm@_VLr
zD6``C3C#t{P)*gMOgbzfx!u6BP)${9R?3bRUZF7yRPox~`c*C7U7M1}Vaw%RJEp%k
zH93ND>hhSjMhyn``-In_g0Qb^2)C(?%2S+xcls(BmNRKwz^AalDY;Ts6dA<q7xR2!
zlo}f)vrPt@^omJA-W*h<CodBR-E&Hd7RWwrsT^m~I@81mFQb>pM|tU8;q*^OtCfCN
zw20EzE98X?HxCoQhs&iG8hRE2A%&t$hmh&@SBFNllo@Wa%BXv<l2=f)b_bn8N3N7(
z^UV)5_@LIaN#Y*rym`5NXS)W~9f~p^ua<#_nm!e(&eX!XMnWwn>L$nee3^8jS51W&
z=D<Ui$&DE{#{p;FwwgFMpn|e<1y_Lp?%Z^pWM>!+>qPN#>91Cc6h#f3z;D;dl5|p}
zzSsR%%khkc3dfwL2FeX-?`WM~Yy9PKM0OUfksa-!*&Go`Qv=)PZtilesKqg5Qp9Cv
z<+ZYZItr;lv2C?{!$Jev37%?HC-rjX_|WHqQUzbVe1Osd%&P3bF;cyMv<?6ks(Etm
z1k>QzpinuG7lmdmPvQKfUFMBqWr#S2%Qv|SzrIv*P7BU~(isWy=~me^(F~=|xz?dK
zG6ctlh6YMC6)5pNeU3bemfl}<VIkHq=eh+lf<^eBbD`oykmJ>37Y$3tFfgS0`y%I;
zxpK6f2}`&Yb5MH|UbSDBRMiCsDrEP0&dPQfS`qx5gF{MEH{(xRNCa__^Kz>+of7<Y
zVSy?wFX@!UV}qY_jS#r3PBt($kVUTTG)vU#QS;800sNZJ$~ZK}s&wgmU(hN0oEjVj
z$0m-gvRUrLXCbf@I4{aI&6bTo!2gUMhtJdM<h;-dG5K@1ID3us49|&@uyd~LIVCs>
zP(kyw+Z_4T18?%YI43o{-ZDqNu>e!vjZj~kOerT<OFDx~It_~|<8ZMdkn)p#hoVhc
zgV9A>Y6;&`Xq>M4EReGXg;oMkN}QYK$b`ve;X_FY<{c<fAAIbY^3#9-balK@z>^?Q
z@RyaIf40Ozrvlz`Z$9ggXGfTRA=D{wa%aoSAyh-j1nAo8#br<YWnBCqNmMz}&Gr~6
zpWbI0MzB%U&~kOqxRe$+S)*j>I@4rCKohe^7ie6a?0Iuq1Ki&5D)<DppQ~xS+H54P
zmK4u}@4xhI>51xu6^v}Iwh;^k<mPq;jgvcX2o0t%!1PsxXD&P;ev_K9#2cFK#*vFa
z9{zl7gv>w|<u8h4@#}Am`H6Icl<g`lP=(Dd)66fpniXgvtlE!MuZ7Ow<K>>0xcEli
zwohYUz0^hx68I@c;QzG3cr{1*VpK9-kos=-9xS&%<*lE?HN>8LQfP!I4*&Xc(-M%7
zieWDQTP06EZyNe-vE^_}3zW^;I6+<neEg*uxa?-s{n5+CU1~BmT|QC1zRmndH2`KQ
zx><Dy_;#FB+-RE0iFN^u4H3<Pq0Oq_z(K6+&t}X0xUh<cDt=>oSolrW+2<J|Xx>hE
zU=9rOF;${nW;he3jvrEztg{p#*Q-)i-?a7h<~ci5%HrG2k0z?FOV`2%BV(n<TC<km
zxqy!^mdYT`Wos}fa4wiAId)8PId$O%$EZqBuS5p2i0K1XdBfW#$_D#;4VzbY+QNMJ
z|KWXP!pmkZ|L2-2=%15h;Wg&FVVNip()ula;$60iAe~juOIXyYU)s(TdTiKOgMLdl
z#~wgw1vGo$vLS_f`eqOrG7Cn2cB^Sr?Oz>2qv`~;CmQ@26C@5;=t*Xz2BTOuhYJ>V
zjFvGg?4Ul<a7zAS{Y|KK(BCtfvRG9YX<4jv2dL2D0V+?C7CZpdNG&B&1yDfKz&!;h
zg(pS6zR-m524K#9wwWwr(8%d#lj~CLd18KOL2XxUqlvo5lI=9yBcE>@_PEm!!0p$_
zqQ}A>chvrN#;z5Y82z9ZtD@$h+hj$Gf1cK4|MMMk@T>OM>fLDwiE*JOO@<XTjl*Z2
z)45hwZZJO_+<}iq<3{y!gg?9N4q5X=csdQ~F1|yyJfHHJXPwW(Q$A}*e<tr(Hh#rj
zvO~&N@LhD?yH(bEK7~n-)EsBjJ@Ua@X2yzmy@rWVRS7xZOgYKhU&6~#OSGSOm+WQN
zF{DdxHosQO#?H6NZyU`R{m}^Fd4#@$ZSr&tx>*jl9V)sAv9qq3`Yv93w!HbV>7u@^
z*fr=7NR<#e2FAH~t@Kav8dewWv9}nwsN<vW@(T0kyS!%d#zao@d|S06Rl<mcS7%w(
zC+>8LtlPr6a!iDsPxSb(_joxMq6dan#Jf=QstJnctJFDmq?}-1Hd4261vMU}RMQ<f
zP1B{~1%t8yRE8ORbG(f9$VUwUbE+TW&H|R(PL*HmorQ90;hW}2<#7?s2c;@ch%d9R
z8Y?^6cg!DDiDdaiS!IdjC{04;Ddv<ap+?{Gs#%8B4;hs*qv`wp_;~r)QmjgSk*RNM
zwneY{av5P;0<Q|1H>aycqR*J&x_v$J9sl(R+*aM8rI4(53~_xP&k2VBfN$y}6CX9>
z4(Wu**$tq{BUW&VoNJfjweTz&wG(@wBUIXZjz%ydIoAxR*urk(q-muYQETJ|NN1tr
zj+Ggfbb8Oc=G5??c^|au0=amC9Gyn)sSwg*g1l;<$iVNpKD&*VUpWf2?TE^4vDw6R
z=H`H}`%ZPMz9O$d=sWAY{8aabFH*keLT0v{>V9K?KOE<#5ts-x87PW|LZ?rIyYnl?
zXlb4fO)BCzi=vUTK4`4W_>I5va}p)>80Yr<yBWM6$!64b#)0)k{D0zD_h&J`4mLoX
z7W8$Uz0jrQJE&B>6crrZh(q0NZ#0%uPqi7cvgPIDQ|XiqaVIxg>uRzq48wBQZLwYb
z5joc%4s&<8A$4hFEO$OHaxd98b!qDPzt4%T9AFyC8frT5G%d+heJy+Z{^zuT;JzLz
zb({7}9ViDRZtm+&**~>G-EpV(at}Q?wIK(PR-fR$d0=XTD!XPK>;Bg^aM~W!OLF1N
zobpO{%}?pe%6EpH=>EgbK7s%zgXsi~LDE<3<PNYWI8+U!P!h_#<Cs?3WYe3N++D;H
z5x!TFn+qu!Kh3@36Q)Q>9HX>s&EMSR7o?m89y@#Xa2JsxgB=Br9Wll|(S0KgBx=?k
zda}E%0zG98#n3r_bGt4zgTb<qj83UyNnRm4Aqui(v;kLei%24$ZsR`F+rm*Jj5mUf
zxSKm4<+wNYO8-5MuiLo0+uw%<B5q?FH~;vw9$de#w{f4e4dH78BF>Dv)801g4L6}=
zy0pga{g!Deo6+1bvl;8{w{T*HLB?ZP!JX?I5_bze&d?tVajzL}>jvAu2FafeDBqox
z_3j|<DbNnC9tVY4+qk=tj3uQ3W5)0QmXrFXHK2MJxPyD82MDb-U>vOp5+yk2gP8l9
zURYeb<8#R|X97qG=;6{9x5*(y=g{Ow3_*#a<??x(_qn0Iw&`09Z-93|-*gAz4d&;5
zBoR04viUNONFr^>7&K9=Qrxy%39EqO2Y!)^5aE^dKa=r1rjbbcXl=Vds%}hM2@u`A
zQwH8?8p^fOMh&UKFO)g!x?h{WUDn`<RJ_hWwB%s<@N&e+0&32*#5Kx;nm8C3=EIt$
zfB;Z>AyDBki~K~~4ZqjrlgY}+9ZxKgOCK@}jvv9n9h19cVhSUZiykIZR1~tPAJ~zJ
zkHOckd9@szn-bfD2<(Ld1-U4dVsE=y+8#*>t^qjSuUQ=md59{mDeCHiSc~)lY`3U8
zD2>Ua8)TM1Ay)u5UF@`<Co@Kxc8uJrgM@0SS0gepWd9Pmc8qDH2vjway7BEad8sg`
z@*AQw`(J8xEu=7nX`!zULYuOo|8st#znY-B5Sz`=Wbt#3zD{0JeFjx)Ivb5i#jaVU
zv$L+2N>mvc+DzoB?kAuKg5fPqco+Gf@koPQ^sbjGv>6sO=%kF$&DvP^6W-d$GDez6
z>~ZSMUYM)-51*eb_oB`Pv=wnWsVb{Ta~7?fB`c?S-@BSM=?)D_sjq35g;Qz3q7<)U
zA1Y6n9L$;n()a_&!7?(-EQCP5W_&>k^78PfA$({Tw2G`R5XP?u$NjlT9`p{5*P@O}
z#YpMu?a#Sk_<Z>cS#8g)jBF1UcB;liCAr3`xGLg6+h76;DSiIy<sazEm<uH}!3DMt
zqNX$V3b~^%>`o~(rlAEiF}<)Yfx@NjqIsI=RZd|r@CL&_W)1$IneJCz73MXRU&c3s
z+NhxE<Xxnfy3>=T7O$16S|r=Z5V+tNh69$bxeuMM&ydSo%x~~3)@mK9I4j7@h57$^
zq0E~Z8dt%Y$emWI{>tq;Nm+^ciP1C1Temb39~}4@KxfD2?ki8D8D@p$Bmy+AG*Ok@
zDzd4ZyRDf$;g?a6pNk@9+q>n-n$XnLjZ|?jF=0Lop-t7rJ`^Rky;vTpH9h(ngwQo$
z8veE&+bxUW4(zdqe45KIY|y9=5oMp7l89fZx6yg;Y`I{t8BO<vGKCNeR-k)1V@G>W
zf%aUzMmmu`fx~Ob5~n}P!;oCFOY**Pihy2qbOdUF7uR1P-?wqbTE4y=o2T|4vDswD
zBMg-H9=D{YuQlfO6!Q>7*Y~T1!UVjSmCko(!crIhZcJv(7aB9^`U=YIyIlHMi(bMh
znpcp#v)9PmWJ5_cdQnasuZ$Hk{O0sFqsr>eAg0Pz-vFAjD;}xt+VJjDXW$dpn)y=t
zfhYlobAMN*&hg7+4sHr8pB#Cl!M3<qsD4n5OA_Wh>afISQo?}a#Az22u;xnn@FCMn
zWrUdLTBRQ9IZo^vIVzKfx{?lm@mRU=@xjD}BR-wZT`VQ%W?DH6f@jv{b+qXvBJdl=
zFF&CWQBv^Ijwz27h|~XW**D*O&iKd`IFBxsz4kLd;0fwz)UZzwy6Q}ciuqbr?+NgH
zcm8mtT#z03u`~Tb>FwHB=S++XSpW4<*)tKL3V}iu%md^c*jGM3&pei4SB+v~qR3j-
zDKCGW@S?JXR}7u1;Pv!9ad2}5C5Ig-3z1&A2cu%0oB|4QmEiummlRknsa{s{owjan
ziwy3-(~qJp<~PO8=zZkm`@>z;$z=W>GVWgUd4zdz6&>_KQfgx+2@ANK-;!7mM=mfw
z`{%4z9|{gZQ9}@I%AWFroxLJXhG1`m1}`Zkxr<nC*Pin8BPm_UgD`zB$+5Hh`$0B%
z;6TZ_C-`eHhI1OWkL1{iyk9dv+P@$7lq2mRmAKs`Ht>Y!wxWd>F%<43!~PT;QM;0j
zZ7=C>yK;XB_wx7>qSj)X<bg6uET3m&H<^k$AqaN$TD@u?IR;|`pOdKyBV{D_;QioS
zLi_N6tFUCq_1|S(`he-nk>S1L6>^VM#9I=Y{9+8gMb4GG$pL6w60S*p<}d7Jfy7xx
z9TRBe?zJ2)#e+aB&#B38RQmowFX^xuqf&daxMc%n*kIF>d<7Vij4g@WRnUm9PLeNd
z?y69e29tk&vQ+oZI3JC_950*5Gnl>@E%xmvFhlp>p>^XC{g@3dpl5ekudpTi>AzC<
zzy|A1kb`Y9uhd55gl<8T3qKPp633=03$2D@-XTY_E7Reksogj9F&W2@dx$ah)1?s&
zbC}%PX!;Dm9IyUj5u7Mgu|$F{Y)Q+GmF2TDjLF6FlDCC;Z?J0q?Xu+c6nOw3dU4~y
zU*`hB44?IVex8f~DPiGMWl8Y$43d=1c$>Xk44O-|-|cBp=GZwi1)t}l)mm}8yqc1Z
zK)LGc?vggE3J()Rt1*TlJJQn_$B-rozy}sLT_LeI&8Cq{H><W7q&n;-ImT+7lWWYy
zcg$C2m%~cykBbX)owrxYWB)WGpr|F=AD{CH96#tjdG=}ZxuUkS#RRKr3yk4iw@U+X
z<{9cw8a90k@sL9{+w&_q67TmApiu;80yNPPZ`>qfQv&U&LlXeBzjR1SChasbg+GX&
z?4dxz%|5WuRhg!SWtV`73s=iAuce>|C_noa**$d~{CePB@{qMEpn|K4w-`5f2I6{c
zbFGX}Sy*%A<IHD#^KkeqaaNCXkK7KyC)ALG?0I~-D?6t)<YAVbcZxe`2h%Vb!rB%o
z!vu!jiOSDl!w09jIeVq`f;yi$%5B=!G+=gW#i*!^CKVMBlCT3Jnt;a#OmOcfsv*1<
z_2Zf}+MPw5OiBX;_0SP+euhOBI_oC76Zg!tNTrv<Pjye+BYik{juGx7JEb)s?y|Cf
zq%VM>j+^XGvhxJss#?@;z=!ZY(mgo62QT8_a`ylr1n3h18Ys+Aj4d53*S?bq6}1Y~
zj&d(a-#p^qi+$V|cS+wyiF4gVcVXJxd4M$|998XkbeUU1m{S<?`d;>#;J%UuL#6-U
zj(5*UYf#oA<EnT+o%v(koh@)}3<NPbNc;{ri|1?Chuyi`n+4z$R@I=@B=fYqo>RHR
zUHrQT7Ojeaou9Dl0w?=^H)hW;*a0V%KV0b!{BLRp<%E(QNNAE62#lTgkh|}%=J%<~
z;yoVqko%;)Hpv{k2;L;T8heF1`M1<rAaDLG!DRuKp;x$HrY(!p{p~?FZVwU1XqbBi
zh(@Ape!zXqo`{;}y-L7cx_xR)6=~E`qiqgkPv9kMo9fQF+pNppzwng<JU+?bYBrEm
z8N)9m2(^Eyd)t5Lsi7!=I4HF4+kNN`>PJgZiO5#H)Gk4qstFArx<NkUp<pecbWKo{
zo!4g_7=t)dyrt{cs#vQLB9m-eae<b!zy`Ca#j^q_W2g!xV^GBL1&hHTd1?c9C*UEb
z^aWv6C0&Yz6*=GEB++d^q(HuOjeGR+r3XK&VCa7iZdzsbr#^7=PB!4M!8HA_<OK6q
zlSIYo6N#+e30-Z9W?ZcTH-GIuX%k;3R1YkU9O)U-wySsLcbB<Co-@jNqmoGEh)*OW
z2jODdx&K;^CfUS~VO*iOl=34m>J)eB6Dfb(v}p%IZz&n4@eb}0kr|cddoUS%aUhBM
z;841G7E-avefNCRCDfG1Xn9||hY~2q3KAB3E-r`iTA#>^SnT<Za*8l$U6r~woZU0>
zx|(+kbegd&A`@m<9jXm9N~%0;Kqc1X6dHBY+4V9G1r@l0Or!xIHf<+nWjr)-!PdYa
zge!845fxx8@Vqjk<7D8&iyuu;Nv^ZUh4Ngr8G^H|Zc<EAr4<|mAiMuG<9nwLd3A6K
zAX>PAvB$(}V$~$gDnNxoeCk};0%G!ga7Vn(sv;SP;Lf|{y;jqpDpFr-!oK4d$_MRc
z1t#C4iEN@0Y>xBRnKJww(<d+q&o|0vPhIA#<y1>DWswX~4WSKZ)a(lpGnw@?LMH|x
zdG0)!qwBzdt`mitN;Ek0fr>cuy%jf|E8{qP8T~A&0g9ZH&XoPoJ^_OXq?IsZ>6P>l
z7Ed@(yvJp7o?U5pcTDK%gaS%aj*hGj_0k*lYo?Qf%wH@w+mkD6Xaw$r$f`!KL?!Ao
z+RW;a>KdAery{mQ-Q5(#r?kmOp8K9nq?pjV;jf3b<@-j-_SCeY696|iT_AUNn8hT7
zwK9^WLPd)U)T!$4)1_>d0Zn*!=rZrPP{z^I-yIHdpxzVh@>{uC=YT|fCn`nO_(PlQ
zPr4zF2yxON4IeM=N+3=0Bg*C^CIt>3^7yy;QrVm~G^A+n4%yufZ5%?igtJxA=a*vR
zZ0(Xafm|kdmpG4KEN`7*b`iAJdQ92qc+0Q2FheeK$i{%!(IQ9U)7L$g0kN0Qm3F`a
zmW5mlL9>--$;pFEZ{%TOORbWMWP0Yl9x%c*l{L&H8G=nX&%tBb#DXxai4~d<awQ;`
zP;zL}#6st5TqUN5n7TKcs1@X$e2pNVpl4v!-pM<_8dzP;9Mhs?bVysR7AoQXa<xvK
zFYnjWl;>3H>qbI9ldmDC1kQxmwDw<&&tUQ*sJ8{L<q+JLZZrdemO%?Zv9s?5(muw(
zJ?YJ+fljNZ$Znc{#h6oqJ#vygNGt&@tR=UM`l;cBT;!~;l6-vN0Bg|Am6BR>Wgu>@
zSgheYm1&9C^vtNJNR0u8{i(_Q<5AuZniBbM%=rfMp}?qO`h59F^Fv$uu2n-ci!|1}
zbEdm}eqxAZY8Nig0Tu37$Cw7I)9uj0o`jcS%8R+N<Jh|f0VUKfh<xgJUFY6<RbsGi
z*TYd^O6_e2H&Fmy-Y8`SznJPSIob>nY*E+_o8fLgEUiUvA0|*uPm{vGvbom>xX;5^
z0>IE70JNV7C^!wy$cao+;lVWebJ8gH9A(|ZxqI>egA;eh<d~K+Kf4PIlhn8s$EJNJ
z9x9pLB{;cCRyR&_?+)x9m6l0hk6S;xSvATvnL|TToMun(R~FhPRN6~O6W)w6IEPMh
zFWQqcOiB0zZyDLkZQVb0(NLO<scO&&J}|?b(u?2c5{aj|!$D4X8qVvbd*wlPA3_tY
zn1`5H<L*d!A}z+d)OgYo1V_t1YTZplV4C%6fa;j$nP4h{BdjG!n*KumWQBjM6;D6a
zZjqj&&V9t<ZxEJh{U(`B#Sv*6DRHi^a>s+diWGis9iThYJzK48;eDX~^7fI^z|@Hb
zy`J6QK7j4tK4$ESVcydW)oeh`ct1^Z_c$D2<T^=8qIqg>m@ZGvHMCoU9iSD4%~923
zEb@M98&4f6>hys>vQ`Rs9@&oZ;x(eS<~UQv^1&i^oL&q-W{VktEu4&J+4Mj2bo04i
zqbxZk^lLI6U`c4U6R0yf>RMcH3{PID#fuzL2mGSEiA{uK-oC;dyj~MQP2tO;8|zi+
z{*Y_d8$2*IS@>6fYw(1&`tS@6p$?~;X1JTO&EQ)b0_5<90MU}}#yG+wi0@YI?rbUL
zRz}DH9iNW7@7W)QE*&uOQcU^ag?fN4343x7RO+kihZ+V0Y&3&=T69Vwsm$?HoF%Vv
zPAP;)eY^iy<1Xu&)}pH3hpOBwz%u%5Wm_6Kn}97v=it1pHJ2K^9Nd1hWGY7Gl=vFe
zQIy;uU!;c!X+o*kQu!A^3L!TgzMm=sc&XWouEs|5PzXh}`KpN5L<f7xakuh|QuRyd
zWF7ie>MHVU<-<-k0_*NoTOjlUpp$j!iGLaD5V+O($y?3S%J6D*H=}IdBu8MihDLW|
z(WEHQd)Hvm1V2)gz(q(X#m;q=GLQE^V>^L7>Lve$a;4-qj5pT82~f;hFB2ZoDJ}>U
z{Qw<pIuwq_;|%l>_dN1>>KX8x26qET>m!vqPWc^SIPg(7ZUrRIWTM?qm%iBY88L*O
zAjy*H?pjO#5Uy0jrV_m&7^?B;=RQ@I-iw2RntsNM&4Zyw7Ebr64BPqd%B?&oI$sKn
zgSVU)b89RqPHkkR^JDG+eb>_^K{S_N)=S06;I>sjEOZt$$n`LRJ~VK-Bcpn5wOq}q
z@L3n>nbj)r5%7FXNmkB998)bPBBKO4=cqy8=sH;oeg{9RU+9cFxy+84C<s@gnyK0b
z!!G;3#$XR{)AHJI!}+{pgPdt)7?}7vrK0%CY2*_Xoa<!-TVeZ_ywX546L;s-CS$b^
z%z$K@VFnbD46{qEoEh2_DWLhxGE*Yia7M*mWaF(Edq@{`TR{V+#Rrk5BkE<R${-lj
z`epKksCYmRs}LTcam-EBqYeW@;SRGp8!v&@i1kaM1|x;QG2T(9V}_h(2hqBbMh8R^
zLUM1!9VL+__)49I{5@ln02K92Qp{}%e%3XeR4t>}GjFt+wzd(+B5U+oaFVRT=oRRY
zqg+phBi2wO9~y~g68Lk4swIyAIe!ogqnss?Tl(PYXX67A>5t8#RRj755+9_cARxuG
zb~MQ>`#XiPXOc5V{#}DSVZi`#)8`b>=h0(UjeLiw=TFER%c`$yloJpG{LdT|7)Z3$
zyzoI4YdG#NEvYAtdq)y&44N71pay=yI#-+bJ21BS+)^!%*sbF)PP%3Mk1>uDo<@b5
z(nNS9V~vb==>{6Aw#-F~LJ?3^{XA1IYwh-uH%7rp#+g?`pUEl1=MSr8O$c#uwbajX
z*&KpJt|>RuIYY)IE>eOM$<0xMM*;;8K@+nUsIOSsg~am)f_rYQl*709`_=?NIZm`*
z4iC+$Cr}hP0poD3?yiVRKtopw3)B%plR}dk^URqteSC0+Lfk7d0f(=MVaa_ZR$r=5
zecI|tU;~-<KP%!V{eqmFf)Wt)<ajCum@H4D>g9*fC8EX%Ge6%X9UeMc9<dM)UP5J>
zr8NWzl1&3;4l#lJ9!F^`LXR}a%k~g;L4-R(a=G-zd#E8UjTSy8F-3DE;RC4pn-XXH
z1{tU?DcNbD1?mh2Z%=7T<YHpU)W0xrNG9#qh&nklL?m(y&iX*{Kv;-N8Csr3`NWd-
z;c(F^p4gp~G|O2j;82?KMU%YFP87Ej{7*nF7K$^~yJX!;(yoCzU!-3Hd>)f$N9Um8
zQ|IVU#ZHJSIVDI>z%QZQ^M|s1co&o0C=#kEfW!Tpe~>Tw8fCje-4rxvCSiHz8U`DU
zmk5fmZ>evGhZ$!Ng82mvGR*-;-D3wSIN8iG5#3D#6qbSqbZk6O=1nu-%W(CHq01n}
z5R3ls`>e}*nD6+OQ1up;3wt7%)9b%kV<*~%47)*JdewIFVcJZf^H=*z8-{~!z`)3_
zY%7~mz_0}{C`eT#GP-+(31->Pwv%}i%ve0Oym|T?yu7=#i~~_S&NbUg%fN2uf^PKx
zZ`L#R2MpjrgWED|AK5Uy+kQBh|9{IrfHxzzlYOWg#(tBhnsGZ!d%|||w+i!9?v7@;
z!~chKD8Z!u^nF=9r<x|?P2u^5<>zp-ocQ-ypPbPBYKaHlUJk*b;{RL%c<}#TZL#y#
zwsIcM82{&}7;J9a7JAa{3Q;Qh$P%(Mfept#nzb`Wk?yyW2eG-TP;Rovw{_Tpc9pxy
zlT_j82JP@RIDUJ1`2T};Oxy5#*1gp2W2}TB5v+p=RIV#u`8Vgv_Y;Lhw!Sbl#ckWk
z=N2}Mkw}ddy4Nts$Ne+ww>VG;_?_X&>s0O|xBWROczMoxw#ta1K<YY%MV8`I6ws^3
z|I2D(tcZplMgv>cPjDw{PSUVwUy3I6+9~c})RAFr6FOEWGRD2os?I#?Yci)<5u^?t
z`z-fM)gc+aJ*k95(!?aM>2??qNk3^AMoV@5689!+7*4g@>XwssTkd{)?0d|E&fH6k
zfiq>*`sVuyj6>Q4T0D)Tnhm{V;Q6?J^JKl??m68WOEFJ*1=I+61p97z-EBDv;1H6h
z8A6EpH-We4CLjX0{n5Rjel+SKdkX4&&Ew=eypP*<wP{L<Yre9VlER$GDS7VCS1@ZZ
zWj>h<oYqs_!^tn3X1Xm%nr?$V6x^3ja?8oWLl0etE$EE~2<<p}**TA=%%RRNUJq72
zoLUN+j$bo6-Za_$_wDA_!P8-agt;4|V8EKJe9n|j?oMT<OTd*v6E1lk1sUZ_jgq+T
zLz%Wm8g6me<0rVKdxO$xW>~5(eCEEh0=sH(|H`oqp5l&HC*0s}@VTpWx5E_}sCWh@
zZUl*5)RBe!c?i|SoL=GHG(L6pny1Hee95?aoV}gB-;<sy9fxwjLS&wwElamE-_=Ig
z@+&E0l`B7bf$aVr3nYqcBSlS2>Q++2LO&XtWjl-&p@CEdTs2odRZTaG$K6*mjJL+&
zBTCf2=+3j{9gO0%aong6`{Ct^o(0FNVy6I!dH0lsscr1)PT8bh?!g7C7*R1t^6Wg7
zke<ZKQ29B3Xp|nRVJgDJ5@-QIcWaWLZHu1(mvZyYVO{c*-F$gR>*f}dF9rYFJT*<0
z{>^TZmClZ}6S+X$RJe;fPm>Du$}e)%e|>a(E(sub!oj6#<(rCdu`Ezu<KN#*fsv}|
z$y%}K52o|b4w3}403ebR!bfe_Y^%co?vB<DikxVgO!A52NJgYb4gMh^IH=1EQr3i@
z%y<9bIM0p+GM<BjW7V7G@xhU@#yH`wNWnJoNW4y}LV8wIIe->DtBUHnH!S?MCVQeL
zDaT2DvHaC$Zw<9@wB$Sg1V{xqWD{ZTv%;1-+H+U6IYJ8=SIuOXgrzRhhX=Eg1iN4h
z<4q=l#mj!9vHs``j5>`(dL_=QwKljVHI0~RM0|&G8ys)EjFVZ|DBiwIzNrS1LA9tl
zHomY-=Gzoj>HQQaiGD@F7#yw$%mD&W%d2L{z8%$MR#q=g{Nj1N3Y;G6Wt$IErc)i}
z6F1Ak+fu%3tmr<=Wxdi0V)zo`ktTUB>5yYpy{0BRw0kyjJ?O1bJ;89FWNKoArf8yY
zPso8i8+wuSm<iQVL}}klCMl|s!?!`RYvftAAY#aGN2AxWQH7yg6qVf6D+kgLc1<X8
z#+)v-t)@f3CaqNN**2LI)(;RZOHS)X*)4SPIi^Iq_nBj`4^Sd&z2?<P1W<%ue0}cx
zw^Q*wk^D#*@1Ow^EXbf%R)~1s1}K<W+4@<s9g-SAPt_8laP?J)!B<+9Pm5y4$dREN
zgx6OtW)|o4=()=#%nb|7=B7H_9dRa7qcPDH!@lR}?Pcz6bLt(Ew62<{npg)`JEKxn
zA9$=9H>tKh1+b)yORD|@*VibX-fWUdh~#!+CD@o*leKg5618(OY#8rV&zz))nNWDE
zGV1htS)y9T;4RC+3nXEu3H}`Nzf-NW^-Etg^$LPH@ci6zd1!zW7dDI~@GgN;AHlOz
z-vH0v$*7(rJtAfTy|l<lku&8ZQ{==452^`}?uS{@KcsLWc{wD_BYHtwgNE^Ko+Lfh
zxE@*-HHeB6a10EeuX(XvXqF=Z72{0MpnKH+P;UH&V2_AN{Nwq_gGtmu0d;#<x=*81
zXCHxl3B}y*Z>pr~dDs@B`)cbn5XZ?wuR|zeb>#S4c1mN~cv+tP$UO&tyU<Db=>=UZ
z3Zn_+uZd{{0xt|1Bp{}7$JurA!Be;2Uo8&(2s0xnktU1|DwC5V!Dv-e*fIPlbKiGk
zgA7CCSI+{JUti#kI@oNdoXE?_Xm#J>wk8~JO7m4;zK+Tq*KX}c`sU)Tq4|Pgs(eNY
zc-?-DyKpS?7CG=(wUoQTfsd+=Mb2w~agUs08m#iz)Fy_t<{(=?a!)!YLleV2{-#@Z
zq;cWsZoPo~(d(p_U2j@$Tjd0MQ)CDyY)z*V&U{OpSR!R^09A^#X2geevKyM&RFfEI
zM_t=HGnmA9=F6AMxE|n;z8nPKsQOoFe4)O|&(4)!!&*tBBK0sE(qC3bxCNPr2t&my
z@aywsjdBcDQ_#N_{Si^9#aP2$KUL1azLl9D1+x#@Ae;9wIIemS3g?+<Kis0g7G6(v
z!u0pb1HszT-VHT7B<&7tnTnX!>j$qaoSzm;$Mc+)G2j`8B~<zR{)Jk(iswh;6-a-A
z&2OW6!E^22UM(j-iHyuWO=uQX1L`@H8F1lP)DUa#Y^Pi`v9pk=Puk?js^C&pKS*$o
zRS>3L1<mTec9P5s@m`cofk;njmO%>1l*^->aNQ)UpUn7@bDmzY0S>2}YpFaD`wV;!
zQdWeN{p%#Rzd5rJaqGOq^UgHK%#_=pxc>Hupye<UM_;JmovR7_*gJAK$5bQz&<+9^
zm_ib-!+D@jrI6Gl+3V!=t*Gf}#ANwcAK36yq-r}D!ekcGbaqP_|7%vu#5&G1kStlV
zbIz%e$(my~OkH*5Yfg1L)%2UmV5p}0``?sFe`LeCp`!AbL7*CAUN_|pf}~uHS$9m6
zXFBPkuE>6Z0$|~`%hmUQJ3&EDmANCQxThf+^U#FST@)qKT|j?=0;*vKHn`<VeuKxU
zwM*|fS7w81fIG=ZV5ieS)e~VK6s5vr<uiikMU1T)o~kJZ{fGZUC(iZwYK_d^*6dyx
zr!oS{nlyBeFuwTrMBzgZVH2@ve*Lr@p{&1}S~RxM+$549YQ3s1$>$kNIZccn0K^NP
z^|1-%J)bdMY0^R7C2+<Mfx`-gfz;IRF<dC_;59O59%JJSL*hwQO(SD@mA~?hJ&+s+
zFYUlDf^gD}t-nC7j<d1ggNJ(FX|0c(zLW<q_?=*N=YwgH9q&o`uIZf~t&L2$ZYNda
znL3TSf)SfB6n0_Z(>p%oL@8DkWpF&DNBf~zS;lxtGD12^^efLa%ah9g1a6~_@^OP4
zq_;7|7O`6YHiWogoClH;fj<LjI3QFR*bjXGAD$)~;pYRtMqhwaYfHkZ2H#VU4p28S
z-|5vU+bJaqtq3T1D+=wG$K4rG8QJ#s;C?}3Zr^b;<&R+=$>gp(WTqSm0)$RY)dwBt
z%m0K3DXAGl)F;VIDiM94QBG7*Bq<YxtiWjqsa`(`DKOAQPs_8S>#?Lb{?g})wnU1|
zgiQ<rXAFHNv4nl~5?2R=Hp!fDL*zGiSILpO!W4S0mcN}UB~R}_z~4$O^!rYeqm)fl
zQekpU*qc_MmiT_1@&U->pCNaN6HgfRgD6-Car(6`vfpx0H&r9Wy7u1Sj_KGrgoc{l
z`hgnR2e*riw6cK1I`2LCX_w#v@R0>TiN_&jm+J3x*(4cecgc3J#yQ1WbjbN)h-`P2
zxt(c7YrN(GLu*51<>s9faK>pJUtUVs81Jx|rx^E$Al%dn{pA$d0ZQS+2LBp1ik;A8
zQ6&L?IO?CZdC}s27f=@B6t9t=LiS<QBA`g(Uf~);<{Rq=1og{~OL=%+Y6vHP%}#=h
zIA{1>m7MSb>kLMQpj6Eq0;2Y+^>4dVl{F5Yu7*DKtBd5U0z&ChDzhY{uh4UdI=wjH
znx%v^MW!oE$RZg=Wh)6GHhoH<neZRX^v;q2*jf6ntS9g)!^o)r=1g;M#rFoNjEHOQ
zM#tIfIrmkM0S~Bdb)bvicfTA6KuGje)$zSXDybUgx$oTEy+GX(Q`@FFG91Mtnz)h@
zE&Gvun|tm6h7WnHD&1XE=?+Dkn?@>>==g~rETqaPmH<;_5-lT6^iIudu5pYzt&}15
zJLs0N5E~ny##-My4GR;lP{4Y=oG$qn8=)&i?@bzCKMjO0?<z-d(n{&4c91YPMdBrp
zC!sNc%S9O5h=^vC3cM^+m&>Rv^dbzZ6=S#M2nvDKm=*Fb)lP;QC~oFdt&ryk%}QzD
z>TPp_lsRcV*v<PZWhlmxa1T}2Jg`)r-r4j}uA^UUE>T33!=Pjvo{y+Hm;H~|*nm{2
z*=G@xQG(vGR1VR%K4ocnfu&_+6S$9eUoQ9Br3Bse;Hs~d$iLH;$l58Sa0QGJbHU?j
z4#d%vUtk^TSkiXAd~G)zP}I<8^Ah>1){hFU4<^Yud4<#xb{B5Y^T`NPRc>6iLR!*6
zhi&W6%jK}N<I(qI*($kDIXR!<2&Polmn|&jfvvB1%G?-xOn>!o^b3T$cnU|Vb&x)A
zzPzrn0Jup6LQkMaM|8-7&`VzksBplYC6}pVE}<IA+^G*15P>p(-X+x`GE1^*WXb#v
zX+<vM_r_j~uYs4V2B`wH{bZ8t+0QOHp;l6f;_BMOXGN$X#92`V30@7miRZP9!=?5=
zutRP<-u5Q~$BUD~7R~9A+x1g;upj_cwo8Q6g#9E`_<?N0$Uci_h(a*A9I&mnR=%{t
zRgg(nsy$+sT%lUHVx%<qSR<(NuAyf}IijhEn4SVM9aIj}fd77K^`XFtLwW(m?cF3f
zz%2Ooslu|)bg6`A;IkLELDgl|6_M(klxP#>+)GmWfWwW`WXasjePC@Sr1eov%fF{c
z?*(3;mUxVNN%Ab_$3I5ZQOr-8@D6*(#cT@TO_RSNDbb?mf_cO`<l!a2vxv7Hl0Lus
zty;D;nO~6t0UD)Dw#{p;@dhT<^KMt#c{SOFWmD0F@tmOv8+!pwr3z0IK!<xSkSeH?
zr{|b1WuU32R=`-8<2*81uDsYzrj}9mP>|2T+<B@L%{HGkvX1QF2~7k@Lpp8^3u6~$
z?W9&w(2`cTME9*43T~2bP|7DY%2%^xv(l;HceoK}d6(>-`dzI_3rR-5llgrG)3$3x
zqb}9Ol&A>xpAMP$GqfW(m{yIM(J6hbHO-$~Gr=~`mdCd<gH;l$)8Z9eBo_~XM8i&(
zgZ4{VnBw@-Go-)T#Zw3uJ6s{}DH#e*o{Js!sd=)8P96$UP*n7TEs}~<4Y|j(%qzdo
zKjdIgoHyEQ3`T0OjKA&Ys_$s#cD6ire^)I(w1YsropxYk`08(^aGGiGBY_C<fSh2s
zKj?DPLL{jP|MY(miWOo|MbUw(vLw?ju_G!Ty*kj{@eI>FwUOWdQ0Dg6>rmner#4nq
zyQ&?MV4xc=>}F=l9%;DMOn2_0jDy3dZ0hfxp=cTmZemMd<B~@A&`W{6pR-KwOCrFR
z6vl<lv%AQK6U|R_+19YGIot}h`qvwKn-(v<J0+*E7R}&^CBC%Od2>G*1g8`}Sd~i>
zK_=bI8qAsI|AavU%TW+xd4e_L@QfY7x#0l!Hl<u8&Y<5mHzHI!hl#r<ID)W|l2Z@*
zbIX<TZ~HbRt*$8Gly*ahPvun#&~9?z<v7RBmAfp$Xk;Y^qcu|Q{+CfqF=rA*1G@fQ
zJ`z2)uw+W6q;=;>U-St;9o$nDqZVC3_sZ4S_aOOJVHQ$BFgu~YngouC${J?C$Z!iZ
z5zeZgBnO=Gf3C-;fH4ZY0%yzlQZ&P~hazQ5oNdpPPiuo6jSY_oxr^jBmd5?|tQMsu
zYRA3gGh>qt;0fzh57nVN%QJl#CxhFpQrmQY!BV9+p8Vs37<_^}W%wNME)4!!pWh6>
z#?c_tXT|i7YUISwsY2fXVEQ0NqYDlwbqG$We)GQn>mZ)eIvnx5lyRy4<O#c~4Gl|r
z&2obflR(&SW05i(s69owby8=}Ln_Uj0W(2P(0JxACs)~wfF2p?g;!b+-xNpG<l59>
zV%s$r$ZNehADoS_u*5tbLCH~eh3sJ2jU=CI-$}LNk<fgGyr}L=0d7QJJWs0Uv)LkS
zn0?$(_<|;@<FbchZ?F?U_B;8x8en=fITh0w8etS4z@~y+z-_Ab)yjk?H^`kD`jbm0
zQkz0BzoZbZzIl;65;4>CBZgFKiR#WZM;PVsnz}YNaQPXYU7$00ErrF?m*x0c`R!x|
zK(}i0b1E}wO5afTjBWgDl<dsu>oy3CZ&72JPLMDakrb0L?w=?-SpezVNSwc?@xrIO
zh`2s!vw#R_#5u8@;&PobbE@62**{^}NKv$Mj9deDGGkdINmun>V{|Waeve5{E@Zd|
z@)=pvx5HQuvr=ZW`wrjILZJm-q&Ti&<f<giMb0b}NKIe#->gqJfu94^OA||=C>UwO
zj*))x<<PIia4%HfFnKIfH83hkSPhJihpCLTec2jnTXZfMW-m)B$f(!n&z<r}vDu~m
z&Z}IV20iR7H4;B5@w?=O(E*LE73@&dexgP`Kf(OU`feCsVBP~bLw=!t>0`&sYE)1L
zS(A1NPUpD>S?r;yJ$JKMa}B^7&GSDnCWmb07rd#pG1+8KQZKbNo5H5%IrAr(kN|UF
z0h^^70zI20<0tSo1x=G^!A89(*}P)^u<6MD04l{2k$!OdMi4=dy0%jmS|Xf~90)ka
zno=wMtu-a_84X{d^FY1S>dMs{Ls{U)1nC$Un~s*AF;!zR<}{gUp_{w|KsAW?=JJq|
z$vSj^JM3_;Q>?#FfB@vN{)9+H7p}J@fP`n|!9+V<Q)RIlaL79wDj`WJ0^XNro21ps
zSO#&GU@CRcgfT$V7=?_Jy+!aUeMljVSb>kKlqEwLHWiCO9RC=Sa8crwpi;%oL=`+d
zEg>gLbr}tYV1>!w=K*zsGt5&R(rUx@_<D9<w}Lu7@ZAs{5<-wU)aZapoh{eNQ|ghE
zs&`Rsl%H%gFdiA={CUFq9b@mO7M#r*8Y+Cx?Jij)pINO^S-aL*<E0>hCQ#Y$N;&h-
zW(oc@d59@bu9EL@h)i3WX2$SyoerSZleLucVCAb;<Mbt_Q(0YYotEG%RM!Y5e=My$
zA<US+mB8G1t0denfPA8i9PBVKx#si)g-BeKLe09QAtwumo1+RowVF8<g`46w>ViV&
z_)dAx9;nix@|gOxmUY;y!G$?_XksVUOD}BA5W2GJ)^Ewl7$dJxtrlZ#a7YBl3Qz{8
zM97#Y`LsIu=O`AS4sV)aY`Q5K+~(l)hErbl<<fr>+Pb7(1)Uq)XRL4lC3TyaqPI=f
z?EhLrn)3r8&1H=(S^$9>%@Or?*7!RH<nm@W$oKY61$74MH(5SgT>I(=BQ>})YGzFf
zme$WD&U+0qK4f3Uchy3`xEMjrYP`I?j8nwjBMHgZ!^|n9O_Cf95w;@U0%jCpRYW9s
zTCSW0!j!0LM}5!Q5n9nPgJhE*l?{!iDcJ$tQJ<%!cUSl;Cwtf9GQxiKsd9cH*{$ci
zD5bUL=Xx&VaKVKBU{ok^_W6_atT!!XhPqf532q!S_?_~uriV2ZV>`?XNd+v5%zh#x
zr<(8Z@54=qUQs^5{?3l;WbGyC+F0uMIv>U4!3#`NvM{gm`+u&MV{AQFY!hU%v7Cm<
zfTdY)mHl0PsqA;F>8T0!w6+R)_)%BvQz<RWSOw+?UNLw(qf%xWB_tz|BLD-tOU6;*
zc}*M+T{YY5y)n7`Qq$FzqBgZ_jhF7b=gX!mP0zAwt)r~rCUkABj_b6D!Or)UGT|1}
zm(34qP1fGcckZ4qLl&iM5hz|VQ(mW%E$h_FZS_<-@VM9vmV~52W<>JZw928YQaZEw
zfz@&losEfpCbA`rGhN4+0@}K296zC5&5hCy6!{fW3wa_HLOdS#Op_m%+s=5v>A`B}
zKw4p-!5q8Hlq)VXKeK8=eq*A#;363Zwb#?t^8WSS4(uVBqbb&W@H^sQY32=-4o26a
zlxPpM?`Gj%A!ZeQhgHk{c0XZ#J?}=}Dwz-R0H?Bc(g<nUVr5}Bo+CG`F`xUHG%t47
z>Q;&O<npsjOGT_PV?k(0PS4r0tIf2mR8X@MsW!s-(|kGbI&ZSL$%<W~M!UkxWPt@m
zXn89C-Z@>qRagChvxHLOfpyX!>}1vDx;z{WG5K<yJ&3l{v~7O1Wt?<5lU}Dvwms*J
zz%FnmRLh+JJJ3=41v{3tQc4J~-#m<aWB{y`e_rdsr$fU!{Q}j{F26uE1l~h{kukz_
zHH{8FJ<0mZY`|8g=k$$$@8q8?W9=nL-g02aO4crrn=aof+(D}SPm@o1PT58nl7Oc7
zbQ#IO;T`gQ#7uE+vg2y)Zm^rH!BBs1mp$!8A44=emsoXg5869OgqulFVTAEHwQ}2?
zX5dV)#gTF#jCJBRc}S`G2S!)R$@Ye7T)BP5@wlQ8)^+mV=j@8&)OFHg+BL8&RJki~
z7Ca&cyk^=!S9SGJ+6AP_OnPmY!2)%ZyXTEe-2vj!kI9d=`v8nGD9SYFr(RE!>X|73
z$eoYKxtcIZePfWqc!X)U%#LR6!Ofk4-ndboc-8#KZaN{QF@)xzd^+Ja&EugYQUkmR
zJ%LD8--z|pbW|?D1i>=A^>(dBhQbd9KiK2$lY;lXJp>0}=JRisrdLc;8QOpuyeI|a
z63TPlU1>ahSoU!8ni*$)<x;dpJMP-}=B|@{|8DvvF-})dW*uhu5&W1ITGOhJ43b#5
zN4-43;Qze`j`4>-%XxMWLm?D%9p%F|+O2mxIO|-oQYJo)2Vx%S@v5lQWDuj2vdSgS
zXAjC9G_g7ZJDc5)*ML)m!W0*yr@DAW0zdR8p0MZRhgx4L16N?rHv^zxR=#~uZrPli
zC1Hu_hY_dQ)V)`L!tXdQt(ILZo(25%IG~-ckX88WvC4_6YSF}C27^2uL1YkqKsttU
z*(2_i`~MRDt+s$Cq{H*}+TC#htMPx5y*8QdBjR`f@*LZ2TwE1=ydIZpEsAyz?m|VI
zs}q;aVp`gXBfEaELT0^eCMqX-%*#nusJVnFb+gw~rbYFzO?nXIi7arQy;AC*G~WZz
zK|J)K(=Gl3mqYH8?d=&Q)kMJ?s7b7TUn9?X_aGxBfP|GTlXV)t!rK<ODp=Z=%Wih`
zZr8wL<=;V=5du&U0V&&wJTdi3=_11{!v-7R*A`zU>n(Ljo_yLlmnqAnl8L#K*ULx?
zyl#((ot|{FJiN7?vesvo%JR3M!ATY$?h_P9$OWoWGO-n?cht7@O0zUf3n?1$EXtsk
z#CFB=?AZ_f!E;cFXGn;Fe;Ck7D_4xNfTegUPsCaH_9~DFnVQuo!5!Kr+p(HNlUI~A
zlocs7HyiLr3pstk0L+m->h$FscMbF9kuUax>1XzASwG4ArVJUY5z>s$FvRcu4ml<4
zGYl;b%@wvkBXRQ353u%Uc4bv-cvnFDPHdBHY4F!gp=coNX{K3TnP*8hCT0SHbY=?y
zqFGfW;2{PCFkB}!$rn~jH>%EP1eHftZ3Hnm|EiENR@11MY@<+V(!?%jRhp*23fN?E
zBHYIRoMV#Qpq$bKApYl6*-VX3Hbkr(4q8=A#9%3S*44@>;T!^#Iti8n>PPUpzS7XK
z+3{9#3C3n<R}TK_I{6gWDki0D3)G7(<Jycv$dI~35`=`m8h%8{lkgXb^A@o7@^<;3
zsWHZ{8{_gpcwzWHWEzCRrOD6OG)8W0L44*}rFc@2=2g`6L;m2z9Qi*Fd?qY4IZEJj
zL1q&Js>I~4IrhNyWRxB)a$)#-8o@B#Y5*PdM+q5kG`-__@{?L&xN$bOLP%H3Wo4Bo
zwaNP-Asd4`6vwkV(baM{Nh>Gx01%$pBu5pRks(`JhT6Q*g~&t&&W)Y2E<7Td4U*fo
z%Fk#he84b2E(0I8N_P0OQFC|{2Q{<xodbPPE~~HhdvSRYqkm`|oTo>%%O-V70FnVG
zP?mbe99hWm84#o4R+>|Y>C(BdQ<jDdGrFFl#CjBFswp=QT_jL59);Rn9TEwn6@gvJ
zQwS`~cs6=IC=56ON#1BaRb2s$=gg2tRb4?bqlEQ<ica_lk=ovKqe$3uly*1+=gUIt
zU6K3@Eq9JSO<b#0Dr;;e6|AWMr9KUX&UH2N^I)@gpBI8SKpvc_qh-Ny#;})eR91Pr
z*jXKOuV2#bFQ{^tF#d8~gRw|@AwRBiKRld?Z4i3cLyw2!nwa}o4>PoV+=EtUN=;X}
z3)OtN^;j`v-M8cJYs>=E7s`Fe{FHetIo-Cz=aSMIyQQknoccER<Mx#A#Zd7%Gu;>P
zg3ytYzt?P{^XlA1>iZG;&QZSC>|UeZ6#5;<Dl<NYZD)0hJHd{RI1+25kdPWonfTv-
zlT~M#0H0KYt@@HZ^Rb-Hj#)SoHOeXM?*wg?IM;qCeen!Q`HqpyerJ0B_Zo$D!^d(H
zPAonO;y}t3@br8P6DY6Bw8u@5*KPvP>e&+TQsZ}vua?jDVj#4BWSYjb(L|cED)po{
zil{&QD(~G(LTapM*r0f>DblD{;M5woY70T)NhT!M`223Fmb2C7olC?!Nl%Cj;~ww(
zXW8`!c&Ow@bq+f2E;;GP;79f5yYMc-WmkWhphEhhYeC6aSF9C}JFOLW+hX~Pb^q|@
z;08Fo*UFUe9Dr=*9Wq$MzS(sxAu#yE<re2TKi(?aTF<~lf57nfyX3ggaul}*t(C?9
z46ae5myTK^L%#`r)YodiyJVTVy(G6t)iY=RyXE(Pn2!kPgeMSsh6j)40VpElkaO5-
znTPCw0=z=Yap;RkwGU><A0mfc1Ih(_t#ylsO_ApL=5z4(OrAAZUbz;aBg9g(w~GL6
z*mAgncNR+@%kGyos$j|lgdzgLeQuKeo-__N=tn5XQA=eft0z>p)l+16ej2C=nP;0N
z^4P8H2Nv6y4-1NvC?SHI91NbIM#zS$l_2M5oFf;mH9yZFdx4W{ACV?s_R1i>f&F*L
zn;Xm!{hF~qvs81pCoY!XR+!I&J7UJ#$QEGs_FpYuTlIz^g0`3&cnP}Axk2_^Y`Rn=
zwv4m$H8Rs~h~I~-fYwr{vR{!i>1Mg)UDFlWl1mcr(n^fDcosSzT`f1G;{sLu+nI~v
z^nedc2qxqss2$hhvz|wte{WbE_jW+5EhCqR=ydX#fI{}Y+&cy{b;>yG$4e{8ixSLW
z$Spo@fsEA<>m-MuHz?t+0l#tT1@Z`P9<+y*D(Y^aB`QtmT;I#&x0>J}e23R{u3jj2
zr22HIK4SX|WoC8o_rXc^`LN+FOsWS1Putf1ZBqmzRj0ZPz<uRnE5-rE)OuuPns2;;
z&uVZ%18Q=m=93|zF{Y8-<dXy9f4p9HA7Ln9S)Iw;4uc4i?mkoYvOFBadl7URjo?ux
zAMj8nkT4OA5TIk~pT9INe+se4IhuAYJ?k2&2{?>tb#k8NgD5A40SAV%o4jA-)8qGP
z%pJrNWySOw8Ec&ayjP#Zi%dFhrrZ=>i%E2tVGyN6_;_dtL1>>$nYPayQ|mTu5Q2h%
zivL;9D-px3syj`-L;gaefQ{Bl1RD@;@K0zFGCxHbl^q#m`1|hDM<S;N!^?88pgcU;
zEh4;(?`4GG#>j!C#as%VT`Jv|_5q3Ty(Rbp)i{oh(4~QcBIh2TUNC~77U!%@?mJXb
z@b{X7-)TuAw9F^Q8WAaX%04_0&?S4<%bMU-j2uUTf3}3qi8Ygw;pchKSl&+?ml>2O
zk%Xall!Yw3pJigi#fPG$*7J5y(-&r3l@J5#F@9Y>G!qhzsd;*6O{y4HtRan_*vLZ5
zfwe8Opb5{>4a|@_+|PJf40)<+cGP!c9Rw&aV{sq?i5Dc1GF>Y;lxSIl#itn%`$7l-
z3C_kADGLiBrTTFD3oqy3)fpNtgYV?-3*#8FHlKap<Fw3f`hNMIT1hj!Ic7~GO69x;
zSrNwaQstNYB_!?y9Cgw!$=^2tsld()NcBHMTLE0!AQ=962EET99NA_mXNPUfxY6on
zfcBZ<6q>^<CkhdJ0J=RDgsG*N3`7e|WYo!N6Oq&cqQ8HGtPBYt94CYL^BXmZuM1&q
zQyS&d@QE16Cjx|2v!bRv)CMYuT{lyn3H=%)bO_>ljg8}u65XUPQjUoZ*@%55B*o!L
z6IxwrE?=Fq#5u0Ukm~>l%&YHjDh&ygDELT_kZjO<6guZL$}PNFfx(P*fE*KE-o&!m
zo*BAd?d;kHFNfr{jk1lEhXUvf$(S}vwzuFI#7h&KjqUw7wr~6<5iB{}Xp4--HQk>N
zk9DBFzDfG0d^S|Umgn$)U5I~Brc@!NiiBxMK=MzfO#4i!rc3|<Wi$O6k8EBs@BD)+
zQJyp{?WC50$^>jvy)`Yx2|5%8=~F8^hHfB^a7_7ltBeQ8{*-tIDy7T-6HqQ~Y?PCH
z_LY-~V<#zhrgd|VOPqPLC6*%os_xJm#9s-=z%IQhxyFgHsmx)Bl;`Z2_>ALKNrpj+
zRKWFe5->>ME-LX)<XQ>lZD$4jYRGvs-Qzn_^4r<~6k<Wakw>cK-VjFdnKi#xC9^}Y
z#(gK_shhCZUuVecC@}*Y=f{ZNwbHDfAccsgq;!H7=+H0#DbB?v<#poXX^3JgMkBm(
z@`{iXoQ<!VP_)3{r1>av9;%aPtIXg^J2XoIvPE;mCigH=PAGKo03;;0l;4HA!vXi@
zLfb0{^|ZPbNAtdxBoe<Gs+-VLD~b$hkwM|dvsm4<)2|KwGbPT>9nu!U%5GG#WUAuO
zpPVW8DW?)j+>EA$@e^=C{gok*1$7~~{>_hB+iCvGB$KH1N0Mq!;{ay$!Rl&R;w&65
zw}QTWCpd#F?6{$oAS}E(R*qKvanc1(y&<u;+&Mw!s?HZa2@PA9(XZjS21rhsETcdk
zT0;I}rA}mmoTClAT#$3L+TL5BIP^taKGB0q=~U=^K0%&Pb$KxvS~}JL1$hcDO~_vK
z6lqgup3GjHXv)fEG?BbIWSHd%Zi?dP`1WySh?Z$?P-&KJvz~qvWu*!nDQ<F_&Z%vp
zRM>e#$yYSU<m4%`A%k<B`XuL^B42v?zwqYKr?ti9DAj|eP6j>rWxU*IC-Za57b1qg
zT_NjXnCW70yFKBS2T?%dZv2l@M$^#mdnZaC<<(Udj#YJZp=<<}tnSGXay?>6>IyV(
z(Ib_zz|NF!*vi;k&2LZ8kaPJsDF9>mO&N)ETF|}}6BktCT=7%ZkR3yahejoNC(Im4
z#3OL;f(cTsvLBdK+t8)1F!qSq%KRZRL4g)@#4T_>KSh>V)C)QbQ-*AulqFCy!>O|C
z6DG)^D)EJo8FFy%IJwm>A$+9VwBpHffIR@qfotYf_FsxM=EGr9t5zCT$C5pVQQB1I
z#FtWYt^xB=T^)^NanZWk1Qbn8pm{2L0!Z-;XdEY_wVSzB3C@n$fU%5_J*Rt3i7Ep`
zFFAKsNTYhL(WL=D7MOeF0v5rkuA3w;+bfMC0{evt??wv<7&3V>tHC4T1B${L9Yq4G
z=tF}NXal-{`>wuOx3O1cXi^YPogorgNB~hoybf7ilM&($T;vR!C|kU>g;E%SD2aLt
z!KabWcQ#59aR5xC;N~Aqz+&zz%HVw`$r!aykwT(2>7=R$F?^zow-5~?OMx?fob<E%
zNgFN4dArg|?|KZ4n0;8Y`tDp*Ax~tur}~^PpDcf|m>ME_*mx$$-gebt)M7XvwZcst
z_7{`n095z}q{+L2u)S%#3=Tav)Og{b6Nz&)eqALyy{O5c&V2a0JSQt#2I&o_E+ol}
zK@$B<!kw!CZ<iwH@xv|7+Mj?%R<KaZPL7l7$}{~;|1w%gK13gg@Q=sHF8Z3M_u=mN
zeeAM`jUn-XbI{?^L+uJsA+Xh$0|=x>akTwwqB%wx3{*}eY;J6BqSjwK^O1DgxiMQV
ztT*#jcBll*LKqb8dEJq6ftnK17eY|n4^cUNplR#|J~__M*>Z`6kC|JiV+Su~%Z-hu
z;}A@m7O=y~K7rDyCC-10vpM_=M|MPi+2YNSaq<3W{52A8rm0Q?67n?bfA0t7^vg0X
z9=yLbOD<HO`);9vo+K(OEmXF?OngFi?Jp+`GNUB`XdXWd6b`B-PV|7IWF|lG*#_*a
z*l|B<l$x*|3?EqdPFqKa#ch3N_OYhFv;!c2VA9HhSZOSIj^U3J5}65fgWiGFERY1s
zPTO$#!NQ}gwTg^l`kmMuXI7b*YGS~N@&%q;s>V$;fc@kpdp35J^iZ7c-(SSS;{RBD
zq0_6s-0q#OR)@2f2UV>qRpIPl#fQl%jUHh33_pMn{X9%gJh|H+u$rO6<Ze5Hzepc!
z_{74OVYAUhrYeUYH9}6`8*pN%_e?n&-A~e*eCH3_%fIW*18iuXq2l;BFb8Q?OkPig
z5sv(jHp=aJzO}6#5NLx1toFdZ(n~p+%-do5hlk0rtkyqGvT^eHjaqqF9nBN?ppZtT
zwPKk3V5x_{H?F}E1LUd@u0cxKvZtA35K>6PCaMFKQS;&%oaglJZIfeWUK%%X;&54^
zfJ}Lh^pbY+zUph92QV=@bfAj>>sd)A3_%Ana)6Xu49Rq=1RKm7DqBFtAQ+TsI*|x1
zeGa@err}68G&sjO=rH+NIW*9|#TW?`(=@YnYrM|j8WN~Nppf7XCRHh?tf@MVZXu<>
zf+s%0^Fv?OH_NG3?g*5C3Hf`l<}$Q)2325HaF1HNw;Zy8l@t;r8cYETo%RcA==@%0
zag{pbZNIjmYf=>$4kO_TAk@qOKhgvvl(OLE?sx@<WJOYgfraV6#`d55jG~Y#lg&+S
znzB*zuAnG1DH{VE0{oC=5t5I3;HdCVNe&kJ%zaLux>QXbPt~W?+knqvkm?S3RJj>t
zSv(+;*s3%cQN?i@-{sJwo1<<ACmkTM!|Z`49z&{F!u!VmDDzJWVipc5oKkxInq2gl
z=`j(iR4z>_l|%j;KyY@0{6Pg>AjrF>N<<CfKpM}>!Gh|%`m&t;F$&sD&G=3)d__i)
zS2t6$R-k|PC8@`GEmN}=!Q1;yS@u`sKB?H#w*k3<U|JS6@~?9Jmzn#Oau=P~r7zx^
znTFLXSN5jVceiGQ6>rwey)oX{-drxqI(9WTIQVmNu3xN|{*PpyQ{6o`z9#3`B@wuW
zh7Yev%?Fs{6um5sFQT_s^P;Kd$*s^}qEo+?@4wGHUOxJPUtg2rk1{u_GH&f_^0#gQ
zo8$cRRoRC8aT&Kr(gN>T{52^uCcJ|G&*iDhSo`bpS^9Rtm#<!yy>Y(GG_#`e56?=h
zJAC2V4u9FW5@+hI6^QP7S-$FKTl!e^eqCz1L5n=>pm{IKd3Ns6wM{(Ny6Mrlp(v`W
z&20S#a%4B7s}kkWH{_~MGw)1246lAxD!S>7b<D|mTPnIaPt{%4z93t=>8%AU-g!x`
z;-X}N3rV`28E?q_-E3S-XRmujR&~>x=#9kS8d#)M8%47T9Z<TfF3RfRpJ`&vcDa=U
zQB896S=n)8H@#`zN^d3k%U_aHI4>?@*lnGtbTsalJ!^78Wm*~W#m-glNQv!i5(#pN
zmBU={7r8|X9b}?r2nYXtNea5b&OA8Wt(*d?lf-&64X$xaTft6M$o%~!iFI>Gxs<Tk
z=PlW*8~o7<HU~W~KY18HR4leGB|qw>^1%yoTz6XnAcLQm$=x*TV|K~wa-SU*QO9H(
zB~vH4(dNA(cjBy^ajQULD+jB=6zg7+Ts!Jeb&I#b{)s3>>LoJqsyF1_?w~>Q{AXlC
zH{?&9k+wockdmFpUXmY}AE4{A!}My*hZqbe?ybDGbz>v3!)T)m)dWS2@+;7_WZWsu
zUp^yW;NSs{nlLe(N2yq;xaMqlSjryG45Glf&~Z$R*-c1DDV|jL$?xsHd%qcSAd$cX
zjqsEZQNU#X{$0*^#<W;ZL-lfkX9A*cd?|%^c{3WX55?&CtSJc}`B^UD?eQ5JLJA-@
zcg&RiLnd}ox`GSoe2(#yO7mFdfLP}9^|BiFRL720&tO(;i`L#xG+Szs0kz$F9fDp#
zDu-M>O?H?cb{0|#{`#r%JeJ<zuL<>YZar1bQ~P$nwTR_7?sT~s%d$0&M{KyN9}JK4
zDAcB3T#i%6xnNi5c4V4dL06C=V1r|Se{V7R6@DJ{R>DcAda%5Eof#+C09v&VlUJ`w
zZ76~Ddu)&_x;8ws8Yp+1B2T64MQK#_3|Ze1{xu0mohPTrt0})$^TMntGBM?|nuC6r
zDrdJch?NU60ECGSo-XYc@<@Pc9XEGCb0px$rL4=@!)4u-;gzU-d&4wonQO*QI^3Gn
z2}v~*@J<=tcMk*NiwDaH3qV5BO-d-EqC9qre6Bm`cFEiT{|xc33r|XJEJUUIr%KyJ
z3<71d*&}pMi84M#T#6EB$qBOS-DX!fp?0AOC1E?h=If`(v1gjk5QU^K6=Y9kY5;;H
z<h(XQ4qIe?lUzAj)SQ`<rAo0cfLVCBINwc?r3?5>{>Bbc{xoPn7U6U@_|%&VE4WpA
z0dew)_ZTUgQ!qto$?!_~YswuVF``p6MaJ8CgO~{Y%^NIlr3{mcYt>UzWs)9TaGjjT
z{h*MpGmPozlj{e|iA%%3S6#`mljTc`a=~da5FIpF`Yp3psR4gSNMT`tIy~;*CL2`C
zry@}Up+Bu;^uc))<G;oiI*-kjH7e+8&R--C^!3Q%Xu1(E9yrCM_V5W9Jy`L6opQNV
zsr%^$0Mm~%<=ryYs}9i`^^FNfsbisYejm4GKgc8D_^gT;aP)+DYaT-+!_CHL)&I<I
zGJR%r|FfowH{x+Aj30)XR%u_AG7N|OdW)>Oi*2Qrm!Zd5m&g;p@&FY%s1I3BtEoyu
z(lDsP*!gnI9;Tal5jBHFiKg~FuuC4>F7-QFypLwf$vg0!C^(yE!jCXCmfFIL<k$6P
zu1YjUtw!0KVD<5`1W(^PTRPwYSj|vO7m#s2!wfAvEAe>@`gLqQdX*BdbfMZpH65G@
zlB4*K8C!e8j9hfC%(4Skpq5qTah0iMRA^!~cRx?gg_B`Akbib90HB-JCx7@H`G&Y4
zZBU3Ht<#}2S3^0!`P{D03!>K+C4Q{jn_nMt!%VP78)K&l1@v?dI!AtZ)SC_kS4}gw
znQ@tq5-MvxF)jY;>G12hvO&26U0(-zvq;|qrjjg?sP>CwqFo7e!Pe?gpx{%<{Wcj4
zAUs}i9{MMLM0b7DcD+JA)Cjng76{9tMKS={f);-%SVj^{!H3SocADrqTq~70Kk2$(
zT}2mkmmTQDRQs(t$DFJK-3^*1AoyK#aV*MqpPO&KlWQE|2WeX!qO`~uIfhPhM_rxP
zslaKEy7SIX`L6uNx~RLyX)qQ%ni;A(B5N((PD*W6$E2^+M&lAk8Ypn~Pg##tp_R<s
zor67mTX~m4z96+Fov}JF0&<~RX+)A2|Aat|n$*O&gC}q={Iuu4vTpmC>#rJ3(ss1*
zufZY;ccZCVdyUbQ(Ms$e`ZFp{VYs{GdU-sb+Y?U3hhXew1Z6G3jKVPDUPfVvndcs#
zNCjuq_Zx;pT1o*-K6?Gx&2{Q-Zl2NwgWNOga6<>FY<x?i8mc}?InL|1y8pi0G~4(B
z!}OKptMGR1=Wb*+xue6Nz_Ep!>n8;Xf{CYrW%pYy*>`YsDg8{XhgVj}Yj`lyrV;Pd
zVj#kg!}!l~d4YiJv@WU}OJwp6rgBkTi&w^8hf;!%A2T0EEt5s7GYq6wxU8k}(>gnM
zcR72}I9@H|ZAO(5@h((SI<OMQWs4>9ScZYs_UI=NPOJnmuyLvEXr02xwl#u9nleDG
zIoF*oYwZMHz&M||RDU>AM&Fe_KI_hP+Ly{bcY}9%&MBBFH&dGjWg{*mWc6Pr{f{w-
zr#Iea^4BJ)^I}e+m!Z!6$UUL^FlCvSTp&v<qz&Q1=bRvcHhU5(bv#0n0dO27o4^5C
zcXmQ?RPDH=QD%h{<*H>$rc_6B6buWY2D=Rl3BI7}F|prilCL5FcO_Y%1}Ax^v^J8x
zG9@p+noXJ;BUh8$Jp6l>N8bHOTF@pqj!Lup)km&co$?(@<J{g9`Jc4kL$zksMs~a*
z<@btSUfS)@_(mCH>jd!K);}ew5kyX1b*m$8YQX{3WA0rWdFsZL3Di5+%i69J;2J`T
zOKjDMQ82^()};KLlrxlsj$D0n%J(ATd#2V!K2L>D4vYwJGj$1q@X@MC8JC0q$GZB+
ztW@}`$HdFiBR{2$&-YnPkyCC>T@TwmtU59%b-U`KeRq9iPU^X+rskcx$fE00#!>0a
zD_F$J`ZeRdfOP>{3KmYfM*g0+`!#&m^!t$!9d(+Ojz(i+TPLTSu)B#WNao|vq=tD;
z<#qDP)m#T-%Cn3w)tbS_^?S-id0Zjpsfo9D5LU`q3c!x(GVPyKG$l5~5>Def%uGfH
zf8{G8lR;z1D(t>rk`p@Z6$er}o%A$C#dTke{0HxVz<nSHgkM+72z44rHF2Qzxu#CO
zMnTTaO2$LMr4sg3!mE1ccT$b-fYQ8JCl{46s;W1+abMYQ9mDYqG&h-?H3T4#_{TYY
zl{{B%=m8Q03HnL#g0=>qdm=-WMVPum?yG^wq~%q|F^eD__k@szi4%gBd2%~_66QY>
z$yMO2{#^Dw+pIhg-N7CC@o%!%`6=Huk**h$1(f=BRB8SYlK_a@K=yz&GayG~>M-P(
zlU8>^JX%)Eb2EAFQc`&2!35e|E#HAd<67IGyUxmq(T4lQewfbC&h+|d=WKZoY#oA=
zYt!@&5`Gt`B{}=SLnnXZzQ-XBt8J~VuSdDy6hjS2iLvm|CznOugDEUiYO4Ib-j4Re
z4|TRZbbrubaEzc`%sgu9y3p;>d+;GuFjXVxZe$HD8{4U63+{b*bM(9UQpI&1Sz8ZH
z#-W4k+?PkE^)Mg%GBVjZ>J_8A+J9}O^aySx{jQF_pCwhC^vGEC+}ha)7sTx3JA2(1
zB_OMc2V&&hSS#6G(JgC5$~@<l<<Uz{rzMZHZLRh3wi&z$2xkwU7QJO46TyIXF+~gh
z1q?Idj%dR@49{~NZ)gL()Y87_ifH*B=3~W{_O>nr-o}j}4cji^^{-wSJ>rjM#beN7
zSI?cjQJ0G3v21Y^ABZZAO6-bP$7eXi`s6wbFNj`xF3TZ{97$kW;%)6tu9Bh$?u(KI
zNWoOG1z)_4sKasIbEe)Ooi~Tixz51&43foCsw)rU$t5pF%NLqSM*zDmZMBHc@KMv3
zL=P@9zaCIc+;rEL27pbyuoCB<r=wqAYFaqucoSJ?<8^TzE8jWu<tP!$dJcm(R<-Hc
z3!K=J=y6AzEu&Tfpmx`0DuqdrbJXJK%e%4-EV6S+^+Zq|c1`D$x1%I0sRBbQHr8uq
z5@j<BUyDxoOosN&bIO|=8#j}ktfSK*qLwo}^84uAnnSb+jG^Ltb4P1?&$f=%o^5e>
zuQ<O_9%|0!XxUuztFqQEHR{A$wLc&%|68=jWu~P(R^2qWXTz6mJ*%6+JUe{eKcYw1
zndWh^_FDW_+G$Wacg8=W&$gL{VHln9*4GYv|7M#WH_bBN2egquMj3itgt97^{h`PC
zGfdOySXHtCBGd2h(O>47hA}b3l%6fEwX<XGJsV;@bwZY<BajW$x#gFrTV;MYytb1$
z&1zelJ8G~;=>pVMv-0QY%nQtK`o`MY;ysCAYS)ZbwDLUk+OEgqTGQIE23%-m!|}GB
zGb}un<J;vw(SNm?AB>B&QPVXEEW`4B7Oh%n8pl-C%+X51tutrp?&x^^@6kVYnzpi*
zSXB*Q6&xpS+oM;D`8s$r<p6Y%C4genrs#3!+aFISD?|FBX~DRozKVX)bVvjEtj6+q
z139sbZmX6kvKEyhFl^$2a!_>T$yxd<&9{hW0n$Ydw4u2;`ozBvY2Z4KZm!Z~D76u2
z9+l$pZ^ohV!!HgkKR>I10hDp8)QmNxNMmXLiAURxVLWPH)OK(y(6e$xKQ4;ybAtJb
zmN`CsI*4DYzjm*QJ~lY3!33=$=yFodu*O6G<46M!lSyqB>3>9R8$l~jEM4yTr$+1F
zV_7(EQ)ok3PZ&?$;lDOTd$C-m?WY<Q@-pc&tdrz9->r=9I+V#(#oW<F+MpwvI~qD2
z1b2wzspF#a&Nc%Mtc`Qv#4zbRJ*PxZ+L?u+vubT-S$3ArS<&)e%`78gU0^MNth$R6
zFO7Z(41rZYYz|trp{yN39&1Bj#+4KS_KBYkz4J;l+yG4y%Xd7b>G^S6^p1^Y_DVC0
zrYv+mZH-oM!+H@VI$B$6iILD1^*!&<>)teT4~#W*d7HyAWNGxpfo5bqW%B!(wetIt
z&geYHG*rY$;n1Xs38B9fgjM6Vx1pMr=v%*=`3LY^nDQmMwtRJS{&HUQ!_Sf+r9`VL
z;B~{f&V83gKPxjEHfN+b0d(8HKlJ>0tUK2k#nm7nnj&?%&IfNC+PF09LH_Dn+s0Fm
zMvEv_;<~f5znYu<Ac#7Qa>O02`0$YOh>ZBhXWw{)`921U)HIjxCiU8%<JoUEneXNC
z)<!K|tj45I%Cpbe)qEYLPN=yh$}Io2Aba_@J#^^gPoaX|PeF)bHR#vo_Qc(~t#)o(
zy}B~$`j3Am`-cA>rri*A<83unHL+@d;y6E!$v*Lw9uLCB3~O$Q*U|&gl4w-tuOIc;
z@q_FKiC`PjMybrU`dTt3U3*aWy^Us=F&*`79X!H_ub}9HUfDfMvvrgTQo^^JQFyco
z5qh9U%ZJ$ya!rPHa6WW^d4vP(|80-4&4)dRPPVMRE!J9ZoNToa$jK`Y8~*BH2Bgi?
zN%3mtRSArj?x?Kn@~5*OWS3(YtV6+#J7l5r)~neEtT|jaH<s%(H?FWUo~jpQpP0oK
z5d3G)fUVV%nY<&vKbYOLHVkdvZy$t#!8yzFm$LU<efS>yg6mxyi;RiEx5Aj_I}cnH
zee{+rZGq&~#%C&}jg&P;#>CM96D{aGaz*sJ<@_Mu8Bh(Koz9}6BuYp=jUKSkG;jmk
zj2i|<l24)^eqlb2uWgvg1FIwyZVBFL&0EnUzcEc^tutbb#fzBFbN|$9(H$S+I}8OB
zxw)aet)_V<1f96te5c{HX#6tMI3DJ6I@cpIYC5W{)<_vitO!tr5Bcov=&^V3n<8hN
z9-ID%*m*dE1vf@_ebzLLY44cM+D!|&s+Eap`NXvJZ-%I~woQkm&xtk6aGYL$ioUhN
zc8WFCw?{^Iw6u~2s+}QAa-Cgoi(dIYt?)tkxN>W?)O?;(`d;*38_egy9pFCI*z=u%
zuSNHMgKzAswWBH45gF2mioOwckgb94Oa2m#Uqd@F^LR=%qPb^b**8Vc|HXXdpqRa^
zp@GsFS`Q=FxooWkpmvDOXy^HD;5pSthcKL6XXe`IUO&<mV_`gA6Kf<X1x(zQ=c1>~
zHeUyKK=V4V7BbXpe~LDr&R5c8ur}R1<U2p#dH#v$wchb@joJViO?Yb=h*!XuK*5*~
zml!khC7T(e#OV(osw}vAgYR~0^t}HZqPrfW`E2yp1-dcVv3GAWGmdVqX|*#d=hEx3
zs2K&v+J@-{&}Lus;`MVL{UCbO&GaH8VH`2UbR!vDp7X}L(H$0<hQTr9I)9NPU>0Ch
zVFe!jD4OLRWIG8Z61y1C)C31tic?<Jy6CxAn=vY4(2Uwv_!-cSU>L>K{0mLfc-SmE
zZ7GI^bKi-caHjd5+y(0_aOQm&eMxT-RYqrmyBry?<Cvk+cf1;H(qk@g2Gl~%;xkyD
z8r3$x5xsj2-}9Z(d<12nJBPd$efmE0Z8+KaU_$5MMXW~y5nBIL^pq|COW1k9M^U{0
ze=H~}T`)(=-tBHs6eH;cMNC46KqLVKEL@T!xwH$H93@ylL@ZdaAS!}jMFs4FVgp4`
zR4k~7Qba}Uh+nM8|NYEfLM{papZK!u+|JHCGxOBX^NemA>(>hjmrhdt53G|8>)!Jj
zC|U$E56@YOI<(6wTA&-Gd)a%1sE^eZLDrQONlQ|xo2{;k_=P9}VD;d&SOXln-=DCq
zN!QQw*fE?9I1$uRk6Zgv^yAT0;rZcDNK(%%w?<n$Ck>w8vL|K9Q>Zwkj{n#>WVHCF
zfjo9N0k5C~ANW>xH7rnBix$Th5T@BHtrdNpp1fpE2Awx3MxU%s+AS7@K6X;JP|k!9
zn8F!J>Z+~Q3a2+X7&nzWL#F79n*Ee@#Q^=C;hbQksvISp0*PV^Wp>vs)QzhX*@i1p
z?OAG_)J8wWSq!5EmdbfQFGr7QTv3r+0?ZcQu-WRjMn8k3e!O+;OlHjS`SDY0>zA~o
zqLVR>YF{b)n4CX#;Wq1T*^7d$3W}Z>UMb|bdf`KB&#Sa0tC27$vJJ>~gM-Pfv+9hy
zt-X`=d-=GK8@FgCFgXrXc#DqmdW+b$NU+hLS>^Ne&+|fnPlJ<WEjWG2>almM5z}?c
zh)}KOc5DLHXwoL@RcByWu*GGvMhypL7)(jF3jN-?!P*-hew}Z6P%kk~xFq%1daM8a
zy4&GCK#k7!qdc_A*kJX1fCjN#eT+m1&!$l8pS6<m_4DE34VSF0dct};O+U-izm@I4
z(AZev4L8=u(HGvGE=2xrrS;GG{5&1r<>k6fL2h2X#4_H|&xXMg^?B8BgUJtDmu=-a
z?hRjP5~fp`EMbZo{jT+ivxM2fI)*KaC6{<5sZT$$GB@crWHqJ+DvQD!8bPz<6Nk&=
zx(w7&L=hhfV*H_%R>`k$yc9Lo>n}lPsji*mLz0jjlcY|0)7k2v^@<u~Av^QBZPqoy
zJ7MMA$x9^>*i)5fkgrIp^AaUs>1VuQ-L2U2a$!O+Oj@~KNO<@0zws^yCRn8TE478>
zG!L7jpUNrlmI@PO<q*;zIoyZG-e8ITJsw|m=4aMdH}QM!UeRY(Cc_jTdEDyx8<W9L
zA}6WRA$t}lVe2aE`{Q^4UkVSMvxz9-uI!E0h8h}>CEls<A6z7rI45y^Z2Zz%dq}t7
z?+J!#Ft;2UBn$9q|JMzz1<nE>_Bqj<2)Jojv&ahwM5u&=M-HS4?67uk*Zqx@1*^kd
zCXSdydEuh3b;EF<)MaV-3|=Rdu)TqAW{bV&=oX}9B&p9ovM%{XzlCeImfN7%0i43M
z+pKRs4v$(sE=3bk)!fb2m>=}hL2{Fov(?Em;98D1t?%~e7EQ7Swk5oA_C_n|ADYCj
zXP>bGBB-i7V}-3VO3|@^5vhOgus&N7w;BnMTNx@(;Cd!1v<eJ8kySqR9?R3&Esa<k
z#2{0pWLKJ4Z2z97A2)jkC~lK?nm1w`9O<xGqnxC0BOb#M-g<3pqL-wrQ|4Qjq`FsQ
zZgH_lZD0yF3y?yPf=kc3;<9GXx#73*IUYKAq`0n<z^rGe8JAh(*7AFxPa$f>PLVp-
zxF^LZFeh3SZ!sY(DR>=LDEb{CJW*njv#mapn>Uf<jwTb`&$>C#ya@?N(+}rakJmOd
ziMd&asg@4LIrS)Sfy-!o3m0^*Kfs+AxXN@bf<*iiL;6`4mN)Ma`w{yh;$sb?Coaa?
z7oKm;2sM8TzY=7PXli&X9dz_jhDbdY2G;spiBgELRdOKK@xmRYNer1*o51p*@jTzx
z%5Nln0}<thn3Tw-hQYIkkjW8mH8dr0>N8qjOD-qid>>_AS*Y@@j!+ED^wue#1PZs=
zzG)bIGEo*R_oj=|Fhb-GCTsXx5W0V;BqVhxgj;;r&zfD`u!;>Yu)y$!R{P@CboOAl
ziQ|;#EAgWwi~5c8?}4kW%5xfeYZw`7D`aihNs@m^BoKHc#(Sc=qo1{^n|n1XbAHfU
z7MKEv4Q&l6c>4rvSBrrWDnN#`N;Ui%*pK0XNq3dl%+-Fn!zq=h)L2VZHH@rbo{$CH
zSi{I7PG|~O|1{3iIlK+?5%G}L`d*-1Uh~b>@GZidNdH!8O06$6idKgqHAtK7*2WGY
z)KL}*9)gPADw&uvjI`BnC9{Ifrrhu?xH(5Hg1Fjf(#|YITWo<fH{i}2%9ZOupSRAF
zgRfR(@`w@awi<if*qFRru`R28UX?$9D35o#?Y}Z+4IaI`Ky7hgDz0#fMP#Wif7y#t
z&8E-c8f@N9f7uIC&6Q+N7EJY*R8vX?SWbed0_XIxZ~HB7B|h-{0GwUi9tqSYQuj=;
zw{<Y&jj_Q%aiw=EygflemvQ~=(oVWzP@ou;R0Us`zVIi!+Ry&^_lUj{6DVz=ZVB0&
zPBxl;BQYTbr$^5z_J)(1e*-R}{>ri6biUE}@stEXu$1N67j|sc6FXPk6|#GtqI>F(
zwp5JgI4wckvn2!Up8v#^qmPMqp@_;QswmHVZmT5@c+!24Spt1Q#%H32-u{^r3n8Kt
z6r2qlJY5a=)S?2Jc=?CH_-o62rPFbd@xQk&vaU$hu6~KARD|j{#}pGxQkUFstvQi5
zVC2*%3e=K>As~H9l8cu5;Fa3XpL4L{AYL+RX(g$xuUcPh)K51BYrJ({9942jdd)g(
z_9h*g$sxW_6sQOg3IU;@_RO>%Dh@Z);Vci-)&;~^AzWe5G+sAtLXoII7vd(lbg9a;
z`Fe|LMH1-I^VWe09PZ+_B0TiUY-?u;L%=Ox8>k>PFI8?r##J)-1>TWJRuy3dl3tU<
z<a~fg5<eYwFnF+*j!Gpq<>wXjH(tqmgI936NozHv;S|*FX0B;z)Er2B!1`U<35eoW
z+*d=?$6HwrtzmQOp|`9D?xAZyQ@io`plDE>CQaF|Tm5e~o?(S@y~X>g#3_-MAXPUP
zc+K|hqMJ2<;%#i8q5?{lq{bz(d(mVceZ~Chblzxepk7k~*W;-B*PF#X!(HKMMUAI2
z0NWHEzvogj>%{11*iLzY>b-mDjqqH8)a~!K%beIt_m=0C?9J5VG&VeSRo0o;J6{<@
zR$^Ibl5-0XhlB(Bnpu?`{R|u{A4jQNrHFo+AR()Z7n_qZb#DbY3pCcv>lw_y>6o8T
zBUiazGl%tXeu6JlhC*$%1auA6_DyqHhHhz?F%1Z=@Qm{YXQ|-<^z&*pAUAc4$}6zP
z24nJuY1bcmRh1ff5xV5Z7umgXWAgIZx}l(Wz(}j9tW={0v)WJP*oSLl@&@5a!b^^-
zTcQd_z>D4=X8(CLyeNY^wJ7%!m=XX;4Fd&q^P@d$jJbx8=$Jq~2M6JVq6O1A_o?`w
z@1_AHnYdVR_*2k>GRha&U(MBzMfK*a(SXAi?`VH}(O4R?urex9195|btV1jv`<pd!
zO7At;ZgOcNdpQF{CakP1{=0?eoCaB_C60@4FVoi7?0xF7e~62fhJrw4(C38Ayj8fE
z#MaMHu6X-77ws$#nqjF|0&apASkc{n%XZ%LPYJS>b;8{q!(JZkJgp1vlP=h~SD5yF
zu@MgmB)ntU^NrXwC~zZjH_MR|rSjQb_Uy&@U$I%4Z`c>Yy&tI(`#Ah{+)Cnw<Nc%n
zOX8^PgY>in30r?qVlVhOg3rRUQJ(*sVxJ7pMxYETnJ(qwGv#@*`hJtWZcqf*OiDma
zR@0`~huiTSUr&8;y^kb$;?xNOQd_*(Ua^8NG;LwaBhtq#vd@0nX%T&#H&POk;IEf2
zv>$l4*&9g-g5|ztiGBadW-V+@s8V#FePhcOE}mCcEVjq2YVnQ)*DqOQA9$u&3$uhT
zby#dCu8ez$<5%FV;Ez)KPx5TJ+k6SWkzGku`7&>rQpe0Oy1iq*1hqz2dqJG?s8`Va
zYJ&9=+bKIpl~cH!C+|gb8<Qn&K$Rf^LQ0K!%3QF3hoBUyD>%5=3^KVbH=Fg-J-yga
zg}&-)e}(w>1lyeZtX2GIY%g>=v5UDQLV}ST))eJ`%KC0aY%hkH6V!1Z?&(Wa%ja4v
z-iz(UR>&=r=sg#?__)TI-`{<=)&E-kdqQOXQUXFmrwHe$%Vt`mKh_Nc{W{>04trMT
z*IVa&#M3mT#M5=&n{=vgSHzousW}x9h*OIQ%oEmeuh8Zg?i|}<89QE(WOc?uYr<l>
zfHwq!^h`BHxyyU%9IMxC{XHHR`KeV4BAhA6*~w&AK03u({V6?iqZaW~0G)(dQq)g#
ztv=iJcf<$ls{@l-Egwn}^vS)}y^ClQL0K0J)WaTN%x~RlMPH+5P>A>{^ZBb(Cb$Z<
zVU6W_SN}TCUm_VU1fH_g+4oqlKpx)1qgf>;IR1J*fS^oP?xohto9GIMijVwyCkO!a
zBSTrstQ8yd9ETJKB-BhMdWM=Z*ZSmcIwOc#hO10mlQ@!+)r+gGai8d^!!}An1edhG
zaMRUR2Nn%lgAy$zg@gmgw+26DE#0Ue%i7~%tn|~srtm&zowr`oVyqWhI3K|2K%UwI
z){l4UxefK<iDPPLnUj}Tr`)1{PGCk8jVlq<`L|e~-A3;zx(Xp-L3|O&m2_2gzm<D~
zZWvC*Q2^f4SvPpWuh&{hH}bpzg*!Y%u*yfsG#%!ulCHFFVrr}bo_1eo3X~8G^ypiy
zy>upz;dh!(Qo|N^Fhhfj?YYOgQ2HeNQ$xg~4ELWbh{*6`@3vm7cg6>5nmD|Eo~gcH
zVEw{#Hr!x|?H5<zL19<bJcP?$KOPnG;Uvcw0`h{)Yjyek){OgTf#(Fs3n$1;2nxp~
ztW*8>oE5W1w+V@Z#18agp#vwYxzAYVucb}LuBH<HEFzdefk{ar_}`P(^}F=oz$@0m
zSEncFP`}b8IgC53ijY3EgYn*my*aR>6m{S!>-EQIks|?$1^*Mg62&t^J+{mmakXwC
zN-dQ~K{=+V7ap{3ox>P1fWuV##3~bo?z=hGAirLTL0tc%cM-dy=WOe)cl2-j<BEee
zteZGd-k5DwdmH9KfVjGpd6dXJ($o*DtQ9-?DurpabF>u5PaR$(ROEl3v3y_hnscy=
zPyit(kmd^(Ta^p>xLk)&=dTbH4(ScbT5Wy79%joAg7k7nsyxTaTy35DfgUR%r$A{b
z(j+~T<y|=4dTcAtp{}>G)CWru=}nHub(UJfbG9WHhLMBKvP-qmnRi&LXEGcB2{_>h
zcwt9i@BjCNwfrd_i@TPY0jNRhytl-<c%B~mSZ~;opP{xtXnp($158r=12r{JSVD5p
zf#5*0+WUa@t#pG<0yMswP!utf44B3Hw^)DPP6Nycmp7jH3^5;`zTFD#<te;3zz!7m
zE~-_My7W0KeK~_qCumhwQx+6p2!8$)wedOYOGd=3NXe*VVT6)dw^+uN^a5KY6cXmB
z$?EYH)>kj_I7N-*8YKWQ(mC#i=x42o!tjax$<-K~5;phW_gOy+Go|A)-xR<s02`zN
z_s5H^_G}yuYj*Ku$vVIViB^LxvF9f1HevT^&_Vc;D6R9?SRLSRw94X%$tXNX$`vht
zMY9?N!eD<DxJOMH9h7?D8S6h5isJ!R+h5CqV6#x<;%Vy=P6j&QSWMG!RFpgKQdFP&
zt-VMJS@AG$<yMAd^~Y@M*2gs!Mun>Me&SMsR5f^wRW5Qxh~uk9=pb&;yN9l_CasMf
zpgnw5{_+4yUlz^?5Q7)@7(T)+20S_+ED^>C`bp{ooKb3@F+aAcEsKK~lf9*lO8^~F
z>^#rQ7X8%GbPEPSnVFO9-Q_WPtU2<t2+R%4J~s!##|P|LbuoDtN>~PN)PEdgn^SAg
z?2fT5sXoZHvDtKR=RNi|SIi@9)dILJvEbW&GY*c47c=}55E@lPWRW&fTr;Chk9S@+
z2JopoFOKM1F9q3r3jWTMmtTnQUFaSFeFwwK{M8UZoS2E~^GD<N_tOo-LLhID#3~Ui
z4@siW#(y!uEqZl+fD3?88|A_d!YdtqvA;<&1rvZY@>h7ZMoD=}`0~5=##f&1pfDnu
zaGi9XAK%Use>G}0$r#mud=$A13}@2^_SjMGt2vWAukd4v36dyHJ@}<Py^}lQ_XMrD
z9q>K7bAH5gyd`X)E4J7p3nQKb&VVR0-nV1rd6F8+l|^X#AWWEElClASbaqc;BPuoP
zH+ShKYbl={9tg;$p~@=~{|fuI8L@3KUO`wCA+u1{27GG1G1nNHOQm-|a24!v^aBov
zSYuyUUo4FsN`Zhu!F`&oCjbTE23B%OA@n1s*xw|^$aR;w92GHC#8E(Ew1?fitAl;f
zrZ{OFUxX{W5+8I!BLwekS8UXcx#Zt)RfTR!@^I9XV(k5|(ZsR_h--WBYoohC!W0j#
z%btn$^`FM&!sLNl)p>Hck&S&JIXA;Afq-BU;mppIxZTz_&53WuH2jj%$Q(_Wh*R4N
zP!5H!P!k^c%$)n9{*_K-;-sWVfN$h$X6Rx47#*mx(plLwHR~huiuZUd7f1s&Kr#uH
zzU^S0c?M6xpjJXaZrLM!7Omx<Zf2WK&ab(BPcA$bKRf5LN?9A*$K;|I0#%|23E*Ka
zQ09Pc+G#FG)1TFFBB^b~%*hZ;Qf*!_-y9J041~=K=s7bH!7<4-4Jlw@FiUVftu|NX
zVOJv>{6*3vgvpmgT)Bl$dz5;=Yfc-8Rhy(ngsL!ixlto6A)Rh-T5Fb%$BO3gO0tYt
z!Z>6TD3h)}+GrjYqa2&CE)b$@rt@u3xJ(H<8`lAY|7NPW|752Ff009GbRXiSG-LMU
zZ8RV3tvf-r!$-@^lHuF9#uC+=_2wzvX_IJ}6!S^ObBaBMsJhbJWz%P}dYx@2roFfj
z<ZHVgHus6q4-Lu5l7`I01T+~nd6{|t*))JsVSt(dgf9ihM5H+dlZzeMYk`?Fn%@AD
zgP3ej1Ul}FM0CE5cbgZVqx&6M$&Ejnh5<|+zubN(cdIh4WYzm&a~Kq19C;iraYk|N
zART~Ee*AOO!#tsA{(&h0O$XVkK;f$E4pehiQ-okr?4<r7b7D51N)?-$YE{yUOpjZx
zRPXo9OK_evo4C}C82+ePlA!508VgsJpDUr67JkKLQ_X8T>!yM5RjzJh5!vK2v1Ik&
zRp#WbG=h(CE)NvHixhZFK)+JQR+<GT>DK)3se6u2=I16)s>dXVp-@<Be$s_jacSyu
z@TIVFxdKib!)Hw~|18wRDA*HVyOq!Zd(%P0Ng7Q8PGfb;PIE&%eGsYgRZkLssgy%W
z5J2mY8uL3=nI^gG-YX77fdvYc(p357rhT67U92@AACQ{)%632Wxp|7Ao5uJ-8FCwi
z$3b|CLkWkL;A^k?z+C6nzsY9MSbF+xa%<I{+s#amCO;RxVoypF-xOM{-eOiTAeNUB
zs$RK7Kt3te*!q8NzQiY?BD~$}86ok3WKe$zxKGs0rDjiuOxZ++N%hhs68OmGY3BNT
zO~CK~WnYe=ssKOX?27APPrca{DhhqPK@OnIlo%Sz1KaC=x%m-`&VY1TzCCPaJy^uF
z`tJkt12f!)D=)keF}1gudm%Vm=x94xZZ`k?Av5GS+zNbLyzJ*P54l1&L9!`7f6<If
z(i9@0(N`>+P2bE2AXq$rz#8>3Jo29TOJ9eOfnd2F8<A5u2gycT%$FFOY;kDJ(jit7
zk`X^6-!sQL$1ER<)Vo&>FjN%Z<j9B3QD^9JXIFCDH|_%DQ3`2s2|~&CkC|>cdFW2C
zDTc&>!g!~Ri2X{lGakE$8B@rx9xE2_V+txz0*Zk0K4~60Q~!)C2)W2r+BEk_RVOSn
zXA1X#&H7|u!g2s<>Uqw&-%MZ;noNcR0NA&2GN7mMKSCMSJwY&q!7b)IdV_HiFBdMA
zjKauy%TTG;n|<XpXqyu*C23+(0Fxi!Jw^C==b7iRJNdytpTArm<j7Z{!0<p34S2WY
zYZ>a7hs;`82TY^`GGC6CruDaXnYDfBO1Rw=eFR|odc*ErYu+g1!#JrYXO!<tdbTD~
z<p%S2R*ojBtOro9%7i@uXi5;9<^0#pQfK(hnR!wpGuP@5au=Tvei}$6DYmDqGmR`g
zE!oKa-NKmlwFsK6et3iV9lVnn<nuviaj_%eAJk{P!#sm+0YOLx4*K^paqKq6nxRgd
zZ)V9EC$A!a*{X*sx1}Wr=y~TVv*uj=9_E!lC<jl^2=2z1q%_zqGt7Ta<rl=R0+`oa
zbuCMQ-3cT|$2|H~n+w|O9|(ivcyen*pvo8G7YvRf0xA$P-)W~uFa~UINWh9v7~jI|
zRp!e%`fzG~p|6$}4wfaK#^3*u*{{JzUR9$-fbJ6mP)!V)Gdu8ALRbO32<#q^QqE57
z{E)e71ii|wLU5r`Y*o|*ro;JCFRnLF9ju8cmNhj>g9(8I*1b$9##RxYF>9gun{Zqp
zV*x7A0`Cx73ebMaP3Bfhw~PdT!SRy4Im#>CNdHD0Xe;KKkBL-HXK$47n?0N#KAwnG
za^Edxw8IMue8GC390m{x37Pn<mTffONz>yJ!OWub3U-g$xWK%Q=d50?zj~5pAKXcn
zz<u57{+G=2SUcF>AfQe4!r;+Sg?=I&u#NhDY%YzD7S*f3r}a}pCgPu+*~@(YCZ40H
z3FNLQRPr}(Wl9pz$WyHsj@4S(xP8Uq0tPR^w>up)b6n_Tnz4gKAWTAZps1TQZb@`5
zN11)@_Xf)ku$2WD*}lyDD-a_MTz)G;zS1+Y$PcWR_9R@IZLc+bqjftmMs7;tv3R{7
zt2B)gKF&_{>%8+s5|dQi_vX&QJWW#E$0JP7zndFLFeNbHPcuiy=q3&4uiHo7GfpUO
zVNhkg&0qF0M-&}40cA6Q9Afiwoo=FPyTdH{n%D5H7WqoWcEcD>LAI23v{t3?QYH(}
z=9r?H4rhf=J$%4iCA35eW7fgPU?C9=RAmnk5+HmbYK8Q+<uCKT8N4E{3oS!2tz{pk
zsx}{*s|uZQ`-tPAW@?PkeoycbexIcBb|WEScUfW>E$eLF`F6DE!;(XRcZBjg?6zc7
znokay*IO}5u?zA8f^Q4>%f$f3oyF}@_G5ix*TDD&NR>mlQxf|-NktXduU%zDSh;Bc
zsT-}_4Amd5Q(uM~wgUeHmJ{mr`M=u_^);7aO=lBT#~I1)d+p!&PSa!M8TnBdq|oS=
zPCZ7?A%l!^@S*zJ-4&9el&0$Lw08C|#IEd5-c<>^UPo-$;K}OKpX{v}1X@T$4OEH?
z{Uy7{`>W272k;|_CkE*oI`G@Bi+k+3zlY?KjFNi^A-@0;UYcT+r|Jxo?9xyvWh}JF
z6CHTH*LwS0Vj5iK8Yrm;XRf*7IhWX1aYHKY#Gi?j0vP19rAw+oU9~{^WT3-faMgj*
zKu{aO6bhg`#Xt6;o@U-)kt@}ul2n#IinRCT_O6p+GT}l6KxzSfDfMHa{nDa1d6Wkn
zS-S}_Q8@eq3hlA8<1*n3xS()h5?7>f1UlH&_T4|lW(pzy6;!DdyvAK%y6s<Y<T3tB
zvX!v=LDo7B7a~Ut|GQrH$Y=Fy`IEc?_f62Asv<&pVxp#Do~Nr`r`kPMIGun<#8+Jc
z(jRRhMg7&;p8i?5g$Q<8U9AS51MFe>`VF_Y?V*u-nu#*tPu7kesv$Gn-oINVXEF`^
z&YT>l1&}DABT$BW-sCN9Dr@v3$w`!#nsA)mai@On%mjELzJI~l;b&qOANQ-(TfRn*
z2L&rC=6I6aD0as8*3?h+Fko=ij6xjk)O|tI2Cn*OB2)&-3L-UtQ&>P%oX$=o?f3I&
zkct8!nGy~WLV#K7g^`;4cn$`7gFsEhjACyTJY!e(;rDm~4hkKlBM{S+?LOD87^6Gl
z3*tW(hv>g>9^93g>Xx(Zdq?QkMmg|gXQ9EKr>ot4Y|y&0aw5<w1n?<vJ3_X2v$>Qa
zRlQPYFIvejk_ig2w2s3VKN_+5?VGLtCF!QIK*gMBL^`-b0r$TZryFv__ojq8<SWT%
zMu{g2h?w{n({Yz`h5gC)=vOsKbL1u;9iX6Y4}0lkJL5^+K)S?EAE+`Ms;Hd=Bm4)f
zUEgbJgHqN0JGLPQ9W?$ikea~`Be1U5mDmMJ*k9f4EB+TNYmkQq=@5YVr>MXLTNZ}}
z9Y6&UXGJr!h;OTpw_6*J(Jcja!GEi2fT%hfg)(HRYTI{~{f!=6cuPAlN${o!{ErV<
zUvH(6R9}q=#pfZ|glA8-Q)_uFF_B<t7?CXzr%ZK)WuGW>)!<T!l!4Ubd^xyWZVF|y
z{I9+J!#(;JKtoA7{kO7S+=tk}1YmUwcMVt8IkJ;r8kGIoWuNi1{$77ca13Xn=yFGG
z((Dgj)J+9G=?;?`V>MH?JKgRj&(pD8N<4Z0vK%CiR3R4exoFTf_Z%v_+Wzf3s448N
ztTK#HWg29qK4SwDmjxJg5Do(`!H>TBKkLbfnvx^wq|)(Aku<;>FZtH`Y70Fvc7he*
zg`v(X+`E?zhg*qCmV@Rq)i2P>q*N40MCt4HeODT9K*zyo>G;jWEtus&W4h&lwSOTk
zltBuV;6$nqOxX=CJl#VK^nd%TFM_nO1p*Y93RIA-ljLC=_xQ+qA_b<8p%oG?DrN$Q
z>SwRL=dec}4=)A2sV*9C-?+`Qi~~)wQ+0{n?tm4O)iFJKjBFp*q9LvI2H-0V4V-iW
zBQ?V6KrmyS_ut*4ZeH9P)S+>q`m*XkLakR|Dk9&ANTmqyaMV((L%*b>|3ucL@h2lt
z3&c4}_ARNgs%n9?DVBHf7$Mhc%jg_Gn#?#A=ANY<ea$-m7E{{E@$pGI7Y$_Qs2e{e
z5TzT4z*g2x2fUw(sYZ>0l~&Z1x`8MqrbTT9mlM!P)^(!V|A94Qy>3KJpTadTQ#|2p
zF!>(VR^K(&T|RRqS`Id49bhSO9;T!t`_j}mv3BCSMjvfNJAg0MEhfI#hp}r=0LBn@
zuJj?A$z~Gs_S}E%ANN@E8IVqw^(8oYm!~`)*DayT4ur%=Vxkf(NR!(S-n!X(<qVGl
z1pusp=toE8<aJzUA3M?zl-*!7J>X9=9GpxZf*ng^?2Fs$HW_MAT4~Dgu+vWLE=_A-
zdm|-;!73#p4`$qI#~=1|XJZrF#mw<e#*H$y8ksxIJt)y$2@^wd3qTCR1Gu8PFxqZ2
z8^8hJAj~vP3Q_Ty?N^rl>ZQg-1cj9<9%>fcWe5m^+*TsqxDUW)P!cWHzA*t5x+wD1
zNO#F%kcz=T-^qD+1FcJ`e&1S!&p}eL9uX?|f8oLS&8Y@|(2gpKdzGEZn5uAAg4W7N
zmU&;(xyM5ZhO~@8!$t!?NW_^YQqlkE&|^ggO=wWQ5-nUsK^OFQ3hrO(NB?RcnjM#c
zHzn6sTjBGddily7qGDutm_o;&t&uB_{tMKSKlWRXuF${8As=PBs6Sar9#rPT|5`Ji
zKw*l2-~segZ|B-mn!)2xrZ8G)NNv`ToFMf~-p{tZT_TZosQ`*7;MLz=+P--Ml3V>U
zz%FzUb&U|b<OC$Qx-Z9G*aa4Y_yGVi9gc-I=s~HD{oD$5i|i^%d+Y8TV9)Iu*&vo`
zl1lDxpWfNX8=8e$GZhuiGm=XwC39O19|4l`F8h&-P^P(<+E>aMC$h&0SG&sX($v^j
zg-rxtr**Y@DJf+pY;JQ-kEIV85}FzA_16i)oTONe%&gbrvo{z+v(wcke8QmK#9o#n
ztz(|E)?E=R4cRC<0b;1yNq*fc*4XRy;~|_W{cG82(_gSYyE66-mbE|Vw0$12(Tk=d
z0n$9sqvkzpTLSY0r9?2Yq#j2c=bVjuexiN&9NmyZ_M3Mq#$5)!4yxYR_Rsx{ZBR7_
zt}O5<aRLs!*R1)$?SexNtM=84DJvITO^ddUiFdmoG!et#6t;Dm#LrH2TM0GpQ~5m6
zxoXllm2wTUmh?8{5yT`Hgn9+)$$!kvxeNga9T(GZc6=flv_td{ubnwrql1QGmr*!E
zOn02qR6eh>fA6C$1zk!EsAt$xKxJz8i`}uW`6^q8Xj^ebS%5e*;UN#N{d`UQzD!Vj
z_+PnJ0*50S$qnnQUZwikumF`Lcm}=JS$CHh62~G(Os57*81J}Y@h7(@vsHLRJ$M7o
zu3X%D)!%lvgO)rVQe7PY9Ei_II3w23-+$V*duht#nx@JSP)JFwWe#wh6!lJQyz9;$
zPWmqP3pRwHF7cH>yAN))7u{$_d`f^s;ZKQF_7;J|kx3K7q~-Uy@&E2eT#B0s8uC1q
z_z~B_?Xt^<nrm34VS%bzxf;B-A|X(n;H?UQ%S4A@3;vp5mtB^)2FQix-+0hOCDBP;
zU{9pP`F9V*4?n>pzZiz_tu52mf#6cur>`xJAAGDw@TjmDzr?5DiCMxW7I(6{{6Yi@
zXc@tApuNJ+Q#`PV+uPY6w1c1X&UDz8kNeoulRUT-H@fV56%Ar@5eh73#i65YVYD}L
z@boJJ)6uVFc~B>6PqaJz8uy57Ghy{go!Q&{zB|4W{e+^3+8385aERN+TAR-%nVhsA
zAO3I3YoKXx?bprb(|xs-CpPnVG!tQS#3oqpT1m$fnJ|_!BU78|DWH@(0n*e|V8W=c
z-R)xsvq96;Xc!KpMJCb$-EWJsvj#fyBq$(Qptg=sp&1qKv2M11h;G*SHb6@dhgT(q
zuS2Z;y<p;CBV3+PhK!O1zR@YhuImrj6qZgP1XmJ<JeDC|RS8MHFu~j(jax{U<tY}s
z4r?@lTGQ(6cg&~#+F>O3W%DKNjiS1qxPU<9^FC+ynq_9b<BB9r4MdH0oTtDG5-8E9
z*3L73Oo*0H^FS_D!Tg?eihFNi{7}^Gf<UN>`Ue3r=75<}!KkwpRTCpE0v7)cFMxWq
zi*<jgel)Vw7t$pzip0v4=rn8Hqn*{p7gNk(9PTUKCo)Vb2T|XIOIIDpErMOB3LIHV
zp0H;Jlj83Uk{qA-fW>vvQj3AYrCfY3_4+_;hyqk<{qs7d2nf3b@VLvF$PnEoEyc=M
zt)FW=Dt4rtB5FFT?OE1;J7|G~xD-$fX~A2;;i(y51*o8)6?0&l(tuZ(DPDh-^=lOk
z;$9BoBfy^z&Xb{TA8l^`o`wwOB&8Ct6$QF~|3>qeIdKAyan2g)oPy4Rw*yjt#;W^9
z0~7>0B<KxN5Hr+2k6QD=W+7I@52+C#WV0lzr*5)x0c4<~4fbM@IK~qODVV}l)<Z!2
zn8zR{fqIKu9@NfF)(rwY!2?kzZUD!g0`tO&SZVnHtFU+!DyS_cxCXd2MO`%88o!w@
z0MNxzpv^Ce?xm`jHP)Fs^oYW^5fXN!HqP8xJQR?FuT&@S0uhniI-<zw>bR$@1P2pH
zoee%ABt&&eQ^(D<z6a(d)^??~CWC})*b0{}vAolCe>sxrDdeD131tGGwdR3g<MfRz
zDk7{QY7|CXikiF3`sHQ)!f1XiND({$oVDVYt=o8kPh|^4N61YPSzt#Ctz#afBf<Yj
zj%mn;txQ54mEaz-u6mK4h)QaNB%_5O@YeCySUa}F7Q=N$QR$}$=r{*R^3XB4``(8Z
zszEc99%6RzX1TzWPO4tE+a~s01BPZCYCjOo1lbQ*B7%xs8WW%KrnLsDayMRm8O#MC
zfX|Yq7r#YxSZi?1BdxfVk@$pUkoj)4zb~SN^M(7oG$3$H%06I!xrfJBJ?2@%@Gw#(
zMV#}63WRD=V(+-4=NjaHe;-MO5DZ)-9C}cuo&VOEYp^j20+`>p+sV{RRTB*>1GIC~
z$H@RQ-!rW<R+wv8DS?|X6J8K+EG4?TSf5O^)}V}v20%q7F<vlgSgtkcmh}}cWg(bK
z2?nGP?P3cq>u8-boJn9aa1Cov#3o-Sg^Ln>W2{eh=+EGIs7EG}!z}9EKV7Vf8fy*1
z#w9NFE#WJGq|%`O>L=~(L+mx2_0f|cl=x1G@P1@pcYHH>4eJOCQHhYD(P=R!VHI}D
zl1uD)JMBn<!x_T_$3ZFuthB0uixl`JJ{f!RCQD1#G6Zs1yrb5k@U{KY%I}I)J(@KM
z%Lto_Y>^>BvNUA9m@1pd3fhI<UTe@Ga8-yIEe=n#&g^T>+`+~l=mmi>Mf^*2a#@VM
z??lfIXg^Fcnvo1JG<iW1jg!^=r!qu$UO_6!Vb!HX;;U6oAzOLDCw9{GXu(mV_K++i
z2x~G^pykZ9_L;wE9P^PDv_;mk{zW_UH|_Rh1!_X5R#QaJ5LDN|uk4S`GV=zA(&Y^i
zrmt3mhO=m6FSFNnj1dc{poRhs7$SuM_D*05@{Ze##Dd%Wi}lL_)OJU8-R&uW#}O_R
z)s<7d{$uOjvkkrKY&soT6B|#xbcg+4ti6W+YA8Pfs26$u>umeD!My}`KZ0sXOc}jX
zu=far_HpswUU|+M7(L+@1_9S+i&C=c=lH{i*u4aWMX2ayK-;C_zzn<7g}tPq>H44#
zh1aL~7Q!15-a<!RbyhFD>I|b`dPUuImWoIOtPlnjvnxJ2lMM)qmdzyf4J5Cn*Eaj6
zQ`!0A>c;-1L83Dp&zlSFDVO7-2O|+8&OqI<Oz_V5L~e~gqrFECu+~(=egX2ASolnz
z_02MUxE<d$HIF!Xfb=uemNC|Aep8O|=-Rr35=o4Zm;)zSN_dtfSz9@m?1LO%CE6-E
zKUAMj<k#mW+Gn-X??oPeq?~j78^b}89ZiSyn5GQiK6enUpzx`$GDM_?Tv51Q8^b#H
zRvkV84lH6;Jm2*vT8BqQ-@z#IuywsEum1?uZNF#Ra*~i454S%`wroPVpI9QfwET`N
z!~By-Kg3k$_B*oEsQw95NuFQu1*kr}^B_t==!Tt+L?3lMi;rTo|11xPptu0>P6!CT
z>lW*^EZv~puytks2Ez_l5erZ5wstyhH)cX9Go&|IRcg|uOWx3Zr#U@}+h4n^$@Ijn
zHFuYlbutPqZZwV0DkT2J!PQ!FN|uMwl()0H3`H5HD4Ha*H8%0`mnYf1bF@Pw&s*-}
z#B+Ex>g%)P?a{GXvmVM00!1bLi9U`au>HyQyf(VO{y@A0Rl#SH)a|F(cMjySq>plm
zCZSIcUznU=pSG$Ad~CSC2$we~4QWRTU6yJegKvPh3P2$_gF|Y0u;Y$9+a9`{COm4Q
z#Czaj;n9<SE+_ukGwiCz<N9!}P!+0c37*j__S5a#?X&XYn!88@)Zw^D`mok-ieg4?
zzM>*ZqS_M|f7<u4;-@O8@Pd+3ZM(#Ge4huAUKXiG($Ga@i`;SFdW)ck!Yw!ihH>{0
zMQY>|30v(@2R(Yi+&+wK!o3(;AKH)Q@|0i>niYy^!ghOoS0=;Im?Vx|#+)fNGM4^r
zPd*qczZ~>Uuog#})K5U^_}%XQTZ@qs?ra<dG16~q|5PgZBYR;_O(yQKpksf9lRiMe
zlA2Qo?XM=bLc_GiZeT7TGZ~_kd{=FMweM?7H7&H{>69TwH6Wf3i(8!#uVzvbD)Ko+
z4O@Ah22a?K8lP3sLn=iA@E7)v*OS8Br`w+njXjP1l7rW-Rxrkb3p%%tBpsb5dK8zY
z67|q&aH?~P-7Y_N2RZ=7JrMAv_?Pj92xlC=!}1klfu^bPW&Tp&>|#iZTOV$haG$;W
zcw5>=;sPtFp3aisIb|q&?zLm{Y%wQCN<Jmot96v;5}Ptr4%q1btV{OCH8YN@z1ldI
z)Ddv`sp^lj?H@ylVp)&D_VeQrM&^N_L2ewd)mfyp3P705Rn#GZptPx;|Fh2<sEzK?
zl;0u%vognCzPk5yXmUhk`~g4w3%CP{)Vd|s+@0<nh)3a^9RIpn)`k5<#`RX~#!Aho
z2K#CpjzYo*g=4?B{z^Z>imH8~hB7MvuhH-*PZd?7+XsP$lb8yKIU)!I5{Oyw8+PQZ
z_pKL-9IoW|K{Nd`QLh<1W|tbS+sN&x)Ug^8zYygF?Lsv=kkzc=(l@P5G_d(3QUqT_
zMwQ9=BwK@0q5oRCEjQqliAe`SsV3X@ukpGs>J^oQV==tJ_zOI?|1A9mE&$<}GUf~}
zQ~1!boiX#uPM~k%cLQ1s3WG94dnAk|HH)Rth7);0h0aiC|6%n#J=`1hJiy^g76&MC
z6z-(s?Zp1N4Ifu&n2ODa#X`KZ#k#Ld{|x6DR)s|Ah-ye)<b+dfQ-V|=)&mF&jujkN
zvJ}|xAAD}rIU-}2x3*5Kpfrq*P9Itql{(`Awh!S&E^*u*+-!|>em(XehMCMllb#?6
zah+G=?f8NEtwJ&_Du^nCMU41&FL>J;dxCBh@>luFM5HkYZv9g!-&t=u-E#d7el=aC
z6*(|_lzstkH4!0s%sjt5*}jW-D3cLyZ(S{cJy}Lp5u6LLvqIfAL{|Y3;RXt0gO%P@
zui{|ps5AtSvM_t7hI6_djs*^&`V-T~6oVD6u|Dgm-=N69M)*?;hBWN6?e1sm?)&3o
z1r94oF|xAV{;*0r&_Ij=cNf*mGEoxJ)%okJ&n2V<-4E7Ql61j*!8v59;6`ivMRDtf
zN(8b>CzDe=K1tnrn|02%xOK#}hT#B_P!@$LRL85Wl~40yylMVQT#*1(l9ZZet-CR9
z9aeOI#IguHU9`3LO;*jfaqIe%j!+T=itfn|BG@?0yoC&0ILn$dKW<$vx{L^1T*!&4
z`a0{UkK)!1WJ}k;AIbqL`hr~liO+_Vc(IqM0kaOm5A%XpqA;xlrRPkSk}>NBum~vr
zuw&poY3j8bt?bQuT6p(-#qb*XV7eRTTMvE_w+`8kT~{I1RprAeS6V0E7`GJaXceb^
zs@E%r2yXk&Jo{U3Y_8@*`@yAPHR7sBU2Fz!i<TG+@`O}0*_G6?L;n5rk9C>EBc=8^
z2Zw4oQm7T<5o5E*3HIx^>$VXGi6?`1_v#u~5*1C6bKl>Im-d%vkepV$J&3<lweuu<
zo*)gJ1Vj%;2AiE|D&i<fRi0*Fyg)ZfBAV8*(sUqve0%$wXLN&vDyg~Wpz9?$XZDHq
ze@+wFb1eLZCfrt+pJKOp${C~_P(H$)1)>Pm-KL)o3ZSrse=k^=o7>uJo!<|F5`Mxs
zMAS1>yk-CTh<+g#-<Upo=>&Lmz_xa!ZUAlLz$w5f;1_CpvYqdAly@*3awXo*{<{5S
z`_kw28##W`GPOcT42ca<<FWIcQBji(ns5l5S7x4M-@01AG9XAK%~_vxsh)!GGfZW@
zK4H!$>%&!q$J=x6({F)Fz%}K#dz`kfkG1FD>kJ#GM|i;{fA^|3_NoVU0~ue=7&53+
zktuvM>2ck_mjDSgF1FN5{+96m9lCMwL5Rr`H13ovxL4KR*4c}7v+OT8WW(Y~?WA}9
zu`YKehkaUq<UIsV-(&3<*<mR7Y)McsDAY_0w*BYjv8yq9$dto8#+54!42$Ba!Paqe
z+_}(_%f10XV^&EX%hZ|XJ?&%Uh2bG_JV^sFFdQhnAoX!@@QooGTY@s2h!j4(dyF-I
zihDIaw}F9TAPy2BPT~t+JZY6Kc9)}(4l4_w<hjS0Nd;CVh7JH{>Jj?|S0trv3;e}^
zaC8I;nSI#>CUHRdS*~vqJ_HF&@zK@&Oln}s;~Xj_3t!^7^Yd@!wpLz=`8O6k!V@cB
zAOjc<A@<qjxz^71Zh_K)W5dfOzFkZqb@v4GxnVIwvw^A+gyCW{vG!ErPu3+{HLwhK
zFW79Rj{K*{uWd$c)zGrx0sOq|Wz4T#oz1=<MhgY=y<E=#<V+YAz%s#dE%aK4E{7)K
zmmpL`koD9&&!btk)XtS;5ZFIIO@!fAU1804X#~~~A2mZU?r;U6rTMMiK3t{ZcEy1~
zSXEHbyn*+kuXX4IC?o+JN%$2GClu<{-CEjD_XOQF$3-DaRQ4q6@J0IPTt$Kp8%+<4
zK$^O(jWzL9o;yjBqSXMe5f!d?j`ikRU6OVbklvuAIUtoi)Ovz?x)kr%bEN!mULo=2
z$`aDmN`j#(m7Rl7>75?`dTdPI7_ci0+cVZzHNCc04I7uF7PXBJ9gfb+BZx`3#FJet
z`fyGGwkVLVZ%&KJBZfG(3~UO=Uz)}iz!sBc*?p5^@`lK6=Xh1A5u=!P*J<{BOISQM
zI{-K8od_hB6)D+j1rlN+14K|b?Awy9J{@C@05kb2u=quD;veaQ`rK-WN4u+b-4h?|
zcC=rB=OTo)D1J*9kJw<Nd?oM(P!j?pnC*$LdplNOa$`uXmc5_rMRgG&C@Co)-eS$X
zRC~@PzB0&<8V=i&pP}9X1d()XT<LTab%k~4vbY_bhT&82Zn5u>G9A0vkDBhL4^g{X
zK4efWAL9N9KZJ!0D`WAhrAjUiR)I^BqH>J=?w#%(i2C8$`6gO@hB_(TP8{uC$8Msk
zijP=_)I1@@Le03|`gb2H0Qd~SXtH=ne;_t#>c`uxCurf75lo$vfqI#tE}m<hxf7wC
z1qhoXCf;DKmo2sYs251=VVpV;d_cL>f~&0d^O!kWiyw0kR14#<&$1V|S&#@=CO>)g
zBK!H7Eu29VSP46W5Zj=<a1v3LEddZWAZi@Pe5LXU>-KBSrj;J#R-<2Ew~u|`^oXZ~
z<yv`)>}usHqCWhzg$EmkVC}Pd;N^9iN*#L+C${(!$A4?xligYq7GAgsw;L`fZRimY
zXWf6d<5w)uQPCXoI>Z2^a0<JA?KYbdol<gmoUekbMo@sYtwAh=1VHtp75~%nc&X_z
z2CtO_uE8--m5y6DFS08qgOO?KSW8J_Gqp}+L|vH35X14FNg;i4+cKvVHSM_gUCYiC
zw{7!Abk;Fl;#b{%=5+`#N>8FzR+R{HojP4NTYqiPS(c+hwV}H5uPISLut<3EpjGj+
z2kNFV67VC2gmg+&#mnOt57v(h@wAs8q~cc=u1HFk^qZj{H_hYZT>i2=zI%>t7zV;X
z#~#uIJ+^IqymwBE7uXZWJ{Es@f8EgVT|m!dF+LujKG2<uZ#yp(l$Z$iA}74fFmrrD
z%xX^CVB*W-YQv6`3zkODvf3{}h!V`Drd|nwH&O-Vsv)aQo_jU_HOg07hR2SdOL%j6
ztyOgkKgSP@KQD-{1<8(<CDN+z9BWUydnFr5N^aKcEG1ocBpJ^%@Af(0{%WDIT71ZO
zNMU?PY{w5s!P(_=nwJOT&|%p(RK3Cx3oF7OCW#7(3WUY+e%_EW_f-B51Vf@Oh|6wb
zp|yDwd9O!mTak2)ByjS30VLt-0bcJo!>D24fhNH9X565iVME1{FLh(Y1(tJ?ec{_+
z&04sr(;D2=M|B~KHr|LaYaOX3j+Ou8C#*{NClD25X*%`Bfi&P%#)Ai*>B$m!ObWP#
zaA1P0B37pM=lBCTx~fgn20RK*gWN$<5Uhd6dWNAs0x^(HP<EXmN`%z3g==CSp;CG{
z&WHZ7&OhA{?to86oF8(c3Dxu4t>@br!!6O|xa~{Q0zBD8-g1D3xUiGeoQuufXQR6i
zc0kXoBWnZQO+u`ccH{26kojyM-3o4-lmU4wg|X)ro9Fb<&&duT!yG{_V1JZE#DV&w
z-mJ~gttcU0ot`xYc$e^E3ene@6d!Vuc-Z%pr6PR?Yd%~}3C)Fw7*K!I6O=2U0m*9r
zMsv#~g6@$?iDX-_@m6d$yE?U!B;x>XMM_C3XE=e#vHD_zx#j;z7NZuU+Pm32tDo*a
zJNQ2aiY`qYA5X%)Z<|Hw;SbAYkwNiK3Z5oOU9;I-CTT%UvdBnv;hRUY$VU1l2}M#c
ziKYDZu=zX*UYrEtyj%sq<v_3{QnixQT~p0VN9iVwhxJIxU>QkNQp|w-SaAiJ^M>=S
zWHkVtj&vZYq$QbdlrvO$tISd-D|5{5N~yk-!sYao<VjH#Pn%sNk%yS4cQ4um^+Ez6
z@JE7+0XdPS#=dG^0(sbSTo&e^29yqTA0-!<JxLa7+)Q(qWGQh(y^@%z8(=TWH`Dz4
zd_5jqj<UYo5JV0xpOzduso7k)%Dm7aJmqh6UY?K*VetIh=EI3Pu|_8XN%kHw5uGKJ
zs(yanT$8IC!>Ph0lA0=+bZj~`aiw{P>{`@2lp=OAg=XPrIt%WcI`a{-r8tN5dZcz2
zd^u*fnI<nm1IW(SknBatYiKADCJ}3L3<bwQgqN91zV3vlO+UG~%$)2r(yL@eux{B}
zIty6tBdEU0^g9p_@C_7~^XQZ$4fN1ST;iIYTyG90_mZ!T!JH9ao|q9rp$xTViMhl{
zbE9||!8n~`M8Juhvs88V+vYhbdeq^HW0Ho*OAQsrB6IhclbSr&?BFDhikZNdWVy*)
zCDBIqvt&4O#(sRuyiyii^3`g+l^zfi{6G?CAPOFXi?1`63GSugRuU4+(6)-93^G{@
zhxcwUACSE&*r@7oelYrk&K7-Sy;(<PGgg747|u^6Xs+)0%t?uLGQ+r>M$&(!;LgDh
z%`=AR&TuA&Nr1yPLGIIh^mWs47A{*tm2f6-b_{|t&}#U4vzp{V)DcO^V`p+bA=?X^
zV8CnUXmVQh5YP$r!eLN2Ikq|{JY9YLk(uFS=px@p*CcZbvdg`1q|(1DL<D*&iAZ`)
z3nXVkp9)zxHvehYo0cT2H|{8+<_Y59dGIweLy`f*Iff&|NzNh+a%#pgbSc2m_7!uP
zQ!_5SAB72sG-%k5$UQdPz<rheX|knoh3Gwn$dnH7LcVBLO9zsC#D<nH<Q)L#C^?dn
zWwrlm^NYBq!;=rl<eGc{Xe*c|x@6jLtllr0znw++S_+Capom3f+PB`mU^w6@FbZJZ
z&=i1~WTxn>)}`z0tQ_5R<Q1$VRlDB)Z-n9Hpbr(vjXe$ODN{|#u%6u#=Vif2Q9?9g
zUvf4t4q6v{M+p3g3PANlM3SQdxKIZ0&=Ss)<iJDUnZCZdOa`Se1w0x?{AR#EKRsao
zagHhSlGvWVGKBO}oujS8pXhtMpkS#a_NzNDu_~X|kI0tvbJth>AZyvphMQ3pVBf)N
z)Y_9>Z~WTT%?ZRp)GR^W@^|!t!Y*!(*wBENOmbGkX>hM|y;0HC&C(Gagr4LUNQ96N
z9r`Zny^CoPbR3>s&Kb#T>|vz_?>#MU{;6)^sFKym7E{W&BWn9`{95qN<$<7QjKe6@
z<&&f8H=Qca!FS5VIFchOgM23@s`?K)Ap^x*Ly9<k{9fV8-`G_i5l*fWNE+uBeyl!?
zbB+2`Hw>j{9}5UJ1h<9SGTF85)rJ?md=t5%zkuU}=7(!sy}pJH<Sr1<2!=?zr;ZCz
z|H-bQqr1t>;2%si3y*f9IwmH{x{;Amib22%eyBv~i2L9vDu8v}G3v2px>cVDnpg~O
z7vYSa)-5WykeP6f<%oMJ(SWHcI_fo-yJjuXbA)s?3`+dHs07M$xog_@x<PW2k4)(9
z>s;Nk^n?mnrQsp+d)2*_u8NnSEW3`H2L&7#I#_GEzBs;{n=>v`3;0oR*$JDYd*0Yh
z29g_?#?er<54!G&Jyi&h!{vxWeYGJi<v@;0AKvp_55+(Re(s$ng?-gAhoW|Tu0Mqz
ztxA@p=+CJ7_aUJmi^2p}YJI!zAE$M7qyGc?@Pd}(+ok=Y6P}<maVJo1%|{_Rs&cT-
zGvcF8Jg5oBwgz3O(*8W{xe?5rLCNY?Q~FDNu_CJX#m<iiJ~b@wtGiEo`4N6eMIMYh
zUbWYBw`X>dk3gDQqE}O7>%CAMwd*i13oXcE)N-!CPY$$FQKv-Z{&=bz`-D>9oCPL*
zW%S}Cy-$Zo6|`FE;O~J^OS>^iIv_z5bzP~~c0~VpFVkU)Tq!0$nm8hQ+j)9|qnuC3
zk}|(zCq%XXK+|}Lu3M7Dg;46?1lJXi7Q*LqH+D#=?H9Z1PG@OAppt5ZrOHAw9{N3R
zqO13*x<zu0eSo^uo{6qE+UiF*NCYS?0suiJH@nl9Ym)2S&bo6QtZ6(AlNPwXNz|_m
zqV6PkRz|mcmFst<pIrzE<>>Iqn-{n`1)u?Lh{g@8PI%Py!S8xY4h#bE0DFb{2xzg~
z_050IPK7e%0tZm{R=NIctNF`tFF8Ft@lA++<c`k5MH+YoX!BAzJ!(<D>)p3l9hyR3
z7>h8FIcK@r?a<Gpa-}$r>rm&N)%-llbp}hu@AVNN6pY`NHD&8-y^bQu5cuhjqE_WG
z1mS13K98el@wGetbmd*aDuJ=|a^E$Yx$4^2wSI-}P@miZA@&!KE8|@`9dr*78&*i2
zFSoK$I_c)_^X`Jqd;>pVRlr-s2j2audyo4dsN}o=G~~tuj=UV{AAgKqv|eu_Au7&O
zHRy-v)pIrNsiPwN6W%AmEL1eLv~BlGyE0BZM?MNB$)i1gM_u$8XCMB9ZOp7#sf$mD
zDe0nrCN=WvgtMq6|BK4o%<mlSMjV4+6fx28T?~l%@=V=Q=ml@cZ!u9W>&!}1g#ba&
zaIT&|##MZ>emY!e%Sp<o9GoyuoP&bCz2_L$na4M>A)Q%|3tvlV`6V6uN4U<uM^kS=
zwQyDn$LcxHaCPsKrRO|^%_hA2rk`DRM(HPdGqaE7_9m#z4ndPmf%#^ti~n|&U!;FD
zkkW_s;;Mlng+IBv^wW#!yo$gBQO6*;G=+k#|3=04ab^LZ#QvAX?$^`R@g2R`5zC{$
z$DNm8^qAf^9@m{CnV#g(uz#WR1)1G{-2r0}DM&C!v}pCw_fd<l)cu34hD}NLCp{dM
zdb)l#q|QspGxV-vu25xJP~A`*e)uZt8XrB2R>cXF!VdUV80_^W(IXEs6&M2BPwG{u
zbHD2z{h59=oJkQ3<a{xdb3W)^`A&<+07L0M`h)IcXk+OM<t%t)Lo0R3wb93?GG{XK
zF*w77xcWcWgPc*AV!rH!67oot+8u~mv4vlvb@55EFFHj>O}$mWDiqd*bVTwgwR24O
zvEyLzB1(w3JJwMlW|Hs_Mp=7a^wVrCv0@N4T!zPjj^t!1H9w|%#gC8@V5t{<OO!Oe
zy!9W~mp^N!FP=}Fy{td$kqP9L`vG5!3T)Gj1>Pe0b?W@6Hh1a=@C+0IqPaZXwK!_-
z3;OA(hJG`}&8E71A2nt%4PtW#JX*n_e}_40wNrh0uWMv)y}!Wokpkch>an+6gB(5!
z?|~cZudJKtI=6c_E!;#=V!Jb`V{)Rmt<gJi6bF+5A;{VBO0E7g>av^lh8P6Dkr%`Q
zWnZf_%k@(y-2x0;%anJwN5zS7C+00|-9xYjIF=mKGk=c?yu>mjssYn#q<|B$A2Sv@
zzfl@}AeMpSs{rMPIihCGjPCb>o=RA!7uGmP?n0%bZys_zxmru+fjprDa!c8Lwb{{s
zuF(6&`SOrjZxKO$bw&S}U2%*ERw7qCqW{sy-g9E!`WI>vssQ>(AUc5+05M6S2@0y8
z9#bJ&8*hYyAyE^58y|DVS-KA)K3V!4`+!z6@Rf-YGC3{gt+VwHWHEU|WyZXcsUL{1
zBfN>P85)yuz4O%?|1^=L>i2OmmprMLl_Uj(7esw`xoh)EUUgO){Xu`IK;$C3Irl<W
z-8$V$>>Ho2RM_x&1_(kP2_cd%JKuHrGx`@I#5q3n*)h>I;Vb<NHHg!XcU;$Btd4UH
zyf^$US*}s2-_qYuJ{IO}uG3tft<`I+XCm<!DR!iONOP?~=RtC?#$K+xn<Rv-|ET-4
zv09!;fry6B?|rZPHS$#0Il*5<i6jFhs-$<KXVvQGBel@vDIVQ!8=_xapr5k(UId4S
zDkC+NMNw_;iyj(ci&83$i38tNYSVG9d9Q@&!4SwIcZ_N#n8wNd`b3wTy$dmQG=kz|
z;&qZTV43QI4zBd8nVFanlBmU`hArrRcRB}K)J54AMIi|KLRYOrvZp25>G0sw-iVsH
znb`}dwi*^GyGK3szvz#%yNE_K1lSuE6?#&pI`<OSUPn&?+W=}&I4Ok<*l6DtyIwfc
z+2(SmD_R0x2SJ^xeSX)U9d%1KCJ}xaNW1MU*Qq~iag-hO7Q;rRG)ks=V^Q}W4{C~s
zAFK24>HgO;{e<f5WdS+LSdd~Sx~}U!`+D7S6n!973MHwJZ|;8X-Ojj<=w@sQtz2#x
z=(_F>tpgCS^A?5hWUKv;L?60VuNWeuPQIru-Vl9r1uTZ8n&zLTg<%uc>R%k)E>&+T
zJd(voTg|Mfk-*n4j&r$CrdTo}1{gsa`I;g~VRgzmuF3z?tC`0~1cxtP)ARefdj7#v
z9Be$LVkIilkI@%C!60En0ro?kK9iSS@A}yhzzz#Vr|Qos4r_5N^n;UJ?Uw0L<uO^k
zP+({I!jiVG86s%J`a!?f;`H!eQT^ZJ8LEtww8Q61QNB*edf>=^eJX2_O2R=6)75*g
zUOMPg<0rHZ(fluWcR9=Cm>ooy;Us;p?7l}fKN}Vs6*nLIYRN6#x1*2AQA5M26A8Mc
zU3BPv{U`^4C8CDIuGF~8yC>hHA2+BbSA5=m)rER39nDZKSJGGjb^ILH4~I1|wU#0*
zw!eQ01xShSpU{2ZrTUyTtokW`MJ@VL6Vx%G8!aoA3C=|ZoTJYG8$tQ#eUq!pi@NJ<
zG5i?sxRbh{SFNA0YozE88%ucqKNq|DZqv`laHrN0BeBCm*NF$5r4X(yKkYHtwev&B
zOB}$dP8ev^OIIz6dLCU4)rQkpBESW;;P<GPens2>>gEhEr=|T}W$-KE1YXor$9536
zKRV^DuH}QnlxUExVO88S!Ur5vsp)sQ`j2vEr1cNIbNZvW!=D)2pod(qo=da1XQg*I
zmNUOUo{vg6S6faXr|`lFb&nb0+MlVZD<??8p{moNsIzxF-G}XR_>WZdqc$TF^WS9G
z)thv)HpnQmhLD`u%hmBsJ?Q~e0*Pp}kxsH*y%*`JI|@&OyhXLMT`%9?q$L}rr%s@m
z;CAC&Pl!5_u0{tbbIUNJT`_+d`o}{<FgTuE`+C&4WasGnKm)M~@Np1U>hn#}uRWqw
z2VL6@gcWydP+~RCwSBejLDVL60lZRb{l2Jo%XBA0ioG==(t5obZNH(nXcMvXa3|O7
z@m&|PeuX5G)%wNzN3|T>`LEf=7qi++3j(Rq3xE_W9-uozNmB2n8fypX#>m$wqGB7~
zYg>DbqAlvUG~=crtu<0$NtK^#M5njfi1W;Ku5oMYZ^FtZoNXkIZod$Qp6f05d*KG)
zL&cpxE!p_{_*T0FZBui)k>SiCyNd1Q8FYY4&Y7QBEwSer*JkP$bIX9HQ7{_?6SXB>
zEl4n|f>yi4?-QN^9Ar2p)f)96lKjXlpY=oB`oi`LY0O2lLBI(>1#Y`*f83L$&U0=<
z<nFui!WH>oa+Z{rFY98Q#^iX7YZ&V)QP5Bs_TekjE+}^G`jd_J{f_nn$>TWvIODVP
zkNN}bhy}+RUtFN)gwFL7w;O9Zh>q6%bi;SHesyGVpdK_eMb8<6s6w?kp=3kAxJkfE
zIl+j7V6Bfb5v<&n<BboTQ8w+V#oJ9t13l0AE$(06QF{gaHK7e9arF;|qrah0!?d9`
z=<8j7#Ld0*sIQ{_oOpt9;OJyy%iY<=coC{FC3t@s34)-NFr1cmFrH#39%ZJ)-~JDB
zCpM6q9$*|!#oGf^cN410EONavi{vcH)~!9>_`2!h3%!8Zyl|W`C0mc-|L7r6^*i41
zJ3SPT?kk6bKE#aNsf^om8vDot_Kq4)FopyF{*Q4LSu~MV=bJ{}D{v->(7#_{oHx2%
zlgHdD#^XuV#=~QpKBjlJwZFo6?!w5&q8q(jZS=pW>0?kac)r(H7#9?_TZnNo!W+bZ
z!l?+tn@Hp<ql~{t(BKe@Vk17eu3UT#8jhN%zAiJm57IxN&{DCtlG87g92(j!M?|n|
z*!KaWXMWR<;%?`0ZH3|Hqetcmev=7ps4!MV4w1T9Sxx4NOBwl%CX0A#I4>acna1$}
zW7gQFJ@S|%x~alg8c8Aw_BK97qsrxIQGG61YWy$1&B*JoCnN<~WS-o_nWFwHHRfNc
zA7^s}<rs=ZMnlx4#@rI;_w-WdudCb*6cuYWRoyhn7~s`S17In{83aP*<8GT0Tx!Iy
zk_BJ6b-eMhuiZklu94Fqo^+gn*}~09Q;qv>Z8{n1*#TzhILRoytl9W5IqsQcY?v7N
zYr<ga+7hF;GlV0vA*Ug0k};vUc_$g_1+Q^mcrJ}|N4p$aW?Ucc+s^{y-$PR;L7FxE
zrNoGz5cyexxvIo({NYdw0fo&k^QLN_AHOYg02FYb*!Z#exLB!cea6+{$%P=YCZ=ad
zJ^PBwEU0M3KA1bzXj1^afYPB*i_f3D*);V+mC<op#6XZhU`uL@0~`abzlmk7tGWOX
zPgI2^#=Ns5Ucg+*Q11qfYUhPK!XY(MiU3#wnQNs+yMYlu2hEVEF03`ajM!R~qk=>1
z2^nwYHTyNpEBtFlL!CRZxjCwA+rgE_3psj_jc16HBOv^B)kgb~P5S{K$qV5#AJGq!
zJydCA57zx0>7GtbD>stZ(M`@7`<z1eHOAkgnm*<ZO>yA_jGJIH^zC>U(DJF61r@k{
zO1*fQ@!#;skw%<$;cOQ|@`!#R37>mzs&U&e{pwKE9Dj{ppDmK3z_iyI1<sM9HaO7H
z=~~1!un>T3DQa7VG4%ZZ&xghN^l*(agb$<KjmKYwa+j7R<?)ByV07GiO5|gRb@w&K
zUEB5JA;|UJnrl&}Qotiq9ES_;OlW$8vF}s;Gd=9){EfH~SgYB_?zi=C#)X3Wisk+U
zz75tz&6#iXbUrd3BTtwKklPH^t=?F&r`eDo(YPCp2_HJ&@)o1?@M|H@h}p(?rxQ_Y
zD1)J`KQbs-+r`t2KF%uzUV;kK<qN`F+srlI+0^U{fR1jMV@&=+KMwy~R!@8hqJ=kq
z6H68pjr17#C3G?t5FP3#+DOeH>-usd>Ud50LLJ+{!Na}FQ0B#3jHkBg?-j!Ra7&a>
zw37ZH?1*}!?Z>(a#7;IYyH?&2Zy`X;28t4lRSRbtkMGv6<-%;`+JLMq5}U?eVf5bY
ze26!GB6u$t0Rr@DNxAXVXSxNyhQu5(ArSI7@+9pZ)IPuIc)fA?yG=S3szB>};z!N9
zm&c&g$X$~aPE)_mH}-$6UyW=@Rps-I3E$|Jrn^ESkf+Z#mWCIU4L6GNT{yo0!-NAZ
zl&fG&SJxY_gtt!PZib?N&oMszT=$yqEysW54T`v-*Z?VO*Bftb(M^q8l@>vX-+qme
z|4u7I$xzkv4WIKBD&2?s63z39n~hE1={Js?B|Z`UI^dUFC;X8`?VLpQ&vV9QZ|Gk~
z5P^O!oNrtKd5-X&qX=pcES$+LB}U2krYwn^JLq*{r7<gl$x`?PvD8xY(aGbt`;67&
zns$;XB?DUdHRUuCRZ*ESn!aIo+0(^zK`tYqpg*@3?m|R19k~d+*hxmu2&IJ~^6M5u
z1j+{C-}V~|B6K#&-qOjeNk&nGo`Mb!bz4pd-j}F``i&eU-jR_cX33#z@oR1>Wh5;h
zV~l0A_E@I#Pl@rGL-E2&t-MLjKfJW%z~#O`^+l=ic*J~=M*KRq!r1OC(2-s!b<{vy
zMlOo7qvU$B%R@w<_)e?jBwvo7ADM(BgmMW?0kvm@{%MF!3RW@pwxvdF<U&)Q83<~*
z@u{;yL+bHEc`HTfCeXwiXq+>cZG_xp_+bIbV^~ps04K9BaJ23;wI$C;M@yhdo8ef0
zIHR3r;yCKui;O26$=yV9ReDAVXCw~{saI^AFeLJeB314zH{!GPV<Aj-bxCkvtq04@
zQ65SE0(xI!qz}+P5&0y{T|8j8zrE8BaN?<HNa?&<qnjfYhv108l_G@?Fd;x@MOPUa
zjvmwG3x#lPkzl+o1bp}^qo`lQC~%1*>VJYIGVv^Bk1*a$)NLGTlsJ852TA~l?8_$@
zcc2PElOrRO0WsZSA>+)xG)ZN67K-whqCs(~C#)dzRAUKRqy!xN6j&+IY9s*(_%X;(
z(RTjLHKJqm+e1o2tXr5355bj2b|<lA!6mbfz;Alz8g5Z_NZHdrmB-MvKG!G^YeZ@$
zAUgytj4Yye@J6rZ7>lHL0x&G1WdE^~xb1>r7fmqQiq4Zx=^=5WYBhbt-}|v(C|1M|
zF2B%tw*x-_nR8?#7ZM$k%_YcM@dq9}&-gH2f4tB;jU5g?9U>1MW<2RAH@U5<v<R;=
zrx~5m@?=~3YNV*Kvkj15$?A>i#`Z{UihCk5RL_u6f3be0^<D`I44Q^pM*k!m-?Qi*
zTCVsj9eah`ewhl|9U_@!Wy^hZo3Ym4l+mOK5{*cfu@`P7@d&3Qu7Ba2eKX5gULWym
zMwX?{nrxi>|5M?4bI&wmDGZJIjt^C7o+~R&a717jB+}yNxd)8`Baol4{fIVUF@^Xg
zyA$4@q59MUE!NE=>(EhntgnlHYnpKfwv;9$M}Z9}XP-8F6^E`c{$yN7xF}dn#?mEZ
zbciruC{Ki@-l@vy6T#@xGGO!#wkb{<q_+0IWMac{Yf+WkKNS)I3elE4d)rrqV5a^v
z`)%)K?z_J@S%yU*EyTsFUa=|!?f-p=@sYzG9QGns61qu|oNyh>_;kAQ2R~rc;SYKW
zy;Tz8ui>PFUuJ{-S!3)K+g$<!)5L{I{}_>}0PoY(&UwZ&G)4@VR7Ewn(tSPVQsi@l
z%E2o4<5QYa3Fi^>#y=noUK5tBEt`oeRWsDDlZ|M{j4Sks;*L!tBbQ2Ux7O=n9ica+
zJ2@nn7pe3V`C(S{%Ak92U9;yRpZf;fvv}U58-z3RX|nNM<obY{rpi{eF#%5l=RaHA
zuCnXpnmAlpZH-%CxDlTfL$#vTy_4=`X#&#&VS^6~E>S%{!}wF|%w(M1+!(AiN^T;>
zV$WP;TxatR&~|SP2o#PF+>c9bmKZ0lL<{1E3*I0sI0mzo^Tk?ZO3~%p78z~IXqT9M
zahaHZ*hPRDch5B*mR%e992<GAkzS&o7jk2$(3W#5^@HQDG!Dz*m)k$<#RadKtOi8%
znQ3H2Xf1q#>4yb$<R_Tq%4>~u=fE^to^li$OfM}o8%$`vCYcls<G`gl?`q@1h$AH#
zER7ln7J4oMo3NJ_IazSSRMol8*fCiTopU|PM-ffp$f!ze7?kjhrA^5oBPoywJab?V
zK0eR51@06%2iQ~84aV}8<fC@;T*GjlkN3e?^qHW%beei%jxj}?A97$EIHVjqjj)xW
z;JAM7dZU~3DOuqL>o80eeuAo6I>+$J&gUx1a9je%ag9I;DO1fRIb*8vM-|(LBBQV^
zSepo5d=*kv8VmVB+IV*)R#e#bZ0MaL-_%XJQFCIp<q;7p<Pc_GR=1B#9N}sVW5-p-
z9EQR1Xwn3(7v8eA%J@b2Kidj-cbRuO9K+dgF>|$QOYaS?s5FY<QcU_HV>0T*k+Vj&
z6dl0}#h{NoRFciG_9SEBdCZZ3VaP|i1xYpn=c&HbNQ)2*C={@ku>X>7IBINWnGY96
z{8WdOO{Jaz&dE;34axdLh$TWHl4A?lmLZ&UI8L^8lOZ(Ori7pAe(1@@2GND2fLS#N
z$sqSg$%W#m)`@CPSL02q>C8m3Q4_4r7z%ehGGX$@VE!Acjf+J1Fwzha4RTPqPFp02
zn(=qswxH9}Vh+^YM$FvT$?!1;x|Dz^8TFF6B3gWy@iqAtslAPdMRQh|w`Sn7xDq4Y
zIn(Ha;MHyHAdwnWXa~A6&8UfxS)>SXKrRg!gG5eqjcg?fh-`R1Oh3!Yj3;C}J5F2;
zxGeM)H)<n#E2XKd8OBD@&k*={D;?Jt5}l0{GQM*@mt9wnV?ujHp%b%3_Vk2OOiG9@
z2v|Yu0E;B^MqfL;z0{cM@agO_YVe_536w>W9@M&^@sndT0HosDsakLp5~Y)1Poie>
zOD1bs!H94<RB_V~f)k-CW!+QMi{-{!5uA=C#ZUKn$hgYsHS9c3%t)p*#1Vrc{1`2R
zef34T(f*Q#@e7bgt_cvs4J~Ond%o#vNePN0-8ASVKF^TqT0m}?!^{jlko94yTS`l2
zjC=Yd=dd=6jg8xM3pAf5y5T=nMzX_WbzDk&-Z5raZfGygZh##^d%ddIE`i#gD8wqV
z@YBzX40P63+Xb;P{4?YIjz?*idmOrLGopAOz_7mY2bBb;IW(I+-aX`LOnQkG07avm
zCsV%hJ@@Ca{21lF%+EUUH-%QoAygxGxI12e)FYZ9q6+J2I(aR^LYGW(e{cpHF0w^*
zwaiQ1f1IUT8p%w#1o=);x%>7rTf8GxyxNwz7bWQ7N}!*ZDQP6&U((g~k?xJ{Bj$l-
z#5``B;LdmEL0CgvEV#f(dWZc#bg{eL^9-5n9dHa)KQVDpw2I2y>lf?CVFPA35O5R>
z3?^!UUF`nnu~UTF4Vs+e*a_puul&^L4Y8ZiNAiPj`pn(EKje(0oYWr9+U;JLrCaiR
z0eAzc)N<QR=Z)_7FKzJxa!c*s=DvomP;y3uC?D(rjVPB3aT_y^s;8H`*A0MjWS)lA
zX}MgD>~(>gNm=<s<>~D%y;IMjl^sRYf7@<jYZu)`e;@(kDxr1|OZ>C#9x_W4rlCXO
z&P{#;6N$Cm{wwvaVH*@z3fz&4m?dBC4)@{zXkZsO(Jr#L8A~`K)#Nd5F$}S4<FE)d
zL0^|*6bR@JUdiNn;rL6TaAQA7Tv?Q;x=u3cB3V3j_ZrV!(_f3ZeqM!9-0aul3p#S_
z8^<V*M^+fWNBkPwfuSQWC75=kZ-g5|Z_x=Hl23*mP)&ZFBuw{Exp7xSCv?r3X%XQf
zV#p`&_8YDt`jg?U3H|f->EK}^7a?&^R=II4?tms=!JuihXLyX|DV0ryZPQ=RGUHv*
z_tVwuf~N!#3c9vbtddN@Y-3BUIys^@f;z3ukPuXsI%ks6*74KiV&O@JHxwBzWDkKm
zLqW%F#TSpbkcM)Pm&Uh;1IknifSbXPb!ZP88A*)#jC7;20F?UemAJBE9ZAje){B&;
zkSq&7dQ03{ll0>Owa9NBSd)6liR!O+<934~kPvdyu9(2ewQ)B)U5WXCCqT2YM5&HW
ziJqRLTD}A^db|?%NRe)7(59%I$i`l}HtyrgTE2n)*I{j3aH4L>gJBaF#J?jaCQs@@
z;gn_q40HDTam6M2SNZ;O{xDX-EXX#!?u)pBzRfyl@m9p-cxl$labG)=i)bOi`suZC
zTbvn0v=FG+`*K`SxFtkY^g5(3G=v=O-iph*q?O5~%W_=P%4ZNbC49!);vI4m)Gsf`
zy%Fxs0a+kK#B`%>C1>*0xI-)?Hew;l2gnST7%&JeAN4fs5xNEFeld5@if<n5B4`q!
zrk4xqxF8BV4YNO(VU%Ch8gPWWwN<-x<MZLIHu9CDqh?@<(S3|(9AJ!KHKzwWavPF-
zGXwSV#dC~#tRN$AhT#!!{fczs@L(Dxb*Z}eZ;Cu>xaLzUjp?Z!<Z-qf1Nbb7x%@>b
z`rC|mY~7Myi89X=wXZ<R`q9o&owdl=aJv3MlOEI6kskB>5}W1{RJhT*bBs4n(?1qo
zpDkEwTBJnmx@V2w-MZzXVgyK?^v(<M_ZlDeI_l>c?|)0VgSx{)sUWZ~NQj#<YQkxA
zA2aTL8+1^U#}abc_n2|h=E%q5)V3cpHodPO_pkSt$d-dLSx^QA|2gB7-E1ELvcg6v
z8bp$zU|ags8$T|0C`nE@l|UG=xDF;PG=5HQMh{lyua(ALC`><tf&6nbk+%Y>kQGR+
zGVHF3=fmINR_f}XcrIu0j$4dzYuh(y(2kxv!Z%I04fQvf&a)GZ!bw^#>8)EC(5Dqm
z6))|jRmNA5p?M0wQs1iu&Vjp#wDS1Aqf%=mN`of}&C+52VST$njist;qvp>}mc<+z
z;vXD<Y?88I*^~i0(rq(kD--sNcj`_@*=nkwahI#goakQGlS%1r37iRLL9Sv|3&y&m
z&e08nyuo@LbQB}RbDS>7W_56)yW{D)F`_@V(4k8A?M{D9TTmfX&ti9>qY5&C#xLRi
ztRL;}+NW^{gg;T$h~mq)Bp$KQ>weX4@h!1=wtL-6oo_X&JEB6u31~U5SBrN<Lbpx{
zDe3=yiTlJJE#497bNobipOy-#<fa^@H^?`v#J#UYZxkw^hWJGHM2B`lhsfzt5#h*m
zTQqZFgL-?k`_3f9a-=FL()FTU?hXA~DB<F<H;Ua)dX8cRh#|E06XStSM`@P~@E!Y%
z(>wD`K&egiIy(OBc6UG3f@A_bXrlM)mDDADf2elnF^*>Y6P$PxYUTR(kw30QWjHB9
z3bmm-RJzYZ_2=Deit%~HtuNc7!6azbr*OZ|%iNzitJd_5G<E4DcXZ3MAdKnAn#mCx
zA=eS?)=^u*4Cqt9N4XeQZS}dgwA}u(@s7;<|JQ}Y>U{2Z*}LfRVQsEKt)|ATSlvIL
z=3XX#fr$Cyt+=+-o$An`>G_iD7OpCGpVzprjz0P{AWQBN93>HcQbC`eUgO?7U4Ig7
ziVJX%aX3klO81X&ug+?*Zm4uk&U6zRBPS-8{Xf3W13ao?ZNQ^o7ZOS~1a{{vSg@O3
zENBQwhX|1-ZIdi1q(BM+g4jhx!GeNR=_m-;5Ic6o!f(NbR}uA!ii(01+y8!Z&hDPw
z4flC&A#-;6H(xJS)%m7JEb`zvT^+E><7Gm@=0}x;&Nb>mBb0+YcEvwvam*+$w)Vt7
zP7$I`3R?Zc2<M0gf`;3<3(hda-Ql4MJZvtv{w*-O_+OVv8oJv`t=F(1HYtWn64f@J
z=oAsNvlRrL2zBT^xulr+%a^T!F>!Jp*=k6oY%Pix8AWQ?^O<#S{1*fYwd_Odsa|F@
z_cW*)D_*m1x2GYJjMzqI&qcht;vQ?okhs}Jz3T|{j7fzx65&azHxx2CYSnYr;<0gE
z1Q}oaomGE9+!raSe)(6HCqE7`$pMGZC*{P$!lt0I>pNQ8Z#2SYeid3(6dodl!o?0a
z%^Ff?CW&kW!TiZNR?92n=0-yrman5x7skcZyR7^EHeCQU+>cA7dIG_~l;^$IN*czO
zh)#qEAKYDk9%=o%;fRuRmg=)ZKMR%w2nx`Em__HnmEx4YOaB6dauRO635g2TfcLB`
zd&I3<j4lz4L4OVa#em2>X~KnkxX0?%#++sxeGrvdgnY!lJZ^7l!0H}HlrqID<DY74
zicMtWy5)wtv4H_-N{Ip|HC!&Yk#X3XJR@%T;;A=fkF`jE!F`4z;f)++tyq7=GbE3Z
zeTMXND|p~AFBxJjw-r3D5Aseb23U89n3|&oqTeCPysl!(c(_Jvg&FF~E3HYkddt;I
z446F&t>lwUuTTVZ0kSdtEd5yKm@BNK4w~h=`ia5*x&c;=-4DjCAs{JON&3qA?!Dgn
z_c$}4sAVvF;OLK?0JS8DXu#9fOSn$4#(c@^NXSDvMK99TF>hIKw=wPg8mDl_xSONp
zB8AIS)|Nxg^buB1qAev+0tf}5dSSDbd$iqG_}kh#f4{>`kKrC0jqGO2$JW4g{}ZQW
zg>V`_bQ2n}r*#Qf>%?DzL}(GZi2E`geA6tS?W+KPD!#$wQbjTGQGfpnIS~Ya8qWBl
zksOtc{4v040rwY8jZn~4O|Yg-jB6(gUbr1ADG^8rVtE+=!m=;*id)R@UG3nQJzwbs
zw8!j2^o$Ozj+r^zH3LEjVdJ7*6J_l3N!C5Zu`7b1tEjY=G{&~WB{(a^p}<Ys0k5|o
z)0>4{G)eo}dPB0c3h|)H?;=+{lw^I5f~?8!qCk7c6Z(#?3vonvdgtZ|l&<?lm!S%e
zUXdI{WJT^C=+vDaOf{6FZrF`8uB5^iX-y3|Y&(18MfRt>L2F;OSz6>4L=XJ>PQ51X
zc93Nvx7MS!X39=7D#+kqn%{oY6R^TCvHJs0@T<MXgvf`;43hEHxo6s?LOGUM$Ji#7
zLo(Dy-|7#pi(6NoYh4iqF&V9KpMEf4Eu9n7L)gmhpX;w<cOs~*sU1pG<Noh-tJvR*
zd^PkxdOhuoSh%yM5ilmil7qVUL%ncn%(Q8MaZ|&K)wko%`jPPrgEvlqQUdZC#1IF~
z`RY5PCXU`0>~Dp&<6biXUa+;KcmP5g9Mw26WTNICYo*%1h&VuyO<FxT-Wu9qdO9p?
zWJWG*;(v7a+ss!yqa+m!(Yh!SS<8bp)<e_H3v@Awyr)HDt+(uFkdHiA)`(fj!3?>^
z8#VcR{f(IDqFLY!<tex3*!U-kOGN2*cCl6O2ni0NMV94mjxMq;%QYiK_sCPefEBQ%
z+yXhi;A8}{-WAozAcDLy@nT;()OtCSeGy12{_>)<susm0@x9#Qn<Mmsx#nw8a1v?>
z;~bG=e6O!7*BJuAxYRV@?%aTZ8s%P&spuUTtf$><z6lEDn6WF7LK^;_P=Q`@j4pet
zyq^Q3^bUA)GZ<N#02eCKB7n9YrVrYagw3;1FqJn#e<4uh8U-??I*rnEu-ekxYsz61
zKcYd1+&*>@Zsq^_>E!@a)J!6VFCDH+CYW~YiUACjcJu(NW_h;^(-+<m*C|7tKU^o)
znD+4UL`r&Ow4P<J!+|7{g_Mfg%ADz{5&9+jOv9Z-yD@mQ-fk}-A0!kPX+e-QH_d(A
ze|yY?@*KwKrB_Ec3umTA>$B~35bzN?RkqW8m|ka3b%b*QWtR2RFFNN`)`+|+MQXSd
zqC(W{{`$;XGusimGc`_!-%9tqrc5<t&gCa#%5|c=w={(xMZ^?Btv_~DI$9quXa%s8
zoT$c9gB6s8oms5Uy~=!XZHhy0Ib2V%K}8%mC9Hx>^uRH-4lvwT=(+Zig)IOk_7Eo3
z#P3e8)GO`ZMeYWzM9K&~z&_uoXCMd)M+i}8MZuG>QZxH&kL=DiOGp@qn6hQxJe<z<
zzQc1!w%<)-^gbJ=h4D3-Dzsiu{u}!0f_Y|!@bB^4R!@%9SK3b|(u}e7;SqZJr08E0
zd!!OZ>K~+8mSZnPY{xrm^dHw4g4s7H#?c({8yotluG|kh!@byzk`nTmjk^0j(>TzC
z9!k6`jPR8!wXkxL-wNvgc8wl!z}+Y}(DzZj`}e3u9^D_0>gRqnjdCsS)Gj!n5``;k
zBEdaTgb(XSelkA{<K`NiD~O)LXG08_lsTf*=Mr7G+a3;Q2Wb`C^!hdW^uL@*5Vr&}
z_#%q0-V5|uhs~GJPSL1dzft?_orW6G`@gqd9~X5d;zYXt5&h9G?(RaF64vV>QNI*B
z_Olzb*BMhnk4ni>#QE{)H?Pu{{OKM7#~k&~M*Voq3h>xkuT%es`X!v_jT`i0`<Ed8
znm{EX&9ZCJC?~Adzcn*gi!;MmVh_oRi8I~ohxM26)fgLXQh@_L?j01W;RX5T>pvc6
zir8;BY^lzR^eX$C%V7-Qj5v%%+Oh2`?=rpJb|j0mi$>swrMmRtCgy;DQ+*cdPh$Is
zE7K=S^fZ|}R}DYBw*v7Dkih5cqRsk~d(BWyMMY%hp(&Lpm7E97Zz9V`<KRXt(`SgF
zb|gxHkBWMrw|>vYfC8LIN)v&!I)6_*T+p21QYA!END5To;+f{jApnQNTd_l7mF7k9
z&N_G1caAf^5F6zrGR_1Mp-Suam_XSasjp5_dfm*XnMc5?0N2;O^?CM^!f#$s;*b)Z
z?x4iUCae!UP4kXEA*4rfEJ=kxP##ygrB;udWfo)OLgPIPs$nPUGJU&E=gcSD4|Hg)
zIB(+^B`U1HO0?IWO3Idn!U4rgP^g2b*^bNA58K2gyvAIV20x6_FWGp>g|>MbzYWvh
z*guyk9XIj<iXs~(Bt5!octknWePi_h*(1hMY&<4T8mg~yD7LsHnGNvd2+y0USKMTF
zA0AA?(dLfPsWB8(q_?L=>3f?%{AsvUepIeMb_gWy&M-fmkVN-9H%fO9!A_EWV|#V{
z$Ki{(kwZoL?b+d@H%5+LcsYevXbd&Od+N=%@<ee~gp5JTgs;LQk1Z1-w84fWag}3J
zxRZ+y12ePOwPW;a_JJJXD6`a?qjW*!%&H6^!Y30BAiyk96a9zj&qb0r^2@;Ew4eSo
z=88pbTQp2J+U!R7XvGO9b+n!kL#V|3x~^Eaw3l)Oco(no{`wb(99IPFOQcE<df6^I
z-5yeQYR<8#1KBu6KVeUSPrNv8iJu}8AkWlrm^r}1!EXBWa<ktk(k`A-eaiIV*llu&
zXO7W5?8)UZi>h8&mON!$soTy7Uv3y*FyEk{OqV5Rw4&IC0NWmgbp-EPfgH)^aw1%<
z4LP!_2sP|2FhDGVFvVj0-!oX3+ix&#)A*8(AEVRk<%#R6u;j+RHZ-7T#%zY_Wa`e*
zIw9uHq?~ey;elO<_~FUPr<Le}n0F#Te`u6$WiOpG2>_U8wOMKKH7AYH)i;`B2}6a1
zIjk71C&mm!8f<ygy<*lQO5s08>x?)~mZLajgw1BU1pySoe~!>U+CS&24Zj0MWYTTD
zby<~JOTGkv+i!<2S!!1A(8~(1lI*W)=SY3uG&+dGXBFHCMp+=>#bx^B4AbiNt0uX(
znzuwhkL>||s5{2pGVYf0umlSu=C9MM5=@`&Q-VBrm=~jX0xMI?m_U|=IxQz|OsRUA
zu|U_NyJQVGFIR|5z7)5@ny^~`K@aBYRx3VGB3{B*<Pa;RQa0+XVmh>gJ;+M9+usXA
ze6i#s;TMQdPp{Ks#Z2V(04M9bx?`CxUS}v~k${g-s*qL>7jPuF$@l0_Cz&4<kZpu0
zA$SK)>f_b=ndeQjjeP8+rSujFaPUracj6;U39D2!VYzPqboi&@Yq`f5dqdWV%xvuY
zs_lLH@dwPW<i(o27Gx_H#f<-6J#V}Dl5dkcNg$5@-mUtI+o9<qPvdOPbIHT!+Jsei
zlRFIg7aRXWk|4kpuc**>!T&~e5&OXL)jC6XaWtutCCoV9NY(5twWUJ06e^uZ=K02Q
zHbp%%2^e51mOuoz(Qf3ap@FK}DGm5I^8xtXU9AfRt46&iDSA;;rPs@Ajrt%yRex6M
z&+Ju)UZ7lsXsK|Xw$)Tplsi>DRuMIV>{|M#R_bq^tyPmrtVDW;Bft0wsPAy4o@npV
z=38tDK98i;MqoN1&yxc5Wi{f`ifg!36~VPf4kBB~-(@zt5&{njrD52cTBpCb+jImD
z&^Gj{AuP=H`;<@yL?9OTX;5#qcO42Cv-g6SRx0n7(=dTaa(sd{J5}lvY@FueWRP`g
z^>pE6__?9LP8b14PO@vft#VPz@G)k0oZ0Lu-OQQCk%lBs%E+2fkI<1by~ubmM+`dV
z12CsXmh1IGU<_!%?imur`LN_ODr}}O>S76{Q4f^sfIT+{RMPOf)a${g9_s$Yc>TC=
z6rA}aJ3oaSb-Kzd)BQvijvC5D#*Ec_1?xtAAb?PvR;mB8=ZHK7Y+`D5jc#)-TJ^Al
zAzoepg5%Z~Jq{qE`i;{cIp-811A=>ckJCBT%$yeMTqmS3O;wK4+w523I!Os5Dz7kj
z9Lcdra+p${T+)nl!nhj~Va5tv3nnP3zDoZr+?urG%jTq}0DQs1jg{JfsKj(Zav<%1
zICV57KOBVy5FD=QqTATKOc<%BGPMrq6*g?URwn|`SC#sh8_cc-2F3=!(2@&Na#vNN
zOArl~00XySR508*&cFr~WHonJ>W(}n6qTg@s;@CNMHHUAh?|eLjs`RGMKp&_hSogT
zZB*{<ttXx{pX?V>g8hR?0ESEdRsT&eIGx;I@KaWI{iw$iE>C_X@M70MB^a345^gbf
zhu;2~>0%HjQ7c5nNo2WE#!lN9H=2}Ezv@?=`komrA2pAJn^o9u;3R1PRS$nnU;L4c
zYK51TXe2r1e&m7^u^W6$Fv=&3b=f@gqarfn)r*H6h@S1WU8aw>X^HJnY^!pVdi`E)
ztuP&2QW?LWzC@>Df{YbFDKVL?)-2M`u?4;feQ}6}n_@6sm|_$Oh2?6*J2gWcwMrK(
zw%1n$uMLC3|FA>}@BRG&{W5|e!xoUlS#FI86O%}LzyduxPILqi9ceT+s0zjM^!fUO
z(*d8Da4UT0<}cEvr^bB|--G%G^-sbu5W5X58Qm*bk_xvxib2=tu@@R5PAWH(-G|U#
zC(eL`$eEl9;f`0FWT<#iP?Gb=Gmu*W0i`Y0`xly>MGjf8%v%feR9ni9=-fCbV6I}d
zE}k1cVkc|1%`rPr%bBsR^>g*D_L=2Zi;7KR&2Vd;r?=d1pCm~a<nVde>1x<r`maSX
z%W&N%JQMN<mQC|u1RLQ#_MNqG#))&|KA{0$yUTihN)w*|)jnTa`|9IA2|E1q8|%yK
z<3EYN`O5!VD{pS%6CB&hAFY?}GM@@awhX|Ns9%!%%<t&maK(vY?{-Wu8R#W>Nv~R$
z2Vp<R+bs%HvdDq3B&RI?Y2RP$@ArZkD*Br^zD>H=zigBF)?auQ%C_*93oh{oH$=}N
zoKs{D<IGHHHqMy4?y}O_vM&1P694D?9N=>7l^GP}gsJUo?3Jvve{Gq;Y#<|6a^J=N
zj<?01h2U-dsr6$`6Q9tRd48~ty0eK-;L{^sWR`06U+d#rn&?I8fue7%Pn!Icql$M~
z8FQNIg%8U2)|RFgFLlK~wJx0$-%Av8lYg|f+-JgC!zUyJ5sU7y3&4uv*jh|-U@#7)
z8O1nFbytkj`}LC>&47_>5RaUMHP+|rqem0pt`YtHvvbX8GLT`$ZO2y<lSu4#wmRjo
zzVL~d0j2cD|E;$E1Pr*T?hP2hD@l)-OFdVf;N8|^&vM~*1a#bxpq#t@*5fuG`4_M|
zv;Nhe%P#=fdJ5guSBSQiLNgfAv;2$yia#*njGy?)(lg^fNqV6%A6h4K%uOB|#nbbe
zS@%4BgwIg=qyNy$9y`+KOts>$zQ8^qQZeqVCZk>jZ%ZW7%9H$iSD0;tpQD6YI<U`b
zur5dz6mTC|=6ZCp-e1PAC53S@xL(a0W$oQ-o^3Q9g05YEz}hoA=2pb{@4$oB>_?+#
zB<)vdM)zwIptz;Kze6?%FiV9z?$Dr{^b2TR2|u2wYx=ucGKuNVQfJj^HQdkzN4X_&
za|qhgCh0bqxFZ}KKL;Ws@okP%ElN&qE0k}|eF$uzMQ3aNQZ`0V8e!NbAT8I(5>Mq=
z$F?(v(Y+oTiNgqamN7Y7o&BqxkL@6+dUm$8Jc$kx%QD3<VU!7$z@H(_t=}#-A2@zV
zeL=f~R8RL=lRBHX5V;l{Zf`l&I%cuC{YW#vUf9X{MsCZ!eop%O)2urmjA=$`aaOWb
zyw)@~{mydK!N2reU@(@lh?-*If2<YL;y<Mm$R8mD(ICPlblGLyeRUJPu+Mz;opti9
z=F=6Td(Abvy}$QaFD{Dzz0iScKDI8jp)F>XT($8h>($$v=*3kY0mTYT6z{Q8ns}<>
zqk9BeDMiP(eq?p4i=QhUM)sU9tQ(p*BC$*U{;jomGQFbUKzubiA8iRHjR7^>)F)qT
zjZTUCfZBawu2taSLkwdeqVA`kTfa<*UmJeq>i!?B1A_h~2tJfNJeOQDSfiR-9ec(?
zB1rF5%lh!Fxb{?6yZdnfb)khtzZ#CL<O0hluO{jPQPS$Si>)s92aGNCfr<F3;K!Jy
z+6AmrcbUZ&N#5kzVv{u@SBn0so};bc2j-h7PWp-C9>7B>+cY(!+$wypiBB*X=a*V_
zADd5uaH7I>U%2$X!O4WE<-*6~nO1I<{N6-guIRsGtv5b2pYkaVI=0q75LYcfygGTs
z#b1R`>@;zF$^5d3{-_Ezm08biH=o=G25kP2YuzI^Ndk<ht)S-XRc<xdbGq>cN3*4w
zHN=J&j;#7HyT=_z0=m?aVb-EUW*T=Frn#?~^+jG2(?A3|mRNs(Zu(HILEL*7O9<S|
zYph?tHtms%5k12tBdp)PkKKxZac#a;-Zu7%MMoUjqigf>#HL+jb!i#b16%TdT<bpx
z<^!>(BwxW|mkX`WP)~KS#vdQsL%^l=h1U93u^&W8yrY-(di&T9gla2wft3*VxJ>L_
zrnS8j#3<V9O?DUwHgNmH2_A92@MH?yak1R|%b#26#Kku07feM?wf1veg?}QyET9CB
zk*&yR2o+m%yp=HtDiA%SZ0X>~R$)Qh7m-vy*lLx>JClk{bL6*HyVUqTs6o&8%-W1E
zarAagq3lzE4BM?*Xhn!J%cB8QjgP4K!XwH>oTq!hDr1kqZ$>m0{qijdl4s~xk5b?+
z5<ik(XX>#_$pXA(@xDFP%DD(hu&Ib=Qo5_;kM)<RiKADHkumIx4ql8fokV4-wF|6s
z9tUPQOFJh~D9({p;s~6v)JlP`YU;Bf?uwPxv#_jDqsl$>U2P@XoM&V<Nq$ke+`3tK
zpQbotl(v5!(39YdoBo`m4js~;K5~T52+$+;>o1uUun4nqVv-86a;|1MkccqEBc3d2
zqjFK=WU2FBv;MlnY{}KmqkrXTtDP+&MA}7@dD=79rW@mapP`bTwjQ&^(8%ve2%tti
zXU&GLvd1Rb4A}PfkFrt__nJNhv@!d2g@_N)#FAI?!pYXqbi*7qIWiO_`)|Dyo}KHG
z1g3RJq&d8^NvHcO%1o<Epo1Yw&+-pNxMgIM%U$B|GBU-B`V+6!ywnKgD8}N_yrhNG
zyx34`>}xy?3c66@6gPR$#RtoDyUHVsAPyV*AJD6L;n?g^Mio_%8$misjpSGK$dV&<
zL?A!3P~R^ZW~fcmDEed3Hi@gTOiOx?rTV&&N9>)hMlaG&N^gqiMyYxvCvob0oj|ZW
z-{Loo+!O9A6;UR`7l$Xs$>n9j3!3f-=a#udPqim)VqoOY-*HPBM}J&8gLw3^74l1~
zgx7Sh2}c?gY2npH`lBO`ilOF-<@%LsGiq<r`lI$yTc6Z#-)CC-qglm8pP3}4s@)5E
zZsU<=LMuGyLH&l@Wn_I+CQ^%D)K?yHeIS-!AJAQoygu^7g-6Xtb!cm7S&+mvuUn@-
zxydXj=9Zu~r#_&sx0Oo~wUuZh7cS9<Hkv-XMxy2&$CWHeZ2aj1dX;<&Wla^J38@B2
zpbCrTBz<&=P0(m}rrdDuAhOnqjMs01zUOiyf4Oq#!UTR(roSqnJvIXyU6MxVB}Jx-
zG0WOnaomZ2sm^_s?ngo<*D|ui`5^x)J$RUDrj!JJCPo*A{+&Sy#Ft!CksgE}fcxTt
z{7F~^)-If)?~x^7t`wG1&LN*dKqW@BCrxOEdi)H1CiEvVUKSqt*`XZ6v8qd6T=NC`
zpsl(zILVI7w9^ApCYi-o&e6AI8H#4q&f*0M?4g2((1WI4(-TsS=F_20mxFLnjN!>k
zCMq&c{W@PC*M!oP2Qp`YJ~m!yib`F*`G9_nIFH!X0tx*W=oH&lD)a1i=8*{gz<hm3
z0@7lXv-p7DxkR5GzXD7z>a=<Kn)rFJKB#Nv>3i+9^_5Jv21|wAj7b3wB|q+QebNB#
zBG#LVigD`6x%#6Q3^0ce6)~UGhqnHf47;Q~o2|cp#{8xqdU=Az(X$FC-(sFVJlSav
zrH>H(Eon+thb*Q%5jbbtYckWM>pXeB{^nNGEAp%az9uczL&YB}$_W|M$<h*Qi0wG+
zW(UPH(}_ET7`fc1dAQeCTUla^a<_}R^zjDkYCC+ufdD`=9CeVbC<%WLQ3t|Dg>rhp
zDiI2#t}nKBVWEaqdb3y(EK<Ri1t)*5udO$~m!mr(<Azboi9n2!%EUW&(M8q;tzx-m
z@#DHL(;DeBA6QC6_K<fq+<N#AL$O_4zG#^`oo^-C`VYd-Yo(&N2wb>Es#6AAL-xmZ
zArYh6c7b(zYcq=!8xXq^5*7&V{37e8A4~_Ad?WmKM1*#Ikl?RgM_XB4npiJ|Q|$G^
zfJD?O2+22}X8ncUBwA2S;{#=2uZTMmd7TlNH|j{Z)@H-4vk$^s;3rfU81Fb9iXR(x
zhlT$FQG|tvSC~8vZpwCOmE2`yH=V72K9(zt>Iwo=gBIySN5y@B!ggAqAF<se-IH-P
zZ!OYC+mm6auh|1&iT|Sn8mzcmk2!3X;p!rW+4Q-(uRRtnI%3?n-9fRm-F3g-)hcd!
z7W~;_-P@kU*b!^}CN~WeNj&@Z`Fh{q@e}2$UGwxsaUUp2px#@eN7=*4!Qc=|P0hkU
z3Dx_|;(23<ck8Z%H$<OMHcY`k^YuWxYt*i?)xGoe+4hGfPaR~2--bW#)L{@@XNYGi
z2O|4osu9ce;`qzp1<qQe$H%Q9x<}N>iiTvKo_tK~$%>c4;Kh10V@1dj$%Wbf(n{TI
zsGCY*(FY9T)6bAzG*1P~^&k9NXmYK=pun6>p*U?us~e<G?PGt3C`7WRf{2G+soxNS
z8AHx<NKg8}aD8<YtxioBE32~xdgM<Ae#pK`ZWr~*AU%W>SFz)Wm@<24Oq$0uoL9rD
zS^7F?aZsRv0@cJa5sb;ANgO8GyJANaN0;jdh4TA{xfXe4j?4r>r+X;lp`9-ct5dz?
zNW}#W%5vtFdOnUrkwX`;DbtnN-^KFqU`Cbc+hBRzKNo$>w2AuFe(q*8UQ8T1AJpBU
zVj8eivZLAcdY|kl`b!!Q!eO@DGYEG!r$KKg4vY?h>M4EuyD{;Hy;w+@1a2-ErMG9g
z*O6re6sKSZnAp5o@v)OUPX%N2eDP>VWqCD{8>eB<_&_!F1jYXU%LTgUN<O;!h)OPH
zwEj{2WL(W~TPiqGzbQjuu@Xm5N$Z9eExP+1J$2TC*bkDbsNpib|334<e)uLOw7_cD
zT2Z%)iy-9lkz&0D|4;XHVtKi3wDyQYkZTp9hln^0M)nEMziN~oXnV}K7AM}nRXufw
z`QbH4m;v&YIS7+jB_`q^zglYcaCU-HGe+wt#iPcxg6L-VR2=6GJ@x7KRN<uw;OrWy
z->}^;<XQ^@#Z|(nhO$>mEg)RPiuDrtjcY1-G<S{C<+ej-ctl}hvc~B9VlGHhB7cN~
zu-)uhm}HXT3~C;TgGA#XW5Z|!63M{D*~e$#!gv^l^~kT$L`R-Lq?tTb(9*bMDX7Re
z)%bEYcu_Ywwit%H*O}55QDZ}mow42LMP@R!dZfPDK1SCGh;zUjJ@j$&qR$uenEG_I
z?jHkV!dU(?(%eQID=TJ;cNghx$X?7Wx9KEiB+(%fpGmVSnOjT_@)q|ppIdn)KC>6B
zu{<b*XveV&O$0Rwa!KGrQ2l?c_e#x&IIWh5w7phYm7=z?!+eS7k(xdw4TO;!S80Nj
zZfT5j=oDw1Q^x3<Y?v5OY0F1tr1`_MM^v_C-Cto2CB~s#RKq)mhFs$#pa+cM-8v`^
z#;CWhy7th0=0=~e#6N5wqZ{qt_s4Z&5>sc08^VE^+K=ZEz+-BN@hUh#geX)g?D3k>
z)-P*e2O<KxI3k6_`bewTNS=O4Uw2j1Z^?_QX1$@eUmevdI^UMB=;Q0n-9@~1g_4A1
zXYf(PffqE4|EXl~mHgGX#@FhUi^02Y9+UNV>}(x}$&O!>S`cOeM<7%n2P*W;-ke6P
zDS(@<o?tyJrT|PIU}KZ-I0wCEuKM{)U(P$62}Of<HcTloB}qtL44Co=uKk1EWUC@d
zZsHh*4;0)HCR^OAEpexTrbw(M0T@&~2B+RXNq^g{iLp}E{S$O&dn^JwL|F?-PZQQ;
z<pllOKW381P$K`#sMn{#7qJysV#lbHhBsF6Nb7W)e~0I$s6BJ%rsra|>9}9d=pSO!
zLmiMq*Nw3<eq!TM191#GV4ePrX^)aAxZ9S4tjBCIgegLqhY>e;hOPQoGY^|in2ea*
zSQX^uZ5(cG`8PC6M5qy}JJ=d-n}nixdr(q@x0g5VqyraSf)jO`VX|rcu~vToyX?j}
zndpT!U8ygQBa38<3Q<4qMhX|oOU>p*pn|T}e}BXINHPu^gD92!k#+evRvl@Rf&>_)
zD1ao6XC$X%syUVZU3*WEUx_Kj_KpyjfJ+uzt&gA*2TDRZZ})Rz6YoBy+clVFxRt1w
zWwQOhh!QpO%*X<*TD+i>c{=V^w({3jk}jK8wgP95o7x^x4pjLEAecxdE!>Bm((g;A
zN!NI&CwR=?PBg7}4oi7+el6t@^k#js-5$~%iq_tF<gD6_*Exqjd+D~2T+TT3hO-I2
zBe`Ou{;NHAg#$!HSI)cm`DyD~jMVsP4XUjX_i=U33I67LPLQ~5yI!foN#~J9BSXD4
zM!&kXsb`$2hLu^L@r;?7TFm5tku>=DGUZ4j>J2}`;^V$vQHhX7)(CtHGu5~nf9Ho!
zh;EnE<hPgm=Po)yD#G>-fSXYqt9R~g_r<UzafS><P)oXGaLs=G=DTKS<MqJ7DbkVR
zH*h|FmY<oiyH^qENvo7B8C>Sy@q^h~A%4sR7}^P(LnlR=1z`WU`Fa<;L9A(tE05$d
zb=$#6O{R)Iw9e|wI@r6T+aO~D6Y5RYS=X5M-sqF75%n`rI}*V0j+Iz!|K4p;Ls07b
zzEwaj8Ab|QK*YH;VgUh`!U=YuO7*W==Z%j3y#y#kejgr&ggi|(i$vVSuSJk=qFF*i
zoMsSw#AS-Te%#AH9xH6rHK#)y0%iUSR>fR14$`V&oZng#(=K$@zJ3`;)FTFwr6XdI
z^`Y4R$3pu~YwD%kv;dN@Tm7%_PhA%?k~qC4)%bfYh-nuS)`3$0(GSJ6i&&ml>2J1}
z_ONp_`IXt2lV6$r7NF+{S3Y3kmSgoJy`mAIpqKK|IuX_zXcbq4;CQ2bRYgzeRZsE2
z#nF@Kgz-C#EE9IBColr;WFx8NhXZ`>x0242dcMLx^Z~Qv?vcG?hEy{O{co&|{U9jt
zq$2<B*w-b=in6Nws~?Qnycod_SNfAUU6zNXoW!`|>_)0&-f6?l`YPx=WXi36Lf5*u
znWg2%!{?PsQH?O;8mG|94Jq_o9nwTpC2eXr*KA!$u+%A|3XWj3P!3&prX7)iUmR)e
z6IbE?o#zE!-%$g)CPfy_2#cw)h9XFkYM8G#GPbLWskIoAY@==GWF86Sd5UxZkO9D!
zr8?nCkTEX>nj9*tNP&S&bu2Z{F5**^+7+YDZ9!|8#O=f{D<|Zt?3%^o$agFRO=ReV
z`rneR%cxLm9}@(r0424Pdr)xg!y~Opq7)~;zHJ8#;a3uQ0z`oox;%^Qli@@z{Q{vJ
z9K6)mzSPr^QzPpEhH(QN(4fD?a^gl|qBjYljYw2EBGI@F`nrAQ79mTfJ_=^SDEquE
zRzzaqgqB7k!x`e!NAw3WM0i~CMyS7@*MA*^md7ajp|g&UcGRK)GpA%?q!}6y3M9b9
z)FlZIjuW1GWt~1pW{lQj2v9mY2fl<kWg!nc%Jsip&1JiF=~U5E%g0z7P;tAaO%pTD
z<7N6Z>_Lp<(!`*YKWVJKtUK2gmmFKf%ie3Ob@I_ZvG_n*VCt69`ZC04d73dfFX6*O
z$+INmLUnBoWi1+TG8csT^%DIbPm|q{vz%;qt}U2)rOsn<r%X);g=}1@Yqv(HOckE`
zidDMro6*g3o=xOkmE>X0uYuY~l34K3BkT0j*(7g8UEef$7gfPu^Gre$pwmrBiLx8^
zl64RxuMAoqq#zGj<hTkR_h-HIeg8zSEsYdgPV!ewZTTfa7esfPCkmNokJJBxFJl#V
zViccsrS4;E8)FM@phe_G)fVZa@dc%8?~29-f=jU#r;7*i<3sfGq6v#pQ;HOLaEM;s
zgq{#vky<lM-vJnLAn3ZV2T4Wfylk}N>d##LVgl)A$=xNfVTe4rg0KqP=#nSn=10}F
zdZ7No(XhHTsA4p6)SL9C5=kHwpd)!{RL?B^)yZU{g>93x=ni`Ze1BBtzu|kE(n<wG
zscmlZV{qr}=!J2*x{y^c0Fm1g$YHY1V8X|9$Wx_f^U(!vc+F+2zsKnvf^;IZ2(PtN
zRUOoyN9%A+(q#uYBfloe3s9JKm40eS%pf$!*;>=GB#t8FTN{~@G+JTu7a5xnD+U2e
zJ1KD;2VFvTxY!U)iQg-{e?hgL6SXNco19O4DPrRv#|$y$o?t0*!Yl<rWsy>H6ut$!
zjjqs1z(-`M)Xf75<Lc(2*kxL9p(&~wL;gTZPMSl|lFK5<{cjv^O>1EM=xle~>jj0D
zK9L)a9x4s_J(6G4VO+_u1|dowV|{2_BSBnJL5=7JCdewYc6N*#CxdY!$!-gTWX0t@
z%22h#taBuKHhK->)7)fYRZQ8xmRhaOkLw|&{v0$OGnObUoui38f*iGAuys%@B2f$g
zaN;C?0=^^zpEv>_KKhG-QWljG(g4^y59%B5GI*ZnL7pHKMJSQv;SeaCLCymh&+b+J
zEmFD#dG7DSx)bG6L3rYo;1u2=p%_c*{GpX0zSyy!SjLPU*5Xs4aqzHsU?QvAvC;@g
zz|Fo+dirIoz=b`;(S3d^o%I;aFcVEA_Xhbp*|nM3*r*7ollVsU;|yzn$fg858KK!|
z#Ys9LJd@E$!{(%`0||Qm<1v#0N});rhoXQpa})(Jm<U8zRO_Glg<*%o42VCR%??__
zq8dy6e|%?t;wb)L$Z772Hp1@dLT(c4Go{Yoe24kH`vcoQzRds3m$4r*IIcTt{T_NC
zf^Yz~3N=>Qfx~o@dyu3M`L+IeKgW*C+gE2#@IU*p`4BZ6+rkksZ=`?!uGn6JO6S%2
zZ;xAl27=#F0so%39`ZWJPw=<@Fm@=hw9l;dpYXZ);1XK|Nk*g-_Xj|@$qzyr|2xco
z<I=dHxQC{DV1>yW;h*P7KxkUAtD$FQAb*X2aI9cNh_*Vr%D-v8nINL3Kmb$+EB#|_
z(aYVQrM|B4m&g7dF`-GRlYBL5Q@MZf@|f`@V?gT)|I4xMqE|no!hdJ1+>Dn;({eMs
z-G77r7vcmv__GHq{Jm|lIkNt2q|{d`{I|wR$JwZB)>Zm<+xv1|jp%zL2QAuh`#ia^
zkyZZUM`HFR{C@FR|F)Ge?dkY(G__w!cd1QP{=B&{zZdM_(i4QI1woCi_Wx&7%+J%o
zEKR8!#0DG^?xWQTNJz8F{dYO%5FVdtKOXD<#8xV}kAZ<A#~_atTp{7IXd=XB^Gz53
zsHYL44S(&BDc<+;vDR>$l4zDLM{-%Af5g|=EhtDTpGX#HCrxTtN1tt{OS|6s-lk2V
zgs;OJ15>bUWM@gngoBlqcwt2?jJ+3+wLb9~0`1O-jYDZ-nbq@udq>wZGS*~?3y@z%
zcnGqY^T1!M(?g<I3mTyu7`4NqzNzd&GYmvoqkeuw)F2rWXL?_az8iMfH8$~!IIE1;
zU87h)<WBHzlU47LzLLl4somJSTPOoQBL#DdNH5nQ31PC*L^-$X3jI@l)U4^^juj^%
z!ZT*!J89dfU28NNzR+S~8Fn7_OT%?0ynIv-ELyMC>X(G;h4*JY^1y8NUod>D%R|NP
z1b`yKu!M%gR?E_}#0Wq+(@oLmD3(WcaI!v2#7SHhs%@hjiTZKYUNKM~DsiubfMo6t
zMlZTR1J!Hf#ntGQgQI?(P6@0~GlScK>h`KdH}%Q@eFx09*-@oQOU1No`;Y#{u>#=f
z+DOTCavE1ifD{}Fnp^B?Bfo<2$T1%S6A32=h|%gIH4N87qwbw`fzU%NwAq~_e?XuC
z6!LOO(Z9$^vp>WlCu1MYB;T1B6hn<I?Juj<KOmmThuZpTiOdln;8c@!(BXa~W7!4Z
zoO*TeNp=liVb-wC#FhKS&2V*ro(tC$86g$<GQ9jqGtvc67?CdI%I#_$_5l;!L_G{i
zS?N?yi*%I}438)PFG+(0Iw%pGtrkqsN8xD~`8moA7Vbbtq?yA2<4hc{-?0zF5m*R{
z$0=|4cpZ$o1Rfu+sfpJi^@CPV*3a4=99S>hRe`zu#3|Z}nt)9)Qs_F-la?UHQ!kKQ
z(mCqQN|TJ&waPrvQHOvs7v-c#lE!nEq+!5o=@|XpOdtvFwpRQbCX4BTkblnn^#NMa
zAz)(2uOk$bvLESKX2>==LU&(a+Ko3R4jr-WQL|7XN6iW7aU`8#sF+X0!<K4`1ptUW
z8mE{_x_G>%t22984UIetRD2l0q!JKy9C>ybH|YOc#(Fb_d(X%6VTde#Pq1DjvO3jv
zU3aYE&WI9Ih#6#(7V|J`z&=KiK~^ofTOS^$d#;JujR`ayrWe=|`9+PBjKLh=Dv(D|
z_Y$pV+)lF8zGD5>ZDwit4S^B>Dr&{_h#Z$-ih*VNQg#wI5=tu4tZm~=qzfsnBrh8;
zpZkKp<>jxx!%SizKF}amB&I^aie_T0o;NLiNbEZ5i-6ud!+Z+wUii7&g4(m(G`sGY
zht+$yZgroThIbmiGvmQag9HkbI)qpB=#Bcd&CamsARO0R*j-k0X;9BzV!pXH4u)D8
z&==V$Bl5v_JB@~43Jg+KN%n!-dC=ARV|%gqC)YcmCut*RRp|yUi`y@d+Jm+qu%wDs
zzm(}4#E1m20u-dukxT?cYI0>eg1XOq)5-Q4xJ=BA<gYM}vL{RpK}EQlU%nJVBczXD
zPVS<6xjwX%fg=hG_%lPJrShYz*$fwXmvTLh$Az7xMmP{W<I8nQ4|hLkJ7)#SpBJTq
z5iK#2qpc+dN%b~)D-5-Rh{3Uvsmv5v$KYb;;3elQ^Z*d}eIx>46UxsVHT@wg2y$h(
zi0?f$Iz=CsG)doW(_825fTEqca#2MnxdhT|loInuRCr#ERWHdb7!Q|1S)9M8QJiBH
z!DgMREOOmlY9<W3xe4wM```)Fc2uoCKZ^dK%Hu>DYV?I;%s~Ngy-A%c^*U(})x`s0
zxvYX|VD6@iWr%gnsXZYgysM8WZIAE;boe?EzD<PKfieF1#QLr`5D`6^Jn2xu1F;{Q
zbb)9)@jJ*=Q{T6aPmJ%vmm@7Y$GtQ=V$H3J<>_H6Xta%*?oCM|kG?NiXXV7rCaTLN
zpIQIuV!jNlpguv^f5y0Su*i1O%?0UVK8}EN(|0HvPnw`dH{rC%jLsMLpkk(U25kaN
z5dx21XC?DSn)*l<Z~G%cOko98Xh~4qKUl{9Q4vAhBtqp$rDka<J`ln)QL73o&Nug4
z#vKL=w^IyLKrvEsMEn(6L2LzqMvj0SYvI+RJtspV#lxj2JGmysmFBKl`sO+yoGNZO
zDoGr&jg&H|y(UG*3UMssBWXZG+95*Apl?fO=)Lv!C*F;t8Yg`vx=2ux6pcm~;&!8l
zcc0ePQuv>P&7&Ax@qxhoY4s{C=5pgPfg6xG-BLX^Tcv-kKL$={FAVO5RWlDz5^fqN
z9=c|#FV^ax%ABrt=oN)!n{cX-ce&>&-BB0@$Y{AxW_SsiNeT;WepENR)_h`p#+BVq
z-cF|?Bho!_ZC7p8dA92Z=9BS+0#M3N)(_Mk_n7V~@mD4mt}Bro#)w8Y#ERx`>T4-D
z!#BzDDATc$|HGzri)n=AW5dQ*hWx#$>bobk-wq`cCILh3WSA620=7uF{|uZ6BXM8j
zYilI?4CllZHUCbpl#n}!u1)YMEXDDy-KGzcu!d$S&~2!d<28-82c7FWeW?(AS1%E;
z+illY^odIK!HCzH1dlVXMBZ0y)06DQMjr_~T=%%%i?dDi;JCEK4-Q2f^P(PP|9F_G
z--e@Rrt-b5lWNTf`8I8q+b;<0<-HJO1{OJXxjq1?WeRa5s20B=IS|psjQv=zwC@VG
z)CtJTQ76BsZ;ElXfh`Gz!7&U8scRh%WVp#<QvydIG*jiQ)!pqwv1x6{r9?m@Ro(fv
zE|Ew%0W48!ntLG@YyVFD*l_z0Ld$@o%z9SWM?3IIMVCmc;f_p|>b`-pM&WqPmW74;
z@=1LWp+UTBlQNVnbvUNs?D?lJ={sH|HgsxNBQUZ6lgxMYKs~;%`4DAqBK_x3{Wg{m
z$R8w%bQGMOM7Cgp;pF#K>pVe;F|w`1usl0lPZORV(a!d0&d88d<<+xHA*R?Kl8Y#3
zgif~cE4ZHH1>A+@m#WJ@)#-!cQ{RMb1OyUm8$oOWt|DSn$jpKk-dJBuHESe0d3<r^
zfNZs6n00EF!OXBW0xjf*kwO`{u0k16Uzlv!5bLXZO&^D|fSp7a1j9<V?!TB?zMy)S
zQ3N^v>Pl<2xG+bxgJN9aQ#iVX>q`Kw6UJHNC6lA@%;AbK%n+$95@{E;Z=`~Ud%;r1
z;JLBZ<k?&gH)j*x{F27KFq0fNQ1XkF*2+v1TX`98))p(Rb3}<kO&r!hNm5fcu0LtX
zY9u5$OC-i$?z0N8#>5jh31XVG#@cxV%9k0Ue1K}x1PlitHTzWSjj22qcP%aPjdcjy
zk^90pALwWex*?`-dQ^KDtrvp%@x`w&fkc@ST-rU~nkli;?ujLi>z{UHurlrTdG#Wz
zJ6YB<Mfo|d!1|;HYMX<@TBK4mLoA(Rtsvfob98I?sI9D~jI;{R=Jc9M3?PiimhJi}
zv6)3LBU_F2TDdpIjVMv!nE^}cay2<(I=&`fey01hJkodWywfLo6W^IJTqGPdM%z)=
z2MBkJDrLZobt;UJsM;<Hq)wmfSCZV40QPbK>~sXoX!9z%tuPA`;Y`x7m%^}=>lv7w
zX*R|pMO|uE5*H3jiUWADkQyMu-Q<ZuH?A22Cqu^@I5Wl7DDKy(a7d}@o_cL?hg-Dp
zyTW=w&W|)|f0T@aA_i}+xB(G;IM<M-FN++(wrqj=PAWiLJW=lwJ>8LJ!jHP!RXW8s
z34@qTS|wf{Yj@1cbd6E8uz|$Mx+^F)a=;>Hp@$r!pAMMWNW~ct8VZ6Z6>+ABw<3VK
zJ4khv!Q=F`5~+!1M$-P7)PGctWrppe^|B~MB3vm7z`2$B$Cz;>hV4btnS$5d!;6OA
zY32t4Pof$`IcKT|<A^3NU~ie;fym|VCoF7DP;X~)r(bW}=4)_%7H<I(N{q8(aP2WA
zj{)MFxWWBiqNj;LIZJpSVfKt)dp3ke9aE_X*kngUNylJ{(1#nu9b@%2ytX1Mz>$%s
z{BEtTVxQcgai6lC&cP7LSLqLrHtmItb-Tx#oL{+O%u?6s2PM1@Ig1pcwxTypxb)69
znP_SGU?b=-BS9QWrYL&8&}KkU1&%+Ahpni6Pn)Lu{9=ZS%rEYq?@!Vjj*49us5IgX
zZ-S(WUq(NXW%Mkgr|FTcO_w49n&6}D7hXU~Qj@*~*LWBj&fy6Op(MPUNN-`hLZPhL
zX(-av^iqA#Z+u6^<uIJ`@Pwe7^q%f>O2wh7-4y*o^VoGluGUP{OPa;DV*<Nnyk4VX
z+A+YW%O~lB$D8&-G=Vjx6)+QKXCjR6zCj=Tt9|Bh_l-_ke)a=ba!I{i#RT;xJ}l#R
zn|`vb%cKHA9a;A{9c<8jrt1_CTl7V90g(fZ>=zR&nB&z>=I31rY~abDJTRI$Tq@1^
z;c7*^KcUSTRPjnvwYTZHvahCsKr+>-qpiyyW&=%p<qUrdTAz!Cu!*m1{)XXJFTTbI
z_NjnWL~f3fwb^1s<PU{~B1>ne8QZLBnf6emoq(4@tBT_^$A9lVR&U#@*|-VP44KSO
z7yMw=5t+c;As_)Zc}&}0u`)-PfkFkT7>2{7YGBAYI`aN9VDEBNk9VwB&xqSb8az@+
z*%0MwBHFCvq1LZ0c(TzS5Xw6CvofHkF&~hoof?RoWJH1%U!ug0)@)?J$m2)9h3I;D
zz5W7q8JHxbJrckX6bAPd<XvURGDz)w9e5kws7dc%QS<@Vzv&@lr;p44O5i}^$Ve*w
z&|&Jr#9{4)Gug`Vx>pp!#~1?E2|4h%I>=JPDl0)5kr+)uezrBmP3)NW&Pn>osL`Qn
z9M)Nlx*5&x<wT7xDMdoclo-iDxPXBp^eQ9=x(^DyO{tfVp)MS%rQ#kR<ZY5_-Nu($
zCRtj?GTrGCbBRT@6tN(IWjcAWNydDoRVeU|O{hi!4k&@Z!x(LC69u>1m00MCQ?xUx
zJ)M}TURPS__8<`kC!Nr)RCU={tIIPnBS{2p$SJvrM~Kejno{dk$%fp-SH_Gy;0V~I
z1K9&RSl7)mbGcbbhTDFxb(XM_Za5|0NG<AU-68QMcox;{l(<x3&$-$Ti>xjg=B(n>
zOJZlwc;2c$CFUqac-%M28YH%o9P(NVu|f<?Cuo4&)%RMrLj>a4eeoe%xzbvTydVK8
zP7w-B99io78G7cdC<q7eGu4Qoo)E<urcqvrVrS#@gHf7jXdn~UkJDF+lYE{UP=&6~
zRC$xEU4?;C(TNdL#G@fOc(mF%&7>9{SEF+T%!n&Rgr-1))J4iA*lho5JzGrSwvE0A
zpCpgCKOe5hcJ53wNsccm)89ndweb)IzrI$k|F+pON9+W2IRz&$J@TMwW^Kop>8IHM
zDAREt@Q0PE;$M}j+867FsZqz2=~mW>Td=X76U_}`dYyV=_IVhr;}q=?e@iSiX_+GU
z-8WXxw{_s5o|%G`;uvAp$8JLL^pSZ?Nr37~-NEL_LxZ4~$33!4UuaM7G{cfJwhL?7
zD+;kPQ5PXc6Z6^lMLPGy?qpB-aC9{`qakdsxaN}gElb^)sE>M*gLFBfA<L>kNqWOZ
zcQe1{Ha<$wUp*1i%%e?D)SH}U+u=;mmSLn&0TA2I7UvzSn{RUW%qE#>ruwdp{^>Dy
zGxM;PZf$gLyP37SeD3|jFhgR|!UYvW>U+t$`)lsbBtF0$=$n>$=;Q8Y8535bwa$Lj
zG?OujQhp6~K?ic!n$kV89vtaf=^gem^XnV&*dttCxZ6+#A_6K<E&l0C`NIrk+g*&>
zPmD@-Z3j#naBb%v@~t^wek41PV<0FyLv7sU+w+oX#_zfm{U)Y!^5p@F<;1ZPK}$`)
zZ+%BSZ+=pU#@Mb!1xRP9kG}97^FnAye-GAeDxk0v!~R0h*ucL(`VOu%xIQ{yf+unG
zWZhf5s%=jGGNPcyOKK5ULUf{7xXqrE^-h~y^lc>b5$*+W{8H!!XMi!Mg$CeOy6&ul
zyM?nO3Oid}c)4z2e`RYVWvS#ts$3>`WDj2T%qu9SyZAwxA*lzf#ue&Y&tXqCXCpa}
z2rg%>r*5)*ubbe-NbWo_yngbKb(x)0&lRo+9I5-Q*WNO}mz>0*MB|z2iF5pmFEyM~
zB#Mh+oJb0$#b+^;_m0;v;c07<op820Dw?WlG*Re<Q`N?2ta3Xa9-2H;5!KZXnKJma
zl}mQnNCbt58hPvV)ICs<aO6We^t<auJ$QdqBhTvU4f<ROhlu<VE!X_@`uFHxvhYD0
zbn~c2DJ-{Qm0tH-RCgZS!i{=U)GwvNOv8HpM|1^2HfKGd$Jvd8LM8v`|I$M`TLhHw
zn#5hA$9jF2Jrm;Co_b8W27toRBp@EK7bN}U?kMl-^bLA$)DE*ai@+oL?5HJ5CdwNh
z)=!AU7oHcphkD@=Jt}(L(9DO|>Mr&QxeQn3KEa%8^#vmK*nu1oZy$m7@M6WMe9~(D
z9g&rh*{Id6)^5-(qu0gJZGBGvbjbZniI0n{3tIx@P*S5n4q@`CYPm}P_j}Vp@b8h<
z0IXlSMyJXeVg+e9m%bJHDa2wI^}~Hjl#u#fqM{<rcz`jZi(WXyEsE$M5xWeW@|tXx
zzXkDHMRh@Beq;X0mn2M}SYbBi{G9a7kF6x>$DrCOa#@!uT=7%+^Tm$7ms%!D&%)Z$
zpg0&|%EW^w)zkjw*2v)~iR&m5K_V8D>GSfH-e#{RNXa)RNGhKq7b+JYBY>*k?H%^M
zl`sZ9VIk4u!X2q+7Wi&D(4qyrPcJYGngyyo;(JQvq)DFSGh3g>3PNg5r7D&tJyV_7
z0&Y#T69Ipp+IpO)6?h~~eO>H%d3dYUC@Q-Ks)~_9)s7Fn=MG9(4Kt?HvX$QRa}vJe
z_9bGk)))(Gm1=AG)~-tY4w}(5DBj~n&#2UUzj;TMCuYc=VWWj-vTZ%;m#_8KjV)!h
zJ?g;Ml&j*D)TbLgi%)AUt%W?RI%&*O&pzZ?t4*WSq8Gke#(V22&pF4K)*iw7`l?_Z
z&X6ES?*pFNQ(8-k++mdRffK>`MKWf!Xz9K2Jx)_p@#K4u;&tM!m8MpwdVk-U@EN;B
z;a4A+OhUtM$-Xn&wU&#@uafK#BvHkprJ7lu&E1@fB4ZIOA3lc+eSXmU%ufk1@g_3o
z%ftPHzCJ-TzERMus9()(|MaIfxU6Lt=w9d%hzG!RQ#$m$G@%7>)T^|D+~(x3h4Dqw
zRuetVK5eyz8!M`)nJk_~b?i<ReUS3T`w43t0wsAcl=^mY%J@yRrE^{UyZ$fsovkh-
zhP|Scv?mf}2{(YYlQ{3&y@iDaCi~hRJjlzz?w&7dTA#<lup3DLk5U`{Xxlb3@jO<Y
zKbas{rMBJLwtRHrc_=aZG92r;s4l7V2pTf6SA~J1bC;xhdYjRalNuTc4QSxlU}<xR
zr1$)1x;bN;TPZ@MuNS{J%#Atf^Ib`!wzVG4vo*n=2>ViQkQH+$`ycTge_e~=oT^h@
zFZ7j1mZsLd<2&bizDhV*F-A&QOa9&JLtnpjEkZXTbqi4J%A1^h$UACjOED!X)#E^i
z-h0eZDRti+-lGR3T5PzGm6MwqCA+_y$pjEAgW{@7cBl0DB<aXM$ijk*b>*j&`8$#<
z@J!dn3Q4u2s!nhJ-qxfR>@mNpI#7n52;l<Y+Hk&S*d69PY*QYFtdeq851r0U^_+7{
z=&1a?>MKg=WgHAH$@EOPl`lr$-yn9#`Ud%y!@5s6-_!0k*MNg4WhOOt_?(Lt{n@iU
ztMBA9N!!dzgWpUex29+A6Rl*tC>Kf2klgL*o>ON46~qW*$tx3qSgF&BJmZ#g>)<Y<
zm50GV4XM_S^t|@4X$HkRm|*%K&zTP<KEcX>1#&{EIbSEw{=Kyj{jRlTVx6Q)RUUzR
zd(QNBI6X1C9Zyj8?pfaV&ZHgFNR=N`c^&2wcBB3}!#k^^`F)>YO--<LvRrL$W}2FF
zw)ZCnVn*qJA$AIdOVs7#yvK6OEZHnf+%Ul>0t*M<_IBE3P=xSYL^8^I-2GRFaj)?n
zK@Sx$XegI}mG|a(KJDMS1<+5RB+6Y=;d|rU<cn@FhX*@_+R`lU-Sa$SXY$KTd$tk~
zGdC`V<m)Sv`+M880KNB>n$U39@-{Ms-&voT{L@XX<dblPn2*t7W~eVNNZxxZ<7crF
zjISat3<AZWa%QyGU-8^{4PD57$8#vH^%t4IT5N3c`$ErlP^J9Kq{g!o{nHcrqqc1F
zj9$X964fZVJE=XzQ^V??t;UQ={{6hxt2w}~jb-dfsRv*3p0J~(kOm<eHi6~}&fM<p
zcm?!992@Hb6_va@p&367fKEV=g=?=<>V#u_Z}e&<EdxpjbgZ)(>7vHTjC-{2&&$lG
zt^v4uUJ78WQjYiK^fs+MQ2SH*7F?+I9`Ea3KqHGHEpVu=m1_9H+ixn(ynEz>x<*nr
zvfi9aeZyW%{0^i^>tXyE81;m9zI(T|`VK^wFOF@JGmaxx*Ut7<{mTF*#W50ib)zV#
z10cWE|9D3~Wxfc-1G@=(E$dsh*IW3KnG=I%9r7f@9F^v~^glKobnRr>U)~-ISqHC8
zl92Lpwj}!Uy3?2I2iSNLu=lEHi+AcdG=`)NIHMY}j;I%vZ{a|e%)1O$a&*wu=DtHG
zw-Rz2O<II@O}d%+VO;PoM@|xNLk_<%$@lU_p`l?~48CQcACC29_F*8D;{m}?R46w;
zZhooxaUn;5cq)sVa=h>ROIob~P<R?be<q6ufLa<znbR#%2oThQ<1zYrweJ0tY4adK
zcy-n?syUjOAGaH_-2NrdPM~j%;EIOjDc8NkFX3HT6{Rs7E3gf#HiJ^$+)Xnk{b1E@
z;A!MH?T_zGZ<19=ww%e7+Ts|eO=$mP_k=aVc0}Jz)ral=U2i61*ufQbWkR)HzBQ%s
z6$WLkArCNrw+h)@pM@#UJ!QU_#|6cEAmz;`on?uR2f0RkqSST6Q<i+_3=ynhW5!)a
z`p<hlVU4^1SVE<SRivzMFw++b7+|(SAx1vJlz*Q|I1fx)i1#6~GU!sNk0yDZybIzg
zBuiX9l$tQX^WYt(MQ~JuQafjOvKHGvF)vsiDYKm1;5lUj&7yBC<(@cur2?OMCN46+
z70Qa4gu>}UJ=Hz^J;k>eYHTo{AI_F`x<C-J)S|OIAIt(%v4bl3$5PgTuX&!j=wZ*K
zqg%Cr)66HEHowMbn5Sk{c&^+B|Co;Y8CyjaDqxh-*Cr=-I^Lit@IdWk!GP(RAovs3
zdPaQGstc!67^n|aa&IT?Z(q?XVJj%9Z*3#`d`|YES-#dEwipAp0g$SQLxxLHTd(nr
zIJ4z&c8I)!hZT?2Ur^C78FibOE<btHclj!)J$YpKQoU12mf|$k?p0sb#ui(VRg`-E
zPT!W#T5M%*rONO0eR51oLFS-9d0V1NAUg_WE>zt!o)K4oBy&}_3T{it8@L|s^KMUB
zc5C4e2L)jF{rRvlL`c@K3EtYacC9}%s0h4QGHyKHae&S-rkO=ik`Mp$IxeswL0HPq
zXe$Dd3gzO5pPuY{%FC3o<d%S5b@f@ERrj>s3b@<+QTHmbc&HPu_f0;;v13=jEhvb_
z07e$-#jD)(wfERR5`;bq$Z_%*3OI`wFYy)&IfYhXotgp-g9DQ;Ai9ga!}l6iUR;=E
z__K3--M$8U*a!$v7X6n}7q|3n>SFLgU(th!lNnqjzh8W;Z{J8h;9?ZmD;Bw`vOuXJ
ze6PLh9St57u)$ViKa%Zjea|zxjg3hU&B%RQ`5t?P0a(m<E<-%8)x>|iooEw8!_xtE
z031jiyIPnP^c1}vMKw6T*Aso`2Kb?IUFYpkWLC{R!S{Qn`Jut?U2SexU8sD&3I?^^
z9BdPb8gi`f&2vp-z8Kro^hDn;r}DR<yA1(xJyO4Y?af{Rew4u2n&4ys)caR^mrY<B
zygKN)jrPAe-FMxSrYpRLop)X>eBV1}4NDQ?Ly=DK0(kh61YZzh!s#1Y%uA^9o}AEn
zBo_^?tr*9YSKr`;6&%UY^$%VJA>z2}NRX;j={WCo8~7ksS&np|)SunFkB_GX|CnGy
zd63^!{Mn&!Nb8GW1TJGnv_^2v!Vdl$&}TfCcoDxW0+2*uEevp$Bs$4_CQ-l}%2d(d
z@5*y5GoZc0W8f9S$?CZXkq=adM4xFFr=alW7kYfY_U0Y*2-M3p8a#B#i6M}eDt`Wg
z+D59vsB2r8--hQirvL|#o8p__#`Vm40^0&%Yuft8b%0AG-c;rj6Dh58@9yyO3x*dI
zfW)O8oQw1)>ejLh@4A+WBIpUyMmR>$!%;CuU4N8!`TGgN<~s6pf5zi{@;C?p_|UHQ
zyEmI5g%6U~fJG;hxB10|-h0nW6l5Z#7Ghc=1mm5VzFR*Bt-v<nEe>k3MHE#%-`D3`
z+HGWRXW<c6Eg#h>u$?f+ciR>)6S9>l?5t+a@GbnE-%A70N@yhwT}zl{hGEkD@wMm#
z*s*T|^8plO%&M2rF@XKFS-!Eawdle%;tnf`K-IPPb(k<eVGPHM?<3xVWq*l3s0u9f
z4LhUd7$8UX&=)jSGlkVGy}>usqB#Tb8E<P5Hb3P%@LLP{Wq&T1iea!cGkmZ5z?!lp
zY%xJmenL6y(xhC>xoeZ;`k9kwBn}M<fZ)<TV_i1RB;ct6*#9xvm){oHB<o_pKM>R<
zo~{CckIhZIh!YS_2%S%bjI7oU(r>&Cz)DIgL`)Exx-nI6y*E*q+(CdrDOtBj$ENDv
z^?Y-5YvH7nDm(0LmD)<g(t#qT8Lvqh6`7PF&l-`mcx+-9whNOC-!6z{L6;6mLyjaL
z<Faey<G;~36_p2h91RV%JhB#N=$YGENqwS%#*#*0Pf#rznE$Z%hp`6s3IarELPL3^
z=o$E|rux0zzXjQ50?1M(R3@MGqIcw6!z|iJKBOELhI;iiiEpxx9-KIbZDj6Y-Z`qx
z7&a=XNU5|HzE?dhxAM1Ks$<guGH>@?`$G#2WDb<vmgwO*<eaxsas#b|j^^WXW4lyC
zLeZ|Dz0P<4vKAuMIM1R8Ei?>qS{}4CO<lFWL*BayGFlOrj{cxjsSh$z+RZi!qWqc?
zjGyX;kGvm>eh8}yZrKfuBw-W&|I`N(ia~TefYx6o%ANjLqqmQS12N<UCR8l*@;F3g
z08H8C>4bs}+~hg)-By|-rQQgGeU+4AHHWcCL*_>n0K>t7<cPcYvTaF4&7h&S*3vQR
z<fF{y%%p@9`lH~BNsoSHWTQci^+L9c{;22Up0iFg9S4gV57GngC5!1NIS;a>j^&U9
z&!at!m<Lk7yfIh|jpwl=?%{a7cz*JV4XvI4p$;qKM635eKi*32`L7ugo;7HI&jh%F
z_le!d5}W5)agC9u2G`op^|5!nC7-u!0rQ*B;MMH(&?8ALHp6bEf#XY<u0s5*xwb7^
zlQLd5?L)YRv2{`;k1X2M8u~TK_fUlALPdd*gGFZL0X?Iy_YB#}dyu!WV1(zRM-s__
zXX*hDf^`+yg1@=8fByE)Ueq$AAF;#!<S4}QYFsV{@T{c-M4D>zr}voUMsX)l7h(}I
z#8Yc&r{s&Pz}3$6+EU-u%J=Gtj)uw3r!Ppg!*fZnJ{Hh{eXfpjRJhFmrpIh;->F}c
zJhuVj;wg9?c)Pu$KJb~@J2DN_h3gSJZJY0tHoWCDR|Ol#Hqy*0dYs^SWuZ9`)R#3u
zki1x1&<7Mg>$&2;<^xE)v5F%~Lrs3(bDn))G79bqK?=(QS7>YV)RNniwze|O1rliu
z$rL+F<ckGj8WceOloy7)jczC(V^(88wsFg}_V2W8D_B_0$cW0ErYPX#72Lkucf<K8
z{?dp>3QP<L&pz_n4*PFPkocLRisGF@n=^PMo&NIPv=rz7Ur9VFY`M*R-&*aN4)ZNE
zo>M9rhnkcXmn`?3(z&(Vuf%GJfJ#Yh{_1&*@0|M$3mp-9!pyYr(fr2dqc`K-+po5M
z9CVtFQZ=Xbp;H!Qc3i`{hVgJj=g98PIMD8?naDP|g2oNoMRj&Hd3(EEOO3=Mdv>%`
zYVX37sZSVnW=Ls){?{bfLy!>T-rXxbwXd2>0jYs^>=(#012*{qTAYVHqhD?%#bA}n
zyuepDBoUWPl|P{on^lb{3{~?T9bPC&6qZV<;4|L--@>k?tNzG*B9Q;w%y-mL_5?T%
zQS%Ok3EbS?=R6OuH_bvH2Ep{mH51xG;#M`S*0WjhP}3Okx&M0ie%Vr(LI*z<?jbv1
zBW#-TU38lnA-_~oz6xs~phoFRl``1#`$q7Ws1>)I*KXe&erF5@H9(lZZ@>mLljra1
z14)nVXk|eZL*Ob;xEh081(W<dG`aDlwiY`UU_)_<(xlelOK2)rjOQ!Q?X$5dH@{^N
zPv6GM02l-7t@=CFlTy=qj0n2{n2&%|s#0S%``)<HyxvGfXNth9(VIN!om&gF9Waq7
zAV6~Wxq8|?HnA1f)i3i2F=J2Gde5Ze8JP^Z@JU7nQD<)R`41zQh&CI$2tO6a1x~Gd
zhIjN22~Pm+Kz^U()xWfU0<NZCaV?3O0|;_z=<Uh=9W-XE{y@N0Tv_)8$txaeEzgH!
z$(5q<SGV8q>v~$tubCVlJAsk>DTm<)L0`bW`l_?%u@l;S&1?dDUB!b)I6?^^#KR=p
zQ}&ZF6oetH%6~-(x;%{bS?ZEep2re7J5)1Zcq|vacxht6<uml<pMa<2Ft-Pb6sY%i
z6~8kC#vA}_!QkW<Pc^E&zSL&}iTV4V=g+T#2`BA59WPC`j%_0nGIDlRutcOHOuoeX
zG)taw7MR5>mV-5DL0ENQN4}3dCi#jpn9&X(5q*;wO;8YuXB+C^fA8|N7|()pV8^Q9
za<~94c1Wt{WE72T!^l0HkfeS^tDB>q-0Zn|mDxg}=-5kxSd+~=<N1;@hsO(loUN`K
zn!FkTm>XoLU_4+s6P2v`Y-Do%&2&d?Cw?!yN~~ag@9~`b3N+P`r)*yeCM|*=LU^Vp
z#>V0+lfRf|euOI@P$BOtQ|f+f9-aKBJ!H3F{dkU)ufm{JFYxSPrN9RSm$Qb)#TPzZ
z{pXeB^*0&{-aA;|NO?;0(s;(1D)nm5&8fC=C|FX5;~Tc2T(x1XCo`SXu(fN#Lol-h
zkS#wudB9||nF84A5@c~Xc0rn*-trv1*!f~}xdYJo2o^#ut?pjqd2}5sv-jJp43{wI
zK?asZbyxr7{ePPk$obeCdF2{U=6Qy5fcX)boA6#yglu^zdEk6FCxc7`*zAfPYS*jY
zPj?x;DjNq((X=4g3mbTKk<qIPTo;J)m{URto7s(4HV54lRc{$}{-inWU&i2xV9LV@
z1Gp2BW5(Csf?N2xC~(Mjh@b%Pc;ja8E9aOo<X8NMH&*qW_q3yEBQZ2joyMBo7)2iS
zW?r8#oFkAW^o6|_Z6)E}J8MV>kP2=3;!)p~vsw%XLH7ejO9Bmi;o<QFdOqiyIS%rL
zj8rSQ*a%c8_%HI-o{OYq@(#JUz`-a*>ZnZ(n;~}h$47XJixQ8Z`biI|ez*YRlq?LZ
zP_kVw_&$H9#c*h25o*gCHa1>XN|;ib`sF#_#W$lZBGM5ptXNv%fU`-g=xejmG>6Gz
zM8_1Ojnaz~5JU(zg%#%QRMbelc?QW!Q^Pj+daMqOE&9rwM}4z49BI_d(DET#u!v4X
zpPh%U=ThIzbLeR2=WYlzm{46XS(>`~8DGlgBaF$8L)tJ~$}?=oAi0p>_}!45DQ2aF
zbUo>txRgO+X6B_IT;m(I<OstPZt(O5-zD}rg;O*e2GKcz<?DT?ql<&K3ZyuUA(RzB
z3a>zz4T|(V;_G!IGB3WB09qO87L@Yb<}3TysO+RS4_xYos1s)Urha9lW2g#;jT%L%
z!?S&lOCtz0ScAt=SZMz7USG4lW?UJ=R3|rFM@?f;R1Yg|^$q%@g|Jh78>gVJ$A|?#
z#h<5+_oN&^E)=1;Mk3|p)r{*feOf{nR!cSup`4c=)1k2k4I%{#Ib~Z)9lT!nHq%ph
zE~BWPH?c$gbo6j;yOyw@gHyfZ&j9SvR@I2aAY2v<8Wyjc&-b3#*?b9G!crxJ`=)ce
zNvQ5XvfagaWmD8NH6hd6em7d=46IL;qH8gs<KO?9+;<ad->{(<`^l$CPmG}nMhzZE
zEOhc~_R=}mvt$h)9NHAZ6yJ<!d-hGnY&Q@Z!HLZt<+*TeqFB%%im1Ac#T$IQz1(}|
z&j}Z?bd(<xMFPYp>Gt1{*5R@%YNklbh+(?zO^Ee4rilWYhggHmKfbY;MAAx)AE^;W
zMCg}CCG4}Uq=xT=ChzE@GqxpOB!~k}2qq8DtvVC=$dO5^+<iTC;uh1LG)bZzfZR=i
z!*OJk{9ZcgT|VdGOASUY1CKq{O`}pbS_WP&=@!)Yz4YD>5=B#%Ukm}NXTQm#^wnF<
zk3vdLv=;a;7tLgAh|WU&MQ?IuKh0SSx8ye6uglRl-binF&){USmd)>}Z@r5d>;!8L
z(Gcc^WJ*Zz!n-oKs5ICTzWU{jb@dG*)>4S%nWUQIAz%n=07@x#0``Uzzq;&n&p_1l
zd<ZFHh}o+t6{CEb5ay{Vp2_#x-^-<bTXmy&6Cy2Lexm2AWqd%{jHLtsM#>N$(kIXL
zJSv7@V}F5iu&T5?gw-ET^<1zN5{83DEouZYD&oF@4iBkXDrM}vGwIqZpokJPB9b!-
zc%ib0NEzzTZArnl&{B?ea-akZ0HX?4S8d-;dcn3ycZI*;+QCth7y<<)i9j|bp}CY!
zAwMz-2WF_lSsu?-_PX6^dkFX-vFsThWv|_qE_#6uh<CxqA&8Ef)B5Qg&l=l69&ON;
zlf372&nh~zLB}lyh?l~Z>ecU(&YsTB*f|y+#5;dJ@(5KGfaRNBPb#^OoryVEjIiBF
znh*b!jsyQOcX@)h8$Lj=PeC0lDAER=P2$^n)W@Dd7Q3)P!IUczu1-{xaIxY7pf-0)
zK7g4Yc(jK`<i;KgZ^o_m(aCRD@eRHKW};3M1>G)8UjDXONj?Bj)(C9EA7-bkskeLn
z?uiFXI2blNH-l6es<z%+-8WIVc3j;7y?t+q=5dVh3&vLL?;Aw#DFWX7tv=s+)PiC%
z*|yC$yH!}+?;++cd;WnRdFC{CEmxRp$r%8E`FnU&E5rTdhpW@6#J273*@8#}ywny~
z;OM9d-blIfaH6IIyP4AN)f&88vcS#8JD~Rdloih!!BI{#L`{V8$Kf8unqkcF_j&(e
z&(cL4L#z!&;%iRN@_c-wfvC_$cEbe1u^Uu~atI34XI9b&d(AOon5nI=uiy~5`NV~u
zhRd6RI^uwkHu}jEgpCj<1l%roX=r#zVh9&*oG#*5lcwfocy`HZ=w?)1B;k-svseYs
z^E@W3yS%^}o-5|KboIvBp3yT~pT-JVGyI*H`<k`Xy^d-rZG+HW3XBDV<08#qBU8Gz
z2XZdIKI13R1BOf<gQ$d!*$Q4rZU57IY7TY@JB2XtjeT*acTZ<y<rvslEH;?J<=#D2
zwvEFUdDOB~d`p%YYX;Hqq6k3I&ks}D`qFk{&%o{9R)17C3g`OzR__a~QOXJsHW+Lt
zKW_fE*Yl~F#<000L1H;4uJrzjIRy-WLtQ<Z17lY1^0aqe4MIKooW`B#{po$rU*27(
zF;xalf%;Ms6c|g>(7V0GYt1kF0lnDtl-kwI_waGX2vi`&z=ZcyN1x!U8cdrQ#wp%n
zx=uOTcg1#NwGrvoPQlXsPw%>$XoH=ttrJ3a2rE;9Q7IIZgNsYVQgljl---KJv*TKV
zKY&tJ8{gjtjCHFoc%feG#dwJU+R47!*UiCkLS$W0&D#2=id{(bxVQi{%AK@*+&l7g
z+Kh9Ht@Hf!DBrRV8Bg5sLaIp&>^8Mu`<C~To#rFJ$ITkWmFOxye9Q0vEWz>jim(Cf
z97z<B!9Tddh!?xRO1ixf;u8z4xoFh^^7*rI8l)r=^=Zfr#14Pilk{USq!MtH5hm|g
zcjh-16H&LmQQ>*^WP=#UfF%A%HD$v2=c-K;J&)Rwc5mD{U`SB)j}vh+Q<cv0B)x%v
z2Ys^*vm!8wa8;L^JmryAOL!YyYdLzQE*$0iwzTCE-avOTL!x!Pe4;P2cgrOl-2hlO
zfo3$||8_GiPCf$l<$b<~2ht)OUY%&CMB#|udZ6#+tqdkc9M+G*Ql43Isc+v|{FwW3
zyadQ^#MHNy`~HzZkbVRHh&KF`V&A61mSX+@sJltN2Y!nM<f;@bAh`dc2`;JS^sa5^
zYu*|w8Cj*oFvaSDqvL%&J*~we(Un^)uSN5WKWGP>X~Zv3SR+%WQK`*6I`qgeja>uf
zdyMoB81FP}z1lXq!=W@jqE@MZ2m?-ko!8-v%My&U7A+N=$uE`Ssb#C)anlx(Og%t!
zIVGN9_kjOIXIoWYF}@LpT=89JNexeWcCIv1_dvKe@d%KFlUzmSRi0mwx%tTznEQYz
zuo$k8q~4qEX}_CiA-bLmc6s}5OcZexI~(p|JC*W&@9jU?NTRIgW$&I0@H;F*NpPab
z*+iG+sLh3*UR?m5BkL8otdvp7yRU~pW9fz=V``voa)syBe+?sbnP}r-V*V%dfNvi3
zf7={GQ{|jZMLHqL0#@KEypdDY@QadHKWr2jLWCj(i6UAKwzqs#vKM6rz}oaUVJMcL
zh!P3c8+38P2a4UJr=ew;qLXY}klgJqbKpH2Q2<tzk_jJgWVLdwCl{|+kwq%1xCs<9
z*__bu|0Jj3^JM_acvVm(o*bHO+qEq-hm#>w7;6TXlcCD4_GHKjp&_a&5ju~iGef;_
zm8ZRZ$+AW0q+oSPS*wn@!86)t$Wn-U3SYttA=3#K6!o(9tof9QY-!WD=E{V;4N+<Y
z&_4yx17-2c#2=Gqtu`klG{PV-JlfJ!UH9aV=9>M=+@jnR?M=3Ns={*+3}Rp-P>;d~
zoq&|a3b{K<W;@s*(E4PPkxZ49dtMnw2fQn==(0iqNSG@1?Rm-2HBsB3XbQ^9G`@Fg
zM)GC3ZG;=^7nIT;KzxRT;(v5pa;tg&8~V~n%$(eC3u8)73eW(!naMJN`ED~j^%>?V
zIWCow>~iaao_(7Pf6*7VTYRBdG65s&$~=>%m?h^!vT&P#C8OpYiGuT!w+y8NRL<c(
zk*MT-P+l@!G^mD;jPRyL%<qSYU<<VP?PaJR-cP#aIdg#aN{sbsPM&AwG#W`{hQB3*
z2rVVaL~im7hU*5Lj2=AXBr1wJoQ}(TCZ9FItiEf25@HpYAh-<Fkf<?l_E=Y&Ifi3m
zW;iCvQOk2ZD{1Ax9j3B7`aRA_l#E2Ysj1f_pVHBIJ?0yYyHE{v?S4<&1Ll^DXyWf`
zEA~m^lB3SfPu|n6jbRLtVMW6x0_^3hQ@Xr|7nbNMp=KowXv-OB&(!vvd*X$KY6B+E
zb_f|%)xLAF?XXo|TW=Iyo0q4&h07UqkKQO2gd4tOams~{^0N$Si!54Azp(uiV@-RZ
z$V}MOYcV7bZvW3f(@52`a`5>5IqjR3(~v3jt1h@VFqXz2>)TK7%`_p0O<QZJmRF`s
zOErcPLym>T*s>z!{Kw6BtUIijSDgm8pE(HUHgQ#*j4UDfrPNQiwRb$#Fohbkc<|Mf
zd5h_d%QzGab*io5Ma*B8atc0dfRcG%LD-oJ5gm>#PO0hctU$mQCH!NLrF^>9jL}#8
zitsmBB!(NY{Nx+_u1?+G?(*ABC+0OwW5*{`rmr`B1n~)>GUk|!2W?k6+yQu@C~HN!
z0BNXOKWUe-!i+$g!isuCD)r;ql*HE=0v<;aFL0Iebk&kS+7V13&H20xo{h*+YR7Bs
zhTm`ZXS(r?CBjlN+sm(VMrfTd>4`R1ZQRuU>dq`ZPmINrQP%B*9F?YAe83!K5sN1$
zC|!F`ZlAl&v=zc%%DinW+E4pGvm=Nr1bMP?WJz6}a)_e<&*oRL9IRkQIg+z4<-m5D
ziR%?}&3K`L>hqgYUjH5=tH?ClfA)^OBWzUV_Hi5$49N;m=N!hyCic{Mzk0J)81IU1
zQe_TQga>@8dTe*n#?`z_go0o>8g)X9kuufun>>Bmnr7r6fWkjWsyC;Lw!Ns_bNPkl
zLBhDg1dv5OUF|!^lY6ac>?KYF6_7Un5K+j9^g}tKnMnu#;C;t(fZ4=nU6SXio?*fr
zy4OrZ{s09@zymW)FZb5}j0?4Be0fk1OUZANroPYcT{;1M6_yE(Pc#hb_3yk>a7u&G
z5Eo+n#)U(t;;f|pNmFlj@K$}2U;(+t0|25_!gvDZU8~xy|EjIUP!iu#Q&xdi7y(?}
ze@VNePNdxyH#kz6<c||l?z^Uq{J0=ciEydZqdnSfXl}aOwQd2!LWDaGSFOLK-5F=_
zNhI-zMXf+GTaiLZLV`Z1O5WF-;Y^^LEXl0s<MQOrcB}LY@dBM|u~AFzC5fNCqa=A{
z-!@{@1}RU$2xiQ})MVrrvSE_<jcI?@lq3r*bD0E02((@@ul={rVc`?EJv0W`nDFnx
zRk5-Cjdn8@gpxoN{u8*W3hm9JNRsOFc>7kbm|iiT)iK|<|9DDU2{}Nq3|W9ZlA5u}
zY3(bLJeF}7X88sfF>aoe+_;t%V;iVOpi`>l8yzw>nT7(1<AnkdDI#gjrhL$0^g<3r
zSY>|6xa5>!lInAlr;If1ax9ML0ASfj%@@cS@!!9Bj!q5#z#Y=%&qv&5tNZqO=C?4v
z5GW9JmXY@S$r(M{2y7Va0&?K#i0)mGid^K2IqiNq$PqX{kUfDb@KC`o_DZflNuZ>k
zI63(H*G`mpA6akx=#(9AGg;Ipl{+$}^Hy_ngP~S-h8xwqd58P2U=$d3Dfh{Lv5{<R
ze@-%OwlM&kzwII^Ycl|*$Tz?&-I})>(GMUKo-hJrgGl<!D^dflZvV)3pg@w4Qj$_A
zmp8B7cUKyKl{%Vm6gX@$&Z@L_@ARfw90@=@bS7vG-gVV$DG$9s^oiJZ@t&2~lmL~g
z$+L>$b$QCWYgr<ySY9C(R<hheuRHymymn<<0ZtoRBi6y_%G|BqZNGLfgJr8LiUXDO
z5&jO=pv%toU2{#lIPi(aX7u0fYcDb_u#kfDjZ1WoAKT~lGOfMp5Vvu?SL&5-+UEof
zphwT<$9m001!~Gc8~@MNd4N|@bbWlRBoIhIAU)Zgy`Tuu^a8dNAcWimlhEv!<c3@l
za$_1KHWUjAD%emE#fl9qpnzQw8+Jgz0!BduyCUK%>i0Xd2}Qs6c^{v!b9Z-k$|?Wz
zKW9|^4>2p4Lf$N0ojQqt_mNk|`0~uda1WdPz#&r1kmS}!Vpg7RuFGU%TuLsBY%8&u
zhAfKN<Te^n49qPJd_u;Gn36Jc*WumZ3#Dw^b?aiX&o#}6OrHTRzWp&Kx%2(Lslmzs
zXLOUY&QFhy{d1U^cv++cB2Y}ROeRVuB;?P?{b^?Y2+Cr<Fa-HuM1GQDF3HCQu$xqV
zUewXYnoDTv0BT6kw&hczUVfVuDSlz+@AfQ>N&Ly|;jZO_OE)a$ZcqP2V{UgXDIa4g
zT4&<9F}eHs4z>d3hggCz4VOfpd%sy^Wn!bS3s|FaRuWq$?Zl{EU(=6HY@Xyr%M0&Q
zrX>2q7;CT@k}>p-K!s9gzZml~>wsUgH=BrMi}Rq?ZH$SOod9tWWPUn(<L}AQpXBtB
zttGuaY^RS58ot|}kZAQQdm6GSrh+_N>e5g^aCv0RJhRumek$Q&E9Q`#r`rA(^@wFY
zq4Tn8`ztEKF;@skAnB(nc)d|hKXa+V7XYcIb9~{Fp3xs1W2Osn)yh&uVx*Y5#;w0b
z{`3XIogy&}+&;#Na;7YXk9tJ?{V;=qgzF@LQUe=N`%g+_W3=08@!JJqpx5lEj~|PS
zMC~BCyJks-7}A|@s;?0_O>jqD*e7<t^9U(a6Z?WpLUm+q%(!pqubZ)eRD<qe0K3c#
z$z-?hiWz(ZH>6{w<3vp`oi|qUl%dga?WP~{x-JC-Ujczw$<8_Yj>vP<_%NIx#5P}y
za02dRG%^s?8S2{hm>b*$F~%2gB{lgIQPIC`=c7})#5!^kMN8TEhoio^kf#9}`Rkg3
zmiTv|``J=%@uQ;1o5Q(DsC|T2+|a<GKU1Z}kw?idTuXosGSng$h~A(}dVLn@z1n>#
z1XJ7}2`!Wd2?a27U;Z7rWrNXdqyqWOd_w#=Dt5>U1O+B;vy8593Lo75c~o4`%)D&L
ze4-sJ%bLol+kZ1}CYAv?MGU<=bEE#;Y`(<=DOkHxB9|ZKc8}dkgozuEuZ(I4HR_}S
z+mclzbmwblNBuL<{7~e_0dWu5H$Lk3_soi=8fFl%EeI$tA*7G)h<b98c?=C^A*jEe
zh&ry^e9;*CIU&FzxN%#|`7+B!eor-Kf^7bJAB%^oOmbGuk+(&?P-k9U0-w^|in!&h
zyZF+mQ74<5U7;q2yc)xI+m%u8W|~`!A4N*=sZnRTzwGJ^1UbNxV^&A~GmalhsG$ne
z4&%D#Z;?q`%_a9s-S~xxOeCwd`y!Wb>uXXA+)#nhMzC*ive`Kg7RN;#_y6FCSs>yq
zgZr-~0>g6mGSd?3H6hmzgZ(G(BY#9T8-{F^;F7d3!A}SK@A}OEImI|<o$)9Plz*)L
z8}QAs8jHJ7a;hl}7L@Ye0ZO)}2~bu82uP&A#;OR^PV?0$^~^a|<6D-H{oEJ}ugE<R
zqF~fH=LS7Ok_;%sL4%n*Q^|=V?3J!=oY9Z`0+TN13i>8%tk7aX5Gd)O&Z>&sac-Zd
zjXOQHtN&_eSQNP>63BIDtc&-G<YernoC(q{kP%1vsaX8{h}eK6lv9tCLMyNJUzy!!
zC{nXbjORuQG`C`La?9uaJaHlM5%QUsla|*{x^_#Wz;yD!ql@~Ver@WPNFfuZZ-w~-
zkU}gFGur9@-VWnNp!hfp!^N5QHS}Me-lvNN>SoEpoJdn!O{%iYzp*hyy`{pUqi@5V
zxU1svcO(G>aL6+G76=MSaXxS#{X>A0GZKJ_AqhGes<k$5&W{AiWi}1<S5Cwbo6<NE
z&wAswuQGvXGZcpPCQz1~?yQ=|_P_pFK<+G6hVN5n!l;*h(BHd|YuG%{v1OqF?p`dx
zYr#N^k>_kppw3kfm>;p`up<RKRM$=DKlnQHt6a|5#qnJ~y#F_g42CZ6?qd3=m$&q5
zYIENpd>Lq7NT88d_g{FY`E9OPKD>0uoBhrl$>UJw?oKH|^cjLy?M=tct0tqE>Nb*S
zM?_q(AeGQB`cf<u<b6JzaCSdcgqWb8;-b6%gf5l+(SW$eyd%Iy=mAMi*`POe_rLlh
zBpR%2pWrJbunmdaxx{FPyv7zLRDHNTvaA`CR%T{8T0j(ySmo-4v!lX_QH?0TN@Nbw
zXw|;RN53+1!$eTf9Q@XmN2E-WbVa^lMASF4d7<#fu^Nf@y0!pT7^q!Jy7*?>2S(lJ
zn8#Fzk<Nop`6_bPcjhhx645mtbVGJjqR3(~0Xj{-Y3rjWZZf*MShBuE7=PL;>i9Rz
zjic&_Z%7UUssn?#V|`@58+ixmIF!3~t^L`j#EcJP2>DXUw3E>ob#r9z_2%P2-GoT&
zS_R(PsQnB!Ux6Cw5~}LdEs-O4o0oxoRAH&G#=1p06V0bcJgnX?*RJ(Ntyy|pB1;xr
zgF>zK=A;%h*3Q<Ls2t=mIy4A;fdwFn=-Ta(7hC4%gm0>(17d{8$W~zA3*V1hqYGme
z_2gFIGB$9~1)dPeVu|hO5q;O}PIF4&6*nVBOpH!zs{N&?Z7=eXl5#IdkTt?Ey49eg
zVs9=nYv(XKjE?q+{Nfqb2s7Urs3%>BZvGJ-6`9M&ciJ1Bvr5CpSE5ht+eiG!{2)^R
zNOfAws=W+zmjh9TDTISRDE8$Y=9%UT09s~7T`=8@CM$>~ZfxZ)>hsLqkr$rTw<Gr~
zY?P@DQYl8v@GIw9>ngh!Ue?3dA(CU@7nco9NL(BnbzkIj+l;;&)7S#GCF>JufKC+e
z(R*ps$<LZrNq1nFgBCs<>B5pRvSL`&Y4bY`X<QBgjFu(G?E2DJ4eTsFfkB5P&Vw5N
zh}yW$*cc<^F-l!^d-Q;-SS>77d@^||$OWf#U;#b<LG(Y^Qiu6>VqG@`@L^!y6NXQp
z9TVHPzuE6H_ip~QcU`o1gfY~|aT2Z{s9Zi%J^WJirYs&OY>!Th=h;6aLpoT2MjISz
zd7RrX>g3~0|MAw?V<~?|Mc>O0IsA*ITQ5DQ3NL2DJ-<YqAe)am>jxIQRd76}leowW
z-im%{?Y}=xt=ka&`hDgqB2pg3VN)2T6TggpV1?<n>u+@XD0=%AGgK8Erea1bU5rfi
z+ecAL&gXt)bD)}ZNnZ3)byVe0`X|(KW0V5io78WhtH#NcQ{o*|b5(DDAARPt=GA8S
zJ4Yt>>*(ay|9zDkST&Kmq7z@Bsq@2OwhBF2YWtjMM_2CU%V`0sG?kO2Aw%6XG`g?Y
z{)aTE`-Vl&<{G=mWwl}C!6PMO(~gNexwn{T^39#Iud4e*Z^c63YC(WQqPj%D_K4_b
zGR$RH!Q<iz#TJR{TA)|#k2-R^X)lu8A2vUgH3R@n`z>msd!qyeyB;@dSJVZFXx<_p
z(1k#KULG}fr}37FIv6yf;P;rZZDwAK8j#3zTXppRE;E-%L25)tJuoAhTn4iaTbf&B
zyj4?UbZo<6m(n@2gaZ}pqkqMqX7&KZ@x0Z~+apuQGIwyw_#VuEVzp_?Ixq6|YDUq7
zhQ)klS9SA6u9#xfk8#fn!Q-j6fP=2)JQn#%F~3GS;--ioJ$-*<EZ81j=ayH&g=zBn
zDoJXCc6UkC#@lEE&J0X3WYaFSb@3IE4wEXvtJ%jGG6YH$ei`{-Dngb*j+oZ25iX+B
z6B8NJUoMX^YpwtXmjw-Xi4XwEq!}^i+NRkgO^L>l7$P`Aam<?$_}Fq55g#mYN;c;f
zvpBa!zJ>au%VS7OHZynsy-}A4{A6-GSRhgxtkTFXrB=?59Q+gCjKwCBnRF#O)n`NW
zeQ&#yDx6^PtiQNDD(cV9XNX>qY`bIr7y0SK+$$a<o{6XuDrF3~z-%|M)?{0%Ig6t$
zFH@D-_2Dj<IDSZE+#mE)$^s$aK_Kx%#l!xvXY50_@FtFVGwPdJm=-hnDV_ieqyhVz
zG`|HgTjc^^3?0EH7g$sH;}a?)Z<FmrjxJPH@CBtlpBVZ14~Jdir&O*;m>9Xjy$-<(
zS02G7>w&z33tUS;RsqTkmjl$AA*bq}71jMnUMt!Y0V`dW02#!zsHhxi5PY45E3_D-
z+P<$Nw+>=SW~q^a{(^D~I<u}%)R+!4Xlxj9hT6rItk@PAJ*jUS?Rmi}6bB<bjWu?8
zO+sDo@YNVkrOia^>j}<Nbwh}mb!(i~_Yyir6=O*-^4R>;TH^MjKe6i~du>e)?WmZb
z3MAr9@t<re&#6t*tQVdPvzK=pSX#p4nk9c>bZWWUc%FWvBYZHUCs91s5y^r~%1pi3
zA14nH+cLK^y_%yzkWI(`mKb$m*t2hjc8tjd{zh?1AtktYluT61=i7t+44?mGx0jfO
zu?<Zi=}7rx3p;b&9UjsVrOzc|3KFA({6^Ieh|M!M+5a5X>)6y#>0CMLZ&I+?D)!a-
z)#&6xbwZK;<%RH$;#@h8uCZ3)4#fO8sLJY7)APLB%(v!Yx;Bx1$eH9)3!q_ZV#J$a
zZNbpt0v0wmO$pWpu-S!ocwgecN9QFD$J|uv_eleKoRzp7tEM>6M3#<3Z*!6)LGteN
z?Th-vbQBC%;{#wR^^=9I0B?~8Y`DhG{3-m0C%bvQEHq>xq{c}tjcqEgoVaJgSm)(F
zu^suPYP8wM6vg56F7?%U_Ku}JCQt7nEv1cB(}-me*dPR&SZ;5=uSe;{JqCL76#kYx
zt6r5Q7pc^fotI7y>ll{{V+oJMbRkv#$5h!9o(|vpjysuwI;$KDvwkuwY1ZHNlplL_
zl;qRzdK|NQ5$yh{!dXCU+`QL1erR~|?rt6Vxk@xTo*QNYXCh=2+I4F}em^s;qhuni
z&}r7hU}G)Lk*wr%m)a#mB0hV-+$HOwAVBp`PFqglJi?R~Yu#<3$K4Uu;bk>oRx(ah
ztHQzg;(NRO?ub90?bb2cJQ6dunP4r|FV%>EJ%4_$<F<9{C@oZw^d)M{;W!j#xPQI<
z^>e+>J}cxUe6jN8md4t>#FLXPr1=rYdS-nV{}O(QQrG8sqVf`CXuOrRQcOp{<7}eX
z4RQ9h3&M}SEM#DA9<K9LB8J0OI`1TQmrfM;sixRyiqvGPrr!3Is@HoDgm!q@5VhFu
z7y*<kCzETBtuOjEZ00$k1JBH7gCS(9ctK&-I5lUA?vWMY9gkKGwoI1Y<t;|g5Bb^o
z?2DKVZvnAAIj9}V4v{sen{QOvfoH>qzsneuGb8w8n4%OVrM&ZkEc=K>VUJDh-cdM8
z!L6W@L|qHV&u7DE7?+p$_4*@f&g~&vOso-}DC^IZTZ>p}Z+bple-IL6zbR#x*x`GV
zWkSa>H6<-=O{5cXn5cSmnKiB|ba#H3JK2rRHFzPD{j_pWq3V9Ol`$ps`rNR8zaDS+
z`jrX0E;x$U7v&0MXo^V$$Rwc$)JdiS^#Yx@BX$`dF}l%L8=Qtyo+Qx5O)<_bmnSS^
zkL0y*IpD8ED<w%`xVpQY>rYRRjvTgr5X1-9PXTMz*95)EUFgXfI55{$+qXRv{^dK}
zI&zB{h)KA!q)BC>uRix!?;P3d(dpe~qM=F3*%E4Hsbk$}uE0z~F(S{)DxK~Rbstz#
z&S3%!vMh)hlXS$&-g0Sd1A@ph)tH(qgFz^Y3(nS$y<*xRC!*v=P0&#<9rD`}d@Rgo
z00ijHtff3eXvbLHu(r2Ml~AZ?sH&pflqmy*B%y!%_4cSe;o6nG#errH^}{P=DF8E!
zNy}IBZ`9Algm;vUf^ZoW^g{yMoZW%Sete64=iG?Zd%Ah^NmBvfoYbbq=Vq!u=Q~L~
zVh@#ESt7acc{(K*qMM=~U5VY<RM&ek*_u5e?1d+d+y>Te7D+Ri(p_?DjaqfDU6>ob
z|CMgu(W#x|Qs{4^_Dz*4odC;vN2RlNc&tcoA{SGIS%WZCAp`CBO+8Os5^7Wtb{uM)
zep8G+!QT9dX&76<oY%SH+%gqWD0xL4#_5mSmsfTF`BfwL%9}}To`eO0;LBBy@7MF!
zB2Y@1@>=|QDbS2;n0=o8!-YK;<*;K*kqv%-72#%SV<CQWfjzgyw3Uvght;stIROij
z(RbEUUxr1U+WlVOmC`1ZIicY+HGiS!nArH2SVwum#vK69$>|nq^?$=Xs~gPak$ao{
zWHwGlU}ajcU>b&dRus{a#*TX-eL%qt38EYeg93h$;LRCFsjA}$D{*(&mWI%d@#6sH
zAh9+B697O-4X;IIcF|wG#@rdwQBoxQQBkR=W;rcj*aCZDcm%4sV?;5=g0MSX<tSw$
zQq`4zB{uBr^+jlCM@b>(p5zb+^GlJCff9S|SRFPu;@fAtd5cn1C#$ZcBuhO!)w!@d
zcDZ;9P??0XlaibyhY6IvXOBNA=3l)>R2}U7s1kaQYhUk^6J8<Ma2Qgia;~+XDC@Pc
zM~Km2#9%~$rDNXY<lEbh?NRoAk7cNXF~N3`6PamALgn|=IHyIKZBN}Od`p(KoM@k;
zeqU_eR1^9`ZrE}RkNjX@>LiRcDL|bhN7i&-XeVXF)S*MjeKQ1D@<fq4X+PNgX2gpW
z8P5>ZA(M&hl1P1Qs=aGp$Pp*>6p=(Uu2Mu&N>UngvL)6DnPGZR=C7I-3|0wkj&L19
zk~vRTk7|41Cm}zf_b@L+@0B*zkt8V<eaYWYXNOu(uIhQjWudaus3PN91<btAUxZ<l
zB}Ro>UurGP>T&GjJ!Bi?wH(maWPtFoKXusS_w?MB8Y(^KU^nE3yAg6oXiZaT4_TGf
zG8U$pl0jB!wZ#Omv@j}2j_1{1F0oFS7J4GG94Q0OA~3ne8Yeg=HRMdj*vF6AC;S?o
z@MJepSw>|0lL$XhY9*<ur7@|_pG3x+DoQR<i2;4xi4h&8WoR~`{!ayQ>wHvBRwn5`
zCr0RPy+U^c!o(OGj%(D2aRGLw_MfgtJ|8YuO9U3G3}T<D>;AECJl$N(<yTlBfq4CQ
znz>LqUBrh-%Q~*VTds4zHP=T7^b5fQVoSBYFEm1)=;dDdKhxcH!%64qXFfJJV1f}i
zm}=w|RMZOHV}H0&%^XWI)lbo)h4uQf<09lzv9GGFiP#qq`lpTh;`hz{#clOfZpw<f
zD_?KgVs6d_eFW-N>bG`1v#+_?Xj-B_nBF(vsmrHE{Dk#5y0K+4P&SdD1{5$tBEBth
z-O5C1DsQQ;Z<9P#l`J(uqpyw3U27VIFg%$83{=EK+^F6cMJ{<EaX%}#nBcdMC?5l-
zhbFwe$++zxER%79*Z@-PNPRpc>a1(~ioF7IILRcUvM2f<Z~yjMuLtu(I&#af2Wx?z
z>KbYUNl0M{s@V@)-B0gXe_Qts?{F5XH$|WEY6O3nW$kMg!$X3r#&)Lsa8;=_F~8^5
z@yL`SH5@vJAwgmsNTy_tTK%|vw<lubL*2Xu>FhOvgu^GKs#R&u$v<M{Abb&0Nc5l-
z@gx%k>0qB@?^xbb7xTc0Sg~C)iZ~E?2yuP%(|3k%$qF&*BRGxqU&xfADmY+S?P;@5
z+1@jHyU`(7tyN7yf|49Ho~16n$lmdDR}(HJD=Y}b$2bnuD#=t2Tx2JFbnpjc6;Srd
z7|>G7gj)Zz>=j$O+Qp#|5g>tbERR9c?B{lNwT&Wm!B<1=B56xki>mDWzk2?%Eu<(9
z6t$7h!T6U$F76$xC%q6W(o?eSm<Ei-EE5j;cCIxuzUT30nOzP>LRFhai(oaz8)}|#
z0pjGlIo7g!LKkB!S73AcYQ<Jy(BT_m>wNQ@HGN^PK{J`*vs5`eujVHBmIivv$W%Yv
zY)z^W=&=KZD&ntm(;iT%OxtUZ*%=pzN);(l6s!>k06#J%BL^uv^Dg_Gy72SXhIDw#
zSy}9yNgyY}xJXk=Z??k!=y~bL?y|TF@x40z35%cr#c5z|0Fl<pQbQjNc;5OYzvo}K
zbnnPVwd0sJ8!I6h*C|WweA%8~60!b)Zq+>Y%s?ZV^Hw<kuE~uL%(C9vZdD`KOIZQz
z0z|+sBdzT(a*Y6izYedX$zKg6AZSHw<)Tz`AYq6Lt=5DO&7BAeSZ40+ll`qqO*zAA
zT4S21ql-s_(?9Q6tLg(TWhim(aZek47XkpEV<o+5b(DBfqLXE0nL2`u*f#ACS+7U-
zI5`66$E!wCWt8x7GArcIORYb4bnm?G6(z+6qKT}7lV?~P_H{MoQzWoj8n7oeU1}}f
z-qmns3(z&bjl3pDH9lp%^_6KFg&iz39rlnoxk6&kRP~X%Y)@F>EcO9vq79Evicw<u
z@YEq;`i|~BrHz%B%lESfMEOXLdg4~=kKH|<c|3He1n+~;Dyc;#S$64E$%x$RL{5so
zmmvpps`mr>@+vBlEc68X<4Z|#uSSyQuyfK<EexZdl05H>{kH{_VX^YNEFhuGFP-b5
zmVU?hTud!8_Xzf2(`Blwm+Ez|hh)qM6R+Fb0=on+(VSs6Yr_C<G)}ivzWC<O0q<8D
z2fRGsr>r0t3Z}v*Sp!nC6Q^P+<w^~uR_t^&BH_=Q!vEtma5jMJG#t4Al_}nIC5S;4
zjy5Y$ZNA5T?&cno+In=93^(W?v@qd3UwXei?~|~`Jw}svdHc*H-hN7#UgwU|sYn4+
zb2v?{f7QNaz1$)q&)qS|TVN_abyu~0MZnmbESdZ|taigWV0$F5wBA|S<Nal!MY%#?
z4m7o49?F3aXK&K0cExu5$IT)3d~LOTrR(Nkg`kBRL3*f+f$i}5RBO%@19D*35>KA&
z+M5(z;k=q(tPk!Ed*C}4>~SqhsTG~BR?M>gx<9PoD)X_W0>sHtxY>AV2-UmJ;}loK
z_$ZOnwPx?a)gm)|aSt64=(YF`Bt!{2hcTsEHKn#QDbJ#=uhZW=9ah-8hbWi|3TR>>
zvUC|itiF>9^rW2;Ki<<#8o^4D8PWpib7Q_<u+_A%a9M)Q)_DF?1O6?chud1LhZcps
zb!BJ-0*cK-jIJ795H+?X*XE7|{Wd?6A|k0QC@NUtH`D*=N7^sN^b8-?y#qtleI&)O
zr2qr`KehV>duLm(;<d&Q8d*n~FV|Wgosy^C@#{rDgm>i9N8+=|_*c;Ej&Szg71u+l
z2S*Z|2HNID0-FdKvPSCVW~#X*{eI5R6hCtW9u8GUrl|^Gsk4vqoKYQWa0bFSfjar<
zij>jnl!eZa>${6lGv3$O<eLVDRjkGr>pSL!3%Cvaqbr(nZts{4nFcs43i^T;%oV|X
zm1^l7CE+iAER-1#&+jv%$4+!nd4Z-;7&+u|UXd3yW?Ww}L@1Zx63Z#C$mX6Mx!1Kr
z#s`|KNh7R67O=|8r$<J(*Rh4g$f=(kdFyi+EJVFqn$Ul(3?ieVPTkdiPl_cEHlt8!
z#9JyFS>4$dIfFY`55%M(2#b1=iel>6qW<5ENH{pOQs?K?BOPmT+)qa+S!<j#WaWbE
z0l$EIWvNxW?ZhW~UA?l~a(pTQzeR{(|6?$z;TPEbj*k>TiN(@6f0*NlC+i3MjY}iu
zJlicCg)wo`Bnol2!`H`Zec%m!&-3x3_*~sZx=M=#d~?$A368qMzIeZ&lG5%PyMn=^
zdTD2+4VY(t{;D|W|6Njy+kqt|cvJZ_zn|iRfbOtLh$T_c?oRzxx3K@c6e6|K^L$*-
zHq}f<Z`U7Y#dpZQ^`rifP$0nISXIAR{kMcIJA?IGfDP_0Pm+WYQvXZRVHb9Pc^-a5
zt{Thv8<KH>en@6NsL>zVcb(Yt?DM++SA;NUS5@0vT@k|O9gB4?p#nL@K7NS)EZ7q;
z%N3-k6@-CsGgAqv+WmHh-2Fh9pewo45n*6(jQ`|h>%35dt+0s8{L@V*ygB35k6Ke+
zUvyA`i!Fn3f$q52a{U#d;=q#W)Pzz%iKaolNKuK7)qP;EBQNUSQ4W}9><*-8s-TDJ
z&LvhwT==i!F?kM!caX1V47B=$NEZ%A2<h}cAKJIC6ogQA82NFXc#$_JSM9a*vI^6^
zGVHD@OXM3g1&P7^nP5G7W7zbk48lAf2aqf=)^2ffnab*^2NiP{PKe~#kmQ`rac%1O
z4(pkYp1-~tDgfDNpHBeuoJ`@mzVvc}*C+6pQO3Aw*mqf+TbQBd_Ok|EFK;<~h>(MW
zrdb!S2xEwzWV2K>wwQ7V7AO^RC^?5Ex*$JcroXpw0ZA7{DhqcdhXcbo3}K)>EhY4y
z?4Djk6h5jk>c*7P6D;z%XT*9-Ag7SLXaLso3J&SG!Fkw<6)Ap*q3)V+@ZuTW9_4y-
zcF*rv6YK}^dR>q>1(P~kU4Nr}Lt%LO8iU)CjZ5w>kZC%8%w=izp4eW!PU#`e$#}#?
zBgY}oge1Rrn0-b>ugq^krK!Bm*D|?=F~)h}#!U5gvK@%;y0MHT2~>+|N>yKE+3Vt@
z>0S(2QjEuYUVc1IHd<NGS1%qW<Q=S!fydj|6@*v44Ej)^3UO>1A<nDdxJ*t8`q*B3
zeniy(+K?D{I?du-=3sDVtGN$aw>O9G&I=RQqku)h;>X0t=o?UF?>(j$CjM$*g3%yX
ztxW*l9BItk!WMZhNwZcH2w{KL$x+tzH1Z`GER62&I0N4INaJWQaw*Iy4TvEBCMWQb
zXBnR0Xn^%;)Kx?_CISDeTeP#|+=Q)Y<}tq3x?l~#9E?7R2PJOPtv^{?5s0HPVrm1e
z(mRC8(%#PSBkgcDV@XSsIG@$ziSheYYxMgq@!>paykBV1=u0XVA%r>CP2Kysj(^59
zg0fao{txI$J-<y;_$FMm1Z9ehBa5vnW$A8RtS4-DpG5+2y99C4bHJ2a-q(N4?0g50
zVS`D+SBg4!y^g(}>oDXDgIx-_lI_7!Wa|2L`iXyNN|A0!04sMYQFCL&q^PlP=+y2B
za^Lu1U3F8lR3=QN?vlJ{OgIguJRE5?wE^+8*i0bQ>V-8rJd8$SELFG<%@X5FQID+F
z)?>T~91F9x4pvV)CMJ*0UZiiTF`dh;gNf4!x+!KY1t5q`uhW06GHq1O1OBOMrr1Fm
zdMEIqrqqs%CJ`}ktI5*uLSIW$V+)c4{zQuU>s|fk9Dahg4>8nVZ=OotdzxDEsE+I~
zHw%$Th^+Eq>Bt+^YpeeKD)U0=Wl+xM0KjJsLAa9Ds84jlkEV5e0KS)rTM=V}E7E9j
z^c+A<4c+503^?aO$oK&J;VrrA0AMp+O<S&m`%Tkmu*A*=Dbcd+72UGWJbbJ`Hy8%(
z23I8>k*?<K)MtD{BSrrG%^*L#2-7b`t@%JdKO=q_&P1olf+D6tO%6KOJeF`M(4PXv
zoTfgEar#}sb<#WPf|czUM9JAn!oL`IuJh5m33UjqVst<~by#qu($z6@?9H3wL?B^#
zPZeODKnnupH;?{meb`ZbFe*_rEqHdFZHS?{iF(u)Y3s{m=Ob)f%s{<)Y5W`K_Ysq#
zg1jOz8qkfiez!B;=+*i(2Iwfhfw-q^K4{Tt>aFv2Ty(EbdYZ66o*yKu7U`e@CC=F%
zT-Z|J4}_5<8D*+X750!fyP|ZXanFdwOSE5Nco}MErCqqzZI!qah1n#J3m_4fK&?F2
z{^_TX*G}yD5+6?#mt{;*K#RJKbFLWB`g+1kJYd{*0d9AQA)9J}oE|yXv-vNaErxM#
zgKV>`v=obH9X-dhcW1mj2;x=SfQvULh*Yg0%PR<^Ajk<}G$Nq4Pq7!>bRdjI(JjH0
z)5(_1RFh}eA8hRP{E!gQp9U@%URP_H%~9kJUT#mA+iOc9XfzL|#1QTxiKR#`OXuzh
zU*j_k64%8;6SxJhk=<7@K;OE>v|_r9kt*(N6N+|#v}E}7xRs%sukRshnZg+mk?M)3
z^eEKUg$9HpobD4o&*}Gh`dbXVI68vYK=_sPq8zcr)aZ+>*C~((K!OGUD#b~ctPqw^
ztz%y|Jsc~m7^yA{t|WY1lQ5opcI?FW;>-h?E%qP@J&>Qs!Y#7jTxDXKSQmK#Z1j3S
zIjY`4G)PrTZn3V(?)Ac=(2kJ=F4@6NNNg%p5)MgMpAEIfg@o_BiDAg6vMr8@I}A8c
zRQ);sYs-E(eEXRpm52pu`OeW-%}a1&t_NbpoOMBC$`jVLH--N_*@PoYYsuy#d|i>8
zug*_*rXFXU1Q*r<vzm;fkgpy*TQ3NW=qM?Gw^NCBk>$rJ#&mf4T{`5=9%C;xAWdf!
z$+d7&vCY-BuUW~H3@jryFdivOlbA1idiCA*k!ePuGY%Cku+Qs)LUCl?c<dFktXpEt
zI4~s;P^G?5Rt}W`RYa@x_BTBeelga}=s+DOJ|fYH*CWVltP}qV3*Xp%IE%C*2qH6O
zJDw4xXCyvYu-6kAZHd>M$81bvalwehPTY2uUG!kjDsQNul9Um`&B9Q_3eO^WJWXAg
zX#F~;=PTcLmq<83U_Bh5$*L?PS6Mxs?;bSxc%HwpmXfvXd(xm&D2i<FdoN^MS(xD2
zMVJJHKwbNuq%QG4Upz)Hx*>GHjb>T?EA%!x+1nX<GtQboD$`t37cZ{S(MO!`qR&|9
zOoBJ3Sl#8(H<z1>g+4q!xm<$X`E!K+aHJ^#!y*Tl1)c%tZ9&HizJKSd{rf!E`wX@Z
zWC1B+sD}2k&OF014rOC-GCM$k^u%RO=v_ugjSN(G0z+!h-%j~D<718pPVf9-e5Gg0
zU*_6)Xt*YqApc0usD9>N;}63LY4A^L6Bln=ou~P7(*otR*$*rpQ|oCyJM{nYA<_=<
zA+Y1~f^8C`0zGr}k=RWBnTZdb9{%BZAp`RSYM0X5ZE9R*t{S{wAN@G824BaAeToVv
zFDp|W|B}_w6n62=1{DSu@YNHq;Pk63wc~gDwWNrFR*2Z$#ldL^(kk5AESBrWKdrHA
zdIc{BhN!?^qWGYc-auR2`>bw9jNc1~g5}d9?olmrgF)_$W=pIaIHn*logQT4n`Eh3
ze_9=-J$8j-{}u2_6357<C}y(S8KtK`EAmRJQ4|0h3RQC)Yd|KJsCv)XVHsdgEa6~_
z)PzI_P~t$1yU9+N+~bW_(+5F$37!buvgu%43C;xO{N2_ZH>e}D2%*%v-UzlVFF)-o
zd*kB~i=IPWVWVR(xl_yOSrk#2^MW2YqG$V=P!`Ie8B8M>#o<bXk-xmuezPv@^0Q3?
zZWh)tp;7#f9Ccr-{Xu$|uN#(mxeQIC1-cAh9|uBxdA;2@y{oMlUaBDP&}7n8ui5tW
zh_065h5*AYSbF8N?eiO@!8<Oq%hek-j%O90?%7D*8EbhwE({9*UhdV2AKyA;V2KHQ
z)thLDx_yU!BKJ6PVyR{T2reN_@nW&lhJRo`aFX$2WnjAaA_8?C<cr{6jzXG<LgXeQ
zjMJ<yo(lVArU|S9SQ@%VMkZ*_)0y_!Kboj2YOXW)iX30U%h@m5O@H)if2-TT^3nLP
z1Xz5kJl(7I400Zx(PQ8kz(JG<Kq+TQ+@>jzE!)vsIaO$5ZK@)tNcj^z<MBVmNyj{%
zCc~BucABX+T6*BavUFq}mPtTXSRI1!XR39xtjZ@1!Y_VMv#(nGl+JK2CNG+K;HmbE
z4|`p@2%onLhswfDzWV`B(eT9KM<@|~1h*S7gk9`L?K#>R+ZHC*bDL_gB$c{jgcIA!
zk`^h-XuuhilSUw^vEsX}vu`-7=UdN$TC#m4*uwS^zpn8`9aZ1`y{j>{DwKOT2p9p=
zovivit8Xdn{`!-q39a93u7l4l)rE7qZW-z4L^bm;)ct9X>K%7>wTQQ2acn{z>yZcI
ziG1{wo<H+IGohzi>`iII6_0sTPr1yrF?@&7L2$$lBD-v4vmM=<i0o$ks!umtw^tgV
z9xS0$$jTtvC{8E`VBfdQv!We?Ca`Tm8sJ@51-n8S>|d+`l~!dxGF{kKf-WH^E5XY_
zF=4NysK<BMM^r{UT@)f-aUt3_2olNZr<f9vi|lTht_mGZOrn<Djb{7~5Jxq1j%V?J
zV`l~coQsU5<<1&`G*FpKAGLcWM%?lcM5i){ZT_k%^b%rDtvp>9Eeknj7y_$^gAxRF
zB#@b$&3CHg2khC=5!;s-v<e3laFc#ur{}0&Z?I#2Hb512+aWY9F{Uqi-2NiT(6q3D
zy@4ttQq!{~5o>>fo^WTcwVS}VawYC$w4CI{q^Oz=_K}zLyk>RizkF_1h3j*#$LIbJ
zX3aX=QEhi~0Vh0iaKdT6x>_9aZ1!Hw3-&Ad5(F}!3ceT?KpHGK>~v*+`(4k4@I^31
z3Nin>m=2V9;q>b@)?a7z%AV8x9xw`&C9EC{PYj0>nw{rz<BIaAWYUIc&qT8)tD~Cq
z5t(rkgb*vpfFC&!6mbQ=&}V-evUo<AVf~<_2pJj7M8#gChYjuH?i-`KWXoVIe`5dL
zv*(ucx<5FAe0P7Kj?_-^d6|p)ihjT5XI_Q@I=l`hLV)ri#D94E{<^pYPaSV0fDnO<
z+@l&Hon5`i+VDzfumDtT4Ax=P)v=KiWBEgjjB>ve764~eUuWpEYmF&k%uA!o)L&`(
zi5e4~c7dDW4K<CB_tfl5^^NyM$jjVCkFd$c3hRHjwdkVIEAqoc9mD>r<m3`|=(vpG
zD*1nU=!y_=8%&hewO%pzaIA0e+9Q0u&g*NGc)1TIK5pQ+?1^gCHtpQ+!fJBdQnebB
zJW(AL?)di@;R8`uFfesWg7f~yu*V8WO!w6iA9RHe(F%~~$KrqgHA#H10zdV%0`UD%
zn`!E!@9dG3uX?)Mm2A^8*wXM!i^oCGU?<!e;#s;PVKqoaNua%^KF|jA-ioOyaauMJ
z&fitxp3x_1KYs!IP;BUU<Q-L*n^XZ9!k7ilxtGVhng>zM_ybd@{KVylZqqA1iGLOB
zrNmc@1wq{hO4VJhuY54R65tVUAiy<j`N%c;wRaLKxn<lg${%3r)uAa^MrrD)=d>;a
zwV`?hE3sO#%|*7g_I57%-4gCldF|d-g8yJY7XLco0?%=`7=9wfL7-_7HnAu*wI$E<
zQ!efwrCtD$U=oT2WMN((G1K#B_J93Cmi|G%@NkbY{XolM??yv*zMGd6lay0Gc`ry7
z&L=ssS9@+9#!Ir)I20HyLLttu5KU1(I2)V(9qHpk4sx9Y@?d9i#?@3wYO)An{&1yd
zm-P9treyOuZj+B~OvSM}rhzO%3Kb=2@6m@L2+2v3M6o@}`D|vwR-`VJ>r<TjUbnIt
z=g~ob9qvwYCb;!)r#Kt0iCYG0Q5>uS<l#PigbU7fjtC~KMwCE3Y^o1ZO$a~6Wa@n|
zPQM(m??FN1B;Xucr480u!QfQ4GWX6h=jZsit;PxmXpk^*ZJ{n%X>G-P94F33Gma0$
zRsLD?KmGRmiHE`=DM<)6b?Jr9S&t;NvsUnHYN@4&Ii0&mzxd5S0sZo!atp~K$R<fo
zO_C^KcA9hT1rQ>Igw-BwmzLD*B&kWYZjiHbWx{HflPLtyO2ms5nx*c!#`)$)+eKX3
z+iHE&IA<v>HOVkGJx)ji4<o7#W0t~j(-2Wf>1>=OQO=0dSf~cB1UPPOraB~<;y6h6
zZPc^t68-E=ke7Od4{_DLmpdPy7_$|7K2JuX4FnTb7N*H-AL?87naRo%7z$&ZSCbyD
ze(2|v`V+SD;iC!JLQNFR#W~TrEfMHaC~@v<4xKEiMP7fdb9<2I9SSQ+ZK%uZowJrE
z2<M!t&q0u_>B2hCRwrMjCss4%2Y;WQB-Dldb<UdQyxwG@w_yXdGAi(E+0yL;omWn?
z1S;WR;939!^B-tt*=ZI%yJO{mckW4e3Bx^a%HGD>y==>jtaJ;2^`BEcKz}c>Tyxo#
zjZ|kw-sEIj?EBN3Jm<d<59T8)Sr|AOnItNympo3*Ehr(1XSP9sZl(@c9i(y!&2RwA
zZ~ChjV<qAXy$7l+qrCJBJ>aw0qP$cXX}cOEj!H%OWcB4%J?(<HA}Bk>$NK?&d~HI`
zB8V<EA}A@GtY&|vZywK$uCjwU<!#hAr^od-1HJG>=iwOsMkWdOP=IbK7N#h!r<@d5
zluLFdWdwrFJh6o`J}r${U6?S*>XM)Jnus{F6kD2VC3OMHZnE5W*<v$AGUc4tOJUR`
zVZeM}>SWz+mTq}_TNR$MS-Gs43r}`le>A~6Ty}2!GUt!#SZ_s2r|-@BC#aHFfkZm<
zedo=&G2X&d)I4VqL3AxkR~e58Yt=g@!x&27F^0%EK0mcgdCQ&gjj>T!Bo&ZGT9Lu#
zY<Ay~`pL5rMPz?myBEU5uhskO8uk)Ap!l%F{7(2f;Sgpg;@)L;8o~o{Z_(o{)-)CN
zlqX^^JP5e+Q<!Zztp#|H<n>BV_y=+KA{L5;4<e|Ix?#0vP=9`lkQ1*IHIc0TSn8=8
z8b27p2Y>iUeci3xBSP3`tgIZ#+4>=T;O{X9dqbt8E}rSD>;<$_u-y+TNkNZvHS9wD
z+`{-*ODPan2UaHYk%lb1Y?l6hOZ=+^0D`0?N!TSPU0r#t{`!IVS6Lb5wZZBDhZ4en
zPEpCVy6C3(dsqnv4_+g60|G*$^VCUk0=JI|wz<e~s;s>GztZ;~0iaHaxd6Gyl{E&D
z=3MA3_4>Qo|A+yN^ZX!Wz}1*PV&&|7TOYC10LF#E>P~px8a34-udAiLmJ}amf|!9i
z^F!VA5Wf=@P56aTrwkrcj%B)OFqdHz3mDxz%})zECPVFCpx?XEypeOGnwpZDNGUL=
zJ%%D;X3IC4dcN`vWkgFPO&ai=3Mv$*-JzfS%Dib*GmjKxDMQshtuxLv?-}iHY34j)
zfh>?5>8kxEJ#evU8Ocl$P~)SnT%d1V!ZlEEgVdOy0GNwJ`%`66&3%&AG(H8-97Hi#
z4GPJr2r25*cl3%!P1^`|7AQT;9d+ksJ!=ye(Y<~F`Y{jzQjfh)AHCkZM1mf2*^KnX
z@9KwSpwjT{8>_oe|KasG`Q{Dj@98=jaI^Mmn=KQwk*EX#3i@K8d_0*nRkToV-pUWD
z=I4I0H5!&R@d=4V;5VaLE__f^T36nc+e~!FT?%QUFfQAumwrtP0vP^Q6SZuoT4xE)
zi$^T9JO*jdQ+iW@`H7i2PGlDNlxaoOezQzdWLF*xg9lA3F(|2=N@1yWdd&~+E185A
z!aS_h%6IkH-??b&{B*`apd+ix-_gTEO<ah@CEr*~NK2BaB`{CiFh!mAhVJpVxzmf0
z>XUP_vRKLfhxDVra5)`l7VNkM4G)@8^_m`XySYj<ud+svUg}K3t9nZp-e#^7Zk<Y)
z$p{?`(_}T_b$!lUn$m!+e3N7ph#g>|NtTuJexO6#FioNGsm!KegQcmzzSJB3;4bVH
z=v|CCY+VXBV45Pq@fr3!rq4dvys(55Y5**Kq!|ci&%GCYrsv)2c4iX5s2jRNs-Cw&
zzacx2N`H_^fM)@3Sa5ru(jzS{vz18WuB)Q!_)<A?hE>u{`V@Imsw$I7=nM{-rWx~e
z`py5nOX|@F=jj`7Fil_#ykGVenX{?tvHAL|g*4#k$oROQ3mYU={jgPkah+)y?{91L
zPewFIRdU8|%eCfmE@be^8ks=SSg348J4rOfZ@SS!Y#(2hMWo9t-Xwh4D%t3=n3$e)
z*;Co>^Z=Js)g?8U<1A@PR+qo4IVr)cGqO4Arx{94n$Y^c*rIp3fh_YGor^vhdp@{T
z-+ndsU?56f5SSyPAQQHM3V%kg*<<7)s*Y)yN=&U&JPP~ins@b!zi}h#-8UI)u-)Cq
z*WRmZWgkNXre+V(MzW03WQr@E<7z63taGf0oTjL(Tl7`)xlYC&ZaX_b%H0!%O;t<Z
z(o23dEixQZQeYaRP=mLE%eeDXeYb>9kvTzdAHR5HX*r0=v~TpLS7_kvz6QjQJO9KW
z($oug=>a=UlZXa)CV}5mmFEFBtcwW28fABYTBWK>?srFwbT~ulCbJ5PMz*kDrq9>K
zA`M)b#4F@^#F20k?*3SFPKhkbGQ(np1FMc(ps6G*-(HL#C#O#f7@wxDyj9=&qInGa
zjLZQZ&r!R?3chql&|L_H5}zT97aGMned@jOg7}sMYB^?3;^hFA7OS-H&-&?O5}?hY
zHruHLNgb`R7(0wfiiN}tSI(_Zn>$OJ@m{$NYmcQ=@T-0|Bq58ulzd+;l)TDX%$ba2
ziv=^;cD65zmy$BT(2f4e8W=LPW~IY=%uq|hoIyj)jia%FNL#{@mz2fp`Z^ac;jT2!
z|7eov6>HBz)SR8{e6WV=QnjTLTa+-1#Xn9Q?EJKu%ci~qgaYXrV7JA>n9$pK_X*SG
zJT@|7l<%ZS|6V=%NZw1_jTl^OkR#y{jN*fxak4XewfiWyv+k1!X0Pb(aBA>tXg#t`
zfxwz-JFMd1R5`aoktJin?p*V`UU*}|Q0&r@eMEq*Tp013`_$6Fz@rx?{Oyc5HU7VB
zQDCl4wkUN0fh_@~2=3F%k3BQaG#t`g*b^x*Mb*xEo^Rvg4_IEr4%5}Lg`PK#Gd~lv
zsZ~yhMdD?t=N5P_>2vV6M5NL?t+Yy9B<j8fnx^=g+N&Y+%T~!&Z#}Ow$0k&=9!KwL
zCUcz{k-|bmn<w6`&wdbRJsI6RrRsl89aAMd2Hu;d7C)<JzGa$9+P)Xyk9!Vj5X-M{
zU+WG7>m;kW<2`4u#v7DSBAH^q5g@zBjLSou%bvFegGR&f;#@}I%QNO_3-pjJ7|)m^
zZIkM$1)iRs#GzX%F~*rtoUn@i<WWuzb}(y{_&C0|O3l?nFHD4!ia4RVI2#I{JpVdt
zy7S`)apJI$g5}@A*1=CtRV(TT6up?R8U)!zeq64G0XNAym3lr`Eb#Q|W*r)fPfik&
z!1!n<{_=#*6Y(VT1(aEihI3EE6VWjo$iLHaAoQt_XrJzmuVW{BeU+r$fZVWBuFciU
zZ;ac5D$2zoU?N06X3w*q{MHuQE}AajhWJ$NeFL%{O#FYmP0qM9-sWn0HBKsf`rAc}
zp~q6xXA_*KufVT8=-Q>4#K80GoiUHld*GKKE_JX~C^&M+#NLITmTF5HNa>(bvRoIC
zwr#HGlLT}9up5#)Z&<~89l?@nkhus*Os4{_3W=;)2m%$T(1B_kdy>n2I6;P@gNrN2
zB5msL?3#v;N#!FjG#nnG1F4ta)kChdUqD13tlhio)tG|soqw$z;{5K~S%w@KS=A=&
zt?U#)0Ot8Er)rdonHX$|gdU3#RabignT8W2;tzR=!z1NbXROwrJ!6T;^#)NwnYbTf
zNAK70GhqGT@wGI8B;esDiG@CBwDbCD34>+c#0n6}O<Go(TK>4+|7zS;geeFzCP-70
zNfiR8>UpHI^lYn^9Xo=eRj719!ZOqavj;5wBC?i8Qskg|N{~TlL6!6G(Q^h|_haO0
z#2TyLFrkRK<*-{elzEb>?5&6^%*d9h0ddRWLNR+O8P2^E5@qp~<D*uKvWFp_rtY~*
zKlX9FWQdmgtJ(wdA(q!yC!gO$hIU#Giy~P?$2u>+e)y6m)h(-YNmq*9x3|7h#(@{6
zW#c1l_*7Rs-8p;2l}Y5!Arg)5Il`GS%J!C~62+P(!ODse>1y^2XGi~7KfW9Yy1|Xr
z$Sa(ePKxpKZsOc^ICUKS^SqN29&_lvf~8N$DdG?3wsd>BxO71@2}%KPEF+16bDWN8
zkBEp_4#p|5B>^2X;D4b4A9~ULa$wAIWRTQ_7CyGD%-nYWRPmrB9+@QP4umbYXACy?
z=LsnSL;wmuq-`D;^@jbKhbE5NCWPF$OYCDwmgD5hE9|fP#VqG9DV-)63h9)tOQIl`
zdgn!Z+6Z1N{eiDa6P2nZRX0neEU*V<9NJZ=0!btkc6F7J;FL3pW7JDYC#eP`v{6#U
zlaoX+T)5F5Hz3A4T-@Q?Cpp^&#13YYD{(mnKN~j~*+R+Wd-a~H;s(>PktR}u>JT>L
z(z!b9ia6;nM0ZKVO9u~3qR;A`=j_or^hq9C+-e^=_R#*}lO(Z;yZXn20JJ1!AL3g^
zl2q)@nPeZ`-3$cytG`8@Gr<};x${wbWFEr+8tTKksXI`*6_GFeyma;6b@qK_?k~{V
zbv0iZ9|$gTj{5FS+oFlD8%|k{Cac0<FY-}N#7yG&A@%q&`<C-!w(uJ2@H}PD&$dK{
zDs|Eg_C0ItEqn~&SdhgO0;>q1#dhnq#4VV|c+it5Jc7pnMM{lcWoON@w=({ev<NoU
z01L6MNX?<T#Clzy2TBPUT-YtBDrjj;feY3RXGIiZ$P3>VwZpWHf6w#ig^6Mx6cHZ}
zwqk>Tr;1In;8*>`+X>P_q_mwh7ueXQHCt@1-~QBF-ZMxs)&waX99eAvv+nuLd7%ZE
z7*~<Q4`gS+X^?dMYkqW2zZkfinD}-oD^ji-&WMGO?VI9xVj*`x{A=hc0Fh>~U)t{Q
zTz!HOgu_AHfT**wE#zj&Oi$>^Tt4*oyqc<-=J!zy7N?B~VI5qGdI_=m+7*dWi0nhJ
z7W`pfl9QN^yEldcE$l8*mZY!;>kG+&U-0GYcKE8;d=x4AO+x%^1=Ro1{q>rKG3GK8
zze{$A1Vq=y>WglS$%m*ghU6j8R`-dfQX0xc5)C%bw@+;}KOw1ajK4`#l*vFjcafcR
zISsHHaW<&|1qX17P@Kq?1^Mn#Vn2Kz&A4=vOdSQ{6@1nm+wFPHvH3*LAm>X#crl+d
zg^W6NxBZBR8>q9-KJu9gghqU@`bGSaovVhfO&t15R6aIvS2YDbE?HIHYLEYzTd4-a
z%yFcvDKP~7mDTjZ&-Mw6WAbHUgR%`dV-%l!#*g+5y<_u%`r+q@#7L#IXr}t*4*Q?a
zWAd>r$4Kc1VRs~@W7ck{vKL-pK88Wa4^{<#mKtv)O|aH;p0U4f;)^(XhH5N$B3u{m
zeccoG!tq>}^WS`KVH6DXi@vm-Z@CJd;j8<e9hMBlm#qHjXAkSfwB@jOC$;PX+-989
za@gAHm2h3~KJU&ZWJmf3Ay5WuaI~hxy$r;`;IRxA-IEk#eg@8-qx=usrN8qt3>7d>
zfzw$g88|T;I_yi{ixoGRiJ#m>NX6u(490prc!lwAkc=X>g+f1Lm!9~hxhQAlxqc{T
zy{C#sx>)cT1h${Dm<PNez=QaY%=KakU)R^cNkLSx$bklieQH{Yd<{}sJB?aU@`7?f
zmzaInZTyl+3hmIhe8M$QZTxX@N)dC2*_HZ|KX7nSkNnj5Z~~&d@|M2#Ve^DTu{0qW
z|NW^h``omQC-1HkWFu^)Zr-e4b2~Z4*WzMtqMs5s>(95C-w)>~f))@tvAiLVdfzrz
zjUx*BR_B9wEARzwdS}x_IbA`(r8ImsHTh$G(;9QjNE{gBqNfoRQ~Ne{Iord5TU_T{
zG9%Q|J9X8U+<-AFaA2onO{t6&HRX04yV*32l$an^VzT<|35|~=BT>vDf2=$9oeNP)
zl&QS3W@?}c@-kI<GjOwW)RGgNHPhmxP4J&;KdTko949bC^~iJnxFAlV(*&GafTxU0
zPtrF6E%FR!bO?b0M3JwuR`|oX3oz`}tv~1sckw)-e3^_Q`9y=8G6MXBh4#qzI%Zeg
zy}UBdM5`nTFk9XFq-W0vuI8w+9c*qjWXFKt!xOxP!~*2>m3js2-d^r}+#Gu_7z2Qt
z-WiOM;8!u=(IgVcIIu{fmGdV$CwPgeWT}caj%6T=GcBE%4#;;e$C~T<*nDnPu+Az0
znBc%kJW0tgLMddbSH9CrpT%v>!P%7D9oD?)il3Bo<#OZAGAJ0zIJ6kGvev#6g0cL*
zAUMf*^i&78(6A{#>zw=WXVE=D!gj5$=bfTFVb1l#Iz4Zk^(^Bo6KQ#9sd0YEB$y;l
zbQTq00I#B)eK*7l<#2RMuz}>lEU9{=z6c*s|F}smEECqFAeC@$(-Br%7Y<0SPF&5A
zprt_m5;&r+D1~M)sbjx(w$HPqWC3wI(s;3`DOw=1fBQsdW(uLX6fhTx{^ADk`*gJC
z?R`8YyFJFJrBqgPyRmA8NI&vk?G++@3f3+*yIfBN%@v63`M+2n67G-_Nd$?4%$lVF
zJ)DAVaYFX;O3aW=k#4b+Z;y1=OeH3jsXj(=)$E-NV<yK!m~5Kpxo0^lRm|xF5!uXa
z8Sy)>@+77m>Rn{!SO{6yyO297Nc0umlVwRr`!dgGCnpRnslY;6@wcb>=<ff0C<ER3
zPzGaMpcb60siuvJQNYSsney=7k9c6dn>$^PhIeLWb-q)khagz69wdb&oWVid$?DRb
zp1q&pGs-Dz<PHX_PzN~Z@cp>-`Y!!O23{GUw#<Vm8-sJhz=mDvv}rz$_yJ|HOdwjI
z9+b<HyFJIxj(;_evQ=(zg4-JPck|;V0!OMcA~lDo4eH=~{on_&{gGXzcy*HqFJlG+
zc+&J(hI4<<xc=e>Q#uNu(CnEs$)jjE-T5sGcRyL&L{bcZR$%Y(mrw)JGLz&8q?Ns#
zx(`gPn*yn?LBB;86OPSRl_Ab&YiL5lo5EQnos+zfgfdr+PdHZ}pKvwEo|jscm|2wB
zP-^!=t7crx!5y6~v7q+jook0!=7UUatEMDQ7jgN(s`oCv=lxhOAws2+COF=Su|CAn
z*vWNrraF-%K<KzMowYXJ$LEoy!WT#w5I^FJak}G4JV~(Y&eA<881(5FJkFr2OrMLX
zBiaO|U&;vMdZenzRn9+W;#&y@*p6LdY*Ww}#<2Gyo!tve;-FWbmP7`sTG8OFTbl51
zgbB~E6Je6f0p7z3Av$Nw?B5HW>vr>g;Q%zX`=li+BPp3@9re63_Q&``{V<dciqXY4
zB))nGO+CX9zfaq(Z}!L4VY7RsfC-dO_|pU@KC}sDN#(E6EiFxAu|kjJD@tb#nDK4m
z0Wgc$Hg$(hff$MLk!3KoX`e*Mvs75$fs4ly;v@1WHge-Wsn5YK85241;Y@SA>(}s|
z)$?Hk-^k-?x+>b&NCdzH6Xm$e52t&wE935^OC|dxtixkae|YAXduH^Em+O=z6#dQl
zMcJxgmgl7qa5Y{^-3(YLl5TMAaRWSWp(yAd90;MwXUZY)A#np1zD;PdtJaM$A^-a+
za-hnNz5~B5HC@JV!G2=LNQ&2ee-7x^m&*qqklFbFpLAD{*nELCQ<9|wTTO#*`96L%
zK(WilXv6Lh+9?&(Qq;IUp2u$<w2b{UzA;!SbcGCP6j+w$<vTa``4=Z7i#0eX#yMqX
z!UT-<ijLMsLLjO<&-V3AyaEIcYpy=fB34=|1L*m{i6~E$5INK@;0?$CG7a+z^qhn^
z;qrJppkR{<0Q&<i&dKu6>F_cj#Vl1I32l{(7x76BZF)ujv;x!+?+)+;;~yE0)NZ>u
zp_0$#yn;vcm^rj#PV#9Th%7TDZ>-ZdH-P&=xTtHHk|c$4Fl5;gB3Qu3t=@@}8c^b!
z+y>(xd|J+i2WFplBhM8ULoM(m>m1-iaFJ{=Sk|U7Bp586WEaUESaGhC0e`|EN&@r}
zkx0to*IBPRg=GdhDya7Zk2VO|O7JSlSV~qYpXp!T2SMUt5>S(Gl@oR_>K>jKzlz~g
z>f(I8t!LsY?3+BQ5CXv<73Cl~l+fqT>yGfmPE3<X4GKyyO~AKKO!Hq&QoJBlJ#(ra
zb77(+#Zg>APRxbDB^@Fuh-JBZk@IGo=de9Y9s#`5Kb$+$ZE-F~1mxTfkQ57xGC$Pw
z%Jt}Zacw#3kGwD`DaV)Xd%*MX8Hu8J${=Q-|1(o9(4SLo^>AvkTpl5YFWN3O%|d^#
zxZHD34%aztf)JIFw~gYvSS+!*H+#PQ2_1G=?hQJ-GxtU?Eg~CDtrD)lGmz>~f&HG5
zv5-lqU$?z+3ghCF@Es1Ag*)hp^AHr2GC^KnH9ipVFn|g)kNg^YJFo=uSsakB=rl>g
zrd(Q|Qu}K#7_-o}ueY-jVnFU#05FkQ)Yw{bj#74`Q+Nhp{tP~OiXme)V~@bVU6AEu
zk3WnolbR%nGM`L!7A;M<l!aK{O!|bHzeE>(Zw$aLiBG@atzHr3_-FiU7YhAkLbUTG
z*Ci&wc|PrJl~T`~44`z^I-1tUxuDeC)>UXp9!CZBDCgN3CYWoYuM#coif$jsX_L|f
z{od1kHpU-TZ<3XM?3Mb=$#H@K46m>4%!Nv4p0d<ib3GILFo#G#Bw`B%5G3G4q~5|U
zxToB+qrkw4AR4fxFk6#^VDw6abHwj-61@ao+HQ)I!fTO4;Pg?>hs(fA&8c;02X;N@
zK&2{uy&f<nZZP{_sjL<Hi<KZ(!1{(X2Tmh(ADEmUXX+<6@hd4F`TG5O`WF7C)CEjq
zPC%3j(G`pJKXV`n5mA<L1KonUpRDdaMK7NbTSS2r1Mep_@ZLs$Qq}PUI|Xp86x;zP
zWo!Y-+U9qqQrO4^BU(r5+&cH7oNZZeel4uz?mm6rI2xpinG{d@MjUpqS>}Gjd3yPJ
zNJNl8<g}Pf_94WFzWU2H^Pn+}yRg9It&-4u%c**5fFBFwOimS*{wkAbmLg?HdXA^W
z-fGgZ7n`3HlaER|gVZzS`oeY{0$GU<%f~_SHJfTvt-IRkia?YYi%Tc!$|deg@tsHw
zPxA9CDIk>8N@Zep5J4vP_M%C8<Q(&cd|pifC44!;=|ubI>x9e90|+z+@TB=j`pszl
zT%?D0eUFs?G#w}Eb|H_Ha+mwZ==z)8&LJ0gbCo}daxxM#B59d-#+B<6F6#Wj)JZ64
zf0OiXDzRI4kdaY4N9)t8%t(5DoL^B{V@5g6oVD|rt=Bfu26QD~CM0d{xNM^C{S0I<
zsks6PO9(aGi9>0MCvLh=Klx+q`%DJ`^8z`=2(MMG-yMJBuL<M0%2DgT#DCMbPf@On
zDfyv+&fGJKb1~;xJ)Gnfyb{<A(Igd^!1n}>SLvnt@@AGECV|No<ty=>x#j2t{oc&D
zl{{NuX$o<Vh^pD?2$7A&SXb93vjI008yE#6A8=K)({tA$9wyB5lui$G3u+*@3K}$C
z0f$TtwQEa&Es<IQPAtTxN9IFRXXo7hz1~q_ZxySBT2)3nK}w+y56{q>FD8H^An84^
zo~*T6Y+Op}f`yy8%^?9VS)Kfo_PuL{9W1=wjJcW}s^czUV1cs?zRuB{2*UGr+wtqn
zcbD%XXonjvVQtptxfyzTIt_5*f~38GIm$r>grwQ0nWsAsZZyMaHYB2|iWN&Bh-I_t
z6#ZZc_wgEb<}QiL(4p-0`t*rrt|1@G5|iqD>YrBq9Q%y9CdmhfhTvPW+H#{_akBej
zeo7*I=Sz2;;#{`Dox1=U+kCBB5v7L|#J$4En8Su$qWY&H(Lc|R5h+O^(3A<Puawj&
zRN@#@ns=~K2ts2(10^H!%I?wq=M(S2fM)xE`+_X<d$l;yIsYHSR`%|#lX4OWa>ERs
zlJB{$*svT6_fMq?J)bE68ic@{8F8!8!eZ<-1ttZINr!E~ei{9_^F_i5|4*Z^J>TBw
zEFN&eaLhuo0Z`g)b=&EK5bE-e8u0yk>=mexlD`t*bZQ(@NrgVS+&S}9yl|9_?~s&v
zq<yS*E<O*AsNiSy?f3&2sRUHe%a5$kjd#U)hZDczs!;rDD3_C8nxXzW-+6jrtVA3n
z1Fpefbl8r4uF<b8BIGL7l^g4}^CZeOpg*Yh_@pQQBOGpGhL|h3qv;l!aoQ5kzF*_(
z7|JrKZN!&Dq+ar={m1zR?k?KfrJ{g(ETX{U3q3;@#}8$&OEC!8k0uE+{9DJ{69a?o
z7{Ip#jY$(%zQyNhSj=<K1cX;4ft_7SedHW<qcz~0(tkVosW4Jg)mJk;Ut|~qr~E(&
z5&Ndg$;U_FNaWg}Flr3Bbx6IZ_jvQ}aoZ(t9Oy>c4A<eM^F8-YI3ye|Sdi-?3}r$}
z#omJ)2@;d6hVF50on(4+7^|G!+Q}-1zId=sW~#+lcUFmFM9DNW9DuAWgA8rH-*few
zW~dKs0Fvlzzy{2l($dP<L8VAh#~ka~8Dw>ecSm5ILBcl5P~ShNSMH75LMT$HwKv$W
zo~*Y3Gme76E5))}5J?ST_Q?I#7DN&(X{uexfsbm|BX&!%CFJjdc7#+ddE@Hy2EFnb
zeAh0MJDtpSkgao^Wm63=9qWg5T__WT?NinILTBhKYc+l|kCjttQH<22M3U_GdWNl`
z1=EFW2x^wso2We`Iyp3^o8t*v;aSaJxs!arOs*yd&U@IIFlEqS){IhD-le~LGcKPr
zK0*`V0m(*)yndwK5eFcSUytL_#9QH2$pMFVgzNm!*i3Ax(fAQ!`wNB;|DJWz#Rkvn
zD#1x;3u~rNi}OGz=A4X2WqW7LJC!&q!;+Kf47oZ%I0`_bWN*1WCtT0RjH!15zs0S_
z0WWJK;)s;V;c+Qy<2%mn*Vx|iaQ`Yr0ZAe2vp^*??)OYDh^=IQmJro!nzUaM!+B1(
zJN1x$3CqogKD*JLQ64iG38B<`%k|tHaoz%nn^nwrcAXw8apY0pcWva;;W!9<Q<36)
za8lw{ZYai9Ah0dH&h6=(6`#131#=d#6cv53;E*NcIcq1l>EN%i5a@4sALk*Piy)FM
zlVIKewKH-LpWs|p#Z@7+xAA0203)AekW(s*c0e<VNc!vBnwtp2Ar%<MOTX7I=bDF?
zwNw#qprjWuzt4L+o8uA%b}b1^Ve2DBDSM^XjCE!g$N70YP6VgF!Yx&+<~e6f0py`_
z1>hbLK{g)t?Hf1f7msIY9(ox7(7k+^#{`_4+37JIew|23=k>$HKT0cI_2}>1bEGX0
zq#ScsTP=ieD6^n-*T*>x??6Py=-btfv&~1c<@Y7)w?|Rh`4Fd_bp(LAG~byOk+22X
zI=m`iPHsXOC99-O_S#DmS5qac97{&jzqpY|x3`{ia?U}un?MRqD2A!=j*t0N&p83+
zO;;)bt1Y9`wm1|=!qFx8cwM~{wbbMWjTIRHe@24OZw~XUY|{T$8YIFhZ8`cJ*LOKg
zo!|>;XT^DkIoQIxd-Ysr1KA{uUjbp)Dgti?ASRO&0{nN*5kqZh8`T8QN^oNV(9ZkY
zsXEPEE}cZ&NWK^ulM3Sf-Y3r30XVY^1un{@HbWTYY+H-m%br(zPDg-?qJicFww04&
zAxmy~#&iD`gd$lWQ;>2}9wC0Pr`xkebmxlFYudrgq^F4HIKIU5@dZX2=Yb@3*7!>`
zk<wW+J$GasL~TgcIY5NRVh{kZY05qX7JllI7SGDlcnWsH_Ew`-v4ztG)W7?G&Uw@R
zqv0|wdgp35iS-h;uBS^xFf7q*Wu9>_n_CXKjyvLB_ns;E<V7DlEmy>NOK`%0kO@nn
zUGhsAiJB?S&+}p>!<b|9@;yC%BU=D(JTS@dJgq`bO)&Wj#ly4J*o&M^V@Mnj#;@OJ
zN=ll{T2(fZIeGL<=g!k&y{t9r7`c^!sKuY65=xzuB7sTe4c})wRTqK;XR1<yYit7H
zu&(XrB%V$-1=6`5a(ZI}a3qU*=Sb%b$0S)$M63-zjN}*?Qi)F1Fs@>E@Bqwmp=WSC
zKE>Ho6c@!77!zpn0mPu|vypu7gbCS5*nl|RbuA4N-Y}8&=WJ)&0|qJ}H_yaa$<ZXm
zCrkCKvSWLL706MQKz-Atv@A<2Cy5$->e}<|p}k_nSRO}RO-_f{uAko!>zyFgQREmQ
zRi4X@@15@)u?1!ZW(nyM6iHV3ULq%FJ4v%*y+u+{<d<Tn>?p<^T2U+3sTwtoipyts
zqBg{s64Ipcnz{xhX=>huPT08ELxl|@0$a$Xz#Mv=01dd53+D)kTi#Apm`VY0rC>~s
zTD8bIb19DczgqCZpI+oFq2+)YCaz3WcFj3XbudAyg66i8TunlL@1Qm56I14MB)+y<
zUSw5~GsfDK<oYUz5n>;vP<bs!{rQ6PSevmO%KdGeBmn}}2uGfb08aD+^Xuy*o@N4u
z#Q}f2m=?m!cx;va=^n1i1EsQ3C)L&@3|z2KM@s}1icJ8Dzwq6GOC@9K;XCx@57L5J
zj+rGS@fHbvVir(ZXq_A498a!TXE4*k<s+!nKn#uzO~7}fgkQ5z9>$WFNGnkapc7;?
z>uJIZ`lPYu2T;7L{!P*+UIGz+-3aq~2w3D+m|LM?nADgqPA|zGU9nW$!4&oA2K}o`
z_k}o82g^|sIa=BQO0hK4-w{MtK8T`qgsrPO8PXY8YPY_lr|qJR4IsJ%=>($7Hrw#N
z-rHdA@v`FReWQ<#2(*ts0sGf5wc%p<WPnU%C6Iws_1s%7xnB}3$YyKlf{TP|B$)#Y
z_xtbZ(~mZw5(uS`n`AC!5WT{XKcw=M*f4o}YdDrBl{1<s#e9|1V^^GaG&<c>;};8<
zN+UI@q8wqc&e<>uVS>dbE4{opUF|D#J~%&i70_OR0E@EbNO=S*BqHqBi%Sz%p^e7z
z)s=op10@k9Lv5R`Lv8{?6{-a5fwW4oP97VkAM*ScK9vMMml7&BAdXJc$DIt4iO3Q^
zuv(~~n79_hxjbgTbJ0du9OAA(3eG;nT`6ydj9G7>Fbs9UI=_G16Crpe+UH=1FeS@E
zaJZS7{|{Q7%o=miYKeoE6M1Vk+++e=Q0l6k=-u%LYL+pnre+!X#I0E-+Pa98rs|+c
zMNCdjl4?uWOmV(>EJ2Q}AsvOI1Es7o-UO%udo1Szr}cLHKvB2#{$^m0K_QL`qs&<f
zYoKlt$9;&zU<^)LtIz7i#N$%2lz>ACx3W`B&<U)ZFO}da3Z;<)uLyu()*0gXz(}WI
zvWY)S<=>`Ys|jjzJVbpELRfaHu(Wr4Ed|jI4S_)u!x^lJcH(9xtY!_2Y?;LB#;>MA
zC}nAioG(*s;ma1wd3Y=gj7=7{Ul%MeYzuN5%*MmPN>gzkNIHY?dkcLHViM6gs?^KG
z{(8lLsDX*n^fAFmyuW(k|AH-JiClgAfYXorf7?<z+g4%2l|!rmR1?$Kc~DzF6O|Lj
zqUaoVoI&~M=2q>m1pg<8z8VXq-GW>$zz<BJG<D1>my!X5E~z9^_e%0<a^GPCr*h^J
z1RMMUdP^$9hKso<m3$l9-6W`N*r=-aGkTDln}v#oA}*=Y!(Na%F)S64WL>F7VDm|z
z>JDMG$apk1A0X6_*)0JHYXMF8RIbQ%Bjf~Z<Q>b4%w3dYMnakKMcAZC&A1j3Hh4dh
z<s%|f1i~nio=E5;6K$iu=o0r%4sfVzhF0npm7@eks?5&2vrQ}cG}t00(*a;NRjqqR
zpWS3ypbt~0hujd;9U9X`4n??)UVjbw9zN72kw(mh_4@P6xeHzjrv!E}RwN-4mi1zx
zr9e9m2)tsxfKp*F2Jg^il4*klT*nkxu;nGu3y2WtjKJtycj^(3oAzSHQZi9k`Q-Ja
zs55TTcS(kmP(2T1xp4@x+A>d1l(Z8ex1sAK?_TIMYqsj|@8B}oD7@bAd%A?I*H5(u
z5bG3?_)Fg6N5o(-7<d=tM!6Z?vU-?#nIx<X2Og~NOl0B!nGBVFqaG@0a=6rz!3#*#
zRlH9M9wxl5FOytDyhKSe@)@yD)xRtl3q97lYX$1M$<;IbBDgoH>Xdu*F(30xF%?^C
z$eJ^y4M|xrDQ6omFgo1}sgCdnOBZHsh8p&feq|^P>;np*F=v!n#lgu^;XmlYHF1*p
zobLm5s`61#MvY@d*3EF<^u%1uTR@5Atlg%2tlnQ)-h7i@EdFdhNcg4A&Z^5}z4^H6
zEe)b3iaB*9`&lP3B3A5R3dj|DM%`m<_u>G~Mx!WoqE6{*U7Tn3{ib2u_UThNz9<9S
zB~676@I1E~0gZ_(QH;G3i2~e#OFPSR?02T&kZgYh#-a7$4rw6+Ca1Fwz@Zix$_nxO
zU(1XPuFS4rxm&Z6Tx1iO;}{*n9^X5wHXjz5ONQ2#(`m{{2o9*VHAt0G!p@YdT<V!~
z0a*=1SPxD^8r$-__jTW4@j?(p@XCpbjlT-*PB3cDZANHvAT*Bg$94APT8^#B!B&RF
z1?Nc2<y35`BsolK<T-Y)*cj0)WnjiIc|c^7r1ai*HO}ru3AHHU!oAh#0oLu{;RCu2
zh!*UbAPrBc66l!_4B7mD=;q6To?QqNXC42|rSqTAp*P(Rbb#t;;Upk|AX7Wb4;<$5
zLVQ3qKAz{y3{Qw6gwAQRAgXj!PEyPM(~h<vpk@Q<5HfJ<1_=M|fp_fz38rko=pd)u
z5vw+bpqw++Ir#$ua<CD$V<(vWtldPZiQ2SG!G%D@obaCB^P2HP$B>Z^{(%}6uacQd
z+2}N;+rnTONjL`9KQ<Nol;=YU>0#ryL6#8iQfD^6EnerLQxaY+Vt!!3VDuQXM9sZP
zpR@&)caW!%o+PKW9dn`c`;(MwBn*t}Qfc_1FdYO>?vZVuDsog(($FI89YQ7<lC8Jp
zShKN*Bh|VDy{OM+>-9PBnHz@lm6Qui6WKrWeJ%-Iq8^tCvz7{n>Was7hwv1$F{cIA
z#oEh+(Wzcrq3`~mxjv$<MUwW|yPKZT|NI)~V?X0WkuDF?XH^6nh{NE0k=2)_)?TLV
zFXMfP;DQ!%mRbqJFr=*2=PuEqLNk!aA*Q31=OYeiR+LDn@CN7N2f&vJ=GKv$Xcb5%
zBwkFGT7Rehp(E}P&Rq#$*TxFxs)oZ{p=3&M!@f5WY(WSsgd43Q-?WmZSTp%Ib;BAd
zJtJDCQ593Xg4p^^VNS-BxYt+;RPA(AwkRnq&i6Yz^yz0AZnjcmewJhg??{m{dmeP=
zr^L#cOocek43~(a(g|tm`E#5L3S$r3pu(4}c+4~ZyhOPS?UXtI{MtPTwrz!H`}{=l
zUMV0+nN3uLm}Ir7j<-DS7Dn33QU<{EDQ_`H?)_?gza(BRW0zUQ0b=vTMY-y(pRKu%
z61<g^y(+LIgfK@RsYmbCziu|B5LtpIrBx^a_UCS5Ct}rA@6%``Fiy}$z4^K1AQ^=v
zIl1m2NnvnR|GM5i*DRw$`LTzyRf}<TI<t<`BzF}@>JOJAJK6`^P5dX)?o!p1b^2Lh
zjp9X8$F^&=LJUh0_l(RtX#(dBOolNjY124e8EV!ReWkcL$Qnt;oQ9Lc3{rC_UH!3I
z1Byx$S%f^VvWARyeDq97czu0^9{sx+1&k555$lhz3SUJr+b6Eznbb`S_|c?_l#f)k
z@g+T6Qci*30_+)%F8~gHRDT=EHNjC^pcr8qkd|CX=u|wX&Xjv8V22wQexvyz4kkSm
zmIu!~Wxd|#rqdexh%O2n*Ob43jf-NEM^gZxGnX7jcBZ=K6P<Rg=|^F(p&CC6_gCIZ
z4%~Ev4(@j*`&stq%rbt)n33G&4l_&(x!u&F6-Zc^wOHfCAym%)(RJQ&RhI7`ztu`M
zn8r~!z%!03BiW;}WC_Yrz-{FL4nt<Z5yAGbWo5RfEt^)hGb?Raw(V=BmX?&2+B92^
z>i53x0}9sf)gQ_8oM+wRnxE@)ZLvO(^78~NgmPlk*i7j_@zttZt<Qu}H$kYD5X~4J
z@~{$tAj`8bx-t8gSoccZKKEp%c^~~a7%Oo%KkJ$8N!V{arX~SyzONf{o!jE3ShlBL
z*mvr!FZAs+-2lOCMsQ_UPr)kDtDgI?oIoK53dMj_g*R4<DcG}g@T^(wA6YL6@2{8(
z-Ui=jVM?)AuuZ9MD$Iig0m~EaL@)qZ^%xY{MMO>3+-)y!BL>6fXSQJ?$(qLCUD;xP
ziZe=|9T6b1Uvp;Abw0`dYHvj0M3LiS?PwuVh<2TMm;Gr>q$ps@{)GS;C!B;U{>baU
zSm)<q2uZjJcb)`x4RI^7P7<WP@?jv%6rBJ?m&#@k$Y8xf>ufNTN1&^SJ!fsO?=I1t
z8>O8jj_8TNdr24)d9ioB_0=j3V#;cD&+DSB3w(h3-+k7Maox}+{Sj64Z6mcUXOq;X
zd#z2-)8Ih)*kj0>pbK@Zy_8X$>IF&%s^Ki9ri>qP#|MMuAeE-IZVB|9w|DsPs=>Yj
z0IFCC;3M_<dOvH@M-h_N;GXpY5l)U3V$zC}?G3kUp-<n&O6g4q?n4yGRWt2dUf@Kp
zz_#=#1FM~B+hPBX88gvCEIUeK#=S0yr%o$beUN2`4f*#82)SH#>zrtTZ<jK~viq^<
zAtC*C_&9@lTuBmpq=uh7)$yO$?;UW~b2q70g3FTaEAP2H-r6&l)kRJZ2a)Wnq>Px}
zF%Md?ek3JH62VneQGqdn)<LD5VU679>}?4`t<SphDW=}X@n%ue-N&({a^X>Jtn93z
zoE7gG`%G12TUSmvqDWJy21*+3ycNABkXglz8E&tLG!6r9vBud`Yx-NSKG;W3O4VHI
zA;T0NDl%EHHc7ft8#(y<YR*r#J3|N6k;dd7rRlubTl9GqoXaUgT|Z=-tI*9bjtRGi
z(5_%&psthEzN4-8pS4zDvr?l9**2G9sR|YLGdu0BTSgsu1|X;U_#1o84f;$*V<*l*
z6R;IVLPzt_>QWTH`)JooH;o#DrK&v`P=lf%*lI~C@_8#`hfZCUc(iMforBs4zSMsD
zq{!1)+Vp2@Kw+w57P(GO!5)-S-=;P!NX)cU3iIOBf@1r|1<@i3G6i|T9xf`P`o7to
z36_SQo0+>PMj~{ZpsN|OKclFQ<Je1X;}FtEsj8jUy{}WNBA_C1AvM}qoZ*ZXpS#&>
z;mCqQIs+H15_2mJ3y3(%_Xp5d8e`DbNX1+V+(_!92d$ri(eVNeY;0_&QVO+1ccvBA
zsmq;GfJj{xP!HL0vgdGE8`{m4fmF|7N)i6XFT-eO(p5>6S(OnX#Q<3~kW2~36{%qE
z+t1!0we3<hT}ekTpbDwU!q&9<fK(5Nc`i&USUZyNXSmc@`<c~1Mo8n-xGTx9V(LRg
zB0=_jN4v^mhYNHGwien_LW_sGedQX<bz7ta!ONge#FNm&CXw(IwUB~{g^@Z?b{M>l
zsin(tB`*)^GjcfP4O0C@6{E-ey-HUKl|dOH-Z3Pe?CB3aG81ngJxh?Kp&1%e_Ajjn
z)73+dn!he)189SlN(UbflH`%ZGe10F|24`?1!JJ`vTiJ^X1P!oRZJLT54=EEJ<LLK
zFe)@#Hc-}I9&0DPq2pbkg0WGO`E`PN$gn?~$5G;T#5b@qU_ihHiL^t%(DxAW2fwz?
zr(;`p4zU;C!U-~x@C~&Al@rbal*6*)?ZEZ=3MK=lNgXgNrZXTR1YAu9W|Vz!nf^gZ
zQzxDEum>kMRT{LgYyg@GJ0YACg2fx=XTxkFvpuZ?EEdKC41N-FL*=`_w5Hv!*OY{M
zfi_C~bnU%X%ssk3bQ+4EHuC~`<j0YhS#$2-xUiW~?uhnn)f8E5Pm=CpS#;iN4LF}F
z(|ECwboc;Kn5-fmw!Q<l$E~w5I3;Kzu-iADu&Ot)%+clqjrFf7{nNZ7lymujh2Zzl
z)$`>6NJ4qzuTOV<(DdJDxzpjZz3>l71}>ow{~#ck*Fj#?!AZtIN*%CT({K1Sq@0<$
z$t@lAUdSilieYgt9&1<DkaQ-;U5g$ByCiwrv`?)h2ckGh&8oyau5;5j37LnRCw|1_
zsrJU{(b6DO%mc!#Qjd!C#WlU-I_>Ap!rAe33UD@AS5o{{Wq<Qh^eRcfxa&O#QMzY<
z#YRr5A$Jb{>aO7u{*VZr@YSlxIf&CsS|wvv$krlH)Y#A@8I;UY2EDx04i1SFimlSR
zuUiB_DfAynx4W|KC_$A0DMonVtLn7b>b+LbhuTr0;~SMibi~Atx$<V0XJ538QyKXX
zA^P+|5ue=bx+@A~w}2`;2=qt>Ft&bYYix5<?E*xL0Nox6v!8k+Qq*alP`nuAK19`$
z(MwVn{b@h<tn<jq1A!WKb6cQ9rhUy4RITT_Hhcnto(&{dV^s98d>ux=Cmx2+^R=14
z$&mm)K1As&5ptWW3dRc-nXj`fsfQl4J>nL)F94WwZym`-%6`<rLBmgcSYz`68+Es0
zL)@Hro2xCH`UY;ocjzYXLUq6!`<lE9?HzrE=Zoeeq(E#-h1>SG4&!y6k>@5^!Da@_
zE;u1-cq6@dk>XjSnSg}<W#qMVRnplQ8cy*uxBg;1*#W*qq&r@*QkTDDrT@tRi79q7
z2ZD#CCeDAbUEdOO5)z=a?a%oFvtrD`T`wJ_=NLG=j6DLE2JX0>5%$TS0;D8%?rGfJ
zMuM33&5Y*`Ysok?7mC}{+E`m3+dyL&7K{(dcwL}9>d8ncvw_^D1-3)@8W71Wg|t{f
z3O4!KW4_b2Tu)bu_}Fx;v1?oGJrDMw2O!JNH}?d;D0L(7j$UD4upq=-9MaEq!8i;I
zLOD&Xnj`}@U~bi8C6SS!YE1Yiv`r$VI$!R$_j}BJya%{XAZAcpsTphSyWfwHR?MYx
z48Kcd<$-az(LU;^$k*AnnO&migwunuKK5N})wt*j*{@|CZ7{Po(#i`6D1RG!?eqH)
zhoTI~TZcU(b!md_Au0Zu_3)3;g8Bh;P4OGho+Ma(h(d-~^+O^LuQjO{?cur;8-?P;
z2HM<9TvVLcyM7sd^$M1ze6UDD$v-_fU_^cqC;?HgLb)P<F*^HFPw>0z(U+X^I{7t_
z3K9V#GNv*<w9Y&_Mv~FpmG<xkkfvri`r6=1fGxkK3I0fc8M0o3Kexgz)bX#L`AQ^s
zm!Rxs`;|wdFGHOYa7AZefHYK6^@IBU?mp|QPZ5f^r2nd9Ksos;8N?!*IbUM+(##0~
zaN0Lk%&XuiB~4y0(Pu;%&aWyNV{hA}kLP&_X2EBO<Hk9OTwZ^o{lqK!9FZ~F7OCyS
z?VbI)(V;jNEM*mwVt@KQ;Fn&IF!cE4bL@BOS%y7F<Kf*Psdl<Ox4F+Eq>LLI+P9))
z3lapB43yxx5~aHD<^9&1g=|jl<L!hy9SuO#OX?cG+GJgr${9oxMOi3qvd#vxarAoY
zoe}zYCSFxz7rNP?kP#b~8a95yD!u+~>sBLLYIB4!5aB8YYCx0q#6eyAmB}ol>NQ9H
zx24uq&v7)JEDx@>CMSXo4w!U`wPq71SiaEtN~~7bJ6~9BCHO_VnPnRF?lXT$j}~%Q
zeMeu;P1pvBt{*2&e5BY4IodXoL3bM&#$-N_xt8_LrVIMeocyAXat3IqRI(DpL!|H?
zl1<|-*G{v}dX$na9A2spy!bc0e!+MrsVApfQSu9EJ%<Zb-{|#iR%xmB?FMtm?fU*%
zZtWxj<K?E$%(jkw!FP#t_G)lfSJz4p3tox`ef+jr^DG_}l}hm7phBfvv%2{^^QL?B
zQQD%w$>b(O4y2gV`j+?YGT*$FCy4}TG>{A}6h!Iw5!M){MdM`89B+~vs25#NPL;r=
zr2Bw;r6tQFep+q{0S{;47p)*pi!+BQz{G5N$aMaw&y;wZ;1c5Z7?>|VYJUA02?ZL!
z?~q)vhN{LV7=+!gxzTm;W0)z37}h$)MDe<4qGE;XDx2C~a@L+omW#}_ROn)?+rL=p
zf9TTP%z7`TgVd8@xumG?_6j|u!0O6cAf%kHVR(dhKwUPCwEJ&im-fLH6Cn3ti;q;c
zLNDS|wyW5yld+mfC}Gpk>ua*>;vn513whP)p_&l`KQ;k`OjDfw*i5aKN*QtZKN+iD
z@=%OH)<vV66%II3{jkKUYICk)iZy36Mxf6pphkn~+_1@Bd)@I{@a;3|Jq^MTtSVnH
zul+IRB7~GQ7$%uXM3ydZfNlfqKhJbt#3CpA)hZSFoFO_wAo6HCs+RH&Vaur1$t@DX
z493EHt(`Yg+YPfc;2mGI5rN4DpV{BOYE;x|tkB8s+B)ezs8*iox-30LU@Af^22_j|
zx)3woWjiXFHJlb*-&C#fxil;`klfcD<ua;udb*^8_%Sn=NT328`^aE>&r0M_D)OVe
zf<7YpIGM{KcK$Q^_$=JwR$Yk76{wJf$Jxy*qkEDvBq1>eAr(kh?^c+%dNr#85$j>r
zeP2doF=-RaYq=}@TxjmP8uO8dB86$IU>E#Yni`wQB3A)1<n!;Np@dkd7IVl$kqc>Z
z^ve^bd7ukd2_K`Di>R*@DsD<;cbF6FBLyKllS*sC;fEozafED6bGd$a)>Sw`SldYW
z(fHV-re`zbRJNWxj}#np@9VXam5Cg<qsgWSpdK|ODGta+foPKv=bcwvYrZ^zNRALN
zX(%G)atS2G-h0(Py8sD=rH5fkx`enG9Tio3igmMpl(w&01lA+gavEtabx*jx;#fmC
zl?aq}^JcQM5|sbb*6MYdRH+mS5nOz=-`Z3L{jeBGEg;JqcSsmFS@^XdTjT;Tc{u8Y
zVD2fR5KUXwf!+ssN;ra5=_7LyrxfgbOWTfmSYBz7Y7l2xe1mKE6spd!p?-&EUYbzg
z0451soK&{<V}B>*?z@JU6e7Iq&U3vuQsc#oASS>HN(5Pws0Ll^T6c=BrOKbbqtPqu
z2Z#$~-W*qYCjv&>tgST&8KeTBK+>zJm$?@1*M1NdADRU3h!kqfY*)@%`e<3p*YgD!
zBF7WdeY0Fs=Ie#cwx_Tii3FprjK)Ym*Vz~9x6P3p4w6z>(3$-n7W5Q^o3L0)aEuyR
z1I6n@y^Eibi@PGUn4Hr9y?yt)t{6c{EXV<Z{TyWs)6}fTTqosX#`FdT!*v4lZH#^U
zJFrn9KryP?g{MKoi;sWZddsWT28c~oD})W0>5bOdSNqh}#Y0pN`9+gG^g-4=wzZeY
zRRS~)@oIB`_2^_B9iS0M1$jv1Dc}$y6>7bC<2%F$kjyQf`Mc^ph%QP!!F)Q+C!rqU
z-6u#5Sc~R5q18Z~8hNc5HUu2FkLbk^BX%C~a1hIU1D)j;mk#@!wUXW9?X00wAoEIR
zWA3x<OKU_zH)lAA@OElcW8t+>k4M;BE{r}6NrhuK&#Tmi2G@%i)Wi&WFyisRY?IUz
z^X<f-BaWw_Jg#rIAMzc~cjNj~NyoC_)^Y02PJ8S>kPu3a1fZfJz47GJ6VnXzLg#Ml
z#~FIVu?)2OWXnOvm8>p0&I-<s%Hk`sa6dr8g0E)JVTo_sY$mVOL9XuleX7plB#A%s
zqsV%`f3lm92r`d)Qd)@2v^vJ?)zlm8#CA#Q20I-Ac!n1-Ni{j```^|iewe?!EIb$#
z_NcQ1?Y8o0i6Bj=r_^AVgphc|YgbzjUa8+lh-9c3mh_+|kqg;mE%-*C$pXjS)Di1x
zjBNlBDnu^KBk%hAHf!`R*pY|Rt(0bBrtEF7p99WJ#-+?F0Zg%)X@Kye-IU~W_2C31
zdm=g!Yj)%~+iZ-MsAsM$@^ZF5$U+Gv+_cwRx7=EVFeaFTT4A?h&>$0r^><Y-CG*`|
zQ47+>r>F%nok=PI-dQf8o>O>9Cl9edIWu|{n>VMvwo^w>DcRv8_FiuveNW;M#l8#}
zGOFxUYoQm=cW-ZslJ7&dZ?_*r<)~1KWD+}d&j)`cP$zzs^r_`O1*?`k2s2tCvzkr_
z3B1FaF6%6JADbFf2vXB$Qx{H<;1y8_-KTAGF#~h*N%r0OWJCI(+cAOT)KgA7fXVJN
z1u4jsV;k)^A7N=qezv8$$(SaFAt6{qq}YV2!usYF=M3IuMo0Z#So1Kp3D$Q_Fi-z3
zS~L;M)|XZyM3N>UlDn#L{IKMx6p~0L_MbtN{qqm3yPVqA&(nRXWL$ALCCJ&j&Wbvf
zNK7A&L>Lbf)ykRnS7-HcQt2Up)z{;s_8M+xuE%*50B`|Xt-Prg`q0u0_VYToz4<lJ
zydZ3tZX!obmDHp(s-hgGEb&YG4vW~RFvS3QHlSGXHEUJ51*ncaZhJ=p;7HOy_3maN
zQ7)aHq|TjUZ$As~Nq7+3TBsQGw!}&h10Xn<TeakXRqt^Y7N)BlX^V*DZ&cGWm<HD}
z`_h2O!kH4OYnN;$VWENo6iwbOwu1!M6oG~5PAu6o(+MQo*Sbh{3rczGNc+Z*`3BY!
zHFR~t-IrO)>xUKFLLpB=Jd3Vj94(%~)}C#z%GIg0TsI{ld}$F)pBwCRru6cd6Yz9>
z9&;gQWn?fl+Ehtik^sK1uO$hG5(3I8_(_$S!3eK7&Gv*v3REZ)enX;jsQfSPF=D?3
zyf1k+Z^Qgrof?*q;Ws~99|vkGn_1`qO@7l2_%1PR<3U2GWKsZJ16ILw!@)~bTZ8Sl
z7hvlV<?HUFNq|rG{*%S_--Xz80v2kKBvw+aRA&sDY@hQff*SEj8rg^ZpyXLvGrnZn
zPxr_9Mp{T&nV5}fIO_?j|3JI>F?|im6WCS6A>@>h+W+Kd|Ng4B9LqWc@}^BkkRfQG
zQ;xQOyG~z~3pKAkk)p4O8f5qXC|V*t^txlD$%yh|3BOwRw?<x!KG3R~g(2--q(fi0
z(-qx6=3-=daWz<Xqlo=ZzfDeSW`N&au1)zdqLT6@x=hFve?3-;1}{6q{w-T8rF@c!
zAW8KJHvNb*?a-4D*y66v^NN2jMVlXtvI91E#{{I5x3-ZI<}dLR`4>Ow8y+Ykwun$~
zjjbjXC8fE9Lb=D|qwF!?a}VMvT-D}@C0$yx3&n>EFTokVh1O*W<l0i9qv_^BkupZy
z@aSLd7qfH%OAMcG{0^lpDeB-(duFLAgk;67n)Q(!&NPpZ#c5{G`4^kbfyBT7qjh>(
z+M$IovJo&;62nCluby3H50eQ`hB&gdQ$j7>oQBsvZ0FtNJHa;8Xk`sH8nN2myhtA}
zVS!K-5Kp**(OmYd9sdMV-7A+#EC;vmn=JdTL3*VXxm&%|U=j(1S29_hQ)nOatzI0!
z6md5U)|F3d(%40vFxdXAg|noC+|5mp#Xz1UeuFy0PB~6LpPzHwm<aI)9LbC!Zz9Aw
z8`s$P+!U?7vo;XnHEba11C*{VU1eUfn+mJLl~Ck(2=-iU?H_4K)T*qO+yU?c(w0ER
z*gkvLy2gCbheJ!a-IhM!nwF2A@8bp_lWShHgNi^OOI`uE#Gx)J+{njUEAK?D526$(
zCQx}9gcr@IuVRD_uTT<Cgo)Ec+gyL2seYx9O%g;yS6D}Fa7t+kl?au-=3gbbsp|B}
z_JK)}t8gdEn(*VKEdqfR4AoTC?;g9MpDo3NMfhaCq9aTTUZgJ2wW!^YnvtnQ9J>ju
zv6GY3ifB9KfvCcXL|ED1TExaSHO97rM=vT#qz3XFyZ8kyx50f>>L`9m9w8k#%3gQt
z@O#0Ij{4diY%y(Mvz#5zxylmQdlFx+^|h-;%rJs=!)@n8EDz$kEx4M5CrP*oYar8?
zc#hq2XCKNRsWVJe&o$Zm9`P-g7T9kq+{P>-5A(!Hm3r$fN7?xgcc1RDQH9>F&1rWn
z>Z9_BDzRC7I&TZ>tEjdbZ$Ys2AU3ki8S4yzB^AVy?Gva;>9i76xW_oSLZg+++#`({
zWIh(C8JRQGl08QAqkX7@U}wYq^#zI##ZsYdOznxKGNq^hhKN*Docg)l<@{BfjBv}z
z?!#z`$9y~AY0sXak%80du}ck!<J3sabwUDyadkgyfL}}@W$I-fUon#^n3}5Qm)q@U
zP=SPWLAVeh({&lRbByy<dG`2UnI#GFG|+9fuA>FuC~eN-)q9`2h!soBc{*qrEE0rn
z)^u`-ON7O?a2n+YL`FJ5*i;g{n1J$J+uwD~7ZGA$DFM3|RA7jR*FsNTh($5dwMW+V
zoAr4mXDHXM?L_S4!Kcd?5EmCb`a8R<SKs2Sl*14d1mZ6tnPf78aq8`NtrrGI-_5yv
zY8SjD-8<XefQ-@;DE(T0ll^KX#n#e^s<E5O1BfzfT8(tOa<@cDB^aJNl}QxsG^mM_
z(NV9|+I|m5%Ho#P2#1Y~`g%hP;Z}ZurS)C2ee+VSq08V8BQHeYMU`c+Aam2~WyeH{
zahTb}O)-IrkwarovDf897BWssjXP)$emkN!6)Qfs8h4A?`c2FhoRWzs9)u9FHljXL
z&AE5QY$15^Cfm$Q;XW}qb=!+(=*pNasN)<GdcdKO0x$}enypKWEo^8q?-I4rJ&EGf
zW6@?>3gH7vXC;waEg6k;u1&qnI`wv)*kr$n>ZB!}3cJdB-^Y^c%P-5UQ=@R1wRELk
zc=_(bb@8+wP}#P<bdC<wksv^|p<}SAuS~Je{2@ka7l=BGu}STMV5PQAvfs<ZArK+d
zf(xo%f5+N0%RIuWr_UO;NyKT^)lHgQr?*p;a@eVoT<Ik68D#5VU?HExPH^VBz=UaX
zs&C5wB+!SvJLNZ5YMbV!Dgfspk@XZI*$w*56*Wa4-i(`%&mv6=fBe<;a8>tjz4JLt
z9#3HYm+y6*ex^PSUW9E9TStoe=oeRYr9OzaEx#qd#u?0~6A!o?^?mQ1*nMx=R6xU9
z+r;IfhLed)4ILgi9+0G@Umyl*^%0wc#6?gQjvoG2i9R>EmL>ts-b&(ILc@&XZ4JK|
zY$e(cQU<qYo|}v@A?~DjjDBVQ;o4h-{nbms#$%X~ddjx9`(UU&SrM{W+@tU;d+dW`
zhk9{ak*cDz`v-P@8JvZZm(+4XiwRv*4h@HtG|#-<wc%LZc&o1>V?+8BSp`dvG%wxh
zJgs&6$>-4KK&^Sqsvdv@?&FkF5c+eS{fdMYdmqOmS9NvvxsRYOAs%Yd;Z>=5XEPu_
z)n@B<7qlPARA3Wn(}}h;dQiuy9}ZgM|LJox2;m5v-Pvs4`Dk?E)HJCc)@9~3Dkl$F
z*`-_+`y&bqBx6Z&7qp_}Vhf08f49uG`%@Dx5i#)R<gAI#qJkyt0a+MJ<d(J8lUpfs
z5fh|C5LCb*bgHN8B_Rv_e@2iFjXfi{3JDLXaU1pgXl{wKNCn*Jax1H!wF-%uFQToD
zY!wEvbQx;B*q*rG{(tUE9EAp!_qqy>(UmvSn5MG6mENLh>4YG2S6hE91=WRomvXOe
z@FkTzbnbf8%AFHcI8BP;ul&pQ{=;abEAiQCnk0r?N~H6Y+w5%__%~v7`?|ar<tC}y
zue5(Eh?JsPGP4&899U|L3Mk~KtSFTrWU{h4hCjTSS~852!!7A)G3;weuT@dKBrded
zOHRc>1w(SGi?T$CP9tF&e#agpNtLc<@3kHD3+(#@O0M-2r0$=Fon5UpU4)P+1WQ)Y
zcUU6^feFM>YxR)ghpfG+xvPT0NwU8x>mlozfx5>-R%;i}Z|&@=ukRvnEcCMn?y!D)
z@Nh4Oiq<aa!bL3fl^3kbKjbQ8Jw}8Ck5UDI)OMb=ES<xcZ;f4zJc4#y@lpvi<}nRQ
zERcLxg@8@xcd@+CxD<)rVI6dG7KjkcFpaXdg;HqX-B#_f`mHAr`Gum5gf!W6_+IJJ
zbEozAk5Q{6zD?>JhHj%o2#o~CAt<FQCcE;-8-fVx9San|!awhr+uzoZqkK`}V)`4{
z<SQ?Ar6p+$GT0@(DKN6ouYY`C9Ushbp)YKKjFEMnD&;X}ukFDsOXS;a<TT<k_z*2Z
zP%2dfQ+zFE3I#ReJ0*B9O#|na5E5}Dp1~J@<6QYqFX(~@(Vld&@D}v|6i}suZ*w)#
z4h>PJQ4WxyB=sC)lN=Jy0CNwC=Mok_87Gh)>brxkA4;@jrrm2L=DU{JQefD2z?IO#
z8Tm|HLrFy?#9{jFf55dsTD3{IzM7CQebgm=q~3bQbylt>`(i!;lHkOOQ})YI_C4FR
z$f2zd&IVakd?z&P`da(z`M4rLUJg|w)6S4fB9__XR`w}}NPt%_Rh`#h?_I&IddYBz
z`H>PCnfB{peXP{@^kgQsJ2Ha>jnNIW2s0%~M3!*zK$lr%N{BAk+ZtO}gK>q4(AYs9
z5zr#ve9c}v^%0_ey`BZ%CBp2=OuHr``qha<Mo0m&n}BmBs~fMiN`GhVk#__Nf)OYU
zBh-S^?em0JPl}(~+)~zq%Ouc=ox!fP1BU+_F^3x7d5r7yz~Q~!EZtAc=Vl40ru0wY
zQZax%%KyF1GLNW_AMEFTgrSWvDXk$|>zn8U2?AAO`}JY2Z|k(c$oyKgGRM;;8_+P=
zH4QpjE_t22TD`{22v`iW{}j@I4YbokgTU#<uu;GZc;^Z0lyxNI7(StkrsgUZOb>C2
zP<zMe&i|m96i;-)0N3_=MvF65N{3C9Q4>`YVXm^PjUN~Yc1pV&;F4;7HR|&jnrbQ+
zPA*^5MI9gLj@jP1)%x%!z?2jrv8f4+!CxX+8#dj}ccHlKmB|F2?#pBfMNlTv9K#RA
z%p~kKA1EMwi<qXF52ZJ9aKweyv)@BkB>6&ZpOzIN6LHIuI*{GO?&z6Cj1*9>uehTq
zm$m!Z5_{fM-BV#|ORHcoY57N%=pk#wYG>hef+f%!;iOE+huC(Y>l{k=AyR<}SIQi;
z?^lW@yZdIlHC2b9b-J~&wn@5)N<|glwYk=Q{65lCGM`wl5)oDrORY607!~3nw*p=g
zaV$9bZP#1D%Mr&^eb8E`qSehzQamNmgLB`oUi$*cODtEA290eU`z0Pjb=HkmSc8^r
z<jKLN=6VRX`f9glmY28c(msiTB?)N$6lpPqfA6l8><=Axz>K_NJ>)9@o&~B`mo6d%
z85!mSp2ao%>l1-j@q4f>2A=z#sl(?!75zMx4ju~*!hDar5&j=IXfUN56Rdw`_kpI6
z)Zv5fZ?d0yKvyImX3dgG^99TWmy%CWIn<+4M+#`<&NbGHD`43X&zJ-@-7blzA&OGi
zy79_%+L<3AaWE^$pu>%0pg|AyHsLq862BYvIh*@fNaO|>$q5big2!|Npx%Yk@#*aT
zl<vamRV+@r__E8fvLzk)?t0ftU(xY4o}5sVmr@kTk)hyVP)k(*TWp_liBr6^LN6V~
z7$-@#&b!I3K7*qKWNSU%b~uHlUI$onyn1M<9duTokU54bZ}!DmcH={^1WAdLmu*=u
z6$Btx2(S!w*+G+FvLOA*+`C(Lfd)l}$EIW1eRsC`a|#Ik-r`pxODSs09rg`<-Ettc
zSPb3L6pOgjO{`esP{cJ~eZBp+(>@8MJ&m{rqG{5f^^{MjFxxfiEvL3HB%p(Y!T6{o
z?<|G^DTO38<q2!7KZ~3q16aB7Z3R4e;~;x#Bt4$Ug4MgLsx(rRynKo}?iTCu>zvXH
zg0ErfTH1af4nQlwIQ7N=>-WY80mGHCxXNiEO67yp#5{hC%fCM<M81-#meyYIBq6fK
zU1C+o>f=%ZDGnfRw>s|@D{5NzuMgSw-B&ER&YF9QKF6ZLgrN)*?C(w1HOEFZ@N(H0
zei#q9jq04!q946BbQE(qkq9igNHt_k<U8Y|Uq;?#RK_v_ZuwgET2@reGe!jCR#e^8
zS*z6Yqa&-1G9r-iCEkwOYL2x16!FOrej-rp79_D!yS7G*JQ(vcql5nrZ<#?lP8J+O
zE%|K6+plm6Fq-fV`l23WX5ohwQ2o|l9BBg$IZgS^d~%@z*ituq;3%^7(L%3azvQ=Y
z6^0BQ60DCFzyko?2168=CSlJ1Io3uP%eY-BNC6Tv^v@`hrn2g{7U!hjBY$S0mblxY
zaP%SM0i%XLSsN|y%Y;E1>2s7s2d-b>xaWnKpZPX`?^JPNEX4v^#M%=gmN->C#qn{O
zJ`WLLg=6zA`ri<Vg0~fkj>y00YR8V3^k7Vau3PYq`u0NYrEZ(=$X%l^$z$7rH_)fl
zRZASj_i%}PfK0JaWmJ$ER6{=sk9<$xYr2~<MUC%|r&FSGcpU|=>l4{fRDj?RYg|mB
zWHsnq$2%{^+`!YafJjrrNJ*_U&7f4~rt+cB=eTYVAC~Yq4uE^;iR1Vi@y8G9j1uWe
z56{Hxp;2ird7TWM6wnlm56lm5xJJJtGexw8WyJ_nWkM{dJbdLv`c!^9v|n{KGBf0#
zsk6urKkW?8z++njhkJ*FHoVLxvC*G@cN`mST!3o;Ps`uoA3hlK9y&y+HT8~*#xu*(
zPOkUx!35PaeEf@dU>h<ugeD~t&(xfKW%wy6dPry|>kFxp;HPiI<&N{-V9Y@TXng`G
zi(S=_7oM~udKsHUsl``2o%<slL?(*8?wZ<a_<I-}8dYu?8o3vB4J9je;Ie1dR1JM}
zj3Il5^s0oFm3ne)RDL0km73S4W^KwS|1?K_ou1|_K=CvclOzzSB$`YlIU<XWJkxXZ
z$Zw|fCbj#UM<XmUHGQ#~WjK$@kCp@3Y+59q@=JGqHiaW7RIo+6l=^6lGwywTfC+?5
zf;YeIWaslwaYzc#2(oja%n755T$CwXqq2>!nc@8U&gjt$FZz>C3F_^Won~RoXa-4s
zBS(@3InzU;WiSaKws~q$2jmNY{$kfo4EHNwQxR^`=}QzG^7*S>;Wv!c)0s(&X6keh
zMgV*OT(vtg*6Kwgyqtz4lHKKSwO~1-KbW3dWZ@uhA#efq$L11$spx9QV{(-*ONkm{
z(PLJtHy1cAeo-GUq2p#tTlZFh;aiPd;0R?)|7&oi8HaB_et^nmj`8<o-tSC`I{K%m
zaY#yul(@;dDDPnNyWNprkl|J8`imlGG#ShA6_xtAE$XLCr`($5(BPA_Aa+vK=yu2G
z*JA=1$)b_$OzdnHzEXb%M$kX}B|M-EB4S1f8-kspX1^Tq#ZUG)6h%e@>2xpD<aiuu
z>cSB7nH1*<q&bSc4NU7z&Ca{-jrfl*Ve$FCWH>`aWxKS2RzrqGw|yTh30*+iI$cUC
z7rLk|_A}9uqqw9{lz(hxZJVGxJQ3M}F^lk|Ch^U(uFrnT*ltBG!eT&+U~AUn6v`rb
z{4wLyt0NWxX_*8#k{?DtZA^YCVi8X+_SRQ%z<s0f<fMr44C*X*2LNc-FEQ&!7~}aM
zS+I>Y2M{sqLyer1^|6e41EdK-U3Fk@%+F~(#|mk&!@Y+0Gq#U2#<O1X-Bm3#rK~Y1
z=jo`!IDa6;*fQ4m1giyEiU{P@em7nn6eULrTis&isqc3iONK;!LLp^=CM-urtGy2M
z`+%rVm?gyaJWnS}&!Eg3aBqmY`bVe!vB#j+hF1y>H&5fYtm86RYnT`{?mpv>r=6dO
za-HWPyNg4$<{P6Wk{_jlhA<|$YmnQ~N15sSnK=R+m7Pt^%-wq)r)PV_3CNgIR+>bm
zc$M4JoXakckQdIZZPD*RC|bSuyYZespCJXq1`4XRODW?r1JfW|=0^iD)UTz^9U-RP
zh(uO(C2F%urTRzZCxpLu$q|01c$dBeMpscb$T(1Bw4XqFClIs_ddHf7ZqT-nz!)un
zuUZi4d~|Ro^O;l0?744>+P2Y@Kl2fJjOo%ZqAr=L56GSYeWFyqEm7HL`wof!2Okv&
zpMNpx;tKO$t2IHAMcsN3*(w<gqXfQMPZhoo5^~85$K2zMu8bU&(F}ux^sywP8I$$2
zF=K!l&ujQpB$x_zC(@q@{a=h{IU?qe;GwxqygFr9_@)Fy257PyGl-xMy79cy@VDml
zmQggUO;<nc3@=O6GODzhTULWjq+CmF^*Zi)_uqm;@D)8Dz}-QCweks>9&zNMx290A
zApEw8eI62rmg|0>e~F<~bYahM9R32qG4;Hb4-hQ&f|NaLi-BGrz}tTb9~Pls`v^@5
z;-Tk`z2zr8LDlx9jzlrXj?}Jky(Wd~G${oXNez8!in?gNBl*?;x&~YGKc9ox8+@hX
z_jO#8tfmStnlP=QrSY>i6@?F<&Izc!V3VQMLONk`^-PN6+ROjz5ugfs9s#rRk&1%P
z=vEX=L>7o?pV<fbU7Y$ZBfK!zr>QUrefl63?4oi{3V&dNHvSH)7HOo>{mOmsBpP^X
zL3qZ*=s@IGo)<NU93Ok}u&~dg7BS8_EmhD&({m}ySoLAVGIsJT39~6RXLQt2%bj99
z<boX(fqG@m(6Ajb%eW|`4iK<XS1)x&W;&PggrZh&o!Dc8E^-dM+4%v3Gl589EPZFH
zJ%o}K&3gWE^U4^}9^f_fniNV3Y9rQt>bT*_m`~7Tn1OED41XPCdJsl@4>W`gZ3f^c
zT9Pih$2c=a%fVtVq;Lfol1d#HZqEM)Q6^QxUSxb3rh=594z^7am~zuXh@cSsuu>Sa
zJX*Go4Ktq-fl4rz(mE+3Q=gx0MEdD_BV$WF<-DGe?KKEPHj>{{{$XYw(u~joEQ|oF
zm0Iz-(c#obN~_!plq!1NxGpkkG+)Pq1b7{ErgOpO!)lW1)p|V){nkWW`=dP~GYjy&
zRC$T9IxQ|w4LM-Ve$=mPa)z2*1Hu-VMKdHl3W`(WykA{o9{*41J&k@{Wkq=Tn8fXb
z$)))RTkM_Rje_)$m%{?WnRehh($k0CFWtlTB-$^=9a$7cB#LtS-|UoGQQH_dNHUwM
z+ZpvCk40QCO-timtB_uF>X=F4J6UW;EGpt(t0#t!E{tBLqj1t|Nrg{{GLF%<1e~(~
zAHbE01X{By<`b5=o;LWGDA!PL4K!2NX+7l|W3Q~Y5rfSu{??PJIYhj*a?fim^P=DQ
zB_S;s8r>~BQB4b8Fiv|xE3od_m4;QUhRxp?dmN}m96!uetaRlFHrogL)TwaKl7rz(
z3%)nvkJCRB&K@J<rwTF-XoY_Q&9%{b6%_6ger<lbc(Cal$n{vRO)c|`EUF6RO<xEz
z_XX+OvNk0Yt{(f*cr~1BfldQ*0XiT(L5;5G^f!{cpn)3VLoE(B=ZZ4M8bw=X&~t$1
zsmGb=NAWsB{?iIGK9Fp_<u8}Hu78w_TbUcvR<_pq2y@PRe6~QH7+=uJ@B};@V6OUE
zuk<qP1&Z&L8aBkdL*7Md3Gs3$DCXdnQ1ie5?uVXcE6_$-tc}i3j5R!joyL}@Ev?vw
zM#*TdWw=QYx$$?E+WC~xyhcAl%qWUe%f%(+eFmE2*r(hw4@U+jMP+|$oV3R`t==~3
zkSO2N{+@~sH;eg3^hB{2!ucwtR^4wrf3W+#JAL102AcQ!#y?kDL`j!;b<0q*SS+1x
zTSZ2u+g4$`uvKsl_>M8Qc?x2H(dST}Tuf(y2aMIv=y$>J<3*srS6c_0o}=~1=pQx2
z*4OeXe+)9y0`*YmN_{B6dRaRE9Ao~q*7=Eqe?(j<_3jSir?>PQvu9*!Mg*DjkVv?q
zJQYillHpH{FNW#+i>)Su-*@zR=k67oQBI7R^H?zIli}v2e>%0XR4uR|6>+CAVYvQi
zoH-ES2q|9PwcAJ<s@F;PJ$NJ$QuX$5^YZ<?7tv8@SPe=m5UxtS^sVub!OtZu0cyal
z2kPq}vu;q7*rF4>V)aCwWZY?J+cdkj)r)&wo@%&V`T*=_yvi+M#;PJ?Jj#Cp6<REi
z<s*#?r|1LPn&rz&X(%YhY}N6`+=-kKXS1;ikTa_@?4FpT;`OnN)>be4Y^whqF{h_<
zL_*ZnHD6Lp2oLrrF#}KNKGyanEAEW<VwQ~N08~+02n_0qxiY@Dd4wMY_2VI%2cnfj
zkr8Sl!6eRiY<Lc3j65bc63b>0S;}TQ@e#+l>p3AVf#!QngriZ_{T05AU=1RUGD+ko
z#&ichHZS?dY2hDl`nT{)@1=tKS}sCL-J|Xg+d@+Oc-VUCrL+n9{io6vlD%#%-&gRa
z64gDd{*QPz=enQGMI<s<_uyl7A`O>R1orjQ^~dBlb_f(4;)4{mF(>@5{o2;ct1ZW9
z(jKW05U88p4c}$@hNZR*nO0xlY7jdl#s&;DSq0>Tzf{D9phRn1YXs_!&FX0l-**3h
znL%umo^d(Saue{x;d7Zyb=}b{sZ_-ceVxz;Q^&$)&(yWh%vI`%Qq}rS#}_im2vZLM
zL9ooyxUzkL<IJ}>3P>Dea=o@S<I_RszjCHy=CeA8a^%Rsz~CDhZq;{0F`^H>8Bj$`
zCm-Ahu8dSQuqphO=XsJSeHaAL$LNX8A2><}=%rdH(FHQ$0$(SW7WZBF#jbywx&-|X
zFBpU~38scBxstC;CsCkIKH9NzK2Kqkg$7oa<w$M{q1~Au{?TmxMN>&~NRtaJRH0^m
zw=DeYzx70m>^o#QrYXPt@TlS=m$PK8dzRFHSg1@+PbfoYZJ?FF!F$|s;DmpF4PgA<
zhI^mEgsBfiQFrvPkF5*1Lf&jcp*CqL5Al5pB`*mo?rg`0L`C{;0)QQd-Z)V~5?t;9
zYpDZQ%ru?Wk{s7x&6pkDfPyIN*?@<SN-MOUqnJXP&s3mP^pAn^ZHVKkQ}vVk3}WJc
z528RQ{&RF8%vUGmgx5`G*un34G;@P^Xugag)>CV-<F9u8wk3GAI+H;g(l~X)&hRUb
zV~jDS38(;k)@zwc@MQH|g!X6pj*4^&`y#7ni}$wT5OF>aK*kZLrP@PH5rmOa((*%o
z_(Ivm1W>*8<o}>_0yN5Mozu@4N8+YLV&1Ko8u)W~Y&Fx2^gQP{?uh6oVh@odD-IuF
z%{HUGAaWcQX$It;Wzxu-=sD`=oFV4&KO)DWLa;n4=SkffnP3ng)yJ80hB?PkAVPCG
zDJzp!3yJEy>x~x|ImfZBGJa|_cuFR>0xZZ#CH`nks^?ae%+;X$*z!b~xc=uL^QJM*
zaXhTFwzAeJu0uUj|G}QYP=Ee(&Pbgjem#!{xE!xO+hF{@EOH$2j_#;M2Kg20ujJg(
zuNzN4p}){)Bp5z}3BRI6e`>NCx6Npo5;=~=Gt%vQMa)`2IB8N0a{YQ^K!kG~`5tZX
z^8Oj+q`*P$0;X1p+l}C*dN2f)4#-Nz0;jfNh-rlLp1?9{J8O*+F(JwSgUyRq@nPoV
zNX`MGAzi8mmbpk*QSTZbWa!bzs4JJ4H1iOzE*fY~9mVsBGT=Qi4kT0()f#{ErJa%E
z&?<U_3gQ0I&Xz<ZQ`FJ`bIBu-GTXdvo|{P``XOaHDQe1DMr{$Z0W}q6!89V&NZ#`{
zQ(d9wh~?pXSM~H)#$9e+hYWyBf><~`1t#e#=|kh^N%~z&J(UE|A!cB4kWdaV3r}PX
zNEr^7)Pnvo^yN&jSQWxAmZ)A?XjELK*H($Any8Ne(`BsFu84W<9N#ojQ|87_ljJi)
zV}_faTlH{ebh<kQb<S%;9B`}|U^&O(k(Y_-h4F#5$0(V!C;A{CDX;D+m+(GSF?@T+
zS|c`#+e?a;Fd3#kky=?*qr=VnJ6R&EH#`D2&=zngsEWux4XE-Lu?JW)Rh~L>AQ)~t
zPd7enBHTy-P*!cLk?m>48EtSkNQ~*xvy4((#~w54YG7|`6btalwJ~SkH7t+?Q`*#l
zw|?8D5w)|T%GjjXR^aKOiz5B1@-K<{$T944Mkv!$<))J$U{!T`=&()qS|9NKq~^pD
z9JM+sacJ}hqNjG1@6!J9S#LWl{*L;9A;AYx>e7W#o~-EUT#`|NBE@%8;8LerQQKHL
zbS7YANvSkOG*z41xJ?;|7Fk*n3{Gq}vQe%Xl6^xhghWm5G%r99m3cZyWDzchvk<T1
zC~@+$fm31HYimqhyvjNHWqoZfs*ByH7NkWjZZ@+SCv8tuNl-WFJ*WRXGaGS?ODV7V
zL`Kx`7dZg<6qpi^T&SXwU*tX#r-W6BMTGxO5^$4q$6S50N$?PJVD&vtLZK44Mw}bP
zXmY-C*Q*hKd}l{6@%iklMo=dz;^@dT4#uowsCBHSfQ&Y@`|mlwy=d4v8EAB~cz5IP
zaK3T%u=NZXl^-%d^lp>L=fr)H7wj~TXOWcBLrUIw!nYAi&yPBuUruajMzu>6ecW@A
z2hyT%)k<CVnsPP|9lqWe%l?PYpq#7D-W>@k=n;AkV)kym_cl{kBsfe%S5xYHy!%w-
z<eQyu<HSwAGjio+PWeqHrauuX)o+zP$C1*nnv6+Jt-AnXSGe1D5g>j}PMrYuz5tQL
zT2_zDb{5=1pjRpq;1g=x6-$pjTJZ?1+PQrSadBMBS~u;c)$&t}Ujhht>-~#ciczVi
zEsuHsR*nhYnJrllVyoWB_fic<54L#Y9tn^`;R>3E1DShb(oWJgW-o=6PC5k3TY_Km
zD7wXiL1)8*kGRaS@lAAPpP(SgzpyJEOWux=fCg+k;xQ>T;NFPbZ1XlYX>r@U+IBY;
zZIb`0pD~nr|J%@fx!}UxxHKalcjQjv2>c)iS%{M6SH)G1d2dF^v0^qcVRDwdQb#!*
zvHLhG&I<~e)IZy6z%!1)$<Y_^5(Qi=d*`1J$FDEPT!7M{Cnhjf*#VdD4u5)C%ms)B
z@|I1_P$3fy_%i(I*YvSGw}FmVYRT8(e{YDH!tj7AX<~TJDt7)^6)FA~jA`XS`M4_5
z7?Ed)e#~hlSk;IFjCN$SzxdYZJOe3-Mf7E>jCsaS64wxkovuFIX+)Q4iH+>nXY&OY
zCzql&f81?6I9scS92&MGd#Tz$b&&7{$n%%sd63(7`<L7o;U-K<wE~3VX?}Z*r@urU
z3TY}^jV=Ww!F}3=?0=j()6XpWk(+}Aa*LFZVh~6puQHCULL<;uk0={`7158WYQ;h0
z$q7hSNliUC)V%k8r{p&?BqArf;<k&NkL`(EhOL!RNvmebJoUTYxiZixne&OzPVt*d
zI-LFdoXf~F<TMbZjP=y%ZMf<d=LH4&a4}rEl;_~lKkD3-t}kVt=$ci>3>39Hz562f
zV9*q?8(2zghX9dscQA;hxP@wBdsM^5ND-Dfq*UD<EGwmUJRUh<NYorA4%r2W=qu*3
zFzP1fusLjvOs_~JSj8vD4x7V>=DN%G6Dge@wJU$vGOUO~2x7f7XyoP9gs9Svs9u&U
zP1{q{Ip2p59&H@Yf-06sEUWnB%E*UyAXM;JH9f8@9`$j=;>)5gL5q`gfzbw9ICWo(
z0r#nh5no1A`vOKDQ5lMMp#x9{3c`zuqc3OpO5G5owRX_ex4}c!nm4}grlHX0pD%CR
zLUBfSEa#t-oMXZx0(mqE456Ksp}havVa=CC1u`fZ2%K6ZPRK{Y)+~t%6rC!9)tD@j
zh}oGLF=J=ct&DG$M54L0U-GcC1I#^KN@z(W_1ag4ZCqsRK~k5x8>%FQwqy0M#rtCR
zFq8$XE4s3C?Bw~wB(>4k1Qvv$&y(28{c<s98JDxq8~Vop;|A7|#+(sHWaA1@q_%SC
z8>fLC(1;jfELt&B*9EMap_^YlG<Li`ON9a$1S}m1;T6{m9l&8$J5U2@J*uzDXsq^1
zsEg|Yrw=XTu3~^OrHm$F$Z12b5|DzB+qN6TV<56o0kej#&(O$)o*NZ4)rwN`VHa-D
zksD^4U<6fUYC-MLljU{bOB?BFtstHwI`jJSp;yaMSO<IF#!D`W_L(i%HTyh6ugT^t
zLxB{l^e_ovGdxCycLCzR0RblRq<ZLQ@^U1ygz^-`#+gHpKN;)<#iF%s#QK22NSSWw
zxsL00BYM#a)i@&{o;bMT9LFQyXnC9s_C?pA!Vi$HPU>{r;zNBf`;|2`ABA|C;tV<(
zIi7r3U(m-n)C}W2&LJ%!CBUiEHxL?A*)zv6Ws$xJMldolAm9iu3khIGtE233eWp}C
znQ$7ZtvD67(BYQc4Kl0U-2fGEqu79A2>*72<B`q2TlLC!<4o^t^`(f8NcY66Ym39D
zNxDaDuMXcHND?M(9LLN11f?ik1W3KZ2NpmfqK33fjtxr_jGx0B9XNC35ODqku-G(T
zT5})?-|~0t%hRV0p$_;N3Zv`<V=12iL$K)H^#`JAgNH3;r)JbkgX8Q$(RWYhZw!H5
zGHugUbkLlL3z%#)4E$6S<MOLB{|TS+ZH!oskW`|LurHN@^?3Vn!}QBwv}hCzS;TmC
z@My>N!}XiYB1H=j20BBX6jW3G2`|ht&PTs$fDMuGR+i3X1<vo4&gS<DX%SrXg|yad
zbEy?Y#$u0)s`=Ae&p8n6yum~JoPQn1-=Z_f5J5o$Y0US|E8?v4wVdTOg~*CUPJHx6
z=NLQUe11EP<vUNyh?CbkJNFNZkX`6y*13Ar=MmcjjAj{*4mS&q|CAyTym0_F03}<L
zPt`6Eb^qw>p<k`hO1#8VBczbTF3;NOxb|2~0Gu`nl>+MH;s@W6A8K2JVp$?wq<6*2
z_nzz6_;O6MsB#3L2$)Hcd*e+9(J#1b`M8GLqV{?t9oVS(2tDagEJv3VMfJ;y1SLmT
z3aPYK*G!6<bgU(stC-SP3XE!+WN7xzcTPVTStj!gi5_G3>4j1Ed_S~|3lY)$AolF2
zB?ZIE7+oJ4NY9`8`qHR|lwlej10EQX6E&>S>G(s#V<t8?qqwLPn*KES8PQQK0;uWd
zA2n~!k<lQ5_*^+9+@2GC0>~pu_N1$~`m)10ZArulK!9h7yQBWN$T{jh{>FFrHZ@j>
z3b^`0=UI1gh)}(teCh<Dv!m15wuWPT3*FIi@^^8V5&PgOr(-|I@$u0XdU=0R;M}(_
z;x=STj%;z6(%;@43QzbE#vXaQp3E#eQe?T2Lj|C(GL8^$n)>+1@G+7L7uu7?I*jrZ
zs-M)oh2a@ldgC8ntHOqJ_-3UnByjgsJ>jR^`B(UP<5*5Y-b|K&VK3bkvExefRyJf2
z)QwVArS2UyY@ipHNU%3`qRnKw7Dq+=@TRd1K|Pg<Xo<aZaLbPoo2DDvc&EZ<1R~d7
zb#BBtiN+MxYcb@Ub<{qq6Q?+X8X~8l_zFDL5@iD+;b@M0nYYXZAffXntgW!mjhDf$
zFf{_~`F=svy8AeQENmfe08uOkXmu2^#+Qi%iit=$Pc3VF%b!l~iWsq-Cf0jmYpd8<
z-`(oGcQiJUFw`L%l**VC^}r=gofRg!BdJp^EWOuw?oI@YAmH5P?%1|g=!~$%ehY8@
zC`K6bCN;UK1r={Zsb^n{dUKmY07O|-yc-j0tGyoWo!tFml;5lR#57_(x*i@+A9NqL
zI<PwGl_&H$v_)H!F#7H#qRBJfiMs74M;n90Ot-bV8wi=m`f=Sp?Cfz?8(V-3iKZ!2
zQ*IdM7-30<v=H?N;U2;j<{6dyk@4)R;7i{0?<y?Db8W4_WWlzD)(jawqQG>Y9(+eS
zCnrin1UgM5rAdRcR6py(r$Ub1G;l<5k<<|4^);!Y<P3Gdu>5C+c1<k6TdHbWAY~2g
z^I4ynpZytpOoD$`(Ih+@Uo@B&=<1ti%#CK)#}5wdDw>JttkQ@Cg2(aD?VHDs37g6p
z?ggb(g&XfA1y~`Ct3NgC9U<%Ec&j1_IyYlu(P0yYW*nUhtb$jA_6G%yC@K{oFZ+}7
z59a*CMk{sOpsw5uBy5YO3P~gt5~se2HO!SE$qqj`RayZl4+xk<0^5+!<rqKx65_XZ
zU{`Sorx<W}XnE-kdDdgA{T!DB$xDmHGLr?0`V><0@hi=XW5c#CA9y#0Kn4&>siJC-
za?E74$ZLNX=j_TNiA}VG+#F*D{|f?rW2_nQk>8gkL0x4t#2%CxCeQ%?8zhfu>h51-
zHa7*mu$~Xj(F_$BTNQQ9(yf7jGIw?+TMz6G`|0k1GEcc~Tt}8o5+LzZ^}#vT*1f?`
zw)%DDml8yR7e?A`#1ZLQnPVm_4_YxZKpskIk1&ErQW1hF2C}@}c<;`jw=VYY%E(uf
zfQo}spxg<2@{u{Ng})wiQEi}niM%ZCG7NV>&y&>uMw>5e^ZR*9P}j5!M4z_!#7m;5
zNTYemouQlFAJ~0Wn`8i`ARGX?P#Rbd8Y|2F4`c+%dD?ypWfFZ`s6V{m9%I8I|E6qx
zMxK{R1Y8o4psJ~uWRb_MHzuz0&*2wS%Xp*uHUn23j{Vv;V%56k`<6${k1GQ9ysF<>
zoYO`jU8u(tq%H{dSQ0Gv8z)!#|H$)MR1>6ImAl>m&BnT-ct-v7h!q$fTt3@h2CL9Z
z4gx-0(ma5OHjFe*Tpd(%Ig5KHwg(oWwB#1D^{@XhUyltNVfb}TpGH^eR^Uv65yeUv
z&}a^+3C(+NpqxQX0%pKs<P`nyJm#g1p_?D~lMP8pljwLVPS|u&rRLPd!NUvvyQWW6
zq!r7XIyA&9QMPKf%ldXm$l3<IDW=y5KpNYmMUMo;W@3AtIl~H`5Ip#Ff7!I;FInhC
zahd7~r`10`R8V91X5^L8y~z}GCa9-wvns-ark)$nRhX@porIKSMGGJknX~UA^Mx-$
zZ~bs!*MtJFC=JA$B-sx|0_grlpT!K@8nXE$zpjD|q*G%H&A4fU&P)$)FgDc$pK+re
z$}-Oa$!;^*;%+6W@0J)BMFo$X<u8}{W)XW<9EVhrgej_Zu+esEu>XhtBc^0wvJs{7
znVfkEnJTf)DmW?3cVQJyie?7Iy{DXXu<=5Du=$>US8+Zg=WcJL0y7m@Qi4kV%!qt6
zX!-a4U8ULhi1kkE>t}-ahs^V2*co~d<*CVZ3R4rWH|FgOin)Zj&Y>EK;{I0YNFz(1
zHa}N<7Wh$qpgg05ZKgpe2n;T3?{C&F2rBzQKcDac6vjk8Y4n6){qVQOPZ|1L{!He3
z0ax<S*q#p{aEex3nq!7vA98QDUKCmQ;@v_TjuW-D#{6@x7SjK@`Vp9iS3kQ_!gj4F
z3U+z|R4f#OhMQad7y4VVo~g1L+5<s;vVidx27<E&7|-1neE9|bBQi48L>vo=*w%;J
zzug<qHL(a6AAhsk=%*nv;q@$YRzyhIZoV{+awlP-CVD|Nbh30UN;=Ejza-?3tpf|o
z(i!7}f7+G5M#!CWD#`1J@Gna#QZFpCFB=gccFhDDMqzDADh9L5)9KjuLX3cevP2b$
z1u!Ga9>2@4Yg(C_4Ch~KHzu64EsR9Nt@2r65r69~hW_qm$AG6DXq}og#q8`KI{9`#
znJsZ(2~`n3Bsq5NawBDN(An4d$MCZZ3Kj&fR2VvR<)$I>+iaXu>Cq(wX~+L&Y`t8s
z9ZqD`dzy?MbRp*fbBs93G+KJ5eOhfrE!U+1$MoB8*i-cJi9j{o;F-E*RiZSxyJweK
zSQc>C+CY&fliUq%5t8xX^x{>*Bj$?uuumQs*p;0n5keScbmt%JZlaMJs!YeTp<li`
zP_{syiDaFR7+@^a6DgZjOZx)17b)j+!DtQ|rygjHx&M^VlaBQhEj<}`sDX%n9H`1f
zwftH0vC&~4F4xkVR1pmJq+i9ueDGLvW3vB0X~A7Z%!>@OF7QZz#DL1sO~w>6H18Yc
z09DZ}ggs~qT93tn9km88_V=^~|Lap2I(12v`MK{?{`H}l6Nk_GG!VK3r49@Tl>xU=
zoZ9f5aYds4Um?Nr+yZD^1-8J0;oDa`Z?<0Q)DIRFg%66V5nL)(<d-q#nipgz905SX
zuDR=gHSigBADC4_Q4*S!Vsr9_Cs_wS5Y0QHG@luP7mP70jmwvQ0^TzNMbehGooEP_
zRkRLrtRSI8Eex_=I6ZVk5i<cwNr<deMtr`y^kr*E{b1P-EO3c|xI66IM<Ra95Y0Gy
zf?G{arva(TU1)v#YrwNt1d6sQZfTIdF;G9V?B5<~RUIAt)p*2E9&%SNY~GYqUhxXE
z>(!7KPv9#s=I9OFy?AJg#Z(>ri+TFXA$L84C6<HjOnWpO0}7+!RKqLgzBO8~u^wUF
zYO0fPGlZ*T9riwKzH#DzE=Vb+?(~>%`ew1)Qs}OFf!G!R2lMptN#?0<`TgND7cz9)
z8rjw;Pj-)Al{xS!Z85O2rqi9OXR!+ror+&+T)s5)?`mz=U{7&RT76@xPiQqKW(8d^
zJ3w22%zU$_f>_VV<E^mOgXEZ2j;%h$sOmGU_?HKXwQ^|fcFQwffjtqQV>X-<`pa&O
zE#xO{I6+NKI2IU!fMe4(7@Jx`*1YK_R!b3#y|AW958xDb`SF$Jle_#fM+eKfJiH7R
zrwIJFhnR1b=pDoEFLF1Fa!X50V_l!uWes@RKdnVyft5n6Iit44V7J1Vm+6)zoIrt{
zvhFp4miAag0ChTi;v=12?TN}tGjDiPY)QTLyh8ETp(dwfs0XjH&T)py(VjfI4s@!5
z#1a)c%33f-pUan3CX-N@T&iwOu^xC+AI_!}h=K96tHQ)Qb*9VOJY63LNm$LkGbWJ8
zXjO$t)75RJ_3|uz4*LUHDfcR1L(H6Dol_YqA{4h%^gZoVlGUx7jfPKx9vdH^Wh)y?
z&@-&aboIw3<GJ^P{`L<L!GhVREv|%AB$XQ5W#p8HI<C<xd1|>-oicpXMVVIF`yuN#
zX){=-r)XS7LpZ3<)70)U)}T-HNetn<+G>e<!78HpCwDA1JAVwySmQ57a-J7355&Q|
zH!K3!Bx-{B`6WSHX9fH}%LGNWF57&?w@mO>2)X#~4P{Z9N_yVhwmtZVLi8n0QByk|
z3vi=gIpOO+dCGj^qn>k`CrZppXpvDp&#p0#drO}yEX8MQBczE7N;46*WYAJ0_xj);
zyR-?VwQ@BoQrg}Gbr@q;1XW(5?V~&laFrjQq0aMI=59>9yxvL!_y|h1CB$;Hhkf^g
z9y93pA(z5)5c>CsQ>|wzLUK>lqg;TVXJs&!>DW`}95f4;gq%K4pTZoMWDhYfVyA=$
z*ft63wryr{VaN~r^e-|R@n~9LGv;#o{;217n=vax7Cpx^amS!gVyLNKz+>9}gW0((
zY#(ovf!F75h6@PZQevD?ny)i<riG*}*4C&Fxa0QGXErVsZ!xaYOnosl2YVV*H4{2J
zsgx5CR9lU??-hNbsE|+v{6fsSkx^9+uY(BE2R0aaNrAgU^=>JYSQI9#m;GIkRHWuc
zTi+LliY1uqh7Uu(CxBzB4EFsT6Rm<DYVz-zC`zOiUq%aefEz5BoDJsk6N6`;5zvK6
z$J>bHCag`40KN(tov}`H@r00&Qv&7Q8QrU%nN3wojx$DI6|~?<|E{buHPcPUqY9t^
zi9~`Pd*A%d8&)}7qo8vbab514q`u!_{%~sO`(F+e1GcobiP*JoGs3}$tneAMo?`=L
z@s>0py`<0)35rQD(!3%&v~n%($wZao_8M9E%S70db;r0T3N6P4!3Un_BTB`o!ewGV
zi0EytG>evsgcUq?&zq3Q8t|?8+-dqvcz5xO^Vt8)ECvMCy|0_+P7B*;X-Qe;Z3bU}
zJWK#!_w%R5+|&GTNc9OUJoYxNE=d;lRhMGrWqJ=O2{<8mmz&00)%n`W!)7V<RJgqr
z+Gr7uiMfxNj~+5wGU~~mNRE|0a$Gm;5o33=|M6Mc;|53HJ-0%C*wxR7*&Vc{`AB~*
zwcDTjECvG!kyO{AcR4;PA8}QevHXjWArJfg%bXFU;9-M>3rpP4)zNdDZ)Xy2`QB)3
z*Ro6uW?_M;#&Z>-4R#Bez(jS$h34^>hOF8~B!qB>1iHFYBuo<?QNIo|>!OfnJ|8Ht
zoopCyd^jjV=K!I${BGQ}G5E7Lv^frVu1S=r#z`e%@ujF|FESr`(PtB6KrVxx(f%Fx
zMV45*&5jGh7RzRwg_#N=LlbR@(x@U&SAU*wl+6feJ}*$tP4;c!v}CI4RsRQ!<^2O{
z&cQS(7AulS6OkFD^WbyLI~s!L>}3NNi#`W&i`_yuOx)W<((8+=%=6oQ!KPwWf&|9&
z774Anh05J#^f^5z!80N<d`gddW4$=eGPlmxr`eB~VU(jcfw%<ZltfnzGh%M=rK|K_
zoyMhbJ8_Es87e=}N=OV&pQ=xR6lkLiK~7=Y?+LT6P12{BvO}edzGo&t36rAw_d|Gx
z9xT)=TH+G0f)k^n4;@DQzVnS=@9`geOOOaM;>j}ZEI?$Lkfq;vgK>Rg$V+#y%P~B#
znRSC=NEO(y=PWW#y~h78u0%GV+^PIUwo746db_dx$)Lsy3CWcBOnB(VC168PEJ0ng
z&3HdFIP~NIu^&r3mEwL9qjXm`wYRFW#98XkQ|-*ZwI3%IsjmP?m8BJ_qWkSLjR3KE
z*<OuqOv!1<g=)b8tN#<)64q?7z3MSir>PtMwuU}(q?w#rsJ{8jDtcTWC%S@>JS{m-
z745gyKIu22FcTlG(cSJ=C2=|Gr{nE6{ud+%ONmvr)l`V+!6h7J&mFE0BUkEtCC?>s
zS?c;?`>V@*KNkVviPaGMlDG`@_(AKYb^1&puBN9_Krbb6lT^Z3d(BvVJd4~O*|L@n
z(tD)9NK%#%^{9Qv{^Re!?zf_RTH7zZ-i*;GtgV!`&+3moR_=8F5k-6e!jqP8l6AT8
zRcrhW*pu=B=u9z})z-_cic$Jlc9XkK=N)p=v(%T@TB&pO;S#bbo>uOelaQm*J=RAa
zeOT;DSsXd>MQYsL*5&8vqrPNhte8+d@9NjB%tnqEXn%s_VB^SEmB9eK_K1}?TRRPO
zra)>KnpuFi8I)*0GcaJp<Qxg7HMaACDvRIWccJCKbC9?z;1DpX+HhBL)a=Xb$rl95
zQPQuCuul>(U1DFdDA3DFXJNxDf(6>qU37m_OtkUkATQCXEWACoA{S`{$j0NMC+->~
zD_8QZQY1**0IFLrzB|UcB53qzZLnnEuLyxMHVdvtn)+*L%!Dh0?i}MU?+SoOEB(W-
zDq1GDotSZDWzV+(SjM5*d$W1ffzX?t7$~tIT{Gy3t!nB}x$!fU=T>X&^<jrj#G=!+
znvJcb9@ayc3+O|u%1z8rA-7m#m*`(+{mQ~>mGu=%4-A!;G>ufQHS?sf?!ofKIZ7GB
z%o4l(H9cBLY+jfd6`wEBV}D$%U9xGCJVnA`*bvqtzcV?{dOlZTZ{n~4?Qev}6Dfq4
zC8!i*RlXlI02Q58tfm^J^huduWK<BKqZu`wJ3)4yKF{1fKd|_0pSZ1o@m|_qAsJ!6
zyVjU<dcdnlVnm-$|Lee~g!~dz&0h14SAy~`(~@Sgn;IYb4WR?$5x4=%jO2O#yU~G2
zp-dWggF+Bi2ZS50P2xSqUa$X!zO&T!dt1eFDt6c5-)O@&;4x#=RR3-K02ROz*1dE^
zJ%BZvu-Is=3doa}>J`0*wIfbly4n2WI32wgd!?BeWfhT87^A7_Q)gsYAKnr8(!<&?
z5}Dd75YFktfpEUnrwU8l&9x8*^Hj{o#O-GFLM`fxrs4Ou8bYayca<Jbcx2i^<LR&c
z!#4y;1cYTq&$>hL8amIBSsQV7%({ai)z9ewh!`-L(6zy{gGn5R-Al`r`^^0jVLOPw
zhyl><X+Bg|fn$QpH}!WTVRq=+odadff_g_8Ym{$_3VO**oDh27Yg~E6n_+_=elxLN
ziC@<?NIx2i=!vL(;5D<}2wnfbfn9kMiL$bAybw^PlZQ-FS3MWKYwm!W({;?TxDK>2
zeB(YH1&171^QX5PN8P9+R7^1_c!Wu-yT039#JNvXFRw6$*62lmqN2+LKu$5Zi6kVv
zVO*Y}4elczOtx_GbI}j@9!yN2R|+J7*v$ivnw2L=3PhGwFTXuK4#!Tdztgz0PRH4q
zg<_l<9WYK!Q**zIdEm#8$s@IKMMxY;iQ-CtW(5L=jmClDI*x>qluKZ@!)G|az=uN}
zaijU*(vU5A#PafRF4=hEP+&YEpYl7+!ArF9B$hVOZFVJT705K>lyj5O{zKrikL!54
z;Dp5G!-gTW{f@tN)W+ZkQ?XSf;)9if9gFRrpf<)^o7d=63rV3uZ%cCx83d5xaMu1{
zUa{Qo>)IfnqbJ})y`7-p#zL9<y*Y1t@IO;f-UY;E$o1mP(Eu({jUQng>lgCKf`G#n
z(L!pM7HmIzz4HK(XfgZHVK}nb0SQPM^U0Kur?>n0?$p>;-2@?F2X_OOtIjAlRu_kS
z{s0bj9_E9FoFri?L&<ijnSF;ICWZpmwYKg+M=GJrbhUi65!w~>{8^YnsF;cx>6oo;
zGi<>$bz+x!?lB=>kicV3HQT<9pBQDVIHD4Wu~apr#+)<CKcGBF+zFsD0Q*q8^wc0<
zoUXPNSjTS-jtma?mw_x5yH{12USFh$Re@dtuZ=DP-Yk|)_S%^9jt`BOmC+}`lF}=|
zg5;dgv_R%vWiK?_YXT*N&%H`LRaIh2)7ufdYtD-?b9RL+KgCZ<Cvr)RR(B%UlsfJ2
z=pk!P5N%NaMz~%yL@e!@Xj<N?@=}Y`Rr9R5X<<ihKuoe}nK9pN>?a!#fdmBC3n~Ly
zB;f1Dz2?Jr2QPeq0Y%O=U=Dc*pJU%ku!kYN<~eKCi#phYe@}3@yQ&AA2`GYNs*S0)
z1pEIHAmd%&t_C>TjY=bUO0r?x&Bo9R{2R!4F_&EI<Ig~ZGF;xRF+mRpt-6|(HjDTo
zk_3`NZMIYLy3nXUPn+$Mzi4pR;M0+hN>s_Oo7cV_)bgvpuCbL^y3BqJz;NLYc>W$U
zFC+BeD+9%e)OlcE=m-)jQjGVz&C;tvlSu86%#wwLtt&GDHVIcbs?5y#DnugfnEiwg
z;l`2_WRkF`)m&%3H$M2I8nj|D<O47(;tLS#SN&aP`g_5D-S4v(NP$V04M`K;ca$;f
z+n~`t$Ggy7fx#yTPf0$etGKo1ncoCG_?vGH*D&=u_shPZzHHW8=27c{Ppi{$m<&=k
zU_hWR;-0IYG9L{HS;OK+{DQ-)f{%poflx>em}Sm>R)-H*OPI9ckl?fuo*DCX%*@cx
zmXUrEQ0vKn_YI{XP0<}SB-tjZ&||E}N9d@Scs@<-I_zGUkf%-?VNIW{PtZG%%q7KF
zCmP~xd34Zj@)GO7%^{M2=2%C)4=Dx*H6Hbgl~&wZordP@)CRIF_zK7(Y2rI>fweTl
zKlY3uao&+av{M%vXg&#xVQPjs;5;4AA|}!+5S#|dOS;-K$oy?@01*)h6N||wRx^Pc
zNtTz4wDzy*39w~TQzT9*-DcqXjI=7>?m6QVnB5DOU>?J@dcXPIYdXA4nthT7N*UA)
zd10#Vt~6GB9Mb<6y|#KHlLX`w@P!f*Oz-m0qs~Lr%>tZIAp$xLdekJf%WaIkA|NbC
ze_$y_82KX!PoPcxYt55x)!_-geF|m`)jY)caJ*FcY;(?6K{HSF#rc{#qy?wY;6Ls)
z7i`nVMN5cmM);)CX)H;-InQV~Ehsrs2Ro$1tR6}n68dT4dw;UR9JM#pdTOBfTp8H#
z<!+#dsw^&7E!$wPJ5l>$rR)VpQ5Oc5VQT;WfIa71e{r`;C5zpvrjZfI`_($`Q@xh@
ztdBx<`EUVLhy{xEhPtG{_ilT3H24M#D;*}lN+Bi>AHh%7$#)$qFa}?OkT?iIcm#iD
zol$pQ$p7|%W5~mMkhdw(%K<-^q}-Z!&5TtcvuEinb>HnPs<+I1=}WzR+1wJJz^a#2
zwY2T=UuL>vL&tl$60P7tXCvLf2vE}X`3u$q@A@5cevrI*nOB4`Gp;_GVYfcf?Pjo-
zXt1kP%{+UFt&j0;6+rXq0cX7)Z%2RTI|#hpT|vb~r#<wA0NHJm1mFmkrlY_0%{aYv
zCKD^FfJ6xCzdG2uH&!2%NVY0S%~UC4tkq?D2(y5+3$k_N61(vyJvoHDc#TFnjM3lu
zKHI%iKfwp$>v5!ZEwvmc>suDpHcN<*`>LJiS&36aWfpy`XIX^zn1toocD$_<?1i=B
zU2)s_W2`Tq(w7$iqwo>Bs<i1=^T06eK5B=f(mh{%uA0RbM0E0z`5GNb)&E#)=|X+=
zA<TzbdWtphi|%7k8Zq#|kQOFe=GDY_MMWaPDv>0J1cn4VkSJ2oF7x7>L&tuqll8?q
zs|qO{Y%+;z;QwOg28CXVer3aCNo!qS;3XxUKu_nD=EOxo?ty`FvQP*iL9L{u2m@f;
z73Qg(`jo_g4m&0IdxxD8HWYzvpbw-`$)O`eaxXLjw@MCu5ZEYW6E2A?gOBG%ZC@YO
zRhmVCoG|;q8jmtdy3si9pO6Zq11Cr*c(un0ojyjIbDj}CD)hBA1bxe-{8c=gWC;G~
z)OMY9?->DaJb^C;_@K5D`b(nEaLqu7o32)UZgxH@ajokZ7b2T%XSMj~=v{vfl5Z4i
z)>p}@<DGac7gU=!-YDNG^D>bjLrYz4GnFu*mjB35F*0UB+0oGgF$F0Q3=Kxjcq1n0
z2Qf6nc=OTOi2OE+tBkT54?vqHe3m5W)#;YF(0s?x=G@_*Qr*h1h`op3a?wQd_%xkT
z#})udfgK^Jl|*SBHGP12-T}X5%Y$Sgc86S&a+Tj7*1#v3P5=c`p4gqBr<^lRU0rBS
zaEF{R#7_oPmQ=SU2ig>`E_laCjtG5(d@X4ja1xaw{Uu$2W?;gv{Lpww1;25MPS#8Y
zv;nSG&Hx4Z$Z#GlXHG`mU>{bs2=tr0`P)%Z5yy(p>l=j0=r}>6pjvm7Snp(Nj~J=M
zGGIq1C9$y7!IkDOLqa>>((%rmdMTwq{|L3EYTIbOH6tYYfR0#CcYBG(V8J9q*_o<5
z1FdIN$cc6SHzVl5^)yN(2<|{u+?_2kcei7fXOrniNMJ8W1#5ze9c695FktPqfnC#O
z*ATDbIQY+Um-WRZ0rpaToNPBnMgynBXNWk;8hfFflC_|}iGDH~TR^?U<<`D<-?sEr
zc2`2Hq${n|Gec!zQR2^6>P3a>*m}D8<aIhtiPb5y+OiAbo|j&tZmP20N(}pV+>n&0
zXQ`pmb=;6tPAO@M7T@e4j7i1UrdT&z7*_fhK4u|Y^c78bzF1%hYRpdK<(ZP?@Zuw9
zYH4xF5DC<H8B>~6;0hBj@{5da_-c@sO^4&%GxOa6A2_i$Zs+F$G!)FJ@3HFf$Y}T1
zgTzO||L*}<#L*%pLH#`4y5+~P_5{qn9JxqTH)nvzy+79q+S+sGP|}NYq+1uyu&&+f
zJ6ELg5bC<alk{awRVSTo1r!Fa2ZBX<L1$C6bp@nV(hI9h`{b~VIGq@_u!SLTbpDz>
zGJB1AS#XdB=8zGWDG(zIHIT%h#i^LP%~!7t**Jj=FQQ610?_OxHJy%}>V#}#`s0B!
z9@btDu~7~72kgU(Ha}*(U+Z(5!3JthDQ(hG<Bo;(&Ou{Fgv4U?%BLp9w*#Rw#Wvf!
zz$zc8zXMN8Kpfh;6c;K^O?bwP-lCI!1oI*8ZJ@Oco?RLVWfh{##pi~6Hi(-_AV8Z?
z^d=zMa?2m)s}F`e`hR?#cYG98*T*k{N(%`kyPL3?o!v-pDWr*_A(Q|C0tsD(O(EH|
z4Iv8zQ9<;v0iq~^QWTMnfPlT>qoRU{sE;Blf}o;eLq$a%-|xAz=|1lt@PWBIGk5Mi
z_tf7x=Se=EcoV`Fcp+?G`a_?*;C`kwbR}#bkA!%Gt(n9!6B_v)b~~=HLPu%hoVD~@
zm@5ia=5#a9u9>S?d<3HKD*%PTX(H|))U0h!nvYLyF#`7wY)0o#m|ARdj7f7(P`g}i
z$KN3bAJfXXH4c%m>@-!vt#MUn_orWkbl<?RFjb1MlzAy$EnI*KJV|Qz?e5*9+kDVU
z2M~o%5m=N)4Et~LOzql6@Qkd&nEdiU4h1Y_45<@xrziH(>ajFGK1<FAzz_*M0{%!=
z^Y(b0ZLA+;OIa^gp2Q2f0J1F!-+7YrS|0pYs}4}P1)!5WAd1G#i7K7iPSy_?Y8eWI
zsM*rA5k%d7cht9`o<q$=3S^6~UZ>28;Tq2wzshO0c&N?V2(8zl4~T-2fkXI@P|vwR
zS|OqHs9em78>b#livFomYdix3*r4#vLD7#**B9`<NupKD>!LTL;2FbX57k&330MZ|
zf9o%^Z%Uiuu$H2TA-u{>JQI|nM;QZOs$PH0)Axhs2`FPDvsvqa)LNf_Cff5<r{!V9
zjq1c1q>uN9v&<KER>v6zYUM~yFDHV1bMG`y4GFn$UrWJSQhNst1Gb6tEl$1mu>0@(
zS}xcNaA^cb9-&TX3`6_5U(D6Ht@?z4mmL8qm7@vL*BpB;K^1;yCKU*05(CguTZKa=
zh^OW1LichD*9Ha3hEPGSLY$LO$CCBt^2!$94AA!P0Pq-)CE5i6-Cp;a#xEM7r!@~W
zV-7TvNA;lB_6l>LRy~AEK#gQ)q0A;?+t9}0l>4vT)+a93iVjW8<Sq;fgvr`5?t%xk
zy#yC0P!P}qSpSz@>z;b2wlp|*!1`$HAZavGH92XMyJ;r@#)wma2ssGPYV&^>p5p6n
z@@&iqla+7a<ir%Ob#ijB29YtS6&t<{L*?D>?)`7Ixp7rcw$C6`s`XCXm-yD6@8vGt
z+h%>54!~IW2P_Q2IWZ&El)lk#TvR)Nj|IoI9=Yk_=<RFtNR9P14z0PvAD%m`5Kryp
zxC!dyAD)GKEwu)gUtX<S(7!%e^?cZUMOK^pLlDmsEm3QZlhcCbNo{e~`0FT7^Tk@Q
z;sqTQ1c%^R<;#9;=AO{BrFdug>NL^<EdE9k6;+zMyKlH$hs)s=q<c|-*s@>9WlB)D
z-R{0DS-+L-$&gHka=mwybcs>ji`^+-w;t`&D)|udE`t%y;jzQiQ`0<uoze2zawP}#
z{S2(PVKJUxGxgBOd|cFJpeQocJ^3Ev8+~y&%nFJdj{RPh;~8=)RP56M0qkMj3?&|e
zc;8~PVra_`@qi09P@)7?p#P*w<4s4+JfBAYS)7&N32{UEp96}*MXI)TbGJF5!Qi65
zRRcm5Kv2B$ebU_Hmues=H*3RB!;LW1VsqU~4p+mCs>7VLgXgqd^@Mp%n)cMg#B?+d
zV%34(*c7q=)a6Uuht7x@E5Jd~f3XkvXu;gZ!d54@Fn2y3vhgPTBghcyvf&&opu_->
zPIb>0?v=Ob7;*4pYJ#Aswy^<o|1t@Jin0VMrcmGjs?7=aXGhuy?Q0TE<!l774QT&?
zd*>4K5qHQlOYnsvRs&Rd3sh*ZyW)s4mB)TGpI;DCwydRSuO#;p@W)U{WTe|G=E;L?
zk~cT6jrnkL$dUN`8c+IS9pBM#m|@8i)rEY|w_k_K4<#W9u<cBskQMo4D5_xuH+SZF
zCie)FIgbvU&dDbdgjP27Ay4b&7;J#(y&Ss??=0<C(?Pxgag$WPVV-y2Y%9;KQRapv
zPE>{Ep3Fr3tTZX6KmsAO6qBk7yq?|{>FXo>c<3xg)krAM(c81op^0ozC0^oOfoqIN
zo}i|gp1IhYF!1aEp~WiVi&FOQvarr$yESs1P%-22SoeMFwd(}eC^b#Q$dz^q*n1t;
zx@W9tl~biTT~<{I7+z>lk}k!86024eyZcmXwuZOQLiJd}2I~p>?R>d=<eAW459qiz
z<Y0l~1Z|G53kM`97Mfwcm#>}txPnJfGl8U)ASeYmJ_(DXJl9>+=4+h64MGc854AB3
zc(kQiY1|oHIw@IAYvP&NPjhK(im~McGbD-zdQRP3=}B&3sfXYW^7BbkPv$r!snL7f
z5zpw)6?UstHK+|BmAa~p+3ag^CjNybYAN%j7#rdtp!~p|57BJVee@kcWN|E&_to7e
z-9~QMo?&_c@WBAJCwd@8Y)W6c*r=zjc3=FOMm6d)A;=jHDUMxmL!s{Que7~}!w7o~
zVW)aeh)x)-oe>iWq6+v<>Y5MAj-GduzDj>6vLR=YPS`K{{ptFW1P4)Ls~r>>gQAzL
z*8zMs8XHt?zb85!$RbMw7NQs|8#b3<h<bQEecH$xN!+_}T)a9c4iQ_c;pG6Ly5~zj
z06I1Yq*d6k1s?H*1IEcBXOL9rQc~!X&|O{KJZ*+pP#l~hl$;`<A4ju{c*+Bto=ZYs
z#jIopq|*^)wc&<|#6MKVN^@Uc>y!6sPcIF$Ds*6!F)ZJv8_gHy$e5hP40JEL?kH6m
z;+Zi{rx-~T9L>ZcPN0?W`<dh1j-Rz!iAb&!n4))hFgNF(_1Z?Leq3U*1O{kQANQ0d
zD^wJ~UL}EYG!)piN;z(>__bvxlozyhDKMkG*QkFW_gA_7;cX&LY7hTNe<cn#OcCtl
z!O@;w>soxYhyylJ>(y9M<un9C8B_hcxXTY$OK@sq;A_UZMIVn*D|)+k28VF91f)VM
zVVy*A+N!T(-QQjuaxy`CE(xHcBvDR`E-`WL51LkA$KylzmI2J`eo5}!pIZlSz)@Zt
zl+-+pSWU-NclNbfrGYz$=ATOvAMiqgia>atxZC~Glvev@qR0)yKGbL%BA|(E*PfN`
zLt#`1#W+vJM`Z;^iL{}F&f4!Dm{X0j!J0<BkoJreslUXt`CT1@=AJZ8tl-Ll1Yyv&
z`^bIoYAZ;>NdpNoOMi6G>wxXfaq52F?U`Twn=}Lhy~P0Oh;-j|%H6G%2HNptv@A&r
zlJE;k=e}>;FFsg(7x-Y%K=_pVswQ8!y9BCdNfJ$oAg8tMmG!ne{gf3wKnmi!heo*v
zvtjE|_rB@X_lOlFAR&>)fBxoP&{n@6Mgg_)&1Mk0MVkh)ivBv|?(<;SpyxEnjTZxf
zP>jH;Q`G%C-RYNVvs5fIA1*hGj-e9B<oCnwtD1y~Wr1Rx0luAsEqOpvt@gG1-T#?h
z4Wt@g=ARuzLNS=Aa+bMMOR5LS$ktgX+y~bUx!e8goREtx02Y?6rexezv1<7$_r$#F
zn`+#3<b`s0A6?;o>)Mc#M|F%QBOfus8p{J?)wxCPxAOIEP*H}z0I67(U#s$gzDiKJ
zE8VecH21|ZO~}9t{7PykK`{5NHcKCDQ>oA<GvL^o*s*5fRNFh;Ppl4k<R?Nk<g1_y
z`Y5Gtfg0lEw3<8J&8`kP0=^R63jC;66=C(nqVhMIyZ_VrlLb1{hOXu_h@(iJ4Vi(T
znRj1Pos1y{lq7Kw7qW%9TQAVp$$$!$c;O|O)otJM><LKKY{`up>F3L#J6v`N%Kn`v
z^o3TE83l$RoBk5PkUDX54%aJ%p7%Sn{`Ce7b@EcM7k%YcxLUeKVs+o<xuZ+V&TDxr
zo)JN=<M2+@p!SqK?jbug8yYi|6@getL1W*kX2)k&?Q?IsJ?xoZw3-GY7{ru(9hIB#
zQMNQU?9n=!wnQm#fG3iNs<Y3!l22$)q)5L8h>FBI#s<T6kf^bBkf`-yFW5u1u@}~b
z_z|GD1j6)5DsQ!C+7o)g(9`Ru260%s3~;xN(tb>)I0P*|Kgg0$mkG4oa=}&pRh!RS
zXxJqNf3=2+%P3Ac+j;h^3_X&hEonS41?;SKT<QncvU0V#PbrE*H3Br1!{hn$I;~CB
z#rBR!$xy2=^DNEMI-nMHLF5pyEVAC7TWV=$xU5G~d^l>Tr_8QZe0+gcyb;F{BvsbV
z{p{qH&F5>#&%gklVf+PPdZ5F9J3Y5H36V4m1WE>nTP)rLIoN-iq2skNjC4*dL-9v}
z!Sxfbu6^0_<*1N3r~=5})UqN1)9ECI953-?_7Br>VE+v8Ftp4fDxCuVqixS7b8<<G
zMI<dYkam#SCEMNi>P%E8<bgpoV}>bZJ5`rlbMC!uooGD&a4|*UFA>HdoJ=~i@xka5
zPvo2XmbG<?W5i0H6%RQs@Qhq@%F?!tBl-k@VyC&E))9Rj=$cM36G8cmOBka5`={q1
z&S|J>90!MZo+$pV$>x%KbvzGVfS<)m_ob_3QXRk$Lwd8SyQfqOeyQpB(`5I+@HRgm
zYc8R<boQV4iC7yu=0tyWn-%JzIJGFj>bvadQ-5n9<Op9yg=CgLKRbF+Uk!AwhJgTp
z=b`P>-Min?VzOZh4kbfsQgApqnbS(BeiDrDlNLp>h+$6i_j@#woA9hyIy$IAc|wfc
zn|+?dmn3v60ifF4w}g@Ez}o1dXluHDZ!p}O9h0GEw~2nwf_4T=m879<)9My4PP-k^
z^M`5`387V4Xk{ahNExXXdOQXu1M5-yidwj*EE6zfGlPuh5+0PULh~<s?g0$|uoO#4
zJi&Cw?Sp%)(>?A_U(q&V!vG@%d};!Woa}!<RwdR!R<T&)ePwx-=#IGF(DP7B7v5(s
zoL;R1YDp*Mhy@;<te#nJzA#UZ;cr3^60gDCB$XKtk8;1bU%Q(a8Bl`TQwGq9wsvu!
zcu5biYjl7h@eZ*h$)wV_3<3Jrr=GTVw(1Ro#+Ozn9Ue*e-$UjL&*^k{cpJ%g0{YiY
za4^5s+iN@r3M_#jSZ(xCL?N|b7#bYvS-D83QK0k7;m|qhbdM)n;*Bou`;O|QXz&Hv
zdKASJPjs>13{d?jqB6<7?sJ_=i^hmdkfdMqMTF$?PVRY!w7!T>Wl*IUarl=A>R#eW
zv0Nz}q~S!@@GsEb5<mH!H=A$YsWBe-Lxfs_tx^beqjCLI>drYKp>ENs(GSRGlIUTt
z>pbW0)fs8l39Ghml}caZiD}wiy!bNf49emF1P2h;SA^&D^E`G(+t5;=IXKkNjEcom
z$l2jdi#~AQ{Fp#W#MqFi7XfUgW^IdpuUTt}MDr*qb|q21R~~nte56g*t+mFxY1QtK
zVt`^<;<iyk5+<tc^E@9s9@dEANd4eijJ+7V1lWL@hy{p19(jj5YP0Ad^37@D60|r+
zMnbCkHp+ABXnjaBO8ixM;Iy@4Br9c{dUSbo=HvP-4y*{2qAJqUkApHyZ5bW?^*|jc
zPG{jE<4jKI#@5jn?`oq@TS;+Hfz8I!e|krB@?AQ0XkfL9N9G)oAg{Ii#Kh1)U(%lJ
zEH6cG$aNu|A8N|7d%oMC(G*zV8C7^(@KhH_i%uLp&-Qfh&6WG)UE<9t5%0KQ4(2`^
zJ=U%#Jd*x%0hOIHNd5Id^uy8m^%=f`GB7W3DBg)`N|rn20m1B8mS7bbjX@no-TIrS
z*>x5M8w{TA6QR_atZHDklo(<u;G;eJM87&gJ9R-B(FP`&<ep^p;STfl$6CGfc!Tr_
zf}&PB{18(crrhG!7<G|;(0RpLPhglxKS7TP?8MUdQ0n5<?Stus8<GWhR@@0iz8pa0
z39M9{Iyl4g=H1mJgJxR+42A$FB$j(l-(Ed5M$mminsQr`+A+iP*IjxHc9a1U84QK^
zwQv(l1akBw^V$|6uTN~z&^^IiYTOedrGwH?rN^hLo^w0}*K0o$3Sn-Q8WulBeLvUJ
zcBH;0F9~Q5Q#v_vB?X>)Q^KZ6s11~ow@M0vz34UX-)G7-O4^J!54_I5DfTi`(o@xC
z^GxqyQ}${UxVj3c0f377s9E$C8-d%waVY+uAJmbFbl_?5yx{reN}c8k-mnhZk4Pad
z{?@OWGtvaxsV!?bqvhWi4jqrr@T|B;t4tQoPX~3N@Kn{J#52=^Drq00j*g6oO;b;H
z^7PHMju09HDfy72ifJDGb}LPbWNQFv#S@oY5gmGIWBi|_9$SZ3szbmSbnQgzgu>6^
z*Z-|>k9<&rIPnV75E__CwNp?^H{9{68Iu$86(I@Smv!}Gw8|R2Sa2xgy|Z)y$JrgC
zQ@+%YJ)Clav(`3ayt@Azchmc{%}9ii)5<bek-n5nDChXA?&}AI9h3MXg-ZOh^$_@6
z{Ix%Q>pmYIb`xYR{@Qx+c4(<4-Y$9&IpVtUD12lblDm6W^k;*0re4t9f|Dh`tXEza
zE9;#dUN+CubxD})aB8k3kS0qu(UYe<=HccK&#NhjQB!~ep;%LZ1ND+Jxkx?^7#>o!
zrIY8q2_d_(vEy(HRTcY@myA#zU}?1HNUk0c+ks|LHF|jx-oS6(ckT9A=*w}$>C3#h
zT*YM{r>6IFe{)gG4=JjFHy^uRDn8;uKs8NPS9Ei?z0hI`?tI2lG5OJd82~re#r@q0
zJwW^}10_agh}#Tp_Rq1NG27cDkk5~>(MdcO5ya4YEM6^1^Q3*KGp%9b)quO<u|t9-
zXM~VzJ*F86W7JB+<0N}e&;=~}4CJ5{wMKamNaIrXu;m&J+dy?j?X!xww0i7PQSv7M
z;nO85+bwh7e?o&qYdpN^NfXqUKF_;^>oMYMo$7)OJARjY)j6#&!DFzt1uG{Q#`qwH
zQ4-9=Kj<s<RXg(V)}uLpxzn6DUVH0NUj~)>3PgmXxkxqcVN*T+g*xw>ht^5_>|2}o
zDIc6&;U^~+C^K=~rS3~K>Q@%1j)ItxI6_Tzcs2~zN1X^`MVUl4$p+3;vE4j}EvpF)
zFxaaQn`1;mhPv#8=e5KTc~*T>D?`2F@g!I`)y)+ip>B)zgpIRa608$6f>_Gd%RDb!
zhfUQec%D!<cs?pPW8y8;774mJbmsW0es@ueka8bur~`+XQF(sT^3~#oi=jAyiqCUz
zo~@H6FdX!!=V+uHRXMTYkDhdwg=t7LP6SEyL6TZ;00{$2`umu<^Fa-rN9f?6nI&)&
z4ill>Bo%1xDF|uvdND$7phnS@Xzfzme=6!*&rO-tZUcNiy2dLOG9?kzkKcK&x>b*{
z^}<D~^$lRX80){UGFMqS7Y+R4%%?{12-OVCC$tS{hGdPt(xf19qC0e7^Nv|su^Qo>
zO#*?SX|THg+U1^Yp=qG=I@kcLkogyR!pbx@pmEp-t*JKbQ$J}DZ{&(I=2<Ig5d~UO
zfC%vgLkJ)oaE$f5*uD9;kcT9?k3|s7JJeA*`cTKI&FkDhoDi6U#8bxVIDJq6t6lv)
z>mSm2PQ+(1cFmzP#Bf4$+}$$ztM2VxXv?BsV+&&`0C7<l&xsh9-NA*-OY;(~k#bth
zg?r$i-7b!JcSr{pDpi_y8agtlcGg931R<Lvc61JxxV=@Xm%MV2GNIF4+b<8@8QQ!z
zw@`<8nEmK;VIc%PCP@ng6DL)E6$U#tT#D+o-j;rGyXE|A1VK9L55!PBJy~5^V$2`c
zdO0pgrBZ$}?1x(AU^nY7HG+tuCD7RNFq!QbAKcGx4&+Pl&jPmMW8&%2o1(Tfjkxve
z4!AK@W*|SO#BYua<kL7>&4`Se5ojaVrPKgbKB>|JOWo2mD!sIgiyNykSqV}uC2fb}
z?=$UBKsv&&sFRbI4=O|oysOO1Y@dDA?qg;PB9ai8B$$0`kNTxuyN{Wxw!ln$)7pTh
zDP34{I~UA{uczq{1|jgR7<K(C_RL`&-UKeCTLzm<2^NRlqP9+Pj(@G)mnchCQqeey
z2B9u~*gDF&BJ4|8s(z_oUOKmB)a}2Axv=wyxMLRTR;F2AqD7*Q(c>O6M(D+;@6Jd3
zy*2#*{h`YEZ^Vu#!d;k#!vHDf@XGAW$S%+6E19|sxhjl~eB?WQAqZ)y2+YC7hG&H0
zhhz)!$yB`_6nX8s@a4>ZXxR+$HL-fcLX(owH9oI2x_le59L<8_u{Rp~*N3?HUA-BL
z$s#y6!a?L+&?80Jm%iHG`Wdk{K(7qQ3T{7VJO7{_kXqAH^zN}x`&IvLznnb~PhFZc
z7CoDT!5g2Lf+OVidyMS!tz78XOjHp4lxb3vZ?)f^)82($kjaWtI+G5bIgyJdhs&jG
zoH@`vhonzM<fr-JAy5nY9PgSbFbm;igFD;C+}*A}q>$<RNq%|p*O4T>_vY>lC{v4W
zt{!<NJdhgJoBMHQ(I%b0s6Jk4i+VIn(#&WnsZRi9)1bHc6P=%Y8M>c;L6Asz0<ml)
z{n4T}9u1NC0}j#0RKS-!JmPKpU)Qx?jt7wo0%NC1I$3iu>gXuf8zHTibN=)}0OJuy
zu`ab|s?ljqYfbPRb^?$*W8trku)Et+l|-t((J|Hw8cBk~(o8%?oqfr9|M#K$^`V}>
zDC*xIhAf9nC{vzqv^u~GAXP8mYQd-q>|4=}V&9)^bM4s%7#O3bl^N^DwWgRG=mtWM
ztf5pFV^Jo5)Um_qP+8t=Lj3>_b%CtKm)Xv&ZWqE^B^NC<H-9>fya;_r@Teru_TIL(
zUqae!`+DbZ)5E?*HApR+<3C=RPqAF^+}}Gpz8xla3o+m>5I~=r_NuMt^0pggzq}M~
z)`nQO|2W-aLpRChkisW1an*KZWX?^Y9iUTjJqgN1a7^!A+pYtvoE{+GSo2i(jZr=2
z8m&GF5fPl`cY|g}?VHk0m|pOVuq-Sjo_BTaYFk?;A7s%d<+0dxa0`io$luY&mOHrJ
za`*v>HDKYqG=yM%z?kFuU2SaG-Kx%VQcR0gK5)J9Qda9am(iQ}^{>;6RufuJwLV-n
zk_DAR1)}RXwov=0qvQzkqDkIzGSUI^>12{8mm43v)T+09a()GQIJjqM(DY#VzG6+c
z*2l1n5_A1!mJL6`axi|WITT=p;E3Cyf__)xBL8?f6rJrWlG2HMw_r@(EHR&7*P_l$
zNoqp5+FNP-l?nOi^6qdj1QKp5fm?sG(pb=s5vhhb(_ciba$NuD+Fc%Y{by&(<*<MB
zO8n-DB&VpO1;&=^>aPRzuSVw?2Pd^&4&7B}_{b_y1Q)pocALs~;9K0TGxJzkN>vpE
zbb^4^!a?YR&qz{_zGIl5v@(RzdrNhh)z*a$_v>wC3sXx9U=LJyRqBV^!q2?lHU#+8
zAiMzL0WM)tp@4%A+K0^6zs>@`gkWU?(3rqWWO1;Jl2x<E!ed%!q7W+A2}e*-_-LCg
zt6c~m3UdpT;bsg>3yAM3Ufn$}JV~{En2ky!U9rSVtU{`N?=5O0WG%1v&fuhI(mtd~
zyUxNBfoDO&N{zE)^up7k_aWob&aFeBYg}>^kf{tnlhklzefp{veQX;R*A>!$c;U%U
z<r}_<jrKWFCFhxIHnj+WMJY9UgRS*Ne7h7Bh6+(Bav>e+@8Bd~WqbJ1wwB64s09ur
z^?-P8bhP929q1zX=a>iCqpT4Dj2M+O+y43r&FjZdHQgt7s7=ZCkMi_2J#n;rsj;EH
z?Pq_$+g^4kBTxi&lQf&GmdD#RR<w&1<%iZ1)X@hm#6s|+uP$>wdnim+PHPDiS|J`)
zBnRd0_nf0ggbFds2|~)lR)K)WtI`7V#+90y5hRtqIp#<*DgZtp+A%X?)T9!lIVw!O
zQxHc0v8cqn`LTMZfTWrjbz_n7^C;-Fno(8eQ`{0+B=oJTx|}RDB8Kn-eN2SKL%kTD
z@#>P6M)&@_C`k;uiu|*n{slm*o}KLaYCBX-L31zVCDC-^@B_psf2nzT3lpe&Jmc{7
zwDXz&=6FI|!YYSxaLw#|$O;H7;q0n~M$*LAqJ@FDVDXg7A8t&ngtdZ(hEIr?qwWc*
zx}uxr_O|W6U6XTaNj~e39}%9aGbz+L)3*O+&Co?T)k`Yu9FgS8wM|^w_Di0qISian
z-PR(??rHlae2S0AhSHUK{cY!p$6)jn#HCJ2Zs8e`e#vh;Ppm^P5(r97!ZQc0#LPa9
z@RUcb-RPX<)1pADawfB`LPSD|)2G`G{Loh9G6uNLqo9ksdN53cZ#K~m;;jJKBr8!Z
zy(g;8XCWd3Ns5}oE>sUZzBKB01S0sn5#Bl8$`WV?l?$Tn*Tl8|@>UH71OfARQ`blR
z7$8YFMp(iiaw3HDk>aafT5d!{b2RHc4Xv~0ruqX&mF*X~D220}Lz7L&(<@9~0^NPp
z&QFb_*XZ|K1dI=XYAXq9#~%iH_VNnYRm~8ZL6UmDyQ{>>vp76LPQYWa^$WKdbAN9o
zmcu}*DVsxqPlzZTxHV!ys}6EG(<cR?vyVlD|AzJjCO#jLP!-7K^id3l&}-=R#_F+}
z#ChW=z7<C-2W7`xV}Bog8L`jLHN7XOo<+vOAwm5F;VCOL#4nOx{VOqI>6aXN<PN1~
zbvuyf-*FV|;}VoZ$cmr>$^&V>V8Q!2I(?-FQuF-e5-GJW#o<0#|EKC;KgYfDM0^AA
zCvJ@;=kmfp$967iJyN$bVf#Nl<d}D$o$xFz3CrN+VtI&Zz{CoMJB}UbAQKx~LB(*?
zk4xTmlsLIU&o?Xq@ldAc*{3hi23WSArGZ<CDBaW~^0siz^2T5sK(1oam|#kz-H?ho
zWiNb-nMh%DxWXLLKa}%M`{bu!a6$-xL*)btQY2P&+ibh~v9_C-Vk(OX|JP?`SH#pE
zp>mP1V2S89TNXte-5a_IGjoy`$GjydeBVdjpTy5#4V1RyS3RDIxbK_L{z#btUg*Dq
zw(CkQ5AT><8oH6K<Cse4cfLZY@Ao>puhds{qc}6I5UYrUh+WP*)`ot`6GSQs4yuT&
z7cPl<ES_Tx@9>wLfo)R8yK~ghJz7fEV<(mby1S3<>BaDjM!W_t5Z=pn|AKbC(I*FC
zB8k{C1#ed&EBE#$N3XZSLiiQBFICjcp$Pan)Wj!2T@Ah4K0CU-fSLryf$<2J5C{R0
z)W96)U&F%s!(C;)L>FdzpX<?a&or&nvoYd}-S}zv#v8+gCtA64RKg!)R2Atf)Df|o
z5~mF}_Lu5Q8K?aPC&cBPKFkQu;Zi&T@?TdOpXQ@mC231xoKIWhyO!HtTclYPf?V6E
zQVI9Y=WM%outFpU!Q&7CmK~&%JQuCAonFu`R>mlw2Q7er5i8=}dpmAA9}2LUg)R`k
zZ7hm6hqZMNXV0!-_+CZN)5WvVC8fd3pm^t$Z=eg*XhaN5yMi_%?;mhH`AV1&i&l^<
z8;=zk@I&O|$)Td<YKE<a24bc!p!5}MZLhVqBtU6CEk~IW@aDd1X=mZJLbqUi^2ETT
zl>;v3<+fQX+xCX?Snyoxim<$hgXkSN4iLSF4)}$Dztp2+?T6R4J%QGV+(r39YrxY)
zPD8ov{eD>L(!;Riw1AsXQq;azZT9u;`tw{Jj#X;JCz0_}LwiFJFmTCHRchXM9mc0t
z+X$7^;`1Z;N+~JG)L@T&w%PuCv#q#4h5{w!g%JCaxQN3g+B&325JK9^*GWMmwee8o
z{)OQ#2%82Oz5?`mU@#y_Z!d_v{=b;sguDaZN-*;z%s0ul?=FJtVByJgMMkB66*=^r
z<^wD|ivtO7eAk{iS|9#wZu83rt6#pi-%_EkiP4PRNIq66EQ83dD42?hfcCU!H1Epx
zvYNcC{U`Qr?RXiT8>GOnxOSvt3{^d#nW6&w7Z>!;GwC(vhtU$VrGox$$2HMhPEdfp
zwaS0$F~^RlnIBpwsY>`7cvsrb5hH(wCt{I$1N{HMe!Kfw-lT~FQ6%bEm*4GsKjS`e
zA>pslb}O?DIuz#4bsT?Oj}9P*6fQ~a3{2<4w>jp%t}n}}Wzl$0T(0B94P4V_0EJT1
zol+al*oW`c3sS>BC6EdcInLPE9@8T-W51OhqoPmR9mlP!^iLsG1i#P$`$F+BAOm2B
zWDP+WKiN0;)Gr&U>&%l1${avra<C?yviIeU{9Jl)(0l2my+uDbJ%LhwhM&lrC%B{F
zhETH^9k1Y&J@iif8!99K5YaaG#)}>KtMo-m+?NF>7%PdJ>bi4wPmvyi@?=|gUFG=T
zEHCYgaP`e*6|29e$AO4{oog%Z5vf+{H^<}$uvc~c{CBo+Lp<__HI$AFz{WTiQ8(Gn
zSyVL!n?{_2B8DzJV*espFN>UWbAWV*N<VJDVZL>ZA2AEQpScY=YcJW4%LLjWD(4rM
z$x}lj)=lS7AbG@5BvPhDbi|Pv`qI!!Z#m7N0N`F4(bUfgu^c|S3K@yOAstVx;Y;bN
zjrJrkewF)!W7o%e>Ju>4Fs681$1e6;X6m^NM2iKqCK6`H-S#;@T6;+gW*xnhZ&Bs;
z>^b_fq{pJf>HNH>f45(Dv%abYxS4KcysEq2u%8;NuaBXhDvCTN2R&8PwNKe!+^J`g
zhC^7ij}M#L?Hl!#p_Ii`XT$7&KZ?GClS8xs-JmT|0`h8co~yhI3JfNd<!Xh9P!`0i
zW%=^1Zsv&p4^K+u2PLHvp^PcC%XUHC*unUNy_mu(YpuO|6HSFf>Hfe`-uI&Y`RDbo
z*dTKdwORQ-S#1VFP<D_<X<oj$oSUPYIv$SHzZK<qj@U-YeWe-eu#fF8^KxF5Dp@*u
zKug7C580i~gC|V*Kl}jO_PG5%EH5?<=9<sZ*wwq^g@^eSqL0t!Bnt$K;zN+u)g2ur
zziD4*@GK&Wgkp~GvA=#^zi|lSS-MJBy<ndqsu(^(+9mJ>DJf)cC|@u8?z`(=Rtx*s
z6BcnLNe#tNq^qG)UwmQzJYJs->dJ}9OwCwiG8Kq0`fvH!-u(*e;FN0xky=Xv>S*cc
z6QeKdz2f+o88BJ74bM!BDm!QYtBP?>5q+fDt2EY77@@n9{i_Xnr!Zh=LfgP+KsF;A
zI@xcKZ$eM-OUtajZ$>`#D$5eo56wZ-e0V-VnWMc@T21KZ^#>f+U(i1R2<J10micoL
zAW(cf#irs^>vfLJ?KvJ;qIGzVeD1oJ^>Gu(Og{2Lv-`nXbgSPNM;uzfG1E8s(XFj0
zqWa)Q$J_mR7~Nkuk&>pt1lmt@O#K0Oe!Pe%fIV_;M4;nVh?;A7(Z!dLD1k=x=;DqY
zpXR%@LW>}wLC{qZ%g*U5_0P|ommJ4l)Ys_-h(wwJI$3Sp?zrxAF2)jN!;?i%p!4=i
zkLqt9sL#@4EgT~jbdbX%8V$U>@(gARdP1xUD-b7=3*j%ldf`t&T9o#QyO&1}K8Y};
zIRvUB26r;}O*QwdeF^7;t8^pLmuXIcbLYH$c4`O7XBH0xoShSZcQRgG_k(e4CU1zh
zRvMlq6i8e%MvZsaC*P|lK19phpr7c_@Al@O>*-6dxcY2#>FFrQ)$h&pQCJe^H^pao
zaq0*5(U<G6i7XYwq4FZ8+|IO96wFYTqinHbH>XPMPF(21&PD4dV~0%|5t*4ACT3Nw
zI3c}%Tg0*6nn2UwG~$a;&WCIfg-lhtM%FBRSDSs_>v}gN_6V2yb!fy@SL>N)kdq`L
zzP6>~(*Z~Hay_QERNFMrD_l^Xe<I3ZJFdTCfR@@=AoP8o9TB@&(-pvWSemc^_WPE;
zj_YsbNfv9*AZcC-PqH<8Lp!eAjgcst&TN_$VlDKK9BSBvGBeqc>O(#DYKP;zo{C(}
z)d&6Ev5qy{xQ4rwx?Lg#H@x8(?9^vrY>rp<Q#F|$@uyFVnPIeaLU^;2z=PO?41a{H
zlvqVQt5sIH+WKPJ3qvBG{gdaR3-dKZc;MsJO=W<pg3;;Hap4Fw9IOwooMk)_Xn~^i
zsWa0fD?K(HIe_E(%DoaXIrd}Zr8ny73=uVp5ZHAQFP3wG_MACTrlrbsdL~lHL8~&B
zeJM{CmL81toI7Oy=?l#;t+SSvp9>6{=dU_t&z_+N24Uyqo9qdn@#jPK?+&o(_|;`o
zuxW4sDiyfie(+6A3&F$?(Z^<96cLWhgcQ>ROD-zyi@!L2KOKCVOh-_QVtM{BS6|e7
zOfwITp%$ljA>%NTdn~dihe463l_LJ&m>|DIYK52CPswcHGCn_Yhu-aK$xpV4qGHK4
z(V3w#To3uYJpC)%rB!-M(N1%9RBO0B;`}VVX3{iJ4hN!sR^*haESa>Om9s+Nw*WTH
zq~O$OY+&YK%9r)-_%&)9(t8Ark>pgXy~`pCign0}EJb-z`k2V6qQD~vF$ne3r7ANm
z)SE}H&a!re15l%oB`3;}j{3#EXPZ8-q|JE=LYYGXKIAG0Miuo<#DXZTf?2y&tyv@=
zw@uolKUx?%CiQ2wot?A;0Df1adF9NFs1#9%PoqM+%+<h{h&EffBI*MOe9P02=En+W
zDcILzNshM%*02{89Hlx9h$y$gU^ptl>7jYBTT0#khkf<?EJ^LiI9X>TiMBUS{%(Ks
zFwdfGQ$Yp(I#W+IAxRvQ#y1fsKj)#ymi%gUv&qSbtP`vr)*A8P;Dow1i)^}AFR7?F
z_$lZ^OD!q^<FRrVMGji0@1S&og!8FYD0NKQosXD(P_uGt)nrZd2@4uBTQ7FBFqn9f
zLVW5M$!=%+go)7XohM9c>1fejQ=rg<0B5I(69DZZ!G7j%77!K1J5zg!(*ClqJHk&z
z+z5#a4Rw(Sl-8bJPmcII5k`aZ1#_+Tv%I&>{_)RjITa>3%9PyniBWd_LyoayG?n1r
zoGl!cMP9VT-mSHMfZo{vd0rS5RTK1Pr&_Pkvky9cg!Q}-@q{(UaX!9|hxpn%9{HKA
z2-<0)VlF!qnLA3$4ZSGUHiEKkb=+}>rVy(6p;QV9JQD5r_9J~QE0Aa63@Z!d;?YtY
zM><A7p|6ib7>Q1^^HN8~WBSS%i7(2!6L6Eg%5LL`<+oai3Hlh+2j?BD2J6kOF@nKN
zVCN^tMf?nd<w#nVhn&SiRDHPKpLa$sM}y~#W#S6rozlM~Mm=<8#BZZDK@Eit;CZ$2
zj@HK_ZuvqVQ{i5I@iS2KO<2eMS&;)@)%24onqm%~UnmI2xVrd6#M-a*$WRQba=vwG
zo5*#$d4VN{u=_>bL}%@gX72&p#Cnqb(T&X>cSk<;jE+I*rIp>mui}HLQbl)>WBYhb
zdX&P*B@}JhNGTm1Z{upLVcQ}Fem!h&k*cquMd*NqnC-JGgFh1mSrfMG5VpH$a?CC>
zzX%VVZ2D5u9-prFLI`t+m(*<F<m#u+jzWMJYy@4MQSu=^XzINb$DVXe@OT-^wT!Hc
zw~sxlUxqb+_``7{$BCKU@TGmldi~@9um~`OD6`ERV{g>oH2`snF3AKkIyk<#SYOlk
zks%>AfmTO?PDtrg5u@HZZ|}&x%m_CIIb<vtyC+tU#gtyS+0mmE>g@|8ONzZKHLiKb
zDfhP%A{ffdu;h5#pd}H<Q6ID~LbNV)p=2Bp3F`7Nd+TrYVXHl$e2PD(!Yguk%@)Tm
z8JY-TBGv{@KjBCo$|VkMUA<TfKiXA3;<#m+9vvs8G01Yp5K!wTJGP|js|{D{{56j4
zkfuDXT8`z6aUARgeM7`({!C)_LB~r8`Zt<^jLZiLAnDVv%I7K_8;9$m5rHxyLZaXc
zC2bh*Slr2a27)lSRL6EZ-aE)r;WmMoB?e5V)!mL~t(j@%p9mo$U!G3pzuL9RaaN9?
zSZste&?4|24s+a>7M!r<R}rCVYGd1SV#G=Iy83&#qknJxJ3*q-k2}K=h}QqF5uy+%
zYf8*hcb1uQt)u)3wup+a$S8|?(fj_kH}B8(i+4+$*DS}=zR1j1w1Sl>E(r>3JQCpv
z)d2z7!x573s?~-%3fIhsBa1N4I6|p_HEU!nFf02)+)%t!+z%SIF3$+sphe9bN!>J!
z@_CgsjK|m$tL>>@?D1I`5%GlNIZ>pD$P!SzNH~soJJf4Cj3X7GiBLo}h?16W{JY5p
zqtg<7Ra}muz0l-@%Hv{7q-{1<&9%mAWdVIda0gD^W!$w$4~dhI{1O#I&2d6DFBx4b
zt?Tep@qP1qtl1ZzG$_n0FAx4+W|wuGEhG`R;jNkeIbL%Ns-^rW9Vb$W6hqga`S=QB
z!-{{H62?>26UL_t|7oai^$?4b4FiL0D1FPS0Ju=+wisXgh`WgGifu<&0AU?3PUF?v
zjpP#jydi-~-)T<w9CMPlRFrRA2Smg>EHi#s&#eGqYI2%sWQ70omTg9p2z~4S_!L1h
zM659W^MLguI`^E#mmORV%Dy8~9(mGuJGhd8*_Z};J9*C;$(=UwjL6ao{A|odW8#BE
z$zp{_+4hX%_>Pc2#|3nS?#nJysjOg`@zG-aHZ}lLLsEX&WnjfU9yey(W32#^BS5B*
zH}|--mk_;Y&rak0Db^&psVqoVqwp%CdQjX4D!KDM<NPY?$#NJZ*2R;>XWagIV}?aP
z|6>`XN5ZTX#yM+8v;Uv(M8#RT$yma73JKMH4_x+&XN;zESb=)Qx=>V$XSj~BgtgEc
z()(HXcBMwywRJB`8KxNZPO)(Xfw?-r7U#LZwC<4jehq#HtQ29q<bcr=pamR}zH^$;
z6DT&6thP)y?q<QbuFq46UzSbk3NWAkexpxt%*)<jqY)FNNU3^yuJPi)dha0DJzf=;
z7|+!Mb5OmC;6c}bG3Ofn3Mz`|J>mJuypc|_OLOWzh8iKL8Wz;3&KCgxWfdD;PN48<
zjEbu?HUSl>^S!$0-{n=t;{@{c_xdY+K_X!-I4S>~ZCvoyy@mKG3%bQ`^p)6u&B{^P
zhw>W1_tsxIsO6O3*fh27&q)Dc_TV$F&aQiz{)IgJc#$!1biK>5lF9W#nK5uey~_v<
z{gC<N>s{7LSZSWIVQAgUq>}T>(Zxn!q`nNhkh6y;h=5p(dZf(oTd`Xd1jGUG1fnC-
z#dOw4V|t9fW#}An`U)G7a_jolUF*+C2gDn#ehgU17<EOlkz4O;DY{1gksvOj&QfXy
z%?iuf@ZEKkb!qH`?0CYs%i@Mu$KD(o!%1A7o@PY0@44I9ecwObhJ$>Ukp-K8nPlhB
z@gYXw1WEBU@loS%Fm74dXhg^^VV?0YBg{gi=b19t6MQ=Z|9~JdgiC-f=y;n!f{FeS
zEvSW&Fd!AjPR%!V?XV_8y#}0al(&E{&zo-?*{v_5vN3lZnzhP>rBoXGx9XwPO27vk
zFS=pDs|cY#^N7Aai~wR#km&+r;{rx|>y8QhUfu!rCtmIF8TV|_H`H7fK{=?xn7&P4
zmR%kL>Jc?m8g8LM++|GWL9#sXY&vvthOHN|NZk6yjm9m@^f>WkLTLEuNDXHo<$B{X
zmYf??G5nZ8z2CERH8YT)d(Lzt@o_x^sX8yKnab;et0|zu_ZJvlo~}Q0i67Q}5YvOl
z6ExL}!+O3l-+1TI26ym5!8b84`BofyrvVp2*GLyBLm#6K-eC+|+u%MPS9>39t^hE!
zY$)HvQ0`4e=|lPsiJhWBqwHE6lzY9=-rAs=ucfwunp0ss(qJ2;{CMpm)c%?i(qp<Y
z8mY^S(*jgx(fiL-S(MmYjaTotHm45lO5gWd3T?11@hX0SCK_u;%c}V)$y?lJpJ3d1
zTRrxm5uk7RjjllTn4%62XOL0I(c<HooqLXPi6sncC(VglI>UIz+EBC%6f6<G^a-SG
z-EBq_2ITd1=giJDyU}>VI#qSwLf=8z{(!NR!@*tY0pDy?U|!C{+TLW$S*|Znf(4<K
z&9-($4#$NXjo0t3zmHP0-(PC@ELyLfFB++{!q~T6KPj~m{SGSP4KTpVZ!`wW8^jLK
z_$PWZB7i%zcV!I)MI-acuhJ5a-}4dQ-DJGQ@0nZe<Dt{8(~X_HmEU7Pq26J@;qI$0
zJx<pgs$=?$@2$_Txl@9NwM2nc?9Iht%vlD~tlrEu65g=hBxp#g^7D|VN{yJ!`l0}k
zGxH@w3$GD_Y!!RbWSt(IWT~*i76eP$%y0bhvL2}O4yg#yHP5*IO+Ao`M?hO+fb5aq
zS=q+5A2+%KvG7B#(eEuiAjc~e56S5nCVGzS3&?HG*DphiBR@2{6^8j@uHoOW2Qt8t
zYl9{mrxdYf-iZS8!AK+aBmx<o7OULi5!m=R-YGQ4&JMfHcwuB+;-#7#U){aP*bdy$
zQiTh#N_=o5(e{#9-8=6xPJp6i5D!wGzes%R^d{sepzA(;wcfGx04cO+&>A^PeoIok
zy67(B_<Vg^8iSf2%6!sMvx@}5jE=)*ynU-tIIHf2<c!6r<(0-lODU3M0Wam4p=Wd{
zTm#3a8NbU=Jm{R<fEPTs0J<b18LLjNGIkW}u`F+)x8P5?F39#T=NgmzTn7<^cT8*<
zfP)~z-Y7Bd8PsT<NhPh_qD<hsGH<HM6`?mn46Ik6(D?f$eIHJ~JP`x{Rb$k@i;Xj{
zSeL06t|>l+aA$(rFxYteCp`cJMFJu6#DRVhz)&TN8K?55RMS@)s{?Gc`hHpH7U{;#
zM;pykj#93XYY|@^sub<(g?uC5qOrOIEX5Or#=A9B$HQr+_Qq}yL@usrLOi6(emKy`
z_*B1b0PZ-ZiYNMvo+tO8^%^G*G?)r`-?Zwi8Nf}1av?r;aUPPSK<(H=BaG|6(6{ZC
z3KQlSd25bExM)Ob;|Sx+FB?4;GU_+gFdKg%pZ<Bi(bhWKb-pkWJV{xOk!^iCZ_ti1
z$Y1zDqUxDvEO@QaTezoo@)`K7wW}0@vx=sqUv9kffxhW~oY89brpY8%0@{4Ev`v4f
zpW!~M?`*V?MDufvsc-8+?TPjSanz@n0AI*>qtkyHOp^{X33bS_&NoY$rek@=UH=bD
zfn-xh8IPZ7_)HOl59S*WTkA-?11nJYBvoh-@`DWfFZy)XlR~&NgOU@4GFzaZ0;ZPK
z5CQs#t7_0l<5#qBrX}DMm>ML^7M~tyv=fvrF@0Y^&Hy4z2OUu>`qF8Lrg;O6D?4gt
z0AsWqgJ)0}Vcn%1aa`K4^fl9sqn61rNTB4xa`9*<fZR${PmD48rRZZWj5SSKbc;od
zA%{X?D={3gdRG7VdQibH4KP;ndgeWfIE%13)HkNvA;LHVm*9FT0yH36JYt>mUfj~i
z>8IaUYwih}e`bl%1fxaRY5ts`_e6*zwIq*|Eo_yt_?Zih$LiTCcn=V=DKm}e3D&*h
zS0%xgb?r-n4(SZHX<tqKc}SB}dn;q)<#m}T1*+ItUx~5EvR$p^6eO$kTjubf%?5{p
zxn;35QHfEjrWu#k++jJFKwA5AMHp~^5Fl6P8@76eAc1+LV}GB%QOvg>P!(??#hH9Y
zBm$z2g`(BRpqYaLAc+2PKIx%^7LPFPHM81#f(}sTB}GDZfnqrEDsh|fLDPnd&8s_2
zH`=h+weP^X#go}4&j_8YFN^I}4jH0f^A28`T5N1)iR;_}PLSwQ&E-Ke5G;8Wcwa=Q
z#PHoI!rOz!Vx8y3NC6JzDK<J=uc}Ve<Bl3rS`Gx#i=9M*#b7n5y|-zxS^NGNor2cb
z_|uq?W#z`}^{vztQTA(poqoE42!ha;6fdJkj6i?tO&Uy^KwPxlCZ^SQ1+7H;YA9$R
ztX%_*up<q*L=y6(mcjg!;?Y-3T{nscPyHVf4y9&_p)AQ$k9oz{d3K$FWR~aMJmdS<
zt%v@TqQuhIDoTwwEZH-;MpKK!);<?e6+;aoqqQ|42g5=&R;yp4f1ev{%sJg~6{NoN
zoI=B6O{n&XvE<49voI3dZ%n@Nmc?Bu6oV=Qhy!^qRamDQp_UxQ`Y7??Ez)M0MrJ=e
z*2s9L(feU=wNI<_e*EhyI@cIw>4iEu0jM^4H>NhVIa>H*=t_`gEc{+SbO2^Bkb0z?
zxa)W$f^ocYi6uWUtih*n6&AI4im~cogL$B4##X1bu~ZoJsVpIUUh6=~Do|wHj)<*8
z+>}iQP+Vk87*+4GAfoC}arMywS6br@s(nZTl|hr#mF31+5iAL6B<iME%-R7uEN~n*
zESb{+ElWjDug6yLBlG^?ap6`mju2P^r^f{sN6NhVwA3hMa{n-hKcHo)F}&W)X}86P
zcbH~WX7fR{sU@IekeUl7xrRPLYDw*NNjZsAKVR$msPT0g1YhggxU=E!nee@nU73x3
zj}-mK>#XD_*SL=Gdjy@xJ^`43Jprh7h9-!ZhidUh#&vCw=KnN~bW!;q8lN#PU~8|L
zNs}dQJ;?cxP?ts%kUS#|eD3b=ihq?92sWP-2y;ka4tae7(c<gJPj-c^*JIe>Xn&=r
z84wM4-vHOjb$lkmA8Vkn@^q;`7j&}pI==X@>(WllJWgQ86{jl&n~K8?r7?4rF^*J^
zdg(Zl?9`^zY`a#c=~&4b$Ow|c5o<Zq%tPxN<nP3yn|@tr&V01Nbs7SwyaMys>W0^O
z4sfBNBru`i@EJg?W_nR%NoPe<ynC`SJX=GfXlxLmYq%UQ<}~UXTQ2}hP)1rnqIuN5
z5TpFgu8{?Qh1WR__?U2qROgpT(sOA(troE=64mTD<M)Xn8ZjgJLe<ejd9?saTD=>2
z?I0pk32JOG#Fz9|#4V>gNG>?>v>9cV4xggyQvYr2-UF9!IMP>jY2w=XlpbNDGsIM;
zdPj^p^p<h)Yx**nX-<<A=_gh42jk2^oe5JXbw~W-!PFg&OtrvAM#rmW#fD=rCkf9H
zu`v<d0^ECcv(frIPpRvQm)Zf{DqKfr)?*4fCRHoif=q!^irDm)8iVT{#288e)VNZS
zabnJo^OM3MDG3xBW-pE{F$OMx>}tKuL{R`n<Quo5MAo^ii#{}ZF&+MR@u55;ufEPh
zU#}R|yuf(Yx~xx}^g){g&lQbN3t%ziyZVeky*L3;mwLiG_=T}(crohDV&jo|)8gQA
z%yJ5iu?;V?1&uEQu0<qHGs^2}H|XB{`X9bcloSZ@oqE5f&LY2FS!8@D+^uHa==Om9
z@s`h6hJMJx){#F+RMM@rm+K6qAVMzBHO?Ve;OU6D+3;-SL=44|)ko8eZ)P_f&_13b
z<KI<!Kr8s59HhEFWuI05BI5v2NgPBq+1gSUc)(QSHe3iC)`>wsgCrb4jQQh?5EdWZ
zk-%6k&Hzj(oK!J;jP^-w<RiqM<IITJCE>_DR~gq~=)rFEt{|1AMJ8_;T4a9xc>^{f
zZ4s=rK!N;AZj`_kq&XVTZ5i=n+xB%=FILDsc<AdbDzoU8Z~R(sd!agZW<`-PsNT*<
z{IO;qSx^i8DCj~~6f#*f&DcA$?w+CQGx_R`uba~d>X<DyPc`I;Qi0c1Vuo4FwKhdr
z{4T*9NMXiOWmVdT_N6{RahchrValX<opXxJ9@b;(ET)(q=Ss}?PUyv~Ga!Ds+EuPI
zARgD;GIQ>+hIho`rD=)|(`bNTt16pr?)#+S9a0JKX`ktD{Bn4!r_Ai}b)!4js^w*7
z{HF~EgteTUZl3s{;Xn+O{qIR;R-<=F$Sucbj<@arHB;)Jq1iRr4}5!KsoCLs{V?Gr
zgK@xtZej?kIT~wj_*oBGIb4Wb+{J}xFrXjse#Wc!rka0$({Lt|Py3G_CC9s@#4P`~
z@g2$kd<W4IHNDJSW*vb#n<I#k))nTClZ_q)>w9myc@OX4+}0>0c#)Vp`7+}6k`lO7
zDK0X<_^ILT(g<mx-)wQT(Ev#GkNoDxjW%7H2d*qI4}9714q?>er<-$+AkDFYFuzF=
z#000fTY~CxtI=s0a;e56F^b}11*COKS0}Q(Hn}?QAeTO+)*(%@H0qzaE6264C!7T^
zjOEIx@l)eCVJc(ot{vEHj92?OG_X2}F0IDax$vquQ9~=|1ah@+Q3TguL4#C~RYGnW
z)a4jp<c-uSsrH`w#C9`>&Vhl#m4NS3OW=#y#v}Er8xRQQoOTHqH^B9f%vscVAPq@7
z@H7M!PlzlO5#d=^{y)!#Z9g6`O!4`GEhOp0a+xO5j59&f_+(=B^;@*Up#E9!x`ujR
z>-uq<)(C403rGRm|GHgw-K?*}=Evku3rIp3-P3USy%*|w?yd&6;I368qFuwNMF6X-
zeUz~0wQkp=H#N8}l4Nj%>-AX;uk-t7LtTFBdiA!6@m%Mbq|)s)T|+DNy-ZIWntF27
zirduO^;AxShjLEUf=;eh6|DrI6GULr`7TEFJZty$(U3(+?+2CC`bcEuRe*;ytRK}H
z<H<sk;dB&_sZu#_I?`SM=>rsAP<3)?{}IOnk_{t*tW?)SCO04d;=BmE?<O!|2rRr{
zIpUqC08o?2W@j{_iano^54u<?Ie|I_WZ%hAcnh<^ev$+Vq@tInyAmS47>8O(u|O|~
zvV00wU=!mu!){4X-~1F&2<{L!7|oCb2ZcOlF;vOmj^7>vSC<In3a6M-tAB_bx1qhz
zywnNcxu>pom1pQfV3jr~<Kf3GY>&Dr%JnzVGOUp?-YO0p{jk`uS#KE+T&1tpu#6fT
zM(Xwdc)(Z@smFuIPVyg)6Wy32%{1}gZ9QbD1pR~mJ<|Bmaj^Nh9~lq)PxFW~Q~8l`
zd#HYLZ48%|busG9d&XqP|C}=zrz6Jdu>Um<p&j~<L3<)ui43o9!wV_O6d_F(nku!J
z;tBF$2iogj!8ZuBfV8MOF3TpsqQHwr2GA9LCj1SwYdJaru3fgG|3KHI)=+C5i&-j+
z;m4m;Zsf}jNNOT(SW2gHPZG7O)b-O`Zi0dh?m;I}Bc>ZmE&KbQnGz@Sw^>FvB1yG6
z4%ifgSWpS!ng4tzGN}<eqc}4QU#-5>v!^lXg8W99v$q0d7=P!U!BWBnO+<34%icvV
zSL5B5B$hWnG-6nErX%AuwV<$jB?d=Peu$AU!WC)%>lw`V$VbLx>luXFf<Yx|6Q(B3
zGI};}*oil`b_oWF`a}>)xDLo*jWdULL%+YwFl>{xamhh1r!E(1aTH~g&TWJG+b<Fv
ztxUNZpbdtQ+8`jaIDVH-cD&jgL$h9uqc{kx_cgA`VU#balZJqtp%j=HPb-huGPY2@
zL{~aU^H+g@lNy0I2|kQk?xR3aJzY2+o#MY`=C+Sp2rr^L5R{m&t4*=ym;7q$^?;tB
zWt77sUPy8LPU@l-yg7uPg_mu9IpWv-l<~2!1=Scx@r_$?O3pc)t@S2jpIwttW_}rp
z5-Xw0hhQhgsHT2n3dTtTKR9QxvW4-<<!o79g&&%He4FuXVw?Jx`S$sHjBd%=4nUs*
zGmr~lQA!}C&>jqE$`yt;grXH#_TJgBZrQA$qlr)-mnXG1Htk`Gb@giT2LD-PhOa`~
zNFb{zxaS-lPG-4;puzHT@4n;4CNKmLujq6{pG^t_NDw-a+TKZON`~t-PixuhVbq%=
zOh#(NSVxz=AUSL5PEa67eYMS)bdJ+qr&1ARt$>@YF)n=^tM?y@_E1(rJ^r@w%~7rP
z)SQlnni+EpYG!biG+2s8|MA@zCQIX8Q`^<GsX-%=L|<K{B~eZCRUXd;15G?g_cBZ^
zGcr2s(}wSu_y@`r1ovQ}aW0*!6q=&ZBo#Sg@vcmK#W*sXFS7FZ2b93b1U)(khc%K0
zP`3`MQUr_%t|>7-`?}%RqmfpBeU0r(G=%e9eg3#CA(>z{s$kxlO?6$~O{+8_=q;@r
zuV{jrKgw0sTJuO23WwO>)9jxH?)+p>P+S%s?I0DyAE>L8{R9QR)_6wzTy?2Jbdi7Z
zG>ICNR%FIJtd-VUYpX9h(B?9;<A#RUdCu#lX6J^#7k6ZPTw+o>r|x^{`a-UeIl19;
zNFr39(3kb02EP~c^7bOLeZ$|!U>{W$o32d_ejfunsJ&jtE|8SguyV8OM_T>QklIE8
z^j0FO6i!B`-0m|MT1tO40V?(I0aquNR<`SIj|8Q<=DM<B<{TD1f~e9QlSVUq_iv+I
zAsl%I<xxR6bXAy(icMN^Zy+1+3e5Go26d`^T#yc=vh<p1u6He|fk@1UuObU*q06dV
z8SXmgY)B#K>FV-Km(fx`jF^!>M^fSdi{S2kc%<v;6g`ky?#~m|58E1|eXPLsb8nu6
z$)Tk<Z;>Jm*yBr&x>gU=r*b6y26Ybx5_5qmU1ffIM@wPsskwolu=x_jpKbo)x`Ct5
zbAn8X$QI-=>owQte2e^QjC7uX!}MQU*}VpD<<wTcRg}Nr`k5n+qvlbm4&PmpdSInd
zL1(h+)vsBuq~LPtN?)MYycAKQbXL4FT((cQ>*^L%CX-YZS&;<wk<0dCu`W|G&dUbE
z(kO(Kf0w>OuO#G%)JLL3X4BrbZg=R*^@^RuCd1e!bg}JRVm*Z4V+-Nv!^ntJ_w=@P
zv2IE&kvvuoI3>5GvVJU1LaBq&dSN?(qT{GJ3tN(EFj+r1|FyVHLy0OWe7+e7uZ!Ig
z$3ryCA7n9oC@Fm-a=3V!qc>SZ@Mg9H6^##xUF;b0hgPdC6`mGH(2V<qh^s&75G%sS
zSCQ)_O-*>5RMgtm!};uYx>$;=xs=+}d~Wus@Szpd9kEC`Xc&;<^h?L{uTrKY2KScW
zizH?vFQByI-5uZgiXtEcJ?LnyRME2bk9-&gkW?DflD#apB(0Ow{Qo+QwUqS~n4t!L
z$8njywHKVzmT?(BJC-N52nF*+701m)kG2cWWBVD@72C#uRG~Q#VAKTl#b3@}Z)d=Y
zBar7YJwQy0!lc}E;exZ}!;I;=qVhyCw<u}D%ZMD$4~hEWItGQ`Q+N_fmR6Qh(Dd_j
z&SzHWyQFR>zm~~e+dgV{Zt!9$86)5Y^a%W|ebh$<`Z-c*lKrO?VqZ1<E9b;r`uD6U
zta`w4y6K{C$h(u&iRMw$iWrqilTu3}>=`Pi$X@IXi<<aYaHMW=EK`#C<-1r8m2$!P
z;c9-=pu`SwW@h@{$Iff_F-S=^fzhCoS=Czc6F`{Xop-(@YhQOys4=OQ{_XrkmP!O2
zwGy=#lI3OO`SZ?M>w+T|_>y&!ZS3%q^N>tcDru6b3E{o^jkBqIv{ms#;+T3#W7WsM
zIa@r)0P=+x5GR3<p8EcM=dic9Xzg5$(kl)JKI8ri&d;q0jRXH>MSsY2WkX`o8RAu&
zU!7~JCmfuX6bPjG+6Cv)M|rGHc%(1`hB6QAtKR&>Id-GIE=TGNM~d~}dcrwptH-%6
zFu&uuQb?H42mgDrS=6$fTo(ma%pZ(Qf<O!`de_<P9X$}F(_y~S)8L7zwD77kdar(z
zWYJM(5r>!*2aj(Zb$Suk^_TMf)$uEVYvaLCQ9rNI&qFeycR};?2V(xeHjUbG2LqP!
zA+T4zUGN;Q{ps8+pD4>oJsI&{sZ}32Ki{o?oJu-)#TmU!vFe)No%yog`YTw)Y)&Gm
z3+4FHIbe3fXA6O>IOjYs&$jeoDvmH6783(%Y?G)-_tuQ)>BK=(@hT)bYE6|Mu<({J
zL0-rcB2?6W@6#_yEde`$7ZH&w6@X$@^FN&(WM08<16;uX8>L44<$R~kfc|K1=_?1_
z{aBkX(Xz?xE@4(`%kR!ZhAt_ZeH?cKU-ijGXJmygEhi<d@IgrViPVRk!=&0MdF7CH
zQ2+^`p6e8K|Ks`^heYQqn^95sZ3&a&S0FvAM9&-EJgRRp<&PSiGAbDKRSSCBF1-iF
zAFIeR5vc-m17?`4I(-;^A-&xsZW<vmbZR8WAgVrkB5L%8kd4Sm;RgC(sExavA9f7w
z&pjDv5aPlZQrPk3d0a{13x7iSR!gq#7%@**Sp^XXTAY@|XyY9YgkSZhF4|F@Cx|VK
zs@L{!`;1*3q&h8hWR<U^Q=yQO>Y3@B^=;_KuvVR7DbNo!&>r=$*={5IXK|<zXUilP
zU$uYHS$;W%qV!{Q;1z%nzq&Nqo_e1y#F}-SYDdhs_=xkCJ1HY38abJiV2NP*+qXLx
z-JxrXRX3|PM@_@wQ-&)*;azZEJpkdsM1;kN5tE^_^3*F?&P7*-wM9_Tc}$YDqjREC
z-Uzempm}pkP+6*YXU|6?ZhbkpB;}A(nF$9il^PnvTt!?DOtpn(YmuDg_0H6M314@d
z`d6$i^ezfYBL49BmQut7A{E}Qe(dg??g;D8=45-xuUD!ts^gXn{f<;NHb)93aw6H%
zP5o_AkyNN+j<ArjB1zE<5AB#TnzCy+SwUXP(eisb{xB$1ii@%jX;euPAYEU$n!5T)
z`^Xz~L9L-PFjYwd7TY6M?KxmOzmB4YxD@@^U%<sF<C16ZazsmC_Fl6w0ZOqe8)KYj
zkL&ty>>CERBs0i5Qr3l|P2rA5BKqv6I4<X;A|L%s^=cdW+9Jxj0T%-nfnTwN<}#}I
zl=FrADBx&uUvem^%P%M6^9xSjl^iN5i(Tm}k|cI&RGo4T-x?;R$!Zpl;$)PHRU>*i
z|LUekYKxWua8Pr)JHP2fRYvN?@Hrd=)n!Rk{u?1uC7V=dsh%zw6Zi>!cRo!uNPfs_
zK_+>^BUGzjossYAt2iF$Js~UNX%*%DmI84&@U7ac!AIcOq<OXx{;4c&Fu#oU!;-yv
z>D2K4r}b49QNX2qC)ys{DZ2XdOKsOi>O)K|D|QY=85n05TYekrxDwP8`xqEsf-1Vi
z_VV+Tiv|Dgrw%l|E74Xy3BT{Lwo*?mld7dceWF_3RBC&<Gk4>S0B_*ch0G=N&XA+R
zw)+pJFHq=m`ku-?B;}xfO|f0}4K>Xu@F1nTq)-=O>KL`;A^Vz*dV1Db8H$#|GOi2n
z@~-}*F$56{Ax-R55XG%*{a{E~fR?8wxHiCNfiY&<qdK$?!KF8tL#RbNZ5iU!jB$4V
z+_vk7h@_lRNS`C=hY5x4JJjKYg9(TENQCq}<JTv;KQG797XaTv=IcG%B0m2y{&`rp
zV7jH6)En(1onOT-BW{8J$D3E^XS)|naK5>z^HFZh0D&ikGC1#2r()%b$d|??$^g|b
z@%q*bEWJIl@Lzf$b%r-kdwtWG$e*9p*GC45F@pTl>fDsrBJ%Gq^<Wkcn_1h9QEk66
za?MujJ>Iek+7;A3G5MOv^EX;Uv>PTtrgrGr`H}Zrml(!j$*RgLld7X)+Fv)?cJnQ9
z1+XnTGnCWN5y2%$%#QP2-#ydiJHADxOxv1*h-I!O^8YOFG#aELk$e%Kchy%Y2wV~<
z^^+<?1+vKzd;96Dv^}K=LYWj}`(jc=my{-pA&?QjRs4p0v$c#q@>2KpL&%o(;scjp
zZlZeN%?{6uN?6P*#!}><qPWnD=v14xd!C=zb1~GIP1m17I2=8Gq_z%K9WQvEOYgB*
zYXDVcGpOSVbNwRIlRK!VY`t{Q1=ESwA2S5p_oVLOrJls~gOll*QkEy(Zt>~Hs)gPT
zVOJy+AVE?~iTD5;6yzc~TC*PN90n5^0CA!>N*6EW*S@Rm-QJJ$^Uic{G5JNsK1wIY
z_0m233YME2uI;ma5E7E_E@ts{=OY3t@#@O=!ly>F`r-tx0&PkgghaBz)Xxvt@;mpE
z_hbVpoIy9;V4DO2XT$`4JQA_Hdu-#cA-AG?_`ROQ0=9Dm0DM>uaZLCNryqB;YS+V9
z->d6lp=5uRE+bcZgJ;$AJ>*HleI*of!ww{PPnF5h-DGA$;^XqGN|~9^_#Fp2PFcg}
z6Ft+jg@4hZf|`oSs&c>W-FM<vvQ1Kr1^!G#jn{vLEvE}d%>S&fEWvQHql@{2%}uC#
z!t>#mjAHHMl&GlX{0Wp&J3&IHXOqJVdL$lZ1t<yu-;huip|4MmcR!2=4XUIp1V_(T
zNzE{c?Ph)I+_J9wVd9f031$Y{NTnl$U8fCEX~(+HVjsDO{#a!N6kE95o$Becez155
z*K`kef1Mx;keOc$L*_5BSrV1)ityWd>8;5M5XPy*AR#^1Vx+!s`;))){E&6Xrs%aU
zQM0PAW7VrlF2Og7^`S-Uy3#T4IdvHKW0qICdE;mh7uA6%`{h0S@@ce8^!W=!2$M(O
z3*9MEB^@<~eIBz7*{BN+qQUBR(U%Nz_1n=&lc{K576GT=qF2*z=&<R=g!O}y_?r7?
zbtt@^e@pj*&v$g#y*#0S*zpJo$<yYUvJno~z$d$gL8c?=FGAf3vYld8udU%F&uePJ
zag3<)(l3sqff?LAyf8X(tEdp(vJy%%%Hs8ZB&z5~NE0BR{IcAS)=vU#vU-tPLu+ET
zKwQJojeK5uc&U_ykxiGyuHdr<P?l8g$AO7{W>?Oojvn`8&Qhb2KrAI{ypE77FB8H=
zr}iS85ON}KN#fZzp{rb{@{pI)U+$$xUMa&Uez9s}ccW`B{YAq9RA8#4!8U+5TGt-`
zINX0@tnl$6x-jfVmq+%UrkQwZfYYhoHY1n+72k_>qGrXlwx*m_HLBFl?yCYv<V6$p
zg^>s?B7nlI+7vl@jI%Cc^#W?A2w+6wiHqdE5pX_pxF24B;XuUI-SjoF3~-SMn^7<C
zaV%J(ucnq_dMowXGDqKV{V+7J!ax~(^ODaa-Z`m%lP%a#=?}1=$dPTm66duwi#<_}
zk=N-P;Uxt~c78V3@5r0hRCvhvDsKsgi##^U4GA`6z#iMeslB#BbEr<(VFE%HgB?zO
z$=;|zCwj?|Oyv{xv@q0@)mIONe>Ent0H&N;Nr7Kje<Beu9HKrW>ax%-eo!AnAzB|;
zo*2Fz{p0*5bJ3rD@~~4f5iLHc)`H%9B68~=J@X(ws94j@ian97p6->WSzTV0AECk;
zuFH&!Sl3f74k0Ut-st(WSc|j$BcIsBRk10Gq=4nmrIB;5(HCgi1(%QlWw&HU7WUTH
zIPe8C<fRj;B1^8-Ps0x>8am~Fm3lWP^6#}hg_n+?3!XSya4W!_)#+OuflnK9Q4IZL
zb#ZL?hrJWGas=oE#)?stfHL@wsGs)qT8x%3s-%DgQ0;&8_+q;ipvPo!f-8{`gdeaC
zHXC0r>zpU=^A<zNl)5}KKQjLH9$TT;)LAT$7}l%|R`Ry&-okoPXTmVxaxeh(Q?KxL
zT@wr78N>auo7h<_GaUB#*GBBwu8%@*m~eSM+<oflH(ZY%@3M7pEM&antaIZ1y$++!
zWENu2nc0O@&JqU?KIMC&b{*_4d&(oJG9eABMWyR}*csKOO96V)aI_>b0k1mZdhhGb
z)-P%LQzgG8k%paEamLx_vM#cUL;NLqCJ`G1G#vyI)K&5Jf@5*QRL1*Ctd4(xg;UfW
z&xN<RJ2s57Kd2->m%i_~>XO7|edU)OLVsXDxDXw+@exuOksj4ghToSHYrPv|ffu9x
z$Eu}&Iin)F=*v<H8f_H3H*4PS2WRsu^mQpRT@F3TWJ&Bm9N*O?>Y;XB)(>J0VM7%1
z$@Ig1v|mImS|7e(a^lu>Rvi))O9d3HS~oAMN4MUaS*$U>Vv=cC+^8Sz&5m6nmpE%a
zCZzmBA_@~OmMeq3-Y)!P>6?yQ9&IKUGPU%gQuJO&<zxEFIGC<iN+h-Y*>TILX2LM(
zOqt`Kg@h$RKVD5RY*Vg}DUkRM{m07KEy=ut&_>UU8vPX8Qhxvn2o4~e21qv{rUZu+
zJIg-7wIHl(IBGGq=^*+dfF_VqH=k?F*{)l7GZsi5AJFW!NS1gD$A2VNhF3JR;SWUq
zetql~`0H?AG1@pner#m3IXYtpx9~JMet-OK2CnZZc0JGvQJ$2_`qq8$n%*(Y5yn2J
zkXFX(i|+0rRlP)?P7hG}PA*+o<!+nSON16oEtPy^Vta7^Zg+H`4cz)cDXO~HABA7=
zcPF5Cjd`QPYX|jMTA{SZ$wmJ`?CPHBw;%5C)c%C60|`XHWQwJz6!@!H)q7V|@1J`u
zW-^1Mx&}>G)vBL8O(ynOjCqh%h#E@8^D6os`+TT^FSqf$Jhq2$KFANgDotAHniQ)p
z`A{^$>)1_Q5FHS!nL#g6e}Lz;`qa4Ni=Oi8OfNh{tPqJN4A>qu>BnA!IZOE3@sXmv
z$bR>ERjXh_yhU^_=UCH~Az9rYV;q>>MI>2zm6*sR-!Vj^^d$91l(DhA(GUt}LU3pW
zhb5bRg{7GknZjg}O~|{_nfpffaPk2L7Q$+vew3si!d?Fv(CtH}ln&8KRr$WnBQE;|
z)db6p+oYb}q3Mp@pD4MJdRS$7vX0`u8eqD159qda2ud{$2&#{Qbd$=oQYcYP?;Um3
zoxO#OX^NRA?pb=)Nz`URjP3lInCl@bdL!}z6WT&_(3)kF(eKCZ*FzAZl4YY9Lray5
zjFjWuHGA_G=gsn!tE9g1@!)#e9yCsW+f@dJ1d4>6l2%7yJ9Y4cQE&<gk4B4duQW#m
zW|ZjW2$18>B-_O|#K}E;M{yn}ou^@@$EmMAF`ECRpEevSDwOh4h)Wq2=Xz!fSNiYP
zXf2Nw60mq|0d_yz%(4LDkkqxSr?^~|UF%<lw1Ss;eY$^Eg_rK4h*mh{y3@w79~(U$
z@(ezn8wPrdk)n{;ESVK=0eo=fcZTC^!`tNbwYSxX1ili3)*9HxD~J0l&D1>VITD0I
z+|P|NGlqBe!zm`B7FEs&!17ai!7UQh&Uek8oBFt6%b92%l{2uN^oj1U#Pw!mH#ff+
zBI=iV=^5Aj&ir4pbtt60&UM_@O$4<_+hRWrKrhXSOkb;|Eou@er4;9b*g8*&oVcau
zVNQAV4=ovVWJy&2gWW|lO~-209c^`#=JD>~>;FuU6O_S;kQe{)tHbx7#3)E^xL`0K
zsNoU`G_wOpZm2#Y&Uxr;Pq9o!dNCy{IC3`(cYd$|yCg~B2ADBJTlVpiC-csl@Lv;S
z<w$3HeViOI5}|l1%zbKHaiZtT3``_qK;D)q=7CZVZ0q>*s2+ZZnU}*5b12S--vUO5
zvV&`(_Z;`Hf5+rOjUxlnv`AFLDXz$h*1Zb2hiAi>xwQWUWBJ>iMKu@)qs~KRK|3J%
z9j^bG@$lNt@?si8iu(5GmX0m5d&mWREoLT8Ke{zf-_r5qs2(Catv1P8O2%O$sD0CI
zSFeuC<LeP$N<}txw)j_f`SOX#toS4j%$_&Hn{9;2gMAE2pre099_Ry)M?CP6y4;|1
zLFDY%czNp(+IN{F<fXGVcbqw*$2QJK7NlA3FXq}6yUq1kokg;YWRHbfney6F*L$5c
zF$@gM5^j6>gvb%odx{XDXO+arAecdsW7oyX#L{80NZ~4s4ZdgTrtrVyI$qdHAPSY#
zV}WVibHv`^R3A}=#J}e&%fZc0i+3P!0BG*&7XD&dqBU5p!0BE~pT&i@AE5`tWoT)3
zr0>V7CQ0Fk`s;zgVxt80@Ps6K#Wd*?9+IL>PH7=66;*L*#)lueywMBz@t%I+=Y}^L
zpv|M|AATsk@j#MllMo)2hSi8)R$MUH##m^rLhMtYj;jz28Dk#SrdoTWmXAR^iM2}F
z8FNQvSNR(~DXV&lLu7cNw~`n%hpc<_#V>bX3=_b?U&V%xo$twO#czb7OA(B!`8>}(
zZ*^M?sig<1yahb`((gRqF6l0h$tEVl5hpbmF+_is=>DH{Z|sN=&}!%R!k2YUY&<5B
zsR@U|Gp(^vh28+k)$xGrRr&Vtclsvg;S@;)e}Pebb7buEkgUL7XM%df{RK`IA4mCc
z+qBg&D;O9;b~8$5*H1d$>gusVKGQnbe0^B~YD)k&lb{G+80?%9-(v-YI2?<j+-qie
zXNiqC=jo0&rEwkA4aXr!Nm7+)-zyOHQC{b+ecjQMwenGgqgjo7z$|~bmmfAc9J2>Y
z4lPbP9`vFD5KhSF&Dd@+etCx<OO<-Oy#T48F1%)bJt@Wy|B{;6r36$&7mZCy<ovS>
z;oq9sugB<zdSR<5$XKd<d1ee}`_-4tTRX-05llm8(9we4biy^@3r~G!Uiw;$90qaA
z!p5i@7{JO#z*Fz$iEwOWA(`=b^=Dzk7J@NA-3v*xeQM}|ta5U>(2z)$OHeDXu`Rp}
zeH*PVHy2QAF{@8Cg;@N>w%b?p7U~7T=<v34wxE+yOCx6c`^fVLNX$You1qXNZTQ5t
z`4+9WQ-~QKG5WFORP0<9-Y1{8!af286ct6S5Jcbp%WWH5VD{s};o;h@#n;+b4SY5H
zY?+><I1f-6#2*CwBw)9fTUG&%B?^;?k5}AkXT$IOLjQa~J_T21aR$YI1TJEWE#}|M
zhFYe&HsiaK?YmCu_sKcMKFSxnK2fba7XH+1{eXdd4gFf_amZf%V!LuJcgG<B^7G5|
zW7UGc!}o^j4;=0XSqFQ^HlR$)*6@KVVpl^n1L(3{DN+F*(7T0wqdh^cN+<6MUml%F
zvnnzFMQNGa+}_EaAdeRdTJJ16#;!`+*wuQ<B!A%|qiZ#O6NJR7du{1%<_?|a<X24d
zS24hnlg;&!tzeU$(LmjzLVF=eyN*?#Zw|j~IG;thAH&LIX8Id2O=8vaJHmUeiq*Y@
zD+AO-x0Esf$fzK_x0$)q{*SEl0I#Cj+VECH(i2L82qClQP()gKv0)ksA&n#uP$?%p
zq+trp-h1yTcGN2<qNvyQD`GELP(cwj0tz;4s2AJ+t~KWX-uqnd^XTl%oGE*+@~v-u
zJM^pE2+7R6-Ej$XS$f)YG-&eRd*9aI<5AirY(n!R!#uGwcGVXBu~P6htTQuF+V?Nn
z6MOxA94B*a78F4)!ydC{b?e~M!?_H>en<Nfg^~dHGo*Cz+*&3aD@<k<zEZZZXK|gm
zHty$F^><}6d5YLg{BjC_#OC*7-#La~NFjr22WxaNf6P)M=>b;{$!uqqBHswBk=e*}
zM?WaZy!ln^?U!&$vY91wSA;p_XJp%_f%S3gF6C#WatE$LO_9<q8xk7luDI7;*55Dj
zyaJ9f&D`*AY}q4R3FJzcE8WDesjSs2=fwH%^A=|ZaVwyhgovRJ%Pf&U&Id2n`JN`-
zJiS$Mvm*4bi<wfeI7MkE>;BlOk^C_XIp(DI=`z^x*Zejn_V{o0DitU$h($~Xa^7=d
z+?A8`8u{csa@Q&F4&}3aypcbKU%)Qn)T}7KLvXt@ZuD3tlO*Yj2xG-mC7CO}96YOC
zAH9N`reFkcFN(wLd-&+(97hTWp_R_2dQCDgL0687i@HgFlU<GUCuxr~vu)fRdHf`{
zp<@yK$crQtOlH$UbIRnnu2b{}Wa>0fp@dg~X~GBbLm6gLPh8`*-guyHkVxCY)unNB
zF6L+|2DwF$>uzioA94M(xF_XmOmC9z8q9MFQbZ>4v)G?M)z_2PQ^)iq`~goU+sHKE
zjEHNyh5H3Mt@U>X;(;Iro5kuo;-<K#9W@Z7=Uv|R_Us0hYIeRA`~Et8rdcFvM0~lJ
z1gw(0`N93;!gn&JohWRv$0m=NX77r@Ltf#a)Gxj7p=?(%&xBdq*2E@UsiTGUL<_B~
z=tj2YXl`uk=Idi&&3S8M-?>pQ8knKrOR_fC%o&_~pS~gx3fZ!Rxt^THI*U3e?vh#t
z$d~{$m>00jWwz`Z8~eRCTlU#l^k9-qpX1_I_3|#1;nCIQy(L9QR}{qMpRZREd3f0y
zL=2Yx64iP5_(`!7p3_^)X3Ke5Zwg{#pp(sIa}R4df^%8znpo*RIvo&IkU~y0=S>~F
z_9eafYBog1g5#9LuFs4beBl<3%XSV-hy7m!A(Lfsd%Z7`>xcUzbxrsZ_`H(1K5~=d
z{kkxcl;p6uSab9#HpKRHa(@B4-72qD2zKb_^p9I`tlnL=5R+Me;6zM)dZ%^_E|aM*
zvbr6z#buq;ECg}-`H{G-@2cI^_s56t=ps=UUf$}daie8oN|D&lUf}9?=;}4^M8$2W
z(5tblkpSP?@^wSppT6<`6KH@tnf?vK3SQQLyM(#Wfd`QyBA;^b!?7oc8wa()-HE?;
zpu_`5uz?_|6XsAGcfL&M43h^E)>=oV#_L@6Rcu#b(#OmeD34vFGO;}gkE|cRKc|N}
zkYtu0o^a`;F>;XNzmS1>sC|be%P1sHAzzgg7f4_F{hj^^AKwU)Cs`B?)NsAf*x+Z@
z{gu$14vwdDiPc`ihXw0rPrLlM9p@+45t6d=k${WIzQbeE6tK+!aK$c|J~I!$yl0%`
z9+H^}76B5;J%1ZEEbP=HFC(BU@h<{jB>cjocK#m!+(}1X#xG4KeIvZ>_+|LI=f_+|
z7@X%{B&m;od3<6Qe*q(;ei3INKJu33-SP)L?LsqUx$s%pc=kQd6v2aQ78nOZN=GtG
z<JocZ3X@l2+ouA*5JUnw4H){_5)MglN%@wH^jACd=+BZ?F$sh}0F6iX&SD;Im>qxf
zZUv{LP_<M?8mKuEWPHDAP-sWms=^eL-`)vXjde4@DdF|vdx(bw^@wxgA3JKoDoinL
zBfK5(Q!$;gu%?b4zH;06RXI|cW@q%;AdEt_G0DtY6W{Xv_<ICn0TS!%0J2CylnoY2
z?D)yx?m`CS?Fmi+3XwK-_{yh8NpKI0)z(9w12)8bxYIp(Apt%=)zq;NNNe$HZl5mA
z0ZN6+ZEpL(eRl7dMw}aa7;)EN;dq`zv8&CU@gJ6qmSl=~A$T8_3M%Q5u`fF5XJDI1
zAI=|Ede3OB4D{5tNKq2zCB7o;gIK@se~WeGwdR_v*m)B*9b(4>P(*njRA?BvF)Q}u
z2|5zQdZ{iZn~TQ8UPaLr1n|F6z9cjA-9hKRmUcH^ND>R^C}0h3HA5fUohrwKOF=~T
zqkrh?@Abfx`8|sO-D-zE?fv&Ge!PQ3sikIUhj+?!KYKLjpKw5bvj_ceS(>7smu%90
z8#MF{ie@Z{CU#Np0D5ARd-L4xK_~Yr5-Aa=x>%F)?4akaPZR7Re+jkXh8{p18n`A6
zi@#-*RJoXc;lo;wJ|IWY6h#R4W^K)|*jJDIU!%g%8MVV2WC(f*IWb_T*twV999lYx
zG%1NPA&b;ZjT*M+opG|-3-~77s1&88YrXOA;bWGK`o{-LCJi>z--z8kR&zQvhu)V&
zD&53wioM6-OH%uR9_&Hzh$knR_ii3kbQEub1=-WqB`+u|gBO%?`k=K|Ul8yzmZq8M
z$w&O9Blga2zAbl60)amFLKY^5UF_|of5*N)N%P<!tw4%-Jq2;!pQm^o2`);U!Yn{2
zUubwMJ{|t(Ye#elYSAJKAQQZbSUSUeIm=0$J~5ULGMTb^Cy6m4jRaz$KMb!KJw}X0
z;1|G|*r&WW?$wKuWqR)~zy-WHzCOjYmdEyF>O?P;X^J5w>q|5@oHp#?2X)R@3vACm
z_w^)}T>HWIW9P^791@eMd!XaX+`o0m1K075+0DemWWkT+3s*-B3q59R9p)%-yoHBs
zZye9ABRwrO?1LZ%s^YH0x1T?D757@Ul>8DUXgT$wM~A(566or_r-6Y+lvfn@#w9qX
z41ubf2u_Hb5Rx^ku8UoFcTyvHI~(#4p2>SOHy!0X^F5f8lnt05h&pv*+FA9y)3-)D
ze@+<P!AdXXCC(@QLZo6myGf>*$rmMz{A)r7c6Q2A=o-ph$V$x`Poqz!sZX+3-L6h+
zzqeyqv-jBDu^X4G;|_k`L=uHBOX9A%Nbi^YrkyQUSx3oc{T;FM{*S+9hsHMG<Ulco
z4HMBQoHF>E&-8>@B(mJK{6pY{&WU;Uo7i!mCP|gPvK!V4C@Gl*w1n|rq<L5y%o0Lp
z_K_8~-jKV7uQ_tGtjwt*mR;A>(-2slk1rYa!Y!lT#ad!0LxwL~f20)2sLe@n4i=`C
z$hxkKe{ut^M_d?L2I(r1U9!o%X2_TY6L;Zj*)Dov{3|2I?cy=3P|8QZ|Jz~zUNLqT
zmNC2CDFBq`<Gyik{BOg?$!GMUqe`~=>~8Xc(*t6mkNF*T3~Cf|iZN$QN$5Fb!pEFs
z%=2FjKmXnFAM+85sMrVoU|m8&!Y3dZyudDh8vr9qKV8@*Oz4MycBZXQ6stx|Dsd^%
z2y^S(cLz;-jf@ov6f7i3Ur?vgIGFv~kzPN3aM=U;-Zfv=5R`RGw)Ir(ZKo!6V05sf
zBA+U_2Z>w6qt5h)CO*JD7WUNe&Y%OCZweDWUpZ2K8r_&+h$gziCh5jOx29k^!DF?l
zjP)#Sh^F*|ST|nH{y)z^Y3jy7rRjP`HFOgNM?_J^-1T<s?<4gLcI9fL!PWszl&}i}
z!R`LNVbF|sH8DRh;)7xc8d4m0#l^|1_=r*;Tmpj=*Qw1USuYOjK4*fiz)t9XvRi?d
zQnL~>%u~+~n|I=bRXE~OGFl-r^4|aN?D)HjCP?|Gm|4d@7W)WPEc|ry(dziKz8k-a
zUlo8=bXQc;y#Cu^17=N-FhU{^fqsNoDP2c9V&YFMp0J7txJpd~^$Dsse62Bs@mXi;
zDLK#->e`v$T2knj5TC~l<dayTTu@6%hNn*)8UNH$3dmk8v54vu46Kw)O#cb@$DV$)
z=d0Bl155W%twl{~U|H-L^VK0^qZ(m<Yf350v}{^zYFfG!GnG0d+iRP`Hx8S3vz9Z#
z&xuuVqhp62esi3bMXQ<@P*)?s8b9Pe-yhQGSt*!5tpb=aMF>9@yqECVaTK=xfrBRs
zkmljwvQh|=_#as%ZsWp7<Gwpn=Vf*$*)CV7s1A?x=Gd`MBzf^~_X4S4y>)!TS%qWj
zuv(QJ4b2T4*>TO#Ro_m~uz{d~2wXz|f&y6t5cY%9UwTMZEF65=bID>w3Zz~tR)pY)
zzdQBB;rCuc)GQyrtGR_&#$2M+^qk=_PilPu+84+WcUIpyzN3A7YeyYBI+M$AMo(|-
z-)%`!--9gM<yV^=HEy_V9zBP5N*g7asC)*gJv^`#M^0!C-voY^mH|Qb)(;<^(lWY(
zD18=X$1Z3@)Jti}H|Kunn3plb;%VD!K{^^5APn($%ZJ2`%}f>$Hn+Kk4e7-O9e4KO
ze{2AVCEX%FBFGcsKZ~;P-?7hMt7ce`Gi5a}bvG9e-t-)AJk?Y)du0CwIK{cugTKFB
zKLa4>5^8iBqDFif8<)ieNY;Scn>rRrAolgTxbIHWKdlC|@hUG8N=$k@c3S~|OlVHc
zn7O3LM`Lwd#_{S;s+)-|n;RM=USPsL@_6ji0u1f<f5MasFOB=_tYj%;6^ce-Q}cLC
zHXCBF>keXw0J)g^m7h6dUj#U!mg#RNITv_Sgx{Wsjyp0vxl`UU`y$r+i6W~f$KN`A
ztb7ewkCjdJEl#x<;AgfBAGigpEeUEnORg(0R}h)ZFxTH1d&gb++NLjHqZ@iTs0n)(
z9nnmptjU9KeobFMp5WdT8*yLU*Y97)E`E~p0P0C<>$?JJi?n{fb#h$a+c+gt!9H5(
z1HT7U0{&VWmv<_IEJG*_#8r|EWF!N~3|_I3*a`RE(M<6k;c-cOabH<x#fbRJ(?&0n
ziBpf)06$}HcCjeV+~bswnz%?~0tV(Y`|6_Xw67=hR!<>zpy7;cSbl=uNraZVquiFw
zk@sbU^%i8q{~=<O6^NQ+rn!2#v-$d{ZWA)9B*zqEI@m?L$y6j3n$Ji2Oh-g-ZW&e3
z)+OSpGjU89s(Wnd$Kf?g!h1{e4co<Vj(j$Rdd=R|w%@Ms_ojyTPOSt|T_B`8+VfZf
z*R<OAwnof4E>x~3iFAwlGa{IWZOmxB8UvLOG-SWwZpVW>rQ1H0_OyrZw!R~SKPm0e
zE#&h8i!Hs|_TL!M`EzLRlx)@zt%8fd%w<=BnQz(Wu8Pc^AJ#ji*h~>>sO%u`mA%<5
zBg@?RvVHo7$o%H8-eNhmlk^c53j>2=oCzmH+BZXGARkT`MHWeX83pukW1a5m;3&wM
zs5Y?p<y3&y0nY!;&_RB*5;&yWQN=*f86(LrpKH%vA6ZcnI;yOcuZ@LJ3gE>t?m@>#
z_f}^Ekt%`!Q5Bmxca{6n-yvydMf6UuBH#0OI<k*Wr}qr(6wAtZ_ibBxV%RzB!h0k~
zZ>|Gt3-U?L>Y>Az^!6WBS}AW;ka__Ja}uYbyXPMFaew*TW!;!N5+EL~A~D;n{=>cD
z#fVYUa-n*1>-FPlR*=1f3bQIrX@lF679(T&SoPyUzfD0>wR!O-cii<lP%KCoQ?4L!
zhRNUL_Ptk+7Sf<<iZV|yr#8B8e;F-TP*`fb>@nVI3R5b~pG|JfQToTyhuXP|!$m2x
z%u!A5kUTw{!>40=Dq=`el#y?aYIh$>)`4<dHXHo<Yx&V!vtpC`Wp{u11=w9Ytph&M
zN?q#47Pq)T|6Wa*fMWb^j#=L1o_eev&u*U&t)(!j#DurH-+0IN-%DzhIjzZU&DKBF
z#~(kR0*ch4lFxTfD39qaonb0O#6J^Fi9|E+414Ir(7$UUWC9W3vo~rhJ7AI#5V9wk
z6GNRf|Bk%xjL_clY{Cu%{hJ)RSp>z0^@64RV3j@Mr)c+)e!bZh`<OH`=Q9)=yyyid
zu_p4*Yr}f8i}~3)r&x9%CUQ)rpJ#QBGig%PC->@LA><hHNlo6geP-o6r|Q_?XbGT;
zq;=`(1ddxrIBy&rwQ_M-@8n`a5y>fWFYI`eVG=ebnEufhj1K9onkln(fz%HW4nv#f
z;?tdF|B9$Pj}BNeeowJSv=??QmX-s^qgXqyJ-oLhkD0>{LPzuNC^<=#eg~ar$E}FY
zf3sh2Ng3{kVR^6VsX`|@_cFV{M!we+Dq}gV6e!>la>v{+cKG@gHfKcSH*;9v*;o|O
zDo#wq$E~{GnzYCdIbJr^l!0?JQQGkq4bUm;WbJ3pA=gK&_=d~oQ=04Qt`W;`NEb)}
zYpgr($(Y@D^pkH|>__)b;zB;G$nDMe!&$o{H16#PS--Gk1qL_wMfmzY5+z5fn%j_b
z>@wwvrRMcs_nE_^<!C;EV?9|he>!-*+f$$ir$~S*1}QK_Q+B#(M?}jD&h};&?a_SA
z&jvfumqsjpIP||p=<VD$!b6m|2108Q!OJouirt<sV-_Wch%?YUK!Ib*nSAJF$GMGt
zqt-@*N!>}FzV*P40{DYizyS|9O*2Bb=0^0Elmb%Jw+230S~@%5m<t|vJ06a3BEn^q
z7vJVzOb{TQA+w%#PhAtSHzK?hmn(E}fl6B;Boj<NzS*vt72jJriyAN0MCLl$XX$3g
zul9xUF{7LiSu4eIE5uSP7g;Qlr*{o>x{r$teMjej=M+32osRltruokZ``S^FH+6-M
zs+=lLzN6kDNCW#|*&qG6@0?%4WMCFEmNJNPNQ}wo@7sQLxE!azAc)d)A->zT>46hi
z#Q09}PG;<tzEkehqlhbD?95pWzL-<>0P+bS%>o;k^(DTReD9!CMVP>Jk0$x<SQDn-
zp14UMVe@f{d)af*@|&_?^CipzNWI<n#|wIHg};U<&ynYcM0~Yxd0(8X7)se{6<{Qp
z=70=y^Ow%lol%4C59!UV5=e`<N#P7IMN|5Qy{bB9qZ=Ydp}=3KAdhH5C!5{(I=5Fx
zeZL&ni=*>v7Z*E(09{88wf>Qze`iMamKG7*N{PYW>ODSrAZ4EmF177{MIW}7)o|c<
zgXiRZx9|9Fvap-m7C=Y{u4{?#{y5o2J{`U6oqnFd51RGVO7l^pJNft+c{|eJQ^Ti`
zB9xh$SZu0`-J7oR77aWAzbQ@3F>8jo2Pf$<nXI_5lB{wQ>$>Mvv0S(YxDh}}2c7+b
zF7V3(H#sjZjC%HE?yOS2a5uGN0zN|5oSU8Hy^*IEg#GW@PTjw@drJ$MyPe%#UbYIM
zmv{Jop>EvDn6IDYMU=<{W+$5ZPX15gDQzOpyyGM#g(Ej4u9_IMj*Jv@l0+Y;eYq~|
zhv&o9D-rAV;KCBiO?9oiz)^oP1NH(X(SoF6)9)7a0QAkkt%gE}f62*oe>hQ}o+=Jq
z@mfBenv`p%H@Zu{kJc|L>#P&!!A?G`?+KB1;?|JcRz!#)7p%<jD7{n(kns3wZ^D3q
z(Vf`x8QCVs-?aoNp2$SB676*-N5Ak8He&{ieAyfXke*#r%*Rvg=)<F5xll(u7Ec#3
zgOn4cxA*K*?W<Qs7h=G<qH<%p2&JWsgUk;=&-6XqZa*b@@3R_UiYM<v#7ds6ZLb@V
z5+Q3M2TTV<ouuP$-^NX05}Iho0$%|RQXgN+O%Zaex|!1Qg8D{NkydDyg!?{zTn}p#
zvQ)=3xHISd;#S?Q1Np2zrX|KnG_cBlaOd6WT?g1#(>*E`f4Ft8>%q!)EQGfJ%_d)F
zsvbmSP6`7ibB`N&t#@wV9uOJC#Jo4tmz}A{wM~su1(5Y|lYNg4(SslZlDJ?y#t!r$
z?j{c*lb(8>I%PAu(KlkE9xm*tYm|F6#~1hlKSh)b99+}EH!|C;uW+UQVYbvv$p$Yx
z+Q;@w`dXUcHG7lQw8r@^dsmN^lg9Bgazm$0@SXOm9xTO_^P&o=26EBw_xir^>+vaF
z@>_w&uYAPUc2J~Txd0+n;NZ#)zOjev!3u8~nl}#htqzOmol&J`il9KIv9{?NU#9y-
zZOq|+^^+A!P9a+RtWIIEp82~IerZ(4Sp*ZMCXZ$nr<f;ag=R=@_0XSA<$1wTQu5kh
z^a8^Rd7a;#!<R*kIVYsIk`RwM!z@b9LbA{Newy=y8-3Sz{Gfy=oeO#h^_6B!KSO3J
zPAmP<gtf~e#*ERRzPP?V;L$QDk)@m0Go0g&iTvTcP|0Xy%}^O7!2roL*$>#!&ufB_
zmuspeRrNY_Xt^b0JFmfh@>uleZ}gK;F24<pFv^md5=U&j#~$&c#&DQcY`zj`GPF(d
z<7=I~*vQc*go;fl_LJ1X5wABz>DA`G1@7fX$BfEmuFFTQ1rO^sRf+lLmwSCDeHlm_
z+L%+A#&Yw(ZoB-~D7gwLZ>JZ<6k$hfy*uaB81c>?s?jF7aKa_-!y%C%k+Q%G34wzT
zf*KtFWtDyA^QiJ$)P0o6$0T!;ZN5^>!cJ$*f~Yya=`-e_<HfHF`kZ3Uf5c9k9G$wp
zpIkDhp1fcAyJ9bYIm&)8P>lwTLqgzL9r#rE7f@oRthRTLkNJ2-zuu{{WKHt|)U2U;
zKuzM<T>HnZQFrBOv?&u+Y(A4iC>jSj313BgxPVxo5-N9Xi!2z<0qp*!&S_d38TzY6
zHNeWXEpi&sIPu<pvTfC#kb{nhlyHdIDA*f)bE)a(+X#0?pQs5fnv@pwU|r;j;KM-l
z(R1w=Bf~4+3YUacS|b2ONJcUCgU+x&G=;ysFuZpPu8&+h5WHv7?T~85x^C?uVOQRy
z*>PDL039=lIbqUXuvfh%Gf7;Zha&4sDM=|cXO3`xsZuj9rnB3Wrc{|x5$+ACdW^j}
zo7xm2#cG(6w0v`f<KA<Ej#YL~pd*9`x672Km7CnZY{4KMpl5@aN8{y^<WjS1gquA}
zvoEZEmzdujE8Q)92FNl55^D-%3GgfsBmTol&5F7$CQN2Eu&i`MioxgOQR_K=xxN0W
z=x0`h{4*xN!tRgdh@G*0VrtYTqwU0ZIPPS7YNDn^B~?Vv0LXwxv|rMBa*exbPS{Ip
zh$zcY<^nw0e{MQ8-BdGsrd?kfxjZXW=8TkeTL>EHQ-QjhWR^^|+s=s^mZOtbVy4Cp
zEI-Vo^dvsyoEqn;GR=9Iib~Ie+tA%aOb#`Z2ciaW&(HRH5=w#@7OUXunwKN^#l?SI
zVR!V8x%NH{WW3~$4%vnEAk_uQMJ98x8$T+hcM5SnNI}4=q-L<Cin%+-4jCF%^%eJg
zAQ%F)IlI+P`bfbL;22(1C*3<TUrFhiU#H#Z#GD%S`9a)Gt{1*{2~CE|cq%4m#&6EN
zqUh&#_8XOxiwAG>qTv~d6=u$lZrA(}Iqc0Y09#O=8L7Eu?yv42kLn1~2Js(#%?)No
zVv#9$)c4`VI#AZCtr|1HeWo1bTUHt>ab)G9dio=)1r+6FW>Bj8eU8&7GU}d>NH0%-
zXWjuWhQ>OHSF(BUD(9rxVb7ltE;cw%GC5*+5R)vkX_52H8p#sn^A_u3_okclq^Fwn
ziFWR?$UpDVVWGRot4OCcE!p(XwvCe_hotFHktF-Htzq!f%%x-OSp$P3x()LJrSy>-
z($;v&GW*FPkuUt8o`-7|_7@|Z_s)&h_glogXLW?RUB^-&*CaH$YoR@6lxCaEdf}%o
z;a0HbVhny*YiEBF?Y<o%D}t5PQcsY>cVj<zDi1{8&)e@lmvIeiwX?;0!s7H9X7?T&
z)koJP8;F7fn5oGXrgonD?v7}&^x0znc;c#znWo`RUrB739L=v|#mkGR%FH&2clzc{
zB%iGigAPAQSuW_M5%<^Bx+^~n8GK%ZjC#y9lwQI0!b{!HU(*3@IT!TKTf%f-rkZ=N
zv#Tem;btsP8e9SsHz|!xZq2}(?ZVdRIWKBX#;(^a;|f^Yf`9=`nWu(1=U*PV?pp=U
z%3IMXsweH0Q4ttyiF2AS(NQc*30u825h$h5vYTP1ec(LvbmVz2^X~IZ1&k705DF_I
z|74b*ZqI8K96%nPovihZFhj4I?)y1M-$-^XsvK2`CFZvZ-+d$XP!0sP296b*pYna*
zz85-(j4%%(l<@b=Zwup>%o!l|q8QyE&uh~|k&$U8=Gy9O)Wr}YtB$aQ(EA`q;ccdy
zjUOcJj8N1AKU(5n0I!g*0oj6Q{Cuoi<3?^fUNd0f911u?l*zlx-s!UUB`L7DUkQC+
zMlop_WQs+9>xTY&{~*aOSf)OzjHjBFU%FvW>Nuu~7tfcWkWG}GWVRmaMqU&><Re}7
z%uawqKR`o{Sv<(M`{>Z#vO;cBYLeV!YMSh5Jad6vw<2o6)_$W(bASLRIKY4lh&4=p
zO0gMsl6ygNe@#)lfq`lT-7U$SWmY7(eP`%g&4>Kr&EcthhELkv&fE3)Kk|?Q^G%K0
zXSWVyLsBCwDKYQ$cfaeahbYj=ODhII+vvIz%JtwsTwk_n9^tm0qyut~xjX?3GudaL
zIJwI7k8pG61un%G;7Ud2jZyBh>S*!3l1z|+!8oKZ=rDKjlcAe0!zmY&6e0j4pfs%W
zG;_gb`)h1eRkB8RC1|qL2M~lTp>O@L(q1w;LLh5mKbAHVFJPQdze+b**V%~Vh;t<$
z&&Mjz&PT2)aS^(Vui3|6(a?~g>~`&5O3!3Z5Ht8iJFi4e67)42tA)G0XP$fHK?CH#
zR2GE?{GQS1Hf~agHk$;Qwr%rbCHaU4+OkttZIk0=B&p}PaoGa|&_bz#UK-k+Fvh>^
zbq2p3@!;_aHGp7)Cxa?X+HH&WDjtQO6zZUtYW$YwR-YAk&oY}?Ay<E4|NL10GPi@+
zmD&-qG)vvjrbUY}DPVJM4WZ$Ru&b)c80yabGGs?{gwzm%W}5z4?8$W}I-OTV?fF&1
z?|eZJ5T#-p8esUU5@+Xe;agUR|KsK%qwW67$$ejLUc8)QJ{_RZARS<i=Elv=2X1uX
z7dqQLpIyl!!*<R{EHIsi`^H}yDvpi?*1gnwz<+wc%9DG9gVDs_mkL6+c9nX$>9wth
zH&K}T=U+>JnoZ*^q7o=jZ1WxVB5))KAA&saqUq`+wKo0Y-LWl^k5p-?p~9;cGDZNw
z7JUQUA?=Z;Jc(r!V*#ikC*j*Jjdut4=t<e-X0q&Ghge~zIqdwQgJ%u(^)bEwomEg4
z4P+I9iS9c|)K6|)n&A6o!qEqr-fZR@*GkNiKDy%<4dtJ30(-EBY$m8cDs;FZmItkH
zuH7|T3IsApCw;9tNyZ4*zAU!?st%4}JeG7R8=pZ?lr5EZ?Tp}{)*ZB^hOz@Q|MpFG
z!3n`Zk@nPS8i@5&k!AO4dqsob9`d`iAs`&VHkRz9!g|G?rJLc)ZTMq)iT{2B!d=;)
zSAlfFQ*Kj;h^icq^u?2Q#c?qkNgpVf1mig>1E~3;Dw1)vJN(L!+t0)w9<W%*I&S;b
z`SM+FzWo=lOH{D>M`!dm0_;j=L542DK3mjbMRzZ9o?Iu1h1g2AeG;c^N|Gu}?g;m~
z*&0w&gC-JaAVBY;R8nMCG`L%n6x)GS-=#?$i)~Q7`)#`()#8dncJI|zD$ETH?yD&}
zRMm+|8{gTyuz9Bh9|c*trt=c_lzD-{`mXU^QdAn>$(C0b5eY)~qe)_+_9YzL`o`z&
zwO(xu+%LC7n)Aqr*sj!Uyx1143K?2SagPAMV?irxUxuhS7B<=32ZKY!zzT%$oC>%E
z0pFb7&t6%kfFT~dL<~!(IB=2b+Ig<centR4F%Nm7k;%=akS1oBYj1VhmPv_G^7j2c
zk%}pf?cDW_Z$$LUFBD>&%#xK$vS}U-GzI<KDJ!Bs%m|V2TGnVm2gAY^&IFsRJIg*l
zJZkM{8k1#nD|{K1r4(VgbN^-Md+9f^w{TUQe37q$iy=KJ+fTJ+iz58}v`m@nUj!}8
zo4gEDa-V*d?L9f-tP{gDa0d>cLr%`b<lf(6557HkCi9xjCU7(9>^x>>US#9W(IMjB
z0}@w21TS$N(-GQRIEA5hbc9-^Wt!DwX5=J%vGJg$+2PU=SI7nq?4g>Gnc_gAI(&dH
za^P^uKlAF_sr-?DLZLRtU0@IE*8CG=g9w(?YiT?u41HpmJEJ*r>9jCe8W>?}FzhzO
z$2s*p_w%CA$T<;WY^PF~<|TV(Gnt?z%}m_u%$+1jg}Bvh@C6!hNO!>u6V1C}ZuX?G
z=dRLp7b3kM_~?N8Ec1emcYn2K&I$faHl9p&p`eA`9Jj|FGCepjrM;!2O$L~pj&ZZA
zg98G%%j2b_f;Y||=RV%7Bl39umJX5_j47$lm?Pcy&yF1X@325@Rqy3R3^H-2_}p6-
z=%AK^WFHU`X#oJz%#aZG$Ww#nxm@}uB)sH2-e!Z(o!u?x$pU9`3idxWsoY#u?+*V;
z{bf!M40|trEGC(H^9XmqOfM!OOqJknYGSsDoa_GIMm_qE#JkwEjBsxWr0TW%`W;M3
za-o?t%B}XW-G7`?VNMw7epjv6qQy$<3`+?0^3CmK?m5%-cpfvI4+ywdl2T;;8sQF}
z5iKvJtcx`+a3>9I@43nMXe=oa@V-ElRye-b!RdCzl@b99%9qzk+j_ex&jcli_9c}^
z%9V16>Fef0_DxSGC4J~o_s>5fYEINLOBooD6wE4#yNShbvFh8)JC^_%vwnD|mmXwy
zf33EbU@WH<qz-zN$m^Pq&bQax6M4rE6zxidCBtsM^i&Xtndk1d_f<q)7pXb8K>d!#
zQ)sUBmL{AK!o02}_M9Ox_K|)HrD~!jn26cfK4R-(3Qv;tQaVtg`jX$=#a1DC5sGaM
zV2SuQN>x=wcJ=h23&ZT9AucYHCdEHfZTLQyS;k5TL{Q=vp@@#QU3q#Q%d$jd@-mas
zS;l+Y?Z5Yg1>m9*X}$JF(#^n5J94j#{Ie30QD8o8b${{d*dRzA)>p)5PMGKBdFARr
zseR!t+>Wr-G4|Ca?MiodUv&u6dUn-dEebNL&AgknbRbZmI*0&7F&-hm@v;!QIJF`G
zR>*x6NSU=B-a-L$_lHJz+&3OJ#GwTOtP~{WnzL?ok65N)BoIZQ^)Bi<-%0-ol^iX|
z<TnEc`);^FR}Yar5rioQnmqh)Hz!A@>i<Ob<>t!>ccfnj^B2ov{I9G*N;+L$d94&U
zB7Tb7K3M;HhM(49V!-0mVzXeByMs8D=z^{RMY;GsSkSe@>?udd_mSnShF>|%pkw4p
zKj*nOed_%%IffqEUtZdmK9wg{nM=QPFPoyFF{}!&->I1C{=y{p#$vs|{=-=_&9#$U
zbQa|ogBgBOp-HWC-})L>#}tK)$-c2TsiHtuc!PW1HIXfqSm`NJphA#!5q{6ZS!gOr
z<$q@4S?($8A|H7{eUO5|0S}d)nSuCit$q7p1(0xWd5Z)Szzbz!25)Mx=E>j)+u!WB
z)QnTw?V4pbt_=D%Nq2y38G&%R;v`$}n4Ebuwfr0^N=VchQ}SAT|6v29#9m0Fp+rCU
zShkGE!rV5%jme12ny%?Q%rUe-X}T2qiKrZ?`h-@y;SnwE|D$-w!+AjAt5)HX;41@6
zyJoJNyfaz?`{4dDW=3X-nfsYL@lO3)&|+pl8(*%#95%td^f3M7O4!F5HVCA3&AYxg
zqxFv|A$93wmJj;oSMD9dqNLcAFE+c$zjO%(EL&=|Qv2m6r*yUSP;R=QXvFe6`i+`Z
z#b@irO=xIqX7Q(2+%>|y{XZkY!z`*|(!-9$o?k73OLAGQJNHaosk#0I<7=7LEVm-_
zf1kKpj#iqAw^nNqH0pryGQ*tuvD<T@p5Tql7qqA-x!NS%?rvVOf1p0VKM}4CsL#!A
z$kRHQy+pLBOi@;$d8p1kX}hjz?K{mz9zbkBj``0__x;8C*Fp1<lx<cmcgvT>NXX1)
zsv2vP@iAK##o4<rkEr?<d_k&o`}`oI6b-f>W{W!`)}EkqRIs#e;tHX=g6C{ZurJp}
zeC&;(ffq=*DdVJ=38QW5wK~RCE1Q~OEs5uVLSV|`?4eJn=U@m10fIzIZsrG}(9Mgs
zwHF0%2TZ;jke3mXvn`?ap3{OOVCZeUIIf7t*fhk3FAv^iK|S4?`+y#~(<C$3v77D)
z-l;mPU@RyE`%MY<i3@d<C6L`lP!8A$nEm=^wrPCiiLgwF_CRqKc?L2AXdu<>C~=xj
zibxx(g9RNut#p}mLEmA8rkTByojayPlnhpW3RYCITEHRFs=uFfUOG48)N4YEvgwZO
zsikgMu+z=`XsE=^=#}<(Vy`qwCYi>2o%e=B|5UB+(kt`mTo*aVRP)6}cKxqXx4#ii
zvM8Ol10-eAOP6ZSO&osRh)6M<|C_k6sGnVJ7kUM2mPB?d$XSpyY1TFS&bU|W{W+cF
z%4!K9Nt1$pKGP0=MprsD;Ou>~MA%A+Cal5Eek6L+22H7jejsgbf}<sy=tTFMs34A}
zQy%*PR~4N%K-{U*-IAQhL31?I2e`&VN)S9FquAW{r&~^`npY2655&Y3Gn6+z<Y4E~
zyCZtn0AE+g77}^H0uY&y&j7`3z0g@w8F~JVN`w%b+ASqZwDvG~SKi~?*d6*+j;2Jy
zBF$^A2SK8^gj4y?na<C5h7P0(%__$kHa7~dy9gZZm(}juC#sLEq=#3jpj`lx1?Kj*
zeY3Uz6#$|y5LLgx{HKhSX%4#BUh-<>knI{xm9nXjl=>_2{M)Yf?RqL)N~%oZZYphx
z`$IcqPQ@SO?x~A;_^E!q6;lELe|cvI(5-YNlB|+ynZ6&{Wmm++@9}CCnw|+sugc6`
z=H7OLF8UHocz|J7V2WDZ7mH%FhP<z|o?2iojP~8UT<gL-Yxg3BoKZ{t*$pq#qx<Xd
zIO1<&eHVD8aYYFP?=uS~`4aEfm&N;+kf1ObrdqSx?>J>Q6xaK^5cL7iGrQB=m|FFm
za1s6JH58{8!b);8z0f<K@UWbir~Ml@YD}a!SQ;;=Nd%IY;<QpTXt;abRAts^Mvbm)
zqmRAk<ZpxNdMV!cg<<Zw>BPuWAZ)j`2=_LN?Pblux41RmM?TyYq5x`bEqcnpryvRD
zuBUDDgHb1*0PSHGxs+ISkqpSBbCIp!;@lH^!=^qOE`yV`(!~flvKjK3jeIk#4}goH
z6KJjYfjqKUvYBSj(=M=8eOIK+3Z+FNJxb{K;d%D-i@lf_=#sjFyhDaqtjAtuXI<|N
zLES-7mpDBQyd0_W*X^)v5%=v;G>YZ~ES`+8sE&BwzP>#;BAPs%o@9q^?UJ<BrW7bS
z4s+%$W8uqUC8mF3FMQDB%L)<8LHiIm4mu+!R?F9R>0O#XaTcI1WK!KUfL|-`>mG7w
zWZ{K+AB62v0wz2ld;KoVeKA2TBqvpLw898Sr5gU@tH#|D8tKec;$HTWPLIaK7{Jdx
z{oL38h~RQXIkXnY3~o>^3BVxSGj^m)cYiD$CLgzq9vkLMNlLD{-shH`6fH&)$%l>w
z1mA!XSt8If?_%exW0V)bpx2%&L+PZMH$Cb+^hH!AWGXoi+X@zsje)h2C04rScIV@-
zqY`K8a3$RoEqYCEf8)8%c%NKTqF`dxo`q6PO*+dr_Fr0*;N9V~cy}gz=7{{YYHVPp
zA&L|5WpJ-B0uBA_JFyC-fWhb{!&n>o-_ZFPVDF|*3M(sHe4vns!DwU_i4Xj4`^bkv
z4t~TRE~8WZ)VUYZ&%hWxU`vi1Rd7k)z*u%WgFOp-TCk~IY`&yu%aE-j2b3QY_>0n>
z=99aKc^F~`&%p_!c25cpWp|(Kr%yqKh**El81+GCpTJo((zOR{f}EIa+KwCbuP7ZQ
z)6D7cFBO?}X4IG=cJud<8&)WJv7(uxb0akf+8{G1;UR4{#|fDo@!jF-Br!DXvL_>?
z>#O|E@|xgC0U(QbNZO22&3%4nR+Ekhq~&k**Z8|AGs0RVD8Bds=lhdHGDFr^ZnI#G
zV6Cjy&T6~lx5y*!RdZZHW+o6ml)6mQ?*#kWp5O>*o$wVG$QV;`=yba)H0sAssVbik
z$n;n#Y38jfoe7O$h15AYUe!}8Py!o?5fAP1I}<Msi;2)1K<%O>$i=2L2n)XPb(_0F
z2<I|!M3%v0-QX^!nst4An`h_%5)pKmt1YD@SZTI~kNET|<qTvu!j(`)NC_srd!*Yv
zJNkd{V`*jg(9_M}$2iFBHvAP8D)9IuzVfh5&Z2L_A6xCc3+m+bEs52bwAMzw75Qz+
zK3XWeoGzsO;Jy>{(02j;lK3xYZe8ei**ssV(LEH|pioy^sy6?wz0j_m7WIBO{6unN
zaWvACO+f?%s%(axagfp}2oXrNNI!!J6!gUub54vsx*+<bXE|5CY&(2DFP9KS%QSQJ
zYUi9e@@?ham4OL$upXuG7nbB3eQ=og<uXFwVC+59oI2P2wmU|MDIT~KpsXQBo@|Ep
z*zCU1nej@%ky;ULX^6&~f{bi4ev6xS8|UFC!~jycQx)RJlHE`HM(vDLN`yw#ELk=s
zf<cg;4#c_ZR{OzeS~BJKC43-(l6i(bB8EWJ&D^}wx%H~h{5&A$GL)2Xe*`U}-kxkm
z&b8+qE0t%lYlVP~L2#~=tmEcG+=jep;aV_dSP6l*CNDMJtT@DN>xsVQqkcm6lTwjW
zP4-TsN{XzO-_K8In-u-d9L<I_D29fPhpjRZKKJ6%XgR5%r?mmgS6{!BAOe998rFw6
z%|}KZd<rFgf;mxz0y9cBG5?Cc^sp!?GXNo0u(NtHg||$z<rSx{F?#r8A)`uxdXTfG
zm7j*%E|bl@uV3jFo;XluA>>khU?|_D74LqXFt8@#$yfe6vZGjj*>7&t8m-mj!Mden
zU<@!$-%Wa`7!NFkcLL+R2m1>D6{7Ljz7IIQU5KOwAS-unao<|LKVKTph7h_HP(fm)
z*>IVA*Of6RGpT5l$H*aYd9UqxeALM-(MtC8goe20b^Ffm96%EZV+Wbj4E)n3$BkY}
zXkE2LG+{;dU}%S%W=Bf%T7e(AI&C*glETXENeOET$DDzanc-i^7CVS804o!p9scI9
zmCueAnNEE9eB|b@Jp6}?(QngkLArWwyz%g33X+6kDmy&Q?{M<?9d_vefvXy9>-sCh
zR9FDCr!|Vs4W)i&!OfH1mzIU}Jz6;cRYZh~l(E4esz@&#<rZHR9Ar^;cE~nIGz6OS
zk9KQT=m>ZpP=Me>1m?2m>IEa+S2jiT8K70{DMEqdIE{&EW88;7^o~~%UMW)p6qO)m
z_t|b}SJ)S4a|VP!EhdTg7J?6N<m8*+>ngzqn<;8Em<8N<nmMS!ng6_+Odh(Tqplv{
zm?@HOKB#aeycbpwp;UXaBpUy;luXCTv7_CZdW{(i{RqeEVahH)#JKNx<a$Et=0>ct
z<o!?o;bwlLkz*jhoXR2}GtK>Ut6l;6I*CmCe<4uZKZ4Y4P_1%}-*NBu@Y^aBl|;%$
zC1=f@du?HwUSld>qE)u7;8F<pMY*T^<dt8kG<R`ibC~P=tVgQqn_7CPv{Gg4Zg*e)
zIZ9Sw3H`71{UTwNY;K>Oa6)4A)%`WA0~n$4j}BYJ!BWlHvF^k*k=yUpH0lIW!Oj3M
z&S}qQx$7$<&pC+-_kYz=nRI2FoM|?C?3bKa#(ZwaVFnUhddxD+b?x@0kjMqi+Kqw&
zDAEiXnnU6S!}<4}wlG_mBC^s-B>|I<YRcYpZ#|*ExB-=7abST+<AW#|WthcH_S{8L
z+drY0AUHCtx&Zk?2`iu1*)vbmQ7k2U)H3U+JwXJ5wKK}bkCDKqmBgFs5?%l(2~LVx
z@|Rsu8}GRlHn_s4B!ObjOS2oMhgWY<iXKK+feVI6>W7T7lctA18?!H+6V6yIn`2>)
zvBv4<{iE!0uZH|OEke9F+hf5}@#Z9rdM7$t*2tU`bDSd&?75YxOfu&v_mB$$bFZ}-
zP){b$R7ejmmbou4#7xgn$Hz(143tSRsqcDwaah<UuM#=~uOQ)q?CNFOuC=#S1R-d_
z&ph@a@N}l}wb_>sQy3F}CtPSRU3$FCcTRzZ34AF5TZF*8V5S}+gzAE|#M?C2X8HDv
z(#{8u1ls}c1EMYdft@q&^fgq3_f|rmz)C3Z7d1v<yyQi=KYSYg%>6njMNKq1F$lmY
z7_uh!oXaBWF$kQ9D5@p^P*zZ>pXkoKIymC#04Y65BBB&?!W4J(zk;KM07#M^WQYv^
z<^A386~U4GR^@9l!lzl6>Avw)a3qK7GSECD07n~r?hTLVNV$61x+UI2iDFusdHQAh
z`*G3NCTc-2Uz#5&&11Csd}$w_6used761<|y*~1myl)CXLEtv*6kGLz)Gk{wN%9QM
zjgst<ByvM3W?7QEttws&+kus@G|dw#pK;6n2px4N(I9r2KwHc*1qMQz`fbjt$08eq
z?o=vCB9g(P6DA^CGrQb9y%DdRs6+Y44F#y@w9$Z5OghE={avZH$ced2WREd9EyeV2
zcfZ&YJgpdMT3)915pO=(y<(dTXavzyCo!qHW2o=X2Ca#Bi`4u6kH6u&;Sx>bNy8hQ
z3jYGwU&g#YXv9l!-kI^$_5MbGTkwv|wU_wrxFAxNe>EEYB9e#M7Zv+OJA7l7MGJV~
z72&;rFfhwz*%2$H+L#B5+9Z9B<gIj%(ujS&d)*TeTcgyolyymEm4}Ahd&ceV)4PJ)
zs49xC9deEaSI0c%P93FXO-u&mJ9KZzb}9N1jjt`X>z)hNs{x6e(w-%f5QtRL$_Jep
zb(#?1GYgeeBvckes}FPU$qyZQkvhy-bY4qJD_)V7w({Zb>Gz6PjH94hrk!=k$z+~u
za(rbO!-P(zaI=T!&|S{rD6h1s-BEJ}Y23TNR12m)<N`asQ%ki(y+InU=&TW?S0&m#
z_eURc2DTofQQw7N0ZAj<PLuclI>??G9VUDPNOT3XD~PIHAo7zOG0`L(Z2KIe99=@y
z>;*x3T51-tLhf<y4ZlVPf>o(4;$b`_JP8VZiaF+aTmQJS8L@qUIW6^+xFv~6#+S@G
z!&!4}*aFfULQapXB`suNOsp}|qJ#UpPb|}-JZrF8<f0@77JA>hwRUuxtUsAWWojAC
zRU_TSS!yp?$Wjz*K)22~uKQRvr4fR2p?}j!LJneXsI+rJqJ@LbKnWBg*!^kp>Mv@s
zfBmTBbTAe6m16+12lqPeA-CT{A&@=f7lTf_IHk%A9PNGq+nJ-DMUwev?nrW9xjI@H
zoM_m=G02i2=!@&^EncrBNuyV1p|Ot;nm7pLuk1S8_=`ey@=UFDwHOB+U@5TsCfHN&
zt6M)H44G=4jCM~WUMD%nM2nujkS73uQ271Y_ulM&=QM{ui;+`~Iugyiyu>7jwf)_>
zBX(sDm%FP3*l4e>cgkcptX4n{rJ16cXr?}4k3A?xXs9fNl3MiaVU0mO1bD*dJ@tum
zSW@V98S3+LF!r4R^}H-38naB_txjyI4wncXgDw|1HoLGrxYyn`Bj(YfkU^v(BEjXa
zA>h5>l=zqD4p6$QG?DVQsOgx_YwXRxYF7hwr(z_WI=d+!fnFn)XYJXaN1Qt;Oz;$K
zIt*A?kjYf@;49A4+ZAo$#Hr1q%nJI>Jl>LE&+Q1J?-U=J=@qFD^n|2SEl4#_kFr<J
z5B>!Wda%?OASfspZ_iky1Cr*})R3<M6G)Z$sw!vYJrNBThssO>qLF?=nF1oxhm_DX
zyYyh4XDlwAPTrlOC5cy_`h^pd9kr#u!V;3nWlMlacPUT@6XJwD3A;NabrE|HvaZIS
z@9BTn8E}&tdqS|ho*L%5WJn-_A?qB|9sO6MW-y2owb$(1^T#9|>O1LVg_!8??je4m
z)h|n`;lt)TaYsb2e->6uE?%bwtBam01x~i#+T%QRZ}j$Q3V-JdB1m0<6!es%ooQKK
zU7<pvr$v5*MkLk;hBv1-xc5G%Y+%5+e3A#xM*~YFoAA9h{`?@ihZ+l^GmtI&UE@<n
zJZwh}2;zn47N8)<2w9HV@`Sy@21j@it@R?Ts#rJfDoK*!_x@!gehwm$LcDBJ)k^To
zOmoV|cJ&7W^hs&41SM_B6&Oi3U%q3{eLHxTXheEn2T&1%`ubsR%Q&q$DiSH3>v9%7
z)34j1`+n<yk4l#gl;uSa+W}R<o6X~9mFy1Wh_^lWF!zx|BOl6!-@>{;V^&raLr6rF
z9puJ4K?pNwNEs7h*My&Jby9GQ<%9v1TTC=h{Q-Oz{H@7Ew<J%1sEOu_U+mL=MFen9
z((yW^i@ALoi4slI-}cy;;MJr9NstHbA;~oTCh>XTENq-d@nsC!;p&6jiNEPf#4xgX
z2|g?n{X7%C%}sw&?4r<lCKGe&*Um&iFws1DkK6Cz(9F(AK~i8aLGh9#CFu}f?Lw{M
zdx&FxoyK^j88giHhq`BO57feG9qEEwz%Lc2m7AT`{m~=!Y8$%5m*q77KXbfq+ems!
zXGwRktRAeOQjTc1fSPPh++r7`$4tLZ@u?Xi<;V<%^_e=wnVlOfn?Z???FMCp7J(9H
z(qtLY0<JVvH`KS{Ncyz-rk&w+&{Aa+K7+X^!FOX1j1<-YTB~IJn(flxnNDN3_;sN}
zBihnYBObTQ<WuliywL4gq7_+1tq>sapoGGt0`qOF+eS+k=3l&nY^3&2J~Y#UG{wX=
zyVu{L{g^>-;3ZjE&_I*SVHeo0O(72-AE^da$SsA;vJT=mStyC7-&=O>tmw<>q!Onp
z{$ApE6g2=Bo_NBBoU70h{62Myf%Gkt{ZdTabM{-M8Vmcc63(!oN_6d~naeiVt<6E^
zGTZC4*OM|f${>^e>u2nQ*5F`vSCd#r`8BqzSZ}A-21ih(Y=l>*S45QN9lK<z4tXFK
z@=7`2w#-R95HOv2`*G*ul+Zt;U=YE2AlxM-6fFz0tjirRAxg?DJfBR4MMML-H$}QR
z`4)TE2I(h~B78X}(8+G4@z0o9qkXk~HKwA!SQxE|Y;tZ^ciG3U3vXOZnM{Dhc0z6v
z+5qi9ki_F_?BEqzZ-f(nfF)q#O6J(4bL`H)qISNj2`wT)_-N0*NPlQv{Q;O!Yfmlo
znem|eY(_1FbhGRVw`u+Xf6=`Qzp?<xh?~82p4%Pojqxt&_Xi-l=uY>vYxGzd8<@{;
z78_xvZg<b^7b6b5xL(*hLaa<Naj!b>SBi6%mw*;Ed6^_@V}J0~j!=|LV8M3byV3f&
zq{nycXnkE({wC=|odM(K$AP}x$$C)bH5_&_l@!Q4JHmIzGkRR*+q;)I_y&$2G1V9I
zgLmA&MAy2B80EX;c(28UDeAE)VLqps$SdqY->cjAKK%aTDE^Ji^1>TJZ@)>og+(G_
zisvJTO)*_RIory$RY`&;uU=D}RAF`>>E6-;gP-pQG$6VSq8&41lO1_X&~D;TylS^-
zI%Jrip0)YM>llWPj~;9pB*O+b*zs?7`U`6AFgcT3MZ1xHQ|1CIFZm(ck`nXIihfd4
zpCQo=Xm5>3hM6~Zx<9=!^hO>*+<ZxMBh+vS)kta&dv^F0PiqN}*VxS)Cf+1(SbMoU
za<%>tw^0l-$e)Y2+WEJ+WhZK7k6^s2QwqmWeVA>(FLf_DIkIv#frwCjq+?vGYIJI6
z7~cptf2)S+46^mIGnqvp{2!R6=Jc8Frx!*34%d-E`kTb=%Mfd~U#<JgmBArl0?O0M
zP^$TBru#@!@b{{eyH1dsV!mo{@4rq@0hy;jHG?Dy5CzQ|vvi`Jv>?3fR0UB2>q+qy
zI_G@0e~Aa8lo3W@ju**EEc7=E?B^@>BmuLrqrz4ujpKT4gY5Q7QDl$?GGZ@Q4`7J&
zkBM&ad0Eauv!hNw9=8vHn0G6bE{LC^Op)`wjgRy?Cud3jlNYnW1Yp&V``zC9dvtUt
z$<l#B1iX!XO^1@AVjlUtf*KdW5{T(^b3I*|ybg@LY-rJXxjXhUU6SSS0%S+nwV$~&
z2Ya@E7higOS5N17@xHQ9@AU=(lsY!YMtupBK&6VZDiu9h_zPci+ZSmkO|aa&pCl@k
z{6O~tdVvj!PqB*&2LH{`?pdwcA<dr%+mQ|`<&sJjG}Bxb=6=(p#eRmh+yMCogFyY1
z>AE$~J?C^eSsqz$u6{h$0hnqh$wndU9~gb_C&fszDzxcfpe}80X=da}_KkC*9^C4+
z-%7c_Gk|2w^ezAE1Uumj9StmX)z!s^5q!Nn#y+_<<a;nPLVVyR>a182M7j73eb+hb
z!lMJ_R3U4~0M5<)ai#N0k`h%o$?Nsz49bR!&T=k|57tq^CB>Atu+&UNwlDcB<rwa7
zf=kIa5qC-3mw@9;VBwMAcJOnMe`X$PFDg)MoGIsZJrd{h8n3_F+3Q#33sN3=%U;%w
z@*AB3>$lq_vnB5lTojU^KvOtlGNSz9cJph&hD3Nc$S%n27L;P$1l!Q8vzwFXyX|Zb
z5IfS?)YzoQ*cZIH&zon0_0$6OQVb=rdN;wA|0u;!i6rvdg!5$znWN9nb&uGqnQH#N
zMy%r08K$4>-aJkDTi)!Wv?19R_WW$Owm@fakXw;D%iP`I)}?#i2Ozc^$|uB6DM7Da
z?~eM6_S9@?=g|wuUUX?@_IBIh(U%yKIRbsFTjwWRK9X|Z|BHR0D)NFSv_$6JK?CYN
z^*a9-z-i!4KDf@Eu%0&aJmU$dVc$Tqq)}B6Yjb9;%~+?TAW$s9FdVi#mF`ne9q9`A
zaDw|+e55qdk$D%;Evi2ck^uGR^84(E>$Dmv7Ts$K2$oCHC84ZQx87cGO3WD}6g@#l
z0P6_eN*;Z|D>h_vsNk(k2Gr#|89&O{=H-{2?;4^GLl}f0goxdXvB+{VOy=wM>pn3#
zfa?rpx7Q)MqOG5_n{0Z}-n=6SmSi{f084|Ei1yfs6;5q(Sjbs)5zL|xjADi}l{qBv
za*COAoIUn~sMDA0>=JQ^?jYzcsKesB?dAQ0{i(%B<Re>#<`E;s=UM;Qpym;vF!^2Z
zM5*xmPOvu*QM8`#hF+Y|L1c%ALsr?VzSE>hBClWoi4Q`R&i&o)SQ1s=tO;YDKwZ+9
zE1d+Jv@y5k9R12UyI`V8eHl{WOmode?nli5@~>#IFM)?xAt2bNQOer@Ow{@VJu*-t
z;@oqGMt&`yQc@^?7qb<wE`;qzHrRs;gI;|<HH=w?Mxp;tJ78%r^8^Ei=O8RurU25@
zZ`tTQ!8FiQ$&!qSj}`NseQkI!SDMl(<SDX>)O6!+vfIB8o+A0Ceql+K*x>jFd-{Oj
zNhDuNvLU!2|NZPu``aJE({lWawd%{7%{0$#wu`*5gXb!v!%x-aXlyWZci7Xe3w9L9
z=k-gP$Gpxm3648{fH$uNq-Hrf0SH1~33=dMFW5PwgRi8DKAu2pDJ6{*v-)Fu>E2+H
zSY2PEP65ghhWoA8Y<q*ONqNhVA9~tEVG=z~By|sQpZPqPO;77VMvydJ6$DTE%})F@
zI8sJ?sJuj&F)Mc4Lk<tV4=vw#hD?@!x_QjF^G^u=RB=aBFb4+$Ofe~6*|vTB9n6Yg
zhhkOObz+Nsvs9i;ax9N`?bR**q)YiE+8U*nf$E!6(E$vYpHg6wPjla$LLtcu6@&=t
zIV0&7$S}8DW7j__=$rfj;S61!;Bt~MrL40bd=~jEJ)J~iBq0(4vHXEfe}C33`Bq~z
zDLbRdBuW4o8E|LJpx%TT_e4B#d8qg=Br{sYHh{Mf!ENYpZgB-~5tmBpi3Jsgco7xE
zk1lZ6#bQG9j5pWlQekTB8t9&Jrgo`--c~gMSrM?K69#@u_32<c^vBR|-i~+{qEFE;
z?Jd77&=@T(-68$0E*x>x?eYITl<MHHydfbU=lK^2`B>!>W<lG%FmvR^;}0EG8tA4g
zsg;tB!u+$>jqJNkN3tnw2pP!y`sv8Gx9Xuve{B;AmBOxJVVfacqi#QmQhk*myL>mt
zOVW(LZREINdVD&H)@->4zXC<coKbI_uAwWMZk2E@h%!a4q3JO9{wpG{^kUOWq%o)!
zb)l{$P$z%ERGk*<7A_C|1)SO-p#?QcN_#2&-81i2HA;zXn`ly{kR~ClV0Vu?Zo$>T
zQ_Ij+>=b1;u9{>P`P@%d=nz_AaI89rK2Qn6$`to?$|kEy7$f<Lo}lc)t<KJJ8Y?0{
zLD_`?spWZZRL)8?&qX*U&(juD_*f!UDLG(cmOkMYC2Gk5=amgWE_EyF+$m=Go$lg8
zA_K*ld^BiyW~vlfCgTNnVRG=4Dy)*jJo3&<1Hw3cmD~Puu)aYZun{W^hJ(J|LD#tp
zHU&qf)2pV(*`MZ~z!|48rRXn~IY#8($qu-9_RQ<!PaQQt;K6c$k1laAf&CLQS-^8c
z?E`lPK|<&q?UImY&{vjfR`hosUl+0MWCcfgB@5A2<(bpX!zH$FtZ24K4q7d+jM?P)
zz8|UoJ(cY}x`9`woaSrsn$Rbs3kL)fQ|3!pqbX{Yzq{41>wx{LYkc2#>4_yY-r)Pa
z;?qN0e7PRGV`_6Zd*I?r&8@3^MOXF{U}q{iBfMu58RmQc4MlY%^ab%nO1rP`rjHf<
zkqbF6?KSIm7W%3?^)GeTDbDRZ%6G#cJyPD;Q#TrA6ev#S{4U?ArFt}5#7~-QI)F(k
zX)ake*!RWpI-uCU;$)T3ck4&`hHcg3fwC4wfjZ78FkepaZN64VCX-EKCb;}N1AW^b
z)ML3KNlTXhM2fEmfmFb5Uj8CA;%wr{Ol@9j7yKO_=q=2X#tlJU_%K;!=uG>Ht9Ujh
zrMy|mFPIb1fr|=kR-drBl!LJRL0tflO{U|HC+t~`k+benr%)-9gc^d0r$K>agPmCs
z^shi$o=6nl1ebB;c01yx;F#pHGVkDyr<>}H_NmyQYsjNnUZZ)uG8XyL%{Jt#psy^J
zqLk1_p(niglHGQ3WLa}q8z#>)1?GW_;ak=zH8+3@>!y6eN_<JL>B|xfREwhKvO3?Q
zY&{mtRm?qkzJJg24)KmL5WLl$1-=m}dTcT`4D(y^w7u!RLu&M(w=<u4<|N-=3-rJg
z>6&blT>tAizRgeQv1$ta^3Kg$Q+?yY^iVNin<O6P?Y?im(&$EZxi2BQ!lFZiz-JHM
zXyX#~oe))G?mOz_!^2u26g|&zzEtVVI9wn-N{dDEHbu&>A6E~{<(p532iA)>p;?})
z<oO4?ulR=EK`Bj?GEu-%{N9|k*!S<QVOn$}91qGR@iOmyz}Afuxg=SZ5~?4VF3zB9
zWX*5x`Hw3V3f7=B4hNcqwR^;z?DHLcPk&EstG!LSbAW;2biTgLakoYO^nB=n925v(
zCb}VE^-<Al=%GQYz_Z;@8F@W79_8M2fBy!m6Q#VKY_u-Hxb~jzjN9l4#p{5`GBprc
zwx6xs&k__MsguywlxbeM(CPb9L;_kcQnY~^&Zm%~jcgp|)IF>!F^uG^03D~WE`Geu
zxmHindLG<ke5riF;-q}@pE2(2PLGelYE+UR<eINXx(km{&YXvZk(o%*kS!s2zN35X
zx#JXl=2I3Bp9QtRP;W|4H5E&oOZr4TgIXdULj)h>15xH>sf9Tc9}eoa%0~!Lekdf8
zPQG`O{q#T4H>^=m`@iZ&#9Md#oUmEzMmOS>N|?D#J$|eoGM|*ye6a}&<0EdQbSwC?
zbd!^cs#@n;bqW1OM#wpAR=0Wh4N?4iCjV|b6QURM@3J$=$}bX@Ul{g3XH#OHRF@Dv
zN_qHl-Js$wYEbTccan#Uc)8s|Pw>wibhdl)0ewcCAvxoCRTSt1qA+H5r)wWRAk*~z
z0wuhq?h};<9Ix+b+(~i9+}Z6eoO{4=NuXN&gs!HLy!EO@?wcnaFxs_?1uH-E`-SfP
zx9I@&{^o9GH0WHrtmKY&-J@Ru+Muml(OVW9O{XR<(O&jP#CDW|7zuhrzB$P(x#*4}
z`&OUGcOW@2T3z2vml8HN$y_knwjCT9IIGgXu%lfg5eDHChaF`@e~eg#{46H{ND7?B
z<yg3<PPP%dbcA$K=>Rex*-VEl^UNFUD<!I}BW#n7r4k*B$W*d<f1dqdqjtzMBFzd|
zYF-h8eBSap`-L~iC5xaw@`fmKk|%$4ll{3_@qeLH(Rs^vXw<NphDWT+o0r=AMn#?X
znHGiV<yG7^ix@x4d{kxU9U3aiXM_n9Dzv07jWTBWSIz_1M4x)8rq9HJZ1`1tfY`0z
zBl&+iOTJJ|1S#YQ%w7jE1Qq~gQgi&bHhYc|PX#7IfU`~*L0QN>rI?Bwd(}|=RigF-
z_)}<LQ;Gb(+8+P3XkZHjUcugGBu;RAc~CgMU(fUS+rmO&eSwg}0h5OREG*W>TkO_^
zsJ88z$HEXndtRzT$)>y9DazBj5hVfHFM^tFoik1Lu5faNFil=5f`|A$xQ!z+?ZE%@
zcozb-6JY>Xi`aTZsC{{i!qrs9@NG>so=D_=ezt;7G)4=ForR0hy7d9)=n>%)V<H4N
zD5oADFhMv={O>P!+UA_-Ki2h=XN83iXa$uL5esfQ>^3KDe&~_8N<hm)UP;n&Aw_1I
zdnP%)=Y)W^6Z#%JV=$BE7GenEpuffrzwG+{|Hh5v0CU0&;O-M;TMTxvJkC9(CqemH
z()><mG9^r4)pnmd<mn)-iyemc$E6^~N#^QA_s!~v)%}&(RpzGyMoz@Dnb1-0&BZ|;
z7Dx&jboe~Rs0$b8x_zbu#|nr8mUskf*kU~Q!PRb`q~K^FX#t^yYP0@0$90bi4wSXC
zu{s09)#jKYcXLK?0D>r)pqzrO`=r4gmmM4-=<lkLnZ_8X@G&R4uguXgitz|J^#E+Z
z_@~9>Qzz%h$mpX{3cwm*;+H^-M$D2vsU*Plhfj3Ad`i^<1x+UO0qkMsCYgm_*f%3%
zj$Nf<6p$GF-A*aGhO+Ag!B4+6_UMe54}^j_g>Dk;7`p~wlb{VTvA5pqzPLwQi8Pzt
zr$EG;^c08=O;+$Puan9~hcU;-xX+BEBdL;JAO#<(w2(UeIKt`tCGzJQst;3G?!;bv
z=0J@~(x-Iu^<Vb)=QMo^;JYG!Cd_A$MzY+?!);sNsL9cEWzGTs^U912kw6U}Y%{*o
zjtsfB^d;7JI{Q>%@Xt)6gfrYNuV~{jk5O7Ly1LjWpr^MM+M|E-l5yy41YczFyc+4I
zXCIX%_LF(iy)SWmIVM~Rc)6GQF8Ef1b|49**_!#KzSxVxdjLdnk<j-7q}e})4d3{g
zg6LWR)OHsWG0wg3T;=PC5`Z_qV5LF{IrcVdQq;!6MkLFUxspM-<)d6T>yhA8FCk(V
zyoSz^RI{PMt^YhYQVMR(uggh*VDA*U-`}f4Ookl#G@FT$XxL!xWgp_s%~4%I3`@D6
z%@>G;_mLb}c4+y9oNV{p7M)6aBjH3YV)tV3*%OvXBlSV&n{*F;CW-89l<i^>XP`z|
zzuEm%g|d}Cw@-Ptf<)gFpA`|6Y8InN0%9ymZgQL+l?3FY<ckB)v>}n|leyz@yZ(29
zLgZR`l;+9GDrhGBcA)RHhm;Ex{K8)Diz*XK;FU-0T@PwSno2pYftlbTFOceRr?>C6
zV{cKhC-4;k2>>vN;ozna3>UrRj$0_@E(yp4+10ekESc!e^22;0s$w=`wki2=skSud
zr^Q<GA(bxcq7dSNz%aw%W+u4fP7I1FNpOp{GX7swmC%zs%>DlS$XcX1Fvt)$*%2Ao
z8Qs}q>8!=x7R%OBi~Nf*FLY^Q4>I1cTMkiv6jcHZrP%pOssysOzy8wM-k?<iJ|=tQ
z9H4=ciu$aXFw9;U61@tYW9r7$yhW5LC_SZ{tM9TCUXOZuT!=0x|5B=iEGHaBNSHn3
zPhC!|G}%XsP>~U$J$Hzm_l=H7!bVD8+rg*DDWFCQ`C)?sa!j`a0bY2^V$xRI3CF07
z5zeB&wLvymr_G8Fy{E!`?8eZMS17rmY%!!!8Q^<tt#aSJLk8q~ltP2zrI_NZS?0P)
z?i*Pe2g|Ds<`e`lZEI}U1eIXrS*85%ujwHgr9@6`VA)5u!52-5Tre*L+4NOF9>M9{
z@`QWm8X=DezfHFSKsbj=7!OW6CBFZ)&qmZu>$`21vIog;NUdrKX0fhtblShLgF<7<
zR;qQ)p>M67mN@Th{(uL0?JK)8dfy*NsN>B^G0s`$lJD&0kvhsms_21gt8h&c?|b;s
z?yz?wgaFTwT6&RyWw9j@$b3G*{q4<QGeZSxIkI*b0!I8Z)eYG<Bq0YB36L*2FU2%X
zbnp67FG@n9hy&FefJDB0O^vha+wht9D=^9K+tN2G-DX)B(B27lOmDEKOl39cuMsmY
z<J{{HuC?#W_zp5D&@Z+;=^?;I4T`Y-^!Qc72khV@aGzqM1Vh4-ezr7zZaiQQD(!qo
zFd&JF5*5^R9<(<NiFqF~4UbM*>{&K}qD|*x?l~7LA|;kB5IF{LI*NTjk#D|Y4;ty^
zLa^Y0E&?rzQsBriTW@#9)o7=idNh)Cp+?a{#hHJ7VkbWrIjJSA2XLxX+iRRE(S|U0
z#Sb5}y?+mJOs=1ul#Ri-KeZk3mtat07SU!L{gu1p)d5mEBEyo#K=~x18j)lkYO$?r
zwQM9mii_pF65ohVw`c5%{CgUiBeYHiTJ{rSiDQz(>`Sil_8`LGx}h7O`I#vU#}l8l
zQ8!0?jvOC$M0vo0$CT!}1#>)X(9bR4(E>7;bh{NKIIUNykR>-#&AaJrCH_xNhj;qN
zS@w}<locxMXLj=v)CwWSo>>u+E3gX+xL*Lsru`+=48P32{c2F~wL)Th>^i<@{u<}3
z#Zh-6^~w~ZYKj$RiwtsQ4R}XwMSMW<>ggh~jb^h$)wK=#BU&_RCS{cUIeT9N0aiw{
z0>*GlFORk7PSG(|xX|;oKLZIXT5F!SpL`azQPwwD23s2hri38t$tLb~d-A7|S56ES
zeoa0wCPMEZshMVOludm)>f<v*1Te@2bL{lmj0oKUOz(dx;nVk`%8pU;Z>d!E<&&D{
zE^#05^oYyo6_ksa=4;(8VbS8?Jh3v75KJ=f&vv$*5fy`kAmEp1J1=0nPO0co`~S$^
z@UvF*utyag(jLd9;S3N(<ZQQpd=n~a%Zxz+0>&XH!m*sQ(`GLWyZt%un`7<$5U!Ey
zo#e~xQGb%xyf~=zXs#PPV#nE9aV|i+ikY*BKQ1)8LPwk_qP1{3fS<&;XNtmUzf||9
zHBm2a>Zhe#s#YGhIq_NdXs;otSju+6ev2bExYJ4$p&;w0m4VgV80uT`yb|iB@)l)1
zY<SB(uF~Tx6YXhBlWZ1pyeFZ<8u8c2R@dg+r-H{S{2ugp!AEYd_p3yK?fTx?59@RH
z^>{=a`SMf=I+r-`{D{=VteN5l8}n$?6O{j%azUdY--<a$i1^9-3H}Fl&XH}3v4PH_
zp&Qgj+|$bo?Z&gUdne%XNUz9Y;SNB^eP_PyzA<Xxr~TxYMSX>zL?6OzTWD{%RDY7=
z=&*U343v`i?w4L_f4L;;!$LIPq<_%c_JB+gCYoDh6Q9>ik)izor?i@8n2YP}hB)oc
zrIw?N?fr2XTVQ6IOP+DQ8L7H*!aMM&$^nEtOBxZPo^*D*o`42na($a>xJnr@-HiLo
z-f_E9+_9TFsR9%U;Y(xSk99{5idpa1Shte5&b0Q*ToAL)3sp!FB^EV6X5MwaD{t3B
zm9_M930izzmT&p%x<3y|CVTH8^C??Y5SC?_7iT*&ay_wXp%J4~(?)hG;`e9%>U`QB
zJ@^X36Eti{okaNrM^Sc&z4ely@<}j{6j78E^Wfi3#Fa7>1kOaxuN&NKmic9zTU@8|
z!vs-GU?&HSaqjKqcYSyGl?Li<Kx)i?o^Z#1pp#X6RX~?X6px+-TcV&>RNvOcmJIo6
zCFZU!cgZ}h@}U(Z)qEVExKp#I!F{_+RZRs7M4eldIn5hw?#<tOe!-h!rs-Svry~aH
zvTF3$4sM2fJ?ai1k=ha6<-O-c4erRz-t_>yo0gE@(;sg>Y;iO89w4j(+9@R+!IKtj
za^DR<V5p~tsm3XrZgM9rP@G9>EA*&$>n<q9Og_u)SGymXss{=KK@i5q5p8aQw-Xj+
zwEz~mzruFKIN$18WL~L%dQF6$8!+Fsx|c82TShUyeMwEHY`OSJo%`Ci{RP*}Zud9A
z0P`%#AfVuxT0AL+FhMb4u<x=qm1-*lg9&Q2o5#X^AH7F_UxrppBdMq-wN6i8x;ehY
zK6Foz)FsfBsG#gyAZ$>88)!VqItzn;bD&5GfgX|Et>f&f4KggZC;In}*OP932>0EX
z86vI}XCzJgrlP`^okFTj=;d!};Ruv7;;!s7-KUZwrOAn9U+$+>0h5jqVsW1Dw^7@p
z4!KohZLu=!FsFe_YKnAnU4N#{Sg#Q`*F*)#qlQSIP@3tx!u{8dV6`ldiNmj@k*hs$
zrCaim9_NJ+zB9vk5a9Vk#@Hi2R>G)q-=wL%xlOPZY*wmiJKCP~WbiGNuw6KSlQ29O
z%rq}ewtH>~4wBW%N~OtwK_H8@qix7@!NIat!5D({clm>4Go{=<zbyC%9&-fP2qb|W
z04LbL&e}KB>0jVSN?i!9xU{%B8~bT+4Ew!AFla!3;Rf;-n1X(FHtYT1UsU3v*-MXa
zmSGa}Z2rB$fs)!<%E4TfN69d0g?8zB9m1HFNgt%_SDI=XUb3qm(p~U4UhQv${Ewr9
zJ%yorV6p9aIoSN-frNn_3yMW^qiVXQ7G8%<Afl2uKGod0%g*>bS^|BoSLu$yWW;!%
zy+7Gs_wn4bDUV9FOioWDYSCu9d_rXEJT1Toq}U{jS_)a|X6)B?$PvMkRI%tZDE7cL
zaXaTnyAST8c2uFJ*3RA)qCt{qzKe02<AdjAceh9ol*ZPd>89*c+rKl&a47QcD+1uK
zFvC^<u{X~Oj!K9spPfq*22~7l*B=|~Kp=nfx;D8eL08ib``tc<23#O%I^hwZC1jbg
zpV{B*gO`*nSJnv+&YnEmZCQSh4<bp3D(ymPA#`2%x$U#Btsz^8Ngx_*i%inD!=8S3
zP_Km%P&PO>Ael)f=2QFHn#kwb*^t*?RIepAN_(92%-43y*x>sp_PRxREJz*WV%_)l
zHCE&W=`qL?n5kdct^3~L)Mlgzm2Q)1;&<APZ#0uVu#1^U-K!vl3<zlhzbx{zuQ<F7
zv+bDSs~(7M1N~5pM`|)0eI#%A%%|YZW5k+e^L7|25>TL`1#`)Nj(ws)wtZ})U`akt
zXQEIxUq60$@55Y)9i3W<6oZDTU&iobu2%|vRVN$V<5NKxSchjWvNt%PIb+!WgPl(Z
zzCGnC_%U>^&a{{QM_bE?XJkGCHUm8*nTAvwzghTOYW^tX)8RpoKgIZN`dq8sxgGFW
z@BkjM;_ZpP3;xy$-3egU{53%xW?M)Vn9q`0fs+59uJZtos@mG{wu4j^5XmGtEl6=R
zy&#GyKp=&Z0D=XEWJrdTiD{6Cg(4^_){CN8;95`=^<p755CKI+L=;678;GbVNL4`p
zckMF+3Htlo=RV==Ic=Z4SNYbr*7C#C9;~wG*_W953K^JAq4qj5aPAxSbp!OzF*(A%
z&B)m1eI0~X87hKB`@&O?Sj%72Ck%k=-4OO^&TVB6dD?w!w`+;?bb#%B$-^3Q*M0<1
zFSH$NiP)yZiF=!4HnsY0xJHX;gzVN9AWbJpwYlAV_`Yy{rCVn#gcFf<ldNhMn!O%w
zbx%JM74eaA=Se1kltF#;H1*Q%=yl`Uc7I<-7+v0vWVRTjI^hgM`4#hTcJ!rbQldgr
zO2edY@(_uI&41D;^k@q$uRpO;s)>L=u`bwXZ{%3_e6Ks)Wu4fShp3KQ|3td-5W>@q
znGEEpZnFjP14wFsG8X4);s@&v9U@x?(aUGQbCx+sCv0jc#Xm{cRLf5&kR*QFg;Fqs
zpkhFxM;>Dk@)8mG*5Q-IAQTnoGQPrP%y4MkGG^z%0cV>Okc1&#5E*&o_T)YleXw<h
z&-%8ypQ{wo90H%8TvUWJpg3{C$RSZNcea(vzHkJo@>qlWJb@(&9E7QkgHX0v*Fti?
z3zP_0kZONlDfBMiqgf?(KGnt{#)B!k61#rN@}O{CxQ|-;i)C%o>Bjg_p<T!(2k}7w
zfg!xPS|dLApaRy=&raM=0Pmg`m{%BK7c(R>C_5sV<g?9=^R-dWQxG|za1F@3uBZRN
zA!F8sZIgf1@n21#)xL+6pj2xvGfsO$r|oeX9D*Q}6<wo$?dL|vR&Awd4FgatAl)+i
zhScgIc1-B#<srt&v)j&f!_9*c6fO$_Zw=P|pd2H1R`{}cm_ib9mQe3aRYpc(INwN%
z5-lq6gHRBUU1fCW5gr^QJ-Y(DxxhaOs(&A2*M}PZ;d$__VBg3HCiksZ84LdokLaa0
z0cjvFPcTD$d8zTryW!DHm~fR6rjau-3DS%<uj?`VO&Va}=8C_GG8!FWO?*!LP4UP_
z`LVa@*#@kwW~P`wt&>QWkk-Pne}Wm_D!2JB<;dgut4$Tw*1kG{$%PPjUWpnVFQKU`
zr3+t4r^QMI-&7SmYE1d7tprezi!J(R0AU{MpV5qeJ^>q3SE6fH;Zh7oW?QqwRrF`}
zJBeB>4M+7+1(5ha2m6DCS`-ee^VOCHg#V2M!Ddl~-Ryx^>0cva$+&IMffjY$!}jVo
zw3t0!AT)Wj+O)-rar1|CxK9U)M<xwaC$+V!iuF|>mlASmb<~>rgTA5IoT6&OwEK}%
zAARQ!YlGV*ClopqS6qq!A-4<FJ@?sdhJsG?SA&D4aP<Z20t*5P>wM7c8sGK-B4`Yz
zv((+%wK5p1cI`HYrV92XgZVTC$GC#EPU6-n)}~Q%*0D+S)|HdZiyQN!wakLCaXI!F
z$f`hqLL*B_mV$LzxyI41I?I#sJi-llH$*{M&1SZ7)r7Whyr4G;1~7}2Gg8#0ml?Y*
z&}RrT5A!t)n~{h>hWZ1>#yCxP$a8^yUBL}bG%xl_t@-!K9e#<@d`S%<#8V_bLEZ5`
zW7X9iw!DPAD^LaHe$q)Hm5|S?etX#{e!kt@HGn2V#N_Ak1*?G`hn(5vn1i1T)9Oe0
zs;Za`sguDdPWR{tv-b;nRQ5O-P#VD{s>Ak9J=1vaXq)@jw*E)CE723j#XX*}*vTSb
zF+&lsGk!JBI@)$kUtQJego0KmiiuAdSCqHDJ^dI(LRUr{7?-2&FST~CY1mhin5(sb
z9RB4&>(Y6&`|U5jk92L4kI9bc@U!{Ng0^SR(k(`qdls`EqyLC{Z@W3=O+AL(&0}qr
z5>g}P$tTO7XU*LgF7!a96gdvUsP1~+N<LR}3_;1#=~XBpC5XQ9>Z(fPuCLm^yhK;o
zrv|aBi^;GC0exw*@$1g^Z>m;;tx2S`NW3FS%u7^V1{iO(?a*q4#;mBrF0?2-w|hrg
zu?IBnlwLl8Kr^|G8S14{E6_m;jDj*@y{X=Ft$mLE6>V!NZRLi=Nous}R<+N|fxHmz
zKU+8~PPOlCf4-|*UQRsA7wf1RNVQZAxtzW5+$j5poCvqJR&}l6rkG-o1G=QCS1-0&
zxdo4jO*SVa)1VK2dy3Vxu3ZH6w`4{H8Yh8?Zoc>p#~PT+g{9*2ct5cWlBK{06I61H
zHUG5sD=J7w8bb^&P>+JuVfHw6^B`mNwGw7Oo~ARr!LO5YNz&nw<|J5FolepL2g>qK
zBE0X;Hyj8&&ZR$@eMV~zgz!V)F;s`bnNo>4LG8~qe_SebJ~1Vrc|)F{&X0QjajR%B
zVP7#k{8cW5DxI4t>5yw0$Eg2q7H%%^3B}1IwTfl&XgjmZB|7;;urlIdqB<$h4p#R0
zO!MM)?R{G{j0VJA>?%M8Q7sd1G9NpweTYV#E!-P99<Ls_#az~2pF}hVK(Pu@OB_d1
zV6v)Xmfd=4kE_X|$N`)v!YY?i9Rzu>y8rW`v--YMCCDRDpmJY@K@~AfIz~|)1D|w$
zzEY3k_8&J3Fk(jBY|eOCn+1%B^bN-xsg4C+uw<_J>H7AUUZAlB@$VW0LsDu^w*4dU
zf{r-h5(=;iUynU5A*XnC_5Yl?4}_mavp+&L7ld<j^4Iol|2sMSsDffhz+O&_Q}6w4
z-*?g}p)u`~==x$Z3U_L0jx*Q}U$#I~qA7K!D<X1kTK|~(ow^Dmn_8<Vo{8P7t?BO8
z^$9uwfRD_Emry9%oq%T3jb^K?cKhgJM_QM=jobymdLzK+iL{>ag_FX_*oDN8>y9OT
zS0`(6L3ltWj!;XL#uqt}nQMx-KB&+MVJx)}?xYK_#rL!>9jk3Y;ctX9Xe8{NpmzTe
zy{&z_r-E8v<V#FKj^j?ZH9lzHuIWwy9jOs4`3uASB>?LbykRHa@|<<ec3tpB%vn90
zUPp0hsV7ebIbqnGa)z;^eTUt5>sY{GzM+VkciUROjOozKA`eR73u>K|=$RE^JXhAv
zT&MMhYo-*iI<zEDW-rF8xg*X0Ufb@=R1GG905GXw>`?mwl(3N^At!vM5hIqCARoe!
zCM3+PPF-UTTBHlPGE~q|<O1io^2F7@eAz62Cp?zpD;GkFlz&Z7&N4Ik;qVBh!-!U*
zg=G-KtM|+1s{7mjOqU=mGIALzrF|Bu9T=P4&o^ghbtqn;tqusyRe|7SrLNp*KXO>x
zEiBL?){z+MkfA&MS05Z0s1+2aCQw>lM!(h@zqgynM8JH~t1{GGSt-wZ_GXyU@{P&D
zKbD9ODS2?LwSTD2s71j~5V0U&1xQgRYj$QBtPt!~vwTV6Oi`nhHTPIz$N(3B1y5nM
zz0%QYXdea%fW!!U2}VGjxwEbJjzJ$eB$;4j=zGC@OHlWIY~JN2?6B;G_Jv7E3tH4W
z|Eawb&F5#fi-Gnfqt%dV{FSaAVQUcN$-LRjbi3~f4kb%mW5?wUBH^UaV4F|PE56j>
zKQ3@W88fIK$IF-z9h5Yp8g>t@n?a){Z!&(`*=`F)2?kJs4`+n<4h|HPu<~YOPpY<l
zAP`~UP%U3-$rFl<MY2r)%J{H@W)X4Ca4S28_{;-8F<x$JCoU$NME50N%He^+kbc$j
zR-XCcOf4Km9Z^g}U<ITKkNMyCovRn=__&BO3JUNrGQ`G8{KDx}5gvj|AHeJtaRV1o
zy|co3xU-CDT@va-l$$t89gVh@@!?U5)D6|P7Fo7<8rSwUuHD%F^3$~~AOtA4hXF<e
zR@znLjK7|3|HiW}Esa6r7$}fgUN>G+(sA#q-Zc(o>v}OfY7TX1B%&^rY?4&;9y{AB
zm24z7HUy!n*CVSAU5!mSx4`<dto^u4^!|6N<MA<akFQhQa#-xm<E?24$J+{u)isp0
z3bqW8rxJg(Hn|1sU9RdxfcUCX$-^!8NvkBhg)?5VroDO`toLGlfiCep>g^`$vL@G#
zBY9D>+hCBq{El_Q-_3sRlZNyZwY%TCXHrMm(qTdsd||$IMlbVlKpI%<-R>_2tajOi
z)Dc$8Z1e6a-Q7BrID~&MP&T*e{I#{~d>wP3k1{Y3hn_oXJ=*;&;jTz#0}n{W8CK|H
z&zO6T==^#{a-f|_0&*N)eu9dA!Q8w|rysKH>05k$jZr`eL68sv%b2i<C1!O;oe&6L
zB)ynIPeKa8*y?<Z_3`-DUW#zBLbK|SV0wje$@f=VYNB4D*e#NHDPS=6a*}##vUy;3
zxVsUxJG3OByAeBO{&e%3N5g$3hPX^?*sxN&r1iC?(G(s^udBvXkn3TU+<2`Sb#M53
zxzMMMG1-zKWu>XB8_g%451*-P2I&V$Q8m|@r!H>$Ee)C=uEI~Dln%ri74@{yaGjLW
zk-}mjhJ@4=!(jR2dTYjgx~>@1pLA^Vh9KVwH6b~|V2-b!X<DN+QIl~2MkFF4V`#hw
z&oEbv)?>gygMCDL7@>SXs(Qv_=8tZ(uN{*pHXLprOiU16EId%8<<>PPYbzbOk`<(J
zp{6`xZU5NEcrK_ZPi!67SEA_B(xjR4;wznN_nj^~XOs>tmWdfoVIl6dWterSW1E86
zZFYk`;A09y$tAr3Or@v?>(3pyJbE|g7tJL6F4qF&AX&XLu**jSbeAZKtkw~vkmyAs
z8+hzcbJf?nB@N$sP$k4LfCy;MXt!VbnGt5&*H32yL-B!-NJBzRQ^u@aTVqy!t7*#2
zM!Ht)azU0<R*`wtU%HbG!5?BB^rLrCM71(tKYJP`+Hf^wvNqaM$RtQopC2_|3bvb@
z>=r|>4APXZydprUOxVPv>q+gj>Ho7j>}mDwjcvs;C<HC2X&@s>7xa&d$FwP^F}mN@
z?&`U%JL3J|wTB9Dfwm*ZD!be<KVCk~aI7!!c*Pb-Qj2b|3eMDlCx&#sP&N!3c0R+z
z3*NlL8rHepn-Z7GArvBZE#^0|pkB%x^LDuT1ZEW5kX~FMq)BSPU&co-g@+2UOk}<o
zVh46UVr+afJXGMT@s&*i(;+2*hNtU{=U;Do^bG9+P^3*Fkq7=VKRHR;L4rXHf%z$n
z7+`zUb)dCz*D}d45HTNikJM8>>+-!i)RIoF7F220(Y>9mOZRq2XwanZ<JH4)+K*Qc
zM=4~HS`2i6*k?U#DmSiuSNo2zk!4l7;l{KC*#leqm~pwScZ1jRZAS${Y3)McOgM?8
z`~IQcveNkyL~W~i+w!oxo9n~Y(vC3m^u`{u{S&UUD?YMo6(Zu;yw;`GCkF+yl`olr
z``iE_o0p#Tc$b&v#LF8O6qQ2PBgR&(h9>4yBFc*H*enHp0^QZomr6Z*qqX!rT|z|^
zy-V2=R%4<Here{fY4rs?Dur+@H8Z%D6c>$CPkYSX7fW$bi5oyZrFabszY(Y@HLB};
zq6x8TG)strDmc7xQCGdIgA$olbrd6`P7p3mV`I?hk6=f-f;yC^n@c8zV{I5iau|_j
z^)yd^K71H=QV!!ve%{aQek|B3{sQDR336~obin*LU&kkf@ke)z$(rw%q=J*J$)mIc
zXFx1L9U-Nj7pB;oW!4e5yDzX!F4=ICjVxh`K}i+<^)9p9;Er!ZYdP7!hNwTji7rO=
z>-&~{Y1<LkW87ngp{ekrq_zR1F7;QW`DmhcFA=%~;HVDj8olg844ad88TUm?Pfk%^
z?2hr=j@)xB>~?F+gv)jHB3yzN88uYzOHd<@MyLJI{+rf-BW^v45D`(zP5imU?Bw=>
z2le3%&_=pxbZoPx(HMm36%&jhz;VI_ll<flwwjyUwf|4NmI}G@8t`&;ND!tHg&#fV
z7Ho>|2sjX8q9QGl)q-|i>QdsL;ji>6WWTzuOXP}97d`_PM>6$zxN0SC2wlp~sYml8
zA85R=Bf?y4I5C^?(J8)`)b(gbuAB_jSJ&6kUn4lSbLGT1S=WdLDTfp<^}Zf)x?EMm
zZ=vt{Fy_QTBqKgSwVBjq%shRKLcdS=HIl`Og#T@Cr}cZV&1ogbS7GU>>8%X2M{ju#
z(jB+}*o43yq$8>8c6T20OI!)Y7`AYUuR+Le61l>!b0QP+&Yy?B4av2n%tvrIk^1cr
zyCSl?_nt@4YoMPpLLn7GAzj9%5BAJi-75&jkRB`xOe8*z?HuPNaG9d+YiG8;J@!t1
zHC!_O)s9CZcRb1#;KQOgD4eTQpYB%7r#<A!=|s_38X&ic)-^MtqmJ}qLGoQIC-Q+x
zfHD+?kB#=%UJwgCFkMQc2}3M6_rfRor!Y(Mg1$+mfoiVVu(tE^i;|xhKt)bgqPS&<
zm$(U?PdYbQrqp%xnLD~oN$!8Ar@G{?iGQMhnkXiJgZSJ;bcpY7=ydLfc-JIM_<1p;
z$K3a#F1X_Y>79*NPeVyD{bn>pfB5JH;je9^R|%|2Gr~Bvsnfab9@9%n2)-`c2|x{H
z_+sb$d*YrL2$Nk0E-?+T+axqfEA)#x$M#O%2~MEY#V<!SF77=^#0v%x<tV%*%)-<S
z#^*gQngkV>+SU?2P_y?K)6Tmn$b!qqmrRNE#w9YJhc+2a-^I$&Y>01?tnMYo8;3V!
zoVztP$VXr&*75Z*xssB-Y>qf}&Hs$Wr^E(%#vBMcQVoewKC_p`Me*vJ?MC1CI1`;#
zSEdoE>>j4Skb5KmWXO*t(VGeLO2<9*<O^o*p4hAT`nljdg?_%wj_;zHwlG;q!lf*(
z5C%>dS%9~ls4i~P<(<c4=W#tkWmwiFMt`8CT7-pEJ-)rf^KHA{^O*h&$-@N2k=nlM
zuNNX}8ZMZ}1L^{=Yye|0tD0Sh|F3@96OnzW*F0V~Lo_`=n*f*rYV`!jpCXK|j4aRL
zo?I4-L4Hxjl(Ohq?Dt>c+0y8p$C9Dw8%RWnA_T|@RX$JR2fgO8lLz|nWI0aR4!%;`
zR-Omq*(UOQWkOy$@=?T^gx*1(3=Bn25GpDFG9wd;8Myry^OeKAE(MGzxCk`EvzG(_
zQ}7hk?hhm0?ZjgxsvODpGjcJt>Im#4lOdoE?T&cr4;}%wub)Q%3<0Z+Ri}R$v9FEZ
zs2N~}l}2G5|Ci(Erj$(MqOt15!JZG^=_QYpK3<-PSs)dF$6+I^zR()eh+v?YJ+XQo
zGy#{7w@J^8e(*otOEB<IKLL4&6bK*;#2t)UzpF<HQw2eh#3uFV$5A~W=w1TbFQ0GA
z+mz}@rqMmWe*IvSy8ZkT+=wj9c`P~MjjL53M|OO*yIf;rV4_cco`6w{tGTg5blbbS
zm+)Eg`7Cu(EDnl1kWak&zA5Ul_Zfl@;A<ch#z}+_cv|)2kjNFgyFbHkv=Qbj!A@re
zr#|87Kl{RGz|Hx@2G2%4Z;H*3*`hvtEArE|UYQVB0^|L)bqdSOOGGzTjr-mF-H8hV
zGNqUKFwO!%_Gw-U@X`|aJ0ow)ML{O5pcHSjtd3w@Vl3wg$XWc2am^F4LH1yd50Fk0
zl~TQsrsLIFD~)%0#0J?M`C@D*#c{bfGXK(FHTveUv*LxEUdPTOSe@$Cou}p;F}ogM
zjhrBR1@=?l5B7{((`yp*FgSoDKypEny(8MZ`HKrDxuyz2!#&zH*8JmBjwbR`sey)&
zQ@^z_?>JjalI%(N=p1=#m+{fr7k!D1f`FsXtUA~;`r$9VUvk<Q+QU=Yx~`~>-{o8v
z{o!UWg*!OxM>6rHaasqNeSW_{MEO9Loo=_NCdL`d#`Tsi^tt?I5?7ow(0udx-XcRs
z!)6ol_4SX@U-jp_I3CS6S>)`C`B8rjxIpU^vM`VvFa2q(Z$vJ^jGE*tql*IVMS-Wi
z1kqWP?abIRCRLJKV^$hiO+h{$E?0HH%L)fYiWm8nq@I4$n7|;bvp+kcgl_}uC5?-4
z>%E^CclKk0h^G*!;GKB)4bdx};Y@07qk<Yl1ML_comiz0@u*TulCog8MsF$7hnNat
z9Gp1xk?2QP>O%wS+^K0=80}fle90?T8v0zNl2%4vxfFE<pjPMdo2TYPUv{DX8I`3&
zvl_KCdi`+yD^}VB5jM&@D7s&QcM^JEenwpuwT;BBHTvsnG?wZ(#^Ih9O~P~@5vXnu
z<$>y8V&DGCSk;;@o&cMGgA;kB*P_j5w_Z3&%o0{bwO$4v<e1NW!{ulI$5)qcbW&&2
z+InFVFE9dQ!dnL;g&ij^babqJ#`nFKBEtqiFd*(6k8r~<^1p9(N$a+i<5`vds%p@8
zSQz!RvJ;CUS;c*6{l4C4!oH;zRj?#DzOE5m^Xkv-Uv4$Zc|L5U8YCfsm{{VcrkNEb
zM+w0fG4XV_2pGA3YGlbT&{o@SHJ4}b3%!Zm66~V3FiIAWvKB4%km7~xn#flKct|v`
z#+K~2_8pCEf|ZpQ1jU$yc%)fOvO4<@dw!z1ipS3PS5Qz`P9bu^s!~HXS*K)2{mI&L
zv1=p@w4RxNS`(}YNg*qctQ73b_~aA=nsK*I_7w{vB~=)hOW5V)G#QAF+!(vMGO`Kx
zyHErmY<^Os)J?D3uO*pFSqzkBs(|Ck01KRIf9l<N=9L$ATY?>3&{)*y=b@0lqOX<x
zu${al^2Cu;o^a};_GvFf3MX)cq}WV2P^!5j&^JM8JAQ0EdkOC@+2kcYf!L+LC!4ux
zj`P-S@h1$(0zGiMb4p{pk8M20S3*ezDo^t^YV2g|;IENI94=@?Zx(+``avuvhIN;<
zIy<U}^^@bP3f5G~dt&WE)t_yh(<e$!7}&tUi5z977TsZW&Co{+8ow<ExI?|5TxMC2
zSWYN-9T#t4`nv_M`?DZ$dQdY+X2{~a_DxHir+m>;ioY<>D11zbfTL;9_}FBUmv>Qy
z_55j(OA%;8_tpn}hLoq#9^D|}lu<e;3E7{F0ylei?gnQP<Egw6%N%4Eq#9)eG2osX
zJdJ$FbP^fSylO`$>&3q3H-U}h2kV11f$@QAmN`{oq*p=CSN1niJs`-7TU1mkz;dDi
z(E0U#t8@;lBUOz73_&Fo^Bj$&k=FrOB^mhKcXqT#zZ;pCox(~CWnkszC#ns1+QrvI
zNNotf9El{O$OzP89wqHEKT3|sWbX|n;T`UQl!{DMzjd)PzUsD>c^*?rhId5+_@Fj#
znk+l`S@a1L93N|7@VXN$Pbc|Dgsuo%8qDvn=h+WG9XVa>vuYpdQ2q*)>!nh4s_J{X
zeN~BP0t*gqn%Lq9;|a#04-6^#kX|7fN;$J=n`X$?Vk)YSViA@F>k;F;ZL(Uw(HfN#
z)g())6r+>`cIsn56mp!8*O*O2aq<Eb7YdYf28p=hX5IUSJ+aK}12eQ>I~cLxaq6;@
zorm{(dh`8rDbgD#!S^DigF;G=S#kGz4)F$VQq<s6?N2&I$iLmKO#XfV16`?}r`Ur#
z>H!=(tVG2n?KYhv79v`7hwNDCHgeyC&S?>m3t2?G36PT}+z5I4yGc&sXipRSS*%RL
z56GYd_03RcMq8(n*D09fC%*?lchMLl^EX2dk*J3v;?RInW8jZQZ#E6Eh`+iKrwmK%
zy2q^9Ydp(XcuLg`w~9wci{uz7B^yO_NFK!0m9{6}l*3>NTEsGd390T`YEQmg4}>HQ
z>Md2xf87oynt9nQAQq2+QA3CG0rov%d)q`zVd@5!`ikXyH9cW?cNkOTv4e;C_m0_y
zXOki8h2Rt)m}r5K60e@0<)kLEPf-n3RW-bgc;N>BY?$ZF?4dXCs`C1pi3bp|NwV}e
zPjl8MM`;o3E7tXT31S#5=zG7jT3r?;)vZQuqXiZX9MQ}MO21Q_^ZbLl>{astzPCHj
zhnuaY@&#gy)zI#Dd*fQx06PxOo4|rVYJ5KL{nnd5dKRFvvIUgE-8QoQLan5Dd%Svk
zqP;oG<8F9N8gI=JwmpK8R<?2K#@6<o%k*FdePBvUu@D%cPoSF8205!o`orGw!``5$
z0f7wOVab{HtfhKrQ~)%V&5!Pp0t!d|vWDL8DQ5`_t|$FK(P#d0+<8(ggwrCf!Tyu2
zUvG;nN6gUCOeC3r_I%T<Kg^+bN9JXs!71}4UoSHQVbP(?e)~FI875m;UPQ;KU?6!p
z$tvMGyWM2Z@dYd|<SyWH)>^i2f)15Z7?B71>RzkF>q;efs07eRATiJreQf)IMUhx-
zFb@cif!ax!kd?6YMeEZSJpCAerF*jzcS&?6N)(8W><KIfY-uuP)I)2{?H@$s4NPKl
zYmRPKI#W*hC-2P>U9q91n-;ZoxF$+i?d)t#84)clo`3{`#!zZ?(NG?amr}b|8fV-n
z7M>~$mW%r?^EvQ+d&O@aIhb*zvW66)2@Iq#u$PUoPY(!c?Bi2|aIt+k-tWxF!5Q(2
zkLKc3$aY+gRo`3B)p`a)AI=~JiHu>|ukk>h0_&F<5z|1WM^dpnPzQN4o(jRLXoDRX
z8r_dISGb>Er7#O<esGnOIy-uhmMr*;_1~6=Sn2ee^WeB{d0B~g^5EDSG9Q|oDrJ+O
z+|sQHkxea@E9~t%?Iy8(s4o|wWM-vUOTa<A*^A%W8#g&aP~Mb2P-@x%Gp(z&1fefZ
zEiHt_r@_*nB>KfGPVs%p?(l2W5>^t4A6OHK@m_I+`X$?g3iaWfx<)CAXXFI@#np`s
z+)Mu`9`~$6U%PQ!lt|J1-~<Uk!j{2en{P!v?CB#$A;uh4!9=>Ur4!V-2kdjlM|MEa
zb1!IHy1+UdUFP>QYw_=TB!g836o$)R2C+!81?$#Zx2(`(>4f<q4p$omwZx4W<@r4y
zS<k-ej<VzQ?ny`hq1f_)RsKrkW|khYyIaiqXk#nSnMDsiF)wv_O|q~yS#NbWMNJL#
z)l?A=Wbfq)Dw3dLTiL-09vLFlPU>U{NiWx%Lh(@bR0lhAqNhK9rDL0HBdcBVZh4q_
zonjV5M9aXS+HGYG<=Z%(3MpfBM9l84`gk@S6Us#PQG1XTb6w|{*Ur%cIqa2*0An)1
zcZ}^6bEHf35~33WAr&{uwgxNX7I$B3$DJS5K`@1C+F;V~CP{t$m^JLvNHKFpiiyH*
z0yL!~+EdQk{i3_@3d4zKmLpu)i#$zUPkT@=j~vI7Eh2EF3li4=QE2cJC+Eo?c7@}~
z8=B0S=xBO?kKiaRcbATg(4UW3pO8*u2g$;J{cEf9(a5fF2MN130(SwKq<}sw{=(d>
z+$Vst4(beRJ5e2owLdx2vyzXLJCQosSlfafG3RTqx5mC3*_sC%>BB7q^ucl=q?vlZ
zIW5gvj%5OpNu(Rb7f?z<oWYtJ^^+af5V;(ERWR{@tQwIHaj9auzt!J)sGRMaj8Caq
z?UWg+5jKgpifV%TU8Pp$j6bbSZ$-#1CyS|qP)1Usbc9Jh#U3`)vjoEkj#&-i{McA8
zqE($4v{RpnYT`YRUSvZOmXJ*7IQ7JXc2>V0El&`0>)D{a^qHvU#}m9FgyO60)=Q!$
z@FmH3Xz<l~8wjsUy{mhN8CQL5Trc(yipeL1?4c+<x!BtKi$@!RzM6`<GC~`vD7{2A
zyNiA8%E(oSPyB~QsgsXsmZs*ev%ZLqIxfzs4-^vT822EUEC;5F@G4uMnDK3Mv^)cW
z3syD;{1m5TB>_0r6(QUt1bcX>RW&DKIcPAJNI80)yg}w0$12ePp#S*}$GazTCDSGJ
zXZ$z6w>AjINir&xOOn;$xmL$Lk;C}58UAWNE$WoYdcZU4?1)rEh9qs%sHTy~lhnJ|
zeVu)DdL-ddrdVq0Nj)I8)OGf*D<ffRa|e-B1Plx&Z|;8Utmr5qu;=^hwAsWn5mQf-
z>e{jIpja^#i%JjhI)p=D&9P0_TC@IQ1HiFBg~LY^z^gdj4z|+29tZ-#)WEf7O`g8Z
z8n)jfi@q>ei>7xajL?OC-e4{H7Rf`R50Sq~^7t@G;}Ou-t&ibSu^ISq;!equl&mw!
z${jX^dTq3dAfOPe-i7y;0Od&)b+9%))U5-bT$-Zkdr+7Ll;?Bn=9jrgqU)aVdZ-)s
z8OTsgP`kdc*1V#}b0{2AQbX56`Kp{7s~+5J-S?UvgDpyTc=im2Vyt@iE34h&NHHtK
zp*bJVjyTl-OcHTya0Kud-|u04RKQP?c^n`9k&#|*6!@zFL#UGppp>L~CRz8l)_&u_
z1M*1P)S>eg_dVl0JFuUL1m1xt6cQ6M6t8+m+HdUjY(=M|P3kFmBT4s&qao2oZ?phy
zL?jA=-JYy&yw$q=i4(RTT^m(#(9T~R<&%#}ZLT7`H6eHP3s|q67bPnOLt7?1q;(SM
zjiC-!+K1{Ri@0kcR7Zliwcl3n71f_4o9e7#QAM&LaNhhyya^rxY*Cf<lJ%DpB}Pgv
znXCSix?-6Htl3zqG9fuXFk3Ijj*5kxC|?-;OE7ltAp39^PZJJoexR|GuABy*UJ1Ab
z&4BUJk%;$oa5`OR%|Kk_`5MItmb9hCInJs<(KFau><w_;+>u_Qso?QFovI6>n?Tv}
zeT^8X=xjU%^lE$S;$fB?7lTO3YDmRB2zRmSgR`wuhglt%o<Wp}3Dh>?BV!o<w!)fr
zhSnOx>B3I-4T=MKFykpJ{S#&;8B9j%IU%(%UZ%fbJ$8MRhC=-Hyd8FGoB;r{V29QD
zV5A%$3DupDURtuj+#lF&t?e9j4f}uy60tQkV4s<AUH44P?(|&*9)M5L)GA`P*)%0W
z+^}>V67>0qs*--sW9;nY>^hVEjx;|~UPcj^M$uq=l(+Nj=ch&X<{YIm7F%2Ad&KWZ
zCm?`QUu1l;!w};`lHO(62%d5Of2^L*dc-&?s6-QmOe0-u?d;Q?yI*sf%VBUq(i5|)
z?8wD<loIADm$oyc(h0FGZ>^o7Onsc-CPoAJnemCe<aa}kfd-KPDyAj<8ED=1j@`6Q
z4-^LL(L(ZThNOMU)objZJ~hO`B343QQY4}TN)XYpmYsLCi(CZDMF}RS8QfUSbOOo$
z05ouw5<~v>39fh?pCSJL8A>&fRIZmU`jf`$6$jAS@dk_MioN!^HIYRKmyvGJ4;iKY
zUSoZ*Ac~qV9F*ivNQpdfN?NLTYR{f*Z|IEUg}t<`9#E4_Zm{e}H#wU-MTvJc;E*gB
zI=~2dW%Mq)_7jgB&hXdQ2C>+5uf)5*w-dg053{DR1M6sqEiB5SZ|pgn^*}C4S|1ih
z>*agwzczYKd}mZ&Qs~7Num*Dc)n(9aaP1_eF}07qaC}Sm8hzlp*CLqE2Y%u@JZP$B
z9<BSx`pSsh%rgu^u~DE8O`%Pw*-hqi-$e^J2?B=Xpx1J}WPVDqF4gB(%XuF^_xQAe
z7>1`+ERvDiP@u@x>I3B@S&P}sK1xyNWIC4)!enXDp)HOVN;~$YD2+!iod)y@O-54V
z4dBPGZg!v%{PQeu1NZw1fRYD`wpaqsOM^!4ry5h~4;BJ2yKb7%`ZErYEasm;bW3Lm
z0L!SA`Nk>l>R;0Tg;=FFL4Lj2So?#~9QBNYiIxyTJ+(@$^#zzdihZQ0wQpG+4<PZy
z;x7-DNIoijDJo+1wWDU@SFv1z!nBorjaH*4`T+ar@<<V`g&<Shmc@@^#<LpxhS_Nm
zHbElptn6wjNr$CRqmwk%`fB^Xc4Tw+3X~ExyJo%p#PH}A#|aWr`Q#(p8H%6DwE~E5
zvdi(QFfpXO*ZC98)n9d6z*j6Ja=?3V?74gF2Z!Qsr-%}!PEDa7$PjD+wL{CT>#cEp
zQHffsNsC%}=6IefPJKPudUl0Jz{Ek+eg?tCIfu)HRLIS-2$jnfGcXUtImdlQE^fHP
znv|$7mMghp^u-2gLzmEFVfT|LJ@OjxIly~ZY2G+A<H0QZ<Bm}akg+5EC3t<<6C$Wb
z+W#BkS-`v(2!%S&2k8Srh)|=A{S13StR4foB%=#+mp0<@YW+03wvRq84A@D*I_Uw$
z1714SUek}`)aLckz*($d9PZAe?U%-Yg@BWZT6MvKWI)OXCfiS3hm%LK4^oh2ufq94
z_qTO=oe`OrA1C#`D*g0|@~aHUrC4+^$q{)Yv5wRwN9?{Ex^0GznJ(&&9xO#r4e1NT
zELSWwXD1o2p~v}eK-87{&AdVAW_$tJt%73Y4@V51bc=oP;RqSZCdY@8&KNhP4DoeJ
zX4*9`M&#wEk+@6PTY~fj`N->UM%ue$Bl0q7UCBe~+?mYuMCJX|PHP<@+hVxC9yp5)
zF=41N;2phF#(?LRf-$O1xyF=L`p^iyJ<hq**zlU(GwBtT5-*uM#dv!gctf0omI?A<
zvQltTZT8!*--u&|S$Cj(;x=?KQ4i%mFJ|1c(aV@>rTmMm1qso;`CF<@QN@ZnV(RF8
zYvauxKi}2msl%$)RMRXj)McJMe|k4@F@<YQk%2ORVBBsTlNX%*AK*_AHbqeJ)I+L_
z;tl#KVKT4)@T9CdqjH<ES)1HAHTu&7XUsR#Hbsm0gJ%$^C)7**MK<Ho*UU%PL~q7~
z0)h>Q^9=!6(nvbJW<K&tbl!0JoVhFQ^;5e+`BNjS$7>j-STi3fDJi*?s4coCMA~+g
zwkY!bHLgZMK^O>>jR&o-&xy(#48R0<Q(1ydAh|rFhd|p~Y=1U1BCmfkkS>wP05+Wq
zhz!h4R!7I!>&%F}Jn_!T-DJ3e{w(8R!|ls!B4h`#hie)e&|OKX5{gx`lI)1TBl9vK
zdjx6)5Tn$_P=x2Gv3Ad~_%%Gifdkbj?F0khi`E<G-5mK(tX>!X8S<6=T~rSl)G;X$
z5(r1BZ20_2d%L$s7rq?p0LV@%y7Orcce6+Iz~PV&%29v$PAwv}EB@b}9)aSuLm&m=
zD42;F-t&`r=iA*xb`6mxK*&vau<FSx%vF6OMAG27*Rma@hcMQJ2&juMv*LOH1SYao
z!4hz)p&9|oAdD#B#t$YxWL~$@MGDC(li8;245!2C!En0kPm?%<T$-BWToW{jdRSSO
ze-H;H<_<ZCkAS@i^GIad>*K9Q{zU4fDXF}Oa1)s*W32EhzqRxveI6wVC20e49#c(>
zZR{2VEK&?aNnCl{385vbGor1Cj#?m6&8(t|)yp#x6*)B8N_*Us#|I}7O$v4vjK+(a
zY0o+{B5xE*8Tz&eg`D&>mHL~_jBRF))5X<e+fuHA7yF~DncLmi3?4v|gRfp3298>l
zX59DDTUjwf$Yy0HKmlQ$zca^r^L#@LitL~Om~^ryLc<qPF@5c?#}c;?9a~FIB>OA%
zR^y!Q?*8&ks5VCXY627J$acN)&L<qj`mL_1<G{T><C1rb=5}YCSF$soud*|rZh;HL
zd&Tp4vcev^q{VTuQ)z-$WuLLQ#qk8MG^6WLYwuaq;&`H0_?w-o>^;x5IL_~px|6Hz
zoD;8;%G&K!Whb`0uNypUtg_#D`X7czk^y5oY*-2`dB&a2>qjG(BbWwKAeaaehLi;8
z3}zzx9%ug&ES}?*Qi_3_=^CJN7*DjA*bF|I!Qy}JpxyaKE|sVxATS<yIV~|>fd5yg
z#5}q<N(LwuQau6aP5ecg>`J`!zUmm~4Lt~D6D}Ma$HYV#p!38nuVS^P3EqT=Y0y1!
zu_+8@<GKjv?O*kyoq#Q&E5q25SYrShSeNKxdGC{^JBL%5TGS!{79Ntsvatl>2icGQ
zsE^YNzM_is_xJ>__!9An_Fcc9Z~_39nmovU|ECj=BQV~`wnzSa!f|Mqs$`J;w|j%*
zH>QZU+BVRhuoL@$XGW`giR1!?vcI&6D>lk^585f2z!)&)s;MpDVt3L}Q8hgva6mIa
z5eIYfBCF>{eJovKW5%EgSgF`zf}o_alg7Scjd(<l4*-z>IH+yJM-CV{_-?iSa*gZ4
zr%6%|K5H#_-Mu)#y<qxEo%OOc|2cgu%MXR6s1%|AxrAcs(jGcdrOmfGtz%r`;p0P3
z3ZMfd{<PI`Hv<$<2a6`6iU&`$?Nh7YY<(0mZiP@NNnzb+oqwyo1;i_Dccv!dXJ+1S
zt=q)m6nJU8mcAvqu!(BV^VWv`dH@9&3aIhuBP@MPtS8`Cw&ssZBp@yq$R|*MN|i(&
zJdPxF$8%Oi6c()*N=C-sdY;d~@RELQ5E%$ks;o8UFaJfN<K$P@VQ9-RIZ+^JRG-1V
zFZtU%{UJR*JP7ZVT1xzYixG&#h!KW?=q6Ot*!|`;_ji*Wn?)*y3v|R2!cA45y<q>=
z3s8p072!kqa_+3Ais_#Iw$<u;jC5crI(LCcA=cv6gT3r+Pq|<Xu^5zWiT;pzM}+$W
zzmX!yFlaYgS6{0A^TB{Uu73_l0*k7*oit3NK%<Uesbk1OkcT}?{lbSk*jMb<xY<Cg
zs8F;;x>MM1SzCUJT!4T|2kyZq6hkRzy!}bBrwQJ7IyL-2#rWRnpBIK$U-UAY*eIEB
zX8aWp4Fw^mg)i=_Gt0g_&~piX1})zj0rA*rDeAPV?9suf!RdtE>&A-)_7bG4B1DT8
z!cM}fDOhCHr}Jc5>Xg;O0W1rSHwIN2VDo?)GR4bYwx;;_&NR}I(yw|J6QxM*vtL?M
z7w825&`mFO4aFJh6`T%CLMw4u-Af1SU!+%q$VpBH)#(;kZxrk6rAvqb;yysuDy!ct
zj^Tk+`zJ`rjWoO#b=QBa;{WKwBZK~OokT5>5J+Kh>f(DX-wS#Sd3pTFD-6N+HNKff
zky<tLF6+wq`e&ee#qx9oQm95ytyT|MkKM^ovKli9uvr{nfrr{XYVG@o!^FsdHP~2E
z6Y=C%tv$0ee9jkS3h)U4u>kn!C_QsIHnT>+%Y1~H)|VOc)}!-qE&(X(CWsmR>1D?5
zm-R6*lCV9G^f&Hbp%2hVg(Jpj#0E*PaN)CzA70fXg#GFfGHPUoQ7Hzuu&e;)1bn2p
zic)<?8VkiX7k^w67xS1;AO4WqTWMVIJ|nCp@o&8ib^1bwZ!y+wH-1Co1APRH;h6aB
zC1Q{xtfm{I#IYFza_d4FiR!mTd+!8KZx$CbhwNef^GVk?S#v(oWC7-J5)4UNp@UgJ
zZk;?2=N5{}0VyZsCTxE`)xKyPTLrmPULJ~&B&1>ceDsXn%5(>)zT_tyLY^>o6Yjkr
zUGv_ykyvsb*hGcDIJB?%oWLBI*ss*+!Q6nqwoyn(NXk?-^&OifBrlO4m`H&c0186b
zKyr80+BejAE@wOB?4&q|R0?|NY;(lD(Rulh$VgG<%S+k6%;5=Y>R@|sT|_v=9>bUv
zyrH?2s_$+u|E!z1as{APSYCxVd+lb~Mo+vet|GaE4FrZ#)#F+A^s6I8zlyX4wvaSM
zQM`w8oo^26*i8Clz6M@v0<;|5qOnfGE&6zFpg7#PDuHlLyqaI^q%~j&ihCn%bO>ii
zVvu@vu(|M4ZBb_WDD5Y%G(j3%=A(YAZm+f}hf?2OIA3D!5+wL2NeDdUSfiXl_?$5$
zY5?&@m=6ypSq#<A<E_<c?q#tVkPxhIe7IWcjUAr6oCM4oq7G9kBJv8-_<QYZ_Ldv;
zlz;?_V_7Kp?``&TUZw=0t4mzFt_4HXO`L6i9TSl^0F#u!l1x`N6Mkj6{mRJ^d85Vs
zOB<>GX1ZCD588|RMl?a+0yJ)DFh;QCOJvi<gL0&(1-He#(c}CkSW{taxsW_lqEE0>
zk)W^UISU_hWSE8CP*aLG%MgJ8x*uQYeEg}C2`W7l6jRo})=m75EhN1)x%$Gh%>TTH
z_7UPCtVZl_Ndi(go^B>B)Q5Qk-Kd%0%fRCvv&&LFAP9!2s{SYdBzIyQibZuk-+bm(
zJ)E(VS7(*$(8FtKW~;s3G70hI`|5o~xV5m#B=L^#mAwQyDyOjA$ymU=lUAgX<M8Do
zbI42GGEo9FbLH8gvq+Qiewk)tc0?w|5~W;`Wnz-Y!UKs_XALk%j);&GxY7nm6>M<^
z??{_s{d+VZi=a5cyl9U5u;2*NJcJF?d}umyhy)lZ!ih}C^%Bg9RsU;cpH$`Pie$;~
zA+_)+!38A<a9(@snv0`_u8>Qe8S42-$Rt+9w6&J^jUJo{G7kdp229A5L!LhIm1R8Q
zkr6lhluE4hHiS{aT^4V#2F>#f2B{EJfJYOk2)2+a{nR@9e9z#FL>O%4G@eCs;d_Bo
zCELB%Y2lpBV_}*hif^kornm$vTIsQF)wC(bJOKltObgI82n!5O?=WMYzy)!z9jHkI
z<ND9&lhzsci_Pd7c|i;o@LHsdkk(>Vb-D4#&emO!#>i(hECD9LMJZHvO&$tXsF5UF
ziTVQhj8~n%v@R1%Gm&&lq;^rMkzUElsW!5}(oj0mvGw}TtzRC{zX1boB&x#ozFcoz
z^|(F;t(*dT*eQGlofx-ov$b$;WFJ1_u^tv$S;wV<QS~`se>aZk0rM(_gY*DUSE9Of
zzLop}VxGV_h9uY04bnF+u-<wToSCTLfm%1l%pwrxQdNKF#lg^u@LQ2$0^}0&#KxJ_
z*J+=teTN~E3Qmfpfv8$^mh;U#eKa>vft1BNh@&ZAf@=8P_FTgNSWg4Vy6C;x&MlYx
z!?OZX4<p+WZ50sNU%ef2Qam)OG<EWw&gb}9?Ac8+P$T6#X}4~$tYaf$_Wv)kHz%P)
z%Kennmr9u+*)(>1*?MBRCoeBe4d+AY{K--2%*^ry_BXAyK*wo<Bv6h-$I_s2RirOM
zIE4jeEIK}|#@+^EN3OWZPP(cY&n*q|Ux??%w@PQCMGYlVzf0{H@9bLVS%_l5<UB;Q
z0L6OAYcU;`L@pG-i>pGG$F|0LjZ-~VIyZHLD<|X->ZS^eiRJXs6z7~oj)quu)R{~=
zcDG}f<&%zkE#~*9A~!SrgBm4sSwNInb?`a!$eH;5$BznyV*0b@oVFZA$G}uz+sZ0q
ztBo-aE{PUwEFBG8D{bP40bno!oCLlH9wYL^waGh3lAU?~2s3tmv|KwUScC}@5Rq~0
z>LQo=3#CLzS>$4f6Ifbr{xKmUZ)mELDp*{;AfKDfyxe}UM?~IW(X+(*rTlq5=;hbd
z_9|b5W~ce<OZb-JOQ)z)9<b`Z1~8H^yKfJYjrvQpQTf@-x4N~!jS~qWCaMSe+cVqZ
zM>YeL$>Bi$9!<AT?hw_){h?8k3NCm_qSTg0=ly0sa~sh`gac75_8MsmHBcbn7?B$U
zB6ao|&KECPOMrDLL<l7aI+4VP61XMv^5Z%7+WIK8t0>GZ#&fqBQtOay-cacmRI<$m
zWBKEV8J#UvYq0D@B26eXW^6PhA}|zSs8+nAa&dji5o~zYz*kx8&1*l55WfM_TXwAr
z&ZNX*@ow?iuh#%xW04YQ@RiA;A|*3kZNAs`RWgA54pa#lsV*RFJuC#6sB`Qwe$P^@
z8mfhf29v^G5(5Px^2!(PM4`Uk-IlUwMfqt(g`Y1}*{xTYNgca2Uspm!+PcIX)y@zY
zHN%ILDnoaxf@S7YTQ#(LEV4wy3aH6#-Z0<U7JV0|QRazs64D!9iX3X5Ek|-mU#|X%
znFsh&*EB^w6@B&+VBvyBJQ^OJTo8Vgc)Q)E2MjGN(dtIwXVRn{l@G?lqhDBRckjv|
z(F$nWd^%E9Xq=?>zGZLA*C!1PHVR=sIo2y_D%0!j$!&=G;b<Z1wf`jsT)M{|Rtn9J
z%_`V9vr5k=1JUzhTYLQ>JpjYBm|`P(09<B&JKOt*juBIakmRd+^jMm~)}f_Fzf-vb
zY!`YNh+!v}!rh0y{MbqE03i?ZiR#^J5jE^!Uv-q5fSz*)YW28b$Ygc?-`1O*IfdYZ
zzg9Evp~egC_~l5u_mapape2{C3kZvZ)YOMKyesU>(es^;&L(EpLdYi@)G!MPd7fwp
zy$@>2@V<&kPG#!S;ta&Y?a?vAh9j&|c8J^>ZO;<(5V;#T;tY)Vx1r=?L(oTrs*09K
zi;p$1kRq;+$$lSYK#F69e>>hQKzY2nEivZtIj%<FCgA{Jif-K6Zl=>Oi7}ybq04He
zVlgT1aUgN=>Vu4!1&`~&4C+r*Z{w3wQb9(7Lt?f)M9M=7$_wGlw<W)taQw~IXUSN;
z5{@6Q&1Q}x%%&%5SeKs<3`h{${dMv*>&IS^OGUuf)7nfQj%69rDd=hQmY8l!d3FqI
z&<qf4sY673o7!h@nkAWRAPVndAc4(L50!M6IMw|Pv$0pV7MEirj%^XToIEWBHVh<?
zHZIBdMLuD6Y0`bGH_e6J^>vSN^Le*MxdWD@SDLH7_m26C!5su`5l3+c>y151o<y2d
z0nQCFhPUgh)~P65R|@)nzRql)qz4B0DsUHzzUO69co`ujt$5e0=9zgi5f^0ONt91S
z1ylv~`*L${4?Q@j_<KYakdSOFxT|Z-Ula8u(FWqB10qT#E-$2LwP?M0CJ)Ia)2oYu
zfG2WACPE(a;@8Zx+;{wcCPIF6d?HByl?fuJQ?jK`TWQ|no;;{>0)U_lB_|OENl=fi
zFjLO&)`WJ3%Z@V;#5AWWJUI!!*xA*l4CD~Rtq>Q00Tl0hTkSK(L#@}$EpmOOE(i_Y
zFxfvp*ZFelg~EmyQyOR#P8O60$+v&@Y5Sa2MiUx%xa1UyX{<h<VxRLAi9C`s%m*Qt
z2aQ2|i2T>ZR`(K9rXhn4^zQc#N+=G@F3BskH>a*P$ES4@k~6>uX0WiIbw4%2B=j>8
zc2+t<)Fn^jZYQZvwpiaU*8}Ky*fBzUqD?~5ha8i1Og4~<Nm29zcJ>3-$)9Trb0~O1
zxrV@~@+aSs9rWM^>)g3|w2)*sVLCPc0b&OZYQ=;4!lNL&3RVKHA}O>>pR#V>NdgUX
zDkw3ItP~9Up^fv|d8UL~G2OLrN)mj3$K`g##X8n{43fZy{A{vaG=ZaF&`{xMutK>q
z+@B;hZkm1BXw9e|>4S>mhm5CG<5Z{91)6DGKx<L>dnBGkUhQnSCAuFwedIPOi+C%1
zzUqnm_M0irW0Ru=DWi~IT@4mLTu#2~uP<0XICvIpLAMDE@FBBz#qHLPTcAn0@g9MK
zQxcPT`5)@6L&d~_KxKnPIAWNWy1F^>8%(WN%*^Mte?5|AC^0vj6cp&3YOA`fmOhkT
zC&Uk$N+gO(HJCX5-d4%;9@lZ_1qhdkywUFZ=n2;9i#bg+LN$#pP}@}V^nt{(#Nkw8
zCaikZjC-7);Oquru4(y|tTz8D>qLT8V1-b5b)X8gaqdJb>Ti9oLfY&2(4)l7B>Nqs
z>Pnw=@Inn#_QwpN{SHtihnq_5v;5kmz+@oGEiNHtI1|+MciF#<*NA5b8=N4OfIt)y
zg~IIll?9@07l93B$X!H~3~KqCW5iw@NTS1&HgKNAO-N?Mm82FhwUn1yS7byAfp?Uz
zj(Xif@?syU9`-5STwX6=yL4&AX%HwRy|;baSq#7z3qps7DkIb#u^|T8i3cLI11Go-
zW$T1Su6kZ%_s!<_FwihTD1s!d3CM-U=}N|=Se9V#EAVu|d&n1e&?{xZz4Vu$KM~O~
z8qlVyn=iH-ERO_gfP`4Kh#+a*2vamkwYxTE;Krzhtj7YXQ)5@*PD*d+3(kq@@ImwZ
z12&NBSY)BNN1<A<Kgc5Sj2mxdVTPtpV%;nC*lf?15vCl-_Hm^7A*8}&A(|e2IP#aV
zW)?4u1BqmB@EId2sp>@LU@bP<?>~5wzvT+?U>_4n_oNN#HjnYQnZ*~tw-4Z;g3>GK
zAGh@8XS_CSJh9mNuJ%OKafJI62TI8OQfkj*k<U-zOsc2`s{Ncu?x;Gv%k%gb`f@b=
zt)ZK@is=<uF`XlLYJSWrelsmK^63@kU{oLqi?=Akl#>{Il;6tvBSMa+GXa86OQDkw
zi>=G|L<~+(RsG2bm2!guBdWOV*4WJ)7U6!J=j<)6^J1<*?vrY<?<@PxoAf>o*+@cR
zCf$K`^3)`2V;6QlrsmH2ovb&>Utmuy?qj|6t9}OAt#nq!E+wP@bn#=owfJk$2GXtw
z1VPgvyffTb>vARX{Uzghv$nZL`;{7*&GJoPcd5KvjG`SHXvl-SC;-J<nZ`bWhS}Hh
znQMUJsbQ+r>N4Z*b^6q7sht63RJFdw=(EX?yu4g^A3-!5rIfuXIFOHwHLpDzRhxq2
z;if`rH_7kYBjQ8!)$l!LUjv|rIYvb5%1v=}JESjLC+nI-Juo}~Fzc&FnW8dS$i~m6
zljfdM=dY9Nu!@HLV$L+Wi4jTTNeqj`REb)?R_zR0K-3b)CRkm*O-P~Gt_IHOpD#F>
zA7krDbOZfB4OEnl!Ndl#9TL%(V?3pkL;$f&n3jmmTkdkc9M5s|hLkoI+zE66I~uNJ
zYsdGHJ0wgaEH}NkaNP{l%pa#XogU>G#CNN%4neDkP6MC5OQ|#dH_k+pAOgs;!Z0W8
zCv&E=zc-d69%UUxTeb6^giQ&sROGbp*Wv^srg7?z>CTK;PB<RSO)yYj;b1Oh2!izz
z(t}$UYoLlxQZW}m8sr8o(O$%_i}uP;A<6j!vydl<ARPqmUg0c`<L+4M)!RW!u(jki
zR}FTSjnWTQ0MD{kr;EvpP+`S=5p?EA@gQr1)$j@dqM7GQ8l1zgaT5DNB6A>xP*UYx
zX8mUOoAQqVhzG|9fJrrFlKG80_L9fnox`c&!`ylkNw27@6q)iw_4qU=W32{`aslJY
zD@c$508dtLb#YeLy6<)zYD$%*67oX0QcjTS#jY&@g;zd(j|ZGXEA+?Bqe==dL57yB
zmMwngp_Lqmw6G0LrQHGvyz>d~nCr|S@cu8C!yF1-uGvH5%_N5(nlCp%tQoN$>GdOT
z-|G?Qf^XdPI$G@Lb%%&D&_h#FoGYH;KElmMnx&-in%EC(oXelnvwK2pov#&+t!qb&
zU7QRZh<ZdLoG*vzi5a;Ky)PAJ0Tq*V)L{8oXW`}g9#pE=yM?Aj@>rig=FEIo-)6{U
zgew|XX6vTi!upow-Ylz-t?y<P%ANyc7TAuQW|_r7k2&LO^yOP@U-U|7`|@%FAP57*
zFztl??|s>MY%?byv{31|aETg(d$BTR@SA#jG+%2xP-sbs7G_ByDlt^$8{O}5#vRa)
zpI%*lpq}UFb>ozOpZ!Ihdss-aHSQ31j#m%;qWKZ*>E@Y~7zW`?$`ifYV-P04k=h|O
z)eXhSGS+Ck>UXYlHLHrfAwn0wm(&_W4ZCK3E9bd~c|pmasSJl{Afs~Ne4jIrcR%qY
z%+k<FX!mR^KEd7-kOC=cRd45pC-mA$*RP|uC%%f1z`jj%*4@h0P`8vvJwQ?MSOah1
zz#UG~XlBwCX0_YOCn8ak`Q-S?|8agA2BkxIQ~Ddm>%*HfoZaayL{pN1`4tvT0+nE8
zrXgRFRrGC6JF-r(!T}^o#C4FwHXaBu`gvdHk9;0BO>M$Tz=S|M%Dzn->O8WK2Sxd8
z=Nv*h!hjXdHW^+&pQVLdLD@EGsfDd1vOGbJ8S1>;hjW^JtVCWfPQ5?RImh+qsevu~
zRxhFiPD)YtTpqLRDK1B%gqHFY*OW_=w<<xhGiNxX`7q2etW2mAyp-%iKCYeWWWS-m
zi+f%(?Z83~X$SdgIvu`5Z!cgG14HDVQyrs3zjJtbrl!a$I4{Qe{v`coIrZBR()iIy
zvOe#>(n)LN_bom_q6&WkM0!9!7-E~nU*~hGP)rDw7I-#*QwY!Ip$aJ2QCEeT!lFo4
z<9@Xl&(yCn5*EK+{V;ZL#}=LLd_9)|t$nxSqa}df5RXZB9u-zKI`c%ui0c}D^_IIH
zzISNXw-ACnRY-DklY%P0s7rKqBA|bQ@(y?2AHaK42B)TsND&AVkD$f+1M$wJLLQ;n
zr^e)ExrX*78%I{hc$jpe>*H95vFel(=kjg(b);6BR=@EKB&ogq9LRSfQwz4qO-MVD
znVkEKGj*%}{lC)7lf(3KR>uGY94gh_gRG8cE^-dut=G*!X-|wQWOr&})r(0^?9KY3
zg$K}JB*|daXd_@+xzqL$M*g{GFhfIY<{uJ*&m58vJO$Q9<+d6WHJlScvS9RI;>5ni
zH3jkxR@bAgQ5mcgWckvEoJGA@Z7sO*OgyW8#SPj};ff=riHQ*E<$7$fyZSh(tMq#T
z4-|7JtpcgPEkGMLYg+a%FHNqj`_dS%1qbL0<SHAIwdIm)Pj%)!&m$f$lSzzE%wgG`
z`)9aR{8UoR2w{r#EHRr)vz)656Umz4wR}eQ0elHrHCX1ehB?>u*VFiq)rmt9UY!_-
z^rry$U`fN)*qZKqBTKp^<fuPb7;<FSR5X;h(m^sJ2@t*XquqL%K5Mnujj5<5w9LYj
zVt)NXFI%=5E}8788WGSKYGRe(Y#r|8tPkqv|JRk35MEhK3h6>(7Z5Ix$$D|Bvmi~2
zh&*34v|DlZNTQTim{;yxau3%8fS0BakSSA>#WZ;G5vTuT{Wz=PI`IUU9u&qhoVqH0
zEwW%crAZBKft1#j<432)ikv;?EN9P6`WbVzU>2(o;q^$KQ!qv!ZZ?7O$0jfZo*wT>
z$zid|oP+j#NG@I@Ya-QSv|%Pm7Q_o~ndRIqNfttq5`;H2K?I0IExc9a3=xyG#o|m!
z5)1I5o18O6m>;_nA22n1C-z5kb3BeB1_|otiB14>{Dd*=MizL;RA<YsDzDJ5PtZVQ
zUrtwN7Q0b!SVA%gV|t-U7VMp8I%Gj>W4XCOi4<`S%DiD<1%8^y)=UV1YpYQsQ9zLL
zg`SWl>owF0Eh{&U%B>shh92a$LE;bAjfboz-bW%rF{Z-Ky#VNg&jS!uOa5<_5Y{na
zX4w<c7?6Zb%KlY*K})K9HAQtiAuv6J{TX)YY>&j&^2o%fl)4?5<~Tr)n)P2tZ)Vl%
zOg3Se<3rzJ7A+!S3Wu!`4mWfcP*%wlJgJ-g)dr#$+=fOu()tXz0fdnKweW6x#ZiXv
zK6pW*QPgLVAkSZY>_;Ao${PX)6=BFeX;6g&64k9Y+WopfAIH;W3rOK&FaM)XiFbk|
z^s9_?aQQ*@51rwkOBma2(v+FOL%``jb!vnkL>OaY65f~YNL=uwy=GiDq3pxsFI73%
z(H$1r_ub4P0WEcUhVG;S6=y|*y`dBc_IODl$%9N*9sjWBCYsCfI`bRCu3KE3xHf|;
zoku!oYU^=R6Vc|HnoZm^T^1^JPp~?qlt`Q^y~X<IeX9xIwgAXO;xNMU#t)cNXxC5C
z15*FHrj#fXC_gx_P~#Skwr{PlRxxh{WaNG;!8u43@hK9$e)MlEV~SgiLkb=-#h_sl
zB>MSl>x_#T;61511lkH3frX6Tdf@}>k+F;jrr`&RBk(ATwN}}+<@)dtohf{j(hbFp
z-&XK7<z8rk>cf_=O#dRUuC{WgJ`p88_7wY<K$IYZ1cWfmcr%uU#BSdmXSE&d0<97w
zL%WhtF7?$5f4BecXzGd*RL3sG;L-U7g%rri?Jplv5`VHueV6oDur);1&<E_ML!J{8
zyqQxs!TX;%0hBzXEBUAPqcJ_2FpSvh0m%%cYZQHl)q^K>zj1pH!GK8_BrgyFPhgqs
zUDoQkd+iGNjf`alD*z_xuqSwYymZak^^1K{AI6%k63W0OgjPw5<FKRSLaA9Tk4r4T
zEmS4<$ZgOiifiQdtOaz!K709PF64g<o=ynC)6FkL4L_7r=t6uzi3>L?Uqo@W@awaR
zGs6L6z(j;L>T+&tXWSAUP(EP{G3$<<AX4!KQAayxI?)MQ7B}N#uoRDn>X5_2-6KIl
zq7^Ozvgl@~PO8i>7AOe~AUc5^?{w}JoTG*CPNvXIiu&L>r?#~oI$p4b^vrO<8khDF
zz76^d2J}a_Ii;fVumZ6THG7#y0PbPNpPub>&R`7l0MBAuIeSl(A=Qy{oJ(^4;ZP9;
zO$eJy%%6Z4RNDwymg0DTm!o;ceyTMO9-r7gHQxGd;`qdgxss-`Zgbv`*N-Fh93_>P
zP!sBzItVGM>on)LKL0*Qwb^EamBry=9opc!dAc(%1rG_jboGH6%r~;z4G?gA9nI!H
zaVGIFj?W|}P*ItyT9et+c#}7|pYtDQHJ|^MXHlu>_*o;tHgH|#opD?VBV91lsf*LE
z)$FV|-Z=SKUP8-zX{-AGy&z4%k6rMDd!;lRYJM-KK3oFpgmo2%Q4k)|(W!Dke>Y8u
zpcfqX%~tVuk>_ZISt$uoP*PvN#9BBoN*|LjgfuE6eoZ_a99I1=(|Y<qWLLgsP94%5
zL{nPmbh*eHcu0ry3#%Iel52FKka({|yY@8N=fvtUT8}~mnncV@>Ki7jS0>rlbc7T_
zHOTNtDn%sGq8q2%_w~^uWKR{9N(DI?f$DU{OnV#|4}|YC;p@Zr&{va;^AVHnc^B%D
zArP}d0~oOC;cM+1)ARsb(eVA{3}>=^EoX55p+54+i}XFvKD%$S?{`ngm%IBa!*@Zz
z|2@f`*^2}RR2^-*gz8!WMG?(1yV_narU!XBE>VefPc$J}b@$mbi}XNN5ZhkldosP=
z)yfI>;1Yd&NH8#w-?GYn9A`(4)hzgY;vK{>_%W>n5ke1~WN+*Vub&{9ut+6iiHe)}
zH<!elqfAXQ#N>g0C(IEkr$x46y7_v#9%;r`Ojc_%%$e{NF${#(QlX6?)qSJc<7<-7
zQpL~<8P3?$sC+D1$$?=6NW7LC1B`-M0-7!z;Pe=(qm8go$;uO2A|wSoBxvhk!_)YX
zgM$zh;D15Rrgs4%vv#|ENw?@}q&QJ&uZF6;L=p%A#i_U7v#&fOdK#!UT{O_CC2|gx
z&areh?6dP;iIO3@GX;>b0mO}*GxHledSG;3I>B|G4f;;*2q2kaTi8v5r0{x4oseDg
zkZZThx37%Gh=Kt`6;Ga2em;5#6Zp*kG_f{^ny@;xOJEF1{VObpS99LC^9M#qu3ka8
zPZvST9l^@?3C~#P_W8st6dNQd%`1rleJ->2{Hpc;AnGgC($HAaw28OEEmcpS<otA*
zDG69ZYH@DsP=K*XUg40w6|m3yFST4wG@!7wT?0xuCWR1}iVP{dm+Ko(PNS4vLGI6v
zuwy@pY)YkA4I6^GLc~OfsiE&Ww{k9BfLe`LBWp0O%7cxim;-UCbkK`e^B!?##26CK
z$s}CDH;1$;g$vHR!HPOa=mw_*YXmwOVZkH`zI^zCb?90cpvlz2hB3>$rcvXVDgm!q
zou*N<g*no(9@bzbrR#Mq9|CrzL8+XAam41i^?U2>OkLrIFba31$2Bic>gC=b(H=fn
z^-fCWiF+=A-j8=#FVyP`LpdGb7d|YgDlDP2Se0_fy5SNcK^VW(4Vu6gfYgmyNz8DE
z6+O(YqQiTYYl5xcTSFTY@Ax3~@o1yPle}`sdf^(b4JuGmB|&QzHO`ef+h^UhU!M&Z
zRJTy^mj77eg{)dq*T9M)-I=oooNQluxt<E<j&_+4f+*@4tJ=M4^_-&L1RiR=PWq6u
zF)sDKabNf9eO6{oiywvNAv6HRmeov^BFuj{WlT_38#|#F)k+wkK96n`lf2dX?kZCb
zQMV6@wb*%T%ob~Iu_;9Y@{zNW^##uz^Y_Lk>&uso<tKV^xG1g{hjG{+DUXvW_6tk{
z@$fQcI-QS%d`u~0Qh|*tks6#+V23Mux(ct%S6x-P4XU81c+R@Q)#3n_`Sg7kdJY!@
z(~5Q;0b4o&a!x)5ISV!}ZoDAoDRL1_N5%RtJ5Wy~hRP}iW_OQq&N=t;Nca*H4-ko=
zw39fnWA@ok%+ZI#A(AAq?n7X!-cwb;bM%olsIfNPidpn5woeP74FMYh+L#N0<4aNU
zOa+(;H%PhJx%N+<UWf|>ibG}ofWSg!{*a9)L<!J3;V1$2JwganK1F-mRzu9wpJU5N
zspV?E8l*#f2M{7o>Db!o_PG|d%?!<CL3F~Luoieau1#8a1beNyXCIp&^A+~qfk{9v
zt3Zmu`uHA+5T>18Uo#2+`0(H(%|86GVjw(1s2GSWLY=lny%dQP-8L<zevS4B!><W{
zEJ1}{v&FB0M~?sc_(kv^Lx=x??eXqF&@LV<p`*GA`6xsyaHw`oao$^_Co986%;Pa_
z(~e<ZEi5hpI*u7*EW#nwj+3HZAlZlmS)kn$omGD@A&AOtld1ejpAaF`wT^LKYtn~v
z09g4@1O(7;`)sG@NBZ9X1gOA(<BtJULTZyRhoHl(VfOO*`Oc<s?qdgqOii~jvB>}I
z?=%58=^y|rPXH=Nt^%{R?ng}?PDm!GhA~|}zQGWv02E2gPfoy){OTfh<1xgCP;W{Y
z@i~4}a|^?W)3M)jl>Toa9O~FnFtGT4J=*-YIaFTZ-2{?hmk{>;)4qC=ezRt)H$go1
z@amOU(1ASd67Y5u1fTAF16;*xjD%Xu#RLMxhU(kZSu8=P6A<j=FoLZosztN};S-9M
zv^a^c8yi09AM1;SbZmWb(@-rLAV9RwMN1v?Fi#NLr~)No&dD>sHPd<hUjhOU?n42A
z<{A9)p$z_(uY&z_yxeHZcVy<n(X*BVY}S7p&`4r<;KWtm%mo2qY8l-@_l2W7sPun&
zbF9ka-rT>9qnM6)dwJVj95xMqBSBKIb!46oURNwRUXqo@@=sFnQ=P>EPqqk#a;I=G
zw8aY~Aoa<jnc=MNt53<-8y$v`c$&u#H}ixN_}l<yGn|o>W#uNv-DqYa>_(GU5{@FK
zNNgcZt-aG3eKtajNQG37#5@vBk<#cS|E+f(qSXcE<M=(+2RQRiFTcn5QQyAcK#h{^
z7uG%mCXZ<!<TAmJ%I&a$#DnJH2(zSr0B4Hw50Y2ulfJ+ZaW3j>Px%Q3RGMI&Bt8jg
zf%*mg?2C8kqxc9VSSchk$Et7p*mZyCqf&0gJKpD;fEzBEckVc(r?>yq<LP9=>eHlo
z=&n?I@n0N<{N=0hl6F}sO)03kifMXgvi*(RUKlAD-*SJUvT&zYj_51VdBwewlrlK?
zGP|Q3rs##R=0I92q{UUNT6-x>X+1CmexN=<^Dw7eV&C5ZA{UAh8x9wdSH@9@RiE~C
z2PD~o%-C>QM4<xlrm<>YPoa|K^@rC3X*dKL7v{4oxz*H0k{EQF262{Rl{pe2e@dDC
z-$dB?LK-aB*n{M~-Z0tT2w;p388oq!k4f2Yq0n7;qn%lC0@INu7Y%kPOh@L4s{3S-
z6LFJ{S$~bU*X8NMBY6dv+fP5_1T|x#eL)!ms9;U=7E@Hx#4j0QzmP%kr<O<@a_YeY
zF?)XKA;dFc4mxipSt{tpA9RX_k)^^Ukr^p*Ibxch{O*(#>w`L^q;(d*PE)@haI*9C
z09-Q40%P=38twkW&dTxn=zw5NrLTTFDnAx4?$Dpk#iR7`{(-X4Eh#g7>p|zVu^yq+
z!X>B1wGe8h+t{k#oqiL&QnPzZoey#kVmTG(JMJW_RRUgOi(MK=DEN2<hUPL0@tPEp
zSxpGqLKYS#B)&<CDs!BIJ%-fL8|4ptO%8=*<Wpo-yofBj^kj0m86y9N4Z;qQAy(<<
zS@xpCo(s6vkYf0X0J7@VpFFFFbdypZg;JcRk}`H=xgo!|daZG-N#KOW2%{2W1m1%T
z@g*U4Zf+advT6eTP}CFIcIu9(KUj7Jb?8~8{$626zYE<LT#KsZ!itvac~V|C>s;9V
z#Or)ik-^GM6O>n7ywaZhr71+#kvpkFLXZP@SoTX`we@g&ojga6IhusyFY>|J$$$Q3
z83t5C9<qG9)V+h?!knKG^Fk6O-vwUgtB{svfG<iSiLlmjkm03m=_=!SP%&Yj3YQ-y
zH!G)0z47u6Jv4yq23W#4X$+D0rH)=>bp4(ovH5U6g}baXOeAS@*DUkb9^IrKBpD`k
zlFp+WFTE6D4VkPDL*JHo8m~%5e5{(?$$I5+Jy75;uP4xfT?P*i3-7LTtmGNpnpb8^
zGzd|+mD!}uIE**S$Oa^R9+(nDVC>CK^vRB{p9f$qEY^6DR@0xb+TBHN9L9bv-5Ue|
z;_@Ayuoix#Q=kV^7KLA8neKhUI&!yXC2~BcTAXdr4|Uxn>!xLq{h5)Rx>5{w%62hv
zS6&uV_(!zV&LR!~z)c6=M0NKi){;de?uv*Z&sC0sjeMJJ-TM-s44VkS<oa(2N*30_
zz1GEVMzmPa%!s?7yJF1d`85Mw7ZAOnjrCmT=!ML=QV(|RZeJNCk5mw>r5lkvl*ss|
zelh24pu#Tdv;m|E8<SQEN$S+I?crZhPLv>wzfPk@0Bt}-Pwlp5GyxG&l>&H(??~Xp
zEyRg4jn>-!gZ2Jek90oB2;zp*)ekv}q`k7*%Kag-E4Yn-d6NB4)0#A8ze79DC~3o(
zDZsKW??f4&M0L)s=N?!cEsV<1lu9a=Jj_#v8?kE*sbeb{O1Rv*7O`Y;K-uhO&;2e!
zLM&sb_<&DCPPBpfKkTs8xsZa7WV7(NZX!Bm4dd0RpIG2Z@*dfmsm`;?w@*!_Xs#4Z
zCh=JYB{8y;dI)+bft~--8tZm<h-ys2N7B`Q;Upl>FJEJw^@V3E@@b5(iU><%DV@b&
zO0ur0axir>QE8Hz>c;bUOs2$){`kZCJW87i&8!HKXkmAuWv_}@uQd88n{Tgp`5#>@
z;_=4%JYx5KhD;$yfaE=nXKU6&C;;z`Q}1@M%_NON9?y6p-%xF<voB~9IxcTXd1dBb
zy;E<W(!RydrC3j*x~Ja$v#nkhgDOHb+R2t8*|(J)x7f1`Jd29&_y^z_U=m5H&1&n;
z9??=s0Ps_=Uoy4fKT|T}Wo!LLa?4rvfE)fv>|wWaJ*nUeaw1md;^;{;7!YAfM_{2n
zWZnHcLbG`pVq)vi18x5^u&8m*NHwF(e+|FqF)r)a{nB=Z9EX3!i%A6v_E_0@-BlY7
zH`jf9@O%Dto-NUw^#c8|fmXqRkV23T)?0Jlj?62RH1&%iXmul0hPwcN9PXO?^^rVm
zyp6TC&uC$Z!5aci(A6bRP+IZiKK)xgN|1x&<Vu3X$IV)fhs;{NgQ?0u*9ax7jvqh3
zaXaQc#Ns$6hvc2yv~Zh53ZTrerw88RbV!R@#%92pk$O~=l1Qd-Hj&0V@3C6l9epo5
zX;6((P!}Kqt%hdgkgIEa^Gu{ZUhcidS2LcTQ)*C7u6lis@ylX5TTq)<nA;>Wvv?#W
z91%6)RQswR+MW!4gf^&-N}|1;s$A?`neAy2P(!aD3#eg&<gurvISEW%vb$+?WM^+M
z1zH3_mb?Q{JYHkbemm+XeYl{mI7m541}HBdr?x9+=u$m^%m`EgzJbnz`Vu6$x4pCa
z22)^6SdGDYD!EH&oa##euxHwTzs07Z>xFMTD@YF!PGa?*6=T0ALo8BCh#?~Ims2Dr
z*R_ZJ`4)XnUXc1ia*jqu2a{F_d`oeFM6tpzz0e-D0wIGVq62g+D=NJZUPbbKJm22E
zm%{3l+oslJ4f%V>L@BJ!1a9nL4=vZ3@L2&}6NQGiWC!T}Y$G;V9ms?yOMZyVIvc7S
zyM{5o-Afy-#`~CI?F<kH*F`!d$cdTw$v*q>EOR#?aV9EIU~izVuf}#+A3*#fFepJF
zB`@flje$L<%Z{;b1KjX$lf%E|0)*z!h(ggKr#e<8E$p&y5T#}`lv`I{4Khms0KA92
z*1Gj{`T^)8SKgf>VYIttRN0KzpJET_LjI!sfRr9&73&lun)1-bxl!_p!zuF-e#2D3
z61Ti&jlRu&dv*XSLpPnEUPy|Hc-NY9pB~E7)t4p(N|_gucIf`L-YWPH^FoetU3Hl*
zW=W0=cGV!C{q^5Q6Z*aow3#P>i^^=N1+(lQf1?vf^W)@As?O7G^F4DJ7gADKWB<bF
zOV~|>bIWNfRY!HGawGjWij=>4*f_fsO~Aa?_^1g9H$Pq(TdXI)(CL~m`5*|%5=^1R
zQHr`H+9qHzgO?Z%zN!l!Q@ER4$xhDVUx*M1myZw;$~n#p0<4N7?2_pmcZFf2Bv-`7
z!~Y<yt-{WcBJ0N!o#~4v3i9fnHo2J+xC&PZqVte?=_-3)B}b_i13BVYO<rcE(Xwl=
zrX>*{b!W-W%7)@^D;vJW6_L_KPrYLu+@Y&Q=le<;%J()Ra|s5ij3z7NbX|fR>LkLx
zmK8$C9KQgo;IuDMs41$y6vh(KN?N<}UT!a4rw<SHp-WvWT#wu|+CK8WTbzhB&SE3k
z4%1I6ZjHTMX9D#X%cFb}HWMR!;|E{01{Sc_umC6zKEC>hw7sWSpVS%cbl5uOKJ9*t
z0A&`@j<=Ge&O72nUh#i)op*c`)!N686%rB>={1>|vq2Cd+4R^jjRaB%BoL~&DI_6f
zagz`d8y0LAuz`q*Vngf&QMh)+j_oRT(FlkrRv<Ri_xqgLrFifA$Gsn!lbM}4<*C2t
z_rP>;IIhgN*dbgQuEv2VBofArLWU+@$nb&PVBJibt@qww7NmqW1#Kp=B1DBFEA?%+
z#t56>B**~;1t$jlTN9n-nN(pRk$u!zfb^HEbgOwM4R#yY6!!-Lh*JT68|wlz2%j}2
zQ$I$FD#oXie<9^%=%Jy2QbUUL^_Q5DNqie=hpLw58W=CAgcIqPuI^9M8P}LUfDoa}
z^>zS0Fa>}=zFqb|_#JVQuw6|rraJaOnU4l?>aS(i2kFifb`$kGWJ-`C>eoF(KM3n3
z*QV47$*2OvSsL4GB!>vw9Au3sDv3UNm0s_xzXRi03U`gZfY(BRCQq$%0ypBFBPBue
zH+29-2RN^qyXjBMxtxUQhP_wAR>F`PdV;=PYPe{hCeDe_SxMI*6>)-o!{RzgdI;rZ
z@(6BHC8j)%UNO=<hSI4@ssVYBaCcI@MHIueyZL+Jw3Ah+%5x^)NqYgY`#Fmu5(v65
z$zL9;UvD)cUt+N+DmNE~Fl}mYtg{NMNvBClj6;|*KtKP)P#^CIpl2QwkD>sDM1STi
zXY4AsD%@9Z2&G~DvIsI4e&-}hRk%pPI(#>NHpm?m(MuoSjT3sXf*ntb<9+AzdR-Ac
zN2pJhXe>Forb-mOl*J9X$Z4E2L~KpwS(FxAK!Td>zdF7_{0L$d$P<SRTi*a2-WZ~<
zY2(v?-!N?=mjsYbAnmK}deOP&n<-o5LA3jl%gE<d*P6?MXL1!LBfOQTn@+jjjNl(}
zK=}^oh{L*dKVJ8L7!nddT>d6kZ{arbuxHmfDIeo#rMT4o_|T$Qq{p;cNyGAw4W|*l
z1Z9pQxN)H|CNoAl8T~PVaRmtGw8EUrk*1vl3z#%hKhrm6BpxS4iDI_%(yHcZ=Zd%3
zdI`o2sP$1xWR14OC2;?HxSX>Qs55LQ-+Jei7lvdrvsu3rE`~mnb}p*uGW+#!Nn3-G
zqNiRh+Xbf^z|~#${eKS<?=cI+Crm9#LUrD9y>r^bhPXDz<wdOGX%F70J1)SR=U`C0
z3tbR@juS?^WC){j?58@1{=)l})>Vk>ziF+fWO0mK$m7%HO3EFcKhKRhhucZ|NsX~;
zd&c_w2va|s-%6}WGLT^NZ!6Y|GmT-LT?@KdAh9NMJYgzFt#+DDE;6l43WOKMZIfVR
z4CcC5s)bkXH0fgk98E1IxFDegOoE5@>IXcw^y@%VAluDNbi_cqY<fV`MnZ;wR#uTB
z2>5}pF^0S7e^^id&2-clM|ux}L<|o@fpiL8*2V@YTqzn9#wr9MFOh<k?d-}n;!!3l
zi?eA;RfPsa>Rd~uK?|`E=&R8nDbA~-&4~hIM2bXevNL2S4n0P%+Rsj8MoFE!Cn_D=
znD$@C>a8D}JqnqF91!+9pg;=^oi<9}euF6}&6cnz@es@^H9J`!ErClyrjk~j3r)50
zoFC58zis2Xpw`&7h!8`F@{C7kXPBB#sC<RXw;4wP8iHg4n}2z3+#l;>>hZjQ!9ft&
zfEUFklPc*KGUFaRet_ZWLFZA(e}JopMgQb>=e);E<e|tA{}7WRyQ+HK;`F}FNVkwU
zloH2AM5Ck&5)>~}GT4k~NyJKOSUcirCqqe<`~~L^ezTmR<}XU>cA0>z@Ql%n;_4W4
z6(&6PmdJXJWT+*Mz;#s+tR;=fpnmbsXC5;o)rEZ7>HOg}>JTB?RtNvE$c}gk(e9k0
zuRoln6_Z9Z>pUHQ_W_f}Z8IZ0hS`4o{e3ZG(0T>cwHV1trL}q@vtz|xFRTN^An^s^
zytrq89wELj<q!?675>WVd5A;OXbjyyP(OS3(2Z>H+$KWB98oC~u9@U?&atK6hRLEg
zOQ<4)U#vdQIq@21n$S5FsA6O^D?0W;RdKuX&Q%0jp@C*Dk!?s9S}Y~1qZ;))r;<`n
zM&PplS#oLg2csrOVn~Kw_Pp676G+I*G{TK#nuDA=3X4PtS!Ab4LJbxG%1NesE_|Ah
z9A$@`2s~q|DiSEy3bcCuEE#ekiYT+5_&m=^7f^$uQQqz!j8U0g%gW=VunZ|lB);ev
zHBevwAEv~R$y5Od4Gu98G$%pe$k60kfOhVPIRj_+*OA*8p-7k%I!~;`CrFiGMfj0=
z@B5rJlIuc8F@*?>k^M<&fXzr7{pt*O5f5GBV4ye~Fjte);**d%-G}Rwi9Ikf0dfjz
zqmzj-Aw17Y(nC*+InV}$?S=8LPte!JTF+-=l+iCzj3()9dE9$LpQr!Vbef1X&7~Kz
zpWL;Nnp3d;$?Dm~&Y+KmZewAlF=Nnm5WZI}AKU-_(6fytm<*X2;iEYn_75B5wz00+
zwXKBU)!0Yvm?^`yA#rF>!vYYmJWFuby_eW4yZA%gPH~eNVyoX_|6Mz58?(SQM5@#{
zFS^4%Y9ZG!<5~meuipB|p74ODC>wJR%Y+FiE#UWWy<RUGW;&jh;5gOdXweobofa2f
z_48nT^vke7VQugNXeA5<tlSUp@jRZ(CV+2RsDCgJu~F?Z&-&%26AaD(+8AsYT|9}c
zCa67E=n|na=F{q`=MfL(r&H62$R?=dS^ADoSQTPYa=poC<q4P>77SrdyrWW&c#l!B
zDQjpinhMH|o6acLQEzeiP`^VsW;YJj*IYunlrz@aTu<F8tAhb5nYHL~9=iPqPV2vO
z()<Ady<oS8!!QJ?5~2_0XaD=D-q2J3Yluwy!5_q<-@&m;F!0J?CY$#NT?VI`8ccAz
zoEIjTmx=@%@rbip=q@Cmz<SZQNV-v9c#9MBdJtEJYYoqZp^!xp)mfMnV&vjwK-Y1L
z^P$V4o4LS82*fI^lNJi(JCfCwdz|MIjGICL5j!27$H9HT**?r%B!f;w3h@Ezjta-M
zPD>Qmr8J?A29H>%UI7_R+~Qze%k?6^pU4Xi5;f;yk0z?sTb$+F%~%$#sp{QsOk!f5
z{+jb5!9iA3Y6GgREGX>Ygy6ujPsd-adnFkm3s({?GDri&OBsEwPcM8eMmR~tV)W0K
zA^`bL4sQaMc*A|pwU^KV2KO0zySWy>0w!Nck+h!dY1nQ?#<tQkR_s<rB(ru?lIQ0q
z%?KRlwbD+80lYqyndo`&)BkY`Y_mz8$fwK*@<l3pu@*#z3kj||@dVGGkC?&3-vPhr
zz&jN9>)m%F801y4$9u*-X-hY_%s`9VoeszXySwm7j~yTkFGUyup<X9qpQ<)TIJ=S{
z5e4Pvt7(y1H`pP-Z<25?)7gqN9TL%xDS}%G3AP!PW^KJo^s&*5dc_KWgo2zM<}*2m
zlg`lBjy^ox<rM?X#gBi)9A&kVXG1d@@K#ZdeaGjq((-Tu_LYGX=1$E}^@)0F7lrpi
zJ=HAuN(rr^ztp!I?E9A@RjB9y#3K$vvH@)TdV;R}!AN$Pr*I97Xoq47EBJya9riQk
z-9aclR0!-8_l+(jSUI@^O<&bv@RH05EgL`9D+b0&7=T<hNHqxo(0x?xe9ej9Lt7{b
zuL@V>+}3Jnid?4VQg$k@2{IP}Htcr$*UJZWPRYbSl$ax&n?U9y{GTLL)Mxau=WLDI
zH=%oH{y2z3sRwMdGUrra|HCN-{cY@5?;cS*t4C+?G$tRgy@7g3{_&b4oULP{hgsb_
zi>DA~B)isZZiJ-@EgJK;71$lt@9l_T6N+)dr0gUc?qj$#^D`!?6?2?dlcGDbGf`xL
z7NT!eAOxUaCjL_JkhSZ~uy3*>I>!|Qb#3xVDG89hWR*C_j+x(cS>Nt5QcQfmL3+Yt
zv9dWI3fM;ndT!s^O~wfIi5bNRK%_u}efc~yQa%M+#@}E~GQXCXBH-C+srDBGqF%YI
z`>?ERM7<#XBuP0XsZ`bMbz-0F-dR+}T^QSVkVL^#Rr;gO!lB{AZtEc<)Ja2VECa;%
z?{)_D3Jt)|3-A=5kS)wGHu|3XoIFox7^W+CgUPKh*Q|0j{T>#4X0FVnygwZ-5TgCA
zaq1_8zx1&Ay&Nj7FfA!+%a8_dFE4lIj}AREr*47!k{t2q`<<CbhX#uM!2#Cuf!Ce;
zUJLsx5ZPIp!+yX8rIQA6C~!$Vo#$_hsP5H6MzF`oQGziJ$SAuouD|2GH#AyKB+M;(
zl=6_uZcfhH&=9EvIu*!G*m3;^J7?W$MkW+U>u@j-^tI)rf3@F=`7q*v)5AN9G70Zc
z4rArgq}v$H)UaS|ZQW*HnHl|5tXXRS6hyI2?lnUNR@<)^^jsdv%H)d6$5b_dgeLW+
zCXR9nKaKw3)^0N7KK775U=2PS;r#GX=nqIP%NCM*`HG&S9Ph_whz(RwEhSyJ6SQyw
zsGM-O{aRbk+?Tt_A;KD$Ks#X*e({EEyZ@A^s%N`*mShq;$D3)BI6xIPF(NZfoqB_P
zPexSo3*BU#?Ij_$I%){LFm<G=tFN(NE;6Iz3RM=J`{ZyDOCg(+{E%I_Ci1(Y@J@z`
zs;h)hk8lxmxA)t7Z;1T!Co>=kmo~rjbn}X({^vUTmQ|s#LPD@;pJ{$PABI``Jsa!=
zH%FekF-)GB2h$=pJ|mb83pdzLt%=O73-8R!RGCuJDp0os*rnAqtE>;N>)E2Zcb1PM
z=!B951x}C}=Pyn9W;%h{k)^Z3I*Ur#O_lX7x}9t|Lh;xdYx2s-uwTMO0u=b_eHGR9
zz<8yWk*2dBJ1bv{?3|Df$e0%299B|E1o<zsN8jA@qx|kN({9U|(mIL-r6Gf~)4Hd~
zzISfariWPk93g;fY9)e8C(#Twx!4}@TvYBGtbGnZ^_EuH(pxy{a+>)IHu(9)cHEot
z7sHCO;F^@)BI<=`U6~yr7fKo+h~>qm9k1V-YOdrFyWo8AS1<<tT@o=YGfO=0+IDFj
z@O7TvG&H=kd>U1+6d(%kDYD`HF8lf`!u2&hI?JYFO5jvLx=XM<jm~Upz}DD@u8*i&
z8YT}yGlayjT6ep)yUf+XcA~bJ+bT!jXNM1)n2k}2<gAXbrn8=4pVjh(&d>9r<%pKj
z{(C`iI<aBcGYvzW9qZ+|$%Idm>`S{UPRLUOPIMLzh?0xM-^?CUL%KQ5T|GOCiZQ0!
zg)2`Yb?mN$GACz8#49sc&@y6y7!5}3;agy-wR~a(2cIVG-E*Xc6|8AsriZSwvcBsP
z^K+PdHdVk(IRh-0USTc#!VGYzXy^&PgiZ<E(UohTmt;hF(FE!!IN$ifBIVU}MfTHS
zk?+;=1~NjN&s12*APnIX?IGc2u%HyR#}|@cpuZP&6RGyKzej9OF}Gz2rdAOAa#y-)
zNw-(_h#bfmcTq1a_ML1w?nHAul5F?*+uX^hTOV0sda06Z_o~xJ+t$ya(W1)AR)hlg
zahiTR!QSv|XheElSfryd4unHWY=V1^w<rB!#>Ztsx<()Zv6uiYpjvgTQ=AZ)F`09i
zsj^$8$b%Ed5(wB^4Se4IWq-uleP%SPE+Fv>+#TbVfUa0)f7}$=?PrdECie9LQ`bZy
z1z+y2uk4csN3NJ<hG-QW;K1>d@E~WXM~`q$*cOq0nR)0z#;M?0hH@!I9ka<UpBy>u
z_OO4*0AdS)Tdk9q8yPSKWr(K+ik_qbR?L&9IH%P_5BjT{s82xa0pa>mYUNn{FDFc{
z<)SC*IYOO}>sKo|wJ2`(4#Edh6?XO%*(F^i&UP#E^fSVQTP}ySBe;blz<R%Og|415
zq_cQDdlA))e6bMdVk;031IW;Hp1o*K)PP634J#D|v%sLhgfwjD^d52vX8}jdjfSby
z^YrSM&E;Yr5n;%lNU^6cGFS32>u8296kI-i&Rla15;^KvCB&c>FVrhO4womgAk9?n
zs;SvJ&13#7v!#u`#5k?LrRv#R%_RZl!OtQm8N#z|515O1xNy=*-cPMg(`EPc5bFn@
z6L?Q1PFx0tAdc87EBx%Romml`GSju}DxOTqBl}`gl=D%wOm$~wfx!Fg0PK@dCnuwR
z+32~{cl5StJ!B{o)DQlp*i!)PlGO4yJuj{>g9s}u_a=J#5|V{&O2tGvM{fx)Sl>e=
z(j;HIu`JZTj?yV(!#j&}#1)~h6BCe<o`#p${~2e>?jDoRGh;cF$ViV(hIoUv7o979
zm!UJ!3Z&rB5x(!5S$9$!Rarg7cr=3Fz*tBXVznQ)#r{v9=*er1IOga8M}qVP2Ch22
zzlRaP^7D{JHjvG;esdmOhDB)f7F)+MUO8zBn%hB*veRDtcI4j^&EYQ*%5W=>6f-9^
zg*Kw<^(y=N{K&l-W|-|uo>2V0Bqk?)vVHD}B2Yxu!a7wcTj1Nj?Z3i|yaY90!+}=!
z{9#8&MRk^;$C~^LTr5x$A}&L9?Xd>l-E+i6Z0%Bl5Djxco#1_tZA?`i1Fh)KBllMH
z5d9(@cw5;e<CNYr$$TE<k!+BEbvcDkn17f12&j-sSLyqlXZuFTF)a7BR|bgwk#&^x
z<>e<?Cx6xR*K4{DD=y{mw^EFSq2Ej_h7G6G5&6#O^~cFtmQ%RN_Glv}UzVDyo?oq-
zhJ|-#7Ls{vt%LkPA{t=HIKcBKT1#ttZoMnq-Hnw2{Al45&7c``s#-qVzUtfVn@)(7
zmzfMh9(Q6G;6%XzRbfqdsOMu3bnC>p3z~gt0DIEZus5yIJtAK^#h55GmNBvxtIn&=
z-eMoK(byTN_go))%aT)ua!&v;b4HpyG+&G<QC0Z@M^x(Kea@B9QJ?cJxrl{|3WUq1
z_QC7tTB05#JS7?cQwy5vW;>7*QXK5_nks)IeaBkZBq@@BNT{=W&x>3oyFheNJ&w8i
zYJ^X?y(YuCbW_ApuK8=KY+A5l6S3<T<T|rfgzVc~Nj#xI#KgsaQeWjd=iDC}bj1w@
zpcwu5b?NH6vCbz~nqkB>GMT8dm}@j>BlL9o04MyJh_~IJ6l15#eP5#XXtaC%PDWzH
zzH`Gx*%yM)p|`F)7Hd^q+UEEthkjM;6r&*01j2Y~z2h5k;5H%sXNE9vF=L}naJrup
zx+|N8s_aKb@T}&Y<Ro1f8Y%aa9%5Bc$&9it;R(*PHZxj`SzT*Nw~14MFH#LR+Qpwo
z1onn?GBgEMEov2*UYa`kdi%6bLnD(~F}CCmw!m_`{p*P5p9&jRTqelq7ONDNbQt#3
zEuOck!bNA8t2mV4B-NCJZ1wUy&+D78KQqOyW5075dkS#Kz3om;TG)bF5psGbw(hDR
z9+#Jtr7pkCnSWihNQ<!$b`UnldqmNXw|`w1IjJbD6GyNdF4$@d_H!^O891~3)9l{|
ziXSM0oYe-giQtgM?H)4Pep|aksB1qiIF7FCLDN-N0&jOYb1vz=dSQf^KY7)-RKTj+
zNczzTIZb__ttYRHSnvoRT<V@bH<y~_%~nG@oJ&i3$pB3QklPYIR#}OeDq*2B?Q}Cx
zQU`T=vz0C4EX!M_E@^kN6MM-ar&W19O+JO`Qr&X3_WTewY+9LgUgsjwM|JH>aV5^N
z!-^*}ZA}Ee1Hgc4uppPlZEreGE>lNZVYI20g-V;6kfmae8df>4hm1i3Oi0=csG&Cv
zYh2LN+~H~@!`xwwYa-T7R?LpeUmYo<aE(h0PPVDKB`<CzzQ6gEd9Y6cxt2ekl@oXL
zt5I^f96XH>o%300++I)g6!VB;U+Y|-M0R`J95<ub{3aP`p~3YLuu#qW;?C@CZZ9CW
zUKfy{a#_zf{~OWr$VtEy(YieF>Q9HI?~mv#8b?PX#AI-m=#PxGG4Lwq^=*-lG#e=+
zCL4j=8daDvRgD?rT$&#xmTzgTudR`XgV^T~*Z#{{_Dr~Sx$(fsZMOk?;Ut>Y%)_5?
zez`FG%}b1om$h>JMsXRoM}@SQctuzd1d;~!jSwqh8i$>wsGOy%%8YT~F25+YtX5)A
zxFL7wX-^r8V~TOLg@u2^So62}zB#U)bN+>TdtY<OxGKW-p~_b1h5OBY^w1U4rRxfP
z!c6l=5If*vqu&ND(mf`dfKIlrs@>HF@Jh4Q=jJ(S8PR|3@77r`P0D1e_|9bV<{(xR
z?c|J}Jx}Q&BZp`aC_XssON;EWzMg0F=`JTApGr#+`DxhR>8kSxEB2d+kLDQ-8}w!>
zgiR11aE9}TCtA*KcI}rfRB_g{vJdl83shK@Q<WMm)=XAijk}{*JA$rFAA8m=H^vNy
zJKOJTaUD(?j$=Hnyw;9h8hNYh8fURg$Re^6sp`8M>>byH2Fl2P7_1{>7&Vt&ZLeGD
zjv=Ah4(@!A<3^KhzQ^_^Mt*dLF{#}wzw1#lOhi2A5&I|G45N(7;hi;+V}v)~9eIVl
zG(Dt_N?HSCb8$zc7xA>K?3mNd2s#07XA@eYt7ft~`%(Mi6At_w5{QO(t|248m!xiZ
z$ew><XdDJ;akQ`t$cT^HU{?+ay-A7e(4dx=pG;J1*4VF|61m&`j!d+_32x#x@DXp_
zYd57uo^ob*XHGT-N3(QZljS2Oiq^elj=k!!r~#Y1xgKqEi)&0%JOOlN&K&E-?hz@2
z4|=NcbNw9Dy2kh_DmiKa&PiE@`f`plaZa?j^z12I$|iX{Ip`GC*w23O^PYu+jlW+^
z00F7*E&$`WU)y@wP1{4`MlWOuWtljP@&r7|^LpExKMnl_1kA)djEZFx#rA7o`?s&n
zC@VCvwVDZaO@bsr?QFi)e!M)g0hfnS^I&sO#WeJ)YZ~pNQbG%e*NB%UFehI6_ZEBQ
zd9EcfL6nvFe(qCgk>yoSU2T8;W5lMX-KPdHtL08WV>CxxX!jW&dS;nq)?~9Js^JUm
z*-4@6gx*;K^J^(+?XVl|qb8b{#Lkj<D6t?87epSAoo}&5es1DugqMs^;pCxt08tR;
z-h7k&;dBWvi9IzzLe#3zo2k~G=)AZPF^36>sl0&FjtmL!pE1}v`U|mEMQ^%(Fxg#y
z0Q)JCR@v&+iFVgZMt$O%;Ka@GVFV>`Cj{WfI<_zRkte!!78l`v)KoWEV<pmy*Febr
zlcVjWb9#)9j_AzBqX$MxWSTrQ2GEI@+L;S_ygc6xE)(gf7M?AM4`Cm%`7YgQZyD}J
zn2EDs$#6PbWl*{pzS3n!Mnp%25q_R#oJs;{oIlY2f^>TCSNoISq9)vH_HB-Z`-sm<
zYMLFh?fcl{h~~T=CNa6vdZJHoM}ZzsQ;$DqXYG%2-Zs&^T=tSxR=oh91U7ICGS6N1
z?LS00>xeLwp?pP56QRW{AA627t04TV3wwx_O#PU6>=?;OM5XR3v!cSIx<6}{0DUVb
zS{|&_u_rrGPa7wL-aHTrH>-k#OcgoXdHP-VD!dy+6Pe?Jgj^L<;*{)->YOY=8R_Fh
zPa6!6pHl4n3E>w#*Fy%x<TY}aG2F#1h4%SVLu2BONo#X+BVnGjO#7#?W)QP2CupIk
zC*jXjKVV<{V8oZlpzBIi2^Izjf2nR^U(cCk_1Prxyw1$&yvDqF?H2v6=t==77%H<(
z)_@DbyI+8UD8=ta2w=V=dnAH=lKsi;5%*0qYN-VC865<Jg8fYovFVBgB`6LsupQE&
ztDS8x7+Z>nQHeB5bj1N-BjUI96}B4H^U*K5i_bBkv6`F~^)g7#zrVLC&W<SiE=&e8
zjeX7lqJKnpdt#FrKr<B>$Sk2$a_d-T*MwV_Hkyqvj$k6aClE_a0=wtg@9n4T@T*pG
z7IM&M^qeEwjtTkI2~KuO__J4=>y+LIPdOt@PR%GMX25|Fxbe*`Y}0#er=N3h04IiO
znKtf{xNG<*r(nDpl!?G;lQ$0@0l@M^nfiR^+_fyMx;avkEaQ<vCi;<XG7&#~Y$tpi
z_VSG;+UQ0SaGB-nQV2IrXpi+@5iw*#n4JC+LN*c(R2wp!*k}&_1RN{^QUu7*swd^y
z%iNe7Yd5L7%4KFFj0G<0?^Esg{So&C<8cjOC5ih0^7<mqJ}$}x)rbpc1^}UQ90&#`
zt3AKlo1cwbn-(qtpLhvv461!|L|l{U7^3aJcZI}tC^*j$XXT9u`-R;y^g6k<Qa{~_
zDlzw!diu(tFTNBhn~rwM0_#xT+pLSHhvPDc87%Q6n8m8+iMzOeh2EJIZo(OOFzwbP
z-@H14@#@^`^`6}(#EKgU90o0+q~p}A-FO3pys^Bhz%&??5RoTZAFp?oEH(QOZ&9G*
z@(1#Xc+Dy5Dv#5ATI9Mi<4d}Jtn2idqp&B*nHU$j?R2v)6R_!FVW#53tNxm8y?wIL
zmstEncYuuf)cA}n)p3gR#q#4sdZNLI3-fD~u~BJ4G-c_V*3rlH*cBCFEU)SXLG=tI
z1$@cqY`gs0p10?iWQcSkFo8s5D`PKP&d#SzMuSiey>?BQoun6f<B?8h$m)pCdLnpp
z=&mBAZVa#?x4j|0Zg3zwKo*4Xhuo8>mVN0wePw8fd~U6HkI3;<W#0t?Dl|flkg%-W
zgAlr9Yw#X1df{V+&_b;puCKI>K^jyt5|W@r{1tlMBy*W2-dOyu8!?z*(9#}qsB=MU
z*K^uanf|dKSRbAgI_+85)~F3a0Wyjt>i?-#JUKKvp}xTf0f}@VClUaT5ERkx+pOFh
zBJO1Ad2V6#96_t1P^Bj6?ANS*zeP+YbU|jq<Oz-V!B3%9Hb4zOMMf#=n^*0hZtOW@
zI>{;G@C3;N?&CSsgj5oSJJTD?p%x+aU%yW<_6zIi>q5W(-+zFCao`0xr`Z$;TX}T>
zF$d{QCw;)EjT>$U-i-Wn4I3~MS{SfzCPqx|3}JZoF8hfBlRG=y8b^S+*7yj&vBnF1
zmGM;pQedc~@_Eh=cN<&0m{xt&@vs{4f7L<C6t$wt>AE>uBuP$NT@Cqlwb$poTWd5`
zW<w>aMHMC&Nq702w#dU%sYUE>(BCue?=HtOw@Q+H2-+zrc`D*|y*AFIhroF?)f;26
zAfZ4#b&_+<nkaD$#K#SO+xYZC^<%wb?K1-eoLU0A*qr0NdFuLFXXh#A?U*d;`iR&q
zSmB%%V_r|(7+(WE^7YBikBR1zn;K-_8&I9P>0M{i%aQVN1wM2)(xL9GR<wlb_qnrp
zvl#%Uz+V&3Z2Z`{@NE+gL;Uj@q<vV9{vFoLM@=jY@2H$GRZwYpu^iM_`F6p7dY-qc
zyBuJSHX<Ihqx8`JFvs3{U<6bXH6}8G(YHI>-u|Y!hb44POcOdy!)eJ-Z!fd%TNaVC
zD6F$I8}PA7H3zL`!1k#saJ_YFR@5i!yLV=msIl{i=CNx4FrFLR^S2Xw5R5-~8T;(%
z`>g?YjF!s;q>X!Hm53=u43I>J`emy9V0hRO!y}Ew=xayVN;2R0fMPmgDkt=}HgAbs
zb{@O2j5spoy6|J;JL7GS>Tp)P7XH{3#&^ySE+y#(%mVuh=g6DHb(XuPBfAj7+y%jo
z+VY$e*y#?DlVQ6Ay|N@M%2f5mRaWPU$nQJ(xm;!&Gc8w&Q;8ExdL>C+afWlp5y!P9
zc9$I_<Bho6E#MBal(*KoAvs#4UMX=gHx`#J*_uJ$J0Jh-#<r)R0;P8=F<eaB^X+3t
zhy7g<A^H~+v^4-m2}zNrR@K;>r<oDd9KzfUW8!R0jIm$NFgalvfIFX{2n|{3dXby}
z0B?Sb{rkyg7{v)dnDMqyT9mRp9K?O)PW0uG6&pz}jw6`f=)R`(YEs1oPIiq+xH9CL
zGstHs>(kXUan9ZMMP9YRL|tVw!T92C3WOq}ExpaYH>#&^t5FqZ)`0Ly+9^T0?WvWc
zof987+G1=Wlh#JJ5e!YLX~po#P<#4XQ|I^m&oSYh3}+J^s}F^dk@MtM2U{Psm|@m(
zJWiikN~-r%!XwTnC-ewz02)0>Vj?9&0<teZ=6EmZaUuau?#cGMgnw8r=$h}>IFk}X
zH<8V&tZ&28;x?d$*=wBNC-ivfL=$bpu8}OS#E^m5!?hNbZJm%FQPkhKq(oH!j@7y`
zg7FFCRoD!tu*gU`;AXV#6JyHaKU>7~Q(LDwr%hsW<VqZ%lA;qrmh?kX@sHUzZ8SD9
zHVAf>1uis{fZz|9+m|o39ts$PgzzO|)hevE##c+OP>mU>WBZs?STH*51`s46_RLGT
zy^>Hf7?%VNOp^M3qEm8(o8_4VoT;kHO?Rc?pd_mvmssUa<gwGkIx{Dk&?av!Bk5|)
zO6%BRG9ogTKt*$N5PPCNJ5K*vZ!DrIzSac<-4Kq5>8Uf#KEYnBt7J8?1QW3-)!Fg(
zyMIKUaF>AyfGZ+a%>a>*FB9!GznTGD4Z`D8+wtB)h=ses9L-O*kC+zz_A^)%MVR!~
zID|a$C`=e&DyuhH?K#GT5&w`zQ-Y%6e+<(MPd)VxB=lw&VOM6nI3hvVOju&-v3;?B
ztnD%N9yhnlesu%D45Dfuinh-A;J~278;lr8%a9U_qG8r`JI!EmzO<U2Bb`)f9BUj*
zvWIxc(J{^|E2Gc8y_@W6u{f+?A_E{2AD#AD?A)GFmmZIv2dIRd$+0qFaayLOs+I@r
zNB@klW}D!UD-^{*^-Eq8;8BKZ++m+{S}0r-jHUt1W4XeAv18AVJp11!9h>i$?wn-O
zAaA9Gb(k}9i<_w>UoXNf%O_rA={!;LSRiD(Gt`zDcE{;16e?4VgU^wLlB5Dq`QFYq
zPn)Cy@0{5%Uji`lWQYs<IK5vCr5nlu2p);=BTrw9a*kXSiv9zTg@>9E@wbMLa7HDE
zM%WI9W`gttYkE_wvnnB!XPD$es|yLb)Q#sRI!P|-hr~sm)Fbe1WZDzeoM^|c4LvRs
z=0C&>2@TwW2hMa(KQUsjn+oBpB_=CYf+Qfk>de!e;d4Uw<%?XBT(Eg)I=N=YZVnAn
z@Fcb@iwFK>jx)j=8pxtuhU7CSgH=~$I(Ma*0Sq)ee6bHP4KomPcl5Ad{<_C|518Es
z%t>}(0xIPKW%rJVc<e!AGLjx3rOgebGoFjIpX?VQH}EWALwu_|i6m%Wd&y_!Nen>H
z!7La9l&G;<7HOY*thuQ;o14TT2HnnnKK%)6{Y6oK)u6aR{b1tM_z51h3&tIT{_`4Z
z_IQ)4V`9rum=dbvn-V|?=k|6UTqoazXRETd3xSNZhr>CSn#7;BJ1-A4m3a^~nz|7J
zksSBS_B-AURR4hp4){L@?b#wRWBB$FHf;m-e-=_xB8(6u<bx&nd^C1_&OH6-iKcWP
z1Fe=h61A20gfrn$^RUAG0B!-4fS}zLqi0^nMK~=;LJ&iPAktv9M!n~x&m1a1Z44Nn
z?DBwQEwb~I)S1hr6YxnG76zGbWrC-|;`Dx}f86@duE<Fi9;XXmmTpR==vmWd09bE=
z^6$6*N;EB#GUwOr!C0fg1Zb5X?J;hPrBdl$N#O@=B30K<_O9YV?;?T={7uBY$Q~+n
z>MDCd>aa~*gi8i@lENbvI3dkYe2x9c>Gf93p;%6D8knj7MT-nxgfx*M)gGV4Tl(kK
zg2F^v)PX<~?`KS`bJ-O`Dw(Dd*<3<Po+j{<{tKLyxsWG7Pzpdn>J3R~Ckf5Lp0B8q
zNyB|<r5J`ynxLxV^zu9kMgY}vfbbxtijPHpw!3bd&UJX`fSyxy#0|+Al$zZ&TyL6T
zO70KTM%Oj*RzQ0K*0hQW($2Ej^PYElZvfAHu<k#J){bfFrL*)8_r*}K1%@a<Egcmt
z>;=LWh;#~bnn%(s*~_=qh#ut(ZMesCd{3_7zd>~(hcrp8d&bkeWXNT#oYcJu#Vj<2
zML9fQg8j>!r@C2(PB1t{Uc&{;N@;x-`rr_v;AG_z1q+=@slT48B^(5kg&5l_F5?(}
z8$u|5OY^S;LbmmaJE{-3fA}Nefj4Dpk}7EbDz4kV%^yzU#pN_7@;PmN;+964t3W#p
znHzE`O<mk8Zn!jxMuf@(xJDC=o^k6F4nz22&%?Cku6}P;cq~ntmD)JSd9{p6U4CD@
z5Xn`frXqnpJX()gGGrs@z$s{}rs|GbjO^qD?4^gM>1}7(LZL{clgL*}8U+kgrzLvm
z>?oJV?jZ7t6D8snuI3cA+UudjM22VpAso$e3$nW~!E-vzAPEG(Smkf`0WpAaj!spW
zsEE5nb@HcrUpMO7QXtC1ny;#x3x+U(J^X8duA5G&AY>Bau7J|vapC`VcDzH8U<$T>
zqmRyucn$(cqDS3=^%Nwq30eYOkX7*70^n)I8C(5;XW%esH~!Iu1+ndRVUb43<$xPN
z+f(J|RmrRLs0t%TAVZ<fuS(7b8;E+jZ`K|L@dlF07X$&-Bq^rUQ6odt7%`5s^T=EJ
zvq`aM@pRZ1eK2Pkyj`4fUVCDgR4x^?<GRrPRf?957@|*oaOg%nrvhIG1}%z;oQOLA
zcip$kP}9@yk_h^ILkdp}@UOp|4q=lQ_Du*@gg9B+C;R5(O{h`39cu!EDS)A?no;Rc
z%v1YGIZO9Ho%2^4iuo)**%kM3Xv?T0^|C-r(OBdKk#C9KmFJ`>d%E7zFj!bSsGXCG
z6Q&}f&z`0?LQ|W~-?}Ce=`{GTCMBwO3iLb8jL<TiUgp4++f}F}<|u1$(PYE^0ot5A
zY)&4iw(UA|=b)kzsRRyiwi?x>d}JmpUB^|@ph1|!0u5qE3B0b9*`Ty0Hg~Y0wQn>T
zD+M`Mnz}Pb|8(`>B4%+cwsq4yAW1E%Bojd!i1OTg-k_plbe2iO6_jB<wiX%+UVfI)
zalOha=2~95uCFld$cYn5Xq$oJVm=nwmb^?J{7?ZuK64{K$>tkgpl`XzbV<nKPenCm
z7p1A|EA*3#c}f}@Q&=)&0&<E|)s1)QGxH65SfQlL*p@zuRhwlxQ`8$ZddA7_O=xG8
zL*3I;PwAQr^P?a|E9>Pk=0kzHEnYUbh?%COw{{L;0v14Jm7zgD-k@K<YLM`jkY*+_
z*QPSFSl7Q#^;jclbbpBE6H{kg3FgGN^K{bk!9`_Kn+QQLb)Ll1%5qZF?4R`!0|ysP
zgOaa(&Kx?JtHMGo2~xQOJ{VL~NT>MbT8W=vl~csuByU|h4S-y;9vf-si-T}rM75MA
zl@_KcXkKodZgx^RadF6MS_871IFbbCyN%;6{>#k`<kN(LKfkQrymo05E<W$e8r|Kf
zKYVy_(Nt8me0OyXSs~tx2*!XF+Ox&H84v~35pG}UG{~yY*I~y6r@g6$xSCrUn|+YE
zP5RG+Z6e6Tq!bq?s;ke^1IkRDYL=ffE0yeQs|!k;TgSleB^nb(Eet4e|IWY6+4wY~
z2y3KO4kv>4?uGW9A7aPI0T6<GJ``aKfCOo<EJL3<jH-Mnh<u;B15|cn_;$Na*Dj^w
zs<c?1i*N=q254JC_IJ$FWur~8$#lPvy|ww_riu^L&22JL5)&Sty?VX%cq-VFDGZ@X
z%eXQYhhpmA4!zJfVjWTehJ_)(rwj?Z{`skno<V7EipoVu0x^PY0rVaj`Lb-i_hdvh
zMZdMw)*#%aokNDSQ~2RptxHF4<)*^<buf2ezfv69N5{v;in6B7d>yU`MW0~t)k6jP
zs8=BA!D7Ivte!L1^$RdD&bi;SAse#_m3fdT-<xP*$$x*bXIDBJ9vTcv6fy8ggF#e5
zuhuPR4jqYFLD<xTd!_ak%Os6_vbya`=eb{oNPXJ)uBK3@wiH7GTAuGYiN;$DP4Usl
zMH;^mV6xctxu<$|OD`FU+L#kU?84l_F`=AIq$w5L)X=b$-d#>Z(P5NG3DDhO$jsMi
zJ<PlwUNlXnYs(&;)8CfDQ2J6gH^F@bBLU9PmN<R;yMu+APfGckL<yRig;X5kz+RpQ
zuO0C}2EDx3f}=cN+%`fg^Cr}{3a1KYWjsv|l^U$yUuoU~w2Q2j>7ap8k)RTP($>-N
zeq(~sUj&U7pCrcWY#rZpNbzN&cxi6&<woLThH}3Hm{t{U<|T8<k8j-W`R-Ag#tRiL
zhDaAc>m)--de&v0V|T+yM;ljkusJ13U<%X|%k*DE^Z*tUTsGwiypyRo`B#{;;<{KV
zy#?hBz#Jx`Dqjbh53hK{#m?Q!hsaoI9my(lHBHrB;6%Dt!PH3A1>PV9>bx0B`?y6;
z&7#B9Fu)6z&Q-(WM2OAOW(YIDRVS&3&d{$`aPp*JSA-nfp2A&JB8XshOR1jhm_Y<*
zedsQx7}V|1$>zM4`EWeY)F~1MnAxCjU+o@a!f?2N;$~23h8T*wNarjwo{wQ$4tg;}
z%y<W>z@2Lx7F=7gn{W_u1*o>`r|&)63_$-c0S68wc_)dpC94<v>fx<suq3d*u|w)k
zF|4>RU5)ImmjujE793Ux2lGHaXk&l9avlTBHe^LYzOa1`3IR|M)jzoNpTFunlge8r
z%J~nuS~8TT-g(u@Vu-aDW)YXmgBmt4-OrEFQ!X$gL>EPD7{?B1Cc6m1HsmZbCTa6J
z9%|-<!bsfdlz2^dEqNr^D#-4Irv>u}aD#%T^GP__7%IeFGj~ZEIxt6w$k~%$rRW!?
zGR{VZB|^lJWQUX3Xz2k>TVff>H&f<HQ%oE-dghtb;kjcH4uvH^1YA-&Nq1>t^lg7L
zCJYmzq0P^cawe1UV2xgvVg~WQ$o=8ax_6<VM-4UuQd2A2%6$uT1zN$~RyErXTprb;
zp?i_b&@Z}g#^2+U05(2<1QU-d(G@`bxfOFfy~i%Ij`{p7uVf}q>H$*KgMT^?-eJ^9
ziD_+O-Zmp6na~ZBM^i4Ckg!Xb1J+TzX%vbW;4Ag$GtC(Lum%n6CG?f32HdI(>&)*@
z@zp}xAl|ejwA0j>N=@%)c{4+sXJF8fp|JsXm+3!`<x%h|z)(=JA0Ps;<rLwZ8@*Bg
z_L<><2uf!1@IK~;Ic)-R11bayZ=Ig~iTgJ#;9<;z6Ul0&sVy7LPx4@FZ22zu^2x0k
zwjNTn%--pnbjF`%VoK#|1rDE;*$BE1RQZ8fl5he(=jQwQL*x|YtY+b;NhN4@?EwAP
z6Aa)6QDh+xfES%if%-E_pYXMLtt@ib@OP2EPf^Vq^p2k9TO~kYxeRvApwa{%;#E60
z>DE2mgme>Doi;Gmh+`CIntEb^PRKDwDyy3MLIKpcJBthnTF-m5es)yw#F>{Ma%Eg)
ziED^THQS%=$tXP&gE}TfZ#<bBD9{y|z{yQR4@=PF^MU3$QkaZ4U)5~9lXUWla4SCN
zEQ~ax2W|q9E)+@y-OX2(;qA-Ef<VR@zFp&z8e&J*)Q#UzI)uMZla~E=GHYI_>8qe%
zXhqu#l<c|}oTctG6QcnXg<#>$aN0SLJ+k!9@6Ak8C01E0>uHT^w91(ym@r^QP*LAI
zXP;}{4*X{|m2|9TE=>o5OU@tRgnz!z`J%(TD{$#5cek(?($t>kHSWA@(46X8Y9}NY
zCM;(hp1OTzA%UWDiwF<)7rqsJHmckuCXUh!3mZ|9bhYpS?fhWYkX`5gISwzTPx)-!
zn;B<ui+nXzVxHE-S73Vc^+*RSA`b8Ur<y;=4J<fts_{vFX>!9;X*gmcjOgWNCWaG?
zi2_k#cTO<76r3!2FLbyurymX1FR$iZMEs!@1GWA+d>5tW97w84E}Lyuhxa5ejsznJ
zjgll7lO{nlI3D2Q!SZHz8e1%TvA!zV%uucXe=x;R*6OL7_34Yv_vQt<qz{SA9Kt9~
z^{moo#`8U}A+QEPRVA>PWVOkwOZu9nqOerN1h5-oBvh5Y;+%Yj8IVX^@MC22rK#2b
zb{6+ALx8T><C4nH0JfN_-tDHlBpfKpzq!F5JcG!bXg%PY(3W90%xOh~5lhD=c&4Ym
zaoc|nNy=hoPkpKkv0@bJ6HtSCj!k}5w0`$ya~V&P?abC8Fd?}pnaXi@F$9kt+fHU6
zIG-SCGSu1cI1!(lQ9P>9Gyt~8wt43r=j}JmP%elmBUS|LlBnK$(@B1ZNfp-tZNNMT
zT@|7i1Md$Yu~+c5rsr-YEhmY7Nw5_O(d}98fkc<}1UW{`o(E*E)sRS<Ki?lboDxM_
ze~;d`#eB}#x(1=VgJ+Sr#Ec&Lg*Nj>FaaBJCY5h=nSINVoy4SMiDhFM>H;zkC^!k#
zr_vlxYJ=kB^kQcj%UjeNryV&o)uVqxVKTYUI}ysoyCK}6-oILp<@4E|WjKeyvqgCq
zcFwhvb@oH-9bzq&wfqQ}Ds%Fv@gRQ1=zHfd3ek#B2yrmlBuaPsqdIK5xlGE4x?;4F
zxxVZ%{Zy5if&*KfcpSM)%nEdeFx8H0BT8D?5f9U?e=bTnURWnLch}FphJ7v_d?;au
z=9`@zF9rW=2J5*`nvqGq`es9ymjpWoubUL3lRh;gIX<EvZIp<TkQ3$|ah!rwxKBpu
zt)IBJAMC@JfB@VvP=~$C0A@Ve*hfW_7qUIRGxi!?_=Oobyg?(o;NC0s{YOH#EBDML
z^zKbFuQ+6pUKL?jc!8Z&$}bE1_E}nIz64*xK{mgXBzQaE0?XFhq7EOx8R3psvh<n9
z@yj@-(mTqf^h-~I<pE{5UjHurrXaQ=np;nN)%^4;L-qGU9+IN6+bdaxL>OQRUr#E~
z>;K|O1b^$AnUWwophRC2)hE66uu2A{X*2|2z_Pf`&X`%HcPE<nDj{zg{CRp4iEm+#
z*YmrG<jRJ_N3aC$AS7YL64T=aPIT_c`avNhNmS!o#Yjm>gBb{BH?N+x-&`)Nrlv?*
z!c}!J*9=R5_}&rvhP`H(cnsM@?n{dIq6(H~=@0%fN8WhJRpZs3)!Td-;iMV@5-fFc
za=ZZEPP6rw`G?P|7lxG#wKZ4&tB)DrOwhmyM=^s5C$E*O=k9cW-q-AJmdt~pWEnqM
zFH>fQrkhPFJ;#tCr}}m6KJ(`=in4{}&xM{*m1%nr&o``Pl^tX_g}_DjQt33^*?IW)
z(bx<X+bv69AnnUoYJU~HI6|@{Gl>iFM7n-mNMD%AY8DPc*D72S>4C-W@v0Y3(dk=*
z!_6J=N*a!c6evQH)JK^*a)5a%h<$LYvJNSRz`O8dJzb^%mFt6ygg`)iD%#@9IXe7h
z9(FK54@)u2w$iVw?xj<i=#xh12naDtY~z9qJ$@=AO2kOef35<8O~9+JT%m7nW&k#=
zYK!V+vcg`;9zA@azWgL}!}Qj=Dh?^JOXO6lI%1g~e-Q&-(X*{>@u&=HhmcJC0YHsZ
z^~U*n>}C7`qL;@Z{-tJU!wmi1bn`Q&yqETwyctND40YQ){jU`F&;1J;xr6B<u9`Jf
zpI*UbiL1)b@caN^KL{$))E~?AF;_AcdIj+!iSFS0su!-&RcD#oay#TJaeUDRx2)7Z
z1`L%*9@s#+OjIXPJzA!}Jeof~ysI1MDYiww;dXVK-r6!x%q#49=<FJFQ5}DegvJ`c
z%*H=7sJkUq`tw{fFqvvKN`aVlQXOjGnR?I}=50uXRZ)S!*JWg&rq|u1PdvvAOmgW(
zOz0;?b={~xYc+u;V~YlSlx<=`d)0AGI-UrWXz%LA0OuebiWv3jQawnT$t9`@;$qdd
zlIFok#R*nNFV)XXW{B8N9ZX^YcLiaDr|^HC{(1yMaFPm_wrDjH*ALIsf5-|!s6uxq
z%p9EM=P%Z`$p;&P8iW9DHb7I9NERJ;ufX-^oRC8Ba|}$lA{`EBb<1m><gKyei5^ap
za5%zQFrbb1IMY6(#g?$@5J71o_|S@jNzx!ey&2}Dyug?QKtXs3)dfgrWY>c;orfC@
zjh#ug$CEAkn&m)*3dU;UY^TpOx`EMng|>Nek=)~iY^Sh|MrJ~`A_e9Yq;M*>eCQ0_
z0fRI#KjfoPlGMOq%9reLe#1QFxX{I+!{~Ad+$a)-!ENn2V_cMwJTm?MlD)X*d*|!V
z&K){FD~;nXn8jU8w-BrixY~JT3A~mVgwi#!&hXpt-Ek3a$PywMKUoq9DiGMN6`_#8
zX*#vL;~hR!h+c}@zYElNvc+Myp&<N4=gLpvfhF7~y*xl<P+F)KU*;@b6tk5@Er4!R
zSTZF?oUT^)*R%h&B$JpgUGxB%0((qF*_B@4^h<{_mK=v~ZfA4H9(EJr>B<M4V@e?&
zO2M@d4nSBQ5yjA<dR4@28v02Io##_2227BE?6e8#>Y{t~{p0w)488-!B!`#s6m@sA
zQ@adytWc0EIbKYLtTS|YLrhVg1SCO6wE3vJQ~4w^?z&U&Khd<3IJ`v+(XwERn1c;f
z41LxAN8^ooy!Ik#gT9qD%?8#5u%H>Wj$xIoB9GMf&#<aF$lx~!j0t>0{kcFtG-J?4
zv?z1e)Y2Z0m~F0WmjEDrVtL9*FL`eND^B=31(*o2p3f?*6&5E@5yELtIdc9<F*1&c
z>LX(${GMovu0NcLAu+cgvkCwK!q?h;;?T4NIO7hcp(w{^Z7z9R4=js4G_^@I05jW-
zm;IL*N>uZk_0Q>s(0hUemSCykLr5$pDc|Fs$wed#vB^5<pv*_$+(}h5J*w`%PH*DZ
z$ZbFaONtLnakA-$9Q}^-NKbN3;>|YtxCziPFeK^WVxfdHw>l{oGHlY$-{Aoz(^4u~
zMSSkO^e_qqrAF;2@Es{iZdt4gMObkDA$e@Vyrxe>k{W!i&YEN{i|flZY`wA9>H8*{
zYsGbQEnHSVL1pB!v`4m9>ON)eV+7JgWr4q<ZXT&gDhbS=WT-Q**X8abxm_ZL^<a(p
zBCN3^7wea6&E1*Q5*&J4s+xJdKFNJD1>Q}NN8uZYXiO$xvg%TO<ScXFIHIfv#pXfs
z0V7d~VZ_tx3W6o%5uGHUmRhNgKh@j_R<dTUd^Jv&8gPxiuYk)Kcm$M1z2HL<<})0?
znTvE+vKgF!HPGB3xMyz~ftNon(MKjB>IvRTNTyBFt+;nd>X=3P5`;REgeHXuT(q=T
zy>_8~u+;o@p;7CB`2u~!ZS<<|+w>^E8JgrHv&jlc+1TDz{YHbinkBm1{Rl7bcteYB
zMW*w+<<hJK6q3=!WD-)<2N&pftIb#eyvefILd8FGk#3q{J|PF{8Gu6O+xYYQFVfq+
z4B$Tr*FVY`oihAdefhcOqUbz=BVrXKs~a!S6|UI;Pc)2pU};3nuUVwWoag>^n|O@I
z06@hM=D1LoUtvaysjR4qCxpjOkY7nva~J7-3*8}O8z9ev3}901qt+1qz0?esiwDdy
zL1d7u{&S)JKz<6zR$VO|BZQ5J!5|Hrb)EE;hfkB$maj-rFJ7asJ%5Pse}SKvf)7Wf
zuACLZ0!Y2O*X<2&49+IVZ;F$-j*iCoUv$1by9%~iL=ve_5{pFek(fUWw^#mV$izgy
z&7l!{CwqWcwOYK@KK)B>KoFx9OdD5#7!B?(0{fC0tjv$>E1u(Sj_r4%X{*S4QMU=f
z;y`=xTMUpuqF)1P4xwg%=^BG)(MJ3I_XdqOO(mO~TSaUTA*MyZF6WN;A?rk~7_=|Y
zD0qz#ncrmEFAW)F1`v*Zf!_pnnd}Y*dV=biXK%I`7F<xH@D+&2j2GPburur{k8^LV
zZuy<mIxi<(X)qy&OtpLROoT+{{OUT>7Sfvlk$Q^y_8$B4I5RR9QV=o<YzTlSB$Es;
z-p_a0nJ1WE1FQqN3gp^+GgdEL>*SJa>^1$kS$aLeJtDzBD1qbYIH3Nx&hDid64TSL
zu?obIhf4dLS8uVsQ_UFIb)VdZnwKH3+J2qArfkqUM9L(TGyW^2{_zqpJZ8PU^)&OI
zAfEwDu+D_9;-$lV;s!f)gc+L9Kpq{aJ_~1MN*iQOICy>Dh)DMb57|pb@+r^<6NB?L
zTRA>UNGbt+^I{1&AxY}24m-aWkIJC9rJrT*O&&CdtDrP%1(VI@qC2Z~+cv8oI}dUQ
zc9rySZcEU8;tcX<5{RZC_pI>d5{7-II5+^NuBM42NDvCsC{mwQWCjEkYC5$x|G^;#
zf|8)#>8&G53}6V{#x4wG2@Vsi2%?KHYU*0z0iR*P5&}(B=W87}V~Cs42O!<tqVguE
z3Id>%F1!F048@yd35^9og59gWm?9ZwL8knp6C($~?ZhbD>=dDMi{LKUrPf&I#6d2a
zq`tMKxqdq=CSF76JK#poxnsbRc<CWZvt2L_KwV@EAG&b8=OfFEl^%K*Q{diJ$vze&
zNK+-^zq!Noxk^$myzRWQ0Fz6^IE5vCi4nrUk9~)Xe|m-U&fu6zwg_=a$s2aiUdq=p
z2kj|>bN5Q;^?jIe7+|{s)ioRs?2IK(I^)Khd$MVZK^j_IC}G%m{Z40Qq!}Qh6`0@E
zP($wqm=e_ccR5e?Fau?{ZoC_R&okdx?KB=6BlrwS$--e_@WIWXG}sZO$Ewbv1&?Wc
z23!r^F!3^ypy2hY8#g(n@#yqqI<O(X_?g5MiyxZ*x^qEtjI>au#UDTj`hZDAa^d6@
zwWCrWQ%&X_D-O3#ax;iY3ZTfoPjhxE`a2)AYZ3s3f^B(6FP#`GWZaV^oJ>#xQ^2#>
z`EEH}s*;-|%Lpo(npfyAwtJ49Ygz(u^5qOlVC&x>cp_$+zb!(8`9WDg-Ib^w|Hkv@
zY36bvHUro276*Urx%WbIP59=2l{P<Qvp@5Ecrt1WVU6W0VMS7GnADLA^fkpp&fzb{
zR~g=wC9AETKVT<ACEPg=69i9Y;p5Kb(nr(nq}sAwsu*BUw3yk&%RS#rjM<1B$gRh4
zCunH`jF4G+@o2kgPsF1hvF83cD!8p~9?v(AdH&f(D48wozgfTY;9-t?GGdKHOq1UH
z5RnTwX*()As)brTO{7|?^4_dpd5AlR0D?j>J<ik97)epLqSES#4ICN-5LD*$CjG3m
zqX=2$iNs8(i=L^|1ONC1FYM6tk6W!D;TO;;CCzjZA__zl4o+GY?9IM<#;Y+!xx5yB
zzU0N+x`xu+B&vgT%mM?}3BoxguInN=(gf9V`2-^hV7qF9QxKGinl?*k=d!tgSOCmX
z2wz;JyFRghn>|#z{Q=Wv!wC{dqK<dA3?75nD53jqYdj1QHLdfouCJ)|bSB5jKpF4T
z%$3#}&-yX3V_4=X+qXCQ;^*$8y<V$QgD&^HaiY0ix(_1<7L3b0VTt6w0V85eO8}aD
zme`VM>ZlFQ@|VE4fs?Clw(_Lt7&<^BBP;!2Z)5}G#?nXqcBk_~XsUslbD#~SzSxH;
zk|i#<->G}rjAaT%Avp_N$#lwVoxM*P4spo9C2PmZ{cEjLbPbKhGO#bm`+x==Jk)t9
zik(dy72cQTM%nT>;i>B3S#iG$XqF_aUr<<0syy2}MHQ9m@&Jx53nTRqwA|j+@O4u)
z={tOSw*~~e3&nSJl+M1~G`Hrfn}IjR`&#3HZetTr^oR%XowK>X^gMf2+&x@o2+9-G
z;As89Wjr61PvC_N5gg{Un*<vGIaPWRZqW8_x<1t)Ub2aKw!=tNWf7632po$GG##0W
zH;>gX5-cNN8ESte{jAc|n)&(%`dJ}|vs!^wCs4+bp|Y#=k28o&^NW~`SX{v*v>E&f
ziZ0(jAeIu|bRm}G_)a>8RQUo1<kAY~(!xESI{%=9XMpf3r#9gX-Ca7bNMDC`iJ+!)
z9Rug3SM?+LG3W6Z$-K_PT*fg_D()V~**#<<X5a+MN?=FCj{|sjmG;oShWrreU`&^K
ztB|q}gZu!SK-0A&Js*y+1%FZC1L_M)EC3A5O4TjaIsb-OktoxkMLbNT2y5vWkLSC`
zJVN-3Wm8|<R44TutY&>Jm<J+=32KS<r2JwVC`gwCvWSy-#dkY;v8QV%dXi}K!Rzcu
z_j*wQxDz%sL0s->R^#%LBs(ztY>-`0z^fJK>GM;-nMuF82RnrLR&aK}FvROr*=3xH
zw+i%w_i&nd5X^zq00^YnKrW|n&1Ai#4V0in76sEyAMKDB$erpY$ORLY2Z&87+c_&G
z6Ii$7l5}sti(@ekD=Gj1KqE`Gy0nBRg04H_l)<tO@(8nGbA#SVlQ)PMZvaS?eTtgF
zq(L^`;e7E8rv@1<%nBgti9kQ@$?6NrS8_kCjc7JO1cSIrQgfg7+!q6VGX&p4%g^5<
z%hl))o&4Xp%5pUT;lT94uI>MVv;P+Oe2G8$>ZO=BogPU^>g#ZQULSbh#cPvjIt@Ck
zVqcXt0eiW6E@AaL-YdgmG4GGmdrzfXED~idupO)uI11zuh1&D>3U+dun$D8cVbPNu
zl6DWAi<!Ub=>GObtXy-bEzB+?uAA4Qehz6c?IzFLy)5Hm5GEFr-`Jg%bare7a+;VS
zc!eAK+b@4WdrXlH0jZxx%yD8lkSE{Z6eSHU8fOCD5*;ooKt;FI>dYD78Kt|xjxY3<
zz#v(eEYfMUl_dA7)ucS+G%N5<Ho+Ud$j9jr<(*{VsZG1t^V1@bTw)gp;F#r-v;R?+
z=f_N=S+UTX>8=eMm_^nq)by8_l)#yQataYBfF{tdvpu~=8#eQQ3?+qzFpTlW=mMYa
zrD=SUs@mXL70r(vMsM!5c-v6>=@hjIj~vL0;DacAkxstrR(VeU+WbywW0yp0iG5k@
zoW*B&YU0f?5;pZ};WvlOK+tL~K=~igWk!+?jId;EwTgE0J0u}3tboW%JY%HKHSs#Y
zVH6igH+sJFTPtquz04TdJ^2~anH4wRLd7Qxj@$PLy~m}?C*>==GVL=s$q#Sz9C@XI
z%N5fQoY}-bv4{kfW_zXz-kO71-!&hLikfqaT+{F~J-wIl95ywSNo;j2NsHX&XYa%n
zEO94{bYcY&RjehryDY*n6B|5#o%mnBL5#=!4c<v$K0pqnP=N(YP~Y9{c@w$A(i4`(
zP{gGYaWpu|qjLF?!^KhR0Wozr>=2thBM3W`1{bAWlD&7u7%XkFUTZ2n@9#AqDfLJV
za-K+EB{G(%zAE($YGKT<NVc>{Zo}|n(&$R&=k|*|e|b&Q=1JRITBO4|W%=^VTb}d0
z{-SwiahKbynvzFZ(20ef8;i~2z$z&HoLqx4nIKuZI;B_KxzBSKPC_dxf--V3m=J2%
zn=-wNeiRIrEXP0Ilsy!DQ>JlB9Ue;si6eOz92S7_Z|xp>66clD(E}JF0TK4^()}yk
z=WRzNLI6pg&78VlYCV5mWJU_>szRVk_7JObQ<W#9{l9O*91PyXD->4O6U8Oao?+zL
ztxtHep5qo$8wARBNHWDjFqD_Zow?5JmQ4**ymKDZ!ZSVIJDDD2s5v7tr4(>l_%-wL
zJaI>uzn%=-bUslNahTbrUN!#=&$H6c9vtY7K+O(nMF}{A17!nG^4wU@Mr8{T!VT6k
zq%tpjz4vU-#p}#nd3?QD2Lcvin}3q+em$GB-cK1k&}Xt%^6^()>=}bJ;(710!HGIh
zjVNdF&I>(RuktKXOFQII6#tuwp8iWc-)mkP4HCkxN`G)%gJ6Gf-np!cNBMbYs-)yM
zE^P2bfL&$JQHEdLjA-LrlTeDhz%wArG-{YqZCDwkU?W*h{M9FU(l?odf;M0#B`wE?
zq^i-Wo(&V-qaxC<%LR9`uU&Ab%os6r3X>#fMXQBGwP%bcbAp+aqOJxhb7z2MhsZ12
zb48&U$U@dhatc0vivV+vQ#{}<<#ltVJOLr$6{(h?j=0G4N4i-sqoZJt1jmw`VhHWa
zr+J>q=cfO;)3Kxu?(|aJa#xBYlK9r?C7#DlGCPERbcEjp>0+T$uOH$$v&+2SKek6|
zXnT;SI21vgD){Mx2x7E(htHgCDRn_6F3IxT__}#unHcEw)}=7l2+LDEAR6V}DFl(w
zXR|eBhsX?KQ!-P#!aU7uc|(2<GrQhT^A0JhLkZw^PH`d2|Co68aB$+q%_J4(3MeQq
zMA;wj^W=SGKDnsNSWTRiB+-su)i}~~^Ka%QGcg5C9T6B33r36Mi#_k3X?7~X2pX&S
zc|mDRhD*8bV$X^PxQQx)gS|+RX5FsxT%5py9hxOU-X6@7<Oxb?zN_pYMUq8+^kUBq
z2xGCe-8^Y3Kar{yUl=$4rGGq%fK}*GqE8N4R*pk(SrO`af$dG`c?>YAMe4oO6a6Ef
z@y}^tfr8V54K!u@0(2HhS2>Ddah@kOnkgx4Z$_rEgF%b4b5_jobfx_FK+=H$3ZzUd
z7F&nT7U>+|6!rFEPi+PtLKGT>$sv{2yG;Czw|Z`s>*;E8gLHi~Ta*~Tj6Ip}IV~tW
zMVSD!pe~lZ!{b=xq|41aP@`4l&ZGz(?Ec(h*U&lG^)*Q@yIrnju?_*#ry>wi)aG+N
zEn(&zz)v?c)S`l<ric|lTI`$Q8C!0C3BFW;Dw;Abu*f2O#<h9Cc*)z#DQ{>OxGqU+
zS<offo*PRT;$+hCr%R+Pa3JXhv+fwrg8LZ35<Ap>;ol+q1&h$=s|ueBPD5R%t0m!{
z%|32Bw2Ql$+V+*6ONJk|N7zy6p*?b#!N)6y48C;repPeh4px;665{8TGLL7hd0$ML
z#x7JP;g!_TQ!ppZ_7^)OH3h*-eeETlColOQI|{5!a7QuMhZvRY=8#dz!^HI_xNVl3
z@RBH|@QXduZsraC`BPwl-Jd#qBuT_<XymX}_0rWQA!MttHhEp}(@Hx9a>Mks4;h`D
zwbHq?K9JlaxJy2Y3bOfe1D-L*u&}j3G;A6_lcb#XxO+ZCWeB8)jYtMsU@@Fr1jL7@
zcz(kY;df*?@ixW=y4)>Jwoi<_-UpidWN{>$y0|gH!Z$f4+tZ%?|K123<lv15zd&w<
ztuE8EI(TaUkr{j>cIoM!#sB{!kwO38BM;olk{3yP8FV5-4y)&rYR@XMrO<GQXmAAL
zZGx#5tKhaAPi~pn0*Bm#MG(5@kPgeZ6mEy*x!jjYUYr(FQ|xc=bmZSfIBBRtNHSj>
zY1b~|8h9(r1>8K<FUtOOf;O1yIziS|m<nn<Mc570r}yafy@11|n}9&PzX5HE1D2q6
z_to~}2IMzZK);Y?kcg8SbJMYI;DavykI<=s&BB<7ar?n2{l<+95M&I&NXa9xfVU>-
z<trJWj*}R=v|Ke{N~sEkU*j14(UrkpGVusEUM1A`>FU%YwfQYc`BVJWKpI$(gro-2
zrG=*fftr|RRdaPMkqh!o5VN!xs5tMD7ub(4E^!V)@ZxtQSLu;m<`rq&O{EtlENt4U
zW*rW0oLP|0+hF_fm7oGZpwpetce@$Mmulny(Ij|k($pnMy1&3Y4F<BK)>q37)B|Kl
z0m8E~IRwr~?~?E|U~3Yq(&O#n7o8>GfziI>$Okoq0HB1wSi^P0^x$ZgA_cwMSb<X-
zDpxL)rz10vrF3w3^x@FY;)_!vC^0$K>s(tmKLC(JI=cyhm3YEZ(?y(nr1X7FR+C}r
z4`Gl6a7ty#Kw#nort<+v3UtOTmY@*~2o)Oo&NMGmzzWm%1gVvjN^<zaINeJStROiI
z{<zUEeUO1GWeB<Yw>R(#BsVA+J5Y=!=%@R#bgWdp04k`iZH%8o<47vYDgeka)8PBD
z*{43MN4(G7G%hmGBD$!_7`;RYmAs%w3k+A#UZD2PmJ`ZZbAv&xyD>DixJt(h7!=iI
z(6`O9ZKVK2P~-Em^gL=q*cQ}=R7gh_{27>6lLejr+_h$1irl7(%!c^ULdk<*f7Mw|
zQ36YvN&h|Y6z&`Fb}&B>^IQCb6Gewgo?8wNel3YuW)P=$!xj2j_o<n66=D?O7fX>X
zUF%gLFKO_sWK0O4k_2M2KU=0BzK#Ln+2}3V0xY5cO+bTJk23?5gdAK&>3{^cnCa^a
zh?CgJ0jG+DeYyhcT7D5PF4-Ju0zkSzcHvuZI%eSsRSB+Is0pa<=kNPIpjTYQ&+shd
zb8tX_i{OUq0%o8DSS6(=^7jb>dLO*RT;{x6S#%~k`1^DVRqHos`*MC?QcYE4Y{)Fg
ztkUj~m85u8mXBGbBNZAX2zdshm7@0k<ZRq(#*EGkv`V89k}zrNoS&S5o6If&VU7bW
zff(u~h#1X!L*Med*?rKf13_>rRN#ifl$cebf0CjE@<5U`;v#927mBofgt_SMWVgfs
z83HIPMb#CX)5tBQQhssZY1~Lbujxq2Zlpj3X(a_e+?1h~kJBH9nF%LI*chzIz-dZQ
zZ4tU6#+@ocat4_tsF-90jAe$@4+$ZJpw!&WfL4s2px0l?04Y^cvJm?*?Q9d|?~;7I
z{dRLpCWpa=LL(5<R7|#hbEWzDEXh!Tr6<-1#vRjOLT|mBvLAkirGf+v1P{m!D%=y)
zzZU9K-NzOB%&!pKWivc5SC3w2eud&JSCYw5k_c_8WIe1K%wTydoDOUt9+j%B`Fh5E
z<^}LnB#{{`PM`>et-Ae49R&JI@Oh48wNWg*VS;eMPX5c;M}-laHQ&c@aPp{!O;Znb
zI?u^I3zothpzDyMJMLUvRK#rp*s7(4oh0Uf;nHY#zmtSoVg97yb)c&@R73`;P?CD;
zboT?`7@+uu7`)WoupY1@-sx%;0)seJvZ0M2N>3Gt!@ci0NfG8Ha|MZyy$xR+j880N
zWVrr%f*C6C!NCYmfb>a#qG&+Ad)1u_0!!S-8c-aRn2H$Q6?Mpc!L0#lEi>}gK>bjn
zJIU1Fn4{wr0($l6rMkah*bSpbP_RgwfU?(|FXei=nq<y~=*svSfQD?URLVHh)Q}@}
z*G3MOQCq|l%%_nxCx*Xszw_iX?vV7R2+m|WiMqMR>Y7#VNo@#C2h29S;f;Sf#|x~G
zU1gL3XF;lar0fZU_(!Gx&54vBtCQv+CaFVc0bx%|`dJ-jD2ICXpgF)0DvplY8E~_3
z7j(031%<>TfIog<g{l)jm6LBazI)FpG5QO+M{tjr2<~Um<r`n?lg-YLuA(;b(Y036
z=sBt$OV&T#XMX5?$SOk$pIRtOiW~4C!0(t@!0O>}<)-T4t|c&;zBL?1l3tu1h(<oY
z$vnl~)I?}d$ow$hk%KnmJIZ-kx7vnf<(9o8^raWLw?H4tj0%lWXaqQp+yj3~XjX{m
zCn+^t$6x3^4UN{gUv3nO1LZ))$&5!BB1Uweu`kCUWIdFUYX)Qn1U^;uvGsiPh|Ckh
z7>&e3aBm624BGA_{%D?0_#tGV#aC=6_h;q+5Fj241yeGa2u0xaLCJ%FrG1@OUx$^!
zi{}PNYPnV#TaJWp!_oRuDIrQ!li3{ZZ_@mY-+VtxSN_BZog>*CMl(=_nyBWD(f567
z?hq+r4hxzy2?e?GRYy}<%V8IWSDGJ~4wtkY3A@bvJ-q>OFd<Gik}sWwNReKGQXk1T
z1IjbjBN#pmneX0m#=8|;G%$jS7r)gN<(M42ESw0lelg-h#INiRsBsV`t*7a@0v<<Z
zjdTvM3ZWyQoD3~<)Q`>!6sF2hz=zSqsiSul3;yj6=azSQK^#vqn9}nT$pKi2L&WFa
zv)7p-#*JtI#EE;K5!#>cbd0sf@e=5l$Tmu4IFVm`<QyTWU2>&TA}Qt>rffRsJ>lK&
zZX-0L%&QU1Lrcg6f;ZbMxecSSQ7Zms*e=m1EUb#o)iXp<V-fIP2ezve<|L@$Z#rYb
z83Z~nSy`IvAc9^!%~X?d2bBgb@@9}Hu|jwJ;v7AfKbBNI_N^G}Y#lc6vfrKc!k}b0
z4T75r4m47Z*M8_+ELFhC92D`5I;!cyK{iY}X0a9S!c;PrJmp;CzDU4{A6gL57sZ)Z
zE|U#Q7!ok0F|ouLD15~+1#O9{44hI>s`45*2QxQ0s=?eyt%X=jK{ZJc77c~=I>RWt
zV=d$~hr}5h2Cpu8vvci!vre2d3OxBW+9YEwC#aL3a&rG*NO%}{Vo2?Y3t>`#jkhu=
z7Bf!-_)o$*MKXh@-fb=y`Ak)pOd^;gHa9#uVn}nx*nqzlRG3ui$q=lwN9y$DW@x+-
zwf{p*^E<w#j-d2#ABg5%CH|MOIHj+Sd!{j{($!Vloyc#^nTC@FJBvCJ61Tg@>xD@y
z3Ko-W*$Sr0g^fc}%SyptBE_-{Pe)0br%}v@Nw^_NUylXE09<&cU8#V3q|6T>*Q$PI
zB#UkI4|{4iv&TI-z~q98pE7WYxbjRTD<fH$ue^uZ=f--25#`CFc%1ZK?J&ZFaxkR&
zz%u<?o4L*^p*F>yVgLZbL_K95ON(q3weBhc4388kZGYl6GpCd2fNMSmXA1$fHbMti
zE{pD<IL7kV)c#44G|vHg+}ae9(xE4rT2^v?^wO%Vb^SAH22)jbRH$SykLpX;5OyC3
zBrT+&!~%2=4Ks!=T+m0aSZjW3EDm)@;bFqlR{imIBLGSvHVf`=As9##Tld4^W($v(
z;}TScQaYa|Txmi7vq)S%*AB%gK(tr=$C)_N9E&0xX+if1MwF^**z^1Ao5q?aVmr$7
z%&w;c-g6Gsun8RLsc=eyHmB{!uV2NkyV9Ty$*V6AHh*>Zoz{XWTq0Kl4Gm_edNs#c
zkvdwg6xCs;b0u%C^VN0c3O#suP`l5){@XIAxx-w~hY($U;O$48bu&gMV94^LqQaC)
zK0mf%_NW9B7Wvif+^y8)ezC{>GD_ZTJdKy3E#$8reLD8NC*u7mD`@7yxJm_H3T0DZ
zb5!|vR_zN3GDeGUUk$*2%9#Ku$5T=2RsZ?H%6TQhPpF~*Qb^!*z%&7-aw{S6fA6xQ
zpErZ~{0swL?vh&JS9V$3UgJ-2AP57vQ}OLz*219-qw(r|uqDtoTswE|I8oZzafQOz
zR)9Vk$Hn#?K2pl1_{4S)J~P(GzOR5|B2-(?GM~J2f&Fc1yv)LQX3)>y%ziaCDrMA~
zJmjlD5lN8Bhh00W@2$g9*8pq610*xh0=yH{At`c#%|G{Th)P{U27FShkJ<&UGKKH&
z>6>zlxdRp~8gL2|76w9s`gM2TPmd2iiVtn#O@Yn>U$gq{_$ftxq6}atOhYh||J*li
z$p8G+bTwdK-{xLsjMCZG0H;%WVcglbU!P+`4<|DRYpiJ{02m}io%BxM2i#xIq&Qge
z91=31yT|6fYlfSfN`S@JQwWR+PYLd2Z}r{fUO({n;F%Lu?@#*9=nv+V#6BPjw#k$}
z)>CW=?0P_7T&d#asS9V-0ZIJvnKkN}gf>=TJgs<Zs$1tN^~DbB=l4$h6cG(A06BfW
zb$M3oWxL~LbBt|mZ<QiVLC#7Ch?l;$PTicaW-JK_vGR;66lg=?z`lEaqzHuvv*a~%
z<wVT=A@<GtN3KLYmEfKE=K3JX6ONB$b=9uHoBlXqrTB-ftZR)VxPk9{8#iR-r=z0z
zmPxc4<6{UD;7iQvcVkhaT+L=7YNU)#HsF=3`dwtR^+j2?^JsxKQ<;;&7N)vI{qb)r
z-IL&FhQNT(s2x;XLPmN#UOJ`0g-(UX>&Ln&^Vd@hCTx=6^*9%4>gT(yj=x9ykt@aA
z<(Ggiz-QWu(I@0BYw|q_ejZ-n@8F?QcOwS|MZWqaYfFPUFy#!;>b|*E_)O$f5Ng?F
z{lHOUAJW7W;u<0_94C3=_Ny)bRs0x-u$4QAH&K?0^nc<CtFU9Vp9h!mIHKV|0KAlh
z3gTsAr!{I=f*&st&5Ly){4i<YqsRcvnrVM=Bp)w?b9F2M0%F7x`^woTp26f6*Z5kk
zGGC*FER?!nM@-q)QF478btX+!!6p}veipNH`zZOuaagtfMrM}cYhYH8*Q?<lTdF*v
zhQ}9i2P5cI;TY*SbLd}*$IG*dTI+!+$<J_jmu!pa_SvW^J}#$v9yqH+tBh0$EiKeV
z=MGx6X{39Asbl8IfRi5eO5dX7)HQj;7!hSmA)-ublrtacJ8K*#nuIoh2h*(&FlnNC
zx>w(rJ5$!=CBe_P0GdQ!rJ&oSx?K6T^jTcXkc5w<_nX^1RC+Srbwb}c4i6*xFX|FV
zA9Tv3j8)_(eP6VU+$g8#wO>}95b8x2_Pza5u1egqr4@WW>TAfYeK#*P2b5a78lQ{S
z1D;0l<gxvF?=wP!URi-^)<%MK#Ak2a-M6L>x3J%&0D~A9e1;Qh`m7zAvSut6C;&9+
zHbi)h9v2Jx>{)0Ya^RfPJtaZ?^-kaKcyqyW3S`h4j}0Z&C<v>5AN2j%!&@S(5E&xF
z;N(tJ%Uk*!Q@{_T!#6v>IzTVW8q6BmEyOhD^tok3N)2ZL*pH8{ne%+GR1hYo&;Vhx
z_Jo+>@x%Z3FdNSuUWq&*DP;Hq=@HAe=>EpwV~!iS66sdxs}Mgy0)~HlIrwqKMgEv_
z9L^K<99Wmj-WdFQFD|pig?Z1wuGv8!{W|!JLI1dnx!JR8@F)Gv<)T(!RR_Dcl<+hm
zN#Td6+dH_=@gx1Xf}F2LS}XovTW20$RgvZK5?m1Zh+;xma__Adk&uL!jU*6lKaxO5
z!Xk8%CV;3sNK9Tr77`wTZf#_=TM$`X5SVra*A_uhY#2A((H50N1SD(%g3Z{35p)oR
z`JQt_yG;L;Pj0<iRk!NYIlr@3C|IGUVtAIs=x^9%FZlx}hLkcnF_P3Phe>J&Y+GX|
z<-;Yi+nYiXFr6m!&S&Nwup8dxyfbt9tf9uJlr78VRk6`L{jm*fp_L7hQGEs^vCF(n
z&n@@cx~h~qV5RVp#!#JMX-Tq%AsuV8m+oOu@o<Ez2~7x#A)MDR)D&&BrkhTPSoLtN
zR2s>m1(h%Hpgs3(73Y{@D#J}wI3(FYSPZVU%Hwt&vYvB$EiL-_D12~2r2mPXw){Fi
z9|u}k<fJ4>z;3h5u#as<GGigkBa9`S3F}>uGffP1kHF$mUXnAd(v<?u6wP8aL-Xy;
zM-{yc4|5lh*)%Ec@<zojz>LWXjz0a=d#)cy1%%7RtpEiWQG89@dl|_-KZb>y{Fu1c
zoHY5rghfE?4q{zJFn0b16p$vXUIPDt3#8Mc`#7S_)*sOo$l)FrScG5};?+g85e0nA
z*8E*raE^Q>0c$J`4(nHr*ghYzC0rdJX-7>HkJ>9HB+1?s*6Q*T8_JLQ$&O>T;WJ&U
z!X{t%n&-FJ!W8-yv>}yh30jwlVhfq+?LD5{gc1c;ouxSL;OBPHwqzBrB8+t(%=KT}
z&4>ANwp+;vQB);6&b|t-k6LRFU7$NYRH&g^D(Q$+LA!v}Kl+{ujsn;@;z4#4A-r;-
z&6}sR#Vny%j2#m1oo4!X3>@B;+C;C#<#m;_5b;4$16cijNrATA%oQ!3iIUW5%*O0M
zkGGRsv7e0#PmNIUvbBfz%JyI@XJIHTQ=r7=6z{{`!B!3q09HZngnaM%)4^80erTu?
z9^Y`nz2=jkkO?a(+rdRW!Bo-dK3rmNX-Rp2<2j;^i@K*6v#Yqr-E%YQAaZ{lkdX}$
zpHx{=phKqFyU+gj3M5Rb!Ouq&Ex?1TXCc*?t)9~}{(gEJ7MT&Mtl@TT<j8&1y(c}>
zS57aX%S7ftz@*5sc96r)R{MJ(ES7C9RF}&E$ZnN1qvNl6E&W-$Y@YjPkLXffK?daS
zvgw>KnmEzWo+2kbek^GALHo`dG-jC5T+0OUVGkq#U!cYVy#oEdQ_3r81T1klX{DH&
zY+|~JKWyhgmlER802csz2if*4b77Ocy8;<ckRQ|5t%Wh4*Jj6k!Z1QCd=B;kg8ZRk
z0LC*Nd5%4dmEpL+hR|8b_e_lIa3|+Te9+K{>ApPBvuD~Rs38;}2Iiuyr<=h`x?d9?
zl!v9nj+0`HBNx32Gx=pP?uq`=Py}6oP>BGQ=kIij=^)PmS7OnIUNGu#kHw<yw^sti
z2r!9EnL?FFVqORiTD7SAV}0lz>oO4@FhinF$)drfzM%V4DGJ?60J&t{5H7+F4K(vF
zj(KD+4Jh4Qb0b2L2noR$g#|GQAEyhJfGyZDb#_EMl$f`l>9AJB5RqUcG?AVcGxJ^g
zK<rhPTax)OHE_poy4kcky6_3$9hP<f3{&5Qy@0DtJY|z!PmLzI`q~g!lJrJNVefy&
zeZ5b@Z1$vp`VAGbx03XmYL@*+?6_6&v+0N;#M1>rk~zn@99bUQeSN%u(45+7VUEF!
z^8=YrG6YDMqa!NNpOU>J69IX6tXWuJ@B8y6d*ko*8BpC<dFFNxT<z&2!QQ<0{VDqt
zgaa$$H|ST?Jw9kRW+h2g{*m<5&cU9`w<}h{!Gzx{y<rwGl-yws7<^D)w!EV>UN{+o
zl+a?TO0oiID*Nq=8xa)ZJ!_<nvUpzzqGz7BHUzdFhEB6hA)QV3H9{)Y1hrn^je`SM
zuWqM5^5tqH2y&1DGle_+aBke3Miv~8Oc~W+m<k#;<1xJhE%xr!Oa=Q5n3<|M@Ca&4
z(}+82&|q6tqm4r<rBjgMV0-+AlseE0TZdev%#u`A;S!17fkQJ?7L$@B8cDj}$sn_H
zyPfuN>Q|U)L{~Lt>o#{oSyGeObHX(UA5x=C?)Ube9T^BWOr2`F=!&d5{if{=^csz{
zfr(SX6rGcTOH#Un>a^e5!MUu5fE-wrf2z?_c#qRLs3_3zqqf2hRJ+I?L=_XcL+SOB
zz++uB!G0tHQoibrv4O=sSt`J6ZH2Jfxy6A+UG+ghd6oX;%96l`K|%58Poh4t)!d4@
z#Vc(>XQra2m|l6}%(W}Ft70aKL9LJ^1)^9@+z-J+cFFs&ArJ?<19-<kE?|XJW^*z(
zkhw#*FSoo}78YGcJ|xRL6diZliZrzY2oII;LfJal+MXk}(`IE{Bf`~`m#aYnageA1
zlx`|-wvS9z<~5`e$4Xe)xIiNcAW-mPx81i-NePQO`iT&cT-|v*GjL$F%Gn_T3jD<x
z@}T{8S&~>C5DR#3<TLBDY~v5i0y1Dvee*~5YR{|?ARsr<*3<*hjXCY!^KO4J2}}rq
zUgXU|H`te+>EDDv8ePpjI%fTwwlpS1gfvOB<Rh5JTkQOok%R-`|2$xKzW>p7-N%!5
zotV@J6G{nucr>|;@k>IS1o_qagkBAuf@Q*jDDyjuIO<x9F&c6Q)k<KPNw}@o18*jk
zp#m4P{%AFfcIK8|3m@f~#Oy{eO``-Ow>E}*HS9?$gIx@#PJ_JLII&kSMXfz(Zqwi>
zd8gdYuk~L=)n6E}uVWAeGQg~P);a#q;3^q}3FJuT0?{y04><YX23H{`N<`sTpM0v>
zvm^G4^~tLcxW(bgNKB1eC5rq&Y`6U6Rp?2SdM5<J9O~kXotM07sOWWMwuJq=u?RCI
z^z1R`rSr9mT&R4ChzH5%cw~3%b;B_5WSZZyXYeFu{I^R2*Uv{E7fWrUFV{&hWD}Wn
zs8?X;c0IkLLO01RD|ku-wWXUmt+o;r&1o%w1Ne$Fn4Q-+Njr|)F3mpVrG$88h%*S@
zgP5dJ>ALT20a`VE6o{2v3S6@f@H2AXaAKJ&76o#)(KBupXb2W4Kv7CLOx$PxxB(Le
zn4cR$#!Q{XZ9@o30&%HrIy*YG!_TxVLXc)PTDfhR15Nbt_UO(5RUdz;QpxQlf2@i+
zFX7**ThLxyc~p-pR3RnGkkn8=N1Q68g61|PM^`24nA~nH_MV^51Vh#k$x%ihCA9Q{
zn&_@G7$3_kl@ze$TmPPAZUiDQ-F83RhUO^y$_MGJ0Z*x>)9I-7-|6U5m%DO$lVmRu
zTFoL|8XtY-J|@kV`xX}*-kIjPwQ68P<t{2Oze$n;wQ$UBoue=L+pkqqa8t}@(YN`g
zsb6Zu>E>eK$Y~up51+VH?MMBDYD#X3dUKHKzWAYPw5m9smUPp$H0sd;9YG9bSjXGH
zk5vB*QFDij#Vp&u7nXvyT%2mUERUMRvZLz{A(ffAf&>WM%M#PUL&4~$FK4+B1r6L=
z?ceb&B=B)ubV~<nZVV76P(gHyoWT!{d2c<8pcNBVI|KGDSgDxCO0f}xu6}!$ec>}S
z8!=qTJ8z7(Yp+&Dr5p|G+bQqKFF6IkUa?Dxtp`Rch2fr_ZI>-oJ!zb9cVT|;t0il_
z=#~AyVwZ9`&)3Qw6UGeO=~fiN5<waw-7)i~25P7FKZ{$0(}ilQ$UEY-&C%W$1qsT%
z@LmFGOld~oA73ig=g#eVa{7#UcR(QUQL->fgtKp2?P~1a2jQJrW&&oyvl1s}r+e*h
zln+s`ibI{U&wUgQ%k+nd@+4Bwm_Dz1y^%SbtYL8RcKvSV%E0Dw)CqtK-6=y{oa^=b
z7G*)~5&#Og@rsMQ|7r<VfJ4X^041|NxaqNPn2Yc77WGW1fQ(DfG{|f~)C@8$bG^*N
zJjEgm`ypWz0Z~taASMJ+MUO0WFMqIK1uO^V&c#dOP!;#}-ec~`CH*S+wy~kINEHmX
zuRFb^ul#TXWQet?{f9|Op1Gr+%!kZte8<{1iWJHo)~j_N(07LLXiO?ZnGE1d77g`c
z9@aN<;W{#ZYHI?yzWvgz?2u3a1VVEmaZMZm>A3#@7SBKI-Cr7CfwggH9Y|Utektk;
zc@}oFYbI+$5mhp(wMZ)Yn*^eqXYU?Q1DKw;EN)omZfERBT#~TN%XnHFMp2F`(teAv
z6eEDB!~4C;qWB5`9OgOE-{eA7*1-F#x8$Twd5qj}AVfKkZ)84)zHmG3&=#&?p@ao1
zNbr~H!FPHiPiV{V(A0XYu6`TAgH$2C%_~2LO<^%nMM4#47mb7S_#Ry}wkAK)gqB2U
zB3Pqzc;O6h$qZhi?mZb48c9kxh4Ar-y}Z?B39?zJrZ|e4xG&k5CnmbL4~VaT=khTj
zD8f85#ol{0p9l9KDXLyZ#cP*}E`n$1m7&^_r@k~IWr#^P52QQmiuG}hP#U+xtj}}i
zPmC9{7Re159r#`<&!)4-o98=|ZqXJT1hRSrJP_W)fti%$p8Sip<cB30kzt8Lm&=D+
zKXQ)F(U!4cv28PPOro-~X<TIEl)mkc1X!sN%Nl{25JOZ?H+HQy;IKp9m2ro<F`wV+
zys?<4D6;%~G7Be;Z?a6xxZUoy`F*8@I}(t9Y%487JuAL&U$_sN79$I)GW2WA<V(G8
zzV2HgSSmuOn;=U#r&tDxO6_UGV&Fj+X$Tq8qE?`N-R!*`wFMOlvaKeIIE|b-5$<KS
zq=PmAHY77kSdK{T4GH$7d-k2MkTeaF_P;;IuJqV8KBQc}V}{hqVokElW9PVA`)CUX
zqy}$5y%aXV7R52YeVUU!O54O%Ml2%h?^~Cl`POP@X;2$~W_4!Ee5<nzl|zjn*)X69
zD?F~kkz>H~l1L5Ij+I*NO0~B-7hdH*57)z*<+<3?6K`?W#QFWtY81^Ct2Wrjm~l=h
zL7y{WP9gWP`c_gMh-ELSb4K~!%DE~F%?Lq~?X%7>3rUJk)VGI&`f6DQj1O41z6m?i
z$LRB1c&Ct)B$|VEsMp@$?C@8C0w{FHhLS5I>yta)3H8;N#)rx(!URbVIN#0tjXoIz
z6`!4$$s6zNy-XjEh?GU@=^6!>gF3j*dG`Qxf!Br_4ftZzw9ZFfU+L|-SsR9jl>33b
z#F)0`9&cMGHkfqovJiz~fU=t^ysEdMH!^cUu@N!Mi6%7AEPdTOG1~uaqnt{q=mMMg
z(DnYn@99E$w=Rz4U;`hQFY;0^WSUrl=$e38zbpabOnfOfU+0d$M_(*r;qbvg@<?;e
z;`ZfUd~<tCmBhf3`+-MO3Wu3duX(*c)wZ0*&{WJ~;_4J({=_D4duN><61EIY1`Nq_
zQ0alC-sLQ-d?YW>lQ@pD&1I{+`gnajM(SBHxEhYyZt<Ge=m4Y^%8qLP_?Z9h&6AUb
zu%^fik(PuXa&{I!?yWiK&*yCC7&v~`c`?*79bSmhg1W#k!n!u^e_!Q|U$aOMtIr}?
zRH6*vTjbA(1Vo>Fa-N&LQu%a2sHs78i^sll_q6Gg5k!3pB8HqrSnfOQrhW6v28avH
z`%^=4IcyRS3vsEO0H)Nb&2|5WcSQao`ek<s8%yQ%UAM)3Yx%Ex6Df4IH`(^H6eXOY
zoub(DT<*mnIt<<f(3J@w#`mAE<iM11MKB7XDYD_qI=ZDF^c6xGLozwJuEY;8t!1~m
zdQ$Wf6)Arw5%LJYsV+vsW(+jHqmTmoCP|n%pF98gr=(_hvIuN2$S0B5(<c*~k=a}%
zLCH6W2W~p^<=D3#No;0^1c#Lf%;`GXJ$-*-vqCwHW-tKU7i^ZSJDH7r>XMpa%f;~h
zS{x`;5)gSr+YP<l^Izb-EEFLwl|W4dDpK1RXq{?ae8yS2g>iT>LL=Q`EXhbCB57S0
zcfk6@W_UF+pf+N;FHQz*1cxD~;B8Fg>3=vEzsTESXse~FtMqGP3f<~CiOpyd@(=@*
zF|Xd>PJj7dzrz#GGs@Y-E=+93-ir+lU@g6J9&s&=UhR}!n$(P0E~ln81gPL!rGkYN
zLP|9)t<I==T8YySH8NpYS>o;}%e~WiIrMK|lLbxL<(#TW(&6|JYWPKMbar%3YDOEy
zWWbe@3~#dLI7jv{Cs-W+i;NbE;1as$oyX&NS@S*AD1iL`+Q}crGbvBRMKnbbuHqI(
zlWI1dau)PRY9<+K43bk#tfcd-I}!WRJY55fODvSd*&_Em(sW>in{y{ijgMElV!f4y
z=&C5yZE*P}2o4JcWGJq;xlwL)P#?+yj|@RXOS`-4{6`}qHT94H)lK-ZOg+kd=%*hu
zG@rhtyW1s`31S`;vw<!>cN4INCnq@9yu<=1Y!p5&f%bTH*y}R~oP;yFUnn*;^-4qR
z7nHJSvvcniNzG6bJ0(_PBDom({e!U!{=!%Ni|&*(arX#Xxao5z@l6_)a#%eS{TfWY
z(sb8(Zr9fm>(IBwtqnDbWf{me`#yVhnwq!@;KCe#)z0-VTAW%9v(572z{MRfKch@z
z<;UcNe;@sv4|;2t-LyeXP8fkijls%Gkj6kMO@mL=yCklpBu!AH;DLJB0ay{P!~TA7
z%<cUDITbTK%Uggq+&&8^Wcu>u%M$Ey5w=8vaY_Yxn;VDOF=OG%L{do%1U$tShcIh$
z5B61d?&bWLm8c{kp#hvq;0xoXiHdggT<xbQRHdw$YJV)bDd}%F<!S?13y8uQpd}5c
z-Fl6^aG3Unnoxt&9}6+^^I*ijydTCTXHp2gW{^E~rTz?%CCU-rWx>+>pS2yg!}Ceq
z7PJhEAm|)Wn`YX&*&n{t7T#!wSnyF^@gWwk3>SF@kFfcIB5(%CuDJ#F)K>sT+{)!s
zVPmWh6<^Fn+q^rjQQVo&K$sv9Y;r*jBki{C!I>x(fP+X`CB|=ad$sr0dewc3L1Sd(
z2}`E@qTGvdZrDp$=(p9?%5&3iinn0~PehuFo5)b4(R<(OZ$KxUM=TA@XKRV~-Z-A(
zd#@wG23IL{aMR5E-kvIPVy)+N81v`=Z`=xfdnnLfhem@yf-RWj-9AkliqWH__z&NV
zOQXqa8S9TGPHeH!V_i0bZ}hzB_^=0%9ub=AD=_E<d_v1zUgn=w7l9K>j1ZcLAi<~l
zc+WPdVp9~U_W_^(g-d&Sn>MJh`-Peaq(7@BGRn{}hZl8+lE0~ftA1RcAcN=Ei2@}$
z7eyjC7E>bLcf)BB1H4ETfrdCf2!DHfw0qUVx<zcP(ikcT7G?8fUw8bi5D&R>s2Jor
z<7B4irY+6|=jh{t2$?uMR?<T)X*>$)0l`TKBHe}!`CY8LAXR@_s<0AB4sShjsT<DH
zrz|u{K+*+LD$|gd{oM}jf@}fY(8fgn)tQZAL8m#Y0STs1#5%sKb}#}8#Fhx)l!}*G
zCi5dFBTZY{5vynceDhDZ6^u(j3VM-Tf0J!4+V50u)d7C?F=?V>>Bn%4+t*5dPNri=
zXRo9E=i;V=lm}7vh|t1x_pXupSQu{u+LeFrqMTwwKFA|pJXYiUywO3z&qo%P<WX#d
z6HCY_OqsY!n`SBEFiWjuw%?QlZANg+#57%I3u~uXv^HBLMzls-#3hiFrYbvg=1hm$
H9SQ#jhDi54


From 96112d93f452c3d374248acb4e6507dcb06c7fd0 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 16 Oct 2023 13:57:36 +0200
Subject: [PATCH 0982/1641] Bump dorny/test-reporter from 1.6.0 to 1.7.0
 (#10529)

Bumps [dorny/test-reporter](https://github.com/dorny/test-reporter) from 1.6.0 to 1.7.0.
- [Release notes](https://github.com/dorny/test-reporter/releases)
- [Changelog](https://github.com/dorny/test-reporter/blob/main/CHANGELOG.md)
- [Commits](https://github.com/dorny/test-reporter/compare/c9b3d0e2bd2a4e96aaf424dbaa31c46b42318226...afe6793191b75b608954023a46831a3fe10048d4)

---
updated-dependencies:
- dependency-name: dorny/test-reporter
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/junit-reports.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/junit-reports.yaml b/.github/workflows/junit-reports.yaml
index eb25bbeca..62745a53b 100644
--- a/.github/workflows/junit-reports.yaml
+++ b/.github/workflows/junit-reports.yaml
@@ -9,7 +9,7 @@ jobs:
   report:
     runs-on: ubuntu-latest
     steps:
-      - uses: dorny/test-reporter@c9b3d0e2bd2a4e96aaf424dbaa31c46b42318226 # v1.6.0
+      - uses: dorny/test-reporter@afe6793191b75b608954023a46831a3fe10048d4 # v1.7.0
         with:
           artifact: /e2e-test-reports-(.*)/
           name: JEST Tests $1               # Name of the check run which will be created

From a8798294083d4b0d874046648ec20d495849d000 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Mon, 16 Oct 2023 20:10:16 -0300
Subject: [PATCH 0983/1641] Fix fcgi configmap value parsing (#10528)

---
 go.work.sum                                   | 12 +++-
 images/kube-webhook-certgen/rootfs/go.mod     |  2 +-
 images/kube-webhook-certgen/rootfs/go.sum     |  4 +-
 internal/ingress/annotations/fastcgi/main.go  |  7 +-
 .../ingress/annotations/fastcgi/main_test.go  | 12 ++++
 magefiles/go.mod                              |  2 +-
 magefiles/go.sum                              | 64 ++++++++++++++++++-
 7 files changed, 95 insertions(+), 8 deletions(-)

diff --git a/go.work.sum b/go.work.sum
index 2ce1176bb..b90672997 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -1,3 +1,4 @@
+cloud.google.com/go v0.97.0/go.mod h1:GF7l59pYBVlXQIBLx3a761cZ41F9bBH3JUlihCt2Udc=
 cloud.google.com/go v0.110.2/go.mod h1:k04UEeEtb6ZBRTv3dZz4CeJC3jKGxyhl0sAiVVquxiw=
 cloud.google.com/go v0.110.4/go.mod h1:+EYjdK8e5RME/VY/qLCAtuyALQ9q67dvuum8i+H5xsI=
 cloud.google.com/go/accessapproval v1.7.1/go.mod h1:JYczztsHRMK7NTXb6Xw+dwbs/WnOJxbo/2mTI+Kgg68=
@@ -160,10 +161,12 @@ github.com/gobwas/httphead v0.1.0/go.mod h1:O/RXo79gxV8G+RqlR/otEwx4Q36zl9rqC5u1
 github.com/gobwas/pool v0.2.1/go.mod h1:q8bcK0KcYlCgd9e7WYLm9LpyS+YeLd8JVDW6WezmKEw=
 github.com/gobwas/ws v1.2.1/go.mod h1:hRKAFb8wOxFROYNsT1bqfWnhX+b5MFeJM9r2ZSwg/KY=
 github.com/goccy/go-json v0.9.11/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
+github.com/golang-jwt/jwt/v4 v4.4.2/go.mod h1:m21LjoU+eqJr34lmDMbreY2eSTRJ1cv77w39/MY0Ch0=
 github.com/golang/glog v1.1.0/go.mod h1:pfYeQZ3JWZoXTV5sFc986z3HTpwQs9At6P4ImfuP3NQ=
 github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/google/cel-go v0.12.6/go.mod h1:Jk7ljRzLBhkmiAwBoUxB1sZSCVBAzkqPF25olK/iRDw=
+github.com/google/cel-go v0.12.7/go.mod h1:Jk7ljRzLBhkmiAwBoUxB1sZSCVBAzkqPF25olK/iRDw=
 github.com/google/flatbuffers v2.0.8+incompatible/go.mod h1:1AeVuKshWv4vARoZatz6mlQ0JxURH0Kv5+zNeJKJCa8=
 github.com/google/gnostic-models v0.6.8 h1:yo/ABAfM5IMRsS1VnXjTBvUb61tFIHozhlYvRgGre9I=
 github.com/google/gnostic-models v0.6.8/go.mod h1:5n7qKqH0f5wFt+aWF8CW6pZLLNOfYuF5OpfBSENuI8U=
@@ -174,6 +177,7 @@ github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLe
 github.com/google/s2a-go v0.1.4/go.mod h1:Ej+mSEMGRnqRzjc7VtF+jdBwYG5fuJfiZ8ELkjEwM0A=
 github.com/googleapis/enterprise-certificate-proxy v0.2.3/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
 github.com/googleapis/gax-go/v2 v2.11.0/go.mod h1:DxmR61SGKkGLa2xigwuZIQpkCI2S5iydzRfb3peWZJI=
+github.com/grpc-ecosystem/grpc-gateway/v2 v2.7.0/go.mod h1:hgWBS7lorOAVIJEQMi4ZsPv9hVvWI6+ch50m39Pf2Ks=
 github.com/grpc-ecosystem/grpc-gateway/v2 v2.11.3/go.mod h1:o//XUCC/F+yRGJoPO/VU0GSB0f8Nhgmxx0VIRUvaC0w=
 github.com/iancoleman/strcase v0.2.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
@@ -195,15 +199,19 @@ github.com/onsi/gomega v1.27.4/go.mod h1:riYq/GJKh8hhoM01HN6Vmuy93AarCXCBGpvFDK3
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
 github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde/go.mod h1:nZgzbfBr3hhjoZnS66nKrHmduYNpc34ny7RK4z5/HM0=
 github.com/pierrec/lz4/v4 v4.1.15/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4=
-github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
 github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
 github.com/spf13/afero v1.3.3/go.mod h1:5KUK8ByomD5Ti5Artl0RtHeI5pTF7MIDuXL3yY520V4=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
+github.com/tmc/grpc-websocket-proxy v0.0.0-20220101234140-673ab2c3ae75/go.mod h1:KO6IkyS8Y3j8OdNO85qEYBsRPuteD+YciPomcXdrMnk=
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
 github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
 github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
 github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
 github.com/zeebo/xxh3 v1.0.2/go.mod h1:5NWz9Sef7zIDm2JHfFlcQvNekmcEl9ekUZQQKCYaDcA=
+go.etcd.io/etcd/client/v2 v2.305.7/go.mod h1:GQGT5Z3TBuAQGvgPfhR7VPySu/SudxmEkRq9BgzFU6s=
+go.etcd.io/etcd/pkg/v3 v3.5.7/go.mod h1:kcOfWt3Ov9zgYdOiJ/o1Y9zFfLhQjylTgL4Lru8opRo=
+go.etcd.io/etcd/raft/v3 v3.5.7/go.mod h1:TflkAb/8Uy6JFBxcRaH2Fr6Slm9mCPVdI2efzxY96yU=
+go.etcd.io/etcd/server/v3 v3.5.7/go.mod h1:gxBgT84issUVBRpZ3XkW1T55NjOb4vZZRI4wVvNhf4A=
 go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo=
 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.35.0/go.mod h1:h8TWwRAhQpOd0aM5nYsRD8+flnkj+526GEIVlarH7eY=
 go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.35.1/go.mod h1:9NiG9I2aHTKkcxqCILhjtyNA1QEiCjdBACv4IvrFQ+c=
@@ -290,6 +298,7 @@ google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQ
 google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 google.golang.org/protobuf v1.28.1/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+gopkg.in/square/go-jose.v2 v2.6.0/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/klog/v2 v2.90.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
@@ -298,3 +307,4 @@ k8s.io/kube-openapi v0.0.0-20230717233707-2695361300d9/go.mod h1:wZK2AVp1uHCp4Va
 k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
 k8s.io/utils v0.0.0-20230406110748-d93618cff8a2 h1:qY1Ad8PODbnymg2pRbkyMT/ylpTrCM8P2RJ0yroCyIk=
 k8s.io/utils v0.0.0-20230406110748-d93618cff8a2/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
+sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.1.2/go.mod h1:+qG7ISXqCDVVcyO8hLn12AKVYYUjM7ftlqsqmrhMZE0=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 6c426f274..b0cf83320 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -42,7 +42,7 @@ require (
 	github.com/spf13/pflag v1.0.5 // indirect
 	github.com/stretchr/testify v1.8.4 // indirect
 	github.com/tidwall/gjson v1.14.0 // indirect
-	golang.org/x/net v0.16.0 // indirect
+	golang.org/x/net v0.17.0 // indirect
 	golang.org/x/oauth2 v0.12.0 // indirect
 	golang.org/x/sys v0.13.0 // indirect
 	golang.org/x/term v0.13.0 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 29bcb59ac..b41bf8a06 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -527,8 +527,8 @@ golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20201202161906-c7110b5ffcbb/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
 golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.16.0 h1:7eBu7KsSvFDtSXUIDbh3aqlK4DPsZ1rByC8PFfBThos=
-golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
+golang.org/x/net v0.17.0 h1:pVaXccu2ozPjCXewfr1S7xza/zcXTity9cCdXQYSjIM=
+golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
diff --git a/internal/ingress/annotations/fastcgi/main.go b/internal/ingress/annotations/fastcgi/main.go
index 52384a969..9e7ab3c61 100644
--- a/internal/ingress/annotations/fastcgi/main.go
+++ b/internal/ingress/annotations/fastcgi/main.go
@@ -36,7 +36,10 @@ const (
 )
 
 // fast-cgi valid parameters is just a single file name (like index.php)
-var regexValidIndexAnnotationAndKey = regexp.MustCompile(`^[A-Za-z0-9.\-\_]+$`)
+var (
+	regexValidIndexAnnotationAndKey = regexp.MustCompile(`^[A-Za-z0-9.\-\_]+$`)
+	validFCGIValue                  = regexp.MustCompile(`^[A-Za-z0-9\-\_\$\{\}/.]*$`)
+)
 
 var fastCGIAnnotations = parser.Annotation{
 	Group: "fastcgi",
@@ -142,7 +145,7 @@ func (a fastcgi) Parse(ing *networking.Ingress) (interface{}, error) {
 	}
 
 	for k, v := range cmap.Data {
-		if !regexValidIndexAnnotationAndKey.MatchString(k) || !parser.NGINXVariable.MatchString(v) {
+		if !regexValidIndexAnnotationAndKey.MatchString(k) || !validFCGIValue.MatchString(v) {
 			klog.ErrorS(fmt.Errorf("fcgi contains invalid key or value"), "fcgi annotation error", "configmap", cmap.Name, "namespace", cmap.Namespace, "key", k, "value", v)
 			return fcgiConfig, ing_errors.NewValidationError(fastCGIParamsAnnotation)
 		}
diff --git a/internal/ingress/annotations/fastcgi/main_test.go b/internal/ingress/annotations/fastcgi/main_test.go
index bc5e2755f..f0bbc9d65 100644
--- a/internal/ingress/annotations/fastcgi/main_test.go
+++ b/internal/ingress/annotations/fastcgi/main_test.go
@@ -371,6 +371,18 @@ func Test_fastcgi_Parse(t *testing.T) {
 			want:    Config{Index: "indexxpto-92123.php"},
 			wantErr: true,
 		},
+		{
+			name:          "invalid configmap values val",
+			index:         "indexxpto-92123.php",
+			configmapname: "default/fcgiconfig",
+			configmap: map[string]string{
+				"SCRIPT_FILENAME": "/app/src/index.php",
+			},
+			want: Config{Index: "indexxpto-92123.php", Params: map[string]string{
+				"SCRIPT_FILENAME": "/app/src/index.php",
+			}},
+			wantErr: false,
+		},
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {
diff --git a/magefiles/go.mod b/magefiles/go.mod
index f2c56c79c..e846c884a 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -28,7 +28,7 @@ require (
 	github.com/rogpeppe/go-internal v1.11.0 // indirect
 	github.com/stretchr/testify v1.8.4 // indirect
 	golang.org/x/crypto v0.14.0 // indirect
-	golang.org/x/net v0.16.0 // indirect
+	golang.org/x/net v0.17.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/protobuf v1.31.0 // indirect
 	gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c // indirect
diff --git a/magefiles/go.sum b/magefiles/go.sum
index 32da55ddc..f89975c18 100644
--- a/magefiles/go.sum
+++ b/magefiles/go.sum
@@ -4,6 +4,7 @@ github.com/Masterminds/semver v1.5.0 h1:H65muMkzWKEuNDnfl9d70GUjFniHKHRbFPGBuZ3Q
 github.com/Masterminds/semver v1.5.0/go.mod h1:MB6lktGJrhw8PrUyiEoblNEGEQ+RzHPF078ddwwvV3Y=
 github.com/blang/semver/v4 v4.0.0 h1:1PFHFE6yCCTv8C1TeyNNarDzntLi7wMI5i/pzqYIsAM=
 github.com/blang/semver/v4 v4.0.0/go.mod h1:IbckMUScFkM3pff0VJDNKRiT6TG/YpiHIM2yvyW5YoQ=
+github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/cyphar/filepath-securejoin v0.2.4 h1:Ugdm7cg7i6ZK6x3xDF1oEu1nfkyfH53EtKeQYTC3kyg=
 github.com/cyphar/filepath-securejoin v0.2.4/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
@@ -12,16 +13,28 @@ github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSs
 github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960 h1:aRd8M7HJVZOqn/vhOzrGcQH0lNAMkqMn+pXUYkatmcA=
 github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960/go.mod h1:9HQzr9D/0PGwMEbC3d5AB7oi67+h4TsQqItC1GVYG58=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
+github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
 github.com/fsnotify/fsnotify v1.6.0 h1:n+5WquG0fcWoWp6xPWfHdbskMCQaFnG6PfBrh1Ky4HY=
+github.com/fsnotify/fsnotify v1.6.0/go.mod h1:sl3t1tCWJFWoRz9R8WJCbQihKKwmorjAbSClcnxKAGw=
 github.com/ghodss/yaml v1.0.0 h1:wQHKEahhL6wmXdzwWG11gIVCkOv05bNOh+Rxn0yngAk=
 github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
+github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
 github.com/gobwas/glob v0.2.3 h1:A4xDbljILXROh+kObIiy5kIaPYD8e96x1tgBhUI5J+Y=
 github.com/gobwas/glob v0.2.3/go.mod h1:d3Ez4x06l9bZtSvzIay5+Yzi0fmZzPgnTbPcKjJAkT8=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
+github.com/golang/protobuf v1.4.0-rc.1/go.mod h1:ceaxUfeHdC40wWswd/P6IGgMaK3YpKi5j83Wpe3EHw8=
+github.com/golang/protobuf v1.4.0-rc.1.0.20200221234624-67d41d38c208/go.mod h1:xKAWHe0F5eneWXFV3EuXVDTCmh+JuBKY0li0aMyXATA=
+github.com/golang/protobuf v1.4.0-rc.2/go.mod h1:LlEzMj4AhA7rCAGe4KMBDvJI+AwstrUpVNzEA03Pprs=
+github.com/golang/protobuf v1.4.0-rc.4.0.20200313231945-b860323f09d0/go.mod h1:WU3c8KckQ9AFe+yFwt9sWVRKCVIyN9cPHBJSNnbL67w=
+github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvqG2KuDX0=
+github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
 github.com/golang/protobuf v1.5.3 h1:KhyjKVUg7Usr/dYsdSqoFveMYd5ko72D+zANwlG1mmg=
 github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
+github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
+github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
+github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.9 h1:O2Tfq5qg4qc4AmwVlvv0oLiVAGB7enBSJ2x2DqQFi38=
@@ -34,20 +47,32 @@ github.com/helm/helm v2.17.0+incompatible h1:0iy95yMXrfWpwaoOA9XRP+cTvitTrq+LcJV
 github.com/helm/helm v2.17.0+incompatible/go.mod h1:ahXhuvluW4YnSL6W6hDVetZsVK8Pv4BP8OwKli7aMqo=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
+github.com/kr/pretty v0.2.1/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
 github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
+github.com/kr/pretty v0.3.1/go.mod h1:hoEshYVHaxMs3cyo3Yncou5ZscifuDolrwPKZanG3xk=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
+github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
 github.com/magefile/mage v1.15.0 h1:BvGheCMAsG3bWUDbZ8AyXXpCNwU9u5CB6sM+HNb9HYg=
 github.com/magefile/mage v1.15.0/go.mod h1:z5UZb/iS3GoOSn0JgWuiw7dxlurVYTu+/jHXqQg881A=
+github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
+github.com/nxadm/tail v1.4.8/go.mod h1:+ncqLTQzXmGhMZNUePPaPqPvBxHAIsmXswZKocGu+AU=
 github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.10.2/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
+github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
+github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
 github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
+github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
+github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.27.10 h1:naR28SdDFlqrG6kScpT8VWpu1xWY5nJRCF3XaYyBjhI=
+github.com/onsi/gomega v1.27.10/go.mod h1:RsS8tutOdbdgzbPtzzATp12yT7kM5I5aElG3evPbQ0M=
+github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
 github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
 github.com/rogpeppe/go-internal v1.11.0/go.mod h1:ddIwULY96R17DhadqLgMfk9H9tvdUzkipdSkR5nkCZA=
 github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
@@ -56,27 +81,61 @@ github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
 github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
+github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
 github.com/vmware-labs/yaml-jsonpath v0.3.2 h1:/5QKeCBGdsInyDCyVNLbXyilb61MXGi9NP674f9Hobk=
 github.com/vmware-labs/yaml-jsonpath v0.3.2/go.mod h1:U6whw1z03QyqgWdgXxvVnQ90zN1BWz5V+51Ewf8k+rQ=
+github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
+golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
+golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.14.0 h1:wBqGXzWJW6m1XrIKlAH0Hs1JJ7+9KBwnIO8v66Q9cHc=
+golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4=
+golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
+golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
-golang.org/x/net v0.16.0 h1:7eBu7KsSvFDtSXUIDbh3aqlK4DPsZ1rByC8PFfBThos=
+golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
+golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
+golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.17.0 h1:pVaXccu2ozPjCXewfr1S7xza/zcXTity9cCdXQYSjIM=
+golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/oauth2 v0.12.0 h1:smVPGxink+n1ZI5pkQa8y6fZT0RW0MgCO5bFpepy4B4=
 golang.org/x/oauth2 v0.12.0/go.mod h1:A74bZ3aGXgCY0qaIC9Ahg6Lglin4AMAco8cIv9baba4=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
+golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210112080510-489259a85091/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.13.0 h1:Af8nKPmuFypiUBjVoU9V20FiaFXOcuZI21p0ycVYYGE=
+golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
+golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.13.0 h1:ablQoSUd0tRdKxZewP80B+BaqeKJuVhuRxj/dkrun3k=
 golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
+golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
+golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
+golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
+golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/appengine v1.6.7 h1:FZR1q0exgwxzPzp/aF+VccGrSfxfPpkBqjIIEq3ru6c=
 google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
+google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
+google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
+google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
+google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miEFZTKqfCUM6K7xSMQL9OKL/b6hQv+e19PK+JZNE=
+google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo=
+google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
 google.golang.org/protobuf v1.31.0 h1:g0LDEJHgrBl9N9r17Ru3sqWhkIx2NB67okBHPwC7hs8=
@@ -84,12 +143,14 @@ google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqw
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
+gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
 gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
 gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+gopkg.in/yaml.v2 v2.3.0/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
 gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20191026110619-0b21df46bc1d/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
@@ -97,5 +158,6 @@ gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 k8s.io/apimachinery v0.27.6 h1:mGU8jmBq5o8mWBov+mLjdTBcU+etTE19waies4AQ6NE=
+k8s.io/apimachinery v0.27.6/go.mod h1:XNfZ6xklnMCOGGFNqXG7bUrQCoR04dh/E7FprV6pb+E=
 k8s.io/helm v2.17.0+incompatible h1:Bpn6o1wKLYqKM3+Osh8e+1/K2g/GsQJ4F4yNF2+deao=
 k8s.io/helm v2.17.0+incompatible/go.mod h1:LZzlS4LQBHfciFOurYBFkCMTaZ0D1l+p0teMg7TSULI=

From b1ac371dee236b78b5e745b81e23a01f41417750 Mon Sep 17 00:00:00 2001
From: Marcelo Cyreno <812725+marcelocyreno@users.noreply.github.com>
Date: Wed, 18 Oct 2023 22:43:20 -0300
Subject: [PATCH 0984/1641] Documenting flag `enable-auth-access-log` (#10518)
 (#10535)

---
 docs/user-guide/nginx-configuration/configmap.md | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 16a3ef28b..318343835 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -39,6 +39,7 @@ The following table shows a configuration option's name, type, and the default v
 |[http-access-log-path](#http-access-log-path)|string|""||
 |[stream-access-log-path](#stream-access-log-path)|string|""||
 |[enable-access-log-for-default-backend](#enable-access-log-for-default-backend)|bool|"false"||
+|[enable-auth-access-log](#enable-auth-access-log)|bool|"false"||
 |[error-log-path](#error-log-path)|string|"/var/log/nginx/error.log"||
 |[enable-modsecurity](#enable-modsecurity)|bool|"false"||
 |[modsecurity-snippet](#modsecurity-snippet)|string|""||
@@ -326,6 +327,10 @@ __Note:__ If not specified, the `access-log-path` will be used.
 
 Enables logging access to default backend. _**default:**_ is disabled.
 
+## enable-auth-access-log
+
+Enables logging access to the authentication endpoint. _**default:**_ is disabled.
+
 ## error-log-path
 
 Error log path. Goes to `/var/log/nginx/error.log` by default.

From 72fb480b8129f53195656d05fb2f93f40caa0ec6 Mon Sep 17 00:00:00 2001
From: Able Lv <26692080+able8@users.noreply.github.com>
Date: Tue, 24 Oct 2023 09:40:56 +0800
Subject: [PATCH 0985/1641] Fix list item format on troubleshooting.md (#10552)

---
 docs/troubleshooting.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/docs/troubleshooting.md b/docs/troubleshooting.md
index e1fd6956e..0d2004092 100644
--- a/docs/troubleshooting.md
+++ b/docs/troubleshooting.md
@@ -419,6 +419,7 @@ spec:
     operator: "Exists"
     effect: NoSchedule
 ```
+
 * update the namespace if applicable/desired
 * replace `##_NODE_NAME_##` with the problematic node (or remove nodeSelector section if problem is not confined to one node)
 * replace `##_CONTROLLER_IMAGE_##` with the same image as in use by your ingress-nginx deployment
@@ -445,6 +446,7 @@ $ capsh --decode=0000000000000400
 ## Create a test pod as root
 (Note, this may be restricted by PodSecurityPolicy, PodSecurityAdmission/Standards, OPA Gatekeeper, etc. in which case you will need to do the appropriate workaround for testing, e.g. deploy in a new namespace without the restrictions.)
 To test further you may want to install additional utilities, etc.  Modify the pod yaml by:
+
 * changing runAsUser from 101 to 0
 * removing the "drop..ALL" section from the capabilities.
 

From 560771ee80d037917c952fbfe7326268b42f9a1b Mon Sep 17 00:00:00 2001
From: Able Lv <26692080+able8@users.noreply.github.com>
Date: Tue, 24 Oct 2023 09:43:29 +0800
Subject: [PATCH 0986/1641]  Docs: Fixed broken link of "synchronization loop
 pattern" on how-it-works.md (#10554)

---
 docs/how-it-works.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/how-it-works.md b/docs/how-it-works.md
index 161803210..4542921c7 100644
--- a/docs/how-it-works.md
+++ b/docs/how-it-works.md
@@ -58,13 +58,13 @@ In a relatively big cluster with frequently deploying apps this feature saves si
 
 ### Avoiding outage from wrong configuration
 
-Because the ingress controller works using the [synchronization loop pattern](https://coreos.com/kubernetes/docs/latest/replication-controller.html#the-reconciliation-loop-in-detail), it is applying the configuration for all matching objects. In case some Ingress objects have a broken configuration, for example a syntax error in the `nginx.ingress.kubernetes.io/configuration-snippet` annotation, the generated configuration becomes invalid, does not reload and hence no more ingresses will be taken into account.
+Because the ingress controller works using the [synchronization loop pattern][1], it is applying the configuration for all matching objects. In case some Ingress objects have a broken configuration, for example a syntax error in the `nginx.ingress.kubernetes.io/configuration-snippet` annotation, the generated configuration becomes invalid, does not reload and hence no more ingresses will be taken into account.
 
 To prevent this situation to happen, the Ingress-Nginx Controller optionally exposes a [validating admission webhook server][8] to ensure the validity of incoming ingress objects.
 This webhook appends the incoming ingress objects to the list of ingresses, generates the configuration and calls nginx to ensure the configuration has no syntax errors.
 
 [0]: https://github.com/openresty/lua-nginx-module/pull/1259
-[1]: https://coreos.com/kubernetes/docs/latest/replication-controller.html#the-reconciliation-loop-in-detail
+[1]: https://github.com/coreos/docs/blob/master/kubernetes/replication-controller.md#the-reconciliation-loop-in-detail
 [2]: https://godoc.org/k8s.io/client-go/informers#NewFilteredSharedInformerFactory
 [3]: https://godoc.org/k8s.io/client-go/tools/cache#ResourceEventHandlerFuncs
 [4]: https://github.com/kubernetes/ingress-nginx/blob/main/internal/task/queue.go#L38

From b97bc81b38c2d967c8142006aa14cb14d9005ec8 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Tue, 24 Oct 2023 08:38:14 +0530
Subject: [PATCH 0987/1641] changed readme as per issue 10556 (#10558)

---
 README.md | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/README.md b/README.md
index 071ee69ff..0dad0c167 100644
--- a/README.md
+++ b/README.md
@@ -38,11 +38,11 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 
 |  Supported  | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
 |:--:|-----------------------|------------------------------|----------------|---------------|------------------------------|
-| 🔄 | **v1.9.3**            | 1.28, 1.27,1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
-| 🔄 | **v1.9.1**            | 1.28, 1.27,1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
+| 🔄 | **v1.9.3**            | 1.28, 1.27,1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
+| 🔄 | **v1.9.1**            | 1.28, 1.27,1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
 | 🔄 | **v1.9.0**            | 1.28, 1.27,1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
-| 🔄 | **v1.8.2**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
 | 🔄 | **v1.8.4**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
+| 🔄 | **v1.8.2**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
 | 🔄 | **v1.8.1**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
 | 🔄 | **v1.8.0**            | 1.27,1.26, 1.25, 1.24        | 3.18.0         | 1.21.6        | 4.7.*              |
 | 🔄 | **v1.7.1**            | 1.27,1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |

From 7ce6cc88d8501628fd0fe1fb882579ad7d2a95fe Mon Sep 17 00:00:00 2001
From: jasine <jasinechen@gmail.com>
Date: Wed, 25 Oct 2023 01:53:46 +0800
Subject: [PATCH 0988/1641] feat: add namespace overrides (#10539)

* feat: add namespace overrides

* add value in readme

* fix: readme description

* fix: description in value

* fix: set max length and trim last "-"
---
 charts/ingress-nginx/README.md                       |  1 +
 charts/ingress-nginx/templates/NOTES.txt             | 12 ++++++------
 charts/ingress-nginx/templates/_helpers.tpl          | 11 +++++++++++
 .../templates/admission-webhooks/cert-manager.yaml   | 12 ++++++------
 .../job-patch/clusterrolebinding.yaml                |  2 +-
 .../job-patch/job-createSecret.yaml                  |  2 +-
 .../job-patch/job-patchWebhook.yaml                  |  2 +-
 .../admission-webhooks/job-patch/networkpolicy.yaml  |  2 +-
 .../templates/admission-webhooks/job-patch/role.yaml |  4 ++--
 .../admission-webhooks/job-patch/rolebinding.yaml    |  4 ++--
 .../admission-webhooks/job-patch/serviceaccount.yaml |  2 +-
 .../admission-webhooks/validating-webhook.yaml       |  2 +-
 .../ingress-nginx/templates/clusterrolebinding.yaml  |  2 +-
 .../templates/controller-configmap-addheaders.yaml   |  2 +-
 .../templates/controller-configmap-proxyheaders.yaml |  2 +-
 .../templates/controller-configmap-tcp.yaml          |  2 +-
 .../templates/controller-configmap-udp.yaml          |  2 +-
 .../templates/controller-configmap.yaml              |  8 ++++----
 .../templates/controller-daemonset.yaml              |  2 +-
 .../templates/controller-deployment.yaml             |  2 +-
 charts/ingress-nginx/templates/controller-hpa.yaml   |  2 +-
 .../templates/controller-networkpolicy.yaml          |  2 +-
 .../templates/controller-poddisruptionbudget.yaml    |  2 +-
 charts/ingress-nginx/templates/controller-role.yaml  |  2 +-
 .../templates/controller-rolebinding.yaml            |  4 ++--
 .../ingress-nginx/templates/controller-secret.yaml   |  2 +-
 .../templates/controller-service-internal.yaml       |  2 +-
 .../templates/controller-service-metrics.yaml        |  2 +-
 .../templates/controller-service-webhook.yaml        |  2 +-
 .../ingress-nginx/templates/controller-service.yaml  |  2 +-
 .../templates/controller-serviceaccount.yaml         |  2 +-
 .../templates/controller-servicemonitor.yaml         |  4 ++--
 .../templates/default-backend-deployment.yaml        |  2 +-
 .../ingress-nginx/templates/default-backend-hpa.yaml |  2 +-
 .../templates/default-backend-networkpolicy.yaml     |  2 +-
 .../default-backend-poddisruptionbudget.yaml         |  2 +-
 .../templates/default-backend-role.yaml              |  2 +-
 .../templates/default-backend-rolebinding.yaml       |  4 ++--
 .../templates/default-backend-service.yaml           |  2 +-
 .../templates/default-backend-serviceaccount.yaml    |  2 +-
 charts/ingress-nginx/values.yaml                     |  5 ++++-
 41 files changed, 72 insertions(+), 57 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 31890e175..9adc87212 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -498,6 +498,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.updateStrategy | object | `{}` | The update strategy to apply to the Deployment or DaemonSet # |
 | dhParam | string | `""` | A base64-encoded Diffie-Hellman parameter. This can be generated with: `openssl dhparam 4096 2> /dev/null | base64` # Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param |
 | imagePullSecrets | list | `[]` | Optional array of imagePullSecrets containing private registry credentials # Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ |
+| namespaceOverride | string | `""` | Override the deployment namespace; defaults to .Release.Namespace |
 | podSecurityPolicy.enabled | bool | `false` |  |
 | portNamePrefix | string | `""` | Prefix for TCP and UDP ports names in ingress controller service # Some cloud providers, like Yandex Cloud may have a requirements for a port name regex to support cloud load balancer integration |
 | rbac.create | bool | `true` |  |
diff --git a/charts/ingress-nginx/templates/NOTES.txt b/charts/ingress-nginx/templates/NOTES.txt
index 9fe35c785..72267e13f 100644
--- a/charts/ingress-nginx/templates/NOTES.txt
+++ b/charts/ingress-nginx/templates/NOTES.txt
@@ -6,24 +6,24 @@ Get the application URL by running these commands:
 {{- if (not (empty .Values.controller.service.nodePorts.http)) }}
   export HTTP_NODE_PORT={{ .Values.controller.service.nodePorts.http }}
 {{- else }}
-  export HTTP_NODE_PORT=$(kubectl --namespace {{ .Release.Namespace }} get services -o jsonpath="{.spec.ports[0].nodePort}" {{ include "ingress-nginx.controller.fullname" . }})
+  export HTTP_NODE_PORT=$(kubectl --namespace {{ include "ingress-nginx.namespace" . }} get services -o jsonpath="{.spec.ports[0].nodePort}" {{ include "ingress-nginx.controller.fullname" . }})
 {{- end }}
 {{- if (not (empty .Values.controller.service.nodePorts.https)) }}
   export HTTPS_NODE_PORT={{ .Values.controller.service.nodePorts.https }}
 {{- else }}
-  export HTTPS_NODE_PORT=$(kubectl --namespace {{ .Release.Namespace }} get services -o jsonpath="{.spec.ports[1].nodePort}" {{ include "ingress-nginx.controller.fullname" . }})
+  export HTTPS_NODE_PORT=$(kubectl --namespace {{ include "ingress-nginx.namespace" . }} get services -o jsonpath="{.spec.ports[1].nodePort}" {{ include "ingress-nginx.controller.fullname" . }})
 {{- end }}
-  export NODE_IP=$(kubectl --namespace {{ .Release.Namespace }} get nodes -o jsonpath="{.items[0].status.addresses[1].address}")
+  export NODE_IP=$(kubectl --namespace {{ include "ingress-nginx.namespace" . }} get nodes -o jsonpath="{.items[0].status.addresses[1].address}")
 
   echo "Visit http://$NODE_IP:$HTTP_NODE_PORT to access your application via HTTP."
   echo "Visit https://$NODE_IP:$HTTPS_NODE_PORT to access your application via HTTPS."
 {{- else if contains "LoadBalancer" .Values.controller.service.type }}
 It may take a few minutes for the LoadBalancer IP to be available.
-You can watch the status by running 'kubectl --namespace {{ .Release.Namespace }} get services -o wide -w {{ include "ingress-nginx.controller.fullname" . }}'
+You can watch the status by running 'kubectl --namespace {{ include "ingress-nginx.namespace" . }} get services -o wide -w {{ include "ingress-nginx.controller.fullname" . }}'
 {{- else if contains "ClusterIP"  .Values.controller.service.type }}
 Get the application URL by running these commands:
-  export POD_NAME=$(kubectl --namespace {{ .Release.Namespace }} get pods -o jsonpath="{.items[0].metadata.name}" -l "app={{ template "ingress-nginx.name" . }},component={{ .Values.controller.name }},release={{ .Release.Name }}")
-  kubectl --namespace {{ .Release.Namespace }} port-forward $POD_NAME 8080:80
+  export POD_NAME=$(kubectl --namespace {{ include "ingress-nginx.namespace" . }} get pods -o jsonpath="{.items[0].metadata.name}" -l "app={{ template "ingress-nginx.name" . }},component={{ .Values.controller.name }},release={{ .Release.Name }}")
+  kubectl --namespace {{ include "ingress-nginx.namespace" . }} port-forward $POD_NAME 8080:80
   echo "Visit http://127.0.0.1:8080 to access your application."
 {{- end }}
 
diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index bd268cfb2..1117ddef9 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -30,6 +30,17 @@ We truncate at 63 chars because some Kubernetes name fields are limited to this
 {{- end -}}
 {{- end -}}
 
+{{/*
+Allow the release namespace to be overridden for multi-namespace deployments in combined charts
+*/}}
+{{- define "ingress-nginx.namespace" -}}
+  {{- if .Values.namespaceOverride -}}
+    {{- .Values.namespaceOverride | trunc 63 | trimSuffix "-" -}}
+  {{- else -}}
+    {{- .Release.Namespace -}}
+  {{- end -}}
+{{- end -}}
+
 
 {{/*
 Container SecurityContext.
diff --git a/charts/ingress-nginx/templates/admission-webhooks/cert-manager.yaml b/charts/ingress-nginx/templates/admission-webhooks/cert-manager.yaml
index 55fab471c..c174422cf 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/cert-manager.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/cert-manager.yaml
@@ -6,7 +6,7 @@ apiVersion: cert-manager.io/v1
 kind: Issuer
 metadata:
   name: {{ include "ingress-nginx.fullname" . }}-self-signed-issuer
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   selfSigned: {}
 ---
@@ -15,7 +15,7 @@ apiVersion: cert-manager.io/v1
 kind: Certificate
 metadata:
   name: {{ include "ingress-nginx.fullname" . }}-root-cert
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   secretName: {{ include "ingress-nginx.fullname" . }}-root-cert
   duration: {{ .Values.controller.admissionWebhooks.certManager.rootCert.duration | default "43800h0m0s" | quote }}
@@ -32,7 +32,7 @@ apiVersion: cert-manager.io/v1
 kind: Issuer
 metadata:
   name: {{ include "ingress-nginx.fullname" . }}-root-issuer
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   ca:
     secretName: {{ include "ingress-nginx.fullname" . }}-root-cert
@@ -43,7 +43,7 @@ apiVersion: cert-manager.io/v1
 kind: Certificate
 metadata:
   name: {{ include "ingress-nginx.fullname" . }}-admission
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   secretName: {{ include "ingress-nginx.fullname" . }}-admission
   duration: {{ .Values.controller.admissionWebhooks.certManager.admissionCert.duration | default "8760h0m0s" | quote }}
@@ -55,8 +55,8 @@ spec:
     {{- end }}
   dnsNames:
     - {{ include "ingress-nginx.controller.fullname" . }}-admission
-    - {{ include "ingress-nginx.controller.fullname" . }}-admission.{{ .Release.Namespace }}
-    - {{ include "ingress-nginx.controller.fullname" . }}-admission.{{ .Release.Namespace }}.svc
+    - {{ include "ingress-nginx.controller.fullname" . }}-admission.{{ include "ingress-nginx.namespace" . }}
+    - {{ include "ingress-nginx.controller.fullname" . }}-admission.{{ include "ingress-nginx.namespace" . }}.svc
   subject:
     organizations:
       - ingress-nginx-admission
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
index 871953261..00081b50a 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
@@ -19,5 +19,5 @@ roleRef:
 subjects:
   - kind: ServiceAccount
     name: {{ include "ingress-nginx.fullname" . }}-admission
-    namespace: {{ .Release.Namespace | quote }}
+    namespace: {{ (include "ingress-nginx.namespace" .) | quote }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
index d93433ecd..39608d264 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
@@ -3,7 +3,7 @@ apiVersion: batch/v1
 kind: Job
 metadata:
   name: {{ include "ingress-nginx.fullname" . }}-admission-create
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade
     "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
index 0fa3ff9a2..b1b21cdaa 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
@@ -3,7 +3,7 @@ apiVersion: batch/v1
 kind: Job
 metadata:
   name: {{ include "ingress-nginx.fullname" . }}-admission-patch
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
   annotations:
     "helm.sh/hook": post-install,post-upgrade
     "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml
index d59da7c9c..a1ae3c0ab 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml
@@ -3,7 +3,7 @@ apiVersion: networking.k8s.io/v1
 kind: NetworkPolicy
 metadata:
   name: {{ include "ingress-nginx.fullname" . }}-admission
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
     "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
index ea7c20818..ef463100d 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
@@ -2,8 +2,8 @@
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  name: {{ include "ingress-nginx.fullname" . }}-admission
-  namespace: {{ .Release.Namespace }}
+  name:  {{ include "ingress-nginx.fullname" . }}-admission
+  namespace: {{ include "ingress-nginx.namespace" . }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
     "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
index 60c3f4ff0..7548a9f36 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
@@ -3,7 +3,7 @@ apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
   name: {{ include "ingress-nginx.fullname" . }}-admission
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
     "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
@@ -20,5 +20,5 @@ roleRef:
 subjects:
   - kind: ServiceAccount
     name: {{ include "ingress-nginx.fullname" . }}-admission
-    namespace: {{ .Release.Namespace | quote }}
+    namespace: {{ (include "ingress-nginx.namespace" .) | quote }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
index 00be54ec5..814aec91a 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
@@ -3,7 +3,7 @@ apiVersion: v1
 kind: ServiceAccount
 metadata:
   name: {{ include "ingress-nginx.fullname" . }}-admission
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
     "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
diff --git a/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
index f27244dc9..da001e839 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
@@ -38,7 +38,7 @@ webhooks:
       - v1
     clientConfig:
       service:
-        namespace: {{ .Release.Namespace | quote }}
+        namespace: {{ (include "ingress-nginx.namespace" .) | quote }}
         name: {{ include "ingress-nginx.controller.fullname" . }}-admission
         path: /networking/v1/ingresses
     {{- if .Values.controller.admissionWebhooks.timeoutSeconds }}
diff --git a/charts/ingress-nginx/templates/clusterrolebinding.yaml b/charts/ingress-nginx/templates/clusterrolebinding.yaml
index acbbd8b10..a38f84e80 100644
--- a/charts/ingress-nginx/templates/clusterrolebinding.yaml
+++ b/charts/ingress-nginx/templates/clusterrolebinding.yaml
@@ -15,5 +15,5 @@ roleRef:
 subjects:
   - kind: ServiceAccount
     name: {{ template "ingress-nginx.serviceAccountName" . }}
-    namespace: {{ .Release.Namespace | quote }}
+    namespace: {{ (include "ingress-nginx.namespace" .) | quote }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-configmap-addheaders.yaml b/charts/ingress-nginx/templates/controller-configmap-addheaders.yaml
index dfd49a126..4e4bd1310 100644
--- a/charts/ingress-nginx/templates/controller-configmap-addheaders.yaml
+++ b/charts/ingress-nginx/templates/controller-configmap-addheaders.yaml
@@ -9,6 +9,6 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.fullname" . }}-custom-add-headers
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 data: {{ toYaml .Values.controller.addHeaders | nindent 2 }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-configmap-proxyheaders.yaml b/charts/ingress-nginx/templates/controller-configmap-proxyheaders.yaml
index 38feb721f..0a22600db 100644
--- a/charts/ingress-nginx/templates/controller-configmap-proxyheaders.yaml
+++ b/charts/ingress-nginx/templates/controller-configmap-proxyheaders.yaml
@@ -9,6 +9,6 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.fullname" . }}-custom-proxy-headers
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 data: {{ toYaml .Values.controller.proxySetHeaders | nindent 2 }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-configmap-tcp.yaml b/charts/ingress-nginx/templates/controller-configmap-tcp.yaml
index 0f6088ea9..131a9ad51 100644
--- a/charts/ingress-nginx/templates/controller-configmap-tcp.yaml
+++ b/charts/ingress-nginx/templates/controller-configmap-tcp.yaml
@@ -12,6 +12,6 @@ metadata:
   annotations: {{ toYaml .Values.controller.tcp.annotations | nindent 4 }}
 {{- end }}
   name: {{ include "ingress-nginx.fullname" . }}-tcp
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 data: {{ tpl (toYaml .Values.tcp) . | nindent 2 }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-configmap-udp.yaml b/charts/ingress-nginx/templates/controller-configmap-udp.yaml
index 3772ec514..7137da9ad 100644
--- a/charts/ingress-nginx/templates/controller-configmap-udp.yaml
+++ b/charts/ingress-nginx/templates/controller-configmap-udp.yaml
@@ -12,6 +12,6 @@ metadata:
   annotations: {{ toYaml .Values.controller.udp.annotations | nindent 4 }}
 {{- end }}
   name: {{ include "ingress-nginx.fullname" . }}-udp
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 data: {{ tpl (toYaml .Values.udp) . | nindent 2 }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-configmap.yaml b/charts/ingress-nginx/templates/controller-configmap.yaml
index 9ec2b8369..662a16204 100644
--- a/charts/ingress-nginx/templates/controller-configmap.yaml
+++ b/charts/ingress-nginx/templates/controller-configmap.yaml
@@ -11,17 +11,17 @@ metadata:
   annotations: {{ toYaml .Values.controller.configAnnotations | nindent 4 }}
 {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 data:
   allow-snippet-annotations: "{{ .Values.controller.allowSnippetAnnotations }}"
 {{- if .Values.controller.addHeaders }}
-  add-headers: {{ .Release.Namespace }}/{{ include "ingress-nginx.fullname" . }}-custom-add-headers
+  add-headers: {{ include "ingress-nginx.namespace" . }}/{{ include "ingress-nginx.fullname" . }}-custom-add-headers
 {{- end }}
 {{- if .Values.controller.proxySetHeaders }}
-  proxy-set-headers: {{ .Release.Namespace }}/{{ include "ingress-nginx.fullname" . }}-custom-proxy-headers
+  proxy-set-headers: {{ include "ingress-nginx.namespace" . }}/{{ include "ingress-nginx.fullname" . }}-custom-proxy-headers
 {{- end }}
 {{- if .Values.dhParam }}
-  ssl-dh-param: {{ .Release.Namespace }}/{{ include "ingress-nginx.controller.fullname" . }}
+  ssl-dh-param: {{ include "ingress-nginx.namespace" . }}/{{ include "ingress-nginx.controller.fullname" . }}
 {{- end }}
 {{- range $key, $value := .Values.controller.config }}
   {{- $key | nindent 2 }}: {{ $value | quote }}
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 6a06c3215..857eac6b0 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -10,7 +10,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
   {{- if .Values.controller.annotations }}
   annotations: {{ toYaml .Values.controller.annotations | nindent 4 }}
   {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 7347ee8b8..ca481d3be 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -10,7 +10,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
   {{- if .Values.controller.annotations }}
   annotations: {{ toYaml .Values.controller.annotations | nindent 4 }}
   {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-hpa.yaml b/charts/ingress-nginx/templates/controller-hpa.yaml
index e531df2e6..ec9ad7380 100644
--- a/charts/ingress-nginx/templates/controller-hpa.yaml
+++ b/charts/ingress-nginx/templates/controller-hpa.yaml
@@ -12,7 +12,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   scaleTargetRef:
     apiVersion: apps/v1
diff --git a/charts/ingress-nginx/templates/controller-networkpolicy.yaml b/charts/ingress-nginx/templates/controller-networkpolicy.yaml
index 15d6012f7..e68f9916d 100644
--- a/charts/ingress-nginx/templates/controller-networkpolicy.yaml
+++ b/charts/ingress-nginx/templates/controller-networkpolicy.yaml
@@ -9,7 +9,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   podSelector:
     matchLabels:
diff --git a/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml b/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
index 91be5801f..8cb7d4b97 100644
--- a/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
+++ b/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
@@ -9,7 +9,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
   {{- if .Values.controller.annotations }}
   annotations: {{ toYaml .Values.controller.annotations | nindent 4 }}
   {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-role.yaml b/charts/ingress-nginx/templates/controller-role.yaml
index d1aa9aac7..f6217a29a 100644
--- a/charts/ingress-nginx/templates/controller-role.yaml
+++ b/charts/ingress-nginx/templates/controller-role.yaml
@@ -9,7 +9,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 rules:
   - apiGroups:
       - ""
diff --git a/charts/ingress-nginx/templates/controller-rolebinding.yaml b/charts/ingress-nginx/templates/controller-rolebinding.yaml
index e846a1183..cdd1ec225 100644
--- a/charts/ingress-nginx/templates/controller-rolebinding.yaml
+++ b/charts/ingress-nginx/templates/controller-rolebinding.yaml
@@ -9,7 +9,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 roleRef:
   apiGroup: rbac.authorization.k8s.io
   kind: Role
@@ -17,5 +17,5 @@ roleRef:
 subjects:
   - kind: ServiceAccount
     name: {{ template "ingress-nginx.serviceAccountName" . }}
-    namespace: {{ .Release.Namespace | quote }}
+    namespace: {{ (include "ingress-nginx.namespace" .) | quote }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-secret.yaml b/charts/ingress-nginx/templates/controller-secret.yaml
index f3744232f..f20f53469 100644
--- a/charts/ingress-nginx/templates/controller-secret.yaml
+++ b/charts/ingress-nginx/templates/controller-secret.yaml
@@ -9,7 +9,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 data:
   dhparam.pem: {{ .Values.dhParam }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-service-internal.yaml b/charts/ingress-nginx/templates/controller-service-internal.yaml
index 3966b3260..4608a4902 100644
--- a/charts/ingress-nginx/templates/controller-service-internal.yaml
+++ b/charts/ingress-nginx/templates/controller-service-internal.yaml
@@ -13,7 +13,7 @@ metadata:
     {{- toYaml .Values.controller.service.labels | nindent 4 }}
   {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}-internal
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   type: "{{ .Values.controller.service.type }}"
 {{- if .Values.controller.service.internal.loadBalancerIP }}
diff --git a/charts/ingress-nginx/templates/controller-service-metrics.yaml b/charts/ingress-nginx/templates/controller-service-metrics.yaml
index b178401c9..7c153295f 100644
--- a/charts/ingress-nginx/templates/controller-service-metrics.yaml
+++ b/charts/ingress-nginx/templates/controller-service-metrics.yaml
@@ -12,7 +12,7 @@ metadata:
     {{- toYaml .Values.controller.metrics.service.labels | nindent 4 }}
   {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}-metrics
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   type: {{ .Values.controller.metrics.service.type }}
 {{- if .Values.controller.metrics.service.clusterIP }}
diff --git a/charts/ingress-nginx/templates/controller-service-webhook.yaml b/charts/ingress-nginx/templates/controller-service-webhook.yaml
index 2aae24fcf..2d02e23aa 100644
--- a/charts/ingress-nginx/templates/controller-service-webhook.yaml
+++ b/charts/ingress-nginx/templates/controller-service-webhook.yaml
@@ -12,7 +12,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}-admission
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   type: {{ .Values.controller.admissionWebhooks.service.type }}
 {{- if .Values.controller.admissionWebhooks.service.clusterIP }}
diff --git a/charts/ingress-nginx/templates/controller-service.yaml b/charts/ingress-nginx/templates/controller-service.yaml
index f079fd4d8..1daec5b48 100644
--- a/charts/ingress-nginx/templates/controller-service.yaml
+++ b/charts/ingress-nginx/templates/controller-service.yaml
@@ -13,7 +13,7 @@ metadata:
     {{- toYaml .Values.controller.service.labels | nindent 4 }}
   {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   type: {{ .Values.controller.service.type }}
 {{- if .Values.controller.service.clusterIP }}
diff --git a/charts/ingress-nginx/templates/controller-serviceaccount.yaml b/charts/ingress-nginx/templates/controller-serviceaccount.yaml
index e9e9f32ef..df83de3d0 100644
--- a/charts/ingress-nginx/templates/controller-serviceaccount.yaml
+++ b/charts/ingress-nginx/templates/controller-serviceaccount.yaml
@@ -9,7 +9,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ template "ingress-nginx.serviceAccountName" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
   {{- if .Values.serviceAccount.annotations }}
   annotations: {{ toYaml .Values.serviceAccount.annotations | nindent 4 }}
   {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-servicemonitor.yaml b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
index 482fe7f3c..bf3734b73 100644
--- a/charts/ingress-nginx/templates/controller-servicemonitor.yaml
+++ b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
@@ -6,7 +6,7 @@ metadata:
 {{- if .Values.controller.metrics.serviceMonitor.namespace }}
   namespace: {{ .Values.controller.metrics.serviceMonitor.namespace | quote }}
 {{- else }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 {{- end }}
   labels:
     {{- include "ingress-nginx.labels" . | nindent 4 }}
@@ -35,7 +35,7 @@ spec:
 {{- else }}
   namespaceSelector:
     matchNames:
-      - {{ .Release.Namespace }}
+      - {{ include "ingress-nginx.namespace" . }}
 {{- end }}
 {{- if .Values.controller.metrics.serviceMonitor.targetLabels }}
   targetLabels:
diff --git a/charts/ingress-nginx/templates/default-backend-deployment.yaml b/charts/ingress-nginx/templates/default-backend-deployment.yaml
index 87aced49d..44c3732b0 100644
--- a/charts/ingress-nginx/templates/default-backend-deployment.yaml
+++ b/charts/ingress-nginx/templates/default-backend-deployment.yaml
@@ -9,7 +9,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.defaultBackend.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   selector:
     matchLabels:
diff --git a/charts/ingress-nginx/templates/default-backend-hpa.yaml b/charts/ingress-nginx/templates/default-backend-hpa.yaml
index faaf4fa75..699323897 100644
--- a/charts/ingress-nginx/templates/default-backend-hpa.yaml
+++ b/charts/ingress-nginx/templates/default-backend-hpa.yaml
@@ -12,7 +12,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.defaultBackend.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   scaleTargetRef:
     apiVersion: apps/v1
diff --git a/charts/ingress-nginx/templates/default-backend-networkpolicy.yaml b/charts/ingress-nginx/templates/default-backend-networkpolicy.yaml
index f3a012657..90b3c2ba0 100644
--- a/charts/ingress-nginx/templates/default-backend-networkpolicy.yaml
+++ b/charts/ingress-nginx/templates/default-backend-networkpolicy.yaml
@@ -9,7 +9,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.defaultBackend.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   podSelector:
     matchLabels:
diff --git a/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml b/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
index 00891cee5..f869e4530 100644
--- a/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
+++ b/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
@@ -10,7 +10,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.defaultBackend.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   selector:
     matchLabels:
diff --git a/charts/ingress-nginx/templates/default-backend-role.yaml b/charts/ingress-nginx/templates/default-backend-role.yaml
index a2b457c36..dd7868aa0 100644
--- a/charts/ingress-nginx/templates/default-backend-role.yaml
+++ b/charts/ingress-nginx/templates/default-backend-role.yaml
@@ -9,7 +9,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.fullname" . }}-backend
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 rules:
   - apiGroups:      [{{ template "podSecurityPolicy.apiGroup" . }}]
     resources:      ['podsecuritypolicies']
diff --git a/charts/ingress-nginx/templates/default-backend-rolebinding.yaml b/charts/ingress-nginx/templates/default-backend-rolebinding.yaml
index dbaa516b9..70064e85e 100644
--- a/charts/ingress-nginx/templates/default-backend-rolebinding.yaml
+++ b/charts/ingress-nginx/templates/default-backend-rolebinding.yaml
@@ -9,7 +9,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.fullname" . }}-backend
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 roleRef:
   apiGroup: rbac.authorization.k8s.io
   kind: Role
@@ -17,5 +17,5 @@ roleRef:
 subjects:
   - kind: ServiceAccount
     name: {{ template "ingress-nginx.defaultBackend.serviceAccountName" . }}
-    namespace: {{ .Release.Namespace | quote }}
+    namespace: {{ (include "ingress-nginx.namespace" .) | quote }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/default-backend-service.yaml b/charts/ingress-nginx/templates/default-backend-service.yaml
index 5f1d09a95..2cccd6e9e 100644
--- a/charts/ingress-nginx/templates/default-backend-service.yaml
+++ b/charts/ingress-nginx/templates/default-backend-service.yaml
@@ -12,7 +12,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.defaultBackend.fullname" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   type: {{ .Values.defaultBackend.service.type }}
 {{- if .Values.defaultBackend.service.clusterIP }}
diff --git a/charts/ingress-nginx/templates/default-backend-serviceaccount.yaml b/charts/ingress-nginx/templates/default-backend-serviceaccount.yaml
index b45a95ad2..2afaf0c04 100644
--- a/charts/ingress-nginx/templates/default-backend-serviceaccount.yaml
+++ b/charts/ingress-nginx/templates/default-backend-serviceaccount.yaml
@@ -9,6 +9,6 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ template "ingress-nginx.defaultBackend.serviceAccountName" . }}
-  namespace: {{ .Release.Namespace }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 automountServiceAccountToken: {{ .Values.defaultBackend.serviceAccount.automountServiceAccountToken }}
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 890282233..099dfe6bb 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -7,6 +7,9 @@
 # nameOverride:
 # fullnameOverride:
 
+# -- Override the deployment namespace; defaults to .Release.Namespace
+namespaceOverride: ""
+
 ## Labels to apply to all resources
 ##
 commonLabels: {}
@@ -699,7 +702,7 @@ controller:
       ## jobLabel: "app.kubernetes.io/name"
       namespace: ""
       namespaceSelector: {}
-      ## Default: scrape .Release.Namespace only
+      ## Default: scrape .Release.Namespace or namespaceOverride only
       ## To scrape all, use the following:
       ## namespaceSelector:
       ##   any: true

From 15021952e10c263a5bf50cee09fa735a1dea6ce7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 24 Oct 2023 20:55:07 +0200
Subject: [PATCH 0989/1641] Bump actions/checkout from 4.1.0 to 4.1.1 (#10551)

Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/8ade135a41bc03ea155e62e844d188df1ea18608...b4ffde65f46336ab88eb53be808477a3936bae11)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 20 ++++++++++----------
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/golangci-lint.yml        |  2 +-
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  2 +-
 .github/workflows/vulnerability-scans.yaml |  4 ++--
 9 files changed, 21 insertions(+), 21 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 21e425cdd..1203be01b 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -42,7 +42,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -69,7 +69,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       
       - name: Set up Go
         id: go
@@ -90,7 +90,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: Set up Go
         id: go
@@ -155,7 +155,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: Setup Go
         uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
@@ -230,7 +230,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -278,7 +278,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -329,7 +329,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
@@ -372,7 +372,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
@@ -409,7 +409,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
@@ -481,7 +481,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter-images
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index c6e1d2f93..df004169f 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@6c5ccdad469c9f8a2996bfecaec55a631a347034 # v3.1.0
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 15ac29758..ab315b3d3 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index d2ecea1db..d3118d469 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -19,7 +19,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       
       - name: Set up Go
         id: go
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 837b95b71..0a0997cbf 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: Run Artifact Hub lint
         run: |
@@ -61,7 +61,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index de33d5b64..7f62fedf4 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index ae616077c..ab88454fb 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 1c8f8d00b..48d0434f7 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
         with:
           persist-credentials: false
 
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 5f988be83..f558bef3a 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - shell: bash
         id: test

From 5583f90c7f3525b6267747d6b07541c01218a9ea Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 25 Oct 2023 13:33:49 -0300
Subject: [PATCH 0990/1641] Release v1.9.4 (#10568)

---
 README.md                                     |  1 +
 changelog/Changelog-1.9.4.md                  | 13 ++++++
 charts/ingress-nginx/Chart.yaml               |  7 ++-
 charts/ingress-nginx/README.md                |  8 ++--
 .../changelog/Changelog-4.8.3.md              |  8 ++++
 charts/ingress-nginx/values.yaml              |  6 +--
 deploy/static/provider/aws/deploy.yaml        | 46 +++++++++----------
 .../aws/nlb-with-tls-termination/deploy.yaml  | 46 +++++++++----------
 deploy/static/provider/baremetal/deploy.yaml  | 46 +++++++++----------
 deploy/static/provider/cloud/deploy.yaml      | 46 +++++++++----------
 deploy/static/provider/do/deploy.yaml         | 46 +++++++++----------
 deploy/static/provider/exoscale/deploy.yaml   | 46 +++++++++----------
 deploy/static/provider/kind/deploy.yaml       | 46 +++++++++----------
 deploy/static/provider/oracle/deploy.yaml     | 46 +++++++++----------
 deploy/static/provider/scw/deploy.yaml        | 46 +++++++++----------
 15 files changed, 239 insertions(+), 218 deletions(-)
 create mode 100644 changelog/Changelog-1.9.4.md
 create mode 100644 charts/ingress-nginx/changelog/Changelog-4.8.3.md

diff --git a/README.md b/README.md
index 0dad0c167..4298a90d1 100644
--- a/README.md
+++ b/README.md
@@ -38,6 +38,7 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 
 |  Supported  | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
 |:--:|-----------------------|------------------------------|----------------|---------------|------------------------------|
+| 🔄 | **v1.9.4**            | 1.28, 1.27,1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.3*                        |
 | 🔄 | **v1.9.3**            | 1.28, 1.27,1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
 | 🔄 | **v1.9.1**            | 1.28, 1.27,1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
 | 🔄 | **v1.9.0**            | 1.28, 1.27,1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
diff --git a/changelog/Changelog-1.9.4.md b/changelog/Changelog-1.9.4.md
new file mode 100644
index 000000000..5550a9d69
--- /dev/null
+++ b/changelog/Changelog-1.9.4.md
@@ -0,0 +1,13 @@
+# Changelog
+
+### 1.9.4
+Images:
+
+ * registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
+ * registry.k8s.io/ingress-nginx/controller-chroot:v1.9.4@sha256:5976b1067cfbca8a21d0ba53d71f83543a73316a61ea7f7e436d6cf84ddf9b26
+ 
+### All Changes:
+
+* Cherry pick fcgi fix and release v1.9.4 (#10544)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.9.3...controller-controller-v1.9.4
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index c23daa33e..30ca8afaa 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,10 +1,9 @@
 annotations:
   artifacthub.io/changes: |-
-    - "update nginx base, httpbun, e2e, helm webhook cert gen (#10506)"
-    - "Update Ingress-Nginx version controller-v1.9.3"
+     - "Update Ingress-Nginx version controller-v1.9.4"
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.9.3
+appVersion: 1.9.4
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 home: https://github.com/kubernetes/ingress-nginx
@@ -20,4 +19,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.8.2
+version: 4.8.3
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 9adc87212..80646c958 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.8.2](https://img.shields.io/badge/Version-4.8.2-informational?style=flat-square) ![AppVersion: 1.9.3](https://img.shields.io/badge/AppVersion-1.9.3-informational?style=flat-square)
+![Version: 4.8.3](https://img.shields.io/badge/Version-4.8.3-informational?style=flat-square) ![AppVersion: 1.9.4](https://img.shields.io/badge/AppVersion-1.9.4-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -314,13 +314,13 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `true` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98"` |  |
-| controller.image.digestChroot | string | `"sha256:df4931fd6859fbf1a71e785f02a44b2f9a16f010ae852c442e9bb779cbefdc86"` |  |
+| controller.image.digest | string | `"sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3"` |  |
+| controller.image.digestChroot | string | `"sha256:5976b1067cfbca8a21d0ba53d71f83543a73316a61ea7f7e436d6cf84ddf9b26"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsUser | int | `101` |  |
-| controller.image.tag | string | `"v1.9.3"` |  |
+| controller.image.tag | string | `"v1.9.4"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/Changelog-4.8.3.md b/charts/ingress-nginx/changelog/Changelog-4.8.3.md
new file mode 100644
index 000000000..ca1815bbb
--- /dev/null
+++ b/charts/ingress-nginx/changelog/Changelog-4.8.3.md
@@ -0,0 +1,8 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.8.3
+* Update Ingress-Nginx version controller-v1.9.4
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.8.2...helm-chart-4.8.3
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 099dfe6bb..c043b6258 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -27,9 +27,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.9.3"
-    digest: sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
-    digestChroot: sha256:df4931fd6859fbf1a71e785f02a44b2f9a16f010ae852c442e9bb779cbefdc86
+    tag: "v1.9.4"
+    digest: sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
+    digestChroot: sha256:5976b1067cfbca8a21d0ba53d71f83543a73316a61ea7f7e436d6cf84ddf9b26
     pullPolicy: IfNotPresent
     # www-data -> uid 101
     runAsUser: 101
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index bb210d43d..356967315 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -565,7 +565,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -576,7 +576,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -614,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -650,7 +650,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 71d7fba18..a5d179953 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -431,7 +431,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
     spec:
       containers:
       - args:
@@ -455,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -577,7 +577,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -588,7 +588,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -639,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -662,7 +662,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index c801a86d4..42fcb3250 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
     spec:
       containers:
       - args:
@@ -440,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -512,7 +512,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -523,7 +523,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -559,7 +559,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -570,7 +570,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -608,7 +608,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -621,7 +621,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -644,7 +644,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index af94f2db1..6844384b1 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -514,7 +514,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -525,7 +525,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -561,7 +561,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -572,7 +572,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -610,7 +610,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -623,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -646,7 +646,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 500d33c8d..322e5788c 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -564,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -613,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -649,7 +649,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 27e1029a1..5112ac3cf 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -570,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -619,7 +619,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -632,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -655,7 +655,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 52c312d40..f53d4bb80 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -620,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -633,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -656,7 +656,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index fe31765bc..2205c5293 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -565,7 +565,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -576,7 +576,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -614,7 +614,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -650,7 +650,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 5f962a478..e08ebc990 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -564,7 +564,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +575,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.3
+        app.kubernetes.io/version: 1.9.4
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -613,7 +613,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
   namespace: ingress-nginx
 spec:
@@ -649,7 +649,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.3
+    app.kubernetes.io/version: 1.9.4
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:

From 5a63aaf36ef98fd75b26b7a4bc9a68f75ece7e93 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 26 Oct 2023 07:34:46 -0400
Subject: [PATCH 0991/1641] Update TAG

---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index 7517f6876..c4e620172 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.9.3
+v1.9.4

From 2b42e3dbadbe5ec10f87d65dd30c830f7a76b073 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 27 Oct 2023 12:33:44 +0200
Subject: [PATCH 0992/1641] Bump github.com/prometheus/common from 0.44.0 to
 0.45.0 (#10547)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.44.0 to 0.45.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.44.0...v0.45.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 8444772d1..48eb97b5b 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.17.0
 	github.com/prometheus/client_model v0.5.0
-	github.com/prometheus/common v0.44.0
+	github.com/prometheus/common v0.45.0
 	github.com/spf13/cobra v1.7.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.4
@@ -82,7 +82,7 @@ require (
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
 	github.com/mailru/easyjson v0.7.7 // indirect
 	github.com/mattn/go-colorable v0.1.13 // indirect
-	github.com/matttproud/golang_protobuf_extensions v1.0.4 // indirect
+	github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0 // indirect
 	github.com/mmarkdown/mmark v2.0.40+incompatible // indirect
 	github.com/moby/sys/mountinfo v0.5.0 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
diff --git a/go.sum b/go.sum
index 9253735f5..ec8a91e65 100644
--- a/go.sum
+++ b/go.sum
@@ -244,8 +244,8 @@ github.com/mattn/go-colorable v0.1.13/go.mod h1:7S9/ev0klgBDR4GtXTXX8a3vIGJpMovk
 github.com/mattn/go-isatty v0.0.16 h1:bq3VjFmv/sOjHtdEhmkEV4x1AJtvUvOJ2PFAZ5+peKQ=
 github.com/mattn/go-isatty v0.0.16/go.mod h1:kYGgaQfpe5nmfYZH+SKPsOc2e4SrIfOl2e/yFXSvRLM=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
-github.com/matttproud/golang_protobuf_extensions v1.0.4 h1:mmDVorXM7PCGKw94cs5zkfA9PSy5pEvNWRP0ET0TIVo=
-github.com/matttproud/golang_protobuf_extensions v1.0.4/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
+github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0 h1:jWpvCLoY8Z/e3VKvlsiIGKtc+UG6U5vzxaoagmhXfyg=
+github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0/go.mod h1:QUyp042oQthUoa9bqDv0ER0wrtXnBruoNd7aNjkbP+k=
 github.com/mitchellh/go-ps v1.0.0 h1:i6ampVEEF4wQFF+bkYfwYgY+F/uYJDktmvLPf7qIgjc=
 github.com/mitchellh/go-ps v1.0.0/go.mod h1:J4lOc8z8yJs6vUwklHw2XEIiT4z4C40KtWVN3nvg8Pg=
 github.com/mitchellh/hashstructure/v2 v2.0.2 h1:vGKWl0YJqUNxE8d+h8f6NJLcCJrgbhC4NcD46KavDd4=
@@ -318,8 +318,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.44.0 h1:+5BrQJwiBB9xsMygAB3TNvpQKOwlkc25LbISbrdOOfY=
-github.com/prometheus/common v0.44.0/go.mod h1:ofAIvZbQ1e/nugmZGz4/qCb9Ap1VoSTIO7x0VV9VvuY=
+github.com/prometheus/common v0.45.0 h1:2BGz0eBc2hdMDLnO/8n0jeB3oPrt2D08CekT0lneoxM=
+github.com/prometheus/common v0.45.0/go.mod h1:YJmSTw9BoKxJplESWWxlbyttQR4uaEcGyv9MZjVOJsY=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=

From 7e7001d2a0623db3c5e971c3f02cc6a1d6fcfd6e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 27 Oct 2023 12:38:50 +0200
Subject: [PATCH 0993/1641] Bump google.golang.org/grpc from 1.58.3 to 1.59.0
 (#10549)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.58.3 to 1.59.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.58.3...v1.59.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 48eb97b5b..6ba5f5467 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.14.0
-	google.golang.org/grpc v1.58.3
+	google.golang.org/grpc v1.59.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -74,7 +74,7 @@ require (
 	github.com/google/gofuzz v1.1.0 // indirect
 	github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
-	github.com/google/uuid v1.3.0 // indirect
+	github.com/google/uuid v1.3.1 // indirect
 	github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 // indirect
 	github.com/imdario/mergo v0.3.6 // indirect
 	github.com/inconshreveable/mousetrap v1.1.0 // indirect
@@ -110,7 +110,7 @@ require (
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.14.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20230711160842-782d3b101e98 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20230822172742-b8732ec3820d // indirect
 	google.golang.org/protobuf v1.31.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index ec8a91e65..e1de35780 100644
--- a/go.sum
+++ b/go.sum
@@ -191,8 +191,8 @@ github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98/go.mod h1:czg5+yv1E0Z
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
-github.com/google/uuid v1.3.0 h1:t6JiXgmwXMjEs8VusXIJk2BXHsn+wx8BZdTaoZ5fu7I=
-github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/google/uuid v1.3.1 h1:KjJaJ9iWZ3jOFZIf1Lqf4laDRCasjl0BCmnEGxkdLb4=
+github.com/google/uuid v1.3.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 h1:pdN6V1QBWetyv/0+wjACpqVH+eVULgEjkurDLq3goeM=
@@ -657,8 +657,8 @@ google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6D
 google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20230711160842-782d3b101e98 h1:bVf09lpb+OJbByTj913DRJioFFAjf/ZGxEz7MajTp2U=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20230711160842-782d3b101e98/go.mod h1:TUfxEVdsvPg18p6AslUXFoLdpED4oBnGwyqk3dV1XzM=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20230822172742-b8732ec3820d h1:uvYuEyMHKNt+lT4K3bN6fGswmK8qSvcreM3BwjDh+y4=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20230822172742-b8732ec3820d/go.mod h1:+Bk1OCOj40wS2hwAMA+aCW9ypzm63QTBBHp6lQ3p+9M=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -671,8 +671,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.58.3 h1:BjnpXut1btbtgN/6sp+brB2Kbm2LjNXnidYujAVbSoQ=
-google.golang.org/grpc v1.58.3/go.mod h1:tgX3ZQDlNJGU96V6yHh1T/JeoBQ2TXdr43YbYSsCJk0=
+google.golang.org/grpc v1.59.0 h1:Z5Iec2pjwb+LEOqzpB2MR12/eKFhDPhuqW91O+4bwUk=
+google.golang.org/grpc v1.59.0/go.mod h1:aUPDwccQo6OTjy7Hct4AfBPD1GptF4fyUjIkQ9YtF98=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From 8c3aeaae4af8cb723a8f10cdeb0ef4e3fa6b35d2 Mon Sep 17 00:00:00 2001
From: Michael Dreher <migg@migg.net>
Date: Fri, 27 Oct 2023 12:50:37 +0200
Subject: [PATCH 0994/1641] Increase HSTS max-age to default to one year
 (#10564)

---
 docs/user-guide/nginx-configuration/configmap.md | 2 +-
 internal/ingress/controller/config/config.go     | 2 +-
 test/data/cleanConf.expected.conf                | 2 +-
 test/data/cleanConf.src.conf                     | 2 +-
 test/data/config.json                            | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 318343835..bc9dfae0e 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -62,7 +62,7 @@ The following table shows a configuration option's name, type, and the default v
 |[http2-max-concurrent-streams](#http2-max-concurrent-streams)|int|128||
 |[hsts](#hsts)|bool|"true"||
 |[hsts-include-subdomains](#hsts-include-subdomains)|bool|"true"||
-|[hsts-max-age](#hsts-max-age)|string|"15724800"||
+|[hsts-max-age](#hsts-max-age)|string|"31536000"||
 |[hsts-preload](#hsts-preload)|bool|"false"||
 |[keep-alive](#keep-alive)|int|75||
 |[keep-alive-requests](#keep-alive-requests)|int|1000||
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 71c022e3e..fadc924be 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -46,7 +46,7 @@ const (
 	// that tell browsers that it should only be communicated with using HTTPS, instead of using HTTP.
 	// https://developer.mozilla.org/en-US/docs/Web/Security/HTTP_strict_transport_security
 	// max-age is the time, in seconds, that the browser should remember that this site is only to be accessed using HTTPS.
-	hstsMaxAge = "15724800"
+	hstsMaxAge = "31536000"
 
 	gzipTypes = "application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"
 
diff --git a/test/data/cleanConf.expected.conf b/test/data/cleanConf.expected.conf
index 1666c19f6..7c4a16824 100644
--- a/test/data/cleanConf.expected.conf
+++ b/test/data/cleanConf.expected.conf
@@ -47,7 +47,7 @@ http {
 			listen_ports = { ssl_proxy = "442", https = "443" },
 			
 			hsts = true,
-			hsts_max_age = 15724800,
+			hsts_max_age = 31536000,
 			hsts_include_subdomains = true,
 			hsts_preload = false,
 		})
diff --git a/test/data/cleanConf.src.conf b/test/data/cleanConf.src.conf
index 0e572faa5..89954cf0d 100644
--- a/test/data/cleanConf.src.conf
+++ b/test/data/cleanConf.src.conf
@@ -65,7 +65,7 @@ lua_shared_dict ocsp_response_cache 5M;
 		listen_ports = { ssl_proxy = "442", https = "443" },
 
 		hsts = true,
-		hsts_max_age = 15724800,
+		hsts_max_age = 31536000,
 		hsts_include_subdomains = true,
 		hsts_preload = false,
 	})
diff --git a/test/data/config.json b/test/data/config.json
index d51e1c40b..d64cfe0d2 100644
--- a/test/data/config.json
+++ b/test/data/config.json
@@ -25,7 +25,7 @@
 		"gzipTypes": "application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component",
 		"hsts": true,
 		"hstsIncludeSubdomains": true,
-		"hstsMaxAge": "15724800",
+		"hstsMaxAge": "31536000",
 		"keepAlive": 75,
 		"mapHashBucketSize": 64,
 		"maxWorkerConnections": 16384,

From f59738c7538079f979911b65654ea2c03e84989b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 27 Oct 2023 13:52:29 +0200
Subject: [PATCH 0995/1641] Bump github.com/fsnotify/fsnotify from 1.6.0 to
 1.7.0 (#10579)

Bumps [github.com/fsnotify/fsnotify](https://github.com/fsnotify/fsnotify) from 1.6.0 to 1.7.0.
- [Release notes](https://github.com/fsnotify/fsnotify/releases)
- [Changelog](https://github.com/fsnotify/fsnotify/blob/main/CHANGELOG.md)
- [Commits](https://github.com/fsnotify/fsnotify/compare/v1.6.0...v1.7.0)

---
updated-dependencies:
- dependency-name: github.com/fsnotify/fsnotify
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 5 ++---
 2 files changed, 3 insertions(+), 4 deletions(-)

diff --git a/go.mod b/go.mod
index 6ba5f5467..f38e632b3 100644
--- a/go.mod
+++ b/go.mod
@@ -6,7 +6,7 @@ require (
 	dario.cat/mergo v1.0.0
 	github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a
 	github.com/eapache/channels v1.1.0
-	github.com/fsnotify/fsnotify v1.6.0
+	github.com/fsnotify/fsnotify v1.7.0
 	github.com/json-iterator/go v1.1.12
 	github.com/kylelemons/godebug v1.1.0
 	github.com/mitchellh/go-ps v1.0.0
diff --git a/go.sum b/go.sum
index e1de35780..5b23c4d37 100644
--- a/go.sum
+++ b/go.sum
@@ -85,8 +85,8 @@ github.com/evanphx/json-patch/v5 v5.6.0 h1:b91NhWfaz02IuVxO9faSllyAtNXHMPkC5J8sJ
 github.com/evanphx/json-patch/v5 v5.6.0/go.mod h1:G79N1coSVB93tBe7j6PhzjmR3/2VvlbKOFpnXhI9Bw4=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
-github.com/fsnotify/fsnotify v1.6.0 h1:n+5WquG0fcWoWp6xPWfHdbskMCQaFnG6PfBrh1Ky4HY=
-github.com/fsnotify/fsnotify v1.6.0/go.mod h1:sl3t1tCWJFWoRz9R8WJCbQihKKwmorjAbSClcnxKAGw=
+github.com/fsnotify/fsnotify v1.7.0 h1:8JEhPFa5W2WU7YfeZzPNqzMP6Lwt7L2715Ggo0nosvA=
+github.com/fsnotify/fsnotify v1.7.0/go.mod h1:40Bi/Hjc2AVfZrqy+aj+yEI+/bRxZnMJyTJwOpGvigM=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
 github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa h1:RDBNVkRviHZtvDvId8XSGPu3rmpmSe+wKRcEWNgsfWU=
 github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
@@ -532,7 +532,6 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.13.0 h1:Af8nKPmuFypiUBjVoU9V20FiaFXOcuZI21p0ycVYYGE=
 golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=

From 0120a2df48bee8be55fc1181914a80e91664e77f Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Sun, 29 Oct 2023 18:26:05 +0100
Subject: [PATCH 0996/1641] Admission Webhook: Truncate name. (#10523)

---
 charts/ingress-nginx/README.md                |  3 +++
 charts/ingress-nginx/templates/_helpers.tpl   | 24 +++++++++++++++++++
 .../admission-webhooks/cert-manager.yaml      |  4 ++--
 .../job-patch/clusterrole.yaml                |  4 ++--
 .../job-patch/clusterrolebinding.yaml         |  6 ++---
 .../job-patch/job-createSecret.yaml           |  8 +++----
 .../job-patch/job-patchWebhook.yaml           | 10 ++++----
 .../job-patch/networkpolicy.yaml              |  2 +-
 .../admission-webhooks/job-patch/psp.yaml     |  2 +-
 .../admission-webhooks/job-patch/role.yaml    |  2 +-
 .../job-patch/rolebinding.yaml                |  6 ++---
 .../job-patch/serviceaccount.yaml             |  2 +-
 .../validating-webhook.yaml                   |  6 ++---
 .../templates/controller-daemonset.yaml       |  2 +-
 .../templates/controller-deployment.yaml      |  2 +-
 charts/ingress-nginx/values.yaml              |  3 +++
 16 files changed, 58 insertions(+), 28 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 80646c958..480a5dd1f 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -240,6 +240,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.certManager.enabled | bool | `false` |  |
 | controller.admissionWebhooks.certManager.rootCert.duration | string | `""` |  |
 | controller.admissionWebhooks.certificate | string | `"/usr/local/certificates/cert"` |  |
+| controller.admissionWebhooks.createSecretJob.name | string | `"create"` |  |
 | controller.admissionWebhooks.createSecretJob.resources | object | `{}` |  |
 | controller.admissionWebhooks.createSecretJob.securityContext.allowPrivilegeEscalation | bool | `false` |  |
 | controller.admissionWebhooks.enabled | bool | `true` |  |
@@ -248,6 +249,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.failurePolicy | string | `"Fail"` | Admission Webhook failure policy to use |
 | controller.admissionWebhooks.key | string | `"/usr/local/certificates/key"` |  |
 | controller.admissionWebhooks.labels | object | `{}` | Labels to be added to admission webhooks |
+| controller.admissionWebhooks.name | string | `"admission"` |  |
 | controller.admissionWebhooks.namespaceSelector | object | `{}` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
@@ -264,6 +266,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.patch.securityContext.runAsNonRoot | bool | `true` |  |
 | controller.admissionWebhooks.patch.securityContext.runAsUser | int | `2000` |  |
 | controller.admissionWebhooks.patch.tolerations | list | `[]` |  |
+| controller.admissionWebhooks.patchWebhookJob.name | string | `"patch"` |  |
 | controller.admissionWebhooks.patchWebhookJob.resources | object | `{}` |  |
 | controller.admissionWebhooks.patchWebhookJob.securityContext.allowPrivilegeEscalation | bool | `false` |  |
 | controller.admissionWebhooks.port | int | `8443` |  |
diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index 1117ddef9..c18236741 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -164,6 +164,30 @@ Create the name of the controller service account to use
 {{- end -}}
 {{- end -}}
 
+{{/*
+Create a default fully qualified admission webhook name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "ingress-nginx.admissionWebhooks.fullname" -}}
+{{- printf "%s-%s" (include "ingress-nginx.fullname" .) .Values.controller.admissionWebhooks.name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified admission webhook secret creation job name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "ingress-nginx.admissionWebhooks.createSecretJob.fullname" -}}
+{{- printf "%s-%s" (include "ingress-nginx.admissionWebhooks.fullname" .) .Values.controller.admissionWebhooks.createSecretJob.name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
+{{/*
+Create a default fully qualified admission webhook patch job name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "ingress-nginx.admissionWebhooks.patchWebhookJob.fullname" -}}
+{{- printf "%s-%s" (include "ingress-nginx.admissionWebhooks.fullname" .) .Values.controller.admissionWebhooks.patchWebhookJob.name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
 {{/*
 Create the name of the backend service account to use - only used when podsecuritypolicy is also enabled
 */}}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/cert-manager.yaml b/charts/ingress-nginx/templates/admission-webhooks/cert-manager.yaml
index c174422cf..db2946c3d 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/cert-manager.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/cert-manager.yaml
@@ -42,10 +42,10 @@ spec:
 apiVersion: cert-manager.io/v1
 kind: Certificate
 metadata:
-  name: {{ include "ingress-nginx.fullname" . }}-admission
+  name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
   namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
-  secretName: {{ include "ingress-nginx.fullname" . }}-admission
+  secretName: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
   duration: {{ .Values.controller.admissionWebhooks.certManager.admissionCert.duration | default "8760h0m0s" | quote }}
   issuerRef:
     {{- if .Values.controller.admissionWebhooks.certManager.issuerRef }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
index f9ec70974..ec43a3bc1 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
@@ -2,7 +2,7 @@
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
-  name: {{ include "ingress-nginx.fullname" . }}-admission
+  name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
     "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
@@ -28,7 +28,7 @@ rules:
     {{- with .Values.controller.admissionWebhooks.existingPsp }}
     - {{ . }}
     {{- else }}
-    - {{ include "ingress-nginx.fullname" . }}-admission
+    - {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
     {{- end }}
 {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
index 00081b50a..88bd5b7e4 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
@@ -2,7 +2,7 @@
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
-  name: {{ include "ingress-nginx.fullname" . }}-admission
+  name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
     "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
@@ -15,9 +15,9 @@ metadata:
 roleRef:
   apiGroup: rbac.authorization.k8s.io
   kind: ClusterRole
-  name: {{ include "ingress-nginx.fullname" . }}-admission
+  name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
 subjects:
   - kind: ServiceAccount
-    name: {{ include "ingress-nginx.fullname" . }}-admission
+    name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
     namespace: {{ (include "ingress-nginx.namespace" .) | quote }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
index 39608d264..1747303c0 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
@@ -2,7 +2,7 @@
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: {{ include "ingress-nginx.fullname" . }}-admission-create
+  name: {{ include "ingress-nginx.admissionWebhooks.createSecretJob.fullname" . }}
   namespace: {{ include "ingress-nginx.namespace" . }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade
@@ -23,7 +23,7 @@ spec:
 {{- end }}
   template:
     metadata:
-      name: {{ include "ingress-nginx.fullname" . }}-admission-create
+      name: {{ include "ingress-nginx.admissionWebhooks.createSecretJob.fullname" . }}
     {{- if .Values.controller.admissionWebhooks.patch.podAnnotations }}
       annotations: {{ toYaml .Values.controller.admissionWebhooks.patch.podAnnotations | nindent 8 }}
     {{- end }}
@@ -50,7 +50,7 @@ spec:
             - create
             - --host={{ include "ingress-nginx.controller.fullname" . }}-admission,{{ include "ingress-nginx.controller.fullname" . }}-admission.$(POD_NAMESPACE).svc
             - --namespace=$(POD_NAMESPACE)
-            - --secret-name={{ include "ingress-nginx.fullname" . }}-admission
+            - --secret-name={{ include "ingress-nginx.admissionWebhooks.fullname" . }}
           env:
             - name: POD_NAMESPACE
               valueFrom:
@@ -66,7 +66,7 @@ spec:
           resources: {{ toYaml .Values.controller.admissionWebhooks.createSecretJob.resources | nindent 12 }}
           {{- end }}
       restartPolicy: OnFailure
-      serviceAccountName: {{ include "ingress-nginx.fullname" . }}-admission
+      serviceAccountName: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
     {{- if .Values.controller.admissionWebhooks.patch.nodeSelector }}
       nodeSelector: {{ toYaml .Values.controller.admissionWebhooks.patch.nodeSelector | nindent 8 }}
     {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
index b1b21cdaa..64b736d74 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
@@ -2,7 +2,7 @@
 apiVersion: batch/v1
 kind: Job
 metadata:
-  name: {{ include "ingress-nginx.fullname" . }}-admission-patch
+  name: {{ include "ingress-nginx.admissionWebhooks.patchWebhookJob.fullname" . }}
   namespace: {{ include "ingress-nginx.namespace" . }}
   annotations:
     "helm.sh/hook": post-install,post-upgrade
@@ -23,7 +23,7 @@ spec:
 {{- end }}
   template:
     metadata:
-      name: {{ include "ingress-nginx.fullname" . }}-admission-patch
+      name: {{ include "ingress-nginx.admissionWebhooks.patchWebhookJob.fullname" . }}
     {{- if .Values.controller.admissionWebhooks.patch.podAnnotations }}
       annotations: {{ toYaml .Values.controller.admissionWebhooks.patch.podAnnotations | nindent 8 }}
     {{- end }}
@@ -48,10 +48,10 @@ spec:
           imagePullPolicy: {{ .Values.controller.admissionWebhooks.patch.image.pullPolicy }}
           args:
             - patch
-            - --webhook-name={{ include "ingress-nginx.fullname" . }}-admission
+            - --webhook-name={{ include "ingress-nginx.admissionWebhooks.fullname" . }}
             - --namespace=$(POD_NAMESPACE)
             - --patch-mutating=false
-            - --secret-name={{ include "ingress-nginx.fullname" . }}-admission
+            - --secret-name={{ include "ingress-nginx.admissionWebhooks.fullname" . }}
             - --patch-failure-policy={{ .Values.controller.admissionWebhooks.failurePolicy }}
           env:
             - name: POD_NAMESPACE
@@ -68,7 +68,7 @@ spec:
           resources: {{ toYaml .Values.controller.admissionWebhooks.patchWebhookJob.resources | nindent 12 }}
           {{- end }}
       restartPolicy: OnFailure
-      serviceAccountName: {{ include "ingress-nginx.fullname" . }}-admission
+      serviceAccountName: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
     {{- if .Values.controller.admissionWebhooks.patch.nodeSelector }}
       nodeSelector: {{ toYaml .Values.controller.admissionWebhooks.patch.nodeSelector | nindent 8 }}
     {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml
index a1ae3c0ab..142e56aeb 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml
@@ -2,7 +2,7 @@
 apiVersion: networking.k8s.io/v1
 kind: NetworkPolicy
 metadata:
-  name: {{ include "ingress-nginx.fullname" . }}-admission
+  name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
   namespace: {{ include "ingress-nginx.namespace" . }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml
index e19c95572..ae40dc898 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml
@@ -3,7 +3,7 @@
 apiVersion: policy/v1beta1
 kind: PodSecurityPolicy
 metadata:
-  name: {{ include "ingress-nginx.fullname" . }}-admission
+  name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
     "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
index ef463100d..5b05d9b00 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
@@ -2,7 +2,7 @@
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
-  name:  {{ include "ingress-nginx.fullname" . }}-admission
+  name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
   namespace: {{ include "ingress-nginx.namespace" . }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
index 7548a9f36..4f08c6d94 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
@@ -2,7 +2,7 @@
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
-  name: {{ include "ingress-nginx.fullname" . }}-admission
+  name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
   namespace: {{ include "ingress-nginx.namespace" . }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
@@ -16,9 +16,9 @@ metadata:
 roleRef:
   apiGroup: rbac.authorization.k8s.io
   kind: Role
-  name: {{ include "ingress-nginx.fullname" . }}-admission
+  name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
 subjects:
   - kind: ServiceAccount
-    name: {{ include "ingress-nginx.fullname" . }}-admission
+    name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
     namespace: {{ (include "ingress-nginx.namespace" .) | quote }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
index 814aec91a..91bbf22bb 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
@@ -2,7 +2,7 @@
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  name: {{ include "ingress-nginx.fullname" . }}-admission
+  name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
   namespace: {{ include "ingress-nginx.namespace" . }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
diff --git a/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
index da001e839..f848bcd8b 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
@@ -6,8 +6,8 @@ kind: ValidatingWebhookConfiguration
 metadata:
   annotations:
   {{- if .Values.controller.admissionWebhooks.certManager.enabled }}
-    certmanager.k8s.io/inject-ca-from: {{ printf "%s/%s-admission" .Release.Namespace (include "ingress-nginx.fullname" .) | quote }}
-    cert-manager.io/inject-ca-from: {{ printf "%s/%s-admission" .Release.Namespace (include "ingress-nginx.fullname" .) | quote }}
+    certmanager.k8s.io/inject-ca-from: {{ printf "%s/%s" .Release.Namespace (include "ingress-nginx.admissionWebhooks.fullname" .) | quote }}
+    cert-manager.io/inject-ca-from: {{ printf "%s/%s" .Release.Namespace (include "ingress-nginx.admissionWebhooks.fullname" .) | quote }}
   {{- end }}
   {{- if .Values.controller.admissionWebhooks.annotations }}
     {{- toYaml .Values.controller.admissionWebhooks.annotations | nindent 4 }}
@@ -18,7 +18,7 @@ metadata:
     {{- with .Values.controller.admissionWebhooks.labels }}
     {{- toYaml . | nindent 4 }}
     {{- end }}
-  name: {{ include "ingress-nginx.fullname" . }}-admission
+  name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
 webhooks:
   - name: validate.nginx.ingress.kubernetes.io
     matchPolicy: Equivalent
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 857eac6b0..bb1a1b320 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -227,7 +227,7 @@ spec:
       {{- if .Values.controller.admissionWebhooks.enabled }}
         - name: webhook-cert
           secret:
-            secretName: {{ include "ingress-nginx.fullname" . }}-admission
+            secretName: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
         {{- if .Values.controller.admissionWebhooks.certManager.enabled }}
             items:
               - key: tls.crt
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index ca481d3be..cbd345e21 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -230,7 +230,7 @@ spec:
       {{- if .Values.controller.admissionWebhooks.enabled }}
         - name: webhook-cert
           secret:
-            secretName: {{ include "ingress-nginx.fullname" . }}-admission
+            secretName: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
         {{- if .Values.controller.admissionWebhooks.certManager.enabled }}
             items:
               - key: tls.crt
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index c043b6258..61dbbd204 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -586,6 +586,7 @@ controller:
       allowPrivilegeEscalation: false
     resources: {}
   admissionWebhooks:
+    name: admission
     annotations: {}
     # ignore-check.kube-linter.io/no-read-only-rootfs: "This deployment needs write access to root filesystem".
 
@@ -622,6 +623,7 @@ controller:
       servicePort: 443
       type: ClusterIP
     createSecretJob:
+      name: create
       securityContext:
         allowPrivilegeEscalation: false
       resources: {}
@@ -632,6 +634,7 @@ controller:
       #   cpu: 10m
       #   memory: 20Mi
     patchWebhookJob:
+      name: patch
       securityContext:
         allowPrivilegeEscalation: false
       resources: {}

From ecbf1851bb2fd434f746fc6e4e5a1e70527cb160 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 30 Oct 2023 14:21:49 +0100
Subject: [PATCH 0997/1641] Bump aquasecurity/trivy-action from 0.12.0 to
 0.13.0 (#10586)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.12.0 to 0.13.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/fbd16365eb88e12433951383f5e99bd901fc618f...b77b85c0254bba6789e787844f0585cde1e56320)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index f558bef3a..74d2472f1 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@fbd16365eb88e12433951383f5e99bd901fc618f # v0.12.0
+        uses: aquasecurity/trivy-action@b77b85c0254bba6789e787844f0585cde1e56320 # v0.13.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'

From cf156c73905792c6ce1f02822fe9ffca24381d3b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 30 Oct 2023 14:24:22 +0100
Subject: [PATCH 0998/1641] Bump ossf/scorecard-action from 2.3.0 to 2.3.1
 (#10587)

Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.0 to 2.3.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](https://github.com/ossf/scorecard-action/compare/483ef80eb98fb506c348f7d62e28055e49fe2398...0864cf19026789058feabb7e87baa5f140aac736)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 48d0434f7..ac99dc449 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -32,7 +32,7 @@ jobs:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@483ef80eb98fb506c348f7d62e28055e49fe2398 # v2.3.0
+        uses: ossf/scorecard-action@0864cf19026789058feabb7e87baa5f140aac736 # v2.3.1
         with:
           results_file: results.sarif
           results_format: sarif

From b37f86026e91651a24785a54dcb6fa64561893b9 Mon Sep 17 00:00:00 2001
From: Roberto Devesa <15369573+Roberdvs@users.noreply.github.com>
Date: Wed, 1 Nov 2023 13:36:08 +0100
Subject: [PATCH 0999/1641] Fix typo (#10594)

---
 charts/ingress-nginx/values.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 61dbbd204..e1454989a 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -339,7 +339,7 @@ controller:
   # -- Minimum available pods set in PodDisruptionBudget.
   # Define either 'minAvailable' or 'maxUnavailable', never both.
   minAvailable: 1
-  # -- Maximum unavalaile pods set in PodDisruptionBudget. If set, 'minAvailable' is ignored.
+  # -- Maximum unavailable pods set in PodDisruptionBudget. If set, 'minAvailable' is ignored.
   # maxUnavailable: 1
 
   ## Define requests resources to avoid probe issues due to CPU utilization in busy nodes

From e805d4955d8cf27e1717b8d7d162b341a15b932e Mon Sep 17 00:00:00 2001
From: Pierre Ozoux <pierre@ozoux.net>
Date: Wed, 1 Nov 2023 13:57:39 +0100
Subject: [PATCH 1000/1641] feat(helm): add documentation about metric args
 (#10590)

* feat(helm): add documentation about metric args

This helps documenting this issue:
https://github.com/kubernetes/ingress-nginx/issues/8233

and relates to this documentation:
https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/monitoring.md#histogram-buckets

* fix
---
 charts/ingress-nginx/values.yaml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index e1454989a..f1dd15900 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -173,6 +173,9 @@ controller:
   extraArgs: {}
   ## extraArgs:
   ##   default-ssl-certificate: "<namespace>/<secret_name>"
+  ##   time-buckets: "0.005,0.01,0.025,0.05,0.1,0.25,0.5,1,2.5,5,10"
+  ##   length-buckets: "10,20,30,40,50,60,70,80,90,100"
+  ##   size-buckets: "10,100,1000,10000,100000,1e+06,1e+07"
 
   # -- Additional environment variables to set
   extraEnvs: []

From 9cb3919e848134d1ece70b6cd38542fd6b8a9b46 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Wed, 1 Nov 2023 22:59:56 +0100
Subject: [PATCH 1001/1641] Chart: Improve #10539. (#10565)

* Helpers: Align `ingress-nginx.namespace` to `ingress-nginx.name`.

* Templates: Remove quotes.

In alignment to others. Also does not make sense as `namespace` must conform to DNS.

* Admission Webhooks/Validating Webhook: Make use of `ingress-nginx.namespace`.

* KEDA: Remove comment.

* Templates: Add forgotten namespace definitions.
---
 charts/ingress-nginx/templates/_helpers.tpl           | 11 +++--------
 .../job-patch/clusterrolebinding.yaml                 |  2 +-
 .../admission-webhooks/job-patch/rolebinding.yaml     |  2 +-
 .../admission-webhooks/validating-webhook.yaml        |  6 +++---
 .../ingress-nginx/templates/clusterrolebinding.yaml   |  2 +-
 charts/ingress-nginx/templates/controller-keda.yaml   |  3 +--
 .../templates/controller-prometheusrules.yaml         |  4 +++-
 .../templates/controller-rolebinding.yaml             |  2 +-
 .../templates/controller-servicemonitor.yaml          |  2 +-
 .../templates/default-backend-rolebinding.yaml        |  2 +-
 10 files changed, 16 insertions(+), 20 deletions(-)

diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index c18236741..2b6377869 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -31,17 +31,13 @@ We truncate at 63 chars because some Kubernetes name fields are limited to this
 {{- end -}}
 
 {{/*
-Allow the release namespace to be overridden for multi-namespace deployments in combined charts
+Expand the namespace of the release.
+Allows overriding it for multi-namespace deployments in combined charts.
 */}}
 {{- define "ingress-nginx.namespace" -}}
-  {{- if .Values.namespaceOverride -}}
-    {{- .Values.namespaceOverride | trunc 63 | trimSuffix "-" -}}
-  {{- else -}}
-    {{- .Release.Namespace -}}
-  {{- end -}}
+{{- default .Release.Namespace .Values.namespaceOverride | trunc 63 | trimSuffix "-" -}}
 {{- end -}}
 
-
 {{/*
 Container SecurityContext.
 */}}
@@ -113,7 +109,6 @@ By convention this will simply use the <namespace>/<controller-name> to match th
 service generated.
 
 Users can provide an override for an explicit service they want bound via `.Values.controller.publishService.pathOverride`
-
 */}}
 {{- define "ingress-nginx.controller.publishServicePath" -}}
 {{- $defServiceName := printf "%s/%s" "$(POD_NAMESPACE)" (include "ingress-nginx.controller.fullname" .) -}}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
index 88bd5b7e4..3fe842d1f 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
@@ -19,5 +19,5 @@ roleRef:
 subjects:
   - kind: ServiceAccount
     name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
-    namespace: {{ (include "ingress-nginx.namespace" .) | quote }}
+    namespace: {{ include "ingress-nginx.namespace" . }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
index 4f08c6d94..48a175566 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
@@ -20,5 +20,5 @@ roleRef:
 subjects:
   - kind: ServiceAccount
     name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
-    namespace: {{ (include "ingress-nginx.namespace" .) | quote }}
+    namespace: {{ include "ingress-nginx.namespace" . }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
index f848bcd8b..4cd36a62e 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
@@ -6,8 +6,8 @@ kind: ValidatingWebhookConfiguration
 metadata:
   annotations:
   {{- if .Values.controller.admissionWebhooks.certManager.enabled }}
-    certmanager.k8s.io/inject-ca-from: {{ printf "%s/%s" .Release.Namespace (include "ingress-nginx.admissionWebhooks.fullname" .) | quote }}
-    cert-manager.io/inject-ca-from: {{ printf "%s/%s" .Release.Namespace (include "ingress-nginx.admissionWebhooks.fullname" .) | quote }}
+    certmanager.k8s.io/inject-ca-from: {{ printf "%s/%s" (include "ingress-nginx.namespace" .) (include "ingress-nginx.admissionWebhooks.fullname" .) | quote }}
+    cert-manager.io/inject-ca-from: {{ printf "%s/%s" (include "ingress-nginx.namespace" .) (include "ingress-nginx.admissionWebhooks.fullname" .) | quote }}
   {{- end }}
   {{- if .Values.controller.admissionWebhooks.annotations }}
     {{- toYaml .Values.controller.admissionWebhooks.annotations | nindent 4 }}
@@ -38,8 +38,8 @@ webhooks:
       - v1
     clientConfig:
       service:
-        namespace: {{ (include "ingress-nginx.namespace" .) | quote }}
         name: {{ include "ingress-nginx.controller.fullname" . }}-admission
+        namespace: {{ include "ingress-nginx.namespace" . }}
         path: /networking/v1/ingresses
     {{- if .Values.controller.admissionWebhooks.timeoutSeconds }}
     timeoutSeconds: {{ .Values.controller.admissionWebhooks.timeoutSeconds }}
diff --git a/charts/ingress-nginx/templates/clusterrolebinding.yaml b/charts/ingress-nginx/templates/clusterrolebinding.yaml
index a38f84e80..8f91aac80 100644
--- a/charts/ingress-nginx/templates/clusterrolebinding.yaml
+++ b/charts/ingress-nginx/templates/clusterrolebinding.yaml
@@ -15,5 +15,5 @@ roleRef:
 subjects:
   - kind: ServiceAccount
     name: {{ template "ingress-nginx.serviceAccountName" . }}
-    namespace: {{ (include "ingress-nginx.namespace" .) | quote }}
+    namespace: {{ include "ingress-nginx.namespace" . }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-keda.yaml b/charts/ingress-nginx/templates/controller-keda.yaml
index bbd2237f0..6ff9c0b22 100644
--- a/charts/ingress-nginx/templates/controller-keda.yaml
+++ b/charts/ingress-nginx/templates/controller-keda.yaml
@@ -1,6 +1,4 @@
 {{- if and .Values.controller.keda.enabled (eq .Values.controller.kind "Deployment") -}}
-# https://keda.sh/docs/
-
 apiVersion: {{ .Values.controller.keda.apiVersion }}
 kind: ScaledObject
 metadata:
@@ -11,6 +9,7 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
   {{- if .Values.controller.keda.scaledObject.annotations }}
   annotations: {{ toYaml .Values.controller.keda.scaledObject.annotations | nindent 4 }}
   {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-prometheusrules.yaml b/charts/ingress-nginx/templates/controller-prometheusrules.yaml
index 78b5362e8..f0b93cc8c 100644
--- a/charts/ingress-nginx/templates/controller-prometheusrules.yaml
+++ b/charts/ingress-nginx/templates/controller-prometheusrules.yaml
@@ -4,7 +4,9 @@ kind: PrometheusRule
 metadata:
   name: {{ include "ingress-nginx.controller.fullname" . }}
 {{- if .Values.controller.metrics.prometheusRule.namespace }}
-  namespace: {{ .Values.controller.metrics.prometheusRule.namespace | quote }}
+  namespace: {{ .Values.controller.metrics.prometheusRule.namespace }}
+{{- else }}
+  namespace: {{ include "ingress-nginx.namespace" . }}
 {{- end }}
   labels:
     {{- include "ingress-nginx.labels" . | nindent 4 }}
diff --git a/charts/ingress-nginx/templates/controller-rolebinding.yaml b/charts/ingress-nginx/templates/controller-rolebinding.yaml
index cdd1ec225..153430aa2 100644
--- a/charts/ingress-nginx/templates/controller-rolebinding.yaml
+++ b/charts/ingress-nginx/templates/controller-rolebinding.yaml
@@ -17,5 +17,5 @@ roleRef:
 subjects:
   - kind: ServiceAccount
     name: {{ template "ingress-nginx.serviceAccountName" . }}
-    namespace: {{ (include "ingress-nginx.namespace" .) | quote }}
+    namespace: {{ include "ingress-nginx.namespace" . }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-servicemonitor.yaml b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
index bf3734b73..585fd0cb7 100644
--- a/charts/ingress-nginx/templates/controller-servicemonitor.yaml
+++ b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
@@ -4,7 +4,7 @@ kind: ServiceMonitor
 metadata:
   name: {{ include "ingress-nginx.controller.fullname" . }}
 {{- if .Values.controller.metrics.serviceMonitor.namespace }}
-  namespace: {{ .Values.controller.metrics.serviceMonitor.namespace | quote }}
+  namespace: {{ .Values.controller.metrics.serviceMonitor.namespace }}
 {{- else }}
   namespace: {{ include "ingress-nginx.namespace" . }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/default-backend-rolebinding.yaml b/charts/ingress-nginx/templates/default-backend-rolebinding.yaml
index 70064e85e..3203b6f57 100644
--- a/charts/ingress-nginx/templates/default-backend-rolebinding.yaml
+++ b/charts/ingress-nginx/templates/default-backend-rolebinding.yaml
@@ -17,5 +17,5 @@ roleRef:
 subjects:
   - kind: ServiceAccount
     name: {{ template "ingress-nginx.defaultBackend.serviceAccountName" . }}
-    namespace: {{ (include "ingress-nginx.namespace" .) | quote }}
+    namespace: {{ include "ingress-nginx.namespace" . }}
 {{- end }}

From 9cdd51d5dcbf01fe6f06a8129027b07bf63fcb9b Mon Sep 17 00:00:00 2001
From: Matt Dainty <matt@bodgit-n-scarper.com>
Date: Wed, 1 Nov 2023 22:08:51 +0000
Subject: [PATCH 1002/1641] fix: Validate x-forwarded-prefix annotation with
 RegexPathWithCapture (#10598)

---
 internal/ingress/annotations/parser/validators.go        | 2 +-
 internal/ingress/annotations/xforwardedprefix/main.go    | 9 +++++----
 .../ingress/annotations/xforwardedprefix/main_test.go    | 1 +
 3 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/internal/ingress/annotations/parser/validators.go b/internal/ingress/annotations/parser/validators.go
index ab9b4799f..09f483006 100644
--- a/internal/ingress/annotations/parser/validators.go
+++ b/internal/ingress/annotations/parser/validators.go
@@ -71,7 +71,7 @@ var (
 	NGINXVariable = regexp.MustCompile(`^[A-Za-z0-9\-\_\$\{\}]*$`)
 	// RegexPathWithCapture allows entries that SHOULD start with "/" and may contain alphanumeric + capture
 	// character for regex based paths, like /something/$1/anything/$2
-	RegexPathWithCapture = regexp.MustCompile(`^/[` + alphaNumericChars + `\/\$]*$`)
+	RegexPathWithCapture = regexp.MustCompile(`^/?[` + alphaNumericChars + `\/\$]*$`)
 	// HeadersVariable defines a regex that allows headers separated by comma
 	HeadersVariable = regexp.MustCompile(`^[A-Za-z0-9-_, ]*$`)
 	// URLWithNginxVariableRegex defines a url that can contain nginx variables.
diff --git a/internal/ingress/annotations/xforwardedprefix/main.go b/internal/ingress/annotations/xforwardedprefix/main.go
index 530afbb01..54bb7199a 100644
--- a/internal/ingress/annotations/xforwardedprefix/main.go
+++ b/internal/ingress/annotations/xforwardedprefix/main.go
@@ -31,10 +31,11 @@ var xForwardedForAnnotations = parser.Annotation{
 	Group: "backend",
 	Annotations: parser.AnnotationFields{
 		xForwardedForPrefixAnnotation: {
-			Validator:     parser.ValidateRegex(parser.BasicCharsRegex, true),
-			Scope:         parser.AnnotationScopeLocation,
-			Risk:          parser.AnnotationRiskLow, // Low, as it allows regexes but on a very limited set
-			Documentation: `This annotation can be used to add the non-standard X-Forwarded-Prefix header to the upstream request with a string value`,
+			Validator: parser.ValidateRegex(parser.RegexPathWithCapture, true),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation can be used to add the non-standard X-Forwarded-Prefix header to the upstream request with a string value. It can 
+			contain regular characters and captured groups specified as '$1', '$2', etc.`,
 		},
 	},
 }
diff --git a/internal/ingress/annotations/xforwardedprefix/main_test.go b/internal/ingress/annotations/xforwardedprefix/main_test.go
index f28b6b10e..977e7d372 100644
--- a/internal/ingress/annotations/xforwardedprefix/main_test.go
+++ b/internal/ingress/annotations/xforwardedprefix/main_test.go
@@ -40,6 +40,7 @@ func TestParse(t *testing.T) {
 		{map[string]string{annotation: "true"}, "true"},
 		{map[string]string{annotation: "1"}, "1"},
 		{map[string]string{annotation: ""}, ""},
+		{map[string]string{annotation: "/$1"}, "/$1"},
 		{map[string]string{}, ""},
 		{nil, ""},
 	}

From 13d95d026ad8e2d7ccfb39252e801cc4cc99f479 Mon Sep 17 00:00:00 2001
From: Simon Wessel <9195792+simon-wessel@users.noreply.github.com>
Date: Wed, 1 Nov 2023 23:09:00 +0100
Subject: [PATCH 1003/1641] fix: adjust unfulfillable validation check for
 session-cookie-samesite annotation (#10600)

---
 internal/ingress/annotations/sessionaffinity/main.go      | 2 +-
 internal/ingress/annotations/sessionaffinity/main_test.go | 5 +++++
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/internal/ingress/annotations/sessionaffinity/main.go b/internal/ingress/annotations/sessionaffinity/main.go
index cc2095de4..bee4a2094 100644
--- a/internal/ingress/annotations/sessionaffinity/main.go
+++ b/internal/ingress/annotations/sessionaffinity/main.go
@@ -129,7 +129,7 @@ var sessionAffinityAnnotations = parser.Annotation{
 			Documentation: `This annotation defines the Domain attribute of the sticky cookie.`,
 		},
 		annotationAffinityCookieSameSite: {
-			Validator: parser.ValidateOptions([]string{"None", "Lax", "Strict"}, false, true),
+			Validator: parser.ValidateOptions([]string{"none", "lax", "strict"}, false, true),
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskLow,
 			Documentation: `This annotation is used to apply a SameSite attribute to the sticky cookie. 
diff --git a/internal/ingress/annotations/sessionaffinity/main_test.go b/internal/ingress/annotations/sessionaffinity/main_test.go
index cecf8cf8f..4b7ea5e61 100644
--- a/internal/ingress/annotations/sessionaffinity/main_test.go
+++ b/internal/ingress/annotations/sessionaffinity/main_test.go
@@ -79,6 +79,7 @@ func TestIngressAffinityCookieConfig(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix(annotationAffinityCookieMaxAge)] = "3000"
 	data[parser.GetAnnotationWithPrefix(annotationAffinityCookiePath)] = "/foo"
 	data[parser.GetAnnotationWithPrefix(annotationAffinityCookieDomain)] = "foo.bar"
+	data[parser.GetAnnotationWithPrefix(annotationAffinityCookieSameSite)] = "Strict"
 	data[parser.GetAnnotationWithPrefix(annotationAffinityCookieChangeOnFailure)] = "true"
 	data[parser.GetAnnotationWithPrefix(annotationAffinityCookieSecure)] = "true"
 	ing.SetAnnotations(data)
@@ -121,6 +122,10 @@ func TestIngressAffinityCookieConfig(t *testing.T) {
 		t.Errorf("expected foo.bar as session-cookie-domain but returned %v", nginxAffinity.Cookie.Domain)
 	}
 
+	if nginxAffinity.Cookie.SameSite != "Strict" {
+		t.Errorf("expected Strict as session-cookie-same-site but returned %v", nginxAffinity.Cookie.SameSite)
+	}
+
 	if !nginxAffinity.Cookie.ChangeOnFailure {
 		t.Errorf("expected change of failure parameter set to true but returned %v", nginxAffinity.Cookie.ChangeOnFailure)
 	}

From 7f45fabde5e6d59bfdcf716ba37c5f23c825959d Mon Sep 17 00:00:00 2001
From: Jeremy Cocks <98757756+jeremy-cxf@users.noreply.github.com>
Date: Thu, 2 Nov 2023 19:58:36 +0000
Subject: [PATCH 1004/1641] remove unsupported bold release from README
 (#10605)

Co-authored-by: netyaroze <jeremy@jeremy.cx>
---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 4298a90d1..29ad2929d 100644
--- a/README.md
+++ b/README.md
@@ -48,7 +48,7 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 | 🔄 | **v1.8.0**            | 1.27,1.26, 1.25, 1.24        | 3.18.0         | 1.21.6        | 4.7.*              |
 | 🔄 | **v1.7.1**            | 1.27,1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
 | 🔄 | **v1.7.0**            | 1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        | 4.6.*              |
-|    | **v1.6.4**            | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        | 4.5.*              |
+|    | v1.6.4                | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        | 4.5.*              |
 |    | v1.5.1                | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        | 4.4.*              |
 |    | v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      | 4.3.0              |
 |    | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      | 4.2.5              |

From dc659b252d41a709269a0db36c68ae4abe5e038e Mon Sep 17 00:00:00 2001
From: Leonardo Taccari <iamleot@gmail.com>
Date: Thu, 2 Nov 2023 21:11:03 +0100
Subject: [PATCH 1005/1641] Ignore fake certificate for NGINXCertificateExpiry
 (#10505)

The fake certificate is only a fallback and it is okay-ish if it
expires.

Do not alert for its expiration.
---
 charts/ingress-nginx/values.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index f1dd15900..99cdeaa41 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -732,7 +732,7 @@ controller:
       #     description: bad ingress config - nginx config test failed
       #     summary: uninstall the latest ingress changes to allow config reloads to resume
       # - alert: NGINXCertificateExpiry
-      #   expr: (avg(nginx_ingress_controller_ssl_expire_time_seconds) by (host) - time()) < 604800
+      #   expr: (avg(nginx_ingress_controller_ssl_expire_time_seconds{host!="_"}) by (host) - time()) < 604800
       #   for: 1s
       #   labels:
       #     severity: critical

From d6a0f46c320a97dbbe4594ccdc9c2d4ac37a622e Mon Sep 17 00:00:00 2001
From: Philipp B <git@pborn.eu>
Date: Thu, 2 Nov 2023 22:45:46 +0100
Subject: [PATCH 1006/1641] chart: allow setting allocateLoadBalancerNodePorts
 (#10585)

Signed-off-by: Philipp Born <git@pborn.eu>
---
 .../templates/controller-service-internal.yaml              | 3 +++
 charts/ingress-nginx/templates/controller-service.yaml      | 3 +++
 charts/ingress-nginx/values.yaml                            | 6 ++++++
 3 files changed, 12 insertions(+)

diff --git a/charts/ingress-nginx/templates/controller-service-internal.yaml b/charts/ingress-nginx/templates/controller-service-internal.yaml
index 4608a4902..b69a09f67 100644
--- a/charts/ingress-nginx/templates/controller-service-internal.yaml
+++ b/charts/ingress-nginx/templates/controller-service-internal.yaml
@@ -16,6 +16,9 @@ metadata:
   namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   type: "{{ .Values.controller.service.type }}"
+{{- if hasKey .Values.controller.service.internal "allocateLoadBalancerNodePorts" }}
+  allocateLoadBalancerNodePorts: {{ .Values.controller.service.internal.allocateLoadBalancerNodePorts }}
+{{- end }}
 {{- if .Values.controller.service.internal.loadBalancerIP }}
   loadBalancerIP: {{ .Values.controller.service.internal.loadBalancerIP }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-service.yaml b/charts/ingress-nginx/templates/controller-service.yaml
index 1daec5b48..d81635014 100644
--- a/charts/ingress-nginx/templates/controller-service.yaml
+++ b/charts/ingress-nginx/templates/controller-service.yaml
@@ -16,6 +16,9 @@ metadata:
   namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   type: {{ .Values.controller.service.type }}
+{{- if hasKey .Values.controller.service "allocateLoadBalancerNodePorts" }}
+  allocateLoadBalancerNodePorts: {{ .Values.controller.service.allocateLoadBalancerNodePorts }}
+{{- end }}
 {{- if .Values.controller.service.clusterIP }}
   clusterIP: {{ .Values.controller.service.clusterIP }}
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 99cdeaa41..51dccaac0 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -455,6 +455,9 @@ controller:
     ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips
     ##
     externalIPs: []
+    # -- Set to false to disable loadbalancer node port allocation
+    # See https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-nodeport-allocation
+    # allocateLoadBalancerNodePorts: true
     # -- Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
     loadBalancerIP: ""
     loadBalancerSourceRanges: []
@@ -510,6 +513,9 @@ controller:
       enabled: false
       # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service. Values passed through helm tpl engine.
       annotations: {}
+      # -- Set to false to disable loadbalancer node port allocation
+      # See https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-nodeport-allocation
+      # allocateLoadBalancerNodePorts: true
       # -- Used by cloud providers to connect the resulting internal LoadBalancer to a pre-existing static IP. Make sure to add to the service the needed annotation to specify the subnet which the static IP belongs to. For instance, `networking.gke.io/internal-load-balancer-subnet` for GCP and `service.beta.kubernetes.io/aws-load-balancer-subnets` for AWS.
       loadBalancerIP: ""
       # -- Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.

From 9ed0d7f7afa3e6deaf88ee5b7d787abe26da9229 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Fri, 3 Nov 2023 10:46:32 -0300
Subject: [PATCH 1007/1641] Separate third party NGINX configuration (#10470)

* Document container separation

* Separate configurations
---
 .../enhancements/20231001-split-containers.md | 110 ++++++++++++++++++
 .../nginx-configuration/configmap.md          |   2 +-
 .../third-party-addons/opentelemetry.md       |   2 +-
 go.work.sum                                   |   4 +
 images/kube-webhook-certgen/rootfs/go.mod     |   2 +-
 images/kube-webhook-certgen/rootfs/go.sum     |   4 +-
 internal/ingress/controller/config/config.go  |   2 +-
 internal/ingress/controller/nginx.go          |   9 +-
 internal/ingress/controller/store/store.go    |   2 +-
 .../ingress/controller/template/template.go   |   6 +-
 .../controller/template/template_test.go      |  10 +-
 internal/nginx/maxmind.go                     |   2 +-
 magefiles/go.mod                              |   2 +-
 magefiles/go.sum                              |   5 +-
 rootfs/Dockerfile                             |   3 +-
 rootfs/chroot.sh                              |   5 +-
 rootfs/etc/nginx/template/nginx.tmpl          |  20 ++--
 test/e2e/settings/geoip2.go                   |   2 +-
 test/e2e/settings/opentelemetry.go            |   2 +-
 19 files changed, 158 insertions(+), 36 deletions(-)
 create mode 100644 docs/enhancements/20231001-split-containers.md

diff --git a/docs/enhancements/20231001-split-containers.md b/docs/enhancements/20231001-split-containers.md
new file mode 100644
index 000000000..3c2e85094
--- /dev/null
+++ b/docs/enhancements/20231001-split-containers.md
@@ -0,0 +1,110 @@
+# Proposal to split containers
+
+* All the NGINX files should live on one container
+  * No file other than NGINX files should exist on this container
+  * This includes not mounting the service account
+* All the controller files should live on a different container
+  * Controller container should have bare minimum to work (just go program)
+  * ServiceAccount should be mounted just on controller
+
+* Inside nginx container, there should be a really small http listener just able 
+to start, stop and reload NGINX
+
+## Roadmap (what needs to be done)
+* Map what needs to be done to mount the SA just on controller container
+* Map all the required files for NGINX to work
+* Map all the required network calls between controller and NGINX
+  * eg.: Dynamic lua reconfiguration
+* Map problematic features that will need attention
+  * SSLPassthrough today happens on controller process and needs to happen on NGINX
+
+### Ports and endpoints on NGINX container
+* Public HTTP/HTTPs port - 80 and 443
+* Lua configuration port - 10246 (HTTP) and 10247 (Stream)
+* 3333 (temp) - Dataplane controller http server
+  * /reload - (POST) Reloads the configuration.
+    * "config" argument is the location of temporary file that should be used / moved to nginx.conf
+  * /test - (POST) Test the configuration of a given file location
+    * "config" argument is the location of temporary file that should be tested
+
+### Mounting empty SA on controller container
+
+```yaml
+kind: Pod
+apiVersion: v1
+metadata:
+  name: test
+spec:
+  containers:
+  - name: nginx
+    image: nginx:latest
+    ports:
+    - containerPort: 80
+  - name: othernginx
+    image: alpine:latest
+    command: ["/bin/sh"]
+    args: ["-c", "while true; do date; sleep 3; done"]
+    volumeMounts:
+    - mountPath: /var/run/secrets/kubernetes.io/serviceaccount
+      name: emptysecret
+  volumes:
+  - name: emptysecret
+    emptyDir:
+      sizeLimit: 1Mi
+```
+
+### Mapped folders on NGINX configuration
+**WARNING** We need to be aware of inter mount containers and inode problems. If we 
+mount a file instead of a directory, it may take time to reflect the file value on 
+the target container
+
+*  "/etc/nginx/lua/?.lua;/etc/nginx/lua/vendor/?.lua;;"; - Lua scripts
+* "/var/log/nginx" - NGINX logs
+* "/tmp/nginx (nginx.pid)" - NGINX pid directory / file, fcgi socket, etc
+* " /etc/nginx/geoip" - GeoIP database directory - OK - /etc/ingress-controller/geoip
+* /etc/nginx/mime.types - Mime types
+* /etc/ingress-controller/ssl - SSL directory (fake cert, auth cert)
+* /etc/ingress-controller/auth - Authentication files
+* /etc/nginx/modsecurity - Modsecurity configuration
+* /etc/nginx/owasp-modsecurity-crs - Modsecurity rules
+* /etc/nginx/tickets.key - SSL tickets - OK - /etc/ingress-controller/tickets.key
+* /etc/nginx/opentelemetry.toml - OTEL config - OK - /etc/ingress-controller/telemetry
+* /etc/nginx/opentracing.json - Opentracing config - OK - /etc/ingress-controller/telemetry
+* /etc/nginx/modules - NGINX modules
+* /etc/nginx/fastcgi_params (maybe) - fcgi params
+* /etc/nginx/template - Template, may be used by controller only
+
+##### List of modules
+```
+ngx_http_auth_digest_module.so    ngx_http_modsecurity_module.so
+ngx_http_brotli_filter_module.so  ngx_http_opentracing_module.so
+ngx_http_brotli_static_module.so  ngx_stream_geoip2_module.so
+ngx_http_geoip2_module.so
+```
+
+##### List of files that may be removed
+```
+-rw-r--r--    1 www-data www-data      1077 Jun 23 19:44 fastcgi.conf
+-rw-r--r--    1 www-data www-data      1077 Jun 23 19:44 fastcgi.conf.default
+-rw-r--r--    1 www-data www-data      1007 Jun 23 19:44 fastcgi_params
+-rw-r--r--    1 www-data www-data      1007 Jun 23 19:44 fastcgi_params.default
+drwxr-xr-x    2 www-data www-data      4096 Jun 23 19:34 geoip
+-rw-r--r--    1 www-data www-data      2837 Jun 23 19:44 koi-utf
+-rw-r--r--    1 www-data www-data      2223 Jun 23 19:44 koi-win
+drwxr-xr-x    6 www-data www-data      4096 Sep 19 14:13 lua
+-rw-r--r--    1 www-data www-data      5349 Jun 23 19:44 mime.types
+-rw-r--r--    1 www-data www-data      5349 Jun 23 19:44 mime.types.default
+drwxr-xr-x    2 www-data www-data      4096 Jun 23 19:44 modsecurity
+drwxr-xr-x    2 www-data www-data      4096 Jun 23 19:44 modules
+-rw-r--r--    1 www-data www-data     18275 Oct  1 21:28 nginx.conf
+-rw-r--r--    1 www-data www-data      2656 Jun 23 19:44 nginx.conf.default
+-rwx------    1 www-data www-data       420 Oct  1 21:28 opentelemetry.toml
+-rw-r--r--    1 www-data www-data         2 Oct  1 21:28 opentracing.json
+drwxr-xr-x    7 www-data www-data      4096 Jun 23 19:44 owasp-modsecurity-crs
+-rw-r--r--    1 www-data www-data       636 Jun 23 19:44 scgi_params
+-rw-r--r--    1 www-data www-data       636 Jun 23 19:44 scgi_params.default
+drwxr-xr-x    2 www-data www-data      4096 Sep 19 14:13 template
+-rw-r--r--    1 www-data www-data       664 Jun 23 19:44 uwsgi_params
+-rw-r--r--    1 www-data www-data       664 Jun 23 19:44 uwsgi_params.default
+-rw-r--r--    1 www-data www-data      3610 Jun 23 19:44 win-utf
+```
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index bc9dfae0e..92ac39ee6 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -164,7 +164,7 @@ The following table shows a configuration option's name, type, and the default v
 |[enable-opentelemetry](#enable-opentelemetry)|bool|"false"||
 |[opentelemetry-trust-incoming-span](#opentelemetry-trust-incoming-span)|bool|"true"||
 |[opentelemetry-operation-name](#opentelemetry-operation-name)|string|""||
-|[opentelemetry-config](#/etc/nginx/opentelemetry.toml)|string|"/etc/nginx/opentelemetry.toml"||
+|[opentelemetry-config](#/etc/ingress-controller/telemetry/opentelemetry.toml)|string|"/etc/ingress-controller/telemetry/opentelemetry.toml"||
 |[otlp-collector-host](#otlp-collector-host)|string|""||
 |[otlp-collector-port](#otlp-collector-port)|int|4317||
 |[otel-max-queuesize](#otel-max-queuesize)|int|||
diff --git a/docs/user-guide/third-party-addons/opentelemetry.md b/docs/user-guide/third-party-addons/opentelemetry.md
index d735fca4f..a4bd8d060 100644
--- a/docs/user-guide/third-party-addons/opentelemetry.md
+++ b/docs/user-guide/third-party-addons/opentelemetry.md
@@ -165,7 +165,7 @@ To install the example and collectors run:
       kind: ConfigMap
       data:
         enable-opentelemetry: "true"
-        opentelemetry-config: "/etc/nginx/opentelemetry.toml"
+        opentelemetry-config: "/etc/ingress-controller/telemetry/opentelemetry.toml"
         opentelemetry-operation-name: "HTTP $request_method $service_name $uri"
         opentelemetry-trust-incoming-span: "true"
         otlp-collector-host: "otel-coll-collector.otel.svc"
diff --git a/go.work.sum b/go.work.sum
index b90672997..863a10664 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -186,6 +186,7 @@ github.com/klauspost/asmfmt v1.3.2/go.mod h1:AG8TuvYojzulgDAMCnYn50l/5QV3Bs/tp6j
 github.com/klauspost/compress v1.15.9/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU=
 github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
 github.com/ledongthuc/pdf v0.0.0-20220302134840-0c2507a12d80/go.mod h1:imJHygn/1yfhB7XSJJKlFZKl/J+dCPAknuiaGOshXAs=
+github.com/matttproud/golang_protobuf_extensions v1.0.4 h1:mmDVorXM7PCGKw94cs5zkfA9PSy5pEvNWRP0ET0TIVo=
 github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8/go.mod h1:mC1jAcsrzbxHt8iiaC+zU4b1ylILSosueou12R++wfY=
 github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3/go.mod h1:RagcQ7I8IeTMnF8JTXieKnO4Z6JCsikNEzj0DwauVzE=
 github.com/moby/term v0.0.0-20221205130635-1aeaba878587/go.mod h1:8FzsFHVUBGZdbDsJw/ot+X+d5HLUbvklYLJ9uGfcI3Y=
@@ -199,6 +200,7 @@ github.com/onsi/gomega v1.27.4/go.mod h1:riYq/GJKh8hhoM01HN6Vmuy93AarCXCBGpvFDK3
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
 github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde/go.mod h1:nZgzbfBr3hhjoZnS66nKrHmduYNpc34ny7RK4z5/HM0=
 github.com/pierrec/lz4/v4 v4.1.15/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4=
+github.com/pquerna/cachecontrol v0.1.0/go.mod h1:NrUG3Z7Rdu85UNR3vm7SOsl1nFIeSiQnrHV5K9mBcUI=
 github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
 github.com/spf13/afero v1.3.3/go.mod h1:5KUK8ByomD5Ti5Artl0RtHeI5pTF7MIDuXL3yY520V4=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
@@ -254,6 +256,7 @@ golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.3.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.4.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.10.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
@@ -284,6 +287,7 @@ google.golang.org/genproto v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:xZnkP7mR
 google.golang.org/genproto v0.0.0-20230706204954-ccb25ca9f130/go.mod h1:O9kGHb51iE/nOGvQaDUuadVYqovW56s5emA88lQnj6Y=
 google.golang.org/genproto v0.0.0-20230711160842-782d3b101e98 h1:Z0hjGZePRE0ZBWotvtrwxFNrNE9CUAGtplaDK5NNI/g=
 google.golang.org/genproto v0.0.0-20230711160842-782d3b101e98/go.mod h1:S7mY02OqCJTD0E1OiQy1F72PWFB4bZJ87cAtLPYgDR0=
+google.golang.org/genproto v0.0.0-20230822172742-b8732ec3820d h1:VBu5YqKPv6XiJ199exd8Br+Aetz+o08F+PLMnwJQHAY=
 google.golang.org/genproto/googleapis/api v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
 google.golang.org/genproto/googleapis/api v0.0.0-20230706204954-ccb25ca9f130/go.mod h1:mPBs5jNgx2GuQGvFwUvVKqtn6HsUw9nP64BedgvqEsQ=
 google.golang.org/genproto/googleapis/api v0.0.0-20230711160842-782d3b101e98/go.mod h1:rsr7RhLuwsDKL7RmgDDCUc6yaGr1iqceVb5Wv6f6YvQ=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index b0cf83320..b30fa5f27 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/google/go-cmp v0.5.9 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
 	github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98 // indirect
-	github.com/google/uuid v1.3.0 // indirect
+	github.com/google/uuid v1.3.1 // indirect
 	github.com/imdario/mergo v0.3.6 // indirect
 	github.com/inconshreveable/mousetrap v1.1.0 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index b41bf8a06..004bd7d96 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -202,8 +202,8 @@ github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98/go.mod h1:czg5+yv1E0Z
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/uuid v1.1.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-github.com/google/uuid v1.3.0 h1:t6JiXgmwXMjEs8VusXIJk2BXHsn+wx8BZdTaoZ5fu7I=
-github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/google/uuid v1.3.1 h1:KjJaJ9iWZ3jOFZIf1Lqf4laDRCasjl0BCmnEGxkdLb4=
+github.com/google/uuid v1.3.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
 github.com/googleapis/gnostic v0.5.1/go.mod h1:6U4PtQXGIEt/Z3h5MAT7FNofLnw9vXk2cUuW7uA/OeU=
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index fadc924be..9bb13823f 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -987,7 +987,7 @@ func NewDefault() Configuration {
 		BindAddressIpv6:                        defBindAddress,
 		OpentracingTrustIncomingSpan:           true,
 		OpentelemetryTrustIncomingSpan:         true,
-		OpentelemetryConfig:                    "/etc/nginx/opentelemetry.toml",
+		OpentelemetryConfig:                    "/etc/ingress-controller/telemetry/opentelemetry.toml",
 		OtlpCollectorPort:                      "4317",
 		OtelServiceName:                        "nginx",
 		OtelSampler:                            "AlwaysOn",
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 30f785586..83b38bd3a 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -22,6 +22,7 @@ import (
 	"encoding/json"
 	"errors"
 	"fmt"
+	"io/fs"
 	"net"
 	"net/http"
 	"os"
@@ -180,7 +181,11 @@ func NewNGINXController(config *Configuration, mc metric.Collector) *NGINXContro
 	}
 
 	filesToWatch := []string{}
-	err = filepath.Walk("/etc/nginx/geoip/", func(path string, info os.FileInfo, err error) error {
+
+	if err := os.Mkdir("/etc/ingress-controller/geoip/", 0o755); err != nil && !os.IsExist(err) {
+		klog.Fatalf("Error creating geoip dir: %v", err)
+	}
+	err = filepath.WalkDir("/etc/ingress-controller/geoip/", func(path string, info fs.DirEntry, err error) error {
 		if err != nil {
 			return err
 		}
@@ -1107,7 +1112,7 @@ func createOpentracingCfg(cfg *ngx_config.Configuration) error {
 	// Expand possible environment variables before writing the configuration to file.
 	expanded := os.ExpandEnv(configData)
 
-	return os.WriteFile("/etc/nginx/opentracing.json", []byte(expanded), file.ReadWriteByUser)
+	return os.WriteFile("/etc/ingress-controller/telemetry/opentracing.json", []byte(expanded), file.ReadWriteByUser)
 }
 
 func createOpentelemetryCfg(cfg *ngx_config.Configuration) error {
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 918dfd41a..4288785de 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -1215,7 +1215,7 @@ func (s *k8sStore) setConfig(cmap *corev1.ConfigMap) {
 		s.backendConfig.UseGeoIP2 = false
 	}
 
-	s.writeSSLSessionTicketKey(cmap, "/etc/nginx/tickets.key")
+	s.writeSSLSessionTicketKey(cmap, "/etc/ingress-controller/tickets.key")
 }
 
 // Run initiates the synchronization of the informers and the initial
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 6702e08db..c2d461b21 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -1230,11 +1230,11 @@ func buildOpentracing(c, s interface{}) string {
 
 	//nolint:gocritic // rewriting if-else to switch statement is not more readable
 	if cfg.DatadogCollectorHost != "" {
-		buf.WriteString("opentracing_load_tracer /usr/local/lib/libdd_opentracing.so /etc/nginx/opentracing.json;")
+		buf.WriteString("opentracing_load_tracer /usr/local/lib/libdd_opentracing.so /etc/ingress-controller/telemetry/opentracing.json;")
 	} else if cfg.ZipkinCollectorHost != "" {
-		buf.WriteString("opentracing_load_tracer /usr/local/lib/libzipkin_opentracing_plugin.so /etc/nginx/opentracing.json;")
+		buf.WriteString("opentracing_load_tracer /usr/local/lib/libzipkin_opentracing_plugin.so /etc/ingress-controller/telemetry/opentracing.json;")
 	} else if cfg.JaegerCollectorHost != "" || cfg.JaegerEndpoint != "" {
-		buf.WriteString("opentracing_load_tracer /usr/local/lib/libjaegertracing_plugin.so /etc/nginx/opentracing.json;")
+		buf.WriteString("opentracing_load_tracer /usr/local/lib/libjaegertracing_plugin.so /etc/ingress-controller/telemetry/opentracing.json;")
 	}
 
 	buf.WriteString("\r\n")
diff --git a/internal/ingress/controller/template/template_test.go b/internal/ingress/controller/template/template_test.go
index 110967711..c4ad6cd3a 100644
--- a/internal/ingress/controller/template/template_test.go
+++ b/internal/ingress/controller/template/template_test.go
@@ -1663,7 +1663,7 @@ func TestBuildOpenTracing(t *testing.T) {
 		EnableOpentracing:   true,
 		JaegerCollectorHost: "jaeger-host.com",
 	}
-	expected = "opentracing_load_tracer /usr/local/lib/libjaegertracing_plugin.so /etc/nginx/opentracing.json;\r\n"
+	expected = "opentracing_load_tracer /usr/local/lib/libjaegertracing_plugin.so /etc/ingress-controller/telemetry/opentracing.json;\r\n"
 	actual = buildOpentracing(cfgJaeger, []*ingress.Server{})
 
 	if expected != actual {
@@ -1674,7 +1674,7 @@ func TestBuildOpenTracing(t *testing.T) {
 		EnableOpentracing:   true,
 		ZipkinCollectorHost: "zipkin-host.com",
 	}
-	expected = "opentracing_load_tracer /usr/local/lib/libzipkin_opentracing_plugin.so /etc/nginx/opentracing.json;\r\n"
+	expected = "opentracing_load_tracer /usr/local/lib/libzipkin_opentracing_plugin.so /etc/ingress-controller/telemetry/opentracing.json;\r\n"
 	actual = buildOpentracing(cfgZipkin, []*ingress.Server{})
 
 	if expected != actual {
@@ -1685,7 +1685,7 @@ func TestBuildOpenTracing(t *testing.T) {
 		EnableOpentracing:    true,
 		DatadogCollectorHost: "datadog-host.com",
 	}
-	expected = "opentracing_load_tracer /usr/local/lib/libdd_opentracing.so /etc/nginx/opentracing.json;\r\n"
+	expected = "opentracing_load_tracer /usr/local/lib/libdd_opentracing.so /etc/ingress-controller/telemetry/opentracing.json;\r\n"
 	actual = buildOpentracing(cfgDatadog, []*ingress.Server{})
 
 	if expected != actual {
@@ -1696,7 +1696,7 @@ func TestBuildOpenTracing(t *testing.T) {
 		EnableOpentracing: true,
 		JaegerEndpoint:    "http://jaeger-collector.com:14268/api/traces",
 	}
-	expected = "opentracing_load_tracer /usr/local/lib/libjaegertracing_plugin.so /etc/nginx/opentracing.json;\r\n"
+	expected = "opentracing_load_tracer /usr/local/lib/libjaegertracing_plugin.so /etc/ingress-controller/telemetry/opentracing.json;\r\n"
 	actual = buildOpentracing(cfgJaegerEndpoint, []*ingress.Server{})
 
 	if expected != actual {
@@ -1709,7 +1709,7 @@ func TestBuildOpenTracing(t *testing.T) {
 		OpentracingOperationName:         "my-operation-name",
 		OpentracingLocationOperationName: "my-location-operation-name",
 	}
-	expected = "opentracing_load_tracer /usr/local/lib/libdd_opentracing.so /etc/nginx/opentracing.json;\r\n"
+	expected = "opentracing_load_tracer /usr/local/lib/libdd_opentracing.so /etc/ingress-controller/telemetry/opentracing.json;\r\n"
 	expected += "opentracing_operation_name \"my-operation-name\";\n"
 	expected += "opentracing_location_operation_name \"my-location-operation-name\";\n"
 	actual = buildOpentracing(cfgOpenTracing, []*ingress.Server{})
diff --git a/internal/nginx/maxmind.go b/internal/nginx/maxmind.go
index 4719a22c1..1dc2f4d4e 100644
--- a/internal/nginx/maxmind.go
+++ b/internal/nginx/maxmind.go
@@ -56,7 +56,7 @@ var MaxmindRetriesTimeout = time.Second * 0
 const minimumRetriesCount = 1
 
 const (
-	geoIPPath   = "/etc/nginx/geoip"
+	geoIPPath   = "/etc/ingress-controller/geoip"
 	dbExtension = ".mmdb"
 
 	maxmindURL = "https://download.maxmind.com/app/geoip_download?license_key=%v&edition_id=%v&suffix=tar.gz"
diff --git a/magefiles/go.mod b/magefiles/go.mod
index e846c884a..db252f7c3 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -17,7 +17,7 @@ require (
 	github.com/Masterminds/semver v1.5.0 // indirect
 	github.com/cyphar/filepath-securejoin v0.2.4 // indirect
 	github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960 // indirect
-	github.com/fsnotify/fsnotify v1.6.0 // indirect
+	github.com/fsnotify/fsnotify v1.7.0 // indirect
 	github.com/ghodss/yaml v1.0.0 // indirect
 	github.com/gobwas/glob v0.2.3 // indirect
 	github.com/golang/protobuf v1.5.3 // indirect
diff --git a/magefiles/go.sum b/magefiles/go.sum
index f89975c18..ddb7475da 100644
--- a/magefiles/go.sum
+++ b/magefiles/go.sum
@@ -14,8 +14,8 @@ github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960 h1:aRd8M7HJVZOqn/v
 github.com/dprotaso/go-yit v0.0.0-20191028211022-135eb7262960/go.mod h1:9HQzr9D/0PGwMEbC3d5AB7oi67+h4TsQqItC1GVYG58=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
-github.com/fsnotify/fsnotify v1.6.0 h1:n+5WquG0fcWoWp6xPWfHdbskMCQaFnG6PfBrh1Ky4HY=
-github.com/fsnotify/fsnotify v1.6.0/go.mod h1:sl3t1tCWJFWoRz9R8WJCbQihKKwmorjAbSClcnxKAGw=
+github.com/fsnotify/fsnotify v1.7.0 h1:8JEhPFa5W2WU7YfeZzPNqzMP6Lwt7L2715Ggo0nosvA=
+github.com/fsnotify/fsnotify v1.7.0/go.mod h1:40Bi/Hjc2AVfZrqy+aj+yEI+/bRxZnMJyTJwOpGvigM=
 github.com/ghodss/yaml v1.0.0 h1:wQHKEahhL6wmXdzwWG11gIVCkOv05bNOh+Rxn0yngAk=
 github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
 github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
@@ -113,7 +113,6 @@ golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210112080510-489259a85091/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20220908164124-27713097b956/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.13.0 h1:Af8nKPmuFypiUBjVoU9V20FiaFXOcuZI21p0ycVYYGE=
 golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
diff --git a/rootfs/Dockerfile b/rootfs/Dockerfile
index 75cf3fc65..86517c6c1 100644
--- a/rootfs/Dockerfile
+++ b/rootfs/Dockerfile
@@ -49,9 +49,10 @@ COPY --chown=www-data:www-data bin/${TARGETARCH}/wait-shutdown /
 # with volumes (custom templates)
 RUN bash -xeu -c ' \
   writeDirs=( \
-    /etc/ingress-controller \
     /etc/ingress-controller/ssl \
     /etc/ingress-controller/auth \
+    /etc/ingress-controller/geoip \
+    /etc/ingress-controller/telemetry \
     /var/log \
     /var/log/nginx \
     /tmp/nginx \
diff --git a/rootfs/chroot.sh b/rootfs/chroot.sh
index 9f3cbd804..38547b69c 100755
--- a/rootfs/chroot.sh
+++ b/rootfs/chroot.sh
@@ -21,6 +21,8 @@ writeDirs=( \
   /chroot/etc/ingress-controller \
   /chroot/etc/ingress-controller/ssl \
   /chroot/etc/ingress-controller/auth \
+  /chroot/etc/ingress-controller/telemetry \
+  /chroot/etc/ingress-controller/geoip \
   /chroot/opt/modsecurity/var/log \
   /chroot/opt/modsecurity/var/upload \
   /chroot/opt/modsecurity/var/audit \
@@ -41,7 +43,8 @@ for dir in "${writeDirs[@]}"; do
 done
 
 mkdir -p  /chroot/lib /chroot/proc /chroot/usr /chroot/bin /chroot/dev /chroot/run 
-cp /etc/passwd /etc/group /chroot/etc/
+cp /etc/passwd /etc/group /etc/hosts /chroot/etc/
 cp -a /usr/* /chroot/usr/
 cp -a /etc/nginx/* /chroot/etc/nginx/
+cp -a /etc/ingress-controller/* /chroot/etc/ingress-controller/
 cp /lib/ld-musl-* /lib/libcrypto* /lib/libssl* /lib/libz* /chroot/lib/
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index a6ebe5d2a..de0c5089b 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -175,7 +175,7 @@ http {
 
     {{ range $index, $file := $all.MaxmindEditionFiles }}
     {{ if eq $file "GeoLite2-Country.mmdb" }}
-    geoip2 /etc/nginx/geoip/GeoLite2-Country.mmdb {
+    geoip2 /etc/ingress-controller/geoip/GeoLite2-Country.mmdb {
         $geoip2_country_code source=$remote_addr country iso_code;
         $geoip2_country_name source=$remote_addr country names en;
         $geoip2_country_geoname_id source=$remote_addr country geoname_id;
@@ -186,7 +186,7 @@ http {
     {{ end }}
 
     {{ if eq $file "GeoIP2-Country.mmdb" }}
-    geoip2 /etc/nginx/geoip/GeoIP2-Country.mmdb {
+    geoip2 /etc/ingress-controller/geoip/GeoIP2-Country.mmdb {
         $geoip2_country_code source=$remote_addr country iso_code;
         $geoip2_country_name source=$remote_addr country names en;
         $geoip2_country_geoname_id source=$remote_addr country geoname_id;
@@ -197,7 +197,7 @@ http {
     {{ end }}
 
     {{ if eq $file "GeoLite2-City.mmdb" }}
-    geoip2 /etc/nginx/geoip/GeoLite2-City.mmdb {
+    geoip2 /etc/ingress-controller/geoip/GeoLite2-City.mmdb {
         $geoip2_city_country_code source=$remote_addr country iso_code;
         $geoip2_city_country_name source=$remote_addr country names en;
         $geoip2_city_country_geoname_id source=$remote_addr country geoname_id;
@@ -220,7 +220,7 @@ http {
     {{ end }}
 
     {{ if eq $file "GeoIP2-City.mmdb" }}
-    geoip2 /etc/nginx/geoip/GeoIP2-City.mmdb {
+    geoip2 /etc/ingress-controller/geoip/GeoIP2-City.mmdb {
         $geoip2_city_country_code source=$remote_addr country iso_code;
         $geoip2_city_country_name source=$remote_addr country names en;
         $geoip2_city_country_geoname_id source=$remote_addr country geoname_id;
@@ -243,21 +243,21 @@ http {
     {{ end }}
 
     {{ if eq $file "GeoLite2-ASN.mmdb" }}
-    geoip2 /etc/nginx/geoip/GeoLite2-ASN.mmdb {
+    geoip2 /etc/ingress-controller/geoip/GeoLite2-ASN.mmdb {
         $geoip2_asn source=$remote_addr autonomous_system_number;
         $geoip2_org source=$remote_addr autonomous_system_organization;
     }
     {{ end }}
 
     {{ if eq $file "GeoIP2-ASN.mmdb" }}
-    geoip2 /etc/nginx/geoip/GeoIP2-ASN.mmdb {
+    geoip2 /etc/ingress-controller/geoip/GeoIP2-ASN.mmdb {
         $geoip2_asn source=$remote_addr autonomous_system_number;
         $geoip2_org source=$remote_addr autonomous_system_organization;
     }
     {{ end }}
 
     {{ if eq $file "GeoIP2-ISP.mmdb" }}
-    geoip2 /etc/nginx/geoip/GeoIP2-ISP.mmdb {
+    geoip2 /etc/ingress-controller/geoip/GeoIP2-ISP.mmdb {
         $geoip2_isp source=$remote_addr isp;
         $geoip2_isp_org source=$remote_addr organization;
         $geoip2_asn source=$remote_addr default=0 autonomous_system_number;
@@ -265,13 +265,13 @@ http {
     {{ end }}
 
     {{ if eq $file "GeoIP2-Connection-Type.mmdb" }}
-    geoip2 /etc/nginx/geoip/GeoIP2-Connection-Type.mmdb {
+    geoip2 /etc/ingress-controller/geoip/GeoIP2-Connection-Type.mmdb {
         $geoip2_connection_type connection_type;
     }
     {{ end }}
 
     {{ if eq $file "GeoIP2-Anonymous-IP.mmdb" }}
-    geoip2 /etc/nginx/geoip/GeoIP2-Anonymous-IP.mmdb {
+    geoip2 /etc/ingress-controller/geoip/GeoIP2-Anonymous-IP.mmdb {
         $geoip2_is_anon source=$remote_addr is_anonymous;
         $geoip2_is_anonymous source=$remote_addr default=0 is_anonymous;
         $geoip2_is_anonymous_vpn source=$remote_addr default=0 is_anonymous_vpn;
@@ -469,7 +469,7 @@ http {
     ssl_session_tickets {{ if $cfg.SSLSessionTickets }}on{{ else }}off{{ end }};
 
     {{ if not (empty $cfg.SSLSessionTicketKey ) }}
-    ssl_session_ticket_key /etc/nginx/tickets.key;
+    ssl_session_ticket_key /etc/ingress-controller/tickets.key;
     {{ end }}
 
     # slightly reduce the time-to-first-byte
diff --git a/test/e2e/settings/geoip2.go b/test/e2e/settings/geoip2.go
index e37286d5c..7da26d810 100644
--- a/test/e2e/settings/geoip2.go
+++ b/test/e2e/settings/geoip2.go
@@ -54,7 +54,7 @@ var _ = framework.DescribeSetting("Geoip2", func() {
 		})
 		assert.Nil(ginkgo.GinkgoT(), err, "updating ingress controller deployment flags")
 
-		filename := fmt.Sprintf("/etc/nginx/geoip/%s.mmdb", edition)
+		filename := fmt.Sprintf("/etc/ingress-controller/geoip/%s.mmdb", edition)
 		exec, err := f.ExecIngressPod(fmt.Sprintf(`sh -c "mkdir -p '%s' && wget -O '%s' '%s' 2>&1"`, filepath.Dir(filename), filename, testdataURL))
 		framework.Logf(exec)
 		assert.Nil(ginkgo.GinkgoT(), err, fmt.Sprintln("error downloading test geoip2 db", filename))
diff --git a/test/e2e/settings/opentelemetry.go b/test/e2e/settings/opentelemetry.go
index 15b5d165e..b5fc6ff4e 100644
--- a/test/e2e/settings/opentelemetry.go
+++ b/test/e2e/settings/opentelemetry.go
@@ -31,7 +31,7 @@ const (
 	opentelemetryOperationName         = "opentelemetry-operation-name"
 	opentelemetryLocationOperationName = "opentelemetry-location-operation-name"
 	opentelemetryConfig                = "opentelemetry-config"
-	opentelemetryConfigPath            = "/etc/nginx/opentelemetry.toml"
+	opentelemetryConfigPath            = "/etc/ingress-controller/telemetry/opentelemetry.toml"
 
 	enable = "true"
 )

From 30820a5acce63c30a293281fa4498fe823464bb8 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sat, 4 Nov 2023 21:58:35 -0300
Subject: [PATCH 1008/1641] Deprecate opentracing (#10615)

---
 go.work.sum                                   |   4 +
 internal/ingress/annotations/annotations.go   |   3 -
 .../ingress/annotations/opentracing/main.go   | 113 --------
 .../annotations/opentracing/main_test.go      | 159 -----------
 internal/ingress/controller/config/config.go  | 120 --------
 internal/ingress/controller/controller.go     |   1 -
 internal/ingress/controller/nginx.go          |  96 -------
 .../ingress/controller/template/template.go   | 111 --------
 .../controller/template/template_test.go      | 200 --------------
 mkdocs.yml                                    |   1 -
 pkg/apis/ingress/types.go                     |   4 -
 pkg/apis/ingress/types_equals.go              |   4 -
 rootfs/etc/nginx/template/nginx.tmpl          |  21 --
 test/e2e/settings/opentracing.go              | 256 ------------------
 14 files changed, 4 insertions(+), 1089 deletions(-)
 delete mode 100644 internal/ingress/annotations/opentracing/main.go
 delete mode 100644 internal/ingress/annotations/opentracing/main_test.go
 delete mode 100644 test/e2e/settings/opentracing.go

diff --git a/go.work.sum b/go.work.sum
index 863a10664..e8b110fe7 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -187,6 +187,7 @@ github.com/klauspost/compress v1.15.9/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHU
 github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
 github.com/ledongthuc/pdf v0.0.0-20220302134840-0c2507a12d80/go.mod h1:imJHygn/1yfhB7XSJJKlFZKl/J+dCPAknuiaGOshXAs=
 github.com/matttproud/golang_protobuf_extensions v1.0.4 h1:mmDVorXM7PCGKw94cs5zkfA9PSy5pEvNWRP0ET0TIVo=
+github.com/matttproud/golang_protobuf_extensions v1.0.4/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
 github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8/go.mod h1:mC1jAcsrzbxHt8iiaC+zU4b1ylILSosueou12R++wfY=
 github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3/go.mod h1:RagcQ7I8IeTMnF8JTXieKnO4Z6JCsikNEzj0DwauVzE=
 github.com/moby/term v0.0.0-20221205130635-1aeaba878587/go.mod h1:8FzsFHVUBGZdbDsJw/ot+X+d5HLUbvklYLJ9uGfcI3Y=
@@ -210,7 +211,10 @@ github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYp
 github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
 github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
 github.com/zeebo/xxh3 v1.0.2/go.mod h1:5NWz9Sef7zIDm2JHfFlcQvNekmcEl9ekUZQQKCYaDcA=
+go.etcd.io/etcd/api/v3 v3.5.7/go.mod h1:9qew1gCdDDLu+VwmeG+iFpL+QlpHTo7iubavdVDgCAA=
+go.etcd.io/etcd/client/pkg/v3 v3.5.7/go.mod h1:o0Abi1MK86iad3YrWhgUsbGx1pmTS+hrORWc2CamuhY=
 go.etcd.io/etcd/client/v2 v2.305.7/go.mod h1:GQGT5Z3TBuAQGvgPfhR7VPySu/SudxmEkRq9BgzFU6s=
+go.etcd.io/etcd/client/v3 v3.5.7/go.mod h1:sOWmj9DZUMyAngS7QQwCyAXXAL6WhgTOPLNS/NabQgw=
 go.etcd.io/etcd/pkg/v3 v3.5.7/go.mod h1:kcOfWt3Ov9zgYdOiJ/o1Y9zFfLhQjylTgL4Lru8opRo=
 go.etcd.io/etcd/raft/v3 v3.5.7/go.mod h1:TflkAb/8Uy6JFBxcRaH2Fr6Slm9mCPVdI2efzxY96yU=
 go.etcd.io/etcd/server/v3 v3.5.7/go.mod h1:gxBgT84issUVBRpZ3XkW1T55NjOb4vZZRI4wVvNhf4A=
diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index a513334a2..44fabba4e 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -50,7 +50,6 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/loadbalancing"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/log"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/mirror"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/opentracing"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/portinredirect"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/proxy"
@@ -92,7 +91,6 @@ type Ingress struct {
 	ExternalAuth         authreq.Config
 	EnableGlobalAuth     bool
 	HTTP2PushPreload     bool
-	Opentracing          opentracing.Config
 	Opentelemetry        opentelemetry.Config
 	Proxy                proxy.Config
 	ProxySSL             proxyssl.Config
@@ -142,7 +140,6 @@ func NewAnnotationExtractor(cfg resolver.Resolver) Extractor {
 			"ExternalAuth":         authreq.NewParser(cfg),
 			"EnableGlobalAuth":     authreqglobal.NewParser(cfg),
 			"HTTP2PushPreload":     http2pushpreload.NewParser(cfg),
-			"Opentracing":          opentracing.NewParser(cfg),
 			"Opentelemetry":        opentelemetry.NewParser(cfg),
 			"Proxy":                proxy.NewParser(cfg),
 			"ProxySSL":             proxyssl.NewParser(cfg),
diff --git a/internal/ingress/annotations/opentracing/main.go b/internal/ingress/annotations/opentracing/main.go
deleted file mode 100644
index 9d7995a8a..000000000
--- a/internal/ingress/annotations/opentracing/main.go
+++ /dev/null
@@ -1,113 +0,0 @@
-/*
-Copyright 2019 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package opentracing
-
-import (
-	networking "k8s.io/api/networking/v1"
-
-	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
-	"k8s.io/ingress-nginx/internal/ingress/resolver"
-)
-
-const (
-	enableOpentracingAnnotation    = "enable-opentracing"
-	opentracingTrustSpanAnnotation = "opentracing-trust-incoming-span"
-)
-
-var opentracingAnnotations = parser.Annotation{
-	Group: "opentracing",
-	Annotations: parser.AnnotationFields{
-		enableOpentracingAnnotation: {
-			Validator: parser.ValidateBool,
-			Scope:     parser.AnnotationScopeLocation,
-			Risk:      parser.AnnotationRiskLow,
-			Documentation: `This annotation defines if Opentracing collector should be enable for this location. Opentracing should 
-			already be configured by Ingress administrator`,
-		},
-		opentracingTrustSpanAnnotation: {
-			Validator:     parser.ValidateBool,
-			Scope:         parser.AnnotationScopeLocation,
-			Risk:          parser.AnnotationRiskLow,
-			Documentation: `This annotation enables or disables using spans from incoming requests as parent for created ones`,
-		},
-	},
-}
-
-type opentracing struct {
-	r                resolver.Resolver
-	annotationConfig parser.Annotation
-}
-
-// Config contains the configuration to be used in the Ingress
-type Config struct {
-	Enabled      bool `json:"enabled"`
-	Set          bool `json:"set"`
-	TrustEnabled bool `json:"trust-enabled"`
-	TrustSet     bool `json:"trust-set"`
-}
-
-// Equal tests for equality between two Config types
-func (bd1 *Config) Equal(bd2 *Config) bool {
-	if bd1.Set != bd2.Set {
-		return false
-	}
-
-	if bd1.Enabled != bd2.Enabled {
-		return false
-	}
-
-	if bd1.TrustSet != bd2.TrustSet {
-		return false
-	}
-
-	if bd1.TrustEnabled != bd2.TrustEnabled {
-		return false
-	}
-
-	return true
-}
-
-// NewParser creates a new serviceUpstream annotation parser
-func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return opentracing{
-		r:                r,
-		annotationConfig: opentracingAnnotations,
-	}
-}
-
-func (o opentracing) Parse(ing *networking.Ingress) (interface{}, error) {
-	enabled, err := parser.GetBoolAnnotation(enableOpentracingAnnotation, ing, o.annotationConfig.Annotations)
-	if err != nil {
-		return &Config{}, nil
-	}
-
-	trustSpan, err := parser.GetBoolAnnotation(opentracingTrustSpanAnnotation, ing, o.annotationConfig.Annotations)
-	if err != nil {
-		return &Config{Set: true, Enabled: enabled}, nil
-	}
-
-	return &Config{Set: true, Enabled: enabled, TrustSet: true, TrustEnabled: trustSpan}, nil
-}
-
-func (o opentracing) GetDocumentation() parser.AnnotationFields {
-	return o.annotationConfig.Annotations
-}
-
-func (o opentracing) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(o.r.GetSecurityConfiguration().AnnotationsRiskLevel)
-	return parser.CheckAnnotationRisk(anns, maxrisk, opentracingAnnotations.Annotations)
-}
diff --git a/internal/ingress/annotations/opentracing/main_test.go b/internal/ingress/annotations/opentracing/main_test.go
deleted file mode 100644
index f59e60438..000000000
--- a/internal/ingress/annotations/opentracing/main_test.go
+++ /dev/null
@@ -1,159 +0,0 @@
-/*
-Copyright 2019 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package opentracing
-
-import (
-	"testing"
-
-	api "k8s.io/api/core/v1"
-	networking "k8s.io/api/networking/v1"
-	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
-	"k8s.io/ingress-nginx/internal/ingress/resolver"
-)
-
-const enableAnnotation = "true"
-
-func buildIngress() *networking.Ingress {
-	defaultBackend := networking.IngressBackend{
-		Service: &networking.IngressServiceBackend{
-			Name: "default-backend",
-			Port: networking.ServiceBackendPort{
-				Number: 80,
-			},
-		},
-	}
-
-	return &networking.Ingress{
-		ObjectMeta: meta_v1.ObjectMeta{
-			Name:      "foo",
-			Namespace: api.NamespaceDefault,
-		},
-		Spec: networking.IngressSpec{
-			DefaultBackend: &networking.IngressBackend{
-				Service: &networking.IngressServiceBackend{
-					Name: "default-backend",
-					Port: networking.ServiceBackendPort{
-						Number: 80,
-					},
-				},
-			},
-			Rules: []networking.IngressRule{
-				{
-					Host: "foo.bar.com",
-					IngressRuleValue: networking.IngressRuleValue{
-						HTTP: &networking.HTTPIngressRuleValue{
-							Paths: []networking.HTTPIngressPath{
-								{
-									Path:    "/foo",
-									Backend: defaultBackend,
-								},
-							},
-						},
-					},
-				},
-			},
-		},
-	}
-}
-
-func TestIngressAnnotationOpentracingSetTrue(t *testing.T) {
-	ing := buildIngress()
-
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(enableOpentracingAnnotation)] = enableAnnotation
-	ing.SetAnnotations(data)
-
-	val, err := NewParser(&resolver.Mock{}).Parse(ing)
-	if err != nil {
-		t.Errorf("unexpected error %v", err)
-	}
-	openTracing, ok := val.(*Config)
-	if !ok {
-		t.Errorf("expected a Config type")
-	}
-
-	if !openTracing.Enabled {
-		t.Errorf("expected annotation value to be true, got false")
-	}
-}
-
-func TestIngressAnnotationOpentracingSetFalse(t *testing.T) {
-	ing := buildIngress()
-
-	// Test with explicitly set to false
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(enableOpentracingAnnotation)] = "false"
-	ing.SetAnnotations(data)
-
-	val, err := NewParser(&resolver.Mock{}).Parse(ing)
-	if err != nil {
-		t.Errorf("unexpected error %v", err)
-	}
-	openTracing, ok := val.(*Config)
-	if !ok {
-		t.Errorf("expected a Config type")
-	}
-
-	if openTracing.Enabled {
-		t.Errorf("expected annotation value to be false, got true")
-	}
-}
-
-func TestIngressAnnotationOpentracingTrustSetTrue(t *testing.T) {
-	ing := buildIngress()
-
-	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(enableOpentracingAnnotation)] = enableAnnotation
-	data[parser.GetAnnotationWithPrefix(opentracingTrustSpanAnnotation)] = enableAnnotation
-	ing.SetAnnotations(data)
-
-	val, err := NewParser(&resolver.Mock{}).Parse(ing)
-	if err != nil {
-		t.Errorf("unexpected error %v", err)
-	}
-	openTracing, ok := val.(*Config)
-	if !ok {
-		t.Errorf("expected a Config type")
-	}
-
-	if !openTracing.Enabled {
-		t.Errorf("expected annotation value to be true, got false")
-	}
-
-	if !openTracing.TrustEnabled {
-		t.Errorf("expected annotation value to be true, got false")
-	}
-}
-
-func TestIngressAnnotationOpentracingUnset(t *testing.T) {
-	ing := buildIngress()
-
-	// Test with no annotation specified
-	data := map[string]string{}
-	ing.SetAnnotations(data)
-
-	val, err := NewParser(&resolver.Mock{}).Parse(ing)
-	if err != nil {
-		t.Errorf("unexpected error: %v", err)
-	}
-
-	_, ok := val.(*Config)
-	if !ok {
-		t.Errorf("expected a Config type")
-	}
-}
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 9bb13823f..67878f185 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -568,22 +568,6 @@ type Configuration struct {
 	// Default: true
 	ProxyAddOriginalURIHeader bool `json:"proxy-add-original-uri-header"`
 
-	// EnableOpentracing enables the nginx Opentracing extension
-	// https://github.com/opentracing-contrib/nginx-opentracing
-	// By default this is disabled
-	EnableOpentracing bool `json:"enable-opentracing"`
-
-	// OpentracingOperationName specifies a custom name for the server span
-	OpentracingOperationName string `json:"opentracing-operation-name"`
-
-	// OpentracingOperationName specifies a custom name for the location span
-	OpentracingLocationOperationName string `json:"opentracing-location-operation-name"`
-
-	// OpentracingTrustIncomingSpan sets whether or not to trust incoming trace spans
-	// If false, incoming span headers will be rejected
-	// Default: true
-	OpentracingTrustIncomingSpan bool `json:"opentracing-trust-incoming-span"`
-
 	// EnableOpentelemetry enables the nginx Opentelemetry extension
 	// By default this is disabled
 	EnableOpentelemetry bool `json:"enable-opentelemetry"`
@@ -635,94 +619,6 @@ type Configuration struct {
 	// Default: 512
 	OtelMaxExportBatchSize int32 `json:"otel-max-export-batch-size"`
 
-	// ZipkinCollectorHost specifies the host to use when uploading traces
-	ZipkinCollectorHost string `json:"zipkin-collector-host"`
-
-	// ZipkinCollectorPort specifies the port to use when uploading traces
-	// Default: 9411
-	ZipkinCollectorPort int `json:"zipkin-collector-port"`
-
-	// ZipkinServiceName specifies the service name to use for any traces created
-	// Default: nginx
-	ZipkinServiceName string `json:"zipkin-service-name"`
-
-	// ZipkinSampleRate specifies sampling rate for traces
-	// Default: 1.0
-	ZipkinSampleRate float32 `json:"zipkin-sample-rate"`
-
-	// JaegerCollectorHost specifies the host to use when uploading traces
-	JaegerCollectorHost string `json:"jaeger-collector-host"`
-
-	// JaegerCollectorPort specifies the port to use when uploading traces
-	// Default: 6831
-	JaegerCollectorPort int `json:"jaeger-collector-port"`
-
-	// JaegerEndpoint specifies the enpoint to use when uploading traces to a collector over TCP
-	JaegerEndpoint string `json:"jaeger-endpoint"`
-
-	// JaegerServiceName specifies the service name to use for any traces created
-	// Default: nginx
-	JaegerServiceName string `json:"jaeger-service-name"`
-
-	// JaegerPropagationFormat specifies the traceparent/tracestate propagation format
-	JaegerPropagationFormat string `json:"jaeger-propagation-format"`
-
-	// JaegerSamplerType specifies the sampler to be used when sampling traces.
-	// The available samplers are: const, probabilistic, ratelimiting, remote
-	// Default: const
-	JaegerSamplerType string `json:"jaeger-sampler-type"`
-
-	// JaegerSamplerParam specifies the argument to be passed to the sampler constructor
-	// Default: 1
-	JaegerSamplerParam string `json:"jaeger-sampler-param"`
-
-	// JaegerSamplerHost specifies the host used for remote sampling consultation
-	// Default: http://127.0.0.1
-	JaegerSamplerHost string `json:"jaeger-sampler-host"`
-
-	// JaegerSamplerHost specifies the host used for remote sampling consultation
-	// Default: 5778
-	JaegerSamplerPort int `json:"jaeger-sampler-port"`
-
-	// JaegerTraceContextHeaderName specifies the header name used for passing trace context
-	// Default: uber-trace-id
-	JaegerTraceContextHeaderName string `json:"jaeger-trace-context-header-name"`
-
-	// JaegerDebugHeader specifies the header name used for force sampling
-	// Default: jaeger-debug-id
-	JaegerDebugHeader string `json:"jaeger-debug-header"`
-
-	// JaegerBaggageHeader specifies the header name used to submit baggage if there is no root span
-	// Default: jaeger-baggage
-	JaegerBaggageHeader string `json:"jaeger-baggage-header"`
-
-	// TraceBaggageHeaderPrefix specifies the header prefix used to propagate baggage
-	// Default: uberctx-
-	JaegerTraceBaggageHeaderPrefix string `json:"jaeger-tracer-baggage-header-prefix"`
-
-	// DatadogCollectorHost specifies the datadog agent host to use when uploading traces
-	DatadogCollectorHost string `json:"datadog-collector-host"`
-
-	// DatadogCollectorPort specifies the port to use when uploading traces
-	// Default: 8126
-	DatadogCollectorPort int `json:"datadog-collector-port"`
-
-	// DatadogEnvironment specifies the environment this trace belongs to.
-	// Default: prod
-	DatadogEnvironment string `json:"datadog-environment"`
-
-	// DatadogServiceName specifies the service name to use for any traces created
-	// Default: nginx
-	DatadogServiceName string `json:"datadog-service-name"`
-
-	// DatadogOperationNameOverride overrides the operation naem to use for any traces crated
-	// Default: nginx.handle
-	DatadogOperationNameOverride string `json:"datadog-operation-name-override"`
-
-	// DatadogSampleRate specifies sample rate for any traces created.
-	// Default: use a dynamic rate instead
-	DatadogSampleRate *float32 `json:"datadog-sample-rate,omitempty"`
-
 	// MainSnippet adds custom configuration to the main section of the nginx configuration
 	MainSnippet string `json:"main-snippet"`
 
@@ -985,7 +881,6 @@ func NewDefault() Configuration {
 		LimitConnZoneVariable:                  defaultLimitConnZoneVariable,
 		BindAddressIpv4:                        defBindAddress,
 		BindAddressIpv6:                        defBindAddress,
-		OpentracingTrustIncomingSpan:           true,
 		OpentelemetryTrustIncomingSpan:         true,
 		OpentelemetryConfig:                    "/etc/ingress-controller/telemetry/opentelemetry.toml",
 		OtlpCollectorPort:                      "4317",
@@ -996,21 +891,6 @@ func NewDefault() Configuration {
 		OtelScheduleDelayMillis:                5000,
 		OtelMaxExportBatchSize:                 512,
 		OtelMaxQueueSize:                       2048,
-		ZipkinCollectorPort:                    9411,
-		ZipkinServiceName:                      "nginx",
-		ZipkinSampleRate:                       1.0,
-		JaegerCollectorPort:                    6831,
-		JaegerPropagationFormat:                "jaeger",
-		JaegerServiceName:                      "nginx",
-		JaegerSamplerType:                      "const",
-		JaegerSamplerParam:                     "1",
-		JaegerSamplerPort:                      5778,
-		JaegerSamplerHost:                      "http://127.0.0.1",
-		DatadogServiceName:                     "nginx",
-		DatadogEnvironment:                     "prod",
-		DatadogCollectorPort:                   8126,
-		DatadogOperationNameOverride:           "nginx.handle",
-		DatadogSampleRate:                      nil,
 		LimitReqStatusCode:                     503,
 		LimitConnStatusCode:                    503,
 		SyslogPort:                             514,
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index bbcde1d4f..701a747fa 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -1507,7 +1507,6 @@ func locationApplyAnnotations(loc *ingress.Location, anns *annotations.Ingress)
 	loc.ExternalAuth = anns.ExternalAuth
 	loc.EnableGlobalAuth = anns.EnableGlobalAuth
 	loc.HTTP2PushPreload = anns.HTTP2PushPreload
-	loc.Opentracing = anns.Opentracing
 	loc.Opentelemetry = anns.Opentelemetry
 	loc.Proxy = anns.Proxy
 	loc.ProxySSL = anns.ProxySSL
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 83b38bd3a..578d5b4e8 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -676,11 +676,6 @@ func (n *NGINXController) OnUpdate(ingressCfg ingress.Configuration) error {
 		return err
 	}
 
-	err = createOpentracingCfg(&cfg)
-	if err != nil {
-		return err
-	}
-
 	err = createOpentelemetryCfg(&cfg)
 	if err != nil {
 		return err
@@ -1001,33 +996,6 @@ func configureCertificates(rawServers []*ingress.Server) error {
 	return nil
 }
 
-const zipkinTmpl = `{
-  "service_name": "{{ .ZipkinServiceName }}",
-  "collector_host": "{{ .ZipkinCollectorHost }}",
-  "collector_port": {{ .ZipkinCollectorPort }},
-  "sample_rate": {{ .ZipkinSampleRate }}
-}`
-
-const jaegerTmpl = `{
-  "service_name": "{{ .JaegerServiceName }}",
-  "propagation_format": "{{ .JaegerPropagationFormat }}",
-  "sampler": {
-	"type": "{{ .JaegerSamplerType }}",
-	"param": {{ .JaegerSamplerParam }},
-	"samplingServerURL": "{{ .JaegerSamplerHost }}:{{ .JaegerSamplerPort }}/sampling"
-  },
-  "reporter": {
-	"endpoint": "{{ .JaegerEndpoint }}",
-	"localAgentHostPort": "{{ .JaegerCollectorHost }}:{{ .JaegerCollectorPort }}"
-  },
-  "headers": {
-	"TraceContextHeaderName": "{{ .JaegerTraceContextHeaderName }}",
-	"jaegerDebugHeader": "{{ .JaegerDebugHeader }}",
-	"jaegerBaggageHeader": "{{ .JaegerBaggageHeader }}",
-	"traceBaggageHeaderPrefix": "{{ .JaegerTraceBaggageHeaderPrefix }}"
-  }
-}`
-
 const otelTmpl = `
 exporter = "otlp"
 processor = "batch"
@@ -1051,70 +1019,6 @@ ratio = {{ .OtelSamplerRatio }}
 parent_based = {{ .OtelSamplerParentBased }}
 `
 
-func datadogOpentracingCfg(cfg *ngx_config.Configuration) (string, error) {
-	m := map[string]interface{}{
-		"service":                 cfg.DatadogServiceName,
-		"agent_host":              cfg.DatadogCollectorHost,
-		"agent_port":              cfg.DatadogCollectorPort,
-		"environment":             cfg.DatadogEnvironment,
-		"operation_name_override": cfg.DatadogOperationNameOverride,
-	}
-
-	// Omit "sample_rate" if the configuration's sample rate is unset (nil).
-	// Omitting "sample_rate" from the plugin JSON indicates to the tracer that
-	// it should use dynamic rates instead of a configured rate.
-	if cfg.DatadogSampleRate != nil {
-		m["sample_rate"] = *cfg.DatadogSampleRate
-	}
-
-	buf, err := json.Marshal(m)
-	if err != nil {
-		return "", err
-	}
-
-	return string(buf), nil
-}
-
-func opentracingCfgFromTemplate(cfg *ngx_config.Configuration, tmplName, tmplText string) (string, error) {
-	tmpl, err := template.New(tmplName).Parse(tmplText)
-	if err != nil {
-		return "", err
-	}
-
-	tmplBuf := bytes.NewBuffer(make([]byte, 0))
-	err = tmpl.Execute(tmplBuf, cfg)
-	if err != nil {
-		return "", err
-	}
-
-	return tmplBuf.String(), nil
-}
-
-func createOpentracingCfg(cfg *ngx_config.Configuration) error {
-	var configData string
-	var err error
-
-	switch {
-	case cfg.ZipkinCollectorHost != "":
-		configData, err = opentracingCfgFromTemplate(cfg, "zipkin", zipkinTmpl)
-	case cfg.JaegerCollectorHost != "" || cfg.JaegerEndpoint != "":
-		configData, err = opentracingCfgFromTemplate(cfg, "jaeger", jaegerTmpl)
-	case cfg.DatadogCollectorHost != "":
-		configData, err = datadogOpentracingCfg(cfg)
-	default:
-		configData = "{}"
-	}
-
-	if err != nil {
-		return err
-	}
-
-	// Expand possible environment variables before writing the configuration to file.
-	expanded := os.ExpandEnv(configData)
-
-	return os.WriteFile("/etc/ingress-controller/telemetry/opentracing.json", []byte(expanded), file.ReadWriteByUser)
-}
-
 func createOpentelemetryCfg(cfg *ngx_config.Configuration) error {
 	tmpl, err := template.New("otel").Parse(otelTmpl)
 	if err != nil {
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index c2d461b21..7410ce6e0 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -268,7 +268,6 @@ var funcMap = text_template.FuncMap{
 	"buildForwardedFor":                  buildForwardedFor,
 	"buildAuthSignURL":                   buildAuthSignURL,
 	"buildAuthSignURLLocation":           buildAuthSignURLLocation,
-	"buildOpentracing":                   buildOpentracing,
 	"buildOpentelemetry":                 buildOpentelemetry,
 	"proxySetHeader":                     proxySetHeader,
 	"enforceRegexModifier":               enforceRegexModifier,
@@ -277,9 +276,7 @@ var funcMap = text_template.FuncMap{
 	"shouldLoadModSecurityModule":        shouldLoadModSecurityModule,
 	"buildHTTPListener":                  buildHTTPListener,
 	"buildHTTPSListener":                 buildHTTPSListener,
-	"buildOpentracingForLocation":        buildOpentracingForLocation,
 	"buildOpentelemetryForLocation":      buildOpentelemetryForLocation,
-	"shouldLoadOpentracingModule":        shouldLoadOpentracingModule,
 	"shouldLoadOpentelemetryModule":      shouldLoadOpentelemetryModule,
 	"buildModSecurityForLocation":        buildModSecurityForLocation,
 	"buildMirrorLocations":               buildMirrorLocations,
@@ -1209,46 +1206,6 @@ func randomString() string {
 	return string(b)
 }
 
-func buildOpentracing(c, s interface{}) string {
-	cfg, ok := c.(config.Configuration)
-	if !ok {
-		klog.Errorf("expected a 'config.Configuration' type but %T was returned", c)
-		return ""
-	}
-
-	servers, ok := s.([]*ingress.Server)
-	if !ok {
-		klog.Errorf("expected an '[]*ingress.Server' type but %T was returned", s)
-		return ""
-	}
-
-	if !shouldLoadOpentracingModule(cfg, servers) {
-		return ""
-	}
-
-	buf := bytes.NewBufferString("")
-
-	//nolint:gocritic // rewriting if-else to switch statement is not more readable
-	if cfg.DatadogCollectorHost != "" {
-		buf.WriteString("opentracing_load_tracer /usr/local/lib/libdd_opentracing.so /etc/ingress-controller/telemetry/opentracing.json;")
-	} else if cfg.ZipkinCollectorHost != "" {
-		buf.WriteString("opentracing_load_tracer /usr/local/lib/libzipkin_opentracing_plugin.so /etc/ingress-controller/telemetry/opentracing.json;")
-	} else if cfg.JaegerCollectorHost != "" || cfg.JaegerEndpoint != "" {
-		buf.WriteString("opentracing_load_tracer /usr/local/lib/libjaegertracing_plugin.so /etc/ingress-controller/telemetry/opentracing.json;")
-	}
-
-	buf.WriteString("\r\n")
-
-	if cfg.OpentracingOperationName != "" {
-		fmt.Fprintf(buf, "opentracing_operation_name \"%s\";\n", cfg.OpentracingOperationName)
-	}
-	if cfg.OpentracingLocationOperationName != "" {
-		fmt.Fprintf(buf, "opentracing_location_operation_name \"%s\";\n", cfg.OpentracingLocationOperationName)
-	}
-
-	return buf.String()
-}
-
 func buildOpentelemetry(c, s interface{}) string {
 	cfg, ok := c.(config.Configuration)
 	if !ok {
@@ -1362,18 +1319,6 @@ func buildCustomErrorLocationsPerServer(input interface{}) []errorLocation {
 	return errorLocations
 }
 
-func opentracingPropagateContext(location *ingress.Location) string {
-	if location == nil {
-		return ""
-	}
-
-	if location.BackendProtocol == grpcProtocol || location.BackendProtocol == grpcsProtocol {
-		return "opentracing_grpc_propagate_context;"
-	}
-
-	return "opentracing_propagate_context;"
-}
-
 func opentelemetryPropagateContext(location *ingress.Location) string {
 	if location == nil {
 		return ""
@@ -1569,31 +1514,6 @@ func httpsListener(addresses []string, co string, tc *config.TemplateConfig) []s
 	return out
 }
 
-func buildOpentracingForLocation(isOTEnabled, isOTTrustSet bool, location *ingress.Location) string {
-	isOTEnabledInLoc := location.Opentracing.Enabled
-	isOTSetInLoc := location.Opentracing.Set
-
-	if isOTEnabled {
-		if isOTSetInLoc && !isOTEnabledInLoc {
-			return "opentracing off;"
-		}
-	} else if !isOTSetInLoc || !isOTEnabledInLoc {
-		return ""
-	}
-
-	opc := opentracingPropagateContext(location)
-	if opc != "" {
-		opc = fmt.Sprintf("opentracing on;\n%v", opc)
-	}
-
-	if (!isOTTrustSet && !location.Opentracing.TrustSet) ||
-		(location.Opentracing.TrustSet && !location.Opentracing.TrustEnabled) {
-		opc += "\nopentracing_trust_incoming_span off;"
-	}
-
-	return opc
-}
-
 func buildOpentelemetryForLocation(isOTEnabled, isOTTrustSet bool, location *ingress.Location) string {
 	isOTEnabledInLoc := location.Opentelemetry.Enabled
 	isOTSetInLoc := location.Opentelemetry.Set
@@ -1624,37 +1544,6 @@ func buildOpentelemetryForLocation(isOTEnabled, isOTTrustSet bool, location *ing
 	return opc
 }
 
-// shouldLoadOpentracingModule determines whether or not the Opentracing module needs to be loaded.
-// First, it checks if `enable-opentracing` is set in the ConfigMap. If it is not, it iterates over all locations to
-// check if Opentracing is enabled by the annotation `nginx.ingress.kubernetes.io/enable-opentracing`.
-func shouldLoadOpentracingModule(c, s interface{}) bool {
-	cfg, ok := c.(config.Configuration)
-	if !ok {
-		klog.Errorf("expected a 'config.Configuration' type but %T was returned", c)
-		return false
-	}
-
-	servers, ok := s.([]*ingress.Server)
-	if !ok {
-		klog.Errorf("expected an '[]*ingress.Server' type but %T was returned", s)
-		return false
-	}
-
-	if cfg.EnableOpentracing {
-		return true
-	}
-
-	for _, server := range servers {
-		for _, location := range server.Locations {
-			if location.Opentracing.Enabled {
-				return true
-			}
-		}
-	}
-
-	return false
-}
-
 // shouldLoadOpentelemetryModule determines whether or not the Opentelemetry module needs to be loaded.
 // It checks if `enable-opentelemetry` is set in the ConfigMap.
 func shouldLoadOpentelemetryModule(c, s interface{}) bool {
diff --git a/internal/ingress/controller/template/template_test.go b/internal/ingress/controller/template/template_test.go
index c4ad6cd3a..3089e3b32 100644
--- a/internal/ingress/controller/template/template_test.go
+++ b/internal/ingress/controller/template/template_test.go
@@ -37,7 +37,6 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/authreq"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/modsecurity"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/opentelemetry"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/opentracing"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/rewrite"
 	"k8s.io/ingress-nginx/internal/ingress/controller/config"
@@ -1134,25 +1133,6 @@ func TestEscapeLiteralDollar(t *testing.T) {
 	}
 }
 
-func TestOpentracingPropagateContext(t *testing.T) {
-	tests := map[*ingress.Location]string{
-		{BackendProtocol: httpProtocol}:     "opentracing_propagate_context;",
-		{BackendProtocol: httpsProtocol}:    "opentracing_propagate_context;",
-		{BackendProtocol: autoHTTPProtocol}: "opentracing_propagate_context;",
-		{BackendProtocol: grpcProtocol}:     "opentracing_grpc_propagate_context;",
-		{BackendProtocol: grpcsProtocol}:    "opentracing_grpc_propagate_context;",
-		{BackendProtocol: fcgiProtocol}:     "opentracing_propagate_context;",
-		nil:                                 "",
-	}
-
-	for loc, expectedDirective := range tests {
-		actualDirective := opentracingPropagateContext(loc)
-		if actualDirective != expectedDirective {
-			t.Errorf("Expected %v but returned %v", expectedDirective, actualDirective)
-		}
-	}
-}
-
 func TestOpentelemetryPropagateContext(t *testing.T) {
 	tests := map[*ingress.Location]string{
 		{BackendProtocol: httpProtocol}:     "opentelemetry_propagate;",
@@ -1640,85 +1620,6 @@ func TestProxySetHeader(t *testing.T) {
 	}
 }
 
-func TestBuildOpenTracing(t *testing.T) {
-	invalidType := &ingress.Ingress{}
-	expected := ""
-	actual := buildOpentracing(invalidType, []*ingress.Server{})
-
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-
-	cfgNoHost := config.Configuration{
-		EnableOpentracing: true,
-	}
-	expected = "\r\n"
-	actual = buildOpentracing(cfgNoHost, []*ingress.Server{})
-
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-
-	cfgJaeger := config.Configuration{
-		EnableOpentracing:   true,
-		JaegerCollectorHost: "jaeger-host.com",
-	}
-	expected = "opentracing_load_tracer /usr/local/lib/libjaegertracing_plugin.so /etc/ingress-controller/telemetry/opentracing.json;\r\n"
-	actual = buildOpentracing(cfgJaeger, []*ingress.Server{})
-
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-
-	cfgZipkin := config.Configuration{
-		EnableOpentracing:   true,
-		ZipkinCollectorHost: "zipkin-host.com",
-	}
-	expected = "opentracing_load_tracer /usr/local/lib/libzipkin_opentracing_plugin.so /etc/ingress-controller/telemetry/opentracing.json;\r\n"
-	actual = buildOpentracing(cfgZipkin, []*ingress.Server{})
-
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-
-	cfgDatadog := config.Configuration{
-		EnableOpentracing:    true,
-		DatadogCollectorHost: "datadog-host.com",
-	}
-	expected = "opentracing_load_tracer /usr/local/lib/libdd_opentracing.so /etc/ingress-controller/telemetry/opentracing.json;\r\n"
-	actual = buildOpentracing(cfgDatadog, []*ingress.Server{})
-
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-
-	cfgJaegerEndpoint := config.Configuration{
-		EnableOpentracing: true,
-		JaegerEndpoint:    "http://jaeger-collector.com:14268/api/traces",
-	}
-	expected = "opentracing_load_tracer /usr/local/lib/libjaegertracing_plugin.so /etc/ingress-controller/telemetry/opentracing.json;\r\n"
-	actual = buildOpentracing(cfgJaegerEndpoint, []*ingress.Server{})
-
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-
-	cfgOpenTracing := config.Configuration{
-		EnableOpentracing:                true,
-		DatadogCollectorHost:             "datadog-host.com",
-		OpentracingOperationName:         "my-operation-name",
-		OpentracingLocationOperationName: "my-location-operation-name",
-	}
-	expected = "opentracing_load_tracer /usr/local/lib/libdd_opentracing.so /etc/ingress-controller/telemetry/opentracing.json;\r\n"
-	expected += "opentracing_operation_name \"my-operation-name\";\n"
-	expected += "opentracing_location_operation_name \"my-location-operation-name\";\n"
-	actual = buildOpentracing(cfgOpenTracing, []*ingress.Server{})
-
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-}
-
 func TestBuildOpenTelemetry(t *testing.T) {
 	invalidType := &ingress.Ingress{}
 	expected := ""
@@ -1831,107 +1732,6 @@ func TestShouldLoadModSecurityModule(t *testing.T) {
 	}
 }
 
-func TestOpentracingForLocation(t *testing.T) {
-	trueVal := true
-	falseVal := false
-
-	loadOT := `opentracing on;
-opentracing_propagate_context;`
-	loadOTUntrustedSpan := `opentracing on;
-opentracing_propagate_context;
-opentracing_trust_incoming_span off;`
-	testCases := []struct {
-		description     string
-		globalOT        bool
-		isSetInLoc      bool
-		isOTInLoc       *bool
-		globalTrust     bool
-		isTrustSetInLoc bool
-		isTrustInLoc    *bool
-		expected        string
-	}{
-		{"globally enabled, without annotation", true, false, nil, true, false, nil, loadOT},
-		{"globally enabled and enabled in location", true, true, &trueVal, true, false, nil, loadOT},
-		{"globally disabled and not enabled in location", false, false, nil, true, false, nil, ""},
-		{"globally disabled but enabled in location", false, true, &trueVal, true, false, nil, loadOT},
-		{"globally trusted, not trusted in location", true, false, nil, true, true, &falseVal, loadOTUntrustedSpan},
-		{"not globally trusted, trust set in location", true, false, nil, false, true, &trueVal, loadOT},
-		{"not globally trusted, trust not set in location", true, false, nil, false, false, nil, loadOTUntrustedSpan},
-	}
-
-	for _, testCase := range testCases {
-		il := &ingress.Location{
-			Opentracing: opentracing.Config{Set: testCase.isSetInLoc, TrustSet: testCase.isTrustSetInLoc},
-		}
-		if il.Opentracing.Set {
-			il.Opentracing.Enabled = *testCase.isOTInLoc
-		}
-		if il.Opentracing.TrustSet {
-			il.Opentracing.TrustEnabled = *testCase.isTrustInLoc
-		}
-
-		actual := buildOpentracingForLocation(testCase.globalOT, testCase.globalTrust, il)
-
-		if testCase.expected != actual {
-			t.Errorf("%v: expected '%v' but returned '%v'", testCase.description, testCase.expected, actual)
-		}
-	}
-}
-
-//nolint:dupl // Ignore dupl errors for similar test case
-func TestShouldLoadOpentracingModule(t *testing.T) {
-	// ### Invalid argument type tests ###
-	// The first tests should return false.
-	expected := false
-
-	invalidType := &ingress.Ingress{}
-	actual := shouldLoadOpentracingModule(config.Configuration{}, invalidType)
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-
-	actual = shouldLoadOpentracingModule(invalidType, []*ingress.Server{})
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-
-	// ### Functional tests ###
-	actual = shouldLoadOpentracingModule(config.Configuration{}, []*ingress.Server{})
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-
-	// All further tests should return true.
-	expected = true
-
-	configuration := config.Configuration{EnableOpentracing: true}
-	actual = shouldLoadOpentracingModule(configuration, []*ingress.Server{})
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-
-	servers := []*ingress.Server{
-		{
-			Locations: []*ingress.Location{
-				{
-					Opentracing: opentracing.Config{
-						Enabled: true,
-					},
-				},
-			},
-		},
-	}
-	actual = shouldLoadOpentracingModule(config.Configuration{}, servers)
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-
-	actual = shouldLoadOpentracingModule(configuration, servers)
-	if expected != actual {
-		t.Errorf("Expected '%v' but returned '%v'", expected, actual)
-	}
-}
-
 func TestOpentelemetryForLocation(t *testing.T) {
 	trueVal := true
 	falseVal := false
diff --git a/mkdocs.yml b/mkdocs.yml
index 80f4acdf3..7f10a1d53 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -99,7 +99,6 @@ nav:
       - TLS/HTTPS: "user-guide/tls.md"
       - Third party addons:
           - ModSecurity Web Application Firewall: "user-guide/third-party-addons/modsecurity.md"
-          - OpenTracing: "user-guide/third-party-addons/opentracing.md"
           - OpenTelemetry: "user-guide/third-party-addons/opentelemetry.md"
   - Examples:
       - Introduction: "examples/index.md"
diff --git a/pkg/apis/ingress/types.go b/pkg/apis/ingress/types.go
index 0742e9f3b..6deba659e 100644
--- a/pkg/apis/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -35,7 +35,6 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/mirror"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/modsecurity"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/opentelemetry"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/opentracing"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/proxy"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/proxyssl"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ratelimit"
@@ -354,9 +353,6 @@ type Location struct {
 	// Mirror allows you to mirror traffic to a "test" backend
 	// +optional
 	Mirror mirror.Config `json:"mirror,omitempty"`
-	// Opentracing allows the global opentracing setting to be overridden for a location
-	// +optional
-	Opentracing opentracing.Config `json:"opentracing"`
 	// Opentelemetry allows the global opentelemetry setting to be overridden for a location
 	// +optional
 	Opentelemetry opentelemetry.Config `json:"opentelemetry"`
diff --git a/pkg/apis/ingress/types_equals.go b/pkg/apis/ingress/types_equals.go
index 45f0eedba..2cde77e83 100644
--- a/pkg/apis/ingress/types_equals.go
+++ b/pkg/apis/ingress/types_equals.go
@@ -458,10 +458,6 @@ func (l1 *Location) Equal(l2 *Location) bool {
 		return false
 	}
 
-	if !l1.Opentracing.Equal(&l2.Opentracing) {
-		return false
-	}
-
 	if !l1.Opentelemetry.Equal(&l2.Opentelemetry) {
 		return false
 	}
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index de0c5089b..4454a4710 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -29,10 +29,6 @@ load_module /etc/nginx/modules/ngx_http_auth_digest_module.so;
 load_module /etc/nginx/modules/ngx_http_modsecurity_module.so;
 {{ end }}
 
-{{ if (shouldLoadOpentracingModule $cfg $servers) }}
-load_module /etc/nginx/modules/ngx_http_opentracing_module.so;
-{{ end }}
-
 {{ if (shouldLoadOpentelemetryModule $cfg $servers) }}
 load_module /modules_mount/etc/nginx/modules/otel/otel_ngx_module.so;
 {{ end }}
@@ -339,7 +335,6 @@ http {
     limit_req_status                {{ $cfg.LimitReqStatusCode }};
     limit_conn_status               {{ $cfg.LimitConnStatusCode }};
 
-    {{ buildOpentracing $cfg $servers }}
     {{ buildOpentelemetry $cfg $servers }}
 
     include /etc/nginx/mime.types;
@@ -715,10 +710,6 @@ http {
 
         access_log off;
 
-        {{ if $cfg.EnableOpentracing }}
-        opentracing off;
-        {{ end }}
-
         {{ if $cfg.EnableOpentelemetry }}
         opentelemetry off;
         {{ end }}
@@ -1085,11 +1076,6 @@ stream {
         location = {{ $authPath }} {
             internal;
 
-            {{ if (or $all.Cfg.EnableOpentracing $location.Opentracing.Enabled) }}
-            opentracing on;
-            opentracing_propagate_context;
-            {{ end }}
-
             {{ if (or $all.Cfg.EnableOpentelemetry $location.Opentelemetry.Enabled) }}
             opentelemetry on;
             opentelemetry_propagate;
@@ -1237,7 +1223,6 @@ stream {
             set $location_path  {{ $ing.Path | escapeLiteralDollar | quote }};
             set $global_rate_limit_exceeding n;
 
-            {{ buildOpentracingForLocation $all.Cfg.EnableOpentracing $all.Cfg.OpentracingTrustIncomingSpan $location }}
             {{ buildOpentelemetryForLocation $all.Cfg.EnableOpentelemetry $all.Cfg.OpentelemetryTrustIncomingSpan $location }}
 
             {{ if $location.Mirror.Source }}
@@ -1547,9 +1532,6 @@ stream {
         {{ if eq $server.Hostname "_" }}
         # health checks in cloud providers require the use of port {{ $all.ListenPorts.HTTP }}
         location {{ $all.HealthzURI }} {
-            {{ if $all.Cfg.EnableOpentracing }}
-            opentracing off;
-            {{ end }}
 
             {{ if $all.Cfg.EnableOpentelemetry }}
             opentelemetry off;
@@ -1562,9 +1544,6 @@ stream {
         # this is required to avoid error if nginx is being monitored
         # with an external software (like sysdig)
         location /nginx_status {
-            {{ if $all.Cfg.EnableOpentracing }}
-            opentracing off;
-            {{ end }}
 
             {{ if $all.Cfg.EnableOpentelemetry }}
             opentelemetry off;
diff --git a/test/e2e/settings/opentracing.go b/test/e2e/settings/opentracing.go
deleted file mode 100644
index 76d96498d..000000000
--- a/test/e2e/settings/opentracing.go
+++ /dev/null
@@ -1,256 +0,0 @@
-/*
-Copyright 2020 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package settings
-
-import (
-	"fmt"
-	"net/http"
-	"strings"
-	"time"
-
-	"github.com/onsi/ginkgo/v2"
-	"github.com/stretchr/testify/assert"
-
-	"k8s.io/ingress-nginx/test/e2e/framework"
-)
-
-const (
-	enableOpentracing            = "enable-opentracing"
-	opentracingTrustIncomingSpan = "opentracing-trust-incoming-span"
-
-	zipkinCollectorHost = "zipkin-collector-host"
-
-	jaegerCollectorHost     = "jaeger-collector-host"
-	jaegerSamplerHost       = "jaeger-sampler-host"
-	jaegerPropagationFormat = "jaeger-propagation-format"
-	// jaegerEndpoint      = "jaeger-endpoint"
-
-	datadogCollectorHost = "datadog-collector-host"
-
-	opentracingOperationName  = "opentracing-operation-name"
-	opentracingOperationValue = "HTTP $request_method $uri"
-
-	opentracingLocationOperationName = "opentracing-location-operation-name"
-
-	localhost = "127.0.0.1"
-)
-
-var _ = framework.IngressNginxDescribe("Configure OpenTracing", func() {
-	f := framework.NewDefaultFramework("enable-opentracing")
-
-	ginkgo.BeforeEach(func() {
-		f.NewEchoDeployment()
-	})
-
-	ginkgo.AfterEach(func() {
-	})
-
-	ginkgo.It("should not exists opentracing directive", func() {
-		config := map[string]string{}
-		config[enableOpentracing] = disable
-		f.SetNginxConfigMapData(config)
-
-		f.EnsureIngress(framework.NewSingleIngress(enableOpentracing, "/", enableOpentracing, f.Namespace, "http-svc", 80, nil))
-
-		f.WaitForNginxConfiguration(
-			func(cfg string) bool {
-				return !strings.Contains(cfg, "opentracing on")
-			})
-	})
-
-	ginkgo.It("should exists opentracing directive when is enabled", func() {
-		config := map[string]string{}
-		config[enableOpentracing] = enable
-		config[zipkinCollectorHost] = localhost
-		f.SetNginxConfigMapData(config)
-
-		f.EnsureIngress(framework.NewSingleIngress(enableOpentracing, "/", enableOpentracing, f.Namespace, "http-svc", 80, nil))
-
-		f.WaitForNginxConfiguration(
-			func(cfg string) bool {
-				return strings.Contains(cfg, "opentracing on")
-			})
-	})
-
-	ginkgo.It("should include opentracing_trust_incoming_span off directive when disabled", func() {
-		config := map[string]string{}
-		config[enableOpentracing] = enable
-		config[opentracingTrustIncomingSpan] = disable
-		config[zipkinCollectorHost] = localhost
-		f.SetNginxConfigMapData(config)
-
-		f.EnsureIngress(framework.NewSingleIngress(enableOpentracing, "/", enableOpentracing, f.Namespace, "http-svc", 80, nil))
-
-		f.WaitForNginxConfiguration(
-			func(cfg string) bool {
-				return strings.Contains(cfg, "opentracing_trust_incoming_span off")
-			})
-	})
-
-	ginkgo.It("should not exists opentracing_operation_name directive when is empty", func() {
-		config := map[string]string{}
-		config[enableOpentracing] = enable
-		config[zipkinCollectorHost] = localhost
-		config[opentracingOperationName] = ""
-		f.SetNginxConfigMapData(config)
-
-		f.EnsureIngress(framework.NewSingleIngress(enableOpentracing, "/", enableOpentracing, f.Namespace, "http-svc", 80, nil))
-
-		f.WaitForNginxConfiguration(
-			func(cfg string) bool {
-				return !strings.Contains(cfg, "opentracing_operation_name")
-			})
-	})
-
-	ginkgo.It("should exists opentracing_operation_name directive when is configured", func() {
-		config := map[string]string{}
-		config[enableOpentracing] = enable
-		config[zipkinCollectorHost] = localhost
-		config[opentracingOperationName] = opentracingOperationValue
-		f.SetNginxConfigMapData(config)
-
-		f.EnsureIngress(framework.NewSingleIngress(enableOpentracing, "/", enableOpentracing, f.Namespace, "http-svc", 80, nil))
-
-		f.WaitForNginxConfiguration(
-			func(cfg string) bool {
-				return strings.Contains(cfg, `opentracing_operation_name "HTTP $request_method $uri"`)
-			})
-	})
-
-	ginkgo.It("should not exists opentracing_location_operation_name directive when is empty", func() {
-		config := map[string]string{}
-		config[enableOpentracing] = enable
-		config[zipkinCollectorHost] = localhost
-		config[opentracingLocationOperationName] = ""
-		f.SetNginxConfigMapData(config)
-
-		f.EnsureIngress(framework.NewSingleIngress(enableOpentracing, "/", enableOpentracing, f.Namespace, "http-svc", 80, nil))
-
-		f.WaitForNginxConfiguration(
-			func(cfg string) bool {
-				return !strings.Contains(cfg, "opentracing_location_operation_name")
-			})
-	})
-
-	ginkgo.It("should exists opentracing_location_operation_name directive when is configured", func() {
-		config := map[string]string{}
-		config[enableOpentracing] = enable
-		config[zipkinCollectorHost] = localhost
-		config[opentracingLocationOperationName] = opentracingOperationValue
-		f.SetNginxConfigMapData(config)
-
-		f.EnsureIngress(framework.NewSingleIngress(enableOpentracing, "/", enableOpentracing, f.Namespace, "http-svc", 80, nil))
-
-		f.WaitForNginxConfiguration(
-			func(cfg string) bool {
-				return strings.Contains(cfg, "opentracing_location_operation_name \"HTTP $request_method $uri\"")
-			})
-	})
-
-	ginkgo.It("should enable opentracing using zipkin", func() {
-		config := map[string]string{}
-		config[enableOpentracing] = enable
-		config[zipkinCollectorHost] = localhost
-		f.SetNginxConfigMapData(config)
-
-		framework.Sleep(10 * time.Second)
-		log, err := f.NginxLogs()
-		assert.Nil(ginkgo.GinkgoT(), err, "obtaining nginx logs")
-		assert.NotContains(ginkgo.GinkgoT(), log, "Unexpected failure reloading the backend", "reloading nginx after a configmap change")
-	})
-
-	ginkgo.It("should enable opentracing using jaeger", func() {
-		config := map[string]string{}
-		config[enableOpentracing] = enable
-		config[jaegerCollectorHost] = localhost
-		f.SetNginxConfigMapData(config)
-
-		framework.Sleep(10 * time.Second)
-		log, err := f.NginxLogs()
-		assert.Nil(ginkgo.GinkgoT(), err, "obtaining nginx logs")
-		assert.NotContains(ginkgo.GinkgoT(), log, "Unexpected failure reloading the backend", "reloading nginx after a configmap change")
-	})
-
-	ginkgo.It("should enable opentracing using jaeger with sampler host", func() {
-		config := map[string]string{}
-		config[enableOpentracing] = enable
-		config[jaegerCollectorHost] = localhost
-		config[jaegerSamplerHost] = localhost
-		f.SetNginxConfigMapData(config)
-
-		framework.Sleep(10 * time.Second)
-		log, err := f.NginxLogs()
-		assert.Nil(ginkgo.GinkgoT(), err, "obtaining nginx logs")
-		assert.NotContains(ginkgo.GinkgoT(), log, "Unexpected failure reloading the backend", "reloading nginx after a configmap change")
-	})
-
-	ginkgo.It("should propagate the w3c header when configured with jaeger", func() {
-		host := "jaeger-w3c"
-		config := map[string]string{}
-		config[enableOpentracing] = enable
-		config[jaegerCollectorHost] = localhost
-		config[jaegerPropagationFormat] = "w3c"
-		f.SetNginxConfigMapData(config)
-
-		framework.Sleep(10 * time.Second)
-		log, err := f.NginxLogs()
-		assert.Nil(ginkgo.GinkgoT(), err, "obtaining nginx logs")
-		assert.NotContains(ginkgo.GinkgoT(), log, "Unexpected failure reloading the backend", "reloading nginx after a configmap change")
-
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil)
-		f.EnsureIngress(ing)
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return strings.Contains(server, fmt.Sprintf("server_name %s ;", host))
-			})
-
-		f.HTTPTestClient().
-			GET("/").
-			WithHeader("Host", host).
-			Expect().
-			Status(http.StatusOK).
-			Body().
-			Match("traceparent=[0-9a-f]{2}-[0-9a-f]{32}-[0-9a-f]{16}-[0-9a-f]{2}")
-	})
-
-	/*
-		ginkgo.It("should enable opentracing using jaeger with an HTTP endpoint", func() {
-			config := map[string]string{}
-			config[enableOpentracing] = TRUE
-			config[jaegerEndpoint] = "http://127.0.0.1/api/traces"
-			f.SetNginxConfigMapData(config)
-
-			framework.Sleep(10 * time.Second)
-			log, err := f.NginxLogs()
-			assert.Nil(ginkgo.GinkgoT(), err, "obtaining nginx logs")
-			assert.NotContains(ginkgo.GinkgoT(), log, "Unexpected failure reloading the backend", "reloading nginx after a configmap change")
-		})
-	*/
-
-	ginkgo.It("should enable opentracing using datadog", func() {
-		config := map[string]string{}
-		config[enableOpentracing] = enable
-		config[datadogCollectorHost] = "http://127.0.0.1"
-		f.SetNginxConfigMapData(config)
-
-		framework.Sleep(10 * time.Second)
-		log, err := f.NginxLogs()
-		assert.Nil(ginkgo.GinkgoT(), err, "obtaining nginx logs")
-		assert.NotContains(ginkgo.GinkgoT(), log, "Unexpected failure reloading the backend", "reloading nginx after a configmap change")
-	})
-})

From 870847ad4cb7ec7c509f1bbb98b574974de3a102 Mon Sep 17 00:00:00 2001
From: Leonardo Taccari <leonardo@faire.ai>
Date: Sun, 5 Nov 2023 12:23:43 +0100
Subject: [PATCH 1009/1641] Comment NGINXCertificateExpiry alert label matcher
 (#10613)

If a valid certificate is passed via `--default-ssl-certificate` it is
probably desiderable that we check its expiration!

Add a comment to explain that.
---
 charts/ingress-nginx/values.yaml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 51dccaac0..a63690b6a 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -737,6 +737,11 @@ controller:
       #   annotations:
       #     description: bad ingress config - nginx config test failed
       #     summary: uninstall the latest ingress changes to allow config reloads to resume
+      # # By default a fake self-signed certificate is generated as default and
+      # # it is fine if it expires. If `--default-ssl-certificate` flag is used
+      # # and a valid certificate passed please do not filter for `host` label!
+      # # (i.e. delete `{host!="_"}` so also the default SSL certificate is
+      # # checked for expiration)
       # - alert: NGINXCertificateExpiry
       #   expr: (avg(nginx_ingress_controller_ssl_expire_time_seconds{host!="_"}) by (host) - time()) < 604800
       #   for: 1s

From 63cd83ddafa6db7e5f56ae12b3ff61a76cdc06ab Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 6 Nov 2023 12:46:31 +0100
Subject: [PATCH 1010/1641] Bump github.com/spf13/cobra from 1.7.0 to 1.8.0
 (#10625)

Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.7.0 to 1.8.0.
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](https://github.com/spf13/cobra/compare/v1.7.0...v1.8.0)

---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/go.mod b/go.mod
index f38e632b3..7103c8001 100644
--- a/go.mod
+++ b/go.mod
@@ -20,7 +20,7 @@ require (
 	github.com/prometheus/client_golang v1.17.0
 	github.com/prometheus/client_model v0.5.0
 	github.com/prometheus/common v0.45.0
-	github.com/spf13/cobra v1.7.0
+	github.com/spf13/cobra v1.8.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.4
 	github.com/yudai/gojsondiff v1.0.0
diff --git a/go.sum b/go.sum
index 5b23c4d37..44e3082ca 100644
--- a/go.sum
+++ b/go.sum
@@ -61,7 +61,7 @@ github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDk
 github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc=
 github.com/coreos/go-systemd/v22 v22.4.0 h1:y9YHcjnjynCd/DVbg5j9L/33jQM3MxJlbj/zWskzfGU=
 github.com/coreos/go-systemd/v22 v22.4.0/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
-github.com/cpuguy83/go-md2man/v2 v2.0.2/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
+github.com/cpuguy83/go-md2man/v2 v2.0.3/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/cyphar/filepath-securejoin v0.2.4 h1:Ugdm7cg7i6ZK6x3xDF1oEu1nfkyfH53EtKeQYTC3kyg=
 github.com/cyphar/filepath-securejoin v0.2.4/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
@@ -341,8 +341,8 @@ github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6Mwd
 github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
 github.com/sirupsen/logrus v1.9.0 h1:trlNQbNUG3OdDrDil03MCb1H2o9nJ1x4/5LYw7byDE0=
 github.com/sirupsen/logrus v1.9.0/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
-github.com/spf13/cobra v1.7.0 h1:hyqWnYt1ZQShIddO5kBpj3vu05/++x6tJ6dg8EC572I=
-github.com/spf13/cobra v1.7.0/go.mod h1:uLxZILRyS/50WlhOIKD7W6V5bgeIt+4sICxh6uRMrb0=
+github.com/spf13/cobra v1.8.0 h1:7aJaZx1B85qltLMc546zn58BxxfZdR/W22ej9CFoEf0=
+github.com/spf13/cobra v1.8.0/go.mod h1:WXLWApfZ71AjXPya3WOlMsY9yMs7YeiHhFVlvLyhcho=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=

From 98b8f2e5471de87e3dbd3563bf74083b9da81ac6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 6 Nov 2023 14:19:04 +0100
Subject: [PATCH 1011/1641] Bump helm/chart-releaser-action from 1.5.0 to 1.6.0
 (#10621)

Bumps [helm/chart-releaser-action](https://github.com/helm/chart-releaser-action) from 1.5.0 to 1.6.0.
- [Release notes](https://github.com/helm/chart-releaser-action/releases)
- [Commits](https://github.com/helm/chart-releaser-action/compare/be16258da8010256c6e82849661221415f031968...a917fd15b20e8b64b94d9158ad54cd6345335584)

---
updated-dependencies:
- dependency-name: helm/chart-releaser-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/helm.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 0a0997cbf..c6cb31320 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -73,7 +73,7 @@ jobs:
           git config --global user.email "$GITHUB_ACTOR@users.noreply.github.com"
 
       - name: Helm Chart Releaser
-        uses: helm/chart-releaser-action@be16258da8010256c6e82849661221415f031968 # v1.5.0
+        uses: helm/chart-releaser-action@a917fd15b20e8b64b94d9158ad54cd6345335584 # v1.6.0
         env:
           CR_SKIP_EXISTING: true
           CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"

From c32d4262e1e685d8d8ccba3e0e2add867a1c25bc Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 7 Nov 2023 04:44:02 +0100
Subject: [PATCH 1012/1641] Bump actions/dependency-review-action from 3.1.0 to
 3.1.1 (#10619)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/6c5ccdad469c9f8a2996bfecaec55a631a347034...9f45b2463b475767b61721ccfef113fef513e6aa)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index df004169f..73983232f 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@6c5ccdad469c9f8a2996bfecaec55a631a347034 # v3.1.0
+        uses: actions/dependency-review-action@9f45b2463b475767b61721ccfef113fef513e6aa # v3.1.1

From 0930782817fad9e69dcd9635c2826f9502a9d04a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 7 Nov 2023 04:46:54 +0100
Subject: [PATCH 1013/1641] Bump aquasecurity/trivy-action from 0.13.0 to
 0.13.1 (#10620)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.13.0 to 0.13.1.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/b77b85c0254bba6789e787844f0585cde1e56320...f78e9ecf42a1271402d4f484518b9313235990e1)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 74d2472f1..e1d38bcbb 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@b77b85c0254bba6789e787844f0585cde1e56320 # v0.13.0
+        uses: aquasecurity/trivy-action@f78e9ecf42a1271402d4f484518b9313235990e1 # v0.13.1
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'

From 9f92ea228507617615d36df292444881524dc305 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 7 Nov 2023 04:49:44 +0100
Subject: [PATCH 1014/1641] Bump github.com/opencontainers/runc from 1.1.9 to
 1.1.10 (#10624)

Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.9 to 1.1.10.
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/v1.1.10/CHANGELOG.md)
- [Commits](https://github.com/opencontainers/runc/compare/v1.1.9...v1.1.10)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 7103c8001..196143705 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo/v2 v2.13.0
-	github.com/opencontainers/runc v1.1.9
+	github.com/opencontainers/runc v1.1.10
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.17.0
 	github.com/prometheus/client_model v0.5.0
diff --git a/go.sum b/go.sum
index 44e3082ca..1aabcdda0 100644
--- a/go.sum
+++ b/go.sum
@@ -289,8 +289,8 @@ github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7J
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.27.10 h1:naR28SdDFlqrG6kScpT8VWpu1xWY5nJRCF3XaYyBjhI=
 github.com/onsi/gomega v1.27.10/go.mod h1:RsS8tutOdbdgzbPtzzATp12yT7kM5I5aElG3evPbQ0M=
-github.com/opencontainers/runc v1.1.9 h1:XR0VIHTGce5eWPkaPesqTBrhW2yAcaraWfsEalNwQLM=
-github.com/opencontainers/runc v1.1.9/go.mod h1:CbUumNnWCuTGFukNXahoo/RFBZvDAgRh/smNYNOhA50=
+github.com/opencontainers/runc v1.1.10 h1:EaL5WeO9lv9wmS6SASjszOeQdSctvpbu0DdBQBizE40=
+github.com/opencontainers/runc v1.1.10/go.mod h1:+/R6+KmDlh+hOO8NkjmgkG9Qzvypzk0yXxAPYYR65+M=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=

From 6499a6bd0431ee590234f205ca482a4ec7a84828 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Tue, 7 Nov 2023 18:46:40 +0100
Subject: [PATCH 1015/1641] Chart: Fix pod selectors in `NOTES.txt`. (#10617)

Also improve other `kubectl` commands.
---
 charts/ingress-nginx/templates/NOTES.txt | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/charts/ingress-nginx/templates/NOTES.txt b/charts/ingress-nginx/templates/NOTES.txt
index 72267e13f..f4923007e 100644
--- a/charts/ingress-nginx/templates/NOTES.txt
+++ b/charts/ingress-nginx/templates/NOTES.txt
@@ -6,24 +6,24 @@ Get the application URL by running these commands:
 {{- if (not (empty .Values.controller.service.nodePorts.http)) }}
   export HTTP_NODE_PORT={{ .Values.controller.service.nodePorts.http }}
 {{- else }}
-  export HTTP_NODE_PORT=$(kubectl --namespace {{ include "ingress-nginx.namespace" . }} get services -o jsonpath="{.spec.ports[0].nodePort}" {{ include "ingress-nginx.controller.fullname" . }})
+  export HTTP_NODE_PORT=$(kubectl get service --namespace {{ include "ingress-nginx.namespace" . }} {{ include "ingress-nginx.controller.fullname" . }} --output jsonpath="{.spec.ports[0].nodePort}")
 {{- end }}
 {{- if (not (empty .Values.controller.service.nodePorts.https)) }}
   export HTTPS_NODE_PORT={{ .Values.controller.service.nodePorts.https }}
 {{- else }}
-  export HTTPS_NODE_PORT=$(kubectl --namespace {{ include "ingress-nginx.namespace" . }} get services -o jsonpath="{.spec.ports[1].nodePort}" {{ include "ingress-nginx.controller.fullname" . }})
+  export HTTPS_NODE_PORT=$(kubectl get service --namespace {{ include "ingress-nginx.namespace" . }} {{ include "ingress-nginx.controller.fullname" . }} --output jsonpath="{.spec.ports[1].nodePort}")
 {{- end }}
-  export NODE_IP=$(kubectl --namespace {{ include "ingress-nginx.namespace" . }} get nodes -o jsonpath="{.items[0].status.addresses[1].address}")
+  export NODE_IP="$(kubectl get nodes --output jsonpath="{.items[0].status.addresses[1].address}")"
 
-  echo "Visit http://$NODE_IP:$HTTP_NODE_PORT to access your application via HTTP."
-  echo "Visit https://$NODE_IP:$HTTPS_NODE_PORT to access your application via HTTPS."
+  echo "Visit http://${NODE_IP}:${HTTP_NODE_PORT} to access your application via HTTP."
+  echo "Visit https://${NODE_IP}:${HTTPS_NODE_PORT} to access your application via HTTPS."
 {{- else if contains "LoadBalancer" .Values.controller.service.type }}
-It may take a few minutes for the LoadBalancer IP to be available.
-You can watch the status by running 'kubectl --namespace {{ include "ingress-nginx.namespace" . }} get services -o wide -w {{ include "ingress-nginx.controller.fullname" . }}'
+It may take a few minutes for the load balancer IP to be available.
+You can watch the status by running 'kubectl get service --namespace {{ include "ingress-nginx.namespace" . }} {{ include "ingress-nginx.controller.fullname" . }} --output wide --watch'
 {{- else if contains "ClusterIP"  .Values.controller.service.type }}
 Get the application URL by running these commands:
-  export POD_NAME=$(kubectl --namespace {{ include "ingress-nginx.namespace" . }} get pods -o jsonpath="{.items[0].metadata.name}" -l "app={{ template "ingress-nginx.name" . }},component={{ .Values.controller.name }},release={{ .Release.Name }}")
-  kubectl --namespace {{ include "ingress-nginx.namespace" . }} port-forward $POD_NAME 8080:80
+  export POD_NAME="$(kubectl get pods --namespace {{ include "ingress-nginx.namespace" . }} --selector app.kubernetes.io/name={{ include "ingress-nginx.name" . }},app.kubernetes.io/instance={{ .Release.Name }},app.kubernetes.io/component=controller --output jsonpath="{.items[0].metadata.name}")"
+  kubectl port-forward --namespace {{ include "ingress-nginx.namespace" . }} "${POD_NAME}" 8080:80
   echo "Visit http://127.0.0.1:8080 to access your application."
 {{- end }}
 

From 8b026f42d5db4e1da910a4c0e49e9511d239ba4f Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Tue, 7 Nov 2023 18:52:36 +0100
Subject: [PATCH 1016/1641] Chart: Tighten `securityContext`s and Pod Security
 Policies. (#10491)

* Values: Fix docs of `controller.podSecurityContext` & `controller.sysctls`.

* Values: Add missing `controller.containerSecurityContext`.

Already in use, but has never been added to values.

* Values: Fix docs of `defaultBackend.podSecurityContext` & `defaultBackend.containerSecurityContext`.

* Helpers: Rename `controller.containerSecurityContext` to `ingress-nginx.controller.containerSecurityContext`.

Due to alignment with other templates.

* Helpers: Improve `extraModules`.

- Make `command` a multiline list.
- Fix `toYaml` usage.
- Remove `toYaml` where not necessary.

* Helpers: Move `ingress-nginx.defaultBackend.fullname`.

* Helpers: Add `ingress-nginx.defaultBackend.containerSecurityContext`.

Extracts the default backend `securityContext` into a template, as for the controller.

* Controller: Fix indentation of `controller.podSecurityContext` & `controller.sysctls`.

* Controller: Improve `controller.extraModules` & `controller.opentelemetry`.

- Add `controller.extraModules.distroless` & `controller.extraModules.resources`.
- Add `controller.opentelemetry.name` & `controller.opentelemetry.distroless`.
- Align `extraModules` inclusion for `controller.extraModules` & `controller.opentelemetry`.
- Remove redundant whitespaces.

* Controller/PSP: Align indentation.

* Controller/PSP: Remove quotes.

* Controller/PSP: Improve comments.

* Controller/PSP: Reorder fields.

See https://v1-24.docs.kubernetes.io/docs/concepts/security/pod-security-policy.

* Admission Webhooks: Fix indentation of `controller.admissionWebhooks.patch.securityContext`.

* Admission Webhooks/PSP: Align indentation.

* Admission Webhooks/PSP: Reorder fields.

* Admission Webhooks/PSP: Align condition.

* Admission Webhooks/ClusterRole: Align PSP rule.

* Default Backend/PSP: Align indentation.

* Default Backend/PSP: Reorder fields.

See https://v1-24.docs.kubernetes.io/docs/concepts/security/pod-security-policy.

* Values: Tighten `controller.image`.

Due to recent changes, the controller image can be run without privilege escalation:

- https://github.com/kubernetes/ingress-nginx/issues/8499
- https://github.com/kubernetes/ingress-nginx/pull/7449

* Values: Tighten `controller.extraModules.containerSecurityContext`.

* Values: Tighten `controller.opentelemetry.containerSecurityContext`.

* Values: Tighten `controller.admissionWebhooks.*.securityContext`.

Moves the pod `securityContext` to the containers to not interfere with injected containers.

* Values: Tighten `defaultBackend.image`.
---
 charts/ingress-nginx/README.md                |  30 ++--
 charts/ingress-nginx/templates/_helpers.tpl   |  71 ++++++---
 .../job-patch/clusterrole.yaml                |  11 +-
 .../job-patch/job-createSecret.yaml           |   7 +-
 .../job-patch/job-patchWebhook.yaml           |   7 +-
 .../admission-webhooks/job-patch/psp.yaml     |  47 +++---
 .../templates/controller-daemonset.yaml       |  44 +++---
 .../templates/controller-deployment.yaml      |  44 +++---
 .../templates/controller-psp.yaml             | 142 +++++++++---------
 .../templates/default-backend-deployment.yaml |   9 +-
 .../templates/default-backend-psp.yaml        |  46 +++---
 charts/ingress-nginx/values.yaml              |  74 ++++++---
 12 files changed, 316 insertions(+), 216 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 480a5dd1f..4a0cb94a2 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -242,7 +242,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.certificate | string | `"/usr/local/certificates/cert"` |  |
 | controller.admissionWebhooks.createSecretJob.name | string | `"create"` |  |
 | controller.admissionWebhooks.createSecretJob.resources | object | `{}` |  |
-| controller.admissionWebhooks.createSecretJob.securityContext.allowPrivilegeEscalation | bool | `false` |  |
+| controller.admissionWebhooks.createSecretJob.securityContext | object | `{"allowPrivilegeEscalation":false,"capabilities":{"drop":["ALL"]},"readOnlyRootFilesystem":true,"runAsNonRoot":true,"runAsUser":65532,"seccompProfile":{"type":"RuntimeDefault"}}` | Security context for secret creation containers |
 | controller.admissionWebhooks.enabled | bool | `true` |  |
 | controller.admissionWebhooks.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | controller.admissionWebhooks.extraEnvs | list | `[]` | Additional environment variables to set |
@@ -262,13 +262,11 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
 | controller.admissionWebhooks.patch.podAnnotations | object | `{}` |  |
 | controller.admissionWebhooks.patch.priorityClassName | string | `""` | Provide a priority class name to the webhook patching job # |
-| controller.admissionWebhooks.patch.securityContext.fsGroup | int | `2000` |  |
-| controller.admissionWebhooks.patch.securityContext.runAsNonRoot | bool | `true` |  |
-| controller.admissionWebhooks.patch.securityContext.runAsUser | int | `2000` |  |
+| controller.admissionWebhooks.patch.securityContext | object | `{}` | Security context for secret creation & webhook patch pods |
 | controller.admissionWebhooks.patch.tolerations | list | `[]` |  |
 | controller.admissionWebhooks.patchWebhookJob.name | string | `"patch"` |  |
 | controller.admissionWebhooks.patchWebhookJob.resources | object | `{}` |  |
-| controller.admissionWebhooks.patchWebhookJob.securityContext.allowPrivilegeEscalation | bool | `false` |  |
+| controller.admissionWebhooks.patchWebhookJob.securityContext | object | `{"allowPrivilegeEscalation":false,"capabilities":{"drop":["ALL"]},"readOnlyRootFilesystem":true,"runAsNonRoot":true,"runAsUser":65532,"seccompProfile":{"type":"RuntimeDefault"}}` | Security context for webhook patch containers |
 | controller.admissionWebhooks.port | int | `8443` |  |
 | controller.admissionWebhooks.service.annotations | object | `{}` |  |
 | controller.admissionWebhooks.service.externalIPs | list | `[]` |  |
@@ -291,6 +289,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.configMapNamespace | string | `""` | Allows customization of the configmap / nginx-configmap namespace; defaults to $(POD_NAMESPACE) |
 | controller.containerName | string | `"controller"` | Configures the controller container name |
 | controller.containerPort | object | `{"http":80,"https":443}` | Configures the ports that the nginx-controller listens on |
+| controller.containerSecurityContext | object | `{}` | Security context for controller containers |
 | controller.customTemplate.configMapKey | string | `""` |  |
 | controller.customTemplate.configMapName | string | `""` |  |
 | controller.dnsConfig | object | `{}` | Optionally customize the pod dnsConfig. |
@@ -315,14 +314,17 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostPort.ports.http | int | `80` | 'hostPort' http port |
 | controller.hostPort.ports.https | int | `443` | 'hostPort' https port |
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
-| controller.image.allowPrivilegeEscalation | bool | `true` |  |
+| controller.image.allowPrivilegeEscalation | bool | `false` |  |
 | controller.image.chroot | bool | `false` |  |
 | controller.image.digest | string | `"sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3"` |  |
 | controller.image.digestChroot | string | `"sha256:5976b1067cfbca8a21d0ba53d71f83543a73316a61ea7f7e436d6cf84ddf9b26"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
+| controller.image.readOnlyRootFilesystem | bool | `false` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
+| controller.image.runAsNonRoot | bool | `true` |  |
 | controller.image.runAsUser | int | `101` |  |
+| controller.image.seccompProfile.type | string | `"RuntimeDefault"` |  |
 | controller.image.tag | string | `"v1.9.4"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
@@ -379,12 +381,19 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
 | controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment # Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ # |
 | controller.opentelemetry.containerSecurityContext.allowPrivilegeEscalation | bool | `false` |  |
+| controller.opentelemetry.containerSecurityContext.capabilities.drop[0] | string | `"ALL"` |  |
+| controller.opentelemetry.containerSecurityContext.readOnlyRootFilesystem | bool | `true` |  |
+| controller.opentelemetry.containerSecurityContext.runAsNonRoot | bool | `true` |  |
+| controller.opentelemetry.containerSecurityContext.runAsUser | int | `65532` | The image's default user, inherited from its base image `cgr.dev/chainguard/static`. |
+| controller.opentelemetry.containerSecurityContext.seccompProfile.type | string | `"RuntimeDefault"` |  |
+| controller.opentelemetry.distroless | bool | `true` |  |
 | controller.opentelemetry.enabled | bool | `false` |  |
 | controller.opentelemetry.image | string | `"registry.k8s.io/ingress-nginx/opentelemetry:v20230721-3e2062ee5@sha256:13bee3f5223883d3ca62fee7309ad02d22ec00ff0d7033e3e9aca7a9f60fd472"` |  |
+| controller.opentelemetry.name | string | `"opentelemetry"` |  |
 | controller.opentelemetry.resources | object | `{}` |  |
 | controller.podAnnotations | object | `{}` | Annotations to be added to controller pods # |
 | controller.podLabels | object | `{}` | Labels to add to the pod container metadata |
-| controller.podSecurityContext | object | `{}` | Security Context policies for controller pods |
+| controller.podSecurityContext | object | `{}` | Security context for controller pods |
 | controller.priorityClassName | string | `""` |  |
 | controller.proxySetHeaders | object | `{}` | Will add custom headers before sending traffic to backends according to https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/custom-headers |
 | controller.publishService | object | `{"enabled":true,"pathOverride":""}` | Allows customization of the source of the IP address or FQDN to report in the ingress status field. By default, it reads the information provided by the service. If disable, the status field reports the IP address of the node or nodes where an ingress controller pod is running. |
@@ -434,7 +443,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.service.targetPorts.https | string | `"https"` |  |
 | controller.service.type | string | `"LoadBalancer"` |  |
 | controller.shareProcessNamespace | bool | `false` |  |
-| controller.sysctls | object | `{}` | See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls |
+| controller.sysctls | object | `{}` | sysctls for controller pods # Ref: https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ |
 | controller.tcp.annotations | object | `{}` | Annotations to be added to the tcp config configmap |
 | controller.tcp.configMapNamespace | string | `""` | Allows customization of the tcp-services-configmap; defaults to $(POD_NAMESPACE) |
 | controller.terminationGracePeriodSeconds | int | `300` | `terminationGracePeriodSeconds` to avoid killing pods before we are ready # wait up to five minutes for the drain of connections # |
@@ -451,7 +460,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.autoscaling.minReplicas | int | `1` |  |
 | defaultBackend.autoscaling.targetCPUUtilizationPercentage | int | `50` |  |
 | defaultBackend.autoscaling.targetMemoryUtilizationPercentage | int | `50` |  |
-| defaultBackend.containerSecurityContext | object | `{}` | Security Context policies for controller main container. See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls # |
+| defaultBackend.containerSecurityContext | object | `{}` | Security context for default backend containers |
 | defaultBackend.enabled | bool | `false` |  |
 | defaultBackend.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | defaultBackend.extraArgs | object | `{}` |  |
@@ -465,6 +474,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.image.registry | string | `"registry.k8s.io"` |  |
 | defaultBackend.image.runAsNonRoot | bool | `true` |  |
 | defaultBackend.image.runAsUser | int | `65534` |  |
+| defaultBackend.image.seccompProfile.type | string | `"RuntimeDefault"` |  |
 | defaultBackend.image.tag | string | `"1.5"` |  |
 | defaultBackend.labels | object | `{}` | Labels to be added to the default backend resources |
 | defaultBackend.livenessProbe.failureThreshold | int | `3` |  |
@@ -479,7 +489,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for default backend pod assignment # Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ # |
 | defaultBackend.podAnnotations | object | `{}` | Annotations to be added to default backend pods # |
 | defaultBackend.podLabels | object | `{}` | Labels to add to the pod container metadata |
-| defaultBackend.podSecurityContext | object | `{}` | Security Context policies for controller pods See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls # |
+| defaultBackend.podSecurityContext | object | `{}` | Security context for default backend pods |
 | defaultBackend.port | int | `8080` |  |
 | defaultBackend.priorityClassName | string | `""` |  |
 | defaultBackend.readinessProbe.failureThreshold | int | `6` |  |
diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index 2b6377869..c936dab79 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -39,23 +39,31 @@ Allows overriding it for multi-namespace deployments in combined charts.
 {{- end -}}
 
 {{/*
-Container SecurityContext.
+Controller container security context.
 */}}
-{{- define "controller.containerSecurityContext" -}}
+{{- define "ingress-nginx.controller.containerSecurityContext" -}}
 {{- if .Values.controller.containerSecurityContext -}}
 {{- toYaml .Values.controller.containerSecurityContext -}}
 {{- else -}}
+runAsNonRoot: {{ .Values.controller.image.runAsNonRoot }}
+runAsUser: {{ .Values.controller.image.runAsUser }}
+allowPrivilegeEscalation: {{ or .Values.controller.image.allowPrivilegeEscalation .Values.controller.image.chroot }}
+{{- if .Values.controller.image.seccompProfile }}
+seccompProfile: {{ toYaml .Values.controller.image.seccompProfile | nindent 2 }}
+{{- end }}
 capabilities:
   drop:
   - ALL
   add:
   - NET_BIND_SERVICE
   {{- if .Values.controller.image.chroot }}
+  {{- if .Values.controller.image.seccompProfile }}
+  - SYS_ADMIN
+  {{- end }}
   - SYS_CHROOT
   {{- end }}
-runAsUser: {{ .Values.controller.image.runAsUser }}
-allowPrivilegeEscalation: {{ .Values.controller.image.allowPrivilegeEscalation }}
-{{- end }}
+readOnlyRootFilesystem: {{ .Values.controller.image.readOnlyRootFilesystem }}
+{{- end -}}
 {{- end -}}
 
 {{/*
@@ -116,14 +124,6 @@ Users can provide an override for an explicit service they want bound via `.Valu
 {{- print $servicePath | trimSuffix "-" -}}
 {{- end -}}
 
-{{/*
-Create a default fully qualified default backend name.
-We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
-*/}}
-{{- define "ingress-nginx.defaultBackend.fullname" -}}
-{{- printf "%s-%s" (include "ingress-nginx.fullname" .) .Values.defaultBackend.name | trunc 63 | trimSuffix "-" -}}
-{{- end -}}
-
 {{/*
 Common labels
 */}}
@@ -183,6 +183,14 @@ We truncate at 63 chars because some Kubernetes name fields are limited to this
 {{- printf "%s-%s" (include "ingress-nginx.admissionWebhooks.fullname" .) .Values.controller.admissionWebhooks.patchWebhookJob.name | trunc 63 | trimSuffix "-" -}}
 {{- end -}}
 
+{{/*
+Create a default fully qualified default backend name.
+We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
+*/}}
+{{- define "ingress-nginx.defaultBackend.fullname" -}}
+{{- printf "%s-%s" (include "ingress-nginx.fullname" .) .Values.defaultBackend.name | trunc 63 | trimSuffix "-" -}}
+{{- end -}}
+
 {{/*
 Create the name of the backend service account to use - only used when podsecuritypolicy is also enabled
 */}}
@@ -194,6 +202,26 @@ Create the name of the backend service account to use - only used when podsecuri
 {{- end -}}
 {{- end -}}
 
+{{/*
+Default backend container security context.
+*/}}
+{{- define "ingress-nginx.defaultBackend.containerSecurityContext" -}}
+{{- if .Values.defaultBackend.containerSecurityContext -}}
+{{- toYaml .Values.defaultBackend.containerSecurityContext -}}
+{{- else -}}
+runAsNonRoot: {{ .Values.defaultBackend.image.runAsNonRoot }}
+runAsUser: {{ .Values.defaultBackend.image.runAsUser }}
+allowPrivilegeEscalation: {{ .Values.defaultBackend.image.allowPrivilegeEscalation }}
+{{- if .Values.defaultBackend.image.seccompProfile }}
+seccompProfile: {{ toYaml .Values.defaultBackend.image.seccompProfile | nindent 2 }}
+{{- end }}
+capabilities:
+  drop:
+  - ALL
+readOnlyRootFilesystem: {{ .Values.defaultBackend.image.readOnlyRootFilesystem }}
+{{- end -}}
+{{- end -}}
+
 {{/*
 Return the appropriate apiGroup for PodSecurityPolicy.
 */}}
@@ -230,18 +258,21 @@ Extra modules.
 {{- define "extraModules" -}}
 - name: {{ .name }}
   image: {{ .image }}
-  {{- if .distroless | default false }}
-  command: ['/init_module']
+  command:
+  {{- if .distroless }}
+    - /init_module
   {{- else }}
-  command: ['sh', '-c', '/usr/local/bin/init_module.sh']
+    - sh
+    - -c
+    - /usr/local/bin/init_module.sh
   {{- end }}
   {{- if .containerSecurityContext }}
-  securityContext: {{ .containerSecurityContext | toYaml | nindent 4 }}
+  securityContext: {{ toYaml .containerSecurityContext | nindent 4 }}
   {{- end }}
   {{- if .resources }}
-  resources: {{ .resources | toYaml | nindent 4 }}
+  resources: {{ toYaml .resources | nindent 4 }}
   {{- end }}
   volumeMounts:
-    - name: {{ toYaml "modules"}}
-      mountPath: {{ toYaml "/modules_mount"}}
+    - name: modules
+      mountPath: /modules_mount
 {{- end -}}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
index ec43a3bc1..8271dc404 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
@@ -21,14 +21,13 @@ rules:
       - get
       - update
 {{- if .Values.podSecurityPolicy.enabled }}
-  - apiGroups: ['extensions']
-    resources: ['podsecuritypolicies']
-    verbs:     ['use']
-    resourceNames:
+  - apiGroups:      [{{ template "podSecurityPolicy.apiGroup" . }}]
+    resources:      ['podsecuritypolicies']
+    verbs:          ['use']
     {{- with .Values.controller.admissionWebhooks.existingPsp }}
-    - {{ . }}
+    resourceNames:  [{{ . }}]
     {{- else }}
-    - {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
+    resourceNames:  [{{ include "ingress-nginx.admissionWebhooks.fullname" . }}]
     {{- end }}
 {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
index 1747303c0..c29083f2b 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
@@ -73,8 +73,7 @@ spec:
     {{- if .Values.controller.admissionWebhooks.patch.tolerations }}
       tolerations: {{ toYaml .Values.controller.admissionWebhooks.patch.tolerations | nindent 8 }}
     {{- end }}
-      {{- if .Values.controller.admissionWebhooks.patch.securityContext }}
-      securityContext:
-        {{- toYaml .Values.controller.admissionWebhooks.patch.securityContext | nindent 8 }}
-      {{- end }}
+    {{- if .Values.controller.admissionWebhooks.patch.securityContext }}
+      securityContext: {{ toYaml .Values.controller.admissionWebhooks.patch.securityContext | nindent 8 }}
+    {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
index 64b736d74..cbc4a7619 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
@@ -75,8 +75,7 @@ spec:
     {{- if .Values.controller.admissionWebhooks.patch.tolerations }}
       tolerations: {{ toYaml .Values.controller.admissionWebhooks.patch.tolerations | nindent 8 }}
     {{- end }}
-      {{- if .Values.controller.admissionWebhooks.patch.securityContext }}
-      securityContext:
-        {{- toYaml .Values.controller.admissionWebhooks.patch.securityContext | nindent 8 }}
-      {{- end }}
+    {{- if .Values.controller.admissionWebhooks.patch.securityContext }}
+      securityContext: {{ toYaml .Values.controller.admissionWebhooks.patch.securityContext | nindent 8 }}
+    {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml
index ae40dc898..8e5dc72ac 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml
@@ -1,5 +1,5 @@
 {{- if (semverCompare "<1.25.0-0" .Capabilities.KubeVersion.Version) }}
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled .Values.podSecurityPolicy.enabled (empty .Values.controller.admissionWebhooks.existingPsp) -}}
+{{- if and .Values.podSecurityPolicy.enabled .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (empty .Values.controller.admissionWebhooks.existingPsp) -}}
 apiVersion: policy/v1beta1
 kind: PodSecurityPolicy
 metadata:
@@ -7,6 +7,7 @@ metadata:
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
     "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
+    seccomp.security.alpha.kubernetes.io/allowedProfileNames: "*"
   labels:
     {{- include "ingress-nginx.labels" . | nindent 4 }}
     app.kubernetes.io/component: admission-webhook
@@ -14,28 +15,38 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
 spec:
-  allowPrivilegeEscalation: false
+  privileged: false
+  hostPID: false
+  hostIPC: false
+  hostNetwork: false
+  volumes:
+    - configMap
+    - downwardAPI
+    - emptyDir
+    - secret
+    - projected
   fsGroup:
-    ranges:
-    - max: 65535
-      min: 1
     rule: MustRunAs
-  requiredDropCapabilities:
-  - ALL
+    ranges:
+      - min: 1
+        max: 65535
+  readOnlyRootFilesystem: true
   runAsUser:
     rule: MustRunAsNonRoot
+  runAsGroup:
+    rule: MustRunAs
+    ranges:
+      - min: 1
+        max: 65535
+  supplementalGroups:
+    rule: MustRunAs
+    ranges:
+      - min: 1
+        max: 65535
+  allowPrivilegeEscalation: false
+  requiredDropCapabilities:
+    - ALL
   seLinux:
     rule: RunAsAny
-  supplementalGroups:
-    ranges:
-    - max: 65535
-      min: 1
-    rule: MustRunAs
-  volumes:
-  - configMap
-  - emptyDir
-  - projected
-  - secret
-  - downwardAPI
 {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index bb1a1b320..3aaa92509 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -60,16 +60,16 @@ spec:
     {{- end }}
     {{- if or .Values.controller.podSecurityContext .Values.controller.sysctls }}
       securityContext:
-    {{- end }}
-    {{- if .Values.controller.podSecurityContext }}
+      {{- if .Values.controller.podSecurityContext }}
         {{- toYaml .Values.controller.podSecurityContext | nindent 8 }}
-    {{- end }}
-    {{- if .Values.controller.sysctls }}
+      {{- end }}
+      {{- if .Values.controller.sysctls }}
         sysctls:
-    {{- range $sysctl, $value := .Values.controller.sysctls }}
-        - name: {{ $sysctl | quote }}
-          value: {{ $value | quote }}
-    {{- end }}
+        {{- range $sysctl, $value := .Values.controller.sysctls }}
+          - name: {{ $sysctl | quote }}
+            value: {{ $value | quote }}
+        {{- end }}
+      {{- end }}
     {{- end }}
     {{- if .Values.controller.shareProcessNamespace }}
       shareProcessNamespace: {{ .Values.controller.shareProcessNamespace }}
@@ -83,9 +83,8 @@ spec:
         {{- if .Values.controller.lifecycle }}
           lifecycle: {{ toYaml .Values.controller.lifecycle | nindent 12 }}
         {{- end }}
-          args:
-            {{- include "ingress-nginx.params" . | nindent 12 }}
-          securityContext: {{ include "controller.containerSecurityContext" . | nindent 12 }}
+          args: {{ include "ingress-nginx.params" . | nindent 12 }}
+          securityContext: {{ include "ingress-nginx.controller.containerSecurityContext" . | nindent 12 }}
           env:
             - name: POD_NAME
               valueFrom:
@@ -150,11 +149,11 @@ spec:
           volumeMounts:
           {{- if (or .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
             - name: modules
-            {{ if .Values.controller.image.chroot }}
+            {{- if .Values.controller.image.chroot }}
               mountPath: /chroot/modules_mount
-            {{ else }}
+            {{- else }}
               mountPath: /modules_mount
-            {{ end }}
+            {{- end }}
           {{- end }}
           {{- if .Values.controller.customTemplate.configMapName }}
             - mountPath: /etc/nginx/template
@@ -174,24 +173,25 @@ spec:
           resources: {{ toYaml .Values.controller.resources | nindent 12 }}
         {{- end }}
       {{- if .Values.controller.extraContainers }}
-        {{ toYaml .Values.controller.extraContainers | nindent 8 }}
+        {{- toYaml .Values.controller.extraContainers | nindent 8 }}
       {{- end }}
     {{- if (or .Values.controller.extraInitContainers .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
       initContainers:
       {{- if .Values.controller.extraInitContainers }}
-        {{ toYaml .Values.controller.extraInitContainers | nindent 8 }}
+        {{- toYaml .Values.controller.extraInitContainers | nindent 8 }}
       {{- end }}
       {{- if .Values.controller.extraModules }}
         {{- range .Values.controller.extraModules }}
           {{- $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext) | nindent 8 }}
+          {{- include "extraModules" (dict "name" .name "image" .image "distroless" .distroless "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
+        {{- end }}
+      {{- end }}
+      {{- if .Values.controller.opentelemetry.enabled }}
+        {{- with .Values.controller.opentelemetry }}
+          {{- $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
+          {{- include "extraModules" (dict "name" .name "image" .image "distroless" .distroless "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
         {{- end }}
       {{- end }}
-      {{- if .Values.controller.opentelemetry.enabled}}
-          {{- $otelContainerSecurityContext := $.Values.controller.opentelemetry.containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{ $otelResources := $.Values.controller.opentelemetry.resources | default dict }}
-          {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext "distroless" true "resources" $otelResources) | nindent 8}}
-      {{- end}}
     {{- end }}
     {{- if .Values.controller.hostNetwork }}
       hostNetwork: {{ .Values.controller.hostNetwork }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index cbd345e21..ded282a30 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -63,16 +63,16 @@ spec:
     {{- end }}
     {{- if or .Values.controller.podSecurityContext .Values.controller.sysctls }}
       securityContext:
-    {{- end }}
-    {{- if .Values.controller.podSecurityContext }}
+      {{- if .Values.controller.podSecurityContext }}
         {{- toYaml .Values.controller.podSecurityContext | nindent 8 }}
-    {{- end }}
-    {{- if .Values.controller.sysctls }}
+      {{- end }}
+      {{- if .Values.controller.sysctls }}
         sysctls:
-    {{- range $sysctl, $value := .Values.controller.sysctls }}
-        - name: {{ $sysctl | quote }}
-          value: {{ $value | quote }}
-    {{- end }}
+        {{- range $sysctl, $value := .Values.controller.sysctls }}
+          - name: {{ $sysctl | quote }}
+            value: {{ $value | quote }}
+        {{- end }}
+      {{- end }}
     {{- end }}
     {{- if .Values.controller.shareProcessNamespace }}
       shareProcessNamespace: {{ .Values.controller.shareProcessNamespace }}
@@ -86,9 +86,8 @@ spec:
         {{- if .Values.controller.lifecycle }}
           lifecycle: {{ toYaml .Values.controller.lifecycle | nindent 12 }}
         {{- end }}
-          args:
-            {{- include "ingress-nginx.params" . | nindent 12 }}
-          securityContext: {{ include "controller.containerSecurityContext" . | nindent 12 }}
+          args: {{ include "ingress-nginx.params" . | nindent 12 }}
+          securityContext: {{ include "ingress-nginx.controller.containerSecurityContext" . | nindent 12 }}
           env:
             - name: POD_NAME
               valueFrom:
@@ -153,11 +152,11 @@ spec:
           volumeMounts:
           {{- if (or .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
             - name: modules
-            {{ if .Values.controller.image.chroot }}
+            {{- if .Values.controller.image.chroot }}
               mountPath: /chroot/modules_mount
-            {{ else }}
+            {{- else }}
               mountPath: /modules_mount
-            {{ end }}
+            {{- end }}
           {{- end }}
           {{- if .Values.controller.customTemplate.configMapName }}
             - mountPath: /etc/nginx/template
@@ -177,24 +176,25 @@ spec:
           resources: {{ toYaml .Values.controller.resources | nindent 12 }}
         {{- end }}
       {{- if .Values.controller.extraContainers }}
-        {{ toYaml .Values.controller.extraContainers | nindent 8 }}
+        {{- toYaml .Values.controller.extraContainers | nindent 8 }}
       {{- end }}
     {{- if (or .Values.controller.extraInitContainers .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
       initContainers:
       {{- if .Values.controller.extraInitContainers }}
-        {{ toYaml .Values.controller.extraInitContainers | nindent 8 }}
+        {{- toYaml .Values.controller.extraInitContainers | nindent 8 }}
       {{- end }}
       {{- if .Values.controller.extraModules }}
         {{- range .Values.controller.extraModules }}
           {{- $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext) | nindent 8 }}
+          {{- include "extraModules" (dict "name" .name "image" .image "distroless" .distroless "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
+        {{- end }}
+      {{- end }}
+      {{- if .Values.controller.opentelemetry.enabled }}
+        {{- with .Values.controller.opentelemetry }}
+          {{- $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
+          {{- include "extraModules" (dict "name" .name "image" .image "distroless" .distroless "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
         {{- end }}
       {{- end }}
-      {{- if .Values.controller.opentelemetry.enabled}}
-          {{- $otelContainerSecurityContext := $.Values.controller.opentelemetry.containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{ $otelResources := $.Values.controller.opentelemetry.resources | default dict }}
-          {{- include "extraModules" (dict "name" "opentelemetry" "image" .Values.controller.opentelemetry.image "containerSecurityContext" $otelContainerSecurityContext "distroless" true "resources" $otelResources) | nindent 8}}
-      {{- end}}
     {{- end }}
     {{- if .Values.controller.hostNetwork }}
       hostNetwork: {{ .Values.controller.hostNetwork }}
diff --git a/charts/ingress-nginx/templates/controller-psp.yaml b/charts/ingress-nginx/templates/controller-psp.yaml
index 3c499b9d4..aad1d2736 100644
--- a/charts/ingress-nginx/templates/controller-psp.yaml
+++ b/charts/ingress-nginx/templates/controller-psp.yaml
@@ -4,6 +4,8 @@ apiVersion: policy/v1beta1
 kind: PodSecurityPolicy
 metadata:
   name: {{ include "ingress-nginx.fullname" . }}
+  annotations:
+    seccomp.security.alpha.kubernetes.io/allowedProfileNames: "*"
   labels:
     {{- include "ingress-nginx.labels" . | nindent 4 }}
     app.kubernetes.io/component: controller
@@ -11,84 +13,88 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
 spec:
-  allowedCapabilities:
-    - NET_BIND_SERVICE
-  {{- if .Values.controller.image.chroot }}
-    - SYS_CHROOT
-  {{- end }}
-{{- if .Values.controller.sysctls }}
-  allowedUnsafeSysctls:
-  {{- range $sysctl, $value := .Values.controller.sysctls }}
-  - {{ $sysctl }}
-  {{- end }}
-{{- end }}
   privileged: false
-  allowPrivilegeEscalation: true
-  # Allow core volume types.
-  volumes:
-    - 'configMap'
-    - 'emptyDir'
-    - 'projected'
-    - 'secret'
-    - 'downwardAPI'
-{{- if .Values.controller.hostNetwork }}
+  hostPID: false
+  hostIPC: false
   hostNetwork: {{ .Values.controller.hostNetwork }}
-{{- end }}
 {{- if or .Values.controller.hostNetwork .Values.controller.hostPort.enabled }}
   hostPorts:
-{{- if .Values.controller.hostNetwork }}
-{{- range $key, $value := .Values.controller.containerPort }}
-  # {{ $key }}
-  - min: {{ $value }}
-    max: {{ $value }}
+  {{- if .Values.controller.hostNetwork }}
+  {{- range $key, $value := .Values.controller.containerPort }}
+    # controller.containerPort.{{ $key }}
+    - min: {{ $value }}
+      max: {{ $value }}
+  {{- end }}
+  {{- else if .Values.controller.hostPort.enabled }}
+  {{- range $key, $value := .Values.controller.hostPort.ports }}
+    # controller.hostPort.ports.{{ $key }}
+    - min: {{ $value }}
+      max: {{ $value }}
+  {{- end }}
+  {{- end }}
+  {{- if .Values.controller.metrics.enabled }}
+    # controller.metrics.port
+    - min: {{ .Values.controller.metrics.port }}
+      max: {{ .Values.controller.metrics.port }}
+  {{- end }}
+  {{- if .Values.controller.admissionWebhooks.enabled }}
+    # controller.admissionWebhooks.port
+    - min: {{ .Values.controller.admissionWebhooks.port }}
+      max: {{ .Values.controller.admissionWebhooks.port }}
+  {{- end }}
+  {{- range $key, $value := .Values.tcp }}
+    # tcp.{{ $key }}
+    - min: {{ $key }}
+      max: {{ $key }}
+  {{- end }}
+  {{- range $key, $value := .Values.udp }}
+    # udp.{{ $key }}
+    - min: {{ $key }}
+      max: {{ $key }}
+  {{- end }}
 {{- end }}
-{{- else if .Values.controller.hostPort.enabled }}
-{{- range $key, $value := .Values.controller.hostPort.ports }}
-  # {{ $key }}
-  - min: {{ $value }}
-    max: {{ $value }}
-{{- end }}
-{{- end }}
-{{- if .Values.controller.metrics.enabled }}
-  # metrics
-  - min: {{ .Values.controller.metrics.port }}
-    max: {{ .Values.controller.metrics.port }}
-{{- end }}
-{{- if .Values.controller.admissionWebhooks.enabled }}
-  # admission webhooks
-  - min: {{ .Values.controller.admissionWebhooks.port }}
-    max: {{ .Values.controller.admissionWebhooks.port }}
-{{- end }}
-{{- range $key, $value := .Values.tcp }}
-  # {{ $key }}-tcp
-  - min: {{ $key }}
-    max: {{ $key }}
-{{- end }}
-{{- range $key, $value := .Values.udp }}
-  # {{ $key }}-udp
-  - min: {{ $key }}
-    max: {{ $key }}
-{{- end }}
-{{- end }}
-  hostIPC: false
-  hostPID: false
-  runAsUser:
-    # Require the container to run without root privileges.
-    rule: 'MustRunAsNonRoot'
-  supplementalGroups:
-    rule: 'MustRunAs'
-    ranges:
-      # Forbid adding the root group.
-      - min: 1
-        max: 65535
+  volumes:
+    - configMap
+    - downwardAPI
+    - emptyDir
+    - secret
+    - projected
   fsGroup:
-    rule: 'MustRunAs'
+    rule: MustRunAs
     ranges:
-      # Forbid adding the root group.
       - min: 1
         max: 65535
   readOnlyRootFilesystem: false
+  runAsUser:
+    rule: MustRunAsNonRoot
+  runAsGroup:
+    rule: MustRunAs
+    ranges:
+      - min: 1
+        max: 65535
+  supplementalGroups:
+    rule: MustRunAs
+    ranges:
+      - min: 1
+        max: 65535
+  allowPrivilegeEscalation: {{ or .Values.controller.image.allowPrivilegeEscalation .Values.controller.image.chroot }}
+  requiredDropCapabilities:
+    - ALL
+  allowedCapabilities:
+    - NET_BIND_SERVICE
+  {{- if .Values.controller.image.chroot }}
+  {{- if .Values.controller.image.seccompProfile }}
+    - SYS_ADMIN
+  {{- end }}
+    - SYS_CHROOT
+  {{- end }}
   seLinux:
-    rule: 'RunAsAny'
+    rule: RunAsAny
+{{- if .Values.controller.sysctls }}
+  allowedUnsafeSysctls:
+  {{- range $sysctl, $value := .Values.controller.sysctls }}
+    - {{ $sysctl }}
+  {{- end }}
+{{- end }}
 {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/default-backend-deployment.yaml b/charts/ingress-nginx/templates/default-backend-deployment.yaml
index 44c3732b0..ed88e6bc3 100644
--- a/charts/ingress-nginx/templates/default-backend-deployment.yaml
+++ b/charts/ingress-nginx/templates/default-backend-deployment.yaml
@@ -65,14 +65,7 @@ spec:
             {{- end }}
           {{- end }}
         {{- end }}
-          securityContext:
-            capabilities:
-              drop:
-              - ALL
-            runAsUser: {{ .Values.defaultBackend.image.runAsUser }}
-            runAsNonRoot: {{ .Values.defaultBackend.image.runAsNonRoot }}
-            allowPrivilegeEscalation: {{ .Values.defaultBackend.image.allowPrivilegeEscalation }}
-            readOnlyRootFilesystem: {{ .Values.defaultBackend.image.readOnlyRootFilesystem}}
+          securityContext: {{ include "ingress-nginx.defaultBackend.containerSecurityContext" . | nindent 12 }}
         {{- if .Values.defaultBackend.extraEnvs }}
           env: {{ toYaml .Values.defaultBackend.extraEnvs | nindent 12 }}
         {{- end }}
diff --git a/charts/ingress-nginx/templates/default-backend-psp.yaml b/charts/ingress-nginx/templates/default-backend-psp.yaml
index c144c8fbf..424109109 100644
--- a/charts/ingress-nginx/templates/default-backend-psp.yaml
+++ b/charts/ingress-nginx/templates/default-backend-psp.yaml
@@ -4,6 +4,8 @@ apiVersion: policy/v1beta1
 kind: PodSecurityPolicy
 metadata:
   name: {{ include "ingress-nginx.fullname" . }}-backend
+  annotations:
+    seccomp.security.alpha.kubernetes.io/allowedProfileNames: "*"
   labels:
     {{- include "ingress-nginx.labels" . | nindent 4 }}
     app.kubernetes.io/component: default-backend
@@ -11,28 +13,38 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
 spec:
-  allowPrivilegeEscalation: false
+  privileged: false
+  hostPID: false
+  hostIPC: false
+  hostNetwork: false
+  volumes:
+    - configMap
+    - downwardAPI
+    - emptyDir
+    - secret
+    - projected
   fsGroup:
-    ranges:
-    - max: 65535
-      min: 1
     rule: MustRunAs
-  requiredDropCapabilities:
-  - ALL
+    ranges:
+      - min: 1
+        max: 65535
+  readOnlyRootFilesystem: true
   runAsUser:
     rule: MustRunAsNonRoot
+  runAsGroup:
+    rule: MustRunAs
+    ranges:
+      - min: 1
+        max: 65535
+  supplementalGroups:
+    rule: MustRunAs
+    ranges:
+      - min: 1
+        max: 65535
+  allowPrivilegeEscalation: false
+  requiredDropCapabilities:
+    - ALL
   seLinux:
     rule: RunAsAny
-  supplementalGroups:
-    ranges:
-    - max: 65535
-      min: 1
-    rule: MustRunAs
-  volumes:
-  - configMap
-  - emptyDir
-  - projected
-  - secret
-  - downwardAPI
 {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index a63690b6a..cb50b9d07 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -31,9 +31,13 @@ controller:
     digest: sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
     digestChroot: sha256:5976b1067cfbca8a21d0ba53d71f83543a73316a61ea7f7e436d6cf84ddf9b26
     pullPolicy: IfNotPresent
+    runAsNonRoot: true
     # www-data -> uid 101
     runAsUser: 101
-    allowPrivilegeEscalation: true
+    allowPrivilegeEscalation: false
+    seccompProfile:
+      type: RuntimeDefault
+    readOnlyRootFilesystem: false
   # -- Use an existing PSP instead of creating one
   existingPsp: ""
   # -- Configures the controller container name
@@ -127,12 +131,15 @@ controller:
   podLabels: {}
   #  key: value
 
-  # -- Security Context policies for controller pods
+  # -- Security context for controller pods
   podSecurityContext: {}
-  # -- See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for notes on enabling and using sysctls
+  # -- sysctls for controller pods
+  ## Ref: https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/
   sysctls: {}
   # sysctls:
   #   "net.core.somaxconn": "8192"
+  # -- Security context for controller containers
+  containerSecurityContext: {}
 
   # -- Allows customization of the source of the IP address or FQDN to report
   # in the ingress status field. By default, it reads the information provided
@@ -581,8 +588,18 @@ controller:
   extraModules: []
   # - name: mytestmodule
   #   image: registry.k8s.io/ingress-nginx/mytestmodule
+  #   distroless: false
   #   containerSecurityContext:
+  #     runAsNonRoot: true
+  #     runAsUser: <user-id>
   #     allowPrivilegeEscalation: false
+  #     seccompProfile:
+  #       type: RuntimeDefault
+  #     capabilities:
+  #       drop:
+  #       - ALL
+  #     readOnlyRootFilesystem: true
+  #   resources: {}
   #
   # The image must contain a `/usr/local/bin/init_module.sh` executable, which
   # will be executed as initContainers, to move its config files within the
@@ -590,9 +607,20 @@ controller:
 
   opentelemetry:
     enabled: false
+    name: opentelemetry
     image: registry.k8s.io/ingress-nginx/opentelemetry:v20230721-3e2062ee5@sha256:13bee3f5223883d3ca62fee7309ad02d22ec00ff0d7033e3e9aca7a9f60fd472
+    distroless: true
     containerSecurityContext:
+      runAsNonRoot: true
+      # -- The image's default user, inherited from its base image `cgr.dev/chainguard/static`.
+      runAsUser: 65532
       allowPrivilegeEscalation: false
+      seccompProfile:
+        type: RuntimeDefault
+      capabilities:
+        drop:
+        - ALL
+      readOnlyRootFilesystem: true
     resources: {}
   admissionWebhooks:
     name: admission
@@ -633,8 +661,17 @@ controller:
       type: ClusterIP
     createSecretJob:
       name: create
+      # -- Security context for secret creation containers
       securityContext:
+        runAsNonRoot: true
+        runAsUser: 65532
         allowPrivilegeEscalation: false
+        seccompProfile:
+          type: RuntimeDefault
+        capabilities:
+          drop:
+          - ALL
+        readOnlyRootFilesystem: true
       resources: {}
       # limits:
       #   cpu: 10m
@@ -644,8 +681,17 @@ controller:
       #   memory: 20Mi
     patchWebhookJob:
       name: patch
+      # -- Security context for webhook patch containers
       securityContext:
+        runAsNonRoot: true
+        runAsUser: 65532
         allowPrivilegeEscalation: false
+        seccompProfile:
+          type: RuntimeDefault
+        capabilities:
+          drop:
+          - ALL
+        readOnlyRootFilesystem: true
       resources: {}
     patch:
       enabled: true
@@ -667,10 +713,8 @@ controller:
       tolerations: []
       # -- Labels to be added to patch job resources
       labels: {}
-      securityContext:
-        runAsNonRoot: true
-        runAsUser: 2000
-        fsGroup: 2000
+      # -- Security context for secret creation & webhook patch pods
+      securityContext: {}
     # Use certmanager to generate webhook certs
     certManager:
       enabled: false
@@ -796,11 +840,13 @@ defaultBackend:
     ## repository:
     tag: "1.5"
     pullPolicy: IfNotPresent
+    runAsNonRoot: true
     # nobody user -> uid 65534
     runAsUser: 65534
-    runAsNonRoot: true
-    readOnlyRootFilesystem: true
     allowPrivilegeEscalation: false
+    seccompProfile:
+      type: RuntimeDefault
+    readOnlyRootFilesystem: true
   # -- Use an existing PSP instead of creating one
   existingPsp: ""
   extraArgs: {}
@@ -846,15 +892,9 @@ defaultBackend:
   #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
 
   affinity: {}
-  # -- Security Context policies for controller pods
-  # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
-  # notes on enabling and using sysctls
-  ##
+  # -- Security context for default backend pods
   podSecurityContext: {}
-  # -- Security Context policies for controller main container.
-  # See https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ for
-  # notes on enabling and using sysctls
-  ##
+  # -- Security context for default backend containers
   containerSecurityContext: {}
   # -- Labels to add to the pod container metadata
   podLabels: {}

From da51393cac818545de796d3c3486c40127aa51f4 Mon Sep 17 00:00:00 2001
From: Ardika Bagus S <ardikabs@gmail.com>
Date: Wed, 8 Nov 2023 01:02:48 +0700
Subject: [PATCH 1017/1641] fix(cors): ensure trailing comma treated as empty
 value to be ignored (#10616)

* fix(cors): ensure trailing comma treated as empty value to be ignored

Signed-off-by: Ardika Bagus <me@ardikabs.com>

* test(cors): add e2e test

Signed-off-by: Ardika Bagus <me@ardikabs.com>

---------

Signed-off-by: Ardika Bagus <me@ardikabs.com>
---
 go.work.sum                                   |  9 +++++
 internal/ingress/annotations/cors/main.go     |  4 ++
 .../ingress/annotations/cors/main_test.go     | 31 ++++++++++++++++
 test/e2e/annotations/cors.go                  | 37 +++++++++++++++++++
 4 files changed, 81 insertions(+)

diff --git a/go.work.sum b/go.work.sum
index e8b110fe7..91bbfc14a 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -28,6 +28,7 @@ cloud.google.com/go/cloudtasks v1.11.1/go.mod h1:a9udmnou9KO2iulGscKR0qBYjreuX8o
 cloud.google.com/go/compute v1.19.3/go.mod h1:qxvISKp/gYnXkSAD1ppcSOveRAmzxicEv/JlizULFrI=
 cloud.google.com/go/compute v1.20.1/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
 cloud.google.com/go/compute v1.21.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
+cloud.google.com/go/compute v1.23.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
 cloud.google.com/go/compute/metadata v0.2.3/go.mod h1:VAV5nSsACxMJvgaAuX6Pk2AawlZn8kiOGuCv6gTkwuA=
 cloud.google.com/go/contactcenterinsights v1.9.1/go.mod h1:bsg/R7zGLYMVxFFzfh9ooLTruLRCG9fnzhH9KznHhbM=
 cloud.google.com/go/container v1.22.1/go.mod h1:lTNExE2R7f+DLbAN+rJiKTisauFCaoDq6NURZ83eVH4=
@@ -122,6 +123,8 @@ cloud.google.com/go/vpcaccess v1.7.1/go.mod h1:FogoD46/ZU+JUBX9D606X21EnxiszYi2t
 cloud.google.com/go/webrisk v1.9.1/go.mod h1:4GCmXKcOa2BZcZPn6DCEvE7HypmEJcJkr4mtM+sqYPc=
 cloud.google.com/go/websecurityscanner v1.6.1/go.mod h1:Njgaw3rttgRHXzwCB8kgCYqv5/rGpFCsBOvPbYgszpg=
 cloud.google.com/go/workflows v1.11.1/go.mod h1:Z+t10G1wF7h8LgdY/EmRcQY8ptBD/nvofaL6FqlET6g=
+github.com/alecthomas/kingpin/v2 v2.3.2/go.mod h1:0gyi0zQnjuFk8xrkNKamJoyUo382HRL7ATRpFZCw6tE=
+github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137/go.mod h1:OMCwj8VM1Kc9e19TLln2VL61YJF0x1XFtfdL4JdbSyE=
 github.com/andybalholm/brotli v1.0.4/go.mod h1:fO7iG3H7G2nSZ7m0zPUDn85XEX2GTukHGRSepvi9Eig=
 github.com/antlr/antlr4/runtime/Go/antlr v1.4.10/go.mod h1:F7bn7fEU90QkQ3tnmaTx3LTKLEDqnwWODIYppRQ5hnY=
 github.com/apache/thrift v0.16.0/go.mod h1:PHK3hniurgQaNMZYaCLEqXKsYK8upmhPbmdP2FXSqgU=
@@ -154,6 +157,7 @@ github.com/envoyproxy/go-control-plane v0.9.10-0.20210907150352-cf90f659a021/go.
 github.com/envoyproxy/go-control-plane v0.11.1/go.mod h1:uhMcXKCQMEJHiAb0w+YGefQLaTEw+YhGluxZkrTmD0g=
 github.com/envoyproxy/protoc-gen-validate v1.0.2/go.mod h1:GpiZQP3dDbg4JouG/NNS7QWXpgx6x8QiMKdmN72jogE=
 github.com/felixge/httpsnoop v1.0.3/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
+github.com/go-kit/log v0.2.1/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0=
 github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
 github.com/go-logr/logr v1.2.3/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE=
@@ -163,6 +167,7 @@ github.com/gobwas/ws v1.2.1/go.mod h1:hRKAFb8wOxFROYNsT1bqfWnhX+b5MFeJM9r2ZSwg/K
 github.com/goccy/go-json v0.9.11/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
 github.com/golang-jwt/jwt/v4 v4.4.2/go.mod h1:m21LjoU+eqJr34lmDMbreY2eSTRJ1cv77w39/MY0Ch0=
 github.com/golang/glog v1.1.0/go.mod h1:pfYeQZ3JWZoXTV5sFc986z3HTpwQs9At6P4ImfuP3NQ=
+github.com/golang/glog v1.1.2/go.mod h1:zR+okUeTbrL6EL3xHUDxZuEtGv04p5shwip1+mL/rLQ=
 github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/google/cel-go v0.12.6/go.mod h1:Jk7ljRzLBhkmiAwBoUxB1sZSCVBAzkqPF25olK/iRDw=
@@ -209,6 +214,7 @@ github.com/tmc/grpc-websocket-proxy v0.0.0-20220101234140-673ab2c3ae75/go.mod h1
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
 github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
 github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
+github.com/xhit/go-str2duration/v2 v2.1.0/go.mod h1:ohY8p+0f07DiV6Em5LKB0s2YpLtXVyJfNt1+BlmyAsU=
 github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
 github.com/zeebo/xxh3 v1.0.2/go.mod h1:5NWz9Sef7zIDm2JHfFlcQvNekmcEl9ekUZQQKCYaDcA=
 go.etcd.io/etcd/api/v3 v3.5.7/go.mod h1:9qew1gCdDDLu+VwmeG+iFpL+QlpHTo7iubavdVDgCAA=
@@ -292,9 +298,11 @@ google.golang.org/genproto v0.0.0-20230706204954-ccb25ca9f130/go.mod h1:O9kGHb51
 google.golang.org/genproto v0.0.0-20230711160842-782d3b101e98 h1:Z0hjGZePRE0ZBWotvtrwxFNrNE9CUAGtplaDK5NNI/g=
 google.golang.org/genproto v0.0.0-20230711160842-782d3b101e98/go.mod h1:S7mY02OqCJTD0E1OiQy1F72PWFB4bZJ87cAtLPYgDR0=
 google.golang.org/genproto v0.0.0-20230822172742-b8732ec3820d h1:VBu5YqKPv6XiJ199exd8Br+Aetz+o08F+PLMnwJQHAY=
+google.golang.org/genproto v0.0.0-20230822172742-b8732ec3820d/go.mod h1:yZTlhN0tQnXo3h00fuXNCxJdLdIdnVFVBaRJ5LWBbw4=
 google.golang.org/genproto/googleapis/api v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
 google.golang.org/genproto/googleapis/api v0.0.0-20230706204954-ccb25ca9f130/go.mod h1:mPBs5jNgx2GuQGvFwUvVKqtn6HsUw9nP64BedgvqEsQ=
 google.golang.org/genproto/googleapis/api v0.0.0-20230711160842-782d3b101e98/go.mod h1:rsr7RhLuwsDKL7RmgDDCUc6yaGr1iqceVb5Wv6f6YvQ=
+google.golang.org/genproto/googleapis/api v0.0.0-20230822172742-b8732ec3820d/go.mod h1:KjSP20unUpOx5kyQUFa7k4OJg0qeJ7DEZflGDu2p6Bk=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20230706204954-ccb25ca9f130/go.mod h1:8mL13HKkDa+IuJ8yruA3ci0q+0vsUz4m//+ottjwS5o=
 google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
@@ -310,6 +318,7 @@ gopkg.in/square/go-jose.v2 v2.6.0/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76
 k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/klog/v2 v2.90.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/kms v0.27.6/go.mod h1:9YQuCFa+n88RWokHkl+4RHFQ9DATSip/ihBqxlDUBuw=
 k8s.io/kube-openapi v0.0.0-20230717233707-2695361300d9 h1:LyMgNKD2P8Wn1iAwQU5OhxCKlKJy0sHc+PcDwFB24dQ=
 k8s.io/kube-openapi v0.0.0-20230717233707-2695361300d9/go.mod h1:wZK2AVp1uHCp4VamDVgBP2COHZjqD1T68Rf0CM3YjSM=
 k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
diff --git a/internal/ingress/annotations/cors/main.go b/internal/ingress/annotations/cors/main.go
index 39e02f21b..d6e92b34d 100644
--- a/internal/ingress/annotations/cors/main.go
+++ b/internal/ingress/annotations/cors/main.go
@@ -201,6 +201,10 @@ func (c cors) Parse(ing *networking.Ingress) (interface{}, error) {
 		origins := strings.Split(unparsedOrigins, ",")
 		for _, origin := range origins {
 			origin = strings.TrimSpace(origin)
+			if origin == "" {
+				continue
+			}
+
 			if origin == "*" {
 				config.CorsAllowOrigin = []string{"*"}
 				break
diff --git a/internal/ingress/annotations/cors/main_test.go b/internal/ingress/annotations/cors/main_test.go
index d371d183b..a69390a17 100644
--- a/internal/ingress/annotations/cors/main_test.go
+++ b/internal/ingress/annotations/cors/main_test.go
@@ -17,6 +17,7 @@ limitations under the License.
 package cors
 
 import (
+	"reflect"
 	"testing"
 
 	api "k8s.io/api/core/v1"
@@ -172,3 +173,33 @@ func TestIngressCorsConfigInvalid(t *testing.T) {
 		t.Errorf("expected %v but returned %v", defaultCorsMaxAge, nginxCors.CorsMaxAge)
 	}
 }
+
+func TestIngresCorsConfigAllowOriginWithTrailingComma(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix(corsEnableAnnotation)] = "true"
+
+	// Include a trailing comma and an empty value between the commas.
+	data[parser.GetAnnotationWithPrefix(corsAllowOriginAnnotation)] = "https://origin123.test.com:4443,    ,https://origin321.test.com:4443,"
+	ing.SetAnnotations(data)
+
+	corst, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("error parsing annotations: %v", err)
+	}
+
+	nginxCors, ok := corst.(*Config)
+	if !ok {
+		t.Errorf("expected a Config type but returned %t", corst)
+	}
+
+	if !nginxCors.CorsEnabled {
+		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix(corsEnableAnnotation)], nginxCors.CorsEnabled)
+	}
+
+	expectedCorsAllowOrigins := []string{"https://origin123.test.com:4443", "https://origin321.test.com:4443"}
+	if !reflect.DeepEqual(nginxCors.CorsAllowOrigin, expectedCorsAllowOrigins) {
+		t.Errorf("expected %v but returned %v", expectedCorsAllowOrigins, nginxCors.CorsAllowOrigin)
+	}
+}
diff --git a/test/e2e/annotations/cors.go b/test/e2e/annotations/cors.go
index dd28f5dd4..a14a5761f 100644
--- a/test/e2e/annotations/cors.go
+++ b/test/e2e/annotations/cors.go
@@ -632,4 +632,41 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 			Status(http.StatusOK).Headers().
 			ValueEqual("Access-Control-Allow-Origin", []string{"*"})
 	})
+
+	ginkgo.It("should allow correct origin but not others - cors allow origin annotations contain trailing comma", func() {
+		host := corsHost
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/enable-cors":       "true",
+			"nginx.ingress.kubernetes.io/cors-allow-origin": "https://origin-123.cors.com:8080,   ,https://origin-321.cors.com:8080,",
+		}
+
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		origin1 := "https://origin-123.cors.com:8080"
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			WithHeader("Origin", origin1).
+			Expect().
+			Headers().ContainsKey("Access-Control-Allow-Origin")
+
+		origin2 := "https://origin-321.cors.com:8080"
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			WithHeader("Origin", origin2).
+			Expect().
+			Status(http.StatusOK).Headers().
+			ValueEqual("Access-Control-Allow-Origin", []string{origin2})
+
+		origin3 := "https://unknown.cors.com:8080"
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			WithHeader("Origin", origin3).
+			Expect().
+			Headers().
+			NotContainsKey("Access-Control-Allow-Origin")
+	})
 })

From 211e8d8eb897dab2578d709ec1a90946104f17d3 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 13 Nov 2023 13:37:18 +0100
Subject: [PATCH 1018/1641] Bump actions/dependency-review-action from 3.1.1 to
 3.1.2 (#10641)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/9f45b2463b475767b61721ccfef113fef513e6aa...fde92acd0840415674c16b39c7d703fc28bc511e)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 73983232f..86aa9bd43 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@9f45b2463b475767b61721ccfef113fef513e6aa # v3.1.1
+        uses: actions/dependency-review-action@fde92acd0840415674c16b39c7d703fc28bc511e # v3.1.2

From 4ccdf662d9ec1405c6c3f44c082ea61b7be4d724 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 13 Nov 2023 13:40:31 +0100
Subject: [PATCH 1019/1641] Bump aquasecurity/trivy-action from 0.13.1 to
 0.14.0 (#10642)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.13.1 to 0.14.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/f78e9ecf42a1271402d4f484518b9313235990e1...2b6a709cf9c4025c5438138008beaddbb02086f0)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index e1d38bcbb..226586030 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@f78e9ecf42a1271402d4f484518b9313235990e1 # v0.13.1
+        uses: aquasecurity/trivy-action@2b6a709cf9c4025c5438138008beaddbb02086f0 # v0.14.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'

From 6f97533683fbfe4debcbb26c508304ce3324eeec Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 13 Nov 2023 13:43:22 +0100
Subject: [PATCH 1020/1641] Bump github.com/armon/go-proxyproto (#10643)

Bumps [github.com/armon/go-proxyproto](https://github.com/armon/go-proxyproto) from 0.0.0-20210323213023-7e956b284f0a to 0.1.0.
- [Commits](https://github.com/armon/go-proxyproto/commits/v0.1.0)

---
updated-dependencies:
- dependency-name: github.com/armon/go-proxyproto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 196143705..b3274258b 100644
--- a/go.mod
+++ b/go.mod
@@ -4,7 +4,7 @@ go 1.21.3
 
 require (
 	dario.cat/mergo v1.0.0
-	github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a
+	github.com/armon/go-proxyproto v0.1.0
 	github.com/eapache/channels v1.1.0
 	github.com/fsnotify/fsnotify v1.7.0
 	github.com/json-iterator/go v1.1.12
diff --git a/go.sum b/go.sum
index 1aabcdda0..4a22ff81b 100644
--- a/go.sum
+++ b/go.sum
@@ -42,8 +42,8 @@ github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuy
 github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190717042225-c3de453c63f4/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d/go.mod h1:rBZYJk541a8SKzHPHnH3zbiI+7dagKZ0cgpgrD7Fyho=
-github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a h1:AP/vsCIvJZ129pdm9Ek7bH7yutN3hByqsMoNrWAxRQc=
-github.com/armon/go-proxyproto v0.0.0-20210323213023-7e956b284f0a/go.mod h1:QmP9hvJ91BbJmGVGSbutW19IC0Q9phDCLGaomwTJbgU=
+github.com/armon/go-proxyproto v0.1.0 h1:TWWcSsjco7o2itn6r25/5AqKBiWmsiuzsUDLT/MTl7k=
+github.com/armon/go-proxyproto v0.1.0/go.mod h1:Xj90dce2VKbHzRAeiVQAMBtj4M5oidoXJ8lmgyW21mw=
 github.com/beorn7/perks v0.0.0-20180321164747-3a771d992973/go.mod h1:Dwedo/Wpr24TaqPxmxbtue+5NUziq4I4S80YR8gNf3Q=
 github.com/beorn7/perks v1.0.0/go.mod h1:KWe93zE9D1o94FZ5RNwFwVgaQK1VOXiVxmqh+CedLV8=
 github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM=

From dd01a6d05abc20e8ce7d8e791682280d2414c855 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 13 Nov 2023 13:46:04 +0100
Subject: [PATCH 1021/1641] Bump golang.org/x/crypto from 0.14.0 to 0.15.0
 (#10644)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.15.0.
- [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.15.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index b3274258b..c7fc255f2 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.4
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.14.0
+	golang.org/x/crypto v0.15.0
 	google.golang.org/grpc v1.59.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -104,9 +104,9 @@ require (
 	golang.org/x/mod v0.13.0 // indirect
 	golang.org/x/net v0.17.0 // indirect
 	golang.org/x/oauth2 v0.12.0 // indirect
-	golang.org/x/sys v0.13.0 // indirect
-	golang.org/x/term v0.13.0 // indirect
-	golang.org/x/text v0.13.0 // indirect
+	golang.org/x/sys v0.14.0 // indirect
+	golang.org/x/term v0.14.0 // indirect
+	golang.org/x/text v0.14.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.14.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
diff --git a/go.sum b/go.sum
index 4a22ff81b..1ef03af63 100644
--- a/go.sum
+++ b/go.sum
@@ -399,8 +399,8 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.14.0 h1:wBqGXzWJW6m1XrIKlAH0Hs1JJ7+9KBwnIO8v66Q9cHc=
-golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4=
+golang.org/x/crypto v0.15.0 h1:frVn1TEaCEaZcn3Tmd7Y2b5KKPaZ+I32Q2OA3kYp5TA=
+golang.org/x/crypto v0.15.0/go.mod h1:4ChreQoLWfG3xLDer1WdlH5NdlQ3+mwnQq1YTKY+72g=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -532,19 +532,19 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.13.0 h1:Af8nKPmuFypiUBjVoU9V20FiaFXOcuZI21p0ycVYYGE=
-golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.14.0 h1:Vz7Qs629MkJkGyHxUlRHizWJRG2j8fbQKjELVSNhy7Q=
+golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.13.0 h1:bb+I9cTfFazGW51MZqBVmZy7+JEJMouUHTUSKVQLBek=
-golang.org/x/term v0.13.0/go.mod h1:LTmsnFJwVN6bCy1rVCoS+qHT1HhALEFxKncY3WNNh4U=
+golang.org/x/term v0.14.0 h1:LGK9IlZ8T9jvdy6cTdfKUCltatMFOehAQo9SRC46UQ8=
+golang.org/x/term v0.14.0/go.mod h1:TySc+nGkYR6qt8km8wUhuFRTVSMIX3XPR58y2lC8vww=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.13.0 h1:ablQoSUd0tRdKxZewP80B+BaqeKJuVhuRxj/dkrun3k=
-golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
+golang.org/x/text v0.14.0 h1:ScX5w1eTa3QqT8oi6+ziP7dTV1S2+ALU0bI+0zXKWiQ=
+golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=

From 6c92b04edc7798dd97cd36826df4400a51047820 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 13 Nov 2023 14:58:04 +0100
Subject: [PATCH 1022/1641] Bump github.com/onsi/ginkgo/v2 from 2.13.0 to
 2.13.1 (#10645)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.13.0 to 2.13.1.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.13.0...v2.13.1)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 16 ++++++++--------
 2 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/go.mod b/go.mod
index c7fc255f2..87e4d8873 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.13.0
+	github.com/onsi/ginkgo/v2 v2.13.1
 	github.com/opencontainers/runc v1.1.10
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.17.0
@@ -58,7 +58,7 @@ require (
 	github.com/evanphx/json-patch/v5 v5.6.0 // indirect
 	github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa // indirect
 	github.com/go-errors/errors v1.4.2 // indirect
-	github.com/go-logr/logr v1.2.4 // indirect
+	github.com/go-logr/logr v1.3.0 // indirect
 	github.com/go-openapi/jsonpointer v0.19.6 // indirect
 	github.com/go-openapi/jsonreference v0.20.1 // indirect
 	github.com/go-openapi/swag v0.22.3 // indirect
@@ -70,7 +70,7 @@ require (
 	github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7 // indirect
 	github.com/google/btree v1.0.1 // indirect
 	github.com/google/gnostic v0.5.7-v3refs // indirect
-	github.com/google/go-cmp v0.5.9 // indirect
+	github.com/google/go-cmp v0.6.0 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
 	github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
diff --git a/go.sum b/go.sum
index 1ef03af63..a325a9c26 100644
--- a/go.sum
+++ b/go.sum
@@ -103,8 +103,8 @@ github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V
 github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A=
 github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
 github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
-github.com/go-logr/logr v1.2.4 h1:g01GSCwiDw2xSZfjJ2/T9M+S6pFdcNtFYsp+Y43HYDQ=
-github.com/go-logr/logr v1.2.4/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
+github.com/go-logr/logr v1.3.0 h1:2y3SDp0ZXuc6/cjLSZ+Q3ir+QB9T/iG5yYRXqsagWSY=
+github.com/go-logr/logr v1.3.0/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
 github.com/go-logr/zapr v1.2.3 h1:a9vnzlIBPQBBkeaR9IuMUfmVOrQlkoC4YfPoFkX3T7A=
 github.com/go-logr/zapr v1.2.3/go.mod h1:eIauM6P8qSvTw5o2ez6UEAfGjQKrxQTl5EoK+Qa2oG4=
 github.com/go-openapi/jsonpointer v0.19.6 h1:eCs3fxoIi3Wh6vtgmLTOjdhSpiqphQ+DaPn38N2ZdrE=
@@ -172,8 +172,8 @@ github.com/google/go-cmp v0.5.1/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/
 github.com/google/go-cmp v0.5.4/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.6/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.9 h1:O2Tfq5qg4qc4AmwVlvv0oLiVAGB7enBSJ2x2DqQFi38=
-github.com/google/go-cmp v0.5.9/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
+github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
+github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.1.0 h1:Hsa8mG0dQ46ij8Sl2AYJDUv1oA9/d6Vk+3LG99Oe02g=
 github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
@@ -283,12 +283,12 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.13.0 h1:0jY9lJquiL8fcf3M4LAXN5aMlS/b2BV86HFFPCPMgE4=
-github.com/onsi/ginkgo/v2 v2.13.0/go.mod h1:TE309ZR8s5FsKKpuB1YAQYBzCaAfUgatB/xlT/ETL/o=
+github.com/onsi/ginkgo/v2 v2.13.1 h1:LNGfMbR2OVGBfXjvRZIZ2YCTQdGKtPLvuI1rMCCj3OU=
+github.com/onsi/ginkgo/v2 v2.13.1/go.mod h1:XStQ8QcGwLyF4HdfcZB8SFOS/MWCgDuXMSBe6zrvLgM=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.27.10 h1:naR28SdDFlqrG6kScpT8VWpu1xWY5nJRCF3XaYyBjhI=
-github.com/onsi/gomega v1.27.10/go.mod h1:RsS8tutOdbdgzbPtzzATp12yT7kM5I5aElG3evPbQ0M=
+github.com/onsi/gomega v1.29.0 h1:KIA/t2t5UBzoirT4H9tsML45GEbo3ouUnBHsCfD2tVg=
+github.com/onsi/gomega v1.29.0/go.mod h1:9sxs+SwGrKI0+PWe4Fxa9tFQQBG5xSsSbMXOI8PPpoQ=
 github.com/opencontainers/runc v1.1.10 h1:EaL5WeO9lv9wmS6SASjszOeQdSctvpbu0DdBQBizE40=
 github.com/opencontainers/runc v1.1.10/go.mod h1:+/R6+KmDlh+hOO8NkjmgkG9Qzvypzk0yXxAPYYR65+M=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=

From e0446d7554a96f7dff95f111cfd8145318870c9c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Filip=20Havl=C3=AD=C4=8Dek?= <filip.havlicek@livesport.eu>
Date: Wed, 15 Nov 2023 17:40:00 +0100
Subject: [PATCH 1023/1641] annotation validation - extended
 URLWithNginxVariableRegex from alphaNumericChars to extendedAlphaNumeric
 (#10652)

---
 internal/ingress/annotations/authreq/main_test.go | 14 +++++++-------
 internal/ingress/annotations/parser/validators.go |  2 +-
 2 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/internal/ingress/annotations/authreq/main_test.go b/internal/ingress/annotations/authreq/main_test.go
index 3e6df3d3b..c261795c6 100644
--- a/internal/ingress/annotations/authreq/main_test.go
+++ b/internal/ingress/annotations/authreq/main_test.go
@@ -99,13 +99,13 @@ func TestAnnotations(t *testing.T) {
 		{"no scheme", "bar", "bar", "", "", "", "", "", false, true},
 		{"invalid host", "http://", "http://", "", "", "", "", "", false, true},
 		{"invalid host (multiple dots)", "http://foo..bar.com", "http://foo..bar.com", "", "", "", "", "", false, true},
-		{"valid URL", "http://bar.foo.com/external-auth", "http://bar.foo.com/external-auth", "", "", "", "", "", false, false},
-		{"valid URL - send body", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "POST", "", "", "", false, false},
-		{"valid URL - send body", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "GET", "", "", "", false, false},
-		{"valid URL - request redirect", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "GET", "http://foo.com/redirect-me", "", "", false, false},
-		{"auth snippet", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "", "", "proxy_set_header My-Custom-Header 42;", "", false, false},
-		{"auth cache ", "http://foo.com/external-auth", "http://foo.com/external-auth", "", "", "", "", "$foo$bar", false, false},
-		{"redirect param", "http://bar.foo.com/external-auth", "http://bar.foo.com/external-auth", "origUrl", "", "", "", "", true, false},
+		{"valid URL", "http://bar.foo.com/external-auth/auth?allowed_groups=snow-group,rain-group", "http://bar.foo.com/external-auth/start?rd=https://$host$escaped_request_uri", "", "", "", "", "", false, false},
+		{"valid URL - send body", "http://foo.com/external-auth/auth?allowed_groups=snow-group,rain-group", "http://foo.com/external-auth/start?rd=https://$host$escaped_request_uri", "", "POST", "", "", "", false, false},
+		{"valid URL - send body", "http://foo.com/external-auth/auth?allowed_groups=snow-group,rain-group", "http://foo.com/external-auth/start?rd=https://$host$escaped_request_uri", "", "GET", "", "", "", false, false},
+		{"valid URL - request redirect", "http://foo.com/external-auth/auth?allowed_groups=snow-group,rain-group", "http://foo.com/external-auth/start?rd=https://$host$escaped_request_uri", "", "GET", "http://foo.com/redirect-me", "", "", false, false},
+		{"auth snippet", "http://foo.com/external-auth/auth?allowed_groups=snow-group,rain-group", "http://foo.com/external-auth/start?rd=https://$host$escaped_request_uri", "", "", "", "proxy_set_header My-Custom-Header 42;", "", false, false},
+		{"auth cache ", "http://foo.com/external-auth/auth?allowed_groups=snow-group,rain-group", "http://foo.com/external-auth/start?rd=https://$host$escaped_request_uri", "", "", "", "", "$foo$bar", false, false},
+		{"redirect param", "http://bar.foo.com/external-auth/auth?allowed_groups=snow-group,rain-group", "http://bar.foo.com/external-auth/start?rd=https://$host$escaped_request_uri", "origUrl", "", "", "", "", true, false},
 	}
 
 	for _, test := range tests {
diff --git a/internal/ingress/annotations/parser/validators.go b/internal/ingress/annotations/parser/validators.go
index 09f483006..f66f3c0bc 100644
--- a/internal/ingress/annotations/parser/validators.go
+++ b/internal/ingress/annotations/parser/validators.go
@@ -76,7 +76,7 @@ var (
 	HeadersVariable = regexp.MustCompile(`^[A-Za-z0-9-_, ]*$`)
 	// URLWithNginxVariableRegex defines a url that can contain nginx variables.
 	// It is a risky operation
-	URLWithNginxVariableRegex = regexp.MustCompile("^[" + alphaNumericChars + urlEnabledChars + "$]*$")
+	URLWithNginxVariableRegex = regexp.MustCompile("^[" + extendedAlphaNumeric + urlEnabledChars + "$]*$")
 )
 
 // ValidateArrayOfServerName validates if all fields on a Server name annotation are

From ad406b64d8b0fc92b703acad24170a4aeb119d84 Mon Sep 17 00:00:00 2001
From: chriss-de <54666227+chriss-de@users.noreply.github.com>
Date: Fri, 17 Nov 2023 05:43:54 +0100
Subject: [PATCH 1024/1641] Add override for proxy_intercept_errors when using
 Custom HTTP Errors (#9497)

* added proxy-intercept-errors config option

* fixed error when comparing locations

* fixed missing location config from annotation
added e2e test

* reversed logic for proxy-intercept-errors to disable-proxy-intercept-errors

* reversed logic to disable-proxy-intercept-errors

* reversed logic

* default has to be false

* put comment in same line as return

* run gofmt

* fixing wrong Boilerplate header

* updated code to new IngressAnnotation interface

* fixes to satisfy PR comments

* synced with upstream; fixed typo

* gofumpt disableproxyintercepterrors.go

* gofumpt
---
 .../nginx-configuration/annotations.md        |  12 ++
 .../nginx-configuration/configmap.md          |  11 +-
 internal/ingress/annotations/annotations.go   | 161 +++++++++---------
 .../disableproxyintercepterrors/main.go       |  76 +++++++++
 .../disableproxyintercepterrors/main_test.go  |  64 +++++++
 internal/ingress/controller/config/config.go  |  58 ++++---
 internal/ingress/controller/controller.go     |   1 +
 internal/ingress/defaults/main.go             |   7 +
 pkg/apis/ingress/types.go                     |   5 +
 pkg/apis/ingress/types_equals.go              |   4 +
 rootfs/etc/nginx/template/nginx.tmpl          |   4 +-
 .../disableproxyintercepterrors.go            | 100 +++++++++++
 12 files changed, 395 insertions(+), 108 deletions(-)
 create mode 100644 internal/ingress/annotations/disableproxyintercepterrors/main.go
 create mode 100644 internal/ingress/annotations/disableproxyintercepterrors/main_test.go
 create mode 100644 test/e2e/annotations/disableproxyintercepterrors.go

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 7cd34d344..eda51a435 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -50,6 +50,7 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/client-body-buffer-size](#client-body-buffer-size)|string|
 |[nginx.ingress.kubernetes.io/configuration-snippet](#configuration-snippet)|string|
 |[nginx.ingress.kubernetes.io/custom-http-errors](#custom-http-errors)|[]int|
+|[nginx.ingress.kubernetes.io/disable-proxy-intercept-errors](#disable-proxy-intercept-errors)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/default-backend](#default-backend)|string|
 |[nginx.ingress.kubernetes.io/enable-cors](#enable-cors)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/cors-allow-origin](#enable-cors)|string|
@@ -330,6 +331,17 @@ Example usage:
 nginx.ingress.kubernetes.io/custom-http-errors: "404,415"
 ```
 
+## Disable Proxy intercept Errors
+
+Like the [`disable-proxy-intercept-errors`](./configmap.md#disable-proxy-intercept-errors) value in the ConfigMap, this annotation allows to disable NGINX `proxy-intercept-errors` when `custom-http-errors` are set, but only for the NGINX location associated with this ingress. If a [default backend annotation](#default-backend) is specified on the ingress, the errors will be routed to that annotation's default backend service (instead of the global default backend).
+Different ingresses can specify different sets of errors codes and there are UseCases where NGINX shall not intercept all errors returned from upstream.
+If `disable-proxy-intercept-errors` is also specified globally, the annotation will override the global value for the given ingress' hostname and path.
+
+Example usage:
+```
+nginx.ingress.kubernetes.io/disable-proxy-intercept-errors: "false"
+```
+
 ### Default Backend
 
 This annotation is of the form `nginx.ingress.kubernetes.io/default-backend: <svc name>` to specify a custom default backend.  This `<svc name>` is a reference to a service inside of the same namespace in which you are applying this annotation. This annotation overrides the global default backend. In case the service has [multiple ports](https://kubernetes.io/docs/concepts/services-networking/service/#multi-port-services), the first one is the one which will receive the backend traffic. 
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 92ac39ee6..2e3dbf012 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -180,6 +180,7 @@ The following table shows a configuration option's name, type, and the default v
 |[stream-snippet](#stream-snippet)|string|""||
 |[location-snippet](#location-snippet)|string|""||
 |[custom-http-errors](#custom-http-errors)|[]int|[]int{}||
+|[disable-proxy-intercept-errors](#disable-proxy-intercept-errors)|bool|"false"|
 |[proxy-body-size](#proxy-body-size)|string|"1m"||
 |[proxy-connect-timeout](#proxy-connect-timeout)|int|5||
 |[proxy-read-timeout](#proxy-read-timeout)|int|60||
@@ -1128,10 +1129,18 @@ You can not use this to add new locations that proxy to the Kubernetes pods, as
 
 Enables which HTTP codes should be passed for processing with the [error_page directive](https://nginx.org/en/docs/http/ngx_http_core_module.html#error_page)
 
-Setting at least one code also enables [proxy_intercept_errors](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_intercept_errors) which are required to process error_page.
+Setting at least one code also enables [proxy_intercept_errors](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_intercept_errors) if not disabled with [disable-proxy-intercept-errors](#disable-proxy-intercept-errors).
 
 Example usage: `custom-http-errors: 404,415`
 
+## disable-proxy-intercept-errors
+
+Allows to disable [proxy-intercept-errors](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_intercept_errors).
+
+Disabling [proxy_intercept_errors](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_intercept_errors) allows to pass upstream errors to client even if [custom-http-errors](#custom-http-errors) are set.
+
+Example usage: `disable-proxy-intercept-errors: "true"`
+
 ## proxy-body-size
 
 Sets the maximum allowed size of the client request body.
diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index 44fabba4e..302f0b4b1 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -20,6 +20,7 @@ import (
 	"dario.cat/mergo"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/canary"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/disableproxyintercepterrors"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/modsecurity"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/opentelemetry"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/proxyssl"
@@ -75,46 +76,47 @@ const DeniedKeyName = "Denied"
 // Ingress defines the valid annotations present in one NGINX Ingress rule
 type Ingress struct {
 	metav1.ObjectMeta
-	BackendProtocol      string
-	Aliases              []string
-	BasicDigestAuth      auth.Config
-	Canary               canary.Config
-	CertificateAuth      authtls.Config
-	ClientBodyBufferSize string
-	ConfigurationSnippet string
-	Connection           connection.Config
-	CorsConfig           cors.Config
-	CustomHTTPErrors     []int
-	DefaultBackend       *apiv1.Service
-	FastCGI              fastcgi.Config
-	Denied               *string
-	ExternalAuth         authreq.Config
-	EnableGlobalAuth     bool
-	HTTP2PushPreload     bool
-	Opentelemetry        opentelemetry.Config
-	Proxy                proxy.Config
-	ProxySSL             proxyssl.Config
-	RateLimit            ratelimit.Config
-	GlobalRateLimit      globalratelimit.Config
-	Redirect             redirect.Config
-	Rewrite              rewrite.Config
-	Satisfy              string
-	ServerSnippet        string
-	ServiceUpstream      bool
-	SessionAffinity      sessionaffinity.Config
-	SSLPassthrough       bool
-	UsePortInRedirects   bool
-	UpstreamHashBy       upstreamhashby.Config
-	LoadBalancing        string
-	UpstreamVhost        string
-	Denylist             ipdenylist.SourceRange
-	XForwardedPrefix     string
-	SSLCipher            sslcipher.Config
-	Logs                 log.Config
-	ModSecurity          modsecurity.Config
-	Mirror               mirror.Config
-	StreamSnippet        string
-	Allowlist            ipallowlist.SourceRange
+	BackendProtocol             string
+	Aliases                     []string
+	BasicDigestAuth             auth.Config
+	Canary                      canary.Config
+	CertificateAuth             authtls.Config
+	ClientBodyBufferSize        string
+	ConfigurationSnippet        string
+	Connection                  connection.Config
+	CorsConfig                  cors.Config
+	CustomHTTPErrors            []int
+	DisableProxyInterceptErrors bool
+	DefaultBackend              *apiv1.Service
+	FastCGI                     fastcgi.Config
+	Denied                      *string
+	ExternalAuth                authreq.Config
+	EnableGlobalAuth            bool
+	HTTP2PushPreload            bool
+	Opentelemetry               opentelemetry.Config
+	Proxy                       proxy.Config
+	ProxySSL                    proxyssl.Config
+	RateLimit                   ratelimit.Config
+	GlobalRateLimit             globalratelimit.Config
+	Redirect                    redirect.Config
+	Rewrite                     rewrite.Config
+	Satisfy                     string
+	ServerSnippet               string
+	ServiceUpstream             bool
+	SessionAffinity             sessionaffinity.Config
+	SSLPassthrough              bool
+	UsePortInRedirects          bool
+	UpstreamHashBy              upstreamhashby.Config
+	LoadBalancing               string
+	UpstreamVhost               string
+	Denylist                    ipdenylist.SourceRange
+	XForwardedPrefix            string
+	SSLCipher                   sslcipher.Config
+	Logs                        log.Config
+	ModSecurity                 modsecurity.Config
+	Mirror                      mirror.Config
+	StreamSnippet               string
+	Allowlist                   ipallowlist.SourceRange
 }
 
 // Extractor defines the annotation parsers to be used in the extraction of annotations
@@ -126,45 +128,46 @@ type Extractor struct {
 func NewAnnotationExtractor(cfg resolver.Resolver) Extractor {
 	return Extractor{
 		map[string]parser.IngressAnnotation{
-			"Aliases":              alias.NewParser(cfg),
-			"BasicDigestAuth":      auth.NewParser(auth.AuthDirectory, cfg),
-			"Canary":               canary.NewParser(cfg),
-			"CertificateAuth":      authtls.NewParser(cfg),
-			"ClientBodyBufferSize": clientbodybuffersize.NewParser(cfg),
-			"ConfigurationSnippet": snippet.NewParser(cfg),
-			"Connection":           connection.NewParser(cfg),
-			"CorsConfig":           cors.NewParser(cfg),
-			"CustomHTTPErrors":     customhttperrors.NewParser(cfg),
-			"DefaultBackend":       defaultbackend.NewParser(cfg),
-			"FastCGI":              fastcgi.NewParser(cfg),
-			"ExternalAuth":         authreq.NewParser(cfg),
-			"EnableGlobalAuth":     authreqglobal.NewParser(cfg),
-			"HTTP2PushPreload":     http2pushpreload.NewParser(cfg),
-			"Opentelemetry":        opentelemetry.NewParser(cfg),
-			"Proxy":                proxy.NewParser(cfg),
-			"ProxySSL":             proxyssl.NewParser(cfg),
-			"RateLimit":            ratelimit.NewParser(cfg),
-			"GlobalRateLimit":      globalratelimit.NewParser(cfg),
-			"Redirect":             redirect.NewParser(cfg),
-			"Rewrite":              rewrite.NewParser(cfg),
-			"Satisfy":              satisfy.NewParser(cfg),
-			"ServerSnippet":        serversnippet.NewParser(cfg),
-			"ServiceUpstream":      serviceupstream.NewParser(cfg),
-			"SessionAffinity":      sessionaffinity.NewParser(cfg),
-			"SSLPassthrough":       sslpassthrough.NewParser(cfg),
-			"UsePortInRedirects":   portinredirect.NewParser(cfg),
-			"UpstreamHashBy":       upstreamhashby.NewParser(cfg),
-			"LoadBalancing":        loadbalancing.NewParser(cfg),
-			"UpstreamVhost":        upstreamvhost.NewParser(cfg),
-			"Allowlist":            ipallowlist.NewParser(cfg),
-			"Denylist":             ipdenylist.NewParser(cfg),
-			"XForwardedPrefix":     xforwardedprefix.NewParser(cfg),
-			"SSLCipher":            sslcipher.NewParser(cfg),
-			"Logs":                 log.NewParser(cfg),
-			"BackendProtocol":      backendprotocol.NewParser(cfg),
-			"ModSecurity":          modsecurity.NewParser(cfg),
-			"Mirror":               mirror.NewParser(cfg),
-			"StreamSnippet":        streamsnippet.NewParser(cfg),
+			"Aliases":                     alias.NewParser(cfg),
+			"BasicDigestAuth":             auth.NewParser(auth.AuthDirectory, cfg),
+			"Canary":                      canary.NewParser(cfg),
+			"CertificateAuth":             authtls.NewParser(cfg),
+			"ClientBodyBufferSize":        clientbodybuffersize.NewParser(cfg),
+			"ConfigurationSnippet":        snippet.NewParser(cfg),
+			"Connection":                  connection.NewParser(cfg),
+			"CorsConfig":                  cors.NewParser(cfg),
+			"CustomHTTPErrors":            customhttperrors.NewParser(cfg),
+			"DisableProxyInterceptErrors": disableproxyintercepterrors.NewParser(cfg),
+			"DefaultBackend":              defaultbackend.NewParser(cfg),
+			"FastCGI":                     fastcgi.NewParser(cfg),
+			"ExternalAuth":                authreq.NewParser(cfg),
+			"EnableGlobalAuth":            authreqglobal.NewParser(cfg),
+			"HTTP2PushPreload":            http2pushpreload.NewParser(cfg),
+			"Opentelemetry":               opentelemetry.NewParser(cfg),
+			"Proxy":                       proxy.NewParser(cfg),
+			"ProxySSL":                    proxyssl.NewParser(cfg),
+			"RateLimit":                   ratelimit.NewParser(cfg),
+			"GlobalRateLimit":             globalratelimit.NewParser(cfg),
+			"Redirect":                    redirect.NewParser(cfg),
+			"Rewrite":                     rewrite.NewParser(cfg),
+			"Satisfy":                     satisfy.NewParser(cfg),
+			"ServerSnippet":               serversnippet.NewParser(cfg),
+			"ServiceUpstream":             serviceupstream.NewParser(cfg),
+			"SessionAffinity":             sessionaffinity.NewParser(cfg),
+			"SSLPassthrough":              sslpassthrough.NewParser(cfg),
+			"UsePortInRedirects":          portinredirect.NewParser(cfg),
+			"UpstreamHashBy":              upstreamhashby.NewParser(cfg),
+			"LoadBalancing":               loadbalancing.NewParser(cfg),
+			"UpstreamVhost":               upstreamvhost.NewParser(cfg),
+			"Allowlist":                   ipallowlist.NewParser(cfg),
+			"Denylist":                    ipdenylist.NewParser(cfg),
+			"XForwardedPrefix":            xforwardedprefix.NewParser(cfg),
+			"SSLCipher":                   sslcipher.NewParser(cfg),
+			"Logs":                        log.NewParser(cfg),
+			"BackendProtocol":             backendprotocol.NewParser(cfg),
+			"ModSecurity":                 modsecurity.NewParser(cfg),
+			"Mirror":                      mirror.NewParser(cfg),
+			"StreamSnippet":               streamsnippet.NewParser(cfg),
 		},
 	}
 }
diff --git a/internal/ingress/annotations/disableproxyintercepterrors/main.go b/internal/ingress/annotations/disableproxyintercepterrors/main.go
new file mode 100644
index 000000000..650d29707
--- /dev/null
+++ b/internal/ingress/annotations/disableproxyintercepterrors/main.go
@@ -0,0 +1,76 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package disableproxyintercepterrors
+
+import (
+	networking "k8s.io/api/networking/v1"
+
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/errors"
+	"k8s.io/ingress-nginx/internal/ingress/resolver"
+)
+
+const (
+	disableProxyInterceptErrorsAnnotation = "disable-proxy-intercept-errors"
+)
+
+var disableProxyInterceptErrorsAnnotations = parser.Annotation{
+	Group: "backend",
+	Annotations: parser.AnnotationFields{
+		disableProxyInterceptErrorsAnnotation: {
+			Validator: parser.ValidateBool,
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskLow,
+			Documentation: `This annotation allows to disable NGINX proxy-intercept-errors when custom-http-errors are set.
+			If a default backend annotation is specified on the ingress, the errors will be routed to that annotation's default backend service (instead of the global default backend).
+			Different ingresses can specify different sets of errors codes and there are UseCases where NGINX shall not intercept all errors returned from upstream.`,
+		},
+	},
+}
+
+type disableProxyInterceptErrors struct {
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
+}
+
+func (pie disableProxyInterceptErrors) GetDocumentation() parser.AnnotationFields {
+	return pie.annotationConfig.Annotations
+}
+
+func (pie disableProxyInterceptErrors) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(pie.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, disableProxyInterceptErrorsAnnotations.Annotations)
+}
+
+// NewParser creates a new disableProxyInterceptErrors annotation parser
+func NewParser(r resolver.Resolver) parser.IngressAnnotation {
+	return disableProxyInterceptErrors{
+		r:                r,
+		annotationConfig: disableProxyInterceptErrorsAnnotations,
+	}
+}
+
+func (pie disableProxyInterceptErrors) Parse(ing *networking.Ingress) (interface{}, error) {
+	val, err := parser.GetBoolAnnotation(disableProxyInterceptErrorsAnnotation, ing, pie.annotationConfig.Annotations)
+
+	// A missing annotation is not a problem, just use the default
+	if err == errors.ErrMissingAnnotations {
+		return false, nil // default is false
+	}
+
+	return val, nil
+}
diff --git a/internal/ingress/annotations/disableproxyintercepterrors/main_test.go b/internal/ingress/annotations/disableproxyintercepterrors/main_test.go
new file mode 100644
index 000000000..1238bb4e0
--- /dev/null
+++ b/internal/ingress/annotations/disableproxyintercepterrors/main_test.go
@@ -0,0 +1,64 @@
+/*
+Copyright 2022 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package disableproxyintercepterrors
+
+import (
+	"testing"
+
+	api "k8s.io/api/core/v1"
+	networking "k8s.io/api/networking/v1"
+	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/resolver"
+)
+
+func buildIngress() *networking.Ingress {
+	return &networking.Ingress{
+		ObjectMeta: meta_v1.ObjectMeta{
+			Name:      "foo",
+			Namespace: api.NamespaceDefault,
+		},
+		Spec: networking.IngressSpec{
+			DefaultBackend: &networking.IngressBackend{
+				Service: &networking.IngressServiceBackend{
+					Name: "default-backend",
+					Port: networking.ServiceBackendPort{
+						Number: 80,
+					},
+				},
+			},
+		},
+	}
+}
+
+func TestParseAnnotations(t *testing.T) {
+	ing := buildIngress()
+
+	_, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix("disable-proxy-intercept-errors")] = "true"
+	ing.SetAnnotations(data)
+	// test ingress using the annotation without a TLS section
+	_, err = NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error parsing ingress with disable-proxy-intercept-errors")
+	}
+}
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 67878f185..bad82b8b0 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -540,6 +540,10 @@ type Configuration struct {
 	// http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_http_version
 	ProxyHTTPVersion string `json:"proxy-http-version"`
 
+	// Disables NGINX proxy-intercept-errors when error_page/custom-http-errors are set
+	// https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_intercept_errors
+	DisableProxyInterceptErrors bool `json:"disable-proxy-intercept-errors,omitempty"`
+
 	// Sets the ipv4 addresses on which the server will accept requests.
 	BindAddressIpv4 []string `json:"bind-address-ipv4,omitempty"`
 
@@ -842,37 +846,39 @@ func NewDefault() Configuration {
 		VariablesHashBucketSize:          256,
 		VariablesHashMaxSize:             2048,
 		UseHTTP2:                         true,
+		DisableProxyInterceptErrors:      false,
 		ProxyStreamTimeout:               "600s",
 		ProxyStreamNextUpstream:          true,
 		ProxyStreamNextUpstreamTimeout:   "600s",
 		ProxyStreamNextUpstreamTries:     3,
 		Backend: defaults.Backend{
-			ProxyBodySize:            bodySize,
-			ProxyConnectTimeout:      5,
-			ProxyReadTimeout:         60,
-			ProxySendTimeout:         60,
-			ProxyBuffersNumber:       4,
-			ProxyBufferSize:          "4k",
-			ProxyCookieDomain:        "off",
-			ProxyCookiePath:          "off",
-			ProxyNextUpstream:        "error timeout",
-			ProxyNextUpstreamTimeout: 0,
-			ProxyNextUpstreamTries:   3,
-			ProxyRequestBuffering:    "on",
-			ProxyRedirectFrom:        "off",
-			ProxyRedirectTo:          "off",
-			PreserveTrailingSlash:    false,
-			SSLRedirect:              true,
-			CustomHTTPErrors:         []int{},
-			DenylistSourceRange:      []string{},
-			WhitelistSourceRange:     []string{},
-			SkipAccessLogURLs:        []string{},
-			LimitRate:                0,
-			LimitRateAfter:           0,
-			ProxyBuffering:           "off",
-			ProxyHTTPVersion:         "1.1",
-			ProxyMaxTempFileSize:     "1024m",
-			ServiceUpstream:          false,
+			ProxyBodySize:               bodySize,
+			ProxyConnectTimeout:         5,
+			ProxyReadTimeout:            60,
+			ProxySendTimeout:            60,
+			ProxyBuffersNumber:          4,
+			ProxyBufferSize:             "4k",
+			ProxyCookieDomain:           "off",
+			ProxyCookiePath:             "off",
+			ProxyNextUpstream:           "error timeout",
+			ProxyNextUpstreamTimeout:    0,
+			ProxyNextUpstreamTries:      3,
+			ProxyRequestBuffering:       "on",
+			ProxyRedirectFrom:           "off",
+			ProxyRedirectTo:             "off",
+			PreserveTrailingSlash:       false,
+			SSLRedirect:                 true,
+			CustomHTTPErrors:            []int{},
+			DisableProxyInterceptErrors: false,
+			DenylistSourceRange:         []string{},
+			WhitelistSourceRange:        []string{},
+			SkipAccessLogURLs:           []string{},
+			LimitRate:                   0,
+			LimitRateAfter:              0,
+			ProxyBuffering:              "off",
+			ProxyHTTPVersion:            "1.1",
+			ProxyMaxTempFileSize:        "1024m",
+			ServiceUpstream:             false,
 		},
 		UpstreamKeepaliveConnections:           320,
 		UpstreamKeepaliveTime:                  "1h",
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 701a747fa..cb8d3712c 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -1526,6 +1526,7 @@ func locationApplyAnnotations(loc *ingress.Location, anns *annotations.Ingress)
 	loc.BackendProtocol = anns.BackendProtocol
 	loc.FastCGI = anns.FastCGI
 	loc.CustomHTTPErrors = anns.CustomHTTPErrors
+	loc.DisableProxyInterceptErrors = anns.DisableProxyInterceptErrors
 	loc.ModSecurity = anns.ModSecurity
 	loc.Satisfy = anns.Satisfy
 	loc.Mirror = anns.Mirror
diff --git a/internal/ingress/defaults/main.go b/internal/ingress/defaults/main.go
index 0526d443e..2bb58c858 100644
--- a/internal/ingress/defaults/main.go
+++ b/internal/ingress/defaults/main.go
@@ -34,6 +34,13 @@ type Backend struct {
 	// toggles whether or not to remove trailing slashes during TLS redirects
 	PreserveTrailingSlash bool `json:"preserve-trailing-slash"`
 
+	// allows usage of CustomHTTPErrors without intercepting service errors
+	// e.g. custom 404 and 503 when service-a does not exist or is not available
+	// but service-a can return 404 and 503 error codes without intercept
+	// http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_intercept_errors
+	// By default this is false
+	DisableProxyInterceptErrors bool `json:"disable-proxy-intercept-errors"`
+
 	// http://nginx.org/en/docs/http/ngx_http_core_module.html#client_max_body_size
 	// Sets the maximum allowed size of the client request body
 	ProxyBodySize string `json:"proxy-body-size"`
diff --git a/pkg/apis/ingress/types.go b/pkg/apis/ingress/types.go
index 6deba659e..2ad17ec3d 100644
--- a/pkg/apis/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -345,6 +345,11 @@ type Location struct {
 	// CustomHTTPErrors specifies the error codes that should be intercepted.
 	// +optional
 	CustomHTTPErrors []int `json:"custom-http-errors"`
+	// ProxyInterceptErrors disables error intecepting when using CustomHTTPErrors
+	// e.g. custom 404 and 503 when service-a does not exist or is not available
+	// but service-a can return 404 and 503 error codes without intercept
+	// +optional
+	DisableProxyInterceptErrors bool `json:"disable-proxy-intercept-errors"`
 	// ModSecurity allows to enable and configure modsecurity
 	// +optional
 	ModSecurity modsecurity.Config `json:"modsecurity"`
diff --git a/pkg/apis/ingress/types_equals.go b/pkg/apis/ingress/types_equals.go
index 2cde77e83..eeed9a06e 100644
--- a/pkg/apis/ingress/types_equals.go
+++ b/pkg/apis/ingress/types_equals.go
@@ -466,6 +466,10 @@ func (l1 *Location) Equal(l2 *Location) bool {
 		return false
 	}
 
+	if l1.DisableProxyInterceptErrors != l2.DisableProxyInterceptErrors {
+		return false
+	}
+
 	return true
 }
 
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 4454a4710..94dc12412 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -487,7 +487,7 @@ http {
     ssl_certificate     {{ $cfg.DefaultSSLCertificate.PemFileName }};
     ssl_certificate_key {{ $cfg.DefaultSSLCertificate.PemFileName }};
 
-    {{ if gt (len $cfg.CustomHTTPErrors) 0 }}
+    {{ if and $cfg.CustomHTTPErrors (not $cfg.DisableProxyInterceptErrors) }}
     proxy_intercept_errors on;
     {{ end }}
 
@@ -1473,7 +1473,7 @@ stream {
             {{ end }}
 
             {{/* if a location-specific error override is set, add the proxy_intercept here */}}
-            {{ if $location.CustomHTTPErrors }}
+            {{ if and $location.CustomHTTPErrors (not $location.DisableProxyInterceptErrors) }}
             # Custom error pages per ingress
             proxy_intercept_errors on;
             {{ end }}
diff --git a/test/e2e/annotations/disableproxyintercepterrors.go b/test/e2e/annotations/disableproxyintercepterrors.go
new file mode 100644
index 000000000..17efa4588
--- /dev/null
+++ b/test/e2e/annotations/disableproxyintercepterrors.go
@@ -0,0 +1,100 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package annotations
+
+import (
+	"fmt"
+	"net/http"
+	"strings"
+
+	networking "k8s.io/api/networking/v1"
+
+	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.DescribeAnnotation("disable-proxy-intercept-errors", func() {
+	f := framework.NewDefaultFramework("disable-proxy-intercept-errors")
+
+	ginkgo.BeforeEach(func() {
+		f.NewHttpbunDeployment()
+		f.NewEchoDeployment()
+	})
+
+	ginkgo.It("configures Nginx correctly", func() {
+		host := "pie.foo.com"
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/custom-http-errors":             "404",
+			"nginx.ingress.kubernetes.io/disable-proxy-intercept-errors": "true",
+			"nginx.ingress.kubernetes.io/default-backend":                framework.EchoService,
+		}
+
+		ingHTTPBunService := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, annotations)
+		f.EnsureIngress(ingHTTPBunService)
+
+		var serverConfig string
+		f.WaitForNginxServer(host, func(sc string) bool {
+			serverConfig = sc
+			return strings.Contains(serverConfig, fmt.Sprintf("server_name %s", host))
+		})
+
+		ginkgo.By("turning off proxy_intercept_errors directive")
+		assert.NotContains(ginkgo.GinkgoT(), serverConfig, "proxy_intercept_errors on;")
+
+		// the plan for client side testing
+		// create ingress where we disable intercept for code 404 - that error should get to the client
+		// the same ingress should intercept any other error (>300 and not 404) where we will get intercepted error
+		ginkgo.By("client test to check response - with intercept disabled")
+		requestID := "proxy_intercept_errors"
+
+		f.HTTPTestClient().
+			GET("/status/404").
+			WithHeader("Host", host).
+			WithHeader("x-request-id", requestID).
+			Expect().
+			Status(http.StatusNotFound).
+			Body().Empty()
+
+		ginkgo.By("client test to check response - with intercept enabled")
+		err := framework.UpdateIngress(f.KubeClientSet, f.Namespace, host, func(ingress *networking.Ingress) error {
+			ingress.ObjectMeta.Annotations["nginx.ingress.kubernetes.io/disable-proxy-intercept-errors"] = "false"
+			return nil
+		})
+		assert.Nil(ginkgo.GinkgoT(), err)
+
+		f.WaitForNginxServer(host, func(sc string) bool {
+			if serverConfig != sc {
+				serverConfig = sc
+				return true
+			}
+			return false
+		})
+
+		f.HTTPTestClient().
+			GET("/status/404").
+			WithHeader("Host", host).
+			WithHeader("x-request-id", requestID).
+			Expect().
+			Status(http.StatusOK).
+			Body().Contains("x-code=404").
+			Contains(fmt.Sprintf("x-ingress-name=%s", host)).
+			Contains(fmt.Sprintf("x-service-name=%s", framework.HTTPBunService)).
+			Contains(fmt.Sprintf("x-request-id=%s", requestID))
+	})
+})

From 0a054d1f586d030b5d7d2b4f585a0725962277f6 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Mon, 20 Nov 2023 05:14:57 +0800
Subject: [PATCH 1025/1641] chore(dep): change lua-resty-cookie's repo (#10630)

since cloudflare has archived the upstream repo,
we choose a more active forked repo to use.

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 images/nginx/rootfs/build.sh | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 06d60ae54..8bf372f21 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -92,8 +92,8 @@ export LUA_RESTY_CACHE=0.13
 # Check for recent changes: https://github.com/openresty/lua-resty-core/compare/v0.1.27...master
 export LUA_RESTY_CORE=0.1.27
 
-# Check for recent changes: https://github.com/cloudflare/lua-resty-cookie/compare/v0.1.0...master
-export LUA_RESTY_COOKIE_VERSION=303e32e512defced053a6484bc0745cf9dc0d39e
+# Check for recent changes: https://github.com/utix/lua-resty-cookie/compare/9533f47...master
+export LUA_RESTY_COOKIE_VERSION=9533f479371663107b515590fc9daf00d61ebf11
 
 # Check for recent changes: https://github.com/openresty/lua-resty-dns/compare/v0.22...master
 export LUA_RESTY_DNS=0.22
@@ -285,8 +285,8 @@ fi
 get_src a77b9de160d81712f2f442e1de8b78a5a7ef0d08f13430ff619f79235db974d4 \
         "https://github.com/openresty/lua-cjson/archive/$LUA_CJSON_VERSION.tar.gz"
 
-get_src 5ed48c36231e2622b001308622d46a0077525ac2f751e8cc0c9905914254baa4 \
-        "https://github.com/cloudflare/lua-resty-cookie/archive/$LUA_RESTY_COOKIE_VERSION.tar.gz"
+get_src a404c790553617424d743b82a9f01feccd0d2930b306b370c665ca3b7c09ccb6 \
+        "https://github.com/utix/lua-resty-cookie/archive/$LUA_RESTY_COOKIE_VERSION.tar.gz"
 
 get_src 573184006b98ccee2594b0d134fa4d05e5d2afd5141cbad315051ccf7e9b6403 \
         "https://github.com/openresty/lua-resty-lrucache/archive/v$LUA_RESTY_CACHE.tar.gz"

From 7e2e70135e751b254b8d8459e66d0198fd34e5b3 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Nov 2023 12:51:11 +0100
Subject: [PATCH 1026/1641] Bump actions/dependency-review-action from 3.1.2 to
 3.1.3 (#10661)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3.1.2 to 3.1.3.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/fde92acd0840415674c16b39c7d703fc28bc511e...7bbfa034e752445ea40215fff1c3bf9597993d3f)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 86aa9bd43..1eefe5939 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@fde92acd0840415674c16b39c7d703fc28bc511e # v3.1.2
+        uses: actions/dependency-review-action@7bbfa034e752445ea40215fff1c3bf9597993d3f # v3.1.3

From a7c40bbec448ad8d3c472e090da072db497989a9 Mon Sep 17 00:00:00 2001
From: Ana Claudia Riekstin <17534478+anaclaudiar@users.noreply.github.com>
Date: Tue, 21 Nov 2023 03:24:24 -0500
Subject: [PATCH 1027/1641] Add missing dash (#10663)

Add missing dash
---
 cmd/plugin/krew.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/cmd/plugin/krew.yaml b/cmd/plugin/krew.yaml
index e68b09f9a..0ef537d34 100644
--- a/cmd/plugin/krew.yaml
+++ b/cmd/plugin/krew.yaml
@@ -21,7 +21,7 @@ spec:
         arch: amd64
     {{addURIAndSha "https://github.com/kubernetes/ingress-nginx/releases/download/{{ .TagName }}/kubectl-ingress-nginx_darwin_amd64.tar.gz" .TagName }}
     bin: kubectl-ingress-nginx
-    selector:
+  - selector:
       matchLabels:
         os: linux
         arch: amd64

From cd3e5d323d026b810e922a5f0e79679f56d370ce Mon Sep 17 00:00:00 2001
From: Tore <tore.lonoy@gmail.com>
Date: Tue, 21 Nov 2023 14:43:36 +0100
Subject: [PATCH 1028/1641] docs: Update configmap docs for enable-global-auth
 option (#10667)

* docs: Include default annotation prefix is docs

Most docs includes the annotation prefix

* docs: Update annotations docs for global-auth

Correct documentation to reflect whats possible. It is not possible to use `enable-global-auth: false` in ConfigMap.
---
 docs/user-guide/nginx-configuration/annotations.md | 4 ++--
 docs/user-guide/nginx-configuration/configmap.md   | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index eda51a435..41a876abf 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -529,7 +529,7 @@ Since version 1.9.0, `"auth-snippet"` annotation is disabled by default and has
 
 #### Global External Authentication
 
-By default the controller redirects all requests to an existing service that provides authentication if `global-auth-url` is set in the NGINX ConfigMap. If you want to disable this behavior for that ingress, you can use `enable-global-auth: "false"` in the NGINX ConfigMap.
+By default the controller redirects all requests to an existing service that provides authentication if `global-auth-url` is set in the NGINX ConfigMap. If you want to disable this behavior for a specific ingress, you can use the annotation `nginx.ingress.kubernetes.io/enable-global-auth: "false"`.
 `nginx.ingress.kubernetes.io/enable-global-auth`:
    indicates if GlobalExternalAuth configuration should be applied or not to this Ingress rule. Default values is set to `"true"`.
 
@@ -1008,4 +1008,4 @@ metadata:
 ```
 
 !!! attention
-Since version 1.9.0, `"stream-snippet"` annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
\ No newline at end of file
+Since version 1.9.0, `"stream-snippet"` annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 2e3dbf012..f44aeeec7 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -1298,7 +1298,7 @@ _**default:**_ "/.well-known/acme-challenge"
 
 A url to an existing service that provides authentication for all the locations.
 Similar to the Ingress rule annotation `nginx.ingress.kubernetes.io/auth-url`.
-Locations that should not get authenticated can be listed using `no-auth-locations` See [no-auth-locations](#no-auth-locations). In addition, each service can be excluded from authentication via annotation `enable-global-auth` set to "false".
+Locations that should not get authenticated can be listed using `no-auth-locations` See [no-auth-locations](#no-auth-locations). In addition, each service can be excluded from authentication via annotation `nginx.ingress.kubernetes.io/enable-global-auth` set to "false".
 _**default:**_ ""
 
 _References:_ [https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/nginx-configuration/annotations.md#external-authentication](https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/nginx-configuration/annotations.md#external-authentication)

From 4e39571ed438945a44205023916def08e9e24302 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 21 Nov 2023 11:44:54 -0500
Subject: [PATCH 1029/1641] upgrade nginx

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/nginx/rootfs/build.sh | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 8bf372f21..d8fa0150c 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -18,7 +18,7 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
-export NGINX_VERSION=1.21.6
+export NGINX_VERSION=1.25.3
 
 # Check for recent changes: https://github.com/vision5/ngx_devel_kit/compare/v0.3.2...master
 export NDK_VERSION=0.3.2
@@ -195,7 +195,7 @@ mkdir --verbose -p "$BUILD_PATH"
 cd "$BUILD_PATH"
 
 # download, verify and extract the source files
-get_src 66dc7081488811e9f925719e34d1b4504c2801c81dee2920e5452a86b11405ae \
+get_src 64c5b975ca287939e828303fa857d22f142b251f17808dfe41733512d9cded86 \
         "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
 
 get_src aa961eafb8317e0eb8da37eb6e2c9ff42267edd18b56947384e719b85188f58b \

From 1adb1116a4273c9e158c2745ad20a136c4c0c770 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 21 Nov 2023 12:19:02 -0500
Subject: [PATCH 1030/1641] remove unneeded patches

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 go.work.sum                                   |   2 +
 images/nginx/rootfs/build.sh                  |  12 +-
 .../nginx-1.21.4-balancer_status_code.patch   |  72 -----
 .../nginx-1.21.4-cache_manager_exit.patch     |  19 --
 .../nginx-1.21.4-delayed_posted_events.patch  |  98 -------
 .../patches/nginx-1.21.4-hash_overflow.patch  |  20 --
 .../rootfs/patches/nginx-1.21.4-http2.patch   |  57 ----
 ...nginx-1.21.4-init_cycle_pool_release.patch |  59 ----
 .../nginx-1.21.4-larger_max_error_str.patch   |  13 -
 .../patches/nginx-1.21.4-no_Werror.patch      |  36 ---
 .../nginx-1.21.4-proxy_host_port_vars.patch   |  19 --
 .../nginx-1.21.4-resolver_conf_parsing.patch  | 263 ------------------
 ...nx-1.21.4-reuseport_close_unused_fds.patch |  38 ---
 ...-1.21.4-single_process_graceful_exit.patch |  75 -----
 .../patches/nginx-1.21.4-socket_cloexec.patch | 185 ------------
 .../nginx-1.21.4-ssl_cert_cb_yield.patch      |  64 -----
 .../nginx-1.21.4-ssl_sess_cb_yield.patch      |  41 ---
 ...stream_proxy_get_next_upstream_tries.patch |  31 ---
 ...nx-1.21.4-stream_ssl_preread_no_skip.patch |  13 -
 .../nginx-1.21.4-upstream_pipelining.patch    |  23 --
 ...nginx-1.21.4-upstream_timeout_fields.patch | 112 --------
 21 files changed, 8 insertions(+), 1244 deletions(-)
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-balancer_status_code.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-cache_manager_exit.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-delayed_posted_events.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-hash_overflow.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-http2.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-resolver_conf_parsing.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-reuseport_close_unused_fds.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-single_process_graceful_exit.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-socket_cloexec.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-ssl_cert_cb_yield.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-ssl_sess_cb_yield.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-stream_ssl_preread_no_skip.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-upstream_pipelining.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-upstream_timeout_fields.patch

diff --git a/go.work.sum b/go.work.sum
index 91bbfc14a..f1f07229e 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -255,6 +255,7 @@ golang.org/x/net v0.12.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA=
 golang.org/x/net v0.13.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA=
 golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
 golang.org/x/net v0.15.0/go.mod h1:idbUs1IY1+zTqbi8yxTbhexhEEk5ur9LInksu6HrEpk=
+golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
 golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE=
 golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI=
@@ -267,6 +268,7 @@ golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.3.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.4.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.10.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index d8fa0150c..1ecb49022 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -80,8 +80,8 @@ export LUA_CJSON_VERSION=2.1.0.11
 # Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/3.4...master
 export GEOIP2_VERSION=a607a41a8115fecfc05b5c283c81532a3d605425
 
-# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20230410...v2.1-agentzh
-export LUAJIT_VERSION=2.1-20230410
+# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20231117...v2.1-agentzh
+export LUAJIT_VERSION=2.1-20231117
 
 # Check for recent changes: https://github.com/openresty/lua-resty-balancer/compare/v0.04...master
 export LUA_RESTY_BALANCER=0.04
@@ -98,8 +98,8 @@ export LUA_RESTY_COOKIE_VERSION=9533f479371663107b515590fc9daf00d61ebf11
 # Check for recent changes: https://github.com/openresty/lua-resty-dns/compare/v0.22...master
 export LUA_RESTY_DNS=0.22
 
-# Check for recent changes: https://github.com/ledgetech/lua-resty-http/compare/v0.16.1...master
-export LUA_RESTY_HTTP=0ce55d6d15da140ecc5966fa848204c6fd9074e8
+# Check for recent changes: https://github.com/ledgetech/lua-resty-http/compare/v0.17.1...master
+export LUA_RESTY_HTTP=v0.17.1
 
 # Check for recent changes: https://github.com/openresty/lua-resty-lock/compare/v0.09...master
 export LUA_RESTY_LOCK=0.09
@@ -255,7 +255,7 @@ if [[ ${ARCH} == "s390x" ]]; then
 get_src 266ed1abb70a9806d97cb958537a44b67db6afb33d3b32292a2d68a2acedea75 \
         "https://github.com/openresty/luajit2/archive/$LUAJIT_VERSION.tar.gz"
 else
-get_src 77bbcbb24c3c78f51560017288f3118d995fe71240aa379f5818ff6b166712ff \
+get_src cc92968c57c00303eb9eaebf65cc8b29a0f851670f16bb514896ab5057ae381f \
         "https://github.com/openresty/luajit2/archive/v$LUAJIT_VERSION.tar.gz"
 fi
 
@@ -297,7 +297,7 @@ get_src b4ddcd47db347e9adf5c1e1491a6279a6ae2a3aff3155ef77ea0a65c998a69c1 \
 get_src 70e9a01eb32ccade0d5116a25bcffde0445b94ad35035ce06b94ccd260ad1bf0 \
         "https://github.com/openresty/lua-resty-dns/archive/v$LUA_RESTY_DNS.tar.gz"
 
-get_src 9fcb6db95bc37b6fce77d3b3dc740d593f9d90dce0369b405eb04844d56ac43f \
+get_src f52a0538b20a2d45025f318c18a138b78f6f88f07713dd0ed502183cb3d16f17 \
         "https://github.com/ledgetech/lua-resty-http/archive/$LUA_RESTY_HTTP.tar.gz"
 
 get_src 02733575c4aed15f6cab662378e4b071c0a4a4d07940c4ef19a7319e9be943d4 \
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-balancer_status_code.patch b/images/nginx/rootfs/patches/nginx-1.21.4-balancer_status_code.patch
deleted file mode 100644
index c4d87e2fb..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-balancer_status_code.patch
+++ /dev/null
@@ -1,72 +0,0 @@
-diff --git a/src/http/ngx_http_upstream.c b/src/http/ngx_http_upstream.c
-index f8d5707d..6efe0047 100644
---- a/src/http/ngx_http_upstream.c
-+++ b/src/http/ngx_http_upstream.c
-@@ -1515,6 +1515,11 @@ ngx_http_upstream_connect(ngx_http_request_t *r, ngx_http_upstream_t *u)
-         return;
-     }
- 
-+    if (rc >= NGX_HTTP_SPECIAL_RESPONSE) {
-+        ngx_http_upstream_finalize_request(r, u, rc);
-+        return;
-+    }
-+
-     u->state->peer = u->peer.name;
- 
-     if (rc == NGX_BUSY) {
-diff --git a/src/http/ngx_http_upstream.h b/src/http/ngx_http_upstream.h
-index 3e714e5b..dfbb25e0 100644
---- a/src/http/ngx_http_upstream.h
-+++ b/src/http/ngx_http_upstream.h
-@@ -427,4 +427,9 @@ extern ngx_conf_bitmask_t  ngx_http_upstream_cache_method_mask[];
- extern ngx_conf_bitmask_t  ngx_http_upstream_ignore_headers_masks[];
- 
- 
-+#ifndef HAVE_BALANCER_STATUS_CODE_PATCH
-+#define HAVE_BALANCER_STATUS_CODE_PATCH
-+#endif
-+
-+
- #endif /* _NGX_HTTP_UPSTREAM_H_INCLUDED_ */
-diff --git a/src/stream/ngx_stream.h b/src/stream/ngx_stream.h
-index 09d24593..d8b4b584 100644
---- a/src/stream/ngx_stream.h
-+++ b/src/stream/ngx_stream.h
-@@ -27,6 +27,7 @@ typedef struct ngx_stream_session_s  ngx_stream_session_t;
- 
- 
- #define NGX_STREAM_OK                        200
-+#define NGX_STREAM_SPECIAL_RESPONSE          300
- #define NGX_STREAM_BAD_REQUEST               400
- #define NGX_STREAM_FORBIDDEN                 403
- #define NGX_STREAM_INTERNAL_SERVER_ERROR     500
-diff --git a/src/stream/ngx_stream_proxy_module.c b/src/stream/ngx_stream_proxy_module.c
-index 818d7329..329dcdc6 100644
---- a/src/stream/ngx_stream_proxy_module.c
-+++ b/src/stream/ngx_stream_proxy_module.c
-@@ -691,6 +691,11 @@ ngx_stream_proxy_connect(ngx_stream_session_t *s)
-         return;
-     }
- 
-+    if (rc >= NGX_STREAM_SPECIAL_RESPONSE) {
-+        ngx_stream_proxy_finalize(s, rc);
-+        return;
-+    }
-+
-     u->state->peer = u->peer.name;
- 
-     if (rc == NGX_BUSY) {
-diff --git a/src/stream/ngx_stream_upstream.h b/src/stream/ngx_stream_upstream.h
-index 73947f46..21bc0ad7 100644
---- a/src/stream/ngx_stream_upstream.h
-+++ b/src/stream/ngx_stream_upstream.h
-@@ -151,4 +151,9 @@ ngx_stream_upstream_srv_conf_t *ngx_stream_upstream_add(ngx_conf_t *cf,
- extern ngx_module_t  ngx_stream_upstream_module;
- 
- 
-+#ifndef HAVE_BALANCER_STATUS_CODE_PATCH
-+#define HAVE_BALANCER_STATUS_CODE_PATCH
-+#endif
-+
-+
- #endif /* _NGX_STREAM_UPSTREAM_H_INCLUDED_ */
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-cache_manager_exit.patch b/images/nginx/rootfs/patches/nginx-1.21.4-cache_manager_exit.patch
deleted file mode 100644
index 91ee63a26..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-cache_manager_exit.patch
+++ /dev/null
@@ -1,19 +0,0 @@
-# HG changeset patch
-# User Yichun Zhang <agentzh@gmail.com>
-# Date 1383598130 28800
-# Node ID f64218e1ac963337d84092536f588b8e0d99bbaa
-# Parent  dea321e5c0216efccbb23e84bbce7cf3e28f130c
-Cache: gracefully exit the cache manager process.
-
-diff -r dea321e5c021 -r f64218e1ac96 src/os/unix/ngx_process_cycle.c
---- a/src/os/unix/ngx_process_cycle.c	Thu Oct 31 18:23:49 2013 +0400
-+++ b/src/os/unix/ngx_process_cycle.c	Mon Nov 04 12:48:50 2013 -0800
-@@ -1134,7 +1134,7 @@
- 
-         if (ngx_terminate || ngx_quit) {
-             ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "exiting");
--            exit(0);
-+            ngx_worker_process_exit(cycle);
-         }
- 
-         if (ngx_reopen) {
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-delayed_posted_events.patch b/images/nginx/rootfs/patches/nginx-1.21.4-delayed_posted_events.patch
deleted file mode 100644
index 687584324..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-delayed_posted_events.patch
+++ /dev/null
@@ -1,98 +0,0 @@
-diff --git a/src/event/ngx_event.c b/src/event/ngx_event.c
-index 57af8132..4853945f 100644
---- a/src/event/ngx_event.c
-+++ b/src/event/ngx_event.c
-@@ -196,6 +196,9 @@ ngx_process_events_and_timers(ngx_cycle_t *cycle)
-     ngx_uint_t  flags;
-     ngx_msec_t  timer, delta;
- 
-+    ngx_queue_t     *q;
-+    ngx_event_t     *ev;
-+
-     if (ngx_timer_resolution) {
-         timer = NGX_TIMER_INFINITE;
-         flags = 0;
-@@ -215,6 +218,13 @@ ngx_process_events_and_timers(ngx_cycle_t *cycle)
- #endif
-     }
- 
-+    if (!ngx_queue_empty(&ngx_posted_delayed_events)) {
-+        ngx_log_debug0(NGX_LOG_DEBUG_EVENT, cycle->log, 0,
-+                       "posted delayed event queue not empty"
-+                       " making poll timeout 0");
-+        timer = 0;
-+    }
-+
-     if (ngx_use_accept_mutex) {
-         if (ngx_accept_disabled > 0) {
-             ngx_accept_disabled--;
-@@ -257,6 +267,35 @@ ngx_process_events_and_timers(ngx_cycle_t *cycle)
-     }
- 
-     ngx_event_process_posted(cycle, &ngx_posted_events);
-+
-+    while (!ngx_queue_empty(&ngx_posted_delayed_events)) {
-+        q = ngx_queue_head(&ngx_posted_delayed_events);
-+
-+        ev = ngx_queue_data(q, ngx_event_t, queue);
-+        if (ev->delayed) {
-+            /* start of newly inserted nodes */
-+            for (/* void */;
-+                 q != ngx_queue_sentinel(&ngx_posted_delayed_events);
-+                 q = ngx_queue_next(q))
-+            {
-+                ev = ngx_queue_data(q, ngx_event_t, queue);
-+                ev->delayed = 0;
-+
-+                ngx_log_debug1(NGX_LOG_DEBUG_EVENT, cycle->log, 0,
-+                               "skipping delayed posted event %p,"
-+                               " till next iteration", ev);
-+            }
-+
-+            break;
-+        }
-+
-+        ngx_log_debug1(NGX_LOG_DEBUG_EVENT, cycle->log, 0,
-+                       "delayed posted event %p", ev);
-+
-+        ngx_delete_posted_event(ev);
-+
-+        ev->handler(ev);
-+    }
- }
- 
- 
-@@ -600,6 +639,7 @@ ngx_event_process_init(ngx_cycle_t *cycle)
- 
-     ngx_queue_init(&ngx_posted_accept_events);
-     ngx_queue_init(&ngx_posted_events);
-+    ngx_queue_init(&ngx_posted_delayed_events);
- 
-     if (ngx_event_timer_init(cycle->log) == NGX_ERROR) {
-         return NGX_ERROR;
-diff --git a/src/event/ngx_event_posted.c b/src/event/ngx_event_posted.c
-index d851f3d1..b6cea009 100644
---- a/src/event/ngx_event_posted.c
-+++ b/src/event/ngx_event_posted.c
-@@ -12,6 +12,7 @@
- 
- ngx_queue_t  ngx_posted_accept_events;
- ngx_queue_t  ngx_posted_events;
-+ngx_queue_t  ngx_posted_delayed_events;
- 
- 
- void
-diff --git a/src/event/ngx_event_posted.h b/src/event/ngx_event_posted.h
-index 145d30fe..6c388553 100644
---- a/src/event/ngx_event_posted.h
-+++ b/src/event/ngx_event_posted.h
-@@ -43,6 +43,9 @@ void ngx_event_process_posted(ngx_cycle_t *cycle, ngx_queue_t *posted);
- 
- extern ngx_queue_t  ngx_posted_accept_events;
- extern ngx_queue_t  ngx_posted_events;
-+extern ngx_queue_t  ngx_posted_delayed_events;
-+
-+#define HAVE_POSTED_DELAYED_EVENTS_PATCH
- 
- 
- #endif /* _NGX_EVENT_POSTED_H_INCLUDED_ */
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-hash_overflow.patch b/images/nginx/rootfs/patches/nginx-1.21.4-hash_overflow.patch
deleted file mode 100644
index 449d214ba..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-hash_overflow.patch
+++ /dev/null
@@ -1,20 +0,0 @@
-# HG changeset patch
-# User Yichun Zhang <agentzh@gmail.com>
-# Date 1412276417 25200
-#      Thu Oct 02 12:00:17 2014 -0700
-# Node ID 4032b992f23b054c1a2cfb0be879330d2c6708e5
-# Parent  1ff0f68d9376e3d184d65814a6372856bf65cfcd
-Hash: buffer overflow might happen when exceeding the pre-configured limits.
-
-diff -r 1ff0f68d9376 -r 4032b992f23b src/core/ngx_hash.c
---- a/src/core/ngx_hash.c	Tue Sep 30 15:50:28 2014 -0700
-+++ b/src/core/ngx_hash.c	Thu Oct 02 12:00:17 2014 -0700
-@@ -312,6 +312,8 @@ ngx_hash_init(ngx_hash_init_t *hinit, ng
-         continue;
-     }
- 
-+    size--;
-+
-     ngx_log_error(NGX_LOG_WARN, hinit->pool->log, 0,
-                   "could not build optimal %s, you should increase "
-                   "either %s_max_size: %i or %s_bucket_size: %i; "
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-http2.patch b/images/nginx/rootfs/patches/nginx-1.21.4-http2.patch
deleted file mode 100644
index 3b9d57736..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-http2.patch
+++ /dev/null
@@ -1,57 +0,0 @@
-#commit 6ceef192e7af1c507826ac38a2d43f08bf265fb9
-#repository: https://github.com/nginx/nginx
-#Author: Maxim Dounin <mdounin@mdounin.ru>
-#Date:   Tue Oct 10 15:13:39 2023 +0300
-diff --git a/src/http/v2/ngx_http_v2.c b/src/http/v2/ngx_http_v2.c
-index 7c05ff1e7..410a8be24 100644
---- a/src/http/v2/ngx_http_v2.c
-+++ b/src/http/v2/ngx_http_v2.c
-@@ -347,6 +347,7 @@ ngx_http_v2_read_handler(ngx_event_t *rev)
-     ngx_log_debug0(NGX_LOG_DEBUG_HTTP, c->log, 0, "http2 read handler");
-
-     h2c->blocked = 1;
-+    h2c->new_streams = 0;
-
-     if (c->close) {
-         c->close = 0;
-@@ -1284,6 +1285,14 @@ ngx_http_v2_state_headers(ngx_http_v2_connection_t *h2c, u_char *pos,
-         goto rst_stream;
-     }
-
-+    if (h2c->new_streams++ >= 2 * h2scf->concurrent_streams) {
-+        ngx_log_error(NGX_LOG_INFO, h2c->connection->log, 0,
-+                      "client sent too many streams at once");
-+
-+        status = NGX_HTTP_V2_REFUSED_STREAM;
-+        goto rst_stream;
-+    }
-+
-     if (!h2c->settings_ack
-         && !(h2c->state.flags & NGX_HTTP_V2_END_STREAM_FLAG)
-         && h2scf->preread_size < NGX_HTTP_V2_DEFAULT_WINDOW)
-@@ -1349,6 +1358,12 @@ ngx_http_v2_state_headers(ngx_http_v2_connection_t *h2c, u_char *pos,
-
- rst_stream:
-
-+    if (h2c->refused_streams++ > ngx_max(h2scf->concurrent_streams, 100)) {
-+        ngx_log_error(NGX_LOG_INFO, h2c->connection->log, 0,
-+                      "client sent too many refused streams");
-+        return ngx_http_v2_connection_error(h2c, NGX_HTTP_V2_NO_ERROR);
-+    }
-+
-     if (ngx_http_v2_send_rst_stream(h2c, h2c->state.sid, status) != NGX_OK) {
-         return ngx_http_v2_connection_error(h2c, NGX_HTTP_V2_INTERNAL_ERROR);
-     }
-diff --git a/src/http/v2/ngx_http_v2.h b/src/http/v2/ngx_http_v2.h
-index cb9014ccf..6751b3026 100644
---- a/src/http/v2/ngx_http_v2.h
-+++ b/src/http/v2/ngx_http_v2.h
-@@ -131,6 +131,8 @@ struct ngx_http_v2_connection_s {
-     ngx_uint_t                       processing;
-     ngx_uint_t                       frames;
-     ngx_uint_t                       idle;
-+    ngx_uint_t                       new_streams;
-+    ngx_uint_t                       refused_streams;
-     ngx_uint_t                       priority_limit;
-
-     size_t                           send_window;
\ No newline at end of file
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch b/images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch
deleted file mode 100644
index 9cfa4f7cb..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch
+++ /dev/null
@@ -1,59 +0,0 @@
-diff -rup nginx-1.21.4/src/core/nginx.c nginx-1.21.4-patched/src/core/nginx.c
---- nginx-1.21.4/src/core/nginx.c	2017-12-17 00:00:38.136470108 -0800
-+++ nginx-1.21.4-patched/src/core/nginx.c	2017-12-16 23:59:51.680958322 -0800
-@@ -186,6 +186,7 @@ static u_char      *ngx_prefix;
- static u_char      *ngx_conf_file;
- static u_char      *ngx_conf_params;
- static char        *ngx_signal;
-+ngx_pool_t         *saved_init_cycle_pool = NULL;
- 
- 
- static char **ngx_os_environ;
-@@ -253,6 +254,8 @@ main(int argc, char *const *argv)
-         return 1;
-     }
- 
-+    saved_init_cycle_pool = init_cycle.pool;
-+
-     if (ngx_save_argv(&init_cycle, argc, argv) != NGX_OK) {
-         return 1;
-     }
-diff -rup nginx-1.21.4/src/core/ngx_core.h nginx-1.21.4-patched/src/core/ngx_core.h
---- nginx-1.21.4/src/core/ngx_core.h	2017-10-10 08:22:51.000000000 -0700
-+++ nginx-1.21.4-patched/src/core/ngx_core.h	2017-12-16 23:59:51.679958370 -0800
-@@ -108,4 +108,6 @@ void ngx_cpuinfo(void);
- #define NGX_DISABLE_SYMLINKS_NOTOWNER   2
- #endif
- 
-+extern ngx_pool_t        *saved_init_cycle_pool;
-+
- #endif /* _NGX_CORE_H_INCLUDED_ */
-diff -rup nginx-1.21.4/src/core/ngx_cycle.c nginx-1.21.4-patched/src/core/ngx_cycle.c
---- nginx-1.21.4/src/core/ngx_cycle.c	2017-10-10 08:22:51.000000000 -0700
-+++ nginx-1.21.4-patched/src/core/ngx_cycle.c	2017-12-16 23:59:51.678958419 -0800
-@@ -748,6 +748,10 @@ old_shm_zone_done:
- 
-     if (ngx_process == NGX_PROCESS_MASTER || ngx_is_init_cycle(old_cycle)) {
- 
-+        if (ngx_is_init_cycle(old_cycle)) {
-+            saved_init_cycle_pool = NULL;
-+        }
-+
-         ngx_destroy_pool(old_cycle->pool);
-         cycle->old_cycle = NULL;
- 
-diff -rup nginx-1.21.4/src/os/unix/ngx_process_cycle.c nginx-1.21.4-patched/src/os/unix/ngx_process_cycle.c
---- nginx-1.21.4/src/os/unix/ngx_process_cycle.c	2017-12-17 00:00:38.142469762 -0800
-+++ nginx-1.21.4-patched/src/os/unix/ngx_process_cycle.c	2017-12-16 23:59:51.691957791 -0800
-@@ -687,6 +692,11 @@ ngx_master_process_exit(ngx_cycle_t *cyc
-     ngx_exit_cycle.files_n = ngx_cycle->files_n;
-     ngx_cycle = &ngx_exit_cycle;
- 
-+    if (saved_init_cycle_pool != NULL && saved_init_cycle_pool != cycle->pool) {
-+        ngx_destroy_pool(saved_init_cycle_pool);
-+        saved_init_cycle_pool = NULL;
-+    }
-+
-     ngx_destroy_pool(cycle->pool);
- 
-     exit(0);
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch b/images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch
deleted file mode 100644
index c89032c9f..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch
+++ /dev/null
@@ -1,13 +0,0 @@
---- nginx-1.21.4/src/core/ngx_log.h	2013-10-08 05:07:14.000000000 -0700
-+++ nginx-1.21.4-patched/src/core/ngx_log.h	2013-12-05 20:35:35.996236720 -0800
-@@ -64,7 +64,9 @@ struct ngx_log_s {
- };
- 
- 
--#define NGX_MAX_ERROR_STR   2048
-+#ifndef NGX_MAX_ERROR_STR
-+#define NGX_MAX_ERROR_STR   4096
-+#endif
- 
- 
- /*********************************/
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch b/images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch
deleted file mode 100644
index f4d6fd0e5..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch
+++ /dev/null
@@ -1,36 +0,0 @@
-diff -urp nginx-1.21.4/auto/cc/clang nginx-1.21.4-patched/auto/cc/clang
---- nginx-1.21.4/auto/cc/clang	2014-03-04 03:39:24.000000000 -0800
-+++ nginx-1.21.4-patched/auto/cc/clang	2014-03-13 20:54:26.241413360 -0700
-@@ -89,7 +89,7 @@ CFLAGS="$CFLAGS -Wconditional-uninitiali
- CFLAGS="$CFLAGS -Wno-unused-parameter"
- 
- # stop on warning
--CFLAGS="$CFLAGS -Werror"
-+#CFLAGS="$CFLAGS -Werror"
- 
- # debug
- CFLAGS="$CFLAGS -g"
-diff -urp nginx-1.21.4/auto/cc/gcc nginx-1.21.4-patched/auto/cc/gcc
---- nginx-1.21.4/auto/cc/gcc	2014-03-04 03:39:24.000000000 -0800
-+++ nginx-1.21.4-patched/auto/cc/gcc	2014-03-13 20:54:13.301355329 -0700
-@@ -168,7 +168,7 @@ esac
- 
- 
- # stop on warning
--CFLAGS="$CFLAGS -Werror"
-+#CFLAGS="$CFLAGS -Werror"
- 
- # debug
- CFLAGS="$CFLAGS -g"
-diff -urp nginx-1.21.4/auto/cc/icc nginx-1.21.4-patched/auto/cc/icc
---- nginx-1.21.4/auto/cc/icc	2014-03-04 03:39:24.000000000 -0800
-+++ nginx-1.21.4-patched/auto/cc/icc	2014-03-13 20:54:13.301355329 -0700
-@@ -115,7 +115,7 @@ case "$NGX_ICC_VER" in
- esac
- 
- # stop on warning
--CFLAGS="$CFLAGS -Werror"
-+#CFLAGS="$CFLAGS -Werror"
- 
- # debug
- CFLAGS="$CFLAGS -g"
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch b/images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch
deleted file mode 100644
index 01cebd65a..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch
+++ /dev/null
@@ -1,19 +0,0 @@
---- nginx-1.21.4/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
-+++ nginx-1.21.4-patched/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
-@@ -793,13 +793,13 @@ static ngx_keyval_t  ngx_http_proxy_cach
- static ngx_http_variable_t  ngx_http_proxy_vars[] = {
- 
-     { ngx_string("proxy_host"), NULL, ngx_http_proxy_host_variable, 0,
--      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE|NGX_HTTP_VAR_NOHASH, 0 },
-+      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE, 0 },
- 
-     { ngx_string("proxy_port"), NULL, ngx_http_proxy_port_variable, 0,
--      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE|NGX_HTTP_VAR_NOHASH, 0 },
-+      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE, 0 },
- 
-     { ngx_string("proxy_add_x_forwarded_for"), NULL,
--      ngx_http_proxy_add_x_forwarded_for_variable, 0, NGX_HTTP_VAR_NOHASH, 0 },
-+      ngx_http_proxy_add_x_forwarded_for_variable, 0, 0, 0 },
- 
- #if 0
-     { ngx_string("proxy_add_via"), NULL, NULL, 0, NGX_HTTP_VAR_NOHASH, 0 },
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-resolver_conf_parsing.patch b/images/nginx/rootfs/patches/nginx-1.21.4-resolver_conf_parsing.patch
deleted file mode 100644
index 8638cdf2a..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-resolver_conf_parsing.patch
+++ /dev/null
@@ -1,263 +0,0 @@
-diff --git a/src/core/ngx_resolver.c b/src/core/ngx_resolver.c
-index cd55520c..dade1846 100644
---- a/src/core/ngx_resolver.c
-+++ b/src/core/ngx_resolver.c
-@@ -9,12 +9,26 @@
- #include <ngx_core.h>
- #include <ngx_event.h>
- 
-+#if !(NGX_WIN32)
-+#include <resolv.h>
-+#endif
-+
- 
- #define NGX_RESOLVER_UDP_SIZE   4096
- 
- #define NGX_RESOLVER_TCP_RSIZE  (2 + 65535)
- #define NGX_RESOLVER_TCP_WSIZE  8192
- 
-+#if !(NGX_WIN32)
-+/*
-+ * note that 2KB should be more than enough for majority of the
-+ * resolv.conf files out there. it also acts as a safety guard to prevent
-+ * abuse.
-+ */
-+#define NGX_RESOLVER_FILE_BUF_SIZE  2048
-+#define NGX_RESOLVER_FILE_NAME      "/etc/resolv.conf"
-+#endif
-+
- 
- typedef struct {
-     u_char  ident_hi;
-@@ -131,6 +145,191 @@ static ngx_resolver_node_t *ngx_resolver_lookup_addr6(ngx_resolver_t *r,
- #endif
- 
- 
-+#if !(NGX_WIN32)
-+static ngx_int_t
-+ngx_resolver_read_resolv_conf(ngx_conf_t *cf, ngx_resolver_t *r, u_char *path,
-+    size_t path_len)
-+{
-+    ngx_url_t                        u;
-+    ngx_resolver_connection_t       *rec;
-+    ngx_fd_t                         fd;
-+    ngx_file_t                       file;
-+    u_char                           buf[NGX_RESOLVER_FILE_BUF_SIZE];
-+    u_char                           ipv6_buf[NGX_INET6_ADDRSTRLEN];
-+    ngx_uint_t                       address = 0, j, total = 0;
-+    ssize_t                          n, i;
-+    enum {
-+        sw_nameserver,
-+        sw_spaces,
-+        sw_address,
-+        sw_skip
-+    } state;
-+
-+    file.name.data = path;
-+    file.name.len = path_len;
-+
-+    if (ngx_conf_full_name(cf->cycle, &file.name, 1) != NGX_OK) {
-+        return NGX_ERROR;
-+    }
-+
-+    fd = ngx_open_file(file.name.data, NGX_FILE_RDONLY,
-+                       NGX_FILE_OPEN, 0);
-+
-+    if (fd == NGX_INVALID_FILE) {
-+        ngx_conf_log_error(NGX_LOG_EMERG, cf, ngx_errno,
-+                           ngx_open_file_n " \"%s\" failed", file.name.data);
-+
-+        return NGX_ERROR;
-+    }
-+
-+    ngx_memzero(&file, sizeof(ngx_file_t));
-+
-+    file.fd = fd;
-+    file.log = cf->log;
-+
-+    state = sw_nameserver;
-+
-+    n = ngx_read_file(&file, buf, NGX_RESOLVER_FILE_BUF_SIZE, 0);
-+
-+    if (n == NGX_ERROR) {
-+        ngx_conf_log_error(NGX_LOG_ALERT, cf, ngx_errno,
-+                           ngx_read_file_n " \"%s\" failed", file.name.data);
-+    }
-+
-+    if (ngx_close_file(file.fd) == NGX_FILE_ERROR) {
-+        ngx_conf_log_error(NGX_LOG_ALERT, cf, ngx_errno,
-+                           ngx_close_file_n " \"%s\" failed", file.name.data);
-+    }
-+
-+    if (n == NGX_ERROR) {
-+        return NGX_ERROR;
-+    }
-+
-+    if (n == 0) {
-+        return NGX_OK;
-+    }
-+
-+    for (i = 0; i < n && total < MAXNS; /* void */) {
-+        if (buf[i] == '#' || buf[i] == ';') {
-+            state = sw_skip;
-+        }
-+
-+        switch (state) {
-+
-+        case sw_nameserver:
-+
-+            if ((size_t) n - i >= sizeof("nameserver") - 1
-+                && ngx_memcmp(buf + i, "nameserver",
-+                              sizeof("nameserver") - 1) == 0)
-+            {
-+                state = sw_spaces;
-+                i += sizeof("nameserver") - 1;
-+
-+                continue;
-+            }
-+
-+            break;
-+
-+        case sw_spaces:
-+            if (buf[i] != '\t' && buf[i] != ' ') {
-+                address = i;
-+                state = sw_address;
-+            }
-+
-+            break;
-+
-+        case sw_address:
-+
-+            if (buf[i] == CR || buf[i] == LF || i == n - 1) {
-+                ngx_memzero(&u, sizeof(ngx_url_t));
-+
-+                u.url.data = buf + address;
-+
-+                if (i == n - 1 && buf[i] != CR && buf[i] != LF) {
-+                    u.url.len = n - address;
-+
-+                } else {
-+                    u.url.len = i - address;
-+                }
-+
-+                u.default_port = 53;
-+
-+                /* IPv6? */
-+                if (ngx_strlchr(u.url.data, u.url.data + u.url.len,
-+                                ':') != NULL)
-+                {
-+                    if (u.url.len + 2 > sizeof(ipv6_buf)) {
-+                        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
-+                                           "IPv6 resolver address is too long:"
-+                                           " \"%V\"", &u.url);
-+
-+                        return NGX_ERROR;
-+                    }
-+
-+                    ipv6_buf[0] = '[';
-+                    ngx_memcpy(ipv6_buf + 1, u.url.data, u.url.len);
-+                    ipv6_buf[u.url.len + 1] = ']';
-+
-+                    u.url.data = ipv6_buf;
-+                    u.url.len = u.url.len + 2;
-+                }
-+
-+                if (ngx_parse_url(cf->pool, &u) != NGX_OK) {
-+                    if (u.err) {
-+                        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
-+                                           "%s in resolver \"%V\"",
-+                                           u.err, &u.url);
-+                    }
-+
-+                    return NGX_ERROR;
-+                }
-+
-+                rec = ngx_array_push_n(&r->connections, u.naddrs);
-+                if (rec == NULL) {
-+                    return NGX_ERROR;
-+                }
-+
-+                ngx_memzero(rec, u.naddrs * sizeof(ngx_resolver_connection_t));
-+
-+                for (j = 0; j < u.naddrs; j++) {
-+                    rec[j].sockaddr = u.addrs[j].sockaddr;
-+                    rec[j].socklen = u.addrs[j].socklen;
-+                    rec[j].server = u.addrs[j].name;
-+                    rec[j].resolver = r;
-+                }
-+
-+                total++;
-+
-+#if (NGX_DEBUG)
-+                /*
-+                 * logs with level below NGX_LOG_NOTICE will not be printed
-+                 * in this early phase
-+                 */
-+                ngx_conf_log_error(NGX_LOG_NOTICE, cf, 0,
-+                                   "parsed a resolver: \"%V\"", &u.url);
-+#endif
-+
-+                state = sw_nameserver;
-+            }
-+
-+            break;
-+
-+        case sw_skip:
-+            if (buf[i] == CR || buf[i] == LF) {
-+                state = sw_nameserver;
-+            }
-+
-+            break;
-+        }
-+
-+        i++;
-+    }
-+
-+    return NGX_OK;
-+}
-+#endif
-+
-+
- ngx_resolver_t *
- ngx_resolver_create(ngx_conf_t *cf, ngx_str_t *names, ngx_uint_t n)
- {
-@@ -246,6 +445,39 @@ ngx_resolver_create(ngx_conf_t *cf, ngx_str_t *names, ngx_uint_t n)
-         }
- #endif
- 
-+#if !(NGX_WIN32)
-+        if (ngx_strncmp(names[i].data, "local=", 6) == 0) {
-+
-+            if (ngx_strcmp(&names[i].data[6], "on") == 0) {
-+                if (ngx_resolver_read_resolv_conf(cf, r,
-+                                                  (u_char *)
-+                                                  NGX_RESOLVER_FILE_NAME,
-+                                                  sizeof(NGX_RESOLVER_FILE_NAME)
-+                                                  - 1)
-+                    != NGX_OK)
-+                {
-+                    ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
-+                                       "unable to parse local resolver");
-+                    return NULL;
-+                }
-+
-+            } else if (ngx_strcmp(&names[i].data[6], "off") != 0) {
-+                if (ngx_resolver_read_resolv_conf(cf, r,
-+                                                  &names[i].data[6],
-+                                                  names[i].len - 6)
-+                    != NGX_OK)
-+                {
-+                    ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
-+                                       "unable to parse local resolver");
-+                    return NULL;
-+                }
-+
-+            }
-+
-+            continue;
-+        }
-+#endif
-+
-         ngx_memzero(&u, sizeof(ngx_url_t));
- 
-         u.url = names[i];
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-reuseport_close_unused_fds.patch b/images/nginx/rootfs/patches/nginx-1.21.4-reuseport_close_unused_fds.patch
deleted file mode 100644
index ff4a36fd2..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-reuseport_close_unused_fds.patch
+++ /dev/null
@@ -1,38 +0,0 @@
-diff --git a/src/core/ngx_connection.c b/src/core/ngx_connection.c
---- a/src/core/ngx_connection.c
-+++ b/src/core/ngx_connection.c
-@@ -1118,6 +1118,12 @@ ngx_close_listening_sockets(ngx_cycle_t *cycle)
-     ls = cycle->listening.elts;
-     for (i = 0; i < cycle->listening.nelts; i++) {
- 
-+#if (NGX_HAVE_REUSEPORT)
-+        if (ls[i].fd == (ngx_socket_t) -1) {
-+            continue;
-+        }
-+#endif
-+
-         c = ls[i].connection;
- 
-         if (c) {
-diff --git a/src/event/ngx_event.c b/src/event/ngx_event.c
---- a/src/event/ngx_event.c
-+++ b/src/event/ngx_event.c
-@@ -775,6 +775,18 @@ ngx_event_process_init(ngx_cycle_t *cycle)
- 
- #if (NGX_HAVE_REUSEPORT)
-         if (ls[i].reuseport && ls[i].worker != ngx_worker) {
-+            ngx_log_debug2(NGX_LOG_DEBUG_CORE, cycle->log, 0,
-+                           "closing unused fd:%d listening on %V",
-+                           ls[i].fd, &ls[i].addr_text);
-+
-+            if (ngx_close_socket(ls[i].fd) == -1) {
-+                ngx_log_error(NGX_LOG_EMERG, cycle->log, ngx_socket_errno,
-+                              ngx_close_socket_n " %V failed",
-+                              &ls[i].addr_text);
-+            }
-+
-+            ls[i].fd = (ngx_socket_t) -1;
-+
-             continue;
-         }
- #endif
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-single_process_graceful_exit.patch b/images/nginx/rootfs/patches/nginx-1.21.4-single_process_graceful_exit.patch
deleted file mode 100644
index 2754fc2fe..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-single_process_graceful_exit.patch
+++ /dev/null
@@ -1,75 +0,0 @@
-diff --git a/src/os/unix/ngx_process.c b/src/os/unix/ngx_process.c
-index 15680237..12a8c687 100644
---- a/src/os/unix/ngx_process.c
-+++ b/src/os/unix/ngx_process.c
-@@ -362,8 +362,15 @@ ngx_signal_handler(int signo, siginfo_t *siginfo, void *ucontext)
-             break;
- 
-         case ngx_signal_value(NGX_RECONFIGURE_SIGNAL):
--            ngx_reconfigure = 1;
--            action = ", reconfiguring";
-+            if (ngx_process == NGX_PROCESS_SINGLE) {
-+                ngx_terminate = 1;
-+                action = ", exiting";
-+
-+            } else {
-+                ngx_reconfigure = 1;
-+                action = ", reconfiguring";
-+            }
-+
-             break;
- 
-         case ngx_signal_value(NGX_REOPEN_SIGNAL):
-diff --git a/src/os/unix/ngx_process_cycle.c b/src/os/unix/ngx_process_cycle.c
-index 5817a2c2..f3d58e97 100644
---- a/src/os/unix/ngx_process_cycle.c
-+++ b/src/os/unix/ngx_process_cycle.c
-@@ -305,11 +305,26 @@ ngx_single_process_cycle(ngx_cycle_t *cycle)
-     }
- 
-     for ( ;; ) {
-+        if (ngx_exiting) {
-+            if (ngx_event_no_timers_left() == NGX_OK) {
-+                ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "exiting");
-+
-+                for (i = 0; cycle->modules[i]; i++) {
-+                    if (cycle->modules[i]->exit_process) {
-+                        cycle->modules[i]->exit_process(cycle);
-+                    }
-+                }
-+
-+                ngx_master_process_exit(cycle);
-+            }
-+        }
-+
-         ngx_log_debug0(NGX_LOG_DEBUG_EVENT, cycle->log, 0, "worker cycle");
- 
-         ngx_process_events_and_timers(cycle);
- 
--        if (ngx_terminate || ngx_quit) {
-+        if (ngx_terminate) {
-+            ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "exiting");
- 
-             for (i = 0; cycle->modules[i]; i++) {
-                 if (cycle->modules[i]->exit_process) {
-@@ -320,6 +335,20 @@ ngx_single_process_cycle(ngx_cycle_t *cycle)
-             ngx_master_process_exit(cycle);
-         }
- 
-+        if (ngx_quit) {
-+            ngx_quit = 0;
-+            ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0,
-+                          "gracefully shutting down");
-+            ngx_setproctitle("process is shutting down");
-+
-+            if (!ngx_exiting) {
-+                ngx_exiting = 1;
-+                ngx_set_shutdown_timer(cycle);
-+                ngx_close_listening_sockets(cycle);
-+                ngx_close_idle_connections(cycle);
-+            }
-+        }
-+
-         if (ngx_reconfigure) {
-             ngx_reconfigure = 0;
-             ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "reconfiguring");
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-socket_cloexec.patch b/images/nginx/rootfs/patches/nginx-1.21.4-socket_cloexec.patch
deleted file mode 100644
index 8ffe4c167..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-socket_cloexec.patch
+++ /dev/null
@@ -1,185 +0,0 @@
-diff --git a/auto/unix b/auto/unix
-index 10835f6c..b5b33bb3 100644
---- a/auto/unix
-+++ b/auto/unix
-@@ -990,3 +990,27 @@ ngx_feature_test='struct addrinfo *res;
-                   if (getaddrinfo("localhost", NULL, NULL, &res) != 0) return 1;
-                   freeaddrinfo(res)'
- . auto/feature
-+
-+ngx_feature="SOCK_CLOEXEC support"
-+ngx_feature_name="NGX_HAVE_SOCKET_CLOEXEC"
-+ngx_feature_run=no
-+ngx_feature_incs="#include <sys/types.h>
-+                  #include <sys/socket.h>"
-+ngx_feature_path=
-+ngx_feature_libs=
-+ngx_feature_test="int fd;
-+                  fd = socket(AF_INET, SOCK_STREAM | SOCK_CLOEXEC, 0);"
-+. auto/feature
-+
-+ngx_feature="FD_CLOEXEC support"
-+ngx_feature_name="NGX_HAVE_FD_CLOEXEC"
-+ngx_feature_run=no
-+ngx_feature_incs="#include <sys/types.h>
-+                  #include <sys/socket.h>
-+                  #include <fcntl.h>"
-+ngx_feature_path=
-+ngx_feature_libs=
-+ngx_feature_test="int fd;
-+                  fd = socket(AF_INET, SOCK_STREAM, 0);
-+                  fcntl(fd, F_SETFD, FD_CLOEXEC);"
-+. auto/feature
-diff --git a/src/core/ngx_resolver.c b/src/core/ngx_resolver.c
-index cd55520c..438e0806 100644
---- a/src/core/ngx_resolver.c
-+++ b/src/core/ngx_resolver.c
-@@ -4466,8 +4466,14 @@ ngx_tcp_connect(ngx_resolver_connection_t *rec)
-     ngx_event_t       *rev, *wev;
-     ngx_connection_t  *c;
- 
-+#if (NGX_HAVE_SOCKET_CLOEXEC)
-+    s = ngx_socket(rec->sockaddr->sa_family, SOCK_STREAM | SOCK_CLOEXEC, 0);
-+
-+#else
-     s = ngx_socket(rec->sockaddr->sa_family, SOCK_STREAM, 0);
- 
-+#endif
-+
-     ngx_log_debug1(NGX_LOG_DEBUG_EVENT, &rec->log, 0, "TCP socket %d", s);
- 
-     if (s == (ngx_socket_t) -1) {
-@@ -4494,6 +4500,15 @@ ngx_tcp_connect(ngx_resolver_connection_t *rec)
-         goto failed;
-     }
- 
-+#if (NGX_HAVE_FD_CLOEXEC)
-+    if (ngx_cloexec(s) == -1) {
-+        ngx_log_error(NGX_LOG_ALERT, &rec->log, ngx_socket_errno,
-+                      ngx_cloexec_n " failed");
-+
-+        goto failed;
-+    }
-+#endif
-+
-     rev = c->read;
-     wev = c->write;
- 
-diff --git a/src/event/ngx_event.h b/src/event/ngx_event.h
-index 19fec68..8c2f01a 100644
---- a/src/event/ngx_event.h
-+++ b/src/event/ngx_event.h
-@@ -73,6 +73,9 @@ struct ngx_event_s {
-     /* to test on worker exit */
-     unsigned         channel:1;
-     unsigned         resolver:1;
-+#if (HAVE_SOCKET_CLOEXEC_PATCH)
-+    unsigned         skip_socket_leak_check:1;
-+#endif
- 
-     unsigned         cancelable:1;
- 
-diff --git a/src/event/ngx_event_accept.c b/src/event/ngx_event_accept.c
-index 77563709..5827b9d0 100644
---- a/src/event/ngx_event_accept.c
-+++ b/src/event/ngx_event_accept.c
-@@ -62,7 +62,9 @@ ngx_event_accept(ngx_event_t *ev)
- 
- #if (NGX_HAVE_ACCEPT4)
-         if (use_accept4) {
--            s = accept4(lc->fd, &sa.sockaddr, &socklen, SOCK_NONBLOCK);
-+            s = accept4(lc->fd, &sa.sockaddr, &socklen,
-+                        SOCK_NONBLOCK | SOCK_CLOEXEC);
-+
-         } else {
-             s = accept(lc->fd, &sa.sockaddr, &socklen);
-         }
-@@ -202,6 +204,16 @@ ngx_event_accept(ngx_event_t *ev)
-                     ngx_close_accepted_connection(c);
-                     return;
-                 }
-+
-+#if (NGX_HAVE_FD_CLOEXEC)
-+                if (ngx_cloexec(s) == -1) {
-+                    ngx_log_error(NGX_LOG_ALERT, ev->log, ngx_socket_errno,
-+                                  ngx_cloexec_n " failed");
-+                    ngx_close_accepted_connection(c);
-+                    return;
-+                }
-+#endif
-+
-             }
-         }
- 
-diff --git a/src/event/ngx_event_connect.c b/src/event/ngx_event_connect.c
-index c5bb8068..cf33b1d2 100644
---- a/src/event/ngx_event_connect.c
-+++ b/src/event/ngx_event_connect.c
-@@ -38,8 +38,15 @@ ngx_event_connect_peer(ngx_peer_connection_t *pc)
- 
-     type = (pc->type ? pc->type : SOCK_STREAM);
- 
-+#if (NGX_HAVE_SOCKET_CLOEXEC)
-+    s = ngx_socket(pc->sockaddr->sa_family, type | SOCK_CLOEXEC, 0);
-+
-+#else
-     s = ngx_socket(pc->sockaddr->sa_family, type, 0);
- 
-+#endif
-+
-+
-     ngx_log_debug2(NGX_LOG_DEBUG_EVENT, pc->log, 0, "%s socket %d",
-                    (type == SOCK_STREAM) ? "stream" : "dgram", s);
- 
-@@ -80,6 +87,15 @@ ngx_event_connect_peer(ngx_peer_connection_t *pc)
-         goto failed;
-     }
- 
-+#if (NGX_HAVE_FD_CLOEXEC)
-+    if (ngx_cloexec(s) == -1) {
-+        ngx_log_error(NGX_LOG_ALERT, pc->log, ngx_socket_errno,
-+                      ngx_cloexec_n " failed");
-+
-+        goto failed;
-+    }
-+#endif
-+
-     if (pc->local) {
- 
- #if (NGX_HAVE_TRANSPARENT_PROXY)
-diff --git a/src/os/unix/ngx_process_cycle.c b/src/os/unix/ngx_process_cycle.c
-index c4376a5..48e8fa8 100644
---- a/src/os/unix/ngx_process_cycle.c
-+++ b/src/os/unix/ngx_process_cycle.c
-@@ -960,6 +1029,9 @@ ngx_worker_process_exit(ngx_cycle_t *cycle)
-         for (i = 0; i < cycle->connection_n; i++) {
-             if (c[i].fd != -1
-                 && c[i].read
-+#if (HAVE_SOCKET_CLOEXEC_PATCH)
-+                && !c[i].read->skip_socket_leak_check
-+#endif
-                 && !c[i].read->accept
-                 && !c[i].read->channel
-                 && !c[i].read->resolver)
-diff --git a/src/os/unix/ngx_socket.h b/src/os/unix/ngx_socket.h
-index fcc51533..d1eebf47 100644
---- a/src/os/unix/ngx_socket.h
-+++ b/src/os/unix/ngx_socket.h
-@@ -38,6 +38,17 @@ int ngx_blocking(ngx_socket_t s);
- 
- #endif
- 
-+#if (NGX_HAVE_FD_CLOEXEC)
-+
-+#define ngx_cloexec(s)      fcntl(s, F_SETFD, FD_CLOEXEC)
-+#define ngx_cloexec_n       "fcntl(FD_CLOEXEC)"
-+
-+/* at least FD_CLOEXEC is required to ensure connection fd is closed
-+ * after execve */
-+#define HAVE_SOCKET_CLOEXEC_PATCH  1
-+
-+#endif
-+
- int ngx_tcp_nopush(ngx_socket_t s);
- int ngx_tcp_push(ngx_socket_t s);
- 
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-ssl_cert_cb_yield.patch b/images/nginx/rootfs/patches/nginx-1.21.4-ssl_cert_cb_yield.patch
deleted file mode 100644
index 89773c05e..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-ssl_cert_cb_yield.patch
+++ /dev/null
@@ -1,64 +0,0 @@
-# HG changeset patch
-# User Yichun Zhang <agentzh@openresty.org>
-# Date 1451762084 28800
-#      Sat Jan 02 11:14:44 2016 -0800
-# Node ID 449f0461859c16e95bdb18e8be6b94401545d3dd
-# Parent  78b4e10b4367b31367aad3c83c9c3acdd42397c4
-SSL: handled SSL_CTX_set_cert_cb() callback yielding.
-
-OpenSSL 1.0.2+ introduces SSL_CTX_set_cert_cb() to allow custom
-callbacks to serve the SSL certificiates and private keys dynamically
-and lazily. The callbacks may yield for nonblocking I/O or sleeping.
-Here we added support for such usage in NGINX 3rd-party modules
-(like ngx_lua) in NGINX's event handlers for downstream SSL
-connections.
-
-diff -r 78b4e10b4367 -r 449f0461859c src/event/ngx_event_openssl.c
---- a/src/event/ngx_event_openssl.c Thu Dec 17 16:39:15 2015 +0300
-+++ b/src/event/ngx_event_openssl.c Sat Jan 02 11:14:44 2016 -0800
-@@ -1445,6 +1445,23 @@ ngx_ssl_handshake(ngx_connection_t *c)
-         return NGX_AGAIN;
-     }
- 
-+#if OPENSSL_VERSION_NUMBER >= 0x10002000L
-+    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP) {
-+        c->read->handler = ngx_ssl_handshake_handler;
-+        c->write->handler = ngx_ssl_handshake_handler;
-+
-+        if (ngx_handle_read_event(c->read, 0) != NGX_OK) {
-+            return NGX_ERROR;
-+        }
-+
-+        if (ngx_handle_write_event(c->write, 0) != NGX_OK) {
-+            return NGX_ERROR;
-+        }
-+
-+        return NGX_AGAIN;
-+    }
-+#endif
-+
-     err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
- 
-     c->ssl->no_wait_shutdown = 1;
-@@ -1558,6 +1575,21 @@ ngx_ssl_try_early_data(ngx_connection_t *c)
-         return NGX_AGAIN;
-     }
- 
-+    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP) {
-+        c->read->handler = ngx_ssl_handshake_handler;
-+        c->write->handler = ngx_ssl_handshake_handler;
-+
-+        if (ngx_handle_read_event(c->read, 0) != NGX_OK) {
-+            return NGX_ERROR;
-+        }
-+
-+        if (ngx_handle_write_event(c->write, 0) != NGX_OK) {
-+            return NGX_ERROR;
-+        }
-+
-+        return NGX_AGAIN;
-+    }
-+
-     err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
- 
-     c->ssl->no_wait_shutdown = 1;
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-ssl_sess_cb_yield.patch b/images/nginx/rootfs/patches/nginx-1.21.4-ssl_sess_cb_yield.patch
deleted file mode 100644
index ac5fe65eb..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-ssl_sess_cb_yield.patch
+++ /dev/null
@@ -1,41 +0,0 @@
-diff --git a/src/event/ngx_event_openssl.c b/src/event/ngx_event_openssl.c
---- a/src/event/ngx_event_openssl.c
-+++ b/src/event/ngx_event_openssl.c
-@@ -1446,7 +1446,12 @@ ngx_ssl_handshake(ngx_connection_t *c)
-     }
- 
- #if OPENSSL_VERSION_NUMBER >= 0x10002000L
--    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP) {
-+    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP
-+#   ifdef SSL_ERROR_PENDING_SESSION
-+        || sslerr == SSL_ERROR_PENDING_SESSION
-+#   endif
-+       )
-+    {
-         c->read->handler = ngx_ssl_handshake_handler;
-         c->write->handler = ngx_ssl_handshake_handler;
- 
-@@ -1575,6 +1580,23 @@ ngx_ssl_try_early_data(ngx_connection_t *c)
-         return NGX_AGAIN;
-     }
- 
-+#ifdef SSL_ERROR_PENDING_SESSION
-+    if (sslerr == SSL_ERROR_PENDING_SESSION) {
-+        c->read->handler = ngx_ssl_handshake_handler;
-+        c->write->handler = ngx_ssl_handshake_handler;
-+
-+        if (ngx_handle_read_event(c->read, 0) != NGX_OK) {
-+            return NGX_ERROR;
-+        }
-+
-+        if (ngx_handle_write_event(c->write, 0) != NGX_OK) {
-+            return NGX_ERROR;
-+        }
-+
-+        return NGX_AGAIN;
-+    }
-+#endif
-+
-     err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
- 
-     c->ssl->no_wait_shutdown = 1;
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch b/images/nginx/rootfs/patches/nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch
deleted file mode 100644
index cb881f070..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch
+++ /dev/null
@@ -1,31 +0,0 @@
-diff --git a/src/stream/ngx_stream.h b/src/stream/ngx_stream.h
-index 09d2459..de92724 100644
---- a/src/stream/ngx_stream.h
-+++ b/src/stream/ngx_stream.h
-@@ -303,4 +303,7 @@ typedef ngx_int_t (*ngx_stream_filter_pt)(ngx_stream_session_t *s,
- extern ngx_stream_filter_pt  ngx_stream_top_filter;
- 
- 
-+#define HAS_NGX_STREAM_PROXY_GET_NEXT_UPSTREAM_TRIES_PATCH 1
-+
-+
- #endif /* _NGX_STREAM_H_INCLUDED_ */
-diff --git a/src/stream/ngx_stream_proxy_module.c b/src/stream/ngx_stream_proxy_module.c
-index 0afde1c..3254ce1 100644
---- a/src/stream/ngx_stream_proxy_module.c
-+++ b/src/stream/ngx_stream_proxy_module.c
-@@ -2156,3 +2156,14 @@ ngx_stream_proxy_bind(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
- 
-     return NGX_CONF_OK;
- }
-+
-+
-+ngx_uint_t
-+ngx_stream_proxy_get_next_upstream_tries(ngx_stream_session_t *s)
-+{
-+    ngx_stream_proxy_srv_conf_t      *pscf;
-+
-+    pscf = ngx_stream_get_module_srv_conf(s, ngx_stream_proxy_module);
-+
-+    return pscf->next_upstream_tries;
-+}
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-stream_ssl_preread_no_skip.patch b/images/nginx/rootfs/patches/nginx-1.21.4-stream_ssl_preread_no_skip.patch
deleted file mode 100644
index e45e9f69a..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-stream_ssl_preread_no_skip.patch
+++ /dev/null
@@ -1,13 +0,0 @@
-diff --git a/src/stream/ngx_stream_ssl_preread_module.c b/src/stream/ngx_stream_ssl_preread_module.c
-index e3d11fd9..3717b5fe 100644
---- a/src/stream/ngx_stream_ssl_preread_module.c
-+++ b/src/stream/ngx_stream_ssl_preread_module.c
-@@ -159,7 +159,7 @@ ngx_stream_ssl_preread_handler(ngx_stream_session_t *s)
- 
-         rc = ngx_stream_ssl_preread_parse_record(ctx, p, p + len);
-         if (rc != NGX_AGAIN) {
--            return rc;
-+            return rc == NGX_OK ? NGX_DECLINED : rc;
-         }
- 
-         p += len;
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-upstream_pipelining.patch b/images/nginx/rootfs/patches/nginx-1.21.4-upstream_pipelining.patch
deleted file mode 100644
index aed80365a..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-upstream_pipelining.patch
+++ /dev/null
@@ -1,23 +0,0 @@
-commit f9907b72a76a21ac5413187b83177a919475c75f
-Author: Yichun Zhang (agentzh) <agentzh@gmail.com>
-Date:   Wed Feb 10 16:05:08 2016 -0800
-
-    bugfix: upstream: keep sending request data after the first write attempt.
-    
-    See
-    http://mailman.nginx.org/pipermail/nginx-devel/2012-March/002040.html
-    for more details on the issue.
-
-diff --git a/src/http/ngx_http_upstream.c b/src/http/ngx_http_upstream.c
-index 69019417..92b7c97f 100644
---- a/src/http/ngx_http_upstream.c
-+++ b/src/http/ngx_http_upstream.c
-@@ -2239,7 +2239,7 @@ ngx_http_upstream_send_request_handler(ngx_http_request_t *r,
-
- #endif
-
--    if (u->header_sent && !u->conf->preserve_output) {
-+    if (u->request_body_sent && !u->conf->preserve_output) {
-         u->write_event_handler = ngx_http_upstream_dummy_handler;
-
-         (void) ngx_handle_write_event(c->write, 0);
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-upstream_timeout_fields.patch b/images/nginx/rootfs/patches/nginx-1.21.4-upstream_timeout_fields.patch
deleted file mode 100644
index 2314ddf80..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-upstream_timeout_fields.patch
+++ /dev/null
@@ -1,112 +0,0 @@
-diff --git a/src/http/ngx_http_upstream.c b/src/http/ngx_http_upstream.c
-index 69019417..2265d8f7 100644
---- a/src/http/ngx_http_upstream.c
-+++ b/src/http/ngx_http_upstream.c
-@@ -509,12 +509,19 @@ void
- ngx_http_upstream_init(ngx_http_request_t *r)
- {
-     ngx_connection_t     *c;
-+    ngx_http_upstream_t  *u;
- 
-     c = r->connection;
- 
-     ngx_log_debug1(NGX_LOG_DEBUG_HTTP, c->log, 0,
-                    "http init upstream, client timer: %d", c->read->timer_set);
- 
-+    u = r->upstream;
-+
-+    u->connect_timeout = u->conf->connect_timeout;
-+    u->send_timeout = u->conf->send_timeout;
-+    u->read_timeout = u->conf->read_timeout;
-+
- #if (NGX_HTTP_V2)
-     if (r->stream) {
-         ngx_http_upstream_init_request(r);
-@@ -1626,7 +1633,7 @@ ngx_http_upstream_connect(ngx_http_request_t *r, ngx_http_upstream_t *u)
-     u->request_body_blocked = 0;
- 
-     if (rc == NGX_AGAIN) {
--        ngx_add_timer(c->write, u->conf->connect_timeout);
-+        ngx_add_timer(c->write, u->connect_timeout);
-         return;
-     }
- 
-@@ -1704,7 +1711,7 @@ ngx_http_upstream_ssl_init_connection(ngx_http_request_t *r,
-     if (rc == NGX_AGAIN) {
- 
-         if (!c->write->timer_set) {
--            ngx_add_timer(c->write, u->conf->connect_timeout);
-+            ngx_add_timer(c->write, u->connect_timeout);
-         }
- 
-         c->ssl->handler = ngx_http_upstream_ssl_handshake_handler;
-@@ -2022,7 +2029,7 @@ ngx_http_upstream_send_request(ngx_http_request_t *r, ngx_http_upstream_t *u,
- 
-     if (rc == NGX_AGAIN) {
-         if (!c->write->ready || u->request_body_blocked) {
--            ngx_add_timer(c->write, u->conf->send_timeout);
-+            ngx_add_timer(c->write, u->send_timeout);
- 
-         } else if (c->write->timer_set) {
-             ngx_del_timer(c->write);
-@@ -2084,7 +2091,7 @@ ngx_http_upstream_send_request(ngx_http_request_t *r, ngx_http_upstream_t *u,
-             return;
-         }
- 
--        ngx_add_timer(c->read, u->conf->read_timeout);
-+        ngx_add_timer(c->read, u->read_timeout);
- 
-         if (c->read->ready) {
-             ngx_http_upstream_process_header(r, u);
-@@ -3213,7 +3220,7 @@ ngx_http_upstream_send_response(ngx_http_request_t *r, ngx_http_upstream_t *u)
-         p->cyclic_temp_file = 0;
-     }
- 
--    p->read_timeout = u->conf->read_timeout;
-+    p->read_timeout = u->read_timeout;
-     p->send_timeout = clcf->send_timeout;
-     p->send_lowat = clcf->send_lowat;
- 
-@@ -3458,7 +3465,7 @@ ngx_http_upstream_process_upgraded(ngx_http_request_t *r,
-     }
- 
-     if (upstream->write->active && !upstream->write->ready) {
--        ngx_add_timer(upstream->write, u->conf->send_timeout);
-+        ngx_add_timer(upstream->write, u->send_timeout);
- 
-     } else if (upstream->write->timer_set) {
-         ngx_del_timer(upstream->write);
-@@ -3470,7 +3477,7 @@ ngx_http_upstream_process_upgraded(ngx_http_request_t *r,
-     }
- 
-     if (upstream->read->active && !upstream->read->ready) {
--        ngx_add_timer(upstream->read, u->conf->read_timeout);
-+        ngx_add_timer(upstream->read, u->read_timeout);
- 
-     } else if (upstream->read->timer_set) {
-         ngx_del_timer(upstream->read);
-@@ -3664,7 +3671,7 @@ ngx_http_upstream_process_non_buffered_request(ngx_http_request_t *r,
-     }
- 
-     if (upstream->read->active && !upstream->read->ready) {
--        ngx_add_timer(upstream->read, u->conf->read_timeout);
-+        ngx_add_timer(upstream->read, u->read_timeout);
- 
-     } else if (upstream->read->timer_set) {
-         ngx_del_timer(upstream->read);
-diff --git a/src/http/ngx_http_upstream.h b/src/http/ngx_http_upstream.h
-index c2f4dc0b..b9eef118 100644
---- a/src/http/ngx_http_upstream.h
-+++ b/src/http/ngx_http_upstream.h
-@@ -333,6 +333,11 @@ struct ngx_http_upstream_s {
-     ngx_array_t                     *caches;
- #endif
- 
-+#define HAVE_NGX_UPSTREAM_TIMEOUT_FIELDS  1
-+    ngx_msec_t                       connect_timeout;
-+    ngx_msec_t                       send_timeout;
-+    ngx_msec_t                       read_timeout;
-+
-     ngx_http_upstream_headers_in_t   headers_in;
- 
-     ngx_http_upstream_resolved_t    *resolved;

From 3a9cd1bd7e9f9938a8c6b44a6e51bd5b7dc85f59 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 21 Nov 2023 13:23:04 -0500
Subject: [PATCH 1031/1641] sremove the v

---
 images/nginx/rootfs/build.sh | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 1ecb49022..118dee1be 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -99,7 +99,7 @@ export LUA_RESTY_COOKIE_VERSION=9533f479371663107b515590fc9daf00d61ebf11
 export LUA_RESTY_DNS=0.22
 
 # Check for recent changes: https://github.com/ledgetech/lua-resty-http/compare/v0.17.1...master
-export LUA_RESTY_HTTP=v0.17.1
+export LUA_RESTY_HTTP=0.17.1
 
 # Check for recent changes: https://github.com/openresty/lua-resty-lock/compare/v0.09...master
 export LUA_RESTY_LOCK=0.09
@@ -298,7 +298,7 @@ get_src 70e9a01eb32ccade0d5116a25bcffde0445b94ad35035ce06b94ccd260ad1bf0 \
         "https://github.com/openresty/lua-resty-dns/archive/v$LUA_RESTY_DNS.tar.gz"
 
 get_src f52a0538b20a2d45025f318c18a138b78f6f88f07713dd0ed502183cb3d16f17 \
-        "https://github.com/ledgetech/lua-resty-http/archive/$LUA_RESTY_HTTP.tar.gz"
+        "https://github.com/ledgetech/lua-resty-http/archive/v$LUA_RESTY_HTTP.tar.gz"
 
 get_src 02733575c4aed15f6cab662378e4b071c0a4a4d07940c4ef19a7319e9be943d4 \
         "https://github.com/openresty/lua-resty-memcached/archive/v$LUA_RESTY_MEMCACHED_VERSION.tar.gz"
@@ -467,8 +467,6 @@ make install
 cd "$BUILD_PATH"
 git clone --depth=100 https://github.com/google/ngx_brotli.git
 cd ngx_brotli
-# https://github.com/google/ngx_brotli/issues/156
-git reset --hard 63ca02abdcf79c9e788d2eedcc388d2335902e52
 git submodule init
 git submodule update
 

From 7f723c59855e82614582ff7b2efd1783b1afc2ee Mon Sep 17 00:00:00 2001
From: Tore <tore.lonoy@gmail.com>
Date: Wed, 22 Nov 2023 11:59:09 +0100
Subject: [PATCH 1032/1641] docs: add index for global-auth-always-set-cookie
 (#10670)

---
 docs/user-guide/nginx-configuration/configmap.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index f44aeeec7..7038ca90d 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -219,6 +219,7 @@ The following table shows a configuration option's name, type, and the default v
 |[global-auth-snippet](#global-auth-snippet)|string|""||
 |[global-auth-cache-key](#global-auth-cache-key)|string|""||
 |[global-auth-cache-duration](#global-auth-cache-duration)|string|"200 202 401 5m"||
+|[global-auth-always-set-cookie](#global-auth-always-set-cookie)|bool|"false"||
 |[no-auth-locations](#no-auth-locations)|string|"/.well-known/acme-challenge"||
 |[block-cidrs](#block-cidrs)|[]string|""||
 |[block-user-agents](#block-user-agents)|[]string|""||

From e6d3bbb520c2d902372a5215c9f1d2c68ba44c08 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 27 Nov 2023 16:39:48 +0100
Subject: [PATCH 1033/1641] Chart: Promote myself to approver & reviewer.

---
 OWNERS_ALIASES | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/OWNERS_ALIASES b/OWNERS_ALIASES
index cd9001dd2..82b76f19b 100644
--- a/OWNERS_ALIASES
+++ b/OWNERS_ALIASES
@@ -27,10 +27,12 @@ aliases:
   ingress-nginx-helm-maintainers:
   - cpanato
   - strongjz
+  - Gacko
 
   ingress-nginx-helm-reviewers:
   - cpanato
   - strongjz
+  - Gacko
 
   ingress-nginx-docs-maintainers:
   - longwuyuan

From f3f0ee539df34b57bf9d88f0019f5bb1ec5e927a Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 27 Nov 2023 16:52:57 +0100
Subject: [PATCH 1034/1641] Chart: Put me in alphabetical order.

---
 OWNERS_ALIASES | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/OWNERS_ALIASES b/OWNERS_ALIASES
index 82b76f19b..5423743db 100644
--- a/OWNERS_ALIASES
+++ b/OWNERS_ALIASES
@@ -26,13 +26,13 @@ aliases:
 
   ingress-nginx-helm-maintainers:
   - cpanato
-  - strongjz
   - Gacko
+  - strongjz
 
   ingress-nginx-helm-reviewers:
   - cpanato
-  - strongjz
   - Gacko
+  - strongjz
 
   ingress-nginx-docs-maintainers:
   - longwuyuan

From 6cd7331bd59798bfaa97b4a4e55cf16927d0baf1 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Wed, 8 Nov 2023 14:12:22 +0100
Subject: [PATCH 1035/1641] Repository: Rename `Changelog.md.gotmpl` into
 `changelog/controller.md.gotmpl`.

---
 Changelog.md.gotmpl => changelog/controller.md.gotmpl | 0
 magefiles/utils/releasenote.go                        | 2 +-
 2 files changed, 1 insertion(+), 1 deletion(-)
 rename Changelog.md.gotmpl => changelog/controller.md.gotmpl (100%)

diff --git a/Changelog.md.gotmpl b/changelog/controller.md.gotmpl
similarity index 100%
rename from Changelog.md.gotmpl
rename to changelog/controller.md.gotmpl
diff --git a/magefiles/utils/releasenote.go b/magefiles/utils/releasenote.go
index fa883104f..d4e9a757e 100644
--- a/magefiles/utils/releasenote.go
+++ b/magefiles/utils/releasenote.go
@@ -37,7 +37,7 @@ type ReleaseNote struct {
 
 func (r ReleaseNote) Template() {
 	// Files are provided as a slice of strings.
-	changelogTemplate, err := os.ReadFile("Changelog.md.gotmpl")
+	changelogTemplate, err := os.ReadFile("changelog/controller.md.gotmpl")
 	if err != nil {
 		ErrorF("Could not read changelog template file %s", err)
 	}

From 7e34a676b975b0795ff181ccf75d992ea7c6364d Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Wed, 8 Nov 2023 14:12:57 +0100
Subject: [PATCH 1036/1641] Repository: Improve
 `changelog/controller.md.gotmpl`.

---
 changelog/controller.md.gotmpl | 29 ++++++++++++++++++-----------
 1 file changed, 18 insertions(+), 11 deletions(-)

diff --git a/changelog/controller.md.gotmpl b/changelog/controller.md.gotmpl
index d35df8ade..e1ae13cc5 100644
--- a/changelog/controller.md.gotmpl
+++ b/changelog/controller.md.gotmpl
@@ -1,15 +1,22 @@
 # Changelog
 
-### {{  .Version }}
-Images:
+### {{ .NewControllerVersion }}
 {{ with .ControllerImages }}
-{{ range . }} * {{ .Registry }}/{{ .Name }}:{{ .Tag}}@{{ .Digest }}
-{{ end }} {{ end }}
-### All Changes:
-{{ with .Updates }}
-{{ range . }}* {{ . }}
-{{ end }}{{ end }}
-### Dependencies updates: {{ with .DepUpdates }}
-{{ range . }}* {{ . }}
-{{ end }} {{ end }}
+Images:
+{{ range . }}
+* {{ .Registry }}/{{ .Name }}:{{ .Tag}}@{{ .Digest }}
+{{- end }}
+{{ end }}
+{{- with .Updates }}
+### All changes:
+{{ range . }}
+* {{ . }}
+{{- end }}
+{{ end }}
+{{- with .DepUpdates }}
+### Dependency updates:
+{{ range . }}
+* {{ . }}
+{{- end }}
+{{ end }}
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-{{ .PreviousControllerVersion }}...controller-{{ .NewControllerVersion }}

From 84bdad5341e8da721557176049321e3af54dc566 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Wed, 8 Nov 2023 13:47:17 +0100
Subject: [PATCH 1037/1641] Repository: Rename `changelog/Changelog-*.md` into
 `changelog/controller-*.md`.

---
 changelog/{Changelog-1.6.4.md => controller-1.6.4.md}           | 0
 changelog/{Changelog-1.7.0.md => controller-1.7.0.md}           | 0
 changelog/{Changelog-1.7.1.md => controller-1.7.1.md}           | 0
 changelog/{Changelog-1.8.0.md => controller-1.8.0.md}           | 0
 changelog/{Changelog-1.8.1.md => controller-1.8.1.md}           | 0
 changelog/{Changelog-1.8.2.md => controller-1.8.2.md}           | 0
 .../{Changelog-1.9.0-beta.0.md => controller-1.9.0-beta.0.md}   | 0
 changelog/{Changelog-1.9.0.md => controller-1.9.0.md}           | 0
 changelog/{Changelog-1.9.1.md => controller-1.9.1.md}           | 0
 changelog/{Changelog-1.9.3.md => controller-1.9.3.md}           | 0
 changelog/{Changelog-1.9.4.md => controller-1.9.4.md}           | 0
 magefiles/utils/releasenote.go                                  | 2 +-
 12 files changed, 1 insertion(+), 1 deletion(-)
 rename changelog/{Changelog-1.6.4.md => controller-1.6.4.md} (100%)
 rename changelog/{Changelog-1.7.0.md => controller-1.7.0.md} (100%)
 rename changelog/{Changelog-1.7.1.md => controller-1.7.1.md} (100%)
 rename changelog/{Changelog-1.8.0.md => controller-1.8.0.md} (100%)
 rename changelog/{Changelog-1.8.1.md => controller-1.8.1.md} (100%)
 rename changelog/{Changelog-1.8.2.md => controller-1.8.2.md} (100%)
 rename changelog/{Changelog-1.9.0-beta.0.md => controller-1.9.0-beta.0.md} (100%)
 rename changelog/{Changelog-1.9.0.md => controller-1.9.0.md} (100%)
 rename changelog/{Changelog-1.9.1.md => controller-1.9.1.md} (100%)
 rename changelog/{Changelog-1.9.3.md => controller-1.9.3.md} (100%)
 rename changelog/{Changelog-1.9.4.md => controller-1.9.4.md} (100%)

diff --git a/changelog/Changelog-1.6.4.md b/changelog/controller-1.6.4.md
similarity index 100%
rename from changelog/Changelog-1.6.4.md
rename to changelog/controller-1.6.4.md
diff --git a/changelog/Changelog-1.7.0.md b/changelog/controller-1.7.0.md
similarity index 100%
rename from changelog/Changelog-1.7.0.md
rename to changelog/controller-1.7.0.md
diff --git a/changelog/Changelog-1.7.1.md b/changelog/controller-1.7.1.md
similarity index 100%
rename from changelog/Changelog-1.7.1.md
rename to changelog/controller-1.7.1.md
diff --git a/changelog/Changelog-1.8.0.md b/changelog/controller-1.8.0.md
similarity index 100%
rename from changelog/Changelog-1.8.0.md
rename to changelog/controller-1.8.0.md
diff --git a/changelog/Changelog-1.8.1.md b/changelog/controller-1.8.1.md
similarity index 100%
rename from changelog/Changelog-1.8.1.md
rename to changelog/controller-1.8.1.md
diff --git a/changelog/Changelog-1.8.2.md b/changelog/controller-1.8.2.md
similarity index 100%
rename from changelog/Changelog-1.8.2.md
rename to changelog/controller-1.8.2.md
diff --git a/changelog/Changelog-1.9.0-beta.0.md b/changelog/controller-1.9.0-beta.0.md
similarity index 100%
rename from changelog/Changelog-1.9.0-beta.0.md
rename to changelog/controller-1.9.0-beta.0.md
diff --git a/changelog/Changelog-1.9.0.md b/changelog/controller-1.9.0.md
similarity index 100%
rename from changelog/Changelog-1.9.0.md
rename to changelog/controller-1.9.0.md
diff --git a/changelog/Changelog-1.9.1.md b/changelog/controller-1.9.1.md
similarity index 100%
rename from changelog/Changelog-1.9.1.md
rename to changelog/controller-1.9.1.md
diff --git a/changelog/Changelog-1.9.3.md b/changelog/controller-1.9.3.md
similarity index 100%
rename from changelog/Changelog-1.9.3.md
rename to changelog/controller-1.9.3.md
diff --git a/changelog/Changelog-1.9.4.md b/changelog/controller-1.9.4.md
similarity index 100%
rename from changelog/Changelog-1.9.4.md
rename to changelog/controller-1.9.4.md
diff --git a/magefiles/utils/releasenote.go b/magefiles/utils/releasenote.go
index d4e9a757e..f2e72f921 100644
--- a/magefiles/utils/releasenote.go
+++ b/magefiles/utils/releasenote.go
@@ -44,7 +44,7 @@ func (r ReleaseNote) Template() {
 	Debug("ChangeLog Templates %s", string(changelogTemplate))
 	t := template.Must(template.New("changelog").Parse(string(changelogTemplate)))
 	// create a new file
-	file, err := os.Create(fmt.Sprintf("changelog/Changelog-%s.md", r.Version))
+	file, err := os.Create(fmt.Sprintf("changelog/controller-%s.md", r.Version))
 	if err != nil {
 		ErrorF("Could not create changelog file %s", err)
 	}

From 433781c9186609ff6a31c76bbf8e1b5075e1384b Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Wed, 8 Nov 2023 14:35:00 +0100
Subject: [PATCH 1038/1641] Repository: Align `changelog/controller-*.md` to
 `changelog/controller.md.gotmpl`.

---
 changelog/controller-1.6.4.md        | 14 ++++++++------
 changelog/controller-1.7.0.md        | 14 ++++++++------
 changelog/controller-1.7.1.md        | 14 ++++++++------
 changelog/controller-1.8.0.md        | 17 +++++++----------
 changelog/controller-1.8.1.md        | 14 ++++++++------
 changelog/controller-1.8.2.md        | 10 +++++-----
 changelog/controller-1.9.0-beta.0.md | 14 ++++++++------
 changelog/controller-1.9.0.md        | 14 ++++++++------
 changelog/controller-1.9.1.md        | 14 ++++++++------
 changelog/controller-1.9.3.md        | 14 ++++++++------
 changelog/controller-1.9.4.md        |  9 +++++----
 11 files changed, 81 insertions(+), 67 deletions(-)

diff --git a/changelog/controller-1.6.4.md b/changelog/controller-1.6.4.md
index 5f940d1c4..256e5ec09 100644
--- a/changelog/controller-1.6.4.md
+++ b/changelog/controller-1.6.4.md
@@ -1,12 +1,13 @@
 # Changelog
 
 ### 1.6.4
+
 Images:
 
- * registry.k8s.io/controller:controller-v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
- * registry.k8s.io/controller-chroot:controller-v1.6.4@sha256:0de01e2c316c3ca7847ca13b32d077af7910d07f21a4a82f81061839764f8f81
- 
-### All Changes:
+* registry.k8s.io/controller:controller-v1.6.4@sha256:15be4666c53052484dd2992efacf2f50ea77a78ae8aa21ccd91af6baaa7ea22f
+* registry.k8s.io/controller-chroot:controller-v1.6.4@sha256:0de01e2c316c3ca7847ca13b32d077af7910d07f21a4a82f81061839764f8f81
+
+### All changes:
 
 * remove tests and regex path checks (#9626)
 * Fix incorrect annotation name in upstream hashing configuration (#9617)
@@ -99,7 +100,8 @@ Images:
 * PDB: Add `maxUnavailable`. (#9278)
 * add containerSecurityContext to extraModules init containers (kubernetes#9016) (#9242)
 
-### Dependencies updates: 
+### Dependency updates:
+
 * Bump google.golang.org/grpc from 1.52.0 to 1.52.3 (#9555)
 * Bump k8s.io/klog/v2 from 2.80.1 to 2.90.0 (#9553)
 * Bump sigs.k8s.io/controller-runtime from 0.13.1 to 0.14.2 (#9552)
@@ -132,5 +134,5 @@ Images:
 * Bump github.com/onsi/ginkgo/v2 from 2.4.0 to 2.5.1 (#9317)
 * Bump actions/dependency-review-action from 2.5.1 to 3.0.0 (#9301)
 * Bump k8s.io/component-base from 0.25.3 to 0.25.4 (#9300)
- 
+
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.5.1...controller-controller-v1.6.4
diff --git a/changelog/controller-1.7.0.md b/changelog/controller-1.7.0.md
index 6a938c5f5..97f0ebf22 100644
--- a/changelog/controller-1.7.0.md
+++ b/changelog/controller-1.7.0.md
@@ -1,12 +1,13 @@
 # Changelog
 
 ### 1.7.0
+
 Images:
 
- * registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
- * registry.k8s.io/ingress-nginx/controller-chroot:v1.7.0@sha256:e84ef3b44c8efeefd8b0aa08770a886bfea1f04c53b61b4ba9a7204e9f1a7edc
- 
-### All Changes:
+* registry.k8s.io/ingress-nginx/controller:v1.7.0@sha256:7612338342a1e7b8090bef78f2a04fffcadd548ccaabe8a47bf7758ff549a5f7
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.7.0@sha256:e84ef3b44c8efeefd8b0aa08770a886bfea1f04c53b61b4ba9a7204e9f1a7edc
+
+### All changes:
 
 * kick off 1.7.0 build (#9775)
 * Update exposing-tcp-udp-services.md (#9777)
@@ -46,7 +47,8 @@ Images:
 * Fix incorrect annotation name in upstream hashing configuration (#9617)
 * Release docs for Controller v1.6.3 and Helm v4.5.0 (#9614)
 
-### Dependencies updates: 
+### Dependency updates:
+
 * Bump aquasecurity/trivy-action from 0.8.0 to 0.9.2 (#9767)
 * Bump k8s.io/component-base from 0.26.2 to 0.26.3 (#9764)
 * Bump actions/dependency-review-action from 3.0.3 to 3.0.4 (#9766)
@@ -74,5 +76,5 @@ Images:
 * Bump google.golang.org/grpc from 1.52.3 to 1.53.0 (#9610)
 * Bump github.com/prometheus/client_golang (#9630)
 * Bump golang.org/x/crypto from 0.5.0 to 0.6.0 (#9609)
- 
+
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.6.3...controller-controller-v1.7.0
diff --git a/changelog/controller-1.7.1.md b/changelog/controller-1.7.1.md
index 9b8422c7e..632ffe963 100644
--- a/changelog/controller-1.7.1.md
+++ b/changelog/controller-1.7.1.md
@@ -1,12 +1,13 @@
 # Changelog
 
 ### 1.7.1
+
 Images:
 
- * registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
- * registry.k8s.io/ingress-nginx/controller-chroot:v1.7.1@sha256:e35d5ab487861b9d419c570e3530589229224a0762c7b4d2e2222434abb8d988
- 
-### All Changes:
+* registry.k8s.io/ingress-nginx/controller:v1.7.1@sha256:7244b95ea47bddcb8267c1e625fb163fc183ef55448855e3ac52a7b260a60407
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.7.1@sha256:e35d5ab487861b9d419c570e3530589229224a0762c7b4d2e2222434abb8d988
+
+### All changes:
 
 * Update TAG - 1.7.1 (#9922)
 * Update dependabot to watch docker images (#9600)
@@ -30,7 +31,8 @@ Images:
 * Values: Fix indention of commented values. (#9812)
 * The Ingress-Nginx project recently released version 1.7.0 of the controller, but the deployment documentation still referenced version 1.6.4. This commit updates the documentation to reference the latest version, ensuring that users have access to the most up-to-date information. Fixes#9787 (#9788)
 
-### Dependencies updates: 
+### Dependency updates:
+
 * Bump github.com/opencontainers/runc from 1.1.6 to 1.1.7 (#9912)
 * Bump github.com/prometheus/client_golang from 1.14.0 to 1.15.0 (#9868)
 * Bump aquasecurity/trivy-action from 0.9.2 to 0.10.0 (#9888)
@@ -48,5 +50,5 @@ Images:
 * Bump github.com/imdario/mergo from 0.3.13 to 0.3.15 (#9795)
 * Bump google.golang.org/grpc from 1.53.0 to 1.54.0 (#9794)
 * Bump sigs.k8s.io/controller-runtime from 0.14.5 to 0.14.6 (#9822)
- 
+
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.7.0...controller-controller-v1.7.1
diff --git a/changelog/controller-1.8.0.md b/changelog/controller-1.8.0.md
index a109c68ba..48b4cdefa 100644
--- a/changelog/controller-1.8.0.md
+++ b/changelog/controller-1.8.0.md
@@ -1,31 +1,28 @@
 # Changelog
 
 ### 1.8.0
+
 Images:
 
 * registry.k8s.io/ingress-nginx/controller:v1.8.0@sha256:744ae2afd433a395eeb13dc03d3313facba92e96ad71d9feaafc85925493fee3
 * registry.k8s.io/ingress-nginx/controller-chroot:v1.8.0@sha256:a45e41cd2b7670adf829759878f512d4208d0aec1869dae593a0fecd09a5e49e
 
-### Important Changes:
+### Important changes:
 
 * Validate path types (#9967)
 * images: upgrade to Alpine 3.18 (#9997)
 * Update documentation to reflect project name; Ingress-Nginx Controller
 
-For improving security on our 1.8.0 release includes a 
-[new, **optional** validation ](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#strict-validate-path-type) 
-that limits the characters accepted  on ".spec paths.path" when pathType=Exact or pathType=Prefix, 
-to alphanumeric characters only. More information can be found on our 
-[Google doc](https://docs.google.com/document/d/1HPvaEwHRuMSkXYkVIJ-w7IpijKdHfNynm_4N2Akt0CQ/edit?usp=sharing)
-, our new [ingress-nginx-dev mailing list](https://groups.google.com/a/kubernetes.io/g/ingress-nginx-dev/c/ebbBMo-zX-w)
-or in our [docs](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#strict-validate-path-type)
+For improving security, our 1.8.0 release includes a [new, **optional** validation ](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#strict-validate-path-type) that limits the characters accepted  on ".spec paths.path" when pathType=Exact or athType=Prefix, to alphanumeric characters only.
+
+More information can be found on our [Google doc](https://docs.google.com/document/d/1HPvaEwHRuMSkXYkVIJ-w7IpijKdHfNynm_4N2Akt0CQ/edit?usp=sharing), our new [ingress-nginx-dev mailing list](https://groups.google.com/a/kubernetes.io/g/ingress-nginx-dev/c/ebbBMo-zX-w) or in our [docs](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#strict-validate-path-type)
 
 ### Community Updates
 
 We are now posting updates and release to our twitter handle, [@IngressNginx](https://twitter.com/IngressNGINX) and
 on our new [ingress-nginx-dev mailing list](https://groups.google.com/a/kubernetes.io/g/ingress-nginx-dev/c/ebbBMo-zX-w)
 
-### All Changes:
+### All changes:
 
 * Add legacy to OpenTelemetry migration doc (#10011)
 * changed tagsha to recent builds (#10001)
@@ -64,4 +61,4 @@ on our new [ingress-nginx-dev mailing list](https://groups.google.com/a/kubernet
 * Bump github.com/prometheus/client_model from 0.3.0 to 0.4.0 (#9937)
 * Bump google.golang.org/grpc from 1.54.0 to 1.55.0 (#9936)
 
-**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.7.1...controller-controller-v1.8.0
\ No newline at end of file
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.7.1...controller-controller-v1.8.0
diff --git a/changelog/controller-1.8.1.md b/changelog/controller-1.8.1.md
index c84a7ce18..16d4a8409 100644
--- a/changelog/controller-1.8.1.md
+++ b/changelog/controller-1.8.1.md
@@ -1,12 +1,13 @@
 # Changelog
 
 ### 1.8.1
+
 Images:
 
- * registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
- * registry.k8s.io/ingress-nginx/controller-chroot:v1.8.1@sha256:e0d4121e3c5e39de9122e55e331a32d5ebf8d4d257227cb93ab54a1b912a7627
- 
-### All Changes:
+* registry.k8s.io/ingress-nginx/controller:v1.8.1@sha256:e5c4824e7375fcf2a393e1c03c293b69759af37a9ca6abdb91b13d78a93da8bd
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.8.1@sha256:e0d4121e3c5e39de9122e55e331a32d5ebf8d4d257227cb93ab54a1b912a7627
+
+### All changes:
 
 * netlify: Only trigger preview when there are changes in docs. (#10144)
 * changed to updated baseimage and reverted tag (#10143)
@@ -48,7 +49,8 @@ Images:
 * added helmshowvalues example (#10019)
 * release controller 1.8.0 and chart 4.7.0 (#10017)
 
-### Dependencies updates: 
+### Dependency updates:
+
 * Bump ossf/scorecard-action from 2.1.3 to 2.2.0 (#10133)
 * Bump google.golang.org/grpc from 1.56.0 to 1.56.1 (#10134)
 * Bump github.com/prometheus/client_golang from 1.15.1 to 1.16.0 (#10106)
@@ -63,5 +65,5 @@ Images:
 * Bump actions/dependency-review-action from 3.0.4 to 3.0.6 (#10042)
 * Bump github.com/stretchr/testify from 1.8.3 to 1.8.4 (#10041)
 * Bump github.com/stretchr/testify from 1.8.2 to 1.8.3 (#10005)
- 
+
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.8.0...controller-controller-v1.8.1
diff --git a/changelog/controller-1.8.2.md b/changelog/controller-1.8.2.md
index 12a273af2..0c20decc9 100644
--- a/changelog/controller-1.8.2.md
+++ b/changelog/controller-1.8.2.md
@@ -1,12 +1,13 @@
 # Changelog
 
 ### 1.8.2
+
 Images:
 
- * registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
- * registry.k8s.io/ingress-nginx/controller-chroot:v1.8.2@sha256:1317a563219f755a6094d990057c78e5c4dcea5e31f4ce1db8641e732a7d6133
- 
-### All Changes:
+* registry.k8s.io/ingress-nginx/controller:v1.8.2@sha256:74834d3d25b336b62cabeb8bf7f1d788706e2cf1cfd64022de4137ade8881ff2
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.8.2@sha256:1317a563219f755a6094d990057c78e5c4dcea5e31f4ce1db8641e732a7d6133
+
+### All changes:
 
 * Release v1.8.2 and Update Go to v1.21.1 (#10379)
 * Making auth access logs optional (#10380)
@@ -15,5 +16,4 @@ Images:
 * [release-1.8] Update images tags after adding git data in gcloud (#10233)
 * [release-1.8] Golang 1.20.6 for test runner (#10231)
 
-### Dependencies updates: 
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.8.1...controller-controller-v1.8.2
diff --git a/changelog/controller-1.9.0-beta.0.md b/changelog/controller-1.9.0-beta.0.md
index d1ffe148f..79ecf596e 100644
--- a/changelog/controller-1.9.0-beta.0.md
+++ b/changelog/controller-1.9.0-beta.0.md
@@ -1,12 +1,13 @@
 # Changelog
 
 ### 1.9.0-beta.0
+
 Images:
 
- * registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
- * registry.k8s.io/ingress-nginx/controller-chroot:v1.9.0-beta.0@sha256:60b4c95349ce2a81a3b2a76423ee483b847b89d3fa8cb148468434f606f3fa0c
- 
-### All Changes:
+* registry.k8s.io/ingress-nginx/controller:v1.9.0-beta.0@sha256:531377e4cc9dc62af40d742402222603259673f5a755a64d74122f256dfad8f9
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.9.0-beta.0@sha256:60b4c95349ce2a81a3b2a76423ee483b847b89d3fa8cb148468434f606f3fa0c
+
+### All changes:
 
 * Rework mage (#10418)
 * Start release of v1.9.0 beta0 (#10407)
@@ -59,7 +60,8 @@ Images:
 * Deprecate and remove AJP support (#10158)
 * release notes 1.8.1 (#10161)
 
-### Dependencies updates: 
+### Dependency updates:
+
 * Bump github.com/onsi/ginkgo/v2 from 2.9.5 to 2.12.0 (#10355)
 * Bump golang.org/x/crypto from 0.12.0 to 0.13.0 (#10399)
 * Bump actions/setup-go from 4.0.1 to 4.1.0 (#10403)
@@ -89,5 +91,5 @@ Images:
 * Bump golang.org/x/crypto from 0.10.0 to 0.11.0 (#10192)
 * Bump docker/setup-buildx-action from 2.8.0 to 2.9.0 (#10191)
 * Bump docker/setup-buildx-action from 2.7.0 to 2.8.0 (#10165)
- 
+
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-release-1.8...controller-controller-v1.9.0-beta.0
diff --git a/changelog/controller-1.9.0.md b/changelog/controller-1.9.0.md
index cd5396f05..25442894f 100644
--- a/changelog/controller-1.9.0.md
+++ b/changelog/controller-1.9.0.md
@@ -1,12 +1,13 @@
 # Changelog
 
 ### 1.9.0
+
 Images:
 
- * registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
- * registry.k8s.io/ingress-nginx/controller-chroot:v1.9.0@sha256:d9fa7a136de2104fb2ecfcf1666978bfab927f4a125b75c0fb471e6104366ab5
- 
-### All Changes:
+* registry.k8s.io/ingress-nginx/controller:v1.9.0@sha256:c15d1a617858d90fb8f8a2dd60b0676f2bb85c54e3ed11511794b86ec30c8c60
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.9.0@sha256:d9fa7a136de2104fb2ecfcf1666978bfab927f4a125b75c0fb471e6104366ab5
+
+### All changes:
 
 * Rework mage (#10418)
 * Start release of v1.9.0 beta0 (#10407)
@@ -59,7 +60,8 @@ Images:
 * Deprecate and remove AJP support (#10158)
 * release notes 1.8.1 (#10161)
 
-### Dependencies updates: 
+### Dependency updates:
+
 * Bump github.com/onsi/ginkgo/v2 from 2.9.5 to 2.12.0 (#10355)
 * Bump golang.org/x/crypto from 0.12.0 to 0.13.0 (#10399)
 * Bump actions/setup-go from 4.0.1 to 4.1.0 (#10403)
@@ -89,5 +91,5 @@ Images:
 * Bump golang.org/x/crypto from 0.10.0 to 0.11.0 (#10192)
 * Bump docker/setup-buildx-action from 2.8.0 to 2.9.0 (#10191)
 * Bump docker/setup-buildx-action from 2.7.0 to 2.8.0 (#10165)
- 
+
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-release-1.8...controller-controller-v1.9.0
diff --git a/changelog/controller-1.9.1.md b/changelog/controller-1.9.1.md
index 07790098f..b05c88eae 100644
--- a/changelog/controller-1.9.1.md
+++ b/changelog/controller-1.9.1.md
@@ -1,19 +1,21 @@
 # Changelog
 
 ### 1.9.1
+
 Images:
 
- * registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
- * registry.k8s.io/ingress-nginx/controller-chroot:v1.9.1@sha256:2ac744ef08850ee86ad7162451a6879f47c1a41c6a757f6b6f913c52103b8836
- 
-### All Changes:
+* registry.k8s.io/ingress-nginx/controller:v1.9.1@sha256:605a737877de78969493a4b1213b21de4ee425d2926906857b98050f57a95b25
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.9.1@sha256:2ac744ef08850ee86ad7162451a6879f47c1a41c6a757f6b6f913c52103b8836
+
+### All changes:
 
 * upgrade owasp modsecurity core rule set to v3.3.5 (#10437)
 * Start v1.9.1 release (#10463)
 * Accept backend protocol on any case (#10461)
 * Chart: Rework network policies. (#10438)
 
-### Dependencies updates: 
+### Dependency updates:
+
 * Bump google.golang.org/grpc from 1.58.0 to 1.58.1 (#10436)
- 
+
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.9.0...controller-controller-v1.9.1
diff --git a/changelog/controller-1.9.3.md b/changelog/controller-1.9.3.md
index 45dfaa371..59ba545d9 100644
--- a/changelog/controller-1.9.3.md
+++ b/changelog/controller-1.9.3.md
@@ -1,12 +1,13 @@
 # Changelog
 
 ### 1.9.3
+
 Images:
 
- * registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
- * registry.k8s.io/ingress-nginx/controller-chroot:v1.9.3@sha256:df4931fd6859fbf1a71e785f02a44b2f9a16f010ae852c442e9bb779cbefdc86
- 
-### All Changes:
+* registry.k8s.io/ingress-nginx/controller:v1.9.3@sha256:8fd21d59428507671ce0fb47f818b1d859c92d2ad07bb7c947268d433030ba98
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.9.3@sha256:df4931fd6859fbf1a71e785f02a44b2f9a16f010ae852c442e9bb779cbefdc86
+
+### All changes:
 
 * update nginx base, httpbun, e2e, helm webhook cert gen (#10506)
 * added warning for configuration-snippets usage (#10492)
@@ -16,12 +17,13 @@ Images:
 * update error and otel to have all the arch we support (#10476)
 * Remove curl from nginx base image (#10477)
 
-### Dependencies updates: 
+### Dependency updates:
+
 * Bump x/net (#10514)
 * Bump curl and Go version (#10503)
 * Bump google.golang.org/grpc from 1.58.2 to 1.58.3 (#10496)
 * Bump github.com/prometheus/client_model (#10486)
 * Bump ossf/scorecard-action from 2.2.0 to 2.3.0 (#10487)
 * Bump golang.org/x/crypto from 0.13.0 to 0.14.0 (#10485)
- 
+
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-controller-v1.9.1...controller-controller-v1.9.3
diff --git a/changelog/controller-1.9.4.md b/changelog/controller-1.9.4.md
index 5550a9d69..69c6ad2e3 100644
--- a/changelog/controller-1.9.4.md
+++ b/changelog/controller-1.9.4.md
@@ -1,12 +1,13 @@
 # Changelog
 
 ### 1.9.4
+
 Images:
 
- * registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
- * registry.k8s.io/ingress-nginx/controller-chroot:v1.9.4@sha256:5976b1067cfbca8a21d0ba53d71f83543a73316a61ea7f7e436d6cf84ddf9b26
- 
-### All Changes:
+* registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.9.4@sha256:5976b1067cfbca8a21d0ba53d71f83543a73316a61ea7f7e436d6cf84ddf9b26
+
+### All changes:
 
 * Cherry pick fcgi fix and release v1.9.4 (#10544)
 

From 559c03d1d379542e88b09997300081c5299356ef Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Wed, 8 Nov 2023 14:15:07 +0100
Subject: [PATCH 1039/1641] Chart: Rename `changelog.md.gotmpl` into
 `changelog/helm-chart.md.gotmpl`.

---
 .../{changelog.md.gotmpl => changelog/helm-chart.md.gotmpl}     | 0
 magefiles/utils/releasenote.go                                  | 2 +-
 2 files changed, 1 insertion(+), 1 deletion(-)
 rename charts/ingress-nginx/{changelog.md.gotmpl => changelog/helm-chart.md.gotmpl} (100%)

diff --git a/charts/ingress-nginx/changelog.md.gotmpl b/charts/ingress-nginx/changelog/helm-chart.md.gotmpl
similarity index 100%
rename from charts/ingress-nginx/changelog.md.gotmpl
rename to charts/ingress-nginx/changelog/helm-chart.md.gotmpl
diff --git a/magefiles/utils/releasenote.go b/magefiles/utils/releasenote.go
index f2e72f921..8dc081428 100644
--- a/magefiles/utils/releasenote.go
+++ b/magefiles/utils/releasenote.go
@@ -58,7 +58,7 @@ func (r ReleaseNote) Template() {
 
 func (r ReleaseNote) HelmTemplate() {
 	// Files are provided as a slice of strings.
-	changelogTemplate, err := os.ReadFile("charts/ingress-nginx/changelog.md.gotmpl")
+	changelogTemplate, err := os.ReadFile("charts/ingress-nginx/changelog/helm-chart.md.gotmpl")
 	if err != nil {
 		ErrorF("Could not read changelog template file %s", err)
 	}

From 84ced1ed1c4018eba38a96066e9f2506a9cc31bf Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Wed, 8 Nov 2023 14:15:38 +0100
Subject: [PATCH 1040/1641] Chart: Improve `changelog/helm-chart.md.gotmpl`.

---
 charts/ingress-nginx/changelog/helm-chart.md.gotmpl | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/charts/ingress-nginx/changelog/helm-chart.md.gotmpl b/charts/ingress-nginx/changelog/helm-chart.md.gotmpl
index de9885670..ef5add55d 100644
--- a/charts/ingress-nginx/changelog/helm-chart.md.gotmpl
+++ b/charts/ingress-nginx/changelog/helm-chart.md.gotmpl
@@ -2,8 +2,10 @@
 
 This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
 
-### {{  .NewHelmChartVersion }}
+### {{ .NewHelmChartVersion }}
 {{ with .HelmUpdates }}
-{{ range . }}* {{ . }}
-{{ end }}{{ end }}
+{{- range . }}
+* {{ . }}
+{{- end }}
+{{ end }}
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-{{ .PreviousHelmChartVersion }}...helm-chart-{{ .NewHelmChartVersion }}

From b8e4e3cebabd84a08c418691a596c1d30b28bc02 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Wed, 8 Nov 2023 14:18:19 +0100
Subject: [PATCH 1041/1641] Chart: Rename `changelog/Changelog-*.md` into
 `changelog/helm-chart-*.md`.

---
 .../changelog/{Changelog-4.5.2.md => helm-chart-4.5.2.md}     | 0
 .../changelog/{Changelog-4.6.0.md => helm-chart-4.6.0.md}     | 0
 .../changelog/{Changelog-4.6.1.md => helm-chart-4.6.1.md}     | 0
 .../changelog/{Changelog-4.7.0.md => helm-chart-4.7.0.md}     | 0
 .../changelog/{Changelog-4.7.1.md => helm-chart-4.7.1.md}     | 0
 .../changelog/{Changelog-4.7.2.md => helm-chart-4.7.2.md}     | 0
 .../{Changelog-4.8.0-beta.0.md => helm-chart-4.8.0-beta.0.md} | 0
 .../changelog/{Changelog-4.8.0.md => helm-chart-4.8.0.md}     | 0
 .../changelog/{Changelog-4.8.1.md => helm-chart-4.8.1.md}     | 0
 .../changelog/{Changelog-4.8.2.md => helm-chart-4.8.2.md}     | 4 ++--
 .../changelog/{Changelog-4.8.3.md => helm-chart-4.8.3.md}     | 1 +
 magefiles/utils/releasenote.go                                | 2 +-
 12 files changed, 4 insertions(+), 3 deletions(-)
 rename charts/ingress-nginx/changelog/{Changelog-4.5.2.md => helm-chart-4.5.2.md} (100%)
 rename charts/ingress-nginx/changelog/{Changelog-4.6.0.md => helm-chart-4.6.0.md} (100%)
 rename charts/ingress-nginx/changelog/{Changelog-4.6.1.md => helm-chart-4.6.1.md} (100%)
 rename charts/ingress-nginx/changelog/{Changelog-4.7.0.md => helm-chart-4.7.0.md} (100%)
 rename charts/ingress-nginx/changelog/{Changelog-4.7.1.md => helm-chart-4.7.1.md} (100%)
 rename charts/ingress-nginx/changelog/{Changelog-4.7.2.md => helm-chart-4.7.2.md} (100%)
 rename charts/ingress-nginx/changelog/{Changelog-4.8.0-beta.0.md => helm-chart-4.8.0-beta.0.md} (100%)
 rename charts/ingress-nginx/changelog/{Changelog-4.8.0.md => helm-chart-4.8.0.md} (100%)
 rename charts/ingress-nginx/changelog/{Changelog-4.8.1.md => helm-chart-4.8.1.md} (100%)
 rename charts/ingress-nginx/changelog/{Changelog-4.8.2.md => helm-chart-4.8.2.md} (72%)
 rename charts/ingress-nginx/changelog/{Changelog-4.8.3.md => helm-chart-4.8.3.md} (99%)

diff --git a/charts/ingress-nginx/changelog/Changelog-4.5.2.md b/charts/ingress-nginx/changelog/helm-chart-4.5.2.md
similarity index 100%
rename from charts/ingress-nginx/changelog/Changelog-4.5.2.md
rename to charts/ingress-nginx/changelog/helm-chart-4.5.2.md
diff --git a/charts/ingress-nginx/changelog/Changelog-4.6.0.md b/charts/ingress-nginx/changelog/helm-chart-4.6.0.md
similarity index 100%
rename from charts/ingress-nginx/changelog/Changelog-4.6.0.md
rename to charts/ingress-nginx/changelog/helm-chart-4.6.0.md
diff --git a/charts/ingress-nginx/changelog/Changelog-4.6.1.md b/charts/ingress-nginx/changelog/helm-chart-4.6.1.md
similarity index 100%
rename from charts/ingress-nginx/changelog/Changelog-4.6.1.md
rename to charts/ingress-nginx/changelog/helm-chart-4.6.1.md
diff --git a/charts/ingress-nginx/changelog/Changelog-4.7.0.md b/charts/ingress-nginx/changelog/helm-chart-4.7.0.md
similarity index 100%
rename from charts/ingress-nginx/changelog/Changelog-4.7.0.md
rename to charts/ingress-nginx/changelog/helm-chart-4.7.0.md
diff --git a/charts/ingress-nginx/changelog/Changelog-4.7.1.md b/charts/ingress-nginx/changelog/helm-chart-4.7.1.md
similarity index 100%
rename from charts/ingress-nginx/changelog/Changelog-4.7.1.md
rename to charts/ingress-nginx/changelog/helm-chart-4.7.1.md
diff --git a/charts/ingress-nginx/changelog/Changelog-4.7.2.md b/charts/ingress-nginx/changelog/helm-chart-4.7.2.md
similarity index 100%
rename from charts/ingress-nginx/changelog/Changelog-4.7.2.md
rename to charts/ingress-nginx/changelog/helm-chart-4.7.2.md
diff --git a/charts/ingress-nginx/changelog/Changelog-4.8.0-beta.0.md b/charts/ingress-nginx/changelog/helm-chart-4.8.0-beta.0.md
similarity index 100%
rename from charts/ingress-nginx/changelog/Changelog-4.8.0-beta.0.md
rename to charts/ingress-nginx/changelog/helm-chart-4.8.0-beta.0.md
diff --git a/charts/ingress-nginx/changelog/Changelog-4.8.0.md b/charts/ingress-nginx/changelog/helm-chart-4.8.0.md
similarity index 100%
rename from charts/ingress-nginx/changelog/Changelog-4.8.0.md
rename to charts/ingress-nginx/changelog/helm-chart-4.8.0.md
diff --git a/charts/ingress-nginx/changelog/Changelog-4.8.1.md b/charts/ingress-nginx/changelog/helm-chart-4.8.1.md
similarity index 100%
rename from charts/ingress-nginx/changelog/Changelog-4.8.1.md
rename to charts/ingress-nginx/changelog/helm-chart-4.8.1.md
diff --git a/charts/ingress-nginx/changelog/Changelog-4.8.2.md b/charts/ingress-nginx/changelog/helm-chart-4.8.2.md
similarity index 72%
rename from charts/ingress-nginx/changelog/Changelog-4.8.2.md
rename to charts/ingress-nginx/changelog/helm-chart-4.8.2.md
index 3fbb19f53..9957c1a85 100644
--- a/charts/ingress-nginx/changelog/Changelog-4.8.2.md
+++ b/charts/ingress-nginx/changelog/helm-chart-4.8.2.md
@@ -4,7 +4,7 @@ This file documents all notable changes to [ingress-nginx](https://github.com/ku
 
 ### 4.8.2
 
-* - "update nginx base, httpbun, e2e, helm webhook cert gen (#10506)"
-* - "Update Ingress-Nginx version controller-v1.9.3"
+* update nginx base, httpbun, e2e, helm webhook cert gen (#10506)
+* Update Ingress-Nginx version controller-v1.9.3
 
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.8.1...helm-chart-4.8.2
diff --git a/charts/ingress-nginx/changelog/Changelog-4.8.3.md b/charts/ingress-nginx/changelog/helm-chart-4.8.3.md
similarity index 99%
rename from charts/ingress-nginx/changelog/Changelog-4.8.3.md
rename to charts/ingress-nginx/changelog/helm-chart-4.8.3.md
index ca1815bbb..b8d4d56b3 100644
--- a/charts/ingress-nginx/changelog/Changelog-4.8.3.md
+++ b/charts/ingress-nginx/changelog/helm-chart-4.8.3.md
@@ -3,6 +3,7 @@
 This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
 
 ### 4.8.3
+
 * Update Ingress-Nginx version controller-v1.9.4
 
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.8.2...helm-chart-4.8.3
diff --git a/magefiles/utils/releasenote.go b/magefiles/utils/releasenote.go
index 8dc081428..341595444 100644
--- a/magefiles/utils/releasenote.go
+++ b/magefiles/utils/releasenote.go
@@ -65,7 +65,7 @@ func (r ReleaseNote) HelmTemplate() {
 	Debug("ChangeLog Templates %s", string(changelogTemplate))
 	t := template.Must(template.New("changelog").Parse(string(changelogTemplate)))
 	// create a new file
-	file, err := os.Create(fmt.Sprintf("charts/ingress-nginx/changelog/Changelog-%s.md", r.NewHelmChartVersion))
+	file, err := os.Create(fmt.Sprintf("charts/ingress-nginx/changelog/helm-chart-%s.md", r.NewHelmChartVersion))
 	if err != nil {
 		ErrorF("Could not create changelog file %s", err)
 	}

From 7b9e3566f79f9519977958e8cd1afe8f913515b2 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco@giantswarm.io>
Date: Wed, 8 Nov 2023 14:18:55 +0100
Subject: [PATCH 1042/1641] Chart: Split `CHANGELOG.md` into
 `changelog/helm-chart-*.md`.

---
 charts/ingress-nginx/CHANGELOG.md             | 460 ------------------
 charts/ingress-nginx/changelog/.gitkeep       |   0
 .../changelog/helm-chart-2.10.0.md            |   9 +
 .../changelog/helm-chart-2.11.0.md            |  10 +
 .../changelog/helm-chart-2.11.1.md            |   9 +
 .../changelog/helm-chart-2.11.2.md            |   9 +
 .../changelog/helm-chart-2.11.3.md            |   9 +
 .../changelog/helm-chart-2.12.0.md            |  10 +
 .../changelog/helm-chart-2.12.1.md            |   9 +
 .../changelog/helm-chart-2.13.0.md            |  10 +
 .../changelog/helm-chart-2.14.0.md            |   9 +
 .../changelog/helm-chart-2.15.0.md            |   9 +
 .../changelog/helm-chart-2.16.0.md            |   9 +
 .../changelog/helm-chart-2.9.0.md             |   9 +
 .../changelog/helm-chart-2.9.1.md             |   9 +
 .../changelog/helm-chart-3.0.0.md             |   9 +
 .../changelog/helm-chart-3.10.0.md            |   9 +
 .../changelog/helm-chart-3.10.1.md            |   9 +
 .../changelog/helm-chart-3.11.0.md            |   9 +
 .../changelog/helm-chart-3.11.1.md            |   9 +
 .../changelog/helm-chart-3.12.0.md            |   9 +
 .../changelog/helm-chart-3.13.0.md            |   9 +
 .../changelog/helm-chart-3.14.0.md            |   9 +
 .../changelog/helm-chart-3.15.0.md            |   9 +
 .../changelog/helm-chart-3.15.1.md            |   9 +
 .../changelog/helm-chart-3.16.0.md            |   9 +
 .../changelog/helm-chart-3.16.1.md            |   9 +
 .../changelog/helm-chart-3.17.0.md            |   9 +
 .../changelog/helm-chart-3.18.0.md            |  10 +
 .../changelog/helm-chart-3.19.0.md            |   9 +
 .../changelog/helm-chart-3.20.0.md            |   9 +
 .../changelog/helm-chart-3.20.1.md            |  10 +
 .../changelog/helm-chart-3.21.0.md            |  12 +
 .../changelog/helm-chart-3.22.0.md            |  10 +
 .../changelog/helm-chart-3.23.0.md            |   9 +
 .../changelog/helm-chart-3.24.0.md            |   9 +
 .../changelog/helm-chart-3.25.0.md            |   9 +
 .../changelog/helm-chart-3.26.0.md            |   9 +
 .../changelog/helm-chart-3.27.0.md            |   9 +
 .../changelog/helm-chart-3.28.0.md            |   9 +
 .../changelog/helm-chart-3.29.0.md            |   9 +
 .../changelog/helm-chart-3.3.0.md             |  12 +
 .../changelog/helm-chart-3.3.1.md             |  12 +
 .../changelog/helm-chart-3.30.0.md            |   9 +
 .../changelog/helm-chart-3.31.0.md            |   9 +
 .../changelog/helm-chart-3.32.0.md            |   9 +
 .../changelog/helm-chart-3.33.0.md            |   9 +
 .../changelog/helm-chart-3.34.0.md            |   9 +
 .../changelog/helm-chart-3.4.0.md             |   9 +
 .../changelog/helm-chart-3.5.0.md             |   9 +
 .../changelog/helm-chart-3.5.1.md             |   9 +
 .../changelog/helm-chart-3.6.0.md             |   9 +
 .../changelog/helm-chart-3.7.0.md             |   9 +
 .../changelog/helm-chart-3.7.1.md             |   9 +
 .../changelog/helm-chart-3.8.0.md             |  13 +
 .../changelog/helm-chart-3.9.0.md             |   9 +
 .../changelog/helm-chart-4.0.1.md             |   9 +
 .../changelog/helm-chart-4.0.10.md            |   9 +
 .../changelog/helm-chart-4.0.11.md            |   9 +
 .../changelog/helm-chart-4.0.12.md            |   9 +
 .../changelog/helm-chart-4.0.13.md            |   9 +
 .../changelog/helm-chart-4.0.14.md            |   9 +
 .../changelog/helm-chart-4.0.15.md            |  43 ++
 .../changelog/helm-chart-4.0.18.md            |  40 ++
 .../changelog/helm-chart-4.0.2.md             |   9 +
 .../changelog/helm-chart-4.0.3.md             |   9 +
 .../changelog/helm-chart-4.0.5.md             |   9 +
 .../changelog/helm-chart-4.0.6.md             |  12 +
 .../changelog/helm-chart-4.0.7.md             |  10 +
 .../changelog/helm-chart-4.0.9.md             |   9 +
 .../changelog/helm-chart-4.1.0.md             |  21 +
 .../changelog/helm-chart-4.1.2.md             |  11 +
 .../changelog/helm-chart-4.2.0.md             |  47 ++
 .../changelog/helm-chart-4.2.1.md             |  10 +
 .../changelog/helm-chart-4.3.0.md             |  14 +
 .../changelog/helm-chart-4.4.0.md             |  12 +
 76 files changed, 815 insertions(+), 460 deletions(-)
 delete mode 100644 charts/ingress-nginx/CHANGELOG.md
 delete mode 100644 charts/ingress-nginx/changelog/.gitkeep
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-2.10.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-2.11.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-2.11.1.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-2.11.2.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-2.11.3.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-2.12.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-2.12.1.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-2.13.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-2.14.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-2.15.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-2.16.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-2.9.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-2.9.1.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.0.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.10.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.10.1.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.11.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.11.1.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.12.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.13.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.14.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.15.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.15.1.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.16.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.16.1.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.17.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.18.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.19.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.20.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.20.1.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.21.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.22.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.23.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.24.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.25.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.26.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.27.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.28.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.29.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.3.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.3.1.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.30.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.31.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.32.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.33.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.34.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.4.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.5.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.5.1.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.6.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.7.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.7.1.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.8.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-3.9.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.0.1.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.0.10.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.0.11.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.0.12.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.0.13.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.0.14.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.0.15.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.0.18.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.0.2.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.0.3.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.0.5.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.0.6.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.0.7.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.0.9.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.1.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.1.2.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.2.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.2.1.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.3.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.4.0.md

diff --git a/charts/ingress-nginx/CHANGELOG.md b/charts/ingress-nginx/CHANGELOG.md
deleted file mode 100644
index 7d81ac1bd..000000000
--- a/charts/ingress-nginx/CHANGELOG.md
+++ /dev/null
@@ -1,460 +0,0 @@
-# Changelog
-
-This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
-
-### 4.4.0
-
-* Adding support for disabling liveness and readiness probes to the Helm chart by @njegosrailic in https://github.com/kubernetes/ingress-nginx/pull/9238
-* add:(admission-webhooks) ability to set securityContext by @ybelMekk in https://github.com/kubernetes/ingress-nginx/pull/9186
-* #7652 - Updated Helm chart to use the fullname for the electionID if not specified. by @FutureMatt in https://github.com/kubernetes/ingress-nginx/pull/9133
-* Rename controller-wehbooks-networkpolicy.yaml. by @Gacko in https://github.com/kubernetes/ingress-nginx/pull/9123
-
-### 4.3.0 
-- Support for Kubernetes v.1.25.0 was added and support for endpoint slices
-- Support for Kubernetes v1.20.0 and v1.21.0 was removed
-- [8890](https://github.com/kubernetes/ingress-nginx/pull/8890) migrate to endpointslices
-- [9059](https://github.com/kubernetes/ingress-nginx/pull/9059) kubewebhookcertgen sha change after go1191
-- [9046](https://github.com/kubernetes/ingress-nginx/pull/9046) Parameterize metrics port name
-- [9104](https://github.com/kubernetes/ingress-nginx/pull/9104) Fix yaml formatting error with multiple annotations
-
-### 4.2.1
-
-- The sha of kube-webhook-certgen image & the opentelemetry image, in values file, was changed to new images built on alpine-v3.16.1
-- "[8896](https://github.com/kubernetes/ingress-nginx/pull/8896) updated to new images built today"
-
-### 4.2.0
-
-- Support for Kubernetes v1.19.0 was removed
-- "[8810](https://github.com/kubernetes/ingress-nginx/pull/8810) Prepare for v1.3.0"
-- "[8808](https://github.com/kubernetes/ingress-nginx/pull/8808) revert arch var name"
-- "[8805](https://github.com/kubernetes/ingress-nginx/pull/8805) Bump k8s.io/klog/v2 from 2.60.1 to 2.70.1"
-- "[8803](https://github.com/kubernetes/ingress-nginx/pull/8803) Update to nginx base with alpine v3.16"
-- "[8802](https://github.com/kubernetes/ingress-nginx/pull/8802) chore: start v1.3.0 release process"
-- "[8798](https://github.com/kubernetes/ingress-nginx/pull/8798) Add v1.24.0 to test matrix"
-- "[8796](https://github.com/kubernetes/ingress-nginx/pull/8796) fix: add MAC_OS variable for static-check"
-- "[8793](https://github.com/kubernetes/ingress-nginx/pull/8793) changed to alpine-v3.16"
-- "[8781](https://github.com/kubernetes/ingress-nginx/pull/8781) Bump github.com/stretchr/testify from 1.7.5 to 1.8.0"
-- "[8778](https://github.com/kubernetes/ingress-nginx/pull/8778) chore: remove stable.txt from release process"
-- "[8775](https://github.com/kubernetes/ingress-nginx/pull/8775) Remove stable"
-- "[8773](https://github.com/kubernetes/ingress-nginx/pull/8773) Bump github/codeql-action from 2.1.14 to 2.1.15"
-- "[8772](https://github.com/kubernetes/ingress-nginx/pull/8772) Bump ossf/scorecard-action from 1.1.1 to 1.1.2"
-- "[8771](https://github.com/kubernetes/ingress-nginx/pull/8771) fix bullet md format"
-- "[8770](https://github.com/kubernetes/ingress-nginx/pull/8770) Add condition for monitoring.coreos.com/v1 API"
-- "[8769](https://github.com/kubernetes/ingress-nginx/pull/8769) Fix typos and add links to developer guide"
-- "[8767](https://github.com/kubernetes/ingress-nginx/pull/8767) change v1.2.0 to v1.2.1 in deploy doc URLs"
-- "[8765](https://github.com/kubernetes/ingress-nginx/pull/8765) Bump github/codeql-action from 1.0.26 to 2.1.14"
-- "[8752](https://github.com/kubernetes/ingress-nginx/pull/8752) Bump github.com/spf13/cobra from 1.4.0 to 1.5.0"
-- "[8751](https://github.com/kubernetes/ingress-nginx/pull/8751) Bump github.com/stretchr/testify from 1.7.2 to 1.7.5"
-- "[8750](https://github.com/kubernetes/ingress-nginx/pull/8750) added announcement"
-- "[8740](https://github.com/kubernetes/ingress-nginx/pull/8740) change sha e2etestrunner and echoserver"
-- "[8738](https://github.com/kubernetes/ingress-nginx/pull/8738) Update docs to make it easier for noobs to follow step by step"
-- "[8737](https://github.com/kubernetes/ingress-nginx/pull/8737) updated baseimage sha"
-- "[8736](https://github.com/kubernetes/ingress-nginx/pull/8736) set ld-musl-path"
-- "[8733](https://github.com/kubernetes/ingress-nginx/pull/8733) feat: migrate leaderelection lock to leases"
-- "[8726](https://github.com/kubernetes/ingress-nginx/pull/8726) prometheus metric: upstream_latency_seconds"
-- "[8720](https://github.com/kubernetes/ingress-nginx/pull/8720) Ci pin deps"
-- "[8719](https://github.com/kubernetes/ingress-nginx/pull/8719) Working OpenTelemetry sidecar (base nginx image)"
-- "[8714](https://github.com/kubernetes/ingress-nginx/pull/8714) Create Openssf scorecard"
-- "[8708](https://github.com/kubernetes/ingress-nginx/pull/8708) Bump github.com/prometheus/common from 0.34.0 to 0.35.0"
-- "[8703](https://github.com/kubernetes/ingress-nginx/pull/8703) Bump actions/dependency-review-action from 1 to 2"
-- "[8701](https://github.com/kubernetes/ingress-nginx/pull/8701) Fix several typos"
-- "[8699](https://github.com/kubernetes/ingress-nginx/pull/8699) fix the gosec test and a make target for it"
-- "[8698](https://github.com/kubernetes/ingress-nginx/pull/8698) Bump actions/upload-artifact from 2.3.1 to 3.1.0"
-- "[8697](https://github.com/kubernetes/ingress-nginx/pull/8697) Bump actions/setup-go from 2.2.0 to 3.2.0"
-- "[8695](https://github.com/kubernetes/ingress-nginx/pull/8695) Bump actions/download-artifact from 2 to 3"
-- "[8694](https://github.com/kubernetes/ingress-nginx/pull/8694) Bump crazy-max/ghaction-docker-buildx from 1.6.2 to 3.3.1"
-
-### 4.1.2
-
-- "[8587](https://github.com/kubernetes/ingress-nginx/pull/8587) Add CAP_SYS_CHROOT to DS/PSP when needed"
-- "[8458](https://github.com/kubernetes/ingress-nginx/pull/8458) Add portNamePreffix Helm chart parameter"
-- "[8522](https://github.com/kubernetes/ingress-nginx/pull/8522) Add documentation for controller.service.loadBalancerIP in Helm chart"
-
-### 4.1.0
-
-- "[8481](https://github.com/kubernetes/ingress-nginx/pull/8481) Fix log creation in chroot script"
-- "[8479](https://github.com/kubernetes/ingress-nginx/pull/8479) changed nginx base img tag to img built with alpine3.14.6"
-- "[8478](https://github.com/kubernetes/ingress-nginx/pull/8478) update base images and protobuf gomod"
-- "[8468](https://github.com/kubernetes/ingress-nginx/pull/8468) Fallback to ngx.var.scheme for redirectScheme with use-forward-headers when X-Forwarded-Proto is empty"
-- "[8456](https://github.com/kubernetes/ingress-nginx/pull/8456) Implement object deep inspector"
-- "[8455](https://github.com/kubernetes/ingress-nginx/pull/8455) Update dependencies"
-- "[8454](https://github.com/kubernetes/ingress-nginx/pull/8454) Update index.md"
-- "[8447](https://github.com/kubernetes/ingress-nginx/pull/8447) typo fixing"
-- "[8446](https://github.com/kubernetes/ingress-nginx/pull/8446) Fix suggested annotation-value-word-blocklist"
-- "[8444](https://github.com/kubernetes/ingress-nginx/pull/8444) replace deprecated topology key in example with current one"
-- "[8443](https://github.com/kubernetes/ingress-nginx/pull/8443) Add dependency review enforcement"
-- "[8434](https://github.com/kubernetes/ingress-nginx/pull/8434) added new auth-tls-match-cn annotation"
-- "[8426](https://github.com/kubernetes/ingress-nginx/pull/8426) Bump github.com/prometheus/common from 0.32.1 to 0.33.0"
-
-### 4.0.18
-
-- "[8291](https://github.com/kubernetes/ingress-nginx/pull/8291) remove git tag env from cloud build"
-- "[8286](https://github.com/kubernetes/ingress-nginx/pull/8286) Fix OpenTelemetry sidecar image build"
-- "[8277](https://github.com/kubernetes/ingress-nginx/pull/8277) Add OpenSSF Best practices badge"
-- "[8273](https://github.com/kubernetes/ingress-nginx/pull/8273) Issue#8241"
-- "[8267](https://github.com/kubernetes/ingress-nginx/pull/8267) Add fsGroup value to admission-webhooks/job-patch charts"
-- "[8262](https://github.com/kubernetes/ingress-nginx/pull/8262) Updated confusing error"
-- "[8256](https://github.com/kubernetes/ingress-nginx/pull/8256) fix: deny locations with invalid auth-url annotation"
-- "[8253](https://github.com/kubernetes/ingress-nginx/pull/8253) Add a certificate info metric"
-- "[8236](https://github.com/kubernetes/ingress-nginx/pull/8236) webhook: remove useless code."
-- "[8227](https://github.com/kubernetes/ingress-nginx/pull/8227) Update libraries in webhook image"
-- "[8225](https://github.com/kubernetes/ingress-nginx/pull/8225) fix inconsistent-label-cardinality for prometheus metrics: nginx_ingress_controller_requests"
-- "[8221](https://github.com/kubernetes/ingress-nginx/pull/8221) Do not validate ingresses with unknown ingress class in admission webhook endpoint"
-- "[8210](https://github.com/kubernetes/ingress-nginx/pull/8210) Bump github.com/prometheus/client_golang from 1.11.0 to 1.12.1"
-- "[8209](https://github.com/kubernetes/ingress-nginx/pull/8209) Bump google.golang.org/grpc from 1.43.0 to 1.44.0"
-- "[8204](https://github.com/kubernetes/ingress-nginx/pull/8204) Add Artifact Hub lint"
-- "[8203](https://github.com/kubernetes/ingress-nginx/pull/8203) Fix Indentation of example and link to cert-manager tutorial"
-- "[8201](https://github.com/kubernetes/ingress-nginx/pull/8201) feat(metrics): add path and method labels to requests countera"
-- "[8199](https://github.com/kubernetes/ingress-nginx/pull/8199) use functional options to reduce number of methods creating an EchoDeployment"
-- "[8196](https://github.com/kubernetes/ingress-nginx/pull/8196) docs: fix inconsistent controller annotation"
-- "[8191](https://github.com/kubernetes/ingress-nginx/pull/8191) Using Go install for misspell"
-- "[8186](https://github.com/kubernetes/ingress-nginx/pull/8186) prometheus+grafana using servicemonitor"
-- "[8185](https://github.com/kubernetes/ingress-nginx/pull/8185) Append elements on match, instead of removing for cors-annotations"
-- "[8179](https://github.com/kubernetes/ingress-nginx/pull/8179) Bump github.com/opencontainers/runc from 1.0.3 to 1.1.0"
-- "[8173](https://github.com/kubernetes/ingress-nginx/pull/8173) Adding annotations to the controller service account"
-- "[8163](https://github.com/kubernetes/ingress-nginx/pull/8163) Update the $req_id placeholder description"
-- "[8162](https://github.com/kubernetes/ingress-nginx/pull/8162) Versioned static manifests"
-- "[8159](https://github.com/kubernetes/ingress-nginx/pull/8159) Adding some geoip variables and default values"
-- "[8155](https://github.com/kubernetes/ingress-nginx/pull/8155) #7271 feat: avoid-pdb-creation-when-default-backend-disabled-and-replicas-gt-1"
-- "[8151](https://github.com/kubernetes/ingress-nginx/pull/8151) Automatically generate helm docs"
-- "[8143](https://github.com/kubernetes/ingress-nginx/pull/8143) Allow to configure delay before controller exits"
-- "[8136](https://github.com/kubernetes/ingress-nginx/pull/8136) add ingressClass option to helm chart - back compatibility with ingress.class annotations"
-- "[8126](https://github.com/kubernetes/ingress-nginx/pull/8126) Example for JWT"
-
-
-### 4.0.15
-
-- [8120] https://github.com/kubernetes/ingress-nginx/pull/8120    Update go in runner and release v1.1.1
-- [8119] https://github.com/kubernetes/ingress-nginx/pull/8119    Update to go v1.17.6
-- [8118] https://github.com/kubernetes/ingress-nginx/pull/8118    Remove deprecated libraries, update other libs
-- [8117] https://github.com/kubernetes/ingress-nginx/pull/8117    Fix codegen errors
-- [8115] https://github.com/kubernetes/ingress-nginx/pull/8115    chart/ghaction: set the correct permission to have access to push a release
-- [8098] https://github.com/kubernetes/ingress-nginx/pull/8098    generating SHA for CA only certs in backend_ssl.go + comparison of P…
-- [8088] https://github.com/kubernetes/ingress-nginx/pull/8088    Fix Edit this page link to use main branch
-- [8072] https://github.com/kubernetes/ingress-nginx/pull/8072    Expose GeoIP2 Continent code as variable
-- [8061] https://github.com/kubernetes/ingress-nginx/pull/8061    docs(charts): using helm-docs for chart
-- [8058] https://github.com/kubernetes/ingress-nginx/pull/8058    Bump github.com/spf13/cobra from 1.2.1 to 1.3.0
-- [8054] https://github.com/kubernetes/ingress-nginx/pull/8054    Bump google.golang.org/grpc from 1.41.0 to 1.43.0
-- [8051] https://github.com/kubernetes/ingress-nginx/pull/8051    align bug report with feature request regarding kind documentation
-- [8046] https://github.com/kubernetes/ingress-nginx/pull/8046    Report expired certificates (#8045)
-- [8044] https://github.com/kubernetes/ingress-nginx/pull/8044    remove G109 check till gosec resolves issues
-- [8042] https://github.com/kubernetes/ingress-nginx/pull/8042    docs_multiple_instances_one_cluster_ticket_7543
-- [8041] https://github.com/kubernetes/ingress-nginx/pull/8041    docs: fix typo'd executable name
-- [8035] https://github.com/kubernetes/ingress-nginx/pull/8035    Comment busy owners
-- [8029] https://github.com/kubernetes/ingress-nginx/pull/8029    Add stream-snippet as a ConfigMap and Annotation option
-- [8023] https://github.com/kubernetes/ingress-nginx/pull/8023    fix nginx compilation flags
-- [8021] https://github.com/kubernetes/ingress-nginx/pull/8021    Disable default modsecurity_rules_file if modsecurity-snippet is specified
-- [8019] https://github.com/kubernetes/ingress-nginx/pull/8019    Revise main documentation page
-- [8018] https://github.com/kubernetes/ingress-nginx/pull/8018    Preserve order of plugin invocation
-- [8015] https://github.com/kubernetes/ingress-nginx/pull/8015    Add newline indenting to admission webhook annotations
-- [8014] https://github.com/kubernetes/ingress-nginx/pull/8014    Add link to example error page manifest in docs
-- [8009] https://github.com/kubernetes/ingress-nginx/pull/8009    Fix spelling in documentation and top-level files
-- [8008] https://github.com/kubernetes/ingress-nginx/pull/8008    Add relabelings in controller-servicemonitor.yaml
-- [8003] https://github.com/kubernetes/ingress-nginx/pull/8003    Minor improvements (formatting, consistency) in install guide
-- [8001] https://github.com/kubernetes/ingress-nginx/pull/8001    fix: go-grpc Dockerfile
-- [7999] https://github.com/kubernetes/ingress-nginx/pull/7999    images: use k8s-staging-test-infra/gcb-docker-gcloud
-- [7996] https://github.com/kubernetes/ingress-nginx/pull/7996    doc: improvement
-- [7983] https://github.com/kubernetes/ingress-nginx/pull/7983    Fix a couple of misspellings in the annotations documentation.
-- [7979] https://github.com/kubernetes/ingress-nginx/pull/7979    allow set annotations for admission Jobs
-- [7977] https://github.com/kubernetes/ingress-nginx/pull/7977    Add ssl_reject_handshake to default server
-- [7975] https://github.com/kubernetes/ingress-nginx/pull/7975    add legacy version update v0.50.0 to main changelog
-- [7972] https://github.com/kubernetes/ingress-nginx/pull/7972    updated service upstream definition
-
-### 4.0.14
-
-- [8061] https://github.com/kubernetes/ingress-nginx/pull/8061 Using helm-docs to populate values table in README.md
-
-### 4.0.13
-
-- [8008] https://github.com/kubernetes/ingress-nginx/pull/8008 Add relabelings in controller-servicemonitor.yaml
-
-### 4.0.12
-
-- [7978] https://github.com/kubernetes/ingress-nginx/pull/7979 Support custom annotations in admissions Jobs
-
-### 4.0.11
-
-- [7873] https://github.com/kubernetes/ingress-nginx/pull/7873 Makes the [appProtocol](https://kubernetes.io/docs/concepts/services-networking/_print/#application-protocol) field optional.
-
-### 4.0.10
-
-- [7964] https://github.com/kubernetes/ingress-nginx/pull/7964 Update controller version to v1.1.0
-
-### 4.0.9
-
-- [6992] https://github.com/kubernetes/ingress-nginx/pull/6992 Add ability to specify labels for all resources
-
-### 4.0.7
-
-- [7923] https://github.com/kubernetes/ingress-nginx/pull/7923 Release v1.0.5 of ingress-nginx
-- [7806] https://github.com/kubernetes/ingress-nginx/pull/7806 Choice option for internal/external loadbalancer type service
-
-### 4.0.6
-
-- [7804] https://github.com/kubernetes/ingress-nginx/pull/7804 Release v1.0.4 of ingress-nginx
-- [7651] https://github.com/kubernetes/ingress-nginx/pull/7651 Support ipFamilyPolicy and ipFamilies fields in Helm Chart
-- [7798] https://github.com/kubernetes/ingress-nginx/pull/7798 Exoscale: use HTTP Healthcheck mode
-- [7793] https://github.com/kubernetes/ingress-nginx/pull/7793 Update kube-webhook-certgen to v1.1.1
-
-### 4.0.5
-
-- [7740] https://github.com/kubernetes/ingress-nginx/pull/7740 Release v1.0.3 of ingress-nginx
-
-### 4.0.3
-
-- [7707] https://github.com/kubernetes/ingress-nginx/pull/7707 Release v1.0.2 of ingress-nginx
-
-### 4.0.2
-
-- [7681] https://github.com/kubernetes/ingress-nginx/pull/7681 Release v1.0.1 of ingress-nginx
-
-### 4.0.1
-
-- [7535] https://github.com/kubernetes/ingress-nginx/pull/7535 Release v1.0.0 ingress-nginx
-
-### 3.34.0
-
-- [7256] https://github.com/kubernetes/ingress-nginx/pull/7256 Add namespace field in the namespace scoped resource templates
-
-### 3.33.0
-
-- [7164] https://github.com/kubernetes/ingress-nginx/pull/7164 Update nginx to v1.20.1
-
-### 3.32.0
-
-- [7117] https://github.com/kubernetes/ingress-nginx/pull/7117 Add annotations for HPA
-
-### 3.31.0
-
-- [7137] https://github.com/kubernetes/ingress-nginx/pull/7137 Add support for custom probes
-
-### 3.30.0
-
-- [#7092](https://github.com/kubernetes/ingress-nginx/pull/7092) Removes the possibility of using localhost in ExternalNames as endpoints
-
-### 3.29.0
-
-- [X] [#6945](https://github.com/kubernetes/ingress-nginx/pull/7020) Add option to specify job label for ServiceMonitor
-
-### 3.28.0
-
-- [ ] [#6900](https://github.com/kubernetes/ingress-nginx/pull/6900) Support existing PSPs
-
-### 3.27.0
-
-- Update ingress-nginx v0.45.0
-
-### 3.26.0
-
-- [X] [#6979](https://github.com/kubernetes/ingress-nginx/pull/6979) Changed servicePort value for metrics
-
-### 3.25.0
-
-- [X] [#6957](https://github.com/kubernetes/ingress-nginx/pull/6957) Add ability to specify automountServiceAccountToken
-
-### 3.24.0
-
-- [X] [#6908](https://github.com/kubernetes/ingress-nginx/pull/6908) Add volumes to default-backend deployment
-
-### 3.23.0
-
-- Update ingress-nginx v0.44.0
-
-### 3.22.0
-
-- [X] [#6802](https://github.com/kubernetes/ingress-nginx/pull/6802) Add value for configuring a custom Diffie-Hellman parameters file
-- [X] [#6815](https://github.com/kubernetes/ingress-nginx/pull/6815) Allow use of numeric namespaces in helm chart
-
-### 3.21.0
-
-- [X] [#6783](https://github.com/kubernetes/ingress-nginx/pull/6783) Add custom annotations to ScaledObject
-- [X] [#6761](https://github.com/kubernetes/ingress-nginx/pull/6761) Adding quotes in the serviceAccount name in Helm values
-- [X] [#6767](https://github.com/kubernetes/ingress-nginx/pull/6767) Remove ClusterRole when scope option is enabled
-- [X] [#6785](https://github.com/kubernetes/ingress-nginx/pull/6785) Update kube-webhook-certgen image to v1.5.1
-
-### 3.20.1
-
-- Do not create KEDA in case of DaemonSets.
-- Fix KEDA v2 definition
-
-### 3.20.0
-
-- [X] [#6730](https://github.com/kubernetes/ingress-nginx/pull/6730) Do not create HPA for defaultBackend if not enabled.
-
-### 3.19.0
-
-- Update ingress-nginx v0.43.0
-
-### 3.18.0
-
-- [X] [#6688](https://github.com/kubernetes/ingress-nginx/pull/6688) Allow volume-type emptyDir in controller podsecuritypolicy
-- [X] [#6691](https://github.com/kubernetes/ingress-nginx/pull/6691) Improve parsing of helm parameters
-
-### 3.17.0
-
-- Update ingress-nginx v0.42.0
-
-### 3.16.1
-
-- Fix chart-releaser action
-
-### 3.16.0
-
-- [X] [#6646](https://github.com/kubernetes/ingress-nginx/pull/6646) Added LoadBalancerIP value for internal service
-
-### 3.15.1
-
-- Fix chart-releaser action
-
-### 3.15.0
-
-- [X] [#6586](https://github.com/kubernetes/ingress-nginx/pull/6586) Fix 'maxmindLicenseKey' location in values.yaml
-
-### 3.14.0
-
-- [X] [#6469](https://github.com/kubernetes/ingress-nginx/pull/6469) Allow custom service names for controller and backend
-
-### 3.13.0
-
-- [X] [#6544](https://github.com/kubernetes/ingress-nginx/pull/6544) Fix default backend HPA name variable
-
-### 3.12.0
-
-- [X] [#6514](https://github.com/kubernetes/ingress-nginx/pull/6514) Remove helm2 support and update docs
-
-### 3.11.1
-
-- [X] [#6505](https://github.com/kubernetes/ingress-nginx/pull/6505) Reorder HPA resource list to work with GitOps tooling
-
-### 3.11.0
-
-- Support Keda Autoscaling
-
-### 3.10.1
-
-- Fix regression introduced in 0.41.0 with external authentication
-
-### 3.10.0
-
-- Fix routing regression introduced in 0.41.0 with PathType Exact
-
-### 3.9.0
-
-- [X] [#6423](https://github.com/kubernetes/ingress-nginx/pull/6423) Add Default backend HPA autoscaling
-
-### 3.8.0
-
-- [X] [#6395](https://github.com/kubernetes/ingress-nginx/pull/6395) Update jettech/kube-webhook-certgen image
-- [X] [#6377](https://github.com/kubernetes/ingress-nginx/pull/6377) Added loadBalancerSourceRanges for internal lbs
-- [X] [#6356](https://github.com/kubernetes/ingress-nginx/pull/6356) Add securitycontext settings on defaultbackend
-- [X] [#6401](https://github.com/kubernetes/ingress-nginx/pull/6401) Fix controller service annotations
-- [X] [#6403](https://github.com/kubernetes/ingress-nginx/pull/6403) Initial helm chart changelog
-
-### 3.7.1
-
-- [X] [#6326](https://github.com/kubernetes/ingress-nginx/pull/6326) Fix liveness and readiness probe path in daemonset chart
-
-### 3.7.0
-
-- [X] [#6316](https://github.com/kubernetes/ingress-nginx/pull/6316) Numerals in podAnnotations in quotes [#6315](https://github.com/kubernetes/ingress-nginx/issues/6315)
-
-### 3.6.0
-
-- [X] [#6305](https://github.com/kubernetes/ingress-nginx/pull/6305) Add default linux nodeSelector
-
-### 3.5.1
-
-- [X] [#6299](https://github.com/kubernetes/ingress-nginx/pull/6299) Fix helm chart release
-
-### 3.5.0
-
-- [X] [#6260](https://github.com/kubernetes/ingress-nginx/pull/6260) Allow Helm Chart to customize admission webhook's annotations, timeoutSeconds, namespaceSelector, objectSelector and cert files locations
-
-### 3.4.0
-
-- [X] [#6268](https://github.com/kubernetes/ingress-nginx/pull/6268) Update to 0.40.2 in helm chart #6288
-
-### 3.3.1
-
-- [X] [#6259](https://github.com/kubernetes/ingress-nginx/pull/6259) Release helm chart
-- [X] [#6258](https://github.com/kubernetes/ingress-nginx/pull/6258) Fix chart markdown link
-- [X] [#6253](https://github.com/kubernetes/ingress-nginx/pull/6253) Release v0.40.0
-
-### 3.3.1
-
-- [X] [#6233](https://github.com/kubernetes/ingress-nginx/pull/6233) Add admission controller e2e test
-
-### 3.3.0
-
-- [X] [#6203](https://github.com/kubernetes/ingress-nginx/pull/6203) Refactor parsing of key values
-- [X] [#6162](https://github.com/kubernetes/ingress-nginx/pull/6162) Add helm chart options to expose metrics service as NodePort
-- [X] [#6180](https://github.com/kubernetes/ingress-nginx/pull/6180) Fix helm chart admissionReviewVersions regression
-- [X] [#6169](https://github.com/kubernetes/ingress-nginx/pull/6169) Fix Typo in example prometheus rules
-
-### 3.0.0
-
-- [X] [#6167](https://github.com/kubernetes/ingress-nginx/pull/6167) Update chart requirements
-
-### 2.16.0
-
-- [X] [#6154](https://github.com/kubernetes/ingress-nginx/pull/6154) add `topologySpreadConstraint` to controller
-
-### 2.15.0
-
-- [X] [#6087](https://github.com/kubernetes/ingress-nginx/pull/6087) Adding parameter for externalTrafficPolicy in internal controller service spec
-
-### 2.14.0
-
-- [X] [#6104](https://github.com/kubernetes/ingress-nginx/pull/6104) Misc fixes for nginx-ingress chart for better keel and prometheus-operator integration
-
-### 2.13.0
-
-- [X] [#6093](https://github.com/kubernetes/ingress-nginx/pull/6093) Release v0.35.0
-
-### 2.13.0
-
-- [X] [#6093](https://github.com/kubernetes/ingress-nginx/pull/6093) Release v0.35.0
-- [X] [#6080](https://github.com/kubernetes/ingress-nginx/pull/6080) Switch images to k8s.gcr.io after Vanity Domain Flip
-
-### 2.12.1
-
-- [X] [#6075](https://github.com/kubernetes/ingress-nginx/pull/6075) Sync helm chart affinity examples
-
-### 2.12.0
-
-- [X] [#6039](https://github.com/kubernetes/ingress-nginx/pull/6039) Add configurable serviceMonitor metricRelabelling and targetLabels
-- [X] [#6044](https://github.com/kubernetes/ingress-nginx/pull/6044) Fix YAML linting
-
-### 2.11.3
-
-- [X] [#6038](https://github.com/kubernetes/ingress-nginx/pull/6038) Bump chart version PATCH
-
-### 2.11.2
-
-- [X] [#5951](https://github.com/kubernetes/ingress-nginx/pull/5951) Bump chart patch version
-
-### 2.11.1
-
-- [X] [#5900](https://github.com/kubernetes/ingress-nginx/pull/5900) Release helm chart for v0.34.1
-
-### 2.11.0
-
-- [X] [#5879](https://github.com/kubernetes/ingress-nginx/pull/5879) Update helm chart for v0.34.0
-- [X] [#5671](https://github.com/kubernetes/ingress-nginx/pull/5671) Make liveness probe more fault tolerant than readiness probe
-
-### 2.10.0
-
-- [X] [#5843](https://github.com/kubernetes/ingress-nginx/pull/5843) Update jettech/kube-webhook-certgen image
-
-### 2.9.1
-
-- [X] [#5823](https://github.com/kubernetes/ingress-nginx/pull/5823) Add quoting to sysctls because numeric values need to be presented as strings (#5823)
-
-### 2.9.0
-
-- [X] [#5795](https://github.com/kubernetes/ingress-nginx/pull/5795) Use fully qualified images to avoid cri-o issues
-
-
-### TODO
-
-Keep building the changelog using *git log charts* checking the tag
diff --git a/charts/ingress-nginx/changelog/.gitkeep b/charts/ingress-nginx/changelog/.gitkeep
deleted file mode 100644
index e69de29bb..000000000
diff --git a/charts/ingress-nginx/changelog/helm-chart-2.10.0.md b/charts/ingress-nginx/changelog/helm-chart-2.10.0.md
new file mode 100644
index 000000000..b42d6c28b
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-2.10.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 2.10.0
+
+* [#5843](https://github.com/kubernetes/ingress-nginx/pull/5843) Update jettech/kube-webhook-certgen image
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-2.9.1...ingress-nginx-2.10.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-2.11.0.md b/charts/ingress-nginx/changelog/helm-chart-2.11.0.md
new file mode 100644
index 000000000..e549b3867
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-2.11.0.md
@@ -0,0 +1,10 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 2.11.0
+
+* [#5879](https://github.com/kubernetes/ingress-nginx/pull/5879) Update helm chart for v0.34.0
+* [#5671](https://github.com/kubernetes/ingress-nginx/pull/5671) Make liveness probe more fault tolerant than readiness probe
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-2.10.0...ingress-nginx-2.11.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-2.11.1.md b/charts/ingress-nginx/changelog/helm-chart-2.11.1.md
new file mode 100644
index 000000000..d910d3bf4
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-2.11.1.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 2.11.1
+
+* [#5900](https://github.com/kubernetes/ingress-nginx/pull/5900) Release helm chart for v0.34.1
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-2.11.0...ingress-nginx-2.11.1
diff --git a/charts/ingress-nginx/changelog/helm-chart-2.11.2.md b/charts/ingress-nginx/changelog/helm-chart-2.11.2.md
new file mode 100644
index 000000000..9f7821005
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-2.11.2.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 2.11.2
+
+* [#5951](https://github.com/kubernetes/ingress-nginx/pull/5951) Bump chart patch version
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-2.11.1...ingress-nginx-2.11.2
diff --git a/charts/ingress-nginx/changelog/helm-chart-2.11.3.md b/charts/ingress-nginx/changelog/helm-chart-2.11.3.md
new file mode 100644
index 000000000..344769163
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-2.11.3.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 2.11.3
+
+* [#6038](https://github.com/kubernetes/ingress-nginx/pull/6038) Bump chart version PATCH
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-2.11.2...ingress-nginx-2.11.3
diff --git a/charts/ingress-nginx/changelog/helm-chart-2.12.0.md b/charts/ingress-nginx/changelog/helm-chart-2.12.0.md
new file mode 100644
index 000000000..5cb3888aa
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-2.12.0.md
@@ -0,0 +1,10 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 2.12.0
+
+* [#6039](https://github.com/kubernetes/ingress-nginx/pull/6039) Add configurable serviceMonitor metricRelabelling and targetLabels
+* [#6044](https://github.com/kubernetes/ingress-nginx/pull/6044) Fix YAML linting
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-2.11.3...ingress-nginx-2.12.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-2.12.1.md b/charts/ingress-nginx/changelog/helm-chart-2.12.1.md
new file mode 100644
index 000000000..94d121db5
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-2.12.1.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 2.12.1
+
+* [#6075](https://github.com/kubernetes/ingress-nginx/pull/6075) Sync helm chart affinity examples
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-2.12.0...ingress-nginx-2.12.1
diff --git a/charts/ingress-nginx/changelog/helm-chart-2.13.0.md b/charts/ingress-nginx/changelog/helm-chart-2.13.0.md
new file mode 100644
index 000000000..01fe0b15d
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-2.13.0.md
@@ -0,0 +1,10 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 2.13.0
+
+* [#6093](https://github.com/kubernetes/ingress-nginx/pull/6093) Release v0.35.0
+* [#6080](https://github.com/kubernetes/ingress-nginx/pull/6080) Switch images to k8s.gcr.io after Vanity Domain Flip
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-2.12.1...ingress-nginx-2.13.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-2.14.0.md b/charts/ingress-nginx/changelog/helm-chart-2.14.0.md
new file mode 100644
index 000000000..2fb7a5a76
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-2.14.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 2.14.0
+
+* [#6104](https://github.com/kubernetes/ingress-nginx/pull/6104) Misc fixes for nginx-ingress chart for better keel and prometheus-operator integration
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-2.13.0...ingress-nginx-2.14.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-2.15.0.md b/charts/ingress-nginx/changelog/helm-chart-2.15.0.md
new file mode 100644
index 000000000..543a55927
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-2.15.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 2.15.0
+
+* [#6087](https://github.com/kubernetes/ingress-nginx/pull/6087) Adding parameter for externalTrafficPolicy in internal controller service spec
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-2.14.0...ingress-nginx-2.15.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-2.16.0.md b/charts/ingress-nginx/changelog/helm-chart-2.16.0.md
new file mode 100644
index 000000000..996f4489e
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-2.16.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 2.16.0
+
+* [#6154](https://github.com/kubernetes/ingress-nginx/pull/6154) add `topologySpreadConstraint` to controller
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-2.15.0...ingress-nginx-2.16.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-2.9.0.md b/charts/ingress-nginx/changelog/helm-chart-2.9.0.md
new file mode 100644
index 000000000..11c5f5fed
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-2.9.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 2.9.0
+
+* [#5795](https://github.com/kubernetes/ingress-nginx/pull/5795) Use fully qualified images to avoid cri-o issues
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-TODO...ingress-nginx-2.9.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-2.9.1.md b/charts/ingress-nginx/changelog/helm-chart-2.9.1.md
new file mode 100644
index 000000000..7d4314d9c
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-2.9.1.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 2.9.1
+
+* [#5823](https://github.com/kubernetes/ingress-nginx/pull/5823) Add quoting to sysctls because numeric values need to be presented as strings (#5823)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-2.9.0...ingress-nginx-2.9.1
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.0.0.md b/charts/ingress-nginx/changelog/helm-chart-3.0.0.md
new file mode 100644
index 000000000..a7d50ee3a
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.0.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.0.0
+
+* [#6167](https://github.com/kubernetes/ingress-nginx/pull/6167) Update chart requirements
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-2.16.0...ingress-nginx-3.0.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.10.0.md b/charts/ingress-nginx/changelog/helm-chart-3.10.0.md
new file mode 100644
index 000000000..3369bed03
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.10.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.10.0
+
+* Fix routing regression introduced in 0.41.0 with PathType Exact
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.9.0...ingress-nginx-3.10.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.10.1.md b/charts/ingress-nginx/changelog/helm-chart-3.10.1.md
new file mode 100644
index 000000000..6ff682e52
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.10.1.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.10.1
+
+* Fix regression introduced in 0.41.0 with external authentication
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.10.0...ingress-nginx-3.10.1
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.11.0.md b/charts/ingress-nginx/changelog/helm-chart-3.11.0.md
new file mode 100644
index 000000000..69ba5506b
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.11.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.11.0
+
+* Support Keda Autoscaling
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.10.1...ingress-nginx-3.11.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.11.1.md b/charts/ingress-nginx/changelog/helm-chart-3.11.1.md
new file mode 100644
index 000000000..4e81f4b41
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.11.1.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.11.1
+
+* [#6505](https://github.com/kubernetes/ingress-nginx/pull/6505) Reorder HPA resource list to work with GitOps tooling
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.11.0...ingress-nginx-3.11.1
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.12.0.md b/charts/ingress-nginx/changelog/helm-chart-3.12.0.md
new file mode 100644
index 000000000..41b9744de
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.12.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.12.0
+
+* [#6514](https://github.com/kubernetes/ingress-nginx/pull/6514) Remove helm2 support and update docs
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.11.1...ingress-nginx-3.12.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.13.0.md b/charts/ingress-nginx/changelog/helm-chart-3.13.0.md
new file mode 100644
index 000000000..0855a7913
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.13.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.13.0
+
+* [#6544](https://github.com/kubernetes/ingress-nginx/pull/6544) Fix default backend HPA name variable
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.12.0...ingress-nginx-3.13.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.14.0.md b/charts/ingress-nginx/changelog/helm-chart-3.14.0.md
new file mode 100644
index 000000000..e07880bf4
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.14.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.14.0
+
+* [#6469](https://github.com/kubernetes/ingress-nginx/pull/6469) Allow custom service names for controller and backend
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.13.0...ingress-nginx-3.14.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.15.0.md b/charts/ingress-nginx/changelog/helm-chart-3.15.0.md
new file mode 100644
index 000000000..3053a3548
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.15.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.15.0
+
+* [#6586](https://github.com/kubernetes/ingress-nginx/pull/6586) Fix 'maxmindLicenseKey' location in values.yaml
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.14.0...ingress-nginx-3.15.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.15.1.md b/charts/ingress-nginx/changelog/helm-chart-3.15.1.md
new file mode 100644
index 000000000..f11ee0a76
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.15.1.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.15.1
+
+* Fix chart-releaser action
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.15.0...ingress-nginx-3.15.1
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.16.0.md b/charts/ingress-nginx/changelog/helm-chart-3.16.0.md
new file mode 100644
index 000000000..fba30b171
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.16.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.16.0
+
+* [#6646](https://github.com/kubernetes/ingress-nginx/pull/6646) Added LoadBalancerIP value for internal service
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.15.1...helm-chart-3.16.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.16.1.md b/charts/ingress-nginx/changelog/helm-chart-3.16.1.md
new file mode 100644
index 000000000..650d1b8fa
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.16.1.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.16.1
+
+* Fix chart-releaser action
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.16.0...helm-chart-3.16.1
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.17.0.md b/charts/ingress-nginx/changelog/helm-chart-3.17.0.md
new file mode 100644
index 000000000..175c7a264
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.17.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.17.0
+
+* Update ingress-nginx v0.42.0
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.16.1...helm-chart-3.17.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.18.0.md b/charts/ingress-nginx/changelog/helm-chart-3.18.0.md
new file mode 100644
index 000000000..31b815e4e
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.18.0.md
@@ -0,0 +1,10 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.18.0
+
+* [#6688](https://github.com/kubernetes/ingress-nginx/pull/6688) Allow volume-type emptyDir in controller podsecuritypolicy
+* [#6691](https://github.com/kubernetes/ingress-nginx/pull/6691) Improve parsing of helm parameters
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.17.0...helm-chart-3.18.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.19.0.md b/charts/ingress-nginx/changelog/helm-chart-3.19.0.md
new file mode 100644
index 000000000..0970bf02c
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.19.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.19.0
+
+* Update ingress-nginx v0.43.0
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.18.0...helm-chart-3.19.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.20.0.md b/charts/ingress-nginx/changelog/helm-chart-3.20.0.md
new file mode 100644
index 000000000..4b81ae42f
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.20.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.20.0
+
+* [#6730](https://github.com/kubernetes/ingress-nginx/pull/6730) Do not create HPA for defaultBackend if not enabled.
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.19.0...helm-chart-3.20.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.20.1.md b/charts/ingress-nginx/changelog/helm-chart-3.20.1.md
new file mode 100644
index 000000000..952bf2bd3
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.20.1.md
@@ -0,0 +1,10 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.20.1
+
+* Do not create KEDA in case of DaemonSets.
+* Fix KEDA v2 definition
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.20.0...helm-chart-3.20.1
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.21.0.md b/charts/ingress-nginx/changelog/helm-chart-3.21.0.md
new file mode 100644
index 000000000..25edbefd9
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.21.0.md
@@ -0,0 +1,12 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.21.0
+
+* [#6783](https://github.com/kubernetes/ingress-nginx/pull/6783) Add custom annotations to ScaledObject
+* [#6761](https://github.com/kubernetes/ingress-nginx/pull/6761) Adding quotes in the serviceAccount name in Helm values
+* [#6767](https://github.com/kubernetes/ingress-nginx/pull/6767) Remove ClusterRole when scope option is enabled
+* [#6785](https://github.com/kubernetes/ingress-nginx/pull/6785) Update kube-webhook-certgen image to v1.5.1
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.20.1...helm-chart-3.21.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.22.0.md b/charts/ingress-nginx/changelog/helm-chart-3.22.0.md
new file mode 100644
index 000000000..147d66421
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.22.0.md
@@ -0,0 +1,10 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.22.0
+
+* [#6802](https://github.com/kubernetes/ingress-nginx/pull/6802) Add value for configuring a custom Diffie-Hellman parameters file
+* [#6815](https://github.com/kubernetes/ingress-nginx/pull/6815) Allow use of numeric namespaces in helm chart
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.21.0...helm-chart-3.22.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.23.0.md b/charts/ingress-nginx/changelog/helm-chart-3.23.0.md
new file mode 100644
index 000000000..5dcb50fa8
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.23.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.23.0
+
+* Update ingress-nginx v0.44.0
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.22.0...helm-chart-3.23.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.24.0.md b/charts/ingress-nginx/changelog/helm-chart-3.24.0.md
new file mode 100644
index 000000000..d7db808b1
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.24.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.24.0
+
+* [#6908](https://github.com/kubernetes/ingress-nginx/pull/6908) Add volumes to default-backend deployment
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.23.0...helm-chart-3.24.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.25.0.md b/charts/ingress-nginx/changelog/helm-chart-3.25.0.md
new file mode 100644
index 000000000..f9679a124
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.25.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.25.0
+
+* [#6957](https://github.com/kubernetes/ingress-nginx/pull/6957) Add ability to specify automountServiceAccountToken
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.24.0...helm-chart-3.25.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.26.0.md b/charts/ingress-nginx/changelog/helm-chart-3.26.0.md
new file mode 100644
index 000000000..0c3a1df68
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.26.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.26.0
+
+* [#6979](https://github.com/kubernetes/ingress-nginx/pull/6979) Changed servicePort value for metrics
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.25.0...helm-chart-3.26.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.27.0.md b/charts/ingress-nginx/changelog/helm-chart-3.27.0.md
new file mode 100644
index 000000000..8113d7b9b
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.27.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.27.0
+
+* Update ingress-nginx v0.45.0
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.26.0...helm-chart-3.27.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.28.0.md b/charts/ingress-nginx/changelog/helm-chart-3.28.0.md
new file mode 100644
index 000000000..eee0ccbec
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.28.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.28.0
+
+* [#6900](https://github.com/kubernetes/ingress-nginx/pull/6900) Support existing PSPs
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.27.0...helm-chart-3.28.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.29.0.md b/charts/ingress-nginx/changelog/helm-chart-3.29.0.md
new file mode 100644
index 000000000..f0fabdce1
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.29.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.29.0
+
+* [#6945](https://github.com/kubernetes/ingress-nginx/pull/7020) Add option to specify job label for ServiceMonitor
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.28.0...helm-chart-3.29.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.3.0.md b/charts/ingress-nginx/changelog/helm-chart-3.3.0.md
new file mode 100644
index 000000000..09fab3756
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.3.0.md
@@ -0,0 +1,12 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.3.0
+
+* [#6203](https://github.com/kubernetes/ingress-nginx/pull/6203) Refactor parsing of key values
+* [#6162](https://github.com/kubernetes/ingress-nginx/pull/6162) Add helm chart options to expose metrics service as NodePort
+* [#6180](https://github.com/kubernetes/ingress-nginx/pull/6180) Fix helm chart admissionReviewVersions regression
+* [#6169](https://github.com/kubernetes/ingress-nginx/pull/6169) Fix Typo in example prometheus rules
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.0.0...ingress-nginx-3.3.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.3.1.md b/charts/ingress-nginx/changelog/helm-chart-3.3.1.md
new file mode 100644
index 000000000..81f44fdbd
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.3.1.md
@@ -0,0 +1,12 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.3.1
+
+* [#6259](https://github.com/kubernetes/ingress-nginx/pull/6259) Release helm chart
+* [#6258](https://github.com/kubernetes/ingress-nginx/pull/6258) Fix chart markdown link
+* [#6253](https://github.com/kubernetes/ingress-nginx/pull/6253) Release v0.40.0
+* [#6233](https://github.com/kubernetes/ingress-nginx/pull/6233) Add admission controller e2e test
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.3.0...ingress-nginx-3.3.1
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.30.0.md b/charts/ingress-nginx/changelog/helm-chart-3.30.0.md
new file mode 100644
index 000000000..77ad6b41b
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.30.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.30.0
+
+* [#7092](https://github.com/kubernetes/ingress-nginx/pull/7092) Removes the possibility of using localhost in ExternalNames as endpoints
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.29.0...helm-chart-3.30.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.31.0.md b/charts/ingress-nginx/changelog/helm-chart-3.31.0.md
new file mode 100644
index 000000000..bc07fed76
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.31.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.31.0
+
+* [7137] https://github.com/kubernetes/ingress-nginx/pull/7137 Add support for custom probes
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.30.0...helm-chart-3.31.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.32.0.md b/charts/ingress-nginx/changelog/helm-chart-3.32.0.md
new file mode 100644
index 000000000..68f7ed6b2
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.32.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.32.0
+
+* [7117] https://github.com/kubernetes/ingress-nginx/pull/7117 Add annotations for HPA
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.31.0...helm-chart-3.32.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.33.0.md b/charts/ingress-nginx/changelog/helm-chart-3.33.0.md
new file mode 100644
index 000000000..b56c5fc1e
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.33.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.33.0
+
+* [7164] https://github.com/kubernetes/ingress-nginx/pull/7164 Update nginx to v1.20.1
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.32.0...helm-chart-3.33.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.34.0.md b/charts/ingress-nginx/changelog/helm-chart-3.34.0.md
new file mode 100644
index 000000000..a28cd0282
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.34.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.34.0
+
+* [7256] https://github.com/kubernetes/ingress-nginx/pull/7256 Add namespace field in the namespace scoped resource templates
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.33.0...helm-chart-3.34.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.4.0.md b/charts/ingress-nginx/changelog/helm-chart-3.4.0.md
new file mode 100644
index 000000000..3b4ca9353
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.4.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.4.0
+
+* [#6268](https://github.com/kubernetes/ingress-nginx/pull/6268) Update to 0.40.2 in helm chart #6288
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.3.1...ingress-nginx-3.4.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.5.0.md b/charts/ingress-nginx/changelog/helm-chart-3.5.0.md
new file mode 100644
index 000000000..44991b3bb
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.5.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.5.0
+
+* [#6260](https://github.com/kubernetes/ingress-nginx/pull/6260) Allow Helm Chart to customize admission webhook's annotations, timeoutSeconds, namespaceSelector, objectSelector and cert files locations
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.4.0...ingress-nginx-3.5.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.5.1.md b/charts/ingress-nginx/changelog/helm-chart-3.5.1.md
new file mode 100644
index 000000000..740f00c45
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.5.1.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.5.1
+
+* [#6299](https://github.com/kubernetes/ingress-nginx/pull/6299) Fix helm chart release
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.5.0...ingress-nginx-3.5.1
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.6.0.md b/charts/ingress-nginx/changelog/helm-chart-3.6.0.md
new file mode 100644
index 000000000..4af7f11a1
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.6.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.6.0
+
+* [#6305](https://github.com/kubernetes/ingress-nginx/pull/6305) Add default linux nodeSelector
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.5.1...ingress-nginx-3.6.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.7.0.md b/charts/ingress-nginx/changelog/helm-chart-3.7.0.md
new file mode 100644
index 000000000..a6b12994b
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.7.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.7.0
+
+* [#6316](https://github.com/kubernetes/ingress-nginx/pull/6316) Numerals in podAnnotations in quotes [#6315](https://github.com/kubernetes/ingress-nginx/issues/6315)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.6.0...ingress-nginx-3.7.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.7.1.md b/charts/ingress-nginx/changelog/helm-chart-3.7.1.md
new file mode 100644
index 000000000..6ba12df91
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.7.1.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.7.1
+
+* [#6326](https://github.com/kubernetes/ingress-nginx/pull/6326) Fix liveness and readiness probe path in daemonset chart
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.7.0...ingress-nginx-3.7.1
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.8.0.md b/charts/ingress-nginx/changelog/helm-chart-3.8.0.md
new file mode 100644
index 000000000..8df250a98
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.8.0.md
@@ -0,0 +1,13 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.8.0
+
+* [#6395](https://github.com/kubernetes/ingress-nginx/pull/6395) Update jettech/kube-webhook-certgen image
+* [#6377](https://github.com/kubernetes/ingress-nginx/pull/6377) Added loadBalancerSourceRanges for internal lbs
+* [#6356](https://github.com/kubernetes/ingress-nginx/pull/6356) Add securitycontext settings on defaultbackend
+* [#6401](https://github.com/kubernetes/ingress-nginx/pull/6401) Fix controller service annotations
+* [#6403](https://github.com/kubernetes/ingress-nginx/pull/6403) Initial helm chart changelog
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.7.1...ingress-nginx-3.8.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-3.9.0.md b/charts/ingress-nginx/changelog/helm-chart-3.9.0.md
new file mode 100644
index 000000000..e8c9def51
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-3.9.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 3.9.0
+
+* [#6423](https://github.com/kubernetes/ingress-nginx/pull/6423) Add Default backend HPA autoscaling
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/ingress-nginx-3.8.0...ingress-nginx-3.9.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.0.1.md b/charts/ingress-nginx/changelog/helm-chart-4.0.1.md
new file mode 100644
index 000000000..7a187b350
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.0.1.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.0.1
+
+* [7535] https://github.com/kubernetes/ingress-nginx/pull/7535 Release v1.0.0 ingress-nginx
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-3.34.0...helm-chart-4.0.1
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.0.10.md b/charts/ingress-nginx/changelog/helm-chart-4.0.10.md
new file mode 100644
index 000000000..c5d651670
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.0.10.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.0.10
+
+* [7964] https://github.com/kubernetes/ingress-nginx/pull/7964 Update controller version to v1.1.0
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.0.9...helm-chart-4.0.10
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.0.11.md b/charts/ingress-nginx/changelog/helm-chart-4.0.11.md
new file mode 100644
index 000000000..554182355
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.0.11.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.0.11
+
+* [7873] https://github.com/kubernetes/ingress-nginx/pull/7873 Makes the [appProtocol](https://kubernetes.io/docs/concepts/services-networking/_print/#application-protocol) field optional.
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.0.10...helm-chart-4.0.11
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.0.12.md b/charts/ingress-nginx/changelog/helm-chart-4.0.12.md
new file mode 100644
index 000000000..320f6f546
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.0.12.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.0.12
+
+* [7978] https://github.com/kubernetes/ingress-nginx/pull/7979 Support custom annotations in admissions Jobs
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.0.11...helm-chart-4.0.12
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.0.13.md b/charts/ingress-nginx/changelog/helm-chart-4.0.13.md
new file mode 100644
index 000000000..edd922814
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.0.13.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.0.13
+
+* [8008] https://github.com/kubernetes/ingress-nginx/pull/8008 Add relabelings in controller-servicemonitor.yaml
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.0.12...helm-chart-4.0.13
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.0.14.md b/charts/ingress-nginx/changelog/helm-chart-4.0.14.md
new file mode 100644
index 000000000..e92701039
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.0.14.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.0.14
+
+* [8061] https://github.com/kubernetes/ingress-nginx/pull/8061 Using helm-docs to populate values table in README.md
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.0.13...helm-chart-4.0.14
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.0.15.md b/charts/ingress-nginx/changelog/helm-chart-4.0.15.md
new file mode 100644
index 000000000..d3d14a98d
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.0.15.md
@@ -0,0 +1,43 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.0.15
+
+* [8120] https://github.com/kubernetes/ingress-nginx/pull/8120    Update go in runner and release v1.1.1
+* [8119] https://github.com/kubernetes/ingress-nginx/pull/8119    Update to go v1.17.6
+* [8118] https://github.com/kubernetes/ingress-nginx/pull/8118    Remove deprecated libraries, update other libs
+* [8117] https://github.com/kubernetes/ingress-nginx/pull/8117    Fix codegen errors
+* [8115] https://github.com/kubernetes/ingress-nginx/pull/8115    chart/ghaction: set the correct permission to have access to push a release
+* [8098] https://github.com/kubernetes/ingress-nginx/pull/8098    generating SHA for CA only certs in backend_ssl.go + comparison of P…
+* [8088] https://github.com/kubernetes/ingress-nginx/pull/8088    Fix Edit this page link to use main branch
+* [8072] https://github.com/kubernetes/ingress-nginx/pull/8072    Expose GeoIP2 Continent code as variable
+* [8061] https://github.com/kubernetes/ingress-nginx/pull/8061    docs(charts): using helm-docs for chart
+* [8058] https://github.com/kubernetes/ingress-nginx/pull/8058    Bump github.com/spf13/cobra from 1.2.1 to 1.3.0
+* [8054] https://github.com/kubernetes/ingress-nginx/pull/8054    Bump google.golang.org/grpc from 1.41.0 to 1.43.0
+* [8051] https://github.com/kubernetes/ingress-nginx/pull/8051    align bug report with feature request regarding kind documentation
+* [8046] https://github.com/kubernetes/ingress-nginx/pull/8046    Report expired certificates (#8045)
+* [8044] https://github.com/kubernetes/ingress-nginx/pull/8044    remove G109 check till gosec resolves issues
+* [8042] https://github.com/kubernetes/ingress-nginx/pull/8042    docs_multiple_instances_one_cluster_ticket_7543
+* [8041] https://github.com/kubernetes/ingress-nginx/pull/8041    docs: fix typo'd executable name
+* [8035] https://github.com/kubernetes/ingress-nginx/pull/8035    Comment busy owners
+* [8029] https://github.com/kubernetes/ingress-nginx/pull/8029    Add stream-snippet as a ConfigMap and Annotation option
+* [8023] https://github.com/kubernetes/ingress-nginx/pull/8023    fix nginx compilation flags
+* [8021] https://github.com/kubernetes/ingress-nginx/pull/8021    Disable default modsecurity_rules_file if modsecurity-snippet is specified
+* [8019] https://github.com/kubernetes/ingress-nginx/pull/8019    Revise main documentation page
+* [8018] https://github.com/kubernetes/ingress-nginx/pull/8018    Preserve order of plugin invocation
+* [8015] https://github.com/kubernetes/ingress-nginx/pull/8015    Add newline indenting to admission webhook annotations
+* [8014] https://github.com/kubernetes/ingress-nginx/pull/8014    Add link to example error page manifest in docs
+* [8009] https://github.com/kubernetes/ingress-nginx/pull/8009    Fix spelling in documentation and top-level files
+* [8008] https://github.com/kubernetes/ingress-nginx/pull/8008    Add relabelings in controller-servicemonitor.yaml
+* [8003] https://github.com/kubernetes/ingress-nginx/pull/8003    Minor improvements (formatting, consistency) in install guide
+* [8001] https://github.com/kubernetes/ingress-nginx/pull/8001    fix: go-grpc Dockerfile
+* [7999] https://github.com/kubernetes/ingress-nginx/pull/7999    images: use k8s-staging-test-infra/gcb-docker-gcloud
+* [7996] https://github.com/kubernetes/ingress-nginx/pull/7996    doc: improvement
+* [7983] https://github.com/kubernetes/ingress-nginx/pull/7983    Fix a couple of misspellings in the annotations documentation.
+* [7979] https://github.com/kubernetes/ingress-nginx/pull/7979    allow set annotations for admission Jobs
+* [7977] https://github.com/kubernetes/ingress-nginx/pull/7977    Add ssl_reject_handshake to default server
+* [7975] https://github.com/kubernetes/ingress-nginx/pull/7975    add legacy version update v0.50.0 to main changelog
+* [7972] https://github.com/kubernetes/ingress-nginx/pull/7972    updated service upstream definition
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.0.14...helm-chart-4.0.15
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.0.18.md b/charts/ingress-nginx/changelog/helm-chart-4.0.18.md
new file mode 100644
index 000000000..30a8f75c1
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.0.18.md
@@ -0,0 +1,40 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.0.18
+
+* [8291](https://github.com/kubernetes/ingress-nginx/pull/8291) remove git tag env from cloud build
+* [8286](https://github.com/kubernetes/ingress-nginx/pull/8286) Fix OpenTelemetry sidecar image build
+* [8277](https://github.com/kubernetes/ingress-nginx/pull/8277) Add OpenSSF Best practices badge
+* [8273](https://github.com/kubernetes/ingress-nginx/pull/8273) Issue#8241
+* [8267](https://github.com/kubernetes/ingress-nginx/pull/8267) Add fsGroup value to admission-webhooks/job-patch charts
+* [8262](https://github.com/kubernetes/ingress-nginx/pull/8262) Updated confusing error
+* [8256](https://github.com/kubernetes/ingress-nginx/pull/8256) fix: deny locations with invalid auth-url annotation
+* [8253](https://github.com/kubernetes/ingress-nginx/pull/8253) Add a certificate info metric
+* [8236](https://github.com/kubernetes/ingress-nginx/pull/8236) webhook: remove useless code.
+* [8227](https://github.com/kubernetes/ingress-nginx/pull/8227) Update libraries in webhook image
+* [8225](https://github.com/kubernetes/ingress-nginx/pull/8225) fix inconsistent-label-cardinality for prometheus metrics: nginx_ingress_controller_requests
+* [8221](https://github.com/kubernetes/ingress-nginx/pull/8221) Do not validate ingresses with unknown ingress class in admission webhook endpoint
+* [8210](https://github.com/kubernetes/ingress-nginx/pull/8210) Bump github.com/prometheus/client_golang from 1.11.0 to 1.12.1
+* [8209](https://github.com/kubernetes/ingress-nginx/pull/8209) Bump google.golang.org/grpc from 1.43.0 to 1.44.0
+* [8204](https://github.com/kubernetes/ingress-nginx/pull/8204) Add Artifact Hub lint
+* [8203](https://github.com/kubernetes/ingress-nginx/pull/8203) Fix Indentation of example and link to cert-manager tutorial
+* [8201](https://github.com/kubernetes/ingress-nginx/pull/8201) feat(metrics): add path and method labels to requests countera
+* [8199](https://github.com/kubernetes/ingress-nginx/pull/8199) use functional options to reduce number of methods creating an EchoDeployment
+* [8196](https://github.com/kubernetes/ingress-nginx/pull/8196) docs: fix inconsistent controller annotation
+* [8191](https://github.com/kubernetes/ingress-nginx/pull/8191) Using Go install for misspell
+* [8186](https://github.com/kubernetes/ingress-nginx/pull/8186) prometheus+grafana using servicemonitor
+* [8185](https://github.com/kubernetes/ingress-nginx/pull/8185) Append elements on match, instead of removing for cors-annotations
+* [8179](https://github.com/kubernetes/ingress-nginx/pull/8179) Bump github.com/opencontainers/runc from 1.0.3 to 1.1.0
+* [8173](https://github.com/kubernetes/ingress-nginx/pull/8173) Adding annotations to the controller service account
+* [8163](https://github.com/kubernetes/ingress-nginx/pull/8163) Update the $req_id placeholder description
+* [8162](https://github.com/kubernetes/ingress-nginx/pull/8162) Versioned static manifests
+* [8159](https://github.com/kubernetes/ingress-nginx/pull/8159) Adding some geoip variables and default values
+* [8155](https://github.com/kubernetes/ingress-nginx/pull/8155) #7271 feat: avoid-pdb-creation-when-default-backend-disabled-and-replicas-gt-1
+* [8151](https://github.com/kubernetes/ingress-nginx/pull/8151) Automatically generate helm docs
+* [8143](https://github.com/kubernetes/ingress-nginx/pull/8143) Allow to configure delay before controller exits
+* [8136](https://github.com/kubernetes/ingress-nginx/pull/8136) add ingressClass option to helm chart - back compatibility with ingress.class annotations
+* [8126](https://github.com/kubernetes/ingress-nginx/pull/8126) Example for JWT
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.0.15...helm-chart-4.0.18
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.0.2.md b/charts/ingress-nginx/changelog/helm-chart-4.0.2.md
new file mode 100644
index 000000000..9dbd003a9
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.0.2.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.0.2
+
+* [7681] https://github.com/kubernetes/ingress-nginx/pull/7681 Release v1.0.1 of ingress-nginx
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.0.1...helm-chart-4.0.2
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.0.3.md b/charts/ingress-nginx/changelog/helm-chart-4.0.3.md
new file mode 100644
index 000000000..09b89f66c
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.0.3.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.0.3
+
+* [7707] https://github.com/kubernetes/ingress-nginx/pull/7707 Release v1.0.2 of ingress-nginx
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.0.2...helm-chart-4.0.3
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.0.5.md b/charts/ingress-nginx/changelog/helm-chart-4.0.5.md
new file mode 100644
index 000000000..be67704ba
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.0.5.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.0.5
+
+* [7740] https://github.com/kubernetes/ingress-nginx/pull/7740 Release v1.0.3 of ingress-nginx
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.0.3...helm-chart-4.0.5
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.0.6.md b/charts/ingress-nginx/changelog/helm-chart-4.0.6.md
new file mode 100644
index 000000000..25276e2be
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.0.6.md
@@ -0,0 +1,12 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.0.6
+
+* [7804] https://github.com/kubernetes/ingress-nginx/pull/7804 Release v1.0.4 of ingress-nginx
+* [7651] https://github.com/kubernetes/ingress-nginx/pull/7651 Support ipFamilyPolicy and ipFamilies fields in Helm Chart
+* [7798] https://github.com/kubernetes/ingress-nginx/pull/7798 Exoscale: use HTTP Healthcheck mode
+* [7793] https://github.com/kubernetes/ingress-nginx/pull/7793 Update kube-webhook-certgen to v1.1.1
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.0.5...helm-chart-4.0.6
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.0.7.md b/charts/ingress-nginx/changelog/helm-chart-4.0.7.md
new file mode 100644
index 000000000..50fd9227c
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.0.7.md
@@ -0,0 +1,10 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.0.7
+
+* [7923] https://github.com/kubernetes/ingress-nginx/pull/7923 Release v1.0.5 of ingress-nginx
+* [7806] https://github.com/kubernetes/ingress-nginx/pull/7806 Choice option for internal/external loadbalancer type service
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.0.6...helm-chart-4.0.7
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.0.9.md b/charts/ingress-nginx/changelog/helm-chart-4.0.9.md
new file mode 100644
index 000000000..f2f725c93
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.0.9.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.0.9
+
+* [6992] https://github.com/kubernetes/ingress-nginx/pull/6992 Add ability to specify labels for all resources
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.0.7...helm-chart-4.0.9
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.1.0.md b/charts/ingress-nginx/changelog/helm-chart-4.1.0.md
new file mode 100644
index 000000000..24aaf49ae
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.1.0.md
@@ -0,0 +1,21 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.1.0
+
+* [8481](https://github.com/kubernetes/ingress-nginx/pull/8481) Fix log creation in chroot script
+* [8479](https://github.com/kubernetes/ingress-nginx/pull/8479) changed nginx base img tag to img built with alpine3.14.6
+* [8478](https://github.com/kubernetes/ingress-nginx/pull/8478) update base images and protobuf gomod
+* [8468](https://github.com/kubernetes/ingress-nginx/pull/8468) Fallback to ngx.var.scheme for redirectScheme with use-forward-headers when X-Forwarded-Proto is empty
+* [8456](https://github.com/kubernetes/ingress-nginx/pull/8456) Implement object deep inspector
+* [8455](https://github.com/kubernetes/ingress-nginx/pull/8455) Update dependencies
+* [8454](https://github.com/kubernetes/ingress-nginx/pull/8454) Update index.md
+* [8447](https://github.com/kubernetes/ingress-nginx/pull/8447) typo fixing
+* [8446](https://github.com/kubernetes/ingress-nginx/pull/8446) Fix suggested annotation-value-word-blocklist
+* [8444](https://github.com/kubernetes/ingress-nginx/pull/8444) replace deprecated topology key in example with current one
+* [8443](https://github.com/kubernetes/ingress-nginx/pull/8443) Add dependency review enforcement
+* [8434](https://github.com/kubernetes/ingress-nginx/pull/8434) added new auth-tls-match-cn annotation
+* [8426](https://github.com/kubernetes/ingress-nginx/pull/8426) Bump github.com/prometheus/common from 0.32.1 to 0.33.0
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.0.18...helm-chart-4.1.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.1.2.md b/charts/ingress-nginx/changelog/helm-chart-4.1.2.md
new file mode 100644
index 000000000..0a1d80cf1
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.1.2.md
@@ -0,0 +1,11 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.1.2
+
+* [8587](https://github.com/kubernetes/ingress-nginx/pull/8587) Add CAP_SYS_CHROOT to DS/PSP when needed
+* [8458](https://github.com/kubernetes/ingress-nginx/pull/8458) Add portNamePreffix Helm chart parameter
+* [8522](https://github.com/kubernetes/ingress-nginx/pull/8522) Add documentation for controller.service.loadBalancerIP in Helm chart
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.1.0...helm-chart-4.1.2
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.2.0.md b/charts/ingress-nginx/changelog/helm-chart-4.2.0.md
new file mode 100644
index 000000000..2074a0953
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.2.0.md
@@ -0,0 +1,47 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.2.0
+
+* Support for Kubernetes v1.19.0 was removed
+* [8810](https://github.com/kubernetes/ingress-nginx/pull/8810) Prepare for v1.3.0
+* [8808](https://github.com/kubernetes/ingress-nginx/pull/8808) revert arch var name
+* [8805](https://github.com/kubernetes/ingress-nginx/pull/8805) Bump k8s.io/klog/v2 from 2.60.1 to 2.70.1
+* [8803](https://github.com/kubernetes/ingress-nginx/pull/8803) Update to nginx base with alpine v3.16
+* [8802](https://github.com/kubernetes/ingress-nginx/pull/8802) chore: start v1.3.0 release process
+* [8798](https://github.com/kubernetes/ingress-nginx/pull/8798) Add v1.24.0 to test matrix
+* [8796](https://github.com/kubernetes/ingress-nginx/pull/8796) fix: add MAC_OS variable for static-check
+* [8793](https://github.com/kubernetes/ingress-nginx/pull/8793) changed to alpine-v3.16
+* [8781](https://github.com/kubernetes/ingress-nginx/pull/8781) Bump github.com/stretchr/testify from 1.7.5 to 1.8.0
+* [8778](https://github.com/kubernetes/ingress-nginx/pull/8778) chore: remove stable.txt from release process
+* [8775](https://github.com/kubernetes/ingress-nginx/pull/8775) Remove stable
+* [8773](https://github.com/kubernetes/ingress-nginx/pull/8773) Bump github/codeql-action from 2.1.14 to 2.1.15
+* [8772](https://github.com/kubernetes/ingress-nginx/pull/8772) Bump ossf/scorecard-action from 1.1.1 to 1.1.2
+* [8771](https://github.com/kubernetes/ingress-nginx/pull/8771) fix bullet md format
+* [8770](https://github.com/kubernetes/ingress-nginx/pull/8770) Add condition for monitoring.coreos.com/v1 API
+* [8769](https://github.com/kubernetes/ingress-nginx/pull/8769) Fix typos and add links to developer guide
+* [8767](https://github.com/kubernetes/ingress-nginx/pull/8767) change v1.2.0 to v1.2.1 in deploy doc URLs
+* [8765](https://github.com/kubernetes/ingress-nginx/pull/8765) Bump github/codeql-action from 1.0.26 to 2.1.14
+* [8752](https://github.com/kubernetes/ingress-nginx/pull/8752) Bump github.com/spf13/cobra from 1.4.0 to 1.5.0
+* [8751](https://github.com/kubernetes/ingress-nginx/pull/8751) Bump github.com/stretchr/testify from 1.7.2 to 1.7.5
+* [8750](https://github.com/kubernetes/ingress-nginx/pull/8750) added announcement
+* [8740](https://github.com/kubernetes/ingress-nginx/pull/8740) change sha e2etestrunner and echoserver
+* [8738](https://github.com/kubernetes/ingress-nginx/pull/8738) Update docs to make it easier for noobs to follow step by step
+* [8737](https://github.com/kubernetes/ingress-nginx/pull/8737) updated baseimage sha
+* [8736](https://github.com/kubernetes/ingress-nginx/pull/8736) set ld-musl-path
+* [8733](https://github.com/kubernetes/ingress-nginx/pull/8733) feat: migrate leaderelection lock to leases
+* [8726](https://github.com/kubernetes/ingress-nginx/pull/8726) prometheus metric: upstream_latency_seconds
+* [8720](https://github.com/kubernetes/ingress-nginx/pull/8720) Ci pin deps
+* [8719](https://github.com/kubernetes/ingress-nginx/pull/8719) Working OpenTelemetry sidecar (base nginx image)
+* [8714](https://github.com/kubernetes/ingress-nginx/pull/8714) Create Openssf scorecard
+* [8708](https://github.com/kubernetes/ingress-nginx/pull/8708) Bump github.com/prometheus/common from 0.34.0 to 0.35.0
+* [8703](https://github.com/kubernetes/ingress-nginx/pull/8703) Bump actions/dependency-review-action from 1 to 2
+* [8701](https://github.com/kubernetes/ingress-nginx/pull/8701) Fix several typos
+* [8699](https://github.com/kubernetes/ingress-nginx/pull/8699) fix the gosec test and a make target for it
+* [8698](https://github.com/kubernetes/ingress-nginx/pull/8698) Bump actions/upload-artifact from 2.3.1 to 3.1.0
+* [8697](https://github.com/kubernetes/ingress-nginx/pull/8697) Bump actions/setup-go from 2.2.0 to 3.2.0
+* [8695](https://github.com/kubernetes/ingress-nginx/pull/8695) Bump actions/download-artifact from 2 to 3
+* [8694](https://github.com/kubernetes/ingress-nginx/pull/8694) Bump crazy-max/ghaction-docker-buildx from 1.6.2 to 3.3.1
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.1.2...helm-chart-4.2.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.2.1.md b/charts/ingress-nginx/changelog/helm-chart-4.2.1.md
new file mode 100644
index 000000000..7965bb1c2
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.2.1.md
@@ -0,0 +1,10 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.2.1
+
+* The sha of kube-webhook-certgen image & the opentelemetry image, in values file, was changed to new images built on alpine-v3.16.1
+* [8896](https://github.com/kubernetes/ingress-nginx/pull/8896) updated to new images built today
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.2.0...helm-chart-4.2.1
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.3.0.md b/charts/ingress-nginx/changelog/helm-chart-4.3.0.md
new file mode 100644
index 000000000..f9dca22d9
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.3.0.md
@@ -0,0 +1,14 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.3.0
+
+* Support for Kubernetes v.1.25.0 was added and support for endpoint slices
+* Support for Kubernetes v1.20.0 and v1.21.0 was removed
+* [8890](https://github.com/kubernetes/ingress-nginx/pull/8890) migrate to endpointslices
+* [9059](https://github.com/kubernetes/ingress-nginx/pull/9059) kubewebhookcertgen sha change after go1191
+* [9046](https://github.com/kubernetes/ingress-nginx/pull/9046) Parameterize metrics port name
+* [9104](https://github.com/kubernetes/ingress-nginx/pull/9104) Fix yaml formatting error with multiple annotations
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.2.1...helm-chart-4.3.0
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.4.0.md b/charts/ingress-nginx/changelog/helm-chart-4.4.0.md
new file mode 100644
index 000000000..20f9e2336
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.4.0.md
@@ -0,0 +1,12 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.4.0
+
+* Adding support for disabling liveness and readiness probes to the Helm chart by @njegosrailic in https://github.com/kubernetes/ingress-nginx/pull/9238
+* add:(admission-webhooks) ability to set securityContext by @ybelMekk in https://github.com/kubernetes/ingress-nginx/pull/9186
+* #7652 - Updated Helm chart to use the fullname for the electionID if not specified. by @FutureMatt in https://github.com/kubernetes/ingress-nginx/pull/9133
+* Rename controller-wehbooks-networkpolicy.yaml. by @Gacko in https://github.com/kubernetes/ingress-nginx/pull/9123
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.3.0...helm-chart-4.4.0

From 44e550ea72f673fadeae0559a773feb9cbf3eec6 Mon Sep 17 00:00:00 2001
From: Zadkiel Aharonian <hello@zadkiel.fr>
Date: Wed, 29 Nov 2023 15:33:08 +0100
Subject: [PATCH 1043/1641] fix: remove tcpproxy copy error handling

---
 pkg/tcpproxy/tcp.go | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/pkg/tcpproxy/tcp.go b/pkg/tcpproxy/tcp.go
index eda4a2746..fba4d21be 100644
--- a/pkg/tcpproxy/tcp.go
+++ b/pkg/tcpproxy/tcp.go
@@ -125,9 +125,8 @@ func (p *TCPProxy) Handle(conn net.Conn) {
 
 func pipe(client, server net.Conn) {
 	doCopy := func(s, c net.Conn, cancel chan<- bool) {
-		if _, err := io.Copy(s, c); err != nil {
-			klog.Errorf("Error copying data: %v", err)
-		}
+		//nolint:errcheck // No need to catch these errors
+		io.Copy(s, c)
 		cancel <- true
 	}
 

From a75db69c2e60edd6c355f23292242fd27dab71ea Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 29 Nov 2023 11:44:48 -0500
Subject: [PATCH 1044/1641] Revert "upgrade nginx"

---
 go.work.sum                                   |   2 -
 images/nginx/rootfs/build.sh                  |  20 +-
 .../nginx-1.21.4-balancer_status_code.patch   |  72 +++++
 .../nginx-1.21.4-cache_manager_exit.patch     |  19 ++
 .../nginx-1.21.4-delayed_posted_events.patch  |  98 +++++++
 .../patches/nginx-1.21.4-hash_overflow.patch  |  20 ++
 .../rootfs/patches/nginx-1.21.4-http2.patch   |  57 ++++
 ...nginx-1.21.4-init_cycle_pool_release.patch |  59 ++++
 .../nginx-1.21.4-larger_max_error_str.patch   |  13 +
 .../patches/nginx-1.21.4-no_Werror.patch      |  36 +++
 .../nginx-1.21.4-proxy_host_port_vars.patch   |  19 ++
 .../nginx-1.21.4-resolver_conf_parsing.patch  | 263 ++++++++++++++++++
 ...nx-1.21.4-reuseport_close_unused_fds.patch |  38 +++
 ...-1.21.4-single_process_graceful_exit.patch |  75 +++++
 .../patches/nginx-1.21.4-socket_cloexec.patch | 185 ++++++++++++
 .../nginx-1.21.4-ssl_cert_cb_yield.patch      |  64 +++++
 .../nginx-1.21.4-ssl_sess_cb_yield.patch      |  41 +++
 ...stream_proxy_get_next_upstream_tries.patch |  31 +++
 ...nx-1.21.4-stream_ssl_preread_no_skip.patch |  13 +
 .../nginx-1.21.4-upstream_pipelining.patch    |  23 ++
 ...nginx-1.21.4-upstream_timeout_fields.patch | 112 ++++++++
 21 files changed, 1249 insertions(+), 11 deletions(-)
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-balancer_status_code.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-cache_manager_exit.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-delayed_posted_events.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-hash_overflow.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-http2.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-resolver_conf_parsing.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-reuseport_close_unused_fds.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-single_process_graceful_exit.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-socket_cloexec.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-ssl_cert_cb_yield.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-ssl_sess_cb_yield.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-stream_ssl_preread_no_skip.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-upstream_pipelining.patch
 create mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-upstream_timeout_fields.patch

diff --git a/go.work.sum b/go.work.sum
index f1f07229e..91bbfc14a 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -255,7 +255,6 @@ golang.org/x/net v0.12.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA=
 golang.org/x/net v0.13.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA=
 golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
 golang.org/x/net v0.15.0/go.mod h1:idbUs1IY1+zTqbi8yxTbhexhEEk5ur9LInksu6HrEpk=
-golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
 golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE=
 golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI=
@@ -268,7 +267,6 @@ golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.3.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.4.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.10.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 118dee1be..8bf372f21 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -18,7 +18,7 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
-export NGINX_VERSION=1.25.3
+export NGINX_VERSION=1.21.6
 
 # Check for recent changes: https://github.com/vision5/ngx_devel_kit/compare/v0.3.2...master
 export NDK_VERSION=0.3.2
@@ -80,8 +80,8 @@ export LUA_CJSON_VERSION=2.1.0.11
 # Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/3.4...master
 export GEOIP2_VERSION=a607a41a8115fecfc05b5c283c81532a3d605425
 
-# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20231117...v2.1-agentzh
-export LUAJIT_VERSION=2.1-20231117
+# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20230410...v2.1-agentzh
+export LUAJIT_VERSION=2.1-20230410
 
 # Check for recent changes: https://github.com/openresty/lua-resty-balancer/compare/v0.04...master
 export LUA_RESTY_BALANCER=0.04
@@ -98,8 +98,8 @@ export LUA_RESTY_COOKIE_VERSION=9533f479371663107b515590fc9daf00d61ebf11
 # Check for recent changes: https://github.com/openresty/lua-resty-dns/compare/v0.22...master
 export LUA_RESTY_DNS=0.22
 
-# Check for recent changes: https://github.com/ledgetech/lua-resty-http/compare/v0.17.1...master
-export LUA_RESTY_HTTP=0.17.1
+# Check for recent changes: https://github.com/ledgetech/lua-resty-http/compare/v0.16.1...master
+export LUA_RESTY_HTTP=0ce55d6d15da140ecc5966fa848204c6fd9074e8
 
 # Check for recent changes: https://github.com/openresty/lua-resty-lock/compare/v0.09...master
 export LUA_RESTY_LOCK=0.09
@@ -195,7 +195,7 @@ mkdir --verbose -p "$BUILD_PATH"
 cd "$BUILD_PATH"
 
 # download, verify and extract the source files
-get_src 64c5b975ca287939e828303fa857d22f142b251f17808dfe41733512d9cded86 \
+get_src 66dc7081488811e9f925719e34d1b4504c2801c81dee2920e5452a86b11405ae \
         "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
 
 get_src aa961eafb8317e0eb8da37eb6e2c9ff42267edd18b56947384e719b85188f58b \
@@ -255,7 +255,7 @@ if [[ ${ARCH} == "s390x" ]]; then
 get_src 266ed1abb70a9806d97cb958537a44b67db6afb33d3b32292a2d68a2acedea75 \
         "https://github.com/openresty/luajit2/archive/$LUAJIT_VERSION.tar.gz"
 else
-get_src cc92968c57c00303eb9eaebf65cc8b29a0f851670f16bb514896ab5057ae381f \
+get_src 77bbcbb24c3c78f51560017288f3118d995fe71240aa379f5818ff6b166712ff \
         "https://github.com/openresty/luajit2/archive/v$LUAJIT_VERSION.tar.gz"
 fi
 
@@ -297,8 +297,8 @@ get_src b4ddcd47db347e9adf5c1e1491a6279a6ae2a3aff3155ef77ea0a65c998a69c1 \
 get_src 70e9a01eb32ccade0d5116a25bcffde0445b94ad35035ce06b94ccd260ad1bf0 \
         "https://github.com/openresty/lua-resty-dns/archive/v$LUA_RESTY_DNS.tar.gz"
 
-get_src f52a0538b20a2d45025f318c18a138b78f6f88f07713dd0ed502183cb3d16f17 \
-        "https://github.com/ledgetech/lua-resty-http/archive/v$LUA_RESTY_HTTP.tar.gz"
+get_src 9fcb6db95bc37b6fce77d3b3dc740d593f9d90dce0369b405eb04844d56ac43f \
+        "https://github.com/ledgetech/lua-resty-http/archive/$LUA_RESTY_HTTP.tar.gz"
 
 get_src 02733575c4aed15f6cab662378e4b071c0a4a4d07940c4ef19a7319e9be943d4 \
         "https://github.com/openresty/lua-resty-memcached/archive/v$LUA_RESTY_MEMCACHED_VERSION.tar.gz"
@@ -467,6 +467,8 @@ make install
 cd "$BUILD_PATH"
 git clone --depth=100 https://github.com/google/ngx_brotli.git
 cd ngx_brotli
+# https://github.com/google/ngx_brotli/issues/156
+git reset --hard 63ca02abdcf79c9e788d2eedcc388d2335902e52
 git submodule init
 git submodule update
 
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-balancer_status_code.patch b/images/nginx/rootfs/patches/nginx-1.21.4-balancer_status_code.patch
new file mode 100644
index 000000000..c4d87e2fb
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-balancer_status_code.patch
@@ -0,0 +1,72 @@
+diff --git a/src/http/ngx_http_upstream.c b/src/http/ngx_http_upstream.c
+index f8d5707d..6efe0047 100644
+--- a/src/http/ngx_http_upstream.c
++++ b/src/http/ngx_http_upstream.c
+@@ -1515,6 +1515,11 @@ ngx_http_upstream_connect(ngx_http_request_t *r, ngx_http_upstream_t *u)
+         return;
+     }
+ 
++    if (rc >= NGX_HTTP_SPECIAL_RESPONSE) {
++        ngx_http_upstream_finalize_request(r, u, rc);
++        return;
++    }
++
+     u->state->peer = u->peer.name;
+ 
+     if (rc == NGX_BUSY) {
+diff --git a/src/http/ngx_http_upstream.h b/src/http/ngx_http_upstream.h
+index 3e714e5b..dfbb25e0 100644
+--- a/src/http/ngx_http_upstream.h
++++ b/src/http/ngx_http_upstream.h
+@@ -427,4 +427,9 @@ extern ngx_conf_bitmask_t  ngx_http_upstream_cache_method_mask[];
+ extern ngx_conf_bitmask_t  ngx_http_upstream_ignore_headers_masks[];
+ 
+ 
++#ifndef HAVE_BALANCER_STATUS_CODE_PATCH
++#define HAVE_BALANCER_STATUS_CODE_PATCH
++#endif
++
++
+ #endif /* _NGX_HTTP_UPSTREAM_H_INCLUDED_ */
+diff --git a/src/stream/ngx_stream.h b/src/stream/ngx_stream.h
+index 09d24593..d8b4b584 100644
+--- a/src/stream/ngx_stream.h
++++ b/src/stream/ngx_stream.h
+@@ -27,6 +27,7 @@ typedef struct ngx_stream_session_s  ngx_stream_session_t;
+ 
+ 
+ #define NGX_STREAM_OK                        200
++#define NGX_STREAM_SPECIAL_RESPONSE          300
+ #define NGX_STREAM_BAD_REQUEST               400
+ #define NGX_STREAM_FORBIDDEN                 403
+ #define NGX_STREAM_INTERNAL_SERVER_ERROR     500
+diff --git a/src/stream/ngx_stream_proxy_module.c b/src/stream/ngx_stream_proxy_module.c
+index 818d7329..329dcdc6 100644
+--- a/src/stream/ngx_stream_proxy_module.c
++++ b/src/stream/ngx_stream_proxy_module.c
+@@ -691,6 +691,11 @@ ngx_stream_proxy_connect(ngx_stream_session_t *s)
+         return;
+     }
+ 
++    if (rc >= NGX_STREAM_SPECIAL_RESPONSE) {
++        ngx_stream_proxy_finalize(s, rc);
++        return;
++    }
++
+     u->state->peer = u->peer.name;
+ 
+     if (rc == NGX_BUSY) {
+diff --git a/src/stream/ngx_stream_upstream.h b/src/stream/ngx_stream_upstream.h
+index 73947f46..21bc0ad7 100644
+--- a/src/stream/ngx_stream_upstream.h
++++ b/src/stream/ngx_stream_upstream.h
+@@ -151,4 +151,9 @@ ngx_stream_upstream_srv_conf_t *ngx_stream_upstream_add(ngx_conf_t *cf,
+ extern ngx_module_t  ngx_stream_upstream_module;
+ 
+ 
++#ifndef HAVE_BALANCER_STATUS_CODE_PATCH
++#define HAVE_BALANCER_STATUS_CODE_PATCH
++#endif
++
++
+ #endif /* _NGX_STREAM_UPSTREAM_H_INCLUDED_ */
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-cache_manager_exit.patch b/images/nginx/rootfs/patches/nginx-1.21.4-cache_manager_exit.patch
new file mode 100644
index 000000000..91ee63a26
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-cache_manager_exit.patch
@@ -0,0 +1,19 @@
+# HG changeset patch
+# User Yichun Zhang <agentzh@gmail.com>
+# Date 1383598130 28800
+# Node ID f64218e1ac963337d84092536f588b8e0d99bbaa
+# Parent  dea321e5c0216efccbb23e84bbce7cf3e28f130c
+Cache: gracefully exit the cache manager process.
+
+diff -r dea321e5c021 -r f64218e1ac96 src/os/unix/ngx_process_cycle.c
+--- a/src/os/unix/ngx_process_cycle.c	Thu Oct 31 18:23:49 2013 +0400
++++ b/src/os/unix/ngx_process_cycle.c	Mon Nov 04 12:48:50 2013 -0800
+@@ -1134,7 +1134,7 @@
+ 
+         if (ngx_terminate || ngx_quit) {
+             ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "exiting");
+-            exit(0);
++            ngx_worker_process_exit(cycle);
+         }
+ 
+         if (ngx_reopen) {
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-delayed_posted_events.patch b/images/nginx/rootfs/patches/nginx-1.21.4-delayed_posted_events.patch
new file mode 100644
index 000000000..687584324
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-delayed_posted_events.patch
@@ -0,0 +1,98 @@
+diff --git a/src/event/ngx_event.c b/src/event/ngx_event.c
+index 57af8132..4853945f 100644
+--- a/src/event/ngx_event.c
++++ b/src/event/ngx_event.c
+@@ -196,6 +196,9 @@ ngx_process_events_and_timers(ngx_cycle_t *cycle)
+     ngx_uint_t  flags;
+     ngx_msec_t  timer, delta;
+ 
++    ngx_queue_t     *q;
++    ngx_event_t     *ev;
++
+     if (ngx_timer_resolution) {
+         timer = NGX_TIMER_INFINITE;
+         flags = 0;
+@@ -215,6 +218,13 @@ ngx_process_events_and_timers(ngx_cycle_t *cycle)
+ #endif
+     }
+ 
++    if (!ngx_queue_empty(&ngx_posted_delayed_events)) {
++        ngx_log_debug0(NGX_LOG_DEBUG_EVENT, cycle->log, 0,
++                       "posted delayed event queue not empty"
++                       " making poll timeout 0");
++        timer = 0;
++    }
++
+     if (ngx_use_accept_mutex) {
+         if (ngx_accept_disabled > 0) {
+             ngx_accept_disabled--;
+@@ -257,6 +267,35 @@ ngx_process_events_and_timers(ngx_cycle_t *cycle)
+     }
+ 
+     ngx_event_process_posted(cycle, &ngx_posted_events);
++
++    while (!ngx_queue_empty(&ngx_posted_delayed_events)) {
++        q = ngx_queue_head(&ngx_posted_delayed_events);
++
++        ev = ngx_queue_data(q, ngx_event_t, queue);
++        if (ev->delayed) {
++            /* start of newly inserted nodes */
++            for (/* void */;
++                 q != ngx_queue_sentinel(&ngx_posted_delayed_events);
++                 q = ngx_queue_next(q))
++            {
++                ev = ngx_queue_data(q, ngx_event_t, queue);
++                ev->delayed = 0;
++
++                ngx_log_debug1(NGX_LOG_DEBUG_EVENT, cycle->log, 0,
++                               "skipping delayed posted event %p,"
++                               " till next iteration", ev);
++            }
++
++            break;
++        }
++
++        ngx_log_debug1(NGX_LOG_DEBUG_EVENT, cycle->log, 0,
++                       "delayed posted event %p", ev);
++
++        ngx_delete_posted_event(ev);
++
++        ev->handler(ev);
++    }
+ }
+ 
+ 
+@@ -600,6 +639,7 @@ ngx_event_process_init(ngx_cycle_t *cycle)
+ 
+     ngx_queue_init(&ngx_posted_accept_events);
+     ngx_queue_init(&ngx_posted_events);
++    ngx_queue_init(&ngx_posted_delayed_events);
+ 
+     if (ngx_event_timer_init(cycle->log) == NGX_ERROR) {
+         return NGX_ERROR;
+diff --git a/src/event/ngx_event_posted.c b/src/event/ngx_event_posted.c
+index d851f3d1..b6cea009 100644
+--- a/src/event/ngx_event_posted.c
++++ b/src/event/ngx_event_posted.c
+@@ -12,6 +12,7 @@
+ 
+ ngx_queue_t  ngx_posted_accept_events;
+ ngx_queue_t  ngx_posted_events;
++ngx_queue_t  ngx_posted_delayed_events;
+ 
+ 
+ void
+diff --git a/src/event/ngx_event_posted.h b/src/event/ngx_event_posted.h
+index 145d30fe..6c388553 100644
+--- a/src/event/ngx_event_posted.h
++++ b/src/event/ngx_event_posted.h
+@@ -43,6 +43,9 @@ void ngx_event_process_posted(ngx_cycle_t *cycle, ngx_queue_t *posted);
+ 
+ extern ngx_queue_t  ngx_posted_accept_events;
+ extern ngx_queue_t  ngx_posted_events;
++extern ngx_queue_t  ngx_posted_delayed_events;
++
++#define HAVE_POSTED_DELAYED_EVENTS_PATCH
+ 
+ 
+ #endif /* _NGX_EVENT_POSTED_H_INCLUDED_ */
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-hash_overflow.patch b/images/nginx/rootfs/patches/nginx-1.21.4-hash_overflow.patch
new file mode 100644
index 000000000..449d214ba
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-hash_overflow.patch
@@ -0,0 +1,20 @@
+# HG changeset patch
+# User Yichun Zhang <agentzh@gmail.com>
+# Date 1412276417 25200
+#      Thu Oct 02 12:00:17 2014 -0700
+# Node ID 4032b992f23b054c1a2cfb0be879330d2c6708e5
+# Parent  1ff0f68d9376e3d184d65814a6372856bf65cfcd
+Hash: buffer overflow might happen when exceeding the pre-configured limits.
+
+diff -r 1ff0f68d9376 -r 4032b992f23b src/core/ngx_hash.c
+--- a/src/core/ngx_hash.c	Tue Sep 30 15:50:28 2014 -0700
++++ b/src/core/ngx_hash.c	Thu Oct 02 12:00:17 2014 -0700
+@@ -312,6 +312,8 @@ ngx_hash_init(ngx_hash_init_t *hinit, ng
+         continue;
+     }
+ 
++    size--;
++
+     ngx_log_error(NGX_LOG_WARN, hinit->pool->log, 0,
+                   "could not build optimal %s, you should increase "
+                   "either %s_max_size: %i or %s_bucket_size: %i; "
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-http2.patch b/images/nginx/rootfs/patches/nginx-1.21.4-http2.patch
new file mode 100644
index 000000000..3b9d57736
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-http2.patch
@@ -0,0 +1,57 @@
+#commit 6ceef192e7af1c507826ac38a2d43f08bf265fb9
+#repository: https://github.com/nginx/nginx
+#Author: Maxim Dounin <mdounin@mdounin.ru>
+#Date:   Tue Oct 10 15:13:39 2023 +0300
+diff --git a/src/http/v2/ngx_http_v2.c b/src/http/v2/ngx_http_v2.c
+index 7c05ff1e7..410a8be24 100644
+--- a/src/http/v2/ngx_http_v2.c
++++ b/src/http/v2/ngx_http_v2.c
+@@ -347,6 +347,7 @@ ngx_http_v2_read_handler(ngx_event_t *rev)
+     ngx_log_debug0(NGX_LOG_DEBUG_HTTP, c->log, 0, "http2 read handler");
+
+     h2c->blocked = 1;
++    h2c->new_streams = 0;
+
+     if (c->close) {
+         c->close = 0;
+@@ -1284,6 +1285,14 @@ ngx_http_v2_state_headers(ngx_http_v2_connection_t *h2c, u_char *pos,
+         goto rst_stream;
+     }
+
++    if (h2c->new_streams++ >= 2 * h2scf->concurrent_streams) {
++        ngx_log_error(NGX_LOG_INFO, h2c->connection->log, 0,
++                      "client sent too many streams at once");
++
++        status = NGX_HTTP_V2_REFUSED_STREAM;
++        goto rst_stream;
++    }
++
+     if (!h2c->settings_ack
+         && !(h2c->state.flags & NGX_HTTP_V2_END_STREAM_FLAG)
+         && h2scf->preread_size < NGX_HTTP_V2_DEFAULT_WINDOW)
+@@ -1349,6 +1358,12 @@ ngx_http_v2_state_headers(ngx_http_v2_connection_t *h2c, u_char *pos,
+
+ rst_stream:
+
++    if (h2c->refused_streams++ > ngx_max(h2scf->concurrent_streams, 100)) {
++        ngx_log_error(NGX_LOG_INFO, h2c->connection->log, 0,
++                      "client sent too many refused streams");
++        return ngx_http_v2_connection_error(h2c, NGX_HTTP_V2_NO_ERROR);
++    }
++
+     if (ngx_http_v2_send_rst_stream(h2c, h2c->state.sid, status) != NGX_OK) {
+         return ngx_http_v2_connection_error(h2c, NGX_HTTP_V2_INTERNAL_ERROR);
+     }
+diff --git a/src/http/v2/ngx_http_v2.h b/src/http/v2/ngx_http_v2.h
+index cb9014ccf..6751b3026 100644
+--- a/src/http/v2/ngx_http_v2.h
++++ b/src/http/v2/ngx_http_v2.h
+@@ -131,6 +131,8 @@ struct ngx_http_v2_connection_s {
+     ngx_uint_t                       processing;
+     ngx_uint_t                       frames;
+     ngx_uint_t                       idle;
++    ngx_uint_t                       new_streams;
++    ngx_uint_t                       refused_streams;
+     ngx_uint_t                       priority_limit;
+
+     size_t                           send_window;
\ No newline at end of file
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch b/images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch
new file mode 100644
index 000000000..9cfa4f7cb
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch
@@ -0,0 +1,59 @@
+diff -rup nginx-1.21.4/src/core/nginx.c nginx-1.21.4-patched/src/core/nginx.c
+--- nginx-1.21.4/src/core/nginx.c	2017-12-17 00:00:38.136470108 -0800
++++ nginx-1.21.4-patched/src/core/nginx.c	2017-12-16 23:59:51.680958322 -0800
+@@ -186,6 +186,7 @@ static u_char      *ngx_prefix;
+ static u_char      *ngx_conf_file;
+ static u_char      *ngx_conf_params;
+ static char        *ngx_signal;
++ngx_pool_t         *saved_init_cycle_pool = NULL;
+ 
+ 
+ static char **ngx_os_environ;
+@@ -253,6 +254,8 @@ main(int argc, char *const *argv)
+         return 1;
+     }
+ 
++    saved_init_cycle_pool = init_cycle.pool;
++
+     if (ngx_save_argv(&init_cycle, argc, argv) != NGX_OK) {
+         return 1;
+     }
+diff -rup nginx-1.21.4/src/core/ngx_core.h nginx-1.21.4-patched/src/core/ngx_core.h
+--- nginx-1.21.4/src/core/ngx_core.h	2017-10-10 08:22:51.000000000 -0700
++++ nginx-1.21.4-patched/src/core/ngx_core.h	2017-12-16 23:59:51.679958370 -0800
+@@ -108,4 +108,6 @@ void ngx_cpuinfo(void);
+ #define NGX_DISABLE_SYMLINKS_NOTOWNER   2
+ #endif
+ 
++extern ngx_pool_t        *saved_init_cycle_pool;
++
+ #endif /* _NGX_CORE_H_INCLUDED_ */
+diff -rup nginx-1.21.4/src/core/ngx_cycle.c nginx-1.21.4-patched/src/core/ngx_cycle.c
+--- nginx-1.21.4/src/core/ngx_cycle.c	2017-10-10 08:22:51.000000000 -0700
++++ nginx-1.21.4-patched/src/core/ngx_cycle.c	2017-12-16 23:59:51.678958419 -0800
+@@ -748,6 +748,10 @@ old_shm_zone_done:
+ 
+     if (ngx_process == NGX_PROCESS_MASTER || ngx_is_init_cycle(old_cycle)) {
+ 
++        if (ngx_is_init_cycle(old_cycle)) {
++            saved_init_cycle_pool = NULL;
++        }
++
+         ngx_destroy_pool(old_cycle->pool);
+         cycle->old_cycle = NULL;
+ 
+diff -rup nginx-1.21.4/src/os/unix/ngx_process_cycle.c nginx-1.21.4-patched/src/os/unix/ngx_process_cycle.c
+--- nginx-1.21.4/src/os/unix/ngx_process_cycle.c	2017-12-17 00:00:38.142469762 -0800
++++ nginx-1.21.4-patched/src/os/unix/ngx_process_cycle.c	2017-12-16 23:59:51.691957791 -0800
+@@ -687,6 +692,11 @@ ngx_master_process_exit(ngx_cycle_t *cyc
+     ngx_exit_cycle.files_n = ngx_cycle->files_n;
+     ngx_cycle = &ngx_exit_cycle;
+ 
++    if (saved_init_cycle_pool != NULL && saved_init_cycle_pool != cycle->pool) {
++        ngx_destroy_pool(saved_init_cycle_pool);
++        saved_init_cycle_pool = NULL;
++    }
++
+     ngx_destroy_pool(cycle->pool);
+ 
+     exit(0);
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch b/images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch
new file mode 100644
index 000000000..c89032c9f
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch
@@ -0,0 +1,13 @@
+--- nginx-1.21.4/src/core/ngx_log.h	2013-10-08 05:07:14.000000000 -0700
++++ nginx-1.21.4-patched/src/core/ngx_log.h	2013-12-05 20:35:35.996236720 -0800
+@@ -64,7 +64,9 @@ struct ngx_log_s {
+ };
+ 
+ 
+-#define NGX_MAX_ERROR_STR   2048
++#ifndef NGX_MAX_ERROR_STR
++#define NGX_MAX_ERROR_STR   4096
++#endif
+ 
+ 
+ /*********************************/
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch b/images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch
new file mode 100644
index 000000000..f4d6fd0e5
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch
@@ -0,0 +1,36 @@
+diff -urp nginx-1.21.4/auto/cc/clang nginx-1.21.4-patched/auto/cc/clang
+--- nginx-1.21.4/auto/cc/clang	2014-03-04 03:39:24.000000000 -0800
++++ nginx-1.21.4-patched/auto/cc/clang	2014-03-13 20:54:26.241413360 -0700
+@@ -89,7 +89,7 @@ CFLAGS="$CFLAGS -Wconditional-uninitiali
+ CFLAGS="$CFLAGS -Wno-unused-parameter"
+ 
+ # stop on warning
+-CFLAGS="$CFLAGS -Werror"
++#CFLAGS="$CFLAGS -Werror"
+ 
+ # debug
+ CFLAGS="$CFLAGS -g"
+diff -urp nginx-1.21.4/auto/cc/gcc nginx-1.21.4-patched/auto/cc/gcc
+--- nginx-1.21.4/auto/cc/gcc	2014-03-04 03:39:24.000000000 -0800
++++ nginx-1.21.4-patched/auto/cc/gcc	2014-03-13 20:54:13.301355329 -0700
+@@ -168,7 +168,7 @@ esac
+ 
+ 
+ # stop on warning
+-CFLAGS="$CFLAGS -Werror"
++#CFLAGS="$CFLAGS -Werror"
+ 
+ # debug
+ CFLAGS="$CFLAGS -g"
+diff -urp nginx-1.21.4/auto/cc/icc nginx-1.21.4-patched/auto/cc/icc
+--- nginx-1.21.4/auto/cc/icc	2014-03-04 03:39:24.000000000 -0800
++++ nginx-1.21.4-patched/auto/cc/icc	2014-03-13 20:54:13.301355329 -0700
+@@ -115,7 +115,7 @@ case "$NGX_ICC_VER" in
+ esac
+ 
+ # stop on warning
+-CFLAGS="$CFLAGS -Werror"
++#CFLAGS="$CFLAGS -Werror"
+ 
+ # debug
+ CFLAGS="$CFLAGS -g"
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch b/images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch
new file mode 100644
index 000000000..01cebd65a
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch
@@ -0,0 +1,19 @@
+--- nginx-1.21.4/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
++++ nginx-1.21.4-patched/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
+@@ -793,13 +793,13 @@ static ngx_keyval_t  ngx_http_proxy_cach
+ static ngx_http_variable_t  ngx_http_proxy_vars[] = {
+ 
+     { ngx_string("proxy_host"), NULL, ngx_http_proxy_host_variable, 0,
+-      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE|NGX_HTTP_VAR_NOHASH, 0 },
++      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE, 0 },
+ 
+     { ngx_string("proxy_port"), NULL, ngx_http_proxy_port_variable, 0,
+-      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE|NGX_HTTP_VAR_NOHASH, 0 },
++      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE, 0 },
+ 
+     { ngx_string("proxy_add_x_forwarded_for"), NULL,
+-      ngx_http_proxy_add_x_forwarded_for_variable, 0, NGX_HTTP_VAR_NOHASH, 0 },
++      ngx_http_proxy_add_x_forwarded_for_variable, 0, 0, 0 },
+ 
+ #if 0
+     { ngx_string("proxy_add_via"), NULL, NULL, 0, NGX_HTTP_VAR_NOHASH, 0 },
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-resolver_conf_parsing.patch b/images/nginx/rootfs/patches/nginx-1.21.4-resolver_conf_parsing.patch
new file mode 100644
index 000000000..8638cdf2a
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-resolver_conf_parsing.patch
@@ -0,0 +1,263 @@
+diff --git a/src/core/ngx_resolver.c b/src/core/ngx_resolver.c
+index cd55520c..dade1846 100644
+--- a/src/core/ngx_resolver.c
++++ b/src/core/ngx_resolver.c
+@@ -9,12 +9,26 @@
+ #include <ngx_core.h>
+ #include <ngx_event.h>
+ 
++#if !(NGX_WIN32)
++#include <resolv.h>
++#endif
++
+ 
+ #define NGX_RESOLVER_UDP_SIZE   4096
+ 
+ #define NGX_RESOLVER_TCP_RSIZE  (2 + 65535)
+ #define NGX_RESOLVER_TCP_WSIZE  8192
+ 
++#if !(NGX_WIN32)
++/*
++ * note that 2KB should be more than enough for majority of the
++ * resolv.conf files out there. it also acts as a safety guard to prevent
++ * abuse.
++ */
++#define NGX_RESOLVER_FILE_BUF_SIZE  2048
++#define NGX_RESOLVER_FILE_NAME      "/etc/resolv.conf"
++#endif
++
+ 
+ typedef struct {
+     u_char  ident_hi;
+@@ -131,6 +145,191 @@ static ngx_resolver_node_t *ngx_resolver_lookup_addr6(ngx_resolver_t *r,
+ #endif
+ 
+ 
++#if !(NGX_WIN32)
++static ngx_int_t
++ngx_resolver_read_resolv_conf(ngx_conf_t *cf, ngx_resolver_t *r, u_char *path,
++    size_t path_len)
++{
++    ngx_url_t                        u;
++    ngx_resolver_connection_t       *rec;
++    ngx_fd_t                         fd;
++    ngx_file_t                       file;
++    u_char                           buf[NGX_RESOLVER_FILE_BUF_SIZE];
++    u_char                           ipv6_buf[NGX_INET6_ADDRSTRLEN];
++    ngx_uint_t                       address = 0, j, total = 0;
++    ssize_t                          n, i;
++    enum {
++        sw_nameserver,
++        sw_spaces,
++        sw_address,
++        sw_skip
++    } state;
++
++    file.name.data = path;
++    file.name.len = path_len;
++
++    if (ngx_conf_full_name(cf->cycle, &file.name, 1) != NGX_OK) {
++        return NGX_ERROR;
++    }
++
++    fd = ngx_open_file(file.name.data, NGX_FILE_RDONLY,
++                       NGX_FILE_OPEN, 0);
++
++    if (fd == NGX_INVALID_FILE) {
++        ngx_conf_log_error(NGX_LOG_EMERG, cf, ngx_errno,
++                           ngx_open_file_n " \"%s\" failed", file.name.data);
++
++        return NGX_ERROR;
++    }
++
++    ngx_memzero(&file, sizeof(ngx_file_t));
++
++    file.fd = fd;
++    file.log = cf->log;
++
++    state = sw_nameserver;
++
++    n = ngx_read_file(&file, buf, NGX_RESOLVER_FILE_BUF_SIZE, 0);
++
++    if (n == NGX_ERROR) {
++        ngx_conf_log_error(NGX_LOG_ALERT, cf, ngx_errno,
++                           ngx_read_file_n " \"%s\" failed", file.name.data);
++    }
++
++    if (ngx_close_file(file.fd) == NGX_FILE_ERROR) {
++        ngx_conf_log_error(NGX_LOG_ALERT, cf, ngx_errno,
++                           ngx_close_file_n " \"%s\" failed", file.name.data);
++    }
++
++    if (n == NGX_ERROR) {
++        return NGX_ERROR;
++    }
++
++    if (n == 0) {
++        return NGX_OK;
++    }
++
++    for (i = 0; i < n && total < MAXNS; /* void */) {
++        if (buf[i] == '#' || buf[i] == ';') {
++            state = sw_skip;
++        }
++
++        switch (state) {
++
++        case sw_nameserver:
++
++            if ((size_t) n - i >= sizeof("nameserver") - 1
++                && ngx_memcmp(buf + i, "nameserver",
++                              sizeof("nameserver") - 1) == 0)
++            {
++                state = sw_spaces;
++                i += sizeof("nameserver") - 1;
++
++                continue;
++            }
++
++            break;
++
++        case sw_spaces:
++            if (buf[i] != '\t' && buf[i] != ' ') {
++                address = i;
++                state = sw_address;
++            }
++
++            break;
++
++        case sw_address:
++
++            if (buf[i] == CR || buf[i] == LF || i == n - 1) {
++                ngx_memzero(&u, sizeof(ngx_url_t));
++
++                u.url.data = buf + address;
++
++                if (i == n - 1 && buf[i] != CR && buf[i] != LF) {
++                    u.url.len = n - address;
++
++                } else {
++                    u.url.len = i - address;
++                }
++
++                u.default_port = 53;
++
++                /* IPv6? */
++                if (ngx_strlchr(u.url.data, u.url.data + u.url.len,
++                                ':') != NULL)
++                {
++                    if (u.url.len + 2 > sizeof(ipv6_buf)) {
++                        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
++                                           "IPv6 resolver address is too long:"
++                                           " \"%V\"", &u.url);
++
++                        return NGX_ERROR;
++                    }
++
++                    ipv6_buf[0] = '[';
++                    ngx_memcpy(ipv6_buf + 1, u.url.data, u.url.len);
++                    ipv6_buf[u.url.len + 1] = ']';
++
++                    u.url.data = ipv6_buf;
++                    u.url.len = u.url.len + 2;
++                }
++
++                if (ngx_parse_url(cf->pool, &u) != NGX_OK) {
++                    if (u.err) {
++                        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
++                                           "%s in resolver \"%V\"",
++                                           u.err, &u.url);
++                    }
++
++                    return NGX_ERROR;
++                }
++
++                rec = ngx_array_push_n(&r->connections, u.naddrs);
++                if (rec == NULL) {
++                    return NGX_ERROR;
++                }
++
++                ngx_memzero(rec, u.naddrs * sizeof(ngx_resolver_connection_t));
++
++                for (j = 0; j < u.naddrs; j++) {
++                    rec[j].sockaddr = u.addrs[j].sockaddr;
++                    rec[j].socklen = u.addrs[j].socklen;
++                    rec[j].server = u.addrs[j].name;
++                    rec[j].resolver = r;
++                }
++
++                total++;
++
++#if (NGX_DEBUG)
++                /*
++                 * logs with level below NGX_LOG_NOTICE will not be printed
++                 * in this early phase
++                 */
++                ngx_conf_log_error(NGX_LOG_NOTICE, cf, 0,
++                                   "parsed a resolver: \"%V\"", &u.url);
++#endif
++
++                state = sw_nameserver;
++            }
++
++            break;
++
++        case sw_skip:
++            if (buf[i] == CR || buf[i] == LF) {
++                state = sw_nameserver;
++            }
++
++            break;
++        }
++
++        i++;
++    }
++
++    return NGX_OK;
++}
++#endif
++
++
+ ngx_resolver_t *
+ ngx_resolver_create(ngx_conf_t *cf, ngx_str_t *names, ngx_uint_t n)
+ {
+@@ -246,6 +445,39 @@ ngx_resolver_create(ngx_conf_t *cf, ngx_str_t *names, ngx_uint_t n)
+         }
+ #endif
+ 
++#if !(NGX_WIN32)
++        if (ngx_strncmp(names[i].data, "local=", 6) == 0) {
++
++            if (ngx_strcmp(&names[i].data[6], "on") == 0) {
++                if (ngx_resolver_read_resolv_conf(cf, r,
++                                                  (u_char *)
++                                                  NGX_RESOLVER_FILE_NAME,
++                                                  sizeof(NGX_RESOLVER_FILE_NAME)
++                                                  - 1)
++                    != NGX_OK)
++                {
++                    ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
++                                       "unable to parse local resolver");
++                    return NULL;
++                }
++
++            } else if (ngx_strcmp(&names[i].data[6], "off") != 0) {
++                if (ngx_resolver_read_resolv_conf(cf, r,
++                                                  &names[i].data[6],
++                                                  names[i].len - 6)
++                    != NGX_OK)
++                {
++                    ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
++                                       "unable to parse local resolver");
++                    return NULL;
++                }
++
++            }
++
++            continue;
++        }
++#endif
++
+         ngx_memzero(&u, sizeof(ngx_url_t));
+ 
+         u.url = names[i];
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-reuseport_close_unused_fds.patch b/images/nginx/rootfs/patches/nginx-1.21.4-reuseport_close_unused_fds.patch
new file mode 100644
index 000000000..ff4a36fd2
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-reuseport_close_unused_fds.patch
@@ -0,0 +1,38 @@
+diff --git a/src/core/ngx_connection.c b/src/core/ngx_connection.c
+--- a/src/core/ngx_connection.c
++++ b/src/core/ngx_connection.c
+@@ -1118,6 +1118,12 @@ ngx_close_listening_sockets(ngx_cycle_t *cycle)
+     ls = cycle->listening.elts;
+     for (i = 0; i < cycle->listening.nelts; i++) {
+ 
++#if (NGX_HAVE_REUSEPORT)
++        if (ls[i].fd == (ngx_socket_t) -1) {
++            continue;
++        }
++#endif
++
+         c = ls[i].connection;
+ 
+         if (c) {
+diff --git a/src/event/ngx_event.c b/src/event/ngx_event.c
+--- a/src/event/ngx_event.c
++++ b/src/event/ngx_event.c
+@@ -775,6 +775,18 @@ ngx_event_process_init(ngx_cycle_t *cycle)
+ 
+ #if (NGX_HAVE_REUSEPORT)
+         if (ls[i].reuseport && ls[i].worker != ngx_worker) {
++            ngx_log_debug2(NGX_LOG_DEBUG_CORE, cycle->log, 0,
++                           "closing unused fd:%d listening on %V",
++                           ls[i].fd, &ls[i].addr_text);
++
++            if (ngx_close_socket(ls[i].fd) == -1) {
++                ngx_log_error(NGX_LOG_EMERG, cycle->log, ngx_socket_errno,
++                              ngx_close_socket_n " %V failed",
++                              &ls[i].addr_text);
++            }
++
++            ls[i].fd = (ngx_socket_t) -1;
++
+             continue;
+         }
+ #endif
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-single_process_graceful_exit.patch b/images/nginx/rootfs/patches/nginx-1.21.4-single_process_graceful_exit.patch
new file mode 100644
index 000000000..2754fc2fe
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-single_process_graceful_exit.patch
@@ -0,0 +1,75 @@
+diff --git a/src/os/unix/ngx_process.c b/src/os/unix/ngx_process.c
+index 15680237..12a8c687 100644
+--- a/src/os/unix/ngx_process.c
++++ b/src/os/unix/ngx_process.c
+@@ -362,8 +362,15 @@ ngx_signal_handler(int signo, siginfo_t *siginfo, void *ucontext)
+             break;
+ 
+         case ngx_signal_value(NGX_RECONFIGURE_SIGNAL):
+-            ngx_reconfigure = 1;
+-            action = ", reconfiguring";
++            if (ngx_process == NGX_PROCESS_SINGLE) {
++                ngx_terminate = 1;
++                action = ", exiting";
++
++            } else {
++                ngx_reconfigure = 1;
++                action = ", reconfiguring";
++            }
++
+             break;
+ 
+         case ngx_signal_value(NGX_REOPEN_SIGNAL):
+diff --git a/src/os/unix/ngx_process_cycle.c b/src/os/unix/ngx_process_cycle.c
+index 5817a2c2..f3d58e97 100644
+--- a/src/os/unix/ngx_process_cycle.c
++++ b/src/os/unix/ngx_process_cycle.c
+@@ -305,11 +305,26 @@ ngx_single_process_cycle(ngx_cycle_t *cycle)
+     }
+ 
+     for ( ;; ) {
++        if (ngx_exiting) {
++            if (ngx_event_no_timers_left() == NGX_OK) {
++                ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "exiting");
++
++                for (i = 0; cycle->modules[i]; i++) {
++                    if (cycle->modules[i]->exit_process) {
++                        cycle->modules[i]->exit_process(cycle);
++                    }
++                }
++
++                ngx_master_process_exit(cycle);
++            }
++        }
++
+         ngx_log_debug0(NGX_LOG_DEBUG_EVENT, cycle->log, 0, "worker cycle");
+ 
+         ngx_process_events_and_timers(cycle);
+ 
+-        if (ngx_terminate || ngx_quit) {
++        if (ngx_terminate) {
++            ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "exiting");
+ 
+             for (i = 0; cycle->modules[i]; i++) {
+                 if (cycle->modules[i]->exit_process) {
+@@ -320,6 +335,20 @@ ngx_single_process_cycle(ngx_cycle_t *cycle)
+             ngx_master_process_exit(cycle);
+         }
+ 
++        if (ngx_quit) {
++            ngx_quit = 0;
++            ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0,
++                          "gracefully shutting down");
++            ngx_setproctitle("process is shutting down");
++
++            if (!ngx_exiting) {
++                ngx_exiting = 1;
++                ngx_set_shutdown_timer(cycle);
++                ngx_close_listening_sockets(cycle);
++                ngx_close_idle_connections(cycle);
++            }
++        }
++
+         if (ngx_reconfigure) {
+             ngx_reconfigure = 0;
+             ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "reconfiguring");
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-socket_cloexec.patch b/images/nginx/rootfs/patches/nginx-1.21.4-socket_cloexec.patch
new file mode 100644
index 000000000..8ffe4c167
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-socket_cloexec.patch
@@ -0,0 +1,185 @@
+diff --git a/auto/unix b/auto/unix
+index 10835f6c..b5b33bb3 100644
+--- a/auto/unix
++++ b/auto/unix
+@@ -990,3 +990,27 @@ ngx_feature_test='struct addrinfo *res;
+                   if (getaddrinfo("localhost", NULL, NULL, &res) != 0) return 1;
+                   freeaddrinfo(res)'
+ . auto/feature
++
++ngx_feature="SOCK_CLOEXEC support"
++ngx_feature_name="NGX_HAVE_SOCKET_CLOEXEC"
++ngx_feature_run=no
++ngx_feature_incs="#include <sys/types.h>
++                  #include <sys/socket.h>"
++ngx_feature_path=
++ngx_feature_libs=
++ngx_feature_test="int fd;
++                  fd = socket(AF_INET, SOCK_STREAM | SOCK_CLOEXEC, 0);"
++. auto/feature
++
++ngx_feature="FD_CLOEXEC support"
++ngx_feature_name="NGX_HAVE_FD_CLOEXEC"
++ngx_feature_run=no
++ngx_feature_incs="#include <sys/types.h>
++                  #include <sys/socket.h>
++                  #include <fcntl.h>"
++ngx_feature_path=
++ngx_feature_libs=
++ngx_feature_test="int fd;
++                  fd = socket(AF_INET, SOCK_STREAM, 0);
++                  fcntl(fd, F_SETFD, FD_CLOEXEC);"
++. auto/feature
+diff --git a/src/core/ngx_resolver.c b/src/core/ngx_resolver.c
+index cd55520c..438e0806 100644
+--- a/src/core/ngx_resolver.c
++++ b/src/core/ngx_resolver.c
+@@ -4466,8 +4466,14 @@ ngx_tcp_connect(ngx_resolver_connection_t *rec)
+     ngx_event_t       *rev, *wev;
+     ngx_connection_t  *c;
+ 
++#if (NGX_HAVE_SOCKET_CLOEXEC)
++    s = ngx_socket(rec->sockaddr->sa_family, SOCK_STREAM | SOCK_CLOEXEC, 0);
++
++#else
+     s = ngx_socket(rec->sockaddr->sa_family, SOCK_STREAM, 0);
+ 
++#endif
++
+     ngx_log_debug1(NGX_LOG_DEBUG_EVENT, &rec->log, 0, "TCP socket %d", s);
+ 
+     if (s == (ngx_socket_t) -1) {
+@@ -4494,6 +4500,15 @@ ngx_tcp_connect(ngx_resolver_connection_t *rec)
+         goto failed;
+     }
+ 
++#if (NGX_HAVE_FD_CLOEXEC)
++    if (ngx_cloexec(s) == -1) {
++        ngx_log_error(NGX_LOG_ALERT, &rec->log, ngx_socket_errno,
++                      ngx_cloexec_n " failed");
++
++        goto failed;
++    }
++#endif
++
+     rev = c->read;
+     wev = c->write;
+ 
+diff --git a/src/event/ngx_event.h b/src/event/ngx_event.h
+index 19fec68..8c2f01a 100644
+--- a/src/event/ngx_event.h
++++ b/src/event/ngx_event.h
+@@ -73,6 +73,9 @@ struct ngx_event_s {
+     /* to test on worker exit */
+     unsigned         channel:1;
+     unsigned         resolver:1;
++#if (HAVE_SOCKET_CLOEXEC_PATCH)
++    unsigned         skip_socket_leak_check:1;
++#endif
+ 
+     unsigned         cancelable:1;
+ 
+diff --git a/src/event/ngx_event_accept.c b/src/event/ngx_event_accept.c
+index 77563709..5827b9d0 100644
+--- a/src/event/ngx_event_accept.c
++++ b/src/event/ngx_event_accept.c
+@@ -62,7 +62,9 @@ ngx_event_accept(ngx_event_t *ev)
+ 
+ #if (NGX_HAVE_ACCEPT4)
+         if (use_accept4) {
+-            s = accept4(lc->fd, &sa.sockaddr, &socklen, SOCK_NONBLOCK);
++            s = accept4(lc->fd, &sa.sockaddr, &socklen,
++                        SOCK_NONBLOCK | SOCK_CLOEXEC);
++
+         } else {
+             s = accept(lc->fd, &sa.sockaddr, &socklen);
+         }
+@@ -202,6 +204,16 @@ ngx_event_accept(ngx_event_t *ev)
+                     ngx_close_accepted_connection(c);
+                     return;
+                 }
++
++#if (NGX_HAVE_FD_CLOEXEC)
++                if (ngx_cloexec(s) == -1) {
++                    ngx_log_error(NGX_LOG_ALERT, ev->log, ngx_socket_errno,
++                                  ngx_cloexec_n " failed");
++                    ngx_close_accepted_connection(c);
++                    return;
++                }
++#endif
++
+             }
+         }
+ 
+diff --git a/src/event/ngx_event_connect.c b/src/event/ngx_event_connect.c
+index c5bb8068..cf33b1d2 100644
+--- a/src/event/ngx_event_connect.c
++++ b/src/event/ngx_event_connect.c
+@@ -38,8 +38,15 @@ ngx_event_connect_peer(ngx_peer_connection_t *pc)
+ 
+     type = (pc->type ? pc->type : SOCK_STREAM);
+ 
++#if (NGX_HAVE_SOCKET_CLOEXEC)
++    s = ngx_socket(pc->sockaddr->sa_family, type | SOCK_CLOEXEC, 0);
++
++#else
+     s = ngx_socket(pc->sockaddr->sa_family, type, 0);
+ 
++#endif
++
++
+     ngx_log_debug2(NGX_LOG_DEBUG_EVENT, pc->log, 0, "%s socket %d",
+                    (type == SOCK_STREAM) ? "stream" : "dgram", s);
+ 
+@@ -80,6 +87,15 @@ ngx_event_connect_peer(ngx_peer_connection_t *pc)
+         goto failed;
+     }
+ 
++#if (NGX_HAVE_FD_CLOEXEC)
++    if (ngx_cloexec(s) == -1) {
++        ngx_log_error(NGX_LOG_ALERT, pc->log, ngx_socket_errno,
++                      ngx_cloexec_n " failed");
++
++        goto failed;
++    }
++#endif
++
+     if (pc->local) {
+ 
+ #if (NGX_HAVE_TRANSPARENT_PROXY)
+diff --git a/src/os/unix/ngx_process_cycle.c b/src/os/unix/ngx_process_cycle.c
+index c4376a5..48e8fa8 100644
+--- a/src/os/unix/ngx_process_cycle.c
++++ b/src/os/unix/ngx_process_cycle.c
+@@ -960,6 +1029,9 @@ ngx_worker_process_exit(ngx_cycle_t *cycle)
+         for (i = 0; i < cycle->connection_n; i++) {
+             if (c[i].fd != -1
+                 && c[i].read
++#if (HAVE_SOCKET_CLOEXEC_PATCH)
++                && !c[i].read->skip_socket_leak_check
++#endif
+                 && !c[i].read->accept
+                 && !c[i].read->channel
+                 && !c[i].read->resolver)
+diff --git a/src/os/unix/ngx_socket.h b/src/os/unix/ngx_socket.h
+index fcc51533..d1eebf47 100644
+--- a/src/os/unix/ngx_socket.h
++++ b/src/os/unix/ngx_socket.h
+@@ -38,6 +38,17 @@ int ngx_blocking(ngx_socket_t s);
+ 
+ #endif
+ 
++#if (NGX_HAVE_FD_CLOEXEC)
++
++#define ngx_cloexec(s)      fcntl(s, F_SETFD, FD_CLOEXEC)
++#define ngx_cloexec_n       "fcntl(FD_CLOEXEC)"
++
++/* at least FD_CLOEXEC is required to ensure connection fd is closed
++ * after execve */
++#define HAVE_SOCKET_CLOEXEC_PATCH  1
++
++#endif
++
+ int ngx_tcp_nopush(ngx_socket_t s);
+ int ngx_tcp_push(ngx_socket_t s);
+ 
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-ssl_cert_cb_yield.patch b/images/nginx/rootfs/patches/nginx-1.21.4-ssl_cert_cb_yield.patch
new file mode 100644
index 000000000..89773c05e
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-ssl_cert_cb_yield.patch
@@ -0,0 +1,64 @@
+# HG changeset patch
+# User Yichun Zhang <agentzh@openresty.org>
+# Date 1451762084 28800
+#      Sat Jan 02 11:14:44 2016 -0800
+# Node ID 449f0461859c16e95bdb18e8be6b94401545d3dd
+# Parent  78b4e10b4367b31367aad3c83c9c3acdd42397c4
+SSL: handled SSL_CTX_set_cert_cb() callback yielding.
+
+OpenSSL 1.0.2+ introduces SSL_CTX_set_cert_cb() to allow custom
+callbacks to serve the SSL certificiates and private keys dynamically
+and lazily. The callbacks may yield for nonblocking I/O or sleeping.
+Here we added support for such usage in NGINX 3rd-party modules
+(like ngx_lua) in NGINX's event handlers for downstream SSL
+connections.
+
+diff -r 78b4e10b4367 -r 449f0461859c src/event/ngx_event_openssl.c
+--- a/src/event/ngx_event_openssl.c Thu Dec 17 16:39:15 2015 +0300
++++ b/src/event/ngx_event_openssl.c Sat Jan 02 11:14:44 2016 -0800
+@@ -1445,6 +1445,23 @@ ngx_ssl_handshake(ngx_connection_t *c)
+         return NGX_AGAIN;
+     }
+ 
++#if OPENSSL_VERSION_NUMBER >= 0x10002000L
++    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP) {
++        c->read->handler = ngx_ssl_handshake_handler;
++        c->write->handler = ngx_ssl_handshake_handler;
++
++        if (ngx_handle_read_event(c->read, 0) != NGX_OK) {
++            return NGX_ERROR;
++        }
++
++        if (ngx_handle_write_event(c->write, 0) != NGX_OK) {
++            return NGX_ERROR;
++        }
++
++        return NGX_AGAIN;
++    }
++#endif
++
+     err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
+ 
+     c->ssl->no_wait_shutdown = 1;
+@@ -1558,6 +1575,21 @@ ngx_ssl_try_early_data(ngx_connection_t *c)
+         return NGX_AGAIN;
+     }
+ 
++    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP) {
++        c->read->handler = ngx_ssl_handshake_handler;
++        c->write->handler = ngx_ssl_handshake_handler;
++
++        if (ngx_handle_read_event(c->read, 0) != NGX_OK) {
++            return NGX_ERROR;
++        }
++
++        if (ngx_handle_write_event(c->write, 0) != NGX_OK) {
++            return NGX_ERROR;
++        }
++
++        return NGX_AGAIN;
++    }
++
+     err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
+ 
+     c->ssl->no_wait_shutdown = 1;
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-ssl_sess_cb_yield.patch b/images/nginx/rootfs/patches/nginx-1.21.4-ssl_sess_cb_yield.patch
new file mode 100644
index 000000000..ac5fe65eb
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-ssl_sess_cb_yield.patch
@@ -0,0 +1,41 @@
+diff --git a/src/event/ngx_event_openssl.c b/src/event/ngx_event_openssl.c
+--- a/src/event/ngx_event_openssl.c
++++ b/src/event/ngx_event_openssl.c
+@@ -1446,7 +1446,12 @@ ngx_ssl_handshake(ngx_connection_t *c)
+     }
+ 
+ #if OPENSSL_VERSION_NUMBER >= 0x10002000L
+-    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP) {
++    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP
++#   ifdef SSL_ERROR_PENDING_SESSION
++        || sslerr == SSL_ERROR_PENDING_SESSION
++#   endif
++       )
++    {
+         c->read->handler = ngx_ssl_handshake_handler;
+         c->write->handler = ngx_ssl_handshake_handler;
+ 
+@@ -1575,6 +1580,23 @@ ngx_ssl_try_early_data(ngx_connection_t *c)
+         return NGX_AGAIN;
+     }
+ 
++#ifdef SSL_ERROR_PENDING_SESSION
++    if (sslerr == SSL_ERROR_PENDING_SESSION) {
++        c->read->handler = ngx_ssl_handshake_handler;
++        c->write->handler = ngx_ssl_handshake_handler;
++
++        if (ngx_handle_read_event(c->read, 0) != NGX_OK) {
++            return NGX_ERROR;
++        }
++
++        if (ngx_handle_write_event(c->write, 0) != NGX_OK) {
++            return NGX_ERROR;
++        }
++
++        return NGX_AGAIN;
++    }
++#endif
++
+     err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
+ 
+     c->ssl->no_wait_shutdown = 1;
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch b/images/nginx/rootfs/patches/nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch
new file mode 100644
index 000000000..cb881f070
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch
@@ -0,0 +1,31 @@
+diff --git a/src/stream/ngx_stream.h b/src/stream/ngx_stream.h
+index 09d2459..de92724 100644
+--- a/src/stream/ngx_stream.h
++++ b/src/stream/ngx_stream.h
+@@ -303,4 +303,7 @@ typedef ngx_int_t (*ngx_stream_filter_pt)(ngx_stream_session_t *s,
+ extern ngx_stream_filter_pt  ngx_stream_top_filter;
+ 
+ 
++#define HAS_NGX_STREAM_PROXY_GET_NEXT_UPSTREAM_TRIES_PATCH 1
++
++
+ #endif /* _NGX_STREAM_H_INCLUDED_ */
+diff --git a/src/stream/ngx_stream_proxy_module.c b/src/stream/ngx_stream_proxy_module.c
+index 0afde1c..3254ce1 100644
+--- a/src/stream/ngx_stream_proxy_module.c
++++ b/src/stream/ngx_stream_proxy_module.c
+@@ -2156,3 +2156,14 @@ ngx_stream_proxy_bind(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
+ 
+     return NGX_CONF_OK;
+ }
++
++
++ngx_uint_t
++ngx_stream_proxy_get_next_upstream_tries(ngx_stream_session_t *s)
++{
++    ngx_stream_proxy_srv_conf_t      *pscf;
++
++    pscf = ngx_stream_get_module_srv_conf(s, ngx_stream_proxy_module);
++
++    return pscf->next_upstream_tries;
++}
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-stream_ssl_preread_no_skip.patch b/images/nginx/rootfs/patches/nginx-1.21.4-stream_ssl_preread_no_skip.patch
new file mode 100644
index 000000000..e45e9f69a
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-stream_ssl_preread_no_skip.patch
@@ -0,0 +1,13 @@
+diff --git a/src/stream/ngx_stream_ssl_preread_module.c b/src/stream/ngx_stream_ssl_preread_module.c
+index e3d11fd9..3717b5fe 100644
+--- a/src/stream/ngx_stream_ssl_preread_module.c
++++ b/src/stream/ngx_stream_ssl_preread_module.c
+@@ -159,7 +159,7 @@ ngx_stream_ssl_preread_handler(ngx_stream_session_t *s)
+ 
+         rc = ngx_stream_ssl_preread_parse_record(ctx, p, p + len);
+         if (rc != NGX_AGAIN) {
+-            return rc;
++            return rc == NGX_OK ? NGX_DECLINED : rc;
+         }
+ 
+         p += len;
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-upstream_pipelining.patch b/images/nginx/rootfs/patches/nginx-1.21.4-upstream_pipelining.patch
new file mode 100644
index 000000000..aed80365a
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-upstream_pipelining.patch
@@ -0,0 +1,23 @@
+commit f9907b72a76a21ac5413187b83177a919475c75f
+Author: Yichun Zhang (agentzh) <agentzh@gmail.com>
+Date:   Wed Feb 10 16:05:08 2016 -0800
+
+    bugfix: upstream: keep sending request data after the first write attempt.
+    
+    See
+    http://mailman.nginx.org/pipermail/nginx-devel/2012-March/002040.html
+    for more details on the issue.
+
+diff --git a/src/http/ngx_http_upstream.c b/src/http/ngx_http_upstream.c
+index 69019417..92b7c97f 100644
+--- a/src/http/ngx_http_upstream.c
++++ b/src/http/ngx_http_upstream.c
+@@ -2239,7 +2239,7 @@ ngx_http_upstream_send_request_handler(ngx_http_request_t *r,
+
+ #endif
+
+-    if (u->header_sent && !u->conf->preserve_output) {
++    if (u->request_body_sent && !u->conf->preserve_output) {
+         u->write_event_handler = ngx_http_upstream_dummy_handler;
+
+         (void) ngx_handle_write_event(c->write, 0);
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-upstream_timeout_fields.patch b/images/nginx/rootfs/patches/nginx-1.21.4-upstream_timeout_fields.patch
new file mode 100644
index 000000000..2314ddf80
--- /dev/null
+++ b/images/nginx/rootfs/patches/nginx-1.21.4-upstream_timeout_fields.patch
@@ -0,0 +1,112 @@
+diff --git a/src/http/ngx_http_upstream.c b/src/http/ngx_http_upstream.c
+index 69019417..2265d8f7 100644
+--- a/src/http/ngx_http_upstream.c
++++ b/src/http/ngx_http_upstream.c
+@@ -509,12 +509,19 @@ void
+ ngx_http_upstream_init(ngx_http_request_t *r)
+ {
+     ngx_connection_t     *c;
++    ngx_http_upstream_t  *u;
+ 
+     c = r->connection;
+ 
+     ngx_log_debug1(NGX_LOG_DEBUG_HTTP, c->log, 0,
+                    "http init upstream, client timer: %d", c->read->timer_set);
+ 
++    u = r->upstream;
++
++    u->connect_timeout = u->conf->connect_timeout;
++    u->send_timeout = u->conf->send_timeout;
++    u->read_timeout = u->conf->read_timeout;
++
+ #if (NGX_HTTP_V2)
+     if (r->stream) {
+         ngx_http_upstream_init_request(r);
+@@ -1626,7 +1633,7 @@ ngx_http_upstream_connect(ngx_http_request_t *r, ngx_http_upstream_t *u)
+     u->request_body_blocked = 0;
+ 
+     if (rc == NGX_AGAIN) {
+-        ngx_add_timer(c->write, u->conf->connect_timeout);
++        ngx_add_timer(c->write, u->connect_timeout);
+         return;
+     }
+ 
+@@ -1704,7 +1711,7 @@ ngx_http_upstream_ssl_init_connection(ngx_http_request_t *r,
+     if (rc == NGX_AGAIN) {
+ 
+         if (!c->write->timer_set) {
+-            ngx_add_timer(c->write, u->conf->connect_timeout);
++            ngx_add_timer(c->write, u->connect_timeout);
+         }
+ 
+         c->ssl->handler = ngx_http_upstream_ssl_handshake_handler;
+@@ -2022,7 +2029,7 @@ ngx_http_upstream_send_request(ngx_http_request_t *r, ngx_http_upstream_t *u,
+ 
+     if (rc == NGX_AGAIN) {
+         if (!c->write->ready || u->request_body_blocked) {
+-            ngx_add_timer(c->write, u->conf->send_timeout);
++            ngx_add_timer(c->write, u->send_timeout);
+ 
+         } else if (c->write->timer_set) {
+             ngx_del_timer(c->write);
+@@ -2084,7 +2091,7 @@ ngx_http_upstream_send_request(ngx_http_request_t *r, ngx_http_upstream_t *u,
+             return;
+         }
+ 
+-        ngx_add_timer(c->read, u->conf->read_timeout);
++        ngx_add_timer(c->read, u->read_timeout);
+ 
+         if (c->read->ready) {
+             ngx_http_upstream_process_header(r, u);
+@@ -3213,7 +3220,7 @@ ngx_http_upstream_send_response(ngx_http_request_t *r, ngx_http_upstream_t *u)
+         p->cyclic_temp_file = 0;
+     }
+ 
+-    p->read_timeout = u->conf->read_timeout;
++    p->read_timeout = u->read_timeout;
+     p->send_timeout = clcf->send_timeout;
+     p->send_lowat = clcf->send_lowat;
+ 
+@@ -3458,7 +3465,7 @@ ngx_http_upstream_process_upgraded(ngx_http_request_t *r,
+     }
+ 
+     if (upstream->write->active && !upstream->write->ready) {
+-        ngx_add_timer(upstream->write, u->conf->send_timeout);
++        ngx_add_timer(upstream->write, u->send_timeout);
+ 
+     } else if (upstream->write->timer_set) {
+         ngx_del_timer(upstream->write);
+@@ -3470,7 +3477,7 @@ ngx_http_upstream_process_upgraded(ngx_http_request_t *r,
+     }
+ 
+     if (upstream->read->active && !upstream->read->ready) {
+-        ngx_add_timer(upstream->read, u->conf->read_timeout);
++        ngx_add_timer(upstream->read, u->read_timeout);
+ 
+     } else if (upstream->read->timer_set) {
+         ngx_del_timer(upstream->read);
+@@ -3664,7 +3671,7 @@ ngx_http_upstream_process_non_buffered_request(ngx_http_request_t *r,
+     }
+ 
+     if (upstream->read->active && !upstream->read->ready) {
+-        ngx_add_timer(upstream->read, u->conf->read_timeout);
++        ngx_add_timer(upstream->read, u->read_timeout);
+ 
+     } else if (upstream->read->timer_set) {
+         ngx_del_timer(upstream->read);
+diff --git a/src/http/ngx_http_upstream.h b/src/http/ngx_http_upstream.h
+index c2f4dc0b..b9eef118 100644
+--- a/src/http/ngx_http_upstream.h
++++ b/src/http/ngx_http_upstream.h
+@@ -333,6 +333,11 @@ struct ngx_http_upstream_s {
+     ngx_array_t                     *caches;
+ #endif
+ 
++#define HAVE_NGX_UPSTREAM_TIMEOUT_FIELDS  1
++    ngx_msec_t                       connect_timeout;
++    ngx_msec_t                       send_timeout;
++    ngx_msec_t                       read_timeout;
++
+     ngx_http_upstream_headers_in_t   headers_in;
+ 
+     ngx_http_upstream_resolved_t    *resolved;

From bfc2300c3d0cd35aa16324b35d865b7a0a6f4bbb Mon Sep 17 00:00:00 2001
From: Jmnote <opcore@gmail.com>
Date: Thu, 30 Nov 2023 06:39:51 +0900
Subject: [PATCH 1045/1641] [charts] add
 controller.admissionWebhooks.networkPolicyEnabled (#10650)

* add controller.admissionWebhooks.networkPolicyEnabled

Signed-off-by: Jmnote <opcore@gmail.com>

* .Values.controller.admissionWebhooks.patch.networkPolicy.enabled

---------

Signed-off-by: Jmnote <opcore@gmail.com>
---
 charts/ingress-nginx/README.md                                | 1 +
 .../templates/admission-webhooks/job-patch/networkpolicy.yaml | 2 +-
 charts/ingress-nginx/values.yaml                              | 4 ++++
 3 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 4a0cb94a2..e2777fbe2 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -259,6 +259,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.patch.image.registry | string | `"registry.k8s.io"` |  |
 | controller.admissionWebhooks.patch.image.tag | string | `"v20231011-8b53cabe0"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
+| controller.admissionWebhooks.patch.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
 | controller.admissionWebhooks.patch.podAnnotations | object | `{}` |  |
 | controller.admissionWebhooks.patch.priorityClassName | string | `""` | Provide a priority class name to the webhook patching job # |
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml
index 142e56aeb..a8f38df96 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/networkpolicy.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled .Values.controller.admissionWebhooks.patch.networkPolicy.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
 apiVersion: networking.k8s.io/v1
 kind: NetworkPolicy
 metadata:
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index cb50b9d07..0842a70bf 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -708,6 +708,10 @@ controller:
       ##
       priorityClassName: ""
       podAnnotations: {}
+      # NetworkPolicy for webhook patch
+      networkPolicy:
+        # -- Enable 'networkPolicy' or not
+        enabled: false
       nodeSelector:
         kubernetes.io/os: linux
       tolerations: []

From a8decd818299472ead4e9fb2bebad2f2b1abb0d8 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 30 Nov 2023 16:53:05 -0500
Subject: [PATCH 1046/1641] update the nginx build (#10707)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index d6cecf76b..8c12b0f65 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:v20231011-8b53cabe0@sha256:34881d62f71e8573fb765c40585dba28a1148206fbbe2c3871ad3f4e8c6e360f
+registry.k8s.io/ingress-nginx/nginx:v20231129-9439e6c71@sha256:ca1349074a0d087d8fca347ea4c04fa12c0275f53f72d6f65118307285efc8ca
\ No newline at end of file

From 1f06e26080e8531100d0c633f4c9819e97dcb5cb Mon Sep 17 00:00:00 2001
From: Stavros Foteinopoulos <stafot@gmail.com>
Date: Sat, 2 Dec 2023 15:26:23 +0200
Subject: [PATCH 1047/1641] Add extra configMaps support to helm chart (#10673)

* Add extra configMaps support to helm chart

Signed-off-by: Stavros Foteinopoulos <stafot@gmail.com>

* Introducing unit tests for helm chart

Signed-off-by: Stavros Foteinopoulos <stafot@gmail.com>

---------

Signed-off-by: Stavros Foteinopoulos <stafot@gmail.com>
---
 .github/workflows/ci.yaml                     |  8 +++
 .gitignore                                    |  1 +
 charts/ingress-nginx/.helmignore              |  1 +
 charts/ingress-nginx/Chart.yaml               |  2 +-
 charts/ingress-nginx/README.md                |  3 +-
 .../default-backend-extra-configmaps.yaml     | 23 +++++++++
 ...default-backend-extra-configmaps_test.yaml | 49 +++++++++++++++++++
 charts/ingress-nginx/values.yaml              | 15 ++++++
 8 files changed, 100 insertions(+), 2 deletions(-)
 create mode 100644 charts/ingress-nginx/templates/default-backend-extra-configmaps.yaml
 create mode 100644 charts/ingress-nginx/tests/default-backend-extra-configmaps_test.yaml

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 1203be01b..7af11c277 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -163,6 +163,14 @@ jobs:
           go-version: '1.21.3'
           check-latest: true
 
+      - name: Install Helm Unit Test Plugin
+        run: |
+          helm plugin install https://github.com/quintush/helm-unittest
+
+      - name: Run Helm Unit Tests
+        run: |
+          helm unittest charts/ingress-nginx -d
+
       - name: cache
         uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
         with:
diff --git a/.gitignore b/.gitignore
index 60bf6a304..73108f627 100644
--- a/.gitignore
+++ b/.gitignore
@@ -61,3 +61,4 @@ cmd/plugin/release/*.tar.gz
 cmd/plugin/release/LICENSE
 tmp/
 test/junitreports/
+tests/__snapshot__
diff --git a/charts/ingress-nginx/.helmignore b/charts/ingress-nginx/.helmignore
index 50af03172..109b40811 100644
--- a/charts/ingress-nginx/.helmignore
+++ b/charts/ingress-nginx/.helmignore
@@ -20,3 +20,4 @@
 .idea/
 *.tmproj
 .vscode/
+__snapshot__
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 30ca8afaa..b664a6714 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -19,4 +19,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.8.3
+version: 4.8.4
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index e2777fbe2..c03f290df 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.8.3](https://img.shields.io/badge/Version-4.8.3-informational?style=flat-square) ![AppVersion: 1.9.4](https://img.shields.io/badge/AppVersion-1.9.4-informational?style=flat-square)
+![Version: 4.8.4](https://img.shields.io/badge/Version-4.8.4-informational?style=flat-square) ![AppVersion: 1.9.4](https://img.shields.io/badge/AppVersion-1.9.4-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -465,6 +465,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.enabled | bool | `false` |  |
 | defaultBackend.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | defaultBackend.extraArgs | object | `{}` |  |
+| defaultBackend.extraConfigMaps | list | `[]` |  |
 | defaultBackend.extraEnvs | list | `[]` | Additional environment variables to set for defaultBackend pods |
 | defaultBackend.extraVolumeMounts | list | `[]` |  |
 | defaultBackend.extraVolumes | list | `[]` |  |
diff --git a/charts/ingress-nginx/templates/default-backend-extra-configmaps.yaml b/charts/ingress-nginx/templates/default-backend-extra-configmaps.yaml
new file mode 100644
index 000000000..88b59280b
--- /dev/null
+++ b/charts/ingress-nginx/templates/default-backend-extra-configmaps.yaml
@@ -0,0 +1,23 @@
+{{- if .Values.defaultBackend.enabled }}
+  {{- range .Values.defaultBackend.extraConfigMaps }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ .name }}
+  namespace: {{ include "ingress-nginx.namespace" $ | quote }}
+  labels:
+    {{- include "ingress-nginx.labels" $ | nindent 4 }}
+    {{- with $.Values.defaultBackend.labels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+    {{- with .labels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+data:
+  {{- with .data }}
+  {{- toYaml . | nindent 2 }}
+  {{- end }}
+  {{- end }}
+{{- end }}
+
diff --git a/charts/ingress-nginx/tests/default-backend-extra-configmaps_test.yaml b/charts/ingress-nginx/tests/default-backend-extra-configmaps_test.yaml
new file mode 100644
index 000000000..b18ceedfa
--- /dev/null
+++ b/charts/ingress-nginx/tests/default-backend-extra-configmaps_test.yaml
@@ -0,0 +1,49 @@
+suite: test default backend extra ConfigMaps
+templates:
+  - default-backend-extra-configmaps.yaml
+
+tests:
+  - it: should not create any ConfigMap by default
+    set:
+      Release.Namespace: default
+      defaultBackend.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create one ConfigMap
+    set:
+      Release.Namespace: default
+      defaultBackend.enabled: true
+      defaultBackend.extraConfigMaps:
+        - name: my-configmap-1
+          data:
+            key1: value1
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ConfigMap
+      - equal:
+          path: metadata.name
+          value: my-configmap-1
+
+  - it: should correctly render multiple ConfigMaps
+    set:
+      Release.Namespace: nginx
+      defaultBackend.enabled: true
+      defaultBackend.extraConfigMaps:
+        - name: my-configmap-1
+          data:
+            key1: value1
+        - name: my-configmap-2
+          data:
+            key2: value2
+    asserts:
+      - hasDocuments:
+          count: 2
+      - isKind:
+          of: ConfigMap
+      - matchRegex:
+          path: metadata.name
+          pattern: "my-configmap-\\d+"
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 0842a70bf..c1e89d777 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -931,6 +931,21 @@ defaultBackend:
   ## Additional volumes to the default backend pod.
   #  - name: copy-portal-skins
   #    emptyDir: {}
+  extraConfigMaps: []
+    ## Additional configmaps to the default backend pod.
+    # Example ConfigMap, uncomment and configure as needed
+    # - name: my-extra-configmap-1
+    #   labels:
+    #     type: config-1
+    #   data:
+    #     extra_file_1.html: |
+    #       <!-- Extra HTML content for ConfigMap 1 -->
+    # - name: my-extra-configmap-2
+    #   labels:
+    #     type: config-2
+    #   data:
+    #     extra_file_2.html: |
+    #       <!-- Extra HTML content for ConfigMap 2 -->
 
   autoscaling:
     annotations: {}

From 8dfdc30958f951b28fdd56d25edcd0f3285bbcd5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 4 Dec 2023 17:38:42 +0100
Subject: [PATCH 1048/1641] Bump golang.org/x/crypto from 0.15.0 to 0.16.0
 (#10724)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.15.0 to 0.16.0.
- [Commits](https://github.com/golang/crypto/compare/v0.15.0...v0.16.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 87e4d8873..8988b7461 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.4
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.15.0
+	golang.org/x/crypto v0.16.0
 	google.golang.org/grpc v1.59.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -104,8 +104,8 @@ require (
 	golang.org/x/mod v0.13.0 // indirect
 	golang.org/x/net v0.17.0 // indirect
 	golang.org/x/oauth2 v0.12.0 // indirect
-	golang.org/x/sys v0.14.0 // indirect
-	golang.org/x/term v0.14.0 // indirect
+	golang.org/x/sys v0.15.0 // indirect
+	golang.org/x/term v0.15.0 // indirect
 	golang.org/x/text v0.14.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.14.0 // indirect
diff --git a/go.sum b/go.sum
index a325a9c26..2a615836b 100644
--- a/go.sum
+++ b/go.sum
@@ -399,8 +399,8 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.15.0 h1:frVn1TEaCEaZcn3Tmd7Y2b5KKPaZ+I32Q2OA3kYp5TA=
-golang.org/x/crypto v0.15.0/go.mod h1:4ChreQoLWfG3xLDer1WdlH5NdlQ3+mwnQq1YTKY+72g=
+golang.org/x/crypto v0.16.0 h1:mMMrFzRSCF0GvB7Ne27XVtVAaXLrPmgPC7/v0tkwHaY=
+golang.org/x/crypto v0.16.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq4=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -532,11 +532,11 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.14.0 h1:Vz7Qs629MkJkGyHxUlRHizWJRG2j8fbQKjELVSNhy7Q=
-golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.15.0 h1:h48lPFYpsTvQJZF4EKyI4aLHaev3CxivZmv7yZig9pc=
+golang.org/x/sys v0.15.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.14.0 h1:LGK9IlZ8T9jvdy6cTdfKUCltatMFOehAQo9SRC46UQ8=
-golang.org/x/term v0.14.0/go.mod h1:TySc+nGkYR6qt8km8wUhuFRTVSMIX3XPR58y2lC8vww=
+golang.org/x/term v0.15.0 h1:y/Oo/a/q3IXu26lQgl04j/gjuBDOBlx7X6Om1j2CPW4=
+golang.org/x/term v0.15.0/go.mod h1:BDl952bC7+uMoWR75FIrCDx79TPU9oHkTZ9yRbYOrX0=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=

From 83f433257282029b2425a5643e8701ba14755fcb Mon Sep 17 00:00:00 2001
From: Ofir Shtrull <shtrull@gmail.com>
Date: Tue, 5 Dec 2023 15:47:20 +0200
Subject: [PATCH 1049/1641] add new serivce type for internal use (#10727)

* add new serivce type for internal use

* bump chart version

* lint

* fix tests

* fix readme

* Update charts/ingress-nginx/Chart.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/values.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* rerun helm-docs

* Update charts/ingress-nginx/templates/controller-service-internal.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* fix values

* fix values

---------

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 charts/ingress-nginx/README.md                                  | 1 +
 charts/ingress-nginx/templates/controller-service-internal.yaml | 2 +-
 charts/ingress-nginx/values.yaml                                | 2 ++
 3 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index c03f290df..88b62cca5 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -428,6 +428,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.service.internal.loadBalancerSourceRanges | list | `[]` | Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0. |
 | controller.service.internal.ports | object | `{}` | Custom port mapping for internal service |
 | controller.service.internal.targetPorts | object | `{}` | Custom target port mapping for internal service |
+| controller.service.internal.type | string | `""` | Type of the internal controller service. |
 | controller.service.ipFamilies | list | `["IPv4"]` | List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/ |
 | controller.service.ipFamilyPolicy | string | `"SingleStack"` | Represents the dual-stack-ness requested or required by this Service. Possible values are SingleStack, PreferDualStack or RequireDualStack. The ipFamilies and clusterIPs fields depend on the value of this field. # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/ |
 | controller.service.labels | object | `{}` |  |
diff --git a/charts/ingress-nginx/templates/controller-service-internal.yaml b/charts/ingress-nginx/templates/controller-service-internal.yaml
index b69a09f67..8df2d9609 100644
--- a/charts/ingress-nginx/templates/controller-service-internal.yaml
+++ b/charts/ingress-nginx/templates/controller-service-internal.yaml
@@ -15,7 +15,7 @@ metadata:
   name: {{ include "ingress-nginx.controller.fullname" . }}-internal
   namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
-  type: "{{ .Values.controller.service.type }}"
+  type: "{{ .Values.controller.service.internal.type | default .Values.controller.service.type }}"
 {{- if hasKey .Values.controller.service.internal "allocateLoadBalancerNodePorts" }}
   allocateLoadBalancerNodePorts: {{ .Values.controller.service.internal.allocateLoadBalancerNodePorts }}
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index c1e89d777..d48e847fa 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -525,6 +525,8 @@ controller:
       # allocateLoadBalancerNodePorts: true
       # -- Used by cloud providers to connect the resulting internal LoadBalancer to a pre-existing static IP. Make sure to add to the service the needed annotation to specify the subnet which the static IP belongs to. For instance, `networking.gke.io/internal-load-balancer-subnet` for GCP and `service.beta.kubernetes.io/aws-load-balancer-subnets` for AWS.
       loadBalancerIP: ""
+      # -- Type of the internal controller service.
+      type: ""
       # -- Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.
       loadBalancerSourceRanges: []
       ## Set external traffic policy to: "Local" to preserve source IP on

From 815a1c56a99e011549a5ba308dda89a925e547d0 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 5 Dec 2023 17:22:12 +0100
Subject: [PATCH 1050/1641] Chart: Simplify image templating. (#10708)

---
 .../admission-webhooks/job-patch/job-createSecret.yaml          | 2 +-
 .../admission-webhooks/job-patch/job-patchWebhook.yaml          | 2 +-
 charts/ingress-nginx/templates/controller-daemonset.yaml        | 2 +-
 charts/ingress-nginx/templates/controller-deployment.yaml       | 2 +-
 charts/ingress-nginx/templates/default-backend-deployment.yaml  | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
index c29083f2b..0a21f856a 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
@@ -43,7 +43,7 @@ spec:
       containers:
         - name: create
           {{- with .Values.controller.admissionWebhooks.patch.image }}
-          image: "{{- if .repository -}}{{ .repository }}{{ else }}{{ .registry }}/{{ .image }}{{- end -}}:{{ .tag }}{{- if (.digest) -}} @{{.digest}} {{- end -}}"
+          image: {{ if .repository }}{{ .repository }}{{ else }}{{ .registry }}/{{ .image }}{{ end }}:{{ .tag }}{{ if .digest }}@{{ .digest }}{{ end }}
           {{- end }}
           imagePullPolicy: {{ .Values.controller.admissionWebhooks.patch.image.pullPolicy }}
           args:
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
index cbc4a7619..ce9985aa5 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
@@ -43,7 +43,7 @@ spec:
       containers:
         - name: patch
           {{- with .Values.controller.admissionWebhooks.patch.image }}
-          image: "{{- if .repository -}}{{ .repository }}{{ else }}{{ .registry }}/{{ .image }}{{- end -}}:{{ .tag }}{{- if (.digest) -}} @{{.digest}} {{- end -}}"
+          image: {{ if .repository }}{{ .repository }}{{ else }}{{ .registry }}/{{ .image }}{{ end }}:{{ .tag }}{{ if .digest }}@{{ .digest }}{{ end }}
           {{- end }}
           imagePullPolicy: {{ .Values.controller.admissionWebhooks.patch.image.pullPolicy }}
           args:
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 3aaa92509..e6e28c872 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -77,7 +77,7 @@ spec:
       containers:
         - name: {{ .Values.controller.containerName }}
           {{- with .Values.controller.image }}
-          image: "{{- if .repository -}}{{ .repository }}{{ else }}{{ .registry }}/{{ include "ingress-nginx.image" . }}{{- end -}}:{{ .tag }}{{ include "ingress-nginx.imageDigest" . }}"
+          image: {{ if .repository }}{{ .repository }}{{ else }}{{ .registry }}/{{ include "ingress-nginx.image" . }}{{ end }}:{{ .tag }}{{ include "ingress-nginx.imageDigest" . }}
           {{- end }}
           imagePullPolicy: {{ .Values.controller.image.pullPolicy }}
         {{- if .Values.controller.lifecycle }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index ded282a30..cd59c7979 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -80,7 +80,7 @@ spec:
       containers:
         - name: {{ .Values.controller.containerName }}
           {{- with .Values.controller.image }}
-          image: "{{- if .repository -}}{{ .repository }}{{ else }}{{ .registry }}/{{ include "ingress-nginx.image" . }}{{- end -}}:{{ .tag }}{{ include "ingress-nginx.imageDigest" . }}"
+          image: {{ if .repository }}{{ .repository }}{{ else }}{{ .registry }}/{{ include "ingress-nginx.image" . }}{{ end }}:{{ .tag }}{{ include "ingress-nginx.imageDigest" . }}
           {{- end }}
           imagePullPolicy: {{ .Values.controller.image.pullPolicy }}
         {{- if .Values.controller.lifecycle }}
diff --git a/charts/ingress-nginx/templates/default-backend-deployment.yaml b/charts/ingress-nginx/templates/default-backend-deployment.yaml
index ed88e6bc3..66c307563 100644
--- a/charts/ingress-nginx/templates/default-backend-deployment.yaml
+++ b/charts/ingress-nginx/templates/default-backend-deployment.yaml
@@ -51,7 +51,7 @@ spec:
       containers:
         - name: {{ template "ingress-nginx.name" . }}-default-backend
           {{- with .Values.defaultBackend.image }}
-          image: "{{- if .repository -}}{{ .repository }}{{ else }}{{ .registry }}/{{ .image }}{{- end -}}:{{ .tag }}{{- if (.digest) -}} @{{.digest}} {{- end -}}"
+          image: {{ if .repository }}{{ .repository }}{{ else }}{{ .registry }}/{{ .image }}{{ end }}:{{ .tag }}{{ if .digest }}@{{ .digest }}{{ end }}
           {{- end }}
           imagePullPolicy: {{ .Values.defaultBackend.image.pullPolicy }}
         {{- if .Values.defaultBackend.extraArgs }}

From 7e54daa9097ade586595150b2de0caf3e205a7cb Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 5 Dec 2023 17:25:04 +0100
Subject: [PATCH 1051/1641] Helm Service: Align internal to external. (#10239)

* Service: Align internal to external.

* Service: Remove redundant condition.
---
 charts/ingress-nginx/README.md                |  73 +++---
 .../controller-service-internal.yaml          |  55 +++--
 .../templates/controller-service.yaml         |   8 +-
 charts/ingress-nginx/values.yaml              | 219 +++++++++++++-----
 4 files changed, 242 insertions(+), 113 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 88b62cca5..cafecf976 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -415,35 +415,50 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.scope.enabled | bool | `false` | Enable 'scope' or not |
 | controller.scope.namespace | string | `""` | Namespace to limit the controller to; defaults to $(POD_NAMESPACE) |
 | controller.scope.namespaceSelector | string | `""` | When scope.enabled == false, instead of watching all namespaces, we watching namespaces whose labels only match with namespaceSelector. Format like foo=bar. Defaults to empty, means watching all namespaces. |
-| controller.service.annotations | object | `{}` | Annotations are mandatory for the load balancer to come up. Varies with the cloud service. Values passed through helm tpl engine. |
-| controller.service.appProtocol | bool | `true` | If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http It allows choosing the protocol for each backend specified in the Kubernetes service. See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244 Will be ignored for Kubernetes versions older than 1.20 # |
-| controller.service.enableHttp | bool | `true` |  |
-| controller.service.enableHttps | bool | `true` |  |
-| controller.service.enabled | bool | `true` |  |
-| controller.service.external.enabled | bool | `true` |  |
-| controller.service.externalIPs | list | `[]` | List of IP addresses at which the controller services are available # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips # |
-| controller.service.internal.annotations | object | `{}` | Annotations are mandatory for the load balancer to come up. Varies with the cloud service. Values passed through helm tpl engine. |
-| controller.service.internal.enabled | bool | `false` | Enables an additional internal load balancer (besides the external one). |
-| controller.service.internal.loadBalancerIP | string | `""` | Used by cloud providers to connect the resulting internal LoadBalancer to a pre-existing static IP. Make sure to add to the service the needed annotation to specify the subnet which the static IP belongs to. For instance, `networking.gke.io/internal-load-balancer-subnet` for GCP and `service.beta.kubernetes.io/aws-load-balancer-subnets` for AWS. |
-| controller.service.internal.loadBalancerSourceRanges | list | `[]` | Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0. |
-| controller.service.internal.ports | object | `{}` | Custom port mapping for internal service |
-| controller.service.internal.targetPorts | object | `{}` | Custom target port mapping for internal service |
-| controller.service.internal.type | string | `""` | Type of the internal controller service. |
-| controller.service.ipFamilies | list | `["IPv4"]` | List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically based on cluster configuration and the ipFamilyPolicy field. # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/ |
-| controller.service.ipFamilyPolicy | string | `"SingleStack"` | Represents the dual-stack-ness requested or required by this Service. Possible values are SingleStack, PreferDualStack or RequireDualStack. The ipFamilies and clusterIPs fields depend on the value of this field. # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/ |
-| controller.service.labels | object | `{}` |  |
-| controller.service.loadBalancerClass | string | `""` | Used by cloud providers to select a load balancer implementation other than the cloud provider default. https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-class |
-| controller.service.loadBalancerIP | string | `""` | Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer |
-| controller.service.loadBalancerSourceRanges | list | `[]` |  |
-| controller.service.nodePorts.http | string | `""` |  |
-| controller.service.nodePorts.https | string | `""` |  |
-| controller.service.nodePorts.tcp | object | `{}` |  |
-| controller.service.nodePorts.udp | object | `{}` |  |
-| controller.service.ports.http | int | `80` |  |
-| controller.service.ports.https | int | `443` |  |
-| controller.service.targetPorts.http | string | `"http"` |  |
-| controller.service.targetPorts.https | string | `"https"` |  |
-| controller.service.type | string | `"LoadBalancer"` |  |
+| controller.service.annotations | object | `{}` | Annotations to be added to the external controller service. See `controller.service.internal.annotations` for annotations to be added to the internal controller service. |
+| controller.service.appProtocol | bool | `true` | Declare the app protocol of the external HTTP and HTTPS listeners or not. Supersedes provider-specific annotations for declaring the backend protocol. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#application-protocol |
+| controller.service.clusterIP | string | `""` | Pre-defined cluster internal IP address of the external controller service. Take care of collisions with existing services. This value is immutable. Set once, it can not be changed without deleting and re-creating the service. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address |
+| controller.service.enableHttp | bool | `true` | Enable the HTTP listener on both controller services or not. |
+| controller.service.enableHttps | bool | `true` | Enable the HTTPS listener on both controller services or not. |
+| controller.service.enabled | bool | `true` | Enable controller services or not. This does not influence the creation of either the admission webhook or the metrics service. |
+| controller.service.external.enabled | bool | `true` | Enable the external controller service or not. Useful for internal-only deployments. |
+| controller.service.externalIPs | list | `[]` | List of node IP addresses at which the external controller service is available. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips |
+| controller.service.externalTrafficPolicy | string | `""` | External traffic policy of the external controller service. Set to "Local" to preserve source IP on providers supporting it. Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip |
+| controller.service.internal.annotations | object | `{}` | Annotations to be added to the internal controller service. Mandatory for the internal controller service to be created. Varies with the cloud service. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer |
+| controller.service.internal.appProtocol | bool | `true` | Declare the app protocol of the internal HTTP and HTTPS listeners or not. Supersedes provider-specific annotations for declaring the backend protocol. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#application-protocol |
+| controller.service.internal.clusterIP | string | `""` | Pre-defined cluster internal IP address of the internal controller service. Take care of collisions with existing services. This value is immutable. Set once, it can not be changed without deleting and re-creating the service. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address |
+| controller.service.internal.enabled | bool | `false` | Enable the internal controller service or not. Remember to configure `controller.service.internal.annotations` when enabling this. |
+| controller.service.internal.externalIPs | list | `[]` | List of node IP addresses at which the internal controller service is available. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips |
+| controller.service.internal.externalTrafficPolicy | string | `""` | External traffic policy of the internal controller service. Set to "Local" to preserve source IP on providers supporting it. Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip |
+| controller.service.internal.ipFamilies | list | `["IPv4"]` | List of IP families (e.g. IPv4, IPv6) assigned to the internal controller service. This field is usually assigned automatically based on cluster configuration and the `ipFamilyPolicy` field. Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services |
+| controller.service.internal.ipFamilyPolicy | string | `"SingleStack"` | Represents the dual-stack capabilities of the internal controller service. Possible values are SingleStack, PreferDualStack or RequireDualStack. Fields `ipFamilies` and `clusterIP` depend on the value of this field. Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services |
+| controller.service.internal.loadBalancerClass | string | `""` | Load balancer class of the internal controller service. Used by cloud providers to select a load balancer implementation other than the cloud provider default. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-class |
+| controller.service.internal.loadBalancerIP | string | `""` | Deprecated: Pre-defined IP address of the internal controller service. Used by cloud providers to connect the resulting load balancer service to a pre-existing static IP. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer |
+| controller.service.internal.loadBalancerSourceRanges | list | `[]` | Restrict access to the internal controller service. Values must be CIDRs. Allows any source address by default. |
+| controller.service.internal.nodePorts.http | string | `""` | Node port allocated for the internal HTTP listener. If left empty, the service controller allocates one from the configured node port range. |
+| controller.service.internal.nodePorts.https | string | `""` | Node port allocated for the internal HTTPS listener. If left empty, the service controller allocates one from the configured node port range. |
+| controller.service.internal.nodePorts.tcp | object | `{}` | Node port mapping for internal TCP listeners. If left empty, the service controller allocates them from the configured node port range. Example: tcp:   8080: 30080 |
+| controller.service.internal.nodePorts.udp | object | `{}` | Node port mapping for internal UDP listeners. If left empty, the service controller allocates them from the configured node port range. Example: udp:   53: 30053 |
+| controller.service.internal.ports | object | `{}` |  |
+| controller.service.internal.sessionAffinity | string | `""` | Session affinity of the internal controller service. Must be either "None" or "ClientIP" if set. Defaults to "None". Ref: https://kubernetes.io/docs/reference/networking/virtual-ips/#session-affinity |
+| controller.service.internal.targetPorts | object | `{}` |  |
+| controller.service.internal.type | string | `""` | Type of the internal controller service. Defaults to the value of `controller.service.type`. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types |
+| controller.service.ipFamilies | list | `["IPv4"]` | List of IP families (e.g. IPv4, IPv6) assigned to the external controller service. This field is usually assigned automatically based on cluster configuration and the `ipFamilyPolicy` field. Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services |
+| controller.service.ipFamilyPolicy | string | `"SingleStack"` | Represents the dual-stack capabilities of the external controller service. Possible values are SingleStack, PreferDualStack or RequireDualStack. Fields `ipFamilies` and `clusterIP` depend on the value of this field. Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services |
+| controller.service.labels | object | `{}` | Labels to be added to both controller services. |
+| controller.service.loadBalancerClass | string | `""` | Load balancer class of the external controller service. Used by cloud providers to select a load balancer implementation other than the cloud provider default. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-class |
+| controller.service.loadBalancerIP | string | `""` | Deprecated: Pre-defined IP address of the external controller service. Used by cloud providers to connect the resulting load balancer service to a pre-existing static IP. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer |
+| controller.service.loadBalancerSourceRanges | list | `[]` | Restrict access to the external controller service. Values must be CIDRs. Allows any source address by default. |
+| controller.service.nodePorts.http | string | `""` | Node port allocated for the external HTTP listener. If left empty, the service controller allocates one from the configured node port range. |
+| controller.service.nodePorts.https | string | `""` | Node port allocated for the external HTTPS listener. If left empty, the service controller allocates one from the configured node port range. |
+| controller.service.nodePorts.tcp | object | `{}` | Node port mapping for external TCP listeners. If left empty, the service controller allocates them from the configured node port range. Example: tcp:   8080: 30080 |
+| controller.service.nodePorts.udp | object | `{}` | Node port mapping for external UDP listeners. If left empty, the service controller allocates them from the configured node port range. Example: udp:   53: 30053 |
+| controller.service.ports.http | int | `80` | Port the external HTTP listener is published with. |
+| controller.service.ports.https | int | `443` | Port the external HTTPS listener is published with. |
+| controller.service.sessionAffinity | string | `""` | Session affinity of the external controller service. Must be either "None" or "ClientIP" if set. Defaults to "None". Ref: https://kubernetes.io/docs/reference/networking/virtual-ips/#session-affinity |
+| controller.service.targetPorts.http | string | `"http"` | Port of the ingress controller the external HTTP listener is mapped to. |
+| controller.service.targetPorts.https | string | `"https"` | Port of the ingress controller the external HTTPS listener is mapped to. |
+| controller.service.type | string | `"LoadBalancer"` | Type of the external controller service. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types |
 | controller.shareProcessNamespace | bool | `false` |  |
 | controller.sysctls | object | `{}` | sysctls for controller pods # Ref: https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ |
 | controller.tcp.annotations | object | `{}` | Annotations to be added to the tcp config configmap |
diff --git a/charts/ingress-nginx/templates/controller-service-internal.yaml b/charts/ingress-nginx/templates/controller-service-internal.yaml
index 8df2d9609..950eb8f05 100644
--- a/charts/ingress-nginx/templates/controller-service-internal.yaml
+++ b/charts/ingress-nginx/templates/controller-service-internal.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.service.enabled .Values.controller.service.internal.enabled .Values.controller.service.internal.annotations}}
+{{- if and .Values.controller.service.enabled .Values.controller.service.internal.enabled .Values.controller.service.internal.annotations -}}
 apiVersion: v1
 kind: Service
 metadata:
@@ -15,9 +15,12 @@ metadata:
   name: {{ include "ingress-nginx.controller.fullname" . }}-internal
   namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
-  type: "{{ .Values.controller.service.internal.type | default .Values.controller.service.type }}"
-{{- if hasKey .Values.controller.service.internal "allocateLoadBalancerNodePorts" }}
-  allocateLoadBalancerNodePorts: {{ .Values.controller.service.internal.allocateLoadBalancerNodePorts }}
+  type: {{ .Values.controller.service.internal.type | default .Values.controller.service.type }}
+{{- if .Values.controller.service.internal.clusterIP }}
+  clusterIP: {{ .Values.controller.service.internal.clusterIP }}
+{{- end }}
+{{- if .Values.controller.service.internal.externalIPs }}
+  externalIPs: {{ toYaml .Values.controller.service.internal.externalIPs | nindent 4 }}
 {{- end }}
 {{- if .Values.controller.service.internal.loadBalancerIP }}
   loadBalancerIP: {{ .Values.controller.service.internal.loadBalancerIP }}
@@ -25,8 +28,28 @@ spec:
 {{- if .Values.controller.service.internal.loadBalancerSourceRanges }}
   loadBalancerSourceRanges: {{ toYaml .Values.controller.service.internal.loadBalancerSourceRanges | nindent 4 }}
 {{- end }}
+{{- if .Values.controller.service.internal.loadBalancerClass }}
+  loadBalancerClass: {{ .Values.controller.service.internal.loadBalancerClass }}
+{{- end }}
+{{- if hasKey .Values.controller.service.internal "allocateLoadBalancerNodePorts" }}
+  allocateLoadBalancerNodePorts: {{ .Values.controller.service.internal.allocateLoadBalancerNodePorts }}
+{{- end }}
 {{- if .Values.controller.service.internal.externalTrafficPolicy }}
   externalTrafficPolicy: {{ .Values.controller.service.internal.externalTrafficPolicy }}
+{{- end }}
+{{- if .Values.controller.service.internal.sessionAffinity }}
+  sessionAffinity: {{ .Values.controller.service.internal.sessionAffinity }}
+{{- end }}
+{{- if .Values.controller.service.internal.healthCheckNodePort }}
+  healthCheckNodePort: {{ .Values.controller.service.internal.healthCheckNodePort }}
+{{- end }}
+{{- if semverCompare ">=1.21.0-0" .Capabilities.KubeVersion.Version -}}
+{{- if .Values.controller.service.internal.ipFamilyPolicy }}
+  ipFamilyPolicy: {{ .Values.controller.service.internal.ipFamilyPolicy }}
+{{- end }}
+{{- if .Values.controller.service.internal.ipFamilies }}
+  ipFamilies: {{ toYaml .Values.controller.service.internal.ipFamilies | nindent 4 }}
+{{- end }}
 {{- end }}
   ports:
   {{- $setNodePorts := (or (eq .Values.controller.service.type "NodePort") (eq .Values.controller.service.type "LoadBalancer")) }}
@@ -35,11 +58,11 @@ spec:
       port: {{ .Values.controller.service.internal.ports.http | default .Values.controller.service.ports.http }}
       protocol: TCP
       targetPort: {{ .Values.controller.service.internal.targetPorts.http | default .Values.controller.service.targetPorts.http }}
-    {{- if semverCompare ">=1.20" .Capabilities.KubeVersion.Version }}
+    {{- if and (semverCompare ">=1.20" .Capabilities.KubeVersion.Version) (.Values.controller.service.internal.appProtocol) }}
       appProtocol: http
     {{- end }}
-    {{- if (and $setNodePorts (not (empty .Values.controller.service.nodePorts.http))) }}
-      nodePort: {{ .Values.controller.service.nodePorts.http }}
+    {{- if (and $setNodePorts (not (empty .Values.controller.service.internal.nodePorts.http))) }}
+      nodePort: {{ .Values.controller.service.internal.nodePorts.http }}
     {{- end }}
   {{- end }}
   {{- if .Values.controller.service.enableHttps }}
@@ -47,11 +70,11 @@ spec:
       port: {{ .Values.controller.service.internal.ports.https | default .Values.controller.service.ports.https }}
       protocol: TCP
       targetPort: {{ .Values.controller.service.internal.targetPorts.https | default .Values.controller.service.targetPorts.https }}
-    {{- if semverCompare ">=1.20" .Capabilities.KubeVersion.Version }}
+    {{- if and (semverCompare ">=1.20" .Capabilities.KubeVersion.Version) (.Values.controller.service.internal.appProtocol) }}
       appProtocol: https
     {{- end }}
-    {{- if (and $setNodePorts (not (empty .Values.controller.service.nodePorts.https))) }}
-      nodePort: {{ .Values.controller.service.nodePorts.https }}
+    {{- if (and $setNodePorts (not (empty .Values.controller.service.internal.nodePorts.https))) }}
+      nodePort: {{ .Values.controller.service.internal.nodePorts.https }}
     {{- end }}
   {{- end }}
   {{- range $key, $value := .Values.tcp }}
@@ -59,9 +82,9 @@ spec:
       port: {{ $key }}
       protocol: TCP
       targetPort: {{ if $.Values.portNamePrefix }}{{ $.Values.portNamePrefix }}-{{ end }}{{ $key }}-tcp
-    {{- if $.Values.controller.service.nodePorts.tcp }}
-    {{- if index $.Values.controller.service.nodePorts.tcp $key }}
-      nodePort: {{ index $.Values.controller.service.nodePorts.tcp $key }}
+    {{- if $.Values.controller.service.internal.nodePorts.tcp }}
+    {{- if index $.Values.controller.service.internal.nodePorts.tcp $key }}
+      nodePort: {{ index $.Values.controller.service.internal.nodePorts.tcp $key }}
     {{- end }}
     {{- end }}
   {{- end }}
@@ -70,9 +93,9 @@ spec:
       port: {{ $key }}
       protocol: UDP
       targetPort: {{ if $.Values.portNamePrefix }}{{ $.Values.portNamePrefix }}-{{ end }}{{ $key }}-udp
-    {{- if $.Values.controller.service.nodePorts.udp }}
-    {{- if index $.Values.controller.service.nodePorts.udp $key }}
-      nodePort: {{ index $.Values.controller.service.nodePorts.udp $key }}
+    {{- if $.Values.controller.service.internal.nodePorts.udp }}
+    {{- if index $.Values.controller.service.internal.nodePorts.udp $key }}
+      nodePort: {{ index $.Values.controller.service.internal.nodePorts.udp $key }}
     {{- end }}
     {{- end }}
   {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-service.yaml b/charts/ingress-nginx/templates/controller-service.yaml
index d81635014..74f608536 100644
--- a/charts/ingress-nginx/templates/controller-service.yaml
+++ b/charts/ingress-nginx/templates/controller-service.yaml
@@ -16,9 +16,6 @@ metadata:
   namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
   type: {{ .Values.controller.service.type }}
-{{- if hasKey .Values.controller.service "allocateLoadBalancerNodePorts" }}
-  allocateLoadBalancerNodePorts: {{ .Values.controller.service.allocateLoadBalancerNodePorts }}
-{{- end }}
 {{- if .Values.controller.service.clusterIP }}
   clusterIP: {{ .Values.controller.service.clusterIP }}
 {{- end }}
@@ -34,6 +31,9 @@ spec:
 {{- if .Values.controller.service.loadBalancerClass }}
   loadBalancerClass: {{ .Values.controller.service.loadBalancerClass }}
 {{- end }}
+{{- if hasKey .Values.controller.service "allocateLoadBalancerNodePorts" }}
+  allocateLoadBalancerNodePorts: {{ .Values.controller.service.allocateLoadBalancerNodePorts }}
+{{- end }}
 {{- if .Values.controller.service.externalTrafficPolicy }}
   externalTrafficPolicy: {{ .Values.controller.service.externalTrafficPolicy }}
 {{- end }}
@@ -47,8 +47,6 @@ spec:
 {{- if .Values.controller.service.ipFamilyPolicy }}
   ipFamilyPolicy: {{ .Values.controller.service.ipFamilyPolicy }}
 {{- end }}
-{{- end }}
-{{- if semverCompare ">=1.21.0-0" .Capabilities.KubeVersion.Version -}}
 {{- if .Values.controller.service.ipFamilies }}
   ipFamilies: {{ toYaml .Values.controller.service.ipFamilies | nindent 4 }}
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index d48e847fa..a06eca14c 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -444,105 +444,198 @@ controller:
   customTemplate:
     configMapName: ""
     configMapKey: ""
+
   service:
+    # -- Enable controller services or not. This does not influence the creation of either the admission webhook or the metrics service.
     enabled: true
-    # -- If enabled is adding an appProtocol option for Kubernetes service. An appProtocol field replacing annotations that were
-    # using for setting a backend protocol. Here is an example for AWS: service.beta.kubernetes.io/aws-load-balancer-backend-protocol: http
-    # It allows choosing the protocol for each backend specified in the Kubernetes service.
-    # See the following GitHub issue for more details about the purpose: https://github.com/kubernetes/kubernetes/issues/40244
-    # Will be ignored for Kubernetes versions older than 1.20
-    ##
-    appProtocol: true
-    # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service. Values passed through helm tpl engine.
+
+    external:
+      # -- Enable the external controller service or not. Useful for internal-only deployments.
+      enabled: true
+
+    # -- Annotations to be added to the external controller service. See `controller.service.internal.annotations` for annotations to be added to the internal controller service.
     annotations: {}
+    # -- Labels to be added to both controller services.
     labels: {}
-    # clusterIP: ""
 
-    # -- List of IP addresses at which the controller services are available
-    ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips
-    ##
+    # -- Type of the external controller service.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types
+    type: LoadBalancer
+
+    # -- Pre-defined cluster internal IP address of the external controller service. Take care of collisions with existing services.
+    # This value is immutable. Set once, it can not be changed without deleting and re-creating the service.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address
+    clusterIP: ""
+
+    # -- List of node IP addresses at which the external controller service is available.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips
     externalIPs: []
-    # -- Set to false to disable loadbalancer node port allocation
-    # See https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-nodeport-allocation
-    # allocateLoadBalancerNodePorts: true
-    # -- Used by cloud providers to connect the resulting `LoadBalancer` to a pre-existing static IP according to https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
+
+    # -- Deprecated: Pre-defined IP address of the external controller service. Used by cloud providers to connect the resulting load balancer service to a pre-existing static IP.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
     loadBalancerIP: ""
+    # -- Restrict access to the external controller service. Values must be CIDRs. Allows any source address by default.
     loadBalancerSourceRanges: []
-    # -- Used by cloud providers to select a load balancer implementation other than the cloud provider default. https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-class
+    # -- Load balancer class of the external controller service. Used by cloud providers to select a load balancer implementation other than the cloud provider default.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-class
     loadBalancerClass: ""
-    enableHttp: true
-    enableHttps: true
-    ## Set external traffic policy to: "Local" to preserve source IP on providers supporting it.
-    ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
-    # externalTrafficPolicy: ""
 
-    ## Must be either "None" or "ClientIP" if set. Kubernetes will default to "None".
-    ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
-    # sessionAffinity: ""
+    # -- Enable node port allocation for the external controller service or not. Applies to type `LoadBalancer` only.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-nodeport-allocation
+    # allocateLoadBalancerNodePorts: true
 
-    ## Specifies the health check node port (numeric port number) for the service. If healthCheckNodePort isn’t specified,
-    ## the service controller allocates a port from your cluster’s NodePort range.
-    ## Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
+    # -- External traffic policy of the external controller service. Set to "Local" to preserve source IP on providers supporting it.
+    # Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
+    externalTrafficPolicy: ""
+
+    # -- Session affinity of the external controller service. Must be either "None" or "ClientIP" if set. Defaults to "None".
+    # Ref: https://kubernetes.io/docs/reference/networking/virtual-ips/#session-affinity
+    sessionAffinity: ""
+
+    # -- Specifies the health check node port (numeric port number) for the external controller service.
+    # If not specified, the service controller allocates a port from your cluster's node port range.
+    # Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
     # healthCheckNodePort: 0
 
-    # -- Represents the dual-stack-ness requested or required by this Service. Possible values are
-    # SingleStack, PreferDualStack or RequireDualStack.
-    # The ipFamilies and clusterIPs fields depend on the value of this field.
-    ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
-    ipFamilyPolicy: "SingleStack"
-    # -- List of IP families (e.g. IPv4, IPv6) assigned to the service. This field is usually assigned automatically
-    # based on cluster configuration and the ipFamilyPolicy field.
-    ## Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/
+    # -- Represents the dual-stack capabilities of the external controller service. Possible values are SingleStack, PreferDualStack or RequireDualStack.
+    # Fields `ipFamilies` and `clusterIP` depend on the value of this field.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+    ipFamilyPolicy: SingleStack
+    # -- List of IP families (e.g. IPv4, IPv6) assigned to the external controller service. This field is usually assigned automatically based on cluster configuration and the `ipFamilyPolicy` field.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
     ipFamilies:
       - IPv4
+
+    # -- Enable the HTTP listener on both controller services or not.
+    enableHttp: true
+    # -- Enable the HTTPS listener on both controller services or not.
+    enableHttps: true
+
     ports:
+      # -- Port the external HTTP listener is published with.
       http: 80
+      # -- Port the external HTTPS listener is published with.
       https: 443
+
     targetPorts:
+      # -- Port of the ingress controller the external HTTP listener is mapped to.
       http: http
+      # -- Port of the ingress controller the external HTTPS listener is mapped to.
       https: https
-    type: LoadBalancer
-    ## type: NodePort
-    ## nodePorts:
-    ##   http: 32080
-    ##   https: 32443
-    ##   tcp:
-    ##     8080: 32808
+
+    # -- Declare the app protocol of the external HTTP and HTTPS listeners or not. Supersedes provider-specific annotations for declaring the backend protocol.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#application-protocol
+    appProtocol: true
+
     nodePorts:
+      # -- Node port allocated for the external HTTP listener. If left empty, the service controller allocates one from the configured node port range.
       http: ""
+      # -- Node port allocated for the external HTTPS listener. If left empty, the service controller allocates one from the configured node port range.
       https: ""
+      # -- Node port mapping for external TCP listeners. If left empty, the service controller allocates them from the configured node port range.
+      # Example:
+      # tcp:
+      #   8080: 30080
       tcp: {}
+      # -- Node port mapping for external UDP listeners. If left empty, the service controller allocates them from the configured node port range.
+      # Example:
+      # udp:
+      #   53: 30053
       udp: {}
-    external:
-      enabled: true
+
     internal:
-      # -- Enables an additional internal load balancer (besides the external one).
+      # -- Enable the internal controller service or not. Remember to configure `controller.service.internal.annotations` when enabling this.
       enabled: false
-      # -- Annotations are mandatory for the load balancer to come up. Varies with the cloud service. Values passed through helm tpl engine.
+
+      # -- Annotations to be added to the internal controller service. Mandatory for the internal controller service to be created. Varies with the cloud service.
+      # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer
       annotations: {}
-      # -- Set to false to disable loadbalancer node port allocation
-      # See https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-nodeport-allocation
-      # allocateLoadBalancerNodePorts: true
-      # -- Used by cloud providers to connect the resulting internal LoadBalancer to a pre-existing static IP. Make sure to add to the service the needed annotation to specify the subnet which the static IP belongs to. For instance, `networking.gke.io/internal-load-balancer-subnet` for GCP and `service.beta.kubernetes.io/aws-load-balancer-subnets` for AWS.
-      loadBalancerIP: ""
+
       # -- Type of the internal controller service.
+      # Defaults to the value of `controller.service.type`.
+      # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types
       type: ""
-      # -- Restrict access For LoadBalancer service. Defaults to 0.0.0.0/0.
+
+      # -- Pre-defined cluster internal IP address of the internal controller service. Take care of collisions with existing services.
+      # This value is immutable. Set once, it can not be changed without deleting and re-creating the service.
+      # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address
+      clusterIP: ""
+
+      # -- List of node IP addresses at which the internal controller service is available.
+      # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips
+      externalIPs: []
+
+      # -- Deprecated: Pre-defined IP address of the internal controller service. Used by cloud providers to connect the resulting load balancer service to a pre-existing static IP.
+      # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
+      loadBalancerIP: ""
+      # -- Restrict access to the internal controller service. Values must be CIDRs. Allows any source address by default.
       loadBalancerSourceRanges: []
-      ## Set external traffic policy to: "Local" to preserve source IP on
-      ## providers supporting it
-      ## Ref: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-typeloadbalancer
-      # externalTrafficPolicy: ""
+      # -- Load balancer class of the internal controller service. Used by cloud providers to select a load balancer implementation other than the cloud provider default.
+      # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-class
+      loadBalancerClass: ""
+
+      # -- Enable node port allocation for the internal controller service or not. Applies to type `LoadBalancer` only.
+      # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-nodeport-allocation
+      # allocateLoadBalancerNodePorts: true
+
+      # -- External traffic policy of the internal controller service. Set to "Local" to preserve source IP on providers supporting it.
+      # Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
+      externalTrafficPolicy: ""
+
+      # -- Session affinity of the internal controller service. Must be either "None" or "ClientIP" if set. Defaults to "None".
+      # Ref: https://kubernetes.io/docs/reference/networking/virtual-ips/#session-affinity
+      sessionAffinity: ""
+
+      # -- Specifies the health check node port (numeric port number) for the internal controller service.
+      # If not specified, the service controller allocates a port from your cluster's node port range.
+      # Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
+      # healthCheckNodePort: 0
+
+      # -- Represents the dual-stack capabilities of the internal controller service. Possible values are SingleStack, PreferDualStack or RequireDualStack.
+      # Fields `ipFamilies` and `clusterIP` depend on the value of this field.
+      # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+      ipFamilyPolicy: SingleStack
+      # -- List of IP families (e.g. IPv4, IPv6) assigned to the internal controller service. This field is usually assigned automatically based on cluster configuration and the `ipFamilyPolicy` field.
+      # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
+      ipFamilies:
+        - IPv4
 
-      # -- Custom port mapping for internal service
       ports: {}
-      #  http: 80
-      #  https: 443
+        # -- Port the internal HTTP listener is published with.
+        # Defaults to the value of `controller.service.ports.http`.
+        # http: 80
+        # -- Port the internal HTTPS listener is published with.
+        # Defaults to the value of `controller.service.ports.https`.
+        # https: 443
 
-      # -- Custom target port mapping for internal service
       targetPorts: {}
-      #  http: http
-      #  https: https
+        # -- Port of the ingress controller the internal HTTP listener is mapped to.
+        # Defaults to the value of `controller.service.targetPorts.http`.
+        # http: http
+        # -- Port of the ingress controller the internal HTTPS listener is mapped to.
+        # Defaults to the value of `controller.service.targetPorts.https`.
+        # https: https
+
+      # -- Declare the app protocol of the internal HTTP and HTTPS listeners or not. Supersedes provider-specific annotations for declaring the backend protocol.
+      # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#application-protocol
+      appProtocol: true
+
+      nodePorts:
+        # -- Node port allocated for the internal HTTP listener. If left empty, the service controller allocates one from the configured node port range.
+        http: ""
+        # -- Node port allocated for the internal HTTPS listener. If left empty, the service controller allocates one from the configured node port range.
+        https: ""
+        # -- Node port mapping for internal TCP listeners. If left empty, the service controller allocates them from the configured node port range.
+        # Example:
+        # tcp:
+        #   8080: 30080
+        tcp: {}
+        # -- Node port mapping for internal UDP listeners. If left empty, the service controller allocates them from the configured node port range.
+        # Example:
+        # udp:
+        #   53: 30053
+        udp: {}
+
   # shareProcessNamespace enables process namespace sharing within the pod.
   # This can be used for example to signal log rotation using `kill -USR1` from a sidecar.
   shareProcessNamespace: false

From 45f8262d052ee0da6133d886ec90f1fbd7a19e3b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 6 Dec 2023 08:14:33 +0100
Subject: [PATCH 1052/1641] Bump actions/dependency-review-action from 3.1.3 to
 3.1.4 (#10725)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3.1.3 to 3.1.4.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/7bbfa034e752445ea40215fff1c3bf9597993d3f...01bc87099ba56df1e897b6874784491ea6309bc4)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 1eefe5939..3cd461417 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@7bbfa034e752445ea40215fff1c3bf9597993d3f # v3.1.3
+        uses: actions/dependency-review-action@01bc87099ba56df1e897b6874784491ea6309bc4 # v3.1.4

From 6152695c78075ef6ea17c97923d46e27e606e51c Mon Sep 17 00:00:00 2001
From: Sonu Kumar Singh <sonu.kumar.singh02@sap.com>
Date: Thu, 7 Dec 2023 20:27:33 +0530
Subject: [PATCH 1053/1641] images: upgrade to Alpine 3.18.5 (#10722)

---
 images/cfssl/rootfs/Dockerfile         | 2 +-
 images/nginx/rootfs/Dockerfile         | 4 ++--
 images/opentelemetry/rootfs/Dockerfile | 2 +-
 rootfs/Dockerfile-chroot               | 2 +-
 test/e2e-image/Dockerfile              | 2 +-
 5 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index 4ad69d362..f5fceb6e0 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.18.4
+FROM alpine:3.18.5
 
 
 RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 95f7a0288..5df4efac0 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.18.4 as builder
+FROM alpine:3.18.5 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.18.4
+FROM alpine:3.18.5
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index b46b116e0..4f6a927f6 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.18.4 as base
+FROM alpine:3.18.5 as base
 
 RUN mkdir -p /opt/third_party/install
 COPY . /opt/third_party/
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index 09e0ba7ce..634de7c04 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.18.4
+FROM alpine:3.18.5
 
 ARG TARGETARCH
 ARG VERSION
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index cd0bcb715..81b4b4d16 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,7 +1,7 @@
 ARG E2E_BASE_IMAGE
 FROM ${E2E_BASE_IMAGE} AS BASE
 
-FROM alpine:3.18.4
+FROM alpine:3.18.5
 
 RUN apk update \
 	&& apk upgrade && apk add -U --no-cache \

From 6807537a700a3f229a2b1ba6e74ca0932f22e72e Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 7 Dec 2023 19:52:14 -0500
Subject: [PATCH 1054/1641] upgrade go 1.21.5 (#10732)

* upgrade go 1.21.5

Signed-off-by: James Strong <strong.james.e@gmail.com>

* update golang gha

Signed-off-by: James Strong <strong.james.e@gmail.com>

* supgrade golang lint ci to v1.55.2

* sfix all golang lint ci errors

* sget a nginx build as well

* srevert some e2e changes

* srevert some e2e changes

---------

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/ci.yaml                        | 16 ++++++++--------
 .github/workflows/golangci-lint.yml              |  6 +++---
 .github/workflows/plugin.yaml                    |  4 ++--
 go.mod                                           |  2 +-
 go.work                                          |  2 +-
 go.work.sum                                      |  4 ++++
 images/custom-error-pages/rootfs/Dockerfile      |  2 +-
 images/custom-error-pages/rootfs/go.mod          |  2 +-
 .../ext-auth-example-authsvc/rootfs/Dockerfile   |  2 +-
 images/ext-auth-example-authsvc/rootfs/go.mod    |  2 +-
 images/fastcgi-helloserver/rootfs/Dockerfile     |  2 +-
 images/go-grpc-greeter-server/rootfs/Dockerfile  |  2 +-
 images/httpbun/rootfs/Dockerfile                 |  2 +-
 images/kube-webhook-certgen/rootfs/Dockerfile    |  2 +-
 images/kube-webhook-certgen/rootfs/go.mod        |  2 +-
 images/nginx/TAG                                 |  2 +-
 images/opentelemetry/rootfs/go.mod               |  2 +-
 images/test-runner/Makefile                      |  4 ++--
 internal/ingress/annotations/annotations_test.go |  1 +
 .../ingress/annotations/parser/validators.go     |  2 ++
 magefiles/go.mod                                 |  2 +-
 test/e2e/annotations/auth.go                     |  1 +
 test/e2e/annotations/grpc.go                     |  1 +
 test/e2e/framework/httpexpect/response.go        |  1 +
 test/e2e/settings/disable_sync_events.go         |  1 +
 test/e2e/settings/enable_real_ip.go              |  1 +
 26 files changed, 41 insertions(+), 29 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 7af11c277..cfb243808 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -73,9 +73,9 @@ jobs:
       
       - name: Set up Go
         id: go
-        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
+        uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
         with:
-          go-version: '1.21.3'
+          go-version: '1.21.5'
           check-latest: true
 
       - name: Run test
@@ -94,9 +94,9 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
+        uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
         with:
-          go-version: '1.21.3'
+          go-version: '1.21.5'
           check-latest: true
 
       - name: Set up QEMU
@@ -158,9 +158,9 @@ jobs:
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: Setup Go
-        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
+        uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
         with:
-          go-version: '1.21.3'
+          go-version: '1.21.5'
           check-latest: true
 
       - name: Install Helm Unit Test Plugin
@@ -508,9 +508,9 @@ jobs:
       - name: Set up Go
         id: go
         if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
+        uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
         with:
-          go-version: '1.21.3'
+          go-version: '1.21.5'
           check-latest: true
 
       - name: kube-webhook-certgen image build
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index d3118d469..9cfb43a96 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -23,12 +23,12 @@ jobs:
       
       - name: Set up Go
         id: go
-        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
+        uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
         with:
-          go-version: '1.21.3'
+          go-version: '1.21.5'
           check-latest: true
       
       - name: golangci-lint
         uses: golangci/golangci-lint-action@3a919529898de77ec3da873e3063ca4b10e7f5cc # v3.7.0
         with:
-          version: v1.53
+          version: v1.55.2
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index ab88454fb..3b1c44b95 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -20,9 +20,9 @@ jobs:
           fetch-depth: 0
 
       - name: Set up Go
-        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
+        uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
         with:
-          go-version: '1.21.3'
+          go-version: '1.21.5'
           check-latest: true
 
       - name: Run GoReleaser
diff --git a/go.mod b/go.mod
index 8988b7461..817432787 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx
 
-go 1.21.3
+go 1.21.5
 
 require (
 	dario.cat/mergo v1.0.0
diff --git a/go.work b/go.work
index 249976119..3dd9bfdee 100644
--- a/go.work
+++ b/go.work
@@ -1,4 +1,4 @@
-go 1.21.3
+go 1.21.5
 
 use (
 	.
diff --git a/go.work.sum b/go.work.sum
index 91bbfc14a..cb2ff1f18 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -197,6 +197,7 @@ github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8/go.mod h1:mC1jAcs
 github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3/go.mod h1:RagcQ7I8IeTMnF8JTXieKnO4Z6JCsikNEzj0DwauVzE=
 github.com/moby/term v0.0.0-20221205130635-1aeaba878587/go.mod h1:8FzsFHVUBGZdbDsJw/ot+X+d5HLUbvklYLJ9uGfcI3Y=
 github.com/mrunalp/fileutils v0.5.0/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
+github.com/mrunalp/fileutils v0.5.1/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
 github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
 github.com/onsi/ginkgo/v2 v2.9.1/go.mod h1:FEcmzVcCHl+4o9bQZVab+4dC9+j+91t2FHSzmGAPfuo=
 github.com/onsi/ginkgo/v2 v2.9.4/go.mod h1:gCQYp2Q+kSoIj7ykSVb9nskRSsR6PUj4AiLywzIhbKM=
@@ -255,6 +256,7 @@ golang.org/x/net v0.12.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA=
 golang.org/x/net v0.13.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA=
 golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
 golang.org/x/net v0.15.0/go.mod h1:idbUs1IY1+zTqbi8yxTbhexhEEk5ur9LInksu6HrEpk=
+golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
 golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE=
 golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI=
@@ -267,11 +269,13 @@ golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.3.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.4.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.10.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.6.0/go.mod h1:m6U89DPEgQRMq3DNkDClhWw02AUbt2daBVO4cn4Hv9U=
 golang.org/x/term v0.12.0/go.mod h1:owVbMEjm3cBLCHdkQu9b1opXd4ETQWc3BhuQGKgXgvU=
diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index 54b2a5cc7..3647788d4 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.21.3-alpine3.18 as builder
+FROM golang:1.21.5-alpine3.18 as builder
 
 RUN apk update \
     && apk upgrade && apk add git
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 50cfc2a19..ce0fffd4a 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.21.3
+go 1.21.5
 
 require github.com/prometheus/client_golang v1.11.1
 
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index 96da802ce..f85698398 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.21.3-alpine3.18 as builder
+FROM golang:1.21.5-alpine3.18 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index e910e360c..3608868b3 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,6 +1,6 @@
 module example.com/authsvc
 
-go 1.21.3
+go 1.21.5
 
 require k8s.io/apimachinery v0.23.1
 
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
index 92a5e8196..38d7f8ce0 100755
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.21.3-alpine3.18 as builder
+FROM golang:1.21.5-alpine3.18 as builder
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
 
diff --git a/images/go-grpc-greeter-server/rootfs/Dockerfile b/images/go-grpc-greeter-server/rootfs/Dockerfile
index 33cb35923..94e4b91ff 100644
--- a/images/go-grpc-greeter-server/rootfs/Dockerfile
+++ b/images/go-grpc-greeter-server/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.21.3-alpine3.18 as build
+FROM golang:1.21.5-alpine3.18 as build
 
 WORKDIR /go/src/greeter-server
 
diff --git a/images/httpbun/rootfs/Dockerfile b/images/httpbun/rootfs/Dockerfile
index c84f17fd1..c4b1e6f9d 100644
--- a/images/httpbun/rootfs/Dockerfile
+++ b/images/httpbun/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.21.3 AS builder
+FROM golang:1.21.5 AS builder
 
 ENV LC_ALL=C.UTF-8
 ENV LANG=C.UTF-8
diff --git a/images/kube-webhook-certgen/rootfs/Dockerfile b/images/kube-webhook-certgen/rootfs/Dockerfile
index 846e37aee..f20a295d3 100644
--- a/images/kube-webhook-certgen/rootfs/Dockerfile
+++ b/images/kube-webhook-certgen/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM --platform=$BUILDPLATFORM golang:1.21.3 as builder
+FROM --platform=$BUILDPLATFORM golang:1.21.5 as builder
 ARG BUILDPLATFORM
 ARG TARGETARCH
 
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index b30fa5f27..893669c7b 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,6 +1,6 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.21.3
+go 1.21.5
 
 require (
 	github.com/onrik/logrus v0.9.0
diff --git a/images/nginx/TAG b/images/nginx/TAG
index 4e379d2bf..6812f8122 100644
--- a/images/nginx/TAG
+++ b/images/nginx/TAG
@@ -1 +1 @@
-0.0.2
+0.0.3
\ No newline at end of file
diff --git a/images/opentelemetry/rootfs/go.mod b/images/opentelemetry/rootfs/go.mod
index 0f48b0988..f34dd98ff 100644
--- a/images/opentelemetry/rootfs/go.mod
+++ b/images/opentelemetry/rootfs/go.mod
@@ -1,3 +1,3 @@
 module init-otel
 
-go 1.21.3
+go 1.21.5
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index b70c57b7b..4cbde89fc 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -43,7 +43,7 @@ image:
 		--pull \
 		--push \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=1.21.3 \
+		--build-arg GOLANG_VERSION=1.21.5 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
@@ -64,7 +64,7 @@ build: ensure-buildx
 		--progress=${PROGRESS} \
 		--pull \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=1.21.3 \
+		--build-arg GOLANG_VERSION=1.21.5 \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
diff --git a/internal/ingress/annotations/annotations_test.go b/internal/ingress/annotations/annotations_test.go
index 5f8128e0d..0f4f8f7d7 100644
--- a/internal/ingress/annotations/annotations_test.go
+++ b/internal/ingress/annotations/annotations_test.go
@@ -125,6 +125,7 @@ func TestSSLPassthrough(t *testing.T) {
 	ec := NewAnnotationExtractor(mockCfg{})
 	ing := buildIngress()
 
+	//nolint:goconst //already a constant
 	fooAnns := []struct {
 		annotations map[string]string
 		er          bool
diff --git a/internal/ingress/annotations/parser/validators.go b/internal/ingress/annotations/parser/validators.go
index f66f3c0bc..9a46bc840 100644
--- a/internal/ingress/annotations/parser/validators.go
+++ b/internal/ingress/annotations/parser/validators.go
@@ -49,6 +49,8 @@ var (
 
 // IsValidRegex checks if the tested string can be used as a regex, but without any weird character.
 // It includes regex characters for paths that may contain regexes
+//
+//nolint:goconst //already a constant
 var IsValidRegex = regexp.MustCompile("^[/" + alphaNumericChars + regexEnabledChars + "]*$")
 
 // SizeRegex validates sizes understood by NGINX, like 1000, 100k, 1000M
diff --git a/magefiles/go.mod b/magefiles/go.mod
index db252f7c3..42e8fade0 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/magefiles
 
-go 1.21.3
+go 1.21.5
 
 require (
 	github.com/blang/semver/v4 v4.0.0
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index 415ffd951..ea33fdf32 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -425,6 +425,7 @@ http {
 			f.EnsureIngress(ing2)
 
 			f.WaitForNginxServer(host, func(server string) bool {
+				//nolint:goconst //server_name is a constant
 				return strings.Contains(server, "server_name "+host)
 			})
 		})
diff --git a/test/e2e/annotations/grpc.go b/test/e2e/annotations/grpc.go
index b256b8ae4..b3be82c2a 100644
--- a/test/e2e/annotations/grpc.go
+++ b/test/e2e/annotations/grpc.go
@@ -103,6 +103,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 				return strings.Contains(server, "grpc_pass grpc://upstream_balancer;")
 			})
 
+		//nolint:goconst //string interpolation
 		conn, err := grpc.Dial(f.GetNginxIP()+":443",
 			grpc.WithTransportCredentials(
 				credentials.NewTLS(&tls.Config{
diff --git a/test/e2e/framework/httpexpect/response.go b/test/e2e/framework/httpexpect/response.go
index 1c7624752..e324e94ff 100644
--- a/test/e2e/framework/httpexpect/response.go
+++ b/test/e2e/framework/httpexpect/response.go
@@ -234,6 +234,7 @@ func (r *HTTPResponse) checkContentType(expectedType string, expectedCharset ...
 	}
 
 	if mediaType != expectedType {
+		//nolint:goconst //string interpolation
 		r.chain.fail("\nexpected \"Content-Type\" header with %q media type,"+
 			"\nbut got %q", expectedType, mediaType)
 		return false
diff --git a/test/e2e/settings/disable_sync_events.go b/test/e2e/settings/disable_sync_events.go
index 033fd9194..0d55c96e4 100644
--- a/test/e2e/settings/disable_sync_events.go
+++ b/test/e2e/settings/disable_sync_events.go
@@ -44,6 +44,7 @@ var _ = framework.IngressNginxDescribe("[Flag] disable-sync-events", func() {
 				return strings.Contains(server, fmt.Sprintf("server_name %v", host))
 			})
 
+		//nolint:goconst //string interpolation
 		events, err := f.KubeClientSet.CoreV1().Events(ing.Namespace).List(context.TODO(), metav1.ListOptions{FieldSelector: "reason=Sync,involvedObject.name=" + host})
 		assert.Nil(ginkgo.GinkgoT(), err, "listing events")
 
diff --git a/test/e2e/settings/enable_real_ip.go b/test/e2e/settings/enable_real_ip.go
index 778011b9f..bf16e1ea0 100644
--- a/test/e2e/settings/enable_real_ip.go
+++ b/test/e2e/settings/enable_real_ip.go
@@ -47,6 +47,7 @@ var _ = framework.DescribeSetting("enable-real-ip", func() {
 
 		f.WaitForNginxServer(host,
 			func(server string) bool {
+				//nolint:goconst //already a const
 				return strings.Contains(server, "server_name "+host) &&
 					!strings.Contains(server, "proxy_set_header X-Forwarded-Proto $full_x_forwarded_proto;")
 			})

From 7e31f818ff5871dcf54b55e656c052d455df6901 Mon Sep 17 00:00:00 2001
From: patst <patrick.steinig@googlemail.com>
Date: Fri, 8 Dec 2023 11:09:34 +0100
Subject: [PATCH 1055/1641] helm: opentelemetry addon allow configuration of
 registry with setting tag (#9773)

* feat: allow configuration of registry, image, tag and digest in single values for opentelemetry addon

* feat: allow configuration of registry, image, tag and digest in single values for opentelemetry addon

* add ci test file

* fix: updated helm-docs with opentelemetry image value

* fix: ci test case

* fix: ci test case set default registry, image + tag

* fix: ci test case set default registry + image

* fix: remove unrequired comment

* feat!: use extraModules helper method for templating the image value

* image definition for OTel image is now split up in image, repo and registry values

* feat!: move distroless config under the image key

* update helm-docs

* Refactor template to generate the image name

* adapt test cases for extraModules

* implement code review

* try to fix ci test for opentelemetry
---
 charts/ingress-nginx/README.md                |  7 ++++--
 .../ci/daemonset-extra-modules.yaml           |  5 ++++-
 ...modules-default-container-sec-context.yaml |  5 ++++-
 ...odules-specific-container-sec-context.yaml |  5 ++++-
 .../ci/deployment-extra-modules.yaml          |  5 ++++-
 ...t-opentelemetry-customregistry-values.yaml |  9 ++++++++
 charts/ingress-nginx/templates/_helpers.tpl   |  4 +++-
 charts/ingress-nginx/values.yaml              | 22 +++++++++++++++----
 8 files changed, 51 insertions(+), 11 deletions(-)
 create mode 100644 charts/ingress-nginx/ci/deployment-opentelemetry-customregistry-values.yaml

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index cafecf976..acf1be7bf 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -387,9 +387,12 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.opentelemetry.containerSecurityContext.runAsNonRoot | bool | `true` |  |
 | controller.opentelemetry.containerSecurityContext.runAsUser | int | `65532` | The image's default user, inherited from its base image `cgr.dev/chainguard/static`. |
 | controller.opentelemetry.containerSecurityContext.seccompProfile.type | string | `"RuntimeDefault"` |  |
-| controller.opentelemetry.distroless | bool | `true` |  |
 | controller.opentelemetry.enabled | bool | `false` |  |
-| controller.opentelemetry.image | string | `"registry.k8s.io/ingress-nginx/opentelemetry:v20230721-3e2062ee5@sha256:13bee3f5223883d3ca62fee7309ad02d22ec00ff0d7033e3e9aca7a9f60fd472"` |  |
+| controller.opentelemetry.image.digest | string | `"sha256:13bee3f5223883d3ca62fee7309ad02d22ec00ff0d7033e3e9aca7a9f60fd472"` |  |
+| controller.opentelemetry.image.distroless | bool | `true` |  |
+| controller.opentelemetry.image.image | string | `"ingress-nginx/opentelemetry"` |  |
+| controller.opentelemetry.image.registry | string | `"registry.k8s.io"` |  |
+| controller.opentelemetry.image.tag | string | `"v20230721-3e2062ee5"` |  |
 | controller.opentelemetry.name | string | `"opentelemetry"` |  |
 | controller.opentelemetry.resources | object | `{}` |  |
 | controller.podAnnotations | object | `{}` | Annotations to be added to controller pods # |
diff --git a/charts/ingress-nginx/ci/daemonset-extra-modules.yaml b/charts/ingress-nginx/ci/daemonset-extra-modules.yaml
index f299dbf1c..52a32fcbd 100644
--- a/charts/ingress-nginx/ci/daemonset-extra-modules.yaml
+++ b/charts/ingress-nginx/ci/daemonset-extra-modules.yaml
@@ -7,4 +7,7 @@ controller:
     type: ClusterIP
   extraModules:
     - name: opentelemetry
-      image: busybox
+      image:
+        registry: registry.k8s.io
+        image: busybox
+        tag: latest
diff --git a/charts/ingress-nginx/ci/deployment-extra-modules-default-container-sec-context.yaml b/charts/ingress-nginx/ci/deployment-extra-modules-default-container-sec-context.yaml
index 2310c344e..91b1b98a8 100644
--- a/charts/ingress-nginx/ci/deployment-extra-modules-default-container-sec-context.yaml
+++ b/charts/ingress-nginx/ci/deployment-extra-modules-default-container-sec-context.yaml
@@ -9,4 +9,7 @@ controller:
     allowPrivilegeEscalation: false
   extraModules:
     - name: opentelemetry
-      image: busybox
+      image:
+        registry: registry.k8s.io
+        image: busybox
+        tag: latest
diff --git a/charts/ingress-nginx/ci/deployment-extra-modules-specific-container-sec-context.yaml b/charts/ingress-nginx/ci/deployment-extra-modules-specific-container-sec-context.yaml
index bd2f011cc..b6013c7d0 100644
--- a/charts/ingress-nginx/ci/deployment-extra-modules-specific-container-sec-context.yaml
+++ b/charts/ingress-nginx/ci/deployment-extra-modules-specific-container-sec-context.yaml
@@ -7,6 +7,9 @@ controller:
     type: ClusterIP
   extraModules:
     - name: opentelemetry
-      image: busybox
+      image:
+        registry: registry.k8s.io
+        image: busybox
+        tag: latest
       containerSecurityContext:
         allowPrivilegeEscalation: false
diff --git a/charts/ingress-nginx/ci/deployment-extra-modules.yaml b/charts/ingress-nginx/ci/deployment-extra-modules.yaml
index ec5923548..2fbe1cc01 100644
--- a/charts/ingress-nginx/ci/deployment-extra-modules.yaml
+++ b/charts/ingress-nginx/ci/deployment-extra-modules.yaml
@@ -7,4 +7,7 @@ controller:
     type: ClusterIP
   extraModules:
     - name: opentelemetry
-      image: busybox
+      image:
+        registry: registry.k8s.io
+        image: busybox
+        tag: latest
diff --git a/charts/ingress-nginx/ci/deployment-opentelemetry-customregistry-values.yaml b/charts/ingress-nginx/ci/deployment-opentelemetry-customregistry-values.yaml
new file mode 100644
index 000000000..fb3ef4446
--- /dev/null
+++ b/charts/ingress-nginx/ci/deployment-opentelemetry-customregistry-values.yaml
@@ -0,0 +1,9 @@
+controller:
+  image:
+    repository: ingress-controller/controller
+    tag: 1.0.0-dev
+    digest: null
+  service:
+    type: ClusterIP
+  opentelemetry:
+    enabled: true
diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index c936dab79..db1ab2e24 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -257,7 +257,8 @@ Extra modules.
 */}}
 {{- define "extraModules" -}}
 - name: {{ .name }}
-  image: {{ .image }}
+  {{- with .image }}
+  image: {{ if .repository }}{{ .repository }}{{ else }}{{ .registry }}/{{ .image }}{{ end }}:{{ .tag }}{{ if .digest }}@{{ .digest }}{{ end }}
   command:
   {{- if .distroless }}
     - /init_module
@@ -266,6 +267,7 @@ Extra modules.
     - -c
     - /usr/local/bin/init_module.sh
   {{- end }}
+  {{- end }}
   {{- if .containerSecurityContext }}
   securityContext: {{ toYaml .containerSecurityContext | nindent 4 }}
   {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index a06eca14c..a21eb0ba3 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -682,8 +682,15 @@ controller:
   # -- Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module
   extraModules: []
   # - name: mytestmodule
-  #   image: registry.k8s.io/ingress-nginx/mytestmodule
-  #   distroless: false
+  #   image:
+  #     registry: registry.k8s.io
+  #     image: ingress-nginx/mytestmodule
+  #     ## for backwards compatibility consider setting the full image url via the repository value below
+  #     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+  #     ## repository:
+  #     tag: "v1.0.0"
+  #     digest: ""
+  #     distroless: false
   #   containerSecurityContext:
   #     runAsNonRoot: true
   #     runAsUser: <user-id>
@@ -703,8 +710,15 @@ controller:
   opentelemetry:
     enabled: false
     name: opentelemetry
-    image: registry.k8s.io/ingress-nginx/opentelemetry:v20230721-3e2062ee5@sha256:13bee3f5223883d3ca62fee7309ad02d22ec00ff0d7033e3e9aca7a9f60fd472
-    distroless: true
+    image:
+      registry: registry.k8s.io
+      image: ingress-nginx/opentelemetry
+      ## for backwards compatibility consider setting the full image url via the repository value below
+      ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
+      ## repository:
+      tag: "v20230721-3e2062ee5"
+      digest: sha256:13bee3f5223883d3ca62fee7309ad02d22ec00ff0d7033e3e9aca7a9f60fd472
+      distroless: true
     containerSecurityContext:
       runAsNonRoot: true
       # -- The image's default user, inherited from its base image `cgr.dev/chainguard/static`.

From c211e75065d9bd301658e7cc83f4e7012fb89aa8 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 8 Dec 2023 14:15:22 -0500
Subject: [PATCH 1056/1641] upgrade alpine to 3.19.0

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/cfssl/rootfs/Dockerfile         | 2 +-
 images/nginx/rootfs/Dockerfile         | 4 ++--
 images/opentelemetry/rootfs/Dockerfile | 2 +-
 rootfs/Dockerfile-chroot               | 2 +-
 test/e2e-image/Dockerfile              | 2 +-
 5 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index f5fceb6e0..569756d79 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.18.5
+FROM alpine:3.19.0
 
 
 RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 5df4efac0..024c0e873 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.18.5 as builder
+FROM alpine:3.19.0 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.18.5
+FROM alpine:3.19.0
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index 4f6a927f6..0ca57ed5d 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.18.5 as base
+FROM alpine:3.19.0 as base
 
 RUN mkdir -p /opt/third_party/install
 COPY . /opt/third_party/
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index 634de7c04..a210aa7bf 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.18.5
+FROM alpine:3.19.0
 
 ARG TARGETARCH
 ARG VERSION
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 81b4b4d16..222156f13 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,7 +1,7 @@
 ARG E2E_BASE_IMAGE
 FROM ${E2E_BASE_IMAGE} AS BASE
 
-FROM alpine:3.18.5
+FROM alpine:3.19.0
 
 RUN apk update \
 	&& apk upgrade && apk add -U --no-cache \

From 5d82d183500a3c0a5cd1ffbfcd396328c616dde9 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 8 Dec 2023 14:37:20 -0500
Subject: [PATCH 1057/1641] missed some

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 build/run-in-docker.sh                            | 2 +-
 images/custom-error-pages/rootfs/Dockerfile       | 2 +-
 images/ext-auth-example-authsvc/rootfs/Dockerfile | 2 +-
 images/fastcgi-helloserver/rootfs/Dockerfile      | 2 +-
 images/go-grpc-greeter-server/rootfs/Dockerfile   | 2 +-
 images/test-runner/Makefile                       | 4 ++--
 images/test-runner/rootfs/Dockerfile              | 2 +-
 test/e2e/run-chart-test.sh                        | 2 +-
 test/e2e/run-kind-e2e.sh                          | 2 +-
 9 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index bec825291..7ae9e2a12 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -87,7 +87,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.13.0
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.13.1
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index 3647788d4..d6009e634 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.21.5-alpine3.18 as builder
+FROM golang:1.21.5-alpine:3.19 as builder
 
 RUN apk update \
     && apk upgrade && apk add git
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index f85698398..880987f82 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.21.5-alpine3.18 as builder
+FROM golang:1.21.5-alpine:3.19 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
index 38d7f8ce0..31b32bd6d 100755
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.21.5-alpine3.18 as builder
+FROM golang:1.21.5-alpine:3.19 as builder
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
 
diff --git a/images/go-grpc-greeter-server/rootfs/Dockerfile b/images/go-grpc-greeter-server/rootfs/Dockerfile
index 94e4b91ff..6ee689958 100644
--- a/images/go-grpc-greeter-server/rootfs/Dockerfile
+++ b/images/go-grpc-greeter-server/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.21.5-alpine3.18 as build
+FROM golang:1.21.5-alpine:3.19 as build
 
 WORKDIR /go/src/greeter-server
 
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 4cbde89fc..d6b974ba9 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -54,7 +54,7 @@ image:
 		--build-arg YAML_LINT_VERSION=1.27.1 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.11.2 \
-		--build-arg GINKGO_VERSION=2.13.0 \
+		--build-arg GINKGO_VERSION=2.13.1 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -75,7 +75,7 @@ build: ensure-buildx
 		--build-arg YAML_LINT_VERSION=1.27.1 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.11.2 \
-		--build-arg GINKGO_VERSION=2.13.0 \
+		--build-arg GINKGO_VERSION=2.13.1 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 161b6caf4..de0d3a15f 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -15,7 +15,7 @@ ARG BASE_IMAGE
 ARG GOLANG_VERSION
 ARG ETCD_VERSION
 
-FROM golang:${GOLANG_VERSION}-alpine3.18 as GO
+FROM golang:${GOLANG_VERSION}-alpine:3.19 as GO
 FROM registry.k8s.io/etcd:${ETCD_VERSION} as etcd
 
 FROM ${BASE_IMAGE}
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 425d043e9..cdcf729f5 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.13.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.13.1
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index 5c4ba5c1e..d213ac4b7 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -96,7 +96,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.13.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.13.1
   fi
 
   echo "[dev-env] .. done building controller images"

From f555a5659a592dcd5e4e88523631b9ad642e2163 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 8 Dec 2023 14:41:23 -0500
Subject: [PATCH 1058/1641] smore missing builds

---
 images/custom-error-pages/rootfs/Dockerfile       | 2 +-
 images/ext-auth-example-authsvc/rootfs/Dockerfile | 2 +-
 images/fastcgi-helloserver/rootfs/Dockerfile      | 2 +-
 images/go-grpc-greeter-server/rootfs/Dockerfile   | 2 +-
 images/test-runner/rootfs/Dockerfile              | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index d6009e634..1d22dbb4c 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.21.5-alpine:3.19 as builder
+FROM golang:1.21.5-alpine3.19 as builder
 
 RUN apk update \
     && apk upgrade && apk add git
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index 880987f82..b2ca6fb22 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.21.5-alpine:3.19 as builder
+FROM golang:1.21.5-alpine3.19 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
index 31b32bd6d..8077cc900 100755
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.21.5-alpine:3.19 as builder
+FROM golang:1.21.5-alpine3.19 as builder
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
 
diff --git a/images/go-grpc-greeter-server/rootfs/Dockerfile b/images/go-grpc-greeter-server/rootfs/Dockerfile
index 6ee689958..0c4c9c71c 100644
--- a/images/go-grpc-greeter-server/rootfs/Dockerfile
+++ b/images/go-grpc-greeter-server/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.21.5-alpine:3.19 as build
+FROM golang:1.21.5-alpine3.19 as build
 
 WORKDIR /go/src/greeter-server
 
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index de0d3a15f..161b6caf4 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -15,7 +15,7 @@ ARG BASE_IMAGE
 ARG GOLANG_VERSION
 ARG ETCD_VERSION
 
-FROM golang:${GOLANG_VERSION}-alpine:3.19 as GO
+FROM golang:${GOLANG_VERSION}-alpine3.18 as GO
 FROM registry.k8s.io/etcd:${ETCD_VERSION} as etcd
 
 FROM ${BASE_IMAGE}

From 208ea484a813ae51780cae327229f36b8b362419 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 8 Dec 2023 14:43:21 -0500
Subject: [PATCH 1059/1641] revert golang 1.21.5 and alpine 3.19 not available
 yet

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/custom-error-pages/rootfs/Dockerfile       | 2 +-
 images/ext-auth-example-authsvc/rootfs/Dockerfile | 2 +-
 images/fastcgi-helloserver/rootfs/Dockerfile      | 2 +-
 images/go-grpc-greeter-server/rootfs/Dockerfile   | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index 1d22dbb4c..3647788d4 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.21.5-alpine3.19 as builder
+FROM golang:1.21.5-alpine3.18 as builder
 
 RUN apk update \
     && apk upgrade && apk add git
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index b2ca6fb22..f85698398 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.21.5-alpine3.19 as builder
+FROM golang:1.21.5-alpine3.18 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
index 8077cc900..38d7f8ce0 100755
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.21.5-alpine3.19 as builder
+FROM golang:1.21.5-alpine3.18 as builder
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
 
diff --git a/images/go-grpc-greeter-server/rootfs/Dockerfile b/images/go-grpc-greeter-server/rootfs/Dockerfile
index 0c4c9c71c..94e4b91ff 100644
--- a/images/go-grpc-greeter-server/rootfs/Dockerfile
+++ b/images/go-grpc-greeter-server/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-FROM golang:1.21.5-alpine3.19 as build
+FROM golang:1.21.5-alpine3.18 as build
 
 WORKDIR /go/src/greeter-server
 

From 7c998b5937826b880aab7a56d5081fffcc29e191 Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Fri, 8 Dec 2023 23:15:02 +0100
Subject: [PATCH 1060/1641] otel distroless (#10741)

---
 images/opentelemetry/rootfs/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index 0ca57ed5d..8c8cb1783 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -54,7 +54,7 @@ COPY . .
 RUN go mod download
 RUN CGO_ENABLED=0 go build -o /go/bin/init_module
 
-FROM cgr.dev/chainguard/static as final
+FROM gcr.io/distroless/static-debian11 as final
 COPY --from=build-init /go/bin/init_module /
 COPY --from=nginx /etc/nginx/modules /etc/nginx/modules
 

From 14d8be4c0aee7d50f184d64fab785007cf74d842 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Claus=20Pr=C3=BCfer?= <pruefer@webcodex.de>
Date: Sat, 9 Dec 2023 20:31:01 +0100
Subject: [PATCH 1061/1641] Update Documentation for Client-Cert Authentication
 misleading #10687 (#10705)

* Update README.md

Update / restructure "Client Cert Authentication" Documentation sub-section

* Update README.md

* Update README.md

* Update README.md

* Update README.md

Add openssl subjectAltName and remark for future releases.

* Update README.md

Moved subjectAltName to new topic "Remarks", i think it is not annotation / ingress related

* Update README.md

Typo
---
 docs/examples/auth/client-certs/README.md | 126 ++++++++++++++++------
 1 file changed, 92 insertions(+), 34 deletions(-)

diff --git a/docs/examples/auth/client-certs/README.md b/docs/examples/auth/client-certs/README.md
index 94cf6c697..7aed26395 100644
--- a/docs/examples/auth/client-certs/README.md
+++ b/docs/examples/auth/client-certs/README.md
@@ -2,59 +2,117 @@
 
 It is possible to enable Client-Certificate Authentication by adding additional annotations to your Ingress Resource.
 
-Before getting started you must have the following Certificates configured:
+## 1. Prerequisites / Certificates
 
-1. CA certificate and Key (Intermediate Certs need to be in CA)
-2. Server Certificate (Signed by CA) and Key (CN should be equal the hostname you will use)
-3. Client Certificate (Signed by CA) and Key
+- Certificate Authority (CA) Certificate ```ca-cert.pem```
+- Server Certificate (Signed by CA) and Key ```server-cert.pem``` and ```server-key.pem```
+- Client Certificate (Signed by CA), Key and CA Certificate for following client side authentication (See Sub-Section 4 - Test)
 
-For more details on the generation process, checkout the Prerequisite [docs](../../PREREQUISITES.md#client-certificate-authentication).
+:memo: If Intermediate CA-Certificates (Official CA, non-self-signed) used, they all need to be concatenated (CA authority chain) in one CA file.
 
-You can have as many certificates as you want. If they're in the binary DER format, you can convert them as the following:
+The following commands let you generate self-signed Certificates and Keys for testing-purpose.
+
+- Generate the CA Key and Certificate:
+
+```bash
+openssl req -x509 -sha256 -newkey rsa:4096 -keyout ca-key.der -out ca-cert.der -days 356 -nodes -subj '/CN=My Cert Authority'
+```
+
+- Generate the Server Key, and Certificate and Sign with the CA Certificate:
+
+```bash
+openssl req -new -newkey rsa:4096 -keyout server-key.der -out server.csr -nodes -subj '/CN=mydomain.com'
+openssl x509 -req -sha256 -days 365 -in server.csr -CA ca-cert.der -CAkey ca-key.der -set_serial 01 -out server-cert.der
+```
+
+:memo: The CN (Common Name) x.509 attribute for the server Certificate ***must*** match the dns hostname referenced in ingress definition, see example below.
+
+- Generate the Client Key, and Certificate and Sign with the CA Certificate:
+
+```bash
+openssl req -new -newkey rsa:4096 -keyout client-key.der -out client.csr -nodes -subj '/CN=My Client'
+openssl x509 -req -sha256 -days 365 -in client.csr -CA ca-cert.der -CAkey ca-key.der -set_serial 02 -out client-cert.der
+```
+
+## 2. Import Certificates / Keys to Kubernetes Secret-Backend
+
+- Convert all files specified in 1) from .der (binary format) to .pem (base64 encoded):
 
 ```bash
 openssl x509 -in certificate.der -inform der -out certificate.crt -outform pem
 ```
 
-Then, you can concatenate them all into one file, named 'ca.crt' with the following:
+:exclamation: Kubernetes Web-Services import relies on .pem Base64-encoded format.
+
+:zap: There is no need to import the CA Private Key, the Private Key is used only to sign new Client Certificates by the CA.
+
+- Import the CA Certificate as Kubernetes sub-type ```generic/ca.crt```
 
 ```bash
-cat certificate1.crt certificate2.crt certificate3.crt >> ca.crt
+kubectl create secret generic ca-secret --from-file=ca.crt=./ca-cert.pem
 ```
 
-**Note:** Make sure that the Key Size is greater than 1024 and Hashing Algorithm (Digest) is something better than md5
-for each certificate generated. Otherwise you will receive an error.
+- Import the Server Certificate and Key as Kubernetes sub-type ```tls``` for transport layer
 
-## Creating Certificate Secrets
+```bash
+kubectl create secret tls tls-secret --cert ./server-cert.pem --key ./server-key.pem
+```
 
-There are many different ways of configuring your secrets to enable Client-Certificate
-Authentication to work properly.
+- Optional import CA-cert, Server-cert and Server-Key for TLS and Client-Auth
 
-*   You can create a secret containing just the CA certificate and another
-    Secret containing the Server Certificate which is Signed by the CA.
+```bash
+kubectl create secret generic tls-and-auth --from-file=tls.crt=./server-crt.pem --from-file=tls.key=./server-key.pem --from-file=ca.crt=./ca-cert.pem
+```
 
-    ```bash
-    kubectl create secret generic ca-secret --from-file=ca.crt=ca.crt
-    kubectl create secret generic tls-secret --from-file=tls.crt=server.crt --from-file=tls.key=server.key
-    ```
+- Optional import a CRL (Certificate Revocation List)
 
-*   You can create a secret containing CA certificate along with the Server
-    Certificate that can be used for both TLS and Client Auth.
+```bash
+kubectl create secret generic ca-secret --from-file=ca.crt=./ca-cert.pem --from-file=ca.crl=./ca-crl.pem
+```
 
-    ```bash
-    kubectl create secret generic ca-secret --from-file=tls.crt=server.crt --from-file=tls.key=server.key --from-file=ca.crt=ca.crt
-    ```
+## 3. Annotations / Ingress-Reference
 
-*  If you want to also enable Certificate Revocation List verification you can
-   create the secret also containing the CRL file in PEM format:
-   ```bash
-   kubectl create secret generic ca-secret --from-file=ca.crt=ca.crt --from-file=ca.crl=ca.crl
-   ```
+Now we are able to reference the created secrets in the ingress definition.
 
-Note: The CA Certificate must contain the trusted certificate authority chain to verify client certificates.
+:memo: The CA Certificate "authentication" will be reference in annotations.
 
-## Setup Instructions
+| Annotation                                                                | Description                | Remark             |
+|---------------------------------------------------------------------------|----------------------------|--------------------|
+| nginx.ingress.kubernetes.io/auth-tls-verify-client: "on"                  | Activate Client-Auth       | If "on", verify client Certificate |
+| nginx.ingress.kubernetes.io/auth-tls-secret: "namespace/ca-secret"        | CA "secret" reference      | Secret namespace and service / ingress namespace must match |
+| nginx.ingress.kubernetes.io/auth-tls-verify-depth: "1"                    | CA "chain" depth           | How many CA levels should be processed |
+| nginx.ingress.kubernetes.io/auth-tls-pass-certificate-to-upstream: "true" | Pass Cert / Header         | Pass Certificate to Web-App for e.g. parsing Client E-Mail Address x.509 Property |
+
+:memo: The Server Certificate for transport layer will be referenced in tls .yaml subsection.
+
+```yaml
+tls:
+  - hosts:
+    - mydomain.com
+    secretName: tls-secret
+```
+
+## 4. Example / Test
+
+The working .yaml Example: [ingress.yaml](ingress.yaml)
+
+- Test by performing a curl / wget against the Ingress Path without the Client Cert and expect a Status Code 400 (Bad Request - No required SSL certificate was sent).
+- Test by performing a curl / wget against the Ingress Path with the Client Cert and expect a Status Code 200.
+
+```bash
+wget \
+--ca-cert=ca-cert.pem \
+--certificate=client-cert.pem \
+--private-key=client-key.pem \
+https://mydomain.com
+```
+
+## 5. Remarks
+
+| :exclamation: In future releases, CN verification seems to be "replaced" by SAN (Subject Alternate Name) for verrification, so do not forget to add |
+|-----------------------------------------------------------------------------------------------------------------------------------------------------|
+
+```bash
+openssl req -addext "subjectAltName = DNS:mydomain.com" ...
+```
 
-1. Add the annotations as provided in the [ingress.yaml](ingress.yaml) example to your own ingress resources as required.
-2. Test by performing a curl against the Ingress Path without the Client Cert and expect a Status Code 400.
-3. Test by performing a curl against the Ingress Path with the Client Cert and expect a Status Code 200.

From 737c75d4f76204f60160110b57cac28f2a82a2ba Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 Dec 2023 12:30:43 +0100
Subject: [PATCH 1062/1641] Bump aquasecurity/trivy-action from 0.14.0 to
 0.16.0 (#10746)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.14.0 to 0.16.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/2b6a709cf9c4025c5438138008beaddbb02086f0...91713af97dc80187565512baba96e4364e983601)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 226586030..5e17f65b7 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@2b6a709cf9c4025c5438138008beaddbb02086f0 # v0.14.0
+        uses: aquasecurity/trivy-action@91713af97dc80187565512baba96e4364e983601 # v0.16.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'

From 759ac63a86537a4ed64a4ddbfd49c8d75d18dd5e Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 11 Dec 2023 21:16:59 -0500
Subject: [PATCH 1063/1641] supdate images from golang upgrade (#10750)

---
 NGINX_BASE                                                      | 2 +-
 build/run-in-docker.sh                                          | 2 +-
 .../custom-errors/custom-default-backend.helm.values.yaml       | 2 +-
 .../customization/custom-errors/custom-default-backend.yaml     | 2 +-
 test/e2e-image/Makefile                                         | 2 +-
 test/e2e/settings/ocsp/ocsp.go                                  | 2 +-
 6 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index 8c12b0f65..058a89bb1 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:v20231129-9439e6c71@sha256:ca1349074a0d087d8fca347ea4c04fa12c0275f53f72d6f65118307285efc8ca
\ No newline at end of file
+registry.k8s.io/ingress-nginx/nginx:v20231208-4c39e6acc@sha256:03508408458d00ba4e219d2693ba2a039ba66d4151ab9b43794f61877e0abb73
\ No newline at end of file
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 7ae9e2a12..2e1256fb2 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20231011-8b53cabe0@sha256:ed0dad805c635e66469b4ac376010eebdd0b3fe62d753f58db1632d6f12f451d}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20231208-4c39e6acc@sha256:0607184ca9c53c9c24a47b6f52347dd96137b05c6f276efa67051929a39e8f7a}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
index 708a93831..865857dea 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
@@ -6,7 +6,7 @@ defaultBackend:
   image:
     registry: registry.k8s.io
     image: ingress-nginx/nginx-errors
-    tag: "v20230505@sha256:3600dcd1bbd0d05959bb01af4b272714e94d22d24a64e91838e7183c80e53f7f"
+    tag: "v20231208-4c39e6acc@sha256:c2ca20775f41c0c89906dc74a31239d94ac48e84e7c6164affed41fe669cdaa5"
   extraVolumes:
   - name: custom-error-pages
     configMap:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.yaml b/docs/examples/customization/custom-errors/custom-default-backend.yaml
index e606c5b62..993f91f5b 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.yaml
@@ -36,7 +36,7 @@ spec:
     spec:
       containers:
       - name: nginx-error-server
-        image: registry.k8s.io/ingress-nginx/nginx-errors:v20230505@sha256:3600dcd1bbd0d05959bb01af4b272714e94d22d24a64e91838e7183c80e53f7f
+        image: registry.k8s.io/ingress-nginx/nginx-errors:v20231208-4c39e6acc@sha256:c2ca20775f41c0c89906dc74a31239d94ac48e84e7c6164affed41fe669cdaa5
         ports:
         - containerPort: 8080
         # Setting the environment variable DEBUG we can see the headers sent 
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index ff5aa8fb6..ed6c6d52d 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20231011-8b53cabe0@sha256:ed0dad805c635e66469b4ac376010eebdd0b3fe62d753f58db1632d6f12f451d"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20231208-4c39e6acc@sha256:0607184ca9c53c9c24a47b6f52347dd96137b05c6f276efa67051929a39e8f7a"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index 4d419c5d0..f6f106b06 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -292,7 +292,7 @@ func ocspserveDeployment(namespace string) (*appsv1.Deployment, *corev1.Service)
 						Containers: []corev1.Container{
 							{
 								Name:  name,
-								Image: "registry.k8s.io/ingress-nginx/e2e-test-cfssl@sha256:adaa118c179c41cb33fb567004a1f0c71b8fce6bc13263efa63d42dddd5b4346",
+								Image: "registry.k8s.io/ingress-nginx/e2e-test-cfssl@sha256:48869cf72b0ceb1d8c82029f85961e423daf3ff8a04f4a455150000f90a90606",
 								Command: []string{
 									"/bin/bash",
 									"-c",

From 97d4a83e75ff6ff41243edb5fededbc251aa56b5 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 13 Dec 2023 09:29:06 +0100
Subject: [PATCH 1064/1641] Deployment/DaemonSet: Remove `distroless` from
 `extraModules` templating. (#10742)

---
 charts/ingress-nginx/templates/controller-daemonset.yaml  | 4 ++--
 charts/ingress-nginx/templates/controller-deployment.yaml | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index e6e28c872..718e20c52 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -183,13 +183,13 @@ spec:
       {{- if .Values.controller.extraModules }}
         {{- range .Values.controller.extraModules }}
           {{- $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" .name "image" .image "distroless" .distroless "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
+          {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
         {{- end }}
       {{- end }}
       {{- if .Values.controller.opentelemetry.enabled }}
         {{- with .Values.controller.opentelemetry }}
           {{- $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" .name "image" .image "distroless" .distroless "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
+          {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
         {{- end }}
       {{- end }}
     {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index cd59c7979..5ff45585b 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -186,13 +186,13 @@ spec:
       {{- if .Values.controller.extraModules }}
         {{- range .Values.controller.extraModules }}
           {{- $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" .name "image" .image "distroless" .distroless "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
+          {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
         {{- end }}
       {{- end }}
       {{- if .Values.controller.opentelemetry.enabled }}
         {{- with .Values.controller.opentelemetry }}
           {{- $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" .name "image" .image "distroless" .distroless "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
+          {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
         {{- end }}
       {{- end }}
     {{- end }}

From 6ff70f015dd8b12d5e96adc6ef3c16e1c9060944 Mon Sep 17 00:00:00 2001
From: Cheng Pan <pan3793@gmail.com>
Date: Wed, 13 Dec 2023 16:54:59 +0800
Subject: [PATCH 1065/1641] Docs: Keep title in navbar in upcase (#10755)

---
 mkdocs.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/mkdocs.yml b/mkdocs.yml
index 7f10a1d53..cbc2988ce 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -78,7 +78,7 @@ nav:
       - Role Based Access Control (RBAC): "deploy/rbac.md"
       - Upgrade: "deploy/upgrade.md"
       - Hardening guide: "deploy/hardening-guide.md"
-  - User guide:
+  - User Guide:
       - NGINX Configuration:
           - Introduction: "user-guide/nginx-configuration/index.md"
           - Basic usage: "user-guide/basic-usage.md"

From be7f508c73cefc030ea37937902c32baf1eec914 Mon Sep 17 00:00:00 2001
From: Stavros Foteinopoulos <stafot@gmail.com>
Date: Thu, 14 Dec 2023 17:17:09 +0200
Subject: [PATCH 1066/1641] Add more unit tests to helm chart (#10731)

* Add more unit tests to helm chart

Signed-off-by: Stavros Foteinopoulos <stafot@gmail.com>

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Use upstream helm-unittest repository

Signed-off-by: Stavros Foteinopoulos <stafot@gmail.com>

* Remove non existing value from controller unittest

Signed-off-by: Stavros Foteinopoulos <stafot@gmail.com>

* fix unit test

Signed-off-by: Stavros Foteinopoulos <stafot@gmail.com>

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

---------

Signed-off-by: Stavros Foteinopoulos <stafot@gmail.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 .github/workflows/ci.yaml                     |  2 +-
 .../controller-configmap-addheaders_test.yaml | 27 +++++++++++++++
 ...ontroller-configmap-proxyheaders_test.yaml | 27 +++++++++++++++
 .../tests/controller-configmap_test.yaml      | 14 ++++++++
 .../tests/controller-daemonset_test.yaml      | 16 +++++++++
 .../tests/controller-deployment_test.yaml     | 34 +++++++++++++++++++
 .../tests/controller-hpa_test.yaml            | 17 ++++++++++
 .../tests/controller-keda_test.yaml           | 17 ++++++++++
 .../tests/controller-networkpolicy_test.yaml  | 23 +++++++++++++
 .../controller-service-internal_test.yaml     | 25 ++++++++++++++
 .../controller-service-metrics_test.yaml      | 23 +++++++++++++
 .../tests/controller-service_test.yaml        | 32 +++++++++++++++++
 .../tests/default-backend-service_test.yaml   | 32 +++++++++++++++++
 13 files changed, 288 insertions(+), 1 deletion(-)
 create mode 100644 charts/ingress-nginx/tests/controller-configmap-addheaders_test.yaml
 create mode 100644 charts/ingress-nginx/tests/controller-configmap-proxyheaders_test.yaml
 create mode 100644 charts/ingress-nginx/tests/controller-configmap_test.yaml
 create mode 100644 charts/ingress-nginx/tests/controller-daemonset_test.yaml
 create mode 100644 charts/ingress-nginx/tests/controller-deployment_test.yaml
 create mode 100644 charts/ingress-nginx/tests/controller-hpa_test.yaml
 create mode 100644 charts/ingress-nginx/tests/controller-keda_test.yaml
 create mode 100644 charts/ingress-nginx/tests/controller-networkpolicy_test.yaml
 create mode 100644 charts/ingress-nginx/tests/controller-service-internal_test.yaml
 create mode 100644 charts/ingress-nginx/tests/controller-service-metrics_test.yaml
 create mode 100644 charts/ingress-nginx/tests/controller-service_test.yaml
 create mode 100644 charts/ingress-nginx/tests/default-backend-service_test.yaml

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index cfb243808..3c9559b08 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -165,7 +165,7 @@ jobs:
 
       - name: Install Helm Unit Test Plugin
         run: |
-          helm plugin install https://github.com/quintush/helm-unittest
+          helm plugin install https://github.com/helm-unittest/helm-unittest
 
       - name: Run Helm Unit Tests
         run: |
diff --git a/charts/ingress-nginx/tests/controller-configmap-addheaders_test.yaml b/charts/ingress-nginx/tests/controller-configmap-addheaders_test.yaml
new file mode 100644
index 000000000..e831d50c0
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-configmap-addheaders_test.yaml
@@ -0,0 +1,27 @@
+suite: Controller > ConfigMap > Add Headers
+templates:
+  - controller-configmap-addheaders.yaml
+
+tests:
+  - it: should not create a ConfigMap if `controller.addHeaders` is not set
+    set:
+      controller.addHeaders: null
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a ConfigMap if `controller.addHeaders` is set
+    set:
+      controller.addHeaders:
+        X-Another-Custom-Header: Value
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ConfigMap
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-custom-add-headers
+      - equal:
+          path: data.X-Another-Custom-Header
+          value: Value
diff --git a/charts/ingress-nginx/tests/controller-configmap-proxyheaders_test.yaml b/charts/ingress-nginx/tests/controller-configmap-proxyheaders_test.yaml
new file mode 100644
index 000000000..0634a3739
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-configmap-proxyheaders_test.yaml
@@ -0,0 +1,27 @@
+suite: Controller > ConfigMap > Proxy Headers
+templates:
+  - controller-configmap-proxyheaders.yaml
+
+tests:
+  - it: should not create a ConfigMap if `controller.proxySetHeaders` is not set
+    set:
+      controller.proxySetHeaders: null
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a ConfigMap if `controller.proxySetHeaders` is set
+    set:
+      controller.proxySetHeaders:
+        X-Custom-Header: Value
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ConfigMap
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-custom-proxy-headers
+      - equal:
+          path: data.X-Custom-Header
+          value: Value
diff --git a/charts/ingress-nginx/tests/controller-configmap_test.yaml b/charts/ingress-nginx/tests/controller-configmap_test.yaml
new file mode 100644
index 000000000..038760338
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-configmap_test.yaml
@@ -0,0 +1,14 @@
+suite: Controller > ConfigMap
+templates:
+  - controller-configmap.yaml
+
+tests:
+  - it: should create a ConfigMap
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ConfigMap
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller
diff --git a/charts/ingress-nginx/tests/controller-daemonset_test.yaml b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
new file mode 100644
index 000000000..2e85848b6
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
@@ -0,0 +1,16 @@
+suite: Controller > DaemonSet
+templates:
+  - controller-daemonset.yaml
+
+tests:
+  - it: should create a DaemonSet if `controller.kind` is "DaemonSet"
+    set:
+      controller.kind: DaemonSet
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: DaemonSet
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller
diff --git a/charts/ingress-nginx/tests/controller-deployment_test.yaml b/charts/ingress-nginx/tests/controller-deployment_test.yaml
new file mode 100644
index 000000000..01844612e
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-deployment_test.yaml
@@ -0,0 +1,34 @@
+suite: Controller > Deployment
+templates:
+  - controller-deployment.yaml
+
+tests:
+  - it: should create a Deployment
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: Deployment
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller
+
+  - it: should create a Deployment with 3 replicas if `controller.replicaCount` is 3
+    set:
+      controller.replicaCount: 3
+    asserts:
+      - equal:
+          path: spec.replicas
+          value: 3
+
+  - it: should create a Deployment with resource limits if `controller.resources.limits` is set
+    set:
+      controller.resources.limits.cpu: 500m
+      controller.resources.limits.memory: 512Mi
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].resources.limits.cpu
+          value: 500m
+      - equal:
+          path: spec.template.spec.containers[0].resources.limits.memory
+          value: 512Mi
diff --git a/charts/ingress-nginx/tests/controller-hpa_test.yaml b/charts/ingress-nginx/tests/controller-hpa_test.yaml
new file mode 100644
index 000000000..7cd668509
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-hpa_test.yaml
@@ -0,0 +1,17 @@
+suite: Controller > HPA
+templates:
+  - controller-hpa.yaml
+
+tests:
+  - it: should create a HPA if `controller.kind` is "Deployment" and `controller.autoscaling.enabled` is true
+    set:
+      controller.kind: Deployment
+      controller.autoscaling.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: HorizontalPodAutoscaler
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller
diff --git a/charts/ingress-nginx/tests/controller-keda_test.yaml b/charts/ingress-nginx/tests/controller-keda_test.yaml
new file mode 100644
index 000000000..e6ca8dbfe
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-keda_test.yaml
@@ -0,0 +1,17 @@
+suite: Controller > KEDA
+templates:
+  - controller-keda.yaml
+
+tests:
+  - it: should create a ScaledObject if `controller.kind` is "Deployment" and `controller.keda.enabled` is true
+    set:
+      controller.kind: Deployment
+      controller.keda.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ScaledObject
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller
diff --git a/charts/ingress-nginx/tests/controller-networkpolicy_test.yaml b/charts/ingress-nginx/tests/controller-networkpolicy_test.yaml
new file mode 100644
index 000000000..5de12e9c4
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-networkpolicy_test.yaml
@@ -0,0 +1,23 @@
+suite: Controller > NetworkPolicy
+templates:
+  - controller-networkpolicy.yaml
+
+tests:
+  - it: should not create a NetworkPolicy if `controller.networkPolicy.enabled` is false
+    set:
+      controller.networkPolicy.enabled: false
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a NetworkPolicy if `controller.networkPolicy.enabled` is true
+    set:
+      controller.networkPolicy.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: NetworkPolicy
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller
diff --git a/charts/ingress-nginx/tests/controller-service-internal_test.yaml b/charts/ingress-nginx/tests/controller-service-internal_test.yaml
new file mode 100644
index 000000000..5465e1a2b
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-service-internal_test.yaml
@@ -0,0 +1,25 @@
+suite: Controller > Service > Internal
+templates:
+  - controller-service-internal.yaml
+
+tests:
+  - it: should not create an internal Service if `controller.service.internal.enabled` is false
+    set:
+      controller.service.internal.enabled: false
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create an internal Service if `controller.service.internal.enabled` is true and `controller.service.internal.annotations` are set
+    set:
+      controller.service.internal.enabled: true
+      controller.service.internal.annotations:
+        test.annotation: "true"
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: Service
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller-internal
diff --git a/charts/ingress-nginx/tests/controller-service-metrics_test.yaml b/charts/ingress-nginx/tests/controller-service-metrics_test.yaml
new file mode 100644
index 000000000..afdb94046
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-service-metrics_test.yaml
@@ -0,0 +1,23 @@
+suite: Controller > Service > Metrics
+templates:
+  - controller-service-metrics.yaml
+
+tests:
+  - it: should not create a metrics Service if `controller.metrics.enabled` is false
+    set:
+      controller.metrics.enabled: false
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a metrics Service if `controller.metrics.enabled` is true
+    set:
+      controller.metrics.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: Service
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller-metrics
diff --git a/charts/ingress-nginx/tests/controller-service_test.yaml b/charts/ingress-nginx/tests/controller-service_test.yaml
new file mode 100644
index 000000000..2810d4679
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-service_test.yaml
@@ -0,0 +1,32 @@
+suite: Controller > Service
+templates:
+  - controller-service.yaml
+
+tests:
+  - it: should not create a Service if `controller.service.external.enabled` is false
+    set:
+      controller.service.external.enabled: false
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a Service if `controller.service.external.enabled` is true
+    set:
+      controller.service.external.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: Service
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller
+
+  - it: should create a Service of type "NodePort" if `controller.service.external.enabled` is true and `controller.service.type` is "NodePort"
+    set:
+      controller.service.enabled: true
+      controller.service.type: NodePort
+    asserts:
+      - equal:
+          path: spec.type
+          value: NodePort
diff --git a/charts/ingress-nginx/tests/default-backend-service_test.yaml b/charts/ingress-nginx/tests/default-backend-service_test.yaml
new file mode 100644
index 000000000..f16904f9f
--- /dev/null
+++ b/charts/ingress-nginx/tests/default-backend-service_test.yaml
@@ -0,0 +1,32 @@
+suite: Default Backend > Service
+templates:
+  - default-backend-service.yaml
+
+tests:
+  - it: should not create a Service if `defaultBackend.enabled` is false
+    set:
+      defaultBackend.enabled: false
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a Service if `defaultBackend.enabled` is true
+    set:
+      defaultBackend.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: Service
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-defaultbackend
+
+  - it: should create a Service with port 80 if `defaultBackend.service.port` is 80
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.service.port: 80
+    asserts:
+      - equal:
+          path: spec.ports[0].port
+          value: 80

From 648cb8bb0a3934312250435cb31f9cc9a10956ea Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 15 Dec 2023 01:13:34 +0100
Subject: [PATCH 1067/1641] CI: Replace `chart-testing` image by
 `e2e-test-runner`. (#10761)

---
 hack/verify-chart-lint.sh  | 4 +---
 test/e2e/run-chart-test.sh | 5 ++---
 2 files changed, 3 insertions(+), 6 deletions(-)

diff --git a/hack/verify-chart-lint.sh b/hack/verify-chart-lint.sh
index 9ece681e0..1c661ae2b 100755
--- a/hack/verify-chart-lint.sh
+++ b/hack/verify-chart-lint.sh
@@ -19,6 +19,4 @@ set -o nounset
 set -o pipefail
 
 KUBE_ROOT="$( cd "$(dirname "$0")../" >/dev/null 2>&1 ; pwd -P )"
-# TODO: This is a temporary workaround while we don't update Helm Chart test
-curl https://raw.githubusercontent.com/helm/chart-testing/v3.8.0/etc/chart_schema.yaml -o /tmp/chart_schema.yaml
-ct lint --charts ${KUBE_ROOT}/charts/ingress-nginx --validate-maintainers=false --chart-yaml-schema=/tmp/chart_schema.yaml
+ct lint --charts ${KUBE_ROOT}/charts/ingress-nginx --validate-maintainers=false
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index cdcf729f5..eedb2bef5 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -104,13 +104,12 @@ if [ "${SKIP_CERT_MANAGER_CREATION:-false}" = "false" ]; then
 fi
 
 echo "[dev-env] running helm chart e2e tests..."
-# Uses a custom chart-testing image to avoid timeouts waiting for namespace deletion.
-# The changes can be found here: https://github.com/aledbf/chart-testing/commit/41fe0ae0733d0c9a538099fb3cec522e888e3d82
 docker run --rm --interactive --network host \
     --name ct \
     --volume $KUBECONFIG:/root/.kube/config \
     --volume "${DIR}/../../":/workdir \
     --workdir /workdir \
-    aledbf/chart-testing:v3.3.1-next ct install \
+    registry.k8s.io/ingress-nginx/e2e-test-runner:v20231208-4c39e6acc@sha256:0607184ca9c53c9c24a47b6f52347dd96137b05c6f276efa67051929a39e8f7a \
+        ct install \
         --charts charts/ingress-nginx \
         --helm-extra-args "--timeout 60s"

From 6c876bba9ad90414c3ace6473c1ad0912db5d0d5 Mon Sep 17 00:00:00 2001
From: AhmedGrati <48932084+AhmedGrati@users.noreply.github.com>
Date: Fri, 15 Dec 2023 14:25:39 +0100
Subject: [PATCH 1068/1641] fix: disable cluster wide controller role
 permissions (#10659)

Signed-off-by: AhmedGrati <ahmedgrati1999@gmail.com>
---
 charts/ingress-nginx/templates/controller-role.yaml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/charts/ingress-nginx/templates/controller-role.yaml b/charts/ingress-nginx/templates/controller-role.yaml
index f6217a29a..a94b39978 100644
--- a/charts/ingress-nginx/templates/controller-role.yaml
+++ b/charts/ingress-nginx/templates/controller-role.yaml
@@ -44,12 +44,15 @@ rules:
       - get
       - list
       - watch
+  # Omit Ingress status permissions if `--update-status` is disabled.
+  {{- if ne (index .Values.controller.extraArgs "update-status") "false" }}
   - apiGroups:
       - networking.k8s.io
     resources:
       - ingresses/status
     verbs:
       - update
+  {{- end }}
   - apiGroups:
       - networking.k8s.io
     resources:

From e2856809a5fed79777c764fc8778f80aac65751f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 19 Dec 2023 08:43:58 +0100
Subject: [PATCH 1069/1641] Bump golang.org/x/crypto from 0.16.0 to 0.17.0
 (#10775)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.16.0 to 0.17.0.
- [Commits](https://github.com/golang/crypto/compare/v0.16.0...v0.17.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 817432787..524d4760b 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.4
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.16.0
+	golang.org/x/crypto v0.17.0
 	google.golang.org/grpc v1.59.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
diff --git a/go.sum b/go.sum
index 2a615836b..bd5c6a656 100644
--- a/go.sum
+++ b/go.sum
@@ -399,8 +399,8 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.16.0 h1:mMMrFzRSCF0GvB7Ne27XVtVAaXLrPmgPC7/v0tkwHaY=
-golang.org/x/crypto v0.16.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq4=
+golang.org/x/crypto v0.17.0 h1:r8bRNjWL3GshPW3gkd+RpvzWrZAwPS49OmTGZ/uhM4k=
+golang.org/x/crypto v0.17.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq4=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=

From 2f7f4d70eb29e71ff28c6465f213cf6893137d24 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 3 Dec 2023 20:31:01 +0100
Subject: [PATCH 1070/1641] Chart: Improve #10673.

---
 .../default-backend-extra-configmaps.yaml     | 10 +++----
 .../tests/controller-service_test.yaml        |  2 +-
 ...default-backend-extra-configmaps_test.yaml | 17 +++++------
 charts/ingress-nginx/values.yaml              | 28 +++++++++----------
 4 files changed, 29 insertions(+), 28 deletions(-)

diff --git a/charts/ingress-nginx/templates/default-backend-extra-configmaps.yaml b/charts/ingress-nginx/templates/default-backend-extra-configmaps.yaml
index 88b59280b..9af56cf38 100644
--- a/charts/ingress-nginx/templates/default-backend-extra-configmaps.yaml
+++ b/charts/ingress-nginx/templates/default-backend-extra-configmaps.yaml
@@ -1,23 +1,23 @@
 {{- if .Values.defaultBackend.enabled }}
-  {{- range .Values.defaultBackend.extraConfigMaps }}
+{{- range .Values.defaultBackend.extraConfigMaps }}
 ---
 apiVersion: v1
 kind: ConfigMap
 metadata:
-  name: {{ .name }}
-  namespace: {{ include "ingress-nginx.namespace" $ | quote }}
   labels:
     {{- include "ingress-nginx.labels" $ | nindent 4 }}
+    app.kubernetes.io/component: default-backend
     {{- with $.Values.defaultBackend.labels }}
     {{- toYaml . | nindent 4 }}
     {{- end }}
     {{- with .labels }}
     {{- toYaml . | nindent 4 }}
     {{- end }}
+  name: {{ .name }}
+  namespace: {{ include "ingress-nginx.namespace" $ }}
 data:
   {{- with .data }}
   {{- toYaml . | nindent 2 }}
   {{- end }}
-  {{- end }}
 {{- end }}
-
+{{- end }}
diff --git a/charts/ingress-nginx/tests/controller-service_test.yaml b/charts/ingress-nginx/tests/controller-service_test.yaml
index 2810d4679..10574f227 100644
--- a/charts/ingress-nginx/tests/controller-service_test.yaml
+++ b/charts/ingress-nginx/tests/controller-service_test.yaml
@@ -24,7 +24,7 @@ tests:
 
   - it: should create a Service of type "NodePort" if `controller.service.external.enabled` is true and `controller.service.type` is "NodePort"
     set:
-      controller.service.enabled: true
+      controller.service.external.enabled: true
       controller.service.type: NodePort
     asserts:
       - equal:
diff --git a/charts/ingress-nginx/tests/default-backend-extra-configmaps_test.yaml b/charts/ingress-nginx/tests/default-backend-extra-configmaps_test.yaml
index b18ceedfa..aa600e749 100644
--- a/charts/ingress-nginx/tests/default-backend-extra-configmaps_test.yaml
+++ b/charts/ingress-nginx/tests/default-backend-extra-configmaps_test.yaml
@@ -1,19 +1,18 @@
-suite: test default backend extra ConfigMaps
+suite: Default Backend > Extra ConfigMaps
 templates:
   - default-backend-extra-configmaps.yaml
 
 tests:
-  - it: should not create any ConfigMap by default
+  - it: should not create a ConfigMap if `defaultBackend.extraConfigMaps` is empty
     set:
-      Release.Namespace: default
       defaultBackend.enabled: true
+      defaultBackend.extraConfigMaps: []
     asserts:
       - hasDocuments:
           count: 0
 
-  - it: should create one ConfigMap
+  - it: should create one ConfigMap if `defaultBackend.extraConfigMaps` has one element
     set:
-      Release.Namespace: default
       defaultBackend.enabled: true
       defaultBackend.extraConfigMaps:
         - name: my-configmap-1
@@ -27,10 +26,12 @@ tests:
       - equal:
           path: metadata.name
           value: my-configmap-1
+      - equal:
+          path: data.key1
+          value: value1
 
-  - it: should correctly render multiple ConfigMaps
+  - it: should create two ConfigMaps if `defaultBackend.extraConfigMaps` has two elements
     set:
-      Release.Namespace: nginx
       defaultBackend.enabled: true
       defaultBackend.extraConfigMaps:
         - name: my-configmap-1
@@ -46,4 +47,4 @@ tests:
           of: ConfigMap
       - matchRegex:
           path: metadata.name
-          pattern: "my-configmap-\\d+"
+          pattern: my-configmap-(1|2)
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index a21eb0ba3..a73bdca15 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -1040,21 +1040,21 @@ defaultBackend:
   ## Additional volumes to the default backend pod.
   #  - name: copy-portal-skins
   #    emptyDir: {}
+
   extraConfigMaps: []
-    ## Additional configmaps to the default backend pod.
-    # Example ConfigMap, uncomment and configure as needed
-    # - name: my-extra-configmap-1
-    #   labels:
-    #     type: config-1
-    #   data:
-    #     extra_file_1.html: |
-    #       <!-- Extra HTML content for ConfigMap 1 -->
-    # - name: my-extra-configmap-2
-    #   labels:
-    #     type: config-2
-    #   data:
-    #     extra_file_2.html: |
-    #       <!-- Extra HTML content for ConfigMap 2 -->
+  ## Additional configmaps to the default backend pod.
+  #  - name: my-extra-configmap-1
+  #    labels:
+  #      type: config-1
+  #    data:
+  #      extra_file_1.html: |
+  #        <!-- Extra HTML content for ConfigMap 1 -->
+  #  - name: my-extra-configmap-2
+  #    labels:
+  #      type: config-2
+  #    data:
+  #      extra_file_2.html: |
+  #        <!-- Extra HTML content for ConfigMap 2 -->
 
   autoscaling:
     annotations: {}

From 78e63770b0f54d2bcce05163a7cc9d57130df2a9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 20 Dec 2023 16:52:26 +0100
Subject: [PATCH 1071/1641] Bump golang.org/x/crypto from 0.14.0 to 0.17.0 in
 /magefiles (#10774)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0.
- [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 magefiles/go.mod |  2 +-
 magefiles/go.sum | 12 ++++++------
 2 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/magefiles/go.mod b/magefiles/go.mod
index 42e8fade0..9409fed0d 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/onsi/gomega v1.27.10 // indirect
 	github.com/rogpeppe/go-internal v1.11.0 // indirect
 	github.com/stretchr/testify v1.8.4 // indirect
-	golang.org/x/crypto v0.14.0 // indirect
+	golang.org/x/crypto v0.17.0 // indirect
 	golang.org/x/net v0.17.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/protobuf v1.31.0 // indirect
diff --git a/magefiles/go.sum b/magefiles/go.sum
index ddb7475da..f9b01b2ef 100644
--- a/magefiles/go.sum
+++ b/magefiles/go.sum
@@ -88,8 +88,8 @@ github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9dec
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.14.0 h1:wBqGXzWJW6m1XrIKlAH0Hs1JJ7+9KBwnIO8v66Q9cHc=
-golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4=
+golang.org/x/crypto v0.17.0 h1:r8bRNjWL3GshPW3gkd+RpvzWrZAwPS49OmTGZ/uhM4k=
+golang.org/x/crypto v0.17.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq4=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
@@ -113,13 +113,13 @@ golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210112080510-489259a85091/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.13.0 h1:Af8nKPmuFypiUBjVoU9V20FiaFXOcuZI21p0ycVYYGE=
-golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.15.0 h1:h48lPFYpsTvQJZF4EKyI4aLHaev3CxivZmv7yZig9pc=
+golang.org/x/sys v0.15.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.13.0 h1:ablQoSUd0tRdKxZewP80B+BaqeKJuVhuRxj/dkrun3k=
-golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
+golang.org/x/text v0.14.0 h1:ScX5w1eTa3QqT8oi6+ziP7dTV1S2+ALU0bI+0zXKWiQ=
+golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=

From fdebb388691371d0db0f7564b2f4c24141b78d8c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 20 Dec 2023 16:55:26 +0100
Subject: [PATCH 1072/1641] Bump actions/stale from 8.0.0 to 9.0.0 (#10747)

Bumps [actions/stale](https://github.com/actions/stale) from 8.0.0 to 9.0.0.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/stale/compare/1160a2240286f5da8ec72b1c0816ce2481aabf84...28ca1036281a5e5922ead5184a1bbf96e5fc984e)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/stale.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/stale.yaml b/.github/workflows/stale.yaml
index b038f522b..a7c245295 100644
--- a/.github/workflows/stale.yaml
+++ b/.github/workflows/stale.yaml
@@ -13,7 +13,7 @@ jobs:
       pull-requests: write
 
     steps:
-      - uses: actions/stale@1160a2240286f5da8ec72b1c0816ce2481aabf84 # v8.0.0
+      - uses: actions/stale@28ca1036281a5e5922ead5184a1bbf96e5fc984e # v9.0.0
         with:
           stale-issue-message: "This is stale, but we won't close it automatically, just bare in mind the maintainers may be busy with other tasks and will reach your issue ASAP. If you have any question or request to prioritize this, please reach `#ingress-nginx-dev` on Kubernetes Slack."
           stale-pr-message: "This is stale, but we won't close it automatically, just bare in mind the maintainers may be busy with other tasks and will reach your issue ASAP. If you have any question or request to prioritize this, please reach `#ingress-nginx-dev` on Kubernetes Slack."

From 7e7c213b92671ca96bfeeac3d571d689be395ba3 Mon Sep 17 00:00:00 2001
From: Jongwoo Han <jongwooo.han@gmail.com>
Date: Thu, 21 Dec 2023 00:58:12 +0900
Subject: [PATCH 1073/1641] Fix minor typos in bug_report.md (#10767)

Signed-off-by: Jongwoo Han <jongwooo.han@gmail.com>
---
 .github/ISSUE_TEMPLATE/bug_report.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/ISSUE_TEMPLATE/bug_report.md b/.github/ISSUE_TEMPLATE/bug_report.md
index 469e00834..e15a2cd2b 100644
--- a/.github/ISSUE_TEMPLATE/bug_report.md
+++ b/.github/ISSUE_TEMPLATE/bug_report.md
@@ -60,7 +60,7 @@ kubectl exec -it $POD_NAME -n $POD_NAMESPACE -- /nginx-ingress-controller --vers
 
 - **How was the ingress-nginx-controller installed**:
   - If helm was used then please show output of `helm ls -A | grep -i ingress`
-  - If helm was used then please show output of `helm -n <ingresscontrollernamepspace> get values <helmreleasename>`
+  - If helm was used then please show output of `helm -n <ingresscontrollernamespace> get values <helmreleasename>`
   - If helm was not used, then copy/paste the complete precise command used to install the controller, along with the flags and options used
   - if you have more than one instance of the ingress-nginx-controller installed in the same cluster, please provide details for all the instances
 
@@ -71,7 +71,7 @@ kubectl exec -it $POD_NAME -n $POD_NAMESPACE -- /nginx-ingress-controller --vers
   - `kubectl -n <ingresscontrollernamespace> describe svc <ingresscontrollerservicename>`
 
 - **Current state of ingress object, if applicable**:
-  - `kubectl -n <appnnamespace> get all,ing -o wide`
+  - `kubectl -n <appnamespace> get all,ing -o wide`
   - `kubectl -n <appnamespace> describe ing <ingressname>`
   - If applicable, then, your complete and exact curl/grpcurl command (redacted if required) and the reponse to the curl/grpcurl command with the -v flag
 

From ae53d0c81a4befd0ac27ebc8add3963f80747dd2 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 20 Dec 2023 17:01:12 +0100
Subject: [PATCH 1074/1641] Bump github/codeql-action from 2 to 3 (#10770)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2 to 3.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Commits](https://github.com/github/codeql-action/compare/v2...v3)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 3c9559b08..f14d9ff72 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -403,7 +403,7 @@ jobs:
           output: 'trivy-results.sarif'
       - name: Upload Trivy scan results to GitHub Security tab
         if: ${{ steps.filter-images.outputs.nginx-base == 'true' && always() }}
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'trivy-results.sarif'
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index ac99dc449..b031cf2d5 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@896079047b4bb059ba6f150a5d87d47dde99e6e5 # v2.1.37
+        uses: github/codeql-action/upload-sarif@03e7845b7bfcd5e7fb63d1ae8c61b0e791134fab # v2.1.37
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 5e17f65b7..4ef96d4fa 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@896079047b4bb059ba6f150a5d87d47dde99e6e5 # v2.1.37
+        uses: github/codeql-action/upload-sarif@03e7845b7bfcd5e7fb63d1ae8c61b0e791134fab # v2.1.37
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From b3682ee52fa7fd4e0e1270aa6381941ca50607f3 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 20 Dec 2023 17:03:54 +0100
Subject: [PATCH 1075/1641] Bump google.golang.org/grpc from 1.59.0 to 1.60.1
 (#10777)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.59.0 to 1.60.1.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.59.0...v1.60.1)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 27 +++++++++++++++++++--------
 2 files changed, 23 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index 524d4760b..0868653cf 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.17.0
-	google.golang.org/grpc v1.59.0
+	google.golang.org/grpc v1.60.1
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -103,14 +103,14 @@ require (
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.13.0 // indirect
 	golang.org/x/net v0.17.0 // indirect
-	golang.org/x/oauth2 v0.12.0 // indirect
+	golang.org/x/oauth2 v0.13.0 // indirect
 	golang.org/x/sys v0.15.0 // indirect
 	golang.org/x/term v0.15.0 // indirect
 	golang.org/x/text v0.14.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.14.0 // indirect
-	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20230822172742-b8732ec3820d // indirect
+	google.golang.org/appengine v1.6.8 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20231002182017-d307bd883b97 // indirect
 	google.golang.org/protobuf v1.31.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index bd5c6a656..bb59dc862 100644
--- a/go.sum
+++ b/go.sum
@@ -376,6 +376,7 @@ github.com/yuin/goldmark v1.1.25/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9de
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.1.32/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
+github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
 github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30 h1:rzHvkiukOVYcf840FqAsHqBMhfLofvQIxWtczkGRklU=
 github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30/go.mod h1:/Hzu8ych2oXCs1iNI+MeASyFzWTncQ6nlu/wgqbqC2A=
 go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
@@ -399,6 +400,7 @@ golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.17.0 h1:r8bRNjWL3GshPW3gkd+RpvzWrZAwPS49OmTGZ/uhM4k=
 golang.org/x/crypto v0.17.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq4=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
@@ -431,6 +433,7 @@ golang.org/x/mod v0.1.1-0.20191105210325-c90efee705ee/go.mod h1:QqPTAvyqsEbceGzB
 golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
 golang.org/x/mod v0.13.0 h1:I/DsJXRlw/8l/0c24sM9yb0T4z9liZTduXvdAWYiysY=
 golang.org/x/mod v0.13.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -466,6 +469,7 @@ golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81R
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
 golang.org/x/net v0.17.0 h1:pVaXccu2ozPjCXewfr1S7xza/zcXTity9cCdXQYSjIM=
 golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
@@ -474,8 +478,8 @@ golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4Iltr
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.12.0 h1:smVPGxink+n1ZI5pkQa8y6fZT0RW0MgCO5bFpepy4B4=
-golang.org/x/oauth2 v0.12.0/go.mod h1:A74bZ3aGXgCY0qaIC9Ahg6Lglin4AMAco8cIv9baba4=
+golang.org/x/oauth2 v0.13.0 h1:jDDenyj+WgFtmV3zYVoi8aE2BwtXFLWOA67ZfNWftiY=
+golang.org/x/oauth2 v0.13.0/go.mod h1:/JMhi4ZRXAf4HG9LiNmxvk+45+96RUlVThiH8FzNBn0=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -486,6 +490,7 @@ golang.org/x/sync v0.0.0-20200317015054-43a5402ce75a/go.mod h1:RxMgew5VJxzue5/jJ
 golang.org/x/sync v0.0.0-20200625203802-6e8e738ad208/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201207232520-09787c993a3a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
@@ -530,11 +535,14 @@ golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.15.0 h1:h48lPFYpsTvQJZF4EKyI4aLHaev3CxivZmv7yZig9pc=
 golang.org/x/sys v0.15.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
+golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.15.0 h1:y/Oo/a/q3IXu26lQgl04j/gjuBDOBlx7X6Om1j2CPW4=
 golang.org/x/term v0.15.0/go.mod h1:BDl952bC7+uMoWR75FIrCDx79TPU9oHkTZ9yRbYOrX0=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -543,6 +551,8 @@ golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
+golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
 golang.org/x/text v0.14.0 h1:ScX5w1eTa3QqT8oi6+ziP7dTV1S2+ALU0bI+0zXKWiQ=
 golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
@@ -594,6 +604,7 @@ golang.org/x/tools v0.0.0-20200804011535-6c149bb5ef0d/go.mod h1:njjCfa9FT2d7l9Bc
 golang.org/x/tools v0.0.0-20200825202427-b303f430e36d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
 golang.org/x/tools v0.14.0 h1:jvNa2pY0M4r62jkRQ6RwEZZyPcymeL9XZMLBbV7U2nc=
 golang.org/x/tools v0.14.0/go.mod h1:uYBEerGOWcJyEORxN+Ek8+TT266gXkNlHdJBwexUsBg=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
@@ -624,8 +635,8 @@ google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7
 google.golang.org/appengine v1.6.1/go.mod h1:i06prIuMbXzDqacNJfV5OdTW448YApPu5ww/cMBSeb0=
 google.golang.org/appengine v1.6.5/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
 google.golang.org/appengine v1.6.6/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
-google.golang.org/appengine v1.6.7 h1:FZR1q0exgwxzPzp/aF+VccGrSfxfPpkBqjIIEq3ru6c=
-google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
+google.golang.org/appengine v1.6.8 h1:IhEN5q69dyKagZPYMSdIjS2HqprW324FRQZJcGqPAsM=
+google.golang.org/appengine v1.6.8/go.mod h1:1jJ3jBArFh5pcgW8gCtRJnepW8FzD1V44FJffLiz/Ds=
 google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc=
 google.golang.org/genproto v0.0.0-20190307195333-5fe7a883aa19/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190418145605-e7d98fc518a7/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
@@ -656,8 +667,8 @@ google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6D
 google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20230822172742-b8732ec3820d h1:uvYuEyMHKNt+lT4K3bN6fGswmK8qSvcreM3BwjDh+y4=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20230822172742-b8732ec3820d/go.mod h1:+Bk1OCOj40wS2hwAMA+aCW9ypzm63QTBBHp6lQ3p+9M=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20231002182017-d307bd883b97 h1:6GQBEOdGkX6MMTLT9V+TjtIRZCw9VPD5Z+yHY9wMgS0=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20231002182017-d307bd883b97/go.mod h1:v7nGkzlmW8P3n/bKmWBn2WpBjpOEx8Q6gMueudAmKfY=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -670,8 +681,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.59.0 h1:Z5Iec2pjwb+LEOqzpB2MR12/eKFhDPhuqW91O+4bwUk=
-google.golang.org/grpc v1.59.0/go.mod h1:aUPDwccQo6OTjy7Hct4AfBPD1GptF4fyUjIkQ9YtF98=
+google.golang.org/grpc v1.60.1 h1:26+wFr+cNqSGFcOXcabYC0lUVJVRa2Sb2ortSK7VrEU=
+google.golang.org/grpc v1.60.1/go.mod h1:OlCHIeLYqSSsLi6i49B5QGdzaMZK9+M7LXN2FKz4eGM=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From 0e5681d2c1d4c2694829a0dbf1dbe894f22d227e Mon Sep 17 00:00:00 2001
From: Jongwoo Han <jongwooo.han@gmail.com>
Date: Thu, 21 Dec 2023 01:06:41 +0900
Subject: [PATCH 1076/1641] Correct typo from 'gingko' to 'ginkgo' (#10780)

Signed-off-by: Jongwoo Han <jongwooo.han@gmail.com>
---
 ginkgo_upgrade.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ginkgo_upgrade.md b/ginkgo_upgrade.md
index 1ed996cd1..57db0f28f 100644
--- a/ginkgo_upgrade.md
+++ b/ginkgo_upgrade.md
@@ -11,7 +11,7 @@
 
 ### a. Make changes to appropriate files in required directories
 
-- Make changes in files where gingko version is hardcoded. These files are :
+- Make changes in files where ginkgo version is hardcoded. These files are :
     - [run-in-docker.sh ](build/run-in-docker.sh)
     - [Dockerfile ](images/test-runner/rootfs/Dockerfile)
     - [run.sh ](test/e2e/run.sh)

From f019bf2420fc5d0633af0b873da7c5338fc28301 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 20 Dec 2023 18:40:30 +0100
Subject: [PATCH 1077/1641] release plugin on controller release (#10787)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/plugin.yaml | 7 ++-----
 1 file changed, 2 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 3b1c44b95..b322e69ff 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -1,11 +1,8 @@
 name: kubectl plugin
 
 on:
-  push:
-    branches:
-      - "main"
-    tags:
-      - 'v*.*.*\+plugin'
+  release:
+    types: [published]
 
 permissions:
   contents: write # for goreleaser/goreleaser-action

From 0e12525bdd74e9145e861aafcd3ce6fead59b94b Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 20 Dec 2023 19:30:28 +0100
Subject: [PATCH 1078/1641] Chart: Revert verion `4.8.4`.

---
 charts/ingress-nginx/Chart.yaml | 2 +-
 charts/ingress-nginx/README.md  | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index b664a6714..30ca8afaa 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -19,4 +19,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.8.4
+version: 4.8.3
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index acf1be7bf..900b67bc8 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.8.4](https://img.shields.io/badge/Version-4.8.4-informational?style=flat-square) ![AppVersion: 1.9.4](https://img.shields.io/badge/AppVersion-1.9.4-informational?style=flat-square)
+![Version: 4.8.3](https://img.shields.io/badge/Version-4.8.3-informational?style=flat-square) ![AppVersion: 1.9.4](https://img.shields.io/badge/AppVersion-1.9.4-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 

From 707a5a0bea93b241632cb5146ef74e30c35487c9 Mon Sep 17 00:00:00 2001
From: Joshua Sleeper <joshsleeper@users.noreply.github.com>
Date: Wed, 20 Dec 2023 12:50:46 -0800
Subject: [PATCH 1079/1641] fix(labels): use complete labels variable on
 default-backend deployment (#10317)

---
 charts/ingress-nginx/templates/default-backend-deployment.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/templates/default-backend-deployment.yaml b/charts/ingress-nginx/templates/default-backend-deployment.yaml
index 66c307563..d342c8c35 100644
--- a/charts/ingress-nginx/templates/default-backend-deployment.yaml
+++ b/charts/ingress-nginx/templates/default-backend-deployment.yaml
@@ -30,7 +30,7 @@ spec:
       annotations: {{ toYaml .Values.defaultBackend.podAnnotations | nindent 8 }}
     {{- end }}
       labels:
-        {{- include "ingress-nginx.selectorLabels" . | nindent 8 }}
+        {{- include "ingress-nginx.labels" . | nindent 8 }}
         app.kubernetes.io/component: default-backend
         {{- with .Values.defaultBackend.labels }}
         {{- toYaml . | nindent 8 }}

From 9db2eb965e9030f865f56afcd8ab2f4e36c59e36 Mon Sep 17 00:00:00 2001
From: Mathieu Parent <math.parent@gmail.com>
Date: Wed, 20 Dec 2023 23:08:50 +0100
Subject: [PATCH 1080/1641] Add controller.metrics.serviceMonitor.annotations
 in Helm chart (#9677)

Signed-off-by: Mathieu Parent <math.parent@gmail.com>
---
 charts/ingress-nginx/README.md                                | 1 +
 charts/ingress-nginx/templates/controller-servicemonitor.yaml | 3 +++
 charts/ingress-nginx/values.yaml                              | 1 +
 3 files changed, 5 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 900b67bc8..e63b143b8 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -369,6 +369,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.metrics.service.servicePort | int | `10254` |  |
 | controller.metrics.service.type | string | `"ClusterIP"` |  |
 | controller.metrics.serviceMonitor.additionalLabels | object | `{}` |  |
+| controller.metrics.serviceMonitor.annotations | object | `{}` |  |
 | controller.metrics.serviceMonitor.enabled | bool | `false` |  |
 | controller.metrics.serviceMonitor.metricRelabelings | list | `[]` |  |
 | controller.metrics.serviceMonitor.namespace | string | `""` |  |
diff --git a/charts/ingress-nginx/templates/controller-servicemonitor.yaml b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
index 585fd0cb7..62301da45 100644
--- a/charts/ingress-nginx/templates/controller-servicemonitor.yaml
+++ b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
@@ -14,6 +14,9 @@ metadata:
   {{- if .Values.controller.metrics.serviceMonitor.additionalLabels }}
     {{- toYaml .Values.controller.metrics.serviceMonitor.additionalLabels | nindent 4 }}
   {{- end }}
+  {{- if .Values.controller.metrics.serviceMonitor.annotations }}
+  annotations: {{ toYaml .Values.controller.metrics.serviceMonitor.annotations | nindent 4 }}
+  {{- end }}
 spec:
   endpoints:
     - port: {{ .Values.controller.metrics.portName }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index a73bdca15..0ae2a1e7e 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -867,6 +867,7 @@ controller:
     serviceMonitor:
       enabled: false
       additionalLabels: {}
+      annotations: {}
       ## The label to use to retrieve the job name from.
       ## jobLabel: "app.kubernetes.io/name"
       namespace: ""

From 0e47bfbfecd6651f3f744092a6288acd53326d21 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 21 Dec 2023 10:42:28 +0100
Subject: [PATCH 1081/1641] release 1.9.5 docs

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 README.md                                     |  19 +--
 changelog/controller-1.9.5.md                 |  37 +++++
 charts/ingress-nginx/Chart.yaml               |  10 +-
 charts/ingress-nginx/README.md                |   8 +-
 .../changelog/helm-chart-4.9.0.md             |  13 ++
 charts/ingress-nginx/values.yaml              |  65 +++-----
 deploy/static/provider/aws/deploy.yaml        |  97 +++++-------
 .../aws/nlb-with-tls-termination/deploy.yaml  |  97 +++++-------
 deploy/static/provider/baremetal/deploy.yaml  |  97 +++++-------
 deploy/static/provider/cloud/deploy.yaml      |  97 +++++-------
 deploy/static/provider/do/deploy.yaml         |  97 +++++-------
 deploy/static/provider/exoscale/deploy.yaml   |  97 +++++-------
 deploy/static/provider/kind/deploy.yaml       |  97 +++++-------
 deploy/static/provider/oracle/deploy.yaml     |  97 +++++-------
 deploy/static/provider/scw/deploy.yaml        |  97 +++++-------
 docs/e2e-tests.md                             |  42 ++---
 go.work.sum                                   | 148 ------------------
 17 files changed, 497 insertions(+), 718 deletions(-)
 create mode 100644 changelog/controller-1.9.5.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.9.0.md

diff --git a/README.md b/README.md
index 29ad2929d..047b6ce80 100644
--- a/README.md
+++ b/README.md
@@ -38,15 +38,16 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 
 |  Supported  | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
 |:--:|-----------------------|------------------------------|----------------|---------------|------------------------------|
-| 🔄 | **v1.9.4**            | 1.28, 1.27,1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.3*                        |
-| 🔄 | **v1.9.3**            | 1.28, 1.27,1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
-| 🔄 | **v1.9.1**            | 1.28, 1.27,1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
-| 🔄 | **v1.9.0**            | 1.28, 1.27,1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
-| 🔄 | **v1.8.4**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
-| 🔄 | **v1.8.2**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
-| 🔄 | **v1.8.1**            | 1.27,1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
-| 🔄 | **v1.8.0**            | 1.27,1.26, 1.25, 1.24        | 3.18.0         | 1.21.6        | 4.7.*              |
-| 🔄 | **v1.7.1**            | 1.27,1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
+| 🔄 | **v1.9.5**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.9.0*                        |
+| 🔄 | **v1.9.4**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.3                        |
+| 🔄 | **v1.9.3**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
+| 🔄 | **v1.9.1**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
+| 🔄 | **v1.9.0**            | 1.28, 1.27, 1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
+| 🔄 | **v1.8.4**            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
+| 🔄 | **v1.8.2**            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
+| 🔄 | **v1.8.1**            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
+| 🔄 | **v1.8.0**            | 1.27, 1.26, 1.25, 1.24        | 3.18.0         | 1.21.6        | 4.7.*              |
+| 🔄 | **v1.7.1**            | 1.27, 1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
 | 🔄 | **v1.7.0**            | 1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        | 4.6.*              |
 |    | v1.6.4                | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        | 4.5.*              |
 |    | v1.5.1                | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        | 4.4.*              |
diff --git a/changelog/controller-1.9.5.md b/changelog/controller-1.9.5.md
new file mode 100644
index 000000000..51b23ba64
--- /dev/null
+++ b/changelog/controller-1.9.5.md
@@ -0,0 +1,37 @@
+# Changelog
+
+### controller-v1.9.5
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.9.5@sha256:9a8d7b25a846a6461cd044b9aea9cf6cad972bcf2e64d9fd246c0279979aad2d
+
+### All changes:
+
+* update nginx build (#10781)
+* update images from golang upgrade (#10762)
+* fix: remove tcpproxy copy error handling (#10715)
+* Ignore fake certificate for NGINXCertificateExpiry (#10694)
+* Comment NGINXCertificateExpiry alert label matcher (#10692)
+* chart: allow setting allocateLoadBalancerNodePorts (#10693)
+* [release-1.9] feat(helm): add documentation about metric args (#10695)
+* chore(dep): change lua-resty-cookie's repo (#10691)
+* annotation validation - extended URLWithNginxVariableRegex from alphaNumericChars to extendedAlphaNumeric (#10656)
+* fix: adjust unfulfillable validation check for session-cookie-samesite annotation (#10604)
+* fix: Validate x-forwarded-prefix annotation with RegexPathWithCapture (#10603)
+* Increase HSTS max-age to default to one year (#10580)
+* [release-1.9] update nginx base, httpbun, e2e, helm webhook cert gen (#10507)
+* [release-1.9] add upstream patch for CVE-2023-44487 (#10499)
+* fix brotli build issues (#10468)
+* upgrade owasp modsecurity core rule set to v3.3.5 (#10437)
+* Accept backend protocol on any case (#10461)
+* Chart: Rework network policies. (#10438)
+* Rework mage (#10418)
+
+### Dependency updates:
+
+* Bump x/net (#10517)
+* Bump google.golang.org/grpc from 1.58.0 to 1.58.1 (#10436)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.9.4...controller-v1.9.5
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 30ca8afaa..e78c71d67 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,9 +1,13 @@
 annotations:
   artifacthub.io/changes: |-
-     - "Update Ingress-Nginx version controller-v1.9.4"
+    - "Add controller.metrics.serviceMonitor.annotations in Helm chart"
+    - "fix(labels): use complete labels variable on default-backend deployment"
+    - "chart: allow setting allocateLoadBalancerNodePorts (#10693)"
+    - "[release-1.9] feat(helm): add documentation about metric args (#10695)"
+    - "Update Ingress-Nginx version controller-v1.9.5"
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.9.4
+appVersion: 1.9.5
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 home: https://github.com/kubernetes/ingress-nginx
@@ -19,4 +23,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.8.3
+version: 4.9.0
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index e63b143b8..7c351e4c8 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.8.3](https://img.shields.io/badge/Version-4.8.3-informational?style=flat-square) ![AppVersion: 1.9.4](https://img.shields.io/badge/AppVersion-1.9.4-informational?style=flat-square)
+![Version: 4.9.0](https://img.shields.io/badge/Version-4.9.0-informational?style=flat-square) ![AppVersion: 1.9.5](https://img.shields.io/badge/AppVersion-1.9.5-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -317,8 +317,8 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `false` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3"` |  |
-| controller.image.digestChroot | string | `"sha256:5976b1067cfbca8a21d0ba53d71f83543a73316a61ea7f7e436d6cf84ddf9b26"` |  |
+| controller.image.digest | string | `"sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e"` |  |
+| controller.image.digestChroot | string | `"sha256:9a8d7b25a846a6461cd044b9aea9cf6cad972bcf2e64d9fd246c0279979aad2d"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.readOnlyRootFilesystem | bool | `false` |  |
@@ -326,7 +326,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.image.runAsNonRoot | bool | `true` |  |
 | controller.image.runAsUser | int | `101` |  |
 | controller.image.seccompProfile.type | string | `"RuntimeDefault"` |  |
-| controller.image.tag | string | `"v1.9.4"` |  |
+| controller.image.tag | string | `"v1.9.5"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.9.0.md b/charts/ingress-nginx/changelog/helm-chart-4.9.0.md
new file mode 100644
index 000000000..5c7729866
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.9.0.md
@@ -0,0 +1,13 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.9.0
+
+* - "Add controller.metrics.serviceMonitor.annotations in Helm chart"
+* - "fix(labels): use complete labels variable on default-backend deployment"
+* - "chart: allow setting allocateLoadBalancerNodePorts (#10693)"
+* - "[release-1.9] feat(helm): add documentation about metric args (#10695)"
+* - "Update Ingress-Nginx version controller-v1.9.5"
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.8.3...helm-chart-4.9.0
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 0ae2a1e7e..e010a2dbb 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -9,7 +9,6 @@
 
 # -- Override the deployment namespace; defaults to .Release.Namespace
 namespaceOverride: ""
-
 ## Labels to apply to all resources
 ##
 commonLabels: {}
@@ -27,9 +26,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.9.4"
-    digest: sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
-    digestChroot: sha256:5976b1067cfbca8a21d0ba53d71f83543a73316a61ea7f7e436d6cf84ddf9b26
+    tag: "v1.9.5"
+    digest: sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
+    digestChroot: sha256:9a8d7b25a846a6461cd044b9aea9cf6cad972bcf2e64d9fd246c0279979aad2d
     pullPolicy: IfNotPresent
     runAsNonRoot: true
     # www-data -> uid 101
@@ -140,7 +139,6 @@ controller:
   #   "net.core.somaxconn": "8192"
   # -- Security context for controller containers
   containerSecurityContext: {}
-
   # -- Allows customization of the source of the IP address or FQDN to report
   # in the ingress status field. By default, it reads the information provided
   # by the service. If disable, the status field reports the IP address of the
@@ -444,33 +442,26 @@ controller:
   customTemplate:
     configMapName: ""
     configMapKey: ""
-
   service:
     # -- Enable controller services or not. This does not influence the creation of either the admission webhook or the metrics service.
     enabled: true
-
     external:
       # -- Enable the external controller service or not. Useful for internal-only deployments.
       enabled: true
-
     # -- Annotations to be added to the external controller service. See `controller.service.internal.annotations` for annotations to be added to the internal controller service.
     annotations: {}
     # -- Labels to be added to both controller services.
     labels: {}
-
     # -- Type of the external controller service.
     # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types
     type: LoadBalancer
-
     # -- Pre-defined cluster internal IP address of the external controller service. Take care of collisions with existing services.
     # This value is immutable. Set once, it can not be changed without deleting and re-creating the service.
     # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address
     clusterIP: ""
-
     # -- List of node IP addresses at which the external controller service is available.
     # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips
     externalIPs: []
-
     # -- Deprecated: Pre-defined IP address of the external controller service. Used by cloud providers to connect the resulting load balancer service to a pre-existing static IP.
     # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
     loadBalancerIP: ""
@@ -479,7 +470,6 @@ controller:
     # -- Load balancer class of the external controller service. Used by cloud providers to select a load balancer implementation other than the cloud provider default.
     # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-class
     loadBalancerClass: ""
-
     # -- Enable node port allocation for the external controller service or not. Applies to type `LoadBalancer` only.
     # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-nodeport-allocation
     # allocateLoadBalancerNodePorts: true
@@ -487,11 +477,9 @@ controller:
     # -- External traffic policy of the external controller service. Set to "Local" to preserve source IP on providers supporting it.
     # Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
     externalTrafficPolicy: ""
-
     # -- Session affinity of the external controller service. Must be either "None" or "ClientIP" if set. Defaults to "None".
     # Ref: https://kubernetes.io/docs/reference/networking/virtual-ips/#session-affinity
     sessionAffinity: ""
-
     # -- Specifies the health check node port (numeric port number) for the external controller service.
     # If not specified, the service controller allocates a port from your cluster's node port range.
     # Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
@@ -505,28 +493,23 @@ controller:
     # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
     ipFamilies:
       - IPv4
-
     # -- Enable the HTTP listener on both controller services or not.
     enableHttp: true
     # -- Enable the HTTPS listener on both controller services or not.
     enableHttps: true
-
     ports:
       # -- Port the external HTTP listener is published with.
       http: 80
       # -- Port the external HTTPS listener is published with.
       https: 443
-
     targetPorts:
       # -- Port of the ingress controller the external HTTP listener is mapped to.
       http: http
       # -- Port of the ingress controller the external HTTPS listener is mapped to.
       https: https
-
     # -- Declare the app protocol of the external HTTP and HTTPS listeners or not. Supersedes provider-specific annotations for declaring the backend protocol.
     # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#application-protocol
     appProtocol: true
-
     nodePorts:
       # -- Node port allocated for the external HTTP listener. If left empty, the service controller allocates one from the configured node port range.
       http: ""
@@ -542,29 +525,23 @@ controller:
       # udp:
       #   53: 30053
       udp: {}
-
     internal:
       # -- Enable the internal controller service or not. Remember to configure `controller.service.internal.annotations` when enabling this.
       enabled: false
-
       # -- Annotations to be added to the internal controller service. Mandatory for the internal controller service to be created. Varies with the cloud service.
       # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer
       annotations: {}
-
       # -- Type of the internal controller service.
       # Defaults to the value of `controller.service.type`.
       # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types
       type: ""
-
       # -- Pre-defined cluster internal IP address of the internal controller service. Take care of collisions with existing services.
       # This value is immutable. Set once, it can not be changed without deleting and re-creating the service.
       # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address
       clusterIP: ""
-
       # -- List of node IP addresses at which the internal controller service is available.
       # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips
       externalIPs: []
-
       # -- Deprecated: Pre-defined IP address of the internal controller service. Used by cloud providers to connect the resulting load balancer service to a pre-existing static IP.
       # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer
       loadBalancerIP: ""
@@ -573,7 +550,6 @@ controller:
       # -- Load balancer class of the internal controller service. Used by cloud providers to select a load balancer implementation other than the cloud provider default.
       # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-class
       loadBalancerClass: ""
-
       # -- Enable node port allocation for the internal controller service or not. Applies to type `LoadBalancer` only.
       # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-nodeport-allocation
       # allocateLoadBalancerNodePorts: true
@@ -581,11 +557,9 @@ controller:
       # -- External traffic policy of the internal controller service. Set to "Local" to preserve source IP on providers supporting it.
       # Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
       externalTrafficPolicy: ""
-
       # -- Session affinity of the internal controller service. Must be either "None" or "ClientIP" if set. Defaults to "None".
       # Ref: https://kubernetes.io/docs/reference/networking/virtual-ips/#session-affinity
       sessionAffinity: ""
-
       # -- Specifies the health check node port (numeric port number) for the internal controller service.
       # If not specified, the service controller allocates a port from your cluster's node port range.
       # Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
@@ -599,27 +573,25 @@ controller:
       # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
       ipFamilies:
         - IPv4
-
       ports: {}
-        # -- Port the internal HTTP listener is published with.
-        # Defaults to the value of `controller.service.ports.http`.
-        # http: 80
-        # -- Port the internal HTTPS listener is published with.
-        # Defaults to the value of `controller.service.ports.https`.
-        # https: 443
+      # -- Port the internal HTTP listener is published with.
+      # Defaults to the value of `controller.service.ports.http`.
+      # http: 80
+      # -- Port the internal HTTPS listener is published with.
+      # Defaults to the value of `controller.service.ports.https`.
+      # https: 443
 
       targetPorts: {}
-        # -- Port of the ingress controller the internal HTTP listener is mapped to.
-        # Defaults to the value of `controller.service.targetPorts.http`.
-        # http: http
-        # -- Port of the ingress controller the internal HTTPS listener is mapped to.
-        # Defaults to the value of `controller.service.targetPorts.https`.
-        # https: https
+      # -- Port of the ingress controller the internal HTTP listener is mapped to.
+      # Defaults to the value of `controller.service.targetPorts.http`.
+      # http: http
+      # -- Port of the ingress controller the internal HTTPS listener is mapped to.
+      # Defaults to the value of `controller.service.targetPorts.https`.
+      # https: https
 
       # -- Declare the app protocol of the internal HTTP and HTTPS listeners or not. Supersedes provider-specific annotations for declaring the backend protocol.
       # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#application-protocol
       appProtocol: true
-
       nodePorts:
         # -- Node port allocated for the internal HTTP listener. If left empty, the service controller allocates one from the configured node port range.
         http: ""
@@ -635,7 +607,6 @@ controller:
         # udp:
         #   53: 30053
         udp: {}
-
   # shareProcessNamespace enables process namespace sharing within the pod.
   # This can be used for example to signal log rotation using `kill -USR1` from a sidecar.
   shareProcessNamespace: false
@@ -728,7 +699,7 @@ controller:
         type: RuntimeDefault
       capabilities:
         drop:
-        - ALL
+          - ALL
       readOnlyRootFilesystem: true
     resources: {}
   admissionWebhooks:
@@ -779,7 +750,7 @@ controller:
           type: RuntimeDefault
         capabilities:
           drop:
-          - ALL
+            - ALL
         readOnlyRootFilesystem: true
       resources: {}
       # limits:
@@ -799,7 +770,7 @@ controller:
           type: RuntimeDefault
         capabilities:
           drop:
-          - ALL
+            - ALL
         readOnlyRootFilesystem: true
       resources: {}
     patch:
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 356967315..63eeec25b 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -489,13 +489,17 @@ spec:
             cpu: 100m
             memory: 90Mi
         securityContext:
-          allowPrivilegeEscalation: true
+          allowPrivilegeEscalation: false
           capabilities:
             add:
             - NET_BIND_SERVICE
             drop:
             - ALL
+          readOnlyRootFilesystem: false
+          runAsNonRoot: true
           runAsUser: 101
+          seccompProfile:
+            type: RuntimeDefault
         volumeMounts:
         - mountPath: /usr/local/certificates/
           name: webhook-cert
@@ -518,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,13 +552,17 @@ spec:
         name: create
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: batch/v1
@@ -565,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -576,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -597,13 +605,17 @@ spec:
         name: patch
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: networking.k8s.io/v1
@@ -614,34 +626,11 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-spec:
-  egress:
-  - {}
-  podSelector:
-    matchLabels:
-      app.kubernetes.io/component: admission-webhook
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  policyTypes:
-  - Ingress
-  - Egress
----
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -650,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index a5d179953..ca4c6d107 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -431,7 +431,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
     spec:
       containers:
       - args:
@@ -455,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -501,13 +501,17 @@ spec:
             cpu: 100m
             memory: 90Mi
         securityContext:
-          allowPrivilegeEscalation: true
+          allowPrivilegeEscalation: false
           capabilities:
             add:
             - NET_BIND_SERVICE
             drop:
             - ALL
+          readOnlyRootFilesystem: false
+          runAsNonRoot: true
           runAsUser: 101
+          seccompProfile:
+            type: RuntimeDefault
         volumeMounts:
         - mountPath: /usr/local/certificates/
           name: webhook-cert
@@ -530,7 +534,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -541,7 +545,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -560,13 +564,17 @@ spec:
         name: create
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: batch/v1
@@ -577,7 +585,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -588,7 +596,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -609,13 +617,17 @@ spec:
         name: patch
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: networking.k8s.io/v1
@@ -626,34 +638,11 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-spec:
-  egress:
-  - {}
-  podSelector:
-    matchLabels:
-      app.kubernetes.io/component: admission-webhook
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  policyTypes:
-  - Ingress
-  - Egress
----
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -662,7 +651,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 42fcb3250..0998d702c 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
     spec:
       containers:
       - args:
@@ -440,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -483,13 +483,17 @@ spec:
             cpu: 100m
             memory: 90Mi
         securityContext:
-          allowPrivilegeEscalation: true
+          allowPrivilegeEscalation: false
           capabilities:
             add:
             - NET_BIND_SERVICE
             drop:
             - ALL
+          readOnlyRootFilesystem: false
+          runAsNonRoot: true
           runAsUser: 101
+          seccompProfile:
+            type: RuntimeDefault
         volumeMounts:
         - mountPath: /usr/local/certificates/
           name: webhook-cert
@@ -512,7 +516,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -523,7 +527,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,13 +546,17 @@ spec:
         name: create
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: batch/v1
@@ -559,7 +567,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -570,7 +578,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -591,13 +599,17 @@ spec:
         name: patch
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: networking.k8s.io/v1
@@ -608,34 +620,11 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-spec:
-  egress:
-  - {}
-  podSelector:
-    matchLabels:
-      app.kubernetes.io/component: admission-webhook
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  policyTypes:
-  - Ingress
-  - Egress
----
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -644,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 6844384b1..e3941a705 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -485,13 +485,17 @@ spec:
             cpu: 100m
             memory: 90Mi
         securityContext:
-          allowPrivilegeEscalation: true
+          allowPrivilegeEscalation: false
           capabilities:
             add:
             - NET_BIND_SERVICE
             drop:
             - ALL
+          readOnlyRootFilesystem: false
+          runAsNonRoot: true
           runAsUser: 101
+          seccompProfile:
+            type: RuntimeDefault
         volumeMounts:
         - mountPath: /usr/local/certificates/
           name: webhook-cert
@@ -514,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -525,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -544,13 +548,17 @@ spec:
         name: create
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: batch/v1
@@ -561,7 +569,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -572,7 +580,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -593,13 +601,17 @@ spec:
         name: patch
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: networking.k8s.io/v1
@@ -610,34 +622,11 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-spec:
-  egress:
-  - {}
-  podSelector:
-    matchLabels:
-      app.kubernetes.io/component: admission-webhook
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  policyTypes:
-  - Ingress
-  - Egress
----
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -646,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 322e5788c..ed9b0233e 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,13 +488,17 @@ spec:
             cpu: 100m
             memory: 90Mi
         securityContext:
-          allowPrivilegeEscalation: true
+          allowPrivilegeEscalation: false
           capabilities:
             add:
             - NET_BIND_SERVICE
             drop:
             - ALL
+          readOnlyRootFilesystem: false
+          runAsNonRoot: true
           runAsUser: 101
+          seccompProfile:
+            type: RuntimeDefault
         volumeMounts:
         - mountPath: /usr/local/certificates/
           name: webhook-cert
@@ -517,7 +521,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +532,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -547,13 +551,17 @@ spec:
         name: create
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: batch/v1
@@ -564,7 +572,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +583,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -596,13 +604,17 @@ spec:
         name: patch
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: networking.k8s.io/v1
@@ -613,34 +625,11 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-spec:
-  egress:
-  - {}
-  podSelector:
-    matchLabels:
-      app.kubernetes.io/component: admission-webhook
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  policyTypes:
-  - Ingress
-  - Egress
----
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -649,7 +638,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 5112ac3cf..36348d0b9 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -490,13 +490,17 @@ spec:
             cpu: 100m
             memory: 90Mi
         securityContext:
-          allowPrivilegeEscalation: true
+          allowPrivilegeEscalation: false
           capabilities:
             add:
             - NET_BIND_SERVICE
             drop:
             - ALL
+          readOnlyRootFilesystem: false
+          runAsNonRoot: true
           runAsUser: 101
+          seccompProfile:
+            type: RuntimeDefault
         volumeMounts:
         - mountPath: /usr/local/certificates/
           name: webhook-cert
@@ -523,7 +527,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +538,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -553,13 +557,17 @@ spec:
         name: create
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: batch/v1
@@ -570,7 +578,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,7 +589,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -602,13 +610,17 @@ spec:
         name: patch
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: networking.k8s.io/v1
@@ -619,34 +631,11 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-spec:
-  egress:
-  - {}
-  podSelector:
-    matchLabels:
-      app.kubernetes.io/component: admission-webhook
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  policyTypes:
-  - Ingress
-  - Egress
----
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -655,7 +644,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index f53d4bb80..a23e4299c 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -487,13 +487,17 @@ spec:
             cpu: 100m
             memory: 90Mi
         securityContext:
-          allowPrivilegeEscalation: true
+          allowPrivilegeEscalation: false
           capabilities:
             add:
             - NET_BIND_SERVICE
             drop:
             - ALL
+          readOnlyRootFilesystem: false
+          runAsNonRoot: true
           runAsUser: 101
+          seccompProfile:
+            type: RuntimeDefault
         volumeMounts:
         - mountPath: /usr/local/certificates/
           name: webhook-cert
@@ -524,7 +528,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +539,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -554,13 +558,17 @@ spec:
         name: create
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: batch/v1
@@ -571,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +590,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -603,13 +611,17 @@ spec:
         name: patch
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: networking.k8s.io/v1
@@ -620,34 +632,11 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-spec:
-  egress:
-  - {}
-  podSelector:
-    matchLabels:
-      app.kubernetes.io/component: admission-webhook
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  policyTypes:
-  - Ingress
-  - Egress
----
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -656,7 +645,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index 2205c5293..9b1fc6c73 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -489,13 +489,17 @@ spec:
             cpu: 100m
             memory: 90Mi
         securityContext:
-          allowPrivilegeEscalation: true
+          allowPrivilegeEscalation: false
           capabilities:
             add:
             - NET_BIND_SERVICE
             drop:
             - ALL
+          readOnlyRootFilesystem: false
+          runAsNonRoot: true
           runAsUser: 101
+          seccompProfile:
+            type: RuntimeDefault
         volumeMounts:
         - mountPath: /usr/local/certificates/
           name: webhook-cert
@@ -518,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,13 +552,17 @@ spec:
         name: create
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: batch/v1
@@ -565,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -576,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -597,13 +605,17 @@ spec:
         name: patch
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: networking.k8s.io/v1
@@ -614,34 +626,11 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-spec:
-  egress:
-  - {}
-  podSelector:
-    matchLabels:
-      app.kubernetes.io/component: admission-webhook
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  policyTypes:
-  - Ingress
-  - Egress
----
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -650,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index e08ebc990..ff02f8469 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.4@sha256:5b161f051d017e55d358435f295f5e9a297e66158f136321d9b04520ec6c48a3
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -488,13 +488,17 @@ spec:
             cpu: 100m
             memory: 90Mi
         securityContext:
-          allowPrivilegeEscalation: true
+          allowPrivilegeEscalation: false
           capabilities:
             add:
             - NET_BIND_SERVICE
             drop:
             - ALL
+          readOnlyRootFilesystem: false
+          runAsNonRoot: true
           runAsUser: 101
+          seccompProfile:
+            type: RuntimeDefault
         volumeMounts:
         - mountPath: /usr/local/certificates/
           name: webhook-cert
@@ -517,7 +521,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +532,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -547,13 +551,17 @@ spec:
         name: create
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: batch/v1
@@ -564,7 +572,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -575,7 +583,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.4
+        app.kubernetes.io/version: 1.9.5
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -596,13 +604,17 @@ spec:
         name: patch
         securityContext:
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+            - ALL
+          readOnlyRootFilesystem: true
+          runAsNonRoot: true
+          runAsUser: 65532
+          seccompProfile:
+            type: RuntimeDefault
       nodeSelector:
         kubernetes.io/os: linux
       restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
       serviceAccountName: ingress-nginx-admission
 ---
 apiVersion: networking.k8s.io/v1
@@ -613,34 +625,11 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
 ---
-apiVersion: networking.k8s.io/v1
-kind: NetworkPolicy
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-spec:
-  egress:
-  - {}
-  podSelector:
-    matchLabels:
-      app.kubernetes.io/component: admission-webhook
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  policyTypes:
-  - Ingress
-  - Egress
----
 apiVersion: admissionregistration.k8s.io/v1
 kind: ValidatingWebhookConfiguration
 metadata:
@@ -649,7 +638,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.4
+    app.kubernetes.io/version: 1.9.5
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 8418d7b31..8d8528b31 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -56,22 +56,22 @@ Do not try to edit it manually.
 - [proxy_set_header My-Custom-Header 42;](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L272)
 - [proxy_set_header My-Custom-Header 42;](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L298)
 - [proxy_set_header 'My-Custom-Header' '42';](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L324)
-- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L432)
-- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L443)
-- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L454)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L493)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L502)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L513)
-- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L537)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L713)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L722)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L733)
-- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L792)
-- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L812)
-- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L840)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L869)
-- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L899)
-- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L907)
+- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L433)
+- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L444)
+- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L455)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L494)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L503)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L514)
+- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L538)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L714)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L723)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L734)
+- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L793)
+- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L813)
+- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L841)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L870)
+- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L900)
+- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L908)
 ### [auth-tls-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L31)
 - [should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L38)
 - [should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L86)
@@ -170,8 +170,8 @@ Do not try to edit it manually.
 ### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L40)
 - [should use grpc_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L43)
 - [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L68)
-- [authorization metadata should be overwritten by external auth response headers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L128)
-- [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L189)
+- [authorization metadata should be overwritten by external auth response headers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L129)
+- [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L190)
 ### [http2-push-preload](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/http2pushpreload.go#L27)
 - [enable the http2-push-preload directive](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/http2pushpreload.go#L34)
 ### [allowlist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/ipallowlist.go#L27)
@@ -373,11 +373,11 @@ Do not try to edit it manually.
 - [should ignore services of external-name type](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_service_external_name.go#L55)
 ### [[Flag] disable-sync-events](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_sync_events.go#L32)
 - [should create sync events (default)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_sync_events.go#L35)
-- [should create sync events](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_sync_events.go#L54)
-- [should not create sync events](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_sync_events.go#L82)
+- [should create sync events](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_sync_events.go#L55)
+- [should not create sync events](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/disable_sync_events.go#L83)
 ### [enable-real-ip](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/enable_real_ip.go#L30)
 - [trusts X-Forwarded-For header only when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/enable_real_ip.go#L40)
-- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/enable_real_ip.go#L78)
+- [should not trust X-Forwarded-For header when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/enable_real_ip.go#L79)
 ### [use-forwarded-headers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/forwarded_headers.go#L31)
 - [should trust X-Forwarded headers when setting is true](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/forwarded_headers.go#L41)
 - [should not trust X-Forwarded headers when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/forwarded_headers.go#L93)
diff --git a/go.work.sum b/go.work.sum
index cb2ff1f18..2b31940aa 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -28,7 +28,6 @@ cloud.google.com/go/cloudtasks v1.11.1/go.mod h1:a9udmnou9KO2iulGscKR0qBYjreuX8o
 cloud.google.com/go/compute v1.19.3/go.mod h1:qxvISKp/gYnXkSAD1ppcSOveRAmzxicEv/JlizULFrI=
 cloud.google.com/go/compute v1.20.1/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
 cloud.google.com/go/compute v1.21.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
-cloud.google.com/go/compute v1.23.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
 cloud.google.com/go/compute/metadata v0.2.3/go.mod h1:VAV5nSsACxMJvgaAuX6Pk2AawlZn8kiOGuCv6gTkwuA=
 cloud.google.com/go/contactcenterinsights v1.9.1/go.mod h1:bsg/R7zGLYMVxFFzfh9ooLTruLRCG9fnzhH9KznHhbM=
 cloud.google.com/go/container v1.22.1/go.mod h1:lTNExE2R7f+DLbAN+rJiKTisauFCaoDq6NURZ83eVH4=
@@ -123,14 +122,8 @@ cloud.google.com/go/vpcaccess v1.7.1/go.mod h1:FogoD46/ZU+JUBX9D606X21EnxiszYi2t
 cloud.google.com/go/webrisk v1.9.1/go.mod h1:4GCmXKcOa2BZcZPn6DCEvE7HypmEJcJkr4mtM+sqYPc=
 cloud.google.com/go/websecurityscanner v1.6.1/go.mod h1:Njgaw3rttgRHXzwCB8kgCYqv5/rGpFCsBOvPbYgszpg=
 cloud.google.com/go/workflows v1.11.1/go.mod h1:Z+t10G1wF7h8LgdY/EmRcQY8ptBD/nvofaL6FqlET6g=
-github.com/alecthomas/kingpin/v2 v2.3.2/go.mod h1:0gyi0zQnjuFk8xrkNKamJoyUo382HRL7ATRpFZCw6tE=
-github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137/go.mod h1:OMCwj8VM1Kc9e19TLln2VL61YJF0x1XFtfdL4JdbSyE=
-github.com/andybalholm/brotli v1.0.4/go.mod h1:fO7iG3H7G2nSZ7m0zPUDn85XEX2GTukHGRSepvi9Eig=
-github.com/antlr/antlr4/runtime/Go/antlr v1.4.10/go.mod h1:F7bn7fEU90QkQ3tnmaTx3LTKLEDqnwWODIYppRQ5hnY=
-github.com/apache/thrift v0.16.0/go.mod h1:PHK3hniurgQaNMZYaCLEqXKsYK8upmhPbmdP2FXSqgU=
 github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5/go.mod h1:wHh0iHkYZB8zMSxRWpUBQtwG5a7fFgvEO+odwuTv2gs=
 github.com/blang/semver v3.5.1+incompatible h1:cQNTCjp13qL8KC3Nbxr/y2Bqb63oX6wdnnjpJbkM4JQ=
-github.com/cenkalti/backoff/v4 v4.1.3/go.mod h1:scbssz8iZGpm3xbr14ovlUdkxfGXNInqkPWOWmG2CLw=
 github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
 github.com/cespare/xxhash v1.1.0 h1:a6HrQnmkObjyL+Gs60czilIUGqrzKutQD6XZog3p+ko=
 github.com/checkpoint-restore/go-criu/v5 v5.3.0/go.mod h1:E/eQpaFtUKGOOSEBZgmKAcn+zUUwWxqcaKZlF54wK8E=
@@ -148,7 +141,6 @@ github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWH
 github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20230607035331-e9ce68804cb4/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
-github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e h1:Wf6HqHfScWJN9/ZjdUKyjop4mf3Qdd+1TvvltAvM3m8=
 github.com/docker/go-units v0.4.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
 github.com/emicklei/go-restful v2.9.5+incompatible h1:spTtZBk5DYEvbxMVutUuTyh1Ao2r4iyvLdACqsl/Ljk=
 github.com/emicklei/go-restful/v3 v3.8.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
@@ -157,175 +149,35 @@ github.com/envoyproxy/go-control-plane v0.9.10-0.20210907150352-cf90f659a021/go.
 github.com/envoyproxy/go-control-plane v0.11.1/go.mod h1:uhMcXKCQMEJHiAb0w+YGefQLaTEw+YhGluxZkrTmD0g=
 github.com/envoyproxy/protoc-gen-validate v1.0.2/go.mod h1:GpiZQP3dDbg4JouG/NNS7QWXpgx6x8QiMKdmN72jogE=
 github.com/felixge/httpsnoop v1.0.3/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
-github.com/go-kit/log v0.2.1/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0=
 github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
 github.com/go-logr/logr v1.2.3/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE=
 github.com/gobwas/httphead v0.1.0/go.mod h1:O/RXo79gxV8G+RqlR/otEwx4Q36zl9rqC5u12GKvMCM=
 github.com/gobwas/pool v0.2.1/go.mod h1:q8bcK0KcYlCgd9e7WYLm9LpyS+YeLd8JVDW6WezmKEw=
 github.com/gobwas/ws v1.2.1/go.mod h1:hRKAFb8wOxFROYNsT1bqfWnhX+b5MFeJM9r2ZSwg/KY=
-github.com/goccy/go-json v0.9.11/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
-github.com/golang-jwt/jwt/v4 v4.4.2/go.mod h1:m21LjoU+eqJr34lmDMbreY2eSTRJ1cv77w39/MY0Ch0=
 github.com/golang/glog v1.1.0/go.mod h1:pfYeQZ3JWZoXTV5sFc986z3HTpwQs9At6P4ImfuP3NQ=
-github.com/golang/glog v1.1.2/go.mod h1:zR+okUeTbrL6EL3xHUDxZuEtGv04p5shwip1+mL/rLQ=
 github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
-github.com/google/cel-go v0.12.6/go.mod h1:Jk7ljRzLBhkmiAwBoUxB1sZSCVBAzkqPF25olK/iRDw=
-github.com/google/cel-go v0.12.7/go.mod h1:Jk7ljRzLBhkmiAwBoUxB1sZSCVBAzkqPF25olK/iRDw=
-github.com/google/flatbuffers v2.0.8+incompatible/go.mod h1:1AeVuKshWv4vARoZatz6mlQ0JxURH0Kv5+zNeJKJCa8=
-github.com/google/gnostic-models v0.6.8 h1:yo/ABAfM5IMRsS1VnXjTBvUb61tFIHozhlYvRgGre9I=
-github.com/google/gnostic-models v0.6.8/go.mod h1:5n7qKqH0f5wFt+aWF8CW6pZLLNOfYuF5OpfBSENuI8U=
 github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/martian/v3 v3.3.2/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
 github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/s2a-go v0.1.4/go.mod h1:Ej+mSEMGRnqRzjc7VtF+jdBwYG5fuJfiZ8ELkjEwM0A=
 github.com/googleapis/enterprise-certificate-proxy v0.2.3/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
 github.com/googleapis/gax-go/v2 v2.11.0/go.mod h1:DxmR61SGKkGLa2xigwuZIQpkCI2S5iydzRfb3peWZJI=
-github.com/grpc-ecosystem/grpc-gateway/v2 v2.7.0/go.mod h1:hgWBS7lorOAVIJEQMi4ZsPv9hVvWI6+ch50m39Pf2Ks=
-github.com/grpc-ecosystem/grpc-gateway/v2 v2.11.3/go.mod h1:o//XUCC/F+yRGJoPO/VU0GSB0f8Nhgmxx0VIRUvaC0w=
-github.com/iancoleman/strcase v0.2.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/ianlancetaylor/demangle v0.0.0-20230524184225-eabc099b10ab/go.mod h1:gx7rwoVhcfuVKG5uya9Hs3Sxj7EIvldVofAWIUtGouw=
-github.com/klauspost/asmfmt v1.3.2/go.mod h1:AG8TuvYojzulgDAMCnYn50l/5QV3Bs/tp6j0HLHbNSE=
-github.com/klauspost/compress v1.15.9/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU=
-github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
 github.com/ledongthuc/pdf v0.0.0-20220302134840-0c2507a12d80/go.mod h1:imJHygn/1yfhB7XSJJKlFZKl/J+dCPAknuiaGOshXAs=
-github.com/matttproud/golang_protobuf_extensions v1.0.4 h1:mmDVorXM7PCGKw94cs5zkfA9PSy5pEvNWRP0ET0TIVo=
-github.com/matttproud/golang_protobuf_extensions v1.0.4/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
-github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8/go.mod h1:mC1jAcsrzbxHt8iiaC+zU4b1ylILSosueou12R++wfY=
-github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3/go.mod h1:RagcQ7I8IeTMnF8JTXieKnO4Z6JCsikNEzj0DwauVzE=
-github.com/moby/term v0.0.0-20221205130635-1aeaba878587/go.mod h1:8FzsFHVUBGZdbDsJw/ot+X+d5HLUbvklYLJ9uGfcI3Y=
-github.com/mrunalp/fileutils v0.5.0/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
-github.com/mrunalp/fileutils v0.5.1/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
-github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
-github.com/onsi/ginkgo/v2 v2.9.1/go.mod h1:FEcmzVcCHl+4o9bQZVab+4dC9+j+91t2FHSzmGAPfuo=
-github.com/onsi/ginkgo/v2 v2.9.4/go.mod h1:gCQYp2Q+kSoIj7ykSVb9nskRSsR6PUj4AiLywzIhbKM=
-github.com/onsi/ginkgo/v2 v2.11.0/go.mod h1:ZhrRA5XmEE3x3rhlzamx/JJvujdZoJ2uvgI7kR0iZvM=
-github.com/onsi/gomega v1.19.0/go.mod h1:LY+I3pBVzYsTBU1AnDwOSxaYi9WoWiqgwooUqq9yPro=
-github.com/onsi/gomega v1.27.4/go.mod h1:riYq/GJKh8hhoM01HN6Vmuy93AarCXCBGpvFDK3q3fQ=
-github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
 github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde/go.mod h1:nZgzbfBr3hhjoZnS66nKrHmduYNpc34ny7RK4z5/HM0=
-github.com/pierrec/lz4/v4 v4.1.15/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4=
-github.com/pquerna/cachecontrol v0.1.0/go.mod h1:NrUG3Z7Rdu85UNR3vm7SOsl1nFIeSiQnrHV5K9mBcUI=
-github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
-github.com/spf13/afero v1.3.3/go.mod h1:5KUK8ByomD5Ti5Artl0RtHeI5pTF7MIDuXL3yY520V4=
-github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
-github.com/tmc/grpc-websocket-proxy v0.0.0-20220101234140-673ab2c3ae75/go.mod h1:KO6IkyS8Y3j8OdNO85qEYBsRPuteD+YciPomcXdrMnk=
-github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
-github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
-github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
-github.com/xhit/go-str2duration/v2 v2.1.0/go.mod h1:ohY8p+0f07DiV6Em5LKB0s2YpLtXVyJfNt1+BlmyAsU=
 github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
-github.com/zeebo/xxh3 v1.0.2/go.mod h1:5NWz9Sef7zIDm2JHfFlcQvNekmcEl9ekUZQQKCYaDcA=
-go.etcd.io/etcd/api/v3 v3.5.7/go.mod h1:9qew1gCdDDLu+VwmeG+iFpL+QlpHTo7iubavdVDgCAA=
-go.etcd.io/etcd/client/pkg/v3 v3.5.7/go.mod h1:o0Abi1MK86iad3YrWhgUsbGx1pmTS+hrORWc2CamuhY=
-go.etcd.io/etcd/client/v2 v2.305.7/go.mod h1:GQGT5Z3TBuAQGvgPfhR7VPySu/SudxmEkRq9BgzFU6s=
-go.etcd.io/etcd/client/v3 v3.5.7/go.mod h1:sOWmj9DZUMyAngS7QQwCyAXXAL6WhgTOPLNS/NabQgw=
-go.etcd.io/etcd/pkg/v3 v3.5.7/go.mod h1:kcOfWt3Ov9zgYdOiJ/o1Y9zFfLhQjylTgL4Lru8opRo=
-go.etcd.io/etcd/raft/v3 v3.5.7/go.mod h1:TflkAb/8Uy6JFBxcRaH2Fr6Slm9mCPVdI2efzxY96yU=
-go.etcd.io/etcd/server/v3 v3.5.7/go.mod h1:gxBgT84issUVBRpZ3XkW1T55NjOb4vZZRI4wVvNhf4A=
-go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo=
-go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.35.0/go.mod h1:h8TWwRAhQpOd0aM5nYsRD8+flnkj+526GEIVlarH7eY=
-go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.35.1/go.mod h1:9NiG9I2aHTKkcxqCILhjtyNA1QEiCjdBACv4IvrFQ+c=
-go.opentelemetry.io/otel v1.10.0/go.mod h1:NbvWjCthWHKBEUMpf0/v8ZRZlni86PpGFEMA9pnQSnQ=
-go.opentelemetry.io/otel/exporters/otlp/internal/retry v1.10.0/go.mod h1:78XhIg8Ht9vR4tbLNUhXsiOnE2HOuSeKAiAcoVQEpOY=
-go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.10.0/go.mod h1:Krqnjl22jUJ0HgMzw5eveuCvFDXY4nSYb4F8t5gdrag=
-go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.10.0/go.mod h1:OfUCyyIiDvNXHWpcWgbF+MWvqPZiNa3YDEnivcnYsV0=
-go.opentelemetry.io/otel/metric v0.31.0/go.mod h1:ohmwj9KTSIeBnDBm/ZwH2PSZxZzoOaG2xZeekTRzL5A=
-go.opentelemetry.io/otel/sdk v1.10.0/go.mod h1:vO06iKzD5baltJz1zarxMCNHFpUlUiOy4s65ECtn6kE=
-go.opentelemetry.io/otel/trace v1.10.0/go.mod h1:Sij3YYczqAdz+EhmGhE6TpTxUO5/F/AzrK+kxfGqySM=
-go.opentelemetry.io/proto/otlp v0.19.0/go.mod h1:H7XAot3MsfNsj7EXtrA2q5xSNQ10UqI405h3+duxN4U=
-go.uber.org/goleak v1.2.1/go.mod h1:qlT2yGI9QafXHhZZLxlSuNsMw3FFLxBr+tBRlmO1xH4=
-golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.0.0-20220314234659-1baeb1ce4c0b/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
-golang.org/x/crypto v0.9.0/go.mod h1:yrmDGqONDYtNj3tH8X9dzUun2m2lzPa9ngI6/RUPGR0=
-golang.org/x/exp v0.0.0-20200224162631-6cc2880d07d6 h1:QE6XYQK6naiK1EPAe1g/ILLxN5RBoH5xkJk3CqlMI/Y=
-golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
-golang.org/x/mod v0.7.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
-golang.org/x/mod v0.9.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
-golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
-golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.4.0/go.mod h1:MBQ8lrhLObU/6UmLb4fmbmk5OcyYmqtbGd/9yIeKjEE=
-golang.org/x/net v0.8.0/go.mod h1:QVkue5JL9kW//ek3r6jTKnTFis1tRmNAW2P1shuFdJc=
 golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg=
-golang.org/x/net v0.12.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA=
-golang.org/x/net v0.13.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA=
-golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
-golang.org/x/net v0.15.0/go.mod h1:idbUs1IY1+zTqbi8yxTbhexhEEk5ur9LInksu6HrEpk=
 golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
-golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
-golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE=
-golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI=
-golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.3.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
 golang.org/x/sync v0.4.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
-golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.3.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.4.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.10.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/term v0.6.0/go.mod h1:m6U89DPEgQRMq3DNkDClhWw02AUbt2daBVO4cn4Hv9U=
-golang.org/x/term v0.12.0/go.mod h1:owVbMEjm3cBLCHdkQu9b1opXd4ETQWc3BhuQGKgXgvU=
-golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
-golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
-golang.org/x/text v0.5.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
-golang.org/x/text v0.8.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
-golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
-golang.org/x/text v0.11.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
-golang.org/x/text v0.12.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
-golang.org/x/time v0.0.0-20220210224613-90d013bbcef8/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
-golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
 golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
-golang.org/x/tools v0.7.0/go.mod h1:4pg6aUX35JBAogB10C9AtvVL+qowtN4pT3CGSQex14s=
-golang.org/x/tools v0.8.0/go.mod h1:JxBZ99ISMI5ViVkT1tr6tdNmXeTrcpVSD3vZ1RsRdN4=
-golang.org/x/tools v0.9.3/go.mod h1:owI94Op576fPu3cIGQeHs3joujW/2Oc6MtlxbF5dfNc=
 golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM=
 golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
-golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
-google.golang.org/api v0.126.0/go.mod h1:mBwVAtz+87bEN6CbA1GtZPDOqY2R5ONPqJeIlvyo4Aw=
-google.golang.org/genproto v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:xZnkP7mREFX5MORlOPEzLMr+90PPZQ2QWzrVTWfAq64=
-google.golang.org/genproto v0.0.0-20230706204954-ccb25ca9f130/go.mod h1:O9kGHb51iE/nOGvQaDUuadVYqovW56s5emA88lQnj6Y=
-google.golang.org/genproto v0.0.0-20230711160842-782d3b101e98 h1:Z0hjGZePRE0ZBWotvtrwxFNrNE9CUAGtplaDK5NNI/g=
-google.golang.org/genproto v0.0.0-20230711160842-782d3b101e98/go.mod h1:S7mY02OqCJTD0E1OiQy1F72PWFB4bZJ87cAtLPYgDR0=
-google.golang.org/genproto v0.0.0-20230822172742-b8732ec3820d h1:VBu5YqKPv6XiJ199exd8Br+Aetz+o08F+PLMnwJQHAY=
-google.golang.org/genproto v0.0.0-20230822172742-b8732ec3820d/go.mod h1:yZTlhN0tQnXo3h00fuXNCxJdLdIdnVFVBaRJ5LWBbw4=
-google.golang.org/genproto/googleapis/api v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
-google.golang.org/genproto/googleapis/api v0.0.0-20230706204954-ccb25ca9f130/go.mod h1:mPBs5jNgx2GuQGvFwUvVKqtn6HsUw9nP64BedgvqEsQ=
-google.golang.org/genproto/googleapis/api v0.0.0-20230711160842-782d3b101e98/go.mod h1:rsr7RhLuwsDKL7RmgDDCUc6yaGr1iqceVb5Wv6f6YvQ=
-google.golang.org/genproto/googleapis/api v0.0.0-20230822172742-b8732ec3820d/go.mod h1:KjSP20unUpOx5kyQUFa7k4OJg0qeJ7DEZflGDu2p6Bk=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20230706204954-ccb25ca9f130/go.mod h1:8mL13HKkDa+IuJ8yruA3ci0q+0vsUz4m//+ottjwS5o=
-google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
-google.golang.org/grpc v1.45.0/go.mod h1:lN7owxKUQEqMfSyQikvvk5tf/6zMPsrK+ONuO11+0rQ=
-google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8=
-google.golang.org/grpc v1.56.2/go.mod h1:I9bI3vqKfayGqPUAwGdOSu7kt6oIJLixfffKrpXqQ9s=
-google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
-google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
 google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
-google.golang.org/protobuf v1.28.1/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
-google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
-gopkg.in/square/go-jose.v2 v2.6.0/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
-k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
-k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
-k8s.io/klog/v2 v2.90.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
-k8s.io/kms v0.27.6/go.mod h1:9YQuCFa+n88RWokHkl+4RHFQ9DATSip/ihBqxlDUBuw=
-k8s.io/kube-openapi v0.0.0-20230717233707-2695361300d9 h1:LyMgNKD2P8Wn1iAwQU5OhxCKlKJy0sHc+PcDwFB24dQ=
-k8s.io/kube-openapi v0.0.0-20230717233707-2695361300d9/go.mod h1:wZK2AVp1uHCp4VamDVgBP2COHZjqD1T68Rf0CM3YjSM=
-k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
-k8s.io/utils v0.0.0-20230406110748-d93618cff8a2 h1:qY1Ad8PODbnymg2pRbkyMT/ylpTrCM8P2RJ0yroCyIk=
-k8s.io/utils v0.0.0-20230406110748-d93618cff8a2/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.1.2/go.mod h1:+qG7ISXqCDVVcyO8hLn12AKVYYUjM7ftlqsqmrhMZE0=

From 9de651aa7d393e4fc797d99f7cfc81fc6d20c649 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 21 Dec 2023 14:42:18 +0100
Subject: [PATCH 1082/1641] Chart: Add Gacko to maintainers. (#10796)

---
 charts/ingress-nginx/Chart.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index e78c71d67..96a7edcb2 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -17,6 +17,7 @@ keywords:
 - nginx
 kubeVersion: '>=1.20.0-0'
 maintainers:
+- name: Gacko
 - name: rikatz
 - name: strongjz
 - name: tao12345666333

From 4b832de9855f99d8d19ec7e0fd7b2cd92682464d Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 22 Dec 2023 19:48:15 +0100
Subject: [PATCH 1083/1641] Update TAG in main to 1.9.5 latest

---
 TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/TAG b/TAG
index c4e620172..57d503d1e 100644
--- a/TAG
+++ b/TAG
@@ -1 +1 @@
-v1.9.4
+v1.9.5

From 1a7112e0636870d5b649afecedc4b81194fab121 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Mon, 25 Dec 2023 19:38:42 -0600
Subject: [PATCH 1084/1641] Add common label to Dockerfiles (#10803)

---
 images/kube-webhook-certgen/rootfs/Dockerfile | 3 +++
 images/nginx/rootfs/Dockerfile                | 2 ++
 images/test-runner/rootfs/Dockerfile          | 2 ++
 3 files changed, 7 insertions(+)

diff --git a/images/kube-webhook-certgen/rootfs/Dockerfile b/images/kube-webhook-certgen/rootfs/Dockerfile
index f20a295d3..c98585e2a 100644
--- a/images/kube-webhook-certgen/rootfs/Dockerfile
+++ b/images/kube-webhook-certgen/rootfs/Dockerfile
@@ -23,6 +23,9 @@ RUN CGO_ENABLED=0 GOOS=linux GOARCH=${TARGETARCH} go build -a -o kube-webhook-ce
 FROM --platform=$BUILDPLATFORM gcr.io/distroless/static:nonroot
 ARG BUILDPLATFORM
 ARG TARGETARCH
+
+LABEL org.opencontainers.image.source=https://github.com/kubernetes/ingress-nginx
+
 WORKDIR /
 COPY --from=builder /workspace/kube-webhook-certgen /kube-webhook-certgen
 USER 65532:65532
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 024c0e873..daf44f52a 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -32,6 +32,8 @@ COPY --from=builder /usr/local /usr/local
 COPY --from=builder /opt /opt
 COPY --from=builder /etc/nginx /etc/nginx
 
+LABEL org.opencontainers.image.source=https://github.com/kubernetes/ingress-nginx
+
 RUN apk update \
   && apk upgrade \
   && apk add -U --no-cache \
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 161b6caf4..f47a46aad 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -125,4 +125,6 @@ RUN pip install "yamllint==$YAML_LINT_VERSION"
 # Install Yamale YAML schema validator
 RUN pip install "yamale==$YAMALE_VERSION"
 
+LABEL org.opencontainers.image.source=https://github.com/kubernetes/ingress-nginx
+
 WORKDIR $GOPATH

From dc36582389143872aa797438a00efe22ba923c57 Mon Sep 17 00:00:00 2001
From: Adrian <adrian.papusoi@gmail.com>
Date: Wed, 27 Dec 2023 00:54:00 +0100
Subject: [PATCH 1085/1641] change MODSECURITY_VERSION_LIB to 3.0.11 (#10800)

* feat: change MODSECURITY_VERSION_LIB to 3.0.11

* use sha commit instead of tag
---
 images/nginx/rootfs/build.sh | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 8bf372f21..cd319a0b9 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -59,8 +59,8 @@ export DATADOG_CPP_VERSION=1.3.7
 # Check for recent changes: https://github.com/SpiderLabs/ModSecurity-nginx/compare/v1.0.3...master
 export MODSECURITY_VERSION=1.0.3
 
-# Check for recent changes: https://github.com/SpiderLabs/ModSecurity/compare/v3.0.8...v3/master
-export MODSECURITY_LIB_VERSION=e9a7ba4a60be48f761e0328c6dfcc668d70e35a0
+# Check for recent changes: https://github.com/SpiderLabs/ModSecurity/compare/v3.0.11...v3/master
+export MODSECURITY_LIB_VERSION=bbde9381cbccb49ea73f6194b08b478adc53f3bc
 
 # Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.2...v3.3/master
 export OWASP_MODSECURITY_CRS_VERSION=v3.3.5

From c70f060e945d0ce61ab412bfe961b0bbdef6a68b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 27 Dec 2023 00:56:33 +0100
Subject: [PATCH 1086/1641] Bump github/codeql-action from 2.22.11 to 3.22.12
 (#10805)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.22.11 to 3.22.12.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Commits](https://github.com/github/codeql-action/compare/v2.22.11...v3.22.12)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index f14d9ff72..7bb2bf325 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -403,7 +403,7 @@ jobs:
           output: 'trivy-results.sarif'
       - name: Upload Trivy scan results to GitHub Security tab
         if: ${{ steps.filter-images.outputs.nginx-base == 'true' && always() }}
-        uses: github/codeql-action/upload-sarif@v3
+        uses: github/codeql-action/upload-sarif@v3.22.12
         with:
           sarif_file: 'trivy-results.sarif'
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index b031cf2d5..70b3c35b2 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@03e7845b7bfcd5e7fb63d1ae8c61b0e791134fab # v2.1.37
+        uses: github/codeql-action/upload-sarif@6f5223db54afb6bccb7b88162896588caa1f611b # v2.1.37
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 4ef96d4fa..9f3d81d8b 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@03e7845b7bfcd5e7fb63d1ae8c61b0e791134fab # v2.1.37
+        uses: github/codeql-action/upload-sarif@6f5223db54afb6bccb7b88162896588caa1f611b # v2.1.37
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 9ec84e2d43ab5a87d5483b6c998cb0ed4dd64724 Mon Sep 17 00:00:00 2001
From: Ben Porter <freedomben@protonmail.com>
Date: Tue, 26 Dec 2023 16:59:06 -0700
Subject: [PATCH 1087/1641] Fix up grammar in how-it-works.md (#10737)

Change this:

  "To prevent this situation to happening"

To this:

  "To prevent this situation from happening"

Co-authored-by: Benjamin Porter <FreedomBen@users.noreply.github.com>
---
 docs/how-it-works.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/how-it-works.md b/docs/how-it-works.md
index 4542921c7..c347c5a6e 100644
--- a/docs/how-it-works.md
+++ b/docs/how-it-works.md
@@ -60,7 +60,7 @@ In a relatively big cluster with frequently deploying apps this feature saves si
 
 Because the ingress controller works using the [synchronization loop pattern][1], it is applying the configuration for all matching objects. In case some Ingress objects have a broken configuration, for example a syntax error in the `nginx.ingress.kubernetes.io/configuration-snippet` annotation, the generated configuration becomes invalid, does not reload and hence no more ingresses will be taken into account.
 
-To prevent this situation to happen, the Ingress-Nginx Controller optionally exposes a [validating admission webhook server][8] to ensure the validity of incoming ingress objects.
+To prevent this situation from happening, the Ingress-Nginx Controller optionally exposes a [validating admission webhook server][8] to ensure the validity of incoming ingress objects.
 This webhook appends the incoming ingress objects to the list of ingresses, generates the configuration and calls nginx to ensure the configuration has no syntax errors.
 
 [0]: https://github.com/openresty/lua-nginx-module/pull/1259

From 7058b25e64dcd9daa7b5abad5fac7878c3fdf92a Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Thu, 28 Dec 2023 18:28:17 +0000
Subject: [PATCH 1088/1641] Bump download and upload artifact actions (#10810)

---
 .github/workflows/ci.yaml        | 16 ++++++++--------
 .github/workflows/scorecards.yml |  2 +-
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 7bb2bf325..3a5ba7230 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -135,7 +135,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
+        uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # v4.0.0
         with:
           name: docker.tar.gz
           path: docker.tar.gz
@@ -172,7 +172,7 @@ jobs:
           helm unittest charts/ingress-nginx -d
 
       - name: cache
-        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        uses: actions/download-artifact@f44cd7b40bfd40b6aa1cc1b9b5b7bf03d3c67110 # v4.1.0
         with:
           name: docker.tar.gz
 
@@ -241,7 +241,7 @@ jobs:
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: cache
-        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        uses: actions/download-artifact@f44cd7b40bfd40b6aa1cc1b9b5b7bf03d3c67110 # v4.1.0
         with:
           name: docker.tar.gz
 
@@ -265,7 +265,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports
-        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
+        uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # v4.0.0
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ matrix.k8s }}
@@ -289,7 +289,7 @@ jobs:
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: cache
-        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        uses: actions/download-artifact@f44cd7b40bfd40b6aa1cc1b9b5b7bf03d3c67110 # v4.1.0
         with:
           name: docker.tar.gz
 
@@ -314,7 +314,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports
-        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
+        uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # v4.0.0
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ matrix.k8s }}
@@ -340,7 +340,7 @@ jobs:
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: cache
-        uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+        uses: actions/download-artifact@f44cd7b40bfd40b6aa1cc1b9b5b7bf03d3c67110 # v4.1.0
         with:
           name: docker.tar.gz
 
@@ -365,7 +365,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports
-        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
+        uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # v4.0.0
         if: success() || failure()
         with:
           name: e2e-test-reports-chroot-${{ matrix.k8s }}
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 70b3c35b2..864207d22 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
+        uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # v4.0.0
         with:
           name: SARIF file
           path: results.sarif

From 27e2652033785416ea877b1cf6da6072e22d97c0 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sat, 30 Dec 2023 22:42:04 +0000
Subject: [PATCH 1089/1641] Fix upload artifact action (#10816)

---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 3a5ba7230..750de5203 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -317,7 +317,7 @@ jobs:
         uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # v4.0.0
         if: success() || failure()
         with:
-          name: e2e-test-reports-${{ matrix.k8s }}
+          name: e2e-test-reports-validations-${{ matrix.k8s }}
           path: 'test/junitreports/report*.xml'
 
 

From ba11062b2e5401918f6d034a57bf79c30fcfb1d6 Mon Sep 17 00:00:00 2001
From: Gerald Pape <ubergesundheit@users.noreply.github.com>
Date: Thu, 4 Jan 2024 15:35:21 +0100
Subject: [PATCH 1090/1641] Add ubergesundheit to helm maintainers and
 reviewers (#10822)

---
 OWNERS_ALIASES | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/OWNERS_ALIASES b/OWNERS_ALIASES
index 5423743db..44fc67d2e 100644
--- a/OWNERS_ALIASES
+++ b/OWNERS_ALIASES
@@ -28,11 +28,13 @@ aliases:
   - cpanato
   - Gacko
   - strongjz
+  - ubergesundheit
 
   ingress-nginx-helm-reviewers:
   - cpanato
   - Gacko
   - strongjz
+  - ubergesundheit
 
   ingress-nginx-docs-maintainers:
   - longwuyuan

From e8439b98c5306e1b56d6e67e9bdbd0d462cc9cda Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 4 Jan 2024 15:37:59 +0100
Subject: [PATCH 1091/1641] Bump github.com/prometheus/client_golang from
 1.17.0 to 1.18.0 (#10817)

Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.17.0 to 1.18.0.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.17.0...v1.18.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 0868653cf..40e593418 100644
--- a/go.mod
+++ b/go.mod
@@ -17,7 +17,7 @@ require (
 	github.com/onsi/ginkgo/v2 v2.13.1
 	github.com/opencontainers/runc v1.1.10
 	github.com/pmezard/go-difflib v1.0.0
-	github.com/prometheus/client_golang v1.17.0
+	github.com/prometheus/client_golang v1.18.0
 	github.com/prometheus/client_model v0.5.0
 	github.com/prometheus/common v0.45.0
 	github.com/spf13/cobra v1.8.0
@@ -94,7 +94,7 @@ require (
 	github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
-	github.com/prometheus/procfs v0.11.1 // indirect
+	github.com/prometheus/procfs v0.12.0 // indirect
 	github.com/sergi/go-diff v1.1.0 // indirect
 	github.com/sirupsen/logrus v1.9.0 // indirect
 	github.com/xlab/treeprint v1.1.0 // indirect
diff --git a/go.sum b/go.sum
index bb59dc862..e47cabbfe 100644
--- a/go.sum
+++ b/go.sum
@@ -306,8 +306,8 @@ github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXP
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
-github.com/prometheus/client_golang v1.17.0 h1:rl2sfwZMtSthVU752MqfjQozy7blglC+1SOtjMAMh+Q=
-github.com/prometheus/client_golang v1.17.0/go.mod h1:VeL+gMmOAxkS2IqfCq0ZmHSL+LjWfWDUmp1mBz9JgUY=
+github.com/prometheus/client_golang v1.18.0 h1:HzFfmkOzH5Q8L8G+kSJKUx5dtG87sewO+FoDDqP5Tbk=
+github.com/prometheus/client_golang v1.18.0/go.mod h1:T+GXkCk5wSJyOqMIzVgvvjFDlkOQntgjkJWKrN5txjA=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
@@ -326,8 +326,8 @@ github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsT
 github.com/prometheus/procfs v0.1.3/go.mod h1:lV6e/gmhEcM9IjHGsFOCxxuZ+z1YqCvr4OA4YeYWdaU=
 github.com/prometheus/procfs v0.6.0/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
 github.com/prometheus/procfs v0.7.3/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
-github.com/prometheus/procfs v0.11.1 h1:xRC8Iq1yyca5ypa9n1EZnWZkt7dwcoRPQwX/5gwaUuI=
-github.com/prometheus/procfs v0.11.1/go.mod h1:eesXgaPo1q7lBpVMoMy0ZOFTth9hBn4W/y0/p/ScXhY=
+github.com/prometheus/procfs v0.12.0 h1:jluTpSng7V9hY0O2R9DzzJHYb2xULk9VTR1V1R/k6Bo=
+github.com/prometheus/procfs v0.12.0/go.mod h1:pcuDEFsWDnvcgNzo4EEweacyhjeA9Zk3cnaOZAZEfOo=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
 github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTEfhy4qGm1nDQc=
 github.com/rogpeppe/go-internal v1.8.0/go.mod h1:WmiCO8CzOY8rg0OYDC4/i/2WRWAB6poM+XZ2dLUbcbE=

From 5a72a42235d3fb81edd5ee206667366126c611a4 Mon Sep 17 00:00:00 2001
From: Lucien Boix <lucien.boix@gmail.com>
Date: Thu, 4 Jan 2024 09:40:32 -0500
Subject: [PATCH 1092/1641] Update multiple-ingress.md (#10704)

Fixing a typo that can mislead people : it looks like the prefix k8s.io/ is automatically stripped from ingress-class parameter value (which is not the case)
---
 docs/user-guide/multiple-ingress.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/multiple-ingress.md b/docs/user-guide/multiple-ingress.md
index fca93ee65..5c1e26c7c 100644
--- a/docs/user-guide/multiple-ingress.md
+++ b/docs/user-guide/multiple-ingress.md
@@ -23,7 +23,7 @@ spec:
              - /nginx-ingress-controller
              - '--election-id=ingress-controller-leader'
              - '--controller-class=k8s.io/internal-ingress-nginx'
-             - '--ingress-class=k8s.io/internal-nginx'
+             - '--ingress-class=internal-nginx'
             ...
 ```
 

From 05d68a15127b437891c0250f0d7cf7b5b9f84b92 Mon Sep 17 00:00:00 2001
From: Philipp Sauter <46172817+sauterp@users.noreply.github.com>
Date: Thu, 4 Jan 2024 15:56:57 +0100
Subject: [PATCH 1093/1641] annotation validation: validate regex in common
 name annotation (#10657)

* fix common name validation

* add tests
---
 internal/ingress/annotations/authtls/main.go  |  4 +-
 .../ingress/annotations/parser/validators.go  | 14 +++++
 .../annotations/parser/validators_test.go     | 56 +++++++++++++++++++
 3 files changed, 71 insertions(+), 3 deletions(-)

diff --git a/internal/ingress/annotations/authtls/main.go b/internal/ingress/annotations/authtls/main.go
index adedb084a..e288d82c9 100644
--- a/internal/ingress/annotations/authtls/main.go
+++ b/internal/ingress/annotations/authtls/main.go
@@ -41,9 +41,7 @@ const (
 )
 
 var (
-	regexChars            = regexp.QuoteMeta(`()|=`)
 	authVerifyClientRegex = regexp.MustCompile(`on|off|optional|optional_no_ca`)
-	commonNameRegex       = regexp.MustCompile(`^CN=[/\-.\_\~a-zA-Z0-9` + regexChars + `]*$`)
 	redirectRegex         = regexp.MustCompile(`^((https?://)?[A-Za-z0-9\-.]*(:\d+)?/[A-Za-z0-9\-.]*)?$`)
 )
 
@@ -81,7 +79,7 @@ var authTLSAnnotations = parser.Annotation{
 			Documentation: `This annotation defines if the received certificates should be passed or not to the upstream server in the header "ssl-client-cert"`,
 		},
 		annotationAuthTLSMatchCN: {
-			Validator:     parser.ValidateRegex(commonNameRegex, true),
+			Validator:     parser.CommonNameAnnotationValidator,
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskHigh,
 			Documentation: `This annotation adds a sanity check for the CN of the client certificate that is sent over using a string / regex starting with "CN="`,
diff --git a/internal/ingress/annotations/parser/validators.go b/internal/ingress/annotations/parser/validators.go
index 9a46bc840..64a9d133d 100644
--- a/internal/ingress/annotations/parser/validators.go
+++ b/internal/ingress/annotations/parser/validators.go
@@ -117,6 +117,20 @@ func ValidateRegex(regex *regexp.Regexp, removeSpace bool) AnnotationValidator {
 	}
 }
 
+// CommonNameAnnotationValidator checks whether the annotation value starts with
+// 'CN=' and is followed by a valid regex.
+func CommonNameAnnotationValidator(s string) error {
+	if !strings.HasPrefix(s, "CN=") {
+		return fmt.Errorf("value %s is not a valid Common Name annotation: missing prefix 'CN='", s)
+	}
+
+	if _, err := regexp.Compile(s[3:]); err != nil {
+		return fmt.Errorf("value %s is not a valid regex: %w", s, err)
+	}
+
+	return nil
+}
+
 // ValidateOptions receives an array of valid options that can be the value of annotation.
 // If no valid option is found, it will return an error
 func ValidateOptions(options []string, caseSensitive, trimSpace bool) AnnotationValidator {
diff --git a/internal/ingress/annotations/parser/validators_test.go b/internal/ingress/annotations/parser/validators_test.go
index e7aeb15ca..8523232a2 100644
--- a/internal/ingress/annotations/parser/validators_test.go
+++ b/internal/ingress/annotations/parser/validators_test.go
@@ -307,3 +307,59 @@ func TestCheckAnnotationRisk(t *testing.T) {
 		})
 	}
 }
+
+func TestCommonNameAnnotationValidator(t *testing.T) {
+	tests := []struct {
+		name       string
+		annotation string
+		wantErr    bool
+	}{
+		{
+			name:       "correct example",
+			annotation: `CN=(my\.common\.name)`,
+			wantErr:    false,
+		},
+		{
+			name:       "no CN= prefix",
+			annotation: `(my\.common\.name)`,
+			wantErr:    true,
+		},
+		{
+			name:       "invalid prefix",
+			annotation: `CN(my\.common\.name)`,
+			wantErr:    true,
+		},
+		{
+			name:       "invalid regex",
+			annotation: `CN=(my\.common\.name]`,
+			wantErr:    true,
+		},
+		{
+			name:       "wildcard regex",
+			annotation: `CN=(my\..*\.name)`,
+			wantErr:    false,
+		},
+		{
+			name:       "somewhat complex regex",
+			annotation: "CN=(my\\.app\\.dev|.*\\.bbb\\.aaaa\\.tld)",
+			wantErr:    false,
+		},
+		{
+			name:       "another somewhat complex regex",
+			annotation: `CN=(my-app.*\.c\.defg\.net|other.app.com)`,
+			wantErr:    false,
+		},
+		{
+			name:       "nested parenthesis regex",
+			annotation: `CN=(api-one\.(asdf)?qwer\.webpage\.organization\.org)`,
+			wantErr:    false,
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			if err := CommonNameAnnotationValidator(tt.annotation); (err != nil) != tt.wantErr {
+				t.Errorf("CommonNameAnnotationValidator() error = %v, wantErr %v", err, tt.wantErr)
+			}
+		})
+	}
+}

From 1bc745619d91b690c8985bbc16097e9fe804d2d2 Mon Sep 17 00:00:00 2001
From: kbweave <106193439+kbweave@users.noreply.github.com>
Date: Fri, 5 Jan 2024 07:50:34 -0700
Subject: [PATCH 1094/1641] Include SECLEVEL and STRENGTH as part of ssl-cipher
 list validation (#10754)

---
 .../ingress/annotations/sslcipher/main.go     |  3 ++-
 .../annotations/sslcipher/main_test.go        |  4 ++++
 test/e2e/annotations/sslciphers.go            | 23 +++++++++++++++++++
 3 files changed, 29 insertions(+), 1 deletion(-)

diff --git a/internal/ingress/annotations/sslcipher/main.go b/internal/ingress/annotations/sslcipher/main.go
index 685ef90bf..7a282d0a0 100644
--- a/internal/ingress/annotations/sslcipher/main.go
+++ b/internal/ingress/annotations/sslcipher/main.go
@@ -32,7 +32,8 @@ const (
 )
 
 // Should cover something like "ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP"
-var regexValidSSLCipher = regexp.MustCompile(`^[A-Za-z0-9!:+\-]*$`)
+// (?:@STRENGTH) is included twice so it can appear before or after @SECLEVEL=n
+var regexValidSSLCipher = regexp.MustCompile(`^(?:(?:[A-Za-z0-9!:+\-])*(?:@STRENGTH)*(?:@SECLEVEL=[0-5])*(?:@STRENGTH)*)*$`)
 
 var sslCipherAnnotations = parser.Annotation{
 	Group: "backend",
diff --git a/internal/ingress/annotations/sslcipher/main_test.go b/internal/ingress/annotations/sslcipher/main_test.go
index 20cb4d7af..f1675d4c7 100644
--- a/internal/ingress/annotations/sslcipher/main_test.go
+++ b/internal/ingress/annotations/sslcipher/main_test.go
@@ -42,6 +42,10 @@ func TestParse(t *testing.T) {
 		expectErr   bool
 	}{
 		{map[string]string{annotationSSLCiphers: "ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP"}, Config{"ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP", ""}, false},
+		{map[string]string{annotationSSLCiphers: "ALL:!aNULL:!EXPORT56@SECLEVEL=2:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP"}, Config{"ALL:!aNULL:!EXPORT56@SECLEVEL=2:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP", ""}, false},
+		{map[string]string{annotationSSLCiphers: "ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP@STRENGTH"}, Config{"ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP@STRENGTH", ""}, false},
+		{map[string]string{annotationSSLCiphers: "ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP@STRENGTH@SECLEVEL=3"}, Config{"ALL:!aNULL:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP@STRENGTH@SECLEVEL=3", ""}, false},
+		{map[string]string{annotationSSLCiphers: "ALL:!aNULL:!EXPORT56:RC4+RSA@STRENGTH:+HIGH@SECLEVEL=5:+MEDIUM:+LOW:+SSLv2:+EXP"}, Config{"ALL:!aNULL:!EXPORT56:RC4+RSA@STRENGTH:+HIGH@SECLEVEL=5:+MEDIUM:+LOW:+SSLv2:+EXP", ""}, false},
 		{
 			map[string]string{annotationSSLCiphers: "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256"},
 			Config{"ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256", ""},
diff --git a/test/e2e/annotations/sslciphers.go b/test/e2e/annotations/sslciphers.go
index 58010421d..aece7fc41 100644
--- a/test/e2e/annotations/sslciphers.go
+++ b/test/e2e/annotations/sslciphers.go
@@ -54,4 +54,27 @@ var _ = framework.DescribeAnnotation("ssl-ciphers", func() {
 			Expect().
 			Status(http.StatusOK)
 	})
+
+	ginkgo.It("should keep ssl ciphers", func() {
+		host := "ciphers.foo.com"
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/ssl-ciphers":               "ALL:!aNULL:!EXPORT56:RC4+RSA@STRENGTH:+HIGH@SECLEVEL=0:+MEDIUM:+LOW:+SSLv2:+EXP",
+			"nginx.ingress.kubernetes.io/ssl-prefer-server-ciphers": "true",
+		}
+
+		ing := framework.NewSingleIngress(host, "/something", host, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, "ssl_ciphers ALL:!aNULL:!EXPORT56:RC4+RSA@STRENGTH:+HIGH@SECLEVEL=0:+MEDIUM:+LOW:+SSLv2:+EXP;") &&
+					strings.Contains(server, "ssl_prefer_server_ciphers on;")
+			})
+		f.HTTPTestClient().
+			GET("/something").
+			WithURL(f.GetURL(framework.HTTPS)).
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+	})
 })

From 671baf1a68d82dd45622859bc80e8d6c4bca5c86 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Jan 2024 13:41:19 +0100
Subject: [PATCH 1095/1641] Bump github.com/opencontainers/runc from 1.1.10 to
 1.1.11 (#10829)

Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.10 to 1.1.11.
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/v1.1.11/CHANGELOG.md)
- [Commits](https://github.com/opencontainers/runc/compare/v1.1.10...v1.1.11)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 40e593418..1c2571abc 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo/v2 v2.13.1
-	github.com/opencontainers/runc v1.1.10
+	github.com/opencontainers/runc v1.1.11
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.18.0
 	github.com/prometheus/client_model v0.5.0
diff --git a/go.sum b/go.sum
index e47cabbfe..8b78c8cf2 100644
--- a/go.sum
+++ b/go.sum
@@ -289,8 +289,8 @@ github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7J
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.29.0 h1:KIA/t2t5UBzoirT4H9tsML45GEbo3ouUnBHsCfD2tVg=
 github.com/onsi/gomega v1.29.0/go.mod h1:9sxs+SwGrKI0+PWe4Fxa9tFQQBG5xSsSbMXOI8PPpoQ=
-github.com/opencontainers/runc v1.1.10 h1:EaL5WeO9lv9wmS6SASjszOeQdSctvpbu0DdBQBizE40=
-github.com/opencontainers/runc v1.1.10/go.mod h1:+/R6+KmDlh+hOO8NkjmgkG9Qzvypzk0yXxAPYYR65+M=
+github.com/opencontainers/runc v1.1.11 h1:9LjxyVlE0BPMRP2wuQDRlHV4941Jp9rc3F0+YKimopA=
+github.com/opencontainers/runc v1.1.11/go.mod h1:S+lQwSfncpBha7XTy/5lBwWgm5+y5Ma/O44Ekby9FK8=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=

From 07b50e635ee5c901aa659c7fc31ef6c856358676 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Jan 2024 13:43:34 +0100
Subject: [PATCH 1096/1641] Bump aquasecurity/trivy-action from 0.16.0 to
 0.16.1 (#10830)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.16.0 to 0.16.1.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/91713af97dc80187565512baba96e4364e983601...d43c1f16c00cfd3978dde6c07f4bbcf9eb6993ca)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 9f3d81d8b..b81f8e35a 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@91713af97dc80187565512baba96e4364e983601 # v0.16.0
+        uses: aquasecurity/trivy-action@d43c1f16c00cfd3978dde6c07f4bbcf9eb6993ca # v0.16.1
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'

From 00db204d8662c9028507056eafa082fc7e752180 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Tobias=20M=C3=BChl?= <tobiasmuehl@users.noreply.github.com>
Date: Fri, 12 Jan 2024 20:00:44 +0700
Subject: [PATCH 1097/1641] Fix OpenTelemetry docs typo (#10836)

---
 docs/user-guide/third-party-addons/opentelemetry.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/third-party-addons/opentelemetry.md b/docs/user-guide/third-party-addons/opentelemetry.md
index a4bd8d060..a38c9c56f 100644
--- a/docs/user-guide/third-party-addons/opentelemetry.md
+++ b/docs/user-guide/third-party-addons/opentelemetry.md
@@ -282,7 +282,7 @@ for common annotations and configurations:
 | Legacy                                           | OpenTelemetry                                    |
 |--------------------------------------------------|--------------------------------------------------|
 | `nginx.ingress.kubernetes.io/enable-opentracing` | `nginx.ingress.kubernetes.io/enable-opentelemetry` |
-| `opentracing-trust-incoming-span`                | `opentracing-trust-incoming-span`                  |
+| `opentracing-trust-incoming-span`                | `opentelemetry-trust-incoming-span`                  |
 
 ### Configs
 

From c9a3571556b0584e84c1b2d461a81fe1d05cd6fa Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sat, 13 Jan 2024 13:15:35 +0000
Subject: [PATCH 1098/1641] Reuse workflow CI (#10826)

* Reuse workflow CI

* Simplify images Makefiles
---
 .github/workflows/ci.yaml                     | 286 ++----------------
 .github/workflows/golangci-lint.yml           |   9 +-
 .github/workflows/images.yaml                 | 173 +++++++++++
 .github/workflows/junit-reports.yaml          |   1 +
 .github/workflows/zz-tmpl-images.yaml         |  82 +++++
 .github/workflows/zz-tmpl-k8s-e2e.yaml        |  57 ++++
 go.work.sum                                   |   2 +-
 images/{kube-webhook-certgen => }/Makefile    |  46 ++-
 images/cfssl/Makefile                         |  57 ----
 images/cfssl/TAG                              |   1 +
 images/cfssl/cloudbuild.yaml                  |   2 +-
 images/cfssl/rootfs/Dockerfile                |   1 -
 images/custom-error-pages/Makefile            |  59 ----
 images/custom-error-pages/TAG                 |   1 +
 images/custom-error-pages/cloudbuild.yaml     |   2 +-
 images/e2e-test-echo/EXTRAARGS                |   1 +
 images/e2e-test-echo/TAG                      |   1 +
 .../{echo => e2e-test-echo}/rootfs/Dockerfile |   0
 .../{echo => e2e-test-echo}/rootfs/nginx.conf |   0
 images/echo/Makefile                          |  61 ----
 images/echo/cloudbuild.yaml                   |  17 --
 images/ext-auth-example-authsvc/Makefile      |  57 ----
 images/ext-auth-example-authsvc/TAG           |   1 +
 .../ext-auth-example-authsvc/cloudbuild.yaml  |   2 +-
 images/fastcgi-helloserver/Makefile           |  59 ----
 images/fastcgi-helloserver/TAG                |   1 +
 images/fastcgi-helloserver/cloudbuild.yaml    |   2 +-
 images/go-grpc-greeter-server/Makefile        |  57 ----
 images/go-grpc-greeter-server/TAG             |   1 +
 images/go-grpc-greeter-server/cloudbuild.yaml |   2 +-
 images/httpbun/Makefile                       |  57 ----
 images/httpbun/TAG                            |   1 +
 images/httpbun/cloudbuild.yaml                |   2 +-
 images/kube-webhook-certgen/TAG               |   1 +
 images/kube-webhook-certgen/cloudbuild.yaml   |   2 +-
 images/opentelemetry/Makefile                 |  59 ----
 images/opentelemetry/TAG                      |   1 +
 images/opentelemetry/cloudbuild.yaml          |   2 +-
 images/test-runner/TAG                        |   1 +
 39 files changed, 385 insertions(+), 782 deletions(-)
 create mode 100644 .github/workflows/images.yaml
 create mode 100644 .github/workflows/zz-tmpl-images.yaml
 create mode 100644 .github/workflows/zz-tmpl-k8s-e2e.yaml
 rename images/{kube-webhook-certgen => }/Makefile (60%)
 delete mode 100644 images/cfssl/Makefile
 create mode 100644 images/cfssl/TAG
 delete mode 100644 images/custom-error-pages/Makefile
 create mode 100644 images/custom-error-pages/TAG
 create mode 100644 images/e2e-test-echo/EXTRAARGS
 create mode 100644 images/e2e-test-echo/TAG
 rename images/{echo => e2e-test-echo}/rootfs/Dockerfile (100%)
 rename images/{echo => e2e-test-echo}/rootfs/nginx.conf (100%)
 delete mode 100644 images/echo/Makefile
 delete mode 100644 images/echo/cloudbuild.yaml
 delete mode 100644 images/ext-auth-example-authsvc/Makefile
 create mode 100644 images/ext-auth-example-authsvc/TAG
 delete mode 100644 images/fastcgi-helloserver/Makefile
 create mode 100644 images/fastcgi-helloserver/TAG
 delete mode 100644 images/go-grpc-greeter-server/Makefile
 create mode 100644 images/go-grpc-greeter-server/TAG
 delete mode 100644 images/httpbun/Makefile
 create mode 100644 images/httpbun/TAG
 create mode 100644 images/kube-webhook-certgen/TAG
 delete mode 100644 images/opentelemetry/Makefile
 create mode 100644 images/opentelemetry/TAG
 create mode 100644 images/test-runner/TAG

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 750de5203..14dabf580 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -8,6 +8,7 @@ on:
       - 'docs/**'
       - 'deploy/**'
       - '**.md'
+      - 'images/**' # Images changes should be tested on their own workflow
 
   push:
     branches:
@@ -16,6 +17,7 @@ on:
       - 'docs/**'
       - 'deploy/**'
       - '**.md'
+      - 'images/**' # Images changes should be tested on their own workflow
 
   workflow_dispatch:
     inputs:
@@ -86,7 +88,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: changes
     if: |
-      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.charts == 'true') || ${{ inputs.run_e2e }}
+      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.charts == 'true')
 
     steps:
       - name: Checkout
@@ -147,7 +149,7 @@ jobs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.charts == 'true') || ${{ inputs.run_e2e }}
+      (needs.changes.outputs.charts == 'true')
 
     strategy:
       matrix:
@@ -225,296 +227,44 @@ jobs:
 
   kubernetes:
     name: Kubernetes
-    runs-on: ubuntu-latest
     needs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.go == 'true') || ${{ inputs.run_e2e }}
-
+      (needs.changes.outputs.go == 'true')
     strategy:
       matrix:
         k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
-
-    steps:
-      - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-
-      - name: cache
-        uses: actions/download-artifact@f44cd7b40bfd40b6aa1cc1b9b5b7bf03d3c67110 # v4.1.0
-        with:
-          name: docker.tar.gz
-
-      - name: Create Kubernetes ${{ matrix.k8s }} cluster
-        id: kind
-        run: |
-          kind create cluster --image=kindest/node:${{ matrix.k8s }} --config test/e2e/kind.yaml
-
-      - name: Load images from cache
-        run: |
-          echo "loading docker images..."
-          gzip -dc docker.tar.gz | docker load
-
-      - name: Run e2e tests
-        env:
-          KIND_CLUSTER_NAME: kind
-          SKIP_CLUSTER_CREATION: true
-          SKIP_IMAGE_CREATION: true
-        run: |
-          kind get kubeconfig > $HOME/.kube/kind-config-kind
-          make kind-e2e-test
-
-      - name: Upload e2e junit-reports
-        uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # v4.0.0
-        if: success() || failure()
-        with:
-          name: e2e-test-reports-${{ matrix.k8s }}
-          path: 'test/junitreports/report*.xml'
+    uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
+    with:
+      k8s-version: ${{ matrix.k8s }}
 
   kubernetes-validations:
     name: Kubernetes with Validations
-    runs-on: ubuntu-latest
     needs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.go == 'true') || ${{ inputs.run_e2e }}
-
+      (needs.changes.outputs.go == 'true')
     strategy:
       matrix:
         k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
-
-    steps:
-      - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-
-      - name: cache
-        uses: actions/download-artifact@f44cd7b40bfd40b6aa1cc1b9b5b7bf03d3c67110 # v4.1.0
-        with:
-          name: docker.tar.gz
-
-      - name: Create Kubernetes ${{ matrix.k8s }} cluster
-        id: kind
-        run: |
-          kind create cluster --image=kindest/node:${{ matrix.k8s }} --config test/e2e/kind.yaml
-
-      - name: Load images from cache
-        run: |
-          echo "loading docker images..."
-          gzip -dc docker.tar.gz | docker load
-
-      - name: Run e2e tests
-        env:
-          KIND_CLUSTER_NAME: kind
-          SKIP_CLUSTER_CREATION: true
-          SKIP_IMAGE_CREATION: true
-          ENABLE_VALIDATIONS: true
-        run: |
-          kind get kubeconfig > $HOME/.kube/kind-config-kind
-          make kind-e2e-test
-
-      - name: Upload e2e junit-reports
-        uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # v4.0.0
-        if: success() || failure()
-        with:
-          name: e2e-test-reports-validations-${{ matrix.k8s }}
-          path: 'test/junitreports/report*.xml'
-
+    uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
+    with:
+      k8s-version: ${{ matrix.k8s }}
+      variation: "VALIDATIONS"
 
   kubernetes-chroot:
     name: Kubernetes chroot
-    runs-on: ubuntu-latest
     needs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.go == 'true') || ${{ inputs.run_e2e }}
-
+      (needs.changes.outputs.go == 'true')
     strategy:
       matrix:
         k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
-
-    steps:
-
-      - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-
-      - name: cache
-        uses: actions/download-artifact@f44cd7b40bfd40b6aa1cc1b9b5b7bf03d3c67110 # v4.1.0
-        with:
-          name: docker.tar.gz
-
-      - name: Create Kubernetes ${{ matrix.k8s }} cluster
-        id: kind
-        run: |
-          kind create cluster --image=kindest/node:${{ matrix.k8s }} --config test/e2e/kind.yaml
-
-      - name: Load images from cache
-        run: |
-          echo "loading docker images..."
-          gzip -dc docker.tar.gz | docker load
-
-      - name: Run e2e tests
-        env:
-          KIND_CLUSTER_NAME: kind
-          SKIP_CLUSTER_CREATION: true
-          SKIP_IMAGE_CREATION: true
-          IS_CHROOT: true
-        run: |
-          kind get kubeconfig > $HOME/.kube/kind-config-kind
-          make kind-e2e-test
-
-      - name: Upload e2e junit-reports
-        uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # v4.0.0
-        if: success() || failure()
-        with:
-          name: e2e-test-reports-chroot-${{ matrix.k8s }}
-          path: 'test/junitreports/report*.xml'
-
-  test-nginx-image-build:
-    permissions:
-      contents: read  # for dorny/paths-filter to fetch a list of changed files
-      pull-requests: read  # for dorny/paths-filter to read pull requests
-    runs-on: ubuntu-latest
-    env:
-      PLATFORMS: linux/amd64,linux/arm64
-    steps:
-      - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-
-      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
-        id: filter-images
-        with:
-          token: ${{ secrets.GITHUB_TOKEN }}
-          filters: |
-            nginx-base:
-              - 'images/nginx/**'
-      - name: nginx-base-image
-        if: ${{ steps.filter-images.outputs.nginx-base == 'true' }}
-        run: |
-          cd images/nginx/rootfs && docker build -t docker.io/nginx-test-workflow/nginx:${{ github.sha }} .
-      - name: Run Trivy on NGINX Image
-        if: ${{ steps.filter-images.outputs.nginx-base == 'true' }}
-        uses: aquasecurity/trivy-action@master
-        with:
-          image-ref: 'docker.io/nginx-test-workflow/nginx:${{ github.sha }}'
-          format: 'sarif'
-          ignore-unfixed: true
-          output: 'trivy-results.sarif'
-      - name: Upload Trivy scan results to GitHub Security tab
-        if: ${{ steps.filter-images.outputs.nginx-base == 'true' && always() }}
-        uses: github/codeql-action/upload-sarif@v3.22.12
-        with:
-          sarif_file: 'trivy-results.sarif'
-
-
-  test-image-build:
-    permissions:
-      contents: read  # for dorny/paths-filter to fetch a list of changed files
-      pull-requests: read  # for dorny/paths-filter to read pull requests
-    runs-on: ubuntu-latest
-    env:
-      PLATFORMS: linux/amd64,linux/arm64
-    steps:
-      - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-
-      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
-        id: filter-images
-        with:
-          token: ${{ secrets.GITHUB_TOKEN }}
-          filters: |
-            custom-error-pages:
-              - 'images/custom-error-pages/**'
-            cfssl:
-              - 'images/cfssl/**'
-            fastcgi-helloserver:
-              - 'images/fastcgi-helloserver/**'
-            echo:
-              - 'images/echo/**'
-            go-grpc-greeter-server:
-              - 'images/go-grpc-greeter-server/**'
-            httpbun:
-              - 'images/httpbun/**'
-            kube-webhook-certgen:
-              - 'images/kube-webhook-certgen/**'
-            ext-auth-example-authsvc:
-              - 'images/ext-auth-example-authsvc/**'
-      - name: custom-error-pages image build
-        if: ${{ steps.filter-images.outputs.custom-error-pages == 'true' }}
-        run: |
-          cd images/custom-error-pages && make build
-      - name: cfssl image build
-        if: ${{ steps.filter-images.outputs.cfssl == 'true' }}
-        run: |
-          cd images/cfssl && make build
-      - name: fastcgi-helloserver
-        if: ${{ steps.filter-images.outputs.fastcgi-helloserver == 'true' }}
-        run: |
-          cd images/fastcgi-helloserver && make build
-      - name: echo image build
-        if: ${{ steps.filter-images.outputs.echo == 'true' }}
-        run: |
-          cd images/echo && make build
-      - name: go-grpc-greeter-server image build
-        if: ${{ steps.filter-images.outputs.go-grpc-greeter-server == 'true' }}
-        run: |
-          cd images/go-grpc-greeter-server && make build
-      - name: httpbun image build
-        if: ${{ steps.filter-images.outputs.httpbin == 'true' }}
-        run: |
-          cd images/httpbun && make build
-      - name: kube-webhook-certgen image build
-        if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        run: |
-          cd images/kube-webhook-certgen && make build
-      - name: ext-auth-example-authsvc
-        if: ${{ steps.filter-images.outputs.ext-auth-example-authsvc == 'true' }}
-        run: |
-          cd images/ext-auth-example-authsvc && make build
-
-  test-image:
-    permissions:
-      contents: read  # for dorny/paths-filter to fetch a list of changed files
-      pull-requests: read  # for dorny/paths-filter to read pull requests
-
-    runs-on: ubuntu-latest
-
-    env:
-      PLATFORMS: linux/amd64
-
-    strategy:
-      matrix:
-        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
-
-    steps:
-      - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-
-      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
-        id: filter-images
-        with:
-          token: ${{ secrets.GITHUB_TOKEN }}
-          filters: |
-            kube-webhook-certgen:
-              - 'images/kube-webhook-certgen/**'
-
-      - name: Create Kubernetes cluster
-        id: kind
-        if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        run: |
-          kind create cluster --image=kindest/node:${{ matrix.k8s }}
-
-      - name: Set up Go
-        id: go
-        if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
-        with:
-          go-version: '1.21.5'
-          check-latest: true
-
-      - name: kube-webhook-certgen image build
-        if: ${{ steps.filter-images.outputs.kube-webhook-certgen == 'true' }}
-        run: |
-          cd images/kube-webhook-certgen && make test test-e2e
-
+    uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
+    with:
+      k8s-version: ${{ matrix.k8s }}
+      variation: "CHROOT"
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 9cfb43a96..0a856adeb 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -2,13 +2,10 @@ name: golangci-lint
 
 on:
   pull_request:
-  push:
     branches:
-      - main
-    paths-ignore:
-      - 'docs/**'
-      - 'deploy/**'
-      - '**.md'
+      - "*"
+    paths:
+      - '**/*.go'
 
 permissions:
   contents: read
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
new file mode 100644
index 000000000..42921e5fa
--- /dev/null
+++ b/.github/workflows/images.yaml
@@ -0,0 +1,173 @@
+name: Container Images
+
+on:
+  pull_request:
+    branches:
+      - "*"
+    paths:
+      - 'images/**'
+
+  push:
+    branches:
+      - main
+    paths:
+      - 'images/**'
+
+permissions:
+  contents: write
+  packages: write
+
+env:
+  PLATFORMS: linux/amd64
+
+jobs:
+  changes:
+    permissions:
+      contents: read  # for dorny/paths-filter to fetch a list of changed files
+      pull-requests: read  # for dorny/paths-filter to read pull requests
+    runs-on: ubuntu-latest
+    outputs:
+      custom-error-pages: ${{ steps.filter.outputs.custom-error-pages }}
+      cfssl: ${{ steps.filter.outputs.cfssl }}
+      fastcgi-helloserver: ${{ steps.filter.outputs.fastcgi-helloserver }}
+      e2e-test-echo: ${{ steps.filter.outputs.e2e-test-echo }}
+      go-grpc-greeter-server: ${{ steps.filter.outputs.go-grpc-greeter-server }}
+      httpbun: ${{ steps.filter.outputs.httpbun }}
+      kube-webhook-certgen: ${{ steps.filter.outputs.kube-webhook-certgen }}
+      ext-auth-example-authsvc: ${{ steps.filter.outputs.ext-auth-example-authsvc }}
+      nginx: ${{ steps.filter.outputs.nginx }}
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
+        id: filter
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+          filters: |
+            custom-error-pages:
+              - 'images/custom-error-pages/**'
+            cfssl:
+              - 'images/cfssl/**'
+            fastcgi-helloserver:
+              - 'images/fastcgi-helloserver/**'
+            e2e-test-echo:
+              - 'images/e2e-test-echo/**'
+            go-grpc-greeter-server:
+              - 'images/go-grpc-greeter-server/**'
+            httpbun:
+              - 'images/httpbun/**'
+            kube-webhook-certgen:
+              - 'images/kube-webhook-certgen/**'
+            ext-auth-example-authsvc:
+              - 'images/ext-auth-example-authsvc/**'
+            nginx:
+              - 'images/nginx/**'
+ 
+  #### TODO: Make the below jobs 'less dumb' and use the job name as parameter (the github.job context does not work here)
+  cfssl:
+    needs: changes
+    if: |
+      (needs.changes.outputs.cfssl == 'true')
+    uses: ./.github/workflows/zz-tmpl-images.yaml
+    with:
+      name: cfssl
+
+  custom-error-pages:
+    needs: changes
+    if: |
+      (needs.changes.outputs.custom-error-pages == 'true')
+    uses: ./.github/workflows/zz-tmpl-images.yaml
+    with:
+      name: custom-error-pages
+
+  e2e-test-echo:
+    needs: changes
+    if: |
+      (needs.changes.outputs.e2e-test-echo == 'true')
+    uses: ./.github/workflows/zz-tmpl-images.yaml
+    with:
+      name: e2e-test-echo
+
+  ext-auth-example-authsvc:
+    needs: changes
+    if: |
+      (needs.changes.outputs.ext-auth-example-authsvc == 'true')
+    uses: ./.github/workflows/zz-tmpl-images.yaml
+    with:
+      name: ext-auth-example-authsvc
+
+  fastcgi-helloserver:
+    needs: changes
+    if: |
+      (needs.changes.outputs.fastcgi-helloserver == 'true')
+    uses: ./.github/workflows/zz-tmpl-images.yaml
+    with:
+      name: fastcgi-helloserver
+
+  go-grpc-greeter-server:
+    needs: changes
+    if: |
+      (needs.changes.outputs.go-grpc-greeter-server == 'true')
+    uses: ./.github/workflows/zz-tmpl-images.yaml
+    with:
+      name: go-grpc-greeter-server
+
+  httpbun:
+    needs: changes
+    if: |
+      (needs.changes.outputs.httpbun == 'true')
+    uses: ./.github/workflows/zz-tmpl-images.yaml
+    with:
+      name: httpbun
+
+  kube-webhook-certgen:
+    runs-on: ubuntu-latest
+    needs: changes
+    if: |
+      (needs.changes.outputs.kube-webhook-certgen == 'true')
+    strategy:
+      matrix:
+        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
+    steps:
+    - name: Checkout
+      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+    - name: Set up Go
+      id: go
+      uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
+      with:
+        go-version: '1.21.5'
+        check-latest: true
+    - name: image build
+      run: |
+        cd images/ && make NAME=kube-webhook-certgen build
+    - name: Create Kubernetes cluster
+      id: kind
+      run: |
+        kind create cluster --image=kindest/node:${{ matrix.k8s }}
+    - name: image test
+      run: |
+        cd images/ && make NAME=kube-webhook-certgen test test-e2e
+
+  nginx:
+    runs-on: ubuntu-latest
+    needs: changes
+    if: |
+      (needs.changes.outputs.nginx == 'true')
+    steps:
+    - name: Checkout
+      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+    - name: nginx-base-image
+      run: |
+        cd images/nginx/rootfs && docker build -t docker.io/nginx-test-workflow/nginx:${{ github.sha }} .
+    - name: Run Trivy on NGINX Image
+      uses: aquasecurity/trivy-action@master
+      with:
+        image-ref: 'docker.io/nginx-test-workflow/nginx:${{ github.sha }}'
+        format: 'sarif'
+        ignore-unfixed: true
+        output: 'trivy-results.sarif'
+    - name: Upload Trivy scan results to GitHub Security tab
+      uses: github/codeql-action/upload-sarif@v3.22.12
+      with:
+        sarif_file: 'trivy-results.sarif'
diff --git a/.github/workflows/junit-reports.yaml b/.github/workflows/junit-reports.yaml
index 62745a53b..78270c5be 100644
--- a/.github/workflows/junit-reports.yaml
+++ b/.github/workflows/junit-reports.yaml
@@ -15,3 +15,4 @@ jobs:
           name: JEST Tests $1               # Name of the check run which will be created
           path: 'report*.xml'               # Path to test results (inside artifact .zip)
           reporter: jest-junit              # Format of test results
+          fail-on-empty: 'true'
diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
new file mode 100644
index 000000000..4e999c65d
--- /dev/null
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -0,0 +1,82 @@
+#### THIS IS A TEMPLATE ####
+# This workflow is created to be a template for every time an e2e teest is required,
+
+on:
+  workflow_call:
+    inputs:
+      name:
+        required: true
+        type: string
+      platforms-test:
+        type: string
+        default: linux/amd64
+      platforms-publish:
+        type: string
+        default: linux/amd64
+
+env:
+  PLATFORMS: ${{ inputs.platforms-test }}
+
+permissions:
+  contents: write
+  packages: write
+
+jobs:
+  changestag:
+    permissions:
+      contents: read  # for dorny/paths-filter to fetch a list of changed files
+    runs-on: ubuntu-latest
+    outputs:
+      tag: ${{ steps.filter.outputs.tag }}
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
+        id: filter
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+          filters: |
+            tag:
+              - 'images/**/TAG'
+
+  image-build:
+    name: Build
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+
+      - name: Build
+        run: |
+          cd images/ && make NAME=${{ inputs.name }} build
+
+  image-push:
+    name: Push
+    needs: changestag
+    if: |
+      (github.event_name == 'push' && github.ref == 'refs/heads/main' && github.repository == 'kubernetes/ingress-nginx' && needs.changestag.outputs.tag == 'true')
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+      packages: write
+    env:
+      PLATFORMS: ${{ inputs.platforms-publish }}
+    steps:
+    - name: Checkout
+      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+
+    - name: Login to GitHub Container Registry
+      uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
+      with:
+        registry: ghcr.io
+        username: ${{ github.actor }}
+        password: ${{ secrets.GITHUB_TOKEN }}
+
+    - name: Push
+      run: |
+          cd images/ && make REGISTRY=ghcr.io/kubernetes/ingress-nginx NAME=${{ inputs.name }} push
+
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
new file mode 100644
index 000000000..61e188941
--- /dev/null
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -0,0 +1,57 @@
+#### THIS IS A TEMPLATE ####
+# This workflow is created to be a template for every time an e2e teest is required,
+
+on:
+  workflow_call:
+    inputs:
+      k8s-version:
+        required: true
+        type: string
+      variation:
+        type: string
+
+permissions:
+  contents: read
+
+jobs:
+  kubernetes:
+    name: Kubernetes ${{ inputs.variation }}
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+
+      - name: cache
+        uses: actions/download-artifact@f44cd7b40bfd40b6aa1cc1b9b5b7bf03d3c67110 # v4.1.0
+        with:
+          name: docker.tar.gz
+
+      - name: Create Kubernetes ${{ inputs.k8s-version }} cluster
+        id: kind
+        run: |
+          kind create cluster --image=kindest/node:${{ inputs.k8s-version }} --config test/e2e/kind.yaml
+
+      - name: Load images from cache
+        run: |
+          echo "loading docker images..."
+          gzip -dc docker.tar.gz | docker load
+
+      - name: Run e2e tests ${{ inputs.variation }}
+        env:
+          KIND_CLUSTER_NAME: kind
+          SKIP_CLUSTER_CREATION: true
+          SKIP_IMAGE_CREATION: true
+          ENABLE_VALIDATIONS: ${{ inputs.variation == 'VALIDATIONS' }}
+          IS_CHROOT: ${{ inputs.variation == 'CHROOT' }}
+        run: |
+          kind get kubeconfig > $HOME/.kube/kind-config-kind
+          make kind-e2e-test
+
+      - name: Upload e2e junit-reports ${{ inputs.variation }}
+        uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # v4.0.0
+        if: success() || failure()
+        with:
+          name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}
+          path: 'test/junitreports/report*.xml'
+
diff --git a/go.work.sum b/go.work.sum
index 2b31940aa..e45006894 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -180,4 +180,4 @@ golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
 golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM=
 golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
-google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
\ No newline at end of file
diff --git a/images/kube-webhook-certgen/Makefile b/images/Makefile
similarity index 60%
rename from images/kube-webhook-certgen/Makefile
rename to images/Makefile
index cd014c7c3..069ca72b9 100644
--- a/images/kube-webhook-certgen/Makefile
+++ b/images/Makefile
@@ -1,4 +1,4 @@
-# Copyright 2021 The Kubernetes Authors. All rights reserved.
+# Copyright 2024 The Kubernetes Authors.
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
@@ -14,17 +14,23 @@
 
 .DEFAULT_GOAL:=build
 
+# set default shell
 SHELL=/bin/bash -o pipefail -o errexit
 
 DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
-INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
+INIT_BUILDX=$(DIR)/../hack/init-buildx.sh
 
-SHORT_SHA ?=$(shell git rev-parse --short HEAD)
-TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
+BASE_IMAGE = $(shell cat $(DIR)/../NGINX_BASE)
 
 REGISTRY ?= local
+NAME ?=
+
+IMAGE = $(REGISTRY)/$(NAME)
+TAG ?= $(shell cat $(NAME)/TAG)
+
+EXTRAARGS ?= $(shell cat $(NAME)/EXTRAARGS)
 
-IMAGE = $(REGISTRY)/kube-webhook-certgen
 
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled
@@ -34,17 +40,33 @@ PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
 OUTPUT=
 PROGRESS=plain
 
-build: ensure-buildx
+
+precheck:
+ifndef NAME
+	$(error NAME variable is required)
+endif
+
+build: precheck ensure-buildx
 	docker buildx build \
+		--label=org.opencontainers.image.source=https://github.com/kubernetes/ingress-nginx \
+		--label=org.opencontainers.image.licenses=Apache-2.0 \
+		--label=org.opencontainers.image.description="Ingress NGINX $(NAME) image" \
+		--build-arg BASE_IMAGE=$(BASE_IMAGE) \
 		--platform=${PLATFORMS} $(OUTPUT) \
 		--progress=$(PROGRESS) \
-		--pull \
-		-t $(IMAGE):$(TAG) rootfs
+		--pull $(EXTRAARGS) \
+		-t $(IMAGE):$(TAG) $(NAME)/rootfs
 
 # push the cross built image
 push: OUTPUT=--push
 push: build
 
+test: precheck
+	cd $(NAME)/rootfs && go test ./...
+
+test-e2e: precheck
+	cd $(NAME) && ./hack/e2e.sh
+
 # enable buildx
 ensure-buildx:
 # this is required for cloudbuild
@@ -55,10 +77,4 @@ else
 endif
 	@echo "done"
 
-test:
-	cd rootfs && go test ./...
-
-test-e2e:
-	./hack/e2e.sh
-
-.PHONY: build push ensure-buildx test test-e2e
+.PHONY: build push ensure-buildx test test-e2e precheck
diff --git a/images/cfssl/Makefile b/images/cfssl/Makefile
deleted file mode 100644
index 31c37fbc5..000000000
--- a/images/cfssl/Makefile
+++ /dev/null
@@ -1,57 +0,0 @@
-# Copyright 2020 The Kubernetes Authors.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-# set default shell
-SHELL=/bin/bash -o pipefail -o errexit
-
-DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
-INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
-
-SHORT_SHA ?=$(shell git rev-parse --short HEAD)
-TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
-
-REGISTRY ?= local
-
-IMAGE = $(REGISTRY)/e2e-test-cfssl
-
-# required to enable buildx
-export DOCKER_CLI_EXPERIMENTAL=enabled
-
-# build with buildx
-PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
-OUTPUT=
-PROGRESS=plain
-
-build: ensure-buildx
-	docker buildx build \
-		--platform=${PLATFORMS} $(OUTPUT) \
-		--progress=$(PROGRESS) \
-		--pull \
-		-t $(IMAGE):$(TAG) rootfs
-
-# push the cross built image
-push: OUTPUT=--push
-push: build
-
-# enable buildx
-ensure-buildx:
-# this is required for cloudbuild
-ifeq ("$(wildcard $(INIT_BUILDX))","")
-	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/hack/init-buildx.sh | bash
-else
-	@exec $(INIT_BUILDX)
-endif
-	@echo "done"
-
-.PHONY: build push ensure-buildx
diff --git a/images/cfssl/TAG b/images/cfssl/TAG
new file mode 100644
index 000000000..95e94cdd3
--- /dev/null
+++ b/images/cfssl/TAG
@@ -0,0 +1 @@
+v0.0.1
\ No newline at end of file
diff --git a/images/cfssl/cloudbuild.yaml b/images/cfssl/cloudbuild.yaml
index 5fed3b712..32d91ca83 100644
--- a/images/cfssl/cloudbuild.yaml
+++ b/images/cfssl/cloudbuild.yaml
@@ -14,4 +14,4 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && cd images/cfssl && make push
+      && cd images && make NAME=cfssl push
diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index 569756d79..3b6c36f74 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -14,7 +14,6 @@
 
 FROM alpine:3.19.0
 
-
 RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
 RUN apk update \
     && apk upgrade &&  \
diff --git a/images/custom-error-pages/Makefile b/images/custom-error-pages/Makefile
deleted file mode 100644
index 98f7104a7..000000000
--- a/images/custom-error-pages/Makefile
+++ /dev/null
@@ -1,59 +0,0 @@
-# Copyright 2021 The Kubernetes Authors.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-# Container image for nginx-errors.
-
-# set default shell
-SHELL=/bin/bash -o pipefail -o errexit
-
-DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
-INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
-
-SHORT_SHA ?=$(shell git rev-parse --short HEAD)
-TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
-
-REGISTRY ?= local
-
-IMAGE = $(REGISTRY)/nginx-errors
-
-# required to enable buildx
-export DOCKER_CLI_EXPERIMENTAL=enabled
-
-# build with buildx
-PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
-OUTPUT=
-PROGRESS=plain
-
-build: ensure-buildx
-	docker buildx build \
-		--platform=${PLATFORMS} $(OUTPUT) \
-		--progress=$(PROGRESS) \
-		--pull \
-		-t $(IMAGE):$(TAG) rootfs
-
-# push the cross built image
-push: OUTPUT=--push
-push: build
-
-# enable buildx
-ensure-buildx:
-# this is required for cloudbuild
-ifeq ("$(wildcard $(INIT_BUILDX))","")
-	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/hack/init-buildx.sh | bash
-else
-	@exec $(INIT_BUILDX)
-endif
-	@echo "done"
-
-.PHONY: build push ensure-buildx
diff --git a/images/custom-error-pages/TAG b/images/custom-error-pages/TAG
new file mode 100644
index 000000000..95e94cdd3
--- /dev/null
+++ b/images/custom-error-pages/TAG
@@ -0,0 +1 @@
+v0.0.1
\ No newline at end of file
diff --git a/images/custom-error-pages/cloudbuild.yaml b/images/custom-error-pages/cloudbuild.yaml
index a443d2b11..bb74da6b8 100644
--- a/images/custom-error-pages/cloudbuild.yaml
+++ b/images/custom-error-pages/cloudbuild.yaml
@@ -14,4 +14,4 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && cd images/custom-error-pages && make push
+      && cd images/ && make NAME=custom-error-pages push
diff --git a/images/e2e-test-echo/EXTRAARGS b/images/e2e-test-echo/EXTRAARGS
new file mode 100644
index 000000000..3db8aaa5c
--- /dev/null
+++ b/images/e2e-test-echo/EXTRAARGS
@@ -0,0 +1 @@
+--build-arg LUAROCKS_VERSION=3.8.0 --build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7
\ No newline at end of file
diff --git a/images/e2e-test-echo/TAG b/images/e2e-test-echo/TAG
new file mode 100644
index 000000000..95e94cdd3
--- /dev/null
+++ b/images/e2e-test-echo/TAG
@@ -0,0 +1 @@
+v0.0.1
\ No newline at end of file
diff --git a/images/echo/rootfs/Dockerfile b/images/e2e-test-echo/rootfs/Dockerfile
similarity index 100%
rename from images/echo/rootfs/Dockerfile
rename to images/e2e-test-echo/rootfs/Dockerfile
diff --git a/images/echo/rootfs/nginx.conf b/images/e2e-test-echo/rootfs/nginx.conf
similarity index 100%
rename from images/echo/rootfs/nginx.conf
rename to images/e2e-test-echo/rootfs/nginx.conf
diff --git a/images/echo/Makefile b/images/echo/Makefile
deleted file mode 100644
index a213df5d3..000000000
--- a/images/echo/Makefile
+++ /dev/null
@@ -1,61 +0,0 @@
-# Copyright 2020 The Kubernetes Authors. All rights reserved.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#      http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-# set default shell
-SHELL=/bin/bash -o pipefail -o errexit
-
-DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
-INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
-
-SHORT_SHA ?=$(shell git rev-parse --short HEAD)
-TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
-
-REGISTRY ?= local
-
-IMAGE = $(REGISTRY)/e2e-test-echo
-
-# required to enable buildx
-export DOCKER_CLI_EXPERIMENTAL=enabled
-
-BASE_IMAGE = $(shell cat $(DIR)/../../NGINX_BASE)
-# build with buildx
-PLATFORMS?=linux/amd64
-OUTPUT=
-PROGRESS=plain
-
-build: ensure-buildx
-	docker buildx build \
-		--platform=${PLATFORMS} $(OUTPUT) \
-		--progress=$(PROGRESS) \
-		--pull \
-		--build-arg BASE_IMAGE=${BASE_IMAGE} \
-		--build-arg LUAROCKS_VERSION=3.8.0 \
-		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
-		-t $(IMAGE):$(TAG) rootfs
-
-# push the cross built image
-push: OUTPUT=--push
-push: build
-
-# enable buildx
-ensure-buildx:
-# this is required for cloudbuild
-ifeq ("$(wildcard $(INIT_BUILDX))","")
-	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/hack/init-buildx.sh | bash
-else
-	@exec $(INIT_BUILDX)
-endif
-	@echo "done"
-
-.PHONY: build push ensure-buildx
diff --git a/images/echo/cloudbuild.yaml b/images/echo/cloudbuild.yaml
deleted file mode 100644
index 811d8d3f0..000000000
--- a/images/echo/cloudbuild.yaml
+++ /dev/null
@@ -1,17 +0,0 @@
-timeout: 1200s
-options:
-  substitution_option: ALLOW_LOOSE
-steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
-    entrypoint: bash
-    env:
-      - DOCKER_CLI_EXPERIMENTAL=enabled
-      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
-      # set the home to /root explicitly to if using docker buildx
-      - HOME=/root
-    args:
-    - -c
-    - |
-      gcloud auth configure-docker \
-      && cd images/echo && make push
diff --git a/images/ext-auth-example-authsvc/Makefile b/images/ext-auth-example-authsvc/Makefile
deleted file mode 100644
index 63f261ec3..000000000
--- a/images/ext-auth-example-authsvc/Makefile
+++ /dev/null
@@ -1,57 +0,0 @@
-# Copyright 2022 The Kubernetes Authors. All rights reserved.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-# set default shell
-SHELL=/bin/bash -o pipefail -o errexit
-
-DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
-INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
-
-SHORT_SHA ?=$(shell git rev-parse --short HEAD)
-TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
-
-REGISTRY ?= local
-
-IMAGE = $(REGISTRY)/ext-auth-example-authsvc
-
-# required to enable buildx
-export DOCKER_CLI_EXPERIMENTAL=enabled
-
-# build with buildx
-PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
-OUTPUT=
-PROGRESS=plain
-
-build: ensure-buildx
-	docker buildx build \
-		--platform=${PLATFORMS} $(OUTPUT) \
-		--progress=$(PROGRESS) \
-		--pull \
-		-t $(IMAGE):$(TAG) rootfs
-
-# push the cross built image
-push: OUTPUT=--push
-push: build
-
-# enable buildx
-ensure-buildx:
-# this is required for cloudbuild
-ifeq ("$(wildcard $(INIT_BUILDX))","")
-	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/master/hack/init-buildx.sh | bash
-else
-	@exec $(INIT_BUILDX)
-endif
-	@echo "done"
-
-.PHONY: build push ensure-buildx
diff --git a/images/ext-auth-example-authsvc/TAG b/images/ext-auth-example-authsvc/TAG
new file mode 100644
index 000000000..95e94cdd3
--- /dev/null
+++ b/images/ext-auth-example-authsvc/TAG
@@ -0,0 +1 @@
+v0.0.1
\ No newline at end of file
diff --git a/images/ext-auth-example-authsvc/cloudbuild.yaml b/images/ext-auth-example-authsvc/cloudbuild.yaml
index 4a436e012..3d06caf68 100644
--- a/images/ext-auth-example-authsvc/cloudbuild.yaml
+++ b/images/ext-auth-example-authsvc/cloudbuild.yaml
@@ -16,4 +16,4 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && cd images/ext-auth-example-authsvc && make push
+      && cd images/ && make NAME=ext-auth-example-authsvc push
diff --git a/images/fastcgi-helloserver/Makefile b/images/fastcgi-helloserver/Makefile
deleted file mode 100644
index 4d277a19d..000000000
--- a/images/fastcgi-helloserver/Makefile
+++ /dev/null
@@ -1,59 +0,0 @@
-# Copyright 2020 The Kubernetes Authors.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-# Docker image for e2e testing.
-
-# set default shell
-SHELL=/bin/bash -o pipefail -o errexit
-
-DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
-INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
-
-SHORT_SHA ?=$(shell git rev-parse --short HEAD)
-TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
-
-REGISTRY ?= local
-
-IMAGE = $(REGISTRY)/e2e-test-fastcgi-helloserver
-
-# required to enable buildx
-export DOCKER_CLI_EXPERIMENTAL=enabled
-
-# build with buildx
-PLATFORMS?=linux/amd64,linux/arm,linux/arm64
-OUTPUT=
-PROGRESS=plain
-
-build: ensure-buildx
-	docker buildx build \
-		--platform=${PLATFORMS} $(OUTPUT) \
-		--progress=$(PROGRESS) \
-		--pull \
-		-t $(IMAGE):$(TAG) rootfs
-
-# push the cross built image
-push: OUTPUT=--push
-push: build
-
-# enable buildx
-ensure-buildx:
-# this is required for cloudbuild
-ifeq ("$(wildcard $(INIT_BUILDX))","")
-	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/hack/init-buildx.sh | bash
-else
-	@exec $(INIT_BUILDX)
-endif
-	@echo "done"
-
-.PHONY: build push ensure-buildx
diff --git a/images/fastcgi-helloserver/TAG b/images/fastcgi-helloserver/TAG
new file mode 100644
index 000000000..95e94cdd3
--- /dev/null
+++ b/images/fastcgi-helloserver/TAG
@@ -0,0 +1 @@
+v0.0.1
\ No newline at end of file
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index 80623a197..c1123a194 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -14,5 +14,5 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && cd images/fastcgi-helloserver && make push
+      && cd images/ && make NAME=fastcgi-helloserver push
 
diff --git a/images/go-grpc-greeter-server/Makefile b/images/go-grpc-greeter-server/Makefile
deleted file mode 100644
index e221ecfea..000000000
--- a/images/go-grpc-greeter-server/Makefile
+++ /dev/null
@@ -1,57 +0,0 @@
-# Copyright 2021 The Kubernetes Authors. All rights reserved.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-# set default shell
-SHELL=/bin/bash -o pipefail -o errexit
-
-DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
-INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
-
-SHORT_SHA ?=$(shell git rev-parse --short HEAD)
-TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
-
-REGISTRY ?= local
-
-IMAGE = $(REGISTRY)/go-grpc-greeter-server
-
-# required to enable buildx
-export DOCKER_CLI_EXPERIMENTAL=enabled
-
-# build with buildx
-PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
-OUTPUT=
-PROGRESS=plain
-
-build: ensure-buildx
-	docker buildx build \
-		--platform=${PLATFORMS} $(OUTPUT) \
-		--progress=$(PROGRESS) \
-		--pull \
-		-t $(IMAGE):$(TAG) rootfs
-
-# push the cross built image
-push: OUTPUT=--push
-push: build
-
-# enable buildx
-ensure-buildx:
-# this is required for cloudbuild
-ifeq ("$(wildcard $(INIT_BUILDX))","")
-	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/master/hack/init-buildx.sh | bash
-else
-	@exec $(INIT_BUILDX)
-endif
-	@echo "done"
-
-.PHONY: build push ensure-buildx
diff --git a/images/go-grpc-greeter-server/TAG b/images/go-grpc-greeter-server/TAG
new file mode 100644
index 000000000..95e94cdd3
--- /dev/null
+++ b/images/go-grpc-greeter-server/TAG
@@ -0,0 +1 @@
+v0.0.1
\ No newline at end of file
diff --git a/images/go-grpc-greeter-server/cloudbuild.yaml b/images/go-grpc-greeter-server/cloudbuild.yaml
index 20740eb27..daef69416 100644
--- a/images/go-grpc-greeter-server/cloudbuild.yaml
+++ b/images/go-grpc-greeter-server/cloudbuild.yaml
@@ -16,4 +16,4 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && cd images/go-grpc-greeter-server && make push
+      && cd images/ && make NAME=go-grpc-greeter-server push
diff --git a/images/httpbun/Makefile b/images/httpbun/Makefile
deleted file mode 100644
index bcb8c7be2..000000000
--- a/images/httpbun/Makefile
+++ /dev/null
@@ -1,57 +0,0 @@
-# Copyright 2020 The Kubernetes Authors. All rights reserved.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-# set default shell
-SHELL=/bin/bash -o pipefail -o errexit
-
-DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
-INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
-
-SHORT_SHA ?=$(shell git rev-parse --short HEAD)
-TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
-
-REGISTRY ?= local
-
-IMAGE = $(REGISTRY)/e2e-test-httpbun
-
-# required to enable buildx
-export DOCKER_CLI_EXPERIMENTAL=enabled
-
-# build with buildx
-PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
-OUTPUT=
-PROGRESS=plain
-
-build: ensure-buildx
-	docker buildx build \
-		--platform=${PLATFORMS} $(OUTPUT) \
-		--progress=$(PROGRESS) \
-		--pull \
-		-t $(IMAGE):$(TAG) rootfs
-
-# push the cross built image
-push: OUTPUT=--push
-push: build
-
-# enable buildx
-ensure-buildx:
-# this is required for cloudbuild
-ifeq ("$(wildcard $(INIT_BUILDX))","")
-	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/hack/init-buildx.sh | bash
-else
-	@exec $(INIT_BUILDX)
-endif
-	@echo "done"
-
-.PHONY: build push ensure-buildx
diff --git a/images/httpbun/TAG b/images/httpbun/TAG
new file mode 100644
index 000000000..95e94cdd3
--- /dev/null
+++ b/images/httpbun/TAG
@@ -0,0 +1 @@
+v0.0.1
\ No newline at end of file
diff --git a/images/httpbun/cloudbuild.yaml b/images/httpbun/cloudbuild.yaml
index 68afbe873..bcf32db05 100644
--- a/images/httpbun/cloudbuild.yaml
+++ b/images/httpbun/cloudbuild.yaml
@@ -16,4 +16,4 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && cd images/httpbun && make push
+      && cd images/ && make NAME=httpbun push
diff --git a/images/kube-webhook-certgen/TAG b/images/kube-webhook-certgen/TAG
new file mode 100644
index 000000000..95e94cdd3
--- /dev/null
+++ b/images/kube-webhook-certgen/TAG
@@ -0,0 +1 @@
+v0.0.1
\ No newline at end of file
diff --git a/images/kube-webhook-certgen/cloudbuild.yaml b/images/kube-webhook-certgen/cloudbuild.yaml
index 88d7400d0..690f13126 100644
--- a/images/kube-webhook-certgen/cloudbuild.yaml
+++ b/images/kube-webhook-certgen/cloudbuild.yaml
@@ -29,4 +29,4 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && cd images/kube-webhook-certgen && make push
+      && cd images/ && make NAME=kube-webhook-certgen push
diff --git a/images/opentelemetry/Makefile b/images/opentelemetry/Makefile
deleted file mode 100644
index 03d92a298..000000000
--- a/images/opentelemetry/Makefile
+++ /dev/null
@@ -1,59 +0,0 @@
-# Copyright 2021 The Kubernetes Authors. All rights reserved.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-.DEFAULT_GOAL:=build
-
-# set default shell
-SHELL=/bin/bash -o pipefail -o errexit
-
-DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
-INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
-
-# 0.0.0 shouldn't clobber any released builds
-SHORT_SHA ?=$(shell git rev-parse --short HEAD)
-TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
-
-REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
-
-IMAGE = $(REGISTRY)/opentelemetry
-
-# required to enable buildx
-export DOCKER_CLI_EXPERIMENTAL=enabled
-
-# build with buildx
-PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
-OUTPUT=
-PROGRESS=plain
-build: ensure-buildx
-	docker buildx build \
-		--platform=${PLATFORMS} $(OUTPUT) \
-		--progress=$(PROGRESS) \
-		--pull \
-		--tag $(IMAGE):$(TAG) rootfs
-
-# push the cross built image
-push: OUTPUT=--push
-push: build
-
-# enable buildx
-ensure-buildx:
-# this is required for cloudbuild
-ifeq ("$(wildcard $(INIT_BUILDX))","")
-	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/hack/init-buildx.sh | bash
-else
-	@exec $(INIT_BUILDX)
-endif
-	@echo "done"
-
-.PHONY: build push ensure-buildx
diff --git a/images/opentelemetry/TAG b/images/opentelemetry/TAG
new file mode 100644
index 000000000..95e94cdd3
--- /dev/null
+++ b/images/opentelemetry/TAG
@@ -0,0 +1 @@
+v0.0.1
\ No newline at end of file
diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
index baf29a051..6705dac87 100644
--- a/images/opentelemetry/cloudbuild.yaml
+++ b/images/opentelemetry/cloudbuild.yaml
@@ -16,4 +16,4 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && cd images/opentelemetry && make push
+      && cd images/ && make NAME=opentelemetry push
diff --git a/images/test-runner/TAG b/images/test-runner/TAG
new file mode 100644
index 000000000..95e94cdd3
--- /dev/null
+++ b/images/test-runner/TAG
@@ -0,0 +1 @@
+v0.0.1
\ No newline at end of file

From 1fb39c92cd08ecb8b19ab93abb082c5abb787e17 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 13 Jan 2024 15:39:35 +0100
Subject: [PATCH 1099/1641] Bump actions/dependency-review-action from 3.1.4 to
 3.1.5 (#10831)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3.1.4 to 3.1.5.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/01bc87099ba56df1e897b6874784491ea6309bc4...c74b580d73376b7750d3d2a50bfb8adc2c937507)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 3cd461417..44dfe99fb 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@01bc87099ba56df1e897b6874784491ea6309bc4 # v3.1.4
+        uses: actions/dependency-review-action@c74b580d73376b7750d3d2a50bfb8adc2c937507 # v3.1.5

From 42627fb1bdc8852c22b3eaec9fa80b530b62a029 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 14 Jan 2024 21:35:46 -0300
Subject: [PATCH 1100/1641] Use dockerhub for e2e and demo images (#10850)

---
 .github/workflows/zz-tmpl-images.yaml | 7 +++----
 images/cfssl/TAG                      | 2 +-
 images/custom-error-pages/TAG         | 2 +-
 images/e2e-test-echo/TAG              | 2 +-
 images/ext-auth-example-authsvc/TAG   | 2 +-
 images/fastcgi-helloserver/TAG        | 2 +-
 images/go-grpc-greeter-server/TAG     | 2 +-
 images/httpbun/TAG                    | 2 +-
 8 files changed, 10 insertions(+), 11 deletions(-)

diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index 4e999c65d..6f3605417 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -72,11 +72,10 @@ jobs:
     - name: Login to GitHub Container Registry
       uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
       with:
-        registry: ghcr.io
-        username: ${{ github.actor }}
-        password: ${{ secrets.GITHUB_TOKEN }}
+        username: ${{ secrets.DOCKERHUB_USERNAME }}
+        password: ${{ secrets.DOCKERHUB_TOKEN }}
 
     - name: Push
       run: |
-          cd images/ && make REGISTRY=ghcr.io/kubernetes/ingress-nginx NAME=${{ inputs.name }} push
+          cd images/ && make REGISTRY=ingressnginx NAME=${{ inputs.name }} push
 
diff --git a/images/cfssl/TAG b/images/cfssl/TAG
index 95e94cdd3..90ab6e946 100644
--- a/images/cfssl/TAG
+++ b/images/cfssl/TAG
@@ -1 +1 @@
-v0.0.1
\ No newline at end of file
+v0.0.2
\ No newline at end of file
diff --git a/images/custom-error-pages/TAG b/images/custom-error-pages/TAG
index 95e94cdd3..90ab6e946 100644
--- a/images/custom-error-pages/TAG
+++ b/images/custom-error-pages/TAG
@@ -1 +1 @@
-v0.0.1
\ No newline at end of file
+v0.0.2
\ No newline at end of file
diff --git a/images/e2e-test-echo/TAG b/images/e2e-test-echo/TAG
index 95e94cdd3..90ab6e946 100644
--- a/images/e2e-test-echo/TAG
+++ b/images/e2e-test-echo/TAG
@@ -1 +1 @@
-v0.0.1
\ No newline at end of file
+v0.0.2
\ No newline at end of file
diff --git a/images/ext-auth-example-authsvc/TAG b/images/ext-auth-example-authsvc/TAG
index 95e94cdd3..90ab6e946 100644
--- a/images/ext-auth-example-authsvc/TAG
+++ b/images/ext-auth-example-authsvc/TAG
@@ -1 +1 @@
-v0.0.1
\ No newline at end of file
+v0.0.2
\ No newline at end of file
diff --git a/images/fastcgi-helloserver/TAG b/images/fastcgi-helloserver/TAG
index 95e94cdd3..90ab6e946 100644
--- a/images/fastcgi-helloserver/TAG
+++ b/images/fastcgi-helloserver/TAG
@@ -1 +1 @@
-v0.0.1
\ No newline at end of file
+v0.0.2
\ No newline at end of file
diff --git a/images/go-grpc-greeter-server/TAG b/images/go-grpc-greeter-server/TAG
index 95e94cdd3..90ab6e946 100644
--- a/images/go-grpc-greeter-server/TAG
+++ b/images/go-grpc-greeter-server/TAG
@@ -1 +1 @@
-v0.0.1
\ No newline at end of file
+v0.0.2
\ No newline at end of file
diff --git a/images/httpbun/TAG b/images/httpbun/TAG
index 95e94cdd3..90ab6e946 100644
--- a/images/httpbun/TAG
+++ b/images/httpbun/TAG
@@ -1 +1 @@
-v0.0.1
\ No newline at end of file
+v0.0.2
\ No newline at end of file

From a9eb4dba40cf47de2c02e3217d97db52d099a2ee Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 14 Jan 2024 22:09:13 -0300
Subject: [PATCH 1101/1641] Use dockerhub for e2e and demo images (#10851)

---
 .github/workflows/images.yaml                     | 8 ++++++++
 images/cfssl/TAG                                  | 2 +-
 images/cfssl/rootfs/Dockerfile                    | 2 +-
 images/custom-error-pages/TAG                     | 2 +-
 images/custom-error-pages/rootfs/Dockerfile       | 2 +-
 images/e2e-test-echo/TAG                          | 2 +-
 images/e2e-test-echo/rootfs/Dockerfile            | 2 +-
 images/ext-auth-example-authsvc/TAG               | 2 +-
 images/ext-auth-example-authsvc/cloudbuild.yaml   | 2 +-
 images/ext-auth-example-authsvc/rootfs/Dockerfile | 2 +-
 images/fastcgi-helloserver/TAG                    | 2 +-
 images/fastcgi-helloserver/cloudbuild.yaml        | 3 +--
 images/fastcgi-helloserver/rootfs/Dockerfile      | 2 +-
 images/go-grpc-greeter-server/TAG                 | 2 +-
 images/go-grpc-greeter-server/cloudbuild.yaml     | 2 +-
 images/go-grpc-greeter-server/rootfs/Dockerfile   | 2 +-
 images/httpbun/TAG                                | 2 +-
 images/httpbun/cloudbuild.yaml                    | 2 +-
 images/httpbun/rootfs/Dockerfile                  | 2 +-
 19 files changed, 26 insertions(+), 19 deletions(-)

diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 42921e5fa..45a7be470 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -72,6 +72,7 @@ jobs:
     uses: ./.github/workflows/zz-tmpl-images.yaml
     with:
       name: cfssl
+    secrets: inherit
 
   custom-error-pages:
     needs: changes
@@ -80,6 +81,8 @@ jobs:
     uses: ./.github/workflows/zz-tmpl-images.yaml
     with:
       name: custom-error-pages
+    secrets: inherit
+
 
   e2e-test-echo:
     needs: changes
@@ -88,6 +91,7 @@ jobs:
     uses: ./.github/workflows/zz-tmpl-images.yaml
     with:
       name: e2e-test-echo
+    secrets: inherit
 
   ext-auth-example-authsvc:
     needs: changes
@@ -96,6 +100,7 @@ jobs:
     uses: ./.github/workflows/zz-tmpl-images.yaml
     with:
       name: ext-auth-example-authsvc
+    secrets: inherit
 
   fastcgi-helloserver:
     needs: changes
@@ -104,6 +109,7 @@ jobs:
     uses: ./.github/workflows/zz-tmpl-images.yaml
     with:
       name: fastcgi-helloserver
+    secrets: inherit
 
   go-grpc-greeter-server:
     needs: changes
@@ -112,6 +118,7 @@ jobs:
     uses: ./.github/workflows/zz-tmpl-images.yaml
     with:
       name: go-grpc-greeter-server
+    secrets: inherit
 
   httpbun:
     needs: changes
@@ -120,6 +127,7 @@ jobs:
     uses: ./.github/workflows/zz-tmpl-images.yaml
     with:
       name: httpbun
+    secrets: inherit
 
   kube-webhook-certgen:
     runs-on: ubuntu-latest
diff --git a/images/cfssl/TAG b/images/cfssl/TAG
index 90ab6e946..8ce995b80 100644
--- a/images/cfssl/TAG
+++ b/images/cfssl/TAG
@@ -1 +1 @@
-v0.0.2
\ No newline at end of file
+v0.0.3
\ No newline at end of file
diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index 3b6c36f74..2d3f30ab4 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -23,4 +23,4 @@ RUN apk update \
 
 EXPOSE 8888
 
-CMD ["cfssl"]
+CMD ["cfssl"]
\ No newline at end of file
diff --git a/images/custom-error-pages/TAG b/images/custom-error-pages/TAG
index 90ab6e946..8ce995b80 100644
--- a/images/custom-error-pages/TAG
+++ b/images/custom-error-pages/TAG
@@ -1 +1 @@
-v0.0.2
\ No newline at end of file
+v0.0.3
\ No newline at end of file
diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index 3647788d4..5cf446962 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -35,4 +35,4 @@ COPY --from=builder /go/src/k8s.io/ingress-nginx/images/custom-error-pages/www /
 COPY --from=builder /go/src/k8s.io/ingress-nginx/images/custom-error-pages/etc /etc
 USER nonroot:nonroot
 
-CMD ["/nginx-errors"]
+CMD ["/nginx-errors"]
\ No newline at end of file
diff --git a/images/e2e-test-echo/TAG b/images/e2e-test-echo/TAG
index 90ab6e946..8ce995b80 100644
--- a/images/e2e-test-echo/TAG
+++ b/images/e2e-test-echo/TAG
@@ -1 +1 @@
-v0.0.2
\ No newline at end of file
+v0.0.3
\ No newline at end of file
diff --git a/images/e2e-test-echo/rootfs/Dockerfile b/images/e2e-test-echo/rootfs/Dockerfile
index c4ab26561..eaa919835 100644
--- a/images/e2e-test-echo/rootfs/Dockerfile
+++ b/images/e2e-test-echo/rootfs/Dockerfile
@@ -17,4 +17,4 @@ RUN wget -O /tmp/luarocks.tgz \
 
 RUN luarocks install lua-resty-template
 
-COPY nginx.conf /etc/nginx/nginx.conf
+COPY nginx.conf /etc/nginx/nginx.conf
\ No newline at end of file
diff --git a/images/ext-auth-example-authsvc/TAG b/images/ext-auth-example-authsvc/TAG
index 90ab6e946..8ce995b80 100644
--- a/images/ext-auth-example-authsvc/TAG
+++ b/images/ext-auth-example-authsvc/TAG
@@ -1 +1 @@
-v0.0.2
\ No newline at end of file
+v0.0.3
\ No newline at end of file
diff --git a/images/ext-auth-example-authsvc/cloudbuild.yaml b/images/ext-auth-example-authsvc/cloudbuild.yaml
index 3d06caf68..506e20111 100644
--- a/images/ext-auth-example-authsvc/cloudbuild.yaml
+++ b/images/ext-auth-example-authsvc/cloudbuild.yaml
@@ -16,4 +16,4 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && cd images/ && make NAME=ext-auth-example-authsvc push
+      && cd images/ && make NAME=ext-auth-example-authsvc push
\ No newline at end of file
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index f85698398..5ae719675 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -7,4 +7,4 @@ RUN CGO_ENABLED=0 GOOS=linux go build -o authsvc authsvc.go
 FROM gcr.io/distroless/base-debian11
 COPY --from=builder /authsvc/authsvc /
 EXPOSE 8080
-ENTRYPOINT ["/authsvc"]
+ENTRYPOINT ["/authsvc"]
\ No newline at end of file
diff --git a/images/fastcgi-helloserver/TAG b/images/fastcgi-helloserver/TAG
index 90ab6e946..8ce995b80 100644
--- a/images/fastcgi-helloserver/TAG
+++ b/images/fastcgi-helloserver/TAG
@@ -1 +1 @@
-v0.0.2
\ No newline at end of file
+v0.0.3
\ No newline at end of file
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index c1123a194..e3ab3b375 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -14,5 +14,4 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && cd images/ && make NAME=fastcgi-helloserver push
-
+      && cd images/ && make NAME=fastcgi-helloserver push
\ No newline at end of file
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
index 38d7f8ce0..b7d24522d 100755
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -29,4 +29,4 @@ FROM gcr.io/distroless/static:nonroot
 COPY --from=builder /go/src/k8s.io/ingress-nginx/images/fastcgi/fastcgi-helloserver /
 USER nonroot:nonroot
 
-CMD ["/fastcgi-helloserver"]
+CMD ["/fastcgi-helloserver"]
\ No newline at end of file
diff --git a/images/go-grpc-greeter-server/TAG b/images/go-grpc-greeter-server/TAG
index 90ab6e946..8ce995b80 100644
--- a/images/go-grpc-greeter-server/TAG
+++ b/images/go-grpc-greeter-server/TAG
@@ -1 +1 @@
-v0.0.2
\ No newline at end of file
+v0.0.3
\ No newline at end of file
diff --git a/images/go-grpc-greeter-server/cloudbuild.yaml b/images/go-grpc-greeter-server/cloudbuild.yaml
index daef69416..b690ffbec 100644
--- a/images/go-grpc-greeter-server/cloudbuild.yaml
+++ b/images/go-grpc-greeter-server/cloudbuild.yaml
@@ -16,4 +16,4 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && cd images/ && make NAME=go-grpc-greeter-server push
+      && cd images/ && make NAME=go-grpc-greeter-server push
\ No newline at end of file
diff --git a/images/go-grpc-greeter-server/rootfs/Dockerfile b/images/go-grpc-greeter-server/rootfs/Dockerfile
index 94e4b91ff..38fe73eb3 100644
--- a/images/go-grpc-greeter-server/rootfs/Dockerfile
+++ b/images/go-grpc-greeter-server/rootfs/Dockerfile
@@ -13,4 +13,4 @@ COPY --from=build /greeter-server /
 
 EXPOSE 50051
 
-CMD ["/greeter-server"]
+CMD ["/greeter-server"]
\ No newline at end of file
diff --git a/images/httpbun/TAG b/images/httpbun/TAG
index 90ab6e946..8ce995b80 100644
--- a/images/httpbun/TAG
+++ b/images/httpbun/TAG
@@ -1 +1 @@
-v0.0.2
\ No newline at end of file
+v0.0.3
\ No newline at end of file
diff --git a/images/httpbun/cloudbuild.yaml b/images/httpbun/cloudbuild.yaml
index bcf32db05..c532a3908 100644
--- a/images/httpbun/cloudbuild.yaml
+++ b/images/httpbun/cloudbuild.yaml
@@ -16,4 +16,4 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && cd images/ && make NAME=httpbun push
+      && cd images/ && make NAME=httpbun push
\ No newline at end of file
diff --git a/images/httpbun/rootfs/Dockerfile b/images/httpbun/rootfs/Dockerfile
index c4b1e6f9d..7effc6ef5 100644
--- a/images/httpbun/rootfs/Dockerfile
+++ b/images/httpbun/rootfs/Dockerfile
@@ -31,4 +31,4 @@ FROM scratch
 COPY --from=builder /go/httpbun/bin/httpbun httpbun
 ENV HTTPBUN_BIND=0.0.0.0:80
 EXPOSE 80
-ENTRYPOINT ["/httpbun"]
+ENTRYPOINT ["/httpbun"]
\ No newline at end of file

From a73886bb7294da9160a41a62e5bfee8abbf03f36 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 15 Jan 2024 14:56:01 +0100
Subject: [PATCH 1102/1641] Bump golang.org/x/crypto from 0.17.0 to 0.18.0
 (#10856)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.17.0 to 0.18.0.
- [Commits](https://github.com/golang/crypto/compare/v0.17.0...v0.18.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 1c2571abc..c9ecebe61 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.4
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.17.0
+	golang.org/x/crypto v0.18.0
 	google.golang.org/grpc v1.60.1
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -104,8 +104,8 @@ require (
 	golang.org/x/mod v0.13.0 // indirect
 	golang.org/x/net v0.17.0 // indirect
 	golang.org/x/oauth2 v0.13.0 // indirect
-	golang.org/x/sys v0.15.0 // indirect
-	golang.org/x/term v0.15.0 // indirect
+	golang.org/x/sys v0.16.0 // indirect
+	golang.org/x/term v0.16.0 // indirect
 	golang.org/x/text v0.14.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.14.0 // indirect
diff --git a/go.sum b/go.sum
index 8b78c8cf2..cc500c3fc 100644
--- a/go.sum
+++ b/go.sum
@@ -401,8 +401,8 @@ golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.17.0 h1:r8bRNjWL3GshPW3gkd+RpvzWrZAwPS49OmTGZ/uhM4k=
-golang.org/x/crypto v0.17.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq4=
+golang.org/x/crypto v0.18.0 h1:PGVlW0xEltQnzFZ55hkuX5+KLyrMYhHld1YHO4AKcdc=
+golang.org/x/crypto v0.18.0/go.mod h1:R0j02AL6hcrfOiy9T4ZYp/rcWeMxM3L6QYxlOuEG1mg=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -539,12 +539,12 @@ golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.15.0 h1:h48lPFYpsTvQJZF4EKyI4aLHaev3CxivZmv7yZig9pc=
-golang.org/x/sys v0.15.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.16.0 h1:xWw16ngr6ZMtmxDyKyIgsE93KNKz5HKmMa3b8ALHidU=
+golang.org/x/sys v0.16.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/term v0.15.0 h1:y/Oo/a/q3IXu26lQgl04j/gjuBDOBlx7X6Om1j2CPW4=
-golang.org/x/term v0.15.0/go.mod h1:BDl952bC7+uMoWR75FIrCDx79TPU9oHkTZ9yRbYOrX0=
+golang.org/x/term v0.16.0 h1:m+B6fahuftsE9qjo0VWp2FW0mB3MTJvR0BaMQrq0pmE=
+golang.org/x/term v0.16.0/go.mod h1:yn7UURbUtPyrVJPGPq404EukNFxcm/foM+bV/bfcDsY=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=

From 9f8dadf3f8d5f8e37ae51b99a315dff960772639 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 15 Jan 2024 16:30:49 +0100
Subject: [PATCH 1103/1641] Bump github.com/prometheus/common from 0.45.0 to
 0.46.0 (#10857)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.45.0 to 0.46.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.45.0...v0.46.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  9 ++++-----
 go.sum | 18 ++++++++----------
 2 files changed, 12 insertions(+), 15 deletions(-)

diff --git a/go.mod b/go.mod
index c9ecebe61..eddc21cd0 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.18.0
 	github.com/prometheus/client_model v0.5.0
-	github.com/prometheus/common v0.45.0
+	github.com/prometheus/common v0.46.0
 	github.com/spf13/cobra v1.8.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.4
@@ -82,7 +82,6 @@ require (
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
 	github.com/mailru/easyjson v0.7.7 // indirect
 	github.com/mattn/go-colorable v0.1.13 // indirect
-	github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0 // indirect
 	github.com/mmarkdown/mmark v2.0.40+incompatible // indirect
 	github.com/moby/sys/mountinfo v0.5.0 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
@@ -102,8 +101,8 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
 	golang.org/x/mod v0.13.0 // indirect
-	golang.org/x/net v0.17.0 // indirect
-	golang.org/x/oauth2 v0.13.0 // indirect
+	golang.org/x/net v0.20.0 // indirect
+	golang.org/x/oauth2 v0.16.0 // indirect
 	golang.org/x/sys v0.16.0 // indirect
 	golang.org/x/term v0.16.0 // indirect
 	golang.org/x/text v0.14.0 // indirect
@@ -111,7 +110,7 @@ require (
 	golang.org/x/tools v0.14.0 // indirect
 	google.golang.org/appengine v1.6.8 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20231002182017-d307bd883b97 // indirect
-	google.golang.org/protobuf v1.31.0 // indirect
+	google.golang.org/protobuf v1.32.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
diff --git a/go.sum b/go.sum
index cc500c3fc..7041fad3e 100644
--- a/go.sum
+++ b/go.sum
@@ -244,8 +244,6 @@ github.com/mattn/go-colorable v0.1.13/go.mod h1:7S9/ev0klgBDR4GtXTXX8a3vIGJpMovk
 github.com/mattn/go-isatty v0.0.16 h1:bq3VjFmv/sOjHtdEhmkEV4x1AJtvUvOJ2PFAZ5+peKQ=
 github.com/mattn/go-isatty v0.0.16/go.mod h1:kYGgaQfpe5nmfYZH+SKPsOc2e4SrIfOl2e/yFXSvRLM=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
-github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0 h1:jWpvCLoY8Z/e3VKvlsiIGKtc+UG6U5vzxaoagmhXfyg=
-github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0/go.mod h1:QUyp042oQthUoa9bqDv0ER0wrtXnBruoNd7aNjkbP+k=
 github.com/mitchellh/go-ps v1.0.0 h1:i6ampVEEF4wQFF+bkYfwYgY+F/uYJDktmvLPf7qIgjc=
 github.com/mitchellh/go-ps v1.0.0/go.mod h1:J4lOc8z8yJs6vUwklHw2XEIiT4z4C40KtWVN3nvg8Pg=
 github.com/mitchellh/hashstructure/v2 v2.0.2 h1:vGKWl0YJqUNxE8d+h8f6NJLcCJrgbhC4NcD46KavDd4=
@@ -318,8 +316,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.45.0 h1:2BGz0eBc2hdMDLnO/8n0jeB3oPrt2D08CekT0lneoxM=
-github.com/prometheus/common v0.45.0/go.mod h1:YJmSTw9BoKxJplESWWxlbyttQR4uaEcGyv9MZjVOJsY=
+github.com/prometheus/common v0.46.0 h1:doXzt5ybi1HBKpsZOL0sSkaNHJJqkyfEWZGGqqScV0Y=
+github.com/prometheus/common v0.46.0/go.mod h1:Tp0qkxpb9Jsg54QMe+EAmqXkSV7Evdy1BTn+g2pa/hQ=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
@@ -470,16 +468,16 @@ golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.17.0 h1:pVaXccu2ozPjCXewfr1S7xza/zcXTity9cCdXQYSjIM=
-golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
+golang.org/x/net v0.20.0 h1:aCL9BSgETF1k+blQaYUBx9hJ9LOGP3gAVemcZlf1Kpo=
+golang.org/x/net v0.20.0/go.mod h1:z8BVo6PvndSri0LbOE3hAn0apkU+1YvI6E70E9jsnvY=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.13.0 h1:jDDenyj+WgFtmV3zYVoi8aE2BwtXFLWOA67ZfNWftiY=
-golang.org/x/oauth2 v0.13.0/go.mod h1:/JMhi4ZRXAf4HG9LiNmxvk+45+96RUlVThiH8FzNBn0=
+golang.org/x/oauth2 v0.16.0 h1:aDkGMBSYxElaoP81NpoUoz2oo2R2wHdZpGToUxfyQrQ=
+golang.org/x/oauth2 v0.16.0/go.mod h1:hqZ+0LWXsiVoZpeld6jVt06P3adbS2Uu911W1SsJv2o=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -697,8 +695,8 @@ google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGj
 google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.31.0 h1:g0LDEJHgrBl9N9r17Ru3sqWhkIx2NB67okBHPwC7hs8=
-google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.32.0 h1:pPC6BG5ex8PDFnkbrGU3EixyhKcQ2aDuBS36lqK/C7I=
+google.golang.org/protobuf v1.32.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=

From 0f5f4bdf0ab0e0f1c0c2b4b12f9dc7c85c6df981 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 15 Jan 2024 15:31:39 +0000
Subject: [PATCH 1104/1641] Bump github.com/onsi/ginkgo/v2 from 2.13.1 to
 2.14.0

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.13.1 to 2.14.0.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.13.1...v2.14.0)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 go.mod |  6 +++---
 go.sum | 16 ++++++++--------
 2 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/go.mod b/go.mod
index eddc21cd0..0abf06a8d 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.13.1
+	github.com/onsi/ginkgo/v2 v2.14.0
 	github.com/opencontainers/runc v1.1.11
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.18.0
@@ -100,14 +100,14 @@ require (
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
-	golang.org/x/mod v0.13.0 // indirect
+	golang.org/x/mod v0.14.0 // indirect
 	golang.org/x/net v0.20.0 // indirect
 	golang.org/x/oauth2 v0.16.0 // indirect
 	golang.org/x/sys v0.16.0 // indirect
 	golang.org/x/term v0.16.0 // indirect
 	golang.org/x/text v0.14.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
-	golang.org/x/tools v0.14.0 // indirect
+	golang.org/x/tools v0.16.1 // indirect
 	google.golang.org/appengine v1.6.8 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20231002182017-d307bd883b97 // indirect
 	google.golang.org/protobuf v1.32.0 // indirect
diff --git a/go.sum b/go.sum
index 7041fad3e..27a40b389 100644
--- a/go.sum
+++ b/go.sum
@@ -281,12 +281,12 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.13.1 h1:LNGfMbR2OVGBfXjvRZIZ2YCTQdGKtPLvuI1rMCCj3OU=
-github.com/onsi/ginkgo/v2 v2.13.1/go.mod h1:XStQ8QcGwLyF4HdfcZB8SFOS/MWCgDuXMSBe6zrvLgM=
+github.com/onsi/ginkgo/v2 v2.14.0 h1:vSmGj2Z5YPb9JwCWT6z6ihcUvDhuXLc3sJiqd3jMKAY=
+github.com/onsi/ginkgo/v2 v2.14.0/go.mod h1:JkUdW7JkN0V6rFvsHcJ478egV3XH9NxpD27Hal/PhZw=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.29.0 h1:KIA/t2t5UBzoirT4H9tsML45GEbo3ouUnBHsCfD2tVg=
-github.com/onsi/gomega v1.29.0/go.mod h1:9sxs+SwGrKI0+PWe4Fxa9tFQQBG5xSsSbMXOI8PPpoQ=
+github.com/onsi/gomega v1.30.0 h1:hvMK7xYz4D3HapigLTeGdId/NcfQx1VHMJc60ew99+8=
+github.com/onsi/gomega v1.30.0/go.mod h1:9sxs+SwGrKI0+PWe4Fxa9tFQQBG5xSsSbMXOI8PPpoQ=
 github.com/opencontainers/runc v1.1.11 h1:9LjxyVlE0BPMRP2wuQDRlHV4941Jp9rc3F0+YKimopA=
 github.com/opencontainers/runc v1.1.11/go.mod h1:S+lQwSfncpBha7XTy/5lBwWgm5+y5Ma/O44Ekby9FK8=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
@@ -432,8 +432,8 @@ golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzB
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
-golang.org/x/mod v0.13.0 h1:I/DsJXRlw/8l/0c24sM9yb0T4z9liZTduXvdAWYiysY=
-golang.org/x/mod v0.13.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
+golang.org/x/mod v0.14.0 h1:dGoOF9QVLYng8IHTm7BAyWqCqSheQ5pYWGhzW00YJr0=
+golang.org/x/mod v0.14.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -603,8 +603,8 @@ golang.org/x/tools v0.0.0-20200825202427-b303f430e36d/go.mod h1:njjCfa9FT2d7l9Bc
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
-golang.org/x/tools v0.14.0 h1:jvNa2pY0M4r62jkRQ6RwEZZyPcymeL9XZMLBbV7U2nc=
-golang.org/x/tools v0.14.0/go.mod h1:uYBEerGOWcJyEORxN+Ek8+TT266gXkNlHdJBwexUsBg=
+golang.org/x/tools v0.16.1 h1:TLyB3WofjdOEepBHAU20JdNC1Zbg87elYofWYAY5oZA=
+golang.org/x/tools v0.16.1/go.mod h1:kYVVN6I1mBNoB1OX+noeBjbRk4IUEPa7JJ+TJMEooJ0=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=

From be3be7a8ef85e3ad5e18883d46c9f0974208f5d8 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 15 Jan 2024 16:49:34 +0100
Subject: [PATCH 1105/1641] Bump github/codeql-action from 3.22.12 to 3.23.0
 (#10854)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.22.12 to 3.23.0.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Commits](https://github.com/github/codeql-action/compare/v3.22.12...v3.23.0)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/images.yaml              | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 45a7be470..0b6e5f2fe 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -176,6 +176,6 @@ jobs:
         ignore-unfixed: true
         output: 'trivy-results.sarif'
     - name: Upload Trivy scan results to GitHub Security tab
-      uses: github/codeql-action/upload-sarif@v3.22.12
+      uses: github/codeql-action/upload-sarif@v3.23.0
       with:
         sarif_file: 'trivy-results.sarif'
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 864207d22..317417ce2 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@6f5223db54afb6bccb7b88162896588caa1f611b # v2.1.37
+        uses: github/codeql-action/upload-sarif@96531062ba46eb11dee25758db76518ad30ee4cf # v2.1.37
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index b81f8e35a..5b76aebc1 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@6f5223db54afb6bccb7b88162896588caa1f611b # v2.1.37
+        uses: github/codeql-action/upload-sarif@96531062ba46eb11dee25758db76518ad30ee4cf # v2.1.37
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 5854325454818f13941fa78c8caae08b63e50019 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 15 Jan 2024 22:48:12 +0100
Subject: [PATCH 1106/1641] Bump actions/upload-artifact from 4.0.0 to 4.1.0
 (#10853)

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/c7d193f32edcb7bfad88892161225aeda64e9392...1eb3cb2b3e0f29609092a73eb033bb759a334595)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml              | 2 +-
 .github/workflows/scorecards.yml       | 2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 14dabf580..76fff4e89 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -137,7 +137,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # v4.0.0
+        uses: actions/upload-artifact@1eb3cb2b3e0f29609092a73eb033bb759a334595 # v4.1.0
         with:
           name: docker.tar.gz
           path: docker.tar.gz
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 317417ce2..e5f9ce488 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # v4.0.0
+        uses: actions/upload-artifact@1eb3cb2b3e0f29609092a73eb033bb759a334595 # v4.1.0
         with:
           name: SARIF file
           path: results.sarif
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 61e188941..ba9542d71 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -49,7 +49,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports ${{ inputs.variation }}
-        uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # v4.0.0
+        uses: actions/upload-artifact@1eb3cb2b3e0f29609092a73eb033bb759a334595 # v4.1.0
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}

From 0ccaa01bb1dacbcd5dfb521debf87fc132a608b6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 15 Jan 2024 22:50:36 +0100
Subject: [PATCH 1107/1641] Bump actions/download-artifact from 4.1.0 to 4.1.1
 (#10855)

Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4.1.0 to 4.1.1.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/f44cd7b40bfd40b6aa1cc1b9b5b7bf03d3c67110...6b208ae046db98c579e8a3aa621ab581ff575935)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml              | 2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 76fff4e89..114a0b2c3 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -174,7 +174,7 @@ jobs:
           helm unittest charts/ingress-nginx -d
 
       - name: cache
-        uses: actions/download-artifact@f44cd7b40bfd40b6aa1cc1b9b5b7bf03d3c67110 # v4.1.0
+        uses: actions/download-artifact@6b208ae046db98c579e8a3aa621ab581ff575935 # v4.1.1
         with:
           name: docker.tar.gz
 
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index ba9542d71..7bb0f3b7d 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -23,7 +23,7 @@ jobs:
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: cache
-        uses: actions/download-artifact@f44cd7b40bfd40b6aa1cc1b9b5b7bf03d3c67110 # v4.1.0
+        uses: actions/download-artifact@6b208ae046db98c579e8a3aa621ab581ff575935 # v4.1.1
         with:
           name: docker.tar.gz
 

From a596a18aeb23e29a2b124fbdbe67ba8323df4db1 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 17 Jan 2024 19:35:21 -0500
Subject: [PATCH 1108/1641] add kind k8s 1.29 to testing (#10866)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/ci.yaml     | 8 ++++----
 .github/workflows/images.yaml | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 114a0b2c3..e2a0d4c81 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -153,7 +153,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
+        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0, v1.29.0]
 
     steps:
       - name: Checkout
@@ -234,7 +234,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     strategy:
       matrix:
-        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
+        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0, v1.29.0]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
@@ -248,7 +248,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     strategy:
       matrix:
-        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
+        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0, v1.29.0]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
@@ -263,7 +263,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     strategy:
       matrix:
-        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
+        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0, v1.29.0]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 0b6e5f2fe..f58872f87 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -136,7 +136,7 @@ jobs:
       (needs.changes.outputs.kube-webhook-certgen == 'true')
     strategy:
       matrix:
-        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0]
+        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0, 1.29.0]
     steps:
     - name: Checkout
       uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1

From 94a635acf8fa893fa3fe605e010c6359810f5d0d Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 19 Jan 2024 01:38:48 +0530
Subject: [PATCH 1109/1641] bump pinned ginkgo version to v2.14.0 (#10872)

---
 build/run-in-docker.sh      | 2 +-
 images/test-runner/Makefile | 4 ++--
 test/e2e/run-chart-test.sh  | 2 +-
 test/e2e/run-kind-e2e.sh    | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 2e1256fb2..bfac365da 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -87,7 +87,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.13.1
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.14.0
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index d6b974ba9..33d9fcb65 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -54,7 +54,7 @@ image:
 		--build-arg YAML_LINT_VERSION=1.27.1 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.11.2 \
-		--build-arg GINKGO_VERSION=2.13.1 \
+		--build-arg GINKGO_VERSION=2.14.0 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -75,7 +75,7 @@ build: ensure-buildx
 		--build-arg YAML_LINT_VERSION=1.27.1 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.11.2 \
-		--build-arg GINKGO_VERSION=2.13.1 \
+		--build-arg GINKGO_VERSION=2.14.0 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index eedb2bef5..1e112d28e 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.13.1
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.14.0
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index d213ac4b7..3cc4d2a35 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -96,7 +96,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.13.1
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.14.0
   fi
 
   echo "[dev-env] .. done building controller images"

From 24d0c355259f176e24f0bf8ce55d5a02dbea8b6e Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 19 Jan 2024 03:09:56 +0530
Subject: [PATCH 1110/1641] added instructions for basic test, to
 troubleshooting guide (#10873)

---
 docs/troubleshooting.md | 37 +++++++++++++++++++++++++++++++++++++
 1 file changed, 37 insertions(+)

diff --git a/docs/troubleshooting.md b/docs/troubleshooting.md
index 0d2004092..6b841b952 100644
--- a/docs/troubleshooting.md
+++ b/docs/troubleshooting.md
@@ -8,6 +8,43 @@ Do not move it without providing redirects.
 
 # Troubleshooting
 
+## A simple test of the basic ingress controller routing
+- Install the ingress-nginx controller as per documentation
+- Deploy the httpbun example echoserver application
+  ```console
+  $ kubectl create deploy httpbun --image registry.k8s.io/ingress-nginx/e2e-test-httpbun:v20231011-8b53cabe0
+  ```
+- Create a service of --type ClusterIP for httpbun
+  ```console
+  $ kubectl expose deploy httpbun --port 80
+  ```
+- Create a ingress for httpbun (This command assumes the ingressClass name to be _**nginx**_. Change the ingressClass name below, if you are using a different ingressClass name)
+  ```console
+  $ kubectl create ingress httpbun --class nginx --rule httpbun.foo.com/"*"=httpbun:80
+  ```
+- Get the name of the ingress-nginx-controller pod (This command assumes that the ingress-nginx-controller was installed in the namespace called **_ingress-nginx_**)
+  ```console
+  $ kubectl -n ingress-nginx get po
+  ```
+- Open a terminal to tail the logs of the ingress-nginx-controller pod
+  ```console
+  $ kubectl -n ingress-nginx logs -f <ingress-nginx-controller-podname>
+  ```
+- Note the last line of log messages. Hit the return/enter key a couple of times to get some blank lines. Makes it easier to mark newer log lines from your next step
+- Open a second terminal, to send a request to httpbun (replace the external-ip or LB name as needed)
+  ```console
+  $ curl -v --resolve httpbun.foo.com:80:<external-ip> httpbun.foo.com/get
+  ```
+- Check if there were new log messages related to your curl command
+- Provide all info and the log messages in the issue you create or in the slack chat thread, formatted as a code-snippet
+  - kubectl get  po,svc -n ingress-nginx
+  - kubectl get po,svc,ing | grep -i httpbun
+  - kubectl describe svc httpbun
+  - kubectl describe ing httpbun
+  - Entire curl command as is and its output 
+  - log messages of the ingress-nginx-controller pod
+
+
 ## Ingress-Controller Logs and Events
 
 There are many ways to troubleshoot the ingress-controller. The following are basic troubleshooting

From dcb99b2fa92477dcfcc16799171ae67237dd590e Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 19 Jan 2024 08:41:30 +0530
Subject: [PATCH 1111/1641] added --user flag to pip install (#10874)

---
 images/test-runner/rootfs/Dockerfile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index f47a46aad..e6502ea68 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -120,10 +120,10 @@ RUN wget -qO /tmp/helm.tgz \
   && rm -rf /tmp/*
 
 # Install a YAML Linter
-RUN pip install "yamllint==$YAML_LINT_VERSION"
+RUN pip install --user "yamllint==$YAML_LINT_VERSION"
 
 # Install Yamale YAML schema validator
-RUN pip install "yamale==$YAMALE_VERSION"
+RUN pip install --user "yamale==$YAMALE_VERSION"
 
 LABEL org.opencontainers.image.source=https://github.com/kubernetes/ingress-nginx
 

From bf84f0eda2afe5ad138e7ee79722012f024c701a Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 19 Jan 2024 20:14:44 +0530
Subject: [PATCH 1112/1641] bump yamllinter to v1330 (#10875)

---
 images/test-runner/Makefile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 33d9fcb65..d96c6258c 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -51,7 +51,7 @@ image:
 		--build-arg LUAROCKS_VERSION=3.8.0 \
 		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
 		--build-arg CHART_TESTING_VERSION=3.8.0 \
-		--build-arg YAML_LINT_VERSION=1.27.1 \
+		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.11.2 \
 		--build-arg GINKGO_VERSION=2.14.0 \
@@ -72,7 +72,7 @@ build: ensure-buildx
 		--build-arg LUAROCKS_VERSION=3.8.0 \
 		--build-arg LUAROCKS_SHA=ab6612ca9ab87c6984871d2712d05525775e8b50172701a0a1cabddf76de2be7 \
 		--build-arg CHART_TESTING_VERSION=3.8.0 \
-		--build-arg YAML_LINT_VERSION=1.27.1 \
+		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.11.2 \
 		--build-arg GINKGO_VERSION=2.14.0 \

From 66cbd577551dc4ee0b3319bf850270d8f460d0ba Mon Sep 17 00:00:00 2001
From: Ray Huang <leoman730@gmail.com>
Date: Fri, 19 Jan 2024 16:04:14 -0500
Subject: [PATCH 1113/1641] Improve docs for multiple instances of controller
 on one cluster (#10882)

* Added note to include '--ingress-class-by-name=true' for Multiple Ingress controllers instruction.

* Add note to include '-ingress-class-by-name=true' for Multiple Controllers instruction.
---
 docs/user-guide/multiple-ingress.md | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/docs/user-guide/multiple-ingress.md b/docs/user-guide/multiple-ingress.md
index 5c1e26c7c..54a18fbb9 100644
--- a/docs/user-guide/multiple-ingress.md
+++ b/docs/user-guide/multiple-ingress.md
@@ -10,7 +10,9 @@ But, when user has deployed with `scope.enabled`, then the ingress class resourc
 
 If all ingress controllers respect IngressClasses (e.g. multiple instances of ingress-nginx v1.0), you can deploy two Ingress controllers by granting them control over two different IngressClasses, then selecting one of the two IngressClasses with `ingressClassName`.
 
-First, ensure the `--controller-class=` and `--ingress-class` are set to something different on each ingress controller, If your additional ingress controller is to be installed in a namespace, where there is/are one/more-than-one ingress-nginx-controller(s) already installed, then you need to specify a different unique `--election-id` for the new instance of the controller.
+First, ensure the `--controller-class=` and `--ingress-class` are set to something different on each ingress controller, If your additional ingress controller is to be installed in a namespace, where there is/are one/more-than-one ingress-nginx-controller(s) already installed, then you need to specify a different unique `--election-id` for the new instance of the controller. 
+
+In addition, you need to specify `--ingress-class-by-name=true` in the controller args list. The `--ingress-class-by-name` defines if Ingress Controller should watch for Ingress Class by Name together with Controller Class. (default false).
 
 ```yaml
 # ingress-nginx Deployment/Statefulset
@@ -24,6 +26,7 @@ spec:
              - '--election-id=ingress-controller-leader'
              - '--controller-class=k8s.io/internal-ingress-nginx'
              - '--ingress-class=internal-nginx'
+             - '--ingress-class-by-name=true'
             ...
 ```
 

From c9c72c4e264a1588a3607db6baece5c363d52b8b Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 19 Jan 2024 16:33:56 -0500
Subject: [PATCH 1114/1641] force nginx rebuild (#10883)

---
 images/nginx/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx/TAG b/images/nginx/TAG
index 6812f8122..81340c7e7 100644
--- a/images/nginx/TAG
+++ b/images/nginx/TAG
@@ -1 +1 @@
-0.0.3
\ No newline at end of file
+0.0.4

From ed3f067b8f6fe17a6052ab73ad53ccc10dc95ce6 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Fri, 19 Jan 2024 19:31:41 -0300
Subject: [PATCH 1115/1641] Build NGINX v1.25 image (#10629)

---
 .github/workflows/nginx125.yaml               | 167 ++++++
 Makefile                                      |   2 -
 images/nginx-1.25/Makefile                    |  59 ++
 images/nginx-1.25/README.md                   |   3 +
 images/nginx-1.25/TAG                         |   1 +
 images/nginx-1.25/cloudbuild.yaml             |  17 +
 images/nginx-1.25/rootfs/Dockerfile           |  71 +++
 images/nginx-1.25/rootfs/build.sh             | 555 ++++++++++++++++++
 .../rootfs/patches/drop-alias-root.patch      | 144 +++++
 test/e2e/run-e2e-suite.sh                     |   1 +
 test/e2e/run-kind-e2e.sh                      |   6 +-
 test/e2e/settings/opentelemetry.go            |  22 +
 12 files changed, 1043 insertions(+), 5 deletions(-)
 create mode 100644 .github/workflows/nginx125.yaml
 create mode 100644 images/nginx-1.25/Makefile
 create mode 100644 images/nginx-1.25/README.md
 create mode 100644 images/nginx-1.25/TAG
 create mode 100644 images/nginx-1.25/cloudbuild.yaml
 create mode 100644 images/nginx-1.25/rootfs/Dockerfile
 create mode 100755 images/nginx-1.25/rootfs/build.sh
 create mode 100644 images/nginx-1.25/rootfs/patches/drop-alias-root.patch

diff --git a/.github/workflows/nginx125.yaml b/.github/workflows/nginx125.yaml
new file mode 100644
index 000000000..63c45d4cc
--- /dev/null
+++ b/.github/workflows/nginx125.yaml
@@ -0,0 +1,167 @@
+name: NGINX v1.25 Image
+
+on:
+  pull_request:
+    branches:
+    - "*"
+    paths:
+    - 'images/nginx-1.25/**'
+  push:
+    branches:
+    - main
+    paths:
+    - 'images/nginx-1.25/**'
+
+permissions:
+    contents: read
+
+jobs:
+  changes:
+    permissions:
+      contents: read  # for dorny/paths-filter to fetch a list of changed files
+      pull-requests: read  # for dorny/paths-filter to read pull requests
+    runs-on: ubuntu-latest
+    outputs:
+      nginx: ${{ steps.filter.outputs.nginx }}
+      tag: ${{ steps.filter.outputs.tag }}
+    steps:
+    - name: Checkout
+      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+    - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
+      id: filter
+      with:
+        token: ${{ secrets.GITHUB_TOKEN }}
+        filters: |
+          nginx:
+          - 'images/nginx-1.25/**'
+          tag:
+          - 'images/nginx-1.25/TAG'
+
+  build:
+    permissions:
+      contents: read  # for dorny/paths-filter to fetch a list of changed files
+      pull-requests: read  # for dorny/paths-filter to read pull requests
+    runs-on: ubuntu-latest
+    needs: changes
+    if: |
+      (github.event_name != 'push' && github.ref != 'refs/heads/main' && needs.changes.outputs.nginx == 'true')
+    env:
+      PLATFORMS: linux/amd64
+    steps:
+    - name: Checkout
+      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+    - name: Set up Go
+      id: go
+      uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
+      with:
+        go-version: '1.21.5'
+        check-latest: true
+    - name: Set up QEMU
+      uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
+    - name: Set up Docker Buildx
+      id: buildx
+      uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
+      with:
+        version: latest
+        platforms: ${{ env.PLATFORMS }}
+    - name: Prepare Host
+      run: |
+        curl -LO https://dl.k8s.io/release/v1.27.3/bin/linux/amd64/kubectl
+        chmod +x ./kubectl
+        sudo mv ./kubectl /usr/local/bin/kubectl
+    - name: build-image
+      run: |
+        cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --load -t nginx-1.25:1.0.0-dev .
+    - name: load-image
+      run: |
+        make clean-image build
+        make -C test/e2e-image image
+        docker build \
+          --platform linux \
+          --no-cache \
+          --build-arg BASE_IMAGE="nginx-1.25:1.0.0-dev" \
+          --build-arg VERSION="0.0.1-${{ github.sha }}" \
+          --build-arg TARGETARCH="amd64" \
+          --build-arg COMMIT_SHA="git-${{ github.sha }}" \
+          --build-arg BUILD_ID=""UNSET"" \
+          -t ingress-controller/controller:1.0.0-dev rootfs
+        docker save \
+          nginx-ingress-controller:e2e \
+          ingress-controller/controller:1.0.0-dev \
+          nginx-1.25:1.0.0-dev \
+          | gzip > docker.tar.gz
+    - name: cache
+      uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
+      with:
+        name: docker.tar.gz
+        path: docker.tar.gz
+        retention-days: 2
+
+  e2e-test:
+    name: Kubernetes
+    runs-on: ubuntu-latest
+    needs:
+      - build
+    strategy:
+      matrix:
+        k8s: [v1.27.3, v1.28.0, v1.29.0]
+    steps:
+    - name: Checkout
+      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+  
+    - name: cache
+      uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+      with:
+        name: docker.tar.gz
+  
+    - name: Create Kubernetes ${{ matrix.k8s }} cluster
+      id: kind
+      run: |
+        kind create cluster --image=kindest/node:${{ matrix.k8s }} --config test/e2e/kind.yaml
+  
+    - name: Load images from cache
+      run: |
+        echo "loading docker images..."
+        gzip -dc docker.tar.gz | docker load
+  
+    - name: Run e2e tests
+      env:
+        KIND_CLUSTER_NAME: kind
+        SKIP_CLUSTER_CREATION: true
+        SKIP_IMAGE_CREATION: true
+        SKIP_OPENTELEMETRY_TESTS: true
+      run: |
+        kind get kubeconfig > $HOME/.kube/kind-config-kind
+        make NGINX_BASE_IMAGE="nginx-1.25:1.0.0-dev" kind-e2e-test
+        
+  push:
+    permissions:
+      contents: write
+      packages: write
+    runs-on: ubuntu-latest
+    needs: changes
+    if: |
+      (github.event_name == 'push' && github.ref == 'refs/heads/main' && needs.changes.outputs.tag == 'true')
+    env:
+      PLATFORMS: linux/amd64,linux/arm,linux/arm64,linux/s390x
+    steps:
+    - name: Checkout
+      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+    - name: Set up QEMU
+      uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
+    - name: Set up Docker Buildx
+      id: buildx
+      uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
+      with:
+        version: latest
+        platforms: ${{ env.PLATFORMS }}
+    - name: Login to GitHub Container Registry
+      uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
+      with:
+        username: ${{ secrets.DOCKERHUB_USERNAME }}
+        password: ${{ secrets.DOCKERHUB_TOKEN }}
+    - name: build-image
+      run: |
+        export TAG=$(cat images/nginx-1.25/TAG)
+        cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --push --load -t ingressnginx/nginx-1.25:${TAG} .
+
diff --git a/Makefile b/Makefile
index cbda4dafb..964889532 100644
--- a/Makefile
+++ b/Makefile
@@ -68,7 +68,6 @@ image: clean-image ## Build image for a particular arch.
 	docker build \
 		${PLATFORM_FLAG} ${PLATFORM} \
 		--no-cache \
-		--pull \
 		--build-arg BASE_IMAGE="$(BASE_IMAGE)" \
 		--build-arg VERSION="$(TAG)" \
 		--build-arg TARGETARCH="$(ARCH)" \
@@ -85,7 +84,6 @@ image-chroot: clean-chroot-image ## Build image for a particular arch.
 	echo "Building docker image ($(ARCH))..."
 	docker build \
 		--no-cache \
-		--pull \
 		--build-arg BASE_IMAGE="$(BASE_IMAGE)" \
 		--build-arg VERSION="$(TAG)" \
 		--build-arg TARGETARCH="$(ARCH)" \
diff --git a/images/nginx-1.25/Makefile b/images/nginx-1.25/Makefile
new file mode 100644
index 000000000..527dfa8fb
--- /dev/null
+++ b/images/nginx-1.25/Makefile
@@ -0,0 +1,59 @@
+# Copyright 2024 The Kubernetes Authors. All rights reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+.DEFAULT_GOAL:=build
+
+# set default shell
+SHELL=/bin/bash -o pipefail -o errexit
+
+DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
+INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
+
+# 0.0.0 shouldn't clobber any released builds
+SHORT_SHA ?=$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
+REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
+
+IMAGE = $(REGISTRY)/nginx
+
+# required to enable buildx
+export DOCKER_CLI_EXPERIMENTAL=enabled
+
+# build with buildx
+PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
+OUTPUT=
+PROGRESS=plain
+build: ensure-buildx
+	docker buildx build \
+		--platform=${PLATFORMS} $(OUTPUT) \
+		--progress=$(PROGRESS) \
+		--pull \
+		--tag $(IMAGE):$(TAG) rootfs
+
+# push the cross built image
+push: OUTPUT=--push
+push: build
+
+# enable buildx
+ensure-buildx:
+# this is required for cloudbuild
+ifeq ("$(wildcard $(INIT_BUILDX))","")
+	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/hack/init-buildx.sh | bash
+else
+	@exec $(INIT_BUILDX)
+endif
+	@echo "done"
+
+.PHONY: build push ensure-buildx
\ No newline at end of file
diff --git a/images/nginx-1.25/README.md b/images/nginx-1.25/README.md
new file mode 100644
index 000000000..8d5f44a62
--- /dev/null
+++ b/images/nginx-1.25/README.md
@@ -0,0 +1,3 @@
+NGINX 1.25 base image
+
+**Don't use in production!!!**
\ No newline at end of file
diff --git a/images/nginx-1.25/TAG b/images/nginx-1.25/TAG
new file mode 100644
index 000000000..95e94cdd3
--- /dev/null
+++ b/images/nginx-1.25/TAG
@@ -0,0 +1 @@
+v0.0.1
\ No newline at end of file
diff --git a/images/nginx-1.25/cloudbuild.yaml b/images/nginx-1.25/cloudbuild.yaml
new file mode 100644
index 000000000..e3902c785
--- /dev/null
+++ b/images/nginx-1.25/cloudbuild.yaml
@@ -0,0 +1,17 @@
+timeout: 10800s
+options:
+  substitution_option: ALLOW_LOOSE
+  # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
+  machineType: E2_HIGHCPU_32
+steps:
+  - name: 'gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90'
+    entrypoint: bash
+    env:
+      - DOCKER_CLI_EXPERIMENTAL=enabled
+      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
+      - HOME=/root
+    args:
+    - -c
+    - |
+      gcloud auth configure-docker \
+      && cd images/nginx-1.25 && make push
\ No newline at end of file
diff --git a/images/nginx-1.25/rootfs/Dockerfile b/images/nginx-1.25/rootfs/Dockerfile
new file mode 100644
index 000000000..8996547e6
--- /dev/null
+++ b/images/nginx-1.25/rootfs/Dockerfile
@@ -0,0 +1,71 @@
+# Copyright 2024 The Kubernetes Authors. All rights reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+FROM alpine:3.19.0 as builder
+
+COPY . /
+
+RUN apk update \
+  && apk upgrade \
+  && apk add -U bash --no-cache \
+  && /build.sh
+
+# Use a multi-stage build
+FROM alpine:3.19.0
+
+ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
+
+ENV LUA_PATH="/usr/local/share/luajit-2.1.0-beta3/?.lua;/usr/local/share/lua/5.1/?.lua;/usr/local/lib/lua/?.lua;;"
+ENV LUA_CPATH="/usr/local/lib/lua/?/?.so;/usr/local/lib/lua/?.so;;"
+
+COPY --from=builder /usr/local /usr/local
+COPY --from=builder /opt /opt
+COPY --from=builder /etc/nginx /etc/nginx
+
+RUN apk update \
+  && apk upgrade \
+  && apk add -U --no-cache \
+  bash \
+  openssl \
+  pcre \
+  zlib \
+  ca-certificates \
+  patch \
+  yajl \
+  lmdb \
+  libxml2 \
+  libmaxminddb \
+  yaml-cpp \
+  dumb-init \
+  tzdata \
+  && ln -s /usr/local/nginx/sbin/nginx /sbin/nginx \
+  && adduser -S -D -H -u 101 -h /usr/local/nginx \
+  -s /sbin/nologin -G www-data -g www-data www-data \
+  && bash -eu -c ' \
+  writeDirs=( \
+  /var/log/nginx \
+  /var/lib/nginx/body \
+  /var/lib/nginx/fastcgi \
+  /var/lib/nginx/proxy \
+  /var/lib/nginx/scgi \
+  /var/lib/nginx/uwsgi \
+  /var/log/audit \
+  ); \
+  for dir in "${writeDirs[@]}"; do \
+  mkdir -p ${dir}; \
+  chown -R www-data.www-data ${dir}; \
+  done'
+
+EXPOSE 80 443
+
+CMD ["nginx", "-g", "daemon off;"]
diff --git a/images/nginx-1.25/rootfs/build.sh b/images/nginx-1.25/rootfs/build.sh
new file mode 100755
index 000000000..d88527e88
--- /dev/null
+++ b/images/nginx-1.25/rootfs/build.sh
@@ -0,0 +1,555 @@
+#!/bin/bash
+
+# Copyright 2023 The Kubernetes Authors.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+set -o errexit
+set -o nounset
+set -o pipefail
+
+export NGINX_VERSION=1.25.3
+
+# Check for recent changes: https://github.com/vision5/ngx_devel_kit/compare/v0.3.3...master
+export NDK_VERSION=v0.3.3
+
+# Check for recent changes: https://github.com/openresty/set-misc-nginx-module/compare/v0.33...master
+export SETMISC_VERSION=796f5a3e518748eb29a93bd450324e0ad45b704e
+
+# Check for recent changes: https://github.com/openresty/headers-more-nginx-module/compare/v0.34...master
+export MORE_HEADERS_VERSION=v0.37
+
+# Check for recent changes: https://github.com/atomx/nginx-http-auth-digest/compare/v1.0.0...atomx:master
+export NGINX_DIGEST_AUTH=v1.0.0
+
+# Check for recent changes: https://github.com/yaoweibin/ngx_http_substitutions_filter_module/compare/v0.6.4...master
+export NGINX_SUBSTITUTIONS=e12e965ac1837ca709709f9a26f572a54d83430e
+
+# Check for recent changes: https://github.com/SpiderLabs/ModSecurity-nginx/compare/v1.0.3...master
+export MODSECURITY_VERSION=v1.0.3
+
+# Check for recent changes: https://github.com/SpiderLabs/ModSecurity/compare/v3.0.8...v3/master
+export MODSECURITY_LIB_VERSION=v3.0.11
+
+# Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.2...v3.3/master
+export OWASP_MODSECURITY_CRS_VERSION=v3.3.5
+
+# Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.25...master
+export LUA_NGX_VERSION=v0.10.26
+
+# Check for recent changes: https://github.com/openresty/stream-lua-nginx-module/compare/v0.0.13...master
+export LUA_STREAM_NGX_VERSION=v0.0.14
+
+# Check for recent changes: https://github.com/openresty/lua-upstream-nginx-module/compare/8aa93ead98ba2060d4efd594ae33a35d153589bf...master
+export LUA_UPSTREAM_VERSION=542be0893543a4e42d89f6dd85372972f5ff2a36
+
+# Check for recent changes: https://github.com/openresty/lua-cjson/compare/2.1.0.11...openresty:master
+export LUA_CJSON_VERSION=2.1.0.13
+
+# Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/3.4...master
+export GEOIP2_VERSION=a607a41a8115fecfc05b5c283c81532a3d605425
+
+# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20230410...v2.1-agentzh
+export LUAJIT_VERSION=v2.1-20231117
+
+# Check for recent changes: https://github.com/openresty/lua-resty-balancer/compare/v0.04...master
+export LUA_RESTY_BALANCER=1cd4363c0a239afe4765ec607dcfbbb4e5900eea
+
+# Check for recent changes: https://github.com/openresty/lua-resty-lrucache/compare/v0.13...master
+export LUA_RESTY_CACHE=99e7578465b40f36f596d099b82eab404f2b42ed
+
+# Check for recent changes: https://github.com/openresty/lua-resty-core/compare/v0.1.27...master
+export LUA_RESTY_CORE=v0.1.28
+
+# Check for recent changes: https://github.com/cloudflare/lua-resty-cookie/compare/v0.1.0...master
+export LUA_RESTY_COOKIE_VERSION=f418d77082eaef48331302e84330488fdc810ef4
+
+# Check for recent changes: https://github.com/openresty/lua-resty-dns/compare/v0.22...master
+export LUA_RESTY_DNS=8bb53516e2933e61c317db740a9b7c2048847c2f
+
+# Check for recent changes: https://github.com/ledgetech/lua-resty-http/compare/v0.16.1...master
+export LUA_RESTY_HTTP=v0.17.1
+
+# Check for recent changes: https://github.com/openresty/lua-resty-lock/compare/v0.09...master
+export LUA_RESTY_LOCK=405d0bf4cbfa74d742c6ed3158d442221e6212a9
+
+# Check for recent changes: https://github.com/openresty/lua-resty-upload/compare/v0.11...master
+export LUA_RESTY_UPLOAD_VERSION=979372cce011f3176af3c9aff53fd0e992c4bfd3
+
+# Check for recent changes: https://github.com/openresty/lua-resty-string/compare/v0.15...master
+export LUA_RESTY_STRING_VERSION=6f1bc21d86daef804df3cc34d6427ef68da26844
+
+# Check for recent changes: https://github.com/openresty/lua-resty-memcached/compare/v0.17...master
+export LUA_RESTY_MEMCACHED_VERSION=2f02b68bf65fa2332cce070674a93a69a6c7239b
+
+# Check for recent changes: https://github.com/openresty/lua-resty-redis/compare/v0.30...master
+export LUA_RESTY_REDIS_VERSION=8641b9f1b6f75cca50c90cf8ca5c502ad8950aa8
+
+# Check for recent changes: https://github.com/api7/lua-resty-ipmatcher/compare/v0.6.1...master
+export LUA_RESTY_IPMATCHER_VERSION=3e93c53eb8c9884efe939ef070486a0e507cc5be
+
+# Check for recent changes: https://github.com/ElvinEfendi/lua-resty-global-throttle/compare/v0.2.0...main
+export LUA_RESTY_GLOBAL_THROTTLE_VERSION=v0.2.0
+
+# Check for recent changes:  https://github.com/microsoft/mimalloc/compare/v1.7.6...master
+export MIMALOC_VERSION=v2.1.2
+
+export BUILD_PATH=/tmp/build
+
+ARCH=$(uname -m)
+
+get_src()
+{
+  hash="$1"
+  url="$2"
+  dest="${3-}"
+  ARGS=""
+  f=$(basename "$url")
+
+  echo "Downloading $url"
+
+  curl -sSL "$url" -o "$f"
+  # echo "$hash  $f" | sha256sum -c - || exit 10
+  if [ ! -z "$dest" ]; then
+        mkdir ${BUILD_PATH}/${dest}
+        ARGS="-C ${BUILD_PATH}/${dest} --strip-components=1"
+  fi
+  tar xvzf "$f" $ARGS
+  rm -rf "$f"
+}
+
+# install required packages to build
+apk add \
+  bash \
+  gcc \
+  clang \
+  libc-dev \
+  make \
+  automake \
+  openssl-dev \
+  pcre-dev \
+  zlib-dev \
+  linux-headers \
+  libxslt-dev \
+  gd-dev \
+  perl-dev \
+  libedit-dev \
+  mercurial \
+  alpine-sdk \
+  findutils \
+  curl \
+  ca-certificates \
+  patch \
+  libaio-dev \
+  openssl \
+  cmake \
+  util-linux \
+  lmdb-tools \
+  wget \
+  curl-dev \
+  libprotobuf \
+  git g++ pkgconf flex bison doxygen yajl-dev lmdb-dev libtool autoconf libxml2 libxml2-dev \
+  python3 \
+  libmaxminddb-dev \
+  bc \
+  unzip \
+  dos2unix \
+  yaml-cpp \
+  coreutils
+
+mkdir -p /etc/nginx
+
+mkdir --verbose -p "$BUILD_PATH"
+cd "$BUILD_PATH"
+
+# download, verify and extract the source files
+get_src 66dc7081488811e9f925719e34d1b4504c2801c81dee2920e5452a86b11405ae \
+        "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
+
+get_src aa961eafb8317e0eb8da37eb6e2c9ff42267edd18b56947384e719b85188f58b \
+        "https://github.com/vision5/ngx_devel_kit/archive/$NDK_VERSION.tar.gz" "ngx_devel_kit"
+
+get_src cd5e2cc834bcfa30149e7511f2b5a2183baf0b70dc091af717a89a64e44a2985 \
+        "https://github.com/openresty/set-misc-nginx-module/archive/$SETMISC_VERSION.tar.gz" "set-misc-nginx-module"
+
+get_src 0c0d2ced2ce895b3f45eb2b230cd90508ab2a773299f153de14a43e44c1209b3 \
+        "https://github.com/openresty/headers-more-nginx-module/archive/$MORE_HEADERS_VERSION.tar.gz" "headers-more-nginx-module"
+
+get_src f09851e6309560a8ff3e901548405066c83f1f6ff88aa7171e0763bd9514762b \
+        "https://github.com/atomx/nginx-http-auth-digest/archive/$NGINX_DIGEST_AUTH.tar.gz" "nginx-http-auth-digest"
+
+get_src a98b48947359166326d58700ccdc27256d2648218072da138ab6b47de47fbd8f \
+        "https://github.com/yaoweibin/ngx_http_substitutions_filter_module/archive/$NGINX_SUBSTITUTIONS.tar.gz" "ngx_http_substitutions_filter_module"
+
+get_src 32a42256616cc674dca24c8654397390adff15b888b77eb74e0687f023c8751b \
+        "https://github.com/SpiderLabs/ModSecurity-nginx/archive/$MODSECURITY_VERSION.tar.gz" "ModSecurity-nginx"
+
+get_src bc764db42830aeaf74755754b900253c233ad57498debe7a441cee2c6f4b07c2 \
+        "https://github.com/openresty/lua-nginx-module/archive/$LUA_NGX_VERSION.tar.gz" "lua-nginx-module"
+
+get_src 01b715754a8248cc7228e0c8f97f7488ae429d90208de0481394e35d24cef32f \
+        "https://github.com/openresty/stream-lua-nginx-module/archive/$LUA_STREAM_NGX_VERSION.tar.gz" "stream-lua-nginx-module"
+
+get_src a92c9ee6682567605ece55d4eed5d1d54446ba6fba748cff0a2482aea5713d5f \
+        "https://github.com/openresty/lua-upstream-nginx-module/archive/$LUA_UPSTREAM_VERSION.tar.gz" "lua-upstream-nginx-module"
+
+get_src 77bbcbb24c3c78f51560017288f3118d995fe71240aa379f5818ff6b166712ff \
+        "https://github.com/openresty/luajit2/archive/$LUAJIT_VERSION.tar.gz" "luajit2"
+
+get_src b6c9c09fd43eb34a71e706ad780b2ead26549a9a9f59280fe558f5b7b980b7c6 \
+        "https://github.com/leev/ngx_http_geoip2_module/archive/$GEOIP2_VERSION.tar.gz" "ngx_http_geoip2_module"
+
+get_src deb4ab1ffb9f3d962c4b4a2c4bdff692b86a209e3835ae71ebdf3b97189e40a9 \
+        "https://github.com/openresty/lua-resty-upload/archive/$LUA_RESTY_UPLOAD_VERSION.tar.gz" "lua-resty-upload"
+
+get_src bdbf271003d95aa91cab0a92f24dca129e99b33f79c13ebfcdbbcbb558129491 \
+        "https://github.com/openresty/lua-resty-string/archive/$LUA_RESTY_STRING_VERSION.tar.gz" "lua-resty-string"
+
+get_src 16d72ed133f0c6df376a327386c3ef4e9406cf51003a700737c3805770ade7c5 \
+        "https://github.com/openresty/lua-resty-balancer/archive/$LUA_RESTY_BALANCER.tar.gz" "lua-resty-balancer"
+
+get_src 39baab9e2b31cc48cecf896cea40ef6e80559054fd8a6e440cc804a858ea84d4 \
+        "https://github.com/openresty/lua-resty-core/archive/$LUA_RESTY_CORE.tar.gz" "lua-resty-core"
+
+get_src a77b9de160d81712f2f442e1de8b78a5a7ef0d08f13430ff619f79235db974d4 \
+        "https://github.com/openresty/lua-cjson/archive/$LUA_CJSON_VERSION.tar.gz" "lua-cjson"
+
+get_src 5ed48c36231e2622b001308622d46a0077525ac2f751e8cc0c9905914254baa4 \
+        "https://github.com/cloudflare/lua-resty-cookie/archive/$LUA_RESTY_COOKIE_VERSION.tar.gz" "lua-resty-cookie"
+
+get_src 573184006b98ccee2594b0d134fa4d05e5d2afd5141cbad315051ccf7e9b6403 \
+        "https://github.com/openresty/lua-resty-lrucache/archive/$LUA_RESTY_CACHE.tar.gz" "lua-resty-lrucache"
+
+get_src b4ddcd47db347e9adf5c1e1491a6279a6ae2a3aff3155ef77ea0a65c998a69c1 \
+        "https://github.com/openresty/lua-resty-lock/archive/$LUA_RESTY_LOCK.tar.gz" "lua-resty-lock"
+
+get_src 70e9a01eb32ccade0d5116a25bcffde0445b94ad35035ce06b94ccd260ad1bf0 \
+        "https://github.com/openresty/lua-resty-dns/archive/$LUA_RESTY_DNS.tar.gz" "lua-resty-dns"
+
+get_src 9fcb6db95bc37b6fce77d3b3dc740d593f9d90dce0369b405eb04844d56ac43f \
+        "https://github.com/ledgetech/lua-resty-http/archive/$LUA_RESTY_HTTP.tar.gz" "lua-resty-http"
+
+get_src 02733575c4aed15f6cab662378e4b071c0a4a4d07940c4ef19a7319e9be943d4 \
+        "https://github.com/openresty/lua-resty-memcached/archive/$LUA_RESTY_MEMCACHED_VERSION.tar.gz" "lua-resty-memcached"
+
+get_src c15aed1a01c88a3a6387d9af67a957dff670357f5fdb4ee182beb44635eef3f1 \
+        "https://github.com/openresty/lua-resty-redis/archive/$LUA_RESTY_REDIS_VERSION.tar.gz" "lua-resty-redis"
+
+get_src efb767487ea3f6031577b9b224467ddbda2ad51a41c5867a47582d4ad85d609e \
+        "https://github.com/api7/lua-resty-ipmatcher/archive/$LUA_RESTY_IPMATCHER_VERSION.tar.gz" "lua-resty-ipmatcher"
+
+get_src 0fb790e394510e73fdba1492e576aaec0b8ee9ef08e3e821ce253a07719cf7ea \
+        "https://github.com/ElvinEfendi/lua-resty-global-throttle/archive/$LUA_RESTY_GLOBAL_THROTTLE_VERSION.tar.gz" "lua-resty-global-throttle"
+
+get_src d74f86ada2329016068bc5a243268f1f555edd620b6a7d6ce89295e7d6cf18da \
+        "https://github.com/microsoft/mimalloc/archive/${MIMALOC_VERSION}.tar.gz" "mimalloc"
+
+# improve compilation times
+CORES=$(($(grep -c ^processor /proc/cpuinfo) - 1))
+
+export MAKEFLAGS=-j${CORES}
+export CTEST_BUILD_FLAGS=${MAKEFLAGS}
+
+# Install luajit from openresty fork
+export LUAJIT_LIB=/usr/local/lib
+export LUA_LIB_DIR="$LUAJIT_LIB/lua"
+export LUAJIT_INC=/usr/local/include/luajit-2.1
+
+cd "$BUILD_PATH/luajit2"
+make CCDEBUG=-g
+make install
+
+ln -s /usr/local/bin/luajit /usr/local/bin/lua
+ln -s "$LUAJIT_INC" /usr/local/include/lua
+
+cd "$BUILD_PATH"
+
+# Git tuning
+git config --global --add core.compression -1
+
+# Get Brotli source and deps
+cd "$BUILD_PATH"
+git clone --depth=100 https://github.com/google/ngx_brotli.git
+cd ngx_brotli
+# https://github.com/google/ngx_brotli/issues/156
+git reset --hard 63ca02abdcf79c9e788d2eedcc388d2335902e52
+git submodule init
+git submodule update
+
+cd "$BUILD_PATH"
+git clone --depth=1 https://github.com/ssdeep-project/ssdeep
+cd ssdeep/
+
+./bootstrap
+./configure
+
+make
+make install
+
+# build modsecurity library
+cd "$BUILD_PATH"
+git clone -n https://github.com/SpiderLabs/ModSecurity
+cd ModSecurity/
+git checkout $MODSECURITY_LIB_VERSION
+git submodule init
+git submodule update
+
+sh build.sh
+
+# https://github.com/SpiderLabs/ModSecurity/issues/1909#issuecomment-465926762
+sed -i '115i LUA_CFLAGS="${LUA_CFLAGS} -DWITH_LUA_JIT_2_1"' build/lua.m4
+sed -i '117i AC_SUBST(LUA_CFLAGS)' build/lua.m4
+
+./configure \
+  --disable-doxygen-doc \
+  --disable-doxygen-html \
+  --disable-examples
+
+make
+make install
+
+mkdir -p /etc/nginx/modsecurity
+cp modsecurity.conf-recommended /etc/nginx/modsecurity/modsecurity.conf
+cp unicode.mapping /etc/nginx/modsecurity/unicode.mapping
+
+# Replace serial logging with concurrent
+sed -i 's|SecAuditLogType Serial|SecAuditLogType Concurrent|g' /etc/nginx/modsecurity/modsecurity.conf
+
+# Concurrent logging implies the log is stored in several files
+echo "SecAuditLogStorageDir /var/log/audit/" >> /etc/nginx/modsecurity/modsecurity.conf
+
+# Download owasp modsecurity crs
+cd /etc/nginx/
+
+git clone -b $OWASP_MODSECURITY_CRS_VERSION https://github.com/coreruleset/coreruleset
+mv coreruleset owasp-modsecurity-crs
+cd owasp-modsecurity-crs
+
+mv crs-setup.conf.example crs-setup.conf
+mv rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf
+mv rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf.example rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
+cd ..
+
+# OWASP CRS v3 rules
+echo "
+Include /etc/nginx/owasp-modsecurity-crs/crs-setup.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-901-INITIALIZATION.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-903.9001-DRUPAL-EXCLUSION-RULES.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-905-COMMON-EXCEPTIONS.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-910-IP-REPUTATION.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-911-METHOD-ENFORCEMENT.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-912-DOS-PROTECTION.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-913-SCANNER-DETECTION.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-921-PROTOCOL-ATTACK.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-922-MULTIPART-ATTACK.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-931-APPLICATION-ATTACK-RFI.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-934-APPLICATION-ATTACK-NODEJS.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-941-APPLICATION-ATTACK-XSS.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-944-APPLICATION-ATTACK-JAVA.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-950-DATA-LEAKAGES.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-951-DATA-LEAKAGES-SQL.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-952-DATA-LEAKAGES-JAVA.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-953-DATA-LEAKAGES-PHP.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-954-DATA-LEAKAGES-IIS.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-959-BLOCKING-EVALUATION.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-980-CORRELATION.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
+" > /etc/nginx/owasp-modsecurity-crs/nginx-modsecurity.conf
+
+# build nginx
+cd "$BUILD_PATH/nginx-$NGINX_VERSION"
+
+# apply nginx patches
+for PATCH in `ls /patches`;do
+  echo "Patch: $PATCH"
+  if [[ "$PATCH" == *.txt ]]; then
+    patch -p0 < /patches/$PATCH
+  else
+    patch -p1 < /patches/$PATCH
+  fi
+done
+
+WITH_FLAGS="--with-debug \
+  --with-compat \
+  --with-pcre-jit \
+  --with-http_ssl_module \
+  --with-http_stub_status_module \
+  --with-http_realip_module \
+  --with-http_auth_request_module \
+  --with-http_addition_module \
+  --with-http_gzip_static_module \
+  --with-http_sub_module \
+  --with-http_v2_module \
+  --with-stream \
+  --with-stream_ssl_module \
+  --with-stream_realip_module \
+  --with-stream_ssl_preread_module \
+  --with-threads \
+  --with-http_secure_link_module \
+  --with-http_gunzip_module"
+
+# "Combining -flto with -g is currently experimental and expected to produce unexpected results."
+# https://gcc.gnu.org/onlinedocs/gcc/Optimize-Options.html
+CC_OPT="-g -O2 -fPIE -fstack-protector-strong \
+  -Wformat \
+  -Werror=format-security \
+  -Wno-deprecated-declarations \
+  -fno-strict-aliasing \
+  -D_FORTIFY_SOURCE=2 \
+  --param=ssp-buffer-size=4 \
+  -DTCP_FASTOPEN=23 \
+  -fPIC \
+  -Wno-cast-function-type"
+
+LD_OPT="-fPIE -fPIC -pie -Wl,-z,relro -Wl,-z,now"
+
+if [[ ${ARCH} != "aarch64" ]]; then
+  WITH_FLAGS+=" --with-file-aio"
+fi
+
+if [[ ${ARCH} == "x86_64" ]]; then
+  CC_OPT+=' -m64 -mtune=generic'
+fi
+
+WITH_MODULES=" \
+  --add-module=$BUILD_PATH/ngx_devel_kit \
+  --add-module=$BUILD_PATH/set-misc-nginx-module \
+  --add-module=$BUILD_PATH/headers-more-nginx-module \
+  --add-module=$BUILD_PATH/ngx_http_substitutions_filter_module \
+  --add-module=$BUILD_PATH/lua-nginx-module \
+  --add-module=$BUILD_PATH/stream-lua-nginx-module \
+  --add-module=$BUILD_PATH/lua-upstream-nginx-module \
+  --add-dynamic-module=$BUILD_PATH/nginx-http-auth-digest \
+  --add-dynamic-module=$BUILD_PATH/ModSecurity-nginx \
+  --add-dynamic-module=$BUILD_PATH/ngx_http_geoip2_module \
+  --add-dynamic-module=$BUILD_PATH/ngx_brotli"
+
+./configure \
+  --prefix=/usr/local/nginx \
+  --conf-path=/etc/nginx/nginx.conf \
+  --modules-path=/etc/nginx/modules \
+  --http-log-path=/var/log/nginx/access.log \
+  --error-log-path=/var/log/nginx/error.log \
+  --lock-path=/var/lock/nginx.lock \
+  --pid-path=/run/nginx.pid \
+  --http-client-body-temp-path=/var/lib/nginx/body \
+  --http-fastcgi-temp-path=/var/lib/nginx/fastcgi \
+  --http-proxy-temp-path=/var/lib/nginx/proxy \
+  --http-scgi-temp-path=/var/lib/nginx/scgi \
+  --http-uwsgi-temp-path=/var/lib/nginx/uwsgi \
+  ${WITH_FLAGS} \
+  --without-mail_pop3_module \
+  --without-mail_smtp_module \
+  --without-mail_imap_module \
+  --without-http_uwsgi_module \
+  --without-http_scgi_module \
+  --with-cc-opt="${CC_OPT}" \
+  --with-ld-opt="${LD_OPT}" \
+  --user=www-data \
+  --group=www-data \
+  ${WITH_MODULES}
+
+make
+make modules
+make install
+
+cd "$BUILD_PATH/lua-resty-core"
+make install
+
+cd "$BUILD_PATH/lua-resty-balancer"
+make all
+make install
+
+export LUA_INCLUDE_DIR=/usr/local/include/luajit-2.1
+ln -s $LUA_INCLUDE_DIR /usr/include/lua5.1
+
+cd "$BUILD_PATH/lua-cjson"
+make all
+make install
+
+cd "$BUILD_PATH/lua-resty-cookie"
+make all
+make install
+
+cd "$BUILD_PATH/lua-resty-lrucache"
+make install
+
+cd "$BUILD_PATH/lua-resty-dns"
+make install
+
+cd "$BUILD_PATH/lua-resty-lock"
+make install
+
+# required for OCSP verification
+cd "$BUILD_PATH/lua-resty-http"
+make install
+
+cd "$BUILD_PATH/lua-resty-upload"
+make install
+
+cd "$BUILD_PATH/lua-resty-string"
+make install
+
+cd "$BUILD_PATH/lua-resty-memcached"
+make install
+
+cd "$BUILD_PATH/lua-resty-redis"
+make install
+
+cd "$BUILD_PATH/lua-resty-ipmatcher"
+INST_LUADIR=/usr/local/lib/lua make install
+
+cd "$BUILD_PATH/lua-resty-global-throttle"
+make install
+
+cd "$BUILD_PATH/mimalloc"
+mkdir -p out/release
+cd out/release
+
+cmake ../..
+
+make
+make install
+
+# update image permissions
+writeDirs=( \
+  /etc/nginx \
+  /usr/local/nginx \
+  /opt/modsecurity/var/log \
+  /opt/modsecurity/var/upload \
+  /opt/modsecurity/var/audit \
+  /var/log/audit \
+  /var/log/nginx \
+);
+
+adduser -S -D -H -u 101 -h /usr/local/nginx -s /sbin/nologin -G www-data -g www-data www-data
+
+for dir in "${writeDirs[@]}"; do
+  mkdir -p ${dir};
+  chown -R www-data.www-data ${dir};
+done
+
+rm -rf /etc/nginx/owasp-modsecurity-crs/.git
+rm -rf /etc/nginx/owasp-modsecurity-crs/util/regression-tests
+
+# remove .a files
+find /usr/local -name "*.a" -print | xargs /bin/rm
diff --git a/images/nginx-1.25/rootfs/patches/drop-alias-root.patch b/images/nginx-1.25/rootfs/patches/drop-alias-root.patch
new file mode 100644
index 000000000..a92e08bd0
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/drop-alias-root.patch
@@ -0,0 +1,144 @@
+:100644 100644 c7463dcd 00000000 M	src/http/ngx_http_core_module.c
+diff --git a/src/http/ngx_http_core_module.c b/src/http/ngx_http_core_module.c
+index c7463dcd..e2e45931 100644
+--- a/src/http/ngx_http_core_module.c
++++ b/src/http/ngx_http_core_module.c
+@@ -55,7 +55,6 @@ static char *ngx_http_core_listen(ngx_conf_t *cf, ngx_command_t *cmd,
+     void *conf);
+ static char *ngx_http_core_server_name(ngx_conf_t *cf, ngx_command_t *cmd,
+     void *conf);
+-static char *ngx_http_core_root(ngx_conf_t *cf, ngx_command_t *cmd, void *conf);
+ static char *ngx_http_core_limit_except(ngx_conf_t *cf, ngx_command_t *cmd,
+     void *conf);
+ static char *ngx_http_core_set_aio(ngx_conf_t *cf, ngx_command_t *cmd,
+@@ -323,21 +322,6 @@ static ngx_command_t  ngx_http_core_commands[] = {
+       offsetof(ngx_http_core_loc_conf_t, default_type),
+       NULL },
+ 
+-    { ngx_string("root"),
+-      NGX_HTTP_MAIN_CONF|NGX_HTTP_SRV_CONF|NGX_HTTP_LOC_CONF|NGX_HTTP_LIF_CONF
+-                        |NGX_CONF_TAKE1,
+-      ngx_http_core_root,
+-      NGX_HTTP_LOC_CONF_OFFSET,
+-      0,
+-      NULL },
+-
+-    { ngx_string("alias"),
+-      NGX_HTTP_LOC_CONF|NGX_CONF_TAKE1,
+-      ngx_http_core_root,
+-      NGX_HTTP_LOC_CONF_OFFSET,
+-      0,
+-      NULL },
+-
+     { ngx_string("limit_except"),
+       NGX_HTTP_LOC_CONF|NGX_CONF_BLOCK|NGX_CONF_1MORE,
+       ngx_http_core_limit_except,
+@@ -4312,108 +4296,6 @@ ngx_http_core_server_name(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
+ }
+ 
+ 
+-static char *
+-ngx_http_core_root(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
+-{
+-    ngx_http_core_loc_conf_t *clcf = conf;
+-
+-    ngx_str_t                  *value;
+-    ngx_int_t                   alias;
+-    ngx_uint_t                  n;
+-    ngx_http_script_compile_t   sc;
+-
+-    alias = (cmd->name.len == sizeof("alias") - 1) ? 1 : 0;
+-
+-    if (clcf->root.data) {
+-
+-        if ((clcf->alias != 0) == alias) {
+-            return "is duplicate";
+-        }
+-
+-        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
+-                           "\"%V\" directive is duplicate, "
+-                           "\"%s\" directive was specified earlier",
+-                           &cmd->name, clcf->alias ? "alias" : "root");
+-
+-        return NGX_CONF_ERROR;
+-    }
+-
+-    if (clcf->named && alias) {
+-        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
+-                           "the \"alias\" directive cannot be used "
+-                           "inside the named location");
+-
+-        return NGX_CONF_ERROR;
+-    }
+-
+-    value = cf->args->elts;
+-
+-    if (ngx_strstr(value[1].data, "$document_root")
+-        || ngx_strstr(value[1].data, "${document_root}"))
+-    {
+-        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
+-                           "the $document_root variable cannot be used "
+-                           "in the \"%V\" directive",
+-                           &cmd->name);
+-
+-        return NGX_CONF_ERROR;
+-    }
+-
+-    if (ngx_strstr(value[1].data, "$realpath_root")
+-        || ngx_strstr(value[1].data, "${realpath_root}"))
+-    {
+-        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
+-                           "the $realpath_root variable cannot be used "
+-                           "in the \"%V\" directive",
+-                           &cmd->name);
+-
+-        return NGX_CONF_ERROR;
+-    }
+-
+-    clcf->alias = alias ? clcf->name.len : 0;
+-    clcf->root = value[1];
+-
+-    if (!alias && clcf->root.len > 0
+-        && clcf->root.data[clcf->root.len - 1] == '/')
+-    {
+-        clcf->root.len--;
+-    }
+-
+-    if (clcf->root.data[0] != '$') {
+-        if (ngx_conf_full_name(cf->cycle, &clcf->root, 0) != NGX_OK) {
+-            return NGX_CONF_ERROR;
+-        }
+-    }
+-
+-    n = ngx_http_script_variables_count(&clcf->root);
+-
+-    ngx_memzero(&sc, sizeof(ngx_http_script_compile_t));
+-    sc.variables = n;
+-
+-#if (NGX_PCRE)
+-    if (alias && clcf->regex) {
+-        clcf->alias = NGX_MAX_SIZE_T_VALUE;
+-        n = 1;
+-    }
+-#endif
+-
+-    if (n) {
+-        sc.cf = cf;
+-        sc.source = &clcf->root;
+-        sc.lengths = &clcf->root_lengths;
+-        sc.values = &clcf->root_values;
+-        sc.complete_lengths = 1;
+-        sc.complete_values = 1;
+-
+-        if (ngx_http_script_compile(&sc) != NGX_OK) {
+-            return NGX_CONF_ERROR;
+-        }
+-    }
+-
+-    return NGX_CONF_OK;
+-}
+-
+-
+ static ngx_http_method_name_t  ngx_methods_names[] = {
+     { (u_char *) "GET",       (uint32_t) ~NGX_HTTP_GET },
+     { (u_char *) "HEAD",      (uint32_t) ~NGX_HTTP_HEAD },
diff --git a/test/e2e/run-e2e-suite.sh b/test/e2e/run-e2e-suite.sh
index 015895e56..9333ee61f 100755
--- a/test/e2e/run-e2e-suite.sh
+++ b/test/e2e/run-e2e-suite.sh
@@ -79,6 +79,7 @@ kubectl run --rm \
   --env="FOCUS=${FOCUS}" \
   --env="IS_CHROOT=${IS_CHROOT:-false}"\
   --env="ENABLE_VALIDATIONS=${ENABLE_VALIDATIONS:-false}"\
+  --env="SKIP_OPENTELEMETRY_TESTS=${SKIP_OPENTELEMETRY_TESTS:-false}"\
   --env="E2E_CHECK_LEAKS=${E2E_CHECK_LEAKS}" \
   --env="NGINX_BASE_IMAGE=${NGINX_BASE_IMAGE}" \
   --env="HTTPBUN_IMAGE=${HTTPBUN_IMAGE}" \
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index 3cc4d2a35..8896a2b3e 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -46,7 +46,7 @@ DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
 export TAG=1.0.0-dev
 export ARCH=${ARCH:-amd64}
 export REGISTRY=ingress-controller
-NGINX_BASE_IMAGE=$(cat "$DIR"/../../NGINX_BASE)
+NGINX_BASE_IMAGE=${NGINX_BASE_IMAGE:-$(cat "$DIR"/../../NGINX_BASE)}
 export NGINX_BASE_IMAGE=$NGINX_BASE_IMAGE
 export DOCKER_CLI_EXPERIMENTAL=enabled
 export KUBECONFIG="${KUBECONFIG:-$HOME/.kube/kind-config-$KIND_CLUSTER_NAME}"
@@ -85,10 +85,10 @@ fi
 if [ "${SKIP_INGRESS_IMAGE_CREATION}" = "false" ]; then
   echo "[dev-env] building image"
   if [ "${IS_CHROOT}" = "true" ]; then
-    make -C "${DIR}"/../../ clean-image build image-chroot
+    make BASE_IMAGE="${NGINX_BASE_IMAGE}" -C "${DIR}"/../../ clean-image build image-chroot
     docker tag ${REGISTRY}/controller-chroot:${TAG} ${REGISTRY}/controller:${TAG}
   else
-    make -C "${DIR}"/../../ clean-image build image
+    make BASE_IMAGE="${NGINX_BASE_IMAGE}" -C "${DIR}"/../../ clean-image build image
   fi
 
   echo "[dev-env] .. done building controller images"
diff --git a/test/e2e/settings/opentelemetry.go b/test/e2e/settings/opentelemetry.go
index b5fc6ff4e..af946f277 100644
--- a/test/e2e/settings/opentelemetry.go
+++ b/test/e2e/settings/opentelemetry.go
@@ -17,6 +17,7 @@ limitations under the License.
 package settings
 
 import (
+	"os"
 	"strings"
 
 	"github.com/onsi/ginkgo/v2"
@@ -39,6 +40,12 @@ const (
 var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 	f := framework.NewDefaultFramework("enable-opentelemetry")
 
+	shouldSkip := false
+	skip, ok := os.LookupEnv("SKIP_OPENTELEMETRY_TESTS")
+	if ok && skip == enable {
+		shouldSkip = true
+	}
+
 	ginkgo.BeforeEach(func() {
 		f.NewEchoDeployment()
 	})
@@ -47,6 +54,9 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 	})
 
 	ginkgo.It("should not exists opentelemetry directive", func() {
+		if shouldSkip {
+			ginkgo.Skip("skipped")
+		}
 		config := map[string]string{}
 		config[enableOpentelemetry] = disable
 		f.SetNginxConfigMapData(config)
@@ -60,6 +70,9 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 	})
 
 	ginkgo.It("should exists opentelemetry directive when is enabled", func() {
+		if shouldSkip {
+			ginkgo.Skip("skipped")
+		}
 		config := map[string]string{}
 		config[enableOpentelemetry] = enable
 		config[opentelemetryConfig] = opentelemetryConfigPath
@@ -74,6 +87,9 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 	})
 
 	ginkgo.It("should include opentelemetry_trust_incoming_spans on directive when enabled", func() {
+		if shouldSkip {
+			ginkgo.Skip("skipped")
+		}
 		config := map[string]string{}
 		config[enableOpentelemetry] = enable
 		config[opentelemetryConfig] = opentelemetryConfigPath
@@ -89,6 +105,9 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 	})
 
 	ginkgo.It("should not exists opentelemetry_operation_name directive when is empty", func() {
+		if shouldSkip {
+			ginkgo.Skip("skipped")
+		}
 		config := map[string]string{}
 		config[enableOpentelemetry] = enable
 		config[opentelemetryConfig] = opentelemetryConfigPath
@@ -104,6 +123,9 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 	})
 
 	ginkgo.It("should exists opentelemetry_operation_name directive when is configured", func() {
+		if shouldSkip {
+			ginkgo.Skip("skipped")
+		}
 		config := map[string]string{}
 		config[enableOpentelemetry] = enable
 		config[opentelemetryConfig] = opentelemetryConfigPath

From 256374079f29993e554b934ffec576b7b6fd54ac Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sat, 20 Jan 2024 08:50:03 +0530
Subject: [PATCH 1116/1641] changed pip to apk in test-runner dockerfile
 (#10885)

---
 images/test-runner/rootfs/Dockerfile | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index e6502ea68..13ca6074f 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -120,7 +120,10 @@ RUN wget -qO /tmp/helm.tgz \
   && rm -rf /tmp/*
 
 # Install a YAML Linter
-RUN pip install --user "yamllint==$YAML_LINT_VERSION"
+# Pip not working. Check PR https://github.com/kubernetes/ingress-nginx/pull/10874
+# RUN pip install --user "yamllint==$YAML_LINT_VERSION"
+RUN apk update -U \
+    apk add yamllint
 
 # Install Yamale YAML schema validator
 RUN pip install --user "yamale==$YAMALE_VERSION"

From 8227888ba0a9b09afb4514284ef89f331d4c60b9 Mon Sep 17 00:00:00 2001
From: Ehsan Saei <71217171+esigo@users.noreply.github.com>
Date: Sun, 21 Jan 2024 21:56:39 +0100
Subject: [PATCH 1117/1641] fix OpenTelemtry image build (#10888)

* fix OpenTelemtry image build

* use fpic
---
 images/opentelemetry/rootfs/CMakeLists.txt | 65 +++++++++++++++++++++-
 images/opentelemetry/rootfs/Dockerfile     |  6 +-
 images/opentelemetry/rootfs/build.sh       |  2 +-
 3 files changed, 65 insertions(+), 8 deletions(-)

diff --git a/images/opentelemetry/rootfs/CMakeLists.txt b/images/opentelemetry/rootfs/CMakeLists.txt
index 2a816ebf7..a1ff85b49 100644
--- a/images/opentelemetry/rootfs/CMakeLists.txt
+++ b/images/opentelemetry/rootfs/CMakeLists.txt
@@ -24,7 +24,7 @@ project(
 set(CMAKE_CXX_STANDARD 17)
 set(CMAKE_CXX_EXTENSIONS OFF)
 set(CMAKE_CXX_STANDARD_REQUIRED ON)
-set(CMAKE_CXX_FLAGS "-O2")
+set(CMAKE_CXX_FLAGS "-O2 -fpic")
 set(CMAKE_VERBOSE_MAKEFILE ON CACHE BOOL "ON" FORCE)
 
 set(CMAKE_BUILD_TYPE
@@ -69,8 +69,49 @@ set(GRPC_GIT_TAG
     CACHE STRING "gRPC version")
 
 include(ExternalProject)
+set(ABSEIL_GIT_TAG "20230802.1" CACHE STRING "Abseil version")
+
+ExternalProject_Add(
+  Abseil
+  GIT_REPOSITORY https://github.com/abseil/abseil-cpp.git
+  GIT_TAG ${ABSEIL_GIT_TAG}
+  GIT_SHALLOW 1
+  UPDATE_COMMAND ""
+  CMAKE_ARGS -DCMAKE_INSTALL_PREFIX=${STAGED_INSTALL_PREFIX}
+             -DCMAKE_BUILD_TYPE=${CMAKE_BUILD_TYPE}
+             -DCMAKE_CXX_COMPILER=${CMAKE_CXX_COMPILER}
+             -DCMAKE_CXX_STANDARD=${CMAKE_CXX_STANDARD}
+             -DCMAKE_CXX_FLAGS:STRING=${CMAKE_CXX_FLAGS}
+  USES_TERMINAL_BUILD TRUE
+  DOWNLOAD_NO_PROGRESS TRUE
+  LOG_CONFIGURE TRUE
+  LOG_BUILD TRUE
+  LOG_INSTALL TRUE)
+
+# RE2 settings
+set(RE2_GIT_TAG "2023-11-01" CACHE STRING "RE2 version")
+
+ExternalProject_Add(
+  RE2
+  DEPENDS Abseil
+  GIT_REPOSITORY https://github.com/google/re2.git
+  GIT_TAG ${RE2_GIT_TAG}
+  GIT_SHALLOW 1
+  UPDATE_COMMAND ""
+  CMAKE_ARGS -DCMAKE_INSTALL_PREFIX=${STAGED_INSTALL_PREFIX}
+             -DCMAKE_BUILD_TYPE=${CMAKE_BUILD_TYPE}
+             -DCMAKE_CXX_COMPILER=${CMAKE_CXX_COMPILER}
+             -DCMAKE_CXX_STANDARD=${CMAKE_CXX_STANDARD}
+             -DCMAKE_CXX_FLAGS:STRING=${CMAKE_CXX_FLAGS}
+  USES_TERMINAL_BUILD TRUE
+  DOWNLOAD_NO_PROGRESS TRUE
+  LOG_CONFIGURE TRUE
+  LOG_BUILD TRUE
+  LOG_INSTALL TRUE)
+
 ExternalProject_Add(
   gRPC
+  DEPENDS Abseil RE2
   GIT_REPOSITORY https://github.com/grpc/grpc.git
   GIT_TAG ${GRPC_GIT_TAG}
   GIT_SHALLOW 1
@@ -79,6 +120,8 @@ ExternalProject_Add(
              -DCMAKE_BUILD_TYPE=${CMAKE_BUILD_TYPE}
              -DCMAKE_CXX_COMPILER=${CMAKE_CXX_COMPILER}
              -DgRPC_SSL_PROVIDER=package
+             -DgRPC_RE2_PROVIDER=package
+             -DgRPC_ABSEIL_PROVIDER=package
              -DOPENSSL_ROOT_DIR=OpenSSL
              -DgRPC_BUILD_TESTS=OFF
              -DBUILD_SHARED_LIBS=OFF
@@ -88,7 +131,25 @@ ExternalProject_Add(
              -DgRPC_BUILD_GRPC_PHP_PLUGIN=OFF
              -DgRPC_BUILD_GRPC_PYTHON_PLUGIN=OFF
              -DgRPC_BUILD_GRPC_RUBY_PLUGIN=OFF
-  CMAKE_CACHE_ARGS -DCMAKE_CXX_FLAGS:STRING=${CMAKE_CXX_FLAGS}
+             -DgRPC_BUILD_GRPC_NODE_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_OBJECTIVE_C_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_PHP_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_PYTHON_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_RUBY_PLUGIN=OFF
+             -DgRPC_USE_PROTO_LITE=OFF
+             -DgRPC_BUILD_CSHARP_EXT=OFF
+             -DgRPC_BUILD_GRPC_CSHARP_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_JAVA_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_GRPC_JAVA_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_WEB_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_C_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_NODE_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_OBJECTIVE_C_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_PHP_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_PYTHON_PLUGIN=OFF
+             -DgRPC_BUILD_GRPC_RUBY_PLUGIN=OFF
+             -DCMAKE_CXX_STANDARD=${CMAKE_CXX_STANDARD}
+             CMAKE_CACHE_ARGS -DCMAKE_CXX_FLAGS:STRING=${CMAKE_CXX_FLAGS}
   TEST_AFTER_INSTALL FALSE
   USES_TERMINAL_BUILD TRUE
   DOWNLOAD_NO_PROGRESS TRUE
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index 8c8cb1783..e568237c2 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -28,16 +28,12 @@ ENV NINJA_STATUS "[%p/%f/%t] "
 
 # install gRPC
 FROM base as grpc
-RUN bash /opt/third_party/build.sh -g v1.57.0
+RUN bash /opt/third_party/build.sh -g v1.60.0
 
-# install abseil-cpp
-FROM base as absl-cpp
-RUN bash /opt/third_party/build.sh -a 20230802.0
 
 # install OpenTelemetry-cpp
 FROM base as otel-cpp
 COPY --from=grpc /opt/third_party/install/ /usr
-COPY --from=absl-cpp /opt/third_party/install/ /usr
 RUN bash /opt/third_party/build.sh -o v1.11.0
 
 # install otel_ngx_module.so
diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
index ebf95e219..8b491589f 100755
--- a/images/opentelemetry/rootfs/build.sh
+++ b/images/opentelemetry/rootfs/build.sh
@@ -148,7 +148,7 @@ get_src()
 
 install_nginx()
 {
-  export NGINX_VERSION=1.21.6
+  export NGINX_VERSION=1.25.3
 
   # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/2656a4...main
   export OPENTELEMETRY_CONTRIB_COMMIT=aaa51e2297bcb34297f3c7aa44fa790497d2f7f3

From d382bc3d642ff59fecceb60d642cbfaddac07174 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Jan 2024 12:03:33 +0100
Subject: [PATCH 1118/1641] Bump actions/setup-go from 4.1.0 to 5.0.0 (#10893)

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4.1.0 to 5.0.0.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v4.1.0...0c52d547c9bc32b1aa3301fd7a9cb496313a4491)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/nginx125.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/nginx125.yaml b/.github/workflows/nginx125.yaml
index 63c45d4cc..dfdec3c94 100644
--- a/.github/workflows/nginx125.yaml
+++ b/.github/workflows/nginx125.yaml
@@ -52,7 +52,7 @@ jobs:
       uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
     - name: Set up Go
       id: go
-      uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
+      uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
       with:
         go-version: '1.21.5'
         check-latest: true

From 103dae67dc146c0174ae42c57e6afade3124aa67 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Mon, 22 Jan 2024 16:38:48 +0530
Subject: [PATCH 1119/1641] changed yamale install from pip to manual download
 & install (#10886)

---
 images/test-runner/rootfs/Dockerfile | 8 +++++++-
 1 file changed, 7 insertions(+), 1 deletion(-)

diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 13ca6074f..26d72cb0d 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -126,7 +126,13 @@ RUN apk update -U \
     apk add yamllint
 
 # Install Yamale YAML schema validator
-RUN pip install --user "yamale==$YAMALE_VERSION"
+# Commenting pip install yamale because broken cloudbuild https://github.com/kubernetes/ingress-nginx/pull/10885
+# RUN pip install --user "yamale==$YAMALE_VERSION"
+RUN wget https://github.com/23andMe/Yamale/archive/master.zip \
+    && unzip -d /tmp master.zip \
+    && cd /tmp/Yamale-master \
+    && python setup.py install \
+    && yamale -V
 
 LABEL org.opencontainers.image.source=https://github.com/kubernetes/ingress-nginx
 

From fb5c91c55a6e1bafa388a5af3230cd91889c1aff Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Jan 2024 17:08:12 +0100
Subject: [PATCH 1120/1641] Bump actions/upload-artifact from 3.1.3 to 4.2.0
 (#10896)

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.3 to 4.2.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v3.1.3...694cdabd8bdb0f10b2cea11669e1bf5453eed0a6)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml              | 2 +-
 .github/workflows/nginx125.yaml        | 2 +-
 .github/workflows/scorecards.yml       | 2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index e2a0d4c81..815a9b70f 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -137,7 +137,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@1eb3cb2b3e0f29609092a73eb033bb759a334595 # v4.1.0
+        uses: actions/upload-artifact@694cdabd8bdb0f10b2cea11669e1bf5453eed0a6 # v4.2.0
         with:
           name: docker.tar.gz
           path: docker.tar.gz
diff --git a/.github/workflows/nginx125.yaml b/.github/workflows/nginx125.yaml
index dfdec3c94..60bc64d02 100644
--- a/.github/workflows/nginx125.yaml
+++ b/.github/workflows/nginx125.yaml
@@ -91,7 +91,7 @@ jobs:
           nginx-1.25:1.0.0-dev \
           | gzip > docker.tar.gz
     - name: cache
-      uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
+      uses: actions/upload-artifact@694cdabd8bdb0f10b2cea11669e1bf5453eed0a6 # v4.2.0
       with:
         name: docker.tar.gz
         path: docker.tar.gz
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index e5f9ce488..390dcfe46 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@1eb3cb2b3e0f29609092a73eb033bb759a334595 # v4.1.0
+        uses: actions/upload-artifact@694cdabd8bdb0f10b2cea11669e1bf5453eed0a6 # v4.2.0
         with:
           name: SARIF file
           path: results.sarif
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 7bb0f3b7d..d2941eb15 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -49,7 +49,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports ${{ inputs.variation }}
-        uses: actions/upload-artifact@1eb3cb2b3e0f29609092a73eb033bb759a334595 # v4.1.0
+        uses: actions/upload-artifact@694cdabd8bdb0f10b2cea11669e1bf5453eed0a6 # v4.2.0
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}

From 0d16193b9f50b3dd13e75fad12a88b8a6a1f2652 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Jan 2024 17:39:51 +0100
Subject: [PATCH 1121/1641] Bump github.com/onsi/ginkgo/v2 from 2.14.0 to
 2.15.0 (#10900)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.14.0 to 2.15.0.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.14.0...v2.15.0)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 0abf06a8d..216f446f8 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.14.0
+	github.com/onsi/ginkgo/v2 v2.15.0
 	github.com/opencontainers/runc v1.1.11
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.18.0
diff --git a/go.sum b/go.sum
index 27a40b389..ab3495e78 100644
--- a/go.sum
+++ b/go.sum
@@ -281,8 +281,8 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.14.0 h1:vSmGj2Z5YPb9JwCWT6z6ihcUvDhuXLc3sJiqd3jMKAY=
-github.com/onsi/ginkgo/v2 v2.14.0/go.mod h1:JkUdW7JkN0V6rFvsHcJ478egV3XH9NxpD27Hal/PhZw=
+github.com/onsi/ginkgo/v2 v2.15.0 h1:79HwNRBAZHOEwrczrgSOPy+eFTTlIGELKy5as+ClttY=
+github.com/onsi/ginkgo/v2 v2.15.0/go.mod h1:HlxMHtYF57y6Dpf+mc5529KKmSq9h2FpCF+/ZkwUxKM=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.30.0 h1:hvMK7xYz4D3HapigLTeGdId/NcfQx1VHMJc60ew99+8=

From d96dcde1ba1e422e89a54ad6765320b6286cbfb1 Mon Sep 17 00:00:00 2001
From: Sujay <89520981+SD-13@users.noreply.github.com>
Date: Mon, 22 Jan 2024 18:18:38 +0000
Subject: [PATCH 1122/1641] run ci workflow for release branches (#10819)

---
 .github/workflows/ci.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 815a9b70f..eb8815fb8 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -13,6 +13,7 @@ on:
   push:
     branches:
       - main
+      - release-*
     paths-ignore:
       - 'docs/**'
       - 'deploy/**'

From cd6804b49bfa35d2880143486123b6f03a2378b6 Mon Sep 17 00:00:00 2001
From: Christina Waldron <72021941+cnwaldron@users.noreply.github.com>
Date: Mon, 22 Jan 2024 13:24:52 -0500
Subject: [PATCH 1123/1641] Add step for snapshot (#10736)

Only run release steps on tags to avoid failure
---
 .github/workflows/plugin.yaml | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index b322e69ff..9cc3a4a3c 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -22,7 +22,17 @@ jobs:
           go-version: '1.21.5'
           check-latest: true
 
+      - name: Run GoReleaser Snapshot
+        if: ${{ ! startsWith(github.ref, 'refs/tags/') }}
+        uses: goreleaser/goreleaser-action@7ec5c2b0c6cdda6e8bbb49444bc797dd33d74dd8 # v5.0.0
+        with:
+          version: latest
+          args: release --snapshot --clean
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+      
       - name: Run GoReleaser
+        if: ${{ startsWith(github.ref, 'refs/tags/') }}
         uses: goreleaser/goreleaser-action@7ec5c2b0c6cdda6e8bbb49444bc797dd33d74dd8 # v5.0.0
         with:
           version: latest
@@ -31,6 +41,7 @@ jobs:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Update new version in krew-index
+        if: ${{ startsWith(github.ref, 'refs/tags/') }}
         uses: rajatjindal/krew-release-bot@df3eb197549e3568be8b4767eec31c5e8e8e6ad8 # v0.0.46
         with:
           krew_template_file: cmd/plugin/krew.yaml

From 711c7059a58a4825025596237a0138190b6b5b7e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Jan 2024 19:27:51 +0100
Subject: [PATCH 1124/1641] Bump actions/download-artifact from 3.0.2 to 4.1.1
 (#10895)

Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 3.0.2 to 4.1.1.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/v3.0.2...6b208ae046db98c579e8a3aa621ab581ff575935)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/nginx125.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/nginx125.yaml b/.github/workflows/nginx125.yaml
index 60bc64d02..4dfed9567 100644
--- a/.github/workflows/nginx125.yaml
+++ b/.github/workflows/nginx125.yaml
@@ -110,7 +110,7 @@ jobs:
       uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
   
     - name: cache
-      uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
+      uses: actions/download-artifact@6b208ae046db98c579e8a3aa621ab581ff575935 # v4.1.1
       with:
         name: docker.tar.gz
   

From f6a28feb633d1509676fb7eb8709de3f9688bb78 Mon Sep 17 00:00:00 2001
From: longwuyuan <longwuyuan@gmail.com>
Date: Mon, 22 Jan 2024 21:52:52 +0530
Subject: [PATCH 1125/1641] bump ginkgo to 2-15-0

---
 build/run-in-docker.sh      | 2 +-
 images/test-runner/Makefile | 4 ++--
 test/e2e/run-chart-test.sh  | 2 +-
 test/e2e/run-kind-e2e.sh    | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index bfac365da..9b1b33bf3 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -87,7 +87,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.14.0
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.15.0
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index d96c6258c..5b1a87652 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -54,7 +54,7 @@ image:
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.11.2 \
-		--build-arg GINKGO_VERSION=2.14.0 \
+		--build-arg GINKGO_VERSION=2.15.0 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -75,7 +75,7 @@ build: ensure-buildx
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.11.2 \
-		--build-arg GINKGO_VERSION=2.14.0 \
+		--build-arg GINKGO_VERSION=2.15.0 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 1e112d28e..92e6d66aa 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.14.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.15.0
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index 8896a2b3e..5e4afb57d 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -96,7 +96,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.14.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.15.0
   fi
 
   echo "[dev-env] .. done building controller images"

From c549dc7a6aa62b96f2a86ff58eb81ab9916f08c0 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Jan 2024 22:47:12 +0100
Subject: [PATCH 1126/1641] Bump github/codeql-action from 3.23.0 to 3.23.1
 (#10892)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.23.0 to 3.23.1.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Commits](https://github.com/github/codeql-action/compare/v3.23.0...v3.23.1)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/images.yaml              | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index f58872f87..fcb02f635 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -176,6 +176,6 @@ jobs:
         ignore-unfixed: true
         output: 'trivy-results.sarif'
     - name: Upload Trivy scan results to GitHub Security tab
-      uses: github/codeql-action/upload-sarif@v3.23.0
+      uses: github/codeql-action/upload-sarif@v3.23.1
       with:
         sarif_file: 'trivy-results.sarif'
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 390dcfe46..cbfee59fc 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@96531062ba46eb11dee25758db76518ad30ee4cf # v2.1.37
+        uses: github/codeql-action/upload-sarif@b96e5e1158e8b8f7694d677976037b27efd275d4 # v2.1.37
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 5b76aebc1..869ba472e 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@96531062ba46eb11dee25758db76518ad30ee4cf # v2.1.37
+        uses: github/codeql-action/upload-sarif@b96e5e1158e8b8f7694d677976037b27efd275d4 # v2.1.37
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From e9e70c8c3d3b8ef7fa75e51fe6b05e435e54d789 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Jan 2024 22:50:35 +0100
Subject: [PATCH 1127/1641] Bump actions/dependency-review-action from 3.1.5 to
 4.0.0 (#10894)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 3.1.5 to 4.0.0.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/c74b580d73376b7750d3d2a50bfb8adc2c937507...4901385134134e04cec5fbe5ddfe3b2c5bd5d976)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 44dfe99fb..68822744d 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@c74b580d73376b7750d3d2a50bfb8adc2c937507 # v3.1.5
+        uses: actions/dependency-review-action@4901385134134e04cec5fbe5ddfe3b2c5bd5d976 # v4.0.0

From 0c3d52bade1219c1d61d486e44a91ded48766aac Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Tue, 23 Jan 2024 13:04:27 +0530
Subject: [PATCH 1128/1641] changed testrunner image-sha for ginkgo-2-15-0
 (#10906)

---
 build/run-in-docker.sh     | 2 +-
 test/e2e-image/Makefile    | 2 +-
 test/e2e/run-chart-test.sh | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 9b1b33bf3..656292680 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20231208-4c39e6acc@sha256:0607184ca9c53c9c24a47b6f52347dd96137b05c6f276efa67051929a39e8f7a}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240122-aac5d228a@sha256:3f18286471d0d1a8a8b11c98b5477c43a747c9c9a1f08978c5b07955f1ef6474}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index ed6c6d52d..05f21134f 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20231208-4c39e6acc@sha256:0607184ca9c53c9c24a47b6f52347dd96137b05c6f276efa67051929a39e8f7a"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240122-aac5d228a@sha256:3f18286471d0d1a8a8b11c98b5477c43a747c9c9a1f08978c5b07955f1ef6474"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 92e6d66aa..aeeb33ac6 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -109,7 +109,7 @@ docker run --rm --interactive --network host \
     --volume $KUBECONFIG:/root/.kube/config \
     --volume "${DIR}/../../":/workdir \
     --workdir /workdir \
-    registry.k8s.io/ingress-nginx/e2e-test-runner:v20231208-4c39e6acc@sha256:0607184ca9c53c9c24a47b6f52347dd96137b05c6f276efa67051929a39e8f7a \
+    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240122-aac5d228a@sha256:3f18286471d0d1a8a8b11c98b5477c43a747c9c9a1f08978c5b07955f1ef6474 \
         ct install \
         --charts charts/ingress-nginx \
         --helm-extra-args "--timeout 60s"

From 760bf8eb0c8033e71398a8c95f817e8ead5e54c6 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 26 Jan 2024 23:51:16 +0530
Subject: [PATCH 1129/1641] fix run command in dockerfile of test-runner-image
 (#10921)

---
 images/test-runner/rootfs/Dockerfile | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 26d72cb0d..7128bcf70 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -123,7 +123,8 @@ RUN wget -qO /tmp/helm.tgz \
 # Pip not working. Check PR https://github.com/kubernetes/ingress-nginx/pull/10874
 # RUN pip install --user "yamllint==$YAML_LINT_VERSION"
 RUN apk update -U \
-    apk add yamllint
+    && apk add yamllint \
+    && yamllint --version
 
 # Install Yamale YAML schema validator
 # Commenting pip install yamale because broken cloudbuild https://github.com/kubernetes/ingress-nginx/pull/10885

From d378913c780fb92826bd87d1ff88df3efb57c149 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 26 Jan 2024 15:49:09 -0500
Subject: [PATCH 1130/1641] update e2e to latest

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 build/run-in-docker.sh     | 2 +-
 test/e2e-image/Makefile    | 2 +-
 test/e2e/run-chart-test.sh | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 656292680..2eb8b5890 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240122-aac5d228a@sha256:3f18286471d0d1a8a8b11c98b5477c43a747c9c9a1f08978c5b07955f1ef6474}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240126-760bf8eb@sha256:5e676bf2e5d5d035adfc6e093abee040af08327011e72fef640fa20da73cea2e}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 05f21134f..9f43c4691 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240122-aac5d228a@sha256:3f18286471d0d1a8a8b11c98b5477c43a747c9c9a1f08978c5b07955f1ef6474"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240126-760bf8eb@sha256:5e676bf2e5d5d035adfc6e093abee040af08327011e72fef640fa20da73cea2e"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index aeeb33ac6..05f199cb2 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -109,7 +109,7 @@ docker run --rm --interactive --network host \
     --volume $KUBECONFIG:/root/.kube/config \
     --volume "${DIR}/../../":/workdir \
     --workdir /workdir \
-    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240122-aac5d228a@sha256:3f18286471d0d1a8a8b11c98b5477c43a747c9c9a1f08978c5b07955f1ef6474 \
+    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240126-760bf8eb@sha256:5e676bf2e5d5d035adfc6e093abee040af08327011e72fef640fa20da73cea2e \
         ct install \
         --charts charts/ingress-nginx \
         --helm-extra-args "--timeout 60s"

From 4e97379b4e4a5d82546ad706e405045ccad0c834 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Sat, 27 Jan 2024 02:45:19 -0500
Subject: [PATCH 1131/1641] Release controller 1.9.6 and helm 4.9.1 (#10919)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 README.md                                     |   7 +-
 changelog/controller-1.9.6.md                 |  21 +++
 changelog/controller.md.gotmpl                |   2 +-
 charts/ingress-nginx/Chart.yaml               |  12 +-
 charts/ingress-nginx/README.md                |  12 +-
 .../changelog/helm-chart-4.9.1.md             |  10 ++
 charts/ingress-nginx/values.yaml              |  10 +-
 deploy/static/provider/aws/deploy.yaml        |  48 +++----
 .../aws/nlb-with-tls-termination/deploy.yaml  |  48 +++----
 deploy/static/provider/baremetal/deploy.yaml  |  48 +++----
 deploy/static/provider/cloud/deploy.yaml      |  48 +++----
 deploy/static/provider/do/deploy.yaml         |  48 +++----
 deploy/static/provider/exoscale/deploy.yaml   |  48 +++----
 deploy/static/provider/kind/deploy.yaml       |  48 +++----
 deploy/static/provider/oracle/deploy.yaml     |  48 +++----
 deploy/static/provider/scw/deploy.yaml        |  48 +++----
 docs/e2e-tests.md                             |   1 +
 docs/examples/auth/client-certs/README.md     | 126 +++++-------------
 .../custom-default-backend.helm.values.yaml   |   2 +-
 .../custom-errors/custom-default-backend.yaml |   2 +-
 docs/examples/grpc/README.md                  |   1 -
 docs/examples/rewrite/README.md               |   2 +-
 docs/how-it-works.md                          |   6 +-
 docs/troubleshooting.md                       |  39 ------
 docs/user-guide/multiple-ingress.md           |   7 +-
 .../nginx-configuration/annotations.md        |  29 +---
 .../nginx-configuration/configmap.md          |  26 +---
 .../third-party-addons/opentelemetry.md       |   4 +-
 docs/user-guide/tls.md                        |   3 -
 29 files changed, 318 insertions(+), 436 deletions(-)
 create mode 100644 changelog/controller-1.9.6.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.9.1.md

diff --git a/README.md b/README.md
index 047b6ce80..e955cd359 100644
--- a/README.md
+++ b/README.md
@@ -38,7 +38,8 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 
 |  Supported  | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
 |:--:|-----------------------|------------------------------|----------------|---------------|------------------------------|
-| 🔄 | **v1.9.5**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.9.0*                        |
+| 🔄 | **v1.9.6**            | 1.29, 1.28, 1.27, 1.26, 1.25        | 3.19.0         | 1.21.6        | 4.9.1*                 |
+| 🔄 | **v1.9.5**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.9.0*                       |
 | 🔄 | **v1.9.4**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.3                        |
 | 🔄 | **v1.9.3**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
 | 🔄 | **v1.9.1**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
@@ -47,8 +48,8 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 | 🔄 | **v1.8.2**            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
 | 🔄 | **v1.8.1**            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
 | 🔄 | **v1.8.0**            | 1.27, 1.26, 1.25, 1.24        | 3.18.0         | 1.21.6        | 4.7.*              |
-| 🔄 | **v1.7.1**            | 1.27, 1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
-| 🔄 | **v1.7.0**            | 1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        | 4.6.*              |
+|  | **v1.7.1**            | 1.27, 1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
+|  | **v1.7.0**            | 1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        | 4.6.*              |
 |    | v1.6.4                | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        | 4.5.*              |
 |    | v1.5.1                | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        | 4.4.*              |
 |    | v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      | 4.3.0              |
diff --git a/changelog/controller-1.9.6.md b/changelog/controller-1.9.6.md
new file mode 100644
index 000000000..ccc382644
--- /dev/null
+++ b/changelog/controller-1.9.6.md
@@ -0,0 +1,21 @@
+# Changelog
+
+### controller-v1.9.6
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.9.6@sha256:7eb46ff733429e0e46892903c7394aff149ac6d284d92b3946f3baf7ff26a096
+
+### All changes:
+
+* update web hook cert gen to latest release v20231226-1a7112e06
+* annotation validation: validate regex in common name annotation (#10880)
+* change MODSECURITY_VERSION_LIB to 3.0.11 (#10879)
+* Include SECLEVEL and STRENGTH as part of ssl-cipher list validation (#10871)
+
+### Dependency updates:
+
+* Bump github.com/opencontainers/runc from 1.1.10 to 1.1.11 (#10878)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.9.5...controller-v1.9.6
diff --git a/changelog/controller.md.gotmpl b/changelog/controller.md.gotmpl
index e1ae13cc5..0d7ad5588 100644
--- a/changelog/controller.md.gotmpl
+++ b/changelog/controller.md.gotmpl
@@ -19,4 +19,4 @@ Images:
 * {{ . }}
 {{- end }}
 {{ end }}
-**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-{{ .PreviousControllerVersion }}...controller-{{ .NewControllerVersion }}
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/{{ .PreviousControllerVersion }}...{{ .NewControllerVersion }}
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 96a7edcb2..df4f6fe63 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,13 +1,10 @@
 annotations:
   artifacthub.io/changes: |-
-    - "Add controller.metrics.serviceMonitor.annotations in Helm chart"
-    - "fix(labels): use complete labels variable on default-backend deployment"
-    - "chart: allow setting allocateLoadBalancerNodePorts (#10693)"
-    - "[release-1.9] feat(helm): add documentation about metric args (#10695)"
-    - "Update Ingress-Nginx version controller-v1.9.5"
+    - "update web hook cert gen to latest release v20231226-1a7112e06"
+    - "Update Ingress-Nginx version controller-v1.9.6"
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.9.5
+appVersion: 1.9.6
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 home: https://github.com/kubernetes/ingress-nginx
@@ -17,11 +14,10 @@ keywords:
 - nginx
 kubeVersion: '>=1.20.0-0'
 maintainers:
-- name: Gacko
 - name: rikatz
 - name: strongjz
 - name: tao12345666333
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.9.0
+version: 4.9.1
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 7c351e4c8..44bb10bd7 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.9.0](https://img.shields.io/badge/Version-4.9.0-informational?style=flat-square) ![AppVersion: 1.9.5](https://img.shields.io/badge/AppVersion-1.9.5-informational?style=flat-square)
+![Version: 4.9.1](https://img.shields.io/badge/Version-4.9.1-informational?style=flat-square) ![AppVersion: 1.9.6](https://img.shields.io/badge/AppVersion-1.9.6-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -253,11 +253,11 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.namespaceSelector | object | `{}` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
-| controller.admissionWebhooks.patch.image.digest | string | `"sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80"` |  |
+| controller.admissionWebhooks.patch.image.digest | string | `"sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.admissionWebhooks.patch.image.registry | string | `"registry.k8s.io"` |  |
-| controller.admissionWebhooks.patch.image.tag | string | `"v20231011-8b53cabe0"` |  |
+| controller.admissionWebhooks.patch.image.tag | string | `"v20231226-1a7112e06"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
@@ -317,8 +317,8 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `false` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e"` |  |
-| controller.image.digestChroot | string | `"sha256:9a8d7b25a846a6461cd044b9aea9cf6cad972bcf2e64d9fd246c0279979aad2d"` |  |
+| controller.image.digest | string | `"sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c"` |  |
+| controller.image.digestChroot | string | `"sha256:7eb46ff733429e0e46892903c7394aff149ac6d284d92b3946f3baf7ff26a096"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.readOnlyRootFilesystem | bool | `false` |  |
@@ -326,7 +326,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.image.runAsNonRoot | bool | `true` |  |
 | controller.image.runAsUser | int | `101` |  |
 | controller.image.seccompProfile.type | string | `"RuntimeDefault"` |  |
-| controller.image.tag | string | `"v1.9.5"` |  |
+| controller.image.tag | string | `"v1.9.6"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.9.1.md b/charts/ingress-nginx/changelog/helm-chart-4.9.1.md
new file mode 100644
index 000000000..c6120e736
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.9.1.md
@@ -0,0 +1,10 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.9.1
+
+* - "update web hook cert gen to latest release v20231226-1a7112e06"
+* - "Update Ingress-Nginx version controller-v1.9.6"
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.9.0...helm-chart-4.9.1
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index e010a2dbb..5e76d2fb4 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -26,9 +26,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.9.5"
-    digest: sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
-    digestChroot: sha256:9a8d7b25a846a6461cd044b9aea9cf6cad972bcf2e64d9fd246c0279979aad2d
+    tag: "v1.9.6"
+    digest: sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
+    digestChroot: sha256:7eb46ff733429e0e46892903c7394aff149ac6d284d92b3946f3baf7ff26a096
     pullPolicy: IfNotPresent
     runAsNonRoot: true
     # www-data -> uid 101
@@ -781,8 +781,8 @@ controller:
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
         ## repository:
-        tag: v20231011-8b53cabe0
-        digest: sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        tag: v20231226-1a7112e06
+        digest: sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         pullPolicy: IfNotPresent
       # -- Provide a priority class name to the webhook patching job
       ##
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 63eeec25b..f73e0fce0 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -522,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -533,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -547,7 +547,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -573,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -600,7 +600,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -639,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index ca4c6d107..7f6019fbb 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -431,7 +431,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
     spec:
       containers:
       - args:
@@ -455,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -534,7 +534,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -545,7 +545,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -559,7 +559,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -585,7 +585,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -596,7 +596,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -612,7 +612,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -638,7 +638,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -651,7 +651,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 0998d702c..af484aa73 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
     spec:
       containers:
       - args:
@@ -440,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -516,7 +516,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -527,7 +527,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -541,7 +541,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -567,7 +567,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -578,7 +578,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -594,7 +594,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -620,7 +620,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -633,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index e3941a705..8ac9dedaf 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -543,7 +543,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -569,7 +569,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -580,7 +580,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -596,7 +596,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -622,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index ed9b0233e..7a49f28d0 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,7 +521,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -532,7 +532,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -546,7 +546,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -572,7 +572,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -583,7 +583,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -599,7 +599,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -625,7 +625,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -638,7 +638,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 36348d0b9..cf02501a4 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -527,7 +527,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -538,7 +538,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -552,7 +552,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -578,7 +578,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -589,7 +589,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -605,7 +605,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -631,7 +631,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -644,7 +644,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index a23e4299c..d27f83d9d 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -528,7 +528,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -539,7 +539,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -553,7 +553,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -579,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -590,7 +590,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -606,7 +606,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -632,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -645,7 +645,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index 9b1fc6c73..8d2200925 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -522,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -533,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -547,7 +547,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -573,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -600,7 +600,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -639,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index ff02f8469..44d91e1af 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.5@sha256:b3aba22b1da80e7acfc52b115cae1d4c687172cbf2b742d5b502419c25ff340e
+        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,7 +521,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -532,7 +532,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -546,7 +546,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -572,7 +572,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -583,7 +583,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.5
+        app.kubernetes.io/version: 1.9.6
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -599,7 +599,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231011-8b53cabe0@sha256:a7943503b45d552785aa3b5e457f169a5661fb94d82b8a3373bcd9ebaf9aac80
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -625,7 +625,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -638,7 +638,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.5
+    app.kubernetes.io/version: 1.9.6
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 8d8528b31..bbcdadfc6 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -246,6 +246,7 @@ Do not try to edit it manually.
 - [drops snippet more_set_header in all locations if disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/snippet.go#L73)
 ### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/sslciphers.go#L28)
 - [should change ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/sslciphers.go#L35)
+- [should keep ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/sslciphers.go#L58)
 ### [stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/streamsnippet.go#L34)
 - [should add value of stream-snippet to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/streamsnippet.go#L41)
 - [should add stream-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/streamsnippet.go#L94)
diff --git a/docs/examples/auth/client-certs/README.md b/docs/examples/auth/client-certs/README.md
index 7aed26395..94cf6c697 100644
--- a/docs/examples/auth/client-certs/README.md
+++ b/docs/examples/auth/client-certs/README.md
@@ -2,117 +2,59 @@
 
 It is possible to enable Client-Certificate Authentication by adding additional annotations to your Ingress Resource.
 
-## 1. Prerequisites / Certificates
+Before getting started you must have the following Certificates configured:
 
-- Certificate Authority (CA) Certificate ```ca-cert.pem```
-- Server Certificate (Signed by CA) and Key ```server-cert.pem``` and ```server-key.pem```
-- Client Certificate (Signed by CA), Key and CA Certificate for following client side authentication (See Sub-Section 4 - Test)
+1. CA certificate and Key (Intermediate Certs need to be in CA)
+2. Server Certificate (Signed by CA) and Key (CN should be equal the hostname you will use)
+3. Client Certificate (Signed by CA) and Key
 
-:memo: If Intermediate CA-Certificates (Official CA, non-self-signed) used, they all need to be concatenated (CA authority chain) in one CA file.
+For more details on the generation process, checkout the Prerequisite [docs](../../PREREQUISITES.md#client-certificate-authentication).
 
-The following commands let you generate self-signed Certificates and Keys for testing-purpose.
-
-- Generate the CA Key and Certificate:
-
-```bash
-openssl req -x509 -sha256 -newkey rsa:4096 -keyout ca-key.der -out ca-cert.der -days 356 -nodes -subj '/CN=My Cert Authority'
-```
-
-- Generate the Server Key, and Certificate and Sign with the CA Certificate:
-
-```bash
-openssl req -new -newkey rsa:4096 -keyout server-key.der -out server.csr -nodes -subj '/CN=mydomain.com'
-openssl x509 -req -sha256 -days 365 -in server.csr -CA ca-cert.der -CAkey ca-key.der -set_serial 01 -out server-cert.der
-```
-
-:memo: The CN (Common Name) x.509 attribute for the server Certificate ***must*** match the dns hostname referenced in ingress definition, see example below.
-
-- Generate the Client Key, and Certificate and Sign with the CA Certificate:
-
-```bash
-openssl req -new -newkey rsa:4096 -keyout client-key.der -out client.csr -nodes -subj '/CN=My Client'
-openssl x509 -req -sha256 -days 365 -in client.csr -CA ca-cert.der -CAkey ca-key.der -set_serial 02 -out client-cert.der
-```
-
-## 2. Import Certificates / Keys to Kubernetes Secret-Backend
-
-- Convert all files specified in 1) from .der (binary format) to .pem (base64 encoded):
+You can have as many certificates as you want. If they're in the binary DER format, you can convert them as the following:
 
 ```bash
 openssl x509 -in certificate.der -inform der -out certificate.crt -outform pem
 ```
 
-:exclamation: Kubernetes Web-Services import relies on .pem Base64-encoded format.
-
-:zap: There is no need to import the CA Private Key, the Private Key is used only to sign new Client Certificates by the CA.
-
-- Import the CA Certificate as Kubernetes sub-type ```generic/ca.crt```
+Then, you can concatenate them all into one file, named 'ca.crt' with the following:
 
 ```bash
-kubectl create secret generic ca-secret --from-file=ca.crt=./ca-cert.pem
+cat certificate1.crt certificate2.crt certificate3.crt >> ca.crt
 ```
 
-- Import the Server Certificate and Key as Kubernetes sub-type ```tls``` for transport layer
+**Note:** Make sure that the Key Size is greater than 1024 and Hashing Algorithm (Digest) is something better than md5
+for each certificate generated. Otherwise you will receive an error.
 
-```bash
-kubectl create secret tls tls-secret --cert ./server-cert.pem --key ./server-key.pem
-```
+## Creating Certificate Secrets
 
-- Optional import CA-cert, Server-cert and Server-Key for TLS and Client-Auth
+There are many different ways of configuring your secrets to enable Client-Certificate
+Authentication to work properly.
 
-```bash
-kubectl create secret generic tls-and-auth --from-file=tls.crt=./server-crt.pem --from-file=tls.key=./server-key.pem --from-file=ca.crt=./ca-cert.pem
-```
+*   You can create a secret containing just the CA certificate and another
+    Secret containing the Server Certificate which is Signed by the CA.
 
-- Optional import a CRL (Certificate Revocation List)
+    ```bash
+    kubectl create secret generic ca-secret --from-file=ca.crt=ca.crt
+    kubectl create secret generic tls-secret --from-file=tls.crt=server.crt --from-file=tls.key=server.key
+    ```
 
-```bash
-kubectl create secret generic ca-secret --from-file=ca.crt=./ca-cert.pem --from-file=ca.crl=./ca-crl.pem
-```
+*   You can create a secret containing CA certificate along with the Server
+    Certificate that can be used for both TLS and Client Auth.
 
-## 3. Annotations / Ingress-Reference
+    ```bash
+    kubectl create secret generic ca-secret --from-file=tls.crt=server.crt --from-file=tls.key=server.key --from-file=ca.crt=ca.crt
+    ```
 
-Now we are able to reference the created secrets in the ingress definition.
+*  If you want to also enable Certificate Revocation List verification you can
+   create the secret also containing the CRL file in PEM format:
+   ```bash
+   kubectl create secret generic ca-secret --from-file=ca.crt=ca.crt --from-file=ca.crl=ca.crl
+   ```
 
-:memo: The CA Certificate "authentication" will be reference in annotations.
+Note: The CA Certificate must contain the trusted certificate authority chain to verify client certificates.
 
-| Annotation                                                                | Description                | Remark             |
-|---------------------------------------------------------------------------|----------------------------|--------------------|
-| nginx.ingress.kubernetes.io/auth-tls-verify-client: "on"                  | Activate Client-Auth       | If "on", verify client Certificate |
-| nginx.ingress.kubernetes.io/auth-tls-secret: "namespace/ca-secret"        | CA "secret" reference      | Secret namespace and service / ingress namespace must match |
-| nginx.ingress.kubernetes.io/auth-tls-verify-depth: "1"                    | CA "chain" depth           | How many CA levels should be processed |
-| nginx.ingress.kubernetes.io/auth-tls-pass-certificate-to-upstream: "true" | Pass Cert / Header         | Pass Certificate to Web-App for e.g. parsing Client E-Mail Address x.509 Property |
-
-:memo: The Server Certificate for transport layer will be referenced in tls .yaml subsection.
-
-```yaml
-tls:
-  - hosts:
-    - mydomain.com
-    secretName: tls-secret
-```
-
-## 4. Example / Test
-
-The working .yaml Example: [ingress.yaml](ingress.yaml)
-
-- Test by performing a curl / wget against the Ingress Path without the Client Cert and expect a Status Code 400 (Bad Request - No required SSL certificate was sent).
-- Test by performing a curl / wget against the Ingress Path with the Client Cert and expect a Status Code 200.
-
-```bash
-wget \
---ca-cert=ca-cert.pem \
---certificate=client-cert.pem \
---private-key=client-key.pem \
-https://mydomain.com
-```
-
-## 5. Remarks
-
-| :exclamation: In future releases, CN verification seems to be "replaced" by SAN (Subject Alternate Name) for verrification, so do not forget to add |
-|-----------------------------------------------------------------------------------------------------------------------------------------------------|
-
-```bash
-openssl req -addext "subjectAltName = DNS:mydomain.com" ...
-```
+## Setup Instructions
 
+1. Add the annotations as provided in the [ingress.yaml](ingress.yaml) example to your own ingress resources as required.
+2. Test by performing a curl against the Ingress Path without the Client Cert and expect a Status Code 400.
+3. Test by performing a curl against the Ingress Path with the Client Cert and expect a Status Code 200.
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
index 865857dea..708a93831 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
@@ -6,7 +6,7 @@ defaultBackend:
   image:
     registry: registry.k8s.io
     image: ingress-nginx/nginx-errors
-    tag: "v20231208-4c39e6acc@sha256:c2ca20775f41c0c89906dc74a31239d94ac48e84e7c6164affed41fe669cdaa5"
+    tag: "v20230505@sha256:3600dcd1bbd0d05959bb01af4b272714e94d22d24a64e91838e7183c80e53f7f"
   extraVolumes:
   - name: custom-error-pages
     configMap:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.yaml b/docs/examples/customization/custom-errors/custom-default-backend.yaml
index 993f91f5b..e606c5b62 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.yaml
@@ -36,7 +36,7 @@ spec:
     spec:
       containers:
       - name: nginx-error-server
-        image: registry.k8s.io/ingress-nginx/nginx-errors:v20231208-4c39e6acc@sha256:c2ca20775f41c0c89906dc74a31239d94ac48e84e7c6164affed41fe669cdaa5
+        image: registry.k8s.io/ingress-nginx/nginx-errors:v20230505@sha256:3600dcd1bbd0d05959bb01af4b272714e94d22d24a64e91838e7183c80e53f7f
         ports:
         - containerPort: 8080
         # Setting the environment variable DEBUG we can see the headers sent 
diff --git a/docs/examples/grpc/README.md b/docs/examples/grpc/README.md
index f6bd96e20..508b23fb8 100644
--- a/docs/examples/grpc/README.md
+++ b/docs/examples/grpc/README.md
@@ -9,7 +9,6 @@ This example demonstrates how to route traffic to a gRPC service through the Ing
 3. You have the ingress-nginx-controller installed as per docs.
 4. You have a backend application running a gRPC server listening for TCP traffic.  If you want, you can use <https://github.com/grpc/grpc-go/blob/91e0aeb192456225adf27966d04ada4cf8599915/examples/features/reflection/server/main.go> as an example.
 5. You're also responsible for provisioning an SSL certificate for the ingress. So you need to have a valid SSL certificate, deployed as a Kubernetes secret of type `tls`, in the same namespace as the gRPC application.
-   - Note: To use gRPC with ingress-nginx, TLS _must_ be terminated by the ingress or gRPC server (using the `backend-protocol: "GRPCS"` annotation described below). 
 
 ### Step 1: Create a Kubernetes `Deployment` for gRPC app
 
diff --git a/docs/examples/rewrite/README.md b/docs/examples/rewrite/README.md
index 16889e0bc..aadcc1e4b 100644
--- a/docs/examples/rewrite/README.md
+++ b/docs/examples/rewrite/README.md
@@ -31,7 +31,7 @@ Rewriting can be controlled using the following annotations:
     [Captured groups](https://www.regular-expressions.info/refcapture.html) are saved in numbered placeholders, chronologically, in the form `$1`, `$2` ... `$n`. These placeholders can be used as parameters in the `rewrite-target` annotation.
 
 !!! note
-    Please see the [FAQ](../../faq.md#validation-of-path) for Validation Of __`path`__
+    Please see the [FAQ](../faq.md#validation-of-path) for Validation Of __`path`__
 
 Create an Ingress rule with a rewrite annotation:
 
diff --git a/docs/how-it-works.md b/docs/how-it-works.md
index c347c5a6e..161803210 100644
--- a/docs/how-it-works.md
+++ b/docs/how-it-works.md
@@ -58,13 +58,13 @@ In a relatively big cluster with frequently deploying apps this feature saves si
 
 ### Avoiding outage from wrong configuration
 
-Because the ingress controller works using the [synchronization loop pattern][1], it is applying the configuration for all matching objects. In case some Ingress objects have a broken configuration, for example a syntax error in the `nginx.ingress.kubernetes.io/configuration-snippet` annotation, the generated configuration becomes invalid, does not reload and hence no more ingresses will be taken into account.
+Because the ingress controller works using the [synchronization loop pattern](https://coreos.com/kubernetes/docs/latest/replication-controller.html#the-reconciliation-loop-in-detail), it is applying the configuration for all matching objects. In case some Ingress objects have a broken configuration, for example a syntax error in the `nginx.ingress.kubernetes.io/configuration-snippet` annotation, the generated configuration becomes invalid, does not reload and hence no more ingresses will be taken into account.
 
-To prevent this situation from happening, the Ingress-Nginx Controller optionally exposes a [validating admission webhook server][8] to ensure the validity of incoming ingress objects.
+To prevent this situation to happen, the Ingress-Nginx Controller optionally exposes a [validating admission webhook server][8] to ensure the validity of incoming ingress objects.
 This webhook appends the incoming ingress objects to the list of ingresses, generates the configuration and calls nginx to ensure the configuration has no syntax errors.
 
 [0]: https://github.com/openresty/lua-nginx-module/pull/1259
-[1]: https://github.com/coreos/docs/blob/master/kubernetes/replication-controller.md#the-reconciliation-loop-in-detail
+[1]: https://coreos.com/kubernetes/docs/latest/replication-controller.html#the-reconciliation-loop-in-detail
 [2]: https://godoc.org/k8s.io/client-go/informers#NewFilteredSharedInformerFactory
 [3]: https://godoc.org/k8s.io/client-go/tools/cache#ResourceEventHandlerFuncs
 [4]: https://github.com/kubernetes/ingress-nginx/blob/main/internal/task/queue.go#L38
diff --git a/docs/troubleshooting.md b/docs/troubleshooting.md
index 6b841b952..e1fd6956e 100644
--- a/docs/troubleshooting.md
+++ b/docs/troubleshooting.md
@@ -8,43 +8,6 @@ Do not move it without providing redirects.
 
 # Troubleshooting
 
-## A simple test of the basic ingress controller routing
-- Install the ingress-nginx controller as per documentation
-- Deploy the httpbun example echoserver application
-  ```console
-  $ kubectl create deploy httpbun --image registry.k8s.io/ingress-nginx/e2e-test-httpbun:v20231011-8b53cabe0
-  ```
-- Create a service of --type ClusterIP for httpbun
-  ```console
-  $ kubectl expose deploy httpbun --port 80
-  ```
-- Create a ingress for httpbun (This command assumes the ingressClass name to be _**nginx**_. Change the ingressClass name below, if you are using a different ingressClass name)
-  ```console
-  $ kubectl create ingress httpbun --class nginx --rule httpbun.foo.com/"*"=httpbun:80
-  ```
-- Get the name of the ingress-nginx-controller pod (This command assumes that the ingress-nginx-controller was installed in the namespace called **_ingress-nginx_**)
-  ```console
-  $ kubectl -n ingress-nginx get po
-  ```
-- Open a terminal to tail the logs of the ingress-nginx-controller pod
-  ```console
-  $ kubectl -n ingress-nginx logs -f <ingress-nginx-controller-podname>
-  ```
-- Note the last line of log messages. Hit the return/enter key a couple of times to get some blank lines. Makes it easier to mark newer log lines from your next step
-- Open a second terminal, to send a request to httpbun (replace the external-ip or LB name as needed)
-  ```console
-  $ curl -v --resolve httpbun.foo.com:80:<external-ip> httpbun.foo.com/get
-  ```
-- Check if there were new log messages related to your curl command
-- Provide all info and the log messages in the issue you create or in the slack chat thread, formatted as a code-snippet
-  - kubectl get  po,svc -n ingress-nginx
-  - kubectl get po,svc,ing | grep -i httpbun
-  - kubectl describe svc httpbun
-  - kubectl describe ing httpbun
-  - Entire curl command as is and its output 
-  - log messages of the ingress-nginx-controller pod
-
-
 ## Ingress-Controller Logs and Events
 
 There are many ways to troubleshoot the ingress-controller. The following are basic troubleshooting
@@ -456,7 +419,6 @@ spec:
     operator: "Exists"
     effect: NoSchedule
 ```
-
 * update the namespace if applicable/desired
 * replace `##_NODE_NAME_##` with the problematic node (or remove nodeSelector section if problem is not confined to one node)
 * replace `##_CONTROLLER_IMAGE_##` with the same image as in use by your ingress-nginx deployment
@@ -483,7 +445,6 @@ $ capsh --decode=0000000000000400
 ## Create a test pod as root
 (Note, this may be restricted by PodSecurityPolicy, PodSecurityAdmission/Standards, OPA Gatekeeper, etc. in which case you will need to do the appropriate workaround for testing, e.g. deploy in a new namespace without the restrictions.)
 To test further you may want to install additional utilities, etc.  Modify the pod yaml by:
-
 * changing runAsUser from 101 to 0
 * removing the "drop..ALL" section from the capabilities.
 
diff --git a/docs/user-guide/multiple-ingress.md b/docs/user-guide/multiple-ingress.md
index 54a18fbb9..fca93ee65 100644
--- a/docs/user-guide/multiple-ingress.md
+++ b/docs/user-guide/multiple-ingress.md
@@ -10,9 +10,7 @@ But, when user has deployed with `scope.enabled`, then the ingress class resourc
 
 If all ingress controllers respect IngressClasses (e.g. multiple instances of ingress-nginx v1.0), you can deploy two Ingress controllers by granting them control over two different IngressClasses, then selecting one of the two IngressClasses with `ingressClassName`.
 
-First, ensure the `--controller-class=` and `--ingress-class` are set to something different on each ingress controller, If your additional ingress controller is to be installed in a namespace, where there is/are one/more-than-one ingress-nginx-controller(s) already installed, then you need to specify a different unique `--election-id` for the new instance of the controller. 
-
-In addition, you need to specify `--ingress-class-by-name=true` in the controller args list. The `--ingress-class-by-name` defines if Ingress Controller should watch for Ingress Class by Name together with Controller Class. (default false).
+First, ensure the `--controller-class=` and `--ingress-class` are set to something different on each ingress controller, If your additional ingress controller is to be installed in a namespace, where there is/are one/more-than-one ingress-nginx-controller(s) already installed, then you need to specify a different unique `--election-id` for the new instance of the controller.
 
 ```yaml
 # ingress-nginx Deployment/Statefulset
@@ -25,8 +23,7 @@ spec:
              - /nginx-ingress-controller
              - '--election-id=ingress-controller-leader'
              - '--controller-class=k8s.io/internal-ingress-nginx'
-             - '--ingress-class=internal-nginx'
-             - '--ingress-class-by-name=true'
+             - '--ingress-class=k8s.io/internal-nginx'
             ...
 ```
 
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 41a876abf..877654d12 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -50,7 +50,6 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/client-body-buffer-size](#client-body-buffer-size)|string|
 |[nginx.ingress.kubernetes.io/configuration-snippet](#configuration-snippet)|string|
 |[nginx.ingress.kubernetes.io/custom-http-errors](#custom-http-errors)|[]int|
-|[nginx.ingress.kubernetes.io/disable-proxy-intercept-errors](#disable-proxy-intercept-errors)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/default-backend](#default-backend)|string|
 |[nginx.ingress.kubernetes.io/enable-cors](#enable-cors)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/cors-allow-origin](#enable-cors)|string|
@@ -317,8 +316,7 @@ nginx.ingress.kubernetes.io/configuration-snippet: |
   more_set_headers "Request-Id: $req_id";
 ```
 
-!!! attention
-Since version 1.9.0, `"configuration-snippet"` annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
+Be aware this can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. The recommended mitigation for this threat is to disable this feature, so it may not work for you. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
 
 ### Custom HTTP Errors
 
@@ -331,17 +329,6 @@ Example usage:
 nginx.ingress.kubernetes.io/custom-http-errors: "404,415"
 ```
 
-## Disable Proxy intercept Errors
-
-Like the [`disable-proxy-intercept-errors`](./configmap.md#disable-proxy-intercept-errors) value in the ConfigMap, this annotation allows to disable NGINX `proxy-intercept-errors` when `custom-http-errors` are set, but only for the NGINX location associated with this ingress. If a [default backend annotation](#default-backend) is specified on the ingress, the errors will be routed to that annotation's default backend service (instead of the global default backend).
-Different ingresses can specify different sets of errors codes and there are UseCases where NGINX shall not intercept all errors returned from upstream.
-If `disable-proxy-intercept-errors` is also specified globally, the annotation will override the global value for the given ingress' hostname and path.
-
-Example usage:
-```
-nginx.ingress.kubernetes.io/disable-proxy-intercept-errors: "false"
-```
-
 ### Default Backend
 
 This annotation is of the form `nginx.ingress.kubernetes.io/default-backend: <svc name>` to specify a custom default backend.  This `<svc name>` is a reference to a service inside of the same namespace in which you are applying this annotation. This annotation overrides the global default backend. In case the service has [multiple ports](https://kubernetes.io/docs/concepts/services-networking/service/#multi-port-services), the first one is the one which will receive the backend traffic. 
@@ -441,9 +428,6 @@ metadata:
         }
 ```
 
-!!! attention
-Since version 1.9.0, `"server-snippet"` annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
-
 !!! attention
     This annotation can be used only once per host.
 
@@ -521,15 +505,12 @@ nginx.ingress.kubernetes.io/auth-snippet: |
 ```
 > Note: `nginx.ingress.kubernetes.io/auth-snippet` is an optional annotation. However, it may only be used in conjunction with `nginx.ingress.kubernetes.io/auth-url` and will be ignored if `nginx.ingress.kubernetes.io/auth-url` is not set
 
-!!! attention
-Since version 1.9.0, `"auth-snippet"` annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
-
 !!! example
     Please check the [external-auth](../../examples/auth/external-auth/README.md) example.
 
 #### Global External Authentication
 
-By default the controller redirects all requests to an existing service that provides authentication if `global-auth-url` is set in the NGINX ConfigMap. If you want to disable this behavior for a specific ingress, you can use the annotation `nginx.ingress.kubernetes.io/enable-global-auth: "false"`.
+By default the controller redirects all requests to an existing service that provides authentication if `global-auth-url` is set in the NGINX ConfigMap. If you want to disable this behavior for that ingress, you can use `enable-global-auth: "false"` in the NGINX ConfigMap.
 `nginx.ingress.kubernetes.io/enable-global-auth`:
    indicates if GlobalExternalAuth configuration should be applied or not to this Ingress rule. Default values is set to `"true"`.
 
@@ -914,9 +895,6 @@ nginx.ingress.kubernetes.io/modsecurity-snippet: |
 Include /etc/nginx/owasp-modsecurity-crs/nginx-modsecurity.conf
 ```
 
-!!! attention
-Since version 1.9.0, `"modsecurity-snippet"` annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
-
 ### Backend Protocol
 
 Using `backend-protocol` annotations is possible to indicate how NGINX should communicate with the backend service. (Replaces `secure-backends` in older versions)
@@ -1006,6 +984,3 @@ metadata:
         proxy_pass 127.0.0.1:80;
       }
 ```
-
-!!! attention
-Since version 1.9.0, `"stream-snippet"` annotation is disabled by default and has to be explicitly enabled, see [allow-snippet-annotations](./configmap.md#allow-snippet-annotations). Enabling it can be dangerous in multi-tenant clusters, as it can lead to people with otherwise limited permissions being able to retrieve all secrets on the cluster. See CVE-2021-25742 and the [related issue on github](https://github.com/kubernetes/ingress-nginx/issues/7837) for more information.
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 7038ca90d..75971b9a5 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -39,7 +39,6 @@ The following table shows a configuration option's name, type, and the default v
 |[http-access-log-path](#http-access-log-path)|string|""||
 |[stream-access-log-path](#stream-access-log-path)|string|""||
 |[enable-access-log-for-default-backend](#enable-access-log-for-default-backend)|bool|"false"||
-|[enable-auth-access-log](#enable-auth-access-log)|bool|"false"||
 |[error-log-path](#error-log-path)|string|"/var/log/nginx/error.log"||
 |[enable-modsecurity](#enable-modsecurity)|bool|"false"||
 |[modsecurity-snippet](#modsecurity-snippet)|string|""||
@@ -164,7 +163,7 @@ The following table shows a configuration option's name, type, and the default v
 |[enable-opentelemetry](#enable-opentelemetry)|bool|"false"||
 |[opentelemetry-trust-incoming-span](#opentelemetry-trust-incoming-span)|bool|"true"||
 |[opentelemetry-operation-name](#opentelemetry-operation-name)|string|""||
-|[opentelemetry-config](#/etc/ingress-controller/telemetry/opentelemetry.toml)|string|"/etc/ingress-controller/telemetry/opentelemetry.toml"||
+|[opentelemetry-config](#/etc/nginx/opentelemetry.toml)|string|"/etc/nginx/opentelemetry.toml"||
 |[otlp-collector-host](#otlp-collector-host)|string|""||
 |[otlp-collector-port](#otlp-collector-port)|int|4317||
 |[otel-max-queuesize](#otel-max-queuesize)|int|||
@@ -180,7 +179,6 @@ The following table shows a configuration option's name, type, and the default v
 |[stream-snippet](#stream-snippet)|string|""||
 |[location-snippet](#location-snippet)|string|""||
 |[custom-http-errors](#custom-http-errors)|[]int|[]int{}||
-|[disable-proxy-intercept-errors](#disable-proxy-intercept-errors)|bool|"false"|
 |[proxy-body-size](#proxy-body-size)|string|"1m"||
 |[proxy-connect-timeout](#proxy-connect-timeout)|int|5||
 |[proxy-read-timeout](#proxy-read-timeout)|int|60||
@@ -219,7 +217,6 @@ The following table shows a configuration option's name, type, and the default v
 |[global-auth-snippet](#global-auth-snippet)|string|""||
 |[global-auth-cache-key](#global-auth-cache-key)|string|""||
 |[global-auth-cache-duration](#global-auth-cache-duration)|string|"200 202 401 5m"||
-|[global-auth-always-set-cookie](#global-auth-always-set-cookie)|bool|"false"||
 |[no-auth-locations](#no-auth-locations)|string|"/.well-known/acme-challenge"||
 |[block-cidrs](#block-cidrs)|[]string|""||
 |[block-user-agents](#block-user-agents)|[]string|""||
@@ -266,7 +263,7 @@ Enables Ingress to parse and add *-snippet annotations/directives created by the
 Warning: We recommend enabling this option only if you TRUST users with permission to create Ingress objects, as this
 may allow a user to add restricted configurations to the final nginx.conf file
 
-**This option is defaulted to false since v1.9.0**
+**This option will be defaulted to false in the next major release**
 
 ## annotations-risk-level
 
@@ -329,10 +326,6 @@ __Note:__ If not specified, the `access-log-path` will be used.
 
 Enables logging access to default backend. _**default:**_ is disabled.
 
-## enable-auth-access-log
-
-Enables logging access to the authentication endpoint. _**default:**_ is disabled.
-
 ## error-log-path
 
 Error log path. Goes to `/var/log/nginx/error.log` by default.
@@ -727,9 +720,6 @@ Enables or disables compression of HTTP responses using the ["gzip" module](http
 
 ## use-geoip
 
-!!! attention
-   GeoIP is deprecated and removed on v1.10. Users willing to use GeoIP should use GeoIP2
-
 Enables or disables ["geoip" module](https://nginx.org/en/docs/http/ngx_http_geoip_module.html) that creates variables with values depending on the client IP address, using the precompiled MaxMind databases.
 _**default:**_ true
 
@@ -1130,18 +1120,10 @@ You can not use this to add new locations that proxy to the Kubernetes pods, as
 
 Enables which HTTP codes should be passed for processing with the [error_page directive](https://nginx.org/en/docs/http/ngx_http_core_module.html#error_page)
 
-Setting at least one code also enables [proxy_intercept_errors](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_intercept_errors) if not disabled with [disable-proxy-intercept-errors](#disable-proxy-intercept-errors).
+Setting at least one code also enables [proxy_intercept_errors](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_intercept_errors) which are required to process error_page.
 
 Example usage: `custom-http-errors: 404,415`
 
-## disable-proxy-intercept-errors
-
-Allows to disable [proxy-intercept-errors](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_intercept_errors).
-
-Disabling [proxy_intercept_errors](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_intercept_errors) allows to pass upstream errors to client even if [custom-http-errors](#custom-http-errors) are set.
-
-Example usage: `disable-proxy-intercept-errors: "true"`
-
 ## proxy-body-size
 
 Sets the maximum allowed size of the client request body.
@@ -1299,7 +1281,7 @@ _**default:**_ "/.well-known/acme-challenge"
 
 A url to an existing service that provides authentication for all the locations.
 Similar to the Ingress rule annotation `nginx.ingress.kubernetes.io/auth-url`.
-Locations that should not get authenticated can be listed using `no-auth-locations` See [no-auth-locations](#no-auth-locations). In addition, each service can be excluded from authentication via annotation `nginx.ingress.kubernetes.io/enable-global-auth` set to "false".
+Locations that should not get authenticated can be listed using `no-auth-locations` See [no-auth-locations](#no-auth-locations). In addition, each service can be excluded from authentication via annotation `enable-global-auth` set to "false".
 _**default:**_ ""
 
 _References:_ [https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/nginx-configuration/annotations.md#external-authentication](https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/nginx-configuration/annotations.md#external-authentication)
diff --git a/docs/user-guide/third-party-addons/opentelemetry.md b/docs/user-guide/third-party-addons/opentelemetry.md
index a38c9c56f..d735fca4f 100644
--- a/docs/user-guide/third-party-addons/opentelemetry.md
+++ b/docs/user-guide/third-party-addons/opentelemetry.md
@@ -165,7 +165,7 @@ To install the example and collectors run:
       kind: ConfigMap
       data:
         enable-opentelemetry: "true"
-        opentelemetry-config: "/etc/ingress-controller/telemetry/opentelemetry.toml"
+        opentelemetry-config: "/etc/nginx/opentelemetry.toml"
         opentelemetry-operation-name: "HTTP $request_method $service_name $uri"
         opentelemetry-trust-incoming-span: "true"
         otlp-collector-host: "otel-coll-collector.otel.svc"
@@ -282,7 +282,7 @@ for common annotations and configurations:
 | Legacy                                           | OpenTelemetry                                    |
 |--------------------------------------------------|--------------------------------------------------|
 | `nginx.ingress.kubernetes.io/enable-opentracing` | `nginx.ingress.kubernetes.io/enable-opentelemetry` |
-| `opentracing-trust-incoming-span`                | `opentelemetry-trust-incoming-span`                  |
+| `opentracing-trust-incoming-span`                | `opentracing-trust-incoming-span`                  |
 
 ### Configs
 
diff --git a/docs/user-guide/tls.md b/docs/user-guide/tls.md
index f6fee6895..11338981b 100644
--- a/docs/user-guide/tls.md
+++ b/docs/user-guide/tls.md
@@ -127,9 +127,6 @@ ingress-nginx defaults to using TLS 1.2 and 1.3 only, with a [secure set of TLS
 
 ### Legacy TLS
 
-!!! warning
-    TLSv1, TLSv1.1 are not supported in ingress-nginx v1.6.0 and above.
-
 The default configuration, though secure, does not support some older browsers and operating systems.
 
 For instance, TLS 1.1+ is only enabled by default from Android 5.0 on. At the time of writing,

From c295cd1c4bdb385f0a97371a4f4fad6470b39751 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Tore=20Stendal=20L=C3=B8n=C3=B8y?= <tore.lonoy@gmail.com>
Date: Sat, 27 Jan 2024 12:40:35 +0100
Subject: [PATCH 1132/1641] docs: update annotations docs with missing
 session-cookie section (#10917)

---
 .../nginx-configuration/annotations.md          | 17 +++++++++++++----
 1 file changed, 13 insertions(+), 4 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 877654d12..42dc918e3 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -97,12 +97,15 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/server-alias](#server-alias)|string|
 |[nginx.ingress.kubernetes.io/server-snippet](#server-snippet)|string|
 |[nginx.ingress.kubernetes.io/service-upstream](#service-upstream)|"true" or "false"|
-|[nginx.ingress.kubernetes.io/session-cookie-name](#cookie-affinity)|string|
-|[nginx.ingress.kubernetes.io/session-cookie-path](#cookie-affinity)|string|
-|[nginx.ingress.kubernetes.io/session-cookie-domain](#cookie-affinity)|string|
 |[nginx.ingress.kubernetes.io/session-cookie-change-on-failure](#cookie-affinity)|"true" or "false"|
-|[nginx.ingress.kubernetes.io/session-cookie-samesite](#cookie-affinity)|string|
 |[nginx.ingress.kubernetes.io/session-cookie-conditional-samesite-none](#cookie-affinity)|"true" or "false"|
+|[nginx.ingress.kubernetes.io/session-cookie-domain](#cookie-affinity)|string|
+|[nginx.ingress.kubernetes.io/session-cookie-expires](#cookie-affinity)|string|
+|[nginx.ingress.kubernetes.io/session-cookie-max-age](#cookie-affinity)|string|
+|[nginx.ingress.kubernetes.io/session-cookie-name](#cookie-affinity)|string|default "INGRESSCOOKIE"|
+|[nginx.ingress.kubernetes.io/session-cookie-path](#cookie-affinity)|string|
+|[nginx.ingress.kubernetes.io/session-cookie-samesite](#cookie-affinity)|string|"None", "Lax" or "Strict"|
+|[nginx.ingress.kubernetes.io/session-cookie-secure](#cookie-affinity)|string|
 |[nginx.ingress.kubernetes.io/ssl-redirect](#server-side-https-enforcement-through-redirect)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/ssl-passthrough](#ssl-passthrough)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/stream-snippet](#stream-snippet)|string|
@@ -193,6 +196,12 @@ Use `nginx.ingress.kubernetes.io/session-cookie-domain` to set the `Domain` attr
 
 Use `nginx.ingress.kubernetes.io/session-cookie-samesite` to apply a `SameSite` attribute to the sticky cookie. Browser accepted values are `None`, `Lax`, and `Strict`. Some browsers reject cookies with `SameSite=None`, including those created before the `SameSite=None` specification (e.g. Chrome 5X). Other browsers mistakenly treat `SameSite=None` cookies as `SameSite=Strict` (e.g. Safari running on OSX 14). To omit `SameSite=None` from browsers with these incompatibilities, add the annotation `nginx.ingress.kubernetes.io/session-cookie-conditional-samesite-none: "true"`.
 
+Use `nginx.ingress.kubernetes.io/session-cookie-expires` to control the cookie expires, its value is a number of seconds until the cookie expires.
+
+Use `nginx.ingress.kubernetes.io/session-cookie-path` to control the cookie path when use-regex is set to true.
+
+Use `nginx.ingress.kubernetes.io/session-cookie-change-on-failure` to control the cookie change after request failure.
+
 ### Authentication
 
 It is possible to add authentication by adding additional annotations in the Ingress rule. The source of the authentication is a secret that contains usernames and passwords.

From 02e6ebc95a7615e7dfb9729f1dd11a1981d54a07 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sat, 27 Jan 2024 12:33:50 -0300
Subject: [PATCH 1133/1641] Add OTEL build test and for NGINX v1.25 (#10889)

* Add OTEL build test

* Simplify otel compilation

* Remove http2 deprecated arg

* Move image build to CI

* Turn image from scratch to optimize usage

* rollback image from scratch

* Final reviews on nginx v1.25 image

* Remove s390x from final image
---
 .github/workflows/ci.yaml                     |  39 ++--
 .github/workflows/images.yaml                 |  56 ++++++
 .github/workflows/nginx125.yaml               | 167 ------------------
 .github/workflows/zz-tmpl-k8s-e2e.yaml        |   3 +-
 Makefile                                      |   4 +-
 images/nginx-1.25/Makefile                    |   6 +-
 images/nginx-1.25/cloudbuild.yaml             |   2 +-
 images/nginx-1.25/rootfs/Dockerfile           |   3 +
 images/nginx-1.25/rootfs/build.sh             |  45 ++++-
 images/opentelemetry/Makefile                 |  69 ++++++++
 images/opentelemetry/cloudbuild.yaml          |   3 +-
 images/opentelemetry/rootfs/CMakeLists.txt    |  95 +---------
 images/opentelemetry/rootfs/Dockerfile        |  17 +-
 images/opentelemetry/rootfs/build.sh          | 100 +++--------
 .../ingress/controller/template/template.go   |   7 +-
 rootfs/Dockerfile                             |   1 -
 rootfs/Dockerfile-chroot                      |   1 -
 rootfs/etc/nginx/template/nginx.tmpl          |   6 +-
 test/e2e/settings/opentelemetry.go            |  22 ---
 test/e2e/wait-for-nginx.sh                    |  10 --
 20 files changed, 247 insertions(+), 409 deletions(-)
 delete mode 100644 .github/workflows/nginx125.yaml
 create mode 100644 images/opentelemetry/Makefile

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index eb8815fb8..2c6bef636 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -9,6 +9,7 @@ on:
       - 'deploy/**'
       - '**.md'
       - 'images/**' # Images changes should be tested on their own workflow
+      - '!images/nginx-1.25/**'
 
   push:
     branches:
@@ -41,6 +42,7 @@ jobs:
     outputs:
       go: ${{ steps.filter.outputs.go }}
       charts: ${{ steps.filter.outputs.charts }}
+      baseimage: ${{ steps.filter.outputs.baseimage }}
 
     steps:
 
@@ -64,6 +66,8 @@ jobs:
               - 'charts/ingress-nginx/Chart.yaml'
               - 'charts/ingress-nginx/**/*'
               - 'NGINX_BASE'
+            baseimage:
+              - 'images/nginx-1.25/**'
 
   test-go:
     runs-on: ubuntu-latest
@@ -89,8 +93,10 @@ jobs:
     runs-on: ubuntu-latest
     needs: changes
     if: |
-      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.charts == 'true')
-
+      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.charts == 'true') || (needs.changes.outputs.baseimage == 'true')
+     
+    env:
+        PLATFORMS: linux/amd64
     steps:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
@@ -119,7 +125,14 @@ jobs:
           curl -LO https://dl.k8s.io/release/v1.27.3/bin/linux/amd64/kubectl
           chmod +x ./kubectl
           sudo mv ./kubectl /usr/local/bin/kubectl
-
+      
+      - name: Build NGINX Base image
+        if: |
+          needs.changes.outputs.baseimage == 'true'
+        run: |
+            export TAG=$(cat images/nginx-1.25/TAG)
+            cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --load -t gcr.io/k8s-staging-ingress-nginx/nginx-1.25:${TAG} .
+    
       - name: Build images
         env:
           TAG: 1.0.0-dev
@@ -127,7 +140,8 @@ jobs:
           REGISTRY: ingress-controller
         run: |
           echo "building images..."
-          make clean-image build image image-chroot
+          export TAGNGINX=$(cat images/nginx-1.25/TAG)
+          make BASE_IMAGE=gcr.io/k8s-staging-ingress-nginx/nginx-1.25:${TAGNGINX} clean-image build image image-chroot
           make -C test/e2e-image image
 
           echo "creating images cache..."
@@ -150,11 +164,11 @@ jobs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.charts == 'true')
+      (needs.changes.outputs.charts == 'true') || (needs.changes.outputs.baseimage == 'true')
 
     strategy:
       matrix:
-        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0, v1.29.0]
+        k8s: [v1.26.6, v1.27.3, v1.28.0, v1.29.0]
 
     steps:
       - name: Checkout
@@ -222,6 +236,7 @@ jobs:
           KIND_CLUSTER_NAME: kind
           SKIP_CLUSTER_CREATION: true
           SKIP_IMAGE_CREATION: true
+          SKIP_INGRESS_IMAGE_CREATION: true
         run: |
           kind get kubeconfig > $HOME/.kube/kind-config-kind
           make kind-e2e-chart-tests
@@ -232,10 +247,10 @@ jobs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.go == 'true')
+      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true')
     strategy:
       matrix:
-        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0, v1.29.0]
+        k8s: [v1.26.6, v1.27.3, v1.28.0, v1.29.0]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
@@ -246,10 +261,10 @@ jobs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.go == 'true')
+      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true')
     strategy:
       matrix:
-        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0, v1.29.0]
+        k8s: [v1.26.6, v1.27.3, v1.28.0, v1.29.0]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
@@ -261,10 +276,10 @@ jobs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.go == 'true')
+      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true')
     strategy:
       matrix:
-        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0, v1.29.0]
+        k8s: [v1.26.6, v1.27.3, v1.28.0, v1.29.0]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index fcb02f635..7eb07cfc3 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -36,6 +36,8 @@ jobs:
       kube-webhook-certgen: ${{ steps.filter.outputs.kube-webhook-certgen }}
       ext-auth-example-authsvc: ${{ steps.filter.outputs.ext-auth-example-authsvc }}
       nginx: ${{ steps.filter.outputs.nginx }}
+      nginx125: ${{ steps.filter.outputs.nginx125 }}
+      opentelemetry: ${{ steps.filter.outputs.opentelemetry }}
 
     steps:
       - name: Checkout
@@ -63,6 +65,10 @@ jobs:
               - 'images/ext-auth-example-authsvc/**'
             nginx:
               - 'images/nginx/**'
+            opentelemetry:
+              - 'images/opentelemetry/**'
+            nginx125:
+              - 'images/nginx-1.25/TAG'
  
   #### TODO: Make the below jobs 'less dumb' and use the job name as parameter (the github.job context does not work here)
   cfssl:
@@ -179,3 +185,53 @@ jobs:
       uses: github/codeql-action/upload-sarif@v3.23.1
       with:
         sarif_file: 'trivy-results.sarif'
+
+  opentelemetry:
+    runs-on: ubuntu-latest
+    env:
+      PLATFORMS: linux/amd64,linux/arm,linux/arm64
+    needs: changes
+    if: |
+      (needs.changes.outputs.opentelemetry == 'true')
+    strategy:
+      matrix:
+        nginx: ['1.25.3', '1.21.6']
+    steps:
+    - name: Checkout
+      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+    - name: image build
+      run: |
+        cd images/opentelemetry && make NGINX_VERSION=${{ matrix.nginx }} build
+
+  nginx125:
+    permissions:
+      contents: write
+      packages: write
+    runs-on: ubuntu-latest
+    needs: changes
+    if: |
+      (github.event_name == 'push' && github.ref == 'refs/heads/main' && needs.changes.outputs.nginx125 == 'true')
+    env:
+      PLATFORMS: linux/amd64,linux/arm,linux/arm64
+    steps:
+      - name: Checkout
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
+      - name: Set up Docker Buildx
+        id: buildx
+        uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
+        with:
+          version: latest
+          platforms: ${{ env.PLATFORMS }}
+      - name: Login to GitHub Container Registry
+        uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+      - name: build-image
+        run: |
+          export TAG=$(cat images/nginx-1.25/TAG)
+          cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --push --load -t ingressnginx/nginx-1.25:${TAG} .
+    
+    
\ No newline at end of file
diff --git a/.github/workflows/nginx125.yaml b/.github/workflows/nginx125.yaml
deleted file mode 100644
index 4dfed9567..000000000
--- a/.github/workflows/nginx125.yaml
+++ /dev/null
@@ -1,167 +0,0 @@
-name: NGINX v1.25 Image
-
-on:
-  pull_request:
-    branches:
-    - "*"
-    paths:
-    - 'images/nginx-1.25/**'
-  push:
-    branches:
-    - main
-    paths:
-    - 'images/nginx-1.25/**'
-
-permissions:
-    contents: read
-
-jobs:
-  changes:
-    permissions:
-      contents: read  # for dorny/paths-filter to fetch a list of changed files
-      pull-requests: read  # for dorny/paths-filter to read pull requests
-    runs-on: ubuntu-latest
-    outputs:
-      nginx: ${{ steps.filter.outputs.nginx }}
-      tag: ${{ steps.filter.outputs.tag }}
-    steps:
-    - name: Checkout
-      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-    - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
-      id: filter
-      with:
-        token: ${{ secrets.GITHUB_TOKEN }}
-        filters: |
-          nginx:
-          - 'images/nginx-1.25/**'
-          tag:
-          - 'images/nginx-1.25/TAG'
-
-  build:
-    permissions:
-      contents: read  # for dorny/paths-filter to fetch a list of changed files
-      pull-requests: read  # for dorny/paths-filter to read pull requests
-    runs-on: ubuntu-latest
-    needs: changes
-    if: |
-      (github.event_name != 'push' && github.ref != 'refs/heads/main' && needs.changes.outputs.nginx == 'true')
-    env:
-      PLATFORMS: linux/amd64
-    steps:
-    - name: Checkout
-      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-    - name: Set up Go
-      id: go
-      uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
-      with:
-        go-version: '1.21.5'
-        check-latest: true
-    - name: Set up QEMU
-      uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
-    - name: Set up Docker Buildx
-      id: buildx
-      uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
-      with:
-        version: latest
-        platforms: ${{ env.PLATFORMS }}
-    - name: Prepare Host
-      run: |
-        curl -LO https://dl.k8s.io/release/v1.27.3/bin/linux/amd64/kubectl
-        chmod +x ./kubectl
-        sudo mv ./kubectl /usr/local/bin/kubectl
-    - name: build-image
-      run: |
-        cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --load -t nginx-1.25:1.0.0-dev .
-    - name: load-image
-      run: |
-        make clean-image build
-        make -C test/e2e-image image
-        docker build \
-          --platform linux \
-          --no-cache \
-          --build-arg BASE_IMAGE="nginx-1.25:1.0.0-dev" \
-          --build-arg VERSION="0.0.1-${{ github.sha }}" \
-          --build-arg TARGETARCH="amd64" \
-          --build-arg COMMIT_SHA="git-${{ github.sha }}" \
-          --build-arg BUILD_ID=""UNSET"" \
-          -t ingress-controller/controller:1.0.0-dev rootfs
-        docker save \
-          nginx-ingress-controller:e2e \
-          ingress-controller/controller:1.0.0-dev \
-          nginx-1.25:1.0.0-dev \
-          | gzip > docker.tar.gz
-    - name: cache
-      uses: actions/upload-artifact@694cdabd8bdb0f10b2cea11669e1bf5453eed0a6 # v4.2.0
-      with:
-        name: docker.tar.gz
-        path: docker.tar.gz
-        retention-days: 2
-
-  e2e-test:
-    name: Kubernetes
-    runs-on: ubuntu-latest
-    needs:
-      - build
-    strategy:
-      matrix:
-        k8s: [v1.27.3, v1.28.0, v1.29.0]
-    steps:
-    - name: Checkout
-      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-  
-    - name: cache
-      uses: actions/download-artifact@6b208ae046db98c579e8a3aa621ab581ff575935 # v4.1.1
-      with:
-        name: docker.tar.gz
-  
-    - name: Create Kubernetes ${{ matrix.k8s }} cluster
-      id: kind
-      run: |
-        kind create cluster --image=kindest/node:${{ matrix.k8s }} --config test/e2e/kind.yaml
-  
-    - name: Load images from cache
-      run: |
-        echo "loading docker images..."
-        gzip -dc docker.tar.gz | docker load
-  
-    - name: Run e2e tests
-      env:
-        KIND_CLUSTER_NAME: kind
-        SKIP_CLUSTER_CREATION: true
-        SKIP_IMAGE_CREATION: true
-        SKIP_OPENTELEMETRY_TESTS: true
-      run: |
-        kind get kubeconfig > $HOME/.kube/kind-config-kind
-        make NGINX_BASE_IMAGE="nginx-1.25:1.0.0-dev" kind-e2e-test
-        
-  push:
-    permissions:
-      contents: write
-      packages: write
-    runs-on: ubuntu-latest
-    needs: changes
-    if: |
-      (github.event_name == 'push' && github.ref == 'refs/heads/main' && needs.changes.outputs.tag == 'true')
-    env:
-      PLATFORMS: linux/amd64,linux/arm,linux/arm64,linux/s390x
-    steps:
-    - name: Checkout
-      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-    - name: Set up QEMU
-      uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
-    - name: Set up Docker Buildx
-      id: buildx
-      uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
-      with:
-        version: latest
-        platforms: ${{ env.PLATFORMS }}
-    - name: Login to GitHub Container Registry
-      uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
-      with:
-        username: ${{ secrets.DOCKERHUB_USERNAME }}
-        password: ${{ secrets.DOCKERHUB_TOKEN }}
-    - name: build-image
-      run: |
-        export TAG=$(cat images/nginx-1.25/TAG)
-        cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --push --load -t ingressnginx/nginx-1.25:${TAG} .
-
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index d2941eb15..7709e9637 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -41,7 +41,8 @@ jobs:
         env:
           KIND_CLUSTER_NAME: kind
           SKIP_CLUSTER_CREATION: true
-          SKIP_IMAGE_CREATION: true
+          SKIP_INGRESS_IMAGE_CREATION: true
+          SKIP_E2E_IMAGE_CREATION: true
           ENABLE_VALIDATIONS: ${{ inputs.variation == 'VALIDATIONS' }}
           IS_CHROOT: ${{ inputs.variation == 'CHROOT' }}
         run: |
diff --git a/Makefile b/Makefile
index 964889532..5a2d81dd4 100644
--- a/Makefile
+++ b/Makefile
@@ -231,8 +231,8 @@ ensure-buildx:
 show-version:
 	echo -n $(TAG)
 
-PLATFORMS ?= amd64 arm arm64 s390x
-BUILDX_PLATFORMS ?= linux/amd64,linux/arm,linux/arm64,linux/s390x
+PLATFORMS ?= amd64 arm arm64
+BUILDX_PLATFORMS ?= linux/amd64,linux/arm,linux/arm64
 
 .PHONY: release # Build a multi-arch docker image
 release: ensure-buildx clean
diff --git a/images/nginx-1.25/Makefile b/images/nginx-1.25/Makefile
index 527dfa8fb..e03197109 100644
--- a/images/nginx-1.25/Makefile
+++ b/images/nginx-1.25/Makefile
@@ -22,17 +22,17 @@ INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
 # 0.0.0 shouldn't clobber any released builds
 SHORT_SHA ?=$(shell git rev-parse --short HEAD)
-TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+TAG ?=$(shell cat TAG)
 
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
-IMAGE = $(REGISTRY)/nginx
+IMAGE = $(REGISTRY)/nginx-1.25
 
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled
 
 # build with buildx
-PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
+PLATFORMS?=linux/amd64,linux/arm,linux/arm64
 OUTPUT=
 PROGRESS=plain
 build: ensure-buildx
diff --git a/images/nginx-1.25/cloudbuild.yaml b/images/nginx-1.25/cloudbuild.yaml
index e3902c785..c94539165 100644
--- a/images/nginx-1.25/cloudbuild.yaml
+++ b/images/nginx-1.25/cloudbuild.yaml
@@ -1,7 +1,7 @@
 timeout: 10800s
 options:
   substitution_option: ALLOW_LOOSE
-  # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
+  # job builds a multi-arch docker image for amd64,arm,arm64
   machineType: E2_HIGHCPU_32
 steps:
   - name: 'gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90'
diff --git a/images/nginx-1.25/rootfs/Dockerfile b/images/nginx-1.25/rootfs/Dockerfile
index 8996547e6..ad0c9d654 100644
--- a/images/nginx-1.25/rootfs/Dockerfile
+++ b/images/nginx-1.25/rootfs/Dockerfile
@@ -48,6 +48,9 @@ RUN apk update \
   yaml-cpp \
   dumb-init \
   tzdata \
+  grpc-cpp \
+  libprotobuf \
+  && apk add -X http://dl-cdn.alpinelinux.org/alpine/edge/testing opentelemetry-cpp-exporter-otlp-common opentelemetry-cpp-exporter-otlp-grpc \
   && ln -s /usr/local/nginx/sbin/nginx /sbin/nginx \
   && adduser -S -D -H -u 101 -h /usr/local/nginx \
   -s /sbin/nologin -G www-data -g www-data www-data \
diff --git a/images/nginx-1.25/rootfs/build.sh b/images/nginx-1.25/rootfs/build.sh
index d88527e88..0fded23d6 100755
--- a/images/nginx-1.25/rootfs/build.sh
+++ b/images/nginx-1.25/rootfs/build.sh
@@ -129,6 +129,7 @@ get_src()
 }
 
 # install required packages to build
+# Dependencies from "ninja" and below are OTEL dependencies
 apk add \
   bash \
   gcc \
@@ -165,7 +166,22 @@ apk add \
   unzip \
   dos2unix \
   yaml-cpp \
-  coreutils
+  coreutils \
+  ninja \
+  gtest-dev \
+  git \
+  build-base \
+  pkgconfig \
+  c-ares-dev \
+  re2-dev \
+  grpc-dev \
+  protobuf-dev 
+
+apk add -X http://dl-cdn.alpinelinux.org/alpine/edge/testing opentelemetry-cpp-dev
+
+# There is some bug with some platforms and git, so force HTTP/1.1
+git config --global http.version HTTP/1.1
+git config --global http.postBuffer 157286400
 
 mkdir -p /etc/nginx
 
@@ -472,6 +488,33 @@ make
 make modules
 make install
 
+export OPENTELEMETRY_CONTRIB_COMMIT=aaa51e2297bcb34297f3c7aa44fa790497d2f7f3
+cd "$BUILD_PATH"
+
+git clone https://github.com/open-telemetry/opentelemetry-cpp-contrib.git opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}
+
+cd ${BUILD_PATH}/opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}
+git reset --hard ${OPENTELEMETRY_CONTRIB_COMMIT}
+
+export OTEL_TEMP_INSTALL=/tmp/otel
+mkdir -p ${OTEL_TEMP_INSTALL}
+
+cd ${BUILD_PATH}/opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}/instrumentation/nginx
+mkdir -p build
+cd build
+cmake -DCMAKE_BUILD_TYPE=Release \
+        -G Ninja \
+        -DCMAKE_CXX_STANDARD=17 \
+        -DCMAKE_INSTALL_PREFIX=${OTEL_TEMP_INSTALL} \
+        -DBUILD_SHARED_LIBS=ON \
+        -DNGINX_VERSION=${NGINX_VERSION} \
+        ..
+cmake --build . -j ${CORES} --target install
+
+mkdir -p /etc/nginx/modules
+cp ${OTEL_TEMP_INSTALL}/otel_ngx_module.so /etc/nginx/modules/otel_ngx_module.so
+
+
 cd "$BUILD_PATH/lua-resty-core"
 make install
 
diff --git a/images/opentelemetry/Makefile b/images/opentelemetry/Makefile
new file mode 100644
index 000000000..eae435bef
--- /dev/null
+++ b/images/opentelemetry/Makefile
@@ -0,0 +1,69 @@
+# Copyright 2024 The Kubernetes Authors. All rights reserved.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+.DEFAULT_GOAL:=build
+
+# set default shell
+SHELL=/bin/bash -o pipefail -o errexit
+
+DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
+INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
+
+# 0.0.0 shouldn't clobber any released builds
+SHORT_SHA ?=$(shell git rev-parse --short HEAD)
+TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+
+REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
+
+IMAGE = $(REGISTRY)/opentelemetry
+
+# required to enable buildx
+export DOCKER_CLI_EXPERIMENTAL=enabled
+
+# build with buildx
+PLATFORMS?=linux/amd64,linux/arm,linux/arm64
+OUTPUT=
+PROGRESS=plain
+
+precheck:
+ifndef NGINX_VERSION
+	$(error NGINX_VERSION variable is required)
+endif
+
+build: precheck ensure-buildx
+	docker buildx build \
+		--label=org.opencontainers.image.source=https://github.com/kubernetes/ingress-nginx \
+		--label=org.opencontainers.image.licenses=Apache-2.0 \
+		--label=org.opencontainers.image.description="Ingress NGINX Opentelemetry image" \
+		--platform=${PLATFORMS} $(OUTPUT) \
+		--progress=$(PROGRESS) \
+		--build-arg=NGINX_VERSION=$(NGINX_VERSION) \
+		--pull \
+		--tag $(IMAGE)-$(NGINX_VERSION):$(TAG) rootfs
+
+# push the cross built image
+push: OUTPUT=--push
+push: build
+
+# enable buildx
+ensure-buildx:
+# this is required for cloudbuild
+ifeq ("$(wildcard $(INIT_BUILDX))","")
+	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/hack/init-buildx.sh | bash
+else
+	@exec $(INIT_BUILDX)
+endif
+	@echo "done"
+
+.PHONY: build precheck push ensure-buildx
diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
index 6705dac87..bc48a93f4 100644
--- a/images/opentelemetry/cloudbuild.yaml
+++ b/images/opentelemetry/cloudbuild.yaml
@@ -16,4 +16,5 @@ steps:
     - -c
     - |
       gcloud auth configure-docker \
-      && cd images/ && make NAME=opentelemetry push
+      && cd images/opentelemetry && make NGINX_VERSION=1.25.3 push \
+      && make NGINX_VERSION=1.21.6 push
diff --git a/images/opentelemetry/rootfs/CMakeLists.txt b/images/opentelemetry/rootfs/CMakeLists.txt
index a1ff85b49..1c68d6fc6 100644
--- a/images/opentelemetry/rootfs/CMakeLists.txt
+++ b/images/opentelemetry/rootfs/CMakeLists.txt
@@ -64,98 +64,9 @@ find_package(OpenSSL REQUIRED)
 message("OpenSSL include dir: ${OPENSSL_INCLUDE_DIR}")
 message("OpenSSL libraries: ${OPENSSL_LIBRARIES}")
 
-set(GRPC_GIT_TAG
-    "v1.45.2"
-    CACHE STRING "gRPC version")
-
-include(ExternalProject)
-set(ABSEIL_GIT_TAG "20230802.1" CACHE STRING "Abseil version")
-
-ExternalProject_Add(
-  Abseil
-  GIT_REPOSITORY https://github.com/abseil/abseil-cpp.git
-  GIT_TAG ${ABSEIL_GIT_TAG}
-  GIT_SHALLOW 1
-  UPDATE_COMMAND ""
-  CMAKE_ARGS -DCMAKE_INSTALL_PREFIX=${STAGED_INSTALL_PREFIX}
-             -DCMAKE_BUILD_TYPE=${CMAKE_BUILD_TYPE}
-             -DCMAKE_CXX_COMPILER=${CMAKE_CXX_COMPILER}
-             -DCMAKE_CXX_STANDARD=${CMAKE_CXX_STANDARD}
-             -DCMAKE_CXX_FLAGS:STRING=${CMAKE_CXX_FLAGS}
-  USES_TERMINAL_BUILD TRUE
-  DOWNLOAD_NO_PROGRESS TRUE
-  LOG_CONFIGURE TRUE
-  LOG_BUILD TRUE
-  LOG_INSTALL TRUE)
-
-# RE2 settings
-set(RE2_GIT_TAG "2023-11-01" CACHE STRING "RE2 version")
-
-ExternalProject_Add(
-  RE2
-  DEPENDS Abseil
-  GIT_REPOSITORY https://github.com/google/re2.git
-  GIT_TAG ${RE2_GIT_TAG}
-  GIT_SHALLOW 1
-  UPDATE_COMMAND ""
-  CMAKE_ARGS -DCMAKE_INSTALL_PREFIX=${STAGED_INSTALL_PREFIX}
-             -DCMAKE_BUILD_TYPE=${CMAKE_BUILD_TYPE}
-             -DCMAKE_CXX_COMPILER=${CMAKE_CXX_COMPILER}
-             -DCMAKE_CXX_STANDARD=${CMAKE_CXX_STANDARD}
-             -DCMAKE_CXX_FLAGS:STRING=${CMAKE_CXX_FLAGS}
-  USES_TERMINAL_BUILD TRUE
-  DOWNLOAD_NO_PROGRESS TRUE
-  LOG_CONFIGURE TRUE
-  LOG_BUILD TRUE
-  LOG_INSTALL TRUE)
-
-ExternalProject_Add(
-  gRPC
-  DEPENDS Abseil RE2
-  GIT_REPOSITORY https://github.com/grpc/grpc.git
-  GIT_TAG ${GRPC_GIT_TAG}
-  GIT_SHALLOW 1
-  UPDATE_COMMAND ""
-  CMAKE_ARGS -DCMAKE_INSTALL_PREFIX=${STAGED_INSTALL_PREFIX}
-             -DCMAKE_BUILD_TYPE=${CMAKE_BUILD_TYPE}
-             -DCMAKE_CXX_COMPILER=${CMAKE_CXX_COMPILER}
-             -DgRPC_SSL_PROVIDER=package
-             -DgRPC_RE2_PROVIDER=package
-             -DgRPC_ABSEIL_PROVIDER=package
-             -DOPENSSL_ROOT_DIR=OpenSSL
-             -DgRPC_BUILD_TESTS=OFF
-             -DBUILD_SHARED_LIBS=OFF
-             -DgRPC_INSTALL=ON
-             -DgRPC_BUILD_GRPC_NODE_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_OBJECTIVE_C_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_PHP_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_PYTHON_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_RUBY_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_NODE_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_OBJECTIVE_C_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_PHP_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_PYTHON_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_RUBY_PLUGIN=OFF
-             -DgRPC_USE_PROTO_LITE=OFF
-             -DgRPC_BUILD_CSHARP_EXT=OFF
-             -DgRPC_BUILD_GRPC_CSHARP_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_JAVA_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_GRPC_JAVA_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_WEB_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_C_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_NODE_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_OBJECTIVE_C_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_PHP_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_PYTHON_PLUGIN=OFF
-             -DgRPC_BUILD_GRPC_RUBY_PLUGIN=OFF
-             -DCMAKE_CXX_STANDARD=${CMAKE_CXX_STANDARD}
-             CMAKE_CACHE_ARGS -DCMAKE_CXX_FLAGS:STRING=${CMAKE_CXX_FLAGS}
-  TEST_AFTER_INSTALL FALSE
-  USES_TERMINAL_BUILD TRUE
-  DOWNLOAD_NO_PROGRESS TRUE
-  LOG_CONFIGURE TRUE
-  LOG_BUILD TRUE
-  LOG_INSTALL TRUE)
+find_package(Protobuf REQUIRED)
+find_package(gRPC REQUIRED)
+find_package(OpentelemetryCPP REQUIRED)
 
 install(
   DIRECTORY ${STAGED_INSTALL_PREFIX}/
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index e568237c2..b6a0a595b 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -26,23 +26,12 @@ RUN apk update \
 
 ENV NINJA_STATUS "[%p/%f/%t] "
 
-# install gRPC
-FROM base as grpc
-RUN bash /opt/third_party/build.sh -g v1.60.0
-
-
-# install OpenTelemetry-cpp
-FROM base as otel-cpp
-COPY --from=grpc /opt/third_party/install/ /usr
-RUN bash /opt/third_party/build.sh -o v1.11.0
-
 # install otel_ngx_module.so
 FROM base as nginx
-COPY --from=grpc /opt/third_party/install/ /usr
-COPY --from=otel-cpp /opt/third_party/install/ /usr
-RUN bash /opt/third_party/build.sh -n
+ARG NGINX_VERSION=1.25.3
+RUN bash /opt/third_party/build.sh -n ${NGINX_VERSION}
 
-FROM cgr.dev/chainguard/go:latest as build-init
+FROM golang:1.21.6-bullseye as build-init
 
 WORKDIR /go/src/app
 COPY . .
diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
index 8b491589f..d46ab9fe5 100755
--- a/images/opentelemetry/rootfs/build.sh
+++ b/images/opentelemetry/rootfs/build.sh
@@ -17,12 +17,12 @@
 set -o errexit
 set -o nounset
 set -o pipefail
-
-export GRPC_GIT_TAG=${GRPC_GIT_TAG:="v1.43.2"}
+set -x
 # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp/compare/v1.2.0...main
-export OPENTELEMETRY_CPP_VERSION=${OPENTELEMETRY_CPP_VERSION:="1.2.0"}
-export ABSL_CPP_VERSION=${ABSL_CPP_VERSION:="20230802.0"}
-export INSTAL_DIR=/opt/third_party/install
+export OPENTELEMETRY_CPP_VERSION=${OPENTELEMETRY_CPP_VERSION:="v1.11.0"}
+export INSTALL_DIR=/opt/third_party/install
+
+export NGINX_VERSION=${NGINX_VERSION:="1.25.3"}
 # improve compilation times
 CORES=$(($(grep -c ^processor /proc/cpuinfo) - 1))
 
@@ -41,10 +41,9 @@ Help()
    # Display Help
    echo "Add description of the script functions here."
    echo
-   echo "Syntax: scriptTemplate [-h|g|o|n|p|]"
+   echo "Syntax: scriptTemplate [-h|o|n|p|]"
    echo "options:"
    echo "h     Print Help."
-   echo "g     gRPC git tag"
    echo "o     OpenTelemetry git tag"
    echo "n     install nginx"
    echo "p     prepare"
@@ -53,6 +52,7 @@ Help()
 
 prepare()
 {
+  echo "http://dl-cdn.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
   apk add \
     linux-headers \
     cmake \
@@ -65,48 +65,26 @@ prepare()
     pcre-dev \
     curl \
     git \
-    build-base
-}
+    build-base \
+    coreutils \
+    build-base \
+    openssl-dev \
+    pkgconfig \
+    c-ares-dev \
+    re2-dev \
+    grpc-dev \
+    protobuf-dev \
+    opentelemetry-cpp-dev
 
-install_grpc()
-{
-  mkdir -p $BUILD_PATH/grpc
-  cd ${BUILD_PATH}/grpc
-  cmake -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
-    -G Ninja \
-    -DGRPC_GIT_TAG=${GRPC_GIT_TAG} /opt/third_party
-
-  cmake --build . -j ${CORES} --target all install --verbose
-}
-
-install_absl()
-{
-  cd ${BUILD_PATH}
-  export LD_LIBRARY_PATH="${LD_LIBRARY_PATH:+LD_LIBRARY_PATH:}${INSTAL_DIR}/lib:/usr/local"
-  export PATH="${PATH}:${INSTAL_DIR}/bin"
-  git clone --recurse-submodules -j ${CORES} --depth=1 -b \
-    ${ABSL_CPP_VERSION} https://github.com/abseil/abseil-cpp.git abseil-cpp-${ABSL_CPP_VERSION}
-  cd "abseil-cpp-${ABSL_CPP_VERSION}"
-  mkdir -p .build
-  cd .build
-
-  cmake -DCMAKE_BUILD_TYPE=Release \
-        -G Ninja \
-        -DCMAKE_CXX_STANDARD=17 \
-        -DCMAKE_POSITION_INDEPENDENT_CODE=TRUE \
-        -DBUILD_TESTING=OFF \
-        -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
-        -DABSL_PROPAGATE_CXX_STD=ON \
-        -DBUILD_SHARED_LIBS=OFF \
-        ..
-  cmake --build . -j ${CORES} --target install
+  git config --global http.version HTTP/1.1
+  git config --global http.postBuffer 157286400
 }
 
 install_otel()
 {
   cd ${BUILD_PATH}
-  export LD_LIBRARY_PATH="${LD_LIBRARY_PATH:+LD_LIBRARY_PATH:}${INSTAL_DIR}/lib:/usr/local"
-  export PATH="${PATH}:${INSTAL_DIR}/bin"
+  export LD_LIBRARY_PATH="${LD_LIBRARY_PATH:+LD_LIBRARY_PATH:}${INSTALL_DIR}/lib:/usr/local"
+  export PATH="${PATH}:${INSTALL_DIR}/bin"
   git clone --recurse-submodules -j ${CORES} --depth=1 -b \
     ${OPENTELEMETRY_CPP_VERSION} https://github.com/open-telemetry/opentelemetry-cpp.git opentelemetry-cpp-${OPENTELEMETRY_CPP_VERSION}
   cd "opentelemetry-cpp-${OPENTELEMETRY_CPP_VERSION}"
@@ -118,7 +96,7 @@ install_otel()
         -DCMAKE_CXX_STANDARD=17 \
         -DCMAKE_POSITION_INDEPENDENT_CODE=TRUE  \
         -DWITH_ZIPKIN=OFF \
-        -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
+        -DCMAKE_INSTALL_PREFIX=${INSTALL_DIR} \
         -DBUILD_TESTING=OFF \
         -DWITH_BENCHMARK=OFF \
         -DWITH_FUNC_TESTS=OFF \
@@ -132,23 +110,8 @@ install_otel()
   cmake --build . -j ${CORES} --target install
 }
 
-get_src()
-{
-  hash="$1"
-  url="$2"
-  f=$(basename "$url")
-
-  echo "Downloading $url"
-
-  curl -sSL --fail-with-body "$url" -o "$f"
-  echo "$hash  $f" | sha256sum -c - || exit 10
-  tar xzf "$f"
-  rm -rf "$f"
-}
-
 install_nginx()
 {
-  export NGINX_VERSION=1.25.3
 
   # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/2656a4...main
   export OPENTELEMETRY_CONTRIB_COMMIT=aaa51e2297bcb34297f3c7aa44fa790497d2f7f3
@@ -170,39 +133,28 @@ install_nginx()
   cmake -DCMAKE_BUILD_TYPE=Release \
         -G Ninja \
         -DCMAKE_CXX_STANDARD=17 \
-        -DCMAKE_INSTALL_PREFIX=${INSTAL_DIR} \
+        -DCMAKE_INSTALL_PREFIX=${INSTALL_DIR} \
         -DBUILD_SHARED_LIBS=ON \
         -DNGINX_VERSION=${NGINX_VERSION} \
         ..
   cmake --build . -j ${CORES} --target install
 
   mkdir -p /etc/nginx/modules
-  cp ${INSTAL_DIR}/otel_ngx_module.so /etc/nginx/modules/otel_ngx_module.so
+  cp ${INSTALL_DIR}/otel_ngx_module.so /etc/nginx/modules/otel_ngx_module.so
 }
 
-while getopts ":pha:g:o:n" option; do
+while getopts ":phn:" option; do
    case $option in
     h) # display Help
          Help
          exit;;
-    g) # install gRPC with git tag
-        GRPC_GIT_TAG=${OPTARG}
-        install_grpc
-        exit;;
-    o) # install OpenTelemetry tag
-        OPENTELEMETRY_CPP_VERSION=${OPTARG}
-        install_otel
-        exit;;
     p) # prepare
         prepare
         exit;;
     n) # install nginx
+        NGINX_VERSION=${OPTARG}
         install_nginx
         exit;;
-    a) # install abseil
-        ABSL_CPP_VERSION=${OPTARG}
-        install_absl
-        exit;;
     \?)
         Help
         exit;;
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 7410ce6e0..f08eee498 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -1501,13 +1501,8 @@ func httpsListener(addresses []string, co string, tc *config.TemplateConfig) []s
 			}
 		}
 
-		lo = append(lo, co, "ssl")
+		lo = append(lo, co, "ssl;")
 
-		if tc.Cfg.UseHTTP2 {
-			lo = append(lo, "http2")
-		}
-
-		lo = append(lo, ";")
 		out = append(out, strings.Join(lo, " "))
 	}
 
diff --git a/rootfs/Dockerfile b/rootfs/Dockerfile
index 86517c6c1..a04cfe3de 100644
--- a/rootfs/Dockerfile
+++ b/rootfs/Dockerfile
@@ -84,5 +84,4 @@ RUN  ln -sf /dev/stdout /var/log/nginx/access.log \
   && ln -sf /dev/stderr /var/log/nginx/error.log
 
 ENTRYPOINT ["/usr/bin/dumb-init", "--"]
-
 CMD ["/nginx-ingress-controller"]
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index a210aa7bf..b52cbddf9 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -119,7 +119,6 @@ RUN mkdir -p /chroot/modules_mount \
 USER www-data
 
 EXPOSE 80 443
-
 ENTRYPOINT ["/usr/bin/dumb-init", "--"]
 
 CMD ["/nginx-ingress-controller"]
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 94dc12412..d58be2880 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -30,7 +30,7 @@ load_module /etc/nginx/modules/ngx_http_modsecurity_module.so;
 {{ end }}
 
 {{ if (shouldLoadOpentelemetryModule $cfg $servers) }}
-load_module /modules_mount/etc/nginx/modules/otel/otel_ngx_module.so;
+load_module /etc/nginx/modules/otel_ngx_module.so;
 {{ end }}
 
 daemon off;
@@ -658,6 +658,10 @@ http {
     server {
         server_name {{ buildServerName $server.Hostname }} {{range $server.Aliases }}{{ . }} {{ end }};
 
+        {{ if $cfg.UseHTTP2 }}
+            http2 on;
+        {{ end }}
+
         {{ if gt (len $cfg.BlockUserAgents) 0 }}
         if ($block_ua) {
            return 403;
diff --git a/test/e2e/settings/opentelemetry.go b/test/e2e/settings/opentelemetry.go
index af946f277..b5fc6ff4e 100644
--- a/test/e2e/settings/opentelemetry.go
+++ b/test/e2e/settings/opentelemetry.go
@@ -17,7 +17,6 @@ limitations under the License.
 package settings
 
 import (
-	"os"
 	"strings"
 
 	"github.com/onsi/ginkgo/v2"
@@ -40,12 +39,6 @@ const (
 var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 	f := framework.NewDefaultFramework("enable-opentelemetry")
 
-	shouldSkip := false
-	skip, ok := os.LookupEnv("SKIP_OPENTELEMETRY_TESTS")
-	if ok && skip == enable {
-		shouldSkip = true
-	}
-
 	ginkgo.BeforeEach(func() {
 		f.NewEchoDeployment()
 	})
@@ -54,9 +47,6 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 	})
 
 	ginkgo.It("should not exists opentelemetry directive", func() {
-		if shouldSkip {
-			ginkgo.Skip("skipped")
-		}
 		config := map[string]string{}
 		config[enableOpentelemetry] = disable
 		f.SetNginxConfigMapData(config)
@@ -70,9 +60,6 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 	})
 
 	ginkgo.It("should exists opentelemetry directive when is enabled", func() {
-		if shouldSkip {
-			ginkgo.Skip("skipped")
-		}
 		config := map[string]string{}
 		config[enableOpentelemetry] = enable
 		config[opentelemetryConfig] = opentelemetryConfigPath
@@ -87,9 +74,6 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 	})
 
 	ginkgo.It("should include opentelemetry_trust_incoming_spans on directive when enabled", func() {
-		if shouldSkip {
-			ginkgo.Skip("skipped")
-		}
 		config := map[string]string{}
 		config[enableOpentelemetry] = enable
 		config[opentelemetryConfig] = opentelemetryConfigPath
@@ -105,9 +89,6 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 	})
 
 	ginkgo.It("should not exists opentelemetry_operation_name directive when is empty", func() {
-		if shouldSkip {
-			ginkgo.Skip("skipped")
-		}
 		config := map[string]string{}
 		config[enableOpentelemetry] = enable
 		config[opentelemetryConfig] = opentelemetryConfigPath
@@ -123,9 +104,6 @@ var _ = framework.IngressNginxDescribe("Configure Opentelemetry", func() {
 	})
 
 	ginkgo.It("should exists opentelemetry_operation_name directive when is configured", func() {
-		if shouldSkip {
-			ginkgo.Skip("skipped")
-		}
 		config := map[string]string{}
 		config[enableOpentelemetry] = enable
 		config[opentelemetryConfig] = opentelemetryConfigPath
diff --git a/test/e2e/wait-for-nginx.sh b/test/e2e/wait-for-nginx.sh
index 0726bde10..d2529e348 100755
--- a/test/e2e/wait-for-nginx.sh
+++ b/test/e2e/wait-for-nginx.sh
@@ -48,16 +48,6 @@ metadata:
 
 EOF
 
-OTEL_MODULE=$(cat <<EOF
-  opentelemetry:
-    enabled: true
-EOF
-)
-
-if [[ "$NAMESPACE_OVERLAY" != "enable-opentelemetry" ]]; then
-  OTEL_MODULE=""
-fi
-
 # Use the namespace overlay if it was requested
 if [[ ! -z "$NAMESPACE_OVERLAY" && -d "$DIR/namespace-overlays/$NAMESPACE_OVERLAY" ]]; then
     echo "Namespace overlay $NAMESPACE_OVERLAY is being used for namespace $NAMESPACE"

From 5acc4230ee57fe85c8338cb55f7eb248b7fb2a52 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sat, 27 Jan 2024 22:15:14 -0300
Subject: [PATCH 1134/1641] Bump go to v1.21.6 and set a single source of truth
 (#10926)

---
 .github/workflows/ci.yaml                     | 16 +++-
 .github/workflows/golangci-lint.yml           |  5 +-
 .github/workflows/images.yaml                 |  8 +-
 .github/workflows/plugin.yaml                 |  5 +-
 GOLANG_VERSION                                |  1 +
 Makefile                                      |  4 +-
 build/build.sh                                | 25 ++---
 build/run-in-docker.sh                        | 11 +--
 go.mod                                        |  2 +-
 go.work                                       |  2 +-
 go.work.sum                                   | 93 ++++++++++++++++++-
 images/Makefile                               |  3 +
 images/custom-error-pages/rootfs/Dockerfile   |  4 +-
 images/custom-error-pages/rootfs/go.mod       |  2 +-
 .../rootfs/Dockerfile                         |  4 +-
 images/ext-auth-example-authsvc/rootfs/go.mod |  2 +-
 images/fastcgi-helloserver/rootfs/Dockerfile  |  3 +-
 .../go-grpc-greeter-server/rootfs/Dockerfile  |  4 +-
 images/httpbun/rootfs/Dockerfile              |  4 +-
 images/kube-webhook-certgen/rootfs/Dockerfile |  6 +-
 images/kube-webhook-certgen/rootfs/go.mod     |  2 +-
 images/opentelemetry/rootfs/go.mod            |  2 +-
 images/test-runner/Makefile                   |  6 +-
 magefiles/go.mod                              |  2 +-
 24 files changed, 166 insertions(+), 50 deletions(-)
 create mode 100644 GOLANG_VERSION

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 2c6bef636..19dc44746 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -78,11 +78,14 @@ jobs:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       
+      - name: Get go version
+        run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
+        
       - name: Set up Go
         id: go
         uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
         with:
-          go-version: '1.21.5'
+          go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
 
       - name: Run test
@@ -92,6 +95,8 @@ jobs:
     name: Build
     runs-on: ubuntu-latest
     needs: changes
+    outputs:
+      golangversion: ${{ steps.golangversion.outputs.version }}
     if: |
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.charts == 'true') || (needs.changes.outputs.baseimage == 'true')
      
@@ -100,12 +105,17 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+      
+      - name: Get go version
+        id: golangversion
+        run: |
+          echo "version=$(cat GOLANG_VERSION)" >> "$GITHUB_OUTPUT"
 
       - name: Set up Go
         id: go
         uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
         with:
-          go-version: '1.21.5'
+          go-version: ${{ steps.golangversion.outputs.version }}
           check-latest: true
 
       - name: Set up QEMU
@@ -177,7 +187,7 @@ jobs:
       - name: Setup Go
         uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
         with:
-          go-version: '1.21.5'
+          go-version: ${{ needs.build.outputs.golangversion }}
           check-latest: true
 
       - name: Install Helm Unit Test Plugin
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 0a856adeb..16c3fe8fc 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -18,11 +18,14 @@ jobs:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       
+      - name: Get go version
+        run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
+      
       - name: Set up Go
         id: go
         uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
         with:
-          go-version: '1.21.5'
+          go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
       
       - name: golangci-lint
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 7eb07cfc3..8a41cdac6 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -142,15 +142,19 @@ jobs:
       (needs.changes.outputs.kube-webhook-certgen == 'true')
     strategy:
       matrix:
-        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0, 1.29.0]
+        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0, v1.29.0]
     steps:
     - name: Checkout
       uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+
+    - name: Get go version
+      run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
+
     - name: Set up Go
       id: go
       uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
       with:
-        go-version: '1.21.5'
+        go-version: ${{ env.GOLANG_VERSION }}
         check-latest: true
     - name: image build
       run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 9cc3a4a3c..fe99b2444 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -16,10 +16,13 @@ jobs:
         with:
           fetch-depth: 0
 
+      - name: Get go version
+        run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
+
       - name: Set up Go
         uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
         with:
-          go-version: '1.21.5'
+          go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
 
       - name: Run GoReleaser Snapshot
diff --git a/GOLANG_VERSION b/GOLANG_VERSION
new file mode 100644
index 000000000..6e83421e4
--- /dev/null
+++ b/GOLANG_VERSION
@@ -0,0 +1 @@
+1.21.6
\ No newline at end of file
diff --git a/Makefile b/Makefile
index 5a2d81dd4..d3830f163 100644
--- a/Makefile
+++ b/Makefile
@@ -29,6 +29,8 @@ SHELL=/bin/bash -o pipefail -o errexit
 # Use the 0.0 tag for testing, it shouldn't clobber any release builds
 TAG ?= $(shell cat TAG)
 
+GOLANG_VERSION ?= $(shell cat GOLANG_VERSION)
+
 # e2e settings
 # Allow limiting the scope of the e2e tests. By default run everything
 FOCUS ?=
@@ -105,7 +107,7 @@ clean-chroot-image: ## Removes local image
 
 .PHONY: build
 build:  ## Build ingress controller, debug tool and pre-stop hook.
-	build/run-in-docker.sh \
+	E2E_IMAGE=golang:$(GOLANG_VERSION)-alpine3.19 USE_SHELL=/bin/sh build/run-in-docker.sh \
 		MAC_OS=$(MAC_OS) \
 		PKG=$(PKG) \
 		ARCH=$(ARCH) \
diff --git a/build/build.sh b/build/build.sh
index 1ae505d91..bbcaf78e8 100755
--- a/build/build.sh
+++ b/build/build.sh
@@ -1,4 +1,4 @@
-#!/bin/bash
+#!/bin/sh
 
 # Copyright 2018 The Kubernetes Authors.
 #
@@ -25,24 +25,15 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
-declare -a mandatory
-mandatory=(
-  PKG
-  ARCH
-  COMMIT_SHA
-  REPO_INFO
-  TAG
-)
 
-for var in "${mandatory[@]}"; do
-  if [[ -z "${!var:-}" ]]; then
-    echo "Environment variable $var must be set"
-    exit 1
-  fi
-done
+if [ -z "$PKG" ] || [ -z "$ARCH" ] || [ -z "$COMMIT_SHA" ] || [ -z "$REPO_INFO" ] || [ -z "$TAG" ]; then
+  echo "Environments PKG, ARCH, COMMIT_SHA, REPO_INFO and TAG are required"
+  exit 1 
+fi
+
 
 export CGO_ENABLED=0
-export GOARCH=${ARCH}
+export GOARCH="${ARCH}"
 
 TARGETS_DIR="rootfs/bin/${ARCH}"
 echo "Building targets for ${ARCH}, generated targets in ${TARGETS_DIR} directory."
@@ -75,4 +66,4 @@ ${GO_BUILD_CMD} \
   -X ${PKG}/version.COMMIT=${COMMIT_SHA} \
   -X ${PKG}/version.REPO=${REPO_INFO}" \
   -buildvcs=false \
-  -o "${TARGETS_DIR}/wait-shutdown" "${PKG}/cmd/waitshutdown"
+  -o "${TARGETS_DIR}/wait-shutdown" "${PKG}/cmd/waitshutdown"
\ No newline at end of file
diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 2eb8b5890..367f6138a 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -76,12 +76,7 @@ fi
 
 USER=${USER:-nobody}
 
-#echo "..printing env & other vars to stdout"
-#echo "HOSTNAME=`hostname`"
-#uname -a
-#env
-#echo "DIND_ENABLED=$DOCKER_IN_DOCKER_ENABLED"
-#echo "done..printing env & other vars to stdout"
+USE_SHELL=${USE_SHELL:-"/bin/bash"}
 
 if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
@@ -100,5 +95,5 @@ else
     args="$args -v /var/run/docker.sock:/var/run/docker.sock"
   fi
 
-  ${RUNTIME} run $args ${E2E_IMAGE} /bin/bash -c "${FLAGS}"
-fi
+  ${RUNTIME} run $args ${E2E_IMAGE} ${USE_SHELL} -c "${FLAGS}"
+fi
\ No newline at end of file
diff --git a/go.mod b/go.mod
index 216f446f8..00d9a4ac2 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx
 
-go 1.21.5
+go 1.21
 
 require (
 	dario.cat/mergo v1.0.0
diff --git a/go.work b/go.work
index 3dd9bfdee..463239b63 100644
--- a/go.work
+++ b/go.work
@@ -1,4 +1,4 @@
-go 1.21.5
+go 1.21
 
 use (
 	.
diff --git a/go.work.sum b/go.work.sum
index e45006894..d73c169de 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -1,10 +1,13 @@
 cloud.google.com/go v0.97.0/go.mod h1:GF7l59pYBVlXQIBLx3a761cZ41F9bBH3JUlihCt2Udc=
 cloud.google.com/go v0.110.2/go.mod h1:k04UEeEtb6ZBRTv3dZz4CeJC3jKGxyhl0sAiVVquxiw=
 cloud.google.com/go v0.110.4/go.mod h1:+EYjdK8e5RME/VY/qLCAtuyALQ9q67dvuum8i+H5xsI=
+cloud.google.com/go v0.110.8/go.mod h1:Iz8AkXJf1qmxC3Oxoep8R1T36w8B92yU29PcBhHO5fk=
 cloud.google.com/go/accessapproval v1.7.1/go.mod h1:JYczztsHRMK7NTXb6Xw+dwbs/WnOJxbo/2mTI+Kgg68=
 cloud.google.com/go/accesscontextmanager v1.8.1/go.mod h1:JFJHfvuaTC+++1iL1coPiG1eu5D24db2wXCDWDjIrxo=
 cloud.google.com/go/aiplatform v1.45.0/go.mod h1:Iu2Q7sC7QGhXUeOhAj/oCK9a+ULz1O4AotZiqjQ8MYA=
+cloud.google.com/go/aiplatform v1.50.0/go.mod h1:IRc2b8XAMTa9ZmfJV1BCCQbieWWvDnP1A8znyz5N7y4=
 cloud.google.com/go/analytics v0.21.2/go.mod h1:U8dcUtmDmjrmUTnnnRnI4m6zKn/yaA5N9RlEkYFHpQo=
+cloud.google.com/go/analytics v0.21.3/go.mod h1:U8dcUtmDmjrmUTnnnRnI4m6zKn/yaA5N9RlEkYFHpQo=
 cloud.google.com/go/apigateway v1.6.1/go.mod h1:ufAS3wpbRjqfZrzpvLC2oh0MFlpRJm2E/ts25yyqmXA=
 cloud.google.com/go/apigeeconnect v1.6.1/go.mod h1:C4awq7x0JpLtrlQCr8AzVIzAaYgngRqWf9S5Uhg+wWs=
 cloud.google.com/go/apigeeregistry v0.7.1/go.mod h1:1XgyjZye4Mqtw7T9TsY4NW10U7BojBvG4RMD+vRDrIw=
@@ -15,97 +18,142 @@ cloud.google.com/go/asset v1.14.1/go.mod h1:4bEJ3dnHCqWCDbWJ/6Vn7GVI9LerSi7Rfdi0
 cloud.google.com/go/assuredworkloads v1.11.1/go.mod h1:+F04I52Pgn5nmPG36CWFtxmav6+7Q+c5QyJoL18Lry0=
 cloud.google.com/go/automl v1.13.1/go.mod h1:1aowgAHWYZU27MybSCFiukPO7xnyawv7pt3zK4bheQE=
 cloud.google.com/go/baremetalsolution v0.5.0/go.mod h1:dXGxEkmR9BMwxhzBhV0AioD0ULBmuLZI8CdwalUxuss=
+cloud.google.com/go/baremetalsolution v1.2.0/go.mod h1:68wi9AwPYkEWIUT4SvSGS9UJwKzNpshjHsH4lzk8iOw=
 cloud.google.com/go/batch v0.7.0/go.mod h1:vLZN95s6teRUqRQ4s3RLDsH8PvboqBK+rn1oevL159g=
+cloud.google.com/go/batch v1.4.1/go.mod h1:KdBmDD61K0ovcxoRHGrN6GmOBWeAOyCgKD0Mugx4Fkk=
 cloud.google.com/go/beyondcorp v0.6.1/go.mod h1:YhxDWw946SCbmcWo3fAhw3V4XZMSpQ/VYfcKGAEU8/4=
+cloud.google.com/go/beyondcorp v1.0.0/go.mod h1:YhxDWw946SCbmcWo3fAhw3V4XZMSpQ/VYfcKGAEU8/4=
 cloud.google.com/go/bigquery v1.52.0/go.mod h1:3b/iXjRQGU4nKa87cXeg6/gogLjO8C6PmuM8i5Bi/u4=
+cloud.google.com/go/bigquery v1.55.0/go.mod h1:9Y5I3PN9kQWuid6183JFhOGOW3GcirA5LpsKCUn+2ec=
 cloud.google.com/go/billing v1.16.0/go.mod h1:y8vx09JSSJG02k5QxbycNRrN7FGZB6F3CAcgum7jvGA=
+cloud.google.com/go/billing v1.17.0/go.mod h1:Z9+vZXEq+HwH7bhJkyI4OQcR6TSbeMrjlpEjO2vzY64=
 cloud.google.com/go/binaryauthorization v1.6.1/go.mod h1:TKt4pa8xhowwffiBmbrbcxijJRZED4zrqnwZ1lKH51U=
+cloud.google.com/go/binaryauthorization v1.7.0/go.mod h1:Zn+S6QqTMn6odcMU1zDZCJxPjU2tZPV1oDl45lWY154=
 cloud.google.com/go/certificatemanager v1.7.1/go.mod h1:iW8J3nG6SaRYImIa+wXQ0g8IgoofDFRp5UMzaNk1UqI=
 cloud.google.com/go/channel v1.16.0/go.mod h1:eN/q1PFSl5gyu0dYdmxNXscY/4Fi7ABmeHCJNf/oHmc=
+cloud.google.com/go/channel v1.17.0/go.mod h1:RpbhJsGi/lXWAUM1eF4IbQGbsfVlg2o8Iiy2/YLfVT0=
 cloud.google.com/go/cloudbuild v1.10.1/go.mod h1:lyJg7v97SUIPq4RC2sGsz/9tNczhyv2AjML/ci4ulzU=
+cloud.google.com/go/cloudbuild v1.14.0/go.mod h1:lyJg7v97SUIPq4RC2sGsz/9tNczhyv2AjML/ci4ulzU=
 cloud.google.com/go/clouddms v1.6.1/go.mod h1:Ygo1vL52Ov4TBZQquhz5fiw2CQ58gvu+PlS6PVXCpZI=
+cloud.google.com/go/clouddms v1.7.0/go.mod h1:MW1dC6SOtI/tPNCciTsXtsGNEM0i0OccykPvv3hiYeM=
 cloud.google.com/go/cloudtasks v1.11.1/go.mod h1:a9udmnou9KO2iulGscKR0qBYjreuX8oHwpmFsKspEvM=
+cloud.google.com/go/cloudtasks v1.12.1/go.mod h1:a9udmnou9KO2iulGscKR0qBYjreuX8oHwpmFsKspEvM=
 cloud.google.com/go/compute v1.19.3/go.mod h1:qxvISKp/gYnXkSAD1ppcSOveRAmzxicEv/JlizULFrI=
 cloud.google.com/go/compute v1.20.1/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
 cloud.google.com/go/compute v1.21.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
+cloud.google.com/go/compute v1.23.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
 cloud.google.com/go/compute/metadata v0.2.3/go.mod h1:VAV5nSsACxMJvgaAuX6Pk2AawlZn8kiOGuCv6gTkwuA=
 cloud.google.com/go/contactcenterinsights v1.9.1/go.mod h1:bsg/R7zGLYMVxFFzfh9ooLTruLRCG9fnzhH9KznHhbM=
+cloud.google.com/go/contactcenterinsights v1.10.0/go.mod h1:bsg/R7zGLYMVxFFzfh9ooLTruLRCG9fnzhH9KznHhbM=
 cloud.google.com/go/container v1.22.1/go.mod h1:lTNExE2R7f+DLbAN+rJiKTisauFCaoDq6NURZ83eVH4=
+cloud.google.com/go/container v1.26.0/go.mod h1:YJCmRet6+6jnYYRS000T6k0D0xUXQgBSaJ7VwI8FBj4=
 cloud.google.com/go/containeranalysis v0.10.1/go.mod h1:Ya2jiILITMY68ZLPaogjmOMNkwsDrWBSTyBubGXO7j0=
+cloud.google.com/go/containeranalysis v0.11.0/go.mod h1:4n2e99ZwpGxpNcz+YsFT1dfOHPQFGcAC8FN2M2/ne/U=
 cloud.google.com/go/datacatalog v1.14.1/go.mod h1:d2CevwTG4yedZilwe+v3E3ZBDRMobQfSG/a6cCCN5R4=
+cloud.google.com/go/datacatalog v1.17.1/go.mod h1:nCSYFHgtxh2MiEktWIz71s/X+7ds/UT9kp0PC7waCzE=
 cloud.google.com/go/dataflow v0.9.1/go.mod h1:Wp7s32QjYuQDWqJPFFlnBKhkAtiFpMTdg00qGbnIHVw=
 cloud.google.com/go/dataform v0.8.1/go.mod h1:3BhPSiw8xmppbgzeBbmDvmSWlwouuJkXsXsb8UBih9M=
 cloud.google.com/go/datafusion v1.7.1/go.mod h1:KpoTBbFmoToDExJUso/fcCiguGDk7MEzOWXUsJo0wsI=
 cloud.google.com/go/datalabeling v0.8.1/go.mod h1:XS62LBSVPbYR54GfYQsPXZjTW8UxCK2fkDciSrpRFdY=
 cloud.google.com/go/dataplex v1.8.1/go.mod h1:7TyrDT6BCdI8/38Uvp0/ZxBslOslP2X2MPDucliyvSE=
+cloud.google.com/go/dataplex v1.9.1/go.mod h1:7TyrDT6BCdI8/38Uvp0/ZxBslOslP2X2MPDucliyvSE=
 cloud.google.com/go/dataproc v1.12.0/go.mod h1:zrF3aX0uV3ikkMz6z4uBbIKyhRITnxvr4i3IjKsKrw4=
+cloud.google.com/go/dataproc/v2 v2.2.0/go.mod h1:lZR7AQtwZPvmINx5J87DSOOpTfof9LVZju6/Qo4lmcY=
 cloud.google.com/go/dataqna v0.8.1/go.mod h1:zxZM0Bl6liMePWsHA8RMGAfmTG34vJMapbHAxQ5+WA8=
 cloud.google.com/go/datastore v1.12.1/go.mod h1:KjdB88W897MRITkvWWJrg2OUtrR5XVj1EoLgSp6/N70=
+cloud.google.com/go/datastore v1.14.0/go.mod h1:GAeStMBIt9bPS7jMJA85kgkpsMkvseWWXiaHya9Jes8=
 cloud.google.com/go/datastream v1.9.1/go.mod h1:hqnmr8kdUBmrnk65k5wNRoHSCYksvpdZIcZIEl8h43Q=
+cloud.google.com/go/datastream v1.10.0/go.mod h1:hqnmr8kdUBmrnk65k5wNRoHSCYksvpdZIcZIEl8h43Q=
 cloud.google.com/go/deploy v1.11.0/go.mod h1:tKuSUV5pXbn67KiubiUNUejqLs4f5cxxiCNCeyl0F2g=
+cloud.google.com/go/deploy v1.13.0/go.mod h1:tKuSUV5pXbn67KiubiUNUejqLs4f5cxxiCNCeyl0F2g=
 cloud.google.com/go/dialogflow v1.38.0/go.mod h1:L7jnH+JL2mtmdChzAIcXQHXMvQkE3U4hTaNltEuxXn4=
+cloud.google.com/go/dialogflow v1.43.0/go.mod h1:pDUJdi4elL0MFmt1REMvFkdsUTYSHq+rTCS8wg0S3+M=
 cloud.google.com/go/dlp v1.10.1/go.mod h1:IM8BWz1iJd8njcNcG0+Kyd9OPnqnRNkDV8j42VT5KOI=
 cloud.google.com/go/documentai v1.20.0/go.mod h1:yJkInoMcK0qNAEdRnqY/D5asy73tnPe88I1YTZT+a8E=
+cloud.google.com/go/documentai v1.22.1/go.mod h1:LKs22aDHbJv7ufXuPypzRO7rG3ALLJxzdCXDPutw4Qc=
 cloud.google.com/go/domains v0.9.1/go.mod h1:aOp1c0MbejQQ2Pjf1iJvnVyT+z6R6s8pX66KaCSDYfE=
 cloud.google.com/go/edgecontainer v1.1.1/go.mod h1:O5bYcS//7MELQZs3+7mabRqoWQhXCzenBu0R8bz2rwk=
 cloud.google.com/go/errorreporting v0.3.0/go.mod h1:xsP2yaAp+OAW4OIm60An2bbLpqIhKXdWR/tawvl7QzU=
 cloud.google.com/go/essentialcontacts v1.6.2/go.mod h1:T2tB6tX+TRak7i88Fb2N9Ok3PvY3UNbUsMag9/BARh4=
 cloud.google.com/go/eventarc v1.12.1/go.mod h1:mAFCW6lukH5+IZjkvrEss+jmt2kOdYlN8aMx3sRJiAI=
+cloud.google.com/go/eventarc v1.13.0/go.mod h1:mAFCW6lukH5+IZjkvrEss+jmt2kOdYlN8aMx3sRJiAI=
 cloud.google.com/go/filestore v1.7.1/go.mod h1:y10jsorq40JJnjR/lQ8AfFbbcGlw3g+Dp8oN7i7FjV4=
 cloud.google.com/go/firestore v1.11.0/go.mod h1:b38dKhgzlmNNGTNZZwe7ZRFEuRab1Hay3/DBsIGKKy4=
+cloud.google.com/go/firestore v1.13.0/go.mod h1:QojqqOh8IntInDUSTAh0c8ZsPYAr68Ma8c5DWOy8xb8=
 cloud.google.com/go/functions v1.15.1/go.mod h1:P5yNWUTkyU+LvW/S9O6V+V423VZooALQlqoXdoPz5AE=
 cloud.google.com/go/gkebackup v0.4.0/go.mod h1:byAyBGUwYGEEww7xsbnUTBHIYcOPy/PgUWUtOeRm9Vg=
+cloud.google.com/go/gkebackup v1.3.1/go.mod h1:vUDOu++N0U5qs4IhG1pcOnD1Mac79xWy6GoBFlWCWBU=
 cloud.google.com/go/gkeconnect v0.8.1/go.mod h1:KWiK1g9sDLZqhxB2xEuPV8V9NYzrqTUmQR9shJHpOZw=
 cloud.google.com/go/gkehub v0.14.1/go.mod h1:VEXKIJZ2avzrbd7u+zeMtW00Y8ddk/4V9511C9CQGTY=
 cloud.google.com/go/gkemulticloud v0.6.1/go.mod h1:kbZ3HKyTsiwqKX7Yw56+wUGwwNZViRnxWK2DVknXWfw=
+cloud.google.com/go/gkemulticloud v1.0.0/go.mod h1:kbZ3HKyTsiwqKX7Yw56+wUGwwNZViRnxWK2DVknXWfw=
 cloud.google.com/go/gsuiteaddons v1.6.1/go.mod h1:CodrdOqRZcLp5WOwejHWYBjZvfY0kOphkAKpF/3qdZY=
 cloud.google.com/go/iam v0.13.0/go.mod h1:ljOg+rcNfzZ5d6f1nAUJ8ZIxOaZUVoS14bKCtaLZ/D0=
 cloud.google.com/go/iam v1.1.1/go.mod h1:A5avdyVL2tCppe4unb0951eI9jreack+RJ0/d+KUZOU=
+cloud.google.com/go/iam v1.1.2/go.mod h1:A5avdyVL2tCppe4unb0951eI9jreack+RJ0/d+KUZOU=
 cloud.google.com/go/iap v1.8.1/go.mod h1:sJCbeqg3mvWLqjZNsI6dfAtbbV1DL2Rl7e1mTyXYREQ=
+cloud.google.com/go/iap v1.9.0/go.mod h1:01OFxd1R+NFrg78S+hoPV5PxEzv22HXaNqUUlmNHFuY=
 cloud.google.com/go/ids v1.4.1/go.mod h1:np41ed8YMU8zOgv53MMMoCntLTn2lF+SUzlM+O3u/jw=
 cloud.google.com/go/iot v1.7.1/go.mod h1:46Mgw7ev1k9KqK1ao0ayW9h0lI+3hxeanz+L1zmbbbk=
 cloud.google.com/go/kms v1.12.1/go.mod h1:c9J991h5DTl+kg7gi3MYomh12YEENGrf48ee/N/2CDM=
+cloud.google.com/go/kms v1.15.2/go.mod h1:3hopT4+7ooWRCjc2DxgnpESFxhIraaI2IpAVUEhbT/w=
 cloud.google.com/go/language v1.10.1/go.mod h1:CPp94nsdVNiQEt1CNjF5WkTcisLiHPyIbMhvR8H2AW0=
+cloud.google.com/go/language v1.11.0/go.mod h1:uDx+pFDdAKTY8ehpWbiXyQdz8tDSYLJbQcXsCkjYyvQ=
 cloud.google.com/go/lifesciences v0.9.1/go.mod h1:hACAOd1fFbCGLr/+weUKRAJas82Y4vrL3O5326N//Wc=
 cloud.google.com/go/logging v1.7.0/go.mod h1:3xjP2CjkM3ZkO73aj4ASA5wRPGGCRrPIAeNqVNkzY8M=
+cloud.google.com/go/logging v1.8.1/go.mod h1:TJjR+SimHwuC8MZ9cjByQulAMgni+RkXeI3wwctHJEI=
 cloud.google.com/go/longrunning v0.5.0/go.mod h1:0JNuqRShmscVAhIACGtskSAWtqtOoPkwP0YF1oVEchc=
 cloud.google.com/go/longrunning v0.5.1/go.mod h1:spvimkwdz6SPWKEt/XBij79E9fiTkHSQl/fRUUQJYJc=
 cloud.google.com/go/managedidentities v1.6.1/go.mod h1:h/irGhTN2SkZ64F43tfGPMbHnypMbu4RB3yl8YcuEak=
 cloud.google.com/go/maps v0.7.0/go.mod h1:3GnvVl3cqeSvgMcpRlQidXsPYuDGQ8naBis7MVzpXsY=
+cloud.google.com/go/maps v1.4.0/go.mod h1:6mWTUv+WhnOwAgjVsSW2QPPECmW+s3PcRyOa9vgG/5s=
 cloud.google.com/go/mediatranslation v0.8.1/go.mod h1:L/7hBdEYbYHQJhX2sldtTO5SZZ1C1vkapubj0T2aGig=
 cloud.google.com/go/memcache v1.10.1/go.mod h1:47YRQIarv4I3QS5+hoETgKO40InqzLP6kpNLvyXuyaA=
 cloud.google.com/go/metastore v1.11.1/go.mod h1:uZuSo80U3Wd4zi6C22ZZliOUJ3XeM/MlYi/z5OAOWRA=
+cloud.google.com/go/metastore v1.12.0/go.mod h1:uZuSo80U3Wd4zi6C22ZZliOUJ3XeM/MlYi/z5OAOWRA=
 cloud.google.com/go/monitoring v1.15.1/go.mod h1:lADlSAlFdbqQuwwpaImhsJXu1QSdd3ojypXrFSMr2rM=
+cloud.google.com/go/monitoring v1.16.0/go.mod h1:Ptp15HgAyM1fNICAojDMoNc/wUmn67mLHQfyqbw+poY=
 cloud.google.com/go/networkconnectivity v1.12.1/go.mod h1:PelxSWYM7Sh9/guf8CFhi6vIqf19Ir/sbfZRUwXh92E=
+cloud.google.com/go/networkconnectivity v1.13.0/go.mod h1:SAnGPes88pl7QRLUen2HmcBSE9AowVAcdug8c0RSBFk=
 cloud.google.com/go/networkmanagement v1.8.0/go.mod h1:Ho/BUGmtyEqrttTgWEe7m+8vDdK74ibQc+Be0q7Fof0=
+cloud.google.com/go/networkmanagement v1.9.0/go.mod h1:UTUaEU9YwbCAhhz3jEOHr+2/K/MrBk2XxOLS89LQzFw=
 cloud.google.com/go/networksecurity v0.9.1/go.mod h1:MCMdxOKQ30wsBI1eI659f9kEp4wuuAueoC9AJKSPWZQ=
 cloud.google.com/go/notebooks v1.9.1/go.mod h1:zqG9/gk05JrzgBt4ghLzEepPHNwE5jgPcHZRKhlC1A8=
+cloud.google.com/go/notebooks v1.10.0/go.mod h1:SOPYMZnttHxqot0SGSFSkRrwE29eqnKPBJFqgWmiK2k=
 cloud.google.com/go/optimization v1.4.1/go.mod h1:j64vZQP7h9bO49m2rVaTVoNM0vEBEN5eKPUPbZyXOrk=
+cloud.google.com/go/optimization v1.5.0/go.mod h1:evo1OvTxeBRBu6ydPlrIRizKY/LJKo/drDMMRKqGEUU=
 cloud.google.com/go/orchestration v1.8.1/go.mod h1:4sluRF3wgbYVRqz7zJ1/EUNc90TTprliq9477fGobD8=
 cloud.google.com/go/orgpolicy v1.11.1/go.mod h1:8+E3jQcpZJQliP+zaFfayC2Pg5bmhuLK755wKhIIUCE=
 cloud.google.com/go/osconfig v1.12.1/go.mod h1:4CjBxND0gswz2gfYRCUoUzCm9zCABp91EeTtWXyz0tE=
 cloud.google.com/go/oslogin v1.10.1/go.mod h1:x692z7yAue5nE7CsSnoG0aaMbNoRJRXO4sn73R+ZqAs=
 cloud.google.com/go/phishingprotection v0.8.1/go.mod h1:AxonW7GovcA8qdEk13NfHq9hNx5KPtfxXNeUxTDxB6I=
 cloud.google.com/go/policytroubleshooter v1.7.1/go.mod h1:0NaT5v3Ag1M7U5r0GfDCpUFkWd9YqpubBWsQlhanRv0=
+cloud.google.com/go/policytroubleshooter v1.9.0/go.mod h1:+E2Lga7TycpeSTj2FsH4oXxTnrbHJGRlKhVZBLGgU64=
 cloud.google.com/go/privatecatalog v0.9.1/go.mod h1:0XlDXW2unJXdf9zFz968Hp35gl/bhF4twwpXZAW50JA=
 cloud.google.com/go/pubsub v1.32.0/go.mod h1:f+w71I33OMyxf9VpMVcZbnG5KSUkCOUHYpFd5U1GdRc=
+cloud.google.com/go/pubsub v1.33.0/go.mod h1:f+w71I33OMyxf9VpMVcZbnG5KSUkCOUHYpFd5U1GdRc=
 cloud.google.com/go/pubsublite v1.8.1/go.mod h1:fOLdU4f5xldK4RGJrBMm+J7zMWNj/k4PxwEZXy39QS0=
 cloud.google.com/go/recaptchaenterprise/v2 v2.7.2/go.mod h1:kR0KjsJS7Jt1YSyWFkseQ756D45kaYNTlDPPaRAvDBU=
 cloud.google.com/go/recommendationengine v0.8.1/go.mod h1:MrZihWwtFYWDzE6Hz5nKcNz3gLizXVIDI/o3G1DLcrE=
 cloud.google.com/go/recommender v1.10.1/go.mod h1:XFvrE4Suqn5Cq0Lf+mCP6oBHD/yRMA8XxP5sb7Q7gpA=
+cloud.google.com/go/recommender v1.11.0/go.mod h1:kPiRQhPyTJ9kyXPCG6u/dlPLbYfFlkwHNRwdzPVAoII=
 cloud.google.com/go/redis v1.13.1/go.mod h1:VP7DGLpE91M6bcsDdMuyCm2hIpB6Vp2hI090Mfd1tcg=
 cloud.google.com/go/resourcemanager v1.9.1/go.mod h1:dVCuosgrh1tINZ/RwBufr8lULmWGOkPS8gL5gqyjdT8=
 cloud.google.com/go/resourcesettings v1.6.1/go.mod h1:M7mk9PIZrC5Fgsu1kZJci6mpgN8o0IUzVx3eJU3y4Jw=
 cloud.google.com/go/retail v1.14.1/go.mod h1:y3Wv3Vr2k54dLNIrCzenyKG8g8dhvhncT2NcNjb/6gE=
 cloud.google.com/go/run v0.9.0/go.mod h1:Wwu+/vvg8Y+JUApMwEDfVfhetv30hCG4ZwDR/IXl2Qg=
+cloud.google.com/go/run v1.2.0/go.mod h1:36V1IlDzQ0XxbQjUx6IYbw8H3TJnWvhii963WW3B/bo=
 cloud.google.com/go/scheduler v1.10.1/go.mod h1:R63Ldltd47Bs4gnhQkmNDse5w8gBRrhObZ54PxgR2Oo=
 cloud.google.com/go/secretmanager v1.11.1/go.mod h1:znq9JlXgTNdBeQk9TBW/FnR/W4uChEKGeqQWAJ8SXFw=
 cloud.google.com/go/security v1.15.1/go.mod h1:MvTnnbsWnehoizHi09zoiZob0iCHVcL4AUBj76h9fXA=
 cloud.google.com/go/securitycenter v1.23.0/go.mod h1:8pwQ4n+Y9WCWM278R8W3nF65QtY172h4S8aXyI9/hsQ=
 cloud.google.com/go/servicedirectory v1.10.1/go.mod h1:Xv0YVH8s4pVOwfM/1eMTl0XJ6bzIOSLDt8f8eLaGOxQ=
+cloud.google.com/go/servicedirectory v1.11.0/go.mod h1:Xv0YVH8s4pVOwfM/1eMTl0XJ6bzIOSLDt8f8eLaGOxQ=
 cloud.google.com/go/shell v1.7.1/go.mod h1:u1RaM+huXFaTojTbW4g9P5emOrrmLE69KrxqQahKn4g=
 cloud.google.com/go/spanner v1.47.0/go.mod h1:IXsJwVW2j4UKs0eYDqodab6HgGuA1bViSqW4uH9lfUI=
+cloud.google.com/go/spanner v1.49.0/go.mod h1:eGj9mQGK8+hkgSVbHNQ06pQ4oS+cyc4tXXd6Dif1KoM=
 cloud.google.com/go/speech v1.17.1/go.mod h1:8rVNzU43tQvxDaGvqOhpDqgkJTFowBpDvCJ14kGlJYo=
+cloud.google.com/go/speech v1.19.0/go.mod h1:8rVNzU43tQvxDaGvqOhpDqgkJTFowBpDvCJ14kGlJYo=
 cloud.google.com/go/storage v1.30.1/go.mod h1:NfxhC0UJE1aXSx7CIIbCf7y9HKT7BiccwkR7+P7gN8E=
 cloud.google.com/go/storagetransfer v1.10.0/go.mod h1:DM4sTlSmGiNczmV6iZyceIh2dbs+7z2Ayg6YAiQlYfA=
 cloud.google.com/go/talent v1.6.2/go.mod h1:CbGvmKCG61mkdjcqTcLOkb2ZN1SrQI8MDyma2l7VD24=
@@ -113,15 +161,19 @@ cloud.google.com/go/texttospeech v1.7.1/go.mod h1:m7QfG5IXxeneGqTapXNxv2ItxP/FS0
 cloud.google.com/go/tpu v1.6.1/go.mod h1:sOdcHVIgDEEOKuqUoi6Fq53MKHJAtOwtz0GuKsWSH3E=
 cloud.google.com/go/trace v1.10.1/go.mod h1:gbtL94KE5AJLH3y+WVpfWILmqgc6dXcqgNXdOPAQTYk=
 cloud.google.com/go/translate v1.8.1/go.mod h1:d1ZH5aaOA0CNhWeXeC8ujd4tdCFw8XoNWRljklu5RHs=
+cloud.google.com/go/translate v1.9.0/go.mod h1:d1ZH5aaOA0CNhWeXeC8ujd4tdCFw8XoNWRljklu5RHs=
 cloud.google.com/go/video v1.17.1/go.mod h1:9qmqPqw/Ib2tLqaeHgtakU+l5TcJxCJbhFXM7UJjVzU=
+cloud.google.com/go/video v1.20.0/go.mod h1:U3G3FTnsvAGqglq9LxgqzOiBc/Nt8zis8S+850N2DUM=
 cloud.google.com/go/videointelligence v1.11.1/go.mod h1:76xn/8InyQHarjTWsBR058SmlPCwQjgcvoW0aZykOvo=
 cloud.google.com/go/vision/v2 v2.7.2/go.mod h1:jKa8oSYBWhYiXarHPvP4USxYANYUEdEsQrloLjrSwJU=
 cloud.google.com/go/vmmigration v1.7.1/go.mod h1:WD+5z7a/IpZ5bKK//YmT9E047AD+rjycCAvyMxGJbro=
 cloud.google.com/go/vmwareengine v0.4.1/go.mod h1:Px64x+BvjPZwWuc4HdmVhoygcXqEkGHXoa7uyfTgSI0=
+cloud.google.com/go/vmwareengine v1.0.0/go.mod h1:Px64x+BvjPZwWuc4HdmVhoygcXqEkGHXoa7uyfTgSI0=
 cloud.google.com/go/vpcaccess v1.7.1/go.mod h1:FogoD46/ZU+JUBX9D606X21EnxiszYi2tArQwLY4SXs=
 cloud.google.com/go/webrisk v1.9.1/go.mod h1:4GCmXKcOa2BZcZPn6DCEvE7HypmEJcJkr4mtM+sqYPc=
 cloud.google.com/go/websecurityscanner v1.6.1/go.mod h1:Njgaw3rttgRHXzwCB8kgCYqv5/rGpFCsBOvPbYgszpg=
 cloud.google.com/go/workflows v1.11.1/go.mod h1:Z+t10G1wF7h8LgdY/EmRcQY8ptBD/nvofaL6FqlET6g=
+cloud.google.com/go/workflows v1.12.0/go.mod h1:PYhSk2b6DhZ508tj8HXKaBh+OFe+xdl0dHF/tJdzPQM=
 github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5/go.mod h1:wHh0iHkYZB8zMSxRWpUBQtwG5a7fFgvEO+odwuTv2gs=
 github.com/blang/semver v3.5.1+incompatible h1:cQNTCjp13qL8KC3Nbxr/y2Bqb63oX6wdnnjpJbkM4JQ=
 github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
@@ -141,6 +193,7 @@ github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWH
 github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20230607035331-e9ce68804cb4/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
+github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e h1:Wf6HqHfScWJN9/ZjdUKyjop4mf3Qdd+1TvvltAvM3m8=
 github.com/docker/go-units v0.4.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
 github.com/emicklei/go-restful v2.9.5+incompatible h1:spTtZBk5DYEvbxMVutUuTyh1Ao2r4iyvLdACqsl/Ljk=
 github.com/emicklei/go-restful/v3 v3.8.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
@@ -156,28 +209,64 @@ github.com/gobwas/httphead v0.1.0/go.mod h1:O/RXo79gxV8G+RqlR/otEwx4Q36zl9rqC5u1
 github.com/gobwas/pool v0.2.1/go.mod h1:q8bcK0KcYlCgd9e7WYLm9LpyS+YeLd8JVDW6WezmKEw=
 github.com/gobwas/ws v1.2.1/go.mod h1:hRKAFb8wOxFROYNsT1bqfWnhX+b5MFeJM9r2ZSwg/KY=
 github.com/golang/glog v1.1.0/go.mod h1:pfYeQZ3JWZoXTV5sFc986z3HTpwQs9At6P4ImfuP3NQ=
+github.com/golang/glog v1.1.2/go.mod h1:zR+okUeTbrL6EL3xHUDxZuEtGv04p5shwip1+mL/rLQ=
 github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/martian/v3 v3.3.2/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
 github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/s2a-go v0.1.4/go.mod h1:Ej+mSEMGRnqRzjc7VtF+jdBwYG5fuJfiZ8ELkjEwM0A=
+github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/enterprise-certificate-proxy v0.2.3/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
+github.com/googleapis/enterprise-certificate-proxy v0.2.4/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
+github.com/googleapis/gax-go/v2 v2.10.0/go.mod h1:4UOEnMCrxsSqQ940WnTiD6qJ63le2ev3xfyagutxiPw=
 github.com/googleapis/gax-go/v2 v2.11.0/go.mod h1:DxmR61SGKkGLa2xigwuZIQpkCI2S5iydzRfb3peWZJI=
+github.com/googleapis/gax-go/v2 v2.12.0/go.mod h1:y+aIqrI5eb1YGMVJfuV3185Ts/D7qKpsEkdD5+I6QGU=
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/ianlancetaylor/demangle v0.0.0-20230524184225-eabc099b10ab/go.mod h1:gx7rwoVhcfuVKG5uya9Hs3Sxj7EIvldVofAWIUtGouw=
 github.com/ledongthuc/pdf v0.0.0-20220302134840-0c2507a12d80/go.mod h1:imJHygn/1yfhB7XSJJKlFZKl/J+dCPAknuiaGOshXAs=
 github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde/go.mod h1:nZgzbfBr3hhjoZnS66nKrHmduYNpc34ny7RK4z5/HM0=
-github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
+go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo=
+golang.org/x/crypto v0.0.0-20220314234659-1baeb1ce4c0b/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
+golang.org/x/crypto v0.9.0/go.mod h1:yrmDGqONDYtNj3tH8X9dzUun2m2lzPa9ngI6/RUPGR0=
 golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg=
 golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
+golang.org/x/net v0.19.0/go.mod h1:CfAk/cbD4CthTvqiEl8NpboMuiuOYsAr/7NOjZJtv1U=
+golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE=
+golang.org/x/oauth2 v0.13.0/go.mod h1:/JMhi4ZRXAf4HG9LiNmxvk+45+96RUlVThiH8FzNBn0=
+golang.org/x/sync v0.2.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.4.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
+golang.org/x/sync v0.5.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
 golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
 golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM=
 golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
-google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
\ No newline at end of file
+golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
+google.golang.org/api v0.126.0/go.mod h1:mBwVAtz+87bEN6CbA1GtZPDOqY2R5ONPqJeIlvyo4Aw=
+google.golang.org/api v0.128.0/go.mod h1:Y611qgqaE92On/7g65MQgxYul3c0rEB894kniWLY750=
+google.golang.org/genproto v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:xZnkP7mREFX5MORlOPEzLMr+90PPZQ2QWzrVTWfAq64=
+google.golang.org/genproto v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:CCviP9RmpZ1mxVr8MUjCnSiY09IbAXZxhLE6EhHIdPU=
+google.golang.org/genproto v0.0.0-20231002182017-d307bd883b97 h1:SeZZZx0cP0fqUyA+oRzP9k7cSwJlvDFiROO72uwD6i0=
+google.golang.org/genproto v0.0.0-20231002182017-d307bd883b97/go.mod h1:t1VqOqqvce95G3hIDCT5FeO3YUc6Q4Oe24L/+rNMxRk=
+google.golang.org/genproto/googleapis/api v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
+google.golang.org/genproto/googleapis/api v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:RdyHbowztCGQySiCvQPgWQWgWhGnouTdCflKoDBt32U=
+google.golang.org/genproto/googleapis/api v0.0.0-20231002182017-d307bd883b97/go.mod h1:iargEX0SFPm3xcfMI0d1domjg0ZF4Aa0p2awqyxhvF0=
+google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:ylj+BE99M198VPbBh6A8d9n3w8fChvyLK3wwBOjXBFA=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:KSqppvjFjtoCI+KGd4PELB0qLNxdJHRGqRI09mB6pQA=
+google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
+google.golang.org/grpc v1.45.0/go.mod h1:lN7owxKUQEqMfSyQikvvk5tf/6zMPsrK+ONuO11+0rQ=
+google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8=
+google.golang.org/grpc v1.56.1/go.mod h1:I9bI3vqKfayGqPUAwGdOSu7kt6oIJLixfffKrpXqQ9s=
+google.golang.org/grpc v1.57.0/go.mod h1:Sd+9RMTACXwmub0zcNY2c4arhtrbBYD1AUHI/dt16Mo=
+google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
+google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
diff --git a/images/Makefile b/images/Makefile
index 069ca72b9..89c6518f8 100644
--- a/images/Makefile
+++ b/images/Makefile
@@ -23,6 +23,8 @@ INIT_BUILDX=$(DIR)/../hack/init-buildx.sh
 
 BASE_IMAGE = $(shell cat $(DIR)/../NGINX_BASE)
 
+GOLANG_VERSION = $(shell cat $(DIR)/../GOLANG_VERSION)
+
 REGISTRY ?= local
 NAME ?=
 
@@ -52,6 +54,7 @@ build: precheck ensure-buildx
 		--label=org.opencontainers.image.licenses=Apache-2.0 \
 		--label=org.opencontainers.image.description="Ingress NGINX $(NAME) image" \
 		--build-arg BASE_IMAGE=$(BASE_IMAGE) \
+		--build-arg GOLANG_VERSION=$(GOLANG_VERSION) \
 		--platform=${PLATFORMS} $(OUTPUT) \
 		--progress=$(PROGRESS) \
 		--pull $(EXTRAARGS) \
diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index 5cf446962..1529e63f7 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -12,7 +12,9 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.21.5-alpine3.18 as builder
+ARG GOLANG_VERSION
+
+FROM golang:${GOLANG_VERSION}-alpine3.18 as builder
 
 RUN apk update \
     && apk upgrade && apk add git
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index ce0fffd4a..37cd1fcbd 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.21.5
+go 1.21
 
 require github.com/prometheus/client_golang v1.11.1
 
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index 5ae719675..ec611fa54 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,4 +1,6 @@
-FROM golang:1.21.5-alpine3.18 as builder
+ARG GOLANG_VERSION
+
+FROM golang:${GOLANG_VERSION}-alpine3.18 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index 3608868b3..8c3abdcf2 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,6 +1,6 @@
 module example.com/authsvc
 
-go 1.21.5
+go 1.21
 
 require k8s.io/apimachinery v0.23.1
 
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
index b7d24522d..eec93c844 100755
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -11,8 +11,9 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
+ARG GOLANG_VERSION
 
-FROM golang:1.21.5-alpine3.18 as builder
+FROM golang:${GOLANG_VERSION}-alpine3.18 as builder
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
 
diff --git a/images/go-grpc-greeter-server/rootfs/Dockerfile b/images/go-grpc-greeter-server/rootfs/Dockerfile
index 38fe73eb3..79693eaeb 100644
--- a/images/go-grpc-greeter-server/rootfs/Dockerfile
+++ b/images/go-grpc-greeter-server/rootfs/Dockerfile
@@ -1,4 +1,6 @@
-FROM golang:1.21.5-alpine3.18 as build
+ARG GOLANG_VERSION
+
+FROM golang:${GOLANG_VERSION}-alpine3.18 as build
 
 WORKDIR /go/src/greeter-server
 
diff --git a/images/httpbun/rootfs/Dockerfile b/images/httpbun/rootfs/Dockerfile
index 7effc6ef5..ada137ee9 100644
--- a/images/httpbun/rootfs/Dockerfile
+++ b/images/httpbun/rootfs/Dockerfile
@@ -12,7 +12,9 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM golang:1.21.5 AS builder
+ARG GOLANG_VERSION
+
+FROM golang:${GOLANG_VERSION} AS builder
 
 ENV LC_ALL=C.UTF-8
 ENV LANG=C.UTF-8
diff --git a/images/kube-webhook-certgen/rootfs/Dockerfile b/images/kube-webhook-certgen/rootfs/Dockerfile
index c98585e2a..7ec098a99 100644
--- a/images/kube-webhook-certgen/rootfs/Dockerfile
+++ b/images/kube-webhook-certgen/rootfs/Dockerfile
@@ -12,10 +12,14 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM --platform=$BUILDPLATFORM golang:1.21.5 as builder
+ARG GOLANG_VERSION
+
+FROM --platform=$BUILDPLATFORM golang:${GOLANG_VERSION} as builder
+
 ARG BUILDPLATFORM
 ARG TARGETARCH
 
+
 WORKDIR /workspace
 COPY . .
 RUN CGO_ENABLED=0 GOOS=linux GOARCH=${TARGETARCH} go build -a -o kube-webhook-certgen main.go
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 893669c7b..7e321dc49 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,6 +1,6 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.21.5
+go 1.21
 
 require (
 	github.com/onrik/logrus v0.9.0
diff --git a/images/opentelemetry/rootfs/go.mod b/images/opentelemetry/rootfs/go.mod
index f34dd98ff..9c183ef06 100644
--- a/images/opentelemetry/rootfs/go.mod
+++ b/images/opentelemetry/rootfs/go.mod
@@ -1,3 +1,3 @@
 module init-otel
 
-go 1.21.5
+go 1.21
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 5b1a87652..149a11fbd 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -27,6 +27,8 @@ IMAGE = $(REGISTRY)/e2e-test-runner
 
 NGINX_BASE_IMAGE ?= $(shell cat $(DIR)/../../NGINX_BASE)
 
+GOLANG_VERSION ?= $(shell cat $(DIR)/../../GOLANG_VERSION)
+
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled
 
@@ -43,7 +45,7 @@ image:
 		--pull \
 		--push \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=1.21.5 \
+		--build-arg GOLANG_VERSION=${GOLANG_VERSION} \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
@@ -64,7 +66,7 @@ build: ensure-buildx
 		--progress=${PROGRESS} \
 		--pull \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=1.21.5 \
+		--build-arg GOLANG_VERSION=${GOLANG_VERSION} \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
diff --git a/magefiles/go.mod b/magefiles/go.mod
index 9409fed0d..25610b647 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/magefiles
 
-go 1.21.5
+go 1.21
 
 require (
 	github.com/blang/semver/v4 v4.0.0

From 7d75abb0ffab8f8d10445ef38ecd202477ed6267 Mon Sep 17 00:00:00 2001
From: Adam Jones <domdomegg+git@gmail.com>
Date: Sun, 28 Jan 2024 16:32:47 +0000
Subject: [PATCH 1135/1641] docs: Add vouch-proxy OAuth example (#10929)

---
 .../auth/oauth-external-auth/README.md        |  65 +++++++++--
 .../dashboard-ingress.yaml                    |  45 -------
 .../oauth-external-auth/oauth2-proxy.yaml     |  52 +++++++++
 .../auth/oauth-external-auth/vouch-proxy.yaml | 110 ++++++++++++++++++
 4 files changed, 218 insertions(+), 54 deletions(-)
 delete mode 100644 docs/examples/auth/oauth-external-auth/dashboard-ingress.yaml
 create mode 100644 docs/examples/auth/oauth-external-auth/vouch-proxy.yaml

diff --git a/docs/examples/auth/oauth-external-auth/README.md b/docs/examples/auth/oauth-external-auth/README.md
index a08928720..b64b0e70a 100644
--- a/docs/examples/auth/oauth-external-auth/README.md
+++ b/docs/examples/auth/oauth-external-auth/README.md
@@ -51,25 +51,72 @@ into a Kubernetes cluster and use it to protect the Kubernetes Dashboard using G
 
     ![Register OAuth2 Application](images/register-oauth-app-2.png)
 
-3. Configure oauth2_proxy values in the file [`oauth2-proxy.yaml`](https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/docs/examples/auth/oauth-external-auth/oauth2-proxy.yaml) with the values:
+3. Configure values in the file [`oauth2-proxy.yaml`](https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/docs/examples/auth/oauth-external-auth/oauth2-proxy.yaml) with the values:
 
     - OAUTH2_PROXY_CLIENT_ID with the github `<Client ID>`
     - OAUTH2_PROXY_CLIENT_SECRET with the github `<Client Secret>`
     - OAUTH2_PROXY_COOKIE_SECRET with value of `python -c 'import os,base64; print(base64.b64encode(os.urandom(16)).decode("ascii"))'`
+    - (optional, but recommended) OAUTH2_PROXY_GITHUB_USERS with GitHub usernames to allow to login
+    - `__INGRESS_HOST__` with a valid FQDN (e.g. `foo.bar.com`)
+    - `__INGRESS_SECRET__` with a Secret with a valid SSL certificate
 
-4. Customize the contents of the file [`dashboard-ingress.yaml`](https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/docs/examples/auth/oauth-external-auth/dashboard-ingress.yaml):
-
-    Replace `__INGRESS_HOST__` with a valid FQDN and `__INGRESS_SECRET__` with a Secret with a valid SSL certificate.
-
-5. Deploy the oauth2 proxy and the ingress rules running:
+4. Deploy the oauth2 proxy and the ingress rules by running:
 
     ```console
-    $ kubectl create -f oauth2-proxy.yaml,dashboard-ingress.yaml
+    $ kubectl create -f oauth2-proxy.yaml
     ```
 
-### Test
+#### Test
 
-Test the oauth integration accessing the configured URL, e.g. `https://foo.bar.com`
+Test the integration by accessing the configured URL, e.g. `https://foo.bar.com`
+
+![Register OAuth2 Application](images/github-auth.png)
+
+![GitHub authentication](images/oauth-login.png)
+
+![Kubernetes dashboard](images/dashboard.png)
+
+
+### Example: Vouch Proxy + Kubernetes-Dashboard
+
+This example will show you how to deploy [`Vouch Proxy`](https://github.com/vouch/vouch-proxy)
+into a Kubernetes cluster and use it to protect the Kubernetes Dashboard using GitHub as the OAuth2 provider.
+
+#### Prepare
+
+1. Install the kubernetes dashboard
+
+    ```console
+    kubectl create -f https://raw.githubusercontent.com/kubernetes/kops/master/addons/kubernetes-dashboard/v1.10.1.yaml
+    ```
+
+2. Create a [custom GitHub OAuth application](https://github.com/settings/applications/new)
+
+    ![Register OAuth2 Application](images/register-oauth-app.png)
+
+    - Homepage URL is the FQDN in the Ingress rule, like `https://foo.bar.com`
+    - Authorization callback URL is the same as the base FQDN plus `/oauth2/auth`, like `https://foo.bar.com/oauth2/auth`
+
+    ![Register OAuth2 Application](images/register-oauth-app-2.png)
+
+3. Configure Vouch Proxy values in the file [`vouch-proxy.yaml`](https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/docs/examples/auth/oauth-external-auth/vouch-proxy.yaml) with the values:
+
+    - VOUCH_COOKIE_DOMAIN with value of `<Ingress Host>`
+    - OAUTH_CLIENT_ID with the github `<Client ID>`
+    - OAUTH_CLIENT_SECRET with the github `<Client Secret>`
+    - (optional, but recommended) VOUCH_WHITELIST with GitHub usernames to allow to login
+    - `__INGRESS_HOST__` with a valid FQDN (e.g. `foo.bar.com`)
+    - `__INGRESS_SECRET__` with a Secret with a valid SSL certificate
+
+4. Deploy Vouch Proxy and the ingress rules by running:
+
+    ```console
+    $ kubectl create -f vouch-proxy.yaml
+    ```
+
+#### Test
+
+Test the integration by accessing the configured URL, e.g. `https://foo.bar.com`
 
 ![Register OAuth2 Application](images/github-auth.png)
 
diff --git a/docs/examples/auth/oauth-external-auth/dashboard-ingress.yaml b/docs/examples/auth/oauth-external-auth/dashboard-ingress.yaml
deleted file mode 100644
index 198a165f4..000000000
--- a/docs/examples/auth/oauth-external-auth/dashboard-ingress.yaml
+++ /dev/null
@@ -1,45 +0,0 @@
-apiVersion: networking.k8s.io/v1
-kind: Ingress
-metadata:
-  annotations:
-    nginx.ingress.kubernetes.io/auth-url: "https://$host/oauth2/auth"
-    nginx.ingress.kubernetes.io/auth-signin: "https://$host/oauth2/start?rd=$escaped_request_uri"
-  name: external-auth-oauth2
-  namespace: kube-system
-spec:
-  ingressClassName: nginx
-  rules:
-  - host: __INGRESS_HOST__
-    http:
-      paths:
-      - path: /
-        pathType: Prefix
-        backend:
-          service:
-            name: kubernetes-dashboard
-            port:
-              number: 80
----
-
-apiVersion: networking.k8s.io/v1
-kind: Ingress
-metadata:
-  name: oauth2-proxy
-  namespace: kube-system
-spec:
-  ingressClassName: nginx
-  rules:
-  - host: __INGRESS_HOST__
-    http:
-      paths:
-      - path: /oauth2
-        pathType: Prefix
-        backend:
-          service:
-            name: oauth2-proxy
-            port:
-              number: 4180
-  tls:
-  - hosts:
-    - __INGRESS_HOST__
-    secretName: __INGRESS_SECRET__
diff --git a/docs/examples/auth/oauth-external-auth/oauth2-proxy.yaml b/docs/examples/auth/oauth-external-auth/oauth2-proxy.yaml
index b383ab95e..3d6d41297 100644
--- a/docs/examples/auth/oauth-external-auth/oauth2-proxy.yaml
+++ b/docs/examples/auth/oauth-external-auth/oauth2-proxy.yaml
@@ -31,6 +31,9 @@ spec:
         # docker run -ti --rm python:3-alpine python -c 'import secrets,base64; print(base64.b64encode(base64.b64encode(secrets.token_bytes(16))));'
         - name: OAUTH2_PROXY_COOKIE_SECRET
           value: SECRET
+        # Recommended: remove email-domain=* in args and set an allowlist
+        # - name: OAUTH2_PROXY_GITHUB_USERS
+        #   value: alice,bob
         image: quay.io/oauth2-proxy/oauth2-proxy:latest
         imagePullPolicy: Always
         name: oauth2-proxy
@@ -55,3 +58,52 @@ spec:
     targetPort: 4180
   selector:
     k8s-app: oauth2-proxy
+
+---
+
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: oauth2-proxy
+  namespace: kube-system
+spec:
+  ingressClassName: nginx
+  rules:
+  - host: __INGRESS_HOST__
+    http:
+      paths:
+      - path: /oauth2
+        pathType: Prefix
+        backend:
+          service:
+            name: oauth2-proxy
+            port:
+              number: 4180
+  tls:
+  - hosts:
+    - __INGRESS_HOST__
+    secretName: __INGRESS_SECRET__
+
+---
+
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  annotations:
+    nginx.ingress.kubernetes.io/auth-url: "https://$host/oauth2/auth"
+    nginx.ingress.kubernetes.io/auth-signin: "https://$host/oauth2/start?rd=$escaped_request_uri"
+  name: external-auth-oauth2
+  namespace: kube-system
+spec:
+  ingressClassName: nginx
+  rules:
+  - host: __INGRESS_HOST__
+    http:
+      paths:
+      - path: /
+        pathType: Prefix
+        backend:
+          service:
+            name: kubernetes-dashboard
+            port:
+              number: 80
diff --git a/docs/examples/auth/oauth-external-auth/vouch-proxy.yaml b/docs/examples/auth/oauth-external-auth/vouch-proxy.yaml
new file mode 100644
index 000000000..05eae6d11
--- /dev/null
+++ b/docs/examples/auth/oauth-external-auth/vouch-proxy.yaml
@@ -0,0 +1,110 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    k8s-app: vouch-proxy
+  name: vouch-proxy
+  namespace: kube-system
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      k8s-app: vouch-proxy
+  template:
+    metadata:
+      labels:
+        k8s-app: vouch-proxy
+    spec:
+      containers:
+      - env:
+        - name: VOUCH_ALLOWALLUSERS
+          value: true
+        # Recommended: remove VOUCH_ALLOWALLUSERS and set an allowlist
+        # - name: VOUCH_WHITELIST
+        #   value: alice,bob
+        - name: VOUCH_COOKIE_DOMAIN
+          value: <Ingress Host>
+        - name: VOUCH_LISTEN
+          value: 0.0.0.0
+        - name: VOUCH_DOCUMENT_ROOT
+          value: oauth2
+        # See https://github.com/vouch/vouch-proxy/tree/master/config for different provider examples
+        - name: OAUTH_PROVIDER
+          value: github
+        - name: OAUTH_CLIENT_ID
+          value: <Client ID>
+        - name: OAUTH_CLIENT_SECRET
+          value: <Client Secret>
+        image: quay.io/vouch/vouch-proxy:latest
+        imagePullPolicy: Always
+        name: vouch-proxy
+        ports:
+        - containerPort: 9090
+          protocol: TCP
+
+---
+
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    k8s-app: vouch-proxy
+  name: vouch-proxy
+  namespace: kube-system
+spec:
+  ports:
+  - name: http
+    port: 9090
+    protocol: TCP
+    targetPort: 9090
+  selector:
+    k8s-app: vouch-proxy
+
+---
+
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  name: vouch-proxy
+  namespace: kube-system
+spec:
+  ingressClassName: nginx
+  rules:
+  - host: __INGRESS_HOST__
+    http:
+      paths:
+      - path: /oauth2
+        pathType: Prefix
+        backend:
+          service:
+            name: vouch-proxy
+            port:
+              number: 9090
+  tls:
+  - hosts:
+    - __INGRESS_HOST__
+    secretName: __INGRESS_SECRET__
+
+---
+
+apiVersion: networking.k8s.io/v1
+kind: Ingress
+metadata:
+  annotations:
+    nginx.ingress.kubernetes.io/auth-url: "https://$host/oauth2/validate"
+    nginx.ingress.kubernetes.io/auth-signin: "https://$host/oauth2/login?url=$scheme://$http_host$request_uri"
+  name: external-auth-oauth2
+  namespace: kube-system
+spec:
+  ingressClassName: nginx
+  rules:
+  - host: __INGRESS_HOST__
+    http:
+      paths:
+      - path: /
+        pathType: Prefix
+        backend:
+          service:
+            name: kubernetes-dashboard
+            port:
+              number: 80

From c660f9e3eb85cde56c0eddebb09852fcaceb42fe Mon Sep 17 00:00:00 2001
From: Adam Jones <domdomegg+git@gmail.com>
Date: Sun, 28 Jan 2024 20:30:10 +0000
Subject: [PATCH 1136/1641] fix: live-docs script (#10928)

This commit updates the live-docs script in the Makefile to install the necessary dependencies for running mkdocs, before starting it.
---
 Makefile | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/Makefile b/Makefile
index d3830f163..295cf4f01 100644
--- a/Makefile
+++ b/Makefile
@@ -210,8 +210,9 @@ live-docs: ## Build and launch a local copy of the documentation website in http
 	@docker run ${PLATFORM_FLAG} ${PLATFORM} --rm -it \
 		-p 8000:8000 \
 		-v ${PWD}:/docs \
-		--entrypoint mkdocs \
-		ingress-nginx-docs serve --dev-addr=0.0.0.0:8000
+		--entrypoint /bin/bash   \
+		ingress-nginx-docs \
+		-c "pip install -r /docs/docs/requirements.txt && mkdocs serve --dev-addr=0.0.0.0:8000"
 
 .PHONY: misspell
 misspell:  ## Check for spelling errors.

From 16821e4871eef8857edf76428bda45f12fbb43a2 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 28 Jan 2024 18:53:29 -0300
Subject: [PATCH 1137/1641] Bump alpine to 3.19.1 (#10930)

---
 images/cfssl/TAG                       | 2 +-
 images/cfssl/rootfs/Dockerfile         | 4 ++--
 images/nginx-1.25/TAG                  | 2 +-
 images/nginx-1.25/rootfs/Dockerfile    | 4 ++--
 images/nginx/TAG                       | 2 +-
 images/nginx/rootfs/Dockerfile         | 4 ++--
 images/opentelemetry/TAG               | 2 +-
 images/opentelemetry/rootfs/Dockerfile | 2 +-
 rootfs/Dockerfile-chroot               | 2 +-
 test/e2e-image/Dockerfile              | 2 +-
 10 files changed, 13 insertions(+), 13 deletions(-)

diff --git a/images/cfssl/TAG b/images/cfssl/TAG
index 8ce995b80..7df503e63 100644
--- a/images/cfssl/TAG
+++ b/images/cfssl/TAG
@@ -1 +1 @@
-v0.0.3
\ No newline at end of file
+v0.0.4
diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index 2d3f30ab4..2afc43c7a 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.19.0
+FROM alpine:3.19.1
 
 RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
 RUN apk update \
@@ -23,4 +23,4 @@ RUN apk update \
 
 EXPOSE 8888
 
-CMD ["cfssl"]
\ No newline at end of file
+CMD ["cfssl"]
diff --git a/images/nginx-1.25/TAG b/images/nginx-1.25/TAG
index 95e94cdd3..a3dce6cd3 100644
--- a/images/nginx-1.25/TAG
+++ b/images/nginx-1.25/TAG
@@ -1 +1 @@
-v0.0.1
\ No newline at end of file
+v0.0.2
diff --git a/images/nginx-1.25/rootfs/Dockerfile b/images/nginx-1.25/rootfs/Dockerfile
index ad0c9d654..385b4ba02 100644
--- a/images/nginx-1.25/rootfs/Dockerfile
+++ b/images/nginx-1.25/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.19.0 as builder
+FROM alpine:3.19.1 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.19.0
+FROM alpine:3.19.1
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/nginx/TAG b/images/nginx/TAG
index 81340c7e7..bbdeab622 100644
--- a/images/nginx/TAG
+++ b/images/nginx/TAG
@@ -1 +1 @@
-0.0.4
+0.0.5
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index daf44f52a..3dd841c6c 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.19.0 as builder
+FROM alpine:3.19.1 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.19.0
+FROM alpine:3.19.1
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/opentelemetry/TAG b/images/opentelemetry/TAG
index 95e94cdd3..a3dce6cd3 100644
--- a/images/opentelemetry/TAG
+++ b/images/opentelemetry/TAG
@@ -1 +1 @@
-v0.0.1
\ No newline at end of file
+v0.0.2
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index b6a0a595b..bb88ec760 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.19.0 as base
+FROM alpine:3.19.1 as base
 
 RUN mkdir -p /opt/third_party/install
 COPY . /opt/third_party/
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index b52cbddf9..98f078261 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.19.0
+FROM alpine:3.19.1
 
 ARG TARGETARCH
 ARG VERSION
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 222156f13..6c1fbefc6 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,7 +1,7 @@
 ARG E2E_BASE_IMAGE
 FROM ${E2E_BASE_IMAGE} AS BASE
 
-FROM alpine:3.19.0
+FROM alpine:3.19.1
 
 RUN apk update \
 	&& apk upgrade && apk add -U --no-cache \

From 59daa4c32711fcb7b45e26e7ecfe5eddfefbf1b6 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 28 Jan 2024 19:49:15 -0300
Subject: [PATCH 1138/1641] Fixing image push (#10931)

---
 .github/workflows/images.yaml | 2 +-
 images/nginx-1.25/TAG         | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 8a41cdac6..84d8ae819 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -236,6 +236,6 @@ jobs:
       - name: build-image
         run: |
           export TAG=$(cat images/nginx-1.25/TAG)
-          cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --push --load -t ingressnginx/nginx-1.25:${TAG} .
+          cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --push -t ingressnginx/nginx-1.25:${TAG} .
     
     
\ No newline at end of file
diff --git a/images/nginx-1.25/TAG b/images/nginx-1.25/TAG
index a3dce6cd3..8ce995b80 100644
--- a/images/nginx-1.25/TAG
+++ b/images/nginx-1.25/TAG
@@ -1 +1 @@
-v0.0.2
+v0.0.3
\ No newline at end of file

From 585c297dda151c6d76bbe55102356d89d008f42c Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 28 Jan 2024 20:59:52 -0300
Subject: [PATCH 1139/1641] Fix golang makefile var name (#10932)

---
 Makefile                    | 7 +++++--
 images/Makefile             | 7 +++++--
 images/test-runner/Makefile | 9 ++++++---
 3 files changed, 16 insertions(+), 7 deletions(-)

diff --git a/Makefile b/Makefile
index 295cf4f01..8ff0f0ca0 100644
--- a/Makefile
+++ b/Makefile
@@ -29,7 +29,10 @@ SHELL=/bin/bash -o pipefail -o errexit
 # Use the 0.0 tag for testing, it shouldn't clobber any release builds
 TAG ?= $(shell cat TAG)
 
-GOLANG_VERSION ?= $(shell cat GOLANG_VERSION)
+# The env below is called GO_VERSION and not GOLANG_VERSION because 
+# the gcb image we use to build already defines GOLANG_VERSION and is a 
+# really old version
+GO_VERSION ?= $(shell cat GOLANG_VERSION)
 
 # e2e settings
 # Allow limiting the scope of the e2e tests. By default run everything
@@ -107,7 +110,7 @@ clean-chroot-image: ## Removes local image
 
 .PHONY: build
 build:  ## Build ingress controller, debug tool and pre-stop hook.
-	E2E_IMAGE=golang:$(GOLANG_VERSION)-alpine3.19 USE_SHELL=/bin/sh build/run-in-docker.sh \
+	E2E_IMAGE=golang:$(GO_VERSION)-alpine3.19 USE_SHELL=/bin/sh build/run-in-docker.sh \
 		MAC_OS=$(MAC_OS) \
 		PKG=$(PKG) \
 		ARCH=$(ARCH) \
diff --git a/images/Makefile b/images/Makefile
index 89c6518f8..990d77231 100644
--- a/images/Makefile
+++ b/images/Makefile
@@ -23,7 +23,10 @@ INIT_BUILDX=$(DIR)/../hack/init-buildx.sh
 
 BASE_IMAGE = $(shell cat $(DIR)/../NGINX_BASE)
 
-GOLANG_VERSION = $(shell cat $(DIR)/../GOLANG_VERSION)
+# The env below is called GO_VERSION and not GOLANG_VERSION because 
+# the gcb image we use to build already defines GOLANG_VERSION and is a 
+# really old version
+GO_VERSION = $(shell cat $(DIR)/../GOLANG_VERSION)
 
 REGISTRY ?= local
 NAME ?=
@@ -54,7 +57,7 @@ build: precheck ensure-buildx
 		--label=org.opencontainers.image.licenses=Apache-2.0 \
 		--label=org.opencontainers.image.description="Ingress NGINX $(NAME) image" \
 		--build-arg BASE_IMAGE=$(BASE_IMAGE) \
-		--build-arg GOLANG_VERSION=$(GOLANG_VERSION) \
+		--build-arg GOLANG_VERSION=$(GO_VERSION) \
 		--platform=${PLATFORMS} $(OUTPUT) \
 		--progress=$(PROGRESS) \
 		--pull $(EXTRAARGS) \
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 149a11fbd..627475d22 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -27,7 +27,10 @@ IMAGE = $(REGISTRY)/e2e-test-runner
 
 NGINX_BASE_IMAGE ?= $(shell cat $(DIR)/../../NGINX_BASE)
 
-GOLANG_VERSION ?= $(shell cat $(DIR)/../../GOLANG_VERSION)
+# The env below is called GO_VERSION and not GOLANG_VERSION because 
+# the gcb image we use to build already defines GOLANG_VERSION and is a 
+# really old version
+GO_VERSION ?= $(shell cat $(DIR)/../../GOLANG_VERSION)
 
 # required to enable buildx
 export DOCKER_CLI_EXPERIMENTAL=enabled
@@ -45,7 +48,7 @@ image:
 		--pull \
 		--push \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=${GOLANG_VERSION} \
+		--build-arg GOLANG_VERSION=${GO_VERSION} \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
@@ -66,7 +69,7 @@ build: ensure-buildx
 		--progress=${PROGRESS} \
 		--pull \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
-		--build-arg GOLANG_VERSION=${GOLANG_VERSION} \
+		--build-arg GOLANG_VERSION=${GO_VERSION} \
 		--build-arg ETCD_VERSION=3.4.3-0 \
 		--build-arg K8S_RELEASE=v1.26.0 \
 		--build-arg RESTY_CLI_VERSION=0.27 \

From e80d648b31c45ce470922a5109a89ca2c7016cb5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 29 Jan 2024 03:08:34 -0800
Subject: [PATCH 1140/1641] Bump dorny/paths-filter from 2.11.1 to 3.0.0
 (#10934)

Bumps [dorny/paths-filter](https://github.com/dorny/paths-filter) from 2.11.1 to 3.0.0.
- [Release notes](https://github.com/dorny/paths-filter/releases)
- [Changelog](https://github.com/dorny/paths-filter/blob/master/CHANGELOG.md)
- [Commits](https://github.com/dorny/paths-filter/compare/4512585405083f25c027a35db413c2b3b9006d50...0bc4621a3135347011ad047f9ecf449bf72ce2bd)

---
updated-dependencies:
- dependency-name: dorny/paths-filter
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml             | 2 +-
 .github/workflows/docs.yaml           | 2 +-
 .github/workflows/helm.yaml           | 2 +-
 .github/workflows/images.yaml         | 2 +-
 .github/workflows/zz-tmpl-images.yaml | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 19dc44746..a5fe8a922 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -49,7 +49,7 @@ jobs:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
-      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
+      - uses: dorny/paths-filter@0bc4621a3135347011ad047f9ecf449bf72ce2bd # v3.0.0
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index ab315b3d3..18aac62ac 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -25,7 +25,7 @@ jobs:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
-      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
+      - uses: dorny/paths-filter@0bc4621a3135347011ad047f9ecf449bf72ce2bd # v3.0.0
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index c6cb31320..46327244a 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -37,7 +37,7 @@ jobs:
         run: |
           ./build/run-in-docker.sh ./hack/verify-chart-lint.sh
 
-      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
+      - uses: dorny/paths-filter@0bc4621a3135347011ad047f9ecf449bf72ce2bd # v3.0.0
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 84d8ae819..39c2b0a32 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -42,7 +42,7 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
+      - uses: dorny/paths-filter@0bc4621a3135347011ad047f9ecf449bf72ce2bd # v3.0.0
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index 6f3605417..c96c97350 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -32,7 +32,7 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-      - uses: dorny/paths-filter@4512585405083f25c027a35db413c2b3b9006d50 # v2.11.1
+      - uses: dorny/paths-filter@0bc4621a3135347011ad047f9ecf449bf72ce2bd # v3.0.0
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}

From acb46089f5a6c9da93c525f5d1c03fab27a3abd9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 29 Jan 2024 06:12:05 -0800
Subject: [PATCH 1141/1641] Bump github/codeql-action from 3.23.1 to 3.23.2
 (#10935)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.23.1 to 3.23.2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Commits](https://github.com/github/codeql-action/compare/v3.23.1...v3.23.2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/images.yaml              | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 39c2b0a32..71e3a81e6 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -186,7 +186,7 @@ jobs:
         ignore-unfixed: true
         output: 'trivy-results.sarif'
     - name: Upload Trivy scan results to GitHub Security tab
-      uses: github/codeql-action/upload-sarif@v3.23.1
+      uses: github/codeql-action/upload-sarif@v3.23.2
       with:
         sarif_file: 'trivy-results.sarif'
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index cbfee59fc..2aaf1553c 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@b96e5e1158e8b8f7694d677976037b27efd275d4 # v2.1.37
+        uses: github/codeql-action/upload-sarif@25f779c0f271790cfca54f1c5e868acc372ba6f1 # v2.1.37
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 869ba472e..d805103a3 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@b96e5e1158e8b8f7694d677976037b27efd275d4 # v2.1.37
+        uses: github/codeql-action/upload-sarif@25f779c0f271790cfca54f1c5e868acc372ba6f1 # v2.1.37
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From a1a0e38ccaa511a8a487edeb11f60a7d8611d773 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 29 Jan 2024 06:15:01 -0800
Subject: [PATCH 1142/1641] Bump dorny/test-reporter from 1.7.0 to 1.8.0
 (#10936)

Bumps [dorny/test-reporter](https://github.com/dorny/test-reporter) from 1.7.0 to 1.8.0.
- [Release notes](https://github.com/dorny/test-reporter/releases)
- [Changelog](https://github.com/dorny/test-reporter/blob/main/CHANGELOG.md)
- [Commits](https://github.com/dorny/test-reporter/compare/afe6793191b75b608954023a46831a3fe10048d4...eaa763f6ffc21c7a37837f56cd5f9737f27fc6c8)

---
updated-dependencies:
- dependency-name: dorny/test-reporter
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/junit-reports.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/junit-reports.yaml b/.github/workflows/junit-reports.yaml
index 78270c5be..3b3318def 100644
--- a/.github/workflows/junit-reports.yaml
+++ b/.github/workflows/junit-reports.yaml
@@ -9,7 +9,7 @@ jobs:
   report:
     runs-on: ubuntu-latest
     steps:
-      - uses: dorny/test-reporter@afe6793191b75b608954023a46831a3fe10048d4 # v1.7.0
+      - uses: dorny/test-reporter@eaa763f6ffc21c7a37837f56cd5f9737f27fc6c8 # v1.8.0
         with:
           artifact: /e2e-test-reports-(.*)/
           name: JEST Tests $1               # Name of the check run which will be created

From 2f40b175db040e21d83f5bc089cf48e2958159c6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 29 Jan 2024 06:17:56 -0800
Subject: [PATCH 1143/1641] Bump actions/upload-artifact from 4.2.0 to 4.3.0
 (#10937)

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.2.0 to 4.3.0.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/694cdabd8bdb0f10b2cea11669e1bf5453eed0a6...26f96dfa697d77e81fd5907df203aa23a56210a8)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml              | 2 +-
 .github/workflows/scorecards.yml       | 2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index a5fe8a922..0fb0a7e8c 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -162,7 +162,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@694cdabd8bdb0f10b2cea11669e1bf5453eed0a6 # v4.2.0
+        uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 # v4.3.0
         with:
           name: docker.tar.gz
           path: docker.tar.gz
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 2aaf1553c..7544e3fb3 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@694cdabd8bdb0f10b2cea11669e1bf5453eed0a6 # v4.2.0
+        uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 # v4.3.0
         with:
           name: SARIF file
           path: results.sarif
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 7709e9637..6943a0854 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -50,7 +50,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports ${{ inputs.variation }}
-        uses: actions/upload-artifact@694cdabd8bdb0f10b2cea11669e1bf5453eed0a6 # v4.2.0
+        uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 # v4.3.0
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}

From e00b45beb567e6d65bb5aae6941c351e17345982 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 29 Jan 2024 06:21:01 -0800
Subject: [PATCH 1144/1641] Bump google.golang.org/grpc from 1.60.1 to 1.61.0
 (#10938)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.60.1 to 1.61.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.60.1...v1.61.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 00d9a4ac2..6bebebf67 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.18.0
-	google.golang.org/grpc v1.60.1
+	google.golang.org/grpc v1.61.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -74,7 +74,7 @@ require (
 	github.com/google/gofuzz v1.1.0 // indirect
 	github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
-	github.com/google/uuid v1.3.1 // indirect
+	github.com/google/uuid v1.4.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 // indirect
 	github.com/imdario/mergo v0.3.6 // indirect
 	github.com/inconshreveable/mousetrap v1.1.0 // indirect
@@ -109,7 +109,7 @@ require (
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.16.1 // indirect
 	google.golang.org/appengine v1.6.8 // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20231002182017-d307bd883b97 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20231106174013-bbf56f31fb17 // indirect
 	google.golang.org/protobuf v1.32.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index ab3495e78..b2075a17e 100644
--- a/go.sum
+++ b/go.sum
@@ -191,8 +191,8 @@ github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98/go.mod h1:czg5+yv1E0Z
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
-github.com/google/uuid v1.3.1 h1:KjJaJ9iWZ3jOFZIf1Lqf4laDRCasjl0BCmnEGxkdLb4=
-github.com/google/uuid v1.3.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/google/uuid v1.4.0 h1:MtMxsa51/r9yyhkyLsVeVt0B+BGQZzpQiTQ4eHZ8bc4=
+github.com/google/uuid v1.4.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 h1:pdN6V1QBWetyv/0+wjACpqVH+eVULgEjkurDLq3goeM=
@@ -665,8 +665,8 @@ google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6D
 google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20231002182017-d307bd883b97 h1:6GQBEOdGkX6MMTLT9V+TjtIRZCw9VPD5Z+yHY9wMgS0=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20231002182017-d307bd883b97/go.mod h1:v7nGkzlmW8P3n/bKmWBn2WpBjpOEx8Q6gMueudAmKfY=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20231106174013-bbf56f31fb17 h1:Jyp0Hsi0bmHXG6k9eATXoYtjd6e2UzZ1SCn/wIupY14=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20231106174013-bbf56f31fb17/go.mod h1:oQ5rr10WTTMvP4A36n8JpR1OrO1BEiV4f78CneXZxkA=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -679,8 +679,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.60.1 h1:26+wFr+cNqSGFcOXcabYC0lUVJVRa2Sb2ortSK7VrEU=
-google.golang.org/grpc v1.60.1/go.mod h1:OlCHIeLYqSSsLi6i49B5QGdzaMZK9+M7LXN2FKz4eGM=
+google.golang.org/grpc v1.61.0 h1:TOvOcuXn30kRao+gfcvsebNEa5iZIiLkisYEkf7R7o0=
+google.golang.org/grpc v1.61.0/go.mod h1:VUbo7IFqmF1QtCAstipjG0GIoq49KvMe9+h1jFLBNJs=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
 google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From 53dc89f0a5e35dad3382bb12bee2ecac7f0f8e53 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 1 Feb 2024 05:42:39 -0800
Subject: [PATCH 1145/1641] Bump github.com/opencontainers/runc from 1.1.11 to
 1.1.12 (#10951)

Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.11 to 1.1.12.
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/v1.1.12/CHANGELOG.md)
- [Commits](https://github.com/opencontainers/runc/compare/v1.1.11...v1.1.12)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 6bebebf67..3a4d1ee1c 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
 	github.com/onsi/ginkgo/v2 v2.15.0
-	github.com/opencontainers/runc v1.1.11
+	github.com/opencontainers/runc v1.1.12
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.18.0
 	github.com/prometheus/client_model v0.5.0
diff --git a/go.sum b/go.sum
index b2075a17e..4b80b3a6f 100644
--- a/go.sum
+++ b/go.sum
@@ -287,8 +287,8 @@ github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7J
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.30.0 h1:hvMK7xYz4D3HapigLTeGdId/NcfQx1VHMJc60ew99+8=
 github.com/onsi/gomega v1.30.0/go.mod h1:9sxs+SwGrKI0+PWe4Fxa9tFQQBG5xSsSbMXOI8PPpoQ=
-github.com/opencontainers/runc v1.1.11 h1:9LjxyVlE0BPMRP2wuQDRlHV4941Jp9rc3F0+YKimopA=
-github.com/opencontainers/runc v1.1.11/go.mod h1:S+lQwSfncpBha7XTy/5lBwWgm5+y5Ma/O44Ekby9FK8=
+github.com/opencontainers/runc v1.1.12 h1:BOIssBaW1La0/qbNZHXOOa71dZfZEQOzW7dqQf3phss=
+github.com/opencontainers/runc v1.1.12/go.mod h1:S+lQwSfncpBha7XTy/5lBwWgm5+y5Ma/O44Ekby9FK8=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
 github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=

From 48b98311229913803063ed34a738fa1f8fd7c012 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 2 Feb 2024 00:03:48 +0100
Subject: [PATCH 1146/1641] Chart: Remove useless `default` from `_params.tpl`.
 (#10957)

---
 charts/ingress-nginx/templates/_params.tpl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/templates/_params.tpl b/charts/ingress-nginx/templates/_params.tpl
index 47d024e85..3ca2de8a5 100644
--- a/charts/ingress-nginx/templates/_params.tpl
+++ b/charts/ingress-nginx/templates/_params.tpl
@@ -29,7 +29,7 @@
 - --watch-namespace={{ default "$(POD_NAMESPACE)" .Values.controller.scope.namespace }}
 {{- end }}
 {{- if and (not .Values.controller.scope.enabled) .Values.controller.scope.namespaceSelector }}
-- --watch-namespace-selector={{ default "" .Values.controller.scope.namespaceSelector }}
+- --watch-namespace-selector={{ .Values.controller.scope.namespaceSelector }}
 {{- end }}
 {{- if and .Values.controller.reportNodeInternalIp .Values.controller.hostNetwork }}
 - --report-node-internal-ip-address={{ .Values.controller.reportNodeInternalIp }}

From 3e740fe8e747eb37c35abb64e1d6f5db42e5b15c Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 2 Feb 2024 07:55:15 +0100
Subject: [PATCH 1147/1641] Chart: Set `--enable-metrics` depending on
 `controller.metrics.enabled`. (#10959)

---
 charts/ingress-nginx/templates/_params.tpl    |  3 ++
 .../tests/controller-daemonset_test.yaml      | 31 +++++++++++++++++++
 .../tests/controller-deployment_test.yaml     | 16 ++++++++++
 3 files changed, 50 insertions(+)

diff --git a/charts/ingress-nginx/templates/_params.tpl b/charts/ingress-nginx/templates/_params.tpl
index 3ca2de8a5..0ddef0af1 100644
--- a/charts/ingress-nginx/templates/_params.tpl
+++ b/charts/ingress-nginx/templates/_params.tpl
@@ -54,6 +54,9 @@
 {{- if .Values.controller.watchIngressWithoutClass }}
 - --watch-ingress-without-class=true
 {{- end }}
+{{- if not .Values.controller.metrics.enabled }}
+- --enable-metrics={{ .Values.controller.metrics.enabled }}
+{{- end }}
 {{- if .Values.controller.enableTopologyAwareRouting }}
 - --enable-topology-aware-routing=true
 {{- end }}
diff --git a/charts/ingress-nginx/tests/controller-daemonset_test.yaml b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
index 2e85848b6..1d3172227 100644
--- a/charts/ingress-nginx/tests/controller-daemonset_test.yaml
+++ b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
@@ -14,3 +14,34 @@ tests:
       - equal:
           path: metadata.name
           value: RELEASE-NAME-ingress-nginx-controller
+
+  - it: should create a DaemonSet with argument `--enable-metrics=false` if `controller.metrics.enabled` is false
+    set:
+      controller.kind: DaemonSet
+      controller.metrics.enabled: false
+    asserts:
+      - contains:
+          path: spec.template.spec.containers[0].args
+          content: --enable-metrics=false
+
+  - it: should create a DaemonSet without argument `--enable-metrics=false` if `controller.metrics.enabled` is true
+    set:
+      controller.kind: DaemonSet
+      controller.metrics.enabled: true
+    asserts:
+      - notContains:
+          path: spec.template.spec.containers[0].args
+          content: --enable-metrics=false
+
+  - it: should create a DaemonSet with resource limits if `controller.resources.limits` is set
+    set:
+      controller.kind: DaemonSet
+      controller.resources.limits.cpu: 500m
+      controller.resources.limits.memory: 512Mi
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].resources.limits.cpu
+          value: 500m
+      - equal:
+          path: spec.template.spec.containers[0].resources.limits.memory
+          value: 512Mi
diff --git a/charts/ingress-nginx/tests/controller-deployment_test.yaml b/charts/ingress-nginx/tests/controller-deployment_test.yaml
index 01844612e..86d5828c0 100644
--- a/charts/ingress-nginx/tests/controller-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/controller-deployment_test.yaml
@@ -21,6 +21,22 @@ tests:
           path: spec.replicas
           value: 3
 
+  - it: should create a Deployment with argument `--enable-metrics=false` if `controller.metrics.enabled` is false
+    set:
+      controller.metrics.enabled: false
+    asserts:
+      - contains:
+          path: spec.template.spec.containers[0].args
+          content: --enable-metrics=false
+
+  - it: should create a Deployment without argument `--enable-metrics=false` if `controller.metrics.enabled` is true
+    set:
+      controller.metrics.enabled: true
+    asserts:
+      - notContains:
+          path: spec.template.spec.containers[0].args
+          content: --enable-metrics=false
+
   - it: should create a Deployment with resource limits if `controller.resources.limits` is set
     set:
       controller.resources.limits.cpu: 500m

From 83b5ffb77feb281c9b5eacb942b2ded71d3428f5 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 2 Feb 2024 14:45:03 +0100
Subject: [PATCH 1148/1641] E2E Tests: Explicitly enable metrics. (#10962)

---
 test/e2e/wait-for-nginx.sh | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/test/e2e/wait-for-nginx.sh b/test/e2e/wait-for-nginx.sh
index d2529e348..ac0584962 100755
--- a/test/e2e/wait-for-nginx.sh
+++ b/test/e2e/wait-for-nginx.sh
@@ -89,6 +89,8 @@ controller:
   terminationGracePeriodSeconds: 1
   admissionWebhooks:
     enabled: false
+  metrics:
+    enabled: true
 
   # ulimit -c unlimited
   # mkdir -p /tmp/coredump

From 4a680c8b200cb865f8698ce0aef4123bfff32f3e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 6 Feb 2024 07:09:25 -0800
Subject: [PATCH 1149/1641] Bump github/codeql-action from 3.23.2 to 3.24.0
 (#10971)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.23.2 to 3.24.0.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Commits](https://github.com/github/codeql-action/compare/v3.23.2...v3.24.0)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/images.yaml              | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 71e3a81e6..bcae56657 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -186,7 +186,7 @@ jobs:
         ignore-unfixed: true
         output: 'trivy-results.sarif'
     - name: Upload Trivy scan results to GitHub Security tab
-      uses: github/codeql-action/upload-sarif@v3.23.2
+      uses: github/codeql-action/upload-sarif@v3.24.0
       with:
         sarif_file: 'trivy-results.sarif'
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 7544e3fb3..e8564ec8d 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@25f779c0f271790cfca54f1c5e868acc372ba6f1 # v2.1.37
+        uses: github/codeql-action/upload-sarif@39cc02b1d9c54094b4cdbc06cec937d19c16ef3b # v2.1.37
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index d805103a3..2281d846a 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@25f779c0f271790cfca54f1c5e868acc372ba6f1 # v2.1.37
+        uses: github/codeql-action/upload-sarif@39cc02b1d9c54094b4cdbc06cec937d19c16ef3b # v2.1.37
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 27507157251da864766db00d04fb1b31bdd16aad Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 12 Feb 2024 03:50:16 -0800
Subject: [PATCH 1150/1641] Bump golang.org/x/crypto from 0.18.0 to 0.19.0
 (#10976)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.18.0 to 0.19.0.
- [Commits](https://github.com/golang/crypto/compare/v0.18.0...v0.19.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 3a4d1ee1c..ed534d4da 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.8.4
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.18.0
+	golang.org/x/crypto v0.19.0
 	google.golang.org/grpc v1.61.0
 	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -103,8 +103,8 @@ require (
 	golang.org/x/mod v0.14.0 // indirect
 	golang.org/x/net v0.20.0 // indirect
 	golang.org/x/oauth2 v0.16.0 // indirect
-	golang.org/x/sys v0.16.0 // indirect
-	golang.org/x/term v0.16.0 // indirect
+	golang.org/x/sys v0.17.0 // indirect
+	golang.org/x/term v0.17.0 // indirect
 	golang.org/x/text v0.14.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
 	golang.org/x/tools v0.16.1 // indirect
diff --git a/go.sum b/go.sum
index 4b80b3a6f..f290367e8 100644
--- a/go.sum
+++ b/go.sum
@@ -399,8 +399,8 @@ golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.18.0 h1:PGVlW0xEltQnzFZ55hkuX5+KLyrMYhHld1YHO4AKcdc=
-golang.org/x/crypto v0.18.0/go.mod h1:R0j02AL6hcrfOiy9T4ZYp/rcWeMxM3L6QYxlOuEG1mg=
+golang.org/x/crypto v0.19.0 h1:ENy+Az/9Y1vSrlrvBSyna3PITt4tiZLf7sgCjZBX7Wo=
+golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -537,12 +537,12 @@ golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.16.0 h1:xWw16ngr6ZMtmxDyKyIgsE93KNKz5HKmMa3b8ALHidU=
-golang.org/x/sys v0.16.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.17.0 h1:25cE3gD+tdBA7lp7QfhuV+rJiE9YXTcS3VG1SqssI/Y=
+golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/term v0.16.0 h1:m+B6fahuftsE9qjo0VWp2FW0mB3MTJvR0BaMQrq0pmE=
-golang.org/x/term v0.16.0/go.mod h1:yn7UURbUtPyrVJPGPq404EukNFxcm/foM+bV/bfcDsY=
+golang.org/x/term v0.17.0 h1:mkTF7LCd6WGJNL3K1Ad7kwxNfYAW6a8a8QqtMblp/4U=
+golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=

From f6b28f548a294930a8917602e6bb5a698e8f6606 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 12 Feb 2024 03:53:12 -0800
Subject: [PATCH 1151/1641] Bump golangci/golangci-lint-action from 3.7.0 to
 4.0.0 (#10980)

Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 3.7.0 to 4.0.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/3a919529898de77ec3da873e3063ca4b10e7f5cc...3cfe3a4abbb849e10058ce4af15d205b6da42804)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/golangci-lint.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 16c3fe8fc..f6929e73c 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -29,6 +29,6 @@ jobs:
           check-latest: true
       
       - name: golangci-lint
-        uses: golangci/golangci-lint-action@3a919529898de77ec3da873e3063ca4b10e7f5cc # v3.7.0
+        uses: golangci/golangci-lint-action@3cfe3a4abbb849e10058ce4af15d205b6da42804 # v4.0.0
         with:
           version: v1.55.2

From b0e5e9a39d7a6f587bb6ecbe4b501167ce2db750 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 12 Feb 2024 03:59:07 -0800
Subject: [PATCH 1152/1641] Bump aquasecurity/trivy-action from 0.16.1 to
 0.17.0 (#10979)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.16.1 to 0.17.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/d43c1f16c00cfd3978dde6c07f4bbcf9eb6993ca...84384bd6e777ef152729993b8145ea352e9dd3ef)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 2281d846a..1efd1fc0c 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@d43c1f16c00cfd3978dde6c07f4bbcf9eb6993ca # v0.16.1
+        uses: aquasecurity/trivy-action@84384bd6e777ef152729993b8145ea352e9dd3ef # v0.17.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'

From 3408083b8013ec87a6920deb592aeb21c7e1052b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 12 Feb 2024 04:02:07 -0800
Subject: [PATCH 1153/1641] Bump actions/download-artifact from 4.1.1 to 4.1.2
 (#10981)

Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4.1.1 to 4.1.2.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/6b208ae046db98c579e8a3aa621ab581ff575935...eaceaf801fd36c7dee90939fad912460b18a1ffe)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml              | 2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 0fb0a7e8c..de63bd457 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -199,7 +199,7 @@ jobs:
           helm unittest charts/ingress-nginx -d
 
       - name: cache
-        uses: actions/download-artifact@6b208ae046db98c579e8a3aa621ab581ff575935 # v4.1.1
+        uses: actions/download-artifact@eaceaf801fd36c7dee90939fad912460b18a1ffe # v4.1.2
         with:
           name: docker.tar.gz
 
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 6943a0854..563c487d3 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -23,7 +23,7 @@ jobs:
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: cache
-        uses: actions/download-artifact@6b208ae046db98c579e8a3aa621ab581ff575935 # v4.1.1
+        uses: actions/download-artifact@eaceaf801fd36c7dee90939fad912460b18a1ffe # v4.1.2
         with:
           name: docker.tar.gz
 

From 86f3af8dead82f2d0905dceddeba213751e15b50 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 12 Feb 2024 04:31:31 -0800
Subject: [PATCH 1154/1641] Bump actions/upload-artifact from 4.3.0 to 4.3.1
 (#10978)

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.0 to 4.3.1.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/26f96dfa697d77e81fd5907df203aa23a56210a8...5d5d22a31266ced268874388b861e4b58bb5c2f3)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml              | 2 +-
 .github/workflows/scorecards.yml       | 2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index de63bd457..7a0d5cf6b 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -162,7 +162,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 # v4.3.0
+        uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4.3.1
         with:
           name: docker.tar.gz
           path: docker.tar.gz
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index e8564ec8d..9d00e8c38 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 # v4.3.0
+        uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4.3.1
         with:
           name: SARIF file
           path: results.sarif
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 563c487d3..20fd1053d 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -50,7 +50,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports ${{ inputs.variation }}
-        uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 # v4.3.0
+        uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4.3.1
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}

From 7c3596854bc3855b99b80fcf23e1a8def7f7672f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 19 Feb 2024 03:10:47 -0800
Subject: [PATCH 1155/1641] Bump github.com/prometheus/client_model from 0.5.0
 to 0.6.0 (#10998)

Bumps [github.com/prometheus/client_model](https://github.com/prometheus/client_model) from 0.5.0 to 0.6.0.
- [Release notes](https://github.com/prometheus/client_model/releases)
- [Commits](https://github.com/prometheus/client_model/compare/v0.5.0...v0.6.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_model
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index ed534d4da..7b18f3335 100644
--- a/go.mod
+++ b/go.mod
@@ -18,7 +18,7 @@ require (
 	github.com/opencontainers/runc v1.1.12
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.18.0
-	github.com/prometheus/client_model v0.5.0
+	github.com/prometheus/client_model v0.6.0
 	github.com/prometheus/common v0.46.0
 	github.com/spf13/cobra v1.8.0
 	github.com/spf13/pflag v1.0.5
diff --git a/go.sum b/go.sum
index f290367e8..4dc71934f 100644
--- a/go.sum
+++ b/go.sum
@@ -310,8 +310,8 @@ github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/client_model v0.5.0 h1:VQw1hfvPvk3Uv6Qf29VrPF32JB6rtbgI6cYPYQjL0Qw=
-github.com/prometheus/client_model v0.5.0/go.mod h1:dTiFglRmd66nLR9Pv9f0mZi7B7fk5Pm3gvsjB5tr+kI=
+github.com/prometheus/client_model v0.6.0 h1:k1v3CzpSRUTrKMppY35TLwPvxHqBu0bYgxZzqGIgaos=
+github.com/prometheus/client_model v0.6.0/go.mod h1:NTQHnmxFpouOD0DpvP4XujX3CdOAGQPoaGhyTchlyt8=
 github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=

From 09ab0ecf8d7c3f64e53c90be44c96579b1b76352 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 19 Feb 2024 03:13:28 -0800
Subject: [PATCH 1156/1641] Bump dorny/paths-filter from 3.0.0 to 3.0.1
 (#10994)

Bumps [dorny/paths-filter](https://github.com/dorny/paths-filter) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/dorny/paths-filter/releases)
- [Changelog](https://github.com/dorny/paths-filter/blob/master/CHANGELOG.md)
- [Commits](https://github.com/dorny/paths-filter/compare/0bc4621a3135347011ad047f9ecf449bf72ce2bd...ebc4d7e9ebcb0b1eb21480bb8f43113e996ac77a)

---
updated-dependencies:
- dependency-name: dorny/paths-filter
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml             | 2 +-
 .github/workflows/docs.yaml           | 2 +-
 .github/workflows/helm.yaml           | 2 +-
 .github/workflows/images.yaml         | 2 +-
 .github/workflows/zz-tmpl-images.yaml | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 7a0d5cf6b..d7d20a246 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -49,7 +49,7 @@ jobs:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
-      - uses: dorny/paths-filter@0bc4621a3135347011ad047f9ecf449bf72ce2bd # v3.0.0
+      - uses: dorny/paths-filter@ebc4d7e9ebcb0b1eb21480bb8f43113e996ac77a # v3.0.1
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 18aac62ac..695ed2124 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -25,7 +25,7 @@ jobs:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
-      - uses: dorny/paths-filter@0bc4621a3135347011ad047f9ecf449bf72ce2bd # v3.0.0
+      - uses: dorny/paths-filter@ebc4d7e9ebcb0b1eb21480bb8f43113e996ac77a # v3.0.1
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 46327244a..09d70fb7a 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -37,7 +37,7 @@ jobs:
         run: |
           ./build/run-in-docker.sh ./hack/verify-chart-lint.sh
 
-      - uses: dorny/paths-filter@0bc4621a3135347011ad047f9ecf449bf72ce2bd # v3.0.0
+      - uses: dorny/paths-filter@ebc4d7e9ebcb0b1eb21480bb8f43113e996ac77a # v3.0.1
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index bcae56657..3794a0cfa 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -42,7 +42,7 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-      - uses: dorny/paths-filter@0bc4621a3135347011ad047f9ecf449bf72ce2bd # v3.0.0
+      - uses: dorny/paths-filter@ebc4d7e9ebcb0b1eb21480bb8f43113e996ac77a # v3.0.1
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index c96c97350..fd56e986d 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -32,7 +32,7 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-      - uses: dorny/paths-filter@0bc4621a3135347011ad047f9ecf449bf72ce2bd # v3.0.0
+      - uses: dorny/paths-filter@ebc4d7e9ebcb0b1eb21480bb8f43113e996ac77a # v3.0.1
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}

From 0a01f555d19a9456a9924ce19e5ad51808805e91 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Wed, 21 Feb 2024 16:41:41 +0000
Subject: [PATCH 1157/1641] bump to rerun ci

---
 SECURITY.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/SECURITY.md b/SECURITY.md
index 2083d44cd..d297924d6 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -20,3 +20,4 @@ Information about supported Kubernetes versions can be found on the
 [kubernetes-security-announce-rss]: https://groups.google.com/forum/feed/kubernetes-security-announce/msgs/rss_v2_0.xml?num=50
 [Kubernetes version and version skew support policy]: https://kubernetes.io/docs/setup/release/version-skew-policy/#supported-versions
 [Kubernetes Security and Disclosure Information]: https://kubernetes.io/docs/reference/issues-security/security/#report-a-vulnerability
+

From 63fb4c65126347dd7d578bfaf699d0843852708c Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Wed, 21 Feb 2024 16:41:48 +0000
Subject: [PATCH 1158/1641] bump to rerun ci

---
 SECURITY.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/SECURITY.md b/SECURITY.md
index d297924d6..2083d44cd 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -20,4 +20,3 @@ Information about supported Kubernetes versions can be found on the
 [kubernetes-security-announce-rss]: https://groups.google.com/forum/feed/kubernetes-security-announce/msgs/rss_v2_0.xml?num=50
 [Kubernetes version and version skew support policy]: https://kubernetes.io/docs/setup/release/version-skew-policy/#supported-versions
 [Kubernetes Security and Disclosure Information]: https://kubernetes.io/docs/reference/issues-security/security/#report-a-vulnerability
-

From 7edcdeefe5638fd47ae80a9a8b48884bef3e35c8 Mon Sep 17 00:00:00 2001
From: zengyuxing007 <newday.jesse@gmail.com>
Date: Thu, 22 Feb 2024 11:00:17 +0800
Subject: [PATCH 1159/1641] Update ingress-path-matching.md (#11007)

---
 docs/user-guide/ingress-path-matching.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/docs/user-guide/ingress-path-matching.md b/docs/user-guide/ingress-path-matching.md
index dd618e08b..d93e75fbb 100644
--- a/docs/user-guide/ingress-path-matching.md
+++ b/docs/user-guide/ingress-path-matching.md
@@ -3,7 +3,8 @@
 ## Regular Expression Support
 
 !!! important
-    Regular expressions and wild cards are not supported in the `spec.rules.host` field. Full hostnames must be used.
+    Regular expressions is not supported in the `spec.rules.host` field. The wildcard character '*' must appear by itself as the first DNS label and matches only a single label. You cannot have a wildcard label by itself (e.g. Host ==
+"*").
 
 !!! note
     Please see the [FAQ](../faq.md#validation-of-path) for Validation Of __`path`__

From 536c4e7e068390282bd1239fdb70983e891edad1 Mon Sep 17 00:00:00 2001
From: zengyuxing007 <newday.jesse@gmail.com>
Date: Thu, 22 Feb 2024 14:07:07 +0800
Subject: [PATCH 1160/1641] Update ingress-path-matching.md (#11008)

---
 docs/user-guide/ingress-path-matching.md | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/docs/user-guide/ingress-path-matching.md b/docs/user-guide/ingress-path-matching.md
index d93e75fbb..43d049043 100644
--- a/docs/user-guide/ingress-path-matching.md
+++ b/docs/user-guide/ingress-path-matching.md
@@ -3,8 +3,7 @@
 ## Regular Expression Support
 
 !!! important
-    Regular expressions is not supported in the `spec.rules.host` field. The wildcard character '*' must appear by itself as the first DNS label and matches only a single label. You cannot have a wildcard label by itself (e.g. Host ==
-"*").
+    Regular expressions is not supported in the `spec.rules.host` field. The wildcard character '\*' must appear by itself as the first DNS label and matches only a single label. You cannot have a wildcard label by itself (e.g. Host == "\*").
 
 !!! note
     Please see the [FAQ](../faq.md#validation-of-path) for Validation Of __`path`__

From 7fdce1640bbc3acdb8405c03917ca269028bc7b9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 26 Feb 2024 03:17:40 -0800
Subject: [PATCH 1161/1641] Bump actions/dependency-review-action from 4.0.0 to
 4.1.3 (#11016)

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 4.0.0 to 4.1.3.
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/4901385134134e04cec5fbe5ddfe3b2c5bd5d976...9129d7d40b8c12c1ed0f60400d00c92d437adcce)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 68822744d..eadf099b3 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@4901385134134e04cec5fbe5ddfe3b2c5bd5d976 # v4.0.0
+        uses: actions/dependency-review-action@9129d7d40b8c12c1ed0f60400d00c92d437adcce # v4.1.3

From 30d0d5e4b51143d0e794076583c94446c8b2b780 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 26 Feb 2024 04:25:33 -0800
Subject: [PATCH 1162/1641] Bump github/codeql-action from 3.24.0 to 3.24.5
 (#11017)

* Bump github/codeql-action from 3.24.0 to 3.24.5

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.24.0 to 3.24.5.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Commits](https://github.com/github/codeql-action/compare/v3.24.0...v3.24.5)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

* Update images.yaml

* Update scorecards.yml

* Update vulnerability-scans.yaml

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Carlos Tadeu Panato Junior <ctadeu@gmail.com>
---
 .github/workflows/images.yaml              | 4 ++--
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 3794a0cfa..238cc6a80 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -186,7 +186,7 @@ jobs:
         ignore-unfixed: true
         output: 'trivy-results.sarif'
     - name: Upload Trivy scan results to GitHub Security tab
-      uses: github/codeql-action/upload-sarif@v3.24.0
+      uses: github/codeql-action/upload-sarif@47b3d888fe66b639e431abf22ebca059152f1eea # v3.24.5
       with:
         sarif_file: 'trivy-results.sarif'
 
@@ -238,4 +238,4 @@ jobs:
           export TAG=$(cat images/nginx-1.25/TAG)
           cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --push -t ingressnginx/nginx-1.25:${TAG} .
     
-    
\ No newline at end of file
+    
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 9d00e8c38..387849a48 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@39cc02b1d9c54094b4cdbc06cec937d19c16ef3b # v2.1.37
+        uses: github/codeql-action/upload-sarif@47b3d888fe66b639e431abf22ebca059152f1eea # v3.24.5
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 1efd1fc0c..99e9fdfc7 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@39cc02b1d9c54094b4cdbc06cec937d19c16ef3b # v2.1.37
+        uses: github/codeql-action/upload-sarif@47b3d888fe66b639e431abf22ebca059152f1eea # v3.24.5
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From e78af97ecdf10187b43786df216478df6ea440d1 Mon Sep 17 00:00:00 2001
From: Milas Bowman <devnull@milas.dev>
Date: Mon, 26 Feb 2024 07:32:18 -0500
Subject: [PATCH 1163/1641] chore(deps): upgrade headers-more module to 0.37
 (#10991)

https://github.com/openresty/headers-more-nginx-module/compare/v0.34...v0.37

Signed-off-by: Milas Bowman <devnull@milas.dev>
---
 images/nginx-1.25/rootfs/build.sh | 2 +-
 images/nginx/rootfs/build.sh      | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/images/nginx-1.25/rootfs/build.sh b/images/nginx-1.25/rootfs/build.sh
index 0fded23d6..5324170b0 100755
--- a/images/nginx-1.25/rootfs/build.sh
+++ b/images/nginx-1.25/rootfs/build.sh
@@ -26,7 +26,7 @@ export NDK_VERSION=v0.3.3
 # Check for recent changes: https://github.com/openresty/set-misc-nginx-module/compare/v0.33...master
 export SETMISC_VERSION=796f5a3e518748eb29a93bd450324e0ad45b704e
 
-# Check for recent changes: https://github.com/openresty/headers-more-nginx-module/compare/v0.34...master
+# Check for recent changes: https://github.com/openresty/headers-more-nginx-module/compare/v0.37...master
 export MORE_HEADERS_VERSION=v0.37
 
 # Check for recent changes: https://github.com/atomx/nginx-http-auth-digest/compare/v1.0.0...atomx:master
diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index cd319a0b9..d6e7c4a58 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -26,8 +26,8 @@ export NDK_VERSION=0.3.2
 # Check for recent changes: https://github.com/openresty/set-misc-nginx-module/compare/v0.33...master
 export SETMISC_VERSION=0.33
 
-# Check for recent changes: https://github.com/openresty/headers-more-nginx-module/compare/v0.34...master
-export MORE_HEADERS_VERSION=0.34
+# Check for recent changes: https://github.com/openresty/headers-more-nginx-module/compare/v0.37...master
+export MORE_HEADERS_VERSION=0.37
 
 # Check for recent changes: https://github.com/atomx/nginx-http-auth-digest/compare/v1.0.0...atomx:master
 export NGINX_DIGEST_AUTH=1.0.0
@@ -204,7 +204,7 @@ get_src aa961eafb8317e0eb8da37eb6e2c9ff42267edd18b56947384e719b85188f58b \
 get_src cd5e2cc834bcfa30149e7511f2b5a2183baf0b70dc091af717a89a64e44a2985 \
         "https://github.com/openresty/set-misc-nginx-module/archive/v$SETMISC_VERSION.tar.gz"
 
-get_src 0c0d2ced2ce895b3f45eb2b230cd90508ab2a773299f153de14a43e44c1209b3 \
+get_src cf6e169d6b350c06d0c730b0eaf4973394026ad40094cddd3b3a5b346577019d \
         "https://github.com/openresty/headers-more-nginx-module/archive/v$MORE_HEADERS_VERSION.tar.gz"
 
 get_src f09851e6309560a8ff3e901548405066c83f1f6ff88aa7171e0763bd9514762b \

From 391a304b10296cb07171a4c47e97ece81617a759 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Mon, 26 Feb 2024 20:05:00 -0300
Subject: [PATCH 1164/1641] Bump grpc and reintroduce OTEL compilation (#11021)

* Bump grpc and reintroduce OTEL compilation

* Enable s390x again
---
 .github/workflows/images.yaml       |  2 +-
 images/nginx-1.25/Makefile          |  2 +-
 images/nginx-1.25/TAG               |  2 +-
 images/nginx-1.25/rootfs/Dockerfile |  2 +-
 images/nginx-1.25/rootfs/build.sh   | 36 +++++++++++++++++++++++++++--
 5 files changed, 38 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 238cc6a80..93092d80b 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -216,7 +216,7 @@ jobs:
     if: |
       (github.event_name == 'push' && github.ref == 'refs/heads/main' && needs.changes.outputs.nginx125 == 'true')
     env:
-      PLATFORMS: linux/amd64,linux/arm,linux/arm64
+      PLATFORMS: linux/amd64,linux/arm,linux/arm64,linux/s390x
     steps:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
diff --git a/images/nginx-1.25/Makefile b/images/nginx-1.25/Makefile
index e03197109..cdd3e2a3c 100644
--- a/images/nginx-1.25/Makefile
+++ b/images/nginx-1.25/Makefile
@@ -32,7 +32,7 @@ IMAGE = $(REGISTRY)/nginx-1.25
 export DOCKER_CLI_EXPERIMENTAL=enabled
 
 # build with buildx
-PLATFORMS?=linux/amd64,linux/arm,linux/arm64
+PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
 OUTPUT=
 PROGRESS=plain
 build: ensure-buildx
diff --git a/images/nginx-1.25/TAG b/images/nginx-1.25/TAG
index 8ce995b80..a92e82754 100644
--- a/images/nginx-1.25/TAG
+++ b/images/nginx-1.25/TAG
@@ -1 +1 @@
-v0.0.3
\ No newline at end of file
+v0.0.4
\ No newline at end of file
diff --git a/images/nginx-1.25/rootfs/Dockerfile b/images/nginx-1.25/rootfs/Dockerfile
index 385b4ba02..8327d99f2 100644
--- a/images/nginx-1.25/rootfs/Dockerfile
+++ b/images/nginx-1.25/rootfs/Dockerfile
@@ -29,6 +29,7 @@ ENV LUA_PATH="/usr/local/share/luajit-2.1.0-beta3/?.lua;/usr/local/share/lua/5.1
 ENV LUA_CPATH="/usr/local/lib/lua/?/?.so;/usr/local/lib/lua/?.so;;"
 
 COPY --from=builder /usr/local /usr/local
+COPY --from=builder /usr/lib/libopentelemetry* /usr/local/lib
 COPY --from=builder /opt /opt
 COPY --from=builder /etc/nginx /etc/nginx
 
@@ -50,7 +51,6 @@ RUN apk update \
   tzdata \
   grpc-cpp \
   libprotobuf \
-  && apk add -X http://dl-cdn.alpinelinux.org/alpine/edge/testing opentelemetry-cpp-exporter-otlp-common opentelemetry-cpp-exporter-otlp-grpc \
   && ln -s /usr/local/nginx/sbin/nginx /sbin/nginx \
   && adduser -S -D -H -u 101 -h /usr/local/nginx \
   -s /sbin/nologin -G www-data -g www-data www-data \
diff --git a/images/nginx-1.25/rootfs/build.sh b/images/nginx-1.25/rootfs/build.sh
index 5324170b0..b449d89e4 100755
--- a/images/nginx-1.25/rootfs/build.sh
+++ b/images/nginx-1.25/rootfs/build.sh
@@ -104,6 +104,11 @@ export LUA_RESTY_GLOBAL_THROTTLE_VERSION=v0.2.0
 # Check for recent changes:  https://github.com/microsoft/mimalloc/compare/v1.7.6...master
 export MIMALOC_VERSION=v2.1.2
 
+# Check on https://github.com/open-telemetry/opentelemetry-cpp
+export OPENTELEMETRY_CPP_VERSION="v1.11.0"
+# Check on https://github.com/open-telemetry/opentelemetry-proto
+export OPENTELEMETRY_PROTO_VERSION="v1.1.0"
+
 export BUILD_PATH=/tmp/build
 
 ARCH=$(uname -m)
@@ -119,6 +124,7 @@ get_src()
   echo "Downloading $url"
 
   curl -sSL "$url" -o "$f"
+  # TODO: Reenable checksum verification but make it smarter
   # echo "$hash  $f" | sha256sum -c - || exit 10
   if [ ! -z "$dest" ]; then
         mkdir ${BUILD_PATH}/${dest}
@@ -177,7 +183,7 @@ apk add \
   grpc-dev \
   protobuf-dev 
 
-apk add -X http://dl-cdn.alpinelinux.org/alpine/edge/testing opentelemetry-cpp-dev
+# apk add -X http://dl-cdn.alpinelinux.org/alpine/edge/testing opentelemetry-cpp-dev
 
 # There is some bug with some platforms and git, so force HTTP/1.1
 git config --global http.version HTTP/1.1
@@ -195,6 +201,12 @@ get_src 66dc7081488811e9f925719e34d1b4504c2801c81dee2920e5452a86b11405ae \
 get_src aa961eafb8317e0eb8da37eb6e2c9ff42267edd18b56947384e719b85188f58b \
         "https://github.com/vision5/ngx_devel_kit/archive/$NDK_VERSION.tar.gz" "ngx_devel_kit"
 
+get_src abc123 \
+        "https://github.com/open-telemetry/opentelemetry-cpp/archive/$OPENTELEMETRY_CPP_VERSION.tar.gz" "opentelemetry-cpp"
+
+get_src abc123 \
+        "https://github.com/open-telemetry/opentelemetry-proto/archive/$OPENTELEMETRY_PROTO_VERSION.tar.gz" "opentelemetry-proto"
+
 get_src cd5e2cc834bcfa30149e7511f2b5a2183baf0b70dc091af717a89a64e44a2985 \
         "https://github.com/openresty/set-misc-nginx-module/archive/$SETMISC_VERSION.tar.gz" "set-misc-nginx-module"
 
@@ -288,7 +300,27 @@ make install
 ln -s /usr/local/bin/luajit /usr/local/bin/lua
 ln -s "$LUAJIT_INC" /usr/local/include/lua
 
-cd "$BUILD_PATH"
+cd "$BUILD_PATH/opentelemetry-cpp"
+export CXXFLAGS="-DBENCHMARK_HAS_NO_INLINE_ASSEMBLY"
+cmake -B build -G Ninja -Wno-dev \
+        -DOTELCPP_PROTO_PATH="${BUILD_PATH}/opentelemetry-proto/" \
+        -DCMAKE_INSTALL_PREFIX=/usr \
+        -DBUILD_SHARED_LIBS=ON \
+        -DBUILD_TESTING="OFF" \
+        -DBUILD_W3CTRACECONTEXT_TEST="OFF" \
+        -DCMAKE_BUILD_TYPE=None \
+        -DWITH_ABSEIL=ON \
+        -DWITH_STL=ON \
+        -DWITH_EXAMPLES=OFF \
+        -DWITH_ZPAGES=OFF \
+        -DWITH_OTLP_GRPC=ON \
+        -DWITH_OTLP_HTTP=ON \
+        -DWITH_ZIPKIN=ON \
+        -DWITH_PROMETHEUS=OFF \
+        -DWITH_ASYNC_EXPORT_PREVIEW=OFF \
+        -DWITH_METRICS_EXEMPLAR_PREVIEW=OFF
+      cmake --build build
+      cmake --install build
 
 # Git tuning
 git config --global --add core.compression -1

From 0a87031bbdba6f2cd3e66565043bd42d330858ba Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Mon, 26 Feb 2024 22:08:45 -0300
Subject: [PATCH 1165/1641] Bump modsecurity on nginx 1.25 (#11024)

---
 images/nginx-1.25/TAG             | 2 +-
 images/nginx-1.25/rootfs/build.sh | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/nginx-1.25/TAG b/images/nginx-1.25/TAG
index a92e82754..837042c77 100644
--- a/images/nginx-1.25/TAG
+++ b/images/nginx-1.25/TAG
@@ -1 +1 @@
-v0.0.4
\ No newline at end of file
+v0.0.5
\ No newline at end of file
diff --git a/images/nginx-1.25/rootfs/build.sh b/images/nginx-1.25/rootfs/build.sh
index b449d89e4..3fe610945 100755
--- a/images/nginx-1.25/rootfs/build.sh
+++ b/images/nginx-1.25/rootfs/build.sh
@@ -39,7 +39,7 @@ export NGINX_SUBSTITUTIONS=e12e965ac1837ca709709f9a26f572a54d83430e
 export MODSECURITY_VERSION=v1.0.3
 
 # Check for recent changes: https://github.com/SpiderLabs/ModSecurity/compare/v3.0.8...v3/master
-export MODSECURITY_LIB_VERSION=v3.0.11
+export MODSECURITY_LIB_VERSION=v3.0.12
 
 # Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.2...v3.3/master
 export OWASP_MODSECURITY_CRS_VERSION=v3.3.5

From 30c431453484783269cb1fadc86d87c29db89024 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Herv=C3=A9?= <dud225@users.noreply.github.com>
Date: Tue, 27 Feb 2024 14:41:04 +0100
Subject: [PATCH 1166/1641] Fix print-e2e-suite (#9536)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Before:
```
$ make print-e2e-suite
Reached DIND check ELSE block, inside run-in-docker.sh
Compiled e2e.test
Reached DIND check ELSE block, inside run-in-docker.sh
+ set -o errexit
+ set -o nounset
+ set -o pipefail
+++ dirname hack/print-e2e-suite.sh
++ cd hack/..
++ pwd -P
+ DIR=/go/src/k8s.io/ingress-nginx
+ /go/src/k8s.io/ingress-nginx/test/e2e/e2e.test -ginkgo.noColor -ginkgo.dryRun
+ sed 's|/go/src/k8s.io/ingress-nginx/|File: |g'
+ sed s/•//g
+ + head -n-3tail -n+5

You're using deprecated Ginkgo functionality:
=============================================
  --ginkgo.dryRun is deprecated, use --ginkgo.dry-run instead
  Learn more at: https://onsi.github.io/ginkgo/MIGRATING_TO_V2#changed-command-line-flags
  --ginkgo.noColor is deprecated, use --ginkgo.no-color instead
  Learn more at: https://onsi.github.io/ginkgo/MIGRATING_TO_V2#changed-command-line-flags

To silence deprecations that can be silenced set the following environment variable:
  ACK_GINKGO_DEPRECATIONS=2.6.1

Will run 423 of 423 specs
```

After:
```
$ make print-e2e-suite
Reached DIND check ELSE block, inside run-in-docker.sh
Compiled e2e.test
Reached DIND check ELSE block, inside run-in-docker.sh

Will run 423 of 423 specs
------------------------------
[Annotations] service-upstream when using the default value (false) and enabling in the annotations should use the Service Cluster IP and Port
File: test/e2e/annotations/serviceupstream.go:41
 [0.000 seconds]
------------------------------
[...]
```

Signed-off-by: Hervé Werner <dud225@hotmail.com>
---
 hack/print-e2e-suite.sh | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/hack/print-e2e-suite.sh b/hack/print-e2e-suite.sh
index e6b083d58..12b0efb13 100755
--- a/hack/print-e2e-suite.sh
+++ b/hack/print-e2e-suite.sh
@@ -14,8 +14,8 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-if [ -n "$DEBUG" ]; then
-	set -x
+if [ "$DEBUG" == "true" ]; then
+  set -x
 fi
 
 set -o errexit
@@ -25,5 +25,6 @@ set -o pipefail
 DIR=$(cd $(dirname "${BASH_SOURCE}")/.. && pwd -P)
 
 $DIR/test/e2e/e2e.test \
-    -ginkgo.noColor \
-    -ginkgo.dryRun | sed "s|$DIR/|File: |g" | sed 's/•//g' | tail -n+5 | head -n-3
+    --ginkgo.no-color \
+    --ginkgo.v \
+    --ginkgo.dry-run | sed "s|$DIR/|File: |g" | sed 's/•//g' | tail -n+5 | head -n-3

From 3a887f28e828fdae70d25981356014ecc12b72e8 Mon Sep 17 00:00:00 2001
From: Artur Juraszek <artur@juraszek.xyz>
Date: Tue, 27 Feb 2024 13:56:40 +0000
Subject: [PATCH 1167/1641] Properly support a TLS-wrapped OCSP responder
 (#10164)

Current implementation of OCSP stapling makes use of the DNS caching machinery[^1],
which results in resty.http not seeing the actual host name of the OCSP responder.
On HTTP level, this is already mitigated via overriding the Host header, but
if a given responder operates on a HTTPS endpoint (a setup which, admittedly, isn't
very popular due to its chicken-and-egg caveats involved but is nonetheless legal[^2])
the connection will fail to be established. A relevant (and a bit redacted) excerpt from logs:

  2023/07/02 18:13:23 [info] 112#112: *29039 [lua] dns.lua:32: cache_set(): cache set for 'my.ocsp.responder' with value of [10.1.2.3, 10.4.5.6, 10.7.8.9] and ttl of 30., context: ngx.timer, client: 127.0.0.1, server: 0.0.0.0:442
  2023/07/02 18:13:23 [error] 112#112: *29039 lua ssl certificate does not match host "10.1.2.3", context: ngx.timer, client: 127.0.0.1, server: 0.0.0.0:442
  2023/07/02 18:13:23 [error] 112#112: *29039 [lua] certificate.lua:143: fetch_and_cache_ocsp_response(): could not get OCSP response: certificate host mismatch, context: ngx.timer, client: 127.0.0.1, server: 0.0.0.0:442

[^1]: https://github.com/kubernetes/ingress-nginx/blob/ebb6314/rootfs/etc/nginx/lua/certificate.lua#L81
[^2]: https://datatracker.ietf.org/doc/html/rfc2560#appendix-A.1.1
---
 rootfs/etc/nginx/lua/certificate.lua | 1 +
 1 file changed, 1 insertion(+)

diff --git a/rootfs/etc/nginx/lua/certificate.lua b/rootfs/etc/nginx/lua/certificate.lua
index 48c8d7134..1b3d3b21f 100644
--- a/rootfs/etc/nginx/lua/certificate.lua
+++ b/rootfs/etc/nginx/lua/certificate.lua
@@ -103,6 +103,7 @@ local function do_ocsp_request(url, ocsp_request)
       ["Host"] = parsed_url[2],
     },
     body = ocsp_request,
+    ssl_server_name = parsed_url[2],
   })
   if not http_response then
     return nil, err

From 1bc20da92f02daba83725d06fe71582deca12d62 Mon Sep 17 00:00:00 2001
From: Florian Schlichting <fsfs@debian.org>
Date: Tue, 27 Feb 2024 14:58:42 +0100
Subject: [PATCH 1168/1641] fix datasource, $exported_namespace variable in
 grafana nginx dashboard (#9092)

* grafana/dashboards/nginx.json: re-add exported_namespace as a variable (was deleted entirely in #9523)

* dashboards/nginx.json: switch around ingress and namespace selectors, and rename "Exported Namespace" to "Ingress Namespace"

authored by tghartland at https://gist.github.com/tghartland/9147d88f991a95d4bab0fa7278c237eb

* dashboards/nginx.json: make "Ingress Request Volume" and "Ingress Success Rate" panels look at selected Ingress Namespaces only, and rename two panel titels to use the renamed variable

as suggested by tghartland in https://github.com/kubernetes/ingress-nginx/pull/9092#issuecomment-1285840900

* dashboards/nginx.json: apply Ingress Namespace selection to "Ingress Percentile Response Times and Transfer Rates" as well

this is from https://github.com/kubernetes/ingress-nginx/pull/9092#issuecomment-1287114743 also by tghartland
---
 deploy/grafana/dashboards/nginx.json | 56 ++++++++++++++++++++--------
 1 file changed, 40 insertions(+), 16 deletions(-)

diff --git a/deploy/grafana/dashboards/nginx.json b/deploy/grafana/dashboards/nginx.json
index 3c3205b4a..864d1dace 100644
--- a/deploy/grafana/dashboards/nginx.json
+++ b/deploy/grafana/dashboards/nginx.json
@@ -530,7 +530,7 @@
       "steppedLine": false,
       "targets": [
         {
-          "expr": "round(sum(irate(nginx_ingress_controller_requests{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (ingress), 0.001)",
+          "expr": "round(sum(irate(nginx_ingress_controller_requests{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",exported_namespace=~\"$exported_namespace\",ingress=~\"$ingress\"}[2m])) by (ingress), 0.001)",
           "format": "time_series",
           "hide": false,
           "instant": false,
@@ -637,7 +637,7 @@
       "steppedLine": false,
       "targets": [
         {
-          "expr": "sum(rate(nginx_ingress_controller_requests{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",namespace=~\"$namespace\",ingress=~\"$ingress\",status!~\"[4-5].*\"}[2m])) by (ingress) / sum(rate(nginx_ingress_controller_requests{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (ingress)",
+          "expr": "sum(rate(nginx_ingress_controller_requests{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",namespace=~\"$namespace\",exported_namespace=~\"$exported_namespace\",ingress=~\"$ingress\",status!~\"[4-5].*\"}[2m])) by (ingress) / sum(rate(nginx_ingress_controller_requests{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",namespace=~\"$namespace\",exported_namespace=~\"$exported_namespace\",ingress=~\"$ingress\"}[2m])) by (ingress)",
           "format": "time_series",
           "instant": false,
           "interval": "10s",
@@ -1183,7 +1183,7 @@
       ],
       "targets": [
         {
-          "expr": "histogram_quantile(0.50, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le, ingress))",
+          "expr": "histogram_quantile(0.50, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le, ingress))",
           "format": "table",
           "hide": false,
           "instant": true,
@@ -1192,7 +1192,7 @@
           "refId": "C"
         },
         {
-          "expr": "histogram_quantile(0.90, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le, ingress))",
+          "expr": "histogram_quantile(0.90, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le, ingress))",
           "format": "table",
           "hide": false,
           "instant": true,
@@ -1201,7 +1201,7 @@
           "refId": "D"
         },
         {
-          "expr": "histogram_quantile(0.99, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le, ingress))",
+          "expr": "histogram_quantile(0.99, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le, ingress))",
           "format": "table",
           "hide": false,
           "instant": true,
@@ -1210,7 +1210,7 @@
           "refId": "E"
         },
         {
-          "expr": "sum(irate(nginx_ingress_controller_request_size_sum{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (ingress)",
+          "expr": "sum(irate(nginx_ingress_controller_request_size_sum{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (ingress)",
           "format": "table",
           "hide": false,
           "instant": true,
@@ -1220,7 +1220,7 @@
           "refId": "F"
         },
         {
-          "expr": "sum(irate(nginx_ingress_controller_response_size_sum{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (ingress)",
+          "expr": "sum(irate(nginx_ingress_controller_response_size_sum{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (ingress)",
           "format": "table",
           "instant": true,
           "intervalFactor": 1,
@@ -1312,7 +1312,7 @@
       "targets": [
         {
           "exemplar": true,
-          "expr": "histogram_quantile(0.80, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le))",
+          "expr": "histogram_quantile(0.80, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le))",
           "format": "time_series",
           "hide": false,
           "instant": false,
@@ -1323,7 +1323,7 @@
         },
         {
           "exemplar": true,
-          "expr": "histogram_quantile(0.90, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le))",
+          "expr": "histogram_quantile(0.90, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le))",
           "format": "time_series",
           "hide": false,
           "instant": false,
@@ -1335,7 +1335,7 @@
         {
           "editorMode": "code",
           "exemplar": true,
-          "expr": "histogram_quantile(0.99, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le))",
+          "expr": "histogram_quantile(0.99, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le))",
           "format": "time_series",
           "hide": false,
           "instant": false,
@@ -1345,7 +1345,7 @@
           "refId": "E"
         }
       ],
-      "title": "Ingress Percentile Response Times",
+      "title": "Ingress Percentile Response Times (Ingress Namespaces)",
       "type": "timeseries"
     },
     {
@@ -1377,14 +1377,14 @@
       "targets": [
         {
           "exemplar": true,
-          "expr": "sum(increase(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\"}[2m])) by (le)",
+          "expr": "sum(increase(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le)",
           "format": "heatmap",
           "interval": "",
           "legendFormat": "{{le}}",
           "refId": "A"
         }
       ],
-      "title": "Ingress Request Latency Heatmap",
+      "title": "Ingress Request Latency Heatmap (Ingress Namespaces)",
       "tooltip": {
         "show": true,
         "showHistogram": true
@@ -1561,7 +1561,31 @@
         "query": "label_values(nginx_ingress_controller_config_hash{namespace=~\"$namespace\",controller_class=~\"$controller_class\"}, controller_pod) ",
         "refresh": 1,
         "regex": "",
-        "sort": 0,
+        "sort": 1,
+        "tagValuesQuery": "",
+        "tags": [],
+        "tagsQuery": "",
+        "type": "query",
+        "useTags": false
+      },
+      {
+        "allValue": ".*",
+        "current": {
+          "tags": [],
+          "text": "All",
+          "value": "$__all"
+        },
+        "datasource": "${DS_PROMETHEUS}",
+        "hide": 0,
+        "includeAll": true,
+        "label": "Ingress Namespace",
+        "multi": false,
+        "name": "exported_namespace",
+        "options": [],
+        "query": "label_values(nginx_ingress_controller_requests{namespace=~\"$namespace\",controller_class=~\"$controller_class\",controller_pod=~\"$controller\"}, exported_namespace) ",
+        "refresh": 1,
+        "regex": "",
+        "sort": 1,
         "tagValuesQuery": "",
         "tags": [],
         "tagsQuery": "",
@@ -1582,10 +1606,10 @@
         "multi": false,
         "name": "ingress",
         "options": [],
-        "query": "label_values(nginx_ingress_controller_requests{namespace=~\"$namespace\",controller_class=~\"$controller_class\",controller_pod=~\"$controller\"}, ingress) ",
+        "query": "label_values(nginx_ingress_controller_requests{namespace=~\"$namespace\",controller_class=~\"$controller_class\",controller_pod=~\"$controller\",exported_namespace=~\"$exported_namespace\"}, ingress) ",
         "refresh": 1,
         "regex": "",
-        "sort": 2,
+        "sort": 1,
         "tagValuesQuery": "",
         "tags": [],
         "tagsQuery": "",

From 0e3e32d0aef58ec870495268de70058c901fbc19 Mon Sep 17 00:00:00 2001
From: Samuel Vaillant <samuel.vllnt@gmail.com>
Date: Tue, 27 Feb 2024 15:06:39 +0100
Subject: [PATCH 1169/1641] test(gzip): reach ingress (#9541)

---
 test/e2e/settings/gzip.go | 114 ++++++++++++++++++++++++++++++++++----
 1 file changed, 104 insertions(+), 10 deletions(-)

diff --git a/test/e2e/settings/gzip.go b/test/e2e/settings/gzip.go
index 68e80d3a0..6f964b859 100644
--- a/test/e2e/settings/gzip.go
+++ b/test/e2e/settings/gzip.go
@@ -18,6 +18,7 @@ package settings
 
 import (
 	"fmt"
+	"net/http"
 	"strings"
 
 	"github.com/onsi/ginkgo/v2"
@@ -29,11 +30,27 @@ import (
 var _ = framework.DescribeSetting("gzip", func() {
 	f := framework.NewDefaultFramework("gzip")
 
+	host := "gzip"
+
+	ginkgo.BeforeEach(func() {
+		f.NewHttpbinDeployment()
+		f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBinService, 80, nil))
+	})
+
 	ginkgo.It("should be disabled by default", func() {
 		f.WaitForNginxConfiguration(
 			func(cfg string) bool {
 				return !strings.Contains(cfg, "gzip on;")
-			})
+			},
+		)
+
+		f.HTTPTestClient().
+			GET("/xml").
+			WithHeader("Host", host).
+			WithHeader("Accept-Encoding", "gzip").
+			Expect().
+			Status(http.StatusOK).
+			ContentEncoding()
 	})
 
 	ginkgo.It("should be enabled with default settings", func() {
@@ -50,7 +67,16 @@ var _ = framework.DescribeSetting("gzip", func() {
 					strings.Contains(cfg, fmt.Sprintf("gzip_types %s;", defaultCfg.GzipTypes)) &&
 					strings.Contains(cfg, "gzip_proxied any;") &&
 					strings.Contains(cfg, "gzip_vary on;")
-			})
+			},
+		)
+
+		f.HTTPTestClient().
+			GET("/xml").
+			WithHeader("Host", host).
+			WithHeader("Accept-Encoding", "gzip").
+			Expect().
+			Status(http.StatusOK).
+			ContentEncoding("gzip")
 	})
 
 	ginkgo.It("should set gzip_comp_level to 4", func() {
@@ -61,7 +87,16 @@ var _ = framework.DescribeSetting("gzip", func() {
 			func(cfg string) bool {
 				return strings.Contains(cfg, "gzip on;") &&
 					strings.Contains(cfg, "gzip_comp_level 4;")
-			})
+			},
+		)
+
+		f.HTTPTestClient().
+			GET("/xml").
+			WithHeader("Host", host).
+			WithHeader("Accept-Encoding", "gzip").
+			Expect().
+			Status(http.StatusOK).
+			ContentEncoding("gzip")
 	})
 
 	ginkgo.It("should set gzip_disable to msie6", func() {
@@ -72,28 +107,87 @@ var _ = framework.DescribeSetting("gzip", func() {
 			func(cfg string) bool {
 				return strings.Contains(cfg, "gzip on;") &&
 					strings.Contains(cfg, `gzip_disable "msie6";`)
-			})
+			},
+		)
+
+		f.HTTPTestClient().
+			GET("/xml").
+			WithHeader("Host", host).
+			WithHeader("Accept-Encoding", "gzip").
+			WithHeader("User-Agent", "Mozilla/4.8 [en] (Windows NT 5.1; U)").
+			Expect().
+			Status(http.StatusOK).
+			ContentEncoding("gzip")
+
+		f.HTTPTestClient().
+			GET("/xml").
+			WithHeader("Host", host).
+			WithHeader("Accept-Encoding", "gzip").
+			WithHeader("User-Agent", "Mozilla/45.0 (compatible; MSIE 6.0; Windows NT 5.1)").
+			Expect().
+			Status(http.StatusOK).
+			ContentEncoding()
 	})
 
 	ginkgo.It("should set gzip_min_length to 100", func() {
 		f.UpdateNginxConfigMapData("use-gzip", "true")
 		f.UpdateNginxConfigMapData("gzip-min-length", "100")
+		f.UpdateNginxConfigMapData("gzip-types", "application/octet-stream")
 
 		f.WaitForNginxConfiguration(
 			func(cfg string) bool {
 				return strings.Contains(cfg, "gzip on;") &&
-					strings.Contains(cfg, "gzip_min_length 100;")
-			})
+					strings.Contains(cfg, "gzip_min_length 100;") &&
+					strings.Contains(cfg, "gzip_types application/octet-stream;")
+			},
+		)
+
+		f.HTTPTestClient().
+			GET("/bytes/99").
+			WithHeader("Host", host).
+			WithHeader("Accept-Encoding", "gzip").
+			Expect().
+			Status(http.StatusOK).
+			ContentType("application/octet-stream").
+			ContentEncoding()
+
+		f.HTTPTestClient().
+			GET("/bytes/100").
+			WithHeader("Host", host).
+			WithHeader("Accept-Encoding", "gzip").
+			Expect().
+			Status(http.StatusOK).
+			ContentType("application/octet-stream").
+			ContentEncoding("gzip")
 	})
 
-	ginkgo.It("should set gzip_types to application/javascript", func() {
+	ginkgo.It("should set gzip_types to text/html", func() {
 		f.UpdateNginxConfigMapData("use-gzip", "true")
-		f.UpdateNginxConfigMapData("gzip-types", "application/javascript")
+		f.UpdateNginxConfigMapData("gzip-types", "text/html")
 
 		f.WaitForNginxConfiguration(
 			func(cfg string) bool {
 				return strings.Contains(cfg, "gzip on;") &&
-					strings.Contains(cfg, "gzip_types application/javascript;")
-			})
+					strings.Contains(cfg, "gzip_types text/html;")
+			},
+		)
+
+		f.HTTPTestClient().
+			GET("/xml").
+			WithHeader("Host", host).
+			WithHeader("Accept-Encoding", "gzip").
+			Expect().
+			Status(http.StatusOK).
+			ContentType("application/xml").
+			ContentEncoding()
+
+		f.HTTPTestClient().
+			GET("/html").
+			WithHeader("Host", host).
+			WithHeader("Accept-Encoding", "gzip").
+			Expect().
+			Status(http.StatusOK).
+			ContentType("text/html").
+			ContentEncoding("gzip")
 	})
 })

From 58f6285c7049b25d3e3f2dac310516fc9eaf2c73 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Tue, 27 Feb 2024 12:50:45 -0300
Subject: [PATCH 1170/1641] Stop reporting interrupted tests (#11027)

---
 test/e2e/framework/framework.go | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index b62ad691c..4723117c8 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -25,6 +25,7 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework/httpexpect"
 
 	"github.com/onsi/ginkgo/v2"
+	ginkgotypes "github.com/onsi/ginkgo/v2/types"
 	"github.com/stretchr/testify/assert"
 	appsv1 "k8s.io/api/apps/v1"
 	v1 "k8s.io/api/core/v1"
@@ -178,7 +179,7 @@ func (f *Framework) AfterEach() {
 		assert.Nil(ginkgo.GinkgoT(), err, "deleting IngressClass")
 	}(f.KubeClientSet, f.IngressClass)
 
-	if !ginkgo.CurrentSpecReport().Failed() {
+	if !ginkgo.CurrentSpecReport().Failed() || ginkgo.CurrentSpecReport().State.Is(ginkgotypes.SpecStateInterrupted) {
 		return
 	}
 

From bb6d1b77be818b133286dcf449e22d772b8331d9 Mon Sep 17 00:00:00 2001
From: Bazze <1932208+Bazze@users.noreply.github.com>
Date: Tue, 27 Feb 2024 18:27:48 +0100
Subject: [PATCH 1171/1641] Update controller-prometheusrules.yaml (#8902)

As fixed in pull request #7829 for the ServiceMonitor resource, this is also needed for the PrometheusRule. When
upgrading the ingress-nginx chart in our environment (via Pulumi) from a really old version to the latest (4.2.0) we
noticed it wanted to delete the PrometheusRule resource. This PR should fix that.
---
 charts/ingress-nginx/templates/controller-prometheusrules.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/templates/controller-prometheusrules.yaml b/charts/ingress-nginx/templates/controller-prometheusrules.yaml
index f0b93cc8c..41684c370 100644
--- a/charts/ingress-nginx/templates/controller-prometheusrules.yaml
+++ b/charts/ingress-nginx/templates/controller-prometheusrules.yaml
@@ -1,4 +1,4 @@
-{{- if and ( .Values.controller.metrics.enabled ) ( .Values.controller.metrics.prometheusRule.enabled ) ( .Capabilities.APIVersions.Has "monitoring.coreos.com/v1" ) -}}
+{{- if and .Values.controller.metrics.enabled .Values.controller.metrics.prometheusRule.enabled -}}
 apiVersion: monitoring.coreos.com/v1
 kind: PrometheusRule
 metadata:

From b4ea953cced3890b26c7d2cdd3adb071a65d675f Mon Sep 17 00:00:00 2001
From: Khoo Hao Yit <khoohaoyit16@gmail.com>
Date: Wed, 28 Feb 2024 01:41:09 +0800
Subject: [PATCH 1172/1641] add missing backend-protocol annotation option
 (#9545)

---
 docs/user-guide/nginx-configuration/annotations.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 42dc918e3..184c4993b 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -39,7 +39,7 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/auth-proxy-set-headers](#external-authentication)|string|
 |[nginx.ingress.kubernetes.io/auth-snippet](#external-authentication)|string|
 |[nginx.ingress.kubernetes.io/enable-global-auth](#external-authentication)|"true" or "false"|
-|[nginx.ingress.kubernetes.io/backend-protocol](#backend-protocol)|string|HTTP,HTTPS,GRPC,GRPCS|
+|[nginx.ingress.kubernetes.io/backend-protocol](#backend-protocol)|string|
 |[nginx.ingress.kubernetes.io/canary](#canary)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/canary-by-header](#canary)|string|
 |[nginx.ingress.kubernetes.io/canary-by-header-value](#canary)|string|
@@ -907,7 +907,7 @@ Include /etc/nginx/owasp-modsecurity-crs/nginx-modsecurity.conf
 ### Backend Protocol
 
 Using `backend-protocol` annotations is possible to indicate how NGINX should communicate with the backend service. (Replaces `secure-backends` in older versions)
-Valid Values: HTTP, HTTPS, GRPC, GRPCS and FCGI
+Valid Values: HTTP, HTTPS, AUTO_HTTP, GRPC, GRPCS and FCGI
 
 By default NGINX uses `HTTP`.
 

From fa0bf819841ddf11b71a7ae1228a1761c9596e8c Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Tue, 27 Feb 2024 14:52:42 -0300
Subject: [PATCH 1173/1641] Bump go libraries (#11023)

* Bump go libraries

* Fix update codegen execution

* Fix errors on klog

* Fix gzip test

* Bump libraries on webhook certgen

* Fix webhook-certgen compilation
---
 cmd/nginx/logger.go                           |   4 +-
 go.mod                                        | 107 +--
 go.sum                                        | 251 +++---
 go.work.sum                                   | 468 ++++++++++-
 hack/update-codegen.sh                        |   4 +-
 images/kube-webhook-certgen/TAG               |   2 +-
 images/kube-webhook-certgen/rootfs/Dockerfile |   2 +-
 images/kube-webhook-certgen/rootfs/go.mod     |  72 +-
 images/kube-webhook-certgen/rootfs/go.sum     | 764 ++----------------
 internal/ingress/annotations/rewrite/main.go  |   8 +-
 .../ingress/metric/collectors/testutils.go    |   4 +-
 magefiles/go.mod                              |  17 +-
 magefiles/go.sum                              |  34 +-
 test/e2e/settings/gzip.go                     |   4 +-
 test/e2e/settings/pod_security_policy.go      | 142 ----
 .../settings/pod_security_policy_volumes.go   | 127 ---
 16 files changed, 765 insertions(+), 1245 deletions(-)
 delete mode 100644 test/e2e/settings/pod_security_policy.go
 delete mode 100644 test/e2e/settings/pod_security_policy_volumes.go

diff --git a/cmd/nginx/logger.go b/cmd/nginx/logger.go
index 323085c83..8f0db0257 100644
--- a/cmd/nginx/logger.go
+++ b/cmd/nginx/logger.go
@@ -33,11 +33,11 @@ func logger(address string) {
 	server.SetFormat(syslog.RFC3164)
 	server.SetHandler(handler)
 	if err := server.ListenUDP(address); err != nil {
-		klog.Fatalf("failed bind internal syslog: %w", err)
+		klog.Fatalf("failed bind internal syslog: %s", err.Error())
 	}
 
 	if err := server.Boot(); err != nil {
-		klog.Fatalf("failed to boot internal syslog: %w", err)
+		klog.Fatalf("failed to boot internal syslog: %s", err.Error())
 	}
 	klog.Infof("Is Chrooted, starting logger")
 
diff --git a/go.mod b/go.mod
index 7b18f3335..1aed07bba 100644
--- a/go.mod
+++ b/go.mod
@@ -19,108 +19,113 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.18.0
 	github.com/prometheus/client_model v0.6.0
-	github.com/prometheus/common v0.46.0
+	github.com/prometheus/common v0.48.0
 	github.com/spf13/cobra v1.8.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.4
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.19.0
-	google.golang.org/grpc v1.61.0
-	google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7
+	golang.org/x/crypto v0.20.0
+	google.golang.org/grpc v1.62.0
+	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.27.6
-	k8s.io/apiextensions-apiserver v0.27.6
-	k8s.io/apimachinery v0.27.6
-	k8s.io/apiserver v0.27.6
-	k8s.io/cli-runtime v0.27.6
-	k8s.io/client-go v0.27.6
-	k8s.io/code-generator v0.27.6
-	k8s.io/component-base v0.27.6
-	k8s.io/klog/v2 v2.100.1
+	k8s.io/api v0.29.2
+	k8s.io/apiextensions-apiserver v0.29.2
+	k8s.io/apimachinery v0.29.2
+	k8s.io/apiserver v0.29.2
+	k8s.io/cli-runtime v0.29.2
+	k8s.io/client-go v0.29.2
+	k8s.io/code-generator v0.29.2
+	k8s.io/component-base v0.29.2
+	k8s.io/klog/v2 v2.120.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.14.6
+	sigs.k8s.io/controller-runtime v0.17.2
 	sigs.k8s.io/mdtoc v1.1.0
 )
 
 require (
+	github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 // indirect
 	github.com/BurntSushi/toml v1.3.2 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/blang/semver/v4 v4.0.0 // indirect
 	github.com/cespare/xxhash/v2 v2.2.0 // indirect
-	github.com/coreos/go-systemd/v22 v22.4.0 // indirect
+	github.com/coreos/go-systemd/v22 v22.5.0 // indirect
 	github.com/cyphar/filepath-securejoin v0.2.4 // indirect
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/eapache/queue v1.1.0 // indirect
-	github.com/emicklei/go-restful/v3 v3.10.2 // indirect
-	github.com/evanphx/json-patch v4.12.0+incompatible // indirect
-	github.com/evanphx/json-patch/v5 v5.6.0 // indirect
+	github.com/emicklei/go-restful/v3 v3.11.3 // indirect
+	github.com/evanphx/json-patch v5.9.0+incompatible // indirect
+	github.com/evanphx/json-patch/v5 v5.9.0 // indirect
 	github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa // indirect
-	github.com/go-errors/errors v1.4.2 // indirect
-	github.com/go-logr/logr v1.3.0 // indirect
-	github.com/go-openapi/jsonpointer v0.19.6 // indirect
-	github.com/go-openapi/jsonreference v0.20.1 // indirect
-	github.com/go-openapi/swag v0.22.3 // indirect
+	github.com/go-errors/errors v1.5.1 // indirect
+	github.com/go-logr/logr v1.4.1 // indirect
+	github.com/go-openapi/jsonpointer v0.20.2 // indirect
+	github.com/go-openapi/jsonreference v0.20.4 // indirect
+	github.com/go-openapi/swag v0.22.9 // indirect
 	github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 // indirect
-	github.com/godbus/dbus/v5 v5.0.6 // indirect
+	github.com/godbus/dbus/v5 v5.1.0 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
 	github.com/golang/protobuf v1.5.3 // indirect
-	github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7 // indirect
-	github.com/google/btree v1.0.1 // indirect
-	github.com/google/gnostic v0.5.7-v3refs // indirect
+	github.com/gomarkdown/markdown v0.0.0-20231222211730-1d6d20845b47 // indirect
+	github.com/google/btree v1.1.2 // indirect
+	github.com/google/gnostic-models v0.6.8 // indirect
 	github.com/google/go-cmp v0.6.0 // indirect
-	github.com/google/gofuzz v1.1.0 // indirect
-	github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98 // indirect
+	github.com/google/gofuzz v1.2.0 // indirect
+	github.com/google/pprof v0.0.0-20240225044709-fd706174c886 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
-	github.com/google/uuid v1.4.0 // indirect
-	github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 // indirect
-	github.com/imdario/mergo v0.3.6 // indirect
+	github.com/google/uuid v1.6.0 // indirect
+	github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect
+	github.com/imdario/mergo v0.3.16 // indirect
 	github.com/inconshreveable/mousetrap v1.1.0 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
 	github.com/mailru/easyjson v0.7.7 // indirect
 	github.com/mattn/go-colorable v0.1.13 // indirect
+	github.com/mattn/go-isatty v0.0.19 // indirect
 	github.com/mmarkdown/mmark v2.0.40+incompatible // indirect
-	github.com/moby/sys/mountinfo v0.5.0 // indirect
+	github.com/moby/sys/mountinfo v0.7.1 // indirect
+	github.com/moby/term v0.5.0 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
 	github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 // indirect
 	github.com/onsi/ginkgo v1.16.5 // indirect
-	github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 // indirect
+	github.com/opencontainers/runtime-spec v1.2.0 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/prometheus/procfs v0.12.0 // indirect
-	github.com/sergi/go-diff v1.1.0 // indirect
-	github.com/sirupsen/logrus v1.9.0 // indirect
-	github.com/xlab/treeprint v1.1.0 // indirect
+	github.com/sergi/go-diff v1.3.1 // indirect
+	github.com/sirupsen/logrus v1.9.3 // indirect
+	github.com/xlab/treeprint v1.2.0 // indirect
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	github.com/yudai/pp v2.0.1+incompatible // indirect
-	go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 // indirect
-	golang.org/x/mod v0.14.0 // indirect
-	golang.org/x/net v0.20.0 // indirect
-	golang.org/x/oauth2 v0.16.0 // indirect
+	go.starlark.net v0.0.0-20240123142251-f86470692795 // indirect
+	golang.org/x/mod v0.15.0 // indirect
+	golang.org/x/net v0.21.0 // indirect
+	golang.org/x/oauth2 v0.17.0 // indirect
+	golang.org/x/sync v0.6.0 // indirect
 	golang.org/x/sys v0.17.0 // indirect
 	golang.org/x/term v0.17.0 // indirect
 	golang.org/x/text v0.14.0 // indirect
-	golang.org/x/time v0.3.0 // indirect
-	golang.org/x/tools v0.16.1 // indirect
+	golang.org/x/time v0.5.0 // indirect
+	golang.org/x/tools v0.18.0 // indirect
 	google.golang.org/appengine v1.6.8 // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20231106174013-bbf56f31fb17 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20240221002015-b0ce06bbee7c // indirect
 	google.golang.org/protobuf v1.32.0 // indirect
+	gopkg.in/evanphx/json-patch.v5 v5.9.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
-	k8s.io/gengo v0.0.0-20220902162205-c0856e24416d // indirect
-	k8s.io/kube-openapi v0.0.0-20230501164219-8b0f38b5fd1f // indirect
-	k8s.io/utils v0.0.0-20230209194617-a36077c30491 // indirect
+	k8s.io/gengo v0.0.0-20240226174109-00c4be8627da // indirect
+	k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b // indirect
+	k8s.io/utils v0.0.0-20240102154912-e7106e64919e // indirect
 	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
-	sigs.k8s.io/kustomize/api v0.13.2 // indirect
-	sigs.k8s.io/kustomize/kyaml v0.14.1 // indirect
-	sigs.k8s.io/structured-merge-diff/v4 v4.2.3 // indirect
-	sigs.k8s.io/yaml v1.3.0 // indirect
+	sigs.k8s.io/kustomize/api v0.16.0 // indirect
+	sigs.k8s.io/kustomize/kyaml v0.16.0 // indirect
+	sigs.k8s.io/structured-merge-diff/v4 v4.4.1 // indirect
+	sigs.k8s.io/yaml v1.4.0 // indirect
 )
diff --git a/go.sum b/go.sum
index 4dc71934f..88d1a1a44 100644
--- a/go.sum
+++ b/go.sum
@@ -33,6 +33,8 @@ cloud.google.com/go/storage v1.10.0/go.mod h1:FLPqc6j+Ki4BU591ie1oL6qBQGu2Bl/tZ9
 dario.cat/mergo v1.0.0 h1:AGCNq9Evsj31mOgNPcLyXc+4PNABt905YmuqPYYpBWk=
 dario.cat/mergo v1.0.0/go.mod h1:uNxQE+84aUszobStD9th8a29P2fMDhsBdgRYvZOxGmk=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
+github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 h1:L/gRVlceqvL25UVaW/CKtUDjefjrs0SPonmDGUVOYP0=
+github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161/go.mod h1:xomTg63KZ2rFqZQzSB4Vz2SUXa1BpHTVz9L5PTmPC4E=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/toml v1.3.2 h1:o7IhLm0Msx3BaB+n3Ag7L8EVlByGnpq14C4YWiu/gL8=
 github.com/BurntSushi/toml v1.3.2/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
@@ -59,30 +61,31 @@ github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5P
 github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
 github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc=
-github.com/coreos/go-systemd/v22 v22.4.0 h1:y9YHcjnjynCd/DVbg5j9L/33jQM3MxJlbj/zWskzfGU=
-github.com/coreos/go-systemd/v22 v22.4.0/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
+github.com/coreos/go-systemd/v22 v22.5.0 h1:RrqgGjYQKalulkV8NGVIfkXQf6YYmOyiJKk8iXXhfZs=
+github.com/coreos/go-systemd/v22 v22.5.0/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
 github.com/cpuguy83/go-md2man/v2 v2.0.3/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
+github.com/creack/pty v1.1.18 h1:n56/Zwd5o6whRC5PMGretI4IdRLlmBXYNjScPaBgsbY=
+github.com/creack/pty v1.1.18/go.mod h1:MOBLtS5ELjhRRrroQr9kyvTxUAFNvYEK993ew/Vr4O4=
 github.com/cyphar/filepath-securejoin v0.2.4 h1:Ugdm7cg7i6ZK6x3xDF1oEu1nfkyfH53EtKeQYTC3kyg=
 github.com/cyphar/filepath-securejoin v0.2.4/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815/go.mod h1:WwZ+bS3ebgob9U8Nd0kOddGdZWjyMGR8Wziv+TBNwSE=
 github.com/eapache/channels v1.1.0 h1:F1taHcn7/F0i8DYqKXJnyhJcVpp2kgFcNePxXtnyu4k=
 github.com/eapache/channels v1.1.0/go.mod h1:jMm2qB5Ubtg9zLd+inMZd2/NUvXgzmWXsDaLyQIGfH0=
 github.com/eapache/queue v1.1.0 h1:YOEu7KNc61ntiQlcEeUIoDTJ2o8mQznoNvUhiigpIqc=
 github.com/eapache/queue v1.1.0/go.mod h1:6eCeP0CKFpHLu8blIFXhExK/dRa7WDZfr6jVFPTqq+I=
-github.com/emicklei/go-restful/v3 v3.10.2 h1:hIovbnmBTLjHXkqEBUz3HGpXZdM7ZrE9fJIZIqlJLqE=
-github.com/emicklei/go-restful/v3 v3.10.2/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
+github.com/emicklei/go-restful/v3 v3.11.3 h1:yagOQz/38xJmcNeZJtrUcKjkHRltIaIFXKWeG1SkWGE=
+github.com/emicklei/go-restful/v3 v3.11.3/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
-github.com/evanphx/json-patch v4.12.0+incompatible h1:4onqiflcdA9EOZ4RxV643DvftH5pOlLGNtQ5lPWQu84=
-github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
-github.com/evanphx/json-patch/v5 v5.6.0 h1:b91NhWfaz02IuVxO9faSllyAtNXHMPkC5J8sJCLunww=
-github.com/evanphx/json-patch/v5 v5.6.0/go.mod h1:G79N1coSVB93tBe7j6PhzjmR3/2VvlbKOFpnXhI9Bw4=
+github.com/evanphx/json-patch v5.9.0+incompatible h1:fBXyNpNMuTTDdquAq/uisOr2lShz4oaXpDTX2bLe7ls=
+github.com/evanphx/json-patch v5.9.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
+github.com/evanphx/json-patch/v5 v5.9.0 h1:kcBlZQbplgElYIlo/n1hJbls2z/1awpXxpRi0/FOJfg=
+github.com/evanphx/json-patch/v5 v5.9.0/go.mod h1:VNkHZ/282BpEyt/tObQO8s5CMPmYYq14uClGH4abBuQ=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
 github.com/fsnotify/fsnotify v1.7.0 h1:8JEhPFa5W2WU7YfeZzPNqzMP6Lwt7L2715Ggo0nosvA=
@@ -90,8 +93,8 @@ github.com/fsnotify/fsnotify v1.7.0/go.mod h1:40Bi/Hjc2AVfZrqy+aj+yEI+/bRxZnMJyT
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
 github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa h1:RDBNVkRviHZtvDvId8XSGPu3rmpmSe+wKRcEWNgsfWU=
 github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
-github.com/go-errors/errors v1.4.2 h1:J6MZopCL4uSllY1OfXM374weqZFFItUbrImctkmUxIA=
-github.com/go-errors/errors v1.4.2/go.mod h1:sIVyrIiJhuEF+Pj9Ebtd6P/rEYROXFi3BopGUQ5a5Og=
+github.com/go-errors/errors v1.5.1 h1:ZwEMSLRCapFLflTpT7NKaAc7ukJ8ZPEjzlxt8rPN8bk=
+github.com/go-errors/errors v1.5.1/go.mod h1:sIVyrIiJhuEF+Pj9Ebtd6P/rEYROXFi3BopGUQ5a5Og=
 github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1/go.mod h1:vR7hzQXu2zJy9AVAgeJqvqgH9Q5CA+iKCZ2gyEVpxRU=
 github.com/go-gl/glfw/v3.3/glfw v0.0.0-20191125211704-12ad95a8df72/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8=
 github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8=
@@ -102,24 +105,23 @@ github.com/go-logfmt/logfmt v0.3.0/go.mod h1:Qt1PoO58o5twSAckw1HlFXLmHsOX5/0LbT9
 github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V4qmtdjCk=
 github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A=
 github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
-github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
-github.com/go-logr/logr v1.3.0 h1:2y3SDp0ZXuc6/cjLSZ+Q3ir+QB9T/iG5yYRXqsagWSY=
-github.com/go-logr/logr v1.3.0/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
-github.com/go-logr/zapr v1.2.3 h1:a9vnzlIBPQBBkeaR9IuMUfmVOrQlkoC4YfPoFkX3T7A=
-github.com/go-logr/zapr v1.2.3/go.mod h1:eIauM6P8qSvTw5o2ez6UEAfGjQKrxQTl5EoK+Qa2oG4=
-github.com/go-openapi/jsonpointer v0.19.6 h1:eCs3fxoIi3Wh6vtgmLTOjdhSpiqphQ+DaPn38N2ZdrE=
-github.com/go-openapi/jsonpointer v0.19.6/go.mod h1:osyAmYz/mB/C3I+WsTTSgw1ONzaLJoLCyoi6/zppojs=
-github.com/go-openapi/jsonreference v0.20.1 h1:FBLnyygC4/IZZr893oiomc9XaghoveYTrLC1F86HID8=
-github.com/go-openapi/jsonreference v0.20.1/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
-github.com/go-openapi/swag v0.22.3 h1:yMBqmnQ0gyZvEb/+KzuWZOXgllrXT4SADYbvDaXHv/g=
-github.com/go-openapi/swag v0.22.3/go.mod h1:UzaqsxGiab7freDnrUUra0MwWfN/q7tE4j+VcZ0yl14=
+github.com/go-logr/logr v1.4.1 h1:pKouT5E8xu9zeFC39JXRDukb6JFQPXM5p5I91188VAQ=
+github.com/go-logr/logr v1.4.1/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
+github.com/go-logr/zapr v1.3.0 h1:XGdV8XW8zdwFiwOA2Dryh1gj2KRQyOOoNmBy4EplIcQ=
+github.com/go-logr/zapr v1.3.0/go.mod h1:YKepepNBd1u/oyhd/yQmtjVXmm9uML4IXUgMOwR8/Gg=
+github.com/go-openapi/jsonpointer v0.20.2 h1:mQc3nmndL8ZBzStEo3JYF8wzmeWffDH4VbXz58sAx6Q=
+github.com/go-openapi/jsonpointer v0.20.2/go.mod h1:bHen+N0u1KEO3YlmqOjTT9Adn1RfD91Ar825/PuiRVs=
+github.com/go-openapi/jsonreference v0.20.4 h1:bKlDxQxQJgwpUSgOENiMPzCTBVuc7vTdXSSgNeAhojU=
+github.com/go-openapi/jsonreference v0.20.4/go.mod h1:5pZJyJP2MnYCpoeoMAql78cCHauHj0V9Lhc506VOpw4=
+github.com/go-openapi/swag v0.22.9 h1:XX2DssF+mQKM2DHsbgZK74y/zj4mo9I99+89xUmuZCE=
+github.com/go-openapi/swag v0.22.9/go.mod h1:3/OXnFfnMAwBD099SwYRk7GD3xOrr1iL7d/XNLXVVwE=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
 github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
 github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 h1:tfuBGBXKqDEevZMzYi5KSi8KkcZtzBcTgAUUtapy0OI=
 github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572/go.mod h1:9Pwr4B2jHnOSGXyyzV8ROjYa2ojvAY6HCGYYfMoC3Ls=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
-github.com/godbus/dbus/v5 v5.0.6 h1:mkgN1ofwASrYnJ5W6U/BxG15eXXXjirgZc7CLqkcaro=
-github.com/godbus/dbus/v5 v5.0.6/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
+github.com/godbus/dbus/v5 v5.1.0 h1:4KLkAxT3aOY8Li4FRJe/KvhoNFFxo0m6fNuFUO8QJUk=
+github.com/godbus/dbus/v5 v5.1.0/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
@@ -154,14 +156,15 @@ github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaS
 github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/golang/protobuf v1.5.3 h1:KhyjKVUg7Usr/dYsdSqoFveMYd5ko72D+zANwlG1mmg=
 github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
-github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7 h1:oKYOfNR7Hp6XpZ4JqolL5u642Js5Z0n7psPVl+S5heo=
 github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7/go.mod h1:aii0r/K0ZnHv7G0KF7xy1v0A7s2Ljrb5byB7MO5p6TU=
+github.com/gomarkdown/markdown v0.0.0-20231222211730-1d6d20845b47 h1:k4Tw0nt6lwro3Uin8eqoET7MDA4JnT8YgbCjc/g5E3k=
+github.com/gomarkdown/markdown v0.0.0-20231222211730-1d6d20845b47/go.mod h1:JDGcbDT52eL4fju3sZ4TeHGsQwhG9nbDV21aMyhwPoA=
 github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/btree v1.0.0/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
-github.com/google/btree v1.0.1 h1:gK4Kx5IaGY9CD5sPJ36FHiBJ6ZXl0kilRiiCj+jdYp4=
-github.com/google/btree v1.0.1/go.mod h1:xXMiIv4Fb/0kKde4SpL7qlzvu5cMJDRkFDxJfI9uaxA=
-github.com/google/gnostic v0.5.7-v3refs h1:FhTMOKj2VhjpouxvWJAV1TL304uMlb9zcDqkl6cEI54=
-github.com/google/gnostic v0.5.7-v3refs/go.mod h1:73MKFl6jIHelAJNaBGFzt3SPtZULs9dYrGFt8OiIsHQ=
+github.com/google/btree v1.1.2 h1:xf4v41cLI2Z6FxbKm+8Bu+m8ifhj15JuZ9sa0jZCMUU=
+github.com/google/btree v1.1.2/go.mod h1:qOPhT0dTNdNzV6Z/lhRX0YXUafgPLFUh+gZMl761Gm4=
+github.com/google/gnostic-models v0.6.8 h1:yo/ABAfM5IMRsS1VnXjTBvUb61tFIHozhlYvRgGre9I=
+github.com/google/gnostic-models v0.6.8/go.mod h1:5n7qKqH0f5wFt+aWF8CW6pZLLNOfYuF5OpfBSENuI8U=
 github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
@@ -172,11 +175,13 @@ github.com/google/go-cmp v0.5.1/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/
 github.com/google/go-cmp v0.5.4/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.6/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.5.9/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
 github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/gofuzz v1.1.0 h1:Hsa8mG0dQ46ij8Sl2AYJDUv1oA9/d6Vk+3LG99Oe02g=
 github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
+github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
+github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/martian v2.1.0+incompatible/go.mod h1:9I4somxYTbIHy5NJKHRl3wXiIaQGbYVAs8BPL6v8lEs=
 github.com/google/martian/v3 v3.0.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
 github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
@@ -186,26 +191,25 @@ github.com/google/pprof v0.0.0-20200212024743-f11f1df84d12/go.mod h1:ZgVRPoUq/hf
 github.com/google/pprof v0.0.0-20200229191704-1ebb73c60ed3/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200430221834-fc25d7d30c6d/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200708004538-1a94d8640e99/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98 h1:pUa4ghanp6q4IJHwE9RwLgmVFfReJN+KbQ8ExNEUUoQ=
-github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98/go.mod h1:czg5+yv1E0ZGTi6S6vVK1mke0fV+FaUhNGcd6VRS9Ik=
+github.com/google/pprof v0.0.0-20240225044709-fd706174c886 h1:JSJUTZTQT1Gzb2ROdAKOY3HwzBYcclS2GgumhMfHqjw=
+github.com/google/pprof v0.0.0-20240225044709-fd706174c886/go.mod h1:czg5+yv1E0ZGTi6S6vVK1mke0fV+FaUhNGcd6VRS9Ik=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
-github.com/google/uuid v1.4.0 h1:MtMxsa51/r9yyhkyLsVeVt0B+BGQZzpQiTQ4eHZ8bc4=
-github.com/google/uuid v1.4.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
+github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
-github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7 h1:pdN6V1QBWetyv/0+wjACpqVH+eVULgEjkurDLq3goeM=
-github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
+github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 h1:+ngKgrYPPJrOjhax5N+uePQ0Fh1Z7PheYoUI/0nzkPA=
+github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
-github.com/imdario/mergo v0.3.6 h1:xTNEAn+kxVO7dTZGu0CegyqKZmoWFI0rF8UxjlB2d28=
-github.com/imdario/mergo v0.3.6/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
+github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4=
+github.com/imdario/mergo v0.3.16/go.mod h1:WBLT9ZmE3lPoWsEzCh9LPo3TiwVN+ZKEjmz+hD27ysY=
 github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
 github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
-github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
 github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
 github.com/jpillora/backoff v1.0.0/go.mod h1:J/6gKK9jxlEcS3zixgDgUAsiuZ7yrSoa/FX5e0EB2j4=
@@ -241,8 +245,8 @@ github.com/mailru/easyjson v0.7.7 h1:UGYAvKxe3sBsEDzO8ZeWOSlIQfWFlxbzLZe7hwFURr0
 github.com/mailru/easyjson v0.7.7/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
 github.com/mattn/go-colorable v0.1.13 h1:fFA4WZxdEF4tXPZVKMLwD8oUnCTTo08duU7wxecdEvA=
 github.com/mattn/go-colorable v0.1.13/go.mod h1:7S9/ev0klgBDR4GtXTXX8a3vIGJpMovkB8vQcUbaXHg=
-github.com/mattn/go-isatty v0.0.16 h1:bq3VjFmv/sOjHtdEhmkEV4x1AJtvUvOJ2PFAZ5+peKQ=
 github.com/mattn/go-isatty v0.0.16/go.mod h1:kYGgaQfpe5nmfYZH+SKPsOc2e4SrIfOl2e/yFXSvRLM=
+github.com/mattn/go-isatty v0.0.19 h1:JITubQf0MOLdlGRuRq+jtsDlekdYPia9ZFsB8h/APPA=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
 github.com/mitchellh/go-ps v1.0.0 h1:i6ampVEEF4wQFF+bkYfwYgY+F/uYJDktmvLPf7qIgjc=
 github.com/mitchellh/go-ps v1.0.0/go.mod h1:J4lOc8z8yJs6vUwklHw2XEIiT4z4C40KtWVN3nvg8Pg=
@@ -252,8 +256,10 @@ github.com/mitchellh/mapstructure v1.5.0 h1:jeMsZIYE/09sWLaz43PL7Gy6RuMjD2eJVyua
 github.com/mitchellh/mapstructure v1.5.0/go.mod h1:bFUtVrKA4DC2yAKiSyO/QUcy7e+RRV2QTWOzhPopBRo=
 github.com/mmarkdown/mmark v2.0.40+incompatible h1:vMeUeDzBK3H+/mU0oMVfMuhSXJlIA+DE/DMPQNAj5C4=
 github.com/mmarkdown/mmark v2.0.40+incompatible/go.mod h1:Uvmoz7tvsWpr7bMVxIpqZPyN3FbOtzDmnsJDFp7ltJs=
-github.com/moby/sys/mountinfo v0.5.0 h1:2Ks8/r6lopsxWi9m58nlwjaeSzUX9iiL1vj5qB/9ObI=
-github.com/moby/sys/mountinfo v0.5.0/go.mod h1:3bMD3Rg+zkqx8MRYPi7Pyb0Ie97QEBmdxbhnCLlSvSU=
+github.com/moby/sys/mountinfo v0.7.1 h1:/tTvQaSJRr2FshkhXiIpux6fQ2Zvc4j7tAhMTStAG2g=
+github.com/moby/sys/mountinfo v0.7.1/go.mod h1:IJb6JQeOklcdMU9F5xQ8ZALD+CUr5VlGpwtX+VE0rpI=
+github.com/moby/term v0.5.0 h1:xt8Q1nalod/v7BqbG21f8mQPqH+xAaC9C3N3wfWbVP0=
+github.com/moby/term v0.5.0/go.mod h1:8FzsFHVUBGZdbDsJw/ot+X+d5HLUbvklYLJ9uGfcI3Y=
 github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w8PVh93nsPXa1VrQ6jlwL5oN8l14QlcNfg=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
@@ -289,8 +295,8 @@ github.com/onsi/gomega v1.30.0 h1:hvMK7xYz4D3HapigLTeGdId/NcfQx1VHMJc60ew99+8=
 github.com/onsi/gomega v1.30.0/go.mod h1:9sxs+SwGrKI0+PWe4Fxa9tFQQBG5xSsSbMXOI8PPpoQ=
 github.com/opencontainers/runc v1.1.12 h1:BOIssBaW1La0/qbNZHXOOa71dZfZEQOzW7dqQf3phss=
 github.com/opencontainers/runc v1.1.12/go.mod h1:S+lQwSfncpBha7XTy/5lBwWgm5+y5Ma/O44Ekby9FK8=
-github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417 h1:3snG66yBm59tKhhSPQrQ/0bCrv1LQbKt40LnUPiUxdc=
-github.com/opencontainers/runtime-spec v1.0.3-0.20210326190908-1c3f411f0417/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
+github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
+github.com/opencontainers/runtime-spec v1.2.0/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
 github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
@@ -316,8 +322,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.46.0 h1:doXzt5ybi1HBKpsZOL0sSkaNHJJqkyfEWZGGqqScV0Y=
-github.com/prometheus/common v0.46.0/go.mod h1:Tp0qkxpb9Jsg54QMe+EAmqXkSV7Evdy1BTn+g2pa/hQ=
+github.com/prometheus/common v0.48.0 h1:QO8U2CdOzSn1BBsmXJXduaaW+dY/5QLjfB8svtSzKKE=
+github.com/prometheus/common v0.48.0/go.mod h1:0/KsvlIEfPQCQ5I2iNSAWKPZziNCvRs5EC6ILDTlAPc=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
@@ -332,21 +338,19 @@ github.com/rogpeppe/go-internal v1.8.0/go.mod h1:WmiCO8CzOY8rg0OYDC4/i/2WRWAB6po
 github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
 github.com/rogpeppe/go-internal v1.11.0/go.mod h1:ddIwULY96R17DhadqLgMfk9H9tvdUzkipdSkR5nkCZA=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
-github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
-github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=
+github.com/sergi/go-diff v1.3.1 h1:xkr+Oxo4BOQKmkn/B9eMK0g5Kg/983T9DqqPHwYqD+8=
+github.com/sergi/go-diff v1.3.1/go.mod h1:aMJSSKb2lpPvRNec0+w3fl7LP9IOFzdc9Pa4NFbPK1I=
 github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
 github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE=
 github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
-github.com/sirupsen/logrus v1.9.0 h1:trlNQbNUG3OdDrDil03MCb1H2o9nJ1x4/5LYw7byDE0=
-github.com/sirupsen/logrus v1.9.0/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
+github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ=
+github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
 github.com/spf13/cobra v1.8.0 h1:7aJaZx1B85qltLMc546zn58BxxfZdR/W22ej9CFoEf0=
 github.com/spf13/cobra v1.8.0/go.mod h1:WXLWApfZ71AjXPya3WOlMsY9yMs7YeiHhFVlvLyhcho=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
-github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
 github.com/stretchr/objx v0.5.0 h1:1zr/of2m5FGMsad5YfcqgdqdWrIhu+EBEJRhR1U7z/c=
 github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
 github.com/stretchr/testify v1.1.3/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
@@ -356,14 +360,11 @@ github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81P
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
-github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
 github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
-github.com/xlab/treeprint v1.1.0 h1:G/1DjNkPpfZCFt9CSh6b5/nY4VimlbHF3Rh4obvtzDk=
-github.com/xlab/treeprint v1.1.0/go.mod h1:gj5Gd3gPdKtR1ikdDK6fnFLdmIS0X30kTTuNd/WEJu0=
+github.com/xlab/treeprint v1.2.0 h1:HzHnuAF1plUN2zGlAFHbSQP2qJ0ZAD3XF5XD7OesXRQ=
+github.com/xlab/treeprint v1.2.0/go.mod h1:gj5Gd3gPdKtR1ikdDK6fnFLdmIS0X30kTTuNd/WEJu0=
 github.com/yudai/gojsondiff v1.0.0 h1:27cbfqXLVEJ1o8I6v3y9lg8Ydm53EKqHXAOMxEGlCOA=
 github.com/yudai/gojsondiff v1.0.0/go.mod h1:AY32+k2cwILAkW1fbgxQ5mUmMiZFgLIV+FBNExI05xg=
 github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 h1:BHyfKlQyqbsFN5p3IfnEUduWvb9is428/nNb5L3U01M=
@@ -382,14 +383,14 @@ go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8=
 go.opencensus.io v0.22.2/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
 go.opencensus.io v0.22.3/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
 go.opencensus.io v0.22.4/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
-go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5 h1:+FNtrFTmVw0YZGpBGX56XDee331t6JAXeK2bcyhLOOc=
-go.starlark.net v0.0.0-20200306205701-8dd3e2ee1dd5/go.mod h1:nmDLcffg48OtT/PSW0Hg7FvpRQsQh5OSqIylirxKC7o=
-go.uber.org/atomic v1.7.0 h1:ADUqmZGgLDDfbSL9ZmPxKTybcoEYHgpYfELNoN+7hsw=
-go.uber.org/atomic v1.7.0/go.mod h1:fEN4uk6kAWBTFdckzkM89CLk9XfWZrxpCo0nPH17wJc=
-go.uber.org/multierr v1.6.0 h1:y6IPFStTAIT5Ytl7/XYmHvzXQ7S3g/IeZW9hyZ5thw4=
-go.uber.org/multierr v1.6.0/go.mod h1:cdWPpRnG4AhwMwsgIHip0KRBQjJy5kYEpYjJxpXp9iU=
-go.uber.org/zap v1.24.0 h1:FiJd5l1UOLj0wCgbSE0rwwXHzEdAZS6hiiSnxJN/D60=
-go.uber.org/zap v1.24.0/go.mod h1:2kMP+WWQ8aoFoedH3T2sq6iJ2yDWpHbP0f6MQbS9Gkg=
+go.starlark.net v0.0.0-20240123142251-f86470692795 h1:LmbG8Pq7KDGkglKVn8VpZOZj6vb9b8nKEGcg9l03epM=
+go.starlark.net v0.0.0-20240123142251-f86470692795/go.mod h1:LcLNIzVOMp4oV+uusnpk+VU+SzXaJakUuBjoCSWH5dM=
+go.uber.org/goleak v1.3.0 h1:2K3zAYmnTNqV73imy9J1T3WC+gmCePx2hEGkimedGto=
+go.uber.org/goleak v1.3.0/go.mod h1:CoHD4mav9JJNrW/WLlf7HGZPjdw8EucARQHekz1X6bE=
+go.uber.org/multierr v1.11.0 h1:blXXJkSxSSfBVBlC76pxqeO+LN3aDfLQo+309xJstO0=
+go.uber.org/multierr v1.11.0/go.mod h1:20+QtiLqy0Nd6FdQB9TLXag12DsQkrbs3htMFfDN80Y=
+go.uber.org/zap v1.26.0 h1:sI7k6L95XOKS281NhVKOFCUNIvv9e0w4BF8N3u+tCRo=
+go.uber.org/zap v1.26.0/go.mod h1:dtElttAiwGvoJ/vj4IwHBS/gXsEu/pZ50mUIRWuG0so=
 golang.org/dl v0.0.0-20190829154251-82a15e2f2ead/go.mod h1:IUMfjQLJQd4UTqG1Z90tenwKoCX93Gn3MAQJMOSBsDQ=
 golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
@@ -399,8 +400,8 @@ golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.19.0 h1:ENy+Az/9Y1vSrlrvBSyna3PITt4tiZLf7sgCjZBX7Wo=
-golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU=
+golang.org/x/crypto v0.20.0 h1:jmAMJJZXr5KiCw05dfYK9QnqaqKLYXijU23lsEdcQqg=
+golang.org/x/crypto v0.20.0/go.mod h1:Xwo95rrVNIoSMx9wa1JroENMToLWn3RNVrTBpLHgZPQ=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -411,6 +412,8 @@ golang.org/x/exp v0.0.0-20191227195350-da58074b4299/go.mod h1:2RIsYlXP63K8oxa1u0
 golang.org/x/exp v0.0.0-20200119233911-0405dc783f0a/go.mod h1:2RIsYlXP63K8oxa1u096TMicItID8zy7Y6sNkU49FU4=
 golang.org/x/exp v0.0.0-20200207192155-f17229e696bd/go.mod h1:J/WKrq2StrnmMY6+EHIKF9dgMWnmCNThgcyBT1FY9mM=
 golang.org/x/exp v0.0.0-20200224162631-6cc2880d07d6/go.mod h1:3jZMyOhIsHpP37uCMkUooju7aAi5cS1Q23tOzKc+0MU=
+golang.org/x/exp v0.0.0-20220722155223-a9213eeb770e h1:+WEEuIdZHnUeJJmEUjyYC2gfUMj69yZXw17EnHg/otA=
+golang.org/x/exp v0.0.0-20220722155223-a9213eeb770e/go.mod h1:Kr81I6Kryrl9sr8s2FK3vxD90NdsKWRuOIl2O4CvYbA=
 golang.org/x/image v0.0.0-20190227222117-0694c2d4d067/go.mod h1:kZ7UVZpmo3dzQBMxlp+ypCbDeSB+sBbTgSJuh5dn5js=
 golang.org/x/image v0.0.0-20190802002840-cff245a6509b/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
 golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
@@ -432,8 +435,8 @@ golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzB
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
-golang.org/x/mod v0.14.0 h1:dGoOF9QVLYng8IHTm7BAyWqCqSheQ5pYWGhzW00YJr0=
-golang.org/x/mod v0.14.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
+golang.org/x/mod v0.15.0 h1:SernR4v+D55NyBH2QiEQrlBAnj1ECL6AGrA5+dPaMY8=
+golang.org/x/mod v0.15.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -468,16 +471,16 @@ golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.20.0 h1:aCL9BSgETF1k+blQaYUBx9hJ9LOGP3gAVemcZlf1Kpo=
-golang.org/x/net v0.20.0/go.mod h1:z8BVo6PvndSri0LbOE3hAn0apkU+1YvI6E70E9jsnvY=
+golang.org/x/net v0.21.0 h1:AQyQV4dYCvJ7vGmJyKki9+PBdyvhkSd8EIx/qb0AYv4=
+golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.16.0 h1:aDkGMBSYxElaoP81NpoUoz2oo2R2wHdZpGToUxfyQrQ=
-golang.org/x/oauth2 v0.16.0/go.mod h1:hqZ+0LWXsiVoZpeld6jVt06P3adbS2Uu911W1SsJv2o=
+golang.org/x/oauth2 v0.17.0 h1:6m3ZPmLEFdVxKKWnKq4VqZ60gutO35zm+zrAHVmHyDQ=
+golang.org/x/oauth2 v0.17.0/go.mod h1:OzPDGQiuQMguemayvdylqddI7qcD9lnSDb+1FiwQ5HA=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -489,6 +492,8 @@ golang.org/x/sync v0.0.0-20200625203802-6e8e738ad208/go.mod h1:RxMgew5VJxzue5/jJ
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201207232520-09787c993a3a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.6.0 h1:5BMeUDZ7vkXGfEr1x9B4bRcTH4lpkTkpdh0T/J+qjbQ=
+golang.org/x/sync v0.6.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
@@ -504,7 +509,6 @@ golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20190726091711-fc99dfbffb4e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191001151750-bb3f8db39f24/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191002063906-3421d5a6bb1c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -532,11 +536,12 @@ golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.17.0 h1:25cE3gD+tdBA7lp7QfhuV+rJiE9YXTcS3VG1SqssI/Y=
 golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
@@ -556,8 +561,8 @@ golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.3.0 h1:rg5rLMjNzMS1RkNLzCG38eapWhnYLFYXDXj2gOlr8j4=
-golang.org/x/time v0.3.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
+golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
+golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
@@ -603,14 +608,14 @@ golang.org/x/tools v0.0.0-20200825202427-b303f430e36d/go.mod h1:njjCfa9FT2d7l9Bc
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
-golang.org/x/tools v0.16.1 h1:TLyB3WofjdOEepBHAU20JdNC1Zbg87elYofWYAY5oZA=
-golang.org/x/tools v0.16.1/go.mod h1:kYVVN6I1mBNoB1OX+noeBjbRk4IUEPa7JJ+TJMEooJ0=
+golang.org/x/tools v0.18.0 h1:k8NLag8AGHnn+PHbl7g43CtqZAwG60vZkLqgyZgIHgQ=
+golang.org/x/tools v0.18.0/go.mod h1:GL7B4CwcLLeo59yx/9UWWuNOW1n3VZ4f5axWfML7Lcg=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-gomodules.xyz/jsonpatch/v2 v2.2.0 h1:4pT439QV83L+G9FkcCriY6EkpcK6r6bK+A5FBUMI7qY=
-gomodules.xyz/jsonpatch/v2 v2.2.0/go.mod h1:WXp+iVDkoLQqPudfQ9GBlwB2eZ5DKOnjQZCYdOS8GPY=
+gomodules.xyz/jsonpatch/v2 v2.4.0 h1:Ci3iUJyx9UeRx7CeFN8ARgGbkESwJK+KB9lLcWxY/Zw=
+gomodules.xyz/jsonpatch/v2 v2.4.0/go.mod h1:AH3dM2RI6uoBZxn3LVrfvJ3E0/9dG4cSrbuBJT4moAY=
 google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
 google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M=
 google.golang.org/api v0.8.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
@@ -664,9 +669,8 @@ google.golang.org/genproto v0.0.0-20200618031413-b414f8b61790/go.mod h1:jDfRM7Fc
 google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20231106174013-bbf56f31fb17 h1:Jyp0Hsi0bmHXG6k9eATXoYtjd6e2UzZ1SCn/wIupY14=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20231106174013-bbf56f31fb17/go.mod h1:oQ5rr10WTTMvP4A36n8JpR1OrO1BEiV4f78CneXZxkA=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240221002015-b0ce06bbee7c h1:NUsgEN92SQQqzfA+YtqYNqYmB3DMMYLlIwUZAQFVFbo=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240221002015-b0ce06bbee7c/go.mod h1:H4O17MA/PE9BsGx3w+a+W2VOLLD1Qf7oJneAoU6WktY=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -679,10 +683,10 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.61.0 h1:TOvOcuXn30kRao+gfcvsebNEa5iZIiLkisYEkf7R7o0=
-google.golang.org/grpc v1.61.0/go.mod h1:VUbo7IFqmF1QtCAstipjG0GIoq49KvMe9+h1jFLBNJs=
-google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7 h1:pPsdyuBif+uoyUoL19yuj/TCfUPsmpJHJZhWQ98JGLU=
-google.golang.org/grpc/examples v0.0.0-20221220003428-4f16fbe410f7/go.mod h1:8pQa1yxxkh+EsxUK8/455D5MSbv3vgmEJqKCH3y17mI=
+google.golang.org/grpc v1.62.0 h1:HQKZ/fa1bXkX1oFOvSjmZEUL8wLSaZTjCcLAlmZRtdk=
+google.golang.org/grpc v1.62.0/go.mod h1:IWTG0VlJLCh1SkC58F7np9ka9mx/WNkjl4PGJaiq+QE=
+google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
+google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
@@ -704,6 +708,8 @@ gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
 gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
+gopkg.in/evanphx/json-patch.v5 v5.9.0 h1:hx1VU2SGj4F8r9b8GUwJLdc8DNO8sy79ZGui0G05GLo=
+gopkg.in/evanphx/json-patch.v5 v5.9.0/go.mod h1:/kvTRh1TVm5wuM6OkHxqXtE/1nUZZpihg29RtuIyfvk=
 gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
 gopkg.in/go-playground/assert.v1 v1.2.1 h1:xoYuJVE7KT85PYWrN730RguIQO0ePzVRfFMXadIrXTM=
 gopkg.in/go-playground/assert.v1 v1.2.1/go.mod h1:9RXL0bg/zibRAgZUYszZSwO/z8Y/a8bDuhia5mkpMnE=
@@ -724,7 +730,6 @@ gopkg.in/yaml.v2 v2.3.0/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
 gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-gopkg.in/yaml.v3 v3.0.0-20200615113413-eeeca48fe776/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
@@ -734,48 +739,48 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.27.6 h1:PBWu/lywJe2qQcshMjubzcBg7+XDZOo7O8JJAWuYtUo=
-k8s.io/api v0.27.6/go.mod h1:AQYj0UsFCp3qJE7bOVnUuy4orCsXVkvHefnbYQiNWgk=
-k8s.io/apiextensions-apiserver v0.27.6 h1:mOwSBJtThZhpJr+8gEkc3wFDIjq87E3JspR5mtZxIg8=
-k8s.io/apiextensions-apiserver v0.27.6/go.mod h1:AVNlLYRrESG5Poo6ASRUhY2pvoKPcNt8y/IuZ4lx3o8=
-k8s.io/apimachinery v0.27.6 h1:mGU8jmBq5o8mWBov+mLjdTBcU+etTE19waies4AQ6NE=
-k8s.io/apimachinery v0.27.6/go.mod h1:XNfZ6xklnMCOGGFNqXG7bUrQCoR04dh/E7FprV6pb+E=
-k8s.io/apiserver v0.27.6 h1:r/eHN8r3lG2buggHrVMy++kKhHlHn1HWSX1dqDtes54=
-k8s.io/apiserver v0.27.6/go.mod h1:Xeo9OEXn2kDLK5pqspjdXQx7YKgDyKSpwIB4p0BmpAQ=
-k8s.io/cli-runtime v0.27.6 h1:ik1+20C0AvxYcqEzwebH2PHOlqBTKUHZnOuPtG2CCl8=
-k8s.io/cli-runtime v0.27.6/go.mod h1:+qSBK08EJL1fFvsfVNlETzsgGtxIhascIGZSuaQXQro=
-k8s.io/client-go v0.27.6 h1:vzI8804gpUtpMCNaFjIFyJrifH7u//LJCJPy8fQuYQg=
-k8s.io/client-go v0.27.6/go.mod h1:PMsXcDKiJTW7PHJ64oEsIUJF319wm+EFlCj76oE5QXM=
-k8s.io/code-generator v0.27.6 h1:1zkSDvylcA11s91aYg5U7fZ24EXMZ+KIDOj/Z3Ti4c8=
-k8s.io/code-generator v0.27.6/go.mod h1:DPung1sI5vBgn4AGKtlPRQAyagj/ir/4jI55ipZHVww=
-k8s.io/component-base v0.27.6 h1:hF5WxX7Tpi9/dXAbLjPVkIA6CA6Pi6r9JOHyo0uCDYI=
-k8s.io/component-base v0.27.6/go.mod h1:NvjLtaneUeb0GgMPpCBF+4LNB9GuhDHi16uUTjBhQfU=
-k8s.io/gengo v0.0.0-20220902162205-c0856e24416d h1:U9tB195lKdzwqicbJvyJeOXV7Klv+wNAWENRnXEGi08=
-k8s.io/gengo v0.0.0-20220902162205-c0856e24416d/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
+k8s.io/api v0.29.2 h1:hBC7B9+MU+ptchxEqTNW2DkUosJpp1P+Wn6YncZ474A=
+k8s.io/api v0.29.2/go.mod h1:sdIaaKuU7P44aoyyLlikSLayT6Vb7bvJNCX105xZXY0=
+k8s.io/apiextensions-apiserver v0.29.2 h1:UK3xB5lOWSnhaCk0RFZ0LUacPZz9RY4wi/yt2Iu+btg=
+k8s.io/apiextensions-apiserver v0.29.2/go.mod h1:aLfYjpA5p3OwtqNXQFkhJ56TB+spV8Gc4wfMhUA3/b8=
+k8s.io/apimachinery v0.29.2 h1:EWGpfJ856oj11C52NRCHuU7rFDwxev48z+6DSlGNsV8=
+k8s.io/apimachinery v0.29.2/go.mod h1:6HVkd1FwxIagpYrHSwJlQqZI3G9LfYWRPAkUvLnXTKU=
+k8s.io/apiserver v0.29.2 h1:+Z9S0dSNr+CjnVXQePG8TcBWHr3Q7BmAr7NraHvsMiQ=
+k8s.io/apiserver v0.29.2/go.mod h1:B0LieKVoyU7ykQvPFm7XSdIHaCHSzCzQWPFa5bqbeMQ=
+k8s.io/cli-runtime v0.29.2 h1:smfsOcT4QujeghsNjECKN3lwyX9AwcFU0nvJ7sFN3ro=
+k8s.io/cli-runtime v0.29.2/go.mod h1:KLisYYfoqeNfO+MkTWvpqIyb1wpJmmFJhioA0xd4MW8=
+k8s.io/client-go v0.29.2 h1:FEg85el1TeZp+/vYJM7hkDlSTFZ+c5nnK44DJ4FyoRg=
+k8s.io/client-go v0.29.2/go.mod h1:knlvFZE58VpqbQpJNbCbctTVXcd35mMyAAwBdpt4jrA=
+k8s.io/code-generator v0.29.2 h1:c9/iw2KnNpw2IRV+wwuG/Wns2TjPSgjWzbbjTevyiHI=
+k8s.io/code-generator v0.29.2/go.mod h1:FwFi3C9jCrmbPjekhaCYcYG1n07CYiW1+PAPCockaos=
+k8s.io/component-base v0.29.2 h1:lpiLyuvPA9yV1aQwGLENYyK7n/8t6l3nn3zAtFTJYe8=
+k8s.io/component-base v0.29.2/go.mod h1:BfB3SLrefbZXiBfbM+2H1dlat21Uewg/5qtKOl8degM=
+k8s.io/gengo v0.0.0-20240226174109-00c4be8627da h1:uH7pylUCo++9PSvrUA34sbk4Y6PHw/bgEFa80pejI+I=
+k8s.io/gengo v0.0.0-20240226174109-00c4be8627da/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
-k8s.io/klog/v2 v2.100.1 h1:7WCHKK6K8fNhTqfBhISHQ97KrnJNFZMcQvKp7gP/tmg=
-k8s.io/klog/v2 v2.100.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
-k8s.io/kube-openapi v0.0.0-20230501164219-8b0f38b5fd1f h1:2kWPakN3i/k81b0gvD5C5FJ2kxm1WrQFanWchyKuqGg=
-k8s.io/kube-openapi v0.0.0-20230501164219-8b0f38b5fd1f/go.mod h1:byini6yhqGC14c3ebc/QwanvYwhuMWF6yz2F8uwW8eg=
-k8s.io/utils v0.0.0-20230209194617-a36077c30491 h1:r0BAOLElQnnFhE/ApUsg3iHdVYYPBjNSSOMowRZxxsY=
-k8s.io/utils v0.0.0-20230209194617-a36077c30491/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
+k8s.io/klog/v2 v2.120.1 h1:QXU6cPEOIslTGvZaXvFWiP9VKyeet3sawzTOvdXb4Vw=
+k8s.io/klog/v2 v2.120.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
+k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b h1:1dzw/KqgSPod72SUp2tuTOmK33TlY2fHlrVU2M9VrOM=
+k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b/go.mod h1:Pa1PvrP7ACSkuX6I7KYomY6cmMA0Tx86waBhDUgoKPw=
+k8s.io/utils v0.0.0-20240102154912-e7106e64919e h1:eQ/4ljkx21sObifjzXwlPKpdGLrCfRziVtos3ofG/sQ=
+k8s.io/utils v0.0.0-20240102154912-e7106e64919e/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
-sigs.k8s.io/controller-runtime v0.14.6 h1:oxstGVvXGNnMvY7TAESYk+lzr6S3V5VFxQ6d92KcwQA=
-sigs.k8s.io/controller-runtime v0.14.6/go.mod h1:WqIdsAY6JBsjfc/CqO0CORmNtoCtE4S6qbPc9s68h+0=
+sigs.k8s.io/controller-runtime v0.17.2 h1:FwHwD1CTUemg0pW2otk7/U5/i5m2ymzvOXdbeGOUvw0=
+sigs.k8s.io/controller-runtime v0.17.2/go.mod h1:+MngTvIQQQhfXtwfdGw/UOQ/aIaqsYywfCINOtwMO/s=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
-sigs.k8s.io/kustomize/api v0.13.2 h1:kejWfLeJhUsTGioDoFNJET5LQe/ajzXhJGYoU+pJsiA=
-sigs.k8s.io/kustomize/api v0.13.2/go.mod h1:DUp325VVMFVcQSq+ZxyDisA8wtldwHxLZbr1g94UHsw=
-sigs.k8s.io/kustomize/kyaml v0.14.1 h1:c8iibius7l24G2wVAGZn/Va2wNys03GXLjYVIcFVxKA=
-sigs.k8s.io/kustomize/kyaml v0.14.1/go.mod h1:AN1/IpawKilWD7V+YvQwRGUvuUOOWpjsHu6uHwonSF4=
+sigs.k8s.io/kustomize/api v0.16.0 h1:/zAR4FOQDCkgSDmVzV2uiFbuy9bhu3jEzthrHCuvm1g=
+sigs.k8s.io/kustomize/api v0.16.0/go.mod h1:MnFZ7IP2YqVyVwMWoRxPtgl/5hpA+eCCrQR/866cm5c=
+sigs.k8s.io/kustomize/kyaml v0.16.0 h1:6J33uKSoATlKZH16unr2XOhDI+otoe2sR3M8PDzW3K0=
+sigs.k8s.io/kustomize/kyaml v0.16.0/go.mod h1:xOK/7i+vmE14N2FdFyugIshB8eF6ALpy7jI87Q2nRh4=
 sigs.k8s.io/mdtoc v1.1.0 h1:q3YtqYzmC2e0hgLXRIOm7/QLuPux1CX3ZHCwlbABxZo=
 sigs.k8s.io/mdtoc v1.1.0/go.mod h1:QZLVEdHH2iNIR4uHAZyvFRtjloHgVItk8lo/mzCtq3w=
-sigs.k8s.io/structured-merge-diff/v4 v4.2.3 h1:PRbqxJClWWYMNV1dhaG4NsibJbArud9kFxnAMREiWFE=
-sigs.k8s.io/structured-merge-diff/v4 v4.2.3/go.mod h1:qjx8mGObPmV2aSZepjQjbmb2ihdVs8cGKBraizNC69E=
+sigs.k8s.io/structured-merge-diff/v4 v4.4.1 h1:150L+0vs/8DA78h1u02ooW1/fFq/Lwr+sGiqlzvrtq4=
+sigs.k8s.io/structured-merge-diff/v4 v4.4.1/go.mod h1:N8hJocpFajUSSeSJ9bOZ77VzejKZaXsTtZo4/u7Io08=
 sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=
-sigs.k8s.io/yaml v1.3.0 h1:a2VclLzOGrwOHDiV8EfBGhvjHvP46CtW5j6POvhYGGo=
-sigs.k8s.io/yaml v1.3.0/go.mod h1:GeOyir5tyXNByN85N/dRIT9es5UQNerPYEKK56eTBm8=
+sigs.k8s.io/yaml v1.4.0 h1:Mk1wCc2gy/F0THH0TAp1QYyJNzRm2KCLy3o5ASXVI5E=
+sigs.k8s.io/yaml v1.4.0/go.mod h1:Ejl7/uTz7PSA4eKMyQCUTnhZYNmLIl+5c2lQPGR2BPY=
diff --git a/go.work.sum b/go.work.sum
index d73c169de..af236d3b1 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -1,180 +1,451 @@
+cloud.google.com/go v0.44.3/go.mod h1:60680Gw3Yr4ikxnPRS/oxxkBccT6SA1yMk63TGekxKY=
+cloud.google.com/go v0.72.0/go.mod h1:M+5Vjvlc2wnp6tjzE102Dw08nGShTscUx2nZMufOKPI=
+cloud.google.com/go v0.74.0/go.mod h1:VV1xSbzvo+9QJOxLDaJfTjx5e+MePCpCWwvftOeQmWk=
+cloud.google.com/go v0.75.0/go.mod h1:VGuuCn7PG0dwsd5XPVm2Mm3wlh3EL55/79EKB6hlPTY=
 cloud.google.com/go v0.97.0/go.mod h1:GF7l59pYBVlXQIBLx3a761cZ41F9bBH3JUlihCt2Udc=
 cloud.google.com/go v0.110.2/go.mod h1:k04UEeEtb6ZBRTv3dZz4CeJC3jKGxyhl0sAiVVquxiw=
 cloud.google.com/go v0.110.4/go.mod h1:+EYjdK8e5RME/VY/qLCAtuyALQ9q67dvuum8i+H5xsI=
 cloud.google.com/go v0.110.8/go.mod h1:Iz8AkXJf1qmxC3Oxoep8R1T36w8B92yU29PcBhHO5fk=
+cloud.google.com/go v0.110.10/go.mod h1:v1OoFqYxiBkUrruItNM3eT4lLByNjxmJSV/xDKJNnic=
+cloud.google.com/go v0.112.0/go.mod h1:3jEEVwZ/MHU4djK5t5RHuKOA/GbLddgTdVubX1qnPD4=
 cloud.google.com/go/accessapproval v1.7.1/go.mod h1:JYczztsHRMK7NTXb6Xw+dwbs/WnOJxbo/2mTI+Kgg68=
+cloud.google.com/go/accessapproval v1.7.4/go.mod h1:/aTEh45LzplQgFYdQdwPMR9YdX0UlhBmvB84uAmQKUc=
+cloud.google.com/go/accessapproval v1.7.5/go.mod h1:g88i1ok5dvQ9XJsxpUInWWvUBrIZhyPDPbk4T01OoJ0=
 cloud.google.com/go/accesscontextmanager v1.8.1/go.mod h1:JFJHfvuaTC+++1iL1coPiG1eu5D24db2wXCDWDjIrxo=
+cloud.google.com/go/accesscontextmanager v1.8.4/go.mod h1:ParU+WbMpD34s5JFEnGAnPBYAgUHozaTmDJU7aCU9+M=
+cloud.google.com/go/accesscontextmanager v1.8.5/go.mod h1:TInEhcZ7V9jptGNqN3EzZ5XMhT6ijWxTGjzyETwmL0Q=
 cloud.google.com/go/aiplatform v1.45.0/go.mod h1:Iu2Q7sC7QGhXUeOhAj/oCK9a+ULz1O4AotZiqjQ8MYA=
 cloud.google.com/go/aiplatform v1.50.0/go.mod h1:IRc2b8XAMTa9ZmfJV1BCCQbieWWvDnP1A8znyz5N7y4=
+cloud.google.com/go/aiplatform v1.52.0/go.mod h1:pwZMGvqe0JRkI1GWSZCtnAfrR4K1bv65IHILGA//VEU=
+cloud.google.com/go/aiplatform v1.58.0/go.mod h1:pwZMGvqe0JRkI1GWSZCtnAfrR4K1bv65IHILGA//VEU=
+cloud.google.com/go/aiplatform v1.60.0/go.mod h1:eTlGuHOahHprZw3Hio5VKmtThIOak5/qy6pzdsqcQnM=
 cloud.google.com/go/analytics v0.21.2/go.mod h1:U8dcUtmDmjrmUTnnnRnI4m6zKn/yaA5N9RlEkYFHpQo=
 cloud.google.com/go/analytics v0.21.3/go.mod h1:U8dcUtmDmjrmUTnnnRnI4m6zKn/yaA5N9RlEkYFHpQo=
+cloud.google.com/go/analytics v0.21.6/go.mod h1:eiROFQKosh4hMaNhF85Oc9WO97Cpa7RggD40e/RBy8w=
+cloud.google.com/go/analytics v0.22.0/go.mod h1:eiROFQKosh4hMaNhF85Oc9WO97Cpa7RggD40e/RBy8w=
+cloud.google.com/go/analytics v0.23.0/go.mod h1:YPd7Bvik3WS95KBok2gPXDqQPHy08TsCQG6CdUCb+u0=
 cloud.google.com/go/apigateway v1.6.1/go.mod h1:ufAS3wpbRjqfZrzpvLC2oh0MFlpRJm2E/ts25yyqmXA=
+cloud.google.com/go/apigateway v1.6.4/go.mod h1:0EpJlVGH5HwAN4VF4Iec8TAzGN1aQgbxAWGJsnPCGGY=
+cloud.google.com/go/apigateway v1.6.5/go.mod h1:6wCwvYRckRQogyDDltpANi3zsCDl6kWi0b4Je+w2UiI=
 cloud.google.com/go/apigeeconnect v1.6.1/go.mod h1:C4awq7x0JpLtrlQCr8AzVIzAaYgngRqWf9S5Uhg+wWs=
+cloud.google.com/go/apigeeconnect v1.6.4/go.mod h1:CapQCWZ8TCjnU0d7PobxhpOdVz/OVJ2Hr/Zcuu1xFx0=
+cloud.google.com/go/apigeeconnect v1.6.5/go.mod h1:MEKm3AiT7s11PqTfKE3KZluZA9O91FNysvd3E6SJ6Ow=
 cloud.google.com/go/apigeeregistry v0.7.1/go.mod h1:1XgyjZye4Mqtw7T9TsY4NW10U7BojBvG4RMD+vRDrIw=
+cloud.google.com/go/apigeeregistry v0.8.2/go.mod h1:h4v11TDGdeXJDJvImtgK2AFVvMIgGWjSb0HRnBSjcX8=
+cloud.google.com/go/apigeeregistry v0.8.3/go.mod h1:aInOWnqF4yMQx8kTjDqHNXjZGh/mxeNlAf52YqtASUs=
 cloud.google.com/go/appengine v1.8.1/go.mod h1:6NJXGLVhZCN9aQ/AEDvmfzKEfoYBlfB80/BHiKVputY=
+cloud.google.com/go/appengine v1.8.4/go.mod h1:TZ24v+wXBujtkK77CXCpjZbnuTvsFNT41MUaZ28D6vg=
+cloud.google.com/go/appengine v1.8.5/go.mod h1:uHBgNoGLTS5di7BvU25NFDuKa82v0qQLjyMJLuPQrVo=
 cloud.google.com/go/area120 v0.8.1/go.mod h1:BVfZpGpB7KFVNxPiQBuHkX6Ed0rS51xIgmGyjrAfzsg=
+cloud.google.com/go/area120 v0.8.4/go.mod h1:jfawXjxf29wyBXr48+W+GyX/f8fflxp642D/bb9v68M=
+cloud.google.com/go/area120 v0.8.5/go.mod h1:BcoFCbDLZjsfe4EkCnEq1LKvHSK0Ew/zk5UFu6GMyA0=
 cloud.google.com/go/artifactregistry v1.14.1/go.mod h1:nxVdG19jTaSTu7yA7+VbWL346r3rIdkZ142BSQqhn5E=
+cloud.google.com/go/artifactregistry v1.14.6/go.mod h1:np9LSFotNWHcjnOgh8UVK0RFPCTUGbO0ve3384xyHfE=
+cloud.google.com/go/artifactregistry v1.14.7/go.mod h1:0AUKhzWQzfmeTvT4SjfI4zjot72EMfrkvL9g9aRjnnM=
 cloud.google.com/go/asset v1.14.1/go.mod h1:4bEJ3dnHCqWCDbWJ/6Vn7GVI9LerSi7Rfdi03hd+WTQ=
+cloud.google.com/go/asset v1.15.3/go.mod h1:yYLfUD4wL4X589A9tYrv4rFrba0QlDeag0CMcM5ggXU=
+cloud.google.com/go/asset v1.17.0/go.mod h1:yYLfUD4wL4X589A9tYrv4rFrba0QlDeag0CMcM5ggXU=
+cloud.google.com/go/asset v1.17.2/go.mod h1:SVbzde67ehddSoKf5uebOD1sYw8Ab/jD/9EIeWg99q4=
 cloud.google.com/go/assuredworkloads v1.11.1/go.mod h1:+F04I52Pgn5nmPG36CWFtxmav6+7Q+c5QyJoL18Lry0=
+cloud.google.com/go/assuredworkloads v1.11.4/go.mod h1:4pwwGNwy1RP0m+y12ef3Q/8PaiWrIDQ6nD2E8kvWI9U=
+cloud.google.com/go/assuredworkloads v1.11.5/go.mod h1:FKJ3g3ZvkL2D7qtqIGnDufFkHxwIpNM9vtmhvt+6wqk=
 cloud.google.com/go/automl v1.13.1/go.mod h1:1aowgAHWYZU27MybSCFiukPO7xnyawv7pt3zK4bheQE=
+cloud.google.com/go/automl v1.13.4/go.mod h1:ULqwX/OLZ4hBVfKQaMtxMSTlPx0GqGbWN8uA/1EqCP8=
+cloud.google.com/go/automl v1.13.5/go.mod h1:MDw3vLem3yh+SvmSgeYUmUKqyls6NzSumDm9OJ3xJ1Y=
 cloud.google.com/go/baremetalsolution v0.5.0/go.mod h1:dXGxEkmR9BMwxhzBhV0AioD0ULBmuLZI8CdwalUxuss=
 cloud.google.com/go/baremetalsolution v1.2.0/go.mod h1:68wi9AwPYkEWIUT4SvSGS9UJwKzNpshjHsH4lzk8iOw=
+cloud.google.com/go/baremetalsolution v1.2.3/go.mod h1:/UAQ5xG3faDdy180rCUv47e0jvpp3BFxT+Cl0PFjw5g=
+cloud.google.com/go/baremetalsolution v1.2.4/go.mod h1:BHCmxgpevw9IEryE99HbYEfxXkAEA3hkMJbYYsHtIuY=
 cloud.google.com/go/batch v0.7.0/go.mod h1:vLZN95s6teRUqRQ4s3RLDsH8PvboqBK+rn1oevL159g=
 cloud.google.com/go/batch v1.4.1/go.mod h1:KdBmDD61K0ovcxoRHGrN6GmOBWeAOyCgKD0Mugx4Fkk=
+cloud.google.com/go/batch v1.6.3/go.mod h1:J64gD4vsNSA2O5TtDB5AAux3nJ9iV8U3ilg3JDBYejU=
+cloud.google.com/go/batch v1.7.0/go.mod h1:J64gD4vsNSA2O5TtDB5AAux3nJ9iV8U3ilg3JDBYejU=
+cloud.google.com/go/batch v1.8.0/go.mod h1:k8V7f6VE2Suc0zUM4WtoibNrA6D3dqBpB+++e3vSGYc=
 cloud.google.com/go/beyondcorp v0.6.1/go.mod h1:YhxDWw946SCbmcWo3fAhw3V4XZMSpQ/VYfcKGAEU8/4=
 cloud.google.com/go/beyondcorp v1.0.0/go.mod h1:YhxDWw946SCbmcWo3fAhw3V4XZMSpQ/VYfcKGAEU8/4=
+cloud.google.com/go/beyondcorp v1.0.3/go.mod h1:HcBvnEd7eYr+HGDd5ZbuVmBYX019C6CEXBonXbCVwJo=
+cloud.google.com/go/beyondcorp v1.0.4/go.mod h1:Gx8/Rk2MxrvWfn4WIhHIG1NV7IBfg14pTKv1+EArVcc=
 cloud.google.com/go/bigquery v1.52.0/go.mod h1:3b/iXjRQGU4nKa87cXeg6/gogLjO8C6PmuM8i5Bi/u4=
 cloud.google.com/go/bigquery v1.55.0/go.mod h1:9Y5I3PN9kQWuid6183JFhOGOW3GcirA5LpsKCUn+2ec=
+cloud.google.com/go/bigquery v1.57.1/go.mod h1:iYzC0tGVWt1jqSzBHqCr3lrRn0u13E8e+AqowBsDgug=
+cloud.google.com/go/bigquery v1.58.0/go.mod h1:0eh4mWNY0KrBTjUzLjoYImapGORq9gEPT7MWjCy9lik=
+cloud.google.com/go/bigquery v1.59.1/go.mod h1:VP1UJYgevyTwsV7desjzNzDND5p6hZB+Z8gZJN1GQUc=
 cloud.google.com/go/billing v1.16.0/go.mod h1:y8vx09JSSJG02k5QxbycNRrN7FGZB6F3CAcgum7jvGA=
 cloud.google.com/go/billing v1.17.0/go.mod h1:Z9+vZXEq+HwH7bhJkyI4OQcR6TSbeMrjlpEjO2vzY64=
+cloud.google.com/go/billing v1.17.4/go.mod h1:5DOYQStCxquGprqfuid/7haD7th74kyMBHkjO/OvDtk=
+cloud.google.com/go/billing v1.18.0/go.mod h1:5DOYQStCxquGprqfuid/7haD7th74kyMBHkjO/OvDtk=
+cloud.google.com/go/billing v1.18.2/go.mod h1:PPIwVsOOQ7xzbADCwNe8nvK776QpfrOAUkvKjCUcpSE=
 cloud.google.com/go/binaryauthorization v1.6.1/go.mod h1:TKt4pa8xhowwffiBmbrbcxijJRZED4zrqnwZ1lKH51U=
 cloud.google.com/go/binaryauthorization v1.7.0/go.mod h1:Zn+S6QqTMn6odcMU1zDZCJxPjU2tZPV1oDl45lWY154=
+cloud.google.com/go/binaryauthorization v1.7.3/go.mod h1:VQ/nUGRKhrStlGr+8GMS8f6/vznYLkdK5vaKfdCIpvU=
+cloud.google.com/go/binaryauthorization v1.8.0/go.mod h1:VQ/nUGRKhrStlGr+8GMS8f6/vznYLkdK5vaKfdCIpvU=
+cloud.google.com/go/binaryauthorization v1.8.1/go.mod h1:1HVRyBerREA/nhI7yLang4Zn7vfNVA3okoAR9qYQJAQ=
 cloud.google.com/go/certificatemanager v1.7.1/go.mod h1:iW8J3nG6SaRYImIa+wXQ0g8IgoofDFRp5UMzaNk1UqI=
+cloud.google.com/go/certificatemanager v1.7.4/go.mod h1:FHAylPe/6IIKuaRmHbjbdLhGhVQ+CWHSD5Jq0k4+cCE=
+cloud.google.com/go/certificatemanager v1.7.5/go.mod h1:uX+v7kWqy0Y3NG/ZhNvffh0kuqkKZIXdvlZRO7z0VtM=
 cloud.google.com/go/channel v1.16.0/go.mod h1:eN/q1PFSl5gyu0dYdmxNXscY/4Fi7ABmeHCJNf/oHmc=
 cloud.google.com/go/channel v1.17.0/go.mod h1:RpbhJsGi/lXWAUM1eF4IbQGbsfVlg2o8Iiy2/YLfVT0=
+cloud.google.com/go/channel v1.17.3/go.mod h1:QcEBuZLGGrUMm7kNj9IbU1ZfmJq2apotsV83hbxX7eE=
+cloud.google.com/go/channel v1.17.4/go.mod h1:QcEBuZLGGrUMm7kNj9IbU1ZfmJq2apotsV83hbxX7eE=
+cloud.google.com/go/channel v1.17.5/go.mod h1:FlpaOSINDAXgEext0KMaBq/vwpLMkkPAw9b2mApQeHc=
 cloud.google.com/go/cloudbuild v1.10.1/go.mod h1:lyJg7v97SUIPq4RC2sGsz/9tNczhyv2AjML/ci4ulzU=
 cloud.google.com/go/cloudbuild v1.14.0/go.mod h1:lyJg7v97SUIPq4RC2sGsz/9tNczhyv2AjML/ci4ulzU=
+cloud.google.com/go/cloudbuild v1.14.3/go.mod h1:eIXYWmRt3UtggLnFGx4JvXcMj4kShhVzGndL1LwleEM=
+cloud.google.com/go/cloudbuild v1.15.0/go.mod h1:eIXYWmRt3UtggLnFGx4JvXcMj4kShhVzGndL1LwleEM=
+cloud.google.com/go/cloudbuild v1.15.1/go.mod h1:gIofXZSu+XD2Uy+qkOrGKEx45zd7s28u/k8f99qKals=
 cloud.google.com/go/clouddms v1.6.1/go.mod h1:Ygo1vL52Ov4TBZQquhz5fiw2CQ58gvu+PlS6PVXCpZI=
 cloud.google.com/go/clouddms v1.7.0/go.mod h1:MW1dC6SOtI/tPNCciTsXtsGNEM0i0OccykPvv3hiYeM=
+cloud.google.com/go/clouddms v1.7.3/go.mod h1:fkN2HQQNUYInAU3NQ3vRLkV2iWs8lIdmBKOx4nrL6Hc=
+cloud.google.com/go/clouddms v1.7.4/go.mod h1:RdrVqoFG9RWI5AvZ81SxJ/xvxPdtcRhFotwdE79DieY=
 cloud.google.com/go/cloudtasks v1.11.1/go.mod h1:a9udmnou9KO2iulGscKR0qBYjreuX8oHwpmFsKspEvM=
 cloud.google.com/go/cloudtasks v1.12.1/go.mod h1:a9udmnou9KO2iulGscKR0qBYjreuX8oHwpmFsKspEvM=
+cloud.google.com/go/cloudtasks v1.12.4/go.mod h1:BEPu0Gtt2dU6FxZHNqqNdGqIG86qyWKBPGnsb7udGY0=
+cloud.google.com/go/cloudtasks v1.12.6/go.mod h1:b7c7fe4+TJsFZfDyzO51F7cjq7HLUlRi/KZQLQjDsaY=
 cloud.google.com/go/compute v1.19.3/go.mod h1:qxvISKp/gYnXkSAD1ppcSOveRAmzxicEv/JlizULFrI=
 cloud.google.com/go/compute v1.20.1/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
 cloud.google.com/go/compute v1.21.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
 cloud.google.com/go/compute v1.23.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
+cloud.google.com/go/compute v1.23.1/go.mod h1:CqB3xpmPKKt3OJpW2ndFIXnA9A4xAy/F3Xp1ixncW78=
+cloud.google.com/go/compute v1.23.3/go.mod h1:VCgBUoMnIVIR0CscqQiPJLAG25E3ZRZMzcFZeQ+h8CI=
+cloud.google.com/go/compute v1.24.0/go.mod h1:kw1/T+h/+tK2LJK0wiPPx1intgdAM3j/g3hFDlscY40=
 cloud.google.com/go/compute/metadata v0.2.3/go.mod h1:VAV5nSsACxMJvgaAuX6Pk2AawlZn8kiOGuCv6gTkwuA=
 cloud.google.com/go/contactcenterinsights v1.9.1/go.mod h1:bsg/R7zGLYMVxFFzfh9ooLTruLRCG9fnzhH9KznHhbM=
 cloud.google.com/go/contactcenterinsights v1.10.0/go.mod h1:bsg/R7zGLYMVxFFzfh9ooLTruLRCG9fnzhH9KznHhbM=
+cloud.google.com/go/contactcenterinsights v1.11.3/go.mod h1:HHX5wrz5LHVAwfI2smIotQG9x8Qd6gYilaHcLLLmNis=
+cloud.google.com/go/contactcenterinsights v1.12.1/go.mod h1:HHX5wrz5LHVAwfI2smIotQG9x8Qd6gYilaHcLLLmNis=
+cloud.google.com/go/contactcenterinsights v1.13.0/go.mod h1:ieq5d5EtHsu8vhe2y3amtZ+BE+AQwX5qAy7cpo0POsI=
 cloud.google.com/go/container v1.22.1/go.mod h1:lTNExE2R7f+DLbAN+rJiKTisauFCaoDq6NURZ83eVH4=
 cloud.google.com/go/container v1.26.0/go.mod h1:YJCmRet6+6jnYYRS000T6k0D0xUXQgBSaJ7VwI8FBj4=
+cloud.google.com/go/container v1.27.1/go.mod h1:b1A1gJeTBXVLQ6GGw9/9M4FG94BEGsqJ5+t4d/3N7O4=
+cloud.google.com/go/container v1.29.0/go.mod h1:b1A1gJeTBXVLQ6GGw9/9M4FG94BEGsqJ5+t4d/3N7O4=
+cloud.google.com/go/container v1.31.0/go.mod h1:7yABn5s3Iv3lmw7oMmyGbeV6tQj86njcTijkkGuvdZA=
 cloud.google.com/go/containeranalysis v0.10.1/go.mod h1:Ya2jiILITMY68ZLPaogjmOMNkwsDrWBSTyBubGXO7j0=
 cloud.google.com/go/containeranalysis v0.11.0/go.mod h1:4n2e99ZwpGxpNcz+YsFT1dfOHPQFGcAC8FN2M2/ne/U=
+cloud.google.com/go/containeranalysis v0.11.3/go.mod h1:kMeST7yWFQMGjiG9K7Eov+fPNQcGhb8mXj/UcTiWw9U=
+cloud.google.com/go/containeranalysis v0.11.4/go.mod h1:cVZT7rXYBS9NG1rhQbWL9pWbXCKHWJPYraE8/FTSYPE=
 cloud.google.com/go/datacatalog v1.14.1/go.mod h1:d2CevwTG4yedZilwe+v3E3ZBDRMobQfSG/a6cCCN5R4=
 cloud.google.com/go/datacatalog v1.17.1/go.mod h1:nCSYFHgtxh2MiEktWIz71s/X+7ds/UT9kp0PC7waCzE=
+cloud.google.com/go/datacatalog v1.18.3/go.mod h1:5FR6ZIF8RZrtml0VUao22FxhdjkoG+a0866rEnObryM=
+cloud.google.com/go/datacatalog v1.19.2/go.mod h1:2YbODwmhpLM4lOFe3PuEhHK9EyTzQJ5AXgIy7EDKTEE=
+cloud.google.com/go/datacatalog v1.19.3/go.mod h1:ra8V3UAsciBpJKQ+z9Whkxzxv7jmQg1hfODr3N3YPJ4=
 cloud.google.com/go/dataflow v0.9.1/go.mod h1:Wp7s32QjYuQDWqJPFFlnBKhkAtiFpMTdg00qGbnIHVw=
+cloud.google.com/go/dataflow v0.9.4/go.mod h1:4G8vAkHYCSzU8b/kmsoR2lWyHJD85oMJPHMtan40K8w=
+cloud.google.com/go/dataflow v0.9.5/go.mod h1:udl6oi8pfUHnL0z6UN9Lf9chGqzDMVqcYTcZ1aPnCZQ=
 cloud.google.com/go/dataform v0.8.1/go.mod h1:3BhPSiw8xmppbgzeBbmDvmSWlwouuJkXsXsb8UBih9M=
+cloud.google.com/go/dataform v0.9.1/go.mod h1:pWTg+zGQ7i16pyn0bS1ruqIE91SdL2FDMvEYu/8oQxs=
+cloud.google.com/go/dataform v0.9.2/go.mod h1:S8cQUwPNWXo7m/g3DhWHsLBoufRNn9EgFrMgne2j7cI=
 cloud.google.com/go/datafusion v1.7.1/go.mod h1:KpoTBbFmoToDExJUso/fcCiguGDk7MEzOWXUsJo0wsI=
+cloud.google.com/go/datafusion v1.7.4/go.mod h1:BBs78WTOLYkT4GVZIXQCZT3GFpkpDN4aBY4NDX/jVlM=
+cloud.google.com/go/datafusion v1.7.5/go.mod h1:bYH53Oa5UiqahfbNK9YuYKteeD4RbQSNMx7JF7peGHc=
 cloud.google.com/go/datalabeling v0.8.1/go.mod h1:XS62LBSVPbYR54GfYQsPXZjTW8UxCK2fkDciSrpRFdY=
+cloud.google.com/go/datalabeling v0.8.4/go.mod h1:Z1z3E6LHtffBGrNUkKwbwbDxTiXEApLzIgmymj8A3S8=
+cloud.google.com/go/datalabeling v0.8.5/go.mod h1:IABB2lxQnkdUbMnQaOl2prCOfms20mcPxDBm36lps+s=
 cloud.google.com/go/dataplex v1.8.1/go.mod h1:7TyrDT6BCdI8/38Uvp0/ZxBslOslP2X2MPDucliyvSE=
 cloud.google.com/go/dataplex v1.9.1/go.mod h1:7TyrDT6BCdI8/38Uvp0/ZxBslOslP2X2MPDucliyvSE=
+cloud.google.com/go/dataplex v1.11.1/go.mod h1:mHJYQQ2VEJHsyoC0OdNyy988DvEbPhqFs5OOLffLX0c=
+cloud.google.com/go/dataplex v1.14.0/go.mod h1:mHJYQQ2VEJHsyoC0OdNyy988DvEbPhqFs5OOLffLX0c=
+cloud.google.com/go/dataplex v1.14.2/go.mod h1:0oGOSFlEKef1cQeAHXy4GZPB/Ife0fz/PxBf+ZymA2U=
 cloud.google.com/go/dataproc v1.12.0/go.mod h1:zrF3aX0uV3ikkMz6z4uBbIKyhRITnxvr4i3IjKsKrw4=
 cloud.google.com/go/dataproc/v2 v2.2.0/go.mod h1:lZR7AQtwZPvmINx5J87DSOOpTfof9LVZju6/Qo4lmcY=
+cloud.google.com/go/dataproc/v2 v2.2.3/go.mod h1:G5R6GBc9r36SXv/RtZIVfB8SipI+xVn0bX5SxUzVYbY=
+cloud.google.com/go/dataproc/v2 v2.3.0/go.mod h1:G5R6GBc9r36SXv/RtZIVfB8SipI+xVn0bX5SxUzVYbY=
+cloud.google.com/go/dataproc/v2 v2.4.0/go.mod h1:3B1Ht2aRB8VZIteGxQS/iNSJGzt9+CA0WGnDVMEm7Z4=
 cloud.google.com/go/dataqna v0.8.1/go.mod h1:zxZM0Bl6liMePWsHA8RMGAfmTG34vJMapbHAxQ5+WA8=
+cloud.google.com/go/dataqna v0.8.4/go.mod h1:mySRKjKg5Lz784P6sCov3p1QD+RZQONRMRjzGNcFd0c=
+cloud.google.com/go/dataqna v0.8.5/go.mod h1:vgihg1mz6n7pb5q2YJF7KlXve6tCglInd6XO0JGOlWM=
 cloud.google.com/go/datastore v1.12.1/go.mod h1:KjdB88W897MRITkvWWJrg2OUtrR5XVj1EoLgSp6/N70=
 cloud.google.com/go/datastore v1.14.0/go.mod h1:GAeStMBIt9bPS7jMJA85kgkpsMkvseWWXiaHya9Jes8=
+cloud.google.com/go/datastore v1.15.0/go.mod h1:GAeStMBIt9bPS7jMJA85kgkpsMkvseWWXiaHya9Jes8=
 cloud.google.com/go/datastream v1.9.1/go.mod h1:hqnmr8kdUBmrnk65k5wNRoHSCYksvpdZIcZIEl8h43Q=
 cloud.google.com/go/datastream v1.10.0/go.mod h1:hqnmr8kdUBmrnk65k5wNRoHSCYksvpdZIcZIEl8h43Q=
+cloud.google.com/go/datastream v1.10.3/go.mod h1:YR0USzgjhqA/Id0Ycu1VvZe8hEWwrkjuXrGbzeDOSEA=
+cloud.google.com/go/datastream v1.10.4/go.mod h1:7kRxPdxZxhPg3MFeCSulmAJnil8NJGGvSNdn4p1sRZo=
 cloud.google.com/go/deploy v1.11.0/go.mod h1:tKuSUV5pXbn67KiubiUNUejqLs4f5cxxiCNCeyl0F2g=
 cloud.google.com/go/deploy v1.13.0/go.mod h1:tKuSUV5pXbn67KiubiUNUejqLs4f5cxxiCNCeyl0F2g=
+cloud.google.com/go/deploy v1.14.2/go.mod h1:e5XOUI5D+YGldyLNZ21wbp9S8otJbBE4i88PtO9x/2g=
+cloud.google.com/go/deploy v1.17.0/go.mod h1:XBr42U5jIr64t92gcpOXxNrqL2PStQCXHuKK5GRUuYo=
+cloud.google.com/go/deploy v1.17.1/go.mod h1:SXQyfsXrk0fBmgBHRzBjQbZhMfKZ3hMQBw5ym7MN/50=
 cloud.google.com/go/dialogflow v1.38.0/go.mod h1:L7jnH+JL2mtmdChzAIcXQHXMvQkE3U4hTaNltEuxXn4=
 cloud.google.com/go/dialogflow v1.43.0/go.mod h1:pDUJdi4elL0MFmt1REMvFkdsUTYSHq+rTCS8wg0S3+M=
+cloud.google.com/go/dialogflow v1.44.3/go.mod h1:mHly4vU7cPXVweuB5R0zsYKPMzy240aQdAu06SqBbAQ=
+cloud.google.com/go/dialogflow v1.48.1/go.mod h1:C1sjs2/g9cEwjCltkKeYp3FFpz8BOzNondEaAlCpt+A=
+cloud.google.com/go/dialogflow v1.49.0/go.mod h1:dhVrXKETtdPlpPhE7+2/k4Z8FRNUp6kMV3EW3oz/fe0=
 cloud.google.com/go/dlp v1.10.1/go.mod h1:IM8BWz1iJd8njcNcG0+Kyd9OPnqnRNkDV8j42VT5KOI=
+cloud.google.com/go/dlp v1.11.1/go.mod h1:/PA2EnioBeXTL/0hInwgj0rfsQb3lpE3R8XUJxqUNKI=
+cloud.google.com/go/dlp v1.11.2/go.mod h1:9Czi+8Y/FegpWzgSfkRlyz+jwW6Te9Rv26P3UfU/h/w=
 cloud.google.com/go/documentai v1.20.0/go.mod h1:yJkInoMcK0qNAEdRnqY/D5asy73tnPe88I1YTZT+a8E=
 cloud.google.com/go/documentai v1.22.1/go.mod h1:LKs22aDHbJv7ufXuPypzRO7rG3ALLJxzdCXDPutw4Qc=
+cloud.google.com/go/documentai v1.23.5/go.mod h1:ghzBsyVTiVdkfKaUCum/9bGBEyBjDO4GfooEcYKhN+g=
+cloud.google.com/go/documentai v1.23.7/go.mod h1:ghzBsyVTiVdkfKaUCum/9bGBEyBjDO4GfooEcYKhN+g=
+cloud.google.com/go/documentai v1.25.0/go.mod h1:ftLnzw5VcXkLItp6pw1mFic91tMRyfv6hHEY5br4KzY=
 cloud.google.com/go/domains v0.9.1/go.mod h1:aOp1c0MbejQQ2Pjf1iJvnVyT+z6R6s8pX66KaCSDYfE=
+cloud.google.com/go/domains v0.9.4/go.mod h1:27jmJGShuXYdUNjyDG0SodTfT5RwLi7xmH334Gvi3fY=
+cloud.google.com/go/domains v0.9.5/go.mod h1:dBzlxgepazdFhvG7u23XMhmMKBjrkoUNaw0A8AQB55Y=
 cloud.google.com/go/edgecontainer v1.1.1/go.mod h1:O5bYcS//7MELQZs3+7mabRqoWQhXCzenBu0R8bz2rwk=
+cloud.google.com/go/edgecontainer v1.1.4/go.mod h1:AvFdVuZuVGdgaE5YvlL1faAoa1ndRR/5XhXZvPBHbsE=
+cloud.google.com/go/edgecontainer v1.1.5/go.mod h1:rgcjrba3DEDEQAidT4yuzaKWTbkTI5zAMu3yy6ZWS0M=
 cloud.google.com/go/errorreporting v0.3.0/go.mod h1:xsP2yaAp+OAW4OIm60An2bbLpqIhKXdWR/tawvl7QzU=
 cloud.google.com/go/essentialcontacts v1.6.2/go.mod h1:T2tB6tX+TRak7i88Fb2N9Ok3PvY3UNbUsMag9/BARh4=
+cloud.google.com/go/essentialcontacts v1.6.5/go.mod h1:jjYbPzw0x+yglXC890l6ECJWdYeZ5dlYACTFL0U/VuM=
+cloud.google.com/go/essentialcontacts v1.6.6/go.mod h1:XbqHJGaiH0v2UvtuucfOzFXN+rpL/aU5BCZLn4DYl1Q=
 cloud.google.com/go/eventarc v1.12.1/go.mod h1:mAFCW6lukH5+IZjkvrEss+jmt2kOdYlN8aMx3sRJiAI=
 cloud.google.com/go/eventarc v1.13.0/go.mod h1:mAFCW6lukH5+IZjkvrEss+jmt2kOdYlN8aMx3sRJiAI=
+cloud.google.com/go/eventarc v1.13.3/go.mod h1:RWH10IAZIRcj1s/vClXkBgMHwh59ts7hSWcqD3kaclg=
+cloud.google.com/go/eventarc v1.13.4/go.mod h1:zV5sFVoAa9orc/52Q+OuYUG9xL2IIZTbbuTHC6JSY8s=
 cloud.google.com/go/filestore v1.7.1/go.mod h1:y10jsorq40JJnjR/lQ8AfFbbcGlw3g+Dp8oN7i7FjV4=
+cloud.google.com/go/filestore v1.7.4/go.mod h1:S5JCxIbFjeBhWMTfIYH2Jx24J6BqjwpkkPl+nBA5DlI=
+cloud.google.com/go/filestore v1.8.0/go.mod h1:S5JCxIbFjeBhWMTfIYH2Jx24J6BqjwpkkPl+nBA5DlI=
+cloud.google.com/go/filestore v1.8.1/go.mod h1:MbN9KcaM47DRTIuLfQhJEsjaocVebNtNQhSLhKCF5GM=
 cloud.google.com/go/firestore v1.11.0/go.mod h1:b38dKhgzlmNNGTNZZwe7ZRFEuRab1Hay3/DBsIGKKy4=
 cloud.google.com/go/firestore v1.13.0/go.mod h1:QojqqOh8IntInDUSTAh0c8ZsPYAr68Ma8c5DWOy8xb8=
+cloud.google.com/go/firestore v1.14.0/go.mod h1:96MVaHLsEhbvkBEdZgfN+AS/GIkco1LRpH9Xp9YZfzQ=
 cloud.google.com/go/functions v1.15.1/go.mod h1:P5yNWUTkyU+LvW/S9O6V+V423VZooALQlqoXdoPz5AE=
+cloud.google.com/go/functions v1.15.4/go.mod h1:CAsTc3VlRMVvx+XqXxKqVevguqJpnVip4DdonFsX28I=
+cloud.google.com/go/functions v1.16.0/go.mod h1:nbNpfAG7SG7Duw/o1iZ6ohvL7mc6MapWQVpqtM29n8k=
 cloud.google.com/go/gkebackup v0.4.0/go.mod h1:byAyBGUwYGEEww7xsbnUTBHIYcOPy/PgUWUtOeRm9Vg=
 cloud.google.com/go/gkebackup v1.3.1/go.mod h1:vUDOu++N0U5qs4IhG1pcOnD1Mac79xWy6GoBFlWCWBU=
+cloud.google.com/go/gkebackup v1.3.4/go.mod h1:gLVlbM8h/nHIs09ns1qx3q3eaXcGSELgNu1DWXYz1HI=
+cloud.google.com/go/gkebackup v1.3.5/go.mod h1:KJ77KkNN7Wm1LdMopOelV6OodM01pMuK2/5Zt1t4Tvc=
 cloud.google.com/go/gkeconnect v0.8.1/go.mod h1:KWiK1g9sDLZqhxB2xEuPV8V9NYzrqTUmQR9shJHpOZw=
+cloud.google.com/go/gkeconnect v0.8.4/go.mod h1:84hZz4UMlDCKl8ifVW8layK4WHlMAFeq8vbzjU0yJkw=
+cloud.google.com/go/gkeconnect v0.8.5/go.mod h1:LC/rS7+CuJ5fgIbXv8tCD/mdfnlAadTaUufgOkmijuk=
 cloud.google.com/go/gkehub v0.14.1/go.mod h1:VEXKIJZ2avzrbd7u+zeMtW00Y8ddk/4V9511C9CQGTY=
+cloud.google.com/go/gkehub v0.14.4/go.mod h1:Xispfu2MqnnFt8rV/2/3o73SK1snL8s9dYJ9G2oQMfc=
+cloud.google.com/go/gkehub v0.14.5/go.mod h1:6bzqxM+a+vEH/h8W8ec4OJl4r36laxTs3A/fMNHJ0wA=
 cloud.google.com/go/gkemulticloud v0.6.1/go.mod h1:kbZ3HKyTsiwqKX7Yw56+wUGwwNZViRnxWK2DVknXWfw=
 cloud.google.com/go/gkemulticloud v1.0.0/go.mod h1:kbZ3HKyTsiwqKX7Yw56+wUGwwNZViRnxWK2DVknXWfw=
+cloud.google.com/go/gkemulticloud v1.0.3/go.mod h1:7NpJBN94U6DY1xHIbsDqB2+TFZUfjLUKLjUX8NGLor0=
+cloud.google.com/go/gkemulticloud v1.1.0/go.mod h1:7NpJBN94U6DY1xHIbsDqB2+TFZUfjLUKLjUX8NGLor0=
+cloud.google.com/go/gkemulticloud v1.1.1/go.mod h1:C+a4vcHlWeEIf45IB5FFR5XGjTeYhF83+AYIpTy4i2Q=
 cloud.google.com/go/gsuiteaddons v1.6.1/go.mod h1:CodrdOqRZcLp5WOwejHWYBjZvfY0kOphkAKpF/3qdZY=
+cloud.google.com/go/gsuiteaddons v1.6.4/go.mod h1:rxtstw7Fx22uLOXBpsvb9DUbC+fiXs7rF4U29KHM/pE=
+cloud.google.com/go/gsuiteaddons v1.6.5/go.mod h1:Lo4P2IvO8uZ9W+RaC6s1JVxo42vgy+TX5a6hfBZ0ubs=
 cloud.google.com/go/iam v0.13.0/go.mod h1:ljOg+rcNfzZ5d6f1nAUJ8ZIxOaZUVoS14bKCtaLZ/D0=
 cloud.google.com/go/iam v1.1.1/go.mod h1:A5avdyVL2tCppe4unb0951eI9jreack+RJ0/d+KUZOU=
 cloud.google.com/go/iam v1.1.2/go.mod h1:A5avdyVL2tCppe4unb0951eI9jreack+RJ0/d+KUZOU=
+cloud.google.com/go/iam v1.1.5/go.mod h1:rB6P/Ic3mykPbFio+vo7403drjlgvoWfYpJhMXEbzv8=
+cloud.google.com/go/iam v1.1.6/go.mod h1:O0zxdPeGBoFdWW3HWmBxJsk0pfvNM/p/qa82rWOGTwI=
 cloud.google.com/go/iap v1.8.1/go.mod h1:sJCbeqg3mvWLqjZNsI6dfAtbbV1DL2Rl7e1mTyXYREQ=
 cloud.google.com/go/iap v1.9.0/go.mod h1:01OFxd1R+NFrg78S+hoPV5PxEzv22HXaNqUUlmNHFuY=
+cloud.google.com/go/iap v1.9.3/go.mod h1:DTdutSZBqkkOm2HEOTBzhZxh2mwwxshfD/h3yofAiCw=
+cloud.google.com/go/iap v1.9.4/go.mod h1:vO4mSq0xNf/Pu6E5paORLASBwEmphXEjgCFg7aeNu1w=
 cloud.google.com/go/ids v1.4.1/go.mod h1:np41ed8YMU8zOgv53MMMoCntLTn2lF+SUzlM+O3u/jw=
+cloud.google.com/go/ids v1.4.4/go.mod h1:z+WUc2eEl6S/1aZWzwtVNWoSZslgzPxAboS0lZX0HjI=
+cloud.google.com/go/ids v1.4.5/go.mod h1:p0ZnyzjMWxww6d2DvMGnFwCsSxDJM666Iir1bK1UuBo=
 cloud.google.com/go/iot v1.7.1/go.mod h1:46Mgw7ev1k9KqK1ao0ayW9h0lI+3hxeanz+L1zmbbbk=
+cloud.google.com/go/iot v1.7.4/go.mod h1:3TWqDVvsddYBG++nHSZmluoCAVGr1hAcabbWZNKEZLk=
+cloud.google.com/go/iot v1.7.5/go.mod h1:nq3/sqTz3HGaWJi1xNiX7F41ThOzpud67vwk0YsSsqs=
 cloud.google.com/go/kms v1.12.1/go.mod h1:c9J991h5DTl+kg7gi3MYomh12YEENGrf48ee/N/2CDM=
 cloud.google.com/go/kms v1.15.2/go.mod h1:3hopT4+7ooWRCjc2DxgnpESFxhIraaI2IpAVUEhbT/w=
+cloud.google.com/go/kms v1.15.5/go.mod h1:cU2H5jnp6G2TDpUGZyqTCoy1n16fbubHZjmVXSMtwDI=
+cloud.google.com/go/kms v1.15.7/go.mod h1:ub54lbsa6tDkUwnu4W7Yt1aAIFLnspgh0kPGToDukeI=
 cloud.google.com/go/language v1.10.1/go.mod h1:CPp94nsdVNiQEt1CNjF5WkTcisLiHPyIbMhvR8H2AW0=
 cloud.google.com/go/language v1.11.0/go.mod h1:uDx+pFDdAKTY8ehpWbiXyQdz8tDSYLJbQcXsCkjYyvQ=
+cloud.google.com/go/language v1.12.2/go.mod h1:9idWapzr/JKXBBQ4lWqVX/hcadxB194ry20m/bTrhWc=
+cloud.google.com/go/language v1.12.3/go.mod h1:evFX9wECX6mksEva8RbRnr/4wi/vKGYnAJrTRXU8+f8=
 cloud.google.com/go/lifesciences v0.9.1/go.mod h1:hACAOd1fFbCGLr/+weUKRAJas82Y4vrL3O5326N//Wc=
+cloud.google.com/go/lifesciences v0.9.4/go.mod h1:bhm64duKhMi7s9jR9WYJYvjAFJwRqNj+Nia7hF0Z7JA=
+cloud.google.com/go/lifesciences v0.9.5/go.mod h1:OdBm0n7C0Osh5yZB7j9BXyrMnTRGBJIZonUMxo5CzPw=
 cloud.google.com/go/logging v1.7.0/go.mod h1:3xjP2CjkM3ZkO73aj4ASA5wRPGGCRrPIAeNqVNkzY8M=
 cloud.google.com/go/logging v1.8.1/go.mod h1:TJjR+SimHwuC8MZ9cjByQulAMgni+RkXeI3wwctHJEI=
+cloud.google.com/go/logging v1.9.0/go.mod h1:1Io0vnZv4onoUnsVUQY3HZ3Igb1nBchky0A0y7BBBhE=
 cloud.google.com/go/longrunning v0.5.0/go.mod h1:0JNuqRShmscVAhIACGtskSAWtqtOoPkwP0YF1oVEchc=
 cloud.google.com/go/longrunning v0.5.1/go.mod h1:spvimkwdz6SPWKEt/XBij79E9fiTkHSQl/fRUUQJYJc=
+cloud.google.com/go/longrunning v0.5.2/go.mod h1:nqo6DQbNV2pXhGDbDMoN2bWz68MjZUzqv2YttZiveCs=
+cloud.google.com/go/longrunning v0.5.4/go.mod h1:zqNVncI0BOP8ST6XQD1+VcvuShMmq7+xFSzOL++V0dI=
+cloud.google.com/go/longrunning v0.5.5/go.mod h1:WV2LAxD8/rg5Z1cNW6FJ/ZpX4E4VnDnoTk0yawPBB7s=
 cloud.google.com/go/managedidentities v1.6.1/go.mod h1:h/irGhTN2SkZ64F43tfGPMbHnypMbu4RB3yl8YcuEak=
+cloud.google.com/go/managedidentities v1.6.4/go.mod h1:WgyaECfHmF00t/1Uk8Oun3CQ2PGUtjc3e9Alh79wyiM=
+cloud.google.com/go/managedidentities v1.6.5/go.mod h1:fkFI2PwwyRQbjLxlm5bQ8SjtObFMW3ChBGNqaMcgZjI=
 cloud.google.com/go/maps v0.7.0/go.mod h1:3GnvVl3cqeSvgMcpRlQidXsPYuDGQ8naBis7MVzpXsY=
 cloud.google.com/go/maps v1.4.0/go.mod h1:6mWTUv+WhnOwAgjVsSW2QPPECmW+s3PcRyOa9vgG/5s=
+cloud.google.com/go/maps v1.6.1/go.mod h1:4+buOHhYXFBp58Zj/K+Lc1rCmJssxxF4pJ5CJnhdz18=
+cloud.google.com/go/maps v1.6.3/go.mod h1:VGAn809ADswi1ASofL5lveOHPnE6Rk/SFTTBx1yuOLw=
+cloud.google.com/go/maps v1.6.4/go.mod h1:rhjqRy8NWmDJ53saCfsXQ0LKwBHfi6OSh5wkq6BaMhI=
 cloud.google.com/go/mediatranslation v0.8.1/go.mod h1:L/7hBdEYbYHQJhX2sldtTO5SZZ1C1vkapubj0T2aGig=
+cloud.google.com/go/mediatranslation v0.8.4/go.mod h1:9WstgtNVAdN53m6TQa5GjIjLqKQPXe74hwSCxUP6nj4=
+cloud.google.com/go/mediatranslation v0.8.5/go.mod h1:y7kTHYIPCIfgyLbKncgqouXJtLsU+26hZhHEEy80fSs=
 cloud.google.com/go/memcache v1.10.1/go.mod h1:47YRQIarv4I3QS5+hoETgKO40InqzLP6kpNLvyXuyaA=
+cloud.google.com/go/memcache v1.10.4/go.mod h1:v/d8PuC8d1gD6Yn5+I3INzLR01IDn0N4Ym56RgikSI0=
+cloud.google.com/go/memcache v1.10.5/go.mod h1:/FcblbNd0FdMsx4natdj+2GWzTq+cjZvMa1I+9QsuMA=
 cloud.google.com/go/metastore v1.11.1/go.mod h1:uZuSo80U3Wd4zi6C22ZZliOUJ3XeM/MlYi/z5OAOWRA=
 cloud.google.com/go/metastore v1.12.0/go.mod h1:uZuSo80U3Wd4zi6C22ZZliOUJ3XeM/MlYi/z5OAOWRA=
+cloud.google.com/go/metastore v1.13.3/go.mod h1:K+wdjXdtkdk7AQg4+sXS8bRrQa9gcOr+foOMF2tqINE=
+cloud.google.com/go/metastore v1.13.4/go.mod h1:FMv9bvPInEfX9Ac1cVcRXp8EBBQnBcqH6gz3KvJ9BAE=
 cloud.google.com/go/monitoring v1.15.1/go.mod h1:lADlSAlFdbqQuwwpaImhsJXu1QSdd3ojypXrFSMr2rM=
 cloud.google.com/go/monitoring v1.16.0/go.mod h1:Ptp15HgAyM1fNICAojDMoNc/wUmn67mLHQfyqbw+poY=
+cloud.google.com/go/monitoring v1.16.3/go.mod h1:KwSsX5+8PnXv5NJnICZzW2R8pWTis8ypC4zmdRD63Tw=
+cloud.google.com/go/monitoring v1.17.0/go.mod h1:KwSsX5+8PnXv5NJnICZzW2R8pWTis8ypC4zmdRD63Tw=
+cloud.google.com/go/monitoring v1.18.0/go.mod h1:c92vVBCeq/OB4Ioyo+NbN2U7tlg5ZH41PZcdvfc+Lcg=
 cloud.google.com/go/networkconnectivity v1.12.1/go.mod h1:PelxSWYM7Sh9/guf8CFhi6vIqf19Ir/sbfZRUwXh92E=
 cloud.google.com/go/networkconnectivity v1.13.0/go.mod h1:SAnGPes88pl7QRLUen2HmcBSE9AowVAcdug8c0RSBFk=
+cloud.google.com/go/networkconnectivity v1.14.3/go.mod h1:4aoeFdrJpYEXNvrnfyD5kIzs8YtHg945Og4koAjHQek=
+cloud.google.com/go/networkconnectivity v1.14.4/go.mod h1:PU12q++/IMnDJAB+3r+tJtuCXCfwfN+C6Niyj6ji1Po=
 cloud.google.com/go/networkmanagement v1.8.0/go.mod h1:Ho/BUGmtyEqrttTgWEe7m+8vDdK74ibQc+Be0q7Fof0=
 cloud.google.com/go/networkmanagement v1.9.0/go.mod h1:UTUaEU9YwbCAhhz3jEOHr+2/K/MrBk2XxOLS89LQzFw=
+cloud.google.com/go/networkmanagement v1.9.3/go.mod h1:y7WMO1bRLaP5h3Obm4tey+NquUvB93Co1oh4wpL+XcU=
+cloud.google.com/go/networkmanagement v1.9.4/go.mod h1:daWJAl0KTFytFL7ar33I6R/oNBH8eEOX/rBNHrC/8TA=
 cloud.google.com/go/networksecurity v0.9.1/go.mod h1:MCMdxOKQ30wsBI1eI659f9kEp4wuuAueoC9AJKSPWZQ=
+cloud.google.com/go/networksecurity v0.9.4/go.mod h1:E9CeMZ2zDsNBkr8axKSYm8XyTqNhiCHf1JO/Vb8mD1w=
+cloud.google.com/go/networksecurity v0.9.5/go.mod h1:KNkjH/RsylSGyyZ8wXpue8xpCEK+bTtvof8SBfIhMG8=
 cloud.google.com/go/notebooks v1.9.1/go.mod h1:zqG9/gk05JrzgBt4ghLzEepPHNwE5jgPcHZRKhlC1A8=
 cloud.google.com/go/notebooks v1.10.0/go.mod h1:SOPYMZnttHxqot0SGSFSkRrwE29eqnKPBJFqgWmiK2k=
+cloud.google.com/go/notebooks v1.11.2/go.mod h1:z0tlHI/lREXC8BS2mIsUeR3agM1AkgLiS+Isov3SS70=
+cloud.google.com/go/notebooks v1.11.3/go.mod h1:0wQyI2dQC3AZyQqWnRsp+yA+kY4gC7ZIVP4Qg3AQcgo=
 cloud.google.com/go/optimization v1.4.1/go.mod h1:j64vZQP7h9bO49m2rVaTVoNM0vEBEN5eKPUPbZyXOrk=
 cloud.google.com/go/optimization v1.5.0/go.mod h1:evo1OvTxeBRBu6ydPlrIRizKY/LJKo/drDMMRKqGEUU=
+cloud.google.com/go/optimization v1.6.2/go.mod h1:mWNZ7B9/EyMCcwNl1frUGEuY6CPijSkz88Fz2vwKPOY=
+cloud.google.com/go/optimization v1.6.3/go.mod h1:8ve3svp3W6NFcAEFr4SfJxrldzhUl4VMUJmhrqVKtYA=
 cloud.google.com/go/orchestration v1.8.1/go.mod h1:4sluRF3wgbYVRqz7zJ1/EUNc90TTprliq9477fGobD8=
+cloud.google.com/go/orchestration v1.8.4/go.mod h1:d0lywZSVYtIoSZXb0iFjv9SaL13PGyVOKDxqGxEf/qI=
+cloud.google.com/go/orchestration v1.8.5/go.mod h1:C1J7HesE96Ba8/hZ71ISTV2UAat0bwN+pi85ky38Yq8=
 cloud.google.com/go/orgpolicy v1.11.1/go.mod h1:8+E3jQcpZJQliP+zaFfayC2Pg5bmhuLK755wKhIIUCE=
+cloud.google.com/go/orgpolicy v1.11.4/go.mod h1:0+aNV/nrfoTQ4Mytv+Aw+stBDBjNf4d8fYRA9herfJI=
+cloud.google.com/go/orgpolicy v1.12.0/go.mod h1:0+aNV/nrfoTQ4Mytv+Aw+stBDBjNf4d8fYRA9herfJI=
+cloud.google.com/go/orgpolicy v1.12.1/go.mod h1:aibX78RDl5pcK3jA8ysDQCFkVxLj3aOQqrbBaUL2V5I=
 cloud.google.com/go/osconfig v1.12.1/go.mod h1:4CjBxND0gswz2gfYRCUoUzCm9zCABp91EeTtWXyz0tE=
+cloud.google.com/go/osconfig v1.12.4/go.mod h1:B1qEwJ/jzqSRslvdOCI8Kdnp0gSng0xW4LOnIebQomA=
+cloud.google.com/go/osconfig v1.12.5/go.mod h1:D9QFdxzfjgw3h/+ZaAb5NypM8bhOMqBzgmbhzWViiW8=
 cloud.google.com/go/oslogin v1.10.1/go.mod h1:x692z7yAue5nE7CsSnoG0aaMbNoRJRXO4sn73R+ZqAs=
+cloud.google.com/go/oslogin v1.12.2/go.mod h1:CQ3V8Jvw4Qo4WRhNPF0o+HAM4DiLuE27Ul9CX9g2QdY=
+cloud.google.com/go/oslogin v1.13.0/go.mod h1:xPJqLwpTZ90LSE5IL1/svko+6c5avZLluiyylMb/sRA=
+cloud.google.com/go/oslogin v1.13.1/go.mod h1:vS8Sr/jR7QvPWpCjNqy6LYZr5Zs1e8ZGW/KPn9gmhws=
 cloud.google.com/go/phishingprotection v0.8.1/go.mod h1:AxonW7GovcA8qdEk13NfHq9hNx5KPtfxXNeUxTDxB6I=
+cloud.google.com/go/phishingprotection v0.8.4/go.mod h1:6b3kNPAc2AQ6jZfFHioZKg9MQNybDg4ixFd4RPZZ2nE=
+cloud.google.com/go/phishingprotection v0.8.5/go.mod h1:g1smd68F7mF1hgQPuYn3z8HDbNre8L6Z0b7XMYFmX7I=
 cloud.google.com/go/policytroubleshooter v1.7.1/go.mod h1:0NaT5v3Ag1M7U5r0GfDCpUFkWd9YqpubBWsQlhanRv0=
 cloud.google.com/go/policytroubleshooter v1.9.0/go.mod h1:+E2Lga7TycpeSTj2FsH4oXxTnrbHJGRlKhVZBLGgU64=
+cloud.google.com/go/policytroubleshooter v1.10.2/go.mod h1:m4uF3f6LseVEnMV6nknlN2vYGRb+75ylQwJdnOXfnv0=
+cloud.google.com/go/policytroubleshooter v1.10.3/go.mod h1:+ZqG3agHT7WPb4EBIRqUv4OyIwRTZvsVDHZ8GlZaoxk=
 cloud.google.com/go/privatecatalog v0.9.1/go.mod h1:0XlDXW2unJXdf9zFz968Hp35gl/bhF4twwpXZAW50JA=
+cloud.google.com/go/privatecatalog v0.9.4/go.mod h1:SOjm93f+5hp/U3PqMZAHTtBtluqLygrDrVO8X8tYtG0=
+cloud.google.com/go/privatecatalog v0.9.5/go.mod h1:fVWeBOVe7uj2n3kWRGlUQqR/pOd450J9yZoOECcQqJk=
 cloud.google.com/go/pubsub v1.32.0/go.mod h1:f+w71I33OMyxf9VpMVcZbnG5KSUkCOUHYpFd5U1GdRc=
 cloud.google.com/go/pubsub v1.33.0/go.mod h1:f+w71I33OMyxf9VpMVcZbnG5KSUkCOUHYpFd5U1GdRc=
+cloud.google.com/go/pubsub v1.34.0/go.mod h1:alj4l4rBg+N3YTFDDC+/YyFTs6JAjam2QfYsddcAW4c=
+cloud.google.com/go/pubsub v1.36.1/go.mod h1:iYjCa9EzWOoBiTdd4ps7QoMtMln5NwaZQpK1hbRfBDE=
 cloud.google.com/go/pubsublite v1.8.1/go.mod h1:fOLdU4f5xldK4RGJrBMm+J7zMWNj/k4PxwEZXy39QS0=
 cloud.google.com/go/recaptchaenterprise/v2 v2.7.2/go.mod h1:kR0KjsJS7Jt1YSyWFkseQ756D45kaYNTlDPPaRAvDBU=
+cloud.google.com/go/recaptchaenterprise/v2 v2.8.3/go.mod h1:Dak54rw6lC2gBY8FBznpOCAR58wKf+R+ZSJRoeJok4w=
+cloud.google.com/go/recaptchaenterprise/v2 v2.9.0/go.mod h1:Dak54rw6lC2gBY8FBznpOCAR58wKf+R+ZSJRoeJok4w=
+cloud.google.com/go/recaptchaenterprise/v2 v2.9.2/go.mod h1:trwwGkfhCmp05Ll5MSJPXY7yvnO0p4v3orGANAFHAuU=
 cloud.google.com/go/recommendationengine v0.8.1/go.mod h1:MrZihWwtFYWDzE6Hz5nKcNz3gLizXVIDI/o3G1DLcrE=
+cloud.google.com/go/recommendationengine v0.8.4/go.mod h1:GEteCf1PATl5v5ZsQ60sTClUE0phbWmo3rQ1Js8louU=
+cloud.google.com/go/recommendationengine v0.8.5/go.mod h1:A38rIXHGFvoPvmy6pZLozr0g59NRNREz4cx7F58HAsQ=
 cloud.google.com/go/recommender v1.10.1/go.mod h1:XFvrE4Suqn5Cq0Lf+mCP6oBHD/yRMA8XxP5sb7Q7gpA=
 cloud.google.com/go/recommender v1.11.0/go.mod h1:kPiRQhPyTJ9kyXPCG6u/dlPLbYfFlkwHNRwdzPVAoII=
+cloud.google.com/go/recommender v1.11.3/go.mod h1:+FJosKKJSId1MBFeJ/TTyoGQZiEelQQIZMKYYD8ruK4=
+cloud.google.com/go/recommender v1.12.0/go.mod h1:+FJosKKJSId1MBFeJ/TTyoGQZiEelQQIZMKYYD8ruK4=
+cloud.google.com/go/recommender v1.12.1/go.mod h1:gf95SInWNND5aPas3yjwl0I572dtudMhMIG4ni8nr+0=
 cloud.google.com/go/redis v1.13.1/go.mod h1:VP7DGLpE91M6bcsDdMuyCm2hIpB6Vp2hI090Mfd1tcg=
+cloud.google.com/go/redis v1.14.1/go.mod h1:MbmBxN8bEnQI4doZPC1BzADU4HGocHBk2de3SbgOkqs=
+cloud.google.com/go/redis v1.14.2/go.mod h1:g0Lu7RRRz46ENdFKQ2EcQZBAJ2PtJHJLuiiRuEXwyQw=
 cloud.google.com/go/resourcemanager v1.9.1/go.mod h1:dVCuosgrh1tINZ/RwBufr8lULmWGOkPS8gL5gqyjdT8=
+cloud.google.com/go/resourcemanager v1.9.4/go.mod h1:N1dhP9RFvo3lUfwtfLWVxfUWq8+KUQ+XLlHLH3BoFJ0=
+cloud.google.com/go/resourcemanager v1.9.5/go.mod h1:hep6KjelHA+ToEjOfO3garMKi/CLYwTqeAw7YiEI9x8=
 cloud.google.com/go/resourcesettings v1.6.1/go.mod h1:M7mk9PIZrC5Fgsu1kZJci6mpgN8o0IUzVx3eJU3y4Jw=
+cloud.google.com/go/resourcesettings v1.6.4/go.mod h1:pYTTkWdv2lmQcjsthbZLNBP4QW140cs7wqA3DuqErVI=
+cloud.google.com/go/resourcesettings v1.6.5/go.mod h1:WBOIWZraXZOGAgoR4ukNj0o0HiSMO62H9RpFi9WjP9I=
 cloud.google.com/go/retail v1.14.1/go.mod h1:y3Wv3Vr2k54dLNIrCzenyKG8g8dhvhncT2NcNjb/6gE=
+cloud.google.com/go/retail v1.14.4/go.mod h1:l/N7cMtY78yRnJqp5JW8emy7MB1nz8E4t2yfOmklYfg=
+cloud.google.com/go/retail v1.16.0/go.mod h1:LW7tllVveZo4ReWt68VnldZFWJRzsh9np+01J9dYWzE=
 cloud.google.com/go/run v0.9.0/go.mod h1:Wwu+/vvg8Y+JUApMwEDfVfhetv30hCG4ZwDR/IXl2Qg=
 cloud.google.com/go/run v1.2.0/go.mod h1:36V1IlDzQ0XxbQjUx6IYbw8H3TJnWvhii963WW3B/bo=
+cloud.google.com/go/run v1.3.3/go.mod h1:WSM5pGyJ7cfYyYbONVQBN4buz42zFqwG67Q3ch07iK4=
+cloud.google.com/go/run v1.3.4/go.mod h1:FGieuZvQ3tj1e9GnzXqrMABSuir38AJg5xhiYq+SF3o=
 cloud.google.com/go/scheduler v1.10.1/go.mod h1:R63Ldltd47Bs4gnhQkmNDse5w8gBRrhObZ54PxgR2Oo=
+cloud.google.com/go/scheduler v1.10.4/go.mod h1:MTuXcrJC9tqOHhixdbHDFSIuh7xZF2IysiINDuiq6NI=
+cloud.google.com/go/scheduler v1.10.5/go.mod h1:MTuXcrJC9tqOHhixdbHDFSIuh7xZF2IysiINDuiq6NI=
+cloud.google.com/go/scheduler v1.10.6/go.mod h1:pe2pNCtJ+R01E06XCDOJs1XvAMbv28ZsQEbqknxGOuE=
 cloud.google.com/go/secretmanager v1.11.1/go.mod h1:znq9JlXgTNdBeQk9TBW/FnR/W4uChEKGeqQWAJ8SXFw=
+cloud.google.com/go/secretmanager v1.11.4/go.mod h1:wreJlbS9Zdq21lMzWmJ0XhWW2ZxgPeahsqeV/vZoJ3w=
+cloud.google.com/go/secretmanager v1.11.5/go.mod h1:eAGv+DaCHkeVyQi0BeXgAHOU0RdrMeZIASKc+S7VqH4=
 cloud.google.com/go/security v1.15.1/go.mod h1:MvTnnbsWnehoizHi09zoiZob0iCHVcL4AUBj76h9fXA=
+cloud.google.com/go/security v1.15.4/go.mod h1:oN7C2uIZKhxCLiAAijKUCuHLZbIt/ghYEo8MqwD/Ty4=
+cloud.google.com/go/security v1.15.5/go.mod h1:KS6X2eG3ynWjqcIX976fuToN5juVkF6Ra6c7MPnldtc=
 cloud.google.com/go/securitycenter v1.23.0/go.mod h1:8pwQ4n+Y9WCWM278R8W3nF65QtY172h4S8aXyI9/hsQ=
+cloud.google.com/go/securitycenter v1.24.2/go.mod h1:l1XejOngggzqwr4Fa2Cn+iWZGf+aBLTXtB/vXjy5vXM=
+cloud.google.com/go/securitycenter v1.24.3/go.mod h1:l1XejOngggzqwr4Fa2Cn+iWZGf+aBLTXtB/vXjy5vXM=
+cloud.google.com/go/securitycenter v1.24.4/go.mod h1:PSccin+o1EMYKcFQzz9HMMnZ2r9+7jbc+LvPjXhpwcU=
 cloud.google.com/go/servicedirectory v1.10.1/go.mod h1:Xv0YVH8s4pVOwfM/1eMTl0XJ6bzIOSLDt8f8eLaGOxQ=
 cloud.google.com/go/servicedirectory v1.11.0/go.mod h1:Xv0YVH8s4pVOwfM/1eMTl0XJ6bzIOSLDt8f8eLaGOxQ=
+cloud.google.com/go/servicedirectory v1.11.3/go.mod h1:LV+cHkomRLr67YoQy3Xq2tUXBGOs5z5bPofdq7qtiAw=
+cloud.google.com/go/servicedirectory v1.11.4/go.mod h1:Bz2T9t+/Ehg6x+Y7Ycq5xiShYLD96NfEsWNHyitj1qM=
 cloud.google.com/go/shell v1.7.1/go.mod h1:u1RaM+huXFaTojTbW4g9P5emOrrmLE69KrxqQahKn4g=
+cloud.google.com/go/shell v1.7.4/go.mod h1:yLeXB8eKLxw0dpEmXQ/FjriYrBijNsONpwnWsdPqlKM=
+cloud.google.com/go/shell v1.7.5/go.mod h1:hL2++7F47/IfpfTO53KYf1EC+F56k3ThfNEXd4zcuiE=
 cloud.google.com/go/spanner v1.47.0/go.mod h1:IXsJwVW2j4UKs0eYDqodab6HgGuA1bViSqW4uH9lfUI=
 cloud.google.com/go/spanner v1.49.0/go.mod h1:eGj9mQGK8+hkgSVbHNQ06pQ4oS+cyc4tXXd6Dif1KoM=
+cloud.google.com/go/spanner v1.51.0/go.mod h1:c5KNo5LQ1X5tJwma9rSQZsXNBDNvj4/n8BVc3LNahq0=
+cloud.google.com/go/spanner v1.55.0/go.mod h1:HXEznMUVhC+PC+HDyo9YFG2Ajj5BQDkcbqB9Z2Ffxi0=
+cloud.google.com/go/spanner v1.56.0/go.mod h1:DndqtUKQAt3VLuV2Le+9Y3WTnq5cNKrnLb/Piqcj+h0=
 cloud.google.com/go/speech v1.17.1/go.mod h1:8rVNzU43tQvxDaGvqOhpDqgkJTFowBpDvCJ14kGlJYo=
 cloud.google.com/go/speech v1.19.0/go.mod h1:8rVNzU43tQvxDaGvqOhpDqgkJTFowBpDvCJ14kGlJYo=
+cloud.google.com/go/speech v1.20.1/go.mod h1:wwolycgONvfz2EDU8rKuHRW3+wc9ILPsAWoikBEWavY=
+cloud.google.com/go/speech v1.21.0/go.mod h1:wwolycgONvfz2EDU8rKuHRW3+wc9ILPsAWoikBEWavY=
+cloud.google.com/go/speech v1.21.1/go.mod h1:E5GHZXYQlkqWQwY5xRSLHw2ci5NMQNG52FfMU1aZrIA=
+cloud.google.com/go/storage v1.14.0/go.mod h1:GrKmX003DSIwi9o29oFT7YDnHYwZoctc3fOKtUw0Xmo=
 cloud.google.com/go/storage v1.30.1/go.mod h1:NfxhC0UJE1aXSx7CIIbCf7y9HKT7BiccwkR7+P7gN8E=
+cloud.google.com/go/storage v1.36.0/go.mod h1:M6M/3V/D3KpzMTJyPOR/HU6n2Si5QdaXYEsng2xgOs8=
 cloud.google.com/go/storagetransfer v1.10.0/go.mod h1:DM4sTlSmGiNczmV6iZyceIh2dbs+7z2Ayg6YAiQlYfA=
+cloud.google.com/go/storagetransfer v1.10.3/go.mod h1:Up8LY2p6X68SZ+WToswpQbQHnJpOty/ACcMafuey8gc=
+cloud.google.com/go/storagetransfer v1.10.4/go.mod h1:vef30rZKu5HSEf/x1tK3WfWrL0XVoUQN/EPDRGPzjZs=
 cloud.google.com/go/talent v1.6.2/go.mod h1:CbGvmKCG61mkdjcqTcLOkb2ZN1SrQI8MDyma2l7VD24=
+cloud.google.com/go/talent v1.6.5/go.mod h1:Mf5cma696HmE+P2BWJ/ZwYqeJXEeU0UqjHFXVLadEDI=
+cloud.google.com/go/talent v1.6.6/go.mod h1:y/WQDKrhVz12WagoarpAIyKKMeKGKHWPoReZ0g8tseQ=
 cloud.google.com/go/texttospeech v1.7.1/go.mod h1:m7QfG5IXxeneGqTapXNxv2ItxP/FS0hCZBwXYqucgSk=
+cloud.google.com/go/texttospeech v1.7.4/go.mod h1:vgv0002WvR4liGuSd5BJbWy4nDn5Ozco0uJymY5+U74=
+cloud.google.com/go/texttospeech v1.7.5/go.mod h1:tzpCuNWPwrNJnEa4Pu5taALuZL4QRRLcb+K9pbhXT6M=
 cloud.google.com/go/tpu v1.6.1/go.mod h1:sOdcHVIgDEEOKuqUoi6Fq53MKHJAtOwtz0GuKsWSH3E=
+cloud.google.com/go/tpu v1.6.4/go.mod h1:NAm9q3Rq2wIlGnOhpYICNI7+bpBebMJbh0yyp3aNw1Y=
+cloud.google.com/go/tpu v1.6.5/go.mod h1:P9DFOEBIBhuEcZhXi+wPoVy/cji+0ICFi4TtTkMHSSs=
 cloud.google.com/go/trace v1.10.1/go.mod h1:gbtL94KE5AJLH3y+WVpfWILmqgc6dXcqgNXdOPAQTYk=
+cloud.google.com/go/trace v1.10.4/go.mod h1:Nso99EDIK8Mj5/zmB+iGr9dosS/bzWCJ8wGmE6TXNWY=
+cloud.google.com/go/trace v1.10.5/go.mod h1:9hjCV1nGBCtXbAE4YK7OqJ8pmPYSxPA0I67JwRd5s3M=
 cloud.google.com/go/translate v1.8.1/go.mod h1:d1ZH5aaOA0CNhWeXeC8ujd4tdCFw8XoNWRljklu5RHs=
 cloud.google.com/go/translate v1.9.0/go.mod h1:d1ZH5aaOA0CNhWeXeC8ujd4tdCFw8XoNWRljklu5RHs=
+cloud.google.com/go/translate v1.9.3/go.mod h1:Kbq9RggWsbqZ9W5YpM94Q1Xv4dshw/gr/SHfsl5yCZ0=
+cloud.google.com/go/translate v1.10.0/go.mod h1:Kbq9RggWsbqZ9W5YpM94Q1Xv4dshw/gr/SHfsl5yCZ0=
+cloud.google.com/go/translate v1.10.1/go.mod h1:adGZcQNom/3ogU65N9UXHOnnSvjPwA/jKQUMnsYXOyk=
 cloud.google.com/go/video v1.17.1/go.mod h1:9qmqPqw/Ib2tLqaeHgtakU+l5TcJxCJbhFXM7UJjVzU=
 cloud.google.com/go/video v1.20.0/go.mod h1:U3G3FTnsvAGqglq9LxgqzOiBc/Nt8zis8S+850N2DUM=
+cloud.google.com/go/video v1.20.3/go.mod h1:TnH/mNZKVHeNtpamsSPygSR0iHtvrR/cW1/GDjN5+GU=
+cloud.google.com/go/video v1.20.4/go.mod h1:LyUVjyW+Bwj7dh3UJnUGZfyqjEto9DnrvTe1f/+QrW0=
 cloud.google.com/go/videointelligence v1.11.1/go.mod h1:76xn/8InyQHarjTWsBR058SmlPCwQjgcvoW0aZykOvo=
+cloud.google.com/go/videointelligence v1.11.4/go.mod h1:kPBMAYsTPFiQxMLmmjpcZUMklJp3nC9+ipJJtprccD8=
+cloud.google.com/go/videointelligence v1.11.5/go.mod h1:/PkeQjpRponmOerPeJxNPuxvi12HlW7Em0lJO14FC3I=
 cloud.google.com/go/vision/v2 v2.7.2/go.mod h1:jKa8oSYBWhYiXarHPvP4USxYANYUEdEsQrloLjrSwJU=
+cloud.google.com/go/vision/v2 v2.7.5/go.mod h1:GcviprJLFfK9OLf0z8Gm6lQb6ZFUulvpZws+mm6yPLM=
+cloud.google.com/go/vision/v2 v2.8.0/go.mod h1:ocqDiA2j97pvgogdyhoxiQp2ZkDCyr0HWpicywGGRhU=
 cloud.google.com/go/vmmigration v1.7.1/go.mod h1:WD+5z7a/IpZ5bKK//YmT9E047AD+rjycCAvyMxGJbro=
+cloud.google.com/go/vmmigration v1.7.4/go.mod h1:yBXCmiLaB99hEl/G9ZooNx2GyzgsjKnw5fWcINRgD70=
+cloud.google.com/go/vmmigration v1.7.5/go.mod h1:pkvO6huVnVWzkFioxSghZxIGcsstDvYiVCxQ9ZH3eYI=
 cloud.google.com/go/vmwareengine v0.4.1/go.mod h1:Px64x+BvjPZwWuc4HdmVhoygcXqEkGHXoa7uyfTgSI0=
 cloud.google.com/go/vmwareengine v1.0.0/go.mod h1:Px64x+BvjPZwWuc4HdmVhoygcXqEkGHXoa7uyfTgSI0=
+cloud.google.com/go/vmwareengine v1.0.3/go.mod h1:QSpdZ1stlbfKtyt6Iu19M6XRxjmXO+vb5a/R6Fvy2y4=
+cloud.google.com/go/vmwareengine v1.1.1/go.mod h1:nMpdsIVkUrSaX8UvmnBhzVzG7PPvNYc5BszcvIVudYs=
 cloud.google.com/go/vpcaccess v1.7.1/go.mod h1:FogoD46/ZU+JUBX9D606X21EnxiszYi2tArQwLY4SXs=
+cloud.google.com/go/vpcaccess v1.7.4/go.mod h1:lA0KTvhtEOb/VOdnH/gwPuOzGgM+CWsmGu6bb4IoMKk=
+cloud.google.com/go/vpcaccess v1.7.5/go.mod h1:slc5ZRvvjP78c2dnL7m4l4R9GwL3wDLcpIWz6P/ziig=
 cloud.google.com/go/webrisk v1.9.1/go.mod h1:4GCmXKcOa2BZcZPn6DCEvE7HypmEJcJkr4mtM+sqYPc=
+cloud.google.com/go/webrisk v1.9.4/go.mod h1:w7m4Ib4C+OseSr2GL66m0zMBywdrVNTDKsdEsfMl7X0=
+cloud.google.com/go/webrisk v1.9.5/go.mod h1:aako0Fzep1Q714cPEM5E+mtYX8/jsfegAuS8aivxy3U=
 cloud.google.com/go/websecurityscanner v1.6.1/go.mod h1:Njgaw3rttgRHXzwCB8kgCYqv5/rGpFCsBOvPbYgszpg=
+cloud.google.com/go/websecurityscanner v1.6.4/go.mod h1:mUiyMQ+dGpPPRkHgknIZeCzSHJ45+fY4F52nZFDHm2o=
+cloud.google.com/go/websecurityscanner v1.6.5/go.mod h1:QR+DWaxAz2pWooylsBF854/Ijvuoa3FCyS1zBa1rAVQ=
 cloud.google.com/go/workflows v1.11.1/go.mod h1:Z+t10G1wF7h8LgdY/EmRcQY8ptBD/nvofaL6FqlET6g=
 cloud.google.com/go/workflows v1.12.0/go.mod h1:PYhSk2b6DhZ508tj8HXKaBh+OFe+xdl0dHF/tJdzPQM=
+cloud.google.com/go/workflows v1.12.3/go.mod h1:fmOUeeqEwPzIU81foMjTRQIdwQHADi/vEr1cx9R1m5g=
+cloud.google.com/go/workflows v1.12.4/go.mod h1:yQ7HUqOkdJK4duVtMeBCAOPiN1ZF1E9pAMX51vpwB/w=
+github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
+github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
+github.com/alecthomas/kingpin/v2 v2.4.0/go.mod h1:0gyi0zQnjuFk8xrkNKamJoyUo382HRL7ATRpFZCw6tE=
+github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137/go.mod h1:OMCwj8VM1Kc9e19TLln2VL61YJF0x1XFtfdL4JdbSyE=
+github.com/andybalholm/brotli v1.0.4/go.mod h1:fO7iG3H7G2nSZ7m0zPUDn85XEX2GTukHGRSepvi9Eig=
+github.com/apache/thrift v0.16.0/go.mod h1:PHK3hniurgQaNMZYaCLEqXKsYK8upmhPbmdP2FXSqgU=
 github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5/go.mod h1:wHh0iHkYZB8zMSxRWpUBQtwG5a7fFgvEO+odwuTv2gs=
+github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
+github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2/go.mod h1:WaHUgvxTVq04UNunO+XhnAqY/wQc+bxr74GqbsZ/Jqw=
 github.com/blang/semver v3.5.1+incompatible h1:cQNTCjp13qL8KC3Nbxr/y2Bqb63oX6wdnnjpJbkM4JQ=
 github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
 github.com/cespare/xxhash v1.1.0 h1:a6HrQnmkObjyL+Gs60czilIUGqrzKutQD6XZog3p+ko=
@@ -186,87 +457,278 @@ github.com/chzyer/logex v1.2.1/go.mod h1:JLbx6lG2kDbNRFnfkgvh4eRJRPX1QCoOIWomwys
 github.com/chzyer/readline v1.5.1/go.mod h1:Eh+b79XXUwfKfcPLepksvw2tcLE/Ct21YObkaSkeBlk=
 github.com/chzyer/test v1.0.0/go.mod h1:2JlltgoNkt4TW/z9V/IzDdFaMTM2JPIi26O1pF38GC8=
 github.com/cilium/ebpf v0.7.0/go.mod h1:/oI2+1shJiTGAMgl6/RgJr36Eo1jzrRcAWbcXO2usCA=
+github.com/cncf/udpa/go v0.0.0-20200629203442-efcf912fb354/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
 github.com/cncf/udpa/go v0.0.0-20210930031921-04548b0d99d4/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
 github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
 github.com/cncf/xds/go v0.0.0-20210805033703-aa0b78936158/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20230607035331-e9ce68804cb4/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20231109132714-523115ebc101/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20231128003011-0fa0005c9caa/go.mod h1:x/1Gn8zydmfq8dk6e9PdstVsDgu9RuyIIJqAaF//0IM=
 github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
+github.com/coreos/go-oidc v2.2.1+incompatible/go.mod h1:CgnwVTmzoESiwO9qyAFEMiHoZ1nMCKZlZ9V6mm3/LKc=
 github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e h1:Wf6HqHfScWJN9/ZjdUKyjop4mf3Qdd+1TvvltAvM3m8=
 github.com/docker/go-units v0.4.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
+github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto=
 github.com/emicklei/go-restful v2.9.5+incompatible h1:spTtZBk5DYEvbxMVutUuTyh1Ao2r4iyvLdACqsl/Ljk=
 github.com/emicklei/go-restful/v3 v3.8.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
 github.com/emicklei/go-restful/v3 v3.9.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
+github.com/envoyproxy/go-control-plane v0.9.7/go.mod h1:cwu0lG7PUMfa9snN8LXBig5ynNVH9qI8YYLbd1fK2po=
 github.com/envoyproxy/go-control-plane v0.9.10-0.20210907150352-cf90f659a021/go.mod h1:AFq3mo9L8Lqqiid3OhADV3RfLJnjiw63cSpi+fDTRC0=
 github.com/envoyproxy/go-control-plane v0.11.1/go.mod h1:uhMcXKCQMEJHiAb0w+YGefQLaTEw+YhGluxZkrTmD0g=
+github.com/envoyproxy/go-control-plane v0.12.0/go.mod h1:ZBTaoJ23lqITozF0M6G4/IragXCQKCnYbmlmtHvwRG0=
 github.com/envoyproxy/protoc-gen-validate v1.0.2/go.mod h1:GpiZQP3dDbg4JouG/NNS7QWXpgx6x8QiMKdmN72jogE=
-github.com/felixge/httpsnoop v1.0.3/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
+github.com/envoyproxy/protoc-gen-validate v1.0.4/go.mod h1:qys6tmnRsYrQqIhm2bvKZH4Blx/1gTIZ2UKVY1M+Yew=
+github.com/felixge/httpsnoop v1.0.4/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
+github.com/go-kit/log v0.2.1/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0=
 github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
+github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
+github.com/go-logr/logr v1.2.2/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/logr v1.2.3/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
+github.com/go-logr/logr v1.2.4/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE=
+github.com/go-openapi/jsonreference v0.20.1/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
+github.com/go-openapi/swag v0.22.5/go.mod h1:Gl91UqO+btAM0plGGxHqJcQZ1ZTy6jbmridBTsDy8A0=
+github.com/go-openapi/swag v0.22.6/go.mod h1:Gl91UqO+btAM0plGGxHqJcQZ1ZTy6jbmridBTsDy8A0=
 github.com/gobwas/httphead v0.1.0/go.mod h1:O/RXo79gxV8G+RqlR/otEwx4Q36zl9rqC5u12GKvMCM=
 github.com/gobwas/pool v0.2.1/go.mod h1:q8bcK0KcYlCgd9e7WYLm9LpyS+YeLd8JVDW6WezmKEw=
 github.com/gobwas/ws v1.2.1/go.mod h1:hRKAFb8wOxFROYNsT1bqfWnhX+b5MFeJM9r2ZSwg/KY=
+github.com/goccy/go-json v0.9.11/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
+github.com/goccy/go-json v0.10.2/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
+github.com/golang-jwt/jwt/v4 v4.5.0/go.mod h1:m21LjoU+eqJr34lmDMbreY2eSTRJ1cv77w39/MY0Ch0=
 github.com/golang/glog v1.1.0/go.mod h1:pfYeQZ3JWZoXTV5sFc986z3HTpwQs9At6P4ImfuP3NQ=
 github.com/golang/glog v1.1.2/go.mod h1:zR+okUeTbrL6EL3xHUDxZuEtGv04p5shwip1+mL/rLQ=
+github.com/golang/glog v1.2.0/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
 github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
+github.com/google/flatbuffers v2.0.8+incompatible/go.mod h1:1AeVuKshWv4vARoZatz6mlQ0JxURH0Kv5+zNeJKJCa8=
 github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-pkcs11 v0.2.1-0.20230907215043-c6f79328ddf9/go.mod h1:6eQoGcuNJpa7jnd5pMGdkSaQpNDYvPlXWMcjXXThLlY=
+github.com/google/martian/v3 v3.1.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
 github.com/google/martian/v3 v3.3.2/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
+github.com/google/pprof v0.0.0-20201023163331-3e6fc7fc9c4c/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20201203190320-1bf35d6f28c2/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20201218002935-b9804c9f04c2/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/s2a-go v0.1.4/go.mod h1:Ej+mSEMGRnqRzjc7VtF+jdBwYG5fuJfiZ8ELkjEwM0A=
-github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/google/s2a-go v0.1.7/go.mod h1:50CgR4k1jNlWBu4UfS4AcfhVe1r6pdZPygJ3R8F0Qdw=
+github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/google/uuid v1.5.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/enterprise-certificate-proxy v0.2.3/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
 github.com/googleapis/enterprise-certificate-proxy v0.2.4/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
+github.com/googleapis/enterprise-certificate-proxy v0.3.2/go.mod h1:VLSiSSBs/ksPL8kq3OBOQ6WRI2QnaFynd1DCjZ62+V0=
 github.com/googleapis/gax-go/v2 v2.10.0/go.mod h1:4UOEnMCrxsSqQ940WnTiD6qJ63le2ev3xfyagutxiPw=
 github.com/googleapis/gax-go/v2 v2.11.0/go.mod h1:DxmR61SGKkGLa2xigwuZIQpkCI2S5iydzRfb3peWZJI=
 github.com/googleapis/gax-go/v2 v2.12.0/go.mod h1:y+aIqrI5eb1YGMVJfuV3185Ts/D7qKpsEkdD5+I6QGU=
+github.com/googleapis/google-cloud-go-testing v0.0.0-20200911160855-bcd43fbb19e8/go.mod h1:dvDLG8qkwmyD9a/MJJN3XJcT3xFxOKAvTZGvuZmac9g=
+github.com/iancoleman/strcase v0.3.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/ianlancetaylor/demangle v0.0.0-20230524184225-eabc099b10ab/go.mod h1:gx7rwoVhcfuVKG5uya9Hs3Sxj7EIvldVofAWIUtGouw=
+github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
+github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
+github.com/klauspost/asmfmt v1.3.2/go.mod h1:AG8TuvYojzulgDAMCnYn50l/5QV3Bs/tp6j0HLHbNSE=
+github.com/klauspost/compress v1.15.9/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU=
+github.com/klauspost/compress v1.16.7/go.mod h1:ntbaceVETuRiXiv4DpjP66DpAtAGkEQskQzEyD//IeE=
+github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
+github.com/klauspost/cpuid/v2 v2.2.5/go.mod h1:Lcz8mBdAVJIBVzewtcLocK12l3Y+JytZYpaMropDUws=
+github.com/kr/fs v0.1.0/go.mod h1:FFnZGqtBN9Gxj7eW1uZ42v5BccTP0vu6NEaFoC2HwRg=
 github.com/ledongthuc/pdf v0.0.0-20220302134840-0c2507a12d80/go.mod h1:imJHygn/1yfhB7XSJJKlFZKl/J+dCPAknuiaGOshXAs=
+github.com/lyft/protoc-gen-star/v2 v2.0.3/go.mod h1:amey7yeodaJhXSbf/TlLvWiqQfLOSpEk//mLlc+axEk=
+github.com/mattn/go-isatty v0.0.19/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
+github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0/go.mod h1:QUyp042oQthUoa9bqDv0ER0wrtXnBruoNd7aNjkbP+k=
+github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8/go.mod h1:mC1jAcsrzbxHt8iiaC+zU4b1ylILSosueou12R++wfY=
+github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3/go.mod h1:RagcQ7I8IeTMnF8JTXieKnO4Z6JCsikNEzj0DwauVzE=
+github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
+github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
+github.com/onsi/gomega v1.19.0/go.mod h1:LY+I3pBVzYsTBU1AnDwOSxaYi9WoWiqgwooUqq9yPro=
+github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
 github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde/go.mod h1:nZgzbfBr3hhjoZnS66nKrHmduYNpc34ny7RK4z5/HM0=
+github.com/pierrec/lz4/v4 v4.1.15/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4=
+github.com/pkg/sftp v1.13.1/go.mod h1:3HaPG6Dq1ILlpPZRO0HVMrsydcdLt6HRDccSgb87qRg=
+github.com/pquerna/cachecontrol v0.1.0/go.mod h1:NrUG3Z7Rdu85UNR3vm7SOsl1nFIeSiQnrHV5K9mBcUI=
+github.com/prometheus/client_model v0.5.0/go.mod h1:dTiFglRmd66nLR9Pv9f0mZi7B7fk5Pm3gvsjB5tr+kI=
+github.com/prometheus/common v0.45.0/go.mod h1:YJmSTw9BoKxJplESWWxlbyttQR4uaEcGyv9MZjVOJsY=
+github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
+github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
+github.com/spf13/afero v1.10.0/go.mod h1:UBogFpq8E9Hx+xc5CNTTEpTnuHVmXDwZcZcE1eb/UhQ=
+github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
+github.com/tmc/grpc-websocket-proxy v0.0.0-20220101234140-673ab2c3ae75/go.mod h1:KO6IkyS8Y3j8OdNO85qEYBsRPuteD+YciPomcXdrMnk=
+github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
+github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
+github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
+github.com/xhit/go-str2duration/v2 v2.1.0/go.mod h1:ohY8p+0f07DiV6Em5LKB0s2YpLtXVyJfNt1+BlmyAsU=
+github.com/zeebo/xxh3 v1.0.2/go.mod h1:5NWz9Sef7zIDm2JHfFlcQvNekmcEl9ekUZQQKCYaDcA=
+go.opencensus.io v0.22.5/go.mod h1:5pWMHQbX5EPX2/62yrJeAkowc+lfs/XD7Uxpq3pI6kk=
 go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo=
+go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.46.1/go.mod h1:4UoMYEZOC0yN/sPGH76KPkkU7zgiEWYWL9vwmbnTJPE=
+go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.47.0/go.mod h1:r9vWsPS/3AQItv3OSlEJ/E4mbrhUbbw18meOjArPtKQ=
+go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.46.1/go.mod h1:sEGXWArGqc3tVa+ekntsN65DmVbVeW+7lTKTjZF3/Fo=
+go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.47.0/go.mod h1:SK2UL73Zy1quvRPonmOmRDiWk1KBV3LyIeeIxcEApWw=
+go.opentelemetry.io/otel v1.21.0/go.mod h1:QZzNPQPm1zLX4gZK4cMi+71eaorMSGT3A4znnUvNNEo=
+go.opentelemetry.io/otel v1.22.0/go.mod h1:eoV4iAi3Ea8LkAEI9+GFT44O6T/D0GWAVFyZVCC6pMI=
+go.opentelemetry.io/otel/metric v1.21.0/go.mod h1:o1p3CA8nNHW8j5yuQLdc1eeqEaPfzug24uvsyIEJRWM=
+go.opentelemetry.io/otel/metric v1.22.0/go.mod h1:evJGjVpZv0mQ5QBRJoBF64yMuOf4xCWdXjK8pzFvliY=
+go.opentelemetry.io/otel/sdk v1.21.0/go.mod h1:Nna6Yv7PWTdgJHVRD9hIYywQBRx7pbox6nwBnZIxl/E=
+go.opentelemetry.io/otel/trace v1.21.0/go.mod h1:LGbsEB0f9LGjN+OZaQQ26sohbOmiMR+BaslueVtS/qQ=
+go.opentelemetry.io/otel/trace v1.22.0/go.mod h1:RbbHXVqKES9QhzZq/fE5UnOSILqRt40a21sPw2He1xo=
+go.uber.org/goleak v1.2.0/go.mod h1:XJYK+MuIchqpmGmUSAzotztawfKvYLUIgg7guXrwVUo=
+go.uber.org/multierr v1.10.0/go.mod h1:20+QtiLqy0Nd6FdQB9TLXag12DsQkrbs3htMFfDN80Y=
+golang.org/x/crypto v0.0.0-20210421170649-83a5a9bb288b/go.mod h1:T9bdIzuCu7OtxOm1hfPfRQxPLYneinmdGuTeoZ9dtd4=
 golang.org/x/crypto v0.0.0-20220314234659-1baeb1ce4c0b/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
+golang.org/x/crypto v0.0.0-20220722155217-630584e8d5aa/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.9.0/go.mod h1:yrmDGqONDYtNj3tH8X9dzUun2m2lzPa9ngI6/RUPGR0=
+golang.org/x/crypto v0.12.0/go.mod h1:NF0Gs7EO5K4qLn+Ylc+fih8BSTeIjAP05siRnAh98yw=
+golang.org/x/crypto v0.13.0/go.mod h1:y6Z2r+Rw4iayiXXAIxJIDAJ1zMW4yaTpebo8fPOliYc=
+golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4=
+golang.org/x/crypto v0.18.0/go.mod h1:R0j02AL6hcrfOiy9T4ZYp/rcWeMxM3L6QYxlOuEG1mg=
+golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU=
+golang.org/x/lint v0.0.0-20201208152925-83fdc39ff7b5/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
+golang.org/x/mod v0.4.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.7.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/mod v0.9.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/mod v0.12.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/net v0.0.0-20201031054903-ff519b6c9102/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20201209123823-ac852fbbde11/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
+golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.7.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
 golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg=
+golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
 golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
-golang.org/x/net v0.19.0/go.mod h1:CfAk/cbD4CthTvqiEl8NpboMuiuOYsAr/7NOjZJtv1U=
+golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
+golang.org/x/net v0.18.0/go.mod h1:/czyP5RqHAH4odGYxBJ1qz0+CE5WZ+2j1YgoEo8F2jQ=
+golang.org/x/net v0.20.0/go.mod h1:z8BVo6PvndSri0LbOE3hAn0apkU+1YvI6E70E9jsnvY=
+golang.org/x/oauth2 v0.0.0-20200902213428-5d25da1a8d43/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20201109201403-9fd604954f58/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20201208152858-08078c50e5b5/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210218202405-ba52d332ba99/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE=
+golang.org/x/oauth2 v0.11.0/go.mod h1:LdF7O/8bLR/qWK9DrpXmbHLTouvRHK0SgJl0GmDBchk=
+golang.org/x/oauth2 v0.12.0/go.mod h1:A74bZ3aGXgCY0qaIC9Ahg6Lglin4AMAco8cIv9baba4=
 golang.org/x/oauth2 v0.13.0/go.mod h1:/JMhi4ZRXAf4HG9LiNmxvk+45+96RUlVThiH8FzNBn0=
+golang.org/x/oauth2 v0.14.0/go.mod h1:lAtNWgaWfL4cm7j2OV8TxGi9Qb7ECORx8DktCY74OwM=
+golang.org/x/oauth2 v0.15.0/go.mod h1:q48ptWNTY5XWf+JNten23lcvHpLJ0ZSxF5ttTHKVCAM=
+golang.org/x/oauth2 v0.16.0/go.mod h1:hqZ+0LWXsiVoZpeld6jVt06P3adbS2Uu911W1SsJv2o=
 golang.org/x/sync v0.2.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.3.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
 golang.org/x/sync v0.4.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
 golang.org/x/sync v0.5.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
+golang.org/x/sys v0.0.0-20200905004654-be1d3432aa8f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20201201145000-ef89a241ccb3/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210104204734-6f8348627aad/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210119212857-b64e53b001e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210225134936-a50acf3fe073/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210423185535-09eb48e85fd7/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.16.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/telemetry v0.0.0-20240208230135-b75ee8823808/go.mod h1:KG1lNk5ZFNssSZLrpVb4sMXKMpGwGXOxSG3rnu2gZQQ=
+golang.org/x/term v0.16.0/go.mod h1:yn7UURbUtPyrVJPGPq404EukNFxcm/foM+bV/bfcDsY=
+golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
+golang.org/x/text v0.12.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
+golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
+golang.org/x/tools v0.0.0-20200904185747-39188db58858/go.mod h1:Cj7w3i3Rnn0Xh82ur9kSqwfTHTeVxaDqrfMjpcNT6bE=
+golang.org/x/tools v0.0.0-20201110124207-079ba7bd75cd/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.0.0-20201201161351-ac6f37ff4c2a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.0.0-20201208233053-a543418bbed2/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.0.0-20210105154028-b0ab187a4818/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.0.0-20210108195828-e2f9c7f1fc8e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.1.0/go.mod h1:xkSsbof2nBLbhDlRMhhhyNLN/zl3eTqcnHD5viDpcZ0=
+golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
 golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
 golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM=
 golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
 golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
+golang.org/x/xerrors v0.0.0-20231012003039-104605ab7028/go.mod h1:NDW/Ps6MPRej6fsCIbMTohpP40sJ/P/vI1MoTEGwX90=
+google.golang.org/api v0.35.0/go.mod h1:/XrVsuzM0rZmrsbjJutiuftIzeuTQcEeaYcSk/mQ1dg=
+google.golang.org/api v0.36.0/go.mod h1:+z5ficQTmoYpPn8LCUNVpK5I7hwkpjbcgqA7I34qYtE=
+google.golang.org/api v0.40.0/go.mod h1:fYKFpnQN0DsDSKRVRcQSDQNtqWPfM9i+zNPxepjRCQ8=
 google.golang.org/api v0.126.0/go.mod h1:mBwVAtz+87bEN6CbA1GtZPDOqY2R5ONPqJeIlvyo4Aw=
 google.golang.org/api v0.128.0/go.mod h1:Y611qgqaE92On/7g65MQgxYul3c0rEB894kniWLY750=
+google.golang.org/api v0.149.0/go.mod h1:Mwn1B7JTXrzXtnvmzQE2BD6bYZQ8DShKZDZbeN9I7qI=
+google.golang.org/api v0.155.0/go.mod h1:GI5qK5f40kCpHfPn6+YzGAByIKWv8ujFnmoWm7Igduk=
+google.golang.org/api v0.162.0/go.mod h1:6SulDkfoBIg4NFmCuZ39XeeAgSHCPecfSUuDyYlAHs0=
+google.golang.org/genproto v0.0.0-20200904004341-0bd0a958aa1d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20201109203340-2640f1f9cdfb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20201201144952-b05cb90ed32e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20201210142538-e3217bee35cc/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20201214200347-8c77b98c765d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20210108203827-ffc7fda8c3d7/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20210226172003-ab064af71705/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:xZnkP7mREFX5MORlOPEzLMr+90PPZQ2QWzrVTWfAq64=
+google.golang.org/genproto v0.0.0-20230822172742-b8732ec3820d/go.mod h1:yZTlhN0tQnXo3h00fuXNCxJdLdIdnVFVBaRJ5LWBbw4=
 google.golang.org/genproto v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:CCviP9RmpZ1mxVr8MUjCnSiY09IbAXZxhLE6EhHIdPU=
 google.golang.org/genproto v0.0.0-20231002182017-d307bd883b97 h1:SeZZZx0cP0fqUyA+oRzP9k7cSwJlvDFiROO72uwD6i0=
 google.golang.org/genproto v0.0.0-20231002182017-d307bd883b97/go.mod h1:t1VqOqqvce95G3hIDCT5FeO3YUc6Q4Oe24L/+rNMxRk=
+google.golang.org/genproto v0.0.0-20231016165738-49dd2c1f3d0b/go.mod h1:CgAqfJo+Xmu0GwA0411Ht3OU3OntXwsGmrmjI8ioGXI=
+google.golang.org/genproto v0.0.0-20231030173426-d783a09b4405/go.mod h1:3WDQMjmJk36UQhjQ89emUzb1mdaHcPeeAh4SCBKznB4=
+google.golang.org/genproto v0.0.0-20231106174013-bbf56f31fb17 h1:wpZ8pe2x1Q3f2KyT5f8oP/fa9rHAKgFPr/HZdNuS+PQ=
+google.golang.org/genproto v0.0.0-20231106174013-bbf56f31fb17/go.mod h1:J7XzRzVy1+IPwWHZUzoD0IccYZIrXILAQpc+Qy9CMhY=
+google.golang.org/genproto v0.0.0-20231211222908-989df2bf70f3/go.mod h1:5RBcpGRxr25RbDzY5w+dmaqpSEvl8Gwl1x2CICf60ic=
+google.golang.org/genproto v0.0.0-20231212172506-995d672761c0/go.mod h1:l/k7rMz0vFTBPy+tFSGvXEd3z+BcoG1k7EHbqm+YBsY=
+google.golang.org/genproto v0.0.0-20240116215550-a9fa1716bcac/go.mod h1:+Rvu7ElI+aLzyDQhpHMFMMltsD6m7nqpuWDd2CwJw3k=
+google.golang.org/genproto v0.0.0-20240123012728-ef4313101c80 h1:KAeGQVN3M9nD0/bQXnr/ClcEMJ968gUXJQ9pwfSynuQ=
+google.golang.org/genproto v0.0.0-20240123012728-ef4313101c80/go.mod h1:cc8bqMqtv9gMOr0zHg2Vzff5ULhhL2IXP4sbcn32Dro=
+google.golang.org/genproto v0.0.0-20240125205218-1f4bbc51befe/go.mod h1:cc8bqMqtv9gMOr0zHg2Vzff5ULhhL2IXP4sbcn32Dro=
+google.golang.org/genproto v0.0.0-20240213162025-012b6fc9bca9 h1:9+tzLLstTlPTRyJTh+ah5wIMsBW5c4tQwGTN3thOW9Y=
+google.golang.org/genproto v0.0.0-20240213162025-012b6fc9bca9/go.mod h1:mqHbVIp48Muh7Ywss/AD6I5kNVKZMmAa/QEW58Gxp2s=
 google.golang.org/genproto/googleapis/api v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
+google.golang.org/genproto/googleapis/api v0.0.0-20230822172742-b8732ec3820d/go.mod h1:KjSP20unUpOx5kyQUFa7k4OJg0qeJ7DEZflGDu2p6Bk=
 google.golang.org/genproto/googleapis/api v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:RdyHbowztCGQySiCvQPgWQWgWhGnouTdCflKoDBt32U=
 google.golang.org/genproto/googleapis/api v0.0.0-20231002182017-d307bd883b97/go.mod h1:iargEX0SFPm3xcfMI0d1domjg0ZF4Aa0p2awqyxhvF0=
+google.golang.org/genproto/googleapis/api v0.0.0-20231016165738-49dd2c1f3d0b/go.mod h1:IBQ646DjkDkvUIsVq/cc03FUFQ9wbZu7yE396YcL870=
+google.golang.org/genproto/googleapis/api v0.0.0-20231030173426-d783a09b4405/go.mod h1:oT32Z4o8Zv2xPQTg0pbVaPr0MPOH6f14RgXt7zfIpwg=
+google.golang.org/genproto/googleapis/api v0.0.0-20231106174013-bbf56f31fb17/go.mod h1:0xJLfVdJqpAPl8tDg1ujOCGzx6LFLttXT5NhllGOXY4=
+google.golang.org/genproto/googleapis/api v0.0.0-20231211222908-989df2bf70f3/go.mod h1:k2dtGpRrbsSyKcNPKKI5sstZkrNCZwpU/ns96JoHbGg=
+google.golang.org/genproto/googleapis/api v0.0.0-20240102182953-50ed04b92917/go.mod h1:CmlNWB9lSezaYELKS5Ym1r44VrrbPUa7JTvw+6MbpJ0=
+google.golang.org/genproto/googleapis/api v0.0.0-20240116215550-a9fa1716bcac/go.mod h1:B5xPO//w8qmBDjGReYLpR6UJPnkldGkCSMoH/2vxJeg=
+google.golang.org/genproto/googleapis/api v0.0.0-20240123012728-ef4313101c80/go.mod h1:4jWUdICTdgc3Ibxmr8nAJiiLHwQBY0UI0XZcEMaFKaA=
+google.golang.org/genproto/googleapis/api v0.0.0-20240205150955-31a09d347014/go.mod h1:rbHMSEDyoYX62nRVLOCc4Qt1HbsdytAYoVwgjiOhF3I=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:ylj+BE99M198VPbBh6A8d9n3w8fChvyLK3wwBOjXBFA=
+google.golang.org/genproto/googleapis/bytestream v0.0.0-20231030173426-d783a09b4405/go.mod h1:GRUCuLdzVqZte8+Dl/D4N25yLzcGqqWaYkeVOwulFqw=
+google.golang.org/genproto/googleapis/bytestream v0.0.0-20231212172506-995d672761c0/go.mod h1:guYXGPwC6jwxgWKW5Y405fKWOFNwlvUlUnzyp9i0uqo=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:KSqppvjFjtoCI+KGd4PELB0qLNxdJHRGqRI09mB6pQA=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20231002182017-d307bd883b97/go.mod h1:v7nGkzlmW8P3n/bKmWBn2WpBjpOEx8Q6gMueudAmKfY=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20231016165738-49dd2c1f3d0b/go.mod h1:swOH3j0KzcDDgGUWr+SNpyTen5YrXjS3eyPzFYKc6lc=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20231030173426-d783a09b4405/go.mod h1:67X1fPuzjcrkymZzZV1vvkFeTn2Rvc6lYF9MYFGCcwE=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20231212172506-995d672761c0/go.mod h1:FUoWkonphQm3RhTS+kOEhF8h0iDpm4tdXolVCeZ9KKA=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240102182953-50ed04b92917/go.mod h1:xtjpI3tXFPP051KaWnhvxkiubL/6dJ18vLVf7q2pTOU=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240116215550-a9fa1716bcac/go.mod h1:daQN87bsDqDoe316QbbvX60nMoJQa4r6Ds0ZuoAe5yA=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240123012728-ef4313101c80/go.mod h1:PAREbraiVEVGVdTZsVWjSbbTtSyGbAgIIvni8a8CD5s=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240125205218-1f4bbc51befe/go.mod h1:PAREbraiVEVGVdTZsVWjSbbTtSyGbAgIIvni8a8CD5s=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240205150955-31a09d347014/go.mod h1:SaPjaZGWb0lPqs6Ittu0spdfrOArqji4ZdeP5IC/9N4=
+google.golang.org/grpc v1.31.1/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
+google.golang.org/grpc v1.34.0/go.mod h1:WotjhfgOW/POjDeRt8vscBtXq+2VjORFy659qA51WJ8=
+google.golang.org/grpc v1.35.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
 google.golang.org/grpc v1.45.0/go.mod h1:lN7owxKUQEqMfSyQikvvk5tf/6zMPsrK+ONuO11+0rQ=
 google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8=
 google.golang.org/grpc v1.56.1/go.mod h1:I9bI3vqKfayGqPUAwGdOSu7kt6oIJLixfffKrpXqQ9s=
 google.golang.org/grpc v1.57.0/go.mod h1:Sd+9RMTACXwmub0zcNY2c4arhtrbBYD1AUHI/dt16Mo=
+google.golang.org/grpc v1.59.0/go.mod h1:aUPDwccQo6OTjy7Hct4AfBPD1GptF4fyUjIkQ9YtF98=
+google.golang.org/grpc v1.60.1/go.mod h1:OlCHIeLYqSSsLi6i49B5QGdzaMZK9+M7LXN2FKz4eGM=
+google.golang.org/grpc v1.61.0/go.mod h1:VUbo7IFqmF1QtCAstipjG0GIoq49KvMe9+h1jFLBNJs=
 google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
+google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
 google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+gopkg.in/evanphx/json-patch.v5 v5.6.0 h1:BMT6KIwBD9CaU91PJCZIe46bDmBWa9ynTQgJIOpfQBk=
+gopkg.in/evanphx/json-patch.v5 v5.6.0/go.mod h1:/kvTRh1TVm5wuM6OkHxqXtE/1nUZZpihg29RtuIyfvk=
+gopkg.in/square/go-jose.v2 v2.6.0/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
+k8s.io/gengo v0.0.0-20230829151522-9cce18d56c01/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
+k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+sigs.k8s.io/structured-merge-diff/v4 v4.2.3/go.mod h1:qjx8mGObPmV2aSZepjQjbmb2ihdVs8cGKBraizNC69E=
diff --git a/hack/update-codegen.sh b/hack/update-codegen.sh
index fadc67633..47a104584 100755
--- a/hack/update-codegen.sh
+++ b/hack/update-codegen.sh
@@ -27,7 +27,7 @@ if [[ ! -d ${CODEGEN_PKG} ]]; then
 fi
 
 # Ensure we can execute.
-chmod +x ${CODEGEN_PKG}/generate-groups.sh
+chmod +x ${CODEGEN_PKG}/kube_codegen.sh
 
 # generate the code with:
 # --output-base    because this script should also be able to run inside the vendor dir of
@@ -37,7 +37,7 @@ chmod +x ${CODEGEN_PKG}/generate-groups.sh
 #  k8s.io/ingress-nginx/pkg/client k8s.io/ingress-nginx/pkg/apis \
 #  nginxingress:v1alpha1 \
 #  --output-base "$(dirname ${BASH_SOURCE})/../../.."
-${CODEGEN_PKG}/generate-groups.sh "deepcopy" \
+${CODEGEN_PKG}/kube_codegen.sh "deepcopy" \
   k8s.io/ingress-nginx/internal k8s.io/ingress-nginx/pkg/apis \
   .:ingress \
   --output-base "$(dirname ${BASH_SOURCE})/../../.." \
diff --git a/images/kube-webhook-certgen/TAG b/images/kube-webhook-certgen/TAG
index 95e94cdd3..90ab6e946 100644
--- a/images/kube-webhook-certgen/TAG
+++ b/images/kube-webhook-certgen/TAG
@@ -1 +1 @@
-v0.0.1
\ No newline at end of file
+v0.0.2
\ No newline at end of file
diff --git a/images/kube-webhook-certgen/rootfs/Dockerfile b/images/kube-webhook-certgen/rootfs/Dockerfile
index 7ec098a99..2348db825 100644
--- a/images/kube-webhook-certgen/rootfs/Dockerfile
+++ b/images/kube-webhook-certgen/rootfs/Dockerfile
@@ -22,7 +22,7 @@ ARG TARGETARCH
 
 WORKDIR /workspace
 COPY . .
-RUN CGO_ENABLED=0 GOOS=linux GOARCH=${TARGETARCH} go build -a -o kube-webhook-certgen main.go
+RUN go mod tidy && CGO_ENABLED=0 GOOS=linux GOARCH=${TARGETARCH} go build -a -o kube-webhook-certgen main.go
 
 FROM --platform=$BUILDPLATFORM gcr.io/distroless/static:nonroot
 ARG BUILDPLATFORM
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 7e321dc49..9cb4bf263 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -3,61 +3,57 @@ module github.com/jet/kube-webhook-certgen
 go 1.21
 
 require (
-	github.com/onrik/logrus v0.9.0
-	github.com/sirupsen/logrus v1.9.0
-	github.com/spf13/cobra v1.7.0
-	k8s.io/api v0.27.6
-	k8s.io/apimachinery v0.27.6
-	k8s.io/client-go v0.27.6
-	k8s.io/kube-aggregator v0.22.6
+	github.com/onrik/logrus v0.11.0
+	github.com/sirupsen/logrus v1.9.3
+	github.com/spf13/cobra v1.8.0
+	k8s.io/api v0.29.2
+	k8s.io/apimachinery v0.29.2
+	k8s.io/client-go v0.29.2
+	k8s.io/kube-aggregator v0.29.2
 )
 
 require (
 	github.com/davecgh/go-spew v1.1.1 // indirect
-	github.com/emicklei/go-restful/v3 v3.10.2 // indirect
-	github.com/evanphx/json-patch v4.12.0+incompatible // indirect
-	github.com/go-logr/logr v1.2.4 // indirect
-	github.com/go-openapi/jsonpointer v0.19.6 // indirect
-	github.com/go-openapi/jsonreference v0.20.1 // indirect
-	github.com/go-openapi/swag v0.22.3 // indirect
+	github.com/emicklei/go-restful/v3 v3.11.3 // indirect
+	github.com/evanphx/json-patch v5.9.0+incompatible // indirect
+	github.com/go-logr/logr v1.4.1 // indirect
+	github.com/go-openapi/jsonpointer v0.20.2 // indirect
+	github.com/go-openapi/jsonreference v0.20.4 // indirect
+	github.com/go-openapi/swag v0.22.9 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/protobuf v1.5.3 // indirect
-	github.com/google/gnostic v0.5.7-v3refs // indirect
-	github.com/google/go-cmp v0.5.9 // indirect
-	github.com/google/gofuzz v1.1.0 // indirect
-	github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98 // indirect
-	github.com/google/uuid v1.3.1 // indirect
-	github.com/imdario/mergo v0.3.6 // indirect
+	github.com/google/gnostic-models v0.6.8 // indirect
+	github.com/google/gofuzz v1.2.0 // indirect
+	github.com/google/pprof v0.0.0-20240225044709-fd706174c886 // indirect
+	github.com/google/uuid v1.6.0 // indirect
+	github.com/imdario/mergo v0.3.16 // indirect
 	github.com/inconshreveable/mousetrap v1.1.0 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/json-iterator/go v1.1.12 // indirect
-	github.com/kr/pretty v0.3.1 // indirect
 	github.com/mailru/easyjson v0.7.7 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
-	github.com/onsi/ginkgo/v2 v2.13.0 // indirect
-	github.com/onsi/gomega v1.27.10 // indirect
+	github.com/onsi/ginkgo/v2 v2.15.0 // indirect
+	github.com/onsi/gomega v1.30.0 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
-	github.com/stretchr/testify v1.8.4 // indirect
-	github.com/tidwall/gjson v1.14.0 // indirect
-	golang.org/x/net v0.17.0 // indirect
-	golang.org/x/oauth2 v0.12.0 // indirect
-	golang.org/x/sys v0.13.0 // indirect
-	golang.org/x/term v0.13.0 // indirect
-	golang.org/x/text v0.13.0 // indirect
-	golang.org/x/time v0.3.0 // indirect
-	golang.org/x/tools v0.14.0 // indirect
-	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/protobuf v1.31.0 // indirect
+	golang.org/x/net v0.21.0 // indirect
+	golang.org/x/oauth2 v0.17.0 // indirect
+	golang.org/x/sys v0.17.0 // indirect
+	golang.org/x/term v0.17.0 // indirect
+	golang.org/x/text v0.14.0 // indirect
+	golang.org/x/time v0.5.0 // indirect
+	golang.org/x/tools v0.18.0 // indirect
+	google.golang.org/appengine v1.6.8 // indirect
+	google.golang.org/protobuf v1.32.0 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
-	k8s.io/klog/v2 v2.100.1 // indirect
-	k8s.io/kube-openapi v0.0.0-20230501164219-8b0f38b5fd1f // indirect
-	k8s.io/utils v0.0.0-20230209194617-a36077c30491 // indirect
+	k8s.io/klog/v2 v2.120.1 // indirect
+	k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b // indirect
+	k8s.io/utils v0.0.0-20240102154912-e7106e64919e // indirect
 	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
-	sigs.k8s.io/structured-merge-diff/v4 v4.2.3 // indirect
-	sigs.k8s.io/yaml v1.3.0 // indirect
+	sigs.k8s.io/structured-merge-diff/v4 v4.4.1 // indirect
+	sigs.k8s.io/yaml v1.4.0 // indirect
 )
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 004bd7d96..966d69209 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -1,808 +1,144 @@
-cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
-cloud.google.com/go v0.34.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
-cloud.google.com/go v0.38.0/go.mod h1:990N+gfupTy94rShfmMCWGDn0LpTmnzTp2qbd1dvSRU=
-cloud.google.com/go v0.44.1/go.mod h1:iSa0KzasP4Uvy3f1mN/7PiObzGgflwredwwASm/v6AU=
-cloud.google.com/go v0.44.2/go.mod h1:60680Gw3Yr4ikxnPRS/oxxkBccT6SA1yMk63TGekxKY=
-cloud.google.com/go v0.45.1/go.mod h1:RpBamKRgapWJb87xiFSdk4g1CME7QZg3uwTez+TSTjc=
-cloud.google.com/go v0.46.3/go.mod h1:a6bKKbmY7er1mI7TEI4lsAkts/mkhTSZK8w33B4RAg0=
-cloud.google.com/go v0.50.0/go.mod h1:r9sluTvynVuxRIOHXQEHMFffphuXHOMZMycpNR5e6To=
-cloud.google.com/go v0.52.0/go.mod h1:pXajvRH/6o3+F9jDHZWQ5PbGhn+o8w9qiu/CffaVdO4=
-cloud.google.com/go v0.53.0/go.mod h1:fp/UouUEsRkN6ryDKNW/Upv/JBKnv6WDthjR6+vze6M=
-cloud.google.com/go v0.54.0/go.mod h1:1rq2OEkV3YMf6n/9ZvGWI3GWw0VoqH/1x2nd8Is/bPc=
-cloud.google.com/go/bigquery v1.0.1/go.mod h1:i/xbL2UlR5RvWAURpBYZTtm/cXjCha9lbfbpx4poX+o=
-cloud.google.com/go/bigquery v1.3.0/go.mod h1:PjpwJnslEMmckchkHFfq+HTD2DmtT67aNFKH1/VBDHE=
-cloud.google.com/go/bigquery v1.4.0/go.mod h1:S8dzgnTigyfTmLBfrtrhyYhwRxG72rYxvftPBK2Dvzc=
-cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE=
-cloud.google.com/go/datastore v1.1.0/go.mod h1:umbIZjpQpHh4hmRpGhH4tLFup+FVzqBi1b3c64qFpCk=
-cloud.google.com/go/firestore v1.1.0/go.mod h1:ulACoGHTpvq5r8rxGJ4ddJZBZqakUQqClKRT5SZwBmk=
-cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I=
-cloud.google.com/go/pubsub v1.1.0/go.mod h1:EwwdRX2sKPjnvnqCa270oGRyludottCI76h+R3AArQw=
-cloud.google.com/go/pubsub v1.2.0/go.mod h1:jhfEVHT8odbXTkndysNHCcx0awwzvfOlguIAii9o8iA=
-cloud.google.com/go/storage v1.0.0/go.mod h1:IhtSnM/ZTZV8YYJWCY8RULGVqBDmpoyjwiyrjsg+URw=
-cloud.google.com/go/storage v1.5.0/go.mod h1:tpKbwo567HUNpVclU5sGELwQWBDZ8gh0ZeosJ0Rtdos=
-cloud.google.com/go/storage v1.6.0/go.mod h1:N7U0C8pVQ/+NIKOBQyamJIeKQKkZ+mxpohlUTyfDhBk=
-dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
-github.com/Azure/go-ansiterm v0.0.0-20210608223527-2377c96fe795/go.mod h1:LmzpDX56iTiv29bbRTIsUNlaFfuhWRQBWjQdVyAevI8=
-github.com/Azure/go-ansiterm v0.0.0-20210617225240-d185dfc1b5a1/go.mod h1:xomTg63KZ2rFqZQzSB4Vz2SUXa1BpHTVz9L5PTmPC4E=
-github.com/Azure/go-autorest v14.2.0+incompatible/go.mod h1:r+4oMnoxhatjLLJ6zxSWATqVooLgysK6ZNox3g/xq24=
-github.com/Azure/go-autorest/autorest v0.11.18/go.mod h1:dSiJPy22c3u0OtOKDNttNgqpNFY/GeWa7GH/Pz56QRA=
-github.com/Azure/go-autorest/autorest/adal v0.9.13/go.mod h1:W/MM4U6nLxnIskrw4UwWzlHfGjwUS50aOsc/I3yuU8M=
-github.com/Azure/go-autorest/autorest/date v0.3.0/go.mod h1:BI0uouVdmngYNUzGWeSYnokU+TrmwEsOqdt8Y6sso74=
-github.com/Azure/go-autorest/autorest/mocks v0.4.1/go.mod h1:LTp+uSrOhSkaKrUy935gNZuuIPPVsHlr9DSOxSayd+k=
-github.com/Azure/go-autorest/logger v0.2.1/go.mod h1:T9E3cAhj2VqvPOtCYAvby9aBXkZmbF5NWuPV8+WeEW8=
-github.com/Azure/go-autorest/tracing v0.6.0/go.mod h1:+vhtPC754Xsa23ID7GlGsrdKBpUA79WCAKPPZVC2DeU=
-github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
-github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
-github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
-github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
-github.com/OneOfOne/xxhash v1.2.2/go.mod h1:HSdplMjZKSmBqAxg5vPj2TmRDmfkzw+cTzAElWljhcU=
-github.com/PuerkitoBio/purell v1.1.1/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
-github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578/go.mod h1:uGdkoq3SwY9Y+13GIhn11/XLaGBb4BfwItxLd5jeuXE=
-github.com/alecthomas/template v0.0.0-20160405071501-a0175ee3bccc/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
-github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
-github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
-github.com/alecthomas/units v0.0.0-20190717042225-c3de453c63f4/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
-github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d/go.mod h1:rBZYJk541a8SKzHPHnH3zbiI+7dagKZ0cgpgrD7Fyho=
-github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
-github.com/armon/circbuf v0.0.0-20150827004946-bbbad097214e/go.mod h1:3U/XgcO3hCbHZ8TKRvWD2dDTCfh9M9ya+I9JpbB7O8o=
-github.com/armon/go-metrics v0.0.0-20180917152333-f0300d1749da/go.mod h1:Q73ZrmVTwzkszR9V5SSuryQ31EELlFMUz1kKyl939pY=
-github.com/armon/go-radix v0.0.0-20180808171621-7fddfc383310/go.mod h1:ufUuZ+zHj4x4TnLV4JWEpy2hxWSpsRywHrMgIH9cCH8=
-github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
-github.com/benbjohnson/clock v1.0.3/go.mod h1:bGMdMPoPVvcYyt1gHDf4J2KE153Yf9BuiUKYMaxlTDM=
-github.com/beorn7/perks v0.0.0-20180321164747-3a771d992973/go.mod h1:Dwedo/Wpr24TaqPxmxbtue+5NUziq4I4S80YR8gNf3Q=
-github.com/beorn7/perks v1.0.0/go.mod h1:KWe93zE9D1o94FZ5RNwFwVgaQK1VOXiVxmqh+CedLV8=
-github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6rlkpw=
-github.com/bgentry/speakeasy v0.1.0/go.mod h1:+zsyZBPWlz7T6j88CTgSN5bM796AkVf0kBD4zp0CCIs=
-github.com/bketelsen/crypt v0.0.3-0.20200106085610-5cbc8cc4026c/go.mod h1:MKsuJmJgSg28kpZDP6UIiPt0e0Oz0kqKNGyRaWEPv84=
-github.com/blang/semver v3.5.1+incompatible/go.mod h1:kRBLl5iJ+tD4TcOOxsy/0fnwebNt5EWlYSAyrTnjyyk=
-github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
-github.com/certifi/gocertifi v0.0.0-20191021191039-0944d244cd40/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
-github.com/certifi/gocertifi v0.0.0-20200922220541-2c3bb06c6054/go.mod h1:sGbDF6GwGcLpkNXPUTkMRoywsNa/ol15pxFe6ERfguA=
-github.com/cespare/xxhash v1.1.0/go.mod h1:XrSqR1VqqWfGrhpAt58auRo0WTKS1nRRg3ghfAqPWnc=
-github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
-github.com/chzyer/logex v1.1.10/go.mod h1:+Ywpsq7O8HXn0nuIou7OrIPyXbp3wmkHB+jjWRnGsAI=
-github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5PlCu98SY8svDHJxuZscDgtXS6KTTbou5AhLI=
-github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU=
-github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
-github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc=
-github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
-github.com/cockroachdb/datadriven v0.0.0-20200714090401-bf6692d28da5/go.mod h1:h6jFvWxBdQXxjopDMZyH2UVceIRfR84bdzbkoKrsWNo=
-github.com/cockroachdb/errors v1.2.4/go.mod h1:rQD95gz6FARkaKkQXUksEje/d9a6wBJoCr5oaCLELYA=
-github.com/cockroachdb/logtags v0.0.0-20190617123548-eb05cc24525f/go.mod h1:i/u985jwjWRlyHXQbwatDASoW0RMlZ/3i9yJHE2xLkI=
-github.com/coreos/bbolt v1.3.2/go.mod h1:iRUV2dpdMOn7Bo10OQBFzIJO9kkE559Wcmn+qkEiiKk=
-github.com/coreos/etcd v3.3.13+incompatible/go.mod h1:uF7uidLiAD3TWHmW31ZFd/JWoc32PjwdhPthX9715RE=
-github.com/coreos/go-oidc v2.1.0+incompatible/go.mod h1:CgnwVTmzoESiwO9qyAFEMiHoZ1nMCKZlZ9V6mm3/LKc=
-github.com/coreos/go-semver v0.3.0/go.mod h1:nnelYz7RCh+5ahJtPPxZlU+153eP4D4r3EedlOD2RNk=
-github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e/go.mod h1:F5haX7vjVVG0kc13fIWeqUViNPyEJxv/OmvnBo0Yme4=
-github.com/coreos/go-systemd/v22 v22.3.2/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
-github.com/coreos/pkg v0.0.0-20180928190104-399ea9e2e55f/go.mod h1:E3G3o1h8I7cfcXa63jLwjI0eiQQMgzzUDFVpN/nH/eA=
-github.com/cpuguy83/go-md2man/v2 v2.0.0/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
-github.com/cpuguy83/go-md2man/v2 v2.0.2/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
-github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
-github.com/creack/pty v1.1.11/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
+github.com/cpuguy83/go-md2man/v2 v2.0.3/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/dgrijalva/jwt-go v3.2.0+incompatible/go.mod h1:E3ru+11k8xSBh+hMPgOLZmtrrCbhqsmaPHjLKYnJCaQ=
-github.com/dgryski/go-sip13 v0.0.0-20181026042036-e10d5fee7954/go.mod h1:vAd38F8PWV+bWy6jNmig1y/TA+kYO4g3RSRF0IAv0no=
-github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815/go.mod h1:WwZ+bS3ebgob9U8Nd0kOddGdZWjyMGR8Wziv+TBNwSE=
-github.com/dustin/go-humanize v1.0.0/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25KnS6fMYU6eOk=
-github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153/go.mod h1:/Zj4wYkgs4iZTTu3o/KG3Itv/qCCa8VVMlb3i9OVuzc=
-github.com/emicklei/go-restful v0.0.0-20170410110728-ff4f55a20633/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
-github.com/emicklei/go-restful v2.9.5+incompatible/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
-github.com/emicklei/go-restful/v3 v3.10.2 h1:hIovbnmBTLjHXkqEBUz3HGpXZdM7ZrE9fJIZIqlJLqE=
-github.com/emicklei/go-restful/v3 v3.10.2/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
-github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
-github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
-github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=
-github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
-github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
-github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
-github.com/evanphx/json-patch v4.11.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
-github.com/evanphx/json-patch v4.12.0+incompatible h1:4onqiflcdA9EOZ4RxV643DvftH5pOlLGNtQ5lPWQu84=
-github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
-github.com/fatih/color v1.7.0/go.mod h1:Zm6kSWBoL9eyXnKyktHP6abPY2pDugNf5KwzbycvMj4=
-github.com/felixge/httpsnoop v1.0.1/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
-github.com/form3tech-oss/jwt-go v3.2.2+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
-github.com/form3tech-oss/jwt-go v3.2.3+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
-github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
-github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
-github.com/getsentry/raven-go v0.2.0/go.mod h1:KungGk8q33+aIAZUIVWZDr2OfAEBsO49PX4NzFV5kcQ=
-github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
-github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1/go.mod h1:vR7hzQXu2zJy9AVAgeJqvqgH9Q5CA+iKCZ2gyEVpxRU=
-github.com/go-gl/glfw/v3.3/glfw v0.0.0-20191125211704-12ad95a8df72/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8=
-github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8=
-github.com/go-kit/kit v0.8.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
-github.com/go-kit/kit v0.9.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
-github.com/go-kit/log v0.1.0/go.mod h1:zbhenjAZHb184qTLMA9ZjW7ThYL0H2mk7Q6pNt4vbaY=
-github.com/go-logfmt/logfmt v0.3.0/go.mod h1:Qt1PoO58o5twSAckw1HlFXLmHsOX5/0LbT9GBnD5lWE=
-github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V4qmtdjCk=
-github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A=
-github.com/go-logr/logr v0.1.0/go.mod h1:ixOQHD9gLJUVQQ2ZOR7zLEifBX6tGkNJF4QyIY7sIas=
-github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
-github.com/go-logr/logr v0.4.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
-github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
-github.com/go-logr/logr v1.2.4 h1:g01GSCwiDw2xSZfjJ2/T9M+S6pFdcNtFYsp+Y43HYDQ=
-github.com/go-logr/logr v1.2.4/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
-github.com/go-openapi/jsonpointer v0.19.3/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
-github.com/go-openapi/jsonpointer v0.19.5/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
-github.com/go-openapi/jsonpointer v0.19.6 h1:eCs3fxoIi3Wh6vtgmLTOjdhSpiqphQ+DaPn38N2ZdrE=
-github.com/go-openapi/jsonpointer v0.19.6/go.mod h1:osyAmYz/mB/C3I+WsTTSgw1ONzaLJoLCyoi6/zppojs=
-github.com/go-openapi/jsonreference v0.19.3/go.mod h1:rjx6GuL8TTa9VaixXglHmQmIL98+wF9xc8zWvFonSJ8=
-github.com/go-openapi/jsonreference v0.19.5/go.mod h1:RdybgQwPxbL4UEjuAruzK1x3nE69AqPYEJeo/TWfEeg=
-github.com/go-openapi/jsonreference v0.20.1 h1:FBLnyygC4/IZZr893oiomc9XaghoveYTrLC1F86HID8=
-github.com/go-openapi/jsonreference v0.20.1/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
-github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh66Z9tfKk=
-github.com/go-openapi/swag v0.19.14/go.mod h1:QYRuS/SOXUCsnplDa677K7+DxSOj6IPNl/eQntq43wQ=
-github.com/go-openapi/swag v0.22.3 h1:yMBqmnQ0gyZvEb/+KzuWZOXgllrXT4SADYbvDaXHv/g=
-github.com/go-openapi/swag v0.22.3/go.mod h1:UzaqsxGiab7freDnrUUra0MwWfN/q7tE4j+VcZ0yl14=
-github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
+github.com/emicklei/go-restful/v3 v3.11.3 h1:yagOQz/38xJmcNeZJtrUcKjkHRltIaIFXKWeG1SkWGE=
+github.com/evanphx/json-patch v5.9.0+incompatible h1:fBXyNpNMuTTDdquAq/uisOr2lShz4oaXpDTX2bLe7ls=
+github.com/go-logr/logr v1.4.1 h1:pKouT5E8xu9zeFC39JXRDukb6JFQPXM5p5I91188VAQ=
+github.com/go-openapi/jsonpointer v0.20.2 h1:mQc3nmndL8ZBzStEo3JYF8wzmeWffDH4VbXz58sAx6Q=
+github.com/go-openapi/jsonreference v0.20.4 h1:bKlDxQxQJgwpUSgOENiMPzCTBVuc7vTdXSSgNeAhojU=
+github.com/go-openapi/swag v0.22.9 h1:XX2DssF+mQKM2DHsbgZK74y/zj4mo9I99+89xUmuZCE=
 github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 h1:tfuBGBXKqDEevZMzYi5KSi8KkcZtzBcTgAUUtapy0OI=
 github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572/go.mod h1:9Pwr4B2jHnOSGXyyzV8ROjYa2ojvAY6HCGYYfMoC3Ls=
-github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
-github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
-github.com/gogo/protobuf v1.2.1/go.mod h1:hp+jE20tsWTFYpLwKvXlhS1hjn+gTNwPg2I6zVXpSg4=
-github.com/gogo/protobuf v1.3.1/go.mod h1:SlYgWuQ5SjCEi6WLHjHCa1yvBfUnHcTbrrZtXPKa29o=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
-github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
-github.com/golang/groupcache v0.0.0-20190129154638-5b532d6fd5ef/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
-github.com/golang/groupcache v0.0.0-20190702054246-869f871628b6/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
-github.com/golang/groupcache v0.0.0-20191227052852-215e87163ea7/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
-github.com/golang/groupcache v0.0.0-20200121045136-8c9f03a8e57e/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
-github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
-github.com/golang/mock v1.1.1/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
-github.com/golang/mock v1.2.0/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
-github.com/golang/mock v1.3.1/go.mod h1:sBzyDLLjw3U8JLTeZvSv8jJB+tU5PVekmnlKIyFUx0Y=
-github.com/golang/mock v1.4.0/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
-github.com/golang/mock v1.4.1/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
-github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
-github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
-github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
-github.com/golang/protobuf v1.3.3/go.mod h1:vzj43D7+SQXF/4pzW/hwtAqwc6iTitCiVSaWz5lYuqw=
-github.com/golang/protobuf v1.3.4/go.mod h1:vzj43D7+SQXF/4pzW/hwtAqwc6iTitCiVSaWz5lYuqw=
-github.com/golang/protobuf v1.4.0-rc.1/go.mod h1:ceaxUfeHdC40wWswd/P6IGgMaK3YpKi5j83Wpe3EHw8=
-github.com/golang/protobuf v1.4.0-rc.1.0.20200221234624-67d41d38c208/go.mod h1:xKAWHe0F5eneWXFV3EuXVDTCmh+JuBKY0li0aMyXATA=
-github.com/golang/protobuf v1.4.0-rc.2/go.mod h1:LlEzMj4AhA7rCAGe4KMBDvJI+AwstrUpVNzEA03Pprs=
-github.com/golang/protobuf v1.4.0-rc.4.0.20200313231945-b860323f09d0/go.mod h1:WU3c8KckQ9AFe+yFwt9sWVRKCVIyN9cPHBJSNnbL67w=
-github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvqG2KuDX0=
-github.com/golang/protobuf v1.4.1/go.mod h1:U8fpvMrcmy5pZrNK1lt4xCsGvpyWQ/VVv6QDs8UjoX8=
-github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
-github.com/golang/protobuf v1.4.3/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
-github.com/golang/protobuf v1.5.1/go.mod h1:DopwsBzvsk0Fs44TXzsVbJyPhcCPeIwnvohx4u74HPM=
-github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/golang/protobuf v1.5.3 h1:KhyjKVUg7Usr/dYsdSqoFveMYd5ko72D+zANwlG1mmg=
 github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
-github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
-github.com/google/btree v1.0.0/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
-github.com/google/btree v1.0.1/go.mod h1:xXMiIv4Fb/0kKde4SpL7qlzvu5cMJDRkFDxJfI9uaxA=
-github.com/google/gnostic v0.5.7-v3refs h1:FhTMOKj2VhjpouxvWJAV1TL304uMlb9zcDqkl6cEI54=
-github.com/google/gnostic v0.5.7-v3refs/go.mod h1:73MKFl6jIHelAJNaBGFzt3SPtZULs9dYrGFt8OiIsHQ=
-github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
-github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
-github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
-github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.4/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/gnostic-models v0.6.8 h1:yo/ABAfM5IMRsS1VnXjTBvUb61tFIHozhlYvRgGre9I=
+github.com/google/gnostic-models v0.6.8/go.mod h1:5n7qKqH0f5wFt+aWF8CW6pZLLNOfYuF5OpfBSENuI8U=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.9 h1:O2Tfq5qg4qc4AmwVlvv0oLiVAGB7enBSJ2x2DqQFi38=
 github.com/google/go-cmp v0.5.9/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
+github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
+github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/gofuzz v1.1.0 h1:Hsa8mG0dQ46ij8Sl2AYJDUv1oA9/d6Vk+3LG99Oe02g=
-github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/martian v2.1.0+incompatible/go.mod h1:9I4somxYTbIHy5NJKHRl3wXiIaQGbYVAs8BPL6v8lEs=
-github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
-github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
-github.com/google/pprof v0.0.0-20191218002539-d4f498aebedc/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20200212024743-f11f1df84d12/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20200229191704-1ebb73c60ed3/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98 h1:pUa4ghanp6q4IJHwE9RwLgmVFfReJN+KbQ8ExNEUUoQ=
-github.com/google/pprof v0.0.0-20230926050212-f7f687d19a98/go.mod h1:czg5+yv1E0ZGTi6S6vVK1mke0fV+FaUhNGcd6VRS9Ik=
-github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
-github.com/google/uuid v1.1.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-github.com/google/uuid v1.3.1 h1:KjJaJ9iWZ3jOFZIf1Lqf4laDRCasjl0BCmnEGxkdLb4=
-github.com/google/uuid v1.3.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
-github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
-github.com/googleapis/gnostic v0.5.1/go.mod h1:6U4PtQXGIEt/Z3h5MAT7FNofLnw9vXk2cUuW7uA/OeU=
-github.com/googleapis/gnostic v0.5.5/go.mod h1:7+EbHbldMins07ALC74bsA81Ovc97DwqyJO1AENw9kA=
-github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY=
-github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
-github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
-github.com/grpc-ecosystem/go-grpc-middleware v1.0.0/go.mod h1:FiyG127CGDf3tlThmgyCl78X/SZQqEOJBCDaAfeWzPs=
-github.com/grpc-ecosystem/go-grpc-middleware v1.3.0/go.mod h1:z0ButlSOZa5vEBq9m2m2hlwIgKw+rp3sdCBRoJY+30Y=
-github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgfV/d3M/q6VIi02HzZEHgUlZvzk=
-github.com/grpc-ecosystem/grpc-gateway v1.9.0/go.mod h1:vNeuVxBJEsws4ogUvrchl83t/GYV9WGTSLVdBhOQFDY=
-github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
-github.com/hashicorp/consul/api v1.1.0/go.mod h1:VmuI/Lkw1nC05EYQWNKwWGbkg+FbDBtguAZLlVdkD9Q=
-github.com/hashicorp/consul/sdk v0.1.1/go.mod h1:VKf9jXwCTEY1QZP2MOLRhb5i/I/ssyNV1vwHyQBF0x8=
-github.com/hashicorp/errwrap v1.0.0/go.mod h1:YH+1FKiLXxHSkmPseP+kNlulaMuP3n2brvKWEqk/Jc4=
-github.com/hashicorp/go-cleanhttp v0.5.1/go.mod h1:JpRdi6/HCYpAwUzNwuwqhbovhLtngrth3wmdIIUrZ80=
-github.com/hashicorp/go-immutable-radix v1.0.0/go.mod h1:0y9vanUI8NX6FsYoO3zeMjhV/C5i9g4Q3DwcSNZ4P60=
-github.com/hashicorp/go-msgpack v0.5.3/go.mod h1:ahLV/dePpqEmjfWmKiqvPkv/twdG7iPBM1vqhUKIvfM=
-github.com/hashicorp/go-multierror v1.0.0/go.mod h1:dHtQlpGsu+cZNNAkkCN/P3hoUDHhCYQXV3UM06sGGrk=
-github.com/hashicorp/go-rootcerts v1.0.0/go.mod h1:K6zTfqpRlCUIjkwsN4Z+hiSfzSTQa6eBIzfwKfwNnHU=
-github.com/hashicorp/go-sockaddr v1.0.0/go.mod h1:7Xibr9yA9JjQq1JpNB2Vw7kxv8xerXegt+ozgdvDeDU=
-github.com/hashicorp/go-syslog v1.0.0/go.mod h1:qPfqrKkXGihmCqbJM2mZgkZGvKG1dFdvsLplgctolz4=
-github.com/hashicorp/go-uuid v1.0.0/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/bN7x4byOro=
-github.com/hashicorp/go-uuid v1.0.1/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/bN7x4byOro=
-github.com/hashicorp/go.net v0.0.1/go.mod h1:hjKkEWcCURg++eb33jQU7oqQcI9XDCnUzHA0oac0k90=
-github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
-github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
-github.com/hashicorp/hcl v1.0.0/go.mod h1:E5yfLk+7swimpb2L/Alb/PJmXilQ/rhwaUYs4T20WEQ=
-github.com/hashicorp/logutils v1.0.0/go.mod h1:QIAnNjmIWmVIIkWDTG1z5v++HQmx9WQRO+LraFDTW64=
-github.com/hashicorp/mdns v1.0.0/go.mod h1:tL+uN++7HEJ6SQLQ2/p+z2pH24WQKWjBPkE0mNTz8vQ=
-github.com/hashicorp/memberlist v0.1.3/go.mod h1:ajVTdAv/9Im8oMAAj5G31PhhMCZJV2pPBoIllUwCN7I=
-github.com/hashicorp/serf v0.8.2/go.mod h1:6hOLApaqBFA1NXqRQAsxw9QxuDEvNxSQRwA/JwenrHc=
-github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
-github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
-github.com/imdario/mergo v0.3.5/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
-github.com/imdario/mergo v0.3.6 h1:xTNEAn+kxVO7dTZGu0CegyqKZmoWFI0rF8UxjlB2d28=
-github.com/imdario/mergo v0.3.6/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
-github.com/inconshreveable/mousetrap v1.0.0/go.mod h1:PxqpIevigyE2G7u3NXJIT2ANytuPF1OarO4DADm73n8=
+github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
+github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
+github.com/google/pprof v0.0.0-20240225044709-fd706174c886 h1:JSJUTZTQT1Gzb2ROdAKOY3HwzBYcclS2GgumhMfHqjw=
+github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
+github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4=
 github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
 github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
-github.com/jonboulle/clockwork v0.1.0/go.mod h1:Ii8DK3G1RaLaWxj9trq07+26W01tbo22gdxWY5EU2bo=
-github.com/jonboulle/clockwork v0.2.2/go.mod h1:Pkfl5aHPm1nk2H9h0bjmnJD/BcgbGXUBGnn1kMkgxc8=
 github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
-github.com/jpillora/backoff v1.0.0/go.mod h1:J/6gKK9jxlEcS3zixgDgUAsiuZ7yrSoa/FX5e0EB2j4=
-github.com/json-iterator/go v1.1.6/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
-github.com/json-iterator/go v1.1.10/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
-github.com/json-iterator/go v1.1.11/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
 github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
 github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
-github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024/go.mod h1:6v2b51hI/fHJwM22ozAgKL4VKDeJcHhJFhtBdhmNjmU=
-github.com/jstemmer/go-junit-report v0.9.1/go.mod h1:Brl9GWCQeLvo8nXZwPNNblvFj/XSXhF0NWZEnDohbsk=
-github.com/jtolds/gls v4.20.0+incompatible/go.mod h1:QJZ7F/aHp+rZTRtaJ1ow/lLfFfVYBRgL+9YlvaHOwJU=
-github.com/julienschmidt/httprouter v1.2.0/go.mod h1:SYymIcj16QtmaHHD7aYtjjsJG7VTCxuUUipMqKk8s4w=
-github.com/julienschmidt/httprouter v1.3.0/go.mod h1:JR6WtHb+2LUe8TCKY3cZOxFyyO8IZAc4RVcycCCAKdM=
-github.com/kisielk/errcheck v1.1.0/go.mod h1:EZBBE59ingxPouuu3KfxchcWSUPOHkagtvWXihfKN4Q=
-github.com/kisielk/errcheck v1.2.0/go.mod h1:/BMXB+zMLi60iA8Vv6Ksmxu/1UDYcXs4uQLJ+jE2L00=
 github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8=
 github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
-github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
-github.com/konsorten/go-windows-terminal-sequences v1.0.3/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
-github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515/go.mod h1:+0opPa2QZZtGFBFZlji/RkVcI2GknAs/DXo4wKdlNEc=
-github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
-github.com/kr/pretty v0.2.0/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
-github.com/kr/pretty v0.2.1/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
 github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
 github.com/kr/pretty v0.3.1/go.mod h1:hoEshYVHaxMs3cyo3Yncou5ZscifuDolrwPKZanG3xk=
-github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
-github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
 github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
-github.com/magiconair/properties v1.8.1/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ=
-github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
-github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
-github.com/mailru/easyjson v0.7.6/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
 github.com/mailru/easyjson v0.7.7 h1:UGYAvKxe3sBsEDzO8ZeWOSlIQfWFlxbzLZe7hwFURr0=
 github.com/mailru/easyjson v0.7.7/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
-github.com/mattn/go-colorable v0.0.9/go.mod h1:9vuHe8Xs5qXnSaW/c/ABM9alt+Vo+STaOChaDxuIBZU=
-github.com/mattn/go-isatty v0.0.3/go.mod h1:M+lRXTBqGeGNdLjl/ufCoiOlB5xdOkqRJdNxMWT7Zi4=
-github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
-github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
-github.com/miekg/dns v1.0.14/go.mod h1:W1PPwlIAgtquWBMBEV9nkV9Cazfe8ScdGz/Lj7v3Nrg=
-github.com/mitchellh/cli v1.0.0/go.mod h1:hNIlj7HEI86fIcpObd7a0FcrxTWetlwJDGcceTlRvqc=
-github.com/mitchellh/go-homedir v1.0.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0=
-github.com/mitchellh/go-homedir v1.1.0/go.mod h1:SfyaCUpYCn1Vlf4IUYiD9fPX4A5wJrkLzIz1N1q0pr0=
-github.com/mitchellh/go-testing-interface v1.0.0/go.mod h1:kRemZodwjscx+RGhAo8eIhFbs2+BFgRtFPeD/KE+zxI=
-github.com/mitchellh/gox v0.4.0/go.mod h1:Sd9lOJ0+aimLBi73mGofS1ycjY8lL3uZM3JPS42BGNg=
-github.com/mitchellh/iochan v1.0.0/go.mod h1:JwYml1nuB7xOzsp52dPpHFffvOCDupsG0QubkSMEySY=
-github.com/mitchellh/mapstructure v0.0.0-20160808181253-ca63d7c062ee/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
-github.com/mitchellh/mapstructure v1.1.2/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
-github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
-github.com/moby/term v0.0.0-20210610120745-9d4ed1856297/go.mod h1:vgPCkQMyxTZ7IDy8SXRufE172gr8+K/JE/7hHFxHW3A=
 github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w8PVh93nsPXa1VrQ6jlwL5oN8l14QlcNfg=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
-github.com/modern-go/reflect2 v0.0.0-20180701023420-4b7aa43c6742/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0=
-github.com/modern-go/reflect2 v1.0.1/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0=
 github.com/modern-go/reflect2 v1.0.2 h1:xBagoLtFs94CBntxluKeaWgTMpvLxC4ur3nMaC9Gz0M=
 github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
-github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq1c1nUAm88MOHcQC9l5mIlSMApZMrHA=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
-github.com/mwitkow/go-conntrack v0.0.0-20161129095857-cc309e4a2223/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
-github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
-github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
-github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
-github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
-github.com/oklog/ulid v1.3.1/go.mod h1:CirwcVhetQ6Lv90oh/F+FBtV6XMibvdAFo93nm5qn4U=
-github.com/onrik/logrus v0.9.0 h1:oT7VstCUxWBoX7fswYK61fi9bzRBSpROq5CR2b7wxQo=
-github.com/onrik/logrus v0.9.0/go.mod h1:qfe9NeZVAJfIxviw3cYkZo3kvBtLoPRJriAO8zl7qTk=
-github.com/onsi/ginkgo v0.0.0-20170829012221-11459a886d9c/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
-github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
-github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
-github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
-github.com/onsi/ginkgo/v2 v2.13.0 h1:0jY9lJquiL8fcf3M4LAXN5aMlS/b2BV86HFFPCPMgE4=
-github.com/onsi/ginkgo/v2 v2.13.0/go.mod h1:TE309ZR8s5FsKKpuB1YAQYBzCaAfUgatB/xlT/ETL/o=
-github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
-github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
-github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.27.10 h1:naR28SdDFlqrG6kScpT8VWpu1xWY5nJRCF3XaYyBjhI=
-github.com/onsi/gomega v1.27.10/go.mod h1:RsS8tutOdbdgzbPtzzATp12yT7kM5I5aElG3evPbQ0M=
-github.com/opentracing/opentracing-go v1.1.0/go.mod h1:UkNAQd3GIcIGf0SeVgPpRdFStlNbqXla1AfSYxPUl2o=
-github.com/pascaldekloe/goe v0.0.0-20180627143212-57f6aae5913c/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
-github.com/pelletier/go-toml v1.2.0/go.mod h1:5z9KED0ma1S8pY6P1sdut58dfprrGBbd/94hg7ilaic=
-github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
-github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
-github.com/pkg/errors v0.8.0/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
-github.com/pkg/errors v0.8.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
+github.com/onrik/logrus v0.11.0 h1:pu+BCaWL36t0yQaj/2UHK2erf88dwssAKOT51mxPUVs=
+github.com/onrik/logrus v0.11.0/go.mod h1:fO2vlZwIdti6PidD3gV5YKt9Lq5ptpnP293RAe1ITwk=
+github.com/onsi/ginkgo/v2 v2.15.0 h1:79HwNRBAZHOEwrczrgSOPy+eFTTlIGELKy5as+ClttY=
+github.com/onsi/gomega v1.30.0 h1:hvMK7xYz4D3HapigLTeGdId/NcfQx1VHMJc60ew99+8=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/posener/complete v1.1.1/go.mod h1:em0nMJCgc9GFtwrmVmEMR/ZL6WyhyjMBndrE9hABlRI=
-github.com/pquerna/cachecontrol v0.0.0-20171018203845-0dec1b30a021/go.mod h1:prYjPmNq4d1NPVmpShWobRqXY3q7Vp+80DqgxxUrUIA=
-github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXPKyh/dDVn+NZz0KFw=
-github.com/prometheus/client_golang v0.9.3/go.mod h1:/TN21ttK/J9q6uSwhBd54HahCDft0ttaMvbicHlPoso=
-github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
-github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
-github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
-github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
-github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/common v0.0.0-20181113130724-41aa239b4cce/go.mod h1:daVV7qP5qjZbuso7PdcryaAu0sAZbrN9i7WWcTMWvro=
-github.com/prometheus/common v0.4.0/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
-github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
-github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
-github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
-github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
-github.com/prometheus/procfs v0.0.0-20190507164030-5867b95ac084/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
-github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
-github.com/prometheus/procfs v0.1.3/go.mod h1:lV6e/gmhEcM9IjHGsFOCxxuZ+z1YqCvr4OA4YeYWdaU=
-github.com/prometheus/procfs v0.6.0/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
-github.com/prometheus/tsdb v0.7.1/go.mod h1:qhTCs0VvXwvX/y3TZrWD7rabWM+ijKTux40TwIPHuXU=
-github.com/rogpeppe/fastuuid v0.0.0-20150106093220-6724a57986af/go.mod h1:XWv6SoW27p1b0cqNHllgS5HIMJraePCO15w5zCzIWYg=
-github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ=
-github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
-github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
 github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
-github.com/rogpeppe/go-internal v1.11.0/go.mod h1:ddIwULY96R17DhadqLgMfk9H9tvdUzkipdSkR5nkCZA=
-github.com/russross/blackfriday/v2 v2.0.1/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
-github.com/ryanuber/columnize v0.0.0-20160712163229-9b3edd62028f/go.mod h1:sm1tb6uqfes/u+d4ooFouqFdy9/2g9QGwK3SQygK0Ts=
-github.com/sean-/seed v0.0.0-20170313163322-e2103e2c3529/go.mod h1:DxrIzT+xaE7yg65j358z/aeFdxmN0P9QXhEzd20vsDc=
-github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
-github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
-github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE=
-github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
-github.com/sirupsen/logrus v1.7.0/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
-github.com/sirupsen/logrus v1.8.1/go.mod h1:yWOB1SBYBC5VeMP7gHvWumXLIWorT60ONWic61uBYv0=
-github.com/sirupsen/logrus v1.9.0 h1:trlNQbNUG3OdDrDil03MCb1H2o9nJ1x4/5LYw7byDE0=
-github.com/sirupsen/logrus v1.9.0/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
-github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d/go.mod h1:OnSkiWE9lh6wB0YB77sQom3nweQdgAjqCqsofrRNTgc=
-github.com/smartystreets/goconvey v1.6.4/go.mod h1:syvi0/a8iFYH4r/RixwvyeAJjdLS9QV7WQ/tjFTllLA=
-github.com/soheilhy/cmux v0.1.4/go.mod h1:IM3LyeVVIOuxMH7sFAkER9+bJ4dT7Ms6E4xg4kGIyLM=
-github.com/soheilhy/cmux v0.1.5/go.mod h1:T7TcVDs9LWfQgPlPsdngu6I6QIoyIFZDDC6sNE1GqG0=
-github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
-github.com/spf13/afero v1.1.2/go.mod h1:j4pytiNVoe2o6bmDsKpLACNPDBIoEAkihy7loJ1B0CQ=
-github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
-github.com/spf13/cast v1.3.0/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
-github.com/spf13/cobra v1.1.3/go.mod h1:pGADOWyqRD/YMrPZigI/zbliZ2wVD/23d+is3pSWzOo=
-github.com/spf13/cobra v1.7.0 h1:hyqWnYt1ZQShIddO5kBpj3vu05/++x6tJ6dg8EC572I=
-github.com/spf13/cobra v1.7.0/go.mod h1:uLxZILRyS/50WlhOIKD7W6V5bgeIt+4sICxh6uRMrb0=
-github.com/spf13/jwalterweatherman v1.0.0/go.mod h1:cQK4TGJAtQXfYWX+Ddv3mKDzgVb68N+wFjFa4jdeBTo=
-github.com/spf13/pflag v0.0.0-20170130214245-9ff6c6923cff/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
-github.com/spf13/pflag v1.0.3/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
+github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ=
+github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
+github.com/spf13/cobra v1.8.0 h1:7aJaZx1B85qltLMc546zn58BxxfZdR/W22ej9CFoEf0=
+github.com/spf13/cobra v1.8.0/go.mod h1:WXLWApfZ71AjXPya3WOlMsY9yMs7YeiHhFVlvLyhcho=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
-github.com/spf13/viper v1.7.0/go.mod h1:8WkrPz2fc9jxqZNCJI/76HCieCp4Q8HaLFoCha5qpdg=
-github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
-github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
-github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
-github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
-github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
-github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
-github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
 github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
-github.com/subosito/gotenv v1.2.0/go.mod h1:N0PQaV/YGNqwC0u51sEeR/aUtSLEXKX9iv69rRypqCw=
-github.com/tidwall/gjson v1.14.0 h1:6aeJ0bzojgWLa82gDQHcx3S0Lr/O51I9bJ5nv6JFx5w=
-github.com/tidwall/gjson v1.14.0/go.mod h1:/wbyibRr2FHMks5tjHJ5F8dMZh3AcwJEMf5vlfC0lxk=
+github.com/tidwall/gjson v1.14.4 h1:uo0p8EbA09J7RQaflQ1aBRffTR7xedD2bcIVSYxLnkM=
+github.com/tidwall/gjson v1.14.4/go.mod h1:/wbyibRr2FHMks5tjHJ5F8dMZh3AcwJEMf5vlfC0lxk=
 github.com/tidwall/match v1.1.1 h1:+Ho715JplO36QYgwN9PGYNhgZvoUSc9X2c80KVTi+GA=
 github.com/tidwall/match v1.1.1/go.mod h1:eRSPERbgtNPcGhD8UCthc6PmLEQXEWd3PRB5JTxsfmM=
 github.com/tidwall/pretty v1.2.0 h1:RWIZEg2iJ8/g6fDDYzMpobmaoGh5OLl4AXtGUGPcqCs=
 github.com/tidwall/pretty v1.2.0/go.mod h1:ITEVvHYasfjBbM0u2Pg8T2nJnzm8xPwvNhhsoaGGjNU=
-github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
-github.com/tmc/grpc-websocket-proxy v0.0.0-20201229170055-e5319fda7802/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
-github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
-github.com/yuin/goldmark v1.3.5/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
-go.etcd.io/bbolt v1.3.2/go.mod h1:IbVyRI1SCnLcuJnV2u8VeU0CEYM7e686BmAb1XKL+uU=
-go.etcd.io/bbolt v1.3.6/go.mod h1:qXsaaIqmgQH0T+OPdb99Bf+PKfBBQVAdyD6TY9G8XM4=
-go.etcd.io/etcd/api/v3 v3.5.0/go.mod h1:cbVKeC6lCfl7j/8jBhAK6aIYO9XOjdptoxU/nLQcPvs=
-go.etcd.io/etcd/client/pkg/v3 v3.5.0/go.mod h1:IJHfcCEKxYu1Os13ZdwCwIUTUVGYTSAM3YSwc9/Ac1g=
-go.etcd.io/etcd/client/v2 v2.305.0/go.mod h1:h9puh54ZTgAKtEbut2oe9P4L/oqKCVB6xsXlzd7alYQ=
-go.etcd.io/etcd/client/v3 v3.5.0/go.mod h1:AIKXXVX/DQXtfTEqBryiLTUXwON+GuvO6Z7lLS/oTh0=
-go.etcd.io/etcd/pkg/v3 v3.5.0/go.mod h1:UzJGatBQ1lXChBkQF0AuAtkRQMYnHubxAEYIrC3MSsE=
-go.etcd.io/etcd/raft/v3 v3.5.0/go.mod h1:UFOHSIvO/nKwd4lhkwabrTD3cqW5yVyYYf/KlD00Szc=
-go.etcd.io/etcd/server/v3 v3.5.0/go.mod h1:3Ah5ruV+M+7RZr0+Y/5mNLwC+eQlni+mQmOVdCRJoS4=
-go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
-go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8=
-go.opencensus.io v0.22.2/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
-go.opencensus.io v0.22.3/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
-go.opentelemetry.io/contrib v0.20.0/go.mod h1:G/EtFaa6qaN7+LxqfIAT3GiZa7Wv5DTBUzl5H4LY0Kc=
-go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.20.0/go.mod h1:oVGt1LRbBOBq1A5BQLlUg9UaU/54aiHw8cgjV3aWZ/E=
-go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.20.0/go.mod h1:2AboqHi0CiIZU0qwhtUfCYD1GeUzvvIXWNkhDt7ZMG4=
-go.opentelemetry.io/otel v0.20.0/go.mod h1:Y3ugLH2oa81t5QO+Lty+zXf8zC9L26ax4Nzoxm/dooo=
-go.opentelemetry.io/otel/exporters/otlp v0.20.0/go.mod h1:YIieizyaN77rtLJra0buKiNBOm9XQfkPEKBeuhoMwAM=
-go.opentelemetry.io/otel/metric v0.20.0/go.mod h1:598I5tYlH1vzBjn+BTuhzTCSb/9debfNp6R3s7Pr1eU=
-go.opentelemetry.io/otel/oteltest v0.20.0/go.mod h1:L7bgKf9ZB7qCwT9Up7i9/pn0PWIa9FqQ2IQ8LoxiGnw=
-go.opentelemetry.io/otel/sdk v0.20.0/go.mod h1:g/IcepuwNsoiX5Byy2nNV0ySUF1em498m7hBWC279Yc=
-go.opentelemetry.io/otel/sdk/export/metric v0.20.0/go.mod h1:h7RBNMsDJ5pmI1zExLi+bJK+Dr8NQCh0qGhm1KDnNlE=
-go.opentelemetry.io/otel/sdk/metric v0.20.0/go.mod h1:knxiS8Xd4E/N+ZqKmUPf3gTTZ4/0TjTXukfxjzSTpHE=
-go.opentelemetry.io/otel/trace v0.20.0/go.mod h1:6GjCW8zgDjwGHGa6GkyeB8+/5vjT16gUEi0Nf1iBdgw=
-go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI=
-go.uber.org/atomic v1.4.0/go.mod h1:gD2HeocX3+yG+ygLZcrzQJaqmWj9AIm7n08wl/qW/PE=
-go.uber.org/atomic v1.7.0/go.mod h1:fEN4uk6kAWBTFdckzkM89CLk9XfWZrxpCo0nPH17wJc=
-go.uber.org/goleak v1.1.10/go.mod h1:8a7PlsEVH3e/a/GLqe5IIrQx6GzcnRmZEufDUTk4A7A=
-go.uber.org/multierr v1.1.0/go.mod h1:wR5kodmAFQ0UK8QlbwjlSNy0Z68gJhDJUG5sjR94q/0=
-go.uber.org/multierr v1.6.0/go.mod h1:cdWPpRnG4AhwMwsgIHip0KRBQjJy5kYEpYjJxpXp9iU=
-go.uber.org/zap v1.10.0/go.mod h1:vwi/ZaCAaUcBkycHslxD9B2zi4UTXhF60s6SWpuDF0Q=
-go.uber.org/zap v1.17.0/go.mod h1:MXVU+bhUf/A7Xi2HNOnopQOrmycQ5Ih87HtOu4q5SSo=
-golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
-golang.org/x/crypto v0.0.0-20181029021203-45a5f77698d3/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
-golang.org/x/crypto v0.0.0-20190510104115-cbcb75029529/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
-golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.0.0-20201002170205-7f63de1d35b0/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.0.0-20210220033148-5ea612d1eb83/go.mod h1:jdWPYTVW3xRLrWPugEBEK3UY2ZEsg3UU495nc5E+M+I=
-golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
-golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
-golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
-golang.org/x/exp v0.0.0-20190829153037-c13cbed26979/go.mod h1:86+5VVa7VpoJ4kLfm080zCjGlMRFzhUhsZKEZO7MGek=
-golang.org/x/exp v0.0.0-20191030013958-a1ab85dbe136/go.mod h1:JXzH8nQsPlswgeRAPE3MuO9GYsAcnJvJ4vnMwN/5qkY=
-golang.org/x/exp v0.0.0-20191129062945-2f5052295587/go.mod h1:2RIsYlXP63K8oxa1u096TMicItID8zy7Y6sNkU49FU4=
-golang.org/x/exp v0.0.0-20191227195350-da58074b4299/go.mod h1:2RIsYlXP63K8oxa1u096TMicItID8zy7Y6sNkU49FU4=
-golang.org/x/exp v0.0.0-20200119233911-0405dc783f0a/go.mod h1:2RIsYlXP63K8oxa1u096TMicItID8zy7Y6sNkU49FU4=
-golang.org/x/exp v0.0.0-20200207192155-f17229e696bd/go.mod h1:J/WKrq2StrnmMY6+EHIKF9dgMWnmCNThgcyBT1FY9mM=
-golang.org/x/exp v0.0.0-20200224162631-6cc2880d07d6/go.mod h1:3jZMyOhIsHpP37uCMkUooju7aAi5cS1Q23tOzKc+0MU=
-golang.org/x/image v0.0.0-20190227222117-0694c2d4d067/go.mod h1:kZ7UVZpmo3dzQBMxlp+ypCbDeSB+sBbTgSJuh5dn5js=
-golang.org/x/image v0.0.0-20190802002840-cff245a6509b/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
-golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
-golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU=
-golang.org/x/lint v0.0.0-20190301231843-5614ed5bae6f/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
-golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
-golang.org/x/lint v0.0.0-20190409202823-959b441ac422/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
-golang.org/x/lint v0.0.0-20190909230951-414d861bb4ac/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
-golang.org/x/lint v0.0.0-20190930215403-16217165b5de/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
-golang.org/x/lint v0.0.0-20191125180803-fdd1cda4f05f/go.mod h1:5qLYkcX4OjUUV8bRuDixDT3tpyyb+LUpUlRWLxfhWrs=
-golang.org/x/lint v0.0.0-20200130185559-910be7a94367/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
-golang.org/x/lint v0.0.0-20200302205851-738671d3881b/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
-golang.org/x/lint v0.0.0-20210508222113-6edffad5e616/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
-golang.org/x/mobile v0.0.0-20190312151609-d3739f865fa6/go.mod h1:z+o9i4GpDbdi3rU15maQ/Ox0txvL9dWGYEHz965HBQE=
-golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028/go.mod h1:E/iHnbuqvinMTCcRqshq8CkpyQDoeVncDDYHnLhea+o=
-golang.org/x/mod v0.0.0-20190513183733-4bf6d317e70e/go.mod h1:mXi4GBBbnImb6dmsKGUJ2LatrhH/nqhxcFungHvyanc=
-golang.org/x/mod v0.1.0/go.mod h1:0QHyrYULN0/3qlju5TqG8bIK38QM8yzMo5ekMj3DlcY=
-golang.org/x/mod v0.1.1-0.20191105210325-c90efee705ee/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg=
-golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181023162649-9b4f9f5ad519/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181201002055-351d144fa1fc/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181220203305-927f97764cc3/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190501004415-9ce7a6920f09/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
-golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190724013045-ca1201d0de80/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200114155413-6afb5195e5aa/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200202094626-16171245cfb2/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200222125558-5a598a2470a0/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200301022130-244492dfa37a/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200324143707-d3edc9973b7e/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
-golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201202161906-c7110b5ffcbb/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
-golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.17.0 h1:pVaXccu2ozPjCXewfr1S7xza/zcXTity9cCdXQYSjIM=
-golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
-golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
-golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
-golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
-golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
-golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
-golang.org/x/oauth2 v0.12.0 h1:smVPGxink+n1ZI5pkQa8y6fZT0RW0MgCO5bFpepy4B4=
-golang.org/x/oauth2 v0.12.0/go.mod h1:A74bZ3aGXgCY0qaIC9Ahg6Lglin4AMAco8cIv9baba4=
-golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20190227155943-e225da77a7e6/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/net v0.21.0 h1:AQyQV4dYCvJ7vGmJyKki9+PBdyvhkSd8EIx/qb0AYv4=
+golang.org/x/oauth2 v0.17.0 h1:6m3ZPmLEFdVxKKWnKq4VqZ60gutO35zm+zrAHVmHyDQ=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20201207232520-09787c993a3a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20210220032951-036812b2e83c/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sys v0.0.0-20180823144017-11551d06cbcc/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20181026203630-95b1ffbd15a5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20181107165924-66b7b1311ac8/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20181116152217-5ac8a444bdc5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20190312061237-fead79001313/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190422165155-953cdadca894/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190502145724-3ef323f4f1fd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190507160741-ecd444e8653b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190606165138-5da285871e9c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190726091711-fc99dfbffb4e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191001151750-bb3f8db39f24/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191026070338-33540a1f6037/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191228213918-04cbcbbfeed8/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200106162015-b016eb3dc98e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200113162924-86b910548bc1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200122134326-e047566fdf82/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200202164722-d101bd2416d5/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200212091648-12a6c2dcc1e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200223170610-d5e6a3e2c0ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200302150141-5c8b2ff67527/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200519105757-fe76b779f299/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200615200032-f1bc736245b1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200831180312-196b9ba8737a/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200923182605-d9f96fdee20d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210330210617-4fbd30eecc44/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210403161142-5e06dd20ab57/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.13.0 h1:Af8nKPmuFypiUBjVoU9V20FiaFXOcuZI21p0ycVYYGE=
-golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
-golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.0.0-20210220032956-6a3ed077a48d/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.13.0 h1:bb+I9cTfFazGW51MZqBVmZy7+JEJMouUHTUSKVQLBek=
-golang.org/x/term v0.13.0/go.mod h1:LTmsnFJwVN6bCy1rVCoS+qHT1HhALEFxKncY3WNNh4U=
-golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
+golang.org/x/sys v0.17.0 h1:25cE3gD+tdBA7lp7QfhuV+rJiE9YXTcS3VG1SqssI/Y=
+golang.org/x/term v0.17.0 h1:mkTF7LCd6WGJNL3K1Ad7kwxNfYAW6a8a8QqtMblp/4U=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.13.0 h1:ablQoSUd0tRdKxZewP80B+BaqeKJuVhuRxj/dkrun3k=
-golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
-golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20210220033141-f8bda1e9f3ba/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20210723032227-1f47c861a9ac/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.3.0 h1:rg5rLMjNzMS1RkNLzCG38eapWhnYLFYXDXj2gOlr8j4=
-golang.org/x/time v0.3.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/tools v0.0.0-20180221164845-07fd8470d635/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
+golang.org/x/text v0.14.0 h1:ScX5w1eTa3QqT8oi6+ziP7dTV1S2+ALU0bI+0zXKWiQ=
+golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
+golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
-golang.org/x/tools v0.0.0-20181030221726-6c7e314b6563/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
-golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
-golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
-golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
-golang.org/x/tools v0.0.0-20190312151545-0bb0c0a6e846/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
-golang.org/x/tools v0.0.0-20190312170243-e65039ee4138/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
-golang.org/x/tools v0.0.0-20190328211700-ab21143f2384/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
-golang.org/x/tools v0.0.0-20190425150028-36563e24a262/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
-golang.org/x/tools v0.0.0-20190506145303-2d16b83fe98c/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
-golang.org/x/tools v0.0.0-20190524140312-2c0ae7006135/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
-golang.org/x/tools v0.0.0-20190606124116-d0a3d012864b/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
-golang.org/x/tools v0.0.0-20190621195816-6e04913cbbac/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
-golang.org/x/tools v0.0.0-20190624222133-a101b041ded4/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
-golang.org/x/tools v0.0.0-20190628153133-6cdbf07be9d0/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
-golang.org/x/tools v0.0.0-20190816200558-6889da9d5479/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20190911174233-4f2ddba30aff/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191012152004-8de300cfc20a/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191108193012-7d206e10da11/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191112195655-aa38f8e97acc/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191113191852-77e3bb0ad9e7/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191115202509-3a792d9c32b2/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191125144606-a911d9008d1f/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191130070609-6e064ea0cf2d/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191216173652-a0e659d51361/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20191227053925-7b8e75db28f4/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200117161641-43d50277825c/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200122220014-bf1340f18c4a/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200130002326-2f3ba24bd6e7/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200204074204-1cc6d1ef6c74/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200207183749-b753a1ba74fa/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200212150539-ea181f53ac56/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200224181240-023911ca70b2/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200304193943-95d2e580d8eb/go.mod h1:o4KQGtdN14AW+yjsvvwRTJJuXz8XRtIHtEnmAXLyFUw=
-golang.org/x/tools v0.0.0-20200505023115-26f46d2f7ef8/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.1.2/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.14.0 h1:jvNa2pY0M4r62jkRQ6RwEZZyPcymeL9XZMLBbV7U2nc=
-golang.org/x/tools v0.14.0/go.mod h1:uYBEerGOWcJyEORxN+Ek8+TT266gXkNlHdJBwexUsBg=
+golang.org/x/tools v0.18.0 h1:k8NLag8AGHnn+PHbl7g43CtqZAwG60vZkLqgyZgIHgQ=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
-google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M=
-google.golang.org/api v0.8.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
-google.golang.org/api v0.9.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
-google.golang.org/api v0.13.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI=
-google.golang.org/api v0.14.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI=
-google.golang.org/api v0.15.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI=
-google.golang.org/api v0.17.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
-google.golang.org/api v0.18.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
-google.golang.org/api v0.20.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
-google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
-google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
-google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
-google.golang.org/appengine v1.6.1/go.mod h1:i06prIuMbXzDqacNJfV5OdTW448YApPu5ww/cMBSeb0=
-google.golang.org/appengine v1.6.5/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
-google.golang.org/appengine v1.6.7 h1:FZR1q0exgwxzPzp/aF+VccGrSfxfPpkBqjIIEq3ru6c=
-google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
-google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc=
-google.golang.org/genproto v0.0.0-20190307195333-5fe7a883aa19/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
-google.golang.org/genproto v0.0.0-20190418145605-e7d98fc518a7/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
-google.golang.org/genproto v0.0.0-20190425155659-357c62f0e4bb/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
-google.golang.org/genproto v0.0.0-20190502173448-54afdca5d873/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
-google.golang.org/genproto v0.0.0-20190801165951-fa694d86fc64/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
-google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
-google.golang.org/genproto v0.0.0-20190911173649-1774047e7e51/go.mod h1:IbNlFCBrqXvoKpeg0TB2l7cyZUmoaFKYIwrEpbDKLA8=
-google.golang.org/genproto v0.0.0-20191108220845-16a3f7862a1a/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
-google.golang.org/genproto v0.0.0-20191115194625-c23dd37a84c9/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
-google.golang.org/genproto v0.0.0-20191216164720-4f79533eabd1/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
-google.golang.org/genproto v0.0.0-20191230161307-f3c370f40bfb/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
-google.golang.org/genproto v0.0.0-20200115191322-ca5a22157cba/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
-google.golang.org/genproto v0.0.0-20200122232147-0452cf42e150/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
-google.golang.org/genproto v0.0.0-20200204135345-fa8e72b47b90/go.mod h1:GmwEX6Z4W5gMy59cAlVYjN9JhxgbQH6Gn+gFDQe2lzA=
-google.golang.org/genproto v0.0.0-20200212174721-66ed5ce911ce/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200224152610-e50cd9704f63/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200305110556-506484158171/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200423170343-7949de9c1215/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200513103714-09dca8ec2884/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013/go.mod h1:NbSheEEYHJ7i3ixzK3sjbqSGDJWnxyFXZblF3eUsNvo=
-google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210602131652-f16073e35f0c/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
-google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
-google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
-google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
-google.golang.org/grpc v1.23.0/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg=
-google.golang.org/grpc v1.25.1/go.mod h1:c3i+UQWmh7LiEpx4sFZnkU36qjEYZ0imhYfXVyQciAY=
-google.golang.org/grpc v1.26.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
-google.golang.org/grpc v1.27.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
-google.golang.org/grpc v1.27.1/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
-google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
-google.golang.org/grpc v1.33.1/go.mod h1:fr5YgcSWrqhRRxogOsw7RzIpsmvOZ6IcH4kBYTpR3n0=
-google.golang.org/grpc v1.36.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
-google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
-google.golang.org/grpc v1.38.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
-google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
-google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
-google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
-google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miEFZTKqfCUM6K7xSMQL9OKL/b6hQv+e19PK+JZNE=
-google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo=
-google.golang.org/protobuf v1.22.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
-google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
-google.golang.org/protobuf v1.23.1-0.20200526195155-81db48ad09cc/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
-google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGjtUeSXeh4=
-google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
+google.golang.org/appengine v1.6.8 h1:IhEN5q69dyKagZPYMSdIjS2HqprW324FRQZJcGqPAsM=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.31.0 h1:g0LDEJHgrBl9N9r17Ru3sqWhkIx2NB67okBHPwC7hs8=
-google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
-gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
+google.golang.org/protobuf v1.32.0 h1:pPC6BG5ex8PDFnkbrGU3EixyhKcQ2aDuBS36lqK/C7I=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
-gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
-gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
 gopkg.in/inf.v0 v0.9.1 h1:73M5CoZyi3ZLMOyDlQh031Cx6N9NDJ2Vvfl76EDAgDc=
 gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
-gopkg.in/ini.v1 v1.51.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
-gopkg.in/natefinch/lumberjack.v2 v2.0.0/go.mod h1:l0ndWWf7gzL7RNwBG7wST/UCcT4T24xpD6X8LsfU/+k=
-gopkg.in/resty.v1 v1.12.0/go.mod h1:mDo4pnntr5jdWRML875a/NmxYqAlA73dVijT2AXvQQo=
-gopkg.in/square/go-jose.v2 v2.2.2/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
-gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
-gopkg.in/yaml.v2 v2.0.0-20170812160011-eb3733d160e7/go.mod h1:JAlM8MvJe8wmxCU4Bli9HhUf9+ttbYbLASfIpnQbh74=
-gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.3/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.5/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.3.0/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
 gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-gopkg.in/yaml.v3 v3.0.0-20200615113413-eeeca48fe776/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-gotest.tools/v3 v3.0.2/go.mod h1:3SzNCllyD9/Y+b5r9JIKQ474KzkZyqLqEfYqMsX94Bk=
-gotest.tools/v3 v3.0.3/go.mod h1:Z7Lb0S5l+klDB31fvDQX8ss/FlKDxtlFlw3Oa8Ymbl8=
-honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
-honnef.co/go/tools v0.0.0-20190106161140-3f1c8253044a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
-honnef.co/go/tools v0.0.0-20190418001031-e561f6794a2a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
-honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
-honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
-honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.22.6/go.mod h1:q1F7IfaNrbi/83ebLy3YFQYLjPSNyunZ/IXQxMmbwCg=
-k8s.io/api v0.27.6 h1:PBWu/lywJe2qQcshMjubzcBg7+XDZOo7O8JJAWuYtUo=
-k8s.io/api v0.27.6/go.mod h1:AQYj0UsFCp3qJE7bOVnUuy4orCsXVkvHefnbYQiNWgk=
-k8s.io/apimachinery v0.22.6/go.mod h1:ZvVLP5iLhwVFg2Yx9Gh5W0um0DUauExbRhe+2Z8I1EU=
-k8s.io/apimachinery v0.27.6 h1:mGU8jmBq5o8mWBov+mLjdTBcU+etTE19waies4AQ6NE=
-k8s.io/apimachinery v0.27.6/go.mod h1:XNfZ6xklnMCOGGFNqXG7bUrQCoR04dh/E7FprV6pb+E=
-k8s.io/apiserver v0.22.6/go.mod h1:OlL1rGa2kKWGj2JEXnwBcul/BwC9Twe95gm4ohtiIIs=
-k8s.io/client-go v0.22.6/go.mod h1:TffU4AV2idZGeP+g3kdFZP+oHVHWPL1JYFySOALriw0=
-k8s.io/client-go v0.27.6 h1:vzI8804gpUtpMCNaFjIFyJrifH7u//LJCJPy8fQuYQg=
-k8s.io/client-go v0.27.6/go.mod h1:PMsXcDKiJTW7PHJ64oEsIUJF319wm+EFlCj76oE5QXM=
-k8s.io/code-generator v0.22.6/go.mod h1:iOZwYADSgFPNGWfqHFfg1V0TNJnl1t0WyZluQp4baqU=
-k8s.io/component-base v0.22.6/go.mod h1:ngHLefY4J5fq2fApNdbWyj4yh0lvw36do4aAjNN8rc8=
-k8s.io/gengo v0.0.0-20200413195148-3a45101e95ac/go.mod h1:ezvh/TsK7cY6rbqRK0oQQ8IAqLxYwwyPxAX1Pzy0ii0=
-k8s.io/gengo v0.0.0-20201214224949-b6c5ce23f027/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
-k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
-k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
-k8s.io/klog/v2 v2.9.0/go.mod h1:hy9LJ/NvuK+iVyP4Ehqva4HxZG/oXyIS3n3Jmire4Ec=
-k8s.io/klog/v2 v2.100.1 h1:7WCHKK6K8fNhTqfBhISHQ97KrnJNFZMcQvKp7gP/tmg=
-k8s.io/klog/v2 v2.100.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
-k8s.io/kube-aggregator v0.22.6 h1:/iaXzOWia2dqOQkIA9eJtkmfTveJMLz3Dci9ZA/WgmU=
-k8s.io/kube-aggregator v0.22.6/go.mod h1:0RSTzxqiwsj5HUlov195Z72ZKyE4qgedKXCl6sLKAjM=
-k8s.io/kube-openapi v0.0.0-20211109043538-20434351676c/go.mod h1:vHXdDvt9+2spS2Rx9ql3I8tycm3H9FDfdUoIuKCefvw=
-k8s.io/kube-openapi v0.0.0-20230501164219-8b0f38b5fd1f h1:2kWPakN3i/k81b0gvD5C5FJ2kxm1WrQFanWchyKuqGg=
-k8s.io/kube-openapi v0.0.0-20230501164219-8b0f38b5fd1f/go.mod h1:byini6yhqGC14c3ebc/QwanvYwhuMWF6yz2F8uwW8eg=
-k8s.io/utils v0.0.0-20210819203725-bdf08cb9a70a/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
-k8s.io/utils v0.0.0-20230209194617-a36077c30491 h1:r0BAOLElQnnFhE/ApUsg3iHdVYYPBjNSSOMowRZxxsY=
-k8s.io/utils v0.0.0-20230209194617-a36077c30491/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
-rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
-rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
-rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.0.27/go.mod h1:tq2nT0Kx7W+/f2JVE+zxYtUhdjuELJkVpNz+x/QN5R4=
+k8s.io/api v0.29.2 h1:hBC7B9+MU+ptchxEqTNW2DkUosJpp1P+Wn6YncZ474A=
+k8s.io/api v0.29.2/go.mod h1:sdIaaKuU7P44aoyyLlikSLayT6Vb7bvJNCX105xZXY0=
+k8s.io/apimachinery v0.29.2 h1:EWGpfJ856oj11C52NRCHuU7rFDwxev48z+6DSlGNsV8=
+k8s.io/apimachinery v0.29.2/go.mod h1:6HVkd1FwxIagpYrHSwJlQqZI3G9LfYWRPAkUvLnXTKU=
+k8s.io/client-go v0.29.2 h1:FEg85el1TeZp+/vYJM7hkDlSTFZ+c5nnK44DJ4FyoRg=
+k8s.io/client-go v0.29.2/go.mod h1:knlvFZE58VpqbQpJNbCbctTVXcd35mMyAAwBdpt4jrA=
+k8s.io/klog/v2 v2.120.1 h1:QXU6cPEOIslTGvZaXvFWiP9VKyeet3sawzTOvdXb4Vw=
+k8s.io/kube-aggregator v0.29.2 h1:z9qJn5wlGmGaX6EfM7OEhr6fq6SBjDKR6tPRZ/qgxeY=
+k8s.io/kube-aggregator v0.29.2/go.mod h1:QEuwzmMJJsg0eg1Gv+u4cWcYeJG2+8vN8/nTXBzopUo=
+k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b h1:1dzw/KqgSPod72SUp2tuTOmK33TlY2fHlrVU2M9VrOM=
+k8s.io/utils v0.0.0-20240102154912-e7106e64919e h1:eQ/4ljkx21sObifjzXwlPKpdGLrCfRziVtos3ofG/sQ=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
-sigs.k8s.io/structured-merge-diff/v4 v4.0.2/go.mod h1:bJZC9H9iH24zzfZ/41RGcq60oK1F7G282QMXDPYydCw=
-sigs.k8s.io/structured-merge-diff/v4 v4.2.1/go.mod h1:j/nl6xW8vLS49O8YvXW1ocPhZawJtm+Yrr7PPRQ0Vg4=
-sigs.k8s.io/structured-merge-diff/v4 v4.2.3 h1:PRbqxJClWWYMNV1dhaG4NsibJbArud9kFxnAMREiWFE=
-sigs.k8s.io/structured-merge-diff/v4 v4.2.3/go.mod h1:qjx8mGObPmV2aSZepjQjbmb2ihdVs8cGKBraizNC69E=
-sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=
-sigs.k8s.io/yaml v1.3.0 h1:a2VclLzOGrwOHDiV8EfBGhvjHvP46CtW5j6POvhYGGo=
-sigs.k8s.io/yaml v1.3.0/go.mod h1:GeOyir5tyXNByN85N/dRIT9es5UQNerPYEKK56eTBm8=
+sigs.k8s.io/structured-merge-diff/v4 v4.4.1 h1:150L+0vs/8DA78h1u02ooW1/fFq/Lwr+sGiqlzvrtq4=
+sigs.k8s.io/structured-merge-diff/v4 v4.4.1/go.mod h1:N8hJocpFajUSSeSJ9bOZ77VzejKZaXsTtZo4/u7Io08=
+sigs.k8s.io/yaml v1.4.0 h1:Mk1wCc2gy/F0THH0TAp1QYyJNzRm2KCLy3o5ASXVI5E=
diff --git a/internal/ingress/annotations/rewrite/main.go b/internal/ingress/annotations/rewrite/main.go
index cd9ed3993..d78a004b9 100644
--- a/internal/ingress/annotations/rewrite/main.go
+++ b/internal/ingress/annotations/rewrite/main.go
@@ -152,14 +152,14 @@ func (a rewrite) Parse(ing *networking.Ingress) (interface{}, error) {
 	config.SSLRedirect, err = parser.GetBoolAnnotation(sslRedirectAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		if errors.IsValidationError(err) {
-			klog.Warningf("%sis invalid, defaulting to '%s'", sslRedirectAnnotation, a.r.GetDefaultBackend().SSLRedirect)
+			klog.Warningf("%s is invalid, defaulting to '%t'", sslRedirectAnnotation, a.r.GetDefaultBackend().SSLRedirect)
 		}
 		config.SSLRedirect = a.r.GetDefaultBackend().SSLRedirect
 	}
 	config.PreserveTrailingSlash, err = parser.GetBoolAnnotation(preserveTrailingSlashAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		if errors.IsValidationError(err) {
-			klog.Warningf("%sis invalid, defaulting to '%s'", preserveTrailingSlashAnnotation, a.r.GetDefaultBackend().PreserveTrailingSlash)
+			klog.Warningf("%s is invalid, defaulting to '%t'", preserveTrailingSlashAnnotation, a.r.GetDefaultBackend().PreserveTrailingSlash)
 		}
 		config.PreserveTrailingSlash = a.r.GetDefaultBackend().PreserveTrailingSlash
 	}
@@ -167,7 +167,7 @@ func (a rewrite) Parse(ing *networking.Ingress) (interface{}, error) {
 	config.ForceSSLRedirect, err = parser.GetBoolAnnotation(forceSSLRedirectAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		if errors.IsValidationError(err) {
-			klog.Warningf("%sis invalid, defaulting to '%s'", forceSSLRedirectAnnotation, a.r.GetDefaultBackend().ForceSSLRedirect)
+			klog.Warningf("%s is invalid, defaulting to '%t'", forceSSLRedirectAnnotation, a.r.GetDefaultBackend().ForceSSLRedirect)
 		}
 		config.ForceSSLRedirect = a.r.GetDefaultBackend().ForceSSLRedirect
 	}
@@ -175,7 +175,7 @@ func (a rewrite) Parse(ing *networking.Ingress) (interface{}, error) {
 	config.UseRegex, err = parser.GetBoolAnnotation(useRegexAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		if errors.IsValidationError(err) {
-			klog.Warningf("%sis invalid, defaulting to 'false'", useRegexAnnotation)
+			klog.Warningf("%s is invalid, defaulting to 'false'", useRegexAnnotation)
 		}
 		config.UseRegex = false
 	}
diff --git a/internal/ingress/metric/collectors/testutils.go b/internal/ingress/metric/collectors/testutils.go
index 669e89e17..e59ccfd9c 100644
--- a/internal/ingress/metric/collectors/testutils.go
+++ b/internal/ingress/metric/collectors/testutils.go
@@ -50,7 +50,7 @@ func GatherAndCompare(_ prometheus.Collector, expected string, metricNames []str
 	if !reflect.DeepEqual(metrics, normalizeMetricFamilies(expectedMetrics)) {
 		// Encode the gathered output to the readable text format for comparison.
 		var buf1 bytes.Buffer
-		enc := expfmt.NewEncoder(&buf1, expfmt.FmtText)
+		enc := expfmt.NewEncoder(&buf1, expfmt.NewFormat(expfmt.TypeTextPlain))
 		for _, mf := range metrics {
 			if err := enc.Encode(mf); err != nil {
 				return fmt.Errorf("encoding result failed: %s", err)
@@ -59,7 +59,7 @@ func GatherAndCompare(_ prometheus.Collector, expected string, metricNames []str
 		// Encode normalized expected metrics again to generate them in the same ordering
 		// the registry does to spot differences more easily.
 		var buf2 bytes.Buffer
-		enc = expfmt.NewEncoder(&buf2, expfmt.FmtText)
+		enc = expfmt.NewEncoder(&buf2, expfmt.NewFormat(expfmt.TypeTextPlain))
 		for _, mf := range normalizeMetricFamilies(expectedMetrics) {
 			if err := enc.Encode(mf); err != nil {
 				return fmt.Errorf("encoding result failed: %s", err)
diff --git a/magefiles/go.mod b/magefiles/go.mod
index 25610b647..9dddf9f71 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -8,7 +8,7 @@ require (
 	github.com/helm/helm v2.17.0+incompatible
 	github.com/magefile/mage v1.15.0
 	github.com/vmware-labs/yaml-jsonpath v0.3.2
-	golang.org/x/oauth2 v0.12.0
+	golang.org/x/oauth2 v0.17.0
 	gopkg.in/yaml.v3 v3.0.1
 )
 
@@ -22,17 +22,16 @@ require (
 	github.com/gobwas/glob v0.2.3 // indirect
 	github.com/golang/protobuf v1.5.3 // indirect
 	github.com/google/go-querystring v1.1.0 // indirect
-	github.com/kr/pretty v0.3.1 // indirect
+	github.com/kr/text v0.2.0 // indirect
 	github.com/onsi/ginkgo v1.16.5 // indirect
-	github.com/onsi/gomega v1.27.10 // indirect
+	github.com/onsi/gomega v1.30.0 // indirect
 	github.com/rogpeppe/go-internal v1.11.0 // indirect
-	github.com/stretchr/testify v1.8.4 // indirect
-	golang.org/x/crypto v0.17.0 // indirect
-	golang.org/x/net v0.17.0 // indirect
-	google.golang.org/appengine v1.6.7 // indirect
-	google.golang.org/protobuf v1.31.0 // indirect
+	github.com/sergi/go-diff v1.3.1 // indirect
+	golang.org/x/crypto v0.20.0 // indirect
+	google.golang.org/appengine v1.6.8 // indirect
+	google.golang.org/protobuf v1.32.0 // indirect
 	gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
-	k8s.io/apimachinery v0.27.6 // indirect
+	k8s.io/apimachinery v0.29.2 // indirect
 	k8s.io/helm v2.17.0+incompatible // indirect
 )
diff --git a/magefiles/go.sum b/magefiles/go.sum
index f9b01b2ef..9abe8e950 100644
--- a/magefiles/go.sum
+++ b/magefiles/go.sum
@@ -22,7 +22,6 @@ github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg78
 github.com/gobwas/glob v0.2.3 h1:A4xDbljILXROh+kObIiy5kIaPYD8e96x1tgBhUI5J+Y=
 github.com/gobwas/glob v0.2.3/go.mod h1:d3Ez4x06l9bZtSvzIay5+Yzi0fmZzPgnTbPcKjJAkT8=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
-github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.4.0-rc.1/go.mod h1:ceaxUfeHdC40wWswd/P6IGgMaK3YpKi5j83Wpe3EHw8=
 github.com/golang/protobuf v1.4.0-rc.1.0.20200221234624-67d41d38c208/go.mod h1:xKAWHe0F5eneWXFV3EuXVDTCmh+JuBKY0li0aMyXATA=
 github.com/golang/protobuf v1.4.0-rc.2/go.mod h1:LlEzMj4AhA7rCAGe4KMBDvJI+AwstrUpVNzEA03Pprs=
@@ -37,8 +36,7 @@ github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMyw
 github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.9 h1:O2Tfq5qg4qc4AmwVlvv0oLiVAGB7enBSJ2x2DqQFi38=
-github.com/google/go-cmp v0.5.9/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
+github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
 github.com/google/go-github/v48 v48.2.0 h1:68puzySE6WqUY9KWmpOsDEQfDZsso98rT6pZcz9HqcE=
 github.com/google/go-github/v48 v48.2.0/go.mod h1:dDlehKBDo850ZPvCTK0sEqTCVWcrGl2LcDiajkYi89Y=
 github.com/google/go-querystring v1.1.0 h1:AnCroh3fv4ZBgVIf1Iwtovgjaw/GiKJo8M8yD/fhyJ8=
@@ -67,16 +65,13 @@ github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042
 github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.27.10 h1:naR28SdDFlqrG6kScpT8VWpu1xWY5nJRCF3XaYyBjhI=
-github.com/onsi/gomega v1.27.10/go.mod h1:RsS8tutOdbdgzbPtzzATp12yT7kM5I5aElG3evPbQ0M=
-github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
+github.com/onsi/gomega v1.30.0 h1:hvMK7xYz4D3HapigLTeGdId/NcfQx1VHMJc60ew99+8=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
 github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
 github.com/rogpeppe/go-internal v1.11.0/go.mod h1:ddIwULY96R17DhadqLgMfk9H9tvdUzkipdSkR5nkCZA=
-github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=
 github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=
+github.com/sergi/go-diff v1.3.1 h1:xkr+Oxo4BOQKmkn/B9eMK0g5Kg/983T9DqqPHwYqD+8=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
@@ -88,19 +83,15 @@ github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9dec
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.17.0 h1:r8bRNjWL3GshPW3gkd+RpvzWrZAwPS49OmTGZ/uhM4k=
-golang.org/x/crypto v0.17.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq4=
+golang.org/x/crypto v0.20.0 h1:jmAMJJZXr5KiCw05dfYK9QnqaqKLYXijU23lsEdcQqg=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.17.0 h1:pVaXccu2ozPjCXewfr1S7xza/zcXTity9cCdXQYSjIM=
-golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
-golang.org/x/oauth2 v0.12.0 h1:smVPGxink+n1ZI5pkQa8y6fZT0RW0MgCO5bFpepy4B4=
-golang.org/x/oauth2 v0.12.0/go.mod h1:A74bZ3aGXgCY0qaIC9Ahg6Lglin4AMAco8cIv9baba4=
+golang.org/x/net v0.21.0 h1:AQyQV4dYCvJ7vGmJyKki9+PBdyvhkSd8EIx/qb0AYv4=
+golang.org/x/oauth2 v0.17.0 h1:6m3ZPmLEFdVxKKWnKq4VqZ60gutO35zm+zrAHVmHyDQ=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -113,10 +104,8 @@ golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210112080510-489259a85091/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.15.0 h1:h48lPFYpsTvQJZF4EKyI4aLHaev3CxivZmv7yZig9pc=
-golang.org/x/sys v0.15.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.17.0 h1:25cE3gD+tdBA7lp7QfhuV+rJiE9YXTcS3VG1SqssI/Y=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.14.0 h1:ScX5w1eTa3QqT8oi6+ziP7dTV1S2+ALU0bI+0zXKWiQ=
 golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
@@ -127,8 +116,7 @@ golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8T
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-google.golang.org/appengine v1.6.7 h1:FZR1q0exgwxzPzp/aF+VccGrSfxfPpkBqjIIEq3ru6c=
-google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
+google.golang.org/appengine v1.6.8 h1:IhEN5q69dyKagZPYMSdIjS2HqprW324FRQZJcGqPAsM=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
@@ -137,8 +125,7 @@ google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzi
 google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.31.0 h1:g0LDEJHgrBl9N9r17Ru3sqWhkIx2NB67okBHPwC7hs8=
-google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.32.0 h1:pPC6BG5ex8PDFnkbrGU3EixyhKcQ2aDuBS36lqK/C7I=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
@@ -156,7 +143,6 @@ gopkg.in/yaml.v3 v3.0.0-20191026110619-0b21df46bc1d/go.mod h1:K4uyk7z7BCEPqu6E+C
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/apimachinery v0.27.6 h1:mGU8jmBq5o8mWBov+mLjdTBcU+etTE19waies4AQ6NE=
-k8s.io/apimachinery v0.27.6/go.mod h1:XNfZ6xklnMCOGGFNqXG7bUrQCoR04dh/E7FprV6pb+E=
+k8s.io/apimachinery v0.29.2 h1:EWGpfJ856oj11C52NRCHuU7rFDwxev48z+6DSlGNsV8=
 k8s.io/helm v2.17.0+incompatible h1:Bpn6o1wKLYqKM3+Osh8e+1/K2g/GsQJ4F4yNF2+deao=
 k8s.io/helm v2.17.0+incompatible/go.mod h1:LZzlS4LQBHfciFOurYBFkCMTaZ0D1l+p0teMg7TSULI=
diff --git a/test/e2e/settings/gzip.go b/test/e2e/settings/gzip.go
index 6f964b859..c7e580e07 100644
--- a/test/e2e/settings/gzip.go
+++ b/test/e2e/settings/gzip.go
@@ -33,8 +33,8 @@ var _ = framework.DescribeSetting("gzip", func() {
 	host := "gzip"
 
 	ginkgo.BeforeEach(func() {
-		f.NewHttpbinDeployment()
-		f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBinService, 80, nil))
+		f.NewHttpbunDeployment()
+		f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, framework.HTTPBunService, 80, nil))
 	})
 
 	ginkgo.It("should be disabled by default", func() {
diff --git a/test/e2e/settings/pod_security_policy.go b/test/e2e/settings/pod_security_policy.go
deleted file mode 100644
index b21fb870e..000000000
--- a/test/e2e/settings/pod_security_policy.go
+++ /dev/null
@@ -1,142 +0,0 @@
-/*
-Copyright 2018 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package settings
-
-import (
-	"context"
-	"net/http"
-	"strconv"
-	"strings"
-
-	"github.com/onsi/ginkgo/v2"
-	"github.com/stretchr/testify/assert"
-	appsv1 "k8s.io/api/apps/v1"
-	corev1 "k8s.io/api/core/v1"
-	policyv1beta1 "k8s.io/api/policy/v1beta1"
-	rbacv1 "k8s.io/api/rbac/v1"
-	k8sErrors "k8s.io/apimachinery/pkg/api/errors"
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-
-	"k8s.io/ingress-nginx/test/e2e/framework"
-)
-
-const (
-	ingressControllerPSP = "ingress-controller-psp"
-)
-
-var _ = framework.IngressNginxDescribe("[Security] Pod Security Policies", func() {
-	f := framework.NewDefaultFramework("pod-security-policies")
-
-	ginkgo.It("should be running with a Pod Security Policy", func() {
-		k8sversion, err := f.KubeClientSet.Discovery().ServerVersion()
-		if err != nil {
-			assert.Nil(ginkgo.GinkgoT(), err, "getting version")
-		}
-
-		numversion, err := strconv.Atoi(k8sversion.Minor)
-		if err != nil {
-			assert.Nil(ginkgo.GinkgoT(), err, "converting version")
-		}
-
-		if numversion > 24 {
-			ginkgo.Skip("PSP not supported in this version")
-		}
-
-		psp := createPodSecurityPolicy()
-		_, err = f.KubeClientSet.PolicyV1beta1().PodSecurityPolicies().Create(context.TODO(), psp, metav1.CreateOptions{})
-		if !k8sErrors.IsAlreadyExists(err) {
-			assert.Nil(ginkgo.GinkgoT(), err, "creating Pod Security Policy")
-		}
-
-		role, err := f.KubeClientSet.RbacV1().Roles(f.Namespace).Get(context.TODO(), "nginx-ingress", metav1.GetOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "getting ingress controller cluster role")
-		assert.NotNil(ginkgo.GinkgoT(), role)
-
-		role.Rules = append(role.Rules, rbacv1.PolicyRule{
-			APIGroups:     []string{"policy"},
-			Resources:     []string{"podsecuritypolicies"},
-			ResourceNames: []string{ingressControllerPSP},
-			Verbs:         []string{"use"},
-		})
-
-		_, err = f.KubeClientSet.RbacV1().Roles(f.Namespace).Update(context.TODO(), role, metav1.UpdateOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "updating ingress controller cluster role to use a pod security policy")
-
-		// update the deployment just to trigger a rolling update and the use of the security policy
-		err = f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
-			args := deployment.Spec.Template.Spec.Containers[0].Args
-			args = append(args, "--v=2")
-			deployment.Spec.Template.Spec.Containers[0].Args = args
-			_, err := f.KubeClientSet.AppsV1().Deployments(f.Namespace).Update(context.TODO(), deployment, metav1.UpdateOptions{})
-
-			return err
-		})
-		assert.Nil(ginkgo.GinkgoT(), err, "unexpected error updating ingress controller deployment flags")
-
-		f.WaitForNginxListening(80)
-
-		f.NewEchoDeployment()
-
-		f.WaitForNginxConfiguration(
-			func(cfg string) bool {
-				return strings.Contains(cfg, "server_tokens off")
-			})
-
-		f.HTTPTestClient().
-			GET("/").
-			WithHeader("Host", "foo.bar.com").
-			Expect().
-			Status(http.StatusNotFound)
-	})
-})
-
-func createPodSecurityPolicy() *policyv1beta1.PodSecurityPolicy {
-	trueValue := true
-	return &policyv1beta1.PodSecurityPolicy{
-		ObjectMeta: metav1.ObjectMeta{
-			Name: ingressControllerPSP,
-		},
-		Spec: policyv1beta1.PodSecurityPolicySpec{
-			AllowPrivilegeEscalation: &trueValue,
-			RequiredDropCapabilities: []corev1.Capability{"All"},
-			RunAsUser: policyv1beta1.RunAsUserStrategyOptions{
-				Rule: "RunAsAny",
-			},
-			SELinux: policyv1beta1.SELinuxStrategyOptions{
-				Rule: "RunAsAny",
-			},
-			FSGroup: policyv1beta1.FSGroupStrategyOptions{
-				Ranges: []policyv1beta1.IDRange{
-					{
-						Min: 1,
-						Max: 65535,
-					},
-				},
-				Rule: "MustRunAs",
-			},
-			SupplementalGroups: policyv1beta1.SupplementalGroupsStrategyOptions{
-				Ranges: []policyv1beta1.IDRange{
-					{
-						Min: 1,
-						Max: 65535,
-					},
-				},
-				Rule: "MustRunAs",
-			},
-		},
-	}
-}
diff --git a/test/e2e/settings/pod_security_policy_volumes.go b/test/e2e/settings/pod_security_policy_volumes.go
deleted file mode 100644
index f8fc58300..000000000
--- a/test/e2e/settings/pod_security_policy_volumes.go
+++ /dev/null
@@ -1,127 +0,0 @@
-/*
-Copyright 2018 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package settings
-
-import (
-	"context"
-	"net/http"
-	"strconv"
-	"strings"
-
-	"github.com/onsi/ginkgo/v2"
-	"github.com/stretchr/testify/assert"
-
-	appsv1 "k8s.io/api/apps/v1"
-	corev1 "k8s.io/api/core/v1"
-	rbacv1 "k8s.io/api/rbac/v1"
-	k8sErrors "k8s.io/apimachinery/pkg/api/errors"
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-
-	"k8s.io/ingress-nginx/test/e2e/framework"
-)
-
-var _ = framework.IngressNginxDescribe("[Security] Pod Security Policies with volumes", func() {
-	f := framework.NewDefaultFramework("pod-security-policies-volumes")
-
-	ginkgo.It("should be running with a Pod Security Policy", func() {
-		k8sversion, err := f.KubeClientSet.Discovery().ServerVersion()
-		if err != nil {
-			assert.Nil(ginkgo.GinkgoT(), err, "getting version")
-		}
-
-		numversion, err := strconv.Atoi(k8sversion.Minor)
-		if err != nil {
-			assert.Nil(ginkgo.GinkgoT(), err, "converting version")
-		}
-
-		if numversion > 24 {
-			ginkgo.Skip("PSP not supported in this version")
-		}
-		psp := createPodSecurityPolicy()
-		_, err = f.KubeClientSet.PolicyV1beta1().PodSecurityPolicies().Create(context.TODO(), psp, metav1.CreateOptions{})
-		if !k8sErrors.IsAlreadyExists(err) {
-			assert.Nil(ginkgo.GinkgoT(), err, "creating Pod Security Policy")
-		}
-
-		role, err := f.KubeClientSet.RbacV1().Roles(f.Namespace).Get(context.TODO(), "nginx-ingress", metav1.GetOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "getting ingress controller cluster role")
-		assert.NotNil(ginkgo.GinkgoT(), role)
-
-		role.Rules = append(role.Rules, rbacv1.PolicyRule{
-			APIGroups:     []string{"policy"},
-			Resources:     []string{"podsecuritypolicies"},
-			ResourceNames: []string{ingressControllerPSP},
-			Verbs:         []string{"use"},
-		})
-
-		_, err = f.KubeClientSet.RbacV1().Roles(f.Namespace).Update(context.TODO(), role, metav1.UpdateOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "updating ingress controller cluster role to use a pod security policy")
-
-		err = f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
-			args := deployment.Spec.Template.Spec.Containers[0].Args
-			args = append(args, "--v=2")
-			deployment.Spec.Template.Spec.Containers[0].Args = args
-
-			deployment.Spec.Template.Spec.Volumes = []corev1.Volume{
-				{
-					Name: "ssl", VolumeSource: corev1.VolumeSource{
-						EmptyDir: &corev1.EmptyDirVolumeSource{},
-					},
-				},
-				{
-					Name: "tmp", VolumeSource: corev1.VolumeSource{
-						EmptyDir: &corev1.EmptyDirVolumeSource{},
-					},
-				},
-			}
-
-			fsGroup := int64(33)
-			deployment.Spec.Template.Spec.SecurityContext = &corev1.PodSecurityContext{
-				FSGroup: &fsGroup,
-			}
-
-			deployment.Spec.Template.Spec.Containers[0].VolumeMounts = []corev1.VolumeMount{
-				{
-					Name: "ssl", MountPath: "/etc/my-amazing-ssl",
-				},
-				{
-					Name: "tmp", MountPath: "/my-other-tmp",
-				},
-			}
-
-			_, err := f.KubeClientSet.AppsV1().Deployments(f.Namespace).Update(context.TODO(), deployment, metav1.UpdateOptions{})
-
-			return err
-		})
-		assert.Nil(ginkgo.GinkgoT(), err, "updating ingress controller deployment")
-
-		f.WaitForNginxListening(80)
-
-		f.NewEchoDeployment()
-
-		f.WaitForNginxConfiguration(
-			func(cfg string) bool {
-				return strings.Contains(cfg, "server_tokens off")
-			})
-
-		f.HTTPTestClient().
-			GET("/").
-			WithHeader("Host", "foo.bar.com").
-			Expect().
-			Status(http.StatusNotFound)
-	})
-})

From 862b05d91369eb2279a3bf9eb280746ca85aed9b Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Tue, 27 Feb 2024 15:51:37 -0300
Subject: [PATCH 1174/1641] Fix kubewebhook image tag (#11033)

---
 images/kube-webhook-certgen/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/kube-webhook-certgen/TAG b/images/kube-webhook-certgen/TAG
index 90ab6e946..0d0c52f84 100644
--- a/images/kube-webhook-certgen/TAG
+++ b/images/kube-webhook-certgen/TAG
@@ -1 +1 @@
-v0.0.2
\ No newline at end of file
+v1.4.0

From 7a75538dea40f5735862e361149f68e6a8c0f287 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 28 Feb 2024 02:32:13 -0300
Subject: [PATCH 1175/1641] Bump kubewebhook certgen (#11034)

Signed-off-by: Ricardo Katz <rikatz@users.noreply.github.com>
Co-authored-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 charts/ingress-nginx/README.md   | 4 ++--
 charts/ingress-nginx/values.yaml | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 44bb10bd7..5c98763cf 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -253,11 +253,11 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.namespaceSelector | object | `{}` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
-| controller.admissionWebhooks.patch.image.digest | string | `"sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084"` |  |
+| controller.admissionWebhooks.patch.image.digest | string | `"sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.admissionWebhooks.patch.image.registry | string | `"registry.k8s.io"` |  |
-| controller.admissionWebhooks.patch.image.tag | string | `"v20231226-1a7112e06"` |  |
+| controller.admissionWebhooks.patch.image.tag | string | `"v1.4.0"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 5e76d2fb4..487b72f81 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -781,8 +781,8 @@ controller:
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
         ## repository:
-        tag: v20231226-1a7112e06
-        digest: sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        tag: v1.4.0
+        digest: sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         pullPolicy: IfNotPresent
       # -- Provide a priority class name to the webhook patching job
       ##

From 02e3af9039bb79f1905b887ffd9c6b950f3729a0 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 28 Feb 2024 17:05:38 -0300
Subject: [PATCH 1176/1641] bump nginx and Go, remove tag file and old CI jobs
 (#11037)

* bump nginx and remove tag file

* Bump go, remove old CI jobs
---
 .github/workflows/ci.yaml     |  5 +++--
 .github/workflows/images.yaml | 23 -----------------------
 GOLANG_VERSION                |  2 +-
 NGINX_BASE                    |  2 +-
 TAG                           |  1 -
 5 files changed, 5 insertions(+), 28 deletions(-)
 delete mode 100644 TAG

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index d7d20a246..32915f4c2 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -67,6 +67,7 @@ jobs:
               - 'charts/ingress-nginx/**/*'
               - 'NGINX_BASE'
             baseimage:
+              - 'NGINX_BASE'
               - 'images/nginx-1.25/**'
 
   test-go:
@@ -141,7 +142,7 @@ jobs:
           needs.changes.outputs.baseimage == 'true'
         run: |
             export TAG=$(cat images/nginx-1.25/TAG)
-            cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --load -t gcr.io/k8s-staging-ingress-nginx/nginx-1.25:${TAG} .
+            cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --load -t registry.k8s.io/ingress-nginx/nginx-1.25:${TAG} .
     
       - name: Build images
         env:
@@ -151,7 +152,7 @@ jobs:
         run: |
           echo "building images..."
           export TAGNGINX=$(cat images/nginx-1.25/TAG)
-          make BASE_IMAGE=gcr.io/k8s-staging-ingress-nginx/nginx-1.25:${TAGNGINX} clean-image build image image-chroot
+          make BASE_IMAGE=registry.k8s.io/ingress-nginx/nginx-1.25:${TAGNGINX} clean-image build image image-chroot
           make -C test/e2e-image image
 
           echo "creating images cache..."
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 93092d80b..d125586e4 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -167,29 +167,6 @@ jobs:
       run: |
         cd images/ && make NAME=kube-webhook-certgen test test-e2e
 
-  nginx:
-    runs-on: ubuntu-latest
-    needs: changes
-    if: |
-      (needs.changes.outputs.nginx == 'true')
-    steps:
-    - name: Checkout
-      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-    - name: nginx-base-image
-      run: |
-        cd images/nginx/rootfs && docker build -t docker.io/nginx-test-workflow/nginx:${{ github.sha }} .
-    - name: Run Trivy on NGINX Image
-      uses: aquasecurity/trivy-action@master
-      with:
-        image-ref: 'docker.io/nginx-test-workflow/nginx:${{ github.sha }}'
-        format: 'sarif'
-        ignore-unfixed: true
-        output: 'trivy-results.sarif'
-    - name: Upload Trivy scan results to GitHub Security tab
-      uses: github/codeql-action/upload-sarif@47b3d888fe66b639e431abf22ebca059152f1eea # v3.24.5
-      with:
-        sarif_file: 'trivy-results.sarif'
-
   opentelemetry:
     runs-on: ubuntu-latest
     env:
diff --git a/GOLANG_VERSION b/GOLANG_VERSION
index 6e83421e4..80a81c0e7 100644
--- a/GOLANG_VERSION
+++ b/GOLANG_VERSION
@@ -1 +1 @@
-1.21.6
\ No newline at end of file
+1.22.0
\ No newline at end of file
diff --git a/NGINX_BASE b/NGINX_BASE
index 058a89bb1..4daa5c4d3 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:v20231208-4c39e6acc@sha256:03508408458d00ba4e219d2693ba2a039ba66d4151ab9b43794f61877e0abb73
\ No newline at end of file
+registry.k8s.io/ingress-nginx/nginx-1.25:v0.0.5@sha256:cdafd6c9d36e23414ce41330a482f9136ce82fac46802809681f61cdcd5ad0bb
diff --git a/TAG b/TAG
deleted file mode 100644
index 57d503d1e..000000000
--- a/TAG
+++ /dev/null
@@ -1 +0,0 @@
-v1.9.5

From dc999d81da6d9258bf448874be5f1f0e2156ec94 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 28 Feb 2024 21:41:06 -0300
Subject: [PATCH 1177/1641] Release version v1.10.0 (#11039)

---
 README.md                                     |  9 +--
 changelog/controller-1.10.0.md                | 68 +++++++++++++++++++
 charts/ingress-nginx/Chart.yaml               |  7 +-
 charts/ingress-nginx/README.md                |  6 +-
 .../changelog/helm-chart-4.10.0.md            |  9 +++
 charts/ingress-nginx/values.yaml              |  4 +-
 deploy/static/provider/aws/deploy.yaml        | 49 ++++++-------
 .../aws/nlb-with-tls-termination/deploy.yaml  | 49 ++++++-------
 deploy/static/provider/baremetal/deploy.yaml  | 49 ++++++-------
 deploy/static/provider/cloud/deploy.yaml      | 49 ++++++-------
 deploy/static/provider/do/deploy.yaml         | 49 ++++++-------
 deploy/static/provider/exoscale/deploy.yaml   | 49 ++++++-------
 deploy/static/provider/kind/deploy.yaml       | 49 ++++++-------
 deploy/static/provider/oracle/deploy.yaml     | 49 ++++++-------
 deploy/static/provider/scw/deploy.yaml        | 49 ++++++-------
 docs/e2e-tests.md                             | 35 +++-------
 16 files changed, 325 insertions(+), 254 deletions(-)
 create mode 100644 changelog/controller-1.10.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.10.0.md

diff --git a/README.md b/README.md
index e955cd359..3e6cce5e0 100644
--- a/README.md
+++ b/README.md
@@ -38,16 +38,17 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 
 |  Supported  | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
 |:--:|-----------------------|------------------------------|----------------|---------------|------------------------------|
+| 🔄 | **v1.10.0**            | 1.29, 1.28, 1.27, 1.26        | 3.19.1         | 1.25.3        | 4.10.0*                 |
 | 🔄 | **v1.9.6**            | 1.29, 1.28, 1.27, 1.26, 1.25        | 3.19.0         | 1.21.6        | 4.9.1*                 |
 | 🔄 | **v1.9.5**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.9.0*                       |
 | 🔄 | **v1.9.4**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.3                        |
 | 🔄 | **v1.9.3**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
 | 🔄 | **v1.9.1**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
 | 🔄 | **v1.9.0**            | 1.28, 1.27, 1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
-| 🔄 | **v1.8.4**            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
-| 🔄 | **v1.8.2**            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
-| 🔄 | **v1.8.1**            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
-| 🔄 | **v1.8.0**            | 1.27, 1.26, 1.25, 1.24        | 3.18.0         | 1.21.6        | 4.7.*              |
+|  | **v1.8.4**            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
+|  | **v1.8.2**            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
+|  | **v1.8.1**            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
+|  | **v1.8.0**            | 1.27, 1.26, 1.25, 1.24        | 3.18.0         | 1.21.6        | 4.7.*              |
 |  | **v1.7.1**            | 1.27, 1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
 |  | **v1.7.0**            | 1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        | 4.6.*              |
 |    | v1.6.4                | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        | 4.5.*              |
diff --git a/changelog/controller-1.10.0.md b/changelog/controller-1.10.0.md
new file mode 100644
index 000000000..e0a6c9a10
--- /dev/null
+++ b/changelog/controller-1.10.0.md
@@ -0,0 +1,68 @@
+# Changelog
+
+This release is the first using NGINX v1.25.0!
+
+## Breaking changes
+* This version does not support chroot image, this will be fixed on a future minor patch release
+* This version dropped Opentracing and zipkin modules, just Opentelemetry is supported
+* This version dropped support for PodSecurityPolicy
+* This version dropped support for GeoIP (legacy). Only GeoIP2 is supported
+
+### controller-v1.10.0
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
+
+### All changes:
+
+* Start the release of v1.10.0 (#11038)
+* bump nginx and Go, remove tag file and old CI jobs (#11037)
+* Fix kubewebhook image tag (#11033)
+* add missing backend-protocol annotation option (#9545)
+* Update controller-prometheusrules.yaml (#8902)
+* Stop reporting interrupted tests (#11027)
+* test(gzip): reach ingress (#9541)
+* fix datasource, $exported_namespace variable in grafana nginx dashboard (#9092)
+* Properly support a TLS-wrapped OCSP responder (#10164)
+* Fix print-e2e-suite (#9536)
+* chore(deps): upgrade headers-more module to 0.37 (#10991)
+* Update ingress-path-matching.md (#11008)
+* Update ingress-path-matching.md (#11007)
+* E2E Tests: Explicitly enable metrics. (#10962)
+* Chart: Set `--enable-metrics` depending on `controller.metrics.enabled`. (#10959)
+* Chart: Remove useless `default` from `_params.tpl`. (#10957)
+* Fix golang makefile var name (#10932)
+* Fixing image push (#10931)
+* fix: live-docs script (#10928)
+* docs: Add vouch-proxy OAuth example (#10929)
+* Add OTEL build test and for NGINX v1.25 (#10889)
+* docs: update annotations docs with missing session-cookie section (#10917)
+* Release controller 1.9.6 and helm 4.9.1 (#10919)
+
+### Dependency updates:
+
+* Bump kubewebhook certgen (#11034)
+* Bump go libraries (#11023)
+* Bump modsecurity on nginx 1.25 (#11024)
+* Bump grpc and reintroduce OTEL compilation (#11021)
+* Bump github/codeql-action from 3.24.0 to 3.24.5 (#11017)
+* Bump actions/dependency-review-action from 4.0.0 to 4.1.3 (#11016)
+* Bump dorny/paths-filter from 3.0.0 to 3.0.1 (#10994)
+* Bump github.com/prometheus/client_model from 0.5.0 to 0.6.0 (#10998)
+* Bump actions/upload-artifact from 4.3.0 to 4.3.1 (#10978)
+* Bump actions/download-artifact from 4.1.1 to 4.1.2 (#10981)
+* Bump aquasecurity/trivy-action from 0.16.1 to 0.17.0 (#10979)
+* Bump golangci/golangci-lint-action from 3.7.0 to 4.0.0 (#10980)
+* Bump golang.org/x/crypto from 0.18.0 to 0.19.0 (#10976)
+* Bump github/codeql-action from 3.23.2 to 3.24.0 (#10971)
+* Bump github.com/opencontainers/runc from 1.1.11 to 1.1.12 (#10951)
+* Bump google.golang.org/grpc from 1.60.1 to 1.61.0 (#10938)
+* Bump actions/upload-artifact from 4.2.0 to 4.3.0 (#10937)
+* Bump dorny/test-reporter from 1.7.0 to 1.8.0 (#10936)
+* Bump github/codeql-action from 3.23.1 to 3.23.2 (#10935)
+* Bump dorny/paths-filter from 2.11.1 to 3.0.0 (#10934)
+* Bump alpine to 3.19.1 (#10930)
+* Bump go to v1.21.6 and set a single source of truth (#10926)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.9.6...controller-v1.10.0
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index df4f6fe63..1bd30b31d 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,10 +1,9 @@
 annotations:
   artifacthub.io/changes: |-
-    - "update web hook cert gen to latest release v20231226-1a7112e06"
-    - "Update Ingress-Nginx version controller-v1.9.6"
+    - "Update Ingress-Nginx version controller-v1.10.0"
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.9.6
+appVersion: 1.10.0
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 home: https://github.com/kubernetes/ingress-nginx
@@ -20,4 +19,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.9.1
+version: 4.10.0
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 5c98763cf..8f1f3491d 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.9.1](https://img.shields.io/badge/Version-4.9.1-informational?style=flat-square) ![AppVersion: 1.9.6](https://img.shields.io/badge/AppVersion-1.9.6-informational?style=flat-square)
+![Version: 4.10.0](https://img.shields.io/badge/Version-4.10.0-informational?style=flat-square) ![AppVersion: 1.10.0](https://img.shields.io/badge/AppVersion-1.10.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -317,7 +317,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `false` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c"` |  |
+| controller.image.digest | string | `"sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c"` |  |
 | controller.image.digestChroot | string | `"sha256:7eb46ff733429e0e46892903c7394aff149ac6d284d92b3946f3baf7ff26a096"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
@@ -326,7 +326,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.image.runAsNonRoot | bool | `true` |  |
 | controller.image.runAsUser | int | `101` |  |
 | controller.image.seccompProfile.type | string | `"RuntimeDefault"` |  |
-| controller.image.tag | string | `"v1.9.6"` |  |
+| controller.image.tag | string | `"v1.10.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.10.0.md b/charts/ingress-nginx/changelog/helm-chart-4.10.0.md
new file mode 100644
index 000000000..a1f1847ec
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.10.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.10.0
+
+* - "Update Ingress-Nginx version controller-v1.10.0"
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.9.1...helm-chart-4.10.0
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 487b72f81..71c3240fb 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -26,8 +26,8 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.9.6"
-    digest: sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
+    tag: "v1.10.0"
+    digest: sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
     digestChroot: sha256:7eb46ff733429e0e46892903c7394aff149ac6d284d92b3946f3baf7ff26a096
     pullPolicy: IfNotPresent
     runAsNonRoot: true
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index f73e0fce0..0e8356305 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
     spec:
       containers:
       - args:
@@ -435,6 +435,7 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
+        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -446,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -522,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -533,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -547,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -573,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -600,7 +601,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -626,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -639,7 +640,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 7f6019fbb..5c12ba3b9 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -431,7 +431,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
     spec:
       containers:
       - args:
@@ -444,6 +444,7 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
+        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -455,7 +456,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -534,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -545,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -559,7 +560,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -585,7 +586,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -596,7 +597,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -612,7 +613,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -638,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -651,7 +652,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index af484aa73..b513fa97f 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
     spec:
       containers:
       - args:
@@ -429,6 +429,7 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
+        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -440,7 +441,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -516,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -527,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -541,7 +542,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -567,7 +568,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -578,7 +579,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -594,7 +595,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -620,7 +621,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -633,7 +634,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 8ac9dedaf..147d76d5e 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
     spec:
       containers:
       - args:
@@ -431,6 +431,7 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
+        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -442,7 +443,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +519,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +530,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -543,7 +544,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -569,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -580,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -596,7 +597,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -622,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,7 +636,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 7a49f28d0..801b6d75c 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
     spec:
       containers:
       - args:
@@ -434,6 +434,7 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
+        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -445,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -532,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -546,7 +547,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -572,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -583,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -599,7 +600,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -625,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -638,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index cf02501a4..79d945a53 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
     spec:
       containers:
       - args:
@@ -436,6 +436,7 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
+        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -447,7 +448,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -527,7 +528,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -538,7 +539,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -552,7 +553,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -578,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -589,7 +590,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -605,7 +606,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -631,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -644,7 +645,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index d27f83d9d..4963253c1 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
     spec:
       containers:
       - args:
@@ -430,6 +430,7 @@ spec:
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
         - --watch-ingress-without-class=true
+        - --enable-metrics=false
         - --publish-status-address=localhost
         env:
         - name: POD_NAME
@@ -442,7 +443,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -528,7 +529,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -539,7 +540,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -553,7 +554,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -579,7 +580,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -590,7 +591,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -606,7 +607,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -632,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -645,7 +646,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index 8d2200925..080c206a5 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
     spec:
       containers:
       - args:
@@ -435,6 +435,7 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
+        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -446,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -522,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -533,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -547,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -573,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -600,7 +601,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -626,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -639,7 +640,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 44d91e1af..d98955d80 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
     spec:
       containers:
       - args:
@@ -434,6 +434,7 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
+        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -445,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.9.6@sha256:1405cc613bd95b2c6edd8b2a152510ae91c7e62aea4698500d23b2145960ab9c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -521,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -532,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -546,7 +547,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -572,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -583,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.9.6
+        app.kubernetes.io/version: 1.10.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -599,7 +600,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20231226-1a7112e06@sha256:25d6a5f11211cc5c3f9f2bf552b585374af287b4debf693cacbe2da47daa5084
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -625,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -638,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.9.6
+    app.kubernetes.io/version: 1.10.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index bbcdadfc6..b836fff6e 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -147,6 +147,7 @@ Do not try to edit it manually.
 - [should not allow - portless origin with wildcard origin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L520)
 - [should allow correct origins - missing subdomain + origin with wildcard origin and correct origin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L540)
 - [should allow - missing origins (should allow all origins)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L576)
+- [should allow correct origin but not others - cors allow origin annotations contain trailing comma](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L636)
 ### [custom-http-errors](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/customhttperrors.go#L34)
 - [configures Nginx correctly](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/customhttperrors.go#L41)
 ### [default-backend](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/default_backend.go#L29)
@@ -155,6 +156,8 @@ Do not try to edit it manually.
 - [disable-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/disableaccesslog.go#L35)
 - [disable-http-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/disableaccesslog.go#L53)
 - [disable-stream-access-log set access_log off](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/disableaccesslog.go#L71)
+### [disable-proxy-intercept-errors](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/disableproxyintercepterrors.go#L31)
+- [configures Nginx correctly](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/disableproxyintercepterrors.go#L39)
 ### [backend-protocol - FastCGI](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fastcgi.go#L30)
 - [should use fastcgi_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fastcgi.go#L37)
 - [should add fastcgi_index in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fastcgi.go#L54)
@@ -402,13 +405,13 @@ Do not try to edit it manually.
 - [should have worker_rlimit_nofile option and be independent on amount of worker processes](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_options.go#L37)
 ### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/globalratelimit.go#L30)
 - [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/globalratelimit.go#L38)
-### [gzip](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L29)
-- [should be disabled by default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L32)
-- [should be enabled with default settings](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L39)
-- [should set gzip_comp_level to 4](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L56)
-- [should set gzip_disable to msie6](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L67)
-- [should set gzip_min_length to 100](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L78)
-- [should set gzip_types to application/javascript](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L89)
+### [gzip](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L30)
+- [should be disabled by default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L40)
+- [should be enabled with default settings](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L56)
+- [should set gzip_comp_level to 4](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L82)
+- [should set gzip_disable to msie6](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L102)
+- [should set gzip_min_length to 100](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L132)
+- [should set gzip_types to text/html](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L164)
 ### [hash size](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/hash-size.go#L27)
 - [should set server_names_hash_bucket_size](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/hash-size.go#L39)
 - [should set server_names_hash_max_size](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/hash-size.go#L47)
@@ -478,26 +481,8 @@ Do not try to edit it manually.
 - [should include opentelemetry_trust_incoming_spans on directive when enabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L76)
 - [should not exists opentelemetry_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L91)
 - [should exists opentelemetry_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L106)
-### [Configure OpenTracing](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L52)
-- [should not exists opentracing directive](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L62)
-- [should exists opentracing directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L75)
-- [should include opentracing_trust_incoming_span off directive when disabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L89)
-- [should not exists opentracing_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L104)
-- [should exists opentracing_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L119)
-- [should not exists opentracing_location_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L134)
-- [should exists opentracing_location_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L149)
-- [should enable opentracing using zipkin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L164)
-- [should enable opentracing using jaeger](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L176)
-- [should enable opentracing using jaeger with sampler host](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L188)
-- [should propagate the w3c header when configured with jaeger](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L201)
-- [should enable opentracing using jaeger with an HTTP endpoint](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L232)
-- [should enable opentracing using datadog](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentracing.go#L245)
 ### [plugins](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/plugins.go#L28)
 - [should exist a x-hello-world header](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/plugins.go#L35)
-### [[Security] Pod Security Policies](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/pod_security_policy.go#L41)
-- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/pod_security_policy.go#L44)
-### [[Security] Pod Security Policies with volumes](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/pod_security_policy_volumes.go#L37)
-- [should be running with a Pod Security Policy](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/pod_security_policy_volumes.go#L40)
 ### [proxy-connect-timeout](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_connect_timeout.go#L29)
 - [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_connect_timeout.go#L37)
 - [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_connect_timeout.go#L53)

From 41879b14f1ae2d41e3284488b3cc1132e31c8282 Mon Sep 17 00:00:00 2001
From: longwuyuan <longwuyuan@gmail.com>
Date: Fri, 1 Mar 2024 20:56:44 +0530
Subject: [PATCH 1178/1641] set deploy url to v1-10-0 in docs

---
 docs/deploy/index.md | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index ae28c2502..4e6b71235 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -68,7 +68,7 @@ helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -249,7 +249,7 @@ In AWS, we use a Network load balancer (NLB) to expose the Ingress-Nginx Control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -257,10 +257,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -306,7 +306,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -323,7 +323,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -331,7 +331,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -339,7 +339,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -354,7 +354,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -381,7 +381,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.8.2/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),

From 683105ebdcbd4b5c2029bf5eb8bfecf52d4c0242 Mon Sep 17 00:00:00 2001
From: Bartosz Fenski <fenio@debian.org>
Date: Sun, 3 Mar 2024 07:54:36 +0100
Subject: [PATCH 1179/1641] quotes around numbers fort ports definitions
 (#11052)

---
 charts/ingress-nginx/values.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 71c3240fb..553c5e892 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -1077,13 +1077,13 @@ imagePullSecrets: []
 ## Ref: https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/exposing-tcp-udp-services.md
 ##
 tcp: {}
-#  8080: "default/example-tcp-svc:9000"
+#  "8080": "default/example-tcp-svc:9000"
 
 # -- UDP service key-value pairs
 ## Ref: https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/exposing-tcp-udp-services.md
 ##
 udp: {}
-#  53: "kube-system/kube-dns:53"
+#  "53": "kube-system/kube-dns:53"
 
 # -- Prefix for TCP and UDP ports names in ingress controller service
 ## Some cloud providers, like Yandex Cloud may have a requirements for a port name regex to support cloud load balancer integration

From 2a9dc340e7e5708a78e69b359b1927155a6351f9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 4 Mar 2024 03:21:27 -0800
Subject: [PATCH 1180/1641] Bump dorny/paths-filter from 3.0.1 to 3.0.2
 (#11061)

Bumps [dorny/paths-filter](https://github.com/dorny/paths-filter) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/dorny/paths-filter/releases)
- [Changelog](https://github.com/dorny/paths-filter/blob/master/CHANGELOG.md)
- [Commits](https://github.com/dorny/paths-filter/compare/ebc4d7e9ebcb0b1eb21480bb8f43113e996ac77a...de90cc6fb38fc0963ad72b210f1f284cd68cea36)

---
updated-dependencies:
- dependency-name: dorny/paths-filter
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml             | 2 +-
 .github/workflows/docs.yaml           | 2 +-
 .github/workflows/helm.yaml           | 2 +-
 .github/workflows/images.yaml         | 2 +-
 .github/workflows/zz-tmpl-images.yaml | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 32915f4c2..9e81ddfd5 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -49,7 +49,7 @@ jobs:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
-      - uses: dorny/paths-filter@ebc4d7e9ebcb0b1eb21480bb8f43113e996ac77a # v3.0.1
+      - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 695ed2124..d37c1f3bf 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -25,7 +25,7 @@ jobs:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
-      - uses: dorny/paths-filter@ebc4d7e9ebcb0b1eb21480bb8f43113e996ac77a # v3.0.1
+      - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 09d70fb7a..1a7eb4334 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -37,7 +37,7 @@ jobs:
         run: |
           ./build/run-in-docker.sh ./hack/verify-chart-lint.sh
 
-      - uses: dorny/paths-filter@ebc4d7e9ebcb0b1eb21480bb8f43113e996ac77a # v3.0.1
+      - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index d125586e4..d144f2286 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -42,7 +42,7 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-      - uses: dorny/paths-filter@ebc4d7e9ebcb0b1eb21480bb8f43113e996ac77a # v3.0.1
+      - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index fd56e986d..45f5d9184 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -32,7 +32,7 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-      - uses: dorny/paths-filter@ebc4d7e9ebcb0b1eb21480bb8f43113e996ac77a # v3.0.1
+      - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
           token: ${{ secrets.GITHUB_TOKEN }}

From 6ab637d26d7e36631af8fcfc81f0fcbd59cdbf8b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 4 Mar 2024 03:24:14 -0800
Subject: [PATCH 1181/1641] Bump aquasecurity/trivy-action from 0.17.0 to
 0.18.0 (#11058)

Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.17.0 to 0.18.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/84384bd6e777ef152729993b8145ea352e9dd3ef...062f2592684a31eb3aa050cc61e7ca1451cecd3d)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 99e9fdfc7..e94eeee06 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@84384bd6e777ef152729993b8145ea352e9dd3ef # v0.17.0
+        uses: aquasecurity/trivy-action@062f2592684a31eb3aa050cc61e7ca1451cecd3d # v0.18.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'

From 1e79313bf50d0b4517c8712668af2a259a03261f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 4 Mar 2024 03:26:51 -0800
Subject: [PATCH 1182/1641] Bump github/codeql-action from 3.24.5 to 3.24.6
 (#11060)

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.24.5 to 3.24.6.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/47b3d888fe66b639e431abf22ebca059152f1eea...8a470fddafa5cbb6266ee11b37ef4d8aae19c571)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 387849a48..79996ca2f 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@47b3d888fe66b639e431abf22ebca059152f1eea # v3.24.5
+        uses: github/codeql-action/upload-sarif@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index e94eeee06..5d37ecbf8 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@47b3d888fe66b639e431abf22ebca059152f1eea # v3.24.5
+        uses: github/codeql-action/upload-sarif@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From b3b22dbb1d3160455d3eba4eb26b499a541166bc Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 4 Mar 2024 06:11:33 -0800
Subject: [PATCH 1183/1641] Bump github.com/prometheus/common from 0.48.0 to
 0.49.0 (#11056)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.48.0 to 0.49.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.48.0...v0.49.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 9 +++++----
 2 files changed, 7 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 1aed07bba..4ecb15ceb 100644
--- a/go.mod
+++ b/go.mod
@@ -17,9 +17,9 @@ require (
 	github.com/onsi/ginkgo/v2 v2.15.0
 	github.com/opencontainers/runc v1.1.12
 	github.com/pmezard/go-difflib v1.0.0
-	github.com/prometheus/client_golang v1.18.0
+	github.com/prometheus/client_golang v1.19.0
 	github.com/prometheus/client_model v0.6.0
-	github.com/prometheus/common v0.48.0
+	github.com/prometheus/common v0.49.0
 	github.com/spf13/cobra v1.8.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.8.4
diff --git a/go.sum b/go.sum
index 88d1a1a44..0fdb83713 100644
--- a/go.sum
+++ b/go.sum
@@ -247,6 +247,7 @@ github.com/mattn/go-colorable v0.1.13 h1:fFA4WZxdEF4tXPZVKMLwD8oUnCTTo08duU7wxec
 github.com/mattn/go-colorable v0.1.13/go.mod h1:7S9/ev0klgBDR4GtXTXX8a3vIGJpMovkB8vQcUbaXHg=
 github.com/mattn/go-isatty v0.0.16/go.mod h1:kYGgaQfpe5nmfYZH+SKPsOc2e4SrIfOl2e/yFXSvRLM=
 github.com/mattn/go-isatty v0.0.19 h1:JITubQf0MOLdlGRuRq+jtsDlekdYPia9ZFsB8h/APPA=
+github.com/mattn/go-isatty v0.0.19/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
 github.com/mitchellh/go-ps v1.0.0 h1:i6ampVEEF4wQFF+bkYfwYgY+F/uYJDktmvLPf7qIgjc=
 github.com/mitchellh/go-ps v1.0.0/go.mod h1:J4lOc8z8yJs6vUwklHw2XEIiT4z4C40KtWVN3nvg8Pg=
@@ -310,8 +311,8 @@ github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXP
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
-github.com/prometheus/client_golang v1.18.0 h1:HzFfmkOzH5Q8L8G+kSJKUx5dtG87sewO+FoDDqP5Tbk=
-github.com/prometheus/client_golang v1.18.0/go.mod h1:T+GXkCk5wSJyOqMIzVgvvjFDlkOQntgjkJWKrN5txjA=
+github.com/prometheus/client_golang v1.19.0 h1:ygXvpU1AoN1MhdzckN+PyD9QJOSD4x7kmXYlnfbA6JU=
+github.com/prometheus/client_golang v1.19.0/go.mod h1:ZRM9uEAypZakd+q/x7+gmsvXdURP+DABIEIjnmDdp+k=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
@@ -322,8 +323,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.48.0 h1:QO8U2CdOzSn1BBsmXJXduaaW+dY/5QLjfB8svtSzKKE=
-github.com/prometheus/common v0.48.0/go.mod h1:0/KsvlIEfPQCQ5I2iNSAWKPZziNCvRs5EC6ILDTlAPc=
+github.com/prometheus/common v0.49.0 h1:ToNTdK4zSnPVJmh698mGFkDor9wBI/iGaJy5dbH1EgI=
+github.com/prometheus/common v0.49.0/go.mod h1:Kxm+EULxRbUkjGU6WFsQqo3ORzB4tyKvlWFOE9mB2sE=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=

From 513665443af0447e320bad5cd2136ce58e186f92 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 4 Mar 2024 06:16:44 -0800
Subject: [PATCH 1184/1641] Bump docker/setup-buildx-action from 3.0.0 to 3.1.0
 (#11057)

Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3.0.0 to 3.1.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/f95db51fddba0c2d1ec667646a06c2ce06100226...0d103c3126aa41d772a8362f6aa67afac040f80c)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml     | 2 +-
 .github/workflows/images.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 9e81ddfd5..0bf99a413 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -124,7 +124,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
+        uses: docker/setup-buildx-action@0d103c3126aa41d772a8362f6aa67afac040f80c # v3.1.0
         with:
           version: latest
 
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index d144f2286..e46c1b4bd 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -201,7 +201,7 @@ jobs:
         uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@f95db51fddba0c2d1ec667646a06c2ce06100226 # v3.0.0
+        uses: docker/setup-buildx-action@0d103c3126aa41d772a8362f6aa67afac040f80c # v3.1.0
         with:
           version: latest
           platforms: ${{ env.PLATFORMS }}

From f3f4f3e9d3c725136094a56217a3639fcf480df9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 4 Mar 2024 07:13:08 -0800
Subject: [PATCH 1185/1641] Bump github.com/stretchr/testify from 1.8.4 to
 1.9.0 (#11055)

Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.4 to 1.9.0.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.8.4...v1.9.0)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/go.mod b/go.mod
index 4ecb15ceb..5302136d3 100644
--- a/go.mod
+++ b/go.mod
@@ -22,7 +22,7 @@ require (
 	github.com/prometheus/common v0.49.0
 	github.com/spf13/cobra v1.8.0
 	github.com/spf13/pflag v1.0.5
-	github.com/stretchr/testify v1.8.4
+	github.com/stretchr/testify v1.9.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.20.0
diff --git a/go.sum b/go.sum
index 0fdb83713..dd490e7ec 100644
--- a/go.sum
+++ b/go.sum
@@ -352,8 +352,8 @@ github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/objx v0.5.0 h1:1zr/of2m5FGMsad5YfcqgdqdWrIhu+EBEJRhR1U7z/c=
-github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
+github.com/stretchr/objx v0.5.2 h1:xuMeJ0Sdp5ZMRXx/aWO6RZxdr3beISkG5/G/aIRr3pY=
+github.com/stretchr/objx v0.5.2/go.mod h1:FRsXN1f5AsAjCGJKqEizvkpNtU+EGNCLh3NxZ/8L+MA=
 github.com/stretchr/testify v1.1.3/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
@@ -361,8 +361,8 @@ github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81P
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
-github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
+github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
+github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
 github.com/xlab/treeprint v1.2.0 h1:HzHnuAF1plUN2zGlAFHbSQP2qJ0ZAD3XF5XD7OesXRQ=
 github.com/xlab/treeprint v1.2.0/go.mod h1:gj5Gd3gPdKtR1ikdDK6fnFLdmIS0X30kTTuNd/WEJu0=

From 272712adfb44b31b3928a2b3270dd1694d1b3418 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 4 Mar 2024 11:37:52 -0800
Subject: [PATCH 1186/1641] Bump actions/download-artifact from 4.1.2 to 4.1.4
 (#11059)

Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 4.1.2 to 4.1.4.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/eaceaf801fd36c7dee90939fad912460b18a1ffe...c850b930e6ba138125429b7e5c93fc707a7f8427)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml              | 2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 0bf99a413..edb7c1e5d 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -200,7 +200,7 @@ jobs:
           helm unittest charts/ingress-nginx -d
 
       - name: cache
-        uses: actions/download-artifact@eaceaf801fd36c7dee90939fad912460b18a1ffe # v4.1.2
+        uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4
         with:
           name: docker.tar.gz
 
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 20fd1053d..3a8916049 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -23,7 +23,7 @@ jobs:
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: cache
-        uses: actions/download-artifact@eaceaf801fd36c7dee90939fad912460b18a1ffe # v4.1.2
+        uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4
         with:
           name: docker.tar.gz
 

From 6c4f2ea03a30bf5bcdb80fffb5509be1606a9590 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 4 Mar 2024 14:45:49 -0500
Subject: [PATCH 1187/1641] Update README.md (#11065)

remove older version, left latest for release train.
---
 README.md | 13 ++++---------
 1 file changed, 4 insertions(+), 9 deletions(-)

diff --git a/README.md b/README.md
index 3e6cce5e0..80725aa82 100644
--- a/README.md
+++ b/README.md
@@ -12,7 +12,7 @@
 ingress-nginx is an Ingress controller for Kubernetes using [NGINX](https://www.nginx.org/) as a reverse proxy and load
 balancer.
 
-[Learn more about Ingress on the main Kubernetes documentation site](https://kubernetes.io/docs/concepts/services-networking/ingress/).
+[Learn more about Ingress on the Kubernetes documentation site](https://kubernetes.io/docs/concepts/services-networking/ingress/).
 
 ## Get started
 
@@ -28,7 +28,7 @@ If you encounter issues, review the [troubleshooting docs](docs/troubleshooting.
 
 See [the list of releases](https://github.com/kubernetes/ingress-nginx/releases) for all changes.
 For detailed changes for each release, please check the [changelog-$version.md](./changelog) file for the release version.
-For detailed changes on the `ingress-nginx` helm chart, please check the changelog folder for a specific version
+For detailed changes on the `ingress-nginx` helm chart, please check the changelog folder for a specific version.
 [CHANGELOG-$current-version.md](./charts/ingress-nginx/changelog) file.
 
 ### Supported Versions table
@@ -45,17 +45,12 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 | 🔄 | **v1.9.3**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
 | 🔄 | **v1.9.1**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
 | 🔄 | **v1.9.0**            | 1.28, 1.27, 1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
-|  | **v1.8.4**            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
-|  | **v1.8.2**            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
-|  | **v1.8.1**            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
-|  | **v1.8.0**            | 1.27, 1.26, 1.25, 1.24        | 3.18.0         | 1.21.6        | 4.7.*              |
-|  | **v1.7.1**            | 1.27, 1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
-|  | **v1.7.0**            | 1.26, 1.25, 1.24             | 3.17.2         | 1.21.6        | 4.6.*              |
+|  | v1.8.4            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
+|  | v1.7.1            | 1.27, 1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
 |    | v1.6.4                | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        | 4.5.*              |
 |    | v1.5.1                | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        | 4.4.*              |
 |    | v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      | 4.3.0              |
 |    | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      | 4.2.5              |
-|    | v1.3.0                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.0         | 1.19.10†      | 4.2.3              |
 
 See [this article](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/) if you want upgrade to the stable
 Ingress API.

From a302cc5ccaa62ee6c47a965240dbba98879ebf96 Mon Sep 17 00:00:00 2001
From: Grinish <grinish@gmail.com>
Date: Tue, 5 Mar 2024 22:49:14 -0700
Subject: [PATCH 1188/1641] docs: update the 404 link to FAQ (#11069)

---
 docs/examples/rewrite/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/examples/rewrite/README.md b/docs/examples/rewrite/README.md
index aadcc1e4b..16889e0bc 100644
--- a/docs/examples/rewrite/README.md
+++ b/docs/examples/rewrite/README.md
@@ -31,7 +31,7 @@ Rewriting can be controlled using the following annotations:
     [Captured groups](https://www.regular-expressions.info/refcapture.html) are saved in numbered placeholders, chronologically, in the form `$1`, `$2` ... `$n`. These placeholders can be used as parameters in the `rewrite-target` annotation.
 
 !!! note
-    Please see the [FAQ](../faq.md#validation-of-path) for Validation Of __`path`__
+    Please see the [FAQ](../../faq.md#validation-of-path) for Validation Of __`path`__
 
 Create an Ingress rule with a rewrite annotation:
 

From 9b63559cbb492c4ace8641b81c6adc6fc54aa9ce Mon Sep 17 00:00:00 2001
From: Matheus Fidelis <msfidelis@users.noreply.github.com>
Date: Wed, 6 Mar 2024 10:59:22 -0300
Subject: [PATCH 1189/1641] feature(leader_election): flag to disable leader
 election feature on controller (#11064)

---
 charts/ingress-nginx/README.md                |  1 +
 charts/ingress-nginx/templates/_params.tpl    |  3 +
 charts/ingress-nginx/values.yaml              |  2 +
 docs/user-guide/cli-arguments.md              |  1 +
 internal/ingress/controller/controller.go     |  2 +
 internal/ingress/controller/nginx.go          | 38 ++++----
 pkg/flags/flags.go                            |  4 +
 pkg/flags/flags_test.go                       | 34 +++++++
 .../disableleaderelection/values.yaml         | 34 +++++++
 .../disableleaderelection/disable_leader.go   | 93 +++++++++++++++++++
 test/e2e/e2e.go                               |  1 +
 11 files changed, 195 insertions(+), 18 deletions(-)
 create mode 100644 test/e2e-image/namespace-overlays/disableleaderelection/values.yaml
 create mode 100644 test/e2e/disableleaderelection/disable_leader.go

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 8f1f3491d..38fa071c5 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -293,6 +293,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.containerSecurityContext | object | `{}` | Security context for controller containers |
 | controller.customTemplate.configMapKey | string | `""` |  |
 | controller.customTemplate.configMapName | string | `""` |  |
+| controller.disableLeaderElection | bool | `false` | This configuration disable Nginx Controller Leader Election |
 | controller.dnsConfig | object | `{}` | Optionally customize the pod dnsConfig. |
 | controller.dnsPolicy | string | `"ClusterFirst"` | Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'. By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller to keep resolving names inside the k8s network, use ClusterFirstWithHostNet. |
 | controller.electionID | string | `""` | Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader' |
diff --git a/charts/ingress-nginx/templates/_params.tpl b/charts/ingress-nginx/templates/_params.tpl
index 0ddef0af1..b2b54db19 100644
--- a/charts/ingress-nginx/templates/_params.tpl
+++ b/charts/ingress-nginx/templates/_params.tpl
@@ -60,6 +60,9 @@
 {{- if .Values.controller.enableTopologyAwareRouting }}
 - --enable-topology-aware-routing=true
 {{- end }}
+{{- if .Values.controller.disableLeaderElection }}
+- --disable-leader-election=true
+{{- end }}
 {{- range $key, $value := .Values.controller.extraArgs }}
 {{- /* Accept keys without values or with false as value */}}
 {{- if eq ($value | quote | len) 2 }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 553c5e892..3ec2e4c33 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -83,6 +83,8 @@ controller:
   # -- This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-mode="auto"
   # Defaults to false
   enableTopologyAwareRouting: false
+  # -- This configuration disable Nginx Controller Leader Election
+  disableLeaderElection: false
   # -- This configuration defines if Ingress Controller should allow users to set
   # their own *-snippet annotations, otherwise this is forbidden / dropped
   # when users add those annotations.
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index 07a17a271..275c753ec 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -25,6 +25,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--enable-metrics`                 | Enables the collection of NGINX metrics. (default true) |
 | `--enable-ssl-chain-completion`    | Autocomplete SSL certificate chains with missing intermediate CA certificates. Certificates uploaded to Kubernetes must have the "Authority Information Access" X.509 v3 extension for this to succeed. (default false)|
 | `--enable-ssl-passthrough`         | Enable SSL Passthrough. (default false) |
+| `--disable-leader-election`        | Disable Leader Election on Nginx Controller. (default false) |
 | `--enable-topology-aware-routing`  | Enable topology aware routing feature, needs service object annotation service.kubernetes.io/topology-mode sets to auto. (default false) |
 | `--exclude-socket-metrics`         | Set of socket request metrics to exclude which won't be exported nor being calculated. The possible socket request metrics to exclude are documented in the monitoring guide e.g. 'nginx_ingress_controller_request_duration_seconds,nginx_ingress_controller_response_size'|
 | `--health-check-path`              | URL path of the health check endpoint. Configured inside the NGINX status server. All requests received on the port defined by the healthz-port parameter are forwarded internally to this path. (default "/healthz") |
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index cb8d3712c..495fead15 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -100,6 +100,8 @@ type Configuration struct {
 
 	EnableSSLPassthrough bool
 
+	DisableLeaderElection bool
+
 	EnableProfiling bool
 
 	EnableMetrics        bool
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 578d5b4e8..10aafc571 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -271,26 +271,28 @@ func (n *NGINXController) Start() {
 	// TODO: For now, as the the IngressClass logics has changed, is up to the
 	// cluster admin to create different Leader Election IDs.
 	// Should revisit this in a future
-	electionID := n.cfg.ElectionID
 
-	setupLeaderElection(&leaderElectionConfig{
-		Client:     n.cfg.Client,
-		ElectionID: electionID,
-		OnStartedLeading: func(stopCh chan struct{}) {
-			if n.syncStatus != nil {
-				go n.syncStatus.Run(stopCh)
-			}
+	if !n.cfg.DisableLeaderElection {
+		electionID := n.cfg.ElectionID
+		setupLeaderElection(&leaderElectionConfig{
+			Client:     n.cfg.Client,
+			ElectionID: electionID,
+			OnStartedLeading: func(stopCh chan struct{}) {
+				if n.syncStatus != nil {
+					go n.syncStatus.Run(stopCh)
+				}
 
-			n.metricCollector.OnStartedLeading(electionID)
-			// manually update SSL expiration metrics
-			// (to not wait for a reload)
-			n.metricCollector.SetSSLExpireTime(n.runningConfig.Servers)
-			n.metricCollector.SetSSLInfo(n.runningConfig.Servers)
-		},
-		OnStoppedLeading: func() {
-			n.metricCollector.OnStoppedLeading(electionID)
-		},
-	})
+				n.metricCollector.OnStartedLeading(electionID)
+				// manually update SSL expiration metrics
+				// (to not wait for a reload)
+				n.metricCollector.SetSSLExpireTime(n.runningConfig.Servers)
+				n.metricCollector.SetSSLInfo(n.runningConfig.Servers)
+			},
+			OnStoppedLeading: func() {
+				n.metricCollector.OnStoppedLeading(electionID)
+			},
+		})
+	}
 
 	cmd := n.command.ExecCommand()
 
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index d3bc4ee86..d7157fa79 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -146,6 +146,9 @@ Requires the update-status parameter.`)
 		enableSSLPassthrough = flags.Bool("enable-ssl-passthrough", false,
 			`Enable SSL Passthrough.`)
 
+		disableLeaderElection = flags.Bool("disable-leader-election", false,
+			`Disable Leader Election on NGINX Controller.`)
+
 		disableServiceExternalName = flags.Bool("disable-svc-external-name", false,
 			`Disable support for Services of type ExternalName.`)
 
@@ -333,6 +336,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		MonitorMaxBatchSize:         *monitorMaxBatchSize,
 		DisableServiceExternalName:  *disableServiceExternalName,
 		EnableSSLPassthrough:        *enableSSLPassthrough,
+		DisableLeaderElection:       *disableLeaderElection,
 		ResyncPeriod:                *resyncPeriod,
 		DefaultService:              *defaultSvc,
 		Namespace:                   *watchNamespace,
diff --git a/pkg/flags/flags_test.go b/pkg/flags/flags_test.go
index bffe2b16d..54b35dbca 100644
--- a/pkg/flags/flags_test.go
+++ b/pkg/flags/flags_test.go
@@ -109,3 +109,37 @@ func TestMaxmindRetryDownload(t *testing.T) {
 		t.Fatalf("Expected an error parsing flags but none returned")
 	}
 }
+
+func TestDisableLeaderElectionFlag(t *testing.T) {
+	ResetForTesting(func() { t.Fatal("Parsing failed") })
+
+	oldArgs := os.Args
+	defer func() { os.Args = oldArgs }()
+	os.Args = []string{"cmd", "--disable-leader-election", "--http-port", "80", "--https-port", "443"}
+
+	_, conf, err := ParseFlags()
+	if err != nil {
+		t.Fatalf("Unexpected error parsing default flags: %v", err)
+	}
+
+	if !conf.DisableLeaderElection {
+		t.Fatalf("Expected --disable-leader-election and conf.DisableLeaderElection as true, but found: %v", conf.DisableLeaderElection)
+	}
+}
+
+func TestIfLeaderElectionDisabledFlagIsFalse(t *testing.T) {
+	ResetForTesting(func() { t.Fatal("Parsing failed") })
+
+	oldArgs := os.Args
+	defer func() { os.Args = oldArgs }()
+	os.Args = []string{"cmd", "--http-port", "80", "--https-port", "443"}
+
+	_, conf, err := ParseFlags()
+	if err != nil {
+		t.Fatalf("Unexpected error parsing default flags: %v", err)
+	}
+
+	if conf.DisableLeaderElection {
+		t.Fatalf("Expected --disable-leader-election and conf.DisableLeaderElection as false, but found: %v", conf.DisableLeaderElection)
+	}
+}
diff --git a/test/e2e-image/namespace-overlays/disableleaderelection/values.yaml b/test/e2e-image/namespace-overlays/disableleaderelection/values.yaml
new file mode 100644
index 000000000..f312a9fb4
--- /dev/null
+++ b/test/e2e-image/namespace-overlays/disableleaderelection/values.yaml
@@ -0,0 +1,34 @@
+# TODO: remove the need to use fullnameOverride
+fullnameOverride: nginx-ingress
+controller:
+  image:
+    repository: ingress-controller/controller
+    chroot: true
+    tag: 1.0.0-dev
+    digest:
+    digestChroot:
+  scope:
+    # Necessary to allow the ingress controller to get the topology information from the nodes
+    enabled: false
+  config:
+    worker-processes: "1"
+  readinessProbe:
+    initialDelaySeconds: 3
+    periodSeconds: 1
+  livenessProbe:
+    initialDelaySeconds: 3
+    periodSeconds: 1
+  service:
+    type: NodePort
+  extraArgs:
+    # e2e tests do not require information about ingress status
+    update-status: "false"
+  terminationGracePeriodSeconds: 1
+  admissionWebhooks:
+    enabled: false
+
+  disableLeaderElection: true
+
+rbac:
+  create: true
+  scope: false
diff --git a/test/e2e/disableleaderelection/disable_leader.go b/test/e2e/disableleaderelection/disable_leader.go
new file mode 100644
index 000000000..fd7369dfb
--- /dev/null
+++ b/test/e2e/disableleaderelection/disable_leader.go
@@ -0,0 +1,93 @@
+/*
+Copyright 2024 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package disableleaderelection
+
+import (
+	"net/http"
+	"strings"
+
+	"github.com/onsi/ginkgo/v2"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+var _ = framework.IngressNginxDescribe("[Disable Leader] Routing works when leader election was disabled", func() {
+	f := framework.NewDefaultFramework("disableleaderelection")
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment()
+	})
+
+	ginkgo.It("should create multiple ingress routings rules when leader election has disabled", func() {
+		host1 := "leader.election.disabled.com"
+		host2 := "leader.election.disabled2.com"
+
+		ing1 := framework.NewSingleIngress(host1, "/foo", host1, f.Namespace, framework.EchoService, 80, nil)
+		f.EnsureIngress(ing1)
+
+		ing2 := framework.NewSingleIngress(host2, "/ping", host2, f.Namespace, framework.EchoService, 80, nil)
+		f.EnsureIngress(ing2)
+
+		f.WaitForNginxServer(host1,
+			func(server string) bool {
+				return strings.Contains(server, host1) &&
+					strings.Contains(server, "location /foo")
+			})
+
+		f.WaitForNginxServer(host2,
+			func(server string) bool {
+				return strings.Contains(server, host2) &&
+					strings.Contains(server, "location /ping")
+			})
+
+		f.HTTPTestClient().
+			GET("/foo").
+			WithHeader("Host", host1).
+			Expect().
+			Status(http.StatusOK)
+
+		f.HTTPTestClient().
+			GET("/bar").
+			WithHeader("Host", host1).
+			Expect().
+			Status(http.StatusNotFound)
+
+		f.HTTPTestClient().
+			GET("/foo").
+			WithHeader("Host", host2).
+			Expect().
+			Status(http.StatusNotFound)
+
+		f.HTTPTestClient().
+			GET("/ping").
+			WithHeader("Host", host2).
+			Expect().
+			Status(http.StatusOK)
+
+		f.HTTPTestClient().
+			GET("/pong").
+			WithHeader("Host", host2).
+			Expect().
+			Status(http.StatusNotFound)
+
+		f.HTTPTestClient().
+			GET("/ping").
+			WithHeader("Host", host1).
+			Expect().
+			Status(http.StatusNotFound)
+	})
+})
diff --git a/test/e2e/e2e.go b/test/e2e/e2e.go
index 25d714f88..9abfe7c2c 100644
--- a/test/e2e/e2e.go
+++ b/test/e2e/e2e.go
@@ -34,6 +34,7 @@ import (
 	_ "k8s.io/ingress-nginx/test/e2e/annotations/modsecurity"
 	_ "k8s.io/ingress-nginx/test/e2e/dbg"
 	_ "k8s.io/ingress-nginx/test/e2e/defaultbackend"
+	_ "k8s.io/ingress-nginx/test/e2e/disableleaderelection"
 	_ "k8s.io/ingress-nginx/test/e2e/endpointslices"
 	_ "k8s.io/ingress-nginx/test/e2e/gracefulshutdown"
 	_ "k8s.io/ingress-nginx/test/e2e/ingress"

From 0e11470ef335d58ddbe02020d6473654e62c5d5b Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 6 Mar 2024 09:53:45 -0500
Subject: [PATCH 1190/1641] bump golang (#11070)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 GOLANG_VERSION | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/GOLANG_VERSION b/GOLANG_VERSION
index 80a81c0e7..24b38a959 100644
--- a/GOLANG_VERSION
+++ b/GOLANG_VERSION
@@ -1 +1 @@
-1.22.0
\ No newline at end of file
+1.22.1
\ No newline at end of file

From 12fbe9b16313bf54b97b55af2dd06f29db467563 Mon Sep 17 00:00:00 2001
From: Carlos Tadeu Panato Junior <ctadeu@gmail.com>
Date: Thu, 7 Mar 2024 11:39:53 +0100
Subject: [PATCH 1191/1641] golangci-lint update, ci cleanup, group dependabot
 updates (#11071)

* bump golangci-lint to v1.56.x

Signed-off-by: cpanato <ctadeu@gmail.com>

* cleanup empty lines

Signed-off-by: cpanato <ctadeu@gmail.com>

* group dependabot updates

Signed-off-by: cpanato <ctadeu@gmail.com>

* run on job changes as well

Signed-off-by: cpanato <ctadeu@gmail.com>

* remove deprecated checks

Signed-off-by: cpanato <ctadeu@gmail.com>

* fix lints and format

Signed-off-by: cpanato <ctadeu@gmail.com>

---------

Signed-off-by: cpanato <ctadeu@gmail.com>
---
 .github/actions/mkdocs/Dockerfile             |  2 +-
 .github/dependabot.yml                        | 14 ++++++++++++
 .github/workflows/ci.yaml                     | 12 +++++-----
 .github/workflows/golangci-lint.yml           | 11 +++++-----
 .github/workflows/images.yaml                 |  5 +----
 .github/workflows/plugin.yaml                 |  2 +-
 .golangci.yml                                 |  2 --
 cmd/dbg/main.go                               | 12 +++++-----
 cmd/nginx/main.go                             |  5 ++---
 cmd/plugin/commands/backends/backends.go      |  2 +-
 cmd/plugin/commands/certs/certs.go            |  2 +-
 cmd/plugin/commands/conf/conf.go              |  2 +-
 cmd/plugin/commands/exec/exec.go              |  2 +-
 cmd/plugin/commands/general/general.go        |  2 +-
 cmd/plugin/commands/info/info.go              |  2 +-
 cmd/plugin/commands/ingresses/ingresses.go    | 10 ++++-----
 cmd/plugin/commands/lint/main.go              |  4 ++--
 cmd/plugin/commands/logs/logs.go              |  2 +-
 cmd/plugin/commands/ssh/ssh.go                |  2 +-
 images/opentelemetry/rootfs/init_module.go    |  1 -
 internal/ingress/annotations/authreq/main.go  |  4 ++--
 internal/ingress/annotations/canary/main.go   |  4 ++--
 .../annotations/parser/validators_test.go     |  2 +-
 internal/ingress/controller/checker_test.go   |  2 +-
 .../ingress/controller/controller_test.go     | 20 ++++++++---------
 internal/ingress/controller/location.go       |  2 +-
 internal/ingress/controller/nginx.go          |  1 -
 internal/ingress/controller/nginx_test.go     |  2 +-
 internal/ingress/controller/status.go         |  2 +-
 internal/ingress/controller/store/store.go    |  2 +-
 .../ingress/controller/template/template.go   |  8 +++----
 .../metric/collectors/admission_test.go       |  2 +-
 .../metric/collectors/controller_test.go      |  2 +-
 internal/ingress/metric/collectors/socket.go  |  2 +-
 .../ingress/metric/collectors/socket_test.go  |  3 +--
 .../ingress/metric/collectors/testutils.go    |  2 +-
 internal/net/ssl/ssl.go                       |  1 -
 internal/net/ssl/ssl_test.go                  |  2 +-
 internal/nginx/maxmind.go                     |  2 +-
 magefiles/steps/release.go                    |  1 -
 magefiles/utils/e2edocs.go                    | 22 +++++++------------
 test/e2e/framework/exec.go                    |  2 +-
 test/e2e/framework/framework.go               |  6 ++---
 test/e2e/framework/httpexpect/request.go      |  2 +-
 test/e2e/tcpudp/tcp.go                        |  2 +-
 45 files changed, 96 insertions(+), 100 deletions(-)

diff --git a/.github/actions/mkdocs/Dockerfile b/.github/actions/mkdocs/Dockerfile
index 378128978..f00584d32 100644
--- a/.github/actions/mkdocs/Dockerfile
+++ b/.github/actions/mkdocs/Dockerfile
@@ -1,4 +1,4 @@
-FROM squidfunk/mkdocs-material:9.4.5 
+FROM squidfunk/mkdocs-material:9.4.5
 
 COPY action.sh /action.sh
 
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 5ad21ca95..69d1ba161 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -9,6 +9,10 @@ updates:
       - "area/dependency"
       - "release-note-none"
       - "ok-to-test"
+    groups:
+      all:
+        update-types:
+          - "patch"
   - package-ecosystem: "github-actions"
     directory: "/"
     schedule:
@@ -17,6 +21,11 @@ updates:
       - "area/dependency"
       - "release-note-none"
       - "ok-to-test"
+    groups:
+      all:
+        update-types:
+          - "minor"
+          - "patch"
   - package-ecosystem: "docker"
     directory: "/images"
     schedule:
@@ -25,3 +34,8 @@ updates:
       - "area/dependency"
       - "release-note-none"
       - "ok-to-test"
+    groups:
+      actions:
+        update-types:
+          - "minor"
+          - "patch"
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index edb7c1e5d..266565578 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -78,10 +78,10 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-      
+
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
-        
+
       - name: Set up Go
         id: go
         uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
@@ -100,13 +100,13 @@ jobs:
       golangversion: ${{ steps.golangversion.outputs.version }}
     if: |
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.charts == 'true') || (needs.changes.outputs.baseimage == 'true')
-     
+
     env:
         PLATFORMS: linux/amd64
     steps:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-      
+
       - name: Get go version
         id: golangversion
         run: |
@@ -136,14 +136,14 @@ jobs:
           curl -LO https://dl.k8s.io/release/v1.27.3/bin/linux/amd64/kubectl
           chmod +x ./kubectl
           sudo mv ./kubectl /usr/local/bin/kubectl
-      
+
       - name: Build NGINX Base image
         if: |
           needs.changes.outputs.baseimage == 'true'
         run: |
             export TAG=$(cat images/nginx-1.25/TAG)
             cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --load -t registry.k8s.io/ingress-nginx/nginx-1.25:${TAG} .
-    
+
       - name: Build images
         env:
           TAG: 1.0.0-dev
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index f6929e73c..b5ad3c93c 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -2,10 +2,9 @@ name: golangci-lint
 
 on:
   pull_request:
-    branches:
-      - "*"
     paths:
       - '**/*.go'
+      - '.github/workflows/golangci-lint.yml'
 
 permissions:
   contents: read
@@ -17,18 +16,18 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
-      
+
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
-      
+
       - name: Set up Go
         id: go
         uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
-      
+
       - name: golangci-lint
         uses: golangci/golangci-lint-action@3cfe3a4abbb849e10058ce4af15d205b6da42804 # v4.0.0
         with:
-          version: v1.55.2
+          version: v1.56
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index e46c1b4bd..5effdee82 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -69,7 +69,7 @@ jobs:
               - 'images/opentelemetry/**'
             nginx125:
               - 'images/nginx-1.25/TAG'
- 
+
   #### TODO: Make the below jobs 'less dumb' and use the job name as parameter (the github.job context does not work here)
   cfssl:
     needs: changes
@@ -89,7 +89,6 @@ jobs:
       name: custom-error-pages
     secrets: inherit
 
-
   e2e-test-echo:
     needs: changes
     if: |
@@ -214,5 +213,3 @@ jobs:
         run: |
           export TAG=$(cat images/nginx-1.25/TAG)
           cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --push -t ingressnginx/nginx-1.25:${TAG} .
-    
-    
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index fe99b2444..6f4804d6f 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -33,7 +33,7 @@ jobs:
           args: release --snapshot --clean
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-      
+
       - name: Run GoReleaser
         if: ${{ startsWith(github.ref, 'refs/tags/') }}
         uses: goreleaser/goreleaser-action@7ec5c2b0c6cdda6e8bbb49444bc797dd33d74dd8 # v5.0.0
diff --git a/.golangci.yml b/.golangci.yml
index 5da8f0399..0cf49e6af 100644
--- a/.golangci.yml
+++ b/.golangci.yml
@@ -200,9 +200,7 @@ linters-settings:
       - stringConcatSimplify
       - stringsCompare
       - switchTrue
-      - timeCmpSimplify
       - timeExprSimplify
-      - todoCommentWithoutDetail
       - tooManyResultsChecker
       - typeAssertChain
       - typeDefFirst
diff --git a/cmd/dbg/main.go b/cmd/dbg/main.go
index b63bcf5fe..ab68001c9 100644
--- a/cmd/dbg/main.go
+++ b/cmd/dbg/main.go
@@ -47,7 +47,7 @@ func main() {
 	backendsAllCmd := &cobra.Command{
 		Use:   "all",
 		Short: "Output the all dynamic backend information as a JSON array",
-		Run: func(cmd *cobra.Command, args []string) {
+		Run: func(_ *cobra.Command, _ []string) {
 			backendsAll()
 		},
 	}
@@ -56,7 +56,7 @@ func main() {
 	backendsListCmd := &cobra.Command{
 		Use:   "list",
 		Short: "Output a newline-separated list of the backend names",
-		Run: func(cmd *cobra.Command, args []string) {
+		Run: func(_ *cobra.Command, _ []string) {
 			backendsList()
 		},
 	}
@@ -66,7 +66,7 @@ func main() {
 		Use:   "get [backend name]",
 		Short: "Output the backend information only for the backend that has this name",
 		Args:  cobra.ExactArgs(1),
-		Run: func(cmd *cobra.Command, args []string) {
+		Run: func(_ *cobra.Command, args []string) {
 			backendsGet(args[0])
 		},
 	}
@@ -81,7 +81,7 @@ func main() {
 		Use:   "get [hostname]",
 		Short: "Get the dynamically-loaded certificate information for the given hostname",
 		Args:  cobra.ExactArgs(1),
-		RunE: func(cmd *cobra.Command, args []string) error {
+		RunE: func(_ *cobra.Command, args []string) error {
 			certGet(args[0])
 			return nil
 		},
@@ -93,7 +93,7 @@ func main() {
 	generalCmd := &cobra.Command{
 		Use:   "general",
 		Short: "Output the general dynamic lua state",
-		Run: func(cmd *cobra.Command, args []string) {
+		Run: func(_ *cobra.Command, _ []string) {
 			general()
 		},
 	}
@@ -102,7 +102,7 @@ func main() {
 	confCmd := &cobra.Command{
 		Use:   "conf",
 		Short: "Dump the contents of /etc/nginx/nginx.conf",
-		Run: func(cmd *cobra.Command, args []string) {
+		Run: func(_ *cobra.Command, _ []string) {
 			readNginxConf()
 		},
 	}
diff --git a/cmd/nginx/main.go b/cmd/nginx/main.go
index 1d30091ef..5ab54aa93 100644
--- a/cmd/nginx/main.go
+++ b/cmd/nginx/main.go
@@ -74,7 +74,7 @@ func main() {
 		handleFatalInitError(err)
 	}
 
-	if len(conf.DefaultService) > 0 {
+	if conf.DefaultService != "" {
 		err := checkService(conf.DefaultService, kubeClient)
 		if err != nil {
 			klog.Fatal(err)
@@ -83,7 +83,7 @@ func main() {
 		klog.InfoS("Valid default backend", "service", conf.DefaultService)
 	}
 
-	if len(conf.PublishService) > 0 {
+	if conf.PublishService != "" {
 		err := checkService(conf.PublishService, kubeClient)
 		if err != nil {
 			klog.Fatal(err)
@@ -235,7 +235,6 @@ func createApiserverClient(apiserverHost, rootCAFile, kubeConfig string) (*kuber
 		retries++
 		return false, nil
 	})
-
 	// err is returned in case of timeout in the exponential backoff (ErrWaitTimeout)
 	if err != nil {
 		return nil, lastErr
diff --git a/cmd/plugin/commands/backends/backends.go b/cmd/plugin/commands/backends/backends.go
index ff44fd9c2..e7bd42147 100644
--- a/cmd/plugin/commands/backends/backends.go
+++ b/cmd/plugin/commands/backends/backends.go
@@ -34,7 +34,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	cmd := &cobra.Command{
 		Use:   "backends",
 		Short: "Inspect the dynamic backend information of an ingress-nginx instance",
-		RunE: func(cmd *cobra.Command, args []string) error {
+		RunE: func(cmd *cobra.Command, _ []string) error {
 			backend, err := cmd.Flags().GetString("backend")
 			if err != nil {
 				return err
diff --git a/cmd/plugin/commands/certs/certs.go b/cmd/plugin/commands/certs/certs.go
index ee27cf1b1..4a7fee1cf 100644
--- a/cmd/plugin/commands/certs/certs.go
+++ b/cmd/plugin/commands/certs/certs.go
@@ -35,7 +35,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	cmd := &cobra.Command{
 		Use:   "certs",
 		Short: "Output the certificate data stored in an ingress-nginx pod",
-		RunE: func(cmd *cobra.Command, args []string) error {
+		RunE: func(cmd *cobra.Command, _ []string) error {
 			host, err := cmd.Flags().GetString("host")
 			if err != nil {
 				return err
diff --git a/cmd/plugin/commands/conf/conf.go b/cmd/plugin/commands/conf/conf.go
index 090fb40bb..5821b11f1 100644
--- a/cmd/plugin/commands/conf/conf.go
+++ b/cmd/plugin/commands/conf/conf.go
@@ -36,7 +36,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	cmd := &cobra.Command{
 		Use:   "conf",
 		Short: "Inspect the generated nginx.conf",
-		RunE: func(cmd *cobra.Command, args []string) error {
+		RunE: func(cmd *cobra.Command, _ []string) error {
 			host, err := cmd.Flags().GetString("host")
 			if err != nil {
 				return err
diff --git a/cmd/plugin/commands/exec/exec.go b/cmd/plugin/commands/exec/exec.go
index 8e853c534..a91bdb594 100644
--- a/cmd/plugin/commands/exec/exec.go
+++ b/cmd/plugin/commands/exec/exec.go
@@ -34,7 +34,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	cmd := &cobra.Command{
 		Use:   "exec",
 		Short: "Execute a command inside an ingress-nginx pod",
-		RunE: func(cmd *cobra.Command, args []string) error {
+		RunE: func(_ *cobra.Command, args []string) error {
 			util.PrintError(exec(flags, *pod, *deployment, *selector, *container, args, opts))
 			return nil
 		},
diff --git a/cmd/plugin/commands/general/general.go b/cmd/plugin/commands/general/general.go
index cea403562..d7b3b34f9 100644
--- a/cmd/plugin/commands/general/general.go
+++ b/cmd/plugin/commands/general/general.go
@@ -34,7 +34,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	cmd := &cobra.Command{
 		Use:   "general",
 		Short: "Inspect the other dynamic ingress-nginx information",
-		RunE: func(cmd *cobra.Command, args []string) error {
+		RunE: func(_ *cobra.Command, _ []string) error {
 			util.PrintError(general(flags, *pod, *deployment, *selector, *container))
 			return nil
 		},
diff --git a/cmd/plugin/commands/info/info.go b/cmd/plugin/commands/info/info.go
index 246046c3a..e0fd3aaec 100644
--- a/cmd/plugin/commands/info/info.go
+++ b/cmd/plugin/commands/info/info.go
@@ -32,7 +32,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	cmd := &cobra.Command{
 		Use:   "info",
 		Short: "Show information about the ingress-nginx service",
-		RunE: func(cmd *cobra.Command, args []string) error {
+		RunE: func(cmd *cobra.Command, _ []string) error {
 			service, err := cmd.Flags().GetString("service")
 			if err != nil {
 				return err
diff --git a/cmd/plugin/commands/ingresses/ingresses.go b/cmd/plugin/commands/ingresses/ingresses.go
index 8a25418db..7cb90a570 100644
--- a/cmd/plugin/commands/ingresses/ingresses.go
+++ b/cmd/plugin/commands/ingresses/ingresses.go
@@ -36,7 +36,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 		Use:     "ingresses",
 		Aliases: []string{"ingress", "ing"},
 		Short:   "Provide a short summary of all of the ingress definitions",
-		RunE: func(cmd *cobra.Command, args []string) error {
+		RunE: func(cmd *cobra.Command, _ []string) error {
 			host, err := cmd.Flags().GetString("host")
 			if err != nil {
 				return err
@@ -139,14 +139,14 @@ func getIngressRows(ingresses *[]networking.Ingress) []ingressRow {
 		ing := &(*ingresses)[i]
 		address := ""
 		for _, lbIng := range ing.Status.LoadBalancer.Ingress {
-			if len(lbIng.IP) > 0 {
+			if lbIng.IP != "" {
 				address = address + lbIng.IP + ","
 			}
-			if len(lbIng.Hostname) > 0 {
+			if lbIng.Hostname != "" {
 				address = address + lbIng.Hostname + ","
 			}
 		}
-		if len(address) > 0 {
+		if address != "" {
 			address = address[:len(address)-1]
 		}
 
@@ -166,7 +166,7 @@ func getIngressRows(ingresses *[]networking.Ingress) []ingressRow {
 		}
 
 		// Handle catch-all ingress
-		if len(ing.Spec.Rules) == 0 && len(defaultBackendService) > 0 {
+		if len(ing.Spec.Rules) == 0 && defaultBackendService != "" {
 			row := ingressRow{
 				Namespace:   ing.Namespace,
 				IngressName: ing.Name,
diff --git a/cmd/plugin/commands/lint/main.go b/cmd/plugin/commands/lint/main.go
index 847fe86c9..69ab984f5 100644
--- a/cmd/plugin/commands/lint/main.go
+++ b/cmd/plugin/commands/lint/main.go
@@ -38,7 +38,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	cmd := &cobra.Command{
 		Use:   "lint",
 		Short: "Inspect kubernetes resources for possible issues",
-		RunE: func(cmd *cobra.Command, args []string) error {
+		RunE: func(_ *cobra.Command, _ []string) error {
 			err := opts.Validate()
 			if err != nil {
 				return err
@@ -73,7 +73,7 @@ func createSubcommand(flags *genericclioptions.ConfigFlags, names []string, shor
 		Use:     names[0],
 		Aliases: names[1:],
 		Short:   short,
-		RunE: func(cmd *cobra.Command, args []string) error {
+		RunE: func(_ *cobra.Command, _ []string) error {
 			err := opts.Validate()
 			if err != nil {
 				return err
diff --git a/cmd/plugin/commands/logs/logs.go b/cmd/plugin/commands/logs/logs.go
index 22068d469..d9f6e7bd8 100644
--- a/cmd/plugin/commands/logs/logs.go
+++ b/cmd/plugin/commands/logs/logs.go
@@ -36,7 +36,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	cmd := &cobra.Command{
 		Use:   "logs",
 		Short: "Get the kubernetes logs for an ingress-nginx pod",
-		RunE: func(cmd *cobra.Command, args []string) error {
+		RunE: func(_ *cobra.Command, _ []string) error {
 			util.PrintError(logs(flags, *pod, *deployment, *selector, *container, o))
 			return nil
 		},
diff --git a/cmd/plugin/commands/ssh/ssh.go b/cmd/plugin/commands/ssh/ssh.go
index a4762d781..c9631d10b 100644
--- a/cmd/plugin/commands/ssh/ssh.go
+++ b/cmd/plugin/commands/ssh/ssh.go
@@ -32,7 +32,7 @@ func CreateCommand(flags *genericclioptions.ConfigFlags) *cobra.Command {
 	cmd := &cobra.Command{
 		Use:   "ssh",
 		Short: "ssh into a running ingress-nginx pod",
-		RunE: func(cmd *cobra.Command, args []string) error {
+		RunE: func(_ *cobra.Command, _ []string) error {
 			util.PrintError(ssh(flags, *pod, *deployment, *selector, *container))
 			return nil
 		},
diff --git a/images/opentelemetry/rootfs/init_module.go b/images/opentelemetry/rootfs/init_module.go
index bebec728f..5d285052d 100644
--- a/images/opentelemetry/rootfs/init_module.go
+++ b/images/opentelemetry/rootfs/init_module.go
@@ -74,7 +74,6 @@ func run() error {
 
 		return nil
 	})
-
 	if err != nil {
 		return fmt.Errorf("failed to copy files: %w", err)
 	}
diff --git a/internal/ingress/annotations/authreq/main.go b/internal/ingress/annotations/authreq/main.go
index c66b0ed47..ad38c36b1 100644
--- a/internal/ingress/annotations/authreq/main.go
+++ b/internal/ingress/annotations/authreq/main.go
@@ -416,7 +416,7 @@ func (a authReq) Parse(ing *networking.Ingress) (interface{}, error) {
 		harr := strings.Split(hstr, ",")
 		for _, header := range harr {
 			header = strings.TrimSpace(header)
-			if len(header) > 0 {
+			if header != "" {
 				if !ValidHeader(header) {
 					return nil, ing_errors.NewLocationDenied("invalid headers list")
 				}
@@ -505,7 +505,7 @@ func ParseStringToCacheDurations(input string) ([]string, error) {
 		arr := strings.Split(input, ",")
 		for _, duration := range arr {
 			duration = strings.TrimSpace(duration)
-			if len(duration) > 0 {
+			if duration != "" {
 				if !ValidCacheDuration(duration) {
 					authCacheDuration = []string{DefaultCacheDuration}
 					return authCacheDuration, ing_errors.NewLocationDenied(fmt.Sprintf("invalid cache duration: %s", duration))
diff --git a/internal/ingress/annotations/canary/main.go b/internal/ingress/annotations/canary/main.go
index be5761675..ccfe14261 100644
--- a/internal/ingress/annotations/canary/main.go
+++ b/internal/ingress/annotations/canary/main.go
@@ -177,8 +177,8 @@ func (c canary) Parse(ing *networking.Ingress) (interface{}, error) {
 		config.Cookie = ""
 	}
 
-	if !config.Enabled && (config.Weight > 0 || len(config.Header) > 0 || len(config.HeaderValue) > 0 || len(config.Cookie) > 0 ||
-		len(config.HeaderPattern) > 0) {
+	if !config.Enabled && (config.Weight > 0 || config.Header != "" || config.HeaderValue != "" || config.Cookie != "" ||
+		config.HeaderPattern != "") {
 		return nil, errors.NewInvalidAnnotationConfiguration(canaryAnnotation, "configured but not enabled")
 	}
 
diff --git a/internal/ingress/annotations/parser/validators_test.go b/internal/ingress/annotations/parser/validators_test.go
index 8523232a2..ed8449452 100644
--- a/internal/ingress/annotations/parser/validators_test.go
+++ b/internal/ingress/annotations/parser/validators_test.go
@@ -104,7 +104,7 @@ func Test_checkAnnotation(t *testing.T) {
 				},
 				fields: AnnotationFields{
 					"otherannotation": AnnotationConfig{
-						Validator: func(value string) error { return nil },
+						Validator: func(_ string) error { return nil },
 					},
 				},
 			},
diff --git a/internal/ingress/controller/checker_test.go b/internal/ingress/controller/checker_test.go
index 5fb6b09fd..a8a0b67ad 100644
--- a/internal/ingress/controller/checker_test.go
+++ b/internal/ingress/controller/checker_test.go
@@ -53,7 +53,7 @@ func TestNginxCheck(t *testing.T) {
 			server := &httptest.Server{
 				Listener: listener,
 				Config: &http.Server{
-					Handler: http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+					Handler: http.HandlerFunc(func(w http.ResponseWriter, _ *http.Request) {
 						w.WriteHeader(http.StatusOK)
 						fmt.Fprintf(w, "ok")
 					}),
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index c07fcfadf..e257dd1f1 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -170,7 +170,7 @@ func (fakeTemplate) Write(conf *ngx_config.TemplateConfig) ([]byte, error) {
 
 func TestCheckIngress(t *testing.T) {
 	defer func() {
-		err := filepath.Walk(os.TempDir(), func(path string, info os.FileInfo, err error) error {
+		err := filepath.Walk(os.TempDir(), func(path string, info os.FileInfo, _ error) error {
 			if info.IsDir() && os.TempDir() != path {
 				return filepath.SkipDir
 			}
@@ -1573,7 +1573,7 @@ func TestGetBackendServers(t *testing.T) {
 					},
 				},
 			},
-			Validate: func(ingresses []*ingress.Ingress, upstreams []*ingress.Backend, servers []*ingress.Server) {
+			Validate: func(_ []*ingress.Ingress, _ []*ingress.Backend, servers []*ingress.Server) {
 				if len(servers) != 1 {
 					t.Errorf("servers count should be 1, got %d", len(servers))
 					return
@@ -1640,7 +1640,7 @@ func TestGetBackendServers(t *testing.T) {
 					},
 				},
 			},
-			Validate: func(ingresses []*ingress.Ingress, upstreams []*ingress.Backend, servers []*ingress.Server) {
+			Validate: func(_ []*ingress.Ingress, _ []*ingress.Backend, servers []*ingress.Server) {
 				if len(servers) != 1 {
 					t.Errorf("servers count should be 1, got %d", len(servers))
 					return
@@ -1700,7 +1700,7 @@ func TestGetBackendServers(t *testing.T) {
 					},
 				},
 			},
-			Validate: func(ingresses []*ingress.Ingress, upstreams []*ingress.Backend, servers []*ingress.Server) {
+			Validate: func(_ []*ingress.Ingress, _ []*ingress.Backend, servers []*ingress.Server) {
 				if len(servers) != 1 {
 					t.Errorf("servers count should be 1, got %d", len(servers))
 					return
@@ -1799,7 +1799,7 @@ func TestGetBackendServers(t *testing.T) {
 					},
 				},
 			},
-			Validate: func(ingresses []*ingress.Ingress, upstreams []*ingress.Backend, servers []*ingress.Server) {
+			Validate: func(_ []*ingress.Ingress, _ []*ingress.Backend, servers []*ingress.Server) {
 				if len(servers) != 2 {
 					t.Errorf("servers count should be 2, got %d", len(servers))
 					return
@@ -2059,7 +2059,7 @@ func TestGetBackendServers(t *testing.T) {
 					},
 				},
 			},
-			Validate: func(ingresses []*ingress.Ingress, upstreams []*ingress.Backend, servers []*ingress.Server) {
+			Validate: func(_ []*ingress.Ingress, upstreams []*ingress.Backend, servers []*ingress.Server) {
 				if len(servers) != 2 {
 					t.Errorf("servers count should be 2, got %d", len(servers))
 					return
@@ -2190,7 +2190,7 @@ func TestGetBackendServers(t *testing.T) {
 					},
 				},
 			},
-			Validate: func(ingresses []*ingress.Ingress, upstreams []*ingress.Backend, servers []*ingress.Server) {
+			Validate: func(ingresses []*ingress.Ingress, _ []*ingress.Backend, servers []*ingress.Server) {
 				if len(servers) != 2 {
 					t.Errorf("servers count should be 2, got %d", len(servers))
 					return
@@ -2298,7 +2298,7 @@ func TestGetBackendServers(t *testing.T) {
 					},
 				},
 			},
-			Validate: func(ingresses []*ingress.Ingress, upstreams []*ingress.Backend, servers []*ingress.Server) {
+			Validate: func(ingresses []*ingress.Ingress, _ []*ingress.Backend, servers []*ingress.Server) {
 				if len(servers) != 2 {
 					t.Errorf("servers count should be 2, got %d", len(servers))
 					return
@@ -2367,7 +2367,7 @@ func TestGetBackendServers(t *testing.T) {
 					},
 				},
 			},
-			Validate: func(ingresses []*ingress.Ingress, upstreams []*ingress.Backend, servers []*ingress.Server) {
+			Validate: func(_ []*ingress.Ingress, _ []*ingress.Backend, servers []*ingress.Server) {
 				if len(servers) != 2 {
 					t.Errorf("servers count should be 1, got %d", len(servers))
 					return
@@ -2437,7 +2437,7 @@ func TestGetBackendServers(t *testing.T) {
 					},
 				},
 			},
-			Validate: func(ingresses []*ingress.Ingress, upstreams []*ingress.Backend, servers []*ingress.Server) {
+			Validate: func(_ []*ingress.Ingress, _ []*ingress.Backend, servers []*ingress.Server) {
 				if len(servers) != 2 {
 					t.Errorf("servers count should be 2, got %d", len(servers))
 					return
diff --git a/internal/ingress/controller/location.go b/internal/ingress/controller/location.go
index 9776f8c87..221c089c2 100644
--- a/internal/ingress/controller/location.go
+++ b/internal/ingress/controller/location.go
@@ -100,7 +100,7 @@ func normalizePrefixPath(path string) string {
 }
 
 func needsRewrite(location *ingress.Location) bool {
-	if len(location.Rewrite.Target) > 0 && location.Rewrite.Target != location.Path {
+	if location.Rewrite.Target != "" && location.Rewrite.Target != location.Path {
 		return true
 	}
 
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 10aafc571..1d385e506 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -197,7 +197,6 @@ func NewNGINXController(config *Configuration, mc metric.Collector) *NGINXContro
 		filesToWatch = append(filesToWatch, path)
 		return nil
 	})
-
 	if err != nil {
 		klog.Fatalf("Error creating file watchers: %v", err)
 	}
diff --git a/internal/ingress/controller/nginx_test.go b/internal/ingress/controller/nginx_test.go
index c68b0b188..27180e066 100644
--- a/internal/ingress/controller/nginx_test.go
+++ b/internal/ingress/controller/nginx_test.go
@@ -391,7 +391,7 @@ func TestCleanTempNginxCfg(t *testing.T) {
 
 	var files []string
 
-	err = filepath.Walk(os.TempDir(), func(path string, info os.FileInfo, err error) error {
+	err = filepath.Walk(os.TempDir(), func(path string, info os.FileInfo, _ error) error {
 		if info.IsDir() && os.TempDir() != path {
 			return filepath.SkipDir
 		}
diff --git a/internal/ingress/controller/status.go b/internal/ingress/controller/status.go
index e061b2cb7..6bab7c2ad 100644
--- a/internal/ingress/controller/status.go
+++ b/internal/ingress/controller/status.go
@@ -59,7 +59,7 @@ func setupLeaderElection(config *leaderElectionConfig) {
 
 	var stopCh chan struct{}
 	callbacks := leaderelection.LeaderCallbacks{
-		OnStartedLeading: func(ctx context.Context) {
+		OnStartedLeading: func(_ context.Context) {
 			klog.V(2).InfoS("I am the new leader")
 			stopCh = make(chan struct{})
 
diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 4288785de..284f53209 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -292,7 +292,7 @@ func New(
 	// the memory consumption of nginx-ingress-controller explode.
 	// In order to avoid that we filter out labels OWNER=TILLER.
 	labelsTweakListOptionsFunc := func(options *metav1.ListOptions) {
-		if len(options.LabelSelector) > 0 {
+		if options.LabelSelector != "" {
 			options.LabelSelector += ",OWNER!=TILLER"
 		} else {
 			options.LabelSelector = "OWNER!=TILLER"
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index f08eee498..7cd6a0604 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -497,7 +497,7 @@ func buildResolvers(res, disableIpv6 interface{}) string {
 }
 
 func needsRewrite(location *ingress.Location) bool {
-	if len(location.Rewrite.Target) > 0 && location.Rewrite.Target != location.Path {
+	if location.Rewrite.Target != "" && location.Rewrite.Target != location.Path {
 		return true
 	}
 	return false
@@ -771,10 +771,10 @@ func buildProxyPass(_ string, b, loc interface{}) string {
 		return defProxyPass
 	}
 
-	if len(location.Rewrite.Target) > 0 {
+	if location.Rewrite.Target != "" {
 		var xForwardedPrefix string
 
-		if len(location.XForwardedPrefix) > 0 {
+		if location.XForwardedPrefix != "" {
 			xForwardedPrefix = fmt.Sprintf("%s X-Forwarded-Prefix %q;\n", proxySetHeader(location), location.XForwardedPrefix)
 		}
 
@@ -1738,7 +1738,7 @@ func buildCorsOriginRegex(corsOrigins []string) string {
 	originsRegex := "if ($http_origin ~* ("
 	for i, origin := range corsOrigins {
 		originTrimmed := strings.TrimSpace(origin)
-		if len(originTrimmed) > 0 {
+		if originTrimmed != "" {
 			builtOrigin := buildOriginRegex(originTrimmed)
 			originsRegex += builtOrigin
 			if i != len(corsOrigins)-1 {
diff --git a/internal/ingress/metric/collectors/admission_test.go b/internal/ingress/metric/collectors/admission_test.go
index 68208ad3e..a23384a88 100644
--- a/internal/ingress/metric/collectors/admission_test.go
+++ b/internal/ingress/metric/collectors/admission_test.go
@@ -59,7 +59,7 @@ func TestAdmissionCounters(t *testing.T) {
 	}{
 		{
 			name: "should return 0 as values on a fresh initiated collector",
-			test: func(am *AdmissionCollector) {
+			test: func(_ *AdmissionCollector) {
 			},
 			want: metadataFirst + `
 				nginx_ingress_controller_admission_config_size{controller_class="nginx",controller_namespace="default",controller_pod="pod"} 0
diff --git a/internal/ingress/metric/collectors/controller_test.go b/internal/ingress/metric/collectors/controller_test.go
index 15735df42..53a0fd31a 100644
--- a/internal/ingress/metric/collectors/controller_test.go
+++ b/internal/ingress/metric/collectors/controller_test.go
@@ -42,7 +42,7 @@ func TestControllerCounters(t *testing.T) {
 	}{
 		{
 			name: "should return not increment in metrics if no operations are invoked",
-			test: func(cm *Controller) {
+			test: func(_ *Controller) {
 			},
 			want: metadata + `
 				nginx_ingress_controller_config_last_reload_successful{controller_class="nginx",controller_namespace="default",controller_pod="pod"} 0
diff --git a/internal/ingress/metric/collectors/socket.go b/internal/ingress/metric/collectors/socket.go
index a70024c57..248f23f63 100644
--- a/internal/ingress/metric/collectors/socket.go
+++ b/internal/ingress/metric/collectors/socket.go
@@ -329,7 +329,7 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 			continue
 		}
 
-		if sc.reportStatusClasses && len(stats.Status) > 0 {
+		if sc.reportStatusClasses && stats.Status != "" {
 			stats.Status = fmt.Sprintf("%cxx", stats.Status[0])
 		}
 
diff --git a/internal/ingress/metric/collectors/socket_test.go b/internal/ingress/metric/collectors/socket_test.go
index 71e9097c9..2113b4725 100644
--- a/internal/ingress/metric/collectors/socket_test.go
+++ b/internal/ingress/metric/collectors/socket_test.go
@@ -30,8 +30,7 @@ import (
 func TestNewUDPLogListener(t *testing.T) {
 	var count uint64
 
-	//nolint:unparam // Unused `message` param is required by the handleMessages function
-	fn := func(message []byte) {
+	fn := func(message []byte) { //nolint:unparam,revive // Unused `message` param is required by the handleMessages function
 		atomic.AddUint64(&count, 1)
 	}
 
diff --git a/internal/ingress/metric/collectors/testutils.go b/internal/ingress/metric/collectors/testutils.go
index e59ccfd9c..3fc0fc754 100644
--- a/internal/ingress/metric/collectors/testutils.go
+++ b/internal/ingress/metric/collectors/testutils.go
@@ -109,7 +109,7 @@ func removeUnusedWhitespace(s string) string {
 	for _, l := range lines {
 		trimmedLine = strings.TrimSpace(l)
 
-		if len(trimmedLine) > 0 {
+		if trimmedLine != "" {
 			trimmedLines = append(trimmedLines, trimmedLine)
 		}
 	}
diff --git a/internal/net/ssl/ssl.go b/internal/net/ssl/ssl.go
index 26fd706e1..f8bac2377 100644
--- a/internal/net/ssl/ssl.go
+++ b/internal/net/ssl/ssl.go
@@ -400,7 +400,6 @@ func getFakeHostSSLCert(host string) (cert, key []byte) {
 	var err error
 
 	priv, err = rsa.GenerateKey(rand.Reader, 2048)
-
 	if err != nil {
 		klog.Fatalf("failed to generate fake private key: %v", err)
 	}
diff --git a/internal/net/ssl/ssl_test.go b/internal/net/ssl/ssl_test.go
index 9f8c5eeae..47fa07c7c 100644
--- a/internal/net/ssl/ssl_test.go
+++ b/internal/net/ssl/ssl_test.go
@@ -446,7 +446,7 @@ func TestTLSKeyReloader(t *testing.T) {
 	}
 	watcher.load()
 
-	s := httptest.NewUnstartedServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {}))
+	s := httptest.NewUnstartedServer(http.HandlerFunc(func(_ http.ResponseWriter, _ *http.Request) {}))
 	s.Config.TLSConfig = watcher.TLSConfig()
 	s.Listener = tls.NewListener(s.Listener, s.Config.TLSConfig)
 	go s.Start()
diff --git a/internal/nginx/maxmind.go b/internal/nginx/maxmind.go
index 1dc2f4d4e..3bd895b5d 100644
--- a/internal/nginx/maxmind.go
+++ b/internal/nginx/maxmind.go
@@ -132,7 +132,7 @@ func DownloadGeoLite2DB(attempts int, period time.Duration) error {
 }
 
 func createURL(mirror, licenseKey, dbName string) string {
-	if len(mirror) > 0 {
+	if mirror != "" {
 		return fmt.Sprintf("%s/%s.tar.gz", mirror, dbName)
 	}
 	return fmt.Sprintf(maxmindURL, licenseKey, dbName)
diff --git a/magefiles/steps/release.go b/magefiles/steps/release.go
index 1ed09850f..4cb8b40bd 100644
--- a/magefiles/steps/release.go
+++ b/magefiles/steps/release.go
@@ -215,7 +215,6 @@ func (Release) LatestCommitLogs() {
 }
 
 func commitsBetweenTags(newversion, oldversion string) []string {
-
 	var newTag, oldTag string
 	tags := getAllControllerTags()
 	newTag, oldTag = tags[0], tags[1]
diff --git a/magefiles/utils/e2edocs.go b/magefiles/utils/e2edocs.go
index 2edc2ca40..2f5626db6 100644
--- a/magefiles/utils/e2edocs.go
+++ b/magefiles/utils/e2edocs.go
@@ -25,22 +25,19 @@ import (
 	"os"
 	"path/filepath"
 	"regexp"
+	"slices"
 	"strings"
 	"text/template"
-
-	"slices"
 )
 
 //go:embed templates/e2edocs.tpl
 var tplContent embed.FS
 
-var (
-	skipFiles = []string{
-		"test/e2e/framework/framework.go",
-		"test/e2e/e2e.go",
-		"test/e2e/e2e_test.go",
-	}
-)
+var skipFiles = []string{
+	"test/e2e/framework/framework.go",
+	"test/e2e/e2e.go",
+	"test/e2e/e2e_test.go",
+}
 
 const (
 	testDir  = "test/e2e"
@@ -48,9 +45,7 @@ const (
 	URL      = "https://github.com/kubernetes/ingress-nginx/tree/main/"
 )
 
-var (
-	betweenquotes = regexp.MustCompile(`("|\')(?P<TestDescription>.*)("|\')`)
-)
+var betweenquotes = regexp.MustCompile(`("|\')(?P<TestDescription>.*)("|\')`)
 
 type E2ETemplate struct {
 	URL   string
@@ -102,7 +97,7 @@ func (t *E2ETemplate) walkE2eDir(path string, d fs.DirEntry, errAggregated error
 	fileScanner.Split(bufio.ScanLines)
 
 	tests := make([]string, 0)
-	var lineN = 0
+	lineN := 0
 	for fileScanner.Scan() {
 		lineN = lineN + 1
 		if !containsGinkgoTest(fileScanner.Text()) {
@@ -136,5 +131,4 @@ func GenerateE2EDocs() (string, error) {
 		return "", err
 	}
 	return tplBuff.String(), nil
-
 }
diff --git a/test/e2e/framework/exec.go b/test/e2e/framework/exec.go
index 9e4b55122..580a8f58e 100644
--- a/test/e2e/framework/exec.go
+++ b/test/e2e/framework/exec.go
@@ -102,7 +102,7 @@ func (f *Framework) NamespaceContent() (string, error) {
 	}
 
 	eout := strings.TrimSpace(execErr.String())
-	if len(eout) > 0 {
+	if eout != "" {
 		return "", fmt.Errorf("stderr: %v", eout)
 	}
 
diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index 4723117c8..b71d84baa 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -313,7 +313,7 @@ func (f *Framework) matchNginxConditions(name string, matcher func(cfg string) b
 			return false, nil
 		}
 
-		if klog.V(10).Enabled() && len(o) > 0 {
+		if klog.V(10).Enabled() && o != "" {
 			klog.InfoS("NGINX", "configuration", o)
 		}
 
@@ -335,7 +335,7 @@ func (f *Framework) matchNginxCustomConditions(from, to string, matcher func(cfg
 			return false, nil
 		}
 
-		if klog.V(10).Enabled() && len(o) > 0 {
+		if klog.V(10).Enabled() && o != "" {
 			klog.InfoS("NGINX", "configuration", o)
 		}
 
@@ -501,7 +501,7 @@ func (f *Framework) newHTTPTestClient(config *tls.Config, setIngressURL bool) *h
 		Transport: &http.Transport{
 			TLSClientConfig: config,
 		},
-		CheckRedirect: func(req *http.Request, via []*http.Request) error {
+		CheckRedirect: func(_ *http.Request, _ []*http.Request) error {
 			return http.ErrUseLastResponse
 		},
 	}, httpexpect.NewAssertReporter())
diff --git a/test/e2e/framework/httpexpect/request.go b/test/e2e/framework/httpexpect/request.go
index 0ae85dd79..4daba136e 100644
--- a/test/e2e/framework/httpexpect/request.go
+++ b/test/e2e/framework/httpexpect/request.go
@@ -93,7 +93,7 @@ func (h *HTTPRequest) ForceResolve(ip string, port uint16) *HTTPRequest {
 		return h
 	}
 	newTransport := oldTransport.Clone()
-	newTransport.DialContext = func(ctx context.Context, network, addr string) (net.Conn, error) {
+	newTransport.DialContext = func(ctx context.Context, network, _ string) (net.Conn, error) {
 		return dialer.DialContext(ctx, network, resolveAddr)
 	}
 	h.client.Transport = newTransport
diff --git a/test/e2e/tcpudp/tcp.go b/test/e2e/tcpudp/tcp.go
index f06d6c9a3..856184d18 100644
--- a/test/e2e/tcpudp/tcp.go
+++ b/test/e2e/tcpudp/tcp.go
@@ -133,7 +133,7 @@ var _ = framework.IngressNginxDescribe("[TCP] tcp-services", func() {
 		// Execute the test. Use the `external name` service to resolve a domain name.
 		resolver := net.Resolver{
 			PreferGo: true,
-			Dial: func(ctx context.Context, network, address string) (net.Conn, error) {
+			Dial: func(ctx context.Context, _, _ string) (net.Conn, error) {
 				d := net.Dialer{}
 				return d.DialContext(ctx, "tcp", fmt.Sprintf("%v:5353", ip))
 			},

From 7a2e4b19a1ac1ea84664c1fad6ecaeb579a60321 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 7 Mar 2024 05:52:06 -0800
Subject: [PATCH 1192/1641] Bump github.com/prometheus/common from 0.49.0 to
 0.50.0 (#11075)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.49.0 to 0.50.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.49.0...v0.50.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 14 +++++++-------
 go.sum | 28 ++++++++++++++--------------
 2 files changed, 21 insertions(+), 21 deletions(-)

diff --git a/go.mod b/go.mod
index 5302136d3..45c8cd352 100644
--- a/go.mod
+++ b/go.mod
@@ -19,13 +19,13 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.0
 	github.com/prometheus/client_model v0.6.0
-	github.com/prometheus/common v0.49.0
+	github.com/prometheus/common v0.50.0
 	github.com/spf13/cobra v1.8.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.9.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.20.0
+	golang.org/x/crypto v0.21.0
 	google.golang.org/grpc v1.62.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -104,17 +104,17 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20240123142251-f86470692795 // indirect
 	golang.org/x/mod v0.15.0 // indirect
-	golang.org/x/net v0.21.0 // indirect
-	golang.org/x/oauth2 v0.17.0 // indirect
+	golang.org/x/net v0.22.0 // indirect
+	golang.org/x/oauth2 v0.18.0 // indirect
 	golang.org/x/sync v0.6.0 // indirect
-	golang.org/x/sys v0.17.0 // indirect
-	golang.org/x/term v0.17.0 // indirect
+	golang.org/x/sys v0.18.0 // indirect
+	golang.org/x/term v0.18.0 // indirect
 	golang.org/x/text v0.14.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.18.0 // indirect
 	google.golang.org/appengine v1.6.8 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20240221002015-b0ce06bbee7c // indirect
-	google.golang.org/protobuf v1.32.0 // indirect
+	google.golang.org/protobuf v1.33.0 // indirect
 	gopkg.in/evanphx/json-patch.v5 v5.9.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index dd490e7ec..3dba34da9 100644
--- a/go.sum
+++ b/go.sum
@@ -323,8 +323,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.49.0 h1:ToNTdK4zSnPVJmh698mGFkDor9wBI/iGaJy5dbH1EgI=
-github.com/prometheus/common v0.49.0/go.mod h1:Kxm+EULxRbUkjGU6WFsQqo3ORzB4tyKvlWFOE9mB2sE=
+github.com/prometheus/common v0.50.0 h1:YSZE6aa9+luNa2da6/Tik0q0A5AbR+U003TItK57CPQ=
+github.com/prometheus/common v0.50.0/go.mod h1:wHFBCEVWVmHMUpg7pYcOm2QUR/ocQdYSJVQJKnHc3xQ=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
@@ -401,8 +401,8 @@ golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.20.0 h1:jmAMJJZXr5KiCw05dfYK9QnqaqKLYXijU23lsEdcQqg=
-golang.org/x/crypto v0.20.0/go.mod h1:Xwo95rrVNIoSMx9wa1JroENMToLWn3RNVrTBpLHgZPQ=
+golang.org/x/crypto v0.21.0 h1:X31++rzVUdKhX5sWmSOFZxx8UW/ldWx55cbf08iNAMA=
+golang.org/x/crypto v0.21.0/go.mod h1:0BP7YvVV9gBbVKyeTG0Gyn+gZm94bibOW5BjDEYAOMs=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -472,16 +472,16 @@ golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.21.0 h1:AQyQV4dYCvJ7vGmJyKki9+PBdyvhkSd8EIx/qb0AYv4=
-golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
+golang.org/x/net v0.22.0 h1:9sGLhx7iRIHEiX0oAJ3MRZMUCElJgy7Br1nO+AMN3Tc=
+golang.org/x/net v0.22.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.17.0 h1:6m3ZPmLEFdVxKKWnKq4VqZ60gutO35zm+zrAHVmHyDQ=
-golang.org/x/oauth2 v0.17.0/go.mod h1:OzPDGQiuQMguemayvdylqddI7qcD9lnSDb+1FiwQ5HA=
+golang.org/x/oauth2 v0.18.0 h1:09qnuIAgzdx1XplqJvW6CQqMCtGZykZWcXzPMPUusvI=
+golang.org/x/oauth2 v0.18.0/go.mod h1:Wf7knwG0MPoWIMMBgFlEaSUDaKskp0dCfrlJRJXbBi8=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -543,12 +543,12 @@ golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.17.0 h1:25cE3gD+tdBA7lp7QfhuV+rJiE9YXTcS3VG1SqssI/Y=
-golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.18.0 h1:DBdB3niSjOA/O0blCZBqDefyWNYveAYMNF1Wum0DYQ4=
+golang.org/x/sys v0.18.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/term v0.17.0 h1:mkTF7LCd6WGJNL3K1Ad7kwxNfYAW6a8a8QqtMblp/4U=
-golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk=
+golang.org/x/term v0.18.0 h1:FcHjZXDMxI8mM3nwhX9HlKop4C0YQvCVCdwYl2wOtE8=
+golang.org/x/term v0.18.0/go.mod h1:ILwASektA3OnRv7amZ1xhE/KTR+u50pbXfZ03+6Nx58=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -700,8 +700,8 @@ google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGj
 google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.32.0 h1:pPC6BG5ex8PDFnkbrGU3EixyhKcQ2aDuBS36lqK/C7I=
-google.golang.org/protobuf v1.32.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
+google.golang.org/protobuf v1.33.0 h1:uNO2rsAINq/JlFpSdYEKIZ0uKD/R9cpdv0T+yoGwGmI=
+google.golang.org/protobuf v1.33.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=

From 43595fc5b700fa1a8a08829b4700e69ce2d43fe9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 7 Mar 2024 07:00:53 -0800
Subject: [PATCH 1193/1641] Bump the all group with 1 update (#11072)

Bumps the all group with 1 update: [google.golang.org/grpc](https://github.com/grpc/grpc-go).


Updates `google.golang.org/grpc` from 1.62.0 to 1.62.1
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.62.0...v1.62.1)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 45c8cd352..4d9378a7b 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.21.0
-	google.golang.org/grpc v1.62.0
+	google.golang.org/grpc v1.62.1
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index 3dba34da9..38259da21 100644
--- a/go.sum
+++ b/go.sum
@@ -684,8 +684,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.62.0 h1:HQKZ/fa1bXkX1oFOvSjmZEUL8wLSaZTjCcLAlmZRtdk=
-google.golang.org/grpc v1.62.0/go.mod h1:IWTG0VlJLCh1SkC58F7np9ka9mx/WNkjl4PGJaiq+QE=
+google.golang.org/grpc v1.62.1 h1:B4n+nfKzOICUXMgyrNd19h/I9oH0L1pizfk1d4zSgTk=
+google.golang.org/grpc v1.62.1/go.mod h1:IWTG0VlJLCh1SkC58F7np9ka9mx/WNkjl4PGJaiq+QE=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From f3a4f071747e4ca48cb6a7cad4c5ccca38520322 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 7 Mar 2024 08:01:56 -0800
Subject: [PATCH 1194/1641] Bump the all group with 1 update (#11073)

Bumps the all group with 1 update: [actions/add-to-project](https://github.com/actions/add-to-project).


Updates `actions/add-to-project` from 0.5.0 to 0.6.0
- [Release notes](https://github.com/actions/add-to-project/releases)
- [Commits](https://github.com/actions/add-to-project/compare/31b3f3ccdc584546fc445612dec3f38ff5edb41c...0609a2702eefb44781da00f8e04901d6e5cd2b92)

---
updated-dependencies:
- dependency-name: actions/add-to-project
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/project.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/project.yml b/.github/workflows/project.yml
index 95537e16c..2d398e24c 100644
--- a/.github/workflows/project.yml
+++ b/.github/workflows/project.yml
@@ -13,7 +13,7 @@ jobs:
       repository-projects: write
       issues: write
     steps:
-      - uses: actions/add-to-project@31b3f3ccdc584546fc445612dec3f38ff5edb41c # v0.5.0
+      - uses: actions/add-to-project@0609a2702eefb44781da00f8e04901d6e5cd2b92 # v0.6.0
         with:
           project-url: https://github.com/orgs/kubernetes/projects/104
           github-token: ${{ secrets.PROJECT_WRITER }}

From 7d12628208b9652f80d042e32ff4d266a7db9eb5 Mon Sep 17 00:00:00 2001
From: bossm8 <91630231+bossm8@users.noreply.github.com>
Date: Fri, 8 Mar 2024 21:32:40 +0100
Subject: [PATCH 1195/1641] [mTLS] Fix acme verfication when mTLS and Client CN
 verification is enabled (#11062)

---
 rootfs/etc/nginx/template/nginx.tmpl | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index d58be2880..381fc134c 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -985,8 +985,10 @@ stream {
 
         {{ if not ( empty $server.CertificateAuth.MatchCN ) }}
         {{ if gt (len $server.CertificateAuth.MatchCN) 0 }}
-        if ( $ssl_client_s_dn !~ {{ $server.CertificateAuth.MatchCN }} ) {
-            return 403 "client certificate unauthorized";
+        location ~ ^/(?!(\.well-known/acme-challenge)) {
+            if ( $ssl_client_s_dn !~ {{ $server.CertificateAuth.MatchCN }} ) {
+                return 403 "client certificate unauthorized";
+            }
         }
         {{ end }}
         {{ end }}

From 157e53b814861f57f41baf0cf4a90ec1daa0f039 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 8 Mar 2024 12:35:08 -0800
Subject: [PATCH 1196/1641] Bump github.com/onsi/ginkgo/v2 from 2.15.0 to
 2.16.0 (#11076)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.15.0 to 2.16.0.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.15.0...v2.16.0)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 4d9378a7b..6e3723b15 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.15.0
+	github.com/onsi/ginkgo/v2 v2.16.0
 	github.com/opencontainers/runc v1.1.12
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.0
diff --git a/go.sum b/go.sum
index 38259da21..5a40ced85 100644
--- a/go.sum
+++ b/go.sum
@@ -288,8 +288,8 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.15.0 h1:79HwNRBAZHOEwrczrgSOPy+eFTTlIGELKy5as+ClttY=
-github.com/onsi/ginkgo/v2 v2.15.0/go.mod h1:HlxMHtYF57y6Dpf+mc5529KKmSq9h2FpCF+/ZkwUxKM=
+github.com/onsi/ginkgo/v2 v2.16.0 h1:7q1w9frJDzninhXxjZd+Y/x54XNjG/UlRLIYPZafsPM=
+github.com/onsi/ginkgo/v2 v2.16.0/go.mod h1:llBI3WDLL9Z6taip6f33H76YcWtJv+7R3HigUjbIBOs=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.30.0 h1:hvMK7xYz4D3HapigLTeGdId/NcfQx1VHMJc60ew99+8=

From 9c384c7eb85b9833bad491e14fffcfe3b9c59ee5 Mon Sep 17 00:00:00 2001
From: bossm8 <91630231+bossm8@users.noreply.github.com>
Date: Sat, 9 Mar 2024 01:06:47 +0100
Subject: [PATCH 1197/1641] Undo #11062 since it breaks the nginx config
 (#11082)

* [mTLS] Fix acme verfication when mTLS and Client CN verification is enabled

* revert mTLS location excluding acme-challenge since each location will match ultimately resulting in 404 for all request paths
---
 rootfs/etc/nginx/template/nginx.tmpl | 6 ++----
 1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 381fc134c..d58be2880 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -985,10 +985,8 @@ stream {
 
         {{ if not ( empty $server.CertificateAuth.MatchCN ) }}
         {{ if gt (len $server.CertificateAuth.MatchCN) 0 }}
-        location ~ ^/(?!(\.well-known/acme-challenge)) {
-            if ( $ssl_client_s_dn !~ {{ $server.CertificateAuth.MatchCN }} ) {
-                return 403 "client certificate unauthorized";
-            }
+        if ( $ssl_client_s_dn !~ {{ $server.CertificateAuth.MatchCN }} ) {
+            return 403 "client certificate unauthorized";
         }
         {{ end }}
         {{ end }}

From b5c447612c48e9d517e5c6dd4ae0f0a176203cde Mon Sep 17 00:00:00 2001
From: Ramon Borges <ramonboorges@gmail.com>
Date: Mon, 11 Mar 2024 22:14:25 +0100
Subject: [PATCH 1198/1641] Chart: Deploy `PodDisruptionBudget` with KEDA.
 (#11032)

* feat: deploy PDB if Keda is enabled and the minimum amount of replicas is greater than 1

* feat: add the corresponding unit-test to check PDB deployment with Keda

* chore: rename the test of PDB to follow suggested pattern

* chore: update the test-case suite name to the new format

* Update charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

---------

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 .../controller-poddisruptionbudget.yaml       |  8 ++-
 .../controller-poddisruptionbudget_test.yaml  | 65 +++++++++++++++++++
 2 files changed, 72 insertions(+), 1 deletion(-)
 create mode 100644 charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml

diff --git a/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml b/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
index 8cb7d4b97..fe142a346 100644
--- a/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
+++ b/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
@@ -1,4 +1,10 @@
-{{- if or (and .Values.controller.autoscaling.enabled (gt (.Values.controller.autoscaling.minReplicas | int) 1)) (and (not .Values.controller.autoscaling.enabled) (gt (.Values.controller.replicaCount | int) 1)) }}
+{{- $replicas := .Values.controller.replicaCount }}
+{{- if .Values.controller.autoscaling.enabled }}
+{{- $replicas = .Values.controller.autoscaling.minReplicas }}
+{{- else if .Values.controller.keda.enabled }}
+{{- $replicas = .Values.controller.keda.minReplicas }}
+{{- end }}
+{{- if gt ($replicas | int) 1 }}
 apiVersion: {{ ternary "policy/v1" "policy/v1beta1" (semverCompare ">=1.21.0-0" .Capabilities.KubeVersion.Version) }}
 kind: PodDisruptionBudget
 metadata:
diff --git a/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml b/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml
new file mode 100644
index 000000000..3055d5351
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml
@@ -0,0 +1,65 @@
+suite: Controller > PodDisruptionBudget
+templates:
+  - controller-poddisruptionbudget.yaml
+
+tests:
+  - it: should create a PodDisruptionBudget if `controller.replicaCount` is greater than 1
+    set:
+      controller.replicaCount: 2
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: PodDisruptionBudget
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller
+
+  - it: should not create a PodDisruptionBudget if `controller.replicaCount` is less than or equal 1
+    set:
+      controller.replicaCount: 1
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a PodDisruptionBudget if `controller.autoscaling.enabled` is true and `controller.autoscaling.minReplicas` is greater than 1
+    set:
+      controller.autoscaling.enabled: true
+      controller.autoscaling.minReplicas: 2
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: PodDisruptionBudget
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller
+
+  - it: should not create a PodDisruptionBudget if `controller.autoscaling.enabled` is true and `controller.autoscaling.minReplicas` is less than or equal 1
+    set:
+      controller.autoscaling.enabled: true
+      controller.autoscaling.minReplicas: 1
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a PodDisruptionBudget if `controller.keda.enabled` is true and `controller.keda.minReplicas` is greater than 1
+    set:
+      controller.keda.enabled: true
+      controller.keda.minReplicas: 2
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: PodDisruptionBudget
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller
+
+  - it: should not create a PodDisruptionBudget if `controller.keda.enabled` is true and `controller.keda.minReplicas` is less than or equal 1
+    set:
+      controller.keda.enabled: true
+      controller.keda.minReplicas: 1
+    asserts:
+      - hasDocuments:
+          count: 0

From 2894b8a060fd50a3b991f9f084e0cbc5bae4133c Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 12 Mar 2024 14:39:07 +0100
Subject: [PATCH 1199/1641] Chart: Improve IngressClass documentation. (#11104)

---
 charts/ingress-nginx/README.md                | 11 +++----
 .../templates/controller-ingressclass.yaml    |  2 --
 charts/ingress-nginx/values.yaml              | 29 ++++++++++++-------
 3 files changed, 25 insertions(+), 17 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 38fa071c5..faab94c2d 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -330,11 +330,12 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.image.tag | string | `"v1.10.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
-| controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller-value of the controller that is processing this ingressClass |
-| controller.ingressClassResource.default | bool | `false` | Is this the default ingressClass for the cluster |
-| controller.ingressClassResource.enabled | bool | `true` | Is this ingressClass enabled or not |
-| controller.ingressClassResource.name | string | `"nginx"` | Name of the ingressClass |
-| controller.ingressClassResource.parameters | object | `{}` | Parameters is a link to a custom resource containing additional configuration for the controller. This is optional if the controller does not require extra parameters. |
+| controller.ingressClassResource | object | `{"controllerValue":"k8s.io/ingress-nginx","default":false,"enabled":true,"name":"nginx","parameters":{}}` | This section refers to the creation of the IngressClass resource. IngressClasses are immutable and cannot be changed after creation. We do not support namespaced IngressClasses, yet, so a ClusterRole and a ClusterRoleBinding is required. |
+| controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller of the IngressClass. An Ingress Controller looks for IngressClasses it should reconcile by this value. This value is also being set as the `--controller-class` argument of this Ingress Controller. Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class |
+| controller.ingressClassResource.default | bool | `false` | If true, Ingresses without `ingressClassName` get assigned to this IngressClass on creation. Ingress creation gets rejected if there are multiple default IngressClasses. Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#default-ingress-class |
+| controller.ingressClassResource.enabled | bool | `true` | Create the IngressClass or not |
+| controller.ingressClassResource.name | string | `"nginx"` | Name of the IngressClass |
+| controller.ingressClassResource.parameters | object | `{}` | A link to a custom resource containing additional configuration for the controller. This is optional if the controller consuming this IngressClass does not require additional parameters. Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class |
 | controller.keda.apiVersion | string | `"keda.sh/v1alpha1"` |  |
 | controller.keda.behavior | object | `{}` |  |
 | controller.keda.cooldownPeriod | int | `300` |  |
diff --git a/charts/ingress-nginx/templates/controller-ingressclass.yaml b/charts/ingress-nginx/templates/controller-ingressclass.yaml
index 9492784a2..f28c116ee 100644
--- a/charts/ingress-nginx/templates/controller-ingressclass.yaml
+++ b/charts/ingress-nginx/templates/controller-ingressclass.yaml
@@ -1,6 +1,4 @@
 {{- if .Values.controller.ingressClassResource.enabled -}}
-# We don't support namespaced ingressClass yet
-# So a ClusterRole and a ClusterRoleBinding is required
 apiVersion: networking.k8s.io/v1
 kind: IngressClass
 metadata:
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 3ec2e4c33..50f958562 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -110,21 +110,30 @@ controller:
     enabled: false
   # -- Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader'
   electionID: ""
-  ## This section refers to the creation of the IngressClass resource
-  ## IngressClass resources are supported since k8s >= 1.18 and required since k8s >= 1.19
+  # -- This section refers to the creation of the IngressClass resource.
+  # IngressClasses are immutable and cannot be changed after creation.
+  # We do not support namespaced IngressClasses, yet, so a ClusterRole and a ClusterRoleBinding is required.
   ingressClassResource:
-    # -- Name of the ingressClass
+    # -- Name of the IngressClass
     name: nginx
-    # -- Is this ingressClass enabled or not
+    # -- Create the IngressClass or not
     enabled: true
-    # -- Is this the default ingressClass for the cluster
+    # -- If true, Ingresses without `ingressClassName` get assigned to this IngressClass on creation.
+    # Ingress creation gets rejected if there are multiple default IngressClasses.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#default-ingress-class
     default: false
-    # -- Controller-value of the controller that is processing this ingressClass
-    controllerValue: "k8s.io/ingress-nginx"
-    # -- Parameters is a link to a custom resource containing additional
-    # configuration for the controller. This is optional if the controller
-    # does not require extra parameters.
+    # -- Controller of the IngressClass. An Ingress Controller looks for IngressClasses it should reconcile by this value.
+    # This value is also being set as the `--controller-class` argument of this Ingress Controller.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class
+    controllerValue: k8s.io/ingress-nginx
+    # -- A link to a custom resource containing additional configuration for the controller.
+    # This is optional if the controller consuming this IngressClass does not require additional parameters.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class
     parameters: {}
+    # parameters:
+    #   apiGroup: k8s.example.com
+    #   kind: IngressParameters
+    #   name: external-lb
   # -- For backwards compatibility with ingress.class annotation, use ingressClass.
   # Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation
   ingressClass: nginx

From aa5deedae3dc9d55fd12f482d92c1cb86337cc0a Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 12 Mar 2024 14:41:27 +0100
Subject: [PATCH 1200/1641] Chart: Add Gacko to maintainers. Again. (#11107)

---
 charts/ingress-nginx/Chart.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 1bd30b31d..3e977530f 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -13,6 +13,7 @@ keywords:
 - nginx
 kubeVersion: '>=1.20.0-0'
 maintainers:
+- name: Gacko
 - name: rikatz
 - name: strongjz
 - name: tao12345666333

From 9480cde724d167c3246563586b5aaae86d26de00 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 12 Mar 2024 14:43:51 +0100
Subject: [PATCH 1201/1641] Chart: Align HPA & KEDA conditions. (#11110)

---
 .../templates/controller-deployment.yaml      |  2 +-
 .../templates/controller-keda.yaml            |  2 +-
 .../controller-poddisruptionbudget.yaml       |  8 +++++--
 .../tests/controller-deployment_test.yaml     | 22 +++++++++++++++++++
 .../tests/controller-hpa_test.yaml            | 18 +++++++++++++--
 .../tests/controller-keda_test.yaml           | 18 +++++++++++++--
 .../controller-poddisruptionbudget_test.yaml  |  8 +++++++
 7 files changed, 70 insertions(+), 8 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 5ff45585b..879802779 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -19,7 +19,7 @@ spec:
     matchLabels:
       {{- include "ingress-nginx.selectorLabels" . | nindent 6 }}
       app.kubernetes.io/component: controller
-  {{- if not (or .Values.controller.autoscaling.enabled .Values.controller.keda.enabled) }}
+  {{- if eq .Values.controller.autoscaling.enabled .Values.controller.keda.enabled }}
   replicas: {{ .Values.controller.replicaCount }}
   {{- end }}
   revisionHistoryLimit: {{ .Values.revisionHistoryLimit }}
diff --git a/charts/ingress-nginx/templates/controller-keda.yaml b/charts/ingress-nginx/templates/controller-keda.yaml
index 6ff9c0b22..24d30fa0a 100644
--- a/charts/ingress-nginx/templates/controller-keda.yaml
+++ b/charts/ingress-nginx/templates/controller-keda.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.keda.enabled (eq .Values.controller.kind "Deployment") -}}
+{{- if and (eq .Values.controller.kind "Deployment") .Values.controller.keda.enabled (not .Values.controller.autoscaling.enabled) -}}
 apiVersion: {{ .Values.controller.keda.apiVersion }}
 kind: ScaledObject
 metadata:
diff --git a/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml b/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
index fe142a346..8e0181f9f 100644
--- a/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
+++ b/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
@@ -1,7 +1,10 @@
+# PDB is not supported for DaemonSets.
+# https://github.com/kubernetes/kubernetes/issues/108124
+{{- if eq .Values.controller.kind "Deployment" }}
 {{- $replicas := .Values.controller.replicaCount }}
-{{- if .Values.controller.autoscaling.enabled }}
+{{- if and .Values.controller.autoscaling.enabled (not .Values.controller.keda.enabled) }}
 {{- $replicas = .Values.controller.autoscaling.minReplicas }}
-{{- else if .Values.controller.keda.enabled }}
+{{- else if and .Values.controller.keda.enabled (not .Values.controller.autoscaling.enabled) }}
 {{- $replicas = .Values.controller.keda.minReplicas }}
 {{- end }}
 {{- if gt ($replicas | int) 1 }}
@@ -30,3 +33,4 @@ spec:
   maxUnavailable: {{ .Values.controller.maxUnavailable }}
   {{- end }}
 {{- end }}
+{{- end }}
diff --git a/charts/ingress-nginx/tests/controller-deployment_test.yaml b/charts/ingress-nginx/tests/controller-deployment_test.yaml
index 86d5828c0..3af5ba981 100644
--- a/charts/ingress-nginx/tests/controller-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/controller-deployment_test.yaml
@@ -21,6 +21,28 @@ tests:
           path: spec.replicas
           value: 3
 
+  - it: should create a Deployment without replicas if `controller.autoscaling.enabled` is true
+    set:
+      controller.autoscaling.enabled: true
+    asserts:
+      - notExists:
+          path: spec.replicas
+
+  - it: should create a Deployment without replicas if `controller.keda.enabled` is true
+    set:
+      controller.keda.enabled: true
+    asserts:
+      - notExists:
+          path: spec.replicas
+
+  - it: should create a Deployment with replicas if `controller.autoscaling.enabled` is true and `controller.keda.enabled` is true
+    set:
+      controller.autoscaling.enabled: true
+      controller.keda.enabled: true
+    asserts:
+      - exists:
+          path: spec.replicas
+
   - it: should create a Deployment with argument `--enable-metrics=false` if `controller.metrics.enabled` is false
     set:
       controller.metrics.enabled: false
diff --git a/charts/ingress-nginx/tests/controller-hpa_test.yaml b/charts/ingress-nginx/tests/controller-hpa_test.yaml
index 7cd668509..869d3a690 100644
--- a/charts/ingress-nginx/tests/controller-hpa_test.yaml
+++ b/charts/ingress-nginx/tests/controller-hpa_test.yaml
@@ -3,9 +3,8 @@ templates:
   - controller-hpa.yaml
 
 tests:
-  - it: should create a HPA if `controller.kind` is "Deployment" and `controller.autoscaling.enabled` is true
+  - it: should create an HPA if `controller.autoscaling.enabled` is true
     set:
-      controller.kind: Deployment
       controller.autoscaling.enabled: true
     asserts:
       - hasDocuments:
@@ -15,3 +14,18 @@ tests:
       - equal:
           path: metadata.name
           value: RELEASE-NAME-ingress-nginx-controller
+
+  - it: should not create an HPA if `controller.autoscaling.enabled` is true and `controller.keda.enabled` is true
+    set:
+      controller.autoscaling.enabled: true
+      controller.keda.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should not create an HPA if `controller.kind` is "DaemonSet"
+    set:
+      controller.kind: DaemonSet
+    asserts:
+      - hasDocuments:
+          count: 0
diff --git a/charts/ingress-nginx/tests/controller-keda_test.yaml b/charts/ingress-nginx/tests/controller-keda_test.yaml
index e6ca8dbfe..800283483 100644
--- a/charts/ingress-nginx/tests/controller-keda_test.yaml
+++ b/charts/ingress-nginx/tests/controller-keda_test.yaml
@@ -3,9 +3,8 @@ templates:
   - controller-keda.yaml
 
 tests:
-  - it: should create a ScaledObject if `controller.kind` is "Deployment" and `controller.keda.enabled` is true
+  - it: should create a ScaledObject if `controller.keda.enabled` is true
     set:
-      controller.kind: Deployment
       controller.keda.enabled: true
     asserts:
       - hasDocuments:
@@ -15,3 +14,18 @@ tests:
       - equal:
           path: metadata.name
           value: RELEASE-NAME-ingress-nginx-controller
+
+  - it: should not create a ScaledObject if `controller.keda.enabled` is true and `controller.autoscaling.enabled` is true
+    set:
+      controller.keda.enabled: true
+      controller.autoscaling.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should not create a ScaledObject if `controller.kind` is "DaemonSet"
+    set:
+      controller.kind: DaemonSet
+    asserts:
+      - hasDocuments:
+          count: 0
diff --git a/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml b/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml
index 3055d5351..48b4fafcc 100644
--- a/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml
+++ b/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml
@@ -63,3 +63,11 @@ tests:
     asserts:
       - hasDocuments:
           count: 0
+
+  - it: should not create a PodDisruptionBudget if `controller.autoscaling.enabled` is true and `controller.keda.enabled` is true
+    set:
+      controller.autoscaling.enabled: true
+      controller.keda.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 0

From a2f67e2ba6962840979e056cff630947da24f805 Mon Sep 17 00:00:00 2001
From: Luca Berneking <luca@berneking.net>
Date: Tue, 12 Mar 2024 14:51:08 +0100
Subject: [PATCH 1202/1641] Fix admission controller logging of `admissionTime`
 and `testedConfigurationSize` (#11089)

---
 internal/ingress/metric/collectors/admission.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/internal/ingress/metric/collectors/admission.go b/internal/ingress/metric/collectors/admission.go
index 7b84325c0..456f56963 100644
--- a/internal/ingress/metric/collectors/admission.go
+++ b/internal/ingress/metric/collectors/admission.go
@@ -151,7 +151,7 @@ func (am *AdmissionCollector) SetAdmissionMetrics(testedIngressLength, testedIng
 		testedIngressTime,
 		renderingIngressLength,
 		renderingIngressTime,
-		ByteFormat(int64(testedConfigurationSize)),
 		admissionTime,
+		ByteFormat(int64(testedConfigurationSize)),
 	)
 }

From a00a1499a0f3ea63da031698ad48e815d7f8eb99 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 13 Mar 2024 16:51:31 -0700
Subject: [PATCH 1203/1641] Bump google.golang.org/protobuf in
 /images/kube-webhook-certgen/rootfs (#11120)

Bumps google.golang.org/protobuf from 1.32.0 to 1.33.0.

---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 images/kube-webhook-certgen/rootfs/go.mod |  2 +-
 images/kube-webhook-certgen/rootfs/go.sum | 42 ++++++++++++++++++++++-
 2 files changed, 42 insertions(+), 2 deletions(-)

diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 9cb4bf263..de1d86bdd 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -46,7 +46,7 @@ require (
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.18.0 // indirect
 	google.golang.org/appengine v1.6.8 // indirect
-	google.golang.org/protobuf v1.32.0 // indirect
+	google.golang.org/protobuf v1.33.0 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 966d69209..5f88f3da3 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -3,16 +3,23 @@ github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSs
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/emicklei/go-restful/v3 v3.11.3 h1:yagOQz/38xJmcNeZJtrUcKjkHRltIaIFXKWeG1SkWGE=
+github.com/emicklei/go-restful/v3 v3.11.3/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
 github.com/evanphx/json-patch v5.9.0+incompatible h1:fBXyNpNMuTTDdquAq/uisOr2lShz4oaXpDTX2bLe7ls=
+github.com/evanphx/json-patch v5.9.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/go-logr/logr v1.4.1 h1:pKouT5E8xu9zeFC39JXRDukb6JFQPXM5p5I91188VAQ=
+github.com/go-logr/logr v1.4.1/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
 github.com/go-openapi/jsonpointer v0.20.2 h1:mQc3nmndL8ZBzStEo3JYF8wzmeWffDH4VbXz58sAx6Q=
+github.com/go-openapi/jsonpointer v0.20.2/go.mod h1:bHen+N0u1KEO3YlmqOjTT9Adn1RfD91Ar825/PuiRVs=
 github.com/go-openapi/jsonreference v0.20.4 h1:bKlDxQxQJgwpUSgOENiMPzCTBVuc7vTdXSSgNeAhojU=
+github.com/go-openapi/jsonreference v0.20.4/go.mod h1:5pZJyJP2MnYCpoeoMAql78cCHauHj0V9Lhc506VOpw4=
 github.com/go-openapi/swag v0.22.9 h1:XX2DssF+mQKM2DHsbgZK74y/zj4mo9I99+89xUmuZCE=
+github.com/go-openapi/swag v0.22.9/go.mod h1:3/OXnFfnMAwBD099SwYRk7GD3xOrr1iL7d/XNLXVVwE=
 github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 h1:tfuBGBXKqDEevZMzYi5KSi8KkcZtzBcTgAUUtapy0OI=
 github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572/go.mod h1:9Pwr4B2jHnOSGXyyzV8ROjYa2ojvAY6HCGYYfMoC3Ls=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
+github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/golang/protobuf v1.5.3 h1:KhyjKVUg7Usr/dYsdSqoFveMYd5ko72D+zANwlG1mmg=
 github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/google/gnostic-models v0.6.8 h1:yo/ABAfM5IMRsS1VnXjTBvUb61tFIHozhlYvRgGre9I=
@@ -25,8 +32,11 @@ github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/
 github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
 github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/pprof v0.0.0-20240225044709-fd706174c886 h1:JSJUTZTQT1Gzb2ROdAKOY3HwzBYcclS2GgumhMfHqjw=
+github.com/google/pprof v0.0.0-20240225044709-fd706174c886/go.mod h1:czg5+yv1E0ZGTi6S6vVK1mke0fV+FaUhNGcd6VRS9Ik=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
+github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4=
+github.com/imdario/mergo v0.3.16/go.mod h1:WBLT9ZmE3lPoWsEzCh9LPo3TiwVN+ZKEjmz+hD27ysY=
 github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
 github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
@@ -51,12 +61,15 @@ github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8m
 github.com/onrik/logrus v0.11.0 h1:pu+BCaWL36t0yQaj/2UHK2erf88dwssAKOT51mxPUVs=
 github.com/onrik/logrus v0.11.0/go.mod h1:fO2vlZwIdti6PidD3gV5YKt9Lq5ptpnP293RAe1ITwk=
 github.com/onsi/ginkgo/v2 v2.15.0 h1:79HwNRBAZHOEwrczrgSOPy+eFTTlIGELKy5as+ClttY=
+github.com/onsi/ginkgo/v2 v2.15.0/go.mod h1:HlxMHtYF57y6Dpf+mc5529KKmSq9h2FpCF+/ZkwUxKM=
 github.com/onsi/gomega v1.30.0 h1:hvMK7xYz4D3HapigLTeGdId/NcfQx1VHMJc60ew99+8=
+github.com/onsi/gomega v1.30.0/go.mod h1:9sxs+SwGrKI0+PWe4Fxa9tFQQBG5xSsSbMXOI8PPpoQ=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
+github.com/rogpeppe/go-internal v1.11.0/go.mod h1:ddIwULY96R17DhadqLgMfk9H9tvdUzkipdSkR5nkCZA=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ=
 github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
@@ -77,44 +90,67 @@ github.com/tidwall/pretty v1.2.0 h1:RWIZEg2iJ8/g6fDDYzMpobmaoGh5OLl4AXtGUGPcqCs=
 github.com/tidwall/pretty v1.2.0/go.mod h1:ITEVvHYasfjBbM0u2Pg8T2nJnzm8xPwvNhhsoaGGjNU=
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
+github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
+golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
+golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
 golang.org/x/net v0.21.0 h1:AQyQV4dYCvJ7vGmJyKki9+PBdyvhkSd8EIx/qb0AYv4=
+golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
 golang.org/x/oauth2 v0.17.0 h1:6m3ZPmLEFdVxKKWnKq4VqZ60gutO35zm+zrAHVmHyDQ=
+golang.org/x/oauth2 v0.17.0/go.mod h1:OzPDGQiuQMguemayvdylqddI7qcD9lnSDb+1FiwQ5HA=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.17.0 h1:25cE3gD+tdBA7lp7QfhuV+rJiE9YXTcS3VG1SqssI/Y=
+golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
+golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.17.0 h1:mkTF7LCd6WGJNL3K1Ad7kwxNfYAW6a8a8QqtMblp/4U=
+golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
+golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
 golang.org/x/text v0.14.0 h1:ScX5w1eTa3QqT8oi6+ziP7dTV1S2+ALU0bI+0zXKWiQ=
 golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
 golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
+golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
 golang.org/x/tools v0.18.0 h1:k8NLag8AGHnn+PHbl7g43CtqZAwG60vZkLqgyZgIHgQ=
+golang.org/x/tools v0.18.0/go.mod h1:GL7B4CwcLLeo59yx/9UWWuNOW1n3VZ4f5axWfML7Lcg=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/appengine v1.6.8 h1:IhEN5q69dyKagZPYMSdIjS2HqprW324FRQZJcGqPAsM=
+google.golang.org/appengine v1.6.8/go.mod h1:1jJ3jBArFh5pcgW8gCtRJnepW8FzD1V44FJffLiz/Ds=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.32.0 h1:pPC6BG5ex8PDFnkbrGU3EixyhKcQ2aDuBS36lqK/C7I=
+google.golang.org/protobuf v1.33.0 h1:uNO2rsAINq/JlFpSdYEKIZ0uKD/R9cpdv0T+yoGwGmI=
+google.golang.org/protobuf v1.33.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
@@ -133,12 +169,16 @@ k8s.io/apimachinery v0.29.2/go.mod h1:6HVkd1FwxIagpYrHSwJlQqZI3G9LfYWRPAkUvLnXTK
 k8s.io/client-go v0.29.2 h1:FEg85el1TeZp+/vYJM7hkDlSTFZ+c5nnK44DJ4FyoRg=
 k8s.io/client-go v0.29.2/go.mod h1:knlvFZE58VpqbQpJNbCbctTVXcd35mMyAAwBdpt4jrA=
 k8s.io/klog/v2 v2.120.1 h1:QXU6cPEOIslTGvZaXvFWiP9VKyeet3sawzTOvdXb4Vw=
+k8s.io/klog/v2 v2.120.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
 k8s.io/kube-aggregator v0.29.2 h1:z9qJn5wlGmGaX6EfM7OEhr6fq6SBjDKR6tPRZ/qgxeY=
 k8s.io/kube-aggregator v0.29.2/go.mod h1:QEuwzmMJJsg0eg1Gv+u4cWcYeJG2+8vN8/nTXBzopUo=
 k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b h1:1dzw/KqgSPod72SUp2tuTOmK33TlY2fHlrVU2M9VrOM=
+k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b/go.mod h1:Pa1PvrP7ACSkuX6I7KYomY6cmMA0Tx86waBhDUgoKPw=
 k8s.io/utils v0.0.0-20240102154912-e7106e64919e h1:eQ/4ljkx21sObifjzXwlPKpdGLrCfRziVtos3ofG/sQ=
+k8s.io/utils v0.0.0-20240102154912-e7106e64919e/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/structured-merge-diff/v4 v4.4.1 h1:150L+0vs/8DA78h1u02ooW1/fFq/Lwr+sGiqlzvrtq4=
 sigs.k8s.io/structured-merge-diff/v4 v4.4.1/go.mod h1:N8hJocpFajUSSeSJ9bOZ77VzejKZaXsTtZo4/u7Io08=
 sigs.k8s.io/yaml v1.4.0 h1:Mk1wCc2gy/F0THH0TAp1QYyJNzRm2KCLy3o5ASXVI5E=
+sigs.k8s.io/yaml v1.4.0/go.mod h1:Ejl7/uTz7PSA4eKMyQCUTnhZYNmLIl+5c2lQPGR2BPY=

From 112b9bb028da76b81c98387bacb4841a78c67e32 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 14 Mar 2024 14:23:13 +0100
Subject: [PATCH 1204/1641] Chart: Render
 `controller.ingressClassResource.parameters` natively. (#11108)

---
 charts/ingress-nginx/templates/_helpers.tpl   | 10 ---
 .../templates/controller-ingressclass.yaml    |  8 +-
 .../tests/controller-daemonset_test.yaml      |  9 +++
 .../tests/controller-deployment_test.yaml     |  8 ++
 .../tests/controller-ingressclass_test.yaml   | 77 +++++++++++++++++++
 5 files changed, 99 insertions(+), 13 deletions(-)
 create mode 100644 charts/ingress-nginx/tests/controller-ingressclass_test.yaml

diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index db1ab2e24..9ac2dc569 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -242,16 +242,6 @@ Check the ingress controller version tag is at most three versions behind the la
 {{- end -}}
 {{- end -}}
 
-{{/*
-IngressClass parameters.
-*/}}
-{{- define "ingressClass.parameters" -}}
-  {{- if .Values.controller.ingressClassResource.parameters -}}
-          parameters:
-{{ toYaml .Values.controller.ingressClassResource.parameters | indent 4}}
-  {{ end }}
-{{- end -}}
-
 {{/*
 Extra modules.
 */}}
diff --git a/charts/ingress-nginx/templates/controller-ingressclass.yaml b/charts/ingress-nginx/templates/controller-ingressclass.yaml
index f28c116ee..e439e0adb 100644
--- a/charts/ingress-nginx/templates/controller-ingressclass.yaml
+++ b/charts/ingress-nginx/templates/controller-ingressclass.yaml
@@ -9,11 +9,13 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ .Values.controller.ingressClassResource.name }}
-{{- if .Values.controller.ingressClassResource.default }}
+  {{- if .Values.controller.ingressClassResource.default }}
   annotations:
     ingressclass.kubernetes.io/is-default-class: "true"
-{{- end }}
+  {{- end }}
 spec:
   controller: {{ .Values.controller.ingressClassResource.controllerValue }}
-  {{ template "ingressClass.parameters" . }}
+  {{- with .Values.controller.ingressClassResource.parameters }}
+  parameters: {{ toYaml . | nindent 4 }}
+  {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/tests/controller-daemonset_test.yaml b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
index 1d3172227..316455362 100644
--- a/charts/ingress-nginx/tests/controller-daemonset_test.yaml
+++ b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
@@ -33,6 +33,15 @@ tests:
           path: spec.template.spec.containers[0].args
           content: --enable-metrics=false
 
+  - it: should create a DaemonSet with argument `--controller-class=k8s.io/ingress-nginx-internal` if `controller.ingressClassResource.controllerValue` is "k8s.io/ingress-nginx-internal"
+    set:
+      controller.kind: DaemonSet
+      controller.ingressClassResource.controllerValue: k8s.io/ingress-nginx-internal
+    asserts:
+      - contains:
+          path: spec.template.spec.containers[0].args
+          content: --controller-class=k8s.io/ingress-nginx-internal
+
   - it: should create a DaemonSet with resource limits if `controller.resources.limits` is set
     set:
       controller.kind: DaemonSet
diff --git a/charts/ingress-nginx/tests/controller-deployment_test.yaml b/charts/ingress-nginx/tests/controller-deployment_test.yaml
index 3af5ba981..eee99385d 100644
--- a/charts/ingress-nginx/tests/controller-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/controller-deployment_test.yaml
@@ -59,6 +59,14 @@ tests:
           path: spec.template.spec.containers[0].args
           content: --enable-metrics=false
 
+  - it: should create a Deployment with argument `--controller-class=k8s.io/ingress-nginx-internal` if `controller.ingressClassResource.controllerValue` is "k8s.io/ingress-nginx-internal"
+    set:
+      controller.ingressClassResource.controllerValue: k8s.io/ingress-nginx-internal
+    asserts:
+      - contains:
+          path: spec.template.spec.containers[0].args
+          content: --controller-class=k8s.io/ingress-nginx-internal
+
   - it: should create a Deployment with resource limits if `controller.resources.limits` is set
     set:
       controller.resources.limits.cpu: 500m
diff --git a/charts/ingress-nginx/tests/controller-ingressclass_test.yaml b/charts/ingress-nginx/tests/controller-ingressclass_test.yaml
new file mode 100644
index 000000000..f766f922e
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-ingressclass_test.yaml
@@ -0,0 +1,77 @@
+suite: Controller > IngressClass
+templates:
+  - controller-ingressclass.yaml
+
+tests:
+  - it: should create an IngressClass
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: IngressClass
+      - equal:
+          path: metadata.name
+          value: nginx
+
+  - it: should create an IngressClass with name "nginx-internal" if `controller.ingressClassResource.name` is "nginx-internal"
+    set:
+      controller.ingressClassResource.name: nginx-internal
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: IngressClass
+      - equal:
+          path: metadata.name
+          value: nginx-internal
+
+  - it: "should create an IngressClass with annotation `ingressclass.kubernetes.io/is-default-class: \"true\"` if `controller.ingressClassResource.default` is true"
+    set:
+      controller.ingressClassResource.default: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: IngressClass
+      - equal:
+          path: metadata.name
+          value: nginx
+      - equal:
+          path: metadata.annotations["ingressclass.kubernetes.io/is-default-class"]
+          value: "true"
+
+  - it: should create an IngressClass with controller "k8s.io/ingress-nginx-internal" if `controller.ingressClassResource.controllerValue` is "k8s.io/ingress-nginx-internal"
+    set:
+      controller.ingressClassResource.controllerValue: k8s.io/ingress-nginx-internal
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: IngressClass
+      - equal:
+          path: metadata.name
+          value: nginx
+      - equal:
+          path: spec.controller
+          value: k8s.io/ingress-nginx-internal
+
+  - it: should create an IngressClass with parameters if `controller.ingressClassResource.parameters` is set
+    set:
+      controller.ingressClassResource.parameters:
+        apiGroup: k8s.example.com
+        kind: IngressParameters
+        name: external-lb
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: IngressClass
+      - equal:
+          path: metadata.name
+          value: nginx
+      - equal:
+          path: spec.parameters
+          value:
+            apiGroup: k8s.example.com
+            kind: IngressParameters
+            name: external-lb

From f0b986d93f54301eb7c643a24f1bb9981c559ac6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 14 Mar 2024 07:29:03 -0700
Subject: [PATCH 1205/1641] Bump google.golang.org/protobuf from 1.32.0 to
 1.33.0 in /magefiles (#11121)

Bumps google.golang.org/protobuf from 1.32.0 to 1.33.0.

---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 magefiles/go.mod |  2 +-
 magefiles/go.sum | 28 +++++++++++++++++++++++++++-
 2 files changed, 28 insertions(+), 2 deletions(-)

diff --git a/magefiles/go.mod b/magefiles/go.mod
index 9dddf9f71..bdc592cdd 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -29,7 +29,7 @@ require (
 	github.com/sergi/go-diff v1.3.1 // indirect
 	golang.org/x/crypto v0.20.0 // indirect
 	google.golang.org/appengine v1.6.8 // indirect
-	google.golang.org/protobuf v1.32.0 // indirect
+	google.golang.org/protobuf v1.33.0 // indirect
 	gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	k8s.io/apimachinery v0.29.2 // indirect
diff --git a/magefiles/go.sum b/magefiles/go.sum
index 9abe8e950..8130f1178 100644
--- a/magefiles/go.sum
+++ b/magefiles/go.sum
@@ -29,6 +29,7 @@ github.com/golang/protobuf v1.4.0-rc.4.0.20200313231945-b860323f09d0/go.mod h1:W
 github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvqG2KuDX0=
 github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
+github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/golang/protobuf v1.5.3 h1:KhyjKVUg7Usr/dYsdSqoFveMYd5ko72D+zANwlG1mmg=
 github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
@@ -37,6 +38,7 @@ github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/
 github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
+github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/go-github/v48 v48.2.0 h1:68puzySE6WqUY9KWmpOsDEQfDZsso98rT6pZcz9HqcE=
 github.com/google/go-github/v48 v48.2.0/go.mod h1:dDlehKBDo850ZPvCTK0sEqTCVWcrGl2LcDiajkYi89Y=
 github.com/google/go-querystring v1.1.0 h1:AnCroh3fv4ZBgVIf1Iwtovgjaw/GiKJo8M8yD/fhyJ8=
@@ -66,12 +68,14 @@ github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1Cpa
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.30.0 h1:hvMK7xYz4D3HapigLTeGdId/NcfQx1VHMJc60ew99+8=
+github.com/onsi/gomega v1.30.0/go.mod h1:9sxs+SwGrKI0+PWe4Fxa9tFQQBG5xSsSbMXOI8PPpoQ=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
 github.com/rogpeppe/go-internal v1.11.0/go.mod h1:ddIwULY96R17DhadqLgMfk9H9tvdUzkipdSkR5nkCZA=
 github.com/sergi/go-diff v1.1.0/go.mod h1:STckp+ISIX8hZLjrqAeVduY0gWCT9IjLuqbuNXdaHfM=
 github.com/sergi/go-diff v1.3.1 h1:xkr+Oxo4BOQKmkn/B9eMK0g5Kg/983T9DqqPHwYqD+8=
+github.com/sergi/go-diff v1.3.1/go.mod h1:aMJSSKb2lpPvRNec0+w3fl7LP9IOFzdc9Pa4NFbPK1I=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
@@ -80,21 +84,30 @@ github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXl
 github.com/vmware-labs/yaml-jsonpath v0.3.2 h1:/5QKeCBGdsInyDCyVNLbXyilb61MXGi9NP674f9Hobk=
 github.com/vmware-labs/yaml-jsonpath v0.3.2/go.mod h1:U6whw1z03QyqgWdgXxvVnQ90zN1BWz5V+51Ewf8k+rQ=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
+github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
+golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.20.0 h1:jmAMJJZXr5KiCw05dfYK9QnqaqKLYXijU23lsEdcQqg=
+golang.org/x/crypto v0.20.0/go.mod h1:Xwo95rrVNIoSMx9wa1JroENMToLWn3RNVrTBpLHgZPQ=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
+golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
 golang.org/x/net v0.21.0 h1:AQyQV4dYCvJ7vGmJyKki9+PBdyvhkSd8EIx/qb0AYv4=
+golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
 golang.org/x/oauth2 v0.17.0 h1:6m3ZPmLEFdVxKKWnKq4VqZ60gutO35zm+zrAHVmHyDQ=
+golang.org/x/oauth2 v0.17.0/go.mod h1:OzPDGQiuQMguemayvdylqddI7qcD9lnSDb+1FiwQ5HA=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -103,20 +116,31 @@ golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210112080510-489259a85091/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.17.0 h1:25cE3gD+tdBA7lp7QfhuV+rJiE9YXTcS3VG1SqssI/Y=
+golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
+golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
+golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
 golang.org/x/text v0.14.0 h1:ScX5w1eTa3QqT8oi6+ziP7dTV1S2+ALU0bI+0zXKWiQ=
 golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/appengine v1.6.8 h1:IhEN5q69dyKagZPYMSdIjS2HqprW324FRQZJcGqPAsM=
+google.golang.org/appengine v1.6.8/go.mod h1:1jJ3jBArFh5pcgW8gCtRJnepW8FzD1V44FJffLiz/Ds=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
 google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
@@ -125,7 +149,8 @@ google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzi
 google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.32.0 h1:pPC6BG5ex8PDFnkbrGU3EixyhKcQ2aDuBS36lqK/C7I=
+google.golang.org/protobuf v1.33.0 h1:uNO2rsAINq/JlFpSdYEKIZ0uKD/R9cpdv0T+yoGwGmI=
+google.golang.org/protobuf v1.33.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
@@ -144,5 +169,6 @@ gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 k8s.io/apimachinery v0.29.2 h1:EWGpfJ856oj11C52NRCHuU7rFDwxev48z+6DSlGNsV8=
+k8s.io/apimachinery v0.29.2/go.mod h1:6HVkd1FwxIagpYrHSwJlQqZI3G9LfYWRPAkUvLnXTKU=
 k8s.io/helm v2.17.0+incompatible h1:Bpn6o1wKLYqKM3+Osh8e+1/K2g/GsQJ4F4yNF2+deao=
 k8s.io/helm v2.17.0+incompatible/go.mod h1:LZzlS4LQBHfciFOurYBFkCMTaZ0D1l+p0teMg7TSULI=

From e3ea23110a6d16f5e11f8fb7b94259fb0103dd9a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 14 Mar 2024 07:32:08 -0700
Subject: [PATCH 1206/1641] Bump google.golang.org/protobuf in
 /images/custom-error-pages/rootfs (#11119)

Bumps google.golang.org/protobuf from 1.28.0 to 1.33.0.

---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 images/custom-error-pages/rootfs/go.mod | 2 +-
 images/custom-error-pages/rootfs/go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 37cd1fcbd..eebc562a5 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -13,5 +13,5 @@ require (
 	github.com/prometheus/common v0.26.0 // indirect
 	github.com/prometheus/procfs v0.6.0 // indirect
 	golang.org/x/sys v0.1.0 // indirect
-	google.golang.org/protobuf v1.28.0 // indirect
+	google.golang.org/protobuf v1.33.0 // indirect
 )
diff --git a/images/custom-error-pages/rootfs/go.sum b/images/custom-error-pages/rootfs/go.sum
index a5f86cade..99c959a36 100644
--- a/images/custom-error-pages/rootfs/go.sum
+++ b/images/custom-error-pages/rootfs/go.sum
@@ -129,8 +129,8 @@ google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miE
 google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo=
 google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
-google.golang.org/protobuf v1.28.0 h1:w43yiav+6bVFTBQFZX0r7ipe9JQ1QsbMgHwbBziscLw=
-google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.33.0 h1:uNO2rsAINq/JlFpSdYEKIZ0uKD/R9cpdv0T+yoGwGmI=
+google.golang.org/protobuf v1.33.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=

From 0bed0a455871a572cdf810422ede8c1501a1d736 Mon Sep 17 00:00:00 2001
From: Robert Ma <bob1211@gmail.com>
Date: Thu, 14 Mar 2024 07:39:56 -0700
Subject: [PATCH 1207/1641] Fix typos in OTel doc (#11081)

---
 docs/user-guide/third-party-addons/opentelemetry.md | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/docs/user-guide/third-party-addons/opentelemetry.md b/docs/user-guide/third-party-addons/opentelemetry.md
index d735fca4f..e681e1c69 100644
--- a/docs/user-guide/third-party-addons/opentelemetry.md
+++ b/docs/user-guide/third-party-addons/opentelemetry.md
@@ -279,10 +279,10 @@ for common annotations and configurations:
 
 ### Annotations
 
-| Legacy                                           | OpenTelemetry                                    |
-|--------------------------------------------------|--------------------------------------------------|
-| `nginx.ingress.kubernetes.io/enable-opentracing` | `nginx.ingress.kubernetes.io/enable-opentelemetry` |
-| `opentracing-trust-incoming-span`                | `opentracing-trust-incoming-span`                  |
+| Legacy                                                        | OpenTelemetry                                                   |
+|---------------------------------------------------------------|-----------------------------------------------------------------|
+| `nginx.ingress.kubernetes.io/enable-opentracing`              | `nginx.ingress.kubernetes.io/enable-opentelemetry`              |
+| `nginx.ingress.kubernetes.io/opentracing-trust-incoming-span` | `nginx.ingress.kubernetes.io/opentelemetry-trust-incoming-span` |
 
 ### Configs
 

From 56a0968675d8ed2599bf9ae96c82b0a64f4dbb3d Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 17 Mar 2024 22:27:27 +0100
Subject: [PATCH 1208/1641] Chart: Add IngressClass aliases. (#11109)

---
 charts/ingress-nginx/README.md                |  3 +-
 .../controller-ingressclass-aliases.yaml      | 20 ++++
 .../controller-ingressclass-aliases_test.yaml | 92 +++++++++++++++++++
 charts/ingress-nginx/values.yaml              |  7 ++
 4 files changed, 121 insertions(+), 1 deletion(-)
 create mode 100644 charts/ingress-nginx/templates/controller-ingressclass-aliases.yaml
 create mode 100644 charts/ingress-nginx/tests/controller-ingressclass-aliases_test.yaml

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index faab94c2d..1f912ea09 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -330,7 +330,8 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.image.tag | string | `"v1.10.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
-| controller.ingressClassResource | object | `{"controllerValue":"k8s.io/ingress-nginx","default":false,"enabled":true,"name":"nginx","parameters":{}}` | This section refers to the creation of the IngressClass resource. IngressClasses are immutable and cannot be changed after creation. We do not support namespaced IngressClasses, yet, so a ClusterRole and a ClusterRoleBinding is required. |
+| controller.ingressClassResource | object | `{"aliases":[],"controllerValue":"k8s.io/ingress-nginx","default":false,"enabled":true,"name":"nginx","parameters":{}}` | This section refers to the creation of the IngressClass resource. IngressClasses are immutable and cannot be changed after creation. We do not support namespaced IngressClasses, yet, so a ClusterRole and a ClusterRoleBinding is required. |
+| controller.ingressClassResource.aliases | list | `[]` | Aliases of this IngressClass. Creates copies with identical settings but the respective alias as name. Useful for development environments with only one Ingress Controller but production-like Ingress resources. `default` gets enabled on the original IngressClass only. |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller of the IngressClass. An Ingress Controller looks for IngressClasses it should reconcile by this value. This value is also being set as the `--controller-class` argument of this Ingress Controller. Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class |
 | controller.ingressClassResource.default | bool | `false` | If true, Ingresses without `ingressClassName` get assigned to this IngressClass on creation. Ingress creation gets rejected if there are multiple default IngressClasses. Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#default-ingress-class |
 | controller.ingressClassResource.enabled | bool | `true` | Create the IngressClass or not |
diff --git a/charts/ingress-nginx/templates/controller-ingressclass-aliases.yaml b/charts/ingress-nginx/templates/controller-ingressclass-aliases.yaml
new file mode 100644
index 000000000..b4b20690e
--- /dev/null
+++ b/charts/ingress-nginx/templates/controller-ingressclass-aliases.yaml
@@ -0,0 +1,20 @@
+{{- if .Values.controller.ingressClassResource.enabled -}}
+{{- range .Values.controller.ingressClassResource.aliases }}
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    {{- include "ingress-nginx.labels" $ | nindent 4 }}
+    app.kubernetes.io/component: controller
+    {{- with $.Values.controller.labels }}
+    {{- toYaml . | nindent 4 }}
+    {{- end }}
+  name: {{ . }}
+spec:
+  controller: {{ $.Values.controller.ingressClassResource.controllerValue }}
+  {{- with $.Values.controller.ingressClassResource.parameters }}
+  parameters: {{ toYaml . | nindent 4 }}
+  {{- end }}
+{{- end }}
+{{- end }}
diff --git a/charts/ingress-nginx/tests/controller-ingressclass-aliases_test.yaml b/charts/ingress-nginx/tests/controller-ingressclass-aliases_test.yaml
new file mode 100644
index 000000000..ef0780d9c
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-ingressclass-aliases_test.yaml
@@ -0,0 +1,92 @@
+suite: Controller > IngressClass > Aliases
+templates:
+  - controller-ingressclass-aliases.yaml
+
+tests:
+  - it: should not create IngressClass aliases
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create an IngressClass alias with name "nginx-alias" if `controller.ingressClassResource.aliases` is set
+    set:
+      controller.ingressClassResource.aliases:
+        - nginx-alias
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: IngressClass
+      - equal:
+          path: metadata.name
+          value: nginx-alias
+
+  - it: should create an IngressClass alias without annotation `ingressclass.kubernetes.io/is-default-class` if `controller.ingressClassResource.default` is true
+    set:
+      controller.ingressClassResource.aliases:
+        - nginx-alias
+      controller.ingressClassResource.default: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: IngressClass
+      - equal:
+          path: metadata.name
+          value: nginx-alias
+      - notExists:
+          path: metadata.annotations["ingressclass.kubernetes.io/is-default-class"]
+
+  - it: should create an IngressClass alias with controller "k8s.io/ingress-nginx-internal" if `controller.ingressClassResource.controllerValue` is "k8s.io/ingress-nginx-internal"
+    set:
+      controller.ingressClassResource.aliases:
+        - nginx-alias
+      controller.ingressClassResource.controllerValue: k8s.io/ingress-nginx-internal
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: IngressClass
+      - equal:
+          path: metadata.name
+          value: nginx-alias
+      - equal:
+          path: spec.controller
+          value: k8s.io/ingress-nginx-internal
+
+  - it: should create an IngressClass alias with parameters if `controller.ingressClassResource.parameters` is set
+    set:
+      controller.ingressClassResource.aliases:
+        - nginx-alias
+      controller.ingressClassResource.parameters:
+        apiGroup: k8s.example.com
+        kind: IngressParameters
+        name: external-lb
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: IngressClass
+      - equal:
+          path: metadata.name
+          value: nginx-alias
+      - equal:
+          path: spec.parameters
+          value:
+            apiGroup: k8s.example.com
+            kind: IngressParameters
+            name: external-lb
+
+  - it: should create two IngressClass aliases if `controller.ingressClassResource.aliases` has two elements
+    set:
+      controller.ingressClassResource.aliases:
+        - nginx-alias-1
+        - nginx-alias-2
+    asserts:
+      - hasDocuments:
+          count: 2
+      - isKind:
+          of: IngressClass
+      - matchRegex:
+          path: metadata.name
+          pattern: nginx-alias-(1|2)
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 50f958562..5be9519df 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -126,6 +126,13 @@ controller:
     # This value is also being set as the `--controller-class` argument of this Ingress Controller.
     # Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class
     controllerValue: k8s.io/ingress-nginx
+    # -- Aliases of this IngressClass. Creates copies with identical settings but the respective alias as name.
+    # Useful for development environments with only one Ingress Controller but production-like Ingress resources.
+    # `default` gets enabled on the original IngressClass only.
+    aliases: []
+    # aliases:
+    # - nginx-alias-1
+    # - nginx-alias-2
     # -- A link to a custom resource containing additional configuration for the controller.
     # This is optional if the controller consuming this IngressClass does not require additional parameters.
     # Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class

From d49f114af3bb758b98e93ce0445d83f3d76a6366 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 18 Mar 2024 04:45:18 -0700
Subject: [PATCH 1209/1641] Bump the all group with 1 update (#11134)

Bumps the all group with 1 update: [k8s.io/component-base](https://github.com/kubernetes/component-base).


Updates `k8s.io/component-base` from 0.29.2 to 0.29.3
- [Commits](https://github.com/kubernetes/component-base/compare/v0.29.2...v0.29.3)

---
updated-dependencies:
- dependency-name: k8s.io/component-base
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 10 +++++-----
 go.sum | 20 ++++++++++----------
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/go.mod b/go.mod
index 6e3723b15..960df0c20 100644
--- a/go.mod
+++ b/go.mod
@@ -30,14 +30,14 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.29.2
+	k8s.io/api v0.29.3
 	k8s.io/apiextensions-apiserver v0.29.2
-	k8s.io/apimachinery v0.29.2
+	k8s.io/apimachinery v0.29.3
 	k8s.io/apiserver v0.29.2
 	k8s.io/cli-runtime v0.29.2
-	k8s.io/client-go v0.29.2
+	k8s.io/client-go v0.29.3
 	k8s.io/code-generator v0.29.2
-	k8s.io/component-base v0.29.2
+	k8s.io/component-base v0.29.3
 	k8s.io/klog/v2 v2.120.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.17.2
@@ -67,7 +67,7 @@ require (
 	github.com/godbus/dbus/v5 v5.1.0 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
-	github.com/golang/protobuf v1.5.3 // indirect
+	github.com/golang/protobuf v1.5.4 // indirect
 	github.com/gomarkdown/markdown v0.0.0-20231222211730-1d6d20845b47 // indirect
 	github.com/google/btree v1.1.2 // indirect
 	github.com/google/gnostic-models v0.6.8 // indirect
diff --git a/go.sum b/go.sum
index 5a40ced85..0b21a7cc5 100644
--- a/go.sum
+++ b/go.sum
@@ -154,8 +154,8 @@ github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw
 github.com/golang/protobuf v1.4.3/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
 github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
-github.com/golang/protobuf v1.5.3 h1:KhyjKVUg7Usr/dYsdSqoFveMYd5ko72D+zANwlG1mmg=
-github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
+github.com/golang/protobuf v1.5.4 h1:i7eJL8qZTpSEXOPTxNKhASYpMn+8e5Q6AdndVa1dWek=
+github.com/golang/protobuf v1.5.4/go.mod h1:lnTiLA8Wa4RWRcIUkrtSVa5nRhsEGBg48fD6rSs7xps=
 github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7/go.mod h1:aii0r/K0ZnHv7G0KF7xy1v0A7s2Ljrb5byB7MO5p6TU=
 github.com/gomarkdown/markdown v0.0.0-20231222211730-1d6d20845b47 h1:k4Tw0nt6lwro3Uin8eqoET7MDA4JnT8YgbCjc/g5E3k=
 github.com/gomarkdown/markdown v0.0.0-20231222211730-1d6d20845b47/go.mod h1:JDGcbDT52eL4fju3sZ4TeHGsQwhG9nbDV21aMyhwPoA=
@@ -740,22 +740,22 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.29.2 h1:hBC7B9+MU+ptchxEqTNW2DkUosJpp1P+Wn6YncZ474A=
-k8s.io/api v0.29.2/go.mod h1:sdIaaKuU7P44aoyyLlikSLayT6Vb7bvJNCX105xZXY0=
+k8s.io/api v0.29.3 h1:2ORfZ7+bGC3YJqGpV0KSDDEVf8hdGQ6A03/50vj8pmw=
+k8s.io/api v0.29.3/go.mod h1:y2yg2NTyHUUkIoTC+phinTnEa3KFM6RZ3szxt014a80=
 k8s.io/apiextensions-apiserver v0.29.2 h1:UK3xB5lOWSnhaCk0RFZ0LUacPZz9RY4wi/yt2Iu+btg=
 k8s.io/apiextensions-apiserver v0.29.2/go.mod h1:aLfYjpA5p3OwtqNXQFkhJ56TB+spV8Gc4wfMhUA3/b8=
-k8s.io/apimachinery v0.29.2 h1:EWGpfJ856oj11C52NRCHuU7rFDwxev48z+6DSlGNsV8=
-k8s.io/apimachinery v0.29.2/go.mod h1:6HVkd1FwxIagpYrHSwJlQqZI3G9LfYWRPAkUvLnXTKU=
+k8s.io/apimachinery v0.29.3 h1:2tbx+5L7RNvqJjn7RIuIKu9XTsIZ9Z5wX2G22XAa5EU=
+k8s.io/apimachinery v0.29.3/go.mod h1:hx/S4V2PNW4OMg3WizRrHutyB5la0iCUbZym+W0EQIU=
 k8s.io/apiserver v0.29.2 h1:+Z9S0dSNr+CjnVXQePG8TcBWHr3Q7BmAr7NraHvsMiQ=
 k8s.io/apiserver v0.29.2/go.mod h1:B0LieKVoyU7ykQvPFm7XSdIHaCHSzCzQWPFa5bqbeMQ=
 k8s.io/cli-runtime v0.29.2 h1:smfsOcT4QujeghsNjECKN3lwyX9AwcFU0nvJ7sFN3ro=
 k8s.io/cli-runtime v0.29.2/go.mod h1:KLisYYfoqeNfO+MkTWvpqIyb1wpJmmFJhioA0xd4MW8=
-k8s.io/client-go v0.29.2 h1:FEg85el1TeZp+/vYJM7hkDlSTFZ+c5nnK44DJ4FyoRg=
-k8s.io/client-go v0.29.2/go.mod h1:knlvFZE58VpqbQpJNbCbctTVXcd35mMyAAwBdpt4jrA=
+k8s.io/client-go v0.29.3 h1:R/zaZbEAxqComZ9FHeQwOh3Y1ZUs7FaHKZdQtIc2WZg=
+k8s.io/client-go v0.29.3/go.mod h1:tkDisCvgPfiRpxGnOORfkljmS+UrW+WtXAy2fTvXJB0=
 k8s.io/code-generator v0.29.2 h1:c9/iw2KnNpw2IRV+wwuG/Wns2TjPSgjWzbbjTevyiHI=
 k8s.io/code-generator v0.29.2/go.mod h1:FwFi3C9jCrmbPjekhaCYcYG1n07CYiW1+PAPCockaos=
-k8s.io/component-base v0.29.2 h1:lpiLyuvPA9yV1aQwGLENYyK7n/8t6l3nn3zAtFTJYe8=
-k8s.io/component-base v0.29.2/go.mod h1:BfB3SLrefbZXiBfbM+2H1dlat21Uewg/5qtKOl8degM=
+k8s.io/component-base v0.29.3 h1:Oq9/nddUxlnrCuuR2K/jp6aflVvc0uDvxMzAWxnGzAo=
+k8s.io/component-base v0.29.3/go.mod h1:Yuj33XXjuOk2BAaHsIGHhCKZQAgYKhqIxIjIr2UXYio=
 k8s.io/gengo v0.0.0-20240226174109-00c4be8627da h1:uH7pylUCo++9PSvrUA34sbk4Y6PHw/bgEFa80pejI+I=
 k8s.io/gengo v0.0.0-20240226174109-00c4be8627da/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=

From 9d251d955ef50aef4549598b0a68fb9525624623 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 19 Mar 2024 07:00:00 -0700
Subject: [PATCH 1210/1641] Bump the all group with 4 updates (#11133)

Bumps the all group with 4 updates: [actions/checkout](https://github.com/actions/checkout), [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action), [docker/login-action](https://github.com/docker/login-action) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `actions/checkout` from 4.1.1 to 4.1.2
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/b4ffde65f46336ab88eb53be808477a3936bae11...9bb56186c3b09b4f86b1c65136769dd318469633)

Updates `docker/setup-buildx-action` from 3.1.0 to 3.2.0
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/0d103c3126aa41d772a8362f6aa67afac040f80c...2b51285047da1547ffb1b2203d8be4c0af6b1f20)

Updates `docker/login-action` from 3.0.0 to 3.1.0
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/343f7c4344506bcbf9b4de18042ae17996df046d...e92390c5fb421da1463c202d546fed0ec5c39f20)

Updates `github/codeql-action` from 3.24.6 to 3.24.7
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/8a470fddafa5cbb6266ee11b37ef4d8aae19c571...3ab4101902695724f9365a384f86c1074d94e18c)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 10 +++++-----
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/golangci-lint.yml        |  2 +-
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/images.yaml              | 12 ++++++------
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  4 ++--
 .github/workflows/vulnerability-scans.yaml |  6 +++---
 .github/workflows/zz-tmpl-images.yaml      |  8 ++++----
 .github/workflows/zz-tmpl-k8s-e2e.yaml     |  2 +-
 12 files changed, 29 insertions(+), 29 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 266565578..a033bbfa9 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -47,7 +47,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -77,7 +77,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
@@ -105,7 +105,7 @@ jobs:
         PLATFORMS: linux/amd64
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
 
       - name: Get go version
         id: golangversion
@@ -124,7 +124,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@0d103c3126aa41d772a8362f6aa67afac040f80c # v3.1.0
+        uses: docker/setup-buildx-action@2b51285047da1547ffb1b2203d8be4c0af6b1f20 # v3.2.0
         with:
           version: latest
 
@@ -183,7 +183,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
 
       - name: Setup Go
         uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index eadf099b3..6d9f9dc8f 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@9129d7d40b8c12c1ed0f60400d00c92d437adcce # v4.1.3
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index d37c1f3bf..d6182ec9c 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index b5ad3c93c..d287061d5 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 1a7eb4334..da86a36f0 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
 
       - name: Run Artifact Hub lint
         run: |
@@ -61,7 +61,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 5effdee82..e5684ba79 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -41,7 +41,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -144,7 +144,7 @@ jobs:
         k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0, v1.29.0]
     steps:
     - name: Checkout
-      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+      uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
 
     - name: Get go version
       run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
@@ -178,7 +178,7 @@ jobs:
         nginx: ['1.25.3', '1.21.6']
     steps:
     - name: Checkout
-      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+      uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
     - name: image build
       run: |
         cd images/opentelemetry && make NGINX_VERSION=${{ matrix.nginx }} build
@@ -195,17 +195,17 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm,linux/arm64,linux/s390x
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
       - name: Set up QEMU
         uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@0d103c3126aa41d772a8362f6aa67afac040f80c # v3.1.0
+        uses: docker/setup-buildx-action@2b51285047da1547ffb1b2203d8be4c0af6b1f20 # v3.2.0
         with:
           version: latest
           platforms: ${{ env.PLATFORMS }}
       - name: Login to GitHub Container Registry
-        uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
+        uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20 # v3.1.0
         with:
           username: ${{ secrets.DOCKERHUB_USERNAME }}
           password: ${{ secrets.DOCKERHUB_TOKEN }}
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 7f62fedf4..3650e7263 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 6f4804d6f..a074eaa5b 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 79996ca2f..43c63c733 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
         with:
           persist-credentials: false
 
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
+        uses: github/codeql-action/upload-sarif@3ab4101902695724f9365a384f86c1074d94e18c # v3.24.7
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 5d37ecbf8..13131d633 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
 
       - shell: bash
         id: test
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
+        uses: github/codeql-action/upload-sarif@3ab4101902695724f9365a384f86c1074d94e18c # v3.24.7
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository
diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index 45f5d9184..e8fa4f472 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -31,7 +31,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -48,7 +48,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
 
       - name: Build
         run: |
@@ -67,10 +67,10 @@ jobs:
       PLATFORMS: ${{ inputs.platforms-publish }}
     steps:
     - name: Checkout
-      uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+      uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
 
     - name: Login to GitHub Container Registry
-      uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0
+      uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20 # v3.1.0
       with:
         username: ${{ secrets.DOCKERHUB_USERNAME }}
         password: ${{ secrets.DOCKERHUB_TOKEN }}
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 3a8916049..ad03bf0a1 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -20,7 +20,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
 
       - name: cache
         uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4

From 3c4e78e6b755eb33821c4477106f424bd8792d8f Mon Sep 17 00:00:00 2001
From: Matheus Fidelis <msfidelis@users.noreply.github.com>
Date: Tue, 19 Mar 2024 11:32:15 -0300
Subject: [PATCH 1211/1641] feature(geoip2_autoreload): Enable GeoIP2
 auto_reload config  (#11079)

* feature(geoip2_autoreload): GeoIP Autoreload

feature(geoip2_autoreload): fix lint

feature(geoip2_autoreload): changing flag interval

feature(geoip2_autoreload): tests - up and running

feature(geoip2_autoreload): tests - up and running

feature(geoip2): testing

feature(geoip2): remove typo

feature(geoip2_autoreload): fixing tests

* feature(geoip2_autoreload): working

* feature(geoip2_autoreload): including tests on geoip2 test file
---
 .../nginx-configuration/configmap.md          |  7 +++
 internal/ingress/controller/config/config.go  |  5 ++
 rootfs/etc/nginx/template/nginx.tmpl          | 24 ++++++++++
 test/e2e/settings/geoip2.go                   | 48 +++++++++++++++++++
 4 files changed, 84 insertions(+)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 75971b9a5..ff23196a4 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -101,6 +101,7 @@ The following table shows a configuration option's name, type, and the default v
 |[use-gzip](#use-gzip)|bool|"false"||
 |[use-geoip](#use-geoip)|bool|"true"||
 |[use-geoip2](#use-geoip2)|bool|"false"||
+|[geoip2-autoreload-in-minutes](#geoip2-autoreload-in-minutes)|int|"0"||
 |[enable-brotli](#enable-brotli)|bool|"false"||
 |[brotli-level](#brotli-level)|int|4||
 |[brotli-min-length](#brotli-min-length)|int|20||
@@ -737,6 +738,12 @@ Alternatively, it is possible to use a volume to mount the files `/etc/nginx/geo
 
 _**default:**_ false
 
+## geoip2-autoreload-in-minutes
+
+Enables the [geoip2 module](https://github.com/leev/ngx_http_geoip2_module) autoreload in MaxMind databases setting the interval in minutes. 
+
+_**default:**_ 0
+
 ## enable-brotli
 
 Enables or disables compression of HTTP responses using the ["brotli" module](https://github.com/google/ngx_brotli).
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index bad82b8b0..12bbb662a 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -436,6 +436,10 @@ type Configuration struct {
 	// By default this is disabled
 	UseGeoIP2 bool `json:"use-geoip2,omitempty"`
 
+	// GeoIP2AutoReloadMinutes enables autoreload on geoip2 setting the interval in minutes
+	// By default this is disabled using 0
+	GeoIP2AutoReloadMinutes int `json:"geoip2-autoreload-in-minutes,omitempty"`
+
 	// Enables or disables the use of the NGINX Brotli Module for compression
 	// https://github.com/google/ngx_brotli
 	EnableBrotli bool `json:"enable-brotli,omitempty"`
@@ -841,6 +845,7 @@ func NewDefault() Configuration {
 		EnableAioWrite:                   true,
 		UseGzip:                          false,
 		UseGeoIP2:                        false,
+		GeoIP2AutoReloadMinutes:          0,
 		WorkerProcesses:                  strconv.Itoa(runtime.NumCPU()),
 		WorkerShutdownTimeout:            "240s",
 		VariablesHashBucketSize:          256,
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index d58be2880..d5172ff3f 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -172,6 +172,9 @@ http {
     {{ range $index, $file := $all.MaxmindEditionFiles }}
     {{ if eq $file "GeoLite2-Country.mmdb" }}
     geoip2 /etc/ingress-controller/geoip/GeoLite2-Country.mmdb {
+        {{ if (gt $cfg.GeoIP2AutoReloadMinutes 0) }}
+        auto_reload {{ $cfg.GeoIP2AutoReloadMinutes }}m;
+        {{ end }}
         $geoip2_country_code source=$remote_addr country iso_code;
         $geoip2_country_name source=$remote_addr country names en;
         $geoip2_country_geoname_id source=$remote_addr country geoname_id;
@@ -183,6 +186,9 @@ http {
 
     {{ if eq $file "GeoIP2-Country.mmdb" }}
     geoip2 /etc/ingress-controller/geoip/GeoIP2-Country.mmdb {
+        {{ if (gt $cfg.GeoIP2AutoReloadMinutes 0) }}
+        auto_reload {{ $cfg.GeoIP2AutoReloadMinutes }}m;
+        {{ end }}
         $geoip2_country_code source=$remote_addr country iso_code;
         $geoip2_country_name source=$remote_addr country names en;
         $geoip2_country_geoname_id source=$remote_addr country geoname_id;
@@ -194,6 +200,9 @@ http {
 
     {{ if eq $file "GeoLite2-City.mmdb" }}
     geoip2 /etc/ingress-controller/geoip/GeoLite2-City.mmdb {
+        {{ if (gt $cfg.GeoIP2AutoReloadMinutes 0) }}
+        auto_reload {{ $cfg.GeoIP2AutoReloadMinutes }}m;
+        {{ end }}    
         $geoip2_city_country_code source=$remote_addr country iso_code;
         $geoip2_city_country_name source=$remote_addr country names en;
         $geoip2_city_country_geoname_id source=$remote_addr country geoname_id;
@@ -217,6 +226,9 @@ http {
 
     {{ if eq $file "GeoIP2-City.mmdb" }}
     geoip2 /etc/ingress-controller/geoip/GeoIP2-City.mmdb {
+        {{ if (gt $cfg.GeoIP2AutoReloadMinutes 0) }}
+        auto_reload {{ $cfg.GeoIP2AutoReloadMinutes }}m;
+        {{ end }}    
         $geoip2_city_country_code source=$remote_addr country iso_code;
         $geoip2_city_country_name source=$remote_addr country names en;
         $geoip2_city_country_geoname_id source=$remote_addr country geoname_id;
@@ -240,6 +252,9 @@ http {
 
     {{ if eq $file "GeoLite2-ASN.mmdb" }}
     geoip2 /etc/ingress-controller/geoip/GeoLite2-ASN.mmdb {
+        {{ if (gt $cfg.GeoIP2AutoReloadMinutes 0) }}
+        auto_reload {{ $cfg.GeoIP2AutoReloadMinutes }}m;
+        {{ end }}    
         $geoip2_asn source=$remote_addr autonomous_system_number;
         $geoip2_org source=$remote_addr autonomous_system_organization;
     }
@@ -247,6 +262,9 @@ http {
 
     {{ if eq $file "GeoIP2-ASN.mmdb" }}
     geoip2 /etc/ingress-controller/geoip/GeoIP2-ASN.mmdb {
+        {{ if (gt $cfg.GeoIP2AutoReloadMinutes 0) }}
+        auto_reload {{ $cfg.GeoIP2AutoReloadMinutes }}m;
+        {{ end }}    
         $geoip2_asn source=$remote_addr autonomous_system_number;
         $geoip2_org source=$remote_addr autonomous_system_organization;
     }
@@ -254,6 +272,9 @@ http {
 
     {{ if eq $file "GeoIP2-ISP.mmdb" }}
     geoip2 /etc/ingress-controller/geoip/GeoIP2-ISP.mmdb {
+        {{ if (gt $cfg.GeoIP2AutoReloadMinutes 0) }}
+        auto_reload {{ $cfg.GeoIP2AutoReloadMinutes }}m;
+        {{ end }}    
         $geoip2_isp source=$remote_addr isp;
         $geoip2_isp_org source=$remote_addr organization;
         $geoip2_asn source=$remote_addr default=0 autonomous_system_number;
@@ -268,6 +289,9 @@ http {
 
     {{ if eq $file "GeoIP2-Anonymous-IP.mmdb" }}
     geoip2 /etc/ingress-controller/geoip/GeoIP2-Anonymous-IP.mmdb {
+        {{ if (gt $cfg.GeoIP2AutoReloadMinutes 0) }}
+        auto_reload {{ $cfg.GeoIP2AutoReloadMinutes }}m;
+        {{ end }}    
         $geoip2_is_anon source=$remote_addr is_anonymous;
         $geoip2_is_anonymous source=$remote_addr default=0 is_anonymous;
         $geoip2_is_anonymous_vpn source=$remote_addr default=0 is_anonymous_vpn;
diff --git a/test/e2e/settings/geoip2.go b/test/e2e/settings/geoip2.go
index 7da26d810..064863734 100644
--- a/test/e2e/settings/geoip2.go
+++ b/test/e2e/settings/geoip2.go
@@ -124,4 +124,52 @@ var _ = framework.DescribeSetting("Geoip2", func() {
 			Expect().
 			Status(http.StatusOK)
 	})
+
+	ginkgo.It("should up and running nginx controller using autoreload flag", func() {
+		edition := "GeoLite2-Country"
+
+		err := f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
+			args := deployment.Spec.Template.Spec.Containers[0].Args
+			args = append(args, "--maxmind-edition-ids="+edition)
+			deployment.Spec.Template.Spec.Containers[0].Args = args
+			_, err := f.KubeClientSet.AppsV1().Deployments(f.Namespace).Update(context.TODO(), deployment, metav1.UpdateOptions{})
+			return err
+		})
+		assert.Nil(ginkgo.GinkgoT(), err, "updating ingress controller deployment flags")
+
+		filename := fmt.Sprintf("/etc/ingress-controller/geoip/%s.mmdb", edition)
+		exec, err := f.ExecIngressPod(fmt.Sprintf(`sh -c "mkdir -p '%s' && wget -O '%s' '%s' 2>&1"`, filepath.Dir(filename), filename, testdataURL))
+		framework.Logf(exec)
+		assert.Nil(ginkgo.GinkgoT(), err, fmt.Sprintln("error downloading test geoip2 db", filename))
+
+		f.SetNginxConfigMapData(map[string]string{
+			"use-geoip2":                   "true",
+			"geoip2-autoreload-in-minutes": "5",
+		})
+
+		// Check Configmap Autoreload Patterns
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return strings.Contains(cfg, fmt.Sprintf("geoip2 %s", filename)) &&
+					strings.Contains(cfg, "auto_reload 5m;")
+			},
+		)
+
+		// Check if Nginx could up, running and routing with auto_reload configs
+		host := "ping.com"
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, host) &&
+					strings.Contains(server, "location /")
+			})
+
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+	})
 })

From c25b80ca0067f0d4adf9dd879d2477d4830bff0f Mon Sep 17 00:00:00 2001
From: dVerhees <30548963+dVerhees@users.noreply.github.com>
Date: Fri, 22 Mar 2024 09:28:24 +0100
Subject: [PATCH 1212/1641] fix geoip2 configuration docs (#11150)

---
 docs/user-guide/nginx-configuration/configmap.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index ff23196a4..849bbe807 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -731,7 +731,7 @@ _**default:**_ true
 Enables the [geoip2 module](https://github.com/leev/ngx_http_geoip2_module) for NGINX.
 Since `0.27.0` and due to a [change in the MaxMind databases](https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases) a license is required to have access to the databases.
 For this reason, it is required to define a new flag `--maxmind-license-key` in the ingress controller deployment to download the databases needed during the initialization of the ingress controller.
-Alternatively, it is possible to use a volume to mount the files `/etc/nginx/geoip/GeoLite2-City.mmdb` and `/etc/nginx/geoip/GeoLite2-ASN.mmdb`, avoiding the overhead of the download.
+Alternatively, it is possible to use a volume to mount the files `/etc/ingress-controller/geoip/GeoLite2-City.mmdb` and `/etc/ingress-controller/geoip/GeoLite2-ASN.mmdb`, avoiding the overhead of the download.
 
 !!! important
     If the feature is enabled but the files are missing, GeoIP2 will not be enabled.

From c0b3294bf47c00df66dc545048f550cc87f9db15 Mon Sep 17 00:00:00 2001
From: Ramon Borges <ramonboorges@gmail.com>
Date: Sun, 24 Mar 2024 23:07:28 +0100
Subject: [PATCH 1213/1641] Add GRPC Buffer Size to the Configmap (#11155)

* feat: add grpc buffer size in the nginx template

* feat: add grpc buffer size in the configmap struct

* feat: add test for GRCP buffer size configuration in the configmap

* chore: add documentation for the grcp buffer size configuration

* fix: fix the copyright year of the test

* fix: fix import order

* fix: fix ignore for the linter - reason was missing

* chore: seems like we don't need to ignore the error handling
---
 .../nginx-configuration/configmap.md          | 426 +++++++++---------
 internal/ingress/controller/config/config.go  |   9 +-
 rootfs/etc/nginx/template/nginx.tmpl          |   4 +
 test/e2e/settings/grpc.go                     | 110 +++++
 4 files changed, 338 insertions(+), 211 deletions(-)
 create mode 100644 test/e2e/settings/grpc.go

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 849bbe807..9dad331f1 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -25,215 +25,216 @@ data:
 
 The following table shows a configuration option's name, type, and the default value:
 
-|name|type|default|notes|
-|:---|:---|:------|:----|
-|[add-headers](#add-headers)|string|""||
-|[allow-backend-server-header](#allow-backend-server-header)|bool|"false"||
-|[allow-cross-namespace-resources](#allow-cross-namespace-resources)|bool|"true"||
-|[allow-snippet-annotations](#allow-snippet-annotations)|bool|false||
-|[annotations-risk-level](#annotations-risk-level)|string|Critical||
-|[annotation-value-word-blocklist](#annotation-value-word-blocklist)|string array|""||
-|[hide-headers](#hide-headers)|string array|empty||
-|[access-log-params](#access-log-params)|string|""||
-|[access-log-path](#access-log-path)|string|"/var/log/nginx/access.log"||
-|[http-access-log-path](#http-access-log-path)|string|""||
-|[stream-access-log-path](#stream-access-log-path)|string|""||
-|[enable-access-log-for-default-backend](#enable-access-log-for-default-backend)|bool|"false"||
-|[error-log-path](#error-log-path)|string|"/var/log/nginx/error.log"||
-|[enable-modsecurity](#enable-modsecurity)|bool|"false"||
-|[modsecurity-snippet](#modsecurity-snippet)|string|""||
-|[enable-owasp-modsecurity-crs](#enable-owasp-modsecurity-crs)|bool|"false"||
-|[client-header-buffer-size](#client-header-buffer-size)|string|"1k"||
-|[client-header-timeout](#client-header-timeout)|int|60||
-|[client-body-buffer-size](#client-body-buffer-size)|string|"8k"||
-|[client-body-timeout](#client-body-timeout)|int|60||
-|[disable-access-log](#disable-access-log)|bool|false||
-|[disable-ipv6](#disable-ipv6)|bool|false||
-|[disable-ipv6-dns](#disable-ipv6-dns)|bool|false||
-|[enable-underscores-in-headers](#enable-underscores-in-headers)|bool|false||
-|[enable-ocsp](#enable-ocsp)|bool|false||
-|[ignore-invalid-headers](#ignore-invalid-headers)|bool|true||
-|[retry-non-idempotent](#retry-non-idempotent)|bool|"false"||
-|[error-log-level](#error-log-level)|string|"notice"||
-|[http2-max-field-size](#http2-max-field-size)|string|""|DEPRECATED in favour of [large_client_header_buffers](#large-client-header-buffers)|
-|[http2-max-header-size](#http2-max-header-size)|string|""|DEPRECATED in favour of [large_client_header_buffers](#large-client-header-buffers)|
-|[http2-max-requests](#http2-max-requests)|int|0|DEPRECATED in favour of [keepalive_requests](#keepalive-requests)|
-|[http2-max-concurrent-streams](#http2-max-concurrent-streams)|int|128||
-|[hsts](#hsts)|bool|"true"||
-|[hsts-include-subdomains](#hsts-include-subdomains)|bool|"true"||
-|[hsts-max-age](#hsts-max-age)|string|"31536000"||
-|[hsts-preload](#hsts-preload)|bool|"false"||
-|[keep-alive](#keep-alive)|int|75||
-|[keep-alive-requests](#keep-alive-requests)|int|1000||
-|[large-client-header-buffers](#large-client-header-buffers)|string|"4 8k"||
-|[log-format-escape-none](#log-format-escape-none)|bool|"false"||
-|[log-format-escape-json](#log-format-escape-json)|bool|"false"||
-|[log-format-upstream](#log-format-upstream)|string|`$remote_addr - $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" $request_length $request_time [$proxy_upstream_name] [$proxy_alternative_upstream_name] $upstream_addr $upstream_response_length $upstream_response_time $upstream_status $req_id`||
-|[log-format-stream](#log-format-stream)|string|`[$remote_addr] [$time_local] $protocol $status $bytes_sent $bytes_received $session_time`||
-|[enable-multi-accept](#enable-multi-accept)|bool|"true"||
-|[max-worker-connections](#max-worker-connections)|int|16384||
-|[max-worker-open-files](#max-worker-open-files)|int|0||
-|[map-hash-bucket-size](#max-hash-bucket-size)|int|64||
-|[nginx-status-ipv4-whitelist](#nginx-status-ipv4-whitelist)|[]string|"127.0.0.1"||
-|[nginx-status-ipv6-whitelist](#nginx-status-ipv6-whitelist)|[]string|"::1"||
-|[proxy-real-ip-cidr](#proxy-real-ip-cidr)|[]string|"0.0.0.0/0"||
-|[proxy-set-headers](#proxy-set-headers)|string|""||
-|[server-name-hash-max-size](#server-name-hash-max-size)|int|1024||
-|[server-name-hash-bucket-size](#server-name-hash-bucket-size)|int|`<size of the processor’s cache line>`|
-|[proxy-headers-hash-max-size](#proxy-headers-hash-max-size)|int|512||
-|[proxy-headers-hash-bucket-size](#proxy-headers-hash-bucket-size)|int|64||
-|[plugins](#plugins)|[]string| ||
-|[reuse-port](#reuse-port)|bool|"true"||
-|[server-tokens](#server-tokens)|bool|"false"||
-|[ssl-ciphers](#ssl-ciphers)|string|"ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"||
-|[ssl-ecdh-curve](#ssl-ecdh-curve)|string|"auto"||
-|[ssl-dh-param](#ssl-dh-param)|string|""||
-|[ssl-protocols](#ssl-protocols)|string|"TLSv1.2 TLSv1.3"||
-|[ssl-session-cache](#ssl-session-cache)|bool|"true"||
-|[ssl-session-cache-size](#ssl-session-cache-size)|string|"10m"||
-|[ssl-session-tickets](#ssl-session-tickets)|bool|"false"||
-|[ssl-session-ticket-key](#ssl-session-ticket-key)|string|`<Randomly Generated>`|
-|[ssl-session-timeout](#ssl-session-timeout)|string|"10m"||
-|[ssl-buffer-size](#ssl-buffer-size)|string|"4k"||
-|[use-proxy-protocol](#use-proxy-protocol)|bool|"false"||
-|[proxy-protocol-header-timeout](#proxy-protocol-header-timeout)|string|"5s"||
-|[enable-aio-write](#enable-aio-write)|bool|"true"||
-|[use-gzip](#use-gzip)|bool|"false"||
-|[use-geoip](#use-geoip)|bool|"true"||
-|[use-geoip2](#use-geoip2)|bool|"false"||
-|[geoip2-autoreload-in-minutes](#geoip2-autoreload-in-minutes)|int|"0"||
-|[enable-brotli](#enable-brotli)|bool|"false"||
-|[brotli-level](#brotli-level)|int|4||
-|[brotli-min-length](#brotli-min-length)|int|20||
-|[brotli-types](#brotli-types)|string|"application/xml+rss application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"||
-|[use-http2](#use-http2)|bool|"true"||
-|[gzip-disable](#gzip-disable)|string|""||
-|[gzip-level](#gzip-level)|int|1||
-|[gzip-min-length](#gzip-min-length)|int|256||
-|[gzip-types](#gzip-types)|string|"application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"||
-|[worker-processes](#worker-processes)|string|`<Number of CPUs>`||
-|[worker-cpu-affinity](#worker-cpu-affinity)|string|""||
-|[worker-shutdown-timeout](#worker-shutdown-timeout)|string|"240s"||
-|[load-balance](#load-balance)|string|"round_robin"||
-|[variables-hash-bucket-size](#variables-hash-bucket-size)|int|128||
-|[variables-hash-max-size](#variables-hash-max-size)|int|2048||
-|[upstream-keepalive-connections](#upstream-keepalive-connections)|int|320||
-|[upstream-keepalive-time](#upstream-keepalive-time)|string|"1h"||
-|[upstream-keepalive-timeout](#upstream-keepalive-timeout)|int|60||
-|[upstream-keepalive-requests](#upstream-keepalive-requests)|int|10000||
-|[limit-conn-zone-variable](#limit-conn-zone-variable)|string|"$binary_remote_addr"||
-|[proxy-stream-timeout](#proxy-stream-timeout)|string|"600s"||
-|[proxy-stream-next-upstream](#proxy-stream-next-upstream)|bool|"true"||
-|[proxy-stream-next-upstream-timeout](#proxy-stream-next-upstream-timeout)|string|"600s"||
-|[proxy-stream-next-upstream-tries](#proxy-stream-next-upstream-tries)|int|3||
-|[proxy-stream-responses](#proxy-stream-responses)|int|1||
-|[bind-address](#bind-address)|[]string|""||
-|[use-forwarded-headers](#use-forwarded-headers)|bool|"false"||
-|[enable-real-ip](#enable-real-ip)|bool|"false"||
-|[forwarded-for-header](#forwarded-for-header)|string|"X-Forwarded-For"||
-|[compute-full-forwarded-for](#compute-full-forwarded-for)|bool|"false"||
-|[proxy-add-original-uri-header](#proxy-add-original-uri-header)|bool|"false"||
-|[generate-request-id](#generate-request-id)|bool|"true"||
-|[enable-opentracing](#enable-opentracing)|bool|"false"||
-|[opentracing-operation-name](#opentracing-operation-name)|string|""||
-|[opentracing-location-operation-name](#opentracing-location-operation-name)|string|""||
-|[zipkin-collector-host](#zipkin-collector-host)|string|""||
-|[zipkin-collector-port](#zipkin-collector-port)|int|9411||
-|[zipkin-service-name](#zipkin-service-name)|string|"nginx"||
-|[zipkin-sample-rate](#zipkin-sample-rate)|float|1.0||
-|[jaeger-collector-host](#jaeger-collector-host)|string|""||
-|[jaeger-collector-port](#jaeger-collector-port)|int|6831||
-|[jaeger-endpoint](#jaeger-endpoint)|string|""||
-|[jaeger-service-name](#jaeger-service-name)|string|"nginx"||
-|[jaeger-propagation-format](#jaeger-propagation-format)|string|"jaeger"||
-|[jaeger-sampler-type](#jaeger-sampler-type)|string|"const"||
-|[jaeger-sampler-param](#jaeger-sampler-param)|string|"1"||
-|[jaeger-sampler-host](#jaeger-sampler-host)|string|"http://127.0.0.1"||
-|[jaeger-sampler-port](#jaeger-sampler-port)|int|5778||
-|[jaeger-trace-context-header-name](#jaeger-trace-context-header-name)|string|uber-trace-id||
-|[jaeger-debug-header](#jaeger-debug-header)|string|uber-debug-id||
-|[jaeger-baggage-header](#jaeger-baggage-header)|string|jaeger-baggage||
-|[jaeger-trace-baggage-header-prefix](#jaeger-trace-baggage-header-prefix)|string|uberctx-||
-|[datadog-collector-host](#datadog-collector-host)|string|""||
-|[datadog-collector-port](#datadog-collector-port)|int|8126||
-|[datadog-service-name](#datadog-service-name)|string|"nginx"||
-|[datadog-environment](#datadog-environment)|string|"prod"||
-|[datadog-operation-name-override](#datadog-operation-name-override)|string|"nginx.handle"||
-|[datadog-priority-sampling](#datadog-priority-sampling)|bool|"true"||
-|[datadog-sample-rate](#datadog-sample-rate)|float|1.0||
-|[enable-opentelemetry](#enable-opentelemetry)|bool|"false"||
-|[opentelemetry-trust-incoming-span](#opentelemetry-trust-incoming-span)|bool|"true"||
-|[opentelemetry-operation-name](#opentelemetry-operation-name)|string|""||
-|[opentelemetry-config](#/etc/nginx/opentelemetry.toml)|string|"/etc/nginx/opentelemetry.toml"||
-|[otlp-collector-host](#otlp-collector-host)|string|""||
-|[otlp-collector-port](#otlp-collector-port)|int|4317||
-|[otel-max-queuesize](#otel-max-queuesize)|int|||
-|[otel-schedule-delay-millis](#otel-schedule-delay-millis)|int|||
-|[otel-max-export-batch-size](#otel-max-export-batch-size)|int|||
-|[otel-service-name](#otel-service-name)|string|"nginx"||
-|[otel-sampler](#otel-sampler)|string|"AlwaysOff"||
-|[otel-sampler-parent-based](#otel-sampler-parent-based)|bool|"false"||
-|[otel-sampler-ratio](#otel-sampler-ratio)|float|0.01||
-|[main-snippet](#main-snippet)|string|""||
-|[http-snippet](#http-snippet)|string|""||
-|[server-snippet](#server-snippet)|string|""||
-|[stream-snippet](#stream-snippet)|string|""||
-|[location-snippet](#location-snippet)|string|""||
-|[custom-http-errors](#custom-http-errors)|[]int|[]int{}||
-|[proxy-body-size](#proxy-body-size)|string|"1m"||
-|[proxy-connect-timeout](#proxy-connect-timeout)|int|5||
-|[proxy-read-timeout](#proxy-read-timeout)|int|60||
-|[proxy-send-timeout](#proxy-send-timeout)|int|60||
-|[proxy-buffers-number](#proxy-buffers-number)|int|4||
-|[proxy-buffer-size](#proxy-buffer-size)|string|"4k"||
-|[proxy-cookie-path](#proxy-cookie-path)|string|"off"||
-|[proxy-cookie-domain](#proxy-cookie-domain)|string|"off"||
-|[proxy-next-upstream](#proxy-next-upstream)|string|"error timeout"||
-|[proxy-next-upstream-timeout](#proxy-next-upstream-timeout)|int|0||
-|[proxy-next-upstream-tries](#proxy-next-upstream-tries)|int|3||
-|[proxy-redirect-from](#proxy-redirect-from)|string|"off"||
-|[proxy-request-buffering](#proxy-request-buffering)|string|"on"||
-|[ssl-redirect](#ssl-redirect)|bool|"true"||
-|[force-ssl-redirect](#force-ssl-redirect)|bool|"false"||
-|[denylist-source-range](#denylist-source-range)|[]string|[]string{}||
-|[whitelist-source-range](#whitelist-source-range)|[]string|[]string{}||
-|[skip-access-log-urls](#skip-access-log-urls)|[]string|[]string{}||
-|[limit-rate](#limit-rate)|int|0||
-|[limit-rate-after](#limit-rate-after)|int|0||
-|[lua-shared-dicts](#lua-shared-dicts)|string|""||
-|[http-redirect-code](#http-redirect-code)|int|308||
-|[proxy-buffering](#proxy-buffering)|string|"off"||
-|[limit-req-status-code](#limit-req-status-code)|int|503||
-|[limit-conn-status-code](#limit-conn-status-code)|int|503||
-|[enable-syslog](#enable-syslog)|bool|false||
-|[syslog-host](#syslog-host)|string|""||
-|[syslog-port](#syslog-port)|int|514||
-|[no-tls-redirect-locations](#no-tls-redirect-locations)|string|"/.well-known/acme-challenge"||
-|[global-auth-url](#global-auth-url)|string|""||
-|[global-auth-method](#global-auth-method)|string|""||
-|[global-auth-signin](#global-auth-signin)|string|""||
-|[global-auth-signin-redirect-param](#global-auth-signin-redirect-param)|string|"rd"||
-|[global-auth-response-headers](#global-auth-response-headers)|string|""||
-|[global-auth-request-redirect](#global-auth-request-redirect)|string|""||
-|[global-auth-snippet](#global-auth-snippet)|string|""||
-|[global-auth-cache-key](#global-auth-cache-key)|string|""||
-|[global-auth-cache-duration](#global-auth-cache-duration)|string|"200 202 401 5m"||
-|[no-auth-locations](#no-auth-locations)|string|"/.well-known/acme-challenge"||
-|[block-cidrs](#block-cidrs)|[]string|""||
-|[block-user-agents](#block-user-agents)|[]string|""||
-|[block-referers](#block-referers)|[]string|""||
-|[proxy-ssl-location-only](#proxy-ssl-location-only)|bool|"false"||
-|[default-type](#default-type)|string|"text/html"||
-|[global-rate-limit-memcached-host](#global-rate-limit)|string|""||
-|[global-rate-limit-memcached-port](#global-rate-limit)|int|11211||
-|[global-rate-limit-memcached-connect-timeout](#global-rate-limit)|int|50||
-|[global-rate-limit-memcached-max-idle-timeout](#global-rate-limit)|int|10000||
-|[global-rate-limit-memcached-pool-size](#global-rate-limit)|int|50||
-|[global-rate-limit-status-code](#global-rate-limit)|int|429||
-|[service-upstream](#service-upstream)|bool|"false"||
-|[ssl-reject-handshake](#ssl-reject-handshake)|bool|"false"||
-|[debug-connections](#debug-connections)|[]string|"127.0.0.1,1.1.1.1/24"||
-|[strict-validate-path-type](#strict-validate-path-type)|bool|"false" (v1.7.x)||
+|name| type         | default                                                                                                                                                                                                                                                                                                                                                      |notes|
+|:---|:-------------|:-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|:----|
+|[add-headers](#add-headers)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[allow-backend-server-header](#allow-backend-server-header)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[allow-cross-namespace-resources](#allow-cross-namespace-resources)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
+|[allow-snippet-annotations](#allow-snippet-annotations)| bool         | false                                                                                                                                                                                                                                                                                                                                                        ||
+|[annotations-risk-level](#annotations-risk-level)| string       | Critical                                                                                                                                                                                                                                                                                                                                                     ||
+|[annotation-value-word-blocklist](#annotation-value-word-blocklist)| string array | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[hide-headers](#hide-headers)| string array | empty                                                                                                                                                                                                                                                                                                                                                        ||
+|[access-log-params](#access-log-params)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[access-log-path](#access-log-path)| string       | "/var/log/nginx/access.log"                                                                                                                                                                                                                                                                                                                                  ||
+|[http-access-log-path](#http-access-log-path)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[stream-access-log-path](#stream-access-log-path)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[enable-access-log-for-default-backend](#enable-access-log-for-default-backend)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[error-log-path](#error-log-path)| string       | "/var/log/nginx/error.log"                                                                                                                                                                                                                                                                                                                                   ||
+|[enable-modsecurity](#enable-modsecurity)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[modsecurity-snippet](#modsecurity-snippet)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[enable-owasp-modsecurity-crs](#enable-owasp-modsecurity-crs)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[client-header-buffer-size](#client-header-buffer-size)| string       | "1k"                                                                                                                                                                                                                                                                                                                                                         ||
+|[client-header-timeout](#client-header-timeout)| int          | 60                                                                                                                                                                                                                                                                                                                                                           ||
+|[client-body-buffer-size](#client-body-buffer-size)| string       | "8k"                                                                                                                                                                                                                                                                                                                                                         ||
+|[client-body-timeout](#client-body-timeout)| int          | 60                                                                                                                                                                                                                                                                                                                                                           ||
+|[disable-access-log](#disable-access-log)| bool         | false                                                                                                                                                                                                                                                                                                                                                        ||
+|[disable-ipv6](#disable-ipv6)| bool         | false                                                                                                                                                                                                                                                                                                                                                        ||
+|[disable-ipv6-dns](#disable-ipv6-dns)| bool         | false                                                                                                                                                                                                                                                                                                                                                        ||
+|[enable-underscores-in-headers](#enable-underscores-in-headers)| bool         | false                                                                                                                                                                                                                                                                                                                                                        ||
+|[enable-ocsp](#enable-ocsp)| bool         | false                                                                                                                                                                                                                                                                                                                                                        ||
+|[ignore-invalid-headers](#ignore-invalid-headers)| bool         | true                                                                                                                                                                                                                                                                                                                                                         ||
+|[retry-non-idempotent](#retry-non-idempotent)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[error-log-level](#error-log-level)| string       | "notice"                                                                                                                                                                                                                                                                                                                                                     ||
+|[http2-max-field-size](#http2-max-field-size)| string       | ""                                                                                                                                                                                                                                                                                                                                                           |DEPRECATED in favour of [large_client_header_buffers](#large-client-header-buffers)|
+|[http2-max-header-size](#http2-max-header-size)| string       | ""                                                                                                                                                                                                                                                                                                                                                           |DEPRECATED in favour of [large_client_header_buffers](#large-client-header-buffers)|
+|[http2-max-requests](#http2-max-requests)| int          | 0                                                                                                                                                                                                                                                                                                                                                            |DEPRECATED in favour of [keepalive_requests](#keepalive-requests)|
+|[http2-max-concurrent-streams](#http2-max-concurrent-streams)| int          | 128                                                                                                                                                                                                                                                                                                                                                          ||
+|[hsts](#hsts)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
+|[hsts-include-subdomains](#hsts-include-subdomains)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
+|[hsts-max-age](#hsts-max-age)| string       | "31536000"                                                                                                                                                                                                                                                                                                                                                   ||
+|[hsts-preload](#hsts-preload)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[keep-alive](#keep-alive)| int          | 75                                                                                                                                                                                                                                                                                                                                                           ||
+|[keep-alive-requests](#keep-alive-requests)| int          | 1000                                                                                                                                                                                                                                                                                                                                                         ||
+|[large-client-header-buffers](#large-client-header-buffers)| string       | "4 8k"                                                                                                                                                                                                                                                                                                                                                       ||
+|[log-format-escape-none](#log-format-escape-none)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[log-format-escape-json](#log-format-escape-json)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[log-format-upstream](#log-format-upstream)| string       | `$remote_addr - $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" $request_length $request_time [$proxy_upstream_name] [$proxy_alternative_upstream_name] $upstream_addr $upstream_response_length $upstream_response_time $upstream_status $req_id`                                                         ||
+|[log-format-stream](#log-format-stream)| string       | `[$remote_addr] [$time_local] $protocol $status $bytes_sent $bytes_received $session_time`                                                                                                                                                                                                                                                                   ||
+|[enable-multi-accept](#enable-multi-accept)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
+|[max-worker-connections](#max-worker-connections)| int          | 16384                                                                                                                                                                                                                                                                                                                                                        ||
+|[max-worker-open-files](#max-worker-open-files)| int          | 0                                                                                                                                                                                                                                                                                                                                                            ||
+|[map-hash-bucket-size](#max-hash-bucket-size)| int          | 64                                                                                                                                                                                                                                                                                                                                                           ||
+|[nginx-status-ipv4-whitelist](#nginx-status-ipv4-whitelist)| []string     | "127.0.0.1"                                                                                                                                                                                                                                                                                                                                                  ||
+|[nginx-status-ipv6-whitelist](#nginx-status-ipv6-whitelist)| []string     | "::1"                                                                                                                                                                                                                                                                                                                                                        ||
+|[proxy-real-ip-cidr](#proxy-real-ip-cidr)| []string     | "0.0.0.0/0"                                                                                                                                                                                                                                                                                                                                                  ||
+|[proxy-set-headers](#proxy-set-headers)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[server-name-hash-max-size](#server-name-hash-max-size)| int          | 1024                                                                                                                                                                                                                                                                                                                                                         ||
+|[server-name-hash-bucket-size](#server-name-hash-bucket-size)| int          | `<size of the processor’s cache line>`                                                                                                                                                                                                                                                                                                                       |
+|[proxy-headers-hash-max-size](#proxy-headers-hash-max-size)| int          | 512                                                                                                                                                                                                                                                                                                                                                          ||
+|[proxy-headers-hash-bucket-size](#proxy-headers-hash-bucket-size)| int          | 64                                                                                                                                                                                                                                                                                                                                                           ||
+|[plugins](#plugins)| []string     |                                                                                                                                                                                                                                                                                                                                                              ||
+|[reuse-port](#reuse-port)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
+|[server-tokens](#server-tokens)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[ssl-ciphers](#ssl-ciphers)| string       | "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"                                                                                                                          ||
+|[ssl-ecdh-curve](#ssl-ecdh-curve)| string       | "auto"                                                                                                                                                                                                                                                                                                                                                       ||
+|[ssl-dh-param](#ssl-dh-param)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[ssl-protocols](#ssl-protocols)| string       | "TLSv1.2 TLSv1.3"                                                                                                                                                                                                                                                                                                                                            ||
+|[ssl-session-cache](#ssl-session-cache)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
+|[ssl-session-cache-size](#ssl-session-cache-size)| string       | "10m"                                                                                                                                                                                                                                                                                                                                                        ||
+|[ssl-session-tickets](#ssl-session-tickets)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[ssl-session-ticket-key](#ssl-session-ticket-key)| string       | `<Randomly Generated>`                                                                                                                                                                                                                                                                                                                                       |
+|[ssl-session-timeout](#ssl-session-timeout)| string       | "10m"                                                                                                                                                                                                                                                                                                                                                        ||
+|[ssl-buffer-size](#ssl-buffer-size)| string       | "4k"                                                                                                                                                                                                                                                                                                                                                         ||
+|[use-proxy-protocol](#use-proxy-protocol)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[proxy-protocol-header-timeout](#proxy-protocol-header-timeout)| string       | "5s"                                                                                                                                                                                                                                                                                                                                                         ||
+|[enable-aio-write](#enable-aio-write)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
+|[use-gzip](#use-gzip)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[use-geoip](#use-geoip)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
+|[use-geoip2](#use-geoip2)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[geoip2-autoreload-in-minutes](#geoip2-autoreload-in-minutes)| int          | "0"                                                                                                                                                                                                                                                                                                                                                          ||
+|[enable-brotli](#enable-brotli)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[brotli-level](#brotli-level)| int          | 4                                                                                                                                                                                                                                                                                                                                                            ||
+|[brotli-min-length](#brotli-min-length)| int          | 20                                                                                                                                                                                                                                                                                                                                                           ||
+|[brotli-types](#brotli-types)| string       | "application/xml+rss application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component" ||
+|[use-http2](#use-http2)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
+|[gzip-disable](#gzip-disable)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[gzip-level](#gzip-level)| int          | 1                                                                                                                                                                                                                                                                                                                                                            ||
+|[gzip-min-length](#gzip-min-length)| int          | 256                                                                                                                                                                                                                                                                                                                                                          ||
+|[gzip-types](#gzip-types)| string       | "application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"                     ||
+|[worker-processes](#worker-processes)| string       | `<Number of CPUs>`                                                                                                                                                                                                                                                                                                                                           ||
+|[worker-cpu-affinity](#worker-cpu-affinity)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[worker-shutdown-timeout](#worker-shutdown-timeout)| string       | "240s"                                                                                                                                                                                                                                                                                                                                                       ||
+|[load-balance](#load-balance)| string       | "round_robin"                                                                                                                                                                                                                                                                                                                                                ||
+|[variables-hash-bucket-size](#variables-hash-bucket-size)| int          | 128                                                                                                                                                                                                                                                                                                                                                          ||
+|[variables-hash-max-size](#variables-hash-max-size)| int          | 2048                                                                                                                                                                                                                                                                                                                                                         ||
+|[upstream-keepalive-connections](#upstream-keepalive-connections)| int          | 320                                                                                                                                                                                                                                                                                                                                                          ||
+|[upstream-keepalive-time](#upstream-keepalive-time)| string       | "1h"                                                                                                                                                                                                                                                                                                                                                         ||
+|[upstream-keepalive-timeout](#upstream-keepalive-timeout)| int          | 60                                                                                                                                                                                                                                                                                                                                                           ||
+|[upstream-keepalive-requests](#upstream-keepalive-requests)| int          | 10000                                                                                                                                                                                                                                                                                                                                                        ||
+|[limit-conn-zone-variable](#limit-conn-zone-variable)| string       | "$binary_remote_addr"                                                                                                                                                                                                                                                                                                                                        ||
+|[proxy-stream-timeout](#proxy-stream-timeout)| string       | "600s"                                                                                                                                                                                                                                                                                                                                                       ||
+|[proxy-stream-next-upstream](#proxy-stream-next-upstream)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
+|[proxy-stream-next-upstream-timeout](#proxy-stream-next-upstream-timeout)| string       | "600s"                                                                                                                                                                                                                                                                                                                                                       ||
+|[proxy-stream-next-upstream-tries](#proxy-stream-next-upstream-tries)| int          | 3                                                                                                                                                                                                                                                                                                                                                            ||
+|[proxy-stream-responses](#proxy-stream-responses)| int          | 1                                                                                                                                                                                                                                                                                                                                                            ||
+|[bind-address](#bind-address)| []string     | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[use-forwarded-headers](#use-forwarded-headers)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[enable-real-ip](#enable-real-ip)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[forwarded-for-header](#forwarded-for-header)| string       | "X-Forwarded-For"                                                                                                                                                                                                                                                                                                                                            ||
+|[compute-full-forwarded-for](#compute-full-forwarded-for)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[proxy-add-original-uri-header](#proxy-add-original-uri-header)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[generate-request-id](#generate-request-id)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
+|[enable-opentracing](#enable-opentracing)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[opentracing-operation-name](#opentracing-operation-name)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[opentracing-location-operation-name](#opentracing-location-operation-name)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[zipkin-collector-host](#zipkin-collector-host)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[zipkin-collector-port](#zipkin-collector-port)| int          | 9411                                                                                                                                                                                                                                                                                                                                                         ||
+|[zipkin-service-name](#zipkin-service-name)| string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      ||
+|[zipkin-sample-rate](#zipkin-sample-rate)| float        | 1.0                                                                                                                                                                                                                                                                                                                                                          ||
+|[jaeger-collector-host](#jaeger-collector-host)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[jaeger-collector-port](#jaeger-collector-port)| int          | 6831                                                                                                                                                                                                                                                                                                                                                         ||
+|[jaeger-endpoint](#jaeger-endpoint)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[jaeger-service-name](#jaeger-service-name)| string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      ||
+|[jaeger-propagation-format](#jaeger-propagation-format)| string       | "jaeger"                                                                                                                                                                                                                                                                                                                                                     ||
+|[jaeger-sampler-type](#jaeger-sampler-type)| string       | "const"                                                                                                                                                                                                                                                                                                                                                      ||
+|[jaeger-sampler-param](#jaeger-sampler-param)| string       | "1"                                                                                                                                                                                                                                                                                                                                                          ||
+|[jaeger-sampler-host](#jaeger-sampler-host)| string       | "http://127.0.0.1"                                                                                                                                                                                                                                                                                                                                           ||
+|[jaeger-sampler-port](#jaeger-sampler-port)| int          | 5778                                                                                                                                                                                                                                                                                                                                                         ||
+|[jaeger-trace-context-header-name](#jaeger-trace-context-header-name)| string       | uber-trace-id                                                                                                                                                                                                                                                                                                                                                ||
+|[jaeger-debug-header](#jaeger-debug-header)| string       | uber-debug-id                                                                                                                                                                                                                                                                                                                                                ||
+|[jaeger-baggage-header](#jaeger-baggage-header)| string       | jaeger-baggage                                                                                                                                                                                                                                                                                                                                               ||
+|[jaeger-trace-baggage-header-prefix](#jaeger-trace-baggage-header-prefix)| string       | uberctx-                                                                                                                                                                                                                                                                                                                                                     ||
+|[datadog-collector-host](#datadog-collector-host)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[datadog-collector-port](#datadog-collector-port)| int          | 8126                                                                                                                                                                                                                                                                                                                                                         ||
+|[datadog-service-name](#datadog-service-name)| string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      ||
+|[datadog-environment](#datadog-environment)| string       | "prod"                                                                                                                                                                                                                                                                                                                                                       ||
+|[datadog-operation-name-override](#datadog-operation-name-override)| string       | "nginx.handle"                                                                                                                                                                                                                                                                                                                                               ||
+|[datadog-priority-sampling](#datadog-priority-sampling)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
+|[datadog-sample-rate](#datadog-sample-rate)| float        | 1.0                                                                                                                                                                                                                                                                                                                                                          ||
+|[enable-opentelemetry](#enable-opentelemetry)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[opentelemetry-trust-incoming-span](#opentelemetry-trust-incoming-span)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
+|[opentelemetry-operation-name](#opentelemetry-operation-name)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[opentelemetry-config](#/etc/nginx/opentelemetry.toml)| string       | "/etc/nginx/opentelemetry.toml"                                                                                                                                                                                                                                                                                                                              ||
+|[otlp-collector-host](#otlp-collector-host)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[otlp-collector-port](#otlp-collector-port)| int          | 4317                                                                                                                                                                                                                                                                                                                                                         ||
+|[otel-max-queuesize](#otel-max-queuesize)| int          |                                                                                                                                                                                                                                                                                                                                                              ||
+|[otel-schedule-delay-millis](#otel-schedule-delay-millis)| int          |                                                                                                                                                                                                                                                                                                                                                              ||
+|[otel-max-export-batch-size](#otel-max-export-batch-size)| int          |                                                                                                                                                                                                                                                                                                                                                              ||
+|[otel-service-name](#otel-service-name)| string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      ||
+|[otel-sampler](#otel-sampler)| string       | "AlwaysOff"                                                                                                                                                                                                                                                                                                                                                  ||
+|[otel-sampler-parent-based](#otel-sampler-parent-based)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[otel-sampler-ratio](#otel-sampler-ratio)| float        | 0.01                                                                                                                                                                                                                                                                                                                                                         ||
+|[main-snippet](#main-snippet)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[http-snippet](#http-snippet)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[server-snippet](#server-snippet)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[stream-snippet](#stream-snippet)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[location-snippet](#location-snippet)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[custom-http-errors](#custom-http-errors)| []int        | []int{}                                                                                                                                                                                                                                                                                                                                                      ||
+|[proxy-body-size](#proxy-body-size)| string       | "1m"                                                                                                                                                                                                                                                                                                                                                         ||
+|[proxy-connect-timeout](#proxy-connect-timeout)| int          | 5                                                                                                                                                                                                                                                                                                                                                            ||
+|[proxy-read-timeout](#proxy-read-timeout)| int          | 60                                                                                                                                                                                                                                                                                                                                                           ||
+|[proxy-send-timeout](#proxy-send-timeout)| int          | 60                                                                                                                                                                                                                                                                                                                                                           ||
+|[proxy-buffers-number](#proxy-buffers-number)| int          | 4                                                                                                                                                                                                                                                                                                                                                            ||
+|[proxy-buffer-size](#proxy-buffer-size)| string       | "4k"                                                                                                                                                                                                                                                                                                                                                         ||
+|[proxy-cookie-path](#proxy-cookie-path)| string       | "off"                                                                                                                                                                                                                                                                                                                                                        ||
+|[proxy-cookie-domain](#proxy-cookie-domain)| string       | "off"                                                                                                                                                                                                                                                                                                                                                        ||
+|[proxy-next-upstream](#proxy-next-upstream)| string       | "error timeout"                                                                                                                                                                                                                                                                                                                                              ||
+|[proxy-next-upstream-timeout](#proxy-next-upstream-timeout)| int          | 0                                                                                                                                                                                                                                                                                                                                                            ||
+|[proxy-next-upstream-tries](#proxy-next-upstream-tries)| int          | 3                                                                                                                                                                                                                                                                                                                                                            ||
+|[proxy-redirect-from](#proxy-redirect-from)| string       | "off"                                                                                                                                                                                                                                                                                                                                                        ||
+|[proxy-request-buffering](#proxy-request-buffering)| string       | "on"                                                                                                                                                                                                                                                                                                                                                         ||
+|[ssl-redirect](#ssl-redirect)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
+|[force-ssl-redirect](#force-ssl-redirect)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[denylist-source-range](#denylist-source-range)| []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   ||
+|[whitelist-source-range](#whitelist-source-range)| []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   ||
+|[skip-access-log-urls](#skip-access-log-urls)| []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   ||
+|[limit-rate](#limit-rate)| int          | 0                                                                                                                                                                                                                                                                                                                                                            ||
+|[limit-rate-after](#limit-rate-after)| int          | 0                                                                                                                                                                                                                                                                                                                                                            ||
+|[lua-shared-dicts](#lua-shared-dicts)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[http-redirect-code](#http-redirect-code)| int          | 308                                                                                                                                                                                                                                                                                                                                                          ||
+|[proxy-buffering](#proxy-buffering)| string       | "off"                                                                                                                                                                                                                                                                                                                                                        ||
+|[limit-req-status-code](#limit-req-status-code)| int          | 503                                                                                                                                                                                                                                                                                                                                                          ||
+|[limit-conn-status-code](#limit-conn-status-code)| int          | 503                                                                                                                                                                                                                                                                                                                                                          ||
+|[enable-syslog](#enable-syslog)| bool         | false                                                                                                                                                                                                                                                                                                                                                        ||
+|[syslog-host](#syslog-host)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[syslog-port](#syslog-port)| int          | 514                                                                                                                                                                                                                                                                                                                                                          ||
+|[no-tls-redirect-locations](#no-tls-redirect-locations)| string       | "/.well-known/acme-challenge"                                                                                                                                                                                                                                                                                                                                ||
+|[global-auth-url](#global-auth-url)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[global-auth-method](#global-auth-method)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[global-auth-signin](#global-auth-signin)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[global-auth-signin-redirect-param](#global-auth-signin-redirect-param)| string       | "rd"                                                                                                                                                                                                                                                                                                                                                         ||
+|[global-auth-response-headers](#global-auth-response-headers)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[global-auth-request-redirect](#global-auth-request-redirect)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[global-auth-snippet](#global-auth-snippet)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[global-auth-cache-key](#global-auth-cache-key)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[global-auth-cache-duration](#global-auth-cache-duration)| string       | "200 202 401 5m"                                                                                                                                                                                                                                                                                                                                             ||
+|[no-auth-locations](#no-auth-locations)| string       | "/.well-known/acme-challenge"                                                                                                                                                                                                                                                                                                                                ||
+|[block-cidrs](#block-cidrs)| []string     | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[block-user-agents](#block-user-agents)| []string     | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[block-referers](#block-referers)| []string     | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[proxy-ssl-location-only](#proxy-ssl-location-only)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[default-type](#default-type)| string       | "text/html"                                                                                                                                                                                                                                                                                                                                                  ||
+|[global-rate-limit-memcached-host](#global-rate-limit)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
+|[global-rate-limit-memcached-port](#global-rate-limit)| int          | 11211                                                                                                                                                                                                                                                                                                                                                        ||
+|[global-rate-limit-memcached-connect-timeout](#global-rate-limit)| int          | 50                                                                                                                                                                                                                                                                                                                                                           ||
+|[global-rate-limit-memcached-max-idle-timeout](#global-rate-limit)| int          | 10000                                                                                                                                                                                                                                                                                                                                                        ||
+|[global-rate-limit-memcached-pool-size](#global-rate-limit)| int          | 50                                                                                                                                                                                                                                                                                                                                                           ||
+|[global-rate-limit-status-code](#global-rate-limit)| int          | 429                                                                                                                                                                                                                                                                                                                                                          ||
+|[service-upstream](#service-upstream)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[ssl-reject-handshake](#ssl-reject-handshake)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
+|[debug-connections](#debug-connections)| []string     | "127.0.0.1,1.1.1.1/24"                                                                                                                                                                                                                                                                                                                                       ||
+|[strict-validate-path-type](#strict-validate-path-type)| bool         | "false" (v1.7.x)                                                                                                                                                                                                                                                                                                                                             ||
+|[grpc-buffer-size-kb](#grpc-buffer-size-kb)| int          | 0                                                                                                                                                                                                                                                                                                                                                            ||
 
 ## add-headers
 
@@ -1432,3 +1433,10 @@ This means that Ingress objects that rely on paths containing regex characters s
 
 The cluster admin should establish validation rules using mechanisms like [Open Policy Agent](https://www.openpolicyagent.org/) to 
 validate that only authorized users can use `ImplementationSpecific` pathType and that only the authorized characters can be used.
+
+## grpc-buffer-size-kb
+
+Sets the configuration for the GRPC Buffer Size parameter. If not set it will use the default from NGINX.
+
+_References:_
+[https://nginx.org/en/docs/http/ngx_http_grpc_module.html#grpc_buffer_size](https://nginx.org/en/docs/http/ngx_http_grpc_module.html#grpc_buffer_size)
\ No newline at end of file
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 12bbb662a..371f3069c 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -20,9 +20,8 @@ import (
 	"strconv"
 	"time"
 
-	"k8s.io/klog/v2"
-
 	apiv1 "k8s.io/api/core/v1"
+	"k8s.io/klog/v2"
 
 	"k8s.io/ingress-nginx/internal/ingress/defaults"
 	"k8s.io/ingress-nginx/pkg/apis/ingress"
@@ -752,6 +751,11 @@ type Configuration struct {
 	// alphanumeric chars, "-", "_", "/".In case of additional characters,
 	// like used on Rewrite configurations the user should use pathType as ImplementationSpecific
 	StrictValidatePathType bool `json:"strict-validate-path-type"`
+
+	// GRPCBufferSizeKb Sets the size of the buffer used for reading the response received
+	// from the gRPC server. The response is passed to the client synchronously,
+	// as soon as it is received.
+	GRPCBufferSizeKb int `json:"grpc-buffer-size-kb"`
 }
 
 // NewDefault returns the default nginx configuration
@@ -917,6 +921,7 @@ func NewDefault() Configuration {
 		GlobalRateLimitStatucCode:              429,
 		DebugConnections:                       []string{},
 		StrictValidatePathType:                 false, // TODO: This will be true in future releases
+		GRPCBufferSizeKb:                       0,
 	}
 
 	if klog.V(5).Enabled() {
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index d5172ff3f..f117070c8 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -331,6 +331,10 @@ http {
     client_body_buffer_size         {{ $cfg.ClientBodyBufferSize }};
     client_body_timeout             {{ $cfg.ClientBodyTimeout }}s;
 
+    {{ if gt $cfg.GRPCBufferSizeKb 0 }}
+    grpc_buffer_size {{ $cfg.GRPCBufferSizeKb }}k;
+    {{ end }}
+
     {{ if and (ne $cfg.HTTP2MaxHeaderSize "") (ne $cfg.HTTP2MaxFieldSize "") }}
     http2_max_field_size            {{ $cfg.HTTP2MaxFieldSize }};
     http2_max_header_size           {{ $cfg.HTTP2MaxHeaderSize }};
diff --git a/test/e2e/settings/grpc.go b/test/e2e/settings/grpc.go
new file mode 100644
index 000000000..fa5f35b24
--- /dev/null
+++ b/test/e2e/settings/grpc.go
@@ -0,0 +1,110 @@
+/*
+Copyright 2024 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package settings
+
+import (
+	"context"
+	"crypto/tls"
+	"fmt"
+	"strings"
+
+	pb "github.com/moul/pb/grpcbin/go-grpc"
+	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
+	"google.golang.org/grpc"
+	"google.golang.org/grpc/credentials"
+	corev1 "k8s.io/api/core/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/util/intstr"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+const echoHost = "echo"
+
+var _ = framework.DescribeSetting("GRPC", func() {
+	f := framework.NewDefaultFramework("grpc-buffersize", framework.WithHTTPBunEnabled())
+
+	ginkgo.It("should set the correct GRPC Buffer Size", func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"grpc-buffer-size-kb": "8",
+		})
+
+		f.WaitForNginxConfiguration(
+			func(cfg string) bool {
+				return strings.Contains(cfg, "grpc_buffer_size 8k")
+			})
+
+		f.NewGRPCBinDeployment()
+
+		host := echoHost
+
+		svc := &corev1.Service{
+			ObjectMeta: metav1.ObjectMeta{
+				Name:      "grpcbin-test",
+				Namespace: f.Namespace,
+			},
+			Spec: corev1.ServiceSpec{
+				ExternalName: fmt.Sprintf("grpcbin.%v.svc.cluster.local", f.Namespace),
+				Type:         corev1.ServiceTypeExternalName,
+				Ports: []corev1.ServicePort{
+					{
+						Name:       host,
+						Port:       9000,
+						TargetPort: intstr.FromInt(9000),
+						Protocol:   "TCP",
+					},
+				},
+			},
+		}
+		f.EnsureService(svc)
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/backend-protocol": "GRPC",
+		}
+
+		ing := framework.NewSingleIngressWithTLS(host, "/", host, []string{host}, f.Namespace, "grpcbin-test", 9000, annotations)
+
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, "grpc_pass grpc://upstream_balancer;")
+			})
+
+		conn, err := grpc.Dial(f.GetNginxIP()+":443",
+			grpc.WithTransportCredentials(
+				credentials.NewTLS(&tls.Config{
+					ServerName:         echoHost,
+					InsecureSkipVerify: true, //nolint:gosec // Ignore certificate validation in testing
+				}),
+			),
+		)
+		assert.Nil(ginkgo.GinkgoT(), err, "error creating a connection")
+		defer conn.Close()
+
+		client := pb.NewGRPCBinClient(conn)
+		ctx := context.Background()
+
+		res, err := client.HeadersUnary(ctx, &pb.EmptyMessage{})
+		assert.Nil(ginkgo.GinkgoT(), err)
+
+		metadata := res.GetMetadata()
+		assert.Equal(ginkgo.GinkgoT(), metadata["content-type"].Values[0], "application/grpc")
+		assert.Equal(ginkgo.GinkgoT(), metadata[":authority"].Values[0], host)
+	})
+})

From 365d886c1d8db4c6e4cc543f5ee08adc5480d0d1 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 25 Mar 2024 01:44:36 +0100
Subject: [PATCH 1214/1641] Chores: Remove recently added whitespaces. (#11156)

---
 docs/user-guide/nginx-configuration/configmap.md |  4 ++--
 rootfs/etc/nginx/template/nginx.tmpl             | 12 ++++++------
 2 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 9dad331f1..89a35b07b 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -741,7 +741,7 @@ _**default:**_ false
 
 ## geoip2-autoreload-in-minutes
 
-Enables the [geoip2 module](https://github.com/leev/ngx_http_geoip2_module) autoreload in MaxMind databases setting the interval in minutes. 
+Enables the [geoip2 module](https://github.com/leev/ngx_http_geoip2_module) autoreload in MaxMind databases setting the interval in minutes.
 
 _**default:**_ 0
 
@@ -1439,4 +1439,4 @@ validate that only authorized users can use `ImplementationSpecific` pathType an
 Sets the configuration for the GRPC Buffer Size parameter. If not set it will use the default from NGINX.
 
 _References:_
-[https://nginx.org/en/docs/http/ngx_http_grpc_module.html#grpc_buffer_size](https://nginx.org/en/docs/http/ngx_http_grpc_module.html#grpc_buffer_size)
\ No newline at end of file
+[https://nginx.org/en/docs/http/ngx_http_grpc_module.html#grpc_buffer_size](https://nginx.org/en/docs/http/ngx_http_grpc_module.html#grpc_buffer_size)
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index f117070c8..b3b3f8683 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -202,7 +202,7 @@ http {
     geoip2 /etc/ingress-controller/geoip/GeoLite2-City.mmdb {
         {{ if (gt $cfg.GeoIP2AutoReloadMinutes 0) }}
         auto_reload {{ $cfg.GeoIP2AutoReloadMinutes }}m;
-        {{ end }}    
+        {{ end }}
         $geoip2_city_country_code source=$remote_addr country iso_code;
         $geoip2_city_country_name source=$remote_addr country names en;
         $geoip2_city_country_geoname_id source=$remote_addr country geoname_id;
@@ -228,7 +228,7 @@ http {
     geoip2 /etc/ingress-controller/geoip/GeoIP2-City.mmdb {
         {{ if (gt $cfg.GeoIP2AutoReloadMinutes 0) }}
         auto_reload {{ $cfg.GeoIP2AutoReloadMinutes }}m;
-        {{ end }}    
+        {{ end }}
         $geoip2_city_country_code source=$remote_addr country iso_code;
         $geoip2_city_country_name source=$remote_addr country names en;
         $geoip2_city_country_geoname_id source=$remote_addr country geoname_id;
@@ -254,7 +254,7 @@ http {
     geoip2 /etc/ingress-controller/geoip/GeoLite2-ASN.mmdb {
         {{ if (gt $cfg.GeoIP2AutoReloadMinutes 0) }}
         auto_reload {{ $cfg.GeoIP2AutoReloadMinutes }}m;
-        {{ end }}    
+        {{ end }}
         $geoip2_asn source=$remote_addr autonomous_system_number;
         $geoip2_org source=$remote_addr autonomous_system_organization;
     }
@@ -264,7 +264,7 @@ http {
     geoip2 /etc/ingress-controller/geoip/GeoIP2-ASN.mmdb {
         {{ if (gt $cfg.GeoIP2AutoReloadMinutes 0) }}
         auto_reload {{ $cfg.GeoIP2AutoReloadMinutes }}m;
-        {{ end }}    
+        {{ end }}
         $geoip2_asn source=$remote_addr autonomous_system_number;
         $geoip2_org source=$remote_addr autonomous_system_organization;
     }
@@ -274,7 +274,7 @@ http {
     geoip2 /etc/ingress-controller/geoip/GeoIP2-ISP.mmdb {
         {{ if (gt $cfg.GeoIP2AutoReloadMinutes 0) }}
         auto_reload {{ $cfg.GeoIP2AutoReloadMinutes }}m;
-        {{ end }}    
+        {{ end }}
         $geoip2_isp source=$remote_addr isp;
         $geoip2_isp_org source=$remote_addr organization;
         $geoip2_asn source=$remote_addr default=0 autonomous_system_number;
@@ -291,7 +291,7 @@ http {
     geoip2 /etc/ingress-controller/geoip/GeoIP2-Anonymous-IP.mmdb {
         {{ if (gt $cfg.GeoIP2AutoReloadMinutes 0) }}
         auto_reload {{ $cfg.GeoIP2AutoReloadMinutes }}m;
-        {{ end }}    
+        {{ end }}
         $geoip2_is_anon source=$remote_addr is_anonymous;
         $geoip2_is_anonymous source=$remote_addr default=0 is_anonymous;
         $geoip2_is_anonymous_vpn source=$remote_addr default=0 is_anonymous_vpn;

From 9e29e89c41cf5d9555dfd95338bca422d9355e7b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 25 Mar 2024 04:48:48 -0700
Subject: [PATCH 1215/1641] Bump github.com/prometheus/common from 0.50.0 to
 0.51.1 (#11159)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.50.0 to 0.51.1.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.50.0...v0.51.1)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 960df0c20..a5b488044 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.0
 	github.com/prometheus/client_model v0.6.0
-	github.com/prometheus/common v0.50.0
+	github.com/prometheus/common v0.51.1
 	github.com/spf13/cobra v1.8.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.9.0
diff --git a/go.sum b/go.sum
index 0b21a7cc5..d79fb373f 100644
--- a/go.sum
+++ b/go.sum
@@ -323,8 +323,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.50.0 h1:YSZE6aa9+luNa2da6/Tik0q0A5AbR+U003TItK57CPQ=
-github.com/prometheus/common v0.50.0/go.mod h1:wHFBCEVWVmHMUpg7pYcOm2QUR/ocQdYSJVQJKnHc3xQ=
+github.com/prometheus/common v0.51.1 h1:eIjN50Bwglz6a/c3hAgSMcofL3nD+nFQkV6Dd4DsQCw=
+github.com/prometheus/common v0.51.1/go.mod h1:lrWtQx+iDfn2mbH5GUzlH9TSHyfZpHkSiG1W7y3sF2Q=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=

From aedb13c9faead3f486d1e5f451a37dfd72e53b77 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 26 Mar 2024 04:19:21 -0700
Subject: [PATCH 1216/1641] Bump the all group with 3 updates (#11157)

Bumps the all group with 3 updates: [actions/dependency-review-action](https://github.com/actions/dependency-review-action), [actions/add-to-project](https://github.com/actions/add-to-project) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `actions/dependency-review-action` from 4.1.3 to 4.2.4
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/9129d7d40b8c12c1ed0f60400d00c92d437adcce...733dd5d4a5203f238c33806593ec0f5fc5343d8c)

Updates `actions/add-to-project` from 0.6.0 to 0.6.1
- [Release notes](https://github.com/actions/add-to-project/releases)
- [Commits](https://github.com/actions/add-to-project/compare/0609a2702eefb44781da00f8e04901d6e5cd2b92...1b844f0c5ac6446a402e0cb3693f9be5eca188c5)

Updates `github/codeql-action` from 3.24.7 to 3.24.9
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/3ab4101902695724f9365a384f86c1074d94e18c...1b1aada464948af03b950897e5eb522f92603cc2)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: actions/add-to-project
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml           | 2 +-
 .github/workflows/project.yml              | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 6d9f9dc8f..f890b4b4d 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@9129d7d40b8c12c1ed0f60400d00c92d437adcce # v4.1.3
+        uses: actions/dependency-review-action@733dd5d4a5203f238c33806593ec0f5fc5343d8c # v4.2.4
diff --git a/.github/workflows/project.yml b/.github/workflows/project.yml
index 2d398e24c..a87742e63 100644
--- a/.github/workflows/project.yml
+++ b/.github/workflows/project.yml
@@ -13,7 +13,7 @@ jobs:
       repository-projects: write
       issues: write
     steps:
-      - uses: actions/add-to-project@0609a2702eefb44781da00f8e04901d6e5cd2b92 # v0.6.0
+      - uses: actions/add-to-project@1b844f0c5ac6446a402e0cb3693f9be5eca188c5 # v0.6.1
         with:
           project-url: https://github.com/orgs/kubernetes/projects/104
           github-token: ${{ secrets.PROJECT_WRITER }}
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 43c63c733..3018dee65 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@3ab4101902695724f9365a384f86c1074d94e18c # v3.24.7
+        uses: github/codeql-action/upload-sarif@1b1aada464948af03b950897e5eb522f92603cc2 # v3.24.9
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 13131d633..8bc0f8e40 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@3ab4101902695724f9365a384f86c1074d94e18c # v3.24.7
+        uses: github/codeql-action/upload-sarif@1b1aada464948af03b950897e5eb522f92603cc2 # v3.24.9
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 7c8af4928b9bbc02264d5c7fad95308f1744a143 Mon Sep 17 00:00:00 2001
From: Matheus Fidelis <msfidelis@users.noreply.github.com>
Date: Thu, 28 Mar 2024 10:36:23 -0300
Subject: [PATCH 1217/1641] Controller: Make Leader Election TTL configurable.
 (#11142)

* feature(leader_ttl): feature to customize ttl to leader be re-elected

* fix(review): docs
---
 charts/ingress-nginx/README.md             |  1 +
 charts/ingress-nginx/templates/_params.tpl |  3 +
 charts/ingress-nginx/values.yaml           |  2 +
 docs/user-guide/cli-arguments.md           |  1 +
 internal/ingress/controller/controller.go  |  1 +
 internal/ingress/controller/nginx.go       |  5 +-
 internal/ingress/controller/status.go      | 11 ++--
 pkg/flags/flags.go                         |  8 +++
 pkg/flags/flags_test.go                    | 69 ++++++++++++++++++++++
 9 files changed, 93 insertions(+), 8 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 1f912ea09..e7298b5b7 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -297,6 +297,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.dnsConfig | object | `{}` | Optionally customize the pod dnsConfig. |
 | controller.dnsPolicy | string | `"ClusterFirst"` | Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'. By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller to keep resolving names inside the k8s network, use ClusterFirstWithHostNet. |
 | controller.electionID | string | `""` | Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader' |
+| controller.electionTTL | string | `""` | Duration a leader election is valid before it's getting re-elected, e.g. `15s`, `10m` or `1h`. (Default: 30s) |
 | controller.enableAnnotationValidations | bool | `false` |  |
 | controller.enableMimalloc | bool | `true` | Enable mimalloc as a drop-in replacement for malloc. # ref: https://github.com/microsoft/mimalloc # |
 | controller.enableTopologyAwareRouting | bool | `false` | This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-mode="auto" Defaults to false |
diff --git a/charts/ingress-nginx/templates/_params.tpl b/charts/ingress-nginx/templates/_params.tpl
index b2b54db19..48569a8b0 100644
--- a/charts/ingress-nginx/templates/_params.tpl
+++ b/charts/ingress-nginx/templates/_params.tpl
@@ -63,6 +63,9 @@
 {{- if .Values.controller.disableLeaderElection }}
 - --disable-leader-election=true
 {{- end }}
+{{- if .Values.controller.electionTTL }}
+- --election-ttl={{ .Values.controller.electionTTL }}
+{{- end }}
 {{- range $key, $value := .Values.controller.extraArgs }}
 {{- /* Accept keys without values or with false as value */}}
 {{- if eq ($value | quote | len) 2 }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 5be9519df..3741323c4 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -85,6 +85,8 @@ controller:
   enableTopologyAwareRouting: false
   # -- This configuration disable Nginx Controller Leader Election
   disableLeaderElection: false
+  # -- Duration a leader election is valid before it's getting re-elected, e.g. `15s`, `10m` or `1h`. (Default: 30s)
+  electionTTL: ""
   # -- This configuration defines if Ingress Controller should allow users to set
   # their own *-snippet annotations, otherwise this is forbidden / dropped
   # when users add those annotations.
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index 275c753ec..f8fdc2ddb 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -22,6 +22,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--disable-sync-events` | Disables the creation of 'Sync' Event resources, but still logs them |
 | `--dynamic-configuration-retries` | Number of times to retry failed dynamic configuration before failing to sync an ingress. (default 15) |
 | `--election-id`                    | Election id to use for Ingress status updates. (default "ingress-controller-leader") |
+| `--election-ttl`                  | Duration a leader election is valid before it's getting re-elected, e.g. `15s`, `10m` or `1h`. (Default: 30s) |
 | `--enable-metrics`                 | Enables the collection of NGINX metrics. (default true) |
 | `--enable-ssl-chain-completion`    | Autocomplete SSL certificate chains with missing intermediate CA certificates. Certificates uploaded to Kubernetes must have the "Authority Information Access" X.509 v3 extension for this to succeed. (default false)|
 | `--enable-ssl-passthrough`         | Enable SSL Passthrough. (default false) |
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 495fead15..db786a15c 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -91,6 +91,7 @@ type Configuration struct {
 	UpdateStatus           bool
 	UseNodeInternalIP      bool
 	ElectionID             string
+	ElectionTTL            time.Duration
 	UpdateStatusOnShutdown bool
 
 	HealthCheckHost string
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 1d385e506..0df5409f4 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -274,8 +274,9 @@ func (n *NGINXController) Start() {
 	if !n.cfg.DisableLeaderElection {
 		electionID := n.cfg.ElectionID
 		setupLeaderElection(&leaderElectionConfig{
-			Client:     n.cfg.Client,
-			ElectionID: electionID,
+			Client:      n.cfg.Client,
+			ElectionID:  electionID,
+			ElectionTTL: n.cfg.ElectionTTL,
 			OnStartedLeading: func(stopCh chan struct{}) {
 				if n.syncStatus != nil {
 					go n.syncStatus.Run(stopCh)
diff --git a/internal/ingress/controller/status.go b/internal/ingress/controller/status.go
index 6bab7c2ad..5a169e1c3 100644
--- a/internal/ingress/controller/status.go
+++ b/internal/ingress/controller/status.go
@@ -36,7 +36,8 @@ import (
 type leaderElectionConfig struct {
 	Client clientset.Interface
 
-	ElectionID string
+	ElectionID  string
+	ElectionTTL time.Duration
 
 	OnStartedLeading func(chan struct{})
 	OnStoppedLeading func()
@@ -107,13 +108,11 @@ func setupLeaderElection(config *leaderElectionConfig) {
 		LockConfig: resourceLockConfig,
 	}
 
-	ttl := 30 * time.Second
-
 	elector, err = leaderelection.NewLeaderElector(leaderelection.LeaderElectionConfig{
 		Lock:          lock,
-		LeaseDuration: ttl,
-		RenewDeadline: ttl / 2,
-		RetryPeriod:   ttl / 4,
+		LeaseDuration: config.ElectionTTL,
+		RenewDeadline: config.ElectionTTL / 2,
+		RetryPeriod:   config.ElectionTTL / 4,
 
 		Callbacks: callbacks,
 	})
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index d7157fa79..5891f636b 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -132,6 +132,9 @@ Requires setting the publish-service parameter to a valid Service reference.`)
 		electionID = flags.String("election-id", "ingress-controller-leader",
 			`Election id to use for Ingress status updates.`)
 
+		electionTTL = flags.Duration("election-ttl", 30*time.Second,
+			`Duration a leader election is valid before it's getting re-elected`)
+
 		updateStatusOnShutdown = flags.Bool("update-status-on-shutdown", true,
 			`Update the load-balancer status of Ingress objects when the controller shuts down.
 Requires the update-status parameter.`)
@@ -314,6 +317,10 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		}
 	}
 
+	if *electionTTL <= 0 {
+		*electionTTL = 30 * time.Second
+	}
+
 	histogramBuckets := &collectors.HistogramBuckets{
 		TimeBuckets:   *timeBuckets,
 		LengthBuckets: *lengthBuckets,
@@ -327,6 +334,7 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		KubeConfigFile:              *kubeConfigFile,
 		UpdateStatus:                *updateStatus,
 		ElectionID:                  *electionID,
+		ElectionTTL:                 *electionTTL,
 		EnableProfiling:             *profiling,
 		EnableMetrics:               *enableMetrics,
 		MetricsPerHost:              *metricsPerHost,
diff --git a/pkg/flags/flags_test.go b/pkg/flags/flags_test.go
index 54b35dbca..e51d5fa6c 100644
--- a/pkg/flags/flags_test.go
+++ b/pkg/flags/flags_test.go
@@ -19,6 +19,7 @@ package flags
 import (
 	"os"
 	"testing"
+	"time"
 )
 
 func TestNoMandatoryFlag(t *testing.T) {
@@ -143,3 +144,71 @@ func TestIfLeaderElectionDisabledFlagIsFalse(t *testing.T) {
 		t.Fatalf("Expected --disable-leader-election and conf.DisableLeaderElection as false, but found: %v", conf.DisableLeaderElection)
 	}
 }
+
+func TestLeaderElectionTTLDefaultValue(t *testing.T) {
+	ResetForTesting(func() { t.Fatal("Parsing failed") })
+
+	oldArgs := os.Args
+	defer func() { os.Args = oldArgs }()
+	os.Args = []string{"cmd", "--http-port", "80", "--https-port", "443"}
+
+	_, conf, err := ParseFlags()
+	if err != nil {
+		t.Fatalf("Unexpected error parsing default flags: %v", err)
+	}
+
+	if conf.ElectionTTL != 30*time.Second {
+		t.Fatalf("Expected --election-ttl and conf.ElectionTTL as 30s, but found: %v", conf.ElectionTTL)
+	}
+}
+
+func TestLeaderElectionTTLParseValueInSeconds(t *testing.T) {
+	ResetForTesting(func() { t.Fatal("Parsing failed") })
+
+	oldArgs := os.Args
+	defer func() { os.Args = oldArgs }()
+	os.Args = []string{"cmd", "--http-port", "80", "--https-port", "443", "--election-ttl", "10s"}
+
+	_, conf, err := ParseFlags()
+	if err != nil {
+		t.Fatalf("Unexpected error parsing default flags: %v", err)
+	}
+
+	if conf.ElectionTTL != 10*time.Second {
+		t.Fatalf("Expected --election-ttl and conf.ElectionTTL as 10s, but found: %v", conf.ElectionTTL)
+	}
+}
+
+func TestLeaderElectionTTLParseValueInMinutes(t *testing.T) {
+	ResetForTesting(func() { t.Fatal("Parsing failed") })
+
+	oldArgs := os.Args
+	defer func() { os.Args = oldArgs }()
+	os.Args = []string{"cmd", "--http-port", "80", "--https-port", "443", "--election-ttl", "10m"}
+
+	_, conf, err := ParseFlags()
+	if err != nil {
+		t.Fatalf("Unexpected error parsing default flags: %v", err)
+	}
+
+	if conf.ElectionTTL != 10*time.Minute {
+		t.Fatalf("Expected --election-ttl and conf.ElectionTTL as 10m, but found: %v", conf.ElectionTTL)
+	}
+}
+
+func TestLeaderElectionTTLParseValueInHours(t *testing.T) {
+	ResetForTesting(func() { t.Fatal("Parsing failed") })
+
+	oldArgs := os.Args
+	defer func() { os.Args = oldArgs }()
+	os.Args = []string{"cmd", "--http-port", "80", "--https-port", "443", "--election-ttl", "1h"}
+
+	_, conf, err := ParseFlags()
+	if err != nil {
+		t.Fatalf("Unexpected error parsing default flags: %v", err)
+	}
+
+	if conf.ElectionTTL != 1*time.Hour {
+		t.Fatalf("Expected --election-ttl and conf.ElectionTTL as 1h, but found: %v", conf.ElectionTTL)
+	}
+}

From e44cab7245ad0e0c31cb6d0c947fa1aa51cff1ba Mon Sep 17 00:00:00 2001
From: Matheus Fidelis <msfidelis@users.noreply.github.com>
Date: Fri, 29 Mar 2024 08:38:02 -0300
Subject: [PATCH 1218/1641] Proposal: e2e tests for regex patterns (#11174)

* tests(path): proposal: e2e tests for regex patterns

* gofumpt

* gofumpt
---
 test/e2e/ingress/pathtype_prefix.go | 134 ++++++++++++++++++++++++++++
 1 file changed, 134 insertions(+)

diff --git a/test/e2e/ingress/pathtype_prefix.go b/test/e2e/ingress/pathtype_prefix.go
index fa664ce27..ce11ca8bf 100644
--- a/test/e2e/ingress/pathtype_prefix.go
+++ b/test/e2e/ingress/pathtype_prefix.go
@@ -68,4 +68,138 @@ var _ = framework.IngressNginxDescribe("[Ingress] [PathType] prefix checks", fun
 			Expect().
 			Status(http.StatusOK)
 	})
+
+	ginkgo.It("should test prefix path using simple regex pattern for /id/{int}", func() {
+		host := "echo.com.br"
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/use-regex": `true`,
+		}
+
+		ing := framework.NewSingleIngress(host, "/id/[0-9]+", host, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.HTTPTestClient().
+			GET("/id/1").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+
+		f.HTTPTestClient().
+			GET("/id/12").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+
+		f.HTTPTestClient().
+			GET("/id/123").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+
+		f.HTTPTestClient().
+			GET("/id/aaa").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+
+		f.HTTPTestClient().
+			GET("/id/123a").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+	})
+
+	ginkgo.It("should test prefix path using regex pattern for /id/{int} ignoring non-digits characters at end of string", func() {
+		host := "echo.regex.br"
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/use-regex": `true`,
+		}
+
+		ing := framework.NewSingleIngress(host, "/id/[0-9]+$", host, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.HTTPTestClient().
+			GET("/id/1").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+
+		f.HTTPTestClient().
+			GET("/id/aaa").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+
+		f.HTTPTestClient().
+			GET("/id/123a").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+	})
+
+	ginkgo.It("should test prefix path using fixed path size regex pattern /id/{int}{3}", func() {
+		host := "echo.regex.size.br"
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/use-regex": `true`,
+		}
+
+		ing := framework.NewSingleIngress(host, "/id/[0-9]{3}$", host, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.HTTPTestClient().
+			GET("/id/99").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+
+		f.HTTPTestClient().
+			GET("/id/123").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+
+		f.HTTPTestClient().
+			GET("/id/9999").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+
+		f.HTTPTestClient().
+			GET("/id/123a").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+	})
+
+	ginkgo.It("should correctly route multi-segment path patterns", func() {
+		host := "echo.multi.segment.br"
+
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/use-regex": `true`,
+		}
+
+		ing := framework.NewSingleIngress(host, "/id/[0-9]+/post/[a-zA-Z]+$", host, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.HTTPTestClient().
+			GET("/id/123/post/abc").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+
+		f.HTTPTestClient().
+			GET("/id/123/post/abc123").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+
+		f.HTTPTestClient().
+			GET("/id/abc/post/abc").
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusNotFound)
+	})
 })

From 5052c8acc06a7cd9ac9e27808d65e7a7a2fcea83 Mon Sep 17 00:00:00 2001
From: Carlos Tadeu Panato Junior <ctadeu@gmail.com>
Date: Fri, 29 Mar 2024 13:39:28 +0100
Subject: [PATCH 1219/1641] bump ginkgo to v2.17.1 (#11177)

Signed-off-by: cpanato <ctadeu@gmail.com>
---
 build/run-in-docker.sh                    |  2 +-
 go.mod                                    | 10 +++---
 go.sum                                    | 20 +++++------
 images/kube-webhook-certgen/rootfs/go.mod | 21 +++++------
 images/kube-webhook-certgen/rootfs/go.sum | 44 +++++++++++------------
 magefiles/go.mod                          |  9 ++---
 magefiles/go.sum                          | 21 ++++-------
 test/e2e/run-chart-test.sh                |  2 +-
 test/e2e/run-kind-e2e.sh                  |  2 +-
 9 files changed, 63 insertions(+), 68 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 367f6138a..62bd7115c 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -82,7 +82,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.15.0
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.17.1
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/go.mod b/go.mod
index a5b488044..a0bb140a0 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.16.0
+	github.com/onsi/ginkgo/v2 v2.17.1
 	github.com/opencontainers/runc v1.1.12
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.0
@@ -31,12 +31,12 @@ require (
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.29.3
-	k8s.io/apiextensions-apiserver v0.29.2
+	k8s.io/apiextensions-apiserver v0.29.3
 	k8s.io/apimachinery v0.29.3
-	k8s.io/apiserver v0.29.2
-	k8s.io/cli-runtime v0.29.2
+	k8s.io/apiserver v0.29.3
+	k8s.io/cli-runtime v0.29.3
 	k8s.io/client-go v0.29.3
-	k8s.io/code-generator v0.29.2
+	k8s.io/code-generator v0.29.3
 	k8s.io/component-base v0.29.3
 	k8s.io/klog/v2 v2.120.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
diff --git a/go.sum b/go.sum
index d79fb373f..4edd9fe56 100644
--- a/go.sum
+++ b/go.sum
@@ -288,8 +288,8 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.16.0 h1:7q1w9frJDzninhXxjZd+Y/x54XNjG/UlRLIYPZafsPM=
-github.com/onsi/ginkgo/v2 v2.16.0/go.mod h1:llBI3WDLL9Z6taip6f33H76YcWtJv+7R3HigUjbIBOs=
+github.com/onsi/ginkgo/v2 v2.17.1 h1:V++EzdbhI4ZV4ev0UTIj0PzhzOcReJFyJaLjtSF55M8=
+github.com/onsi/ginkgo/v2 v2.17.1/go.mod h1:llBI3WDLL9Z6taip6f33H76YcWtJv+7R3HigUjbIBOs=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.30.0 h1:hvMK7xYz4D3HapigLTeGdId/NcfQx1VHMJc60ew99+8=
@@ -742,18 +742,18 @@ honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 k8s.io/api v0.29.3 h1:2ORfZ7+bGC3YJqGpV0KSDDEVf8hdGQ6A03/50vj8pmw=
 k8s.io/api v0.29.3/go.mod h1:y2yg2NTyHUUkIoTC+phinTnEa3KFM6RZ3szxt014a80=
-k8s.io/apiextensions-apiserver v0.29.2 h1:UK3xB5lOWSnhaCk0RFZ0LUacPZz9RY4wi/yt2Iu+btg=
-k8s.io/apiextensions-apiserver v0.29.2/go.mod h1:aLfYjpA5p3OwtqNXQFkhJ56TB+spV8Gc4wfMhUA3/b8=
+k8s.io/apiextensions-apiserver v0.29.3 h1:9HF+EtZaVpFjStakF4yVufnXGPRppWFEQ87qnO91YeI=
+k8s.io/apiextensions-apiserver v0.29.3/go.mod h1:po0XiY5scnpJfFizNGo6puNU6Fq6D70UJY2Cb2KwAVc=
 k8s.io/apimachinery v0.29.3 h1:2tbx+5L7RNvqJjn7RIuIKu9XTsIZ9Z5wX2G22XAa5EU=
 k8s.io/apimachinery v0.29.3/go.mod h1:hx/S4V2PNW4OMg3WizRrHutyB5la0iCUbZym+W0EQIU=
-k8s.io/apiserver v0.29.2 h1:+Z9S0dSNr+CjnVXQePG8TcBWHr3Q7BmAr7NraHvsMiQ=
-k8s.io/apiserver v0.29.2/go.mod h1:B0LieKVoyU7ykQvPFm7XSdIHaCHSzCzQWPFa5bqbeMQ=
-k8s.io/cli-runtime v0.29.2 h1:smfsOcT4QujeghsNjECKN3lwyX9AwcFU0nvJ7sFN3ro=
-k8s.io/cli-runtime v0.29.2/go.mod h1:KLisYYfoqeNfO+MkTWvpqIyb1wpJmmFJhioA0xd4MW8=
+k8s.io/apiserver v0.29.3 h1:xR7ELlJ/BZSr2n4CnD3lfA4gzFivh0wwfNfz9L0WZcE=
+k8s.io/apiserver v0.29.3/go.mod h1:hrvXlwfRulbMbBgmWRQlFru2b/JySDpmzvQwwk4GUOs=
+k8s.io/cli-runtime v0.29.3 h1:r68rephmmytoywkw2MyJ+CxjpasJDQY7AGc3XY2iv1k=
+k8s.io/cli-runtime v0.29.3/go.mod h1:aqVUsk86/RhaGJwDhHXH0jcdqBrgdF3bZWk4Z9D4mkM=
 k8s.io/client-go v0.29.3 h1:R/zaZbEAxqComZ9FHeQwOh3Y1ZUs7FaHKZdQtIc2WZg=
 k8s.io/client-go v0.29.3/go.mod h1:tkDisCvgPfiRpxGnOORfkljmS+UrW+WtXAy2fTvXJB0=
-k8s.io/code-generator v0.29.2 h1:c9/iw2KnNpw2IRV+wwuG/Wns2TjPSgjWzbbjTevyiHI=
-k8s.io/code-generator v0.29.2/go.mod h1:FwFi3C9jCrmbPjekhaCYcYG1n07CYiW1+PAPCockaos=
+k8s.io/code-generator v0.29.3 h1:m7E25/t9R9NvejspO2zBdyu+/Gl0Z5m7dCRc680KS14=
+k8s.io/code-generator v0.29.3/go.mod h1:x47ofBhN4gxYFcxeKA1PYXeaPreAGaDN85Y/lNUsPoM=
 k8s.io/component-base v0.29.3 h1:Oq9/nddUxlnrCuuR2K/jp6aflVvc0uDvxMzAWxnGzAo=
 k8s.io/component-base v0.29.3/go.mod h1:Yuj33XXjuOk2BAaHsIGHhCKZQAgYKhqIxIjIr2UXYio=
 k8s.io/gengo v0.0.0-20240226174109-00c4be8627da h1:uH7pylUCo++9PSvrUA34sbk4Y6PHw/bgEFa80pejI+I=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index de1d86bdd..b1903dcf3 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -6,10 +6,10 @@ require (
 	github.com/onrik/logrus v0.11.0
 	github.com/sirupsen/logrus v1.9.3
 	github.com/spf13/cobra v1.8.0
-	k8s.io/api v0.29.2
-	k8s.io/apimachinery v0.29.2
-	k8s.io/client-go v0.29.2
-	k8s.io/kube-aggregator v0.29.2
+	k8s.io/api v0.29.3
+	k8s.io/apimachinery v0.29.3
+	k8s.io/client-go v0.29.3
+	k8s.io/kube-aggregator v0.29.3
 )
 
 require (
@@ -21,7 +21,7 @@ require (
 	github.com/go-openapi/jsonreference v0.20.4 // indirect
 	github.com/go-openapi/swag v0.22.9 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
-	github.com/golang/protobuf v1.5.3 // indirect
+	github.com/golang/protobuf v1.5.4 // indirect
 	github.com/google/gnostic-models v0.6.8 // indirect
 	github.com/google/gofuzz v1.2.0 // indirect
 	github.com/google/pprof v0.0.0-20240225044709-fd706174c886 // indirect
@@ -34,14 +34,15 @@ require (
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
-	github.com/onsi/ginkgo/v2 v2.15.0 // indirect
+	github.com/onsi/ginkgo/v2 v2.17.1 // indirect
 	github.com/onsi/gomega v1.30.0 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
-	golang.org/x/net v0.21.0 // indirect
-	golang.org/x/oauth2 v0.17.0 // indirect
-	golang.org/x/sys v0.17.0 // indirect
-	golang.org/x/term v0.17.0 // indirect
+	github.com/stretchr/testify v1.9.0 // indirect
+	golang.org/x/net v0.22.0 // indirect
+	golang.org/x/oauth2 v0.18.0 // indirect
+	golang.org/x/sys v0.18.0 // indirect
+	golang.org/x/term v0.18.0 // indirect
 	golang.org/x/text v0.14.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.18.0 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 5f88f3da3..4ec80305a 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -20,8 +20,8 @@ github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
 github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
-github.com/golang/protobuf v1.5.3 h1:KhyjKVUg7Usr/dYsdSqoFveMYd5ko72D+zANwlG1mmg=
-github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
+github.com/golang/protobuf v1.5.4 h1:i7eJL8qZTpSEXOPTxNKhASYpMn+8e5Q6AdndVa1dWek=
+github.com/golang/protobuf v1.5.4/go.mod h1:lnTiLA8Wa4RWRcIUkrtSVa5nRhsEGBg48fD6rSs7xps=
 github.com/google/gnostic-models v0.6.8 h1:yo/ABAfM5IMRsS1VnXjTBvUb61tFIHozhlYvRgGre9I=
 github.com/google/gnostic-models v0.6.8/go.mod h1:5n7qKqH0f5wFt+aWF8CW6pZLLNOfYuF5OpfBSENuI8U=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
@@ -60,8 +60,8 @@ github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/onrik/logrus v0.11.0 h1:pu+BCaWL36t0yQaj/2UHK2erf88dwssAKOT51mxPUVs=
 github.com/onrik/logrus v0.11.0/go.mod h1:fO2vlZwIdti6PidD3gV5YKt9Lq5ptpnP293RAe1ITwk=
-github.com/onsi/ginkgo/v2 v2.15.0 h1:79HwNRBAZHOEwrczrgSOPy+eFTTlIGELKy5as+ClttY=
-github.com/onsi/ginkgo/v2 v2.15.0/go.mod h1:HlxMHtYF57y6Dpf+mc5529KKmSq9h2FpCF+/ZkwUxKM=
+github.com/onsi/ginkgo/v2 v2.17.1 h1:V++EzdbhI4ZV4ev0UTIj0PzhzOcReJFyJaLjtSF55M8=
+github.com/onsi/ginkgo/v2 v2.17.1/go.mod h1:llBI3WDLL9Z6taip6f33H76YcWtJv+7R3HigUjbIBOs=
 github.com/onsi/gomega v1.30.0 h1:hvMK7xYz4D3HapigLTeGdId/NcfQx1VHMJc60ew99+8=
 github.com/onsi/gomega v1.30.0/go.mod h1:9sxs+SwGrKI0+PWe4Fxa9tFQQBG5xSsSbMXOI8PPpoQ=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
@@ -80,8 +80,8 @@ github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
-github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
+github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
+github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/tidwall/gjson v1.14.4 h1:uo0p8EbA09J7RQaflQ1aBRffTR7xedD2bcIVSYxLnkM=
 github.com/tidwall/gjson v1.14.4/go.mod h1:/wbyibRr2FHMks5tjHJ5F8dMZh3AcwJEMf5vlfC0lxk=
 github.com/tidwall/match v1.1.1 h1:+Ho715JplO36QYgwN9PGYNhgZvoUSc9X2c80KVTi+GA=
@@ -104,10 +104,10 @@ golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.21.0 h1:AQyQV4dYCvJ7vGmJyKki9+PBdyvhkSd8EIx/qb0AYv4=
-golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
-golang.org/x/oauth2 v0.17.0 h1:6m3ZPmLEFdVxKKWnKq4VqZ60gutO35zm+zrAHVmHyDQ=
-golang.org/x/oauth2 v0.17.0/go.mod h1:OzPDGQiuQMguemayvdylqddI7qcD9lnSDb+1FiwQ5HA=
+golang.org/x/net v0.22.0 h1:9sGLhx7iRIHEiX0oAJ3MRZMUCElJgy7Br1nO+AMN3Tc=
+golang.org/x/net v0.22.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
+golang.org/x/oauth2 v0.18.0 h1:09qnuIAgzdx1XplqJvW6CQqMCtGZykZWcXzPMPUusvI=
+golang.org/x/oauth2 v0.18.0/go.mod h1:Wf7knwG0MPoWIMMBgFlEaSUDaKskp0dCfrlJRJXbBi8=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -120,12 +120,12 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.17.0 h1:25cE3gD+tdBA7lp7QfhuV+rJiE9YXTcS3VG1SqssI/Y=
-golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.18.0 h1:DBdB3niSjOA/O0blCZBqDefyWNYveAYMNF1Wum0DYQ4=
+golang.org/x/sys v0.18.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/term v0.17.0 h1:mkTF7LCd6WGJNL3K1Ad7kwxNfYAW6a8a8QqtMblp/4U=
-golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk=
+golang.org/x/term v0.18.0 h1:FcHjZXDMxI8mM3nwhX9HlKop4C0YQvCVCdwYl2wOtE8=
+golang.org/x/term v0.18.0/go.mod h1:ILwASektA3OnRv7amZ1xhE/KTR+u50pbXfZ03+6Nx58=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
@@ -162,16 +162,16 @@ gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.29.2 h1:hBC7B9+MU+ptchxEqTNW2DkUosJpp1P+Wn6YncZ474A=
-k8s.io/api v0.29.2/go.mod h1:sdIaaKuU7P44aoyyLlikSLayT6Vb7bvJNCX105xZXY0=
-k8s.io/apimachinery v0.29.2 h1:EWGpfJ856oj11C52NRCHuU7rFDwxev48z+6DSlGNsV8=
-k8s.io/apimachinery v0.29.2/go.mod h1:6HVkd1FwxIagpYrHSwJlQqZI3G9LfYWRPAkUvLnXTKU=
-k8s.io/client-go v0.29.2 h1:FEg85el1TeZp+/vYJM7hkDlSTFZ+c5nnK44DJ4FyoRg=
-k8s.io/client-go v0.29.2/go.mod h1:knlvFZE58VpqbQpJNbCbctTVXcd35mMyAAwBdpt4jrA=
+k8s.io/api v0.29.3 h1:2ORfZ7+bGC3YJqGpV0KSDDEVf8hdGQ6A03/50vj8pmw=
+k8s.io/api v0.29.3/go.mod h1:y2yg2NTyHUUkIoTC+phinTnEa3KFM6RZ3szxt014a80=
+k8s.io/apimachinery v0.29.3 h1:2tbx+5L7RNvqJjn7RIuIKu9XTsIZ9Z5wX2G22XAa5EU=
+k8s.io/apimachinery v0.29.3/go.mod h1:hx/S4V2PNW4OMg3WizRrHutyB5la0iCUbZym+W0EQIU=
+k8s.io/client-go v0.29.3 h1:R/zaZbEAxqComZ9FHeQwOh3Y1ZUs7FaHKZdQtIc2WZg=
+k8s.io/client-go v0.29.3/go.mod h1:tkDisCvgPfiRpxGnOORfkljmS+UrW+WtXAy2fTvXJB0=
 k8s.io/klog/v2 v2.120.1 h1:QXU6cPEOIslTGvZaXvFWiP9VKyeet3sawzTOvdXb4Vw=
 k8s.io/klog/v2 v2.120.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
-k8s.io/kube-aggregator v0.29.2 h1:z9qJn5wlGmGaX6EfM7OEhr6fq6SBjDKR6tPRZ/qgxeY=
-k8s.io/kube-aggregator v0.29.2/go.mod h1:QEuwzmMJJsg0eg1Gv+u4cWcYeJG2+8vN8/nTXBzopUo=
+k8s.io/kube-aggregator v0.29.3 h1:5KvTyFN8sQq2imq8tMAHWEKoE64Zg9WSMaGX78KV6ps=
+k8s.io/kube-aggregator v0.29.3/go.mod h1:xGJqV/SJJ1fbwTGfQLAZfwgqX1EMoaqfotDTkDrqqSk=
 k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b h1:1dzw/KqgSPod72SUp2tuTOmK33TlY2fHlrVU2M9VrOM=
 k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b/go.mod h1:Pa1PvrP7ACSkuX6I7KYomY6cmMA0Tx86waBhDUgoKPw=
 k8s.io/utils v0.0.0-20240102154912-e7106e64919e h1:eQ/4ljkx21sObifjzXwlPKpdGLrCfRziVtos3ofG/sQ=
diff --git a/magefiles/go.mod b/magefiles/go.mod
index bdc592cdd..d41baf17e 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -8,7 +8,7 @@ require (
 	github.com/helm/helm v2.17.0+incompatible
 	github.com/magefile/mage v1.15.0
 	github.com/vmware-labs/yaml-jsonpath v0.3.2
-	golang.org/x/oauth2 v0.17.0
+	golang.org/x/oauth2 v0.18.0
 	gopkg.in/yaml.v3 v3.0.1
 )
 
@@ -20,18 +20,19 @@ require (
 	github.com/fsnotify/fsnotify v1.7.0 // indirect
 	github.com/ghodss/yaml v1.0.0 // indirect
 	github.com/gobwas/glob v0.2.3 // indirect
-	github.com/golang/protobuf v1.5.3 // indirect
+	github.com/golang/protobuf v1.5.4 // indirect
 	github.com/google/go-querystring v1.1.0 // indirect
 	github.com/kr/text v0.2.0 // indirect
 	github.com/onsi/ginkgo v1.16.5 // indirect
 	github.com/onsi/gomega v1.30.0 // indirect
 	github.com/rogpeppe/go-internal v1.11.0 // indirect
 	github.com/sergi/go-diff v1.3.1 // indirect
-	golang.org/x/crypto v0.20.0 // indirect
+	github.com/stretchr/testify v1.9.0 // indirect
+	golang.org/x/crypto v0.21.0 // indirect
 	google.golang.org/appengine v1.6.8 // indirect
 	google.golang.org/protobuf v1.33.0 // indirect
 	gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
-	k8s.io/apimachinery v0.29.2 // indirect
+	k8s.io/apimachinery v0.29.3 // indirect
 	k8s.io/helm v2.17.0+incompatible // indirect
 )
diff --git a/magefiles/go.sum b/magefiles/go.sum
index 8130f1178..5f402c490 100644
--- a/magefiles/go.sum
+++ b/magefiles/go.sum
@@ -30,8 +30,7 @@ github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvq
 github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
 github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
-github.com/golang/protobuf v1.5.3 h1:KhyjKVUg7Usr/dYsdSqoFveMYd5ko72D+zANwlG1mmg=
-github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
+github.com/golang/protobuf v1.5.4 h1:i7eJL8qZTpSEXOPTxNKhASYpMn+8e5Q6AdndVa1dWek=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
@@ -79,8 +78,7 @@ github.com/sergi/go-diff v1.3.1/go.mod h1:aMJSSKb2lpPvRNec0+w3fl7LP9IOFzdc9Pa4NF
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
-github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
-github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
+github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
 github.com/vmware-labs/yaml-jsonpath v0.3.2 h1:/5QKeCBGdsInyDCyVNLbXyilb61MXGi9NP674f9Hobk=
 github.com/vmware-labs/yaml-jsonpath v0.3.2/go.mod h1:U6whw1z03QyqgWdgXxvVnQ90zN1BWz5V+51Ewf8k+rQ=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
@@ -89,8 +87,7 @@ golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACk
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.20.0 h1:jmAMJJZXr5KiCw05dfYK9QnqaqKLYXijU23lsEdcQqg=
-golang.org/x/crypto v0.20.0/go.mod h1:Xwo95rrVNIoSMx9wa1JroENMToLWn3RNVrTBpLHgZPQ=
+golang.org/x/crypto v0.21.0 h1:X31++rzVUdKhX5sWmSOFZxx8UW/ldWx55cbf08iNAMA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -100,10 +97,8 @@ golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.21.0 h1:AQyQV4dYCvJ7vGmJyKki9+PBdyvhkSd8EIx/qb0AYv4=
-golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
-golang.org/x/oauth2 v0.17.0 h1:6m3ZPmLEFdVxKKWnKq4VqZ60gutO35zm+zrAHVmHyDQ=
-golang.org/x/oauth2 v0.17.0/go.mod h1:OzPDGQiuQMguemayvdylqddI7qcD9lnSDb+1FiwQ5HA=
+golang.org/x/net v0.22.0 h1:9sGLhx7iRIHEiX0oAJ3MRZMUCElJgy7Br1nO+AMN3Tc=
+golang.org/x/oauth2 v0.18.0 h1:09qnuIAgzdx1XplqJvW6CQqMCtGZykZWcXzPMPUusvI=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -121,8 +116,7 @@ golang.org/x/sys v0.0.0-20210112080510-489259a85091/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.17.0 h1:25cE3gD+tdBA7lp7QfhuV+rJiE9YXTcS3VG1SqssI/Y=
-golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.18.0 h1:DBdB3niSjOA/O0blCZBqDefyWNYveAYMNF1Wum0DYQ4=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -168,7 +162,6 @@ gopkg.in/yaml.v3 v3.0.0-20191026110619-0b21df46bc1d/go.mod h1:K4uyk7z7BCEPqu6E+C
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/apimachinery v0.29.2 h1:EWGpfJ856oj11C52NRCHuU7rFDwxev48z+6DSlGNsV8=
-k8s.io/apimachinery v0.29.2/go.mod h1:6HVkd1FwxIagpYrHSwJlQqZI3G9LfYWRPAkUvLnXTKU=
+k8s.io/apimachinery v0.29.3 h1:2tbx+5L7RNvqJjn7RIuIKu9XTsIZ9Z5wX2G22XAa5EU=
 k8s.io/helm v2.17.0+incompatible h1:Bpn6o1wKLYqKM3+Osh8e+1/K2g/GsQJ4F4yNF2+deao=
 k8s.io/helm v2.17.0+incompatible/go.mod h1:LZzlS4LQBHfciFOurYBFkCMTaZ0D1l+p0teMg7TSULI=
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 05f199cb2..e38df8690 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.15.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.17.1
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index 5e4afb57d..891e5dbae 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -96,7 +96,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.15.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.17.1
   fi
 
   echo "[dev-env] .. done building controller images"

From 25d2758e94268559f971e8b28ddcd980f5b6448a Mon Sep 17 00:00:00 2001
From: "Y.Horie" <u5.horie@gmail.com>
Date: Sun, 31 Mar 2024 01:23:32 +0900
Subject: [PATCH 1220/1641] fixes brotli build issue (#10484)

---
 images/nginx/rootfs/build.sh | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index d6e7c4a58..98bb346fb 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -465,10 +465,8 @@ make install
 
 # Get Brotli source and deps
 cd "$BUILD_PATH"
-git clone --depth=100 https://github.com/google/ngx_brotli.git
+git clone --depth=1 https://github.com/google/ngx_brotli.git
 cd ngx_brotli
-# https://github.com/google/ngx_brotli/issues/156
-git reset --hard 63ca02abdcf79c9e788d2eedcc388d2335902e52
 git submodule init
 git submodule update
 

From c0767ccc6164882aa83861ae0de68301f2e47505 Mon Sep 17 00:00:00 2001
From: Carlos Tadeu Panato Junior <ctadeu@gmail.com>
Date: Sun, 31 Mar 2024 22:21:33 +0200
Subject: [PATCH 1221/1641] refactor helm ci tests part I (#11178)

* refactor helm ci tests part I

Signed-off-by: cpanato <ctadeu@gmail.com>

* update indentation

Signed-off-by: cpanato <ctadeu@gmail.com>

* fix path

Signed-off-by: cpanato <ctadeu@gmail.com>

* more updates

Signed-off-by: cpanato <ctadeu@gmail.com>

* add helm-lint job

Signed-off-by: cpanato <ctadeu@gmail.com>

---------

Signed-off-by: cpanato <ctadeu@gmail.com>
---
 hack/verify-chart-lint.sh => .ct.yaml | 20 +++++----
 .github/workflows/ci.yaml             | 65 ++++++++++++++++++---------
 charts/ingress-nginx/Chart.yaml       | 14 +++---
 3 files changed, 64 insertions(+), 35 deletions(-)
 rename hack/verify-chart-lint.sh => .ct.yaml (67%)
 mode change 100755 => 100644

diff --git a/hack/verify-chart-lint.sh b/.ct.yaml
old mode 100755
new mode 100644
similarity index 67%
rename from hack/verify-chart-lint.sh
rename to .ct.yaml
index 1c661ae2b..229030219
--- a/hack/verify-chart-lint.sh
+++ b/.ct.yaml
@@ -1,6 +1,4 @@
-#!/bin/bash
-
-# Copyright 2020 The Kubernetes Authors.
+# Copyright 2024 The Kubernetes Authors.
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
@@ -13,10 +11,16 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
+---
+remote: origin
+target-branch: main
 
-set -o errexit
-set -o nounset
-set -o pipefail
+validate-maintainers: false
+check-version-increment: false
 
-KUBE_ROOT="$( cd "$(dirname "$0")../" >/dev/null 2>&1 ; pwd -P )"
-ct lint --charts ${KUBE_ROOT}/charts/ingress-nginx --validate-maintainers=false
+chart-repos:
+  - ingress-nginx=https://kubernetes.github.io/ingress-nginx
+helm-extra-args: --timeout 800s
+
+chart-dirs:
+  - charts
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index a033bbfa9..f19b7158f 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -168,28 +168,30 @@ jobs:
           name: docker.tar.gz
           path: docker.tar.gz
           retention-days: 5
-  helm:
-    name: Helm chart
+
+  helm-lint:
+    name: Helm chart lint
     runs-on: ubuntu-latest
     needs:
       - changes
-      - build
     if: |
       (needs.changes.outputs.charts == 'true') || (needs.changes.outputs.baseimage == 'true')
 
-    strategy:
-      matrix:
-        k8s: [v1.26.6, v1.27.3, v1.28.0, v1.29.0]
-
     steps:
       - name: Checkout
         uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
-
-      - name: Setup Go
-        uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
         with:
-          go-version: ${{ needs.build.outputs.golangversion }}
-          check-latest: true
+          fetch-depth: 0
+
+      - name: Set up Helm
+        uses: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78 # v3.5
+
+      - uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # v5.1.0
+        with:
+          python-version: '3.x'
+
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
 
       - name: Install Helm Unit Test Plugin
         run: |
@@ -199,14 +201,8 @@ jobs:
         run: |
           helm unittest charts/ingress-nginx -d
 
-      - name: cache
-        uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4
-        with:
-          name: docker.tar.gz
-
-      - name: Lint
-        run: |
-          ./build/run-in-docker.sh ./hack/verify-chart-lint.sh
+      - name: Run chart-testing (lint)
+        run: ct lint --config ./.ct.yaml
 
       - name: Run helm-docs
         run: |
@@ -227,6 +223,35 @@ jobs:
           ./ah lint -p charts/ingress-nginx || exit 1
           rm -f ./ah ./ah_1.5.0_linux_amd64.tar.gz
 
+  helm-test:
+    name: Helm chart testing
+    runs-on: ubuntu-latest
+    needs:
+      - changes
+      - build
+      - helm-lint
+    if: |
+      (needs.changes.outputs.charts == 'true') || (needs.changes.outputs.baseimage == 'true')
+
+    strategy:
+      matrix:
+        k8s: [v1.26.6, v1.27.3, v1.28.0, v1.29.0]
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+
+      - name: Setup Go
+        uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
+        with:
+          go-version: ${{ needs.build.outputs.golangversion }}
+          check-latest: true
+
+      - name: cache
+        uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4
+        with:
+          name: docker.tar.gz
+
       - name: fix permissions
         run: |
           sudo mkdir -p $HOME/.kube
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 3e977530f..7996c29c5 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -9,15 +9,15 @@ description: Ingress controller for Kubernetes using NGINX as a reverse proxy an
 home: https://github.com/kubernetes/ingress-nginx
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
 keywords:
-- ingress
-- nginx
+  - ingress
+  - nginx
 kubeVersion: '>=1.20.0-0'
 maintainers:
-- name: Gacko
-- name: rikatz
-- name: strongjz
-- name: tao12345666333
+  - name: Gacko
+  - name: rikatz
+  - name: strongjz
+  - name: tao12345666333
 name: ingress-nginx
 sources:
-- https://github.com/kubernetes/ingress-nginx
+  - https://github.com/kubernetes/ingress-nginx
 version: 4.10.0

From e48fbba774157d5f0c9173c69eac345ca18b1ccb Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 1 Apr 2024 05:39:33 -0700
Subject: [PATCH 1222/1641] Bump actions/add-to-project from 0.6.1 to 1.0.0
 (#11184)

Bumps [actions/add-to-project](https://github.com/actions/add-to-project) from 0.6.1 to 1.0.0.
- [Release notes](https://github.com/actions/add-to-project/releases)
- [Commits](https://github.com/actions/add-to-project/compare/1b844f0c5ac6446a402e0cb3693f9be5eca188c5...2e5cc851ca7162e9eb510e6da6a5c64022e606a7)

---
updated-dependencies:
- dependency-name: actions/add-to-project
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/project.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/project.yml b/.github/workflows/project.yml
index a87742e63..b999e29be 100644
--- a/.github/workflows/project.yml
+++ b/.github/workflows/project.yml
@@ -13,7 +13,7 @@ jobs:
       repository-projects: write
       issues: write
     steps:
-      - uses: actions/add-to-project@1b844f0c5ac6446a402e0cb3693f9be5eca188c5 # v0.6.1
+      - uses: actions/add-to-project@2e5cc851ca7162e9eb510e6da6a5c64022e606a7 # v1.0.0
         with:
           project-url: https://github.com/orgs/kubernetes/projects/104
           github-token: ${{ secrets.PROJECT_WRITER }}

From df9d0e17550d92b1fe11deecd3efa1a391c5b630 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 1 Apr 2024 08:41:43 -0700
Subject: [PATCH 1223/1641] Bump the all group with 2 updates (#11183)

Bumps the all group with 2 updates: [actions/dependency-review-action](https://github.com/actions/dependency-review-action) and [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action).


Updates `actions/dependency-review-action` from 4.2.4 to 4.2.5
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/733dd5d4a5203f238c33806593ec0f5fc5343d8c...5bbc3ba658137598168acb2ab73b21c432dd411b)

Updates `aquasecurity/trivy-action` from 0.18.0 to 0.19.0
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/062f2592684a31eb3aa050cc61e7ca1451cecd3d...d710430a6722f083d3b36b8339ff66b32f22ee55)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index f890b4b4d..3b553afd4 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@733dd5d4a5203f238c33806593ec0f5fc5343d8c # v4.2.4
+        uses: actions/dependency-review-action@5bbc3ba658137598168acb2ab73b21c432dd411b # v4.2.5
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 8bc0f8e40..2d671d966 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@062f2592684a31eb3aa050cc61e7ca1451cecd3d # v0.18.0
+        uses: aquasecurity/trivy-action@d710430a6722f083d3b36b8339ff66b32f22ee55 # v0.19.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'

From b233a96faaa94921ab4672a212dfff789b9c076d Mon Sep 17 00:00:00 2001
From: Karol Kieglerski <kieglerski.karol@gmail.com>
Date: Thu, 4 Apr 2024 15:08:00 +0200
Subject: [PATCH 1224/1641] Fix-semver (#11193)

---
 .../ingress-nginx/templates/controller-service-internal.yaml  | 4 ++--
 .../ingress-nginx/templates/controller-service-webhook.yaml   | 2 +-
 charts/ingress-nginx/templates/controller-service.yaml        | 4 ++--
 charts/ingress-nginx/templates/default-backend-service.yaml   | 2 +-
 4 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-service-internal.yaml b/charts/ingress-nginx/templates/controller-service-internal.yaml
index 950eb8f05..6d0b47caf 100644
--- a/charts/ingress-nginx/templates/controller-service-internal.yaml
+++ b/charts/ingress-nginx/templates/controller-service-internal.yaml
@@ -58,7 +58,7 @@ spec:
       port: {{ .Values.controller.service.internal.ports.http | default .Values.controller.service.ports.http }}
       protocol: TCP
       targetPort: {{ .Values.controller.service.internal.targetPorts.http | default .Values.controller.service.targetPorts.http }}
-    {{- if and (semverCompare ">=1.20" .Capabilities.KubeVersion.Version) (.Values.controller.service.internal.appProtocol) }}
+    {{- if and (semverCompare ">=1.20.0-0" .Capabilities.KubeVersion.Version) (.Values.controller.service.internal.appProtocol) }}
       appProtocol: http
     {{- end }}
     {{- if (and $setNodePorts (not (empty .Values.controller.service.internal.nodePorts.http))) }}
@@ -70,7 +70,7 @@ spec:
       port: {{ .Values.controller.service.internal.ports.https | default .Values.controller.service.ports.https }}
       protocol: TCP
       targetPort: {{ .Values.controller.service.internal.targetPorts.https | default .Values.controller.service.targetPorts.https }}
-    {{- if and (semverCompare ">=1.20" .Capabilities.KubeVersion.Version) (.Values.controller.service.internal.appProtocol) }}
+    {{- if and (semverCompare ">=1.20.0-0" .Capabilities.KubeVersion.Version) (.Values.controller.service.internal.appProtocol) }}
       appProtocol: https
     {{- end }}
     {{- if (and $setNodePorts (not (empty .Values.controller.service.internal.nodePorts.https))) }}
diff --git a/charts/ingress-nginx/templates/controller-service-webhook.yaml b/charts/ingress-nginx/templates/controller-service-webhook.yaml
index 2d02e23aa..6dcf1a10a 100644
--- a/charts/ingress-nginx/templates/controller-service-webhook.yaml
+++ b/charts/ingress-nginx/templates/controller-service-webhook.yaml
@@ -31,7 +31,7 @@ spec:
     - name: https-webhook
       port: 443
       targetPort: webhook
-    {{- if semverCompare ">=1.20" .Capabilities.KubeVersion.Version }}
+    {{- if semverCompare ">=1.20.0-0" .Capabilities.KubeVersion.Version }}
       appProtocol: https
     {{- end }}
   selector:
diff --git a/charts/ingress-nginx/templates/controller-service.yaml b/charts/ingress-nginx/templates/controller-service.yaml
index 74f608536..cb78a7035 100644
--- a/charts/ingress-nginx/templates/controller-service.yaml
+++ b/charts/ingress-nginx/templates/controller-service.yaml
@@ -58,7 +58,7 @@ spec:
       port: {{ .Values.controller.service.ports.http }}
       protocol: TCP
       targetPort: {{ .Values.controller.service.targetPorts.http }}
-    {{- if and (semverCompare ">=1.20" .Capabilities.KubeVersion.Version) (.Values.controller.service.appProtocol) }}
+    {{- if and (semverCompare ">=1.20.0-0" .Capabilities.KubeVersion.Version) (.Values.controller.service.appProtocol) }}
       appProtocol: http
     {{- end }}
     {{- if (and $setNodePorts (not (empty .Values.controller.service.nodePorts.http))) }}
@@ -70,7 +70,7 @@ spec:
       port: {{ .Values.controller.service.ports.https }}
       protocol: TCP
       targetPort: {{ .Values.controller.service.targetPorts.https }}
-    {{- if and (semverCompare ">=1.20" .Capabilities.KubeVersion.Version) (.Values.controller.service.appProtocol) }}
+    {{- if and (semverCompare ">=1.20.0-0" .Capabilities.KubeVersion.Version) (.Values.controller.service.appProtocol) }}
       appProtocol: https
     {{- end }}
     {{- if (and $setNodePorts (not (empty .Values.controller.service.nodePorts.https))) }}
diff --git a/charts/ingress-nginx/templates/default-backend-service.yaml b/charts/ingress-nginx/templates/default-backend-service.yaml
index 2cccd6e9e..65b6b8362 100644
--- a/charts/ingress-nginx/templates/default-backend-service.yaml
+++ b/charts/ingress-nginx/templates/default-backend-service.yaml
@@ -32,7 +32,7 @@ spec:
       port: {{ .Values.defaultBackend.service.servicePort }}
       protocol: TCP
       targetPort: http
-    {{- if semverCompare ">=1.20" .Capabilities.KubeVersion.Version }}
+    {{- if semverCompare ">=1.20.0-0" .Capabilities.KubeVersion.Version }}
       appProtocol: http
     {{- end }}
   selector:

From 404bfc348518139c1c201f459d20d02ff85a2de3 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 4 Apr 2024 09:20:16 -0400
Subject: [PATCH 1225/1641] force nginx rebuild

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/nginx-1.25/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx-1.25/TAG b/images/nginx-1.25/TAG
index 837042c77..254a9f20d 100644
--- a/images/nginx-1.25/TAG
+++ b/images/nginx-1.25/TAG
@@ -1 +1 @@
-v0.0.5
\ No newline at end of file
+v0.0.6
\ No newline at end of file

From 8d402ebfd82f512bedf096920730be89fbbc871f Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 4 Apr 2024 09:27:19 -0400
Subject: [PATCH 1226/1641] update test image and go version

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 GOLANG_VERSION         | 2 +-
 images/test-runner/TAG | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/GOLANG_VERSION b/GOLANG_VERSION
index 24b38a959..8864ad297 100644
--- a/GOLANG_VERSION
+++ b/GOLANG_VERSION
@@ -1 +1 @@
-1.22.1
\ No newline at end of file
+1.22.2
\ No newline at end of file
diff --git a/images/test-runner/TAG b/images/test-runner/TAG
index 95e94cdd3..90ab6e946 100644
--- a/images/test-runner/TAG
+++ b/images/test-runner/TAG
@@ -1 +1 @@
-v0.0.1
\ No newline at end of file
+v0.0.2
\ No newline at end of file

From bf3fa531676ce2b61effb55f5a94345dbc382d09 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 4 Apr 2024 17:01:10 +0200
Subject: [PATCH 1227/1641] Owners: Promote Gacko to
 `ingress-nginx-maintainers` & `ingress-nginx-reviewers`. (#11165)

* Owners: Sort `ingress-nginx-maintainers` & `ingress-nginx-reviewers`.

* Owners: Update URL in aliases.

* Images: Remove owners as it's identical to global owners.

* Images: Remove global owners from `kube-webhook-certgen` owners.

* Owners: Remove members from aliases covered by other aliases.

ingress-nginx-helm-maintainers:
- cpanato: Covered by ingress-nginx-maintainers
- strongjz: Covered by ingress-nginx-maintainers

ingress-nginx-helm-reviewers:
- cpanato: Covered by ingress-nginx-reviewers
- strongjz: Covered by ingress-nginx-reviewers

ingress-nginx-docs-maintainers:
- tao12345666333: Covered by ingress-nginx-maintainers

* Owners: Promote myself to `ingress-nginx-maintainers` & `ingress-nginx-reviewers`.
---
 OWNERS                             |  4 ++--
 OWNERS_ALIASES                     | 19 +++++++------------
 charts/ingress-nginx/OWNERS        |  2 +-
 docs/OWNERS                        |  4 ++--
 images/OWNERS                      |  9 ---------
 images/kube-webhook-certgen/OWNERS |  8 +-------
 rootfs/etc/nginx/lua/OWNERS        |  4 ++--
 7 files changed, 15 insertions(+), 35 deletions(-)
 delete mode 100644 images/OWNERS

diff --git a/OWNERS b/OWNERS
index da1da1b2e..f1e022c38 100644
--- a/OWNERS
+++ b/OWNERS
@@ -1,4 +1,4 @@
-# See the OWNERS docs: https://github.com/kubernetes/community/blob/master/contributors/guide/owners.md
+# See the OWNERS docs: https://www.kubernetes.dev/docs/guide/owners
 
 approvers:
 - ingress-nginx-maintainers
@@ -7,6 +7,6 @@ reviewers:
 - ingress-nginx-reviewers
 
 emeritus_approvers:
-- aledbf  # 2020-04-02
+- aledbf # 2020-04-02
 - bowei # 2022-10-12
 - ElvinEfendi # 2023-04-23
diff --git a/OWNERS_ALIASES b/OWNERS_ALIASES
index 44fc67d2e..fa10804ce 100644
--- a/OWNERS_ALIASES
+++ b/OWNERS_ALIASES
@@ -1,4 +1,4 @@
-# See the OWNERS docs: https://git.k8s.io/community/docs/devel/owners.md
+# See the OWNERS docs: https://www.kubernetes.dev/docs/guide/owners
 
 aliases:
   sig-network-leads:
@@ -11,34 +11,29 @@ aliases:
   - strongjz
 
   ingress-nginx-maintainers:
+  - cpanato
+  - Gacko
+  - puerco
   - rikatz
   - strongjz
-  - cpanato
-  - puerco
   - tao12345666333
 
   ingress-nginx-reviewers:
+  - cpanato
+  - Gacko
+  - puerco
   - rikatz
   - strongjz
-  - puerco
-  - cpanato
   - tao12345666333
 
   ingress-nginx-helm-maintainers:
-  - cpanato
-  - Gacko
-  - strongjz
   - ubergesundheit
 
   ingress-nginx-helm-reviewers:
-  - cpanato
-  - Gacko
-  - strongjz
   - ubergesundheit
 
   ingress-nginx-docs-maintainers:
   - longwuyuan
-  - tao12345666333
 
   ingress-nginx-kube-webhook-certgen-reviewers:
   - invidian
diff --git a/charts/ingress-nginx/OWNERS b/charts/ingress-nginx/OWNERS
index 6b7e049ca..d588ede68 100644
--- a/charts/ingress-nginx/OWNERS
+++ b/charts/ingress-nginx/OWNERS
@@ -1,4 +1,4 @@
-# See the OWNERS docs: https://github.com/kubernetes/community/blob/master/contributors/guide/owners.md
+# See the OWNERS docs: https://www.kubernetes.dev/docs/guide/owners
 
 approvers:
 - ingress-nginx-helm-maintainers
diff --git a/docs/OWNERS b/docs/OWNERS
index e8b886e5b..245cb8688 100644
--- a/docs/OWNERS
+++ b/docs/OWNERS
@@ -1,7 +1,7 @@
-# See the OWNERS docs: https://github.com/kubernetes/community/blob/master/contributors/guide/owners.md
+# See the OWNERS docs: https://www.kubernetes.dev/docs/guide/owners
 
 approvers:
 - ingress-nginx-docs-maintainers
 
 labels:
-- area/docs
\ No newline at end of file
+- area/docs
diff --git a/images/OWNERS b/images/OWNERS
deleted file mode 100644
index 00f162ebd..000000000
--- a/images/OWNERS
+++ /dev/null
@@ -1,9 +0,0 @@
-# See the OWNERS docs: https://github.com/kubernetes/community/blob/master/contributors/guide/owners.md
-
-approvers:
-- ingress-nginx-admins
-- ingress-nginx-maintainers
-
-reviewers:
-- ingress-nginx-admins
-- ingress-nginx-maintainers
diff --git a/images/kube-webhook-certgen/OWNERS b/images/kube-webhook-certgen/OWNERS
index ad47b2e6d..b4424221c 100644
--- a/images/kube-webhook-certgen/OWNERS
+++ b/images/kube-webhook-certgen/OWNERS
@@ -1,10 +1,4 @@
-# See the OWNERS docs: https://github.com/kubernetes/community/blob/master/contributors/guide/owners.md
-
-approvers:
-- ingress-nginx-admins
-- ingress-nginx-maintainers
+# See the OWNERS docs: https://www.kubernetes.dev/docs/guide/owners
 
 reviewers:
-- ingress-nginx-admins
-- ingress-nginx-maintainers
 - ingress-nginx-kube-webhook-certgen-reviewers
diff --git a/rootfs/etc/nginx/lua/OWNERS b/rootfs/etc/nginx/lua/OWNERS
index 79814fdba..efb131316 100644
--- a/rootfs/etc/nginx/lua/OWNERS
+++ b/rootfs/etc/nginx/lua/OWNERS
@@ -1,4 +1,4 @@
-# See the OWNERS docs: https://github.com/kubernetes/community/blob/master/contributors/guide/owners.md
+# See the OWNERS docs: https://www.kubernetes.dev/docs/guide/owners
 
 labels:
-- area/lua
\ No newline at end of file
+- area/lua

From 622e36fd6a988d540f871a45d0cd3e08d32b29db Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 4 Apr 2024 20:37:33 +0530
Subject: [PATCH 1228/1641] bump ginkgo to 2-17-1 in testrunner (#11202)

---
 images/test-runner/Makefile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 627475d22..ac0757ab2 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -59,7 +59,7 @@ image:
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.11.2 \
-		--build-arg GINKGO_VERSION=2.15.0 \
+		--build-arg GINKGO_VERSION=2.17.1 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -80,7 +80,7 @@ build: ensure-buildx
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.11.2 \
-		--build-arg GINKGO_VERSION=2.15.0 \
+		--build-arg GINKGO_VERSION=2.17.1 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 

From 3599a4c6ccea43f136baf2f184f5ad72a6f1143f Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 4 Apr 2024 20:48:53 +0530
Subject: [PATCH 1229/1641] chunking related faq update (#11196)

---
 docs/faq.md | 44 ++++++++++++++++++++++++++++++++++----------
 1 file changed, 34 insertions(+), 10 deletions(-)

diff --git a/docs/faq.md b/docs/faq.md
index 253378c65..a210c221b 100644
--- a/docs/faq.md
+++ b/docs/faq.md
@@ -7,27 +7,51 @@ Please read [Retain Client IPAddress Guide here](./user-guide/retaining-client-i
 
 ## Kubernetes v1.22 Migration
 
-If you are using Ingress objects in your cluster (running Kubernetes older than v1.22), and you plan to upgrade your Kubernetes version to K8S 1.22 or above, then please read [the migration guide here](./user-guide/k8s-122-migration.md).
+If you are using Ingress objects in your cluster (running Kubernetes older than
+version 1.22), and you plan to upgrade your Kubernetes version to K8S 1.22 or
+above, then please read [the migration guide here](./user-guide/k8s-122-migration.md).
 
 ## Validation Of __`path`__
 
-- For improving security and also following desired standards on Kubernetes API spec, the next release, scheduled for v1.8.0, will include a new & optional feature of validating the value for the key `ingress.spec.rules.http.paths.path` .
+- For improving security and also following desired standards on Kubernetes API
+spec, the next release, scheduled for v1.8.0, will include a new & optional
+feature of validating the value for the key `ingress.spec.rules.http.paths.path`.
 
-- This behavior will be disabled by default on the 1.8.0 release and enabled by default on the next breaking change release, set for 2.0.0.
+- This behavior will be disabled by default on the 1.8.0 release and enabled by
+default on the next breaking change release, set for 2.0.0.
 
-- When "`ingress.spec.rules.http.pathType=Exact`" or "`pathType=Prefix`", this validation will limit the characters accepted on the field "`ingress.spec.rules.http.paths.path`",  to "`alphanumeric characters`", and  `"/," "_," "-."` Also, in this case, the path should start with `"/."`
+- When "`ingress.spec.rules.http.pathType=Exact`" or "`pathType=Prefix`", this
+validation will limit the characters accepted on the field "`ingress.spec.rules.http.paths.path`",
+to "`alphanumeric characters`", and  `"/," "_," "-."` Also, in this case,
+the path should start with `"/."`
 
-- When the ingress resource path contains other characters (like on rewrite configurations), the pathType value should be "`ImplementationSpecific`".
+- When the ingress resource path contains other characters (like on rewrite
+configurations), the pathType value should be "`ImplementationSpecific`".
 
 - API Spec on pathType is documented [here](https://kubernetes.io/docs/concepts/services-networking/ingress/#path-types)
 
-- When this option is enabled, the validation will happen on the Admission Webhook. So if any new ingress object contains characters other than  "`alphanumeric characters`", and  `"/," "_," "-."` , in the `path` field, but is not using `pathType` value as `ImplementationSpecific`, then the ingress object will be denied admission.
+- When this option is enabled, the validation will happen on the Admission
+Webhook. So if any new ingress object contains characters other than
+alphanumeric characters, and, `"/,","_","-"`, in the `path` field, but
+is not using `pathType` value as `ImplementationSpecific`, then the ingress
+object will be denied admission.
 
-- The cluster admin should establish validation rules using mechanisms like "`Open Policy Agent`", to validate that only authorized users can use ImplementationSpecific pathType and that only the authorized characters can be used. [The configmap value is here](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#strict-validate-path-type)
+- The cluster admin should establish validation rules using mechanisms like
+"`Open Policy Agent`", to validate that only authorized users can use
+ImplementationSpecific pathType and that only the authorized characters can be
+used. [The configmap value is here](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#strict-validate-path-type)
 
 - A complete example of an Openpolicyagent gatekeeper rule is available [here](https://kubernetes.github.io/ingress-nginx/examples/openpolicyagent/)
 
-- If you have any issues or concerns, please do one of the following: 
-  - Open a GitHub issue 
+- If you have any issues or concerns, please do one of the following:
+  - Open a GitHub issue
   - Comment in our Dev Slack Channel
-  - Open a thread in our Google Group ingress-nginx-dev@kubernetes.io
+  - Open a thread in our Google Group <ingress-nginx-dev@kubernetes.io>
+
+## Why is chunking not working since controller v1.10 ?
+
+- If your code is setting the HTTP header `"Transfer-Encoding: chunked"` and
+the controller log messages show an error about duplicate header, it is
+because of this change <http://hg.nginx.org/nginx/rev/2bf7792c262e>
+
+- More details are available in this issue <https://github.com/kubernetes/ingress-nginx/issues/11162>

From ad274ab2c62604a8d6b950793536df97f214a18f Mon Sep 17 00:00:00 2001
From: TheRealNoob <TheRealNoob@users.noreply.github.com>
Date: Thu, 4 Apr 2024 12:50:05 -0700
Subject: [PATCH 1230/1641] Chart: Make `controller.config` templatable.
 (#11181)

* [helm] pass controller.config through tpl

* add unittest

* update README.md

* Update charts/ingress-nginx/README.md

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/tests/controller-configmap_test.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/values.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

---------

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 charts/ingress-nginx/README.md                  |  2 +-
 .../templates/controller-configmap.yaml         |  2 +-
 .../tests/controller-configmap_test.yaml        | 17 +++++++++++++++++
 charts/ingress-nginx/values.yaml                |  3 ++-
 4 files changed, 21 insertions(+), 3 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index e7298b5b7..f5197537e 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -285,7 +285,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.autoscaling.targetCPUUtilizationPercentage | int | `50` |  |
 | controller.autoscaling.targetMemoryUtilizationPercentage | int | `50` |  |
 | controller.autoscalingTemplate | list | `[]` |  |
-| controller.config | object | `{}` | Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/ |
+| controller.config | object | `{}` | Global configuration passed to the ConfigMap consumed by the controller. Values may contain Helm templates. Ref.: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/ |
 | controller.configAnnotations | object | `{}` | Annotations to be added to the controller config configuration configmap. |
 | controller.configMapNamespace | string | `""` | Allows customization of the configmap / nginx-configmap namespace; defaults to $(POD_NAMESPACE) |
 | controller.containerName | string | `"controller"` | Configures the controller container name |
diff --git a/charts/ingress-nginx/templates/controller-configmap.yaml b/charts/ingress-nginx/templates/controller-configmap.yaml
index 662a16204..22080d115 100644
--- a/charts/ingress-nginx/templates/controller-configmap.yaml
+++ b/charts/ingress-nginx/templates/controller-configmap.yaml
@@ -24,5 +24,5 @@ data:
   ssl-dh-param: {{ include "ingress-nginx.namespace" . }}/{{ include "ingress-nginx.controller.fullname" . }}
 {{- end }}
 {{- range $key, $value := .Values.controller.config }}
-  {{- $key | nindent 2 }}: {{ $value | quote }}
+  {{- $key | nindent 2 }}: {{ tpl (toString $value) $ | quote }}
 {{- end }}
diff --git a/charts/ingress-nginx/tests/controller-configmap_test.yaml b/charts/ingress-nginx/tests/controller-configmap_test.yaml
index 038760338..9cfea9800 100644
--- a/charts/ingress-nginx/tests/controller-configmap_test.yaml
+++ b/charts/ingress-nginx/tests/controller-configmap_test.yaml
@@ -12,3 +12,20 @@ tests:
       - equal:
           path: metadata.name
           value: RELEASE-NAME-ingress-nginx-controller
+
+  - it: should create a ConfigMap with templated values if `controller.config` contains templates
+    set:
+      controller.config:
+        global-rate-limit-memcached-host: "memcached.{{ .Release.Namespace }}.svc.kubernetes.local"
+        global-rate-limit-memcached-port: 11211
+        use-gzip: true
+    asserts:
+      - equal:
+          path: data.global-rate-limit-memcached-host
+          value: memcached.NAMESPACE.svc.kubernetes.local
+      - equal:
+          path: data.global-rate-limit-memcached-port
+          value: "11211"
+      - equal:
+          path: data.use-gzip
+          value: "true"
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 3741323c4..f0e5ba312 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -45,7 +45,8 @@ controller:
   containerPort:
     http: 80
     https: 443
-  # -- Will add custom configuration options to Nginx https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/
+  # -- Global configuration passed to the ConfigMap consumed by the controller. Values may contain Helm templates.
+  # Ref.: https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/
   config: {}
   # -- Annotations to be added to the controller config configuration configmap.
   configAnnotations: {}

From fb7db8b7815acb0a6481f80582bb45a9eace3357 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 5 Apr 2024 08:24:16 +0530
Subject: [PATCH 1231/1641] updated baseimage & deleted a useless file (#11208)

---
 NGINX_BASE         |  2 +-
 ingress-nginx.yaml | 68 ----------------------------------------------
 2 files changed, 1 insertion(+), 69 deletions(-)
 delete mode 100644 ingress-nginx.yaml

diff --git a/NGINX_BASE b/NGINX_BASE
index 4daa5c4d3..4d2c4917f 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx-1.25:v0.0.5@sha256:cdafd6c9d36e23414ce41330a482f9136ce82fac46802809681f61cdcd5ad0bb
+registry.k8s.io/ingress-nginx/nginx-1.25:v0.0.6@sha256:b3e027ab191eb9461a9bcf25092eabb1d547cba164992dbd722c1aa2b4a936ee
diff --git a/ingress-nginx.yaml b/ingress-nginx.yaml
deleted file mode 100644
index be66255e0..000000000
--- a/ingress-nginx.yaml
+++ /dev/null
@@ -1,68 +0,0 @@
-CURRENT_VERSION: "v1.5.1"
-GOLANG_VERSION: "1.19.2"
-GIT_TAG: "controller-v1.5.1"
-NGINX_BASE_IMAGE: "registry.k8s.io/ingress-nginx/nginx:0b5e0685112e4537ee20a0bdbba451e9f6158aa3@sha256:3f5e28bb248d5170e77b77fc2a1a385724aeff41a0b34b5afad7dd9cf93de000"
-NGINX_VERSION: "1.21.6"
-VERSION_TABLE:
-  - "v1.5.1":
-    - Alpine: "3.16.2"
-    - Kubernetes: ["1.25","1.24","1.23"]
-    - NGINX: "1.21.6"
-    - CONTROLLER_IMAGE: "registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629"
-    - CHROOT_CONTROLLER_IMAGE: "registry.k8s.io/ingress-nginx/controller-chroot:v1.5.1@sha256:c1c091b88a6c936a83bd7b098662760a87868d12452529bad0d178fb36147345"
-  - "v1.4.0":
-      - Alpine: "3.16.2"
-      - Kubernetes: [  "1.24","1.23", "1.22", "1.21", "1.20" ]
-      - NGINX: "1.19.10"
-  - "v1.3.1":
-      - Alpine: "3.16.2"
-      - Kubernetes: [  "1.24","1.23", "1.22", "1.21", "1.20" ]
-      - NGINX: "1.19.10"
-  - "v1.3.0":
-      - Alpine: "3.16.2"
-      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
-      - NGINX: "1.19.10"
-  - "v1.2.1":
-      - Alpine: "3.16.2"
-      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
-      - NGINX: "1.19.10"
-  - "v1.1.3":
-      - Alpine: "3.16.2"
-      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
-      - NGINX: "1.19.10"
-  - "v1.1.2":
-      - Alpine: "3.16.2"
-      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
-      - NGINX: "1.19.10"
-  - "v1.1.1":
-      - Alpine: "3.16.2"
-      - Kubernetes: [  "1.24","1.23", "1.22", "1.21", "1.20" ]
-      - NGINX: "1.19.10"
-  - "v1.1.0":
-      - Alpine: "3.16.2"
-      - Kubernetes: [  "1.24","1.23", "1.22", "1.21", "1.20" ]
-      - NGINX: "1.19.10"
-  - "v1.0.5":
-      - Alpine: "3.16.2"
-      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
-      - NGINX: "1.19.10"
-  - "v1.0.4":
-      - Alpine: "3.16.2"
-      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
-      - NGINX: "1.19.10"
-  - "v1.0.3":
-      - Alpine: "3.16.2"
-      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
-      - NGINX: "1.19.10"
-  - "v1.0.2":
-      - Alpine: "3.16.2"
-      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
-      - NGINX: "1.19.10"
-  - "v1.0.1":
-      - Alpine: "3.16.2"
-      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
-      - NGINX: "1.19.10"
-  - "v1.0.0":
-      - Alpine: "3.16.2"
-      - Kubernetes: [ "1.24","1.23", "1.22", "1.21", "1.20" ]
-      - NGINX: "1.19.10"

From f93cfb781523c4386aa11a11327a69b5a54e9dbe Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 5 Apr 2024 15:28:19 +0530
Subject: [PATCH 1232/1641] changed testrunner image sha (#11207)

---
 build/run-in-docker.sh     | 4 ++--
 test/e2e-image/Makefile    | 2 +-
 test/e2e/run-chart-test.sh | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 62bd7115c..5d4e82a09 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240126-760bf8eb@sha256:5e676bf2e5d5d035adfc6e093abee040af08327011e72fef640fa20da73cea2e}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240404-436df3e4@sha256:6bcba53b14d396177414e01f20e9111f1c009ac3b476a9b7668bb98d12bd5e85}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
@@ -96,4 +96,4 @@ else
   fi
 
   ${RUNTIME} run $args ${E2E_IMAGE} ${USE_SHELL} -c "${FLAGS}"
-fi
\ No newline at end of file
+fi
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 9f43c4691..daba2b674 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240126-760bf8eb@sha256:5e676bf2e5d5d035adfc6e093abee040af08327011e72fef640fa20da73cea2e"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240404-436df3e4@sha256:6bcba53b14d396177414e01f20e9111f1c009ac3b476a9b7668bb98d12bd5e85"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index e38df8690..a453bd1b4 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -109,7 +109,7 @@ docker run --rm --interactive --network host \
     --volume $KUBECONFIG:/root/.kube/config \
     --volume "${DIR}/../../":/workdir \
     --workdir /workdir \
-    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240126-760bf8eb@sha256:5e676bf2e5d5d035adfc6e093abee040af08327011e72fef640fa20da73cea2e \
+    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240404-436df3e4@sha256:6bcba53b14d396177414e01f20e9111f1c009ac3b476a9b7668bb98d12bd5e85 \
         ct install \
         --charts charts/ingress-nginx \
         --helm-extra-args "--timeout 60s"

From 7decd01468d390bd30a6c3dfd833c5c15222086b Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 5 Apr 2024 16:01:01 +0530
Subject: [PATCH 1233/1641] bumped certgeimage tag (#11212)

---
 images/kube-webhook-certgen/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/kube-webhook-certgen/TAG b/images/kube-webhook-certgen/TAG
index 0d0c52f84..66d62a800 100644
--- a/images/kube-webhook-certgen/TAG
+++ b/images/kube-webhook-certgen/TAG
@@ -1 +1 @@
-v1.4.0
+v1.4.1

From e9509e27aa9a6660a8bc70e96c988ce4be4aac11 Mon Sep 17 00:00:00 2001
From: Matheus Fidelis <msfidelis@users.noreply.github.com>
Date: Fri, 5 Apr 2024 08:54:48 -0300
Subject: [PATCH 1234/1641] feature(default_backend): topologySpreadConstraints
 on default backend (#11197)

feature(default_backend): topologySpread support

feature(default_backend): topologySpread support

feature(default_backend): helm-docs

feature(default_backend): helm-docs

feature(default_backend): helm-docs

feature(default_backend): helm-docs

feature(default_backend): nit

feature(default_backend): nit

feature(default_backend): nit
---
 charts/ingress-nginx/README.md                |  1 +
 .../templates/default-backend-deployment.yaml |  3 +++
 charts/ingress-nginx/values.yaml              | 19 +++++++++++++++++++
 3 files changed, 23 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index f5197537e..db162bc85 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -534,6 +534,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.serviceAccount.create | bool | `true` |  |
 | defaultBackend.serviceAccount.name | string | `""` |  |
 | defaultBackend.tolerations | list | `[]` | Node tolerations for server scheduling to nodes with taints # Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/ # |
+| defaultBackend.topologySpreadConstraints | list | `[]` | Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in. Ref.: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/ |
 | defaultBackend.updateStrategy | object | `{}` | The update strategy to apply to the Deployment or DaemonSet # |
 | dhParam | string | `""` | A base64-encoded Diffie-Hellman parameter. This can be generated with: `openssl dhparam 4096 2> /dev/null | base64` # Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param |
 | imagePullSecrets | list | `[]` | Optional array of imagePullSecrets containing private registry credentials # Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ |
diff --git a/charts/ingress-nginx/templates/default-backend-deployment.yaml b/charts/ingress-nginx/templates/default-backend-deployment.yaml
index d342c8c35..dc2bbcbdd 100644
--- a/charts/ingress-nginx/templates/default-backend-deployment.yaml
+++ b/charts/ingress-nginx/templates/default-backend-deployment.yaml
@@ -109,6 +109,9 @@ spec:
     {{- if .Values.defaultBackend.affinity }}
       affinity: {{ toYaml .Values.defaultBackend.affinity | nindent 8 }}
     {{- end }}
+    {{- if .Values.defaultBackend.topologySpreadConstraints }}
+      topologySpreadConstraints: {{ tpl (toYaml .Values.defaultBackend.topologySpreadConstraints) $ | nindent 8 }}
+    {{- end }}    
       terminationGracePeriodSeconds: 60
     {{- if .Values.defaultBackend.extraVolumes }}
       volumes: {{ toYaml .Values.defaultBackend.extraVolumes | nindent 8 }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index f0e5ba312..86e0eabce 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -998,6 +998,25 @@ defaultBackend:
   #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
 
   affinity: {}
+  # -- Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
+  # Ref.: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
+  topologySpreadConstraints: []
+  # - labelSelector:
+  #     matchLabels:
+  #       app.kubernetes.io/name: '{{ include "ingress-nginx.name" . }}'
+  #       app.kubernetes.io/instance: '{{ .Release.Name }}'
+  #       app.kubernetes.io/component: default-backend
+  #   topologyKey: topology.kubernetes.io/zone
+  #   maxSkew: 1
+  #   whenUnsatisfiable: ScheduleAnyway
+  # - labelSelector:
+  #     matchLabels:
+  #       app.kubernetes.io/name: '{{ include "ingress-nginx.name" . }}'
+  #       app.kubernetes.io/instance: '{{ .Release.Name }}'
+  #       app.kubernetes.io/component: default-backend
+  #   topologyKey: kubernetes.io/hostname
+  #   maxSkew: 1
+  #   whenUnsatisfiable: ScheduleAnyway
   # -- Security context for default backend pods
   podSecurityContext: {}
   # -- Security context for default backend containers

From 5e0792ecb56e3efef1697b27f06066a5144b8e3c Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Fri, 5 Apr 2024 20:46:55 +0530
Subject: [PATCH 1235/1641] updated certgen image shatag (#11214)

---
 charts/ingress-nginx/README.md   | 4 ++--
 charts/ingress-nginx/values.yaml | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index db162bc85..c3489a6c3 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -253,11 +253,11 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.namespaceSelector | object | `{}` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
-| controller.admissionWebhooks.patch.image.digest | string | `"sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334"` |  |
+| controller.admissionWebhooks.patch.image.digest | string | `"sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.admissionWebhooks.patch.image.registry | string | `"registry.k8s.io"` |  |
-| controller.admissionWebhooks.patch.image.tag | string | `"v1.4.0"` |  |
+| controller.admissionWebhooks.patch.image.tag | string | `"v1.4.1"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 86e0eabce..85990614b 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -802,8 +802,8 @@ controller:
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
         ## repository:
-        tag: v1.4.0
-        digest: sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        tag: v1.4.1
+        digest: sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         pullPolicy: IfNotPresent
       # -- Provide a priority class name to the webhook patching job
       ##

From 158ba45b0bb06d38def61fb3f385bdf350a7f784 Mon Sep 17 00:00:00 2001
From: Jozef Halgas <43298212+jozefhalgas@users.noreply.github.com>
Date: Fri, 5 Apr 2024 21:10:36 +0200
Subject: [PATCH 1236/1641] sort default backend hpa metrics (#11215)

---
 .../templates/default-backend-hpa.yaml           | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/charts/ingress-nginx/templates/default-backend-hpa.yaml b/charts/ingress-nginx/templates/default-backend-hpa.yaml
index 699323897..49bcdcfdc 100644
--- a/charts/ingress-nginx/templates/default-backend-hpa.yaml
+++ b/charts/ingress-nginx/templates/default-backend-hpa.yaml
@@ -21,14 +21,6 @@ spec:
   minReplicas: {{ .Values.defaultBackend.autoscaling.minReplicas }}
   maxReplicas: {{ .Values.defaultBackend.autoscaling.maxReplicas }}
   metrics:
-  {{- with .Values.defaultBackend.autoscaling.targetCPUUtilizationPercentage }}
-  - type: Resource
-    resource:
-      name: cpu
-      target:
-        type: Utilization
-        averageUtilization: {{ . }}
-  {{- end }}
   {{- with .Values.defaultBackend.autoscaling.targetMemoryUtilizationPercentage }}
   - type: Resource
     resource:
@@ -37,4 +29,12 @@ spec:
         type: Utilization
         averageUtilization: {{ . }}
   {{- end }}
+  {{- with .Values.defaultBackend.autoscaling.targetCPUUtilizationPercentage }}
+  - type: Resource
+    resource:
+      name: cpu
+      target:
+        type: Utilization
+        averageUtilization: {{ . }}
+  {{- end }}
 {{- end }}

From 531b007b604afce3fee8fa23a96dc5626401f762 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 5 Apr 2024 23:19:58 +0200
Subject: [PATCH 1237/1641] Chart: Add unit tests for default backend &
 topology spread constraints. (#11218)

Also remove trailing whitespaces.
---
 .../templates/default-backend-deployment.yaml |  2 +-
 .../tests/controller-daemonset_test.yaml      | 41 ++++++++
 .../tests/controller-deployment_test.yaml     | 40 ++++++++
 .../default-backend-deployment_test.yaml      | 94 +++++++++++++++++++
 4 files changed, 176 insertions(+), 1 deletion(-)
 create mode 100644 charts/ingress-nginx/tests/default-backend-deployment_test.yaml

diff --git a/charts/ingress-nginx/templates/default-backend-deployment.yaml b/charts/ingress-nginx/templates/default-backend-deployment.yaml
index dc2bbcbdd..6834dba07 100644
--- a/charts/ingress-nginx/templates/default-backend-deployment.yaml
+++ b/charts/ingress-nginx/templates/default-backend-deployment.yaml
@@ -111,7 +111,7 @@ spec:
     {{- end }}
     {{- if .Values.defaultBackend.topologySpreadConstraints }}
       topologySpreadConstraints: {{ tpl (toYaml .Values.defaultBackend.topologySpreadConstraints) $ | nindent 8 }}
-    {{- end }}    
+    {{- end }}
       terminationGracePeriodSeconds: 60
     {{- if .Values.defaultBackend.extraVolumes }}
       volumes: {{ toYaml .Values.defaultBackend.extraVolumes | nindent 8 }}
diff --git a/charts/ingress-nginx/tests/controller-daemonset_test.yaml b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
index 316455362..29359fd9e 100644
--- a/charts/ingress-nginx/tests/controller-daemonset_test.yaml
+++ b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
@@ -54,3 +54,44 @@ tests:
       - equal:
           path: spec.template.spec.containers[0].resources.limits.memory
           value: 512Mi
+
+  - it: should create a DaemonSet with topology spread constraints if `controller.topologySpreadConstraints` is set
+    set:
+      controller.kind: DaemonSet
+      controller.topologySpreadConstraints:
+        - labelSelector:
+            matchLabels:
+              app.kubernetes.io/name: '{{ include "ingress-nginx.name" . }}'
+              app.kubernetes.io/instance: '{{ .Release.Name }}'
+              app.kubernetes.io/component: controller
+          topologyKey: topology.kubernetes.io/zone
+          maxSkew: 1
+          whenUnsatisfiable: ScheduleAnyway
+        - labelSelector:
+            matchLabels:
+              app.kubernetes.io/name: '{{ include "ingress-nginx.name" . }}'
+              app.kubernetes.io/instance: '{{ .Release.Name }}'
+              app.kubernetes.io/component: controller
+          topologyKey: kubernetes.io/hostname
+          maxSkew: 1
+          whenUnsatisfiable: ScheduleAnyway
+    asserts:
+      - equal:
+          path: spec.template.spec.topologySpreadConstraints
+          value:
+            - labelSelector:
+                matchLabels:
+                  app.kubernetes.io/name: ingress-nginx
+                  app.kubernetes.io/instance: RELEASE-NAME
+                  app.kubernetes.io/component: controller
+              topologyKey: topology.kubernetes.io/zone
+              maxSkew: 1
+              whenUnsatisfiable: ScheduleAnyway
+            - labelSelector:
+                matchLabels:
+                  app.kubernetes.io/name: ingress-nginx
+                  app.kubernetes.io/instance: RELEASE-NAME
+                  app.kubernetes.io/component: controller
+              topologyKey: kubernetes.io/hostname
+              maxSkew: 1
+              whenUnsatisfiable: ScheduleAnyway
diff --git a/charts/ingress-nginx/tests/controller-deployment_test.yaml b/charts/ingress-nginx/tests/controller-deployment_test.yaml
index eee99385d..d0330db90 100644
--- a/charts/ingress-nginx/tests/controller-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/controller-deployment_test.yaml
@@ -78,3 +78,43 @@ tests:
       - equal:
           path: spec.template.spec.containers[0].resources.limits.memory
           value: 512Mi
+
+  - it: should create a Deployment with topology spread constraints if `controller.topologySpreadConstraints` is set
+    set:
+      controller.topologySpreadConstraints:
+        - labelSelector:
+            matchLabels:
+              app.kubernetes.io/name: '{{ include "ingress-nginx.name" . }}'
+              app.kubernetes.io/instance: '{{ .Release.Name }}'
+              app.kubernetes.io/component: controller
+          topologyKey: topology.kubernetes.io/zone
+          maxSkew: 1
+          whenUnsatisfiable: ScheduleAnyway
+        - labelSelector:
+            matchLabels:
+              app.kubernetes.io/name: '{{ include "ingress-nginx.name" . }}'
+              app.kubernetes.io/instance: '{{ .Release.Name }}'
+              app.kubernetes.io/component: controller
+          topologyKey: kubernetes.io/hostname
+          maxSkew: 1
+          whenUnsatisfiable: ScheduleAnyway
+    asserts:
+      - equal:
+          path: spec.template.spec.topologySpreadConstraints
+          value:
+            - labelSelector:
+                matchLabels:
+                  app.kubernetes.io/name: ingress-nginx
+                  app.kubernetes.io/instance: RELEASE-NAME
+                  app.kubernetes.io/component: controller
+              topologyKey: topology.kubernetes.io/zone
+              maxSkew: 1
+              whenUnsatisfiable: ScheduleAnyway
+            - labelSelector:
+                matchLabels:
+                  app.kubernetes.io/name: ingress-nginx
+                  app.kubernetes.io/instance: RELEASE-NAME
+                  app.kubernetes.io/component: controller
+              topologyKey: kubernetes.io/hostname
+              maxSkew: 1
+              whenUnsatisfiable: ScheduleAnyway
diff --git a/charts/ingress-nginx/tests/default-backend-deployment_test.yaml b/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
new file mode 100644
index 000000000..e6fd0c541
--- /dev/null
+++ b/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
@@ -0,0 +1,94 @@
+suite: Default Backend > Deployment
+templates:
+  - default-backend-deployment.yaml
+
+tests:
+  - it: should not create a Deployment if `defaultBackend.enabled` is false
+    set:
+      defaultBackend.enabled: false
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a Deployment if `defaultBackend.enabled` is true
+    set:
+      defaultBackend.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: Deployment
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-defaultbackend
+
+  - it: should create a Deployment with 3 replicas if `defaultBackend.replicaCount` is 3
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.replicaCount: 3
+    asserts:
+      - equal:
+          path: spec.replicas
+          value: 3
+
+  - it: should create a Deployment without replicas if `defaultBackend.autoscaling.enabled` is true
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.autoscaling.enabled: true
+    asserts:
+      - notExists:
+          path: spec.replicas
+
+  - it: should create a Deployment with resource limits if `defaultBackend.resources.limits` is set
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.resources.limits.cpu: 500m
+      defaultBackend.resources.limits.memory: 512Mi
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].resources.limits.cpu
+          value: 500m
+      - equal:
+          path: spec.template.spec.containers[0].resources.limits.memory
+          value: 512Mi
+
+  - it: should create a Deployment with topology spread constraints if `defaultBackend.topologySpreadConstraints` is set
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.topologySpreadConstraints:
+        - labelSelector:
+            matchLabels:
+              app.kubernetes.io/name: '{{ include "ingress-nginx.name" . }}'
+              app.kubernetes.io/instance: '{{ .Release.Name }}'
+              app.kubernetes.io/component: default-backend
+          topologyKey: topology.kubernetes.io/zone
+          maxSkew: 1
+          whenUnsatisfiable: ScheduleAnyway
+        - labelSelector:
+            matchLabels:
+              app.kubernetes.io/name: '{{ include "ingress-nginx.name" . }}'
+              app.kubernetes.io/instance: '{{ .Release.Name }}'
+              app.kubernetes.io/component: default-backend
+          topologyKey: kubernetes.io/hostname
+          maxSkew: 1
+          whenUnsatisfiable: ScheduleAnyway
+    asserts:
+      - equal:
+          path: spec.template.spec.topologySpreadConstraints
+          value:
+            - labelSelector:
+                matchLabels:
+                  app.kubernetes.io/name: ingress-nginx
+                  app.kubernetes.io/instance: RELEASE-NAME
+                  app.kubernetes.io/component: default-backend
+              topologyKey: topology.kubernetes.io/zone
+              maxSkew: 1
+              whenUnsatisfiable: ScheduleAnyway
+            - labelSelector:
+                matchLabels:
+                  app.kubernetes.io/name: ingress-nginx
+                  app.kubernetes.io/instance: RELEASE-NAME
+                  app.kubernetes.io/component: default-backend
+              topologyKey: kubernetes.io/hostname
+              maxSkew: 1
+              whenUnsatisfiable: ScheduleAnyway

From 8ede0f777fa385baac04d4e7edb801e6cf2055b6 Mon Sep 17 00:00:00 2001
From: Carlos Tadeu Panato Junior <ctadeu@gmail.com>
Date: Sat, 6 Apr 2024 00:43:09 +0200
Subject: [PATCH 1238/1641] update post submit helm ci and clean up (#11220)

Signed-off-by: cpanato <ctadeu@gmail.com>
---
 .github/workflows/helm.yaml | 22 ++++++++++++----------
 1 file changed, 12 insertions(+), 10 deletions(-)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index da86a36f0..3ba506c29 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -11,12 +11,13 @@ permissions:
 jobs:
 
   changes:
+    runs-on: ubuntu-latest
+
     permissions:
       contents: read  # for dorny/paths-filter to fetch a list of changed files
-      pull-requests: read  # for dorny/paths-filter to read pull requests
-    runs-on: ubuntu-latest
-    if: |
-      (github.repository == 'kubernetes/ingress-nginx')
+
+    if: github.repository == 'kubernetes/ingress-nginx'
+
     outputs:
       docs: ${{ steps.filter.outputs.docs }}
       charts: ${{ steps.filter.outputs.charts }}
@@ -33,9 +34,11 @@ jobs:
           ./ah lint -p charts/ingress-nginx || exit 1
           rm -f ./ah ./ah_1.5.0_linux_amd64.tar.gz
 
-      - name: Lint
-        run: |
-          ./build/run-in-docker.sh ./hack/verify-chart-lint.sh
+      - name: Set up chart-testing
+        uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
+
+      - name: Run chart-testing (lint)
+        run: ct lint --config ./.ct.yaml
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -55,9 +58,8 @@ jobs:
 
     needs:
       - changes
-    if: |
-      (github.repository == 'kubernetes/ingress-nginx') &&
-      (needs.changes.outputs.charts == 'true')
+
+    if: ${{ needs.changes.outputs.charts == 'true' }}
 
     steps:
       - name: Checkout master

From ebc61bdea4eecea14ee168ff30b4359d218f09f4 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Apr 2024 03:50:43 -0700
Subject: [PATCH 1239/1641] Bump the all group with 3 updates (#11225)

Bumps the all group with 3 updates: [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action), [dorny/test-reporter](https://github.com/dorny/test-reporter) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `docker/setup-buildx-action` from 3.2.0 to 3.3.0
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/2b51285047da1547ffb1b2203d8be4c0af6b1f20...d70bba72b1f3fd22344832f00baa16ece964efeb)

Updates `dorny/test-reporter` from 1.8.0 to 1.9.0
- [Release notes](https://github.com/dorny/test-reporter/releases)
- [Changelog](https://github.com/dorny/test-reporter/blob/main/CHANGELOG.md)
- [Commits](https://github.com/dorny/test-reporter/compare/eaa763f6ffc21c7a37837f56cd5f9737f27fc6c8...c40d89d5e987cd80f3a32b3c233556e22bdca958)

Updates `github/codeql-action` from 3.24.9 to 3.24.10
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/1b1aada464948af03b950897e5eb522f92603cc2...4355270be187e1b672a7a1c7c7bae5afdc1ab94a)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: dorny/test-reporter
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 2 +-
 .github/workflows/images.yaml              | 2 +-
 .github/workflows/junit-reports.yaml       | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index f19b7158f..3e7067b8f 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -124,7 +124,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@2b51285047da1547ffb1b2203d8be4c0af6b1f20 # v3.2.0
+        uses: docker/setup-buildx-action@d70bba72b1f3fd22344832f00baa16ece964efeb # v3.3.0
         with:
           version: latest
 
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index e5684ba79..4afc27aa2 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -200,7 +200,7 @@ jobs:
         uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@2b51285047da1547ffb1b2203d8be4c0af6b1f20 # v3.2.0
+        uses: docker/setup-buildx-action@d70bba72b1f3fd22344832f00baa16ece964efeb # v3.3.0
         with:
           version: latest
           platforms: ${{ env.PLATFORMS }}
diff --git a/.github/workflows/junit-reports.yaml b/.github/workflows/junit-reports.yaml
index 3b3318def..0d76abbfb 100644
--- a/.github/workflows/junit-reports.yaml
+++ b/.github/workflows/junit-reports.yaml
@@ -9,7 +9,7 @@ jobs:
   report:
     runs-on: ubuntu-latest
     steps:
-      - uses: dorny/test-reporter@eaa763f6ffc21c7a37837f56cd5f9737f27fc6c8 # v1.8.0
+      - uses: dorny/test-reporter@c40d89d5e987cd80f3a32b3c233556e22bdca958 # v1.9.0
         with:
           artifact: /e2e-test-reports-(.*)/
           name: JEST Tests $1               # Name of the check run which will be created
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 3018dee65..d00db6ba3 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@1b1aada464948af03b950897e5eb522f92603cc2 # v3.24.9
+        uses: github/codeql-action/upload-sarif@4355270be187e1b672a7a1c7c7bae5afdc1ab94a # v3.24.10
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 2d671d966..3a34541a5 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@1b1aada464948af03b950897e5eb522f92603cc2 # v3.24.9
+        uses: github/codeql-action/upload-sarif@4355270be187e1b672a7a1c7c7bae5afdc1ab94a # v3.24.10
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From a93e9b938d91dc50b5eb46b420a640f427d3665e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Apr 2024 04:20:12 -0700
Subject: [PATCH 1240/1641] Bump github.com/prometheus/client_model in the all
 group (#11226)

Bumps the all group with 1 update: [github.com/prometheus/client_model](https://github.com/prometheus/client_model).


Updates `github.com/prometheus/client_model` from 0.6.0 to 0.6.1
- [Release notes](https://github.com/prometheus/client_model/releases)
- [Commits](https://github.com/prometheus/client_model/compare/v0.6.0...v0.6.1)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_model
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index a0bb140a0..81c402358 100644
--- a/go.mod
+++ b/go.mod
@@ -18,7 +18,7 @@ require (
 	github.com/opencontainers/runc v1.1.12
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.0
-	github.com/prometheus/client_model v0.6.0
+	github.com/prometheus/client_model v0.6.1
 	github.com/prometheus/common v0.51.1
 	github.com/spf13/cobra v1.8.0
 	github.com/spf13/pflag v1.0.5
diff --git a/go.sum b/go.sum
index 4edd9fe56..c7a4596f4 100644
--- a/go.sum
+++ b/go.sum
@@ -317,8 +317,8 @@ github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/client_model v0.6.0 h1:k1v3CzpSRUTrKMppY35TLwPvxHqBu0bYgxZzqGIgaos=
-github.com/prometheus/client_model v0.6.0/go.mod h1:NTQHnmxFpouOD0DpvP4XujX3CdOAGQPoaGhyTchlyt8=
+github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
+github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
 github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=

From 3c2cf13bb693ef185258d634a20764fa851a8666 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Apr 2024 04:23:07 -0700
Subject: [PATCH 1241/1641] Bump golang.org/x/crypto from 0.21.0 to 0.22.0
 (#11229)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.21.0 to 0.22.0.
- [Commits](https://github.com/golang/crypto/compare/v0.21.0...v0.22.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 81c402358..7b8c3beb5 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.9.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.21.0
+	golang.org/x/crypto v0.22.0
 	google.golang.org/grpc v1.62.1
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -107,8 +107,8 @@ require (
 	golang.org/x/net v0.22.0 // indirect
 	golang.org/x/oauth2 v0.18.0 // indirect
 	golang.org/x/sync v0.6.0 // indirect
-	golang.org/x/sys v0.18.0 // indirect
-	golang.org/x/term v0.18.0 // indirect
+	golang.org/x/sys v0.19.0 // indirect
+	golang.org/x/term v0.19.0 // indirect
 	golang.org/x/text v0.14.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.18.0 // indirect
diff --git a/go.sum b/go.sum
index c7a4596f4..4b635c2ad 100644
--- a/go.sum
+++ b/go.sum
@@ -401,8 +401,8 @@ golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.21.0 h1:X31++rzVUdKhX5sWmSOFZxx8UW/ldWx55cbf08iNAMA=
-golang.org/x/crypto v0.21.0/go.mod h1:0BP7YvVV9gBbVKyeTG0Gyn+gZm94bibOW5BjDEYAOMs=
+golang.org/x/crypto v0.22.0 h1:g1v0xeRhjcugydODzvb3mEM9SQ0HGp9s/nh3COQ/C30=
+golang.org/x/crypto v0.22.0/go.mod h1:vr6Su+7cTlO45qkww3VDJlzDn0ctJvRgYbC2NvXHt+M=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -543,12 +543,12 @@ golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.18.0 h1:DBdB3niSjOA/O0blCZBqDefyWNYveAYMNF1Wum0DYQ4=
-golang.org/x/sys v0.18.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.19.0 h1:q5f1RH2jigJ1MoAWp2KTp3gm5zAGFUTarQZ5U386+4o=
+golang.org/x/sys v0.19.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/term v0.18.0 h1:FcHjZXDMxI8mM3nwhX9HlKop4C0YQvCVCdwYl2wOtE8=
-golang.org/x/term v0.18.0/go.mod h1:ILwASektA3OnRv7amZ1xhE/KTR+u50pbXfZ03+6Nx58=
+golang.org/x/term v0.19.0 h1:+ThwsDv+tYfnJFhF4L8jITxu1tdTWRTZpdsWgEgjL6Q=
+golang.org/x/term v0.19.0/go.mod h1:2CuTdWZ7KHSQwUzKva0cbMg6q2DMI3Mmxp+gKJbskEk=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=

From cb315d2db437ed8f037c2d3184e8560cf2d1c6e5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Apr 2024 05:24:01 -0700
Subject: [PATCH 1242/1641] Bump github.com/prometheus/common from 0.51.1 to
 0.52.2 (#11227)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.51.1 to 0.52.2.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.51.1...v0.52.2)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 7b8c3beb5..22b5fa450 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.0
 	github.com/prometheus/client_model v0.6.1
-	github.com/prometheus/common v0.51.1
+	github.com/prometheus/common v0.52.2
 	github.com/spf13/cobra v1.8.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.9.0
diff --git a/go.sum b/go.sum
index 4b635c2ad..2d7c137b5 100644
--- a/go.sum
+++ b/go.sum
@@ -323,8 +323,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.51.1 h1:eIjN50Bwglz6a/c3hAgSMcofL3nD+nFQkV6Dd4DsQCw=
-github.com/prometheus/common v0.51.1/go.mod h1:lrWtQx+iDfn2mbH5GUzlH9TSHyfZpHkSiG1W7y3sF2Q=
+github.com/prometheus/common v0.52.2 h1:LW8Vk7BccEdONfrJBDffQGRtpSzi5CQaRZGtboOO2ck=
+github.com/prometheus/common v0.52.2/go.mod h1:lrWtQx+iDfn2mbH5GUzlH9TSHyfZpHkSiG1W7y3sF2Q=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=

From d808e389117b90ce1766a8b35278306271116bc1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Apr 2024 05:26:39 -0700
Subject: [PATCH 1243/1641] Bump google.golang.org/grpc from 1.62.1 to 1.63.0
 (#11228)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.62.1 to 1.63.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.62.1...v1.63.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 22b5fa450..2c63151a8 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.22.0
-	google.golang.org/grpc v1.62.1
+	google.golang.org/grpc v1.63.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -113,7 +113,7 @@ require (
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.18.0 // indirect
 	google.golang.org/appengine v1.6.8 // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20240221002015-b0ce06bbee7c // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20240227224415-6ceb2ff114de // indirect
 	google.golang.org/protobuf v1.33.0 // indirect
 	gopkg.in/evanphx/json-patch.v5 v5.9.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
diff --git a/go.sum b/go.sum
index 2d7c137b5..77c8836fc 100644
--- a/go.sum
+++ b/go.sum
@@ -670,8 +670,8 @@ google.golang.org/genproto v0.0.0-20200618031413-b414f8b61790/go.mod h1:jDfRM7Fc
 google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240221002015-b0ce06bbee7c h1:NUsgEN92SQQqzfA+YtqYNqYmB3DMMYLlIwUZAQFVFbo=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240221002015-b0ce06bbee7c/go.mod h1:H4O17MA/PE9BsGx3w+a+W2VOLLD1Qf7oJneAoU6WktY=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240227224415-6ceb2ff114de h1:cZGRis4/ot9uVm639a+rHCUaG0JJHEsdyzSQTMX+suY=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240227224415-6ceb2ff114de/go.mod h1:H4O17MA/PE9BsGx3w+a+W2VOLLD1Qf7oJneAoU6WktY=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -684,8 +684,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.62.1 h1:B4n+nfKzOICUXMgyrNd19h/I9oH0L1pizfk1d4zSgTk=
-google.golang.org/grpc v1.62.1/go.mod h1:IWTG0VlJLCh1SkC58F7np9ka9mx/WNkjl4PGJaiq+QE=
+google.golang.org/grpc v1.63.0 h1:WjKe+dnvABXyPJMD7KDNLxtoGk5tgk+YFWN6cBWjZE8=
+google.golang.org/grpc v1.63.0/go.mod h1:WAX/8DgncnokcFUldAxq7GeB5DXHDbMF+lLvDomNkRA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From b4cae70b52d23b7fc09f8409345bf4f2cf60e05e Mon Sep 17 00:00:00 2001
From: Tony Li <xiayu.lyt@alibaba-inc.com>
Date: Tue, 9 Apr 2024 03:32:21 +0800
Subject: [PATCH 1244/1641] remove _ssl_expire_time_seconds metric by
 identifier (#9706)

Signed-off-by: xiayu.lyt <xiayu.lyt@alibaba-inc.com>
---
 internal/ingress/controller/controller.go     |  3 +--
 .../ingress/metric/collectors/controller.go   | 24 ++++++++++++-------
 .../metric/collectors/controller_test.go      | 13 ++++++++--
 internal/ingress/metric/dummy.go              |  2 +-
 internal/ingress/metric/main.go               |  6 ++---
 5 files changed, 31 insertions(+), 17 deletions(-)

diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index db786a15c..a43c143e3 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -253,9 +253,8 @@ func (n *NGINXController) syncIngress(interface{}) error {
 	}
 
 	ri := utilingress.GetRemovedIngresses(n.runningConfig, pcfg)
-	re := utilingress.GetRemovedHosts(n.runningConfig, pcfg)
 	rc := utilingress.GetRemovedCertificateSerialNumbers(n.runningConfig, pcfg)
-	n.metricCollector.RemoveMetrics(ri, re, rc)
+	n.metricCollector.RemoveMetrics(ri, rc)
 
 	n.runningConfig = pcfg
 
diff --git a/internal/ingress/metric/collectors/controller.go b/internal/ingress/metric/collectors/controller.go
index e1d6789bb..4ee84bc56 100644
--- a/internal/ingress/metric/collectors/controller.go
+++ b/internal/ingress/metric/collectors/controller.go
@@ -30,7 +30,7 @@ import (
 var (
 	operation        = []string{"controller_namespace", "controller_class", "controller_pod"}
 	ingressOperation = []string{"controller_namespace", "controller_class", "controller_pod", "namespace", "ingress"}
-	sslLabelHost     = []string{"namespace", "class", "host", "secret_name"}
+	sslLabelHost     = []string{"namespace", "class", "host", "secret_name", "identifier"}
 	sslInfoLabels    = []string{"namespace", "class", "host", "secret_name", "identifier", "issuer_organization", "issuer_common_name", "serial_number", "public_key_algorithm"}
 	orphanityLabels  = []string{"controller_namespace", "controller_class", "controller_pod", "namespace", "ingress", "type"}
 )
@@ -305,6 +305,7 @@ func (cm *Controller) SetSSLExpireTime(servers []*ingress.Server) {
 		}
 		labels["host"] = s.Hostname
 		labels["secret_name"] = s.SSLCert.Name
+		labels["identifier"] = s.SSLCert.Identifier()
 
 		cm.sslExpireTime.With(labels).Set(float64(s.SSLCert.ExpireTime.Unix()))
 	}
@@ -337,9 +338,9 @@ func (cm *Controller) SetSSLInfo(servers []*ingress.Server) {
 	}
 }
 
-// RemoveMetrics removes metrics for hostnames not available anymore
-func (cm *Controller) RemoveMetrics(hosts, certificates []string, registry prometheus.Gatherer) {
-	cm.removeSSLExpireMetrics(true, hosts, registry)
+// RemoveMetrics removes metrics for certificates not available anymore by identifier
+func (cm *Controller) RemoveMetrics(certificates []string, registry prometheus.Gatherer) {
+	cm.removeSSLExpireMetrics(true, certificates, registry)
 	cm.removeCertificatesMetrics(true, certificates, registry)
 }
 
@@ -390,14 +391,14 @@ func (cm *Controller) removeCertificatesMetrics(onlyDefinedHosts bool, certifica
 	}
 }
 
-func (cm *Controller) removeSSLExpireMetrics(onlyDefinedHosts bool, hosts []string, registry prometheus.Gatherer) {
+func (cm *Controller) removeSSLExpireMetrics(onlyDefinedCerts bool, certificates []string, registry prometheus.Gatherer) {
 	mfs, err := registry.Gather()
 	if err != nil {
 		klog.ErrorS(err, "Error gathering metrics")
 		return
 	}
 
-	toRemove := sets.NewString(hosts...)
+	toRemove := sets.NewString(certificates...)
 
 	for _, mf := range mfs {
 		metricName := mf.GetName()
@@ -414,19 +415,24 @@ func (cm *Controller) removeSSLExpireMetrics(onlyDefinedHosts bool, hosts []stri
 			// remove labels that are constant
 			deleteConstants(labels)
 
+			identifier, ok := labels["identifier"]
+			if !ok {
+				continue
+			}
+
 			host, ok := labels["host"]
 			if !ok {
 				continue
 			}
 
-			if onlyDefinedHosts && !toRemove.Has(host) {
+			if onlyDefinedCerts && !toRemove.Has(identifier) {
 				continue
 			}
 
-			klog.V(2).InfoS("Removing prometheus metric", "gauge", metricName, "host", host)
+			klog.V(2).InfoS("Removing prometheus metric", "gauge", metricName, "host", host, "identifier", identifier)
 			removed := cm.sslExpireTime.Delete(labels)
 			if !removed {
-				klog.V(2).InfoS("metric removed", "metric", metricName, "host", host, "labels", labels)
+				klog.V(2).InfoS("metric removed", "metric", metricName, "host", host, "identifier", identifier, "labels", labels)
 			}
 		}
 	}
diff --git a/internal/ingress/metric/collectors/controller_test.go b/internal/ingress/metric/collectors/controller_test.go
index 53a0fd31a..7c7ea8a67 100644
--- a/internal/ingress/metric/collectors/controller_test.go
+++ b/internal/ingress/metric/collectors/controller_test.go
@@ -88,6 +88,15 @@ func TestControllerCounters(t *testing.T) {
 						Hostname: "demo",
 						SSLCert: &ingress.SSLCert{
 							ExpireTime: t1,
+							Certificate: &x509.Certificate{
+								PublicKeyAlgorithm: x509.ECDSA,
+								Issuer: pkix.Name{
+									CommonName:   "certificate issuer",
+									SerialNumber: "abcd1234",
+									Organization: []string{"issuer org"},
+								},
+								SerialNumber: big.NewInt(100),
+							},
 						},
 					},
 					{
@@ -102,7 +111,7 @@ func TestControllerCounters(t *testing.T) {
 			want: `
 				# HELP nginx_ingress_controller_ssl_expire_time_seconds Number of seconds since 1970 to the SSL Certificate expire.\n			An example to check if this certificate will expire in 10 days is: "nginx_ingress_controller_ssl_expire_time_seconds < (time() + (10 * 24 * 3600))"
 				# TYPE nginx_ingress_controller_ssl_expire_time_seconds gauge
-				nginx_ingress_controller_ssl_expire_time_seconds{class="nginx",host="demo",namespace="default",secret_name=""} 1.351807721e+09
+				nginx_ingress_controller_ssl_expire_time_seconds{class="nginx",host="demo",identifier="abcd1234-100",namespace="default",secret_name=""} 1.351807721e+09
 			`,
 			metrics: []string{"nginx_ingress_controller_ssl_expire_time_seconds"},
 		},
@@ -262,7 +271,7 @@ func TestRemoveMetrics(t *testing.T) {
 	cm.SetSSLExpireTime(servers)
 	cm.SetSSLInfo(servers)
 
-	cm.RemoveMetrics([]string{"demo"}, []string{"abcd1234-100"}, reg)
+	cm.RemoveMetrics([]string{"abcd1234-100"}, reg)
 
 	if err := GatherAndCompare(cm, "", []string{"nginx_ingress_controller_ssl_expire_time_seconds"}, reg); err != nil {
 		t.Errorf("unexpected collecting result:\n%s", err)
diff --git a/internal/ingress/metric/dummy.go b/internal/ingress/metric/dummy.go
index a619ccbd8..7b1485280 100644
--- a/internal/ingress/metric/dummy.go
+++ b/internal/ingress/metric/dummy.go
@@ -54,7 +54,7 @@ func (dc DummyCollector) IncCheckCount(string, string) {}
 func (dc DummyCollector) IncCheckErrorCount(string, string) {}
 
 // RemoveMetrics dummy implementation
-func (dc DummyCollector) RemoveMetrics(_, _, _ []string) {}
+func (dc DummyCollector) RemoveMetrics(_, _ []string) {}
 
 // Start dummy implementation
 func (dc DummyCollector) Start(_ string) {}
diff --git a/internal/ingress/metric/main.go b/internal/ingress/metric/main.go
index aa35a5c51..93c31622c 100644
--- a/internal/ingress/metric/main.go
+++ b/internal/ingress/metric/main.go
@@ -46,7 +46,7 @@ type Collector interface {
 	IncOrphanIngress(string, string, string)
 	DecOrphanIngress(string, string, string)
 
-	RemoveMetrics(ingresses, endpoints, certificates []string)
+	RemoveMetrics(ingresses, certificates []string)
 
 	SetSSLExpireTime([]*ingress.Server)
 	SetSSLInfo(servers []*ingress.Server)
@@ -131,9 +131,9 @@ func (c *collector) IncReloadErrorCount() {
 	c.ingressController.IncReloadErrorCount()
 }
 
-func (c *collector) RemoveMetrics(ingresses, hosts, certificates []string) {
+func (c *collector) RemoveMetrics(ingresses, certificates []string) {
 	c.socket.RemoveMetrics(ingresses, c.registry)
-	c.ingressController.RemoveMetrics(hosts, certificates, c.registry)
+	c.ingressController.RemoveMetrics(certificates, c.registry)
 }
 
 func (c *collector) Start(admissionStatus string) {

From d56aacdb31a0abe59ecb78d0ad078bd833c11da1 Mon Sep 17 00:00:00 2001
From: Tony Li <xiayu.lyt@alibaba-inc.com>
Date: Tue, 9 Apr 2024 17:08:48 +0800
Subject: [PATCH 1245/1641] Bump google.golang.org/grpc from 1.63.0 to 1.63.2
 (#11237)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: 遐宇 <xiayu.lyt@alibaba-inc.com>
---
 go.mod      | 2 +-
 go.sum      | 4 ++--
 go.work.sum | 5 +++--
 3 files changed, 6 insertions(+), 5 deletions(-)

diff --git a/go.mod b/go.mod
index 2c63151a8..780ce5959 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.22.0
-	google.golang.org/grpc v1.63.0
+	google.golang.org/grpc v1.63.2
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index 77c8836fc..b7f63c02f 100644
--- a/go.sum
+++ b/go.sum
@@ -684,8 +684,8 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.63.0 h1:WjKe+dnvABXyPJMD7KDNLxtoGk5tgk+YFWN6cBWjZE8=
-google.golang.org/grpc v1.63.0/go.mod h1:WAX/8DgncnokcFUldAxq7GeB5DXHDbMF+lLvDomNkRA=
+google.golang.org/grpc v1.63.2 h1:MUeiw1B2maTVZthpU5xvASfTh3LDbxHd6IJ6QQVU+xM=
+google.golang.org/grpc v1.63.2/go.mod h1:WAX/8DgncnokcFUldAxq7GeB5DXHDbMF+lLvDomNkRA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
diff --git a/go.work.sum b/go.work.sum
index af236d3b1..4e1cead39 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -535,7 +535,6 @@ github.com/klauspost/cpuid/v2 v2.2.5/go.mod h1:Lcz8mBdAVJIBVzewtcLocK12l3Y+JytZY
 github.com/kr/fs v0.1.0/go.mod h1:FFnZGqtBN9Gxj7eW1uZ42v5BccTP0vu6NEaFoC2HwRg=
 github.com/ledongthuc/pdf v0.0.0-20220302134840-0c2507a12d80/go.mod h1:imJHygn/1yfhB7XSJJKlFZKl/J+dCPAknuiaGOshXAs=
 github.com/lyft/protoc-gen-star/v2 v2.0.3/go.mod h1:amey7yeodaJhXSbf/TlLvWiqQfLOSpEk//mLlc+axEk=
-github.com/mattn/go-isatty v0.0.19/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
 github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0/go.mod h1:QUyp042oQthUoa9bqDv0ER0wrtXnBruoNd7aNjkbP+k=
 github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8/go.mod h1:mC1jAcsrzbxHt8iiaC+zU4b1ylILSosueou12R++wfY=
 github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3/go.mod h1:RagcQ7I8IeTMnF8JTXieKnO4Z6JCsikNEzj0DwauVzE=
@@ -583,6 +582,7 @@ golang.org/x/crypto v0.13.0/go.mod h1:y6Z2r+Rw4iayiXXAIxJIDAJ1zMW4yaTpebo8fPOliY
 golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4=
 golang.org/x/crypto v0.18.0/go.mod h1:R0j02AL6hcrfOiy9T4ZYp/rcWeMxM3L6QYxlOuEG1mg=
 golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU=
+golang.org/x/crypto v0.21.0/go.mod h1:0BP7YvVV9gBbVKyeTG0Gyn+gZm94bibOW5BjDEYAOMs=
 golang.org/x/lint v0.0.0-20201208152925-83fdc39ff7b5/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
 golang.org/x/mod v0.4.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
@@ -602,6 +602,7 @@ golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/net v0.18.0/go.mod h1:/czyP5RqHAH4odGYxBJ1qz0+CE5WZ+2j1YgoEo8F2jQ=
 golang.org/x/net v0.20.0/go.mod h1:z8BVo6PvndSri0LbOE3hAn0apkU+1YvI6E70E9jsnvY=
+golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
 golang.org/x/oauth2 v0.0.0-20200902213428-5d25da1a8d43/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20201109201403-9fd604954f58/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20201208152858-08078c50e5b5/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
@@ -625,7 +626,6 @@ golang.org/x/sys v0.0.0-20210225134936-a50acf3fe073/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210423185535-09eb48e85fd7/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
@@ -684,6 +684,7 @@ google.golang.org/genproto v0.0.0-20240123012728-ef4313101c80/go.mod h1:cc8bqMqt
 google.golang.org/genproto v0.0.0-20240125205218-1f4bbc51befe/go.mod h1:cc8bqMqtv9gMOr0zHg2Vzff5ULhhL2IXP4sbcn32Dro=
 google.golang.org/genproto v0.0.0-20240213162025-012b6fc9bca9 h1:9+tzLLstTlPTRyJTh+ah5wIMsBW5c4tQwGTN3thOW9Y=
 google.golang.org/genproto v0.0.0-20240213162025-012b6fc9bca9/go.mod h1:mqHbVIp48Muh7Ywss/AD6I5kNVKZMmAa/QEW58Gxp2s=
+google.golang.org/genproto v0.0.0-20240227224415-6ceb2ff114de h1:F6qOa9AZTYJXOUEr4jDysRDLrm4PHePlge4v4TGAlxY=
 google.golang.org/genproto/googleapis/api v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
 google.golang.org/genproto/googleapis/api v0.0.0-20230822172742-b8732ec3820d/go.mod h1:KjSP20unUpOx5kyQUFa7k4OJg0qeJ7DEZflGDu2p6Bk=
 google.golang.org/genproto/googleapis/api v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:RdyHbowztCGQySiCvQPgWQWgWhGnouTdCflKoDBt32U=

From 1f4ee0e235bfbc55d750b6a20cf4133381fa7dd7 Mon Sep 17 00:00:00 2001
From: Christian Groschupp <christian@groschupp.org>
Date: Tue, 9 Apr 2024 12:25:22 +0200
Subject: [PATCH 1246/1641] feat: add annotation to allow to add custom
 response headers (#9742)

* add custom headers

Signed-off-by: Christian Groschupp <christian@groschupp.org>

* add tests

Signed-off-by: Christian Groschupp <christian@groschupp.org>

* add docs

* update copyright

* change comments

* add e2e test customheaders

* add custom headers validation

* remove escapeLiteralDollar filter

* validate value in custom headers

* add regex for header value

* fix annotation test

* Revert "remove escapeLiteralDollar filter"

This reverts commit ab48392b60dee4ce146a4c17e046849f9633c7fb.

* add annotationConfig

* fix test

* fix golangci-lint findings

* fix: add missung exp module

---------

Signed-off-by: Christian Groschupp <christian@groschupp.org>
---
 .../nginx-configuration/annotations.md        |  17 +++
 .../nginx-configuration/configmap.md          |   5 +
 go.mod                                        |   1 +
 go.work.sum                                   |  77 +++++++++++
 internal/ingress/annotations/annotations.go   |   3 +
 .../ingress/annotations/annotations_test.go   |  55 +++++++-
 .../ingress/annotations/customheaders/main.go | 124 ++++++++++++++++++
 .../annotations/customheaders/main_test.go    | 113 ++++++++++++++++
 internal/ingress/controller/config/config.go  |   1 +
 internal/ingress/controller/controller.go     |   1 +
 .../ingress/controller/template/configmap.go  |  20 +++
 internal/ingress/defaults/main.go             |   3 +
 pkg/apis/ingress/types.go                     |   4 +-
 rootfs/etc/nginx/template/nginx.tmpl          |   7 +
 test/e2e/annotations/customheaders.go         | 110 ++++++++++++++++
 15 files changed, 537 insertions(+), 4 deletions(-)
 create mode 100644 internal/ingress/annotations/customheaders/main.go
 create mode 100644 internal/ingress/annotations/customheaders/main_test.go
 create mode 100644 test/e2e/annotations/customheaders.go

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 184c4993b..2230f80f7 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -50,6 +50,7 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/client-body-buffer-size](#client-body-buffer-size)|string|
 |[nginx.ingress.kubernetes.io/configuration-snippet](#configuration-snippet)|string|
 |[nginx.ingress.kubernetes.io/custom-http-errors](#custom-http-errors)|[]int|
+|[nginx.ingress.kubernetes.io/custom-headers](#custom-headers)|string|
 |[nginx.ingress.kubernetes.io/default-backend](#default-backend)|string|
 |[nginx.ingress.kubernetes.io/enable-cors](#enable-cors)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/cors-allow-origin](#enable-cors)|string|
@@ -338,6 +339,22 @@ Example usage:
 nginx.ingress.kubernetes.io/custom-http-errors: "404,415"
 ```
 
+### Custom Headers
+This annotation is of the form `nginx.ingress.kubernetes.io/custom-headers: custom-headers-configmap` to specify a configmap name that contains custom headers. This annotation uses `more_set_headers` nginx directive.
+
+Example configmap:
+```yaml
+apiVersion: v1
+data:
+  Content-Type: application/json
+kind: ConfigMap
+metadata:
+  name: custom-headers-configmap
+```
+
+!!! attention
+  First define the allowed response headers in [global-allowed-response-headers](https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/nginx-configuration/configmap.md#global-allowed-response-headers).
+
 ### Default Backend
 
 This annotation is of the form `nginx.ingress.kubernetes.io/default-backend: <svc name>` to specify a custom default backend.  This `<svc name>` is a reference to a service inside of the same namespace in which you are applying this annotation. This annotation overrides the global default backend. In case the service has [multiple ports](https://kubernetes.io/docs/concepts/services-networking/service/#multi-port-services), the first one is the one which will receive the backend traffic. 
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 89a35b07b..52c54c4fe 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -209,6 +209,7 @@ The following table shows a configuration option's name, type, and the default v
 |[syslog-host](#syslog-host)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
 |[syslog-port](#syslog-port)| int          | 514                                                                                                                                                                                                                                                                                                                                                          ||
 |[no-tls-redirect-locations](#no-tls-redirect-locations)| string       | "/.well-known/acme-challenge"                                                                                                                                                                                                                                                                                                                                ||
+|[global-allowed-response-headers](#global-allowed-response-headers)|string|""||
 |[global-auth-url](#global-auth-url)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
 |[global-auth-method](#global-auth-method)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
 |[global-auth-signin](#global-auth-signin)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
@@ -1285,6 +1286,10 @@ Sets the port of syslog server. _**default:**_ 514
 A comma-separated list of locations on which http requests will never get redirected to their https counterpart.
 _**default:**_ "/.well-known/acme-challenge"
 
+## global-allowed-response-headers
+
+A comma-separated list of allowed response headers inside the [custom headers annotations](https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/nginx-configuration/annotations.md#custom-headers)
+
 ## global-auth-url
 
 A url to an existing service that provides authentication for all the locations.
diff --git a/go.mod b/go.mod
index 780ce5959..228ac7511 100644
--- a/go.mod
+++ b/go.mod
@@ -26,6 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.22.0
+	golang.org/x/exp v0.0.0-20220722155223-a9213eeb770e
 	google.golang.org/grpc v1.63.2
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
diff --git a/go.work.sum b/go.work.sum
index 4e1cead39..4ce702139 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -379,6 +379,7 @@ cloud.google.com/go/spanner v1.49.0/go.mod h1:eGj9mQGK8+hkgSVbHNQ06pQ4oS+cyc4tXX
 cloud.google.com/go/spanner v1.51.0/go.mod h1:c5KNo5LQ1X5tJwma9rSQZsXNBDNvj4/n8BVc3LNahq0=
 cloud.google.com/go/spanner v1.55.0/go.mod h1:HXEznMUVhC+PC+HDyo9YFG2Ajj5BQDkcbqB9Z2Ffxi0=
 cloud.google.com/go/spanner v1.56.0/go.mod h1:DndqtUKQAt3VLuV2Le+9Y3WTnq5cNKrnLb/Piqcj+h0=
+cloud.google.com/go/spanner v1.57.0/go.mod h1:aXQ5QDdhPRIqVhYmnkAdwPYvj/DRN0FguclhEWw+jOo=
 cloud.google.com/go/speech v1.17.1/go.mod h1:8rVNzU43tQvxDaGvqOhpDqgkJTFowBpDvCJ14kGlJYo=
 cloud.google.com/go/speech v1.19.0/go.mod h1:8rVNzU43tQvxDaGvqOhpDqgkJTFowBpDvCJ14kGlJYo=
 cloud.google.com/go/speech v1.20.1/go.mod h1:wwolycgONvfz2EDU8rKuHRW3+wc9ILPsAWoikBEWavY=
@@ -442,14 +443,18 @@ github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMo
 github.com/alecthomas/kingpin/v2 v2.4.0/go.mod h1:0gyi0zQnjuFk8xrkNKamJoyUo382HRL7ATRpFZCw6tE=
 github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137/go.mod h1:OMCwj8VM1Kc9e19TLln2VL61YJF0x1XFtfdL4JdbSyE=
 github.com/andybalholm/brotli v1.0.4/go.mod h1:fO7iG3H7G2nSZ7m0zPUDn85XEX2GTukHGRSepvi9Eig=
+github.com/antlr/antlr4/runtime/Go/antlr/v4 v4.0.0-20230305170008-8188dc5388df/go.mod h1:pSwJ0fSY5KhvocuWSx4fz3BA8OrA1bQn+K1Eli3BRwM=
 github.com/apache/thrift v0.16.0/go.mod h1:PHK3hniurgQaNMZYaCLEqXKsYK8upmhPbmdP2FXSqgU=
 github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5/go.mod h1:wHh0iHkYZB8zMSxRWpUBQtwG5a7fFgvEO+odwuTv2gs=
 github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
 github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2/go.mod h1:WaHUgvxTVq04UNunO+XhnAqY/wQc+bxr74GqbsZ/Jqw=
 github.com/blang/semver v3.5.1+incompatible h1:cQNTCjp13qL8KC3Nbxr/y2Bqb63oX6wdnnjpJbkM4JQ=
+github.com/bytedance/sonic v1.9.1/go.mod h1:i736AoUSYt75HyZLoJW9ERYxcy6eaN6h4BZXU064P/U=
+github.com/cenkalti/backoff/v4 v4.2.1/go.mod h1:Y3VNntkOUPxTVeUxJ/G5vcM//AlwfmyYozVcomhLiZE=
 github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
 github.com/cespare/xxhash v1.1.0 h1:a6HrQnmkObjyL+Gs60czilIUGqrzKutQD6XZog3p+ko=
 github.com/checkpoint-restore/go-criu/v5 v5.3.0/go.mod h1:E/eQpaFtUKGOOSEBZgmKAcn+zUUwWxqcaKZlF54wK8E=
+github.com/chenzhuoyu/base64x v0.0.0-20221115062448-fe3a3abad311/go.mod h1:b583jCggY9gE99b6G5LEC39OIiVsWj+R97kbl5odCEk=
 github.com/chromedp/cdproto v0.0.0-20230802225258-3cf4e6d46a89/go.mod h1:GKljq0VrfU4D5yc+2qA6OVr8pmO/MBbPEWqWQ/oqGEs=
 github.com/chromedp/chromedp v0.9.2/go.mod h1:LkSXJKONWTCHAfQasKFUZI+mxqS4tZqhmtGzzhLsnLs=
 github.com/chromedp/sysutil v1.0.0/go.mod h1:kgWmDdq8fTzXYcKIBqIYvRRTnYb9aNS9moAV0xufSww=
@@ -468,6 +473,7 @@ github.com/cncf/xds/go v0.0.0-20231109132714-523115ebc101/go.mod h1:eXthEFrGJvWH
 github.com/cncf/xds/go v0.0.0-20231128003011-0fa0005c9caa/go.mod h1:x/1Gn8zydmfq8dk6e9PdstVsDgu9RuyIIJqAaF//0IM=
 github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
 github.com/coreos/go-oidc v2.2.1+incompatible/go.mod h1:CgnwVTmzoESiwO9qyAFEMiHoZ1nMCKZlZ9V6mm3/LKc=
+github.com/coreos/go-semver v0.3.1/go.mod h1:irMmmIw/7yzSRPWryHsK7EYSg09caPQL03VsM8rvUec=
 github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e h1:Wf6HqHfScWJN9/ZjdUKyjop4mf3Qdd+1TvvltAvM3m8=
 github.com/docker/go-units v0.4.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
 github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto=
@@ -480,7 +486,12 @@ github.com/envoyproxy/go-control-plane v0.11.1/go.mod h1:uhMcXKCQMEJHiAb0w+YGefQ
 github.com/envoyproxy/go-control-plane v0.12.0/go.mod h1:ZBTaoJ23lqITozF0M6G4/IragXCQKCnYbmlmtHvwRG0=
 github.com/envoyproxy/protoc-gen-validate v1.0.2/go.mod h1:GpiZQP3dDbg4JouG/NNS7QWXpgx6x8QiMKdmN72jogE=
 github.com/envoyproxy/protoc-gen-validate v1.0.4/go.mod h1:qys6tmnRsYrQqIhm2bvKZH4Blx/1gTIZ2UKVY1M+Yew=
+github.com/felixge/httpsnoop v1.0.3/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
 github.com/felixge/httpsnoop v1.0.4/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
+github.com/gabriel-vasile/mimetype v1.4.2/go.mod h1:zApsH/mKG4w07erKIaJPFiX0Tsq9BFQgN3qGY5GnNgA=
+github.com/getsentry/sentry-go v0.21.0/go.mod h1:lc76E2QywIyW8WuBnwl8Lc4bkmQH4+w1gwTf25trprY=
+github.com/gin-contrib/sse v0.1.0/go.mod h1:RHrZQHXnP2xjPF+u1gW/2HnVO7nvIa9PG3Gm+fLHvGI=
+github.com/gin-gonic/gin v1.9.1/go.mod h1:hPrL7YrpYKXt5YId3A/Tnip5kqbEAP+KLuI3SUcPTeU=
 github.com/go-kit/log v0.2.1/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0=
 github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
 github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
@@ -491,6 +502,9 @@ github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre
 github.com/go-openapi/jsonreference v0.20.1/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
 github.com/go-openapi/swag v0.22.5/go.mod h1:Gl91UqO+btAM0plGGxHqJcQZ1ZTy6jbmridBTsDy8A0=
 github.com/go-openapi/swag v0.22.6/go.mod h1:Gl91UqO+btAM0plGGxHqJcQZ1ZTy6jbmridBTsDy8A0=
+github.com/go-playground/locales v0.14.1/go.mod h1:hxrqLVvrK65+Rwrd5Fc6F2O76J/NuW9t0sjnWqG1slY=
+github.com/go-playground/universal-translator v0.18.1/go.mod h1:xekY+UJKNuX9WP91TpwSH2VMlDf28Uj24BCp08ZFTUY=
+github.com/go-playground/validator/v10 v10.14.0/go.mod h1:9iXMNT7sEkjXb0I+enO7QXmzG6QCsPWY4zveKFVRSyU=
 github.com/gobwas/httphead v0.1.0/go.mod h1:O/RXo79gxV8G+RqlR/otEwx4Q36zl9rqC5u12GKvMCM=
 github.com/gobwas/pool v0.2.1/go.mod h1:q8bcK0KcYlCgd9e7WYLm9LpyS+YeLd8JVDW6WezmKEw=
 github.com/gobwas/ws v1.2.1/go.mod h1:hRKAFb8wOxFROYNsT1bqfWnhX+b5MFeJM9r2ZSwg/KY=
@@ -500,8 +514,10 @@ github.com/golang-jwt/jwt/v4 v4.5.0/go.mod h1:m21LjoU+eqJr34lmDMbreY2eSTRJ1cv77w
 github.com/golang/glog v1.1.0/go.mod h1:pfYeQZ3JWZoXTV5sFc986z3HTpwQs9At6P4ImfuP3NQ=
 github.com/golang/glog v1.1.2/go.mod h1:zR+okUeTbrL6EL3xHUDxZuEtGv04p5shwip1+mL/rLQ=
 github.com/golang/glog v1.2.0/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
+github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
+github.com/google/cel-go v0.17.7/go.mod h1:HXZKzB0LXqer5lHHgfWAnlYwJaQBDKMjxjulNQzhwhY=
 github.com/google/flatbuffers v2.0.8+incompatible/go.mod h1:1AeVuKshWv4vARoZatz6mlQ0JxURH0Kv5+zNeJKJCa8=
 github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-pkcs11 v0.2.1-0.20230907215043-c6f79328ddf9/go.mod h1:6eQoGcuNJpa7jnd5pMGdkSaQpNDYvPlXWMcjXXThLlY=
@@ -522,27 +538,42 @@ github.com/googleapis/gax-go/v2 v2.10.0/go.mod h1:4UOEnMCrxsSqQ940WnTiD6qJ63le2e
 github.com/googleapis/gax-go/v2 v2.11.0/go.mod h1:DxmR61SGKkGLa2xigwuZIQpkCI2S5iydzRfb3peWZJI=
 github.com/googleapis/gax-go/v2 v2.12.0/go.mod h1:y+aIqrI5eb1YGMVJfuV3185Ts/D7qKpsEkdD5+I6QGU=
 github.com/googleapis/google-cloud-go-testing v0.0.0-20200911160855-bcd43fbb19e8/go.mod h1:dvDLG8qkwmyD9a/MJJN3XJcT3xFxOKAvTZGvuZmac9g=
+github.com/gorilla/websocket v1.5.0/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
+github.com/grpc-ecosystem/go-grpc-middleware v1.3.0/go.mod h1:z0ButlSOZa5vEBq9m2m2hlwIgKw+rp3sdCBRoJY+30Y=
+github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgfV/d3M/q6VIi02HzZEHgUlZvzk=
+github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
+github.com/grpc-ecosystem/grpc-gateway/v2 v2.16.0/go.mod h1:YN5jB8ie0yfIUg6VvR9Kz84aCaG7AsGZnLjhHbUqwPg=
 github.com/iancoleman/strcase v0.3.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
 github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/ianlancetaylor/demangle v0.0.0-20230524184225-eabc099b10ab/go.mod h1:gx7rwoVhcfuVKG5uya9Hs3Sxj7EIvldVofAWIUtGouw=
 github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
 github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
+github.com/jonboulle/clockwork v0.2.2/go.mod h1:Pkfl5aHPm1nk2H9h0bjmnJD/BcgbGXUBGnn1kMkgxc8=
 github.com/klauspost/asmfmt v1.3.2/go.mod h1:AG8TuvYojzulgDAMCnYn50l/5QV3Bs/tp6j0HLHbNSE=
 github.com/klauspost/compress v1.15.9/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU=
 github.com/klauspost/compress v1.16.7/go.mod h1:ntbaceVETuRiXiv4DpjP66DpAtAGkEQskQzEyD//IeE=
 github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
+github.com/klauspost/cpuid/v2 v2.2.4/go.mod h1:RVVoqg1df56z8g3pUjL/3lE5UfnlrJX8tyFgg4nqhuY=
 github.com/klauspost/cpuid/v2 v2.2.5/go.mod h1:Lcz8mBdAVJIBVzewtcLocK12l3Y+JytZYpaMropDUws=
 github.com/kr/fs v0.1.0/go.mod h1:FFnZGqtBN9Gxj7eW1uZ42v5BccTP0vu6NEaFoC2HwRg=
+github.com/labstack/echo/v4 v4.10.2/go.mod h1:OEyqf2//K1DFdE57vw2DRgWY0M7s65IVQO2FzvI4J5k=
+github.com/labstack/gommon v0.4.0/go.mod h1:uW6kP17uPlLJsD3ijUYn3/M5bAxtlZhMI6m3MFxTMTM=
 github.com/ledongthuc/pdf v0.0.0-20220302134840-0c2507a12d80/go.mod h1:imJHygn/1yfhB7XSJJKlFZKl/J+dCPAknuiaGOshXAs=
+github.com/leodido/go-urn v1.2.4/go.mod h1:7ZrI8mTSeBSHl/UaRyKQW1qZeMgak41ANeCNaVckg+4=
 github.com/lyft/protoc-gen-star/v2 v2.0.3/go.mod h1:amey7yeodaJhXSbf/TlLvWiqQfLOSpEk//mLlc+axEk=
+github.com/matttproud/golang_protobuf_extensions v1.0.4/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
 github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0/go.mod h1:QUyp042oQthUoa9bqDv0ER0wrtXnBruoNd7aNjkbP+k=
 github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8/go.mod h1:mC1jAcsrzbxHt8iiaC+zU4b1ylILSosueou12R++wfY=
 github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3/go.mod h1:RagcQ7I8IeTMnF8JTXieKnO4Z6JCsikNEzj0DwauVzE=
+github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
+github.com/mrunalp/fileutils v0.5.1/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
 github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
+github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
 github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
 github.com/onsi/gomega v1.19.0/go.mod h1:LY+I3pBVzYsTBU1AnDwOSxaYi9WoWiqgwooUqq9yPro=
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
 github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde/go.mod h1:nZgzbfBr3hhjoZnS66nKrHmduYNpc34ny7RK4z5/HM0=
+github.com/pelletier/go-toml/v2 v2.0.8/go.mod h1:vuYfssBdrU2XDZ9bYydBu6t+6a6PYNcZljzZR9VXg+4=
 github.com/pierrec/lz4/v4 v4.1.15/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4=
 github.com/pkg/sftp v1.13.1/go.mod h1:3HaPG6Dq1ILlpPZRO0HVMrsydcdLt6HRDccSgb87qRg=
 github.com/pquerna/cachecontrol v0.1.0/go.mod h1:NrUG3Z7Rdu85UNR3vm7SOsl1nFIeSiQnrHV5K9mBcUI=
@@ -550,29 +581,61 @@ github.com/prometheus/client_model v0.5.0/go.mod h1:dTiFglRmd66nLR9Pv9f0mZi7B7fk
 github.com/prometheus/common v0.45.0/go.mod h1:YJmSTw9BoKxJplESWWxlbyttQR4uaEcGyv9MZjVOJsY=
 github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
 github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
+github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
+github.com/soheilhy/cmux v0.1.5/go.mod h1:T7TcVDs9LWfQgPlPsdngu6I6QIoyIFZDDC6sNE1GqG0=
 github.com/spf13/afero v1.10.0/go.mod h1:UBogFpq8E9Hx+xc5CNTTEpTnuHVmXDwZcZcE1eb/UhQ=
+github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
+github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
+github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
+github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
+github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20220101234140-673ab2c3ae75/go.mod h1:KO6IkyS8Y3j8OdNO85qEYBsRPuteD+YciPomcXdrMnk=
+github.com/twitchyliquid64/golang-asm v0.15.1/go.mod h1:a1lVb/DtPvCB8fslRZhAngC2+aY1QWCk3Cedj/Gdt08=
+github.com/ugorji/go/codec v1.2.11/go.mod h1:UNopzCgEMSXjBc6AOMqYvWC1ktqTAfzJZUZgYf6w6lg=
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
+github.com/valyala/bytebufferpool v1.0.0/go.mod h1:6bBcMArwyJ5K/AmCkWv1jt77kVWyCJ6HpOuEn7z0Csc=
+github.com/valyala/fasttemplate v1.2.2/go.mod h1:KHLXt3tVN2HBp8eijSv/kGJopbvo7S+qRAEEKiv+SiQ=
 github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
 github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
 github.com/xhit/go-str2duration/v2 v2.1.0/go.mod h1:ohY8p+0f07DiV6Em5LKB0s2YpLtXVyJfNt1+BlmyAsU=
+github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
 github.com/zeebo/xxh3 v1.0.2/go.mod h1:5NWz9Sef7zIDm2JHfFlcQvNekmcEl9ekUZQQKCYaDcA=
+go.etcd.io/bbolt v1.3.8/go.mod h1:N9Mkw9X8x5fupy0IKsmuqVtoGDyxsaDlbk4Rd05IAQw=
+go.etcd.io/etcd/api/v3 v3.5.10/go.mod h1:TidfmT4Uycad3NM/o25fG3J07odo4GBB9hoxaodFCtI=
+go.etcd.io/etcd/client/pkg/v3 v3.5.10/go.mod h1:DYivfIviIuQ8+/lCq4vcxuseg2P2XbHygkKwFo9fc8U=
+go.etcd.io/etcd/client/v2 v2.305.10/go.mod h1:m3CKZi69HzilhVqtPDcjhSGp+kA1OmbNn0qamH80xjA=
+go.etcd.io/etcd/client/v3 v3.5.10/go.mod h1:RVeBnDz2PUEZqTpgqwAtUd8nAPf5kjyFyND7P1VkOKc=
+go.etcd.io/etcd/pkg/v3 v3.5.10/go.mod h1:TKTuCKKcF1zxmfKWDkfz5qqYaE3JncKKZPFf8c1nFUs=
+go.etcd.io/etcd/raft/v3 v3.5.10/go.mod h1:odD6kr8XQXTy9oQnyMPBOr0TVe+gT0neQhElQ6jbGRc=
+go.etcd.io/etcd/server/v3 v3.5.10/go.mod h1:gBplPHfs6YI0L+RpGkTQO7buDbHv5HJGG/Bst0/zIPo=
 go.opencensus.io v0.22.5/go.mod h1:5pWMHQbX5EPX2/62yrJeAkowc+lfs/XD7Uxpq3pI6kk=
 go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo=
+go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.42.0/go.mod h1:5z+/ZWJQKXa9YT34fQNx5K8Hd1EoIhvtUygUQPqEOgQ=
 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.46.1/go.mod h1:4UoMYEZOC0yN/sPGH76KPkkU7zgiEWYWL9vwmbnTJPE=
 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.47.0/go.mod h1:r9vWsPS/3AQItv3OSlEJ/E4mbrhUbbw18meOjArPtKQ=
+go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.44.0/go.mod h1:SeQhzAEccGVZVEy7aH87Nh0km+utSpo1pTv6eMMop48=
 go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.46.1/go.mod h1:sEGXWArGqc3tVa+ekntsN65DmVbVeW+7lTKTjZF3/Fo=
 go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.47.0/go.mod h1:SK2UL73Zy1quvRPonmOmRDiWk1KBV3LyIeeIxcEApWw=
+go.opentelemetry.io/otel v1.19.0/go.mod h1:i0QyjOq3UPoTzff0PJB2N66fb4S0+rSbSB15/oyH9fY=
 go.opentelemetry.io/otel v1.21.0/go.mod h1:QZzNPQPm1zLX4gZK4cMi+71eaorMSGT3A4znnUvNNEo=
 go.opentelemetry.io/otel v1.22.0/go.mod h1:eoV4iAi3Ea8LkAEI9+GFT44O6T/D0GWAVFyZVCC6pMI=
+go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.19.0/go.mod h1:IPtUMKL4O3tH5y+iXVyAXqpAwMuzC1IrxVS81rummfE=
+go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.19.0/go.mod h1:0+KuTDyKL4gjKCF75pHOX4wuzYDUZYfAQdSu43o+Z2I=
+go.opentelemetry.io/otel/metric v1.19.0/go.mod h1:L5rUsV9kM1IxCj1MmSdS+JQAcVm319EUrDVLrt7jqt8=
 go.opentelemetry.io/otel/metric v1.21.0/go.mod h1:o1p3CA8nNHW8j5yuQLdc1eeqEaPfzug24uvsyIEJRWM=
 go.opentelemetry.io/otel/metric v1.22.0/go.mod h1:evJGjVpZv0mQ5QBRJoBF64yMuOf4xCWdXjK8pzFvliY=
+go.opentelemetry.io/otel/sdk v1.19.0/go.mod h1:NedEbbS4w3C6zElbLdPJKOpJQOrGUJ+GfzpjUvI0v1A=
 go.opentelemetry.io/otel/sdk v1.21.0/go.mod h1:Nna6Yv7PWTdgJHVRD9hIYywQBRx7pbox6nwBnZIxl/E=
+go.opentelemetry.io/otel/trace v1.19.0/go.mod h1:mfaSyvGyEJEI0nyV2I4qhNQnbBOUUmYZpYojqMnX2vo=
 go.opentelemetry.io/otel/trace v1.21.0/go.mod h1:LGbsEB0f9LGjN+OZaQQ26sohbOmiMR+BaslueVtS/qQ=
 go.opentelemetry.io/otel/trace v1.22.0/go.mod h1:RbbHXVqKES9QhzZq/fE5UnOSILqRt40a21sPw2He1xo=
+go.opentelemetry.io/proto/otlp v1.0.0/go.mod h1:Sy6pihPLfYHkr3NkUbEhGHFhINUSI/v80hjKIs5JXpM=
+go.uber.org/atomic v1.10.0/go.mod h1:LUxbIzbOniOlMKjJjyPfpl4v+PKK2cNJn91OQbhoJI0=
 go.uber.org/goleak v1.2.0/go.mod h1:XJYK+MuIchqpmGmUSAzotztawfKvYLUIgg7guXrwVUo=
 go.uber.org/multierr v1.10.0/go.mod h1:20+QtiLqy0Nd6FdQB9TLXag12DsQkrbs3htMFfDN80Y=
+golang.org/x/arch v0.3.0/go.mod h1:5om86z9Hs0C8fWVUuoMHwpExlXzs5Tkyp9hOrfG7pp8=
 golang.org/x/crypto v0.0.0-20210421170649-83a5a9bb288b/go.mod h1:T9bdIzuCu7OtxOm1hfPfRQxPLYneinmdGuTeoZ9dtd4=
 golang.org/x/crypto v0.0.0-20220314234659-1baeb1ce4c0b/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.0.0-20220722155217-630584e8d5aa/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
@@ -614,6 +677,7 @@ golang.org/x/oauth2 v0.13.0/go.mod h1:/JMhi4ZRXAf4HG9LiNmxvk+45+96RUlVThiH8FzNBn
 golang.org/x/oauth2 v0.14.0/go.mod h1:lAtNWgaWfL4cm7j2OV8TxGi9Qb7ECORx8DktCY74OwM=
 golang.org/x/oauth2 v0.15.0/go.mod h1:q48ptWNTY5XWf+JNten23lcvHpLJ0ZSxF5ttTHKVCAM=
 golang.org/x/oauth2 v0.16.0/go.mod h1:hqZ+0LWXsiVoZpeld6jVt06P3adbS2Uu911W1SsJv2o=
+golang.org/x/oauth2 v0.17.0/go.mod h1:OzPDGQiuQMguemayvdylqddI7qcD9lnSDb+1FiwQ5HA=
 golang.org/x/sync v0.2.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.3.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
 golang.org/x/sync v0.4.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
@@ -632,6 +696,7 @@ golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.16.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/telemetry v0.0.0-20240208230135-b75ee8823808/go.mod h1:KG1lNk5ZFNssSZLrpVb4sMXKMpGwGXOxSG3rnu2gZQQ=
 golang.org/x/term v0.16.0/go.mod h1:yn7UURbUtPyrVJPGPq404EukNFxcm/foM+bV/bfcDsY=
 golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
@@ -660,6 +725,7 @@ google.golang.org/api v0.128.0/go.mod h1:Y611qgqaE92On/7g65MQgxYul3c0rEB894kniWL
 google.golang.org/api v0.149.0/go.mod h1:Mwn1B7JTXrzXtnvmzQE2BD6bYZQ8DShKZDZbeN9I7qI=
 google.golang.org/api v0.155.0/go.mod h1:GI5qK5f40kCpHfPn6+YzGAByIKWv8ujFnmoWm7Igduk=
 google.golang.org/api v0.162.0/go.mod h1:6SulDkfoBIg4NFmCuZ39XeeAgSHCPecfSUuDyYlAHs0=
+google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
 google.golang.org/genproto v0.0.0-20200904004341-0bd0a958aa1d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201109203340-2640f1f9cdfb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20201201144952-b05cb90ed32e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
@@ -685,6 +751,7 @@ google.golang.org/genproto v0.0.0-20240125205218-1f4bbc51befe/go.mod h1:cc8bqMqt
 google.golang.org/genproto v0.0.0-20240213162025-012b6fc9bca9 h1:9+tzLLstTlPTRyJTh+ah5wIMsBW5c4tQwGTN3thOW9Y=
 google.golang.org/genproto v0.0.0-20240213162025-012b6fc9bca9/go.mod h1:mqHbVIp48Muh7Ywss/AD6I5kNVKZMmAa/QEW58Gxp2s=
 google.golang.org/genproto v0.0.0-20240227224415-6ceb2ff114de h1:F6qOa9AZTYJXOUEr4jDysRDLrm4PHePlge4v4TGAlxY=
+google.golang.org/genproto v0.0.0-20240227224415-6ceb2ff114de/go.mod h1:VUhTRKeHn9wwcdrk73nvdC9gF178Tzhmt/qyaFcPLSo=
 google.golang.org/genproto/googleapis/api v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
 google.golang.org/genproto/googleapis/api v0.0.0-20230822172742-b8732ec3820d/go.mod h1:KjSP20unUpOx5kyQUFa7k4OJg0qeJ7DEZflGDu2p6Bk=
 google.golang.org/genproto/googleapis/api v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:RdyHbowztCGQySiCvQPgWQWgWhGnouTdCflKoDBt32U=
@@ -697,6 +764,8 @@ google.golang.org/genproto/googleapis/api v0.0.0-20240102182953-50ed04b92917/go.
 google.golang.org/genproto/googleapis/api v0.0.0-20240116215550-a9fa1716bcac/go.mod h1:B5xPO//w8qmBDjGReYLpR6UJPnkldGkCSMoH/2vxJeg=
 google.golang.org/genproto/googleapis/api v0.0.0-20240123012728-ef4313101c80/go.mod h1:4jWUdICTdgc3Ibxmr8nAJiiLHwQBY0UI0XZcEMaFKaA=
 google.golang.org/genproto/googleapis/api v0.0.0-20240205150955-31a09d347014/go.mod h1:rbHMSEDyoYX62nRVLOCc4Qt1HbsdytAYoVwgjiOhF3I=
+google.golang.org/genproto/googleapis/api v0.0.0-20240213162025-012b6fc9bca9/go.mod h1:PVreiBMirk8ypES6aw9d4p6iiBNSIfZEBqr3UGoAi2E=
+google.golang.org/genproto/googleapis/api v0.0.0-20240227224415-6ceb2ff114de/go.mod h1:5iCWqnniDlqZHrd3neWVTOwvh/v6s3232omMecelax8=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:ylj+BE99M198VPbBh6A8d9n3w8fChvyLK3wwBOjXBFA=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231030173426-d783a09b4405/go.mod h1:GRUCuLdzVqZte8+Dl/D4N25yLzcGqqWaYkeVOwulFqw=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231212172506-995d672761c0/go.mod h1:guYXGPwC6jwxgWKW5Y405fKWOFNwlvUlUnzyp9i0uqo=
@@ -711,6 +780,7 @@ google.golang.org/genproto/googleapis/rpc v0.0.0-20240116215550-a9fa1716bcac/go.
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240123012728-ef4313101c80/go.mod h1:PAREbraiVEVGVdTZsVWjSbbTtSyGbAgIIvni8a8CD5s=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240125205218-1f4bbc51befe/go.mod h1:PAREbraiVEVGVdTZsVWjSbbTtSyGbAgIIvni8a8CD5s=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240205150955-31a09d347014/go.mod h1:SaPjaZGWb0lPqs6Ittu0spdfrOArqji4ZdeP5IC/9N4=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240213162025-012b6fc9bca9/go.mod h1:YUWgXUFRPfoYK1IHMuxH5K6nPEXSCzIMljnQ59lLRCk=
 google.golang.org/grpc v1.31.1/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
 google.golang.org/grpc v1.34.0/go.mod h1:WotjhfgOW/POjDeRt8vscBtXq+2VjORFy659qA51WJ8=
@@ -722,14 +792,21 @@ google.golang.org/grpc v1.57.0/go.mod h1:Sd+9RMTACXwmub0zcNY2c4arhtrbBYD1AUHI/dt
 google.golang.org/grpc v1.59.0/go.mod h1:aUPDwccQo6OTjy7Hct4AfBPD1GptF4fyUjIkQ9YtF98=
 google.golang.org/grpc v1.60.1/go.mod h1:OlCHIeLYqSSsLi6i49B5QGdzaMZK9+M7LXN2FKz4eGM=
 google.golang.org/grpc v1.61.0/go.mod h1:VUbo7IFqmF1QtCAstipjG0GIoq49KvMe9+h1jFLBNJs=
+google.golang.org/grpc v1.61.1/go.mod h1:VUbo7IFqmF1QtCAstipjG0GIoq49KvMe9+h1jFLBNJs=
+google.golang.org/grpc v1.62.1/go.mod h1:IWTG0VlJLCh1SkC58F7np9ka9mx/WNkjl4PGJaiq+QE=
 google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
 google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.32.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
 gopkg.in/evanphx/json-patch.v5 v5.6.0 h1:BMT6KIwBD9CaU91PJCZIe46bDmBWa9ynTQgJIOpfQBk=
 gopkg.in/evanphx/json-patch.v5 v5.6.0/go.mod h1:/kvTRh1TVm5wuM6OkHxqXtE/1nUZZpihg29RtuIyfvk=
+gopkg.in/natefinch/lumberjack.v2 v2.2.1/go.mod h1:YD8tP3GAjkrDg1eZH7EGmyESg/lsYskCTPBJVb9jqSc=
 gopkg.in/square/go-jose.v2 v2.6.0/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
 k8s.io/gengo v0.0.0-20230829151522-9cce18d56c01/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
 k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/kms v0.29.3/go.mod h1:TBGbJKpRUMk59neTMDMddjIDL+D4HuFUbpuiuzmOPg0=
 k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.28.0/go.mod h1:VHVDI/KrK4fjnV61bE2g3sA7tiETLn8sooImelsCx3Y=
 sigs.k8s.io/structured-merge-diff/v4 v4.2.3/go.mod h1:qjx8mGObPmV2aSZepjQjbmb2ihdVs8cGKBraizNC69E=
diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index 302f0b4b1..0bb2ac7b8 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -20,6 +20,7 @@ import (
 	"dario.cat/mergo"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/canary"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/customheaders"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/disableproxyintercepterrors"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/modsecurity"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/opentelemetry"
@@ -82,6 +83,7 @@ type Ingress struct {
 	Canary                      canary.Config
 	CertificateAuth             authtls.Config
 	ClientBodyBufferSize        string
+	CustomHeaders               customheaders.Config
 	ConfigurationSnippet        string
 	Connection                  connection.Config
 	CorsConfig                  cors.Config
@@ -133,6 +135,7 @@ func NewAnnotationExtractor(cfg resolver.Resolver) Extractor {
 			"Canary":                      canary.NewParser(cfg),
 			"CertificateAuth":             authtls.NewParser(cfg),
 			"ClientBodyBufferSize":        clientbodybuffersize.NewParser(cfg),
+			"CustomHeaders":               customheaders.NewParser(cfg),
 			"ConfigurationSnippet":        snippet.NewParser(cfg),
 			"Connection":                  connection.NewParser(cfg),
 			"CorsConfig":                  cors.NewParser(cfg),
diff --git a/internal/ingress/annotations/annotations_test.go b/internal/ingress/annotations/annotations_test.go
index 0f4f8f7d7..5df3cdc0e 100644
--- a/internal/ingress/annotations/annotations_test.go
+++ b/internal/ingress/annotations/annotations_test.go
@@ -43,16 +43,20 @@ var (
 	annotationAffinityCookieName     = parser.GetAnnotationWithPrefix("session-cookie-name")
 	annotationUpstreamHashBy         = parser.GetAnnotationWithPrefix("upstream-hash-by")
 	annotationCustomHTTPErrors       = parser.GetAnnotationWithPrefix("custom-http-errors")
+	annotationCustomHeaders          = parser.GetAnnotationWithPrefix("custom-headers")
 )
 
 type mockCfg struct {
 	resolver.Mock
-	MockSecrets  map[string]*apiv1.Secret
-	MockServices map[string]*apiv1.Service
+	MockSecrets    map[string]*apiv1.Secret
+	MockServices   map[string]*apiv1.Service
+	MockConfigMaps map[string]*apiv1.ConfigMap
 }
 
 func (m mockCfg) GetDefaultBackend() defaults.Backend {
-	return defaults.Backend{}
+	return defaults.Backend{
+		AllowedResponseHeaders: []string{"Content-Type"},
+	}
 }
 
 func (m mockCfg) GetSecret(name string) (*apiv1.Secret, error) {
@@ -63,6 +67,10 @@ func (m mockCfg) GetService(name string) (*apiv1.Service, error) {
 	return m.MockServices[name], nil
 }
 
+func (m mockCfg) GetConfigMap(name string) (*apiv1.ConfigMap, error) {
+	return m.MockConfigMaps[name], nil
+}
+
 func (m mockCfg) GetAuthCertificate(name string) (*resolver.AuthSSLCert, error) {
 	secret, err := m.GetSecret(name)
 	if err != nil {
@@ -317,3 +325,44 @@ func TestCustomHTTPErrors(t *testing.T) {
 		}
 	}
 }
+
+func TestCustomResponseHeaders(t *testing.T) {
+	mockObj := mockCfg{}
+	mockObj.MockConfigMaps = map[string]*apiv1.ConfigMap{}
+	mockObj.MockConfigMaps["custom-headers"] = &apiv1.ConfigMap{Data: map[string]string{"Content-Type": "application/json"}}
+	mockObj.MockConfigMaps["empty-custom-headers"] = &apiv1.ConfigMap{Data: map[string]string{}}
+
+	ec := NewAnnotationExtractor(mockObj)
+	ing := buildIngress()
+	fooAnns := []struct {
+		annotations map[string]string
+		headers     map[string]string
+	}{
+		{map[string]string{annotationCustomHeaders: "custom-headers"}, map[string]string{"Content-Type": "application/json"}},
+		{map[string]string{annotationCustomHeaders: "empty-custom-headers"}, map[string]string{}},
+		{nil, map[string]string{}},
+	}
+
+	for _, foo := range fooAnns {
+		ing.SetAnnotations(foo.annotations)
+		rann, err := ec.Extract(ing)
+		if err != nil {
+			t.Errorf("error should be null: %v", err)
+		}
+		r := rann.CustomHeaders.Headers
+
+		// Check that expected headers were created
+		for i := range foo.headers {
+			if r[i] != foo.headers[i] {
+				t.Errorf("Returned %v but expected %v", r, foo.headers)
+			}
+		}
+
+		// Check that no unexpected headers were created
+		for i := range r {
+			if r[i] != foo.headers[i] {
+				t.Errorf("Returned %v but expected %v", r, foo.headers)
+			}
+		}
+	}
+}
diff --git a/internal/ingress/annotations/customheaders/main.go b/internal/ingress/annotations/customheaders/main.go
new file mode 100644
index 000000000..774e9c3d3
--- /dev/null
+++ b/internal/ingress/annotations/customheaders/main.go
@@ -0,0 +1,124 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package customheaders
+
+import (
+	"fmt"
+	"regexp"
+
+	"k8s.io/klog/v2"
+
+	networking "k8s.io/api/networking/v1"
+
+	"golang.org/x/exp/slices"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
+	"k8s.io/ingress-nginx/internal/ingress/resolver"
+)
+
+// Config returns the custom response headers for an Ingress rule
+type Config struct {
+	Headers map[string]string `json:"headers,omitempty"`
+}
+
+var (
+	headerRegexp = regexp.MustCompile(`^[a-zA-Z\d\-_]+$`)
+	valueRegexp  = regexp.MustCompile(`^[a-zA-Z\d_ :;.,\\/"'?!(){}\[\]@<>=\-+*#$&\x60|~^%]+$`)
+)
+
+// ValidHeader checks is the provided string satisfies the header's name regex
+func ValidHeader(header string) bool {
+	return headerRegexp.MatchString(header)
+}
+
+// ValidValue checks is the provided string satisfies the value regex
+func ValidValue(header string) bool {
+	return valueRegexp.MatchString(header)
+}
+
+const (
+	customHeadersConfigMapAnnotation = "custom-headers"
+)
+
+var customHeadersAnnotation = parser.Annotation{
+	Group: "backend",
+	Annotations: parser.AnnotationFields{
+		customHeadersConfigMapAnnotation: {
+			Validator: parser.ValidateRegex(parser.BasicCharsRegex, true),
+			Scope:     parser.AnnotationScopeLocation,
+			Risk:      parser.AnnotationRiskMedium,
+			Documentation: `This annotation sets the name of a ConfigMap that specifies headers to pass to the client.
+			Only ConfigMaps on the same namespace are allowed`,
+		},
+	},
+}
+
+type customHeaders struct {
+	r                resolver.Resolver
+	annotationConfig parser.Annotation
+}
+
+// NewParser creates a new custom response headers annotation parser
+func NewParser(r resolver.Resolver) parser.IngressAnnotation {
+	return customHeaders{r: r, annotationConfig: customHeadersAnnotation}
+}
+
+func (a customHeaders) GetDocumentation() parser.AnnotationFields {
+	return a.annotationConfig.Annotations
+}
+
+// Parse parses the annotations contained in the ingress to use
+// custom response headers
+func (a customHeaders) Parse(ing *networking.Ingress) (interface{}, error) {
+	clientHeadersConfigMapName, err := parser.GetStringAnnotation(customHeadersConfigMapAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil {
+		klog.V(3).InfoS("client-headers annotation is undefined and will not be set")
+	}
+
+	var headers map[string]string
+	defBackend := a.r.GetDefaultBackend()
+
+	if clientHeadersConfigMapName != "" {
+		clientHeadersMapContents, err := a.r.GetConfigMap(clientHeadersConfigMapName)
+		if err != nil {
+			return nil, ing_errors.NewLocationDenied(fmt.Sprintf("unable to find configMap %q", clientHeadersConfigMapName))
+		}
+
+		for header, value := range clientHeadersMapContents.Data {
+			if !ValidHeader(header) {
+				return nil, ing_errors.NewLocationDenied("invalid header name in configmap")
+			}
+			if !ValidValue(value) {
+				return nil, ing_errors.NewLocationDenied("invalid header value in configmap")
+			}
+			if !slices.Contains(defBackend.AllowedResponseHeaders, header) {
+				return nil, ing_errors.NewLocationDenied(fmt.Sprintf("header %s is not allowed, defined allowed headers inside global-allowed-response-headers %v", header, defBackend.AllowedResponseHeaders))
+			}
+		}
+
+		headers = clientHeadersMapContents.Data
+	}
+
+	return &Config{
+		Headers: headers,
+	}, nil
+}
+
+func (a customHeaders) Validate(anns map[string]string) error {
+	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
+	return parser.CheckAnnotationRisk(anns, maxrisk, customHeadersAnnotation.Annotations)
+}
diff --git a/internal/ingress/annotations/customheaders/main_test.go b/internal/ingress/annotations/customheaders/main_test.go
new file mode 100644
index 000000000..81c0b795a
--- /dev/null
+++ b/internal/ingress/annotations/customheaders/main_test.go
@@ -0,0 +1,113 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package customheaders
+
+import (
+	"reflect"
+	"testing"
+
+	api "k8s.io/api/core/v1"
+	networking "k8s.io/api/networking/v1"
+	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
+	"k8s.io/ingress-nginx/internal/ingress/defaults"
+	"k8s.io/ingress-nginx/internal/ingress/resolver"
+)
+
+func buildIngress() *networking.Ingress {
+	return &networking.Ingress{
+		ObjectMeta: meta_v1.ObjectMeta{
+			Name:      "foo",
+			Namespace: api.NamespaceDefault,
+		},
+		Spec: networking.IngressSpec{
+			DefaultBackend: &networking.IngressBackend{
+				Service: &networking.IngressServiceBackend{
+					Name: "default-backend",
+					Port: networking.ServiceBackendPort{
+						Number: 80,
+					},
+				},
+			},
+		},
+	}
+}
+
+type mockBackend struct {
+	resolver.Mock
+}
+
+// GetDefaultBackend returns the backend that must be used as default
+func (m mockBackend) GetDefaultBackend() defaults.Backend {
+	return defaults.Backend{
+		AllowedResponseHeaders: []string{"Content-Type", "Access-Control-Max-Age"},
+	}
+}
+
+func TestCustomHeadersParseInvalidAnnotations(t *testing.T) {
+	ing := buildIngress()
+	configMapResolver := mockBackend{}
+	configMapResolver.ConfigMaps = map[string]*api.ConfigMap{}
+
+	_, err := NewParser(configMapResolver).Parse(ing)
+	if err != nil {
+		t.Errorf("expected error parsing ingress with custom-response-headers")
+	}
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix("custom-headers")] = "custom-headers-configmap"
+	ing.SetAnnotations(data)
+	i, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err == nil {
+		t.Errorf("expected error parsing ingress with custom-response-headers")
+	}
+	if i != nil {
+		t.Errorf("expected %v but got %v", nil, i)
+	}
+}
+
+func TestCustomHeadersParseAnnotations(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix("custom-headers")] = "custom-headers-configmap"
+	ing.SetAnnotations(data)
+
+	configMapResolver := mockBackend{}
+	configMapResolver.ConfigMaps = map[string]*api.ConfigMap{}
+
+	configMapResolver.ConfigMaps["custom-headers-configmap"] = &api.ConfigMap{Data: map[string]string{"Content-Type": "application/json", "Access-Control-Max-Age": "600"}}
+
+	i, err := NewParser(configMapResolver).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error parsing ingress with custom-response-headers: %s", err)
+	}
+	val, ok := i.(*Config)
+	if !ok {
+		t.Errorf("expected a *Config type")
+	}
+
+	expectedResponseHeaders := map[string]string{}
+	expectedResponseHeaders["Content-Type"] = "application/json"
+	expectedResponseHeaders["Access-Control-Max-Age"] = "600"
+
+	c := &Config{expectedResponseHeaders}
+
+	if !reflect.DeepEqual(c, val) {
+		t.Errorf("expected %v but got %v", c, val)
+	}
+}
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 371f3069c..47f2120f1 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -888,6 +888,7 @@ func NewDefault() Configuration {
 			ProxyHTTPVersion:            "1.1",
 			ProxyMaxTempFileSize:        "1024m",
 			ServiceUpstream:             false,
+			AllowedResponseHeaders:      []string{},
 		},
 		UpstreamKeepaliveConnections:           320,
 		UpstreamKeepaliveTime:                  "1h",
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index a43c143e3..2e782f485 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -1504,6 +1504,7 @@ func (n *NGINXController) createServers(data []*ingress.Ingress,
 func locationApplyAnnotations(loc *ingress.Location, anns *annotations.Ingress) {
 	loc.BasicDigestAuth = anns.BasicDigestAuth
 	loc.ClientBodyBufferSize = anns.ClientBodyBufferSize
+	loc.CustomHeaders = anns.CustomHeaders
 	loc.ConfigurationSnippet = anns.ConfigurationSnippet
 	loc.CorsConfig = anns.CorsConfig
 	loc.ExternalAuth = anns.ExternalAuth
diff --git a/internal/ingress/controller/template/configmap.go b/internal/ingress/controller/template/configmap.go
index 9dc019bcc..f78dbad03 100644
--- a/internal/ingress/controller/template/configmap.go
+++ b/internal/ingress/controller/template/configmap.go
@@ -31,6 +31,7 @@ import (
 
 	"k8s.io/apimachinery/pkg/util/sets"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/authreq"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/customheaders"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/controller/config"
 	ing_net "k8s.io/ingress-nginx/internal/net"
@@ -54,6 +55,7 @@ const (
 	nginxStatusIpv6Whitelist      = "nginx-status-ipv6-whitelist"
 	proxyHeaderTimeout            = "proxy-protocol-header-timeout"
 	workerProcesses               = "worker-processes"
+	globalAllowedResponseHeaders  = "global-allowed-response-headers"
 	globalAuthURL                 = "global-auth-url"
 	globalAuthMethod              = "global-auth-method"
 	globalAuthSignin              = "global-auth-signin"
@@ -115,6 +117,7 @@ func ReadConfig(src map[string]string) config.Configuration {
 	blockUserAgentList := make([]string, 0)
 	blockRefererList := make([]string, 0)
 	responseHeaders := make([]string, 0)
+	allowedResponseHeaders := make([]string, 0)
 	luaSharedDicts := make(map[string]int)
 	debugConnectionsList := make([]string, 0)
 
@@ -248,6 +251,22 @@ func ReadConfig(src map[string]string) config.Configuration {
 		}
 	}
 
+	// Verify that the configured global external authorization response headers are valid. if not, set the default value
+	if val, ok := conf[globalAllowedResponseHeaders]; ok {
+		delete(conf, globalAllowedResponseHeaders)
+
+		if val != "" {
+			harr := splitAndTrimSpace(val, ",")
+			for _, header := range harr {
+				if !customheaders.ValidHeader(header) {
+					klog.Warningf("Global allowed response headers denied - %s.", header)
+				} else {
+					allowedResponseHeaders = append(allowedResponseHeaders, header)
+				}
+			}
+		}
+	}
+
 	// Verify that the configured global external authorization method is a valid HTTP method. if not, set the default value
 	if val, ok := conf[globalAuthMethod]; ok {
 		delete(conf, globalAuthMethod)
@@ -422,6 +441,7 @@ func ReadConfig(src map[string]string) config.Configuration {
 	to.ProxyStreamResponses = streamResponses
 	to.DisableIpv6DNS = !ing_net.IsIPv6Enabled()
 	to.LuaSharedDicts = luaSharedDicts
+	to.Backend.AllowedResponseHeaders = allowedResponseHeaders
 
 	decoderConfig := &mapstructure.DecoderConfig{
 		Metadata:         nil,
diff --git a/internal/ingress/defaults/main.go b/internal/ingress/defaults/main.go
index 2bb58c858..cfad388ef 100644
--- a/internal/ingress/defaults/main.go
+++ b/internal/ingress/defaults/main.go
@@ -176,6 +176,9 @@ type Backend struct {
 	// By default, the NGINX ingress controller uses a list of all endpoints (Pod IP/port) in the NGINX upstream configuration.
 	// It disables that behavior and instead uses a single upstream in NGINX, the service's Cluster IP and port.
 	ServiceUpstream bool `json:"service-upstream"`
+
+	// AllowedResponseHeaders allows to define allow response headers for custom header annotation
+	AllowedResponseHeaders []string `json:"global-allowed-response-headers"`
 }
 
 type SecurityConfiguration struct {
diff --git a/pkg/apis/ingress/types.go b/pkg/apis/ingress/types.go
index 2ad17ec3d..269814d34 100644
--- a/pkg/apis/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -27,6 +27,7 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/authtls"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/connection"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/cors"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/customheaders"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/fastcgi"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/globalratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipallowlist"
@@ -263,7 +264,8 @@ type Location struct {
 	BasicDigestAuth auth.Config `json:"basicDigestAuth,omitempty"`
 	// Denied returns an error when this location cannot not be allowed
 	// Requesting a denied location should return HTTP code 403.
-	Denied *string `json:"denied,omitempty"`
+	Denied        *string              `json:"denied,omitempty"`
+	CustomHeaders customheaders.Config `json:"customHeaders,omitempty"`
 	// CorsConfig returns the Cors Configuration for the ingress rule
 	// +optional
 	CorsConfig cors.Config `json:"corsConfig,omitempty"`
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index b3b3f8683..4c0da2eb9 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -1489,6 +1489,13 @@ stream {
             {{ $all.Cfg.LocationSnippet }}
             {{ end }}
 
+            {{ if $location.CustomHeaders }}
+            # Custom Response Headers
+            {{ range $k, $v := $location.CustomHeaders.Headers }}
+            more_set_headers {{ printf "%s: %s" $k $v | escapeLiteralDollar | quote }};
+            {{ end }}
+            {{ end }}
+
             {{/* if we are sending the request to a custom default backend, we add the required headers */}}
             {{ if (hasPrefix $location.Backend "custom-default-backend-") }}
             proxy_set_header       X-Code             503;
diff --git a/test/e2e/annotations/customheaders.go b/test/e2e/annotations/customheaders.go
new file mode 100644
index 000000000..274ce8278
--- /dev/null
+++ b/test/e2e/annotations/customheaders.go
@@ -0,0 +1,110 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package annotations
+
+import (
+	"fmt"
+	"net/http"
+	"strings"
+
+	"github.com/onsi/ginkgo/v2"
+
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+const (
+	customHeaderHost = "custom-headers"
+)
+
+var _ = framework.DescribeAnnotation("custom-headers-*", func() {
+	f := framework.NewDefaultFramework("custom-headers")
+
+	ginkgo.BeforeEach(func() {
+		f.NewEchoDeployment()
+	})
+
+	ginkgo.It("should return status code 200 when no custom-headers is configured", func() {
+		ing := framework.NewSingleIngress(customHeaderHost, "/", customHeaderHost, f.Namespace, framework.EchoService, 80, nil)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(customHeaderHost,
+			func(server string) bool {
+				return strings.Contains(server, "server_name custom-headers")
+			})
+
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", customHeaderHost).
+			Expect().
+			Status(http.StatusOK).
+			Body().Contains(fmt.Sprintf("host=%v", customHeaderHost))
+	})
+
+	ginkgo.It("should return status code 503 when custom-headers is configured with an invalid secret", func() {
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/custom-headers": f.Namespace + "/custom-headers",
+		}
+
+		ing := framework.NewSingleIngress(customHeaderHost, "/", customHeaderHost, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(customHeaderHost,
+			func(server string) bool {
+				return strings.Contains(server, "server_name custom-headers")
+			})
+
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", customHeaderHost).
+			Expect().
+			Status(http.StatusServiceUnavailable).
+			Body().Contains("503 Service Temporarily Unavailable")
+	})
+
+	ginkgo.It(`should set "more_set_headers 'My-Custom-Header' '42';" when custom-headers are set`, func() {
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/custom-headers": f.Namespace + "/custom-headers",
+		}
+
+		f.CreateConfigMap("custom-headers", map[string]string{
+			"My-Custom-Header":        "42",
+			"My-Custom-Header-Dollar": "$remote_addr",
+		})
+		f.UpdateNginxConfigMapData("global-allowed-response-headers", "My-Custom-Header,My-Custom-Header-Dollar")
+
+		ing := framework.NewSingleIngress(customHeaderHost, "/", customHeaderHost, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(customHeaderHost,
+			func(server string) bool {
+				return strings.Contains(server, `more_set_headers "My-Custom-Header: 42";`)
+			})
+
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", customHeaderHost).
+			Expect().
+			Status(http.StatusOK).
+			Header("My-Custom-Header").Contains("42")
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", customHeaderHost).
+			Expect().
+			Status(http.StatusOK).
+			Header("My-Custom-Header-Dollar").Contains("$remote_addr")
+	})
+})

From ca6d3622e5c2819a29f4a407ed272f42d10a91a9 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 9 Apr 2024 15:34:40 -0400
Subject: [PATCH 1247/1641] update k8s version to latest kind release (#11240)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/ci.yaml     | 8 ++++----
 .github/workflows/images.yaml | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 3e7067b8f..bc2dc24ef 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -235,7 +235,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.26.6, v1.27.3, v1.28.0, v1.29.0]
+        k8s: [v1.26.14, v1.27.11, v1.28.7, v1.29.2]
 
     steps:
       - name: Checkout
@@ -286,7 +286,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true')
     strategy:
       matrix:
-        k8s: [v1.26.6, v1.27.3, v1.28.0, v1.29.0]
+        k8s: [v1.26.14, v1.27.11, v1.28.7, v1.29.2]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
@@ -300,7 +300,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true')
     strategy:
       matrix:
-        k8s: [v1.26.6, v1.27.3, v1.28.0, v1.29.0]
+        k8s: [v1.26.14, v1.27.11, v1.28.7, v1.29.2]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
@@ -315,7 +315,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true')
     strategy:
       matrix:
-        k8s: [v1.26.6, v1.27.3, v1.28.0, v1.29.0]
+        k8s: [v1.26.14, v1.27.11, v1.28.7, v1.29.2]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 4afc27aa2..28bbf6692 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -141,7 +141,7 @@ jobs:
       (needs.changes.outputs.kube-webhook-certgen == 'true')
     strategy:
       matrix:
-        k8s: [v1.25.11, v1.26.6, v1.27.3, v1.28.0, v1.29.0]
+        k8s: [v1.26.14, v1.27.11, v1.28.7, v1.29.2]
     steps:
     - name: Checkout
       uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2

From fde59909297d5b384e5a550bec155ca37bcfad15 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 15 Apr 2024 08:02:17 -0700
Subject: [PATCH 1248/1641] Bump actions/add-to-project from 1.0.0 to 1.0.1 in
 the all group (#11262)

Bumps the all group with 1 update: [actions/add-to-project](https://github.com/actions/add-to-project).


Updates `actions/add-to-project` from 1.0.0 to 1.0.1
- [Release notes](https://github.com/actions/add-to-project/releases)
- [Commits](https://github.com/actions/add-to-project/compare/2e5cc851ca7162e9eb510e6da6a5c64022e606a7...9bfe908f2eaa7ba10340b31e314148fcfe6a2458)

---
updated-dependencies:
- dependency-name: actions/add-to-project
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/project.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/project.yml b/.github/workflows/project.yml
index b999e29be..59ad98a71 100644
--- a/.github/workflows/project.yml
+++ b/.github/workflows/project.yml
@@ -13,7 +13,7 @@ jobs:
       repository-projects: write
       issues: write
     steps:
-      - uses: actions/add-to-project@2e5cc851ca7162e9eb510e6da6a5c64022e606a7 # v1.0.0
+      - uses: actions/add-to-project@9bfe908f2eaa7ba10340b31e314148fcfe6a2458 # v1.0.1
         with:
           project-url: https://github.com/orgs/kubernetes/projects/104
           github-token: ${{ secrets.PROJECT_WRITER }}

From 5b8c1cd1d990b8bd206b44ec007e56730ad2260a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 15 Apr 2024 08:04:36 -0700
Subject: [PATCH 1249/1641] Bump azure/setup-helm from 3.5 to 4 (#11263)

Bumps [azure/setup-helm](https://github.com/azure/setup-helm) from 3.5 to 4.
- [Release notes](https://github.com/azure/setup-helm/releases)
- [Changelog](https://github.com/Azure/setup-helm/blob/main/CHANGELOG.md)
- [Commits](https://github.com/azure/setup-helm/compare/5119fcb9089d432beecbf79bb2c7915207344b78...b7246b12e77f7134dc2d460a3d5bad15bbe29390)

---
updated-dependencies:
- dependency-name: azure/setup-helm
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index bc2dc24ef..e7f2da325 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -184,7 +184,7 @@ jobs:
           fetch-depth: 0
 
       - name: Set up Helm
-        uses: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78 # v3.5
+        uses: azure/setup-helm@b7246b12e77f7134dc2d460a3d5bad15bbe29390 # v4.1.0
 
       - uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # v5.1.0
         with:

From b9e0c281d060ff3030daf300790a04e0fdb89a2e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 15 Apr 2024 09:12:02 -0700
Subject: [PATCH 1250/1641] Bump the all group with 2 updates (#11261)

Bumps the all group with 2 updates: [github.com/prometheus/common](https://github.com/prometheus/common) and [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime).


Updates `github.com/prometheus/common` from 0.52.2 to 0.52.3
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.52.2...v0.52.3)

Updates `sigs.k8s.io/controller-runtime` from 0.17.2 to 0.17.3
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases)
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.17.2...v0.17.3)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: sigs.k8s.io/controller-runtime
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 228ac7511..59701ed42 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.0
 	github.com/prometheus/client_model v0.6.1
-	github.com/prometheus/common v0.52.2
+	github.com/prometheus/common v0.52.3
 	github.com/spf13/cobra v1.8.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.9.0
@@ -41,7 +41,7 @@ require (
 	k8s.io/component-base v0.29.3
 	k8s.io/klog/v2 v2.120.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.17.2
+	sigs.k8s.io/controller-runtime v0.17.3
 	sigs.k8s.io/mdtoc v1.1.0
 )
 
diff --git a/go.sum b/go.sum
index b7f63c02f..999739793 100644
--- a/go.sum
+++ b/go.sum
@@ -323,8 +323,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.52.2 h1:LW8Vk7BccEdONfrJBDffQGRtpSzi5CQaRZGtboOO2ck=
-github.com/prometheus/common v0.52.2/go.mod h1:lrWtQx+iDfn2mbH5GUzlH9TSHyfZpHkSiG1W7y3sF2Q=
+github.com/prometheus/common v0.52.3 h1:5f8uj6ZwHSscOGNdIQg6OiZv/ybiK2CO2q2drVZAQSA=
+github.com/prometheus/common v0.52.3/go.mod h1:BrxBKv3FWBIGXw89Mg1AeBq7FSyRzXWI3l3e7W3RN5U=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
@@ -770,8 +770,8 @@ pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
-sigs.k8s.io/controller-runtime v0.17.2 h1:FwHwD1CTUemg0pW2otk7/U5/i5m2ymzvOXdbeGOUvw0=
-sigs.k8s.io/controller-runtime v0.17.2/go.mod h1:+MngTvIQQQhfXtwfdGw/UOQ/aIaqsYywfCINOtwMO/s=
+sigs.k8s.io/controller-runtime v0.17.3 h1:65QmN7r3FWgTxDMz9fvGnO1kbf2nu+acg9p2R9oYYYk=
+sigs.k8s.io/controller-runtime v0.17.3/go.mod h1:N0jpP5Lo7lMTF9aL56Z/B2oWBJjey6StQM0jRbKQXtY=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/kustomize/api v0.16.0 h1:/zAR4FOQDCkgSDmVzV2uiFbuy9bhu3jEzthrHCuvm1g=

From 1dee4b131e61b0060618eabff76e26770f86135f Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 18 Apr 2024 10:30:27 -0400
Subject: [PATCH 1251/1641] release helm chart from release branch (#11276)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/helm.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 3ba506c29..af8d91e1f 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -4,6 +4,7 @@ on:
   push:
     branches:
       - main
+      - release-*
 
 permissions:
   contents: read

From 95554dccd25a5b6debac9a850c0b84ec2f815fe8 Mon Sep 17 00:00:00 2001
From: NierYYDS <141559828+NierYYDS@users.noreply.github.com>
Date: Fri, 19 Apr 2024 01:06:32 +0800
Subject: [PATCH 1252/1641] fix: update kube version requirement to 1.21
 (#11275)

The controller depends on the v1 version of EndpointSlice, but the discovery.k8s.io/v1 API was first introduced in Kubernetes version 1.21.
---
 charts/ingress-nginx/Chart.yaml | 2 +-
 charts/ingress-nginx/README.md  | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 7996c29c5..f9bb890f8 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -11,7 +11,7 @@ icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/5
 keywords:
   - ingress
   - nginx
-kubeVersion: '>=1.20.0-0'
+kubeVersion: '>=1.21.0-0'
 maintainers:
   - name: Gacko
   - name: rikatz
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index c3489a6c3..1c166e05e 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -10,7 +10,7 @@ This chart bootstraps an ingress-nginx deployment on a [Kubernetes](http://kuber
 
 ## Requirements
 
-Kubernetes: `>=1.20.0-0`
+Kubernetes: `>=1.21.0-0`
 
 ## Get Repo Info
 

From e5b663690300180d0c3b0b349afaa89fbe5dd19d Mon Sep 17 00:00:00 2001
From: racequite <166888152+racequite@users.noreply.github.com>
Date: Fri, 19 Apr 2024 17:25:09 +0800
Subject: [PATCH 1253/1641] chore: fix function names in comment (#11280)

Signed-off-by: racequite <quiterace@gmail.com>
---
 internal/ingress/errors/errors.go | 2 +-
 internal/ingress/status/status.go | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/internal/ingress/errors/errors.go b/internal/ingress/errors/errors.go
index d70218334..62be8b77f 100644
--- a/internal/ingress/errors/errors.go
+++ b/internal/ingress/errors/errors.go
@@ -137,7 +137,7 @@ func IsValidationError(e error) bool {
 	return ok
 }
 
-// NewValidationError returns a new LocationDenied error
+// NewRiskyAnnotations returns a new LocationDenied error
 func NewRiskyAnnotations(name string) error {
 	return RiskyAnnotationError{
 		Reason: fmt.Errorf("annotation group %s contains risky annotation based on ingress configuration", name),
diff --git a/internal/ingress/status/status.go b/internal/ingress/status/status.go
index 81fb9044a..ef01cdd24 100644
--- a/internal/ingress/status/status.go
+++ b/internal/ingress/status/status.go
@@ -393,7 +393,7 @@ func statusAddressFromService(service string, kubeClient clientset.Interface) ([
 	return nil, fmt.Errorf("unable to extract IP address/es from service %v", service)
 }
 
-// stringInSlice returns true if s is in list
+// stringInIngresses returns true if s is in list
 func stringInIngresses(s string, list []v1.IngressLoadBalancerIngress) bool {
 	for _, v := range list {
 		if v.IP == s || v.Hostname == s {

From 6bfc30a4b9de680bc5e86533d15b2f636580535a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 19 Apr 2024 06:44:17 -0700
Subject: [PATCH 1254/1641] Bump golang.org/x/net in
 /images/kube-webhook-certgen/rootfs (#11283)

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.22.0 to 0.23.0.
- [Commits](https://github.com/golang/net/compare/v0.22.0...v0.23.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 images/kube-webhook-certgen/rootfs/go.mod | 2 +-
 images/kube-webhook-certgen/rootfs/go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index b1903dcf3..94da139a2 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -39,7 +39,7 @@ require (
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
 	github.com/stretchr/testify v1.9.0 // indirect
-	golang.org/x/net v0.22.0 // indirect
+	golang.org/x/net v0.23.0 // indirect
 	golang.org/x/oauth2 v0.18.0 // indirect
 	golang.org/x/sys v0.18.0 // indirect
 	golang.org/x/term v0.18.0 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 4ec80305a..613ff3e2e 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -104,8 +104,8 @@ golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.22.0 h1:9sGLhx7iRIHEiX0oAJ3MRZMUCElJgy7Br1nO+AMN3Tc=
-golang.org/x/net v0.22.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
+golang.org/x/net v0.23.0 h1:7EYJ93RZ9vYSZAIb2x3lnuvqO5zneoD6IvWjuhfxjTs=
+golang.org/x/net v0.23.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
 golang.org/x/oauth2 v0.18.0 h1:09qnuIAgzdx1XplqJvW6CQqMCtGZykZWcXzPMPUusvI=
 golang.org/x/oauth2 v0.18.0/go.mod h1:Wf7knwG0MPoWIMMBgFlEaSUDaKskp0dCfrlJRJXbBi8=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=

From af5cfbd0a25a8544ad51a04c0183cd6a97afc38b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 19 Apr 2024 07:22:55 -0700
Subject: [PATCH 1255/1641] Bump golang.org/x/net from 0.22.0 to 0.23.0
 (#11282)

Bumps [golang.org/x/net](https://github.com/golang/net) from 0.22.0 to 0.23.0.
- [Commits](https://github.com/golang/net/compare/v0.22.0...v0.23.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 59701ed42..c4c445a60 100644
--- a/go.mod
+++ b/go.mod
@@ -105,7 +105,7 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20240123142251-f86470692795 // indirect
 	golang.org/x/mod v0.15.0 // indirect
-	golang.org/x/net v0.22.0 // indirect
+	golang.org/x/net v0.23.0 // indirect
 	golang.org/x/oauth2 v0.18.0 // indirect
 	golang.org/x/sync v0.6.0 // indirect
 	golang.org/x/sys v0.19.0 // indirect
diff --git a/go.sum b/go.sum
index 999739793..65d5ec9b8 100644
--- a/go.sum
+++ b/go.sum
@@ -472,8 +472,8 @@ golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.22.0 h1:9sGLhx7iRIHEiX0oAJ3MRZMUCElJgy7Br1nO+AMN3Tc=
-golang.org/x/net v0.22.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
+golang.org/x/net v0.23.0 h1:7EYJ93RZ9vYSZAIb2x3lnuvqO5zneoD6IvWjuhfxjTs=
+golang.org/x/net v0.23.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=

From 48fbdfe3ba0c0e258890c970e2561caecea532dd Mon Sep 17 00:00:00 2001
From: Tom Hayward <thayward@infoblox.com>
Date: Fri, 19 Apr 2024 08:41:08 -0700
Subject: [PATCH 1256/1641] fix path in file changed detected message (#11271)

* fix path in file changed detected message

Signed-off-by: Tom Hayward <thayward@infoblox.com>

* fix typo in log message

* explain code per review comments

---------

Signed-off-by: Tom Hayward <thayward@infoblox.com>
---
 internal/ingress/controller/nginx.go | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 0df5409f4..b81734154 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -202,8 +202,11 @@ func NewNGINXController(config *Configuration, mc metric.Collector) *NGINXContro
 	}
 
 	for _, f := range filesToWatch {
+		// This redeclaration is necessary for the closure to get the correct value for the iteration in go versions <1.22
+		// See https://go.dev/blog/loopvar-preview
+		f := f
 		_, err = file.NewFileWatcher(f, func() {
-			klog.InfoS("File changed detected. Reloading NGINX", "path", f)
+			klog.InfoS("File change detected. Reloading NGINX", "path", f)
 			n.syncQueue.EnqueueTask(task.GetDummyObject("file-change"))
 		})
 		if err != nil {

From 414e0b6c181840851367d077d7b174e465162c97 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Apr 2024 10:30:01 +0000
Subject: [PATCH 1257/1641] Bump the all group with 5 updates

Bumps the all group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout) | `4.1.2` | `4.1.3` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact) | `4.3.1` | `4.3.2` |
| [azure/setup-helm](https://github.com/azure/setup-helm) | `4.1.0` | `4.2.0` |
| [actions/download-artifact](https://github.com/actions/download-artifact) | `4.1.4` | `4.1.5` |
| [github/codeql-action](https://github.com/github/codeql-action) | `3.24.10` | `3.25.1` |


Updates `actions/checkout` from 4.1.2 to 4.1.3
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/9bb56186c3b09b4f86b1c65136769dd318469633...1d96c772d19495a3b5c517cd2bc0cb401ea0529f)

Updates `actions/upload-artifact` from 4.3.1 to 4.3.2
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/5d5d22a31266ced268874388b861e4b58bb5c2f3...1746f4ab65b179e0ea60a494b83293b640dd5bba)

Updates `azure/setup-helm` from 4.1.0 to 4.2.0
- [Release notes](https://github.com/azure/setup-helm/releases)
- [Changelog](https://github.com/Azure/setup-helm/blob/main/CHANGELOG.md)
- [Commits](https://github.com/azure/setup-helm/compare/b7246b12e77f7134dc2d460a3d5bad15bbe29390...fe7b79cd5ee1e45176fcad797de68ecaf3ca4814)

Updates `actions/download-artifact` from 4.1.4 to 4.1.5
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/c850b930e6ba138125429b7e5c93fc707a7f8427...8caf195ad4b1dee92908e23f56eeb0696f1dd42d)

Updates `github/codeql-action` from 3.24.10 to 3.25.1
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/4355270be187e1b672a7a1c7c7bae5afdc1ab94a...c7f9125735019aa87cfc361530512d50ea439c71)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: azure/setup-helm
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/ci.yaml                  | 16 ++++++++--------
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/golangci-lint.yml        |  2 +-
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/images.yaml              |  8 ++++----
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  6 +++---
 .github/workflows/vulnerability-scans.yaml |  6 +++---
 .github/workflows/zz-tmpl-images.yaml      |  6 +++---
 .github/workflows/zz-tmpl-k8s-e2e.yaml     |  6 +++---
 12 files changed, 32 insertions(+), 32 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index e7f2da325..a3d0e3187 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -47,7 +47,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -77,7 +77,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
@@ -105,7 +105,7 @@ jobs:
         PLATFORMS: linux/amd64
     steps:
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
 
       - name: Get go version
         id: golangversion
@@ -163,7 +163,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4.3.1
+        uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2
         with:
           name: docker.tar.gz
           path: docker.tar.gz
@@ -179,12 +179,12 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
         with:
           fetch-depth: 0
 
       - name: Set up Helm
-        uses: azure/setup-helm@b7246b12e77f7134dc2d460a3d5bad15bbe29390 # v4.1.0
+        uses: azure/setup-helm@fe7b79cd5ee1e45176fcad797de68ecaf3ca4814 # v4.2.0
 
       - uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # v5.1.0
         with:
@@ -239,7 +239,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
 
       - name: Setup Go
         uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
@@ -248,7 +248,7 @@ jobs:
           check-latest: true
 
       - name: cache
-        uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4
+        uses: actions/download-artifact@8caf195ad4b1dee92908e23f56eeb0696f1dd42d # v4.1.5
         with:
           name: docker.tar.gz
 
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 3b553afd4..bfe5ba55b 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@5bbc3ba658137598168acb2ab73b21c432dd411b # v4.2.5
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index d6182ec9c..740b76f79 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index d287061d5..02ebcaa38 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index af8d91e1f..e6383c682 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -25,7 +25,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
 
       - name: Run Artifact Hub lint
         run: |
@@ -64,7 +64,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 28bbf6692..3e9cbcbae 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -41,7 +41,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -144,7 +144,7 @@ jobs:
         k8s: [v1.26.14, v1.27.11, v1.28.7, v1.29.2]
     steps:
     - name: Checkout
-      uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+      uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
 
     - name: Get go version
       run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
@@ -178,7 +178,7 @@ jobs:
         nginx: ['1.25.3', '1.21.6']
     steps:
     - name: Checkout
-      uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+      uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
     - name: image build
       run: |
         cd images/opentelemetry && make NGINX_VERSION=${{ matrix.nginx }} build
@@ -195,7 +195,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm,linux/arm64,linux/s390x
     steps:
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
       - name: Set up QEMU
         uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
       - name: Set up Docker Buildx
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 3650e7263..87c828380 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index a074eaa5b..def284a39 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index d00db6ba3..e4a404ef8 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
         with:
           persist-credentials: false
 
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4.3.1
+        uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2
         with:
           name: SARIF file
           path: results.sarif
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@4355270be187e1b672a7a1c7c7bae5afdc1ab94a # v3.24.10
+        uses: github/codeql-action/upload-sarif@c7f9125735019aa87cfc361530512d50ea439c71 # v3.25.1
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 3a34541a5..e0c1d838b 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
 
       - shell: bash
         id: test
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@4355270be187e1b672a7a1c7c7bae5afdc1ab94a # v3.24.10
+        uses: github/codeql-action/upload-sarif@c7f9125735019aa87cfc361530512d50ea439c71 # v3.25.1
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository
diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index e8fa4f472..819a88cd4 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -31,7 +31,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -48,7 +48,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
 
       - name: Build
         run: |
@@ -67,7 +67,7 @@ jobs:
       PLATFORMS: ${{ inputs.platforms-publish }}
     steps:
     - name: Checkout
-      uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+      uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
 
     - name: Login to GitHub Container Registry
       uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20 # v3.1.0
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index ad03bf0a1..ab2ec536a 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -20,10 +20,10 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2
+        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
 
       - name: cache
-        uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 # v4.1.4
+        uses: actions/download-artifact@8caf195ad4b1dee92908e23f56eeb0696f1dd42d # v4.1.5
         with:
           name: docker.tar.gz
 
@@ -50,7 +50,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports ${{ inputs.variation }}
-        uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4.3.1
+        uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}

From 7379b804594c32e92410e31555030fa22eddf93c Mon Sep 17 00:00:00 2001
From: cuiyourong <166382782+cuiyourong@users.noreply.github.com>
Date: Tue, 23 Apr 2024 19:27:06 +0800
Subject: [PATCH 1258/1641] Fix function name in comment (#11296)

Signed-off-by: cuiyourong <cuiyourong@gmail.com>
---
 internal/ingress/annotations/parser/validators.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/internal/ingress/annotations/parser/validators.go b/internal/ingress/annotations/parser/validators.go
index 64a9d133d..ffb4d9ba9 100644
--- a/internal/ingress/annotations/parser/validators.go
+++ b/internal/ingress/annotations/parser/validators.go
@@ -190,7 +190,7 @@ func ValidateServiceName(value string) error {
 	return nil
 }
 
-// checkAnnotations will check each annotation for:
+// checkAnnotation will check each annotation for:
 // 1 - Does it contain the internal validation and docs config?
 // 2 - Does the ingress contains annotations? (validate null pointers)
 // 3 - Does it contains a validator? Should it contain a validator (not containing is a bug!)

From 51847ac1b537c547cdb7bfb06d14e6d3d8476a73 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 23 Apr 2024 09:44:12 -0400
Subject: [PATCH 1259/1641] Release controller 1.10.1 (#11253)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 README.md                                     |  1 +
 changelog/controller-1.10.1.md                | 57 +++++++++++++++++++
 deploy/static/provider/aws/deploy.yaml        | 48 ++++++++--------
 .../aws/nlb-with-tls-termination/deploy.yaml  | 48 ++++++++--------
 deploy/static/provider/baremetal/deploy.yaml  | 48 ++++++++--------
 deploy/static/provider/cloud/deploy.yaml      | 48 ++++++++--------
 deploy/static/provider/do/deploy.yaml         | 48 ++++++++--------
 deploy/static/provider/exoscale/deploy.yaml   | 48 ++++++++--------
 deploy/static/provider/kind/deploy.yaml       | 48 ++++++++--------
 deploy/static/provider/oracle/deploy.yaml     | 48 ++++++++--------
 deploy/static/provider/scw/deploy.yaml        | 48 ++++++++--------
 docs/deploy/index.md                          | 20 +++----
 docs/e2e-tests.md                             |  4 ++
 13 files changed, 288 insertions(+), 226 deletions(-)
 create mode 100644 changelog/controller-1.10.1.md

diff --git a/README.md b/README.md
index 80725aa82..b0969fdbd 100644
--- a/README.md
+++ b/README.md
@@ -38,6 +38,7 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 
 |  Supported  | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
 |:--:|-----------------------|------------------------------|----------------|---------------|------------------------------|
+| 🔄 | **v1.10.1**            | 1.29, 1.28, 1.27, 1.26        | 3.19.1         | 1.25.3        | 4.10.1*                 |
 | 🔄 | **v1.10.0**            | 1.29, 1.28, 1.27, 1.26        | 3.19.1         | 1.25.3        | 4.10.0*                 |
 | 🔄 | **v1.9.6**            | 1.29, 1.28, 1.27, 1.26, 1.25        | 3.19.0         | 1.21.6        | 4.9.1*                 |
 | 🔄 | **v1.9.5**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.9.0*                       |
diff --git a/changelog/controller-1.10.1.md b/changelog/controller-1.10.1.md
new file mode 100644
index 000000000..40fc321fa
--- /dev/null
+++ b/changelog/controller-1.10.1.md
@@ -0,0 +1,57 @@
+# Changelog
+
+### controller-v1.10.1
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.10.1@sha256:c155954116b397163c88afcb3252462771bd7867017e8a17623e83601bab7ac7
+
+### All changes:
+
+* start 1.10.1 build (#11246)
+* force nginx rebuild (#11245)
+* update k8s version to latest kind release (#11241)
+* remove _ssl_expire_time_seconds metric by identifier (#11239)
+* update post submit helm ci and clean up (#11221)
+* Chart: Add unit tests for default backend & topology spread constraints. (#11219)
+* sort default backend hpa metrics (#11217)
+* updated certgen image shatag (#11216)
+* changed testrunner image sha (#11211)
+* bumped certgeimage tag (#11213)
+* updated baseimage & deleted a useless file (#11209)
+* bump ginkgo to 2-17-1 in testrunner (#11204)
+* chunking related faq update (#11205)
+* Fix-semver (#11199)
+* refactor helm ci tests part I (#11188)
+* Proposal: e2e tests for regex patterns (#11185)
+* bump ginkgo to v2.17.1 (#11186)
+* fixes brotli build issue (#11187)
+* fix geoip2 configuration docs (#11151)
+* Fix typos in OTel doc (#11081) (#11129)
+* Chart: Render `controller.ingressClassResource.parameters` natively. (#11126)
+* Fix admission controller logging of `admissionTime` and `testedConfigurationSize` (#11114)
+* Chart: Align HPA & KEDA conditions. (#11113)
+* Chart: Improve IngressClass documentation. (#11111)
+* Chart: Add Gacko to maintainers. Again. (#11112)
+* Chart: Deploy `PodDisruptionBudget` with KEDA. (#11105)
+* Chores: Pick patches from main. (#11103)
+
+### Dependency updates:
+
+* Bump google.golang.org/grpc from 1.63.0 to 1.63.2 (#11238)
+* Bump google.golang.org/grpc from 1.62.1 to 1.63.0 (#11234)
+* Bump github.com/prometheus/common from 0.51.1 to 0.52.2 (#11233)
+* Bump golang.org/x/crypto from 0.21.0 to 0.22.0 (#11232)
+* Bump github.com/prometheus/client_model in the all group (#11231)
+* Bump the all group with 3 updates (#11230)
+* Bump the all group with 2 updates (#11190)
+* Bump actions/add-to-project from 0.6.1 to 1.0.0 (#11189)
+* Bump the all group with 3 updates (#11166)
+* Bump github.com/prometheus/common from 0.50.0 to 0.51.1 (#11160)
+* Bump the all group with 4 updates (#11140)
+* Bump the all group with 1 update (#11136)
+* Bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in /magefiles (#11127)
+* Bump google.golang.org/protobuf in /images/custom-error-pages/rootfs (#11128)
+* Bump google.golang.org/protobuf in /images/kube-webhook-certgen/rootfs (#11122)
+
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 0e8356305..4b24f36c3 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -574,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -601,7 +601,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -640,7 +640,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 5c12ba3b9..4f37dd89b 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -431,7 +431,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
     spec:
       containers:
       - args:
@@ -456,7 +456,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -535,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -546,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -560,7 +560,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -586,7 +586,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -597,7 +597,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -613,7 +613,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -639,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -652,7 +652,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index b513fa97f..6e2ab95b7 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
     spec:
       containers:
       - args:
@@ -441,7 +441,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +542,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -568,7 +568,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -579,7 +579,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -595,7 +595,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -621,7 +621,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -634,7 +634,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 147d76d5e..6164992df 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
     spec:
       containers:
       - args:
@@ -443,7 +443,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -519,7 +519,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -530,7 +530,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -544,7 +544,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -570,7 +570,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,7 +581,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -597,7 +597,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -623,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -636,7 +636,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 801b6d75c..53fef52bb 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -522,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -533,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -547,7 +547,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -573,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -600,7 +600,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -639,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 79d945a53..26c28258a 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
     spec:
       containers:
       - args:
@@ -448,7 +448,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -528,7 +528,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -539,7 +539,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -553,7 +553,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -579,7 +579,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -590,7 +590,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -606,7 +606,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -632,7 +632,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -645,7 +645,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 4963253c1..d65e2cf39 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
     spec:
       containers:
       - args:
@@ -443,7 +443,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -529,7 +529,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -540,7 +540,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -554,7 +554,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -580,7 +580,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -591,7 +591,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -607,7 +607,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -633,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -646,7 +646,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index 080c206a5..fd66689e6 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -574,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -601,7 +601,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -640,7 +640,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index d98955d80..fbd7a330e 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -27,7 +27,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +39,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +129,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +148,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +230,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +249,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +269,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +288,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +307,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.0@sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
+        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -522,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -533,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -547,7 +547,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -573,7 +573,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +584,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.0
+        app.kubernetes.io/version: 1.10.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -600,7 +600,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.0@sha256:44d1d0e9f19c63f58b380c5fddaca7cf22c7cee564adeff365225a5df5ef3334
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -626,7 +626,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -639,7 +639,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.0
+    app.kubernetes.io/version: 1.10.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 4e6b71235..7232b6ffd 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -68,7 +68,7 @@ helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -249,7 +249,7 @@ In AWS, we use a Network load balancer (NLB) to expose the Ingress-Nginx Control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -257,10 +257,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -306,7 +306,7 @@ Then, the ingress controller can be installed like this:
 
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -323,7 +323,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -331,7 +331,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/do/deploy.yaml
 ```
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
@@ -339,7 +339,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/scw/deploy.yaml
 ```
 
 #### Exoscale
@@ -354,7 +354,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A 
@@ -381,7 +381,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.0/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index b836fff6e..66664291b 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -295,6 +295,10 @@ Do not try to edit it manually.
 - [should choose the correct location](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/pathtype_mixed.go#L39)
 ### [[Ingress] [PathType] prefix checks](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/pathtype_prefix.go#L28)
 - [should return 404 when prefix /aaa does not match request /aaaccc](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/pathtype_prefix.go#L35)
+- [should test prefix path using simple regex pattern for /id/{int}](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/pathtype_prefix.go#L72)
+- [should test prefix path using regex pattern for /id/{int} ignoring non-digits characters at end of string](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/pathtype_prefix.go#L113)
+- [should test prefix path using fixed path size regex pattern /id/{int}{3}](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/pathtype_prefix.go#L142)
+- [should correctly route multi-segment path patterns](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/pathtype_prefix.go#L177)
 ### [[Ingress] definition without host](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/without_host.go#L31)
 - [should set ingress details variables for ingresses without a host](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/without_host.go#L34)
 - [should set ingress details variables for ingresses with host without IngressRuleValue, only Backend](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/without_host.go#L55)

From 0088c6c7c7a133c8c9a48e64a3270813130eaab5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 23 Apr 2024 10:44:56 -0700
Subject: [PATCH 1260/1641] Bump github.com/prometheus/common from 0.52.3 to
 0.53.0 (#11290)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.52.3 to 0.53.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Commits](https://github.com/prometheus/common/compare/v0.52.3...v0.53.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index c4c445a60..741d6c0eb 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.0
 	github.com/prometheus/client_model v0.6.1
-	github.com/prometheus/common v0.52.3
+	github.com/prometheus/common v0.53.0
 	github.com/spf13/cobra v1.8.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.9.0
diff --git a/go.sum b/go.sum
index 65d5ec9b8..f96723aa4 100644
--- a/go.sum
+++ b/go.sum
@@ -323,8 +323,8 @@ github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y8
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
 github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.52.3 h1:5f8uj6ZwHSscOGNdIQg6OiZv/ybiK2CO2q2drVZAQSA=
-github.com/prometheus/common v0.52.3/go.mod h1:BrxBKv3FWBIGXw89Mg1AeBq7FSyRzXWI3l3e7W3RN5U=
+github.com/prometheus/common v0.53.0 h1:U2pL9w9nmJwJDa4qqLQ3ZaePJ6ZTwt7cMD3AG3+aLCE=
+github.com/prometheus/common v0.53.0/go.mod h1:BrxBKv3FWBIGXw89Mg1AeBq7FSyRzXWI3l3e7W3RN5U=
 github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=

From 77c28237f0faf4016780d64cb2e444a277125907 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 23 Apr 2024 11:55:14 -0700
Subject: [PATCH 1261/1641] Bump k8s.io/component-base from 0.29.3 to 0.30.0
 (#11291)

Bumps [k8s.io/component-base](https://github.com/kubernetes/component-base) from 0.29.3 to 0.30.0.
- [Commits](https://github.com/kubernetes/component-base/compare/v0.29.3...v0.30.0)

---
updated-dependencies:
- dependency-name: k8s.io/component-base
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 12 +++++++-----
 go.sum | 26 ++++++++++++++------------
 2 files changed, 21 insertions(+), 17 deletions(-)

diff --git a/go.mod b/go.mod
index 741d6c0eb..fc75ec322 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,7 @@
 module k8s.io/ingress-nginx
 
 go 1.21
+toolchain go1.22.2
 
 require (
 	dario.cat/mergo v1.0.0
@@ -31,14 +32,14 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.29.3
+	k8s.io/api v0.30.0
 	k8s.io/apiextensions-apiserver v0.29.3
-	k8s.io/apimachinery v0.29.3
+	k8s.io/apimachinery v0.30.0
 	k8s.io/apiserver v0.29.3
 	k8s.io/cli-runtime v0.29.3
-	k8s.io/client-go v0.29.3
+	k8s.io/client-go v0.30.0
 	k8s.io/code-generator v0.29.3
-	k8s.io/component-base v0.29.3
+	k8s.io/component-base v0.30.0
 	k8s.io/klog/v2 v2.120.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.17.3
@@ -122,7 +123,8 @@ require (
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 	k8s.io/gengo v0.0.0-20240226174109-00c4be8627da // indirect
-	k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b // indirect
+	k8s.io/gengo/v2 v2.0.0-20240228010128-51d4e06bde70 // indirect
+	k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 // indirect
 	k8s.io/utils v0.0.0-20240102154912-e7106e64919e // indirect
 	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
 	sigs.k8s.io/kustomize/api v0.16.0 // indirect
diff --git a/go.sum b/go.sum
index f96723aa4..b99859431 100644
--- a/go.sum
+++ b/go.sum
@@ -292,8 +292,8 @@ github.com/onsi/ginkgo/v2 v2.17.1 h1:V++EzdbhI4ZV4ev0UTIj0PzhzOcReJFyJaLjtSF55M8
 github.com/onsi/ginkgo/v2 v2.17.1/go.mod h1:llBI3WDLL9Z6taip6f33H76YcWtJv+7R3HigUjbIBOs=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.30.0 h1:hvMK7xYz4D3HapigLTeGdId/NcfQx1VHMJc60ew99+8=
-github.com/onsi/gomega v1.30.0/go.mod h1:9sxs+SwGrKI0+PWe4Fxa9tFQQBG5xSsSbMXOI8PPpoQ=
+github.com/onsi/gomega v1.31.0 h1:54UJxxj6cPInHS3a35wm6BK/F9nHYueZ1NVujHDrnXE=
+github.com/onsi/gomega v1.31.0/go.mod h1:DW9aCi7U6Yi40wNVAvT6kzFnEVEI5n3DloYBiKiT6zk=
 github.com/opencontainers/runc v1.1.12 h1:BOIssBaW1La0/qbNZHXOOa71dZfZEQOzW7dqQf3phss=
 github.com/opencontainers/runc v1.1.12/go.mod h1:S+lQwSfncpBha7XTy/5lBwWgm5+y5Ma/O44Ekby9FK8=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
@@ -740,29 +740,31 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-k8s.io/api v0.29.3 h1:2ORfZ7+bGC3YJqGpV0KSDDEVf8hdGQ6A03/50vj8pmw=
-k8s.io/api v0.29.3/go.mod h1:y2yg2NTyHUUkIoTC+phinTnEa3KFM6RZ3szxt014a80=
+k8s.io/api v0.30.0 h1:siWhRq7cNjy2iHssOB9SCGNCl2spiF1dO3dABqZ8niA=
+k8s.io/api v0.30.0/go.mod h1:OPlaYhoHs8EQ1ql0R/TsUgaRPhpKNxIMrKQfWUp8QSE=
 k8s.io/apiextensions-apiserver v0.29.3 h1:9HF+EtZaVpFjStakF4yVufnXGPRppWFEQ87qnO91YeI=
 k8s.io/apiextensions-apiserver v0.29.3/go.mod h1:po0XiY5scnpJfFizNGo6puNU6Fq6D70UJY2Cb2KwAVc=
-k8s.io/apimachinery v0.29.3 h1:2tbx+5L7RNvqJjn7RIuIKu9XTsIZ9Z5wX2G22XAa5EU=
-k8s.io/apimachinery v0.29.3/go.mod h1:hx/S4V2PNW4OMg3WizRrHutyB5la0iCUbZym+W0EQIU=
+k8s.io/apimachinery v0.30.0 h1:qxVPsyDM5XS96NIh9Oj6LavoVFYff/Pon9cZeDIkHHA=
+k8s.io/apimachinery v0.30.0/go.mod h1:iexa2somDaxdnj7bha06bhb43Zpa6eWH8N8dbqVjTUc=
 k8s.io/apiserver v0.29.3 h1:xR7ELlJ/BZSr2n4CnD3lfA4gzFivh0wwfNfz9L0WZcE=
 k8s.io/apiserver v0.29.3/go.mod h1:hrvXlwfRulbMbBgmWRQlFru2b/JySDpmzvQwwk4GUOs=
 k8s.io/cli-runtime v0.29.3 h1:r68rephmmytoywkw2MyJ+CxjpasJDQY7AGc3XY2iv1k=
 k8s.io/cli-runtime v0.29.3/go.mod h1:aqVUsk86/RhaGJwDhHXH0jcdqBrgdF3bZWk4Z9D4mkM=
-k8s.io/client-go v0.29.3 h1:R/zaZbEAxqComZ9FHeQwOh3Y1ZUs7FaHKZdQtIc2WZg=
-k8s.io/client-go v0.29.3/go.mod h1:tkDisCvgPfiRpxGnOORfkljmS+UrW+WtXAy2fTvXJB0=
+k8s.io/client-go v0.30.0 h1:sB1AGGlhY/o7KCyCEQ0bPWzYDL0pwOZO4vAtTSh/gJQ=
+k8s.io/client-go v0.30.0/go.mod h1:g7li5O5256qe6TYdAMyX/otJqMhIiGgTapdLchhmOaY=
 k8s.io/code-generator v0.29.3 h1:m7E25/t9R9NvejspO2zBdyu+/Gl0Z5m7dCRc680KS14=
 k8s.io/code-generator v0.29.3/go.mod h1:x47ofBhN4gxYFcxeKA1PYXeaPreAGaDN85Y/lNUsPoM=
-k8s.io/component-base v0.29.3 h1:Oq9/nddUxlnrCuuR2K/jp6aflVvc0uDvxMzAWxnGzAo=
-k8s.io/component-base v0.29.3/go.mod h1:Yuj33XXjuOk2BAaHsIGHhCKZQAgYKhqIxIjIr2UXYio=
+k8s.io/component-base v0.30.0 h1:cj6bp38g0ainlfYtaOQuRELh5KSYjhKxM+io7AUIk4o=
+k8s.io/component-base v0.30.0/go.mod h1:V9x/0ePFNaKeKYA3bOvIbrNoluTSG+fSJKjLdjOoeXQ=
 k8s.io/gengo v0.0.0-20240226174109-00c4be8627da h1:uH7pylUCo++9PSvrUA34sbk4Y6PHw/bgEFa80pejI+I=
 k8s.io/gengo v0.0.0-20240226174109-00c4be8627da/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
+k8s.io/gengo/v2 v2.0.0-20240228010128-51d4e06bde70 h1:NGrVE502P0s0/1hudf8zjgwki1X/TByhmAoILTarmzo=
+k8s.io/gengo/v2 v2.0.0-20240228010128-51d4e06bde70/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
 k8s.io/klog/v2 v2.120.1 h1:QXU6cPEOIslTGvZaXvFWiP9VKyeet3sawzTOvdXb4Vw=
 k8s.io/klog/v2 v2.120.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
-k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b h1:1dzw/KqgSPod72SUp2tuTOmK33TlY2fHlrVU2M9VrOM=
-k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b/go.mod h1:Pa1PvrP7ACSkuX6I7KYomY6cmMA0Tx86waBhDUgoKPw=
+k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 h1:BZqlfIlq5YbRMFko6/PM7FjZpUb45WallggurYhKGag=
+k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340/go.mod h1:yD4MZYeKMBwQKVht279WycxKyM84kkAx2DPrTXaeb98=
 k8s.io/utils v0.0.0-20240102154912-e7106e64919e h1:eQ/4ljkx21sObifjzXwlPKpdGLrCfRziVtos3ofG/sQ=
 k8s.io/utils v0.0.0-20240102154912-e7106e64919e/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=

From b3152c48417ec0d8a428b794ed2a715f035cf6de Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 24 Apr 2024 09:48:42 -0400
Subject: [PATCH 1262/1641] Release Helm Chart on branch update

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/helm.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index e6383c682..e88fd8678 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -65,6 +65,7 @@ jobs:
     steps:
       - name: Checkout master
         uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        ref: ${{ github.ref_name }} 
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0

From b330f96482df33a837120b6151ee248abadad6bb Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 24 Apr 2024 10:21:27 -0400
Subject: [PATCH 1263/1641] fix ref error

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/helm.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index e88fd8678..34af63189 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -65,10 +65,10 @@ jobs:
     steps:
       - name: Checkout master
         uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
-        ref: ${{ github.ref_name }} 
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
+          ref: ${{ github.ref_name }} 
 
       - name: Setup
         shell: bash

From 9b4b91435d65085ade86f7995b26aff51177a62e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 1 May 2024 12:01:23 -0700
Subject: [PATCH 1264/1641] Bump the all group with 4 updates (#11327)

Bumps the all group with 4 updates: [actions/checkout](https://github.com/actions/checkout), [actions/upload-artifact](https://github.com/actions/upload-artifact), [actions/download-artifact](https://github.com/actions/download-artifact) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `actions/checkout` from 4.1.3 to 4.1.4
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/1d96c772d19495a3b5c517cd2bc0cb401ea0529f...0ad4b8fadaa221de15dcec353f45205ec38ea70b)

Updates `actions/upload-artifact` from 4.3.2 to 4.3.3
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/1746f4ab65b179e0ea60a494b83293b640dd5bba...65462800fd760344b1a7b4382951275a0abb4808)

Updates `actions/download-artifact` from 4.1.5 to 4.1.7
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/8caf195ad4b1dee92908e23f56eeb0696f1dd42d...65a9edc5881444af0b9093a5e628f2fe47ea3b2e)

Updates `github/codeql-action` from 3.25.1 to 3.25.3
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/c7f9125735019aa87cfc361530512d50ea439c71...d39d31e687223d841ef683f52467bd88e9b21c14)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 14 +++++++-------
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/golangci-lint.yml        |  2 +-
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/images.yaml              |  8 ++++----
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  6 +++---
 .github/workflows/vulnerability-scans.yaml |  6 +++---
 .github/workflows/zz-tmpl-images.yaml      |  6 +++---
 .github/workflows/zz-tmpl-k8s-e2e.yaml     |  6 +++---
 12 files changed, 31 insertions(+), 31 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index a3d0e3187..afc2f7d38 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -47,7 +47,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -77,7 +77,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
@@ -105,7 +105,7 @@ jobs:
         PLATFORMS: linux/amd64
     steps:
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
       - name: Get go version
         id: golangversion
@@ -163,7 +163,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2
+        uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
         with:
           name: docker.tar.gz
           path: docker.tar.gz
@@ -179,7 +179,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
         with:
           fetch-depth: 0
 
@@ -239,7 +239,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
       - name: Setup Go
         uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
@@ -248,7 +248,7 @@ jobs:
           check-latest: true
 
       - name: cache
-        uses: actions/download-artifact@8caf195ad4b1dee92908e23f56eeb0696f1dd42d # v4.1.5
+        uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e # v4.1.7
         with:
           name: docker.tar.gz
 
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index bfe5ba55b..c9881c2a3 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@5bbc3ba658137598168acb2ab73b21c432dd411b # v4.2.5
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 740b76f79..76b5818f4 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 02ebcaa38..2b709ccfd 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 34af63189..1da3972b0 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -25,7 +25,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
       - name: Run Artifact Hub lint
         run: |
@@ -64,7 +64,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 3e9cbcbae..a7a2adce0 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -41,7 +41,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -144,7 +144,7 @@ jobs:
         k8s: [v1.26.14, v1.27.11, v1.28.7, v1.29.2]
     steps:
     - name: Checkout
-      uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+      uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
     - name: Get go version
       run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
@@ -178,7 +178,7 @@ jobs:
         nginx: ['1.25.3', '1.21.6']
     steps:
     - name: Checkout
-      uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+      uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
     - name: image build
       run: |
         cd images/opentelemetry && make NGINX_VERSION=${{ matrix.nginx }} build
@@ -195,7 +195,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm,linux/arm64,linux/s390x
     steps:
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
       - name: Set up QEMU
         uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
       - name: Set up Docker Buildx
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 87c828380..f2999ee97 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index def284a39..1b8c8f19b 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index e4a404ef8..c98b2d180 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
         with:
           persist-credentials: false
 
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2
+        uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
         with:
           name: SARIF file
           path: results.sarif
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@c7f9125735019aa87cfc361530512d50ea439c71 # v3.25.1
+        uses: github/codeql-action/upload-sarif@d39d31e687223d841ef683f52467bd88e9b21c14 # v3.25.3
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index e0c1d838b..44e8954ed 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
       - shell: bash
         id: test
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@c7f9125735019aa87cfc361530512d50ea439c71 # v3.25.1
+        uses: github/codeql-action/upload-sarif@d39d31e687223d841ef683f52467bd88e9b21c14 # v3.25.3
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository
diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index 819a88cd4..4ab9a4efb 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -31,7 +31,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -48,7 +48,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
       - name: Build
         run: |
@@ -67,7 +67,7 @@ jobs:
       PLATFORMS: ${{ inputs.platforms-publish }}
     steps:
     - name: Checkout
-      uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+      uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
     - name: Login to GitHub Container Registry
       uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20 # v3.1.0
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index ab2ec536a..9ca47112b 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -20,10 +20,10 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3
+        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
       - name: cache
-        uses: actions/download-artifact@8caf195ad4b1dee92908e23f56eeb0696f1dd42d # v4.1.5
+        uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e # v4.1.7
         with:
           name: docker.tar.gz
 
@@ -50,7 +50,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports ${{ inputs.variation }}
-        uses: actions/upload-artifact@1746f4ab65b179e0ea60a494b83293b640dd5bba # v4.3.2
+        uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}

From 030893148be3a2ea655b9fc014ca24c7756d233d Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Sun, 5 May 2024 20:06:59 +0800
Subject: [PATCH 1265/1641] chore(deps): group update k8s.io packages to
 v0.30.0 (#11344)

* chore(deps): group update k8s.io packages to v0.30.0

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* upgraded github.com/ncabatoff/process-exporter v0.7.10 => v0.7.11

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

* downgrade github.com/prometheus/procfs to v0.13.0

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

---------

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 go.mod      |   60 +--
 go.sum      | 1333 ++++++++++++++++++++++++++++++++++++++++++++++++---
 go.work     |    2 +-
 go.work.sum |  550 ++++++++++++++-------
 4 files changed, 1683 insertions(+), 262 deletions(-)

diff --git a/go.mod b/go.mod
index fc75ec322..4b40b93bc 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,7 @@
 module k8s.io/ingress-nginx
 
-go 1.21
+go 1.22.0
+
 toolchain go1.22.2
 
 require (
@@ -14,8 +15,8 @@ require (
 	github.com/mitchellh/hashstructure/v2 v2.0.2
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
-	github.com/ncabatoff/process-exporter v0.7.10
-	github.com/onsi/ginkgo/v2 v2.17.1
+	github.com/ncabatoff/process-exporter v0.7.11
+	github.com/onsi/ginkgo/v2 v2.17.2
 	github.com/opencontainers/runc v1.1.12
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.0
@@ -27,18 +28,18 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.22.0
-	golang.org/x/exp v0.0.0-20220722155223-a9213eeb770e
+	golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f
 	google.golang.org/grpc v1.63.2
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.30.0
-	k8s.io/apiextensions-apiserver v0.29.3
+	k8s.io/apiextensions-apiserver v0.30.0
 	k8s.io/apimachinery v0.30.0
-	k8s.io/apiserver v0.29.3
-	k8s.io/cli-runtime v0.29.3
+	k8s.io/apiserver v0.30.0
+	k8s.io/cli-runtime v0.30.0
 	k8s.io/client-go v0.30.0
-	k8s.io/code-generator v0.29.3
+	k8s.io/code-generator v0.30.0
 	k8s.io/component-base v0.30.0
 	k8s.io/klog/v2 v2.120.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
@@ -51,21 +52,21 @@ require (
 	github.com/BurntSushi/toml v1.3.2 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/blang/semver/v4 v4.0.0 // indirect
-	github.com/cespare/xxhash/v2 v2.2.0 // indirect
+	github.com/cespare/xxhash/v2 v2.3.0 // indirect
 	github.com/coreos/go-systemd/v22 v22.5.0 // indirect
 	github.com/cyphar/filepath-securejoin v0.2.4 // indirect
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/eapache/queue v1.1.0 // indirect
-	github.com/emicklei/go-restful/v3 v3.11.3 // indirect
+	github.com/emicklei/go-restful/v3 v3.12.0 // indirect
 	github.com/evanphx/json-patch v5.9.0+incompatible // indirect
 	github.com/evanphx/json-patch/v5 v5.9.0 // indirect
 	github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa // indirect
 	github.com/go-errors/errors v1.5.1 // indirect
 	github.com/go-logr/logr v1.4.1 // indirect
-	github.com/go-openapi/jsonpointer v0.20.2 // indirect
-	github.com/go-openapi/jsonreference v0.20.4 // indirect
-	github.com/go-openapi/swag v0.22.9 // indirect
-	github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 // indirect
+	github.com/go-openapi/jsonpointer v0.21.0 // indirect
+	github.com/go-openapi/jsonreference v0.21.0 // indirect
+	github.com/go-openapi/swag v0.23.0 // indirect
+	github.com/go-task/slim-sprig/v3 v3.0.0 // indirect
 	github.com/godbus/dbus/v5 v5.1.0 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
@@ -75,7 +76,7 @@ require (
 	github.com/google/gnostic-models v0.6.8 // indirect
 	github.com/google/go-cmp v0.6.0 // indirect
 	github.com/google/gofuzz v1.2.0 // indirect
-	github.com/google/pprof v0.0.0-20240225044709-fd706174c886 // indirect
+	github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.6.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect
@@ -98,34 +99,33 @@ require (
 	github.com/opencontainers/runtime-spec v1.2.0 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
-	github.com/prometheus/procfs v0.12.0 // indirect
+	github.com/prometheus/procfs v0.13.0 // indirect
 	github.com/sergi/go-diff v1.3.1 // indirect
 	github.com/sirupsen/logrus v1.9.3 // indirect
 	github.com/xlab/treeprint v1.2.0 // indirect
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20240123142251-f86470692795 // indirect
-	golang.org/x/mod v0.15.0 // indirect
-	golang.org/x/net v0.23.0 // indirect
-	golang.org/x/oauth2 v0.18.0 // indirect
-	golang.org/x/sync v0.6.0 // indirect
-	golang.org/x/sys v0.19.0 // indirect
+	go.uber.org/zap v1.27.0 // indirect
+	golang.org/x/mod v0.17.0 // indirect
+	golang.org/x/net v0.24.0 // indirect
+	golang.org/x/oauth2 v0.20.0 // indirect
+	golang.org/x/sync v0.7.0 // indirect
+	golang.org/x/sys v0.20.0 // indirect
 	golang.org/x/term v0.19.0 // indirect
-	golang.org/x/text v0.14.0 // indirect
+	golang.org/x/text v0.15.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
-	golang.org/x/tools v0.18.0 // indirect
-	google.golang.org/appengine v1.6.8 // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20240227224415-6ceb2ff114de // indirect
-	google.golang.org/protobuf v1.33.0 // indirect
+	golang.org/x/tools v0.20.0 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20240429193739-8cf5692501f6 // indirect
+	google.golang.org/protobuf v1.34.0 // indirect
 	gopkg.in/evanphx/json-patch.v5 v5.9.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
-	k8s.io/gengo v0.0.0-20240226174109-00c4be8627da // indirect
-	k8s.io/gengo/v2 v2.0.0-20240228010128-51d4e06bde70 // indirect
-	k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 // indirect
-	k8s.io/utils v0.0.0-20240102154912-e7106e64919e // indirect
+	k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 // indirect
+	k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f // indirect
+	k8s.io/utils v0.0.0-20240502163921-fe8a2dddb1d0 // indirect
 	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
 	sigs.k8s.io/kustomize/api v0.16.0 // indirect
 	sigs.k8s.io/kustomize/kyaml v0.16.0 // indirect
diff --git a/go.sum b/go.sum
index b99859431..13e4ebd2d 100644
--- a/go.sum
+++ b/go.sum
@@ -3,6 +3,7 @@ cloud.google.com/go v0.34.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMT
 cloud.google.com/go v0.38.0/go.mod h1:990N+gfupTy94rShfmMCWGDn0LpTmnzTp2qbd1dvSRU=
 cloud.google.com/go v0.44.1/go.mod h1:iSa0KzasP4Uvy3f1mN/7PiObzGgflwredwwASm/v6AU=
 cloud.google.com/go v0.44.2/go.mod h1:60680Gw3Yr4ikxnPRS/oxxkBccT6SA1yMk63TGekxKY=
+cloud.google.com/go v0.44.3/go.mod h1:60680Gw3Yr4ikxnPRS/oxxkBccT6SA1yMk63TGekxKY=
 cloud.google.com/go v0.45.1/go.mod h1:RpBamKRgapWJb87xiFSdk4g1CME7QZg3uwTez+TSTjc=
 cloud.google.com/go v0.46.3/go.mod h1:a6bKKbmY7er1mI7TEI4lsAkts/mkhTSZK8w33B4RAg0=
 cloud.google.com/go v0.50.0/go.mod h1:r9sluTvynVuxRIOHXQEHMFffphuXHOMZMycpNR5e6To=
@@ -13,37 +14,617 @@ cloud.google.com/go v0.56.0/go.mod h1:jr7tqZxxKOVYizybht9+26Z/gUq7tiRzu+ACVAMbKV
 cloud.google.com/go v0.57.0/go.mod h1:oXiQ6Rzq3RAkkY7N6t3TcE6jE+CIBBbA36lwQ1JyzZs=
 cloud.google.com/go v0.62.0/go.mod h1:jmCYTdRCQuc1PHIIJ/maLInMho30T/Y0M4hTdTShOYc=
 cloud.google.com/go v0.65.0/go.mod h1:O5N8zS7uWy9vkA9vayVHs65eM1ubvY4h553ofrNHObY=
+cloud.google.com/go v0.72.0/go.mod h1:M+5Vjvlc2wnp6tjzE102Dw08nGShTscUx2nZMufOKPI=
+cloud.google.com/go v0.74.0/go.mod h1:VV1xSbzvo+9QJOxLDaJfTjx5e+MePCpCWwvftOeQmWk=
+cloud.google.com/go v0.75.0/go.mod h1:VGuuCn7PG0dwsd5XPVm2Mm3wlh3EL55/79EKB6hlPTY=
+cloud.google.com/go v0.78.0/go.mod h1:QjdrLG0uq+YwhjoVOLsS1t7TW8fs36kLs4XO5R5ECHg=
+cloud.google.com/go v0.79.0/go.mod h1:3bzgcEeQlzbuEAYu4mrWhKqWjmpprinYgKJLgKHnbb8=
+cloud.google.com/go v0.81.0/go.mod h1:mk/AM35KwGk/Nm2YSeZbxXdrNK3KZOYHmLkOqC2V6E0=
+cloud.google.com/go v0.83.0/go.mod h1:Z7MJUsANfY0pYPdw0lbnivPx4/vhy/e2FEkSkF7vAVY=
+cloud.google.com/go v0.84.0/go.mod h1:RazrYuxIK6Kb7YrzzhPoLmCVzl7Sup4NrbKPg8KHSUM=
+cloud.google.com/go v0.87.0/go.mod h1:TpDYlFy7vuLzZMMZ+B6iRiELaY7z/gJPaqbMx6mlWcY=
+cloud.google.com/go v0.90.0/go.mod h1:kRX0mNRHe0e2rC6oNakvwQqzyDmg57xJ+SZU1eT2aDQ=
+cloud.google.com/go v0.93.3/go.mod h1:8utlLll2EF5XMAV15woO4lSbWQlk8rer9aLOfLh7+YI=
+cloud.google.com/go v0.94.1/go.mod h1:qAlAugsXlC+JWO+Bke5vCtc9ONxjQT3drlTTnAplMW4=
+cloud.google.com/go v0.97.0/go.mod h1:GF7l59pYBVlXQIBLx3a761cZ41F9bBH3JUlihCt2Udc=
+cloud.google.com/go v0.99.0/go.mod h1:w0Xx2nLzqWJPuozYQX+hFfCSI8WioryfRDzkoI/Y2ZA=
+cloud.google.com/go v0.100.1/go.mod h1:fs4QogzfH5n2pBXBP9vRiU+eCny7lD2vmFZy79Iuw1U=
+cloud.google.com/go v0.100.2/go.mod h1:4Xra9TjzAeYHrl5+oeLlzbM2k3mjVhZh4UqTZ//w99A=
+cloud.google.com/go v0.102.0/go.mod h1:oWcCzKlqJ5zgHQt9YsaeTY9KzIvjyy0ArmiBUgpQ+nc=
+cloud.google.com/go v0.102.1/go.mod h1:XZ77E9qnTEnrgEOvr4xzfdX5TRo7fB4T2F4O6+34hIU=
+cloud.google.com/go v0.104.0/go.mod h1:OO6xxXdJyvuJPcEPBLN9BJPD+jep5G1+2U5B5gkRYtA=
+cloud.google.com/go v0.105.0/go.mod h1:PrLgOJNe5nfE9UMxKxgXj4mD3voiP+YQ6gdt6KMFOKM=
+cloud.google.com/go v0.107.0/go.mod h1:wpc2eNrD7hXUTy8EKS10jkxpZBjASrORK7goS+3YX2I=
+cloud.google.com/go v0.110.0/go.mod h1:SJnCLqQ0FCFGSZMUNUf84MV3Aia54kn7pi8st7tMzaY=
+cloud.google.com/go v0.110.2/go.mod h1:k04UEeEtb6ZBRTv3dZz4CeJC3jKGxyhl0sAiVVquxiw=
+cloud.google.com/go/accessapproval v1.4.0/go.mod h1:zybIuC3KpDOvotz59lFe5qxRZx6C75OtwbisN56xYB4=
+cloud.google.com/go/accessapproval v1.5.0/go.mod h1:HFy3tuiGvMdcd/u+Cu5b9NkO1pEICJ46IR82PoUdplw=
+cloud.google.com/go/accessapproval v1.6.0/go.mod h1:R0EiYnwV5fsRFiKZkPHr6mwyk2wxUJ30nL4j2pcFY2E=
+cloud.google.com/go/accesscontextmanager v1.3.0/go.mod h1:TgCBehyr5gNMz7ZaH9xubp+CE8dkrszb4oK9CWyvD4o=
+cloud.google.com/go/accesscontextmanager v1.4.0/go.mod h1:/Kjh7BBu/Gh83sv+K60vN9QE5NJcd80sU33vIe2IFPE=
+cloud.google.com/go/accesscontextmanager v1.6.0/go.mod h1:8XCvZWfYw3K/ji0iVnp+6pu7huxoQTLmxAbVjbloTtM=
+cloud.google.com/go/accesscontextmanager v1.7.0/go.mod h1:CEGLewx8dwa33aDAZQujl7Dx+uYhS0eay198wB/VumQ=
+cloud.google.com/go/aiplatform v1.22.0/go.mod h1:ig5Nct50bZlzV6NvKaTwmplLLddFx0YReh9WfTO5jKw=
+cloud.google.com/go/aiplatform v1.24.0/go.mod h1:67UUvRBKG6GTayHKV8DBv2RtR1t93YRu5B1P3x99mYY=
+cloud.google.com/go/aiplatform v1.27.0/go.mod h1:Bvxqtl40l0WImSb04d0hXFU7gDOiq9jQmorivIiWcKg=
+cloud.google.com/go/aiplatform v1.35.0/go.mod h1:7MFT/vCaOyZT/4IIFfxH4ErVg/4ku6lKv3w0+tFTgXQ=
+cloud.google.com/go/aiplatform v1.36.1/go.mod h1:WTm12vJRPARNvJ+v6P52RDHCNe4AhvjcIZ/9/RRHy/k=
+cloud.google.com/go/aiplatform v1.37.0/go.mod h1:IU2Cv29Lv9oCn/9LkFiiuKfwrRTq+QQMbW+hPCxJGZw=
+cloud.google.com/go/analytics v0.11.0/go.mod h1:DjEWCu41bVbYcKyvlws9Er60YE4a//bK6mnhWvQeFNI=
+cloud.google.com/go/analytics v0.12.0/go.mod h1:gkfj9h6XRf9+TS4bmuhPEShsh3hH8PAZzm/41OOhQd4=
+cloud.google.com/go/analytics v0.17.0/go.mod h1:WXFa3WSym4IZ+JiKmavYdJwGG/CvpqiqczmL59bTD9M=
+cloud.google.com/go/analytics v0.18.0/go.mod h1:ZkeHGQlcIPkw0R/GW+boWHhCOR43xz9RN/jn7WcqfIE=
+cloud.google.com/go/analytics v0.19.0/go.mod h1:k8liqf5/HCnOUkbawNtrWWc+UAzyDlW89doe8TtoDsE=
+cloud.google.com/go/apigateway v1.3.0/go.mod h1:89Z8Bhpmxu6AmUxuVRg/ECRGReEdiP3vQtk4Z1J9rJk=
+cloud.google.com/go/apigateway v1.4.0/go.mod h1:pHVY9MKGaH9PQ3pJ4YLzoj6U5FUDeDFBllIz7WmzJoc=
+cloud.google.com/go/apigateway v1.5.0/go.mod h1:GpnZR3Q4rR7LVu5951qfXPJCHquZt02jf7xQx7kpqN8=
+cloud.google.com/go/apigeeconnect v1.3.0/go.mod h1:G/AwXFAKo0gIXkPTVfZDd2qA1TxBXJ3MgMRBQkIi9jc=
+cloud.google.com/go/apigeeconnect v1.4.0/go.mod h1:kV4NwOKqjvt2JYR0AoIWo2QGfoRtn/pkS3QlHp0Ni04=
+cloud.google.com/go/apigeeconnect v1.5.0/go.mod h1:KFaCqvBRU6idyhSNyn3vlHXc8VMDJdRmwDF6JyFRqZ8=
+cloud.google.com/go/apigeeregistry v0.4.0/go.mod h1:EUG4PGcsZvxOXAdyEghIdXwAEi/4MEaoqLMLDMIwKXY=
+cloud.google.com/go/apigeeregistry v0.5.0/go.mod h1:YR5+s0BVNZfVOUkMa5pAR2xGd0A473vA5M7j247o1wM=
+cloud.google.com/go/apigeeregistry v0.6.0/go.mod h1:BFNzW7yQVLZ3yj0TKcwzb8n25CFBri51GVGOEUcgQsc=
+cloud.google.com/go/apikeys v0.4.0/go.mod h1:XATS/yqZbaBK0HOssf+ALHp8jAlNHUgyfprvNcBIszU=
+cloud.google.com/go/apikeys v0.5.0/go.mod h1:5aQfwY4D+ewMMWScd3hm2en3hCj+BROlyrt3ytS7KLI=
+cloud.google.com/go/apikeys v0.6.0/go.mod h1:kbpXu5upyiAlGkKrJgQl8A0rKNNJ7dQ377pdroRSSi8=
+cloud.google.com/go/appengine v1.4.0/go.mod h1:CS2NhuBuDXM9f+qscZ6V86m1MIIqPj3WC/UoEuR1Sno=
+cloud.google.com/go/appengine v1.5.0/go.mod h1:TfasSozdkFI0zeoxW3PTBLiNqRmzraodCWatWI9Dmak=
+cloud.google.com/go/appengine v1.6.0/go.mod h1:hg6i0J/BD2cKmDJbaFSYHFyZkgBEfQrDg/X0V5fJn84=
+cloud.google.com/go/appengine v1.7.0/go.mod h1:eZqpbHFCqRGa2aCdope7eC0SWLV1j0neb/QnMJVWx6A=
+cloud.google.com/go/appengine v1.7.1/go.mod h1:IHLToyb/3fKutRysUlFO0BPt5j7RiQ45nrzEJmKTo6E=
+cloud.google.com/go/area120 v0.5.0/go.mod h1:DE/n4mp+iqVyvxHN41Vf1CR602GiHQjFPusMFW6bGR4=
+cloud.google.com/go/area120 v0.6.0/go.mod h1:39yFJqWVgm0UZqWTOdqkLhjoC7uFfgXRC8g/ZegeAh0=
+cloud.google.com/go/area120 v0.7.0/go.mod h1:a3+8EUD1SX5RUcCs3MY5YasiO1z6yLiNLRiFrykbynY=
+cloud.google.com/go/area120 v0.7.1/go.mod h1:j84i4E1RboTWjKtZVWXPqvK5VHQFJRF2c1Nm69pWm9k=
+cloud.google.com/go/artifactregistry v1.6.0/go.mod h1:IYt0oBPSAGYj/kprzsBjZ/4LnG/zOcHyFHjWPCi6SAQ=
+cloud.google.com/go/artifactregistry v1.7.0/go.mod h1:mqTOFOnGZx8EtSqK/ZWcsm/4U8B77rbcLP6ruDU2Ixk=
+cloud.google.com/go/artifactregistry v1.8.0/go.mod h1:w3GQXkJX8hiKN0v+at4b0qotwijQbYUqF2GWkZzAhC0=
+cloud.google.com/go/artifactregistry v1.9.0/go.mod h1:2K2RqvA2CYvAeARHRkLDhMDJ3OXy26h3XW+3/Jh2uYc=
+cloud.google.com/go/artifactregistry v1.11.1/go.mod h1:lLYghw+Itq9SONbCa1YWBoWs1nOucMH0pwXN1rOBZFI=
+cloud.google.com/go/artifactregistry v1.11.2/go.mod h1:nLZns771ZGAwVLzTX/7Al6R9ehma4WUEhZGWV6CeQNQ=
+cloud.google.com/go/artifactregistry v1.12.0/go.mod h1:o6P3MIvtzTOnmvGagO9v/rOjjA0HmhJ+/6KAXrmYDCI=
+cloud.google.com/go/artifactregistry v1.13.0/go.mod h1:uy/LNfoOIivepGhooAUpL1i30Hgee3Cu0l4VTWHUC08=
+cloud.google.com/go/asset v1.5.0/go.mod h1:5mfs8UvcM5wHhqtSv8J1CtxxaQq3AdBxxQi2jGW/K4o=
+cloud.google.com/go/asset v1.7.0/go.mod h1:YbENsRK4+xTiL+Ofoj5Ckf+O17kJtgp3Y3nn4uzZz5s=
+cloud.google.com/go/asset v1.8.0/go.mod h1:mUNGKhiqIdbr8X7KNayoYvyc4HbbFO9URsjbytpUaW0=
+cloud.google.com/go/asset v1.9.0/go.mod h1:83MOE6jEJBMqFKadM9NLRcs80Gdw76qGuHn8m3h8oHQ=
+cloud.google.com/go/asset v1.10.0/go.mod h1:pLz7uokL80qKhzKr4xXGvBQXnzHn5evJAEAtZiIb0wY=
+cloud.google.com/go/asset v1.11.1/go.mod h1:fSwLhbRvC9p9CXQHJ3BgFeQNM4c9x10lqlrdEUYXlJo=
+cloud.google.com/go/asset v1.12.0/go.mod h1:h9/sFOa4eDIyKmH6QMpm4eUK3pDojWnUhTgJlk762Hg=
+cloud.google.com/go/asset v1.13.0/go.mod h1:WQAMyYek/b7NBpYq/K4KJWcRqzoalEsxz/t/dTk4THw=
+cloud.google.com/go/assuredworkloads v1.5.0/go.mod h1:n8HOZ6pff6re5KYfBXcFvSViQjDwxFkAkmUFffJRbbY=
+cloud.google.com/go/assuredworkloads v1.6.0/go.mod h1:yo2YOk37Yc89Rsd5QMVECvjaMKymF9OP+QXWlKXUkXw=
+cloud.google.com/go/assuredworkloads v1.7.0/go.mod h1:z/736/oNmtGAyU47reJgGN+KVoYoxeLBoj4XkKYscNI=
+cloud.google.com/go/assuredworkloads v1.8.0/go.mod h1:AsX2cqyNCOvEQC8RMPnoc0yEarXQk6WEKkxYfL6kGIo=
+cloud.google.com/go/assuredworkloads v1.9.0/go.mod h1:kFuI1P78bplYtT77Tb1hi0FMxM0vVpRC7VVoJC3ZoT0=
+cloud.google.com/go/assuredworkloads v1.10.0/go.mod h1:kwdUQuXcedVdsIaKgKTp9t0UJkE5+PAVNhdQm4ZVq2E=
+cloud.google.com/go/automl v1.5.0/go.mod h1:34EjfoFGMZ5sgJ9EoLsRtdPSNZLcfflJR39VbVNS2M0=
+cloud.google.com/go/automl v1.6.0/go.mod h1:ugf8a6Fx+zP0D59WLhqgTDsQI9w07o64uf/Is3Nh5p8=
+cloud.google.com/go/automl v1.7.0/go.mod h1:RL9MYCCsJEOmt0Wf3z9uzG0a7adTT1fe+aObgSpkCt8=
+cloud.google.com/go/automl v1.8.0/go.mod h1:xWx7G/aPEe/NP+qzYXktoBSDfjO+vnKMGgsApGJJquM=
+cloud.google.com/go/automl v1.12.0/go.mod h1:tWDcHDp86aMIuHmyvjuKeeHEGq76lD7ZqfGLN6B0NuU=
+cloud.google.com/go/baremetalsolution v0.3.0/go.mod h1:XOrocE+pvK1xFfleEnShBlNAXf+j5blPPxrhjKgnIFc=
+cloud.google.com/go/baremetalsolution v0.4.0/go.mod h1:BymplhAadOO/eBa7KewQ0Ppg4A4Wplbn+PsFKRLo0uI=
+cloud.google.com/go/baremetalsolution v0.5.0/go.mod h1:dXGxEkmR9BMwxhzBhV0AioD0ULBmuLZI8CdwalUxuss=
+cloud.google.com/go/batch v0.3.0/go.mod h1:TR18ZoAekj1GuirsUsR1ZTKN3FC/4UDnScjT8NXImFE=
+cloud.google.com/go/batch v0.4.0/go.mod h1:WZkHnP43R/QCGQsZ+0JyG4i79ranE2u8xvjq/9+STPE=
+cloud.google.com/go/batch v0.7.0/go.mod h1:vLZN95s6teRUqRQ4s3RLDsH8PvboqBK+rn1oevL159g=
+cloud.google.com/go/beyondcorp v0.2.0/go.mod h1:TB7Bd+EEtcw9PCPQhCJtJGjk/7TC6ckmnSFS+xwTfm4=
+cloud.google.com/go/beyondcorp v0.3.0/go.mod h1:E5U5lcrcXMsCuoDNyGrpyTm/hn7ne941Jz2vmksAxW8=
+cloud.google.com/go/beyondcorp v0.4.0/go.mod h1:3ApA0mbhHx6YImmuubf5pyW8srKnCEPON32/5hj+RmM=
+cloud.google.com/go/beyondcorp v0.5.0/go.mod h1:uFqj9X+dSfrheVp7ssLTaRHd2EHqSL4QZmH4e8WXGGU=
 cloud.google.com/go/bigquery v1.0.1/go.mod h1:i/xbL2UlR5RvWAURpBYZTtm/cXjCha9lbfbpx4poX+o=
 cloud.google.com/go/bigquery v1.3.0/go.mod h1:PjpwJnslEMmckchkHFfq+HTD2DmtT67aNFKH1/VBDHE=
 cloud.google.com/go/bigquery v1.4.0/go.mod h1:S8dzgnTigyfTmLBfrtrhyYhwRxG72rYxvftPBK2Dvzc=
 cloud.google.com/go/bigquery v1.5.0/go.mod h1:snEHRnqQbz117VIFhE8bmtwIDY80NLUZUMb4Nv6dBIg=
 cloud.google.com/go/bigquery v1.7.0/go.mod h1://okPTzCYNXSlb24MZs83e2Do+h+VXtc4gLoIoXIAPc=
 cloud.google.com/go/bigquery v1.8.0/go.mod h1:J5hqkt3O0uAFnINi6JXValWIb1v0goeZM77hZzJN/fQ=
+cloud.google.com/go/bigquery v1.42.0/go.mod h1:8dRTJxhtG+vwBKzE5OseQn/hiydoQN3EedCaOdYmxRA=
+cloud.google.com/go/bigquery v1.43.0/go.mod h1:ZMQcXHsl+xmU1z36G2jNGZmKp9zNY5BUua5wDgmNCfw=
+cloud.google.com/go/bigquery v1.44.0/go.mod h1:0Y33VqXTEsbamHJvJHdFmtqHvMIY28aK1+dFsvaChGc=
+cloud.google.com/go/bigquery v1.47.0/go.mod h1:sA9XOgy0A8vQK9+MWhEQTY6Tix87M/ZurWFIxmF9I/E=
+cloud.google.com/go/bigquery v1.48.0/go.mod h1:QAwSz+ipNgfL5jxiaK7weyOhzdoAy1zFm0Nf1fysJac=
+cloud.google.com/go/bigquery v1.49.0/go.mod h1:Sv8hMmTFFYBlt/ftw2uN6dFdQPzBlREY9yBh7Oy7/4Q=
+cloud.google.com/go/bigquery v1.50.0/go.mod h1:YrleYEh2pSEbgTBZYMJ5SuSr0ML3ypjRB1zgf7pvQLU=
+cloud.google.com/go/billing v1.4.0/go.mod h1:g9IdKBEFlItS8bTtlrZdVLWSSdSyFUZKXNS02zKMOZY=
+cloud.google.com/go/billing v1.5.0/go.mod h1:mztb1tBc3QekhjSgmpf/CV4LzWXLzCArwpLmP2Gm88s=
+cloud.google.com/go/billing v1.6.0/go.mod h1:WoXzguj+BeHXPbKfNWkqVtDdzORazmCjraY+vrxcyvI=
+cloud.google.com/go/billing v1.7.0/go.mod h1:q457N3Hbj9lYwwRbnlD7vUpyjq6u5U1RAOArInEiD5Y=
+cloud.google.com/go/billing v1.12.0/go.mod h1:yKrZio/eu+okO/2McZEbch17O5CB5NpZhhXG6Z766ss=
+cloud.google.com/go/billing v1.13.0/go.mod h1:7kB2W9Xf98hP9Sr12KfECgfGclsH3CQR0R08tnRlRbc=
+cloud.google.com/go/binaryauthorization v1.1.0/go.mod h1:xwnoWu3Y84jbuHa0zd526MJYmtnVXn0syOjaJgy4+dM=
+cloud.google.com/go/binaryauthorization v1.2.0/go.mod h1:86WKkJHtRcv5ViNABtYMhhNWRrD1Vpi//uKEy7aYEfI=
+cloud.google.com/go/binaryauthorization v1.3.0/go.mod h1:lRZbKgjDIIQvzYQS1p99A7/U1JqvqeZg0wiI5tp6tg0=
+cloud.google.com/go/binaryauthorization v1.4.0/go.mod h1:tsSPQrBd77VLplV70GUhBf/Zm3FsKmgSqgm4UmiDItk=
+cloud.google.com/go/binaryauthorization v1.5.0/go.mod h1:OSe4OU1nN/VswXKRBmciKpo9LulY41gch5c68htf3/Q=
+cloud.google.com/go/certificatemanager v1.3.0/go.mod h1:n6twGDvcUBFu9uBgt4eYvvf3sQ6My8jADcOVwHmzadg=
+cloud.google.com/go/certificatemanager v1.4.0/go.mod h1:vowpercVFyqs8ABSmrdV+GiFf2H/ch3KyudYQEMM590=
+cloud.google.com/go/certificatemanager v1.6.0/go.mod h1:3Hh64rCKjRAX8dXgRAyOcY5vQ/fE1sh8o+Mdd6KPgY8=
+cloud.google.com/go/channel v1.8.0/go.mod h1:W5SwCXDJsq/rg3tn3oG0LOxpAo6IMxNa09ngphpSlnk=
+cloud.google.com/go/channel v1.9.0/go.mod h1:jcu05W0my9Vx4mt3/rEHpfxc9eKi9XwsdDL8yBMbKUk=
+cloud.google.com/go/channel v1.11.0/go.mod h1:IdtI0uWGqhEeatSB62VOoJ8FSUhJ9/+iGkJVqp74CGE=
+cloud.google.com/go/channel v1.12.0/go.mod h1:VkxCGKASi4Cq7TbXxlaBezonAYpp1GCnKMY6tnMQnLU=
+cloud.google.com/go/cloudbuild v1.3.0/go.mod h1:WequR4ULxlqvMsjDEEEFnOG5ZSRSgWOywXYDb1vPE6U=
+cloud.google.com/go/cloudbuild v1.4.0/go.mod h1:5Qwa40LHiOXmz3386FrjrYM93rM/hdRr7b53sySrTqA=
+cloud.google.com/go/cloudbuild v1.6.0/go.mod h1:UIbc/w9QCbH12xX+ezUsgblrWv+Cv4Tw83GiSMHOn9M=
+cloud.google.com/go/cloudbuild v1.7.0/go.mod h1:zb5tWh2XI6lR9zQmsm1VRA+7OCuve5d8S+zJUul8KTg=
+cloud.google.com/go/cloudbuild v1.9.0/go.mod h1:qK1d7s4QlO0VwfYn5YuClDGg2hfmLZEb4wQGAbIgL1s=
+cloud.google.com/go/clouddms v1.3.0/go.mod h1:oK6XsCDdW4Ib3jCCBugx+gVjevp2TMXFtgxvPSee3OM=
+cloud.google.com/go/clouddms v1.4.0/go.mod h1:Eh7sUGCC+aKry14O1NRljhjyrr0NFC0G2cjwX0cByRk=
+cloud.google.com/go/clouddms v1.5.0/go.mod h1:QSxQnhikCLUw13iAbffF2CZxAER3xDGNHjsTAkQJcQA=
+cloud.google.com/go/cloudtasks v1.5.0/go.mod h1:fD92REy1x5woxkKEkLdvavGnPJGEn8Uic9nWuLzqCpY=
+cloud.google.com/go/cloudtasks v1.6.0/go.mod h1:C6Io+sxuke9/KNRkbQpihnW93SWDU3uXt92nu85HkYI=
+cloud.google.com/go/cloudtasks v1.7.0/go.mod h1:ImsfdYWwlWNJbdgPIIGJWC+gemEGTBK/SunNQQNCAb4=
+cloud.google.com/go/cloudtasks v1.8.0/go.mod h1:gQXUIwCSOI4yPVK7DgTVFiiP0ZW/eQkydWzwVMdHxrI=
+cloud.google.com/go/cloudtasks v1.9.0/go.mod h1:w+EyLsVkLWHcOaqNEyvcKAsWp9p29dL6uL9Nst1cI7Y=
+cloud.google.com/go/cloudtasks v1.10.0/go.mod h1:NDSoTLkZ3+vExFEWu2UJV1arUyzVDAiZtdWcsUyNwBs=
+cloud.google.com/go/compute v0.1.0/go.mod h1:GAesmwr110a34z04OlxYkATPBEfVhkymfTBXtfbBFow=
+cloud.google.com/go/compute v1.3.0/go.mod h1:cCZiE1NHEtai4wiufUhW8I8S1JKkAnhnQJWM7YD99wM=
+cloud.google.com/go/compute v1.5.0/go.mod h1:9SMHyhJlzhlkJqrPAc839t2BZFTSk6Jdj6mkzQJeu0M=
+cloud.google.com/go/compute v1.6.0/go.mod h1:T29tfhtVbq1wvAPo0E3+7vhgmkOYeXjhFvz/FMzPu0s=
+cloud.google.com/go/compute v1.6.1/go.mod h1:g85FgpzFvNULZ+S8AYq87axRKuf2Kh7deLqV/jJ3thU=
+cloud.google.com/go/compute v1.7.0/go.mod h1:435lt8av5oL9P3fv1OEzSbSUe+ybHXGMPQHHZWZxy9U=
+cloud.google.com/go/compute v1.10.0/go.mod h1:ER5CLbMxl90o2jtNbGSbtfOpQKR0t15FOtRsugnLrlU=
+cloud.google.com/go/compute v1.12.0/go.mod h1:e8yNOBcBONZU1vJKCvCoDw/4JQsA0dpM4x/6PIIOocU=
+cloud.google.com/go/compute v1.12.1/go.mod h1:e8yNOBcBONZU1vJKCvCoDw/4JQsA0dpM4x/6PIIOocU=
+cloud.google.com/go/compute v1.13.0/go.mod h1:5aPTS0cUNMIc1CE546K+Th6weJUNQErARyZtRXDJ8GE=
+cloud.google.com/go/compute v1.14.0/go.mod h1:YfLtxrj9sU4Yxv+sXzZkyPjEyPBZfXHUvjxega5vAdo=
+cloud.google.com/go/compute v1.15.1/go.mod h1:bjjoF/NtFUrkD/urWfdHaKuOPDR5nWIs63rR+SXhcpA=
+cloud.google.com/go/compute v1.18.0/go.mod h1:1X7yHxec2Ga+Ss6jPyjxRxpu2uu7PLgsOVXvgU0yacs=
+cloud.google.com/go/compute v1.19.0/go.mod h1:rikpw2y+UMidAe9tISo04EHNOIf42RLYF/q8Bs93scU=
+cloud.google.com/go/compute v1.19.3/go.mod h1:qxvISKp/gYnXkSAD1ppcSOveRAmzxicEv/JlizULFrI=
+cloud.google.com/go/compute v1.20.1/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
+cloud.google.com/go/compute/metadata v0.1.0/go.mod h1:Z1VN+bulIf6bt4P/C37K4DyZYZEXYonfTBHHFPO/4UU=
+cloud.google.com/go/compute/metadata v0.2.0/go.mod h1:zFmK7XCadkQkj6TtorcaGlCW1hT1fIilQDwofLpJ20k=
+cloud.google.com/go/compute/metadata v0.2.1/go.mod h1:jgHgmJd2RKBGzXqF5LR2EZMGxBkeanZ9wwa75XHJgOM=
+cloud.google.com/go/compute/metadata v0.2.3/go.mod h1:VAV5nSsACxMJvgaAuX6Pk2AawlZn8kiOGuCv6gTkwuA=
+cloud.google.com/go/contactcenterinsights v1.3.0/go.mod h1:Eu2oemoePuEFc/xKFPjbTuPSj0fYJcPls9TFlPNnHHY=
+cloud.google.com/go/contactcenterinsights v1.4.0/go.mod h1:L2YzkGbPsv+vMQMCADxJoT9YiTTnSEd6fEvCeHTYVck=
+cloud.google.com/go/contactcenterinsights v1.6.0/go.mod h1:IIDlT6CLcDoyv79kDv8iWxMSTZhLxSCofVV5W6YFM/w=
+cloud.google.com/go/container v1.6.0/go.mod h1:Xazp7GjJSeUYo688S+6J5V+n/t+G5sKBTFkKNudGRxg=
+cloud.google.com/go/container v1.7.0/go.mod h1:Dp5AHtmothHGX3DwwIHPgq45Y8KmNsgN3amoYfxVkLo=
+cloud.google.com/go/container v1.13.1/go.mod h1:6wgbMPeQRw9rSnKBCAJXnds3Pzj03C4JHamr8asWKy4=
+cloud.google.com/go/container v1.14.0/go.mod h1:3AoJMPhHfLDxLvrlVWaK57IXzaPnLaZq63WX59aQBfM=
+cloud.google.com/go/container v1.15.0/go.mod h1:ft+9S0WGjAyjDggg5S06DXj+fHJICWg8L7isCQe9pQA=
+cloud.google.com/go/containeranalysis v0.5.1/go.mod h1:1D92jd8gRR/c0fGMlymRgxWD3Qw9C1ff6/T7mLgVL8I=
+cloud.google.com/go/containeranalysis v0.6.0/go.mod h1:HEJoiEIu+lEXM+k7+qLCci0h33lX3ZqoYFdmPcoO7s4=
+cloud.google.com/go/containeranalysis v0.7.0/go.mod h1:9aUL+/vZ55P2CXfuZjS4UjQ9AgXoSw8Ts6lemfmxBxI=
+cloud.google.com/go/containeranalysis v0.9.0/go.mod h1:orbOANbwk5Ejoom+s+DUCTTJ7IBdBQJDcSylAx/on9s=
+cloud.google.com/go/datacatalog v1.3.0/go.mod h1:g9svFY6tuR+j+hrTw3J2dNcmI0dzmSiyOzm8kpLq0a0=
+cloud.google.com/go/datacatalog v1.5.0/go.mod h1:M7GPLNQeLfWqeIm3iuiruhPzkt65+Bx8dAKvScX8jvs=
+cloud.google.com/go/datacatalog v1.6.0/go.mod h1:+aEyF8JKg+uXcIdAmmaMUmZ3q1b/lKLtXCmXdnc0lbc=
+cloud.google.com/go/datacatalog v1.7.0/go.mod h1:9mEl4AuDYWw81UGc41HonIHH7/sn52H0/tc8f8ZbZIE=
+cloud.google.com/go/datacatalog v1.8.0/go.mod h1:KYuoVOv9BM8EYz/4eMFxrr4DUKhGIOXxZoKYF5wdISM=
+cloud.google.com/go/datacatalog v1.8.1/go.mod h1:RJ58z4rMp3gvETA465Vg+ag8BGgBdnRPEMMSTr5Uv+M=
+cloud.google.com/go/datacatalog v1.12.0/go.mod h1:CWae8rFkfp6LzLumKOnmVh4+Zle4A3NXLzVJ1d1mRm0=
+cloud.google.com/go/datacatalog v1.13.0/go.mod h1:E4Rj9a5ZtAxcQJlEBTLgMTphfP11/lNaAshpoBgemX8=
+cloud.google.com/go/dataflow v0.6.0/go.mod h1:9QwV89cGoxjjSR9/r7eFDqqjtvbKxAK2BaYU6PVk9UM=
+cloud.google.com/go/dataflow v0.7.0/go.mod h1:PX526vb4ijFMesO1o202EaUmouZKBpjHsTlCtB4parQ=
+cloud.google.com/go/dataflow v0.8.0/go.mod h1:Rcf5YgTKPtQyYz8bLYhFoIV/vP39eL7fWNcSOyFfLJE=
+cloud.google.com/go/dataform v0.3.0/go.mod h1:cj8uNliRlHpa6L3yVhDOBrUXH+BPAO1+KFMQQNSThKo=
+cloud.google.com/go/dataform v0.4.0/go.mod h1:fwV6Y4Ty2yIFL89huYlEkwUPtS7YZinZbzzj5S9FzCE=
+cloud.google.com/go/dataform v0.5.0/go.mod h1:GFUYRe8IBa2hcomWplodVmUx/iTL0FrsauObOM3Ipr0=
+cloud.google.com/go/dataform v0.6.0/go.mod h1:QPflImQy33e29VuapFdf19oPbE4aYTJxr31OAPV+ulA=
+cloud.google.com/go/dataform v0.7.0/go.mod h1:7NulqnVozfHvWUBpMDfKMUESr+85aJsC/2O0o3jWPDE=
+cloud.google.com/go/datafusion v1.4.0/go.mod h1:1Zb6VN+W6ALo85cXnM1IKiPw+yQMKMhB9TsTSRDo/38=
+cloud.google.com/go/datafusion v1.5.0/go.mod h1:Kz+l1FGHB0J+4XF2fud96WMmRiq/wj8N9u007vyXZ2w=
+cloud.google.com/go/datafusion v1.6.0/go.mod h1:WBsMF8F1RhSXvVM8rCV3AeyWVxcC2xY6vith3iw3S+8=
+cloud.google.com/go/datalabeling v0.5.0/go.mod h1:TGcJ0G2NzcsXSE/97yWjIZO0bXj0KbVlINXMG9ud42I=
+cloud.google.com/go/datalabeling v0.6.0/go.mod h1:WqdISuk/+WIGeMkpw/1q7bK/tFEZxsrFJOJdY2bXvTQ=
+cloud.google.com/go/datalabeling v0.7.0/go.mod h1:WPQb1y08RJbmpM3ww0CSUAGweL0SxByuW2E+FU+wXcM=
+cloud.google.com/go/dataplex v1.3.0/go.mod h1:hQuRtDg+fCiFgC8j0zV222HvzFQdRd+SVX8gdmFcZzA=
+cloud.google.com/go/dataplex v1.4.0/go.mod h1:X51GfLXEMVJ6UN47ESVqvlsRplbLhcsAt0kZCCKsU0A=
+cloud.google.com/go/dataplex v1.5.2/go.mod h1:cVMgQHsmfRoI5KFYq4JtIBEUbYwc3c7tXmIDhRmNNVQ=
+cloud.google.com/go/dataplex v1.6.0/go.mod h1:bMsomC/aEJOSpHXdFKFGQ1b0TDPIeL28nJObeO1ppRs=
+cloud.google.com/go/dataproc v1.7.0/go.mod h1:CKAlMjII9H90RXaMpSxQ8EU6dQx6iAYNPcYPOkSbi8s=
+cloud.google.com/go/dataproc v1.8.0/go.mod h1:5OW+zNAH0pMpw14JVrPONsxMQYMBqJuzORhIBfBn9uI=
+cloud.google.com/go/dataproc v1.12.0/go.mod h1:zrF3aX0uV3ikkMz6z4uBbIKyhRITnxvr4i3IjKsKrw4=
+cloud.google.com/go/dataqna v0.5.0/go.mod h1:90Hyk596ft3zUQ8NkFfvICSIfHFh1Bc7C4cK3vbhkeo=
+cloud.google.com/go/dataqna v0.6.0/go.mod h1:1lqNpM7rqNLVgWBJyk5NF6Uen2PHym0jtVJonplVsDA=
+cloud.google.com/go/dataqna v0.7.0/go.mod h1:Lx9OcIIeqCrw1a6KdO3/5KMP1wAmTc0slZWwP12Qq3c=
 cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE=
 cloud.google.com/go/datastore v1.1.0/go.mod h1:umbIZjpQpHh4hmRpGhH4tLFup+FVzqBi1b3c64qFpCk=
+cloud.google.com/go/datastore v1.10.0/go.mod h1:PC5UzAmDEkAmkfaknstTYbNpgE49HAgW2J1gcgUfmdM=
+cloud.google.com/go/datastore v1.11.0/go.mod h1:TvGxBIHCS50u8jzG+AW/ppf87v1of8nwzFNgEZU1D3c=
+cloud.google.com/go/datastream v1.2.0/go.mod h1:i/uTP8/fZwgATHS/XFu0TcNUhuA0twZxxQ3EyCUQMwo=
+cloud.google.com/go/datastream v1.3.0/go.mod h1:cqlOX8xlyYF/uxhiKn6Hbv6WjwPPuI9W2M9SAXwaLLQ=
+cloud.google.com/go/datastream v1.4.0/go.mod h1:h9dpzScPhDTs5noEMQVWP8Wx8AFBRyS0s8KWPx/9r0g=
+cloud.google.com/go/datastream v1.5.0/go.mod h1:6TZMMNPwjUqZHBKPQ1wwXpb0d5VDVPl2/XoS5yi88q4=
+cloud.google.com/go/datastream v1.6.0/go.mod h1:6LQSuswqLa7S4rPAOZFVjHIG3wJIjZcZrw8JDEDJuIs=
+cloud.google.com/go/datastream v1.7.0/go.mod h1:uxVRMm2elUSPuh65IbZpzJNMbuzkcvu5CjMqVIUHrww=
+cloud.google.com/go/deploy v1.4.0/go.mod h1:5Xghikd4VrmMLNaF6FiRFDlHb59VM59YoDQnOUdsH/c=
+cloud.google.com/go/deploy v1.5.0/go.mod h1:ffgdD0B89tToyW/U/D2eL0jN2+IEV/3EMuXHA0l4r+s=
+cloud.google.com/go/deploy v1.6.0/go.mod h1:f9PTHehG/DjCom3QH0cntOVRm93uGBDt2vKzAPwpXQI=
+cloud.google.com/go/deploy v1.8.0/go.mod h1:z3myEJnA/2wnB4sgjqdMfgxCA0EqC3RBTNcVPs93mtQ=
+cloud.google.com/go/dialogflow v1.15.0/go.mod h1:HbHDWs33WOGJgn6rfzBW1Kv807BE3O1+xGbn59zZWI4=
+cloud.google.com/go/dialogflow v1.16.1/go.mod h1:po6LlzGfK+smoSmTBnbkIZY2w8ffjz/RcGSS+sh1el0=
+cloud.google.com/go/dialogflow v1.17.0/go.mod h1:YNP09C/kXA1aZdBgC/VtXX74G/TKn7XVCcVumTflA+8=
+cloud.google.com/go/dialogflow v1.18.0/go.mod h1:trO7Zu5YdyEuR+BhSNOqJezyFQ3aUzz0njv7sMx/iek=
+cloud.google.com/go/dialogflow v1.19.0/go.mod h1:JVmlG1TwykZDtxtTXujec4tQ+D8SBFMoosgy+6Gn0s0=
+cloud.google.com/go/dialogflow v1.29.0/go.mod h1:b+2bzMe+k1s9V+F2jbJwpHPzrnIyHihAdRFMtn2WXuM=
+cloud.google.com/go/dialogflow v1.31.0/go.mod h1:cuoUccuL1Z+HADhyIA7dci3N5zUssgpBJmCzI6fNRB4=
+cloud.google.com/go/dialogflow v1.32.0/go.mod h1:jG9TRJl8CKrDhMEcvfcfFkkpp8ZhgPz3sBGmAUYJ2qE=
+cloud.google.com/go/dlp v1.6.0/go.mod h1:9eyB2xIhpU0sVwUixfBubDoRwP+GjeUoxxeueZmqvmM=
+cloud.google.com/go/dlp v1.7.0/go.mod h1:68ak9vCiMBjbasxeVD17hVPxDEck+ExiHavX8kiHG+Q=
+cloud.google.com/go/dlp v1.9.0/go.mod h1:qdgmqgTyReTz5/YNSSuueR8pl7hO0o9bQ39ZhtgkWp4=
+cloud.google.com/go/documentai v1.7.0/go.mod h1:lJvftZB5NRiFSX4moiye1SMxHx0Bc3x1+p9e/RfXYiU=
+cloud.google.com/go/documentai v1.8.0/go.mod h1:xGHNEB7CtsnySCNrCFdCyyMz44RhFEEX2Q7UD0c5IhU=
+cloud.google.com/go/documentai v1.9.0/go.mod h1:FS5485S8R00U10GhgBC0aNGrJxBP8ZVpEeJ7PQDZd6k=
+cloud.google.com/go/documentai v1.10.0/go.mod h1:vod47hKQIPeCfN2QS/jULIvQTugbmdc0ZvxxfQY1bg4=
+cloud.google.com/go/documentai v1.16.0/go.mod h1:o0o0DLTEZ+YnJZ+J4wNfTxmDVyrkzFvttBXXtYRMHkM=
+cloud.google.com/go/documentai v1.18.0/go.mod h1:F6CK6iUH8J81FehpskRmhLq/3VlwQvb7TvwOceQ2tbs=
+cloud.google.com/go/domains v0.6.0/go.mod h1:T9Rz3GasrpYk6mEGHh4rymIhjlnIuB4ofT1wTxDeT4Y=
+cloud.google.com/go/domains v0.7.0/go.mod h1:PtZeqS1xjnXuRPKE/88Iru/LdfoRyEHYA9nFQf4UKpg=
+cloud.google.com/go/domains v0.8.0/go.mod h1:M9i3MMDzGFXsydri9/vW+EWz9sWb4I6WyHqdlAk0idE=
+cloud.google.com/go/edgecontainer v0.1.0/go.mod h1:WgkZ9tp10bFxqO8BLPqv2LlfmQF1X8lZqwW4r1BTajk=
+cloud.google.com/go/edgecontainer v0.2.0/go.mod h1:RTmLijy+lGpQ7BXuTDa4C4ssxyXT34NIuHIgKuP4s5w=
+cloud.google.com/go/edgecontainer v0.3.0/go.mod h1:FLDpP4nykgwwIfcLt6zInhprzw0lEi2P1fjO6Ie0qbc=
+cloud.google.com/go/edgecontainer v1.0.0/go.mod h1:cttArqZpBB2q58W/upSG++ooo6EsblxDIolxa3jSjbY=
+cloud.google.com/go/errorreporting v0.3.0/go.mod h1:xsP2yaAp+OAW4OIm60An2bbLpqIhKXdWR/tawvl7QzU=
+cloud.google.com/go/essentialcontacts v1.3.0/go.mod h1:r+OnHa5jfj90qIfZDO/VztSFqbQan7HV75p8sA+mdGI=
+cloud.google.com/go/essentialcontacts v1.4.0/go.mod h1:8tRldvHYsmnBCHdFpvU+GL75oWiBKl80BiqlFh9tp+8=
+cloud.google.com/go/essentialcontacts v1.5.0/go.mod h1:ay29Z4zODTuwliK7SnX8E86aUF2CTzdNtvv42niCX0M=
+cloud.google.com/go/eventarc v1.7.0/go.mod h1:6ctpF3zTnaQCxUjHUdcfgcA1A2T309+omHZth7gDfmc=
+cloud.google.com/go/eventarc v1.8.0/go.mod h1:imbzxkyAU4ubfsaKYdQg04WS1NvncblHEup4kvF+4gw=
+cloud.google.com/go/eventarc v1.10.0/go.mod h1:u3R35tmZ9HvswGRBnF48IlYgYeBcPUCjkr4BTdem2Kw=
+cloud.google.com/go/eventarc v1.11.0/go.mod h1:PyUjsUKPWoRBCHeOxZd/lbOOjahV41icXyUY5kSTvVY=
+cloud.google.com/go/filestore v1.3.0/go.mod h1:+qbvHGvXU1HaKX2nD0WEPo92TP/8AQuCVEBXNY9z0+w=
+cloud.google.com/go/filestore v1.4.0/go.mod h1:PaG5oDfo9r224f8OYXURtAsY+Fbyq/bLYoINEK8XQAI=
+cloud.google.com/go/filestore v1.5.0/go.mod h1:FqBXDWBp4YLHqRnVGveOkHDf8svj9r5+mUDLupOWEDs=
+cloud.google.com/go/filestore v1.6.0/go.mod h1:di5unNuss/qfZTw2U9nhFqo8/ZDSc466dre85Kydllg=
+cloud.google.com/go/firestore v1.9.0/go.mod h1:HMkjKHNTtRyZNiMzu7YAsLr9K3X2udY2AMwDaMEQiiE=
+cloud.google.com/go/functions v1.6.0/go.mod h1:3H1UA3qiIPRWD7PeZKLvHZ9SaQhR26XIJcC0A5GbvAk=
+cloud.google.com/go/functions v1.7.0/go.mod h1:+d+QBcWM+RsrgZfV9xo6KfA1GlzJfxcfZcRPEhDDfzg=
+cloud.google.com/go/functions v1.8.0/go.mod h1:RTZ4/HsQjIqIYP9a9YPbU+QFoQsAlYgrwOXJWHn1POY=
+cloud.google.com/go/functions v1.9.0/go.mod h1:Y+Dz8yGguzO3PpIjhLTbnqV1CWmgQ5UwtlpzoyquQ08=
+cloud.google.com/go/functions v1.10.0/go.mod h1:0D3hEOe3DbEvCXtYOZHQZmD+SzYsi1YbI7dGvHfldXw=
+cloud.google.com/go/functions v1.12.0/go.mod h1:AXWGrF3e2C/5ehvwYo/GH6O5s09tOPksiKhz+hH8WkA=
+cloud.google.com/go/functions v1.13.0/go.mod h1:EU4O007sQm6Ef/PwRsI8N2umygGqPBS/IZQKBQBcJ3c=
+cloud.google.com/go/gaming v1.5.0/go.mod h1:ol7rGcxP/qHTRQE/RO4bxkXq+Fix0j6D4LFPzYTIrDM=
+cloud.google.com/go/gaming v1.6.0/go.mod h1:YMU1GEvA39Qt3zWGyAVA9bpYz/yAhTvaQ1t2sK4KPUA=
+cloud.google.com/go/gaming v1.7.0/go.mod h1:LrB8U7MHdGgFG851iHAfqUdLcKBdQ55hzXy9xBJz0+w=
+cloud.google.com/go/gaming v1.8.0/go.mod h1:xAqjS8b7jAVW0KFYeRUxngo9My3f33kFmua++Pi+ggM=
+cloud.google.com/go/gaming v1.9.0/go.mod h1:Fc7kEmCObylSWLO334NcO+O9QMDyz+TKC4v1D7X+Bc0=
+cloud.google.com/go/gkebackup v0.2.0/go.mod h1:XKvv/4LfG829/B8B7xRkk8zRrOEbKtEam6yNfuQNH60=
+cloud.google.com/go/gkebackup v0.3.0/go.mod h1:n/E671i1aOQvUxT541aTkCwExO/bTer2HDlj4TsBRAo=
+cloud.google.com/go/gkebackup v0.4.0/go.mod h1:byAyBGUwYGEEww7xsbnUTBHIYcOPy/PgUWUtOeRm9Vg=
+cloud.google.com/go/gkeconnect v0.5.0/go.mod h1:c5lsNAg5EwAy7fkqX/+goqFsU1Da/jQFqArp+wGNr/o=
+cloud.google.com/go/gkeconnect v0.6.0/go.mod h1:Mln67KyU/sHJEBY8kFZ0xTeyPtzbq9StAVvEULYK16A=
+cloud.google.com/go/gkeconnect v0.7.0/go.mod h1:SNfmVqPkaEi3bF/B3CNZOAYPYdg7sU+obZ+QTky2Myw=
+cloud.google.com/go/gkehub v0.9.0/go.mod h1:WYHN6WG8w9bXU0hqNxt8rm5uxnk8IH+lPY9J2TV7BK0=
+cloud.google.com/go/gkehub v0.10.0/go.mod h1:UIPwxI0DsrpsVoWpLB0stwKCP+WFVG9+y977wO+hBH0=
+cloud.google.com/go/gkehub v0.11.0/go.mod h1:JOWHlmN+GHyIbuWQPl47/C2RFhnFKH38jH9Ascu3n0E=
+cloud.google.com/go/gkehub v0.12.0/go.mod h1:djiIwwzTTBrF5NaXCGv3mf7klpEMcST17VBTVVDcuaw=
+cloud.google.com/go/gkemulticloud v0.3.0/go.mod h1:7orzy7O0S+5kq95e4Hpn7RysVA7dPs8W/GgfUtsPbrA=
+cloud.google.com/go/gkemulticloud v0.4.0/go.mod h1:E9gxVBnseLWCk24ch+P9+B2CoDFJZTyIgLKSalC7tuI=
+cloud.google.com/go/gkemulticloud v0.5.0/go.mod h1:W0JDkiyi3Tqh0TJr//y19wyb1yf8llHVto2Htf2Ja3Y=
+cloud.google.com/go/grafeas v0.2.0/go.mod h1:KhxgtF2hb0P191HlY5besjYm6MqTSTj3LSI+M+ByZHc=
+cloud.google.com/go/gsuiteaddons v1.3.0/go.mod h1:EUNK/J1lZEZO8yPtykKxLXI6JSVN2rg9bN8SXOa0bgM=
+cloud.google.com/go/gsuiteaddons v1.4.0/go.mod h1:rZK5I8hht7u7HxFQcFei0+AtfS9uSushomRlg+3ua1o=
+cloud.google.com/go/gsuiteaddons v1.5.0/go.mod h1:TFCClYLd64Eaa12sFVmUyG62tk4mdIsI7pAnSXRkcFo=
+cloud.google.com/go/iam v0.1.0/go.mod h1:vcUNEa0pEm0qRVpmWepWaFMIAI8/hjB9mO8rNCJtF6c=
+cloud.google.com/go/iam v0.3.0/go.mod h1:XzJPvDayI+9zsASAFO68Hk07u3z+f+JrT2xXNdp4bnY=
+cloud.google.com/go/iam v0.5.0/go.mod h1:wPU9Vt0P4UmCux7mqtRu6jcpPAb74cP1fh50J3QpkUc=
+cloud.google.com/go/iam v0.6.0/go.mod h1:+1AH33ueBne5MzYccyMHtEKqLE4/kJOibtffMHDMFMc=
+cloud.google.com/go/iam v0.7.0/go.mod h1:H5Br8wRaDGNc8XP3keLc4unfUUZeyH3Sfl9XpQEYOeg=
+cloud.google.com/go/iam v0.8.0/go.mod h1:lga0/y3iH6CX7sYqypWJ33hf7kkfXJag67naqGESjkE=
+cloud.google.com/go/iam v0.11.0/go.mod h1:9PiLDanza5D+oWFZiH1uG+RnRCfEGKoyl6yo4cgWZGY=
+cloud.google.com/go/iam v0.12.0/go.mod h1:knyHGviacl11zrtZUoDuYpDgLjvr28sLQaG0YB2GYAY=
+cloud.google.com/go/iam v0.13.0/go.mod h1:ljOg+rcNfzZ5d6f1nAUJ8ZIxOaZUVoS14bKCtaLZ/D0=
+cloud.google.com/go/iap v1.4.0/go.mod h1:RGFwRJdihTINIe4wZ2iCP0zF/qu18ZwyKxrhMhygBEc=
+cloud.google.com/go/iap v1.5.0/go.mod h1:UH/CGgKd4KyohZL5Pt0jSKE4m3FR51qg6FKQ/z/Ix9A=
+cloud.google.com/go/iap v1.6.0/go.mod h1:NSuvI9C/j7UdjGjIde7t7HBz+QTwBcapPE07+sSRcLk=
+cloud.google.com/go/iap v1.7.0/go.mod h1:beqQx56T9O1G1yNPph+spKpNibDlYIiIixiqsQXxLIo=
+cloud.google.com/go/iap v1.7.1/go.mod h1:WapEwPc7ZxGt2jFGB/C/bm+hP0Y6NXzOYGjpPnmMS74=
+cloud.google.com/go/ids v1.1.0/go.mod h1:WIuwCaYVOzHIj2OhN9HAwvW+DBdmUAdcWlFxRl+KubM=
+cloud.google.com/go/ids v1.2.0/go.mod h1:5WXvp4n25S0rA/mQWAg1YEEBBq6/s+7ml1RDCW1IrcY=
+cloud.google.com/go/ids v1.3.0/go.mod h1:JBdTYwANikFKaDP6LtW5JAi4gubs57SVNQjemdt6xV4=
+cloud.google.com/go/iot v1.3.0/go.mod h1:r7RGh2B61+B8oz0AGE+J72AhA0G7tdXItODWsaA2oLs=
+cloud.google.com/go/iot v1.4.0/go.mod h1:dIDxPOn0UvNDUMD8Ger7FIaTuvMkj+aGk94RPP0iV+g=
+cloud.google.com/go/iot v1.5.0/go.mod h1:mpz5259PDl3XJthEmh9+ap0affn/MqNSP4My77Qql9o=
+cloud.google.com/go/iot v1.6.0/go.mod h1:IqdAsmE2cTYYNO1Fvjfzo9po179rAtJeVGUvkLN3rLE=
+cloud.google.com/go/kms v1.4.0/go.mod h1:fajBHndQ+6ubNw6Ss2sSd+SWvjL26RNo/dr7uxsnnOA=
+cloud.google.com/go/kms v1.5.0/go.mod h1:QJS2YY0eJGBg3mnDfuaCyLauWwBJiHRboYxJ++1xJNg=
+cloud.google.com/go/kms v1.6.0/go.mod h1:Jjy850yySiasBUDi6KFUwUv2n1+o7QZFyuUJg6OgjA0=
+cloud.google.com/go/kms v1.8.0/go.mod h1:4xFEhYFqvW+4VMELtZyxomGSYtSQKzM178ylFW4jMAg=
+cloud.google.com/go/kms v1.9.0/go.mod h1:qb1tPTgfF9RQP8e1wq4cLFErVuTJv7UsSC915J8dh3w=
+cloud.google.com/go/kms v1.10.0/go.mod h1:ng3KTUtQQU9bPX3+QGLsflZIHlkbn8amFAMY63m8d24=
+cloud.google.com/go/kms v1.10.1/go.mod h1:rIWk/TryCkR59GMC3YtHtXeLzd634lBbKenvyySAyYI=
+cloud.google.com/go/language v1.4.0/go.mod h1:F9dRpNFQmJbkaop6g0JhSBXCNlO90e1KWx5iDdxbWic=
+cloud.google.com/go/language v1.6.0/go.mod h1:6dJ8t3B+lUYfStgls25GusK04NLh3eDLQnWM3mdEbhI=
+cloud.google.com/go/language v1.7.0/go.mod h1:DJ6dYN/W+SQOjF8e1hLQXMF21AkH2w9wiPzPCJa2MIE=
+cloud.google.com/go/language v1.8.0/go.mod h1:qYPVHf7SPoNNiCL2Dr0FfEFNil1qi3pQEyygwpgVKB8=
+cloud.google.com/go/language v1.9.0/go.mod h1:Ns15WooPM5Ad/5no/0n81yUetis74g3zrbeJBE+ptUY=
+cloud.google.com/go/lifesciences v0.5.0/go.mod h1:3oIKy8ycWGPUyZDR/8RNnTOYevhaMLqh5vLUXs9zvT8=
+cloud.google.com/go/lifesciences v0.6.0/go.mod h1:ddj6tSX/7BOnhxCSd3ZcETvtNr8NZ6t/iPhY2Tyfu08=
+cloud.google.com/go/lifesciences v0.8.0/go.mod h1:lFxiEOMqII6XggGbOnKiyZ7IBwoIqA84ClvoezaA/bo=
+cloud.google.com/go/logging v1.6.1/go.mod h1:5ZO0mHHbvm8gEmeEUHrmDlTDSu5imF6MUP9OfilNXBw=
+cloud.google.com/go/logging v1.7.0/go.mod h1:3xjP2CjkM3ZkO73aj4ASA5wRPGGCRrPIAeNqVNkzY8M=
+cloud.google.com/go/longrunning v0.1.1/go.mod h1:UUFxuDWkv22EuY93jjmDMFT5GPQKeFVJBIF6QlTqdsE=
+cloud.google.com/go/longrunning v0.3.0/go.mod h1:qth9Y41RRSUE69rDcOn6DdK3HfQfsUI0YSmW3iIlLJc=
+cloud.google.com/go/longrunning v0.4.1/go.mod h1:4iWDqhBZ70CvZ6BfETbvam3T8FMvLK+eFj0E6AaRQTo=
+cloud.google.com/go/managedidentities v1.3.0/go.mod h1:UzlW3cBOiPrzucO5qWkNkh0w33KFtBJU281hacNvsdE=
+cloud.google.com/go/managedidentities v1.4.0/go.mod h1:NWSBYbEMgqmbZsLIyKvxrYbtqOsxY1ZrGM+9RgDqInM=
+cloud.google.com/go/managedidentities v1.5.0/go.mod h1:+dWcZ0JlUmpuxpIDfyP5pP5y0bLdRwOS4Lp7gMni/LA=
+cloud.google.com/go/maps v0.1.0/go.mod h1:BQM97WGyfw9FWEmQMpZ5T6cpovXXSd1cGmFma94eubI=
+cloud.google.com/go/maps v0.6.0/go.mod h1:o6DAMMfb+aINHz/p/jbcY+mYeXBoZoxTfdSQ8VAJaCw=
+cloud.google.com/go/maps v0.7.0/go.mod h1:3GnvVl3cqeSvgMcpRlQidXsPYuDGQ8naBis7MVzpXsY=
+cloud.google.com/go/mediatranslation v0.5.0/go.mod h1:jGPUhGTybqsPQn91pNXw0xVHfuJ3leR1wj37oU3y1f4=
+cloud.google.com/go/mediatranslation v0.6.0/go.mod h1:hHdBCTYNigsBxshbznuIMFNe5QXEowAuNmmC7h8pu5w=
+cloud.google.com/go/mediatranslation v0.7.0/go.mod h1:LCnB/gZr90ONOIQLgSXagp8XUW1ODs2UmUMvcgMfI2I=
+cloud.google.com/go/memcache v1.4.0/go.mod h1:rTOfiGZtJX1AaFUrOgsMHX5kAzaTQ8azHiuDoTPzNsE=
+cloud.google.com/go/memcache v1.5.0/go.mod h1:dk3fCK7dVo0cUU2c36jKb4VqKPS22BTkf81Xq617aWM=
+cloud.google.com/go/memcache v1.6.0/go.mod h1:XS5xB0eQZdHtTuTF9Hf8eJkKtR3pVRCcvJwtm68T3rA=
+cloud.google.com/go/memcache v1.7.0/go.mod h1:ywMKfjWhNtkQTxrWxCkCFkoPjLHPW6A7WOTVI8xy3LY=
+cloud.google.com/go/memcache v1.9.0/go.mod h1:8oEyzXCu+zo9RzlEaEjHl4KkgjlNDaXbCQeQWlzNFJM=
+cloud.google.com/go/metastore v1.5.0/go.mod h1:2ZNrDcQwghfdtCwJ33nM0+GrBGlVuh8rakL3vdPY3XY=
+cloud.google.com/go/metastore v1.6.0/go.mod h1:6cyQTls8CWXzk45G55x57DVQ9gWg7RiH65+YgPsNh9s=
+cloud.google.com/go/metastore v1.7.0/go.mod h1:s45D0B4IlsINu87/AsWiEVYbLaIMeUSoxlKKDqBGFS8=
+cloud.google.com/go/metastore v1.8.0/go.mod h1:zHiMc4ZUpBiM7twCIFQmJ9JMEkDSyZS9U12uf7wHqSI=
+cloud.google.com/go/metastore v1.10.0/go.mod h1:fPEnH3g4JJAk+gMRnrAnoqyv2lpUCqJPWOodSaf45Eo=
+cloud.google.com/go/monitoring v1.7.0/go.mod h1:HpYse6kkGo//7p6sT0wsIC6IBDET0RhIsnmlA53dvEk=
+cloud.google.com/go/monitoring v1.8.0/go.mod h1:E7PtoMJ1kQXWxPjB6mv2fhC5/15jInuulFdYYtlcvT4=
+cloud.google.com/go/monitoring v1.12.0/go.mod h1:yx8Jj2fZNEkL/GYZyTLS4ZtZEZN8WtDEiEqG4kLK50w=
+cloud.google.com/go/monitoring v1.13.0/go.mod h1:k2yMBAB1H9JT/QETjNkgdCGD9bPF712XiLTVr+cBrpw=
+cloud.google.com/go/networkconnectivity v1.4.0/go.mod h1:nOl7YL8odKyAOtzNX73/M5/mGZgqqMeryi6UPZTk/rA=
+cloud.google.com/go/networkconnectivity v1.5.0/go.mod h1:3GzqJx7uhtlM3kln0+x5wyFvuVH1pIBJjhCpjzSt75o=
+cloud.google.com/go/networkconnectivity v1.6.0/go.mod h1:OJOoEXW+0LAxHh89nXd64uGG+FbQoeH8DtxCHVOMlaM=
+cloud.google.com/go/networkconnectivity v1.7.0/go.mod h1:RMuSbkdbPwNMQjB5HBWD5MpTBnNm39iAVpC3TmsExt8=
+cloud.google.com/go/networkconnectivity v1.10.0/go.mod h1:UP4O4sWXJG13AqrTdQCD9TnLGEbtNRqjuaaA7bNjF5E=
+cloud.google.com/go/networkconnectivity v1.11.0/go.mod h1:iWmDD4QF16VCDLXUqvyspJjIEtBR/4zq5hwnY2X3scM=
+cloud.google.com/go/networkmanagement v1.4.0/go.mod h1:Q9mdLLRn60AsOrPc8rs8iNV6OHXaGcDdsIQe1ohekq8=
+cloud.google.com/go/networkmanagement v1.5.0/go.mod h1:ZnOeZ/evzUdUsnvRt792H0uYEnHQEMaz+REhhzJRcf4=
+cloud.google.com/go/networkmanagement v1.6.0/go.mod h1:5pKPqyXjB/sgtvB5xqOemumoQNB7y95Q7S+4rjSOPYY=
+cloud.google.com/go/networksecurity v0.5.0/go.mod h1:xS6fOCoqpVC5zx15Z/MqkfDwH4+m/61A3ODiDV1xmiQ=
+cloud.google.com/go/networksecurity v0.6.0/go.mod h1:Q5fjhTr9WMI5mbpRYEbiexTzROf7ZbDzvzCrNl14nyU=
+cloud.google.com/go/networksecurity v0.7.0/go.mod h1:mAnzoxx/8TBSyXEeESMy9OOYwo1v+gZ5eMRnsT5bC8k=
+cloud.google.com/go/networksecurity v0.8.0/go.mod h1:B78DkqsxFG5zRSVuwYFRZ9Xz8IcQ5iECsNrPn74hKHU=
+cloud.google.com/go/notebooks v1.2.0/go.mod h1:9+wtppMfVPUeJ8fIWPOq1UnATHISkGXGqTkxeieQ6UY=
+cloud.google.com/go/notebooks v1.3.0/go.mod h1:bFR5lj07DtCPC7YAAJ//vHskFBxA5JzYlH68kXVdk34=
+cloud.google.com/go/notebooks v1.4.0/go.mod h1:4QPMngcwmgb6uw7Po99B2xv5ufVoIQ7nOGDyL4P8AgA=
+cloud.google.com/go/notebooks v1.5.0/go.mod h1:q8mwhnP9aR8Hpfnrc5iN5IBhrXUy8S2vuYs+kBJ/gu0=
+cloud.google.com/go/notebooks v1.7.0/go.mod h1:PVlaDGfJgj1fl1S3dUwhFMXFgfYGhYQt2164xOMONmE=
+cloud.google.com/go/notebooks v1.8.0/go.mod h1:Lq6dYKOYOWUCTvw5t2q1gp1lAp0zxAxRycayS0iJcqQ=
+cloud.google.com/go/optimization v1.1.0/go.mod h1:5po+wfvX5AQlPznyVEZjGJTMr4+CAkJf2XSTQOOl9l4=
+cloud.google.com/go/optimization v1.2.0/go.mod h1:Lr7SOHdRDENsh+WXVmQhQTrzdu9ybg0NecjHidBq6xs=
+cloud.google.com/go/optimization v1.3.1/go.mod h1:IvUSefKiwd1a5p0RgHDbWCIbDFgKuEdB+fPPuP0IDLI=
+cloud.google.com/go/orchestration v1.3.0/go.mod h1:Sj5tq/JpWiB//X/q3Ngwdl5K7B7Y0KZ7bfv0wL6fqVA=
+cloud.google.com/go/orchestration v1.4.0/go.mod h1:6W5NLFWs2TlniBphAViZEVhrXRSMgUGDfW7vrWKvsBk=
+cloud.google.com/go/orchestration v1.6.0/go.mod h1:M62Bevp7pkxStDfFfTuCOaXgaaqRAga1yKyoMtEoWPQ=
+cloud.google.com/go/orgpolicy v1.4.0/go.mod h1:xrSLIV4RePWmP9P3tBl8S93lTmlAxjm06NSm2UTmKvE=
+cloud.google.com/go/orgpolicy v1.5.0/go.mod h1:hZEc5q3wzwXJaKrsx5+Ewg0u1LxJ51nNFlext7Tanwc=
+cloud.google.com/go/orgpolicy v1.10.0/go.mod h1:w1fo8b7rRqlXlIJbVhOMPrwVljyuW5mqssvBtU18ONc=
+cloud.google.com/go/osconfig v1.7.0/go.mod h1:oVHeCeZELfJP7XLxcBGTMBvRO+1nQ5tFG9VQTmYS2Fs=
+cloud.google.com/go/osconfig v1.8.0/go.mod h1:EQqZLu5w5XA7eKizepumcvWx+m8mJUhEwiPqWiZeEdg=
+cloud.google.com/go/osconfig v1.9.0/go.mod h1:Yx+IeIZJ3bdWmzbQU4fxNl8xsZ4amB+dygAwFPlvnNo=
+cloud.google.com/go/osconfig v1.10.0/go.mod h1:uMhCzqC5I8zfD9zDEAfvgVhDS8oIjySWh+l4WK6GnWw=
+cloud.google.com/go/osconfig v1.11.0/go.mod h1:aDICxrur2ogRd9zY5ytBLV89KEgT2MKB2L/n6x1ooPw=
+cloud.google.com/go/oslogin v1.4.0/go.mod h1:YdgMXWRaElXz/lDk1Na6Fh5orF7gvmJ0FGLIs9LId4E=
+cloud.google.com/go/oslogin v1.5.0/go.mod h1:D260Qj11W2qx/HVF29zBg+0fd6YCSjSqLUkY/qEenQU=
+cloud.google.com/go/oslogin v1.6.0/go.mod h1:zOJ1O3+dTU8WPlGEkFSh7qeHPPSoxrcMbbK1Nm2iX70=
+cloud.google.com/go/oslogin v1.7.0/go.mod h1:e04SN0xO1UNJ1M5GP0vzVBFicIe4O53FOfcixIqTyXo=
+cloud.google.com/go/oslogin v1.9.0/go.mod h1:HNavntnH8nzrn8JCTT5fj18FuJLFJc4NaZJtBnQtKFs=
+cloud.google.com/go/phishingprotection v0.5.0/go.mod h1:Y3HZknsK9bc9dMi+oE8Bim0lczMU6hrX0UpADuMefr0=
+cloud.google.com/go/phishingprotection v0.6.0/go.mod h1:9Y3LBLgy0kDTcYET8ZH3bq/7qni15yVUoAxiFxnlSUA=
+cloud.google.com/go/phishingprotection v0.7.0/go.mod h1:8qJI4QKHoda/sb/7/YmMQ2omRLSLYSu9bU0EKCNI+Lk=
+cloud.google.com/go/policytroubleshooter v1.3.0/go.mod h1:qy0+VwANja+kKrjlQuOzmlvscn4RNsAc0e15GGqfMxg=
+cloud.google.com/go/policytroubleshooter v1.4.0/go.mod h1:DZT4BcRw3QoO8ota9xw/LKtPa8lKeCByYeKTIf/vxdE=
+cloud.google.com/go/policytroubleshooter v1.5.0/go.mod h1:Rz1WfV+1oIpPdN2VvvuboLVRsB1Hclg3CKQ53j9l8vw=
+cloud.google.com/go/policytroubleshooter v1.6.0/go.mod h1:zYqaPTsmfvpjm5ULxAyD/lINQxJ0DDsnWOP/GZ7xzBc=
+cloud.google.com/go/privatecatalog v0.5.0/go.mod h1:XgosMUvvPyxDjAVNDYxJ7wBW8//hLDDYmnsNcMGq1K0=
+cloud.google.com/go/privatecatalog v0.6.0/go.mod h1:i/fbkZR0hLN29eEWiiwue8Pb+GforiEIBnV9yrRUOKI=
+cloud.google.com/go/privatecatalog v0.7.0/go.mod h1:2s5ssIFO69F5csTXcwBP7NPFTZvps26xGzvQ2PQaBYg=
+cloud.google.com/go/privatecatalog v0.8.0/go.mod h1:nQ6pfaegeDAq/Q5lrfCQzQLhubPiZhSaNhIgfJlnIXs=
 cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I=
 cloud.google.com/go/pubsub v1.1.0/go.mod h1:EwwdRX2sKPjnvnqCa270oGRyludottCI76h+R3AArQw=
 cloud.google.com/go/pubsub v1.2.0/go.mod h1:jhfEVHT8odbXTkndysNHCcx0awwzvfOlguIAii9o8iA=
 cloud.google.com/go/pubsub v1.3.1/go.mod h1:i+ucay31+CNRpDW4Lu78I4xXG+O1r/MAHgjpRVR+TSU=
+cloud.google.com/go/pubsub v1.26.0/go.mod h1:QgBH3U/jdJy/ftjPhTkyXNj543Tin1pRYcdcPRnFIRI=
+cloud.google.com/go/pubsub v1.27.1/go.mod h1:hQN39ymbV9geqBnfQq6Xf63yNhUAhv9CZhzp5O6qsW0=
+cloud.google.com/go/pubsub v1.28.0/go.mod h1:vuXFpwaVoIPQMGXqRyUQigu/AX1S3IWugR9xznmcXX8=
+cloud.google.com/go/pubsub v1.30.0/go.mod h1:qWi1OPS0B+b5L+Sg6Gmc9zD1Y+HaM0MdUr7LsupY1P4=
+cloud.google.com/go/pubsublite v1.5.0/go.mod h1:xapqNQ1CuLfGi23Yda/9l4bBCKz/wC3KIJ5gKcxveZg=
+cloud.google.com/go/pubsublite v1.6.0/go.mod h1:1eFCS0U11xlOuMFV/0iBqw3zP12kddMeCbj/F3FSj9k=
+cloud.google.com/go/pubsublite v1.7.0/go.mod h1:8hVMwRXfDfvGm3fahVbtDbiLePT3gpoiJYJY+vxWxVM=
+cloud.google.com/go/recaptchaenterprise v1.3.1/go.mod h1:OdD+q+y4XGeAlxRaMn1Y7/GveP6zmq76byL6tjPE7d4=
+cloud.google.com/go/recaptchaenterprise/v2 v2.1.0/go.mod h1:w9yVqajwroDNTfGuhmOjPDN//rZGySaf6PtFVcSCa7o=
+cloud.google.com/go/recaptchaenterprise/v2 v2.2.0/go.mod h1:/Zu5jisWGeERrd5HnlS3EUGb/D335f9k51B/FVil0jk=
+cloud.google.com/go/recaptchaenterprise/v2 v2.3.0/go.mod h1:O9LwGCjrhGHBQET5CA7dd5NwwNQUErSgEDit1DLNTdo=
+cloud.google.com/go/recaptchaenterprise/v2 v2.4.0/go.mod h1:Am3LHfOuBstrLrNCBrlI5sbwx9LBg3te2N6hGvHn2mE=
+cloud.google.com/go/recaptchaenterprise/v2 v2.5.0/go.mod h1:O8LzcHXN3rz0j+LBC91jrwI3R+1ZSZEWrfL7XHgNo9U=
+cloud.google.com/go/recaptchaenterprise/v2 v2.6.0/go.mod h1:RPauz9jeLtB3JVzg6nCbe12qNoaa8pXc4d/YukAmcnA=
+cloud.google.com/go/recaptchaenterprise/v2 v2.7.0/go.mod h1:19wVj/fs5RtYtynAPJdDTb69oW0vNHYDBTbB4NvMD9c=
+cloud.google.com/go/recommendationengine v0.5.0/go.mod h1:E5756pJcVFeVgaQv3WNpImkFP8a+RptV6dDLGPILjvg=
+cloud.google.com/go/recommendationengine v0.6.0/go.mod h1:08mq2umu9oIqc7tDy8sx+MNJdLG0fUi3vaSVbztHgJ4=
+cloud.google.com/go/recommendationengine v0.7.0/go.mod h1:1reUcE3GIu6MeBz/h5xZJqNLuuVjNg1lmWMPyjatzac=
+cloud.google.com/go/recommender v1.5.0/go.mod h1:jdoeiBIVrJe9gQjwd759ecLJbxCDED4A6p+mqoqDvTg=
+cloud.google.com/go/recommender v1.6.0/go.mod h1:+yETpm25mcoiECKh9DEScGzIRyDKpZ0cEhWGo+8bo+c=
+cloud.google.com/go/recommender v1.7.0/go.mod h1:XLHs/W+T8olwlGOgfQenXBTbIseGclClff6lhFVe9Bs=
+cloud.google.com/go/recommender v1.8.0/go.mod h1:PkjXrTT05BFKwxaUxQmtIlrtj0kph108r02ZZQ5FE70=
+cloud.google.com/go/recommender v1.9.0/go.mod h1:PnSsnZY7q+VL1uax2JWkt/UegHssxjUVVCrX52CuEmQ=
+cloud.google.com/go/redis v1.7.0/go.mod h1:V3x5Jq1jzUcg+UNsRvdmsfuFnit1cfe3Z/PGyq/lm4Y=
+cloud.google.com/go/redis v1.8.0/go.mod h1:Fm2szCDavWzBk2cDKxrkmWBqoCiL1+Ctwq7EyqBCA/A=
+cloud.google.com/go/redis v1.9.0/go.mod h1:HMYQuajvb2D0LvMgZmLDZW8V5aOC/WxstZHiy4g8OiA=
+cloud.google.com/go/redis v1.10.0/go.mod h1:ThJf3mMBQtW18JzGgh41/Wld6vnDDc/F/F35UolRZPM=
+cloud.google.com/go/redis v1.11.0/go.mod h1:/X6eicana+BWcUda5PpwZC48o37SiFVTFSs0fWAJ7uQ=
+cloud.google.com/go/resourcemanager v1.3.0/go.mod h1:bAtrTjZQFJkiWTPDb1WBjzvc6/kifjj4QBYuKCCoqKA=
+cloud.google.com/go/resourcemanager v1.4.0/go.mod h1:MwxuzkumyTX7/a3n37gmsT3py7LIXwrShilPh3P1tR0=
+cloud.google.com/go/resourcemanager v1.5.0/go.mod h1:eQoXNAiAvCf5PXxWxXjhKQoTMaUSNrEfg+6qdf/wots=
+cloud.google.com/go/resourcemanager v1.6.0/go.mod h1:YcpXGRs8fDzcUl1Xw8uOVmI8JEadvhRIkoXXUNVYcVo=
+cloud.google.com/go/resourcemanager v1.7.0/go.mod h1:HlD3m6+bwhzj9XCouqmeiGuni95NTrExfhoSrkC/3EI=
+cloud.google.com/go/resourcesettings v1.3.0/go.mod h1:lzew8VfESA5DQ8gdlHwMrqZs1S9V87v3oCnKCWoOuQU=
+cloud.google.com/go/resourcesettings v1.4.0/go.mod h1:ldiH9IJpcrlC3VSuCGvjR5of/ezRrOxFtpJoJo5SmXg=
+cloud.google.com/go/resourcesettings v1.5.0/go.mod h1:+xJF7QSG6undsQDfsCJyqWXyBwUoJLhetkRMDRnIoXA=
+cloud.google.com/go/retail v1.8.0/go.mod h1:QblKS8waDmNUhghY2TI9O3JLlFk8jybHeV4BF19FrE4=
+cloud.google.com/go/retail v1.9.0/go.mod h1:g6jb6mKuCS1QKnH/dpu7isX253absFl6iE92nHwlBUY=
+cloud.google.com/go/retail v1.10.0/go.mod h1:2gDk9HsL4HMS4oZwz6daui2/jmKvqShXKQuB2RZ+cCc=
+cloud.google.com/go/retail v1.11.0/go.mod h1:MBLk1NaWPmh6iVFSz9MeKG/Psyd7TAgm6y/9L2B4x9Y=
+cloud.google.com/go/retail v1.12.0/go.mod h1:UMkelN/0Z8XvKymXFbD4EhFJlYKRx1FGhQkVPU5kF14=
+cloud.google.com/go/run v0.2.0/go.mod h1:CNtKsTA1sDcnqqIFR3Pb5Tq0usWxJJvsWOCPldRU3Do=
+cloud.google.com/go/run v0.3.0/go.mod h1:TuyY1+taHxTjrD0ZFk2iAR+xyOXEA0ztb7U3UNA0zBo=
+cloud.google.com/go/run v0.8.0/go.mod h1:VniEnuBwqjigv0A7ONfQUaEItaiCRVujlMqerPPiktM=
+cloud.google.com/go/run v0.9.0/go.mod h1:Wwu+/vvg8Y+JUApMwEDfVfhetv30hCG4ZwDR/IXl2Qg=
+cloud.google.com/go/scheduler v1.4.0/go.mod h1:drcJBmxF3aqZJRhmkHQ9b3uSSpQoltBPGPxGAWROx6s=
+cloud.google.com/go/scheduler v1.5.0/go.mod h1:ri073ym49NW3AfT6DZi21vLZrG07GXr5p3H1KxN5QlI=
+cloud.google.com/go/scheduler v1.6.0/go.mod h1:SgeKVM7MIwPn3BqtcBntpLyrIJftQISRrYB5ZtT+KOk=
+cloud.google.com/go/scheduler v1.7.0/go.mod h1:jyCiBqWW956uBjjPMMuX09n3x37mtyPJegEWKxRsn44=
+cloud.google.com/go/scheduler v1.8.0/go.mod h1:TCET+Y5Gp1YgHT8py4nlg2Sew8nUHMqcpousDgXJVQc=
+cloud.google.com/go/scheduler v1.9.0/go.mod h1:yexg5t+KSmqu+njTIh3b7oYPheFtBWGcbVUYF1GGMIc=
+cloud.google.com/go/secretmanager v1.6.0/go.mod h1:awVa/OXF6IiyaU1wQ34inzQNc4ISIDIrId8qE5QGgKA=
+cloud.google.com/go/secretmanager v1.8.0/go.mod h1:hnVgi/bN5MYHd3Gt0SPuTPPp5ENina1/LxM+2W9U9J4=
+cloud.google.com/go/secretmanager v1.9.0/go.mod h1:b71qH2l1yHmWQHt9LC80akm86mX8AL6X1MA01dW8ht4=
+cloud.google.com/go/secretmanager v1.10.0/go.mod h1:MfnrdvKMPNra9aZtQFvBcvRU54hbPD8/HayQdlUgJpU=
+cloud.google.com/go/security v1.5.0/go.mod h1:lgxGdyOKKjHL4YG3/YwIL2zLqMFCKs0UbQwgyZmfJl4=
+cloud.google.com/go/security v1.7.0/go.mod h1:mZklORHl6Bg7CNnnjLH//0UlAlaXqiG7Lb9PsPXLfD0=
+cloud.google.com/go/security v1.8.0/go.mod h1:hAQOwgmaHhztFhiQ41CjDODdWP0+AE1B3sX4OFlq+GU=
+cloud.google.com/go/security v1.9.0/go.mod h1:6Ta1bO8LXI89nZnmnsZGp9lVoVWXqsVbIq/t9dzI+2Q=
+cloud.google.com/go/security v1.10.0/go.mod h1:QtOMZByJVlibUT2h9afNDWRZ1G96gVywH8T5GUSb9IA=
+cloud.google.com/go/security v1.12.0/go.mod h1:rV6EhrpbNHrrxqlvW0BWAIawFWq3X90SduMJdFwtLB8=
+cloud.google.com/go/security v1.13.0/go.mod h1:Q1Nvxl1PAgmeW0y3HTt54JYIvUdtcpYKVfIB8AOMZ+0=
+cloud.google.com/go/securitycenter v1.13.0/go.mod h1:cv5qNAqjY84FCN6Y9z28WlkKXyWsgLO832YiWwkCWcU=
+cloud.google.com/go/securitycenter v1.14.0/go.mod h1:gZLAhtyKv85n52XYWt6RmeBdydyxfPeTrpToDPw4Auc=
+cloud.google.com/go/securitycenter v1.15.0/go.mod h1:PeKJ0t8MoFmmXLXWm41JidyzI3PJjd8sXWaVqg43WWk=
+cloud.google.com/go/securitycenter v1.16.0/go.mod h1:Q9GMaLQFUD+5ZTabrbujNWLtSLZIZF7SAR0wWECrjdk=
+cloud.google.com/go/securitycenter v1.18.1/go.mod h1:0/25gAzCM/9OL9vVx4ChPeM/+DlfGQJDwBy/UC8AKK0=
+cloud.google.com/go/securitycenter v1.19.0/go.mod h1:LVLmSg8ZkkyaNy4u7HCIshAngSQ8EcIRREP3xBnyfag=
+cloud.google.com/go/servicecontrol v1.4.0/go.mod h1:o0hUSJ1TXJAmi/7fLJAedOovnujSEvjKCAFNXPQ1RaU=
+cloud.google.com/go/servicecontrol v1.5.0/go.mod h1:qM0CnXHhyqKVuiZnGKrIurvVImCs8gmqWsDoqe9sU1s=
+cloud.google.com/go/servicecontrol v1.10.0/go.mod h1:pQvyvSRh7YzUF2efw7H87V92mxU8FnFDawMClGCNuAA=
+cloud.google.com/go/servicecontrol v1.11.0/go.mod h1:kFmTzYzTUIuZs0ycVqRHNaNhgR+UMUpw9n02l/pY+mc=
+cloud.google.com/go/servicecontrol v1.11.1/go.mod h1:aSnNNlwEFBY+PWGQ2DoM0JJ/QUXqV5/ZD9DOLB7SnUk=
+cloud.google.com/go/servicedirectory v1.4.0/go.mod h1:gH1MUaZCgtP7qQiI+F+A+OpeKF/HQWgtAddhTbhL2bs=
+cloud.google.com/go/servicedirectory v1.5.0/go.mod h1:QMKFL0NUySbpZJ1UZs3oFAmdvVxhhxB6eJ/Vlp73dfg=
+cloud.google.com/go/servicedirectory v1.6.0/go.mod h1:pUlbnWsLH9c13yGkxCmfumWEPjsRs1RlmJ4pqiNjVL4=
+cloud.google.com/go/servicedirectory v1.7.0/go.mod h1:5p/U5oyvgYGYejufvxhgwjL8UVXjkuw7q5XcG10wx1U=
+cloud.google.com/go/servicedirectory v1.8.0/go.mod h1:srXodfhY1GFIPvltunswqXpVxFPpZjf8nkKQT7XcXaY=
+cloud.google.com/go/servicedirectory v1.9.0/go.mod h1:29je5JjiygNYlmsGz8k6o+OZ8vd4f//bQLtvzkPPT/s=
+cloud.google.com/go/servicemanagement v1.4.0/go.mod h1:d8t8MDbezI7Z2R1O/wu8oTggo3BI2GKYbdG4y/SJTco=
+cloud.google.com/go/servicemanagement v1.5.0/go.mod h1:XGaCRe57kfqu4+lRxaFEAuqmjzF0r+gWHjWqKqBvKFo=
+cloud.google.com/go/servicemanagement v1.6.0/go.mod h1:aWns7EeeCOtGEX4OvZUWCCJONRZeFKiptqKf1D0l/Jc=
+cloud.google.com/go/servicemanagement v1.8.0/go.mod h1:MSS2TDlIEQD/fzsSGfCdJItQveu9NXnUniTrq/L8LK4=
+cloud.google.com/go/serviceusage v1.3.0/go.mod h1:Hya1cozXM4SeSKTAgGXgj97GlqUvF5JaoXacR1JTP/E=
+cloud.google.com/go/serviceusage v1.4.0/go.mod h1:SB4yxXSaYVuUBYUml6qklyONXNLt83U0Rb+CXyhjEeU=
+cloud.google.com/go/serviceusage v1.5.0/go.mod h1:w8U1JvqUqwJNPEOTQjrMHkw3IaIFLoLsPLvsE3xueec=
+cloud.google.com/go/serviceusage v1.6.0/go.mod h1:R5wwQcbOWsyuOfbP9tGdAnCAc6B9DRwPG1xtWMDeuPA=
+cloud.google.com/go/shell v1.3.0/go.mod h1:VZ9HmRjZBsjLGXusm7K5Q5lzzByZmJHf1d0IWHEN5X4=
+cloud.google.com/go/shell v1.4.0/go.mod h1:HDxPzZf3GkDdhExzD/gs8Grqk+dmYcEjGShZgYa9URw=
+cloud.google.com/go/shell v1.6.0/go.mod h1:oHO8QACS90luWgxP3N9iZVuEiSF84zNyLytb+qE2f9A=
+cloud.google.com/go/spanner v1.41.0/go.mod h1:MLYDBJR/dY4Wt7ZaMIQ7rXOTLjYrmxLE/5ve9vFfWos=
+cloud.google.com/go/spanner v1.44.0/go.mod h1:G8XIgYdOK+Fbcpbs7p2fiprDw4CaZX63whnSMLVBxjk=
+cloud.google.com/go/spanner v1.45.0/go.mod h1:FIws5LowYz8YAE1J8fOS7DJup8ff7xJeetWEo5REA2M=
+cloud.google.com/go/speech v1.6.0/go.mod h1:79tcr4FHCimOp56lwC01xnt/WPJZc4v3gzyT7FoBkCM=
+cloud.google.com/go/speech v1.7.0/go.mod h1:KptqL+BAQIhMsj1kOP2la5DSEEerPDuOP/2mmkhHhZQ=
+cloud.google.com/go/speech v1.8.0/go.mod h1:9bYIl1/tjsAnMgKGHKmBZzXKEkGgtU+MpdDPTE9f7y0=
+cloud.google.com/go/speech v1.9.0/go.mod h1:xQ0jTcmnRFFM2RfX/U+rk6FQNUF6DQlydUSyoooSpco=
+cloud.google.com/go/speech v1.14.1/go.mod h1:gEosVRPJ9waG7zqqnsHpYTOoAS4KouMRLDFMekpJ0J0=
+cloud.google.com/go/speech v1.15.0/go.mod h1:y6oH7GhqCaZANH7+Oe0BhgIogsNInLlz542tg3VqeYI=
 cloud.google.com/go/storage v1.0.0/go.mod h1:IhtSnM/ZTZV8YYJWCY8RULGVqBDmpoyjwiyrjsg+URw=
 cloud.google.com/go/storage v1.5.0/go.mod h1:tpKbwo567HUNpVclU5sGELwQWBDZ8gh0ZeosJ0Rtdos=
 cloud.google.com/go/storage v1.6.0/go.mod h1:N7U0C8pVQ/+NIKOBQyamJIeKQKkZ+mxpohlUTyfDhBk=
 cloud.google.com/go/storage v1.8.0/go.mod h1:Wv1Oy7z6Yz3DshWRJFhqM/UCfaWIRTdp0RXyy7KQOVs=
 cloud.google.com/go/storage v1.10.0/go.mod h1:FLPqc6j+Ki4BU591ie1oL6qBQGu2Bl/tZ9ullr3+Kg0=
+cloud.google.com/go/storage v1.14.0/go.mod h1:GrKmX003DSIwi9o29oFT7YDnHYwZoctc3fOKtUw0Xmo=
+cloud.google.com/go/storage v1.22.1/go.mod h1:S8N1cAStu7BOeFfE8KAQzmyyLkK8p/vmRq6kuBTW58Y=
+cloud.google.com/go/storage v1.23.0/go.mod h1:vOEEDNFnciUMhBeT6hsJIn3ieU5cFRmzeLgDvXzfIXc=
+cloud.google.com/go/storage v1.27.0/go.mod h1:x9DOL8TK/ygDUMieqwfhdpQryTeEkhGKMi80i/iqR2s=
+cloud.google.com/go/storage v1.28.1/go.mod h1:Qnisd4CqDdo6BGs2AD5LLnEsmSQ80wQ5ogcBBKhU86Y=
+cloud.google.com/go/storage v1.29.0/go.mod h1:4puEjyTKnku6gfKoTfNOU/W+a9JyuVNxjpS5GBrB8h4=
+cloud.google.com/go/storagetransfer v1.5.0/go.mod h1:dxNzUopWy7RQevYFHewchb29POFv3/AaBgnhqzqiK0w=
+cloud.google.com/go/storagetransfer v1.6.0/go.mod h1:y77xm4CQV/ZhFZH75PLEXY0ROiS7Gh6pSKrM8dJyg6I=
+cloud.google.com/go/storagetransfer v1.7.0/go.mod h1:8Giuj1QNb1kfLAiWM1bN6dHzfdlDAVC9rv9abHot2W4=
+cloud.google.com/go/storagetransfer v1.8.0/go.mod h1:JpegsHHU1eXg7lMHkvf+KE5XDJ7EQu0GwNJbbVGanEw=
+cloud.google.com/go/talent v1.1.0/go.mod h1:Vl4pt9jiHKvOgF9KoZo6Kob9oV4lwd/ZD5Cto54zDRw=
+cloud.google.com/go/talent v1.2.0/go.mod h1:MoNF9bhFQbiJ6eFD3uSsg0uBALw4n4gaCaEjBw9zo8g=
+cloud.google.com/go/talent v1.3.0/go.mod h1:CmcxwJ/PKfRgd1pBjQgU6W3YBwiewmUzQYH5HHmSCmM=
+cloud.google.com/go/talent v1.4.0/go.mod h1:ezFtAgVuRf8jRsvyE6EwmbTK5LKciD4KVnHuDEFmOOA=
+cloud.google.com/go/talent v1.5.0/go.mod h1:G+ODMj9bsasAEJkQSzO2uHQWXHHXUomArjWQQYkqK6c=
+cloud.google.com/go/texttospeech v1.4.0/go.mod h1:FX8HQHA6sEpJ7rCMSfXuzBcysDAuWusNNNvN9FELDd8=
+cloud.google.com/go/texttospeech v1.5.0/go.mod h1:oKPLhR4n4ZdQqWKURdwxMy0uiTS1xU161C8W57Wkea4=
+cloud.google.com/go/texttospeech v1.6.0/go.mod h1:YmwmFT8pj1aBblQOI3TfKmwibnsfvhIBzPXcW4EBovc=
+cloud.google.com/go/tpu v1.3.0/go.mod h1:aJIManG0o20tfDQlRIej44FcwGGl/cD0oiRyMKG19IQ=
+cloud.google.com/go/tpu v1.4.0/go.mod h1:mjZaX8p0VBgllCzF6wcU2ovUXN9TONFLd7iz227X2Xg=
+cloud.google.com/go/tpu v1.5.0/go.mod h1:8zVo1rYDFuW2l4yZVY0R0fb/v44xLh3llq7RuV61fPM=
+cloud.google.com/go/trace v1.3.0/go.mod h1:FFUE83d9Ca57C+K8rDl/Ih8LwOzWIV1krKgxg6N0G28=
+cloud.google.com/go/trace v1.4.0/go.mod h1:UG0v8UBqzusp+z63o7FK74SdFE+AXpCLdFb1rshXG+Y=
+cloud.google.com/go/trace v1.8.0/go.mod h1:zH7vcsbAhklH8hWFig58HvxcxyQbaIqMarMg9hn5ECA=
+cloud.google.com/go/trace v1.9.0/go.mod h1:lOQqpE5IaWY0Ixg7/r2SjixMuc6lfTFeO4QGM4dQWOk=
+cloud.google.com/go/translate v1.3.0/go.mod h1:gzMUwRjvOqj5i69y/LYLd8RrNQk+hOmIXTi9+nb3Djs=
+cloud.google.com/go/translate v1.4.0/go.mod h1:06Dn/ppvLD6WvA5Rhdp029IX2Mi3Mn7fpMRLPvXT5Wg=
+cloud.google.com/go/translate v1.5.0/go.mod h1:29YDSYveqqpA1CQFD7NQuP49xymq17RXNaUDdc0mNu0=
+cloud.google.com/go/translate v1.6.0/go.mod h1:lMGRudH1pu7I3n3PETiOB2507gf3HnfLV8qlkHZEyos=
+cloud.google.com/go/translate v1.7.0/go.mod h1:lMGRudH1pu7I3n3PETiOB2507gf3HnfLV8qlkHZEyos=
+cloud.google.com/go/video v1.8.0/go.mod h1:sTzKFc0bUSByE8Yoh8X0mn8bMymItVGPfTuUBUyRgxk=
+cloud.google.com/go/video v1.9.0/go.mod h1:0RhNKFRF5v92f8dQt0yhaHrEuH95m068JYOvLZYnJSw=
+cloud.google.com/go/video v1.12.0/go.mod h1:MLQew95eTuaNDEGriQdcYn0dTwf9oWiA4uYebxM5kdg=
+cloud.google.com/go/video v1.13.0/go.mod h1:ulzkYlYgCp15N2AokzKjy7MQ9ejuynOJdf1tR5lGthk=
+cloud.google.com/go/video v1.14.0/go.mod h1:SkgaXwT+lIIAKqWAJfktHT/RbgjSuY6DobxEp0C5yTQ=
+cloud.google.com/go/video v1.15.0/go.mod h1:SkgaXwT+lIIAKqWAJfktHT/RbgjSuY6DobxEp0C5yTQ=
+cloud.google.com/go/videointelligence v1.6.0/go.mod h1:w0DIDlVRKtwPCn/C4iwZIJdvC69yInhW0cfi+p546uU=
+cloud.google.com/go/videointelligence v1.7.0/go.mod h1:k8pI/1wAhjznARtVT9U1llUaFNPh7muw8QyOUpavru4=
+cloud.google.com/go/videointelligence v1.8.0/go.mod h1:dIcCn4gVDdS7yte/w+koiXn5dWVplOZkE+xwG9FgK+M=
+cloud.google.com/go/videointelligence v1.9.0/go.mod h1:29lVRMPDYHikk3v8EdPSaL8Ku+eMzDljjuvRs105XoU=
+cloud.google.com/go/videointelligence v1.10.0/go.mod h1:LHZngX1liVtUhZvi2uNS0VQuOzNi2TkY1OakiuoUOjU=
+cloud.google.com/go/vision v1.2.0/go.mod h1:SmNwgObm5DpFBme2xpyOyasvBc1aPdjvMk2bBk0tKD0=
+cloud.google.com/go/vision/v2 v2.2.0/go.mod h1:uCdV4PpN1S0jyCyq8sIM42v2Y6zOLkZs+4R9LrGYwFo=
+cloud.google.com/go/vision/v2 v2.3.0/go.mod h1:UO61abBx9QRMFkNBbf1D8B1LXdS2cGiiCRx0vSpZoUo=
+cloud.google.com/go/vision/v2 v2.4.0/go.mod h1:VtI579ll9RpVTrdKdkMzckdnwMyX2JILb+MhPqRbPsY=
+cloud.google.com/go/vision/v2 v2.5.0/go.mod h1:MmaezXOOE+IWa+cS7OhRRLK2cNv1ZL98zhqFFZaaH2E=
+cloud.google.com/go/vision/v2 v2.6.0/go.mod h1:158Hes0MvOS9Z/bDMSFpjwsUrZ5fPrdwuyyvKSGAGMY=
+cloud.google.com/go/vision/v2 v2.7.0/go.mod h1:H89VysHy21avemp6xcf9b9JvZHVehWbET0uT/bcuY/0=
+cloud.google.com/go/vmmigration v1.2.0/go.mod h1:IRf0o7myyWFSmVR1ItrBSFLFD/rJkfDCUTO4vLlJvsE=
+cloud.google.com/go/vmmigration v1.3.0/go.mod h1:oGJ6ZgGPQOFdjHuocGcLqX4lc98YQ7Ygq8YQwHh9A7g=
+cloud.google.com/go/vmmigration v1.5.0/go.mod h1:E4YQ8q7/4W9gobHjQg4JJSgXXSgY21nA5r8swQV+Xxc=
+cloud.google.com/go/vmmigration v1.6.0/go.mod h1:bopQ/g4z+8qXzichC7GW1w2MjbErL54rk3/C843CjfY=
+cloud.google.com/go/vmwareengine v0.1.0/go.mod h1:RsdNEf/8UDvKllXhMz5J40XxDrNJNN4sagiox+OI208=
+cloud.google.com/go/vmwareengine v0.2.2/go.mod h1:sKdctNJxb3KLZkE/6Oui94iw/xs9PRNC2wnNLXsHvH8=
+cloud.google.com/go/vmwareengine v0.3.0/go.mod h1:wvoyMvNWdIzxMYSpH/R7y2h5h3WFkx6d+1TIsP39WGY=
+cloud.google.com/go/vpcaccess v1.4.0/go.mod h1:aQHVbTWDYUR1EbTApSVvMq1EnT57ppDmQzZ3imqIk4w=
+cloud.google.com/go/vpcaccess v1.5.0/go.mod h1:drmg4HLk9NkZpGfCmZ3Tz0Bwnm2+DKqViEpeEpOq0m8=
+cloud.google.com/go/vpcaccess v1.6.0/go.mod h1:wX2ILaNhe7TlVa4vC5xce1bCnqE3AeH27RV31lnmZes=
+cloud.google.com/go/webrisk v1.4.0/go.mod h1:Hn8X6Zr+ziE2aNd8SliSDWpEnSS1u4R9+xXZmFiHmGE=
+cloud.google.com/go/webrisk v1.5.0/go.mod h1:iPG6fr52Tv7sGk0H6qUFzmL3HHZev1htXuWDEEsqMTg=
+cloud.google.com/go/webrisk v1.6.0/go.mod h1:65sW9V9rOosnc9ZY7A7jsy1zoHS5W9IAXv6dGqhMQMc=
+cloud.google.com/go/webrisk v1.7.0/go.mod h1:mVMHgEYH0r337nmt1JyLthzMr6YxwN1aAIEc2fTcq7A=
+cloud.google.com/go/webrisk v1.8.0/go.mod h1:oJPDuamzHXgUc+b8SiHRcVInZQuybnvEW72PqTc7sSg=
+cloud.google.com/go/websecurityscanner v1.3.0/go.mod h1:uImdKm2wyeXQevQJXeh8Uun/Ym1VqworNDlBXQevGMo=
+cloud.google.com/go/websecurityscanner v1.4.0/go.mod h1:ebit/Fp0a+FWu5j4JOmJEV8S8CzdTkAS77oDsiSqYWQ=
+cloud.google.com/go/websecurityscanner v1.5.0/go.mod h1:Y6xdCPy81yi0SQnDY1xdNTNpfY1oAgXUlcfN3B3eSng=
+cloud.google.com/go/workflows v1.6.0/go.mod h1:6t9F5h/unJz41YqfBmqSASJSXccBLtD1Vwf+KmJENM0=
+cloud.google.com/go/workflows v1.7.0/go.mod h1:JhSrZuVZWuiDfKEFxU0/F1PQjmpnpcoISEXH2bcHC3M=
+cloud.google.com/go/workflows v1.8.0/go.mod h1:ysGhmEajwZxGn1OhGOGKsTXc5PyxOc0vfKf5Af+to4M=
+cloud.google.com/go/workflows v1.9.0/go.mod h1:ZGkj1aFIOd9c8Gerkjjq7OW7I5+l6cSvT3ujaO/WwSA=
+cloud.google.com/go/workflows v1.10.0/go.mod h1:fZ8LmRmZQWacon9UCX1r/g/DfAXx5VcPALq2CxzdePw=
 dario.cat/mergo v1.0.0 h1:AGCNq9Evsj31mOgNPcLyXc+4PNABt905YmuqPYYpBWk=
 dario.cat/mergo v1.0.0/go.mod h1:uNxQE+84aUszobStD9th8a29P2fMDhsBdgRYvZOxGmk=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
+gioui.org v0.0.0-20210308172011-57750fc8a0a6/go.mod h1:RSH6KIUZ0p2xy5zHDxgAM4zumjgTw83q2ge/PI+yyw8=
+git.sr.ht/~sbinet/gg v0.3.1/go.mod h1:KGYtlADtqsqANL9ueOFkWymvzUvLMQllU5Ixo+8v3pc=
 github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 h1:L/gRVlceqvL25UVaW/CKtUDjefjrs0SPonmDGUVOYP0=
 github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161/go.mod h1:xomTg63KZ2rFqZQzSB4Vz2SUXa1BpHTVz9L5PTmPC4E=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/toml v1.3.2 h1:o7IhLm0Msx3BaB+n3Ag7L8EVlByGnpq14C4YWiu/gL8=
 github.com/BurntSushi/toml v1.3.2/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
+github.com/JohnCGriffin/overflow v0.0.0-20211019200055-46fa312c352c/go.mod h1:X0CRv0ky0k6m906ixxpzmDRLvX58TFUKS2eePweuyxk=
+github.com/OneOfOne/xxhash v1.2.2/go.mod h1:HSdplMjZKSmBqAxg5vPj2TmRDmfkzw+cTzAElWljhcU=
+github.com/ajstarks/deck v0.0.0-20200831202436-30c9fc6549a9/go.mod h1:JynElWSGnm/4RlzPXRlREEwqTHAN3T56Bv2ITsFT3gY=
+github.com/ajstarks/deck/generate v0.0.0-20210309230005-c3f852c02e19/go.mod h1:T13YZdzov6OU0A1+RfKZiZN9ca6VeKdBdyDV+BY97Tk=
+github.com/ajstarks/svgo v0.0.0-20180226025133-644b8db467af/go.mod h1:K08gAheRH3/J6wwsYMMT4xOr94bZjxIelGM0+d/wbFw=
+github.com/ajstarks/svgo v0.0.0-20211024235047-1546f124cd8b/go.mod h1:1KcenG0jGWcpt8ov532z81sp/kMMUG485J2InIOyADM=
+github.com/alecthomas/kingpin/v2 v2.3.1/go.mod h1:oYL5vtsvEHZGHxU7DMp32Dvx+qL+ptGn6lWaot2vCNE=
+github.com/alecthomas/kingpin/v2 v2.3.2/go.mod h1:0gyi0zQnjuFk8xrkNKamJoyUo382HRL7ATRpFZCw6tE=
+github.com/alecthomas/kingpin/v2 v2.4.0/go.mod h1:0gyi0zQnjuFk8xrkNKamJoyUo382HRL7ATRpFZCw6tE=
 github.com/alecthomas/template v0.0.0-20160405071501-a0175ee3bccc/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
 github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
 github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190717042225-c3de453c63f4/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
 github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d/go.mod h1:rBZYJk541a8SKzHPHnH3zbiI+7dagKZ0cgpgrD7Fyho=
+github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137/go.mod h1:OMCwj8VM1Kc9e19TLln2VL61YJF0x1XFtfdL4JdbSyE=
+github.com/andybalholm/brotli v1.0.4/go.mod h1:fO7iG3H7G2nSZ7m0zPUDn85XEX2GTukHGRSepvi9Eig=
+github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
+github.com/apache/arrow/go/v10 v10.0.1/go.mod h1:YvhnlEePVnBS4+0z3fhPfUy7W1Ikj0Ih0vcRo/gZ1M0=
+github.com/apache/arrow/go/v11 v11.0.0/go.mod h1:Eg5OsL5H+e299f7u5ssuXsuHQVEGC4xei5aX110hRiI=
+github.com/apache/thrift v0.16.0/go.mod h1:PHK3hniurgQaNMZYaCLEqXKsYK8upmhPbmdP2FXSqgU=
 github.com/armon/go-proxyproto v0.1.0 h1:TWWcSsjco7o2itn6r25/5AqKBiWmsiuzsUDLT/MTl7k=
 github.com/armon/go-proxyproto v0.1.0/go.mod h1:Xj90dce2VKbHzRAeiVQAMBtj4M5oidoXJ8lmgyW21mw=
 github.com/beorn7/perks v0.0.0-20180321164747-3a771d992973/go.mod h1:Dwedo/Wpr24TaqPxmxbtue+5NUziq4I4S80YR8gNf3Q=
@@ -52,15 +633,34 @@ github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM=
 github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6rlkpw=
 github.com/blang/semver/v4 v4.0.0 h1:1PFHFE6yCCTv8C1TeyNNarDzntLi7wMI5i/pzqYIsAM=
 github.com/blang/semver/v4 v4.0.0/go.mod h1:IbckMUScFkM3pff0VJDNKRiT6TG/YpiHIM2yvyW5YoQ=
+github.com/boombuler/barcode v1.0.0/go.mod h1:paBWMcWSl3LHKBqUq+rly7CNSldXjb2rDl3JlRe0mD8=
+github.com/boombuler/barcode v1.0.1/go.mod h1:paBWMcWSl3LHKBqUq+rly7CNSldXjb2rDl3JlRe0mD8=
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
+github.com/census-instrumentation/opencensus-proto v0.3.0/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
+github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
+github.com/cespare/xxhash v1.1.0/go.mod h1:XrSqR1VqqWfGrhpAt58auRo0WTKS1nRRg3ghfAqPWnc=
 github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
-github.com/cespare/xxhash/v2 v2.2.0 h1:DC2CZ1Ep5Y4k3ZQ899DldepgrayRUGE6BBZ/cd9Cj44=
+github.com/cespare/xxhash/v2 v2.1.2/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
 github.com/cespare/xxhash/v2 v2.2.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
+github.com/cespare/xxhash/v2 v2.3.0 h1:UL815xU9SqsFlibzuggzjXhog7bL6oX9BbNZnL2UFvs=
+github.com/cespare/xxhash/v2 v2.3.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
 github.com/chzyer/logex v1.1.10/go.mod h1:+Ywpsq7O8HXn0nuIou7OrIPyXbp3wmkHB+jjWRnGsAI=
 github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5PlCu98SY8svDHJxuZscDgtXS6KTTbou5AhLI=
 github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
 github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc=
+github.com/cncf/udpa/go v0.0.0-20200629203442-efcf912fb354/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
+github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
+github.com/cncf/udpa/go v0.0.0-20210930031921-04548b0d99d4/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
+github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
+github.com/cncf/xds/go v0.0.0-20210312221358-fbca930ec8ed/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20210805033703-aa0b78936158/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20211001041855-01bcc9b48dfe/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20220314180256-7f1daf1720fc/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20230105202645-06c439db220b/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20230310173818-32f1caf87195/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/coreos/go-systemd/v22 v22.5.0 h1:RrqgGjYQKalulkV8NGVIfkXQf6YYmOyiJKk8iXXhfZs=
 github.com/coreos/go-systemd/v22 v22.5.0/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
 github.com/cpuguy83/go-md2man/v2 v2.0.3/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
@@ -72,20 +672,35 @@ github.com/cyphar/filepath-securejoin v0.2.4/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxG
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815/go.mod h1:WwZ+bS3ebgob9U8Nd0kOddGdZWjyMGR8Wziv+TBNwSE=
+github.com/dustin/go-humanize v1.0.0/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25KnS6fMYU6eOk=
 github.com/eapache/channels v1.1.0 h1:F1taHcn7/F0i8DYqKXJnyhJcVpp2kgFcNePxXtnyu4k=
 github.com/eapache/channels v1.1.0/go.mod h1:jMm2qB5Ubtg9zLd+inMZd2/NUvXgzmWXsDaLyQIGfH0=
 github.com/eapache/queue v1.1.0 h1:YOEu7KNc61ntiQlcEeUIoDTJ2o8mQznoNvUhiigpIqc=
 github.com/eapache/queue v1.1.0/go.mod h1:6eCeP0CKFpHLu8blIFXhExK/dRa7WDZfr6jVFPTqq+I=
-github.com/emicklei/go-restful/v3 v3.11.3 h1:yagOQz/38xJmcNeZJtrUcKjkHRltIaIFXKWeG1SkWGE=
-github.com/emicklei/go-restful/v3 v3.11.3/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
+github.com/emicklei/go-restful/v3 v3.12.0 h1:y2DdzBAURM29NFF94q6RaY4vjIH1rtwDapwQtU84iWk=
+github.com/emicklei/go-restful/v3 v3.12.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=
+github.com/envoyproxy/go-control-plane v0.9.7/go.mod h1:cwu0lG7PUMfa9snN8LXBig5ynNVH9qI8YYLbd1fK2po=
+github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
+github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
+github.com/envoyproxy/go-control-plane v0.9.9-0.20210512163311-63b5d3c536b0/go.mod h1:hliV/p42l8fGbc6Y9bQ70uLwIvmJyVE5k4iMKlh8wCQ=
+github.com/envoyproxy/go-control-plane v0.9.10-0.20210907150352-cf90f659a021/go.mod h1:AFq3mo9L8Lqqiid3OhADV3RfLJnjiw63cSpi+fDTRC0=
+github.com/envoyproxy/go-control-plane v0.10.2-0.20220325020618-49ff273808a1/go.mod h1:KJwIaB5Mv44NWtYuAOFCVOjcI94vtpEz2JU/D2v6IjE=
+github.com/envoyproxy/go-control-plane v0.10.3/go.mod h1:fJJn/j26vwOu972OllsvAgJJM//w9BV6Fxbg2LuVd34=
+github.com/envoyproxy/go-control-plane v0.11.0/go.mod h1:VnHyVMpzcLvCFt9yUz1UnCwHLhwx1WguiVDV7pTG/tI=
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
+github.com/envoyproxy/protoc-gen-validate v0.6.7/go.mod h1:dyJXwwfPK2VSqiB9Klm1J6romD608Ba7Hij42vrOBCo=
+github.com/envoyproxy/protoc-gen-validate v0.9.1/go.mod h1:OKNgG7TCp5pF4d6XftA0++PMirau2/yoOwVac3AbF2w=
+github.com/envoyproxy/protoc-gen-validate v0.10.0/go.mod h1:DRjgyB0I43LtJapqN6NiRwroiAU2PaFuvk/vjgh61ss=
 github.com/evanphx/json-patch v5.9.0+incompatible h1:fBXyNpNMuTTDdquAq/uisOr2lShz4oaXpDTX2bLe7ls=
 github.com/evanphx/json-patch v5.9.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/evanphx/json-patch/v5 v5.9.0 h1:kcBlZQbplgElYIlo/n1hJbls2z/1awpXxpRi0/FOJfg=
 github.com/evanphx/json-patch/v5 v5.9.0/go.mod h1:VNkHZ/282BpEyt/tObQO8s5CMPmYYq14uClGH4abBuQ=
+github.com/fogleman/gg v1.2.1-0.20190220221249-0403632d5b90/go.mod h1:R/bRT+9gY/C5z7JzPU0zXsXHKM4/ayA+zqcVNZzPa1k=
+github.com/fogleman/gg v1.3.0/go.mod h1:R/bRT+9gY/C5z7JzPU0zXsXHKM4/ayA+zqcVNZzPa1k=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
 github.com/fsnotify/fsnotify v1.7.0 h1:8JEhPFa5W2WU7YfeZzPNqzMP6Lwt7L2715Ggo0nosvA=
@@ -93,39 +708,55 @@ github.com/fsnotify/fsnotify v1.7.0/go.mod h1:40Bi/Hjc2AVfZrqy+aj+yEI+/bRxZnMJyT
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
 github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa h1:RDBNVkRviHZtvDvId8XSGPu3rmpmSe+wKRcEWNgsfWU=
 github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
+github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
 github.com/go-errors/errors v1.5.1 h1:ZwEMSLRCapFLflTpT7NKaAc7ukJ8ZPEjzlxt8rPN8bk=
 github.com/go-errors/errors v1.5.1/go.mod h1:sIVyrIiJhuEF+Pj9Ebtd6P/rEYROXFi3BopGUQ5a5Og=
+github.com/go-fonts/dejavu v0.1.0/go.mod h1:4Wt4I4OU2Nq9asgDCteaAaWZOV24E+0/Pwo0gppep4g=
+github.com/go-fonts/latin-modern v0.2.0/go.mod h1:rQVLdDMK+mK1xscDwsqM5J8U2jrRa3T0ecnM9pNujks=
+github.com/go-fonts/liberation v0.1.1/go.mod h1:K6qoJYypsmfVjWg8KOVDQhLc8UDgIK2HYqyqAO9z7GY=
+github.com/go-fonts/liberation v0.2.0/go.mod h1:K6qoJYypsmfVjWg8KOVDQhLc8UDgIK2HYqyqAO9z7GY=
+github.com/go-fonts/stix v0.1.0/go.mod h1:w/c1f0ldAUlJmLBvlbkvVXLAD+tAMqobIIQpmnUIzUY=
 github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1/go.mod h1:vR7hzQXu2zJy9AVAgeJqvqgH9Q5CA+iKCZ2gyEVpxRU=
 github.com/go-gl/glfw/v3.3/glfw v0.0.0-20191125211704-12ad95a8df72/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8=
 github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8=
 github.com/go-kit/kit v0.8.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
 github.com/go-kit/kit v0.9.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
 github.com/go-kit/log v0.1.0/go.mod h1:zbhenjAZHb184qTLMA9ZjW7ThYL0H2mk7Q6pNt4vbaY=
+github.com/go-kit/log v0.2.0/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0=
+github.com/go-kit/log v0.2.1/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0=
+github.com/go-latex/latex v0.0.0-20210118124228-b3d85cf34e07/go.mod h1:CO1AlKB2CSIqUrmQPqA0gdRIlnLEY0gK5JGjh37zN5U=
+github.com/go-latex/latex v0.0.0-20210823091927-c0d11ff05a81/go.mod h1:SX0U8uGpxhq9o2S/CELCSUxEWWAuoCUcVCQWv7G2OCk=
 github.com/go-logfmt/logfmt v0.3.0/go.mod h1:Qt1PoO58o5twSAckw1HlFXLmHsOX5/0LbT9GBnD5lWE=
 github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V4qmtdjCk=
 github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A=
-github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
+github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
 github.com/go-logr/logr v1.4.1 h1:pKouT5E8xu9zeFC39JXRDukb6JFQPXM5p5I91188VAQ=
 github.com/go-logr/logr v1.4.1/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
 github.com/go-logr/zapr v1.3.0 h1:XGdV8XW8zdwFiwOA2Dryh1gj2KRQyOOoNmBy4EplIcQ=
 github.com/go-logr/zapr v1.3.0/go.mod h1:YKepepNBd1u/oyhd/yQmtjVXmm9uML4IXUgMOwR8/Gg=
-github.com/go-openapi/jsonpointer v0.20.2 h1:mQc3nmndL8ZBzStEo3JYF8wzmeWffDH4VbXz58sAx6Q=
-github.com/go-openapi/jsonpointer v0.20.2/go.mod h1:bHen+N0u1KEO3YlmqOjTT9Adn1RfD91Ar825/PuiRVs=
-github.com/go-openapi/jsonreference v0.20.4 h1:bKlDxQxQJgwpUSgOENiMPzCTBVuc7vTdXSSgNeAhojU=
-github.com/go-openapi/jsonreference v0.20.4/go.mod h1:5pZJyJP2MnYCpoeoMAql78cCHauHj0V9Lhc506VOpw4=
-github.com/go-openapi/swag v0.22.9 h1:XX2DssF+mQKM2DHsbgZK74y/zj4mo9I99+89xUmuZCE=
-github.com/go-openapi/swag v0.22.9/go.mod h1:3/OXnFfnMAwBD099SwYRk7GD3xOrr1iL7d/XNLXVVwE=
+github.com/go-openapi/jsonpointer v0.21.0 h1:YgdVicSA9vH5RiHs9TZW5oyafXZFc6+2Vc1rr/O9oNQ=
+github.com/go-openapi/jsonpointer v0.21.0/go.mod h1:IUyH9l/+uyhIYQ/PXVA41Rexl+kOkAPDdXEYns6fzUY=
+github.com/go-openapi/jsonreference v0.21.0 h1:Rs+Y7hSXT83Jacb7kFyjn4ijOuVGSvOdF2+tg1TRrwQ=
+github.com/go-openapi/jsonreference v0.21.0/go.mod h1:LmZmgsrTkVg9LG4EaHeY8cBDslNPMo06cago5JNLkm4=
+github.com/go-openapi/swag v0.23.0 h1:vsEVJDUo2hPJ2tu0/Xc+4noaxyEffXNIs3cOULZ+GrE=
+github.com/go-openapi/swag v0.23.0/go.mod h1:esZ8ITTYEsH1V2trKHjAN8Ai7xHb8RV+YSZ577vPjgQ=
+github.com/go-pdf/fpdf v0.5.0/go.mod h1:HzcnA+A23uwogo0tp9yU+l3V+KXhiESpt1PMayhOh5M=
+github.com/go-pdf/fpdf v0.6.0/go.mod h1:HzcnA+A23uwogo0tp9yU+l3V+KXhiESpt1PMayhOh5M=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
 github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
-github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 h1:tfuBGBXKqDEevZMzYi5KSi8KkcZtzBcTgAUUtapy0OI=
-github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572/go.mod h1:9Pwr4B2jHnOSGXyyzV8ROjYa2ojvAY6HCGYYfMoC3Ls=
+github.com/go-task/slim-sprig/v3 v3.0.0 h1:sUs3vkvUymDpBKi3qH1YSqBQk9+9D/8M2mN1vB6EwHI=
+github.com/go-task/slim-sprig/v3 v3.0.0/go.mod h1:W848ghGpv3Qj3dhTPRyJypKRiqCdHZiAzKg9hl15HA8=
+github.com/goccy/go-json v0.9.11/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/godbus/dbus/v5 v5.1.0 h1:4KLkAxT3aOY8Li4FRJe/KvhoNFFxo0m6fNuFUO8QJUk=
 github.com/godbus/dbus/v5 v5.1.0/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
+github.com/golang/freetype v0.0.0-20170609003504-e2365dfdc4a0/go.mod h1:E/TSTwGwJL78qG/PmXZO1EjYhfJinVAhrmmHX6Z8B9k=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
+github.com/golang/glog v1.0.0/go.mod h1:EWib/APOK0SL3dFbYqvxE3UYd8E6s1ouQ7iEp/0LWV4=
+github.com/golang/glog v1.1.0/go.mod h1:pfYeQZ3JWZoXTV5sFc986z3HTpwQs9At6P4ImfuP3NQ=
 github.com/golang/groupcache v0.0.0-20190702054246-869f871628b6/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20191227052852-215e87163ea7/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20200121045136-8c9f03a8e57e/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
@@ -138,6 +769,8 @@ github.com/golang/mock v1.4.0/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt
 github.com/golang/mock v1.4.1/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
 github.com/golang/mock v1.4.3/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
 github.com/golang/mock v1.4.4/go.mod h1:l3mdAwkq5BuhzHwde/uurv3sEJeZMXNpwsxVWU71h+4=
+github.com/golang/mock v1.5.0/go.mod h1:CWnOUgYIOo4TcNZ0wHX3YZCqsaM1I1Jvs6v3mP3KVu8=
+github.com/golang/mock v1.6.0/go.mod h1:p6yTPP+5HYm5mzsMV8JkE6ZKdX+/wYM6Hr+LicevLPs=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
@@ -153,9 +786,13 @@ github.com/golang/protobuf v1.4.1/go.mod h1:U8fpvMrcmy5pZrNK1lt4xCsGvpyWQ/VVv6QD
 github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.4.3/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
+github.com/golang/protobuf v1.5.1/go.mod h1:DopwsBzvsk0Fs44TXzsVbJyPhcCPeIwnvohx4u74HPM=
 github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
+github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/golang/protobuf v1.5.4 h1:i7eJL8qZTpSEXOPTxNKhASYpMn+8e5Q6AdndVa1dWek=
 github.com/golang/protobuf v1.5.4/go.mod h1:lnTiLA8Wa4RWRcIUkrtSVa5nRhsEGBg48fD6rSs7xps=
+github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
+github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7/go.mod h1:aii0r/K0ZnHv7G0KF7xy1v0A7s2Ljrb5byB7MO5p6TU=
 github.com/gomarkdown/markdown v0.0.0-20231222211730-1d6d20845b47 h1:k4Tw0nt6lwro3Uin8eqoET7MDA4JnT8YgbCjc/g5E3k=
 github.com/gomarkdown/markdown v0.0.0-20231222211730-1d6d20845b47/go.mod h1:JDGcbDT52eL4fju3sZ4TeHGsQwhG9nbDV21aMyhwPoA=
@@ -163,6 +800,7 @@ github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Z
 github.com/google/btree v1.0.0/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/btree v1.1.2 h1:xf4v41cLI2Z6FxbKm+8Bu+m8ifhj15JuZ9sa0jZCMUU=
 github.com/google/btree v1.1.2/go.mod h1:qOPhT0dTNdNzV6Z/lhRX0YXUafgPLFUh+gZMl761Gm4=
+github.com/google/flatbuffers v2.0.8+incompatible/go.mod h1:1AeVuKshWv4vARoZatz6mlQ0JxURH0Kv5+zNeJKJCa8=
 github.com/google/gnostic-models v0.6.8 h1:yo/ABAfM5IMRsS1VnXjTBvUb61tFIHozhlYvRgGre9I=
 github.com/google/gnostic-models v0.6.8/go.mod h1:5n7qKqH0f5wFt+aWF8CW6pZLLNOfYuF5OpfBSENuI8U=
 github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
@@ -172,18 +810,24 @@ github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/
 github.com/google/go-cmp v0.4.1/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.1/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.4/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.6/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.5.7/go.mod h1:n+brtR0CgQNWTVd5ZUFpTBC8YFBDLK/h/bpaJ8/DtOE=
+github.com/google/go-cmp v0.5.8/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/go-cmp v0.5.9/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
 github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
 github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/martian v2.1.0+incompatible/go.mod h1:9I4somxYTbIHy5NJKHRl3wXiIaQGbYVAs8BPL6v8lEs=
 github.com/google/martian/v3 v3.0.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
+github.com/google/martian/v3 v3.1.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
+github.com/google/martian/v3 v3.2.1/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
+github.com/google/martian/v3 v3.3.2/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
 github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20191218002539-d4f498aebedc/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
@@ -191,21 +835,58 @@ github.com/google/pprof v0.0.0-20200212024743-f11f1df84d12/go.mod h1:ZgVRPoUq/hf
 github.com/google/pprof v0.0.0-20200229191704-1ebb73c60ed3/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200430221834-fc25d7d30c6d/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
 github.com/google/pprof v0.0.0-20200708004538-1a94d8640e99/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20240225044709-fd706174c886 h1:JSJUTZTQT1Gzb2ROdAKOY3HwzBYcclS2GgumhMfHqjw=
-github.com/google/pprof v0.0.0-20240225044709-fd706174c886/go.mod h1:czg5+yv1E0ZGTi6S6vVK1mke0fV+FaUhNGcd6VRS9Ik=
+github.com/google/pprof v0.0.0-20201023163331-3e6fc7fc9c4c/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20201203190320-1bf35d6f28c2/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20201218002935-b9804c9f04c2/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210122040257-d980be63207e/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210226084205-cbba55b83ad5/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210601050228-01bbb1931b22/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210609004039-a478d1d731e9/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6 h1:k7nVchz72niMH6YLQNvHSdIE7iqsQxK1P41mySCvssg=
+github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6/go.mod h1:kf6iHlnVGwgKolg33glAes7Yg/8iWP8ukqeldJSO7jw=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
+github.com/google/s2a-go v0.1.0/go.mod h1:OJpEgntRZo8ugHpF9hkoLJbS5dSI20XZeXJ9JVywLlM=
+github.com/google/s2a-go v0.1.3/go.mod h1:Ej+mSEMGRnqRzjc7VtF+jdBwYG5fuJfiZ8ELkjEwM0A=
+github.com/google/s2a-go v0.1.4/go.mod h1:Ej+mSEMGRnqRzjc7VtF+jdBwYG5fuJfiZ8ELkjEwM0A=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
+github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/googleapis/enterprise-certificate-proxy v0.0.0-20220520183353-fd19c99a87aa/go.mod h1:17drOmN3MwGY7t0e+Ei9b45FFGA3fBs3x36SsCg1hq8=
+github.com/googleapis/enterprise-certificate-proxy v0.1.0/go.mod h1:17drOmN3MwGY7t0e+Ei9b45FFGA3fBs3x36SsCg1hq8=
+github.com/googleapis/enterprise-certificate-proxy v0.2.0/go.mod h1:8C0jb7/mgJe/9KK8Lm7X9ctZC2t60YyIpYEI16jx0Qg=
+github.com/googleapis/enterprise-certificate-proxy v0.2.1/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
+github.com/googleapis/enterprise-certificate-proxy v0.2.3/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
+github.com/googleapis/gax-go/v2 v2.1.0/go.mod h1:Q3nei7sK6ybPYH7twZdmQpAd1MKb7pfu6SK+H1/DsU0=
+github.com/googleapis/gax-go/v2 v2.1.1/go.mod h1:hddJymUZASv3XPyGkUpKj8pPO47Rmb0eJc8R6ouapiM=
+github.com/googleapis/gax-go/v2 v2.2.0/go.mod h1:as02EH8zWkzwUoLbBaFeQ+arQaj/OthfcblKl4IGNaM=
+github.com/googleapis/gax-go/v2 v2.3.0/go.mod h1:b8LNqSzNabLiUpXKkY7HAR5jr6bIT99EXz9pXxye9YM=
+github.com/googleapis/gax-go/v2 v2.4.0/go.mod h1:XOTVJ59hdnfJLIP/dh8n5CGryZR2LxK9wbMD5+iXC6c=
+github.com/googleapis/gax-go/v2 v2.5.1/go.mod h1:h6B0KMMFNtI2ddbGJn3T3ZbwkeT6yqEF02fYlzkUCyo=
+github.com/googleapis/gax-go/v2 v2.6.0/go.mod h1:1mjbznJAPHFpesgE5ucqfYEscaz5kMdcIDwU/6+DDoY=
+github.com/googleapis/gax-go/v2 v2.7.0/go.mod h1:TEop28CZZQ2y+c0VxMUmu1lV+fQx57QpBWsYpwqHJx8=
+github.com/googleapis/gax-go/v2 v2.7.1/go.mod h1:4orTrqY6hXxxaUL4LHIPl6lGo8vAE38/qKbhSAKP6QI=
+github.com/googleapis/gax-go/v2 v2.8.0/go.mod h1:4orTrqY6hXxxaUL4LHIPl6lGo8vAE38/qKbhSAKP6QI=
+github.com/googleapis/gax-go/v2 v2.10.0/go.mod h1:4UOEnMCrxsSqQ940WnTiD6qJ63le2ev3xfyagutxiPw=
+github.com/googleapis/gax-go/v2 v2.11.0/go.mod h1:DxmR61SGKkGLa2xigwuZIQpkCI2S5iydzRfb3peWZJI=
+github.com/googleapis/go-type-adapters v1.0.0/go.mod h1:zHW75FOG2aur7gAO2B+MLby+cLsWGBF62rFAi7WjWO4=
+github.com/googleapis/google-cloud-go-testing v0.0.0-20200911160855-bcd43fbb19e8/go.mod h1:dvDLG8qkwmyD9a/MJJN3XJcT3xFxOKAvTZGvuZmac9g=
 github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 h1:+ngKgrYPPJrOjhax5N+uePQ0Fh1Z7PheYoUI/0nzkPA=
 github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
+github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
+github.com/grpc-ecosystem/grpc-gateway/v2 v2.7.0/go.mod h1:hgWBS7lorOAVIJEQMi4ZsPv9hVvWI6+ch50m39Pf2Ks=
+github.com/grpc-ecosystem/grpc-gateway/v2 v2.11.3/go.mod h1:o//XUCC/F+yRGJoPO/VU0GSB0f8Nhgmxx0VIRUvaC0w=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
+github.com/iancoleman/strcase v0.2.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
 github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
+github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4=
 github.com/imdario/mergo v0.3.16/go.mod h1:WBLT9ZmE3lPoWsEzCh9LPo3TiwVN+ZKEjmz+hD27ysY=
 github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
@@ -222,13 +903,19 @@ github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024/go.mod h1
 github.com/jstemmer/go-junit-report v0.9.1/go.mod h1:Brl9GWCQeLvo8nXZwPNNblvFj/XSXhF0NWZEnDohbsk=
 github.com/julienschmidt/httprouter v1.2.0/go.mod h1:SYymIcj16QtmaHHD7aYtjjsJG7VTCxuUUipMqKk8s4w=
 github.com/julienschmidt/httprouter v1.3.0/go.mod h1:JR6WtHb+2LUe8TCKY3cZOxFyyO8IZAc4RVcycCCAKdM=
+github.com/jung-kurt/gofpdf v1.0.0/go.mod h1:7Id9E/uU8ce6rXgefFLlgrJj/GYY22cpxn+r32jIOes=
+github.com/jung-kurt/gofpdf v1.0.3-0.20190309125859-24315acbbda5/go.mod h1:7Id9E/uU8ce6rXgefFLlgrJj/GYY22cpxn+r32jIOes=
+github.com/kballard/go-shellquote v0.0.0-20180428030007-95032a82bc51/go.mod h1:CzGEWj7cYgsdH8dAjBGEr58BoE7ScuLd+fwFZ44+/x8=
 github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8=
 github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
+github.com/klauspost/asmfmt v1.3.2/go.mod h1:AG8TuvYojzulgDAMCnYn50l/5QV3Bs/tp6j0HLHbNSE=
+github.com/klauspost/compress v1.15.9/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU=
+github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
 github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
 github.com/konsorten/go-windows-terminal-sequences v1.0.3/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
+github.com/kr/fs v0.1.0/go.mod h1:FFnZGqtBN9Gxj7eW1uZ42v5BccTP0vu6NEaFoC2HwRg=
 github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515/go.mod h1:+0opPa2QZZtGFBFZlji/RkVcI2GknAs/DXo4wKdlNEc=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
-github.com/kr/pretty v0.2.0/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
 github.com/kr/pretty v0.2.1/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
 github.com/kr/pretty v0.3.0/go.mod h1:640gp4NfQd8pI5XOwp5fnNeVWj67G7CFk/SaSQn7NBk=
 github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
@@ -241,14 +928,23 @@ github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
+github.com/lyft/protoc-gen-star v0.6.0/go.mod h1:TGAoBVkt8w7MPG72TrKIu85MIdXwDuzJYeZuUPFPNwA=
+github.com/lyft/protoc-gen-star v0.6.1/go.mod h1:TGAoBVkt8w7MPG72TrKIu85MIdXwDuzJYeZuUPFPNwA=
+github.com/lyft/protoc-gen-star/v2 v2.0.1/go.mod h1:RcCdONR2ScXaYnQC5tUzxzlpA3WVYF7/opLeUgcQs/o=
 github.com/mailru/easyjson v0.7.7 h1:UGYAvKxe3sBsEDzO8ZeWOSlIQfWFlxbzLZe7hwFURr0=
 github.com/mailru/easyjson v0.7.7/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
 github.com/mattn/go-colorable v0.1.13 h1:fFA4WZxdEF4tXPZVKMLwD8oUnCTTo08duU7wxecdEvA=
 github.com/mattn/go-colorable v0.1.13/go.mod h1:7S9/ev0klgBDR4GtXTXX8a3vIGJpMovkB8vQcUbaXHg=
+github.com/mattn/go-isatty v0.0.12/go.mod h1:cbi8OIDigv2wuxKPP5vlRcQ1OAZbq2CE4Kysco4FUpU=
 github.com/mattn/go-isatty v0.0.16/go.mod h1:kYGgaQfpe5nmfYZH+SKPsOc2e4SrIfOl2e/yFXSvRLM=
 github.com/mattn/go-isatty v0.0.19 h1:JITubQf0MOLdlGRuRq+jtsDlekdYPia9ZFsB8h/APPA=
 github.com/mattn/go-isatty v0.0.19/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
+github.com/mattn/go-sqlite3 v1.14.14/go.mod h1:NyWgC/yNuGj7Q9rpYnZvas74GogHl5/Z4A/KQRfk6bU=
 github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
+github.com/matttproud/golang_protobuf_extensions v1.0.4/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
+github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0/go.mod h1:QUyp042oQthUoa9bqDv0ER0wrtXnBruoNd7aNjkbP+k=
+github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8/go.mod h1:mC1jAcsrzbxHt8iiaC+zU4b1ylILSosueou12R++wfY=
+github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3/go.mod h1:RagcQ7I8IeTMnF8JTXieKnO4Z6JCsikNEzj0DwauVzE=
 github.com/mitchellh/go-ps v1.0.0 h1:i6ampVEEF4wQFF+bkYfwYgY+F/uYJDktmvLPf7qIgjc=
 github.com/mitchellh/go-ps v1.0.0/go.mod h1:J4lOc8z8yJs6vUwklHw2XEIiT4z4C40KtWVN3nvg8Pg=
 github.com/mitchellh/hashstructure/v2 v2.0.2 h1:vGKWl0YJqUNxE8d+h8f6NJLcCJrgbhC4NcD46KavDd4=
@@ -279,8 +975,8 @@ github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f/go.mod h1:qRW
 github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65/go.mod h1:Tx6UMSMyIsjLG/VU/F6xA1+0XI+/f9o1dGJnf1l+bPg=
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 h1:t4WWQ9I797y7QUgeEjeXnVb+oYuEDQc6gLvrZJTYo94=
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833/go.mod h1:0CznHmXSjMEqs5Tezj/w2emQoM41wzYM9KpDKUHPYag=
-github.com/ncabatoff/process-exporter v0.7.10 h1:+Ere7+3se6QqP54gg7aBRagWcL8bq3u5zNi/GRSWeKQ=
-github.com/ncabatoff/process-exporter v0.7.10/go.mod h1:DHZRZjqxw9LCOpLlX0DjBuyn6d5plh41Jv6Tmttj7Ek=
+github.com/ncabatoff/process-exporter v0.7.11 h1:BEKcgOZCa0h4jvBzTUTX0oPyEW+Zhy4JL6KKDnySEfg=
+github.com/ncabatoff/process-exporter v0.7.11/go.mod h1:A2ThOqSI56jai50qiZ7EOJsWGWM6n1ties0wSJxvRlo=
 github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
 github.com/nxadm/tail v1.4.8/go.mod h1:+ncqLTQzXmGhMZNUePPaPqPvBxHAIsmXswZKocGu+AU=
@@ -288,57 +984,88 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.17.1 h1:V++EzdbhI4ZV4ev0UTIj0PzhzOcReJFyJaLjtSF55M8=
-github.com/onsi/ginkgo/v2 v2.17.1/go.mod h1:llBI3WDLL9Z6taip6f33H76YcWtJv+7R3HigUjbIBOs=
+github.com/onsi/ginkgo/v2 v2.17.2 h1:7eMhcy3GimbsA3hEnVKdw/PQM9XN9krpKVXsZdph0/g=
+github.com/onsi/ginkgo/v2 v2.17.2/go.mod h1:nP2DPOQoNsQmsVyv5rDA8JkXQoCs6goXIvr/PRJ1eCc=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.31.0 h1:54UJxxj6cPInHS3a35wm6BK/F9nHYueZ1NVujHDrnXE=
-github.com/onsi/gomega v1.31.0/go.mod h1:DW9aCi7U6Yi40wNVAvT6kzFnEVEI5n3DloYBiKiT6zk=
+github.com/onsi/gomega v1.33.1 h1:dsYjIxxSR755MDmKVsaFQTE22ChNBcuuTWgkUDSubOk=
+github.com/onsi/gomega v1.33.1/go.mod h1:U4R44UsT+9eLIaYRB2a5qajjtQYn0hauxvRm16AVYg0=
 github.com/opencontainers/runc v1.1.12 h1:BOIssBaW1La0/qbNZHXOOa71dZfZEQOzW7dqQf3phss=
 github.com/opencontainers/runc v1.1.12/go.mod h1:S+lQwSfncpBha7XTy/5lBwWgm5+y5Ma/O44Ekby9FK8=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
 github.com/opencontainers/runtime-spec v1.2.0/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
+github.com/phpdave11/gofpdf v1.4.2/go.mod h1:zpO6xFn9yxo3YLyMvW8HcKWVdbNqgIfOOp2dXMnm1mY=
+github.com/phpdave11/gofpdi v1.0.12/go.mod h1:vBmVV0Do6hSBHC8uKUQ71JGW+ZGQq74llk/7bXwjDoI=
+github.com/phpdave11/gofpdi v1.0.13/go.mod h1:vBmVV0Do6hSBHC8uKUQ71JGW+ZGQq74llk/7bXwjDoI=
+github.com/pierrec/lz4/v4 v4.1.15/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4=
 github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
 github.com/pkg/errors v0.8.0/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkg/errors v0.8.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
+github.com/pkg/sftp v1.10.1/go.mod h1:lYOWFsE0bwd1+KfKJaKeuokY15vzFx25BLbzYYoAxZI=
+github.com/pkg/sftp v1.13.1/go.mod h1:3HaPG6Dq1ILlpPZRO0HVMrsydcdLt6HRDccSgb87qRg=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXPKyh/dDVn+NZz0KFw=
 github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
 github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
 github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
+github.com/prometheus/client_golang v1.12.1/go.mod h1:3Z9XVyYiZYEO+YQWt3RD2R3jrbd179Rt297l4aS6nDY=
+github.com/prometheus/client_golang v1.14.0/go.mod h1:8vpkKitgIVNcqrRBWh1C4TIUQgYNtG/XQE4E/Zae36Y=
+github.com/prometheus/client_golang v1.15.1/go.mod h1:e9yaBhRPU2pPNsZwE+JdQl0KEt1N9XgF6zxWmaC0xOk=
+github.com/prometheus/client_golang v1.17.0/go.mod h1:VeL+gMmOAxkS2IqfCq0ZmHSL+LjWfWDUmp1mBz9JgUY=
+github.com/prometheus/client_golang v1.18.0/go.mod h1:T+GXkCk5wSJyOqMIzVgvvjFDlkOQntgjkJWKrN5txjA=
 github.com/prometheus/client_golang v1.19.0 h1:ygXvpU1AoN1MhdzckN+PyD9QJOSD4x7kmXYlnfbA6JU=
 github.com/prometheus/client_golang v1.19.0/go.mod h1:ZRM9uEAypZakd+q/x7+gmsvXdURP+DABIEIjnmDdp+k=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
+github.com/prometheus/client_model v0.3.0/go.mod h1:LDGWKZIo7rky3hgvBe+caln+Dr3dPggB5dvjtD7w9+w=
+github.com/prometheus/client_model v0.4.0/go.mod h1:oMQmHW1/JoDwqLtg57MGgP/Fb1CJEYF2imWWhWtMkYU=
+github.com/prometheus/client_model v0.4.1-0.20230718164431-9a2bf3000d16/go.mod h1:oMQmHW1/JoDwqLtg57MGgP/Fb1CJEYF2imWWhWtMkYU=
+github.com/prometheus/client_model v0.5.0/go.mod h1:dTiFglRmd66nLR9Pv9f0mZi7B7fk5Pm3gvsjB5tr+kI=
+github.com/prometheus/client_model v0.6.0/go.mod h1:NTQHnmxFpouOD0DpvP4XujX3CdOAGQPoaGhyTchlyt8=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
 github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
 github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
 github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
 github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
-github.com/prometheus/common v0.29.0/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
+github.com/prometheus/common v0.32.1/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
+github.com/prometheus/common v0.37.0/go.mod h1:phzohg0JFMnBEFGxTDbfu3QyL5GI8gTQJFhYO5B3mfA=
+github.com/prometheus/common v0.42.0/go.mod h1:xBwqVerjNdUDjgODMpudtOMwlOwf2SaTr1yjz4b7Zbc=
+github.com/prometheus/common v0.44.0/go.mod h1:ofAIvZbQ1e/nugmZGz4/qCb9Ap1VoSTIO7x0VV9VvuY=
+github.com/prometheus/common v0.45.0/go.mod h1:YJmSTw9BoKxJplESWWxlbyttQR4uaEcGyv9MZjVOJsY=
+github.com/prometheus/common v0.48.0/go.mod h1:0/KsvlIEfPQCQ5I2iNSAWKPZziNCvRs5EC6ILDTlAPc=
+github.com/prometheus/common v0.52.3/go.mod h1:BrxBKv3FWBIGXw89Mg1AeBq7FSyRzXWI3l3e7W3RN5U=
 github.com/prometheus/common v0.53.0 h1:U2pL9w9nmJwJDa4qqLQ3ZaePJ6ZTwt7cMD3AG3+aLCE=
 github.com/prometheus/common v0.53.0/go.mod h1:BrxBKv3FWBIGXw89Mg1AeBq7FSyRzXWI3l3e7W3RN5U=
-github.com/prometheus/exporter-toolkit v0.7.0/go.mod h1:ZUBIj498ePooX9t/2xtDjeQYwvRpiPP2lh5u4iblj2g=
+github.com/prometheus/exporter-toolkit v0.11.0/go.mod h1:BVnENhnNecpwoTLiABx7mrPB/OLRIgN74qlQbV+FK1Q=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
 github.com/prometheus/procfs v0.1.3/go.mod h1:lV6e/gmhEcM9IjHGsFOCxxuZ+z1YqCvr4OA4YeYWdaU=
 github.com/prometheus/procfs v0.6.0/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
 github.com/prometheus/procfs v0.7.3/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
-github.com/prometheus/procfs v0.12.0 h1:jluTpSng7V9hY0O2R9DzzJHYb2xULk9VTR1V1R/k6Bo=
+github.com/prometheus/procfs v0.8.0/go.mod h1:z7EfXMXOkbkqb9IINtpCn86r/to3BnA0uaxHdg830/4=
+github.com/prometheus/procfs v0.9.0/go.mod h1:+pB4zwohETzFnmlpe6yd2lSc+0/46IYZRB/chUwxUZY=
+github.com/prometheus/procfs v0.11.1/go.mod h1:eesXgaPo1q7lBpVMoMy0ZOFTth9hBn4W/y0/p/ScXhY=
 github.com/prometheus/procfs v0.12.0/go.mod h1:pcuDEFsWDnvcgNzo4EEweacyhjeA9Zk3cnaOZAZEfOo=
+github.com/prometheus/procfs v0.13.0 h1:GqzLlQyfsPbaEHaQkO7tbDlriv/4o5Hudv6OXHGKX7o=
+github.com/prometheus/procfs v0.13.0/go.mod h1:cd4PFCR54QLnGKPaKGA6l+cfuNXtht43ZKY6tow0Y1g=
+github.com/remyoudompheng/bigfft v0.0.0-20200410134404-eec4a21b6bb0/go.mod h1:qqbHyh8v60DhA7CoWK5oRCqLrMHRGoxYCSS9EjAz6Eo=
+github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
 github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTEfhy4qGm1nDQc=
-github.com/rogpeppe/go-internal v1.8.0/go.mod h1:WmiCO8CzOY8rg0OYDC4/i/2WRWAB6poM+XZ2dLUbcbE=
+github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
+github.com/rogpeppe/go-internal v1.10.0/go.mod h1:UQnix2H7Ngw/k4C5ijL5+65zddjncjaFoBhdsK/akog=
 github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
 github.com/rogpeppe/go-internal v1.11.0/go.mod h1:ddIwULY96R17DhadqLgMfk9H9tvdUzkipdSkR5nkCZA=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
+github.com/ruudk/golang-pdf417 v0.0.0-20181029194003-1af4ab5afa58/go.mod h1:6lfFZQK844Gfx8o5WFuvpxWRwnSoipWe/p622j1v06w=
+github.com/ruudk/golang-pdf417 v0.0.0-20201230142125-a7e3863a1245/go.mod h1:pQAZKsJ8yyVxGRWYNEm9oFB8ieLgKFnamEyDmSA0BRk=
 github.com/sergi/go-diff v1.3.1 h1:xkr+Oxo4BOQKmkn/B9eMK0g5Kg/983T9DqqPHwYqD+8=
 github.com/sergi/go-diff v1.3.1/go.mod h1:aMJSSKb2lpPvRNec0+w3fl7LP9IOFzdc9Pa4NFbPK1I=
 github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
@@ -346,12 +1073,18 @@ github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6Mwd
 github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
 github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ=
 github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
+github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
+github.com/spf13/afero v1.3.3/go.mod h1:5KUK8ByomD5Ti5Artl0RtHeI5pTF7MIDuXL3yY520V4=
+github.com/spf13/afero v1.6.0/go.mod h1:Ai8FlHk4v/PARR026UzYexafAt9roJ7LcLMAmO6Z93I=
+github.com/spf13/afero v1.9.2/go.mod h1:iUV7ddyEEZPO5gA3zD4fJt6iStLlL+Lg4m2cihcDf8Y=
 github.com/spf13/cobra v1.8.0 h1:7aJaZx1B85qltLMc546zn58BxxfZdR/W22ej9CFoEf0=
 github.com/spf13/cobra v1.8.0/go.mod h1:WXLWApfZ71AjXPya3WOlMsY9yMs7YeiHhFVlvLyhcho=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
+github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
+github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
 github.com/stretchr/objx v0.5.2 h1:xuMeJ0Sdp5ZMRXx/aWO6RZxdr3beISkG5/G/aIRr3pY=
 github.com/stretchr/objx v0.5.2/go.mod h1:FRsXN1f5AsAjCGJKqEizvkpNtU+EGNCLh3NxZ/8L+MA=
 github.com/stretchr/testify v1.1.3/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
@@ -361,9 +1094,15 @@ github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81P
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
+github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
+github.com/stretchr/testify v1.8.2/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
 github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
+github.com/xhit/go-str2duration v1.2.0/go.mod h1:3cPSlfZlUHVlneIVfePFWcJZsuwf+P1v2SRTV4cUmp4=
+github.com/xhit/go-str2duration/v2 v2.1.0/go.mod h1:ohY8p+0f07DiV6Em5LKB0s2YpLtXVyJfNt1+BlmyAsU=
 github.com/xlab/treeprint v1.2.0 h1:HzHnuAF1plUN2zGlAFHbSQP2qJ0ZAD3XF5XD7OesXRQ=
 github.com/xlab/treeprint v1.2.0/go.mod h1:gj5Gd3gPdKtR1ikdDK6fnFLdmIS0X30kTTuNd/WEJu0=
 github.com/yudai/gojsondiff v1.0.0 h1:27cbfqXLVEJ1o8I6v3y9lg8Ydm53EKqHXAOMxEGlCOA=
@@ -376,47 +1115,85 @@ github.com/yuin/goldmark v1.1.25/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9de
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.1.32/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
+github.com/yuin/goldmark v1.3.5/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
+github.com/yuin/goldmark v1.4.1/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
 github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
 github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30 h1:rzHvkiukOVYcf840FqAsHqBMhfLofvQIxWtczkGRklU=
 github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30/go.mod h1:/Hzu8ych2oXCs1iNI+MeASyFzWTncQ6nlu/wgqbqC2A=
+github.com/zeebo/assert v1.3.0/go.mod h1:Pq9JiuJQpG8JLJdtkwrJESF0Foym2/D9XMU5ciN/wJ0=
+github.com/zeebo/xxh3 v1.0.2/go.mod h1:5NWz9Sef7zIDm2JHfFlcQvNekmcEl9ekUZQQKCYaDcA=
 go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
 go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8=
 go.opencensus.io v0.22.2/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
 go.opencensus.io v0.22.3/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
 go.opencensus.io v0.22.4/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
+go.opencensus.io v0.22.5/go.mod h1:5pWMHQbX5EPX2/62yrJeAkowc+lfs/XD7Uxpq3pI6kk=
+go.opencensus.io v0.23.0/go.mod h1:XItmlyltB5F7CS4xOC1DcqMoFqwtC6OG2xF7mCv7P7E=
+go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo=
+go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI=
+go.opentelemetry.io/proto/otlp v0.15.0/go.mod h1:H7XAot3MsfNsj7EXtrA2q5xSNQ10UqI405h3+duxN4U=
+go.opentelemetry.io/proto/otlp v0.19.0/go.mod h1:H7XAot3MsfNsj7EXtrA2q5xSNQ10UqI405h3+duxN4U=
 go.starlark.net v0.0.0-20240123142251-f86470692795 h1:LmbG8Pq7KDGkglKVn8VpZOZj6vb9b8nKEGcg9l03epM=
 go.starlark.net v0.0.0-20240123142251-f86470692795/go.mod h1:LcLNIzVOMp4oV+uusnpk+VU+SzXaJakUuBjoCSWH5dM=
 go.uber.org/goleak v1.3.0 h1:2K3zAYmnTNqV73imy9J1T3WC+gmCePx2hEGkimedGto=
 go.uber.org/goleak v1.3.0/go.mod h1:CoHD4mav9JJNrW/WLlf7HGZPjdw8EucARQHekz1X6bE=
 go.uber.org/multierr v1.11.0 h1:blXXJkSxSSfBVBlC76pxqeO+LN3aDfLQo+309xJstO0=
 go.uber.org/multierr v1.11.0/go.mod h1:20+QtiLqy0Nd6FdQB9TLXag12DsQkrbs3htMFfDN80Y=
-go.uber.org/zap v1.26.0 h1:sI7k6L95XOKS281NhVKOFCUNIvv9e0w4BF8N3u+tCRo=
-go.uber.org/zap v1.26.0/go.mod h1:dtElttAiwGvoJ/vj4IwHBS/gXsEu/pZ50mUIRWuG0so=
+go.uber.org/zap v1.27.0 h1:aJMhYGrd5QSmlpLMr2MftRKl7t8J8PTZPA732ud/XR8=
+go.uber.org/zap v1.27.0/go.mod h1:GB2qFLM7cTU87MWRP2mPIjqfIDnGu+VIO4V/SdhGo2E=
 golang.org/dl v0.0.0-20190829154251-82a15e2f2ead/go.mod h1:IUMfjQLJQd4UTqG1Z90tenwKoCX93Gn3MAQJMOSBsDQ=
 golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20190510104115-cbcb75029529/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
+golang.org/x/crypto v0.0.0-20190820162420-60c769a6c586/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.0.0-20210616213533-5ff15b29337e/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/crypto v0.0.0-20210421170649-83a5a9bb288b/go.mod h1:T9bdIzuCu7OtxOm1hfPfRQxPLYneinmdGuTeoZ9dtd4=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/crypto v0.0.0-20211108221036-ceb1ce70b4fa/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/crypto v0.0.0-20220314234659-1baeb1ce4c0b/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
+golang.org/x/crypto v0.1.0/go.mod h1:RecgLatLF4+eUMCP1PoPZQb+cVrJcOPbHkTkbkB9sbw=
+golang.org/x/crypto v0.7.0/go.mod h1:pYwdfH91IfpZVANVyUOhSIPZaFoJGxTFbZhFTx+dXZU=
+golang.org/x/crypto v0.9.0/go.mod h1:yrmDGqONDYtNj3tH8X9dzUun2m2lzPa9ngI6/RUPGR0=
+golang.org/x/crypto v0.13.0/go.mod h1:y6Z2r+Rw4iayiXXAIxJIDAJ1zMW4yaTpebo8fPOliYc=
+golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4=
+golang.org/x/crypto v0.16.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq4=
+golang.org/x/crypto v0.18.0/go.mod h1:R0j02AL6hcrfOiy9T4ZYp/rcWeMxM3L6QYxlOuEG1mg=
+golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU=
+golang.org/x/crypto v0.21.0/go.mod h1:0BP7YvVV9gBbVKyeTG0Gyn+gZm94bibOW5BjDEYAOMs=
 golang.org/x/crypto v0.22.0 h1:g1v0xeRhjcugydODzvb3mEM9SQ0HGp9s/nh3COQ/C30=
 golang.org/x/crypto v0.22.0/go.mod h1:vr6Su+7cTlO45qkww3VDJlzDn0ctJvRgYbC2NvXHt+M=
+golang.org/x/exp v0.0.0-20180321215751-8460e604b9de/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
+golang.org/x/exp v0.0.0-20180807140117-3d87b88a115f/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
+golang.org/x/exp v0.0.0-20190125153040-c74c464bbbf2/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
 golang.org/x/exp v0.0.0-20190829153037-c13cbed26979/go.mod h1:86+5VVa7VpoJ4kLfm080zCjGlMRFzhUhsZKEZO7MGek=
+golang.org/x/exp v0.0.0-20191002040644-a1355ae1e2c3/go.mod h1:NOZ3BPKG0ec/BKJQgnvsSFpcKLM5xXVWnvZS97DWHgE=
 golang.org/x/exp v0.0.0-20191030013958-a1ab85dbe136/go.mod h1:JXzH8nQsPlswgeRAPE3MuO9GYsAcnJvJ4vnMwN/5qkY=
 golang.org/x/exp v0.0.0-20191129062945-2f5052295587/go.mod h1:2RIsYlXP63K8oxa1u096TMicItID8zy7Y6sNkU49FU4=
 golang.org/x/exp v0.0.0-20191227195350-da58074b4299/go.mod h1:2RIsYlXP63K8oxa1u096TMicItID8zy7Y6sNkU49FU4=
 golang.org/x/exp v0.0.0-20200119233911-0405dc783f0a/go.mod h1:2RIsYlXP63K8oxa1u096TMicItID8zy7Y6sNkU49FU4=
 golang.org/x/exp v0.0.0-20200207192155-f17229e696bd/go.mod h1:J/WKrq2StrnmMY6+EHIKF9dgMWnmCNThgcyBT1FY9mM=
 golang.org/x/exp v0.0.0-20200224162631-6cc2880d07d6/go.mod h1:3jZMyOhIsHpP37uCMkUooju7aAi5cS1Q23tOzKc+0MU=
-golang.org/x/exp v0.0.0-20220722155223-a9213eeb770e h1:+WEEuIdZHnUeJJmEUjyYC2gfUMj69yZXw17EnHg/otA=
-golang.org/x/exp v0.0.0-20220722155223-a9213eeb770e/go.mod h1:Kr81I6Kryrl9sr8s2FK3vxD90NdsKWRuOIl2O4CvYbA=
+golang.org/x/exp v0.0.0-20220827204233-334a2380cb91/go.mod h1:cyybsKvd6eL0RnXn6p/Grxp8F5bW7iYuBgsNCOHpMYE=
+golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f h1:99ci1mjWVBWwJiEKYY6jWa4d2nTQVIEhZIptnrVb1XY=
+golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f/go.mod h1:/lliqkxwWAhPjf5oSOIJup2XcqJaw8RGS6k3TGEc7GI=
+golang.org/x/image v0.0.0-20180708004352-c73c2afc3b81/go.mod h1:ux5Hcp/YLpHSI86hEcLt0YII63i6oz57MZXIpbrjZUs=
 golang.org/x/image v0.0.0-20190227222117-0694c2d4d067/go.mod h1:kZ7UVZpmo3dzQBMxlp+ypCbDeSB+sBbTgSJuh5dn5js=
 golang.org/x/image v0.0.0-20190802002840-cff245a6509b/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
+golang.org/x/image v0.0.0-20190910094157-69e4b8554b2a/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
+golang.org/x/image v0.0.0-20200119044424-58c23975cae1/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
+golang.org/x/image v0.0.0-20200430140353-33d19683fad8/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
+golang.org/x/image v0.0.0-20200618115811-c13761719519/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
+golang.org/x/image v0.0.0-20201208152932-35266b937fa6/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
+golang.org/x/image v0.0.0-20210216034530-4410531fe030/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
+golang.org/x/image v0.0.0-20210607152325-775e3b0c77b9/go.mod h1:023OzeP/+EPmXeapQh35lcL3II3LrY8Ic+EFFKVhULM=
+golang.org/x/image v0.0.0-20210628002857-a66eb6448b8d/go.mod h1:023OzeP/+EPmXeapQh35lcL3II3LrY8Ic+EFFKVhULM=
+golang.org/x/image v0.0.0-20211028202545-6944b10bf410/go.mod h1:023OzeP/+EPmXeapQh35lcL3II3LrY8Ic+EFFKVhULM=
+golang.org/x/image v0.0.0-20220302094943-723b81ca9867/go.mod h1:023OzeP/+EPmXeapQh35lcL3II3LrY8Ic+EFFKVhULM=
 golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
 golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU=
 golang.org/x/lint v0.0.0-20190301231843-5614ed5bae6f/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
@@ -427,6 +1204,8 @@ golang.org/x/lint v0.0.0-20190930215403-16217165b5de/go.mod h1:6SW0HCj/g11FgYtHl
 golang.org/x/lint v0.0.0-20191125180803-fdd1cda4f05f/go.mod h1:5qLYkcX4OjUUV8bRuDixDT3tpyyb+LUpUlRWLxfhWrs=
 golang.org/x/lint v0.0.0-20200130185559-910be7a94367/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
 golang.org/x/lint v0.0.0-20200302205851-738671d3881b/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
+golang.org/x/lint v0.0.0-20201208152925-83fdc39ff7b5/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
+golang.org/x/lint v0.0.0-20210508222113-6edffad5e616/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
 golang.org/x/mobile v0.0.0-20190312151609-d3739f865fa6/go.mod h1:z+o9i4GpDbdi3rU15maQ/Ox0txvL9dWGYEHz965HBQE=
 golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028/go.mod h1:E/iHnbuqvinMTCcRqshq8CkpyQDoeVncDDYHnLhea+o=
 golang.org/x/mod v0.0.0-20190513183733-4bf6d317e70e/go.mod h1:mXi4GBBbnImb6dmsKGUJ2LatrhH/nqhxcFungHvyanc=
@@ -435,9 +1214,17 @@ golang.org/x/mod v0.1.1-0.20191105210325-c90efee705ee/go.mod h1:QqPTAvyqsEbceGzB
 golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.4.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
+golang.org/x/mod v0.5.0/go.mod h1:5OXOZSfqPIIbmVBIIKWRFfZjPR0E5r58TLhUjH0a2Ro=
+golang.org/x/mod v0.5.1/go.mod h1:5OXOZSfqPIIbmVBIIKWRFfZjPR0E5r58TLhUjH0a2Ro=
 golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
-golang.org/x/mod v0.15.0 h1:SernR4v+D55NyBH2QiEQrlBAnj1ECL6AGrA5+dPaMY8=
-golang.org/x/mod v0.15.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
+golang.org/x/mod v0.7.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/mod v0.9.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/mod v0.17.0 h1:zY54UmvipHiNd+pm+m0x9KhZ9hl1/7QNMyxXbc6ICqA=
+golang.org/x/mod v0.17.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -469,19 +1256,82 @@ golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81R
 golang.org/x/net v0.0.0-20200707034311-ab3426394381/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20201031054903-ff519b6c9102/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
+golang.org/x/net v0.0.0-20201209123823-ac852fbbde11/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
+golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
+golang.org/x/net v0.0.0-20210119194325-5f4716e94777/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
+golang.org/x/net v0.0.0-20210316092652-d523dce5a7f4/go.mod h1:RBQZq4jEuRlivfhVLdyRGr576XBO4/greRjx4P4O3yc=
+golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
+golang.org/x/net v0.0.0-20210503060351-7fd8e65b6420/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
 golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20210813160813-60bc85c4be6d/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20211015210444-4f30a5c0130f/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
+golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
+golang.org/x/net v0.0.0-20220225172249-27dd8689420f/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
+golang.org/x/net v0.0.0-20220325170049-de3da57026de/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
+golang.org/x/net v0.0.0-20220412020605-290c469a71a5/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
+golang.org/x/net v0.0.0-20220425223048-2871e0cb64e4/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
+golang.org/x/net v0.0.0-20220607020251-c690dde0001d/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
+golang.org/x/net v0.0.0-20220617184016-355a448f1bc9/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
+golang.org/x/net v0.0.0-20220624214902-1bab6f366d9e/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.23.0 h1:7EYJ93RZ9vYSZAIb2x3lnuvqO5zneoD6IvWjuhfxjTs=
-golang.org/x/net v0.23.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
+golang.org/x/net v0.0.0-20220909164309-bea034e7d591/go.mod h1:YDH+HFinaLZZlnHAfSS6ZXJJ9M9t4Dl22yv3iI2vPwk=
+golang.org/x/net v0.0.0-20221012135044-0b7e1fb9d458/go.mod h1:YDH+HFinaLZZlnHAfSS6ZXJJ9M9t4Dl22yv3iI2vPwk=
+golang.org/x/net v0.0.0-20221014081412-f15817d10f9b/go.mod h1:YDH+HFinaLZZlnHAfSS6ZXJJ9M9t4Dl22yv3iI2vPwk=
+golang.org/x/net v0.1.0/go.mod h1:Cx3nUiGt4eDBEyega/BKRp+/AlGL8hYe7U9odMt2Cco=
+golang.org/x/net v0.2.0/go.mod h1:KqCZLdyyvdV855qA2rE3GC2aiw5xGR5TEjj8smXukLY=
+golang.org/x/net v0.4.0/go.mod h1:MBQ8lrhLObU/6UmLb4fmbmk5OcyYmqtbGd/9yIeKjEE=
+golang.org/x/net v0.5.0/go.mod h1:DivGGAXEgPSlEBzxGzZI+ZLohi+xUj054jfeKui00ws=
+golang.org/x/net v0.6.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
+golang.org/x/net v0.7.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
+golang.org/x/net v0.8.0/go.mod h1:QVkue5JL9kW//ek3r6jTKnTFis1tRmNAW2P1shuFdJc=
+golang.org/x/net v0.9.0/go.mod h1:d48xBJpPfHeWQsugry2m+kC02ZBRGRgulfHnEXEuWns=
+golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg=
+golang.org/x/net v0.15.0/go.mod h1:idbUs1IY1+zTqbi8yxTbhexhEEk5ur9LInksu6HrEpk=
+golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
+golang.org/x/net v0.20.0/go.mod h1:z8BVo6PvndSri0LbOE3hAn0apkU+1YvI6E70E9jsnvY=
+golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
+golang.org/x/net v0.22.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
+golang.org/x/net v0.24.0 h1:1PcaxkF854Fu3+lvBIx5SYn9wRlBzzcnHZSiaFFAb0w=
+golang.org/x/net v0.24.0/go.mod h1:2Q7sJY5mzlzWjKtYUEXSlBWCdyaioyXzRB2RtU8KVE8=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
+golang.org/x/oauth2 v0.0.0-20200902213428-5d25da1a8d43/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20201109201403-9fd604954f58/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20201208152858-08078c50e5b5/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210218202405-ba52d332ba99/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210220000619-9bb904979d93/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210313182246-cd4f82c27b84/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
 golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.18.0 h1:09qnuIAgzdx1XplqJvW6CQqMCtGZykZWcXzPMPUusvI=
+golang.org/x/oauth2 v0.0.0-20210628180205-a41e5a781914/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20211104180415-d3ed0bb246c8/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
+golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
+golang.org/x/oauth2 v0.0.0-20220309155454-6242fa91716a/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
+golang.org/x/oauth2 v0.0.0-20220411215720-9780585627b5/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
+golang.org/x/oauth2 v0.0.0-20220608161450-d0670ef3b1eb/go.mod h1:jaDAt6Dkxork7LmZnYtzbRWj0W47D86a3TGe0YHBvmE=
+golang.org/x/oauth2 v0.0.0-20220622183110-fd043fe589d2/go.mod h1:jaDAt6Dkxork7LmZnYtzbRWj0W47D86a3TGe0YHBvmE=
+golang.org/x/oauth2 v0.0.0-20220822191816-0ebed06d0094/go.mod h1:h4gKUeWbJ4rQPri7E0u6Gs4e9Ri2zaLxzw5DI5XGrYg=
+golang.org/x/oauth2 v0.0.0-20220909003341-f21342109be1/go.mod h1:h4gKUeWbJ4rQPri7E0u6Gs4e9Ri2zaLxzw5DI5XGrYg=
+golang.org/x/oauth2 v0.0.0-20221006150949-b44042a4b9c1/go.mod h1:h4gKUeWbJ4rQPri7E0u6Gs4e9Ri2zaLxzw5DI5XGrYg=
+golang.org/x/oauth2 v0.0.0-20221014153046-6fdb5e3db783/go.mod h1:h4gKUeWbJ4rQPri7E0u6Gs4e9Ri2zaLxzw5DI5XGrYg=
+golang.org/x/oauth2 v0.4.0/go.mod h1:RznEsdpjGAINPTOF0UH/t+xJ75L18YO3Ho6Pyn+uRec=
+golang.org/x/oauth2 v0.5.0/go.mod h1:9/XBHVqLaWO3/BRHs5jbpYCnOZVjj5V0ndyaAM7KB4I=
+golang.org/x/oauth2 v0.6.0/go.mod h1:ycmewcwgD4Rpr3eZJLSB4Kyyljb3qDh40vJ8STE5HKw=
+golang.org/x/oauth2 v0.7.0/go.mod h1:hPLQkd9LyjfXTiRohC/41GhcFqxisoUQ99sCUOHO9x4=
+golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE=
+golang.org/x/oauth2 v0.12.0/go.mod h1:A74bZ3aGXgCY0qaIC9Ahg6Lglin4AMAco8cIv9baba4=
+golang.org/x/oauth2 v0.16.0/go.mod h1:hqZ+0LWXsiVoZpeld6jVt06P3adbS2Uu911W1SsJv2o=
 golang.org/x/oauth2 v0.18.0/go.mod h1:Wf7knwG0MPoWIMMBgFlEaSUDaKskp0dCfrlJRJXbBi8=
+golang.org/x/oauth2 v0.20.0 h1:4mQdhULixXKP1rwYBW0vAijoXnkTG0BLCDRzfe1idMo=
+golang.org/x/oauth2 v0.20.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -492,9 +1342,18 @@ golang.org/x/sync v0.0.0-20200317015054-43a5402ce75a/go.mod h1:RxMgew5VJxzue5/jJ
 golang.org/x/sync v0.0.0-20200625203802-6e8e738ad208/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201207232520-09787c993a3a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20210220032951-036812b2e83c/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20220601150217-0de741cfad7f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.6.0 h1:5BMeUDZ7vkXGfEr1x9B4bRcTH4lpkTkpdh0T/J+qjbQ=
+golang.org/x/sync v0.0.0-20220819030929-7fc1605a5dde/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.0.0-20220929204114-8fcdb60fdcc0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.1.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.2.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
+golang.org/x/sync v0.3.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
+golang.org/x/sync v0.5.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sync v0.6.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
+golang.org/x/sync v0.7.0 h1:YsImfSBoP9QPYL0xyKJPq0gcaJdG3rInoqxTWbfQu9M=
+golang.org/x/sync v0.7.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
@@ -516,6 +1375,7 @@ golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20191228213918-04cbcbbfeed8/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200106162015-b016eb3dc98e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200113162924-86b910548bc1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200116001909-b77594299b42/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200122134326-e047566fdf82/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200202164722-d101bd2416d5/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200212091648-12a6c2dcc1e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -530,23 +1390,90 @@ golang.org/x/sys v0.0.0-20200523222454-059865788121/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200615200032-f1bc736245b1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200803210538-64077c9b5642/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200905004654-be1d3432aa8f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20201201145000-ef89a241ccb3/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210104204734-6f8348627aad/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210112080510-489259a85091/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210119212857-b64e53b001e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210220050731-9a76102bfb43/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210225134936-a50acf3fe073/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210304124612-50617c2ba197/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210305230114-8fe3ee5dd75b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210315160823-c6e025ad8005/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210320140829-1e4c9ba3b0c4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210330210617-4fbd30eecc44/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210423185535-09eb48e85fd7/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210514084401-e8d321eab015/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210603125802-9665404d3644/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210630005230-0f9fa26af87c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210806184541-e5e7981a1069/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210816183151-1e6c022a8912/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210823070655-63515b42dcdf/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20210908233432-aa78b53d3365/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20211007075335-d3039528d8ac/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20211019181941-9d821ace8654/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20211124211545-fe61309f8881/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20211210111614-af8b64212486/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220128215802-99c3d69c2c27/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220209214540-3681064d5158/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220227234510-4e6760a101f9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220328115105-d36c6a25d886/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220412211240-33da011f77ad/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220502124256-b6088ccd6cba/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220503163025-988cb79eb6c6/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220610221304-9f5ed59c137d/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220615213510-4f61da869c0c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220624220833-87e55d714810/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220829200755-d48e67d00261/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.2.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.3.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.4.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.19.0 h1:q5f1RH2jigJ1MoAWp2KTp3gm5zAGFUTarQZ5U386+4o=
-golang.org/x/sys v0.19.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.7.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.9.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.15.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.16.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.18.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.20.0 h1:Od9JTbYCk261bKm4M/mw7AklTlFYIa0bIp9BgSm1S8Y=
+golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
+golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
+golang.org/x/term v0.2.0/go.mod h1:TVmDHMZPmdnySmBfhjOoOdhjzdE1h4u1VwSiw2l1Nuc=
+golang.org/x/term v0.3.0/go.mod h1:q750SLmJuPmVoN1blW3UFBPREJfb1KmY3vwxfr+nFDA=
+golang.org/x/term v0.4.0/go.mod h1:9P2UbLfCdcvo3p/nzKvsmas4TnlujnuoV9hGgYzW1lQ=
+golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k=
+golang.org/x/term v0.6.0/go.mod h1:m6U89DPEgQRMq3DNkDClhWw02AUbt2daBVO4cn4Hv9U=
+golang.org/x/term v0.7.0/go.mod h1:P32HKFT3hSsZrRxla30E9HqToFYAQPCMs/zFMBUFqPY=
+golang.org/x/term v0.8.0/go.mod h1:xPskH00ivmX89bAKVGSKKtLOWNx2+17Eiy94tnKShWo=
+golang.org/x/term v0.12.0/go.mod h1:owVbMEjm3cBLCHdkQu9b1opXd4ETQWc3BhuQGKgXgvU=
+golang.org/x/term v0.13.0/go.mod h1:LTmsnFJwVN6bCy1rVCoS+qHT1HhALEFxKncY3WNNh4U=
+golang.org/x/term v0.15.0/go.mod h1:BDl952bC7+uMoWR75FIrCDx79TPU9oHkTZ9yRbYOrX0=
+golang.org/x/term v0.16.0/go.mod h1:yn7UURbUtPyrVJPGPq404EukNFxcm/foM+bV/bfcDsY=
+golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk=
+golang.org/x/term v0.18.0/go.mod h1:ILwASektA3OnRv7amZ1xhE/KTR+u50pbXfZ03+6Nx58=
 golang.org/x/term v0.19.0 h1:+ThwsDv+tYfnJFhF4L8jITxu1tdTWRTZpdsWgEgjL6Q=
 golang.org/x/term v0.19.0/go.mod h1:2CuTdWZ7KHSQwUzKva0cbMg6q2DMI3Mmxp+gKJbskEk=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -554,18 +1481,33 @@ golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
+golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
-golang.org/x/text v0.14.0 h1:ScX5w1eTa3QqT8oi6+ziP7dTV1S2+ALU0bI+0zXKWiQ=
+golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.5.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.6.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
+golang.org/x/text v0.8.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
+golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
+golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
+golang.org/x/text v0.15.0 h1:h1V/4gjBv8v9cjcR6+AR5+/cIYK5N/WAgiv4xlsEtAk=
+golang.org/x/text v0.15.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
+golang.org/x/time v0.0.0-20220922220347-f3bd1da661af/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
+golang.org/x/time v0.1.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
+golang.org/x/time v0.3.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
 golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
+golang.org/x/tools v0.0.0-20180525024113-a5b4c53f6e8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
+golang.org/x/tools v0.0.0-20190206041539-40960b6deb8e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
 golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190312151545-0bb0c0a6e846/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
@@ -578,6 +1520,7 @@ golang.org/x/tools v0.0.0-20190621195816-6e04913cbbac/go.mod h1:/rFqwRUd4F7ZHNgw
 golang.org/x/tools v0.0.0-20190628153133-6cdbf07be9d0/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190816200558-6889da9d5479/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20190911174233-4f2ddba30aff/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
+golang.org/x/tools v0.0.0-20190927191325-030b2cf1153e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191012152004-8de300cfc20a/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191113191852-77e3bb0ad9e7/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191115202509-3a792d9c32b2/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
@@ -598,7 +1541,6 @@ golang.org/x/tools v0.0.0-20200304193943-95d2e580d8eb/go.mod h1:o4KQGtdN14AW+yjs
 golang.org/x/tools v0.0.0-20200312045724-11d5b4c81c7d/go.mod h1:o4KQGtdN14AW+yjsvvwRTJJuXz8XRtIHtEnmAXLyFUw=
 golang.org/x/tools v0.0.0-20200331025713-a30bf2db82d4/go.mod h1:Sl4aGygMT6LrqrWclx+PTx3U+LnKx/seiNR+3G19Ar8=
 golang.org/x/tools v0.0.0-20200501065659-ab2804fb9c9d/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
-golang.org/x/tools v0.0.0-20200505023115-26f46d2f7ef8/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20200512131952-2bc93b1c0c88/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20200515010526-7d3b6ebf133d/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20200618134242-20370b0cb4b2/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
@@ -606,17 +1548,46 @@ golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roY
 golang.org/x/tools v0.0.0-20200729194436-6467de6f59a7/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
 golang.org/x/tools v0.0.0-20200804011535-6c149bb5ef0d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
 golang.org/x/tools v0.0.0-20200825202427-b303f430e36d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
+golang.org/x/tools v0.0.0-20200904185747-39188db58858/go.mod h1:Cj7w3i3Rnn0Xh82ur9kSqwfTHTeVxaDqrfMjpcNT6bE=
+golang.org/x/tools v0.0.0-20201110124207-079ba7bd75cd/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.0.0-20201124115921-2c860bdd6e78/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.0.0-20201201161351-ac6f37ff4c2a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.0.0-20201208233053-a543418bbed2/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.0.0-20210105154028-b0ab187a4818/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.0.0-20210108195828-e2f9c7f1fc8e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
+golang.org/x/tools v0.1.0/go.mod h1:xkSsbof2nBLbhDlRMhhhyNLN/zl3eTqcnHD5viDpcZ0=
+golang.org/x/tools v0.1.1/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.2/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.3/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.4/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
+golang.org/x/tools v0.1.9/go.mod h1:nABZi5QlRsZVlzPpHl034qft6wpY4eDcsTt5AaioBiU=
 golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
-golang.org/x/tools v0.18.0 h1:k8NLag8AGHnn+PHbl7g43CtqZAwG60vZkLqgyZgIHgQ=
-golang.org/x/tools v0.18.0/go.mod h1:GL7B4CwcLLeo59yx/9UWWuNOW1n3VZ4f5axWfML7Lcg=
+golang.org/x/tools v0.3.0/go.mod h1:/rWhSS2+zyEVwoJf8YAX6L2f0ntZ7Kn/mGgAWcipA5k=
+golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
+golang.org/x/tools v0.7.0/go.mod h1:4pg6aUX35JBAogB10C9AtvVL+qowtN4pT3CGSQex14s=
+golang.org/x/tools v0.20.0 h1:hz/CVckiOxybQvFw6h7b/q80NTr9IUQb4s1IIzW7KNY=
+golang.org/x/tools v0.20.0/go.mod h1:WvitBU7JJf6A4jOdg4S1tviW9bhUxkgeCui/0JHctQg=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
+golang.org/x/xerrors v0.0.0-20220411194840-2f41105eb62f/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
+golang.org/x/xerrors v0.0.0-20220517211312-f3a8303e98df/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
+golang.org/x/xerrors v0.0.0-20220609144429-65e65417b02f/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
+golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
 gomodules.xyz/jsonpatch/v2 v2.4.0 h1:Ci3iUJyx9UeRx7CeFN8ARgGbkESwJK+KB9lLcWxY/Zw=
 gomodules.xyz/jsonpatch/v2 v2.4.0/go.mod h1:AH3dM2RI6uoBZxn3LVrfvJ3E0/9dG4cSrbuBJT4moAY=
+gonum.org/v1/gonum v0.0.0-20180816165407-929014505bf4/go.mod h1:Y+Yx5eoAFn32cQvJDxZx5Dpnq+c3wtXuadVZAcxbbBo=
+gonum.org/v1/gonum v0.8.2/go.mod h1:oe/vMfY3deqTw+1EZJhuvEW2iwGF1bW9wwu7XCu0+v0=
+gonum.org/v1/gonum v0.9.3/go.mod h1:TZumC3NeyVQskjXqmyWt4S3bINhy7B4eYwW69EbyX+0=
+gonum.org/v1/gonum v0.11.0/go.mod h1:fSG4YDCxxUZQJ7rKsQrj0gMOg00Il0Z96/qMA4bVQhA=
+gonum.org/v1/netlib v0.0.0-20190313105609-8cb42192e0e0/go.mod h1:wa6Ws7BG/ESfp6dHfk7C6KdzKA7wR7u/rKwOGE66zvw=
+gonum.org/v1/plot v0.0.0-20190515093506-e2840ee46a6b/go.mod h1:Wt8AAjI+ypCyYX3nZBvf6cAIx93T+c/OS2HFAYskSZc=
+gonum.org/v1/plot v0.9.0/go.mod h1:3Pcqqmp6RHvJI72kgb8fThyUnav364FOsdDo2aGW5lY=
+gonum.org/v1/plot v0.10.1/go.mod h1:VZW5OlhkL1mysU9vaqNHnsy86inf6Ot+jB3r+BczCEo=
 google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
 google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M=
 google.golang.org/api v0.8.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
@@ -633,14 +1604,58 @@ google.golang.org/api v0.24.0/go.mod h1:lIXQywCXRcnZPGlsd8NbLnOjtAoL6em04bJ9+z0M
 google.golang.org/api v0.28.0/go.mod h1:lIXQywCXRcnZPGlsd8NbLnOjtAoL6em04bJ9+z0MncE=
 google.golang.org/api v0.29.0/go.mod h1:Lcubydp8VUV7KeIHD9z2Bys/sm/vGKnG1UHuDBSrHWM=
 google.golang.org/api v0.30.0/go.mod h1:QGmEvQ87FHZNiUVJkT14jQNYJ4ZJjdRF23ZXz5138Fc=
+google.golang.org/api v0.35.0/go.mod h1:/XrVsuzM0rZmrsbjJutiuftIzeuTQcEeaYcSk/mQ1dg=
+google.golang.org/api v0.36.0/go.mod h1:+z5ficQTmoYpPn8LCUNVpK5I7hwkpjbcgqA7I34qYtE=
+google.golang.org/api v0.40.0/go.mod h1:fYKFpnQN0DsDSKRVRcQSDQNtqWPfM9i+zNPxepjRCQ8=
+google.golang.org/api v0.41.0/go.mod h1:RkxM5lITDfTzmyKFPt+wGrCJbVfniCr2ool8kTBzRTU=
+google.golang.org/api v0.43.0/go.mod h1:nQsDGjRXMo4lvh5hP0TKqF244gqhGcr/YSIykhUk/94=
+google.golang.org/api v0.47.0/go.mod h1:Wbvgpq1HddcWVtzsVLyfLp8lDg6AA241LmgIL59tHXo=
+google.golang.org/api v0.48.0/go.mod h1:71Pr1vy+TAZRPkPs/xlCf5SsU8WjuAWv1Pfjbtukyy4=
+google.golang.org/api v0.50.0/go.mod h1:4bNT5pAuq5ji4SRZm+5QIkjny9JAyVD/3gaSihNefaw=
+google.golang.org/api v0.51.0/go.mod h1:t4HdrdoNgyN5cbEfm7Lum0lcLDLiise1F8qDKX00sOU=
+google.golang.org/api v0.54.0/go.mod h1:7C4bFFOvVDGXjfDTAsgGwDgAxRDeQ4X8NvUedIt6z3k=
+google.golang.org/api v0.55.0/go.mod h1:38yMfeP1kfjsl8isn0tliTjIb1rJXcQi4UXlbqivdVE=
+google.golang.org/api v0.56.0/go.mod h1:38yMfeP1kfjsl8isn0tliTjIb1rJXcQi4UXlbqivdVE=
+google.golang.org/api v0.57.0/go.mod h1:dVPlbZyBo2/OjBpmvNdpn2GRm6rPy75jyU7bmhdrMgI=
+google.golang.org/api v0.61.0/go.mod h1:xQRti5UdCmoCEqFxcz93fTl338AVqDgyaDRuOZ3hg9I=
+google.golang.org/api v0.63.0/go.mod h1:gs4ij2ffTRXwuzzgJl/56BdwJaA194ijkfn++9tDuPo=
+google.golang.org/api v0.67.0/go.mod h1:ShHKP8E60yPsKNw/w8w+VYaj9H6buA5UqDp8dhbQZ6g=
+google.golang.org/api v0.70.0/go.mod h1:Bs4ZM2HGifEvXwd50TtW70ovgJffJYw2oRCOFU/SkfA=
+google.golang.org/api v0.71.0/go.mod h1:4PyU6e6JogV1f9eA4voyrTY2batOLdgZ5qZ5HOCc4j8=
+google.golang.org/api v0.74.0/go.mod h1:ZpfMZOVRMywNyvJFeqL9HRWBgAuRfSjJFpe9QtRRyDs=
+google.golang.org/api v0.75.0/go.mod h1:pU9QmyHLnzlpar1Mjt4IbapUCy8J+6HD6GeELN69ljA=
+google.golang.org/api v0.77.0/go.mod h1:pU9QmyHLnzlpar1Mjt4IbapUCy8J+6HD6GeELN69ljA=
+google.golang.org/api v0.78.0/go.mod h1:1Sg78yoMLOhlQTeF+ARBoytAcH1NNyyl390YMy6rKmw=
+google.golang.org/api v0.80.0/go.mod h1:xY3nI94gbvBrE0J6NHXhxOmW97HG7Khjkku6AFB3Hyg=
+google.golang.org/api v0.84.0/go.mod h1:NTsGnUFJMYROtiquksZHBWtHfeMC7iYthki7Eq3pa8o=
+google.golang.org/api v0.85.0/go.mod h1:AqZf8Ep9uZ2pyTvgL+x0D3Zt0eoT9b5E8fmzfu6FO2g=
+google.golang.org/api v0.90.0/go.mod h1:+Sem1dnrKlrXMR/X0bPnMWyluQe4RsNoYfmNLhOIkzw=
+google.golang.org/api v0.93.0/go.mod h1:+Sem1dnrKlrXMR/X0bPnMWyluQe4RsNoYfmNLhOIkzw=
+google.golang.org/api v0.95.0/go.mod h1:eADj+UBuxkh5zlrSntJghuNeg8HwQ1w5lTKkuqaETEI=
+google.golang.org/api v0.96.0/go.mod h1:w7wJQLTM+wvQpNf5JyEcBoxK0RH7EDrh/L4qfsuJ13s=
+google.golang.org/api v0.97.0/go.mod h1:w7wJQLTM+wvQpNf5JyEcBoxK0RH7EDrh/L4qfsuJ13s=
+google.golang.org/api v0.98.0/go.mod h1:w7wJQLTM+wvQpNf5JyEcBoxK0RH7EDrh/L4qfsuJ13s=
+google.golang.org/api v0.99.0/go.mod h1:1YOf74vkVndF7pG6hIHuINsM7eWwpVTAfNMNiL91A08=
+google.golang.org/api v0.100.0/go.mod h1:ZE3Z2+ZOr87Rx7dqFsdRQkRBk36kDtp/h+QpHbB7a70=
+google.golang.org/api v0.102.0/go.mod h1:3VFl6/fzoA+qNuS1N1/VfXY4LjoXN/wzeIp7TweWwGo=
+google.golang.org/api v0.103.0/go.mod h1:hGtW6nK1AC+d9si/UBhw8Xli+QMOf6xyNAyJw4qU9w0=
+google.golang.org/api v0.106.0/go.mod h1:2Ts0XTHNVWxypznxWOYUeI4g3WdP9Pk2Qk58+a/O9MY=
+google.golang.org/api v0.107.0/go.mod h1:2Ts0XTHNVWxypznxWOYUeI4g3WdP9Pk2Qk58+a/O9MY=
+google.golang.org/api v0.108.0/go.mod h1:2Ts0XTHNVWxypznxWOYUeI4g3WdP9Pk2Qk58+a/O9MY=
+google.golang.org/api v0.110.0/go.mod h1:7FC4Vvx1Mooxh8C5HWjzZHcavuS2f6pmJpZx60ca7iI=
+google.golang.org/api v0.111.0/go.mod h1:qtFHvU9mhgTJegR31csQ+rwxyUTHOKFqCKWp1J0fdw0=
+google.golang.org/api v0.114.0/go.mod h1:ifYI2ZsFK6/uGddGfAD5BMxlnkBqCmqHSDUVi45N5Yg=
+google.golang.org/api v0.118.0/go.mod h1:76TtD3vkgmZ66zZzp72bUUklpmQmKlhh6sYtIjYK+5E=
+google.golang.org/api v0.122.0/go.mod h1:gcitW0lvnyWjSp9nKxAbdHKIZ6vF4aajGueeslZOyms=
+google.golang.org/api v0.124.0/go.mod h1:xu2HQurE5gi/3t1aFCvhPD781p0a3p11sdunTJ2BlP4=
+google.golang.org/api v0.126.0/go.mod h1:mBwVAtz+87bEN6CbA1GtZPDOqY2R5ONPqJeIlvyo4Aw=
 google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
 google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.6.1/go.mod h1:i06prIuMbXzDqacNJfV5OdTW448YApPu5ww/cMBSeb0=
 google.golang.org/appengine v1.6.5/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
 google.golang.org/appengine v1.6.6/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
-google.golang.org/appengine v1.6.8 h1:IhEN5q69dyKagZPYMSdIjS2HqprW324FRQZJcGqPAsM=
-google.golang.org/appengine v1.6.8/go.mod h1:1jJ3jBArFh5pcgW8gCtRJnepW8FzD1V44FJffLiz/Ds=
+google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
 google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc=
 google.golang.org/genproto v0.0.0-20190307195333-5fe7a883aa19/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190418145605-e7d98fc518a7/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
@@ -664,14 +1679,129 @@ google.golang.org/genproto v0.0.0-20200312145019-da6875a35672/go.mod h1:55QSHmfG
 google.golang.org/genproto v0.0.0-20200331122359-1ee6d9798940/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200430143042-b979b6f78d84/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200511104702-f5ebc3bea380/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
+google.golang.org/genproto v0.0.0-20200513103714-09dca8ec2884/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
 google.golang.org/genproto v0.0.0-20200515170657-fc4c6c6a6587/go.mod h1:YsZOwe1myG/8QRHRsmBRE1LrgQY60beZKjly0O1fX9U=
 google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013/go.mod h1:NbSheEEYHJ7i3ixzK3sjbqSGDJWnxyFXZblF3eUsNvo=
 google.golang.org/genproto v0.0.0-20200618031413-b414f8b61790/go.mod h1:jDfRM7FcilCzHH/e9qn6dsT145K34l5v+OpcnNgKAAA=
 google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
 google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240227224415-6ceb2ff114de h1:cZGRis4/ot9uVm639a+rHCUaG0JJHEsdyzSQTMX+suY=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240227224415-6ceb2ff114de/go.mod h1:H4O17MA/PE9BsGx3w+a+W2VOLLD1Qf7oJneAoU6WktY=
+google.golang.org/genproto v0.0.0-20200904004341-0bd0a958aa1d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20201109203340-2640f1f9cdfb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20201201144952-b05cb90ed32e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20201210142538-e3217bee35cc/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20201214200347-8c77b98c765d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20210108203827-ffc7fda8c3d7/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20210222152913-aa3ee6e6a81c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20210226172003-ab064af71705/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20210303154014-9728d6b83eeb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20210310155132-4ce2db91004e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20210319143718-93e7006c17a6/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
+google.golang.org/genproto v0.0.0-20210329143202-679c6ae281ee/go.mod h1:9lPAdzaEmUacj36I+k7YKbEc5CXzPIeORRgDAUOu28A=
+google.golang.org/genproto v0.0.0-20210402141018-6c239bbf2bb1/go.mod h1:9lPAdzaEmUacj36I+k7YKbEc5CXzPIeORRgDAUOu28A=
+google.golang.org/genproto v0.0.0-20210513213006-bf773b8c8384/go.mod h1:P3QM42oQyzQSnHPnZ/vqoCdDmzH28fzWByN9asMeM8A=
+google.golang.org/genproto v0.0.0-20210602131652-f16073e35f0c/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
+google.golang.org/genproto v0.0.0-20210604141403-392c879c8b08/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
+google.golang.org/genproto v0.0.0-20210608205507-b6d2f5bf0d7d/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
+google.golang.org/genproto v0.0.0-20210624195500-8bfb893ecb84/go.mod h1:SzzZ/N+nwJDaO1kznhnlzqS8ocJICar6hYhVyhi++24=
+google.golang.org/genproto v0.0.0-20210713002101-d411969a0d9a/go.mod h1:AxrInvYm1dci+enl5hChSFPOmmUF1+uAa/UsgNRWd7k=
+google.golang.org/genproto v0.0.0-20210716133855-ce7ef5c701ea/go.mod h1:AxrInvYm1dci+enl5hChSFPOmmUF1+uAa/UsgNRWd7k=
+google.golang.org/genproto v0.0.0-20210728212813-7823e685a01f/go.mod h1:ob2IJxKrgPT52GcgX759i1sleT07tiKowYBGbczaW48=
+google.golang.org/genproto v0.0.0-20210805201207-89edb61ffb67/go.mod h1:ob2IJxKrgPT52GcgX759i1sleT07tiKowYBGbczaW48=
+google.golang.org/genproto v0.0.0-20210813162853-db860fec028c/go.mod h1:cFeNkxwySK631ADgubI+/XFU/xp8FD5KIVV4rj8UC5w=
+google.golang.org/genproto v0.0.0-20210821163610-241b8fcbd6c8/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210828152312-66f60bf46e71/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210903162649-d08c68adba83/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210909211513-a8c4777a87af/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
+google.golang.org/genproto v0.0.0-20210924002016-3dee208752a0/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20211118181313-81c1377c94b1/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20211206160659-862468c7d6e0/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20211208223120-3a66f561d7aa/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20211221195035-429b39de9b1c/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20220126215142-9970aeb2e350/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20220207164111-0872dc986b00/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
+google.golang.org/genproto v0.0.0-20220218161850-94dd64e39d7c/go.mod h1:kGP+zUP2Ddo0ayMi4YuN7C3WZyJvGLZRh8Z5wnAqvEI=
+google.golang.org/genproto v0.0.0-20220222213610-43724f9ea8cf/go.mod h1:kGP+zUP2Ddo0ayMi4YuN7C3WZyJvGLZRh8Z5wnAqvEI=
+google.golang.org/genproto v0.0.0-20220304144024-325a89244dc8/go.mod h1:kGP+zUP2Ddo0ayMi4YuN7C3WZyJvGLZRh8Z5wnAqvEI=
+google.golang.org/genproto v0.0.0-20220310185008-1973136f34c6/go.mod h1:kGP+zUP2Ddo0ayMi4YuN7C3WZyJvGLZRh8Z5wnAqvEI=
+google.golang.org/genproto v0.0.0-20220324131243-acbaeb5b85eb/go.mod h1:hAL49I2IFola2sVEjAn7MEwsja0xp51I0tlGAf9hz4E=
+google.golang.org/genproto v0.0.0-20220329172620-7be39ac1afc7/go.mod h1:8w6bsBMX6yCPbAVTeqQHvzxW0EIFigd5lZyahWgyfDo=
+google.golang.org/genproto v0.0.0-20220407144326-9054f6ed7bac/go.mod h1:8w6bsBMX6yCPbAVTeqQHvzxW0EIFigd5lZyahWgyfDo=
+google.golang.org/genproto v0.0.0-20220413183235-5e96e2839df9/go.mod h1:8w6bsBMX6yCPbAVTeqQHvzxW0EIFigd5lZyahWgyfDo=
+google.golang.org/genproto v0.0.0-20220414192740-2d67ff6cf2b4/go.mod h1:8w6bsBMX6yCPbAVTeqQHvzxW0EIFigd5lZyahWgyfDo=
+google.golang.org/genproto v0.0.0-20220421151946-72621c1f0bd3/go.mod h1:8w6bsBMX6yCPbAVTeqQHvzxW0EIFigd5lZyahWgyfDo=
+google.golang.org/genproto v0.0.0-20220429170224-98d788798c3e/go.mod h1:8w6bsBMX6yCPbAVTeqQHvzxW0EIFigd5lZyahWgyfDo=
+google.golang.org/genproto v0.0.0-20220502173005-c8bf987b8c21/go.mod h1:RAyBrSAP7Fh3Nc84ghnVLDPuV51xc9agzmm4Ph6i0Q4=
+google.golang.org/genproto v0.0.0-20220505152158-f39f71e6c8f3/go.mod h1:RAyBrSAP7Fh3Nc84ghnVLDPuV51xc9agzmm4Ph6i0Q4=
+google.golang.org/genproto v0.0.0-20220518221133-4f43b3371335/go.mod h1:RAyBrSAP7Fh3Nc84ghnVLDPuV51xc9agzmm4Ph6i0Q4=
+google.golang.org/genproto v0.0.0-20220523171625-347a074981d8/go.mod h1:RAyBrSAP7Fh3Nc84ghnVLDPuV51xc9agzmm4Ph6i0Q4=
+google.golang.org/genproto v0.0.0-20220608133413-ed9918b62aac/go.mod h1:KEWEmljWE5zPzLBa/oHl6DaEt9LmfH6WtH1OHIvleBA=
+google.golang.org/genproto v0.0.0-20220616135557-88e70c0c3a90/go.mod h1:KEWEmljWE5zPzLBa/oHl6DaEt9LmfH6WtH1OHIvleBA=
+google.golang.org/genproto v0.0.0-20220617124728-180714bec0ad/go.mod h1:KEWEmljWE5zPzLBa/oHl6DaEt9LmfH6WtH1OHIvleBA=
+google.golang.org/genproto v0.0.0-20220624142145-8cd45d7dbd1f/go.mod h1:KEWEmljWE5zPzLBa/oHl6DaEt9LmfH6WtH1OHIvleBA=
+google.golang.org/genproto v0.0.0-20220628213854-d9e0b6570c03/go.mod h1:KEWEmljWE5zPzLBa/oHl6DaEt9LmfH6WtH1OHIvleBA=
+google.golang.org/genproto v0.0.0-20220722212130-b98a9ff5e252/go.mod h1:GkXuJDJ6aQ7lnJcRF+SJVgFdQhypqgl3LB1C9vabdRE=
+google.golang.org/genproto v0.0.0-20220801145646-83ce21fca29f/go.mod h1:iHe1svFLAZg9VWz891+QbRMwUv9O/1Ww+/mngYeThbc=
+google.golang.org/genproto v0.0.0-20220815135757-37a418bb8959/go.mod h1:dbqgFATTzChvnt+ujMdZwITVAJHFtfyN1qUhDqEiIlk=
+google.golang.org/genproto v0.0.0-20220817144833-d7fd3f11b9b1/go.mod h1:dbqgFATTzChvnt+ujMdZwITVAJHFtfyN1qUhDqEiIlk=
+google.golang.org/genproto v0.0.0-20220822174746-9e6da59bd2fc/go.mod h1:dbqgFATTzChvnt+ujMdZwITVAJHFtfyN1qUhDqEiIlk=
+google.golang.org/genproto v0.0.0-20220829144015-23454907ede3/go.mod h1:dbqgFATTzChvnt+ujMdZwITVAJHFtfyN1qUhDqEiIlk=
+google.golang.org/genproto v0.0.0-20220829175752-36a9c930ecbf/go.mod h1:dbqgFATTzChvnt+ujMdZwITVAJHFtfyN1qUhDqEiIlk=
+google.golang.org/genproto v0.0.0-20220913154956-18f8339a66a5/go.mod h1:0Nb8Qy+Sk5eDzHnzlStwW3itdNaWoZA5XeSG+R3JHSo=
+google.golang.org/genproto v0.0.0-20220914142337-ca0e39ece12f/go.mod h1:0Nb8Qy+Sk5eDzHnzlStwW3itdNaWoZA5XeSG+R3JHSo=
+google.golang.org/genproto v0.0.0-20220915135415-7fd63a7952de/go.mod h1:0Nb8Qy+Sk5eDzHnzlStwW3itdNaWoZA5XeSG+R3JHSo=
+google.golang.org/genproto v0.0.0-20220916172020-2692e8806bfa/go.mod h1:0Nb8Qy+Sk5eDzHnzlStwW3itdNaWoZA5XeSG+R3JHSo=
+google.golang.org/genproto v0.0.0-20220919141832-68c03719ef51/go.mod h1:0Nb8Qy+Sk5eDzHnzlStwW3itdNaWoZA5XeSG+R3JHSo=
+google.golang.org/genproto v0.0.0-20220920201722-2b89144ce006/go.mod h1:ht8XFiar2npT/g4vkk7O0WYS1sHOHbdujxbEp7CJWbw=
+google.golang.org/genproto v0.0.0-20220926165614-551eb538f295/go.mod h1:woMGP53BroOrRY3xTxlbr8Y3eB/nzAvvFM83q7kG2OI=
+google.golang.org/genproto v0.0.0-20220926220553-6981cbe3cfce/go.mod h1:woMGP53BroOrRY3xTxlbr8Y3eB/nzAvvFM83q7kG2OI=
+google.golang.org/genproto v0.0.0-20221010155953-15ba04fc1c0e/go.mod h1:3526vdqwhZAwq4wsRUaVG555sVgsNmIjRtO7t/JH29U=
+google.golang.org/genproto v0.0.0-20221014173430-6e2ab493f96b/go.mod h1:1vXfmgAz9N9Jx0QA82PqRVauvCz1SGSz739p0f183jM=
+google.golang.org/genproto v0.0.0-20221014213838-99cd37c6964a/go.mod h1:1vXfmgAz9N9Jx0QA82PqRVauvCz1SGSz739p0f183jM=
+google.golang.org/genproto v0.0.0-20221024153911-1573dae28c9c/go.mod h1:9qHF0xnpdSfF6knlcsnpzUu5y+rpwgbvsyGAZPBMg4s=
+google.golang.org/genproto v0.0.0-20221024183307-1bc688fe9f3e/go.mod h1:9qHF0xnpdSfF6knlcsnpzUu5y+rpwgbvsyGAZPBMg4s=
+google.golang.org/genproto v0.0.0-20221027153422-115e99e71e1c/go.mod h1:CGI5F/G+E5bKwmfYo09AXuVN4dD894kIKUFmVbP2/Fo=
+google.golang.org/genproto v0.0.0-20221109142239-94d6d90a7d66/go.mod h1:rZS5c/ZVYMaOGBfO68GWtjOw/eLaZM1X6iVtgjZ+EWg=
+google.golang.org/genproto v0.0.0-20221114212237-e4508ebdbee1/go.mod h1:rZS5c/ZVYMaOGBfO68GWtjOw/eLaZM1X6iVtgjZ+EWg=
+google.golang.org/genproto v0.0.0-20221117204609-8f9c96812029/go.mod h1:rZS5c/ZVYMaOGBfO68GWtjOw/eLaZM1X6iVtgjZ+EWg=
+google.golang.org/genproto v0.0.0-20221118155620-16455021b5e6/go.mod h1:rZS5c/ZVYMaOGBfO68GWtjOw/eLaZM1X6iVtgjZ+EWg=
+google.golang.org/genproto v0.0.0-20221201164419-0e50fba7f41c/go.mod h1:rZS5c/ZVYMaOGBfO68GWtjOw/eLaZM1X6iVtgjZ+EWg=
+google.golang.org/genproto v0.0.0-20221201204527-e3fa12d562f3/go.mod h1:rZS5c/ZVYMaOGBfO68GWtjOw/eLaZM1X6iVtgjZ+EWg=
+google.golang.org/genproto v0.0.0-20221202195650-67e5cbc046fd/go.mod h1:cTsE614GARnxrLsqKREzmNYJACSWWpAWdNMwnD7c2BE=
+google.golang.org/genproto v0.0.0-20221227171554-f9683d7f8bef/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
+google.golang.org/genproto v0.0.0-20230110181048-76db0878b65f/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
+google.golang.org/genproto v0.0.0-20230112194545-e10362b5ecf9/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
+google.golang.org/genproto v0.0.0-20230113154510-dbe35b8444a5/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
+google.golang.org/genproto v0.0.0-20230123190316-2c411cf9d197/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
+google.golang.org/genproto v0.0.0-20230124163310-31e0e69b6fc2/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
+google.golang.org/genproto v0.0.0-20230125152338-dcaf20b6aeaa/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
+google.golang.org/genproto v0.0.0-20230127162408-596548ed4efa/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
+google.golang.org/genproto v0.0.0-20230209215440-0dfe4f8abfcc/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
+google.golang.org/genproto v0.0.0-20230216225411-c8e22ba71e44/go.mod h1:8B0gmkoRebU8ukX6HP+4wrVQUY1+6PkQ44BSyIlflHA=
+google.golang.org/genproto v0.0.0-20230222225845-10f96fb3dbec/go.mod h1:3Dl5ZL0q0isWJt+FVcfpQyirqemEuLAK/iFvg1UP1Hw=
+google.golang.org/genproto v0.0.0-20230223222841-637eb2293923/go.mod h1:3Dl5ZL0q0isWJt+FVcfpQyirqemEuLAK/iFvg1UP1Hw=
+google.golang.org/genproto v0.0.0-20230303212802-e74f57abe488/go.mod h1:TvhZT5f700eVlTNwND1xoEZQeWTB2RY/65kplwl/bFA=
+google.golang.org/genproto v0.0.0-20230306155012-7f2fa6fef1f4/go.mod h1:NWraEVixdDnqcqQ30jipen1STv2r/n24Wb7twVTGR4s=
+google.golang.org/genproto v0.0.0-20230320184635-7606e756e683/go.mod h1:NWraEVixdDnqcqQ30jipen1STv2r/n24Wb7twVTGR4s=
+google.golang.org/genproto v0.0.0-20230323212658-478b75c54725/go.mod h1:UUQDJDOlWu4KYeJZffbWgBkS1YFobzKbLVfK69pe0Ak=
+google.golang.org/genproto v0.0.0-20230330154414-c0448cd141ea/go.mod h1:UUQDJDOlWu4KYeJZffbWgBkS1YFobzKbLVfK69pe0Ak=
+google.golang.org/genproto v0.0.0-20230331144136-dcfb400f0633/go.mod h1:UUQDJDOlWu4KYeJZffbWgBkS1YFobzKbLVfK69pe0Ak=
+google.golang.org/genproto v0.0.0-20230403163135-c38d8f061ccd/go.mod h1:UUQDJDOlWu4KYeJZffbWgBkS1YFobzKbLVfK69pe0Ak=
+google.golang.org/genproto v0.0.0-20230410155749-daa745c078e1/go.mod h1:nKE/iIaLqn2bQwXBg8f1g2Ylh6r5MN5CmZvuzZCgsCU=
+google.golang.org/genproto v0.0.0-20230525234025-438c736192d0/go.mod h1:9ExIQyXL5hZrHzQceCwuSYwZZ5QZBazOcprJ5rgs3lY=
+google.golang.org/genproto v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:xZnkP7mREFX5MORlOPEzLMr+90PPZQ2QWzrVTWfAq64=
+google.golang.org/genproto/googleapis/api v0.0.0-20230525234020-1aefcd67740a/go.mod h1:ts19tUU+Z0ZShN1y3aPyq2+O3d5FUNNgT6FtOzmrNn8=
+google.golang.org/genproto/googleapis/api v0.0.0-20230525234035-dd9d682886f9/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
+google.golang.org/genproto/googleapis/api v0.0.0-20230526203410-71b5a4ffd15e/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
+google.golang.org/genproto/googleapis/api v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
+google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:ylj+BE99M198VPbBh6A8d9n3w8fChvyLK3wwBOjXBFA=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234015-3fc162c6f38a/go.mod h1:xURIpW9ES5+/GZhnV6beoEtxQrnkRGIfP5VQG2tCBLc=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234030-28d5490b6b19/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20230526203410-71b5a4ffd15e/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240429193739-8cf5692501f6 h1:DujSIu+2tC9Ht0aPNA7jgj23Iq8Ewi5sgkQ++wdvonE=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240429193739-8cf5692501f6/go.mod h1:WtryC6hu0hhx87FDGxWCDptyssuo68sk10vYjF+T9fY=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -684,8 +1814,38 @@ google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKa
 google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
 google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
 google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
+google.golang.org/grpc v1.31.1/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
+google.golang.org/grpc v1.33.1/go.mod h1:fr5YgcSWrqhRRxogOsw7RzIpsmvOZ6IcH4kBYTpR3n0=
+google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
+google.golang.org/grpc v1.34.0/go.mod h1:WotjhfgOW/POjDeRt8vscBtXq+2VjORFy659qA51WJ8=
+google.golang.org/grpc v1.35.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
+google.golang.org/grpc v1.36.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
+google.golang.org/grpc v1.36.1/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
+google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
+google.golang.org/grpc v1.37.1/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
+google.golang.org/grpc v1.38.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
+google.golang.org/grpc v1.39.0/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
+google.golang.org/grpc v1.39.1/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
+google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
+google.golang.org/grpc v1.40.1/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
+google.golang.org/grpc v1.42.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU=
+google.golang.org/grpc v1.44.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU=
+google.golang.org/grpc v1.45.0/go.mod h1:lN7owxKUQEqMfSyQikvvk5tf/6zMPsrK+ONuO11+0rQ=
+google.golang.org/grpc v1.46.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
+google.golang.org/grpc v1.46.2/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
+google.golang.org/grpc v1.47.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
+google.golang.org/grpc v1.48.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
+google.golang.org/grpc v1.49.0/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI=
+google.golang.org/grpc v1.50.0/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI=
+google.golang.org/grpc v1.50.1/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI=
+google.golang.org/grpc v1.51.0/go.mod h1:wgNDFcnuBGmxLKI/qn4T+m5BtEBYXJPvibbUPsAIPww=
+google.golang.org/grpc v1.52.0/go.mod h1:pu6fVzoFb+NBYNAvQL08ic+lvB2IojljRYuun5vorUY=
+google.golang.org/grpc v1.53.0/go.mod h1:OnIrk0ipVdj4N5d9IUoFUx72/VlD7+jUsHwZgwSMQpw=
+google.golang.org/grpc v1.54.0/go.mod h1:PUSEXI6iWghWaB6lXM4knEgpJNu2qUcKfDtNci3EC2g=
+google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8=
 google.golang.org/grpc v1.63.2 h1:MUeiw1B2maTVZthpU5xvASfTh3LDbxHd6IJ6QQVU+xM=
 google.golang.org/grpc v1.63.2/go.mod h1:WAX/8DgncnokcFUldAxq7GeB5DXHDbMF+lLvDomNkRA=
+google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
@@ -700,8 +1860,16 @@ google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGj
 google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.33.0 h1:uNO2rsAINq/JlFpSdYEKIZ0uKD/R9cpdv0T+yoGwGmI=
+google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
+google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.28.1/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.29.1/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
+google.golang.org/protobuf v1.32.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
 google.golang.org/protobuf v1.33.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
+google.golang.org/protobuf v1.34.0 h1:Qo/qEd2RZPCf2nKuorzksSknv0d3ERwp1vFG38gSmH4=
+google.golang.org/protobuf v1.34.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
@@ -724,6 +1892,7 @@ gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkep
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
 gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+gopkg.in/yaml.v2 v2.2.3/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.5/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
@@ -740,36 +1909,69 @@ honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWh
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
+honnef.co/go/tools v0.1.3/go.mod h1:NgwopIslSNH47DimFoV78dnkksY2EFtX0ajyb3K/las=
 k8s.io/api v0.30.0 h1:siWhRq7cNjy2iHssOB9SCGNCl2spiF1dO3dABqZ8niA=
 k8s.io/api v0.30.0/go.mod h1:OPlaYhoHs8EQ1ql0R/TsUgaRPhpKNxIMrKQfWUp8QSE=
-k8s.io/apiextensions-apiserver v0.29.3 h1:9HF+EtZaVpFjStakF4yVufnXGPRppWFEQ87qnO91YeI=
-k8s.io/apiextensions-apiserver v0.29.3/go.mod h1:po0XiY5scnpJfFizNGo6puNU6Fq6D70UJY2Cb2KwAVc=
+k8s.io/apiextensions-apiserver v0.30.0 h1:jcZFKMqnICJfRxTgnC4E+Hpcq8UEhT8B2lhBcQ+6uAs=
+k8s.io/apiextensions-apiserver v0.30.0/go.mod h1:N9ogQFGcrbWqAY9p2mUAL5mGxsLqwgtUce127VtRX5Y=
 k8s.io/apimachinery v0.30.0 h1:qxVPsyDM5XS96NIh9Oj6LavoVFYff/Pon9cZeDIkHHA=
 k8s.io/apimachinery v0.30.0/go.mod h1:iexa2somDaxdnj7bha06bhb43Zpa6eWH8N8dbqVjTUc=
-k8s.io/apiserver v0.29.3 h1:xR7ELlJ/BZSr2n4CnD3lfA4gzFivh0wwfNfz9L0WZcE=
-k8s.io/apiserver v0.29.3/go.mod h1:hrvXlwfRulbMbBgmWRQlFru2b/JySDpmzvQwwk4GUOs=
-k8s.io/cli-runtime v0.29.3 h1:r68rephmmytoywkw2MyJ+CxjpasJDQY7AGc3XY2iv1k=
-k8s.io/cli-runtime v0.29.3/go.mod h1:aqVUsk86/RhaGJwDhHXH0jcdqBrgdF3bZWk4Z9D4mkM=
+k8s.io/apiserver v0.30.0 h1:QCec+U72tMQ+9tR6A0sMBB5Vh6ImCEkoKkTDRABWq6M=
+k8s.io/apiserver v0.30.0/go.mod h1:smOIBq8t0MbKZi7O7SyIpjPsiKJ8qa+llcFCluKyqiY=
+k8s.io/cli-runtime v0.30.0 h1:0vn6/XhOvn1RJ2KJOC6IRR2CGqrpT6QQF4+8pYpWQ48=
+k8s.io/cli-runtime v0.30.0/go.mod h1:vATpDMATVTMA79sZ0YUCzlMelf6rUjoBzlp+RnoM+cg=
 k8s.io/client-go v0.30.0 h1:sB1AGGlhY/o7KCyCEQ0bPWzYDL0pwOZO4vAtTSh/gJQ=
 k8s.io/client-go v0.30.0/go.mod h1:g7li5O5256qe6TYdAMyX/otJqMhIiGgTapdLchhmOaY=
-k8s.io/code-generator v0.29.3 h1:m7E25/t9R9NvejspO2zBdyu+/Gl0Z5m7dCRc680KS14=
-k8s.io/code-generator v0.29.3/go.mod h1:x47ofBhN4gxYFcxeKA1PYXeaPreAGaDN85Y/lNUsPoM=
+k8s.io/code-generator v0.30.0 h1:3VUVqHvWFSVSm9kqL/G6kD4ZwNdHF6J/jPyo3Jgjy3k=
+k8s.io/code-generator v0.30.0/go.mod h1:mBMZhfRR4IunJUh2+7LVmdcWwpouCH5+LNPkZ3t/v7Q=
 k8s.io/component-base v0.30.0 h1:cj6bp38g0ainlfYtaOQuRELh5KSYjhKxM+io7AUIk4o=
 k8s.io/component-base v0.30.0/go.mod h1:V9x/0ePFNaKeKYA3bOvIbrNoluTSG+fSJKjLdjOoeXQ=
-k8s.io/gengo v0.0.0-20240226174109-00c4be8627da h1:uH7pylUCo++9PSvrUA34sbk4Y6PHw/bgEFa80pejI+I=
-k8s.io/gengo v0.0.0-20240226174109-00c4be8627da/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
-k8s.io/gengo/v2 v2.0.0-20240228010128-51d4e06bde70 h1:NGrVE502P0s0/1hudf8zjgwki1X/TByhmAoILTarmzo=
-k8s.io/gengo/v2 v2.0.0-20240228010128-51d4e06bde70/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
-k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
+k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 h1:bKcdZJOPICVmIIuaM9+MXmapE94dn5AYv5ODs1jA43o=
+k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
 k8s.io/klog/v2 v2.120.1 h1:QXU6cPEOIslTGvZaXvFWiP9VKyeet3sawzTOvdXb4Vw=
 k8s.io/klog/v2 v2.120.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
-k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 h1:BZqlfIlq5YbRMFko6/PM7FjZpUb45WallggurYhKGag=
-k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340/go.mod h1:yD4MZYeKMBwQKVht279WycxKyM84kkAx2DPrTXaeb98=
-k8s.io/utils v0.0.0-20240102154912-e7106e64919e h1:eQ/4ljkx21sObifjzXwlPKpdGLrCfRziVtos3ofG/sQ=
-k8s.io/utils v0.0.0-20240102154912-e7106e64919e/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
+k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f h1:0LQagt0gDpKqvIkAMPaRGcXawNMouPECM1+F9BVxEaM=
+k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f/go.mod h1:S9tOR0FxgyusSNR+MboCuiDpVWkAifZvaYI1Q2ubgro=
+k8s.io/utils v0.0.0-20240502163921-fe8a2dddb1d0 h1:jgGTlFYnhF1PM1Ax/lAlxUPE+KfCIXHaathvJg1C3ak=
+k8s.io/utils v0.0.0-20240502163921-fe8a2dddb1d0/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
+lukechampine.com/uint128 v1.1.1/go.mod h1:c4eWIwlEGaxC/+H1VguhU4PHXNWDCDMUlWdIWl2j1gk=
+lukechampine.com/uint128 v1.2.0/go.mod h1:c4eWIwlEGaxC/+H1VguhU4PHXNWDCDMUlWdIWl2j1gk=
+modernc.org/cc/v3 v3.36.0/go.mod h1:NFUHyPn4ekoC/JHeZFfZurN6ixxawE1BnVonP/oahEI=
+modernc.org/cc/v3 v3.36.2/go.mod h1:NFUHyPn4ekoC/JHeZFfZurN6ixxawE1BnVonP/oahEI=
+modernc.org/cc/v3 v3.36.3/go.mod h1:NFUHyPn4ekoC/JHeZFfZurN6ixxawE1BnVonP/oahEI=
+modernc.org/ccgo/v3 v3.0.0-20220428102840-41399a37e894/go.mod h1:eI31LL8EwEBKPpNpA4bU1/i+sKOwOrQy8D87zWUcRZc=
+modernc.org/ccgo/v3 v3.0.0-20220430103911-bc99d88307be/go.mod h1:bwdAnOoaIt8Ax9YdWGjxWsdkPcZyRPHqrOvJxaKAKGw=
+modernc.org/ccgo/v3 v3.16.4/go.mod h1:tGtX0gE9Jn7hdZFeU88slbTh1UtCYKusWOoCJuvkWsQ=
+modernc.org/ccgo/v3 v3.16.6/go.mod h1:tGtX0gE9Jn7hdZFeU88slbTh1UtCYKusWOoCJuvkWsQ=
+modernc.org/ccgo/v3 v3.16.8/go.mod h1:zNjwkizS+fIFDrDjIAgBSCLkWbJuHF+ar3QRn+Z9aws=
+modernc.org/ccgo/v3 v3.16.9/go.mod h1:zNMzC9A9xeNUepy6KuZBbugn3c0Mc9TeiJO4lgvkJDo=
+modernc.org/ccorpus v1.11.6/go.mod h1:2gEUTrWqdpH2pXsmTM1ZkjeSrUWDpjMu2T6m29L/ErQ=
+modernc.org/httpfs v1.0.6/go.mod h1:7dosgurJGp0sPaRanU53W4xZYKh14wfzX420oZADeHM=
+modernc.org/libc v0.0.0-20220428101251-2d5f3daf273b/go.mod h1:p7Mg4+koNjc8jkqwcoFBJx7tXkpj00G77X7A72jXPXA=
+modernc.org/libc v1.16.0/go.mod h1:N4LD6DBE9cf+Dzf9buBlzVJndKr/iJHG97vGLHYnb5A=
+modernc.org/libc v1.16.1/go.mod h1:JjJE0eu4yeK7tab2n4S1w8tlWd9MxXLRzheaRnAKymU=
+modernc.org/libc v1.16.17/go.mod h1:hYIV5VZczAmGZAnG15Vdngn5HSF5cSkbvfz2B7GRuVU=
+modernc.org/libc v1.16.19/go.mod h1:p7Mg4+koNjc8jkqwcoFBJx7tXkpj00G77X7A72jXPXA=
+modernc.org/libc v1.17.0/go.mod h1:XsgLldpP4aWlPlsjqKRdHPqCxCjISdHfM/yeWC5GyW0=
+modernc.org/libc v1.17.1/go.mod h1:FZ23b+8LjxZs7XtFMbSzL/EhPxNbfZbErxEHc7cbD9s=
+modernc.org/mathutil v1.2.2/go.mod h1:mZW8CKdRPY1v87qxC/wUdX5O1qDzXMP5TH3wjfpga6E=
+modernc.org/mathutil v1.4.1/go.mod h1:mZW8CKdRPY1v87qxC/wUdX5O1qDzXMP5TH3wjfpga6E=
+modernc.org/mathutil v1.5.0/go.mod h1:mZW8CKdRPY1v87qxC/wUdX5O1qDzXMP5TH3wjfpga6E=
+modernc.org/memory v1.1.1/go.mod h1:/0wo5ibyrQiaoUoH7f9D8dnglAmILJ5/cxZlRECf+Nw=
+modernc.org/memory v1.2.0/go.mod h1:/0wo5ibyrQiaoUoH7f9D8dnglAmILJ5/cxZlRECf+Nw=
+modernc.org/memory v1.2.1/go.mod h1:PkUhL0Mugw21sHPeskwZW4D6VscE/GQJOnIpCnW6pSU=
+modernc.org/opt v0.1.1/go.mod h1:WdSiB5evDcignE70guQKxYUl14mgWtbClRi5wmkkTX0=
+modernc.org/opt v0.1.3/go.mod h1:WdSiB5evDcignE70guQKxYUl14mgWtbClRi5wmkkTX0=
+modernc.org/sqlite v1.18.1/go.mod h1:6ho+Gow7oX5V+OiOQ6Tr4xeqbx13UZ6t+Fw9IRUG4d4=
+modernc.org/strutil v1.1.1/go.mod h1:DE+MQQ/hjKBZS2zNInV5hhcipt5rLPWkmpbGeW5mmdw=
+modernc.org/strutil v1.1.3/go.mod h1:MEHNA7PdEnEwLvspRMtWTNnp2nnyvMfkimT1NKNAGbw=
+modernc.org/tcl v1.13.1/go.mod h1:XOLfOwzhkljL4itZkK6T72ckMgvj0BDsnKNdZVUOecw=
+modernc.org/token v1.0.0/go.mod h1:UGzOrNV1mAFSEB63lOFHIpNRUVMvYTc6yu1SMY/XTDM=
+modernc.org/z v1.5.1/go.mod h1:eWFB510QWW5Th9YGZT81s+LwvaAs3Q2yr4sP0rmLkv8=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
+rsc.io/pdf v0.1.1/go.mod h1:n8OzWcQ6Sp37PL01nO98y4iUCRdTGarVfzxY20ICaU4=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
 sigs.k8s.io/controller-runtime v0.17.3 h1:65QmN7r3FWgTxDMz9fvGnO1kbf2nu+acg9p2R9oYYYk=
@@ -784,6 +1986,5 @@ sigs.k8s.io/mdtoc v1.1.0 h1:q3YtqYzmC2e0hgLXRIOm7/QLuPux1CX3ZHCwlbABxZo=
 sigs.k8s.io/mdtoc v1.1.0/go.mod h1:QZLVEdHH2iNIR4uHAZyvFRtjloHgVItk8lo/mzCtq3w=
 sigs.k8s.io/structured-merge-diff/v4 v4.4.1 h1:150L+0vs/8DA78h1u02ooW1/fFq/Lwr+sGiqlzvrtq4=
 sigs.k8s.io/structured-merge-diff/v4 v4.4.1/go.mod h1:N8hJocpFajUSSeSJ9bOZ77VzejKZaXsTtZo4/u7Io08=
-sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=
 sigs.k8s.io/yaml v1.4.0 h1:Mk1wCc2gy/F0THH0TAp1QYyJNzRm2KCLy3o5ASXVI5E=
 sigs.k8s.io/yaml v1.4.0/go.mod h1:Ejl7/uTz7PSA4eKMyQCUTnhZYNmLIl+5c2lQPGR2BPY=
diff --git a/go.work b/go.work
index 463239b63..c963e3c0e 100644
--- a/go.work
+++ b/go.work
@@ -1,4 +1,4 @@
-go 1.21
+go 1.22.0
 
 use (
 	.
diff --git a/go.work.sum b/go.work.sum
index 4ce702139..51c6a3e66 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -1,739 +1,936 @@
-cloud.google.com/go v0.44.3/go.mod h1:60680Gw3Yr4ikxnPRS/oxxkBccT6SA1yMk63TGekxKY=
-cloud.google.com/go v0.72.0/go.mod h1:M+5Vjvlc2wnp6tjzE102Dw08nGShTscUx2nZMufOKPI=
-cloud.google.com/go v0.74.0/go.mod h1:VV1xSbzvo+9QJOxLDaJfTjx5e+MePCpCWwvftOeQmWk=
-cloud.google.com/go v0.75.0/go.mod h1:VGuuCn7PG0dwsd5XPVm2Mm3wlh3EL55/79EKB6hlPTY=
-cloud.google.com/go v0.97.0/go.mod h1:GF7l59pYBVlXQIBLx3a761cZ41F9bBH3JUlihCt2Udc=
-cloud.google.com/go v0.110.2/go.mod h1:k04UEeEtb6ZBRTv3dZz4CeJC3jKGxyhl0sAiVVquxiw=
+cloud.google.com/go v0.110.2 h1:sdFPBr6xG9/wkBbfhmUz/JmZC7X6LavQgcrVINrKiVA=
 cloud.google.com/go v0.110.4/go.mod h1:+EYjdK8e5RME/VY/qLCAtuyALQ9q67dvuum8i+H5xsI=
 cloud.google.com/go v0.110.8/go.mod h1:Iz8AkXJf1qmxC3Oxoep8R1T36w8B92yU29PcBhHO5fk=
 cloud.google.com/go v0.110.10/go.mod h1:v1OoFqYxiBkUrruItNM3eT4lLByNjxmJSV/xDKJNnic=
 cloud.google.com/go v0.112.0/go.mod h1:3jEEVwZ/MHU4djK5t5RHuKOA/GbLddgTdVubX1qnPD4=
+cloud.google.com/go/accessapproval v1.6.0 h1:x0cEHro/JFPd7eS4BlEWNTMecIj2HdXjOVB5BtvwER0=
 cloud.google.com/go/accessapproval v1.7.1/go.mod h1:JYczztsHRMK7NTXb6Xw+dwbs/WnOJxbo/2mTI+Kgg68=
 cloud.google.com/go/accessapproval v1.7.4/go.mod h1:/aTEh45LzplQgFYdQdwPMR9YdX0UlhBmvB84uAmQKUc=
 cloud.google.com/go/accessapproval v1.7.5/go.mod h1:g88i1ok5dvQ9XJsxpUInWWvUBrIZhyPDPbk4T01OoJ0=
+cloud.google.com/go/accesscontextmanager v1.7.0 h1:MG60JgnEoawHJrbWw0jGdv6HLNSf6gQvYRiXpuzqgEA=
 cloud.google.com/go/accesscontextmanager v1.8.1/go.mod h1:JFJHfvuaTC+++1iL1coPiG1eu5D24db2wXCDWDjIrxo=
 cloud.google.com/go/accesscontextmanager v1.8.4/go.mod h1:ParU+WbMpD34s5JFEnGAnPBYAgUHozaTmDJU7aCU9+M=
 cloud.google.com/go/accesscontextmanager v1.8.5/go.mod h1:TInEhcZ7V9jptGNqN3EzZ5XMhT6ijWxTGjzyETwmL0Q=
+cloud.google.com/go/aiplatform v1.37.0 h1:zTw+suCVchgZyO+k847wjzdVjWmrAuehxdvcZvJwfGg=
 cloud.google.com/go/aiplatform v1.45.0/go.mod h1:Iu2Q7sC7QGhXUeOhAj/oCK9a+ULz1O4AotZiqjQ8MYA=
 cloud.google.com/go/aiplatform v1.50.0/go.mod h1:IRc2b8XAMTa9ZmfJV1BCCQbieWWvDnP1A8znyz5N7y4=
 cloud.google.com/go/aiplatform v1.52.0/go.mod h1:pwZMGvqe0JRkI1GWSZCtnAfrR4K1bv65IHILGA//VEU=
 cloud.google.com/go/aiplatform v1.58.0/go.mod h1:pwZMGvqe0JRkI1GWSZCtnAfrR4K1bv65IHILGA//VEU=
 cloud.google.com/go/aiplatform v1.60.0/go.mod h1:eTlGuHOahHprZw3Hio5VKmtThIOak5/qy6pzdsqcQnM=
+cloud.google.com/go/analytics v0.19.0 h1:LqAo3tAh2FU9+w/r7vc3hBjU23Kv7GhO/PDIW7kIYgM=
 cloud.google.com/go/analytics v0.21.2/go.mod h1:U8dcUtmDmjrmUTnnnRnI4m6zKn/yaA5N9RlEkYFHpQo=
 cloud.google.com/go/analytics v0.21.3/go.mod h1:U8dcUtmDmjrmUTnnnRnI4m6zKn/yaA5N9RlEkYFHpQo=
 cloud.google.com/go/analytics v0.21.6/go.mod h1:eiROFQKosh4hMaNhF85Oc9WO97Cpa7RggD40e/RBy8w=
 cloud.google.com/go/analytics v0.22.0/go.mod h1:eiROFQKosh4hMaNhF85Oc9WO97Cpa7RggD40e/RBy8w=
 cloud.google.com/go/analytics v0.23.0/go.mod h1:YPd7Bvik3WS95KBok2gPXDqQPHy08TsCQG6CdUCb+u0=
+cloud.google.com/go/apigateway v1.5.0 h1:ZI9mVO7x3E9RK/BURm2p1aw9YTBSCQe3klmyP1WxWEg=
 cloud.google.com/go/apigateway v1.6.1/go.mod h1:ufAS3wpbRjqfZrzpvLC2oh0MFlpRJm2E/ts25yyqmXA=
 cloud.google.com/go/apigateway v1.6.4/go.mod h1:0EpJlVGH5HwAN4VF4Iec8TAzGN1aQgbxAWGJsnPCGGY=
 cloud.google.com/go/apigateway v1.6.5/go.mod h1:6wCwvYRckRQogyDDltpANi3zsCDl6kWi0b4Je+w2UiI=
+cloud.google.com/go/apigeeconnect v1.5.0 h1:sWOmgDyAsi1AZ48XRHcATC0tsi9SkPT7DA/+VCfkaeA=
 cloud.google.com/go/apigeeconnect v1.6.1/go.mod h1:C4awq7x0JpLtrlQCr8AzVIzAaYgngRqWf9S5Uhg+wWs=
 cloud.google.com/go/apigeeconnect v1.6.4/go.mod h1:CapQCWZ8TCjnU0d7PobxhpOdVz/OVJ2Hr/Zcuu1xFx0=
 cloud.google.com/go/apigeeconnect v1.6.5/go.mod h1:MEKm3AiT7s11PqTfKE3KZluZA9O91FNysvd3E6SJ6Ow=
+cloud.google.com/go/apigeeregistry v0.6.0 h1:E43RdhhCxdlV+I161gUY2rI4eOaMzHTA5kNkvRsFXvc=
 cloud.google.com/go/apigeeregistry v0.7.1/go.mod h1:1XgyjZye4Mqtw7T9TsY4NW10U7BojBvG4RMD+vRDrIw=
 cloud.google.com/go/apigeeregistry v0.8.2/go.mod h1:h4v11TDGdeXJDJvImtgK2AFVvMIgGWjSb0HRnBSjcX8=
 cloud.google.com/go/apigeeregistry v0.8.3/go.mod h1:aInOWnqF4yMQx8kTjDqHNXjZGh/mxeNlAf52YqtASUs=
+cloud.google.com/go/apikeys v0.6.0 h1:B9CdHFZTFjVti89tmyXXrO+7vSNo2jvZuHG8zD5trdQ=
+cloud.google.com/go/appengine v1.7.1 h1:aBGDKmRIaRRoWJ2tAoN0oVSHoWLhtO9aj/NvUyP4aYs=
 cloud.google.com/go/appengine v1.8.1/go.mod h1:6NJXGLVhZCN9aQ/AEDvmfzKEfoYBlfB80/BHiKVputY=
 cloud.google.com/go/appengine v1.8.4/go.mod h1:TZ24v+wXBujtkK77CXCpjZbnuTvsFNT41MUaZ28D6vg=
 cloud.google.com/go/appengine v1.8.5/go.mod h1:uHBgNoGLTS5di7BvU25NFDuKa82v0qQLjyMJLuPQrVo=
+cloud.google.com/go/area120 v0.7.1 h1:ugckkFh4XkHJMPhTIx0CyvdoBxmOpMe8rNs4Ok8GAag=
 cloud.google.com/go/area120 v0.8.1/go.mod h1:BVfZpGpB7KFVNxPiQBuHkX6Ed0rS51xIgmGyjrAfzsg=
 cloud.google.com/go/area120 v0.8.4/go.mod h1:jfawXjxf29wyBXr48+W+GyX/f8fflxp642D/bb9v68M=
 cloud.google.com/go/area120 v0.8.5/go.mod h1:BcoFCbDLZjsfe4EkCnEq1LKvHSK0Ew/zk5UFu6GMyA0=
+cloud.google.com/go/artifactregistry v1.13.0 h1:o1Q80vqEB6Qp8WLEH3b8FBLNUCrGQ4k5RFj0sn/sgO8=
 cloud.google.com/go/artifactregistry v1.14.1/go.mod h1:nxVdG19jTaSTu7yA7+VbWL346r3rIdkZ142BSQqhn5E=
 cloud.google.com/go/artifactregistry v1.14.6/go.mod h1:np9LSFotNWHcjnOgh8UVK0RFPCTUGbO0ve3384xyHfE=
 cloud.google.com/go/artifactregistry v1.14.7/go.mod h1:0AUKhzWQzfmeTvT4SjfI4zjot72EMfrkvL9g9aRjnnM=
+cloud.google.com/go/asset v1.13.0 h1:YAsssO08BqZ6mncbb6FPlj9h6ACS7bJQUOlzciSfbNk=
 cloud.google.com/go/asset v1.14.1/go.mod h1:4bEJ3dnHCqWCDbWJ/6Vn7GVI9LerSi7Rfdi03hd+WTQ=
 cloud.google.com/go/asset v1.15.3/go.mod h1:yYLfUD4wL4X589A9tYrv4rFrba0QlDeag0CMcM5ggXU=
 cloud.google.com/go/asset v1.17.0/go.mod h1:yYLfUD4wL4X589A9tYrv4rFrba0QlDeag0CMcM5ggXU=
 cloud.google.com/go/asset v1.17.2/go.mod h1:SVbzde67ehddSoKf5uebOD1sYw8Ab/jD/9EIeWg99q4=
+cloud.google.com/go/assuredworkloads v1.10.0 h1:VLGnVFta+N4WM+ASHbhc14ZOItOabDLH1MSoDv+Xuag=
 cloud.google.com/go/assuredworkloads v1.11.1/go.mod h1:+F04I52Pgn5nmPG36CWFtxmav6+7Q+c5QyJoL18Lry0=
 cloud.google.com/go/assuredworkloads v1.11.4/go.mod h1:4pwwGNwy1RP0m+y12ef3Q/8PaiWrIDQ6nD2E8kvWI9U=
 cloud.google.com/go/assuredworkloads v1.11.5/go.mod h1:FKJ3g3ZvkL2D7qtqIGnDufFkHxwIpNM9vtmhvt+6wqk=
+cloud.google.com/go/automl v1.12.0 h1:50VugllC+U4IGl3tDNcZaWvApHBTrn/TvyHDJ0wM+Uw=
 cloud.google.com/go/automl v1.13.1/go.mod h1:1aowgAHWYZU27MybSCFiukPO7xnyawv7pt3zK4bheQE=
 cloud.google.com/go/automl v1.13.4/go.mod h1:ULqwX/OLZ4hBVfKQaMtxMSTlPx0GqGbWN8uA/1EqCP8=
 cloud.google.com/go/automl v1.13.5/go.mod h1:MDw3vLem3yh+SvmSgeYUmUKqyls6NzSumDm9OJ3xJ1Y=
-cloud.google.com/go/baremetalsolution v0.5.0/go.mod h1:dXGxEkmR9BMwxhzBhV0AioD0ULBmuLZI8CdwalUxuss=
+cloud.google.com/go/baremetalsolution v0.5.0 h1:2AipdYXL0VxMboelTTw8c1UJ7gYu35LZYUbuRv9Q28s=
 cloud.google.com/go/baremetalsolution v1.2.0/go.mod h1:68wi9AwPYkEWIUT4SvSGS9UJwKzNpshjHsH4lzk8iOw=
 cloud.google.com/go/baremetalsolution v1.2.3/go.mod h1:/UAQ5xG3faDdy180rCUv47e0jvpp3BFxT+Cl0PFjw5g=
 cloud.google.com/go/baremetalsolution v1.2.4/go.mod h1:BHCmxgpevw9IEryE99HbYEfxXkAEA3hkMJbYYsHtIuY=
-cloud.google.com/go/batch v0.7.0/go.mod h1:vLZN95s6teRUqRQ4s3RLDsH8PvboqBK+rn1oevL159g=
+cloud.google.com/go/batch v0.7.0 h1:YbMt0E6BtqeD5FvSv1d56jbVsWEzlGm55lYte+M6Mzs=
 cloud.google.com/go/batch v1.4.1/go.mod h1:KdBmDD61K0ovcxoRHGrN6GmOBWeAOyCgKD0Mugx4Fkk=
 cloud.google.com/go/batch v1.6.3/go.mod h1:J64gD4vsNSA2O5TtDB5AAux3nJ9iV8U3ilg3JDBYejU=
 cloud.google.com/go/batch v1.7.0/go.mod h1:J64gD4vsNSA2O5TtDB5AAux3nJ9iV8U3ilg3JDBYejU=
 cloud.google.com/go/batch v1.8.0/go.mod h1:k8V7f6VE2Suc0zUM4WtoibNrA6D3dqBpB+++e3vSGYc=
+cloud.google.com/go/beyondcorp v0.5.0 h1:UkY2BTZkEUAVrgqnSdOJ4p3y9ZRBPEe1LkjgC8Bj/Pc=
 cloud.google.com/go/beyondcorp v0.6.1/go.mod h1:YhxDWw946SCbmcWo3fAhw3V4XZMSpQ/VYfcKGAEU8/4=
 cloud.google.com/go/beyondcorp v1.0.0/go.mod h1:YhxDWw946SCbmcWo3fAhw3V4XZMSpQ/VYfcKGAEU8/4=
 cloud.google.com/go/beyondcorp v1.0.3/go.mod h1:HcBvnEd7eYr+HGDd5ZbuVmBYX019C6CEXBonXbCVwJo=
 cloud.google.com/go/beyondcorp v1.0.4/go.mod h1:Gx8/Rk2MxrvWfn4WIhHIG1NV7IBfg14pTKv1+EArVcc=
+cloud.google.com/go/bigquery v1.50.0 h1:RscMV6LbnAmhAzD893Lv9nXXy2WCaJmbxYPWDLbGqNQ=
 cloud.google.com/go/bigquery v1.52.0/go.mod h1:3b/iXjRQGU4nKa87cXeg6/gogLjO8C6PmuM8i5Bi/u4=
 cloud.google.com/go/bigquery v1.55.0/go.mod h1:9Y5I3PN9kQWuid6183JFhOGOW3GcirA5LpsKCUn+2ec=
 cloud.google.com/go/bigquery v1.57.1/go.mod h1:iYzC0tGVWt1jqSzBHqCr3lrRn0u13E8e+AqowBsDgug=
 cloud.google.com/go/bigquery v1.58.0/go.mod h1:0eh4mWNY0KrBTjUzLjoYImapGORq9gEPT7MWjCy9lik=
 cloud.google.com/go/bigquery v1.59.1/go.mod h1:VP1UJYgevyTwsV7desjzNzDND5p6hZB+Z8gZJN1GQUc=
+cloud.google.com/go/billing v1.13.0 h1:JYj28UYF5w6VBAh0gQYlgHJ/OD1oA+JgW29YZQU+UHM=
 cloud.google.com/go/billing v1.16.0/go.mod h1:y8vx09JSSJG02k5QxbycNRrN7FGZB6F3CAcgum7jvGA=
 cloud.google.com/go/billing v1.17.0/go.mod h1:Z9+vZXEq+HwH7bhJkyI4OQcR6TSbeMrjlpEjO2vzY64=
 cloud.google.com/go/billing v1.17.4/go.mod h1:5DOYQStCxquGprqfuid/7haD7th74kyMBHkjO/OvDtk=
 cloud.google.com/go/billing v1.18.0/go.mod h1:5DOYQStCxquGprqfuid/7haD7th74kyMBHkjO/OvDtk=
 cloud.google.com/go/billing v1.18.2/go.mod h1:PPIwVsOOQ7xzbADCwNe8nvK776QpfrOAUkvKjCUcpSE=
+cloud.google.com/go/binaryauthorization v1.5.0 h1:d3pMDBCCNivxt5a4eaV7FwL7cSH0H7RrEnFrTb1QKWs=
 cloud.google.com/go/binaryauthorization v1.6.1/go.mod h1:TKt4pa8xhowwffiBmbrbcxijJRZED4zrqnwZ1lKH51U=
 cloud.google.com/go/binaryauthorization v1.7.0/go.mod h1:Zn+S6QqTMn6odcMU1zDZCJxPjU2tZPV1oDl45lWY154=
 cloud.google.com/go/binaryauthorization v1.7.3/go.mod h1:VQ/nUGRKhrStlGr+8GMS8f6/vznYLkdK5vaKfdCIpvU=
 cloud.google.com/go/binaryauthorization v1.8.0/go.mod h1:VQ/nUGRKhrStlGr+8GMS8f6/vznYLkdK5vaKfdCIpvU=
 cloud.google.com/go/binaryauthorization v1.8.1/go.mod h1:1HVRyBerREA/nhI7yLang4Zn7vfNVA3okoAR9qYQJAQ=
+cloud.google.com/go/certificatemanager v1.6.0 h1:5C5UWeSt8Jkgp7OWn2rCkLmYurar/vIWIoSQ2+LaTOc=
 cloud.google.com/go/certificatemanager v1.7.1/go.mod h1:iW8J3nG6SaRYImIa+wXQ0g8IgoofDFRp5UMzaNk1UqI=
 cloud.google.com/go/certificatemanager v1.7.4/go.mod h1:FHAylPe/6IIKuaRmHbjbdLhGhVQ+CWHSD5Jq0k4+cCE=
 cloud.google.com/go/certificatemanager v1.7.5/go.mod h1:uX+v7kWqy0Y3NG/ZhNvffh0kuqkKZIXdvlZRO7z0VtM=
+cloud.google.com/go/channel v1.12.0 h1:GpcQY5UJKeOekYgsX3QXbzzAc/kRGtBq43fTmyKe6Uw=
 cloud.google.com/go/channel v1.16.0/go.mod h1:eN/q1PFSl5gyu0dYdmxNXscY/4Fi7ABmeHCJNf/oHmc=
 cloud.google.com/go/channel v1.17.0/go.mod h1:RpbhJsGi/lXWAUM1eF4IbQGbsfVlg2o8Iiy2/YLfVT0=
 cloud.google.com/go/channel v1.17.3/go.mod h1:QcEBuZLGGrUMm7kNj9IbU1ZfmJq2apotsV83hbxX7eE=
 cloud.google.com/go/channel v1.17.4/go.mod h1:QcEBuZLGGrUMm7kNj9IbU1ZfmJq2apotsV83hbxX7eE=
 cloud.google.com/go/channel v1.17.5/go.mod h1:FlpaOSINDAXgEext0KMaBq/vwpLMkkPAw9b2mApQeHc=
+cloud.google.com/go/cloudbuild v1.9.0 h1:GHQCjV4WlPPVU/j3Rlpc8vNIDwThhd1U9qSY/NPZdko=
 cloud.google.com/go/cloudbuild v1.10.1/go.mod h1:lyJg7v97SUIPq4RC2sGsz/9tNczhyv2AjML/ci4ulzU=
 cloud.google.com/go/cloudbuild v1.14.0/go.mod h1:lyJg7v97SUIPq4RC2sGsz/9tNczhyv2AjML/ci4ulzU=
 cloud.google.com/go/cloudbuild v1.14.3/go.mod h1:eIXYWmRt3UtggLnFGx4JvXcMj4kShhVzGndL1LwleEM=
 cloud.google.com/go/cloudbuild v1.15.0/go.mod h1:eIXYWmRt3UtggLnFGx4JvXcMj4kShhVzGndL1LwleEM=
 cloud.google.com/go/cloudbuild v1.15.1/go.mod h1:gIofXZSu+XD2Uy+qkOrGKEx45zd7s28u/k8f99qKals=
+cloud.google.com/go/clouddms v1.5.0 h1:E7v4TpDGUyEm1C/4KIrpVSOCTm0P6vWdHT0I4mostRA=
 cloud.google.com/go/clouddms v1.6.1/go.mod h1:Ygo1vL52Ov4TBZQquhz5fiw2CQ58gvu+PlS6PVXCpZI=
 cloud.google.com/go/clouddms v1.7.0/go.mod h1:MW1dC6SOtI/tPNCciTsXtsGNEM0i0OccykPvv3hiYeM=
 cloud.google.com/go/clouddms v1.7.3/go.mod h1:fkN2HQQNUYInAU3NQ3vRLkV2iWs8lIdmBKOx4nrL6Hc=
 cloud.google.com/go/clouddms v1.7.4/go.mod h1:RdrVqoFG9RWI5AvZ81SxJ/xvxPdtcRhFotwdE79DieY=
+cloud.google.com/go/cloudtasks v1.10.0 h1:uK5k6abf4yligFgYFnG0ni8msai/dSv6mDmiBulU0hU=
 cloud.google.com/go/cloudtasks v1.11.1/go.mod h1:a9udmnou9KO2iulGscKR0qBYjreuX8oHwpmFsKspEvM=
 cloud.google.com/go/cloudtasks v1.12.1/go.mod h1:a9udmnou9KO2iulGscKR0qBYjreuX8oHwpmFsKspEvM=
 cloud.google.com/go/cloudtasks v1.12.4/go.mod h1:BEPu0Gtt2dU6FxZHNqqNdGqIG86qyWKBPGnsb7udGY0=
 cloud.google.com/go/cloudtasks v1.12.6/go.mod h1:b7c7fe4+TJsFZfDyzO51F7cjq7HLUlRi/KZQLQjDsaY=
-cloud.google.com/go/compute v1.19.3/go.mod h1:qxvISKp/gYnXkSAD1ppcSOveRAmzxicEv/JlizULFrI=
-cloud.google.com/go/compute v1.20.1/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
 cloud.google.com/go/compute v1.21.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
 cloud.google.com/go/compute v1.23.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
 cloud.google.com/go/compute v1.23.1/go.mod h1:CqB3xpmPKKt3OJpW2ndFIXnA9A4xAy/F3Xp1ixncW78=
 cloud.google.com/go/compute v1.23.3/go.mod h1:VCgBUoMnIVIR0CscqQiPJLAG25E3ZRZMzcFZeQ+h8CI=
+cloud.google.com/go/compute v1.24.0 h1:phWcR2eWzRJaL/kOiJwfFsPs4BaKq1j6vnpZrc1YlVg=
 cloud.google.com/go/compute v1.24.0/go.mod h1:kw1/T+h/+tK2LJK0wiPPx1intgdAM3j/g3hFDlscY40=
-cloud.google.com/go/compute/metadata v0.2.3/go.mod h1:VAV5nSsACxMJvgaAuX6Pk2AawlZn8kiOGuCv6gTkwuA=
+cloud.google.com/go/compute/metadata v0.3.0 h1:Tz+eQXMEqDIKRsmY3cHTL6FVaynIjX2QxYC4trgAKZc=
+cloud.google.com/go/compute/metadata v0.3.0/go.mod h1:zFmK7XCadkQkj6TtorcaGlCW1hT1fIilQDwofLpJ20k=
+cloud.google.com/go/contactcenterinsights v1.6.0 h1:jXIpfcH/VYSE1SYcPzO0n1VVb+sAamiLOgCw45JbOQk=
 cloud.google.com/go/contactcenterinsights v1.9.1/go.mod h1:bsg/R7zGLYMVxFFzfh9ooLTruLRCG9fnzhH9KznHhbM=
 cloud.google.com/go/contactcenterinsights v1.10.0/go.mod h1:bsg/R7zGLYMVxFFzfh9ooLTruLRCG9fnzhH9KznHhbM=
 cloud.google.com/go/contactcenterinsights v1.11.3/go.mod h1:HHX5wrz5LHVAwfI2smIotQG9x8Qd6gYilaHcLLLmNis=
 cloud.google.com/go/contactcenterinsights v1.12.1/go.mod h1:HHX5wrz5LHVAwfI2smIotQG9x8Qd6gYilaHcLLLmNis=
 cloud.google.com/go/contactcenterinsights v1.13.0/go.mod h1:ieq5d5EtHsu8vhe2y3amtZ+BE+AQwX5qAy7cpo0POsI=
+cloud.google.com/go/container v1.15.0 h1:NKlY/wCDapfVZlbVVaeuu2UZZED5Dy1z4Zx1KhEzm8c=
 cloud.google.com/go/container v1.22.1/go.mod h1:lTNExE2R7f+DLbAN+rJiKTisauFCaoDq6NURZ83eVH4=
 cloud.google.com/go/container v1.26.0/go.mod h1:YJCmRet6+6jnYYRS000T6k0D0xUXQgBSaJ7VwI8FBj4=
 cloud.google.com/go/container v1.27.1/go.mod h1:b1A1gJeTBXVLQ6GGw9/9M4FG94BEGsqJ5+t4d/3N7O4=
 cloud.google.com/go/container v1.29.0/go.mod h1:b1A1gJeTBXVLQ6GGw9/9M4FG94BEGsqJ5+t4d/3N7O4=
 cloud.google.com/go/container v1.31.0/go.mod h1:7yABn5s3Iv3lmw7oMmyGbeV6tQj86njcTijkkGuvdZA=
+cloud.google.com/go/containeranalysis v0.9.0 h1:EQ4FFxNaEAg8PqQCO7bVQfWz9NVwZCUKaM1b3ycfx3U=
 cloud.google.com/go/containeranalysis v0.10.1/go.mod h1:Ya2jiILITMY68ZLPaogjmOMNkwsDrWBSTyBubGXO7j0=
 cloud.google.com/go/containeranalysis v0.11.0/go.mod h1:4n2e99ZwpGxpNcz+YsFT1dfOHPQFGcAC8FN2M2/ne/U=
 cloud.google.com/go/containeranalysis v0.11.3/go.mod h1:kMeST7yWFQMGjiG9K7Eov+fPNQcGhb8mXj/UcTiWw9U=
 cloud.google.com/go/containeranalysis v0.11.4/go.mod h1:cVZT7rXYBS9NG1rhQbWL9pWbXCKHWJPYraE8/FTSYPE=
+cloud.google.com/go/datacatalog v1.13.0 h1:4H5IJiyUE0X6ShQBqgFFZvGGcrwGVndTwUSLP4c52gw=
 cloud.google.com/go/datacatalog v1.14.1/go.mod h1:d2CevwTG4yedZilwe+v3E3ZBDRMobQfSG/a6cCCN5R4=
 cloud.google.com/go/datacatalog v1.17.1/go.mod h1:nCSYFHgtxh2MiEktWIz71s/X+7ds/UT9kp0PC7waCzE=
 cloud.google.com/go/datacatalog v1.18.3/go.mod h1:5FR6ZIF8RZrtml0VUao22FxhdjkoG+a0866rEnObryM=
 cloud.google.com/go/datacatalog v1.19.2/go.mod h1:2YbODwmhpLM4lOFe3PuEhHK9EyTzQJ5AXgIy7EDKTEE=
 cloud.google.com/go/datacatalog v1.19.3/go.mod h1:ra8V3UAsciBpJKQ+z9Whkxzxv7jmQg1hfODr3N3YPJ4=
+cloud.google.com/go/dataflow v0.8.0 h1:eYyD9o/8Nm6EttsKZaEGD84xC17bNgSKCu0ZxwqUbpg=
 cloud.google.com/go/dataflow v0.9.1/go.mod h1:Wp7s32QjYuQDWqJPFFlnBKhkAtiFpMTdg00qGbnIHVw=
 cloud.google.com/go/dataflow v0.9.4/go.mod h1:4G8vAkHYCSzU8b/kmsoR2lWyHJD85oMJPHMtan40K8w=
 cloud.google.com/go/dataflow v0.9.5/go.mod h1:udl6oi8pfUHnL0z6UN9Lf9chGqzDMVqcYTcZ1aPnCZQ=
+cloud.google.com/go/dataform v0.7.0 h1:Dyk+fufup1FR6cbHjFpMuP4SfPiF3LI3JtoIIALoq48=
 cloud.google.com/go/dataform v0.8.1/go.mod h1:3BhPSiw8xmppbgzeBbmDvmSWlwouuJkXsXsb8UBih9M=
 cloud.google.com/go/dataform v0.9.1/go.mod h1:pWTg+zGQ7i16pyn0bS1ruqIE91SdL2FDMvEYu/8oQxs=
 cloud.google.com/go/dataform v0.9.2/go.mod h1:S8cQUwPNWXo7m/g3DhWHsLBoufRNn9EgFrMgne2j7cI=
+cloud.google.com/go/datafusion v1.6.0 h1:sZjRnS3TWkGsu1LjYPFD/fHeMLZNXDK6PDHi2s2s/bk=
 cloud.google.com/go/datafusion v1.7.1/go.mod h1:KpoTBbFmoToDExJUso/fcCiguGDk7MEzOWXUsJo0wsI=
 cloud.google.com/go/datafusion v1.7.4/go.mod h1:BBs78WTOLYkT4GVZIXQCZT3GFpkpDN4aBY4NDX/jVlM=
 cloud.google.com/go/datafusion v1.7.5/go.mod h1:bYH53Oa5UiqahfbNK9YuYKteeD4RbQSNMx7JF7peGHc=
+cloud.google.com/go/datalabeling v0.7.0 h1:ch4qA2yvddGRUrlfwrNJCr79qLqhS9QBwofPHfFlDIk=
 cloud.google.com/go/datalabeling v0.8.1/go.mod h1:XS62LBSVPbYR54GfYQsPXZjTW8UxCK2fkDciSrpRFdY=
 cloud.google.com/go/datalabeling v0.8.4/go.mod h1:Z1z3E6LHtffBGrNUkKwbwbDxTiXEApLzIgmymj8A3S8=
 cloud.google.com/go/datalabeling v0.8.5/go.mod h1:IABB2lxQnkdUbMnQaOl2prCOfms20mcPxDBm36lps+s=
+cloud.google.com/go/dataplex v1.6.0 h1:RvoZ5T7gySwm1CHzAw7yY1QwwqaGswunmqEssPxU/AM=
 cloud.google.com/go/dataplex v1.8.1/go.mod h1:7TyrDT6BCdI8/38Uvp0/ZxBslOslP2X2MPDucliyvSE=
 cloud.google.com/go/dataplex v1.9.1/go.mod h1:7TyrDT6BCdI8/38Uvp0/ZxBslOslP2X2MPDucliyvSE=
 cloud.google.com/go/dataplex v1.11.1/go.mod h1:mHJYQQ2VEJHsyoC0OdNyy988DvEbPhqFs5OOLffLX0c=
 cloud.google.com/go/dataplex v1.14.0/go.mod h1:mHJYQQ2VEJHsyoC0OdNyy988DvEbPhqFs5OOLffLX0c=
 cloud.google.com/go/dataplex v1.14.2/go.mod h1:0oGOSFlEKef1cQeAHXy4GZPB/Ife0fz/PxBf+ZymA2U=
-cloud.google.com/go/dataproc v1.12.0/go.mod h1:zrF3aX0uV3ikkMz6z4uBbIKyhRITnxvr4i3IjKsKrw4=
+cloud.google.com/go/dataproc v1.12.0 h1:W47qHL3W4BPkAIbk4SWmIERwsWBaNnWm0P2sdx3YgGU=
 cloud.google.com/go/dataproc/v2 v2.2.0/go.mod h1:lZR7AQtwZPvmINx5J87DSOOpTfof9LVZju6/Qo4lmcY=
 cloud.google.com/go/dataproc/v2 v2.2.3/go.mod h1:G5R6GBc9r36SXv/RtZIVfB8SipI+xVn0bX5SxUzVYbY=
 cloud.google.com/go/dataproc/v2 v2.3.0/go.mod h1:G5R6GBc9r36SXv/RtZIVfB8SipI+xVn0bX5SxUzVYbY=
 cloud.google.com/go/dataproc/v2 v2.4.0/go.mod h1:3B1Ht2aRB8VZIteGxQS/iNSJGzt9+CA0WGnDVMEm7Z4=
+cloud.google.com/go/dataqna v0.7.0 h1:yFzi/YU4YAdjyo7pXkBE2FeHbgz5OQQBVDdbErEHmVQ=
 cloud.google.com/go/dataqna v0.8.1/go.mod h1:zxZM0Bl6liMePWsHA8RMGAfmTG34vJMapbHAxQ5+WA8=
 cloud.google.com/go/dataqna v0.8.4/go.mod h1:mySRKjKg5Lz784P6sCov3p1QD+RZQONRMRjzGNcFd0c=
 cloud.google.com/go/dataqna v0.8.5/go.mod h1:vgihg1mz6n7pb5q2YJF7KlXve6tCglInd6XO0JGOlWM=
+cloud.google.com/go/datastore v1.11.0 h1:iF6I/HaLs3Ado8uRKMvZRvF/ZLkWaWE9i8AiHzbC774=
 cloud.google.com/go/datastore v1.12.1/go.mod h1:KjdB88W897MRITkvWWJrg2OUtrR5XVj1EoLgSp6/N70=
 cloud.google.com/go/datastore v1.14.0/go.mod h1:GAeStMBIt9bPS7jMJA85kgkpsMkvseWWXiaHya9Jes8=
 cloud.google.com/go/datastore v1.15.0/go.mod h1:GAeStMBIt9bPS7jMJA85kgkpsMkvseWWXiaHya9Jes8=
+cloud.google.com/go/datastream v1.7.0 h1:BBCBTnWMDwwEzQQmipUXxATa7Cm7CA/gKjKcR2w35T0=
 cloud.google.com/go/datastream v1.9.1/go.mod h1:hqnmr8kdUBmrnk65k5wNRoHSCYksvpdZIcZIEl8h43Q=
 cloud.google.com/go/datastream v1.10.0/go.mod h1:hqnmr8kdUBmrnk65k5wNRoHSCYksvpdZIcZIEl8h43Q=
 cloud.google.com/go/datastream v1.10.3/go.mod h1:YR0USzgjhqA/Id0Ycu1VvZe8hEWwrkjuXrGbzeDOSEA=
 cloud.google.com/go/datastream v1.10.4/go.mod h1:7kRxPdxZxhPg3MFeCSulmAJnil8NJGGvSNdn4p1sRZo=
+cloud.google.com/go/deploy v1.8.0 h1:otshdKEbmsi1ELYeCKNYppwV0UH5xD05drSdBm7ouTk=
 cloud.google.com/go/deploy v1.11.0/go.mod h1:tKuSUV5pXbn67KiubiUNUejqLs4f5cxxiCNCeyl0F2g=
 cloud.google.com/go/deploy v1.13.0/go.mod h1:tKuSUV5pXbn67KiubiUNUejqLs4f5cxxiCNCeyl0F2g=
 cloud.google.com/go/deploy v1.14.2/go.mod h1:e5XOUI5D+YGldyLNZ21wbp9S8otJbBE4i88PtO9x/2g=
 cloud.google.com/go/deploy v1.17.0/go.mod h1:XBr42U5jIr64t92gcpOXxNrqL2PStQCXHuKK5GRUuYo=
 cloud.google.com/go/deploy v1.17.1/go.mod h1:SXQyfsXrk0fBmgBHRzBjQbZhMfKZ3hMQBw5ym7MN/50=
+cloud.google.com/go/dialogflow v1.32.0 h1:uVlKKzp6G/VtSW0E7IH1Y5o0H48/UOCmqksG2riYCwQ=
 cloud.google.com/go/dialogflow v1.38.0/go.mod h1:L7jnH+JL2mtmdChzAIcXQHXMvQkE3U4hTaNltEuxXn4=
 cloud.google.com/go/dialogflow v1.43.0/go.mod h1:pDUJdi4elL0MFmt1REMvFkdsUTYSHq+rTCS8wg0S3+M=
 cloud.google.com/go/dialogflow v1.44.3/go.mod h1:mHly4vU7cPXVweuB5R0zsYKPMzy240aQdAu06SqBbAQ=
 cloud.google.com/go/dialogflow v1.48.1/go.mod h1:C1sjs2/g9cEwjCltkKeYp3FFpz8BOzNondEaAlCpt+A=
 cloud.google.com/go/dialogflow v1.49.0/go.mod h1:dhVrXKETtdPlpPhE7+2/k4Z8FRNUp6kMV3EW3oz/fe0=
+cloud.google.com/go/dlp v1.9.0 h1:1JoJqezlgu6NWCroBxr4rOZnwNFILXr4cB9dMaSKO4A=
 cloud.google.com/go/dlp v1.10.1/go.mod h1:IM8BWz1iJd8njcNcG0+Kyd9OPnqnRNkDV8j42VT5KOI=
 cloud.google.com/go/dlp v1.11.1/go.mod h1:/PA2EnioBeXTL/0hInwgj0rfsQb3lpE3R8XUJxqUNKI=
 cloud.google.com/go/dlp v1.11.2/go.mod h1:9Czi+8Y/FegpWzgSfkRlyz+jwW6Te9Rv26P3UfU/h/w=
+cloud.google.com/go/documentai v1.18.0 h1:KM3Xh0QQyyEdC8Gs2vhZfU+rt6OCPF0dwVwxKgLmWfI=
 cloud.google.com/go/documentai v1.20.0/go.mod h1:yJkInoMcK0qNAEdRnqY/D5asy73tnPe88I1YTZT+a8E=
 cloud.google.com/go/documentai v1.22.1/go.mod h1:LKs22aDHbJv7ufXuPypzRO7rG3ALLJxzdCXDPutw4Qc=
 cloud.google.com/go/documentai v1.23.5/go.mod h1:ghzBsyVTiVdkfKaUCum/9bGBEyBjDO4GfooEcYKhN+g=
 cloud.google.com/go/documentai v1.23.7/go.mod h1:ghzBsyVTiVdkfKaUCum/9bGBEyBjDO4GfooEcYKhN+g=
 cloud.google.com/go/documentai v1.25.0/go.mod h1:ftLnzw5VcXkLItp6pw1mFic91tMRyfv6hHEY5br4KzY=
+cloud.google.com/go/domains v0.8.0 h1:2ti/o9tlWL4N+wIuWUNH+LbfgpwxPr8J1sv9RHA4bYQ=
 cloud.google.com/go/domains v0.9.1/go.mod h1:aOp1c0MbejQQ2Pjf1iJvnVyT+z6R6s8pX66KaCSDYfE=
 cloud.google.com/go/domains v0.9.4/go.mod h1:27jmJGShuXYdUNjyDG0SodTfT5RwLi7xmH334Gvi3fY=
 cloud.google.com/go/domains v0.9.5/go.mod h1:dBzlxgepazdFhvG7u23XMhmMKBjrkoUNaw0A8AQB55Y=
+cloud.google.com/go/edgecontainer v1.0.0 h1:O0YVE5v+O0Q/ODXYsQHmHb+sYM8KNjGZw2pjX2Ws41c=
 cloud.google.com/go/edgecontainer v1.1.1/go.mod h1:O5bYcS//7MELQZs3+7mabRqoWQhXCzenBu0R8bz2rwk=
 cloud.google.com/go/edgecontainer v1.1.4/go.mod h1:AvFdVuZuVGdgaE5YvlL1faAoa1ndRR/5XhXZvPBHbsE=
 cloud.google.com/go/edgecontainer v1.1.5/go.mod h1:rgcjrba3DEDEQAidT4yuzaKWTbkTI5zAMu3yy6ZWS0M=
-cloud.google.com/go/errorreporting v0.3.0/go.mod h1:xsP2yaAp+OAW4OIm60An2bbLpqIhKXdWR/tawvl7QzU=
+cloud.google.com/go/errorreporting v0.3.0 h1:kj1XEWMu8P0qlLhm3FwcaFsUvXChV/OraZwA70trRR0=
+cloud.google.com/go/essentialcontacts v1.5.0 h1:gIzEhCoOT7bi+6QZqZIzX1Erj4SswMPIteNvYVlu+pM=
 cloud.google.com/go/essentialcontacts v1.6.2/go.mod h1:T2tB6tX+TRak7i88Fb2N9Ok3PvY3UNbUsMag9/BARh4=
 cloud.google.com/go/essentialcontacts v1.6.5/go.mod h1:jjYbPzw0x+yglXC890l6ECJWdYeZ5dlYACTFL0U/VuM=
 cloud.google.com/go/essentialcontacts v1.6.6/go.mod h1:XbqHJGaiH0v2UvtuucfOzFXN+rpL/aU5BCZLn4DYl1Q=
+cloud.google.com/go/eventarc v1.11.0 h1:fsJmNeqvqtk74FsaVDU6cH79lyZNCYP8Rrv7EhaB/PU=
 cloud.google.com/go/eventarc v1.12.1/go.mod h1:mAFCW6lukH5+IZjkvrEss+jmt2kOdYlN8aMx3sRJiAI=
 cloud.google.com/go/eventarc v1.13.0/go.mod h1:mAFCW6lukH5+IZjkvrEss+jmt2kOdYlN8aMx3sRJiAI=
 cloud.google.com/go/eventarc v1.13.3/go.mod h1:RWH10IAZIRcj1s/vClXkBgMHwh59ts7hSWcqD3kaclg=
 cloud.google.com/go/eventarc v1.13.4/go.mod h1:zV5sFVoAa9orc/52Q+OuYUG9xL2IIZTbbuTHC6JSY8s=
+cloud.google.com/go/filestore v1.6.0 h1:ckTEXN5towyTMu4q0uQ1Mde/JwTHur0gXs8oaIZnKfw=
 cloud.google.com/go/filestore v1.7.1/go.mod h1:y10jsorq40JJnjR/lQ8AfFbbcGlw3g+Dp8oN7i7FjV4=
 cloud.google.com/go/filestore v1.7.4/go.mod h1:S5JCxIbFjeBhWMTfIYH2Jx24J6BqjwpkkPl+nBA5DlI=
 cloud.google.com/go/filestore v1.8.0/go.mod h1:S5JCxIbFjeBhWMTfIYH2Jx24J6BqjwpkkPl+nBA5DlI=
 cloud.google.com/go/filestore v1.8.1/go.mod h1:MbN9KcaM47DRTIuLfQhJEsjaocVebNtNQhSLhKCF5GM=
+cloud.google.com/go/firestore v1.9.0 h1:IBlRyxgGySXu5VuW0RgGFlTtLukSnNkpDiEOMkQkmpA=
 cloud.google.com/go/firestore v1.11.0/go.mod h1:b38dKhgzlmNNGTNZZwe7ZRFEuRab1Hay3/DBsIGKKy4=
 cloud.google.com/go/firestore v1.13.0/go.mod h1:QojqqOh8IntInDUSTAh0c8ZsPYAr68Ma8c5DWOy8xb8=
 cloud.google.com/go/firestore v1.14.0/go.mod h1:96MVaHLsEhbvkBEdZgfN+AS/GIkco1LRpH9Xp9YZfzQ=
+cloud.google.com/go/functions v1.13.0 h1:pPDqtsXG2g9HeOQLoquLbmvmb82Y4Ezdo1GXuotFoWg=
 cloud.google.com/go/functions v1.15.1/go.mod h1:P5yNWUTkyU+LvW/S9O6V+V423VZooALQlqoXdoPz5AE=
 cloud.google.com/go/functions v1.15.4/go.mod h1:CAsTc3VlRMVvx+XqXxKqVevguqJpnVip4DdonFsX28I=
 cloud.google.com/go/functions v1.16.0/go.mod h1:nbNpfAG7SG7Duw/o1iZ6ohvL7mc6MapWQVpqtM29n8k=
-cloud.google.com/go/gkebackup v0.4.0/go.mod h1:byAyBGUwYGEEww7xsbnUTBHIYcOPy/PgUWUtOeRm9Vg=
+cloud.google.com/go/gaming v1.9.0 h1:7vEhFnZmd931Mo7sZ6pJy7uQPDxF7m7v8xtBheG08tc=
+cloud.google.com/go/gkebackup v0.4.0 h1:za3QZvw6ujR0uyqkhomKKKNoXDyqYGPJies3voUK8DA=
 cloud.google.com/go/gkebackup v1.3.1/go.mod h1:vUDOu++N0U5qs4IhG1pcOnD1Mac79xWy6GoBFlWCWBU=
 cloud.google.com/go/gkebackup v1.3.4/go.mod h1:gLVlbM8h/nHIs09ns1qx3q3eaXcGSELgNu1DWXYz1HI=
 cloud.google.com/go/gkebackup v1.3.5/go.mod h1:KJ77KkNN7Wm1LdMopOelV6OodM01pMuK2/5Zt1t4Tvc=
+cloud.google.com/go/gkeconnect v0.7.0 h1:gXYKciHS/Lgq0GJ5Kc9SzPA35NGc3yqu6SkjonpEr2Q=
 cloud.google.com/go/gkeconnect v0.8.1/go.mod h1:KWiK1g9sDLZqhxB2xEuPV8V9NYzrqTUmQR9shJHpOZw=
 cloud.google.com/go/gkeconnect v0.8.4/go.mod h1:84hZz4UMlDCKl8ifVW8layK4WHlMAFeq8vbzjU0yJkw=
 cloud.google.com/go/gkeconnect v0.8.5/go.mod h1:LC/rS7+CuJ5fgIbXv8tCD/mdfnlAadTaUufgOkmijuk=
+cloud.google.com/go/gkehub v0.12.0 h1:TqCSPsEBQ6oZSJgEYZ3XT8x2gUadbvfwI32YB0kuHCs=
 cloud.google.com/go/gkehub v0.14.1/go.mod h1:VEXKIJZ2avzrbd7u+zeMtW00Y8ddk/4V9511C9CQGTY=
 cloud.google.com/go/gkehub v0.14.4/go.mod h1:Xispfu2MqnnFt8rV/2/3o73SK1snL8s9dYJ9G2oQMfc=
 cloud.google.com/go/gkehub v0.14.5/go.mod h1:6bzqxM+a+vEH/h8W8ec4OJl4r36laxTs3A/fMNHJ0wA=
+cloud.google.com/go/gkemulticloud v0.5.0 h1:8I84Q4vl02rJRsFiinBxl7WCozfdLlUVBQuSrqr9Wtk=
 cloud.google.com/go/gkemulticloud v0.6.1/go.mod h1:kbZ3HKyTsiwqKX7Yw56+wUGwwNZViRnxWK2DVknXWfw=
 cloud.google.com/go/gkemulticloud v1.0.0/go.mod h1:kbZ3HKyTsiwqKX7Yw56+wUGwwNZViRnxWK2DVknXWfw=
 cloud.google.com/go/gkemulticloud v1.0.3/go.mod h1:7NpJBN94U6DY1xHIbsDqB2+TFZUfjLUKLjUX8NGLor0=
 cloud.google.com/go/gkemulticloud v1.1.0/go.mod h1:7NpJBN94U6DY1xHIbsDqB2+TFZUfjLUKLjUX8NGLor0=
 cloud.google.com/go/gkemulticloud v1.1.1/go.mod h1:C+a4vcHlWeEIf45IB5FFR5XGjTeYhF83+AYIpTy4i2Q=
+cloud.google.com/go/grafeas v0.2.0 h1:CYjC+xzdPvbV65gi6Dr4YowKcmLo045pm18L0DhdELM=
+cloud.google.com/go/gsuiteaddons v1.5.0 h1:1mvhXqJzV0Vg5Fa95QwckljODJJfDFXV4pn+iL50zzA=
 cloud.google.com/go/gsuiteaddons v1.6.1/go.mod h1:CodrdOqRZcLp5WOwejHWYBjZvfY0kOphkAKpF/3qdZY=
 cloud.google.com/go/gsuiteaddons v1.6.4/go.mod h1:rxtstw7Fx22uLOXBpsvb9DUbC+fiXs7rF4U29KHM/pE=
 cloud.google.com/go/gsuiteaddons v1.6.5/go.mod h1:Lo4P2IvO8uZ9W+RaC6s1JVxo42vgy+TX5a6hfBZ0ubs=
-cloud.google.com/go/iam v0.13.0/go.mod h1:ljOg+rcNfzZ5d6f1nAUJ8ZIxOaZUVoS14bKCtaLZ/D0=
+cloud.google.com/go/iam v0.13.0 h1:+CmB+K0J/33d0zSQ9SlFWUeCCEn5XJA0ZMZ3pHE9u8k=
 cloud.google.com/go/iam v1.1.1/go.mod h1:A5avdyVL2tCppe4unb0951eI9jreack+RJ0/d+KUZOU=
 cloud.google.com/go/iam v1.1.2/go.mod h1:A5avdyVL2tCppe4unb0951eI9jreack+RJ0/d+KUZOU=
 cloud.google.com/go/iam v1.1.5/go.mod h1:rB6P/Ic3mykPbFio+vo7403drjlgvoWfYpJhMXEbzv8=
 cloud.google.com/go/iam v1.1.6/go.mod h1:O0zxdPeGBoFdWW3HWmBxJsk0pfvNM/p/qa82rWOGTwI=
+cloud.google.com/go/iap v1.7.1 h1:PxVHFuMxmSZyfntKXHXhd8bo82WJ+LcATenq7HLdVnU=
 cloud.google.com/go/iap v1.8.1/go.mod h1:sJCbeqg3mvWLqjZNsI6dfAtbbV1DL2Rl7e1mTyXYREQ=
 cloud.google.com/go/iap v1.9.0/go.mod h1:01OFxd1R+NFrg78S+hoPV5PxEzv22HXaNqUUlmNHFuY=
 cloud.google.com/go/iap v1.9.3/go.mod h1:DTdutSZBqkkOm2HEOTBzhZxh2mwwxshfD/h3yofAiCw=
 cloud.google.com/go/iap v1.9.4/go.mod h1:vO4mSq0xNf/Pu6E5paORLASBwEmphXEjgCFg7aeNu1w=
+cloud.google.com/go/ids v1.3.0 h1:fodnCDtOXuMmS8LTC2y3h8t24U8F3eKWfhi+3LY6Qf0=
 cloud.google.com/go/ids v1.4.1/go.mod h1:np41ed8YMU8zOgv53MMMoCntLTn2lF+SUzlM+O3u/jw=
 cloud.google.com/go/ids v1.4.4/go.mod h1:z+WUc2eEl6S/1aZWzwtVNWoSZslgzPxAboS0lZX0HjI=
 cloud.google.com/go/ids v1.4.5/go.mod h1:p0ZnyzjMWxww6d2DvMGnFwCsSxDJM666Iir1bK1UuBo=
+cloud.google.com/go/iot v1.6.0 h1:39W5BFSarRNZfVG0eXI5LYux+OVQT8GkgpHCnrZL2vM=
 cloud.google.com/go/iot v1.7.1/go.mod h1:46Mgw7ev1k9KqK1ao0ayW9h0lI+3hxeanz+L1zmbbbk=
 cloud.google.com/go/iot v1.7.4/go.mod h1:3TWqDVvsddYBG++nHSZmluoCAVGr1hAcabbWZNKEZLk=
 cloud.google.com/go/iot v1.7.5/go.mod h1:nq3/sqTz3HGaWJi1xNiX7F41ThOzpud67vwk0YsSsqs=
+cloud.google.com/go/kms v1.10.1 h1:7hm1bRqGCA1GBRQUrp831TwJ9TWhP+tvLuP497CQS2g=
 cloud.google.com/go/kms v1.12.1/go.mod h1:c9J991h5DTl+kg7gi3MYomh12YEENGrf48ee/N/2CDM=
 cloud.google.com/go/kms v1.15.2/go.mod h1:3hopT4+7ooWRCjc2DxgnpESFxhIraaI2IpAVUEhbT/w=
 cloud.google.com/go/kms v1.15.5/go.mod h1:cU2H5jnp6G2TDpUGZyqTCoy1n16fbubHZjmVXSMtwDI=
 cloud.google.com/go/kms v1.15.7/go.mod h1:ub54lbsa6tDkUwnu4W7Yt1aAIFLnspgh0kPGToDukeI=
+cloud.google.com/go/language v1.9.0 h1:7Ulo2mDk9huBoBi8zCE3ONOoBrL6UXfAI71CLQ9GEIM=
 cloud.google.com/go/language v1.10.1/go.mod h1:CPp94nsdVNiQEt1CNjF5WkTcisLiHPyIbMhvR8H2AW0=
 cloud.google.com/go/language v1.11.0/go.mod h1:uDx+pFDdAKTY8ehpWbiXyQdz8tDSYLJbQcXsCkjYyvQ=
 cloud.google.com/go/language v1.12.2/go.mod h1:9idWapzr/JKXBBQ4lWqVX/hcadxB194ry20m/bTrhWc=
 cloud.google.com/go/language v1.12.3/go.mod h1:evFX9wECX6mksEva8RbRnr/4wi/vKGYnAJrTRXU8+f8=
+cloud.google.com/go/lifesciences v0.8.0 h1:uWrMjWTsGjLZpCTWEAzYvyXj+7fhiZST45u9AgasasI=
 cloud.google.com/go/lifesciences v0.9.1/go.mod h1:hACAOd1fFbCGLr/+weUKRAJas82Y4vrL3O5326N//Wc=
 cloud.google.com/go/lifesciences v0.9.4/go.mod h1:bhm64duKhMi7s9jR9WYJYvjAFJwRqNj+Nia7hF0Z7JA=
 cloud.google.com/go/lifesciences v0.9.5/go.mod h1:OdBm0n7C0Osh5yZB7j9BXyrMnTRGBJIZonUMxo5CzPw=
-cloud.google.com/go/logging v1.7.0/go.mod h1:3xjP2CjkM3ZkO73aj4ASA5wRPGGCRrPIAeNqVNkzY8M=
+cloud.google.com/go/logging v1.7.0 h1:CJYxlNNNNAMkHp9em/YEXcfJg+rPDg7YfwoRpMU+t5I=
 cloud.google.com/go/logging v1.8.1/go.mod h1:TJjR+SimHwuC8MZ9cjByQulAMgni+RkXeI3wwctHJEI=
 cloud.google.com/go/logging v1.9.0/go.mod h1:1Io0vnZv4onoUnsVUQY3HZ3Igb1nBchky0A0y7BBBhE=
+cloud.google.com/go/longrunning v0.4.1 h1:v+yFJOfKC3yZdY6ZUI933pIYdhyhV8S3NpWrXWmg7jM=
 cloud.google.com/go/longrunning v0.5.0/go.mod h1:0JNuqRShmscVAhIACGtskSAWtqtOoPkwP0YF1oVEchc=
 cloud.google.com/go/longrunning v0.5.1/go.mod h1:spvimkwdz6SPWKEt/XBij79E9fiTkHSQl/fRUUQJYJc=
 cloud.google.com/go/longrunning v0.5.2/go.mod h1:nqo6DQbNV2pXhGDbDMoN2bWz68MjZUzqv2YttZiveCs=
 cloud.google.com/go/longrunning v0.5.4/go.mod h1:zqNVncI0BOP8ST6XQD1+VcvuShMmq7+xFSzOL++V0dI=
 cloud.google.com/go/longrunning v0.5.5/go.mod h1:WV2LAxD8/rg5Z1cNW6FJ/ZpX4E4VnDnoTk0yawPBB7s=
+cloud.google.com/go/managedidentities v1.5.0 h1:ZRQ4k21/jAhrHBVKl/AY7SjgzeJwG1iZa+mJ82P+VNg=
 cloud.google.com/go/managedidentities v1.6.1/go.mod h1:h/irGhTN2SkZ64F43tfGPMbHnypMbu4RB3yl8YcuEak=
 cloud.google.com/go/managedidentities v1.6.4/go.mod h1:WgyaECfHmF00t/1Uk8Oun3CQ2PGUtjc3e9Alh79wyiM=
 cloud.google.com/go/managedidentities v1.6.5/go.mod h1:fkFI2PwwyRQbjLxlm5bQ8SjtObFMW3ChBGNqaMcgZjI=
-cloud.google.com/go/maps v0.7.0/go.mod h1:3GnvVl3cqeSvgMcpRlQidXsPYuDGQ8naBis7MVzpXsY=
+cloud.google.com/go/maps v0.7.0 h1:mv9YaczD4oZBZkM5XJl6fXQ984IkJNHPwkc8MUsdkBo=
 cloud.google.com/go/maps v1.4.0/go.mod h1:6mWTUv+WhnOwAgjVsSW2QPPECmW+s3PcRyOa9vgG/5s=
 cloud.google.com/go/maps v1.6.1/go.mod h1:4+buOHhYXFBp58Zj/K+Lc1rCmJssxxF4pJ5CJnhdz18=
 cloud.google.com/go/maps v1.6.3/go.mod h1:VGAn809ADswi1ASofL5lveOHPnE6Rk/SFTTBx1yuOLw=
 cloud.google.com/go/maps v1.6.4/go.mod h1:rhjqRy8NWmDJ53saCfsXQ0LKwBHfi6OSh5wkq6BaMhI=
+cloud.google.com/go/mediatranslation v0.7.0 h1:anPxH+/WWt8Yc3EdoEJhPMBRF7EhIdz426A+tuoA0OU=
 cloud.google.com/go/mediatranslation v0.8.1/go.mod h1:L/7hBdEYbYHQJhX2sldtTO5SZZ1C1vkapubj0T2aGig=
 cloud.google.com/go/mediatranslation v0.8.4/go.mod h1:9WstgtNVAdN53m6TQa5GjIjLqKQPXe74hwSCxUP6nj4=
 cloud.google.com/go/mediatranslation v0.8.5/go.mod h1:y7kTHYIPCIfgyLbKncgqouXJtLsU+26hZhHEEy80fSs=
+cloud.google.com/go/memcache v1.9.0 h1:8/VEmWCpnETCrBwS3z4MhT+tIdKgR1Z4Tr2tvYH32rg=
 cloud.google.com/go/memcache v1.10.1/go.mod h1:47YRQIarv4I3QS5+hoETgKO40InqzLP6kpNLvyXuyaA=
 cloud.google.com/go/memcache v1.10.4/go.mod h1:v/d8PuC8d1gD6Yn5+I3INzLR01IDn0N4Ym56RgikSI0=
 cloud.google.com/go/memcache v1.10.5/go.mod h1:/FcblbNd0FdMsx4natdj+2GWzTq+cjZvMa1I+9QsuMA=
+cloud.google.com/go/metastore v1.10.0 h1:QCFhZVe2289KDBQ7WxaHV2rAmPrmRAdLC6gbjUd3HPo=
 cloud.google.com/go/metastore v1.11.1/go.mod h1:uZuSo80U3Wd4zi6C22ZZliOUJ3XeM/MlYi/z5OAOWRA=
 cloud.google.com/go/metastore v1.12.0/go.mod h1:uZuSo80U3Wd4zi6C22ZZliOUJ3XeM/MlYi/z5OAOWRA=
 cloud.google.com/go/metastore v1.13.3/go.mod h1:K+wdjXdtkdk7AQg4+sXS8bRrQa9gcOr+foOMF2tqINE=
 cloud.google.com/go/metastore v1.13.4/go.mod h1:FMv9bvPInEfX9Ac1cVcRXp8EBBQnBcqH6gz3KvJ9BAE=
+cloud.google.com/go/monitoring v1.13.0 h1:2qsrgXGVoRXpP7otZ14eE1I568zAa92sJSDPyOJvwjM=
 cloud.google.com/go/monitoring v1.15.1/go.mod h1:lADlSAlFdbqQuwwpaImhsJXu1QSdd3ojypXrFSMr2rM=
 cloud.google.com/go/monitoring v1.16.0/go.mod h1:Ptp15HgAyM1fNICAojDMoNc/wUmn67mLHQfyqbw+poY=
 cloud.google.com/go/monitoring v1.16.3/go.mod h1:KwSsX5+8PnXv5NJnICZzW2R8pWTis8ypC4zmdRD63Tw=
 cloud.google.com/go/monitoring v1.17.0/go.mod h1:KwSsX5+8PnXv5NJnICZzW2R8pWTis8ypC4zmdRD63Tw=
 cloud.google.com/go/monitoring v1.18.0/go.mod h1:c92vVBCeq/OB4Ioyo+NbN2U7tlg5ZH41PZcdvfc+Lcg=
+cloud.google.com/go/networkconnectivity v1.11.0 h1:ZD6b4Pk1jEtp/cx9nx0ZYcL3BKqDa+KixNDZ6Bjs1B8=
 cloud.google.com/go/networkconnectivity v1.12.1/go.mod h1:PelxSWYM7Sh9/guf8CFhi6vIqf19Ir/sbfZRUwXh92E=
 cloud.google.com/go/networkconnectivity v1.13.0/go.mod h1:SAnGPes88pl7QRLUen2HmcBSE9AowVAcdug8c0RSBFk=
 cloud.google.com/go/networkconnectivity v1.14.3/go.mod h1:4aoeFdrJpYEXNvrnfyD5kIzs8YtHg945Og4koAjHQek=
 cloud.google.com/go/networkconnectivity v1.14.4/go.mod h1:PU12q++/IMnDJAB+3r+tJtuCXCfwfN+C6Niyj6ji1Po=
+cloud.google.com/go/networkmanagement v1.6.0 h1:8KWEUNGcpSX9WwZXq7FtciuNGPdPdPN/ruDm769yAEM=
 cloud.google.com/go/networkmanagement v1.8.0/go.mod h1:Ho/BUGmtyEqrttTgWEe7m+8vDdK74ibQc+Be0q7Fof0=
 cloud.google.com/go/networkmanagement v1.9.0/go.mod h1:UTUaEU9YwbCAhhz3jEOHr+2/K/MrBk2XxOLS89LQzFw=
 cloud.google.com/go/networkmanagement v1.9.3/go.mod h1:y7WMO1bRLaP5h3Obm4tey+NquUvB93Co1oh4wpL+XcU=
 cloud.google.com/go/networkmanagement v1.9.4/go.mod h1:daWJAl0KTFytFL7ar33I6R/oNBH8eEOX/rBNHrC/8TA=
+cloud.google.com/go/networksecurity v0.8.0 h1:sOc42Ig1K2LiKlzG71GUVloeSJ0J3mffEBYmvu+P0eo=
 cloud.google.com/go/networksecurity v0.9.1/go.mod h1:MCMdxOKQ30wsBI1eI659f9kEp4wuuAueoC9AJKSPWZQ=
 cloud.google.com/go/networksecurity v0.9.4/go.mod h1:E9CeMZ2zDsNBkr8axKSYm8XyTqNhiCHf1JO/Vb8mD1w=
 cloud.google.com/go/networksecurity v0.9.5/go.mod h1:KNkjH/RsylSGyyZ8wXpue8xpCEK+bTtvof8SBfIhMG8=
+cloud.google.com/go/notebooks v1.8.0 h1:Kg2K3K7CbSXYJHZ1aGQpf1xi5x2GUvQWf2sFVuiZh8M=
 cloud.google.com/go/notebooks v1.9.1/go.mod h1:zqG9/gk05JrzgBt4ghLzEepPHNwE5jgPcHZRKhlC1A8=
 cloud.google.com/go/notebooks v1.10.0/go.mod h1:SOPYMZnttHxqot0SGSFSkRrwE29eqnKPBJFqgWmiK2k=
 cloud.google.com/go/notebooks v1.11.2/go.mod h1:z0tlHI/lREXC8BS2mIsUeR3agM1AkgLiS+Isov3SS70=
 cloud.google.com/go/notebooks v1.11.3/go.mod h1:0wQyI2dQC3AZyQqWnRsp+yA+kY4gC7ZIVP4Qg3AQcgo=
+cloud.google.com/go/optimization v1.3.1 h1:dj8O4VOJRB4CUwZXdmwNViH1OtI0WtWL867/lnYH248=
 cloud.google.com/go/optimization v1.4.1/go.mod h1:j64vZQP7h9bO49m2rVaTVoNM0vEBEN5eKPUPbZyXOrk=
 cloud.google.com/go/optimization v1.5.0/go.mod h1:evo1OvTxeBRBu6ydPlrIRizKY/LJKo/drDMMRKqGEUU=
 cloud.google.com/go/optimization v1.6.2/go.mod h1:mWNZ7B9/EyMCcwNl1frUGEuY6CPijSkz88Fz2vwKPOY=
 cloud.google.com/go/optimization v1.6.3/go.mod h1:8ve3svp3W6NFcAEFr4SfJxrldzhUl4VMUJmhrqVKtYA=
+cloud.google.com/go/orchestration v1.6.0 h1:Vw+CEXo8M/FZ1rb4EjcLv0gJqqw89b7+g+C/EmniTb8=
 cloud.google.com/go/orchestration v1.8.1/go.mod h1:4sluRF3wgbYVRqz7zJ1/EUNc90TTprliq9477fGobD8=
 cloud.google.com/go/orchestration v1.8.4/go.mod h1:d0lywZSVYtIoSZXb0iFjv9SaL13PGyVOKDxqGxEf/qI=
 cloud.google.com/go/orchestration v1.8.5/go.mod h1:C1J7HesE96Ba8/hZ71ISTV2UAat0bwN+pi85ky38Yq8=
+cloud.google.com/go/orgpolicy v1.10.0 h1:XDriMWug7sd0kYT1QKofRpRHzjad0bK8Q8uA9q+XrU4=
 cloud.google.com/go/orgpolicy v1.11.1/go.mod h1:8+E3jQcpZJQliP+zaFfayC2Pg5bmhuLK755wKhIIUCE=
 cloud.google.com/go/orgpolicy v1.11.4/go.mod h1:0+aNV/nrfoTQ4Mytv+Aw+stBDBjNf4d8fYRA9herfJI=
 cloud.google.com/go/orgpolicy v1.12.0/go.mod h1:0+aNV/nrfoTQ4Mytv+Aw+stBDBjNf4d8fYRA9herfJI=
 cloud.google.com/go/orgpolicy v1.12.1/go.mod h1:aibX78RDl5pcK3jA8ysDQCFkVxLj3aOQqrbBaUL2V5I=
+cloud.google.com/go/osconfig v1.11.0 h1:PkSQx4OHit5xz2bNyr11KGcaFccL5oqglFPdTboyqwQ=
 cloud.google.com/go/osconfig v1.12.1/go.mod h1:4CjBxND0gswz2gfYRCUoUzCm9zCABp91EeTtWXyz0tE=
 cloud.google.com/go/osconfig v1.12.4/go.mod h1:B1qEwJ/jzqSRslvdOCI8Kdnp0gSng0xW4LOnIebQomA=
 cloud.google.com/go/osconfig v1.12.5/go.mod h1:D9QFdxzfjgw3h/+ZaAb5NypM8bhOMqBzgmbhzWViiW8=
+cloud.google.com/go/oslogin v1.9.0 h1:whP7vhpmc+ufZa90eVpkfbgzJRK/Xomjz+XCD4aGwWw=
 cloud.google.com/go/oslogin v1.10.1/go.mod h1:x692z7yAue5nE7CsSnoG0aaMbNoRJRXO4sn73R+ZqAs=
 cloud.google.com/go/oslogin v1.12.2/go.mod h1:CQ3V8Jvw4Qo4WRhNPF0o+HAM4DiLuE27Ul9CX9g2QdY=
 cloud.google.com/go/oslogin v1.13.0/go.mod h1:xPJqLwpTZ90LSE5IL1/svko+6c5avZLluiyylMb/sRA=
 cloud.google.com/go/oslogin v1.13.1/go.mod h1:vS8Sr/jR7QvPWpCjNqy6LYZr5Zs1e8ZGW/KPn9gmhws=
+cloud.google.com/go/phishingprotection v0.7.0 h1:l6tDkT7qAEV49MNEJkEJTB6vOO/onbSOcNtAT09HPuA=
 cloud.google.com/go/phishingprotection v0.8.1/go.mod h1:AxonW7GovcA8qdEk13NfHq9hNx5KPtfxXNeUxTDxB6I=
 cloud.google.com/go/phishingprotection v0.8.4/go.mod h1:6b3kNPAc2AQ6jZfFHioZKg9MQNybDg4ixFd4RPZZ2nE=
 cloud.google.com/go/phishingprotection v0.8.5/go.mod h1:g1smd68F7mF1hgQPuYn3z8HDbNre8L6Z0b7XMYFmX7I=
+cloud.google.com/go/policytroubleshooter v1.6.0 h1:yKAGC4p9O61ttZUswaq9GAn1SZnEzTd0vUYXD7ZBT7Y=
 cloud.google.com/go/policytroubleshooter v1.7.1/go.mod h1:0NaT5v3Ag1M7U5r0GfDCpUFkWd9YqpubBWsQlhanRv0=
 cloud.google.com/go/policytroubleshooter v1.9.0/go.mod h1:+E2Lga7TycpeSTj2FsH4oXxTnrbHJGRlKhVZBLGgU64=
 cloud.google.com/go/policytroubleshooter v1.10.2/go.mod h1:m4uF3f6LseVEnMV6nknlN2vYGRb+75ylQwJdnOXfnv0=
 cloud.google.com/go/policytroubleshooter v1.10.3/go.mod h1:+ZqG3agHT7WPb4EBIRqUv4OyIwRTZvsVDHZ8GlZaoxk=
+cloud.google.com/go/privatecatalog v0.8.0 h1:EPEJ1DpEGXLDnmc7mnCAqFmkwUJbIsaLAiLHVOkkwtc=
 cloud.google.com/go/privatecatalog v0.9.1/go.mod h1:0XlDXW2unJXdf9zFz968Hp35gl/bhF4twwpXZAW50JA=
 cloud.google.com/go/privatecatalog v0.9.4/go.mod h1:SOjm93f+5hp/U3PqMZAHTtBtluqLygrDrVO8X8tYtG0=
 cloud.google.com/go/privatecatalog v0.9.5/go.mod h1:fVWeBOVe7uj2n3kWRGlUQqR/pOd450J9yZoOECcQqJk=
+cloud.google.com/go/pubsub v1.30.0 h1:vCge8m7aUKBJYOgrZp7EsNDf6QMd2CAlXZqWTn3yq6s=
 cloud.google.com/go/pubsub v1.32.0/go.mod h1:f+w71I33OMyxf9VpMVcZbnG5KSUkCOUHYpFd5U1GdRc=
 cloud.google.com/go/pubsub v1.33.0/go.mod h1:f+w71I33OMyxf9VpMVcZbnG5KSUkCOUHYpFd5U1GdRc=
 cloud.google.com/go/pubsub v1.34.0/go.mod h1:alj4l4rBg+N3YTFDDC+/YyFTs6JAjam2QfYsddcAW4c=
 cloud.google.com/go/pubsub v1.36.1/go.mod h1:iYjCa9EzWOoBiTdd4ps7QoMtMln5NwaZQpK1hbRfBDE=
+cloud.google.com/go/pubsublite v1.7.0 h1:cb9fsrtpINtETHiJ3ECeaVzrfIVhcGjhhJEjybHXHao=
 cloud.google.com/go/pubsublite v1.8.1/go.mod h1:fOLdU4f5xldK4RGJrBMm+J7zMWNj/k4PxwEZXy39QS0=
+cloud.google.com/go/recaptchaenterprise v1.3.1 h1:u6EznTGzIdsyOsvm+Xkw0aSuKFXQlyjGE9a4exk6iNQ=
+cloud.google.com/go/recaptchaenterprise/v2 v2.7.0 h1:6iOCujSNJ0YS7oNymI64hXsjGq60T4FK1zdLugxbzvU=
 cloud.google.com/go/recaptchaenterprise/v2 v2.7.2/go.mod h1:kR0KjsJS7Jt1YSyWFkseQ756D45kaYNTlDPPaRAvDBU=
 cloud.google.com/go/recaptchaenterprise/v2 v2.8.3/go.mod h1:Dak54rw6lC2gBY8FBznpOCAR58wKf+R+ZSJRoeJok4w=
 cloud.google.com/go/recaptchaenterprise/v2 v2.9.0/go.mod h1:Dak54rw6lC2gBY8FBznpOCAR58wKf+R+ZSJRoeJok4w=
 cloud.google.com/go/recaptchaenterprise/v2 v2.9.2/go.mod h1:trwwGkfhCmp05Ll5MSJPXY7yvnO0p4v3orGANAFHAuU=
+cloud.google.com/go/recommendationengine v0.7.0 h1:VibRFCwWXrFebEWKHfZAt2kta6pS7Tlimsnms0fjv7k=
 cloud.google.com/go/recommendationengine v0.8.1/go.mod h1:MrZihWwtFYWDzE6Hz5nKcNz3gLizXVIDI/o3G1DLcrE=
 cloud.google.com/go/recommendationengine v0.8.4/go.mod h1:GEteCf1PATl5v5ZsQ60sTClUE0phbWmo3rQ1Js8louU=
 cloud.google.com/go/recommendationengine v0.8.5/go.mod h1:A38rIXHGFvoPvmy6pZLozr0g59NRNREz4cx7F58HAsQ=
+cloud.google.com/go/recommender v1.9.0 h1:ZnFRY5R6zOVk2IDS1Jbv5Bw+DExCI5rFumsTnMXiu/A=
 cloud.google.com/go/recommender v1.10.1/go.mod h1:XFvrE4Suqn5Cq0Lf+mCP6oBHD/yRMA8XxP5sb7Q7gpA=
 cloud.google.com/go/recommender v1.11.0/go.mod h1:kPiRQhPyTJ9kyXPCG6u/dlPLbYfFlkwHNRwdzPVAoII=
 cloud.google.com/go/recommender v1.11.3/go.mod h1:+FJosKKJSId1MBFeJ/TTyoGQZiEelQQIZMKYYD8ruK4=
 cloud.google.com/go/recommender v1.12.0/go.mod h1:+FJosKKJSId1MBFeJ/TTyoGQZiEelQQIZMKYYD8ruK4=
 cloud.google.com/go/recommender v1.12.1/go.mod h1:gf95SInWNND5aPas3yjwl0I572dtudMhMIG4ni8nr+0=
+cloud.google.com/go/redis v1.11.0 h1:JoAd3SkeDt3rLFAAxEvw6wV4t+8y4ZzfZcZmddqphQ8=
 cloud.google.com/go/redis v1.13.1/go.mod h1:VP7DGLpE91M6bcsDdMuyCm2hIpB6Vp2hI090Mfd1tcg=
 cloud.google.com/go/redis v1.14.1/go.mod h1:MbmBxN8bEnQI4doZPC1BzADU4HGocHBk2de3SbgOkqs=
 cloud.google.com/go/redis v1.14.2/go.mod h1:g0Lu7RRRz46ENdFKQ2EcQZBAJ2PtJHJLuiiRuEXwyQw=
+cloud.google.com/go/resourcemanager v1.7.0 h1:NRM0p+RJkaQF9Ee9JMnUV9BQ2QBIOq/v8M+Pbv/wmCs=
 cloud.google.com/go/resourcemanager v1.9.1/go.mod h1:dVCuosgrh1tINZ/RwBufr8lULmWGOkPS8gL5gqyjdT8=
 cloud.google.com/go/resourcemanager v1.9.4/go.mod h1:N1dhP9RFvo3lUfwtfLWVxfUWq8+KUQ+XLlHLH3BoFJ0=
 cloud.google.com/go/resourcemanager v1.9.5/go.mod h1:hep6KjelHA+ToEjOfO3garMKi/CLYwTqeAw7YiEI9x8=
+cloud.google.com/go/resourcesettings v1.5.0 h1:8Dua37kQt27CCWHm4h/Q1XqCF6ByD7Ouu49xg95qJzI=
 cloud.google.com/go/resourcesettings v1.6.1/go.mod h1:M7mk9PIZrC5Fgsu1kZJci6mpgN8o0IUzVx3eJU3y4Jw=
 cloud.google.com/go/resourcesettings v1.6.4/go.mod h1:pYTTkWdv2lmQcjsthbZLNBP4QW140cs7wqA3DuqErVI=
 cloud.google.com/go/resourcesettings v1.6.5/go.mod h1:WBOIWZraXZOGAgoR4ukNj0o0HiSMO62H9RpFi9WjP9I=
+cloud.google.com/go/retail v1.12.0 h1:1Dda2OpFNzIb4qWgFZjYlpP7sxX3aLeypKG6A3H4Yys=
 cloud.google.com/go/retail v1.14.1/go.mod h1:y3Wv3Vr2k54dLNIrCzenyKG8g8dhvhncT2NcNjb/6gE=
 cloud.google.com/go/retail v1.14.4/go.mod h1:l/N7cMtY78yRnJqp5JW8emy7MB1nz8E4t2yfOmklYfg=
 cloud.google.com/go/retail v1.16.0/go.mod h1:LW7tllVveZo4ReWt68VnldZFWJRzsh9np+01J9dYWzE=
-cloud.google.com/go/run v0.9.0/go.mod h1:Wwu+/vvg8Y+JUApMwEDfVfhetv30hCG4ZwDR/IXl2Qg=
+cloud.google.com/go/run v0.9.0 h1:ydJQo+k+MShYnBfhaRHSZYeD/SQKZzZLAROyfpeD9zw=
 cloud.google.com/go/run v1.2.0/go.mod h1:36V1IlDzQ0XxbQjUx6IYbw8H3TJnWvhii963WW3B/bo=
 cloud.google.com/go/run v1.3.3/go.mod h1:WSM5pGyJ7cfYyYbONVQBN4buz42zFqwG67Q3ch07iK4=
 cloud.google.com/go/run v1.3.4/go.mod h1:FGieuZvQ3tj1e9GnzXqrMABSuir38AJg5xhiYq+SF3o=
+cloud.google.com/go/scheduler v1.9.0 h1:NpQAHtx3sulByTLe2dMwWmah8PWgeoieFPpJpArwFV0=
 cloud.google.com/go/scheduler v1.10.1/go.mod h1:R63Ldltd47Bs4gnhQkmNDse5w8gBRrhObZ54PxgR2Oo=
 cloud.google.com/go/scheduler v1.10.4/go.mod h1:MTuXcrJC9tqOHhixdbHDFSIuh7xZF2IysiINDuiq6NI=
 cloud.google.com/go/scheduler v1.10.5/go.mod h1:MTuXcrJC9tqOHhixdbHDFSIuh7xZF2IysiINDuiq6NI=
 cloud.google.com/go/scheduler v1.10.6/go.mod h1:pe2pNCtJ+R01E06XCDOJs1XvAMbv28ZsQEbqknxGOuE=
+cloud.google.com/go/secretmanager v1.10.0 h1:pu03bha7ukxF8otyPKTFdDz+rr9sE3YauS5PliDXK60=
 cloud.google.com/go/secretmanager v1.11.1/go.mod h1:znq9JlXgTNdBeQk9TBW/FnR/W4uChEKGeqQWAJ8SXFw=
 cloud.google.com/go/secretmanager v1.11.4/go.mod h1:wreJlbS9Zdq21lMzWmJ0XhWW2ZxgPeahsqeV/vZoJ3w=
 cloud.google.com/go/secretmanager v1.11.5/go.mod h1:eAGv+DaCHkeVyQi0BeXgAHOU0RdrMeZIASKc+S7VqH4=
+cloud.google.com/go/security v1.13.0 h1:PYvDxopRQBfYAXKAuDpFCKBvDOWPWzp9k/H5nB3ud3o=
 cloud.google.com/go/security v1.15.1/go.mod h1:MvTnnbsWnehoizHi09zoiZob0iCHVcL4AUBj76h9fXA=
 cloud.google.com/go/security v1.15.4/go.mod h1:oN7C2uIZKhxCLiAAijKUCuHLZbIt/ghYEo8MqwD/Ty4=
 cloud.google.com/go/security v1.15.5/go.mod h1:KS6X2eG3ynWjqcIX976fuToN5juVkF6Ra6c7MPnldtc=
+cloud.google.com/go/securitycenter v1.19.0 h1:AF3c2s3awNTMoBtMX3oCUoOMmGlYxGOeuXSYHNBkf14=
 cloud.google.com/go/securitycenter v1.23.0/go.mod h1:8pwQ4n+Y9WCWM278R8W3nF65QtY172h4S8aXyI9/hsQ=
 cloud.google.com/go/securitycenter v1.24.2/go.mod h1:l1XejOngggzqwr4Fa2Cn+iWZGf+aBLTXtB/vXjy5vXM=
 cloud.google.com/go/securitycenter v1.24.3/go.mod h1:l1XejOngggzqwr4Fa2Cn+iWZGf+aBLTXtB/vXjy5vXM=
 cloud.google.com/go/securitycenter v1.24.4/go.mod h1:PSccin+o1EMYKcFQzz9HMMnZ2r9+7jbc+LvPjXhpwcU=
+cloud.google.com/go/servicecontrol v1.11.1 h1:d0uV7Qegtfaa7Z2ClDzr9HJmnbJW7jn0WhZ7wOX6hLE=
+cloud.google.com/go/servicedirectory v1.9.0 h1:SJwk0XX2e26o25ObYUORXx6torSFiYgsGkWSkZgkoSU=
 cloud.google.com/go/servicedirectory v1.10.1/go.mod h1:Xv0YVH8s4pVOwfM/1eMTl0XJ6bzIOSLDt8f8eLaGOxQ=
 cloud.google.com/go/servicedirectory v1.11.0/go.mod h1:Xv0YVH8s4pVOwfM/1eMTl0XJ6bzIOSLDt8f8eLaGOxQ=
 cloud.google.com/go/servicedirectory v1.11.3/go.mod h1:LV+cHkomRLr67YoQy3Xq2tUXBGOs5z5bPofdq7qtiAw=
 cloud.google.com/go/servicedirectory v1.11.4/go.mod h1:Bz2T9t+/Ehg6x+Y7Ycq5xiShYLD96NfEsWNHyitj1qM=
+cloud.google.com/go/servicemanagement v1.8.0 h1:fopAQI/IAzlxnVeiKn/8WiV6zKndjFkvi+gzu+NjywY=
+cloud.google.com/go/serviceusage v1.6.0 h1:rXyq+0+RSIm3HFypctp7WoXxIA563rn206CfMWdqXX4=
+cloud.google.com/go/shell v1.6.0 h1:wT0Uw7ib7+AgZST9eCDygwTJn4+bHMDtZo5fh7kGWDU=
 cloud.google.com/go/shell v1.7.1/go.mod h1:u1RaM+huXFaTojTbW4g9P5emOrrmLE69KrxqQahKn4g=
 cloud.google.com/go/shell v1.7.4/go.mod h1:yLeXB8eKLxw0dpEmXQ/FjriYrBijNsONpwnWsdPqlKM=
 cloud.google.com/go/shell v1.7.5/go.mod h1:hL2++7F47/IfpfTO53KYf1EC+F56k3ThfNEXd4zcuiE=
+cloud.google.com/go/spanner v1.45.0 h1:7VdjZ8zj4sHbDw55atp5dfY6kn1j9sam9DRNpPQhqR4=
 cloud.google.com/go/spanner v1.47.0/go.mod h1:IXsJwVW2j4UKs0eYDqodab6HgGuA1bViSqW4uH9lfUI=
 cloud.google.com/go/spanner v1.49.0/go.mod h1:eGj9mQGK8+hkgSVbHNQ06pQ4oS+cyc4tXXd6Dif1KoM=
 cloud.google.com/go/spanner v1.51.0/go.mod h1:c5KNo5LQ1X5tJwma9rSQZsXNBDNvj4/n8BVc3LNahq0=
 cloud.google.com/go/spanner v1.55.0/go.mod h1:HXEznMUVhC+PC+HDyo9YFG2Ajj5BQDkcbqB9Z2Ffxi0=
 cloud.google.com/go/spanner v1.56.0/go.mod h1:DndqtUKQAt3VLuV2Le+9Y3WTnq5cNKrnLb/Piqcj+h0=
 cloud.google.com/go/spanner v1.57.0/go.mod h1:aXQ5QDdhPRIqVhYmnkAdwPYvj/DRN0FguclhEWw+jOo=
+cloud.google.com/go/speech v1.15.0 h1:JEVoWGNnTF128kNty7T4aG4eqv2z86yiMJPT9Zjp+iw=
 cloud.google.com/go/speech v1.17.1/go.mod h1:8rVNzU43tQvxDaGvqOhpDqgkJTFowBpDvCJ14kGlJYo=
 cloud.google.com/go/speech v1.19.0/go.mod h1:8rVNzU43tQvxDaGvqOhpDqgkJTFowBpDvCJ14kGlJYo=
 cloud.google.com/go/speech v1.20.1/go.mod h1:wwolycgONvfz2EDU8rKuHRW3+wc9ILPsAWoikBEWavY=
 cloud.google.com/go/speech v1.21.0/go.mod h1:wwolycgONvfz2EDU8rKuHRW3+wc9ILPsAWoikBEWavY=
 cloud.google.com/go/speech v1.21.1/go.mod h1:E5GHZXYQlkqWQwY5xRSLHw2ci5NMQNG52FfMU1aZrIA=
-cloud.google.com/go/storage v1.14.0/go.mod h1:GrKmX003DSIwi9o29oFT7YDnHYwZoctc3fOKtUw0Xmo=
+cloud.google.com/go/storage v1.29.0 h1:6weCgzRvMg7lzuUurI4697AqIRPU1SvzHhynwpW31jI=
 cloud.google.com/go/storage v1.30.1/go.mod h1:NfxhC0UJE1aXSx7CIIbCf7y9HKT7BiccwkR7+P7gN8E=
 cloud.google.com/go/storage v1.36.0/go.mod h1:M6M/3V/D3KpzMTJyPOR/HU6n2Si5QdaXYEsng2xgOs8=
+cloud.google.com/go/storagetransfer v1.8.0 h1:5T+PM+3ECU3EY2y9Brv0Sf3oka8pKmsCfpQ07+91G9o=
 cloud.google.com/go/storagetransfer v1.10.0/go.mod h1:DM4sTlSmGiNczmV6iZyceIh2dbs+7z2Ayg6YAiQlYfA=
 cloud.google.com/go/storagetransfer v1.10.3/go.mod h1:Up8LY2p6X68SZ+WToswpQbQHnJpOty/ACcMafuey8gc=
 cloud.google.com/go/storagetransfer v1.10.4/go.mod h1:vef30rZKu5HSEf/x1tK3WfWrL0XVoUQN/EPDRGPzjZs=
+cloud.google.com/go/talent v1.5.0 h1:nI9sVZPjMKiO2q3Uu0KhTDVov3Xrlpt63fghP9XjyEM=
 cloud.google.com/go/talent v1.6.2/go.mod h1:CbGvmKCG61mkdjcqTcLOkb2ZN1SrQI8MDyma2l7VD24=
 cloud.google.com/go/talent v1.6.5/go.mod h1:Mf5cma696HmE+P2BWJ/ZwYqeJXEeU0UqjHFXVLadEDI=
 cloud.google.com/go/talent v1.6.6/go.mod h1:y/WQDKrhVz12WagoarpAIyKKMeKGKHWPoReZ0g8tseQ=
+cloud.google.com/go/texttospeech v1.6.0 h1:H4g1ULStsbVtalbZGktyzXzw6jP26RjVGYx9RaYjBzc=
 cloud.google.com/go/texttospeech v1.7.1/go.mod h1:m7QfG5IXxeneGqTapXNxv2ItxP/FS0hCZBwXYqucgSk=
 cloud.google.com/go/texttospeech v1.7.4/go.mod h1:vgv0002WvR4liGuSd5BJbWy4nDn5Ozco0uJymY5+U74=
 cloud.google.com/go/texttospeech v1.7.5/go.mod h1:tzpCuNWPwrNJnEa4Pu5taALuZL4QRRLcb+K9pbhXT6M=
+cloud.google.com/go/tpu v1.5.0 h1:/34T6CbSi+kTv5E19Q9zbU/ix8IviInZpzwz3rsFE+A=
 cloud.google.com/go/tpu v1.6.1/go.mod h1:sOdcHVIgDEEOKuqUoi6Fq53MKHJAtOwtz0GuKsWSH3E=
 cloud.google.com/go/tpu v1.6.4/go.mod h1:NAm9q3Rq2wIlGnOhpYICNI7+bpBebMJbh0yyp3aNw1Y=
 cloud.google.com/go/tpu v1.6.5/go.mod h1:P9DFOEBIBhuEcZhXi+wPoVy/cji+0ICFi4TtTkMHSSs=
+cloud.google.com/go/trace v1.9.0 h1:olxC0QHC59zgJVALtgqfD9tGk0lfeCP5/AGXL3Px/no=
 cloud.google.com/go/trace v1.10.1/go.mod h1:gbtL94KE5AJLH3y+WVpfWILmqgc6dXcqgNXdOPAQTYk=
 cloud.google.com/go/trace v1.10.4/go.mod h1:Nso99EDIK8Mj5/zmB+iGr9dosS/bzWCJ8wGmE6TXNWY=
 cloud.google.com/go/trace v1.10.5/go.mod h1:9hjCV1nGBCtXbAE4YK7OqJ8pmPYSxPA0I67JwRd5s3M=
+cloud.google.com/go/translate v1.7.0 h1:GvLP4oQ4uPdChBmBaUSa/SaZxCdyWELtlAaKzpHsXdA=
 cloud.google.com/go/translate v1.8.1/go.mod h1:d1ZH5aaOA0CNhWeXeC8ujd4tdCFw8XoNWRljklu5RHs=
 cloud.google.com/go/translate v1.9.0/go.mod h1:d1ZH5aaOA0CNhWeXeC8ujd4tdCFw8XoNWRljklu5RHs=
 cloud.google.com/go/translate v1.9.3/go.mod h1:Kbq9RggWsbqZ9W5YpM94Q1Xv4dshw/gr/SHfsl5yCZ0=
 cloud.google.com/go/translate v1.10.0/go.mod h1:Kbq9RggWsbqZ9W5YpM94Q1Xv4dshw/gr/SHfsl5yCZ0=
 cloud.google.com/go/translate v1.10.1/go.mod h1:adGZcQNom/3ogU65N9UXHOnnSvjPwA/jKQUMnsYXOyk=
+cloud.google.com/go/video v1.15.0 h1:upIbnGI0ZgACm58HPjAeBMleW3sl5cT84AbYQ8PWOgM=
 cloud.google.com/go/video v1.17.1/go.mod h1:9qmqPqw/Ib2tLqaeHgtakU+l5TcJxCJbhFXM7UJjVzU=
 cloud.google.com/go/video v1.20.0/go.mod h1:U3G3FTnsvAGqglq9LxgqzOiBc/Nt8zis8S+850N2DUM=
 cloud.google.com/go/video v1.20.3/go.mod h1:TnH/mNZKVHeNtpamsSPygSR0iHtvrR/cW1/GDjN5+GU=
 cloud.google.com/go/video v1.20.4/go.mod h1:LyUVjyW+Bwj7dh3UJnUGZfyqjEto9DnrvTe1f/+QrW0=
+cloud.google.com/go/videointelligence v1.10.0 h1:Uh5BdoET8XXqXX2uXIahGb+wTKbLkGH7s4GXR58RrG8=
 cloud.google.com/go/videointelligence v1.11.1/go.mod h1:76xn/8InyQHarjTWsBR058SmlPCwQjgcvoW0aZykOvo=
 cloud.google.com/go/videointelligence v1.11.4/go.mod h1:kPBMAYsTPFiQxMLmmjpcZUMklJp3nC9+ipJJtprccD8=
 cloud.google.com/go/videointelligence v1.11.5/go.mod h1:/PkeQjpRponmOerPeJxNPuxvi12HlW7Em0lJO14FC3I=
+cloud.google.com/go/vision v1.2.0 h1:/CsSTkbmO9HC8iQpxbK8ATms3OQaX3YQUeTMGCxlaK4=
+cloud.google.com/go/vision/v2 v2.7.0 h1:8C8RXUJoflCI4yVdqhTy9tRyygSHmp60aP363z23HKg=
 cloud.google.com/go/vision/v2 v2.7.2/go.mod h1:jKa8oSYBWhYiXarHPvP4USxYANYUEdEsQrloLjrSwJU=
 cloud.google.com/go/vision/v2 v2.7.5/go.mod h1:GcviprJLFfK9OLf0z8Gm6lQb6ZFUulvpZws+mm6yPLM=
 cloud.google.com/go/vision/v2 v2.8.0/go.mod h1:ocqDiA2j97pvgogdyhoxiQp2ZkDCyr0HWpicywGGRhU=
+cloud.google.com/go/vmmigration v1.6.0 h1:Azs5WKtfOC8pxvkyrDvt7J0/4DYBch0cVbuFfCCFt5k=
 cloud.google.com/go/vmmigration v1.7.1/go.mod h1:WD+5z7a/IpZ5bKK//YmT9E047AD+rjycCAvyMxGJbro=
 cloud.google.com/go/vmmigration v1.7.4/go.mod h1:yBXCmiLaB99hEl/G9ZooNx2GyzgsjKnw5fWcINRgD70=
 cloud.google.com/go/vmmigration v1.7.5/go.mod h1:pkvO6huVnVWzkFioxSghZxIGcsstDvYiVCxQ9ZH3eYI=
+cloud.google.com/go/vmwareengine v0.3.0 h1:b0NBu7S294l0gmtrT0nOJneMYgZapr5x9tVWvgDoVEM=
 cloud.google.com/go/vmwareengine v0.4.1/go.mod h1:Px64x+BvjPZwWuc4HdmVhoygcXqEkGHXoa7uyfTgSI0=
 cloud.google.com/go/vmwareengine v1.0.0/go.mod h1:Px64x+BvjPZwWuc4HdmVhoygcXqEkGHXoa7uyfTgSI0=
 cloud.google.com/go/vmwareengine v1.0.3/go.mod h1:QSpdZ1stlbfKtyt6Iu19M6XRxjmXO+vb5a/R6Fvy2y4=
 cloud.google.com/go/vmwareengine v1.1.1/go.mod h1:nMpdsIVkUrSaX8UvmnBhzVzG7PPvNYc5BszcvIVudYs=
+cloud.google.com/go/vpcaccess v1.6.0 h1:FOe6CuiQD3BhHJWt7E8QlbBcaIzVRddupwJlp7eqmn4=
 cloud.google.com/go/vpcaccess v1.7.1/go.mod h1:FogoD46/ZU+JUBX9D606X21EnxiszYi2tArQwLY4SXs=
 cloud.google.com/go/vpcaccess v1.7.4/go.mod h1:lA0KTvhtEOb/VOdnH/gwPuOzGgM+CWsmGu6bb4IoMKk=
 cloud.google.com/go/vpcaccess v1.7.5/go.mod h1:slc5ZRvvjP78c2dnL7m4l4R9GwL3wDLcpIWz6P/ziig=
+cloud.google.com/go/webrisk v1.8.0 h1:IY+L2+UwxcVm2zayMAtBhZleecdIFLiC+QJMzgb0kT0=
 cloud.google.com/go/webrisk v1.9.1/go.mod h1:4GCmXKcOa2BZcZPn6DCEvE7HypmEJcJkr4mtM+sqYPc=
 cloud.google.com/go/webrisk v1.9.4/go.mod h1:w7m4Ib4C+OseSr2GL66m0zMBywdrVNTDKsdEsfMl7X0=
 cloud.google.com/go/webrisk v1.9.5/go.mod h1:aako0Fzep1Q714cPEM5E+mtYX8/jsfegAuS8aivxy3U=
+cloud.google.com/go/websecurityscanner v1.5.0 h1:AHC1xmaNMOZtNqxI9Rmm87IJEyPaRkOxeI0gpAacXGk=
 cloud.google.com/go/websecurityscanner v1.6.1/go.mod h1:Njgaw3rttgRHXzwCB8kgCYqv5/rGpFCsBOvPbYgszpg=
 cloud.google.com/go/websecurityscanner v1.6.4/go.mod h1:mUiyMQ+dGpPPRkHgknIZeCzSHJ45+fY4F52nZFDHm2o=
 cloud.google.com/go/websecurityscanner v1.6.5/go.mod h1:QR+DWaxAz2pWooylsBF854/Ijvuoa3FCyS1zBa1rAVQ=
+cloud.google.com/go/workflows v1.10.0 h1:FfGp9w0cYnaKZJhUOMqCOJCYT/WlvYBfTQhFWV3sRKI=
 cloud.google.com/go/workflows v1.11.1/go.mod h1:Z+t10G1wF7h8LgdY/EmRcQY8ptBD/nvofaL6FqlET6g=
 cloud.google.com/go/workflows v1.12.0/go.mod h1:PYhSk2b6DhZ508tj8HXKaBh+OFe+xdl0dHF/tJdzPQM=
 cloud.google.com/go/workflows v1.12.3/go.mod h1:fmOUeeqEwPzIU81foMjTRQIdwQHADi/vEr1cx9R1m5g=
 cloud.google.com/go/workflows v1.12.4/go.mod h1:yQ7HUqOkdJK4duVtMeBCAOPiN1ZF1E9pAMX51vpwB/w=
+dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9 h1:VpgP7xuJadIUuKccphEpTJnWhS2jkQyMt6Y7pJCD7fY=
+gioui.org v0.0.0-20210308172011-57750fc8a0a6 h1:K72hopUosKG3ntOPNG4OzzbuhxGuVf06fa2la1/H/Ho=
+git.sr.ht/~sbinet/gg v0.3.1 h1:LNhjNn8DerC8f9DHLz6lS0YYul/b602DUxDgGkd/Aik=
+github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802 h1:1BDTz0u9nC3//pOCMdNH+CiXJVYJh5UQNCOBG7jbELc=
+github.com/JohnCGriffin/overflow v0.0.0-20211019200055-46fa312c352c h1:RGWPOewvKIROun94nF7v2cua9qP+thov/7M50KEoeSU=
 github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
+github.com/NYTimes/gziphandler v1.1.1 h1:ZUDjpQae29j0ryrS0u/B8HZfJBtBQHjqw2rQ2cqUQ3I=
 github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
-github.com/alecthomas/kingpin/v2 v2.4.0/go.mod h1:0gyi0zQnjuFk8xrkNKamJoyUo382HRL7ATRpFZCw6tE=
-github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137/go.mod h1:OMCwj8VM1Kc9e19TLln2VL61YJF0x1XFtfdL4JdbSyE=
-github.com/andybalholm/brotli v1.0.4/go.mod h1:fO7iG3H7G2nSZ7m0zPUDn85XEX2GTukHGRSepvi9Eig=
+github.com/OneOfOne/xxhash v1.2.2 h1:KMrpdQIwFcEqXDklaen+P1axHaj9BSKzvpUUfnHldSE=
+github.com/ajstarks/deck v0.0.0-20200831202436-30c9fc6549a9 h1:7kQgkwGRoLzC9K0oyXdJo7nve/bynv/KwUsxbiTlzAM=
+github.com/ajstarks/deck/generate v0.0.0-20210309230005-c3f852c02e19 h1:iXUgAaqDcIUGbRoy2TdeofRG/j1zpGRSEmNK05T+bi8=
+github.com/ajstarks/svgo v0.0.0-20211024235047-1546f124cd8b h1:slYM766cy2nI3BwyRiyQj/Ud48djTMtMebDqepE95rw=
+github.com/alecthomas/kingpin/v2 v2.4.0 h1:f48lwail6p8zpO1bC4TxtqACaGqHYA22qkHjHpqDjYY=
+github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751 h1:JYp7IbQjafoB+tBA3gMyHYHrpOtNuDiK/uB5uXxq5wM=
+github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137 h1:s6gZFSlWYmbqAuRjVTiNNhvNRfY2Wxp9nhfyel4rklc=
+github.com/andybalholm/brotli v1.0.4 h1:V7DdXeJtZscaqfNuAdSRuRFzuiKlHSC/Zh3zl9qY3JY=
+github.com/antihax/optional v1.0.0 h1:xK2lYat7ZLaVVcIuj82J8kIro4V6kDe0AUDFboUCwcg=
+github.com/antlr/antlr4/runtime/Go/antlr/v4 v4.0.0-20230305170008-8188dc5388df h1:7RFfzj4SSt6nnvCPbCqijJi1nWCd+TqAT3bYCStRC18=
 github.com/antlr/antlr4/runtime/Go/antlr/v4 v4.0.0-20230305170008-8188dc5388df/go.mod h1:pSwJ0fSY5KhvocuWSx4fz3BA8OrA1bQn+K1Eli3BRwM=
-github.com/apache/thrift v0.16.0/go.mod h1:PHK3hniurgQaNMZYaCLEqXKsYK8upmhPbmdP2FXSqgU=
+github.com/apache/arrow/go/v10 v10.0.1 h1:n9dERvixoC/1JjDmBcs9FPaEryoANa2sCgVFo6ez9cI=
+github.com/apache/arrow/go/v11 v11.0.0 h1:hqauxvFQxww+0mEU/2XHG6LT7eZternCZq+A5Yly2uM=
+github.com/apache/thrift v0.16.0 h1:qEy6UW60iVOlUy+b9ZR0d5WzUWYGOo4HfopoyBaNmoY=
+github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5 h1:0CwZNZbxp69SHPdPJAN/hZIm0C4OItdklCFmMRWYpio=
 github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5/go.mod h1:wHh0iHkYZB8zMSxRWpUBQtwG5a7fFgvEO+odwuTv2gs=
 github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
+github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2 h1:DklsrG3dyBCFEj5IhUbnKptjxatkF07cF2ak3yi77so=
 github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2/go.mod h1:WaHUgvxTVq04UNunO+XhnAqY/wQc+bxr74GqbsZ/Jqw=
 github.com/blang/semver v3.5.1+incompatible h1:cQNTCjp13qL8KC3Nbxr/y2Bqb63oX6wdnnjpJbkM4JQ=
+github.com/boombuler/barcode v1.0.1 h1:NDBbPmhS+EqABEs5Kg3n/5ZNjy73Pz7SIV+KCeqyXcs=
+github.com/bytedance/sonic v1.9.1 h1:6iJ6NqdoxCDr6mbY8h18oSO+cShGSMRGCEo7F2h0x8s=
 github.com/bytedance/sonic v1.9.1/go.mod h1:i736AoUSYt75HyZLoJW9ERYxcy6eaN6h4BZXU064P/U=
+github.com/cenkalti/backoff/v4 v4.2.1 h1:y4OZtCnogmCPw98Zjyt5a6+QwPLGkiQsYW5oUqylYbM=
 github.com/cenkalti/backoff/v4 v4.2.1/go.mod h1:Y3VNntkOUPxTVeUxJ/G5vcM//AlwfmyYozVcomhLiZE=
-github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
+github.com/census-instrumentation/opencensus-proto v0.4.1 h1:iKLQ0xPNFxR/2hzXZMrBo8f1j86j5WHzznCCQxV/b8g=
 github.com/cespare/xxhash v1.1.0 h1:a6HrQnmkObjyL+Gs60czilIUGqrzKutQD6XZog3p+ko=
+github.com/checkpoint-restore/go-criu/v5 v5.3.0 h1:wpFFOoomK3389ue2lAb0Boag6XPht5QYpipxmSNL4d8=
 github.com/checkpoint-restore/go-criu/v5 v5.3.0/go.mod h1:E/eQpaFtUKGOOSEBZgmKAcn+zUUwWxqcaKZlF54wK8E=
+github.com/chenzhuoyu/base64x v0.0.0-20221115062448-fe3a3abad311 h1:qSGYFH7+jGhDF8vLC+iwCD4WpbV1EBDSzWkJODFLams=
 github.com/chenzhuoyu/base64x v0.0.0-20221115062448-fe3a3abad311/go.mod h1:b583jCggY9gE99b6G5LEC39OIiVsWj+R97kbl5odCEk=
+github.com/chromedp/cdproto v0.0.0-20230802225258-3cf4e6d46a89 h1:aPflPkRFkVwbW6dmcVqfgwp1i+UWGFH6VgR1Jim5Ygc=
 github.com/chromedp/cdproto v0.0.0-20230802225258-3cf4e6d46a89/go.mod h1:GKljq0VrfU4D5yc+2qA6OVr8pmO/MBbPEWqWQ/oqGEs=
+github.com/chromedp/chromedp v0.9.2 h1:dKtNz4kApb06KuSXoTQIyUC2TrA0fhGDwNZf3bcgfKw=
 github.com/chromedp/chromedp v0.9.2/go.mod h1:LkSXJKONWTCHAfQasKFUZI+mxqS4tZqhmtGzzhLsnLs=
+github.com/chromedp/sysutil v1.0.0 h1:+ZxhTpfpZlmchB58ih/LBHX52ky7w2VhQVKQMucy3Ic=
 github.com/chromedp/sysutil v1.0.0/go.mod h1:kgWmDdq8fTzXYcKIBqIYvRRTnYb9aNS9moAV0xufSww=
+github.com/chzyer/logex v1.2.1 h1:XHDu3E6q+gdHgsdTPH6ImJMIp436vR6MPtH8gP05QzM=
 github.com/chzyer/logex v1.2.1/go.mod h1:JLbx6lG2kDbNRFnfkgvh4eRJRPX1QCoOIWomwysCBrQ=
+github.com/chzyer/readline v1.5.1 h1:upd/6fQk4src78LMRzh5vItIt361/o4uq553V8B5sGI=
 github.com/chzyer/readline v1.5.1/go.mod h1:Eh+b79XXUwfKfcPLepksvw2tcLE/Ct21YObkaSkeBlk=
+github.com/chzyer/test v1.0.0 h1:p3BQDXSxOhOG0P9z6/hGnII4LGiEPOYBhs8asl/fC04=
 github.com/chzyer/test v1.0.0/go.mod h1:2JlltgoNkt4TW/z9V/IzDdFaMTM2JPIi26O1pF38GC8=
+github.com/cilium/ebpf v0.7.0 h1:1k/q3ATgxSXRdrmPfH8d7YK0GfqVsEKZAX9dQZvs56k=
 github.com/cilium/ebpf v0.7.0/go.mod h1:/oI2+1shJiTGAMgl6/RgJr36Eo1jzrRcAWbcXO2usCA=
-github.com/cncf/udpa/go v0.0.0-20200629203442-efcf912fb354/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
-github.com/cncf/udpa/go v0.0.0-20210930031921-04548b0d99d4/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
-github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
-github.com/cncf/xds/go v0.0.0-20210805033703-aa0b78936158/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/client9/misspell v0.3.4 h1:ta993UF76GwbvJcIo3Y68y/M3WxlpEHPWIGDkJYwzJI=
+github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe h1:QQ3GSy+MqSHxm/d8nCtnAiZdYFd45cYZPs8vOOIYKfk=
 github.com/cncf/xds/go v0.0.0-20230607035331-e9ce68804cb4/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20231109132714-523115ebc101/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
+github.com/cncf/xds/go v0.0.0-20231128003011-0fa0005c9caa h1:jQCWAUqqlij9Pgj2i/PB79y4KOPYVyFYdROxgaCwdTQ=
 github.com/cncf/xds/go v0.0.0-20231128003011-0fa0005c9caa/go.mod h1:x/1Gn8zydmfq8dk6e9PdstVsDgu9RuyIIJqAaF//0IM=
+github.com/containerd/console v1.0.3 h1:lIr7SlA5PxZyMV30bDW0MGbiOPXwc63yRuCP0ARubLw=
 github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
+github.com/coreos/go-oidc v2.2.1+incompatible h1:mh48q/BqXqgjVHpy2ZY7WnWAbenxRjsz9N1i1YxjHAk=
 github.com/coreos/go-oidc v2.2.1+incompatible/go.mod h1:CgnwVTmzoESiwO9qyAFEMiHoZ1nMCKZlZ9V6mm3/LKc=
+github.com/coreos/go-semver v0.3.1 h1:yi21YpKnrx1gt5R+la8n5WgS0kCrsPp33dmEyHReZr4=
 github.com/coreos/go-semver v0.3.1/go.mod h1:irMmmIw/7yzSRPWryHsK7EYSg09caPQL03VsM8rvUec=
 github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e h1:Wf6HqHfScWJN9/ZjdUKyjop4mf3Qdd+1TvvltAvM3m8=
+github.com/cpuguy83/go-md2man/v2 v2.0.3 h1:qMCsGGgs+MAzDFyp9LpAe1Lqy/fY/qCovCm0qnXZOBM=
+github.com/docker/go-units v0.4.0 h1:3uh0PgVws3nIA0Q+MwDC8yjEPf9zjRfZZWXZYDct3Tw=
 github.com/docker/go-units v0.4.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
+github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815 h1:bWDMxwH3px2JBh6AyO7hdCn/PkvCZXii8TGj7sbtEbQ=
+github.com/dustin/go-humanize v1.0.1 h1:GzkhY7T5VNhEkwH0PVJgjz+fX1rhBrR7pRT3mDkpeCY=
 github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto=
 github.com/emicklei/go-restful v2.9.5+incompatible h1:spTtZBk5DYEvbxMVutUuTyh1Ao2r4iyvLdACqsl/Ljk=
 github.com/emicklei/go-restful/v3 v3.8.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
 github.com/emicklei/go-restful/v3 v3.9.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
-github.com/envoyproxy/go-control-plane v0.9.7/go.mod h1:cwu0lG7PUMfa9snN8LXBig5ynNVH9qI8YYLbd1fK2po=
-github.com/envoyproxy/go-control-plane v0.9.10-0.20210907150352-cf90f659a021/go.mod h1:AFq3mo9L8Lqqiid3OhADV3RfLJnjiw63cSpi+fDTRC0=
+github.com/emicklei/go-restful/v3 v3.11.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
 github.com/envoyproxy/go-control-plane v0.11.1/go.mod h1:uhMcXKCQMEJHiAb0w+YGefQLaTEw+YhGluxZkrTmD0g=
+github.com/envoyproxy/go-control-plane v0.12.0 h1:4X+VP1GHd1Mhj6IB5mMeGbLCleqxjletLK6K0rbxyZI=
 github.com/envoyproxy/go-control-plane v0.12.0/go.mod h1:ZBTaoJ23lqITozF0M6G4/IragXCQKCnYbmlmtHvwRG0=
 github.com/envoyproxy/protoc-gen-validate v1.0.2/go.mod h1:GpiZQP3dDbg4JouG/NNS7QWXpgx6x8QiMKdmN72jogE=
+github.com/envoyproxy/protoc-gen-validate v1.0.4 h1:gVPz/FMfvh57HdSJQyvBtF00j8JU4zdyUgIUNhlgg0A=
 github.com/envoyproxy/protoc-gen-validate v1.0.4/go.mod h1:qys6tmnRsYrQqIhm2bvKZH4Blx/1gTIZ2UKVY1M+Yew=
+github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
+github.com/felixge/httpsnoop v1.0.3 h1:s/nj+GCswXYzN5v2DpNMuMQYe+0DDwt5WVCU6CWBdXk=
 github.com/felixge/httpsnoop v1.0.3/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
 github.com/felixge/httpsnoop v1.0.4/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
+github.com/fogleman/gg v1.3.0 h1:/7zJX8F6AaYQc57WQCyN9cAIz+4bCJGO9B+dyW29am8=
+github.com/fxamacker/cbor/v2 v2.6.0 h1:sU6J2usfADwWlYDAFhZBQ6TnLFBHxgesMrQfQgk1tWA=
+github.com/fxamacker/cbor/v2 v2.6.0/go.mod h1:pxXPTn3joSm21Gbwsv0w9OSA2y1HFR9qXEeXQVeNoDQ=
+github.com/gabriel-vasile/mimetype v1.4.2 h1:w5qFW6JKBz9Y393Y4q372O9A7cUSequkh1Q7OhCmWKU=
 github.com/gabriel-vasile/mimetype v1.4.2/go.mod h1:zApsH/mKG4w07erKIaJPFiX0Tsq9BFQgN3qGY5GnNgA=
+github.com/getsentry/sentry-go v0.21.0 h1:c9l5F1nPF30JIppulk4veau90PK6Smu3abgVtVQWon4=
 github.com/getsentry/sentry-go v0.21.0/go.mod h1:lc76E2QywIyW8WuBnwl8Lc4bkmQH4+w1gwTf25trprY=
+github.com/gin-contrib/sse v0.1.0 h1:Y/yl/+YNO8GZSjAhjMsSuLt29uWRFHdHYUb5lYOV9qE=
 github.com/gin-contrib/sse v0.1.0/go.mod h1:RHrZQHXnP2xjPF+u1gW/2HnVO7nvIa9PG3Gm+fLHvGI=
+github.com/gin-gonic/gin v1.9.1 h1:4idEAncQnU5cB7BeOkPtxjfCSye0AAm1R0RVIqJ+Jmg=
 github.com/gin-gonic/gin v1.9.1/go.mod h1:hPrL7YrpYKXt5YId3A/Tnip5kqbEAP+KLuI3SUcPTeU=
-github.com/go-kit/log v0.2.1/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0=
-github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
+github.com/go-fonts/dejavu v0.1.0 h1:JSajPXURYqpr+Cu8U9bt8K+XcACIHWqWrvWCKyeFmVQ=
+github.com/go-fonts/latin-modern v0.2.0 h1:5/Tv1Ek/QCr20C6ZOz15vw3g7GELYL98KWr8Hgo+3vk=
+github.com/go-fonts/liberation v0.2.0 h1:jAkAWJP4S+OsrPLZM4/eC9iW7CtHy+HBXrEwZXWo5VM=
+github.com/go-fonts/stix v0.1.0 h1:UlZlgrvvmT/58o573ot7NFw0vZasZ5I6bcIft/oMdgg=
+github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1 h1:QbL/5oDUmRBzO9/Z7Seo6zf912W/a6Sr4Eu0G/3Jho0=
+github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4 h1:WtGNWLvXpe6ZudgnXrq0barxBImvnnJoMEhXAzcbM0I=
+github.com/go-kit/kit v0.9.0 h1:wDJmvq38kDhkVxi50ni9ykkdUr1PKgqKOoi01fa0Mdk=
+github.com/go-kit/log v0.2.1 h1:MRVx0/zhvdseW+Gza6N9rVzU/IVzaeE1SFI4raAhmBU=
+github.com/go-latex/latex v0.0.0-20210823091927-c0d11ff05a81 h1:6zl3BbBhdnMkpSj2YY30qV3gDcVBGtFgVsV3+/i+mKQ=
+github.com/go-logfmt/logfmt v0.5.1 h1:otpy5pqBCBZ1ng9RQ0dPu4PN7ba75Y/aA+UpowDyNVA=
+github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
 github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/logr v1.2.2/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/logr v1.2.3/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/logr v1.2.4/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
+github.com/go-logr/stdr v1.2.2 h1:hSWxHoqTgW2S2qGc0LTAI563KZ5YKYRhT3MFKZMbjag=
 github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE=
+github.com/go-openapi/jsonpointer v0.19.6/go.mod h1:osyAmYz/mB/C3I+WsTTSgw1ONzaLJoLCyoi6/zppojs=
 github.com/go-openapi/jsonreference v0.20.1/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
+github.com/go-openapi/jsonreference v0.20.2/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
+github.com/go-openapi/swag v0.22.3/go.mod h1:UzaqsxGiab7freDnrUUra0MwWfN/q7tE4j+VcZ0yl14=
 github.com/go-openapi/swag v0.22.5/go.mod h1:Gl91UqO+btAM0plGGxHqJcQZ1ZTy6jbmridBTsDy8A0=
 github.com/go-openapi/swag v0.22.6/go.mod h1:Gl91UqO+btAM0plGGxHqJcQZ1ZTy6jbmridBTsDy8A0=
+github.com/go-pdf/fpdf v0.6.0 h1:MlgtGIfsdMEEQJr2le6b/HNr1ZlQwxyWr77r2aj2U/8=
+github.com/go-playground/locales v0.14.1 h1:EWaQ/wswjilfKLTECiXz7Rh+3BjFhfDFKv/oXslEjJA=
 github.com/go-playground/locales v0.14.1/go.mod h1:hxrqLVvrK65+Rwrd5Fc6F2O76J/NuW9t0sjnWqG1slY=
+github.com/go-playground/universal-translator v0.18.1 h1:Bcnm0ZwsGyWbCzImXv+pAJnYK9S473LQFuzCbDbfSFY=
 github.com/go-playground/universal-translator v0.18.1/go.mod h1:xekY+UJKNuX9WP91TpwSH2VMlDf28Uj24BCp08ZFTUY=
+github.com/go-playground/validator/v10 v10.14.0 h1:vgvQWe3XCz3gIeFDm/HnTIbj6UGmg/+t63MyGU2n5js=
 github.com/go-playground/validator/v10 v10.14.0/go.mod h1:9iXMNT7sEkjXb0I+enO7QXmzG6QCsPWY4zveKFVRSyU=
+github.com/go-stack/stack v1.8.0 h1:5SgMzNM5HxrEjV0ww2lTmX6E2Izsfxas4+YHWRs3Lsk=
+github.com/gobwas/httphead v0.1.0 h1:exrUm0f4YX0L7EBwZHuCF4GDp8aJfVeBrlLQrs6NqWU=
 github.com/gobwas/httphead v0.1.0/go.mod h1:O/RXo79gxV8G+RqlR/otEwx4Q36zl9rqC5u12GKvMCM=
+github.com/gobwas/pool v0.2.1 h1:xfeeEhW7pwmX8nuLVlqbzVc7udMDrwetjEv+TZIz1og=
 github.com/gobwas/pool v0.2.1/go.mod h1:q8bcK0KcYlCgd9e7WYLm9LpyS+YeLd8JVDW6WezmKEw=
+github.com/gobwas/ws v1.2.1 h1:F2aeBZrm2NDsc7vbovKrWSogd4wvfAxg0FQ89/iqOTk=
 github.com/gobwas/ws v1.2.1/go.mod h1:hRKAFb8wOxFROYNsT1bqfWnhX+b5MFeJM9r2ZSwg/KY=
-github.com/goccy/go-json v0.9.11/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
+github.com/goccy/go-json v0.10.2 h1:CrxCmQqYDkv1z7lO7Wbh2HN93uovUHgrECaO5ZrCXAU=
 github.com/goccy/go-json v0.10.2/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
+github.com/golang-jwt/jwt/v4 v4.5.0 h1:7cYmW1XlMY7h7ii7UhUyChSgS5wUJEnm9uZVTGqOWzg=
 github.com/golang-jwt/jwt/v4 v4.5.0/go.mod h1:m21LjoU+eqJr34lmDMbreY2eSTRJ1cv77w39/MY0Ch0=
-github.com/golang/glog v1.1.0/go.mod h1:pfYeQZ3JWZoXTV5sFc986z3HTpwQs9At6P4ImfuP3NQ=
+github.com/golang/freetype v0.0.0-20170609003504-e2365dfdc4a0 h1:DACJavvAHhabrF08vX0COfcOBJRhZ8lUbR+ZWIs0Y5g=
 github.com/golang/glog v1.1.2/go.mod h1:zR+okUeTbrL6EL3xHUDxZuEtGv04p5shwip1+mL/rLQ=
+github.com/golang/glog v1.2.0 h1:uCdmnmatrKCgMBlM4rMuJZWOkPDqdbZPnrMXDY4gI68=
 github.com/golang/glog v1.2.0/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
-github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
-github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
-github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
+github.com/golang/mock v1.6.0 h1:ErTB+efbowRARo13NNdxyJji2egdxLGQhRaY+DUumQc=
+github.com/golang/snappy v0.0.4 h1:yAGX7huGHXlcLOEtBnF4w7FQwA26wojNCwOYAEhLjQM=
+github.com/google/btree v1.0.1/go.mod h1:xXMiIv4Fb/0kKde4SpL7qlzvu5cMJDRkFDxJfI9uaxA=
 github.com/google/cel-go v0.17.7/go.mod h1:HXZKzB0LXqer5lHHgfWAnlYwJaQBDKMjxjulNQzhwhY=
-github.com/google/flatbuffers v2.0.8+incompatible/go.mod h1:1AeVuKshWv4vARoZatz6mlQ0JxURH0Kv5+zNeJKJCa8=
-github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/cel-go v0.17.8 h1:j9m730pMZt1Fc4oKhCLUHfjj6527LuhYcYw0Rl8gqto=
+github.com/google/cel-go v0.17.8/go.mod h1:HXZKzB0LXqer5lHHgfWAnlYwJaQBDKMjxjulNQzhwhY=
+github.com/google/flatbuffers v2.0.8+incompatible h1:ivUb1cGomAB101ZM1T0nOiWz9pSrTMoa9+EiY7igmkM=
 github.com/google/go-pkcs11 v0.2.1-0.20230907215043-c6f79328ddf9/go.mod h1:6eQoGcuNJpa7jnd5pMGdkSaQpNDYvPlXWMcjXXThLlY=
-github.com/google/martian/v3 v3.1.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
-github.com/google/martian/v3 v3.3.2/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
-github.com/google/pprof v0.0.0-20201023163331-3e6fc7fc9c4c/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20201203190320-1bf35d6f28c2/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20201218002935-b9804c9f04c2/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
+github.com/google/martian v2.1.0+incompatible h1:/CP5g8u/VJHijgedC/Legn3BAbAaWPgecwXBIDzw5no=
+github.com/google/martian/v3 v3.3.2 h1:IqNFLAmvJOgVlpdEBiQbDc2EwKW77amAycfTuWKdfvw=
 github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/s2a-go v0.1.4/go.mod h1:Ej+mSEMGRnqRzjc7VtF+jdBwYG5fuJfiZ8ELkjEwM0A=
+github.com/google/renameio v0.1.0 h1:GOZbcHa3HfsPKPlmyPyN2KEohoMXOhdMbHrvbpl2QaA=
+github.com/google/s2a-go v0.1.4 h1:1kZ/sQM3srePvKs3tXAvQzo66XfcReoqFpIpIccE7Oc=
 github.com/google/s2a-go v0.1.7/go.mod h1:50CgR4k1jNlWBu4UfS4AcfhVe1r6pdZPygJ3R8F0Qdw=
-github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.5.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-github.com/googleapis/enterprise-certificate-proxy v0.2.3/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
+github.com/googleapis/enterprise-certificate-proxy v0.2.3 h1:yk9/cqRKtT9wXZSsRH9aurXEpJX+U6FLtpYTdC3R06k=
 github.com/googleapis/enterprise-certificate-proxy v0.2.4/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
 github.com/googleapis/enterprise-certificate-proxy v0.3.2/go.mod h1:VLSiSSBs/ksPL8kq3OBOQ6WRI2QnaFynd1DCjZ62+V0=
-github.com/googleapis/gax-go/v2 v2.10.0/go.mod h1:4UOEnMCrxsSqQ940WnTiD6qJ63le2ev3xfyagutxiPw=
-github.com/googleapis/gax-go/v2 v2.11.0/go.mod h1:DxmR61SGKkGLa2xigwuZIQpkCI2S5iydzRfb3peWZJI=
+github.com/googleapis/gax-go/v2 v2.11.0 h1:9V9PWXEsWnPpQhu/PeQIkS4eGzMlTLGgt80cUUI8Ki4=
 github.com/googleapis/gax-go/v2 v2.12.0/go.mod h1:y+aIqrI5eb1YGMVJfuV3185Ts/D7qKpsEkdD5+I6QGU=
-github.com/googleapis/google-cloud-go-testing v0.0.0-20200911160855-bcd43fbb19e8/go.mod h1:dvDLG8qkwmyD9a/MJJN3XJcT3xFxOKAvTZGvuZmac9g=
+github.com/googleapis/go-type-adapters v1.0.0 h1:9XdMn+d/G57qq1s8dNc5IesGCXHf6V2HZ2JwRxfA2tA=
+github.com/googleapis/google-cloud-go-testing v0.0.0-20200911160855-bcd43fbb19e8 h1:tlyzajkF3030q6M8SvmJSemC9DTHL/xaMa18b65+JM4=
+github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
+github.com/gorilla/websocket v1.5.0 h1:PPwGk2jz7EePpoHN/+ClbZu8SPxiqlu12wZP/3sWmnc=
 github.com/gorilla/websocket v1.5.0/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
+github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
+github.com/grpc-ecosystem/go-grpc-middleware v1.3.0 h1:+9834+KizmvFV7pXQGSXQTsaWhq2GjuNUt0aUU0YBYw=
 github.com/grpc-ecosystem/go-grpc-middleware v1.3.0/go.mod h1:z0ButlSOZa5vEBq9m2m2hlwIgKw+rp3sdCBRoJY+30Y=
+github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0 h1:Ovs26xHkKqVztRpIrF/92BcuyuQ/YW4NSIpoGtfXNho=
 github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgfV/d3M/q6VIi02HzZEHgUlZvzk=
-github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
+github.com/grpc-ecosystem/grpc-gateway v1.16.0 h1:gmcG1KaJ57LophUzW0Hy8NmPhnMZb4M0+kPpLofRdBo=
+github.com/grpc-ecosystem/grpc-gateway/v2 v2.16.0 h1:YBftPWNWd4WwGqtY2yeZL2ef8rHAxPBD8KFhJpmcqms=
 github.com/grpc-ecosystem/grpc-gateway/v2 v2.16.0/go.mod h1:YN5jB8ie0yfIUg6VvR9Kz84aCaG7AsGZnLjhHbUqwPg=
+github.com/hashicorp/golang-lru v0.5.1 h1:0hERBMJE1eitiLkihrMvRVBYAkpHzc/J3QdDN+dAcgU=
+github.com/hpcloud/tail v1.0.0 h1:nfCOvKYfkgYP8hkirhJocXT2+zOD8yUNjXaWfTlyFKI=
+github.com/iancoleman/strcase v0.2.0 h1:05I4QRnGpI0m37iZQRuskXh+w77mr6Z41lwQzuHLwW0=
 github.com/iancoleman/strcase v0.3.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
-github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/ianlancetaylor/demangle v0.0.0-20230524184225-eabc099b10ab/go.mod h1:gx7rwoVhcfuVKG5uya9Hs3Sxj7EIvldVofAWIUtGouw=
+github.com/ianlancetaylor/demangle v0.0.0-20240312041847-bd984b5ce465 h1:KwWnWVWCNtNq/ewIX7HIKnELmEx2nDP42yskD/pi7QE=
+github.com/ianlancetaylor/demangle v0.0.0-20240312041847-bd984b5ce465/go.mod h1:gx7rwoVhcfuVKG5uya9Hs3Sxj7EIvldVofAWIUtGouw=
+github.com/imdario/mergo v0.3.6/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
 github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
+github.com/jessevdk/go-flags v1.4.0 h1:4IU2WS7AumrZ/40jfhf4QVDMsQwqA7VEHozFRrGARJA=
 github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
+github.com/jonboulle/clockwork v0.2.2 h1:UOGuzwb1PwsrDAObMuhUnj0p5ULPj8V/xJ7Kx9qUBdQ=
 github.com/jonboulle/clockwork v0.2.2/go.mod h1:Pkfl5aHPm1nk2H9h0bjmnJD/BcgbGXUBGnn1kMkgxc8=
-github.com/klauspost/asmfmt v1.3.2/go.mod h1:AG8TuvYojzulgDAMCnYn50l/5QV3Bs/tp6j0HLHbNSE=
-github.com/klauspost/compress v1.15.9/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU=
+github.com/jpillora/backoff v1.0.0 h1:uvFg412JmmHBHw7iwprIxkPMI+sGQ4kzOWsMeHnm2EA=
+github.com/jstemmer/go-junit-report v0.9.1 h1:6QPYqodiu3GuPL+7mfx+NwDdp2eTkp9IfEUpgAwUN0o=
+github.com/julienschmidt/httprouter v1.3.0 h1:U0609e9tgbseu3rBINet9P48AI/D3oJs4dN7jwJOQ1U=
+github.com/jung-kurt/gofpdf v1.0.3-0.20190309125859-24315acbbda5 h1:PJr+ZMXIecYc1Ey2zucXdR73SMBtgjPgwa31099IMv0=
+github.com/kballard/go-shellquote v0.0.0-20180428030007-95032a82bc51 h1:Z9n2FFNUXsshfwJMBgNA0RU6/i7WVaAegv3PtuIHPMs=
+github.com/kisielk/errcheck v1.5.0 h1:e8esj/e4R+SAOwFwN+n3zr0nYeCyeweozKfO23MvHzY=
+github.com/kisielk/gotool v1.0.0 h1:AV2c/EiW3KqPNT9ZKl07ehoAGi4C5/01Cfbblndcapg=
+github.com/klauspost/asmfmt v1.3.2 h1:4Ri7ox3EwapiOjCki+hw14RyKk201CN4rzyCJRFLpK4=
+github.com/klauspost/compress v1.15.9 h1:wKRjX6JRtDdrE9qwa4b/Cip7ACOshUI4smpCQanqjSY=
 github.com/klauspost/compress v1.16.7/go.mod h1:ntbaceVETuRiXiv4DpjP66DpAtAGkEQskQzEyD//IeE=
-github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
+github.com/klauspost/cpuid/v2 v2.2.4 h1:acbojRNwl3o09bUq+yDCtZFc1aiwaAAxtcn8YkZXnvk=
 github.com/klauspost/cpuid/v2 v2.2.4/go.mod h1:RVVoqg1df56z8g3pUjL/3lE5UfnlrJX8tyFgg4nqhuY=
 github.com/klauspost/cpuid/v2 v2.2.5/go.mod h1:Lcz8mBdAVJIBVzewtcLocK12l3Y+JytZYpaMropDUws=
-github.com/kr/fs v0.1.0/go.mod h1:FFnZGqtBN9Gxj7eW1uZ42v5BccTP0vu6NEaFoC2HwRg=
+github.com/konsorten/go-windows-terminal-sequences v1.0.3 h1:CE8S1cTafDpPvMhIxNJKvHsGVBgn1xWYf1NbHQhywc8=
+github.com/kr/fs v0.1.0 h1:Jskdu9ieNAYnjxsi0LbQp1ulIKZV1LAFgK1tWhpZgl8=
+github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515 h1:T+h1c/A9Gawja4Y9mFVWj2vyii2bbUNDw3kt9VxK2EY=
+github.com/kr/pty v1.1.1 h1:VkoXIwSboBpnk99O/KFauAEILuNHv5DVFKZMBN/gUgw=
+github.com/labstack/echo/v4 v4.10.2 h1:n1jAhnq/elIFTHr1EYpiYtyKgx4RW9ccVgkqByZaN2M=
 github.com/labstack/echo/v4 v4.10.2/go.mod h1:OEyqf2//K1DFdE57vw2DRgWY0M7s65IVQO2FzvI4J5k=
+github.com/labstack/gommon v0.4.0 h1:y7cvthEAEbU0yHOf4axH8ZG2NH8knB9iNSoTO8dyIk8=
 github.com/labstack/gommon v0.4.0/go.mod h1:uW6kP17uPlLJsD3ijUYn3/M5bAxtlZhMI6m3MFxTMTM=
+github.com/ledongthuc/pdf v0.0.0-20220302134840-0c2507a12d80 h1:6Yzfa6GP0rIo/kULo2bwGEkFvCePZ3qHDDTC3/J9Swo=
 github.com/ledongthuc/pdf v0.0.0-20220302134840-0c2507a12d80/go.mod h1:imJHygn/1yfhB7XSJJKlFZKl/J+dCPAknuiaGOshXAs=
+github.com/leodido/go-urn v1.2.4 h1:XlAE/cm/ms7TE/VMVoduSpNBoyc2dOxHs5MZSwAN63Q=
 github.com/leodido/go-urn v1.2.4/go.mod h1:7ZrI8mTSeBSHl/UaRyKQW1qZeMgak41ANeCNaVckg+4=
+github.com/lyft/protoc-gen-star v0.6.1 h1:erE0rdztuaDq3bpGifD95wfoPrSZc95nGA6tbiNYh6M=
+github.com/lyft/protoc-gen-star/v2 v2.0.1 h1:keaAo8hRuAT0O3DfJ/wM3rufbAjGeJ1lAtWZHDjKGB0=
 github.com/lyft/protoc-gen-star/v2 v2.0.3/go.mod h1:amey7yeodaJhXSbf/TlLvWiqQfLOSpEk//mLlc+axEk=
-github.com/matttproud/golang_protobuf_extensions v1.0.4/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
-github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0/go.mod h1:QUyp042oQthUoa9bqDv0ER0wrtXnBruoNd7aNjkbP+k=
-github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8/go.mod h1:mC1jAcsrzbxHt8iiaC+zU4b1ylILSosueou12R++wfY=
-github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3/go.mod h1:RagcQ7I8IeTMnF8JTXieKnO4Z6JCsikNEzj0DwauVzE=
+github.com/mattn/go-sqlite3 v1.14.14 h1:qZgc/Rwetq+MtyE18WhzjokPD93dNqLGNT3QJuLvBGw=
+github.com/matttproud/golang_protobuf_extensions v1.0.4 h1:mmDVorXM7PCGKw94cs5zkfA9PSy5pEvNWRP0ET0TIVo=
+github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0 h1:jWpvCLoY8Z/e3VKvlsiIGKtc+UG6U5vzxaoagmhXfyg=
+github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8 h1:AMFGa4R4MiIpspGNG7Z948v4n35fFGB3RR3G/ry4FWs=
+github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3 h1:+n/aFZefKZp7spd8DFdX7uMikMLXX4oubIzJF4kv/wI=
+github.com/moby/spdystream v0.2.0 h1:cjW1zVyyoiM0T7b6UoySUFqzXMoqRckQtXwGPiBhOM8=
 github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
+github.com/mrunalp/fileutils v0.5.1 h1:F+S7ZlNKnrwHfSwdlgNSkKo67ReVf8o9fel6C3dkm/Q=
 github.com/mrunalp/fileutils v0.5.1/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
 github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
+github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f h1:KUppIJq7/+SVif2QVs3tOP0zanoHgBEVAwHxUSIzRqU=
+github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f h1:y5//uYreIhSUg3J1GEMiLbxo1LJaP8RfCpH6pymGZus=
 github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
+github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65 h1:Og+dVkxEQNvRGU2vUKeOwYT2UJ+pEaDMWB6tIQnIh6A=
 github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
+github.com/onsi/ginkgo/v2 v2.15.0/go.mod h1:HlxMHtYF57y6Dpf+mc5529KKmSq9h2FpCF+/ZkwUxKM=
 github.com/onsi/gomega v1.19.0/go.mod h1:LY+I3pBVzYsTBU1AnDwOSxaYi9WoWiqgwooUqq9yPro=
+github.com/onsi/gomega v1.31.0/go.mod h1:DW9aCi7U6Yi40wNVAvT6kzFnEVEI5n3DloYBiKiT6zk=
+github.com/onsi/gomega v1.33.0/go.mod h1:+925n5YtiFsLzzafLUHzVMBpvvRAzrydIBiSIxjX3wY=
+github.com/opencontainers/selinux v1.10.0 h1:rAiKF8hTcgLI3w0DHm6i0ylVVcOrlgR1kK99DRLDhyU=
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
+github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde h1:x0TT0RDC7UhAVbbWWBzr41ElhJx5tXPWkIHA2HWPRuw=
 github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde/go.mod h1:nZgzbfBr3hhjoZnS66nKrHmduYNpc34ny7RK4z5/HM0=
+github.com/pelletier/go-toml/v2 v2.0.8 h1:0ctb6s9mE31h0/lhu+J6OPmVeDxJn+kYnJc2jZR9tGQ=
 github.com/pelletier/go-toml/v2 v2.0.8/go.mod h1:vuYfssBdrU2XDZ9bYydBu6t+6a6PYNcZljzZR9VXg+4=
-github.com/pierrec/lz4/v4 v4.1.15/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4=
-github.com/pkg/sftp v1.13.1/go.mod h1:3HaPG6Dq1ILlpPZRO0HVMrsydcdLt6HRDccSgb87qRg=
+github.com/phpdave11/gofpdf v1.4.2 h1:KPKiIbfwbvC/wOncwhrpRdXVj2CZTCFlw4wnoyjtHfQ=
+github.com/phpdave11/gofpdi v1.0.13 h1:o61duiW8M9sMlkVXWlvP92sZJtGKENvW3VExs6dZukQ=
+github.com/pierrec/lz4/v4 v4.1.15 h1:MO0/ucJhngq7299dKLwIMtgTfbkoSPF6AoMYDd8Q4q0=
+github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e h1:aoZm08cpOy4WuID//EZDgcC4zIxODThtZNPirFr42+A=
+github.com/pkg/sftp v1.13.1 h1:I2qBYMChEhIjOgazfJmV3/mZM256btk6wkCDRmW7JYs=
+github.com/pquerna/cachecontrol v0.1.0 h1:yJMy84ti9h/+OEWa752kBTKv4XC30OtVVHYv/8cTqKc=
 github.com/pquerna/cachecontrol v0.1.0/go.mod h1:NrUG3Z7Rdu85UNR3vm7SOsl1nFIeSiQnrHV5K9mBcUI=
-github.com/prometheus/client_model v0.5.0/go.mod h1:dTiFglRmd66nLR9Pv9f0mZi7B7fk5Pm3gvsjB5tr+kI=
-github.com/prometheus/common v0.45.0/go.mod h1:YJmSTw9BoKxJplESWWxlbyttQR4uaEcGyv9MZjVOJsY=
-github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
+github.com/prometheus/exporter-toolkit v0.11.0 h1:yNTsuZ0aNCNFQ3aFTD2uhPOvr4iD7fdBvKPAEGkNf+g=
+github.com/prometheus/procfs v0.13.0 h1:GqzLlQyfsPbaEHaQkO7tbDlriv/4o5Hudv6OXHGKX7o=
+github.com/remyoudompheng/bigfft v0.0.0-20200410134404-eec4a21b6bb0 h1:OdAsTTz6OkFY5QxjkYwrChwuRruF69c169dPK26NUlk=
+github.com/rogpeppe/fastuuid v1.2.0 h1:Ppwyp6VYCF1nvBTXL3trRso7mXMlRrw9ooo375wvi2s=
+github.com/russross/blackfriday/v2 v2.1.0 h1:JIOH55/0cWyOuilr9/qlrm0BSXldqnqwMsf35Ld67mk=
+github.com/ruudk/golang-pdf417 v0.0.0-20201230142125-a7e3863a1245 h1:K1Xf3bKttbF+koVGaX5xngRIZ5bVjbmPnaxE/dR08uY=
+github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646 h1:RpforrEYXWkmGwJHIGnLZ3tTWStkjVVstwzNGqxX2Ds=
 github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
+github.com/shurcooL/sanitized_anchor_name v1.0.0 h1:PdmoCO6wvbs+7yrJyMORt4/BmY5IYyJwS/kOiWx8mHo=
 github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
+github.com/soheilhy/cmux v0.1.5 h1:jjzc5WVemNEDTLwv9tlmemhC73tI08BNOIGwBOo10Js=
 github.com/soheilhy/cmux v0.1.5/go.mod h1:T7TcVDs9LWfQgPlPsdngu6I6QIoyIFZDDC6sNE1GqG0=
+github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72 h1:qLC7fQah7D6K1B0ujays3HV9gkFtllcxhzImRR7ArPQ=
+github.com/spf13/afero v1.9.2 h1:j49Hj62F0n+DaZ1dDCvhABaPNSGNkt32oRFxI33IEMw=
 github.com/spf13/afero v1.10.0/go.mod h1:UBogFpq8E9Hx+xc5CNTTEpTnuHVmXDwZcZcE1eb/UhQ=
+github.com/stoewer/go-strcase v1.2.0 h1:Z2iHWqGXH00XYgqDmNgQbIBxf3wrNq0F3feEy0ainaU=
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
-github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
-github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
-github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
-github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
+github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
+github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635 h1:kdXcSzyDtseVEc4yCz2qF8ZrQvIDBJLl4S1c3GCXmoI=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
+github.com/tmc/grpc-websocket-proxy v0.0.0-20220101234140-673ab2c3ae75 h1:6fotK7otjonDflCTK0BCfls4SPy3NcCVb5dqqmbRknE=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20220101234140-673ab2c3ae75/go.mod h1:KO6IkyS8Y3j8OdNO85qEYBsRPuteD+YciPomcXdrMnk=
+github.com/twitchyliquid64/golang-asm v0.15.1 h1:SU5vSMR7hnwNxj24w34ZyCi/FmDZTkS4MhqMhdFk5YI=
 github.com/twitchyliquid64/golang-asm v0.15.1/go.mod h1:a1lVb/DtPvCB8fslRZhAngC2+aY1QWCk3Cedj/Gdt08=
+github.com/ugorji/go/codec v1.2.11 h1:BMaWp1Bb6fHwEtbplGBGJ498wD+LKlNSl25MjdZY4dU=
 github.com/ugorji/go/codec v1.2.11/go.mod h1:UNopzCgEMSXjBc6AOMqYvWC1ktqTAfzJZUZgYf6w6lg=
+github.com/urfave/cli v1.22.1 h1:+mkCCcOFKPnCmVYVcURKps1Xe+3zP90gSYGNfRkjoIY=
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
+github.com/valyala/bytebufferpool v1.0.0 h1:GqA5TC/0021Y/b9FG4Oi9Mr3q7XYx6KllzawFIhcdPw=
 github.com/valyala/bytebufferpool v1.0.0/go.mod h1:6bBcMArwyJ5K/AmCkWv1jt77kVWyCJ6HpOuEn7z0Csc=
+github.com/valyala/fasttemplate v1.2.2 h1:lxLXG0uE3Qnshl9QyaK6XJxMXlQZELvChBOCmQD0Loo=
 github.com/valyala/fasttemplate v1.2.2/go.mod h1:KHLXt3tVN2HBp8eijSv/kGJopbvo7S+qRAEEKiv+SiQ=
+github.com/vishvananda/netlink v1.1.0 h1:1iyaYNBLmP6L0220aDnYQpo1QEV4t4hJ+xEEhhJH8j0=
 github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
+github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df h1:OviZH7qLw/7ZovXvuNyL3XQl8UFofeikI1NW1Gypu7k=
 github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
-github.com/xhit/go-str2duration/v2 v2.1.0/go.mod h1:ohY8p+0f07DiV6Em5LKB0s2YpLtXVyJfNt1+BlmyAsU=
+github.com/x448/float16 v0.8.4 h1:qLwI1I70+NjRFUR3zs1JPUCgaCXSh3SW62uAKT1mSBM=
+github.com/x448/float16 v0.8.4/go.mod h1:14CWIYCyZA/cWjXOioeEpHeN/83MdbZDRQHoFcYsOfg=
+github.com/xhit/go-str2duration v1.2.0 h1:BcV5u025cITWxEQKGWr1URRzrcXtu7uk8+luz3Yuhwc=
+github.com/xhit/go-str2duration/v2 v2.1.0 h1:lxklc02Drh6ynqX+DdPyp5pCKLUQpRT8bp8Ydu2Bstc=
+github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2 h1:eY9dn8+vbi4tKz5Qo6v2eYzo7kUS51QINcR5jNpbZS8=
 github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
-github.com/zeebo/xxh3 v1.0.2/go.mod h1:5NWz9Sef7zIDm2JHfFlcQvNekmcEl9ekUZQQKCYaDcA=
+github.com/yuin/goldmark v1.4.13 h1:fVcFKWvrslecOb/tg+Cc05dkeYx540o0FuFt3nUVDoE=
+github.com/zeebo/assert v1.3.0 h1:g7C04CbJuIDKNPFHmsk4hwZDO5O+kntRxzaUoNXj+IQ=
+github.com/zeebo/xxh3 v1.0.2 h1:xZmwmqxHZA8AI603jOQ0tMqmBr9lPeFwGg6d+xy9DC0=
+go.etcd.io/bbolt v1.3.8 h1:xs88BrvEv273UsB79e0hcVrlUWmS0a8upikMFhSyAtA=
 go.etcd.io/bbolt v1.3.8/go.mod h1:N9Mkw9X8x5fupy0IKsmuqVtoGDyxsaDlbk4Rd05IAQw=
+go.etcd.io/etcd/api/v3 v3.5.10 h1:szRajuUUbLyppkhs9K6BRtjY37l66XQQmw7oZRANE4k=
 go.etcd.io/etcd/api/v3 v3.5.10/go.mod h1:TidfmT4Uycad3NM/o25fG3J07odo4GBB9hoxaodFCtI=
+go.etcd.io/etcd/client/pkg/v3 v3.5.10 h1:kfYIdQftBnbAq8pUWFXfpuuxFSKzlmM5cSn76JByiT0=
 go.etcd.io/etcd/client/pkg/v3 v3.5.10/go.mod h1:DYivfIviIuQ8+/lCq4vcxuseg2P2XbHygkKwFo9fc8U=
+go.etcd.io/etcd/client/v2 v2.305.10 h1:MrmRktzv/XF8CvtQt+P6wLUlURaNpSDJHFZhe//2QE4=
 go.etcd.io/etcd/client/v2 v2.305.10/go.mod h1:m3CKZi69HzilhVqtPDcjhSGp+kA1OmbNn0qamH80xjA=
+go.etcd.io/etcd/client/v3 v3.5.10 h1:W9TXNZ+oB3MCd/8UjxHTWK5J9Nquw9fQBLJd5ne5/Ao=
 go.etcd.io/etcd/client/v3 v3.5.10/go.mod h1:RVeBnDz2PUEZqTpgqwAtUd8nAPf5kjyFyND7P1VkOKc=
+go.etcd.io/etcd/pkg/v3 v3.5.10 h1:WPR8K0e9kWl1gAhB5A7gEa5ZBTNkT9NdNWrR8Qpo1CM=
 go.etcd.io/etcd/pkg/v3 v3.5.10/go.mod h1:TKTuCKKcF1zxmfKWDkfz5qqYaE3JncKKZPFf8c1nFUs=
+go.etcd.io/etcd/raft/v3 v3.5.10 h1:cgNAYe7xrsrn/5kXMSaH8kM/Ky8mAdMqGOxyYwpP0LA=
 go.etcd.io/etcd/raft/v3 v3.5.10/go.mod h1:odD6kr8XQXTy9oQnyMPBOr0TVe+gT0neQhElQ6jbGRc=
+go.etcd.io/etcd/server/v3 v3.5.10 h1:4NOGyOwD5sUZ22PiWYKmfxqoeh72z6EhYjNosKGLmZg=
 go.etcd.io/etcd/server/v3 v3.5.10/go.mod h1:gBplPHfs6YI0L+RpGkTQO7buDbHv5HJGG/Bst0/zIPo=
-go.opencensus.io v0.22.5/go.mod h1:5pWMHQbX5EPX2/62yrJeAkowc+lfs/XD7Uxpq3pI6kk=
-go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo=
+go.opencensus.io v0.24.0 h1:y73uSU6J157QMP2kn2r30vwW1A2W2WFwSCGnAVxeaD0=
+go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.42.0 h1:ZOLJc06r4CB42laIXg/7udr0pbZyuAihN10A/XuiQRY=
 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.42.0/go.mod h1:5z+/ZWJQKXa9YT34fQNx5K8Hd1EoIhvtUygUQPqEOgQ=
 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.46.1/go.mod h1:4UoMYEZOC0yN/sPGH76KPkkU7zgiEWYWL9vwmbnTJPE=
 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.47.0/go.mod h1:r9vWsPS/3AQItv3OSlEJ/E4mbrhUbbw18meOjArPtKQ=
+go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.44.0 h1:KfYpVmrjI7JuToy5k8XV3nkapjWx48k4E4JOtVstzQI=
 go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.44.0/go.mod h1:SeQhzAEccGVZVEy7aH87Nh0km+utSpo1pTv6eMMop48=
 go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.46.1/go.mod h1:sEGXWArGqc3tVa+ekntsN65DmVbVeW+7lTKTjZF3/Fo=
 go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.47.0/go.mod h1:SK2UL73Zy1quvRPonmOmRDiWk1KBV3LyIeeIxcEApWw=
+go.opentelemetry.io/otel v1.19.0 h1:MuS/TNf4/j4IXsZuJegVzI1cwut7Qc00344rgH7p8bs=
 go.opentelemetry.io/otel v1.19.0/go.mod h1:i0QyjOq3UPoTzff0PJB2N66fb4S0+rSbSB15/oyH9fY=
 go.opentelemetry.io/otel v1.21.0/go.mod h1:QZzNPQPm1zLX4gZK4cMi+71eaorMSGT3A4znnUvNNEo=
 go.opentelemetry.io/otel v1.22.0/go.mod h1:eoV4iAi3Ea8LkAEI9+GFT44O6T/D0GWAVFyZVCC6pMI=
+go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.19.0 h1:Mne5On7VWdx7omSrSSZvM4Kw7cS7NQkOOmLcgscI51U=
 go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.19.0/go.mod h1:IPtUMKL4O3tH5y+iXVyAXqpAwMuzC1IrxVS81rummfE=
+go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.19.0 h1:3d+S281UTjM+AbF31XSOYn1qXn3BgIdWl8HNEpx08Jk=
 go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.19.0/go.mod h1:0+KuTDyKL4gjKCF75pHOX4wuzYDUZYfAQdSu43o+Z2I=
+go.opentelemetry.io/otel/metric v1.19.0 h1:aTzpGtV0ar9wlV4Sna9sdJyII5jTVJEvKETPiOKwvpE=
 go.opentelemetry.io/otel/metric v1.19.0/go.mod h1:L5rUsV9kM1IxCj1MmSdS+JQAcVm319EUrDVLrt7jqt8=
 go.opentelemetry.io/otel/metric v1.21.0/go.mod h1:o1p3CA8nNHW8j5yuQLdc1eeqEaPfzug24uvsyIEJRWM=
 go.opentelemetry.io/otel/metric v1.22.0/go.mod h1:evJGjVpZv0mQ5QBRJoBF64yMuOf4xCWdXjK8pzFvliY=
+go.opentelemetry.io/otel/sdk v1.19.0 h1:6USY6zH+L8uMH8L3t1enZPR3WFEmSTADlqldyHtJi3o=
 go.opentelemetry.io/otel/sdk v1.19.0/go.mod h1:NedEbbS4w3C6zElbLdPJKOpJQOrGUJ+GfzpjUvI0v1A=
 go.opentelemetry.io/otel/sdk v1.21.0/go.mod h1:Nna6Yv7PWTdgJHVRD9hIYywQBRx7pbox6nwBnZIxl/E=
+go.opentelemetry.io/otel/trace v1.19.0 h1:DFVQmlVbfVeOuBRrwdtaehRrWiL1JoVs9CPIQ1Dzxpg=
 go.opentelemetry.io/otel/trace v1.19.0/go.mod h1:mfaSyvGyEJEI0nyV2I4qhNQnbBOUUmYZpYojqMnX2vo=
 go.opentelemetry.io/otel/trace v1.21.0/go.mod h1:LGbsEB0f9LGjN+OZaQQ26sohbOmiMR+BaslueVtS/qQ=
 go.opentelemetry.io/otel/trace v1.22.0/go.mod h1:RbbHXVqKES9QhzZq/fE5UnOSILqRt40a21sPw2He1xo=
+go.opentelemetry.io/proto/otlp v1.0.0 h1:T0TX0tmXU8a3CbNXzEKGeU5mIVOdf0oykP+u2lIVU/I=
 go.opentelemetry.io/proto/otlp v1.0.0/go.mod h1:Sy6pihPLfYHkr3NkUbEhGHFhINUSI/v80hjKIs5JXpM=
+go.uber.org/atomic v1.10.0 h1:9qC72Qh0+3MqyJbAn8YU5xVq1frD8bn3JtD2oXtafVQ=
 go.uber.org/atomic v1.10.0/go.mod h1:LUxbIzbOniOlMKjJjyPfpl4v+PKK2cNJn91OQbhoJI0=
 go.uber.org/goleak v1.2.0/go.mod h1:XJYK+MuIchqpmGmUSAzotztawfKvYLUIgg7guXrwVUo=
 go.uber.org/multierr v1.10.0/go.mod h1:20+QtiLqy0Nd6FdQB9TLXag12DsQkrbs3htMFfDN80Y=
+golang.org/dl v0.0.0-20190829154251-82a15e2f2ead h1:jeP6FgaSLNTMP+Yri3qjlACywQLye+huGLmNGhBzm6k=
+golang.org/x/arch v0.3.0 h1:02VY4/ZcO/gBOH6PUaoiptASxtXU10jazRCP865E97k=
 golang.org/x/arch v0.3.0/go.mod h1:5om86z9Hs0C8fWVUuoMHwpExlXzs5Tkyp9hOrfG7pp8=
-golang.org/x/crypto v0.0.0-20210421170649-83a5a9bb288b/go.mod h1:T9bdIzuCu7OtxOm1hfPfRQxPLYneinmdGuTeoZ9dtd4=
-golang.org/x/crypto v0.0.0-20220314234659-1baeb1ce4c0b/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.0.0-20220722155217-630584e8d5aa/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
-golang.org/x/crypto v0.9.0/go.mod h1:yrmDGqONDYtNj3tH8X9dzUun2m2lzPa9ngI6/RUPGR0=
 golang.org/x/crypto v0.12.0/go.mod h1:NF0Gs7EO5K4qLn+Ylc+fih8BSTeIjAP05siRnAh98yw=
-golang.org/x/crypto v0.13.0/go.mod h1:y6Z2r+Rw4iayiXXAIxJIDAJ1zMW4yaTpebo8fPOliYc=
-golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4=
-golang.org/x/crypto v0.18.0/go.mod h1:R0j02AL6hcrfOiy9T4ZYp/rcWeMxM3L6QYxlOuEG1mg=
-golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU=
-golang.org/x/crypto v0.21.0/go.mod h1:0BP7YvVV9gBbVKyeTG0Gyn+gZm94bibOW5BjDEYAOMs=
-golang.org/x/lint v0.0.0-20201208152925-83fdc39ff7b5/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
-golang.org/x/mod v0.4.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.7.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
-golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
-golang.org/x/mod v0.9.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
+golang.org/x/image v0.0.0-20220302094943-723b81ca9867 h1:TcHcE0vrmgzNH1v3ppjcMGbhG5+9fMuvOmUYwNEF4q4=
+golang.org/x/lint v0.0.0-20210508222113-6edffad5e616 h1:VLliZ0d+/avPrXXH+OakdXhpJuEoBZuwh1m2j7U6Iug=
+golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028 h1:4+4C/Iv2U4fMZBiMCc98MG1In4gJY5YRhtpDNeDeHWs=
 golang.org/x/mod v0.12.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
-golang.org/x/net v0.0.0-20201031054903-ff519b6c9102/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201209123823-ac852fbbde11/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.7.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
-golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg=
+golang.org/x/mod v0.14.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
 golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
 golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
-golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/net v0.18.0/go.mod h1:/czyP5RqHAH4odGYxBJ1qz0+CE5WZ+2j1YgoEo8F2jQ=
-golang.org/x/net v0.20.0/go.mod h1:z8BVo6PvndSri0LbOE3hAn0apkU+1YvI6E70E9jsnvY=
-golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
-golang.org/x/oauth2 v0.0.0-20200902213428-5d25da1a8d43/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20201109201403-9fd604954f58/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20201208152858-08078c50e5b5/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210218202405-ba52d332ba99/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE=
+golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI=
 golang.org/x/oauth2 v0.11.0/go.mod h1:LdF7O/8bLR/qWK9DrpXmbHLTouvRHK0SgJl0GmDBchk=
-golang.org/x/oauth2 v0.12.0/go.mod h1:A74bZ3aGXgCY0qaIC9Ahg6Lglin4AMAco8cIv9baba4=
 golang.org/x/oauth2 v0.13.0/go.mod h1:/JMhi4ZRXAf4HG9LiNmxvk+45+96RUlVThiH8FzNBn0=
 golang.org/x/oauth2 v0.14.0/go.mod h1:lAtNWgaWfL4cm7j2OV8TxGi9Qb7ECORx8DktCY74OwM=
 golang.org/x/oauth2 v0.15.0/go.mod h1:q48ptWNTY5XWf+JNten23lcvHpLJ0ZSxF5ttTHKVCAM=
-golang.org/x/oauth2 v0.16.0/go.mod h1:hqZ+0LWXsiVoZpeld6jVt06P3adbS2Uu911W1SsJv2o=
 golang.org/x/oauth2 v0.17.0/go.mod h1:OzPDGQiuQMguemayvdylqddI7qcD9lnSDb+1FiwQ5HA=
-golang.org/x/sync v0.2.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.3.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
 golang.org/x/sync v0.4.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
-golang.org/x/sync v0.5.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
-golang.org/x/sys v0.0.0-20200905004654-be1d3432aa8f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20201201145000-ef89a241ccb3/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210104204734-6f8348627aad/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210119212857-b64e53b001e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210225134936-a50acf3fe073/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210423185535-09eb48e85fd7/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.16.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.19.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/telemetry v0.0.0-20240208230135-b75ee8823808/go.mod h1:KG1lNk5ZFNssSZLrpVb4sMXKMpGwGXOxSG3rnu2gZQQ=
-golang.org/x/term v0.16.0/go.mod h1:yn7UURbUtPyrVJPGPq404EukNFxcm/foM+bV/bfcDsY=
-golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
-golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
+golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2 h1:IRJeR9r1pYWsHKTRe/IInb7lYvbBVIqOgsX/u0mbOWY=
+golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2/go.mod h1:TeRTkGYfJXctD9OcfyVLyj2J3IxLnKwHJR8f4D8a3YE=
 golang.org/x/text v0.12.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
-golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
-golang.org/x/tools v0.0.0-20200904185747-39188db58858/go.mod h1:Cj7w3i3Rnn0Xh82ur9kSqwfTHTeVxaDqrfMjpcNT6bE=
-golang.org/x/tools v0.0.0-20201110124207-079ba7bd75cd/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20201201161351-ac6f37ff4c2a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20201208233053-a543418bbed2/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20210105154028-b0ab187a4818/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20210108195828-e2f9c7f1fc8e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.1.0/go.mod h1:xkSsbof2nBLbhDlRMhhhyNLN/zl3eTqcnHD5viDpcZ0=
 golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
-golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
 golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM=
 golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
-golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
+golang.org/x/tools v0.16.1/go.mod h1:kYVVN6I1mBNoB1OX+noeBjbRk4IUEPa7JJ+TJMEooJ0=
+golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2 h1:H2TDz8ibqkAF6YGhCdN3jS9O0/s90v0rJh3X/OLHEUk=
 golang.org/x/xerrors v0.0.0-20231012003039-104605ab7028/go.mod h1:NDW/Ps6MPRej6fsCIbMTohpP40sJ/P/vI1MoTEGwX90=
-google.golang.org/api v0.35.0/go.mod h1:/XrVsuzM0rZmrsbjJutiuftIzeuTQcEeaYcSk/mQ1dg=
-google.golang.org/api v0.36.0/go.mod h1:+z5ficQTmoYpPn8LCUNVpK5I7hwkpjbcgqA7I34qYtE=
-google.golang.org/api v0.40.0/go.mod h1:fYKFpnQN0DsDSKRVRcQSDQNtqWPfM9i+zNPxepjRCQ8=
-google.golang.org/api v0.126.0/go.mod h1:mBwVAtz+87bEN6CbA1GtZPDOqY2R5ONPqJeIlvyo4Aw=
+gonum.org/v1/gonum v0.11.0 h1:f1IJhK4Km5tBJmaiJXtk/PkL4cdVX6J+tGiM187uT5E=
+gonum.org/v1/netlib v0.0.0-20190313105609-8cb42192e0e0 h1:OE9mWmgKkjJyEmDAAtGMPjXu+YNeGvK9VTSHY6+Qihc=
+gonum.org/v1/plot v0.10.1 h1:dnifSs43YJuNMDzB7v8wV64O4ABBHReuAVAoBxqBqS4=
+google.golang.org/api v0.126.0 h1:q4GJq+cAdMAC7XP7njvQ4tvohGLiSlytuL4BQxbIZ+o=
 google.golang.org/api v0.128.0/go.mod h1:Y611qgqaE92On/7g65MQgxYul3c0rEB894kniWLY750=
 google.golang.org/api v0.149.0/go.mod h1:Mwn1B7JTXrzXtnvmzQE2BD6bYZQ8DShKZDZbeN9I7qI=
 google.golang.org/api v0.155.0/go.mod h1:GI5qK5f40kCpHfPn6+YzGAByIKWv8ujFnmoWm7Igduk=
 google.golang.org/api v0.162.0/go.mod h1:6SulDkfoBIg4NFmCuZ39XeeAgSHCPecfSUuDyYlAHs0=
-google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
-google.golang.org/genproto v0.0.0-20200904004341-0bd0a958aa1d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201109203340-2640f1f9cdfb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201201144952-b05cb90ed32e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201210142538-e3217bee35cc/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201214200347-8c77b98c765d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210108203827-ffc7fda8c3d7/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210226172003-ab064af71705/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:xZnkP7mREFX5MORlOPEzLMr+90PPZQ2QWzrVTWfAq64=
 google.golang.org/genproto v0.0.0-20230822172742-b8732ec3820d/go.mod h1:yZTlhN0tQnXo3h00fuXNCxJdLdIdnVFVBaRJ5LWBbw4=
 google.golang.org/genproto v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:CCviP9RmpZ1mxVr8MUjCnSiY09IbAXZxhLE6EhHIdPU=
 google.golang.org/genproto v0.0.0-20231002182017-d307bd883b97 h1:SeZZZx0cP0fqUyA+oRzP9k7cSwJlvDFiROO72uwD6i0=
@@ -752,7 +949,6 @@ google.golang.org/genproto v0.0.0-20240213162025-012b6fc9bca9 h1:9+tzLLstTlPTRyJ
 google.golang.org/genproto v0.0.0-20240213162025-012b6fc9bca9/go.mod h1:mqHbVIp48Muh7Ywss/AD6I5kNVKZMmAa/QEW58Gxp2s=
 google.golang.org/genproto v0.0.0-20240227224415-6ceb2ff114de h1:F6qOa9AZTYJXOUEr4jDysRDLrm4PHePlge4v4TGAlxY=
 google.golang.org/genproto v0.0.0-20240227224415-6ceb2ff114de/go.mod h1:VUhTRKeHn9wwcdrk73nvdC9gF178Tzhmt/qyaFcPLSo=
-google.golang.org/genproto/googleapis/api v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
 google.golang.org/genproto/googleapis/api v0.0.0-20230822172742-b8732ec3820d/go.mod h1:KjSP20unUpOx5kyQUFa7k4OJg0qeJ7DEZflGDu2p6Bk=
 google.golang.org/genproto/googleapis/api v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:RdyHbowztCGQySiCvQPgWQWgWhGnouTdCflKoDBt32U=
 google.golang.org/genproto/googleapis/api v0.0.0-20231002182017-d307bd883b97/go.mod h1:iargEX0SFPm3xcfMI0d1domjg0ZF4Aa0p2awqyxhvF0=
@@ -765,11 +961,11 @@ google.golang.org/genproto/googleapis/api v0.0.0-20240116215550-a9fa1716bcac/go.
 google.golang.org/genproto/googleapis/api v0.0.0-20240123012728-ef4313101c80/go.mod h1:4jWUdICTdgc3Ibxmr8nAJiiLHwQBY0UI0XZcEMaFKaA=
 google.golang.org/genproto/googleapis/api v0.0.0-20240205150955-31a09d347014/go.mod h1:rbHMSEDyoYX62nRVLOCc4Qt1HbsdytAYoVwgjiOhF3I=
 google.golang.org/genproto/googleapis/api v0.0.0-20240213162025-012b6fc9bca9/go.mod h1:PVreiBMirk8ypES6aw9d4p6iiBNSIfZEBqr3UGoAi2E=
+google.golang.org/genproto/googleapis/api v0.0.0-20240227224415-6ceb2ff114de h1:jFNzHPIeuzhdRwVhbZdiym9q0ory/xY3sA+v2wPg8I0=
 google.golang.org/genproto/googleapis/api v0.0.0-20240227224415-6ceb2ff114de/go.mod h1:5iCWqnniDlqZHrd3neWVTOwvh/v6s3232omMecelax8=
-google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:ylj+BE99M198VPbBh6A8d9n3w8fChvyLK3wwBOjXBFA=
+google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc h1:g3hIDl0jRNd9PPTs2uBzYuaD5mQuwOkZY0vSc0LR32o=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231030173426-d783a09b4405/go.mod h1:GRUCuLdzVqZte8+Dl/D4N25yLzcGqqWaYkeVOwulFqw=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231212172506-995d672761c0/go.mod h1:guYXGPwC6jwxgWKW5Y405fKWOFNwlvUlUnzyp9i0uqo=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:KSqppvjFjtoCI+KGd4PELB0qLNxdJHRGqRI09mB6pQA=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20231002182017-d307bd883b97/go.mod h1:v7nGkzlmW8P3n/bKmWBn2WpBjpOEx8Q6gMueudAmKfY=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20231016165738-49dd2c1f3d0b/go.mod h1:swOH3j0KzcDDgGUWr+SNpyTen5YrXjS3eyPzFYKc6lc=
@@ -781,12 +977,6 @@ google.golang.org/genproto/googleapis/rpc v0.0.0-20240123012728-ef4313101c80/go.
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240125205218-1f4bbc51befe/go.mod h1:PAREbraiVEVGVdTZsVWjSbbTtSyGbAgIIvni8a8CD5s=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240205150955-31a09d347014/go.mod h1:SaPjaZGWb0lPqs6Ittu0spdfrOArqji4ZdeP5IC/9N4=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240213162025-012b6fc9bca9/go.mod h1:YUWgXUFRPfoYK1IHMuxH5K6nPEXSCzIMljnQ59lLRCk=
-google.golang.org/grpc v1.31.1/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
-google.golang.org/grpc v1.34.0/go.mod h1:WotjhfgOW/POjDeRt8vscBtXq+2VjORFy659qA51WJ8=
-google.golang.org/grpc v1.35.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
-google.golang.org/grpc v1.45.0/go.mod h1:lN7owxKUQEqMfSyQikvvk5tf/6zMPsrK+ONuO11+0rQ=
-google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8=
 google.golang.org/grpc v1.56.1/go.mod h1:I9bI3vqKfayGqPUAwGdOSu7kt6oIJLixfffKrpXqQ9s=
 google.golang.org/grpc v1.57.0/go.mod h1:Sd+9RMTACXwmub0zcNY2c4arhtrbBYD1AUHI/dt16Mo=
 google.golang.org/grpc v1.59.0/go.mod h1:aUPDwccQo6OTjy7Hct4AfBPD1GptF4fyUjIkQ9YtF98=
@@ -794,19 +984,49 @@ google.golang.org/grpc v1.60.1/go.mod h1:OlCHIeLYqSSsLi6i49B5QGdzaMZK9+M7LXN2FKz
 google.golang.org/grpc v1.61.0/go.mod h1:VUbo7IFqmF1QtCAstipjG0GIoq49KvMe9+h1jFLBNJs=
 google.golang.org/grpc v1.61.1/go.mod h1:VUbo7IFqmF1QtCAstipjG0GIoq49KvMe9+h1jFLBNJs=
 google.golang.org/grpc v1.62.1/go.mod h1:IWTG0VlJLCh1SkC58F7np9ka9mx/WNkjl4PGJaiq+QE=
-google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
-google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
-google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
-google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
-google.golang.org/protobuf v1.32.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
+google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0 h1:M1YKkFIboKNieVO5DLUEVzQfGwJD30Nv2jfUgzb5UcE=
+gopkg.in/alecthomas/kingpin.v2 v2.2.6 h1:jMFz6MfLP0/4fUyZle81rXUoxOBFi19VUFKVDOQfozc=
+gopkg.in/errgo.v2 v2.1.0 h1:0vLT13EuvQ0hNvakwLuFZ/jYrLp5F3kcWHXdRggjCE8=
 gopkg.in/evanphx/json-patch.v5 v5.6.0 h1:BMT6KIwBD9CaU91PJCZIe46bDmBWa9ynTQgJIOpfQBk=
 gopkg.in/evanphx/json-patch.v5 v5.6.0/go.mod h1:/kvTRh1TVm5wuM6OkHxqXtE/1nUZZpihg29RtuIyfvk=
+gopkg.in/fsnotify.v1 v1.4.7 h1:xOHLXZwVvI9hhs+cLKq5+I5onOuwQLhQwiu63xxlHs4=
+gopkg.in/natefinch/lumberjack.v2 v2.2.1 h1:bBRl1b0OH9s/DuPhuXpNl+VtCaJXFZ5/uEFST95x9zc=
 gopkg.in/natefinch/lumberjack.v2 v2.2.1/go.mod h1:YD8tP3GAjkrDg1eZH7EGmyESg/lsYskCTPBJVb9jqSc=
+gopkg.in/square/go-jose.v2 v2.6.0 h1:NGk74WTnPKBNUhNzQX7PYcTLUjoq7mzKk2OKbvwk2iI=
 gopkg.in/square/go-jose.v2 v2.6.0/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
+honnef.co/go/tools v0.1.3 h1:qTakTkI6ni6LFD5sBwwsdSO+AQqbSIxOauHTTQKZ/7o=
+k8s.io/gengo v0.0.0-20230829151522-9cce18d56c01 h1:pWEwq4Asjm4vjW7vcsmijwBhOr1/shsbSYiWXmNGlks=
 k8s.io/gengo v0.0.0-20230829151522-9cce18d56c01/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
+k8s.io/gengo/v2 v2.0.0-20240228010128-51d4e06bde70/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
+k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
 k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/kms v0.29.3/go.mod h1:TBGbJKpRUMk59neTMDMddjIDL+D4HuFUbpuiuzmOPg0=
+k8s.io/kms v0.30.0 h1:ZlnD/ei5lpvUlPw6eLfVvH7d8i9qZ6HwUQgydNVks8g=
+k8s.io/kms v0.30.0/go.mod h1:GrMurD0qk3G4yNgGcsCEmepqf9KyyIrTXYR2lyUOJC4=
+k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340/go.mod h1:yD4MZYeKMBwQKVht279WycxKyM84kkAx2DPrTXaeb98=
 k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
+k8s.io/utils v0.0.0-20230726121419-3b25d923346b/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
+lukechampine.com/uint128 v1.2.0 h1:mBi/5l91vocEN8otkC5bDLhi2KdCticRiwbdB0O+rjI=
+modernc.org/cc/v3 v3.36.3 h1:uISP3F66UlixxWEcKuIWERa4TwrZENHSL8tWxZz8bHg=
+modernc.org/ccgo/v3 v3.16.9 h1:AXquSwg7GuMk11pIdw7fmO1Y/ybgazVkMhsZWCV0mHM=
+modernc.org/ccorpus v1.11.6 h1:J16RXiiqiCgua6+ZvQot4yUuUy8zxgqbqEEUuGPlISk=
+modernc.org/httpfs v1.0.6 h1:AAgIpFZRXuYnkjftxTAZwMIiwEqAfk8aVB2/oA6nAeM=
+modernc.org/libc v1.17.1 h1:Q8/Cpi36V/QBfuQaFVeisEBs3WqoGAJprZzmf7TfEYI=
+modernc.org/mathutil v1.5.0 h1:rV0Ko/6SfM+8G+yKiyI830l3Wuz1zRutdslNoQ0kfiQ=
+modernc.org/memory v1.2.1 h1:dkRh86wgmq/bJu2cAS2oqBCz/KsMZU7TUM4CibQ7eBs=
+modernc.org/opt v0.1.3 h1:3XOZf2yznlhC+ibLltsDGzABUGVx8J6pnFMS3E4dcq4=
+modernc.org/sqlite v1.18.1 h1:ko32eKt3jf7eqIkCgPAeHMBXw3riNSLhl2f3loEF7o8=
+modernc.org/strutil v1.1.3 h1:fNMm+oJklMGYfU9Ylcywl0CO5O6nTfaowNsh2wpPjzY=
+modernc.org/tcl v1.13.1 h1:npxzTwFTZYM8ghWicVIX1cRWzj7Nd8i6AqqX2p+IYao=
+modernc.org/token v1.0.0 h1:a0jaWiNMDhDUtqOj09wvjWWAqd3q7WpBulmL9H2egsk=
+modernc.org/z v1.5.1 h1:RTNHdsrOpeoSeOF4FbzTo8gBYByaJ5xT7NgZ9ZqRiJM=
+rsc.io/binaryregexp v0.2.0 h1:HfqmD5MEmC0zvwBuF187nq9mdnXjXsSivRiXN7SmRkE=
+rsc.io/pdf v0.1.1 h1:k1MczvYDUvJBe93bYd7wrZLLUEcLZAuF824/I4e5Xr4=
+rsc.io/quote/v3 v3.1.0 h1:9JKUTTIUgS6kzR9mK1YuGKv6Nl+DijDNIc0ghT58FaY=
+rsc.io/sampler v1.3.0 h1:7uVkIFmeBqHfdjD+gZwtXXI+RODJ2Wc4O7MPEh/QiW4=
 sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.28.0/go.mod h1:VHVDI/KrK4fjnV61bE2g3sA7tiETLn8sooImelsCx3Y=
+sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.29.0 h1:/U5vjBbQn3RChhv7P11uhYvCSm5G2GaIi5AIGBS6r4c=
+sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.29.0/go.mod h1:z7+wmGM2dfIiLRfrC6jb5kV2Mq/sK1ZP303cxzkV5Y4=
 sigs.k8s.io/structured-merge-diff/v4 v4.2.3/go.mod h1:qjx8mGObPmV2aSZepjQjbmb2ihdVs8cGKBraizNC69E=
+sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=
+sigs.k8s.io/yaml v1.3.0/go.mod h1:GeOyir5tyXNByN85N/dRIT9es5UQNerPYEKK56eTBm8=

From f6bdba29ad8fb6459c053a9d8999d4a3a43bb951 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 5 May 2024 13:47:52 -0700
Subject: [PATCH 1266/1641] Bump golangci/golangci-lint-action from 4.0.0 to
 5.0.0 (#11328)

Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 4.0.0 to 5.0.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/3cfe3a4abbb849e10058ce4af15d205b6da42804...82d40c283aeb1f2b6595839195e95c2d6a49081b)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/golangci-lint.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 2b709ccfd..33a91b081 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -28,6 +28,6 @@ jobs:
           check-latest: true
 
       - name: golangci-lint
-        uses: golangci/golangci-lint-action@3cfe3a4abbb849e10058ce4af15d205b6da42804 # v4.0.0
+        uses: golangci/golangci-lint-action@82d40c283aeb1f2b6595839195e95c2d6a49081b # v5.0.0
         with:
           version: v1.56

From c5a54a150e2300deadfcde7ce26c80d8f2fb125b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 5 May 2024 13:50:16 -0700
Subject: [PATCH 1267/1641] Bump sigs.k8s.io/controller-runtime from 0.17.3 to
 0.18.1 (#11345)

Bumps [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) from 0.17.3 to 0.18.1.
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases)
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.17.3...v0.18.1)

---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-runtime
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 4b40b93bc..cec60ef9c 100644
--- a/go.mod
+++ b/go.mod
@@ -43,7 +43,7 @@ require (
 	k8s.io/component-base v0.30.0
 	k8s.io/klog/v2 v2.120.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.17.3
+	sigs.k8s.io/controller-runtime v0.18.1
 	sigs.k8s.io/mdtoc v1.1.0
 )
 
diff --git a/go.sum b/go.sum
index 13e4ebd2d..1ad706885 100644
--- a/go.sum
+++ b/go.sum
@@ -1974,8 +1974,8 @@ rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8
 rsc.io/pdf v0.1.1/go.mod h1:n8OzWcQ6Sp37PL01nO98y4iUCRdTGarVfzxY20ICaU4=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
-sigs.k8s.io/controller-runtime v0.17.3 h1:65QmN7r3FWgTxDMz9fvGnO1kbf2nu+acg9p2R9oYYYk=
-sigs.k8s.io/controller-runtime v0.17.3/go.mod h1:N0jpP5Lo7lMTF9aL56Z/B2oWBJjey6StQM0jRbKQXtY=
+sigs.k8s.io/controller-runtime v0.18.1 h1:RpWbigmuiylbxOCLy0tGnq1cU1qWPwNIQzoJk+QeJx4=
+sigs.k8s.io/controller-runtime v0.18.1/go.mod h1:tuAt1+wbVsXIT8lPtk5RURxqAnq7xkpv2Mhttslg7Hw=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/kustomize/api v0.16.0 h1:/zAR4FOQDCkgSDmVzV2uiFbuy9bhu3jEzthrHCuvm1g=

From cfe0daace1a1625f692caec3077c488d224e8cc4 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 5 May 2024 23:06:28 -0300
Subject: [PATCH 1268/1641] Bump Kubernetes version on images (#11346)

---
 build/dev-env.sh            |  2 +-
 images/test-runner/Makefile | 16 ++++++++--------
 images/test-runner/TAG      |  2 +-
 test/e2e/run-chart-test.sh  |  2 +-
 test/e2e/run-kind-e2e.sh    |  2 +-
 5 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/build/dev-env.sh b/build/dev-env.sh
index 93ed3de40..699c98030 100755
--- a/build/dev-env.sh
+++ b/build/dev-env.sh
@@ -64,7 +64,7 @@ echo "[dev-env] building image"
 make build image
 docker tag "${REGISTRY}/controller:${TAG}" "${DEV_IMAGE}"
 
-export K8S_VERSION=${K8S_VERSION:-v1.26.3@sha256:61b92f38dff6ccc29969e7aa154d34e38b89443af1a2c14e6cfbd2df6419c66f}
+export K8S_VERSION=${K8S_VERSION:-v1.29.2@sha256:51a1434a5397193442f0be2a297b488b6c919ce8a3931be0ce822606ea5ca245}
 
 KIND_CLUSTER_NAME="ingress-nginx-dev"
 
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index ac0757ab2..d82427140 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -49,8 +49,8 @@ image:
 		--push \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
 		--build-arg GOLANG_VERSION=${GO_VERSION} \
-		--build-arg ETCD_VERSION=3.4.3-0 \
-		--build-arg K8S_RELEASE=v1.26.0 \
+		--build-arg ETCD_VERSION=3.5.13-0 \
+		--build-arg K8S_RELEASE=v1.29.2 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
 		--build-arg RESTY_CLI_SHA=e5f4f3128af49ba5c4d039d0554e5ae91bbe05866f60eccfa96d3653274bff90 \
 		--build-arg LUAROCKS_VERSION=3.8.0 \
@@ -58,8 +58,8 @@ image:
 		--build-arg CHART_TESTING_VERSION=3.8.0 \
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
-		--build-arg HELM_VERSION=3.11.2 \
-		--build-arg GINKGO_VERSION=2.17.1 \
+		--build-arg HELM_VERSION=3.14.4 \
+		--build-arg GINKGO_VERSION=2.17.2 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -70,8 +70,8 @@ build: ensure-buildx
 		--pull \
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
 		--build-arg GOLANG_VERSION=${GO_VERSION} \
-		--build-arg ETCD_VERSION=3.4.3-0 \
-		--build-arg K8S_RELEASE=v1.26.0 \
+		--build-arg ETCD_VERSION=3.5.13-0 \
+		--build-arg K8S_RELEASE=v1.29.2 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
 		--build-arg RESTY_CLI_SHA=e5f4f3128af49ba5c4d039d0554e5ae91bbe05866f60eccfa96d3653274bff90 \
 		--build-arg LUAROCKS_VERSION=3.8.0 \
@@ -79,8 +79,8 @@ build: ensure-buildx
 		--build-arg CHART_TESTING_VERSION=3.8.0 \
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
-		--build-arg HELM_VERSION=3.11.2 \
-		--build-arg GINKGO_VERSION=2.17.1 \
+		--build-arg HELM_VERSION=3.14.4 \
+		--build-arg GINKGO_VERSION=2.17.2 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
diff --git a/images/test-runner/TAG b/images/test-runner/TAG
index 90ab6e946..8ce995b80 100644
--- a/images/test-runner/TAG
+++ b/images/test-runner/TAG
@@ -1 +1 @@
-v0.0.2
\ No newline at end of file
+v0.0.3
\ No newline at end of file
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index a453bd1b4..dadb5195d 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -62,7 +62,7 @@ export KUBECONFIG="${KUBECONFIG:-$HOME/.kube/kind-config-$KIND_CLUSTER_NAME}"
 if [ "${SKIP_CLUSTER_CREATION:-false}" = "false" ]; then
   echo "[dev-env] creating Kubernetes cluster with kind"
 
-  export K8S_VERSION=${K8S_VERSION:-v1.26.3@sha256:61b92f38dff6ccc29969e7aa154d34e38b89443af1a2c14e6cfbd2df6419c66f}
+  export K8S_VERSION=${K8S_VERSION:-v1.29.2@sha256:51a1434a5397193442f0be2a297b488b6c919ce8a3931be0ce822606ea5ca245}
 
   kind create cluster \
     --verbosity=${KIND_LOG_LEVEL} \
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index 891e5dbae..128964393 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -64,7 +64,7 @@ echo "Running e2e with nginx base image ${NGINX_BASE_IMAGE}"
 if [ "${SKIP_CLUSTER_CREATION}" = "false" ]; then
   echo "[dev-env] creating Kubernetes cluster with kind"
 
-  export K8S_VERSION=${K8S_VERSION:-v1.26.3@sha256:61b92f38dff6ccc29969e7aa154d34e38b89443af1a2c14e6cfbd2df6419c66f}
+  export K8S_VERSION=${K8S_VERSION:-v1.29.2@sha256:51a1434a5397193442f0be2a297b488b6c919ce8a3931be0ce822606ea5ca245}
 
   # delete the cluster if it exists
   if kind get clusters | grep "${KIND_CLUSTER_NAME}"; then

From 689b993a3ce9d92143ff891bf38b9da72a499c13 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 6 May 2024 05:41:20 -0700
Subject: [PATCH 1269/1641] Bump the all group with 3 updates (#11348)

Bumps the all group with 3 updates: [actions/setup-go](https://github.com/actions/setup-go), [actions/dependency-review-action](https://github.com/actions/dependency-review-action) and [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action).


Updates `actions/setup-go` from 5.0.0 to 5.0.1
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/0c52d547c9bc32b1aa3301fd7a9cb496313a4491...cdcb36043654635271a94b9a6d1392de5bb323a7)

Updates `actions/dependency-review-action` from 4.2.5 to 4.3.2
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/5bbc3ba658137598168acb2ab73b21c432dd411b...0c155c5e8556a497adf53f2c18edabf945ed8e70)

Updates `golangci/golangci-lint-action` from 5.0.0 to 5.3.0
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/82d40c283aeb1f2b6595839195e95c2d6a49081b...38e1018663fa5173f3968ea0777460d3de38f256)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml           | 6 +++---
 .github/workflows/depreview.yaml    | 2 +-
 .github/workflows/golangci-lint.yml | 4 ++--
 .github/workflows/images.yaml       | 2 +-
 .github/workflows/plugin.yaml       | 2 +-
 5 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index afc2f7d38..cafb5ad95 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -84,7 +84,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
+        uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
@@ -114,7 +114,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
+        uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
         with:
           go-version: ${{ steps.golangversion.outputs.version }}
           check-latest: true
@@ -242,7 +242,7 @@ jobs:
         uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
 
       - name: Setup Go
-        uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
+        uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
         with:
           go-version: ${{ needs.build.outputs.golangversion }}
           check-latest: true
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index c9881c2a3..ffe249546 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@5bbc3ba658137598168acb2ab73b21c432dd411b # v4.2.5
+        uses: actions/dependency-review-action@0c155c5e8556a497adf53f2c18edabf945ed8e70 # v4.3.2
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 33a91b081..ff04ab3da 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -22,12 +22,12 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
+        uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
 
       - name: golangci-lint
-        uses: golangci/golangci-lint-action@82d40c283aeb1f2b6595839195e95c2d6a49081b # v5.0.0
+        uses: golangci/golangci-lint-action@38e1018663fa5173f3968ea0777460d3de38f256 # v5.3.0
         with:
           version: v1.56
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index a7a2adce0..4123a5efa 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -151,7 +151,7 @@ jobs:
 
     - name: Set up Go
       id: go
-      uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
+      uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
       with:
         go-version: ${{ env.GOLANG_VERSION }}
         check-latest: true
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 1b8c8f19b..56992f34d 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -20,7 +20,7 @@ jobs:
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
 
       - name: Set up Go
-        uses: actions/setup-go@0c52d547c9bc32b1aa3301fd7a9cb496313a4491 # v5.0.0
+        uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true

From 4e11074323c311cf16a479ffe22be5beb4c7fec9 Mon Sep 17 00:00:00 2001
From: Rafael da Fonseca <rsafonseca@gmail.com>
Date: Tue, 14 May 2024 22:45:25 +0100
Subject: [PATCH 1270/1641] Allow configuring nginx worker reload behaviour, to
 prevent multiple concurrent worker reloads which can lead to high resource
 usage and OOMKill (#10884)

* feat: allow configuring nginx worker reload behaviour, to prevent multiple concurrent worker reloads

Signed-off-by: Rafael da Fonseca <rafael.fonseca@wildlifestudios.com>

* appease linter, remove unnecessary log line

Signed-off-by: Rafael da Fonseca <rafael.fonseca@wildlifestudios.com>

* Flip to using a positive behaviour flag instead of negative

Signed-off-by: Rafael da Fonseca <rafael.fonseca@wildlifestudios.com>

* Update helm-docs

Signed-off-by: Rafael da Fonseca <rafael.fonseca@wildlifestudios.com>

* Avoid calling GetBackendConfiguration() twice, use clearer name for helm chart option

Signed-off-by: Rafael da Fonseca <rafael.fonseca@wildlifestudios.com>

* Fix helm-docs ordering

Signed-off-by: Rafael da Fonseca <rafael.fonseca@wildlifestudios.com>

---------

Signed-off-by: Rafael da Fonseca <rafael.fonseca@wildlifestudios.com>
---
 charts/ingress-nginx/README.md                |  1 +
 .../templates/controller-configmap.yaml       |  1 +
 charts/ingress-nginx/values.yaml              |  2 +
 .../nginx-configuration/configmap.md          |  1 +
 internal/ingress/controller/config/config.go  |  8 ++++
 internal/ingress/controller/nginx.go          | 47 +++++++++++++++++--
 .../ingress/controller/template/configmap.go  | 12 +++++
 7 files changed, 69 insertions(+), 3 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 1c166e05e..8ea6bae85 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -301,6 +301,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.enableAnnotationValidations | bool | `false` |  |
 | controller.enableMimalloc | bool | `true` | Enable mimalloc as a drop-in replacement for malloc. # ref: https://github.com/microsoft/mimalloc # |
 | controller.enableTopologyAwareRouting | bool | `false` | This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-mode="auto" Defaults to false |
+| controller.enableWorkerSerialReloads | bool | `false` | This configuration defines if NGINX workers should reload serially instead of concurrently when multiple changes that require reloads are queued |
 | controller.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | controller.extraArgs | object | `{}` | Additional command line arguments to pass to Ingress-Nginx Controller E.g. to specify the default SSL certificate you can use |
 | controller.extraContainers | list | `[]` | Additional containers to be added to the controller pod. See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example. |
diff --git a/charts/ingress-nginx/templates/controller-configmap.yaml b/charts/ingress-nginx/templates/controller-configmap.yaml
index 22080d115..50ae824a8 100644
--- a/charts/ingress-nginx/templates/controller-configmap.yaml
+++ b/charts/ingress-nginx/templates/controller-configmap.yaml
@@ -14,6 +14,7 @@ metadata:
   namespace: {{ include "ingress-nginx.namespace" . }}
 data:
   allow-snippet-annotations: "{{ .Values.controller.allowSnippetAnnotations }}"
+  enable-serial-reloads: "{{ .Values.controller.enableWorkerSerialReloads }}"
 {{- if .Values.controller.addHeaders }}
   add-headers: {{ include "ingress-nginx.namespace" . }}/{{ include "ingress-nginx.fullname" . }}-custom-add-headers
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 85990614b..2a361614c 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -93,6 +93,8 @@ controller:
   # when users add those annotations.
   # Global snippets in ConfigMap are still respected
   allowSnippetAnnotations: false
+  # -- This configuration defines if NGINX workers should reload serially instead of concurrently when multiple changes that require reloads are queued
+  enableWorkerSerialReloads: false
   # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
   # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
   # is merged
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 52c54c4fe..13f82a17d 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -114,6 +114,7 @@ The following table shows a configuration option's name, type, and the default v
 |[worker-processes](#worker-processes)| string       | `<Number of CPUs>`                                                                                                                                                                                                                                                                                                                                           ||
 |[worker-cpu-affinity](#worker-cpu-affinity)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
 |[worker-shutdown-timeout](#worker-shutdown-timeout)| string       | "240s"                                                                                                                                                                                                                                                                                                                                                       ||
+|[enable-serial-reloads](#enable-serial-reloads)|bool|"false"||
 |[load-balance](#load-balance)| string       | "round_robin"                                                                                                                                                                                                                                                                                                                                                ||
 |[variables-hash-bucket-size](#variables-hash-bucket-size)| int          | 128                                                                                                                                                                                                                                                                                                                                                          ||
 |[variables-hash-max-size](#variables-hash-max-size)| int          | 2048                                                                                                                                                                                                                                                                                                                                                         ||
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 47f2120f1..6349d6006 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -477,6 +477,13 @@ type Configuration struct {
 	// http://nginx.org/en/docs/ngx_core_module.html#worker_processes
 	WorkerProcesses string `json:"worker-processes,omitempty"`
 
+	// Defines whether multiple concurrent reloads of worker processes should occur.
+	// Set this to false to prevent more than n x 2 workers to exist at any time, to avoid potential OOM situations and high CPU load
+	// With this setting on false, configuration changes in the queue will be re-queued with an exponential backoff, until the number of worker process is the expected value.
+	// By default new worker processes are spawned every time there's a change that cannot be applied dynamically with no upper limit to the number of running workers
+	// http://nginx.org/en/docs/ngx_core_module.html#worker_processes
+	WorkerSerialReloads bool `json:"enable-serial-reloads,omitempty"`
+
 	// Defines a timeout for a graceful shutdown of worker processes
 	// http://nginx.org/en/docs/ngx_core_module.html#worker_shutdown_timeout
 	WorkerShutdownTimeout string `json:"worker-shutdown-timeout,omitempty"`
@@ -851,6 +858,7 @@ func NewDefault() Configuration {
 		UseGeoIP2:                        false,
 		GeoIP2AutoReloadMinutes:          0,
 		WorkerProcesses:                  strconv.Itoa(runtime.NumCPU()),
+		WorkerSerialReloads:              false,
 		WorkerShutdownTimeout:            "240s",
 		VariablesHashBucketSize:          256,
 		VariablesHashMaxSize:             2048,
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index b81734154..f74b3245e 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -35,6 +35,7 @@ import (
 	"syscall"
 	"text/template"
 	"time"
+	"unicode"
 
 	proxyproto "github.com/armon/go-proxyproto"
 	"github.com/eapache/channels"
@@ -87,9 +88,10 @@ func NewNGINXController(config *Configuration, mc metric.Collector) *NGINXContro
 	n := &NGINXController{
 		isIPV6Enabled: ing_net.IsIPv6Enabled(),
 
-		resolver:        h,
-		cfg:             config,
-		syncRateLimiter: flowcontrol.NewTokenBucketRateLimiter(config.SyncRateLimit, 1),
+		resolver:         h,
+		cfg:              config,
+		syncRateLimiter:  flowcontrol.NewTokenBucketRateLimiter(config.SyncRateLimit, 1),
+		workersReloading: false,
 
 		recorder: eventBroadcaster.NewRecorder(scheme.Scheme, apiv1.EventSource{
 			Component: "nginx-ingress-controller",
@@ -229,6 +231,8 @@ type NGINXController struct {
 
 	syncRateLimiter flowcontrol.RateLimiter
 
+	workersReloading bool
+
 	// stopLock is used to enforce that only a single call to Stop send at
 	// a given time. We allow stopping through an HTTP endpoint and
 	// allowing concurrent stoppers leads to stack traces.
@@ -676,6 +680,11 @@ func (n *NGINXController) OnUpdate(ingressCfg ingress.Configuration) error {
 	cfg := n.store.GetBackendConfiguration()
 	cfg.Resolver = n.resolver
 
+	workerSerialReloads := cfg.WorkerSerialReloads
+	if workerSerialReloads && n.workersReloading {
+		return errors.New("worker reload already in progress, requeuing reload")
+	}
+
 	content, err := n.generateTemplate(cfg, ingressCfg)
 	if err != nil {
 		return err
@@ -738,9 +747,41 @@ func (n *NGINXController) OnUpdate(ingressCfg ingress.Configuration) error {
 		return fmt.Errorf("%v\n%v", err, string(o))
 	}
 
+	// Reload status checking runs in a separate goroutine to avoid blocking the sync queue
+	if workerSerialReloads {
+		go n.awaitWorkersReload()
+	}
+
 	return nil
 }
 
+// awaitWorkersReload checks if the number of workers has returned to the expected count
+func (n *NGINXController) awaitWorkersReload() {
+	n.workersReloading = true
+	defer func() { n.workersReloading = false }()
+
+	expectedWorkers := n.store.GetBackendConfiguration().WorkerProcesses
+	var numWorkers string
+	klog.V(3).Infof("waiting for worker count to be equal to %s", expectedWorkers)
+	for numWorkers != expectedWorkers {
+		time.Sleep(time.Second)
+		o, err := exec.Command("/bin/sh", "-c", "pgrep worker | wc -l").Output()
+		if err != nil {
+			klog.ErrorS(err, numWorkers)
+			return
+		}
+		// cleanup any non-printable chars from shell output
+		numWorkers = strings.Map(func(r rune) rune {
+			if unicode.IsPrint(r) {
+				return r
+			}
+			return -1
+		}, string(o))
+
+		klog.V(3).Infof("Currently running nginx worker processes: %s, expected %s", numWorkers, expectedWorkers)
+	}
+}
+
 // nginxHashBucketSize computes the correct NGINX hash_bucket_size for a hash
 // with the given longest key.
 func nginxHashBucketSize(longestString int) int {
diff --git a/internal/ingress/controller/template/configmap.go b/internal/ingress/controller/template/configmap.go
index f78dbad03..1a7f15f1c 100644
--- a/internal/ingress/controller/template/configmap.go
+++ b/internal/ingress/controller/template/configmap.go
@@ -69,6 +69,7 @@ const (
 	luaSharedDictsKey             = "lua-shared-dicts"
 	plugins                       = "plugins"
 	debugConnections              = "debug-connections"
+	workerSerialReloads           = "enable-serial-reloads"
 )
 
 var (
@@ -404,6 +405,17 @@ func ReadConfig(src map[string]string) config.Configuration {
 		delete(conf, workerProcesses)
 	}
 
+	if val, ok := conf[workerSerialReloads]; ok {
+		boolVal, err := strconv.ParseBool(val)
+		if err != nil {
+			to.WorkerSerialReloads = false
+			klog.Warningf("failed to parse enable-serial-reloads setting, valid values are true or false, found %s", val)
+		} else {
+			to.WorkerSerialReloads = boolVal
+		}
+		delete(conf, workerSerialReloads)
+	}
+
 	if val, ok := conf[plugins]; ok {
 		to.Plugins = splitAndTrimSpace(val, ",")
 		delete(conf, plugins)

From 20d9a609b57934fe2d939ec4b34e2b8634a6d73f Mon Sep 17 00:00:00 2001
From: Lucas Andrade Flores <lcs.oliveira93@gmail.com>
Date: Wed, 15 May 2024 22:23:21 +0200
Subject: [PATCH 1271/1641] Docs: Remove opentracing and zipkin from docs
 (#11361)

---
 .../nginx-configuration/annotations.md        |  20 --
 .../nginx-configuration/configmap.md          |  42 ---
 .../third-party-addons/opentracing.md         | 263 ------------------
 3 files changed, 325 deletions(-)
 delete mode 100644 docs/user-guide/third-party-addons/opentracing.md

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 2230f80f7..cf4902c1e 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -124,8 +124,6 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/ssl-prefer-server-ciphers](#ssl-ciphers)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/connection-proxy-header](#connection-proxy-header)|string|
 |[nginx.ingress.kubernetes.io/enable-access-log](#enable-access-log)|"true" or "false"|
-|[nginx.ingress.kubernetes.io/enable-opentracing](#enable-opentracing)|"true" or "false"|
-|[nginx.ingress.kubernetes.io/opentracing-trust-incoming-span](#opentracing-trust-incoming-span)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/enable-opentelemetry](#enable-opentelemetry)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/opentelemetry-trust-incoming-span](#opentelemetry-trust-incoming-spans)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/use-regex](#use-regex)|bool|
@@ -830,24 +828,6 @@ Note that rewrite logs are sent to the error_log file at the notice level. To en
 nginx.ingress.kubernetes.io/enable-rewrite-log: "true"
 ```
 
-### Enable Opentracing
-
-Opentracing can be enabled or disabled globally through the ConfigMap but this will sometimes need to be overridden
-to enable it or disable it for a specific ingress (e.g. to turn off tracing of external health check endpoints)
-
-```yaml
-nginx.ingress.kubernetes.io/enable-opentracing: "true"
-```
-
-### Opentracing Trust Incoming Span
-
-The option to trust incoming trace spans can be enabled or disabled globally through the ConfigMap but this will
-sometimes need to be overridden to enable it or disable it for a specific ingress (e.g. only enable on a private endpoint)
-
-```yaml
-nginx.ingress.kubernetes.io/opentracing-trust-incoming-span: "true"
-```
-
 ### Enable Opentelemetry
 
 Opentelemetry can be enabled or disabled globally through the ConfigMap but this will sometimes need to be overridden
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 13f82a17d..3127f73a4 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -135,13 +135,6 @@ The following table shows a configuration option's name, type, and the default v
 |[compute-full-forwarded-for](#compute-full-forwarded-for)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
 |[proxy-add-original-uri-header](#proxy-add-original-uri-header)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
 |[generate-request-id](#generate-request-id)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[enable-opentracing](#enable-opentracing)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[opentracing-operation-name](#opentracing-operation-name)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[opentracing-location-operation-name](#opentracing-location-operation-name)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[zipkin-collector-host](#zipkin-collector-host)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[zipkin-collector-port](#zipkin-collector-port)| int          | 9411                                                                                                                                                                                                                                                                                                                                                         ||
-|[zipkin-service-name](#zipkin-service-name)| string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      ||
-|[zipkin-sample-rate](#zipkin-sample-rate)| float        | 1.0                                                                                                                                                                                                                                                                                                                                                          ||
 |[jaeger-collector-host](#jaeger-collector-host)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
 |[jaeger-collector-port](#jaeger-collector-port)| int          | 6831                                                                                                                                                                                                                                                                                                                                                         ||
 |[jaeger-endpoint](#jaeger-endpoint)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
@@ -945,41 +938,6 @@ Adds an X-Original-Uri header with the original request URI to the backend reque
 
 Ensures that X-Request-ID is defaulted to a random value, if no X-Request-ID is present in the request
 
-## enable-opentracing
-
-Enables the nginx Opentracing extension. _**default:**_ is disabled
-
-_References:_
-[https://github.com/opentracing-contrib/nginx-opentracing](https://github.com/opentracing-contrib/nginx-opentracing)
-
-## opentracing-operation-name
-
-Specifies a custom name for the server span. _**default:**_ is empty
-
-For example, set to "HTTP $request_method $uri".
-
-## opentracing-location-operation-name
-
-Specifies a custom name for the location span. _**default:**_ is empty
-
-For example, set to "HTTP $request_method $uri".
-
-## zipkin-collector-host
-
-Specifies the host to use when uploading traces. It must be a valid URL.
-
-## zipkin-collector-port
-
-Specifies the port to use when uploading traces. _**default:**_ 9411
-
-## zipkin-service-name
-
-Specifies the service name to use for any traces created. _**default:**_ nginx
-
-## zipkin-sample-rate
-
-Specifies sample rate for any traces created. _**default:**_ 1.0
-
 ## jaeger-collector-host
 
 Specifies the host to use when uploading traces. It must be a valid URL.
diff --git a/docs/user-guide/third-party-addons/opentracing.md b/docs/user-guide/third-party-addons/opentracing.md
deleted file mode 100644
index f5ec59faf..000000000
--- a/docs/user-guide/third-party-addons/opentracing.md
+++ /dev/null
@@ -1,263 +0,0 @@
-# OpenTracing
-
-Enables requests served by NGINX for distributed tracing via The OpenTracing Project.
-
-Using the third party module [opentracing-contrib/nginx-opentracing](https://github.com/opentracing-contrib/nginx-opentracing) the Ingress-Nginx Controller can configure NGINX to enable [OpenTracing](http://opentracing.io) instrumentation.
-By default this feature is disabled.
-
-## Usage
-
-To enable the instrumentation we must enable OpenTracing in the configuration ConfigMap:
-```
-data:
-  enable-opentracing: "true"
-```
-
-To enable or disable instrumentation for a single Ingress, use
-the `enable-opentracing` annotation:
-```
-kind: Ingress
-metadata:
-  annotations:
-    nginx.ingress.kubernetes.io/enable-opentracing: "true"
-```
-
-We must also set the host to use when uploading traces:
-
-```
-zipkin-collector-host: zipkin.default.svc.cluster.local
-jaeger-collector-host: jaeger-agent.default.svc.cluster.local
-datadog-collector-host: datadog-agent.default.svc.cluster.local
-```
-NOTE: While the option is called `jaeger-collector-host`, you will need to point this to a `jaeger-agent`, and not the `jaeger-collector` component.
-Alternatively, you can set `jaeger-endpoint` and specify the full endpoint for uploading traces. This will use TCP and should be used for a collector rather than an agent.
-
-Next you will need to deploy a distributed tracing system which uses OpenTracing.
-[Zipkin](https://github.com/openzipkin/zipkin) and
-[Jaeger](https://github.com/jaegertracing/jaeger) and
-[Datadog](https://github.com/DataDog/dd-opentracing-cpp)
-have been tested.
-
-Other optional configuration options:
-```
-# specifies the name to use for the server span
-opentracing-operation-name
-
-# specifies specifies the name to use for the location span
-opentracing-location-operation-name
-
-# sets whether or not to trust incoming tracing spans
-opentracing-trust-incoming-span
-
-# specifies the port to use when uploading traces, Default: 9411
-zipkin-collector-port
-
-# specifies the service name to use for any traces created, Default: nginx
-zipkin-service-name
-
-# specifies sample rate for any traces created, Default: 1.0
-zipkin-sample-rate
-
-# specifies the port to use when uploading traces, Default: 6831
-jaeger-collector-port
-
-# specifies the endpoint to use when uploading traces to a collector instead of an agent
-jaeger-endpoint
-
-# specifies the service name to use for any traces created, Default: nginx
-jaeger-service-name
-
-# specifies the traceparent/tracestate propagation format
-jaeger-propagation-format
-
-# specifies the sampler to be used when sampling traces.
-# The available samplers are: const, probabilistic, ratelimiting, remote, Default: const
-jaeger-sampler-type
-
-# specifies the argument to be passed to the sampler constructor, Default: 1
-jaeger-sampler-param
-
-# Specifies the custom remote sampler host to be passed to the sampler constructor. Must be a valid URL.
-# Default: http://127.0.0.1
-jaeger-sampler-host
-
-# Specifies the custom remote sampler port to be passed to the sampler constructor. Must be a number. Default: 5778
-jaeger-sampler-port
-
-# Specifies the header name used for passing trace context. Must be a string. Default: uber-trace-id
-jaeger-trace-context-header-name
-
-# Specifies the header name used for force sampling. Must be a string. Default: jaeger-debug-id
-jaeger-debug-header
-
-# Specifies the header name used to submit baggage if there is no root span. Must be a string. Default: jaeger-baggage
-jaeger-baggage-header
-
-# Specifies the header prefix used to propagate baggage. Must be a string. Default: uberctx-
-jaeger-tracer-baggage-header-prefix
-
-# specifies the port to use when uploading traces, Default 8126
-datadog-collector-port
-
-# specifies the service name to use for any traces created, Default: nginx
-datadog-service-name
-
-# specifies the environment this trace belongs to, Default: prod
-datadog-environment
-
-# specifies the operation name to use for any traces collected, Default: nginx.handle
-datadog-operation-name-override
-
-# Specifies to use client-side sampling for distributed priority sampling and ignore sample rate, Default: true
-datadog-priority-sampling
-
-# specifies sample rate for any traces created, Default: 1.0
-datadog-sample-rate
-```
-
-All these options (including host) allow environment variables, such as `$HOSTNAME` or `$HOST_IP`. In the case of Jaeger, if you have a Jaeger agent running on each machine in your cluster, you can use something like `$HOST_IP` (which can be 'mounted' with the `status.hostIP` fieldpath, as described [here](https://kubernetes.io/docs/tasks/inject-data-application/downward-api-volume-expose-pod-information/#capabilities-of-the-downward-api)) to make sure traces will be sent to the local agent.
-
-
-Note that you can also set whether to trust incoming spans (global default is true) per-location using annotations like the following:
-```
-kind: Ingress
-metadata:
-  annotations:
-    nginx.ingress.kubernetes.io/opentracing-trust-incoming-span: "true"
-```
-
-## Examples
-
-The following examples show how to deploy and test different distributed tracing systems. These example can be performed using Minikube.
-
-### Zipkin
-
-In the [rnburn/zipkin-date-server](https://github.com/rnburn/zipkin-date-server)
-GitHub repository is an example of a dockerized date service. To install the example and Zipkin collector run:
-
-```
-kubectl create -f https://raw.githubusercontent.com/rnburn/zipkin-date-server/master/kubernetes/zipkin.yaml
-kubectl create -f https://raw.githubusercontent.com/rnburn/zipkin-date-server/master/kubernetes/deployment.yaml
-```
-
-Also we need to configure the Ingress-NGINX controller ConfigMap with the required values:
-
-```
-$ echo '
-apiVersion: v1
-kind: ConfigMap
-data:
-  enable-opentracing: "true"
-  zipkin-collector-host: zipkin.default.svc.cluster.local
-metadata:
-  name: ingress-nginx-controller
-  namespace: kube-system
-' | kubectl replace -f -
-```
-
-In the Zipkin interface we can see the details:
-![zipkin screenshot](../../images/zipkin-demo.png "zipkin collector screenshot")
-
-### Jaeger
-
-1. Enable Ingress addon in Minikube:
-    ```
-    $ minikube addons enable ingress
-    ```
-
-2. Add Minikube IP to /etc/hosts:
-    ```
-    $ echo "$(minikube ip) example.com" | sudo tee -a /etc/hosts
-    ```
-
-3. Apply a basic Service and Ingress Resource:
-    ```
-    # Create Echoheaders Deployment
-    $ kubectl run echoheaders --image=registry.k8s.io/echoserver:1.4 --replicas=1 --port=8080
-
-    # Expose as a Cluster-IP
-    $ kubectl expose deployment echoheaders --port=80 --target-port=8080 --name=echoheaders-x
-
-    # Apply the Ingress Resource
-    $ echo '
-      apiVersion: networking.k8s.io/v1
-      kind: Ingress
-      metadata:
-        name: echo-ingress
-      spec:
-        ingressClassName: nginx
-        rules:
-        - host: example.com
-          http:
-            paths:
-            - path: /echo
-              pathType: Prefix
-              backend:
-                service:
-                  name: echoheaders-x
-                  port:
-                    number: 80
-      ' | kubectl apply -f -
-    ```
-
-4. Enable OpenTracing and set the jaeger-collector-host:
-    ```
-    $ echo '
-      apiVersion: v1
-      kind: ConfigMap
-      data:
-        enable-opentracing: "true"
-        jaeger-collector-host: jaeger-agent.default.svc.cluster.local
-      metadata:
-        name: ingress-nginx-controller
-        namespace: kube-system
-      ' | kubectl replace -f -
-    ```
-
-5. Apply the Jaeger All-In-One Template:
-    ```
-    $ kubectl apply -f https://raw.githubusercontent.com/jaegertracing/jaeger-kubernetes/master/all-in-one/jaeger-all-in-one-template.yml
-    ```
-
-6. Make a few requests to the Service:
-    ```
-    $ curl example.com/echo -d "meow"
-
-    CLIENT VALUES:
-    client_address=172.17.0.5
-    command=POST
-    real path=/echo
-    query=nil
-    request_version=1.1
-    request_uri=http://example.com:8080/echo
-
-    SERVER VALUES:
-    server_version=nginx: 1.10.0 - lua: 10001
-
-    HEADERS RECEIVED:
-    accept=*/*
-    connection=close
-    content-length=4
-    content-type=application/x-www-form-urlencoded
-    host=example.com
-    user-agent=curl/7.54.0
-    x-forwarded-for=192.168.99.1
-    x-forwarded-host=example.com
-    x-forwarded-port=80
-    x-forwarded-proto=http
-    x-original-uri=/echo
-    x-real-ip=192.168.99.1
-    x-scheme=http
-    BODY:
-    meow
-    ```
-
-7. View the Jaeger UI:
-    ```
-    $ minikube service jaeger-query --url
-
-    http://192.168.99.100:30183
-    ```
-
-    In the Jaeger interface we can see the details:
-    ![jaeger screenshot](../../images/jaeger-demo.png "jaeger collector screenshot")

From ac0f6fcd398065bd2ce54c655480a7ed32526127 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Sat, 18 May 2024 02:44:18 +0200
Subject: [PATCH 1272/1641] fix lint errors

---
 pkg/util/runtime/cpu_linux.go | 11 +++------
 test/e2e/cgroups/cgroups.go   | 46 ++++++++++++++++++++++++++---------
 2 files changed, 38 insertions(+), 19 deletions(-)

diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index c97184bcf..9cb260c4b 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -64,14 +64,13 @@ func GetCgroupVersion() int64 {
 	// /sys/fs/cgroup/cgroup.controllers will not exist with cgroupsv1
 	if _, err := os.Stat("/sys/fs/cgroup/cgroup.controllers"); err == nil {
 		return 2
-	} else {
-		return 1
 	}
+
+	return 1
 }
 
-func readCgroup2FileToInt64Tuple(cgroupFile string) (int64, int64) {
-	contents, err := os.ReadFile(filepath.Join("/sys/fs/cgroup/", cgroupFile))
-
+func readCgroup2FileToInt64Tuple(cgroupFile string) (quota, period int64) {
+	contents, err := os.ReadFile(filepath.Join(string(os.PathSeparator), "sys", "fs", "cgroup", cgroupFile))
 	if err != nil {
 		return -1, -1
 	}
@@ -87,7 +86,6 @@ func readCgroup2FileToInt64Tuple(cgroupFile string) (int64, int64) {
 	}
 
 	cpuQuota, err := strconv.ParseInt(values[0], 10, 64)
-
 	if err != nil {
 		return -1, -1
 	}
@@ -97,7 +95,6 @@ func readCgroup2FileToInt64Tuple(cgroupFile string) (int64, int64) {
 	}
 
 	cpuPeriod, err := strconv.ParseInt(values[1], 10, 64)
-
 	if err != nil {
 		return -1, -1
 	}
diff --git a/test/e2e/cgroups/cgroups.go b/test/e2e/cgroups/cgroups.go
index 6ad8558df..e01f683e4 100644
--- a/test/e2e/cgroups/cgroups.go
+++ b/test/e2e/cgroups/cgroups.go
@@ -19,6 +19,7 @@ package cgroups
 import (
 	"log"
 	"os"
+	"path/filepath"
 
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
@@ -26,7 +27,6 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 
 	"k8s.io/ingress-nginx/pkg/util/runtime"
-	"path/filepath"
 
 	libcontainercgroups "github.com/opencontainers/runc/libcontainer/cgroups"
 )
@@ -46,22 +46,34 @@ var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
 		}
 
 		quotaFile, err := os.Create(filepath.Join(cgroupPath, "cpu.cfs_quota_us"))
-
 		if err != nil {
 			log.Fatal(err)
 		}
 
 		periodFile, err := os.Create(filepath.Join(cgroupPath, "cpu.cfs_period_us"))
-
 		if err != nil {
 			log.Fatal(err)
 		}
 
-		quotaFile.WriteString("4")
-		quotaFile.Sync()
+		_, err = quotaFile.WriteString("4")
+		if err != nil {
+			log.Fatal(err)
+		}
 
-		periodFile.WriteString("2")
-		periodFile.Sync()
+		err = quotaFile.Sync()
+		if err != nil {
+			log.Fatal(err)
+		}
+
+		_, err = periodFile.WriteString("2")
+		if err != nil {
+			log.Fatal(err)
+		}
+
+		err = periodFile.Sync()
+		if err != nil {
+			log.Fatal(err)
+		}
 
 		assert.Equal(ginkgo.GinkgoT(), runtime.GetCgroupVersion(), int64(1))
 		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), 2)
@@ -75,15 +87,25 @@ var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
 			log.Fatal(err)
 		}
 
-		os.Create("/sys/fs/cgroup/cgroup.controllers")
-		file, err := os.Create("/sys/fs/cgroup/cpu.max")
-
+		_, err := os.Create("/sys/fs/cgroup/cgroup.controllers")
 		if err != nil {
 			log.Fatal(err)
 		}
 
-		file.WriteString("4 2")
-		file.Sync()
+		file, err := os.Create("/sys/fs/cgroup/cpu.max")
+		if err != nil {
+			log.Fatal(err)
+		}
+
+		_, err = file.WriteString("4 2")
+		if err != nil {
+			log.Fatal(err)
+		}
+
+		err = file.Sync()
+		if err != nil {
+			log.Fatal(err)
+		}
 
 		assert.Equal(ginkgo.GinkgoT(), runtime.GetCgroupVersion(), int64(2))
 		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), 2)

From b2d67ff92bad02c041be12b7f02d66fc417a2e6a Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Mon, 20 May 2024 14:37:46 +0200
Subject: [PATCH 1273/1641] fix tests

---
 pkg/util/runtime/cpu_linux.go | 62 +++++++++++++++++++++++++----------
 test/e2e/cgroups/cgroups.go   | 26 +++++++--------
 2 files changed, 56 insertions(+), 32 deletions(-)

diff --git a/pkg/util/runtime/cpu_linux.go b/pkg/util/runtime/cpu_linux.go
index 9cb260c4b..7db609053 100644
--- a/pkg/util/runtime/cpu_linux.go
+++ b/pkg/util/runtime/cpu_linux.go
@@ -36,21 +36,41 @@ import (
 //
 //	https://www.kernel.org/doc/Documentation/scheduler/sched-bwc.txt
 func NumCPU() int {
+	return NumCPUWithCustomPath("")
+}
+
+func NumCPUWithCustomPath(path string) int {
 	cpus := runtime.NumCPU()
 
-	cgroupVersion := GetCgroupVersion()
+	cgroupVersionCheckPath := path
+
+	if cgroupVersionCheckPath == "" {
+		cgroupVersionCheckPath = "/sys/fs/cgroup/"
+	}
+
+	cgroupVersion := GetCgroupVersion(cgroupVersionCheckPath)
 	cpuQuota := int64(-1)
 	cpuPeriod := int64(-1)
 
 	if cgroupVersion == 1 {
-		cgroupPath, err := libcontainercgroups.FindCgroupMountpoint("", "cpu")
-		if err != nil {
-			return cpus
+		cgroupPath := ""
+		if path == "" {
+			cgroupPathRd, err := libcontainercgroups.FindCgroupMountpoint("", "cpu")
+			if err != nil {
+				return cpus
+			}
+			cgroupPath = cgroupPathRd
+		} else {
+			cgroupPath = path
 		}
 		cpuQuota = readCgroupFileToInt64(cgroupPath, "cpu.cfs_quota_us")
 		cpuPeriod = readCgroupFileToInt64(cgroupPath, "cpu.cfs_period_us")
 	} else if cgroupVersion == 2 {
-		cpuQuota, cpuPeriod = readCgroup2FileToInt64Tuple("cpu.max")
+		cgroupPath := "/sys/fs/cgroup/"
+		if path != "" {
+			cgroupPath = path
+		}
+		cpuQuota, cpuPeriod = readCgroup2FileToInt64Tuple(cgroupPath, "cpu.max")
 	}
 
 	if cpuQuota == -1 || cpuPeriod == -1 {
@@ -60,26 +80,21 @@ func NumCPU() int {
 	return int(math.Ceil(float64(cpuQuota) / float64(cpuPeriod)))
 }
 
-func GetCgroupVersion() int64 {
+func GetCgroupVersion(cgroupPath string) int64 {
 	// /sys/fs/cgroup/cgroup.controllers will not exist with cgroupsv1
-	if _, err := os.Stat("/sys/fs/cgroup/cgroup.controllers"); err == nil {
+	if _, err := os.Stat(filepath.Join(cgroupPath, "cgroup.controllers")); err == nil {
 		return 2
 	}
 
 	return 1
 }
 
-func readCgroup2FileToInt64Tuple(cgroupFile string) (quota, period int64) {
-	contents, err := os.ReadFile(filepath.Join(string(os.PathSeparator), "sys", "fs", "cgroup", cgroupFile))
-	if err != nil {
-		return -1, -1
-	}
-
+func readCgroup2StringToInt64Tuple(cgroupString string) (quota, period int64) {
 	// file contents looks like: $MAX $PERIOD
 	// $MAX can have value "max" indicating no limit
 	// it is possible for $PERIOD to be unset
 
-	values := strings.Fields(string(contents))
+	values := strings.Fields(cgroupString)
 
 	if values[0] == "max" {
 		return -1, -1
@@ -102,16 +117,29 @@ func readCgroup2FileToInt64Tuple(cgroupFile string) (quota, period int64) {
 	return cpuQuota, cpuPeriod
 }
 
-func readCgroupFileToInt64(cgroupPath, cgroupFile string) int64 {
+func readCgroup2FileToInt64Tuple(cgroupPath, cgroupFile string) (quota, period int64) {
 	contents, err := os.ReadFile(filepath.Join(cgroupPath, cgroupFile))
 	if err != nil {
-		return -1
+		return -1, -1
 	}
 
-	strValue := strings.TrimSpace(string(contents))
+	return readCgroup2StringToInt64Tuple(string(contents))
+}
+
+func readCgroupStringToInt64(contents string) int64 {
+	strValue := strings.TrimSpace(contents)
 	if value, err := strconv.ParseInt(strValue, 10, 64); err == nil {
 		return value
 	}
 
 	return -1
 }
+
+func readCgroupFileToInt64(cgroupPath, cgroupFile string) int64 {
+	contents, err := os.ReadFile(filepath.Join(cgroupPath, cgroupFile))
+	if err != nil {
+		return -1
+	}
+
+	return readCgroupStringToInt64(string(contents))
+}
diff --git a/test/e2e/cgroups/cgroups.go b/test/e2e/cgroups/cgroups.go
index e01f683e4..59c6f6bf6 100644
--- a/test/e2e/cgroups/cgroups.go
+++ b/test/e2e/cgroups/cgroups.go
@@ -27,8 +27,6 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 
 	"k8s.io/ingress-nginx/pkg/util/runtime"
-
-	libcontainercgroups "github.com/opencontainers/runc/libcontainer/cgroups"
 )
 
 var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
@@ -40,10 +38,7 @@ var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
 	})
 
 	ginkgo.It("detects cgroups version v1", func() {
-		cgroupPath, err := libcontainercgroups.FindCgroupMountpoint("", "cpu")
-		if err != nil {
-			log.Fatal(err)
-		}
+		cgroupPath := "/testing/sys/fs/cgroup/"
 
 		quotaFile, err := os.Create(filepath.Join(cgroupPath, "cpu.cfs_quota_us"))
 		if err != nil {
@@ -75,24 +70,25 @@ var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
 			log.Fatal(err)
 		}
 
-		assert.Equal(ginkgo.GinkgoT(), runtime.GetCgroupVersion(), int64(1))
-		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), 2)
+		assert.Equal(ginkgo.GinkgoT(), runtime.GetCgroupVersion(cgroupPath), int64(1))
+		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPUWithCustomPath(cgroupPath), 2)
 
 		os.Remove(filepath.Join(cgroupPath, "cpu.cfs_quota_us"))
 		os.Remove(filepath.Join(cgroupPath, "cpu.cfs_period_us"))
 	})
 
 	ginkgo.It("detect cgroups version v2", func() {
-		if err := os.MkdirAll("/sys/fs/cgroup/", os.ModePerm); err != nil {
+		cgroupPath := "/testing/sys/fs/cgroup/"
+		if err := os.MkdirAll(cgroupPath, os.ModePerm); err != nil {
 			log.Fatal(err)
 		}
 
-		_, err := os.Create("/sys/fs/cgroup/cgroup.controllers")
+		_, err := os.Create(filepath.Join(cgroupPath, "cgroup.controllers"))
 		if err != nil {
 			log.Fatal(err)
 		}
 
-		file, err := os.Create("/sys/fs/cgroup/cpu.max")
+		file, err := os.Create(filepath.Join(cgroupPath, "cpu.max"))
 		if err != nil {
 			log.Fatal(err)
 		}
@@ -107,10 +103,10 @@ var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
 			log.Fatal(err)
 		}
 
-		assert.Equal(ginkgo.GinkgoT(), runtime.GetCgroupVersion(), int64(2))
-		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPU(), 2)
+		assert.Equal(ginkgo.GinkgoT(), runtime.GetCgroupVersion(cgroupPath), int64(2))
+		assert.Equal(ginkgo.GinkgoT(), runtime.NumCPUWithCustomPath(cgroupPath), 2)
 
-		os.Remove("/sys/fs/cgroup/cpu.max")
-		os.Remove("/sys/fs/cgroup/cgroup.controllers")
+		os.Remove(filepath.Join(cgroupPath, "cpu.max"))
+		os.Remove(filepath.Join(cgroupPath, "cgroup.controllers"))
 	})
 })

From e9f371787e82e11b6009b77d740e88edd8691bf8 Mon Sep 17 00:00:00 2001
From: Nicholas Orlowsky <nickorlow@nickorlow.com>
Date: Mon, 20 May 2024 16:14:39 +0200
Subject: [PATCH 1274/1641] fix v1 test

---
 test/e2e/cgroups/cgroups.go | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/test/e2e/cgroups/cgroups.go b/test/e2e/cgroups/cgroups.go
index 59c6f6bf6..eab194324 100644
--- a/test/e2e/cgroups/cgroups.go
+++ b/test/e2e/cgroups/cgroups.go
@@ -39,6 +39,9 @@ var _ = framework.IngressNginxDescribeSerial("[CGroups] cgroups", func() {
 
 	ginkgo.It("detects cgroups version v1", func() {
 		cgroupPath := "/testing/sys/fs/cgroup/"
+		if err := os.MkdirAll(cgroupPath, os.ModePerm); err != nil {
+			log.Fatal(err)
+		}
 
 		quotaFile, err := os.Create(filepath.Join(cgroupPath, "cpu.cfs_quota_us"))
 		if err != nil {

From 95efaf3e394cbe7fa280d754261a861e5e4f67aa Mon Sep 17 00:00:00 2001
From: Carlos Parada <cparadal@gmail.com>
Date: Wed, 22 May 2024 14:08:30 +0100
Subject: [PATCH 1275/1641] Accept user defined annotations in IngressClass
 (#11362)

---
 charts/ingress-nginx/README.md                             | 3 ++-
 .../ingress-nginx/templates/controller-ingressclass.yaml   | 7 +++++--
 charts/ingress-nginx/values.yaml                           | 2 ++
 3 files changed, 9 insertions(+), 3 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 8ea6bae85..8171d4e1d 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -332,8 +332,9 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.image.tag | string | `"v1.10.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
-| controller.ingressClassResource | object | `{"aliases":[],"controllerValue":"k8s.io/ingress-nginx","default":false,"enabled":true,"name":"nginx","parameters":{}}` | This section refers to the creation of the IngressClass resource. IngressClasses are immutable and cannot be changed after creation. We do not support namespaced IngressClasses, yet, so a ClusterRole and a ClusterRoleBinding is required. |
+| controller.ingressClassResource | object | `{"aliases":[],"annotations":{},"controllerValue":"k8s.io/ingress-nginx","default":false,"enabled":true,"name":"nginx","parameters":{}}` | This section refers to the creation of the IngressClass resource. IngressClasses are immutable and cannot be changed after creation. We do not support namespaced IngressClasses, yet, so a ClusterRole and a ClusterRoleBinding is required. |
 | controller.ingressClassResource.aliases | list | `[]` | Aliases of this IngressClass. Creates copies with identical settings but the respective alias as name. Useful for development environments with only one Ingress Controller but production-like Ingress resources. `default` gets enabled on the original IngressClass only. |
+| controller.ingressClassResource.annotations | object | `{}` | Annotations to be added to the IngressClass resource. |
 | controller.ingressClassResource.controllerValue | string | `"k8s.io/ingress-nginx"` | Controller of the IngressClass. An Ingress Controller looks for IngressClasses it should reconcile by this value. This value is also being set as the `--controller-class` argument of this Ingress Controller. Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class |
 | controller.ingressClassResource.default | bool | `false` | If true, Ingresses without `ingressClassName` get assigned to this IngressClass on creation. Ingress creation gets rejected if there are multiple default IngressClasses. Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#default-ingress-class |
 | controller.ingressClassResource.enabled | bool | `true` | Create the IngressClass or not |
diff --git a/charts/ingress-nginx/templates/controller-ingressclass.yaml b/charts/ingress-nginx/templates/controller-ingressclass.yaml
index e439e0adb..18cace48c 100644
--- a/charts/ingress-nginx/templates/controller-ingressclass.yaml
+++ b/charts/ingress-nginx/templates/controller-ingressclass.yaml
@@ -9,10 +9,13 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ .Values.controller.ingressClassResource.name }}
-  {{- if .Values.controller.ingressClassResource.default }}
   annotations:
+    {{- if .Values.controller.ingressClassResource.default }}
     ingressclass.kubernetes.io/is-default-class: "true"
-  {{- end }}
+    {{- end }}
+    {{- if .Values.controller.ingressClassResource.annotations }}
+      {{- toYaml .Values.controller.ingressClassResource.annotations | nindent 4 }}
+    {{- end }}
 spec:
   controller: {{ .Values.controller.ingressClassResource.controllerValue }}
   {{- with .Values.controller.ingressClassResource.parameters }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 2a361614c..37aa0f73b 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -127,6 +127,8 @@ controller:
     # Ingress creation gets rejected if there are multiple default IngressClasses.
     # Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#default-ingress-class
     default: false
+    # -- Annotations to be added to the IngressClass resource.
+    annotations: {}
     # -- Controller of the IngressClass. An Ingress Controller looks for IngressClasses it should reconcile by this value.
     # This value is also being set as the `--controller-class` argument of this Ingress Controller.
     # Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-class

From 8737642126b8f8148a0f0be23d9466f97ba158e1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 23 May 2024 05:10:14 -0700
Subject: [PATCH 1276/1641] Bump golangci/golangci-lint-action from 5.3.0 to
 6.0.1 (#11355)

Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 5.3.0 to 6.0.1.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/38e1018663fa5173f3968ea0777460d3de38f256...a4f60bb28d35aeee14e6880718e0c85ff1882e64)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/golangci-lint.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index ff04ab3da..91fbbe088 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -28,6 +28,6 @@ jobs:
           check-latest: true
 
       - name: golangci-lint
-        uses: golangci/golangci-lint-action@38e1018663fa5173f3968ea0777460d3de38f256 # v5.3.0
+        uses: golangci/golangci-lint-action@a4f60bb28d35aeee14e6880718e0c85ff1882e64 # v6.0.1
         with:
           version: v1.56

From b540a1f7c52cfb904813863f55ff6cac6a77cdf0 Mon Sep 17 00:00:00 2001
From: k8s-infra-cherrypick-robot
 <90416843+k8s-infra-cherrypick-robot@users.noreply.github.com>
Date: Thu, 23 May 2024 10:02:35 -0700
Subject: [PATCH 1277/1641] add workflow to helm release and update ct for
 branch (#11378)

Signed-off-by: James Strong <strong.james.e@gmail.com>
Co-authored-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/helm.yaml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 1da3972b0..f6ef5a680 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -5,6 +5,8 @@ on:
     branches:
       - main
       - release-*
+  
+  workflow_dispatch:
 
 permissions:
   contents: read
@@ -39,7 +41,7 @@ jobs:
         uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
 
       - name: Run chart-testing (lint)
-        run: ct lint --config ./.ct.yaml
+        run: ct lint --config --target-branch ${{ github.ref_name }} ./.ct.yaml
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter

From 3b1908e20693c57a97b55d8a563da284a5dbf36c Mon Sep 17 00:00:00 2001
From: k8s-infra-cherrypick-robot
 <90416843+k8s-infra-cherrypick-robot@users.noreply.github.com>
Date: Thu, 23 May 2024 10:13:59 -0700
Subject: [PATCH 1278/1641] sfix position of options (#11379)

Co-authored-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/helm.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index f6ef5a680..24674e3f2 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -41,7 +41,7 @@ jobs:
         uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
 
       - name: Run chart-testing (lint)
-        run: ct lint --config --target-branch ${{ github.ref_name }} ./.ct.yaml
+        run: ct lint --target-branch ${{ github.ref_name }} --config ./.ct.yaml
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter

From d0e9934789d5f07699788d5fa1f3819ebc0a8919 Mon Sep 17 00:00:00 2001
From: Anddd7 <anddd7@icloud.com>
Date: Mon, 27 May 2024 00:37:11 +0800
Subject: [PATCH 1279/1641] feat: Add grpc timeouts annotations (#11258)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* ✨ feat: add grpc timeouts with proxy settings if backend is grpc

* 📝  docs: Documentation only changes

* 🐛 fix: uppercase for protocol

* 📝 docs: grpc timeouts example

* 📝 docs: add links and default values for proxy timeout

* 🧪 test: add e2e test for timeout

* 🐛 fix: upgrade to 1.0.6 to fix nil pointer

* 🐛 fix: lint

* 🧪 test: trigger ci
---
 docs/examples/grpc/README.md                  |   6 +-
 .../nginx-configuration/annotations.md        |   6 +
 .../nginx-configuration/configmap.md          |   6 +
 go.mod                                        |   1 +
 go.sum                                        |   2 +
 rootfs/etc/nginx/template/nginx.tmpl          |   7 ++
 test/e2e/annotations/grpc.go                  |  94 ++++++++++++++-
 test/e2e/framework/grpc_delay.go              | 109 ++++++++++++++++++
 8 files changed, 224 insertions(+), 7 deletions(-)
 create mode 100644 test/e2e/framework/grpc_delay.go

diff --git a/docs/examples/grpc/README.md b/docs/examples/grpc/README.md
index 508b23fb8..23126c345 100644
--- a/docs/examples/grpc/README.md
+++ b/docs/examples/grpc/README.md
@@ -166,11 +166,9 @@ This example demonstrates how to route traffic to a gRPC service through the Ing
 
 ### Notes on using response/request streams
 
+> `grpc_read_timeout` and `grpc_send_timeout` will be set as `proxy_read_timeout` and `proxy_send_timeout` when you set backend protocol to `GRPC` or `GRPCS`.
+
 1. If your server only does response streaming and you expect a stream to be open longer than 60 seconds, you will have to change the `grpc_read_timeout` to accommodate this.
 2. If your service only does request streaming and you expect a stream to be open longer than 60 seconds, you have to change the
 `grpc_send_timeout` and the `client_body_timeout`.
 3. If you do both response and request streaming with an open stream longer than 60 seconds, you have to change all three timeouts: `grpc_read_timeout`, `grpc_send_timeout` and `client_body_timeout`.
-
-Values for the timeouts must be specified as e.g. `"1200s"`.
-
-> On the most recent versions of ingress-nginx, changing these timeouts requires using the `nginx.ingress.kubernetes.io/server-snippet` annotation. There are plans for future releases to allow using the Kubernetes annotations to define each timeout separately.
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index cf4902c1e..0ea54a29f 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -698,6 +698,12 @@ In some scenarios is required to have different values. To allow this we provide
 - `nginx.ingress.kubernetes.io/proxy-next-upstream-tries`
 - `nginx.ingress.kubernetes.io/proxy-request-buffering`
 
+If you indicate [Backend Protocol](#backend-protocol) as `GRPC` or `GRPCS`, the following grpc values will be set and inherited from proxy timeouts:
+
+- [`grpc_connect_timeout=5s`](https://nginx.org/en/docs/http/ngx_http_grpc_module.html#grpc_connect_timeout), from `nginx.ingress.kubernetes.io/proxy-connect-timeout`
+- [`grpc_send_timeout=60s`](https://nginx.org/en/docs/http/ngx_http_grpc_module.html#grpc_send_timeout), from `nginx.ingress.kubernetes.io/proxy-send-timeout`
+- [`grpc_read_timeout=60s`](https://nginx.org/en/docs/http/ngx_http_grpc_module.html#grpc_read_timeout), from `nginx.ingress.kubernetes.io/proxy-read-timeout`
+
 Note: All timeout values are unitless and in seconds e.g. `nginx.ingress.kubernetes.io/proxy-read-timeout: "120"` sets a valid 120 seconds proxy read timeout.
 
 ### Proxy redirect
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 3127f73a4..48ab316cb 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -1101,14 +1101,20 @@ See NGINX [client_max_body_size](https://nginx.org/en/docs/http/ngx_http_core_mo
 
 Sets the timeout for [establishing a connection with a proxied server](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_connect_timeout). It should be noted that this timeout cannot usually exceed 75 seconds.
 
+It will also set the [grpc_connect_timeout](https://nginx.org/en/docs/http/ngx_http_grpc_module.html#grpc_connect_timeout) for gRPC connections.
+
 ## proxy-read-timeout
 
 Sets the timeout in seconds for [reading a response from the proxied server](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_read_timeout). The timeout is set only between two successive read operations, not for the transmission of the whole response.
 
+It will also set the [grpc_read_timeout](https://nginx.org/en/docs/http/ngx_http_grpc_module.html#grpc_read_timeout) for gRPC connections.
+
 ## proxy-send-timeout
 
 Sets the timeout in seconds for [transmitting a request to the proxied server](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_send_timeout). The timeout is set only between two successive write operations, not for the transmission of the whole request.
 
+It will also set the [grpc_send_timeout](https://nginx.org/en/docs/http/ngx_http_grpc_module.html#grpc_send_timeout) for gRPC connections.
+
 ## proxy-buffers-number
 
 Sets the number of the buffer used for [reading the first part of the response](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffers) received from the proxied server. This part usually contains a small response header.
diff --git a/go.mod b/go.mod
index cec60ef9c..75782885a 100644
--- a/go.mod
+++ b/go.mod
@@ -48,6 +48,7 @@ require (
 )
 
 require (
+	github.com/Anddd7/pb v0.0.0-20240425032658-369b0f6a404c
 	github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 // indirect
 	github.com/BurntSushi/toml v1.3.2 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
diff --git a/go.sum b/go.sum
index 1ad706885..d62944e1f 100644
--- a/go.sum
+++ b/go.sum
@@ -597,6 +597,8 @@ cloud.google.com/go/workflows v1.10.0/go.mod h1:fZ8LmRmZQWacon9UCX1r/g/DfAXx5VcP
 dario.cat/mergo v1.0.0 h1:AGCNq9Evsj31mOgNPcLyXc+4PNABt905YmuqPYYpBWk=
 dario.cat/mergo v1.0.0/go.mod h1:uNxQE+84aUszobStD9th8a29P2fMDhsBdgRYvZOxGmk=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
+github.com/Anddd7/pb v0.0.0-20240425032658-369b0f6a404c h1:uhBf0CHXi7nCFZXxHV7l1cBcYFEEVRK4FYxvm1l9lKg=
+github.com/Anddd7/pb v0.0.0-20240425032658-369b0f6a404c/go.mod h1:vYWKbnXd2KAZHUECLPzSE0Er3FgiEmOdPtxwSIRihck=
 gioui.org v0.0.0-20210308172011-57750fc8a0a6/go.mod h1:RSH6KIUZ0p2xy5zHDxgAM4zumjgTw83q2ge/PI+yyw8=
 git.sr.ht/~sbinet/gg v0.3.1/go.mod h1:KGYtlADtqsqANL9ueOFkWymvzUvLMQllU5Ixo+8v3pc=
 github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 h1:L/gRVlceqvL25UVaW/CKtUDjefjrs0SPonmDGUVOYP0=
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 4c0da2eb9..93a04e3e6 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -1481,6 +1481,13 @@ stream {
             proxy_next_upstream_timeout             {{ $location.Proxy.NextUpstreamTimeout }};
             proxy_next_upstream_tries               {{ $location.Proxy.NextUpstreamTries }};
 
+            {{ if or (eq $location.BackendProtocol "GRPC") (eq $location.BackendProtocol "GRPCS") }}
+            # Grpc settings
+            grpc_connect_timeout                    {{ $location.Proxy.ConnectTimeout }}s;
+            grpc_send_timeout                       {{ $location.Proxy.SendTimeout }}s;
+            grpc_read_timeout                       {{ $location.Proxy.ReadTimeout }}s;
+            {{ end }}
+
             {{/* Add any additional configuration defined */}}
             {{ $location.ConfigurationSnippet }}
 
diff --git a/test/e2e/annotations/grpc.go b/test/e2e/annotations/grpc.go
index b3be82c2a..60696e139 100644
--- a/test/e2e/annotations/grpc.go
+++ b/test/e2e/annotations/grpc.go
@@ -22,11 +22,13 @@ import (
 	"fmt"
 	"strings"
 
+	delaypb "github.com/Anddd7/pb/grpcbin"
 	pb "github.com/moul/pb/grpcbin/go-grpc"
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 	"google.golang.org/grpc"
 	"google.golang.org/grpc/credentials"
+	"google.golang.org/grpc/credentials/insecure"
 	"google.golang.org/grpc/metadata"
 	corev1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
@@ -35,7 +37,10 @@ import (
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
-const echoHost = "echo"
+const (
+	echoHost = "echo"
+	host     = "grpc"
+)
 
 var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 	f := framework.NewDefaultFramework("grpc", framework.WithHTTPBunEnabled())
@@ -43,8 +48,6 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 	ginkgo.It("should use grpc_pass in the configuration file", func() {
 		f.NewGRPCFortuneTellerDeployment()
 
-		host := "grpc"
-
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/backend-protocol": "GRPC",
 		}
@@ -259,4 +262,89 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 		metadata := res.GetMetadata()
 		assert.Equal(ginkgo.GinkgoT(), metadata["content-type"].Values[0], "application/grpc")
 	})
+
+	ginkgo.It("should return OK when request not exceed timeout", func() {
+		f.NewGRPCBinDelayDeployment()
+
+		proxyTimeout := "10"
+		ingressName := "grpcbin-delay"
+
+		annotations := make(map[string]string)
+		annotations["nginx.ingress.kubernetes.io/backend-protocol"] = "GRPC"
+		annotations["nginx.ingress.kubernetes.io/proxy-connect-timeout"] = proxyTimeout
+		annotations["nginx.ingress.kubernetes.io/proxy-send-timeout"] = proxyTimeout
+		annotations["nginx.ingress.kubernetes.io/proxy-read-timeout"] = proxyTimeout
+
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, ingressName, 50051, annotations)
+
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, fmt.Sprintf("grpc_connect_timeout %ss;", proxyTimeout)) &&
+					strings.Contains(server, fmt.Sprintf("grpc_send_timeout %ss;", proxyTimeout)) &&
+					strings.Contains(server, fmt.Sprintf("grpc_read_timeout %ss;", proxyTimeout))
+			})
+
+		conn, err := grpc.Dial(
+			f.GetNginxIP()+":80",
+			grpc.WithTransportCredentials(insecure.NewCredentials()),
+			grpc.WithAuthority(host),
+		)
+		assert.Nil(ginkgo.GinkgoT(), err, "error creating a connection")
+		defer conn.Close()
+
+		client := delaypb.NewGrpcbinServiceClient(conn)
+
+		res, err := client.Unary(context.Background(), &delaypb.UnaryRequest{
+			Data: "hello",
+		})
+		assert.Nil(ginkgo.GinkgoT(), err)
+
+		metadata := res.GetResponseAttributes().RequestHeaders
+		assert.Equal(ginkgo.GinkgoT(), metadata["content-type"], "application/grpc")
+		assert.Equal(ginkgo.GinkgoT(), metadata[":authority"], host)
+	})
+
+	ginkgo.It("should return Error when request exceed timeout", func() {
+		f.NewGRPCBinDelayDeployment()
+
+		proxyTimeout := "10"
+		ingressName := "grpcbin-delay"
+
+		annotations := make(map[string]string)
+		annotations["nginx.ingress.kubernetes.io/backend-protocol"] = "GRPC"
+		annotations["nginx.ingress.kubernetes.io/proxy-connect-timeout"] = proxyTimeout
+		annotations["nginx.ingress.kubernetes.io/proxy-send-timeout"] = proxyTimeout
+		annotations["nginx.ingress.kubernetes.io/proxy-read-timeout"] = proxyTimeout
+
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, ingressName, 50051, annotations)
+
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(host,
+			func(server string) bool {
+				return strings.Contains(server, fmt.Sprintf("grpc_connect_timeout %ss;", proxyTimeout)) &&
+					strings.Contains(server, fmt.Sprintf("grpc_send_timeout %ss;", proxyTimeout)) &&
+					strings.Contains(server, fmt.Sprintf("grpc_read_timeout %ss;", proxyTimeout))
+			})
+
+		conn, err := grpc.Dial(
+			f.GetNginxIP()+":80",
+			grpc.WithTransportCredentials(insecure.NewCredentials()),
+			grpc.WithAuthority(host),
+		)
+		assert.Nil(ginkgo.GinkgoT(), err, "error creating a connection")
+		defer conn.Close()
+
+		client := delaypb.NewGrpcbinServiceClient(conn)
+
+		_, err = client.Unary(context.Background(), &delaypb.UnaryRequest{
+			Data: "hello",
+			RequestAttributes: &delaypb.RequestAttributes{
+				Delay: 15,
+			},
+		})
+		assert.Error(ginkgo.GinkgoT(), err)
+	})
 })
diff --git a/test/e2e/framework/grpc_delay.go b/test/e2e/framework/grpc_delay.go
new file mode 100644
index 000000000..58d10b2e9
--- /dev/null
+++ b/test/e2e/framework/grpc_delay.go
@@ -0,0 +1,109 @@
+/*
+Copyright 2024 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package framework
+
+import (
+	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
+	appsv1 "k8s.io/api/apps/v1"
+	corev1 "k8s.io/api/core/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/fields"
+	"k8s.io/apimachinery/pkg/util/intstr"
+)
+
+// NewGRPCBinDelayDeployment creates a new single replica
+// deployment of the grpcbin image in a particular namespace
+func (f *Framework) NewGRPCBinDelayDeployment() {
+	f.NewNewGRPCBinDelayDeploymentWithReplicas(1)
+}
+
+// NewNewGRPCBinDelayDeploymentWithReplicas creates a new deployment of the
+// grpcbin image in a particular namespace. Number of replicas is configurable
+func (f *Framework) NewNewGRPCBinDelayDeploymentWithReplicas(replicas int32) {
+	name := "grpcbin-delay"
+
+	deployment := &appsv1.Deployment{
+		ObjectMeta: metav1.ObjectMeta{
+			Name:      name,
+			Namespace: f.Namespace,
+		},
+		Spec: appsv1.DeploymentSpec{
+			Replicas: NewInt32(replicas),
+			Selector: &metav1.LabelSelector{
+				MatchLabels: map[string]string{
+					"app": name,
+				},
+			},
+			Template: corev1.PodTemplateSpec{
+				ObjectMeta: metav1.ObjectMeta{
+					Labels: map[string]string{
+						"app": name,
+					},
+				},
+				Spec: corev1.PodSpec{
+					TerminationGracePeriodSeconds: NewInt64(0),
+					Containers: []corev1.Container{
+						{
+							Name:  name,
+							Image: "ghcr.io/anddd7/grpcbin:v1.0.6",
+							Env:   []corev1.EnvVar{},
+							Ports: []corev1.ContainerPort{
+								{
+									Name:          "grpc",
+									ContainerPort: 50051,
+								},
+							},
+						},
+					},
+				},
+			},
+		},
+	}
+
+	d := f.EnsureDeployment(deployment)
+
+	err := waitForPodsReady(f.KubeClientSet, DefaultTimeout, int(replicas), f.Namespace, &metav1.ListOptions{
+		LabelSelector: fields.SelectorFromSet(fields.Set(d.Spec.Template.ObjectMeta.Labels)).String(),
+	})
+	assert.Nil(ginkgo.GinkgoT(), err, "failed to wait for to become ready")
+
+	service := &corev1.Service{
+		ObjectMeta: metav1.ObjectMeta{
+			Name:      name,
+			Namespace: f.Namespace,
+		},
+		Spec: corev1.ServiceSpec{
+			Ports: []corev1.ServicePort{
+				{
+					Name:       "grpc",
+					Port:       50051,
+					TargetPort: intstr.FromInt(50051),
+					Protocol:   "TCP",
+				},
+			},
+			Selector: map[string]string{
+				"app": name,
+			},
+		},
+	}
+
+	f.EnsureService(service)
+
+	err = WaitForEndpoints(f.KubeClientSet, DefaultTimeout, name, f.Namespace, int(replicas))
+	assert.Nil(ginkgo.GinkgoT(), err, "waiting for endpoints to become ready")
+}

From 57490cbcdc46789aa5420da55ae8d3e15089f4a0 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 27 May 2024 05:05:23 -0700
Subject: [PATCH 1280/1641] Bump golang.org/x/crypto from 0.22.0 to 0.23.0
 (#11357)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.22.0 to 0.23.0.
- [Commits](https://github.com/golang/crypto/compare/v0.22.0...v0.23.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 75782885a..eaa8d34d3 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/stretchr/testify v1.9.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.22.0
+	golang.org/x/crypto v0.23.0
 	golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f
 	google.golang.org/grpc v1.63.2
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
@@ -113,7 +113,7 @@ require (
 	golang.org/x/oauth2 v0.20.0 // indirect
 	golang.org/x/sync v0.7.0 // indirect
 	golang.org/x/sys v0.20.0 // indirect
-	golang.org/x/term v0.19.0 // indirect
+	golang.org/x/term v0.20.0 // indirect
 	golang.org/x/text v0.15.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.20.0 // indirect
diff --git a/go.sum b/go.sum
index d62944e1f..e5e58cf7d 100644
--- a/go.sum
+++ b/go.sum
@@ -1164,8 +1164,8 @@ golang.org/x/crypto v0.16.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq
 golang.org/x/crypto v0.18.0/go.mod h1:R0j02AL6hcrfOiy9T4ZYp/rcWeMxM3L6QYxlOuEG1mg=
 golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU=
 golang.org/x/crypto v0.21.0/go.mod h1:0BP7YvVV9gBbVKyeTG0Gyn+gZm94bibOW5BjDEYAOMs=
-golang.org/x/crypto v0.22.0 h1:g1v0xeRhjcugydODzvb3mEM9SQ0HGp9s/nh3COQ/C30=
-golang.org/x/crypto v0.22.0/go.mod h1:vr6Su+7cTlO45qkww3VDJlzDn0ctJvRgYbC2NvXHt+M=
+golang.org/x/crypto v0.23.0 h1:dIJU/v2J8Mdglj/8rJ6UUOM3Zc9zLZxVZwwxMooUSAI=
+golang.org/x/crypto v0.23.0/go.mod h1:CKFgDieR+mRhux2Lsu27y0fO304Db0wZe70UKqHu0v8=
 golang.org/x/exp v0.0.0-20180321215751-8460e604b9de/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20180807140117-3d87b88a115f/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
@@ -1476,8 +1476,8 @@ golang.org/x/term v0.15.0/go.mod h1:BDl952bC7+uMoWR75FIrCDx79TPU9oHkTZ9yRbYOrX0=
 golang.org/x/term v0.16.0/go.mod h1:yn7UURbUtPyrVJPGPq404EukNFxcm/foM+bV/bfcDsY=
 golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk=
 golang.org/x/term v0.18.0/go.mod h1:ILwASektA3OnRv7amZ1xhE/KTR+u50pbXfZ03+6Nx58=
-golang.org/x/term v0.19.0 h1:+ThwsDv+tYfnJFhF4L8jITxu1tdTWRTZpdsWgEgjL6Q=
-golang.org/x/term v0.19.0/go.mod h1:2CuTdWZ7KHSQwUzKva0cbMg6q2DMI3Mmxp+gKJbskEk=
+golang.org/x/term v0.20.0 h1:VnkxpohqXaOBYJtBmEppKUG6mXpi+4O6purfc2+sMhw=
+golang.org/x/term v0.20.0/go.mod h1:8UkIAJTvZgivsXaD6/pH6U9ecQzZ45awqEOzuCvwpFY=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=

From 4fcc62ab5b4ddaf8e3ec4319e5a5ba54174ab9b4 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 27 May 2024 05:07:38 -0700
Subject: [PATCH 1281/1641] Bump the all group across 1 directory with 6
 updates (#11383)

Bumps the all group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout) | `4.1.4` | `4.1.6` |
| [dorny/test-reporter](https://github.com/dorny/test-reporter) | `1.9.0` | `1.9.1` |
| [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) | `5.0.0` | `5.1.0` |
| [ossf/scorecard-action](https://github.com/ossf/scorecard-action) | `2.3.1` | `2.3.3` |
| [github/codeql-action](https://github.com/github/codeql-action) | `3.25.3` | `3.25.6` |
| [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) | `0.19.0` | `0.21.0` |



Updates `actions/checkout` from 4.1.4 to 4.1.6
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/0ad4b8fadaa221de15dcec353f45205ec38ea70b...a5ac7e51b41094c92402da3b24376905380afc29)

Updates `dorny/test-reporter` from 1.9.0 to 1.9.1
- [Release notes](https://github.com/dorny/test-reporter/releases)
- [Changelog](https://github.com/dorny/test-reporter/blob/main/CHANGELOG.md)
- [Commits](https://github.com/dorny/test-reporter/compare/c40d89d5e987cd80f3a32b3c233556e22bdca958...31a54ee7ebcacc03a09ea97a7e5465a47b84aea5)

Updates `goreleaser/goreleaser-action` from 5.0.0 to 5.1.0
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/7ec5c2b0c6cdda6e8bbb49444bc797dd33d74dd8...5742e2a039330cbb23ebf35f046f814d4c6ff811)

Updates `ossf/scorecard-action` from 2.3.1 to 2.3.3
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](https://github.com/ossf/scorecard-action/compare/0864cf19026789058feabb7e87baa5f140aac736...dc50aa9510b46c811795eb24b2f1ba02a914e534)

Updates `github/codeql-action` from 3.25.3 to 3.25.6
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/d39d31e687223d841ef683f52467bd88e9b21c14...9fdb3e49720b44c48891d036bb502feb25684276)

Updates `aquasecurity/trivy-action` from 0.19.0 to 0.21.0
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/d710430a6722f083d3b36b8339ff66b32f22ee55...fd25fed6972e341ff0007ddb61f77e88103953c2)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: dorny/test-reporter
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 10 +++++-----
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/golangci-lint.yml        |  2 +-
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/images.yaml              |  8 ++++----
 .github/workflows/junit-reports.yaml       |  2 +-
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  6 +++---
 .github/workflows/scorecards.yml           |  6 +++---
 .github/workflows/vulnerability-scans.yaml |  8 ++++----
 .github/workflows/zz-tmpl-images.yaml      |  6 +++---
 .github/workflows/zz-tmpl-k8s-e2e.yaml     |  2 +-
 13 files changed, 31 insertions(+), 31 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index cafb5ad95..70369418f 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -47,7 +47,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -77,7 +77,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
@@ -105,7 +105,7 @@ jobs:
         PLATFORMS: linux/amd64
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - name: Get go version
         id: golangversion
@@ -179,7 +179,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
         with:
           fetch-depth: 0
 
@@ -239,7 +239,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - name: Setup Go
         uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index ffe249546..fea5a4e4e 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@0c155c5e8556a497adf53f2c18edabf945ed8e70 # v4.3.2
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 76b5818f4..0e12a0dc7 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 91fbbe088..8e6ec5200 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index 24674e3f2..f3aa7ced8 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - name: Run Artifact Hub lint
         run: |
@@ -66,7 +66,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 4123a5efa..18c09a570 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -41,7 +41,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -144,7 +144,7 @@ jobs:
         k8s: [v1.26.14, v1.27.11, v1.28.7, v1.29.2]
     steps:
     - name: Checkout
-      uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+      uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
     - name: Get go version
       run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
@@ -178,7 +178,7 @@ jobs:
         nginx: ['1.25.3', '1.21.6']
     steps:
     - name: Checkout
-      uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+      uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
     - name: image build
       run: |
         cd images/opentelemetry && make NGINX_VERSION=${{ matrix.nginx }} build
@@ -195,7 +195,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm,linux/arm64,linux/s390x
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
       - name: Set up QEMU
         uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
       - name: Set up Docker Buildx
diff --git a/.github/workflows/junit-reports.yaml b/.github/workflows/junit-reports.yaml
index 0d76abbfb..947b90c25 100644
--- a/.github/workflows/junit-reports.yaml
+++ b/.github/workflows/junit-reports.yaml
@@ -9,7 +9,7 @@ jobs:
   report:
     runs-on: ubuntu-latest
     steps:
-      - uses: dorny/test-reporter@c40d89d5e987cd80f3a32b3c233556e22bdca958 # v1.9.0
+      - uses: dorny/test-reporter@31a54ee7ebcacc03a09ea97a7e5465a47b84aea5 # v1.9.1
         with:
           artifact: /e2e-test-reports-(.*)/
           name: JEST Tests $1               # Name of the check run which will be created
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index f2999ee97..9a544c645 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 56992f34d..137e1dccc 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
         with:
           fetch-depth: 0
 
@@ -27,7 +27,7 @@ jobs:
 
       - name: Run GoReleaser Snapshot
         if: ${{ ! startsWith(github.ref, 'refs/tags/') }}
-        uses: goreleaser/goreleaser-action@7ec5c2b0c6cdda6e8bbb49444bc797dd33d74dd8 # v5.0.0
+        uses: goreleaser/goreleaser-action@5742e2a039330cbb23ebf35f046f814d4c6ff811 # v5.1.0
         with:
           version: latest
           args: release --snapshot --clean
@@ -36,7 +36,7 @@ jobs:
 
       - name: Run GoReleaser
         if: ${{ startsWith(github.ref, 'refs/tags/') }}
-        uses: goreleaser/goreleaser-action@7ec5c2b0c6cdda6e8bbb49444bc797dd33d74dd8 # v5.0.0
+        uses: goreleaser/goreleaser-action@5742e2a039330cbb23ebf35f046f814d4c6ff811 # v5.1.0
         with:
           version: latest
           args: release --clean
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index c98b2d180..75e12a95b 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,12 +27,12 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
         with:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@0864cf19026789058feabb7e87baa5f140aac736 # v2.3.1
+        uses: ossf/scorecard-action@dc50aa9510b46c811795eb24b2f1ba02a914e534 # v2.3.3
         with:
           results_file: results.sarif
           results_format: sarif
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@d39d31e687223d841ef683f52467bd88e9b21c14 # v3.25.3
+        uses: github/codeql-action/upload-sarif@9fdb3e49720b44c48891d036bb502feb25684276 # v3.25.6
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 44e8954ed..c6f51a372 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - shell: bash
         id: test
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@d710430a6722f083d3b36b8339ff66b32f22ee55 # v0.19.0
+        uses: aquasecurity/trivy-action@fd25fed6972e341ff0007ddb61f77e88103953c2 # v0.21.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@d39d31e687223d841ef683f52467bd88e9b21c14 # v3.25.3
+        uses: github/codeql-action/upload-sarif@9fdb3e49720b44c48891d036bb502feb25684276 # v3.25.6
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository
diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index 4ab9a4efb..7d7f7a284 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -31,7 +31,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -48,7 +48,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - name: Build
         run: |
@@ -67,7 +67,7 @@ jobs:
       PLATFORMS: ${{ inputs.platforms-publish }}
     steps:
     - name: Checkout
-      uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+      uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
     - name: Login to GitHub Container Registry
       uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20 # v3.1.0
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 9ca47112b..016157aad 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -20,7 +20,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
+        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
       - name: cache
         uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e # v4.1.7

From ba48c6b3c1215133f0a3b8a7e812dffa887206f0 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 27 May 2024 05:10:56 -0700
Subject: [PATCH 1282/1641] Bump the all group across 1 directory with 3
 updates (#11384)

Bumps the all group with 3 updates in the / directory: [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang), [k8s.io/component-base](https://github.com/kubernetes/component-base) and [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime).


Updates `github.com/prometheus/client_golang` from 1.19.0 to 1.19.1
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.19.0...v1.19.1)

Updates `k8s.io/component-base` from 0.30.0 to 0.30.1
- [Commits](https://github.com/kubernetes/component-base/compare/v0.30.0...v0.30.1)

Updates `sigs.k8s.io/controller-runtime` from 0.18.1 to 0.18.3
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases)
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.18.1...v0.18.3)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: k8s.io/component-base
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: sigs.k8s.io/controller-runtime
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 18 +++++++++---------
 go.sum | 39 ++++++++++++++++++++-------------------
 2 files changed, 29 insertions(+), 28 deletions(-)

diff --git a/go.mod b/go.mod
index eaa8d34d3..cf17df231 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/onsi/ginkgo/v2 v2.17.2
 	github.com/opencontainers/runc v1.1.12
 	github.com/pmezard/go-difflib v1.0.0
-	github.com/prometheus/client_golang v1.19.0
+	github.com/prometheus/client_golang v1.19.1
 	github.com/prometheus/client_model v0.6.1
 	github.com/prometheus/common v0.53.0
 	github.com/spf13/cobra v1.8.0
@@ -33,17 +33,17 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.30.0
-	k8s.io/apiextensions-apiserver v0.30.0
-	k8s.io/apimachinery v0.30.0
-	k8s.io/apiserver v0.30.0
+	k8s.io/api v0.30.1
+	k8s.io/apiextensions-apiserver v0.30.1
+	k8s.io/apimachinery v0.30.1
+	k8s.io/apiserver v0.30.1
 	k8s.io/cli-runtime v0.30.0
-	k8s.io/client-go v0.30.0
-	k8s.io/code-generator v0.30.0
-	k8s.io/component-base v0.30.0
+	k8s.io/client-go v0.30.1
+	k8s.io/code-generator v0.30.1
+	k8s.io/component-base v0.30.1
 	k8s.io/klog/v2 v2.120.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.18.1
+	sigs.k8s.io/controller-runtime v0.18.3
 	sigs.k8s.io/mdtoc v1.1.0
 )
 
diff --git a/go.sum b/go.sum
index e5e58cf7d..eb6fcc026 100644
--- a/go.sum
+++ b/go.sum
@@ -597,10 +597,10 @@ cloud.google.com/go/workflows v1.10.0/go.mod h1:fZ8LmRmZQWacon9UCX1r/g/DfAXx5VcP
 dario.cat/mergo v1.0.0 h1:AGCNq9Evsj31mOgNPcLyXc+4PNABt905YmuqPYYpBWk=
 dario.cat/mergo v1.0.0/go.mod h1:uNxQE+84aUszobStD9th8a29P2fMDhsBdgRYvZOxGmk=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
-github.com/Anddd7/pb v0.0.0-20240425032658-369b0f6a404c h1:uhBf0CHXi7nCFZXxHV7l1cBcYFEEVRK4FYxvm1l9lKg=
-github.com/Anddd7/pb v0.0.0-20240425032658-369b0f6a404c/go.mod h1:vYWKbnXd2KAZHUECLPzSE0Er3FgiEmOdPtxwSIRihck=
 gioui.org v0.0.0-20210308172011-57750fc8a0a6/go.mod h1:RSH6KIUZ0p2xy5zHDxgAM4zumjgTw83q2ge/PI+yyw8=
 git.sr.ht/~sbinet/gg v0.3.1/go.mod h1:KGYtlADtqsqANL9ueOFkWymvzUvLMQllU5Ixo+8v3pc=
+github.com/Anddd7/pb v0.0.0-20240425032658-369b0f6a404c h1:uhBf0CHXi7nCFZXxHV7l1cBcYFEEVRK4FYxvm1l9lKg=
+github.com/Anddd7/pb v0.0.0-20240425032658-369b0f6a404c/go.mod h1:vYWKbnXd2KAZHUECLPzSE0Er3FgiEmOdPtxwSIRihck=
 github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 h1:L/gRVlceqvL25UVaW/CKtUDjefjrs0SPonmDGUVOYP0=
 github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161/go.mod h1:xomTg63KZ2rFqZQzSB4Vz2SUXa1BpHTVz9L5PTmPC4E=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
@@ -1020,8 +1020,9 @@ github.com/prometheus/client_golang v1.14.0/go.mod h1:8vpkKitgIVNcqrRBWh1C4TIUQg
 github.com/prometheus/client_golang v1.15.1/go.mod h1:e9yaBhRPU2pPNsZwE+JdQl0KEt1N9XgF6zxWmaC0xOk=
 github.com/prometheus/client_golang v1.17.0/go.mod h1:VeL+gMmOAxkS2IqfCq0ZmHSL+LjWfWDUmp1mBz9JgUY=
 github.com/prometheus/client_golang v1.18.0/go.mod h1:T+GXkCk5wSJyOqMIzVgvvjFDlkOQntgjkJWKrN5txjA=
-github.com/prometheus/client_golang v1.19.0 h1:ygXvpU1AoN1MhdzckN+PyD9QJOSD4x7kmXYlnfbA6JU=
 github.com/prometheus/client_golang v1.19.0/go.mod h1:ZRM9uEAypZakd+q/x7+gmsvXdURP+DABIEIjnmDdp+k=
+github.com/prometheus/client_golang v1.19.1 h1:wZWJDwK+NameRJuPGDhlnFgx8e8HN3XHQeLaYJFJBOE=
+github.com/prometheus/client_golang v1.19.1/go.mod h1:mP78NwGzrVks5S2H6ab8+ZZGJLZUq1hoULYBAYBw1Ho=
 github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
 github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
@@ -1912,22 +1913,22 @@ honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.1.3/go.mod h1:NgwopIslSNH47DimFoV78dnkksY2EFtX0ajyb3K/las=
-k8s.io/api v0.30.0 h1:siWhRq7cNjy2iHssOB9SCGNCl2spiF1dO3dABqZ8niA=
-k8s.io/api v0.30.0/go.mod h1:OPlaYhoHs8EQ1ql0R/TsUgaRPhpKNxIMrKQfWUp8QSE=
-k8s.io/apiextensions-apiserver v0.30.0 h1:jcZFKMqnICJfRxTgnC4E+Hpcq8UEhT8B2lhBcQ+6uAs=
-k8s.io/apiextensions-apiserver v0.30.0/go.mod h1:N9ogQFGcrbWqAY9p2mUAL5mGxsLqwgtUce127VtRX5Y=
-k8s.io/apimachinery v0.30.0 h1:qxVPsyDM5XS96NIh9Oj6LavoVFYff/Pon9cZeDIkHHA=
-k8s.io/apimachinery v0.30.0/go.mod h1:iexa2somDaxdnj7bha06bhb43Zpa6eWH8N8dbqVjTUc=
-k8s.io/apiserver v0.30.0 h1:QCec+U72tMQ+9tR6A0sMBB5Vh6ImCEkoKkTDRABWq6M=
-k8s.io/apiserver v0.30.0/go.mod h1:smOIBq8t0MbKZi7O7SyIpjPsiKJ8qa+llcFCluKyqiY=
+k8s.io/api v0.30.1 h1:kCm/6mADMdbAxmIh0LBjS54nQBE+U4KmbCfIkF5CpJY=
+k8s.io/api v0.30.1/go.mod h1:ddbN2C0+0DIiPntan/bye3SW3PdwLa11/0yqwvuRrJM=
+k8s.io/apiextensions-apiserver v0.30.1 h1:4fAJZ9985BmpJG6PkoxVRpXv9vmPUOVzl614xarePws=
+k8s.io/apiextensions-apiserver v0.30.1/go.mod h1:R4GuSrlhgq43oRY9sF2IToFh7PVlF1JjfWdoG3pixk4=
+k8s.io/apimachinery v0.30.1 h1:ZQStsEfo4n65yAdlGTfP/uSHMQSoYzU/oeEbkmF7P2U=
+k8s.io/apimachinery v0.30.1/go.mod h1:iexa2somDaxdnj7bha06bhb43Zpa6eWH8N8dbqVjTUc=
+k8s.io/apiserver v0.30.1 h1:BEWEe8bzS12nMtDKXzCF5Q5ovp6LjjYkSp8qOPk8LZ8=
+k8s.io/apiserver v0.30.1/go.mod h1:i87ZnQ+/PGAmSbD/iEKM68bm1D5reX8fO4Ito4B01mo=
 k8s.io/cli-runtime v0.30.0 h1:0vn6/XhOvn1RJ2KJOC6IRR2CGqrpT6QQF4+8pYpWQ48=
 k8s.io/cli-runtime v0.30.0/go.mod h1:vATpDMATVTMA79sZ0YUCzlMelf6rUjoBzlp+RnoM+cg=
-k8s.io/client-go v0.30.0 h1:sB1AGGlhY/o7KCyCEQ0bPWzYDL0pwOZO4vAtTSh/gJQ=
-k8s.io/client-go v0.30.0/go.mod h1:g7li5O5256qe6TYdAMyX/otJqMhIiGgTapdLchhmOaY=
-k8s.io/code-generator v0.30.0 h1:3VUVqHvWFSVSm9kqL/G6kD4ZwNdHF6J/jPyo3Jgjy3k=
-k8s.io/code-generator v0.30.0/go.mod h1:mBMZhfRR4IunJUh2+7LVmdcWwpouCH5+LNPkZ3t/v7Q=
-k8s.io/component-base v0.30.0 h1:cj6bp38g0ainlfYtaOQuRELh5KSYjhKxM+io7AUIk4o=
-k8s.io/component-base v0.30.0/go.mod h1:V9x/0ePFNaKeKYA3bOvIbrNoluTSG+fSJKjLdjOoeXQ=
+k8s.io/client-go v0.30.1 h1:uC/Ir6A3R46wdkgCV3vbLyNOYyCJ8oZnjtJGKfytl/Q=
+k8s.io/client-go v0.30.1/go.mod h1:wrAqLNs2trwiCH/wxxmT/x3hKVH9PuV0GGW0oDoHVqc=
+k8s.io/code-generator v0.30.1 h1:ZsG++q5Vt0ScmKCeLhynUuWgcwFGg1Hl1AGfatqPJBI=
+k8s.io/code-generator v0.30.1/go.mod h1:hFgxRsvOUg79mbpbVKfjJvRhVz1qLoe40yZDJ/hwRH4=
+k8s.io/component-base v0.30.1 h1:bvAtlPh1UrdaZL20D9+sWxsJljMi0QZ3Lmw+kmZAaxQ=
+k8s.io/component-base v0.30.1/go.mod h1:e/X9kDiOebwlI41AvBHuWdqFriSRrX50CdwA9TFaHLI=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 h1:bKcdZJOPICVmIIuaM9+MXmapE94dn5AYv5ODs1jA43o=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
 k8s.io/klog/v2 v2.120.1 h1:QXU6cPEOIslTGvZaXvFWiP9VKyeet3sawzTOvdXb4Vw=
@@ -1976,8 +1977,8 @@ rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8
 rsc.io/pdf v0.1.1/go.mod h1:n8OzWcQ6Sp37PL01nO98y4iUCRdTGarVfzxY20ICaU4=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
-sigs.k8s.io/controller-runtime v0.18.1 h1:RpWbigmuiylbxOCLy0tGnq1cU1qWPwNIQzoJk+QeJx4=
-sigs.k8s.io/controller-runtime v0.18.1/go.mod h1:tuAt1+wbVsXIT8lPtk5RURxqAnq7xkpv2Mhttslg7Hw=
+sigs.k8s.io/controller-runtime v0.18.3 h1:B5Wmmo8WMWK7izei+2LlXLVDGzMwAHBNLX68lwtlSR4=
+sigs.k8s.io/controller-runtime v0.18.3/go.mod h1:TVoGrfdpbA9VRFaRnKgk9P5/atA0pMwq+f+msb9M8Sg=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/kustomize/api v0.16.0 h1:/zAR4FOQDCkgSDmVzV2uiFbuy9bhu3jEzthrHCuvm1g=

From 5639979cb514d5310e069f88b2c8e89a9b5f84f5 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 29 May 2024 00:07:30 +0530
Subject: [PATCH 1283/1641] removed tlsv1 & tlsv1.1 (#11343)

---
 docs/user-guide/tls.md                        |      4 +-
 internal/ingress/annotations/proxyssl/main.go |      4 +-
 .../ingress/annotations/proxyssl/main_test.go |      4 +-
 .../ingress/annotations/sslcipher/main.go     |      2 +-
 pkg/apis/ingress/types.go                     |      2 +-
 test/data/config.json                         | 123624 ++++++++-------
 test/e2e/annotations/proxyssl.go              |      8 +-
 7 files changed, 63363 insertions(+), 60285 deletions(-)

diff --git a/docs/user-guide/tls.md b/docs/user-guide/tls.md
index 11338981b..af62cf7e3 100644
--- a/docs/user-guide/tls.md
+++ b/docs/user-guide/tls.md
@@ -23,7 +23,7 @@ The resulting secret will be of type `kubernetes.io/tls`.
 
 ## Host names
 
-Ensure that the relevant [ingress rules specify a matching host name](https://kubernetes.io/docs/concepts/services-networking/ingress/#tls).
+Ensure that the relevant [ingress rules specify a matching hostname](https://kubernetes.io/docs/concepts/services-networking/ingress/#tls).
 
 ## Default SSL Certificate
 
@@ -145,7 +145,7 @@ metadata:
   name: nginx-config
 data:
   ssl-ciphers: "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:DHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES256-SHA256:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA"
-  ssl-protocols: "TLSv1 TLSv1.1 TLSv1.2 TLSv1.3"
+  ssl-protocols: "TLSv1.2 TLSv1.3"
 ```
 
 
diff --git a/internal/ingress/annotations/proxyssl/main.go b/internal/ingress/annotations/proxyssl/main.go
index 0e854cd21..c40bc85e0 100644
--- a/internal/ingress/annotations/proxyssl/main.go
+++ b/internal/ingress/annotations/proxyssl/main.go
@@ -32,7 +32,7 @@ import (
 
 const (
 	defaultProxySSLCiphers     = "DEFAULT"
-	defaultProxySSLProtocols   = "TLSv1 TLSv1.1 TLSv1.2"
+	defaultProxySSLProtocols   = "TLSv1.2"
 	defaultProxySSLVerify      = "off"
 	defaultProxySSLVerifyDepth = 1
 	defaultProxySSLServerName  = "off"
@@ -40,7 +40,7 @@ const (
 
 var (
 	proxySSLOnOffRegex    = regexp.MustCompile(`^(on|off)$`)
-	proxySSLProtocolRegex = regexp.MustCompile(`^(SSLv2|SSLv3|TLSv1|TLSv1\.1|TLSv1\.2|TLSv1\.3| )*$`)
+	proxySSLProtocolRegex = regexp.MustCompile(`^(TLSv1\.2|TLSv1\.3| )*$`)
 	proxySSLCiphersRegex  = regexp.MustCompile(`^[A-Za-z0-9\+:\_\-!]*$`)
 )
 
diff --git a/internal/ingress/annotations/proxyssl/main_test.go b/internal/ingress/annotations/proxyssl/main_test.go
index a20c6813d..cfa31f1d1 100644
--- a/internal/ingress/annotations/proxyssl/main_test.go
+++ b/internal/ingress/annotations/proxyssl/main_test.go
@@ -32,7 +32,7 @@ const (
 	proxySslCiphers   = "HIGH:-SHA"
 	off               = "off"
 	sslServerName     = "w00t"
-	defaultProtocol   = "SSLv2 TLSv1 TLSv1.2 TLSv1.3"
+	defaultProtocol   = "TLSv1.2 TLSv1.3"
 )
 
 func buildIngress() *networking.Ingress {
@@ -103,7 +103,7 @@ func TestAnnotations(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix(proxySSLSecretAnnotation)] = defaultDemoSecret
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-ciphers")] = proxySslCiphers
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-name")] = "$host"
-	data[parser.GetAnnotationWithPrefix("proxy-ssl-protocols")] = "TLSv1.3 SSLv2 TLSv1   TLSv1.2"
+	data[parser.GetAnnotationWithPrefix("proxy-ssl-protocols")] = "TLSv1.3 TLSv1.2"
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-server-name")] = "on"
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-session-reuse")] = off
 	data[parser.GetAnnotationWithPrefix("proxy-ssl-verify")] = "on"
diff --git a/internal/ingress/annotations/sslcipher/main.go b/internal/ingress/annotations/sslcipher/main.go
index 7a282d0a0..3cfd903bd 100644
--- a/internal/ingress/annotations/sslcipher/main.go
+++ b/internal/ingress/annotations/sslcipher/main.go
@@ -43,7 +43,7 @@ var sslCipherAnnotations = parser.Annotation{
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskLow,
 			Documentation: `The following annotation will set the ssl_prefer_server_ciphers directive at the server level. 
-			This configuration specifies that server ciphers should be preferred over client ciphers when using the SSLv3 and TLS protocols.`,
+			This configuration specifies that server ciphers should be preferred over client ciphers when using the TLS protocols.`,
 		},
 		sslCipherAnnotation: {
 			Validator:     parser.ValidateRegex(regexValidSSLCipher, true),
diff --git a/pkg/apis/ingress/types.go b/pkg/apis/ingress/types.go
index 269814d34..36067732e 100644
--- a/pkg/apis/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -211,7 +211,7 @@ type Server struct {
 	// SSLCiphers returns list of ciphers to be enabled
 	SSLCiphers string `json:"sslCiphers,omitempty"`
 	// SSLPreferServerCiphers indicates that server ciphers should be preferred
-	// over client ciphers when using the SSLv3 and TLS protocols.
+	// over client ciphers when using the TLS protocols.
 	SSLPreferServerCiphers string `json:"sslPreferServerCiphers,omitempty"`
 	// AuthTLSError contains the reason why the access to a server should be denied
 	AuthTLSError string `json:"authTLSError,omitempty"`
diff --git a/test/data/config.json b/test/data/config.json
index d64cfe0d2..df8a9fd3d 100644
--- a/test/data/config.json
+++ b/test/data/config.json
@@ -1,60275 +1,63353 @@
 {
-	"backlogSize": 32768,
-	"isIPV6Enabled": true,
-	"cfg": {
-		"disable-ipv6": false,
-		"bind-address-ipv4": ["1.1.1.1", "2.2.2.2"],
-		"bind-address-ipv6": ["[2001:db8:a0b:12f0::1]", "[3731:54:65fe:2::a7]", "[33:33:33::33::33]"],
-		"backend": {
-			"custom-http-errors": [404],
-			"proxy-buffers-number": "4",
-			"proxy-buffer-size": "4k",
-			"proxy-connect-timeout": 5,
-			"proxy-read-timeout": 60,
-			"proxy-send-timeout": 60,
-			"skip-access-log-urls": ["~*health-check", "~*info"],
-			"ssl-redirect": true,
-			"upstream-fail-timeout": 0,
-			"upstream-max-fails": 0,
-			"upstream-hash-by": "$request_uri",
-			"whitelist-source-range": null
-		},
-		"bodySize": "1m",
-		"enableSpdy": false,
-		"errorLogLevel": "notice",
-		"gzipTypes": "application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component",
-		"hsts": true,
-		"hstsIncludeSubdomains": true,
-		"hstsMaxAge": "31536000",
-		"keepAlive": 75,
-		"mapHashBucketSize": 64,
-		"maxWorkerConnections": 16384,
-		"nginxStatusIpv4Whitelist": "127.0.0.1",
-		"nginxStatusIpv6Whitelist": "::1",
-		"proxyRealIpCidr": "0.0.0.0/0",
-		"retryNonIdempotent": false,
-		"serverNameHashBucketSize": 64,
-		"serverNameHashMaxSize": 16384,
-		"sslBufferSize": "4k",
-		"sslCiphers": "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA",
-		"sslProtocols": "TLSv1 TLSv1.1 TLSv1.2",
-		"sslSessionCache": true,
-		"sslSessionCacheSize": "10m",
-		"sslSessionTickets": true,
-		"sslSessionTimeout": "10m",
-		"useGzip": true,
-		"useHttp2": true,
-		"proxyStreamTimeout": "600s",
-		"workerProcesses": 1,
-		"limitConnZoneVariable": "$remote_addr"
-	},
-	"customErrors": true,
-	"defResolver": "",
-	"healthzURI": "/healthz",
-	"passthroughBackends": [{
-		"namespace": "default-kubernetes-443",
-		"hostname": "foo-898.bar.com"
-	}, {
-		"namespace": "default-echoheaders-x-80",
-		"hostname": "foo-997.bar.com"
-	}, {
-		"namespace": "default-kubernetes-443",
-		"hostname": "kubernetes.foo-bar.com"
-	}],
-	"servers": [{
-		"hostname": "_",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/testpath",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": true
-			},
-			"denylist": {
-				"cidr": ["1.1.1.1"]
-			},
-			"whitelist": {
-				"cidr": ["1.1.1.1"]
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}, {
-			"path": "/",
-			"isDefBackend": true,
-			"backend": "upstream-default-backend",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": ["1.1.1.1"]
-			},
-			"whitelist": {
-				"cidr": ["1.1.1.1"]
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "bar.baz.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/foo",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}, {
-			"path": "/bar",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-y-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}, {
-			"path": "/",
-			"isDefBackend": true,
-			"backend": "upstream-default-backend",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": null
-			},
-			"whitelist": {
-				"cidr": null
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "default-backend.sample.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": true,
-			"backend": "default-echoheaders-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": null
-			},
-			"whitelist": {
-				"cidr": null
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "external-auth-01.sample.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "https://httpbun.com/basic-auth/user/passwd",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": true
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-1.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-10.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-100.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-1000.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-101.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-102.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-103.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-104.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-105.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-106.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-107.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-108.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-109.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-11.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-110.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-111.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-112.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-113.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-114.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-115.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-116.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-117.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-118.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-119.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-12.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-120.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-121.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-122.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-123.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-124.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-125.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-126.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-127.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-128.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-129.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-13.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-130.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-131.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-132.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-133.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-134.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-135.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-136.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-137.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-138.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-139.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-14.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-140.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-141.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-142.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-143.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-144.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-145.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-146.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-147.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-148.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-149.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-15.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-150.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-151.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-152.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-153.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-154.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-155.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-156.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-157.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-158.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-159.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-16.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-160.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-161.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-162.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-163.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-164.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-165.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-166.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-167.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-168.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-169.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-17.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-170.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-171.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-172.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-173.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-174.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-175.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-176.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-177.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-178.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-179.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-18.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-180.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-181.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-182.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-183.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-184.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-185.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-186.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-187.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-188.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-189.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-19.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-190.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-191.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-192.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-193.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-194.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-195.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-196.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-197.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-198.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-199.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-2.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-20.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-200.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-201.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-202.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-203.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-204.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-205.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-206.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-207.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-208.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-209.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-21.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-210.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-211.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-212.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-213.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-214.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-215.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-216.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-217.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-218.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-219.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-22.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-220.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-221.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-222.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-223.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-224.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-225.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-226.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-227.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-228.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-229.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-23.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-230.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-231.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-232.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-233.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-234.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-235.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-236.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-237.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-238.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-239.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-24.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-240.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-241.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-242.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-243.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-244.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-245.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-246.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-247.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-248.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-249.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-25.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-250.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-251.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-252.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-253.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-254.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-255.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-256.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-257.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-258.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-259.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-26.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-260.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-261.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-262.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-263.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-264.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-265.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-266.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-267.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-268.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-269.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-27.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-270.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-271.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-272.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-273.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-274.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-275.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-276.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-277.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-278.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-279.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-28.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-280.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-281.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-282.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-283.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-284.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-285.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-286.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-287.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-288.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-289.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-29.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-290.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-291.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-292.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-293.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-294.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-295.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-296.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-297.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-298.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-299.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-3.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-30.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-300.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-301.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-302.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-303.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-304.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-305.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-306.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-307.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-308.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-309.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-31.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-310.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-311.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-312.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-313.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-314.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-315.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-316.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-317.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-318.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-319.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-32.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-320.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-321.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-322.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-323.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-324.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-325.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-326.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-327.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-328.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-329.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-33.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-330.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-331.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-332.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-333.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-334.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-335.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-336.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-337.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-338.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-339.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-34.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-340.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-341.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-342.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-343.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-344.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-345.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-346.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-347.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-348.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-349.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-35.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-350.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-351.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-352.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-353.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-354.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-355.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-356.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-357.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-358.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-359.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-36.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-360.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-361.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-362.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-363.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-364.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-365.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-366.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-367.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-368.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-369.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-37.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-370.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-371.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-372.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-373.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-374.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-375.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-376.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-377.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-378.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-379.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-38.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-380.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-381.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-382.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-383.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-384.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-385.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-386.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-387.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-388.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-389.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-39.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-390.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-391.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-392.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-393.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-394.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-395.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-396.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-397.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-398.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-399.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-4.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-40.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-400.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-401.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-402.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-403.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-404.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-405.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-406.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-407.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-408.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-409.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-41.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-410.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-411.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-412.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-413.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-414.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-415.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-416.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-417.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-418.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-419.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-42.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-420.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-421.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-422.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-423.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-424.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-425.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-426.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-427.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-428.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-429.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-43.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-430.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-431.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-432.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-433.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-434.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-435.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-436.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-437.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-438.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-439.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-44.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-440.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-441.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-442.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-443.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-444.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-445.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-446.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-447.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-448.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-449.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-45.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-450.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-451.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-452.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-453.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-454.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-455.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-456.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-457.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-458.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-459.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-46.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-460.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-461.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-462.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-463.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-464.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-465.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-466.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-467.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-468.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-469.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-47.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-470.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-471.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-472.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-473.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-474.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-475.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-476.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-477.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-478.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-479.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-48.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-480.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-481.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-482.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-483.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-484.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-485.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-486.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-487.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-488.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-489.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-49.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-490.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-491.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-492.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-493.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-494.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-495.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-496.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-497.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-498.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-499.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-5.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-50.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-500.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-501.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-502.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-503.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-504.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-505.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-506.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-507.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-508.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-509.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-51.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-510.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-511.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-512.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-513.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-514.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-515.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-516.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-517.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-518.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-519.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-52.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-520.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-521.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-522.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-523.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-524.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-525.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-526.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-527.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-528.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-529.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-53.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-530.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-531.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-532.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-533.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-534.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-535.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-536.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-537.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-538.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-539.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-54.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-540.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-541.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-542.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-543.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-544.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-545.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-546.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-547.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-548.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-549.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-55.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-550.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-551.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-552.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-553.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-554.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-555.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-556.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-557.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-558.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-559.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-56.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-560.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-561.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-562.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-563.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-564.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-565.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-566.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-567.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-568.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-569.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-57.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-570.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-571.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-572.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-573.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-574.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-575.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-576.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-577.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-578.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-579.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-58.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-580.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-581.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-582.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-583.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-584.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-585.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-586.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-587.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-588.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-589.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-59.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-590.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-591.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-592.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-593.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-594.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-595.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-596.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-597.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-598.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-599.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-6.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-60.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-600.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-601.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-602.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-603.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-604.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-605.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-606.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-607.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-608.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-609.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-61.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-610.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-611.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-612.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-613.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-614.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-615.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-616.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-617.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-618.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-619.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-62.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-620.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-621.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-622.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-623.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-624.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-625.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-626.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-627.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-628.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-629.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-63.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-630.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-631.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-632.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-633.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-634.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-635.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-636.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-637.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-638.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-639.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-64.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-640.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-641.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-642.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-643.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-644.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-645.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-646.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-647.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-648.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-649.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-65.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-650.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-651.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-652.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-653.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-654.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-655.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-656.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-657.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-658.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-659.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-66.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-660.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-661.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-662.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-663.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-664.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-665.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-666.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-667.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-668.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-669.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-67.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-670.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-671.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-672.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-673.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-674.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-675.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-676.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-677.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-678.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-679.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-68.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-680.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-681.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-682.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-683.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-684.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-685.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-686.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-687.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-688.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-689.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-69.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-690.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-691.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-692.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-693.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-694.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-695.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-696.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-697.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-698.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-699.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-7.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-70.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-700.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-701.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-702.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-703.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-704.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-705.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-706.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-707.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-708.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-709.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-71.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-710.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-711.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-712.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-713.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-714.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-715.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-716.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-717.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-718.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-719.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-72.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-720.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-721.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-722.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-723.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-724.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-725.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-726.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-727.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-728.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-729.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-73.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-730.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-731.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-732.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-733.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-734.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-735.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-736.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-737.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-738.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-739.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-74.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-740.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-741.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-742.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-743.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-744.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-745.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-746.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-747.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-748.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-749.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-75.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-750.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-751.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-752.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-753.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-754.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-755.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-756.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-757.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-758.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-759.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-76.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-760.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-761.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-762.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-763.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-764.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-765.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-766.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-767.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-768.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-769.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-77.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-770.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-771.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-772.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-773.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-774.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-775.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-776.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-777.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-778.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-779.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-78.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-780.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-781.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-782.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-783.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-784.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-785.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-786.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-787.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-788.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-789.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-79.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-790.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-791.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-792.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-793.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-794.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-795.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-796.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-797.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-798.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-799.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-8.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-80.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-800.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-801.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-802.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-803.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-804.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-805.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-806.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-807.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-808.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-809.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-81.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-810.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-811.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-812.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-813.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-814.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-815.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-816.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-817.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-818.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-819.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-82.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-820.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-821.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-822.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-823.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-824.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-825.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-826.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-827.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-828.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-829.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-83.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-830.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-831.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-832.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-833.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-834.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-835.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-836.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-837.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-838.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-839.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-84.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-840.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-841.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-842.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-843.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-844.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-845.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-846.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-847.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-848.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-849.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-85.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-850.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-851.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-852.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-853.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-854.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-855.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-856.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-857.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-858.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-859.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-86.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-860.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-861.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-862.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-863.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-864.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-865.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-866.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-867.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-868.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-869.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-87.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-870.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-871.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-872.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-873.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-874.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-875.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-876.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-877.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-878.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-879.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-88.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-880.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-881.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-882.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-883.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-884.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-885.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-886.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-887.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-888.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-889.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-89.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-890.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-891.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-892.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-893.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-894.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-895.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-896.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-897.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-898.bar.com",
-		"sslPassthrough": true,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-kubernetes-443",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": true
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-899.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-9.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-90.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-900.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-901.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-902.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-903.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-904.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-905.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-906.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-907.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-908.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-909.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-91.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-910.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-911.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-912.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-913.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-914.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-915.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-916.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-917.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-918.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-919.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-92.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-920.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-921.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-922.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-923.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-924.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-925.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-926.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-927.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-928.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-929.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-93.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-930.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-931.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-932.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-933.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-934.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-935.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-936.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-937.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-938.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-939.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-94.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-940.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-941.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-942.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-943.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-944.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-945.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-946.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-947.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-948.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-949.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-95.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-950.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-951.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-952.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-953.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-954.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-955.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-956.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-957.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-958.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-959.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-96.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-960.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-961.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-962.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-963.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-964.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-965.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-966.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-967.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-968.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-969.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-97.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-970.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-971.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-972.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-973.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-974.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-975.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-976.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-977.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-978.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-979.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-98.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-980.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-981.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-982.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-983.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-984.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-985.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-986.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-987.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-988.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-989.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-99.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-990.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-991.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-992.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": true
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "default/aledbf-ca-secret",
-				"certFilename": "/ingress-controller/ssl/default-aledbf-ca-secret.pem",
-				"keyFilename": "",
-				"caFilename": "/ingress-controller/ssl/ca-default-aledbf-ca-secret.pem",
-				"pemSha": "69d055bd017208111377c971ba5ee0987fecee65"
-			}
-		}]
-	}, {
-		"hostname": "foo-993.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-994.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-995.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-996.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-997.bar.com",
-		"sslPassthrough": true,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": true
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo-998.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "https://httpbun.com/basic-auth/user/passwd",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": true
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/foo",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}, {
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo2.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-xtp-echo-port",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": true
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foo3.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-xtp-echo-port",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "foos.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": true
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "jenkins.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/jenkins",
-			"isDefBackend": false,
-			"backend": "default-jenkins-8080",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "default_jenkins_conn",
-					"limit": 2,
-					"burst": 10,
-					"sharedSize": 5
-				},
-				"rps": {
-					"name": "default_jenkins_rps",
-					"limit": 0,
-					"burst": 10,
-					"sharedSize": 5
-				}
-			},
-			"redirect": {
-				"target": "/",
-				"addBaseUrl": true,
-				"sslRedirect": true
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}, {
-			"path": "/",
-			"isDefBackend": true,
-			"backend": "upstream-default-backend",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": null
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "kubernetes.foo-bar.com",
-		"sslPassthrough": true,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-kubernetes-443",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": true
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "no-root.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/api",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}, {
-			"path": "/",
-			"isDefBackend": true,
-			"backend": "upstream-default-backend",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": null
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "rewrite.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/something",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "/",
-				"addBaseUrl": false,
-				"sslRedirect": true
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}, {
-			"path": "/",
-			"isDefBackend": true,
-			"backend": "upstream-default-backend",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": null
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "whitelist.bar.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": true
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}, {
-		"hostname": "with-root.com",
-		"sslPassthrough": false,
-		"sslCertificate": "",
-		"sslPemChecksum": "",
-		"locations": [{
-			"path": "/",
-			"isDefBackend": false,
-			"backend": "default-echoheaders-x-80",
-			"basicDigestAuth": {
-				"type": "",
-				"realm": "",
-				"file": "",
-				"secured": false
-			},
-			"externalAuth": {
-				"url": "",
-				"method": "",
-				"sendBody": false
-			},
-			"rateLimit": {
-				"connections": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				},
-				"rps": {
-					"name": "",
-					"limit": 0,
-					"burst": 0,
-					"sharedSize": 0
-				}
-			},
-			"redirect": {
-				"target": "",
-				"addBaseUrl": false,
-				"sslRedirect": false
-			},
-			"denylist": {
-				"cidr": []
-			},
-			"whitelist": {
-				"cidr": []
-			},
-			"proxy": {
-				"connectTimeout": 5,
-				"sendTimeout": 60,
-				"readTimeout": 60,
-				"bufferSize": "4k"
-			},
-			"certificateAuth": {
-				"secret": "",
-				"certFilename": "",
-				"keyFilename": "",
-				"caFilename": "",
-				"pemSha": ""
-			}
-		}]
-	}],
-	"sslDHParam": "",
-	"tcpBackends": [],
-	"udpBackends": [],
-	"backends": [{
-		"name": "default-echoheaders-80",
-		"secure": false,
-		"endpoints": [{
-			"address": "10.2.3.2",
-			"port": "8080",
-			"maxFails": 0,
-			"failTimeout": 0
-		}, {
-			"address": "10.2.3.5",
-			"port": "8080",
-			"maxFails": 0,
-			"failTimeout": 0
-		}]
-	}, {
-		"name": "default-echoheaders-x-80",
-		"secure": false,
-		"endpoints": [{
-			"address": "10.2.3.4",
-			"port": "8080",
-			"maxFails": 0,
-			"failTimeout": 0
-		}]
-	}, {
-		"name": "default-echoheaders-xtp-echo-port",
-		"secure": false,
-		"endpoints": [{
-			"address": "127.0.0.1",
-			"port": "8181",
-			"maxFails": 0,
-			"failTimeout": 0
-		}]
-	}, {
-		"name": "default-echoheaders-y-80",
-		"secure": false,
-		"endpoints": [{
-			"address": "10.2.3.4",
-			"port": "8080",
-			"maxFails": 0,
-			"failTimeout": 0
-		}]
-	}, {
-		"name": "default-jenkins-8080",
-		"secure": false,
-		"endpoints": [{
-			"address": "127.0.0.1",
-			"port": "8181",
-			"maxFails": 0,
-			"failTimeout": 0
-		}]
-	}, {
-		"name": "default-kubernetes-443",
-		"secure": false,
-		"endpoints": [{
-			"address": "172.17.4.99",
-			"port": "443",
-			"maxFails": 0,
-			"failTimeout": 0
-		}]
-	}, {
-		"name": "upstream-default-backend",
-		"secure": false,
-		"endpoints": [{
-			"address": "10.2.3.11",
-			"port": "8080",
-			"maxFails": 0,
-			"failTimeout": 0
-		}]
-	}]
+  "backlogSize": 32768,
+  "isIPV6Enabled": true,
+  "cfg": {
+    "disable-ipv6": false,
+    "bind-address-ipv4": ["1.1.1.1", "2.2.2.2"],
+    "bind-address-ipv6": [
+      "[2001:db8:a0b:12f0::1]",
+      "[3731:54:65fe:2::a7]",
+      "[33:33:33::33::33]"
+    ],
+    "backend": {
+      "custom-http-errors": [404],
+      "proxy-buffers-number": "4",
+      "proxy-buffer-size": "4k",
+      "proxy-connect-timeout": 5,
+      "proxy-read-timeout": 60,
+      "proxy-send-timeout": 60,
+      "skip-access-log-urls": ["~*health-check", "~*info"],
+      "ssl-redirect": true,
+      "upstream-fail-timeout": 0,
+      "upstream-max-fails": 0,
+      "upstream-hash-by": "$request_uri",
+      "whitelist-source-range": null
+    },
+    "bodySize": "1m",
+    "enableSpdy": false,
+    "errorLogLevel": "notice",
+    "gzipTypes": "application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component",
+    "hsts": true,
+    "hstsIncludeSubdomains": true,
+    "hstsMaxAge": "31536000",
+    "keepAlive": 75,
+    "mapHashBucketSize": 64,
+    "maxWorkerConnections": 16384,
+    "nginxStatusIpv4Whitelist": "127.0.0.1",
+    "nginxStatusIpv6Whitelist": "::1",
+    "proxyRealIpCidr": "0.0.0.0/0",
+    "retryNonIdempotent": false,
+    "serverNameHashBucketSize": 64,
+    "serverNameHashMaxSize": 16384,
+    "sslBufferSize": "4k",
+    "sslCiphers": "ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA",
+    "sslProtocols": "TLSv1.2",
+    "sslSessionCache": true,
+    "sslSessionCacheSize": "10m",
+    "sslSessionTickets": true,
+    "sslSessionTimeout": "10m",
+    "useGzip": true,
+    "useHttp2": true,
+    "proxyStreamTimeout": "600s",
+    "workerProcesses": 1,
+    "limitConnZoneVariable": "$remote_addr"
+  },
+  "customErrors": true,
+  "defResolver": "",
+  "healthzURI": "/healthz",
+  "passthroughBackends": [
+    {
+      "namespace": "default-kubernetes-443",
+      "hostname": "foo-898.bar.com"
+    },
+    {
+      "namespace": "default-echoheaders-x-80",
+      "hostname": "foo-997.bar.com"
+    },
+    {
+      "namespace": "default-kubernetes-443",
+      "hostname": "kubernetes.foo-bar.com"
+    }
+  ],
+  "servers": [
+    {
+      "hostname": "_",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/testpath",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": true
+          },
+          "denylist": {
+            "cidr": ["1.1.1.1"]
+          },
+          "whitelist": {
+            "cidr": ["1.1.1.1"]
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        },
+        {
+          "path": "/",
+          "isDefBackend": true,
+          "backend": "upstream-default-backend",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": ["1.1.1.1"]
+          },
+          "whitelist": {
+            "cidr": ["1.1.1.1"]
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "bar.baz.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/foo",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        },
+        {
+          "path": "/bar",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-y-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        },
+        {
+          "path": "/",
+          "isDefBackend": true,
+          "backend": "upstream-default-backend",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": null
+          },
+          "whitelist": {
+            "cidr": null
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "default-backend.sample.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": true,
+          "backend": "default-echoheaders-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": null
+          },
+          "whitelist": {
+            "cidr": null
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "external-auth-01.sample.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "https://httpbun.com/basic-auth/user/passwd",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": true
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-1.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-10.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-100.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-1000.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-101.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-102.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-103.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-104.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-105.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-106.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-107.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-108.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-109.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-11.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-110.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-111.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-112.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-113.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-114.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-115.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-116.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-117.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-118.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-119.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-12.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-120.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-121.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-122.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-123.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-124.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-125.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-126.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-127.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-128.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-129.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-13.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-130.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-131.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-132.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-133.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-134.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-135.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-136.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-137.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-138.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-139.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-14.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-140.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-141.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-142.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-143.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-144.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-145.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-146.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-147.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-148.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-149.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-15.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-150.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-151.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-152.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-153.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-154.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-155.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-156.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-157.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-158.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-159.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-16.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-160.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-161.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-162.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-163.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-164.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-165.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-166.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-167.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-168.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-169.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-17.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-170.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-171.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-172.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-173.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-174.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-175.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-176.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-177.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-178.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-179.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-18.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-180.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-181.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-182.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-183.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-184.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-185.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-186.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-187.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-188.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-189.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-19.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-190.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-191.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-192.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-193.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-194.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-195.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-196.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-197.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-198.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-199.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-2.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-20.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-200.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-201.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-202.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-203.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-204.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-205.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-206.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-207.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-208.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-209.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-21.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-210.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-211.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-212.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-213.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-214.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-215.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-216.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-217.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-218.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-219.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-22.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-220.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-221.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-222.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-223.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-224.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-225.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-226.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-227.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-228.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-229.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-23.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-230.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-231.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-232.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-233.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-234.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-235.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-236.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-237.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-238.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-239.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-24.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-240.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-241.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-242.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-243.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-244.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-245.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-246.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-247.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-248.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-249.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-25.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-250.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-251.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-252.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-253.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-254.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-255.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-256.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-257.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-258.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-259.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-26.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-260.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-261.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-262.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-263.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-264.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-265.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-266.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-267.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-268.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-269.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-27.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-270.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-271.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-272.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-273.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-274.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-275.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-276.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-277.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-278.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-279.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-28.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-280.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-281.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-282.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-283.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-284.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-285.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-286.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-287.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-288.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-289.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-29.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-290.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-291.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-292.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-293.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-294.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-295.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-296.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-297.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-298.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-299.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-3.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-30.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-300.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-301.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-302.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-303.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-304.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-305.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-306.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-307.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-308.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-309.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-31.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-310.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-311.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-312.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-313.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-314.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-315.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-316.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-317.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-318.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-319.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-32.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-320.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-321.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-322.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-323.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-324.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-325.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-326.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-327.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-328.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-329.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-33.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-330.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-331.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-332.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-333.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-334.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-335.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-336.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-337.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-338.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-339.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-34.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-340.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-341.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-342.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-343.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-344.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-345.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-346.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-347.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-348.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-349.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-35.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-350.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-351.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-352.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-353.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-354.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-355.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-356.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-357.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-358.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-359.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-36.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-360.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-361.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-362.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-363.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-364.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-365.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-366.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-367.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-368.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-369.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-37.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-370.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-371.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-372.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-373.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-374.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-375.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-376.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-377.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-378.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-379.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-38.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-380.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-381.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-382.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-383.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-384.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-385.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-386.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-387.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-388.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-389.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-39.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-390.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-391.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-392.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-393.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-394.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-395.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-396.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-397.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-398.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-399.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-4.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-40.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-400.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-401.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-402.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-403.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-404.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-405.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-406.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-407.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-408.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-409.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-41.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-410.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-411.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-412.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-413.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-414.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-415.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-416.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-417.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-418.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-419.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-42.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-420.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-421.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-422.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-423.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-424.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-425.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-426.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-427.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-428.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-429.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-43.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-430.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-431.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-432.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-433.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-434.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-435.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-436.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-437.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-438.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-439.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-44.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-440.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-441.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-442.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-443.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-444.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-445.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-446.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-447.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-448.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-449.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-45.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-450.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-451.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-452.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-453.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-454.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-455.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-456.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-457.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-458.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-459.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-46.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-460.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-461.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-462.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-463.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-464.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-465.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-466.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-467.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-468.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-469.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-47.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-470.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-471.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-472.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-473.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-474.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-475.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-476.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-477.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-478.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-479.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-48.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-480.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-481.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-482.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-483.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-484.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-485.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-486.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-487.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-488.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-489.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-49.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-490.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-491.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-492.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-493.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-494.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-495.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-496.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-497.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-498.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-499.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-5.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-50.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-500.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-501.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-502.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-503.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-504.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-505.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-506.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-507.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-508.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-509.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-51.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-510.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-511.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-512.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-513.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-514.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-515.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-516.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-517.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-518.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-519.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-52.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-520.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-521.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-522.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-523.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-524.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-525.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-526.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-527.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-528.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-529.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-53.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-530.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-531.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-532.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-533.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-534.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-535.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-536.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-537.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-538.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-539.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-54.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-540.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-541.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-542.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-543.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-544.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-545.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-546.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-547.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-548.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-549.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-55.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-550.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-551.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-552.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-553.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-554.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-555.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-556.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-557.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-558.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-559.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-56.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-560.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-561.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-562.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-563.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-564.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-565.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-566.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-567.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-568.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-569.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-57.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-570.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-571.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-572.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-573.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-574.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-575.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-576.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-577.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-578.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-579.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-58.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-580.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-581.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-582.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-583.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-584.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-585.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-586.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-587.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-588.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-589.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-59.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-590.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-591.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-592.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-593.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-594.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-595.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-596.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-597.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-598.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-599.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-6.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-60.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-600.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-601.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-602.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-603.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-604.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-605.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-606.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-607.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-608.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-609.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-61.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-610.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-611.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-612.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-613.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-614.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-615.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-616.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-617.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-618.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-619.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-62.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-620.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-621.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-622.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-623.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-624.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-625.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-626.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-627.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-628.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-629.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-63.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-630.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-631.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-632.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-633.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-634.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-635.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-636.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-637.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-638.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-639.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-64.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-640.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-641.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-642.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-643.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-644.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-645.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-646.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-647.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-648.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-649.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-65.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-650.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-651.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-652.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-653.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-654.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-655.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-656.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-657.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-658.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-659.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-66.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-660.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-661.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-662.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-663.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-664.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-665.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-666.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-667.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-668.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-669.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-67.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-670.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-671.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-672.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-673.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-674.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-675.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-676.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-677.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-678.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-679.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-68.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-680.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-681.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-682.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-683.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-684.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-685.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-686.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-687.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-688.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-689.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-69.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-690.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-691.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-692.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-693.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-694.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-695.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-696.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-697.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-698.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-699.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-7.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-70.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-700.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-701.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-702.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-703.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-704.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-705.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-706.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-707.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-708.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-709.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-71.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-710.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-711.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-712.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-713.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-714.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-715.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-716.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-717.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-718.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-719.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-72.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-720.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-721.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-722.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-723.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-724.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-725.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-726.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-727.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-728.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-729.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-73.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-730.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-731.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-732.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-733.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-734.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-735.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-736.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-737.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-738.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-739.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-74.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-740.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-741.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-742.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-743.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-744.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-745.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-746.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-747.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-748.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-749.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-75.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-750.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-751.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-752.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-753.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-754.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-755.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-756.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-757.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-758.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-759.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-76.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-760.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-761.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-762.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-763.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-764.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-765.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-766.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-767.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-768.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-769.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-77.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-770.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-771.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-772.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-773.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-774.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-775.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-776.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-777.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-778.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-779.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-78.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-780.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-781.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-782.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-783.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-784.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-785.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-786.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-787.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-788.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-789.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-79.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-790.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-791.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-792.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-793.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-794.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-795.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-796.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-797.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-798.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-799.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-8.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-80.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-800.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-801.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-802.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-803.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-804.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-805.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-806.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-807.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-808.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-809.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-81.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-810.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-811.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-812.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-813.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-814.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-815.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-816.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-817.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-818.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-819.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-82.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-820.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-821.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-822.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-823.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-824.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-825.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-826.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-827.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-828.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-829.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-83.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-830.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-831.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-832.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-833.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-834.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-835.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-836.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-837.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-838.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-839.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-84.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-840.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-841.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-842.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-843.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-844.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-845.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-846.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-847.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-848.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-849.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-85.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-850.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-851.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-852.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-853.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-854.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-855.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-856.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-857.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-858.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-859.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-86.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-860.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-861.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-862.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-863.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-864.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-865.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-866.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-867.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-868.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-869.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-87.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-870.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-871.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-872.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-873.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-874.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-875.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-876.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-877.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-878.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-879.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-88.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-880.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-881.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-882.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-883.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-884.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-885.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-886.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-887.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-888.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-889.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-89.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-890.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-891.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-892.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-893.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-894.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-895.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-896.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-897.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-898.bar.com",
+      "sslPassthrough": true,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-kubernetes-443",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": true
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-899.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-9.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-90.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-900.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-901.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-902.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-903.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-904.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-905.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-906.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-907.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-908.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-909.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-91.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-910.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-911.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-912.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-913.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-914.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-915.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-916.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-917.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-918.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-919.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-92.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-920.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-921.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-922.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-923.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-924.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-925.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-926.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-927.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-928.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-929.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-93.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-930.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-931.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-932.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-933.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-934.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-935.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-936.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-937.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-938.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-939.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-94.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-940.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-941.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-942.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-943.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-944.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-945.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-946.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-947.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-948.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-949.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-95.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-950.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-951.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-952.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-953.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-954.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-955.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-956.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-957.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-958.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-959.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-96.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-960.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-961.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-962.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-963.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-964.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-965.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-966.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-967.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-968.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-969.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-97.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-970.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-971.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-972.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-973.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-974.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-975.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-976.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-977.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-978.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-979.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-98.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-980.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-981.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-982.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-983.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-984.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-985.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-986.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-987.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-988.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-989.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-99.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-990.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-991.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-992.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": true
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "default/aledbf-ca-secret",
+            "certFilename": "/ingress-controller/ssl/default-aledbf-ca-secret.pem",
+            "keyFilename": "",
+            "caFilename": "/ingress-controller/ssl/ca-default-aledbf-ca-secret.pem",
+            "pemSha": "69d055bd017208111377c971ba5ee0987fecee65"
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-993.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-994.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-995.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-996.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-997.bar.com",
+      "sslPassthrough": true,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": true
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo-998.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "https://httpbun.com/basic-auth/user/passwd",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": true
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/foo",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        },
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo2.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-xtp-echo-port",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": true
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foo3.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-xtp-echo-port",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "foos.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": true
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "jenkins.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/jenkins",
+          "isDefBackend": false,
+          "backend": "default-jenkins-8080",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "default_jenkins_conn",
+              "limit": 2,
+              "burst": 10,
+              "sharedSize": 5
+            },
+            "rps": {
+              "name": "default_jenkins_rps",
+              "limit": 0,
+              "burst": 10,
+              "sharedSize": 5
+            }
+          },
+          "redirect": {
+            "target": "/",
+            "addBaseUrl": true,
+            "sslRedirect": true
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        },
+        {
+          "path": "/",
+          "isDefBackend": true,
+          "backend": "upstream-default-backend",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": null
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "kubernetes.foo-bar.com",
+      "sslPassthrough": true,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-kubernetes-443",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": true
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "no-root.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/api",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        },
+        {
+          "path": "/",
+          "isDefBackend": true,
+          "backend": "upstream-default-backend",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": null
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "rewrite.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/something",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "/",
+            "addBaseUrl": false,
+            "sslRedirect": true
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        },
+        {
+          "path": "/",
+          "isDefBackend": true,
+          "backend": "upstream-default-backend",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": null
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "whitelist.bar.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": true
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    },
+    {
+      "hostname": "with-root.com",
+      "sslPassthrough": false,
+      "sslCertificate": "",
+      "sslPemChecksum": "",
+      "locations": [
+        {
+          "path": "/",
+          "isDefBackend": false,
+          "backend": "default-echoheaders-x-80",
+          "basicDigestAuth": {
+            "type": "",
+            "realm": "",
+            "file": "",
+            "secured": false
+          },
+          "externalAuth": {
+            "url": "",
+            "method": "",
+            "sendBody": false
+          },
+          "rateLimit": {
+            "connections": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            },
+            "rps": {
+              "name": "",
+              "limit": 0,
+              "burst": 0,
+              "sharedSize": 0
+            }
+          },
+          "redirect": {
+            "target": "",
+            "addBaseUrl": false,
+            "sslRedirect": false
+          },
+          "denylist": {
+            "cidr": []
+          },
+          "whitelist": {
+            "cidr": []
+          },
+          "proxy": {
+            "connectTimeout": 5,
+            "sendTimeout": 60,
+            "readTimeout": 60,
+            "bufferSize": "4k"
+          },
+          "certificateAuth": {
+            "secret": "",
+            "certFilename": "",
+            "keyFilename": "",
+            "caFilename": "",
+            "pemSha": ""
+          }
+        }
+      ]
+    }
+  ],
+  "sslDHParam": "",
+  "tcpBackends": [],
+  "udpBackends": [],
+  "backends": [
+    {
+      "name": "default-echoheaders-80",
+      "secure": false,
+      "endpoints": [
+        {
+          "address": "10.2.3.2",
+          "port": "8080",
+          "maxFails": 0,
+          "failTimeout": 0
+        },
+        {
+          "address": "10.2.3.5",
+          "port": "8080",
+          "maxFails": 0,
+          "failTimeout": 0
+        }
+      ]
+    },
+    {
+      "name": "default-echoheaders-x-80",
+      "secure": false,
+      "endpoints": [
+        {
+          "address": "10.2.3.4",
+          "port": "8080",
+          "maxFails": 0,
+          "failTimeout": 0
+        }
+      ]
+    },
+    {
+      "name": "default-echoheaders-xtp-echo-port",
+      "secure": false,
+      "endpoints": [
+        {
+          "address": "127.0.0.1",
+          "port": "8181",
+          "maxFails": 0,
+          "failTimeout": 0
+        }
+      ]
+    },
+    {
+      "name": "default-echoheaders-y-80",
+      "secure": false,
+      "endpoints": [
+        {
+          "address": "10.2.3.4",
+          "port": "8080",
+          "maxFails": 0,
+          "failTimeout": 0
+        }
+      ]
+    },
+    {
+      "name": "default-jenkins-8080",
+      "secure": false,
+      "endpoints": [
+        {
+          "address": "127.0.0.1",
+          "port": "8181",
+          "maxFails": 0,
+          "failTimeout": 0
+        }
+      ]
+    },
+    {
+      "name": "default-kubernetes-443",
+      "secure": false,
+      "endpoints": [
+        {
+          "address": "172.17.4.99",
+          "port": "443",
+          "maxFails": 0,
+          "failTimeout": 0
+        }
+      ]
+    },
+    {
+      "name": "upstream-default-backend",
+      "secure": false,
+      "endpoints": [
+        {
+          "address": "10.2.3.11",
+          "port": "8080",
+          "maxFails": 0,
+          "failTimeout": 0
+        }
+      ]
+    }
+  ]
 }
diff --git a/test/e2e/annotations/proxyssl.go b/test/e2e/annotations/proxyssl.go
index 989d681c1..898cbed48 100644
--- a/test/e2e/annotations/proxyssl.go
+++ b/test/e2e/annotations/proxyssl.go
@@ -47,7 +47,7 @@ var _ = framework.DescribeAnnotation("proxy-ssl-*", func() {
 		ing := framework.NewSingleIngressWithTLS(host, "/", host, []string{host}, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
 
-		assertProxySSL(f, host, "", "DEFAULT", "TLSv1 TLSv1.1 TLSv1.2", "off", 1, "")
+		assertProxySSL(f, host, "", "DEFAULT", "TLSv1.2", "off", 1, "")
 
 		f.HTTPTestClient().
 			GET("/").
@@ -77,7 +77,7 @@ var _ = framework.DescribeAnnotation("proxy-ssl-*", func() {
 		ing := framework.NewSingleIngressWithTLS(host, "/", host, []string{host}, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
 
-		assertProxySSL(f, host, "", "DEFAULT", "TLSv1 TLSv1.1 TLSv1.2", "on", 2, "on")
+		assertProxySSL(f, host, "", "DEFAULT", "TLSv1.2", "on", 2, "on")
 
 		f.HTTPTestClient().
 			GET("/").
@@ -105,7 +105,7 @@ var _ = framework.DescribeAnnotation("proxy-ssl-*", func() {
 		ing := framework.NewSingleIngressWithTLS(host, "/", host, []string{host}, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
 
-		assertProxySSL(f, host, "", "HIGH:!AES", "TLSv1 TLSv1.1 TLSv1.2", "off", 1, "")
+		assertProxySSL(f, host, "", "HIGH:!AES", "TLSv1.2", "off", 1, "")
 
 		f.HTTPTestClient().
 			GET("/").
@@ -171,7 +171,7 @@ var _ = framework.DescribeAnnotation("proxy-ssl-*", func() {
 		wlValue := "true"
 		f.UpdateNginxConfigMapData(wlKey, wlValue)
 
-		assertProxySSL(f, host, secretName, "DEFAULT", "TLSv1 TLSv1.1 TLSv1.2", "on", 1, "on")
+		assertProxySSL(f, host, secretName, "DEFAULT", "TLSv1.2", "on", 1, "on")
 
 		f.WaitForNginxCustomConfiguration("## start server proxyssl.com", "location ", func(server string) bool {
 			return (!strings.Contains(server, "proxy_ssl_trusted_certificate") &&

From 8f4f15f8e38ee8b4e53819f34034f2b423609283 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 29 May 2024 13:11:45 +0530
Subject: [PATCH 1284/1641] added multiplecontrollers-howto to faq (#11389)

---
 docs/faq.md                          | 60 +++++++++++++++++++++++++++-
 docs/user-guide/k8s-122-migration.md | 51 -----------------------
 2 files changed, 59 insertions(+), 52 deletions(-)

diff --git a/docs/faq.md b/docs/faq.md
index a210c221b..bd1d26718 100644
--- a/docs/faq.md
+++ b/docs/faq.md
@@ -1,6 +1,64 @@
 
 # FAQ
 
+## How can I easily install multiple instances of the ingress-nginx controller in the same cluster?
+
+You can install them in different namespaces.
+
+- Create a new namespace
+
+  ```
+  kubectl create namespace ingress-nginx-2
+  ```
+
+- Use Helm to install the additional instance of the ingress controller
+- Ensure you have Helm working (refer to the [Helm documentation](https://helm.sh/docs/))
+- We have to assume that you have the helm repo for the ingress-nginx controller already added to your Helm config.
+  But, if you have not added the helm repo then you can do this to add the repo to your helm config;
+
+  ```
+  helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx
+  ```
+
+- Make sure you have updated the helm repo data;
+
+  ```
+  helm repo update
+  ```
+
+- Now, install an additional instance of the ingress-nginx controller like this:
+
+  ```
+  helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
+  --namespace ingress-nginx-2 \
+  --set controller.ingressClassResource.name=nginx-two \
+  --set controller.ingressClass=nginx-two \
+  --set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
+  --set controller.ingressClassResource.enabled=true \
+  --set controller.ingressClassByName=true
+  ```
+
+If you need to install yet another instance, then repeat the procedure to create a new namespace,
+change the values such as names & namespaces (for example from "-2" to "-3"), or anything else that meets your needs.
+
+Note that `controller.ingressClassResource.name` and `controller.ingressClass` have to be set correctly.
+The first is to create the IngressClass object and the other is to modify the deployment of the actual ingress controller pod.
+
+### I can't use multiple namespaces, what should I do?
+
+If you need to install all instances in the same namespace, then you need to specify a different **election id**, like this:
+
+```
+helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
+--namespace kube-system \
+--set controller.electionID=nginx-two-leader \
+--set controller.ingressClassResource.name=nginx-two \
+--set controller.ingressClass=nginx-two \
+--set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
+--set controller.ingressClassResource.enabled=true \
+--set controller.ingressClassByName=true
+```
+
 ## Retaining Client IPAddress
 
 Please read [Retain Client IPAddress Guide here](./user-guide/retaining-client-ipaddress.md).
@@ -11,7 +69,7 @@ If you are using Ingress objects in your cluster (running Kubernetes older than
 version 1.22), and you plan to upgrade your Kubernetes version to K8S 1.22 or
 above, then please read [the migration guide here](./user-guide/k8s-122-migration.md).
 
-## Validation Of __`path`__
+## Validation Of **`path`**
 
 - For improving security and also following desired standards on Kubernetes API
 spec, the next release, scheduled for v1.8.0, will include a new & optional
diff --git a/docs/user-guide/k8s-122-migration.md b/docs/user-guide/k8s-122-migration.md
index 9a1ca081d..0880f020e 100644
--- a/docs/user-guide/k8s-122-migration.md
+++ b/docs/user-guide/k8s-122-migration.md
@@ -192,54 +192,3 @@ Bear in mind that if you start Ingress-Nginx B with the command line argument `-
 It is highly likely that you will also see the name of the ingress resource in the same error message.
 This error message has been observed on use the deprecated annotation (`kubernetes.io/ingress.class`) in an Ingress resource manifest.
 It is recommended to use the `.spec.ingressClassName` field of the Ingress resource, to specify the name of the IngressClass of the Ingress you are defining.
-
-## How can I easily install multiple instances of the ingress-nginx controller in the same cluster?
-
-You can install them in different namespaces.
-
-- Create a new namespace
-  ```
-  kubectl create namespace ingress-nginx-2
-  ```
-- Use Helm to install the additional instance of the ingress controller
-- Ensure you have Helm working (refer to the [Helm documentation](https://helm.sh/docs/))
-- We have to assume that you have the helm repo for the ingress-nginx controller already added to your Helm config.
-  But, if you have not added the helm repo then you can do this to add the repo to your helm config;
-  ```
-  helm repo add ingress-nginx https://kubernetes.github.io/ingress-nginx
-  ```
-- Make sure you have updated the helm repo data;
-  ```
-  helm repo update
-  ```
-- Now, install an additional instance of the ingress-nginx controller like this:
-  ```
-  helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
-  --namespace ingress-nginx-2 \
-  --set controller.ingressClassResource.name=nginx-two \
-  --set controller.ingressClass=nginx-two \
-  --set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
-  --set controller.ingressClassResource.enabled=true \
-  --set controller.ingressClassByName=true
-  ```
-
-If you need to install yet another instance, then repeat the procedure to create a new namespace,
-change the values such as names & namespaces (for example from "-2" to "-3"), or anything else that meets your needs.
-
-Note that `controller.ingressClassResource.name` and `controller.ingressClass` have to be set correctly.
-The first is to create the IngressClass object and the other is to modify the deployment of the actual ingress controller pod.
-
-### I can't use multiple namespaces, what should I do?
-
-If you need to install all instances in the same namespace, then you need to specify a different **election id**, like this:
-
-```
-helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
---namespace kube-system \
---set controller.electionID=nginx-two-leader \
---set controller.ingressClassResource.name=nginx-two \
---set controller.ingressClass=nginx-two \
---set controller.ingressClassResource.controllerValue="example.com/ingress-nginx-2" \
---set controller.ingressClassResource.enabled=true \
---set controller.ingressClassByName=true
-```

From 5fea717bdbf8dd7417b8e3743cca41319dc31bb3 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 29 May 2024 13:54:22 +0530
Subject: [PATCH 1285/1641] added info for aws helm install (#11390)

---
 docs/deploy/index.md | 125 ++++++++++++++++++++++++-------------------
 1 file changed, 71 insertions(+), 54 deletions(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 7232b6ffd..70bd48f4f 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -6,10 +6,10 @@ There are multiple ways to install the Ingress-Nginx Controller:
 - with `kubectl apply`, using YAML manifests;
 - with specific addons (e.g. for [minikube](#minikube) or [MicroK8s](#microk8s)).
 
-On most Kubernetes clusters, the ingress controller will work without requiring any extra configuration. If you want to 
-get started as fast as possible, you can check the [quick start](#quick-start) instructions. However, in many 
-environments, you can improve the performance or get better logs by enabling extra features. We recommend that you 
-check the [environment-specific instructions](#environment-specific-instructions) for details about optimizing the 
+On most Kubernetes clusters, the ingress controller will work without requiring any extra configuration. If you want to
+get started as fast as possible, you can check the [quick start](#quick-start) instructions. However, in many
+environments, you can improve the performance or get better logs by enabling extra features. We recommend that you
+check the [environment-specific instructions](#environment-specific-instructions) for details about optimizing the
 ingress controller for your particular environment or cloud provider.
 
 ## Contents
@@ -72,7 +72,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 ```
 
 !!! info
-    The YAML manifest in the command above was generated with `helm template`, so you will end up with almost the same 
+    The YAML manifest in the command above was generated with `helm template`, so you will end up with almost the same
     resources as if you had used Helm to install the controller.
 
 !!! attention
@@ -83,6 +83,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 ### Firewall configuration
 
 To check which ports are used by your installation of ingress-nginx, look at the output of `kubectl -n ingress-nginx get pod -o yaml`. In general, you need:
+
 - Port 8443 open between all hosts on which the kubernetes nodes are running. This is used for the ingress-nginx [admission controller](https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/).
 - Port 80 (for HTTP) and/or 443 (for HTTPS) open to the public on the kubernetes nodes to which the DNS of your apps are pointing.
 
@@ -94,7 +95,7 @@ A few pods should start in the `ingress-nginx` namespace:
 kubectl get pods --namespace=ingress-nginx
 ```
 
-After a while, they should all be running. The following command will wait for the ingress controller pod to be up, 
+After a while, they should all be running. The following command will wait for the ingress controller pod to be up,
 running, and ready:
 
 ```console
@@ -104,7 +105,6 @@ kubectl wait --namespace ingress-nginx \
   --timeout=120s
 ```
 
-
 ### Local testing
 
 Let's create a simple web server and the associated service:
@@ -135,6 +135,7 @@ kubectl port-forward --namespace=ingress-nginx service/ingress-nginx-controller
   [This issue](https://github.com/kubernetes/ingress-nginx/issues/10014#issuecomment-1567791549described) shows a typical DNS problem and its solution.
 
 At this point, you can access your deployment using curl ;
+
 ```console
 curl --resolve demo.localdev.me:8080:127.0.0.1 http://demo.localdev.me:8080
 ```
@@ -143,7 +144,7 @@ You should see a HTML response containing text like **"It works!"**.
 
 ### Online testing
 
-If your Kubernetes cluster is a "real" cluster that supports services of type `LoadBalancer`, it will have allocated an 
+If your Kubernetes cluster is a "real" cluster that supports services of type `LoadBalancer`, it will have allocated an
 external IP address or FQDN to the ingress controller.
 
 You can see that IP address or FQDN with the following command:
@@ -152,10 +153,10 @@ You can see that IP address or FQDN with the following command:
 kubectl get service ingress-nginx-controller --namespace=ingress-nginx
 ```
 
-It will be the `EXTERNAL-IP` field. If that field shows `<pending>`, this means that your Kubernetes cluster wasn't 
+It will be the `EXTERNAL-IP` field. If that field shows `<pending>`, this means that your Kubernetes cluster wasn't
 able to provision the load balancer (generally, this is because it doesn't support services of type `LoadBalancer`).
 
-Once you have the external IP address (or FQDN), set up a DNS record pointing to it. Then you can create an ingress 
+Once you have the external IP address (or FQDN), set up a DNS record pointing to it. Then you can create an ingress
 resource. The following example assumes that you have set up a DNS record for `www.demo.io`:
 
 ```console
@@ -164,13 +165,13 @@ kubectl create ingress demo --class=nginx \
 ```
 
 Alternatively, the above command can be rewritten as follows for the ```--rule``` command and below.
+
 ```console
 kubectl create ingress demo --class=nginx \
   --rule www.demo.io/=demo:80
 ```
 
-
-You should then be able to see the "It works!" page when you connect to http://www.demo.io/. Congratulations, 
+You should then be able to see the "It works!" page when you connect to <http://www.demo.io/>. Congratulations,
 you are serving a public website hosted on a Kubernetes cluster! 🎉
 
 ## Environment-specific instructions
@@ -202,19 +203,19 @@ Kubernetes is available in Docker Desktop:
 - Mac, from [version 18.06.0-ce](https://docs.docker.com/docker-for-mac/release-notes/#stable-releases-of-2018)
 - Windows, from [version 18.06.0-ce](https://docs.docker.com/docker-for-windows/release-notes/#docker-community-edition-18060-ce-win70-2018-07-25)
 
-First, make sure that Kubernetes is enabled in the Docker settings. The command `kubectl get nodes` should show a 
+First, make sure that Kubernetes is enabled in the Docker settings. The command `kubectl get nodes` should show a
 single node called `docker-desktop`.
 
 The ingress controller can be installed on Docker Desktop using the default [quick start](#quick-start) instructions.
 
-On most systems, if you don't have any other service of type `LoadBalancer` bound to port 80, the ingress controller 
-will be assigned the `EXTERNAL-IP` of `localhost`, which means that it will be reachable on localhost:80. If that 
-doesn't work, you might have to fall back to the `kubectl port-forward` method described in the 
+On most systems, if you don't have any other service of type `LoadBalancer` bound to port 80, the ingress controller
+will be assigned the `EXTERNAL-IP` of `localhost`, which means that it will be reachable on localhost:80. If that
+doesn't work, you might have to fall back to the `kubectl port-forward` method described in the
 [local testing section](#local-testing).
 
 #### Rancher Desktop
 
-Rancher Desktop provides Kubernetes and Container Management on the desktop. Kubernetes is enabled by default in Rancher Desktop. 
+Rancher Desktop provides Kubernetes and Container Management on the desktop. Kubernetes is enabled by default in Rancher Desktop.
 
 Rancher Desktop uses K3s under the hood, which in turn uses Traefik as the default ingress controller for the Kubernetes cluster. To use Ingress-Nginx Controller in place of the default Traefik, disable Traefik from Preference > Kubernetes menu.
 
@@ -222,18 +223,18 @@ Once traefik is disabled, the Ingress-Nginx Controller can be installed on Ranch
 
 ### Cloud deployments
 
-If the load balancers of your cloud provider do active healthchecks on their backends (most do), you can change the 
-`externalTrafficPolicy` of the ingress controller Service to `Local` (instead of the default `Cluster`) to save an 
-extra hop in some cases. If you're installing with Helm, this can be done by adding 
+If the load balancers of your cloud provider do active healthchecks on their backends (most do), you can change the
+`externalTrafficPolicy` of the ingress controller Service to `Local` (instead of the default `Cluster`) to save an
+extra hop in some cases. If you're installing with Helm, this can be done by adding
 `--set controller.service.externalTrafficPolicy=Local` to the `helm install` or `helm upgrade` command.
 
-Furthermore, if the load balancers of your cloud provider support the PROXY protocol, you can enable it, and it will 
-let the ingress controller see the real IP address of the clients. Otherwise, it will generally see the IP address of 
-the upstream load balancer. This must be done both in the ingress controller 
-(with e.g. `--set controller.config.use-proxy-protocol=true`) and in the cloud provider's load balancer configuration 
+Furthermore, if the load balancers of your cloud provider support the PROXY protocol, you can enable it, and it will
+let the ingress controller see the real IP address of the clients. Otherwise, it will generally see the IP address of
+the upstream load balancer. This must be done both in the ingress controller
+(with e.g. `--set controller.config.use-proxy-protocol=true`) and in the cloud provider's load balancer configuration
 to function correctly.
 
-In the following sections, we provide YAML manifests that enable these options when possible, using the specific 
+In the following sections, we provide YAML manifests that enable these options when possible, using the specific
 options of various cloud providers.
 
 #### AWS
@@ -242,10 +243,22 @@ In AWS, we use a Network load balancer (NLB) to expose the Ingress-Nginx Control
 
 !!! info
     The provided templates illustrate the setup for legacy in-tree service load balancer for AWS NLB.
-    AWS provides the documentation on how to use 
-    [Network load balancing on Amazon EKS](https://docs.aws.amazon.com/eks/latest/userguide/network-load-balancing.html) 
+    AWS provides the documentation on how to use
+    [Network load balancing on Amazon EKS](https://docs.aws.amazon.com/eks/latest/userguide/network-load-balancing.html)
     with [AWS Load Balancer Controller](https://github.com/kubernetes-sigs/aws-load-balancer-controller).
 
+!!! helm install on AWS
+    There have been too many attempts at using helm to install the controller on AWS recently.
+    The ingress-nginx-controller helm-chart is generic and not aimed at installing on AWS on any other infra provider.
+    There are annotations and configurations that are applicable only to AWS.
+    Please run `helm template` and compare with the static yaml manifests you see below.
+    A user is expected to use annotations for
+    (a) internal/external
+    (b) type - nlb
+    (c) sqcurity-groups
+    (d) and other such requirements
+    during their ``helm install`` process.
+
 ##### Network Load Balancer (NLB)
 
 ```console
@@ -254,7 +267,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 
 ##### TLS termination in AWS Load Balancer (NLB)
 
-By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer. 
+By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer.
 This section explains how to do that on AWS using an NLB.
 
 1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
@@ -264,32 +277,35 @@ This section explains how to do that on AWS using an NLB.
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
+
    ```
    proxy-real-ip-cidr: XXX.XXX.XXX/XX
    ```
 
 3. Change the AWS Certificate Manager (ACM) ID as well:
+
    ```
    arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX
    ```
 
 4. Deploy the manifest:
+
    ```console
    kubectl apply -f deploy.yaml
    ```
 
 ##### NLB Idle Timeouts
 
-Idle timeout value for TCP flows is 350 seconds and 
+Idle timeout value for TCP flows is 350 seconds and
 [cannot be modified](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/network-load-balancers.html#connection-idle-timeout).
 
-For this reason, you need to ensure the 
-[keepalive_timeout](https://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_timeout) 
+For this reason, you need to ensure the
+[keepalive_timeout](https://nginx.org/en/docs/http/ngx_http_core_module.html#keepalive_timeout)
 value is configured less than 350 seconds to work as expected.
 
 By default, NGINX `keepalive_timeout` is set to `75s`.
 
-More information with regard to timeouts can be found in the 
+More information with regard to timeouts can be found in the
 [official AWS documentation](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/network-load-balancers.html#connection-idle-timeout)
 
 #### GCE-GKE
@@ -304,15 +320,14 @@ kubectl create clusterrolebinding cluster-admin-binding \
 
 Then, the ingress controller can be installed like this:
 
-
 ```console
 kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
-    For private clusters, you will need to either add a firewall rule that allows master nodes access to 
-    port `8443/tcp` on worker nodes, or change the existing rule that allows access to port `80/tcp`, `443/tcp` and 
-    `10254/tcp` to also allow access to port `8443/tcp`. More information can be found in the 
+    For private clusters, you will need to either add a firewall rule that allows master nodes access to
+    port `8443/tcp` on worker nodes, or change the existing rule that allows access to port `80/tcp`, `443/tcp` and
+    `10254/tcp` to also allow access to port `8443/tcp`. More information can be found in the
     [Official GCP Documentation](https://cloud.google.com/load-balancing/docs/tcp/setting-up-tcp#config-hc-firewall).
 
     See the [GKE documentation](https://cloud.google.com/kubernetes-engine/docs/how-to/private-clusters#add_firewall_rules) 
@@ -333,8 +348,8 @@ More information with regard to Azure annotations for ingress controller can be
 ```console
 kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/do/deploy.yaml
 ```
-- By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
+- By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
 
 #### Scaleway
 
@@ -348,7 +363,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/deploy/static/provider/exoscale/deploy.yaml
 ```
 
-The full list of annotations supported by Exoscale is available in the Exoscale Cloud Controller Manager 
+The full list of annotations supported by Exoscale is available in the Exoscale Cloud Controller Manager
 [documentation](https://github.com/exoscale/exoscale-cloud-controller-manager/blob/master/docs/service-loadbalancer.md).
 
 #### Oracle Cloud Infrastructure
@@ -357,8 +372,8 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
-A 
-[complete list of available annotations for Oracle Cloud Infrastructure](https://github.com/oracle/oci-cloud-controller-manager/blob/master/docs/load-balancer-annotations.md) 
+A
+[complete list of available annotations for Oracle Cloud Infrastructure](https://github.com/oracle/oci-cloud-controller-manager/blob/master/docs/load-balancer-annotations.md)
 can be found in the [OCI Cloud Controller Manager](https://github.com/oracle/oci-cloud-controller-manager) documentation.
 
 #### OVHcloud
@@ -373,11 +388,11 @@ You can find the [complete tutorial](https://docs.ovh.com/gb/en/kubernetes/insta
 
 ### Bare metal clusters
 
-This section is applicable to Kubernetes clusters deployed on bare metal servers, as well as "raw" VMs where Kubernetes 
+This section is applicable to Kubernetes clusters deployed on bare metal servers, as well as "raw" VMs where Kubernetes
 was installed manually, using generic Linux distros (like CentOS, Ubuntu...)
 
-For quick testing, you can use a 
-[NodePort](https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport). 
+For quick testing, you can use a
+[NodePort](https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport).
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
@@ -401,20 +416,20 @@ kubectl exec $POD_NAME -n $POD_NAMESPACE -- /nginx-ingress-controller --version
 
 ### Scope
 
-By default, the controller watches Ingress objects from all namespaces. If you want to change this behavior, 
-use the flag `--watch-namespace` or check the Helm chart value `controller.scope` to limit the controller to a single 
+By default, the controller watches Ingress objects from all namespaces. If you want to change this behavior,
+use the flag `--watch-namespace` or check the Helm chart value `controller.scope` to limit the controller to a single
 namespace.
 
-See also 
-[“How to easily install multiple instances of the Ingress NGINX controller in the same cluster”](https://kubernetes.github.io/ingress-nginx/#how-to-easily-install-multiple-instances-of-the-ingress-nginx-controller-in-the-same-cluster) 
+See also
+[“How to easily install multiple instances of the Ingress NGINX controller in the same cluster”](https://kubernetes.github.io/ingress-nginx/#how-to-easily-install-multiple-instances-of-the-ingress-nginx-controller-in-the-same-cluster)
 for more details.
 
 ### Webhook network access
 
 !!! warning
     The controller uses an [admission webhook](https://kubernetes.io/docs/reference/access-authn-authz/extensible-admission-controllers/)
-    to validate Ingress definitions. Make sure that you don't have 
-    [Network policies](https://kubernetes.io/docs/concepts/services-networking/network-policies/) 
+    to validate Ingress definitions. Make sure that you don't have
+    [Network policies](https://kubernetes.io/docs/concepts/services-networking/network-policies/)
     or additional firewalls preventing connections from the API server to the `ingress-nginx-controller-admission` service.
 
 ### Certificate generation
@@ -435,22 +450,24 @@ You can wait until it is ready to run the next command:
 
 ### Running on Kubernetes versions older than 1.19
 
-Ingress resources evolved over time. They started with `apiVersion: extensions/v1beta1`, 
+Ingress resources evolved over time. They started with `apiVersion: extensions/v1beta1`,
 then moved to `apiVersion: networking.k8s.io/v1beta1` and more recently to `apiVersion: networking.k8s.io/v1`.
 
 Here is how these Ingress versions are supported in Kubernetes:
+
 - before Kubernetes 1.19, only `v1beta1` Ingress resources are supported
 - from Kubernetes 1.19 to 1.21, both `v1beta1` and `v1` Ingress resources are supported
 - in Kubernetes 1.22 and above, only `v1` Ingress resources are supported
 
 And here is how these Ingress versions are supported in Ingress-Nginx Controller:
+
 - before version 1.0, only `v1beta1` Ingress resources are supported
 - in version 1.0 and above, only `v1` Ingress resources are
 
-As a result, if you're running Kubernetes 1.19 or later, you should be able to use the latest version of the NGINX 
-Ingress Controller; but if you're using an old version of Kubernetes (1.18 or earlier) you will have to use version 0.X 
+As a result, if you're running Kubernetes 1.19 or later, you should be able to use the latest version of the NGINX
+Ingress Controller; but if you're using an old version of Kubernetes (1.18 or earlier) you will have to use version 0.X
 of the Ingress-Nginx Controller (e.g. version 0.49).
 
-The Helm chart of the Ingress-Nginx Controller switched to version 1 in version 4 of the chart. In other words, if 
-you're running Kubernetes 1.19 or earlier, you should use version 3.X of the chart (this can be done by adding 
+The Helm chart of the Ingress-Nginx Controller switched to version 1 in version 4 of the chart. In other words, if
+you're running Kubernetes 1.19 or earlier, you should use version 3.X of the chart (this can be done by adding
 `--version='<4'` to the `helm install` command ).

From f22d5b90e870d09b0bf0f8acde11e09dba681d1f Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 29 May 2024 17:34:03 +0530
Subject: [PATCH 1286/1641] edited helm-install tips (#11393)

---
 docs/deploy/index.md | 37 ++++++++++++++++++++++++++-----------
 1 file changed, 26 insertions(+), 11 deletions(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 70bd48f4f..1cc01ba54 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -65,6 +65,32 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx
 ```
 
+!!! helm install on AWS/GCP/Azure/Other providers
+    There have been too many attempts at using helm to install the controller on the cloud infra like AWS/GCP/Azure/Other.
+    The ingress-nginx-controller helm-chart is a generic install out of the box.
+    The default set of helm values are not configured for installing on any infra provider.
+    The annotations that are applicable to the cloud provider must be customized by the users.
+    Link to AWS LB Constroller https://kubernetes-sigs.github.io/aws-load-balancer-controller/v2.2/guide/service/annotations/
+    Examples of some annotations needed for the service resource of --type LoadBalancer on AWS are below
+
+      annotations:
+        service.beta.kubernetes.io/aws-load-balancer-scheme: "internet-facing"
+        service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
+        service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
+        service.beta.kubernetes.io/aws-load-balancer-nlb-target-type: "ip"
+        service.beta.kubernetes.io/aws-load-balancer-type: nlb
+        service.beta.kubernetes.io/aws-load-balancer-manage-backend-security-group-rules: "true"
+        service.beta.kubernetes.io/aws-load-balancer-access-log-enabled: "true"
+        service.beta.kubernetes.io/aws-load-balancer-security-groups: "sg-something1 sg-something2"
+        service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-name: "somebucket"
+        service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-prefix: "ingress-nginx"
+        service.beta.kubernetes.io/aws-load-balancer-access-log-emit-interval: "5"
+
+
+
+
+
+
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
@@ -247,17 +273,6 @@ In AWS, we use a Network load balancer (NLB) to expose the Ingress-Nginx Control
     [Network load balancing on Amazon EKS](https://docs.aws.amazon.com/eks/latest/userguide/network-load-balancing.html)
     with [AWS Load Balancer Controller](https://github.com/kubernetes-sigs/aws-load-balancer-controller).
 
-!!! helm install on AWS
-    There have been too many attempts at using helm to install the controller on AWS recently.
-    The ingress-nginx-controller helm-chart is generic and not aimed at installing on AWS on any other infra provider.
-    There are annotations and configurations that are applicable only to AWS.
-    Please run `helm template` and compare with the static yaml manifests you see below.
-    A user is expected to use annotations for
-    (a) internal/external
-    (b) type - nlb
-    (c) sqcurity-groups
-    (d) and other such requirements
-    during their ``helm install`` process.
 
 ##### Network Load Balancer (NLB)
 

From 1d3493018086ef6a1643686781a5d11707beed6d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?J=C3=A9r=C3=A9mie=20Tarot?= <silopolis@gmail.com>
Date: Wed, 29 May 2024 18:56:32 +0200
Subject: [PATCH 1287/1641] Fix helm install on cloud provider admonition block
 (#11394)

* Fix helm install on cloud provider admonition block

* Add missing admonition type.
* Format link to AWS LB controller.
* Add nested YAML code block for annotations example
* Add a couple of line breaks for breathing and structure

* Fix admonition block title

* Another try

* Should be nice now
---
 docs/deploy/index.md | 19 ++++++-------------
 1 file changed, 6 insertions(+), 13 deletions(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 1cc01ba54..d8cc6f875 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -65,14 +65,11 @@ It will install the controller in the `ingress-nginx` namespace, creating that n
 helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx
 ```
 
-!!! helm install on AWS/GCP/Azure/Other providers
-    There have been too many attempts at using helm to install the controller on the cloud infra like AWS/GCP/Azure/Other.
-    The ingress-nginx-controller helm-chart is a generic install out of the box.
-    The default set of helm values are not configured for installing on any infra provider.
-    The annotations that are applicable to the cloud provider must be customized by the users.
-    Link to AWS LB Constroller https://kubernetes-sigs.github.io/aws-load-balancer-controller/v2.2/guide/service/annotations/
-    Examples of some annotations needed for the service resource of --type LoadBalancer on AWS are below
-
+!!! attention "Helm install on AWS/GCP/Azure/Other providers"
+    The *ingress-nginx-controller helm-chart is a generic install out of the box*. The default set of helm values is **not** configured for installation on any infra provider. The annotations that are applicable to the cloud provider must be customized by the users.<br/>
+    See [AWS LB Constroller](https://kubernetes-sigs.github.io/aws-load-balancer-controller/v2.2/guide/service/annotations/).<br/>
+    Examples of some annotations needed for the service resource of `--type LoadBalancer` on AWS are below:
+    ```yaml
       annotations:
         service.beta.kubernetes.io/aws-load-balancer-scheme: "internet-facing"
         service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
@@ -85,11 +82,7 @@ helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx
         service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-name: "somebucket"
         service.beta.kubernetes.io/aws-load-balancer-access-log-s3-bucket-prefix: "ingress-nginx"
         service.beta.kubernetes.io/aws-load-balancer-access-log-emit-interval: "5"
-
-
-
-
-
+    ```
 
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 

From 57d96128b10f8d24308f7055d8f5ed9b79903ffc Mon Sep 17 00:00:00 2001
From: Andrea Scarpino <andrea@scarpino.dev>
Date: Thu, 30 May 2024 09:39:08 +0000
Subject: [PATCH 1288/1641] Rename variable to fix typo (#11395)

---
 internal/ingress/controller/config/config.go     | 6 +++---
 internal/ingress/controller/template/template.go | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 6349d6006..5e0ca2296 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -744,9 +744,9 @@ type Configuration struct {
 	// simultaneous connections.
 	GlobalRateLimitMemcachedPoolSize int `json:"global-rate-limit-memcached-pool-size"`
 
-	// GlobalRateLimitStatucCode determines the HTTP status code to return
+	// GlobalRateLimitStatusCode determines the HTTP status code to return
 	// when limit is exceeding during global rate limiting.
-	GlobalRateLimitStatucCode int `json:"global-rate-limit-status-code"`
+	GlobalRateLimitStatusCode int `json:"global-rate-limit-status-code"`
 
 	// DebugConnections Enables debugging log for selected client connections
 	// http://nginx.org/en/docs/ngx_core_module.html#debug_connection
@@ -927,7 +927,7 @@ func NewDefault() Configuration {
 		GlobalRateLimitMemcachedConnectTimeout: 50,
 		GlobalRateLimitMemcachedMaxIdleTimeout: 10000,
 		GlobalRateLimitMemcachedPoolSize:       50,
-		GlobalRateLimitStatucCode:              429,
+		GlobalRateLimitStatusCode:              429,
 		DebugConnections:                       []string{},
 		StrictValidatePathType:                 false, // TODO: This will be true in future releases
 		GRPCBufferSizeKb:                       0,
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 7cd6a0604..c70406cf0 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -413,7 +413,7 @@ func configForLua(input interface{}) string {
 		all.Cfg.GlobalRateLimitMemcachedConnectTimeout,
 		all.Cfg.GlobalRateLimitMemcachedMaxIdleTimeout,
 		all.Cfg.GlobalRateLimitMemcachedPoolSize,
-		all.Cfg.GlobalRateLimitStatucCode,
+		all.Cfg.GlobalRateLimitStatusCode,
 	)
 }
 

From a02f5d2c40a4b53279741e47ba0da8e0ea921566 Mon Sep 17 00:00:00 2001
From: Roberto Devesa <15369573+Roberdvs@users.noreply.github.com>
Date: Sun, 2 Jun 2024 10:26:37 +0200
Subject: [PATCH 1289/1641] Adapt dashboards for Grafana 11 compatibility
 (#11399)

---
 deploy/grafana/dashboards/README.md           |    4 +-
 deploy/grafana/dashboards/nginx.json          | 2646 ++++++++++-------
 .../request-handling-performance.json         | 1193 ++++----
 3 files changed, 2157 insertions(+), 1686 deletions(-)

diff --git a/deploy/grafana/dashboards/README.md b/deploy/grafana/dashboards/README.md
index e16180c3b..fc1e35406 100644
--- a/deploy/grafana/dashboards/README.md
+++ b/deploy/grafana/dashboards/README.md
@@ -19,7 +19,7 @@ This folder contains two dashboards that you can import.
 
 ### Requirements
 
-- **Grafana v5.2.0** (or newer)
+- **Grafana v10.4.3** (or newer)
 
 ## 2. Request Handling Performance
 
@@ -36,4 +36,4 @@ This folder contains two dashboards that you can import.
 
 ### Requirements
 
-- **Grafana v6.6.0** (or newer)
+- **Grafana v10.4.3** (or newer)
diff --git a/deploy/grafana/dashboards/nginx.json b/deploy/grafana/dashboards/nginx.json
index 864d1dace..5ebc4ae6c 100644
--- a/deploy/grafana/dashboards/nginx.json
+++ b/deploy/grafana/dashboards/nginx.json
@@ -9,31 +9,53 @@
       "pluginName": "Prometheus"
     }
   ],
+  "__elements": {},
   "__requires": [
     {
       "type": "grafana",
       "id": "grafana",
       "name": "Grafana",
-      "version": "5.2.1"
+      "version": "10.4.3"
+    },
+    {
+      "type": "panel",
+      "id": "heatmap",
+      "name": "Heatmap",
+      "version": ""
     },
     {
       "type": "datasource",
       "id": "prometheus",
       "name": "Prometheus",
-      "version": "5.0.0"
+      "version": "1.0.0"
     },
     {
       "type": "panel",
-      "id": "singlestat",
-      "name": "Singlestat",
-      "version": "5.0.0"
+      "id": "stat",
+      "name": "Stat",
+      "version": ""
+    },
+    {
+      "type": "panel",
+      "id": "table",
+      "name": "Table",
+      "version": ""
+    },
+    {
+      "type": "panel",
+      "id": "timeseries",
+      "name": "Time series",
+      "version": ""
     }
   ],
   "annotations": {
     "list": [
       {
         "builtIn": 1,
-        "datasource": "-- Grafana --",
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
         "enable": true,
         "hide": true,
         "iconColor": "rgba(0, 211, 255, 1)",
@@ -41,7 +63,10 @@
         "type": "dashboard"
       },
       {
-        "datasource": "${DS_PROMETHEUS}",
+        "datasource": {
+          "type": "prometheus",
+          "uid": "${DS_PROMETHEUS}"
+        },
         "enable": true,
         "expr": "sum(changes(nginx_ingress_controller_config_last_reload_successful_timestamp_seconds{instance!=\"unknown\",controller_class=~\"$controller_class\",namespace=~\"$namespace\"}[30s])) by (controller_class)",
         "hide": false,
@@ -58,72 +83,75 @@
     ]
   },
   "editable": true,
-  "gnetId": null,
+  "fiscalYearStartMonth": 0,
   "graphTooltip": 0,
-  "iteration": 1534359654832,
+  "id": null,
   "links": [],
   "panels": [
     {
-      "cacheTimeout": null,
-      "colorBackground": false,
-      "colorValue": false,
-      "colors": [
-        "rgba(245, 54, 54, 0.9)",
-        "rgba(237, 129, 40, 0.89)",
-        "rgba(50, 172, 45, 0.97)"
-      ],
-      "datasource": "${DS_PROMETHEUS}",
-      "format": "ops",
-      "gauge": {
-        "maxValue": 100,
-        "minValue": 0,
-        "show": false,
-        "thresholdLabels": false,
-        "thresholdMarkers": true
+      "datasource": {
+        "type": "prometheus",
+        "uid": "${DS_PROMETHEUS}"
       },
-      "gridPos": {
-        "h": 3,
-        "w": 6,
-        "x": 0,
-        "y": 0
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "fixedColor": "rgb(31, 120, 193)",
+            "mode": "fixed"
+          },
+          "mappings": [
+            {
+              "options": {
+                "match": "null",
+                "result": {
+                  "text": "N/A"
+                }
+              },
+              "type": "special"
+            }
+          ],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "ops"
+        },
+        "overrides": []
       },
       "id": 20,
-      "interval": null,
-      "links": [],
-      "mappingType": 1,
-      "mappingTypes": [
-        {
-          "name": "value to text",
-          "value": 1
-        },
-        {
-          "name": "range to text",
-          "value": 2
-        }
-      ],
       "maxDataPoints": 100,
-      "nullPointMode": "connected",
-      "nullText": null,
-      "postfix": "",
-      "postfixFontSize": "50%",
-      "prefix": "",
-      "prefixFontSize": "50%",
-      "rangeMaps": [
-        {
-          "from": "null",
-          "text": "N/A",
-          "to": "null"
-        }
-      ],
-      "sparkline": {
-        "fillColor": "rgba(31, 118, 189, 0.18)",
-        "full": true,
-        "lineColor": "rgb(31, 120, 193)",
-        "show": true
+      "options": {
+        "colorMode": "none",
+        "graphMode": "area",
+        "justifyMode": "auto",
+        "orientation": "horizontal",
+        "reduceOptions": {
+          "calcs": [
+            "mean"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "showPercentChange": false,
+        "textMode": "auto",
+        "wideLayout": true
       },
-      "tableColumn": "",
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "round(sum(irate(nginx_ingress_controller_requests{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",namespace=~\"$namespace\"}[2m])), 0.001)",
           "format": "time_series",
           "intervalFactor": 1,
@@ -131,37 +159,47 @@
           "step": 4
         }
       ],
-      "thresholds": "",
       "title": "Controller Request Volume",
-      "transparent": false,
-      "type": "singlestat",
-      "valueFontSize": "80%",
-      "valueMaps": [
-        {
-          "op": "=",
-          "text": "N/A",
-          "value": "null"
-        }
-      ],
-      "valueName": "avg"
+      "type": "stat"
     },
     {
-      "cacheTimeout": null,
-      "colorBackground": false,
-      "colorValue": false,
-      "colors": [
-        "rgba(245, 54, 54, 0.9)",
-        "rgba(237, 129, 40, 0.89)",
-        "rgba(50, 172, 45, 0.97)"
-      ],
-      "datasource": "${DS_PROMETHEUS}",
-      "format": "none",
-      "gauge": {
-        "maxValue": 100,
-        "minValue": 0,
-        "show": false,
-        "thresholdLabels": false,
-        "thresholdMarkers": true
+      "datasource": {
+        "type": "prometheus",
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "fixedColor": "rgb(31, 120, 193)",
+            "mode": "fixed"
+          },
+          "mappings": [
+            {
+              "options": {
+                "match": "null",
+                "result": {
+                  "text": "N/A"
+                }
+              },
+              "type": "special"
+            }
+          ],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "none"
+        },
+        "overrides": []
       },
       "gridPos": {
         "h": 3,
@@ -170,42 +208,30 @@
         "y": 0
       },
       "id": 82,
-      "interval": null,
-      "links": [],
-      "mappingType": 1,
-      "mappingTypes": [
-        {
-          "name": "value to text",
-          "value": 1
-        },
-        {
-          "name": "range to text",
-          "value": 2
-        }
-      ],
       "maxDataPoints": 100,
-      "nullPointMode": "connected",
-      "nullText": null,
-      "postfix": "",
-      "postfixFontSize": "50%",
-      "prefix": "",
-      "prefixFontSize": "50%",
-      "rangeMaps": [
-        {
-          "from": "null",
-          "text": "N/A",
-          "to": "null"
-        }
-      ],
-      "sparkline": {
-        "fillColor": "rgba(31, 118, 189, 0.18)",
-        "full": true,
-        "lineColor": "rgb(31, 120, 193)",
-        "show": true
+      "options": {
+        "colorMode": "none",
+        "graphMode": "area",
+        "justifyMode": "auto",
+        "orientation": "horizontal",
+        "reduceOptions": {
+          "calcs": [
+            "mean"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "showPercentChange": false,
+        "textMode": "auto",
+        "wideLayout": true
       },
-      "tableColumn": "",
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "sum(avg_over_time(nginx_ingress_controller_nginx_process_connections{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",state=\"active\"}[2m]))",
           "format": "time_series",
           "instant": false,
@@ -214,37 +240,51 @@
           "step": 4
         }
       ],
-      "thresholds": "",
       "title": "Controller Connections",
-      "transparent": false,
-      "type": "singlestat",
-      "valueFontSize": "80%",
-      "valueMaps": [
-        {
-          "op": "=",
-          "text": "N/A",
-          "value": "null"
-        }
-      ],
-      "valueName": "avg"
+      "type": "stat"
     },
     {
-      "cacheTimeout": null,
-      "colorBackground": false,
-      "colorValue": false,
-      "colors": [
-        "rgba(245, 54, 54, 0.9)",
-        "rgba(237, 129, 40, 0.89)",
-        "rgba(50, 172, 45, 0.97)"
-      ],
-      "datasource": "${DS_PROMETHEUS}",
-      "format": "percentunit",
-      "gauge": {
-        "maxValue": 100,
-        "minValue": 80,
-        "show": false,
-        "thresholdLabels": false,
-        "thresholdMarkers": false
+      "datasource": {
+        "type": "prometheus",
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "fixedColor": "rgb(31, 120, 193)",
+            "mode": "fixed"
+          },
+          "mappings": [
+            {
+              "options": {
+                "match": "null",
+                "result": {
+                  "text": "N/A"
+                }
+              },
+              "type": "special"
+            }
+          ],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "rgba(245, 54, 54, 0.9)",
+                "value": null
+              },
+              {
+                "color": "rgba(237, 129, 40, 0.89)",
+                "value": 95
+              },
+              {
+                "color": "rgba(50, 172, 45, 0.97)",
+                "value": 99
+              }
+            ]
+          },
+          "unit": "percentunit"
+        },
+        "overrides": []
       },
       "gridPos": {
         "h": 3,
@@ -253,42 +293,30 @@
         "y": 0
       },
       "id": 21,
-      "interval": null,
-      "links": [],
-      "mappingType": 1,
-      "mappingTypes": [
-        {
-          "name": "value to text",
-          "value": 1
-        },
-        {
-          "name": "range to text",
-          "value": 2
-        }
-      ],
       "maxDataPoints": 100,
-      "nullPointMode": "connected",
-      "nullText": null,
-      "postfix": "",
-      "postfixFontSize": "50%",
-      "prefix": "",
-      "prefixFontSize": "50%",
-      "rangeMaps": [
-        {
-          "from": "null",
-          "text": "N/A",
-          "to": "null"
-        }
-      ],
-      "sparkline": {
-        "fillColor": "rgba(31, 118, 189, 0.18)",
-        "full": true,
-        "lineColor": "rgb(31, 120, 193)",
-        "show": true
+      "options": {
+        "colorMode": "none",
+        "graphMode": "area",
+        "justifyMode": "auto",
+        "orientation": "horizontal",
+        "reduceOptions": {
+          "calcs": [
+            "mean"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "showPercentChange": false,
+        "textMode": "auto",
+        "wideLayout": true
       },
-      "tableColumn": "",
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "sum(rate(nginx_ingress_controller_requests{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",namespace=~\"$namespace\",status!~\"[4-5].*\"}[2m])) / sum(rate(nginx_ingress_controller_requests{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",namespace=~\"$namespace\"}[2m]))",
           "format": "time_series",
           "intervalFactor": 1,
@@ -296,38 +324,48 @@
           "step": 4
         }
       ],
-      "thresholds": "95, 99, 99.5",
       "title": "Controller Success Rate (non-4|5xx responses)",
-      "transparent": false,
-      "type": "singlestat",
-      "valueFontSize": "80%",
-      "valueMaps": [
-        {
-          "op": "=",
-          "text": "N/A",
-          "value": "null"
-        }
-      ],
-      "valueName": "avg"
+      "type": "stat"
     },
     {
-      "cacheTimeout": null,
-      "colorBackground": false,
-      "colorValue": false,
-      "colors": [
-        "rgba(245, 54, 54, 0.9)",
-        "rgba(237, 129, 40, 0.89)",
-        "rgba(50, 172, 45, 0.97)"
-      ],
-      "datasource": "${DS_PROMETHEUS}",
-      "decimals": 0,
-      "format": "none",
-      "gauge": {
-        "maxValue": 100,
-        "minValue": 0,
-        "show": false,
-        "thresholdLabels": false,
-        "thresholdMarkers": true
+      "datasource": {
+        "type": "prometheus",
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "fixedColor": "rgb(31, 120, 193)",
+            "mode": "fixed"
+          },
+          "decimals": 0,
+          "mappings": [
+            {
+              "options": {
+                "match": "null",
+                "result": {
+                  "text": "N/A"
+                }
+              },
+              "type": "special"
+            }
+          ],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "none"
+        },
+        "overrides": []
       },
       "gridPos": {
         "h": 3,
@@ -336,42 +374,30 @@
         "y": 0
       },
       "id": 81,
-      "interval": null,
-      "links": [],
-      "mappingType": 1,
-      "mappingTypes": [
-        {
-          "name": "value to text",
-          "value": 1
-        },
-        {
-          "name": "range to text",
-          "value": 2
-        }
-      ],
       "maxDataPoints": 100,
-      "nullPointMode": "connected",
-      "nullText": null,
-      "postfix": "",
-      "postfixFontSize": "50%",
-      "prefix": "",
-      "prefixFontSize": "50%",
-      "rangeMaps": [
-        {
-          "from": "null",
-          "text": "N/A",
-          "to": "null"
-        }
-      ],
-      "sparkline": {
-        "fillColor": "rgba(31, 118, 189, 0.18)",
-        "full": true,
-        "lineColor": "rgb(31, 120, 193)",
-        "show": true
+      "options": {
+        "colorMode": "none",
+        "graphMode": "area",
+        "justifyMode": "auto",
+        "orientation": "horizontal",
+        "reduceOptions": {
+          "calcs": [
+            "sum"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "showPercentChange": false,
+        "textMode": "auto",
+        "wideLayout": true
       },
-      "tableColumn": "",
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "avg(irate(nginx_ingress_controller_success{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\"}[1m])) * 60",
           "format": "time_series",
           "instant": false,
@@ -380,38 +406,48 @@
           "step": 4
         }
       ],
-      "thresholds": "",
       "title": "Config Reloads",
-      "transparent": false,
-      "type": "singlestat",
-      "valueFontSize": "80%",
-      "valueMaps": [
-        {
-          "op": "=",
-          "text": "N/A",
-          "value": "null"
-        }
-      ],
-      "valueName": "total"
+      "type": "stat"
     },
     {
-      "cacheTimeout": null,
-      "colorBackground": false,
-      "colorValue": false,
-      "colors": [
-        "rgba(245, 54, 54, 0.9)",
-        "rgba(237, 129, 40, 0.89)",
-        "rgba(50, 172, 45, 0.97)"
-      ],
-      "datasource": "${DS_PROMETHEUS}",
-      "decimals": 0,
-      "format": "none",
-      "gauge": {
-        "maxValue": 100,
-        "minValue": 0,
-        "show": false,
-        "thresholdLabels": false,
-        "thresholdMarkers": true
+      "datasource": {
+        "type": "prometheus",
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "fixedColor": "rgb(31, 120, 193)",
+            "mode": "fixed"
+          },
+          "decimals": 0,
+          "mappings": [
+            {
+              "options": {
+                "match": "null",
+                "result": {
+                  "text": "N/A"
+                }
+              },
+              "type": "special"
+            }
+          ],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "none"
+        },
+        "overrides": []
       },
       "gridPos": {
         "h": 3,
@@ -420,42 +456,30 @@
         "y": 0
       },
       "id": 83,
-      "interval": null,
-      "links": [],
-      "mappingType": 1,
-      "mappingTypes": [
-        {
-          "name": "value to text",
-          "value": 1
-        },
-        {
-          "name": "range to text",
-          "value": 2
-        }
-      ],
       "maxDataPoints": 100,
-      "nullPointMode": "connected",
-      "nullText": null,
-      "postfix": "",
-      "postfixFontSize": "50%",
-      "prefix": "",
-      "prefixFontSize": "50%",
-      "rangeMaps": [
-        {
-          "from": "null",
-          "text": "N/A",
-          "to": "null"
-        }
-      ],
-      "sparkline": {
-        "fillColor": "rgba(31, 118, 189, 0.18)",
-        "full": true,
-        "lineColor": "rgb(31, 120, 193)",
-        "show": true
+      "options": {
+        "colorMode": "none",
+        "graphMode": "area",
+        "justifyMode": "auto",
+        "orientation": "horizontal",
+        "reduceOptions": {
+          "calcs": [
+            "mean"
+          ],
+          "fields": "",
+          "values": false
+        },
+        "showPercentChange": false,
+        "textMode": "auto",
+        "wideLayout": true
       },
-      "tableColumn": "",
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "count(nginx_ingress_controller_config_last_reload_successful{controller_pod=~\"$controller\",controller_namespace=~\"$namespace\"} == 0)",
           "format": "time_series",
           "instant": true,
@@ -464,72 +488,119 @@
           "step": 4
         }
       ],
-      "thresholds": "",
       "title": "Last Config Failed",
-      "transparent": false,
-      "type": "singlestat",
-      "valueFontSize": "80%",
-      "valueMaps": [
-        {
-          "op": "=",
-          "text": "N/A",
-          "value": "null"
-        }
-      ],
-      "valueName": "avg"
+      "type": "stat"
     },
     {
-      "aliasColors": {},
-      "bars": false,
-      "dashLength": 10,
-      "dashes": false,
-      "datasource": "${DS_PROMETHEUS}",
-      "decimals": 2,
-      "editable": true,
-      "error": false,
-      "fill": 1,
-      "grid": {},
+      "datasource": {
+        "type": "prometheus",
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 10,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "insertNulls": false,
+            "lineInterpolation": "linear",
+            "lineWidth": 2,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "never",
+            "spanNulls": true,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "reqps"
+        },
+        "overrides": [
+          {
+            "matcher": {
+              "id": "byValue",
+              "options": {
+                "op": "gte",
+                "reducer": "allIsZero",
+                "value": 0
+              }
+            },
+            "properties": [
+              {
+                "id": "custom.hideFrom",
+                "value": {
+                  "legend": true,
+                  "tooltip": true,
+                  "viz": false
+                }
+              }
+            ]
+          }
+        ]
+      },
       "gridPos": {
         "h": 7,
         "w": 12,
         "x": 0,
         "y": 3
       },
-      "height": "200px",
       "id": 86,
-      "isNew": true,
-      "legend": {
-        "alignAsTable": true,
-        "avg": true,
-        "current": false,
-        "hideEmpty": false,
-        "hideZero": true,
-        "max": false,
-        "min": false,
-        "rightSide": true,
-        "show": true,
-        "sideWidth": 300,
-        "sort": "current",
-        "sortDesc": true,
-        "total": false,
-        "values": true
+      "options": {
+        "legend": {
+          "calcs": [
+            "mean"
+          ],
+          "displayMode": "table",
+          "placement": "right",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "none"
+        }
       },
-      "lines": true,
-      "linewidth": 2,
-      "links": [],
-      "nullPointMode": "connected",
-      "percentage": false,
-      "pointradius": 5,
-      "points": false,
-      "renderer": "flot",
-      "repeat": null,
+      "pluginVersion": "10.4.3",
       "repeatDirection": "h",
-      "seriesOverrides": [],
-      "spaceLength": 10,
-      "stack": false,
-      "steppedLine": false,
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "round(sum(irate(nginx_ingress_controller_requests{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",exported_namespace=~\"$exported_namespace\",ingress=~\"$ingress\"}[2m])) by (ingress), 0.001)",
           "format": "time_series",
           "hide": false,
@@ -542,706 +613,23 @@
           "step": 10
         }
       ],
-      "thresholds": [],
-      "timeFrom": null,
-      "timeShift": null,
       "title": "Ingress Request Volume",
-      "tooltip": {
-        "msResolution": false,
-        "shared": true,
-        "sort": 2,
-        "value_type": "cumulative"
-      },
-      "transparent": false,
-      "type": "graph",
-      "xaxis": {
-        "buckets": null,
-        "mode": "time",
-        "name": null,
-        "show": true,
-        "values": []
-      },
-      "yaxes": [
-        {
-          "format": "reqps",
-          "label": null,
-          "logBase": 1,
-          "max": null,
-          "min": null,
-          "show": true
-        },
-        {
-          "format": "Bps",
-          "label": null,
-          "logBase": 1,
-          "max": null,
-          "min": null,
-          "show": false
-        }
-      ],
-      "yaxis": {
-        "align": false,
-        "alignLevel": null
-      }
+      "type": "timeseries"
     },
     {
-      "aliasColors": {
-        "max - istio-proxy": "#890f02",
-        "max - master": "#bf1b00",
-        "max - prometheus": "#bf1b00"
+      "datasource": {
+        "type": "prometheus",
+        "uid": "${DS_PROMETHEUS}"
       },
-      "bars": false,
-      "dashLength": 10,
-      "dashes": false,
-      "datasource": "${DS_PROMETHEUS}",
-      "decimals": 2,
-      "editable": false,
-      "error": false,
-      "fill": 0,
-      "grid": {},
-      "gridPos": {
-        "h": 7,
-        "w": 12,
-        "x": 12,
-        "y": 3
-      },
-      "id": 87,
-      "isNew": true,
-      "legend": {
-        "alignAsTable": true,
-        "avg": true,
-        "current": false,
-        "hideEmpty": true,
-        "hideZero": false,
-        "max": false,
-        "min": false,
-        "rightSide": true,
-        "show": true,
-        "sideWidth": 300,
-        "sort": "avg",
-        "sortDesc": true,
-        "total": false,
-        "values": true
-      },
-      "lines": true,
-      "linewidth": 2,
-      "links": [],
-      "nullPointMode": "connected",
-      "percentage": false,
-      "pointradius": 5,
-      "points": false,
-      "renderer": "flot",
-      "seriesOverrides": [],
-      "spaceLength": 10,
-      "stack": false,
-      "steppedLine": false,
-      "targets": [
-        {
-          "expr": "sum(rate(nginx_ingress_controller_requests{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",namespace=~\"$namespace\",exported_namespace=~\"$exported_namespace\",ingress=~\"$ingress\",status!~\"[4-5].*\"}[2m])) by (ingress) / sum(rate(nginx_ingress_controller_requests{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",namespace=~\"$namespace\",exported_namespace=~\"$exported_namespace\",ingress=~\"$ingress\"}[2m])) by (ingress)",
-          "format": "time_series",
-          "instant": false,
-          "interval": "10s",
-          "intervalFactor": 1,
-          "legendFormat": "{{ ingress }}",
-          "metric": "container_memory_usage:sort_desc",
-          "refId": "A",
-          "step": 10
-        }
-      ],
-      "thresholds": [],
-      "timeFrom": null,
-      "timeShift": null,
-      "title": "Ingress Success Rate (non-4|5xx responses)",
-      "tooltip": {
-        "msResolution": false,
-        "shared": true,
-        "sort": 1,
-        "value_type": "cumulative"
-      },
-      "type": "graph",
-      "xaxis": {
-        "buckets": null,
-        "mode": "time",
-        "name": null,
-        "show": true,
-        "values": []
-      },
-      "yaxes": [
-        {
-          "format": "percentunit",
-          "label": null,
-          "logBase": 1,
-          "max": null,
-          "min": null,
-          "show": true
-        },
-        {
-          "format": "short",
-          "label": null,
-          "logBase": 1,
-          "max": null,
-          "min": null,
-          "show": false
-        }
-      ],
-      "yaxis": {
-        "align": false,
-        "alignLevel": null
-      }
-    },
-    {
-      "aliasColors": {},
-      "bars": false,
-      "dashLength": 10,
-      "dashes": false,
-      "datasource": "${DS_PROMETHEUS}",
-      "decimals": 2,
-      "editable": true,
-      "error": false,
-      "fill": 1,
-      "grid": {},
-      "gridPos": {
-        "h": 6,
-        "w": 8,
-        "x": 0,
-        "y": 10
-      },
-      "height": "200px",
-      "id": 32,
-      "isNew": true,
-      "legend": {
-        "alignAsTable": false,
-        "avg": true,
-        "current": true,
-        "max": false,
-        "min": false,
-        "rightSide": false,
-        "show": false,
-        "sideWidth": 200,
-        "sort": "current",
-        "sortDesc": true,
-        "total": false,
-        "values": true
-      },
-      "lines": true,
-      "linewidth": 2,
-      "links": [],
-      "nullPointMode": "connected",
-      "percentage": false,
-      "pointradius": 5,
-      "points": false,
-      "renderer": "flot",
-      "seriesOverrides": [],
-      "spaceLength": 10,
-      "stack": false,
-      "steppedLine": false,
-      "targets": [
-        {
-          "expr": "sum (irate (nginx_ingress_controller_request_size_sum{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\"}[2m]))",
-          "format": "time_series",
-          "instant": false,
-          "interval": "10s",
-          "intervalFactor": 1,
-          "legendFormat": "Received",
-          "metric": "network",
-          "refId": "A",
-          "step": 10
-        },
-        {
-          "expr": "- sum (irate (nginx_ingress_controller_response_size_sum{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\"}[2m]))",
-          "format": "time_series",
-          "hide": false,
-          "interval": "10s",
-          "intervalFactor": 1,
-          "legendFormat": "Sent",
-          "metric": "network",
-          "refId": "B",
-          "step": 10
-        }
-      ],
-      "thresholds": [],
-      "timeFrom": null,
-      "timeShift": null,
-      "title": "Network I/O pressure",
-      "tooltip": {
-        "msResolution": false,
-        "shared": true,
-        "sort": 0,
-        "value_type": "cumulative"
-      },
-      "transparent": false,
-      "type": "graph",
-      "xaxis": {
-        "buckets": null,
-        "mode": "time",
-        "name": null,
-        "show": true,
-        "values": []
-      },
-      "yaxes": [
-        {
-          "format": "Bps",
-          "label": null,
-          "logBase": 1,
-          "max": null,
-          "min": null,
-          "show": true
-        },
-        {
-          "format": "Bps",
-          "label": null,
-          "logBase": 1,
-          "max": null,
-          "min": null,
-          "show": false
-        }
-      ],
-      "yaxis": {
-        "align": false,
-        "alignLevel": null
-      }
-    },
-    {
-      "aliasColors": {
-        "max - istio-proxy": "#890f02",
-        "max - master": "#bf1b00",
-        "max - prometheus": "#bf1b00"
-      },
-      "bars": false,
-      "dashLength": 10,
-      "dashes": false,
-      "datasource": "${DS_PROMETHEUS}",
-      "decimals": 2,
-      "editable": false,
-      "error": false,
-      "fill": 0,
-      "grid": {},
-      "gridPos": {
-        "h": 6,
-        "w": 8,
-        "x": 8,
-        "y": 10
-      },
-      "id": 77,
-      "isNew": true,
-      "legend": {
-        "alignAsTable": true,
-        "avg": true,
-        "current": true,
-        "max": false,
-        "min": false,
-        "rightSide": false,
-        "show": false,
-        "sideWidth": 200,
-        "sort": "current",
-        "sortDesc": true,
-        "total": false,
-        "values": true
-      },
-      "lines": true,
-      "linewidth": 2,
-      "links": [],
-      "nullPointMode": "connected",
-      "percentage": false,
-      "pointradius": 5,
-      "points": false,
-      "renderer": "flot",
-      "seriesOverrides": [],
-      "spaceLength": 10,
-      "stack": false,
-      "steppedLine": false,
-      "targets": [
-        {
-          "expr": "avg(nginx_ingress_controller_nginx_process_resident_memory_bytes{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\"}) ",
-          "format": "time_series",
-          "instant": false,
-          "interval": "10s",
-          "intervalFactor": 1,
-          "legendFormat": "nginx",
-          "metric": "container_memory_usage:sort_desc",
-          "refId": "A",
-          "step": 10
-        }
-      ],
-      "thresholds": [],
-      "timeFrom": null,
-      "timeShift": null,
-      "title": "Average Memory Usage",
-      "tooltip": {
-        "msResolution": false,
-        "shared": true,
-        "sort": 2,
-        "value_type": "cumulative"
-      },
-      "type": "graph",
-      "xaxis": {
-        "buckets": null,
-        "mode": "time",
-        "name": null,
-        "show": true,
-        "values": []
-      },
-      "yaxes": [
-        {
-          "format": "bytes",
-          "label": null,
-          "logBase": 1,
-          "max": null,
-          "min": null,
-          "show": true
-        },
-        {
-          "format": "short",
-          "label": null,
-          "logBase": 1,
-          "max": null,
-          "min": null,
-          "show": false
-        }
-      ],
-      "yaxis": {
-        "align": false,
-        "alignLevel": null
-      }
-    },
-    {
-      "aliasColors": {
-        "max - istio-proxy": "#890f02",
-        "max - master": "#bf1b00"
-      },
-      "bars": false,
-      "dashLength": 10,
-      "dashes": false,
-      "datasource": "${DS_PROMETHEUS}",
-      "decimals": 3,
-      "editable": false,
-      "error": false,
-      "fill": 0,
-      "grid": {},
-      "gridPos": {
-        "h": 6,
-        "w": 8,
-        "x": 16,
-        "y": 10
-      },
-      "height": "",
-      "id": 79,
-      "isNew": true,
-      "legend": {
-        "alignAsTable": true,
-        "avg": true,
-        "current": true,
-        "max": false,
-        "min": false,
-        "rightSide": false,
-        "show": false,
-        "sort": null,
-        "sortDesc": null,
-        "total": false,
-        "values": true
-      },
-      "lines": true,
-      "linewidth": 2,
-      "links": [],
-      "nullPointMode": "connected",
-      "percentage": false,
-      "pointradius": 5,
-      "points": false,
-      "renderer": "flot",
-      "seriesOverrides": [],
-      "spaceLength": 10,
-      "stack": false,
-      "steppedLine": false,
-      "targets": [
-        {
-          "expr": "avg (rate (nginx_ingress_controller_nginx_process_cpu_seconds_total{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\"}[2m])) ",
-          "format": "time_series",
-          "interval": "10s",
-          "intervalFactor": 1,
-          "legendFormat": "nginx",
-          "metric": "container_cpu",
-          "refId": "A",
-          "step": 10
-        }
-      ],
-      "thresholds": [
-        {
-          "colorMode": "critical",
-          "fill": true,
-          "line": true,
-          "op": "gt"
-        }
-      ],
-      "timeFrom": null,
-      "timeShift": null,
-      "title": "Average CPU Usage",
-      "tooltip": {
-        "msResolution": true,
-        "shared": true,
-        "sort": 2,
-        "value_type": "cumulative"
-      },
-      "transparent": false,
-      "type": "graph",
-      "xaxis": {
-        "buckets": null,
-        "mode": "time",
-        "name": null,
-        "show": true,
-        "values": []
-      },
-      "yaxes": [
-        {
-          "format": "none",
-          "label": "cores",
-          "logBase": 1,
-          "max": null,
-          "min": null,
-          "show": true
-        },
-        {
-          "format": "short",
-          "label": null,
-          "logBase": 1,
-          "max": null,
-          "min": null,
-          "show": true
-        }
-      ],
-      "yaxis": {
-        "align": false,
-        "alignLevel": null
-      }
-    },
-    {
-      "columns": [],
-      "datasource": "${DS_PROMETHEUS}",
-      "description": "This data is real time, independent of dashboard time range",
-      "fontSize": "100%",
-      "gridPos": {
-        "h": 8,
-        "w": 24,
-        "x": 0,
-        "y": 16
-      },
-      "hideTimeOverride": false,
-      "id": 75,
-      "links": [],
-      "pageSize": 7,
-      "repeat": null,
-      "repeatDirection": "h",
-      "scroll": true,
-      "showHeader": true,
-      "sort": {
-        "col": 1,
-        "desc": true
-      },
-      "styles": [
-        {
-          "alias": "Ingress",
-          "colorMode": null,
-          "colors": [
-            "rgba(245, 54, 54, 0.9)",
-            "rgba(237, 129, 40, 0.89)",
-            "rgba(50, 172, 45, 0.97)"
-          ],
-          "dateFormat": "YYYY-MM-DD HH:mm:ss",
-          "decimals": 2,
-          "pattern": "ingress",
-          "preserveFormat": false,
-          "sanitize": false,
-          "thresholds": [],
-          "type": "string",
-          "unit": "short"
-        },
-        {
-          "alias": "Requests",
-          "colorMode": null,
-          "colors": [
-            "rgba(245, 54, 54, 0.9)",
-            "rgba(237, 129, 40, 0.89)",
-            "rgba(50, 172, 45, 0.97)"
-          ],
-          "dateFormat": "YYYY-MM-DD HH:mm:ss",
-          "decimals": 2,
-          "pattern": "Value #A",
-          "thresholds": [
-            ""
-          ],
-          "type": "number",
-          "unit": "ops"
-        },
-        {
-          "alias": "Errors",
-          "colorMode": null,
-          "colors": [
-            "rgba(245, 54, 54, 0.9)",
-            "rgba(237, 129, 40, 0.89)",
-            "rgba(50, 172, 45, 0.97)"
-          ],
-          "dateFormat": "YYYY-MM-DD HH:mm:ss",
-          "decimals": 2,
-          "pattern": "Value #B",
-          "thresholds": [],
-          "type": "number",
-          "unit": "ops"
-        },
-        {
-          "alias": "P50 Latency",
-          "colorMode": null,
-          "colors": [
-            "rgba(245, 54, 54, 0.9)",
-            "rgba(237, 129, 40, 0.89)",
-            "rgba(50, 172, 45, 0.97)"
-          ],
-          "dateFormat": "YYYY-MM-DD HH:mm:ss",
-          "decimals": 0,
-          "link": false,
-          "pattern": "Value #C",
-          "thresholds": [],
-          "type": "number",
-          "unit": "dtdurations"
-        },
-        {
-          "alias": "P90 Latency",
-          "colorMode": null,
-          "colors": [
-            "rgba(245, 54, 54, 0.9)",
-            "rgba(237, 129, 40, 0.89)",
-            "rgba(50, 172, 45, 0.97)"
-          ],
-          "dateFormat": "YYYY-MM-DD HH:mm:ss",
-          "decimals": 0,
-          "pattern": "Value #D",
-          "thresholds": [],
-          "type": "number",
-          "unit": "dtdurations"
-        },
-        {
-          "alias": "P99 Latency",
-          "colorMode": null,
-          "colors": [
-            "rgba(245, 54, 54, 0.9)",
-            "rgba(237, 129, 40, 0.89)",
-            "rgba(50, 172, 45, 0.97)"
-          ],
-          "dateFormat": "YYYY-MM-DD HH:mm:ss",
-          "decimals": 0,
-          "pattern": "Value #E",
-          "thresholds": [],
-          "type": "number",
-          "unit": "dtdurations"
-        },
-        {
-          "alias": "IN",
-          "colorMode": null,
-          "colors": [
-            "rgba(245, 54, 54, 0.9)",
-            "rgba(237, 129, 40, 0.89)",
-            "rgba(50, 172, 45, 0.97)"
-          ],
-          "dateFormat": "YYYY-MM-DD HH:mm:ss",
-          "decimals": 2,
-          "pattern": "Value #F",
-          "thresholds": [
-            ""
-          ],
-          "type": "number",
-          "unit": "Bps"
-        },
-        {
-          "alias": "",
-          "colorMode": null,
-          "colors": [
-            "rgba(245, 54, 54, 0.9)",
-            "rgba(237, 129, 40, 0.89)",
-            "rgba(50, 172, 45, 0.97)"
-          ],
-          "dateFormat": "YYYY-MM-DD HH:mm:ss",
-          "decimals": 2,
-          "pattern": "Time",
-          "thresholds": [],
-          "type": "hidden",
-          "unit": "short"
-        },
-        {
-          "alias": "OUT",
-          "colorMode": null,
-          "colors": [
-            "rgba(245, 54, 54, 0.9)",
-            "rgba(237, 129, 40, 0.89)",
-            "rgba(50, 172, 45, 0.97)"
-          ],
-          "dateFormat": "YYYY-MM-DD HH:mm:ss",
-          "decimals": 2,
-          "mappingType": 1,
-          "pattern": "Value #G",
-          "thresholds": [],
-          "type": "number",
-          "unit": "Bps"
-        }
-      ],
-      "targets": [
-        {
-          "expr": "histogram_quantile(0.50, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le, ingress))",
-          "format": "table",
-          "hide": false,
-          "instant": true,
-          "intervalFactor": 1,
-          "legendFormat": "{{ ingress }}",
-          "refId": "C"
-        },
-        {
-          "expr": "histogram_quantile(0.90, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le, ingress))",
-          "format": "table",
-          "hide": false,
-          "instant": true,
-          "intervalFactor": 1,
-          "legendFormat": "{{ ingress }}",
-          "refId": "D"
-        },
-        {
-          "expr": "histogram_quantile(0.99, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le, ingress))",
-          "format": "table",
-          "hide": false,
-          "instant": true,
-          "intervalFactor": 1,
-          "legendFormat": "{{ destination_service }}",
-          "refId": "E"
-        },
-        {
-          "expr": "sum(irate(nginx_ingress_controller_request_size_sum{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (ingress)",
-          "format": "table",
-          "hide": false,
-          "instant": true,
-          "interval": "",
-          "intervalFactor": 1,
-          "legendFormat": "{{ ingress }}",
-          "refId": "F"
-        },
-        {
-          "expr": "sum(irate(nginx_ingress_controller_response_size_sum{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (ingress)",
-          "format": "table",
-          "instant": true,
-          "intervalFactor": 1,
-          "legendFormat": "{{ ingress }}",
-          "refId": "G"
-        }
-      ],
-      "timeFrom": null,
-      "title": "Ingress Percentile Response Times and Transfer Rates",
-      "transform": "table",
-      "transparent": false,
-      "type": "table"
-    },
-    {
-      "datasource": "${DS_PROMETHEUS}",
       "fieldConfig": {
         "defaults": {
           "color": {
             "mode": "palette-classic"
           },
           "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
             "axisLabel": "",
             "axisPlacement": "auto",
             "barAlignment": 0,
@@ -1253,6 +641,842 @@
               "tooltip": false,
               "viz": false
             },
+            "insertNulls": false,
+            "lineInterpolation": "linear",
+            "lineWidth": 2,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "never",
+            "spanNulls": true,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "percentunit"
+        },
+        "overrides": [
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "max - istio-proxy"
+            },
+            "properties": [
+              {
+                "id": "color",
+                "value": {
+                  "fixedColor": "#890f02",
+                  "mode": "fixed"
+                }
+              }
+            ]
+          },
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "max - master"
+            },
+            "properties": [
+              {
+                "id": "color",
+                "value": {
+                  "fixedColor": "#bf1b00",
+                  "mode": "fixed"
+                }
+              }
+            ]
+          },
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "max - prometheus"
+            },
+            "properties": [
+              {
+                "id": "color",
+                "value": {
+                  "fixedColor": "#bf1b00",
+                  "mode": "fixed"
+                }
+              }
+            ]
+          },
+          {
+            "matcher": {
+              "id": "byValue",
+              "options": {
+                "op": "gte",
+                "reducer": "allIsNull",
+                "value": 0
+              }
+            },
+            "properties": [
+              {
+                "id": "custom.hideFrom",
+                "value": {
+                  "legend": true,
+                  "tooltip": true,
+                  "viz": false
+                }
+              }
+            ]
+          }
+        ]
+      },
+      "gridPos": {
+        "h": 7,
+        "w": 12,
+        "x": 12,
+        "y": 3
+      },
+      "id": 87,
+      "options": {
+        "legend": {
+          "calcs": [
+            "mean"
+          ],
+          "displayMode": "table",
+          "placement": "right",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "asc"
+        }
+      },
+      "pluginVersion": "10.4.3",
+      "targets": [
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
+          "expr": "sum(rate(nginx_ingress_controller_requests{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",namespace=~\"$namespace\",exported_namespace=~\"$exported_namespace\",ingress=~\"$ingress\",status!~\"[4-5].*\"}[2m])) by (ingress) / sum(rate(nginx_ingress_controller_requests{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",namespace=~\"$namespace\",exported_namespace=~\"$exported_namespace\",ingress=~\"$ingress\"}[2m])) by (ingress)",
+          "format": "time_series",
+          "instant": false,
+          "interval": "10s",
+          "intervalFactor": 1,
+          "legendFormat": "{{ ingress }}",
+          "metric": "container_memory_usage:sort_desc",
+          "refId": "A",
+          "step": 10
+        }
+      ],
+      "title": "Ingress Success Rate (non-4|5xx responses)",
+      "type": "timeseries"
+    },
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 10,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "insertNulls": false,
+            "lineInterpolation": "linear",
+            "lineWidth": 2,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "never",
+            "spanNulls": true,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "Bps"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 8,
+        "x": 0,
+        "y": 10
+      },
+      "id": 32,
+      "options": {
+        "legend": {
+          "calcs": [
+            "mean",
+            "lastNotNull"
+          ],
+          "displayMode": "list",
+          "placement": "bottom",
+          "showLegend": false,
+          "width": 200
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "none"
+        }
+      },
+      "pluginVersion": "10.4.3",
+      "targets": [
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
+          "expr": "sum (irate (nginx_ingress_controller_request_size_sum{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\"}[2m]))",
+          "format": "time_series",
+          "instant": false,
+          "interval": "10s",
+          "intervalFactor": 1,
+          "legendFormat": "Received",
+          "metric": "network",
+          "refId": "A",
+          "step": 10
+        },
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
+          "expr": "- sum (irate (nginx_ingress_controller_response_size_sum{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\"}[2m]))",
+          "format": "time_series",
+          "hide": false,
+          "interval": "10s",
+          "intervalFactor": 1,
+          "legendFormat": "Sent",
+          "metric": "network",
+          "refId": "B",
+          "step": 10
+        }
+      ],
+      "title": "Network I/O pressure",
+      "type": "timeseries"
+    },
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 0,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "insertNulls": false,
+            "lineInterpolation": "linear",
+            "lineWidth": 2,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "never",
+            "spanNulls": true,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "bytes"
+        },
+        "overrides": [
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "max - istio-proxy"
+            },
+            "properties": [
+              {
+                "id": "color",
+                "value": {
+                  "fixedColor": "#890f02",
+                  "mode": "fixed"
+                }
+              }
+            ]
+          },
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "max - master"
+            },
+            "properties": [
+              {
+                "id": "color",
+                "value": {
+                  "fixedColor": "#bf1b00",
+                  "mode": "fixed"
+                }
+              }
+            ]
+          },
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "max - prometheus"
+            },
+            "properties": [
+              {
+                "id": "color",
+                "value": {
+                  "fixedColor": "#bf1b00",
+                  "mode": "fixed"
+                }
+              }
+            ]
+          }
+        ]
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 8,
+        "x": 8,
+        "y": 10
+      },
+      "id": 77,
+      "options": {
+        "legend": {
+          "calcs": [
+            "mean",
+            "lastNotNull"
+          ],
+          "displayMode": "list",
+          "placement": "bottom",
+          "showLegend": false,
+          "width": 200
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "desc"
+        }
+      },
+      "pluginVersion": "10.4.3",
+      "targets": [
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
+          "expr": "avg(nginx_ingress_controller_nginx_process_resident_memory_bytes{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\"}) ",
+          "format": "time_series",
+          "instant": false,
+          "interval": "10s",
+          "intervalFactor": 1,
+          "legendFormat": "nginx",
+          "metric": "container_memory_usage:sort_desc",
+          "refId": "A",
+          "step": 10
+        }
+      ],
+      "title": "Average Memory Usage",
+      "type": "timeseries"
+    },
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "cores",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 0,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "insertNulls": false,
+            "lineInterpolation": "linear",
+            "lineWidth": 2,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "never",
+            "spanNulls": true,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "line+area"
+            }
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "transparent",
+                "value": null
+              }
+            ]
+          },
+          "unit": "none"
+        },
+        "overrides": []
+      },
+      "gridPos": {
+        "h": 6,
+        "w": 8,
+        "x": 16,
+        "y": 10
+      },
+      "id": 79,
+      "options": {
+        "legend": {
+          "calcs": [
+            "mean",
+            "lastNotNull"
+          ],
+          "displayMode": "list",
+          "placement": "bottom",
+          "showLegend": false
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "desc"
+        }
+      },
+      "pluginVersion": "10.4.3",
+      "targets": [
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
+          "expr": "avg (rate (nginx_ingress_controller_nginx_process_cpu_seconds_total{controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\"}[2m])) ",
+          "format": "time_series",
+          "interval": "10s",
+          "intervalFactor": 1,
+          "legendFormat": "nginx",
+          "metric": "container_cpu",
+          "refId": "A",
+          "step": 10
+        }
+      ],
+      "title": "Average CPU Usage",
+      "type": "timeseries"
+    },
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "description": "This data is real time, independent of dashboard time range",
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "custom": {
+            "align": "auto",
+            "cellOptions": {
+              "type": "auto"
+            },
+            "inspect": false
+          },
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          }
+        },
+        "overrides": [
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "ingress"
+            },
+            "properties": [
+              {
+                "id": "displayName",
+                "value": "Ingress"
+              },
+              {
+                "id": "unit",
+                "value": "short"
+              },
+              {
+                "id": "decimals",
+                "value": 2
+              },
+              {
+                "id": "custom.align"
+              }
+            ]
+          },
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "Value #A"
+            },
+            "properties": [
+              {
+                "id": "displayName",
+                "value": "P50 Latency"
+              },
+              {
+                "id": "unit",
+                "value": "dtdurations"
+              },
+              {
+                "id": "custom.align"
+              }
+            ]
+          },
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "Value #B"
+            },
+            "properties": [
+              {
+                "id": "displayName",
+                "value": "P90 Latency"
+              },
+              {
+                "id": "unit",
+                "value": "dtdurations"
+              },
+              {
+                "id": "custom.align"
+              }
+            ]
+          },
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "Value #C"
+            },
+            "properties": [
+              {
+                "id": "displayName",
+                "value": "P99 Latency"
+              },
+              {
+                "id": "unit",
+                "value": "dtdurations"
+              },
+              {
+                "id": "custom.align"
+              }
+            ]
+          },
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "Value #D"
+            },
+            "properties": [
+              {
+                "id": "displayName",
+                "value": "IN"
+              },
+              {
+                "id": "unit",
+                "value": "Bps"
+              },
+              {
+                "id": "decimals",
+                "value": 2
+              },
+              {
+                "id": "custom.align"
+              },
+              {
+                "id": "thresholds",
+                "value": {
+                  "mode": "absolute",
+                  "steps": [
+                    {
+                      "color": "rgba(245, 54, 54, 0.9)",
+                      "value": null
+                    },
+                    {
+                      "color": "rgba(237, 129, 40, 0.89)"
+                    }
+                  ]
+                }
+              }
+            ]
+          },
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "Time"
+            },
+            "properties": [
+              {
+                "id": "unit",
+                "value": "short"
+              },
+              {
+                "id": "decimals",
+                "value": 2
+              },
+              {
+                "id": "custom.align"
+              },
+              {
+                "id": "custom.hidden",
+                "value": true
+              }
+            ]
+          },
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "Value #E"
+            },
+            "properties": [
+              {
+                "id": "displayName",
+                "value": "OUT"
+              },
+              {
+                "id": "unit",
+                "value": "Bps"
+              },
+              {
+                "id": "decimals",
+                "value": 2
+              },
+              {
+                "id": "custom.align"
+              }
+            ]
+          }
+        ]
+      },
+      "gridPos": {
+        "h": 8,
+        "w": 24,
+        "x": 0,
+        "y": 16
+      },
+      "hideTimeOverride": false,
+      "id": 75,
+      "options": {
+        "cellHeight": "sm",
+        "footer": {
+          "countRows": false,
+          "fields": "",
+          "reducer": [
+            "sum"
+          ],
+          "show": false
+        },
+        "showHeader": true
+      },
+      "pluginVersion": "10.4.3",
+      "repeatDirection": "h",
+      "targets": [
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
+          "expr": "histogram_quantile(0.50, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le, ingress))",
+          "format": "table",
+          "hide": false,
+          "instant": true,
+          "intervalFactor": 1,
+          "legendFormat": "{{ ingress }}",
+          "refId": "A"
+        },
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
+          "expr": "histogram_quantile(0.90, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le, ingress))",
+          "format": "table",
+          "hide": false,
+          "instant": true,
+          "intervalFactor": 1,
+          "legendFormat": "{{ ingress }}",
+          "refId": "B"
+        },
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
+          "expr": "histogram_quantile(0.99, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le, ingress))",
+          "format": "table",
+          "hide": false,
+          "instant": true,
+          "intervalFactor": 1,
+          "legendFormat": "{{ destination_service }}",
+          "refId": "C"
+        },
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
+          "expr": "sum(irate(nginx_ingress_controller_request_size_sum{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (ingress)",
+          "format": "table",
+          "hide": false,
+          "instant": true,
+          "interval": "",
+          "intervalFactor": 1,
+          "legendFormat": "{{ ingress }}",
+          "refId": "D"
+        },
+        {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
+          "expr": "sum(irate(nginx_ingress_controller_response_size_sum{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (ingress)",
+          "format": "table",
+          "instant": true,
+          "intervalFactor": 1,
+          "legendFormat": "{{ ingress }}",
+          "refId": "E"
+        }
+      ],
+      "title": "Ingress Percentile Response Times and Transfer Rates",
+      "transformations": [
+        {
+          "id": "merge",
+          "options": {
+            "reducers": []
+          }
+        }
+      ],
+      "type": "table"
+    },
+    {
+      "datasource": {
+        "type": "prometheus",
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 0,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "insertNulls": false,
             "lineInterpolation": "linear",
             "lineWidth": 1,
             "pointSize": 5,
@@ -1295,12 +1519,12 @@
       },
       "hideTimeOverride": false,
       "id": 91,
-      "links": [],
       "options": {
         "legend": {
           "calcs": [],
           "displayMode": "list",
-          "placement": "bottom"
+          "placement": "bottom",
+          "showLegend": true
         },
         "tooltip": {
           "mode": "multi",
@@ -1311,6 +1535,10 @@
       "repeatDirection": "h",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "exemplar": true,
           "expr": "histogram_quantile(0.80, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le))",
           "format": "time_series",
@@ -1322,6 +1550,10 @@
           "refId": "C"
         },
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "exemplar": true,
           "expr": "histogram_quantile(0.90, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le))",
           "format": "time_series",
@@ -1333,6 +1565,10 @@
           "refId": "D"
         },
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "editorMode": "code",
           "exemplar": true,
           "expr": "histogram_quantile(0.99, sum(rate(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le))",
@@ -1358,8 +1594,26 @@
         "mode": "spectrum"
       },
       "dataFormat": "tsbuckets",
-      "datasource": "${DS_PROMETHEUS}",
+      "datasource": {
+        "type": "prometheus",
+        "uid": "${DS_PROMETHEUS}"
+      },
       "description": "",
+      "fieldConfig": {
+        "defaults": {
+          "custom": {
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "scaleDistribution": {
+              "type": "linear"
+            }
+          }
+        },
+        "overrides": []
+      },
       "gridPos": {
         "h": 7,
         "w": 12,
@@ -1373,9 +1627,52 @@
       "legend": {
         "show": true
       },
+      "options": {
+        "calculate": false,
+        "calculation": {},
+        "cellGap": 2,
+        "cellValues": {},
+        "color": {
+          "exponent": 0.5,
+          "fill": "#b4ff00",
+          "mode": "scheme",
+          "reverse": false,
+          "scale": "exponential",
+          "scheme": "Warm",
+          "steps": 128
+        },
+        "exemplars": {
+          "color": "rgba(255,0,255,0.7)"
+        },
+        "filterValues": {
+          "le": 1e-9
+        },
+        "legend": {
+          "show": true
+        },
+        "rowsFrame": {
+          "layout": "auto"
+        },
+        "showValue": "never",
+        "tooltip": {
+          "mode": "single",
+          "showColorScale": false,
+          "yHistogram": true
+        },
+        "yAxis": {
+          "axisPlacement": "left",
+          "reverse": false,
+          "unit": "s"
+        }
+      },
+      "pluginVersion": "10.4.3",
       "reverseYBuckets": false,
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "exemplar": true,
           "expr": "sum(increase(nginx_ingress_controller_request_duration_seconds_bucket{ingress!=\"\",controller_pod=~\"$controller\",controller_class=~\"$controller_class\",controller_namespace=~\"$namespace\",ingress=~\"$ingress\",exported_namespace=~\"$exported_namespace\"}[2m])) by (le)",
           "format": "heatmap",
@@ -1401,72 +1698,124 @@
       "yBucketBound": "auto"
     },
     {
-      "columns": [
-        {
-          "text": "Current",
-          "value": "current"
-        }
-      ],
-      "datasource": "${DS_PROMETHEUS}",
-      "fontSize": "100%",
+      "datasource": {
+        "type": "prometheus",
+        "uid": "${DS_PROMETHEUS}"
+      },
+      "fieldConfig": {
+        "defaults": {
+          "color": {
+            "mode": "thresholds"
+          },
+          "custom": {
+            "align": "auto",
+            "cellOptions": {
+              "type": "auto"
+            },
+            "inspect": false
+          },
+          "decimals": 2,
+          "displayName": "",
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "short"
+        },
+        "overrides": [
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "Last *"
+            },
+            "properties": [
+              {
+                "id": "displayName",
+                "value": "TTL"
+              },
+              {
+                "id": "unit",
+                "value": "s"
+              },
+              {
+                "id": "custom.cellOptions",
+                "value": {
+                  "type": "color-background"
+                }
+              },
+              {
+                "id": "thresholds",
+                "value": {
+                  "mode": "absolute",
+                  "steps": [
+                    {
+                      "color": "rgba(245, 54, 54, 0.9)",
+                      "value": null
+                    },
+                    {
+                      "color": "rgba(237, 129, 40, 0.89)",
+                      "value": 0
+                    },
+                    {
+                      "color": "rgba(50, 172, 45, 0.97)",
+                      "value": 691200
+                    }
+                  ]
+                }
+              }
+            ]
+          },
+          {
+            "matcher": {
+              "id": "byName",
+              "options": "Field"
+            },
+            "properties": [
+              {
+                "id": "displayName",
+                "value": "Host"
+              }
+            ]
+          }
+        ]
+      },
       "gridPos": {
         "h": 8,
         "w": 24,
         "x": 0,
         "y": 31
       },
-      "height": "1024",
       "id": 85,
-      "links": [],
-      "pageSize": 7,
-      "scroll": true,
-      "showHeader": true,
-      "sort": {
-        "col": 1,
-        "desc": false
+      "options": {
+        "cellHeight": "sm",
+        "footer": {
+          "countRows": false,
+          "enablePagination": false,
+          "fields": "",
+          "reducer": [
+            "sum"
+          ],
+          "show": false
+        },
+        "showHeader": true
       },
-      "styles": [
-        {
-          "alias": "Time",
-          "dateFormat": "YYYY-MM-DD HH:mm:ss",
-          "pattern": "Time",
-          "type": "date"
-        },
-        {
-          "alias": "TTL",
-          "colorMode": "cell",
-          "colors": [
-            "rgba(245, 54, 54, 0.9)",
-            "rgba(237, 129, 40, 0.89)",
-            "rgba(50, 172, 45, 0.97)"
-          ],
-          "dateFormat": "YYYY-MM-DD HH:mm:ss",
-          "decimals": 0,
-          "pattern": "Current",
-          "thresholds": [
-            "0",
-            "691200"
-          ],
-          "type": "number",
-          "unit": "s"
-        },
-        {
-          "alias": "",
-          "colorMode": null,
-          "colors": [
-            "rgba(245, 54, 54, 0.9)",
-            "rgba(237, 129, 40, 0.89)",
-            "rgba(50, 172, 45, 0.97)"
-          ],
-          "decimals": 2,
-          "pattern": "/.*/",
-          "thresholds": [],
-          "type": "number",
-          "unit": "short"
-        }
-      ],
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "avg(nginx_ingress_controller_ssl_expire_time_seconds{kubernetes_pod_name=~\"$controller\",namespace=~\"$namespace\",ingress=~\"$ingress\"}) by (host) - time()",
           "format": "time_series",
           "intervalFactor": 1,
@@ -1477,35 +1826,55 @@
         }
       ],
       "title": "Ingress Certificate Expiry",
-      "transform": "timeseries_aggregations",
+      "transformations": [
+        {
+          "id": "reduce",
+          "options": {
+            "includeTimeField": false,
+            "labelsToFields": false,
+            "reducers": [
+              "lastNotNull"
+            ]
+          }
+        }
+      ],
       "type": "table"
     }
   ],
   "refresh": "5s",
-  "schemaVersion": 16,
-  "style": "dark",
+  "schemaVersion": 39,
   "tags": [
     "nginx"
   ],
   "templating": {
     "list": [
       {
+        "current": {
+          "selected": false,
+          "text": "Prometheus",
+          "value": "${DS_PROMETHEUS}"
+        },
         "hide": 0,
+        "includeAll": false,
         "label": "datasource",
+        "multi": false,
         "name": "DS_PROMETHEUS",
         "options": [],
         "query": "prometheus",
+        "queryValue": "",
         "refresh": 1,
         "regex": "",
+        "skipUrlSync": false,
         "type": "datasource"
       },
       {
         "allValue": ".*",
-        "current": {
-          "text": "All",
-          "value": "$__all"
+        "current": {},
+        "datasource": {
+          "type": "prometheus",
+          "uid": "${DS_PROMETHEUS}"
         },
-        "datasource": "${DS_PROMETHEUS}",
+        "definition": "",
         "hide": 0,
         "includeAll": true,
         "label": "Namespace",
@@ -1515,20 +1884,21 @@
         "query": "label_values(nginx_ingress_controller_config_hash, controller_namespace)",
         "refresh": 1,
         "regex": "",
+        "skipUrlSync": false,
         "sort": 0,
         "tagValuesQuery": "",
-        "tags": [],
         "tagsQuery": "",
         "type": "query",
         "useTags": false
       },
       {
         "allValue": ".*",
-        "current": {
-          "text": "All",
-          "value": "$__all"
+        "current": {},
+        "datasource": {
+          "type": "prometheus",
+          "uid": "${DS_PROMETHEUS}"
         },
-        "datasource": "${DS_PROMETHEUS}",
+        "definition": "",
         "hide": 0,
         "includeAll": true,
         "label": "Controller Class",
@@ -1538,20 +1908,21 @@
         "query": "label_values(nginx_ingress_controller_config_hash{namespace=~\"$namespace\"}, controller_class) ",
         "refresh": 1,
         "regex": "",
+        "skipUrlSync": false,
         "sort": 0,
         "tagValuesQuery": "",
-        "tags": [],
         "tagsQuery": "",
         "type": "query",
         "useTags": false
       },
       {
         "allValue": ".*",
-        "current": {
-          "text": "All",
-          "value": "$__all"
+        "current": {},
+        "datasource": {
+          "type": "prometheus",
+          "uid": "${DS_PROMETHEUS}"
         },
-        "datasource": "${DS_PROMETHEUS}",
+        "definition": "",
         "hide": 0,
         "includeAll": true,
         "label": "Controller",
@@ -1561,21 +1932,21 @@
         "query": "label_values(nginx_ingress_controller_config_hash{namespace=~\"$namespace\",controller_class=~\"$controller_class\"}, controller_pod) ",
         "refresh": 1,
         "regex": "",
+        "skipUrlSync": false,
         "sort": 1,
         "tagValuesQuery": "",
-        "tags": [],
         "tagsQuery": "",
         "type": "query",
         "useTags": false
       },
       {
         "allValue": ".*",
-        "current": {
-          "tags": [],
-          "text": "All",
-          "value": "$__all"
+        "current": {},
+        "datasource": {
+          "type": "prometheus",
+          "uid": "${DS_PROMETHEUS}"
         },
-        "datasource": "${DS_PROMETHEUS}",
+        "definition": "",
         "hide": 0,
         "includeAll": true,
         "label": "Ingress Namespace",
@@ -1585,21 +1956,21 @@
         "query": "label_values(nginx_ingress_controller_requests{namespace=~\"$namespace\",controller_class=~\"$controller_class\",controller_pod=~\"$controller\"}, exported_namespace) ",
         "refresh": 1,
         "regex": "",
+        "skipUrlSync": false,
         "sort": 1,
         "tagValuesQuery": "",
-        "tags": [],
         "tagsQuery": "",
         "type": "query",
         "useTags": false
       },
       {
         "allValue": ".*",
-        "current": {
-          "tags": [],
-          "text": "All",
-          "value": "$__all"
+        "current": {},
+        "datasource": {
+          "type": "prometheus",
+          "uid": "${DS_PROMETHEUS}"
         },
-        "datasource": "${DS_PROMETHEUS}",
+        "definition": "",
         "hide": 0,
         "includeAll": true,
         "label": "Ingress",
@@ -1609,9 +1980,9 @@
         "query": "label_values(nginx_ingress_controller_requests{namespace=~\"$namespace\",controller_class=~\"$controller_class\",controller_pod=~\"$controller\",exported_namespace=~\"$exported_namespace\"}, ingress) ",
         "refresh": 1,
         "regex": "",
+        "skipUrlSync": false,
         "sort": 1,
         "tagValuesQuery": "",
-        "tags": [],
         "tagsQuery": "",
         "type": "query",
         "useTags": false
@@ -1650,5 +2021,6 @@
   "timezone": "browser",
   "title": "NGINX Ingress controller",
   "uid": "nginx",
-  "version": 1
-}
+  "version": 1,
+  "weekStart": ""
+}
\ No newline at end of file
diff --git a/deploy/grafana/dashboards/request-handling-performance.json b/deploy/grafana/dashboards/request-handling-performance.json
index 1422336ae..61db983a6 100644
--- a/deploy/grafana/dashboards/request-handling-performance.json
+++ b/deploy/grafana/dashboards/request-handling-performance.json
@@ -9,32 +9,35 @@
       "pluginName": "Prometheus"
     }
   ],
-  "__elements": [],
+  "__elements": {},
   "__requires": [
     {
       "type": "grafana",
       "id": "grafana",
       "name": "Grafana",
-      "version": "8.3.4"
-    },
-    {
-      "type": "panel",
-      "id": "graph",
-      "name": "Graph (old)",
-      "version": ""
+      "version": "10.4.3"
     },
     {
       "type": "datasource",
       "id": "prometheus",
       "name": "Prometheus",
       "version": "1.0.0"
+    },
+    {
+      "type": "panel",
+      "id": "timeseries",
+      "name": "Time series",
+      "version": ""
     }
   ],
   "annotations": {
     "list": [
       {
         "builtIn": 1,
-        "datasource": "-- Grafana --",
+        "datasource": {
+          "type": "datasource",
+          "uid": "grafana"
+        },
         "enable": true,
         "hide": true,
         "iconColor": "rgba(0, 211, 255, 1)",
@@ -55,160 +58,214 @@
   "gnetId": 9614,
   "graphTooltip": 1,
   "id": null,
-  "iteration": 1646929474557,
   "links": [],
   "liveNow": false,
   "panels": [
     {
-      "aliasColors": {},
-      "bars": false,
-      "dashLength": 10,
-      "dashes": false,
       "datasource": {
+        "type": "prometheus",
         "uid": "${DS_PROMETHEUS}"
       },
       "description": "Total time for NGINX and upstream servers to process a request and send a response",
       "fieldConfig": {
         "defaults": {
-          "links": []
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 10,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "insertNulls": false,
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "never",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "links": [],
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "s"
         },
         "overrides": []
       },
-      "fill": 1,
-      "fillGradient": 0,
       "gridPos": {
         "h": 8,
         "w": 12,
         "x": 0,
         "y": 0
       },
-      "hiddenSeries": false,
       "id": 91,
-      "legend": {
-        "avg": false,
-        "current": false,
-        "max": false,
-        "min": false,
-        "show": true,
-        "total": false,
-        "values": false
-      },
-      "lines": true,
-      "linewidth": 1,
-      "nullPointMode": "null",
       "options": {
-        "alertThreshold": true
+        "legend": {
+          "calcs": [],
+          "displayMode": "list",
+          "placement": "bottom",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "desc"
+        }
       },
-      "percentage": false,
-      "pluginVersion": "8.3.4",
-      "pointradius": 2,
-      "points": false,
-      "renderer": "flot",
-      "seriesOverrides": [],
-      "spaceLength": 10,
-      "stack": false,
-      "steppedLine": false,
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "histogram_quantile(\n  0.5,\n  sum by (le)(\n    rate(\n      nginx_ingress_controller_request_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n)",
           "interval": "",
           "legendFormat": ".5",
           "refId": "D"
         },
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "histogram_quantile(\n  0.95,\n  sum by (le)(\n    rate(\n    nginx_ingress_controller_request_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n)",
           "interval": "",
           "legendFormat": ".95",
           "refId": "B"
         },
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "histogram_quantile(\n  0.99,\n  sum by (le)(\n    rate(\n      nginx_ingress_controller_request_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n)",
           "interval": "",
           "legendFormat": ".99",
           "refId": "A"
         }
       ],
-      "thresholds": [],
-      "timeRegions": [],
       "title": "Request Latency Percentiles",
-      "tooltip": {
-        "shared": true,
-        "sort": 2,
-        "value_type": "individual"
-      },
-      "type": "graph",
-      "xaxis": {
-        "mode": "time",
-        "show": true,
-        "values": []
-      },
-      "yaxes": [
-        {
-          "format": "s",
-          "logBase": 1,
-          "show": true
-        },
-        {
-          "format": "short",
-          "logBase": 1,
-          "show": true
-        }
-      ],
-      "yaxis": {
-        "align": false
-      }
+      "type": "timeseries"
     },
     {
-      "aliasColors": {},
-      "bars": false,
-      "dashLength": 10,
-      "dashes": false,
       "datasource": {
+        "type": "prometheus",
         "uid": "${DS_PROMETHEUS}"
       },
       "description": "The time spent on receiving the response from the upstream server",
       "fieldConfig": {
         "defaults": {
-          "links": []
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 10,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "insertNulls": false,
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "never",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "links": [],
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "s"
         },
         "overrides": []
       },
-      "fill": 1,
-      "fillGradient": 0,
       "gridPos": {
         "h": 8,
         "w": 12,
         "x": 12,
         "y": 0
       },
-      "hiddenSeries": false,
       "id": 94,
-      "legend": {
-        "avg": false,
-        "current": false,
-        "max": false,
-        "min": false,
-        "show": true,
-        "total": false,
-        "values": false
-      },
-      "lines": true,
-      "linewidth": 1,
-      "nullPointMode": "null",
       "options": {
-        "alertThreshold": true
+        "legend": {
+          "calcs": [],
+          "displayMode": "list",
+          "placement": "bottom",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "desc"
+        }
       },
-      "percentage": false,
-      "pluginVersion": "8.3.4",
-      "pointradius": 2,
-      "points": false,
-      "renderer": "flot",
-      "seriesOverrides": [],
-      "spaceLength": 10,
-      "stack": false,
-      "steppedLine": false,
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "histogram_quantile(\n  0.5,\n  sum by (le)(\n    rate(\n      nginx_ingress_controller_response_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n)",
           "instant": false,
           "interval": "",
@@ -217,100 +274,116 @@
           "refId": "D"
         },
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "histogram_quantile(\n  0.95,\n  sum by (le)(\n    rate(\n    nginx_ingress_controller_response_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n)",
           "interval": "",
           "legendFormat": ".95",
           "refId": "B"
         },
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "histogram_quantile(\n  0.99,\n  sum by (le)(\n    rate(\n      nginx_ingress_controller_response_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n)",
           "interval": "",
           "legendFormat": ".99",
           "refId": "A"
         }
       ],
-      "thresholds": [],
-      "timeRegions": [],
       "title": "Upstream Response Latency Percentiles",
-      "tooltip": {
-        "shared": true,
-        "sort": 2,
-        "value_type": "individual"
-      },
-      "type": "graph",
-      "xaxis": {
-        "mode": "time",
-        "show": true,
-        "values": []
-      },
-      "yaxes": [
-        {
-          "format": "s",
-          "logBase": 1,
-          "show": true
-        },
-        {
-          "format": "short",
-          "logBase": 1,
-          "show": true
-        }
-      ],
-      "yaxis": {
-        "align": false
-      }
+      "type": "timeseries"
     },
     {
-      "aliasColors": {},
-      "bars": false,
-      "dashLength": 10,
-      "dashes": false,
       "datasource": {
+        "type": "prometheus",
         "uid": "${DS_PROMETHEUS}"
       },
       "fieldConfig": {
         "defaults": {
-          "links": []
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 10,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "insertNulls": false,
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "never",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "links": [],
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "reqps"
         },
         "overrides": []
       },
-      "fill": 1,
-      "fillGradient": 0,
       "gridPos": {
         "h": 8,
         "w": 12,
         "x": 0,
         "y": 8
       },
-      "hiddenSeries": false,
       "id": 93,
-      "legend": {
-        "alignAsTable": true,
-        "avg": false,
-        "current": false,
-        "max": false,
-        "min": false,
-        "rightSide": true,
-        "show": true,
-        "total": false,
-        "values": false
-      },
-      "lines": true,
-      "linewidth": 1,
-      "nullPointMode": "null",
       "options": {
-        "alertThreshold": true
+        "legend": {
+          "calcs": [],
+          "displayMode": "table",
+          "placement": "right",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "desc"
+        }
       },
-      "percentage": false,
-      "pluginVersion": "8.3.4",
-      "pointradius": 2,
-      "points": false,
-      "renderer": "flot",
-      "seriesOverrides": [],
-      "spaceLength": 10,
-      "stack": false,
-      "steppedLine": false,
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "  sum by (method, host, path)(\n    rate(\n      nginx_ingress_controller_request_duration_seconds_count{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n",
           "interval": "",
           "intervalFactor": 1,
@@ -318,89 +391,97 @@
           "refId": "A"
         }
       ],
-      "thresholds": [],
-      "timeRegions": [],
       "title": "Request Rate by Method and Path",
-      "tooltip": {
-        "shared": true,
-        "sort": 2,
-        "value_type": "individual"
-      },
-      "type": "graph",
-      "xaxis": {
-        "mode": "time",
-        "show": true,
-        "values": []
-      },
-      "yaxes": [
-        {
-          "format": "reqps",
-          "logBase": 1,
-          "show": true
-        },
-        {
-          "format": "short",
-          "logBase": 1,
-          "show": true
-        }
-      ],
-      "yaxis": {
-        "align": false
-      }
+      "type": "timeseries"
     },
     {
-      "aliasColors": {},
-      "bars": false,
-      "dashLength": 10,
-      "dashes": false,
       "datasource": {
+        "type": "prometheus",
         "uid": "${DS_PROMETHEUS}"
       },
       "description": "For each path observed, its median upstream response time",
       "fieldConfig": {
         "defaults": {
-          "links": []
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 10,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "insertNulls": false,
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "never",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "links": [],
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "s"
         },
         "overrides": []
       },
-      "fill": 1,
-      "fillGradient": 0,
       "gridPos": {
         "h": 8,
         "w": 12,
         "x": 12,
         "y": 8
       },
-      "hiddenSeries": false,
       "id": 98,
-      "legend": {
-        "alignAsTable": true,
-        "avg": false,
-        "current": false,
-        "max": false,
-        "min": false,
-        "rightSide": true,
-        "show": true,
-        "total": false,
-        "values": false
-      },
-      "lines": true,
-      "linewidth": 1,
-      "nullPointMode": "null",
       "options": {
-        "alertThreshold": true
+        "legend": {
+          "calcs": [],
+          "displayMode": "table",
+          "placement": "right",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "desc"
+        }
       },
-      "percentage": false,
-      "pluginVersion": "8.3.4",
-      "pointradius": 2,
-      "points": false,
-      "renderer": "flot",
-      "seriesOverrides": [],
-      "spaceLength": 10,
-      "stack": false,
-      "steppedLine": false,
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "histogram_quantile(\n  .5,\n  sum by (le, method, host, path)(\n    rate(\n      nginx_ingress_controller_response_duration_seconds_bucket{\n        ingress =~ \"$ingress\"\n      }[5m]\n    )\n  )\n)",
           "interval": "",
           "intervalFactor": 1,
@@ -408,89 +489,97 @@
           "refId": "A"
         }
       ],
-      "thresholds": [],
-      "timeRegions": [],
       "title": "Median Upstream Response Time by Method and Path",
-      "tooltip": {
-        "shared": true,
-        "sort": 2,
-        "value_type": "individual"
-      },
-      "type": "graph",
-      "xaxis": {
-        "mode": "time",
-        "show": true,
-        "values": []
-      },
-      "yaxes": [
-        {
-          "format": "s",
-          "logBase": 1,
-          "show": true
-        },
-        {
-          "format": "short",
-          "logBase": 1,
-          "show": true
-        }
-      ],
-      "yaxis": {
-        "align": false
-      }
+      "type": "timeseries"
     },
     {
-      "aliasColors": {},
-      "bars": false,
-      "dashLength": 10,
-      "dashes": false,
       "datasource": {
+        "type": "prometheus",
         "uid": "${DS_PROMETHEUS}"
       },
       "description": "Percentage of 4xx and 5xx responses among all responses.",
       "fieldConfig": {
         "defaults": {
-          "links": []
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 10,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "insertNulls": false,
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "never",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "links": [],
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "percentunit"
         },
         "overrides": []
       },
-      "fill": 1,
-      "fillGradient": 0,
       "gridPos": {
         "h": 8,
         "w": 12,
         "x": 0,
         "y": 16
       },
-      "hiddenSeries": false,
       "id": 100,
-      "legend": {
-        "alignAsTable": true,
-        "avg": false,
-        "current": false,
-        "max": false,
-        "min": false,
-        "rightSide": true,
-        "show": true,
-        "total": false,
-        "values": false
-      },
-      "lines": true,
-      "linewidth": 1,
-      "nullPointMode": "null as zero",
       "options": {
-        "alertThreshold": true
+        "legend": {
+          "calcs": [],
+          "displayMode": "table",
+          "placement": "right",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "desc"
+        }
       },
-      "percentage": false,
-      "pluginVersion": "8.3.4",
-      "pointradius": 2,
-      "points": false,
-      "renderer": "flot",
-      "seriesOverrides": [],
-      "spaceLength": 10,
-      "stack": false,
-      "steppedLine": false,
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "sum by (method, host, path) (rate(nginx_ingress_controller_request_duration_seconds_count{\n  ingress =~ \"$ingress\",\n  status =~ \"[4-5].*\"\n}[5m])) / sum by (method, host, path) (rate(nginx_ingress_controller_request_duration_seconds_count{\n  ingress =~ \"$ingress\",\n}[5m]))",
           "interval": "",
           "intervalFactor": 1,
@@ -498,89 +587,97 @@
           "refId": "A"
         }
       ],
-      "thresholds": [],
-      "timeRegions": [],
       "title": "Response Error Rate by Method and Path",
-      "tooltip": {
-        "shared": true,
-        "sort": 2,
-        "value_type": "individual"
-      },
-      "type": "graph",
-      "xaxis": {
-        "mode": "time",
-        "show": true,
-        "values": []
-      },
-      "yaxes": [
-        {
-          "format": "percentunit",
-          "logBase": 1,
-          "show": true
-        },
-        {
-          "format": "short",
-          "logBase": 1,
-          "show": true
-        }
-      ],
-      "yaxis": {
-        "align": false
-      }
+      "type": "timeseries"
     },
     {
-      "aliasColors": {},
-      "bars": false,
-      "dashLength": 10,
-      "dashes": false,
       "datasource": {
+        "type": "prometheus",
         "uid": "${DS_PROMETHEUS}"
       },
       "description": "For each path observed, the sum of upstream request time",
       "fieldConfig": {
         "defaults": {
-          "links": []
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 10,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "insertNulls": false,
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "never",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "links": [],
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "s"
         },
         "overrides": []
       },
-      "fill": 1,
-      "fillGradient": 0,
       "gridPos": {
         "h": 8,
         "w": 12,
         "x": 12,
         "y": 16
       },
-      "hiddenSeries": false,
       "id": 102,
-      "legend": {
-        "alignAsTable": true,
-        "avg": false,
-        "current": false,
-        "max": false,
-        "min": false,
-        "rightSide": true,
-        "show": true,
-        "total": false,
-        "values": false
-      },
-      "lines": true,
-      "linewidth": 1,
-      "nullPointMode": "null",
       "options": {
-        "alertThreshold": true
+        "legend": {
+          "calcs": [],
+          "displayMode": "table",
+          "placement": "right",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "desc"
+        }
       },
-      "percentage": false,
-      "pluginVersion": "8.3.4",
-      "pointradius": 2,
-      "points": false,
-      "renderer": "flot",
-      "seriesOverrides": [],
-      "spaceLength": 10,
-      "stack": false,
-      "steppedLine": false,
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "sum by (method, host, path) (rate(nginx_ingress_controller_response_duration_seconds_sum{ingress =~ \"$ingress\"}[5m]))",
           "interval": "",
           "intervalFactor": 1,
@@ -588,88 +685,96 @@
           "refId": "A"
         }
       ],
-      "thresholds": [],
-      "timeRegions": [],
       "title": "Upstream Response Time by Method and Path",
-      "tooltip": {
-        "shared": true,
-        "sort": 2,
-        "value_type": "individual"
-      },
-      "type": "graph",
-      "xaxis": {
-        "mode": "time",
-        "show": true,
-        "values": []
-      },
-      "yaxes": [
-        {
-          "format": "s",
-          "logBase": 1,
-          "show": true
-        },
-        {
-          "format": "short",
-          "logBase": 1,
-          "show": true
-        }
-      ],
-      "yaxis": {
-        "align": false
-      }
+      "type": "timeseries"
     },
     {
-      "aliasColors": {},
-      "bars": false,
-      "dashLength": 10,
-      "dashes": false,
       "datasource": {
+        "type": "prometheus",
         "uid": "${DS_PROMETHEUS}"
       },
       "fieldConfig": {
         "defaults": {
-          "links": []
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 10,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "insertNulls": false,
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "never",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "links": [],
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "reqps"
         },
         "overrides": []
       },
-      "fill": 1,
-      "fillGradient": 0,
       "gridPos": {
         "h": 8,
         "w": 12,
         "x": 0,
         "y": 24
       },
-      "hiddenSeries": false,
       "id": 101,
-      "legend": {
-        "alignAsTable": true,
-        "avg": false,
-        "current": false,
-        "max": false,
-        "min": false,
-        "rightSide": true,
-        "show": true,
-        "total": false,
-        "values": false
-      },
-      "lines": true,
-      "linewidth": 1,
-      "nullPointMode": "null",
       "options": {
-        "alertThreshold": true
+        "legend": {
+          "calcs": [],
+          "displayMode": "table",
+          "placement": "right",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "desc"
+        }
       },
-      "percentage": false,
-      "pluginVersion": "8.3.4",
-      "pointradius": 2,
-      "points": false,
-      "renderer": "flot",
-      "seriesOverrides": [],
-      "spaceLength": 10,
-      "stack": false,
-      "steppedLine": false,
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "  sum (\n    rate(\n      nginx_ingress_controller_request_duration_seconds_count{\n        ingress =~ \"$ingress\",\n        status =~\"[4-5].*\",\n      }[5m]\n    )\n  ) by(method, host, path, status)\n",
           "interval": "",
           "intervalFactor": 1,
@@ -677,88 +782,96 @@
           "refId": "A"
         }
       ],
-      "thresholds": [],
-      "timeRegions": [],
       "title": "Response Error Rate by Method and Path",
-      "tooltip": {
-        "shared": true,
-        "sort": 2,
-        "value_type": "individual"
-      },
-      "type": "graph",
-      "xaxis": {
-        "mode": "time",
-        "show": true,
-        "values": []
-      },
-      "yaxes": [
-        {
-          "format": "reqps",
-          "logBase": 1,
-          "show": true
-        },
-        {
-          "format": "short",
-          "logBase": 1,
-          "show": true
-        }
-      ],
-      "yaxis": {
-        "align": false
-      }
+      "type": "timeseries"
     },
     {
-      "aliasColors": {},
-      "bars": false,
-      "dashLength": 10,
-      "dashes": false,
       "datasource": {
+        "type": "prometheus",
         "uid": "${DS_PROMETHEUS}"
       },
       "fieldConfig": {
         "defaults": {
-          "links": []
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 10,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "insertNulls": false,
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "never",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "links": [],
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green",
+                "value": null
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "decbytes"
         },
         "overrides": []
       },
-      "fill": 1,
-      "fillGradient": 0,
       "gridPos": {
         "h": 8,
         "w": 12,
         "x": 12,
         "y": 24
       },
-      "hiddenSeries": false,
       "id": 99,
-      "legend": {
-        "alignAsTable": true,
-        "avg": false,
-        "current": false,
-        "max": false,
-        "min": false,
-        "rightSide": true,
-        "show": true,
-        "total": false,
-        "values": false
-      },
-      "lines": true,
-      "linewidth": 1,
-      "nullPointMode": "null",
       "options": {
-        "alertThreshold": true
+        "legend": {
+          "calcs": [],
+          "displayMode": "table",
+          "placement": "right",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "desc"
+        }
       },
-      "percentage": false,
-      "pluginVersion": "8.3.4",
-      "pointradius": 2,
-      "points": false,
-      "renderer": "flot",
-      "seriesOverrides": [],
-      "spaceLength": 10,
-      "stack": false,
-      "steppedLine": false,
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "sum (\n  rate (\n      nginx_ingress_controller_response_size_sum {\n        ingress =~ \"$ingress\",\n      }[5m]\n  )\n)  by (method, host, path) / sum (\n  rate(\n      nginx_ingress_controller_response_size_count {\n        ingress =~ \"$ingress\",\n      }[5m]\n  )\n) by (method, host, path)\n",
           "hide": false,
           "instant": false,
@@ -768,92 +881,105 @@
           "refId": "D"
         },
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "    sum (rate(nginx_ingress_controller_response_size_bucket{\n        ingress =~ \"$ingress\",\n    }[5m])) by (le)\n",
           "hide": true,
           "legendFormat": "{{le}}",
           "refId": "A"
         }
       ],
-      "thresholds": [],
-      "timeRegions": [],
       "title": "Average Response Size by Method and Path",
-      "tooltip": {
-        "shared": true,
-        "sort": 2,
-        "value_type": "individual"
-      },
-      "type": "graph",
-      "xaxis": {
-        "mode": "time",
-        "show": true,
-        "values": []
-      },
-      "yaxes": [
-        {
-          "format": "decbytes",
-          "logBase": 1,
-          "show": true
-        },
-        {
-          "format": "short",
-          "logBase": 1,
-          "show": true
-        }
-      ],
-      "yaxis": {
-        "align": false
-      }
+      "type": "timeseries"
     },
     {
-      "aliasColors": {},
-      "bars": false,
-      "dashLength": 10,
-      "dashes": false,
       "datasource": {
+        "type": "prometheus",
         "uid": "${DS_PROMETHEUS}"
       },
       "fieldConfig": {
         "defaults": {
-          "links": []
+          "color": {
+            "mode": "palette-classic"
+          },
+          "custom": {
+            "axisBorderShow": false,
+            "axisCenteredZero": false,
+            "axisColorMode": "text",
+            "axisLabel": "",
+            "axisPlacement": "auto",
+            "barAlignment": 0,
+            "drawStyle": "line",
+            "fillOpacity": 10,
+            "gradientMode": "none",
+            "hideFrom": {
+              "legend": false,
+              "tooltip": false,
+              "viz": false
+            },
+            "insertNulls": false,
+            "lineInterpolation": "linear",
+            "lineWidth": 1,
+            "pointSize": 5,
+            "scaleDistribution": {
+              "type": "linear"
+            },
+            "showPoints": "never",
+            "spanNulls": false,
+            "stacking": {
+              "group": "A",
+              "mode": "none"
+            },
+            "thresholdsStyle": {
+              "mode": "off"
+            }
+          },
+          "links": [],
+          "mappings": [],
+          "thresholds": {
+            "mode": "absolute",
+            "steps": [
+              {
+                "color": "green"
+              },
+              {
+                "color": "red",
+                "value": 80
+              }
+            ]
+          },
+          "unit": "s"
         },
         "overrides": []
       },
-      "fill": 1,
-      "fillGradient": 0,
       "gridPos": {
         "h": 8,
         "w": 12,
         "x": 0,
         "y": 32
       },
-      "hiddenSeries": false,
       "id": 96,
-      "legend": {
-        "avg": false,
-        "current": false,
-        "max": false,
-        "min": false,
-        "show": true,
-        "total": false,
-        "values": false
-      },
-      "lines": true,
-      "linewidth": 1,
-      "nullPointMode": "null",
       "options": {
-        "alertThreshold": true
+        "legend": {
+          "calcs": [],
+          "displayMode": "list",
+          "placement": "bottom",
+          "showLegend": true
+        },
+        "tooltip": {
+          "mode": "multi",
+          "sort": "desc"
+        }
       },
-      "percentage": false,
-      "pluginVersion": "8.3.4",
-      "pointradius": 2,
-      "points": false,
-      "renderer": "flot",
-      "seriesOverrides": [],
-      "spaceLength": 10,
-      "stack": false,
-      "steppedLine": false,
+      "pluginVersion": "10.4.3",
       "targets": [
         {
+          "datasource": {
+            "type": "prometheus",
+            "uid": "${DS_PROMETHEUS}"
+          },
           "expr": "sum (\n  rate(\n      nginx_ingress_controller_ingress_upstream_latency_seconds_sum {\n        ingress =~ \"$ingress\",\n      }[5m]\n)) / sum (\n  rate(\n      nginx_ingress_controller_ingress_upstream_latency_seconds_count {\n        ingress =~ \"$ingress\",\n      }[5m]\n  )\n)\n",
           "hide": false,
           "instant": false,
@@ -863,40 +989,12 @@
           "refId": "B"
         }
       ],
-      "thresholds": [],
-      "timeRegions": [],
       "title": "Upstream Service Latency",
-      "tooltip": {
-        "shared": true,
-        "sort": 2,
-        "value_type": "individual"
-      },
-      "type": "graph",
-      "xaxis": {
-        "mode": "time",
-        "show": true,
-        "values": []
-      },
-      "yaxes": [
-        {
-          "format": "s",
-          "logBase": 1,
-          "show": true
-        },
-        {
-          "format": "short",
-          "logBase": 1,
-          "show": true
-        }
-      ],
-      "yaxis": {
-        "align": false
-      }
+      "type": "timeseries"
     }
   ],
   "refresh": "30s",
-  "schemaVersion": 34,
-  "style": "dark",
+  "schemaVersion": 39,
   "tags": [
     "nginx"
   ],
@@ -906,7 +1004,7 @@
         "current": {
           "selected": false,
           "text": "Prometheus",
-          "value": "Prometheus"
+          "value": "${DS_PROMETHEUS}"
         },
         "hide": 0,
         "includeAll": false,
@@ -924,6 +1022,7 @@
         "allValue": ".*",
         "current": {},
         "datasource": {
+          "type": "prometheus",
           "uid": "${DS_PROMETHEUS}"
         },
         "definition": "label_values(nginx_ingress_controller_requests, ingress) ",

From 987039c0146cd1a90b10dc0fb5b2489ab6015b2c Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 3 Jun 2024 09:32:19 +0200
Subject: [PATCH 1290/1641] Chart: Remove
 `controller.enableWorkerSerialReloads`. (#11400)

---
 charts/ingress-nginx/README.md                           | 1 -
 charts/ingress-nginx/templates/controller-configmap.yaml | 1 -
 charts/ingress-nginx/values.yaml                         | 2 --
 3 files changed, 4 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 8171d4e1d..be8376935 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -301,7 +301,6 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.enableAnnotationValidations | bool | `false` |  |
 | controller.enableMimalloc | bool | `true` | Enable mimalloc as a drop-in replacement for malloc. # ref: https://github.com/microsoft/mimalloc # |
 | controller.enableTopologyAwareRouting | bool | `false` | This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-mode="auto" Defaults to false |
-| controller.enableWorkerSerialReloads | bool | `false` | This configuration defines if NGINX workers should reload serially instead of concurrently when multiple changes that require reloads are queued |
 | controller.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | controller.extraArgs | object | `{}` | Additional command line arguments to pass to Ingress-Nginx Controller E.g. to specify the default SSL certificate you can use |
 | controller.extraContainers | list | `[]` | Additional containers to be added to the controller pod. See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example. |
diff --git a/charts/ingress-nginx/templates/controller-configmap.yaml b/charts/ingress-nginx/templates/controller-configmap.yaml
index 50ae824a8..22080d115 100644
--- a/charts/ingress-nginx/templates/controller-configmap.yaml
+++ b/charts/ingress-nginx/templates/controller-configmap.yaml
@@ -14,7 +14,6 @@ metadata:
   namespace: {{ include "ingress-nginx.namespace" . }}
 data:
   allow-snippet-annotations: "{{ .Values.controller.allowSnippetAnnotations }}"
-  enable-serial-reloads: "{{ .Values.controller.enableWorkerSerialReloads }}"
 {{- if .Values.controller.addHeaders }}
   add-headers: {{ include "ingress-nginx.namespace" . }}/{{ include "ingress-nginx.fullname" . }}-custom-add-headers
 {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 37aa0f73b..8db58ff2a 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -93,8 +93,6 @@ controller:
   # when users add those annotations.
   # Global snippets in ConfigMap are still respected
   allowSnippetAnnotations: false
-  # -- This configuration defines if NGINX workers should reload serially instead of concurrently when multiple changes that require reloads are queued
-  enableWorkerSerialReloads: false
   # -- Required for use with CNI based kubernetes installations (such as ones set up by kubeadm),
   # since CNI and hostport don't mix yet. Can be deprecated once https://github.com/kubernetes/kubernetes/issues/23920
   # is merged

From 82c4d78a2f11790caec7a753da50c520cd892ba1 Mon Sep 17 00:00:00 2001
From: k8s-infra-cherrypick-robot
 <90416843+k8s-infra-cherrypick-robot@users.noreply.github.com>
Date: Mon, 3 Jun 2024 00:34:38 -0700
Subject: [PATCH 1291/1641] Merge pull request #11277 from
 strongjz/chart-1.10.1 (#11415)

release chart 4.10.1

Co-authored-by: James Strong <strong.james.e@gmail.com>
---
 charts/ingress-nginx/Chart.yaml                | 18 ++++++++++--------
 charts/ingress-nginx/README.md                 |  8 ++++----
 .../changelog/helm-chart-4.10.1.md             | 11 +++++++++++
 charts/ingress-nginx/values.yaml               |  6 +++---
 4 files changed, 28 insertions(+), 15 deletions(-)
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.10.1.md

diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index f9bb890f8..70344515e 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,9 +1,11 @@
 annotations:
   artifacthub.io/changes: |-
-    - "Update Ingress-Nginx version controller-v1.10.0"
+    - "update post submit helm ci and clean up (#11221)"
+    - "refactor helm ci tests part I (#11188)"
+    - "Update Ingress-Nginx version controller-v1.10.1"
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.10.0
+appVersion: 1.10.1
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 home: https://github.com/kubernetes/ingress-nginx
@@ -13,11 +15,11 @@ keywords:
   - nginx
 kubeVersion: '>=1.21.0-0'
 maintainers:
-  - name: Gacko
-  - name: rikatz
-  - name: strongjz
-  - name: tao12345666333
+- name: Gacko
+- name: rikatz
+- name: strongjz
+- name: tao12345666333
 name: ingress-nginx
 sources:
-  - https://github.com/kubernetes/ingress-nginx
-version: 4.10.0
+- https://github.com/kubernetes/ingress-nginx
+version: 4.10.1
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index be8376935..2141ef44c 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.10.0](https://img.shields.io/badge/Version-4.10.0-informational?style=flat-square) ![AppVersion: 1.10.0](https://img.shields.io/badge/AppVersion-1.10.0-informational?style=flat-square)
+![Version: 4.10.1](https://img.shields.io/badge/Version-4.10.1-informational?style=flat-square) ![AppVersion: 1.10.1](https://img.shields.io/badge/AppVersion-1.10.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -319,8 +319,8 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `false` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c"` |  |
-| controller.image.digestChroot | string | `"sha256:7eb46ff733429e0e46892903c7394aff149ac6d284d92b3946f3baf7ff26a096"` |  |
+| controller.image.digest | string | `"sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e"` |  |
+| controller.image.digestChroot | string | `"sha256:c155954116b397163c88afcb3252462771bd7867017e8a17623e83601bab7ac7"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.readOnlyRootFilesystem | bool | `false` |  |
@@ -328,7 +328,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.image.runAsNonRoot | bool | `true` |  |
 | controller.image.runAsUser | int | `101` |  |
 | controller.image.seccompProfile.type | string | `"RuntimeDefault"` |  |
-| controller.image.tag | string | `"v1.10.0"` |  |
+| controller.image.tag | string | `"v1.10.1"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource | object | `{"aliases":[],"annotations":{},"controllerValue":"k8s.io/ingress-nginx","default":false,"enabled":true,"name":"nginx","parameters":{}}` | This section refers to the creation of the IngressClass resource. IngressClasses are immutable and cannot be changed after creation. We do not support namespaced IngressClasses, yet, so a ClusterRole and a ClusterRoleBinding is required. |
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.10.1.md b/charts/ingress-nginx/changelog/helm-chart-4.10.1.md
new file mode 100644
index 000000000..3a28de00c
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.10.1.md
@@ -0,0 +1,11 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.10.1
+
+* - "update post submit helm ci and clean up (#11221)"
+* - "refactor helm ci tests part I (#11188)"
+* - "Update Ingress-Nginx version controller-v1.10.1"
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.10.0...helm-chart-4.10.1
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 8db58ff2a..0fd0ccc7b 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -26,9 +26,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.10.0"
-    digest: sha256:42b3f0e5d0846876b1791cd3afeb5f1cbbe4259d6f35651dcc1b5c980925379c
-    digestChroot: sha256:7eb46ff733429e0e46892903c7394aff149ac6d284d92b3946f3baf7ff26a096
+    tag: "v1.10.1"
+    digest: sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
+    digestChroot: sha256:c155954116b397163c88afcb3252462771bd7867017e8a17623e83601bab7ac7
     pullPolicy: IfNotPresent
     runAsNonRoot: true
     # www-data -> uid 101

From 0c17748c4412b5f6ac8532586ed41accb0471c74 Mon Sep 17 00:00:00 2001
From: Reddysekhar Gaduputi <gsekhar73@gmail.com>
Date: Mon, 3 Jun 2024 14:47:23 +0530
Subject: [PATCH 1292/1641] Chart: Make admission webhook patch job RBAC
 configurable. (#11376)

* Add an option to skip rbac resources creation in helm chart for admission-webhooks (#11375)

Signed-off-by: Reddysekhar Gaduputi <gsekhar73@gmail.com>

* Add an option to skip rbac resources creation in helm chart update README (#11375)

Signed-off-by: Reddysekhar Gaduputi <gsekhar73@gmail.com>

* Add an option to skip serviceAccount resources creation in helm chart for admission-webhooks (#11375)

Signed-off-by: Reddysekhar Gaduputi <gsekhar73@gmail.com>

* Add helm chart tests for admission-webhooks (#11375)

Signed-off-by: Reddysekhar Gaduputi <gsekhar73@gmail.com>

* Chart make admission webhook patch job RBAC configurable (#11375)

Signed-off-by: Reddysekhar Gaduputi <gsekhar73@gmail.com>

* Update charts/ingress-nginx/tests/admission-webhooks/job-patch/clusterrole_test.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/tests/admission-webhooks/job-patch/clusterrolebinding_test.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/tests/admission-webhooks/job-patch/role_test.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/tests/admission-webhooks/job-patch/rolebinding_test.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/tests/admission-webhooks/job-patch/serviceaccount_test.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

---------

Signed-off-by: Reddysekhar Gaduputi <gsekhar73@gmail.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 charts/ingress-nginx/README.md                |  6 +++
 charts/ingress-nginx/templates/_helpers.tpl   | 11 +++++
 .../job-patch/clusterrole.yaml                |  2 +-
 .../job-patch/clusterrolebinding.yaml         |  4 +-
 .../job-patch/job-createSecret.yaml           |  2 +-
 .../job-patch/job-patchWebhook.yaml           |  2 +-
 .../admission-webhooks/job-patch/role.yaml    |  2 +-
 .../job-patch/rolebinding.yaml                |  4 +-
 .../job-patch/serviceaccount.yaml             |  5 +-
 .../job-patch/clusterrole_test.yaml           | 11 +++++
 .../job-patch/clusterrolebinding_test.yaml    | 11 +++++
 .../job-patch/role_test.yaml                  | 11 +++++
 .../job-patch/rolebinding_test.yaml           | 11 +++++
 .../job-patch/serviceaccount_test.yaml        | 47 +++++++++++++++++++
 charts/ingress-nginx/values.yaml              | 12 +++++
 15 files changed, 131 insertions(+), 10 deletions(-)
 create mode 100644 charts/ingress-nginx/tests/admission-webhooks/job-patch/clusterrole_test.yaml
 create mode 100644 charts/ingress-nginx/tests/admission-webhooks/job-patch/clusterrolebinding_test.yaml
 create mode 100644 charts/ingress-nginx/tests/admission-webhooks/job-patch/role_test.yaml
 create mode 100644 charts/ingress-nginx/tests/admission-webhooks/job-patch/rolebinding_test.yaml
 create mode 100644 charts/ingress-nginx/tests/admission-webhooks/job-patch/serviceaccount_test.yaml

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 2141ef44c..d73a50114 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -263,7 +263,13 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
 | controller.admissionWebhooks.patch.podAnnotations | object | `{}` |  |
 | controller.admissionWebhooks.patch.priorityClassName | string | `""` | Provide a priority class name to the webhook patching job # |
+| controller.admissionWebhooks.patch.rbac | object | `{"create":true}` | Admission webhook patch job RBAC |
+| controller.admissionWebhooks.patch.rbac.create | bool | `true` | Create RBAC or not |
 | controller.admissionWebhooks.patch.securityContext | object | `{}` | Security context for secret creation & webhook patch pods |
+| controller.admissionWebhooks.patch.serviceAccount | object | `{"automountServiceAccountToken":true,"create":true,"name":""}` | Admission webhook patch job service account |
+| controller.admissionWebhooks.patch.serviceAccount.automountServiceAccountToken | bool | `true` | Auto-mount service account token or not |
+| controller.admissionWebhooks.patch.serviceAccount.create | bool | `true` | Create a service account or not |
+| controller.admissionWebhooks.patch.serviceAccount.name | string | `""` | Custom service account name |
 | controller.admissionWebhooks.patch.tolerations | list | `[]` |  |
 | controller.admissionWebhooks.patchWebhookJob.name | string | `"patch"` |  |
 | controller.admissionWebhooks.patchWebhookJob.resources | object | `{}` |  |
diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index 9ac2dc569..0c6a3e207 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -167,6 +167,17 @@ We truncate at 63 chars because some Kubernetes name fields are limited to this
 {{- printf "%s-%s" (include "ingress-nginx.fullname" .) .Values.controller.admissionWebhooks.name | trunc 63 | trimSuffix "-" -}}
 {{- end -}}
 
+{{/*
+Create the name of the admission webhook patch job service account to use
+*/}}
+{{- define "ingress-nginx.admissionWebhooks.patch.serviceAccountName" -}}
+{{- if .Values.controller.admissionWebhooks.patch.serviceAccount.create -}}
+    {{ default (include "ingress-nginx.admissionWebhooks.fullname" .) .Values.controller.admissionWebhooks.patch.serviceAccount.name }}
+{{- else -}}
+    {{ default "default" .Values.controller.admissionWebhooks.patch.serviceAccount.name }}
+{{- end -}}
+{{- end -}}
+
 {{/*
 Create a default fully qualified admission webhook secret creation job name.
 We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
index 8271dc404..a21848201 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled .Values.controller.admissionWebhooks.patch.rbac.create (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRole
 metadata:
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
index 3fe842d1f..b89388433 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrolebinding.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled .Values.controller.admissionWebhooks.patch.rbac.create (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
 metadata:
@@ -18,6 +18,6 @@ roleRef:
   name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
 subjects:
   - kind: ServiceAccount
-    name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
+    name: {{ include "ingress-nginx.admissionWebhooks.patch.serviceAccountName" . }}
     namespace: {{ include "ingress-nginx.namespace" . }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
index 0a21f856a..176616467 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
@@ -66,7 +66,7 @@ spec:
           resources: {{ toYaml .Values.controller.admissionWebhooks.createSecretJob.resources | nindent 12 }}
           {{- end }}
       restartPolicy: OnFailure
-      serviceAccountName: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
+      serviceAccountName: {{ include "ingress-nginx.admissionWebhooks.patch.serviceAccountName" . }}
     {{- if .Values.controller.admissionWebhooks.patch.nodeSelector }}
       nodeSelector: {{ toYaml .Values.controller.admissionWebhooks.patch.nodeSelector | nindent 8 }}
     {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
index ce9985aa5..f7d44a24d 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
@@ -68,7 +68,7 @@ spec:
           resources: {{ toYaml .Values.controller.admissionWebhooks.patchWebhookJob.resources | nindent 12 }}
           {{- end }}
       restartPolicy: OnFailure
-      serviceAccountName: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
+      serviceAccountName: {{ include "ingress-nginx.admissionWebhooks.patch.serviceAccountName" . }}
     {{- if .Values.controller.admissionWebhooks.patch.nodeSelector }}
       nodeSelector: {{ toYaml .Values.controller.admissionWebhooks.patch.nodeSelector | nindent 8 }}
     {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
index 5b05d9b00..c4b23aa08 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/role.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled .Values.controller.admissionWebhooks.patch.rbac.create (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
 apiVersion: rbac.authorization.k8s.io/v1
 kind: Role
 metadata:
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
index 48a175566..425e8d821 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/rolebinding.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled .Values.controller.admissionWebhooks.patch.rbac.create (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
 metadata:
@@ -19,6 +19,6 @@ roleRef:
   name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
 subjects:
   - kind: ServiceAccount
-    name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
+    name: {{ include "ingress-nginx.admissionWebhooks.patch.serviceAccountName" . }}
     namespace: {{ include "ingress-nginx.namespace" . }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
index 91bbf22bb..52f94dcce 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/serviceaccount.yaml
@@ -1,8 +1,8 @@
-{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
+{{- if and .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled .Values.controller.admissionWebhooks.patch.serviceAccount.create (not .Values.controller.admissionWebhooks.certManager.enabled) -}}
 apiVersion: v1
 kind: ServiceAccount
 metadata:
-  name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
+  name: {{ include "ingress-nginx.admissionWebhooks.patch.serviceAccountName" . }}
   namespace: {{ include "ingress-nginx.namespace" . }}
   annotations:
     "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
@@ -13,4 +13,5 @@ metadata:
     {{- with .Values.controller.admissionWebhooks.patch.labels }}
     {{- toYaml . | nindent 4 }}
     {{- end }}
+automountServiceAccountToken: {{ .Values.controller.admissionWebhooks.patch.serviceAccount.automountServiceAccountToken }}
 {{- end }}
diff --git a/charts/ingress-nginx/tests/admission-webhooks/job-patch/clusterrole_test.yaml b/charts/ingress-nginx/tests/admission-webhooks/job-patch/clusterrole_test.yaml
new file mode 100644
index 000000000..d7a8b8852
--- /dev/null
+++ b/charts/ingress-nginx/tests/admission-webhooks/job-patch/clusterrole_test.yaml
@@ -0,0 +1,11 @@
+suite: Admission Webhooks > Patch Job > ClusterRole
+templates:
+  - admission-webhooks/job-patch/clusterrole.yaml
+
+tests:
+  - it: should not create a ClusterRole if `controller.admissionWebhooks.patch.rbac.create` is false
+    set:
+      controller.admissionWebhooks.patch.rbac.create: false
+    asserts:
+      - hasDocuments:
+          count: 0
diff --git a/charts/ingress-nginx/tests/admission-webhooks/job-patch/clusterrolebinding_test.yaml b/charts/ingress-nginx/tests/admission-webhooks/job-patch/clusterrolebinding_test.yaml
new file mode 100644
index 000000000..d7c3266d2
--- /dev/null
+++ b/charts/ingress-nginx/tests/admission-webhooks/job-patch/clusterrolebinding_test.yaml
@@ -0,0 +1,11 @@
+suite: Admission Webhooks > Patch Job > ClusterRoleBinding
+templates:
+  - admission-webhooks/job-patch/clusterrolebinding.yaml
+
+tests:
+  - it: should not create a ClusterRoleBinding if `controller.admissionWebhooks.patch.rbac.create` is false
+    set:
+      controller.admissionWebhooks.patch.rbac.create: false
+    asserts:
+      - hasDocuments:
+          count: 0
diff --git a/charts/ingress-nginx/tests/admission-webhooks/job-patch/role_test.yaml b/charts/ingress-nginx/tests/admission-webhooks/job-patch/role_test.yaml
new file mode 100644
index 000000000..a236f3d7b
--- /dev/null
+++ b/charts/ingress-nginx/tests/admission-webhooks/job-patch/role_test.yaml
@@ -0,0 +1,11 @@
+suite: Admission Webhooks > Patch Job > Role
+templates:
+  - admission-webhooks/job-patch/role.yaml
+
+tests:
+  - it: should not create a Role if `controller.admissionWebhooks.patch.rbac.create` is false
+    set:
+      controller.admissionWebhooks.patch.rbac.create: false
+    asserts:
+      - hasDocuments:
+          count: 0
diff --git a/charts/ingress-nginx/tests/admission-webhooks/job-patch/rolebinding_test.yaml b/charts/ingress-nginx/tests/admission-webhooks/job-patch/rolebinding_test.yaml
new file mode 100644
index 000000000..74abaa163
--- /dev/null
+++ b/charts/ingress-nginx/tests/admission-webhooks/job-patch/rolebinding_test.yaml
@@ -0,0 +1,11 @@
+suite: Admission Webhooks > Patch Job > RoleBinding
+templates:
+  - admission-webhooks/job-patch/rolebinding.yaml
+
+tests:
+  - it: should not create a RoleBinding if `controller.admissionWebhooks.patch.rbac.create` is false
+    set:
+      controller.admissionWebhooks.patch.rbac.create: false
+    asserts:
+      - hasDocuments:
+          count: 0
diff --git a/charts/ingress-nginx/tests/admission-webhooks/job-patch/serviceaccount_test.yaml b/charts/ingress-nginx/tests/admission-webhooks/job-patch/serviceaccount_test.yaml
new file mode 100644
index 000000000..7c30d1e66
--- /dev/null
+++ b/charts/ingress-nginx/tests/admission-webhooks/job-patch/serviceaccount_test.yaml
@@ -0,0 +1,47 @@
+suite: Admission Webhooks > Patch Job > ServiceAccount
+templates:
+  - admission-webhooks/job-patch/serviceaccount.yaml
+
+tests:
+  - it: should not create a ServiceAccount if `controller.admissionWebhooks.patch.serviceAccount.create` is false
+    set:
+      controller.admissionWebhooks.patch.serviceAccount.create: false
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a ServiceAccount if `controller.admissionWebhooks.patch.serviceAccount.create` is true
+    set:
+      controller.admissionWebhooks.patch.serviceAccount.create: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ServiceAccount
+      - equal:
+          path: metadata.name
+          value: ingress-nginx-admission
+
+  - it: should create a ServiceAccount with specified name if `controller.admissionWebhooks.patch.serviceAccount.name` is set
+    set:
+      controller.admissionWebhooks.patch.serviceAccount.name: ingress-nginx-admission-test-sa
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ServiceAccount
+      - equal:
+          path: metadata.name
+          value: ingress-nginx-admission-test-sa
+
+  - it: should create a ServiceAccount with token auto-mounting disabled if `controller.admissionWebhooks.patch.serviceAccount.automountServiceAccountToken` is false
+    set:
+      controller.admissionWebhooks.patch.serviceAccount.automountServiceAccountToken: false
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ServiceAccount
+      - equal:
+          path: automountServiceAccountToken
+          value: false
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 0fd0ccc7b..f09edbe74 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -822,6 +822,18 @@ controller:
       labels: {}
       # -- Security context for secret creation & webhook patch pods
       securityContext: {}
+      # -- Admission webhook patch job RBAC
+      rbac:
+        # -- Create RBAC or not
+        create: true
+      # -- Admission webhook patch job service account
+      serviceAccount:
+        # -- Create a service account or not
+        create: true
+        # -- Custom service account name
+        name: ""
+        # -- Auto-mount service account token or not
+        automountServiceAccountToken: true
     # Use certmanager to generate webhook certs
     certManager:
       enabled: false

From 90ef45852ca4bf0db53c508c098ff265f2f9fb03 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 3 Jun 2024 12:12:58 +0200
Subject: [PATCH 1293/1641] Chart: Fix `IngressClass` annotations. (#11416)

---
 .../controller-ingressclass-aliases.yaml       |  3 +++
 .../templates/controller-ingressclass.yaml     |  4 +++-
 .../controller-ingressclass-aliases_test.yaml  | 18 ++++++++++++++++++
 .../tests/controller-ingressclass_test.yaml    | 16 ++++++++++++++++
 4 files changed, 40 insertions(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/templates/controller-ingressclass-aliases.yaml b/charts/ingress-nginx/templates/controller-ingressclass-aliases.yaml
index b4b20690e..ffe22310c 100644
--- a/charts/ingress-nginx/templates/controller-ingressclass-aliases.yaml
+++ b/charts/ingress-nginx/templates/controller-ingressclass-aliases.yaml
@@ -11,6 +11,9 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ . }}
+  {{- if $.Values.controller.ingressClassResource.annotations }}
+  annotations: {{ toYaml $.Values.controller.ingressClassResource.annotations | nindent 4 }}
+  {{- end }}
 spec:
   controller: {{ $.Values.controller.ingressClassResource.controllerValue }}
   {{- with $.Values.controller.ingressClassResource.parameters }}
diff --git a/charts/ingress-nginx/templates/controller-ingressclass.yaml b/charts/ingress-nginx/templates/controller-ingressclass.yaml
index 18cace48c..98479a529 100644
--- a/charts/ingress-nginx/templates/controller-ingressclass.yaml
+++ b/charts/ingress-nginx/templates/controller-ingressclass.yaml
@@ -9,13 +9,15 @@ metadata:
     {{- toYaml . | nindent 4 }}
     {{- end }}
   name: {{ .Values.controller.ingressClassResource.name }}
+  {{- if or .Values.controller.ingressClassResource.default .Values.controller.ingressClassResource.annotations }}
   annotations:
     {{- if .Values.controller.ingressClassResource.default }}
     ingressclass.kubernetes.io/is-default-class: "true"
     {{- end }}
     {{- if .Values.controller.ingressClassResource.annotations }}
-      {{- toYaml .Values.controller.ingressClassResource.annotations | nindent 4 }}
+    {{- toYaml .Values.controller.ingressClassResource.annotations | nindent 4 }}
     {{- end }}
+  {{- end }}
 spec:
   controller: {{ .Values.controller.ingressClassResource.controllerValue }}
   {{- with .Values.controller.ingressClassResource.parameters }}
diff --git a/charts/ingress-nginx/tests/controller-ingressclass-aliases_test.yaml b/charts/ingress-nginx/tests/controller-ingressclass-aliases_test.yaml
index ef0780d9c..9a4a576b7 100644
--- a/charts/ingress-nginx/tests/controller-ingressclass-aliases_test.yaml
+++ b/charts/ingress-nginx/tests/controller-ingressclass-aliases_test.yaml
@@ -37,6 +37,24 @@ tests:
       - notExists:
           path: metadata.annotations["ingressclass.kubernetes.io/is-default-class"]
 
+  - it: should create an IngressClass alias with annotations if `controller.ingressClassResource.annotations` is set
+    set:
+      controller.ingressClassResource.aliases:
+        - nginx-alias
+      controller.ingressClassResource.annotations:
+        my-fancy-annotation: has-a-value
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: IngressClass
+      - equal:
+          path: metadata.name
+          value: nginx-alias
+      - equal:
+          path: metadata.annotations.my-fancy-annotation
+          value: has-a-value
+
   - it: should create an IngressClass alias with controller "k8s.io/ingress-nginx-internal" if `controller.ingressClassResource.controllerValue` is "k8s.io/ingress-nginx-internal"
     set:
       controller.ingressClassResource.aliases:
diff --git a/charts/ingress-nginx/tests/controller-ingressclass_test.yaml b/charts/ingress-nginx/tests/controller-ingressclass_test.yaml
index f766f922e..b3384af32 100644
--- a/charts/ingress-nginx/tests/controller-ingressclass_test.yaml
+++ b/charts/ingress-nginx/tests/controller-ingressclass_test.yaml
@@ -40,6 +40,22 @@ tests:
           path: metadata.annotations["ingressclass.kubernetes.io/is-default-class"]
           value: "true"
 
+  - it: should create an IngressClass with annotations if `controller.ingressClassResource.annotations` is set
+    set:
+      controller.ingressClassResource.annotations:
+        my-fancy-annotation: has-a-value
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: IngressClass
+      - equal:
+          path: metadata.name
+          value: nginx
+      - equal:
+          path: metadata.annotations.my-fancy-annotation
+          value: has-a-value
+
   - it: should create an IngressClass with controller "k8s.io/ingress-nginx-internal" if `controller.ingressClassResource.controllerValue` is "k8s.io/ingress-nginx-internal"
     set:
       controller.ingressClassResource.controllerValue: k8s.io/ingress-nginx-internal

From 1ed04abc1d848f79582f7a3981cd6095f4ff8cbd Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 3 Jun 2024 05:07:02 -0700
Subject: [PATCH 1294/1641] Bump google.golang.org/grpc from 1.63.2 to 1.64.0
 (#11417)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.63.2 to 1.64.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.63.2...v1.64.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index cf17df231..55375a635 100644
--- a/go.mod
+++ b/go.mod
@@ -29,7 +29,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.23.0
 	golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f
-	google.golang.org/grpc v1.63.2
+	google.golang.org/grpc v1.64.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index eb6fcc026..04e7769ed 100644
--- a/go.sum
+++ b/go.sum
@@ -1846,8 +1846,8 @@ google.golang.org/grpc v1.52.0/go.mod h1:pu6fVzoFb+NBYNAvQL08ic+lvB2IojljRYuun5v
 google.golang.org/grpc v1.53.0/go.mod h1:OnIrk0ipVdj4N5d9IUoFUx72/VlD7+jUsHwZgwSMQpw=
 google.golang.org/grpc v1.54.0/go.mod h1:PUSEXI6iWghWaB6lXM4knEgpJNu2qUcKfDtNci3EC2g=
 google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8=
-google.golang.org/grpc v1.63.2 h1:MUeiw1B2maTVZthpU5xvASfTh3LDbxHd6IJ6QQVU+xM=
-google.golang.org/grpc v1.63.2/go.mod h1:WAX/8DgncnokcFUldAxq7GeB5DXHDbMF+lLvDomNkRA=
+google.golang.org/grpc v1.64.0 h1:KH3VH9y/MgNQg1dE7b3XfVK0GsPSIzJwdF617gUSbvY=
+google.golang.org/grpc v1.64.0/go.mod h1:oxjF8E3FBnjp+/gVFYdWacaLDx9na1aqy9oovLpxQYg=
 google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=

From 285cc433da959f46ec89e473057b93054ecc4e08 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 3 Jun 2024 05:10:38 -0700
Subject: [PATCH 1295/1641] Bump github.com/onsi/ginkgo/v2 from 2.17.2 to
 2.19.0 (#11418)

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.17.2 to 2.19.0.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.17.2...v2.19.0)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 55375a635..86a32fc6b 100644
--- a/go.mod
+++ b/go.mod
@@ -16,7 +16,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.11
-	github.com/onsi/ginkgo/v2 v2.17.2
+	github.com/onsi/ginkgo/v2 v2.19.0
 	github.com/opencontainers/runc v1.1.12
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.1
@@ -109,14 +109,14 @@ require (
 	go.starlark.net v0.0.0-20240123142251-f86470692795 // indirect
 	go.uber.org/zap v1.27.0 // indirect
 	golang.org/x/mod v0.17.0 // indirect
-	golang.org/x/net v0.24.0 // indirect
+	golang.org/x/net v0.25.0 // indirect
 	golang.org/x/oauth2 v0.20.0 // indirect
 	golang.org/x/sync v0.7.0 // indirect
 	golang.org/x/sys v0.20.0 // indirect
 	golang.org/x/term v0.20.0 // indirect
 	golang.org/x/text v0.15.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
-	golang.org/x/tools v0.20.0 // indirect
+	golang.org/x/tools v0.21.0 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20240429193739-8cf5692501f6 // indirect
 	google.golang.org/protobuf v1.34.0 // indirect
 	gopkg.in/evanphx/json-patch.v5 v5.9.0 // indirect
diff --git a/go.sum b/go.sum
index 04e7769ed..e723adabe 100644
--- a/go.sum
+++ b/go.sum
@@ -986,8 +986,8 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.17.2 h1:7eMhcy3GimbsA3hEnVKdw/PQM9XN9krpKVXsZdph0/g=
-github.com/onsi/ginkgo/v2 v2.17.2/go.mod h1:nP2DPOQoNsQmsVyv5rDA8JkXQoCs6goXIvr/PRJ1eCc=
+github.com/onsi/ginkgo/v2 v2.19.0 h1:9Cnnf7UHo57Hy3k6/m5k3dRfGTMXGvxhHFvkDTCTpvA=
+github.com/onsi/ginkgo/v2 v2.19.0/go.mod h1:rlwLi9PilAFJ8jCg9UE1QP6VBpd6/xj3SRC0d6TU0To=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.33.1 h1:dsYjIxxSR755MDmKVsaFQTE22ChNBcuuTWgkUDSubOk=
@@ -1298,8 +1298,8 @@ golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/net v0.20.0/go.mod h1:z8BVo6PvndSri0LbOE3hAn0apkU+1YvI6E70E9jsnvY=
 golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
 golang.org/x/net v0.22.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
-golang.org/x/net v0.24.0 h1:1PcaxkF854Fu3+lvBIx5SYn9wRlBzzcnHZSiaFFAb0w=
-golang.org/x/net v0.24.0/go.mod h1:2Q7sJY5mzlzWjKtYUEXSlBWCdyaioyXzRB2RtU8KVE8=
+golang.org/x/net v0.25.0 h1:d/OCCoBEUq33pjydKrGQhw7IlUPI2Oylr+8qLx49kac=
+golang.org/x/net v0.25.0/go.mod h1:JkAGAh7GEvH74S6FOH42FLoXpXbE/aqXSrIQjXgsiwM=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
@@ -1571,8 +1571,8 @@ golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc
 golang.org/x/tools v0.3.0/go.mod h1:/rWhSS2+zyEVwoJf8YAX6L2f0ntZ7Kn/mGgAWcipA5k=
 golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
 golang.org/x/tools v0.7.0/go.mod h1:4pg6aUX35JBAogB10C9AtvVL+qowtN4pT3CGSQex14s=
-golang.org/x/tools v0.20.0 h1:hz/CVckiOxybQvFw6h7b/q80NTr9IUQb4s1IIzW7KNY=
-golang.org/x/tools v0.20.0/go.mod h1:WvitBU7JJf6A4jOdg4S1tviW9bhUxkgeCui/0JHctQg=
+golang.org/x/tools v0.21.0 h1:qc0xYgIbsSDt9EyWz05J5wfa7LOVW0YTLOXrqdLAWIw=
+golang.org/x/tools v0.21.0/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=

From c8722b225d06bdeb8385114886549e021c453edd Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 3 Jun 2024 05:13:07 -0700
Subject: [PATCH 1296/1641] Bump the all group with 2 updates (#11419)

Bumps the all group with 2 updates: [docker/login-action](https://github.com/docker/login-action) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `docker/login-action` from 3.1.0 to 3.2.0
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/e92390c5fb421da1463c202d546fed0ec5c39f20...0d4c9c5ea7693da7b068278f7b52bda2a190a446)

Updates `github/codeql-action` from 3.25.6 to 3.25.7
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/9fdb3e49720b44c48891d036bb502feb25684276...f079b8493333aace61c81488f8bd40919487bd9f)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/images.yaml              | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 .github/workflows/zz-tmpl-images.yaml      | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 18c09a570..cd63a376e 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -205,7 +205,7 @@ jobs:
           version: latest
           platforms: ${{ env.PLATFORMS }}
       - name: Login to GitHub Container Registry
-        uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20 # v3.1.0
+        uses: docker/login-action@0d4c9c5ea7693da7b068278f7b52bda2a190a446 # v3.2.0
         with:
           username: ${{ secrets.DOCKERHUB_USERNAME }}
           password: ${{ secrets.DOCKERHUB_TOKEN }}
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 75e12a95b..0cec67927 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@9fdb3e49720b44c48891d036bb502feb25684276 # v3.25.6
+        uses: github/codeql-action/upload-sarif@f079b8493333aace61c81488f8bd40919487bd9f # v3.25.7
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index c6f51a372..314f39ac8 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@9fdb3e49720b44c48891d036bb502feb25684276 # v3.25.6
+        uses: github/codeql-action/upload-sarif@f079b8493333aace61c81488f8bd40919487bd9f # v3.25.7
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository
diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index 7d7f7a284..17425a468 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -70,7 +70,7 @@ jobs:
       uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
 
     - name: Login to GitHub Container Registry
-      uses: docker/login-action@e92390c5fb421da1463c202d546fed0ec5c39f20 # v3.1.0
+      uses: docker/login-action@0d4c9c5ea7693da7b068278f7b52bda2a190a446 # v3.2.0
       with:
         username: ${{ secrets.DOCKERHUB_USERNAME }}
         password: ${{ secrets.DOCKERHUB_TOKEN }}

From ac9e40a8cf85ec5bf436537110696cfaaa93fe5f Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Thu, 6 Jun 2024 07:23:55 -0400
Subject: [PATCH 1297/1641] update golang to 1.22.4 (#11427)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 GOLANG_VERSION | 2 +-
 go.mod         | 2 +-
 go.work.sum    | 4 +++-
 3 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/GOLANG_VERSION b/GOLANG_VERSION
index 8864ad297..be02b337a 100644
--- a/GOLANG_VERSION
+++ b/GOLANG_VERSION
@@ -1 +1 @@
-1.22.2
\ No newline at end of file
+1.22.4
\ No newline at end of file
diff --git a/go.mod b/go.mod
index 86a32fc6b..def9b0876 100644
--- a/go.mod
+++ b/go.mod
@@ -2,7 +2,7 @@ module k8s.io/ingress-nginx
 
 go 1.22.0
 
-toolchain go1.22.2
+toolchain go1.22.4
 
 require (
 	dario.cat/mergo v1.0.0
diff --git a/go.work.sum b/go.work.sum
index 51c6a3e66..0fd4fc8e2 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -779,6 +779,7 @@ github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+
 github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65 h1:Og+dVkxEQNvRGU2vUKeOwYT2UJ+pEaDMWB6tIQnIh6A=
 github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
 github.com/onsi/ginkgo/v2 v2.15.0/go.mod h1:HlxMHtYF57y6Dpf+mc5529KKmSq9h2FpCF+/ZkwUxKM=
+github.com/onsi/ginkgo/v2 v2.17.2/go.mod h1:nP2DPOQoNsQmsVyv5rDA8JkXQoCs6goXIvr/PRJ1eCc=
 github.com/onsi/gomega v1.19.0/go.mod h1:LY+I3pBVzYsTBU1AnDwOSxaYi9WoWiqgwooUqq9yPro=
 github.com/onsi/gomega v1.31.0/go.mod h1:DW9aCi7U6Yi40wNVAvT6kzFnEVEI5n3DloYBiKiT6zk=
 github.com/onsi/gomega v1.33.0/go.mod h1:+925n5YtiFsLzzafLUHzVMBpvvRAzrydIBiSIxjX3wY=
@@ -796,7 +797,6 @@ github.com/pkg/sftp v1.13.1 h1:I2qBYMChEhIjOgazfJmV3/mZM256btk6wkCDRmW7JYs=
 github.com/pquerna/cachecontrol v0.1.0 h1:yJMy84ti9h/+OEWa752kBTKv4XC30OtVVHYv/8cTqKc=
 github.com/pquerna/cachecontrol v0.1.0/go.mod h1:NrUG3Z7Rdu85UNR3vm7SOsl1nFIeSiQnrHV5K9mBcUI=
 github.com/prometheus/exporter-toolkit v0.11.0 h1:yNTsuZ0aNCNFQ3aFTD2uhPOvr4iD7fdBvKPAEGkNf+g=
-github.com/prometheus/procfs v0.13.0 h1:GqzLlQyfsPbaEHaQkO7tbDlriv/4o5Hudv6OXHGKX7o=
 github.com/remyoudompheng/bigfft v0.0.0-20200410134404-eec4a21b6bb0 h1:OdAsTTz6OkFY5QxjkYwrChwuRruF69c169dPK26NUlk=
 github.com/rogpeppe/fastuuid v1.2.0 h1:Ppwyp6VYCF1nvBTXL3trRso7mXMlRrw9ooo375wvi2s=
 github.com/russross/blackfriday/v2 v2.1.0 h1:JIOH55/0cWyOuilr9/qlrm0BSXldqnqwMsf35Ld67mk=
@@ -903,6 +903,7 @@ golang.org/x/mod v0.14.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
 golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
 golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/net v0.18.0/go.mod h1:/czyP5RqHAH4odGYxBJ1qz0+CE5WZ+2j1YgoEo8F2jQ=
+golang.org/x/net v0.24.0/go.mod h1:2Q7sJY5mzlzWjKtYUEXSlBWCdyaioyXzRB2RtU8KVE8=
 golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI=
 golang.org/x/oauth2 v0.11.0/go.mod h1:LdF7O/8bLR/qWK9DrpXmbHLTouvRHK0SgJl0GmDBchk=
 golang.org/x/oauth2 v0.13.0/go.mod h1:/JMhi4ZRXAf4HG9LiNmxvk+45+96RUlVThiH8FzNBn0=
@@ -921,6 +922,7 @@ golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
 golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM=
 golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
 golang.org/x/tools v0.16.1/go.mod h1:kYVVN6I1mBNoB1OX+noeBjbRk4IUEPa7JJ+TJMEooJ0=
+golang.org/x/tools v0.20.0/go.mod h1:WvitBU7JJf6A4jOdg4S1tviW9bhUxkgeCui/0JHctQg=
 golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2 h1:H2TDz8ibqkAF6YGhCdN3jS9O0/s90v0rJh3X/OLHEUk=
 golang.org/x/xerrors v0.0.0-20231012003039-104605ab7028/go.mod h1:NDW/Ps6MPRej6fsCIbMTohpP40sJ/P/vI1MoTEGwX90=
 gonum.org/v1/gonum v0.11.0 h1:f1IJhK4Km5tBJmaiJXtk/PkL4cdVX6J+tGiM187uT5E=

From d49833be1d538e2083bd34d097832695eccb15c7 Mon Sep 17 00:00:00 2001
From: Vadim Bauer <Bauer.vadim@gmail.com>
Date: Sun, 9 Jun 2024 17:29:50 +0200
Subject: [PATCH 1298/1641] Update index.md (#11437)

add section about how to setup the proxy protocol for scaleway
---
 docs/deploy/index.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index d8cc6f875..c70b932c9 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -364,6 +364,8 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 ```console
 kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/scw/deploy.yaml
 ```
+Refer to the [dedicated tutorial](https://www.scaleway.com/en/docs/tutorials/proxy-protocol-v2-load-balancer/#configuring-proxy-protocol-for-ingress-nginx) in the Scaleway documentation for configuring the proxy protocol for ingress-nginx with the Scaleway load balancer.
+
 
 #### Exoscale
 

From ec296594c788659b8c1427dba0956cef71768efa Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Mon, 10 Jun 2024 04:23:14 +0530
Subject: [PATCH 1299/1641] fix for docs issue 11432 (#11433)

---
 docs/user-guide/nginx-configuration/annotations.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 0ea54a29f..47ebd30e3 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -958,7 +958,7 @@ Enables a request to be mirrored to a mirror backend. Responses by mirror backen
 The mirror backend can be set by applying:
 
 ```yaml
-nginx.ingress.kubernetes.io/mirror-target: https://test.env.com/$request_uri
+nginx.ingress.kubernetes.io/mirror-target: https://test.env.com$request_uri
 ```
 
 By default the request-body is sent to the mirror backend, but can be turned off by applying:
@@ -970,7 +970,7 @@ nginx.ingress.kubernetes.io/mirror-request-body: "off"
 Also by default header Host for mirrored requests will be set the same as a host part of uri in the "mirror-target" annotation. You can override it by "mirror-host" annotation:
 
 ```yaml
-nginx.ingress.kubernetes.io/mirror-target: https://1.2.3.4/$request_uri
+nginx.ingress.kubernetes.io/mirror-target: https://1.2.3.4$request_uri
 nginx.ingress.kubernetes.io/mirror-host: "test.env.com"
 ```
 

From 0cf19948646bf14d7ef19a4c7e0b0598f32e8041 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Sun, 9 Jun 2024 20:17:59 -0400
Subject: [PATCH 1300/1641] upgrade to alpine 3.20 (#11428)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/cfssl/rootfs/Dockerfile         | 2 +-
 images/nginx-1.25/rootfs/Dockerfile    | 4 ++--
 images/nginx/rootfs/Dockerfile         | 4 ++--
 images/opentelemetry/rootfs/Dockerfile | 2 +-
 rootfs/Dockerfile-chroot               | 2 +-
 test/e2e-image/Dockerfile              | 2 +-
 6 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index 2afc43c7a..c23f66d49 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.19.1
+FROM alpine:3.20.0
 
 RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
 RUN apk update \
diff --git a/images/nginx-1.25/rootfs/Dockerfile b/images/nginx-1.25/rootfs/Dockerfile
index 8327d99f2..13dcec33d 100644
--- a/images/nginx-1.25/rootfs/Dockerfile
+++ b/images/nginx-1.25/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.19.1 as builder
+FROM alpine:3.20.0 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.19.1
+FROM alpine:3.20.0
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 3dd841c6c..f3d61017e 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.19.1 as builder
+FROM alpine:3.20.0 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.19.1
+FROM alpine:3.20.0
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index bb88ec760..eb951e5c4 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.19.1 as base
+FROM alpine:3.20.0 as base
 
 RUN mkdir -p /opt/third_party/install
 COPY . /opt/third_party/
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index 98f078261..c06db2252 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.19.1
+FROM alpine:3.20.0
 
 ARG TARGETARCH
 ARG VERSION
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 6c1fbefc6..0130ca09b 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,7 +1,7 @@
 ARG E2E_BASE_IMAGE
 FROM ${E2E_BASE_IMAGE} AS BASE
 
-FROM alpine:3.19.1
+FROM alpine:3.20.0
 
 RUN apk update \
 	&& apk upgrade && apk add -U --no-cache \

From a68b1cf4786f68fe2d514227f7b27de9cc71fce3 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 10 Jun 2024 06:11:23 -0700
Subject: [PATCH 1301/1641] Bump github.com/prometheus/common from 0.53.0 to
 0.54.0 (#11441)

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.53.0 to 0.54.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Changelog](https://github.com/prometheus/common/blob/main/RELEASE.md)
- [Commits](https://github.com/prometheus/common/compare/v0.53.0...v0.54.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index def9b0876..c58b9032b 100644
--- a/go.mod
+++ b/go.mod
@@ -21,7 +21,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.1
 	github.com/prometheus/client_model v0.6.1
-	github.com/prometheus/common v0.53.0
+	github.com/prometheus/common v0.54.0
 	github.com/spf13/cobra v1.8.0
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.9.0
diff --git a/go.sum b/go.sum
index e723adabe..7da5996db 100644
--- a/go.sum
+++ b/go.sum
@@ -1044,8 +1044,8 @@ github.com/prometheus/common v0.44.0/go.mod h1:ofAIvZbQ1e/nugmZGz4/qCb9Ap1VoSTIO
 github.com/prometheus/common v0.45.0/go.mod h1:YJmSTw9BoKxJplESWWxlbyttQR4uaEcGyv9MZjVOJsY=
 github.com/prometheus/common v0.48.0/go.mod h1:0/KsvlIEfPQCQ5I2iNSAWKPZziNCvRs5EC6ILDTlAPc=
 github.com/prometheus/common v0.52.3/go.mod h1:BrxBKv3FWBIGXw89Mg1AeBq7FSyRzXWI3l3e7W3RN5U=
-github.com/prometheus/common v0.53.0 h1:U2pL9w9nmJwJDa4qqLQ3ZaePJ6ZTwt7cMD3AG3+aLCE=
-github.com/prometheus/common v0.53.0/go.mod h1:BrxBKv3FWBIGXw89Mg1AeBq7FSyRzXWI3l3e7W3RN5U=
+github.com/prometheus/common v0.54.0 h1:ZlZy0BgJhTwVZUn7dLOkwCZHUkrAqd3WYtcFCWnM1D8=
+github.com/prometheus/common v0.54.0/go.mod h1:/TQgMJP5CuVYveyT7n/0Ix8yLNNXy9yRSkhnLTHPDIQ=
 github.com/prometheus/exporter-toolkit v0.11.0/go.mod h1:BVnENhnNecpwoTLiABx7mrPB/OLRIgN74qlQbV+FK1Q=
 github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
 github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=

From 61c1afa57133bfe62802b3a55ca6293c684ce92e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 10 Jun 2024 07:06:13 -0700
Subject: [PATCH 1302/1641] Bump goreleaser/goreleaser-action from 5.1.0 to
 6.0.0 (#11444)

Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 5.1.0 to 6.0.0.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/5742e2a039330cbb23ebf35f046f814d4c6ff811...286f3b13b1b49da4ac219696163fb8c1c93e1200)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/plugin.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 137e1dccc..8274a6a99 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -27,7 +27,7 @@ jobs:
 
       - name: Run GoReleaser Snapshot
         if: ${{ ! startsWith(github.ref, 'refs/tags/') }}
-        uses: goreleaser/goreleaser-action@5742e2a039330cbb23ebf35f046f814d4c6ff811 # v5.1.0
+        uses: goreleaser/goreleaser-action@286f3b13b1b49da4ac219696163fb8c1c93e1200 # v6.0.0
         with:
           version: latest
           args: release --snapshot --clean
@@ -36,7 +36,7 @@ jobs:
 
       - name: Run GoReleaser
         if: ${{ startsWith(github.ref, 'refs/tags/') }}
-        uses: goreleaser/goreleaser-action@5742e2a039330cbb23ebf35f046f814d4c6ff811 # v5.1.0
+        uses: goreleaser/goreleaser-action@286f3b13b1b49da4ac219696163fb8c1c93e1200 # v6.0.0
         with:
           version: latest
           args: release --clean

From 38e7582109e2d2c9668365fefbf034ef8b696315 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 10 Jun 2024 07:10:56 -0700
Subject: [PATCH 1303/1641] Bump sigs.k8s.io/controller-runtime in the all
 group (#11440)

Bumps the all group with 1 update: [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime).


Updates `sigs.k8s.io/controller-runtime` from 0.18.3 to 0.18.4
- [Release notes](https://github.com/kubernetes-sigs/controller-runtime/releases)
- [Changelog](https://github.com/kubernetes-sigs/controller-runtime/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes-sigs/controller-runtime/compare/v0.18.3...v0.18.4)

---
updated-dependencies:
- dependency-name: sigs.k8s.io/controller-runtime
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index c58b9032b..4ef8611cd 100644
--- a/go.mod
+++ b/go.mod
@@ -43,7 +43,7 @@ require (
 	k8s.io/component-base v0.30.1
 	k8s.io/klog/v2 v2.120.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.18.3
+	sigs.k8s.io/controller-runtime v0.18.4
 	sigs.k8s.io/mdtoc v1.1.0
 )
 
diff --git a/go.sum b/go.sum
index 7da5996db..205f07a7f 100644
--- a/go.sum
+++ b/go.sum
@@ -1977,8 +1977,8 @@ rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8
 rsc.io/pdf v0.1.1/go.mod h1:n8OzWcQ6Sp37PL01nO98y4iUCRdTGarVfzxY20ICaU4=
 rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
 rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
-sigs.k8s.io/controller-runtime v0.18.3 h1:B5Wmmo8WMWK7izei+2LlXLVDGzMwAHBNLX68lwtlSR4=
-sigs.k8s.io/controller-runtime v0.18.3/go.mod h1:TVoGrfdpbA9VRFaRnKgk9P5/atA0pMwq+f+msb9M8Sg=
+sigs.k8s.io/controller-runtime v0.18.4 h1:87+guW1zhvuPLh1PHybKdYFLU0YJp4FhJRmiHvm5BZw=
+sigs.k8s.io/controller-runtime v0.18.4/go.mod h1:TVoGrfdpbA9VRFaRnKgk9P5/atA0pMwq+f+msb9M8Sg=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/kustomize/api v0.16.0 h1:/zAR4FOQDCkgSDmVzV2uiFbuy9bhu3jEzthrHCuvm1g=

From 71d423851e133aec3c431f191aefb359d1b1e683 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 10 Jun 2024 07:14:19 -0700
Subject: [PATCH 1304/1641] Bump the all group with 3 updates (#11443)

Bumps the all group with 3 updates: [actions/dependency-review-action](https://github.com/actions/dependency-review-action), [github/codeql-action](https://github.com/github/codeql-action) and [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action).


Updates `actions/dependency-review-action` from 4.3.2 to 4.3.3
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/0c155c5e8556a497adf53f2c18edabf945ed8e70...72eb03d02c7872a771aacd928f3123ac62ad6d3a)

Updates `github/codeql-action` from 3.25.7 to 3.25.8
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/f079b8493333aace61c81488f8bd40919487bd9f...2e230e8fe0ad3a14a340ad0815ddb96d599d2aff)

Updates `aquasecurity/trivy-action` from 0.21.0 to 0.22.0
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/fd25fed6972e341ff0007ddb61f77e88103953c2...595be6a0f6560a0a8fc419ddf630567fc623531d)

---
updated-dependencies:
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml           | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 4 ++--
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index fea5a4e4e..2aacbd6cc 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@0c155c5e8556a497adf53f2c18edabf945ed8e70 # v4.3.2
+        uses: actions/dependency-review-action@72eb03d02c7872a771aacd928f3123ac62ad6d3a # v4.3.3
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 0cec67927..89ee0b55b 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@f079b8493333aace61c81488f8bd40919487bd9f # v3.25.7
+        uses: github/codeql-action/upload-sarif@2e230e8fe0ad3a14a340ad0815ddb96d599d2aff # v3.25.8
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 314f39ac8..19a66053f 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@fd25fed6972e341ff0007ddb61f77e88103953c2 # v0.21.0
+        uses: aquasecurity/trivy-action@595be6a0f6560a0a8fc419ddf630567fc623531d # v0.22.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@f079b8493333aace61c81488f8bd40919487bd9f # v3.25.7
+        uses: github/codeql-action/upload-sarif@2e230e8fe0ad3a14a340ad0815ddb96d599d2aff # v3.25.8
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 4038211261e464a36296dee9d31c1868198236f5 Mon Sep 17 00:00:00 2001
From: Ali Afsharzadeh <afsharzadeh8@gmail.com>
Date: Mon, 10 Jun 2024 17:54:35 +0330
Subject: [PATCH 1305/1641] Remove unnecessary space character (#11434)

---
 rootfs/nginx-chroot-wrapper.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/rootfs/nginx-chroot-wrapper.sh b/rootfs/nginx-chroot-wrapper.sh
index f7318142f..0c8bdf3b7 100755
--- a/rootfs/nginx-chroot-wrapper.sh
+++ b/rootfs/nginx-chroot-wrapper.sh
@@ -15,4 +15,4 @@
 # limitations under the License.
 
 cat /etc/resolv.conf > /chroot/etc/resolv.conf
-unshare  -S 101 -R /chroot nginx "$@"
+unshare -S 101 -R /chroot nginx "$@"

From 8ca27e7ee902ec6b77c7cfb1749254cdbab36c24 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 12 Jun 2024 13:08:56 +0530
Subject: [PATCH 1306/1641] fixed fastcgi userguide (#11454)

---
 docs/user-guide/fcgi-services.md | 112 ++++++++++++++++++++++++++++---
 1 file changed, 101 insertions(+), 11 deletions(-)

diff --git a/docs/user-guide/fcgi-services.md b/docs/user-guide/fcgi-services.md
index db4d9428b..836e9fbaa 100644
--- a/docs/user-guide/fcgi-services.md
+++ b/docs/user-guide/fcgi-services.md
@@ -1,5 +1,3 @@
-
-
 # Exposing FastCGI Servers
 
 > **FastCGI** is a [binary protocol](https://en.wikipedia.org/wiki/Binary_protocol "Binary protocol") for interfacing interactive programs with a [web server](https://en.wikipedia.org/wiki/Web_server "Web server"). [...] (It's) aim is to reduce the overhead related to interfacing between web server and CGI programs, allowing a server to handle more web page requests per unit of time.
@@ -8,10 +6,15 @@
 
 The _ingress-nginx_ ingress controller can be used to directly expose [FastCGI](https://en.wikipedia.org/wiki/FastCGI) servers.  Enabling FastCGI in your Ingress only requires setting the _backend-protocol_ annotation to `FCGI`, and with a couple more annotations you can customize the way _ingress-nginx_ handles the communication with your FastCGI _server_.
 
+For most practical use-cases, php applications are a good example. PHP is not HTML so a FastCGI server like php-fpm processes a index.php script for the response to a request. See a working example below.
 
-## Example Objects to Expose a FastCGI Pod
+This [post in a FactCGI feature issue](https://github.com/kubernetes/ingress-nginx/issues/8207#issuecomment-2161405468) describes a test for the FastCGI feature. The same test is described below here.
 
-The _Pod_ example object below exposes port `9000`, which is the conventional FastCGI port.
+## Example Objects to expose a FastCGI server pod
+
+### The FasctCGI server pod
+
+The _Pod_ object example below exposes port `9000`, which is the conventional FastCGI port.
 
 ```yaml
 apiVersion: v1
@@ -23,12 +26,40 @@ labels:
 spec:
   containers:
   - name: example-app
-    image: example-app:1.0
+    image: php:fpm-alpine
     ports:
     - containerPort: 9000
       name: fastcgi
 ```
 
+- For this example to work, a HTML response should be received from the FastCGI server being exposed
+- A HTTP request to the FastCGI server pod should be sent
+- The response should be generated by a php script as that is what we are demonstrating here
+
+The image we are using here `php:fpm-alpine` does not ship with a ready to use php script inside it. So we need to provide the image with a simple php-script for this example to work.
+
+- Use `kubectl exec` to get into the example-app pod
+- You will land at the path `/var/www/html`
+- Create a simple php script there at the path /var/www/html called index.php
+- Make the index.php file look like this
+
+```
+<!DOCTYPE html>
+<html>
+    <head>
+        <title>PHP Test</title>
+    </head>
+    <body>
+        <?php echo '<p>FastCGI Test Worked!</p>'; ?>
+    </body>
+</html>
+```
+
+- Save and exit from the shell in the pod
+- If you delete the pod, then you will have to recreate the file as this method is not persistent
+
+### The FastCGI service
+
 The _Service_ object example below matches port `9000` from the _Pod_ object above.
 
 ```yaml
@@ -45,21 +76,41 @@ spec:
     name: fastcgi
 ```
 
-And the _Ingress_ and _ConfigMap_ objects below demonstrates the supported _FastCGI_ specific annotations (NGINX actually has 50 FastCGI directives, all of which have not been exposed in the ingress yet), and matches the service `example-service`, and the port named `fastcgi` from above. The _ConfigMap_ **must** be created first for the _Ingress Controller_ to be able to find it when the _Ingress_ object is created, otherwise you will need to restart the _Ingress Controller_ pods.
+### The configMap object and the ingress object
+
+The _Ingress_ and _ConfigMap_ objects below demonstrate the supported _FastCGI_ specific annotations.
+
+!!! Important
+    NGINX actually has 50 [FastCGI directives](https://nginx.org/en/docs/http/ngx_http_fastcgi_module.html#directives)
+    All of the nginx directives have not been exposed in the ingress yet
+
+### The ConfigMap object
+
+This configMap object is required to set the parameters of [FastCGI directives](https://nginx.org/en/docs/http/ngx_http_fastcgi_module.html#directives)
+
+!!! Attention
+    - The _ConfigMap_ **must** be created before creating the ingress object
+
+- The _Ingress Controller_ needs to find the configMap when the _Ingress_ object with the FastCGI annotations is created
+- So create the configMap before the ingress
+- If the configMap is created after the ingress is created, then you will need to restart the _Ingress Controller_ pods.
 
 ```yaml
-# The ConfigMap MUST be created first for the ingress controller to be able to
-# find it when the Ingress object is created.
-
 apiVersion: v1
 kind: ConfigMap
 metadata:
   name: example-cm
 data:
-  SCRIPT_FILENAME: "/example/index.php"
+  SCRIPT_FILENAME: "/var/www/html/index.php"
 
----
+```
 
+### The ingress object
+
+- Do not create the ingress shown below until you have created the configMap seen above.
+- You can see that this ingress matches the service `example-service`, and the port named `fastcgi` from above.
+
+```
 apiVersion: networking.k8s.io/v1
 kind: Ingress
 metadata:
@@ -83,6 +134,44 @@ spec:
               name: fastcgi
 ```
 
+## Send a request to the exposed FastCGI server
+
+You will have to look at the external-ip of the ingress or you have to send the HTTP request to the ClusterIP address of the ingress-nginx controller pod.
+
+```
+% curl 172.19.0.2 -H "Host: app.example.com" -vik
+*   Trying 172.19.0.2:80...
+* Connected to 172.19.0.2 (172.19.0.2) port 80
+> GET / HTTP/1.1
+> Host: app.example.com
+> User-Agent: curl/8.6.0
+> Accept: */*
+> 
+< HTTP/1.1 200 OK
+HTTP/1.1 200 OK
+< Date: Wed, 12 Jun 2024 07:11:59 GMT
+Date: Wed, 12 Jun 2024 07:11:59 GMT
+< Content-Type: text/html; charset=UTF-8
+Content-Type: text/html; charset=UTF-8
+< Transfer-Encoding: chunked
+Transfer-Encoding: chunked
+< Connection: keep-alive
+Connection: keep-alive
+< X-Powered-By: PHP/8.3.8
+X-Powered-By: PHP/8.3.8
+
+< 
+<!DOCTYPE html>
+<html>
+    <head>
+        <title>PHP Test</title>
+    </head>
+    <body>
+        <p>FastCGI Test Worked</p>    </body>
+</html>
+
+```
+
 ## FastCGI Ingress Annotations
 
 To enable FastCGI, the `nginx.ingress.kubernetes.io/backend-protocol` annotation needs to be set to `FCGI`, which overrides the default `HTTP` value.
@@ -114,6 +203,7 @@ data:
   SCRIPT_FILENAME: "/example/index.php"
   HTTP_PROXY: ""
 ```
+
 Using the _namespace/_ prefix is also supported, for example:
 
 > `nginx.ingress.kubernetes.io/fastcgi-params-configmap: "example-namespace/example-configmap"`

From af9e5246ad09a304ef68d11f1467185dbd12fe72 Mon Sep 17 00:00:00 2001
From: TheRealNoob <TheRealNoob@users.noreply.github.com>
Date: Fri, 14 Jun 2024 02:13:44 -0700
Subject: [PATCH 1307/1641] Chart: Make pod affinity templatable. (#11453)

* [helm] template pod affinity

* update README

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* revert Chart.yaml version bump

* add unittests

* add docs defaultBackend.affinity

* add README section to values

* fix README syntax

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Update charts/ingress-nginx/values.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* update formatting of unittests + add README examples

* fix affinity labels on default-backend

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* remove double quotes on string

---------

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 charts/ingress-nginx/README.md                |  2 +-
 .../templates/controller-daemonset.yaml       |  2 +-
 .../templates/controller-deployment.yaml      |  2 +-
 .../templates/default-backend-deployment.yaml |  2 +-
 .../tests/controller-daemonset_test.yaml      | 43 +++++++++++++++
 .../tests/controller-deployment_test.yaml     | 42 +++++++++++++++
 .../default-backend-deployment_test.yaml      | 43 +++++++++++++++
 charts/ingress-nginx/values.yaml              | 52 +++++++++++++++++--
 8 files changed, 179 insertions(+), 9 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index d73a50114..e35da750a 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -485,7 +485,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.udp.configMapNamespace | string | `""` | Allows customization of the udp-services-configmap; defaults to $(POD_NAMESPACE) |
 | controller.updateStrategy | object | `{}` | The update strategy to apply to the Deployment or DaemonSet # |
 | controller.watchIngressWithoutClass | bool | `false` | Process Ingress objects without ingressClass annotation/ingressClassName field Overrides value for --watch-ingress-without-class flag of the controller binary Defaults to false |
-| defaultBackend.affinity | object | `{}` |  |
+| defaultBackend.affinity | object | `{}` | Affinity and anti-affinity rules for server scheduling to nodes # Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity |
 | defaultBackend.autoscaling.annotations | object | `{}` |  |
 | defaultBackend.autoscaling.enabled | bool | `false` |  |
 | defaultBackend.autoscaling.maxReplicas | int | `2` |  |
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 718e20c52..509d7a4c4 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -203,7 +203,7 @@ spec:
       tolerations: {{ toYaml .Values.controller.tolerations | nindent 8 }}
     {{- end }}
     {{- if .Values.controller.affinity }}
-      affinity: {{ toYaml .Values.controller.affinity | nindent 8 }}
+      affinity: {{ tpl (toYaml .Values.controller.affinity) $ | nindent 8 }}
     {{- end }}
     {{- if .Values.controller.topologySpreadConstraints }}
       topologySpreadConstraints: {{ tpl (toYaml .Values.controller.topologySpreadConstraints) $ | nindent 8 }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 879802779..77ea0052f 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -206,7 +206,7 @@ spec:
       tolerations: {{ toYaml .Values.controller.tolerations | nindent 8 }}
     {{- end }}
     {{- if .Values.controller.affinity }}
-      affinity: {{ toYaml .Values.controller.affinity | nindent 8 }}
+      affinity: {{ tpl (toYaml .Values.controller.affinity) $ | nindent 8 }}
     {{- end }}
     {{- if .Values.controller.topologySpreadConstraints }}
       topologySpreadConstraints: {{ tpl (toYaml .Values.controller.topologySpreadConstraints) $ | nindent 8 }}
diff --git a/charts/ingress-nginx/templates/default-backend-deployment.yaml b/charts/ingress-nginx/templates/default-backend-deployment.yaml
index 6834dba07..c6ccdd5c9 100644
--- a/charts/ingress-nginx/templates/default-backend-deployment.yaml
+++ b/charts/ingress-nginx/templates/default-backend-deployment.yaml
@@ -107,7 +107,7 @@ spec:
       tolerations: {{ toYaml .Values.defaultBackend.tolerations | nindent 8 }}
     {{- end }}
     {{- if .Values.defaultBackend.affinity }}
-      affinity: {{ toYaml .Values.defaultBackend.affinity | nindent 8 }}
+      affinity: {{ tpl (toYaml .Values.defaultBackend.affinity) $ | nindent 8 }}
     {{- end }}
     {{- if .Values.defaultBackend.topologySpreadConstraints }}
       topologySpreadConstraints: {{ tpl (toYaml .Values.defaultBackend.topologySpreadConstraints) $ | nindent 8 }}
diff --git a/charts/ingress-nginx/tests/controller-daemonset_test.yaml b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
index 29359fd9e..6ee794af9 100644
--- a/charts/ingress-nginx/tests/controller-daemonset_test.yaml
+++ b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
@@ -95,3 +95,46 @@ tests:
               topologyKey: kubernetes.io/hostname
               maxSkew: 1
               whenUnsatisfiable: ScheduleAnyway
+
+  - it: should create a DaemonSet with affinity if `controller.affinity` is set
+    set:
+      controller.kind: DaemonSet
+      controller.affinity:
+        podAntiAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+            - labelSelector:
+                matchExpressions:
+                  - key: app.kubernetes.io/name
+                    operator: In
+                    values:
+                      - '{{ include "ingress-nginx.name" . }}'
+                  - key: app.kubernetes.io/instance
+                    operator: In
+                    values:
+                      - '{{ .Release.Name }}'
+                  - key: app.kubernetes.io/component
+                    operator: In
+                    values:
+                      - controller
+              topologyKey: kubernetes.io/hostname
+    asserts:
+      - equal:
+          path: spec.template.spec.affinity
+          value:
+            podAntiAffinity:
+              requiredDuringSchedulingIgnoredDuringExecution:
+                - labelSelector:
+                    matchExpressions:
+                      - key: app.kubernetes.io/name
+                        operator: In
+                        values:
+                          - ingress-nginx
+                      - key: app.kubernetes.io/instance
+                        operator: In
+                        values:
+                          - RELEASE-NAME
+                      - key: app.kubernetes.io/component
+                        operator: In
+                        values:
+                          - controller
+                  topologyKey: kubernetes.io/hostname
diff --git a/charts/ingress-nginx/tests/controller-deployment_test.yaml b/charts/ingress-nginx/tests/controller-deployment_test.yaml
index d0330db90..82b97a0f7 100644
--- a/charts/ingress-nginx/tests/controller-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/controller-deployment_test.yaml
@@ -118,3 +118,45 @@ tests:
               topologyKey: kubernetes.io/hostname
               maxSkew: 1
               whenUnsatisfiable: ScheduleAnyway
+
+  - it: should create a Deployment with affinity if `controller.affinity` is set
+    set:
+      controller.affinity:
+        podAntiAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+            - labelSelector:
+                matchExpressions:
+                  - key: app.kubernetes.io/name
+                    operator: In
+                    values:
+                      - '{{ include "ingress-nginx.name" . }}'
+                  - key: app.kubernetes.io/instance
+                    operator: In
+                    values:
+                      - '{{ .Release.Name }}'
+                  - key: app.kubernetes.io/component
+                    operator: In
+                    values:
+                      - controller
+              topologyKey: kubernetes.io/hostname
+    asserts:
+      - equal:
+          path: spec.template.spec.affinity
+          value:
+            podAntiAffinity:
+              requiredDuringSchedulingIgnoredDuringExecution:
+                - labelSelector:
+                    matchExpressions:
+                      - key: app.kubernetes.io/name
+                        operator: In
+                        values:
+                          - ingress-nginx
+                      - key: app.kubernetes.io/instance
+                        operator: In
+                        values:
+                          - RELEASE-NAME
+                      - key: app.kubernetes.io/component
+                        operator: In
+                        values:
+                          - controller
+                  topologyKey: kubernetes.io/hostname
diff --git a/charts/ingress-nginx/tests/default-backend-deployment_test.yaml b/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
index e6fd0c541..e237fe7e3 100644
--- a/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
@@ -92,3 +92,46 @@ tests:
               topologyKey: kubernetes.io/hostname
               maxSkew: 1
               whenUnsatisfiable: ScheduleAnyway
+
+  - it: should create a Deployment with affinity if `defaultBackend.affinity` is set
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.affinity:
+        podAntiAffinity:
+          requiredDuringSchedulingIgnoredDuringExecution:
+            - labelSelector:
+                matchExpressions:
+                  - key: app.kubernetes.io/name
+                    operator: In
+                    values:
+                      - '{{ include "ingress-nginx.name" . }}'
+                  - key: app.kubernetes.io/instance
+                    operator: In
+                    values:
+                      - '{{ .Release.Name }}'
+                  - key: app.kubernetes.io/component
+                    operator: In
+                    values:
+                      - default-backend
+              topologyKey: kubernetes.io/hostname
+    asserts:
+      - equal:
+          path: spec.template.spec.affinity
+          value:
+            podAntiAffinity:
+              requiredDuringSchedulingIgnoredDuringExecution:
+                - labelSelector:
+                    matchExpressions:
+                      - key: app.kubernetes.io/name
+                        operator: In
+                        values:
+                          - ingress-nginx
+                      - key: app.kubernetes.io/instance
+                        operator: In
+                        values:
+                          - RELEASE-NAME
+                      - key: app.kubernetes.io/component
+                        operator: In
+                        values:
+                          - default-backend
+                  topologyKey: kubernetes.io/hostname
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index f09edbe74..c662cd2bb 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -260,11 +260,11 @@ controller:
   #         - key: app.kubernetes.io/name
   #           operator: In
   #           values:
-  #           - ingress-nginx
+  #           - '{{ include "ingress-nginx.name" . }}'
   #         - key: app.kubernetes.io/instance
   #           operator: In
   #           values:
-  #           - ingress-nginx
+  #           - '{{ .Release.Name }}'
   #         - key: app.kubernetes.io/component
   #           operator: In
   #           values:
@@ -279,16 +279,16 @@ controller:
   #       - key: app.kubernetes.io/name
   #         operator: In
   #         values:
-  #         - ingress-nginx
+  #         - '{{ include "ingress-nginx.name" . }}'
   #       - key: app.kubernetes.io/instance
   #         operator: In
   #         values:
-  #         - ingress-nginx
+  #         - '{{ .Release.Name }}'
   #       - key: app.kubernetes.io/component
   #         operator: In
   #         values:
   #         - controller
-  #     topologyKey: "kubernetes.io/hostname"
+  #     topologyKey: kubernetes.io/hostname
 
   # -- Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
   ## Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
@@ -1011,7 +1011,49 @@ defaultBackend:
   #    value: "value"
   #    effect: "NoSchedule|PreferNoSchedule|NoExecute(1.6 only)"
 
+  # -- Affinity and anti-affinity rules for server scheduling to nodes
+  ## Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity
   affinity: {}
+  # # An example of preferred pod anti-affinity, weight is in the range 1-100
+  # podAntiAffinity:
+  #   preferredDuringSchedulingIgnoredDuringExecution:
+  #   - weight: 100
+  #     podAffinityTerm:
+  #       labelSelector:
+  #         matchExpressions:
+  #         - key: app.kubernetes.io/name
+  #           operator: In
+  #           values:
+  #           - '{{ include "ingress-nginx.name" . }}'
+  #         - key: app.kubernetes.io/instance
+  #           operator: In
+  #           values:
+  #           - '{{ .Release.Name }}'
+  #         - key: app.kubernetes.io/component
+  #           operator: In
+  #           values:
+  #           - default-backend
+  #       topologyKey: kubernetes.io/hostname
+
+  # # An example of required pod anti-affinity
+  # podAntiAffinity:
+  #   requiredDuringSchedulingIgnoredDuringExecution:
+  #   - labelSelector:
+  #       matchExpressions:
+  #       - key: app.kubernetes.io/name
+  #         operator: In
+  #         values:
+  #         - '{{ include "ingress-nginx.name" . }}'
+  #       - key: app.kubernetes.io/instance
+  #         operator: In
+  #         values:
+  #         - '{{ .Release.Name }}'
+  #       - key: app.kubernetes.io/component
+  #         operator: In
+  #         values:
+  #         - default-backend
+  #     topologyKey: kubernetes.io/hostname
+
   # -- Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in.
   # Ref.: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/
   topologySpreadConstraints: []

From 68b59db3e932db354287547c8137fe1d696d3013 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 14 Jun 2024 19:38:06 +0200
Subject: [PATCH 1308/1641] Owners: Promote Gacko to admin. (#11463)

---
 OWNERS_ALIASES | 1 +
 1 file changed, 1 insertion(+)

diff --git a/OWNERS_ALIASES b/OWNERS_ALIASES
index fa10804ce..1b5bb134b 100644
--- a/OWNERS_ALIASES
+++ b/OWNERS_ALIASES
@@ -7,6 +7,7 @@ aliases:
   - thockin
 
   ingress-nginx-admins:
+  - Gacko
   - rikatz
   - strongjz
 

From 0718c89203df192e797ca38271073770a3cd4312 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sat, 15 Jun 2024 10:05:28 +0200
Subject: [PATCH 1309/1641] Tests: Replace deprecated `grpc.Dial` by
 `grpc.NewClient`. (#11462)

---
 test/e2e/annotations/grpc.go | 10 +++++-----
 test/e2e/settings/grpc.go    |  2 +-
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/test/e2e/annotations/grpc.go b/test/e2e/annotations/grpc.go
index 60696e139..530d16729 100644
--- a/test/e2e/annotations/grpc.go
+++ b/test/e2e/annotations/grpc.go
@@ -107,7 +107,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 			})
 
 		//nolint:goconst //string interpolation
-		conn, err := grpc.Dial(f.GetNginxIP()+":443",
+		conn, err := grpc.NewClient(f.GetNginxIP()+":443",
 			grpc.WithTransportCredentials(
 				credentials.NewTLS(&tls.Config{
 					ServerName:         echoHost,
@@ -168,7 +168,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 				return strings.Contains(server, "grpc_pass grpc://upstream_balancer;")
 			})
 
-		conn, err := grpc.Dial(f.GetNginxIP()+":443",
+		conn, err := grpc.NewClient(f.GetNginxIP()+":443",
 			grpc.WithTransportCredentials(
 				credentials.NewTLS(&tls.Config{
 					ServerName:         echoHost,
@@ -242,7 +242,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 				return strings.Contains(server, "grpc_pass grpcs://upstream_balancer;")
 			})
 
-		conn, err := grpc.Dial(f.GetNginxIP()+":443",
+		conn, err := grpc.NewClient(f.GetNginxIP()+":443",
 			grpc.WithTransportCredentials(
 				credentials.NewTLS(&tls.Config{
 					ServerName:         echoHost,
@@ -286,7 +286,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 					strings.Contains(server, fmt.Sprintf("grpc_read_timeout %ss;", proxyTimeout))
 			})
 
-		conn, err := grpc.Dial(
+		conn, err := grpc.NewClient(
 			f.GetNginxIP()+":80",
 			grpc.WithTransportCredentials(insecure.NewCredentials()),
 			grpc.WithAuthority(host),
@@ -329,7 +329,7 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 					strings.Contains(server, fmt.Sprintf("grpc_read_timeout %ss;", proxyTimeout))
 			})
 
-		conn, err := grpc.Dial(
+		conn, err := grpc.NewClient(
 			f.GetNginxIP()+":80",
 			grpc.WithTransportCredentials(insecure.NewCredentials()),
 			grpc.WithAuthority(host),
diff --git a/test/e2e/settings/grpc.go b/test/e2e/settings/grpc.go
index fa5f35b24..ae3175034 100644
--- a/test/e2e/settings/grpc.go
+++ b/test/e2e/settings/grpc.go
@@ -86,7 +86,7 @@ var _ = framework.DescribeSetting("GRPC", func() {
 				return strings.Contains(server, "grpc_pass grpc://upstream_balancer;")
 			})
 
-		conn, err := grpc.Dial(f.GetNginxIP()+":443",
+		conn, err := grpc.NewClient(f.GetNginxIP()+":443",
 			grpc.WithTransportCredentials(
 				credentials.NewTLS(&tls.Config{
 					ServerName:         echoHost,

From 9ca96df6af0ca1897416a26d27f8ca5386ef5027 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sat, 15 Jun 2024 10:29:28 +0200
Subject: [PATCH 1310/1641] CI: Bump forgotten Ginkgo versions. (#11467)

---
 build/run-in-docker.sh                    |  2 +-
 go.work.sum                               |  4 +++
 images/kube-webhook-certgen/rootfs/go.mod | 14 ++++-----
 images/kube-webhook-certgen/rootfs/go.sum | 35 ++++++++++++-----------
 images/test-runner/Makefile               |  4 +--
 magefiles/go.sum                          |  7 +++++
 test/e2e/run-chart-test.sh                |  2 +-
 test/e2e/run-kind-e2e.sh                  |  2 +-
 8 files changed, 40 insertions(+), 30 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 5d4e82a09..8af3c81b6 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -82,7 +82,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.17.1
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.19.0
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/go.work.sum b/go.work.sum
index 0fd4fc8e2..e047983dd 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -125,6 +125,7 @@ cloud.google.com/go/compute v1.23.1/go.mod h1:CqB3xpmPKKt3OJpW2ndFIXnA9A4xAy/F3X
 cloud.google.com/go/compute v1.23.3/go.mod h1:VCgBUoMnIVIR0CscqQiPJLAG25E3ZRZMzcFZeQ+h8CI=
 cloud.google.com/go/compute v1.24.0 h1:phWcR2eWzRJaL/kOiJwfFsPs4BaKq1j6vnpZrc1YlVg=
 cloud.google.com/go/compute v1.24.0/go.mod h1:kw1/T+h/+tK2LJK0wiPPx1intgdAM3j/g3hFDlscY40=
+cloud.google.com/go/compute v1.25.1/go.mod h1:oopOIR53ly6viBYxaDhBfJwzUAxf1zE//uf3IB011ls=
 cloud.google.com/go/compute/metadata v0.3.0 h1:Tz+eQXMEqDIKRsmY3cHTL6FVaynIjX2QxYC4trgAKZc=
 cloud.google.com/go/compute/metadata v0.3.0/go.mod h1:zFmK7XCadkQkj6TtorcaGlCW1hT1fIilQDwofLpJ20k=
 cloud.google.com/go/contactcenterinsights v1.6.0 h1:jXIpfcH/VYSE1SYcPzO0n1VVb+sAamiLOgCw45JbOQk=
@@ -605,6 +606,7 @@ github.com/cncf/xds/go v0.0.0-20230607035331-e9ce68804cb4/go.mod h1:eXthEFrGJvWH
 github.com/cncf/xds/go v0.0.0-20231109132714-523115ebc101/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20231128003011-0fa0005c9caa h1:jQCWAUqqlij9Pgj2i/PB79y4KOPYVyFYdROxgaCwdTQ=
 github.com/cncf/xds/go v0.0.0-20231128003011-0fa0005c9caa/go.mod h1:x/1Gn8zydmfq8dk6e9PdstVsDgu9RuyIIJqAaF//0IM=
+github.com/cncf/xds/go v0.0.0-20240318125728-8a4994d93e50/go.mod h1:5e1+Vvlzido69INQaVO6d87Qn543Xr6nooe9Kz7oBFM=
 github.com/containerd/console v1.0.3 h1:lIr7SlA5PxZyMV30bDW0MGbiOPXwc63yRuCP0ARubLw=
 github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
 github.com/coreos/go-oidc v2.2.1+incompatible h1:mh48q/BqXqgjVHpy2ZY7WnWAbenxRjsz9N1i1YxjHAk=
@@ -965,6 +967,7 @@ google.golang.org/genproto/googleapis/api v0.0.0-20240205150955-31a09d347014/go.
 google.golang.org/genproto/googleapis/api v0.0.0-20240213162025-012b6fc9bca9/go.mod h1:PVreiBMirk8ypES6aw9d4p6iiBNSIfZEBqr3UGoAi2E=
 google.golang.org/genproto/googleapis/api v0.0.0-20240227224415-6ceb2ff114de h1:jFNzHPIeuzhdRwVhbZdiym9q0ory/xY3sA+v2wPg8I0=
 google.golang.org/genproto/googleapis/api v0.0.0-20240227224415-6ceb2ff114de/go.mod h1:5iCWqnniDlqZHrd3neWVTOwvh/v6s3232omMecelax8=
+google.golang.org/genproto/googleapis/api v0.0.0-20240318140521-94a12d6c2237/go.mod h1:Z5Iiy3jtmioajWHDGFk7CeugTyHtPvMHA4UTmUkyalE=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc h1:g3hIDl0jRNd9PPTs2uBzYuaD5mQuwOkZY0vSc0LR32o=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231030173426-d783a09b4405/go.mod h1:GRUCuLdzVqZte8+Dl/D4N25yLzcGqqWaYkeVOwulFqw=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231212172506-995d672761c0/go.mod h1:guYXGPwC6jwxgWKW5Y405fKWOFNwlvUlUnzyp9i0uqo=
@@ -1005,6 +1008,7 @@ k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
 k8s.io/kms v0.29.3/go.mod h1:TBGbJKpRUMk59neTMDMddjIDL+D4HuFUbpuiuzmOPg0=
 k8s.io/kms v0.30.0 h1:ZlnD/ei5lpvUlPw6eLfVvH7d8i9qZ6HwUQgydNVks8g=
 k8s.io/kms v0.30.0/go.mod h1:GrMurD0qk3G4yNgGcsCEmepqf9KyyIrTXYR2lyUOJC4=
+k8s.io/kms v0.30.1/go.mod h1:GrMurD0qk3G4yNgGcsCEmepqf9KyyIrTXYR2lyUOJC4=
 k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340/go.mod h1:yD4MZYeKMBwQKVht279WycxKyM84kkAx2DPrTXaeb98=
 k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
 k8s.io/utils v0.0.0-20230726121419-3b25d923346b/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 94da139a2..9c7f96e1b 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -24,7 +24,6 @@ require (
 	github.com/golang/protobuf v1.5.4 // indirect
 	github.com/google/gnostic-models v0.6.8 // indirect
 	github.com/google/gofuzz v1.2.0 // indirect
-	github.com/google/pprof v0.0.0-20240225044709-fd706174c886 // indirect
 	github.com/google/uuid v1.6.0 // indirect
 	github.com/imdario/mergo v0.3.16 // indirect
 	github.com/inconshreveable/mousetrap v1.1.0 // indirect
@@ -34,18 +33,17 @@ require (
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
-	github.com/onsi/ginkgo/v2 v2.17.1 // indirect
-	github.com/onsi/gomega v1.30.0 // indirect
+	github.com/onsi/ginkgo/v2 v2.19.0 // indirect
+	github.com/onsi/gomega v1.33.1 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
 	github.com/stretchr/testify v1.9.0 // indirect
-	golang.org/x/net v0.23.0 // indirect
+	golang.org/x/net v0.25.0 // indirect
 	golang.org/x/oauth2 v0.18.0 // indirect
-	golang.org/x/sys v0.18.0 // indirect
-	golang.org/x/term v0.18.0 // indirect
-	golang.org/x/text v0.14.0 // indirect
+	golang.org/x/sys v0.20.0 // indirect
+	golang.org/x/term v0.20.0 // indirect
+	golang.org/x/text v0.15.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
-	golang.org/x/tools v0.18.0 // indirect
 	google.golang.org/appengine v1.6.8 // indirect
 	google.golang.org/protobuf v1.33.0 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 613ff3e2e..57b4a450b 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -15,7 +15,8 @@ github.com/go-openapi/jsonreference v0.20.4/go.mod h1:5pZJyJP2MnYCpoeoMAql78cCHa
 github.com/go-openapi/swag v0.22.9 h1:XX2DssF+mQKM2DHsbgZK74y/zj4mo9I99+89xUmuZCE=
 github.com/go-openapi/swag v0.22.9/go.mod h1:3/OXnFfnMAwBD099SwYRk7GD3xOrr1iL7d/XNLXVVwE=
 github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 h1:tfuBGBXKqDEevZMzYi5KSi8KkcZtzBcTgAUUtapy0OI=
-github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572/go.mod h1:9Pwr4B2jHnOSGXyyzV8ROjYa2ojvAY6HCGYYfMoC3Ls=
+github.com/go-task/slim-sprig/v3 v3.0.0 h1:sUs3vkvUymDpBKi3qH1YSqBQk9+9D/8M2mN1vB6EwHI=
+github.com/go-task/slim-sprig/v3 v3.0.0/go.mod h1:W848ghGpv3Qj3dhTPRyJypKRiqCdHZiAzKg9hl15HA8=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
@@ -31,8 +32,8 @@ github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeN
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
 github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/pprof v0.0.0-20240225044709-fd706174c886 h1:JSJUTZTQT1Gzb2ROdAKOY3HwzBYcclS2GgumhMfHqjw=
-github.com/google/pprof v0.0.0-20240225044709-fd706174c886/go.mod h1:czg5+yv1E0ZGTi6S6vVK1mke0fV+FaUhNGcd6VRS9Ik=
+github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6 h1:k7nVchz72niMH6YLQNvHSdIE7iqsQxK1P41mySCvssg=
+github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6/go.mod h1:kf6iHlnVGwgKolg33glAes7Yg/8iWP8ukqeldJSO7jw=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4=
@@ -60,10 +61,10 @@ github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/onrik/logrus v0.11.0 h1:pu+BCaWL36t0yQaj/2UHK2erf88dwssAKOT51mxPUVs=
 github.com/onrik/logrus v0.11.0/go.mod h1:fO2vlZwIdti6PidD3gV5YKt9Lq5ptpnP293RAe1ITwk=
-github.com/onsi/ginkgo/v2 v2.17.1 h1:V++EzdbhI4ZV4ev0UTIj0PzhzOcReJFyJaLjtSF55M8=
-github.com/onsi/ginkgo/v2 v2.17.1/go.mod h1:llBI3WDLL9Z6taip6f33H76YcWtJv+7R3HigUjbIBOs=
-github.com/onsi/gomega v1.30.0 h1:hvMK7xYz4D3HapigLTeGdId/NcfQx1VHMJc60ew99+8=
-github.com/onsi/gomega v1.30.0/go.mod h1:9sxs+SwGrKI0+PWe4Fxa9tFQQBG5xSsSbMXOI8PPpoQ=
+github.com/onsi/ginkgo/v2 v2.19.0 h1:9Cnnf7UHo57Hy3k6/m5k3dRfGTMXGvxhHFvkDTCTpvA=
+github.com/onsi/ginkgo/v2 v2.19.0/go.mod h1:rlwLi9PilAFJ8jCg9UE1QP6VBpd6/xj3SRC0d6TU0To=
+github.com/onsi/gomega v1.33.1 h1:dsYjIxxSR755MDmKVsaFQTE22ChNBcuuTWgkUDSubOk=
+github.com/onsi/gomega v1.33.1/go.mod h1:U4R44UsT+9eLIaYRB2a5qajjtQYn0hauxvRm16AVYg0=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
@@ -104,8 +105,8 @@ golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.23.0 h1:7EYJ93RZ9vYSZAIb2x3lnuvqO5zneoD6IvWjuhfxjTs=
-golang.org/x/net v0.23.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
+golang.org/x/net v0.25.0 h1:d/OCCoBEUq33pjydKrGQhw7IlUPI2Oylr+8qLx49kac=
+golang.org/x/net v0.25.0/go.mod h1:JkAGAh7GEvH74S6FOH42FLoXpXbE/aqXSrIQjXgsiwM=
 golang.org/x/oauth2 v0.18.0 h1:09qnuIAgzdx1XplqJvW6CQqMCtGZykZWcXzPMPUusvI=
 golang.org/x/oauth2 v0.18.0/go.mod h1:Wf7knwG0MPoWIMMBgFlEaSUDaKskp0dCfrlJRJXbBi8=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -120,18 +121,18 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.18.0 h1:DBdB3niSjOA/O0blCZBqDefyWNYveAYMNF1Wum0DYQ4=
-golang.org/x/sys v0.18.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.20.0 h1:Od9JTbYCk261bKm4M/mw7AklTlFYIa0bIp9BgSm1S8Y=
+golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/term v0.18.0 h1:FcHjZXDMxI8mM3nwhX9HlKop4C0YQvCVCdwYl2wOtE8=
-golang.org/x/term v0.18.0/go.mod h1:ILwASektA3OnRv7amZ1xhE/KTR+u50pbXfZ03+6Nx58=
+golang.org/x/term v0.20.0 h1:VnkxpohqXaOBYJtBmEppKUG6mXpi+4O6purfc2+sMhw=
+golang.org/x/term v0.20.0/go.mod h1:8UkIAJTvZgivsXaD6/pH6U9ecQzZ45awqEOzuCvwpFY=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
-golang.org/x/text v0.14.0 h1:ScX5w1eTa3QqT8oi6+ziP7dTV1S2+ALU0bI+0zXKWiQ=
-golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
+golang.org/x/text v0.15.0 h1:h1V/4gjBv8v9cjcR6+AR5+/cIYK5N/WAgiv4xlsEtAk=
+golang.org/x/text v0.15.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
 golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
 golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
@@ -139,8 +140,8 @@ golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtn
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
-golang.org/x/tools v0.18.0 h1:k8NLag8AGHnn+PHbl7g43CtqZAwG60vZkLqgyZgIHgQ=
-golang.org/x/tools v0.18.0/go.mod h1:GL7B4CwcLLeo59yx/9UWWuNOW1n3VZ4f5axWfML7Lcg=
+golang.org/x/tools v0.21.0 h1:qc0xYgIbsSDt9EyWz05J5wfa7LOVW0YTLOXrqdLAWIw=
+golang.org/x/tools v0.21.0/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index d82427140..7e30d432f 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -59,7 +59,7 @@ image:
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.17.2 \
+		--build-arg GINKGO_VERSION=2.19.0 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -80,7 +80,7 @@ build: ensure-buildx
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.17.2 \
+		--build-arg GINKGO_VERSION=2.19.0 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
diff --git a/magefiles/go.sum b/magefiles/go.sum
index 5f402c490..16bc8460f 100644
--- a/magefiles/go.sum
+++ b/magefiles/go.sum
@@ -31,6 +31,7 @@ github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
 github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/golang/protobuf v1.5.4 h1:i7eJL8qZTpSEXOPTxNKhASYpMn+8e5Q6AdndVa1dWek=
+github.com/golang/protobuf v1.5.4/go.mod h1:lnTiLA8Wa4RWRcIUkrtSVa5nRhsEGBg48fD6rSs7xps=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
@@ -79,6 +80,7 @@ github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
 github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
+github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/vmware-labs/yaml-jsonpath v0.3.2 h1:/5QKeCBGdsInyDCyVNLbXyilb61MXGi9NP674f9Hobk=
 github.com/vmware-labs/yaml-jsonpath v0.3.2/go.mod h1:U6whw1z03QyqgWdgXxvVnQ90zN1BWz5V+51Ewf8k+rQ=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
@@ -88,6 +90,7 @@ golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/crypto v0.21.0 h1:X31++rzVUdKhX5sWmSOFZxx8UW/ldWx55cbf08iNAMA=
+golang.org/x/crypto v0.21.0/go.mod h1:0BP7YvVV9gBbVKyeTG0Gyn+gZm94bibOW5BjDEYAOMs=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -98,7 +101,9 @@ golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwY
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
 golang.org/x/net v0.22.0 h1:9sGLhx7iRIHEiX0oAJ3MRZMUCElJgy7Br1nO+AMN3Tc=
+golang.org/x/net v0.22.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
 golang.org/x/oauth2 v0.18.0 h1:09qnuIAgzdx1XplqJvW6CQqMCtGZykZWcXzPMPUusvI=
+golang.org/x/oauth2 v0.18.0/go.mod h1:Wf7knwG0MPoWIMMBgFlEaSUDaKskp0dCfrlJRJXbBi8=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -117,6 +122,7 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.18.0 h1:DBdB3niSjOA/O0blCZBqDefyWNYveAYMNF1Wum0DYQ4=
+golang.org/x/sys v0.18.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -163,5 +169,6 @@ gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 k8s.io/apimachinery v0.29.3 h1:2tbx+5L7RNvqJjn7RIuIKu9XTsIZ9Z5wX2G22XAa5EU=
+k8s.io/apimachinery v0.29.3/go.mod h1:hx/S4V2PNW4OMg3WizRrHutyB5la0iCUbZym+W0EQIU=
 k8s.io/helm v2.17.0+incompatible h1:Bpn6o1wKLYqKM3+Osh8e+1/K2g/GsQJ4F4yNF2+deao=
 k8s.io/helm v2.17.0+incompatible/go.mod h1:LZzlS4LQBHfciFOurYBFkCMTaZ0D1l+p0teMg7TSULI=
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index dadb5195d..4b5c6eae0 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.17.1
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.19.0
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index 128964393..640632a1b 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -96,7 +96,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.17.1
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.19.0
   fi
 
   echo "[dev-env] .. done building controller images"

From 471bc34f5d50cc4e2979639f12f946944ec0fade Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 15 Jun 2024 09:41:28 -0700
Subject: [PATCH 1311/1641] Bump golang.org/x/crypto from 0.23.0 to 0.24.0
 (#11442)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.23.0 to 0.24.0.
- [Commits](https://github.com/golang/crypto/compare/v0.23.0...v0.24.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 10 +++++-----
 go.sum | 20 ++++++++++----------
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/go.mod b/go.mod
index 4ef8611cd..2627556f8 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/stretchr/testify v1.9.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.23.0
+	golang.org/x/crypto v0.24.0
 	golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f
 	google.golang.org/grpc v1.64.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
@@ -112,11 +112,11 @@ require (
 	golang.org/x/net v0.25.0 // indirect
 	golang.org/x/oauth2 v0.20.0 // indirect
 	golang.org/x/sync v0.7.0 // indirect
-	golang.org/x/sys v0.20.0 // indirect
-	golang.org/x/term v0.20.0 // indirect
-	golang.org/x/text v0.15.0 // indirect
+	golang.org/x/sys v0.21.0 // indirect
+	golang.org/x/term v0.21.0 // indirect
+	golang.org/x/text v0.16.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
-	golang.org/x/tools v0.21.0 // indirect
+	golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20240429193739-8cf5692501f6 // indirect
 	google.golang.org/protobuf v1.34.0 // indirect
 	gopkg.in/evanphx/json-patch.v5 v5.9.0 // indirect
diff --git a/go.sum b/go.sum
index 205f07a7f..09594f63b 100644
--- a/go.sum
+++ b/go.sum
@@ -1165,8 +1165,8 @@ golang.org/x/crypto v0.16.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq
 golang.org/x/crypto v0.18.0/go.mod h1:R0j02AL6hcrfOiy9T4ZYp/rcWeMxM3L6QYxlOuEG1mg=
 golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU=
 golang.org/x/crypto v0.21.0/go.mod h1:0BP7YvVV9gBbVKyeTG0Gyn+gZm94bibOW5BjDEYAOMs=
-golang.org/x/crypto v0.23.0 h1:dIJU/v2J8Mdglj/8rJ6UUOM3Zc9zLZxVZwwxMooUSAI=
-golang.org/x/crypto v0.23.0/go.mod h1:CKFgDieR+mRhux2Lsu27y0fO304Db0wZe70UKqHu0v8=
+golang.org/x/crypto v0.24.0 h1:mnl8DM0o513X8fdIkmyFE/5hTYxbwYOjDS/+rK6qpRI=
+golang.org/x/crypto v0.24.0/go.mod h1:Z1PMYSOR5nyMcyAVAIQSKCDwalqy85Aqn1x3Ws4L5DM=
 golang.org/x/exp v0.0.0-20180321215751-8460e604b9de/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20180807140117-3d87b88a115f/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
@@ -1459,8 +1459,8 @@ golang.org/x/sys v0.15.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.16.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.18.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.20.0 h1:Od9JTbYCk261bKm4M/mw7AklTlFYIa0bIp9BgSm1S8Y=
-golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.21.0 h1:rF+pYz3DAGSQAxAu1CbC7catZg4ebC4UIeIhKxBZvws=
+golang.org/x/sys v0.21.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
@@ -1477,8 +1477,8 @@ golang.org/x/term v0.15.0/go.mod h1:BDl952bC7+uMoWR75FIrCDx79TPU9oHkTZ9yRbYOrX0=
 golang.org/x/term v0.16.0/go.mod h1:yn7UURbUtPyrVJPGPq404EukNFxcm/foM+bV/bfcDsY=
 golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk=
 golang.org/x/term v0.18.0/go.mod h1:ILwASektA3OnRv7amZ1xhE/KTR+u50pbXfZ03+6Nx58=
-golang.org/x/term v0.20.0 h1:VnkxpohqXaOBYJtBmEppKUG6mXpi+4O6purfc2+sMhw=
-golang.org/x/term v0.20.0/go.mod h1:8UkIAJTvZgivsXaD6/pH6U9ecQzZ45awqEOzuCvwpFY=
+golang.org/x/term v0.21.0 h1:WVXCp+/EBEHOj53Rvu+7KiT/iElMrO8ACK16SMZ3jaA=
+golang.org/x/term v0.21.0/go.mod h1:ooXLefLobQVslOqselCNF4SxFAaoS6KujMbsGzSDmX0=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -1497,8 +1497,8 @@ golang.org/x/text v0.8.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
 golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
 golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
-golang.org/x/text v0.15.0 h1:h1V/4gjBv8v9cjcR6+AR5+/cIYK5N/WAgiv4xlsEtAk=
-golang.org/x/text v0.15.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
+golang.org/x/text v0.16.0 h1:a94ExnEXNtEwYLGJSIUxnWoxoRz/ZcCsV63ROupILh4=
+golang.org/x/text v0.16.0/go.mod h1:GhwF1Be+LQoKShO3cGOHzqOgRrGaYc9AvblQOmPVHnI=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
@@ -1571,8 +1571,8 @@ golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc
 golang.org/x/tools v0.3.0/go.mod h1:/rWhSS2+zyEVwoJf8YAX6L2f0ntZ7Kn/mGgAWcipA5k=
 golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
 golang.org/x/tools v0.7.0/go.mod h1:4pg6aUX35JBAogB10C9AtvVL+qowtN4pT3CGSQex14s=
-golang.org/x/tools v0.21.0 h1:qc0xYgIbsSDt9EyWz05J5wfa7LOVW0YTLOXrqdLAWIw=
-golang.org/x/tools v0.21.0/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk=
+golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d h1:vU5i/LfpvrRCpgM/VPfJLg5KjxD3E+hfT1SH+d9zLwg=
+golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=

From f1026b484905de9966c250b6fd3e46961aecf1fd Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 17 Jun 2024 04:09:29 -0700
Subject: [PATCH 1312/1641] Bump the all group with 2 updates (#11476)

Bumps the all group with 2 updates: [actions/checkout](https://github.com/actions/checkout) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `actions/checkout` from 4.1.6 to 4.1.7
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/a5ac7e51b41094c92402da3b24376905380afc29...692973e3d937129bcbf40652eb9f2f61becf3332)

Updates `github/codeql-action` from 3.25.8 to 3.25.10
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/2e230e8fe0ad3a14a340ad0815ddb96d599d2aff...23acc5c183826b7a8a97bce3cecc52db901f8251)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 10 +++++-----
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/golangci-lint.yml        |  2 +-
 .github/workflows/helm.yaml                |  4 ++--
 .github/workflows/images.yaml              |  8 ++++----
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  4 ++--
 .github/workflows/vulnerability-scans.yaml |  6 +++---
 .github/workflows/zz-tmpl-images.yaml      |  6 +++---
 .github/workflows/zz-tmpl-k8s-e2e.yaml     |  2 +-
 12 files changed, 26 insertions(+), 26 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 70369418f..a2e036f72 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -47,7 +47,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -77,7 +77,7 @@ jobs:
       (needs.changes.outputs.go == 'true')
     steps:
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
@@ -105,7 +105,7 @@ jobs:
         PLATFORMS: linux/amd64
     steps:
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
       - name: Get go version
         id: golangversion
@@ -179,7 +179,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
         with:
           fetch-depth: 0
 
@@ -239,7 +239,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
       - name: Setup Go
         uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 2aacbd6cc..572121886 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@72eb03d02c7872a771aacd928f3123ac62ad6d3a # v4.3.3
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 0e12a0dc7..c1434c7b7 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 8e6ec5200..9d91c68fb 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
index f3aa7ced8..f7a68af1a 100644
--- a/.github/workflows/helm.yaml
+++ b/.github/workflows/helm.yaml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
       - name: Run Artifact Hub lint
         run: |
@@ -66,7 +66,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
         with:
           # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
           fetch-depth: 0
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index cd63a376e..4aed94772 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -41,7 +41,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -144,7 +144,7 @@ jobs:
         k8s: [v1.26.14, v1.27.11, v1.28.7, v1.29.2]
     steps:
     - name: Checkout
-      uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+      uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
     - name: Get go version
       run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
@@ -178,7 +178,7 @@ jobs:
         nginx: ['1.25.3', '1.21.6']
     steps:
     - name: Checkout
-      uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+      uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
     - name: image build
       run: |
         cd images/opentelemetry && make NGINX_VERSION=${{ matrix.nginx }} build
@@ -195,7 +195,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm,linux/arm64,linux/s390x
     steps:
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
       - name: Set up QEMU
         uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
       - name: Set up Docker Buildx
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 9a544c645..2e1e01a3e 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 8274a6a99..3adccc5eb 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 89ee0b55b..1a40697e7 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
         with:
           persist-credentials: false
 
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@2e230e8fe0ad3a14a340ad0815ddb96d599d2aff # v3.25.8
+        uses: github/codeql-action/upload-sarif@23acc5c183826b7a8a97bce3cecc52db901f8251 # v3.25.10
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 19a66053f..f7ceab6c0 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
       - shell: bash
         id: test
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@2e230e8fe0ad3a14a340ad0815ddb96d599d2aff # v3.25.8
+        uses: github/codeql-action/upload-sarif@23acc5c183826b7a8a97bce3cecc52db901f8251 # v3.25.10
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository
diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index 17425a468..1ed1bbcdc 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -31,7 +31,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -48,7 +48,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
       - name: Build
         run: |
@@ -67,7 +67,7 @@ jobs:
       PLATFORMS: ${{ inputs.platforms-publish }}
     steps:
     - name: Checkout
-      uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+      uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
     - name: Login to GitHub Container Registry
       uses: docker/login-action@0d4c9c5ea7693da7b068278f7b52bda2a190a446 # v3.2.0
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 016157aad..fda6f1937 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -20,7 +20,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
       - name: cache
         uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e # v4.1.7

From 6bb19ea698c8a83939b77797c1748a48a3915704 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 17 Jun 2024 04:19:52 -0700
Subject: [PATCH 1313/1641] Bump the all group with 3 updates (#11474)

Bumps the all group with 3 updates: [github.com/opencontainers/runc](https://github.com/opencontainers/runc), [github.com/spf13/cobra](https://github.com/spf13/cobra) and [k8s.io/component-base](https://github.com/kubernetes/component-base).


Updates `github.com/opencontainers/runc` from 1.1.12 to 1.1.13
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/main/CHANGELOG.md)
- [Commits](https://github.com/opencontainers/runc/compare/v1.1.12...v1.1.13)

Updates `github.com/spf13/cobra` from 1.8.0 to 1.8.1
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](https://github.com/spf13/cobra/compare/v1.8.0...v1.8.1)

Updates `k8s.io/component-base` from 0.30.1 to 0.30.2
- [Commits](https://github.com/kubernetes/component-base/compare/v0.30.1...v0.30.2)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: k8s.io/component-base
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 12 ++++++------
 go.sum | 26 +++++++++++++-------------
 2 files changed, 19 insertions(+), 19 deletions(-)

diff --git a/go.mod b/go.mod
index 2627556f8..873c0aeaa 100644
--- a/go.mod
+++ b/go.mod
@@ -17,12 +17,12 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.7.11
 	github.com/onsi/ginkgo/v2 v2.19.0
-	github.com/opencontainers/runc v1.1.12
+	github.com/opencontainers/runc v1.1.13
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.1
 	github.com/prometheus/client_model v0.6.1
 	github.com/prometheus/common v0.54.0
-	github.com/spf13/cobra v1.8.0
+	github.com/spf13/cobra v1.8.1
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.9.0
 	github.com/yudai/gojsondiff v1.0.0
@@ -33,14 +33,14 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.30.1
+	k8s.io/api v0.30.2
 	k8s.io/apiextensions-apiserver v0.30.1
-	k8s.io/apimachinery v0.30.1
+	k8s.io/apimachinery v0.30.2
 	k8s.io/apiserver v0.30.1
 	k8s.io/cli-runtime v0.30.0
-	k8s.io/client-go v0.30.1
+	k8s.io/client-go v0.30.2
 	k8s.io/code-generator v0.30.1
-	k8s.io/component-base v0.30.1
+	k8s.io/component-base v0.30.2
 	k8s.io/klog/v2 v2.120.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.18.4
diff --git a/go.sum b/go.sum
index 09594f63b..88c066494 100644
--- a/go.sum
+++ b/go.sum
@@ -665,7 +665,7 @@ github.com/cncf/xds/go v0.0.0-20230105202645-06c439db220b/go.mod h1:eXthEFrGJvWH
 github.com/cncf/xds/go v0.0.0-20230310173818-32f1caf87195/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/coreos/go-systemd/v22 v22.5.0 h1:RrqgGjYQKalulkV8NGVIfkXQf6YYmOyiJKk8iXXhfZs=
 github.com/coreos/go-systemd/v22 v22.5.0/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
-github.com/cpuguy83/go-md2man/v2 v2.0.3/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
+github.com/cpuguy83/go-md2man/v2 v2.0.4/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/creack/pty v1.1.18 h1:n56/Zwd5o6whRC5PMGretI4IdRLlmBXYNjScPaBgsbY=
 github.com/creack/pty v1.1.18/go.mod h1:MOBLtS5ELjhRRrroQr9kyvTxUAFNvYEK993ew/Vr4O4=
@@ -992,8 +992,8 @@ github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7J
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.33.1 h1:dsYjIxxSR755MDmKVsaFQTE22ChNBcuuTWgkUDSubOk=
 github.com/onsi/gomega v1.33.1/go.mod h1:U4R44UsT+9eLIaYRB2a5qajjtQYn0hauxvRm16AVYg0=
-github.com/opencontainers/runc v1.1.12 h1:BOIssBaW1La0/qbNZHXOOa71dZfZEQOzW7dqQf3phss=
-github.com/opencontainers/runc v1.1.12/go.mod h1:S+lQwSfncpBha7XTy/5lBwWgm5+y5Ma/O44Ekby9FK8=
+github.com/opencontainers/runc v1.1.13 h1:98S2srgG9vw0zWcDpFMn5TRrh8kLxa/5OFUstuUhmRs=
+github.com/opencontainers/runc v1.1.13/go.mod h1:R016aXacfp/gwQBYw2FDGa9m+n6atbLWrYY8hNMT/sA=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
 github.com/opencontainers/runtime-spec v1.2.0/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
@@ -1080,8 +1080,8 @@ github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasO
 github.com/spf13/afero v1.3.3/go.mod h1:5KUK8ByomD5Ti5Artl0RtHeI5pTF7MIDuXL3yY520V4=
 github.com/spf13/afero v1.6.0/go.mod h1:Ai8FlHk4v/PARR026UzYexafAt9roJ7LcLMAmO6Z93I=
 github.com/spf13/afero v1.9.2/go.mod h1:iUV7ddyEEZPO5gA3zD4fJt6iStLlL+Lg4m2cihcDf8Y=
-github.com/spf13/cobra v1.8.0 h1:7aJaZx1B85qltLMc546zn58BxxfZdR/W22ej9CFoEf0=
-github.com/spf13/cobra v1.8.0/go.mod h1:WXLWApfZ71AjXPya3WOlMsY9yMs7YeiHhFVlvLyhcho=
+github.com/spf13/cobra v1.8.1 h1:e5/vxKd/rZsfSJMUX1agtjeTDf+qv1/JdBF8gg5k9ZM=
+github.com/spf13/cobra v1.8.1/go.mod h1:wHxEcudfqmLYa8iTfL+OuZPbBZkmvliBWKIezN3kD9Y=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
@@ -1913,22 +1913,22 @@ honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt
 honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
 honnef.co/go/tools v0.1.3/go.mod h1:NgwopIslSNH47DimFoV78dnkksY2EFtX0ajyb3K/las=
-k8s.io/api v0.30.1 h1:kCm/6mADMdbAxmIh0LBjS54nQBE+U4KmbCfIkF5CpJY=
-k8s.io/api v0.30.1/go.mod h1:ddbN2C0+0DIiPntan/bye3SW3PdwLa11/0yqwvuRrJM=
+k8s.io/api v0.30.2 h1:+ZhRj+28QT4UOH+BKznu4CBgPWgkXO7XAvMcMl0qKvI=
+k8s.io/api v0.30.2/go.mod h1:ULg5g9JvOev2dG0u2hig4Z7tQ2hHIuS+m8MNZ+X6EmI=
 k8s.io/apiextensions-apiserver v0.30.1 h1:4fAJZ9985BmpJG6PkoxVRpXv9vmPUOVzl614xarePws=
 k8s.io/apiextensions-apiserver v0.30.1/go.mod h1:R4GuSrlhgq43oRY9sF2IToFh7PVlF1JjfWdoG3pixk4=
-k8s.io/apimachinery v0.30.1 h1:ZQStsEfo4n65yAdlGTfP/uSHMQSoYzU/oeEbkmF7P2U=
-k8s.io/apimachinery v0.30.1/go.mod h1:iexa2somDaxdnj7bha06bhb43Zpa6eWH8N8dbqVjTUc=
+k8s.io/apimachinery v0.30.2 h1:fEMcnBj6qkzzPGSVsAZtQThU62SmQ4ZymlXRC5yFSCg=
+k8s.io/apimachinery v0.30.2/go.mod h1:iexa2somDaxdnj7bha06bhb43Zpa6eWH8N8dbqVjTUc=
 k8s.io/apiserver v0.30.1 h1:BEWEe8bzS12nMtDKXzCF5Q5ovp6LjjYkSp8qOPk8LZ8=
 k8s.io/apiserver v0.30.1/go.mod h1:i87ZnQ+/PGAmSbD/iEKM68bm1D5reX8fO4Ito4B01mo=
 k8s.io/cli-runtime v0.30.0 h1:0vn6/XhOvn1RJ2KJOC6IRR2CGqrpT6QQF4+8pYpWQ48=
 k8s.io/cli-runtime v0.30.0/go.mod h1:vATpDMATVTMA79sZ0YUCzlMelf6rUjoBzlp+RnoM+cg=
-k8s.io/client-go v0.30.1 h1:uC/Ir6A3R46wdkgCV3vbLyNOYyCJ8oZnjtJGKfytl/Q=
-k8s.io/client-go v0.30.1/go.mod h1:wrAqLNs2trwiCH/wxxmT/x3hKVH9PuV0GGW0oDoHVqc=
+k8s.io/client-go v0.30.2 h1:sBIVJdojUNPDU/jObC+18tXWcTJVcwyqS9diGdWHk50=
+k8s.io/client-go v0.30.2/go.mod h1:JglKSWULm9xlJLx4KCkfLLQ7XwtlbflV6uFFSHTMgVs=
 k8s.io/code-generator v0.30.1 h1:ZsG++q5Vt0ScmKCeLhynUuWgcwFGg1Hl1AGfatqPJBI=
 k8s.io/code-generator v0.30.1/go.mod h1:hFgxRsvOUg79mbpbVKfjJvRhVz1qLoe40yZDJ/hwRH4=
-k8s.io/component-base v0.30.1 h1:bvAtlPh1UrdaZL20D9+sWxsJljMi0QZ3Lmw+kmZAaxQ=
-k8s.io/component-base v0.30.1/go.mod h1:e/X9kDiOebwlI41AvBHuWdqFriSRrX50CdwA9TFaHLI=
+k8s.io/component-base v0.30.2 h1:pqGBczYoW1sno8q9ObExUqrYSKhtE5rW3y6gX88GZII=
+k8s.io/component-base v0.30.2/go.mod h1:yQLkQDrkK8J6NtP+MGJOws+/PPeEXNpwFixsUI7h/OE=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 h1:bKcdZJOPICVmIIuaM9+MXmapE94dn5AYv5ODs1jA43o=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
 k8s.io/klog/v2 v2.120.1 h1:QXU6cPEOIslTGvZaXvFWiP9VKyeet3sawzTOvdXb4Vw=

From 5ac6f775037b06596dca9a6dff4281655085b933 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 17 Jun 2024 05:21:08 -0700
Subject: [PATCH 1314/1641] Bump k8s.io/klog/v2 from 2.120.1 to 2.130.0
 (#11475)

Bumps [k8s.io/klog/v2](https://github.com/kubernetes/klog) from 2.120.1 to 2.130.0.
- [Release notes](https://github.com/kubernetes/klog/releases)
- [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes/klog/compare/v2.120.1...v2.130.0)

---
updated-dependencies:
- dependency-name: k8s.io/klog/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 873c0aeaa..01ed7658a 100644
--- a/go.mod
+++ b/go.mod
@@ -41,7 +41,7 @@ require (
 	k8s.io/client-go v0.30.2
 	k8s.io/code-generator v0.30.1
 	k8s.io/component-base v0.30.2
-	k8s.io/klog/v2 v2.120.1
+	k8s.io/klog/v2 v2.130.0
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.18.4
 	sigs.k8s.io/mdtoc v1.1.0
diff --git a/go.sum b/go.sum
index 88c066494..77c0417d3 100644
--- a/go.sum
+++ b/go.sum
@@ -1931,8 +1931,8 @@ k8s.io/component-base v0.30.2 h1:pqGBczYoW1sno8q9ObExUqrYSKhtE5rW3y6gX88GZII=
 k8s.io/component-base v0.30.2/go.mod h1:yQLkQDrkK8J6NtP+MGJOws+/PPeEXNpwFixsUI7h/OE=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 h1:bKcdZJOPICVmIIuaM9+MXmapE94dn5AYv5ODs1jA43o=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
-k8s.io/klog/v2 v2.120.1 h1:QXU6cPEOIslTGvZaXvFWiP9VKyeet3sawzTOvdXb4Vw=
-k8s.io/klog/v2 v2.120.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
+k8s.io/klog/v2 v2.130.0 h1:5nB3+3HpqKqXJIXNtJdtxcDCfaa9KL8StJgMzGJkUkM=
+k8s.io/klog/v2 v2.130.0/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
 k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f h1:0LQagt0gDpKqvIkAMPaRGcXawNMouPECM1+F9BVxEaM=
 k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f/go.mod h1:S9tOR0FxgyusSNR+MboCuiDpVWkAifZvaYI1Q2ubgro=
 k8s.io/utils v0.0.0-20240502163921-fe8a2dddb1d0 h1:jgGTlFYnhF1PM1Ax/lAlxUPE+KfCIXHaathvJg1C3ak=

From e084ad0a5eefe7ccfa80a0f4eac69f923efd0374 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 17 Jun 2024 14:25:38 +0200
Subject: [PATCH 1315/1641] Chores: Align security contacts & chart maintainers
 to actual owners. (#11465)

---
 .github/ISSUE_TEMPLATE/cve_report.md | 3 ++-
 SECURITY_CONTACTS                    | 2 +-
 charts/ingress-nginx/Chart.yaml      | 2 ++
 3 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/.github/ISSUE_TEMPLATE/cve_report.md b/.github/ISSUE_TEMPLATE/cve_report.md
index 11789d479..79781fa66 100644
--- a/.github/ISSUE_TEMPLATE/cve_report.md
+++ b/.github/ISSUE_TEMPLATE/cve_report.md
@@ -4,8 +4,9 @@ about: CVE reporting for ingress-nginx
 title: ''
 labels: kind/bug
 assignees:
-    - strongjz
+    - Gacko
     - rikatz
+    - strongjz
 ---
 
 <!-- if you found something that impacts directly ingress-nginx and
diff --git a/SECURITY_CONTACTS b/SECURITY_CONTACTS
index b04c993fc..d0a9a2dbc 100644
--- a/SECURITY_CONTACTS
+++ b/SECURITY_CONTACTS
@@ -9,6 +9,6 @@
 #
 # DO NOT REPORT SECURITY VULNERABILITIES DIRECTLY TO THESE NAMES, FOLLOW THE
 # INSTRUCTIONS AT https://kubernetes.io/security/
-bowei
+Gacko
 rikatz
 strongjz
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 70344515e..d7600d2b4 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -15,7 +15,9 @@ keywords:
   - nginx
 kubeVersion: '>=1.21.0-0'
 maintainers:
+- name: cpanato
 - name: Gacko
+- name: puerco
 - name: rikatz
 - name: strongjz
 - name: tao12345666333

From e3750b78dee10f52e67df2db7c80a8efbf81be09 Mon Sep 17 00:00:00 2001
From: Yoofi Quansah <ybquansah@gmail.com>
Date: Tue, 18 Jun 2024 11:38:39 -0500
Subject: [PATCH 1316/1641] Fix boolean configuration (#11483)

* chore: fix booleans to all have quotes around their values

Signed-off-by: Yoofi Quansah <ybquansah@gmail.com>

* Revert "chore: fix booleans to all have quotes around their values"

This reverts commit 7d91e4d9edaaf1ffb97409c064e6771160fa5c38.

* chore: fix default values for boolean configuration

Signed-off-by: Yoofi Quansah <ybquansah@gmail.com>

---------

Signed-off-by: Yoofi Quansah <ybquansah@gmail.com>
---
 docs/user-guide/nginx-configuration/configmap.md | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 48ab316cb..002f8a500 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -30,7 +30,7 @@ The following table shows a configuration option's name, type, and the default v
 |[add-headers](#add-headers)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
 |[allow-backend-server-header](#allow-backend-server-header)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
 |[allow-cross-namespace-resources](#allow-cross-namespace-resources)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[allow-snippet-annotations](#allow-snippet-annotations)| bool         | false                                                                                                                                                                                                                                                                                                                                                        ||
+|[allow-snippet-annotations](#allow-snippet-annotations)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                        ||
 |[annotations-risk-level](#annotations-risk-level)| string       | Critical                                                                                                                                                                                                                                                                                                                                                     ||
 |[annotation-value-word-blocklist](#annotation-value-word-blocklist)| string array | ""                                                                                                                                                                                                                                                                                                                                                           ||
 |[hide-headers](#hide-headers)| string array | empty                                                                                                                                                                                                                                                                                                                                                        ||
@@ -47,12 +47,12 @@ The following table shows a configuration option's name, type, and the default v
 |[client-header-timeout](#client-header-timeout)| int          | 60                                                                                                                                                                                                                                                                                                                                                           ||
 |[client-body-buffer-size](#client-body-buffer-size)| string       | "8k"                                                                                                                                                                                                                                                                                                                                                         ||
 |[client-body-timeout](#client-body-timeout)| int          | 60                                                                                                                                                                                                                                                                                                                                                           ||
-|[disable-access-log](#disable-access-log)| bool         | false                                                                                                                                                                                                                                                                                                                                                        ||
-|[disable-ipv6](#disable-ipv6)| bool         | false                                                                                                                                                                                                                                                                                                                                                        ||
-|[disable-ipv6-dns](#disable-ipv6-dns)| bool         | false                                                                                                                                                                                                                                                                                                                                                        ||
-|[enable-underscores-in-headers](#enable-underscores-in-headers)| bool         | false                                                                                                                                                                                                                                                                                                                                                        ||
-|[enable-ocsp](#enable-ocsp)| bool         | false                                                                                                                                                                                                                                                                                                                                                        ||
-|[ignore-invalid-headers](#ignore-invalid-headers)| bool         | true                                                                                                                                                                                                                                                                                                                                                         ||
+|[disable-access-log](#disable-access-log)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                        ||
+|[disable-ipv6](#disable-ipv6)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                        ||
+|[disable-ipv6-dns](#disable-ipv6-dns)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                        ||
+|[enable-underscores-in-headers](#enable-underscores-in-headers)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                        ||
+|[enable-ocsp](#enable-ocsp)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                        ||
+|[ignore-invalid-headers](#ignore-invalid-headers)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                         ||
 |[retry-non-idempotent](#retry-non-idempotent)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
 |[error-log-level](#error-log-level)| string       | "notice"                                                                                                                                                                                                                                                                                                                                                     ||
 |[http2-max-field-size](#http2-max-field-size)| string       | ""                                                                                                                                                                                                                                                                                                                                                           |DEPRECATED in favour of [large_client_header_buffers](#large-client-header-buffers)|
@@ -199,7 +199,7 @@ The following table shows a configuration option's name, type, and the default v
 |[proxy-buffering](#proxy-buffering)| string       | "off"                                                                                                                                                                                                                                                                                                                                                        ||
 |[limit-req-status-code](#limit-req-status-code)| int          | 503                                                                                                                                                                                                                                                                                                                                                          ||
 |[limit-conn-status-code](#limit-conn-status-code)| int          | 503                                                                                                                                                                                                                                                                                                                                                          ||
-|[enable-syslog](#enable-syslog)| bool         | false                                                                                                                                                                                                                                                                                                                                                        ||
+|[enable-syslog](#enable-syslog)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                        ||
 |[syslog-host](#syslog-host)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
 |[syslog-port](#syslog-port)| int          | 514                                                                                                                                                                                                                                                                                                                                                          ||
 |[no-tls-redirect-locations](#no-tls-redirect-locations)| string       | "/.well-known/acme-challenge"                                                                                                                                                                                                                                                                                                                                ||

From 44849cb302b9e2fedf312b9add22176092dfb798 Mon Sep 17 00:00:00 2001
From: Stepan Paksashvili <81509933+ipaqsa@users.noreply.github.com>
Date: Tue, 18 Jun 2024 22:29:37 +0300
Subject: [PATCH 1317/1641] [feature] bump nginx to 1.25.5 and add http3 module
 (#11470)

* [feature] bump nginx to 1.25.5, add http3 module, and update lua-stream, lua_ngx, mimaloc, opentelemetry_cpp, opentelemetry_proto and opentelemtry_contrib

Signed-off-by: Stepan Paksashvili <stepan.paksashvili@flant.com>

* [feature] revert opentelemetry and owasp updates

Signed-off-by: Stepan Paksashvili <stepan.paksashvili@flant.com>

---------

Signed-off-by: Stepan Paksashvili <stepan.paksashvili@flant.com>
---
 Makefile                          |  2 +-
 images/nginx-1.25/TAG             |  2 +-
 images/nginx-1.25/rootfs/build.sh | 35 ++++++++++++++++---------------
 3 files changed, 20 insertions(+), 19 deletions(-)

diff --git a/Makefile b/Makefile
index 8ff0f0ca0..a99e1540c 100644
--- a/Makefile
+++ b/Makefile
@@ -110,7 +110,7 @@ clean-chroot-image: ## Removes local image
 
 .PHONY: build
 build:  ## Build ingress controller, debug tool and pre-stop hook.
-	E2E_IMAGE=golang:$(GO_VERSION)-alpine3.19 USE_SHELL=/bin/sh build/run-in-docker.sh \
+	E2E_IMAGE=golang:$(GO_VERSION)-alpine3.20 USE_SHELL=/bin/sh build/run-in-docker.sh \
 		MAC_OS=$(MAC_OS) \
 		PKG=$(PKG) \
 		ARCH=$(ARCH) \
diff --git a/images/nginx-1.25/TAG b/images/nginx-1.25/TAG
index 254a9f20d..04eddb26b 100644
--- a/images/nginx-1.25/TAG
+++ b/images/nginx-1.25/TAG
@@ -1 +1 @@
-v0.0.6
\ No newline at end of file
+v0.0.7
\ No newline at end of file
diff --git a/images/nginx-1.25/rootfs/build.sh b/images/nginx-1.25/rootfs/build.sh
index 3fe610945..2a666fc9e 100755
--- a/images/nginx-1.25/rootfs/build.sh
+++ b/images/nginx-1.25/rootfs/build.sh
@@ -18,7 +18,7 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
-export NGINX_VERSION=1.25.3
+export NGINX_VERSION=1.25.5
 
 # Check for recent changes: https://github.com/vision5/ngx_devel_kit/compare/v0.3.3...master
 export NDK_VERSION=v0.3.3
@@ -41,43 +41,43 @@ export MODSECURITY_VERSION=v1.0.3
 # Check for recent changes: https://github.com/SpiderLabs/ModSecurity/compare/v3.0.8...v3/master
 export MODSECURITY_LIB_VERSION=v3.0.12
 
-# Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.2...v3.3/master
+# Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.5...main
 export OWASP_MODSECURITY_CRS_VERSION=v3.3.5
 
-# Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.25...master
-export LUA_NGX_VERSION=v0.10.26
+# Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/b5d1688ae722538ba4dc8a7ec08820a08abfb93d...master
+export LUA_NGX_VERSION=b5d1688ae722538ba4dc8a7ec08820a08abfb93d
 
-# Check for recent changes: https://github.com/openresty/stream-lua-nginx-module/compare/v0.0.13...master
-export LUA_STREAM_NGX_VERSION=v0.0.14
+# Check for recent changes: https://github.com/openresty/stream-lua-nginx-module/compare/bea8a0c0de94cede71554f53818ac0267d675d63...master
+export LUA_STREAM_NGX_VERSION=bea8a0c0de94cede71554f53818ac0267d675d63
 
 # Check for recent changes: https://github.com/openresty/lua-upstream-nginx-module/compare/8aa93ead98ba2060d4efd594ae33a35d153589bf...master
 export LUA_UPSTREAM_VERSION=542be0893543a4e42d89f6dd85372972f5ff2a36
 
-# Check for recent changes: https://github.com/openresty/lua-cjson/compare/2.1.0.11...openresty:master
+# Check for recent changes: https://github.com/openresty/lua-cjson/compare/2.1.0.13...openresty:master
 export LUA_CJSON_VERSION=2.1.0.13
 
-# Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/3.4...master
+# Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/a607a41a8115fecfc05b5c283c81532a3d605425...master
 export GEOIP2_VERSION=a607a41a8115fecfc05b5c283c81532a3d605425
 
-# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20230410...v2.1-agentzh
-export LUAJIT_VERSION=v2.1-20231117
+# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20240314...v2.1-agentzh
+export LUAJIT_VERSION=v2.1-20240314
 
-# Check for recent changes: https://github.com/openresty/lua-resty-balancer/compare/v0.04...master
+# Check for recent changes: https://github.com/openresty/lua-resty-balancer/compare/1cd4363c0a239afe4765ec607dcfbbb4e5900eea...master
 export LUA_RESTY_BALANCER=1cd4363c0a239afe4765ec607dcfbbb4e5900eea
 
-# Check for recent changes: https://github.com/openresty/lua-resty-lrucache/compare/v0.13...master
+# Check for recent changes: https://github.com/openresty/lua-resty-lrucache/compare/99e7578465b40f36f596d099b82eab404f2b42ed...master
 export LUA_RESTY_CACHE=99e7578465b40f36f596d099b82eab404f2b42ed
 
 # Check for recent changes: https://github.com/openresty/lua-resty-core/compare/v0.1.27...master
 export LUA_RESTY_CORE=v0.1.28
 
-# Check for recent changes: https://github.com/cloudflare/lua-resty-cookie/compare/v0.1.0...master
+# Check for recent changes: https://github.com/cloudflare/lua-resty-cookie/compare/f418d77082eaef48331302e84330488fdc810ef4...master
 export LUA_RESTY_COOKIE_VERSION=f418d77082eaef48331302e84330488fdc810ef4
 
-# Check for recent changes: https://github.com/openresty/lua-resty-dns/compare/v0.22...master
+# Check for recent changes: https://github.com/openresty/lua-resty-dns/compare/8bb53516e2933e61c317db740a9b7c2048847c2f...master
 export LUA_RESTY_DNS=8bb53516e2933e61c317db740a9b7c2048847c2f
 
-# Check for recent changes: https://github.com/ledgetech/lua-resty-http/compare/v0.16.1...master
+# Check for recent changes: https://github.com/ledgetech/lua-resty-http/compare/v0.17.1...master
 export LUA_RESTY_HTTP=v0.17.1
 
 # Check for recent changes: https://github.com/openresty/lua-resty-lock/compare/v0.09...master
@@ -101,8 +101,8 @@ export LUA_RESTY_IPMATCHER_VERSION=3e93c53eb8c9884efe939ef070486a0e507cc5be
 # Check for recent changes: https://github.com/ElvinEfendi/lua-resty-global-throttle/compare/v0.2.0...main
 export LUA_RESTY_GLOBAL_THROTTLE_VERSION=v0.2.0
 
-# Check for recent changes:  https://github.com/microsoft/mimalloc/compare/v1.7.6...master
-export MIMALOC_VERSION=v2.1.2
+# Check for recent changes:  https://github.com/microsoft/mimalloc/compare/v2.1.7...master
+export MIMALOC_VERSION=v2.1.7
 
 # Check on https://github.com/open-telemetry/opentelemetry-cpp
 export OPENTELEMETRY_CPP_VERSION="v1.11.0"
@@ -447,6 +447,7 @@ WITH_FLAGS="--with-debug \
   --with-http_gzip_static_module \
   --with-http_sub_module \
   --with-http_v2_module \
+  --with-http_v3_module \
   --with-stream \
   --with-stream_ssl_module \
   --with-stream_realip_module \

From 5784be2784210534c460e8118bde47ec8b865ed0 Mon Sep 17 00:00:00 2001
From: g1franc <guillaume.francois55@gmail.com>
Date: Wed, 19 Jun 2024 11:20:42 +0200
Subject: [PATCH 1318/1641] Update getting-started.md with new prerequisites
 (#11486)

---
 docs/developer-guide/getting-started.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/docs/developer-guide/getting-started.md b/docs/developer-guide/getting-started.md
index 4b7ed46f0..e4bb661d4 100644
--- a/docs/developer-guide/getting-started.md
+++ b/docs/developer-guide/getting-started.md
@@ -19,6 +19,10 @@ Install [Go 1.14](https://golang.org/dl/) or later.
 
 Install [Docker](https://docs.docker.com/engine/install/) (v19.03.0 or later with experimental feature on)
 
+Install [kubectl](https://kubernetes.io/docs/tasks/tools/) (1.24.0 or higher)
+
+Install [Kind](https://kind.sigs.k8s.io/)
+
 !!! important
     The majority of make tasks run as docker containers
 

From 8691884033b60030b39b806269adcddc3a90716a Mon Sep 17 00:00:00 2001
From: Adzin Zhalifunnas <adzinzhalifunnas@gmail.com>
Date: Mon, 24 Jun 2024 20:32:58 +0700
Subject: [PATCH 1319/1641] docs: Update Ingress-NGINX v1.10.1 compatibility
 with Kubernetes v1.30 (#11495)

---
 README.md | 36 +++++++++++++++++-------------------
 1 file changed, 17 insertions(+), 19 deletions(-)

diff --git a/README.md b/README.md
index b0969fdbd..af6f52d00 100644
--- a/README.md
+++ b/README.md
@@ -6,7 +6,6 @@
 [![GitHub stars](https://img.shields.io/github/stars/kubernetes/ingress-nginx.svg)](https://github.com/kubernetes/ingress-nginx/stargazers)
 [![GitHub stars](https://img.shields.io/badge/contributions-welcome-orange.svg)](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md)
 
-
 ## Overview
 
 ingress-nginx is an Ingress controller for Kubernetes using [NGINX](https://www.nginx.org/) as a reverse proxy and load
@@ -36,22 +35,22 @@ For detailed changes on the `ingress-nginx` helm chart, please check the changel
 Supported versions for the ingress-nginx project mean that we have completed E2E tests, and they are passing for
 the versions listed. Ingress-Nginx versions **may** work on older versions, but the project does not make that guarantee.
 
-|  Supported  | Ingress-NGINX version | k8s supported version        | Alpine Version | Nginx Version | Helm Chart Version |
-|:--:|-----------------------|------------------------------|----------------|---------------|------------------------------|
-| 🔄 | **v1.10.1**            | 1.29, 1.28, 1.27, 1.26        | 3.19.1         | 1.25.3        | 4.10.1*                 |
-| 🔄 | **v1.10.0**            | 1.29, 1.28, 1.27, 1.26        | 3.19.1         | 1.25.3        | 4.10.0*                 |
-| 🔄 | **v1.9.6**            | 1.29, 1.28, 1.27, 1.26, 1.25        | 3.19.0         | 1.21.6        | 4.9.1*                 |
-| 🔄 | **v1.9.5**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.9.0*                       |
-| 🔄 | **v1.9.4**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.3                        |
-| 🔄 | **v1.9.3**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
-| 🔄 | **v1.9.1**            | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*                        |
-| 🔄 | **v1.9.0**            | 1.28, 1.27, 1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*                        |
-|  | v1.8.4            | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*                        |
-|  | v1.7.1            | 1.27, 1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
-|    | v1.6.4                | 1.26, 1.25, 1.24, 1.23       | 3.17.0         | 1.21.6        | 4.5.*              |
-|    | v1.5.1                | 1.25, 1.24, 1.23             | 3.16.2         | 1.21.6        | 4.4.*              |
-|    | v1.4.0                | 1.25, 1.24, 1.23, 1.22       | 3.16.2         | 1.19.10†      | 4.3.0              |
-|    | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20 | 3.16.2         | 1.19.10†      | 4.2.5              |
+| Supported | Ingress-NGINX version | k8s supported version         | Alpine Version | Nginx Version | Helm Chart Version |
+| :-------: | --------------------- | ----------------------------- | -------------- | ------------- | ------------------ |
+|    🔄    | **v1.10.1**     | 1.30, 1.29, 1.28, 1.27, 1.26 | 3.19.1         | 1.25.3        | 4.10.1*            |
+|    🔄    | **v1.10.0**     | 1.29, 1.28, 1.27, 1.26        | 3.19.1         | 1.25.3        | 4.10.0*            |
+|    🔄    | **v1.9.6**      | 1.29, 1.28, 1.27, 1.26, 1.25  | 3.19.0         | 1.21.6        | 4.9.1*             |
+|    🔄    | **v1.9.5**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.9.0*             |
+|    🔄    | **v1.9.4**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.3              |
+|    🔄    | **v1.9.3**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*              |
+|    🔄    | **v1.9.1**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*              |
+|    🔄    | **v1.9.0**      | 1.28, 1.27, 1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*              |
+|          | v1.8.4                | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
+|          | v1.7.1                | 1.27, 1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
+|          | v1.6.4                | 1.26, 1.25, 1.24, 1.23        | 3.17.0         | 1.21.6        | 4.5.*              |
+|          | v1.5.1                | 1.25, 1.24, 1.23              | 3.16.2         | 1.21.6        | 4.4.*              |
+|          | v1.4.0                | 1.25, 1.24, 1.23, 1.22        | 3.16.2         | 1.19.10†     | 4.3.0              |
+|          | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20  | 3.16.2         | 1.19.10†     | 4.2.5              |
 
 See [this article](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/) if you want upgrade to the stable
 Ingress API.
@@ -62,7 +61,6 @@ Thanks for taking the time to join our community and start contributing!
 
 - This project adheres to the [Kubernetes Community Code of Conduct](https://git.k8s.io/community/code-of-conduct.md).
   By participating in this project, you agree to abide by its terms.
-
 - **Contributing**: Contributions of all kinds are welcome!
 
   - Read [`CONTRIBUTING.md`](CONTRIBUTING.md) for information about setting up your environment, the workflow that we
@@ -71,8 +69,8 @@ Thanks for taking the time to join our community and start contributing!
   - Submit GitHub issues for any feature enhancements, bugs, or documentation problems.
     - Please make sure to read the [Issue Reporting Checklist](https://github.com/kubernetes/ingress-nginx/blob/main/CONTRIBUTING.md#issue-reporting-guidelines) before opening an issue. Issues not conforming to the guidelines **may be closed immediately**.
   - Join our [ingress-nginx-dev mailing list](https://groups.google.com/a/kubernetes.io/g/ingress-nginx-dev/c/ebbBMo-zX-w)
-
 - **Support**:
+
   - Join the [#ingress-nginx-users](https://kubernetes.slack.com/messages/CANQGM8BA/) channel inside the [Kubernetes Slack](http://slack.kubernetes.io/) to ask questions or get support from the maintainers and other users.
   - The [GitHub issues](https://github.com/kubernetes/ingress-nginx/issues) in the repository are **exclusively** for bug reports and feature requests.
   - **Discuss**: Tweet using the `#IngressNginx` hashtag or sharing with us [@IngressNginx](https://twitter.com/IngressNGINX).

From f228895130950f57b623636d55de19760b805241 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 24 Jun 2024 06:34:58 -0700
Subject: [PATCH 1320/1641] Bump aquasecurity/trivy-action from 0.22.0 to
 0.23.0 in the all group (#11497)

Bumps the all group with 1 update: [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action).


Updates `aquasecurity/trivy-action` from 0.22.0 to 0.23.0
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/595be6a0f6560a0a8fc419ddf630567fc623531d...7c2007bcb556501da015201bcba5aa14069b74e2)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index f7ceab6c0..35ba5c788 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@595be6a0f6560a0a8fc419ddf630567fc623531d # v0.22.0
+        uses: aquasecurity/trivy-action@7c2007bcb556501da015201bcba5aa14069b74e2 # v0.23.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'

From 6087e04cb1be568a46ca01debcf55391738e1cf3 Mon Sep 17 00:00:00 2001
From: JesseBot <jessebot@linux.com>
Date: Mon, 1 Jul 2024 11:05:15 +0200
Subject: [PATCH 1321/1641] Upgrade OWASP_MODSECURITY_CRS_VERSION 3.3.5 to
 4.4.0 and update docs (#11511)

Signed-off-by: jessebot <jessebot@linux.com>
---
 .../third-party-addons/modsecurity.md         | 94 +++++++++++++++++++
 images/nginx-1.25/rootfs/build.sh             | 15 ++-
 2 files changed, 100 insertions(+), 9 deletions(-)

diff --git a/docs/user-guide/third-party-addons/modsecurity.md b/docs/user-guide/third-party-addons/modsecurity.md
index 93a7f4097..38d39888d 100644
--- a/docs/user-guide/third-party-addons/modsecurity.md
+++ b/docs/user-guide/third-party-addons/modsecurity.md
@@ -14,3 +14,97 @@ The default `Serial` value in SecAuditLogType can impact performance.
 The OWASP ModSecurity Core Rule Set (CRS) is a set of generic attack detection rules for use with ModSecurity or compatible web application firewalls. The CRS aims to protect web applications from a wide range of attacks, including the OWASP Top Ten, with a minimum of false alerts.
 The directory `/etc/nginx/owasp-modsecurity-crs` contains the [OWASP ModSecurity Core Rule Set repository](https://github.com/coreruleset/coreruleset).
 Using `enable-owasp-modsecurity-crs: "true"` we enable the use of the rules.
+
+## Supported annotations
+
+For more info on supported annotations, please see [annotations/#modsecurity](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/annotations/#modsecurity)
+
+## Example of using ModSecurity with plugins via the helm chart
+
+Suppose you have a ConfigMap that contains the contents of the [nextcloud-rule-exclusions plugin](https://github.com/coreruleset/nextcloud-rule-exclusions-plugin/blob/main/plugins/nextcloud-rule-exclusions-before.conf) like this:
+
+```yaml
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: modsecurity-plugins
+data:
+  empty-after.conf: |
+    # no data
+  empty-before.conf: |
+    # no data
+  empty-config.conf: |
+    # no data
+  nextcloud-rule-exclusions-before.conf:
+    # this is just a snippet
+    # find the full file at https://github.com/coreruleset/nextcloud-rule-exclusions-plugin
+    #
+    # [ File Manager ]
+    # The web interface uploads files, and interacts with the user.
+    SecRule REQUEST_FILENAME "@contains /remote.php/webdav" \
+        "id:9508102,\
+        phase:1,\
+        pass,\
+        t:none,\
+        nolog,\
+        ver:'nextcloud-rule-exclusions-plugin/1.2.0',\
+        ctl:ruleRemoveById=920420,\
+        ctl:ruleRemoveById=920440,\
+        ctl:ruleRemoveById=941000-942999,\
+        ctl:ruleRemoveById=951000-951999,\
+        ctl:ruleRemoveById=953100-953130,\
+        ctl:ruleRemoveByTag=attack-injection-php"
+```
+
+If you're using the helm chart, you can pass in the following parameters in your `values.yaml`:
+
+```yaml
+controller:
+  config:
+    # Enables Modsecurity
+    enable-modsecurity: "true"
+
+    # Update ModSecurity config and rules
+    modsecurity-snippet: |
+      # this enables the mod security nextcloud plugin
+      Include /etc/nginx/owasp-modsecurity-crs/plugins/nextcloud-rule-exclusions-before.conf
+
+      # this enables the default OWASP Core Rule Set
+      Include /etc/nginx/owasp-modsecurity-crs/nginx-modsecurity.conf
+
+      # Enable prevention mode. Options: DetectionOnly,On,Off (default is DetectionOnly)
+      SecRuleEngine On
+
+      # Enable scanning of the request body
+      SecRequestBodyAccess On
+
+      # Enable XML and JSON parsing
+      SecRule REQUEST_HEADERS:Content-Type "(?:text|application(?:/soap\+|/)|application/xml)/" \
+        "id:200000,phase:1,t:none,t:lowercase,pass,nolog,ctl:requestBodyProcessor=XML"
+
+      SecRule REQUEST_HEADERS:Content-Type "application/json" \
+        "id:200001,phase:1,t:none,t:lowercase,pass,nolog,ctl:requestBodyProcessor=JSON"
+
+      # Reject if larger (we could also let it pass with ProcessPartial)
+      SecRequestBodyLimitAction Reject
+
+      # Send ModSecurity audit logs to the stdout (only for rejected requests)
+      SecAuditLog /dev/stdout
+
+      # format the logs in JSON
+      SecAuditLogFormat JSON
+
+      # could be On/Off/RelevantOnly
+      SecAuditEngine RelevantOnly
+
+  # Add a volume for the plugins directory
+  extraVolumes:
+    - name: plugins
+      configMap:
+        name: modsecurity-plugins
+
+  # override the /etc/nginx/enable-owasp-modsecurity-crs/plugins with your ConfigMap
+  extraVolumeMounts:
+    - name: plugins
+      mountPath: /etc/nginx/owasp-modsecurity-crs/plugins
+```
diff --git a/images/nginx-1.25/rootfs/build.sh b/images/nginx-1.25/rootfs/build.sh
index 2a666fc9e..1ebce8efc 100755
--- a/images/nginx-1.25/rootfs/build.sh
+++ b/images/nginx-1.25/rootfs/build.sh
@@ -41,8 +41,8 @@ export MODSECURITY_VERSION=v1.0.3
 # Check for recent changes: https://github.com/SpiderLabs/ModSecurity/compare/v3.0.8...v3/master
 export MODSECURITY_LIB_VERSION=v3.0.12
 
-# Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.5...main
-export OWASP_MODSECURITY_CRS_VERSION=v3.3.5
+# Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.5...v4.0/main
+export OWASP_MODSECURITY_CRS_VERSION=v4.4.0
 
 # Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/b5d1688ae722538ba4dc8a7ec08820a08abfb93d...master
 export LUA_NGX_VERSION=b5d1688ae722538ba4dc8a7ec08820a08abfb93d
@@ -181,7 +181,7 @@ apk add \
   c-ares-dev \
   re2-dev \
   grpc-dev \
-  protobuf-dev 
+  protobuf-dev
 
 # apk add -X http://dl-cdn.alpinelinux.org/alpine/edge/testing opentelemetry-cpp-dev
 
@@ -388,17 +388,13 @@ mv rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example rules/REQUEST-900-E
 mv rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf.example rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
 cd ..
 
-# OWASP CRS v3 rules
+# OWASP CRS v4 rules
 echo "
 Include /etc/nginx/owasp-modsecurity-crs/crs-setup.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-901-INITIALIZATION.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-903.9001-DRUPAL-EXCLUSION-RULES.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-905-COMMON-EXCEPTIONS.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-910-IP-REPUTATION.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-911-METHOD-ENFORCEMENT.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-912-DOS-PROTECTION.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-913-SCANNER-DETECTION.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-921-PROTOCOL-ATTACK.conf
@@ -407,7 +403,7 @@ Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LF
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-931-APPLICATION-ATTACK-RFI.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-934-APPLICATION-ATTACK-NODEJS.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-934-APPLICATION-ATTACK-GENERIC.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-941-APPLICATION-ATTACK-XSS.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf
@@ -418,6 +414,7 @@ Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-951-DATA-LEAKAGES-SQL.co
 Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-952-DATA-LEAKAGES-JAVA.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-953-DATA-LEAKAGES-PHP.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-954-DATA-LEAKAGES-IIS.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-955-WEB-SHELLS.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-959-BLOCKING-EVALUATION.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-980-CORRELATION.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf

From 0abc9eaff1791e2960cd8b8d612f8461abb23a1d Mon Sep 17 00:00:00 2001
From: Marco <62987024+marco-svitol@users.noreply.github.com>
Date: Mon, 1 Jul 2024 11:09:09 +0200
Subject: [PATCH 1322/1641] Docs: Improve default certificate usage. (#11504)

---
 docs/user-guide/tls.md | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/docs/user-guide/tls.md b/docs/user-guide/tls.md
index af62cf7e3..eaf33e210 100644
--- a/docs/user-guide/tls.md
+++ b/docs/user-guide/tls.md
@@ -41,8 +41,9 @@ If this flag is not provided NGINX will use a self-signed certificate.
 For instance, if you have a TLS secret `foo-tls` in the `default` namespace,
 add `--default-ssl-certificate=default/foo-tls` in the `nginx-controller` deployment.
 
-The default certificate will also be used for ingress `tls:` sections that do not
-have a `secretName` option.
+If the `tls:` section is not set, NGINX will provide the default certificate but will not force HTTPS redirect.
+
+On the other hand, if the `tls:` section is set - even without specifying a `secretName` option - NGINX will force HTTPS redirect. 
 
 To force redirects for Ingresses that do not specify a TLS-block at all, take a look at `force-ssl-redirect` in [ConfigMap][ConfigMap].
 

From f0787c3027ca7f2f8caa113d301e4bad3ba2a613 Mon Sep 17 00:00:00 2001
From: kiblik <5609770+kiblik@users.noreply.github.com>
Date: Mon, 1 Jul 2024 11:11:46 +0200
Subject: [PATCH 1323/1641] Docs: Specify `ingressClass` for multi-controller
 setup. (#11493)

---
 docs/user-guide/multiple-ingress.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/user-guide/multiple-ingress.md b/docs/user-guide/multiple-ingress.md
index fca93ee65..2c7c8e712 100644
--- a/docs/user-guide/multiple-ingress.md
+++ b/docs/user-guide/multiple-ingress.md
@@ -57,6 +57,7 @@ or if installing with Helm:
 ```yaml
 controller:
   electionID: ingress-controller-leader
+  ingressClass: internal-nginx  # default: nginx
   ingressClassResource:
     name: internal-nginx  # default: nginx
     enabled: true

From f8b66b45eb0d940727aacee4bcef7fc587ffae52 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 1 Jul 2024 12:12:58 +0200
Subject: [PATCH 1324/1641] Bump k8s.io/klog/v2 from 2.130.0 to 2.130.1 in the
 all group (#11499)

Bumps the all group with 1 update: [k8s.io/klog/v2](https://github.com/kubernetes/klog).


Updates `k8s.io/klog/v2` from 2.130.0 to 2.130.1
- [Release notes](https://github.com/kubernetes/klog/releases)
- [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md)
- [Commits](https://github.com/kubernetes/klog/compare/v2.130.0...v2.130.1)

---
updated-dependencies:
- dependency-name: k8s.io/klog/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 01ed7658a..6aad2d95e 100644
--- a/go.mod
+++ b/go.mod
@@ -41,7 +41,7 @@ require (
 	k8s.io/client-go v0.30.2
 	k8s.io/code-generator v0.30.1
 	k8s.io/component-base v0.30.2
-	k8s.io/klog/v2 v2.130.0
+	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.18.4
 	sigs.k8s.io/mdtoc v1.1.0
diff --git a/go.sum b/go.sum
index 77c0417d3..ba08826f4 100644
--- a/go.sum
+++ b/go.sum
@@ -1931,8 +1931,8 @@ k8s.io/component-base v0.30.2 h1:pqGBczYoW1sno8q9ObExUqrYSKhtE5rW3y6gX88GZII=
 k8s.io/component-base v0.30.2/go.mod h1:yQLkQDrkK8J6NtP+MGJOws+/PPeEXNpwFixsUI7h/OE=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 h1:bKcdZJOPICVmIIuaM9+MXmapE94dn5AYv5ODs1jA43o=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
-k8s.io/klog/v2 v2.130.0 h1:5nB3+3HpqKqXJIXNtJdtxcDCfaa9KL8StJgMzGJkUkM=
-k8s.io/klog/v2 v2.130.0/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
+k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
+k8s.io/klog/v2 v2.130.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
 k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f h1:0LQagt0gDpKqvIkAMPaRGcXawNMouPECM1+F9BVxEaM=
 k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f/go.mod h1:S9tOR0FxgyusSNR+MboCuiDpVWkAifZvaYI1Q2ubgro=
 k8s.io/utils v0.0.0-20240502163921-fe8a2dddb1d0 h1:jgGTlFYnhF1PM1Ax/lAlxUPE+KfCIXHaathvJg1C3ak=

From 891f1f50674e374350f926a27f534fd3b353fb52 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 1 Jul 2024 03:37:18 -0700
Subject: [PATCH 1325/1641] Bump the all group with 2 updates (#11523)

Bumps the all group with 2 updates: [actions/add-to-project](https://github.com/actions/add-to-project) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `actions/add-to-project` from 1.0.1 to 1.0.2
- [Release notes](https://github.com/actions/add-to-project/releases)
- [Commits](https://github.com/actions/add-to-project/compare/9bfe908f2eaa7ba10340b31e314148fcfe6a2458...244f685bbc3b7adfa8466e08b698b5577571133e)

Updates `github/codeql-action` from 3.25.10 to 3.25.11
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/23acc5c183826b7a8a97bce3cecc52db901f8251...b611370bb5703a7efb587f9d136a52ea24c5c38c)

---
updated-dependencies:
- dependency-name: actions/add-to-project
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/project.yml              | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/project.yml b/.github/workflows/project.yml
index 59ad98a71..9babf234e 100644
--- a/.github/workflows/project.yml
+++ b/.github/workflows/project.yml
@@ -13,7 +13,7 @@ jobs:
       repository-projects: write
       issues: write
     steps:
-      - uses: actions/add-to-project@9bfe908f2eaa7ba10340b31e314148fcfe6a2458 # v1.0.1
+      - uses: actions/add-to-project@244f685bbc3b7adfa8466e08b698b5577571133e # v1.0.2
         with:
           project-url: https://github.com/orgs/kubernetes/projects/104
           github-token: ${{ secrets.PROJECT_WRITER }}
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 1a40697e7..8d5678417 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@23acc5c183826b7a8a97bce3cecc52db901f8251 # v3.25.10
+        uses: github/codeql-action/upload-sarif@b611370bb5703a7efb587f9d136a52ea24c5c38c # v3.25.11
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 35ba5c788..b23877d47 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@23acc5c183826b7a8a97bce3cecc52db901f8251 # v3.25.10
+        uses: github/codeql-action/upload-sarif@b611370bb5703a7efb587f9d136a52ea24c5c38c # v3.25.11
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 6a111a974b1c235f1aa18177c3b26c61318e6eb7 Mon Sep 17 00:00:00 2001
From: Stepan Paksashvili <81509933+ipaqsa@users.noreply.github.com>
Date: Mon, 1 Jul 2024 14:51:02 +0300
Subject: [PATCH 1326/1641] Docs: Add information about HTTP/3 support.
 (#11513)

* [docs] update README to add information about HTTP/3 support

Signed-off-by: Stepan Paksashvili <stepan.paksashvili@flant.com>

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

* [docs] update README

Signed-off-by: Stepan Paksashvili <stepan.paksashvili@flant.com>

---------

Signed-off-by: Stepan Paksashvili <stepan.paksashvili@flant.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 images/nginx-1.25/README.md | 46 ++++++++++++++++++++++++++++++++++++-
 1 file changed, 45 insertions(+), 1 deletion(-)

diff --git a/images/nginx-1.25/README.md b/images/nginx-1.25/README.md
index 8d5f44a62..b5c6d593f 100644
--- a/images/nginx-1.25/README.md
+++ b/images/nginx-1.25/README.md
@@ -1,3 +1,47 @@
 NGINX 1.25 base image
 
-**Don't use in production!!!**
\ No newline at end of file
+### HTTP/3 Support
+
+**HTTP/3 support is experimental and under development**
+
+[HTTP/3](https://datatracker.ietf.org/doc/html/rfc9114)\
+[QUIC](https://datatracker.ietf.org/doc/html/rfc9000)
+
+[According to the documentation, NGINX 1.25.0 or higher supports HTTP/3:](https://nginx.org/en/docs/quic.html)
+
+> Support for QUIC and HTTP/3 protocols is available since 1.25.0.
+
+But this requires adding a new flag during the build:
+
+> When configuring nginx, it is possible to enable QUIC and HTTP/3 using the --with-http_v3_module configuration parameter.
+
+[We have added this flag](https://github.com/kubernetes/ingress-nginx/pull/11470), but it is not enough to use HTTP/3 in ingress-nginx, this is the first step.
+
+The next steps will be:
+
+1. **Waiting for OpenSSL 3.4.**\
+    The main problem is, that we still use OpenSSL (3.x) and it does not support the important mechanism of TLS 1.3 - [early_data](https://datatracker.ietf.org/doc/html/rfc8446#section-2.3):
+
+    > Otherwise, the OpenSSL compatibility layer will be used that does not support early data.
+    
+    [And although another part of the documentation says that the directive is supported with OpenSSL:](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_early_data)
+
+    > The directive is supported when using OpenSSL 1.1.1 or higher.
+    
+    But this is incomplete support, because OpenSSL does not support this feature, and [it has only client side support:](https://github.com/openssl/openssl)
+
+    > ... the QUIC (currently client side only) version 1 protocol
+   
+    [And also there are some issues even with client side](https://github.com/openssl/openssl/discussions/23339)
+
+    Due to this, we currently have incomplete HTTP/3 support, without important security and performance features.\
+    But the good news is that [OpenSSL plans to add server-side support in 3.4](https://www.openssl.org/roadmap.html):
+
+    > Server-side QUIC support
+    
+    [Overview of SSL libraries(HAProxy Documentation)](https://github.com/haproxy/wiki/wiki/SSL-Libraries-Support-Status#tldr)  
+
+2. **Adding [parameters](https://nginx.org/en/docs/http/ngx_http_v3_module.html) to the configmap to configure HTTP/3 and quic(enableHTTP3, enableHTTP/0.9, maxCurrentStream, and so on).**
+3. **Adding options to the nginx config template(`listen 443 quic` to server blocks and `add_header Alt-Svc 'h3=":8443"; ma=86400';` to location blocks).**
+4. **Opening the https port for UDP in the container(because QUIC uses UDP).**
+5. **Adding tests.**

From 607130912bd96ab0b359a482edde4a3a3b7753d0 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 1 Jul 2024 11:24:18 -0400
Subject: [PATCH 1327/1641] add k8s 1.30 to ci build

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/ci.yaml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index a2e036f72..0d6a8b984 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -235,7 +235,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.26.14, v1.27.11, v1.28.7, v1.29.2]
+        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30]
 
     steps:
       - name: Checkout
@@ -286,7 +286,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true')
     strategy:
       matrix:
-        k8s: [v1.26.14, v1.27.11, v1.28.7, v1.29.2]
+        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
@@ -300,7 +300,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true')
     strategy:
       matrix:
-        k8s: [v1.26.14, v1.27.11, v1.28.7, v1.29.2]
+        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
@@ -315,7 +315,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true')
     strategy:
       matrix:
-        k8s: [v1.26.14, v1.27.11, v1.28.7, v1.29.2]
+        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}

From 5957cfb1121407a1c34168875fcf7ee0ff4ebb0d Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 1 Jul 2024 11:37:55 -0400
Subject: [PATCH 1328/1641] force all ci to run on workflow dispatch

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/ci.yaml | 16 ++++++++--------
 1 file changed, 8 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 0d6a8b984..b7e79a5f8 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -74,7 +74,7 @@ jobs:
     runs-on: ubuntu-latest
     needs: changes
     if: |
-      (needs.changes.outputs.go == 'true')
+      (needs.changes.outputs.go == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     steps:
       - name: Checkout
         uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
@@ -99,7 +99,7 @@ jobs:
     outputs:
       golangversion: ${{ steps.golangversion.outputs.version }}
     if: |
-      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.charts == 'true') || (needs.changes.outputs.baseimage == 'true')
+      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.charts == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
 
     env:
         PLATFORMS: linux/amd64
@@ -175,7 +175,7 @@ jobs:
     needs:
       - changes
     if: |
-      (needs.changes.outputs.charts == 'true') || (needs.changes.outputs.baseimage == 'true')
+      (needs.changes.outputs.charts == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
 
     steps:
       - name: Checkout
@@ -231,7 +231,7 @@ jobs:
       - build
       - helm-lint
     if: |
-      (needs.changes.outputs.charts == 'true') || (needs.changes.outputs.baseimage == 'true')
+      (needs.changes.outputs.charts == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
 
     strategy:
       matrix:
@@ -283,7 +283,7 @@ jobs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true')
+      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     strategy:
       matrix:
         k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30]
@@ -297,8 +297,8 @@ jobs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true')
-    strategy:
+      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
+    strategy: 
       matrix:
         k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -312,7 +312,7 @@ jobs:
       - changes
       - build
     if: |
-      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true')
+      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     strategy:
       matrix:
         k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30]

From bcb98c0c8dec15f796a67496b7f283508f957bbd Mon Sep 17 00:00:00 2001
From: wdullaer <wdullaer@users.noreply.github.com>
Date: Tue, 2 Jul 2024 05:48:24 +0900
Subject: [PATCH 1329/1641] fix: Ensure changes in MatchCN annotation are
 detected (#11173)

---
 internal/ingress/annotations/authtls/main.go  |  3 ++
 .../ingress/annotations/authtls/main_test.go  |  9 ++++
 test/e2e/annotations/authtls.go               | 43 +++++++++++++++++++
 3 files changed, 55 insertions(+)

diff --git a/internal/ingress/annotations/authtls/main.go b/internal/ingress/annotations/authtls/main.go
index e288d82c9..b331a215e 100644
--- a/internal/ingress/annotations/authtls/main.go
+++ b/internal/ingress/annotations/authtls/main.go
@@ -122,6 +122,9 @@ func (assl1 *Config) Equal(assl2 *Config) bool {
 	if assl1.PassCertToUpstream != assl2.PassCertToUpstream {
 		return false
 	}
+	if assl1.MatchCN != assl2.MatchCN {
+		return false
+	}
 
 	return true
 }
diff --git a/internal/ingress/annotations/authtls/main_test.go b/internal/ingress/annotations/authtls/main_test.go
index 0dd442e4f..37342e513 100644
--- a/internal/ingress/annotations/authtls/main_test.go
+++ b/internal/ingress/annotations/authtls/main_test.go
@@ -333,6 +333,15 @@ func TestEquals(t *testing.T) {
 	}
 	cfg2.PassCertToUpstream = true
 
+	// Different MatchCN
+	cfg1.MatchCN = "CN=(hello-app|goodbye)"
+	cfg2.MatchCN = "CN=(hello-app)"
+	result = cfg1.Equal(cfg2)
+	if result != false {
+		t.Errorf("Expected false")
+	}
+	cfg2.MatchCN = "CN=(hello-app|goodbye)"
+
 	// Equal Configs
 	result = cfg1.Equal(cfg2)
 	if result != true {
diff --git a/test/e2e/annotations/authtls.go b/test/e2e/annotations/authtls.go
index c7a05c053..3315065f1 100644
--- a/test/e2e/annotations/authtls.go
+++ b/test/e2e/annotations/authtls.go
@@ -322,6 +322,49 @@ var _ = framework.DescribeAnnotation("auth-tls-*", func() {
 			Status(http.StatusOK)
 	})
 
+	ginkgo.It("should reload the nginx config when auth-tls-match-cn is updated", func() {
+		host := authTLSFooHost
+		nameSpace := f.Namespace
+
+		clientConfig, err := framework.CreateIngressMASecret(
+			f.KubeClientSet,
+			host,
+			host,
+			nameSpace)
+		assert.Nil(ginkgo.GinkgoT(), err)
+
+		// First add an annotation that forbids our connection
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/auth-tls-secret":        nameSpace + "/" + host,
+			"nginx.ingress.kubernetes.io/auth-tls-verify-client": "on",
+			"nginx.ingress.kubernetes.io/auth-tls-match-cn":      "CN=notvalid",
+		}
+
+		ingress := f.EnsureIngress(framework.NewSingleIngressWithTLS(host, "/", host, []string{host}, nameSpace, framework.EchoService, 80, annotations))
+
+		assertSslClientCertificateConfig(f, host, "on", "1")
+
+		f.HTTPTestClientWithTLSConfig(clientConfig).
+			GET("/").
+			WithURL(f.GetURL(framework.HTTPS)).
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusForbidden)
+
+		// Update the annotation to something that allows the connection
+		ingress.Annotations["nginx.ingress.kubernetes.io/auth-tls-match-cn"] = "CN=authtls"
+		f.UpdateIngress(ingress)
+
+		assertSslClientCertificateConfig(f, host, "on", "1")
+
+		f.HTTPTestClientWithTLSConfig(clientConfig).
+			GET("/").
+			WithURL(f.GetURL(framework.HTTPS)).
+			WithHeader("Host", host).
+			Expect().
+			Status(http.StatusOK)
+	})
+
 	ginkgo.It("should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client", func() {
 		host := authTLSFooHost
 		nameSpace := f.Namespace

From 7de28cfcdb0e28a423e5b5bb68152f0e86ac1bab Mon Sep 17 00:00:00 2001
From: Jon Carl <grounded042@joncarl.com>
Date: Tue, 2 Jul 2024 07:25:59 -0600
Subject: [PATCH 1330/1641] add ssl patches to nginx-1.25 image for coroutines
 to work in lua client hello and cert ssl blocks (#11485)

* feat: add ssl patches for coroutines to work in lua ssl blocks

Signed-off-by: Jon Carl <grounded042@joncarl.com>

* switch to include more patches

Signed-off-by: Jon Carl <grounded042@joncarl.com>

---------

Signed-off-by: Jon Carl <grounded042@joncarl.com>
---
 ...as-root.patch => 00_drop-alias-root.patch} |   0
 .../01_nginx-1.25.3-win32_max_err_str.patch   |  15 +
 ..._nginx-1.25.3-stream_balancer_export.patch |  53 ++++
 ...stream_proxy_get_next_upstream_tries.patch |  31 +++
 ...x-1.25.3-stream_proxy_timeout_fields.patch | 178 ++++++++++++
 ...nx-1.25.3-stream_ssl_preread_no_skip.patch |  13 +
 ...6_nginx-1.25.3-resolver_conf_parsing.patch | 263 ++++++++++++++++++
 .../07_nginx-1.25.3-daemon_destroy_pool.patch |  12 +
 ...nginx-1.25.3-init_cycle_pool_release.patch |  59 ++++
 ...09_nginx-1.25.3-balancer_status_code.patch |  72 +++++
 ...0_nginx-1.25.3-delayed_posted_events.patch |  98 +++++++
 ...ginx-1.25.3-privileged_agent_process.patch | 203 ++++++++++++++
 ...privileged_agent_process_connections.patch |  73 +++++
 ...privileged_agent_process_thread_pool.patch |  12 +
 ...-1.25.3-single_process_graceful_exit.patch |  75 +++++
 .../15_nginx-1.25.3-intercept_error_log.patch |  60 ++++
 .../16_nginx-1.25.3-upstream_pipelining.patch |  23 ++
 .../17_nginx-1.25.3-no_error_pages.patch      |  91 ++++++
 .../patches/18_nginx-1.25.3-no_Werror.patch   |  36 +++
 ...19_nginx-1.25.3-log_escape_non_ascii.patch | 117 ++++++++
 ...20_nginx-1.25.3-proxy_host_port_vars.patch |  19 ++
 .../21_nginx-1.25.3-cache_manager_exit.patch  |  19 ++
 ...22_nginx-1.25.3-larger_max_error_str.patch |  13 +
 .../23_nginx-1.25.3-pcre_conf_opt.patch       |  26 ++
 ....25.3-always_enable_cc_feature_tests.patch |  11 +
 .../25_nginx-1.25.3-ssl_cert_cb_yield.patch   |  64 +++++
 .../26_nginx-1.25.3-ssl_sess_cb_yield.patch   |  41 +++
 ...inx-1.25.3-ssl_client_hello_cb_yield.patch |  38 +++
 ...nginx-1.25.3-upstream_timeout_fields.patch | 112 ++++++++
 ...inx-1.25.3-safe_resolver_ipv6_option.patch |  60 ++++
 .../30_nginx-1.25.3-socket_cloexec.patch      | 185 ++++++++++++
 ...nx-1.25.3-reuseport_close_unused_fds.patch |  38 +++
 32 files changed, 2110 insertions(+)
 rename images/nginx-1.25/rootfs/patches/{drop-alias-root.patch => 00_drop-alias-root.patch} (100%)
 create mode 100644 images/nginx-1.25/rootfs/patches/01_nginx-1.25.3-win32_max_err_str.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/02_nginx-1.25.3-stream_balancer_export.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/03_nginx-1.25.3-stream_proxy_get_next_upstream_tries.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/04_nginx-1.25.3-stream_proxy_timeout_fields.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/05_nginx-1.25.3-stream_ssl_preread_no_skip.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/06_nginx-1.25.3-resolver_conf_parsing.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/07_nginx-1.25.3-daemon_destroy_pool.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/08_nginx-1.25.3-init_cycle_pool_release.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/09_nginx-1.25.3-balancer_status_code.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/10_nginx-1.25.3-delayed_posted_events.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/11_nginx-1.25.3-privileged_agent_process.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/12_nginx-1.25.3-privileged_agent_process_connections.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/13_nginx-1.25.3-privileged_agent_process_thread_pool.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/14_nginx-1.25.3-single_process_graceful_exit.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/15_nginx-1.25.3-intercept_error_log.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/16_nginx-1.25.3-upstream_pipelining.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/17_nginx-1.25.3-no_error_pages.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/18_nginx-1.25.3-no_Werror.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/19_nginx-1.25.3-log_escape_non_ascii.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/20_nginx-1.25.3-proxy_host_port_vars.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/21_nginx-1.25.3-cache_manager_exit.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/22_nginx-1.25.3-larger_max_error_str.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/23_nginx-1.25.3-pcre_conf_opt.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/24_nginx-1.25.3-always_enable_cc_feature_tests.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/25_nginx-1.25.3-ssl_cert_cb_yield.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/26_nginx-1.25.3-ssl_sess_cb_yield.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/27_nginx-1.25.3-ssl_client_hello_cb_yield.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/28_nginx-1.25.3-upstream_timeout_fields.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/29_nginx-1.25.3-safe_resolver_ipv6_option.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/30_nginx-1.25.3-socket_cloexec.patch
 create mode 100644 images/nginx-1.25/rootfs/patches/31_nginx-1.25.3-reuseport_close_unused_fds.patch

diff --git a/images/nginx-1.25/rootfs/patches/drop-alias-root.patch b/images/nginx-1.25/rootfs/patches/00_drop-alias-root.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/drop-alias-root.patch
rename to images/nginx-1.25/rootfs/patches/00_drop-alias-root.patch
diff --git a/images/nginx-1.25/rootfs/patches/01_nginx-1.25.3-win32_max_err_str.patch b/images/nginx-1.25/rootfs/patches/01_nginx-1.25.3-win32_max_err_str.patch
new file mode 100644
index 000000000..8c3ba2791
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/01_nginx-1.25.3-win32_max_err_str.patch
@@ -0,0 +1,15 @@
+diff --git a/src/os/win32/ngx_event_log.c b/src/os/win32/ngx_event_log.c
+index e11ed1e8..dce8eddd 100644
+--- a/src/os/win32/ngx_event_log.c
++++ b/src/os/win32/ngx_event_log.c
+@@ -8,7 +8,9 @@
+ #include <ngx_core.h>
+ 
+ 
+-#define NGX_MAX_ERROR_STR   2048
++#ifndef NGX_MAX_ERROR_STR
++#define NGX_MAX_ERROR_STR   4096
++#endif
+ 
+ 
+ void ngx_cdecl
diff --git a/images/nginx-1.25/rootfs/patches/02_nginx-1.25.3-stream_balancer_export.patch b/images/nginx-1.25/rootfs/patches/02_nginx-1.25.3-stream_balancer_export.patch
new file mode 100644
index 000000000..f56bc5257
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/02_nginx-1.25.3-stream_balancer_export.patch
@@ -0,0 +1,53 @@
+diff --git a/src/stream/ngx_stream_upstream_round_robin.c b/src/stream/ngx_stream_upstream_round_robin.c
+index 526de3a..b531ce1 100644
+--- a/src/stream/ngx_stream_upstream_round_robin.c
++++ b/src/stream/ngx_stream_upstream_round_robin.c
+@@ -21,10 +21,6 @@ static void ngx_stream_upstream_notify_round_robin_peer(
+ 
+ #if (NGX_STREAM_SSL)
+ 
+-static ngx_int_t ngx_stream_upstream_set_round_robin_peer_session(
+-    ngx_peer_connection_t *pc, void *data);
+-static void ngx_stream_upstream_save_round_robin_peer_session(
+-    ngx_peer_connection_t *pc, void *data);
+ static ngx_int_t ngx_stream_upstream_empty_set_session(
+     ngx_peer_connection_t *pc, void *data);
+ static void ngx_stream_upstream_empty_save_session(ngx_peer_connection_t *pc,
+@@ -690,7 +686,7 @@ ngx_stream_upstream_notify_round_robin_peer(ngx_peer_connection_t *pc,
+ 
+ #if (NGX_STREAM_SSL)
+ 
+-static ngx_int_t
++ngx_int_t
+ ngx_stream_upstream_set_round_robin_peer_session(ngx_peer_connection_t *pc,
+     void *data)
+ {
+@@ -756,7 +752,7 @@ ngx_stream_upstream_set_round_robin_peer_session(ngx_peer_connection_t *pc,
+ }
+ 
+ 
+-static void
++void
+ ngx_stream_upstream_save_round_robin_peer_session(ngx_peer_connection_t *pc,
+     void *data)
+ {
+diff --git a/src/stream/ngx_stream_upstream_round_robin.h b/src/stream/ngx_stream_upstream_round_robin.h
+index 35d9fce..75f3e31 100644
+--- a/src/stream/ngx_stream_upstream_round_robin.h
++++ b/src/stream/ngx_stream_upstream_round_robin.h
+@@ -142,5 +142,15 @@ ngx_int_t ngx_stream_upstream_get_round_robin_peer(ngx_peer_connection_t *pc,
+ void ngx_stream_upstream_free_round_robin_peer(ngx_peer_connection_t *pc,
+     void *data, ngx_uint_t state);
+ 
++#if (NGX_STREAM_SSL)
++ngx_int_t ngx_stream_upstream_set_round_robin_peer_session(
++    ngx_peer_connection_t *pc, void *data);
++void ngx_stream_upstream_save_round_robin_peer_session(
++    ngx_peer_connection_t *pc, void *data);
++#endif
++
++
++#define HAVE_NGX_STREAM_BALANCER_EXPORT_PATCH 1
++
+ 
+ #endif /* _NGX_STREAM_UPSTREAM_ROUND_ROBIN_H_INCLUDED_ */
diff --git a/images/nginx-1.25/rootfs/patches/03_nginx-1.25.3-stream_proxy_get_next_upstream_tries.patch b/images/nginx-1.25/rootfs/patches/03_nginx-1.25.3-stream_proxy_get_next_upstream_tries.patch
new file mode 100644
index 000000000..cb881f070
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/03_nginx-1.25.3-stream_proxy_get_next_upstream_tries.patch
@@ -0,0 +1,31 @@
+diff --git a/src/stream/ngx_stream.h b/src/stream/ngx_stream.h
+index 09d2459..de92724 100644
+--- a/src/stream/ngx_stream.h
++++ b/src/stream/ngx_stream.h
+@@ -303,4 +303,7 @@ typedef ngx_int_t (*ngx_stream_filter_pt)(ngx_stream_session_t *s,
+ extern ngx_stream_filter_pt  ngx_stream_top_filter;
+ 
+ 
++#define HAS_NGX_STREAM_PROXY_GET_NEXT_UPSTREAM_TRIES_PATCH 1
++
++
+ #endif /* _NGX_STREAM_H_INCLUDED_ */
+diff --git a/src/stream/ngx_stream_proxy_module.c b/src/stream/ngx_stream_proxy_module.c
+index 0afde1c..3254ce1 100644
+--- a/src/stream/ngx_stream_proxy_module.c
++++ b/src/stream/ngx_stream_proxy_module.c
+@@ -2156,3 +2156,14 @@ ngx_stream_proxy_bind(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
+ 
+     return NGX_CONF_OK;
+ }
++
++
++ngx_uint_t
++ngx_stream_proxy_get_next_upstream_tries(ngx_stream_session_t *s)
++{
++    ngx_stream_proxy_srv_conf_t      *pscf;
++
++    pscf = ngx_stream_get_module_srv_conf(s, ngx_stream_proxy_module);
++
++    return pscf->next_upstream_tries;
++}
diff --git a/images/nginx-1.25/rootfs/patches/04_nginx-1.25.3-stream_proxy_timeout_fields.patch b/images/nginx-1.25/rootfs/patches/04_nginx-1.25.3-stream_proxy_timeout_fields.patch
new file mode 100644
index 000000000..39c59e206
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/04_nginx-1.25.3-stream_proxy_timeout_fields.patch
@@ -0,0 +1,178 @@
+diff -u -r -p -Naur nginx-1.25.3/src/stream/ngx_stream.h nginx-1.25.3-patched/src/stream/ngx_stream.h
+--- nginx-1.25.3/src/stream/ngx_stream.h	2021-11-04 21:27:55.288708527 +0800
++++ nginx-1.25.3-patched/src/stream/ngx_stream.h	2021-11-04 21:28:50.768035209 +0800
+@@ -254,6 +254,15 @@ typedef struct {
+ } ngx_stream_module_t;
+ 
+ 
++typedef struct {
++    ngx_msec_t                       connect_timeout;
++    ngx_msec_t                       timeout;
++} ngx_stream_proxy_ctx_t;
++
++
++#define NGX_STREAM_HAVE_PROXY_TIMEOUT_FIELDS_PATCH 1
++
++
+ #define NGX_STREAM_MODULE       0x4d525453     /* "STRM" */
+ 
+ #define NGX_STREAM_MAIN_CONF    0x02000000
+@@ -307,6 +316,7 @@ void ngx_stream_finalize_session(ngx_str
+ extern ngx_module_t  ngx_stream_module;
+ extern ngx_uint_t    ngx_stream_max_module;
+ extern ngx_module_t  ngx_stream_core_module;
++extern ngx_module_t  ngx_stream_proxy_module;
+ 
+ 
+ typedef ngx_int_t (*ngx_stream_filter_pt)(ngx_stream_session_t *s,
+diff -u -r -p -Naur nginx-1.25.3/src/stream/ngx_stream_proxy_module.c nginx-1.25.3-patched/src/stream/ngx_stream_proxy_module.c
+--- nginx-1.25.3/src/stream/ngx_stream_proxy_module.c	2021-11-04 21:27:55.289708533 +0800
++++ nginx-1.25.3-patched/src/stream/ngx_stream_proxy_module.c	2021-11-04 21:37:03.578936990 +0800
+@@ -400,6 +400,7 @@ ngx_stream_proxy_handler(ngx_stream_sess
+     ngx_stream_proxy_srv_conf_t      *pscf;
+     ngx_stream_upstream_srv_conf_t   *uscf, **uscfp;
+     ngx_stream_upstream_main_conf_t  *umcf;
++    ngx_stream_proxy_ctx_t           *pctx;
+ 
+     c = s->connection;
+ 
+@@ -408,6 +409,17 @@ ngx_stream_proxy_handler(ngx_stream_sess
+     ngx_log_debug0(NGX_LOG_DEBUG_STREAM, c->log, 0,
+                    "proxy connection handler");
+ 
++    pctx = ngx_palloc(c->pool, sizeof(ngx_stream_proxy_ctx_t));
++    if (pctx == NULL) {
++        ngx_stream_proxy_finalize(s, NGX_STREAM_INTERNAL_SERVER_ERROR);
++        return;
++    }
++
++    pctx->connect_timeout = pscf->connect_timeout;
++    pctx->timeout = pscf->timeout;
++
++    ngx_stream_set_ctx(s, pctx, ngx_stream_proxy_module);
++
+     u = ngx_pcalloc(c->pool, sizeof(ngx_stream_upstream_t));
+     if (u == NULL) {
+         ngx_stream_proxy_finalize(s, NGX_STREAM_INTERNAL_SERVER_ERROR);
+@@ -699,6 +711,7 @@ ngx_stream_proxy_connect(ngx_stream_sess
+     ngx_connection_t             *c, *pc;
+     ngx_stream_upstream_t        *u;
+     ngx_stream_proxy_srv_conf_t  *pscf;
++    ngx_stream_proxy_ctx_t       *ctx;
+ 
+     c = s->connection;
+ 
+@@ -706,6 +719,8 @@ ngx_stream_proxy_connect(ngx_stream_sess
+ 
+     pscf = ngx_stream_get_module_srv_conf(s, ngx_stream_proxy_module);
+ 
++    ctx = ngx_stream_get_module_ctx(s, ngx_stream_proxy_module);
++
+     u = s->upstream;
+ 
+     u->connected = 0;
+@@ -774,7 +789,7 @@ ngx_stream_proxy_connect(ngx_stream_sess
+     pc->read->handler = ngx_stream_proxy_connect_handler;
+     pc->write->handler = ngx_stream_proxy_connect_handler;
+ 
+-    ngx_add_timer(pc->write, pscf->connect_timeout);
++    ngx_add_timer(pc->write, ctx->connect_timeout);
+ }
+ 
+ 
+@@ -957,12 +957,14 @@ ngx_stream_proxy_init_upstream(ngx_stream_session_t *s)
+ static ngx_int_t
+ ngx_stream_proxy_send_proxy_protocol(ngx_stream_session_t *s)
+ {
+-    u_char                       *p;
+-    ssize_t                       n, size;
+-    ngx_connection_t             *c, *pc;
+-    ngx_stream_upstream_t        *u;
+-    ngx_stream_proxy_srv_conf_t  *pscf;
+-    u_char                        buf[NGX_PROXY_PROTOCOL_V1_MAX_HEADER];
++    u_char                  *p;
++    u_char                   buf[NGX_PROXY_PROTOCOL_V1_MAX_HEADER];
++    ssize_t                  n, size;
++    ngx_connection_t        *c, *pc;
++    ngx_stream_upstream_t   *u;
++    ngx_stream_proxy_ctx_t  *ctx;
++
++    ctx = ngx_stream_get_module_ctx(s, ngx_stream_proxy_module);
+ 
+     c = s->connection;
+ 
+@@ -976,9 +993,7 @@ ngx_stream_proxy_send_proxy_protocol(ngx
+             return NGX_ERROR;
+         }
+ 
+-        pscf = ngx_stream_get_module_srv_conf(s, ngx_stream_proxy_module);
+-
+-        ngx_add_timer(pc->write, pscf->timeout);
++        ngx_add_timer(pc->write, ctx->timeout);
+ 
+         pc->write->handler = ngx_stream_proxy_connect_handler;
+ 
+@@ -1053,6 +1068,9 @@ ngx_stream_proxy_ssl_init_connection(ngx
+     ngx_connection_t             *pc;
+     ngx_stream_upstream_t        *u;
+     ngx_stream_proxy_srv_conf_t  *pscf;
++    ngx_stream_proxy_ctx_t       *ctx;
++
++    ctx = ngx_stream_get_module_ctx(s, ngx_stream_proxy_module);
+ 
+     u = s->upstream;
+ 
+@@ -1099,7 +1117,7 @@ ngx_stream_proxy_ssl_init_connection(ngx
+     if (rc == NGX_AGAIN) {
+ 
+         if (!pc->write->timer_set) {
+-            ngx_add_timer(pc->write, pscf->connect_timeout);
++            ngx_add_timer(pc->write, ctx->connect_timeout);
+         }
+ 
+         pc->ssl->handler = ngx_stream_proxy_ssl_handshake;
+@@ -1408,6 +1426,7 @@ ngx_stream_proxy_process_connection(ngx_
+     ngx_stream_session_t         *s;
+     ngx_stream_upstream_t        *u;
+     ngx_stream_proxy_srv_conf_t  *pscf;
++    ngx_stream_proxy_ctx_t       *ctx;
+ 
+     c = ev->data;
+     s = c->data;
+@@ -1419,6 +1438,8 @@ ngx_stream_proxy_process_connection(ngx_
+         return;
+     }
+ 
++    ctx = ngx_stream_get_module_ctx(s, ngx_stream_proxy_module);
++
+     c = s->connection;
+     pc = u->peer.connection;
+ 
+@@ -1438,7 +1459,7 @@ ngx_stream_proxy_process_connection(ngx_
+                 }
+ 
+                 if (u->connected && !c->read->delayed && !pc->read->delayed) {
+-                    ngx_add_timer(c->write, pscf->timeout);
++                    ngx_add_timer(c->write, ctx->timeout);
+                 }
+ 
+                 return;
+@@ -1600,6 +1621,9 @@ ngx_stream_proxy_process(ngx_stream_sess
+     ngx_log_handler_pt            handler;
+     ngx_stream_upstream_t        *u;
+     ngx_stream_proxy_srv_conf_t  *pscf;
++    ngx_stream_proxy_ctx_t       *ctx;
++
++    ctx = ngx_stream_get_module_ctx(s, ngx_stream_proxy_module);
+ 
+     u = s->upstream;
+ 
+@@ -1807,7 +1831,7 @@ ngx_stream_proxy_process(ngx_stream_sess
+         }
+ 
+         if (!c->read->delayed && !pc->read->delayed) {
+-            ngx_add_timer(c->write, pscf->timeout);
++            ngx_add_timer(c->write, ctx->timeout);
+ 
+         } else if (c->write->timer_set) {
+             ngx_del_timer(c->write);
diff --git a/images/nginx-1.25/rootfs/patches/05_nginx-1.25.3-stream_ssl_preread_no_skip.patch b/images/nginx-1.25/rootfs/patches/05_nginx-1.25.3-stream_ssl_preread_no_skip.patch
new file mode 100644
index 000000000..e45e9f69a
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/05_nginx-1.25.3-stream_ssl_preread_no_skip.patch
@@ -0,0 +1,13 @@
+diff --git a/src/stream/ngx_stream_ssl_preread_module.c b/src/stream/ngx_stream_ssl_preread_module.c
+index e3d11fd9..3717b5fe 100644
+--- a/src/stream/ngx_stream_ssl_preread_module.c
++++ b/src/stream/ngx_stream_ssl_preread_module.c
+@@ -159,7 +159,7 @@ ngx_stream_ssl_preread_handler(ngx_stream_session_t *s)
+ 
+         rc = ngx_stream_ssl_preread_parse_record(ctx, p, p + len);
+         if (rc != NGX_AGAIN) {
+-            return rc;
++            return rc == NGX_OK ? NGX_DECLINED : rc;
+         }
+ 
+         p += len;
diff --git a/images/nginx-1.25/rootfs/patches/06_nginx-1.25.3-resolver_conf_parsing.patch b/images/nginx-1.25/rootfs/patches/06_nginx-1.25.3-resolver_conf_parsing.patch
new file mode 100644
index 000000000..8638cdf2a
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/06_nginx-1.25.3-resolver_conf_parsing.patch
@@ -0,0 +1,263 @@
+diff --git a/src/core/ngx_resolver.c b/src/core/ngx_resolver.c
+index cd55520c..dade1846 100644
+--- a/src/core/ngx_resolver.c
++++ b/src/core/ngx_resolver.c
+@@ -9,12 +9,26 @@
+ #include <ngx_core.h>
+ #include <ngx_event.h>
+ 
++#if !(NGX_WIN32)
++#include <resolv.h>
++#endif
++
+ 
+ #define NGX_RESOLVER_UDP_SIZE   4096
+ 
+ #define NGX_RESOLVER_TCP_RSIZE  (2 + 65535)
+ #define NGX_RESOLVER_TCP_WSIZE  8192
+ 
++#if !(NGX_WIN32)
++/*
++ * note that 2KB should be more than enough for majority of the
++ * resolv.conf files out there. it also acts as a safety guard to prevent
++ * abuse.
++ */
++#define NGX_RESOLVER_FILE_BUF_SIZE  2048
++#define NGX_RESOLVER_FILE_NAME      "/etc/resolv.conf"
++#endif
++
+ 
+ typedef struct {
+     u_char  ident_hi;
+@@ -131,6 +145,191 @@ static ngx_resolver_node_t *ngx_resolver_lookup_addr6(ngx_resolver_t *r,
+ #endif
+ 
+ 
++#if !(NGX_WIN32)
++static ngx_int_t
++ngx_resolver_read_resolv_conf(ngx_conf_t *cf, ngx_resolver_t *r, u_char *path,
++    size_t path_len)
++{
++    ngx_url_t                        u;
++    ngx_resolver_connection_t       *rec;
++    ngx_fd_t                         fd;
++    ngx_file_t                       file;
++    u_char                           buf[NGX_RESOLVER_FILE_BUF_SIZE];
++    u_char                           ipv6_buf[NGX_INET6_ADDRSTRLEN];
++    ngx_uint_t                       address = 0, j, total = 0;
++    ssize_t                          n, i;
++    enum {
++        sw_nameserver,
++        sw_spaces,
++        sw_address,
++        sw_skip
++    } state;
++
++    file.name.data = path;
++    file.name.len = path_len;
++
++    if (ngx_conf_full_name(cf->cycle, &file.name, 1) != NGX_OK) {
++        return NGX_ERROR;
++    }
++
++    fd = ngx_open_file(file.name.data, NGX_FILE_RDONLY,
++                       NGX_FILE_OPEN, 0);
++
++    if (fd == NGX_INVALID_FILE) {
++        ngx_conf_log_error(NGX_LOG_EMERG, cf, ngx_errno,
++                           ngx_open_file_n " \"%s\" failed", file.name.data);
++
++        return NGX_ERROR;
++    }
++
++    ngx_memzero(&file, sizeof(ngx_file_t));
++
++    file.fd = fd;
++    file.log = cf->log;
++
++    state = sw_nameserver;
++
++    n = ngx_read_file(&file, buf, NGX_RESOLVER_FILE_BUF_SIZE, 0);
++
++    if (n == NGX_ERROR) {
++        ngx_conf_log_error(NGX_LOG_ALERT, cf, ngx_errno,
++                           ngx_read_file_n " \"%s\" failed", file.name.data);
++    }
++
++    if (ngx_close_file(file.fd) == NGX_FILE_ERROR) {
++        ngx_conf_log_error(NGX_LOG_ALERT, cf, ngx_errno,
++                           ngx_close_file_n " \"%s\" failed", file.name.data);
++    }
++
++    if (n == NGX_ERROR) {
++        return NGX_ERROR;
++    }
++
++    if (n == 0) {
++        return NGX_OK;
++    }
++
++    for (i = 0; i < n && total < MAXNS; /* void */) {
++        if (buf[i] == '#' || buf[i] == ';') {
++            state = sw_skip;
++        }
++
++        switch (state) {
++
++        case sw_nameserver:
++
++            if ((size_t) n - i >= sizeof("nameserver") - 1
++                && ngx_memcmp(buf + i, "nameserver",
++                              sizeof("nameserver") - 1) == 0)
++            {
++                state = sw_spaces;
++                i += sizeof("nameserver") - 1;
++
++                continue;
++            }
++
++            break;
++
++        case sw_spaces:
++            if (buf[i] != '\t' && buf[i] != ' ') {
++                address = i;
++                state = sw_address;
++            }
++
++            break;
++
++        case sw_address:
++
++            if (buf[i] == CR || buf[i] == LF || i == n - 1) {
++                ngx_memzero(&u, sizeof(ngx_url_t));
++
++                u.url.data = buf + address;
++
++                if (i == n - 1 && buf[i] != CR && buf[i] != LF) {
++                    u.url.len = n - address;
++
++                } else {
++                    u.url.len = i - address;
++                }
++
++                u.default_port = 53;
++
++                /* IPv6? */
++                if (ngx_strlchr(u.url.data, u.url.data + u.url.len,
++                                ':') != NULL)
++                {
++                    if (u.url.len + 2 > sizeof(ipv6_buf)) {
++                        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
++                                           "IPv6 resolver address is too long:"
++                                           " \"%V\"", &u.url);
++
++                        return NGX_ERROR;
++                    }
++
++                    ipv6_buf[0] = '[';
++                    ngx_memcpy(ipv6_buf + 1, u.url.data, u.url.len);
++                    ipv6_buf[u.url.len + 1] = ']';
++
++                    u.url.data = ipv6_buf;
++                    u.url.len = u.url.len + 2;
++                }
++
++                if (ngx_parse_url(cf->pool, &u) != NGX_OK) {
++                    if (u.err) {
++                        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
++                                           "%s in resolver \"%V\"",
++                                           u.err, &u.url);
++                    }
++
++                    return NGX_ERROR;
++                }
++
++                rec = ngx_array_push_n(&r->connections, u.naddrs);
++                if (rec == NULL) {
++                    return NGX_ERROR;
++                }
++
++                ngx_memzero(rec, u.naddrs * sizeof(ngx_resolver_connection_t));
++
++                for (j = 0; j < u.naddrs; j++) {
++                    rec[j].sockaddr = u.addrs[j].sockaddr;
++                    rec[j].socklen = u.addrs[j].socklen;
++                    rec[j].server = u.addrs[j].name;
++                    rec[j].resolver = r;
++                }
++
++                total++;
++
++#if (NGX_DEBUG)
++                /*
++                 * logs with level below NGX_LOG_NOTICE will not be printed
++                 * in this early phase
++                 */
++                ngx_conf_log_error(NGX_LOG_NOTICE, cf, 0,
++                                   "parsed a resolver: \"%V\"", &u.url);
++#endif
++
++                state = sw_nameserver;
++            }
++
++            break;
++
++        case sw_skip:
++            if (buf[i] == CR || buf[i] == LF) {
++                state = sw_nameserver;
++            }
++
++            break;
++        }
++
++        i++;
++    }
++
++    return NGX_OK;
++}
++#endif
++
++
+ ngx_resolver_t *
+ ngx_resolver_create(ngx_conf_t *cf, ngx_str_t *names, ngx_uint_t n)
+ {
+@@ -246,6 +445,39 @@ ngx_resolver_create(ngx_conf_t *cf, ngx_str_t *names, ngx_uint_t n)
+         }
+ #endif
+ 
++#if !(NGX_WIN32)
++        if (ngx_strncmp(names[i].data, "local=", 6) == 0) {
++
++            if (ngx_strcmp(&names[i].data[6], "on") == 0) {
++                if (ngx_resolver_read_resolv_conf(cf, r,
++                                                  (u_char *)
++                                                  NGX_RESOLVER_FILE_NAME,
++                                                  sizeof(NGX_RESOLVER_FILE_NAME)
++                                                  - 1)
++                    != NGX_OK)
++                {
++                    ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
++                                       "unable to parse local resolver");
++                    return NULL;
++                }
++
++            } else if (ngx_strcmp(&names[i].data[6], "off") != 0) {
++                if (ngx_resolver_read_resolv_conf(cf, r,
++                                                  &names[i].data[6],
++                                                  names[i].len - 6)
++                    != NGX_OK)
++                {
++                    ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
++                                       "unable to parse local resolver");
++                    return NULL;
++                }
++
++            }
++
++            continue;
++        }
++#endif
++
+         ngx_memzero(&u, sizeof(ngx_url_t));
+ 
+         u.url = names[i];
diff --git a/images/nginx-1.25/rootfs/patches/07_nginx-1.25.3-daemon_destroy_pool.patch b/images/nginx-1.25/rootfs/patches/07_nginx-1.25.3-daemon_destroy_pool.patch
new file mode 100644
index 000000000..5690b88f0
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/07_nginx-1.25.3-daemon_destroy_pool.patch
@@ -0,0 +1,12 @@
+diff --git a/src/os/unix/ngx_daemon.c b/src/os/unix/ngx_daemon.c
+index ab672110..f259af31 100644
+--- a/src/os/unix/ngx_daemon.c
++++ b/src/os/unix/ngx_daemon.c
+@@ -23,6 +23,8 @@ ngx_daemon(ngx_log_t *log)
+         break;
+
+     default:
++        /* just to make it ASAN or Valgrind clean */
++        ngx_destroy_pool(ngx_cycle->pool);
+         exit(0);
+     }
diff --git a/images/nginx-1.25/rootfs/patches/08_nginx-1.25.3-init_cycle_pool_release.patch b/images/nginx-1.25/rootfs/patches/08_nginx-1.25.3-init_cycle_pool_release.patch
new file mode 100644
index 000000000..bd2e9a7d9
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/08_nginx-1.25.3-init_cycle_pool_release.patch
@@ -0,0 +1,59 @@
+diff -rup nginx-1.25.3/src/core/nginx.c nginx-1.25.3-patched/src/core/nginx.c
+--- nginx-1.25.3/src/core/nginx.c	2017-12-17 00:00:38.136470108 -0800
++++ nginx-1.25.3-patched/src/core/nginx.c	2017-12-16 23:59:51.680958322 -0800
+@@ -186,6 +186,7 @@ static u_char      *ngx_prefix;
+ static u_char      *ngx_conf_file;
+ static u_char      *ngx_conf_params;
+ static char        *ngx_signal;
++ngx_pool_t         *saved_init_cycle_pool = NULL;
+ 
+ 
+ static char **ngx_os_environ;
+@@ -253,6 +254,8 @@ main(int argc, char *const *argv)
+         return 1;
+     }
+ 
++    saved_init_cycle_pool = init_cycle.pool;
++
+     if (ngx_save_argv(&init_cycle, argc, argv) != NGX_OK) {
+         return 1;
+     }
+diff -rup nginx-1.25.3/src/core/ngx_core.h nginx-1.25.3-patched/src/core/ngx_core.h
+--- nginx-1.25.3/src/core/ngx_core.h	2017-10-10 08:22:51.000000000 -0700
++++ nginx-1.25.3-patched/src/core/ngx_core.h	2017-12-16 23:59:51.679958370 -0800
+@@ -108,4 +108,6 @@ void ngx_cpuinfo(void);
+ #define NGX_DISABLE_SYMLINKS_NOTOWNER   2
+ #endif
+ 
++extern ngx_pool_t        *saved_init_cycle_pool;
++
+ #endif /* _NGX_CORE_H_INCLUDED_ */
+diff -rup nginx-1.25.3/src/core/ngx_cycle.c nginx-1.25.3-patched/src/core/ngx_cycle.c
+--- nginx-1.25.3/src/core/ngx_cycle.c	2017-10-10 08:22:51.000000000 -0700
++++ nginx-1.25.3-patched/src/core/ngx_cycle.c	2017-12-16 23:59:51.678958419 -0800
+@@ -748,6 +748,10 @@ old_shm_zone_done:
+ 
+     if (ngx_process == NGX_PROCESS_MASTER || ngx_is_init_cycle(old_cycle)) {
+ 
++        if (ngx_is_init_cycle(old_cycle)) {
++            saved_init_cycle_pool = NULL;
++        }
++
+         ngx_destroy_pool(old_cycle->pool);
+         cycle->old_cycle = NULL;
+ 
+diff -rup nginx-1.25.3/src/os/unix/ngx_process_cycle.c nginx-1.25.3-patched/src/os/unix/ngx_process_cycle.c
+--- nginx-1.25.3/src/os/unix/ngx_process_cycle.c	2017-12-17 00:00:38.142469762 -0800
++++ nginx-1.25.3-patched/src/os/unix/ngx_process_cycle.c	2017-12-16 23:59:51.691957791 -0800
+@@ -687,6 +692,11 @@ ngx_master_process_exit(ngx_cycle_t *cyc
+     ngx_exit_cycle.files_n = ngx_cycle->files_n;
+     ngx_cycle = &ngx_exit_cycle;
+ 
++    if (saved_init_cycle_pool != NULL && saved_init_cycle_pool != cycle->pool) {
++        ngx_destroy_pool(saved_init_cycle_pool);
++        saved_init_cycle_pool = NULL;
++    }
++
+     ngx_destroy_pool(cycle->pool);
+ 
+     exit(0);
diff --git a/images/nginx-1.25/rootfs/patches/09_nginx-1.25.3-balancer_status_code.patch b/images/nginx-1.25/rootfs/patches/09_nginx-1.25.3-balancer_status_code.patch
new file mode 100644
index 000000000..c4d87e2fb
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/09_nginx-1.25.3-balancer_status_code.patch
@@ -0,0 +1,72 @@
+diff --git a/src/http/ngx_http_upstream.c b/src/http/ngx_http_upstream.c
+index f8d5707d..6efe0047 100644
+--- a/src/http/ngx_http_upstream.c
++++ b/src/http/ngx_http_upstream.c
+@@ -1515,6 +1515,11 @@ ngx_http_upstream_connect(ngx_http_request_t *r, ngx_http_upstream_t *u)
+         return;
+     }
+ 
++    if (rc >= NGX_HTTP_SPECIAL_RESPONSE) {
++        ngx_http_upstream_finalize_request(r, u, rc);
++        return;
++    }
++
+     u->state->peer = u->peer.name;
+ 
+     if (rc == NGX_BUSY) {
+diff --git a/src/http/ngx_http_upstream.h b/src/http/ngx_http_upstream.h
+index 3e714e5b..dfbb25e0 100644
+--- a/src/http/ngx_http_upstream.h
++++ b/src/http/ngx_http_upstream.h
+@@ -427,4 +427,9 @@ extern ngx_conf_bitmask_t  ngx_http_upstream_cache_method_mask[];
+ extern ngx_conf_bitmask_t  ngx_http_upstream_ignore_headers_masks[];
+ 
+ 
++#ifndef HAVE_BALANCER_STATUS_CODE_PATCH
++#define HAVE_BALANCER_STATUS_CODE_PATCH
++#endif
++
++
+ #endif /* _NGX_HTTP_UPSTREAM_H_INCLUDED_ */
+diff --git a/src/stream/ngx_stream.h b/src/stream/ngx_stream.h
+index 09d24593..d8b4b584 100644
+--- a/src/stream/ngx_stream.h
++++ b/src/stream/ngx_stream.h
+@@ -27,6 +27,7 @@ typedef struct ngx_stream_session_s  ngx_stream_session_t;
+ 
+ 
+ #define NGX_STREAM_OK                        200
++#define NGX_STREAM_SPECIAL_RESPONSE          300
+ #define NGX_STREAM_BAD_REQUEST               400
+ #define NGX_STREAM_FORBIDDEN                 403
+ #define NGX_STREAM_INTERNAL_SERVER_ERROR     500
+diff --git a/src/stream/ngx_stream_proxy_module.c b/src/stream/ngx_stream_proxy_module.c
+index 818d7329..329dcdc6 100644
+--- a/src/stream/ngx_stream_proxy_module.c
++++ b/src/stream/ngx_stream_proxy_module.c
+@@ -691,6 +691,11 @@ ngx_stream_proxy_connect(ngx_stream_session_t *s)
+         return;
+     }
+ 
++    if (rc >= NGX_STREAM_SPECIAL_RESPONSE) {
++        ngx_stream_proxy_finalize(s, rc);
++        return;
++    }
++
+     u->state->peer = u->peer.name;
+ 
+     if (rc == NGX_BUSY) {
+diff --git a/src/stream/ngx_stream_upstream.h b/src/stream/ngx_stream_upstream.h
+index 73947f46..21bc0ad7 100644
+--- a/src/stream/ngx_stream_upstream.h
++++ b/src/stream/ngx_stream_upstream.h
+@@ -151,4 +151,9 @@ ngx_stream_upstream_srv_conf_t *ngx_stream_upstream_add(ngx_conf_t *cf,
+ extern ngx_module_t  ngx_stream_upstream_module;
+ 
+ 
++#ifndef HAVE_BALANCER_STATUS_CODE_PATCH
++#define HAVE_BALANCER_STATUS_CODE_PATCH
++#endif
++
++
+ #endif /* _NGX_STREAM_UPSTREAM_H_INCLUDED_ */
diff --git a/images/nginx-1.25/rootfs/patches/10_nginx-1.25.3-delayed_posted_events.patch b/images/nginx-1.25/rootfs/patches/10_nginx-1.25.3-delayed_posted_events.patch
new file mode 100644
index 000000000..687584324
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/10_nginx-1.25.3-delayed_posted_events.patch
@@ -0,0 +1,98 @@
+diff --git a/src/event/ngx_event.c b/src/event/ngx_event.c
+index 57af8132..4853945f 100644
+--- a/src/event/ngx_event.c
++++ b/src/event/ngx_event.c
+@@ -196,6 +196,9 @@ ngx_process_events_and_timers(ngx_cycle_t *cycle)
+     ngx_uint_t  flags;
+     ngx_msec_t  timer, delta;
+ 
++    ngx_queue_t     *q;
++    ngx_event_t     *ev;
++
+     if (ngx_timer_resolution) {
+         timer = NGX_TIMER_INFINITE;
+         flags = 0;
+@@ -215,6 +218,13 @@ ngx_process_events_and_timers(ngx_cycle_t *cycle)
+ #endif
+     }
+ 
++    if (!ngx_queue_empty(&ngx_posted_delayed_events)) {
++        ngx_log_debug0(NGX_LOG_DEBUG_EVENT, cycle->log, 0,
++                       "posted delayed event queue not empty"
++                       " making poll timeout 0");
++        timer = 0;
++    }
++
+     if (ngx_use_accept_mutex) {
+         if (ngx_accept_disabled > 0) {
+             ngx_accept_disabled--;
+@@ -257,6 +267,35 @@ ngx_process_events_and_timers(ngx_cycle_t *cycle)
+     }
+ 
+     ngx_event_process_posted(cycle, &ngx_posted_events);
++
++    while (!ngx_queue_empty(&ngx_posted_delayed_events)) {
++        q = ngx_queue_head(&ngx_posted_delayed_events);
++
++        ev = ngx_queue_data(q, ngx_event_t, queue);
++        if (ev->delayed) {
++            /* start of newly inserted nodes */
++            for (/* void */;
++                 q != ngx_queue_sentinel(&ngx_posted_delayed_events);
++                 q = ngx_queue_next(q))
++            {
++                ev = ngx_queue_data(q, ngx_event_t, queue);
++                ev->delayed = 0;
++
++                ngx_log_debug1(NGX_LOG_DEBUG_EVENT, cycle->log, 0,
++                               "skipping delayed posted event %p,"
++                               " till next iteration", ev);
++            }
++
++            break;
++        }
++
++        ngx_log_debug1(NGX_LOG_DEBUG_EVENT, cycle->log, 0,
++                       "delayed posted event %p", ev);
++
++        ngx_delete_posted_event(ev);
++
++        ev->handler(ev);
++    }
+ }
+ 
+ 
+@@ -600,6 +639,7 @@ ngx_event_process_init(ngx_cycle_t *cycle)
+ 
+     ngx_queue_init(&ngx_posted_accept_events);
+     ngx_queue_init(&ngx_posted_events);
++    ngx_queue_init(&ngx_posted_delayed_events);
+ 
+     if (ngx_event_timer_init(cycle->log) == NGX_ERROR) {
+         return NGX_ERROR;
+diff --git a/src/event/ngx_event_posted.c b/src/event/ngx_event_posted.c
+index d851f3d1..b6cea009 100644
+--- a/src/event/ngx_event_posted.c
++++ b/src/event/ngx_event_posted.c
+@@ -12,6 +12,7 @@
+ 
+ ngx_queue_t  ngx_posted_accept_events;
+ ngx_queue_t  ngx_posted_events;
++ngx_queue_t  ngx_posted_delayed_events;
+ 
+ 
+ void
+diff --git a/src/event/ngx_event_posted.h b/src/event/ngx_event_posted.h
+index 145d30fe..6c388553 100644
+--- a/src/event/ngx_event_posted.h
++++ b/src/event/ngx_event_posted.h
+@@ -43,6 +43,9 @@ void ngx_event_process_posted(ngx_cycle_t *cycle, ngx_queue_t *posted);
+ 
+ extern ngx_queue_t  ngx_posted_accept_events;
+ extern ngx_queue_t  ngx_posted_events;
++extern ngx_queue_t  ngx_posted_delayed_events;
++
++#define HAVE_POSTED_DELAYED_EVENTS_PATCH
+ 
+ 
+ #endif /* _NGX_EVENT_POSTED_H_INCLUDED_ */
diff --git a/images/nginx-1.25/rootfs/patches/11_nginx-1.25.3-privileged_agent_process.patch b/images/nginx-1.25/rootfs/patches/11_nginx-1.25.3-privileged_agent_process.patch
new file mode 100644
index 000000000..164004eba
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/11_nginx-1.25.3-privileged_agent_process.patch
@@ -0,0 +1,203 @@
+diff --git a/src/core/nginx.c b/src/core/nginx.c
+index 60f8fe7..4bd244b 100644
+--- a/src/core/nginx.c
++++ b/src/core/nginx.c
+@@ -981,6 +981,7 @@ ngx_core_module_create_conf(ngx_cycle_t *cycle)
+ 
+     ccf->daemon = NGX_CONF_UNSET;
+     ccf->master = NGX_CONF_UNSET;
++    ccf->privileged_agent = NGX_CONF_UNSET;
+     ccf->timer_resolution = NGX_CONF_UNSET_MSEC;
+ 
+     ccf->worker_processes = NGX_CONF_UNSET;
+@@ -1009,6 +1010,7 @@ ngx_core_module_init_conf(ngx_cycle_t *cycle, void *conf)
+ 
+     ngx_conf_init_value(ccf->daemon, 1);
+     ngx_conf_init_value(ccf->master, 1);
++    ngx_conf_init_value(ccf->privileged_agent, 0);
+     ngx_conf_init_msec_value(ccf->timer_resolution, 0);
+ 
+     ngx_conf_init_value(ccf->worker_processes, 1);
+diff --git a/src/core/ngx_cycle.h b/src/core/ngx_cycle.h
+index c51b7ff..3261f90 100644
+--- a/src/core/ngx_cycle.h
++++ b/src/core/ngx_cycle.h
+@@ -22,6 +22,9 @@
+ #define NGX_DEBUG_POINTS_ABORT  2
+ 
+ 
++#define HAVE_PRIVILEGED_PROCESS_PATCH   1
++
++
+ typedef struct ngx_shm_zone_s  ngx_shm_zone_t;
+ 
+ typedef ngx_int_t (*ngx_shm_zone_init_pt) (ngx_shm_zone_t *zone, void *data);
+@@ -81,6 +84,7 @@ struct ngx_cycle_s {
+ typedef struct {
+     ngx_flag_t                daemon;
+     ngx_flag_t                master;
++    ngx_flag_t                privileged_agent;
+ 
+     ngx_msec_t                timer_resolution;
+ 
+diff --git a/src/os/unix/ngx_process_cycle.c b/src/os/unix/ngx_process_cycle.c
+index 7cee1c5..c4f70d6 100644
+--- a/src/os/unix/ngx_process_cycle.c
++++ b/src/os/unix/ngx_process_cycle.c
+@@ -15,6 +15,8 @@ static void ngx_start_worker_processes(ngx_cycle_t *cycle, ngx_int_t n,
+     ngx_int_t type);
+ static void ngx_start_cache_manager_processes(ngx_cycle_t *cycle,
+     ngx_uint_t respawn);
++static void ngx_start_privileged_agent_processes(ngx_cycle_t *cycle,
++    ngx_uint_t respawn);
+ static void ngx_pass_open_channel(ngx_cycle_t *cycle);
+ static void ngx_signal_worker_processes(ngx_cycle_t *cycle, int signo);
+ static ngx_uint_t ngx_reap_children(ngx_cycle_t *cycle);
+@@ -24,6 +26,7 @@ static void ngx_worker_process_init(ngx_cycle_t *cycle, ngx_int_t worker);
+ static void ngx_worker_process_exit(ngx_cycle_t *cycle);
+ static void ngx_channel_handler(ngx_event_t *ev);
+ static void ngx_cache_manager_process_cycle(ngx_cycle_t *cycle, void *data);
++static void ngx_privileged_agent_process_cycle(ngx_cycle_t *cycle, void *data);
+ static void ngx_cache_manager_process_handler(ngx_event_t *ev);
+ static void ngx_cache_loader_process_handler(ngx_event_t *ev);
+ 
+@@ -51,6 +54,8 @@ sig_atomic_t  ngx_noaccept;
+ ngx_uint_t    ngx_noaccepting;
+ ngx_uint_t    ngx_restart;
+ 
++ngx_uint_t    ngx_is_privileged_agent;
++
+ 
+ static u_char  master_process[] = "master process";
+ 
+@@ -130,6 +135,7 @@ ngx_master_process_cycle(ngx_cycle_t *cycle)
+     ngx_start_worker_processes(cycle, ccf->worker_processes,
+                                NGX_PROCESS_RESPAWN);
+     ngx_start_cache_manager_processes(cycle, 0);
++    ngx_start_privileged_agent_processes(cycle, 0);
+ 
+     ngx_new_binary = 0;
+     delay = 0;
+@@ -215,6 +221,7 @@ ngx_master_process_cycle(ngx_cycle_t *cycle)
+                 ngx_start_worker_processes(cycle, ccf->worker_processes,
+                                            NGX_PROCESS_RESPAWN);
+                 ngx_start_cache_manager_processes(cycle, 0);
++                ngx_start_privileged_agent_processes(cycle, 0);
+                 ngx_noaccepting = 0;
+ 
+                 continue;
+@@ -234,6 +241,7 @@ ngx_master_process_cycle(ngx_cycle_t *cycle)
+             ngx_start_worker_processes(cycle, ccf->worker_processes,
+                                        NGX_PROCESS_JUST_RESPAWN);
+             ngx_start_cache_manager_processes(cycle, 1);
++            ngx_start_privileged_agent_processes(cycle, 1);
+ 
+             /* allow new processes to start */
+             ngx_msleep(100);
+@@ -248,6 +256,7 @@ ngx_master_process_cycle(ngx_cycle_t *cycle)
+             ngx_start_worker_processes(cycle, ccf->worker_processes,
+                                        NGX_PROCESS_RESPAWN);
+             ngx_start_cache_manager_processes(cycle, 0);
++            ngx_start_privileged_agent_processes(cycle, 0);
+             live = 1;
+         }
+ 
+@@ -393,6 +431,26 @@ ngx_start_cache_manager_processes(ngx_cycle_t *cycle, ngx_uint_t respawn)
+ 
+ 
+ static void
++ngx_start_privileged_agent_processes(ngx_cycle_t *cycle, ngx_uint_t respawn)
++{
++    ngx_core_conf_t       *ccf;
++
++    ccf = (ngx_core_conf_t *) ngx_get_conf(cycle->conf_ctx,
++                                           ngx_core_module);
++
++    if (!ccf->privileged_agent) {
++        return;
++    }
++
++    ngx_spawn_process(cycle, ngx_privileged_agent_process_cycle,
++                      "privileged agent process", "privileged agent process",
++                      respawn ? NGX_PROCESS_JUST_RESPAWN : NGX_PROCESS_RESPAWN);
++
++    ngx_pass_open_channel(cycle);
++}
++
++
++static void
+ ngx_pass_open_channel(ngx_cycle_t *cycle)
+ {
+     ngx_int_t  i;
+@@ -794,7 +860,10 @@ ngx_worker_process_init(ngx_cycle_t *cycle, ngx_int_t worker)
+         }
+     }
+ 
+-    if (geteuid() == 0) {
++    /*
++     * privileged agent process has the same permission as master process
++     */
++    if (!ngx_is_privileged_agent && geteuid() == 0) {
+         if (setgid(ccf->group) == -1) {
+             ngx_log_error(NGX_LOG_EMERG, cycle->log, ngx_errno,
+                           "setgid(%d) failed", ccf->group);
+@@ -1149,6 +1216,47 @@ ngx_cache_manager_process_cycle(ngx_cycle_t *cycle, void *data)
+ 
+ 
+ static void
++ngx_privileged_agent_process_cycle(ngx_cycle_t *cycle, void *data)
++{
++    char   *name = data;
++
++    /*
++     * Set correct process type since closing listening Unix domain socket
++     * in a master process also removes the Unix domain socket file.
++     */
++    ngx_process = NGX_PROCESS_HELPER;
++    ngx_is_privileged_agent = 1;
++
++    ngx_close_listening_sockets(cycle);
++
++    /* Set a moderate number of connections for a helper process. */
++    cycle->connection_n = 512;
++
++    ngx_worker_process_init(cycle, -1);
++
++    ngx_use_accept_mutex = 0;
++
++    ngx_setproctitle(name);
++
++    for ( ;; ) {
++
++        if (ngx_terminate || ngx_quit) {
++            ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "exiting");
++            ngx_worker_process_exit(cycle);
++        }
++
++        if (ngx_reopen) {
++            ngx_reopen = 0;
++            ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "reopening logs");
++            ngx_reopen_files(cycle, -1);
++        }
++
++        ngx_process_events_and_timers(cycle);
++    }
++}
++
++
++static void
+ ngx_cache_manager_process_handler(ngx_event_t *ev)
+ {
+     time_t        next, n;
+diff --git a/src/os/unix/ngx_process_cycle.h b/src/os/unix/ngx_process_cycle.h
+index 69495d5..5149396 100644
+--- a/src/os/unix/ngx_process_cycle.h
++++ b/src/os/unix/ngx_process_cycle.h
+@@ -45,6 +45,7 @@ extern ngx_pid_t       ngx_new_binary;
+ extern ngx_uint_t      ngx_inherited;
+ extern ngx_uint_t      ngx_daemonized;
+ extern ngx_uint_t      ngx_exiting;
++extern ngx_uint_t      ngx_is_privileged_agent;
+ 
+ extern sig_atomic_t    ngx_reap;
+ extern sig_atomic_t    ngx_sigio;
diff --git a/images/nginx-1.25/rootfs/patches/12_nginx-1.25.3-privileged_agent_process_connections.patch b/images/nginx-1.25/rootfs/patches/12_nginx-1.25.3-privileged_agent_process_connections.patch
new file mode 100644
index 000000000..5c38929cf
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/12_nginx-1.25.3-privileged_agent_process_connections.patch
@@ -0,0 +1,73 @@
+diff --git a/src/core/nginx.c b/src/core/nginx.c
+index 269ff84..48329bd 100644
+--- a/src/core/nginx.c
++++ b/src/core/nginx.c
+@@ -1062,6 +1062,7 @@ ngx_core_module_create_conf(ngx_cycle_t *cycle)
+     ccf->daemon = NGX_CONF_UNSET;
+     ccf->master = NGX_CONF_UNSET;
+     ccf->privileged_agent = NGX_CONF_UNSET;
++    ccf->privileged_agent_connections = NGX_CONF_UNSET_UINT;
+     ccf->timer_resolution = NGX_CONF_UNSET_MSEC;
+     ccf->shutdown_timeout = NGX_CONF_UNSET_MSEC;
+ 
+@@ -1092,6 +1093,7 @@ ngx_core_module_init_conf(ngx_cycle_t *cycle, void *conf)
+     ngx_conf_init_value(ccf->daemon, 1);
+     ngx_conf_init_value(ccf->master, 1);
+     ngx_conf_init_value(ccf->privileged_agent, 0);
++    ngx_conf_init_uint_value(ccf->privileged_agent_connections, 512);
+     ngx_conf_init_msec_value(ccf->timer_resolution, 0);
+     ngx_conf_init_msec_value(ccf->shutdown_timeout, 0);
+ 
+diff --git a/src/core/ngx_cycle.h b/src/core/ngx_cycle.h
+index 6a9583e..4469390 100644
+--- a/src/core/ngx_cycle.h
++++ b/src/core/ngx_cycle.h
+@@ -93,6 +93,7 @@ typedef struct {
+     ngx_flag_t                daemon;
+     ngx_flag_t                master;
+     ngx_flag_t                privileged_agent;
++    ngx_uint_t                privileged_agent_connections;
+ 
+     ngx_msec_t                timer_resolution;
+     ngx_msec_t                shutdown_timeout;
+diff --git a/src/os/unix/ngx_process_cycle.c b/src/os/unix/ngx_process_cycle.c
+index df25f9d..bd259c1 100644
+--- a/src/os/unix/ngx_process_cycle.c
++++ b/src/os/unix/ngx_process_cycle.c
+@@ -1179,6 +1179,7 @@ static void
+ ngx_privileged_agent_process_cycle(ngx_cycle_t *cycle, void *data)
+ {
+     char   *name = data;
++    ngx_core_conf_t *ccf = (ngx_core_conf_t *) ngx_get_conf(cycle->conf_ctx, ngx_core_module);
+ 
+     /*
+      * Set correct process type since closing listening Unix domain socket
+@@ -1190,7 +1191,7 @@ ngx_privileged_agent_process_cycle(ngx_cycle_t *cycle, void *data)
+     ngx_close_listening_sockets(cycle);
+ 
+     /* Set a moderate number of connections for a helper process. */
+-    cycle->connection_n = 512;
++    cycle->connection_n = ccf->privileged_agent_connections;
+ 
+     ngx_worker_process_init(cycle, -1);
+ 
+diff --git a/src/os/unix/ngx_process_cycle.c b/src/os/unix/ngx_process_cycle.c
+index df25f9d..bd259c1 100644
+--- a/src/os/unix/ngx_process_cycle.c
++++ b/src/os/unix/ngx_process_cycle.c
+@@ -442,6 +442,15 @@
+         return;
+     }
+ 
++    /* 0 is an illegal value and may result in a core dump later */
++    if (ccf->privileged_agent_connections == 0) {
++        ngx_log_error(NGX_LOG_ALERT, cycle->log, 0,
++                      "%ui worker_connection is not enough, "
++                      "privileged agent process cannot be spawned",
++                      ccf->privileged_agent_connections);
++        return;
++    }
++
+     ngx_spawn_process(cycle, ngx_privileged_agent_process_cycle,
+                       "privileged agent process", "privileged agent process",
+                       respawn ? NGX_PROCESS_JUST_RESPAWN : NGX_PROCESS_RESPAWN);
diff --git a/images/nginx-1.25/rootfs/patches/13_nginx-1.25.3-privileged_agent_process_thread_pool.patch b/images/nginx-1.25/rootfs/patches/13_nginx-1.25.3-privileged_agent_process_thread_pool.patch
new file mode 100644
index 000000000..829f21460
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/13_nginx-1.25.3-privileged_agent_process_thread_pool.patch
@@ -0,0 +1,12 @@
+--- a/src/core/ngx_thread_pool.c
++++ b/src/core/ngx_thread_pool.c
+@@ -587,7 +587,8 @@
+     ngx_thread_pool_conf_t   *tcf;
+ 
+     if (ngx_process != NGX_PROCESS_WORKER
+-        && ngx_process != NGX_PROCESS_SINGLE)
++        && ngx_process != NGX_PROCESS_SINGLE
++        && !ngx_is_privileged_agent)
+     {
+         return NGX_OK;
+     }
diff --git a/images/nginx-1.25/rootfs/patches/14_nginx-1.25.3-single_process_graceful_exit.patch b/images/nginx-1.25/rootfs/patches/14_nginx-1.25.3-single_process_graceful_exit.patch
new file mode 100644
index 000000000..2754fc2fe
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/14_nginx-1.25.3-single_process_graceful_exit.patch
@@ -0,0 +1,75 @@
+diff --git a/src/os/unix/ngx_process.c b/src/os/unix/ngx_process.c
+index 15680237..12a8c687 100644
+--- a/src/os/unix/ngx_process.c
++++ b/src/os/unix/ngx_process.c
+@@ -362,8 +362,15 @@ ngx_signal_handler(int signo, siginfo_t *siginfo, void *ucontext)
+             break;
+ 
+         case ngx_signal_value(NGX_RECONFIGURE_SIGNAL):
+-            ngx_reconfigure = 1;
+-            action = ", reconfiguring";
++            if (ngx_process == NGX_PROCESS_SINGLE) {
++                ngx_terminate = 1;
++                action = ", exiting";
++
++            } else {
++                ngx_reconfigure = 1;
++                action = ", reconfiguring";
++            }
++
+             break;
+ 
+         case ngx_signal_value(NGX_REOPEN_SIGNAL):
+diff --git a/src/os/unix/ngx_process_cycle.c b/src/os/unix/ngx_process_cycle.c
+index 5817a2c2..f3d58e97 100644
+--- a/src/os/unix/ngx_process_cycle.c
++++ b/src/os/unix/ngx_process_cycle.c
+@@ -305,11 +305,26 @@ ngx_single_process_cycle(ngx_cycle_t *cycle)
+     }
+ 
+     for ( ;; ) {
++        if (ngx_exiting) {
++            if (ngx_event_no_timers_left() == NGX_OK) {
++                ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "exiting");
++
++                for (i = 0; cycle->modules[i]; i++) {
++                    if (cycle->modules[i]->exit_process) {
++                        cycle->modules[i]->exit_process(cycle);
++                    }
++                }
++
++                ngx_master_process_exit(cycle);
++            }
++        }
++
+         ngx_log_debug0(NGX_LOG_DEBUG_EVENT, cycle->log, 0, "worker cycle");
+ 
+         ngx_process_events_and_timers(cycle);
+ 
+-        if (ngx_terminate || ngx_quit) {
++        if (ngx_terminate) {
++            ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "exiting");
+ 
+             for (i = 0; cycle->modules[i]; i++) {
+                 if (cycle->modules[i]->exit_process) {
+@@ -320,6 +335,20 @@ ngx_single_process_cycle(ngx_cycle_t *cycle)
+             ngx_master_process_exit(cycle);
+         }
+ 
++        if (ngx_quit) {
++            ngx_quit = 0;
++            ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0,
++                          "gracefully shutting down");
++            ngx_setproctitle("process is shutting down");
++
++            if (!ngx_exiting) {
++                ngx_exiting = 1;
++                ngx_set_shutdown_timer(cycle);
++                ngx_close_listening_sockets(cycle);
++                ngx_close_idle_connections(cycle);
++            }
++        }
++
+         if (ngx_reconfigure) {
+             ngx_reconfigure = 0;
+             ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "reconfiguring");
diff --git a/images/nginx-1.25/rootfs/patches/15_nginx-1.25.3-intercept_error_log.patch b/images/nginx-1.25/rootfs/patches/15_nginx-1.25.3-intercept_error_log.patch
new file mode 100644
index 000000000..5de769517
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/15_nginx-1.25.3-intercept_error_log.patch
@@ -0,0 +1,60 @@
+diff --git a/src/core/ngx_cycle.h b/src/core/ngx_cycle.h
+index c51b7ff..4c335b9 100644
+--- a/src/core/ngx_cycle.h
++++ b/src/core/ngx_cycle.h
+@@ -22,9 +22,14 @@
+ #define NGX_DEBUG_POINTS_ABORT  2
+ 
+ 
++#define HAVE_INTERCEPT_ERROR_LOG_PATCH
++
++
+ typedef struct ngx_shm_zone_s  ngx_shm_zone_t;
+ 
+ typedef ngx_int_t (*ngx_shm_zone_init_pt) (ngx_shm_zone_t *zone, void *data);
++typedef ngx_int_t (*ngx_log_intercept_pt) (ngx_log_t *log, ngx_uint_t level,
++    u_char *buf, size_t len);
+ 
+ struct ngx_shm_zone_s {
+     void                     *data;
+@@ -75,6 +80,10 @@ struct ngx_cycle_s {
+     ngx_str_t                 prefix;
+     ngx_str_t                 lock_file;
+     ngx_str_t                 hostname;
++
++    ngx_log_intercept_pt      intercept_error_log_handler;
++    void                     *intercept_error_log_data;
++    unsigned                  entered_logger;    /* :1 */
+ };
+ 
+ 
+diff --git a/src/core/ngx_log.c b/src/core/ngx_log.c
+index 8e9408d..ed9b11b 100644
+--- a/src/core/ngx_log.c
++++ b/src/core/ngx_log.c
+@@ -112,6 +112,8 @@ ngx_log_error_core(ngx_uint_t level, ngx_log_t *log, ngx_err_t err,
+     ngx_uint_t   wrote_stderr, debug_connection;
+     u_char       errstr[NGX_MAX_ERROR_STR];
+ 
++    ngx_log_intercept_pt    log_intercept = NULL;
++
+     last = errstr + NGX_MAX_ERROR_STR;
+ 
+     p = ngx_cpymem(errstr, ngx_cached_err_log_time.data,
+@@ -153,6 +155,16 @@ ngx_log_error_core(ngx_uint_t level, ngx_log_t *log, ngx_err_t err,
+         p = last - NGX_LINEFEED_SIZE;
+     }
+ 
++    if (ngx_cycle) {
++        log_intercept = ngx_cycle->intercept_error_log_handler;
++    }
++
++    if (log_intercept && !ngx_cycle->entered_logger) {
++        ngx_cycle->entered_logger = 1;
++        log_intercept(log, level, errstr, p - errstr);
++        ngx_cycle->entered_logger = 0;
++    }
++
+     ngx_linefeed(p);
+ 
+     wrote_stderr = 0;
diff --git a/images/nginx-1.25/rootfs/patches/16_nginx-1.25.3-upstream_pipelining.patch b/images/nginx-1.25/rootfs/patches/16_nginx-1.25.3-upstream_pipelining.patch
new file mode 100644
index 000000000..aed80365a
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/16_nginx-1.25.3-upstream_pipelining.patch
@@ -0,0 +1,23 @@
+commit f9907b72a76a21ac5413187b83177a919475c75f
+Author: Yichun Zhang (agentzh) <agentzh@gmail.com>
+Date:   Wed Feb 10 16:05:08 2016 -0800
+
+    bugfix: upstream: keep sending request data after the first write attempt.
+    
+    See
+    http://mailman.nginx.org/pipermail/nginx-devel/2012-March/002040.html
+    for more details on the issue.
+
+diff --git a/src/http/ngx_http_upstream.c b/src/http/ngx_http_upstream.c
+index 69019417..92b7c97f 100644
+--- a/src/http/ngx_http_upstream.c
++++ b/src/http/ngx_http_upstream.c
+@@ -2239,7 +2239,7 @@ ngx_http_upstream_send_request_handler(ngx_http_request_t *r,
+
+ #endif
+
+-    if (u->header_sent && !u->conf->preserve_output) {
++    if (u->request_body_sent && !u->conf->preserve_output) {
+         u->write_event_handler = ngx_http_upstream_dummy_handler;
+
+         (void) ngx_handle_write_event(c->write, 0);
diff --git a/images/nginx-1.25/rootfs/patches/17_nginx-1.25.3-no_error_pages.patch b/images/nginx-1.25/rootfs/patches/17_nginx-1.25.3-no_error_pages.patch
new file mode 100644
index 000000000..aceb2e988
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/17_nginx-1.25.3-no_error_pages.patch
@@ -0,0 +1,91 @@
+diff -upr nginx-1.25.3/src/http/ngx_http_core_module.c nginx-1.25.3-patched/src/http/ngx_http_core_module.c
+--- nginx-1.25.3/src/http/ngx_http_core_module.c	2017-08-31 18:14:41.000000000 -0700
++++ nginx-1.25.3-patched/src/http/ngx_http_core_module.c	2017-08-31 18:21:31.638098196 -0700
+@@ -64,6 +64,8 @@ static char *ngx_http_core_directio(ngx_conf_t *cf, ngx_command_t *cmd,
+     void *conf);
+ static char *ngx_http_core_error_page(ngx_conf_t *cf, ngx_command_t *cmd,
+     void *conf);
++static char *ngx_http_core_no_error_pages(ngx_conf_t *cf, ngx_command_t *cmd,
++    void *conf);
+ static char *ngx_http_core_open_file_cache(ngx_conf_t *cf, ngx_command_t *cmd,
+     void *conf);
+ static char *ngx_http_core_error_log(ngx_conf_t *cf, ngx_command_t *cmd,
+@@ -671,6 +673,14 @@ static ngx_command_t  ngx_http_core_commands[] = {
+       0,
+       NULL },
+
++    { ngx_string("no_error_pages"),
++      NGX_HTTP_MAIN_CONF|NGX_HTTP_SRV_CONF|NGX_HTTP_LOC_CONF|NGX_HTTP_LIF_CONF
++                        |NGX_CONF_NOARGS,
++      ngx_http_core_no_error_pages,
++      NGX_HTTP_LOC_CONF_OFFSET,
++      0,
++      NULL },
++
+     { ngx_string("post_action"),
+       NGX_HTTP_MAIN_CONF|NGX_HTTP_SRV_CONF|NGX_HTTP_LOC_CONF|NGX_HTTP_LIF_CONF
+                         |NGX_CONF_TAKE1,
+@@ -3564,7 +3574,6 @@ ngx_http_core_create_loc_conf(ngx_conf_t *cf)
+      *     clcf->types = NULL;
+      *     clcf->default_type = { 0, NULL };
+      *     clcf->error_log = NULL;
+-     *     clcf->error_pages = NULL;
+      *     clcf->client_body_path = NULL;
+      *     clcf->regex = NULL;
+      *     clcf->exact_match = 0;
+@@ -3574,6 +3583,7 @@ ngx_http_core_create_loc_conf(ngx_conf_t *cf)
+      *     clcf->keepalive_disable = 0;
+      */
+
++    clcf->error_pages = NGX_CONF_UNSET_PTR;
+     clcf->client_max_body_size = NGX_CONF_UNSET;
+     clcf->client_body_buffer_size = NGX_CONF_UNSET_SIZE;
+     clcf->client_body_timeout = NGX_CONF_UNSET_MSEC;
+@@ -3776,9 +3786,7 @@ ngx_http_core_merge_loc_conf(ngx_conf_t *cf, void *parent, void *child)
+         }
+     }
+
+-    if (conf->error_pages == NULL && prev->error_pages) {
+-        conf->error_pages = prev->error_pages;
+-    }
++    ngx_conf_merge_ptr_value(conf->error_pages, prev->error_pages, NULL);
+
+     ngx_conf_merge_str_value(conf->default_type,
+                               prev->default_type, "text/plain");
+@@ -4815,6 +4823,10 @@ ngx_http_core_error_page(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
+     ngx_http_compile_complex_value_t   ccv;
+
+     if (clcf->error_pages == NULL) {
++        return "conflicts with \"no_error_pages\"";
++    }
++
++    if (clcf->error_pages == NGX_CONF_UNSET_PTR) {
+         clcf->error_pages = ngx_array_create(cf->pool, 4,
+                                              sizeof(ngx_http_err_page_t));
+         if (clcf->error_pages == NULL) {
+@@ -4920,6 +4932,25 @@ ngx_http_core_error_page(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
+ }
+
+
++static char *
++ngx_http_core_no_error_pages(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
++{
++    ngx_http_core_loc_conf_t *clcf = conf;
++
++    if (clcf->error_pages == NULL) {
++        return "is duplicate";
++    }
++
++    if (clcf->error_pages != NGX_CONF_UNSET_PTR) {
++        return "conflicts with \"error_page\"";
++    }
++
++    clcf->error_pages = NULL;
++
++    return NGX_CONF_OK;
++}
++
++
+ static char *
+ ngx_http_core_open_file_cache(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
+ {
diff --git a/images/nginx-1.25/rootfs/patches/18_nginx-1.25.3-no_Werror.patch b/images/nginx-1.25/rootfs/patches/18_nginx-1.25.3-no_Werror.patch
new file mode 100644
index 000000000..f7176faff
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/18_nginx-1.25.3-no_Werror.patch
@@ -0,0 +1,36 @@
+diff -urp nginx-1.25.3/auto/cc/clang nginx-1.25.3-patched/auto/cc/clang
+--- nginx-1.25.3/auto/cc/clang	2014-03-04 03:39:24.000000000 -0800
++++ nginx-1.25.3-patched/auto/cc/clang	2014-03-13 20:54:26.241413360 -0700
+@@ -89,7 +89,7 @@ CFLAGS="$CFLAGS -Wconditional-uninitiali
+ CFLAGS="$CFLAGS -Wno-unused-parameter"
+ 
+ # stop on warning
+-CFLAGS="$CFLAGS -Werror"
++#CFLAGS="$CFLAGS -Werror"
+ 
+ # debug
+ CFLAGS="$CFLAGS -g"
+diff -urp nginx-1.25.3/auto/cc/gcc nginx-1.25.3-patched/auto/cc/gcc
+--- nginx-1.25.3/auto/cc/gcc	2014-03-04 03:39:24.000000000 -0800
++++ nginx-1.25.3-patched/auto/cc/gcc	2014-03-13 20:54:13.301355329 -0700
+@@ -168,7 +168,7 @@ esac
+ 
+ 
+ # stop on warning
+-CFLAGS="$CFLAGS -Werror"
++#CFLAGS="$CFLAGS -Werror"
+ 
+ # debug
+ CFLAGS="$CFLAGS -g"
+diff -urp nginx-1.25.3/auto/cc/icc nginx-1.25.3-patched/auto/cc/icc
+--- nginx-1.25.3/auto/cc/icc	2014-03-04 03:39:24.000000000 -0800
++++ nginx-1.25.3-patched/auto/cc/icc	2014-03-13 20:54:13.301355329 -0700
+@@ -115,7 +115,7 @@ case "$NGX_ICC_VER" in
+ esac
+ 
+ # stop on warning
+-CFLAGS="$CFLAGS -Werror"
++#CFLAGS="$CFLAGS -Werror"
+ 
+ # debug
+ CFLAGS="$CFLAGS -g"
diff --git a/images/nginx-1.25/rootfs/patches/19_nginx-1.25.3-log_escape_non_ascii.patch b/images/nginx-1.25/rootfs/patches/19_nginx-1.25.3-log_escape_non_ascii.patch
new file mode 100644
index 000000000..bea6e52ee
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/19_nginx-1.25.3-log_escape_non_ascii.patch
@@ -0,0 +1,117 @@
+diff --git a/src/http/modules/ngx_http_log_module.c b/src/http/modules/ngx_http_log_module.c
+index 917ed55f..b769dfd3 100644
+--- a/src/http/modules/ngx_http_log_module.c
++++ b/src/http/modules/ngx_http_log_module.c
+@@ -79,6 +79,8 @@ typedef struct {
+     time_t                      open_file_cache_valid;
+     ngx_uint_t                  open_file_cache_min_uses;
+ 
++    ngx_flag_t                  escape_non_ascii;
++
+     ngx_uint_t                  off;        /* unsigned  off:1 */
+ } ngx_http_log_loc_conf_t;
+ 
+@@ -131,7 +133,8 @@ static size_t ngx_http_log_variable_getlen(ngx_http_request_t *r,
+     uintptr_t data);
+ static u_char *ngx_http_log_variable(ngx_http_request_t *r, u_char *buf,
+     ngx_http_log_op_t *op);
+-static uintptr_t ngx_http_log_escape(u_char *dst, u_char *src, size_t size);
++static uintptr_t ngx_http_log_escape(ngx_http_log_loc_conf_t *lcf, u_char *dst,
++    u_char *src, size_t size);
+ static size_t ngx_http_log_json_variable_getlen(ngx_http_request_t *r,
+     uintptr_t data);
+ static u_char *ngx_http_log_json_variable(ngx_http_request_t *r, u_char *buf,
+@@ -177,6 +180,13 @@ static ngx_command_t  ngx_http_log_commands[] = {
+       0,
+       NULL },
+ 
++    { ngx_string("log_escape_non_ascii"),
++      NGX_HTTP_MAIN_CONF|NGX_HTTP_SRV_CONF|NGX_HTTP_LOC_CONF|NGX_CONF_FLAG,
++      ngx_conf_set_flag_slot,
++      NGX_HTTP_LOC_CONF_OFFSET,
++      offsetof(ngx_http_log_loc_conf_t, escape_non_ascii),
++      NULL },
++
+       ngx_null_command
+ };
+ 
+@@ -935,6 +945,7 @@ static size_t
+ ngx_http_log_variable_getlen(ngx_http_request_t *r, uintptr_t data)
+ {
+     uintptr_t                   len;
++    ngx_http_log_loc_conf_t    *lcf;
+     ngx_http_variable_value_t  *value;
+ 
+     value = ngx_http_get_indexed_variable(r, data);
+@@ -943,7 +954,9 @@ ngx_http_log_variable_getlen(ngx_http_request_t *r, uintptr_t data)
+         return 1;
+     }
+ 
+-    len = ngx_http_log_escape(NULL, value->data, value->len);
++    lcf = ngx_http_get_module_loc_conf(r, ngx_http_log_module);
++
++    len = ngx_http_log_escape(lcf, NULL, value->data, value->len);
+ 
+     value->escape = len ? 1 : 0;
+ 
+@@ -954,6 +967,7 @@ ngx_http_log_variable_getlen(ngx_http_request_t *r, uintptr_t data)
+ static u_char *
+ ngx_http_log_variable(ngx_http_request_t *r, u_char *buf, ngx_http_log_op_t *op)
+ {
++    ngx_http_log_loc_conf_t    *lcf;
+     ngx_http_variable_value_t  *value;
+ 
+     value = ngx_http_get_indexed_variable(r, op->data);
+@@ -967,16 +981,18 @@ ngx_http_log_variable(ngx_http_request_t *r, u_char *buf, ngx_http_log_op_t *op)
+         return ngx_cpymem(buf, value->data, value->len);
+ 
+     } else {
+-        return (u_char *) ngx_http_log_escape(buf, value->data, value->len);
++        lcf = ngx_http_get_module_loc_conf(r, ngx_http_log_module);
++        return (u_char *) ngx_http_log_escape(lcf, buf, value->data, value->len);
+     }
+ }
+ 
+ 
+ static uintptr_t
+-ngx_http_log_escape(u_char *dst, u_char *src, size_t size)
++ngx_http_log_escape(ngx_http_log_loc_conf_t *lcf, u_char *dst, u_char *src,
++    size_t size)
+ {
+-    ngx_uint_t      n;
+-    static u_char   hex[] = "0123456789ABCDEF";
++    ngx_uint_t                   n;
++    static u_char                hex[] = "0123456789ABCDEF";
+ 
+     static uint32_t   escape[] = {
+         0xffffffff, /* 1111 1111 1111 1111  1111 1111 1111 1111 */
+@@ -996,6 +1012,12 @@ ngx_http_log_escape(u_char *dst, u_char *src, size_t size)
+         0xffffffff, /* 1111 1111 1111 1111  1111 1111 1111 1111 */
+     };
+ 
++    if (lcf->escape_non_ascii) {
++        ngx_memset(&escape[4], 0xff, sizeof(uint32_t) * 4);
++
++    } else {
++        ngx_memzero(&escape[4], sizeof(uint32_t) * 4);
++    }
+ 
+     if (dst == NULL) {
+ 
+@@ -1120,6 +1142,7 @@ ngx_http_log_create_loc_conf(ngx_conf_t *cf)
+     }
+ 
+     conf->open_file_cache = NGX_CONF_UNSET_PTR;
++    conf->escape_non_ascii = NGX_CONF_UNSET;
+ 
+     return conf;
+ }
+@@ -1135,6 +1158,8 @@ ngx_http_log_merge_loc_conf(ngx_conf_t *cf, void *parent, void *child)
+     ngx_http_log_fmt_t        *fmt;
+     ngx_http_log_main_conf_t  *lmcf;
+ 
++    ngx_conf_merge_value(conf->escape_non_ascii, prev->escape_non_ascii, 1);
++
+     if (conf->open_file_cache == NGX_CONF_UNSET_PTR) {
+ 
+         conf->open_file_cache = prev->open_file_cache;
diff --git a/images/nginx-1.25/rootfs/patches/20_nginx-1.25.3-proxy_host_port_vars.patch b/images/nginx-1.25/rootfs/patches/20_nginx-1.25.3-proxy_host_port_vars.patch
new file mode 100644
index 000000000..82a344324
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/20_nginx-1.25.3-proxy_host_port_vars.patch
@@ -0,0 +1,19 @@
+--- nginx-1.25.3/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
++++ nginx-1.25.3-patched/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
+@@ -793,13 +793,13 @@ static ngx_keyval_t  ngx_http_proxy_cach
+ static ngx_http_variable_t  ngx_http_proxy_vars[] = {
+ 
+     { ngx_string("proxy_host"), NULL, ngx_http_proxy_host_variable, 0,
+-      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE|NGX_HTTP_VAR_NOHASH, 0 },
++      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE, 0 },
+ 
+     { ngx_string("proxy_port"), NULL, ngx_http_proxy_port_variable, 0,
+-      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE|NGX_HTTP_VAR_NOHASH, 0 },
++      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE, 0 },
+ 
+     { ngx_string("proxy_add_x_forwarded_for"), NULL,
+-      ngx_http_proxy_add_x_forwarded_for_variable, 0, NGX_HTTP_VAR_NOHASH, 0 },
++      ngx_http_proxy_add_x_forwarded_for_variable, 0, 0, 0 },
+ 
+ #if 0
+     { ngx_string("proxy_add_via"), NULL, NULL, 0, NGX_HTTP_VAR_NOHASH, 0 },
diff --git a/images/nginx-1.25/rootfs/patches/21_nginx-1.25.3-cache_manager_exit.patch b/images/nginx-1.25/rootfs/patches/21_nginx-1.25.3-cache_manager_exit.patch
new file mode 100644
index 000000000..91ee63a26
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/21_nginx-1.25.3-cache_manager_exit.patch
@@ -0,0 +1,19 @@
+# HG changeset patch
+# User Yichun Zhang <agentzh@gmail.com>
+# Date 1383598130 28800
+# Node ID f64218e1ac963337d84092536f588b8e0d99bbaa
+# Parent  dea321e5c0216efccbb23e84bbce7cf3e28f130c
+Cache: gracefully exit the cache manager process.
+
+diff -r dea321e5c021 -r f64218e1ac96 src/os/unix/ngx_process_cycle.c
+--- a/src/os/unix/ngx_process_cycle.c	Thu Oct 31 18:23:49 2013 +0400
++++ b/src/os/unix/ngx_process_cycle.c	Mon Nov 04 12:48:50 2013 -0800
+@@ -1134,7 +1134,7 @@
+ 
+         if (ngx_terminate || ngx_quit) {
+             ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "exiting");
+-            exit(0);
++            ngx_worker_process_exit(cycle);
+         }
+ 
+         if (ngx_reopen) {
diff --git a/images/nginx-1.25/rootfs/patches/22_nginx-1.25.3-larger_max_error_str.patch b/images/nginx-1.25/rootfs/patches/22_nginx-1.25.3-larger_max_error_str.patch
new file mode 100644
index 000000000..e5cd07e67
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/22_nginx-1.25.3-larger_max_error_str.patch
@@ -0,0 +1,13 @@
+--- nginx-1.25.3/src/core/ngx_log.h	2013-10-08 05:07:14.000000000 -0700
++++ nginx-1.25.3-patched/src/core/ngx_log.h	2013-12-05 20:35:35.996236720 -0800
+@@ -64,7 +64,9 @@ struct ngx_log_s {
+ };
+ 
+ 
+-#define NGX_MAX_ERROR_STR   2048
++#ifndef NGX_MAX_ERROR_STR
++#define NGX_MAX_ERROR_STR   4096
++#endif
+ 
+ 
+ /*********************************/
diff --git a/images/nginx-1.25/rootfs/patches/23_nginx-1.25.3-pcre_conf_opt.patch b/images/nginx-1.25/rootfs/patches/23_nginx-1.25.3-pcre_conf_opt.patch
new file mode 100644
index 000000000..eb17e0642
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/23_nginx-1.25.3-pcre_conf_opt.patch
@@ -0,0 +1,26 @@
+# HG changeset patch
+# User Yichun Zhang <agentzh@gmail.com>
+# Date 1386694955 28800
+# Node ID 9ba6b149669f1f02eeb4cdc0ebd364a949b5c469
+# Parent  30e806b8636af5fd3f03ec17df24801f390f7511
+Configure: added new option --with-pcre-conf-opt=OPTIONS.
+
+diff -r 30e806b8636a -r 9ba6b149669f auto/options
+--- a/auto/options	Mon Dec 09 10:16:44 2013 +0400
++++ b/auto/options	Tue Dec 10 09:02:35 2013 -0800
+@@ -286,6 +286,7 @@
+         --with-pcre)                     USE_PCRE=YES               ;;
+         --with-pcre=*)                   PCRE="$value"              ;;
+         --with-pcre-opt=*)               PCRE_OPT="$value"          ;;
++        --with-pcre-conf-opt=*)          PCRE_CONF_OPT="$value"     ;;
+         --with-pcre-jit)                 PCRE_JIT=YES               ;;
+ 
+         --with-openssl=*)                OPENSSL="$value"           ;;
+@@ -441,6 +442,7 @@
+   --with-pcre                        force PCRE library usage
+   --with-pcre=DIR                    set path to PCRE library sources
+   --with-pcre-opt=OPTIONS            set additional build options for PCRE
++  --with-pcre-conf-opt=OPTIONS       set additional configure options for PCRE
+   --with-pcre-jit                    build PCRE with JIT compilation support
+ 
+   --with-md5=DIR                     set path to md5 library sources
diff --git a/images/nginx-1.25/rootfs/patches/24_nginx-1.25.3-always_enable_cc_feature_tests.patch b/images/nginx-1.25/rootfs/patches/24_nginx-1.25.3-always_enable_cc_feature_tests.patch
new file mode 100644
index 000000000..b381d9b07
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/24_nginx-1.25.3-always_enable_cc_feature_tests.patch
@@ -0,0 +1,11 @@
+--- nginx-1.25.3/auto/cc/conf	2015-10-30 22:47:50.000000000 +0800
++++ nginx-1.25.3-patched/auto/cc/conf	2015-11-02 12:23:05.385156987 +0800
+@@ -144,7 +144,7 @@ fi
+ CFLAGS="$CFLAGS $NGX_CC_OPT"
+ NGX_TEST_LD_OPT="$NGX_LD_OPT"
+ 
+-if [ "$NGX_PLATFORM" != win32 ]; then
++if [ 1 ]; then
+ 
+     if test -n "$NGX_LD_OPT"; then
+         ngx_feature=--with-ld-opt=\"$NGX_LD_OPT\"
diff --git a/images/nginx-1.25/rootfs/patches/25_nginx-1.25.3-ssl_cert_cb_yield.patch b/images/nginx-1.25/rootfs/patches/25_nginx-1.25.3-ssl_cert_cb_yield.patch
new file mode 100644
index 000000000..89773c05e
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/25_nginx-1.25.3-ssl_cert_cb_yield.patch
@@ -0,0 +1,64 @@
+# HG changeset patch
+# User Yichun Zhang <agentzh@openresty.org>
+# Date 1451762084 28800
+#      Sat Jan 02 11:14:44 2016 -0800
+# Node ID 449f0461859c16e95bdb18e8be6b94401545d3dd
+# Parent  78b4e10b4367b31367aad3c83c9c3acdd42397c4
+SSL: handled SSL_CTX_set_cert_cb() callback yielding.
+
+OpenSSL 1.0.2+ introduces SSL_CTX_set_cert_cb() to allow custom
+callbacks to serve the SSL certificiates and private keys dynamically
+and lazily. The callbacks may yield for nonblocking I/O or sleeping.
+Here we added support for such usage in NGINX 3rd-party modules
+(like ngx_lua) in NGINX's event handlers for downstream SSL
+connections.
+
+diff -r 78b4e10b4367 -r 449f0461859c src/event/ngx_event_openssl.c
+--- a/src/event/ngx_event_openssl.c Thu Dec 17 16:39:15 2015 +0300
++++ b/src/event/ngx_event_openssl.c Sat Jan 02 11:14:44 2016 -0800
+@@ -1445,6 +1445,23 @@ ngx_ssl_handshake(ngx_connection_t *c)
+         return NGX_AGAIN;
+     }
+ 
++#if OPENSSL_VERSION_NUMBER >= 0x10002000L
++    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP) {
++        c->read->handler = ngx_ssl_handshake_handler;
++        c->write->handler = ngx_ssl_handshake_handler;
++
++        if (ngx_handle_read_event(c->read, 0) != NGX_OK) {
++            return NGX_ERROR;
++        }
++
++        if (ngx_handle_write_event(c->write, 0) != NGX_OK) {
++            return NGX_ERROR;
++        }
++
++        return NGX_AGAIN;
++    }
++#endif
++
+     err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
+ 
+     c->ssl->no_wait_shutdown = 1;
+@@ -1558,6 +1575,21 @@ ngx_ssl_try_early_data(ngx_connection_t *c)
+         return NGX_AGAIN;
+     }
+ 
++    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP) {
++        c->read->handler = ngx_ssl_handshake_handler;
++        c->write->handler = ngx_ssl_handshake_handler;
++
++        if (ngx_handle_read_event(c->read, 0) != NGX_OK) {
++            return NGX_ERROR;
++        }
++
++        if (ngx_handle_write_event(c->write, 0) != NGX_OK) {
++            return NGX_ERROR;
++        }
++
++        return NGX_AGAIN;
++    }
++
+     err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
+ 
+     c->ssl->no_wait_shutdown = 1;
diff --git a/images/nginx-1.25/rootfs/patches/26_nginx-1.25.3-ssl_sess_cb_yield.patch b/images/nginx-1.25/rootfs/patches/26_nginx-1.25.3-ssl_sess_cb_yield.patch
new file mode 100644
index 000000000..ac5fe65eb
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/26_nginx-1.25.3-ssl_sess_cb_yield.patch
@@ -0,0 +1,41 @@
+diff --git a/src/event/ngx_event_openssl.c b/src/event/ngx_event_openssl.c
+--- a/src/event/ngx_event_openssl.c
++++ b/src/event/ngx_event_openssl.c
+@@ -1446,7 +1446,12 @@ ngx_ssl_handshake(ngx_connection_t *c)
+     }
+ 
+ #if OPENSSL_VERSION_NUMBER >= 0x10002000L
+-    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP) {
++    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP
++#   ifdef SSL_ERROR_PENDING_SESSION
++        || sslerr == SSL_ERROR_PENDING_SESSION
++#   endif
++       )
++    {
+         c->read->handler = ngx_ssl_handshake_handler;
+         c->write->handler = ngx_ssl_handshake_handler;
+ 
+@@ -1575,6 +1580,23 @@ ngx_ssl_try_early_data(ngx_connection_t *c)
+         return NGX_AGAIN;
+     }
+ 
++#ifdef SSL_ERROR_PENDING_SESSION
++    if (sslerr == SSL_ERROR_PENDING_SESSION) {
++        c->read->handler = ngx_ssl_handshake_handler;
++        c->write->handler = ngx_ssl_handshake_handler;
++
++        if (ngx_handle_read_event(c->read, 0) != NGX_OK) {
++            return NGX_ERROR;
++        }
++
++        if (ngx_handle_write_event(c->write, 0) != NGX_OK) {
++            return NGX_ERROR;
++        }
++
++        return NGX_AGAIN;
++    }
++#endif
++
+     err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
+ 
+     c->ssl->no_wait_shutdown = 1;
diff --git a/images/nginx-1.25/rootfs/patches/27_nginx-1.25.3-ssl_client_hello_cb_yield.patch b/images/nginx-1.25/rootfs/patches/27_nginx-1.25.3-ssl_client_hello_cb_yield.patch
new file mode 100644
index 000000000..0e97be992
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/27_nginx-1.25.3-ssl_client_hello_cb_yield.patch
@@ -0,0 +1,38 @@
+diff --git a/src/event/ngx_event_openssl.c b/src/event/ngx_event_openssl.c
+index 8ba30e58..2b2db95c 100644
+--- a/src/event/ngx_event_openssl.c
++++ b/src/event/ngx_event_openssl.c
+@@ -1712,6 +1712,9 @@ ngx_ssl_handshake(ngx_connection_t *c)
+     if (sslerr == SSL_ERROR_WANT_X509_LOOKUP
+ #   ifdef SSL_ERROR_PENDING_SESSION
+         || sslerr == SSL_ERROR_PENDING_SESSION
++#   endif
++#   ifdef SSL_ERROR_WANT_CLIENT_HELLO_CB
++        || sslerr == SSL_ERROR_WANT_CLIENT_HELLO_CB
+ #   endif
+        )
+     {
+@@ -1889,6 +1892,23 @@ ngx_ssl_try_early_data(ngx_connection_t *c)
+     }
+ #endif
+ 
++#ifdef SSL_ERROR_WANT_CLIENT_HELLO_CB
++    if (sslerr == SSL_ERROR_WANT_CLIENT_HELLO_CB) {
++        c->read->handler = ngx_ssl_handshake_handler;
++        c->write->handler = ngx_ssl_handshake_handler;
++
++        if (ngx_handle_read_event(c->read, 0) != NGX_OK) {
++            return NGX_ERROR;
++        }
++
++        if (ngx_handle_write_event(c->write, 0) != NGX_OK) {
++            return NGX_ERROR;
++        }
++
++        return NGX_AGAIN;
++    }
++#endif
++
+     err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
+ 
+     c->ssl->no_wait_shutdown = 1;
diff --git a/images/nginx-1.25/rootfs/patches/28_nginx-1.25.3-upstream_timeout_fields.patch b/images/nginx-1.25/rootfs/patches/28_nginx-1.25.3-upstream_timeout_fields.patch
new file mode 100644
index 000000000..2314ddf80
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/28_nginx-1.25.3-upstream_timeout_fields.patch
@@ -0,0 +1,112 @@
+diff --git a/src/http/ngx_http_upstream.c b/src/http/ngx_http_upstream.c
+index 69019417..2265d8f7 100644
+--- a/src/http/ngx_http_upstream.c
++++ b/src/http/ngx_http_upstream.c
+@@ -509,12 +509,19 @@ void
+ ngx_http_upstream_init(ngx_http_request_t *r)
+ {
+     ngx_connection_t     *c;
++    ngx_http_upstream_t  *u;
+ 
+     c = r->connection;
+ 
+     ngx_log_debug1(NGX_LOG_DEBUG_HTTP, c->log, 0,
+                    "http init upstream, client timer: %d", c->read->timer_set);
+ 
++    u = r->upstream;
++
++    u->connect_timeout = u->conf->connect_timeout;
++    u->send_timeout = u->conf->send_timeout;
++    u->read_timeout = u->conf->read_timeout;
++
+ #if (NGX_HTTP_V2)
+     if (r->stream) {
+         ngx_http_upstream_init_request(r);
+@@ -1626,7 +1633,7 @@ ngx_http_upstream_connect(ngx_http_request_t *r, ngx_http_upstream_t *u)
+     u->request_body_blocked = 0;
+ 
+     if (rc == NGX_AGAIN) {
+-        ngx_add_timer(c->write, u->conf->connect_timeout);
++        ngx_add_timer(c->write, u->connect_timeout);
+         return;
+     }
+ 
+@@ -1704,7 +1711,7 @@ ngx_http_upstream_ssl_init_connection(ngx_http_request_t *r,
+     if (rc == NGX_AGAIN) {
+ 
+         if (!c->write->timer_set) {
+-            ngx_add_timer(c->write, u->conf->connect_timeout);
++            ngx_add_timer(c->write, u->connect_timeout);
+         }
+ 
+         c->ssl->handler = ngx_http_upstream_ssl_handshake_handler;
+@@ -2022,7 +2029,7 @@ ngx_http_upstream_send_request(ngx_http_request_t *r, ngx_http_upstream_t *u,
+ 
+     if (rc == NGX_AGAIN) {
+         if (!c->write->ready || u->request_body_blocked) {
+-            ngx_add_timer(c->write, u->conf->send_timeout);
++            ngx_add_timer(c->write, u->send_timeout);
+ 
+         } else if (c->write->timer_set) {
+             ngx_del_timer(c->write);
+@@ -2084,7 +2091,7 @@ ngx_http_upstream_send_request(ngx_http_request_t *r, ngx_http_upstream_t *u,
+             return;
+         }
+ 
+-        ngx_add_timer(c->read, u->conf->read_timeout);
++        ngx_add_timer(c->read, u->read_timeout);
+ 
+         if (c->read->ready) {
+             ngx_http_upstream_process_header(r, u);
+@@ -3213,7 +3220,7 @@ ngx_http_upstream_send_response(ngx_http_request_t *r, ngx_http_upstream_t *u)
+         p->cyclic_temp_file = 0;
+     }
+ 
+-    p->read_timeout = u->conf->read_timeout;
++    p->read_timeout = u->read_timeout;
+     p->send_timeout = clcf->send_timeout;
+     p->send_lowat = clcf->send_lowat;
+ 
+@@ -3458,7 +3465,7 @@ ngx_http_upstream_process_upgraded(ngx_http_request_t *r,
+     }
+ 
+     if (upstream->write->active && !upstream->write->ready) {
+-        ngx_add_timer(upstream->write, u->conf->send_timeout);
++        ngx_add_timer(upstream->write, u->send_timeout);
+ 
+     } else if (upstream->write->timer_set) {
+         ngx_del_timer(upstream->write);
+@@ -3470,7 +3477,7 @@ ngx_http_upstream_process_upgraded(ngx_http_request_t *r,
+     }
+ 
+     if (upstream->read->active && !upstream->read->ready) {
+-        ngx_add_timer(upstream->read, u->conf->read_timeout);
++        ngx_add_timer(upstream->read, u->read_timeout);
+ 
+     } else if (upstream->read->timer_set) {
+         ngx_del_timer(upstream->read);
+@@ -3664,7 +3671,7 @@ ngx_http_upstream_process_non_buffered_request(ngx_http_request_t *r,
+     }
+ 
+     if (upstream->read->active && !upstream->read->ready) {
+-        ngx_add_timer(upstream->read, u->conf->read_timeout);
++        ngx_add_timer(upstream->read, u->read_timeout);
+ 
+     } else if (upstream->read->timer_set) {
+         ngx_del_timer(upstream->read);
+diff --git a/src/http/ngx_http_upstream.h b/src/http/ngx_http_upstream.h
+index c2f4dc0b..b9eef118 100644
+--- a/src/http/ngx_http_upstream.h
++++ b/src/http/ngx_http_upstream.h
+@@ -333,6 +333,11 @@ struct ngx_http_upstream_s {
+     ngx_array_t                     *caches;
+ #endif
+ 
++#define HAVE_NGX_UPSTREAM_TIMEOUT_FIELDS  1
++    ngx_msec_t                       connect_timeout;
++    ngx_msec_t                       send_timeout;
++    ngx_msec_t                       read_timeout;
++
+     ngx_http_upstream_headers_in_t   headers_in;
+ 
+     ngx_http_upstream_resolved_t    *resolved;
diff --git a/images/nginx-1.25/rootfs/patches/29_nginx-1.25.3-safe_resolver_ipv6_option.patch b/images/nginx-1.25/rootfs/patches/29_nginx-1.25.3-safe_resolver_ipv6_option.patch
new file mode 100644
index 000000000..6c54c6c4c
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/29_nginx-1.25.3-safe_resolver_ipv6_option.patch
@@ -0,0 +1,60 @@
+# HG changeset patch
+# User Thibault Charbonnier <thibaultcha@fastmail.com>
+# Date 1481847421 28800
+#      Thu Dec 15 16:17:01 2016 -0800
+# Node ID 8bf038fe006fd8ae253d6b41fc6cf109a8912d3e
+# Parent  a3dc657f4e9530623683e6b85bd7492662e4dc47
+Resolver: ignore ipv6=off resolver option when no ipv6 support
+
+Makes the resolver directive more robust: we only error out when ipv6
+resolution is desired but not supported (ipv6=on).
+
+use case 1: some configurations are sometimes re-used between builds with and
+without ipv6 support. This patch avoids the need to remove the "ipv6=off" flag.
+
+use case 2: currently, some tools rely on the --with-ipv6 configure option from
+"nginx -V" to determine if ipv6 resolution should be disabled in some cases.
+With this option disappearing in Nginx 1.11.5, this patch would allow such tools
+to assume "ipv6=off" to be safe regardless of ipv6 support in the current
+build.
+
+diff --git a/src/core/ngx_resolver.c b/src/core/ngx_resolver.c
+index dade1846..5a3f0aa4 100644
+--- a/src/core/ngx_resolver.c
++++ b/src/core/ngx_resolver.c
+@@ -425,7 +425,6 @@ ngx_resolver_create(ngx_conf_t *cf, ngx_str_t *names, ngx_uint_t n)
+             continue;
+         }
+ 
+-#if (NGX_HAVE_INET6)
+         if (ngx_strncmp(names[i].data, "ipv4=", 5) == 0) {
+ 
+             if (ngx_strcmp(&names[i].data[5], "on") == 0) {
+@@ -446,10 +445,19 @@ ngx_resolver_create(ngx_conf_t *cf, ngx_str_t *names, ngx_uint_t n)
+         if (ngx_strncmp(names[i].data, "ipv6=", 5) == 0) {
+ 
+             if (ngx_strcmp(&names[i].data[5], "on") == 0) {
++#if (NGX_HAVE_INET6)
+                 r->ipv6 = 1;
++#else
++                ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
++                                   "no ipv6 support but \"%V\" in resolver",
++                                   &names[i]);
++                return NULL;
++#endif
+ 
+             } else if (ngx_strcmp(&names[i].data[5], "off") == 0) {
++#if (NGX_HAVE_INET6)
+                 r->ipv6 = 0;
++#endif
+ 
+             } else {
+                 ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
+@@ -459,7 +467,6 @@ ngx_resolver_create(ngx_conf_t *cf, ngx_str_t *names, ngx_uint_t n)
+ 
+             continue;
+         }
+-#endif
+ 
+ #if !(NGX_WIN32)
+         if (ngx_strncmp(names[i].data, "local=", 6) == 0) {
diff --git a/images/nginx-1.25/rootfs/patches/30_nginx-1.25.3-socket_cloexec.patch b/images/nginx-1.25/rootfs/patches/30_nginx-1.25.3-socket_cloexec.patch
new file mode 100644
index 000000000..8ffe4c167
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/30_nginx-1.25.3-socket_cloexec.patch
@@ -0,0 +1,185 @@
+diff --git a/auto/unix b/auto/unix
+index 10835f6c..b5b33bb3 100644
+--- a/auto/unix
++++ b/auto/unix
+@@ -990,3 +990,27 @@ ngx_feature_test='struct addrinfo *res;
+                   if (getaddrinfo("localhost", NULL, NULL, &res) != 0) return 1;
+                   freeaddrinfo(res)'
+ . auto/feature
++
++ngx_feature="SOCK_CLOEXEC support"
++ngx_feature_name="NGX_HAVE_SOCKET_CLOEXEC"
++ngx_feature_run=no
++ngx_feature_incs="#include <sys/types.h>
++                  #include <sys/socket.h>"
++ngx_feature_path=
++ngx_feature_libs=
++ngx_feature_test="int fd;
++                  fd = socket(AF_INET, SOCK_STREAM | SOCK_CLOEXEC, 0);"
++. auto/feature
++
++ngx_feature="FD_CLOEXEC support"
++ngx_feature_name="NGX_HAVE_FD_CLOEXEC"
++ngx_feature_run=no
++ngx_feature_incs="#include <sys/types.h>
++                  #include <sys/socket.h>
++                  #include <fcntl.h>"
++ngx_feature_path=
++ngx_feature_libs=
++ngx_feature_test="int fd;
++                  fd = socket(AF_INET, SOCK_STREAM, 0);
++                  fcntl(fd, F_SETFD, FD_CLOEXEC);"
++. auto/feature
+diff --git a/src/core/ngx_resolver.c b/src/core/ngx_resolver.c
+index cd55520c..438e0806 100644
+--- a/src/core/ngx_resolver.c
++++ b/src/core/ngx_resolver.c
+@@ -4466,8 +4466,14 @@ ngx_tcp_connect(ngx_resolver_connection_t *rec)
+     ngx_event_t       *rev, *wev;
+     ngx_connection_t  *c;
+ 
++#if (NGX_HAVE_SOCKET_CLOEXEC)
++    s = ngx_socket(rec->sockaddr->sa_family, SOCK_STREAM | SOCK_CLOEXEC, 0);
++
++#else
+     s = ngx_socket(rec->sockaddr->sa_family, SOCK_STREAM, 0);
+ 
++#endif
++
+     ngx_log_debug1(NGX_LOG_DEBUG_EVENT, &rec->log, 0, "TCP socket %d", s);
+ 
+     if (s == (ngx_socket_t) -1) {
+@@ -4494,6 +4500,15 @@ ngx_tcp_connect(ngx_resolver_connection_t *rec)
+         goto failed;
+     }
+ 
++#if (NGX_HAVE_FD_CLOEXEC)
++    if (ngx_cloexec(s) == -1) {
++        ngx_log_error(NGX_LOG_ALERT, &rec->log, ngx_socket_errno,
++                      ngx_cloexec_n " failed");
++
++        goto failed;
++    }
++#endif
++
+     rev = c->read;
+     wev = c->write;
+ 
+diff --git a/src/event/ngx_event.h b/src/event/ngx_event.h
+index 19fec68..8c2f01a 100644
+--- a/src/event/ngx_event.h
++++ b/src/event/ngx_event.h
+@@ -73,6 +73,9 @@ struct ngx_event_s {
+     /* to test on worker exit */
+     unsigned         channel:1;
+     unsigned         resolver:1;
++#if (HAVE_SOCKET_CLOEXEC_PATCH)
++    unsigned         skip_socket_leak_check:1;
++#endif
+ 
+     unsigned         cancelable:1;
+ 
+diff --git a/src/event/ngx_event_accept.c b/src/event/ngx_event_accept.c
+index 77563709..5827b9d0 100644
+--- a/src/event/ngx_event_accept.c
++++ b/src/event/ngx_event_accept.c
+@@ -62,7 +62,9 @@ ngx_event_accept(ngx_event_t *ev)
+ 
+ #if (NGX_HAVE_ACCEPT4)
+         if (use_accept4) {
+-            s = accept4(lc->fd, &sa.sockaddr, &socklen, SOCK_NONBLOCK);
++            s = accept4(lc->fd, &sa.sockaddr, &socklen,
++                        SOCK_NONBLOCK | SOCK_CLOEXEC);
++
+         } else {
+             s = accept(lc->fd, &sa.sockaddr, &socklen);
+         }
+@@ -202,6 +204,16 @@ ngx_event_accept(ngx_event_t *ev)
+                     ngx_close_accepted_connection(c);
+                     return;
+                 }
++
++#if (NGX_HAVE_FD_CLOEXEC)
++                if (ngx_cloexec(s) == -1) {
++                    ngx_log_error(NGX_LOG_ALERT, ev->log, ngx_socket_errno,
++                                  ngx_cloexec_n " failed");
++                    ngx_close_accepted_connection(c);
++                    return;
++                }
++#endif
++
+             }
+         }
+ 
+diff --git a/src/event/ngx_event_connect.c b/src/event/ngx_event_connect.c
+index c5bb8068..cf33b1d2 100644
+--- a/src/event/ngx_event_connect.c
++++ b/src/event/ngx_event_connect.c
+@@ -38,8 +38,15 @@ ngx_event_connect_peer(ngx_peer_connection_t *pc)
+ 
+     type = (pc->type ? pc->type : SOCK_STREAM);
+ 
++#if (NGX_HAVE_SOCKET_CLOEXEC)
++    s = ngx_socket(pc->sockaddr->sa_family, type | SOCK_CLOEXEC, 0);
++
++#else
+     s = ngx_socket(pc->sockaddr->sa_family, type, 0);
+ 
++#endif
++
++
+     ngx_log_debug2(NGX_LOG_DEBUG_EVENT, pc->log, 0, "%s socket %d",
+                    (type == SOCK_STREAM) ? "stream" : "dgram", s);
+ 
+@@ -80,6 +87,15 @@ ngx_event_connect_peer(ngx_peer_connection_t *pc)
+         goto failed;
+     }
+ 
++#if (NGX_HAVE_FD_CLOEXEC)
++    if (ngx_cloexec(s) == -1) {
++        ngx_log_error(NGX_LOG_ALERT, pc->log, ngx_socket_errno,
++                      ngx_cloexec_n " failed");
++
++        goto failed;
++    }
++#endif
++
+     if (pc->local) {
+ 
+ #if (NGX_HAVE_TRANSPARENT_PROXY)
+diff --git a/src/os/unix/ngx_process_cycle.c b/src/os/unix/ngx_process_cycle.c
+index c4376a5..48e8fa8 100644
+--- a/src/os/unix/ngx_process_cycle.c
++++ b/src/os/unix/ngx_process_cycle.c
+@@ -960,6 +1029,9 @@ ngx_worker_process_exit(ngx_cycle_t *cycle)
+         for (i = 0; i < cycle->connection_n; i++) {
+             if (c[i].fd != -1
+                 && c[i].read
++#if (HAVE_SOCKET_CLOEXEC_PATCH)
++                && !c[i].read->skip_socket_leak_check
++#endif
+                 && !c[i].read->accept
+                 && !c[i].read->channel
+                 && !c[i].read->resolver)
+diff --git a/src/os/unix/ngx_socket.h b/src/os/unix/ngx_socket.h
+index fcc51533..d1eebf47 100644
+--- a/src/os/unix/ngx_socket.h
++++ b/src/os/unix/ngx_socket.h
+@@ -38,6 +38,17 @@ int ngx_blocking(ngx_socket_t s);
+ 
+ #endif
+ 
++#if (NGX_HAVE_FD_CLOEXEC)
++
++#define ngx_cloexec(s)      fcntl(s, F_SETFD, FD_CLOEXEC)
++#define ngx_cloexec_n       "fcntl(FD_CLOEXEC)"
++
++/* at least FD_CLOEXEC is required to ensure connection fd is closed
++ * after execve */
++#define HAVE_SOCKET_CLOEXEC_PATCH  1
++
++#endif
++
+ int ngx_tcp_nopush(ngx_socket_t s);
+ int ngx_tcp_push(ngx_socket_t s);
+ 
diff --git a/images/nginx-1.25/rootfs/patches/31_nginx-1.25.3-reuseport_close_unused_fds.patch b/images/nginx-1.25/rootfs/patches/31_nginx-1.25.3-reuseport_close_unused_fds.patch
new file mode 100644
index 000000000..ff4a36fd2
--- /dev/null
+++ b/images/nginx-1.25/rootfs/patches/31_nginx-1.25.3-reuseport_close_unused_fds.patch
@@ -0,0 +1,38 @@
+diff --git a/src/core/ngx_connection.c b/src/core/ngx_connection.c
+--- a/src/core/ngx_connection.c
++++ b/src/core/ngx_connection.c
+@@ -1118,6 +1118,12 @@ ngx_close_listening_sockets(ngx_cycle_t *cycle)
+     ls = cycle->listening.elts;
+     for (i = 0; i < cycle->listening.nelts; i++) {
+ 
++#if (NGX_HAVE_REUSEPORT)
++        if (ls[i].fd == (ngx_socket_t) -1) {
++            continue;
++        }
++#endif
++
+         c = ls[i].connection;
+ 
+         if (c) {
+diff --git a/src/event/ngx_event.c b/src/event/ngx_event.c
+--- a/src/event/ngx_event.c
++++ b/src/event/ngx_event.c
+@@ -775,6 +775,18 @@ ngx_event_process_init(ngx_cycle_t *cycle)
+ 
+ #if (NGX_HAVE_REUSEPORT)
+         if (ls[i].reuseport && ls[i].worker != ngx_worker) {
++            ngx_log_debug2(NGX_LOG_DEBUG_CORE, cycle->log, 0,
++                           "closing unused fd:%d listening on %V",
++                           ls[i].fd, &ls[i].addr_text);
++
++            if (ngx_close_socket(ls[i].fd) == -1) {
++                ngx_log_error(NGX_LOG_EMERG, cycle->log, ngx_socket_errno,
++                              ngx_close_socket_n " %V failed",
++                              &ls[i].addr_text);
++            }
++
++            ls[i].fd = (ngx_socket_t) -1;
++
+             continue;
+         }
+ #endif

From 773590f79191639d340df82dd64ebe149ede5fa2 Mon Sep 17 00:00:00 2001
From: Olivier Wenger <14903492+owngr@users.noreply.github.com>
Date: Tue, 2 Jul 2024 17:47:59 +0200
Subject: [PATCH 1331/1641] bump alpine version to 3.20 to custom-error-pages
 (#11530)

---
 images/custom-error-pages/rootfs/Dockerfile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index 1529e63f7..345f92ba3 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -14,7 +14,7 @@
 
 ARG GOLANG_VERSION
 
-FROM golang:${GOLANG_VERSION}-alpine3.18 as builder
+FROM golang:${GOLANG_VERSION}-alpine3.20 as builder
 
 RUN apk update \
     && apk upgrade && apk add git
@@ -37,4 +37,4 @@ COPY --from=builder /go/src/k8s.io/ingress-nginx/images/custom-error-pages/www /
 COPY --from=builder /go/src/k8s.io/ingress-nginx/images/custom-error-pages/etc /etc
 USER nonroot:nonroot
 
-CMD ["/nginx-errors"]
\ No newline at end of file
+CMD ["/nginx-errors"]

From b90dd919e08e46c1959ab8f74ea01ca055dedcb0 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Wed, 3 Jul 2024 00:02:00 +0800
Subject: [PATCH 1332/1641] trigger build for NGINX-1.25 v0.0.8 (#11533)

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 images/nginx-1.25/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx-1.25/TAG b/images/nginx-1.25/TAG
index 04eddb26b..3ce186fb7 100644
--- a/images/nginx-1.25/TAG
+++ b/images/nginx-1.25/TAG
@@ -1 +1 @@
-v0.0.7
\ No newline at end of file
+v0.0.8

From d34ed895cb8171a45b0c1705efb189d6362bf9dc Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Wed, 3 Jul 2024 01:18:34 +0800
Subject: [PATCH 1333/1641] bump NGINX_BASE to v0.0.8

Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>
---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index 4d2c4917f..040092e86 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx-1.25:v0.0.6@sha256:b3e027ab191eb9461a9bcf25092eabb1d547cba164992dbd722c1aa2b4a936ee
+registry.k8s.io/ingress-nginx/nginx-1.25:v0.0.8@sha256:6e390eaf084615b7b1e88cf4ae4dc19efc42a516a2fbd8ec95f2cfc5efde8f22

From 809142c89ca0a4cdcfa926b50a051e0b2bf7fb22 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 3 Jul 2024 12:04:16 -0400
Subject: [PATCH 1334/1641] correct the 1.30 version

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/ci.yaml     | 8 ++++----
 .github/workflows/images.yaml | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index b7e79a5f8..50b095ff8 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -235,7 +235,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30]
+        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30.0]
 
     steps:
       - name: Checkout
@@ -286,7 +286,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     strategy:
       matrix:
-        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30]
+        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30.0]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
@@ -300,7 +300,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     strategy: 
       matrix:
-        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30]
+        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30.0]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
@@ -315,7 +315,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     strategy:
       matrix:
-        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30]
+        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30.0]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 4aed94772..ec0f1af78 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -141,7 +141,7 @@ jobs:
       (needs.changes.outputs.kube-webhook-certgen == 'true')
     strategy:
       matrix:
-        k8s: [v1.26.14, v1.27.11, v1.28.7, v1.29.2]
+        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30.0]
     steps:
     - name: Checkout
       uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7

From 21d6a773d1f25c9ce5ba1b2f634c7623b76e7166 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 3 Jul 2024 13:59:01 -0400
Subject: [PATCH 1335/1641] tag new test runner image with new nginx base 0.0.8

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/test-runner/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/TAG b/images/test-runner/TAG
index 8ce995b80..a92e82754 100644
--- a/images/test-runner/TAG
+++ b/images/test-runner/TAG
@@ -1 +1 @@
-v0.0.3
\ No newline at end of file
+v0.0.4
\ No newline at end of file

From 84b8270bd6ec4205f3a5947c36d2a52fad35e1ad Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 3 Jul 2024 14:05:23 -0400
Subject: [PATCH 1336/1641] update test runner go base to 3.20

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/test-runner/rootfs/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 7128bcf70..2ed5f0cfe 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -15,7 +15,7 @@ ARG BASE_IMAGE
 ARG GOLANG_VERSION
 ARG ETCD_VERSION
 
-FROM golang:${GOLANG_VERSION}-alpine3.18 as GO
+FROM golang:${GOLANG_VERSION}-alpine3.20 as GO
 FROM registry.k8s.io/etcd:${ETCD_VERSION} as etcd
 
 FROM ${BASE_IMAGE}

From e434652fe31314ae898b47c082b989c6c61f90b6 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 3 Jul 2024 14:32:49 -0400
Subject: [PATCH 1337/1641] Update .github/workflows/ci.yaml

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 50b095ff8..fcfe144f8 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -298,7 +298,7 @@ jobs:
       - build
     if: |
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
-    strategy: 
+    strategy:
       matrix:
         k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30.0]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml

From 60ea35c447de7e0535821ab254ce49584ab2da0b Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 3 Jul 2024 17:19:14 -0400
Subject: [PATCH 1338/1641] update test runner to latest build (#11547)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 build/run-in-docker.sh     | 2 +-
 test/e2e-image/Makefile    | 2 +-
 test/e2e/run-chart-test.sh | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 8af3c81b6..b3a0c2df1 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240404-436df3e4@sha256:6bcba53b14d396177414e01f20e9111f1c009ac3b476a9b7668bb98d12bd5e85}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240703-195ce186@sha256:98db2302f2a548d1b0748cb4d0a381995de761e4324fef3b8296004337a9b581}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index daba2b674..4d516da41 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240404-436df3e4@sha256:6bcba53b14d396177414e01f20e9111f1c009ac3b476a9b7668bb98d12bd5e85"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240703-195ce186@sha256:98db2302f2a548d1b0748cb4d0a381995de761e4324fef3b8296004337a9b581"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 4b5c6eae0..75686adbe 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -109,7 +109,7 @@ docker run --rm --interactive --network host \
     --volume $KUBECONFIG:/root/.kube/config \
     --volume "${DIR}/../../":/workdir \
     --workdir /workdir \
-    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240404-436df3e4@sha256:6bcba53b14d396177414e01f20e9111f1c009ac3b476a9b7668bb98d12bd5e85 \
+    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240703-195ce186@sha256:98db2302f2a548d1b0748cb4d0a381995de761e4324fef3b8296004337a9b581 \
         ct install \
         --charts charts/ingress-nginx \
         --helm-extra-args "--timeout 60s"

From 1dfb73a0df439a8e1c53b716d57ed6940c00fdc4 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Jul 2024 04:54:11 -0700
Subject: [PATCH 1339/1641] Bump the all group with 4 updates (#11570)

Bumps the all group with 4 updates: [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action), [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action), [actions/upload-artifact](https://github.com/actions/upload-artifact) and [actions/download-artifact](https://github.com/actions/download-artifact).


Updates `docker/setup-qemu-action` from 3.0.0 to 3.1.0
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](https://github.com/docker/setup-qemu-action/compare/68827325e0b33c7199eb31dd4e31fbe9023e06e3...5927c834f5b4fdf503fca6f4c7eccda82949e1ee)

Updates `docker/setup-buildx-action` from 3.3.0 to 3.4.0
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/d70bba72b1f3fd22344832f00baa16ece964efeb...4fd812986e6c8c2a69e18311145f9371337f27d4)

Updates `actions/upload-artifact` from 4.3.3 to 4.3.4
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/65462800fd760344b1a7b4382951275a0abb4808...0b2256b8c012f0828dc542b3febcab082c67f72b)

Updates `actions/download-artifact` from 4.1.7 to 4.1.8
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/65a9edc5881444af0b9093a5e628f2fe47ea3b2e...fa0a91b85d4f404e444e00e005971372dc801d16)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml              | 8 ++++----
 .github/workflows/images.yaml          | 4 ++--
 .github/workflows/scorecards.yml       | 2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml | 4 ++--
 4 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index fcfe144f8..6c94d4b09 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -120,11 +120,11 @@ jobs:
           check-latest: true
 
       - name: Set up QEMU
-        uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
+        uses: docker/setup-qemu-action@5927c834f5b4fdf503fca6f4c7eccda82949e1ee # v3.1.0
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@d70bba72b1f3fd22344832f00baa16ece964efeb # v3.3.0
+        uses: docker/setup-buildx-action@4fd812986e6c8c2a69e18311145f9371337f27d4 # v3.4.0
         with:
           version: latest
 
@@ -163,7 +163,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
+        uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
         with:
           name: docker.tar.gz
           path: docker.tar.gz
@@ -248,7 +248,7 @@ jobs:
           check-latest: true
 
       - name: cache
-        uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e # v4.1.7
+        uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
         with:
           name: docker.tar.gz
 
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index ec0f1af78..b656b1484 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -197,10 +197,10 @@ jobs:
       - name: Checkout
         uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
       - name: Set up QEMU
-        uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0
+        uses: docker/setup-qemu-action@5927c834f5b4fdf503fca6f4c7eccda82949e1ee # v3.1.0
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@d70bba72b1f3fd22344832f00baa16ece964efeb # v3.3.0
+        uses: docker/setup-buildx-action@4fd812986e6c8c2a69e18311145f9371337f27d4 # v3.4.0
         with:
           version: latest
           platforms: ${{ env.PLATFORMS }}
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 8d5678417..5a5ff0e82 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
+        uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
         with:
           name: SARIF file
           path: results.sarif
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index fda6f1937..114e1a45f 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -23,7 +23,7 @@ jobs:
         uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
       - name: cache
-        uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e # v4.1.7
+        uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
         with:
           name: docker.tar.gz
 
@@ -50,7 +50,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports ${{ inputs.variation }}
-        uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
+        uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}

From c6a481763e8edd271b335762bf98036b285a1952 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Jul 2024 04:56:22 -0700
Subject: [PATCH 1340/1641] Bump google.golang.org/grpc from 1.64.0 to 1.65.0
 (#11571)

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.64.0 to 1.65.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.64.0...v1.65.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 6aad2d95e..7b0ff92b5 100644
--- a/go.mod
+++ b/go.mod
@@ -29,7 +29,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.24.0
 	golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f
-	google.golang.org/grpc v1.64.0
+	google.golang.org/grpc v1.65.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -117,8 +117,8 @@ require (
 	golang.org/x/text v0.16.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20240429193739-8cf5692501f6 // indirect
-	google.golang.org/protobuf v1.34.0 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20240528184218-531527333157 // indirect
+	google.golang.org/protobuf v1.34.1 // indirect
 	gopkg.in/evanphx/json-patch.v5 v5.9.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index ba08826f4..c47777351 100644
--- a/go.sum
+++ b/go.sum
@@ -1803,8 +1803,8 @@ google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234015-3fc162c6f38a/go.
 google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234030-28d5490b6b19/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20230526203410-71b5a4ffd15e/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240429193739-8cf5692501f6 h1:DujSIu+2tC9Ht0aPNA7jgj23Iq8Ewi5sgkQ++wdvonE=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240429193739-8cf5692501f6/go.mod h1:WtryC6hu0hhx87FDGxWCDptyssuo68sk10vYjF+T9fY=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240528184218-531527333157 h1:Zy9XzmMEflZ/MAaA7vNcoebnRAld7FsPW1EeBB7V0m8=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240528184218-531527333157/go.mod h1:EfXuqaE1J41VCDicxHzUDm+8rk+7ZdXzHV0IhO/I6s0=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
@@ -1846,8 +1846,8 @@ google.golang.org/grpc v1.52.0/go.mod h1:pu6fVzoFb+NBYNAvQL08ic+lvB2IojljRYuun5v
 google.golang.org/grpc v1.53.0/go.mod h1:OnIrk0ipVdj4N5d9IUoFUx72/VlD7+jUsHwZgwSMQpw=
 google.golang.org/grpc v1.54.0/go.mod h1:PUSEXI6iWghWaB6lXM4knEgpJNu2qUcKfDtNci3EC2g=
 google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8=
-google.golang.org/grpc v1.64.0 h1:KH3VH9y/MgNQg1dE7b3XfVK0GsPSIzJwdF617gUSbvY=
-google.golang.org/grpc v1.64.0/go.mod h1:oxjF8E3FBnjp+/gVFYdWacaLDx9na1aqy9oovLpxQYg=
+google.golang.org/grpc v1.65.0 h1:bs/cUb4lp1G5iImFFd3u5ixQzweKizoZJAwBNLR42lc=
+google.golang.org/grpc v1.65.0/go.mod h1:WgYC2ypjlB0EiQi6wdKixMqukr6lBc0Vo+oOgjrM5ZQ=
 google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
@@ -1871,8 +1871,8 @@ google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqw
 google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 google.golang.org/protobuf v1.32.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
 google.golang.org/protobuf v1.33.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
-google.golang.org/protobuf v1.34.0 h1:Qo/qEd2RZPCf2nKuorzksSknv0d3ERwp1vFG38gSmH4=
-google.golang.org/protobuf v1.34.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
+google.golang.org/protobuf v1.34.1 h1:9ddQBjfCyZPOHPUiPxpYESBLc+T8P3E+Vo4IbKZgFWg=
+google.golang.org/protobuf v1.34.1/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=

From dbe499437e179ca6160ccb06eca5ebbf3e99efba Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 8 Jul 2024 09:35:50 +0200
Subject: [PATCH 1341/1641] Mage: Implement static check recommendations.

---
 magefiles/steps/release.go | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/magefiles/steps/release.go b/magefiles/steps/release.go
index 4cb8b40bd..b6d46336a 100644
--- a/magefiles/steps/release.go
+++ b/magefiles/steps/release.go
@@ -74,7 +74,7 @@ func (Release) NewReleaseFromOld(version, oldversion string) {
 func (Release) E2EDocs() {
 	e2edocs, err := utils.GenerateE2EDocs()
 	utils.CheckIfError(err, "error on template")
-	err = os.WriteFile("docs/e2e-tests.md", []byte(e2edocs), 644)
+	err = os.WriteFile("docs/e2e-tests.md", []byte(e2edocs), 0644)
 	utils.CheckIfError(err, "Could not write new e2e test file ")
 }
 
@@ -158,7 +158,7 @@ func updateIndexMD(old, new string) error {
 	utils.CheckIfError(err, "Could not read INDEX_DOCS file %s", INDEX_DOCS)
 	datString := string(data)
 	datString = strings.Replace(datString, old, new, -1)
-	err = os.WriteFile(INDEX_DOCS, []byte(datString), 644)
+	err = os.WriteFile(INDEX_DOCS, []byte(datString), 0644)
 	if err != nil {
 		utils.ErrorF("Could not write new %s %s", INDEX_DOCS, err)
 		return err
@@ -255,7 +255,7 @@ func makeReleaseNotes(newVersion, oldVersion string) (*utils.ReleaseNote, error)
 
 	// the newControllerVersion should match the latest tag
 	if newControllerVersion != allControllerTags[0] {
-		return nil, errors.New(fmt.Sprintf("Generating release new version %s didnt match the current latest tag %s", newControllerVersion, allControllerTags[0]))
+		return nil, fmt.Errorf("generating release new version %s didnt match the current latest tag %s", newControllerVersion, allControllerTags[0])
 	}
 	// previous version
 	newReleaseNotes.PreviousControllerVersion = allControllerTags[1]
@@ -272,8 +272,8 @@ func makeReleaseNotes(newVersion, oldVersion string) (*utils.ReleaseNote, error)
 	var allUpdates []string
 	var depUpdates []string
 	var helmUpdates []string
-	prRegex := regexp.MustCompile("\\(#\\d+\\)")
-	depBot := regexp.MustCompile("^(\\w){1,10} Bump ")
+	prRegex := regexp.MustCompile(`\(#\d+\)`)
+	depBot := regexp.MustCompile(`^(\w){1,10} Bump `)
 	helmRegex := regexp.MustCompile("helm|chart")
 	for i, s := range commits {
 		// matches on PR
@@ -322,13 +322,13 @@ func makeReleaseNotes(newVersion, oldVersion string) (*utils.ReleaseNote, error)
 	controllerDigest := utils.FindImageDigest(data, "controller", newVersion)
 	if len(controllerDigest) == 0 {
 		utils.ErrorF("Controller Digest could not be found")
-		return nil, errors.New("Controller digest could not be found")
+		return nil, errors.New("controller digest could not be found")
 	}
 
 	controllerChrootDigest := utils.FindImageDigest(data, "controller-chroot", newVersion)
 	if len(controllerChrootDigest) == 0 {
 		utils.ErrorF("Controller Chroot Digest could not be found")
-		return nil, errors.New("Controller Chroot digest could not be found")
+		return nil, errors.New("controller chroot digest could not be found")
 	}
 
 	utils.Debug("Latest Controller Digest %v", controllerDigest)

From 2d67ec293526470a9f91bdc3794834670f5f44c7 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 8 Jul 2024 11:04:34 +0200
Subject: [PATCH 1342/1641] Mage: Stop mutating release notes.

---
 magefiles/steps/helm.go | 25 +++++++++++++------------
 1 file changed, 13 insertions(+), 12 deletions(-)

diff --git a/magefiles/steps/helm.go b/magefiles/steps/helm.go
index b53283f78..245f5e1c0 100644
--- a/magefiles/steps/helm.go
+++ b/magefiles/steps/helm.go
@@ -18,9 +18,7 @@ package steps
 
 import (
 	"bytes"
-	"fmt"
 	"os"
-	"strings"
 
 	semver "github.com/blang/semver/v4"
 	"github.com/helm/helm/pkg/chartutil"
@@ -104,18 +102,21 @@ func updateVersion(version string) {
 	utils.CheckIfError(err, "HELM Saving new Chart")
 }
 
-func updateChartReleaseNotes(releasesNotes []string) {
-	utils.Info("HELM Updating the Chart Release notes")
+func updateChartReleaseNotes(releaseNotes []string) {
+	utils.Info("HELM Updating chart release notes")
 	chart, err := chartutil.LoadChartfile(HelmChartPath)
-	utils.CheckIfError(err, "HELM Could not Load Chart to update release notes %s", HelmChartPath)
-	for i := range releasesNotes {
-		releasesNotes[i] = fmt.Sprintf("- %q", releasesNotes[i])
-	}
-	releaseNoteString := strings.Join(releasesNotes, "\n")
-	utils.Info("HELM Release note string %s", releaseNoteString)
-	chart.Annotations["artifacthub.io/changes"] = releaseNoteString
+	utils.CheckIfError(err, "HELM Failed to load chart manifest: %s", HelmChartPath)
+
+	releaseNotesBytes, err := yaml.Marshal(releaseNotes)
+	utils.CheckIfError(err, "HELM Failed to marshal release notes")
+
+	releaseNotesString := string(releaseNotesBytes)
+	utils.Info("HELM Chart release notes:\n%s", releaseNotesString)
+	chart.Annotations["artifacthub.io/changes"] = releaseNotesString
+
+	utils.Info("HELM Saving chart release notes")
 	err = chartutil.SaveChartfile(HelmChartPath, chart)
-	utils.CheckIfError(err, "HELM Saving updated release notes for Chart")
+	utils.CheckIfError(err, "HELM Failed to save chart manifest: %s", HelmChartPath)
 }
 
 // UpdateChartValue Updates the Helm ChartValue

From 76172046d3a41295969727db19d49f1f17b785f0 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 8 Jul 2024 06:56:22 -0700
Subject: [PATCH 1343/1641] Bump golang.org/x/crypto from 0.24.0 to 0.25.0
 (#11572)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.24.0 to 0.25.0.
- [Commits](https://github.com/golang/crypto/compare/v0.24.0...v0.25.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 7b0ff92b5..2d1146003 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/stretchr/testify v1.9.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.24.0
+	golang.org/x/crypto v0.25.0
 	golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f
 	google.golang.org/grpc v1.65.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
@@ -112,8 +112,8 @@ require (
 	golang.org/x/net v0.25.0 // indirect
 	golang.org/x/oauth2 v0.20.0 // indirect
 	golang.org/x/sync v0.7.0 // indirect
-	golang.org/x/sys v0.21.0 // indirect
-	golang.org/x/term v0.21.0 // indirect
+	golang.org/x/sys v0.22.0 // indirect
+	golang.org/x/term v0.22.0 // indirect
 	golang.org/x/text v0.16.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d // indirect
diff --git a/go.sum b/go.sum
index c47777351..d008949af 100644
--- a/go.sum
+++ b/go.sum
@@ -1165,8 +1165,8 @@ golang.org/x/crypto v0.16.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq
 golang.org/x/crypto v0.18.0/go.mod h1:R0j02AL6hcrfOiy9T4ZYp/rcWeMxM3L6QYxlOuEG1mg=
 golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU=
 golang.org/x/crypto v0.21.0/go.mod h1:0BP7YvVV9gBbVKyeTG0Gyn+gZm94bibOW5BjDEYAOMs=
-golang.org/x/crypto v0.24.0 h1:mnl8DM0o513X8fdIkmyFE/5hTYxbwYOjDS/+rK6qpRI=
-golang.org/x/crypto v0.24.0/go.mod h1:Z1PMYSOR5nyMcyAVAIQSKCDwalqy85Aqn1x3Ws4L5DM=
+golang.org/x/crypto v0.25.0 h1:ypSNr+bnYL2YhwoMt2zPxHFmbAN1KZs/njMG3hxUp30=
+golang.org/x/crypto v0.25.0/go.mod h1:T+wALwcMOSE0kXgUAnPAHqTLW+XHgcELELW8VaDgm/M=
 golang.org/x/exp v0.0.0-20180321215751-8460e604b9de/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20180807140117-3d87b88a115f/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
@@ -1459,8 +1459,8 @@ golang.org/x/sys v0.15.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.16.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.18.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.21.0 h1:rF+pYz3DAGSQAxAu1CbC7catZg4ebC4UIeIhKxBZvws=
-golang.org/x/sys v0.21.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.22.0 h1:RI27ohtqKCnwULzJLqkv897zojh5/DwS/ENaMzUOaWI=
+golang.org/x/sys v0.22.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
@@ -1477,8 +1477,8 @@ golang.org/x/term v0.15.0/go.mod h1:BDl952bC7+uMoWR75FIrCDx79TPU9oHkTZ9yRbYOrX0=
 golang.org/x/term v0.16.0/go.mod h1:yn7UURbUtPyrVJPGPq404EukNFxcm/foM+bV/bfcDsY=
 golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk=
 golang.org/x/term v0.18.0/go.mod h1:ILwASektA3OnRv7amZ1xhE/KTR+u50pbXfZ03+6Nx58=
-golang.org/x/term v0.21.0 h1:WVXCp+/EBEHOj53Rvu+7KiT/iElMrO8ACK16SMZ3jaA=
-golang.org/x/term v0.21.0/go.mod h1:ooXLefLobQVslOqselCNF4SxFAaoS6KujMbsGzSDmX0=
+golang.org/x/term v0.22.0 h1:BbsgPEJULsl2fV/AT3v15Mjva5yXKQDyKf+TbDz7QJk=
+golang.org/x/term v0.22.0/go.mod h1:F3qCibpT5AMpCRfhfT53vVJwhLtIVHhB9XDjfFvnMI4=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=

From e564e831c5f3e1b60766c0e20cbb4fc522dbffc3 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 8 Jul 2024 20:10:59 +0200
Subject: [PATCH 1344/1641] Images: Bump `kube-webhook-certgen`. (#11578)

---
 images/kube-webhook-certgen/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/kube-webhook-certgen/TAG b/images/kube-webhook-certgen/TAG
index 66d62a800..c432e90f2 100644
--- a/images/kube-webhook-certgen/TAG
+++ b/images/kube-webhook-certgen/TAG
@@ -1 +1 @@
-v1.4.1
+v1.4.2

From b6fa279c0cdfe46103dd356c02da4a400cb44ea7 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 8 Jul 2024 14:27:03 -0400
Subject: [PATCH 1345/1641] Release Notes 1.11.0 and chart 4.11.0

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 README.md                                     |  14 +-
 changelog/controller-1.11.0.md                | 164 ++++++++++++++++++
 charts/ingress-nginx/Chart.yaml               |  23 ++-
 charts/ingress-nginx/README.md                |   8 +-
 .../changelog/helm-chart-4.11.0.md            |  18 ++
 charts/ingress-nginx/values.yaml              |   6 +-
 deploy/static/provider/aws/deploy.yaml        |  45 ++---
 .../aws/nlb-with-tls-termination/deploy.yaml  |  45 ++---
 deploy/static/provider/baremetal/deploy.yaml  |  45 ++---
 deploy/static/provider/cloud/deploy.yaml      |  45 ++---
 deploy/static/provider/do/deploy.yaml         |  45 ++---
 deploy/static/provider/exoscale/deploy.yaml   |  45 ++---
 deploy/static/provider/kind/deploy.yaml       |  45 ++---
 deploy/static/provider/oracle/deploy.yaml     |  45 ++---
 deploy/static/provider/scw/deploy.yaml        |  45 ++---
 docs/e2e-tests.md                             |  24 ++-
 go.work.sum                                   |   4 +
 17 files changed, 441 insertions(+), 225 deletions(-)
 create mode 100644 changelog/controller-1.11.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.11.0.md

diff --git a/README.md b/README.md
index af6f52d00..4822ca5e9 100644
--- a/README.md
+++ b/README.md
@@ -37,14 +37,16 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 
 | Supported | Ingress-NGINX version | k8s supported version         | Alpine Version | Nginx Version | Helm Chart Version |
 | :-------: | --------------------- | ----------------------------- | -------------- | ------------- | ------------------ |
+|    🔄    | **v1.11.0**     | 1.30, 1.29, 1.28, 1.27, 1.26 | 3.20.0         | 1.25.5        | 4.11.*            |
+|    🔄    | **v1.10.2**     | 1.30, 1.29, 1.28, 1.27, 1.26 | 3.20.0         | 1.25.5        | 4.10.2*            |
 |    🔄    | **v1.10.1**     | 1.30, 1.29, 1.28, 1.27, 1.26 | 3.19.1         | 1.25.3        | 4.10.1*            |
 |    🔄    | **v1.10.0**     | 1.29, 1.28, 1.27, 1.26        | 3.19.1         | 1.25.3        | 4.10.0*            |
-|    🔄    | **v1.9.6**      | 1.29, 1.28, 1.27, 1.26, 1.25  | 3.19.0         | 1.21.6        | 4.9.1*             |
-|    🔄    | **v1.9.5**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.9.0*             |
-|    🔄    | **v1.9.4**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.3              |
-|    🔄    | **v1.9.3**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*              |
-|    🔄    | **v1.9.1**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*              |
-|    🔄    | **v1.9.0**      | 1.28, 1.27, 1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*              |
+|        | **v1.9.6**      | 1.29, 1.28, 1.27, 1.26, 1.25  | 3.19.0         | 1.21.6        | 4.9.1*             |
+|        | **v1.9.5**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.9.0*             |
+|        | **v1.9.4**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.3              |
+|        | **v1.9.3**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*              |
+|        | **v1.9.1**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*              |
+|        | **v1.9.0**      | 1.28, 1.27, 1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*              |
 |          | v1.8.4                | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
 |          | v1.7.1                | 1.27, 1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
 |          | v1.6.4                | 1.26, 1.25, 1.24, 1.23        | 3.17.0         | 1.21.6        | 4.5.*              |
diff --git a/changelog/controller-1.11.0.md b/changelog/controller-1.11.0.md
new file mode 100644
index 000000000..34330c441
--- /dev/null
+++ b/changelog/controller-1.11.0.md
@@ -0,0 +1,164 @@
+# Changelog
+
+### controller-v1.11.0
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.11.0@sha256:f16dfed1c94d216b65e5dcb7508ab46148641a99649c5a700749db6f01a7039e
+
+### All changes:
+
+* update test runner to latest build (#11558)
+* add k8s 1.30 to ci build (#11554)
+* update test runner go base to 3.20 (#11552)
+* tag new test runner image with new nginx base 0.0.8 (#11551)
+* bump NGINX_BASE to v0.0.8 (#11544)
+* add ssl patches to nginx-1.25 image for coroutines to work in lua client hello and cert ssl blocks (#11535)
+* trigger build for NGINX-1.25 v0.0.8 (#11539)
+* bump alpine version to 3.20 to custom-error-pages (#11538)
+* fix: Ensure changes in MatchCN annotation are detected (#11529)
+* Docs: Add information about HTTP/3 support. (#11513)
+* Docs: Specify `ingressClass` for multi-controller setup. (#11493)
+* Docs: Improve default certificate usage. (#11504)
+* Upgrade OWASP_MODSECURITY_CRS_VERSION 3.3.5 to 4.4.0 and update docs (#11511)
+* docs: Update Ingress-NGINX v1.10.1 compatibility with Kubernetes v1.30 (#11495)
+* Update getting-started.md with new prerequisites (#11486)
+* [feature] bump nginx to 1.25.5 and add http3 module (#11470)
+* Fix boolean configuration (#11483)
+* Chores: Align security contacts & chart maintainers to actual owners. (#11465)
+* CI: Bump forgotten Ginkgo versions. (#11467)
+* Tests: Replace deprecated `grpc.Dial` by `grpc.NewClient`. (#11462)
+* Owners: Promote Gacko to admin. (#11463)
+* Chart: Make pod affinity templatable. (#11453)
+* fixed fastcgi userguide (#11454)
+* Remove unnecessary space character (#11434)
+* upgrade to alpine 3.20 (#11428)
+* fix for docs issue 11432 (#11433)
+* Update index.md (#11437)
+* update golang to 1.22.4 (#11427)
+* Chart: Fix `IngressClass` annotations. (#11416)
+* Chart: Make admission webhook patch job RBAC configurable. (#11376)
+* Merge pull request #11277 from strongjz/chart-1.10.1 (#11415)
+* Chart: Remove `controller.enableWorkerSerialReloads`. (#11400)
+* Adapt dashboards for Grafana 11 compatibility (#11399)
+* Rename variable to fix typo (#11395)
+* Fix helm install on cloud provider admonition block (#11394)
+* edited helm-install tips (#11393)
+* added info for aws helm install (#11390)
+* added multiplecontrollers-howto to faq (#11389)
+* removed tlsv1 & tlsv1.1 (#11343)
+* feat: Add grpc timeouts annotations (#11258)
+* sfix position of options (#11379)
+* add workflow to helm release and update ct for branch (#11378)
+* Accept user defined annotations in IngressClass (#11362)
+* Docs: Remove opentracing and zipkin from docs (#11361)
+* Allow configuring nginx worker reload behaviour, to prevent multiple concurrent worker reloads which can lead to high resource usage and OOMKill (#10884)
+* chore(deps): group update k8s.io packages to v0.30.0 (#11344)
+* Fix function name in comment (#11296)
+* fix path in file changed detected message (#11271)
+* chore: fix function names in comment (#11280)
+* fix: update kube version requirement to 1.21 (#11275)
+* release helm chart from release branch (#11276)
+* update k8s version to latest kind release (#11240)
+* feat: add annotation to allow to add custom response headers (#9742)
+* remove _ssl_expire_time_seconds metric by identifier (#9706)
+* update post submit helm ci and clean up (#11220)
+* Chart: Add unit tests for default backend & topology spread constraints. (#11218)
+* sort default backend hpa metrics (#11215)
+* updated certgen image shatag (#11214)
+* feature(default_backend): topologySpreadConstraints on default backend (#11197)
+* bumped certgeimage tag (#11212)
+* changed testrunner image sha (#11207)
+* updated baseimage & deleted a useless file (#11208)
+* Chart: Make `controller.config` templatable. (#11181)
+* chunking related faq update (#11196)
+* bump ginkgo to 2-17-1 in testrunner (#11202)
+* Owners: Promote Gacko to `ingress-nginx-maintainers` & `ingress-nginx-reviewers`. (#11165)
+* Fix-semver (#11193)
+* refactor helm ci tests part I (#11178)
+* fixes brotli build issue (#10484)
+* bump ginkgo to v2.17.1 (#11177)
+* Proposal: e2e tests for regex patterns (#11174)
+* Controller: Make Leader Election TTL configurable. (#11142)
+* Chores: Remove recently added whitespaces. (#11156)
+* Add GRPC Buffer Size to the Configmap (#11155)
+* fix geoip2 configuration docs (#11150)
+* feature(geoip2_autoreload): Enable GeoIP2 auto_reload config  (#11079)
+* Chart: Add IngressClass aliases. (#11109)
+* Fix typos in OTel doc (#11081)
+* Chart: Render `controller.ingressClassResource.parameters` natively. (#11108)
+* Fix admission controller logging of `admissionTime` and `testedConfigurationSize` (#11089)
+* Chart: Align HPA & KEDA conditions. (#11110)
+* Chart: Add Gacko to maintainers. Again. (#11107)
+* Chart: Improve IngressClass documentation. (#11104)
+* Chart: Deploy `PodDisruptionBudget` with KEDA. (#11032)
+* Undo #11062 since it breaks the nginx config (#11082)
+* [mTLS] Fix acme verfication when mTLS and Client CN verification is enabled (#11062)
+* golangci-lint update, ci cleanup, group dependabot updates (#11071)
+* bump golang (#11070)
+* feature(leader_election): flag to disable leader election feature on controller (#11064)
+* docs: update the 404 link to FAQ (#11069)
+* Update README.md (#11065)
+* quotes around numbers fort ports definitions (#11052)
+
+### Dependency updates:
+
+* Bump the all group with 2 updates (#11523)
+* Bump k8s.io/klog/v2 from 2.130.0 to 2.130.1 in the all group (#11499)
+* Bump aquasecurity/trivy-action from 0.22.0 to 0.23.0 in the all group (#11497)
+* Bump k8s.io/klog/v2 from 2.120.1 to 2.130.0 (#11475)
+* Bump the all group with 3 updates (#11474)
+* Bump the all group with 2 updates (#11476)
+* Bump golang.org/x/crypto from 0.23.0 to 0.24.0 (#11442)
+* Bump the all group with 3 updates (#11443)
+* Bump sigs.k8s.io/controller-runtime in the all group (#11440)
+* Bump goreleaser/goreleaser-action from 5.1.0 to 6.0.0 (#11444)
+* Bump github.com/prometheus/common from 0.53.0 to 0.54.0 (#11441)
+* Bump the all group with 2 updates (#11419)
+* Bump github.com/onsi/ginkgo/v2 from 2.17.2 to 2.19.0 (#11418)
+* Bump google.golang.org/grpc from 1.63.2 to 1.64.0 (#11417)
+* Bump the all group across 1 directory with 3 updates (#11384)
+* Bump the all group across 1 directory with 6 updates (#11383)
+* Bump golang.org/x/crypto from 0.22.0 to 0.23.0 (#11357)
+* Bump golangci/golangci-lint-action from 5.3.0 to 6.0.1 (#11355)
+* Bump the all group with 3 updates (#11348)
+* Bump Kubernetes version on images (#11346)
+* Bump sigs.k8s.io/controller-runtime from 0.17.3 to 0.18.1 (#11345)
+* Bump golangci/golangci-lint-action from 4.0.0 to 5.0.0 (#11328)
+* Bump the all group with 4 updates (#11327)
+* Bump k8s.io/component-base from 0.29.3 to 0.30.0 (#11291)
+* Bump github.com/prometheus/common from 0.52.3 to 0.53.0 (#11290)
+* Bump golang.org/x/net from 0.22.0 to 0.23.0 (#11282)
+* Bump golang.org/x/net in /images/kube-webhook-certgen/rootfs (#11283)
+* Bump the all group with 2 updates (#11261)
+* Bump azure/setup-helm from 3.5 to 4 (#11263)
+* Bump actions/add-to-project from 1.0.0 to 1.0.1 in the all group (#11262)
+* Bump google.golang.org/grpc from 1.63.0 to 1.63.2 (#11237)
+* Bump google.golang.org/grpc from 1.62.1 to 1.63.0 (#11228)
+* Bump github.com/prometheus/common from 0.51.1 to 0.52.2 (#11227)
+* Bump golang.org/x/crypto from 0.21.0 to 0.22.0 (#11229)
+* Bump github.com/prometheus/client_model in the all group (#11226)
+* Bump the all group with 3 updates (#11225)
+* Bump the all group with 2 updates (#11183)
+* Bump actions/add-to-project from 0.6.1 to 1.0.0 (#11184)
+* Bump the all group with 3 updates (#11157)
+* Bump github.com/prometheus/common from 0.50.0 to 0.51.1 (#11159)
+* Bump the all group with 4 updates (#11133)
+* Bump the all group with 1 update (#11134)
+* Bump google.golang.org/protobuf in /images/custom-error-pages/rootfs (#11119)
+* Bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in /magefiles (#11121)
+* Bump google.golang.org/protobuf in /images/kube-webhook-certgen/rootfs (#11120)
+* Bump github.com/onsi/ginkgo/v2 from 2.15.0 to 2.16.0 (#11076)
+* Bump the all group with 1 update (#11073)
+* Bump the all group with 1 update (#11072)
+* Bump github.com/prometheus/common from 0.49.0 to 0.50.0 (#11075)
+* Bump actions/download-artifact from 4.1.2 to 4.1.4 (#11059)
+* Bump github.com/stretchr/testify from 1.8.4 to 1.9.0 (#11055)
+* Bump docker/setup-buildx-action from 3.0.0 to 3.1.0 (#11057)
+* Bump github.com/prometheus/common from 0.48.0 to 0.49.0 (#11056)
+* Bump github/codeql-action from 3.24.5 to 3.24.6 (#11060)
+* Bump aquasecurity/trivy-action from 0.17.0 to 0.18.0 (#11058)
+* Bump dorny/paths-filter from 3.0.1 to 3.0.2 (#11061)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.10.2...controller-v1.11.0
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index d7600d2b4..a07ab2a2a 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,18 +1,25 @@
 annotations:
-  artifacthub.io/changes: |-
-    - "update post submit helm ci and clean up (#11221)"
-    - "refactor helm ci tests part I (#11188)"
-    - "Update Ingress-Nginx version controller-v1.10.1"
+  artifacthub.io/changes: |
+    - 'Chores: Align security contacts & chart maintainers to actual owners. (#11465)'
+    - 'Merge pull request #11277 from strongjz/chart-1.10.1 (#11415)'
+    - Fix helm install on cloud provider admonition block (#11394)
+    - edited helm-install tips (#11393)
+    - added info for aws helm install (#11390)
+    - add workflow to helm release and update ct for branch (#11378)
+    - release helm chart from release branch (#11276)
+    - update post submit helm ci and clean up (#11220)
+    - refactor helm ci tests part I (#11178)
+    - Update Ingress-Nginx version controller-v1.11.0
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.10.1
+appVersion: 1.11.0
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 home: https://github.com/kubernetes/ingress-nginx
 icon: https://upload.wikimedia.org/wikipedia/commons/thumb/c/c5/Nginx_logo.svg/500px-Nginx_logo.svg.png
 keywords:
-  - ingress
-  - nginx
+- ingress
+- nginx
 kubeVersion: '>=1.21.0-0'
 maintainers:
 - name: cpanato
@@ -24,4 +31,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.10.1
+version: 4.11.0
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index e35da750a..691ae7f4e 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.10.1](https://img.shields.io/badge/Version-4.10.1-informational?style=flat-square) ![AppVersion: 1.10.1](https://img.shields.io/badge/AppVersion-1.10.1-informational?style=flat-square)
+![Version: 4.11.0](https://img.shields.io/badge/Version-4.11.0-informational?style=flat-square) ![AppVersion: 1.11.0](https://img.shields.io/badge/AppVersion-1.11.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -325,8 +325,8 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `false` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e"` |  |
-| controller.image.digestChroot | string | `"sha256:c155954116b397163c88afcb3252462771bd7867017e8a17623e83601bab7ac7"` |  |
+| controller.image.digest | string | `"sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39"` |  |
+| controller.image.digestChroot | string | `"sha256:f16dfed1c94d216b65e5dcb7508ab46148641a99649c5a700749db6f01a7039e"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.readOnlyRootFilesystem | bool | `false` |  |
@@ -334,7 +334,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.image.runAsNonRoot | bool | `true` |  |
 | controller.image.runAsUser | int | `101` |  |
 | controller.image.seccompProfile.type | string | `"RuntimeDefault"` |  |
-| controller.image.tag | string | `"v1.10.1"` |  |
+| controller.image.tag | string | `"v1.11.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource | object | `{"aliases":[],"annotations":{},"controllerValue":"k8s.io/ingress-nginx","default":false,"enabled":true,"name":"nginx","parameters":{}}` | This section refers to the creation of the IngressClass resource. IngressClasses are immutable and cannot be changed after creation. We do not support namespaced IngressClasses, yet, so a ClusterRole and a ClusterRoleBinding is required. |
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.11.0.md b/charts/ingress-nginx/changelog/helm-chart-4.11.0.md
new file mode 100644
index 000000000..64108c04e
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.11.0.md
@@ -0,0 +1,18 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.11.0
+
+* Chores: Align security contacts & chart maintainers to actual owners. (#11465)
+* Merge pull request #11277 from strongjz/chart-1.10.1 (#11415)
+* Fix helm install on cloud provider admonition block (#11394)
+* edited helm-install tips (#11393)
+* added info for aws helm install (#11390)
+* add workflow to helm release and update ct for branch (#11378)
+* release helm chart from release branch (#11276)
+* update post submit helm ci and clean up (#11220)
+* refactor helm ci tests part I (#11178)
+* Update Ingress-Nginx version controller-v1.11.0
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.10.2...helm-chart-4.11.0
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index c662cd2bb..cd204a474 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -26,9 +26,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.10.1"
-    digest: sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
-    digestChroot: sha256:c155954116b397163c88afcb3252462771bd7867017e8a17623e83601bab7ac7
+    tag: "v1.11.0"
+    digest: sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
+    digestChroot: sha256:f16dfed1c94d216b65e5dcb7508ab46148641a99649c5a700749db6f01a7039e
     pullPolicy: IfNotPresent
     runAsNonRoot: true
     # www-data -> uid 101
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 4b24f36c3..b5c5828be 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,11 +15,12 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
@@ -27,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +345,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +378,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +401,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
     spec:
       containers:
       - args:
@@ -447,7 +448,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -574,7 +575,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +586,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -627,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -640,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 4f37dd89b..cb2d99501 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,11 +15,12 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
@@ -27,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +336,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +354,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +387,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +410,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -431,7 +432,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
     spec:
       containers:
       - args:
@@ -456,7 +457,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -535,7 +536,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -546,7 +547,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -586,7 +587,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -597,7 +598,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -639,7 +640,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -652,7 +653,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 6e2ab95b7..f82211575 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,11 +15,12 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
@@ -27,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +341,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
     spec:
       containers:
       - args:
@@ -441,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -568,7 +569,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -579,7 +580,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -621,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -634,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 6164992df..8ab0c2814 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,11 +15,12 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
@@ -27,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +341,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +374,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +397,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +419,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
     spec:
       containers:
       - args:
@@ -443,7 +444,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -519,7 +520,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -530,7 +531,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -570,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -581,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -623,7 +624,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -636,7 +637,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 53fef52bb..3e5860435 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,11 +15,12 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
@@ -27,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
     spec:
       containers:
       - args:
@@ -446,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -522,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -533,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -573,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -626,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -639,7 +640,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 26c28258a..8b2e5538a 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,11 +15,12 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
@@ -27,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +383,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +406,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +424,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
     spec:
       containers:
       - args:
@@ -448,7 +449,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -528,7 +529,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -539,7 +540,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -579,7 +580,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -590,7 +591,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -632,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -645,7 +646,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index d65e2cf39..67e27489c 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,11 +15,12 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
@@ -27,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +341,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
     spec:
       containers:
       - args:
@@ -443,7 +444,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -529,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -540,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -580,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -591,7 +592,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -633,7 +634,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -646,7 +647,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index fd66689e6..652d4cdfd 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,11 +15,12 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
@@ -27,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +345,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +378,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +401,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
     spec:
       containers:
       - args:
@@ -447,7 +448,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -574,7 +575,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +586,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -627,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -640,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index fbd7a330e..cf455cede 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,11 +15,12 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
 apiVersion: v1
+automountServiceAccountToken: true
 kind: ServiceAccount
 metadata:
   labels:
@@ -27,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -39,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -129,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -148,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -230,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -249,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -269,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -288,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -307,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
     spec:
       containers:
       - args:
@@ -446,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.10.1@sha256:e24f39d3eed6bcc239a56f20098878845f62baa34b9f2be2fd2c38ce9fb0f29e
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -522,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -533,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -573,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -584,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.10.1
+        app.kubernetes.io/version: 1.11.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -626,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -639,7 +640,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.10.1
+    app.kubernetes.io/version: 1.11.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 66664291b..ca64b98c1 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -80,7 +80,8 @@ Do not try to edit it manually.
 - [should validate auth-tls-verify-client](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L208)
 - [should return 403 using auth-tls-match-cn with no matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L267)
 - [should return 200 using auth-tls-match-cn with matching CN from client](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L296)
-- [should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L325)
+- [should reload the nginx config when auth-tls-match-cn is updated](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L325)
+- [should return 200 using auth-tls-match-cn where atleast one of the regex options matches CN from client](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L368)
 ### [backend-protocol](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L29)
 - [should set backend protocol to https:// and use proxy_pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L36)
 - [should set backend protocol to https:// and use proxy_pass with lowercase annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/backendprotocol.go#L51)
@@ -148,6 +149,10 @@ Do not try to edit it manually.
 - [should allow correct origins - missing subdomain + origin with wildcard origin and correct origin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L540)
 - [should allow - missing origins (should allow all origins)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L576)
 - [should allow correct origin but not others - cors allow origin annotations contain trailing comma](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L636)
+### [custom-headers-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/customheaders.go#L33)
+- [should return status code 200 when no custom-headers is configured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/customheaders.go#L40)
+- [should return status code 503 when custom-headers is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/customheaders.go#L57)
+- [more_set_headers 'My-Custom-Header' '42';](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/customheaders.go#L78)
 ### [custom-http-errors](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/customhttperrors.go#L34)
 - [configures Nginx correctly](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/customhttperrors.go#L41)
 ### [default-backend](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/default_backend.go#L29)
@@ -170,11 +175,13 @@ Do not try to edit it manually.
 - [should redirect from www HTTPS to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fromtowwwredirect.go#L64)
 ### [annotation-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/globalratelimit.go#L30)
 - [generates correct configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/globalratelimit.go#L38)
-### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L40)
-- [should use grpc_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L43)
-- [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L68)
-- [authorization metadata should be overwritten by external auth response headers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L129)
-- [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L190)
+### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L45)
+- [should use grpc_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L48)
+- [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L71)
+- [authorization metadata should be overwritten by external auth response headers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L132)
+- [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L193)
+- [should return OK when request not exceed timeout](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L266)
+- [should return Error when request exceed timeout](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L309)
 ### [http2-push-preload](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/http2pushpreload.go#L27)
 - [enable the http2-push-preload directive](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/http2pushpreload.go#L34)
 ### [allowlist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/ipallowlist.go#L27)
@@ -275,6 +282,8 @@ Do not try to edit it manually.
 - [should return a self generated SSL certificate](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/defaultbackend/ssl.go#L29)
 ### [[Default Backend] change default settings](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/defaultbackend/with_hosts.go#L30)
 - [should apply the annotation to the default backend](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/defaultbackend/with_hosts.go#L38)
+### [[Disable Leader] Routing works when leader election was disabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/disableleaderelection/disable_leader.go#L28)
+- [should create multiple ingress routings rules when leader election has disabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/disableleaderelection/disable_leader.go#L35)
 ### [[Endpointslices] long service name](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/endpointslices/longname.go#L29)
 - [should return 200 when service name has max allowed number of characters 63](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/endpointslices/longname.go#L38)
 ### [[TopologyHints] topology aware routing](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/endpointslices/topology.go#L34)
@@ -392,6 +401,7 @@ Do not try to edit it manually.
 ### [Geoip2](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/geoip2.go#L36)
 - [should include geoip2 line in config when enabled and db file exists](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/geoip2.go#L45)
 - [should only allow requests from specific countries](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/geoip2.go#L69)
+- [should up and running nginx controller using autoreload flag](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/geoip2.go#L128)
 ### [[Security] block-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_access_block.go#L28)
 - [should block CIDRs defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_access_block.go#L38)
 - [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_access_block.go#L55)
@@ -409,6 +419,8 @@ Do not try to edit it manually.
 - [should have worker_rlimit_nofile option and be independent on amount of worker processes](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_options.go#L37)
 ### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/globalratelimit.go#L30)
 - [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/globalratelimit.go#L38)
+### [GRPC](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/grpc.go#L39)
+- [should set the correct GRPC Buffer Size](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/grpc.go#L42)
 ### [gzip](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L30)
 - [should be disabled by default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L40)
 - [should be enabled with default settings](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L56)
diff --git a/go.work.sum b/go.work.sum
index e047983dd..47e10bce6 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -676,6 +676,7 @@ github.com/go-playground/universal-translator v0.18.1/go.mod h1:xekY+UJKNuX9WP91
 github.com/go-playground/validator/v10 v10.14.0 h1:vgvQWe3XCz3gIeFDm/HnTIbj6UGmg/+t63MyGU2n5js=
 github.com/go-playground/validator/v10 v10.14.0/go.mod h1:9iXMNT7sEkjXb0I+enO7QXmzG6QCsPWY4zveKFVRSyU=
 github.com/go-stack/stack v1.8.0 h1:5SgMzNM5HxrEjV0ww2lTmX6E2Izsfxas4+YHWRs3Lsk=
+github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572/go.mod h1:9Pwr4B2jHnOSGXyyzV8ROjYa2ojvAY6HCGYYfMoC3Ls=
 github.com/gobwas/httphead v0.1.0 h1:exrUm0f4YX0L7EBwZHuCF4GDp8aJfVeBrlLQrs6NqWU=
 github.com/gobwas/httphead v0.1.0/go.mod h1:O/RXo79gxV8G+RqlR/otEwx4Q36zl9rqC5u12GKvMCM=
 github.com/gobwas/pool v0.2.1 h1:xfeeEhW7pwmX8nuLVlqbzVc7udMDrwetjEv+TZIz1og=
@@ -897,6 +898,7 @@ golang.org/x/arch v0.3.0 h1:02VY4/ZcO/gBOH6PUaoiptASxtXU10jazRCP865E97k=
 golang.org/x/arch v0.3.0/go.mod h1:5om86z9Hs0C8fWVUuoMHwpExlXzs5Tkyp9hOrfG7pp8=
 golang.org/x/crypto v0.0.0-20220722155217-630584e8d5aa/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.12.0/go.mod h1:NF0Gs7EO5K4qLn+Ylc+fih8BSTeIjAP05siRnAh98yw=
+golang.org/x/crypto v0.23.0/go.mod h1:CKFgDieR+mRhux2Lsu27y0fO304Db0wZe70UKqHu0v8=
 golang.org/x/image v0.0.0-20220302094943-723b81ca9867 h1:TcHcE0vrmgzNH1v3ppjcMGbhG5+9fMuvOmUYwNEF4q4=
 golang.org/x/lint v0.0.0-20210508222113-6edffad5e616 h1:VLliZ0d+/avPrXXH+OakdXhpJuEoBZuwh1m2j7U6Iug=
 golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028 h1:4+4C/Iv2U4fMZBiMCc98MG1In4gJY5YRhtpDNeDeHWs=
@@ -905,6 +907,7 @@ golang.org/x/mod v0.14.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
 golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
 golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/net v0.18.0/go.mod h1:/czyP5RqHAH4odGYxBJ1qz0+CE5WZ+2j1YgoEo8F2jQ=
+golang.org/x/net v0.23.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
 golang.org/x/net v0.24.0/go.mod h1:2Q7sJY5mzlzWjKtYUEXSlBWCdyaioyXzRB2RtU8KVE8=
 golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI=
 golang.org/x/oauth2 v0.11.0/go.mod h1:LdF7O/8bLR/qWK9DrpXmbHLTouvRHK0SgJl0GmDBchk=
@@ -924,6 +927,7 @@ golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
 golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM=
 golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
 golang.org/x/tools v0.16.1/go.mod h1:kYVVN6I1mBNoB1OX+noeBjbRk4IUEPa7JJ+TJMEooJ0=
+golang.org/x/tools v0.18.0/go.mod h1:GL7B4CwcLLeo59yx/9UWWuNOW1n3VZ4f5axWfML7Lcg=
 golang.org/x/tools v0.20.0/go.mod h1:WvitBU7JJf6A4jOdg4S1tviW9bhUxkgeCui/0JHctQg=
 golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2 h1:H2TDz8ibqkAF6YGhCdN3jS9O0/s90v0rJh3X/OLHEUk=
 golang.org/x/xerrors v0.0.0-20231012003039-104605ab7028/go.mod h1:NDW/Ps6MPRej6fsCIbMTohpP40sJ/P/vI1MoTEGwX90=

From cb2cdde10e81f7f425d804e681f347847706c7a6 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 9 Jul 2024 09:32:49 +0200
Subject: [PATCH 1346/1641] Repository: Add changelogs from `release-v1.10`.
 (#11587)

---
 changelog/controller-1.10.2.md                | 130 ++++++++++++++++++
 .../changelog/helm-chart-4.10.2.md            |  18 +++
 2 files changed, 148 insertions(+)
 create mode 100644 changelog/controller-1.10.2.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.10.2.md

diff --git a/changelog/controller-1.10.2.md b/changelog/controller-1.10.2.md
new file mode 100644
index 000000000..384768a24
--- /dev/null
+++ b/changelog/controller-1.10.2.md
@@ -0,0 +1,130 @@
+# Changelog
+
+### controller-v1.10.2
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.10.2@sha256:e3311b3d9671bc52d90572bcbfb7ee5b71c985d6d6cffd445c241f1e2703363c
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.10.2@sha256:c4395cba98f9721e3381d3c06e7994371bae20f5ab30e457cd7debe44a8c8c54
+
+### All changes:
+
+* update test runner to latest build (#11557)
+* add k8s 1.30 to ci build (#11553)
+* update test runner go base to 3.20 (#11550)
+* tag new test runner image with new nginx base 0.0.8 (#11549)
+* bump NGINX_BASE to v0.0.8 (#11543)
+* trigger build for NGINX-1.25 v0.0.8 (#11542)
+* Upgrade OWASP_MODSECURITY_CRS_VERSION 3.3.5 to 4.4.0 and update docs (#11548)
+* [feature] bump nginx to 1.25.5 and add http3 module (#11541)
+* add ssl patches to nginx-1.25 image for coroutines to work in lua client hello and cert ssl blocks (#11534)
+* bump alpine version to 3.20 to custom-error-pages (#11537)
+* fix: Ensure changes in MatchCN annotation are detected (#11528)
+* Docs: Add information about HTTP/3 support. (#11525)
+* Docs: Specify `ingressClass` for multi-controller setup. (#11520)
+* Docs: Improve default certificate usage. (#11519)
+* docs: Update Ingress-NGINX v1.10.1 compatibility with Kubernetes v1.30 (#11500)
+* Update getting-started.md with new prerequisites (#11487)
+* Fix boolean configuration (#11484)
+* Chores: Align security contacts & chart maintainers to actual owners. (#11480)
+* CI: Bump forgotten Ginkgo versions. (#11469)
+* Tests: Replace deprecated `grpc.Dial` by `grpc.NewClient`. (#11468)
+* Owners: Promote Gacko to admin. (#11464)
+* fixed fastcgi userguide (#11455)
+* Remove unnecessary space character (#11451)
+* fix for docs issue 11432 (#11446)
+* Update index.md (#11445)
+* upgrade to alpine 3.20 (#11438)
+* update golang to 1.22.4 (#11431)
+* Adapt dashboards for Grafana 11 compatibility (#11414)
+* Rename variable to fix typo (#11413)
+* Fix helm install on cloud provider admonition block (#11412)
+* edited helm-install tips (#11411)
+* added info for aws helm install (#11410)
+* added multiplecontrollers-howto to faq (#11409)
+* removed tlsv1 & tlsv1.1 (#11408)
+* Docs: Remove opentracing and zipkin from docs (#11405)
+* Go: Sync modules from `main`. (#11398)
+* add workflow to helm release and update ct for branch (#11317)
+* Merge pull request #11277 from strongjz/chart-1.10.1 (#11314)
+* Release Helm Chart on branch update (#11306)
+* Release controller 1.10.1 (#11298)
+* fix path in file changed detected message (#11286)
+* chore: fix function names in comment (#11281)
+* fix: update kube version requirement to 1.21 (#11279)
+* release helm chart from release branch (#11278)
+* start 1.10.1 build (#11246)
+* force nginx rebuild (#11245)
+* update k8s version to latest kind release (#11241)
+* remove _ssl_expire_time_seconds metric by identifier (#11239)
+* update post submit helm ci and clean up (#11221)
+* Chart: Add unit tests for default backend & topology spread constraints. (#11219)
+* sort default backend hpa metrics (#11217)
+* updated certgen image shatag (#11216)
+* changed testrunner image sha (#11211)
+* bumped certgeimage tag (#11213)
+* updated baseimage & deleted a useless file (#11209)
+* bump ginkgo to 2-17-1 in testrunner (#11204)
+* chunking related faq update (#11205)
+* Fix-semver (#11199)
+* refactor helm ci tests part I (#11188)
+* Proposal: e2e tests for regex patterns (#11185)
+* bump ginkgo to v2.17.1 (#11186)
+* fixes brotli build issue (#11187)
+* fix geoip2 configuration docs (#11151)
+* Fix typos in OTel doc (#11081) (#11129)
+* Chart: Render `controller.ingressClassResource.parameters` natively. (#11126)
+* Fix admission controller logging of `admissionTime` and `testedConfigurationSize` (#11114)
+* Chart: Align HPA & KEDA conditions. (#11113)
+* Chart: Improve IngressClass documentation. (#11111)
+* Chart: Add Gacko to maintainers. Again. (#11112)
+* Chart: Deploy `PodDisruptionBudget` with KEDA. (#11105)
+* Chores: Pick patches from main. (#11103)
+* Start the release of v1.10.0 (#11038)
+
+### Dependency updates:
+
+* Bump the all group with 2 updates (#11524)
+* Bump k8s.io/klog/v2 from 2.130.0 to 2.130.1 in the all group (#11521)
+* Bump aquasecurity/trivy-action from 0.22.0 to 0.23.0 in the all group (#11501)
+* Bump k8s.io/klog/v2 from 2.120.1 to 2.130.0 (#11479)
+* Bump the all group with 3 updates (#11478)
+* Bump the all group with 2 updates (#11477)
+* Bump golang.org/x/crypto from 0.23.0 to 0.24.0 (#11471)
+* Bump sigs.k8s.io/controller-runtime in the all group (#11449)
+* Bump github.com/prometheus/common from 0.53.0 to 0.54.0 (#11447)
+* Bump the all group with 3 updates (#11450)
+* Bump goreleaser/goreleaser-action from 5.1.0 to 6.0.0 (#11448)
+* Bump github.com/onsi/ginkgo/v2 from 2.17.2 to 2.19.0 (#11422)
+* Bump the all group with 2 updates (#11421)
+* Bump google.golang.org/grpc from 1.63.2 to 1.64.0 (#11423)
+* Bump the all group across 1 directory with 6 updates (#11407)
+* Bump golangci/golangci-lint-action from 5.3.0 to 6.0.1 (#11406)
+* Bump the all group with 3 updates (#11404)
+* Bump Kubernetes version on images (#11403)
+* Bump golangci/golangci-lint-action from 4.0.0 to 5.0.0 (#11402)
+* Bump the all group with 4 updates (#11380)
+* Bump k8s.io/component-base from 0.29.3 to 0.30.0 (#11301)
+* Bump github.com/prometheus/common from 0.52.3 to 0.53.0 (#11300)
+* Bump golang.org/x/net from 0.22.0 to 0.23.0 (#11285)
+* Bump golang.org/x/net in /images/kube-webhook-certgen/rootfs (#11284)
+* Bump the all group with 2 updates (#11266)
+* Bump azure/setup-helm from 3.5 to 4 (#11265)
+* Bump actions/add-to-project from 1.0.0 to 1.0.1 in the all group (#11264)
+* Bump google.golang.org/grpc from 1.63.0 to 1.63.2 (#11238)
+* Bump google.golang.org/grpc from 1.62.1 to 1.63.0 (#11234)
+* Bump github.com/prometheus/common from 0.51.1 to 0.52.2 (#11233)
+* Bump golang.org/x/crypto from 0.21.0 to 0.22.0 (#11232)
+* Bump github.com/prometheus/client_model in the all group (#11231)
+* Bump the all group with 3 updates (#11230)
+* Bump the all group with 2 updates (#11190)
+* Bump actions/add-to-project from 0.6.1 to 1.0.0 (#11189)
+* Bump the all group with 3 updates (#11166)
+* Bump github.com/prometheus/common from 0.50.0 to 0.51.1 (#11160)
+* Bump the all group with 4 updates (#11140)
+* Bump the all group with 1 update (#11136)
+* Bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in /magefiles (#11127)
+* Bump google.golang.org/protobuf in /images/custom-error-pages/rootfs (#11128)
+* Bump google.golang.org/protobuf in /images/kube-webhook-certgen/rootfs (#11122)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.10.1...controller-v1.10.2
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.10.2.md b/charts/ingress-nginx/changelog/helm-chart-4.10.2.md
new file mode 100644
index 000000000..399bd98d6
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.10.2.md
@@ -0,0 +1,18 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.10.2
+
+* Chores: Align security contacts & chart maintainers to actual owners. (#11480)
+* Fix helm install on cloud provider admonition block (#11412)
+* edited helm-install tips (#11411)
+* added info for aws helm install (#11410)
+* add workflow to helm release and update ct for branch (#11317)
+* Merge pull request #11277 from strongjz/chart-1.10.1 (#11314)
+* release helm chart from release branch (#11278)
+* update post submit helm ci and clean up (#11221)
+* refactor helm ci tests part I (#11188)
+* Update Ingress-Nginx version controller-v1.10.2
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.10.1...helm-chart-4.10.2

From 988ebd9a0fbe122c4409b3ba30f0d1dcb3c423d6 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 10 Jul 2024 01:34:47 +0200
Subject: [PATCH 1347/1641] README: Fix support matrix. (#11586)

---
 README.md | 32 ++++++++++++++++----------------
 1 file changed, 16 insertions(+), 16 deletions(-)

diff --git a/README.md b/README.md
index 4822ca5e9..57e237d63 100644
--- a/README.md
+++ b/README.md
@@ -37,22 +37,22 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 
 | Supported | Ingress-NGINX version | k8s supported version         | Alpine Version | Nginx Version | Helm Chart Version |
 | :-------: | --------------------- | ----------------------------- | -------------- | ------------- | ------------------ |
-|    🔄    | **v1.11.0**     | 1.30, 1.29, 1.28, 1.27, 1.26 | 3.20.0         | 1.25.5        | 4.11.*            |
-|    🔄    | **v1.10.2**     | 1.30, 1.29, 1.28, 1.27, 1.26 | 3.20.0         | 1.25.5        | 4.10.2*            |
-|    🔄    | **v1.10.1**     | 1.30, 1.29, 1.28, 1.27, 1.26 | 3.19.1         | 1.25.3        | 4.10.1*            |
-|    🔄    | **v1.10.0**     | 1.29, 1.28, 1.27, 1.26        | 3.19.1         | 1.25.3        | 4.10.0*            |
-|        | **v1.9.6**      | 1.29, 1.28, 1.27, 1.26, 1.25  | 3.19.0         | 1.21.6        | 4.9.1*             |
-|        | **v1.9.5**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.9.0*             |
-|        | **v1.9.4**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.3              |
-|        | **v1.9.3**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*              |
-|        | **v1.9.1**      | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*              |
-|        | **v1.9.0**      | 1.28, 1.27, 1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*              |
-|          | v1.8.4                | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
-|          | v1.7.1                | 1.27, 1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
-|          | v1.6.4                | 1.26, 1.25, 1.24, 1.23        | 3.17.0         | 1.21.6        | 4.5.*              |
-|          | v1.5.1                | 1.25, 1.24, 1.23              | 3.16.2         | 1.21.6        | 4.4.*              |
-|          | v1.4.0                | 1.25, 1.24, 1.23, 1.22        | 3.16.2         | 1.19.10†     | 4.3.0              |
-|          | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20  | 3.16.2         | 1.19.10†     | 4.2.5              |
+|    🔄     | **v1.11.0**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.11.0             |
+|    🔄     | **v1.10.2**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.10.2             |
+|    🔄     | **v1.10.1**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.19.1         | 1.25.3        | 4.10.1             |
+|    🔄     | **v1.10.0**           | 1.29, 1.28, 1.27, 1.26        | 3.19.1         | 1.25.3        | 4.10.0             |
+|           | v1.9.6                | 1.29, 1.28, 1.27, 1.26, 1.25  | 3.19.0         | 1.21.6        | 4.9.1              |
+|           | v1.9.5                | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.9.0              |
+|           | v1.9.4                | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.3              |
+|           | v1.9.3                | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*              |
+|           | v1.9.1                | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.*              |
+|           | v1.9.0                | 1.28, 1.27, 1.26, 1.25        | 3.18.2         | 1.21.6        | 4.8.*              |
+|           | v1.8.4                | 1.27, 1.26, 1.25, 1.24        | 3.18.2         | 1.21.6        | 4.7.*              |
+|           | v1.7.1                | 1.27, 1.26, 1.25, 1.24        | 3.17.2         | 1.21.6        | 4.6.*              |
+|           | v1.6.4                | 1.26, 1.25, 1.24, 1.23        | 3.17.0         | 1.21.6        | 4.5.*              |
+|           | v1.5.1                | 1.25, 1.24, 1.23              | 3.16.2         | 1.21.6        | 4.4.*              |
+|           | v1.4.0                | 1.25, 1.24, 1.23, 1.22        | 3.16.2         | 1.19.10†      | 4.3.0              |
+|           | v1.3.1                | 1.24, 1.23, 1.22, 1.21, 1.20  | 3.16.2         | 1.19.10†      | 4.2.5              |
 
 See [this article](https://kubernetes.io/blog/2021/07/26/update-with-ingress-nginx/) if you want upgrade to the stable
 Ingress API.

From 90fa3b9823d00462185b95024aeec402f9caa922 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 10 Jul 2024 19:30:30 -0400
Subject: [PATCH 1348/1641] revert module upgrade (#11594)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/nginx-1.25/TAG             | 2 +-
 images/nginx-1.25/rootfs/build.sh | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/images/nginx-1.25/TAG b/images/nginx-1.25/TAG
index 3ce186fb7..384942600 100644
--- a/images/nginx-1.25/TAG
+++ b/images/nginx-1.25/TAG
@@ -1 +1 @@
-v0.0.8
+v0.0.9
diff --git a/images/nginx-1.25/rootfs/build.sh b/images/nginx-1.25/rootfs/build.sh
index 1ebce8efc..1dad17f7d 100755
--- a/images/nginx-1.25/rootfs/build.sh
+++ b/images/nginx-1.25/rootfs/build.sh
@@ -44,8 +44,8 @@ export MODSECURITY_LIB_VERSION=v3.0.12
 # Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.5...v4.0/main
 export OWASP_MODSECURITY_CRS_VERSION=v4.4.0
 
-# Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/b5d1688ae722538ba4dc8a7ec08820a08abfb93d...master
-export LUA_NGX_VERSION=b5d1688ae722538ba4dc8a7ec08820a08abfb93d
+# Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.26``...master
+export LUA_NGX_VERSION=v0.10.26
 
 # Check for recent changes: https://github.com/openresty/stream-lua-nginx-module/compare/bea8a0c0de94cede71554f53818ac0267d675d63...master
 export LUA_STREAM_NGX_VERSION=bea8a0c0de94cede71554f53818ac0267d675d63

From a86ddb5f032d623713b0f1ade65c00115b101dc2 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 11 Jul 2024 14:59:05 +0200
Subject: [PATCH 1349/1641] Images: Bump `NGINX_BASE` to v0.0.9. (#11599)

---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index 040092e86..c1ce1be7a 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx-1.25:v0.0.8@sha256:6e390eaf084615b7b1e88cf4ae4dc19efc42a516a2fbd8ec95f2cfc5efde8f22
+registry.k8s.io/ingress-nginx/nginx-1.25:v0.0.9@sha256:62bbfe7fea7386a787a857ec211b9e7627599bb2a62587d077dfbe9347b0fedb

From cee3fb3b131b1bfdf6f0d0ed54cd36a190f4e7a0 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 11 Jul 2024 15:44:55 +0200
Subject: [PATCH 1350/1641] Images: Bump `test-runner`. (#11600)

---
 images/test-runner/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/TAG b/images/test-runner/TAG
index a92e82754..5c314e5a3 100644
--- a/images/test-runner/TAG
+++ b/images/test-runner/TAG
@@ -1 +1 @@
-v0.0.4
\ No newline at end of file
+v0.0.5

From 60bb8b351cca6779f129bcd7cb80bb86519a5daf Mon Sep 17 00:00:00 2001
From: apiwat-chantawibul <billiska@gmail.com>
Date: Fri, 12 Jul 2024 14:47:03 +0700
Subject: [PATCH 1351/1641] Fix indent in YAML for example pod (#11598)

---
 docs/user-guide/fcgi-services.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/user-guide/fcgi-services.md b/docs/user-guide/fcgi-services.md
index 836e9fbaa..9c222d9ad 100644
--- a/docs/user-guide/fcgi-services.md
+++ b/docs/user-guide/fcgi-services.md
@@ -21,8 +21,8 @@ apiVersion: v1
 kind: Pod
 metadata:
   name: example-app
-labels:
-  app: example-app
+  labels:
+    app: example-app
 spec:
   containers:
   - name: example-app

From 125ffd47b132fa7d18c4aa81501736ff89cc0676 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 15 Jul 2024 07:39:11 -0700
Subject: [PATCH 1352/1641] Bump the all group with 5 updates (#11611)

Bumps the all group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [actions/setup-go](https://github.com/actions/setup-go) | `5.0.1` | `5.0.2` |
| [actions/setup-python](https://github.com/actions/setup-python) | `5.1.0` | `5.1.1` |
| [actions/dependency-review-action](https://github.com/actions/dependency-review-action) | `4.3.3` | `4.3.4` |
| [github/codeql-action](https://github.com/github/codeql-action) | `3.25.11` | `3.25.12` |
| [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) | `0.23.0` | `0.24.0` |


Updates `actions/setup-go` from 5.0.1 to 5.0.2
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/cdcb36043654635271a94b9a6d1392de5bb323a7...0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32)

Updates `actions/setup-python` from 5.1.0 to 5.1.1
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/82c7e631bb3cdc910f68e0081d67478d79c6982d...39cd14951b08e74b54015e9e001cdefcf80e669f)

Updates `actions/dependency-review-action` from 4.3.3 to 4.3.4
- [Release notes](https://github.com/actions/dependency-review-action/releases)
- [Commits](https://github.com/actions/dependency-review-action/compare/72eb03d02c7872a771aacd928f3123ac62ad6d3a...5a2ce3f5b92ee19cbb1541a4984c76d921601d7c)

Updates `github/codeql-action` from 3.25.11 to 3.25.12
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/b611370bb5703a7efb587f9d136a52ea24c5c38c...4fa2a7953630fd2f3fb380f21be14ede0169dd4f)

Updates `aquasecurity/trivy-action` from 0.23.0 to 0.24.0
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/7c2007bcb556501da015201bcba5aa14069b74e2...6e7b7d1fd3e4fef0c5fa8cce1229c54b2c9bd0d8)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: actions/dependency-review-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 8 ++++----
 .github/workflows/depreview.yaml           | 2 +-
 .github/workflows/golangci-lint.yml        | 2 +-
 .github/workflows/images.yaml              | 2 +-
 .github/workflows/plugin.yaml              | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 4 ++--
 7 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 6c94d4b09..4ea32f9d6 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -84,7 +84,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
+        uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
@@ -114,7 +114,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
+        uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
         with:
           go-version: ${{ steps.golangversion.outputs.version }}
           check-latest: true
@@ -186,7 +186,7 @@ jobs:
       - name: Set up Helm
         uses: azure/setup-helm@fe7b79cd5ee1e45176fcad797de68ecaf3ca4814 # v4.2.0
 
-      - uses: actions/setup-python@82c7e631bb3cdc910f68e0081d67478d79c6982d # v5.1.0
+      - uses: actions/setup-python@39cd14951b08e74b54015e9e001cdefcf80e669f # v5.1.1
         with:
           python-version: '3.x'
 
@@ -242,7 +242,7 @@ jobs:
         uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
       - name: Setup Go
-        uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
+        uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
         with:
           go-version: ${{ needs.build.outputs.golangversion }}
           check-latest: true
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 572121886..913b995bd 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@72eb03d02c7872a771aacd928f3123ac62ad6d3a # v4.3.3
+        uses: actions/dependency-review-action@5a2ce3f5b92ee19cbb1541a4984c76d921601d7c # v4.3.4
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 9d91c68fb..b40eca1bb 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -22,7 +22,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
+        uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index b656b1484..61e9226df 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -151,7 +151,7 @@ jobs:
 
     - name: Set up Go
       id: go
-      uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
+      uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
       with:
         go-version: ${{ env.GOLANG_VERSION }}
         check-latest: true
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 3adccc5eb..63b8c19bf 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -20,7 +20,7 @@ jobs:
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
 
       - name: Set up Go
-        uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1
+        uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 5a5ff0e82..5615276ce 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@b611370bb5703a7efb587f9d136a52ea24c5c38c # v3.25.11
+        uses: github/codeql-action/upload-sarif@4fa2a7953630fd2f3fb380f21be14ede0169dd4f # v3.25.12
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index b23877d47..1d3d50102 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@7c2007bcb556501da015201bcba5aa14069b74e2 # v0.23.0
+        uses: aquasecurity/trivy-action@6e7b7d1fd3e4fef0c5fa8cce1229c54b2c9bd0d8 # v0.24.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@b611370bb5703a7efb587f9d136a52ea24c5c38c # v3.25.11
+        uses: github/codeql-action/upload-sarif@4fa2a7953630fd2f3fb380f21be14ede0169dd4f # v3.25.12
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From a6727d81e7cd510ac5fed4bb1773f9aefefe8fbe Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 16 Jul 2024 03:01:10 -0400
Subject: [PATCH 1353/1641] unskip the ocsp tests and update images to fix
 cfssl bug (#11606)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 go.work.sum                          | 4 ++++
 images/test-runner/rootfs/Dockerfile | 3 ++-
 test/e2e-image/Dockerfile            | 3 ++-
 test/e2e/settings/ocsp/ocsp.go       | 5 ++++-
 4 files changed, 12 insertions(+), 3 deletions(-)

diff --git a/go.work.sum b/go.work.sum
index 47e10bce6..612e89b48 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -1,3 +1,4 @@
+cel.dev/expr v0.15.0/go.mod h1:TRSuuV7DlVCE/uwv5QbAiW/v8l5O8C4eEPHeu7gf7Sg=
 cloud.google.com/go v0.110.2 h1:sdFPBr6xG9/wkBbfhmUz/JmZC7X6LavQgcrVINrKiVA=
 cloud.google.com/go v0.110.4/go.mod h1:+EYjdK8e5RME/VY/qLCAtuyALQ9q67dvuum8i+H5xsI=
 cloud.google.com/go v0.110.8/go.mod h1:Iz8AkXJf1qmxC3Oxoep8R1T36w8B92yU29PcBhHO5fk=
@@ -607,6 +608,7 @@ github.com/cncf/xds/go v0.0.0-20231109132714-523115ebc101/go.mod h1:eXthEFrGJvWH
 github.com/cncf/xds/go v0.0.0-20231128003011-0fa0005c9caa h1:jQCWAUqqlij9Pgj2i/PB79y4KOPYVyFYdROxgaCwdTQ=
 github.com/cncf/xds/go v0.0.0-20231128003011-0fa0005c9caa/go.mod h1:x/1Gn8zydmfq8dk6e9PdstVsDgu9RuyIIJqAaF//0IM=
 github.com/cncf/xds/go v0.0.0-20240318125728-8a4994d93e50/go.mod h1:5e1+Vvlzido69INQaVO6d87Qn543Xr6nooe9Kz7oBFM=
+github.com/cncf/xds/go v0.0.0-20240423153145-555b57ec207b/go.mod h1:W+zGtBO5Y1IgJhy4+A9GOqVhqLpfZi+vwmdNXUehLA8=
 github.com/containerd/console v1.0.3 h1:lIr7SlA5PxZyMV30bDW0MGbiOPXwc63yRuCP0ARubLw=
 github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
 github.com/coreos/go-oidc v2.2.1+incompatible h1:mh48q/BqXqgjVHpy2ZY7WnWAbenxRjsz9N1i1YxjHAk=
@@ -691,6 +693,7 @@ github.com/golang/freetype v0.0.0-20170609003504-e2365dfdc4a0 h1:DACJavvAHhabrF0
 github.com/golang/glog v1.1.2/go.mod h1:zR+okUeTbrL6EL3xHUDxZuEtGv04p5shwip1+mL/rLQ=
 github.com/golang/glog v1.2.0 h1:uCdmnmatrKCgMBlM4rMuJZWOkPDqdbZPnrMXDY4gI68=
 github.com/golang/glog v1.2.0/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
+github.com/golang/glog v1.2.1/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
 github.com/golang/mock v1.6.0 h1:ErTB+efbowRARo13NNdxyJji2egdxLGQhRaY+DUumQc=
 github.com/golang/snappy v0.0.4 h1:yAGX7huGHXlcLOEtBnF4w7FQwA26wojNCwOYAEhLjQM=
 github.com/google/btree v1.0.1/go.mod h1:xXMiIv4Fb/0kKde4SpL7qlzvu5cMJDRkFDxJfI9uaxA=
@@ -972,6 +975,7 @@ google.golang.org/genproto/googleapis/api v0.0.0-20240213162025-012b6fc9bca9/go.
 google.golang.org/genproto/googleapis/api v0.0.0-20240227224415-6ceb2ff114de h1:jFNzHPIeuzhdRwVhbZdiym9q0ory/xY3sA+v2wPg8I0=
 google.golang.org/genproto/googleapis/api v0.0.0-20240227224415-6ceb2ff114de/go.mod h1:5iCWqnniDlqZHrd3neWVTOwvh/v6s3232omMecelax8=
 google.golang.org/genproto/googleapis/api v0.0.0-20240318140521-94a12d6c2237/go.mod h1:Z5Iiy3jtmioajWHDGFk7CeugTyHtPvMHA4UTmUkyalE=
+google.golang.org/genproto/googleapis/api v0.0.0-20240528184218-531527333157/go.mod h1:99sLkeliLXfdj2J75X3Ho+rrVCaJze0uwN7zDDkjPVU=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc h1:g3hIDl0jRNd9PPTs2uBzYuaD5mQuwOkZY0vSc0LR32o=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231030173426-d783a09b4405/go.mod h1:GRUCuLdzVqZte8+Dl/D4N25yLzcGqqWaYkeVOwulFqw=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231212172506-995d672761c0/go.mod h1:guYXGPwC6jwxgWKW5Y405fKWOFNwlvUlUnzyp9i0uqo=
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 2ed5f0cfe..ff031182d 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -66,7 +66,8 @@ RUN apk update && apk upgrade && apk add --no-cache \
   openssl \
   cfssl@testing \
   tzdata \
-  libc6-compat
+  libc6-compat \ 
+  sqlite-dev 
 
 RUN go install -v github.com/onsi/ginkgo/v2/ginkgo@v${GINKGO_VERSION} \
     && go install golang.org/x/lint/golint@${GOLINT_VERSION}
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 0130ca09b..7bd7c9c1c 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -9,7 +9,8 @@ RUN apk update \
   bash \
   tzdata \
   libc6-compat \
-  openssl
+  openssl \
+  sqlite-dev
 
 COPY --from=BASE /go/bin/ginkgo /usr/local/bin/
 COPY --from=BASE /usr/local/bin/helm /usr/local/bin/
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index f6f106b06..21cda3008 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -47,12 +47,15 @@ var _ = framework.DescribeSetting("OCSP", func() {
 	})
 
 	ginkgo.It("should enable OCSP and contain stapling information in the connection", func() {
-		ginkgo.Skip("Skipped due to a bug with cfssl and Alpine")
 		host := "www.example.com"
 
 		f.UpdateNginxConfigMapData("enable-ocsp", "true")
 
 		err := prepareCertificates(f.Namespace)
+		if err != nil {
+			ginkgo.By(fmt.Sprintf("Prepare Certs error %v", err.Error()))
+		}
+
 		assert.Nil(ginkgo.GinkgoT(), err)
 
 		ing := framework.NewSingleIngressWithTLS(host, "/", host, []string{host}, f.Namespace, framework.EchoService, 80, nil)

From 6de184668c87710c761faa94632501fe53014a7b Mon Sep 17 00:00:00 2001
From: Christian <zeeZ@users.noreply.github.com>
Date: Tue, 16 Jul 2024 15:00:59 +0200
Subject: [PATCH 1354/1641] remove modsecurity coreruleset test files from
 nginx image (#11617)

---
 images/nginx-1.25/rootfs/build.sh | 2 +-
 images/nginx/rootfs/build.sh      | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/nginx-1.25/rootfs/build.sh b/images/nginx-1.25/rootfs/build.sh
index 1dad17f7d..f60a260f9 100755
--- a/images/nginx-1.25/rootfs/build.sh
+++ b/images/nginx-1.25/rootfs/build.sh
@@ -622,7 +622,7 @@ for dir in "${writeDirs[@]}"; do
 done
 
 rm -rf /etc/nginx/owasp-modsecurity-crs/.git
-rm -rf /etc/nginx/owasp-modsecurity-crs/util/regression-tests
+rm -rf /etc/nginx/owasp-modsecurity-crs/tests
 
 # remove .a files
 find /usr/local -name "*.a" -print | xargs /bin/rm
diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 98bb346fb..2f5f3c66f 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -735,7 +735,7 @@ for dir in "${writeDirs[@]}"; do
 done
 
 rm -rf /etc/nginx/owasp-modsecurity-crs/.git
-rm -rf /etc/nginx/owasp-modsecurity-crs/util/regression-tests
+rm -rf /etc/nginx/owasp-modsecurity-crs/tests
 
 # remove .a files
 find /usr/local -name "*.a" -print | xargs /bin/rm

From 4212af3143da50c16ce8c45994c02beea5cca1ed Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 16 Jul 2024 06:07:00 -0700
Subject: [PATCH 1355/1641] Bump github.com/prometheus/common from 0.54.0 to
 0.55.0 (#11522)

* Bump github.com/prometheus/common from 0.54.0 to 0.55.0

Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.54.0 to 0.55.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Changelog](https://github.com/prometheus/common/blob/main/RELEASE.md)
- [Commits](https://github.com/prometheus/common/compare/v0.54.0...v0.55.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* Go: Fix build.

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 go.mod                                        |   12 +-
 go.sum                                        | 1644 +----------------
 go.work.sum                                   |   43 +
 internal/ingress/metric/collectors/process.go |    2 +-
 4 files changed, 62 insertions(+), 1639 deletions(-)

diff --git a/go.mod b/go.mod
index 2d1146003..660cbd4d0 100644
--- a/go.mod
+++ b/go.mod
@@ -15,13 +15,13 @@ require (
 	github.com/mitchellh/hashstructure/v2 v2.0.2
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
-	github.com/ncabatoff/process-exporter v0.7.11
+	github.com/ncabatoff/process-exporter v0.8.2
 	github.com/onsi/ginkgo/v2 v2.19.0
 	github.com/opencontainers/runc v1.1.13
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.1
 	github.com/prometheus/client_model v0.6.1
-	github.com/prometheus/common v0.54.0
+	github.com/prometheus/common v0.55.0
 	github.com/spf13/cobra v1.8.1
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.9.0
@@ -100,7 +100,7 @@ require (
 	github.com/opencontainers/runtime-spec v1.2.0 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
-	github.com/prometheus/procfs v0.13.0 // indirect
+	github.com/prometheus/procfs v0.15.1 // indirect
 	github.com/sergi/go-diff v1.3.1 // indirect
 	github.com/sirupsen/logrus v1.9.3 // indirect
 	github.com/xlab/treeprint v1.2.0 // indirect
@@ -109,8 +109,8 @@ require (
 	go.starlark.net v0.0.0-20240123142251-f86470692795 // indirect
 	go.uber.org/zap v1.27.0 // indirect
 	golang.org/x/mod v0.17.0 // indirect
-	golang.org/x/net v0.25.0 // indirect
-	golang.org/x/oauth2 v0.20.0 // indirect
+	golang.org/x/net v0.26.0 // indirect
+	golang.org/x/oauth2 v0.21.0 // indirect
 	golang.org/x/sync v0.7.0 // indirect
 	golang.org/x/sys v0.22.0 // indirect
 	golang.org/x/term v0.22.0 // indirect
@@ -118,7 +118,7 @@ require (
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20240528184218-531527333157 // indirect
-	google.golang.org/protobuf v1.34.1 // indirect
+	google.golang.org/protobuf v1.34.2 // indirect
 	gopkg.in/evanphx/json-patch.v5 v5.9.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index d008949af..1fdca4a71 100644
--- a/go.sum
+++ b/go.sum
@@ -1,604 +1,5 @@
-cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
-cloud.google.com/go v0.34.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
-cloud.google.com/go v0.38.0/go.mod h1:990N+gfupTy94rShfmMCWGDn0LpTmnzTp2qbd1dvSRU=
-cloud.google.com/go v0.44.1/go.mod h1:iSa0KzasP4Uvy3f1mN/7PiObzGgflwredwwASm/v6AU=
-cloud.google.com/go v0.44.2/go.mod h1:60680Gw3Yr4ikxnPRS/oxxkBccT6SA1yMk63TGekxKY=
-cloud.google.com/go v0.44.3/go.mod h1:60680Gw3Yr4ikxnPRS/oxxkBccT6SA1yMk63TGekxKY=
-cloud.google.com/go v0.45.1/go.mod h1:RpBamKRgapWJb87xiFSdk4g1CME7QZg3uwTez+TSTjc=
-cloud.google.com/go v0.46.3/go.mod h1:a6bKKbmY7er1mI7TEI4lsAkts/mkhTSZK8w33B4RAg0=
-cloud.google.com/go v0.50.0/go.mod h1:r9sluTvynVuxRIOHXQEHMFffphuXHOMZMycpNR5e6To=
-cloud.google.com/go v0.52.0/go.mod h1:pXajvRH/6o3+F9jDHZWQ5PbGhn+o8w9qiu/CffaVdO4=
-cloud.google.com/go v0.53.0/go.mod h1:fp/UouUEsRkN6ryDKNW/Upv/JBKnv6WDthjR6+vze6M=
-cloud.google.com/go v0.54.0/go.mod h1:1rq2OEkV3YMf6n/9ZvGWI3GWw0VoqH/1x2nd8Is/bPc=
-cloud.google.com/go v0.56.0/go.mod h1:jr7tqZxxKOVYizybht9+26Z/gUq7tiRzu+ACVAMbKVk=
-cloud.google.com/go v0.57.0/go.mod h1:oXiQ6Rzq3RAkkY7N6t3TcE6jE+CIBBbA36lwQ1JyzZs=
-cloud.google.com/go v0.62.0/go.mod h1:jmCYTdRCQuc1PHIIJ/maLInMho30T/Y0M4hTdTShOYc=
-cloud.google.com/go v0.65.0/go.mod h1:O5N8zS7uWy9vkA9vayVHs65eM1ubvY4h553ofrNHObY=
-cloud.google.com/go v0.72.0/go.mod h1:M+5Vjvlc2wnp6tjzE102Dw08nGShTscUx2nZMufOKPI=
-cloud.google.com/go v0.74.0/go.mod h1:VV1xSbzvo+9QJOxLDaJfTjx5e+MePCpCWwvftOeQmWk=
-cloud.google.com/go v0.75.0/go.mod h1:VGuuCn7PG0dwsd5XPVm2Mm3wlh3EL55/79EKB6hlPTY=
-cloud.google.com/go v0.78.0/go.mod h1:QjdrLG0uq+YwhjoVOLsS1t7TW8fs36kLs4XO5R5ECHg=
-cloud.google.com/go v0.79.0/go.mod h1:3bzgcEeQlzbuEAYu4mrWhKqWjmpprinYgKJLgKHnbb8=
-cloud.google.com/go v0.81.0/go.mod h1:mk/AM35KwGk/Nm2YSeZbxXdrNK3KZOYHmLkOqC2V6E0=
-cloud.google.com/go v0.83.0/go.mod h1:Z7MJUsANfY0pYPdw0lbnivPx4/vhy/e2FEkSkF7vAVY=
-cloud.google.com/go v0.84.0/go.mod h1:RazrYuxIK6Kb7YrzzhPoLmCVzl7Sup4NrbKPg8KHSUM=
-cloud.google.com/go v0.87.0/go.mod h1:TpDYlFy7vuLzZMMZ+B6iRiELaY7z/gJPaqbMx6mlWcY=
-cloud.google.com/go v0.90.0/go.mod h1:kRX0mNRHe0e2rC6oNakvwQqzyDmg57xJ+SZU1eT2aDQ=
-cloud.google.com/go v0.93.3/go.mod h1:8utlLll2EF5XMAV15woO4lSbWQlk8rer9aLOfLh7+YI=
-cloud.google.com/go v0.94.1/go.mod h1:qAlAugsXlC+JWO+Bke5vCtc9ONxjQT3drlTTnAplMW4=
-cloud.google.com/go v0.97.0/go.mod h1:GF7l59pYBVlXQIBLx3a761cZ41F9bBH3JUlihCt2Udc=
-cloud.google.com/go v0.99.0/go.mod h1:w0Xx2nLzqWJPuozYQX+hFfCSI8WioryfRDzkoI/Y2ZA=
-cloud.google.com/go v0.100.1/go.mod h1:fs4QogzfH5n2pBXBP9vRiU+eCny7lD2vmFZy79Iuw1U=
-cloud.google.com/go v0.100.2/go.mod h1:4Xra9TjzAeYHrl5+oeLlzbM2k3mjVhZh4UqTZ//w99A=
-cloud.google.com/go v0.102.0/go.mod h1:oWcCzKlqJ5zgHQt9YsaeTY9KzIvjyy0ArmiBUgpQ+nc=
-cloud.google.com/go v0.102.1/go.mod h1:XZ77E9qnTEnrgEOvr4xzfdX5TRo7fB4T2F4O6+34hIU=
-cloud.google.com/go v0.104.0/go.mod h1:OO6xxXdJyvuJPcEPBLN9BJPD+jep5G1+2U5B5gkRYtA=
-cloud.google.com/go v0.105.0/go.mod h1:PrLgOJNe5nfE9UMxKxgXj4mD3voiP+YQ6gdt6KMFOKM=
-cloud.google.com/go v0.107.0/go.mod h1:wpc2eNrD7hXUTy8EKS10jkxpZBjASrORK7goS+3YX2I=
-cloud.google.com/go v0.110.0/go.mod h1:SJnCLqQ0FCFGSZMUNUf84MV3Aia54kn7pi8st7tMzaY=
-cloud.google.com/go v0.110.2/go.mod h1:k04UEeEtb6ZBRTv3dZz4CeJC3jKGxyhl0sAiVVquxiw=
-cloud.google.com/go/accessapproval v1.4.0/go.mod h1:zybIuC3KpDOvotz59lFe5qxRZx6C75OtwbisN56xYB4=
-cloud.google.com/go/accessapproval v1.5.0/go.mod h1:HFy3tuiGvMdcd/u+Cu5b9NkO1pEICJ46IR82PoUdplw=
-cloud.google.com/go/accessapproval v1.6.0/go.mod h1:R0EiYnwV5fsRFiKZkPHr6mwyk2wxUJ30nL4j2pcFY2E=
-cloud.google.com/go/accesscontextmanager v1.3.0/go.mod h1:TgCBehyr5gNMz7ZaH9xubp+CE8dkrszb4oK9CWyvD4o=
-cloud.google.com/go/accesscontextmanager v1.4.0/go.mod h1:/Kjh7BBu/Gh83sv+K60vN9QE5NJcd80sU33vIe2IFPE=
-cloud.google.com/go/accesscontextmanager v1.6.0/go.mod h1:8XCvZWfYw3K/ji0iVnp+6pu7huxoQTLmxAbVjbloTtM=
-cloud.google.com/go/accesscontextmanager v1.7.0/go.mod h1:CEGLewx8dwa33aDAZQujl7Dx+uYhS0eay198wB/VumQ=
-cloud.google.com/go/aiplatform v1.22.0/go.mod h1:ig5Nct50bZlzV6NvKaTwmplLLddFx0YReh9WfTO5jKw=
-cloud.google.com/go/aiplatform v1.24.0/go.mod h1:67UUvRBKG6GTayHKV8DBv2RtR1t93YRu5B1P3x99mYY=
-cloud.google.com/go/aiplatform v1.27.0/go.mod h1:Bvxqtl40l0WImSb04d0hXFU7gDOiq9jQmorivIiWcKg=
-cloud.google.com/go/aiplatform v1.35.0/go.mod h1:7MFT/vCaOyZT/4IIFfxH4ErVg/4ku6lKv3w0+tFTgXQ=
-cloud.google.com/go/aiplatform v1.36.1/go.mod h1:WTm12vJRPARNvJ+v6P52RDHCNe4AhvjcIZ/9/RRHy/k=
-cloud.google.com/go/aiplatform v1.37.0/go.mod h1:IU2Cv29Lv9oCn/9LkFiiuKfwrRTq+QQMbW+hPCxJGZw=
-cloud.google.com/go/analytics v0.11.0/go.mod h1:DjEWCu41bVbYcKyvlws9Er60YE4a//bK6mnhWvQeFNI=
-cloud.google.com/go/analytics v0.12.0/go.mod h1:gkfj9h6XRf9+TS4bmuhPEShsh3hH8PAZzm/41OOhQd4=
-cloud.google.com/go/analytics v0.17.0/go.mod h1:WXFa3WSym4IZ+JiKmavYdJwGG/CvpqiqczmL59bTD9M=
-cloud.google.com/go/analytics v0.18.0/go.mod h1:ZkeHGQlcIPkw0R/GW+boWHhCOR43xz9RN/jn7WcqfIE=
-cloud.google.com/go/analytics v0.19.0/go.mod h1:k8liqf5/HCnOUkbawNtrWWc+UAzyDlW89doe8TtoDsE=
-cloud.google.com/go/apigateway v1.3.0/go.mod h1:89Z8Bhpmxu6AmUxuVRg/ECRGReEdiP3vQtk4Z1J9rJk=
-cloud.google.com/go/apigateway v1.4.0/go.mod h1:pHVY9MKGaH9PQ3pJ4YLzoj6U5FUDeDFBllIz7WmzJoc=
-cloud.google.com/go/apigateway v1.5.0/go.mod h1:GpnZR3Q4rR7LVu5951qfXPJCHquZt02jf7xQx7kpqN8=
-cloud.google.com/go/apigeeconnect v1.3.0/go.mod h1:G/AwXFAKo0gIXkPTVfZDd2qA1TxBXJ3MgMRBQkIi9jc=
-cloud.google.com/go/apigeeconnect v1.4.0/go.mod h1:kV4NwOKqjvt2JYR0AoIWo2QGfoRtn/pkS3QlHp0Ni04=
-cloud.google.com/go/apigeeconnect v1.5.0/go.mod h1:KFaCqvBRU6idyhSNyn3vlHXc8VMDJdRmwDF6JyFRqZ8=
-cloud.google.com/go/apigeeregistry v0.4.0/go.mod h1:EUG4PGcsZvxOXAdyEghIdXwAEi/4MEaoqLMLDMIwKXY=
-cloud.google.com/go/apigeeregistry v0.5.0/go.mod h1:YR5+s0BVNZfVOUkMa5pAR2xGd0A473vA5M7j247o1wM=
-cloud.google.com/go/apigeeregistry v0.6.0/go.mod h1:BFNzW7yQVLZ3yj0TKcwzb8n25CFBri51GVGOEUcgQsc=
-cloud.google.com/go/apikeys v0.4.0/go.mod h1:XATS/yqZbaBK0HOssf+ALHp8jAlNHUgyfprvNcBIszU=
-cloud.google.com/go/apikeys v0.5.0/go.mod h1:5aQfwY4D+ewMMWScd3hm2en3hCj+BROlyrt3ytS7KLI=
-cloud.google.com/go/apikeys v0.6.0/go.mod h1:kbpXu5upyiAlGkKrJgQl8A0rKNNJ7dQ377pdroRSSi8=
-cloud.google.com/go/appengine v1.4.0/go.mod h1:CS2NhuBuDXM9f+qscZ6V86m1MIIqPj3WC/UoEuR1Sno=
-cloud.google.com/go/appengine v1.5.0/go.mod h1:TfasSozdkFI0zeoxW3PTBLiNqRmzraodCWatWI9Dmak=
-cloud.google.com/go/appengine v1.6.0/go.mod h1:hg6i0J/BD2cKmDJbaFSYHFyZkgBEfQrDg/X0V5fJn84=
-cloud.google.com/go/appengine v1.7.0/go.mod h1:eZqpbHFCqRGa2aCdope7eC0SWLV1j0neb/QnMJVWx6A=
-cloud.google.com/go/appengine v1.7.1/go.mod h1:IHLToyb/3fKutRysUlFO0BPt5j7RiQ45nrzEJmKTo6E=
-cloud.google.com/go/area120 v0.5.0/go.mod h1:DE/n4mp+iqVyvxHN41Vf1CR602GiHQjFPusMFW6bGR4=
-cloud.google.com/go/area120 v0.6.0/go.mod h1:39yFJqWVgm0UZqWTOdqkLhjoC7uFfgXRC8g/ZegeAh0=
-cloud.google.com/go/area120 v0.7.0/go.mod h1:a3+8EUD1SX5RUcCs3MY5YasiO1z6yLiNLRiFrykbynY=
-cloud.google.com/go/area120 v0.7.1/go.mod h1:j84i4E1RboTWjKtZVWXPqvK5VHQFJRF2c1Nm69pWm9k=
-cloud.google.com/go/artifactregistry v1.6.0/go.mod h1:IYt0oBPSAGYj/kprzsBjZ/4LnG/zOcHyFHjWPCi6SAQ=
-cloud.google.com/go/artifactregistry v1.7.0/go.mod h1:mqTOFOnGZx8EtSqK/ZWcsm/4U8B77rbcLP6ruDU2Ixk=
-cloud.google.com/go/artifactregistry v1.8.0/go.mod h1:w3GQXkJX8hiKN0v+at4b0qotwijQbYUqF2GWkZzAhC0=
-cloud.google.com/go/artifactregistry v1.9.0/go.mod h1:2K2RqvA2CYvAeARHRkLDhMDJ3OXy26h3XW+3/Jh2uYc=
-cloud.google.com/go/artifactregistry v1.11.1/go.mod h1:lLYghw+Itq9SONbCa1YWBoWs1nOucMH0pwXN1rOBZFI=
-cloud.google.com/go/artifactregistry v1.11.2/go.mod h1:nLZns771ZGAwVLzTX/7Al6R9ehma4WUEhZGWV6CeQNQ=
-cloud.google.com/go/artifactregistry v1.12.0/go.mod h1:o6P3MIvtzTOnmvGagO9v/rOjjA0HmhJ+/6KAXrmYDCI=
-cloud.google.com/go/artifactregistry v1.13.0/go.mod h1:uy/LNfoOIivepGhooAUpL1i30Hgee3Cu0l4VTWHUC08=
-cloud.google.com/go/asset v1.5.0/go.mod h1:5mfs8UvcM5wHhqtSv8J1CtxxaQq3AdBxxQi2jGW/K4o=
-cloud.google.com/go/asset v1.7.0/go.mod h1:YbENsRK4+xTiL+Ofoj5Ckf+O17kJtgp3Y3nn4uzZz5s=
-cloud.google.com/go/asset v1.8.0/go.mod h1:mUNGKhiqIdbr8X7KNayoYvyc4HbbFO9URsjbytpUaW0=
-cloud.google.com/go/asset v1.9.0/go.mod h1:83MOE6jEJBMqFKadM9NLRcs80Gdw76qGuHn8m3h8oHQ=
-cloud.google.com/go/asset v1.10.0/go.mod h1:pLz7uokL80qKhzKr4xXGvBQXnzHn5evJAEAtZiIb0wY=
-cloud.google.com/go/asset v1.11.1/go.mod h1:fSwLhbRvC9p9CXQHJ3BgFeQNM4c9x10lqlrdEUYXlJo=
-cloud.google.com/go/asset v1.12.0/go.mod h1:h9/sFOa4eDIyKmH6QMpm4eUK3pDojWnUhTgJlk762Hg=
-cloud.google.com/go/asset v1.13.0/go.mod h1:WQAMyYek/b7NBpYq/K4KJWcRqzoalEsxz/t/dTk4THw=
-cloud.google.com/go/assuredworkloads v1.5.0/go.mod h1:n8HOZ6pff6re5KYfBXcFvSViQjDwxFkAkmUFffJRbbY=
-cloud.google.com/go/assuredworkloads v1.6.0/go.mod h1:yo2YOk37Yc89Rsd5QMVECvjaMKymF9OP+QXWlKXUkXw=
-cloud.google.com/go/assuredworkloads v1.7.0/go.mod h1:z/736/oNmtGAyU47reJgGN+KVoYoxeLBoj4XkKYscNI=
-cloud.google.com/go/assuredworkloads v1.8.0/go.mod h1:AsX2cqyNCOvEQC8RMPnoc0yEarXQk6WEKkxYfL6kGIo=
-cloud.google.com/go/assuredworkloads v1.9.0/go.mod h1:kFuI1P78bplYtT77Tb1hi0FMxM0vVpRC7VVoJC3ZoT0=
-cloud.google.com/go/assuredworkloads v1.10.0/go.mod h1:kwdUQuXcedVdsIaKgKTp9t0UJkE5+PAVNhdQm4ZVq2E=
-cloud.google.com/go/automl v1.5.0/go.mod h1:34EjfoFGMZ5sgJ9EoLsRtdPSNZLcfflJR39VbVNS2M0=
-cloud.google.com/go/automl v1.6.0/go.mod h1:ugf8a6Fx+zP0D59WLhqgTDsQI9w07o64uf/Is3Nh5p8=
-cloud.google.com/go/automl v1.7.0/go.mod h1:RL9MYCCsJEOmt0Wf3z9uzG0a7adTT1fe+aObgSpkCt8=
-cloud.google.com/go/automl v1.8.0/go.mod h1:xWx7G/aPEe/NP+qzYXktoBSDfjO+vnKMGgsApGJJquM=
-cloud.google.com/go/automl v1.12.0/go.mod h1:tWDcHDp86aMIuHmyvjuKeeHEGq76lD7ZqfGLN6B0NuU=
-cloud.google.com/go/baremetalsolution v0.3.0/go.mod h1:XOrocE+pvK1xFfleEnShBlNAXf+j5blPPxrhjKgnIFc=
-cloud.google.com/go/baremetalsolution v0.4.0/go.mod h1:BymplhAadOO/eBa7KewQ0Ppg4A4Wplbn+PsFKRLo0uI=
-cloud.google.com/go/baremetalsolution v0.5.0/go.mod h1:dXGxEkmR9BMwxhzBhV0AioD0ULBmuLZI8CdwalUxuss=
-cloud.google.com/go/batch v0.3.0/go.mod h1:TR18ZoAekj1GuirsUsR1ZTKN3FC/4UDnScjT8NXImFE=
-cloud.google.com/go/batch v0.4.0/go.mod h1:WZkHnP43R/QCGQsZ+0JyG4i79ranE2u8xvjq/9+STPE=
-cloud.google.com/go/batch v0.7.0/go.mod h1:vLZN95s6teRUqRQ4s3RLDsH8PvboqBK+rn1oevL159g=
-cloud.google.com/go/beyondcorp v0.2.0/go.mod h1:TB7Bd+EEtcw9PCPQhCJtJGjk/7TC6ckmnSFS+xwTfm4=
-cloud.google.com/go/beyondcorp v0.3.0/go.mod h1:E5U5lcrcXMsCuoDNyGrpyTm/hn7ne941Jz2vmksAxW8=
-cloud.google.com/go/beyondcorp v0.4.0/go.mod h1:3ApA0mbhHx6YImmuubf5pyW8srKnCEPON32/5hj+RmM=
-cloud.google.com/go/beyondcorp v0.5.0/go.mod h1:uFqj9X+dSfrheVp7ssLTaRHd2EHqSL4QZmH4e8WXGGU=
-cloud.google.com/go/bigquery v1.0.1/go.mod h1:i/xbL2UlR5RvWAURpBYZTtm/cXjCha9lbfbpx4poX+o=
-cloud.google.com/go/bigquery v1.3.0/go.mod h1:PjpwJnslEMmckchkHFfq+HTD2DmtT67aNFKH1/VBDHE=
-cloud.google.com/go/bigquery v1.4.0/go.mod h1:S8dzgnTigyfTmLBfrtrhyYhwRxG72rYxvftPBK2Dvzc=
-cloud.google.com/go/bigquery v1.5.0/go.mod h1:snEHRnqQbz117VIFhE8bmtwIDY80NLUZUMb4Nv6dBIg=
-cloud.google.com/go/bigquery v1.7.0/go.mod h1://okPTzCYNXSlb24MZs83e2Do+h+VXtc4gLoIoXIAPc=
-cloud.google.com/go/bigquery v1.8.0/go.mod h1:J5hqkt3O0uAFnINi6JXValWIb1v0goeZM77hZzJN/fQ=
-cloud.google.com/go/bigquery v1.42.0/go.mod h1:8dRTJxhtG+vwBKzE5OseQn/hiydoQN3EedCaOdYmxRA=
-cloud.google.com/go/bigquery v1.43.0/go.mod h1:ZMQcXHsl+xmU1z36G2jNGZmKp9zNY5BUua5wDgmNCfw=
-cloud.google.com/go/bigquery v1.44.0/go.mod h1:0Y33VqXTEsbamHJvJHdFmtqHvMIY28aK1+dFsvaChGc=
-cloud.google.com/go/bigquery v1.47.0/go.mod h1:sA9XOgy0A8vQK9+MWhEQTY6Tix87M/ZurWFIxmF9I/E=
-cloud.google.com/go/bigquery v1.48.0/go.mod h1:QAwSz+ipNgfL5jxiaK7weyOhzdoAy1zFm0Nf1fysJac=
-cloud.google.com/go/bigquery v1.49.0/go.mod h1:Sv8hMmTFFYBlt/ftw2uN6dFdQPzBlREY9yBh7Oy7/4Q=
-cloud.google.com/go/bigquery v1.50.0/go.mod h1:YrleYEh2pSEbgTBZYMJ5SuSr0ML3ypjRB1zgf7pvQLU=
-cloud.google.com/go/billing v1.4.0/go.mod h1:g9IdKBEFlItS8bTtlrZdVLWSSdSyFUZKXNS02zKMOZY=
-cloud.google.com/go/billing v1.5.0/go.mod h1:mztb1tBc3QekhjSgmpf/CV4LzWXLzCArwpLmP2Gm88s=
-cloud.google.com/go/billing v1.6.0/go.mod h1:WoXzguj+BeHXPbKfNWkqVtDdzORazmCjraY+vrxcyvI=
-cloud.google.com/go/billing v1.7.0/go.mod h1:q457N3Hbj9lYwwRbnlD7vUpyjq6u5U1RAOArInEiD5Y=
-cloud.google.com/go/billing v1.12.0/go.mod h1:yKrZio/eu+okO/2McZEbch17O5CB5NpZhhXG6Z766ss=
-cloud.google.com/go/billing v1.13.0/go.mod h1:7kB2W9Xf98hP9Sr12KfECgfGclsH3CQR0R08tnRlRbc=
-cloud.google.com/go/binaryauthorization v1.1.0/go.mod h1:xwnoWu3Y84jbuHa0zd526MJYmtnVXn0syOjaJgy4+dM=
-cloud.google.com/go/binaryauthorization v1.2.0/go.mod h1:86WKkJHtRcv5ViNABtYMhhNWRrD1Vpi//uKEy7aYEfI=
-cloud.google.com/go/binaryauthorization v1.3.0/go.mod h1:lRZbKgjDIIQvzYQS1p99A7/U1JqvqeZg0wiI5tp6tg0=
-cloud.google.com/go/binaryauthorization v1.4.0/go.mod h1:tsSPQrBd77VLplV70GUhBf/Zm3FsKmgSqgm4UmiDItk=
-cloud.google.com/go/binaryauthorization v1.5.0/go.mod h1:OSe4OU1nN/VswXKRBmciKpo9LulY41gch5c68htf3/Q=
-cloud.google.com/go/certificatemanager v1.3.0/go.mod h1:n6twGDvcUBFu9uBgt4eYvvf3sQ6My8jADcOVwHmzadg=
-cloud.google.com/go/certificatemanager v1.4.0/go.mod h1:vowpercVFyqs8ABSmrdV+GiFf2H/ch3KyudYQEMM590=
-cloud.google.com/go/certificatemanager v1.6.0/go.mod h1:3Hh64rCKjRAX8dXgRAyOcY5vQ/fE1sh8o+Mdd6KPgY8=
-cloud.google.com/go/channel v1.8.0/go.mod h1:W5SwCXDJsq/rg3tn3oG0LOxpAo6IMxNa09ngphpSlnk=
-cloud.google.com/go/channel v1.9.0/go.mod h1:jcu05W0my9Vx4mt3/rEHpfxc9eKi9XwsdDL8yBMbKUk=
-cloud.google.com/go/channel v1.11.0/go.mod h1:IdtI0uWGqhEeatSB62VOoJ8FSUhJ9/+iGkJVqp74CGE=
-cloud.google.com/go/channel v1.12.0/go.mod h1:VkxCGKASi4Cq7TbXxlaBezonAYpp1GCnKMY6tnMQnLU=
-cloud.google.com/go/cloudbuild v1.3.0/go.mod h1:WequR4ULxlqvMsjDEEEFnOG5ZSRSgWOywXYDb1vPE6U=
-cloud.google.com/go/cloudbuild v1.4.0/go.mod h1:5Qwa40LHiOXmz3386FrjrYM93rM/hdRr7b53sySrTqA=
-cloud.google.com/go/cloudbuild v1.6.0/go.mod h1:UIbc/w9QCbH12xX+ezUsgblrWv+Cv4Tw83GiSMHOn9M=
-cloud.google.com/go/cloudbuild v1.7.0/go.mod h1:zb5tWh2XI6lR9zQmsm1VRA+7OCuve5d8S+zJUul8KTg=
-cloud.google.com/go/cloudbuild v1.9.0/go.mod h1:qK1d7s4QlO0VwfYn5YuClDGg2hfmLZEb4wQGAbIgL1s=
-cloud.google.com/go/clouddms v1.3.0/go.mod h1:oK6XsCDdW4Ib3jCCBugx+gVjevp2TMXFtgxvPSee3OM=
-cloud.google.com/go/clouddms v1.4.0/go.mod h1:Eh7sUGCC+aKry14O1NRljhjyrr0NFC0G2cjwX0cByRk=
-cloud.google.com/go/clouddms v1.5.0/go.mod h1:QSxQnhikCLUw13iAbffF2CZxAER3xDGNHjsTAkQJcQA=
-cloud.google.com/go/cloudtasks v1.5.0/go.mod h1:fD92REy1x5woxkKEkLdvavGnPJGEn8Uic9nWuLzqCpY=
-cloud.google.com/go/cloudtasks v1.6.0/go.mod h1:C6Io+sxuke9/KNRkbQpihnW93SWDU3uXt92nu85HkYI=
-cloud.google.com/go/cloudtasks v1.7.0/go.mod h1:ImsfdYWwlWNJbdgPIIGJWC+gemEGTBK/SunNQQNCAb4=
-cloud.google.com/go/cloudtasks v1.8.0/go.mod h1:gQXUIwCSOI4yPVK7DgTVFiiP0ZW/eQkydWzwVMdHxrI=
-cloud.google.com/go/cloudtasks v1.9.0/go.mod h1:w+EyLsVkLWHcOaqNEyvcKAsWp9p29dL6uL9Nst1cI7Y=
-cloud.google.com/go/cloudtasks v1.10.0/go.mod h1:NDSoTLkZ3+vExFEWu2UJV1arUyzVDAiZtdWcsUyNwBs=
-cloud.google.com/go/compute v0.1.0/go.mod h1:GAesmwr110a34z04OlxYkATPBEfVhkymfTBXtfbBFow=
-cloud.google.com/go/compute v1.3.0/go.mod h1:cCZiE1NHEtai4wiufUhW8I8S1JKkAnhnQJWM7YD99wM=
-cloud.google.com/go/compute v1.5.0/go.mod h1:9SMHyhJlzhlkJqrPAc839t2BZFTSk6Jdj6mkzQJeu0M=
-cloud.google.com/go/compute v1.6.0/go.mod h1:T29tfhtVbq1wvAPo0E3+7vhgmkOYeXjhFvz/FMzPu0s=
-cloud.google.com/go/compute v1.6.1/go.mod h1:g85FgpzFvNULZ+S8AYq87axRKuf2Kh7deLqV/jJ3thU=
-cloud.google.com/go/compute v1.7.0/go.mod h1:435lt8av5oL9P3fv1OEzSbSUe+ybHXGMPQHHZWZxy9U=
-cloud.google.com/go/compute v1.10.0/go.mod h1:ER5CLbMxl90o2jtNbGSbtfOpQKR0t15FOtRsugnLrlU=
-cloud.google.com/go/compute v1.12.0/go.mod h1:e8yNOBcBONZU1vJKCvCoDw/4JQsA0dpM4x/6PIIOocU=
-cloud.google.com/go/compute v1.12.1/go.mod h1:e8yNOBcBONZU1vJKCvCoDw/4JQsA0dpM4x/6PIIOocU=
-cloud.google.com/go/compute v1.13.0/go.mod h1:5aPTS0cUNMIc1CE546K+Th6weJUNQErARyZtRXDJ8GE=
-cloud.google.com/go/compute v1.14.0/go.mod h1:YfLtxrj9sU4Yxv+sXzZkyPjEyPBZfXHUvjxega5vAdo=
-cloud.google.com/go/compute v1.15.1/go.mod h1:bjjoF/NtFUrkD/urWfdHaKuOPDR5nWIs63rR+SXhcpA=
-cloud.google.com/go/compute v1.18.0/go.mod h1:1X7yHxec2Ga+Ss6jPyjxRxpu2uu7PLgsOVXvgU0yacs=
-cloud.google.com/go/compute v1.19.0/go.mod h1:rikpw2y+UMidAe9tISo04EHNOIf42RLYF/q8Bs93scU=
-cloud.google.com/go/compute v1.19.3/go.mod h1:qxvISKp/gYnXkSAD1ppcSOveRAmzxicEv/JlizULFrI=
-cloud.google.com/go/compute v1.20.1/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
-cloud.google.com/go/compute/metadata v0.1.0/go.mod h1:Z1VN+bulIf6bt4P/C37K4DyZYZEXYonfTBHHFPO/4UU=
-cloud.google.com/go/compute/metadata v0.2.0/go.mod h1:zFmK7XCadkQkj6TtorcaGlCW1hT1fIilQDwofLpJ20k=
-cloud.google.com/go/compute/metadata v0.2.1/go.mod h1:jgHgmJd2RKBGzXqF5LR2EZMGxBkeanZ9wwa75XHJgOM=
-cloud.google.com/go/compute/metadata v0.2.3/go.mod h1:VAV5nSsACxMJvgaAuX6Pk2AawlZn8kiOGuCv6gTkwuA=
-cloud.google.com/go/contactcenterinsights v1.3.0/go.mod h1:Eu2oemoePuEFc/xKFPjbTuPSj0fYJcPls9TFlPNnHHY=
-cloud.google.com/go/contactcenterinsights v1.4.0/go.mod h1:L2YzkGbPsv+vMQMCADxJoT9YiTTnSEd6fEvCeHTYVck=
-cloud.google.com/go/contactcenterinsights v1.6.0/go.mod h1:IIDlT6CLcDoyv79kDv8iWxMSTZhLxSCofVV5W6YFM/w=
-cloud.google.com/go/container v1.6.0/go.mod h1:Xazp7GjJSeUYo688S+6J5V+n/t+G5sKBTFkKNudGRxg=
-cloud.google.com/go/container v1.7.0/go.mod h1:Dp5AHtmothHGX3DwwIHPgq45Y8KmNsgN3amoYfxVkLo=
-cloud.google.com/go/container v1.13.1/go.mod h1:6wgbMPeQRw9rSnKBCAJXnds3Pzj03C4JHamr8asWKy4=
-cloud.google.com/go/container v1.14.0/go.mod h1:3AoJMPhHfLDxLvrlVWaK57IXzaPnLaZq63WX59aQBfM=
-cloud.google.com/go/container v1.15.0/go.mod h1:ft+9S0WGjAyjDggg5S06DXj+fHJICWg8L7isCQe9pQA=
-cloud.google.com/go/containeranalysis v0.5.1/go.mod h1:1D92jd8gRR/c0fGMlymRgxWD3Qw9C1ff6/T7mLgVL8I=
-cloud.google.com/go/containeranalysis v0.6.0/go.mod h1:HEJoiEIu+lEXM+k7+qLCci0h33lX3ZqoYFdmPcoO7s4=
-cloud.google.com/go/containeranalysis v0.7.0/go.mod h1:9aUL+/vZ55P2CXfuZjS4UjQ9AgXoSw8Ts6lemfmxBxI=
-cloud.google.com/go/containeranalysis v0.9.0/go.mod h1:orbOANbwk5Ejoom+s+DUCTTJ7IBdBQJDcSylAx/on9s=
-cloud.google.com/go/datacatalog v1.3.0/go.mod h1:g9svFY6tuR+j+hrTw3J2dNcmI0dzmSiyOzm8kpLq0a0=
-cloud.google.com/go/datacatalog v1.5.0/go.mod h1:M7GPLNQeLfWqeIm3iuiruhPzkt65+Bx8dAKvScX8jvs=
-cloud.google.com/go/datacatalog v1.6.0/go.mod h1:+aEyF8JKg+uXcIdAmmaMUmZ3q1b/lKLtXCmXdnc0lbc=
-cloud.google.com/go/datacatalog v1.7.0/go.mod h1:9mEl4AuDYWw81UGc41HonIHH7/sn52H0/tc8f8ZbZIE=
-cloud.google.com/go/datacatalog v1.8.0/go.mod h1:KYuoVOv9BM8EYz/4eMFxrr4DUKhGIOXxZoKYF5wdISM=
-cloud.google.com/go/datacatalog v1.8.1/go.mod h1:RJ58z4rMp3gvETA465Vg+ag8BGgBdnRPEMMSTr5Uv+M=
-cloud.google.com/go/datacatalog v1.12.0/go.mod h1:CWae8rFkfp6LzLumKOnmVh4+Zle4A3NXLzVJ1d1mRm0=
-cloud.google.com/go/datacatalog v1.13.0/go.mod h1:E4Rj9a5ZtAxcQJlEBTLgMTphfP11/lNaAshpoBgemX8=
-cloud.google.com/go/dataflow v0.6.0/go.mod h1:9QwV89cGoxjjSR9/r7eFDqqjtvbKxAK2BaYU6PVk9UM=
-cloud.google.com/go/dataflow v0.7.0/go.mod h1:PX526vb4ijFMesO1o202EaUmouZKBpjHsTlCtB4parQ=
-cloud.google.com/go/dataflow v0.8.0/go.mod h1:Rcf5YgTKPtQyYz8bLYhFoIV/vP39eL7fWNcSOyFfLJE=
-cloud.google.com/go/dataform v0.3.0/go.mod h1:cj8uNliRlHpa6L3yVhDOBrUXH+BPAO1+KFMQQNSThKo=
-cloud.google.com/go/dataform v0.4.0/go.mod h1:fwV6Y4Ty2yIFL89huYlEkwUPtS7YZinZbzzj5S9FzCE=
-cloud.google.com/go/dataform v0.5.0/go.mod h1:GFUYRe8IBa2hcomWplodVmUx/iTL0FrsauObOM3Ipr0=
-cloud.google.com/go/dataform v0.6.0/go.mod h1:QPflImQy33e29VuapFdf19oPbE4aYTJxr31OAPV+ulA=
-cloud.google.com/go/dataform v0.7.0/go.mod h1:7NulqnVozfHvWUBpMDfKMUESr+85aJsC/2O0o3jWPDE=
-cloud.google.com/go/datafusion v1.4.0/go.mod h1:1Zb6VN+W6ALo85cXnM1IKiPw+yQMKMhB9TsTSRDo/38=
-cloud.google.com/go/datafusion v1.5.0/go.mod h1:Kz+l1FGHB0J+4XF2fud96WMmRiq/wj8N9u007vyXZ2w=
-cloud.google.com/go/datafusion v1.6.0/go.mod h1:WBsMF8F1RhSXvVM8rCV3AeyWVxcC2xY6vith3iw3S+8=
-cloud.google.com/go/datalabeling v0.5.0/go.mod h1:TGcJ0G2NzcsXSE/97yWjIZO0bXj0KbVlINXMG9ud42I=
-cloud.google.com/go/datalabeling v0.6.0/go.mod h1:WqdISuk/+WIGeMkpw/1q7bK/tFEZxsrFJOJdY2bXvTQ=
-cloud.google.com/go/datalabeling v0.7.0/go.mod h1:WPQb1y08RJbmpM3ww0CSUAGweL0SxByuW2E+FU+wXcM=
-cloud.google.com/go/dataplex v1.3.0/go.mod h1:hQuRtDg+fCiFgC8j0zV222HvzFQdRd+SVX8gdmFcZzA=
-cloud.google.com/go/dataplex v1.4.0/go.mod h1:X51GfLXEMVJ6UN47ESVqvlsRplbLhcsAt0kZCCKsU0A=
-cloud.google.com/go/dataplex v1.5.2/go.mod h1:cVMgQHsmfRoI5KFYq4JtIBEUbYwc3c7tXmIDhRmNNVQ=
-cloud.google.com/go/dataplex v1.6.0/go.mod h1:bMsomC/aEJOSpHXdFKFGQ1b0TDPIeL28nJObeO1ppRs=
-cloud.google.com/go/dataproc v1.7.0/go.mod h1:CKAlMjII9H90RXaMpSxQ8EU6dQx6iAYNPcYPOkSbi8s=
-cloud.google.com/go/dataproc v1.8.0/go.mod h1:5OW+zNAH0pMpw14JVrPONsxMQYMBqJuzORhIBfBn9uI=
-cloud.google.com/go/dataproc v1.12.0/go.mod h1:zrF3aX0uV3ikkMz6z4uBbIKyhRITnxvr4i3IjKsKrw4=
-cloud.google.com/go/dataqna v0.5.0/go.mod h1:90Hyk596ft3zUQ8NkFfvICSIfHFh1Bc7C4cK3vbhkeo=
-cloud.google.com/go/dataqna v0.6.0/go.mod h1:1lqNpM7rqNLVgWBJyk5NF6Uen2PHym0jtVJonplVsDA=
-cloud.google.com/go/dataqna v0.7.0/go.mod h1:Lx9OcIIeqCrw1a6KdO3/5KMP1wAmTc0slZWwP12Qq3c=
-cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE=
-cloud.google.com/go/datastore v1.1.0/go.mod h1:umbIZjpQpHh4hmRpGhH4tLFup+FVzqBi1b3c64qFpCk=
-cloud.google.com/go/datastore v1.10.0/go.mod h1:PC5UzAmDEkAmkfaknstTYbNpgE49HAgW2J1gcgUfmdM=
-cloud.google.com/go/datastore v1.11.0/go.mod h1:TvGxBIHCS50u8jzG+AW/ppf87v1of8nwzFNgEZU1D3c=
-cloud.google.com/go/datastream v1.2.0/go.mod h1:i/uTP8/fZwgATHS/XFu0TcNUhuA0twZxxQ3EyCUQMwo=
-cloud.google.com/go/datastream v1.3.0/go.mod h1:cqlOX8xlyYF/uxhiKn6Hbv6WjwPPuI9W2M9SAXwaLLQ=
-cloud.google.com/go/datastream v1.4.0/go.mod h1:h9dpzScPhDTs5noEMQVWP8Wx8AFBRyS0s8KWPx/9r0g=
-cloud.google.com/go/datastream v1.5.0/go.mod h1:6TZMMNPwjUqZHBKPQ1wwXpb0d5VDVPl2/XoS5yi88q4=
-cloud.google.com/go/datastream v1.6.0/go.mod h1:6LQSuswqLa7S4rPAOZFVjHIG3wJIjZcZrw8JDEDJuIs=
-cloud.google.com/go/datastream v1.7.0/go.mod h1:uxVRMm2elUSPuh65IbZpzJNMbuzkcvu5CjMqVIUHrww=
-cloud.google.com/go/deploy v1.4.0/go.mod h1:5Xghikd4VrmMLNaF6FiRFDlHb59VM59YoDQnOUdsH/c=
-cloud.google.com/go/deploy v1.5.0/go.mod h1:ffgdD0B89tToyW/U/D2eL0jN2+IEV/3EMuXHA0l4r+s=
-cloud.google.com/go/deploy v1.6.0/go.mod h1:f9PTHehG/DjCom3QH0cntOVRm93uGBDt2vKzAPwpXQI=
-cloud.google.com/go/deploy v1.8.0/go.mod h1:z3myEJnA/2wnB4sgjqdMfgxCA0EqC3RBTNcVPs93mtQ=
-cloud.google.com/go/dialogflow v1.15.0/go.mod h1:HbHDWs33WOGJgn6rfzBW1Kv807BE3O1+xGbn59zZWI4=
-cloud.google.com/go/dialogflow v1.16.1/go.mod h1:po6LlzGfK+smoSmTBnbkIZY2w8ffjz/RcGSS+sh1el0=
-cloud.google.com/go/dialogflow v1.17.0/go.mod h1:YNP09C/kXA1aZdBgC/VtXX74G/TKn7XVCcVumTflA+8=
-cloud.google.com/go/dialogflow v1.18.0/go.mod h1:trO7Zu5YdyEuR+BhSNOqJezyFQ3aUzz0njv7sMx/iek=
-cloud.google.com/go/dialogflow v1.19.0/go.mod h1:JVmlG1TwykZDtxtTXujec4tQ+D8SBFMoosgy+6Gn0s0=
-cloud.google.com/go/dialogflow v1.29.0/go.mod h1:b+2bzMe+k1s9V+F2jbJwpHPzrnIyHihAdRFMtn2WXuM=
-cloud.google.com/go/dialogflow v1.31.0/go.mod h1:cuoUccuL1Z+HADhyIA7dci3N5zUssgpBJmCzI6fNRB4=
-cloud.google.com/go/dialogflow v1.32.0/go.mod h1:jG9TRJl8CKrDhMEcvfcfFkkpp8ZhgPz3sBGmAUYJ2qE=
-cloud.google.com/go/dlp v1.6.0/go.mod h1:9eyB2xIhpU0sVwUixfBubDoRwP+GjeUoxxeueZmqvmM=
-cloud.google.com/go/dlp v1.7.0/go.mod h1:68ak9vCiMBjbasxeVD17hVPxDEck+ExiHavX8kiHG+Q=
-cloud.google.com/go/dlp v1.9.0/go.mod h1:qdgmqgTyReTz5/YNSSuueR8pl7hO0o9bQ39ZhtgkWp4=
-cloud.google.com/go/documentai v1.7.0/go.mod h1:lJvftZB5NRiFSX4moiye1SMxHx0Bc3x1+p9e/RfXYiU=
-cloud.google.com/go/documentai v1.8.0/go.mod h1:xGHNEB7CtsnySCNrCFdCyyMz44RhFEEX2Q7UD0c5IhU=
-cloud.google.com/go/documentai v1.9.0/go.mod h1:FS5485S8R00U10GhgBC0aNGrJxBP8ZVpEeJ7PQDZd6k=
-cloud.google.com/go/documentai v1.10.0/go.mod h1:vod47hKQIPeCfN2QS/jULIvQTugbmdc0ZvxxfQY1bg4=
-cloud.google.com/go/documentai v1.16.0/go.mod h1:o0o0DLTEZ+YnJZ+J4wNfTxmDVyrkzFvttBXXtYRMHkM=
-cloud.google.com/go/documentai v1.18.0/go.mod h1:F6CK6iUH8J81FehpskRmhLq/3VlwQvb7TvwOceQ2tbs=
-cloud.google.com/go/domains v0.6.0/go.mod h1:T9Rz3GasrpYk6mEGHh4rymIhjlnIuB4ofT1wTxDeT4Y=
-cloud.google.com/go/domains v0.7.0/go.mod h1:PtZeqS1xjnXuRPKE/88Iru/LdfoRyEHYA9nFQf4UKpg=
-cloud.google.com/go/domains v0.8.0/go.mod h1:M9i3MMDzGFXsydri9/vW+EWz9sWb4I6WyHqdlAk0idE=
-cloud.google.com/go/edgecontainer v0.1.0/go.mod h1:WgkZ9tp10bFxqO8BLPqv2LlfmQF1X8lZqwW4r1BTajk=
-cloud.google.com/go/edgecontainer v0.2.0/go.mod h1:RTmLijy+lGpQ7BXuTDa4C4ssxyXT34NIuHIgKuP4s5w=
-cloud.google.com/go/edgecontainer v0.3.0/go.mod h1:FLDpP4nykgwwIfcLt6zInhprzw0lEi2P1fjO6Ie0qbc=
-cloud.google.com/go/edgecontainer v1.0.0/go.mod h1:cttArqZpBB2q58W/upSG++ooo6EsblxDIolxa3jSjbY=
-cloud.google.com/go/errorreporting v0.3.0/go.mod h1:xsP2yaAp+OAW4OIm60An2bbLpqIhKXdWR/tawvl7QzU=
-cloud.google.com/go/essentialcontacts v1.3.0/go.mod h1:r+OnHa5jfj90qIfZDO/VztSFqbQan7HV75p8sA+mdGI=
-cloud.google.com/go/essentialcontacts v1.4.0/go.mod h1:8tRldvHYsmnBCHdFpvU+GL75oWiBKl80BiqlFh9tp+8=
-cloud.google.com/go/essentialcontacts v1.5.0/go.mod h1:ay29Z4zODTuwliK7SnX8E86aUF2CTzdNtvv42niCX0M=
-cloud.google.com/go/eventarc v1.7.0/go.mod h1:6ctpF3zTnaQCxUjHUdcfgcA1A2T309+omHZth7gDfmc=
-cloud.google.com/go/eventarc v1.8.0/go.mod h1:imbzxkyAU4ubfsaKYdQg04WS1NvncblHEup4kvF+4gw=
-cloud.google.com/go/eventarc v1.10.0/go.mod h1:u3R35tmZ9HvswGRBnF48IlYgYeBcPUCjkr4BTdem2Kw=
-cloud.google.com/go/eventarc v1.11.0/go.mod h1:PyUjsUKPWoRBCHeOxZd/lbOOjahV41icXyUY5kSTvVY=
-cloud.google.com/go/filestore v1.3.0/go.mod h1:+qbvHGvXU1HaKX2nD0WEPo92TP/8AQuCVEBXNY9z0+w=
-cloud.google.com/go/filestore v1.4.0/go.mod h1:PaG5oDfo9r224f8OYXURtAsY+Fbyq/bLYoINEK8XQAI=
-cloud.google.com/go/filestore v1.5.0/go.mod h1:FqBXDWBp4YLHqRnVGveOkHDf8svj9r5+mUDLupOWEDs=
-cloud.google.com/go/filestore v1.6.0/go.mod h1:di5unNuss/qfZTw2U9nhFqo8/ZDSc466dre85Kydllg=
-cloud.google.com/go/firestore v1.9.0/go.mod h1:HMkjKHNTtRyZNiMzu7YAsLr9K3X2udY2AMwDaMEQiiE=
-cloud.google.com/go/functions v1.6.0/go.mod h1:3H1UA3qiIPRWD7PeZKLvHZ9SaQhR26XIJcC0A5GbvAk=
-cloud.google.com/go/functions v1.7.0/go.mod h1:+d+QBcWM+RsrgZfV9xo6KfA1GlzJfxcfZcRPEhDDfzg=
-cloud.google.com/go/functions v1.8.0/go.mod h1:RTZ4/HsQjIqIYP9a9YPbU+QFoQsAlYgrwOXJWHn1POY=
-cloud.google.com/go/functions v1.9.0/go.mod h1:Y+Dz8yGguzO3PpIjhLTbnqV1CWmgQ5UwtlpzoyquQ08=
-cloud.google.com/go/functions v1.10.0/go.mod h1:0D3hEOe3DbEvCXtYOZHQZmD+SzYsi1YbI7dGvHfldXw=
-cloud.google.com/go/functions v1.12.0/go.mod h1:AXWGrF3e2C/5ehvwYo/GH6O5s09tOPksiKhz+hH8WkA=
-cloud.google.com/go/functions v1.13.0/go.mod h1:EU4O007sQm6Ef/PwRsI8N2umygGqPBS/IZQKBQBcJ3c=
-cloud.google.com/go/gaming v1.5.0/go.mod h1:ol7rGcxP/qHTRQE/RO4bxkXq+Fix0j6D4LFPzYTIrDM=
-cloud.google.com/go/gaming v1.6.0/go.mod h1:YMU1GEvA39Qt3zWGyAVA9bpYz/yAhTvaQ1t2sK4KPUA=
-cloud.google.com/go/gaming v1.7.0/go.mod h1:LrB8U7MHdGgFG851iHAfqUdLcKBdQ55hzXy9xBJz0+w=
-cloud.google.com/go/gaming v1.8.0/go.mod h1:xAqjS8b7jAVW0KFYeRUxngo9My3f33kFmua++Pi+ggM=
-cloud.google.com/go/gaming v1.9.0/go.mod h1:Fc7kEmCObylSWLO334NcO+O9QMDyz+TKC4v1D7X+Bc0=
-cloud.google.com/go/gkebackup v0.2.0/go.mod h1:XKvv/4LfG829/B8B7xRkk8zRrOEbKtEam6yNfuQNH60=
-cloud.google.com/go/gkebackup v0.3.0/go.mod h1:n/E671i1aOQvUxT541aTkCwExO/bTer2HDlj4TsBRAo=
-cloud.google.com/go/gkebackup v0.4.0/go.mod h1:byAyBGUwYGEEww7xsbnUTBHIYcOPy/PgUWUtOeRm9Vg=
-cloud.google.com/go/gkeconnect v0.5.0/go.mod h1:c5lsNAg5EwAy7fkqX/+goqFsU1Da/jQFqArp+wGNr/o=
-cloud.google.com/go/gkeconnect v0.6.0/go.mod h1:Mln67KyU/sHJEBY8kFZ0xTeyPtzbq9StAVvEULYK16A=
-cloud.google.com/go/gkeconnect v0.7.0/go.mod h1:SNfmVqPkaEi3bF/B3CNZOAYPYdg7sU+obZ+QTky2Myw=
-cloud.google.com/go/gkehub v0.9.0/go.mod h1:WYHN6WG8w9bXU0hqNxt8rm5uxnk8IH+lPY9J2TV7BK0=
-cloud.google.com/go/gkehub v0.10.0/go.mod h1:UIPwxI0DsrpsVoWpLB0stwKCP+WFVG9+y977wO+hBH0=
-cloud.google.com/go/gkehub v0.11.0/go.mod h1:JOWHlmN+GHyIbuWQPl47/C2RFhnFKH38jH9Ascu3n0E=
-cloud.google.com/go/gkehub v0.12.0/go.mod h1:djiIwwzTTBrF5NaXCGv3mf7klpEMcST17VBTVVDcuaw=
-cloud.google.com/go/gkemulticloud v0.3.0/go.mod h1:7orzy7O0S+5kq95e4Hpn7RysVA7dPs8W/GgfUtsPbrA=
-cloud.google.com/go/gkemulticloud v0.4.0/go.mod h1:E9gxVBnseLWCk24ch+P9+B2CoDFJZTyIgLKSalC7tuI=
-cloud.google.com/go/gkemulticloud v0.5.0/go.mod h1:W0JDkiyi3Tqh0TJr//y19wyb1yf8llHVto2Htf2Ja3Y=
-cloud.google.com/go/grafeas v0.2.0/go.mod h1:KhxgtF2hb0P191HlY5besjYm6MqTSTj3LSI+M+ByZHc=
-cloud.google.com/go/gsuiteaddons v1.3.0/go.mod h1:EUNK/J1lZEZO8yPtykKxLXI6JSVN2rg9bN8SXOa0bgM=
-cloud.google.com/go/gsuiteaddons v1.4.0/go.mod h1:rZK5I8hht7u7HxFQcFei0+AtfS9uSushomRlg+3ua1o=
-cloud.google.com/go/gsuiteaddons v1.5.0/go.mod h1:TFCClYLd64Eaa12sFVmUyG62tk4mdIsI7pAnSXRkcFo=
-cloud.google.com/go/iam v0.1.0/go.mod h1:vcUNEa0pEm0qRVpmWepWaFMIAI8/hjB9mO8rNCJtF6c=
-cloud.google.com/go/iam v0.3.0/go.mod h1:XzJPvDayI+9zsASAFO68Hk07u3z+f+JrT2xXNdp4bnY=
-cloud.google.com/go/iam v0.5.0/go.mod h1:wPU9Vt0P4UmCux7mqtRu6jcpPAb74cP1fh50J3QpkUc=
-cloud.google.com/go/iam v0.6.0/go.mod h1:+1AH33ueBne5MzYccyMHtEKqLE4/kJOibtffMHDMFMc=
-cloud.google.com/go/iam v0.7.0/go.mod h1:H5Br8wRaDGNc8XP3keLc4unfUUZeyH3Sfl9XpQEYOeg=
-cloud.google.com/go/iam v0.8.0/go.mod h1:lga0/y3iH6CX7sYqypWJ33hf7kkfXJag67naqGESjkE=
-cloud.google.com/go/iam v0.11.0/go.mod h1:9PiLDanza5D+oWFZiH1uG+RnRCfEGKoyl6yo4cgWZGY=
-cloud.google.com/go/iam v0.12.0/go.mod h1:knyHGviacl11zrtZUoDuYpDgLjvr28sLQaG0YB2GYAY=
-cloud.google.com/go/iam v0.13.0/go.mod h1:ljOg+rcNfzZ5d6f1nAUJ8ZIxOaZUVoS14bKCtaLZ/D0=
-cloud.google.com/go/iap v1.4.0/go.mod h1:RGFwRJdihTINIe4wZ2iCP0zF/qu18ZwyKxrhMhygBEc=
-cloud.google.com/go/iap v1.5.0/go.mod h1:UH/CGgKd4KyohZL5Pt0jSKE4m3FR51qg6FKQ/z/Ix9A=
-cloud.google.com/go/iap v1.6.0/go.mod h1:NSuvI9C/j7UdjGjIde7t7HBz+QTwBcapPE07+sSRcLk=
-cloud.google.com/go/iap v1.7.0/go.mod h1:beqQx56T9O1G1yNPph+spKpNibDlYIiIixiqsQXxLIo=
-cloud.google.com/go/iap v1.7.1/go.mod h1:WapEwPc7ZxGt2jFGB/C/bm+hP0Y6NXzOYGjpPnmMS74=
-cloud.google.com/go/ids v1.1.0/go.mod h1:WIuwCaYVOzHIj2OhN9HAwvW+DBdmUAdcWlFxRl+KubM=
-cloud.google.com/go/ids v1.2.0/go.mod h1:5WXvp4n25S0rA/mQWAg1YEEBBq6/s+7ml1RDCW1IrcY=
-cloud.google.com/go/ids v1.3.0/go.mod h1:JBdTYwANikFKaDP6LtW5JAi4gubs57SVNQjemdt6xV4=
-cloud.google.com/go/iot v1.3.0/go.mod h1:r7RGh2B61+B8oz0AGE+J72AhA0G7tdXItODWsaA2oLs=
-cloud.google.com/go/iot v1.4.0/go.mod h1:dIDxPOn0UvNDUMD8Ger7FIaTuvMkj+aGk94RPP0iV+g=
-cloud.google.com/go/iot v1.5.0/go.mod h1:mpz5259PDl3XJthEmh9+ap0affn/MqNSP4My77Qql9o=
-cloud.google.com/go/iot v1.6.0/go.mod h1:IqdAsmE2cTYYNO1Fvjfzo9po179rAtJeVGUvkLN3rLE=
-cloud.google.com/go/kms v1.4.0/go.mod h1:fajBHndQ+6ubNw6Ss2sSd+SWvjL26RNo/dr7uxsnnOA=
-cloud.google.com/go/kms v1.5.0/go.mod h1:QJS2YY0eJGBg3mnDfuaCyLauWwBJiHRboYxJ++1xJNg=
-cloud.google.com/go/kms v1.6.0/go.mod h1:Jjy850yySiasBUDi6KFUwUv2n1+o7QZFyuUJg6OgjA0=
-cloud.google.com/go/kms v1.8.0/go.mod h1:4xFEhYFqvW+4VMELtZyxomGSYtSQKzM178ylFW4jMAg=
-cloud.google.com/go/kms v1.9.0/go.mod h1:qb1tPTgfF9RQP8e1wq4cLFErVuTJv7UsSC915J8dh3w=
-cloud.google.com/go/kms v1.10.0/go.mod h1:ng3KTUtQQU9bPX3+QGLsflZIHlkbn8amFAMY63m8d24=
-cloud.google.com/go/kms v1.10.1/go.mod h1:rIWk/TryCkR59GMC3YtHtXeLzd634lBbKenvyySAyYI=
-cloud.google.com/go/language v1.4.0/go.mod h1:F9dRpNFQmJbkaop6g0JhSBXCNlO90e1KWx5iDdxbWic=
-cloud.google.com/go/language v1.6.0/go.mod h1:6dJ8t3B+lUYfStgls25GusK04NLh3eDLQnWM3mdEbhI=
-cloud.google.com/go/language v1.7.0/go.mod h1:DJ6dYN/W+SQOjF8e1hLQXMF21AkH2w9wiPzPCJa2MIE=
-cloud.google.com/go/language v1.8.0/go.mod h1:qYPVHf7SPoNNiCL2Dr0FfEFNil1qi3pQEyygwpgVKB8=
-cloud.google.com/go/language v1.9.0/go.mod h1:Ns15WooPM5Ad/5no/0n81yUetis74g3zrbeJBE+ptUY=
-cloud.google.com/go/lifesciences v0.5.0/go.mod h1:3oIKy8ycWGPUyZDR/8RNnTOYevhaMLqh5vLUXs9zvT8=
-cloud.google.com/go/lifesciences v0.6.0/go.mod h1:ddj6tSX/7BOnhxCSd3ZcETvtNr8NZ6t/iPhY2Tyfu08=
-cloud.google.com/go/lifesciences v0.8.0/go.mod h1:lFxiEOMqII6XggGbOnKiyZ7IBwoIqA84ClvoezaA/bo=
-cloud.google.com/go/logging v1.6.1/go.mod h1:5ZO0mHHbvm8gEmeEUHrmDlTDSu5imF6MUP9OfilNXBw=
-cloud.google.com/go/logging v1.7.0/go.mod h1:3xjP2CjkM3ZkO73aj4ASA5wRPGGCRrPIAeNqVNkzY8M=
-cloud.google.com/go/longrunning v0.1.1/go.mod h1:UUFxuDWkv22EuY93jjmDMFT5GPQKeFVJBIF6QlTqdsE=
-cloud.google.com/go/longrunning v0.3.0/go.mod h1:qth9Y41RRSUE69rDcOn6DdK3HfQfsUI0YSmW3iIlLJc=
-cloud.google.com/go/longrunning v0.4.1/go.mod h1:4iWDqhBZ70CvZ6BfETbvam3T8FMvLK+eFj0E6AaRQTo=
-cloud.google.com/go/managedidentities v1.3.0/go.mod h1:UzlW3cBOiPrzucO5qWkNkh0w33KFtBJU281hacNvsdE=
-cloud.google.com/go/managedidentities v1.4.0/go.mod h1:NWSBYbEMgqmbZsLIyKvxrYbtqOsxY1ZrGM+9RgDqInM=
-cloud.google.com/go/managedidentities v1.5.0/go.mod h1:+dWcZ0JlUmpuxpIDfyP5pP5y0bLdRwOS4Lp7gMni/LA=
-cloud.google.com/go/maps v0.1.0/go.mod h1:BQM97WGyfw9FWEmQMpZ5T6cpovXXSd1cGmFma94eubI=
-cloud.google.com/go/maps v0.6.0/go.mod h1:o6DAMMfb+aINHz/p/jbcY+mYeXBoZoxTfdSQ8VAJaCw=
-cloud.google.com/go/maps v0.7.0/go.mod h1:3GnvVl3cqeSvgMcpRlQidXsPYuDGQ8naBis7MVzpXsY=
-cloud.google.com/go/mediatranslation v0.5.0/go.mod h1:jGPUhGTybqsPQn91pNXw0xVHfuJ3leR1wj37oU3y1f4=
-cloud.google.com/go/mediatranslation v0.6.0/go.mod h1:hHdBCTYNigsBxshbznuIMFNe5QXEowAuNmmC7h8pu5w=
-cloud.google.com/go/mediatranslation v0.7.0/go.mod h1:LCnB/gZr90ONOIQLgSXagp8XUW1ODs2UmUMvcgMfI2I=
-cloud.google.com/go/memcache v1.4.0/go.mod h1:rTOfiGZtJX1AaFUrOgsMHX5kAzaTQ8azHiuDoTPzNsE=
-cloud.google.com/go/memcache v1.5.0/go.mod h1:dk3fCK7dVo0cUU2c36jKb4VqKPS22BTkf81Xq617aWM=
-cloud.google.com/go/memcache v1.6.0/go.mod h1:XS5xB0eQZdHtTuTF9Hf8eJkKtR3pVRCcvJwtm68T3rA=
-cloud.google.com/go/memcache v1.7.0/go.mod h1:ywMKfjWhNtkQTxrWxCkCFkoPjLHPW6A7WOTVI8xy3LY=
-cloud.google.com/go/memcache v1.9.0/go.mod h1:8oEyzXCu+zo9RzlEaEjHl4KkgjlNDaXbCQeQWlzNFJM=
-cloud.google.com/go/metastore v1.5.0/go.mod h1:2ZNrDcQwghfdtCwJ33nM0+GrBGlVuh8rakL3vdPY3XY=
-cloud.google.com/go/metastore v1.6.0/go.mod h1:6cyQTls8CWXzk45G55x57DVQ9gWg7RiH65+YgPsNh9s=
-cloud.google.com/go/metastore v1.7.0/go.mod h1:s45D0B4IlsINu87/AsWiEVYbLaIMeUSoxlKKDqBGFS8=
-cloud.google.com/go/metastore v1.8.0/go.mod h1:zHiMc4ZUpBiM7twCIFQmJ9JMEkDSyZS9U12uf7wHqSI=
-cloud.google.com/go/metastore v1.10.0/go.mod h1:fPEnH3g4JJAk+gMRnrAnoqyv2lpUCqJPWOodSaf45Eo=
-cloud.google.com/go/monitoring v1.7.0/go.mod h1:HpYse6kkGo//7p6sT0wsIC6IBDET0RhIsnmlA53dvEk=
-cloud.google.com/go/monitoring v1.8.0/go.mod h1:E7PtoMJ1kQXWxPjB6mv2fhC5/15jInuulFdYYtlcvT4=
-cloud.google.com/go/monitoring v1.12.0/go.mod h1:yx8Jj2fZNEkL/GYZyTLS4ZtZEZN8WtDEiEqG4kLK50w=
-cloud.google.com/go/monitoring v1.13.0/go.mod h1:k2yMBAB1H9JT/QETjNkgdCGD9bPF712XiLTVr+cBrpw=
-cloud.google.com/go/networkconnectivity v1.4.0/go.mod h1:nOl7YL8odKyAOtzNX73/M5/mGZgqqMeryi6UPZTk/rA=
-cloud.google.com/go/networkconnectivity v1.5.0/go.mod h1:3GzqJx7uhtlM3kln0+x5wyFvuVH1pIBJjhCpjzSt75o=
-cloud.google.com/go/networkconnectivity v1.6.0/go.mod h1:OJOoEXW+0LAxHh89nXd64uGG+FbQoeH8DtxCHVOMlaM=
-cloud.google.com/go/networkconnectivity v1.7.0/go.mod h1:RMuSbkdbPwNMQjB5HBWD5MpTBnNm39iAVpC3TmsExt8=
-cloud.google.com/go/networkconnectivity v1.10.0/go.mod h1:UP4O4sWXJG13AqrTdQCD9TnLGEbtNRqjuaaA7bNjF5E=
-cloud.google.com/go/networkconnectivity v1.11.0/go.mod h1:iWmDD4QF16VCDLXUqvyspJjIEtBR/4zq5hwnY2X3scM=
-cloud.google.com/go/networkmanagement v1.4.0/go.mod h1:Q9mdLLRn60AsOrPc8rs8iNV6OHXaGcDdsIQe1ohekq8=
-cloud.google.com/go/networkmanagement v1.5.0/go.mod h1:ZnOeZ/evzUdUsnvRt792H0uYEnHQEMaz+REhhzJRcf4=
-cloud.google.com/go/networkmanagement v1.6.0/go.mod h1:5pKPqyXjB/sgtvB5xqOemumoQNB7y95Q7S+4rjSOPYY=
-cloud.google.com/go/networksecurity v0.5.0/go.mod h1:xS6fOCoqpVC5zx15Z/MqkfDwH4+m/61A3ODiDV1xmiQ=
-cloud.google.com/go/networksecurity v0.6.0/go.mod h1:Q5fjhTr9WMI5mbpRYEbiexTzROf7ZbDzvzCrNl14nyU=
-cloud.google.com/go/networksecurity v0.7.0/go.mod h1:mAnzoxx/8TBSyXEeESMy9OOYwo1v+gZ5eMRnsT5bC8k=
-cloud.google.com/go/networksecurity v0.8.0/go.mod h1:B78DkqsxFG5zRSVuwYFRZ9Xz8IcQ5iECsNrPn74hKHU=
-cloud.google.com/go/notebooks v1.2.0/go.mod h1:9+wtppMfVPUeJ8fIWPOq1UnATHISkGXGqTkxeieQ6UY=
-cloud.google.com/go/notebooks v1.3.0/go.mod h1:bFR5lj07DtCPC7YAAJ//vHskFBxA5JzYlH68kXVdk34=
-cloud.google.com/go/notebooks v1.4.0/go.mod h1:4QPMngcwmgb6uw7Po99B2xv5ufVoIQ7nOGDyL4P8AgA=
-cloud.google.com/go/notebooks v1.5.0/go.mod h1:q8mwhnP9aR8Hpfnrc5iN5IBhrXUy8S2vuYs+kBJ/gu0=
-cloud.google.com/go/notebooks v1.7.0/go.mod h1:PVlaDGfJgj1fl1S3dUwhFMXFgfYGhYQt2164xOMONmE=
-cloud.google.com/go/notebooks v1.8.0/go.mod h1:Lq6dYKOYOWUCTvw5t2q1gp1lAp0zxAxRycayS0iJcqQ=
-cloud.google.com/go/optimization v1.1.0/go.mod h1:5po+wfvX5AQlPznyVEZjGJTMr4+CAkJf2XSTQOOl9l4=
-cloud.google.com/go/optimization v1.2.0/go.mod h1:Lr7SOHdRDENsh+WXVmQhQTrzdu9ybg0NecjHidBq6xs=
-cloud.google.com/go/optimization v1.3.1/go.mod h1:IvUSefKiwd1a5p0RgHDbWCIbDFgKuEdB+fPPuP0IDLI=
-cloud.google.com/go/orchestration v1.3.0/go.mod h1:Sj5tq/JpWiB//X/q3Ngwdl5K7B7Y0KZ7bfv0wL6fqVA=
-cloud.google.com/go/orchestration v1.4.0/go.mod h1:6W5NLFWs2TlniBphAViZEVhrXRSMgUGDfW7vrWKvsBk=
-cloud.google.com/go/orchestration v1.6.0/go.mod h1:M62Bevp7pkxStDfFfTuCOaXgaaqRAga1yKyoMtEoWPQ=
-cloud.google.com/go/orgpolicy v1.4.0/go.mod h1:xrSLIV4RePWmP9P3tBl8S93lTmlAxjm06NSm2UTmKvE=
-cloud.google.com/go/orgpolicy v1.5.0/go.mod h1:hZEc5q3wzwXJaKrsx5+Ewg0u1LxJ51nNFlext7Tanwc=
-cloud.google.com/go/orgpolicy v1.10.0/go.mod h1:w1fo8b7rRqlXlIJbVhOMPrwVljyuW5mqssvBtU18ONc=
-cloud.google.com/go/osconfig v1.7.0/go.mod h1:oVHeCeZELfJP7XLxcBGTMBvRO+1nQ5tFG9VQTmYS2Fs=
-cloud.google.com/go/osconfig v1.8.0/go.mod h1:EQqZLu5w5XA7eKizepumcvWx+m8mJUhEwiPqWiZeEdg=
-cloud.google.com/go/osconfig v1.9.0/go.mod h1:Yx+IeIZJ3bdWmzbQU4fxNl8xsZ4amB+dygAwFPlvnNo=
-cloud.google.com/go/osconfig v1.10.0/go.mod h1:uMhCzqC5I8zfD9zDEAfvgVhDS8oIjySWh+l4WK6GnWw=
-cloud.google.com/go/osconfig v1.11.0/go.mod h1:aDICxrur2ogRd9zY5ytBLV89KEgT2MKB2L/n6x1ooPw=
-cloud.google.com/go/oslogin v1.4.0/go.mod h1:YdgMXWRaElXz/lDk1Na6Fh5orF7gvmJ0FGLIs9LId4E=
-cloud.google.com/go/oslogin v1.5.0/go.mod h1:D260Qj11W2qx/HVF29zBg+0fd6YCSjSqLUkY/qEenQU=
-cloud.google.com/go/oslogin v1.6.0/go.mod h1:zOJ1O3+dTU8WPlGEkFSh7qeHPPSoxrcMbbK1Nm2iX70=
-cloud.google.com/go/oslogin v1.7.0/go.mod h1:e04SN0xO1UNJ1M5GP0vzVBFicIe4O53FOfcixIqTyXo=
-cloud.google.com/go/oslogin v1.9.0/go.mod h1:HNavntnH8nzrn8JCTT5fj18FuJLFJc4NaZJtBnQtKFs=
-cloud.google.com/go/phishingprotection v0.5.0/go.mod h1:Y3HZknsK9bc9dMi+oE8Bim0lczMU6hrX0UpADuMefr0=
-cloud.google.com/go/phishingprotection v0.6.0/go.mod h1:9Y3LBLgy0kDTcYET8ZH3bq/7qni15yVUoAxiFxnlSUA=
-cloud.google.com/go/phishingprotection v0.7.0/go.mod h1:8qJI4QKHoda/sb/7/YmMQ2omRLSLYSu9bU0EKCNI+Lk=
-cloud.google.com/go/policytroubleshooter v1.3.0/go.mod h1:qy0+VwANja+kKrjlQuOzmlvscn4RNsAc0e15GGqfMxg=
-cloud.google.com/go/policytroubleshooter v1.4.0/go.mod h1:DZT4BcRw3QoO8ota9xw/LKtPa8lKeCByYeKTIf/vxdE=
-cloud.google.com/go/policytroubleshooter v1.5.0/go.mod h1:Rz1WfV+1oIpPdN2VvvuboLVRsB1Hclg3CKQ53j9l8vw=
-cloud.google.com/go/policytroubleshooter v1.6.0/go.mod h1:zYqaPTsmfvpjm5ULxAyD/lINQxJ0DDsnWOP/GZ7xzBc=
-cloud.google.com/go/privatecatalog v0.5.0/go.mod h1:XgosMUvvPyxDjAVNDYxJ7wBW8//hLDDYmnsNcMGq1K0=
-cloud.google.com/go/privatecatalog v0.6.0/go.mod h1:i/fbkZR0hLN29eEWiiwue8Pb+GforiEIBnV9yrRUOKI=
-cloud.google.com/go/privatecatalog v0.7.0/go.mod h1:2s5ssIFO69F5csTXcwBP7NPFTZvps26xGzvQ2PQaBYg=
-cloud.google.com/go/privatecatalog v0.8.0/go.mod h1:nQ6pfaegeDAq/Q5lrfCQzQLhubPiZhSaNhIgfJlnIXs=
-cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I=
-cloud.google.com/go/pubsub v1.1.0/go.mod h1:EwwdRX2sKPjnvnqCa270oGRyludottCI76h+R3AArQw=
-cloud.google.com/go/pubsub v1.2.0/go.mod h1:jhfEVHT8odbXTkndysNHCcx0awwzvfOlguIAii9o8iA=
-cloud.google.com/go/pubsub v1.3.1/go.mod h1:i+ucay31+CNRpDW4Lu78I4xXG+O1r/MAHgjpRVR+TSU=
-cloud.google.com/go/pubsub v1.26.0/go.mod h1:QgBH3U/jdJy/ftjPhTkyXNj543Tin1pRYcdcPRnFIRI=
-cloud.google.com/go/pubsub v1.27.1/go.mod h1:hQN39ymbV9geqBnfQq6Xf63yNhUAhv9CZhzp5O6qsW0=
-cloud.google.com/go/pubsub v1.28.0/go.mod h1:vuXFpwaVoIPQMGXqRyUQigu/AX1S3IWugR9xznmcXX8=
-cloud.google.com/go/pubsub v1.30.0/go.mod h1:qWi1OPS0B+b5L+Sg6Gmc9zD1Y+HaM0MdUr7LsupY1P4=
-cloud.google.com/go/pubsublite v1.5.0/go.mod h1:xapqNQ1CuLfGi23Yda/9l4bBCKz/wC3KIJ5gKcxveZg=
-cloud.google.com/go/pubsublite v1.6.0/go.mod h1:1eFCS0U11xlOuMFV/0iBqw3zP12kddMeCbj/F3FSj9k=
-cloud.google.com/go/pubsublite v1.7.0/go.mod h1:8hVMwRXfDfvGm3fahVbtDbiLePT3gpoiJYJY+vxWxVM=
-cloud.google.com/go/recaptchaenterprise v1.3.1/go.mod h1:OdD+q+y4XGeAlxRaMn1Y7/GveP6zmq76byL6tjPE7d4=
-cloud.google.com/go/recaptchaenterprise/v2 v2.1.0/go.mod h1:w9yVqajwroDNTfGuhmOjPDN//rZGySaf6PtFVcSCa7o=
-cloud.google.com/go/recaptchaenterprise/v2 v2.2.0/go.mod h1:/Zu5jisWGeERrd5HnlS3EUGb/D335f9k51B/FVil0jk=
-cloud.google.com/go/recaptchaenterprise/v2 v2.3.0/go.mod h1:O9LwGCjrhGHBQET5CA7dd5NwwNQUErSgEDit1DLNTdo=
-cloud.google.com/go/recaptchaenterprise/v2 v2.4.0/go.mod h1:Am3LHfOuBstrLrNCBrlI5sbwx9LBg3te2N6hGvHn2mE=
-cloud.google.com/go/recaptchaenterprise/v2 v2.5.0/go.mod h1:O8LzcHXN3rz0j+LBC91jrwI3R+1ZSZEWrfL7XHgNo9U=
-cloud.google.com/go/recaptchaenterprise/v2 v2.6.0/go.mod h1:RPauz9jeLtB3JVzg6nCbe12qNoaa8pXc4d/YukAmcnA=
-cloud.google.com/go/recaptchaenterprise/v2 v2.7.0/go.mod h1:19wVj/fs5RtYtynAPJdDTb69oW0vNHYDBTbB4NvMD9c=
-cloud.google.com/go/recommendationengine v0.5.0/go.mod h1:E5756pJcVFeVgaQv3WNpImkFP8a+RptV6dDLGPILjvg=
-cloud.google.com/go/recommendationengine v0.6.0/go.mod h1:08mq2umu9oIqc7tDy8sx+MNJdLG0fUi3vaSVbztHgJ4=
-cloud.google.com/go/recommendationengine v0.7.0/go.mod h1:1reUcE3GIu6MeBz/h5xZJqNLuuVjNg1lmWMPyjatzac=
-cloud.google.com/go/recommender v1.5.0/go.mod h1:jdoeiBIVrJe9gQjwd759ecLJbxCDED4A6p+mqoqDvTg=
-cloud.google.com/go/recommender v1.6.0/go.mod h1:+yETpm25mcoiECKh9DEScGzIRyDKpZ0cEhWGo+8bo+c=
-cloud.google.com/go/recommender v1.7.0/go.mod h1:XLHs/W+T8olwlGOgfQenXBTbIseGclClff6lhFVe9Bs=
-cloud.google.com/go/recommender v1.8.0/go.mod h1:PkjXrTT05BFKwxaUxQmtIlrtj0kph108r02ZZQ5FE70=
-cloud.google.com/go/recommender v1.9.0/go.mod h1:PnSsnZY7q+VL1uax2JWkt/UegHssxjUVVCrX52CuEmQ=
-cloud.google.com/go/redis v1.7.0/go.mod h1:V3x5Jq1jzUcg+UNsRvdmsfuFnit1cfe3Z/PGyq/lm4Y=
-cloud.google.com/go/redis v1.8.0/go.mod h1:Fm2szCDavWzBk2cDKxrkmWBqoCiL1+Ctwq7EyqBCA/A=
-cloud.google.com/go/redis v1.9.0/go.mod h1:HMYQuajvb2D0LvMgZmLDZW8V5aOC/WxstZHiy4g8OiA=
-cloud.google.com/go/redis v1.10.0/go.mod h1:ThJf3mMBQtW18JzGgh41/Wld6vnDDc/F/F35UolRZPM=
-cloud.google.com/go/redis v1.11.0/go.mod h1:/X6eicana+BWcUda5PpwZC48o37SiFVTFSs0fWAJ7uQ=
-cloud.google.com/go/resourcemanager v1.3.0/go.mod h1:bAtrTjZQFJkiWTPDb1WBjzvc6/kifjj4QBYuKCCoqKA=
-cloud.google.com/go/resourcemanager v1.4.0/go.mod h1:MwxuzkumyTX7/a3n37gmsT3py7LIXwrShilPh3P1tR0=
-cloud.google.com/go/resourcemanager v1.5.0/go.mod h1:eQoXNAiAvCf5PXxWxXjhKQoTMaUSNrEfg+6qdf/wots=
-cloud.google.com/go/resourcemanager v1.6.0/go.mod h1:YcpXGRs8fDzcUl1Xw8uOVmI8JEadvhRIkoXXUNVYcVo=
-cloud.google.com/go/resourcemanager v1.7.0/go.mod h1:HlD3m6+bwhzj9XCouqmeiGuni95NTrExfhoSrkC/3EI=
-cloud.google.com/go/resourcesettings v1.3.0/go.mod h1:lzew8VfESA5DQ8gdlHwMrqZs1S9V87v3oCnKCWoOuQU=
-cloud.google.com/go/resourcesettings v1.4.0/go.mod h1:ldiH9IJpcrlC3VSuCGvjR5of/ezRrOxFtpJoJo5SmXg=
-cloud.google.com/go/resourcesettings v1.5.0/go.mod h1:+xJF7QSG6undsQDfsCJyqWXyBwUoJLhetkRMDRnIoXA=
-cloud.google.com/go/retail v1.8.0/go.mod h1:QblKS8waDmNUhghY2TI9O3JLlFk8jybHeV4BF19FrE4=
-cloud.google.com/go/retail v1.9.0/go.mod h1:g6jb6mKuCS1QKnH/dpu7isX253absFl6iE92nHwlBUY=
-cloud.google.com/go/retail v1.10.0/go.mod h1:2gDk9HsL4HMS4oZwz6daui2/jmKvqShXKQuB2RZ+cCc=
-cloud.google.com/go/retail v1.11.0/go.mod h1:MBLk1NaWPmh6iVFSz9MeKG/Psyd7TAgm6y/9L2B4x9Y=
-cloud.google.com/go/retail v1.12.0/go.mod h1:UMkelN/0Z8XvKymXFbD4EhFJlYKRx1FGhQkVPU5kF14=
-cloud.google.com/go/run v0.2.0/go.mod h1:CNtKsTA1sDcnqqIFR3Pb5Tq0usWxJJvsWOCPldRU3Do=
-cloud.google.com/go/run v0.3.0/go.mod h1:TuyY1+taHxTjrD0ZFk2iAR+xyOXEA0ztb7U3UNA0zBo=
-cloud.google.com/go/run v0.8.0/go.mod h1:VniEnuBwqjigv0A7ONfQUaEItaiCRVujlMqerPPiktM=
-cloud.google.com/go/run v0.9.0/go.mod h1:Wwu+/vvg8Y+JUApMwEDfVfhetv30hCG4ZwDR/IXl2Qg=
-cloud.google.com/go/scheduler v1.4.0/go.mod h1:drcJBmxF3aqZJRhmkHQ9b3uSSpQoltBPGPxGAWROx6s=
-cloud.google.com/go/scheduler v1.5.0/go.mod h1:ri073ym49NW3AfT6DZi21vLZrG07GXr5p3H1KxN5QlI=
-cloud.google.com/go/scheduler v1.6.0/go.mod h1:SgeKVM7MIwPn3BqtcBntpLyrIJftQISRrYB5ZtT+KOk=
-cloud.google.com/go/scheduler v1.7.0/go.mod h1:jyCiBqWW956uBjjPMMuX09n3x37mtyPJegEWKxRsn44=
-cloud.google.com/go/scheduler v1.8.0/go.mod h1:TCET+Y5Gp1YgHT8py4nlg2Sew8nUHMqcpousDgXJVQc=
-cloud.google.com/go/scheduler v1.9.0/go.mod h1:yexg5t+KSmqu+njTIh3b7oYPheFtBWGcbVUYF1GGMIc=
-cloud.google.com/go/secretmanager v1.6.0/go.mod h1:awVa/OXF6IiyaU1wQ34inzQNc4ISIDIrId8qE5QGgKA=
-cloud.google.com/go/secretmanager v1.8.0/go.mod h1:hnVgi/bN5MYHd3Gt0SPuTPPp5ENina1/LxM+2W9U9J4=
-cloud.google.com/go/secretmanager v1.9.0/go.mod h1:b71qH2l1yHmWQHt9LC80akm86mX8AL6X1MA01dW8ht4=
-cloud.google.com/go/secretmanager v1.10.0/go.mod h1:MfnrdvKMPNra9aZtQFvBcvRU54hbPD8/HayQdlUgJpU=
-cloud.google.com/go/security v1.5.0/go.mod h1:lgxGdyOKKjHL4YG3/YwIL2zLqMFCKs0UbQwgyZmfJl4=
-cloud.google.com/go/security v1.7.0/go.mod h1:mZklORHl6Bg7CNnnjLH//0UlAlaXqiG7Lb9PsPXLfD0=
-cloud.google.com/go/security v1.8.0/go.mod h1:hAQOwgmaHhztFhiQ41CjDODdWP0+AE1B3sX4OFlq+GU=
-cloud.google.com/go/security v1.9.0/go.mod h1:6Ta1bO8LXI89nZnmnsZGp9lVoVWXqsVbIq/t9dzI+2Q=
-cloud.google.com/go/security v1.10.0/go.mod h1:QtOMZByJVlibUT2h9afNDWRZ1G96gVywH8T5GUSb9IA=
-cloud.google.com/go/security v1.12.0/go.mod h1:rV6EhrpbNHrrxqlvW0BWAIawFWq3X90SduMJdFwtLB8=
-cloud.google.com/go/security v1.13.0/go.mod h1:Q1Nvxl1PAgmeW0y3HTt54JYIvUdtcpYKVfIB8AOMZ+0=
-cloud.google.com/go/securitycenter v1.13.0/go.mod h1:cv5qNAqjY84FCN6Y9z28WlkKXyWsgLO832YiWwkCWcU=
-cloud.google.com/go/securitycenter v1.14.0/go.mod h1:gZLAhtyKv85n52XYWt6RmeBdydyxfPeTrpToDPw4Auc=
-cloud.google.com/go/securitycenter v1.15.0/go.mod h1:PeKJ0t8MoFmmXLXWm41JidyzI3PJjd8sXWaVqg43WWk=
-cloud.google.com/go/securitycenter v1.16.0/go.mod h1:Q9GMaLQFUD+5ZTabrbujNWLtSLZIZF7SAR0wWECrjdk=
-cloud.google.com/go/securitycenter v1.18.1/go.mod h1:0/25gAzCM/9OL9vVx4ChPeM/+DlfGQJDwBy/UC8AKK0=
-cloud.google.com/go/securitycenter v1.19.0/go.mod h1:LVLmSg8ZkkyaNy4u7HCIshAngSQ8EcIRREP3xBnyfag=
-cloud.google.com/go/servicecontrol v1.4.0/go.mod h1:o0hUSJ1TXJAmi/7fLJAedOovnujSEvjKCAFNXPQ1RaU=
-cloud.google.com/go/servicecontrol v1.5.0/go.mod h1:qM0CnXHhyqKVuiZnGKrIurvVImCs8gmqWsDoqe9sU1s=
-cloud.google.com/go/servicecontrol v1.10.0/go.mod h1:pQvyvSRh7YzUF2efw7H87V92mxU8FnFDawMClGCNuAA=
-cloud.google.com/go/servicecontrol v1.11.0/go.mod h1:kFmTzYzTUIuZs0ycVqRHNaNhgR+UMUpw9n02l/pY+mc=
-cloud.google.com/go/servicecontrol v1.11.1/go.mod h1:aSnNNlwEFBY+PWGQ2DoM0JJ/QUXqV5/ZD9DOLB7SnUk=
-cloud.google.com/go/servicedirectory v1.4.0/go.mod h1:gH1MUaZCgtP7qQiI+F+A+OpeKF/HQWgtAddhTbhL2bs=
-cloud.google.com/go/servicedirectory v1.5.0/go.mod h1:QMKFL0NUySbpZJ1UZs3oFAmdvVxhhxB6eJ/Vlp73dfg=
-cloud.google.com/go/servicedirectory v1.6.0/go.mod h1:pUlbnWsLH9c13yGkxCmfumWEPjsRs1RlmJ4pqiNjVL4=
-cloud.google.com/go/servicedirectory v1.7.0/go.mod h1:5p/U5oyvgYGYejufvxhgwjL8UVXjkuw7q5XcG10wx1U=
-cloud.google.com/go/servicedirectory v1.8.0/go.mod h1:srXodfhY1GFIPvltunswqXpVxFPpZjf8nkKQT7XcXaY=
-cloud.google.com/go/servicedirectory v1.9.0/go.mod h1:29je5JjiygNYlmsGz8k6o+OZ8vd4f//bQLtvzkPPT/s=
-cloud.google.com/go/servicemanagement v1.4.0/go.mod h1:d8t8MDbezI7Z2R1O/wu8oTggo3BI2GKYbdG4y/SJTco=
-cloud.google.com/go/servicemanagement v1.5.0/go.mod h1:XGaCRe57kfqu4+lRxaFEAuqmjzF0r+gWHjWqKqBvKFo=
-cloud.google.com/go/servicemanagement v1.6.0/go.mod h1:aWns7EeeCOtGEX4OvZUWCCJONRZeFKiptqKf1D0l/Jc=
-cloud.google.com/go/servicemanagement v1.8.0/go.mod h1:MSS2TDlIEQD/fzsSGfCdJItQveu9NXnUniTrq/L8LK4=
-cloud.google.com/go/serviceusage v1.3.0/go.mod h1:Hya1cozXM4SeSKTAgGXgj97GlqUvF5JaoXacR1JTP/E=
-cloud.google.com/go/serviceusage v1.4.0/go.mod h1:SB4yxXSaYVuUBYUml6qklyONXNLt83U0Rb+CXyhjEeU=
-cloud.google.com/go/serviceusage v1.5.0/go.mod h1:w8U1JvqUqwJNPEOTQjrMHkw3IaIFLoLsPLvsE3xueec=
-cloud.google.com/go/serviceusage v1.6.0/go.mod h1:R5wwQcbOWsyuOfbP9tGdAnCAc6B9DRwPG1xtWMDeuPA=
-cloud.google.com/go/shell v1.3.0/go.mod h1:VZ9HmRjZBsjLGXusm7K5Q5lzzByZmJHf1d0IWHEN5X4=
-cloud.google.com/go/shell v1.4.0/go.mod h1:HDxPzZf3GkDdhExzD/gs8Grqk+dmYcEjGShZgYa9URw=
-cloud.google.com/go/shell v1.6.0/go.mod h1:oHO8QACS90luWgxP3N9iZVuEiSF84zNyLytb+qE2f9A=
-cloud.google.com/go/spanner v1.41.0/go.mod h1:MLYDBJR/dY4Wt7ZaMIQ7rXOTLjYrmxLE/5ve9vFfWos=
-cloud.google.com/go/spanner v1.44.0/go.mod h1:G8XIgYdOK+Fbcpbs7p2fiprDw4CaZX63whnSMLVBxjk=
-cloud.google.com/go/spanner v1.45.0/go.mod h1:FIws5LowYz8YAE1J8fOS7DJup8ff7xJeetWEo5REA2M=
-cloud.google.com/go/speech v1.6.0/go.mod h1:79tcr4FHCimOp56lwC01xnt/WPJZc4v3gzyT7FoBkCM=
-cloud.google.com/go/speech v1.7.0/go.mod h1:KptqL+BAQIhMsj1kOP2la5DSEEerPDuOP/2mmkhHhZQ=
-cloud.google.com/go/speech v1.8.0/go.mod h1:9bYIl1/tjsAnMgKGHKmBZzXKEkGgtU+MpdDPTE9f7y0=
-cloud.google.com/go/speech v1.9.0/go.mod h1:xQ0jTcmnRFFM2RfX/U+rk6FQNUF6DQlydUSyoooSpco=
-cloud.google.com/go/speech v1.14.1/go.mod h1:gEosVRPJ9waG7zqqnsHpYTOoAS4KouMRLDFMekpJ0J0=
-cloud.google.com/go/speech v1.15.0/go.mod h1:y6oH7GhqCaZANH7+Oe0BhgIogsNInLlz542tg3VqeYI=
-cloud.google.com/go/storage v1.0.0/go.mod h1:IhtSnM/ZTZV8YYJWCY8RULGVqBDmpoyjwiyrjsg+URw=
-cloud.google.com/go/storage v1.5.0/go.mod h1:tpKbwo567HUNpVclU5sGELwQWBDZ8gh0ZeosJ0Rtdos=
-cloud.google.com/go/storage v1.6.0/go.mod h1:N7U0C8pVQ/+NIKOBQyamJIeKQKkZ+mxpohlUTyfDhBk=
-cloud.google.com/go/storage v1.8.0/go.mod h1:Wv1Oy7z6Yz3DshWRJFhqM/UCfaWIRTdp0RXyy7KQOVs=
-cloud.google.com/go/storage v1.10.0/go.mod h1:FLPqc6j+Ki4BU591ie1oL6qBQGu2Bl/tZ9ullr3+Kg0=
-cloud.google.com/go/storage v1.14.0/go.mod h1:GrKmX003DSIwi9o29oFT7YDnHYwZoctc3fOKtUw0Xmo=
-cloud.google.com/go/storage v1.22.1/go.mod h1:S8N1cAStu7BOeFfE8KAQzmyyLkK8p/vmRq6kuBTW58Y=
-cloud.google.com/go/storage v1.23.0/go.mod h1:vOEEDNFnciUMhBeT6hsJIn3ieU5cFRmzeLgDvXzfIXc=
-cloud.google.com/go/storage v1.27.0/go.mod h1:x9DOL8TK/ygDUMieqwfhdpQryTeEkhGKMi80i/iqR2s=
-cloud.google.com/go/storage v1.28.1/go.mod h1:Qnisd4CqDdo6BGs2AD5LLnEsmSQ80wQ5ogcBBKhU86Y=
-cloud.google.com/go/storage v1.29.0/go.mod h1:4puEjyTKnku6gfKoTfNOU/W+a9JyuVNxjpS5GBrB8h4=
-cloud.google.com/go/storagetransfer v1.5.0/go.mod h1:dxNzUopWy7RQevYFHewchb29POFv3/AaBgnhqzqiK0w=
-cloud.google.com/go/storagetransfer v1.6.0/go.mod h1:y77xm4CQV/ZhFZH75PLEXY0ROiS7Gh6pSKrM8dJyg6I=
-cloud.google.com/go/storagetransfer v1.7.0/go.mod h1:8Giuj1QNb1kfLAiWM1bN6dHzfdlDAVC9rv9abHot2W4=
-cloud.google.com/go/storagetransfer v1.8.0/go.mod h1:JpegsHHU1eXg7lMHkvf+KE5XDJ7EQu0GwNJbbVGanEw=
-cloud.google.com/go/talent v1.1.0/go.mod h1:Vl4pt9jiHKvOgF9KoZo6Kob9oV4lwd/ZD5Cto54zDRw=
-cloud.google.com/go/talent v1.2.0/go.mod h1:MoNF9bhFQbiJ6eFD3uSsg0uBALw4n4gaCaEjBw9zo8g=
-cloud.google.com/go/talent v1.3.0/go.mod h1:CmcxwJ/PKfRgd1pBjQgU6W3YBwiewmUzQYH5HHmSCmM=
-cloud.google.com/go/talent v1.4.0/go.mod h1:ezFtAgVuRf8jRsvyE6EwmbTK5LKciD4KVnHuDEFmOOA=
-cloud.google.com/go/talent v1.5.0/go.mod h1:G+ODMj9bsasAEJkQSzO2uHQWXHHXUomArjWQQYkqK6c=
-cloud.google.com/go/texttospeech v1.4.0/go.mod h1:FX8HQHA6sEpJ7rCMSfXuzBcysDAuWusNNNvN9FELDd8=
-cloud.google.com/go/texttospeech v1.5.0/go.mod h1:oKPLhR4n4ZdQqWKURdwxMy0uiTS1xU161C8W57Wkea4=
-cloud.google.com/go/texttospeech v1.6.0/go.mod h1:YmwmFT8pj1aBblQOI3TfKmwibnsfvhIBzPXcW4EBovc=
-cloud.google.com/go/tpu v1.3.0/go.mod h1:aJIManG0o20tfDQlRIej44FcwGGl/cD0oiRyMKG19IQ=
-cloud.google.com/go/tpu v1.4.0/go.mod h1:mjZaX8p0VBgllCzF6wcU2ovUXN9TONFLd7iz227X2Xg=
-cloud.google.com/go/tpu v1.5.0/go.mod h1:8zVo1rYDFuW2l4yZVY0R0fb/v44xLh3llq7RuV61fPM=
-cloud.google.com/go/trace v1.3.0/go.mod h1:FFUE83d9Ca57C+K8rDl/Ih8LwOzWIV1krKgxg6N0G28=
-cloud.google.com/go/trace v1.4.0/go.mod h1:UG0v8UBqzusp+z63o7FK74SdFE+AXpCLdFb1rshXG+Y=
-cloud.google.com/go/trace v1.8.0/go.mod h1:zH7vcsbAhklH8hWFig58HvxcxyQbaIqMarMg9hn5ECA=
-cloud.google.com/go/trace v1.9.0/go.mod h1:lOQqpE5IaWY0Ixg7/r2SjixMuc6lfTFeO4QGM4dQWOk=
-cloud.google.com/go/translate v1.3.0/go.mod h1:gzMUwRjvOqj5i69y/LYLd8RrNQk+hOmIXTi9+nb3Djs=
-cloud.google.com/go/translate v1.4.0/go.mod h1:06Dn/ppvLD6WvA5Rhdp029IX2Mi3Mn7fpMRLPvXT5Wg=
-cloud.google.com/go/translate v1.5.0/go.mod h1:29YDSYveqqpA1CQFD7NQuP49xymq17RXNaUDdc0mNu0=
-cloud.google.com/go/translate v1.6.0/go.mod h1:lMGRudH1pu7I3n3PETiOB2507gf3HnfLV8qlkHZEyos=
-cloud.google.com/go/translate v1.7.0/go.mod h1:lMGRudH1pu7I3n3PETiOB2507gf3HnfLV8qlkHZEyos=
-cloud.google.com/go/video v1.8.0/go.mod h1:sTzKFc0bUSByE8Yoh8X0mn8bMymItVGPfTuUBUyRgxk=
-cloud.google.com/go/video v1.9.0/go.mod h1:0RhNKFRF5v92f8dQt0yhaHrEuH95m068JYOvLZYnJSw=
-cloud.google.com/go/video v1.12.0/go.mod h1:MLQew95eTuaNDEGriQdcYn0dTwf9oWiA4uYebxM5kdg=
-cloud.google.com/go/video v1.13.0/go.mod h1:ulzkYlYgCp15N2AokzKjy7MQ9ejuynOJdf1tR5lGthk=
-cloud.google.com/go/video v1.14.0/go.mod h1:SkgaXwT+lIIAKqWAJfktHT/RbgjSuY6DobxEp0C5yTQ=
-cloud.google.com/go/video v1.15.0/go.mod h1:SkgaXwT+lIIAKqWAJfktHT/RbgjSuY6DobxEp0C5yTQ=
-cloud.google.com/go/videointelligence v1.6.0/go.mod h1:w0DIDlVRKtwPCn/C4iwZIJdvC69yInhW0cfi+p546uU=
-cloud.google.com/go/videointelligence v1.7.0/go.mod h1:k8pI/1wAhjznARtVT9U1llUaFNPh7muw8QyOUpavru4=
-cloud.google.com/go/videointelligence v1.8.0/go.mod h1:dIcCn4gVDdS7yte/w+koiXn5dWVplOZkE+xwG9FgK+M=
-cloud.google.com/go/videointelligence v1.9.0/go.mod h1:29lVRMPDYHikk3v8EdPSaL8Ku+eMzDljjuvRs105XoU=
-cloud.google.com/go/videointelligence v1.10.0/go.mod h1:LHZngX1liVtUhZvi2uNS0VQuOzNi2TkY1OakiuoUOjU=
-cloud.google.com/go/vision v1.2.0/go.mod h1:SmNwgObm5DpFBme2xpyOyasvBc1aPdjvMk2bBk0tKD0=
-cloud.google.com/go/vision/v2 v2.2.0/go.mod h1:uCdV4PpN1S0jyCyq8sIM42v2Y6zOLkZs+4R9LrGYwFo=
-cloud.google.com/go/vision/v2 v2.3.0/go.mod h1:UO61abBx9QRMFkNBbf1D8B1LXdS2cGiiCRx0vSpZoUo=
-cloud.google.com/go/vision/v2 v2.4.0/go.mod h1:VtI579ll9RpVTrdKdkMzckdnwMyX2JILb+MhPqRbPsY=
-cloud.google.com/go/vision/v2 v2.5.0/go.mod h1:MmaezXOOE+IWa+cS7OhRRLK2cNv1ZL98zhqFFZaaH2E=
-cloud.google.com/go/vision/v2 v2.6.0/go.mod h1:158Hes0MvOS9Z/bDMSFpjwsUrZ5fPrdwuyyvKSGAGMY=
-cloud.google.com/go/vision/v2 v2.7.0/go.mod h1:H89VysHy21avemp6xcf9b9JvZHVehWbET0uT/bcuY/0=
-cloud.google.com/go/vmmigration v1.2.0/go.mod h1:IRf0o7myyWFSmVR1ItrBSFLFD/rJkfDCUTO4vLlJvsE=
-cloud.google.com/go/vmmigration v1.3.0/go.mod h1:oGJ6ZgGPQOFdjHuocGcLqX4lc98YQ7Ygq8YQwHh9A7g=
-cloud.google.com/go/vmmigration v1.5.0/go.mod h1:E4YQ8q7/4W9gobHjQg4JJSgXXSgY21nA5r8swQV+Xxc=
-cloud.google.com/go/vmmigration v1.6.0/go.mod h1:bopQ/g4z+8qXzichC7GW1w2MjbErL54rk3/C843CjfY=
-cloud.google.com/go/vmwareengine v0.1.0/go.mod h1:RsdNEf/8UDvKllXhMz5J40XxDrNJNN4sagiox+OI208=
-cloud.google.com/go/vmwareengine v0.2.2/go.mod h1:sKdctNJxb3KLZkE/6Oui94iw/xs9PRNC2wnNLXsHvH8=
-cloud.google.com/go/vmwareengine v0.3.0/go.mod h1:wvoyMvNWdIzxMYSpH/R7y2h5h3WFkx6d+1TIsP39WGY=
-cloud.google.com/go/vpcaccess v1.4.0/go.mod h1:aQHVbTWDYUR1EbTApSVvMq1EnT57ppDmQzZ3imqIk4w=
-cloud.google.com/go/vpcaccess v1.5.0/go.mod h1:drmg4HLk9NkZpGfCmZ3Tz0Bwnm2+DKqViEpeEpOq0m8=
-cloud.google.com/go/vpcaccess v1.6.0/go.mod h1:wX2ILaNhe7TlVa4vC5xce1bCnqE3AeH27RV31lnmZes=
-cloud.google.com/go/webrisk v1.4.0/go.mod h1:Hn8X6Zr+ziE2aNd8SliSDWpEnSS1u4R9+xXZmFiHmGE=
-cloud.google.com/go/webrisk v1.5.0/go.mod h1:iPG6fr52Tv7sGk0H6qUFzmL3HHZev1htXuWDEEsqMTg=
-cloud.google.com/go/webrisk v1.6.0/go.mod h1:65sW9V9rOosnc9ZY7A7jsy1zoHS5W9IAXv6dGqhMQMc=
-cloud.google.com/go/webrisk v1.7.0/go.mod h1:mVMHgEYH0r337nmt1JyLthzMr6YxwN1aAIEc2fTcq7A=
-cloud.google.com/go/webrisk v1.8.0/go.mod h1:oJPDuamzHXgUc+b8SiHRcVInZQuybnvEW72PqTc7sSg=
-cloud.google.com/go/websecurityscanner v1.3.0/go.mod h1:uImdKm2wyeXQevQJXeh8Uun/Ym1VqworNDlBXQevGMo=
-cloud.google.com/go/websecurityscanner v1.4.0/go.mod h1:ebit/Fp0a+FWu5j4JOmJEV8S8CzdTkAS77oDsiSqYWQ=
-cloud.google.com/go/websecurityscanner v1.5.0/go.mod h1:Y6xdCPy81yi0SQnDY1xdNTNpfY1oAgXUlcfN3B3eSng=
-cloud.google.com/go/workflows v1.6.0/go.mod h1:6t9F5h/unJz41YqfBmqSASJSXccBLtD1Vwf+KmJENM0=
-cloud.google.com/go/workflows v1.7.0/go.mod h1:JhSrZuVZWuiDfKEFxU0/F1PQjmpnpcoISEXH2bcHC3M=
-cloud.google.com/go/workflows v1.8.0/go.mod h1:ysGhmEajwZxGn1OhGOGKsTXc5PyxOc0vfKf5Af+to4M=
-cloud.google.com/go/workflows v1.9.0/go.mod h1:ZGkj1aFIOd9c8Gerkjjq7OW7I5+l6cSvT3ujaO/WwSA=
-cloud.google.com/go/workflows v1.10.0/go.mod h1:fZ8LmRmZQWacon9UCX1r/g/DfAXx5VcPALq2CxzdePw=
 dario.cat/mergo v1.0.0 h1:AGCNq9Evsj31mOgNPcLyXc+4PNABt905YmuqPYYpBWk=
 dario.cat/mergo v1.0.0/go.mod h1:uNxQE+84aUszobStD9th8a29P2fMDhsBdgRYvZOxGmk=
-dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
-gioui.org v0.0.0-20210308172011-57750fc8a0a6/go.mod h1:RSH6KIUZ0p2xy5zHDxgAM4zumjgTw83q2ge/PI+yyw8=
-git.sr.ht/~sbinet/gg v0.3.1/go.mod h1:KGYtlADtqsqANL9ueOFkWymvzUvLMQllU5Ixo+8v3pc=
 github.com/Anddd7/pb v0.0.0-20240425032658-369b0f6a404c h1:uhBf0CHXi7nCFZXxHV7l1cBcYFEEVRK4FYxvm1l9lKg=
 github.com/Anddd7/pb v0.0.0-20240425032658-369b0f6a404c/go.mod h1:vYWKbnXd2KAZHUECLPzSE0Er3FgiEmOdPtxwSIRihck=
 github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 h1:L/gRVlceqvL25UVaW/CKtUDjefjrs0SPonmDGUVOYP0=
@@ -606,67 +7,17 @@ github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161/go.mod h1:xomTg6
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/toml v1.3.2 h1:o7IhLm0Msx3BaB+n3Ag7L8EVlByGnpq14C4YWiu/gL8=
 github.com/BurntSushi/toml v1.3.2/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
-github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
-github.com/JohnCGriffin/overflow v0.0.0-20211019200055-46fa312c352c/go.mod h1:X0CRv0ky0k6m906ixxpzmDRLvX58TFUKS2eePweuyxk=
-github.com/OneOfOne/xxhash v1.2.2/go.mod h1:HSdplMjZKSmBqAxg5vPj2TmRDmfkzw+cTzAElWljhcU=
-github.com/ajstarks/deck v0.0.0-20200831202436-30c9fc6549a9/go.mod h1:JynElWSGnm/4RlzPXRlREEwqTHAN3T56Bv2ITsFT3gY=
-github.com/ajstarks/deck/generate v0.0.0-20210309230005-c3f852c02e19/go.mod h1:T13YZdzov6OU0A1+RfKZiZN9ca6VeKdBdyDV+BY97Tk=
-github.com/ajstarks/svgo v0.0.0-20180226025133-644b8db467af/go.mod h1:K08gAheRH3/J6wwsYMMT4xOr94bZjxIelGM0+d/wbFw=
-github.com/ajstarks/svgo v0.0.0-20211024235047-1546f124cd8b/go.mod h1:1KcenG0jGWcpt8ov532z81sp/kMMUG485J2InIOyADM=
-github.com/alecthomas/kingpin/v2 v2.3.1/go.mod h1:oYL5vtsvEHZGHxU7DMp32Dvx+qL+ptGn6lWaot2vCNE=
-github.com/alecthomas/kingpin/v2 v2.3.2/go.mod h1:0gyi0zQnjuFk8xrkNKamJoyUo382HRL7ATRpFZCw6tE=
-github.com/alecthomas/kingpin/v2 v2.4.0/go.mod h1:0gyi0zQnjuFk8xrkNKamJoyUo382HRL7ATRpFZCw6tE=
-github.com/alecthomas/template v0.0.0-20160405071501-a0175ee3bccc/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
-github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
-github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
-github.com/alecthomas/units v0.0.0-20190717042225-c3de453c63f4/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
-github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d/go.mod h1:rBZYJk541a8SKzHPHnH3zbiI+7dagKZ0cgpgrD7Fyho=
-github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137/go.mod h1:OMCwj8VM1Kc9e19TLln2VL61YJF0x1XFtfdL4JdbSyE=
-github.com/andybalholm/brotli v1.0.4/go.mod h1:fO7iG3H7G2nSZ7m0zPUDn85XEX2GTukHGRSepvi9Eig=
-github.com/antihax/optional v1.0.0/go.mod h1:uupD/76wgC+ih3iEmQUL+0Ugr19nfwCT1kdvxnR2qWY=
-github.com/apache/arrow/go/v10 v10.0.1/go.mod h1:YvhnlEePVnBS4+0z3fhPfUy7W1Ikj0Ih0vcRo/gZ1M0=
-github.com/apache/arrow/go/v11 v11.0.0/go.mod h1:Eg5OsL5H+e299f7u5ssuXsuHQVEGC4xei5aX110hRiI=
-github.com/apache/thrift v0.16.0/go.mod h1:PHK3hniurgQaNMZYaCLEqXKsYK8upmhPbmdP2FXSqgU=
 github.com/armon/go-proxyproto v0.1.0 h1:TWWcSsjco7o2itn6r25/5AqKBiWmsiuzsUDLT/MTl7k=
 github.com/armon/go-proxyproto v0.1.0/go.mod h1:Xj90dce2VKbHzRAeiVQAMBtj4M5oidoXJ8lmgyW21mw=
-github.com/beorn7/perks v0.0.0-20180321164747-3a771d992973/go.mod h1:Dwedo/Wpr24TaqPxmxbtue+5NUziq4I4S80YR8gNf3Q=
-github.com/beorn7/perks v1.0.0/go.mod h1:KWe93zE9D1o94FZ5RNwFwVgaQK1VOXiVxmqh+CedLV8=
 github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM=
 github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6rlkpw=
 github.com/blang/semver/v4 v4.0.0 h1:1PFHFE6yCCTv8C1TeyNNarDzntLi7wMI5i/pzqYIsAM=
 github.com/blang/semver/v4 v4.0.0/go.mod h1:IbckMUScFkM3pff0VJDNKRiT6TG/YpiHIM2yvyW5YoQ=
-github.com/boombuler/barcode v1.0.0/go.mod h1:paBWMcWSl3LHKBqUq+rly7CNSldXjb2rDl3JlRe0mD8=
-github.com/boombuler/barcode v1.0.1/go.mod h1:paBWMcWSl3LHKBqUq+rly7CNSldXjb2rDl3JlRe0mD8=
-github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
-github.com/census-instrumentation/opencensus-proto v0.3.0/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
-github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
-github.com/cespare/xxhash v1.1.0/go.mod h1:XrSqR1VqqWfGrhpAt58auRo0WTKS1nRRg3ghfAqPWnc=
-github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
-github.com/cespare/xxhash/v2 v2.1.2/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
-github.com/cespare/xxhash/v2 v2.2.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
 github.com/cespare/xxhash/v2 v2.3.0 h1:UL815xU9SqsFlibzuggzjXhog7bL6oX9BbNZnL2UFvs=
 github.com/cespare/xxhash/v2 v2.3.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
-github.com/chzyer/logex v1.1.10/go.mod h1:+Ywpsq7O8HXn0nuIou7OrIPyXbp3wmkHB+jjWRnGsAI=
-github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5PlCu98SY8svDHJxuZscDgtXS6KTTbou5AhLI=
-github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU=
-github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
-github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc=
-github.com/cncf/udpa/go v0.0.0-20200629203442-efcf912fb354/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
-github.com/cncf/udpa/go v0.0.0-20201120205902-5459f2c99403/go.mod h1:WmhPx2Nbnhtbo57+VJT5O0JRkEi1Wbu0z5j0R8u5Hbk=
-github.com/cncf/udpa/go v0.0.0-20210930031921-04548b0d99d4/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
-github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
-github.com/cncf/xds/go v0.0.0-20210312221358-fbca930ec8ed/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20210805033703-aa0b78936158/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20210922020428-25de7278fc84/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20211001041855-01bcc9b48dfe/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20211011173535-cb28da3451f1/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20220314180256-7f1daf1720fc/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20230105202645-06c439db220b/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20230310173818-32f1caf87195/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/coreos/go-systemd/v22 v22.5.0 h1:RrqgGjYQKalulkV8NGVIfkXQf6YYmOyiJKk8iXXhfZs=
 github.com/coreos/go-systemd/v22 v22.5.0/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
 github.com/cpuguy83/go-md2man/v2 v2.0.4/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
-github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
 github.com/creack/pty v1.1.18 h1:n56/Zwd5o6whRC5PMGretI4IdRLlmBXYNjScPaBgsbY=
 github.com/creack/pty v1.1.18/go.mod h1:MOBLtS5ELjhRRrroQr9kyvTxUAFNvYEK993ew/Vr4O4=
 github.com/cyphar/filepath-securejoin v0.2.4 h1:Ugdm7cg7i6ZK6x3xDF1oEu1nfkyfH53EtKeQYTC3kyg=
@@ -674,35 +25,16 @@ github.com/cyphar/filepath-securejoin v0.2.4/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxG
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815/go.mod h1:WwZ+bS3ebgob9U8Nd0kOddGdZWjyMGR8Wziv+TBNwSE=
-github.com/dustin/go-humanize v1.0.0/go.mod h1:HtrtbFcZ19U5GC7JDqmcUSB87Iq5E25KnS6fMYU6eOk=
 github.com/eapache/channels v1.1.0 h1:F1taHcn7/F0i8DYqKXJnyhJcVpp2kgFcNePxXtnyu4k=
 github.com/eapache/channels v1.1.0/go.mod h1:jMm2qB5Ubtg9zLd+inMZd2/NUvXgzmWXsDaLyQIGfH0=
 github.com/eapache/queue v1.1.0 h1:YOEu7KNc61ntiQlcEeUIoDTJ2o8mQznoNvUhiigpIqc=
 github.com/eapache/queue v1.1.0/go.mod h1:6eCeP0CKFpHLu8blIFXhExK/dRa7WDZfr6jVFPTqq+I=
 github.com/emicklei/go-restful/v3 v3.12.0 h1:y2DdzBAURM29NFF94q6RaY4vjIH1rtwDapwQtU84iWk=
 github.com/emicklei/go-restful/v3 v3.12.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
-github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
-github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
-github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98=
-github.com/envoyproxy/go-control-plane v0.9.7/go.mod h1:cwu0lG7PUMfa9snN8LXBig5ynNVH9qI8YYLbd1fK2po=
-github.com/envoyproxy/go-control-plane v0.9.9-0.20201210154907-fd9021fe5dad/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
-github.com/envoyproxy/go-control-plane v0.9.9-0.20210217033140-668b12f5399d/go.mod h1:cXg6YxExXjJnVBQHBLXeUAgxn2UodCpnH306RInaBQk=
-github.com/envoyproxy/go-control-plane v0.9.9-0.20210512163311-63b5d3c536b0/go.mod h1:hliV/p42l8fGbc6Y9bQ70uLwIvmJyVE5k4iMKlh8wCQ=
-github.com/envoyproxy/go-control-plane v0.9.10-0.20210907150352-cf90f659a021/go.mod h1:AFq3mo9L8Lqqiid3OhADV3RfLJnjiw63cSpi+fDTRC0=
-github.com/envoyproxy/go-control-plane v0.10.2-0.20220325020618-49ff273808a1/go.mod h1:KJwIaB5Mv44NWtYuAOFCVOjcI94vtpEz2JU/D2v6IjE=
-github.com/envoyproxy/go-control-plane v0.10.3/go.mod h1:fJJn/j26vwOu972OllsvAgJJM//w9BV6Fxbg2LuVd34=
-github.com/envoyproxy/go-control-plane v0.11.0/go.mod h1:VnHyVMpzcLvCFt9yUz1UnCwHLhwx1WguiVDV7pTG/tI=
-github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
-github.com/envoyproxy/protoc-gen-validate v0.6.7/go.mod h1:dyJXwwfPK2VSqiB9Klm1J6romD608Ba7Hij42vrOBCo=
-github.com/envoyproxy/protoc-gen-validate v0.9.1/go.mod h1:OKNgG7TCp5pF4d6XftA0++PMirau2/yoOwVac3AbF2w=
-github.com/envoyproxy/protoc-gen-validate v0.10.0/go.mod h1:DRjgyB0I43LtJapqN6NiRwroiAU2PaFuvk/vjgh61ss=
 github.com/evanphx/json-patch v5.9.0+incompatible h1:fBXyNpNMuTTDdquAq/uisOr2lShz4oaXpDTX2bLe7ls=
 github.com/evanphx/json-patch v5.9.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/evanphx/json-patch/v5 v5.9.0 h1:kcBlZQbplgElYIlo/n1hJbls2z/1awpXxpRi0/FOJfg=
 github.com/evanphx/json-patch/v5 v5.9.0/go.mod h1:VNkHZ/282BpEyt/tObQO8s5CMPmYYq14uClGH4abBuQ=
-github.com/fogleman/gg v1.2.1-0.20190220221249-0403632d5b90/go.mod h1:R/bRT+9gY/C5z7JzPU0zXsXHKM4/ayA+zqcVNZzPa1k=
-github.com/fogleman/gg v1.3.0/go.mod h1:R/bRT+9gY/C5z7JzPU0zXsXHKM4/ayA+zqcVNZzPa1k=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
 github.com/fsnotify/fsnotify v1.7.0 h1:8JEhPFa5W2WU7YfeZzPNqzMP6Lwt7L2715Ggo0nosvA=
@@ -710,28 +42,8 @@ github.com/fsnotify/fsnotify v1.7.0/go.mod h1:40Bi/Hjc2AVfZrqy+aj+yEI+/bRxZnMJyT
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
 github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa h1:RDBNVkRviHZtvDvId8XSGPu3rmpmSe+wKRcEWNgsfWU=
 github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
-github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
 github.com/go-errors/errors v1.5.1 h1:ZwEMSLRCapFLflTpT7NKaAc7ukJ8ZPEjzlxt8rPN8bk=
 github.com/go-errors/errors v1.5.1/go.mod h1:sIVyrIiJhuEF+Pj9Ebtd6P/rEYROXFi3BopGUQ5a5Og=
-github.com/go-fonts/dejavu v0.1.0/go.mod h1:4Wt4I4OU2Nq9asgDCteaAaWZOV24E+0/Pwo0gppep4g=
-github.com/go-fonts/latin-modern v0.2.0/go.mod h1:rQVLdDMK+mK1xscDwsqM5J8U2jrRa3T0ecnM9pNujks=
-github.com/go-fonts/liberation v0.1.1/go.mod h1:K6qoJYypsmfVjWg8KOVDQhLc8UDgIK2HYqyqAO9z7GY=
-github.com/go-fonts/liberation v0.2.0/go.mod h1:K6qoJYypsmfVjWg8KOVDQhLc8UDgIK2HYqyqAO9z7GY=
-github.com/go-fonts/stix v0.1.0/go.mod h1:w/c1f0ldAUlJmLBvlbkvVXLAD+tAMqobIIQpmnUIzUY=
-github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1/go.mod h1:vR7hzQXu2zJy9AVAgeJqvqgH9Q5CA+iKCZ2gyEVpxRU=
-github.com/go-gl/glfw/v3.3/glfw v0.0.0-20191125211704-12ad95a8df72/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8=
-github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4/go.mod h1:tQ2UAYgL5IevRw8kRxooKSPJfGvJ9fJQFa0TUsXzTg8=
-github.com/go-kit/kit v0.8.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
-github.com/go-kit/kit v0.9.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
-github.com/go-kit/log v0.1.0/go.mod h1:zbhenjAZHb184qTLMA9ZjW7ThYL0H2mk7Q6pNt4vbaY=
-github.com/go-kit/log v0.2.0/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0=
-github.com/go-kit/log v0.2.1/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0=
-github.com/go-latex/latex v0.0.0-20210118124228-b3d85cf34e07/go.mod h1:CO1AlKB2CSIqUrmQPqA0gdRIlnLEY0gK5JGjh37zN5U=
-github.com/go-latex/latex v0.0.0-20210823091927-c0d11ff05a81/go.mod h1:SX0U8uGpxhq9o2S/CELCSUxEWWAuoCUcVCQWv7G2OCk=
-github.com/go-logfmt/logfmt v0.3.0/go.mod h1:Qt1PoO58o5twSAckw1HlFXLmHsOX5/0LbT9GBnD5lWE=
-github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V4qmtdjCk=
-github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A=
-github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
 github.com/go-logr/logr v1.4.1 h1:pKouT5E8xu9zeFC39JXRDukb6JFQPXM5p5I91188VAQ=
 github.com/go-logr/logr v1.4.1/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
 github.com/go-logr/zapr v1.3.0 h1:XGdV8XW8zdwFiwOA2Dryh1gj2KRQyOOoNmBy4EplIcQ=
@@ -742,184 +54,61 @@ github.com/go-openapi/jsonreference v0.21.0 h1:Rs+Y7hSXT83Jacb7kFyjn4ijOuVGSvOdF
 github.com/go-openapi/jsonreference v0.21.0/go.mod h1:LmZmgsrTkVg9LG4EaHeY8cBDslNPMo06cago5JNLkm4=
 github.com/go-openapi/swag v0.23.0 h1:vsEVJDUo2hPJ2tu0/Xc+4noaxyEffXNIs3cOULZ+GrE=
 github.com/go-openapi/swag v0.23.0/go.mod h1:esZ8ITTYEsH1V2trKHjAN8Ai7xHb8RV+YSZ577vPjgQ=
-github.com/go-pdf/fpdf v0.5.0/go.mod h1:HzcnA+A23uwogo0tp9yU+l3V+KXhiESpt1PMayhOh5M=
-github.com/go-pdf/fpdf v0.6.0/go.mod h1:HzcnA+A23uwogo0tp9yU+l3V+KXhiESpt1PMayhOh5M=
-github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
 github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE=
 github.com/go-task/slim-sprig/v3 v3.0.0 h1:sUs3vkvUymDpBKi3qH1YSqBQk9+9D/8M2mN1vB6EwHI=
 github.com/go-task/slim-sprig/v3 v3.0.0/go.mod h1:W848ghGpv3Qj3dhTPRyJypKRiqCdHZiAzKg9hl15HA8=
-github.com/goccy/go-json v0.9.11/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
 github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/godbus/dbus/v5 v5.1.0 h1:4KLkAxT3aOY8Li4FRJe/KvhoNFFxo0m6fNuFUO8QJUk=
 github.com/godbus/dbus/v5 v5.1.0/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
-github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
-github.com/golang/freetype v0.0.0-20170609003504-e2365dfdc4a0/go.mod h1:E/TSTwGwJL78qG/PmXZO1EjYhfJinVAhrmmHX6Z8B9k=
-github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
-github.com/golang/glog v1.0.0/go.mod h1:EWib/APOK0SL3dFbYqvxE3UYd8E6s1ouQ7iEp/0LWV4=
-github.com/golang/glog v1.1.0/go.mod h1:pfYeQZ3JWZoXTV5sFc986z3HTpwQs9At6P4ImfuP3NQ=
-github.com/golang/groupcache v0.0.0-20190702054246-869f871628b6/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
-github.com/golang/groupcache v0.0.0-20191227052852-215e87163ea7/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
-github.com/golang/groupcache v0.0.0-20200121045136-8c9f03a8e57e/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da h1:oI5xCqsCo564l8iNU+DwB5epxmsaqB+rhGL0m5jtYqE=
 github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
-github.com/golang/mock v1.1.1/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
-github.com/golang/mock v1.2.0/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
-github.com/golang/mock v1.3.1/go.mod h1:sBzyDLLjw3U8JLTeZvSv8jJB+tU5PVekmnlKIyFUx0Y=
-github.com/golang/mock v1.4.0/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
-github.com/golang/mock v1.4.1/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
-github.com/golang/mock v1.4.3/go.mod h1:UOMv5ysSaYNkG+OFQykRIcU/QvvxJf3p21QfJ2Bt3cw=
-github.com/golang/mock v1.4.4/go.mod h1:l3mdAwkq5BuhzHwde/uurv3sEJeZMXNpwsxVWU71h+4=
-github.com/golang/mock v1.5.0/go.mod h1:CWnOUgYIOo4TcNZ0wHX3YZCqsaM1I1Jvs6v3mP3KVu8=
-github.com/golang/mock v1.6.0/go.mod h1:p6yTPP+5HYm5mzsMV8JkE6ZKdX+/wYM6Hr+LicevLPs=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
-github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
-github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
-github.com/golang/protobuf v1.3.3/go.mod h1:vzj43D7+SQXF/4pzW/hwtAqwc6iTitCiVSaWz5lYuqw=
-github.com/golang/protobuf v1.3.4/go.mod h1:vzj43D7+SQXF/4pzW/hwtAqwc6iTitCiVSaWz5lYuqw=
-github.com/golang/protobuf v1.3.5/go.mod h1:6O5/vntMXwX2lRkT1hjjk0nAC1IDOTvTlVgjlRvqsdk=
 github.com/golang/protobuf v1.4.0-rc.1/go.mod h1:ceaxUfeHdC40wWswd/P6IGgMaK3YpKi5j83Wpe3EHw8=
 github.com/golang/protobuf v1.4.0-rc.1.0.20200221234624-67d41d38c208/go.mod h1:xKAWHe0F5eneWXFV3EuXVDTCmh+JuBKY0li0aMyXATA=
 github.com/golang/protobuf v1.4.0-rc.2/go.mod h1:LlEzMj4AhA7rCAGe4KMBDvJI+AwstrUpVNzEA03Pprs=
 github.com/golang/protobuf v1.4.0-rc.4.0.20200313231945-b860323f09d0/go.mod h1:WU3c8KckQ9AFe+yFwt9sWVRKCVIyN9cPHBJSNnbL67w=
 github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvqG2KuDX0=
-github.com/golang/protobuf v1.4.1/go.mod h1:U8fpvMrcmy5pZrNK1lt4xCsGvpyWQ/VVv6QDs8UjoX8=
 github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
-github.com/golang/protobuf v1.4.3/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
-github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
-github.com/golang/protobuf v1.5.1/go.mod h1:DopwsBzvsk0Fs44TXzsVbJyPhcCPeIwnvohx4u74HPM=
-github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
-github.com/golang/protobuf v1.5.3/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/golang/protobuf v1.5.4 h1:i7eJL8qZTpSEXOPTxNKhASYpMn+8e5Q6AdndVa1dWek=
 github.com/golang/protobuf v1.5.4/go.mod h1:lnTiLA8Wa4RWRcIUkrtSVa5nRhsEGBg48fD6rSs7xps=
-github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
-github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7/go.mod h1:aii0r/K0ZnHv7G0KF7xy1v0A7s2Ljrb5byB7MO5p6TU=
 github.com/gomarkdown/markdown v0.0.0-20231222211730-1d6d20845b47 h1:k4Tw0nt6lwro3Uin8eqoET7MDA4JnT8YgbCjc/g5E3k=
 github.com/gomarkdown/markdown v0.0.0-20231222211730-1d6d20845b47/go.mod h1:JDGcbDT52eL4fju3sZ4TeHGsQwhG9nbDV21aMyhwPoA=
-github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
-github.com/google/btree v1.0.0/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/btree v1.1.2 h1:xf4v41cLI2Z6FxbKm+8Bu+m8ifhj15JuZ9sa0jZCMUU=
 github.com/google/btree v1.1.2/go.mod h1:qOPhT0dTNdNzV6Z/lhRX0YXUafgPLFUh+gZMl761Gm4=
-github.com/google/flatbuffers v2.0.8+incompatible/go.mod h1:1AeVuKshWv4vARoZatz6mlQ0JxURH0Kv5+zNeJKJCa8=
 github.com/google/gnostic-models v0.6.8 h1:yo/ABAfM5IMRsS1VnXjTBvUb61tFIHozhlYvRgGre9I=
 github.com/google/gnostic-models v0.6.8/go.mod h1:5n7qKqH0f5wFt+aWF8CW6pZLLNOfYuF5OpfBSENuI8U=
-github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.4.1/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.1/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.4/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.6/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.7/go.mod h1:n+brtR0CgQNWTVd5ZUFpTBC8YFBDLK/h/bpaJ8/DtOE=
-github.com/google/go-cmp v0.5.8/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/go-cmp v0.5.9/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
 github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
 github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/martian v2.1.0+incompatible/go.mod h1:9I4somxYTbIHy5NJKHRl3wXiIaQGbYVAs8BPL6v8lEs=
-github.com/google/martian/v3 v3.0.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
-github.com/google/martian/v3 v3.1.0/go.mod h1:y5Zk1BBys9G+gd6Jrk0W3cC1+ELVxBWuIGO+w/tUAp0=
-github.com/google/martian/v3 v3.2.1/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
-github.com/google/martian/v3 v3.3.2/go.mod h1:oBOf6HBosgwRXnUGWUB05QECsc6uvmMiJ3+6W4l/CUk=
-github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
-github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
-github.com/google/pprof v0.0.0-20191218002539-d4f498aebedc/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20200212024743-f11f1df84d12/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20200229191704-1ebb73c60ed3/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20200430221834-fc25d7d30c6d/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20200708004538-1a94d8640e99/go.mod h1:ZgVRPoUq/hfqzAqh7sHMqb3I9Rq5C59dIz2SbBwJ4eM=
-github.com/google/pprof v0.0.0-20201023163331-3e6fc7fc9c4c/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20201203190320-1bf35d6f28c2/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20201218002935-b9804c9f04c2/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210122040257-d980be63207e/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210226084205-cbba55b83ad5/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210601050228-01bbb1931b22/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210609004039-a478d1d731e9/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6 h1:k7nVchz72niMH6YLQNvHSdIE7iqsQxK1P41mySCvssg=
 github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6/go.mod h1:kf6iHlnVGwgKolg33glAes7Yg/8iWP8ukqeldJSO7jw=
-github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
-github.com/google/s2a-go v0.1.0/go.mod h1:OJpEgntRZo8ugHpF9hkoLJbS5dSI20XZeXJ9JVywLlM=
-github.com/google/s2a-go v0.1.3/go.mod h1:Ej+mSEMGRnqRzjc7VtF+jdBwYG5fuJfiZ8ELkjEwM0A=
-github.com/google/s2a-go v0.1.4/go.mod h1:Ej+mSEMGRnqRzjc7VtF+jdBwYG5fuJfiZ8ELkjEwM0A=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
-github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-github.com/googleapis/enterprise-certificate-proxy v0.0.0-20220520183353-fd19c99a87aa/go.mod h1:17drOmN3MwGY7t0e+Ei9b45FFGA3fBs3x36SsCg1hq8=
-github.com/googleapis/enterprise-certificate-proxy v0.1.0/go.mod h1:17drOmN3MwGY7t0e+Ei9b45FFGA3fBs3x36SsCg1hq8=
-github.com/googleapis/enterprise-certificate-proxy v0.2.0/go.mod h1:8C0jb7/mgJe/9KK8Lm7X9ctZC2t60YyIpYEI16jx0Qg=
-github.com/googleapis/enterprise-certificate-proxy v0.2.1/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
-github.com/googleapis/enterprise-certificate-proxy v0.2.3/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
-github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
-github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
-github.com/googleapis/gax-go/v2 v2.1.0/go.mod h1:Q3nei7sK6ybPYH7twZdmQpAd1MKb7pfu6SK+H1/DsU0=
-github.com/googleapis/gax-go/v2 v2.1.1/go.mod h1:hddJymUZASv3XPyGkUpKj8pPO47Rmb0eJc8R6ouapiM=
-github.com/googleapis/gax-go/v2 v2.2.0/go.mod h1:as02EH8zWkzwUoLbBaFeQ+arQaj/OthfcblKl4IGNaM=
-github.com/googleapis/gax-go/v2 v2.3.0/go.mod h1:b8LNqSzNabLiUpXKkY7HAR5jr6bIT99EXz9pXxye9YM=
-github.com/googleapis/gax-go/v2 v2.4.0/go.mod h1:XOTVJ59hdnfJLIP/dh8n5CGryZR2LxK9wbMD5+iXC6c=
-github.com/googleapis/gax-go/v2 v2.5.1/go.mod h1:h6B0KMMFNtI2ddbGJn3T3ZbwkeT6yqEF02fYlzkUCyo=
-github.com/googleapis/gax-go/v2 v2.6.0/go.mod h1:1mjbznJAPHFpesgE5ucqfYEscaz5kMdcIDwU/6+DDoY=
-github.com/googleapis/gax-go/v2 v2.7.0/go.mod h1:TEop28CZZQ2y+c0VxMUmu1lV+fQx57QpBWsYpwqHJx8=
-github.com/googleapis/gax-go/v2 v2.7.1/go.mod h1:4orTrqY6hXxxaUL4LHIPl6lGo8vAE38/qKbhSAKP6QI=
-github.com/googleapis/gax-go/v2 v2.8.0/go.mod h1:4orTrqY6hXxxaUL4LHIPl6lGo8vAE38/qKbhSAKP6QI=
-github.com/googleapis/gax-go/v2 v2.10.0/go.mod h1:4UOEnMCrxsSqQ940WnTiD6qJ63le2ev3xfyagutxiPw=
-github.com/googleapis/gax-go/v2 v2.11.0/go.mod h1:DxmR61SGKkGLa2xigwuZIQpkCI2S5iydzRfb3peWZJI=
-github.com/googleapis/go-type-adapters v1.0.0/go.mod h1:zHW75FOG2aur7gAO2B+MLby+cLsWGBF62rFAi7WjWO4=
-github.com/googleapis/google-cloud-go-testing v0.0.0-20200911160855-bcd43fbb19e8/go.mod h1:dvDLG8qkwmyD9a/MJJN3XJcT3xFxOKAvTZGvuZmac9g=
 github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 h1:+ngKgrYPPJrOjhax5N+uePQ0Fh1Z7PheYoUI/0nzkPA=
 github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
-github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
-github.com/grpc-ecosystem/grpc-gateway/v2 v2.7.0/go.mod h1:hgWBS7lorOAVIJEQMi4ZsPv9hVvWI6+ch50m39Pf2Ks=
-github.com/grpc-ecosystem/grpc-gateway/v2 v2.11.3/go.mod h1:o//XUCC/F+yRGJoPO/VU0GSB0f8Nhgmxx0VIRUvaC0w=
-github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
-github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
-github.com/iancoleman/strcase v0.2.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
-github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
-github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4=
 github.com/imdario/mergo v0.3.16/go.mod h1:WBLT9ZmE3lPoWsEzCh9LPo3TiwVN+ZKEjmz+hD27ysY=
 github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
 github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
-github.com/jpillora/backoff v1.0.0/go.mod h1:J/6gKK9jxlEcS3zixgDgUAsiuZ7yrSoa/FX5e0EB2j4=
-github.com/json-iterator/go v1.1.6/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
-github.com/json-iterator/go v1.1.10/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
-github.com/json-iterator/go v1.1.11/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
 github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
 github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
-github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024/go.mod h1:6v2b51hI/fHJwM22ozAgKL4VKDeJcHhJFhtBdhmNjmU=
-github.com/jstemmer/go-junit-report v0.9.1/go.mod h1:Brl9GWCQeLvo8nXZwPNNblvFj/XSXhF0NWZEnDohbsk=
-github.com/julienschmidt/httprouter v1.2.0/go.mod h1:SYymIcj16QtmaHHD7aYtjjsJG7VTCxuUUipMqKk8s4w=
-github.com/julienschmidt/httprouter v1.3.0/go.mod h1:JR6WtHb+2LUe8TCKY3cZOxFyyO8IZAc4RVcycCCAKdM=
-github.com/jung-kurt/gofpdf v1.0.0/go.mod h1:7Id9E/uU8ce6rXgefFLlgrJj/GYY22cpxn+r32jIOes=
-github.com/jung-kurt/gofpdf v1.0.3-0.20190309125859-24315acbbda5/go.mod h1:7Id9E/uU8ce6rXgefFLlgrJj/GYY22cpxn+r32jIOes=
-github.com/kballard/go-shellquote v0.0.0-20180428030007-95032a82bc51/go.mod h1:CzGEWj7cYgsdH8dAjBGEr58BoE7ScuLd+fwFZ44+/x8=
 github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8=
 github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
-github.com/klauspost/asmfmt v1.3.2/go.mod h1:AG8TuvYojzulgDAMCnYn50l/5QV3Bs/tp6j0HLHbNSE=
-github.com/klauspost/compress v1.15.9/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU=
-github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
-github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
-github.com/konsorten/go-windows-terminal-sequences v1.0.3/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
-github.com/kr/fs v0.1.0/go.mod h1:FFnZGqtBN9Gxj7eW1uZ42v5BccTP0vu6NEaFoC2HwRg=
-github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515/go.mod h1:+0opPa2QZZtGFBFZlji/RkVcI2GknAs/DXo4wKdlNEc=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
-github.com/kr/pretty v0.2.1/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
-github.com/kr/pretty v0.3.0/go.mod h1:640gp4NfQd8pI5XOwp5fnNeVWj67G7CFk/SaSQn7NBk=
 github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
 github.com/kr/pretty v0.3.1/go.mod h1:hoEshYVHaxMs3cyo3Yncou5ZscifuDolrwPKZanG3xk=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
@@ -930,23 +119,13 @@ github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
-github.com/lyft/protoc-gen-star v0.6.0/go.mod h1:TGAoBVkt8w7MPG72TrKIu85MIdXwDuzJYeZuUPFPNwA=
-github.com/lyft/protoc-gen-star v0.6.1/go.mod h1:TGAoBVkt8w7MPG72TrKIu85MIdXwDuzJYeZuUPFPNwA=
-github.com/lyft/protoc-gen-star/v2 v2.0.1/go.mod h1:RcCdONR2ScXaYnQC5tUzxzlpA3WVYF7/opLeUgcQs/o=
 github.com/mailru/easyjson v0.7.7 h1:UGYAvKxe3sBsEDzO8ZeWOSlIQfWFlxbzLZe7hwFURr0=
 github.com/mailru/easyjson v0.7.7/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
 github.com/mattn/go-colorable v0.1.13 h1:fFA4WZxdEF4tXPZVKMLwD8oUnCTTo08duU7wxecdEvA=
 github.com/mattn/go-colorable v0.1.13/go.mod h1:7S9/ev0klgBDR4GtXTXX8a3vIGJpMovkB8vQcUbaXHg=
-github.com/mattn/go-isatty v0.0.12/go.mod h1:cbi8OIDigv2wuxKPP5vlRcQ1OAZbq2CE4Kysco4FUpU=
 github.com/mattn/go-isatty v0.0.16/go.mod h1:kYGgaQfpe5nmfYZH+SKPsOc2e4SrIfOl2e/yFXSvRLM=
 github.com/mattn/go-isatty v0.0.19 h1:JITubQf0MOLdlGRuRq+jtsDlekdYPia9ZFsB8h/APPA=
 github.com/mattn/go-isatty v0.0.19/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
-github.com/mattn/go-sqlite3 v1.14.14/go.mod h1:NyWgC/yNuGj7Q9rpYnZvas74GogHl5/Z4A/KQRfk6bU=
-github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
-github.com/matttproud/golang_protobuf_extensions v1.0.4/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
-github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0/go.mod h1:QUyp042oQthUoa9bqDv0ER0wrtXnBruoNd7aNjkbP+k=
-github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8/go.mod h1:mC1jAcsrzbxHt8iiaC+zU4b1ylILSosueou12R++wfY=
-github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3/go.mod h1:RagcQ7I8IeTMnF8JTXieKnO4Z6JCsikNEzj0DwauVzE=
 github.com/mitchellh/go-ps v1.0.0 h1:i6ampVEEF4wQFF+bkYfwYgY+F/uYJDktmvLPf7qIgjc=
 github.com/mitchellh/go-ps v1.0.0/go.mod h1:J4lOc8z8yJs6vUwklHw2XEIiT4z4C40KtWVN3nvg8Pg=
 github.com/mitchellh/hashstructure/v2 v2.0.2 h1:vGKWl0YJqUNxE8d+h8f6NJLcCJrgbhC4NcD46KavDd4=
@@ -962,8 +141,6 @@ github.com/moby/term v0.5.0/go.mod h1:8FzsFHVUBGZdbDsJw/ot+X+d5HLUbvklYLJ9uGfcI3
 github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w8PVh93nsPXa1VrQ6jlwL5oN8l14QlcNfg=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
-github.com/modern-go/reflect2 v0.0.0-20180701023420-4b7aa43c6742/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0=
-github.com/modern-go/reflect2 v1.0.1/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0=
 github.com/modern-go/reflect2 v1.0.2 h1:xBagoLtFs94CBntxluKeaWgTMpvLxC4ur3nMaC9Gz0M=
 github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
 github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00 h1:n6/2gBQ3RWajuToeY6ZtZTIKv2v7ThUy5KKusIT0yc0=
@@ -972,13 +149,10 @@ github.com/moul/pb v0.0.0-20220425114252-bca18df4138c h1:1STmblv9zmHLDpru4dbnf1P
 github.com/moul/pb v0.0.0-20220425114252-bca18df4138c/go.mod h1:jE2HT8eoucYyUPBFJMreiVlC3KPHkDMtN8wn+ef7Y64=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq1c1nUAm88MOHcQC9l5mIlSMApZMrHA=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
-github.com/mwitkow/go-conntrack v0.0.0-20161129095857-cc309e4a2223/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
-github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
-github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65/go.mod h1:Tx6UMSMyIsjLG/VU/F6xA1+0XI+/f9o1dGJnf1l+bPg=
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 h1:t4WWQ9I797y7QUgeEjeXnVb+oYuEDQc6gLvrZJTYo94=
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833/go.mod h1:0CznHmXSjMEqs5Tezj/w2emQoM41wzYM9KpDKUHPYag=
-github.com/ncabatoff/process-exporter v0.7.11 h1:BEKcgOZCa0h4jvBzTUTX0oPyEW+Zhy4JL6KKDnySEfg=
-github.com/ncabatoff/process-exporter v0.7.11/go.mod h1:A2ThOqSI56jai50qiZ7EOJsWGWM6n1ties0wSJxvRlo=
+github.com/ncabatoff/process-exporter v0.8.2 h1:g08B7UMSn9nrEjCrqGtBG/IagnCAc/2lSGzGZgcxJFs=
+github.com/ncabatoff/process-exporter v0.8.2/go.mod h1:MxEOWl740VK/hlWycJkq91VrA2mI+U9Bvc1wuyAaxA4=
 github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
 github.com/nxadm/tail v1.4.8/go.mod h1:+ncqLTQzXmGhMZNUePPaPqPvBxHAIsmXswZKocGu+AU=
@@ -998,114 +172,40 @@ github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE
 github.com/opencontainers/runtime-spec v1.2.0/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
-github.com/phpdave11/gofpdf v1.4.2/go.mod h1:zpO6xFn9yxo3YLyMvW8HcKWVdbNqgIfOOp2dXMnm1mY=
-github.com/phpdave11/gofpdi v1.0.12/go.mod h1:vBmVV0Do6hSBHC8uKUQ71JGW+ZGQq74llk/7bXwjDoI=
-github.com/phpdave11/gofpdi v1.0.13/go.mod h1:vBmVV0Do6hSBHC8uKUQ71JGW+ZGQq74llk/7bXwjDoI=
-github.com/pierrec/lz4/v4 v4.1.15/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4=
-github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
-github.com/pkg/errors v0.8.0/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
-github.com/pkg/errors v0.8.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
-github.com/pkg/sftp v1.10.1/go.mod h1:lYOWFsE0bwd1+KfKJaKeuokY15vzFx25BLbzYYoAxZI=
-github.com/pkg/sftp v1.13.1/go.mod h1:3HaPG6Dq1ILlpPZRO0HVMrsydcdLt6HRDccSgb87qRg=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXPKyh/dDVn+NZz0KFw=
-github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
-github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
-github.com/prometheus/client_golang v1.11.0/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
-github.com/prometheus/client_golang v1.12.1/go.mod h1:3Z9XVyYiZYEO+YQWt3RD2R3jrbd179Rt297l4aS6nDY=
-github.com/prometheus/client_golang v1.14.0/go.mod h1:8vpkKitgIVNcqrRBWh1C4TIUQgYNtG/XQE4E/Zae36Y=
-github.com/prometheus/client_golang v1.15.1/go.mod h1:e9yaBhRPU2pPNsZwE+JdQl0KEt1N9XgF6zxWmaC0xOk=
-github.com/prometheus/client_golang v1.17.0/go.mod h1:VeL+gMmOAxkS2IqfCq0ZmHSL+LjWfWDUmp1mBz9JgUY=
-github.com/prometheus/client_golang v1.18.0/go.mod h1:T+GXkCk5wSJyOqMIzVgvvjFDlkOQntgjkJWKrN5txjA=
-github.com/prometheus/client_golang v1.19.0/go.mod h1:ZRM9uEAypZakd+q/x7+gmsvXdURP+DABIEIjnmDdp+k=
 github.com/prometheus/client_golang v1.19.1 h1:wZWJDwK+NameRJuPGDhlnFgx8e8HN3XHQeLaYJFJBOE=
 github.com/prometheus/client_golang v1.19.1/go.mod h1:mP78NwGzrVks5S2H6ab8+ZZGJLZUq1hoULYBAYBw1Ho=
-github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
-github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/client_model v0.3.0/go.mod h1:LDGWKZIo7rky3hgvBe+caln+Dr3dPggB5dvjtD7w9+w=
-github.com/prometheus/client_model v0.4.0/go.mod h1:oMQmHW1/JoDwqLtg57MGgP/Fb1CJEYF2imWWhWtMkYU=
-github.com/prometheus/client_model v0.4.1-0.20230718164431-9a2bf3000d16/go.mod h1:oMQmHW1/JoDwqLtg57MGgP/Fb1CJEYF2imWWhWtMkYU=
-github.com/prometheus/client_model v0.5.0/go.mod h1:dTiFglRmd66nLR9Pv9f0mZi7B7fk5Pm3gvsjB5tr+kI=
-github.com/prometheus/client_model v0.6.0/go.mod h1:NTQHnmxFpouOD0DpvP4XujX3CdOAGQPoaGhyTchlyt8=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
 github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
-github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
-github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
-github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
-github.com/prometheus/common v0.32.1/go.mod h1:vu+V0TpY+O6vW9J44gczi3Ap/oXXR10b+M/gUGO4Hls=
-github.com/prometheus/common v0.37.0/go.mod h1:phzohg0JFMnBEFGxTDbfu3QyL5GI8gTQJFhYO5B3mfA=
-github.com/prometheus/common v0.42.0/go.mod h1:xBwqVerjNdUDjgODMpudtOMwlOwf2SaTr1yjz4b7Zbc=
-github.com/prometheus/common v0.44.0/go.mod h1:ofAIvZbQ1e/nugmZGz4/qCb9Ap1VoSTIO7x0VV9VvuY=
-github.com/prometheus/common v0.45.0/go.mod h1:YJmSTw9BoKxJplESWWxlbyttQR4uaEcGyv9MZjVOJsY=
-github.com/prometheus/common v0.48.0/go.mod h1:0/KsvlIEfPQCQ5I2iNSAWKPZziNCvRs5EC6ILDTlAPc=
-github.com/prometheus/common v0.52.3/go.mod h1:BrxBKv3FWBIGXw89Mg1AeBq7FSyRzXWI3l3e7W3RN5U=
-github.com/prometheus/common v0.54.0 h1:ZlZy0BgJhTwVZUn7dLOkwCZHUkrAqd3WYtcFCWnM1D8=
-github.com/prometheus/common v0.54.0/go.mod h1:/TQgMJP5CuVYveyT7n/0Ix8yLNNXy9yRSkhnLTHPDIQ=
-github.com/prometheus/exporter-toolkit v0.11.0/go.mod h1:BVnENhnNecpwoTLiABx7mrPB/OLRIgN74qlQbV+FK1Q=
-github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
-github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
-github.com/prometheus/procfs v0.1.3/go.mod h1:lV6e/gmhEcM9IjHGsFOCxxuZ+z1YqCvr4OA4YeYWdaU=
-github.com/prometheus/procfs v0.6.0/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
-github.com/prometheus/procfs v0.7.3/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
-github.com/prometheus/procfs v0.8.0/go.mod h1:z7EfXMXOkbkqb9IINtpCn86r/to3BnA0uaxHdg830/4=
-github.com/prometheus/procfs v0.9.0/go.mod h1:+pB4zwohETzFnmlpe6yd2lSc+0/46IYZRB/chUwxUZY=
-github.com/prometheus/procfs v0.11.1/go.mod h1:eesXgaPo1q7lBpVMoMy0ZOFTth9hBn4W/y0/p/ScXhY=
-github.com/prometheus/procfs v0.12.0/go.mod h1:pcuDEFsWDnvcgNzo4EEweacyhjeA9Zk3cnaOZAZEfOo=
-github.com/prometheus/procfs v0.13.0 h1:GqzLlQyfsPbaEHaQkO7tbDlriv/4o5Hudv6OXHGKX7o=
-github.com/prometheus/procfs v0.13.0/go.mod h1:cd4PFCR54QLnGKPaKGA6l+cfuNXtht43ZKY6tow0Y1g=
-github.com/remyoudompheng/bigfft v0.0.0-20200410134404-eec4a21b6bb0/go.mod h1:qqbHyh8v60DhA7CoWK5oRCqLrMHRGoxYCSS9EjAz6Eo=
-github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ=
-github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
-github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTEfhy4qGm1nDQc=
-github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
-github.com/rogpeppe/go-internal v1.10.0/go.mod h1:UQnix2H7Ngw/k4C5ijL5+65zddjncjaFoBhdsK/akog=
+github.com/prometheus/common v0.55.0 h1:KEi6DK7lXW/m7Ig5i47x0vRzuBsHuvJdi5ee6Y3G1dc=
+github.com/prometheus/common v0.55.0/go.mod h1:2SECS4xJG1kd8XF9IcM1gMX6510RAEL65zxzNImwdc8=
+github.com/prometheus/procfs v0.15.1 h1:YagwOFzUgYfKKHX6Dr+sHT7km/hxC76UB0learggepc=
+github.com/prometheus/procfs v0.15.1/go.mod h1:fB45yRUv8NstnjriLhBQLuOUt+WW4BsoGhij/e3PBqk=
 github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
 github.com/rogpeppe/go-internal v1.11.0/go.mod h1:ddIwULY96R17DhadqLgMfk9H9tvdUzkipdSkR5nkCZA=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
-github.com/ruudk/golang-pdf417 v0.0.0-20181029194003-1af4ab5afa58/go.mod h1:6lfFZQK844Gfx8o5WFuvpxWRwnSoipWe/p622j1v06w=
-github.com/ruudk/golang-pdf417 v0.0.0-20201230142125-a7e3863a1245/go.mod h1:pQAZKsJ8yyVxGRWYNEm9oFB8ieLgKFnamEyDmSA0BRk=
 github.com/sergi/go-diff v1.3.1 h1:xkr+Oxo4BOQKmkn/B9eMK0g5Kg/983T9DqqPHwYqD+8=
 github.com/sergi/go-diff v1.3.1/go.mod h1:aMJSSKb2lpPvRNec0+w3fl7LP9IOFzdc9Pa4NFbPK1I=
-github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
-github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE=
-github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
 github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ=
 github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
-github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
-github.com/spf13/afero v1.3.3/go.mod h1:5KUK8ByomD5Ti5Artl0RtHeI5pTF7MIDuXL3yY520V4=
-github.com/spf13/afero v1.6.0/go.mod h1:Ai8FlHk4v/PARR026UzYexafAt9roJ7LcLMAmO6Z93I=
-github.com/spf13/afero v1.9.2/go.mod h1:iUV7ddyEEZPO5gA3zD4fJt6iStLlL+Lg4m2cihcDf8Y=
 github.com/spf13/cobra v1.8.1 h1:e5/vxKd/rZsfSJMUX1agtjeTDf+qv1/JdBF8gg5k9ZM=
 github.com/spf13/cobra v1.8.1/go.mod h1:wHxEcudfqmLYa8iTfL+OuZPbBZkmvliBWKIezN3kD9Y=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
-github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
 github.com/stretchr/objx v0.5.2 h1:xuMeJ0Sdp5ZMRXx/aWO6RZxdr3beISkG5/G/aIRr3pY=
 github.com/stretchr/objx v0.5.2/go.mod h1:FRsXN1f5AsAjCGJKqEizvkpNtU+EGNCLh3NxZ/8L+MA=
 github.com/stretchr/testify v1.1.3/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
-github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
-github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
-github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
-github.com/stretchr/testify v1.8.2/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
 github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
-github.com/xhit/go-str2duration v1.2.0/go.mod h1:3cPSlfZlUHVlneIVfePFWcJZsuwf+P1v2SRTV4cUmp4=
-github.com/xhit/go-str2duration/v2 v2.1.0/go.mod h1:ohY8p+0f07DiV6Em5LKB0s2YpLtXVyJfNt1+BlmyAsU=
 github.com/xlab/treeprint v1.2.0 h1:HzHnuAF1plUN2zGlAFHbSQP2qJ0ZAD3XF5XD7OesXRQ=
 github.com/xlab/treeprint v1.2.0/go.mod h1:gj5Gd3gPdKtR1ikdDK6fnFLdmIS0X30kTTuNd/WEJu0=
 github.com/yudai/gojsondiff v1.0.0 h1:27cbfqXLVEJ1o8I6v3y9lg8Ydm53EKqHXAOMxEGlCOA=
@@ -1114,28 +214,10 @@ github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 h1:BHyfKlQyqbsFN5p3Ifn
 github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82/go.mod h1:lgjkn3NuSvDfVJdfcVVdX+jpBxNmX4rDAzaS45IcYoM=
 github.com/yudai/pp v2.0.1+incompatible h1:Q4//iY4pNF6yPLZIigmvcl7k/bPgrcTPIFIcmawg5bI=
 github.com/yudai/pp v2.0.1+incompatible/go.mod h1:PuxR/8QJ7cyCkFp/aUDS+JY727OFEZkTdatxwunjIkc=
-github.com/yuin/goldmark v1.1.25/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
-github.com/yuin/goldmark v1.1.32/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
-github.com/yuin/goldmark v1.3.5/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
-github.com/yuin/goldmark v1.4.1/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
-github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
 github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30 h1:rzHvkiukOVYcf840FqAsHqBMhfLofvQIxWtczkGRklU=
 github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30/go.mod h1:/Hzu8ych2oXCs1iNI+MeASyFzWTncQ6nlu/wgqbqC2A=
-github.com/zeebo/assert v1.3.0/go.mod h1:Pq9JiuJQpG8JLJdtkwrJESF0Foym2/D9XMU5ciN/wJ0=
-github.com/zeebo/xxh3 v1.0.2/go.mod h1:5NWz9Sef7zIDm2JHfFlcQvNekmcEl9ekUZQQKCYaDcA=
-go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
-go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8=
-go.opencensus.io v0.22.2/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
-go.opencensus.io v0.22.3/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
-go.opencensus.io v0.22.4/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
-go.opencensus.io v0.22.5/go.mod h1:5pWMHQbX5EPX2/62yrJeAkowc+lfs/XD7Uxpq3pI6kk=
-go.opencensus.io v0.23.0/go.mod h1:XItmlyltB5F7CS4xOC1DcqMoFqwtC6OG2xF7mCv7P7E=
-go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo=
-go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI=
-go.opentelemetry.io/proto/otlp v0.15.0/go.mod h1:H7XAot3MsfNsj7EXtrA2q5xSNQ10UqI405h3+duxN4U=
-go.opentelemetry.io/proto/otlp v0.19.0/go.mod h1:H7XAot3MsfNsj7EXtrA2q5xSNQ10UqI405h3+duxN4U=
 go.starlark.net v0.0.0-20240123142251-f86470692795 h1:LmbG8Pq7KDGkglKVn8VpZOZj6vb9b8nKEGcg9l03epM=
 go.starlark.net v0.0.0-20240123142251-f86470692795/go.mod h1:LcLNIzVOMp4oV+uusnpk+VU+SzXaJakUuBjoCSWH5dM=
 go.uber.org/goleak v1.3.0 h1:2K3zAYmnTNqV73imy9J1T3WC+gmCePx2hEGkimedGto=
@@ -1145,710 +227,74 @@ go.uber.org/multierr v1.11.0/go.mod h1:20+QtiLqy0Nd6FdQB9TLXag12DsQkrbs3htMFfDN8
 go.uber.org/zap v1.27.0 h1:aJMhYGrd5QSmlpLMr2MftRKl7t8J8PTZPA732ud/XR8=
 go.uber.org/zap v1.27.0/go.mod h1:GB2qFLM7cTU87MWRP2mPIjqfIDnGu+VIO4V/SdhGo2E=
 golang.org/dl v0.0.0-20190829154251-82a15e2f2ead/go.mod h1:IUMfjQLJQd4UTqG1Z90tenwKoCX93Gn3MAQJMOSBsDQ=
-golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
-golang.org/x/crypto v0.0.0-20190510104115-cbcb75029529/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
-golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
-golang.org/x/crypto v0.0.0-20190820162420-60c769a6c586/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.0.0-20210421170649-83a5a9bb288b/go.mod h1:T9bdIzuCu7OtxOm1hfPfRQxPLYneinmdGuTeoZ9dtd4=
-golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.0.0-20211108221036-ceb1ce70b4fa/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.0.0-20220314234659-1baeb1ce4c0b/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
-golang.org/x/crypto v0.1.0/go.mod h1:RecgLatLF4+eUMCP1PoPZQb+cVrJcOPbHkTkbkB9sbw=
-golang.org/x/crypto v0.7.0/go.mod h1:pYwdfH91IfpZVANVyUOhSIPZaFoJGxTFbZhFTx+dXZU=
-golang.org/x/crypto v0.9.0/go.mod h1:yrmDGqONDYtNj3tH8X9dzUun2m2lzPa9ngI6/RUPGR0=
-golang.org/x/crypto v0.13.0/go.mod h1:y6Z2r+Rw4iayiXXAIxJIDAJ1zMW4yaTpebo8fPOliYc=
-golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4=
-golang.org/x/crypto v0.16.0/go.mod h1:gCAAfMLgwOJRpTjQ2zCCt2OcSfYMTeZVSRtQlPC7Nq4=
-golang.org/x/crypto v0.18.0/go.mod h1:R0j02AL6hcrfOiy9T4ZYp/rcWeMxM3L6QYxlOuEG1mg=
-golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU=
-golang.org/x/crypto v0.21.0/go.mod h1:0BP7YvVV9gBbVKyeTG0Gyn+gZm94bibOW5BjDEYAOMs=
 golang.org/x/crypto v0.25.0 h1:ypSNr+bnYL2YhwoMt2zPxHFmbAN1KZs/njMG3hxUp30=
 golang.org/x/crypto v0.25.0/go.mod h1:T+wALwcMOSE0kXgUAnPAHqTLW+XHgcELELW8VaDgm/M=
-golang.org/x/exp v0.0.0-20180321215751-8460e604b9de/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
-golang.org/x/exp v0.0.0-20180807140117-3d87b88a115f/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
-golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
-golang.org/x/exp v0.0.0-20190125153040-c74c464bbbf2/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
-golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
-golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
-golang.org/x/exp v0.0.0-20190829153037-c13cbed26979/go.mod h1:86+5VVa7VpoJ4kLfm080zCjGlMRFzhUhsZKEZO7MGek=
-golang.org/x/exp v0.0.0-20191002040644-a1355ae1e2c3/go.mod h1:NOZ3BPKG0ec/BKJQgnvsSFpcKLM5xXVWnvZS97DWHgE=
-golang.org/x/exp v0.0.0-20191030013958-a1ab85dbe136/go.mod h1:JXzH8nQsPlswgeRAPE3MuO9GYsAcnJvJ4vnMwN/5qkY=
-golang.org/x/exp v0.0.0-20191129062945-2f5052295587/go.mod h1:2RIsYlXP63K8oxa1u096TMicItID8zy7Y6sNkU49FU4=
-golang.org/x/exp v0.0.0-20191227195350-da58074b4299/go.mod h1:2RIsYlXP63K8oxa1u096TMicItID8zy7Y6sNkU49FU4=
-golang.org/x/exp v0.0.0-20200119233911-0405dc783f0a/go.mod h1:2RIsYlXP63K8oxa1u096TMicItID8zy7Y6sNkU49FU4=
-golang.org/x/exp v0.0.0-20200207192155-f17229e696bd/go.mod h1:J/WKrq2StrnmMY6+EHIKF9dgMWnmCNThgcyBT1FY9mM=
-golang.org/x/exp v0.0.0-20200224162631-6cc2880d07d6/go.mod h1:3jZMyOhIsHpP37uCMkUooju7aAi5cS1Q23tOzKc+0MU=
-golang.org/x/exp v0.0.0-20220827204233-334a2380cb91/go.mod h1:cyybsKvd6eL0RnXn6p/Grxp8F5bW7iYuBgsNCOHpMYE=
 golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f h1:99ci1mjWVBWwJiEKYY6jWa4d2nTQVIEhZIptnrVb1XY=
 golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f/go.mod h1:/lliqkxwWAhPjf5oSOIJup2XcqJaw8RGS6k3TGEc7GI=
-golang.org/x/image v0.0.0-20180708004352-c73c2afc3b81/go.mod h1:ux5Hcp/YLpHSI86hEcLt0YII63i6oz57MZXIpbrjZUs=
-golang.org/x/image v0.0.0-20190227222117-0694c2d4d067/go.mod h1:kZ7UVZpmo3dzQBMxlp+ypCbDeSB+sBbTgSJuh5dn5js=
-golang.org/x/image v0.0.0-20190802002840-cff245a6509b/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
-golang.org/x/image v0.0.0-20190910094157-69e4b8554b2a/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
-golang.org/x/image v0.0.0-20200119044424-58c23975cae1/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
-golang.org/x/image v0.0.0-20200430140353-33d19683fad8/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
-golang.org/x/image v0.0.0-20200618115811-c13761719519/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
-golang.org/x/image v0.0.0-20201208152932-35266b937fa6/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
-golang.org/x/image v0.0.0-20210216034530-4410531fe030/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
-golang.org/x/image v0.0.0-20210607152325-775e3b0c77b9/go.mod h1:023OzeP/+EPmXeapQh35lcL3II3LrY8Ic+EFFKVhULM=
-golang.org/x/image v0.0.0-20210628002857-a66eb6448b8d/go.mod h1:023OzeP/+EPmXeapQh35lcL3II3LrY8Ic+EFFKVhULM=
-golang.org/x/image v0.0.0-20211028202545-6944b10bf410/go.mod h1:023OzeP/+EPmXeapQh35lcL3II3LrY8Ic+EFFKVhULM=
-golang.org/x/image v0.0.0-20220302094943-723b81ca9867/go.mod h1:023OzeP/+EPmXeapQh35lcL3II3LrY8Ic+EFFKVhULM=
-golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
-golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU=
-golang.org/x/lint v0.0.0-20190301231843-5614ed5bae6f/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
-golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
-golang.org/x/lint v0.0.0-20190409202823-959b441ac422/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
-golang.org/x/lint v0.0.0-20190909230951-414d861bb4ac/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
-golang.org/x/lint v0.0.0-20190930215403-16217165b5de/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
-golang.org/x/lint v0.0.0-20191125180803-fdd1cda4f05f/go.mod h1:5qLYkcX4OjUUV8bRuDixDT3tpyyb+LUpUlRWLxfhWrs=
-golang.org/x/lint v0.0.0-20200130185559-910be7a94367/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
-golang.org/x/lint v0.0.0-20200302205851-738671d3881b/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
-golang.org/x/lint v0.0.0-20201208152925-83fdc39ff7b5/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
-golang.org/x/lint v0.0.0-20210508222113-6edffad5e616/go.mod h1:3xt1FjdF8hUf6vQPIChWIBhFzV8gjjsPE/fR3IyQdNY=
-golang.org/x/mobile v0.0.0-20190312151609-d3739f865fa6/go.mod h1:z+o9i4GpDbdi3rU15maQ/Ox0txvL9dWGYEHz965HBQE=
-golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028/go.mod h1:E/iHnbuqvinMTCcRqshq8CkpyQDoeVncDDYHnLhea+o=
-golang.org/x/mod v0.0.0-20190513183733-4bf6d317e70e/go.mod h1:mXi4GBBbnImb6dmsKGUJ2LatrhH/nqhxcFungHvyanc=
-golang.org/x/mod v0.1.0/go.mod h1:0QHyrYULN0/3qlju5TqG8bIK38QM8yzMo5ekMj3DlcY=
-golang.org/x/mod v0.1.1-0.20191105210325-c90efee705ee/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg=
-golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.4.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.4.1/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.5.0/go.mod h1:5OXOZSfqPIIbmVBIIKWRFfZjPR0E5r58TLhUjH0a2Ro=
-golang.org/x/mod v0.5.1/go.mod h1:5OXOZSfqPIIbmVBIIKWRFfZjPR0E5r58TLhUjH0a2Ro=
-golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
-golang.org/x/mod v0.7.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
-golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
-golang.org/x/mod v0.9.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/mod v0.17.0 h1:zY54UmvipHiNd+pm+m0x9KhZ9hl1/7QNMyxXbc6ICqA=
 golang.org/x/mod v0.17.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
-golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190501004415-9ce7a6920f09/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
-golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190628185345-da137c7871d7/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190724013045-ca1201d0de80/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200114155413-6afb5195e5aa/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200202094626-16171245cfb2/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200222125558-5a598a2470a0/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200301022130-244492dfa37a/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200324143707-d3edc9973b7e/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200501053045-e0ff5e5a1de5/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200506145744-7e3656a0809f/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200513185701-a91f0712d120/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200520182314-0ba52f642ac2/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
-golang.org/x/net v0.0.0-20200707034311-ab3426394381/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
-golang.org/x/net v0.0.0-20200822124328-c89045814202/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201031054903-ff519b6c9102/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20201209123823-ac852fbbde11/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20201224014010-6772e930b67b/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20210119194325-5f4716e94777/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20210316092652-d523dce5a7f4/go.mod h1:RBQZq4jEuRlivfhVLdyRGr576XBO4/greRjx4P4O3yc=
-golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
-golang.org/x/net v0.0.0-20210503060351-7fd8e65b6420/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20210525063256-abc453219eb5/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20210813160813-60bc85c4be6d/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20211015210444-4f30a5c0130f/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
-golang.org/x/net v0.0.0-20220225172249-27dd8689420f/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
-golang.org/x/net v0.0.0-20220325170049-de3da57026de/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
-golang.org/x/net v0.0.0-20220412020605-290c469a71a5/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
-golang.org/x/net v0.0.0-20220425223048-2871e0cb64e4/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
-golang.org/x/net v0.0.0-20220607020251-c690dde0001d/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.0.0-20220617184016-355a448f1bc9/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.0.0-20220624214902-1bab6f366d9e/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.0.0-20220909164309-bea034e7d591/go.mod h1:YDH+HFinaLZZlnHAfSS6ZXJJ9M9t4Dl22yv3iI2vPwk=
-golang.org/x/net v0.0.0-20221012135044-0b7e1fb9d458/go.mod h1:YDH+HFinaLZZlnHAfSS6ZXJJ9M9t4Dl22yv3iI2vPwk=
-golang.org/x/net v0.0.0-20221014081412-f15817d10f9b/go.mod h1:YDH+HFinaLZZlnHAfSS6ZXJJ9M9t4Dl22yv3iI2vPwk=
-golang.org/x/net v0.1.0/go.mod h1:Cx3nUiGt4eDBEyega/BKRp+/AlGL8hYe7U9odMt2Cco=
-golang.org/x/net v0.2.0/go.mod h1:KqCZLdyyvdV855qA2rE3GC2aiw5xGR5TEjj8smXukLY=
-golang.org/x/net v0.4.0/go.mod h1:MBQ8lrhLObU/6UmLb4fmbmk5OcyYmqtbGd/9yIeKjEE=
-golang.org/x/net v0.5.0/go.mod h1:DivGGAXEgPSlEBzxGzZI+ZLohi+xUj054jfeKui00ws=
-golang.org/x/net v0.6.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
-golang.org/x/net v0.7.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
-golang.org/x/net v0.8.0/go.mod h1:QVkue5JL9kW//ek3r6jTKnTFis1tRmNAW2P1shuFdJc=
-golang.org/x/net v0.9.0/go.mod h1:d48xBJpPfHeWQsugry2m+kC02ZBRGRgulfHnEXEuWns=
-golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg=
-golang.org/x/net v0.15.0/go.mod h1:idbUs1IY1+zTqbi8yxTbhexhEEk5ur9LInksu6HrEpk=
-golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
-golang.org/x/net v0.20.0/go.mod h1:z8BVo6PvndSri0LbOE3hAn0apkU+1YvI6E70E9jsnvY=
-golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
-golang.org/x/net v0.22.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
-golang.org/x/net v0.25.0 h1:d/OCCoBEUq33pjydKrGQhw7IlUPI2Oylr+8qLx49kac=
-golang.org/x/net v0.25.0/go.mod h1:JkAGAh7GEvH74S6FOH42FLoXpXbE/aqXSrIQjXgsiwM=
-golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
-golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
-golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
-golang.org/x/oauth2 v0.0.0-20191202225959-858c2ad4c8b6/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
-golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
-golang.org/x/oauth2 v0.0.0-20200902213428-5d25da1a8d43/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20201109201403-9fd604954f58/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20201208152858-08078c50e5b5/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210218202405-ba52d332ba99/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210220000619-9bb904979d93/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210313182246-cd4f82c27b84/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210514164344-f6687ab2804c/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210628180205-a41e5a781914/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210805134026-6f1e6394065a/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20210819190943-2bc19b11175f/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20211104180415-d3ed0bb246c8/go.mod h1:KelEdhl1UZF7XfJ4dDtk6s++YSgaE7mD/BuKKDLBl4A=
-golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
-golang.org/x/oauth2 v0.0.0-20220309155454-6242fa91716a/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
-golang.org/x/oauth2 v0.0.0-20220411215720-9780585627b5/go.mod h1:DAh4E804XQdzx2j+YRIaUnCqCV2RuMz24cGBJ5QYIrc=
-golang.org/x/oauth2 v0.0.0-20220608161450-d0670ef3b1eb/go.mod h1:jaDAt6Dkxork7LmZnYtzbRWj0W47D86a3TGe0YHBvmE=
-golang.org/x/oauth2 v0.0.0-20220622183110-fd043fe589d2/go.mod h1:jaDAt6Dkxork7LmZnYtzbRWj0W47D86a3TGe0YHBvmE=
-golang.org/x/oauth2 v0.0.0-20220822191816-0ebed06d0094/go.mod h1:h4gKUeWbJ4rQPri7E0u6Gs4e9Ri2zaLxzw5DI5XGrYg=
-golang.org/x/oauth2 v0.0.0-20220909003341-f21342109be1/go.mod h1:h4gKUeWbJ4rQPri7E0u6Gs4e9Ri2zaLxzw5DI5XGrYg=
-golang.org/x/oauth2 v0.0.0-20221006150949-b44042a4b9c1/go.mod h1:h4gKUeWbJ4rQPri7E0u6Gs4e9Ri2zaLxzw5DI5XGrYg=
-golang.org/x/oauth2 v0.0.0-20221014153046-6fdb5e3db783/go.mod h1:h4gKUeWbJ4rQPri7E0u6Gs4e9Ri2zaLxzw5DI5XGrYg=
-golang.org/x/oauth2 v0.4.0/go.mod h1:RznEsdpjGAINPTOF0UH/t+xJ75L18YO3Ho6Pyn+uRec=
-golang.org/x/oauth2 v0.5.0/go.mod h1:9/XBHVqLaWO3/BRHs5jbpYCnOZVjj5V0ndyaAM7KB4I=
-golang.org/x/oauth2 v0.6.0/go.mod h1:ycmewcwgD4Rpr3eZJLSB4Kyyljb3qDh40vJ8STE5HKw=
-golang.org/x/oauth2 v0.7.0/go.mod h1:hPLQkd9LyjfXTiRohC/41GhcFqxisoUQ99sCUOHO9x4=
-golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE=
-golang.org/x/oauth2 v0.12.0/go.mod h1:A74bZ3aGXgCY0qaIC9Ahg6Lglin4AMAco8cIv9baba4=
-golang.org/x/oauth2 v0.16.0/go.mod h1:hqZ+0LWXsiVoZpeld6jVt06P3adbS2Uu911W1SsJv2o=
-golang.org/x/oauth2 v0.18.0/go.mod h1:Wf7knwG0MPoWIMMBgFlEaSUDaKskp0dCfrlJRJXbBi8=
-golang.org/x/oauth2 v0.20.0 h1:4mQdhULixXKP1rwYBW0vAijoXnkTG0BLCDRzfe1idMo=
-golang.org/x/oauth2 v0.20.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
+golang.org/x/net v0.26.0 h1:soB7SVo0PWrY4vPW/+ay0jKDNScG2X9wFeYlXIvJsOQ=
+golang.org/x/net v0.26.0/go.mod h1:5YKkiSynbBIh3p6iOc/vibscux0x38BZDkn8sCUPxHE=
+golang.org/x/oauth2 v0.21.0 h1:tsimM75w1tF/uws5rbeHzIWxEqElMehnc+iW793zsZs=
+golang.org/x/oauth2 v0.21.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20190227155943-e225da77a7e6/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20200317015054-43a5402ce75a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20200625203802-6e8e738ad208/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20201207232520-09787c993a3a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20210220032951-036812b2e83c/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20220601150217-0de741cfad7f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20220819030929-7fc1605a5dde/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20220929204114-8fcdb60fdcc0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.1.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.2.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.3.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
-golang.org/x/sync v0.5.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
-golang.org/x/sync v0.6.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sync v0.7.0 h1:YsImfSBoP9QPYL0xyKJPq0gcaJdG3rInoqxTWbfQu9M=
 golang.org/x/sync v0.7.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
-golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20181116152217-5ac8a444bdc5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20190312061237-fead79001313/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190422165155-953cdadca894/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190502145724-3ef323f4f1fd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190507160741-ecd444e8653b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190606165138-5da285871e9c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190726091711-fc99dfbffb4e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191001151750-bb3f8db39f24/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191228213918-04cbcbbfeed8/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200106162015-b016eb3dc98e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200113162924-86b910548bc1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200116001909-b77594299b42/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200122134326-e047566fdf82/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200202164722-d101bd2416d5/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200212091648-12a6c2dcc1e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200223170610-d5e6a3e2c0ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200302150141-5c8b2ff67527/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200331124033-c3d80250170d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200501052902-10377860bb8e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200511232937-7e40ca221e25/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200515095857-1151b9dac4a9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200523222454-059865788121/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200615200032-f1bc736245b1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200803210538-64077c9b5642/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200905004654-be1d3432aa8f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20201201145000-ef89a241ccb3/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210104204734-6f8348627aad/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20210112080510-489259a85091/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210119212857-b64e53b001e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210220050731-9a76102bfb43/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210225134936-a50acf3fe073/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210304124612-50617c2ba197/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210305230114-8fe3ee5dd75b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210315160823-c6e025ad8005/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210320140829-1e4c9ba3b0c4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210330210617-4fbd30eecc44/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210423185535-09eb48e85fd7/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210514084401-e8d321eab015/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210603125802-9665404d3644/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20210616094352-59db8d763f22/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210630005230-0f9fa26af87c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210806184541-e5e7981a1069/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210816183151-1e6c022a8912/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210823070655-63515b42dcdf/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210908233432-aa78b53d3365/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20211007075335-d3039528d8ac/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20211019181941-9d821ace8654/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20211124211545-fe61309f8881/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20211210111614-af8b64212486/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220114195835-da31bd327af9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220128215802-99c3d69c2c27/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220209214540-3681064d5158/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220227234510-4e6760a101f9/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220328115105-d36c6a25d886/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220412211240-33da011f77ad/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220502124256-b6088ccd6cba/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220503163025-988cb79eb6c6/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220610221304-9f5ed59c137d/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220615213510-4f61da869c0c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220624220833-87e55d714810/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220829200755-d48e67d00261/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.2.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.3.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.4.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.7.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.9.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.15.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.16.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.18.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.22.0 h1:RI27ohtqKCnwULzJLqkv897zojh5/DwS/ENaMzUOaWI=
 golang.org/x/sys v0.22.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/term v0.1.0/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/term v0.2.0/go.mod h1:TVmDHMZPmdnySmBfhjOoOdhjzdE1h4u1VwSiw2l1Nuc=
-golang.org/x/term v0.3.0/go.mod h1:q750SLmJuPmVoN1blW3UFBPREJfb1KmY3vwxfr+nFDA=
-golang.org/x/term v0.4.0/go.mod h1:9P2UbLfCdcvo3p/nzKvsmas4TnlujnuoV9hGgYzW1lQ=
-golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k=
-golang.org/x/term v0.6.0/go.mod h1:m6U89DPEgQRMq3DNkDClhWw02AUbt2daBVO4cn4Hv9U=
-golang.org/x/term v0.7.0/go.mod h1:P32HKFT3hSsZrRxla30E9HqToFYAQPCMs/zFMBUFqPY=
-golang.org/x/term v0.8.0/go.mod h1:xPskH00ivmX89bAKVGSKKtLOWNx2+17Eiy94tnKShWo=
-golang.org/x/term v0.12.0/go.mod h1:owVbMEjm3cBLCHdkQu9b1opXd4ETQWc3BhuQGKgXgvU=
-golang.org/x/term v0.13.0/go.mod h1:LTmsnFJwVN6bCy1rVCoS+qHT1HhALEFxKncY3WNNh4U=
-golang.org/x/term v0.15.0/go.mod h1:BDl952bC7+uMoWR75FIrCDx79TPU9oHkTZ9yRbYOrX0=
-golang.org/x/term v0.16.0/go.mod h1:yn7UURbUtPyrVJPGPq404EukNFxcm/foM+bV/bfcDsY=
-golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk=
-golang.org/x/term v0.18.0/go.mod h1:ILwASektA3OnRv7amZ1xhE/KTR+u50pbXfZ03+6Nx58=
 golang.org/x/term v0.22.0 h1:BbsgPEJULsl2fV/AT3v15Mjva5yXKQDyKf+TbDz7QJk=
 golang.org/x/term v0.22.0/go.mod h1:F3qCibpT5AMpCRfhfT53vVJwhLtIVHhB9XDjfFvnMI4=
-golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
-golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
-golang.org/x/text v0.4.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
-golang.org/x/text v0.5.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
-golang.org/x/text v0.6.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
-golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
-golang.org/x/text v0.8.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
-golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
-golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
-golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
 golang.org/x/text v0.16.0 h1:a94ExnEXNtEwYLGJSIUxnWoxoRz/ZcCsV63ROupILh4=
 golang.org/x/text v0.16.0/go.mod h1:GhwF1Be+LQoKShO3cGOHzqOgRrGaYc9AvblQOmPVHnI=
-golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.0.0-20220922220347-f3bd1da661af/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.1.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/time v0.3.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
 golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
-golang.org/x/tools v0.0.0-20180525024113-a5b4c53f6e8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
-golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
-golang.org/x/tools v0.0.0-20190206041539-40960b6deb8e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
-golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
-golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
-golang.org/x/tools v0.0.0-20190312151545-0bb0c0a6e846/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
-golang.org/x/tools v0.0.0-20190312170243-e65039ee4138/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
-golang.org/x/tools v0.0.0-20190425150028-36563e24a262/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
-golang.org/x/tools v0.0.0-20190506145303-2d16b83fe98c/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
-golang.org/x/tools v0.0.0-20190524140312-2c0ae7006135/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
-golang.org/x/tools v0.0.0-20190606124116-d0a3d012864b/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
-golang.org/x/tools v0.0.0-20190621195816-6e04913cbbac/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
-golang.org/x/tools v0.0.0-20190628153133-6cdbf07be9d0/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
-golang.org/x/tools v0.0.0-20190816200558-6889da9d5479/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20190911174233-4f2ddba30aff/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20190927191325-030b2cf1153e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191012152004-8de300cfc20a/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191113191852-77e3bb0ad9e7/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191115202509-3a792d9c32b2/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191125144606-a911d9008d1f/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191130070609-6e064ea0cf2d/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20191216173652-a0e659d51361/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20191227053925-7b8e75db28f4/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200117161641-43d50277825c/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200122220014-bf1340f18c4a/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200130002326-2f3ba24bd6e7/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200204074204-1cc6d1ef6c74/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200207183749-b753a1ba74fa/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200212150539-ea181f53ac56/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200224181240-023911ca70b2/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200227222343-706bc42d1f0d/go.mod h1:TB2adYChydJhpapKDTa4BR/hXlZSLoq2Wpct/0txZ28=
-golang.org/x/tools v0.0.0-20200304193943-95d2e580d8eb/go.mod h1:o4KQGtdN14AW+yjsvvwRTJJuXz8XRtIHtEnmAXLyFUw=
-golang.org/x/tools v0.0.0-20200312045724-11d5b4c81c7d/go.mod h1:o4KQGtdN14AW+yjsvvwRTJJuXz8XRtIHtEnmAXLyFUw=
-golang.org/x/tools v0.0.0-20200331025713-a30bf2db82d4/go.mod h1:Sl4aGygMT6LrqrWclx+PTx3U+LnKx/seiNR+3G19Ar8=
-golang.org/x/tools v0.0.0-20200501065659-ab2804fb9c9d/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
-golang.org/x/tools v0.0.0-20200512131952-2bc93b1c0c88/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
-golang.org/x/tools v0.0.0-20200515010526-7d3b6ebf133d/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
-golang.org/x/tools v0.0.0-20200618134242-20370b0cb4b2/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
-golang.org/x/tools v0.0.0-20200729194436-6467de6f59a7/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
-golang.org/x/tools v0.0.0-20200804011535-6c149bb5ef0d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
-golang.org/x/tools v0.0.0-20200825202427-b303f430e36d/go.mod h1:njjCfa9FT2d7l9Bc6FUM5FLjQPp3cFF28FI3qnDFljA=
-golang.org/x/tools v0.0.0-20200904185747-39188db58858/go.mod h1:Cj7w3i3Rnn0Xh82ur9kSqwfTHTeVxaDqrfMjpcNT6bE=
-golang.org/x/tools v0.0.0-20201110124207-079ba7bd75cd/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20201124115921-2c860bdd6e78/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20201201161351-ac6f37ff4c2a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20201208233053-a543418bbed2/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20210105154028-b0ab187a4818/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.0.0-20210108195828-e2f9c7f1fc8e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.1.0/go.mod h1:xkSsbof2nBLbhDlRMhhhyNLN/zl3eTqcnHD5viDpcZ0=
-golang.org/x/tools v0.1.1/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.1.2/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.1.3/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.1.4/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/tools v0.1.9/go.mod h1:nABZi5QlRsZVlzPpHl034qft6wpY4eDcsTt5AaioBiU=
-golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
-golang.org/x/tools v0.3.0/go.mod h1:/rWhSS2+zyEVwoJf8YAX6L2f0ntZ7Kn/mGgAWcipA5k=
-golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
-golang.org/x/tools v0.7.0/go.mod h1:4pg6aUX35JBAogB10C9AtvVL+qowtN4pT3CGSQex14s=
 golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d h1:vU5i/LfpvrRCpgM/VPfJLg5KjxD3E+hfT1SH+d9zLwg=
 golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-golang.org/x/xerrors v0.0.0-20220411194840-2f41105eb62f/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-golang.org/x/xerrors v0.0.0-20220517211312-f3a8303e98df/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
-golang.org/x/xerrors v0.0.0-20220609144429-65e65417b02f/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
-golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
 gomodules.xyz/jsonpatch/v2 v2.4.0 h1:Ci3iUJyx9UeRx7CeFN8ARgGbkESwJK+KB9lLcWxY/Zw=
 gomodules.xyz/jsonpatch/v2 v2.4.0/go.mod h1:AH3dM2RI6uoBZxn3LVrfvJ3E0/9dG4cSrbuBJT4moAY=
-gonum.org/v1/gonum v0.0.0-20180816165407-929014505bf4/go.mod h1:Y+Yx5eoAFn32cQvJDxZx5Dpnq+c3wtXuadVZAcxbbBo=
-gonum.org/v1/gonum v0.8.2/go.mod h1:oe/vMfY3deqTw+1EZJhuvEW2iwGF1bW9wwu7XCu0+v0=
-gonum.org/v1/gonum v0.9.3/go.mod h1:TZumC3NeyVQskjXqmyWt4S3bINhy7B4eYwW69EbyX+0=
-gonum.org/v1/gonum v0.11.0/go.mod h1:fSG4YDCxxUZQJ7rKsQrj0gMOg00Il0Z96/qMA4bVQhA=
-gonum.org/v1/netlib v0.0.0-20190313105609-8cb42192e0e0/go.mod h1:wa6Ws7BG/ESfp6dHfk7C6KdzKA7wR7u/rKwOGE66zvw=
-gonum.org/v1/plot v0.0.0-20190515093506-e2840ee46a6b/go.mod h1:Wt8AAjI+ypCyYX3nZBvf6cAIx93T+c/OS2HFAYskSZc=
-gonum.org/v1/plot v0.9.0/go.mod h1:3Pcqqmp6RHvJI72kgb8fThyUnav364FOsdDo2aGW5lY=
-gonum.org/v1/plot v0.10.1/go.mod h1:VZW5OlhkL1mysU9vaqNHnsy86inf6Ot+jB3r+BczCEo=
-google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
-google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M=
-google.golang.org/api v0.8.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
-google.golang.org/api v0.9.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
-google.golang.org/api v0.13.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI=
-google.golang.org/api v0.14.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI=
-google.golang.org/api v0.15.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI=
-google.golang.org/api v0.17.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
-google.golang.org/api v0.18.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
-google.golang.org/api v0.19.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
-google.golang.org/api v0.20.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
-google.golang.org/api v0.22.0/go.mod h1:BwFmGc8tA3vsd7r/7kR8DY7iEEGSU04BFxCo5jP/sfE=
-google.golang.org/api v0.24.0/go.mod h1:lIXQywCXRcnZPGlsd8NbLnOjtAoL6em04bJ9+z0MncE=
-google.golang.org/api v0.28.0/go.mod h1:lIXQywCXRcnZPGlsd8NbLnOjtAoL6em04bJ9+z0MncE=
-google.golang.org/api v0.29.0/go.mod h1:Lcubydp8VUV7KeIHD9z2Bys/sm/vGKnG1UHuDBSrHWM=
-google.golang.org/api v0.30.0/go.mod h1:QGmEvQ87FHZNiUVJkT14jQNYJ4ZJjdRF23ZXz5138Fc=
-google.golang.org/api v0.35.0/go.mod h1:/XrVsuzM0rZmrsbjJutiuftIzeuTQcEeaYcSk/mQ1dg=
-google.golang.org/api v0.36.0/go.mod h1:+z5ficQTmoYpPn8LCUNVpK5I7hwkpjbcgqA7I34qYtE=
-google.golang.org/api v0.40.0/go.mod h1:fYKFpnQN0DsDSKRVRcQSDQNtqWPfM9i+zNPxepjRCQ8=
-google.golang.org/api v0.41.0/go.mod h1:RkxM5lITDfTzmyKFPt+wGrCJbVfniCr2ool8kTBzRTU=
-google.golang.org/api v0.43.0/go.mod h1:nQsDGjRXMo4lvh5hP0TKqF244gqhGcr/YSIykhUk/94=
-google.golang.org/api v0.47.0/go.mod h1:Wbvgpq1HddcWVtzsVLyfLp8lDg6AA241LmgIL59tHXo=
-google.golang.org/api v0.48.0/go.mod h1:71Pr1vy+TAZRPkPs/xlCf5SsU8WjuAWv1Pfjbtukyy4=
-google.golang.org/api v0.50.0/go.mod h1:4bNT5pAuq5ji4SRZm+5QIkjny9JAyVD/3gaSihNefaw=
-google.golang.org/api v0.51.0/go.mod h1:t4HdrdoNgyN5cbEfm7Lum0lcLDLiise1F8qDKX00sOU=
-google.golang.org/api v0.54.0/go.mod h1:7C4bFFOvVDGXjfDTAsgGwDgAxRDeQ4X8NvUedIt6z3k=
-google.golang.org/api v0.55.0/go.mod h1:38yMfeP1kfjsl8isn0tliTjIb1rJXcQi4UXlbqivdVE=
-google.golang.org/api v0.56.0/go.mod h1:38yMfeP1kfjsl8isn0tliTjIb1rJXcQi4UXlbqivdVE=
-google.golang.org/api v0.57.0/go.mod h1:dVPlbZyBo2/OjBpmvNdpn2GRm6rPy75jyU7bmhdrMgI=
-google.golang.org/api v0.61.0/go.mod h1:xQRti5UdCmoCEqFxcz93fTl338AVqDgyaDRuOZ3hg9I=
-google.golang.org/api v0.63.0/go.mod h1:gs4ij2ffTRXwuzzgJl/56BdwJaA194ijkfn++9tDuPo=
-google.golang.org/api v0.67.0/go.mod h1:ShHKP8E60yPsKNw/w8w+VYaj9H6buA5UqDp8dhbQZ6g=
-google.golang.org/api v0.70.0/go.mod h1:Bs4ZM2HGifEvXwd50TtW70ovgJffJYw2oRCOFU/SkfA=
-google.golang.org/api v0.71.0/go.mod h1:4PyU6e6JogV1f9eA4voyrTY2batOLdgZ5qZ5HOCc4j8=
-google.golang.org/api v0.74.0/go.mod h1:ZpfMZOVRMywNyvJFeqL9HRWBgAuRfSjJFpe9QtRRyDs=
-google.golang.org/api v0.75.0/go.mod h1:pU9QmyHLnzlpar1Mjt4IbapUCy8J+6HD6GeELN69ljA=
-google.golang.org/api v0.77.0/go.mod h1:pU9QmyHLnzlpar1Mjt4IbapUCy8J+6HD6GeELN69ljA=
-google.golang.org/api v0.78.0/go.mod h1:1Sg78yoMLOhlQTeF+ARBoytAcH1NNyyl390YMy6rKmw=
-google.golang.org/api v0.80.0/go.mod h1:xY3nI94gbvBrE0J6NHXhxOmW97HG7Khjkku6AFB3Hyg=
-google.golang.org/api v0.84.0/go.mod h1:NTsGnUFJMYROtiquksZHBWtHfeMC7iYthki7Eq3pa8o=
-google.golang.org/api v0.85.0/go.mod h1:AqZf8Ep9uZ2pyTvgL+x0D3Zt0eoT9b5E8fmzfu6FO2g=
-google.golang.org/api v0.90.0/go.mod h1:+Sem1dnrKlrXMR/X0bPnMWyluQe4RsNoYfmNLhOIkzw=
-google.golang.org/api v0.93.0/go.mod h1:+Sem1dnrKlrXMR/X0bPnMWyluQe4RsNoYfmNLhOIkzw=
-google.golang.org/api v0.95.0/go.mod h1:eADj+UBuxkh5zlrSntJghuNeg8HwQ1w5lTKkuqaETEI=
-google.golang.org/api v0.96.0/go.mod h1:w7wJQLTM+wvQpNf5JyEcBoxK0RH7EDrh/L4qfsuJ13s=
-google.golang.org/api v0.97.0/go.mod h1:w7wJQLTM+wvQpNf5JyEcBoxK0RH7EDrh/L4qfsuJ13s=
-google.golang.org/api v0.98.0/go.mod h1:w7wJQLTM+wvQpNf5JyEcBoxK0RH7EDrh/L4qfsuJ13s=
-google.golang.org/api v0.99.0/go.mod h1:1YOf74vkVndF7pG6hIHuINsM7eWwpVTAfNMNiL91A08=
-google.golang.org/api v0.100.0/go.mod h1:ZE3Z2+ZOr87Rx7dqFsdRQkRBk36kDtp/h+QpHbB7a70=
-google.golang.org/api v0.102.0/go.mod h1:3VFl6/fzoA+qNuS1N1/VfXY4LjoXN/wzeIp7TweWwGo=
-google.golang.org/api v0.103.0/go.mod h1:hGtW6nK1AC+d9si/UBhw8Xli+QMOf6xyNAyJw4qU9w0=
-google.golang.org/api v0.106.0/go.mod h1:2Ts0XTHNVWxypznxWOYUeI4g3WdP9Pk2Qk58+a/O9MY=
-google.golang.org/api v0.107.0/go.mod h1:2Ts0XTHNVWxypznxWOYUeI4g3WdP9Pk2Qk58+a/O9MY=
-google.golang.org/api v0.108.0/go.mod h1:2Ts0XTHNVWxypznxWOYUeI4g3WdP9Pk2Qk58+a/O9MY=
-google.golang.org/api v0.110.0/go.mod h1:7FC4Vvx1Mooxh8C5HWjzZHcavuS2f6pmJpZx60ca7iI=
-google.golang.org/api v0.111.0/go.mod h1:qtFHvU9mhgTJegR31csQ+rwxyUTHOKFqCKWp1J0fdw0=
-google.golang.org/api v0.114.0/go.mod h1:ifYI2ZsFK6/uGddGfAD5BMxlnkBqCmqHSDUVi45N5Yg=
-google.golang.org/api v0.118.0/go.mod h1:76TtD3vkgmZ66zZzp72bUUklpmQmKlhh6sYtIjYK+5E=
-google.golang.org/api v0.122.0/go.mod h1:gcitW0lvnyWjSp9nKxAbdHKIZ6vF4aajGueeslZOyms=
-google.golang.org/api v0.124.0/go.mod h1:xu2HQurE5gi/3t1aFCvhPD781p0a3p11sdunTJ2BlP4=
-google.golang.org/api v0.126.0/go.mod h1:mBwVAtz+87bEN6CbA1GtZPDOqY2R5ONPqJeIlvyo4Aw=
-google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
-google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
-google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
-google.golang.org/appengine v1.6.1/go.mod h1:i06prIuMbXzDqacNJfV5OdTW448YApPu5ww/cMBSeb0=
-google.golang.org/appengine v1.6.5/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
-google.golang.org/appengine v1.6.6/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
-google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
-google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc=
-google.golang.org/genproto v0.0.0-20190307195333-5fe7a883aa19/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
-google.golang.org/genproto v0.0.0-20190418145605-e7d98fc518a7/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
-google.golang.org/genproto v0.0.0-20190425155659-357c62f0e4bb/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
-google.golang.org/genproto v0.0.0-20190502173448-54afdca5d873/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
-google.golang.org/genproto v0.0.0-20190801165951-fa694d86fc64/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
-google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
-google.golang.org/genproto v0.0.0-20190911173649-1774047e7e51/go.mod h1:IbNlFCBrqXvoKpeg0TB2l7cyZUmoaFKYIwrEpbDKLA8=
-google.golang.org/genproto v0.0.0-20191108220845-16a3f7862a1a/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
-google.golang.org/genproto v0.0.0-20191115194625-c23dd37a84c9/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
-google.golang.org/genproto v0.0.0-20191216164720-4f79533eabd1/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
-google.golang.org/genproto v0.0.0-20191230161307-f3c370f40bfb/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
-google.golang.org/genproto v0.0.0-20200115191322-ca5a22157cba/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
-google.golang.org/genproto v0.0.0-20200122232147-0452cf42e150/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
-google.golang.org/genproto v0.0.0-20200204135345-fa8e72b47b90/go.mod h1:GmwEX6Z4W5gMy59cAlVYjN9JhxgbQH6Gn+gFDQe2lzA=
-google.golang.org/genproto v0.0.0-20200212174721-66ed5ce911ce/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200224152610-e50cd9704f63/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200228133532-8c2c7df3a383/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200305110556-506484158171/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200312145019-da6875a35672/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200331122359-1ee6d9798940/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200430143042-b979b6f78d84/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200511104702-f5ebc3bea380/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200513103714-09dca8ec2884/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c=
-google.golang.org/genproto v0.0.0-20200515170657-fc4c6c6a6587/go.mod h1:YsZOwe1myG/8QRHRsmBRE1LrgQY60beZKjly0O1fX9U=
-google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013/go.mod h1:NbSheEEYHJ7i3ixzK3sjbqSGDJWnxyFXZblF3eUsNvo=
-google.golang.org/genproto v0.0.0-20200618031413-b414f8b61790/go.mod h1:jDfRM7FcilCzHH/e9qn6dsT145K34l5v+OpcnNgKAAA=
-google.golang.org/genproto v0.0.0-20200729003335-053ba62fc06f/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20200804131852-c06518451d9c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20200825200019-8632dd797987/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20200904004341-0bd0a958aa1d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201109203340-2640f1f9cdfb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201201144952-b05cb90ed32e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201210142538-e3217bee35cc/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20201214200347-8c77b98c765d/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210108203827-ffc7fda8c3d7/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210222152913-aa3ee6e6a81c/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210226172003-ab064af71705/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210303154014-9728d6b83eeb/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210310155132-4ce2db91004e/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210319143718-93e7006c17a6/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/genproto v0.0.0-20210329143202-679c6ae281ee/go.mod h1:9lPAdzaEmUacj36I+k7YKbEc5CXzPIeORRgDAUOu28A=
-google.golang.org/genproto v0.0.0-20210402141018-6c239bbf2bb1/go.mod h1:9lPAdzaEmUacj36I+k7YKbEc5CXzPIeORRgDAUOu28A=
-google.golang.org/genproto v0.0.0-20210513213006-bf773b8c8384/go.mod h1:P3QM42oQyzQSnHPnZ/vqoCdDmzH28fzWByN9asMeM8A=
-google.golang.org/genproto v0.0.0-20210602131652-f16073e35f0c/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
-google.golang.org/genproto v0.0.0-20210604141403-392c879c8b08/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
-google.golang.org/genproto v0.0.0-20210608205507-b6d2f5bf0d7d/go.mod h1:UODoCrxHCcBojKKwX1terBiRUaqAsFqJiF615XL43r0=
-google.golang.org/genproto v0.0.0-20210624195500-8bfb893ecb84/go.mod h1:SzzZ/N+nwJDaO1kznhnlzqS8ocJICar6hYhVyhi++24=
-google.golang.org/genproto v0.0.0-20210713002101-d411969a0d9a/go.mod h1:AxrInvYm1dci+enl5hChSFPOmmUF1+uAa/UsgNRWd7k=
-google.golang.org/genproto v0.0.0-20210716133855-ce7ef5c701ea/go.mod h1:AxrInvYm1dci+enl5hChSFPOmmUF1+uAa/UsgNRWd7k=
-google.golang.org/genproto v0.0.0-20210728212813-7823e685a01f/go.mod h1:ob2IJxKrgPT52GcgX759i1sleT07tiKowYBGbczaW48=
-google.golang.org/genproto v0.0.0-20210805201207-89edb61ffb67/go.mod h1:ob2IJxKrgPT52GcgX759i1sleT07tiKowYBGbczaW48=
-google.golang.org/genproto v0.0.0-20210813162853-db860fec028c/go.mod h1:cFeNkxwySK631ADgubI+/XFU/xp8FD5KIVV4rj8UC5w=
-google.golang.org/genproto v0.0.0-20210821163610-241b8fcbd6c8/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
-google.golang.org/genproto v0.0.0-20210828152312-66f60bf46e71/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
-google.golang.org/genproto v0.0.0-20210831024726-fe130286e0e2/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
-google.golang.org/genproto v0.0.0-20210903162649-d08c68adba83/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
-google.golang.org/genproto v0.0.0-20210909211513-a8c4777a87af/go.mod h1:eFjDcFEctNawg4eG61bRv87N7iHBWyVhJu7u1kqDUXY=
-google.golang.org/genproto v0.0.0-20210924002016-3dee208752a0/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20211118181313-81c1377c94b1/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20211206160659-862468c7d6e0/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20211208223120-3a66f561d7aa/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20211221195035-429b39de9b1c/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20220126215142-9970aeb2e350/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20220207164111-0872dc986b00/go.mod h1:5CzLGKJ67TSI2B9POpiiyGha0AjJvZIUgRMt1dSmuhc=
-google.golang.org/genproto v0.0.0-20220218161850-94dd64e39d7c/go.mod h1:kGP+zUP2Ddo0ayMi4YuN7C3WZyJvGLZRh8Z5wnAqvEI=
-google.golang.org/genproto v0.0.0-20220222213610-43724f9ea8cf/go.mod h1:kGP+zUP2Ddo0ayMi4YuN7C3WZyJvGLZRh8Z5wnAqvEI=
-google.golang.org/genproto v0.0.0-20220304144024-325a89244dc8/go.mod h1:kGP+zUP2Ddo0ayMi4YuN7C3WZyJvGLZRh8Z5wnAqvEI=
-google.golang.org/genproto v0.0.0-20220310185008-1973136f34c6/go.mod h1:kGP+zUP2Ddo0ayMi4YuN7C3WZyJvGLZRh8Z5wnAqvEI=
-google.golang.org/genproto v0.0.0-20220324131243-acbaeb5b85eb/go.mod h1:hAL49I2IFola2sVEjAn7MEwsja0xp51I0tlGAf9hz4E=
-google.golang.org/genproto v0.0.0-20220329172620-7be39ac1afc7/go.mod h1:8w6bsBMX6yCPbAVTeqQHvzxW0EIFigd5lZyahWgyfDo=
-google.golang.org/genproto v0.0.0-20220407144326-9054f6ed7bac/go.mod h1:8w6bsBMX6yCPbAVTeqQHvzxW0EIFigd5lZyahWgyfDo=
-google.golang.org/genproto v0.0.0-20220413183235-5e96e2839df9/go.mod h1:8w6bsBMX6yCPbAVTeqQHvzxW0EIFigd5lZyahWgyfDo=
-google.golang.org/genproto v0.0.0-20220414192740-2d67ff6cf2b4/go.mod h1:8w6bsBMX6yCPbAVTeqQHvzxW0EIFigd5lZyahWgyfDo=
-google.golang.org/genproto v0.0.0-20220421151946-72621c1f0bd3/go.mod h1:8w6bsBMX6yCPbAVTeqQHvzxW0EIFigd5lZyahWgyfDo=
-google.golang.org/genproto v0.0.0-20220429170224-98d788798c3e/go.mod h1:8w6bsBMX6yCPbAVTeqQHvzxW0EIFigd5lZyahWgyfDo=
-google.golang.org/genproto v0.0.0-20220502173005-c8bf987b8c21/go.mod h1:RAyBrSAP7Fh3Nc84ghnVLDPuV51xc9agzmm4Ph6i0Q4=
-google.golang.org/genproto v0.0.0-20220505152158-f39f71e6c8f3/go.mod h1:RAyBrSAP7Fh3Nc84ghnVLDPuV51xc9agzmm4Ph6i0Q4=
-google.golang.org/genproto v0.0.0-20220518221133-4f43b3371335/go.mod h1:RAyBrSAP7Fh3Nc84ghnVLDPuV51xc9agzmm4Ph6i0Q4=
-google.golang.org/genproto v0.0.0-20220523171625-347a074981d8/go.mod h1:RAyBrSAP7Fh3Nc84ghnVLDPuV51xc9agzmm4Ph6i0Q4=
-google.golang.org/genproto v0.0.0-20220608133413-ed9918b62aac/go.mod h1:KEWEmljWE5zPzLBa/oHl6DaEt9LmfH6WtH1OHIvleBA=
-google.golang.org/genproto v0.0.0-20220616135557-88e70c0c3a90/go.mod h1:KEWEmljWE5zPzLBa/oHl6DaEt9LmfH6WtH1OHIvleBA=
-google.golang.org/genproto v0.0.0-20220617124728-180714bec0ad/go.mod h1:KEWEmljWE5zPzLBa/oHl6DaEt9LmfH6WtH1OHIvleBA=
-google.golang.org/genproto v0.0.0-20220624142145-8cd45d7dbd1f/go.mod h1:KEWEmljWE5zPzLBa/oHl6DaEt9LmfH6WtH1OHIvleBA=
-google.golang.org/genproto v0.0.0-20220628213854-d9e0b6570c03/go.mod h1:KEWEmljWE5zPzLBa/oHl6DaEt9LmfH6WtH1OHIvleBA=
-google.golang.org/genproto v0.0.0-20220722212130-b98a9ff5e252/go.mod h1:GkXuJDJ6aQ7lnJcRF+SJVgFdQhypqgl3LB1C9vabdRE=
-google.golang.org/genproto v0.0.0-20220801145646-83ce21fca29f/go.mod h1:iHe1svFLAZg9VWz891+QbRMwUv9O/1Ww+/mngYeThbc=
-google.golang.org/genproto v0.0.0-20220815135757-37a418bb8959/go.mod h1:dbqgFATTzChvnt+ujMdZwITVAJHFtfyN1qUhDqEiIlk=
-google.golang.org/genproto v0.0.0-20220817144833-d7fd3f11b9b1/go.mod h1:dbqgFATTzChvnt+ujMdZwITVAJHFtfyN1qUhDqEiIlk=
-google.golang.org/genproto v0.0.0-20220822174746-9e6da59bd2fc/go.mod h1:dbqgFATTzChvnt+ujMdZwITVAJHFtfyN1qUhDqEiIlk=
-google.golang.org/genproto v0.0.0-20220829144015-23454907ede3/go.mod h1:dbqgFATTzChvnt+ujMdZwITVAJHFtfyN1qUhDqEiIlk=
-google.golang.org/genproto v0.0.0-20220829175752-36a9c930ecbf/go.mod h1:dbqgFATTzChvnt+ujMdZwITVAJHFtfyN1qUhDqEiIlk=
-google.golang.org/genproto v0.0.0-20220913154956-18f8339a66a5/go.mod h1:0Nb8Qy+Sk5eDzHnzlStwW3itdNaWoZA5XeSG+R3JHSo=
-google.golang.org/genproto v0.0.0-20220914142337-ca0e39ece12f/go.mod h1:0Nb8Qy+Sk5eDzHnzlStwW3itdNaWoZA5XeSG+R3JHSo=
-google.golang.org/genproto v0.0.0-20220915135415-7fd63a7952de/go.mod h1:0Nb8Qy+Sk5eDzHnzlStwW3itdNaWoZA5XeSG+R3JHSo=
-google.golang.org/genproto v0.0.0-20220916172020-2692e8806bfa/go.mod h1:0Nb8Qy+Sk5eDzHnzlStwW3itdNaWoZA5XeSG+R3JHSo=
-google.golang.org/genproto v0.0.0-20220919141832-68c03719ef51/go.mod h1:0Nb8Qy+Sk5eDzHnzlStwW3itdNaWoZA5XeSG+R3JHSo=
-google.golang.org/genproto v0.0.0-20220920201722-2b89144ce006/go.mod h1:ht8XFiar2npT/g4vkk7O0WYS1sHOHbdujxbEp7CJWbw=
-google.golang.org/genproto v0.0.0-20220926165614-551eb538f295/go.mod h1:woMGP53BroOrRY3xTxlbr8Y3eB/nzAvvFM83q7kG2OI=
-google.golang.org/genproto v0.0.0-20220926220553-6981cbe3cfce/go.mod h1:woMGP53BroOrRY3xTxlbr8Y3eB/nzAvvFM83q7kG2OI=
-google.golang.org/genproto v0.0.0-20221010155953-15ba04fc1c0e/go.mod h1:3526vdqwhZAwq4wsRUaVG555sVgsNmIjRtO7t/JH29U=
-google.golang.org/genproto v0.0.0-20221014173430-6e2ab493f96b/go.mod h1:1vXfmgAz9N9Jx0QA82PqRVauvCz1SGSz739p0f183jM=
-google.golang.org/genproto v0.0.0-20221014213838-99cd37c6964a/go.mod h1:1vXfmgAz9N9Jx0QA82PqRVauvCz1SGSz739p0f183jM=
-google.golang.org/genproto v0.0.0-20221024153911-1573dae28c9c/go.mod h1:9qHF0xnpdSfF6knlcsnpzUu5y+rpwgbvsyGAZPBMg4s=
-google.golang.org/genproto v0.0.0-20221024183307-1bc688fe9f3e/go.mod h1:9qHF0xnpdSfF6knlcsnpzUu5y+rpwgbvsyGAZPBMg4s=
-google.golang.org/genproto v0.0.0-20221027153422-115e99e71e1c/go.mod h1:CGI5F/G+E5bKwmfYo09AXuVN4dD894kIKUFmVbP2/Fo=
-google.golang.org/genproto v0.0.0-20221109142239-94d6d90a7d66/go.mod h1:rZS5c/ZVYMaOGBfO68GWtjOw/eLaZM1X6iVtgjZ+EWg=
-google.golang.org/genproto v0.0.0-20221114212237-e4508ebdbee1/go.mod h1:rZS5c/ZVYMaOGBfO68GWtjOw/eLaZM1X6iVtgjZ+EWg=
-google.golang.org/genproto v0.0.0-20221117204609-8f9c96812029/go.mod h1:rZS5c/ZVYMaOGBfO68GWtjOw/eLaZM1X6iVtgjZ+EWg=
-google.golang.org/genproto v0.0.0-20221118155620-16455021b5e6/go.mod h1:rZS5c/ZVYMaOGBfO68GWtjOw/eLaZM1X6iVtgjZ+EWg=
-google.golang.org/genproto v0.0.0-20221201164419-0e50fba7f41c/go.mod h1:rZS5c/ZVYMaOGBfO68GWtjOw/eLaZM1X6iVtgjZ+EWg=
-google.golang.org/genproto v0.0.0-20221201204527-e3fa12d562f3/go.mod h1:rZS5c/ZVYMaOGBfO68GWtjOw/eLaZM1X6iVtgjZ+EWg=
-google.golang.org/genproto v0.0.0-20221202195650-67e5cbc046fd/go.mod h1:cTsE614GARnxrLsqKREzmNYJACSWWpAWdNMwnD7c2BE=
-google.golang.org/genproto v0.0.0-20221227171554-f9683d7f8bef/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
-google.golang.org/genproto v0.0.0-20230110181048-76db0878b65f/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
-google.golang.org/genproto v0.0.0-20230112194545-e10362b5ecf9/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
-google.golang.org/genproto v0.0.0-20230113154510-dbe35b8444a5/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
-google.golang.org/genproto v0.0.0-20230123190316-2c411cf9d197/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
-google.golang.org/genproto v0.0.0-20230124163310-31e0e69b6fc2/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
-google.golang.org/genproto v0.0.0-20230125152338-dcaf20b6aeaa/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
-google.golang.org/genproto v0.0.0-20230127162408-596548ed4efa/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
-google.golang.org/genproto v0.0.0-20230209215440-0dfe4f8abfcc/go.mod h1:RGgjbofJ8xD9Sq1VVhDM1Vok1vRONV+rg+CjzG4SZKM=
-google.golang.org/genproto v0.0.0-20230216225411-c8e22ba71e44/go.mod h1:8B0gmkoRebU8ukX6HP+4wrVQUY1+6PkQ44BSyIlflHA=
-google.golang.org/genproto v0.0.0-20230222225845-10f96fb3dbec/go.mod h1:3Dl5ZL0q0isWJt+FVcfpQyirqemEuLAK/iFvg1UP1Hw=
-google.golang.org/genproto v0.0.0-20230223222841-637eb2293923/go.mod h1:3Dl5ZL0q0isWJt+FVcfpQyirqemEuLAK/iFvg1UP1Hw=
-google.golang.org/genproto v0.0.0-20230303212802-e74f57abe488/go.mod h1:TvhZT5f700eVlTNwND1xoEZQeWTB2RY/65kplwl/bFA=
-google.golang.org/genproto v0.0.0-20230306155012-7f2fa6fef1f4/go.mod h1:NWraEVixdDnqcqQ30jipen1STv2r/n24Wb7twVTGR4s=
-google.golang.org/genproto v0.0.0-20230320184635-7606e756e683/go.mod h1:NWraEVixdDnqcqQ30jipen1STv2r/n24Wb7twVTGR4s=
-google.golang.org/genproto v0.0.0-20230323212658-478b75c54725/go.mod h1:UUQDJDOlWu4KYeJZffbWgBkS1YFobzKbLVfK69pe0Ak=
-google.golang.org/genproto v0.0.0-20230330154414-c0448cd141ea/go.mod h1:UUQDJDOlWu4KYeJZffbWgBkS1YFobzKbLVfK69pe0Ak=
-google.golang.org/genproto v0.0.0-20230331144136-dcfb400f0633/go.mod h1:UUQDJDOlWu4KYeJZffbWgBkS1YFobzKbLVfK69pe0Ak=
-google.golang.org/genproto v0.0.0-20230403163135-c38d8f061ccd/go.mod h1:UUQDJDOlWu4KYeJZffbWgBkS1YFobzKbLVfK69pe0Ak=
-google.golang.org/genproto v0.0.0-20230410155749-daa745c078e1/go.mod h1:nKE/iIaLqn2bQwXBg8f1g2Ylh6r5MN5CmZvuzZCgsCU=
-google.golang.org/genproto v0.0.0-20230525234025-438c736192d0/go.mod h1:9ExIQyXL5hZrHzQceCwuSYwZZ5QZBazOcprJ5rgs3lY=
-google.golang.org/genproto v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:xZnkP7mREFX5MORlOPEzLMr+90PPZQ2QWzrVTWfAq64=
-google.golang.org/genproto/googleapis/api v0.0.0-20230525234020-1aefcd67740a/go.mod h1:ts19tUU+Z0ZShN1y3aPyq2+O3d5FUNNgT6FtOzmrNn8=
-google.golang.org/genproto/googleapis/api v0.0.0-20230525234035-dd9d682886f9/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
-google.golang.org/genproto/googleapis/api v0.0.0-20230526203410-71b5a4ffd15e/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
-google.golang.org/genproto/googleapis/api v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig=
-google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:ylj+BE99M198VPbBh6A8d9n3w8fChvyLK3wwBOjXBFA=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234015-3fc162c6f38a/go.mod h1:xURIpW9ES5+/GZhnV6beoEtxQrnkRGIfP5VQG2tCBLc=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234030-28d5490b6b19/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20230526203410-71b5a4ffd15e/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240528184218-531527333157 h1:Zy9XzmMEflZ/MAaA7vNcoebnRAld7FsPW1EeBB7V0m8=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240528184218-531527333157/go.mod h1:EfXuqaE1J41VCDicxHzUDm+8rk+7ZdXzHV0IhO/I6s0=
-google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
-google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
-google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
-google.golang.org/grpc v1.23.0/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg=
-google.golang.org/grpc v1.25.1/go.mod h1:c3i+UQWmh7LiEpx4sFZnkU36qjEYZ0imhYfXVyQciAY=
-google.golang.org/grpc v1.26.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
-google.golang.org/grpc v1.27.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
-google.golang.org/grpc v1.27.1/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
-google.golang.org/grpc v1.28.0/go.mod h1:rpkK4SK4GF4Ach/+MFLZUBavHOvF2JJB5uozKKal+60=
-google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk=
-google.golang.org/grpc v1.30.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.31.0/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.31.1/go.mod h1:N36X2cJ7JwdamYAgDz+s+rVMFjt3numwzf/HckM8pak=
-google.golang.org/grpc v1.33.1/go.mod h1:fr5YgcSWrqhRRxogOsw7RzIpsmvOZ6IcH4kBYTpR3n0=
-google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc=
-google.golang.org/grpc v1.34.0/go.mod h1:WotjhfgOW/POjDeRt8vscBtXq+2VjORFy659qA51WJ8=
-google.golang.org/grpc v1.35.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
-google.golang.org/grpc v1.36.0/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
-google.golang.org/grpc v1.36.1/go.mod h1:qjiiYl8FncCW8feJPdyg3v6XW24KsRHe+dy9BAGRRjU=
-google.golang.org/grpc v1.37.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
-google.golang.org/grpc v1.37.1/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
-google.golang.org/grpc v1.38.0/go.mod h1:NREThFqKR1f3iQ6oBuvc5LadQuXVGo9rkm5ZGrQdJfM=
-google.golang.org/grpc v1.39.0/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
-google.golang.org/grpc v1.39.1/go.mod h1:PImNr+rS9TWYb2O4/emRugxiyHZ5JyHW5F+RPnDzfrE=
-google.golang.org/grpc v1.40.0/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
-google.golang.org/grpc v1.40.1/go.mod h1:ogyxbiOoUXAkP+4+xa6PZSE9DZgIHtSpzjDTB9KAK34=
-google.golang.org/grpc v1.42.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU=
-google.golang.org/grpc v1.44.0/go.mod h1:k+4IHHFw41K8+bbowsex27ge2rCb65oeWqe4jJ590SU=
-google.golang.org/grpc v1.45.0/go.mod h1:lN7owxKUQEqMfSyQikvvk5tf/6zMPsrK+ONuO11+0rQ=
-google.golang.org/grpc v1.46.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
-google.golang.org/grpc v1.46.2/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
-google.golang.org/grpc v1.47.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
-google.golang.org/grpc v1.48.0/go.mod h1:vN9eftEi1UMyUsIF80+uQXhHjbXYbm0uXoFCACuMGWk=
-google.golang.org/grpc v1.49.0/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI=
-google.golang.org/grpc v1.50.0/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI=
-google.golang.org/grpc v1.50.1/go.mod h1:ZgQEeidpAuNRZ8iRrlBKXZQP1ghovWIVhdJRyCDK+GI=
-google.golang.org/grpc v1.51.0/go.mod h1:wgNDFcnuBGmxLKI/qn4T+m5BtEBYXJPvibbUPsAIPww=
-google.golang.org/grpc v1.52.0/go.mod h1:pu6fVzoFb+NBYNAvQL08ic+lvB2IojljRYuun5vorUY=
-google.golang.org/grpc v1.53.0/go.mod h1:OnIrk0ipVdj4N5d9IUoFUx72/VlD7+jUsHwZgwSMQpw=
-google.golang.org/grpc v1.54.0/go.mod h1:PUSEXI6iWghWaB6lXM4knEgpJNu2qUcKfDtNci3EC2g=
-google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8=
 google.golang.org/grpc v1.65.0 h1:bs/cUb4lp1G5iImFFd3u5ixQzweKizoZJAwBNLR42lc=
 google.golang.org/grpc v1.65.0/go.mod h1:WgYC2ypjlB0EiQi6wdKixMqukr6lBc0Vo+oOgjrM5ZQ=
-google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
@@ -1856,30 +302,13 @@ google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ
 google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
 google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miEFZTKqfCUM6K7xSMQL9OKL/b6hQv+e19PK+JZNE=
 google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo=
-google.golang.org/protobuf v1.22.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
 google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
-google.golang.org/protobuf v1.23.1-0.20200526195155-81db48ad09cc/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
-google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGjtUeSXeh4=
-google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
-google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
-google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.28.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
-google.golang.org/protobuf v1.28.1/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
-google.golang.org/protobuf v1.29.1/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
-google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
-google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
-google.golang.org/protobuf v1.32.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
-google.golang.org/protobuf v1.33.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
-google.golang.org/protobuf v1.34.1 h1:9ddQBjfCyZPOHPUiPxpYESBLc+T8P3E+Vo4IbKZgFWg=
-google.golang.org/protobuf v1.34.1/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
-gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
+google.golang.org/protobuf v1.34.2 h1:6xV6lTsCfpGD21XK49h7MhtcApnLqkfYgPcdHftf6hg=
+google.golang.org/protobuf v1.34.2/go.mod h1:qYOHts0dSfpeUzUFpOMr/WGzszTmLH+DiWniOlNbLDw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
-gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
 gopkg.in/evanphx/json-patch.v5 v5.9.0 h1:hx1VU2SGj4F8r9b8GUwJLdc8DNO8sy79ZGui0G05GLo=
 gopkg.in/evanphx/json-patch.v5 v5.9.0/go.mod h1:/kvTRh1TVm5wuM6OkHxqXtE/1nUZZpihg29RtuIyfvk=
 gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
@@ -1893,11 +322,8 @@ gopkg.in/mcuadros/go-syslog.v2 v2.3.0 h1:kcsiS+WsTKyIEPABJBJtoG0KkOS6yzvJ+/eZlhD
 gopkg.in/mcuadros/go-syslog.v2 v2.3.0/go.mod h1:l5LPIyOOyIdQquNg+oU6Z3524YwrcqEm0aKH+5zpt2U=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
-gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.3/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.5/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.3.0/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
@@ -1905,14 +331,6 @@ gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
-honnef.co/go/tools v0.0.0-20190106161140-3f1c8253044a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
-honnef.co/go/tools v0.0.0-20190418001031-e561f6794a2a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
-honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
-honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
-honnef.co/go/tools v0.0.1-2020.1.3/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-honnef.co/go/tools v0.0.1-2020.1.4/go.mod h1:X/FiERA/W4tHapMX5mGpAtMSVEeEUOyHaw9vFzvIQ3k=
-honnef.co/go/tools v0.1.3/go.mod h1:NgwopIslSNH47DimFoV78dnkksY2EFtX0ajyb3K/las=
 k8s.io/api v0.30.2 h1:+ZhRj+28QT4UOH+BKznu4CBgPWgkXO7XAvMcMl0qKvI=
 k8s.io/api v0.30.2/go.mod h1:ULg5g9JvOev2dG0u2hig4Z7tQ2hHIuS+m8MNZ+X6EmI=
 k8s.io/apiextensions-apiserver v0.30.1 h1:4fAJZ9985BmpJG6PkoxVRpXv9vmPUOVzl614xarePws=
@@ -1937,46 +355,8 @@ k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f h1:0LQagt0gDpKqvIkAMPaRGc
 k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f/go.mod h1:S9tOR0FxgyusSNR+MboCuiDpVWkAifZvaYI1Q2ubgro=
 k8s.io/utils v0.0.0-20240502163921-fe8a2dddb1d0 h1:jgGTlFYnhF1PM1Ax/lAlxUPE+KfCIXHaathvJg1C3ak=
 k8s.io/utils v0.0.0-20240502163921-fe8a2dddb1d0/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
-lukechampine.com/uint128 v1.1.1/go.mod h1:c4eWIwlEGaxC/+H1VguhU4PHXNWDCDMUlWdIWl2j1gk=
-lukechampine.com/uint128 v1.2.0/go.mod h1:c4eWIwlEGaxC/+H1VguhU4PHXNWDCDMUlWdIWl2j1gk=
-modernc.org/cc/v3 v3.36.0/go.mod h1:NFUHyPn4ekoC/JHeZFfZurN6ixxawE1BnVonP/oahEI=
-modernc.org/cc/v3 v3.36.2/go.mod h1:NFUHyPn4ekoC/JHeZFfZurN6ixxawE1BnVonP/oahEI=
-modernc.org/cc/v3 v3.36.3/go.mod h1:NFUHyPn4ekoC/JHeZFfZurN6ixxawE1BnVonP/oahEI=
-modernc.org/ccgo/v3 v3.0.0-20220428102840-41399a37e894/go.mod h1:eI31LL8EwEBKPpNpA4bU1/i+sKOwOrQy8D87zWUcRZc=
-modernc.org/ccgo/v3 v3.0.0-20220430103911-bc99d88307be/go.mod h1:bwdAnOoaIt8Ax9YdWGjxWsdkPcZyRPHqrOvJxaKAKGw=
-modernc.org/ccgo/v3 v3.16.4/go.mod h1:tGtX0gE9Jn7hdZFeU88slbTh1UtCYKusWOoCJuvkWsQ=
-modernc.org/ccgo/v3 v3.16.6/go.mod h1:tGtX0gE9Jn7hdZFeU88slbTh1UtCYKusWOoCJuvkWsQ=
-modernc.org/ccgo/v3 v3.16.8/go.mod h1:zNjwkizS+fIFDrDjIAgBSCLkWbJuHF+ar3QRn+Z9aws=
-modernc.org/ccgo/v3 v3.16.9/go.mod h1:zNMzC9A9xeNUepy6KuZBbugn3c0Mc9TeiJO4lgvkJDo=
-modernc.org/ccorpus v1.11.6/go.mod h1:2gEUTrWqdpH2pXsmTM1ZkjeSrUWDpjMu2T6m29L/ErQ=
-modernc.org/httpfs v1.0.6/go.mod h1:7dosgurJGp0sPaRanU53W4xZYKh14wfzX420oZADeHM=
-modernc.org/libc v0.0.0-20220428101251-2d5f3daf273b/go.mod h1:p7Mg4+koNjc8jkqwcoFBJx7tXkpj00G77X7A72jXPXA=
-modernc.org/libc v1.16.0/go.mod h1:N4LD6DBE9cf+Dzf9buBlzVJndKr/iJHG97vGLHYnb5A=
-modernc.org/libc v1.16.1/go.mod h1:JjJE0eu4yeK7tab2n4S1w8tlWd9MxXLRzheaRnAKymU=
-modernc.org/libc v1.16.17/go.mod h1:hYIV5VZczAmGZAnG15Vdngn5HSF5cSkbvfz2B7GRuVU=
-modernc.org/libc v1.16.19/go.mod h1:p7Mg4+koNjc8jkqwcoFBJx7tXkpj00G77X7A72jXPXA=
-modernc.org/libc v1.17.0/go.mod h1:XsgLldpP4aWlPlsjqKRdHPqCxCjISdHfM/yeWC5GyW0=
-modernc.org/libc v1.17.1/go.mod h1:FZ23b+8LjxZs7XtFMbSzL/EhPxNbfZbErxEHc7cbD9s=
-modernc.org/mathutil v1.2.2/go.mod h1:mZW8CKdRPY1v87qxC/wUdX5O1qDzXMP5TH3wjfpga6E=
-modernc.org/mathutil v1.4.1/go.mod h1:mZW8CKdRPY1v87qxC/wUdX5O1qDzXMP5TH3wjfpga6E=
-modernc.org/mathutil v1.5.0/go.mod h1:mZW8CKdRPY1v87qxC/wUdX5O1qDzXMP5TH3wjfpga6E=
-modernc.org/memory v1.1.1/go.mod h1:/0wo5ibyrQiaoUoH7f9D8dnglAmILJ5/cxZlRECf+Nw=
-modernc.org/memory v1.2.0/go.mod h1:/0wo5ibyrQiaoUoH7f9D8dnglAmILJ5/cxZlRECf+Nw=
-modernc.org/memory v1.2.1/go.mod h1:PkUhL0Mugw21sHPeskwZW4D6VscE/GQJOnIpCnW6pSU=
-modernc.org/opt v0.1.1/go.mod h1:WdSiB5evDcignE70guQKxYUl14mgWtbClRi5wmkkTX0=
-modernc.org/opt v0.1.3/go.mod h1:WdSiB5evDcignE70guQKxYUl14mgWtbClRi5wmkkTX0=
-modernc.org/sqlite v1.18.1/go.mod h1:6ho+Gow7oX5V+OiOQ6Tr4xeqbx13UZ6t+Fw9IRUG4d4=
-modernc.org/strutil v1.1.1/go.mod h1:DE+MQQ/hjKBZS2zNInV5hhcipt5rLPWkmpbGeW5mmdw=
-modernc.org/strutil v1.1.3/go.mod h1:MEHNA7PdEnEwLvspRMtWTNnp2nnyvMfkimT1NKNAGbw=
-modernc.org/tcl v1.13.1/go.mod h1:XOLfOwzhkljL4itZkK6T72ckMgvj0BDsnKNdZVUOecw=
-modernc.org/token v1.0.0/go.mod h1:UGzOrNV1mAFSEB63lOFHIpNRUVMvYTc6yu1SMY/XTDM=
-modernc.org/z v1.5.1/go.mod h1:eWFB510QWW5Th9YGZT81s+LwvaAs3Q2yr4sP0rmLkv8=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
-rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
-rsc.io/pdf v0.1.1/go.mod h1:n8OzWcQ6Sp37PL01nO98y4iUCRdTGarVfzxY20ICaU4=
-rsc.io/quote/v3 v3.1.0/go.mod h1:yEA65RcK8LyAZtP9Kv3t0HmxON59tX3rD+tICJqUlj0=
-rsc.io/sampler v1.3.0/go.mod h1:T1hPZKmBbMNahiBKFy5HrXp6adAjACjK9JXDnKaTXpA=
 sigs.k8s.io/controller-runtime v0.18.4 h1:87+guW1zhvuPLh1PHybKdYFLU0YJp4FhJRmiHvm5BZw=
 sigs.k8s.io/controller-runtime v0.18.4/go.mod h1:TVoGrfdpbA9VRFaRnKgk9P5/atA0pMwq+f+msb9M8Sg=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
diff --git a/go.work.sum b/go.work.sum
index 612e89b48..847afcea0 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -561,8 +561,10 @@ github.com/ajstarks/deck v0.0.0-20200831202436-30c9fc6549a9 h1:7kQgkwGRoLzC9K0oy
 github.com/ajstarks/deck/generate v0.0.0-20210309230005-c3f852c02e19 h1:iXUgAaqDcIUGbRoy2TdeofRG/j1zpGRSEmNK05T+bi8=
 github.com/ajstarks/svgo v0.0.0-20211024235047-1546f124cd8b h1:slYM766cy2nI3BwyRiyQj/Ud48djTMtMebDqepE95rw=
 github.com/alecthomas/kingpin/v2 v2.4.0 h1:f48lwail6p8zpO1bC4TxtqACaGqHYA22qkHjHpqDjYY=
+github.com/alecthomas/kingpin/v2 v2.4.0/go.mod h1:0gyi0zQnjuFk8xrkNKamJoyUo382HRL7ATRpFZCw6tE=
 github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751 h1:JYp7IbQjafoB+tBA3gMyHYHrpOtNuDiK/uB5uXxq5wM=
 github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137 h1:s6gZFSlWYmbqAuRjVTiNNhvNRfY2Wxp9nhfyel4rklc=
+github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137/go.mod h1:OMCwj8VM1Kc9e19TLln2VL61YJF0x1XFtfdL4JdbSyE=
 github.com/andybalholm/brotli v1.0.4 h1:V7DdXeJtZscaqfNuAdSRuRFzuiKlHSC/Zh3zl9qY3JY=
 github.com/antihax/optional v1.0.0 h1:xK2lYat7ZLaVVcIuj82J8kIro4V6kDe0AUDFboUCwcg=
 github.com/antlr/antlr4/runtime/Go/antlr/v4 v4.0.0-20230305170008-8188dc5388df h1:7RFfzj4SSt6nnvCPbCqijJi1nWCd+TqAT3bYCStRC18=
@@ -582,6 +584,7 @@ github.com/bytedance/sonic v1.9.1/go.mod h1:i736AoUSYt75HyZLoJW9ERYxcy6eaN6h4BZX
 github.com/cenkalti/backoff/v4 v4.2.1 h1:y4OZtCnogmCPw98Zjyt5a6+QwPLGkiQsYW5oUqylYbM=
 github.com/cenkalti/backoff/v4 v4.2.1/go.mod h1:Y3VNntkOUPxTVeUxJ/G5vcM//AlwfmyYozVcomhLiZE=
 github.com/census-instrumentation/opencensus-proto v0.4.1 h1:iKLQ0xPNFxR/2hzXZMrBo8f1j86j5WHzznCCQxV/b8g=
+github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
 github.com/cespare/xxhash v1.1.0 h1:a6HrQnmkObjyL+Gs60czilIUGqrzKutQD6XZog3p+ko=
 github.com/checkpoint-restore/go-criu/v5 v5.3.0 h1:wpFFOoomK3389ue2lAb0Boag6XPht5QYpipxmSNL4d8=
 github.com/checkpoint-restore/go-criu/v5 v5.3.0/go.mod h1:E/eQpaFtUKGOOSEBZgmKAcn+zUUwWxqcaKZlF54wK8E=
@@ -593,16 +596,20 @@ github.com/chromedp/chromedp v0.9.2 h1:dKtNz4kApb06KuSXoTQIyUC2TrA0fhGDwNZf3bcgf
 github.com/chromedp/chromedp v0.9.2/go.mod h1:LkSXJKONWTCHAfQasKFUZI+mxqS4tZqhmtGzzhLsnLs=
 github.com/chromedp/sysutil v1.0.0 h1:+ZxhTpfpZlmchB58ih/LBHX52ky7w2VhQVKQMucy3Ic=
 github.com/chromedp/sysutil v1.0.0/go.mod h1:kgWmDdq8fTzXYcKIBqIYvRRTnYb9aNS9moAV0xufSww=
+github.com/chzyer/logex v1.1.10/go.mod h1:+Ywpsq7O8HXn0nuIou7OrIPyXbp3wmkHB+jjWRnGsAI=
 github.com/chzyer/logex v1.2.1 h1:XHDu3E6q+gdHgsdTPH6ImJMIp436vR6MPtH8gP05QzM=
 github.com/chzyer/logex v1.2.1/go.mod h1:JLbx6lG2kDbNRFnfkgvh4eRJRPX1QCoOIWomwysCBrQ=
+github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5PlCu98SY8svDHJxuZscDgtXS6KTTbou5AhLI=
 github.com/chzyer/readline v1.5.1 h1:upd/6fQk4src78LMRzh5vItIt361/o4uq553V8B5sGI=
 github.com/chzyer/readline v1.5.1/go.mod h1:Eh+b79XXUwfKfcPLepksvw2tcLE/Ct21YObkaSkeBlk=
+github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU=
 github.com/chzyer/test v1.0.0 h1:p3BQDXSxOhOG0P9z6/hGnII4LGiEPOYBhs8asl/fC04=
 github.com/chzyer/test v1.0.0/go.mod h1:2JlltgoNkt4TW/z9V/IzDdFaMTM2JPIi26O1pF38GC8=
 github.com/cilium/ebpf v0.7.0 h1:1k/q3ATgxSXRdrmPfH8d7YK0GfqVsEKZAX9dQZvs56k=
 github.com/cilium/ebpf v0.7.0/go.mod h1:/oI2+1shJiTGAMgl6/RgJr36Eo1jzrRcAWbcXO2usCA=
 github.com/client9/misspell v0.3.4 h1:ta993UF76GwbvJcIo3Y68y/M3WxlpEHPWIGDkJYwzJI=
 github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe h1:QQ3GSy+MqSHxm/d8nCtnAiZdYFd45cYZPs8vOOIYKfk=
+github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
 github.com/cncf/xds/go v0.0.0-20230607035331-e9ce68804cb4/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20231109132714-523115ebc101/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
 github.com/cncf/xds/go v0.0.0-20231128003011-0fa0005c9caa h1:jQCWAUqqlij9Pgj2i/PB79y4KOPYVyFYdROxgaCwdTQ=
@@ -655,8 +662,10 @@ github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1 h1:QbL/5oDUmRBzO9/Z7Seo
 github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4 h1:WtGNWLvXpe6ZudgnXrq0barxBImvnnJoMEhXAzcbM0I=
 github.com/go-kit/kit v0.9.0 h1:wDJmvq38kDhkVxi50ni9ykkdUr1PKgqKOoi01fa0Mdk=
 github.com/go-kit/log v0.2.1 h1:MRVx0/zhvdseW+Gza6N9rVzU/IVzaeE1SFI4raAhmBU=
+github.com/go-kit/log v0.2.1/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0=
 github.com/go-latex/latex v0.0.0-20210823091927-c0d11ff05a81 h1:6zl3BbBhdnMkpSj2YY30qV3gDcVBGtFgVsV3+/i+mKQ=
 github.com/go-logfmt/logfmt v0.5.1 h1:otpy5pqBCBZ1ng9RQ0dPu4PN7ba75Y/aA+UpowDyNVA=
+github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
 github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
 github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/logr v1.2.2/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
@@ -695,6 +704,7 @@ github.com/golang/glog v1.2.0 h1:uCdmnmatrKCgMBlM4rMuJZWOkPDqdbZPnrMXDY4gI68=
 github.com/golang/glog v1.2.0/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
 github.com/golang/glog v1.2.1/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
 github.com/golang/mock v1.6.0 h1:ErTB+efbowRARo13NNdxyJji2egdxLGQhRaY+DUumQc=
+github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/snappy v0.0.4 h1:yAGX7huGHXlcLOEtBnF4w7FQwA26wojNCwOYAEhLjQM=
 github.com/google/btree v1.0.1/go.mod h1:xXMiIv4Fb/0kKde4SpL7qlzvu5cMJDRkFDxJfI9uaxA=
 github.com/google/cel-go v0.17.7/go.mod h1:HXZKzB0LXqer5lHHgfWAnlYwJaQBDKMjxjulNQzhwhY=
@@ -706,9 +716,12 @@ github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/
 github.com/google/martian v2.1.0+incompatible h1:/CP5g8u/VJHijgedC/Legn3BAbAaWPgecwXBIDzw5no=
 github.com/google/martian/v3 v3.3.2 h1:IqNFLAmvJOgVlpdEBiQbDc2EwKW77amAycfTuWKdfvw=
 github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/renameio v0.1.0 h1:GOZbcHa3HfsPKPlmyPyN2KEohoMXOhdMbHrvbpl2QaA=
 github.com/google/s2a-go v0.1.4 h1:1kZ/sQM3srePvKs3tXAvQzo66XfcReoqFpIpIccE7Oc=
 github.com/google/s2a-go v0.1.7/go.mod h1:50CgR4k1jNlWBu4UfS4AcfhVe1r6pdZPygJ3R8F0Qdw=
+github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/google/uuid v1.5.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/googleapis/enterprise-certificate-proxy v0.2.3 h1:yk9/cqRKtT9wXZSsRH9aurXEpJX+U6FLtpYTdC3R06k=
 github.com/googleapis/enterprise-certificate-proxy v0.2.4/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
@@ -726,12 +739,14 @@ github.com/grpc-ecosystem/go-grpc-middleware v1.3.0/go.mod h1:z0ButlSOZa5vEBq9m2
 github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0 h1:Ovs26xHkKqVztRpIrF/92BcuyuQ/YW4NSIpoGtfXNho=
 github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgfV/d3M/q6VIi02HzZEHgUlZvzk=
 github.com/grpc-ecosystem/grpc-gateway v1.16.0 h1:gmcG1KaJ57LophUzW0Hy8NmPhnMZb4M0+kPpLofRdBo=
+github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
 github.com/grpc-ecosystem/grpc-gateway/v2 v2.16.0 h1:YBftPWNWd4WwGqtY2yeZL2ef8rHAxPBD8KFhJpmcqms=
 github.com/grpc-ecosystem/grpc-gateway/v2 v2.16.0/go.mod h1:YN5jB8ie0yfIUg6VvR9Kz84aCaG7AsGZnLjhHbUqwPg=
 github.com/hashicorp/golang-lru v0.5.1 h1:0hERBMJE1eitiLkihrMvRVBYAkpHzc/J3QdDN+dAcgU=
 github.com/hpcloud/tail v1.0.0 h1:nfCOvKYfkgYP8hkirhJocXT2+zOD8yUNjXaWfTlyFKI=
 github.com/iancoleman/strcase v0.2.0 h1:05I4QRnGpI0m37iZQRuskXh+w77mr6Z41lwQzuHLwW0=
 github.com/iancoleman/strcase v0.3.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
+github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
 github.com/ianlancetaylor/demangle v0.0.0-20230524184225-eabc099b10ab/go.mod h1:gx7rwoVhcfuVKG5uya9Hs3Sxj7EIvldVofAWIUtGouw=
 github.com/ianlancetaylor/demangle v0.0.0-20240312041847-bd984b5ce465 h1:KwWnWVWCNtNq/ewIX7HIKnELmEx2nDP42yskD/pi7QE=
 github.com/ianlancetaylor/demangle v0.0.0-20240312041847-bd984b5ce465/go.mod h1:gx7rwoVhcfuVKG5uya9Hs3Sxj7EIvldVofAWIUtGouw=
@@ -742,8 +757,10 @@ github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJS
 github.com/jonboulle/clockwork v0.2.2 h1:UOGuzwb1PwsrDAObMuhUnj0p5ULPj8V/xJ7Kx9qUBdQ=
 github.com/jonboulle/clockwork v0.2.2/go.mod h1:Pkfl5aHPm1nk2H9h0bjmnJD/BcgbGXUBGnn1kMkgxc8=
 github.com/jpillora/backoff v1.0.0 h1:uvFg412JmmHBHw7iwprIxkPMI+sGQ4kzOWsMeHnm2EA=
+github.com/jpillora/backoff v1.0.0/go.mod h1:J/6gKK9jxlEcS3zixgDgUAsiuZ7yrSoa/FX5e0EB2j4=
 github.com/jstemmer/go-junit-report v0.9.1 h1:6QPYqodiu3GuPL+7mfx+NwDdp2eTkp9IfEUpgAwUN0o=
 github.com/julienschmidt/httprouter v1.3.0 h1:U0609e9tgbseu3rBINet9P48AI/D3oJs4dN7jwJOQ1U=
+github.com/julienschmidt/httprouter v1.3.0/go.mod h1:JR6WtHb+2LUe8TCKY3cZOxFyyO8IZAc4RVcycCCAKdM=
 github.com/jung-kurt/gofpdf v1.0.3-0.20190309125859-24315acbbda5 h1:PJr+ZMXIecYc1Ey2zucXdR73SMBtgjPgwa31099IMv0=
 github.com/kballard/go-shellquote v0.0.0-20180428030007-95032a82bc51 h1:Z9n2FFNUXsshfwJMBgNA0RU6/i7WVaAegv3PtuIHPMs=
 github.com/kisielk/errcheck v1.5.0 h1:e8esj/e4R+SAOwFwN+n3zr0nYeCyeweozKfO23MvHzY=
@@ -771,6 +788,7 @@ github.com/lyft/protoc-gen-star/v2 v2.0.1 h1:keaAo8hRuAT0O3DfJ/wM3rufbAjGeJ1lAtW
 github.com/lyft/protoc-gen-star/v2 v2.0.3/go.mod h1:amey7yeodaJhXSbf/TlLvWiqQfLOSpEk//mLlc+axEk=
 github.com/mattn/go-sqlite3 v1.14.14 h1:qZgc/Rwetq+MtyE18WhzjokPD93dNqLGNT3QJuLvBGw=
 github.com/matttproud/golang_protobuf_extensions v1.0.4 h1:mmDVorXM7PCGKw94cs5zkfA9PSy5pEvNWRP0ET0TIVo=
+github.com/matttproud/golang_protobuf_extensions v1.0.4/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
 github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0 h1:jWpvCLoY8Z/e3VKvlsiIGKtc+UG6U5vzxaoagmhXfyg=
 github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8 h1:AMFGa4R4MiIpspGNG7Z948v4n35fFGB3RR3G/ry4FWs=
 github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3 h1:+n/aFZefKZp7spd8DFdX7uMikMLXX4oubIzJF4kv/wI=
@@ -780,9 +798,11 @@ github.com/mrunalp/fileutils v0.5.1 h1:F+S7ZlNKnrwHfSwdlgNSkKo67ReVf8o9fel6C3dkm
 github.com/mrunalp/fileutils v0.5.1/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
 github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f h1:KUppIJq7/+SVif2QVs3tOP0zanoHgBEVAwHxUSIzRqU=
+github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
 github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f h1:y5//uYreIhSUg3J1GEMiLbxo1LJaP8RfCpH6pymGZus=
 github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
 github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65 h1:Og+dVkxEQNvRGU2vUKeOwYT2UJ+pEaDMWB6tIQnIh6A=
+github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65/go.mod h1:Tx6UMSMyIsjLG/VU/F6xA1+0XI+/f9o1dGJnf1l+bPg=
 github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
 github.com/onsi/ginkgo/v2 v2.15.0/go.mod h1:HlxMHtYF57y6Dpf+mc5529KKmSq9h2FpCF+/ZkwUxKM=
 github.com/onsi/ginkgo/v2 v2.17.2/go.mod h1:nP2DPOQoNsQmsVyv5rDA8JkXQoCs6goXIvr/PRJ1eCc=
@@ -799,12 +819,16 @@ github.com/phpdave11/gofpdf v1.4.2 h1:KPKiIbfwbvC/wOncwhrpRdXVj2CZTCFlw4wnoyjtHf
 github.com/phpdave11/gofpdi v1.0.13 h1:o61duiW8M9sMlkVXWlvP92sZJtGKENvW3VExs6dZukQ=
 github.com/pierrec/lz4/v4 v4.1.15 h1:MO0/ucJhngq7299dKLwIMtgTfbkoSPF6AoMYDd8Q4q0=
 github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e h1:aoZm08cpOy4WuID//EZDgcC4zIxODThtZNPirFr42+A=
+github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
 github.com/pkg/sftp v1.13.1 h1:I2qBYMChEhIjOgazfJmV3/mZM256btk6wkCDRmW7JYs=
 github.com/pquerna/cachecontrol v0.1.0 h1:yJMy84ti9h/+OEWa752kBTKv4XC30OtVVHYv/8cTqKc=
 github.com/pquerna/cachecontrol v0.1.0/go.mod h1:NrUG3Z7Rdu85UNR3vm7SOsl1nFIeSiQnrHV5K9mBcUI=
 github.com/prometheus/exporter-toolkit v0.11.0 h1:yNTsuZ0aNCNFQ3aFTD2uhPOvr4iD7fdBvKPAEGkNf+g=
+github.com/prometheus/exporter-toolkit v0.11.0/go.mod h1:BVnENhnNecpwoTLiABx7mrPB/OLRIgN74qlQbV+FK1Q=
 github.com/remyoudompheng/bigfft v0.0.0-20200410134404-eec4a21b6bb0 h1:OdAsTTz6OkFY5QxjkYwrChwuRruF69c169dPK26NUlk=
 github.com/rogpeppe/fastuuid v1.2.0 h1:Ppwyp6VYCF1nvBTXL3trRso7mXMlRrw9ooo375wvi2s=
+github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
+github.com/rogpeppe/go-internal v1.10.0/go.mod h1:UQnix2H7Ngw/k4C5ijL5+65zddjncjaFoBhdsK/akog=
 github.com/russross/blackfriday/v2 v2.1.0 h1:JIOH55/0cWyOuilr9/qlrm0BSXldqnqwMsf35Ld67mk=
 github.com/ruudk/golang-pdf417 v0.0.0-20201230142125-a7e3863a1245 h1:K1Xf3bKttbF+koVGaX5xngRIZ5bVjbmPnaxE/dR08uY=
 github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646 h1:RpforrEYXWkmGwJHIGnLZ3tTWStkjVVstwzNGqxX2Ds=
@@ -818,6 +842,12 @@ github.com/spf13/afero v1.9.2 h1:j49Hj62F0n+DaZ1dDCvhABaPNSGNkt32oRFxI33IEMw=
 github.com/spf13/afero v1.10.0/go.mod h1:UBogFpq8E9Hx+xc5CNTTEpTnuHVmXDwZcZcE1eb/UhQ=
 github.com/stoewer/go-strcase v1.2.0 h1:Z2iHWqGXH00XYgqDmNgQbIBxf3wrNq0F3feEy0ainaU=
 github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
+github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
+github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
+github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
+github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
+github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635 h1:kdXcSzyDtseVEc4yCz2qF8ZrQvIDBJLl4S1c3GCXmoI=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
@@ -841,6 +871,7 @@ github.com/x448/float16 v0.8.4 h1:qLwI1I70+NjRFUR3zs1JPUCgaCXSh3SW62uAKT1mSBM=
 github.com/x448/float16 v0.8.4/go.mod h1:14CWIYCyZA/cWjXOioeEpHeN/83MdbZDRQHoFcYsOfg=
 github.com/xhit/go-str2duration v1.2.0 h1:BcV5u025cITWxEQKGWr1URRzrcXtu7uk8+luz3Yuhwc=
 github.com/xhit/go-str2duration/v2 v2.1.0 h1:lxklc02Drh6ynqX+DdPyp5pCKLUQpRT8bp8Ydu2Bstc=
+github.com/xhit/go-str2duration/v2 v2.1.0/go.mod h1:ohY8p+0f07DiV6Em5LKB0s2YpLtXVyJfNt1+BlmyAsU=
 github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2 h1:eY9dn8+vbi4tKz5Qo6v2eYzo7kUS51QINcR5jNpbZS8=
 github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
 github.com/yuin/goldmark v1.4.13 h1:fVcFKWvrslecOb/tg+Cc05dkeYx540o0FuFt3nUVDoE=
@@ -902,14 +933,18 @@ golang.org/x/arch v0.3.0/go.mod h1:5om86z9Hs0C8fWVUuoMHwpExlXzs5Tkyp9hOrfG7pp8=
 golang.org/x/crypto v0.0.0-20220722155217-630584e8d5aa/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
 golang.org/x/crypto v0.12.0/go.mod h1:NF0Gs7EO5K4qLn+Ylc+fih8BSTeIjAP05siRnAh98yw=
 golang.org/x/crypto v0.23.0/go.mod h1:CKFgDieR+mRhux2Lsu27y0fO304Db0wZe70UKqHu0v8=
+golang.org/x/crypto v0.24.0/go.mod h1:Z1PMYSOR5nyMcyAVAIQSKCDwalqy85Aqn1x3Ws4L5DM=
 golang.org/x/image v0.0.0-20220302094943-723b81ca9867 h1:TcHcE0vrmgzNH1v3ppjcMGbhG5+9fMuvOmUYwNEF4q4=
 golang.org/x/lint v0.0.0-20210508222113-6edffad5e616 h1:VLliZ0d+/avPrXXH+OakdXhpJuEoBZuwh1m2j7U6Iug=
 golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028 h1:4+4C/Iv2U4fMZBiMCc98MG1In4gJY5YRhtpDNeDeHWs=
+golang.org/x/mod v0.9.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/mod v0.12.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/mod v0.14.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
+golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
 golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
 golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
 golang.org/x/net v0.18.0/go.mod h1:/czyP5RqHAH4odGYxBJ1qz0+CE5WZ+2j1YgoEo8F2jQ=
+golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
 golang.org/x/net v0.23.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
 golang.org/x/net v0.24.0/go.mod h1:2Q7sJY5mzlzWjKtYUEXSlBWCdyaioyXzRB2RtU8KVE8=
 golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI=
@@ -919,13 +954,19 @@ golang.org/x/oauth2 v0.14.0/go.mod h1:lAtNWgaWfL4cm7j2OV8TxGi9Qb7ECORx8DktCY74Ow
 golang.org/x/oauth2 v0.15.0/go.mod h1:q48ptWNTY5XWf+JNten23lcvHpLJ0ZSxF5ttTHKVCAM=
 golang.org/x/oauth2 v0.17.0/go.mod h1:OzPDGQiuQMguemayvdylqddI7qcD9lnSDb+1FiwQ5HA=
 golang.org/x/sync v0.4.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
+golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.19.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.21.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/telemetry v0.0.0-20240208230135-b75ee8823808/go.mod h1:KG1lNk5ZFNssSZLrpVb4sMXKMpGwGXOxSG3rnu2gZQQ=
 golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2 h1:IRJeR9r1pYWsHKTRe/IInb7lYvbBVIqOgsX/u0mbOWY=
 golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2/go.mod h1:TeRTkGYfJXctD9OcfyVLyj2J3IxLnKwHJR8f4D8a3YE=
+golang.org/x/term v0.18.0/go.mod h1:ILwASektA3OnRv7amZ1xhE/KTR+u50pbXfZ03+6Nx58=
+golang.org/x/term v0.21.0/go.mod h1:ooXLefLobQVslOqselCNF4SxFAaoS6KujMbsGzSDmX0=
+golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.12.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
+golang.org/x/time v0.3.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
 golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM=
 golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
@@ -933,6 +974,7 @@ golang.org/x/tools v0.16.1/go.mod h1:kYVVN6I1mBNoB1OX+noeBjbRk4IUEPa7JJ+TJMEooJ0
 golang.org/x/tools v0.18.0/go.mod h1:GL7B4CwcLLeo59yx/9UWWuNOW1n3VZ4f5axWfML7Lcg=
 golang.org/x/tools v0.20.0/go.mod h1:WvitBU7JJf6A4jOdg4S1tviW9bhUxkgeCui/0JHctQg=
 golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2 h1:H2TDz8ibqkAF6YGhCdN3jS9O0/s90v0rJh3X/OLHEUk=
+golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
 golang.org/x/xerrors v0.0.0-20231012003039-104605ab7028/go.mod h1:NDW/Ps6MPRej6fsCIbMTohpP40sJ/P/vI1MoTEGwX90=
 gonum.org/v1/gonum v0.11.0 h1:f1IJhK4Km5tBJmaiJXtk/PkL4cdVX6J+tGiM187uT5E=
 gonum.org/v1/netlib v0.0.0-20190313105609-8cb42192e0e0 h1:OE9mWmgKkjJyEmDAAtGMPjXu+YNeGvK9VTSHY6+Qihc=
@@ -942,6 +984,7 @@ google.golang.org/api v0.128.0/go.mod h1:Y611qgqaE92On/7g65MQgxYul3c0rEB894kniWL
 google.golang.org/api v0.149.0/go.mod h1:Mwn1B7JTXrzXtnvmzQE2BD6bYZQ8DShKZDZbeN9I7qI=
 google.golang.org/api v0.155.0/go.mod h1:GI5qK5f40kCpHfPn6+YzGAByIKWv8ujFnmoWm7Igduk=
 google.golang.org/api v0.162.0/go.mod h1:6SulDkfoBIg4NFmCuZ39XeeAgSHCPecfSUuDyYlAHs0=
+google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
 google.golang.org/genproto v0.0.0-20230822172742-b8732ec3820d/go.mod h1:yZTlhN0tQnXo3h00fuXNCxJdLdIdnVFVBaRJ5LWBbw4=
 google.golang.org/genproto v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:CCviP9RmpZ1mxVr8MUjCnSiY09IbAXZxhLE6EhHIdPU=
 google.golang.org/genproto v0.0.0-20231002182017-d307bd883b97 h1:SeZZZx0cP0fqUyA+oRzP9k7cSwJlvDFiROO72uwD6i0=
diff --git a/internal/ingress/metric/collectors/process.go b/internal/ingress/metric/collectors/process.go
index 3803a47ae..8c489de03 100644
--- a/internal/ingress/metric/collectors/process.go
+++ b/internal/ingress/metric/collectors/process.go
@@ -112,7 +112,7 @@ func NewNGINXProcess(pod, namespace, ingressClass string) (NGINXProcessCollector
 
 	p := &namedProcess{
 		scrapeChan: make(chan scrapeRequest),
-		Grouper:    proc.NewGrouper(nm, true, false, false, false),
+		Grouper:    proc.NewGrouper(nm, true, false, false, 0, false),
 		fs:         fs,
 	}
 

From 07de893db1139bb26cbf2e85787da7201ac51ee6 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Tue, 16 Jul 2024 11:36:47 -0400
Subject: [PATCH 1356/1641] bump testing runner

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 images/test-runner/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/TAG b/images/test-runner/TAG
index 5c314e5a3..77cada2e0 100644
--- a/images/test-runner/TAG
+++ b/images/test-runner/TAG
@@ -1 +1 @@
-v0.0.5
+v0.0.6

From 290de76a1b3c862bc44ee42ad7e2d017ce5251a5 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 17 Jul 2024 21:32:05 +0200
Subject: [PATCH 1357/1641] Images: Trigger NGINX build.

---
 images/nginx-1.25/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx-1.25/TAG b/images/nginx-1.25/TAG
index 384942600..51bbb66dc 100644
--- a/images/nginx-1.25/TAG
+++ b/images/nginx-1.25/TAG
@@ -1 +1 @@
-v0.0.9
+v0.0.10

From 2bdca3ccc7ba60779290a2ae00687143e0dc7d3c Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 18 Jul 2024 00:42:18 +0200
Subject: [PATCH 1358/1641] Images: Bump `NGINX_BASE` to v0.0.10. (#11635)

---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index c1ce1be7a..b179689bf 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx-1.25:v0.0.9@sha256:62bbfe7fea7386a787a857ec211b9e7627599bb2a62587d077dfbe9347b0fedb
+registry.k8s.io/ingress-nginx/nginx-1.25:v0.0.10@sha256:1686f4cd2e16f09a1e7d27529d21eb74a8b551dc06ef86189ac837d3d6548725

From d6f2b86508e2e2b89912ad4954d001c6b6a44f1a Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 18 Jul 2024 00:50:39 +0200
Subject: [PATCH 1359/1641] Images: Trigger `test-runner` build. (#11636)

---
 images/test-runner/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/TAG b/images/test-runner/TAG
index 77cada2e0..41a281954 100644
--- a/images/test-runner/TAG
+++ b/images/test-runner/TAG
@@ -1 +1 @@
-v0.0.6
+v0.0.7

From 151fca0c9cd48a8d2ff77dd4f076d91accf1de8d Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 18 Jul 2024 01:18:24 +0200
Subject: [PATCH 1360/1641] Images: Re-run `test-runner` build.

---
 images/test-runner/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/TAG b/images/test-runner/TAG
index 41a281954..3ce186fb7 100644
--- a/images/test-runner/TAG
+++ b/images/test-runner/TAG
@@ -1 +1 @@
-v0.0.7
+v0.0.8

From ebee23ec2581adabf15f7c54a07674b30aa4d497 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 18 Jul 2024 13:45:51 +0200
Subject: [PATCH 1361/1641] Tests: Bump `test-runner` to v20240717-1fe74b5f.
 (#11645)

---
 build/run-in-docker.sh     | 2 +-
 test/e2e-image/Makefile    | 2 +-
 test/e2e/run-chart-test.sh | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index b3a0c2df1..d01e9c852 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240703-195ce186@sha256:98db2302f2a548d1b0748cb4d0a381995de761e4324fef3b8296004337a9b581}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240717-1fe74b5f@sha256:fce2ca5e683708cf76c6ba759f351fd7a592c5a56841491cf2d08784154ebf75}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 4d516da41..a76c65d10 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240703-195ce186@sha256:98db2302f2a548d1b0748cb4d0a381995de761e4324fef3b8296004337a9b581"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240717-1fe74b5f@sha256:fce2ca5e683708cf76c6ba759f351fd7a592c5a56841491cf2d08784154ebf75"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 75686adbe..1f8a2ffc7 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -109,7 +109,7 @@ docker run --rm --interactive --network host \
     --volume $KUBECONFIG:/root/.kube/config \
     --volume "${DIR}/../../":/workdir \
     --workdir /workdir \
-    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240703-195ce186@sha256:98db2302f2a548d1b0748cb4d0a381995de761e4324fef3b8296004337a9b581 \
+    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240717-1fe74b5f@sha256:fce2ca5e683708cf76c6ba759f351fd7a592c5a56841491cf2d08784154ebf75 \
         ct install \
         --charts charts/ingress-nginx \
         --helm-extra-args "--timeout 60s"

From 56dbba32885d1da28db1eed21d873b93b7c8bfcb Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 18 Jul 2024 23:31:10 +0200
Subject: [PATCH 1362/1641] Release controller v1.11.1/v1.10.3 & chart
 v4.11.1/v4.10.3. (#11654)

---
 README.md                                     |  2 +
 changelog/controller-1.10.3.md                | 37 +++++++++++++++
 changelog/controller-1.11.1.md                | 45 +++++++++++++++++++
 charts/ingress-nginx/Chart.yaml               | 15 ++-----
 charts/ingress-nginx/README.md                |  8 ++--
 .../changelog/helm-chart-4.10.3.md            |  9 ++++
 .../changelog/helm-chart-4.11.1.md            |  9 ++++
 charts/ingress-nginx/values.yaml              |  6 +--
 deploy/static/provider/aws/deploy.yaml        | 44 +++++++++---------
 .../aws/nlb-with-tls-termination/deploy.yaml  | 44 +++++++++---------
 deploy/static/provider/baremetal/deploy.yaml  | 44 +++++++++---------
 deploy/static/provider/cloud/deploy.yaml      | 44 +++++++++---------
 deploy/static/provider/do/deploy.yaml         | 44 +++++++++---------
 deploy/static/provider/exoscale/deploy.yaml   | 44 +++++++++---------
 deploy/static/provider/kind/deploy.yaml       | 44 +++++++++---------
 deploy/static/provider/oracle/deploy.yaml     | 44 +++++++++---------
 deploy/static/provider/scw/deploy.yaml        | 44 +++++++++---------
 docs/deploy/index.md                          | 20 ++++-----
 18 files changed, 320 insertions(+), 227 deletions(-)
 create mode 100644 changelog/controller-1.10.3.md
 create mode 100644 changelog/controller-1.11.1.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.10.3.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.11.1.md

diff --git a/README.md b/README.md
index 57e237d63..00960a4b7 100644
--- a/README.md
+++ b/README.md
@@ -37,7 +37,9 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 
 | Supported | Ingress-NGINX version | k8s supported version         | Alpine Version | Nginx Version | Helm Chart Version |
 | :-------: | --------------------- | ----------------------------- | -------------- | ------------- | ------------------ |
+|    🔄     | **v1.11.1**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.11.1             |
 |    🔄     | **v1.11.0**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.11.0             |
+|    🔄     | **v1.10.3**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.10.3             |
 |    🔄     | **v1.10.2**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.10.2             |
 |    🔄     | **v1.10.1**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.19.1         | 1.25.3        | 4.10.1             |
 |    🔄     | **v1.10.0**           | 1.29, 1.28, 1.27, 1.26        | 3.19.1         | 1.25.3        | 4.10.0             |
diff --git a/changelog/controller-1.10.3.md b/changelog/controller-1.10.3.md
new file mode 100644
index 000000000..1cbc77951
--- /dev/null
+++ b/changelog/controller-1.10.3.md
@@ -0,0 +1,37 @@
+# Changelog
+
+### controller-v1.10.3
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.10.3@sha256:b5a5082f8e508cc1aac1c0ef101dc2f87b63d51598a5747d81d6cf6e7ba058fd
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.10.3@sha256:9033e04bd3cd01f92414f8d5999c5095734d4caceb4923942298152a38373d4b
+
+### All changes:
+
+* Images: Trigger `controller` v1.10.3 build. (#11648)
+* Tests: Bump `test-runner` to v20240717-1fe74b5f. (#11646)
+* Images: Re-run `test-runner` build. (#11643)
+* Images: Trigger `test-runner` build. (#11639)
+* Images: Bump `NGINX_BASE` to v0.0.10. (#11637)
+* Images: Trigger NGINX build. (#11631)
+* bump testing runner (#11626)
+* remove modsecurity coreruleset test files from nginx image (#11619)
+* unskip the ocsp tests and update images to fix cfssl bug (#11615)
+* Fix indent in YAML for example pod (#11609)
+* Images: Bump `test-runner`. (#11604)
+* Images: Bump `NGINX_BASE` to v0.0.9. (#11601)
+* revert module upgrade (#11595)
+* README: Fix support matrix. (#11593)
+* Mage: Stop mutating release notes. (#11582)
+* Images: Bump `kube-webhook-certgen`. (#11583)
+
+### Dependency updates:
+
+* Bump github.com/prometheus/common from 0.54.0 to 0.55.0 (#11622)
+* Bump the all group with 5 updates (#11613)
+* Bump golang.org/x/crypto from 0.24.0 to 0.25.0 (#11579)
+* Bump google.golang.org/grpc from 1.64.0 to 1.65.0 (#11577)
+* Bump the all group with 4 updates (#11574)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.10.2...controller-v1.10.3
diff --git a/changelog/controller-1.11.1.md b/changelog/controller-1.11.1.md
new file mode 100644
index 000000000..a93e02e40
--- /dev/null
+++ b/changelog/controller-1.11.1.md
@@ -0,0 +1,45 @@
+# Changelog
+
+### controller-v1.11.1
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.11.1@sha256:7cabe4bd7558bfdf5b707976d7be56fd15ffece735d7c90fc238b6eda290fd8d
+
+### All changes:
+
+* Tests: Bump `test-runner` to v20240717-1fe74b5f. (#11647)
+* Images: Re-run `test-runner` build. (#11644)
+* Images: Trigger `test-runner` build. (#11640)
+* Images: Bump `NGINX_BASE` to v0.0.10. (#11638)
+* Images: Trigger NGINX build. (#11632)
+* bump testing runner (#11627)
+* remove modsecurity coreruleset test files from nginx image (#11620)
+* unskip the ocsp tests and update images to fix cfssl bug (#11616)
+* Fix indent in YAML for example pod (#11610)
+* Images: Bump `test-runner`. (#11605)
+* Images: Bump `NGINX_BASE` to v0.0.9. (#11602)
+* revert module upgrade (#11597)
+* Release: Apply changes from `main`. (#11589)
+* Mage: Stop mutating release notes. (#11581)
+* Images: Bump `kube-webhook-certgen`. (#11584)
+* update test runner to latest build (#11558)
+* add k8s 1.30 to ci build (#11554)
+* update test runner go base to 3.20 (#11552)
+* tag new test runner image with new nginx base 0.0.8 (#11551)
+* bump NGINX_BASE to v0.0.8 (#11544)
+* add ssl patches to nginx-1.25 image for coroutines to work in lua client hello and cert ssl blocks (#11535)
+* trigger build for NGINX-1.25 v0.0.8 (#11539)
+* bump alpine version to 3.20 to custom-error-pages (#11538)
+* fix: Ensure changes in MatchCN annotation are detected (#11529)
+
+### Dependency updates:
+
+* Bump github.com/prometheus/common from 0.54.0 to 0.55.0 (#11621)
+* Bump the all group with 5 updates (#11614)
+* Bump golang.org/x/crypto from 0.24.0 to 0.25.0 (#11580)
+* Bump google.golang.org/grpc from 1.64.0 to 1.65.0 (#11576)
+* Bump the all group with 4 updates (#11575)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.11.0...controller-v1.11.1
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index a07ab2a2a..62c880fc9 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,18 +1,9 @@
 annotations:
   artifacthub.io/changes: |
-    - 'Chores: Align security contacts & chart maintainers to actual owners. (#11465)'
-    - 'Merge pull request #11277 from strongjz/chart-1.10.1 (#11415)'
-    - Fix helm install on cloud provider admonition block (#11394)
-    - edited helm-install tips (#11393)
-    - added info for aws helm install (#11390)
-    - add workflow to helm release and update ct for branch (#11378)
-    - release helm chart from release branch (#11276)
-    - update post submit helm ci and clean up (#11220)
-    - refactor helm ci tests part I (#11178)
-    - Update Ingress-Nginx version controller-v1.11.0
+    - Update Ingress-Nginx version controller-v1.11.1
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.11.0
+appVersion: 1.11.1
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 home: https://github.com/kubernetes/ingress-nginx
@@ -31,4 +22,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.11.0
+version: 4.11.1
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 691ae7f4e..0acf3da91 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.11.0](https://img.shields.io/badge/Version-4.11.0-informational?style=flat-square) ![AppVersion: 1.11.0](https://img.shields.io/badge/AppVersion-1.11.0-informational?style=flat-square)
+![Version: 4.11.1](https://img.shields.io/badge/Version-4.11.1-informational?style=flat-square) ![AppVersion: 1.11.1](https://img.shields.io/badge/AppVersion-1.11.1-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -325,8 +325,8 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `false` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39"` |  |
-| controller.image.digestChroot | string | `"sha256:f16dfed1c94d216b65e5dcb7508ab46148641a99649c5a700749db6f01a7039e"` |  |
+| controller.image.digest | string | `"sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a"` |  |
+| controller.image.digestChroot | string | `"sha256:7cabe4bd7558bfdf5b707976d7be56fd15ffece735d7c90fc238b6eda290fd8d"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.readOnlyRootFilesystem | bool | `false` |  |
@@ -334,7 +334,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.image.runAsNonRoot | bool | `true` |  |
 | controller.image.runAsUser | int | `101` |  |
 | controller.image.seccompProfile.type | string | `"RuntimeDefault"` |  |
-| controller.image.tag | string | `"v1.11.0"` |  |
+| controller.image.tag | string | `"v1.11.1"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource | object | `{"aliases":[],"annotations":{},"controllerValue":"k8s.io/ingress-nginx","default":false,"enabled":true,"name":"nginx","parameters":{}}` | This section refers to the creation of the IngressClass resource. IngressClasses are immutable and cannot be changed after creation. We do not support namespaced IngressClasses, yet, so a ClusterRole and a ClusterRoleBinding is required. |
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.10.3.md b/charts/ingress-nginx/changelog/helm-chart-4.10.3.md
new file mode 100644
index 000000000..3f77d405b
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.10.3.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.10.3
+
+* Update Ingress-Nginx version controller-v1.10.3
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.10.2...helm-chart-4.10.3
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.11.1.md b/charts/ingress-nginx/changelog/helm-chart-4.11.1.md
new file mode 100644
index 000000000..281513e5f
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.11.1.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.11.1
+
+* Update Ingress-Nginx version controller-v1.11.1
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.11.0...helm-chart-4.11.1
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index cd204a474..92735d2a1 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -26,9 +26,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.11.0"
-    digest: sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
-    digestChroot: sha256:f16dfed1c94d216b65e5dcb7508ab46148641a99649c5a700749db6f01a7039e
+    tag: "v1.11.1"
+    digest: sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
+    digestChroot: sha256:7cabe4bd7558bfdf5b707976d7be56fd15ffece735d7c90fc238b6eda290fd8d
     pullPolicy: IfNotPresent
     runAsNonRoot: true
     # www-data -> uid 101
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index b5c5828be..f74fa7fab 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -345,7 +345,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -378,7 +378,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -401,7 +401,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
     spec:
       containers:
       - args:
@@ -448,7 +448,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -575,7 +575,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -586,7 +586,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -628,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -641,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index cb2d99501..683e96446 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -336,7 +336,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -354,7 +354,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -387,7 +387,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -410,7 +410,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -432,7 +432,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
     spec:
       containers:
       - args:
@@ -457,7 +457,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -536,7 +536,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -547,7 +547,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -587,7 +587,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -598,7 +598,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -640,7 +640,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -653,7 +653,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index f82211575..481ede02e 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -341,7 +341,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -569,7 +569,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -580,7 +580,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -622,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 8ab0c2814..13e1163c1 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -341,7 +341,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -374,7 +374,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -397,7 +397,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -419,7 +419,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
     spec:
       containers:
       - args:
@@ -444,7 +444,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -520,7 +520,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -531,7 +531,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -571,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -624,7 +624,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -637,7 +637,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 3e5860435..e0729e116 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -574,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -640,7 +640,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 8b2e5538a..584ebe1d7 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -383,7 +383,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -406,7 +406,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -424,7 +424,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
     spec:
       containers:
       - args:
@@ -449,7 +449,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -529,7 +529,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -540,7 +540,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -580,7 +580,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -591,7 +591,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -633,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -646,7 +646,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 67e27489c..a11e4b253 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -341,7 +341,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
     spec:
       containers:
       - args:
@@ -444,7 +444,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -592,7 +592,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -634,7 +634,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -647,7 +647,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index 652d4cdfd..86be29206 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -345,7 +345,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -378,7 +378,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -401,7 +401,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
     spec:
       containers:
       - args:
@@ -448,7 +448,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -575,7 +575,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -586,7 +586,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -628,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -641,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index cf455cede..f37ff01d2 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.0@sha256:a886e56d532d1388c77c8340261149d974370edca1093af4c97a96fb1467cb39
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -574,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.0
+        app.kubernetes.io/version: 1.11.1
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -640,7 +640,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.0
+    app.kubernetes.io/version: 1.11.1
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index c70b932c9..9711f2b62 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -87,7 +87,7 @@ helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -270,7 +270,7 @@ In AWS, we use a Network load balancer (NLB) to expose the Ingress-Nginx Control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -278,10 +278,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer.
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -329,7 +329,7 @@ kubectl create clusterrolebinding cluster-admin-binding \
 Then, the ingress controller can be installed like this:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -346,7 +346,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -354,7 +354,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/do/deploy.yaml
 ```
 
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
@@ -362,7 +362,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/scw/deploy.yaml
 ```
 Refer to the [dedicated tutorial](https://www.scaleway.com/en/docs/tutorials/proxy-protocol-v2-load-balancer/#configuring-proxy-protocol-for-ingress-nginx) in the Scaleway documentation for configuring the proxy protocol for ingress-nginx with the Scaleway load balancer.
 
@@ -379,7 +379,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A
@@ -406,7 +406,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.10.1/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),

From 879747a92fb780b06a0b40f2faf7509727fa345c Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 21 Jul 2024 12:12:51 +0200
Subject: [PATCH 1363/1641] Docs: Format NGINX configuration table. (#11659)

---
 .../nginx-configuration/configmap.md          | 410 +++++++++---------
 1 file changed, 205 insertions(+), 205 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 002f8a500..0b8e03af1 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -25,211 +25,211 @@ data:
 
 The following table shows a configuration option's name, type, and the default value:
 
-|name| type         | default                                                                                                                                                                                                                                                                                                                                                      |notes|
-|:---|:-------------|:-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|:----|
-|[add-headers](#add-headers)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[allow-backend-server-header](#allow-backend-server-header)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[allow-cross-namespace-resources](#allow-cross-namespace-resources)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[allow-snippet-annotations](#allow-snippet-annotations)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                        ||
-|[annotations-risk-level](#annotations-risk-level)| string       | Critical                                                                                                                                                                                                                                                                                                                                                     ||
-|[annotation-value-word-blocklist](#annotation-value-word-blocklist)| string array | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[hide-headers](#hide-headers)| string array | empty                                                                                                                                                                                                                                                                                                                                                        ||
-|[access-log-params](#access-log-params)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[access-log-path](#access-log-path)| string       | "/var/log/nginx/access.log"                                                                                                                                                                                                                                                                                                                                  ||
-|[http-access-log-path](#http-access-log-path)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[stream-access-log-path](#stream-access-log-path)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[enable-access-log-for-default-backend](#enable-access-log-for-default-backend)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[error-log-path](#error-log-path)| string       | "/var/log/nginx/error.log"                                                                                                                                                                                                                                                                                                                                   ||
-|[enable-modsecurity](#enable-modsecurity)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[modsecurity-snippet](#modsecurity-snippet)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[enable-owasp-modsecurity-crs](#enable-owasp-modsecurity-crs)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[client-header-buffer-size](#client-header-buffer-size)| string       | "1k"                                                                                                                                                                                                                                                                                                                                                         ||
-|[client-header-timeout](#client-header-timeout)| int          | 60                                                                                                                                                                                                                                                                                                                                                           ||
-|[client-body-buffer-size](#client-body-buffer-size)| string       | "8k"                                                                                                                                                                                                                                                                                                                                                         ||
-|[client-body-timeout](#client-body-timeout)| int          | 60                                                                                                                                                                                                                                                                                                                                                           ||
-|[disable-access-log](#disable-access-log)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                        ||
-|[disable-ipv6](#disable-ipv6)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                        ||
-|[disable-ipv6-dns](#disable-ipv6-dns)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                        ||
-|[enable-underscores-in-headers](#enable-underscores-in-headers)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                        ||
-|[enable-ocsp](#enable-ocsp)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                        ||
-|[ignore-invalid-headers](#ignore-invalid-headers)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                         ||
-|[retry-non-idempotent](#retry-non-idempotent)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[error-log-level](#error-log-level)| string       | "notice"                                                                                                                                                                                                                                                                                                                                                     ||
-|[http2-max-field-size](#http2-max-field-size)| string       | ""                                                                                                                                                                                                                                                                                                                                                           |DEPRECATED in favour of [large_client_header_buffers](#large-client-header-buffers)|
-|[http2-max-header-size](#http2-max-header-size)| string       | ""                                                                                                                                                                                                                                                                                                                                                           |DEPRECATED in favour of [large_client_header_buffers](#large-client-header-buffers)|
-|[http2-max-requests](#http2-max-requests)| int          | 0                                                                                                                                                                                                                                                                                                                                                            |DEPRECATED in favour of [keepalive_requests](#keepalive-requests)|
-|[http2-max-concurrent-streams](#http2-max-concurrent-streams)| int          | 128                                                                                                                                                                                                                                                                                                                                                          ||
-|[hsts](#hsts)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[hsts-include-subdomains](#hsts-include-subdomains)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[hsts-max-age](#hsts-max-age)| string       | "31536000"                                                                                                                                                                                                                                                                                                                                                   ||
-|[hsts-preload](#hsts-preload)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[keep-alive](#keep-alive)| int          | 75                                                                                                                                                                                                                                                                                                                                                           ||
-|[keep-alive-requests](#keep-alive-requests)| int          | 1000                                                                                                                                                                                                                                                                                                                                                         ||
-|[large-client-header-buffers](#large-client-header-buffers)| string       | "4 8k"                                                                                                                                                                                                                                                                                                                                                       ||
-|[log-format-escape-none](#log-format-escape-none)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[log-format-escape-json](#log-format-escape-json)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[log-format-upstream](#log-format-upstream)| string       | `$remote_addr - $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" $request_length $request_time [$proxy_upstream_name] [$proxy_alternative_upstream_name] $upstream_addr $upstream_response_length $upstream_response_time $upstream_status $req_id`                                                         ||
-|[log-format-stream](#log-format-stream)| string       | `[$remote_addr] [$time_local] $protocol $status $bytes_sent $bytes_received $session_time`                                                                                                                                                                                                                                                                   ||
-|[enable-multi-accept](#enable-multi-accept)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[max-worker-connections](#max-worker-connections)| int          | 16384                                                                                                                                                                                                                                                                                                                                                        ||
-|[max-worker-open-files](#max-worker-open-files)| int          | 0                                                                                                                                                                                                                                                                                                                                                            ||
-|[map-hash-bucket-size](#max-hash-bucket-size)| int          | 64                                                                                                                                                                                                                                                                                                                                                           ||
-|[nginx-status-ipv4-whitelist](#nginx-status-ipv4-whitelist)| []string     | "127.0.0.1"                                                                                                                                                                                                                                                                                                                                                  ||
-|[nginx-status-ipv6-whitelist](#nginx-status-ipv6-whitelist)| []string     | "::1"                                                                                                                                                                                                                                                                                                                                                        ||
-|[proxy-real-ip-cidr](#proxy-real-ip-cidr)| []string     | "0.0.0.0/0"                                                                                                                                                                                                                                                                                                                                                  ||
-|[proxy-set-headers](#proxy-set-headers)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[server-name-hash-max-size](#server-name-hash-max-size)| int          | 1024                                                                                                                                                                                                                                                                                                                                                         ||
-|[server-name-hash-bucket-size](#server-name-hash-bucket-size)| int          | `<size of the processor’s cache line>`                                                                                                                                                                                                                                                                                                                       |
-|[proxy-headers-hash-max-size](#proxy-headers-hash-max-size)| int          | 512                                                                                                                                                                                                                                                                                                                                                          ||
-|[proxy-headers-hash-bucket-size](#proxy-headers-hash-bucket-size)| int          | 64                                                                                                                                                                                                                                                                                                                                                           ||
-|[plugins](#plugins)| []string     |                                                                                                                                                                                                                                                                                                                                                              ||
-|[reuse-port](#reuse-port)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[server-tokens](#server-tokens)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[ssl-ciphers](#ssl-ciphers)| string       | "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"                                                                                                                          ||
-|[ssl-ecdh-curve](#ssl-ecdh-curve)| string       | "auto"                                                                                                                                                                                                                                                                                                                                                       ||
-|[ssl-dh-param](#ssl-dh-param)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[ssl-protocols](#ssl-protocols)| string       | "TLSv1.2 TLSv1.3"                                                                                                                                                                                                                                                                                                                                            ||
-|[ssl-session-cache](#ssl-session-cache)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[ssl-session-cache-size](#ssl-session-cache-size)| string       | "10m"                                                                                                                                                                                                                                                                                                                                                        ||
-|[ssl-session-tickets](#ssl-session-tickets)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[ssl-session-ticket-key](#ssl-session-ticket-key)| string       | `<Randomly Generated>`                                                                                                                                                                                                                                                                                                                                       |
-|[ssl-session-timeout](#ssl-session-timeout)| string       | "10m"                                                                                                                                                                                                                                                                                                                                                        ||
-|[ssl-buffer-size](#ssl-buffer-size)| string       | "4k"                                                                                                                                                                                                                                                                                                                                                         ||
-|[use-proxy-protocol](#use-proxy-protocol)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[proxy-protocol-header-timeout](#proxy-protocol-header-timeout)| string       | "5s"                                                                                                                                                                                                                                                                                                                                                         ||
-|[enable-aio-write](#enable-aio-write)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[use-gzip](#use-gzip)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[use-geoip](#use-geoip)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[use-geoip2](#use-geoip2)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[geoip2-autoreload-in-minutes](#geoip2-autoreload-in-minutes)| int          | "0"                                                                                                                                                                                                                                                                                                                                                          ||
-|[enable-brotli](#enable-brotli)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[brotli-level](#brotli-level)| int          | 4                                                                                                                                                                                                                                                                                                                                                            ||
-|[brotli-min-length](#brotli-min-length)| int          | 20                                                                                                                                                                                                                                                                                                                                                           ||
-|[brotli-types](#brotli-types)| string       | "application/xml+rss application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component" ||
-|[use-http2](#use-http2)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[gzip-disable](#gzip-disable)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[gzip-level](#gzip-level)| int          | 1                                                                                                                                                                                                                                                                                                                                                            ||
-|[gzip-min-length](#gzip-min-length)| int          | 256                                                                                                                                                                                                                                                                                                                                                          ||
-|[gzip-types](#gzip-types)| string       | "application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"                     ||
-|[worker-processes](#worker-processes)| string       | `<Number of CPUs>`                                                                                                                                                                                                                                                                                                                                           ||
-|[worker-cpu-affinity](#worker-cpu-affinity)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[worker-shutdown-timeout](#worker-shutdown-timeout)| string       | "240s"                                                                                                                                                                                                                                                                                                                                                       ||
-|[enable-serial-reloads](#enable-serial-reloads)|bool|"false"||
-|[load-balance](#load-balance)| string       | "round_robin"                                                                                                                                                                                                                                                                                                                                                ||
-|[variables-hash-bucket-size](#variables-hash-bucket-size)| int          | 128                                                                                                                                                                                                                                                                                                                                                          ||
-|[variables-hash-max-size](#variables-hash-max-size)| int          | 2048                                                                                                                                                                                                                                                                                                                                                         ||
-|[upstream-keepalive-connections](#upstream-keepalive-connections)| int          | 320                                                                                                                                                                                                                                                                                                                                                          ||
-|[upstream-keepalive-time](#upstream-keepalive-time)| string       | "1h"                                                                                                                                                                                                                                                                                                                                                         ||
-|[upstream-keepalive-timeout](#upstream-keepalive-timeout)| int          | 60                                                                                                                                                                                                                                                                                                                                                           ||
-|[upstream-keepalive-requests](#upstream-keepalive-requests)| int          | 10000                                                                                                                                                                                                                                                                                                                                                        ||
-|[limit-conn-zone-variable](#limit-conn-zone-variable)| string       | "$binary_remote_addr"                                                                                                                                                                                                                                                                                                                                        ||
-|[proxy-stream-timeout](#proxy-stream-timeout)| string       | "600s"                                                                                                                                                                                                                                                                                                                                                       ||
-|[proxy-stream-next-upstream](#proxy-stream-next-upstream)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[proxy-stream-next-upstream-timeout](#proxy-stream-next-upstream-timeout)| string       | "600s"                                                                                                                                                                                                                                                                                                                                                       ||
-|[proxy-stream-next-upstream-tries](#proxy-stream-next-upstream-tries)| int          | 3                                                                                                                                                                                                                                                                                                                                                            ||
-|[proxy-stream-responses](#proxy-stream-responses)| int          | 1                                                                                                                                                                                                                                                                                                                                                            ||
-|[bind-address](#bind-address)| []string     | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[use-forwarded-headers](#use-forwarded-headers)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[enable-real-ip](#enable-real-ip)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[forwarded-for-header](#forwarded-for-header)| string       | "X-Forwarded-For"                                                                                                                                                                                                                                                                                                                                            ||
-|[compute-full-forwarded-for](#compute-full-forwarded-for)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[proxy-add-original-uri-header](#proxy-add-original-uri-header)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[generate-request-id](#generate-request-id)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[jaeger-collector-host](#jaeger-collector-host)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[jaeger-collector-port](#jaeger-collector-port)| int          | 6831                                                                                                                                                                                                                                                                                                                                                         ||
-|[jaeger-endpoint](#jaeger-endpoint)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[jaeger-service-name](#jaeger-service-name)| string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      ||
-|[jaeger-propagation-format](#jaeger-propagation-format)| string       | "jaeger"                                                                                                                                                                                                                                                                                                                                                     ||
-|[jaeger-sampler-type](#jaeger-sampler-type)| string       | "const"                                                                                                                                                                                                                                                                                                                                                      ||
-|[jaeger-sampler-param](#jaeger-sampler-param)| string       | "1"                                                                                                                                                                                                                                                                                                                                                          ||
-|[jaeger-sampler-host](#jaeger-sampler-host)| string       | "http://127.0.0.1"                                                                                                                                                                                                                                                                                                                                           ||
-|[jaeger-sampler-port](#jaeger-sampler-port)| int          | 5778                                                                                                                                                                                                                                                                                                                                                         ||
-|[jaeger-trace-context-header-name](#jaeger-trace-context-header-name)| string       | uber-trace-id                                                                                                                                                                                                                                                                                                                                                ||
-|[jaeger-debug-header](#jaeger-debug-header)| string       | uber-debug-id                                                                                                                                                                                                                                                                                                                                                ||
-|[jaeger-baggage-header](#jaeger-baggage-header)| string       | jaeger-baggage                                                                                                                                                                                                                                                                                                                                               ||
-|[jaeger-trace-baggage-header-prefix](#jaeger-trace-baggage-header-prefix)| string       | uberctx-                                                                                                                                                                                                                                                                                                                                                     ||
-|[datadog-collector-host](#datadog-collector-host)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[datadog-collector-port](#datadog-collector-port)| int          | 8126                                                                                                                                                                                                                                                                                                                                                         ||
-|[datadog-service-name](#datadog-service-name)| string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      ||
-|[datadog-environment](#datadog-environment)| string       | "prod"                                                                                                                                                                                                                                                                                                                                                       ||
-|[datadog-operation-name-override](#datadog-operation-name-override)| string       | "nginx.handle"                                                                                                                                                                                                                                                                                                                                               ||
-|[datadog-priority-sampling](#datadog-priority-sampling)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[datadog-sample-rate](#datadog-sample-rate)| float        | 1.0                                                                                                                                                                                                                                                                                                                                                          ||
-|[enable-opentelemetry](#enable-opentelemetry)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[opentelemetry-trust-incoming-span](#opentelemetry-trust-incoming-span)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[opentelemetry-operation-name](#opentelemetry-operation-name)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[opentelemetry-config](#/etc/nginx/opentelemetry.toml)| string       | "/etc/nginx/opentelemetry.toml"                                                                                                                                                                                                                                                                                                                              ||
-|[otlp-collector-host](#otlp-collector-host)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[otlp-collector-port](#otlp-collector-port)| int          | 4317                                                                                                                                                                                                                                                                                                                                                         ||
-|[otel-max-queuesize](#otel-max-queuesize)| int          |                                                                                                                                                                                                                                                                                                                                                              ||
-|[otel-schedule-delay-millis](#otel-schedule-delay-millis)| int          |                                                                                                                                                                                                                                                                                                                                                              ||
-|[otel-max-export-batch-size](#otel-max-export-batch-size)| int          |                                                                                                                                                                                                                                                                                                                                                              ||
-|[otel-service-name](#otel-service-name)| string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      ||
-|[otel-sampler](#otel-sampler)| string       | "AlwaysOff"                                                                                                                                                                                                                                                                                                                                                  ||
-|[otel-sampler-parent-based](#otel-sampler-parent-based)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[otel-sampler-ratio](#otel-sampler-ratio)| float        | 0.01                                                                                                                                                                                                                                                                                                                                                         ||
-|[main-snippet](#main-snippet)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[http-snippet](#http-snippet)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[server-snippet](#server-snippet)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[stream-snippet](#stream-snippet)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[location-snippet](#location-snippet)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[custom-http-errors](#custom-http-errors)| []int        | []int{}                                                                                                                                                                                                                                                                                                                                                      ||
-|[proxy-body-size](#proxy-body-size)| string       | "1m"                                                                                                                                                                                                                                                                                                                                                         ||
-|[proxy-connect-timeout](#proxy-connect-timeout)| int          | 5                                                                                                                                                                                                                                                                                                                                                            ||
-|[proxy-read-timeout](#proxy-read-timeout)| int          | 60                                                                                                                                                                                                                                                                                                                                                           ||
-|[proxy-send-timeout](#proxy-send-timeout)| int          | 60                                                                                                                                                                                                                                                                                                                                                           ||
-|[proxy-buffers-number](#proxy-buffers-number)| int          | 4                                                                                                                                                                                                                                                                                                                                                            ||
-|[proxy-buffer-size](#proxy-buffer-size)| string       | "4k"                                                                                                                                                                                                                                                                                                                                                         ||
-|[proxy-cookie-path](#proxy-cookie-path)| string       | "off"                                                                                                                                                                                                                                                                                                                                                        ||
-|[proxy-cookie-domain](#proxy-cookie-domain)| string       | "off"                                                                                                                                                                                                                                                                                                                                                        ||
-|[proxy-next-upstream](#proxy-next-upstream)| string       | "error timeout"                                                                                                                                                                                                                                                                                                                                              ||
-|[proxy-next-upstream-timeout](#proxy-next-upstream-timeout)| int          | 0                                                                                                                                                                                                                                                                                                                                                            ||
-|[proxy-next-upstream-tries](#proxy-next-upstream-tries)| int          | 3                                                                                                                                                                                                                                                                                                                                                            ||
-|[proxy-redirect-from](#proxy-redirect-from)| string       | "off"                                                                                                                                                                                                                                                                                                                                                        ||
-|[proxy-request-buffering](#proxy-request-buffering)| string       | "on"                                                                                                                                                                                                                                                                                                                                                         ||
-|[ssl-redirect](#ssl-redirect)| bool         | "true"                                                                                                                                                                                                                                                                                                                                                       ||
-|[force-ssl-redirect](#force-ssl-redirect)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[denylist-source-range](#denylist-source-range)| []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   ||
-|[whitelist-source-range](#whitelist-source-range)| []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   ||
-|[skip-access-log-urls](#skip-access-log-urls)| []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   ||
-|[limit-rate](#limit-rate)| int          | 0                                                                                                                                                                                                                                                                                                                                                            ||
-|[limit-rate-after](#limit-rate-after)| int          | 0                                                                                                                                                                                                                                                                                                                                                            ||
-|[lua-shared-dicts](#lua-shared-dicts)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[http-redirect-code](#http-redirect-code)| int          | 308                                                                                                                                                                                                                                                                                                                                                          ||
-|[proxy-buffering](#proxy-buffering)| string       | "off"                                                                                                                                                                                                                                                                                                                                                        ||
-|[limit-req-status-code](#limit-req-status-code)| int          | 503                                                                                                                                                                                                                                                                                                                                                          ||
-|[limit-conn-status-code](#limit-conn-status-code)| int          | 503                                                                                                                                                                                                                                                                                                                                                          ||
-|[enable-syslog](#enable-syslog)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                        ||
-|[syslog-host](#syslog-host)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[syslog-port](#syslog-port)| int          | 514                                                                                                                                                                                                                                                                                                                                                          ||
-|[no-tls-redirect-locations](#no-tls-redirect-locations)| string       | "/.well-known/acme-challenge"                                                                                                                                                                                                                                                                                                                                ||
-|[global-allowed-response-headers](#global-allowed-response-headers)|string|""||
-|[global-auth-url](#global-auth-url)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[global-auth-method](#global-auth-method)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[global-auth-signin](#global-auth-signin)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[global-auth-signin-redirect-param](#global-auth-signin-redirect-param)| string       | "rd"                                                                                                                                                                                                                                                                                                                                                         ||
-|[global-auth-response-headers](#global-auth-response-headers)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[global-auth-request-redirect](#global-auth-request-redirect)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[global-auth-snippet](#global-auth-snippet)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[global-auth-cache-key](#global-auth-cache-key)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[global-auth-cache-duration](#global-auth-cache-duration)| string       | "200 202 401 5m"                                                                                                                                                                                                                                                                                                                                             ||
-|[no-auth-locations](#no-auth-locations)| string       | "/.well-known/acme-challenge"                                                                                                                                                                                                                                                                                                                                ||
-|[block-cidrs](#block-cidrs)| []string     | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[block-user-agents](#block-user-agents)| []string     | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[block-referers](#block-referers)| []string     | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[proxy-ssl-location-only](#proxy-ssl-location-only)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[default-type](#default-type)| string       | "text/html"                                                                                                                                                                                                                                                                                                                                                  ||
-|[global-rate-limit-memcached-host](#global-rate-limit)| string       | ""                                                                                                                                                                                                                                                                                                                                                           ||
-|[global-rate-limit-memcached-port](#global-rate-limit)| int          | 11211                                                                                                                                                                                                                                                                                                                                                        ||
-|[global-rate-limit-memcached-connect-timeout](#global-rate-limit)| int          | 50                                                                                                                                                                                                                                                                                                                                                           ||
-|[global-rate-limit-memcached-max-idle-timeout](#global-rate-limit)| int          | 10000                                                                                                                                                                                                                                                                                                                                                        ||
-|[global-rate-limit-memcached-pool-size](#global-rate-limit)| int          | 50                                                                                                                                                                                                                                                                                                                                                           ||
-|[global-rate-limit-status-code](#global-rate-limit)| int          | 429                                                                                                                                                                                                                                                                                                                                                          ||
-|[service-upstream](#service-upstream)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[ssl-reject-handshake](#ssl-reject-handshake)| bool         | "false"                                                                                                                                                                                                                                                                                                                                                      ||
-|[debug-connections](#debug-connections)| []string     | "127.0.0.1,1.1.1.1/24"                                                                                                                                                                                                                                                                                                                                       ||
-|[strict-validate-path-type](#strict-validate-path-type)| bool         | "false" (v1.7.x)                                                                                                                                                                                                                                                                                                                                             ||
-|[grpc-buffer-size-kb](#grpc-buffer-size-kb)| int          | 0                                                                                                                                                                                                                                                                                                                                                            ||
+| name                                                                            | type         | default                                                                                                                                                                                                                                                                                                                                                      | notes                                                                               |
+|:--------------------------------------------------------------------------------|:-------------|:-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|:------------------------------------------------------------------------------------|
+| [add-headers](#add-headers)                                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [allow-backend-server-header](#allow-backend-server-header)                     | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [allow-cross-namespace-resources](#allow-cross-namespace-resources)             | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [allow-snippet-annotations](#allow-snippet-annotations)                         | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [annotations-risk-level](#annotations-risk-level)                               | string       | Critical                                                                                                                                                                                                                                                                                                                                                     |                                                                                     |
+| [annotation-value-word-blocklist](#annotation-value-word-blocklist)             | string array | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [hide-headers](#hide-headers)                                                   | string array | empty                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
+| [access-log-params](#access-log-params)                                         | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [access-log-path](#access-log-path)                                             | string       | "/var/log/nginx/access.log"                                                                                                                                                                                                                                                                                                                                  |                                                                                     |
+| [http-access-log-path](#http-access-log-path)                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [stream-access-log-path](#stream-access-log-path)                               | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [enable-access-log-for-default-backend](#enable-access-log-for-default-backend) | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [error-log-path](#error-log-path)                                               | string       | "/var/log/nginx/error.log"                                                                                                                                                                                                                                                                                                                                   |                                                                                     |
+| [enable-modsecurity](#enable-modsecurity)                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [modsecurity-snippet](#modsecurity-snippet)                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [enable-owasp-modsecurity-crs](#enable-owasp-modsecurity-crs)                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [client-header-buffer-size](#client-header-buffer-size)                         | string       | "1k"                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [client-header-timeout](#client-header-timeout)                                 | int          | 60                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [client-body-buffer-size](#client-body-buffer-size)                             | string       | "8k"                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [client-body-timeout](#client-body-timeout)                                     | int          | 60                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [disable-access-log](#disable-access-log)                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [disable-ipv6](#disable-ipv6)                                                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [disable-ipv6-dns](#disable-ipv6-dns)                                           | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [enable-underscores-in-headers](#enable-underscores-in-headers)                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [enable-ocsp](#enable-ocsp)                                                     | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [ignore-invalid-headers](#ignore-invalid-headers)                               | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [retry-non-idempotent](#retry-non-idempotent)                                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [error-log-level](#error-log-level)                                             | string       | "notice"                                                                                                                                                                                                                                                                                                                                                     |                                                                                     |
+| [http2-max-field-size](#http2-max-field-size)                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           | DEPRECATED in favour of [large_client_header_buffers](#large-client-header-buffers) |
+| [http2-max-header-size](#http2-max-header-size)                                 | string       | ""                                                                                                                                                                                                                                                                                                                                                           | DEPRECATED in favour of [large_client_header_buffers](#large-client-header-buffers) |
+| [http2-max-requests](#http2-max-requests)                                       | int          | 0                                                                                                                                                                                                                                                                                                                                                            | DEPRECATED in favour of [keepalive_requests](#keepalive-requests)                   |
+| [http2-max-concurrent-streams](#http2-max-concurrent-streams)                   | int          | 128                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
+| [hsts](#hsts)                                                                   | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [hsts-include-subdomains](#hsts-include-subdomains)                             | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [hsts-max-age](#hsts-max-age)                                                   | string       | "31536000"                                                                                                                                                                                                                                                                                                                                                   |                                                                                     |
+| [hsts-preload](#hsts-preload)                                                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [keep-alive](#keep-alive)                                                       | int          | 75                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [keep-alive-requests](#keep-alive-requests)                                     | int          | 1000                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [large-client-header-buffers](#large-client-header-buffers)                     | string       | "4 8k"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [log-format-escape-none](#log-format-escape-none)                               | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [log-format-escape-json](#log-format-escape-json)                               | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [log-format-upstream](#log-format-upstream)                                     | string       | `$remote_addr - $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" $request_length $request_time [$proxy_upstream_name] [$proxy_alternative_upstream_name] $upstream_addr $upstream_response_length $upstream_response_time $upstream_status $req_id`                                                         |                                                                                     |
+| [log-format-stream](#log-format-stream)                                         | string       | `[$remote_addr] [$time_local] $protocol $status $bytes_sent $bytes_received $session_time`                                                                                                                                                                                                                                                                   |                                                                                     |
+| [enable-multi-accept](#enable-multi-accept)                                     | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [max-worker-connections](#max-worker-connections)                               | int          | 16384                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
+| [max-worker-open-files](#max-worker-open-files)                                 | int          | 0                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
+| [map-hash-bucket-size](#max-hash-bucket-size)                                   | int          | 64                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [nginx-status-ipv4-whitelist](#nginx-status-ipv4-whitelist)                     | []string     | "127.0.0.1"                                                                                                                                                                                                                                                                                                                                                  |                                                                                     |
+| [nginx-status-ipv6-whitelist](#nginx-status-ipv6-whitelist)                     | []string     | "::1"                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
+| [proxy-real-ip-cidr](#proxy-real-ip-cidr)                                       | []string     | "0.0.0.0/0"                                                                                                                                                                                                                                                                                                                                                  |                                                                                     |
+| [proxy-set-headers](#proxy-set-headers)                                         | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [server-name-hash-max-size](#server-name-hash-max-size)                         | int          | 1024                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [server-name-hash-bucket-size](#server-name-hash-bucket-size)                   | int          | `<size of the processor’s cache line>`                                                                                                                                                                                                                                                                                                                       |
+| [proxy-headers-hash-max-size](#proxy-headers-hash-max-size)                     | int          | 512                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
+| [proxy-headers-hash-bucket-size](#proxy-headers-hash-bucket-size)               | int          | 64                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [plugins](#plugins)                                                             | []string     |                                                                                                                                                                                                                                                                                                                                                              |                                                                                     |
+| [reuse-port](#reuse-port)                                                       | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [server-tokens](#server-tokens)                                                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [ssl-ciphers](#ssl-ciphers)                                                     | string       | "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"                                                                                                                          |                                                                                     |
+| [ssl-ecdh-curve](#ssl-ecdh-curve)                                               | string       | "auto"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [ssl-dh-param](#ssl-dh-param)                                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [ssl-protocols](#ssl-protocols)                                                 | string       | "TLSv1.2 TLSv1.3"                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
+| [ssl-session-cache](#ssl-session-cache)                                         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [ssl-session-cache-size](#ssl-session-cache-size)                               | string       | "10m"                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
+| [ssl-session-tickets](#ssl-session-tickets)                                     | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [ssl-session-ticket-key](#ssl-session-ticket-key)                               | string       | `<Randomly Generated>`                                                                                                                                                                                                                                                                                                                                       |
+| [ssl-session-timeout](#ssl-session-timeout)                                     | string       | "10m"                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
+| [ssl-buffer-size](#ssl-buffer-size)                                             | string       | "4k"                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [use-proxy-protocol](#use-proxy-protocol)                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [proxy-protocol-header-timeout](#proxy-protocol-header-timeout)                 | string       | "5s"                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [enable-aio-write](#enable-aio-write)                                           | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [use-gzip](#use-gzip)                                                           | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [use-geoip](#use-geoip)                                                         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [use-geoip2](#use-geoip2)                                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [geoip2-autoreload-in-minutes](#geoip2-autoreload-in-minutes)                   | int          | "0"                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
+| [enable-brotli](#enable-brotli)                                                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [brotli-level](#brotli-level)                                                   | int          | 4                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
+| [brotli-min-length](#brotli-min-length)                                         | int          | 20                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [brotli-types](#brotli-types)                                                   | string       | "application/xml+rss application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component" |                                                                                     |
+| [use-http2](#use-http2)                                                         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [gzip-disable](#gzip-disable)                                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [gzip-level](#gzip-level)                                                       | int          | 1                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
+| [gzip-min-length](#gzip-min-length)                                             | int          | 256                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
+| [gzip-types](#gzip-types)                                                       | string       | "application/atom+xml application/javascript application/x-javascript application/json application/rss+xml application/vnd.ms-fontobject application/x-font-ttf application/x-web-app-manifest+json application/xhtml+xml application/xml font/opentype image/svg+xml image/x-icon text/css text/javascript text/plain text/x-component"                     |                                                                                     |
+| [worker-processes](#worker-processes)                                           | string       | `<Number of CPUs>`                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [worker-cpu-affinity](#worker-cpu-affinity)                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [worker-shutdown-timeout](#worker-shutdown-timeout)                             | string       | "240s"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [enable-serial-reloads](#enable-serial-reloads)                                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [load-balance](#load-balance)                                                   | string       | "round_robin"                                                                                                                                                                                                                                                                                                                                                |                                                                                     |
+| [variables-hash-bucket-size](#variables-hash-bucket-size)                       | int          | 128                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
+| [variables-hash-max-size](#variables-hash-max-size)                             | int          | 2048                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [upstream-keepalive-connections](#upstream-keepalive-connections)               | int          | 320                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
+| [upstream-keepalive-time](#upstream-keepalive-time)                             | string       | "1h"                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [upstream-keepalive-timeout](#upstream-keepalive-timeout)                       | int          | 60                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [upstream-keepalive-requests](#upstream-keepalive-requests)                     | int          | 10000                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
+| [limit-conn-zone-variable](#limit-conn-zone-variable)                           | string       | "$binary_remote_addr"                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
+| [proxy-stream-timeout](#proxy-stream-timeout)                                   | string       | "600s"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [proxy-stream-next-upstream](#proxy-stream-next-upstream)                       | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [proxy-stream-next-upstream-timeout](#proxy-stream-next-upstream-timeout)       | string       | "600s"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [proxy-stream-next-upstream-tries](#proxy-stream-next-upstream-tries)           | int          | 3                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
+| [proxy-stream-responses](#proxy-stream-responses)                               | int          | 1                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
+| [bind-address](#bind-address)                                                   | []string     | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [use-forwarded-headers](#use-forwarded-headers)                                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [enable-real-ip](#enable-real-ip)                                               | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [forwarded-for-header](#forwarded-for-header)                                   | string       | "X-Forwarded-For"                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
+| [compute-full-forwarded-for](#compute-full-forwarded-for)                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [proxy-add-original-uri-header](#proxy-add-original-uri-header)                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [generate-request-id](#generate-request-id)                                     | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [jaeger-collector-host](#jaeger-collector-host)                                 | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [jaeger-collector-port](#jaeger-collector-port)                                 | int          | 6831                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [jaeger-endpoint](#jaeger-endpoint)                                             | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [jaeger-service-name](#jaeger-service-name)                                     | string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [jaeger-propagation-format](#jaeger-propagation-format)                         | string       | "jaeger"                                                                                                                                                                                                                                                                                                                                                     |                                                                                     |
+| [jaeger-sampler-type](#jaeger-sampler-type)                                     | string       | "const"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [jaeger-sampler-param](#jaeger-sampler-param)                                   | string       | "1"                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
+| [jaeger-sampler-host](#jaeger-sampler-host)                                     | string       | "http://127.0.0.1"                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [jaeger-sampler-port](#jaeger-sampler-port)                                     | int          | 5778                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [jaeger-trace-context-header-name](#jaeger-trace-context-header-name)           | string       | uber-trace-id                                                                                                                                                                                                                                                                                                                                                |                                                                                     |
+| [jaeger-debug-header](#jaeger-debug-header)                                     | string       | uber-debug-id                                                                                                                                                                                                                                                                                                                                                |                                                                                     |
+| [jaeger-baggage-header](#jaeger-baggage-header)                                 | string       | jaeger-baggage                                                                                                                                                                                                                                                                                                                                               |                                                                                     |
+| [jaeger-trace-baggage-header-prefix](#jaeger-trace-baggage-header-prefix)       | string       | uberctx-                                                                                                                                                                                                                                                                                                                                                     |                                                                                     |
+| [datadog-collector-host](#datadog-collector-host)                               | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [datadog-collector-port](#datadog-collector-port)                               | int          | 8126                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [datadog-service-name](#datadog-service-name)                                   | string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [datadog-environment](#datadog-environment)                                     | string       | "prod"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [datadog-operation-name-override](#datadog-operation-name-override)             | string       | "nginx.handle"                                                                                                                                                                                                                                                                                                                                               |                                                                                     |
+| [datadog-priority-sampling](#datadog-priority-sampling)                         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [datadog-sample-rate](#datadog-sample-rate)                                     | float        | 1.0                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
+| [enable-opentelemetry](#enable-opentelemetry)                                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [opentelemetry-trust-incoming-span](#opentelemetry-trust-incoming-span)         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [opentelemetry-operation-name](#opentelemetry-operation-name)                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [opentelemetry-config](#/etc/nginx/opentelemetry.toml)                          | string       | "/etc/nginx/opentelemetry.toml"                                                                                                                                                                                                                                                                                                                              |                                                                                     |
+| [otlp-collector-host](#otlp-collector-host)                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [otlp-collector-port](#otlp-collector-port)                                     | int          | 4317                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [otel-max-queuesize](#otel-max-queuesize)                                       | int          |                                                                                                                                                                                                                                                                                                                                                              |                                                                                     |
+| [otel-schedule-delay-millis](#otel-schedule-delay-millis)                       | int          |                                                                                                                                                                                                                                                                                                                                                              |                                                                                     |
+| [otel-max-export-batch-size](#otel-max-export-batch-size)                       | int          |                                                                                                                                                                                                                                                                                                                                                              |                                                                                     |
+| [otel-service-name](#otel-service-name)                                         | string       | "nginx"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [otel-sampler](#otel-sampler)                                                   | string       | "AlwaysOff"                                                                                                                                                                                                                                                                                                                                                  |                                                                                     |
+| [otel-sampler-parent-based](#otel-sampler-parent-based)                         | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [otel-sampler-ratio](#otel-sampler-ratio)                                       | float        | 0.01                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [main-snippet](#main-snippet)                                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [http-snippet](#http-snippet)                                                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [server-snippet](#server-snippet)                                               | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [stream-snippet](#stream-snippet)                                               | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [location-snippet](#location-snippet)                                           | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [custom-http-errors](#custom-http-errors)                                       | []int        | []int{}                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [proxy-body-size](#proxy-body-size)                                             | string       | "1m"                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [proxy-connect-timeout](#proxy-connect-timeout)                                 | int          | 5                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
+| [proxy-read-timeout](#proxy-read-timeout)                                       | int          | 60                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [proxy-send-timeout](#proxy-send-timeout)                                       | int          | 60                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [proxy-buffers-number](#proxy-buffers-number)                                   | int          | 4                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
+| [proxy-buffer-size](#proxy-buffer-size)                                         | string       | "4k"                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [proxy-cookie-path](#proxy-cookie-path)                                         | string       | "off"                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
+| [proxy-cookie-domain](#proxy-cookie-domain)                                     | string       | "off"                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
+| [proxy-next-upstream](#proxy-next-upstream)                                     | string       | "error timeout"                                                                                                                                                                                                                                                                                                                                              |                                                                                     |
+| [proxy-next-upstream-timeout](#proxy-next-upstream-timeout)                     | int          | 0                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
+| [proxy-next-upstream-tries](#proxy-next-upstream-tries)                         | int          | 3                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
+| [proxy-redirect-from](#proxy-redirect-from)                                     | string       | "off"                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
+| [proxy-request-buffering](#proxy-request-buffering)                             | string       | "on"                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [ssl-redirect](#ssl-redirect)                                                   | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [force-ssl-redirect](#force-ssl-redirect)                                       | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [denylist-source-range](#denylist-source-range)                                 | []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   |                                                                                     |
+| [whitelist-source-range](#whitelist-source-range)                               | []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   |                                                                                     |
+| [skip-access-log-urls](#skip-access-log-urls)                                   | []string     | []string{}                                                                                                                                                                                                                                                                                                                                                   |                                                                                     |
+| [limit-rate](#limit-rate)                                                       | int          | 0                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
+| [limit-rate-after](#limit-rate-after)                                           | int          | 0                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
+| [lua-shared-dicts](#lua-shared-dicts)                                           | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [http-redirect-code](#http-redirect-code)                                       | int          | 308                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
+| [proxy-buffering](#proxy-buffering)                                             | string       | "off"                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
+| [limit-req-status-code](#limit-req-status-code)                                 | int          | 503                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
+| [limit-conn-status-code](#limit-conn-status-code)                               | int          | 503                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
+| [enable-syslog](#enable-syslog)                                                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [syslog-host](#syslog-host)                                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [syslog-port](#syslog-port)                                                     | int          | 514                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
+| [no-tls-redirect-locations](#no-tls-redirect-locations)                         | string       | "/.well-known/acme-challenge"                                                                                                                                                                                                                                                                                                                                |                                                                                     |
+| [global-allowed-response-headers](#global-allowed-response-headers)             | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [global-auth-url](#global-auth-url)                                             | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [global-auth-method](#global-auth-method)                                       | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [global-auth-signin](#global-auth-signin)                                       | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [global-auth-signin-redirect-param](#global-auth-signin-redirect-param)         | string       | "rd"                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [global-auth-response-headers](#global-auth-response-headers)                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [global-auth-request-redirect](#global-auth-request-redirect)                   | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [global-auth-snippet](#global-auth-snippet)                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [global-auth-cache-key](#global-auth-cache-key)                                 | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [global-auth-cache-duration](#global-auth-cache-duration)                       | string       | "200 202 401 5m"                                                                                                                                                                                                                                                                                                                                             |                                                                                     |
+| [no-auth-locations](#no-auth-locations)                                         | string       | "/.well-known/acme-challenge"                                                                                                                                                                                                                                                                                                                                |                                                                                     |
+| [block-cidrs](#block-cidrs)                                                     | []string     | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [block-user-agents](#block-user-agents)                                         | []string     | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [block-referers](#block-referers)                                               | []string     | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [proxy-ssl-location-only](#proxy-ssl-location-only)                             | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [default-type](#default-type)                                                   | string       | "text/html"                                                                                                                                                                                                                                                                                                                                                  |                                                                                     |
+| [global-rate-limit-memcached-host](#global-rate-limit)                          | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [global-rate-limit-memcached-port](#global-rate-limit)                          | int          | 11211                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
+| [global-rate-limit-memcached-connect-timeout](#global-rate-limit)               | int          | 50                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [global-rate-limit-memcached-max-idle-timeout](#global-rate-limit)              | int          | 10000                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
+| [global-rate-limit-memcached-pool-size](#global-rate-limit)                     | int          | 50                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
+| [global-rate-limit-status-code](#global-rate-limit)                             | int          | 429                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
+| [service-upstream](#service-upstream)                                           | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [ssl-reject-handshake](#ssl-reject-handshake)                                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
+| [debug-connections](#debug-connections)                                         | []string     | "127.0.0.1,1.1.1.1/24"                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [strict-validate-path-type](#strict-validate-path-type)                         | bool         | "false" (v1.7.x)                                                                                                                                                                                                                                                                                                                                             |                                                                                     |
+| [grpc-buffer-size-kb](#grpc-buffer-size-kb)                                     | int          | 0                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
 
 ## add-headers
 

From a4ffcfb3d87a1b71e1f5b3222a8209e3845d52b6 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sun, 21 Jul 2024 22:09:46 +0530
Subject: [PATCH 1364/1641] added real-client-ip faq (#11663)

---
 docs/faq.md                                   | 79 ++++++++++++++++++-
 docs/user-guide/miscellaneous.md              |  2 +-
 docs/user-guide/retaining-client-ipaddress.md | 44 -----------
 3 files changed, 78 insertions(+), 47 deletions(-)
 delete mode 100644 docs/user-guide/retaining-client-ipaddress.md

diff --git a/docs/faq.md b/docs/faq.md
index bd1d26718..020474d5c 100644
--- a/docs/faq.md
+++ b/docs/faq.md
@@ -1,7 +1,9 @@
 
 # FAQ
 
-## How can I easily install multiple instances of the ingress-nginx controller in the same cluster?
+## Multiple controller in one cluster
+
+Question - How can I easily install multiple instances of the ingress-nginx controller in the same cluster?
 
 You can install them in different namespaces.
 
@@ -61,7 +63,80 @@ helm install ingress-nginx-2 ingress-nginx/ingress-nginx  \
 
 ## Retaining Client IPAddress
 
-Please read [Retain Client IPAddress Guide here](./user-guide/retaining-client-ipaddress.md).
+Question - How to obtain the real-client-ipaddress ?
+
+The goto solution for retaining the real-client IPaddress is to enable PROXY protocol.
+
+Enabling PROXY protocol has to be done on both, the Ingress NGINX controller, as well as the L4 load balancer, in front of the controller.
+
+The real-client IP address is lost by default, when traffic is forwarded over the network. But enabling PROXY protocol ensures that the connection details are retained and hence the real-client IP address doesn't get lost.
+
+Enabling proxy-protocol on the controller is documented [here](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#use-proxy-protocol) .
+
+For enabling proxy-protocol on the LoadBalancer, please refer to the documentation of your infrastructure provider because that is where the LB is provisioned.
+
+Some more info available [here](https://kubernetes.github.io/ingress-nginx/user-guide/miscellaneous/#source-ip-address)
+
+Some more info on proxy-protocol is [here](https://kubernetes.github.io/ingress-nginx/user-guide/miscellaneous/#proxy-protocol)
+
+### client-ipaddress on single-node cluster
+
+Single node clusters are created for dev & test uses with tools like "kind" or "minikube". A trick to simulate a real use network with these clusters (kind or minikube) is to install Metallb and configure the ipaddress of the kind container or the minikube vm/container, as the starting and ending of the pool for Metallb in L2 mode. Then the host ip becomes a real client ipaddress, for curl requests sent from the host.
+
+After installing ingress-nginx controller on a kind or a minikube cluster with helm, you can configure it for real-client-ip with a simple change to the service that ingress-nginx controller creates. The service object of --type LoadBalancer has a field service.spec.externalTrafficPolicy. If you set the value of this field to "Local" then the real-ipaddress of a client is visible to the controller.
+
+```
+% kubectl explain service.spec.externalTrafficPolicy
+KIND:       Service
+VERSION:    v1
+
+FIELD: externalTrafficPolicy <string>
+
+DESCRIPTION:
+    externalTrafficPolicy describes how nodes distribute service traffic they
+    receive on one of the Service's "externally-facing" addresses (NodePorts,
+    ExternalIPs, and LoadBalancer IPs). If set to "Local", the proxy will
+    configure the service in a way that assumes that external load balancers
+    will take care of balancing the service traffic between nodes, and so each
+    node will deliver traffic only to the node-local endpoints of the service,
+    without masquerading the client source IP. (Traffic mistakenly sent to a
+    node with no endpoints will be dropped.) The default value, "Cluster", uses
+    the standard behavior of routing to all endpoints evenly (possibly modified
+    by topology and other features). Note that traffic sent to an External IP or
+    LoadBalancer IP from within the cluster will always get "Cluster" semantics,
+    but clients sending to a NodePort from within the cluster may need to take
+    traffic policy into account when picking a node.
+    
+    Possible enum values:
+     - `"Cluster"` routes traffic to all endpoints.
+     - `"Local"` preserves the source IP of the traffic by routing only to
+    endpoints on the same node as the traffic was received on (dropping the
+    traffic if there are no local endpoints).
+```
+
+### client-ipaddress L7
+
+The solution is to get the real client IPaddress from the ["X-Forward-For" HTTP header](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Forwarded-For)
+
+Example : If your application pod behind Ingress NGINX controller, uses the NGINX webserver and the reverseproxy inside it, then you can do the following to preserve the remote client IP.
+
+- First you need to make sure that the X-Forwarded-For header reaches the backend pod. This is done by using a Ingress NGINX conftroller ConfigMap key. Its documented [here](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#use-forwarded-headers)
+
+- Next, edit `nginx.conf` file inside your app pod, to contain the directives shown below:
+
+```
+set_real_ip_from 0.0.0.0/0; # Trust all IPs (use your VPC CIDR block in production)
+real_ip_header X-Forwarded-For;
+real_ip_recursive on;
+
+log_format main '$remote_addr - $remote_user [$time_local] "$request" '
+                '$status $body_bytes_sent "$http_referer" '
+                '"$http_user_agent" '
+                'host=$host x-forwarded-for=$http_x_forwarded_for';
+
+access_log /var/log/nginx/access.log main;
+
+```
 
 ## Kubernetes v1.22 Migration
 
diff --git a/docs/user-guide/miscellaneous.md b/docs/user-guide/miscellaneous.md
index e7d1ac59c..80a38db51 100644
--- a/docs/user-guide/miscellaneous.md
+++ b/docs/user-guide/miscellaneous.md
@@ -17,7 +17,7 @@ By default NGINX path type is Prefix to not break existing definitions
 
 ## Proxy Protocol
 
-If you are using a L4 proxy to forward the traffic to the NGINX pods and terminate HTTP/HTTPS there, you will lose the remote endpoint's IP address. To prevent this you could use the [Proxy Protocol](http://www.haproxy.org/download/1.5/doc/proxy-protocol.txt) for forwarding traffic, this will send the connection details before forwarding the actual TCP connection itself.
+If you are using a L4 proxy to forward the traffic to the Ingress NGINX pods and terminate HTTP/HTTPS there, you will lose the remote endpoint's IP address. To prevent this you could use the [PROXY Protocol](http://www.haproxy.org/download/1.5/doc/proxy-protocol.txt) for forwarding traffic, this will send the connection details before forwarding the actual TCP connection itself.
 
 Amongst others [ELBs in AWS](http://docs.aws.amazon.com/ElasticLoadBalancing/latest/DeveloperGuide/enable-proxy-protocol.html) and [HAProxy](http://www.haproxy.org/) support Proxy Protocol.
 
diff --git a/docs/user-guide/retaining-client-ipaddress.md b/docs/user-guide/retaining-client-ipaddress.md
deleted file mode 100644
index 237bd3004..000000000
--- a/docs/user-guide/retaining-client-ipaddress.md
+++ /dev/null
@@ -1,44 +0,0 @@
-
-## Retaining Client IPAddress
-
-Please read this https://kubernetes.github.io/ingress-nginx/user-guide/miscellaneous/#source-ip-address , to get details of retaining the client IPAddress.
-
-### Using proxy-protocol
-
-Please read this https://kubernetes.github.io/ingress-nginx/user-guide/miscellaneous/#proxy-protocol , to use proxy-protocol for retaining client IPAddress
-
-
-### Using the K8S spec service.spec.externalTrafficPolicy
-
-```
-% kubectl explain service.spec.externalTrafficPolicy
-KIND:       Service
-VERSION:    v1
-
-FIELD: externalTrafficPolicy <string>
-
-DESCRIPTION:
-    externalTrafficPolicy describes how nodes distribute service traffic they
-    receive on one of the Service's "externally-facing" addresses (NodePorts,
-    ExternalIPs, and LoadBalancer IPs). If set to "Local", the proxy will
-    configure the service in a way that assumes that external load balancers
-    will take care of balancing the service traffic between nodes, and so each
-    node will deliver traffic only to the node-local endpoints of the service,
-    without masquerading the client source IP. (Traffic mistakenly sent to a
-    node with no endpoints will be dropped.) The default value, "Cluster", uses
-    the standard behavior of routing to all endpoints evenly (possibly modified
-    by topology and other features). Note that traffic sent to an External IP or
-    LoadBalancer IP from within the cluster will always get "Cluster" semantics,
-    but clients sending to a NodePort from within the cluster may need to take
-    traffic policy into account when picking a node.
-    
-    Possible enum values:
-     - `"Cluster"` routes traffic to all endpoints.
-     - `"Local"` preserves the source IP of the traffic by routing only to
-    endpoints on the same node as the traffic was received on (dropping the
-    traffic if there are no local endpoints).
-
-```
-
-
-- Setting the field `externalTrafficPolicy`, in the ingress-controller service, to a value of `Local` retains the client's ipaddress, within the scope explained above

From ee5d40a6d28008fbd7fd272262a3fe410bbffcca Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Jul 2024 05:12:42 -0700
Subject: [PATCH 1365/1641] Bump the all group with 2 updates (#11672)

* Bump the all group with 2 updates

Bumps the all group with 2 updates: [github.com/ncabatoff/process-exporter](https://github.com/ncabatoff/process-exporter) and [k8s.io/component-base](https://github.com/kubernetes/component-base).


Updates `github.com/ncabatoff/process-exporter` from 0.8.2 to 0.8.3
- [Release notes](https://github.com/ncabatoff/process-exporter/releases)
- [Changelog](https://github.com/ncabatoff/process-exporter/blob/master/cloudbuild.release.yaml)
- [Commits](https://github.com/ncabatoff/process-exporter/compare/v0.8.2...v0.8.3)

Updates `k8s.io/component-base` from 0.30.2 to 0.30.3
- [Commits](https://github.com/kubernetes/component-base/compare/v0.30.2...v0.30.3)

---
updated-dependencies:
- dependency-name: github.com/ncabatoff/process-exporter
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: k8s.io/component-base
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>

* Metrics/Process: Adapt to API change in `ncabatoff/process-exporter`.

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 go.mod                                        | 10 +++++-----
 go.sum                                        | 20 +++++++++----------
 internal/ingress/metric/collectors/process.go |  2 +-
 3 files changed, 16 insertions(+), 16 deletions(-)

diff --git a/go.mod b/go.mod
index 660cbd4d0..0f0afce10 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/mitchellh/hashstructure/v2 v2.0.2
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
-	github.com/ncabatoff/process-exporter v0.8.2
+	github.com/ncabatoff/process-exporter v0.8.3
 	github.com/onsi/ginkgo/v2 v2.19.0
 	github.com/opencontainers/runc v1.1.13
 	github.com/pmezard/go-difflib v1.0.0
@@ -33,14 +33,14 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.30.2
+	k8s.io/api v0.30.3
 	k8s.io/apiextensions-apiserver v0.30.1
-	k8s.io/apimachinery v0.30.2
+	k8s.io/apimachinery v0.30.3
 	k8s.io/apiserver v0.30.1
 	k8s.io/cli-runtime v0.30.0
-	k8s.io/client-go v0.30.2
+	k8s.io/client-go v0.30.3
 	k8s.io/code-generator v0.30.1
-	k8s.io/component-base v0.30.2
+	k8s.io/component-base v0.30.3
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.18.4
diff --git a/go.sum b/go.sum
index 1fdca4a71..2d23a81c8 100644
--- a/go.sum
+++ b/go.sum
@@ -151,8 +151,8 @@ github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 h1:t4WWQ9I797y7QUgeEjeXnVb+oYuEDQc6gLvrZJTYo94=
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833/go.mod h1:0CznHmXSjMEqs5Tezj/w2emQoM41wzYM9KpDKUHPYag=
-github.com/ncabatoff/process-exporter v0.8.2 h1:g08B7UMSn9nrEjCrqGtBG/IagnCAc/2lSGzGZgcxJFs=
-github.com/ncabatoff/process-exporter v0.8.2/go.mod h1:MxEOWl740VK/hlWycJkq91VrA2mI+U9Bvc1wuyAaxA4=
+github.com/ncabatoff/process-exporter v0.8.3 h1:ZJpzWhRfwdBisIpr2BkitAlUR6dt45hpQn8/AYgToO8=
+github.com/ncabatoff/process-exporter v0.8.3/go.mod h1:MxEOWl740VK/hlWycJkq91VrA2mI+U9Bvc1wuyAaxA4=
 github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
 github.com/nxadm/tail v1.4.8/go.mod h1:+ncqLTQzXmGhMZNUePPaPqPvBxHAIsmXswZKocGu+AU=
@@ -331,22 +331,22 @@ gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.30.2 h1:+ZhRj+28QT4UOH+BKznu4CBgPWgkXO7XAvMcMl0qKvI=
-k8s.io/api v0.30.2/go.mod h1:ULg5g9JvOev2dG0u2hig4Z7tQ2hHIuS+m8MNZ+X6EmI=
+k8s.io/api v0.30.3 h1:ImHwK9DCsPA9uoU3rVh4QHAHHK5dTSv1nxJUapx8hoQ=
+k8s.io/api v0.30.3/go.mod h1:GPc8jlzoe5JG3pb0KJCSLX5oAFIW3/qNJITlDj8BH04=
 k8s.io/apiextensions-apiserver v0.30.1 h1:4fAJZ9985BmpJG6PkoxVRpXv9vmPUOVzl614xarePws=
 k8s.io/apiextensions-apiserver v0.30.1/go.mod h1:R4GuSrlhgq43oRY9sF2IToFh7PVlF1JjfWdoG3pixk4=
-k8s.io/apimachinery v0.30.2 h1:fEMcnBj6qkzzPGSVsAZtQThU62SmQ4ZymlXRC5yFSCg=
-k8s.io/apimachinery v0.30.2/go.mod h1:iexa2somDaxdnj7bha06bhb43Zpa6eWH8N8dbqVjTUc=
+k8s.io/apimachinery v0.30.3 h1:q1laaWCmrszyQuSQCfNB8cFgCuDAoPszKY4ucAjDwHc=
+k8s.io/apimachinery v0.30.3/go.mod h1:iexa2somDaxdnj7bha06bhb43Zpa6eWH8N8dbqVjTUc=
 k8s.io/apiserver v0.30.1 h1:BEWEe8bzS12nMtDKXzCF5Q5ovp6LjjYkSp8qOPk8LZ8=
 k8s.io/apiserver v0.30.1/go.mod h1:i87ZnQ+/PGAmSbD/iEKM68bm1D5reX8fO4Ito4B01mo=
 k8s.io/cli-runtime v0.30.0 h1:0vn6/XhOvn1RJ2KJOC6IRR2CGqrpT6QQF4+8pYpWQ48=
 k8s.io/cli-runtime v0.30.0/go.mod h1:vATpDMATVTMA79sZ0YUCzlMelf6rUjoBzlp+RnoM+cg=
-k8s.io/client-go v0.30.2 h1:sBIVJdojUNPDU/jObC+18tXWcTJVcwyqS9diGdWHk50=
-k8s.io/client-go v0.30.2/go.mod h1:JglKSWULm9xlJLx4KCkfLLQ7XwtlbflV6uFFSHTMgVs=
+k8s.io/client-go v0.30.3 h1:bHrJu3xQZNXIi8/MoxYtZBBWQQXwy16zqJwloXXfD3k=
+k8s.io/client-go v0.30.3/go.mod h1:8d4pf8vYu665/kUbsxWAQ/JDBNWqfFeZnvFiVdmx89U=
 k8s.io/code-generator v0.30.1 h1:ZsG++q5Vt0ScmKCeLhynUuWgcwFGg1Hl1AGfatqPJBI=
 k8s.io/code-generator v0.30.1/go.mod h1:hFgxRsvOUg79mbpbVKfjJvRhVz1qLoe40yZDJ/hwRH4=
-k8s.io/component-base v0.30.2 h1:pqGBczYoW1sno8q9ObExUqrYSKhtE5rW3y6gX88GZII=
-k8s.io/component-base v0.30.2/go.mod h1:yQLkQDrkK8J6NtP+MGJOws+/PPeEXNpwFixsUI7h/OE=
+k8s.io/component-base v0.30.3 h1:Ci0UqKWf4oiwy8hr1+E3dsnliKnkMLZMVbWzeorlk7s=
+k8s.io/component-base v0.30.3/go.mod h1:C1SshT3rGPCuNtBs14RmVD2xW0EhRSeLvBh7AGk1quA=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 h1:bKcdZJOPICVmIIuaM9+MXmapE94dn5AYv5ODs1jA43o=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
diff --git a/internal/ingress/metric/collectors/process.go b/internal/ingress/metric/collectors/process.go
index 8c489de03..85e8066b5 100644
--- a/internal/ingress/metric/collectors/process.go
+++ b/internal/ingress/metric/collectors/process.go
@@ -112,7 +112,7 @@ func NewNGINXProcess(pod, namespace, ingressClass string) (NGINXProcessCollector
 
 	p := &namedProcess{
 		scrapeChan: make(chan scrapeRequest),
-		Grouper:    proc.NewGrouper(nm, true, false, false, 0, false),
+		Grouper:    proc.NewGrouper(nm, true, false, false, 0, false, false),
 		fs:         fs,
 	}
 

From 4b5c5efe2508dc915a48c54de7f23912ff2ec695 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 22 Jul 2024 05:25:40 -0700
Subject: [PATCH 1366/1641] Bump the all group with 4 updates (#11673)

Bumps the all group with 4 updates: [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action), [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action), [docker/login-action](https://github.com/docker/login-action) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `docker/setup-qemu-action` from 3.1.0 to 3.2.0
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](https://github.com/docker/setup-qemu-action/compare/5927c834f5b4fdf503fca6f4c7eccda82949e1ee...49b3bc8e6bdd4a60e6116a5414239cba5943d3cf)

Updates `docker/setup-buildx-action` from 3.4.0 to 3.5.0
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/4fd812986e6c8c2a69e18311145f9371337f27d4...aa33708b10e362ff993539393ff100fa93ed6a27)

Updates `docker/login-action` from 3.2.0 to 3.3.0
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](https://github.com/docker/login-action/compare/0d4c9c5ea7693da7b068278f7b52bda2a190a446...9780b0c442fbb1117ed29e0efdff1e18412f7567)

Updates `github/codeql-action` from 3.25.12 to 3.25.13
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/4fa2a7953630fd2f3fb380f21be14ede0169dd4f...2d790406f505036ef40ecba973cc774a50395aac)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 4 ++--
 .github/workflows/images.yaml              | 6 +++---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 .github/workflows/zz-tmpl-images.yaml      | 2 +-
 5 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 4ea32f9d6..3bd8bbb3d 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -120,11 +120,11 @@ jobs:
           check-latest: true
 
       - name: Set up QEMU
-        uses: docker/setup-qemu-action@5927c834f5b4fdf503fca6f4c7eccda82949e1ee # v3.1.0
+        uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf # v3.2.0
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@4fd812986e6c8c2a69e18311145f9371337f27d4 # v3.4.0
+        uses: docker/setup-buildx-action@aa33708b10e362ff993539393ff100fa93ed6a27 # v3.5.0
         with:
           version: latest
 
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 61e9226df..92325c632 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -197,15 +197,15 @@ jobs:
       - name: Checkout
         uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
       - name: Set up QEMU
-        uses: docker/setup-qemu-action@5927c834f5b4fdf503fca6f4c7eccda82949e1ee # v3.1.0
+        uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf # v3.2.0
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@4fd812986e6c8c2a69e18311145f9371337f27d4 # v3.4.0
+        uses: docker/setup-buildx-action@aa33708b10e362ff993539393ff100fa93ed6a27 # v3.5.0
         with:
           version: latest
           platforms: ${{ env.PLATFORMS }}
       - name: Login to GitHub Container Registry
-        uses: docker/login-action@0d4c9c5ea7693da7b068278f7b52bda2a190a446 # v3.2.0
+        uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
         with:
           username: ${{ secrets.DOCKERHUB_USERNAME }}
           password: ${{ secrets.DOCKERHUB_TOKEN }}
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 5615276ce..a56a324fd 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@4fa2a7953630fd2f3fb380f21be14ede0169dd4f # v3.25.12
+        uses: github/codeql-action/upload-sarif@2d790406f505036ef40ecba973cc774a50395aac # v3.25.13
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 1d3d50102..9d8efd256 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@4fa2a7953630fd2f3fb380f21be14ede0169dd4f # v3.25.12
+        uses: github/codeql-action/upload-sarif@2d790406f505036ef40ecba973cc774a50395aac # v3.25.13
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository
diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index 1ed1bbcdc..4594a1de4 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -70,7 +70,7 @@ jobs:
       uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
     - name: Login to GitHub Container Registry
-      uses: docker/login-action@0d4c9c5ea7693da7b068278f7b52bda2a190a446 # v3.2.0
+      uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
       with:
         username: ${{ secrets.DOCKERHUB_USERNAME }}
         password: ${{ secrets.DOCKERHUB_TOKEN }}

From e1d81b78188a6e439b877bc4f6c493e281a00587 Mon Sep 17 00:00:00 2001
From: Chakrit Wichian <chakrit@users.noreply.github.com>
Date: Mon, 29 Jul 2024 15:28:45 +0700
Subject: [PATCH 1367/1641] Docs: Clarify `from-to-www` redirect direction.
 (#11682)

* docs: Clarify from-to-www redirect direction.

This was not clear to me when reading the docs whether the ingress will
redirect from non-www to with-www or the reverse. It's also not very
clear from just grepping around the codebase. I found the answer by
reading from this reddit link:

https://www.reddit.com/r/kubernetes/comments/pbl033/k8s_ingress_redirecting_www_to_nonwww_domains/

So, to save time for other people doing the same, which I assumes is a
lot of people since it's a common scenario, this little revision in the
docs is warranted.

* Docs: Implement suggestion.

---------

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 docs/user-guide/nginx-configuration/annotations.md | 5 ++++-
 internal/ingress/annotations/redirect/redirect.go  | 2 +-
 2 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 47ebd30e3..f90e87868 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -655,7 +655,10 @@ To preserve the trailing slash in the URI with `ssl-redirect`, set `nginx.ingres
 
 ### Redirect from/to www
 
-In some scenarios is required to redirect from `www.domain.com` to `domain.com` or vice versa.
+In some scenarios, it is required to redirect from `www.domain.com` to `domain.com` or vice versa, which way the redirect is performed depends on the configured `host` value in the Ingress object.
+
+For example, if `.spec.rules.host` is configured with a value like `www.example.com`, then this annotation will redirect to `example.com`. If `.spec.rules.host` is configured with a value like `example.com`, so without a `www`, then this annotation will redirect to `www.example.com` instead.
+
 To enable this feature use the annotation `nginx.ingress.kubernetes.io/from-to-www-redirect: "true"`
 
 !!! attention
diff --git a/internal/ingress/annotations/redirect/redirect.go b/internal/ingress/annotations/redirect/redirect.go
index b58e35171..e774b2fe8 100644
--- a/internal/ingress/annotations/redirect/redirect.go
+++ b/internal/ingress/annotations/redirect/redirect.go
@@ -51,7 +51,7 @@ var redirectAnnotations = parser.Annotation{
 			Validator:     parser.ValidateBool,
 			Scope:         parser.AnnotationScopeLocation,
 			Risk:          parser.AnnotationRiskLow, // Low, as it allows just a set of options
-			Documentation: `In some scenarios is required to redirect from www.domain.com to domain.com or vice versa. To enable this feature use this annotation.`,
+			Documentation: `In some scenarios, it is required to redirect from www.domain.com to domain.com or vice versa, which way the redirect is performed depends on the configured host value in the Ingress object.`,
 		},
 		temporalRedirectAnnotation: {
 			Validator: parser.ValidateRegex(parser.URLIsValidRegex, false),

From aa5b496535787bda6850cc53d3735010581ac2d1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 29 Jul 2024 04:35:48 -0700
Subject: [PATCH 1368/1641] Bump the all group with 2 updates (#11695)

Bumps the all group with 2 updates: [ossf/scorecard-action](https://github.com/ossf/scorecard-action) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `ossf/scorecard-action` from 2.3.3 to 2.4.0
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](https://github.com/ossf/scorecard-action/compare/dc50aa9510b46c811795eb24b2f1ba02a914e534...62b2cac7ed8198b15735ed49ab1e5cf35480ba46)

Updates `github/codeql-action` from 3.25.13 to 3.25.15
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/2d790406f505036ef40ecba973cc774a50395aac...afb54ba388a7dca6ecae48f608c4ff05ff4cc77a)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 4 ++--
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index a56a324fd..83837e312 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -32,7 +32,7 @@ jobs:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@dc50aa9510b46c811795eb24b2f1ba02a914e534 # v2.3.3
+        uses: ossf/scorecard-action@62b2cac7ed8198b15735ed49ab1e5cf35480ba46 # v2.4.0
         with:
           results_file: results.sarif
           results_format: sarif
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@2d790406f505036ef40ecba973cc774a50395aac # v3.25.13
+        uses: github/codeql-action/upload-sarif@afb54ba388a7dca6ecae48f608c4ff05ff4cc77a # v3.25.15
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 9d8efd256..14d5dc406 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@2d790406f505036ef40ecba973cc774a50395aac # v3.25.13
+        uses: github/codeql-action/upload-sarif@afb54ba388a7dca6ecae48f608c4ff05ff4cc77a # v3.25.15
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 04899b27a9b97ebe87d0f4728dc9af268d318449 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 29 Jul 2024 06:15:15 -0700
Subject: [PATCH 1369/1641] Bump github.com/onsi/ginkgo/v2 from 2.19.0 to
 2.19.1 in the all group (#11696)

* Bump github.com/onsi/ginkgo/v2 from 2.19.0 to 2.19.1 in the all group

Bumps the all group with 1 update: [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo).


Updates `github.com/onsi/ginkgo/v2` from 2.19.0 to 2.19.1
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.19.0...v2.19.1)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump github.com/onsi/ginkgo/v2 from 2.19.0 to 2.19.1 elsewhere

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 build/run-in-docker.sh                    |  2 +-
 go.mod                                    |  4 ++--
 go.sum                                    | 12 ++++++------
 go.work.sum                               |  6 +++++-
 images/kube-webhook-certgen/rootfs/go.mod | 10 +++++-----
 images/kube-webhook-certgen/rootfs/go.sum | 20 ++++++++++----------
 images/test-runner/Makefile               |  4 ++--
 test/e2e/run-chart-test.sh                |  2 +-
 test/e2e/run-kind-e2e.sh                  |  2 +-
 9 files changed, 33 insertions(+), 29 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index d01e9c852..e59168091 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -82,7 +82,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.19.0
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.19.1
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/go.mod b/go.mod
index 0f0afce10..62241e201 100644
--- a/go.mod
+++ b/go.mod
@@ -16,7 +16,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.3
-	github.com/onsi/ginkgo/v2 v2.19.0
+	github.com/onsi/ginkgo/v2 v2.19.1
 	github.com/opencontainers/runc v1.1.13
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.1
@@ -63,7 +63,7 @@ require (
 	github.com/evanphx/json-patch/v5 v5.9.0 // indirect
 	github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa // indirect
 	github.com/go-errors/errors v1.5.1 // indirect
-	github.com/go-logr/logr v1.4.1 // indirect
+	github.com/go-logr/logr v1.4.2 // indirect
 	github.com/go-openapi/jsonpointer v0.21.0 // indirect
 	github.com/go-openapi/jsonreference v0.21.0 // indirect
 	github.com/go-openapi/swag v0.23.0 // indirect
diff --git a/go.sum b/go.sum
index 2d23a81c8..68326360f 100644
--- a/go.sum
+++ b/go.sum
@@ -44,8 +44,8 @@ github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa h1:RDBNVkRviHZtvD
 github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
 github.com/go-errors/errors v1.5.1 h1:ZwEMSLRCapFLflTpT7NKaAc7ukJ8ZPEjzlxt8rPN8bk=
 github.com/go-errors/errors v1.5.1/go.mod h1:sIVyrIiJhuEF+Pj9Ebtd6P/rEYROXFi3BopGUQ5a5Og=
-github.com/go-logr/logr v1.4.1 h1:pKouT5E8xu9zeFC39JXRDukb6JFQPXM5p5I91188VAQ=
-github.com/go-logr/logr v1.4.1/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
+github.com/go-logr/logr v1.4.2 h1:6pFjapn8bFcIbiKo3XT4j/BhANplGihG6tvd+8rYgrY=
+github.com/go-logr/logr v1.4.2/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
 github.com/go-logr/zapr v1.3.0 h1:XGdV8XW8zdwFiwOA2Dryh1gj2KRQyOOoNmBy4EplIcQ=
 github.com/go-logr/zapr v1.3.0/go.mod h1:YKepepNBd1u/oyhd/yQmtjVXmm9uML4IXUgMOwR8/Gg=
 github.com/go-openapi/jsonpointer v0.21.0 h1:YgdVicSA9vH5RiHs9TZW5oyafXZFc6+2Vc1rr/O9oNQ=
@@ -160,12 +160,12 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.19.0 h1:9Cnnf7UHo57Hy3k6/m5k3dRfGTMXGvxhHFvkDTCTpvA=
-github.com/onsi/ginkgo/v2 v2.19.0/go.mod h1:rlwLi9PilAFJ8jCg9UE1QP6VBpd6/xj3SRC0d6TU0To=
+github.com/onsi/ginkgo/v2 v2.19.1 h1:QXgq3Z8Crl5EL1WBAC98A5sEBHARrAJNzAmMxzLcRF0=
+github.com/onsi/ginkgo/v2 v2.19.1/go.mod h1:O3DtEWQkPa/F7fBMgmZQKKsluAy8pd3rEQdrjkPb9zA=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.33.1 h1:dsYjIxxSR755MDmKVsaFQTE22ChNBcuuTWgkUDSubOk=
-github.com/onsi/gomega v1.33.1/go.mod h1:U4R44UsT+9eLIaYRB2a5qajjtQYn0hauxvRm16AVYg0=
+github.com/onsi/gomega v1.34.0 h1:eSSPsPNp6ZpsG8X1OVmOTxig+CblTc4AxpPBykhe2Os=
+github.com/onsi/gomega v1.34.0/go.mod h1:MIKI8c+f+QLWk+hxbePD4i0LMJSExPaZOVfkoex4cAo=
 github.com/opencontainers/runc v1.1.13 h1:98S2srgG9vw0zWcDpFMn5TRrh8kLxa/5OFUstuUhmRs=
 github.com/opencontainers/runc v1.1.13/go.mod h1:R016aXacfp/gwQBYw2FDGa9m+n6atbLWrYY8hNMT/sA=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
diff --git a/go.work.sum b/go.work.sum
index 847afcea0..3a38ab8ec 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -671,6 +671,7 @@ github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbV
 github.com/go-logr/logr v1.2.2/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/logr v1.2.3/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/logr v1.2.4/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
+github.com/go-logr/logr v1.4.1/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
 github.com/go-logr/stdr v1.2.2 h1:hSWxHoqTgW2S2qGc0LTAI563KZ5YKYRhT3MFKZMbjag=
 github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE=
 github.com/go-openapi/jsonpointer v0.19.6/go.mod h1:osyAmYz/mB/C3I+WsTTSgw1ONzaLJoLCyoi6/zppojs=
@@ -803,12 +804,15 @@ github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f h1:y5//uYreIhSUg3J
 github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
 github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65 h1:Og+dVkxEQNvRGU2vUKeOwYT2UJ+pEaDMWB6tIQnIh6A=
 github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65/go.mod h1:Tx6UMSMyIsjLG/VU/F6xA1+0XI+/f9o1dGJnf1l+bPg=
+github.com/onsi/ginkgo/v2 v/go.mod h1:rlwLi9PilAFJ8jCg9UE1QP6VBpd6/xj3SRC0d6TU0To=
 github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
 github.com/onsi/ginkgo/v2 v2.15.0/go.mod h1:HlxMHtYF57y6Dpf+mc5529KKmSq9h2FpCF+/ZkwUxKM=
 github.com/onsi/ginkgo/v2 v2.17.2/go.mod h1:nP2DPOQoNsQmsVyv5rDA8JkXQoCs6goXIvr/PRJ1eCc=
+github.com/onsi/ginkgo/v2 v2.19.0/go.mod h1:rlwLi9PilAFJ8jCg9UE1QP6VBpd6/xj3SRC0d6TU0To=
 github.com/onsi/gomega v1.19.0/go.mod h1:LY+I3pBVzYsTBU1AnDwOSxaYi9WoWiqgwooUqq9yPro=
 github.com/onsi/gomega v1.31.0/go.mod h1:DW9aCi7U6Yi40wNVAvT6kzFnEVEI5n3DloYBiKiT6zk=
 github.com/onsi/gomega v1.33.0/go.mod h1:+925n5YtiFsLzzafLUHzVMBpvvRAzrydIBiSIxjX3wY=
+github.com/onsi/gomega v1.33.1/go.mod h1:U4R44UsT+9eLIaYRB2a5qajjtQYn0hauxvRm16AVYg0=
 github.com/opencontainers/selinux v1.10.0 h1:rAiKF8hTcgLI3w0DHm6i0ylVVcOrlgR1kK99DRLDhyU=
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
 github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde h1:x0TT0RDC7UhAVbbWWBzr41ElhJx5tXPWkIHA2HWPRuw=
@@ -958,7 +962,7 @@ golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.19.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.21.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/telemetry v0.0.0-20240208230135-b75ee8823808/go.mod h1:KG1lNk5ZFNssSZLrpVb4sMXKMpGwGXOxSG3rnu2gZQQ=
 golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2 h1:IRJeR9r1pYWsHKTRe/IInb7lYvbBVIqOgsX/u0mbOWY=
 golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2/go.mod h1:TeRTkGYfJXctD9OcfyVLyj2J3IxLnKwHJR8f4D8a3YE=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 9c7f96e1b..b32fd22bd 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -16,7 +16,7 @@ require (
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/emicklei/go-restful/v3 v3.11.3 // indirect
 	github.com/evanphx/json-patch v5.9.0+incompatible // indirect
-	github.com/go-logr/logr v1.4.1 // indirect
+	github.com/go-logr/logr v1.4.2 // indirect
 	github.com/go-openapi/jsonpointer v0.20.2 // indirect
 	github.com/go-openapi/jsonreference v0.20.4 // indirect
 	github.com/go-openapi/swag v0.22.9 // indirect
@@ -33,19 +33,19 @@ require (
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
-	github.com/onsi/ginkgo/v2 v2.19.0 // indirect
-	github.com/onsi/gomega v1.33.1 // indirect
+	github.com/onsi/ginkgo/v2 v2.19.1 // indirect
+	github.com/onsi/gomega v1.34.0 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
 	github.com/stretchr/testify v1.9.0 // indirect
 	golang.org/x/net v0.25.0 // indirect
 	golang.org/x/oauth2 v0.18.0 // indirect
-	golang.org/x/sys v0.20.0 // indirect
+	golang.org/x/sys v0.21.0 // indirect
 	golang.org/x/term v0.20.0 // indirect
 	golang.org/x/text v0.15.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	google.golang.org/appengine v1.6.8 // indirect
-	google.golang.org/protobuf v1.33.0 // indirect
+	google.golang.org/protobuf v1.34.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 57b4a450b..4229215bd 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -6,8 +6,8 @@ github.com/emicklei/go-restful/v3 v3.11.3 h1:yagOQz/38xJmcNeZJtrUcKjkHRltIaIFXKW
 github.com/emicklei/go-restful/v3 v3.11.3/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
 github.com/evanphx/json-patch v5.9.0+incompatible h1:fBXyNpNMuTTDdquAq/uisOr2lShz4oaXpDTX2bLe7ls=
 github.com/evanphx/json-patch v5.9.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
-github.com/go-logr/logr v1.4.1 h1:pKouT5E8xu9zeFC39JXRDukb6JFQPXM5p5I91188VAQ=
-github.com/go-logr/logr v1.4.1/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
+github.com/go-logr/logr v1.4.2 h1:6pFjapn8bFcIbiKo3XT4j/BhANplGihG6tvd+8rYgrY=
+github.com/go-logr/logr v1.4.2/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
 github.com/go-openapi/jsonpointer v0.20.2 h1:mQc3nmndL8ZBzStEo3JYF8wzmeWffDH4VbXz58sAx6Q=
 github.com/go-openapi/jsonpointer v0.20.2/go.mod h1:bHen+N0u1KEO3YlmqOjTT9Adn1RfD91Ar825/PuiRVs=
 github.com/go-openapi/jsonreference v0.20.4 h1:bKlDxQxQJgwpUSgOENiMPzCTBVuc7vTdXSSgNeAhojU=
@@ -61,10 +61,10 @@ github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/onrik/logrus v0.11.0 h1:pu+BCaWL36t0yQaj/2UHK2erf88dwssAKOT51mxPUVs=
 github.com/onrik/logrus v0.11.0/go.mod h1:fO2vlZwIdti6PidD3gV5YKt9Lq5ptpnP293RAe1ITwk=
-github.com/onsi/ginkgo/v2 v2.19.0 h1:9Cnnf7UHo57Hy3k6/m5k3dRfGTMXGvxhHFvkDTCTpvA=
-github.com/onsi/ginkgo/v2 v2.19.0/go.mod h1:rlwLi9PilAFJ8jCg9UE1QP6VBpd6/xj3SRC0d6TU0To=
-github.com/onsi/gomega v1.33.1 h1:dsYjIxxSR755MDmKVsaFQTE22ChNBcuuTWgkUDSubOk=
-github.com/onsi/gomega v1.33.1/go.mod h1:U4R44UsT+9eLIaYRB2a5qajjtQYn0hauxvRm16AVYg0=
+github.com/onsi/ginkgo/v2 v2.19.1 h1:QXgq3Z8Crl5EL1WBAC98A5sEBHARrAJNzAmMxzLcRF0=
+github.com/onsi/ginkgo/v2 v2.19.1/go.mod h1:O3DtEWQkPa/F7fBMgmZQKKsluAy8pd3rEQdrjkPb9zA=
+github.com/onsi/gomega v1.34.0 h1:eSSPsPNp6ZpsG8X1OVmOTxig+CblTc4AxpPBykhe2Os=
+github.com/onsi/gomega v1.34.0/go.mod h1:MIKI8c+f+QLWk+hxbePD4i0LMJSExPaZOVfkoex4cAo=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
@@ -121,8 +121,8 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.20.0 h1:Od9JTbYCk261bKm4M/mw7AklTlFYIa0bIp9BgSm1S8Y=
-golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.21.0 h1:rF+pYz3DAGSQAxAu1CbC7catZg4ebC4UIeIhKxBZvws=
+golang.org/x/sys v0.21.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.20.0 h1:VnkxpohqXaOBYJtBmEppKUG6mXpi+4O6purfc2+sMhw=
@@ -150,8 +150,8 @@ google.golang.org/appengine v1.6.8 h1:IhEN5q69dyKagZPYMSdIjS2HqprW324FRQZJcGqPAs
 google.golang.org/appengine v1.6.8/go.mod h1:1jJ3jBArFh5pcgW8gCtRJnepW8FzD1V44FJffLiz/Ds=
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.33.0 h1:uNO2rsAINq/JlFpSdYEKIZ0uKD/R9cpdv0T+yoGwGmI=
-google.golang.org/protobuf v1.33.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
+google.golang.org/protobuf v1.34.1 h1:9ddQBjfCyZPOHPUiPxpYESBLc+T8P3E+Vo4IbKZgFWg=
+google.golang.org/protobuf v1.34.1/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 7e30d432f..9045b8a53 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -59,7 +59,7 @@ image:
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.19.0 \
+		--build-arg GINKGO_VERSION=2.19.1 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -80,7 +80,7 @@ build: ensure-buildx
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.19.0 \
+		--build-arg GINKGO_VERSION=2.19.1 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 1f8a2ffc7..698bd6b57 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.19.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.19.1
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index 640632a1b..9ef6f5acd 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -96,7 +96,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.19.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.19.1
   fi
 
   echo "[dev-env] .. done building controller images"

From 36df47fcc4be503a5db028dd2d8e6d9475353ad2 Mon Sep 17 00:00:00 2001
From: Gerald Pape <ubergesundheit@users.noreply.github.com>
Date: Mon, 29 Jul 2024 15:27:15 +0200
Subject: [PATCH 1370/1641] Chart: Explicitly set `runAsGroup`. (#11679)

* Chart: Explicitly set `runAsGroup`.

Set a default value for the runAsGroup in container securityContexts of
the controller and default backend.

Also set the runAsGroup for opentelemetry and webhook Job container
securityContexts.

Signed-off-by: Gerald Pape <gerald@giantswarm.io>

* Apply suggestions from code review

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>

---------

Signed-off-by: Gerald Pape <gerald@giantswarm.io>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 charts/ingress-nginx/README.md                        |  9 ++++++---
 charts/ingress-nginx/templates/_helpers.tpl           |  2 ++
 .../tests/controller-daemonset_test.yaml              |  9 +++++++++
 .../tests/controller-deployment_test.yaml             |  8 ++++++++
 .../tests/default-backend-deployment_test.yaml        |  9 +++++++++
 charts/ingress-nginx/values.yaml                      | 11 ++++++++++-
 6 files changed, 44 insertions(+), 4 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 0acf3da91..64abf33cc 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -242,7 +242,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.certificate | string | `"/usr/local/certificates/cert"` |  |
 | controller.admissionWebhooks.createSecretJob.name | string | `"create"` |  |
 | controller.admissionWebhooks.createSecretJob.resources | object | `{}` |  |
-| controller.admissionWebhooks.createSecretJob.securityContext | object | `{"allowPrivilegeEscalation":false,"capabilities":{"drop":["ALL"]},"readOnlyRootFilesystem":true,"runAsNonRoot":true,"runAsUser":65532,"seccompProfile":{"type":"RuntimeDefault"}}` | Security context for secret creation containers |
+| controller.admissionWebhooks.createSecretJob.securityContext | object | `{"allowPrivilegeEscalation":false,"capabilities":{"drop":["ALL"]},"readOnlyRootFilesystem":true,"runAsGroup":65532,"runAsNonRoot":true,"runAsUser":65532,"seccompProfile":{"type":"RuntimeDefault"}}` | Security context for secret creation containers |
 | controller.admissionWebhooks.enabled | bool | `true` |  |
 | controller.admissionWebhooks.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | controller.admissionWebhooks.extraEnvs | list | `[]` | Additional environment variables to set |
@@ -273,7 +273,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.patch.tolerations | list | `[]` |  |
 | controller.admissionWebhooks.patchWebhookJob.name | string | `"patch"` |  |
 | controller.admissionWebhooks.patchWebhookJob.resources | object | `{}` |  |
-| controller.admissionWebhooks.patchWebhookJob.securityContext | object | `{"allowPrivilegeEscalation":false,"capabilities":{"drop":["ALL"]},"readOnlyRootFilesystem":true,"runAsNonRoot":true,"runAsUser":65532,"seccompProfile":{"type":"RuntimeDefault"}}` | Security context for webhook patch containers |
+| controller.admissionWebhooks.patchWebhookJob.securityContext | object | `{"allowPrivilegeEscalation":false,"capabilities":{"drop":["ALL"]},"readOnlyRootFilesystem":true,"runAsGroup":65532,"runAsNonRoot":true,"runAsUser":65532,"seccompProfile":{"type":"RuntimeDefault"}}` | Security context for webhook patch containers |
 | controller.admissionWebhooks.port | int | `8443` |  |
 | controller.admissionWebhooks.service.annotations | object | `{}` |  |
 | controller.admissionWebhooks.service.externalIPs | list | `[]` |  |
@@ -331,8 +331,9 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.readOnlyRootFilesystem | bool | `false` |  |
 | controller.image.registry | string | `"registry.k8s.io"` |  |
+| controller.image.runAsGroup | int | `82` | This value must not be changed using the official image. uid=101(www-data) gid=82(www-data) groups=82(www-data) |
 | controller.image.runAsNonRoot | bool | `true` |  |
-| controller.image.runAsUser | int | `101` |  |
+| controller.image.runAsUser | int | `101` | This value must not be changed using the official image. uid=101(www-data) gid=82(www-data) groups=82(www-data) |
 | controller.image.seccompProfile.type | string | `"RuntimeDefault"` |  |
 | controller.image.tag | string | `"v1.11.1"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
@@ -396,6 +397,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.opentelemetry.containerSecurityContext.allowPrivilegeEscalation | bool | `false` |  |
 | controller.opentelemetry.containerSecurityContext.capabilities.drop[0] | string | `"ALL"` |  |
 | controller.opentelemetry.containerSecurityContext.readOnlyRootFilesystem | bool | `true` |  |
+| controller.opentelemetry.containerSecurityContext.runAsGroup | int | `65532` |  |
 | controller.opentelemetry.containerSecurityContext.runAsNonRoot | bool | `true` |  |
 | controller.opentelemetry.containerSecurityContext.runAsUser | int | `65532` | The image's default user, inherited from its base image `cgr.dev/chainguard/static`. |
 | controller.opentelemetry.containerSecurityContext.seccompProfile.type | string | `"RuntimeDefault"` |  |
@@ -505,6 +507,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.image.pullPolicy | string | `"IfNotPresent"` |  |
 | defaultBackend.image.readOnlyRootFilesystem | bool | `true` |  |
 | defaultBackend.image.registry | string | `"registry.k8s.io"` |  |
+| defaultBackend.image.runAsGroup | int | `65534` |  |
 | defaultBackend.image.runAsNonRoot | bool | `true` |  |
 | defaultBackend.image.runAsUser | int | `65534` |  |
 | defaultBackend.image.seccompProfile.type | string | `"RuntimeDefault"` |  |
diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index 0c6a3e207..271227cf0 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -47,6 +47,7 @@ Controller container security context.
 {{- else -}}
 runAsNonRoot: {{ .Values.controller.image.runAsNonRoot }}
 runAsUser: {{ .Values.controller.image.runAsUser }}
+runAsGroup: {{ .Values.controller.image.runAsGroup }}
 allowPrivilegeEscalation: {{ or .Values.controller.image.allowPrivilegeEscalation .Values.controller.image.chroot }}
 {{- if .Values.controller.image.seccompProfile }}
 seccompProfile: {{ toYaml .Values.controller.image.seccompProfile | nindent 2 }}
@@ -222,6 +223,7 @@ Default backend container security context.
 {{- else -}}
 runAsNonRoot: {{ .Values.defaultBackend.image.runAsNonRoot }}
 runAsUser: {{ .Values.defaultBackend.image.runAsUser }}
+runAsGroup: {{ .Values.defaultBackend.image.runAsGroup }}
 allowPrivilegeEscalation: {{ .Values.defaultBackend.image.allowPrivilegeEscalation }}
 {{- if .Values.defaultBackend.image.seccompProfile }}
 seccompProfile: {{ toYaml .Values.defaultBackend.image.seccompProfile | nindent 2 }}
diff --git a/charts/ingress-nginx/tests/controller-daemonset_test.yaml b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
index 6ee794af9..982c9c974 100644
--- a/charts/ingress-nginx/tests/controller-daemonset_test.yaml
+++ b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
@@ -138,3 +138,12 @@ tests:
                         values:
                           - controller
                   topologyKey: kubernetes.io/hostname
+
+  - it: should create a DaemonSet with `runAsGroup` if `controller.image.runAsGroup` is set
+    set:
+      controller.kind: DaemonSet
+      controller.image.runAsGroup: 1000
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].securityContext.runAsGroup
+          value: 1000
diff --git a/charts/ingress-nginx/tests/controller-deployment_test.yaml b/charts/ingress-nginx/tests/controller-deployment_test.yaml
index 82b97a0f7..a2c5a15ea 100644
--- a/charts/ingress-nginx/tests/controller-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/controller-deployment_test.yaml
@@ -160,3 +160,11 @@ tests:
                         values:
                           - controller
                   topologyKey: kubernetes.io/hostname
+
+  - it: should create a Deployment with `runAsGroup` if `controller.image.runAsGroup` is set
+    set:
+      controller.image.runAsGroup: 1000
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].securityContext.runAsGroup
+          value: 1000
diff --git a/charts/ingress-nginx/tests/default-backend-deployment_test.yaml b/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
index e237fe7e3..4321075e9 100644
--- a/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
@@ -135,3 +135,12 @@ tests:
                         values:
                           - default-backend
                   topologyKey: kubernetes.io/hostname
+
+  - it: should create a Deployment with `runAsGroup` if `defaultBackend.image.runAsGroup` is set
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.image.runAsGroup: 1000
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].securityContext.runAsGroup
+          value: 1000
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 92735d2a1..9d309627d 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -31,8 +31,12 @@ controller:
     digestChroot: sha256:7cabe4bd7558bfdf5b707976d7be56fd15ffece735d7c90fc238b6eda290fd8d
     pullPolicy: IfNotPresent
     runAsNonRoot: true
-    # www-data -> uid 101
+    # -- This value must not be changed using the official image.
+    # uid=101(www-data) gid=82(www-data) groups=82(www-data)
     runAsUser: 101
+    # -- This value must not be changed using the official image.
+    # uid=101(www-data) gid=82(www-data) groups=82(www-data)
+    runAsGroup: 82
     allowPrivilegeEscalation: false
     seccompProfile:
       type: RuntimeDefault
@@ -688,6 +692,7 @@ controller:
   #   containerSecurityContext:
   #     runAsNonRoot: true
   #     runAsUser: <user-id>
+  #     runAsGroup: <group-id>
   #     allowPrivilegeEscalation: false
   #     seccompProfile:
   #       type: RuntimeDefault
@@ -717,6 +722,7 @@ controller:
       runAsNonRoot: true
       # -- The image's default user, inherited from its base image `cgr.dev/chainguard/static`.
       runAsUser: 65532
+      runAsGroup: 65532
       allowPrivilegeEscalation: false
       seccompProfile:
         type: RuntimeDefault
@@ -768,6 +774,7 @@ controller:
       securityContext:
         runAsNonRoot: true
         runAsUser: 65532
+        runAsGroup: 65532
         allowPrivilegeEscalation: false
         seccompProfile:
           type: RuntimeDefault
@@ -788,6 +795,7 @@ controller:
       securityContext:
         runAsNonRoot: true
         runAsUser: 65532
+        runAsGroup: 65532
         allowPrivilegeEscalation: false
         seccompProfile:
           type: RuntimeDefault
@@ -963,6 +971,7 @@ defaultBackend:
     runAsNonRoot: true
     # nobody user -> uid 65534
     runAsUser: 65534
+    runAsGroup: 65534
     allowPrivilegeEscalation: false
     seccompProfile:
       type: RuntimeDefault

From b0f81825fe1969fe68db18e4bd5711f06ac6f154 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 29 Jul 2024 22:26:44 +0200
Subject: [PATCH 1371/1641] Tests: Bump `e2e-test-runner` to
 v20240729-04899b27. (#11702)

---
 build/run-in-docker.sh     | 2 +-
 test/e2e-image/Makefile    | 2 +-
 test/e2e/run-chart-test.sh | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index e59168091..822ff265a 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240717-1fe74b5f@sha256:fce2ca5e683708cf76c6ba759f351fd7a592c5a56841491cf2d08784154ebf75}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240729-04899b27@sha256:9f067e6c861343da47f5851bf255aecdeb33a61fc5991a6c659fb237a3f619f9}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index a76c65d10..9ade9961f 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240717-1fe74b5f@sha256:fce2ca5e683708cf76c6ba759f351fd7a592c5a56841491cf2d08784154ebf75"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240729-04899b27@sha256:9f067e6c861343da47f5851bf255aecdeb33a61fc5991a6c659fb237a3f619f9"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 698bd6b57..106029c77 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -109,7 +109,7 @@ docker run --rm --interactive --network host \
     --volume $KUBECONFIG:/root/.kube/config \
     --volume "${DIR}/../../":/workdir \
     --workdir /workdir \
-    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240717-1fe74b5f@sha256:fce2ca5e683708cf76c6ba759f351fd7a592c5a56841491cf2d08784154ebf75 \
+    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240729-04899b27@sha256:9f067e6c861343da47f5851bf255aecdeb33a61fc5991a6c659fb237a3f619f9 \
         ct install \
         --charts charts/ingress-nginx \
         --helm-extra-args "--timeout 60s"

From e972a35e98d476171746629dec9ddc3ea4d3be05 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 1 Aug 2024 09:28:12 +0200
Subject: [PATCH 1372/1641] Chart: Remove `isControllerTagValid`. (#11710)

---
 charts/ingress-nginx/templates/_helpers.tpl            |  9 ---------
 .../ingress-nginx/templates/controller-daemonset.yaml  |  1 -
 .../ingress-nginx/templates/controller-deployment.yaml |  1 -
 .../ingress-nginx/tests/controller-daemonset_test.yaml | 10 ++++++++++
 .../tests/controller-deployment_test.yaml              |  9 +++++++++
 5 files changed, 19 insertions(+), 11 deletions(-)

diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index 271227cf0..51bacbe38 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -246,15 +246,6 @@ Return the appropriate apiGroup for PodSecurityPolicy.
 {{- end -}}
 {{- end -}}
 
-{{/*
-Check the ingress controller version tag is at most three versions behind the last release
-*/}}
-{{- define "isControllerTagValid" -}}
-{{- if not (semverCompare ">=0.27.0-0" .Values.controller.image.tag) -}}
-{{- fail "Controller container image tag should be 0.27.0 or higher" -}}
-{{- end -}}
-{{- end -}}
-
 {{/*
 Extra modules.
 */}}
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index 509d7a4c4..fcc633d3d 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -1,5 +1,4 @@
 {{- if eq .Values.controller.kind "DaemonSet" -}}
-{{- include  "isControllerTagValid" . -}}
 apiVersion: apps/v1
 kind: DaemonSet
 metadata:
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 77ea0052f..5211acd0b 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -1,5 +1,4 @@
 {{- if eq .Values.controller.kind "Deployment" -}}
-{{- include  "isControllerTagValid" . -}}
 apiVersion: apps/v1
 kind: Deployment
 metadata:
diff --git a/charts/ingress-nginx/tests/controller-daemonset_test.yaml b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
index 982c9c974..72cba88c4 100644
--- a/charts/ingress-nginx/tests/controller-daemonset_test.yaml
+++ b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
@@ -147,3 +147,13 @@ tests:
       - equal:
           path: spec.template.spec.containers[0].securityContext.runAsGroup
           value: 1000
+
+  - it: should create a DaemonSet with a custom tag if `controller.image.tag` is set
+    set:
+      controller.kind: DaemonSet
+      controller.image.tag: my-little-custom-tag
+      controller.image.digest: sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].image
+          value: registry.k8s.io/ingress-nginx/controller:my-little-custom-tag@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
diff --git a/charts/ingress-nginx/tests/controller-deployment_test.yaml b/charts/ingress-nginx/tests/controller-deployment_test.yaml
index a2c5a15ea..f481d498a 100644
--- a/charts/ingress-nginx/tests/controller-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/controller-deployment_test.yaml
@@ -168,3 +168,12 @@ tests:
       - equal:
           path: spec.template.spec.containers[0].securityContext.runAsGroup
           value: 1000
+
+  - it: should create a Deployment with a custom tag if `controller.image.tag` is set
+    set:
+      controller.image.tag: my-little-custom-tag
+      controller.image.digest: sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].image
+          value: registry.k8s.io/ingress-nginx/controller:my-little-custom-tag@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd

From c6e86c86dc0a007e3bda34ee6eee9cabed34eb2c Mon Sep 17 00:00:00 2001
From: dvglab <vdruginin@gmail.com>
Date: Thu, 1 Aug 2024 13:28:03 +0300
Subject: [PATCH 1373/1641] Docs: Fix `from-to-www` redirect description.
 (#11712)

---
 docs/user-guide/nginx-configuration/annotations.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index f90e87868..34c5f18d5 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -657,7 +657,7 @@ To preserve the trailing slash in the URI with `ssl-redirect`, set `nginx.ingres
 
 In some scenarios, it is required to redirect from `www.domain.com` to `domain.com` or vice versa, which way the redirect is performed depends on the configured `host` value in the Ingress object.
 
-For example, if `.spec.rules.host` is configured with a value like `www.example.com`, then this annotation will redirect to `example.com`. If `.spec.rules.host` is configured with a value like `example.com`, so without a `www`, then this annotation will redirect to `www.example.com` instead.
+For example, if `.spec.rules.host` is configured with a value like `www.example.com`, then this annotation will redirect from `example.com` to `www.example.com`. If `.spec.rules.host` is configured with a value like `example.com`, so without a `www`, then this annotation will redirect from `www.example.com` to `example.com` instead.
 
 To enable this feature use the annotation `nginx.ingress.kubernetes.io/from-to-www-redirect: "true"`
 

From 1a13bf5c0d7a7b9e26da72d2aa9540073681139e Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Fri, 2 Aug 2024 06:56:56 +0800
Subject: [PATCH 1374/1641] Missing anchors in regular expression. (#11717)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Co-authored-by: André Storfjord Kristiansen <33384479+dev-bio@users.noreply.github.com>
---
 internal/ingress/annotations/authtls/main.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/internal/ingress/annotations/authtls/main.go b/internal/ingress/annotations/authtls/main.go
index b331a215e..1c6bad485 100644
--- a/internal/ingress/annotations/authtls/main.go
+++ b/internal/ingress/annotations/authtls/main.go
@@ -41,7 +41,7 @@ const (
 )
 
 var (
-	authVerifyClientRegex = regexp.MustCompile(`on|off|optional|optional_no_ca`)
+	authVerifyClientRegex = regexp.MustCompile(`^(on|off|optional|optional_no_ca)$`)
 	redirectRegex         = regexp.MustCompile(`^((https?://)?[A-Za-z0-9\-.]*(:\d+)?/[A-Za-z0-9\-.]*)?$`)
 )
 

From c102e0b93044ad9d274b9eae335190c3b10ae971 Mon Sep 17 00:00:00 2001
From: Jintao Zhang <zhangjintao9020@gmail.com>
Date: Fri, 2 Aug 2024 21:37:45 +0800
Subject: [PATCH 1375/1641] Perform some cleaning operations on line breaks.
 (#11720)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Co-authored-by: André Storfjord Kristiansen <33384479+dev-bio@users.noreply.github.com>
---
 internal/ingress/controller/template/template.go | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index c70406cf0..8628f8090 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -136,6 +136,13 @@ func cleanConf(in, out *bytes.Buffer) error {
 			case ' ', '\t':
 				needOutput = lineStarted
 			case '\r':
+				rest := in.Bytes()
+				if len(rest) > 0 {
+					if rest[0] != '\n' {
+						c = ' '
+						needOutput = lineStarted
+					}
+				}
 			case '\n':
 				needOutput = !(!lineStarted && emptyLineWritten)
 				nextLineStarted = false
@@ -150,6 +157,13 @@ func cleanConf(in, out *bytes.Buffer) error {
 		case stateComment:
 			switch c {
 			case '\r':
+				rest := in.Bytes()
+				if len(rest) > 0 {
+					if rest[0] != '\n' {
+						c = ' '
+						needOutput = lineStarted
+					}
+				}
 			case '\n':
 				needOutput = true
 				nextLineStarted = false

From 2e3c2c121d10a64f46cd49e5f2a32977cc886cb6 Mon Sep 17 00:00:00 2001
From: Gaston Festari <cilindrox@gmail.com>
Date: Fri, 2 Aug 2024 12:59:07 -0300
Subject: [PATCH 1376/1641] Docs: Fix typo in AWS LB Controller reference
 (#11723)

---
 docs/deploy/index.md | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 9711f2b62..214bc4f70 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -34,11 +34,11 @@ ingress controller for your particular environment or cloud provider.
   - ... [Bare-metal](#bare-metal-clusters)
 - [Miscellaneous](#miscellaneous)
 
-<!-- TODO: We have subdirectories for kubernetes versions now because of a PR 
-https://github.com/kubernetes/ingress-nginx/pull/8162 . You can see this here 
-https://github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud . 
-We need to add documentation here that is clear and unambiguous in guiding users to pick the deployment manifest 
-under a subdirectory, based on the K8S version being used. But until the explicit clear docs land here, users are 
+<!-- TODO: We have subdirectories for kubernetes versions now because of a PR
+https://github.com/kubernetes/ingress-nginx/pull/8162 . You can see this here
+https://github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/cloud .
+We need to add documentation here that is clear and unambiguous in guiding users to pick the deployment manifest
+under a subdirectory, based on the K8S version being used. But until the explicit clear docs land here, users are
 free to use those subdirectories and get the manifest(s) related to their K8S version. -->
 
 ## Quick start
@@ -67,7 +67,7 @@ helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx
 
 !!! attention "Helm install on AWS/GCP/Azure/Other providers"
     The *ingress-nginx-controller helm-chart is a generic install out of the box*. The default set of helm values is **not** configured for installation on any infra provider. The annotations that are applicable to the cloud provider must be customized by the users.<br/>
-    See [AWS LB Constroller](https://kubernetes-sigs.github.io/aws-load-balancer-controller/v2.2/guide/service/annotations/).<br/>
+    See [AWS LB Controller](https://kubernetes-sigs.github.io/aws-load-balancer-controller/v2.2/guide/service/annotations/).<br/>
     Examples of some annotations needed for the service resource of `--type LoadBalancer` on AWS are below:
     ```yaml
       annotations:
@@ -338,7 +338,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
     `10254/tcp` to also allow access to port `8443/tcp`. More information can be found in the
     [Official GCP Documentation](https://cloud.google.com/load-balancing/docs/tcp/setting-up-tcp#config-hc-firewall).
 
-    See the [GKE documentation](https://cloud.google.com/kubernetes-engine/docs/how-to/private-clusters#add_firewall_rules) 
+    See the [GKE documentation](https://cloud.google.com/kubernetes-engine/docs/how-to/private-clusters#add_firewall_rules)
     on adding rules and the [Kubernetes issue](https://github.com/kubernetes/kubernetes/issues/79739) for more detail.
 
 Proxy-protocol is supported in GCE check the [Official Documentations on how to enable.](https://cloud.google.com/load-balancing/docs/tcp/setting-up-tcp#proxy-protocol)

From 56c83284c798f19e2bd75117fb4bd84a8085f8d0 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 5 Aug 2024 05:08:59 -0700
Subject: [PATCH 1377/1641] Bump the all group with 3 updates (#11727)

Bumps the all group with 3 updates: [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action), [actions/upload-artifact](https://github.com/actions/upload-artifact) and [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action).


Updates `docker/setup-buildx-action` from 3.5.0 to 3.6.1
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](https://github.com/docker/setup-buildx-action/compare/aa33708b10e362ff993539393ff100fa93ed6a27...988b5a0280414f521da01fcc63a27aeeb4b104db)

Updates `actions/upload-artifact` from 4.3.4 to 4.3.5
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/0b2256b8c012f0828dc542b3febcab082c67f72b...89ef406dd8d7e03cfd12d9e0a4a378f454709029)

Updates `golangci/golangci-lint-action` from 6.0.1 to 6.1.0
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/a4f60bb28d35aeee14e6880718e0c85ff1882e64...aaa42aa0628b4ae2578232a66b541047968fac86)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml              | 4 ++--
 .github/workflows/golangci-lint.yml    | 2 +-
 .github/workflows/images.yaml          | 2 +-
 .github/workflows/scorecards.yml       | 2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml | 2 +-
 5 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 3bd8bbb3d..a9ca9e229 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -124,7 +124,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@aa33708b10e362ff993539393ff100fa93ed6a27 # v3.5.0
+        uses: docker/setup-buildx-action@988b5a0280414f521da01fcc63a27aeeb4b104db # v3.6.1
         with:
           version: latest
 
@@ -163,7 +163,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
+        uses: actions/upload-artifact@89ef406dd8d7e03cfd12d9e0a4a378f454709029 # v4.3.5
         with:
           name: docker.tar.gz
           path: docker.tar.gz
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index b40eca1bb..dca8f07db 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -28,6 +28,6 @@ jobs:
           check-latest: true
 
       - name: golangci-lint
-        uses: golangci/golangci-lint-action@a4f60bb28d35aeee14e6880718e0c85ff1882e64 # v6.0.1
+        uses: golangci/golangci-lint-action@aaa42aa0628b4ae2578232a66b541047968fac86 # v6.1.0
         with:
           version: v1.56
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 92325c632..fe83f1dd3 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -200,7 +200,7 @@ jobs:
         uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf # v3.2.0
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@aa33708b10e362ff993539393ff100fa93ed6a27 # v3.5.0
+        uses: docker/setup-buildx-action@988b5a0280414f521da01fcc63a27aeeb4b104db # v3.6.1
         with:
           version: latest
           platforms: ${{ env.PLATFORMS }}
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 83837e312..db419a581 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
+        uses: actions/upload-artifact@89ef406dd8d7e03cfd12d9e0a4a378f454709029 # v4.3.5
         with:
           name: SARIF file
           path: results.sarif
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 114e1a45f..30502e999 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -50,7 +50,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports ${{ inputs.variation }}
-        uses: actions/upload-artifact@0b2256b8c012f0828dc542b3febcab082c67f72b # v4.3.4
+        uses: actions/upload-artifact@89ef406dd8d7e03cfd12d9e0a4a378f454709029 # v4.3.5
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}

From 26036777c9f81cf217e323cbd70c5ed8374911f6 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 5 Aug 2024 17:26:59 +0200
Subject: [PATCH 1378/1641] Go: Bump to v1.22.5. (#11634)

---
 GOLANG_VERSION                                    |  2 +-
 go.mod                                            |  4 +---
 go.work                                           |  2 +-
 images/custom-error-pages/rootfs/go.mod           |  2 +-
 images/ext-auth-example-authsvc/rootfs/Dockerfile |  4 ++--
 images/ext-auth-example-authsvc/rootfs/go.mod     |  2 +-
 images/fastcgi-helloserver/rootfs/Dockerfile      |  4 ++--
 images/go-grpc-greeter-server/rootfs/Dockerfile   |  4 ++--
 images/kube-webhook-certgen/rootfs/go.mod         |  2 +-
 images/opentelemetry/rootfs/Dockerfile            | 10 +++++-----
 images/opentelemetry/rootfs/build.sh              |  5 ++++-
 images/opentelemetry/rootfs/go.mod                |  2 +-
 magefiles/go.mod                                  |  2 +-
 13 files changed, 23 insertions(+), 22 deletions(-)

diff --git a/GOLANG_VERSION b/GOLANG_VERSION
index be02b337a..da9594fd6 100644
--- a/GOLANG_VERSION
+++ b/GOLANG_VERSION
@@ -1 +1 @@
-1.22.4
\ No newline at end of file
+1.22.5
diff --git a/go.mod b/go.mod
index 62241e201..6aeb96031 100644
--- a/go.mod
+++ b/go.mod
@@ -1,8 +1,6 @@
 module k8s.io/ingress-nginx
 
-go 1.22.0
-
-toolchain go1.22.4
+go 1.22.5
 
 require (
 	dario.cat/mergo v1.0.0
diff --git a/go.work b/go.work
index c963e3c0e..9da22b9ae 100644
--- a/go.work
+++ b/go.work
@@ -1,4 +1,4 @@
-go 1.22.0
+go 1.22.5
 
 use (
 	.
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index eebc562a5..75c488ae9 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.21
+go 1.22.5
 
 require github.com/prometheus/client_golang v1.11.1
 
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index ec611fa54..5942ac5b9 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,6 +1,6 @@
 ARG GOLANG_VERSION
 
-FROM golang:${GOLANG_VERSION}-alpine3.18 as builder
+FROM golang:${GOLANG_VERSION}-alpine3.20 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
@@ -9,4 +9,4 @@ RUN CGO_ENABLED=0 GOOS=linux go build -o authsvc authsvc.go
 FROM gcr.io/distroless/base-debian11
 COPY --from=builder /authsvc/authsvc /
 EXPOSE 8080
-ENTRYPOINT ["/authsvc"]
\ No newline at end of file
+ENTRYPOINT ["/authsvc"]
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index 8c3abdcf2..0079040cb 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,6 +1,6 @@
 module example.com/authsvc
 
-go 1.21
+go 1.22.5
 
 require k8s.io/apimachinery v0.23.1
 
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
index eec93c844..2b91887c9 100755
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 ARG GOLANG_VERSION
 
-FROM golang:${GOLANG_VERSION}-alpine3.18 as builder
+FROM golang:${GOLANG_VERSION}-alpine3.20 as builder
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
 
@@ -30,4 +30,4 @@ FROM gcr.io/distroless/static:nonroot
 COPY --from=builder /go/src/k8s.io/ingress-nginx/images/fastcgi/fastcgi-helloserver /
 USER nonroot:nonroot
 
-CMD ["/fastcgi-helloserver"]
\ No newline at end of file
+CMD ["/fastcgi-helloserver"]
diff --git a/images/go-grpc-greeter-server/rootfs/Dockerfile b/images/go-grpc-greeter-server/rootfs/Dockerfile
index 79693eaeb..f07b1d667 100644
--- a/images/go-grpc-greeter-server/rootfs/Dockerfile
+++ b/images/go-grpc-greeter-server/rootfs/Dockerfile
@@ -1,6 +1,6 @@
 ARG GOLANG_VERSION
 
-FROM golang:${GOLANG_VERSION}-alpine3.18 as build
+FROM golang:${GOLANG_VERSION}-alpine3.20 as build
 
 WORKDIR /go/src/greeter-server
 
@@ -15,4 +15,4 @@ COPY --from=build /greeter-server /
 
 EXPOSE 50051
 
-CMD ["/greeter-server"]
\ No newline at end of file
+CMD ["/greeter-server"]
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index b32fd22bd..bbbc44215 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,6 +1,6 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.21
+go 1.22.5
 
 require (
 	github.com/onrik/logrus v0.11.0
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index eb951e5c4..90135a1e3 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.20.0 as base
+FROM alpine:3.20.0 AS base
 
 RUN mkdir -p /opt/third_party/install
 COPY . /opt/third_party/
@@ -24,14 +24,14 @@ RUN apk update \
 	&& apk add -U bash \
 	&& bash /opt/third_party/build.sh -p
 
-ENV NINJA_STATUS "[%p/%f/%t] "
+ENV NINJA_STATUS="[%p/%f/%t] "
 
 # install otel_ngx_module.so
-FROM base as nginx
+FROM base AS nginx
 ARG NGINX_VERSION=1.25.3
 RUN bash /opt/third_party/build.sh -n ${NGINX_VERSION}
 
-FROM golang:1.21.6-bullseye as build-init
+FROM golang:1.22.5-bullseye AS build-init
 
 WORKDIR /go/src/app
 COPY . .
@@ -39,7 +39,7 @@ COPY . .
 RUN go mod download
 RUN CGO_ENABLED=0 go build -o /go/bin/init_module
 
-FROM gcr.io/distroless/static-debian11 as final
+FROM gcr.io/distroless/static-debian11 AS final
 COPY --from=build-init /go/bin/init_module /
 COPY --from=nginx /etc/nginx/modules /etc/nginx/modules
 
diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
index d46ab9fe5..649595a75 100755
--- a/images/opentelemetry/rootfs/build.sh
+++ b/images/opentelemetry/rootfs/build.sh
@@ -52,7 +52,10 @@ Help()
 
 prepare()
 {
-  echo "http://dl-cdn.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
+  echo "https://dl-cdn.alpinelinux.org/alpine/edge/main" >> /etc/apk/repositories
+  echo "https://dl-cdn.alpinelinux.org/alpine/edge/community" >> /etc/apk/repositories
+  echo "https://dl-cdn.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
+
   apk add \
     linux-headers \
     cmake \
diff --git a/images/opentelemetry/rootfs/go.mod b/images/opentelemetry/rootfs/go.mod
index 9c183ef06..c2fb37d60 100644
--- a/images/opentelemetry/rootfs/go.mod
+++ b/images/opentelemetry/rootfs/go.mod
@@ -1,3 +1,3 @@
 module init-otel
 
-go 1.21
+go 1.22.5
diff --git a/magefiles/go.mod b/magefiles/go.mod
index d41baf17e..ef6e89197 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/magefiles
 
-go 1.21
+go 1.22.5
 
 require (
 	github.com/blang/semver/v4 v4.0.0

From e4986a74cd14119b2e16262e74f9080722b151e6 Mon Sep 17 00:00:00 2001
From: Mmx <green.dusk8264@fastmail.com>
Date: Mon, 5 Aug 2024 23:29:00 +0800
Subject: [PATCH 1379/1641] docs: update OpenSSL Roadmap link (#11730)

---
 images/nginx-1.25/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx-1.25/README.md b/images/nginx-1.25/README.md
index b5c6d593f..35cccc100 100644
--- a/images/nginx-1.25/README.md
+++ b/images/nginx-1.25/README.md
@@ -35,7 +35,7 @@ The next steps will be:
     [And also there are some issues even with client side](https://github.com/openssl/openssl/discussions/23339)
 
     Due to this, we currently have incomplete HTTP/3 support, without important security and performance features.\
-    But the good news is that [OpenSSL plans to add server-side support in 3.4](https://www.openssl.org/roadmap.html):
+    But the good news is that [OpenSSL plans to add server-side support in 3.4](https://github.com/openssl/web/blob/master/roadmap.md):
 
     > Server-side QUIC support
     

From fd7e02b97617d7869f583ff0182a893d5ac61d7f Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 5 Aug 2024 22:05:49 +0200
Subject: [PATCH 1380/1641] Images: Trigger NGINX build. (#11735)

---
 images/nginx-1.25/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx-1.25/TAG b/images/nginx-1.25/TAG
index 51bbb66dc..3527dbc1b 100644
--- a/images/nginx-1.25/TAG
+++ b/images/nginx-1.25/TAG
@@ -1 +1 @@
-v0.0.10
+v0.0.11

From 1e6e2e1b376404332c0ae4ae705c1b446d992e66 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 6 Aug 2024 17:16:51 +0200
Subject: [PATCH 1381/1641] Images: Bump `NGINX_BASE` to v0.0.11. (#11741)

---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index b179689bf..1e1cf7a62 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx-1.25:v0.0.10@sha256:1686f4cd2e16f09a1e7d27529d21eb74a8b551dc06ef86189ac837d3d6548725
+registry.k8s.io/ingress-nginx/nginx-1.25:v0.0.11@sha256:05bec8b13129c54cf855ad1802b0fe302c5d63c992b76b5b9ba897650938a328

From 86e81373ea0f2c1abc76fc0710070e168ee646b5 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 8 Aug 2024 15:36:49 +0200
Subject: [PATCH 1382/1641] Go: Bump to v1.22.6. (#11747)

---
 GOLANG_VERSION                                | 2 +-
 go.mod                                        | 2 +-
 go.work                                       | 2 +-
 images/custom-error-pages/rootfs/go.mod       | 2 +-
 images/ext-auth-example-authsvc/rootfs/go.mod | 2 +-
 images/kube-webhook-certgen/rootfs/go.mod     | 2 +-
 images/opentelemetry/rootfs/Dockerfile        | 2 +-
 images/opentelemetry/rootfs/go.mod            | 2 +-
 magefiles/go.mod                              | 2 +-
 9 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/GOLANG_VERSION b/GOLANG_VERSION
index da9594fd6..013173af5 100644
--- a/GOLANG_VERSION
+++ b/GOLANG_VERSION
@@ -1 +1 @@
-1.22.5
+1.22.6
diff --git a/go.mod b/go.mod
index 6aeb96031..7877fdd3f 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx
 
-go 1.22.5
+go 1.22.6
 
 require (
 	dario.cat/mergo v1.0.0
diff --git a/go.work b/go.work
index 9da22b9ae..ac741bb5a 100644
--- a/go.work
+++ b/go.work
@@ -1,4 +1,4 @@
-go 1.22.5
+go 1.22.6
 
 use (
 	.
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 75c488ae9..264ebf427 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.22.5
+go 1.22.6
 
 require github.com/prometheus/client_golang v1.11.1
 
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index 0079040cb..a3396b358 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,6 +1,6 @@
 module example.com/authsvc
 
-go 1.22.5
+go 1.22.6
 
 require k8s.io/apimachinery v0.23.1
 
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index bbbc44215..34cf0284f 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,6 +1,6 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.22.5
+go 1.22.6
 
 require (
 	github.com/onrik/logrus v0.11.0
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index 90135a1e3..f67948b86 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -31,7 +31,7 @@ FROM base AS nginx
 ARG NGINX_VERSION=1.25.3
 RUN bash /opt/third_party/build.sh -n ${NGINX_VERSION}
 
-FROM golang:1.22.5-bullseye AS build-init
+FROM golang:1.22.6-bullseye AS build-init
 
 WORKDIR /go/src/app
 COPY . .
diff --git a/images/opentelemetry/rootfs/go.mod b/images/opentelemetry/rootfs/go.mod
index c2fb37d60..115ef686a 100644
--- a/images/opentelemetry/rootfs/go.mod
+++ b/images/opentelemetry/rootfs/go.mod
@@ -1,3 +1,3 @@
 module init-otel
 
-go 1.22.5
+go 1.22.6
diff --git a/magefiles/go.mod b/magefiles/go.mod
index ef6e89197..8e146d70e 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/magefiles
 
-go 1.22.5
+go 1.22.6
 
 require (
 	github.com/blang/semver/v4 v4.0.0

From 978bdeed7f2ef32655c4f4496ac1ec086e5a77d1 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 11 Aug 2024 08:06:19 +0200
Subject: [PATCH 1383/1641] Cloud Build: Some chores. (#11633)

* Cloud Build: Remove comment.

* Cloud Build: Add newlines at EOF.

* Cloud Build: Align comment.

* Cloud Build: Remove trailing slash.

* Cloud Build: Remove quotes.

* Cloud Build: Align indentation.

* Cloud Build: Improve quotes.

* Cloud Build: Put arguments in one line.

* Cloud Build: Bump image.

* Cloud Build: Reorder entrypoint.

* Cloud Build: Adjust timeouts.

* Cloud Build: Remove useless files.

* Cloud Build: Remove `substitution_option`.
---
 cloudbuild.yaml                               | 29 ++++--------
 images/cfssl/cloudbuild.yaml                  | 17 ++-----
 images/custom-error-pages/README.md           |  3 --
 images/custom-error-pages/TAG                 |  2 +-
 images/custom-error-pages/cloudbuild.yaml     | 18 +++-----
 images/e2e-test-echo/TAG                      |  2 +-
 images/ext-auth-example-authsvc/TAG           |  2 +-
 .../ext-auth-example-authsvc/cloudbuild.yaml  | 19 ++------
 images/fastcgi-helloserver/TAG                |  2 +-
 images/fastcgi-helloserver/cloudbuild.yaml    | 18 +++-----
 images/go-grpc-greeter-server/TAG             |  2 +-
 images/go-grpc-greeter-server/cloudbuild.yaml | 19 ++------
 images/httpbun/TAG                            |  2 +-
 images/httpbun/cloudbuild.yaml                | 20 +++------
 images/kube-webhook-certgen/cloudbuild.yaml   | 33 +++-----------
 images/nginx-1.25/cloudbuild.yaml             | 17 +++----
 images/nginx/cloudbuild.yaml                  | 17 +++----
 images/nginx/rc.yaml                          | 44 -------------------
 images/opentelemetry/README.md                |  5 ---
 images/opentelemetry/cloudbuild.yaml          | 22 +++-------
 images/test-runner/cloudbuild.yaml            | 18 +++-----
 21 files changed, 71 insertions(+), 240 deletions(-)
 delete mode 100644 images/custom-error-pages/README.md
 delete mode 100644 images/nginx/rc.yaml
 delete mode 100644 images/opentelemetry/README.md

diff --git a/cloudbuild.yaml b/cloudbuild.yaml
index d3f1eed62..265947b8b 100644
--- a/cloudbuild.yaml
+++ b/cloudbuild.yaml
@@ -1,25 +1,14 @@
-# See https://cloud.google.com/cloud-build/docs/build-config
-
-timeout: 18000s
-options:
-  substitution_option: ALLOW_LOOSE
+substitutions:
+  _PULL_BASE_SHA: "12345"
 steps:
-  - name: 'gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90'
-    entrypoint: bash
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
-      - DOCKER_CLI_EXPERIMENTAL=enabled
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       - REPO_INFO=https://github.com/kubernetes/ingress-nginx
-      - COMMIT_SHA=$_PULL_BASE_SHA
-      - BUILD_ID=$BUILD_ID
-      - HOME=/root
-      - USER=root
+      - COMMIT_SHA=${_PULL_BASE_SHA}
+      - BUILD_ID=${BUILD_ID}
+    entrypoint: bash
     args:
-    - -c
-    - |
-      gcloud auth configure-docker \
-      && make release
-substitutions:
-  _GIT_TAG: "12345"
-  _PULL_BASE_REF: "main"
-  _PULL_BASE_SHA: '12345'
+      - -c
+      - gcloud auth configure-docker && make release
+timeout: 1800s
diff --git a/images/cfssl/cloudbuild.yaml b/images/cfssl/cloudbuild.yaml
index 32d91ca83..8ddb22013 100644
--- a/images/cfssl/cloudbuild.yaml
+++ b/images/cfssl/cloudbuild.yaml
@@ -1,17 +1,8 @@
-timeout: 600s
-options:
-  substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
-    entrypoint: bash
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
-      - DOCKER_CLI_EXPERIMENTAL=enabled
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
-      # set the home to /root explicitly to if using docker buildx
-      - HOME=/root
+    entrypoint: bash
     args:
-    - -c
-    - |
-      gcloud auth configure-docker \
-      && cd images && make NAME=cfssl push
+      - -c
+      - gcloud auth configure-docker && cd images && make NAME=cfssl push
diff --git a/images/custom-error-pages/README.md b/images/custom-error-pages/README.md
deleted file mode 100644
index cd6df3e0a..000000000
--- a/images/custom-error-pages/README.md
+++ /dev/null
@@ -1,3 +0,0 @@
-# custom-error-pages
-
-Example of Custom error pages for the Ingress-Nginx Controller
diff --git a/images/custom-error-pages/TAG b/images/custom-error-pages/TAG
index 8ce995b80..f9cece58d 100644
--- a/images/custom-error-pages/TAG
+++ b/images/custom-error-pages/TAG
@@ -1 +1 @@
-v0.0.3
\ No newline at end of file
+v0.0.3
diff --git a/images/custom-error-pages/cloudbuild.yaml b/images/custom-error-pages/cloudbuild.yaml
index bb74da6b8..bc1a3dc91 100644
--- a/images/custom-error-pages/cloudbuild.yaml
+++ b/images/custom-error-pages/cloudbuild.yaml
@@ -1,17 +1,9 @@
-timeout: 1800s
-options:
-  substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
-    entrypoint: bash
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
-      - DOCKER_CLI_EXPERIMENTAL=enabled
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
-      # set the home to /root explicitly to if using docker buildx
-      - HOME=/root
+    entrypoint: bash
     args:
-    - -c
-    - |
-      gcloud auth configure-docker \
-      && cd images/ && make NAME=custom-error-pages push
+      - -c
+      - gcloud auth configure-docker && cd images && make NAME=custom-error-pages push
+timeout: 3600s
diff --git a/images/e2e-test-echo/TAG b/images/e2e-test-echo/TAG
index 8ce995b80..f9cece58d 100644
--- a/images/e2e-test-echo/TAG
+++ b/images/e2e-test-echo/TAG
@@ -1 +1 @@
-v0.0.3
\ No newline at end of file
+v0.0.3
diff --git a/images/ext-auth-example-authsvc/TAG b/images/ext-auth-example-authsvc/TAG
index 8ce995b80..f9cece58d 100644
--- a/images/ext-auth-example-authsvc/TAG
+++ b/images/ext-auth-example-authsvc/TAG
@@ -1 +1 @@
-v0.0.3
\ No newline at end of file
+v0.0.3
diff --git a/images/ext-auth-example-authsvc/cloudbuild.yaml b/images/ext-auth-example-authsvc/cloudbuild.yaml
index 506e20111..4ce8d75d3 100644
--- a/images/ext-auth-example-authsvc/cloudbuild.yaml
+++ b/images/ext-auth-example-authsvc/cloudbuild.yaml
@@ -1,19 +1,8 @@
-timeout: 1200s
-options:
-  substitution_option: ALLOW_LOOSE
-  # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
-  machineType: E2_HIGHCPU_8
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
-    entrypoint: bash
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
-      - DOCKER_CLI_EXPERIMENTAL=enabled
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
-      # set the home to /root explicitly to if using docker buildx
-      - HOME=/root
+    entrypoint: bash
     args:
-    - -c
-    - |
-      gcloud auth configure-docker \
-      && cd images/ && make NAME=ext-auth-example-authsvc push
\ No newline at end of file
+      - -c
+      - gcloud auth configure-docker && cd images && make NAME=ext-auth-example-authsvc push
diff --git a/images/fastcgi-helloserver/TAG b/images/fastcgi-helloserver/TAG
index 8ce995b80..f9cece58d 100644
--- a/images/fastcgi-helloserver/TAG
+++ b/images/fastcgi-helloserver/TAG
@@ -1 +1 @@
-v0.0.3
\ No newline at end of file
+v0.0.3
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index e3ab3b375..a74fcfddc 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -1,17 +1,9 @@
-timeout: 1800s
-options:
-  substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
-    entrypoint: bash
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
-      - DOCKER_CLI_EXPERIMENTAL=enabled
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
-      # set the home to /root explicitly to if using docker buildx
-      - HOME=/root
+    entrypoint: bash
     args:
-    - -c
-    - |
-      gcloud auth configure-docker \
-      && cd images/ && make NAME=fastcgi-helloserver push
\ No newline at end of file
+      - -c
+      - gcloud auth configure-docker && cd images && make NAME=fastcgi-helloserver push
+timeout: 3600s
diff --git a/images/go-grpc-greeter-server/TAG b/images/go-grpc-greeter-server/TAG
index 8ce995b80..f9cece58d 100644
--- a/images/go-grpc-greeter-server/TAG
+++ b/images/go-grpc-greeter-server/TAG
@@ -1 +1 @@
-v0.0.3
\ No newline at end of file
+v0.0.3
diff --git a/images/go-grpc-greeter-server/cloudbuild.yaml b/images/go-grpc-greeter-server/cloudbuild.yaml
index b690ffbec..4ae3139bd 100644
--- a/images/go-grpc-greeter-server/cloudbuild.yaml
+++ b/images/go-grpc-greeter-server/cloudbuild.yaml
@@ -1,19 +1,8 @@
-timeout: 1200s
-options:
-  substitution_option: ALLOW_LOOSE
-  # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
-  machineType: E2_HIGHCPU_8
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
-    entrypoint: bash
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
-      - DOCKER_CLI_EXPERIMENTAL=enabled
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
-      # set the home to /root explicitly to if using docker buildx
-      - HOME=/root
+    entrypoint: bash
     args:
-    - -c
-    - |
-      gcloud auth configure-docker \
-      && cd images/ && make NAME=go-grpc-greeter-server push
\ No newline at end of file
+      - -c
+      - gcloud auth configure-docker && cd images && make NAME=go-grpc-greeter-server push
diff --git a/images/httpbun/TAG b/images/httpbun/TAG
index 8ce995b80..f9cece58d 100644
--- a/images/httpbun/TAG
+++ b/images/httpbun/TAG
@@ -1 +1 @@
-v0.0.3
\ No newline at end of file
+v0.0.3
diff --git a/images/httpbun/cloudbuild.yaml b/images/httpbun/cloudbuild.yaml
index c532a3908..e718d319f 100644
--- a/images/httpbun/cloudbuild.yaml
+++ b/images/httpbun/cloudbuild.yaml
@@ -1,19 +1,9 @@
-timeout: 1200s
-options:
-  substitution_option: ALLOW_LOOSE
-  # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
-  machineType: E2_HIGHCPU_8
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
-    entrypoint: bash
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
-      - DOCKER_CLI_EXPERIMENTAL=enabled
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
-      # set the home to /root explicitly to if using docker buildx
-      - HOME=/root
+    entrypoint: bash
     args:
-    - -c
-    - |
-      gcloud auth configure-docker \
-      && cd images/ && make NAME=httpbun push
\ No newline at end of file
+      - -c
+      - gcloud auth configure-docker && cd images && make NAME=httpbun push
+timeout: 3600s
diff --git a/images/kube-webhook-certgen/cloudbuild.yaml b/images/kube-webhook-certgen/cloudbuild.yaml
index 690f13126..33f181add 100644
--- a/images/kube-webhook-certgen/cloudbuild.yaml
+++ b/images/kube-webhook-certgen/cloudbuild.yaml
@@ -1,32 +1,9 @@
-
-# Copyright 2021 The Kubernetes Authors. All rights reserved.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-timeout: 10800s
-options:
-  substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
-    entrypoint: bash
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
-      - DOCKER_CLI_EXPERIMENTAL=enabled
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
-      # set the home to /root explicitly to if using docker buildx
-      - HOME=/root
+    entrypoint: bash
     args:
-    - -c
-    - |
-      gcloud auth configure-docker \
-      && cd images/ && make NAME=kube-webhook-certgen push
+      - -c
+      - gcloud auth configure-docker && cd images && make NAME=kube-webhook-certgen push
+timeout: 1800s
diff --git a/images/nginx-1.25/cloudbuild.yaml b/images/nginx-1.25/cloudbuild.yaml
index c94539165..c03425a5a 100644
--- a/images/nginx-1.25/cloudbuild.yaml
+++ b/images/nginx-1.25/cloudbuild.yaml
@@ -1,17 +1,12 @@
-timeout: 10800s
 options:
-  substitution_option: ALLOW_LOOSE
-  # job builds a multi-arch docker image for amd64,arm,arm64
+  # Increase machine type for multi-arch builds.
   machineType: E2_HIGHCPU_32
 steps:
-  - name: 'gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90'
-    entrypoint: bash
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
-      - DOCKER_CLI_EXPERIMENTAL=enabled
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-      - HOME=/root
+    entrypoint: bash
     args:
-    - -c
-    - |
-      gcloud auth configure-docker \
-      && cd images/nginx-1.25 && make push
\ No newline at end of file
+      - -c
+      - gcloud auth configure-docker && cd images/nginx-1.25 && make push
+timeout: 7200s
diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index 71051f26d..871110162 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -1,17 +1,12 @@
-timeout: 10800s
 options:
-  substitution_option: ALLOW_LOOSE
-  # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
+  # Increase machine type for multi-arch builds.
   machineType: E2_HIGHCPU_32
 steps:
-  - name: 'gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90'
-    entrypoint: bash
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
-      - DOCKER_CLI_EXPERIMENTAL=enabled
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-      - HOME=/root
+    entrypoint: bash
     args:
-    - -c
-    - |
-      gcloud auth configure-docker \
-      && cd images/nginx && make push
+      - -c
+      - gcloud auth configure-docker && cd images/nginx && make push
+timeout: 7200s
diff --git a/images/nginx/rc.yaml b/images/nginx/rc.yaml
deleted file mode 100644
index bcf2b0274..000000000
--- a/images/nginx/rc.yaml
+++ /dev/null
@@ -1,44 +0,0 @@
-apiVersion: v1
-kind: Service
-metadata:
-  name: nginx
-  labels:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-spec:
-  type: NodePort
-  ports:
-    - port: 80
-      protocol: TCP
-      name: http
-    - port: 443
-      protocol: TCP
-      name: https
-  selector:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
----
-apiVersion: v1
-kind: ReplicationController
-metadata:
-  name: nginx
-  labels:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-spec:
-  replicas: 1
-  selector:
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-    spec:
-      containers:
-        - name: nginx
-          image: registry.k8s.io/ingress-nginx/nginx:c5766dc011965f22fac2f4437e86d0fd9960a50c@sha256:94ff9b435a5f3f4570bbdaed4a3a523f63a54ce2ad6b132b5640bae2af5d9d90
-          ports:
-            - containerPort: 80
-            - containerPort: 443
diff --git a/images/opentelemetry/README.md b/images/opentelemetry/README.md
deleted file mode 100644
index f5c3d90de..000000000
--- a/images/opentelemetry/README.md
+++ /dev/null
@@ -1,5 +0,0 @@
-# OpenTelemetry library builder
-
-**How to use this image:**
-This image only contains the necessary files in /usr/local and /etc/nginx/opentelemetry to 
-be copied to Ingress Controller deployment when OpenTelemetry is enabled
diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
index bc48a93f4..95fdabac9 100644
--- a/images/opentelemetry/cloudbuild.yaml
+++ b/images/opentelemetry/cloudbuild.yaml
@@ -1,20 +1,12 @@
-timeout: 10800s
 options:
-  substitution_option: ALLOW_LOOSE
-  # job builds a multi-arch docker image for amd64,arm,arm64 and s390x.
-  machineType: E2_HIGHCPU_32
+  # Increase machine type for multi-arch builds.
+  machineType: E2_HIGHCPU_8
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
-    entrypoint: bash
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
-      - DOCKER_CLI_EXPERIMENTAL=enabled
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
-      # set the home to /root explicitly to if using docker buildx
-      - HOME=/root
+    entrypoint: bash
     args:
-    - -c
-    - |
-      gcloud auth configure-docker \
-      && cd images/opentelemetry && make NGINX_VERSION=1.25.3 push \
-      && make NGINX_VERSION=1.21.6 push
+      - -c
+      - gcloud auth configure-docker && cd images/opentelemetry && make NGINX_VERSION=1.21.6 push && make NGINX_VERSION=1.25.3 push
+timeout: 3600s
diff --git a/images/test-runner/cloudbuild.yaml b/images/test-runner/cloudbuild.yaml
index b17de9b31..cd8d73e98 100644
--- a/images/test-runner/cloudbuild.yaml
+++ b/images/test-runner/cloudbuild.yaml
@@ -1,17 +1,9 @@
-timeout: 3600s
-options:
-  substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20211118-2f2d816b90
-    entrypoint: bash
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
-      - DOCKER_CLI_EXPERIMENTAL=enabled
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-      # default cloudbuild has HOME=/builder/home and docker buildx is in /root/.docker/cli-plugins/docker-buildx
-      # set the home to /root explicitly to if using docker buildx
-      - HOME=/root
+    entrypoint: bash
     args:
-    - -c
-    - |
-      gcloud auth configure-docker \
-      && cd images/test-runner && make push
+      - -c
+      - gcloud auth configure-docker && cd images/test-runner && make push
+timeout: 1800s

From 5ddc442b0cf2691d751de388a49bb36d848df2ee Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 11 Aug 2024 08:50:33 +0200
Subject: [PATCH 1384/1641] Cloud Build: Fix substitutions. (#11758)

Prow hands in some substitutions via arguments we need to ignore.
---
 cloudbuild.yaml                                 | 5 +++--
 images/cfssl/cloudbuild.yaml                    | 3 +++
 images/custom-error-pages/cloudbuild.yaml       | 3 +++
 images/ext-auth-example-authsvc/cloudbuild.yaml | 3 +++
 images/fastcgi-helloserver/cloudbuild.yaml      | 3 +++
 images/go-grpc-greeter-server/cloudbuild.yaml   | 3 +++
 images/httpbun/cloudbuild.yaml                  | 3 +++
 images/kube-webhook-certgen/cloudbuild.yaml     | 3 +++
 images/nginx-1.25/cloudbuild.yaml               | 2 ++
 images/nginx/cloudbuild.yaml                    | 2 ++
 images/opentelemetry/cloudbuild.yaml            | 2 ++
 images/test-runner/cloudbuild.yaml              | 3 +++
 12 files changed, 33 insertions(+), 2 deletions(-)

diff --git a/cloudbuild.yaml b/cloudbuild.yaml
index 265947b8b..494838720 100644
--- a/cloudbuild.yaml
+++ b/cloudbuild.yaml
@@ -1,5 +1,6 @@
-substitutions:
-  _PULL_BASE_SHA: "12345"
+options:
+  # Ignore Prow provided substitutions.
+  substitution_option: ALLOW_LOOSE
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
diff --git a/images/cfssl/cloudbuild.yaml b/images/cfssl/cloudbuild.yaml
index 8ddb22013..6b5b0fc1b 100644
--- a/images/cfssl/cloudbuild.yaml
+++ b/images/cfssl/cloudbuild.yaml
@@ -1,3 +1,6 @@
+options:
+  # Ignore Prow provided substitutions.
+  substitution_option: ALLOW_LOOSE
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
diff --git a/images/custom-error-pages/cloudbuild.yaml b/images/custom-error-pages/cloudbuild.yaml
index bc1a3dc91..772a7697f 100644
--- a/images/custom-error-pages/cloudbuild.yaml
+++ b/images/custom-error-pages/cloudbuild.yaml
@@ -1,3 +1,6 @@
+options:
+  # Ignore Prow provided substitutions.
+  substitution_option: ALLOW_LOOSE
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
diff --git a/images/ext-auth-example-authsvc/cloudbuild.yaml b/images/ext-auth-example-authsvc/cloudbuild.yaml
index 4ce8d75d3..09535a5a6 100644
--- a/images/ext-auth-example-authsvc/cloudbuild.yaml
+++ b/images/ext-auth-example-authsvc/cloudbuild.yaml
@@ -1,3 +1,6 @@
+options:
+  # Ignore Prow provided substitutions.
+  substitution_option: ALLOW_LOOSE
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index a74fcfddc..5fb3e3318 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -1,3 +1,6 @@
+options:
+  # Ignore Prow provided substitutions.
+  substitution_option: ALLOW_LOOSE
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
diff --git a/images/go-grpc-greeter-server/cloudbuild.yaml b/images/go-grpc-greeter-server/cloudbuild.yaml
index 4ae3139bd..44e0bef8b 100644
--- a/images/go-grpc-greeter-server/cloudbuild.yaml
+++ b/images/go-grpc-greeter-server/cloudbuild.yaml
@@ -1,3 +1,6 @@
+options:
+  # Ignore Prow provided substitutions.
+  substitution_option: ALLOW_LOOSE
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
diff --git a/images/httpbun/cloudbuild.yaml b/images/httpbun/cloudbuild.yaml
index e718d319f..3d2662531 100644
--- a/images/httpbun/cloudbuild.yaml
+++ b/images/httpbun/cloudbuild.yaml
@@ -1,3 +1,6 @@
+options:
+  # Ignore Prow provided substitutions.
+  substitution_option: ALLOW_LOOSE
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
diff --git a/images/kube-webhook-certgen/cloudbuild.yaml b/images/kube-webhook-certgen/cloudbuild.yaml
index 33f181add..8bf139423 100644
--- a/images/kube-webhook-certgen/cloudbuild.yaml
+++ b/images/kube-webhook-certgen/cloudbuild.yaml
@@ -1,3 +1,6 @@
+options:
+  # Ignore Prow provided substitutions.
+  substitution_option: ALLOW_LOOSE
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
diff --git a/images/nginx-1.25/cloudbuild.yaml b/images/nginx-1.25/cloudbuild.yaml
index c03425a5a..d8bb1f2a9 100644
--- a/images/nginx-1.25/cloudbuild.yaml
+++ b/images/nginx-1.25/cloudbuild.yaml
@@ -1,6 +1,8 @@
 options:
   # Increase machine type for multi-arch builds.
   machineType: E2_HIGHCPU_32
+  # Ignore Prow provided substitutions.
+  substitution_option: ALLOW_LOOSE
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index 871110162..a5ec1abd8 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -1,6 +1,8 @@
 options:
   # Increase machine type for multi-arch builds.
   machineType: E2_HIGHCPU_32
+  # Ignore Prow provided substitutions.
+  substitution_option: ALLOW_LOOSE
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
index 95fdabac9..98281d8ef 100644
--- a/images/opentelemetry/cloudbuild.yaml
+++ b/images/opentelemetry/cloudbuild.yaml
@@ -1,6 +1,8 @@
 options:
   # Increase machine type for multi-arch builds.
   machineType: E2_HIGHCPU_8
+  # Ignore Prow provided substitutions.
+  substitution_option: ALLOW_LOOSE
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:
diff --git a/images/test-runner/cloudbuild.yaml b/images/test-runner/cloudbuild.yaml
index cd8d73e98..6efe5eeaf 100644
--- a/images/test-runner/cloudbuild.yaml
+++ b/images/test-runner/cloudbuild.yaml
@@ -1,3 +1,6 @@
+options:
+  # Ignore Prow provided substitutions.
+  substitution_option: ALLOW_LOOSE
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
     env:

From b93ccdf7b600be4c40a874819c21f4e3f842cbea Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 11 Aug 2024 10:03:39 +0200
Subject: [PATCH 1385/1641] Cloud Build: Tweak timeouts. (#11761)

---
 images/opentelemetry/cloudbuild.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
index 98281d8ef..df86d37e7 100644
--- a/images/opentelemetry/cloudbuild.yaml
+++ b/images/opentelemetry/cloudbuild.yaml
@@ -11,4 +11,4 @@ steps:
     args:
       - -c
       - gcloud auth configure-docker && cd images/opentelemetry && make NGINX_VERSION=1.21.6 push && make NGINX_VERSION=1.25.3 push
-timeout: 3600s
+timeout: 1800s

From c21b6a99aa79f6ac2c81981037dcda6a473b81f5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 12 Aug 2024 04:44:44 -0700
Subject: [PATCH 1386/1641] Bump golang.org/x/crypto from 0.25.0 to 0.26.0
 (#11765)

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.25.0 to 0.26.0.
- [Commits](https://github.com/golang/crypto/compare/v0.25.0...v0.26.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 10 +++++-----
 go.sum | 20 ++++++++++----------
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/go.mod b/go.mod
index 7877fdd3f..76581ef96 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.9.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.25.0
+	golang.org/x/crypto v0.26.0
 	golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f
 	google.golang.org/grpc v1.65.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
@@ -109,10 +109,10 @@ require (
 	golang.org/x/mod v0.17.0 // indirect
 	golang.org/x/net v0.26.0 // indirect
 	golang.org/x/oauth2 v0.21.0 // indirect
-	golang.org/x/sync v0.7.0 // indirect
-	golang.org/x/sys v0.22.0 // indirect
-	golang.org/x/term v0.22.0 // indirect
-	golang.org/x/text v0.16.0 // indirect
+	golang.org/x/sync v0.8.0 // indirect
+	golang.org/x/sys v0.23.0 // indirect
+	golang.org/x/term v0.23.0 // indirect
+	golang.org/x/text v0.17.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20240528184218-531527333157 // indirect
diff --git a/go.sum b/go.sum
index 68326360f..1522bb392 100644
--- a/go.sum
+++ b/go.sum
@@ -230,8 +230,8 @@ golang.org/dl v0.0.0-20190829154251-82a15e2f2ead/go.mod h1:IUMfjQLJQd4UTqG1Z90te
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.25.0 h1:ypSNr+bnYL2YhwoMt2zPxHFmbAN1KZs/njMG3hxUp30=
-golang.org/x/crypto v0.25.0/go.mod h1:T+wALwcMOSE0kXgUAnPAHqTLW+XHgcELELW8VaDgm/M=
+golang.org/x/crypto v0.26.0 h1:RrRspgV4mU+YwB4FYnuBoKsUapNIL5cohGAmSH3azsw=
+golang.org/x/crypto v0.26.0/go.mod h1:GY7jblb9wI+FOo5y8/S2oY4zWP07AkOJ4+jxCqdqn54=
 golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f h1:99ci1mjWVBWwJiEKYY6jWa4d2nTQVIEhZIptnrVb1XY=
 golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f/go.mod h1:/lliqkxwWAhPjf5oSOIJup2XcqJaw8RGS6k3TGEc7GI=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
@@ -252,8 +252,8 @@ golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJ
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.7.0 h1:YsImfSBoP9QPYL0xyKJPq0gcaJdG3rInoqxTWbfQu9M=
-golang.org/x/sync v0.7.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
+golang.org/x/sync v0.8.0 h1:3NFvSEYkUoMifnESzZl15y791HH1qU2xm6eCJU5ZPXQ=
+golang.org/x/sync v0.8.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -268,14 +268,14 @@ golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.22.0 h1:RI27ohtqKCnwULzJLqkv897zojh5/DwS/ENaMzUOaWI=
-golang.org/x/sys v0.22.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/term v0.22.0 h1:BbsgPEJULsl2fV/AT3v15Mjva5yXKQDyKf+TbDz7QJk=
-golang.org/x/term v0.22.0/go.mod h1:F3qCibpT5AMpCRfhfT53vVJwhLtIVHhB9XDjfFvnMI4=
+golang.org/x/sys v0.23.0 h1:YfKFowiIMvtgl1UERQoTPPToxltDeZfbj4H7dVUCwmM=
+golang.org/x/sys v0.23.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/term v0.23.0 h1:F6D4vR+EHoL9/sWAWgAR1H2DcHr4PareCbAaCo1RpuU=
+golang.org/x/term v0.23.0/go.mod h1:DgV24QBUrK6jhZXl+20l6UWznPlwAHm1Q1mGHtydmSk=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.16.0 h1:a94ExnEXNtEwYLGJSIUxnWoxoRz/ZcCsV63ROupILh4=
-golang.org/x/text v0.16.0/go.mod h1:GhwF1Be+LQoKShO3cGOHzqOgRrGaYc9AvblQOmPVHnI=
+golang.org/x/text v0.17.0 h1:XtiM5bkSOt+ewxlOE/aE/AKEHibwj/6gvWMl9Rsh0Qc=
+golang.org/x/text v0.17.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
 golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
 golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=

From 4a1da5ccab5058b2b49f32c076318287a7b63065 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 12 Aug 2024 05:27:20 -0700
Subject: [PATCH 1387/1641] Bump the all group with 2 updates (#11767)

Bumps the all group with 2 updates: [actions/upload-artifact](https://github.com/actions/upload-artifact) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `actions/upload-artifact` from 4.3.5 to 4.3.6
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/89ef406dd8d7e03cfd12d9e0a4a378f454709029...834a144ee995460fba8ed112a2fc961b36a5ec5a)

Updates `github/codeql-action` from 3.25.15 to 3.26.0
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/afb54ba388a7dca6ecae48f608c4ff05ff4cc77a...eb055d739abdc2e8de2e5f4ba1a8b246daa779aa)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 2 +-
 .github/workflows/scorecards.yml           | 4 ++--
 .github/workflows/vulnerability-scans.yaml | 2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml     | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index a9ca9e229..f3af49d37 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -163,7 +163,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@89ef406dd8d7e03cfd12d9e0a4a378f454709029 # v4.3.5
+        uses: actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a # v4.3.6
         with:
           name: docker.tar.gz
           path: docker.tar.gz
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index db419a581..a6b64d408 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@89ef406dd8d7e03cfd12d9e0a4a378f454709029 # v4.3.5
+        uses: actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a # v4.3.6
         with:
           name: SARIF file
           path: results.sarif
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@afb54ba388a7dca6ecae48f608c4ff05ff4cc77a # v3.25.15
+        uses: github/codeql-action/upload-sarif@eb055d739abdc2e8de2e5f4ba1a8b246daa779aa # v3.26.0
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 14d5dc406..cc3240931 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@afb54ba388a7dca6ecae48f608c4ff05ff4cc77a # v3.25.15
+        uses: github/codeql-action/upload-sarif@eb055d739abdc2e8de2e5f4ba1a8b246daa779aa # v3.26.0
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 30502e999..adf1dc0e8 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -50,7 +50,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports ${{ inputs.variation }}
-        uses: actions/upload-artifact@89ef406dd8d7e03cfd12d9e0a4a378f454709029 # v4.3.5
+        uses: actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a # v4.3.6
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}

From cc3c941ac3a9b9d5541daa24175fddeff5cf64a7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 12 Aug 2024 20:23:58 +0200
Subject: [PATCH 1388/1641] Bump github.com/onsi/ginkgo/v2 from 2.19.1 to
 2.20.0 (#11766)

* Bump github.com/onsi/ginkgo/v2 from 2.19.1 to 2.20.0

Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) from 2.19.1 to 2.20.0.
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](https://github.com/onsi/ginkgo/compare/v2.19.1...v2.20.0)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump github.com/onsi/ginkgo/v2 from 2.19.1 to 2.20.0 elsewhere

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 build/run-in-docker.sh                    |  2 +-
 go.mod                                    | 12 ++++----
 go.sum                                    | 28 +++++++++----------
 images/kube-webhook-certgen/rootfs/go.mod | 12 ++++----
 images/kube-webhook-certgen/rootfs/go.sum | 34 ++++++++++++-----------
 images/test-runner/Makefile               |  4 +--
 test/e2e/run-chart-test.sh                |  2 +-
 test/e2e/run-kind-e2e.sh                  |  2 +-
 8 files changed, 49 insertions(+), 47 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 822ff265a..4cc678363 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -82,7 +82,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.19.1
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.20.0
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/go.mod b/go.mod
index 76581ef96..ae4974c4a 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.3
-	github.com/onsi/ginkgo/v2 v2.19.1
+	github.com/onsi/ginkgo/v2 v2.20.0
 	github.com/opencontainers/runc v1.1.13
 	github.com/pmezard/go-difflib v1.0.0
 	github.com/prometheus/client_golang v1.19.1
@@ -26,7 +26,7 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.26.0
-	golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f
+	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
 	google.golang.org/grpc v1.65.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -75,7 +75,7 @@ require (
 	github.com/google/gnostic-models v0.6.8 // indirect
 	github.com/google/go-cmp v0.6.0 // indirect
 	github.com/google/gofuzz v1.2.0 // indirect
-	github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6 // indirect
+	github.com/google/pprof v0.0.0-20240727154555-813a5fbdbec8 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.6.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect
@@ -106,15 +106,15 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20240123142251-f86470692795 // indirect
 	go.uber.org/zap v1.27.0 // indirect
-	golang.org/x/mod v0.17.0 // indirect
-	golang.org/x/net v0.26.0 // indirect
+	golang.org/x/mod v0.20.0 // indirect
+	golang.org/x/net v0.28.0 // indirect
 	golang.org/x/oauth2 v0.21.0 // indirect
 	golang.org/x/sync v0.8.0 // indirect
 	golang.org/x/sys v0.23.0 // indirect
 	golang.org/x/term v0.23.0 // indirect
 	golang.org/x/text v0.17.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
-	golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d // indirect
+	golang.org/x/tools v0.24.0 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20240528184218-531527333157 // indirect
 	google.golang.org/protobuf v1.34.2 // indirect
 	gopkg.in/evanphx/json-patch.v5 v5.9.0 // indirect
diff --git a/go.sum b/go.sum
index 1522bb392..48031be86 100644
--- a/go.sum
+++ b/go.sum
@@ -89,8 +89,8 @@ github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeN
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
 github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6 h1:k7nVchz72niMH6YLQNvHSdIE7iqsQxK1P41mySCvssg=
-github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6/go.mod h1:kf6iHlnVGwgKolg33glAes7Yg/8iWP8ukqeldJSO7jw=
+github.com/google/pprof v0.0.0-20240727154555-813a5fbdbec8 h1:FKHo8hFI3A+7w0aUQuYXQ+6EN5stWmeY/AZqtM8xk9k=
+github.com/google/pprof v0.0.0-20240727154555-813a5fbdbec8/go.mod h1:K1liHPHnj73Fdn/EKuT8nrFqBihUSKXoLYU0BuatOYo=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
@@ -160,12 +160,12 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.19.1 h1:QXgq3Z8Crl5EL1WBAC98A5sEBHARrAJNzAmMxzLcRF0=
-github.com/onsi/ginkgo/v2 v2.19.1/go.mod h1:O3DtEWQkPa/F7fBMgmZQKKsluAy8pd3rEQdrjkPb9zA=
+github.com/onsi/ginkgo/v2 v2.20.0 h1:PE84V2mHqoT1sglvHc8ZdQtPcwmvvt29WLEEO3xmdZw=
+github.com/onsi/ginkgo/v2 v2.20.0/go.mod h1:lG9ey2Z29hR41WMVthyJBGUBcBhGOtoPF2VFMvBXFCI=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.34.0 h1:eSSPsPNp6ZpsG8X1OVmOTxig+CblTc4AxpPBykhe2Os=
-github.com/onsi/gomega v1.34.0/go.mod h1:MIKI8c+f+QLWk+hxbePD4i0LMJSExPaZOVfkoex4cAo=
+github.com/onsi/gomega v1.34.1 h1:EUMJIKUjM8sKjYbtxQI9A4z2o+rruxnzNvpknOXie6k=
+github.com/onsi/gomega v1.34.1/go.mod h1:kU1QgUvBDLXBJq618Xvm2LUX6rSAfRaFRTcdOeDLwwY=
 github.com/opencontainers/runc v1.1.13 h1:98S2srgG9vw0zWcDpFMn5TRrh8kLxa/5OFUstuUhmRs=
 github.com/opencontainers/runc v1.1.13/go.mod h1:R016aXacfp/gwQBYw2FDGa9m+n6atbLWrYY8hNMT/sA=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
@@ -232,20 +232,20 @@ golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.26.0 h1:RrRspgV4mU+YwB4FYnuBoKsUapNIL5cohGAmSH3azsw=
 golang.org/x/crypto v0.26.0/go.mod h1:GY7jblb9wI+FOo5y8/S2oY4zWP07AkOJ4+jxCqdqn54=
-golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f h1:99ci1mjWVBWwJiEKYY6jWa4d2nTQVIEhZIptnrVb1XY=
-golang.org/x/exp v0.0.0-20240416160154-fe59bbe5cc7f/go.mod h1:/lliqkxwWAhPjf5oSOIJup2XcqJaw8RGS6k3TGEc7GI=
+golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 h1:2dVuKD2vS7b0QIHQbpyTISPd0LeHDbnYEryqj5Q1ug8=
+golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbRXRL/OHtkFuWGRjvuhBJpk2IlY=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.17.0 h1:zY54UmvipHiNd+pm+m0x9KhZ9hl1/7QNMyxXbc6ICqA=
-golang.org/x/mod v0.17.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
+golang.org/x/mod v0.20.0 h1:utOm6MM3R3dnawAiJgn0y+xvuYRsm1RKM/4giyfDgV0=
+golang.org/x/mod v0.20.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.26.0 h1:soB7SVo0PWrY4vPW/+ay0jKDNScG2X9wFeYlXIvJsOQ=
-golang.org/x/net v0.26.0/go.mod h1:5YKkiSynbBIh3p6iOc/vibscux0x38BZDkn8sCUPxHE=
+golang.org/x/net v0.28.0 h1:a9JDOJc5GMUJ0+UDqmLT86WiEy7iWyIhz8gz8E4e5hE=
+golang.org/x/net v0.28.0/go.mod h1:yqtgsTWOOnlGLG9GFRrK3++bGOUEkNBoHZc8MEDWPNg=
 golang.org/x/oauth2 v0.21.0 h1:tsimM75w1tF/uws5rbeHzIWxEqElMehnc+iW793zsZs=
 golang.org/x/oauth2 v0.21.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -283,8 +283,8 @@ golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtn
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d h1:vU5i/LfpvrRCpgM/VPfJLg5KjxD3E+hfT1SH+d9zLwg=
-golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk=
+golang.org/x/tools v0.24.0 h1:J1shsA93PJUEVaUSaay7UXAyE8aimq3GW0pjlolpa24=
+golang.org/x/tools v0.24.0/go.mod h1:YhNqVBIfWHdzvTLs0d8LCuMhkKUgSUKldakyV7W/WDQ=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 34cf0284f..52746ebd9 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -33,16 +33,16 @@ require (
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
-	github.com/onsi/ginkgo/v2 v2.19.1 // indirect
-	github.com/onsi/gomega v1.34.0 // indirect
+	github.com/onsi/ginkgo/v2 v2.20.0 // indirect
+	github.com/onsi/gomega v1.34.1 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
 	github.com/stretchr/testify v1.9.0 // indirect
-	golang.org/x/net v0.25.0 // indirect
+	golang.org/x/net v0.28.0 // indirect
 	golang.org/x/oauth2 v0.18.0 // indirect
-	golang.org/x/sys v0.21.0 // indirect
-	golang.org/x/term v0.20.0 // indirect
-	golang.org/x/text v0.15.0 // indirect
+	golang.org/x/sys v0.23.0 // indirect
+	golang.org/x/term v0.23.0 // indirect
+	golang.org/x/text v0.17.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	google.golang.org/appengine v1.6.8 // indirect
 	google.golang.org/protobuf v1.34.1 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 4229215bd..8ce13c672 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -32,8 +32,8 @@ github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeN
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
 github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6 h1:k7nVchz72niMH6YLQNvHSdIE7iqsQxK1P41mySCvssg=
-github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6/go.mod h1:kf6iHlnVGwgKolg33glAes7Yg/8iWP8ukqeldJSO7jw=
+github.com/google/pprof v0.0.0-20240727154555-813a5fbdbec8 h1:FKHo8hFI3A+7w0aUQuYXQ+6EN5stWmeY/AZqtM8xk9k=
+github.com/google/pprof v0.0.0-20240727154555-813a5fbdbec8/go.mod h1:K1liHPHnj73Fdn/EKuT8nrFqBihUSKXoLYU0BuatOYo=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4=
@@ -61,10 +61,10 @@ github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/onrik/logrus v0.11.0 h1:pu+BCaWL36t0yQaj/2UHK2erf88dwssAKOT51mxPUVs=
 github.com/onrik/logrus v0.11.0/go.mod h1:fO2vlZwIdti6PidD3gV5YKt9Lq5ptpnP293RAe1ITwk=
-github.com/onsi/ginkgo/v2 v2.19.1 h1:QXgq3Z8Crl5EL1WBAC98A5sEBHARrAJNzAmMxzLcRF0=
-github.com/onsi/ginkgo/v2 v2.19.1/go.mod h1:O3DtEWQkPa/F7fBMgmZQKKsluAy8pd3rEQdrjkPb9zA=
-github.com/onsi/gomega v1.34.0 h1:eSSPsPNp6ZpsG8X1OVmOTxig+CblTc4AxpPBykhe2Os=
-github.com/onsi/gomega v1.34.0/go.mod h1:MIKI8c+f+QLWk+hxbePD4i0LMJSExPaZOVfkoex4cAo=
+github.com/onsi/ginkgo/v2 v2.20.0 h1:PE84V2mHqoT1sglvHc8ZdQtPcwmvvt29WLEEO3xmdZw=
+github.com/onsi/ginkgo/v2 v2.20.0/go.mod h1:lG9ey2Z29hR41WMVthyJBGUBcBhGOtoPF2VFMvBXFCI=
+github.com/onsi/gomega v1.34.1 h1:EUMJIKUjM8sKjYbtxQI9A4z2o+rruxnzNvpknOXie6k=
+github.com/onsi/gomega v1.34.1/go.mod h1:kU1QgUvBDLXBJq618Xvm2LUX6rSAfRaFRTcdOeDLwwY=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
@@ -96,6 +96,8 @@ golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACk
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
+golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 h1:2dVuKD2vS7b0QIHQbpyTISPd0LeHDbnYEryqj5Q1ug8=
+golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbRXRL/OHtkFuWGRjvuhBJpk2IlY=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
@@ -105,8 +107,8 @@ golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
 golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.25.0 h1:d/OCCoBEUq33pjydKrGQhw7IlUPI2Oylr+8qLx49kac=
-golang.org/x/net v0.25.0/go.mod h1:JkAGAh7GEvH74S6FOH42FLoXpXbE/aqXSrIQjXgsiwM=
+golang.org/x/net v0.28.0 h1:a9JDOJc5GMUJ0+UDqmLT86WiEy7iWyIhz8gz8E4e5hE=
+golang.org/x/net v0.28.0/go.mod h1:yqtgsTWOOnlGLG9GFRrK3++bGOUEkNBoHZc8MEDWPNg=
 golang.org/x/oauth2 v0.18.0 h1:09qnuIAgzdx1XplqJvW6CQqMCtGZykZWcXzPMPUusvI=
 golang.org/x/oauth2 v0.18.0/go.mod h1:Wf7knwG0MPoWIMMBgFlEaSUDaKskp0dCfrlJRJXbBi8=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -121,18 +123,18 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.21.0 h1:rF+pYz3DAGSQAxAu1CbC7catZg4ebC4UIeIhKxBZvws=
-golang.org/x/sys v0.21.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.23.0 h1:YfKFowiIMvtgl1UERQoTPPToxltDeZfbj4H7dVUCwmM=
+golang.org/x/sys v0.23.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/term v0.20.0 h1:VnkxpohqXaOBYJtBmEppKUG6mXpi+4O6purfc2+sMhw=
-golang.org/x/term v0.20.0/go.mod h1:8UkIAJTvZgivsXaD6/pH6U9ecQzZ45awqEOzuCvwpFY=
+golang.org/x/term v0.23.0 h1:F6D4vR+EHoL9/sWAWgAR1H2DcHr4PareCbAaCo1RpuU=
+golang.org/x/term v0.23.0/go.mod h1:DgV24QBUrK6jhZXl+20l6UWznPlwAHm1Q1mGHtydmSk=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
-golang.org/x/text v0.15.0 h1:h1V/4gjBv8v9cjcR6+AR5+/cIYK5N/WAgiv4xlsEtAk=
-golang.org/x/text v0.15.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
+golang.org/x/text v0.17.0 h1:XtiM5bkSOt+ewxlOE/aE/AKEHibwj/6gvWMl9Rsh0Qc=
+golang.org/x/text v0.17.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
 golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
 golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
@@ -140,8 +142,8 @@ golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtn
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
-golang.org/x/tools v0.21.0 h1:qc0xYgIbsSDt9EyWz05J5wfa7LOVW0YTLOXrqdLAWIw=
-golang.org/x/tools v0.21.0/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk=
+golang.org/x/tools v0.24.0 h1:J1shsA93PJUEVaUSaay7UXAyE8aimq3GW0pjlolpa24=
+golang.org/x/tools v0.24.0/go.mod h1:YhNqVBIfWHdzvTLs0d8LCuMhkKUgSUKldakyV7W/WDQ=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 9045b8a53..3d60a5313 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -59,7 +59,7 @@ image:
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.19.1 \
+		--build-arg GINKGO_VERSION=2.20.0 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -80,7 +80,7 @@ build: ensure-buildx
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.19.1 \
+		--build-arg GINKGO_VERSION=2.20.0 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 106029c77..a3f5e1b4d 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.19.1
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.20.0
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index 9ef6f5acd..ab2cb2dd7 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -96,7 +96,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.19.1
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.20.0
   fi
 
   echo "[dev-env] .. done building controller images"

From 28d2e782a8a2cdda25d76352b78b613f7fa1f27b Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 12 Aug 2024 21:37:22 +0200
Subject: [PATCH 1389/1641] Cloud Build: Add missing config, remove unused
 ones. (#11774)

---
 .../cloudbuild.yaml                                   |  2 +-
 images/go-grpc-greeter-server/cloudbuild.yaml         | 11 -----------
 2 files changed, 1 insertion(+), 12 deletions(-)
 rename images/{ext-auth-example-authsvc => e2e-test-echo}/cloudbuild.yaml (92%)
 delete mode 100644 images/go-grpc-greeter-server/cloudbuild.yaml

diff --git a/images/ext-auth-example-authsvc/cloudbuild.yaml b/images/e2e-test-echo/cloudbuild.yaml
similarity index 92%
rename from images/ext-auth-example-authsvc/cloudbuild.yaml
rename to images/e2e-test-echo/cloudbuild.yaml
index 09535a5a6..dc6e1dcf0 100644
--- a/images/ext-auth-example-authsvc/cloudbuild.yaml
+++ b/images/e2e-test-echo/cloudbuild.yaml
@@ -8,4 +8,4 @@ steps:
     entrypoint: bash
     args:
       - -c
-      - gcloud auth configure-docker && cd images && make NAME=ext-auth-example-authsvc push
+      - gcloud auth configure-docker && cd images && make NAME=e2e-test-echo push
diff --git a/images/go-grpc-greeter-server/cloudbuild.yaml b/images/go-grpc-greeter-server/cloudbuild.yaml
deleted file mode 100644
index 44e0bef8b..000000000
--- a/images/go-grpc-greeter-server/cloudbuild.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-options:
-  # Ignore Prow provided substitutions.
-  substitution_option: ALLOW_LOOSE
-steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
-    env:
-      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-    entrypoint: bash
-    args:
-      - -c
-      - gcloud auth configure-docker && cd images && make NAME=go-grpc-greeter-server push

From 8d96714c4e88d53c855c8c7e9f6cb093f1d40827 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 12 Aug 2024 22:52:46 +0200
Subject: [PATCH 1390/1641] Images: Trigger NGINX build. (#11779)

---
 images/nginx-1.25/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx-1.25/TAG b/images/nginx-1.25/TAG
index 3527dbc1b..f25246219 100644
--- a/images/nginx-1.25/TAG
+++ b/images/nginx-1.25/TAG
@@ -1 +1 @@
-v0.0.11
+v0.0.12

From ffbbb449f79580431d789678efc53aa17688faba Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 13 Aug 2024 00:24:42 +0200
Subject: [PATCH 1391/1641] Images: Bump `NGINX_BASE` to v0.0.12. (#11782)

---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index 1e1cf7a62..5e32265fa 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx-1.25:v0.0.11@sha256:05bec8b13129c54cf855ad1802b0fe302c5d63c992b76b5b9ba897650938a328
+registry.k8s.io/ingress-nginx/nginx-1.25:v0.0.12@sha256:2d471b3a34dc43d10c3f3d7f2a6e8a2ecf7654a4197e56374261c1c708b16365

From 3f0129aa8cf192680d6b356b682eaa61a3873c01 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 13 Aug 2024 00:32:01 +0200
Subject: [PATCH 1392/1641] Images: Trigger `test-runner` build. (#11785)

---
 images/test-runner/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/TAG b/images/test-runner/TAG
index 3ce186fb7..384942600 100644
--- a/images/test-runner/TAG
+++ b/images/test-runner/TAG
@@ -1 +1 @@
-v0.0.8
+v0.0.9

From f19e9265b0ca266c7f2bc5e4d2ac137479e8b842 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 13 Aug 2024 08:21:42 +0200
Subject: [PATCH 1393/1641] Tests: Bump `e2e-test-runner` to
 v20240812-3f0129aa. (#11788)

---
 build/run-in-docker.sh     | 2 +-
 test/e2e-image/Makefile    | 2 +-
 test/e2e/run-chart-test.sh | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 4cc678363..fcbf8f6cd 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240729-04899b27@sha256:9f067e6c861343da47f5851bf255aecdeb33a61fc5991a6c659fb237a3f619f9}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240812-3f0129aa@sha256:95c2aaf2a66e8cbbf7a7453046f3b024383c273a0988efab841cd96116afd1a9}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 9ade9961f..74f3cc437 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240729-04899b27@sha256:9f067e6c861343da47f5851bf255aecdeb33a61fc5991a6c659fb237a3f619f9"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240812-3f0129aa@sha256:95c2aaf2a66e8cbbf7a7453046f3b024383c273a0988efab841cd96116afd1a9"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index a3f5e1b4d..7d388c215 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -109,7 +109,7 @@ docker run --rm --interactive --network host \
     --volume $KUBECONFIG:/root/.kube/config \
     --volume "${DIR}/../../":/workdir \
     --workdir /workdir \
-    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240729-04899b27@sha256:9f067e6c861343da47f5851bf255aecdeb33a61fc5991a6c659fb237a3f619f9 \
+    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240812-3f0129aa@sha256:95c2aaf2a66e8cbbf7a7453046f3b024383c273a0988efab841cd96116afd1a9 \
         ct install \
         --charts charts/ingress-nginx \
         --helm-extra-args "--timeout 60s"

From e5c29d1ce437446f750875094de9fbe9e05c8250 Mon Sep 17 00:00:00 2001
From: chengjoey <30427474+chengjoey@users.noreply.github.com>
Date: Tue, 13 Aug 2024 16:37:37 +0800
Subject: [PATCH 1394/1641] Controller: Fix panic in alternative backend
 merging. (#11789)

---
 internal/ingress/controller/controller.go     | 12 +++-
 .../ingress/controller/controller_test.go     | 68 +++++++++++++++++++
 2 files changed, 78 insertions(+), 2 deletions(-)

diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 2e782f485..9250ded08 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -1594,7 +1594,11 @@ func mergeAlternativeBackends(ing *ingress.Ingress, upstreams map[string]*ingres
 			altEqualsPri := false
 
 			for _, loc := range servers[defServerName].Locations {
-				priUps := upstreams[loc.Backend]
+				priUps, ok := upstreams[loc.Backend]
+				if !ok {
+					klog.Warningf("cannot find primary backend %s for location %s%s", loc.Backend, servers[defServerName].Hostname, loc.Path)
+					continue
+				}
 				altEqualsPri = altUps.Name == priUps.Name
 				if altEqualsPri {
 					klog.Warningf("alternative upstream %s in Ingress %s/%s is primary upstream in Other Ingress for location %s%s!",
@@ -1653,7 +1657,11 @@ func mergeAlternativeBackends(ing *ingress.Ingress, upstreams map[string]*ingres
 
 			// find matching paths
 			for _, loc := range server.Locations {
-				priUps := upstreams[loc.Backend]
+				priUps, ok := upstreams[loc.Backend]
+				if !ok {
+					klog.Warningf("cannot find primary backend %s for location %s%s", loc.Backend, server.Hostname, loc.Path)
+					continue
+				}
 				altEqualsPri = altUps.Name == priUps.Name
 				if altEqualsPri {
 					klog.Warningf("alternative upstream %s in Ingress %s/%s is primary upstream in Other Ingress for location %s%s!",
diff --git a/internal/ingress/controller/controller_test.go b/internal/ingress/controller/controller_test.go
index e257dd1f1..9d3fea470 100644
--- a/internal/ingress/controller/controller_test.go
+++ b/internal/ingress/controller/controller_test.go
@@ -1292,6 +1292,74 @@ func TestMergeAlternativeBackends(t *testing.T) {
 				},
 			},
 		},
+		"alternative backend does not merge for missing upstream": {
+			&ingress.Ingress{
+				Ingress: networking.Ingress{
+					ObjectMeta: metav1.ObjectMeta{
+						Namespace: "example",
+					},
+					Spec: networking.IngressSpec{
+						Rules: []networking.IngressRule{
+							{
+								Host: "example.com",
+								IngressRuleValue: networking.IngressRuleValue{
+									HTTP: &networking.HTTPIngressRuleValue{
+										Paths: []networking.HTTPIngressPath{
+											{
+												Path:     "/",
+												PathType: &pathTypePrefix,
+												Backend: networking.IngressBackend{
+													Service: &networking.IngressServiceBackend{
+														Name: "http-svc-canary",
+														Port: networking.ServiceBackendPort{
+															Number: 80,
+														},
+													},
+												},
+											},
+										},
+									},
+								},
+							},
+						},
+					},
+				},
+			},
+			map[string]*ingress.Backend{
+				"example-http-svc-canary-80": {
+					Name:     "example-http-svc-canary-80",
+					NoServer: true,
+					TrafficShapingPolicy: ingress.TrafficShapingPolicy{
+						Weight: 20,
+					},
+				},
+			},
+			map[string]*ingress.Server{
+				"example.com": {
+					Hostname: "example.com",
+					Locations: []*ingress.Location{
+						{
+							Path:     "/",
+							PathType: &pathTypePrefix,
+							Backend:  "example-http-svc-80",
+						},
+					},
+				},
+			},
+			map[string]*ingress.Backend{},
+			map[string]*ingress.Server{
+				"example.com": {
+					Hostname: "example.com",
+					Locations: []*ingress.Location{
+						{
+							Path:     "/",
+							PathType: &pathTypePrefix,
+							Backend:  "example-http-svc-80",
+						},
+					},
+				},
+			},
+		},
 	}
 
 	for title, tc := range testCases {

From b933310da5914adbf3f243b5cf902c245d5a0cef Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 13 Aug 2024 12:28:06 +0200
Subject: [PATCH 1395/1641] Images: Trigger other builds. (#11796)

---
 images/cfssl/TAG                    | 2 +-
 images/custom-error-pages/TAG       | 2 +-
 images/e2e-test-echo/TAG            | 2 +-
 images/ext-auth-example-authsvc/TAG | 2 +-
 images/fastcgi-helloserver/TAG      | 2 +-
 images/go-grpc-greeter-server/TAG   | 2 +-
 images/httpbun/TAG                  | 2 +-
 images/kube-webhook-certgen/TAG     | 2 +-
 images/nginx/TAG                    | 2 +-
 images/opentelemetry/TAG            | 2 +-
 10 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/images/cfssl/TAG b/images/cfssl/TAG
index 7df503e63..0ec25f750 100644
--- a/images/cfssl/TAG
+++ b/images/cfssl/TAG
@@ -1 +1 @@
-v0.0.4
+v1.0.0
diff --git a/images/custom-error-pages/TAG b/images/custom-error-pages/TAG
index f9cece58d..0ec25f750 100644
--- a/images/custom-error-pages/TAG
+++ b/images/custom-error-pages/TAG
@@ -1 +1 @@
-v0.0.3
+v1.0.0
diff --git a/images/e2e-test-echo/TAG b/images/e2e-test-echo/TAG
index f9cece58d..0ec25f750 100644
--- a/images/e2e-test-echo/TAG
+++ b/images/e2e-test-echo/TAG
@@ -1 +1 @@
-v0.0.3
+v1.0.0
diff --git a/images/ext-auth-example-authsvc/TAG b/images/ext-auth-example-authsvc/TAG
index f9cece58d..0ec25f750 100644
--- a/images/ext-auth-example-authsvc/TAG
+++ b/images/ext-auth-example-authsvc/TAG
@@ -1 +1 @@
-v0.0.3
+v1.0.0
diff --git a/images/fastcgi-helloserver/TAG b/images/fastcgi-helloserver/TAG
index f9cece58d..0ec25f750 100644
--- a/images/fastcgi-helloserver/TAG
+++ b/images/fastcgi-helloserver/TAG
@@ -1 +1 @@
-v0.0.3
+v1.0.0
diff --git a/images/go-grpc-greeter-server/TAG b/images/go-grpc-greeter-server/TAG
index f9cece58d..0ec25f750 100644
--- a/images/go-grpc-greeter-server/TAG
+++ b/images/go-grpc-greeter-server/TAG
@@ -1 +1 @@
-v0.0.3
+v1.0.0
diff --git a/images/httpbun/TAG b/images/httpbun/TAG
index f9cece58d..0ec25f750 100644
--- a/images/httpbun/TAG
+++ b/images/httpbun/TAG
@@ -1 +1 @@
-v0.0.3
+v1.0.0
diff --git a/images/kube-webhook-certgen/TAG b/images/kube-webhook-certgen/TAG
index c432e90f2..92f76b423 100644
--- a/images/kube-webhook-certgen/TAG
+++ b/images/kube-webhook-certgen/TAG
@@ -1 +1 @@
-v1.4.2
+v1.4.3
diff --git a/images/nginx/TAG b/images/nginx/TAG
index bbdeab622..0ec25f750 100644
--- a/images/nginx/TAG
+++ b/images/nginx/TAG
@@ -1 +1 @@
-0.0.5
+v1.0.0
diff --git a/images/opentelemetry/TAG b/images/opentelemetry/TAG
index a3dce6cd3..0ec25f750 100644
--- a/images/opentelemetry/TAG
+++ b/images/opentelemetry/TAG
@@ -1 +1 @@
-v0.0.2
+v1.0.0

From 0dd1bf5fb93101fc62a43c24d26ab26d0b027249 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 13 Aug 2024 19:35:35 +0200
Subject: [PATCH 1396/1641] Images: Trigger failed builds. (#11800)

---
 images/custom-error-pages/TAG  | 2 +-
 images/fastcgi-helloserver/TAG | 2 +-
 images/httpbun/TAG             | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/images/custom-error-pages/TAG b/images/custom-error-pages/TAG
index 0ec25f750..b18d46540 100644
--- a/images/custom-error-pages/TAG
+++ b/images/custom-error-pages/TAG
@@ -1 +1 @@
-v1.0.0
+v1.0.1
diff --git a/images/fastcgi-helloserver/TAG b/images/fastcgi-helloserver/TAG
index 0ec25f750..b18d46540 100644
--- a/images/fastcgi-helloserver/TAG
+++ b/images/fastcgi-helloserver/TAG
@@ -1 +1 @@
-v1.0.0
+v1.0.1
diff --git a/images/httpbun/TAG b/images/httpbun/TAG
index 0ec25f750..b18d46540 100644
--- a/images/httpbun/TAG
+++ b/images/httpbun/TAG
@@ -1 +1 @@
-v1.0.0
+v1.0.1

From 004321e265d4653d57c7f40c30432724c539df4f Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 14 Aug 2024 19:55:17 +0200
Subject: [PATCH 1397/1641] Tests & Docs: Bump images. (#11803)

* Tests: Bump CFSSL.

* Docs: Bump Custom Error Pages.

* Tests: Bump FastCGI HelloServer.

* Tests: Bump HTTPBun.

* Docs: Bump OpenTelemetry.
---
 .../custom-errors/custom-default-backend.helm.values.yaml     | 4 ++--
 .../customization/custom-errors/custom-default-backend.yaml   | 2 +-
 docs/user-guide/third-party-addons/opentelemetry.md           | 2 +-
 images/test-runner/rootfs/Dockerfile                          | 4 ++--
 test/e2e/HTTPBUN_IMAGE                                        | 2 +-
 test/e2e/framework/fastcgi_helloserver.go                     | 2 +-
 test/e2e/settings/ocsp/ocsp.go                                | 2 +-
 7 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
index 708a93831..e6c3e2169 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
@@ -5,8 +5,8 @@ defaultBackend:
   enabled: true
   image:
     registry: registry.k8s.io
-    image: ingress-nginx/nginx-errors
-    tag: "v20230505@sha256:3600dcd1bbd0d05959bb01af4b272714e94d22d24a64e91838e7183c80e53f7f"
+    image: ingress-nginx/custom-error-pages
+    tag: v1.0.1@sha256:d8ab7de384cf41bdaa696354e19f1d0efbb0c9ac69f8682ffc0cc008a252eb76
   extraVolumes:
   - name: custom-error-pages
     configMap:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.yaml b/docs/examples/customization/custom-errors/custom-default-backend.yaml
index e606c5b62..a47805ad7 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.yaml
@@ -36,7 +36,7 @@ spec:
     spec:
       containers:
       - name: nginx-error-server
-        image: registry.k8s.io/ingress-nginx/nginx-errors:v20230505@sha256:3600dcd1bbd0d05959bb01af4b272714e94d22d24a64e91838e7183c80e53f7f
+        image: registry.k8s.io/ingress-nginx/custom-error-pages:v1.0.1@sha256:d8ab7de384cf41bdaa696354e19f1d0efbb0c9ac69f8682ffc0cc008a252eb76
         ports:
         - containerPort: 8080
         # Setting the environment variable DEBUG we can see the headers sent 
diff --git a/docs/user-guide/third-party-addons/opentelemetry.md b/docs/user-guide/third-party-addons/opentelemetry.md
index e681e1c69..4d71ff675 100644
--- a/docs/user-guide/third-party-addons/opentelemetry.md
+++ b/docs/user-guide/third-party-addons/opentelemetry.md
@@ -152,7 +152,7 @@ To install the example and collectors run:
     ```yaml
       opentelemetry:
         enabled: true
-        image: registry.k8s.io/ingress-nginx/opentelemetry:v20230527@sha256:fd7ec835f31b7b37187238eb4fdad4438806e69f413a203796263131f4f02ed0
+        image: registry.k8s.io/ingress-nginx/opentelemetry-1.25.3:v20240813-b933310d@sha256:f7604ac0547ed64d79b98d92133234e66c2c8aade3c1f4809fed5eec1fb7f922
         containerSecurityContext:
         allowPrivilegeEscalation: false
     ```
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index ff031182d..fd664f2e5 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -66,8 +66,8 @@ RUN apk update && apk upgrade && apk add --no-cache \
   openssl \
   cfssl@testing \
   tzdata \
-  libc6-compat \ 
-  sqlite-dev 
+  libc6-compat \
+  sqlite-dev
 
 RUN go install -v github.com/onsi/ginkgo/v2/ginkgo@v${GINKGO_VERSION} \
     && go install golang.org/x/lint/golint@${GOLINT_VERSION}
diff --git a/test/e2e/HTTPBUN_IMAGE b/test/e2e/HTTPBUN_IMAGE
index 7e83b49fe..7deb1e1cb 100644
--- a/test/e2e/HTTPBUN_IMAGE
+++ b/test/e2e/HTTPBUN_IMAGE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/e2e-test-httpbun:v20231011-8b53cabe0
+registry.k8s.io/ingress-nginx/httpbun:v1.0.1@sha256:264371edd5b19ddc2da9333bb4d87c0ce3c0cf37c73c4adeb8bc641b872bc9da
diff --git a/test/e2e/framework/fastcgi_helloserver.go b/test/e2e/framework/fastcgi_helloserver.go
index 73f9ef340..60482c067 100644
--- a/test/e2e/framework/fastcgi_helloserver.go
+++ b/test/e2e/framework/fastcgi_helloserver.go
@@ -59,7 +59,7 @@ func (f *Framework) NewNewFastCGIHelloServerDeploymentWithReplicas(replicas int3
 					Containers: []corev1.Container{
 						{
 							Name:  "fastcgi-helloserver",
-							Image: "registry.k8s.io/ingress-nginx/e2e-test-fastcgi-helloserver@sha256:0e08c836cc58f1ea862578de99b13bc4264fe071e816f96dc1d79857bfba7473",
+							Image: "registry.k8s.io/ingress-nginx/fastcgi-helloserver:v1.0.1@sha256:bfcce5866d106450f41af15af868886c953c3661373f34aa6d99bcc6f44c6ba6",
 							Env:   []corev1.EnvVar{},
 							Ports: []corev1.ContainerPort{
 								{
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index 21cda3008..ef3bfb58a 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -295,7 +295,7 @@ func ocspserveDeployment(namespace string) (*appsv1.Deployment, *corev1.Service)
 						Containers: []corev1.Container{
 							{
 								Name:  name,
-								Image: "registry.k8s.io/ingress-nginx/e2e-test-cfssl@sha256:48869cf72b0ceb1d8c82029f85961e423daf3ff8a04f4a455150000f90a90606",
+								Image: "registry.k8s.io/ingress-nginx/cfssl:v1.0.0@sha256:fffd36e2f1c8fd485ec6fd24c6d55f0817b54352274293d2a247b8a0d924c5b0",
 								Command: []string{
 									"/bin/bash",
 									"-c",

From 593f05ed571fdd69e06504d13c4f15308643ad66 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 15 Aug 2024 13:33:14 +0200
Subject: [PATCH 1398/1641] Chart: Bump Kube Webhook CertGen & OpenTelemetry.
 (#11809)

---
 charts/ingress-nginx/README.md   | 10 +++++-----
 charts/ingress-nginx/values.yaml | 10 +++++-----
 2 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 64abf33cc..3b10e8ee7 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -253,11 +253,11 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.namespaceSelector | object | `{}` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
-| controller.admissionWebhooks.patch.image.digest | string | `"sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366"` |  |
+| controller.admissionWebhooks.patch.image.digest | string | `"sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.admissionWebhooks.patch.image.registry | string | `"registry.k8s.io"` |  |
-| controller.admissionWebhooks.patch.image.tag | string | `"v1.4.1"` |  |
+| controller.admissionWebhooks.patch.image.tag | string | `"v1.4.3"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
@@ -402,11 +402,11 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.opentelemetry.containerSecurityContext.runAsUser | int | `65532` | The image's default user, inherited from its base image `cgr.dev/chainguard/static`. |
 | controller.opentelemetry.containerSecurityContext.seccompProfile.type | string | `"RuntimeDefault"` |  |
 | controller.opentelemetry.enabled | bool | `false` |  |
-| controller.opentelemetry.image.digest | string | `"sha256:13bee3f5223883d3ca62fee7309ad02d22ec00ff0d7033e3e9aca7a9f60fd472"` |  |
+| controller.opentelemetry.image.digest | string | `"sha256:f7604ac0547ed64d79b98d92133234e66c2c8aade3c1f4809fed5eec1fb7f922"` |  |
 | controller.opentelemetry.image.distroless | bool | `true` |  |
-| controller.opentelemetry.image.image | string | `"ingress-nginx/opentelemetry"` |  |
+| controller.opentelemetry.image.image | string | `"ingress-nginx/opentelemetry-1.25.3"` |  |
 | controller.opentelemetry.image.registry | string | `"registry.k8s.io"` |  |
-| controller.opentelemetry.image.tag | string | `"v20230721-3e2062ee5"` |  |
+| controller.opentelemetry.image.tag | string | `"v20240813-b933310d"` |  |
 | controller.opentelemetry.name | string | `"opentelemetry"` |  |
 | controller.opentelemetry.resources | object | `{}` |  |
 | controller.podAnnotations | object | `{}` | Annotations to be added to controller pods # |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 9d309627d..026a43f43 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -711,12 +711,12 @@ controller:
     name: opentelemetry
     image:
       registry: registry.k8s.io
-      image: ingress-nginx/opentelemetry
+      image: ingress-nginx/opentelemetry-1.25.3
       ## for backwards compatibility consider setting the full image url via the repository value below
       ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
       ## repository:
-      tag: "v20230721-3e2062ee5"
-      digest: sha256:13bee3f5223883d3ca62fee7309ad02d22ec00ff0d7033e3e9aca7a9f60fd472
+      tag: v20240813-b933310d
+      digest: sha256:f7604ac0547ed64d79b98d92133234e66c2c8aade3c1f4809fed5eec1fb7f922
       distroless: true
     containerSecurityContext:
       runAsNonRoot: true
@@ -812,8 +812,8 @@ controller:
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
         ## repository:
-        tag: v1.4.1
-        digest: sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        tag: v1.4.3
+        digest: sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         pullPolicy: IfNotPresent
       # -- Provide a priority class name to the webhook patching job
       ##

From d70b849d253749431aebc13e789c5981ee6f4538 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 16 Aug 2024 09:25:07 +0200
Subject: [PATCH 1399/1641] Release controller v1.11.2/v1.10.4 & chart
 v4.11.2/v4.10.4. (#11816)

---
 README.md                                     |  2 +
 changelog/controller-1.10.4.md                | 53 ++++++++++++++++++
 changelog/controller-1.11.2.md                | 54 +++++++++++++++++++
 charts/ingress-nginx/Chart.yaml               |  6 +--
 charts/ingress-nginx/README.md                |  8 +--
 .../changelog/helm-chart-4.10.4.md            |  9 ++++
 .../changelog/helm-chart-4.11.2.md            |  9 ++++
 charts/ingress-nginx/values.yaml              |  6 +--
 deploy/static/provider/aws/deploy.yaml        | 48 ++++++++---------
 .../aws/nlb-with-tls-termination/deploy.yaml  | 48 ++++++++---------
 deploy/static/provider/baremetal/deploy.yaml  | 48 ++++++++---------
 deploy/static/provider/cloud/deploy.yaml      | 48 ++++++++---------
 deploy/static/provider/do/deploy.yaml         | 48 ++++++++---------
 deploy/static/provider/exoscale/deploy.yaml   | 48 ++++++++---------
 deploy/static/provider/kind/deploy.yaml       | 48 ++++++++---------
 deploy/static/provider/oracle/deploy.yaml     | 48 ++++++++---------
 deploy/static/provider/scw/deploy.yaml        | 48 ++++++++---------
 docs/deploy/index.md                          | 20 +++----
 docs/e2e-tests.md                             |  3 ++
 19 files changed, 366 insertions(+), 236 deletions(-)
 create mode 100644 changelog/controller-1.10.4.md
 create mode 100644 changelog/controller-1.11.2.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.10.4.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.11.2.md

diff --git a/README.md b/README.md
index 00960a4b7..b1cd22aa1 100644
--- a/README.md
+++ b/README.md
@@ -37,8 +37,10 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 
 | Supported | Ingress-NGINX version | k8s supported version         | Alpine Version | Nginx Version | Helm Chart Version |
 | :-------: | --------------------- | ----------------------------- | -------------- | ------------- | ------------------ |
+|    🔄     | **v1.11.2**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.11.2             |
 |    🔄     | **v1.11.1**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.11.1             |
 |    🔄     | **v1.11.0**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.11.0             |
+|    🔄     | **v1.10.4**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.10.4             |
 |    🔄     | **v1.10.3**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.10.3             |
 |    🔄     | **v1.10.2**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.10.2             |
 |    🔄     | **v1.10.1**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.19.1         | 1.25.3        | 4.10.1             |
diff --git a/changelog/controller-1.10.4.md b/changelog/controller-1.10.4.md
new file mode 100644
index 000000000..9a4e8025b
--- /dev/null
+++ b/changelog/controller-1.10.4.md
@@ -0,0 +1,53 @@
+# Changelog
+
+### controller-v1.10.4
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.10.4@sha256:505b9048c02dde3d6c8667bf0b52aba7b36adf7b03da34c47d5fa312d2d4c6fc
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.10.4@sha256:bf71acf6e71830a4470e2183e3bc93c4f006b954f8a05fb434242ef0f8a24858
+
+### All changes:
+
+* Chart: Bump Kube Webhook CertGen & OpenTelemetry. (#11811)
+* Images: Trigger controller build. (#11808)
+* Tests & Docs: Bump images. (#11804)
+* Images: Trigger failed builds. (#11801)
+* Images: Trigger other builds. (#11797)
+* Controller: Fix panic in alternative backend merging. (#11793)
+* Tests: Bump `e2e-test-runner` to v20240812-3f0129aa. (#11791)
+* Images: Trigger `test-runner` build. (#11786)
+* Images: Bump `NGINX_BASE` to v0.0.12. (#11783)
+* Images: Trigger NGINX build. (#11780)
+* Cloud Build: Add missing config, remove unused ones. (#11776)
+* Generate correct output on NumCPU() when using cgroups2 (#11775)
+* Cloud Build: Tweak timeouts. (#11762)
+* Cloud Build: Fix substitutions. (#11759)
+* Cloud Build: Some chores. (#11756)
+* Go: Bump to v1.22.6. (#11748)
+* Images: Bump `NGINX_BASE` to v0.0.11. (#11744)
+* Images: Trigger NGINX build. (#11736)
+* docs: update OpenSSL Roadmap link (#11734)
+* Go: Bump to v1.22.5. (#11731)
+* Docs: Fix typo in AWS LB Controller reference (#11724)
+* Perform some cleaning operations on line breaks. (#11722)
+* Missing anchors in regular expression. (#11718)
+* Docs: Fix `from-to-www` redirect description. (#11715)
+* Chart: Remove `isControllerTagValid`. (#11714)
+* Tests: Bump `e2e-test-runner` to v20240729-04899b27. (#11704)
+* Docs: Clarify `from-to-www` redirect direction. (#11692)
+* added real-client-ip faq (#11665)
+* Docs: Format NGINX configuration table. (#11660)
+
+### Dependency updates:
+
+* Bump github.com/onsi/ginkgo/v2 from 2.19.1 to 2.20.0 (#11772)
+* Bump the all group with 2 updates (#11770)
+* Bump golang.org/x/crypto from 0.25.0 to 0.26.0 (#11768)
+* Bump the all group with 3 updates (#11729)
+* Bump github.com/onsi/ginkgo/v2 from 2.19.0 to 2.19.1 in the all group (#11700)
+* Bump the all group with 2 updates (#11697)
+* Bump the all group with 4 updates (#11676)
+* Bump the all group with 2 updates (#11674)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.10.3...controller-v1.10.4
diff --git a/changelog/controller-1.11.2.md b/changelog/controller-1.11.2.md
new file mode 100644
index 000000000..0979af15d
--- /dev/null
+++ b/changelog/controller-1.11.2.md
@@ -0,0 +1,54 @@
+# Changelog
+
+### controller-v1.11.2
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.11.2@sha256:21b55a2f0213a18b91612a8c0850167e00a8e34391fd595139a708f9c047e7a8
+
+### All changes:
+
+* Chart: Bump Kube Webhook CertGen & OpenTelemetry. (#11812)
+* Images: Trigger controller build. (#11807)
+* Tests & Docs: Bump images. (#11805)
+* Images: Trigger failed builds. (#11802)
+* Images: Trigger other builds. (#11798)
+* Controller: Fix panic in alternative backend merging. (#11794)
+* Tests: Bump `e2e-test-runner` to v20240812-3f0129aa. (#11792)
+* Images: Trigger `test-runner` build. (#11787)
+* Images: Bump `NGINX_BASE` to v0.0.12. (#11784)
+* Images: Trigger NGINX build. (#11781)
+* Cloud Build: Add missing config, remove unused ones. (#11777)
+* Generate correct output on NumCPU() when using cgroups2 (#11778)
+* Cloud Build: Tweak timeouts. (#11763)
+* Cloud Build: Fix substitutions. (#11760)
+* Cloud Build: Some chores. (#11757)
+* Go: Bump to v1.22.6. (#11749)
+* Images: Bump `NGINX_BASE` to v0.0.11. (#11743)
+* Images: Trigger NGINX build. (#11737)
+* docs: update OpenSSL Roadmap link (#11733)
+* Go: Bump to v1.22.5. (#11732)
+* Docs: Fix typo in AWS LB Controller reference (#11725)
+* Perform some cleaning operations on line breaks. (#11721)
+* Missing anchors in regular expression. (#11719)
+* Docs: Fix `from-to-www` redirect description. (#11716)
+* Chart: Remove `isControllerTagValid`. (#11713)
+* Tests: Bump `e2e-test-runner` to v20240729-04899b27. (#11705)
+* Docs: Clarify `from-to-www` redirect direction. (#11693)
+* added real-client-ip faq (#11664)
+* Docs: Format NGINX configuration table. (#11662)
+* Docs: Update version in `deploy/index.md`. (#11652)
+
+### Dependency updates:
+
+* Bump github.com/onsi/ginkgo/v2 from 2.19.1 to 2.20.0 (#11773)
+* Bump the all group with 2 updates (#11771)
+* Bump golang.org/x/crypto from 0.25.0 to 0.26.0 (#11769)
+* Bump the all group with 3 updates (#11728)
+* Bump github.com/onsi/ginkgo/v2 from 2.19.0 to 2.19.1 in the all group (#11701)
+* Bump the all group with 2 updates (#11698)
+* Bump the all group with 4 updates (#11677)
+* Bump the all group with 2 updates (#11675)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.11.1...controller-v1.11.2
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 62c880fc9..fd7b81030 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,9 +1,9 @@
 annotations:
   artifacthub.io/changes: |
-    - Update Ingress-Nginx version controller-v1.11.1
+    - Update Ingress-Nginx version controller-v1.11.2
   artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.11.1
+appVersion: 1.11.2
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 home: https://github.com/kubernetes/ingress-nginx
@@ -22,4 +22,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.11.1
+version: 4.11.2
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 3b10e8ee7..c1d1dfb66 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.11.1](https://img.shields.io/badge/Version-4.11.1-informational?style=flat-square) ![AppVersion: 1.11.1](https://img.shields.io/badge/AppVersion-1.11.1-informational?style=flat-square)
+![Version: 4.11.2](https://img.shields.io/badge/Version-4.11.2-informational?style=flat-square) ![AppVersion: 1.11.2](https://img.shields.io/badge/AppVersion-1.11.2-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -325,8 +325,8 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `false` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a"` |  |
-| controller.image.digestChroot | string | `"sha256:7cabe4bd7558bfdf5b707976d7be56fd15ffece735d7c90fc238b6eda290fd8d"` |  |
+| controller.image.digest | string | `"sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce"` |  |
+| controller.image.digestChroot | string | `"sha256:21b55a2f0213a18b91612a8c0850167e00a8e34391fd595139a708f9c047e7a8"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.readOnlyRootFilesystem | bool | `false` |  |
@@ -335,7 +335,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.image.runAsNonRoot | bool | `true` |  |
 | controller.image.runAsUser | int | `101` | This value must not be changed using the official image. uid=101(www-data) gid=82(www-data) groups=82(www-data) |
 | controller.image.seccompProfile.type | string | `"RuntimeDefault"` |  |
-| controller.image.tag | string | `"v1.11.1"` |  |
+| controller.image.tag | string | `"v1.11.2"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource | object | `{"aliases":[],"annotations":{},"controllerValue":"k8s.io/ingress-nginx","default":false,"enabled":true,"name":"nginx","parameters":{}}` | This section refers to the creation of the IngressClass resource. IngressClasses are immutable and cannot be changed after creation. We do not support namespaced IngressClasses, yet, so a ClusterRole and a ClusterRoleBinding is required. |
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.10.4.md b/charts/ingress-nginx/changelog/helm-chart-4.10.4.md
new file mode 100644
index 000000000..661d3c9bb
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.10.4.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.10.4
+
+* Update Ingress-Nginx version controller-v1.10.4
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.10.3...helm-chart-4.10.4
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.11.2.md b/charts/ingress-nginx/changelog/helm-chart-4.11.2.md
new file mode 100644
index 000000000..c7645a5b6
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.11.2.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.11.2
+
+* Update Ingress-Nginx version controller-v1.11.2
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.11.1...helm-chart-4.11.2
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 026a43f43..55d6c9a92 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -26,9 +26,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.11.1"
-    digest: sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
-    digestChroot: sha256:7cabe4bd7558bfdf5b707976d7be56fd15ffece735d7c90fc238b6eda290fd8d
+    tag: "v1.11.2"
+    digest: sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
+    digestChroot: sha256:21b55a2f0213a18b91612a8c0850167e00a8e34391fd595139a708f9c047e7a8
     pullPolicy: IfNotPresent
     runAsNonRoot: true
     # -- This value must not be changed using the official image.
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index f74fa7fab..fb4a91472 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -345,7 +345,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -378,7 +378,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -401,7 +401,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
     spec:
       containers:
       - args:
@@ -448,7 +448,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -549,7 +549,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -575,7 +575,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -586,7 +586,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -602,7 +602,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -628,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -641,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 683e96446..4fff060c1 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -336,7 +336,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -354,7 +354,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -387,7 +387,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -410,7 +410,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -432,7 +432,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
     spec:
       containers:
       - args:
@@ -457,7 +457,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -536,7 +536,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -547,7 +547,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -561,7 +561,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -587,7 +587,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -598,7 +598,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -614,7 +614,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -640,7 +640,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -653,7 +653,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 481ede02e..8cad92d4c 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -341,7 +341,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -518,7 +518,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +529,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -543,7 +543,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -569,7 +569,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -580,7 +580,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -596,7 +596,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -622,7 +622,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index 13e1163c1..f9ad071c6 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -341,7 +341,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -374,7 +374,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -397,7 +397,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -419,7 +419,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
     spec:
       containers:
       - args:
@@ -444,7 +444,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -520,7 +520,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -531,7 +531,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -545,7 +545,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -571,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -598,7 +598,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -624,7 +624,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -637,7 +637,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index e0729e116..43affe0f7 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -574,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -601,7 +601,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -640,7 +640,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 584ebe1d7..5639e287b 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -350,7 +350,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -383,7 +383,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -406,7 +406,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -424,7 +424,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
     spec:
       containers:
       - args:
@@ -449,7 +449,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -529,7 +529,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -540,7 +540,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -554,7 +554,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -580,7 +580,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -591,7 +591,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -607,7 +607,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -633,7 +633,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -646,7 +646,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index a11e4b253..8da72399b 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -341,7 +341,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
     spec:
       containers:
       - args:
@@ -444,7 +444,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -530,7 +530,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -541,7 +541,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -555,7 +555,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -592,7 +592,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -608,7 +608,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -634,7 +634,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -647,7 +647,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index 86be29206..a85e0166f 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -345,7 +345,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -378,7 +378,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -401,7 +401,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
     spec:
       containers:
       - args:
@@ -448,7 +448,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -524,7 +524,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +535,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -549,7 +549,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -575,7 +575,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -586,7 +586,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -602,7 +602,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -628,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -641,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index f37ff01d2..92c8ce880 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -330,7 +330,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.1@sha256:e6439a12b52076965928e83b7b56aae6731231677b01e81818bce7fa5c60161a
+        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -574,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.1
+        app.kubernetes.io/version: 1.11.2
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -601,7 +601,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.1@sha256:36d05b4077fb8e3d13663702fa337f124675ba8667cbd949c03a8e8ea6fa4366
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -627,7 +627,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -640,7 +640,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.1
+    app.kubernetes.io/version: 1.11.2
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 214bc4f70..e298cb27f 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -87,7 +87,7 @@ helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -270,7 +270,7 @@ In AWS, we use a Network load balancer (NLB) to expose the Ingress-Nginx Control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -278,10 +278,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer.
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -329,7 +329,7 @@ kubectl create clusterrolebinding cluster-admin-binding \
 Then, the ingress controller can be installed like this:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -346,7 +346,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -354,7 +354,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/do/deploy.yaml
 ```
 
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
@@ -362,7 +362,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/scw/deploy.yaml
 ```
 Refer to the [dedicated tutorial](https://www.scaleway.com/en/docs/tutorials/proxy-protocol-v2-load-balancer/#configuring-proxy-protocol-for-ingress-nginx) in the Scaleway documentation for configuring the proxy protocol for ingress-nginx with the Scaleway load balancer.
 
@@ -379,7 +379,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A
@@ -406,7 +406,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.1/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index ca64b98c1..f288ec82f 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -268,6 +268,9 @@ Do not try to edit it manually.
 ### [x-forwarded-prefix](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/xforwardedprefix.go#L28)
 - [should set the X-Forwarded-Prefix to the annotation value](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/xforwardedprefix.go#L35)
 - [should not add X-Forwarded-Prefix if the annotation value is empty](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/xforwardedprefix.go#L57)
+### [[CGroups] cgroups](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/cgroups/cgroups.go#L32)
+- [detects cgroups version v1](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/cgroups/cgroups.go#L40)
+- [detect cgroups version v2](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/cgroups/cgroups.go#L83)
 ### [Debug CLI](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/dbg/main.go#L29)
 - [should list the backend servers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/dbg/main.go#L37)
 - [should get information for a specific backend server](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/dbg/main.go#L56)

From eee2760907f029b808d95cd90abf290a9f0f09dd Mon Sep 17 00:00:00 2001
From: chengjoey <30427474+chengjoey@users.noreply.github.com>
Date: Fri, 16 Aug 2024 16:53:12 +0800
Subject: [PATCH 1400/1641] Metrics: Remove `ingress_upstream_latency_seconds`.
 (#11795)

Signed-off-by: joey <zchengjoey@gmail.com>
---
 docs/user-guide/monitoring.md                |  6 ---
 internal/ingress/metric/collectors/socket.go | 54 ++------------------
 2 files changed, 4 insertions(+), 56 deletions(-)

diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index 28608e850..b96914e1b 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -386,10 +386,6 @@ Prometheus metrics are exposed on port 10254.
   The number of bytes sent to a client. **Deprecated**, use `nginx_ingress_controller_response_size`\
   nginx var: `bytes_sent`
 
-* `nginx_ingress_controller_ingress_upstream_latency_seconds` Summary\
-  Upstream service latency per Ingress. **Deprecated**, use `nginx_ingress_controller_connect_duration_seconds`\
-  nginx var: `upstream_connect_time`
-
 ```
 # HELP nginx_ingress_controller_bytes_sent The number of bytes sent to a client. DEPRECATED! Use nginx_ingress_controller_response_size
 # TYPE nginx_ingress_controller_bytes_sent histogram
@@ -397,8 +393,6 @@ Prometheus metrics are exposed on port 10254.
 # TYPE nginx_ingress_controller_connect_duration_seconds nginx_ingress_controller_connect_duration_seconds
 * HELP nginx_ingress_controller_header_duration_seconds The time spent on receiving first header from the upstream server
 # TYPE nginx_ingress_controller_header_duration_seconds histogram
-# HELP nginx_ingress_controller_ingress_upstream_latency_seconds Upstream service latency per Ingress DEPRECATED! Use nginx_ingress_controller_connect_duration_seconds
-# TYPE nginx_ingress_controller_ingress_upstream_latency_seconds summary
 # HELP nginx_ingress_controller_request_duration_seconds The request processing time in milliseconds
 # TYPE nginx_ingress_controller_request_duration_seconds histogram
 # HELP nginx_ingress_controller_request_size The request length (including request line, header, and request body)
diff --git a/internal/ingress/metric/collectors/socket.go b/internal/ingress/metric/collectors/socket.go
index 248f23f63..863bbb62e 100644
--- a/internal/ingress/metric/collectors/socket.go
+++ b/internal/ingress/metric/collectors/socket.go
@@ -64,11 +64,10 @@ type metricMapping map[string]prometheus.Collector
 type SocketCollector struct {
 	prometheus.Collector
 
-	upstreamLatency *prometheus.SummaryVec // TODO: DEPRECATED, remove
-	connectTime     *prometheus.HistogramVec
-	headerTime      *prometheus.HistogramVec
-	requestTime     *prometheus.HistogramVec
-	responseTime    *prometheus.HistogramVec
+	connectTime  *prometheus.HistogramVec
+	headerTime   *prometheus.HistogramVec
+	requestTime  *prometheus.HistogramVec
+	responseTime *prometheus.HistogramVec
 
 	requestLength  *prometheus.HistogramVec
 	responseLength *prometheus.HistogramVec
@@ -98,10 +97,6 @@ var requestTags = []string{
 	"canary",
 }
 
-// DefObjectives was removed in https://github.com/prometheus/client_golang/pull/262
-// updating the library to latest version changed the output of the metrics
-var defObjectives = map[float64]float64{0.5: 0.05, 0.9: 0.01, 0.99: 0.001}
-
 // NewSocketCollector creates a new SocketCollector instance using
 // the ingress watch namespace and class used by the controller
 func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStatusClasses bool, buckets HistogramBuckets, excludeMetrics []string) (*SocketCollector, error) {
@@ -248,19 +243,6 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 			em,
 			mm,
 		),
-
-		upstreamLatency: summaryMetric(
-			&prometheus.SummaryOpts{
-				Name:        "ingress_upstream_latency_seconds",
-				Help:        "DEPRECATED Upstream service latency per Ingress",
-				Namespace:   PrometheusNamespace,
-				ConstLabels: constLabels,
-				Objectives:  defObjectives,
-			},
-			[]string{"ingress", "namespace", "service", "canary"},
-			em,
-			mm,
-		),
 	}
 
 	sc.metricMapping = mm
@@ -275,18 +257,6 @@ func containsMetric(excludeMetrics map[string]struct{}, name string) bool {
 	return false
 }
 
-func summaryMetric(opts *prometheus.SummaryOpts, requestTags []string, excludeMetrics map[string]struct{}, metricMapping metricMapping) *prometheus.SummaryVec {
-	if containsMetric(excludeMetrics, opts.Name) {
-		return nil
-	}
-	m := prometheus.NewSummaryVec(
-		*opts,
-		requestTags,
-	)
-	metricMapping[prometheus.BuildFQName(PrometheusNamespace, "", opts.Name)] = m
-	return m
-}
-
 func counterMetric(opts *prometheus.CounterOpts, requestTags []string, excludeMetrics map[string]struct{}, metricMapping metricMapping) *prometheus.CounterVec {
 	if containsMetric(excludeMetrics, opts.Name) {
 		return nil
@@ -358,13 +328,6 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 			collectorLabels["host"] = stats.Host
 		}
 
-		latencyLabels := prometheus.Labels{
-			"namespace": stats.Namespace,
-			"ingress":   stats.Ingress,
-			"service":   stats.Service,
-			"canary":    stats.Canary,
-		}
-
 		if sc.requests != nil {
 			requestsMetric, err := sc.requests.GetMetricWith(collectorLabels)
 			if err != nil {
@@ -383,15 +346,6 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 					connectTimeMetric.Observe(stats.Latency)
 				}
 			}
-
-			if sc.upstreamLatency != nil {
-				latencyMetric, err := sc.upstreamLatency.GetMetricWith(latencyLabels)
-				if err != nil {
-					klog.ErrorS(err, "Error fetching latency metric")
-				} else {
-					latencyMetric.Observe(stats.Latency)
-				}
-			}
 		}
 
 		if stats.HeaderTime != -1 && sc.headerTime != nil {

From cf8e374290b48b336355f5d45d3127e4eec8071c Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 18 Aug 2024 20:13:18 -0300
Subject: [PATCH 1401/1641] Auto-generate annotation docs (#11820)

---
 .github/workflows/ci.yaml                     |  23 +++
 Makefile                                      |   3 +
 cmd/annotations/annotations.tmpl              |   7 +
 cmd/annotations/main.go                       |  91 +++++++++++
 .../nginx-configuration/annotations-risk.md   | 142 ++++++++++++++++++
 hack/update-annotation-doc.sh                 |  23 +++
 hack/verify-annotation-docs.sh                |  46 ++++++
 internal/ingress/annotations/annotations.go   | 109 +++++++-------
 internal/ingress/annotations/parser/main.go   |  15 ++
 mkdocs.yml                                    |   1 +
 10 files changed, 407 insertions(+), 53 deletions(-)
 create mode 100644 cmd/annotations/annotations.tmpl
 create mode 100644 cmd/annotations/main.go
 create mode 100755 docs/user-guide/nginx-configuration/annotations-risk.md
 create mode 100755 hack/update-annotation-doc.sh
 create mode 100755 hack/verify-annotation-docs.sh

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index f3af49d37..49b39a7a3 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -69,6 +69,8 @@ jobs:
             baseimage:
               - 'NGINX_BASE'
               - 'images/nginx-1.25/**'
+            docs:
+              - '**/*.md'
 
   test-go:
     runs-on: ubuntu-latest
@@ -92,6 +94,27 @@ jobs:
       - name: Run test
         run: make test
 
+        
+  verify-docs:
+    name: Verify Doc generation
+    runs-on: ubuntu-latest
+    needs: changes
+    if: |
+      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.docs == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
+    steps:
+      - name: Checkout
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+      - name: Get go version
+        run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
+      - name: Set up Go
+        id: go
+        uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
+        with:
+          go-version: ${{ env.GOLANG_VERSION }}
+          check-latest: true
+      - name: Verify Docs
+        run: make verify-docs
+
   build:
     name: Build
     runs-on: ubuntu-latest
diff --git a/Makefile b/Makefile
index a99e1540c..1c35c12b2 100644
--- a/Makefile
+++ b/Makefile
@@ -124,6 +124,9 @@ build:  ## Build ingress controller, debug tool and pre-stop hook.
 clean: ## Remove .gocache directory.
 	rm -rf bin/ .gocache/ .cache/
 
+.PHONY: verify-docs
+verify-docs: ## Verify doc generation
+	hack/verify-annotation-docs.sh
 
 .PHONY: static-check
 static-check: ## Run verification script for boilerplate, codegen, gofmt, golint, lualint and chart-lint.
diff --git a/cmd/annotations/annotations.tmpl b/cmd/annotations/annotations.tmpl
new file mode 100644
index 000000000..91dd21de8
--- /dev/null
+++ b/cmd/annotations/annotations.tmpl
@@ -0,0 +1,7 @@
+# Annotations Scope and Risk
+
+|Group   |Annotation        | Risk | Scope |
+|--------|------------------|------|-------|
+{{- range $doc := . }}
+| {{ $doc.Group }} | {{ $doc.Annotation }} | {{ $doc.Risk }} | {{ $doc.Scope }} |
+{{- end }}
diff --git a/cmd/annotations/main.go b/cmd/annotations/main.go
new file mode 100644
index 000000000..78f26099c
--- /dev/null
+++ b/cmd/annotations/main.go
@@ -0,0 +1,91 @@
+/*
+Copyright 2024 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package main
+
+import (
+	"bytes"
+	"embed"
+	"flag"
+	"fmt"
+	"os"
+	"slices"
+	"strings"
+	"text/template"
+
+	anns "k8s.io/ingress-nginx/internal/ingress/annotations"
+)
+
+type Documentation struct {
+	Group      string
+	Annotation string
+	Risk       string
+	Scope      string
+}
+
+var output string
+
+//go:embed annotations.tmpl
+var content embed.FS
+
+func main() {
+	flag.StringVar(&output, "output", "", "where to write documentation")
+	flag.Parse()
+	if output == "" {
+		panic(fmt.Errorf("output field is required"))
+	}
+	docEntries := make([]Documentation, 0)
+	annotationFactory := anns.NewAnnotationFactory(nil)
+	for group, val := range annotationFactory {
+		annotations := val.GetDocumentation()
+		intermediateDocs := make([]Documentation, len(annotations))
+		i := 0
+		for annotation, values := range annotations {
+			doc := Documentation{
+				Group:      group,
+				Annotation: annotation,
+				Scope:      string(values.Scope),
+				Risk:       values.Risk.ToString(),
+			}
+			intermediateDocs[i] = doc
+			i++
+		}
+		slices.SortStableFunc(intermediateDocs, func(a, b Documentation) int {
+			return strings.Compare(a.Annotation, b.Annotation)
+		})
+		docEntries = append(docEntries, intermediateDocs...)
+	}
+	slices.SortStableFunc(docEntries, func(a, b Documentation) int {
+		return strings.Compare(a.Group, b.Group)
+	})
+
+	tmpl, err := template.New("annotations.tmpl").ParseFS(content, "annotations.tmpl")
+	if err != nil {
+		panic(fmt.Errorf("error parsing template: %s", err))
+	}
+
+	tplBuffer := new(bytes.Buffer)
+	err = tmpl.Execute(tplBuffer, docEntries)
+	if err != nil {
+		panic(err)
+	}
+	tplBuffer.WriteString("\n")
+
+	//nolint:gosec // no need to check file permission here
+	if err := os.WriteFile(output, tplBuffer.Bytes(), 0o755); err != nil {
+		panic(err)
+	}
+}
diff --git a/docs/user-guide/nginx-configuration/annotations-risk.md b/docs/user-guide/nginx-configuration/annotations-risk.md
new file mode 100755
index 000000000..b53860174
--- /dev/null
+++ b/docs/user-guide/nginx-configuration/annotations-risk.md
@@ -0,0 +1,142 @@
+# Annotations Scope and Risk
+
+|Group   |Annotation        | Risk | Scope |
+|--------|------------------|------|-------|
+| Aliases | server-alias | High | ingress |
+| Allowlist | allowlist-source-range | Medium | location |
+| BackendProtocol | backend-protocol | Low | location |
+| BasicDigestAuth | auth-realm | Medium | location |
+| BasicDigestAuth | auth-secret | Medium | location |
+| BasicDigestAuth | auth-secret-type | Low | location |
+| BasicDigestAuth | auth-type | Low | location |
+| Canary | canary | Low | ingress |
+| Canary | canary-by-cookie | Medium | ingress |
+| Canary | canary-by-header | Medium | ingress |
+| Canary | canary-by-header-pattern | Medium | ingress |
+| Canary | canary-by-header-value | Medium | ingress |
+| Canary | canary-weight | Low | ingress |
+| Canary | canary-weight-total | Low | ingress |
+| CertificateAuth | auth-tls-error-page | High | location |
+| CertificateAuth | auth-tls-match-cn | High | location |
+| CertificateAuth | auth-tls-pass-certificate-to-upstream | Low | location |
+| CertificateAuth | auth-tls-secret | Medium | location |
+| CertificateAuth | auth-tls-verify-client | Medium | location |
+| CertificateAuth | auth-tls-verify-depth | Low | location |
+| ClientBodyBufferSize | client-body-buffer-size | Low | location |
+| ConfigurationSnippet | configuration-snippet | Critical | location |
+| Connection | connection-proxy-header | Low | location |
+| CorsConfig | cors-allow-credentials | Low | ingress |
+| CorsConfig | cors-allow-headers | Medium | ingress |
+| CorsConfig | cors-allow-methods | Medium | ingress |
+| CorsConfig | cors-allow-origin | Medium | ingress |
+| CorsConfig | cors-expose-headers | Medium | ingress |
+| CorsConfig | cors-max-age | Low | ingress |
+| CorsConfig | enable-cors | Low | ingress |
+| CustomHTTPErrors | custom-http-errors | Low | location |
+| CustomHeaders | custom-headers | Medium | location |
+| DefaultBackend | default-backend | Low | location |
+| Denylist | denylist-source-range | Medium | location |
+| DisableProxyInterceptErrors | disable-proxy-intercept-errors | Low | location |
+| EnableGlobalAuth | enable-global-auth | Low | location |
+| ExternalAuth | auth-always-set-cookie | Low | location |
+| ExternalAuth | auth-cache-duration | Medium | location |
+| ExternalAuth | auth-cache-key | Medium | location |
+| ExternalAuth | auth-keepalive | Low | location |
+| ExternalAuth | auth-keepalive-requests | Low | location |
+| ExternalAuth | auth-keepalive-share-vars | Low | location |
+| ExternalAuth | auth-keepalive-timeout | Low | location |
+| ExternalAuth | auth-method | Low | location |
+| ExternalAuth | auth-proxy-set-headers | Medium | location |
+| ExternalAuth | auth-request-redirect | Medium | location |
+| ExternalAuth | auth-response-headers | Medium | location |
+| ExternalAuth | auth-signin | High | location |
+| ExternalAuth | auth-signin-redirect-param | Medium | location |
+| ExternalAuth | auth-snippet | Critical | location |
+| ExternalAuth | auth-url | High | location |
+| FastCGI | fastcgi-index | Medium | location |
+| FastCGI | fastcgi-params-configmap | Medium | location |
+| GlobalRateLimit | global-rate-limit | Low | ingress |
+| GlobalRateLimit | global-rate-limit-ignored-cidrs | Medium | ingress |
+| GlobalRateLimit | global-rate-limit-key | High | ingress |
+| GlobalRateLimit | global-rate-limit-window | Low | ingress |
+| HTTP2PushPreload | http2-push-preload | Low | location |
+| LoadBalancing | load-balance | Low | location |
+| Logs | enable-access-log | Low | location |
+| Logs | enable-rewrite-log | Low | location |
+| Mirror | mirror-host | High | ingress |
+| Mirror | mirror-request-body | Low | ingress |
+| Mirror | mirror-target | High | ingress |
+| ModSecurity | enable-modsecurity | Low | ingress |
+| ModSecurity | enable-owasp-core-rules | Low | ingress |
+| ModSecurity | modsecurity-snippet | Critical | ingress |
+| ModSecurity | modsecurity-transaction-id | High | ingress |
+| Opentelemetry | enable-opentelemetry | Low | location |
+| Opentelemetry | opentelemetry-operation-name | Medium | location |
+| Opentelemetry | opentelemetry-trust-incoming-span | Low | location |
+| Proxy | proxy-body-size | Medium | location |
+| Proxy | proxy-buffer-size | Low | location |
+| Proxy | proxy-buffering | Low | location |
+| Proxy | proxy-buffers-number | Low | location |
+| Proxy | proxy-connect-timeout | Low | location |
+| Proxy | proxy-cookie-domain | Medium | location |
+| Proxy | proxy-cookie-path | Medium | location |
+| Proxy | proxy-http-version | Low | location |
+| Proxy | proxy-max-temp-file-size | Low | location |
+| Proxy | proxy-next-upstream | Medium | location |
+| Proxy | proxy-next-upstream-timeout | Low | location |
+| Proxy | proxy-next-upstream-tries | Low | location |
+| Proxy | proxy-read-timeout | Low | location |
+| Proxy | proxy-redirect-from | Medium | location |
+| Proxy | proxy-redirect-to | Medium | location |
+| Proxy | proxy-request-buffering | Low | location |
+| Proxy | proxy-send-timeout | Low | location |
+| ProxySSL | proxy-ssl-ciphers | Medium | ingress |
+| ProxySSL | proxy-ssl-name | High | ingress |
+| ProxySSL | proxy-ssl-protocols | Low | ingress |
+| ProxySSL | proxy-ssl-secret | Medium | ingress |
+| ProxySSL | proxy-ssl-server-name | Low | ingress |
+| ProxySSL | proxy-ssl-verify | Low | ingress |
+| ProxySSL | proxy-ssl-verify-depth | Low | ingress |
+| RateLimit | limit-allowlist | Low | location |
+| RateLimit | limit-burst-multiplier | Low | location |
+| RateLimit | limit-connections | Low | location |
+| RateLimit | limit-rate | Low | location |
+| RateLimit | limit-rate-after | Low | location |
+| RateLimit | limit-rpm | Low | location |
+| RateLimit | limit-rps | Low | location |
+| Redirect | from-to-www-redirect | Low | location |
+| Redirect | permanent-redirect | Medium | location |
+| Redirect | permanent-redirect-code | Low | location |
+| Redirect | temporal-redirect | Medium | location |
+| Rewrite | app-root | Medium | location |
+| Rewrite | force-ssl-redirect | Medium | location |
+| Rewrite | preserve-trailing-slash | Medium | location |
+| Rewrite | rewrite-target | Medium | ingress |
+| Rewrite | ssl-redirect | Low | location |
+| Rewrite | use-regex | Low | location |
+| SSLCipher | ssl-ciphers | Low | ingress |
+| SSLCipher | ssl-prefer-server-ciphers | Low | ingress |
+| SSLPassthrough | ssl-passthrough | Low | ingress |
+| Satisfy | satisfy | Low | location |
+| ServerSnippet | server-snippet | Critical | ingress |
+| ServiceUpstream | service-upstream | Low | ingress |
+| SessionAffinity | affinity | Low | ingress |
+| SessionAffinity | affinity-canary-behavior | Low | ingress |
+| SessionAffinity | affinity-mode | Medium | ingress |
+| SessionAffinity | session-cookie-change-on-failure | Low | ingress |
+| SessionAffinity | session-cookie-conditional-samesite-none | Low | ingress |
+| SessionAffinity | session-cookie-domain | Medium | ingress |
+| SessionAffinity | session-cookie-expires | Medium | ingress |
+| SessionAffinity | session-cookie-max-age | Medium | ingress |
+| SessionAffinity | session-cookie-name | Medium | ingress |
+| SessionAffinity | session-cookie-path | Medium | ingress |
+| SessionAffinity | session-cookie-samesite | Low | ingress |
+| SessionAffinity | session-cookie-secure | Low | ingress |
+| StreamSnippet | stream-snippet | Critical | ingress |
+| UpstreamHashBy | upstream-hash-by | High | location |
+| UpstreamHashBy | upstream-hash-by-subset | Low | location |
+| UpstreamHashBy | upstream-hash-by-subset-size | Low | location |
+| UpstreamVhost | upstream-vhost | Low | location |
+| UsePortInRedirects | use-port-in-redirects | Low | location |
+| XForwardedPrefix | x-forwarded-prefix | Medium | location |
+
diff --git a/hack/update-annotation-doc.sh b/hack/update-annotation-doc.sh
new file mode 100755
index 000000000..c4feb41ce
--- /dev/null
+++ b/hack/update-annotation-doc.sh
@@ -0,0 +1,23 @@
+#!/bin/bash
+
+# Copyright 2024 The Kubernetes Authors.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+set -o errexit
+set -o nounset
+
+SCRIPT_ROOT=$(dirname "${BASH_SOURCE}")/..
+ANNOTATIONFILE="${SCRIPT_ROOT}/docs/user-guide/nginx-configuration/annotations-risk.md"
+
+go run "${SCRIPT_ROOT}"/cmd/annotations/main.go -output "${ANNOTATIONFILE}"
\ No newline at end of file
diff --git a/hack/verify-annotation-docs.sh b/hack/verify-annotation-docs.sh
new file mode 100755
index 000000000..54034539b
--- /dev/null
+++ b/hack/verify-annotation-docs.sh
@@ -0,0 +1,46 @@
+#!/bin/bash
+
+# Copyright 2024 The Kubernetes Authors.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+set -o errexit
+set -o nounset
+set -o pipefail
+
+SCRIPT_ROOT=$(dirname "${BASH_SOURCE}")/..
+
+ANNOTATIONFILE="${SCRIPT_ROOT}/docs/user-guide/nginx-configuration/annotations-risk.md"
+TMP_DIFFROOT="${SCRIPT_ROOT}/_tmp"
+TMP_FILE="${TMP_DIFFROOT}/annotations-risk.md"
+
+cleanup() {
+  rm -rf "${TMP_DIFFROOT}"
+}
+trap "cleanup" EXIT SIGINT
+
+cleanup
+
+mkdir -p "${TMP_DIFFROOT}"
+
+go run cmd/annotations/main.go -output "${TMP_FILE}"
+echo "diffing ${ANNOTATIONFILE} against freshly generated annotation doc"
+ret=0
+diff -Naupr --no-dereference "${ANNOTATIONFILE}" "${TMP_FILE}" || ret=1
+
+if [[ $ret -eq 0 ]]; then
+  echo "${ANNOTATIONFILE} up to date."
+else
+  echo "${ANNOTATIONFILE} is out of date. Please run hack/update-annotation-doc.sh"
+  exit 1
+fi
diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index 0bb2ac7b8..4c073246c 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -19,19 +19,10 @@ package annotations
 import (
 	"dario.cat/mergo"
 
-	"k8s.io/ingress-nginx/internal/ingress/annotations/canary"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/customheaders"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/disableproxyintercepterrors"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/modsecurity"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/opentelemetry"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/proxyssl"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/sslcipher"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/streamsnippet"
-	"k8s.io/klog/v2"
-
 	apiv1 "k8s.io/api/core/v1"
 	networking "k8s.io/api/networking/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/klog/v2"
 
 	"k8s.io/ingress-nginx/internal/ingress/annotations/alias"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/auth"
@@ -39,11 +30,14 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/authreqglobal"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/authtls"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/backendprotocol"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/canary"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/clientbodybuffersize"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/connection"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/cors"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/customheaders"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/customhttperrors"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/defaultbackend"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/disableproxyintercepterrors"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/fastcgi"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/globalratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/http2pushpreload"
@@ -52,9 +46,12 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/loadbalancing"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/log"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/mirror"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/modsecurity"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/opentelemetry"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/portinredirect"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/proxy"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/proxyssl"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/redirect"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/rewrite"
@@ -63,7 +60,9 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/serviceupstream"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/sessionaffinity"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/snippet"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/sslcipher"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/sslpassthrough"
+	"k8s.io/ingress-nginx/internal/ingress/annotations/streamsnippet"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/upstreamhashby"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/upstreamvhost"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/xforwardedprefix"
@@ -126,52 +125,56 @@ type Extractor struct {
 	annotations map[string]parser.IngressAnnotation
 }
 
+func NewAnnotationFactory(cfg resolver.Resolver) map[string]parser.IngressAnnotation {
+	return map[string]parser.IngressAnnotation{
+		"Aliases":                     alias.NewParser(cfg),
+		"BasicDigestAuth":             auth.NewParser(auth.AuthDirectory, cfg),
+		"Canary":                      canary.NewParser(cfg),
+		"CertificateAuth":             authtls.NewParser(cfg),
+		"ClientBodyBufferSize":        clientbodybuffersize.NewParser(cfg),
+		"CustomHeaders":               customheaders.NewParser(cfg),
+		"ConfigurationSnippet":        snippet.NewParser(cfg),
+		"Connection":                  connection.NewParser(cfg),
+		"CorsConfig":                  cors.NewParser(cfg),
+		"CustomHTTPErrors":            customhttperrors.NewParser(cfg),
+		"DisableProxyInterceptErrors": disableproxyintercepterrors.NewParser(cfg),
+		"DefaultBackend":              defaultbackend.NewParser(cfg),
+		"FastCGI":                     fastcgi.NewParser(cfg),
+		"ExternalAuth":                authreq.NewParser(cfg),
+		"EnableGlobalAuth":            authreqglobal.NewParser(cfg),
+		"HTTP2PushPreload":            http2pushpreload.NewParser(cfg),
+		"Opentelemetry":               opentelemetry.NewParser(cfg),
+		"Proxy":                       proxy.NewParser(cfg),
+		"ProxySSL":                    proxyssl.NewParser(cfg),
+		"RateLimit":                   ratelimit.NewParser(cfg),
+		"GlobalRateLimit":             globalratelimit.NewParser(cfg),
+		"Redirect":                    redirect.NewParser(cfg),
+		"Rewrite":                     rewrite.NewParser(cfg),
+		"Satisfy":                     satisfy.NewParser(cfg),
+		"ServerSnippet":               serversnippet.NewParser(cfg),
+		"ServiceUpstream":             serviceupstream.NewParser(cfg),
+		"SessionAffinity":             sessionaffinity.NewParser(cfg),
+		"SSLPassthrough":              sslpassthrough.NewParser(cfg),
+		"UsePortInRedirects":          portinredirect.NewParser(cfg),
+		"UpstreamHashBy":              upstreamhashby.NewParser(cfg),
+		"LoadBalancing":               loadbalancing.NewParser(cfg),
+		"UpstreamVhost":               upstreamvhost.NewParser(cfg),
+		"Allowlist":                   ipallowlist.NewParser(cfg),
+		"Denylist":                    ipdenylist.NewParser(cfg),
+		"XForwardedPrefix":            xforwardedprefix.NewParser(cfg),
+		"SSLCipher":                   sslcipher.NewParser(cfg),
+		"Logs":                        log.NewParser(cfg),
+		"BackendProtocol":             backendprotocol.NewParser(cfg),
+		"ModSecurity":                 modsecurity.NewParser(cfg),
+		"Mirror":                      mirror.NewParser(cfg),
+		"StreamSnippet":               streamsnippet.NewParser(cfg),
+	}
+}
+
 // NewAnnotationExtractor creates a new annotations extractor
 func NewAnnotationExtractor(cfg resolver.Resolver) Extractor {
 	return Extractor{
-		map[string]parser.IngressAnnotation{
-			"Aliases":                     alias.NewParser(cfg),
-			"BasicDigestAuth":             auth.NewParser(auth.AuthDirectory, cfg),
-			"Canary":                      canary.NewParser(cfg),
-			"CertificateAuth":             authtls.NewParser(cfg),
-			"ClientBodyBufferSize":        clientbodybuffersize.NewParser(cfg),
-			"CustomHeaders":               customheaders.NewParser(cfg),
-			"ConfigurationSnippet":        snippet.NewParser(cfg),
-			"Connection":                  connection.NewParser(cfg),
-			"CorsConfig":                  cors.NewParser(cfg),
-			"CustomHTTPErrors":            customhttperrors.NewParser(cfg),
-			"DisableProxyInterceptErrors": disableproxyintercepterrors.NewParser(cfg),
-			"DefaultBackend":              defaultbackend.NewParser(cfg),
-			"FastCGI":                     fastcgi.NewParser(cfg),
-			"ExternalAuth":                authreq.NewParser(cfg),
-			"EnableGlobalAuth":            authreqglobal.NewParser(cfg),
-			"HTTP2PushPreload":            http2pushpreload.NewParser(cfg),
-			"Opentelemetry":               opentelemetry.NewParser(cfg),
-			"Proxy":                       proxy.NewParser(cfg),
-			"ProxySSL":                    proxyssl.NewParser(cfg),
-			"RateLimit":                   ratelimit.NewParser(cfg),
-			"GlobalRateLimit":             globalratelimit.NewParser(cfg),
-			"Redirect":                    redirect.NewParser(cfg),
-			"Rewrite":                     rewrite.NewParser(cfg),
-			"Satisfy":                     satisfy.NewParser(cfg),
-			"ServerSnippet":               serversnippet.NewParser(cfg),
-			"ServiceUpstream":             serviceupstream.NewParser(cfg),
-			"SessionAffinity":             sessionaffinity.NewParser(cfg),
-			"SSLPassthrough":              sslpassthrough.NewParser(cfg),
-			"UsePortInRedirects":          portinredirect.NewParser(cfg),
-			"UpstreamHashBy":              upstreamhashby.NewParser(cfg),
-			"LoadBalancing":               loadbalancing.NewParser(cfg),
-			"UpstreamVhost":               upstreamvhost.NewParser(cfg),
-			"Allowlist":                   ipallowlist.NewParser(cfg),
-			"Denylist":                    ipdenylist.NewParser(cfg),
-			"XForwardedPrefix":            xforwardedprefix.NewParser(cfg),
-			"SSLCipher":                   sslcipher.NewParser(cfg),
-			"Logs":                        log.NewParser(cfg),
-			"BackendProtocol":             backendprotocol.NewParser(cfg),
-			"ModSecurity":                 modsecurity.NewParser(cfg),
-			"Mirror":                      mirror.NewParser(cfg),
-			"StreamSnippet":               streamsnippet.NewParser(cfg),
-		},
+		NewAnnotationFactory(cfg),
 	}
 }
 
diff --git a/internal/ingress/annotations/parser/main.go b/internal/ingress/annotations/parser/main.go
index 554ad9dde..3137afbfd 100644
--- a/internal/ingress/annotations/parser/main.go
+++ b/internal/ingress/annotations/parser/main.go
@@ -210,6 +210,21 @@ func StringRiskToRisk(risk string) AnnotationRisk {
 	}
 }
 
+func (a AnnotationRisk) ToString() string {
+	switch a {
+	case AnnotationRiskCritical:
+		return "Critical"
+	case AnnotationRiskHigh:
+		return "High"
+	case AnnotationRiskMedium:
+		return "Medium"
+	case AnnotationRiskLow:
+		return "Low"
+	default:
+		return "Unknown"
+	}
+}
+
 func normalizeString(input string) string {
 	trimmedContent := []string{}
 	for _, line := range strings.Split(input, "\n") {
diff --git a/mkdocs.yml b/mkdocs.yml
index cbc2988ce..4b010c5ff 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -83,6 +83,7 @@ nav:
           - Introduction: "user-guide/nginx-configuration/index.md"
           - Basic usage: "user-guide/basic-usage.md"
           - Annotations: "user-guide/nginx-configuration/annotations.md"
+          - Annotations Risks: "user-guide/nginx-configuration/annotations-risk.md"
           - ConfigMap: "user-guide/nginx-configuration/configmap.md"
           - Custom NGINX template: "user-guide/nginx-configuration/custom-template.md"
           - Log format: "user-guide/nginx-configuration/log-format.md"

From 1dc8865cb8d33aed0a9f94aa0289c21ec91e9a3c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 20 Aug 2024 09:01:36 -0700
Subject: [PATCH 1402/1641] Bump github/codeql-action from 3.26.0 to 3.26.2 in
 the all group (#11826)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index a6b64d408..3301b12cf 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@eb055d739abdc2e8de2e5f4ba1a8b246daa779aa # v3.26.0
+        uses: github/codeql-action/upload-sarif@429e1977040da7a23b6822b13c129cd1ba93dbb2 # v3.26.2
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index cc3240931..dcf012368 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@eb055d739abdc2e8de2e5f4ba1a8b246daa779aa # v3.26.0
+        uses: github/codeql-action/upload-sarif@429e1977040da7a23b6822b13c129cd1ba93dbb2 # v3.26.2
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 1b5be3ee57e8c763e4e1d698583cf08d869bef4c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 20 Aug 2024 09:59:26 -0700
Subject: [PATCH 1403/1641] Bump k8s.io/component-base from 0.30.3 to 0.31.0
 (#11825)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 22 ++++++++++++++--------
 go.sum | 40 ++++++++++++++++++++++++----------------
 2 files changed, 38 insertions(+), 24 deletions(-)

diff --git a/go.mod b/go.mod
index ae4974c4a..a98e1a788 100644
--- a/go.mod
+++ b/go.mod
@@ -16,7 +16,7 @@ require (
 	github.com/ncabatoff/process-exporter v0.8.3
 	github.com/onsi/ginkgo/v2 v2.20.0
 	github.com/opencontainers/runc v1.1.13
-	github.com/pmezard/go-difflib v1.0.0
+	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.19.1
 	github.com/prometheus/client_model v0.6.1
 	github.com/prometheus/common v0.55.0
@@ -31,20 +31,26 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.30.3
+	k8s.io/api v0.31.0
 	k8s.io/apiextensions-apiserver v0.30.1
-	k8s.io/apimachinery v0.30.3
+	k8s.io/apimachinery v0.31.0
 	k8s.io/apiserver v0.30.1
 	k8s.io/cli-runtime v0.30.0
-	k8s.io/client-go v0.30.3
+	k8s.io/client-go v0.31.0
 	k8s.io/code-generator v0.30.1
-	k8s.io/component-base v0.30.3
+	k8s.io/component-base v0.31.0
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.18.4
 	sigs.k8s.io/mdtoc v1.1.0
 )
 
+require (
+	github.com/fxamacker/cbor/v2 v2.7.0 // indirect
+	github.com/x448/float16 v0.8.4 // indirect
+	gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
+)
+
 require (
 	github.com/Anddd7/pb v0.0.0-20240425032658-369b0f6a404c
 	github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 // indirect
@@ -54,7 +60,7 @@ require (
 	github.com/cespare/xxhash/v2 v2.3.0 // indirect
 	github.com/coreos/go-systemd/v22 v22.5.0 // indirect
 	github.com/cyphar/filepath-securejoin v0.2.4 // indirect
-	github.com/davecgh/go-spew v1.1.1 // indirect
+	github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc // indirect
 	github.com/eapache/queue v1.1.0 // indirect
 	github.com/emicklei/go-restful/v3 v3.12.0 // indirect
 	github.com/evanphx/json-patch v5.9.0+incompatible // indirect
@@ -115,7 +121,7 @@ require (
 	golang.org/x/text v0.17.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.24.0 // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20240528184218-531527333157 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20240701130421-f6361c86f094 // indirect
 	google.golang.org/protobuf v1.34.2 // indirect
 	gopkg.in/evanphx/json-patch.v5 v5.9.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
@@ -124,7 +130,7 @@ require (
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 	k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 // indirect
 	k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f // indirect
-	k8s.io/utils v0.0.0-20240502163921-fe8a2dddb1d0 // indirect
+	k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 // indirect
 	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
 	sigs.k8s.io/kustomize/api v0.16.0 // indirect
 	sigs.k8s.io/kustomize/kyaml v0.16.0 // indirect
diff --git a/go.sum b/go.sum
index 48031be86..e29fb889a 100644
--- a/go.sum
+++ b/go.sum
@@ -23,8 +23,9 @@ github.com/creack/pty v1.1.18/go.mod h1:MOBLtS5ELjhRRrroQr9kyvTxUAFNvYEK993ew/Vr
 github.com/cyphar/filepath-securejoin v0.2.4 h1:Ugdm7cg7i6ZK6x3xDF1oEu1nfkyfH53EtKeQYTC3kyg=
 github.com/cyphar/filepath-securejoin v0.2.4/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc h1:U9qPSI2PIWSS1VwoXQT9A3Wy9MM3WgvqSxFWenqJduM=
+github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/eapache/channels v1.1.0 h1:F1taHcn7/F0i8DYqKXJnyhJcVpp2kgFcNePxXtnyu4k=
 github.com/eapache/channels v1.1.0/go.mod h1:jMm2qB5Ubtg9zLd+inMZd2/NUvXgzmWXsDaLyQIGfH0=
 github.com/eapache/queue v1.1.0 h1:YOEu7KNc61ntiQlcEeUIoDTJ2o8mQznoNvUhiigpIqc=
@@ -42,6 +43,8 @@ github.com/fsnotify/fsnotify v1.7.0/go.mod h1:40Bi/Hjc2AVfZrqy+aj+yEI+/bRxZnMJyT
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
 github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa h1:RDBNVkRviHZtvDvId8XSGPu3rmpmSe+wKRcEWNgsfWU=
 github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
+github.com/fxamacker/cbor/v2 v2.7.0 h1:iM5WgngdRBanHcxugY4JySA0nk1wZorNOpTgCMedv5E=
+github.com/fxamacker/cbor/v2 v2.7.0/go.mod h1:pxXPTn3joSm21Gbwsv0w9OSA2y1HFR9qXEeXQVeNoDQ=
 github.com/go-errors/errors v1.5.1 h1:ZwEMSLRCapFLflTpT7NKaAc7ukJ8ZPEjzlxt8rPN8bk=
 github.com/go-errors/errors v1.5.1/go.mod h1:sIVyrIiJhuEF+Pj9Ebtd6P/rEYROXFi3BopGUQ5a5Og=
 github.com/go-logr/logr v1.4.2 h1:6pFjapn8bFcIbiKo3XT4j/BhANplGihG6tvd+8rYgrY=
@@ -174,8 +177,9 @@ github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+v
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
-github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 h1:Jamvg5psRIccs7FGNTlIRMkT8wgtp5eCXdBlqhYGL6U=
+github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/prometheus/client_golang v1.19.1 h1:wZWJDwK+NameRJuPGDhlnFgx8e8HN3XHQeLaYJFJBOE=
 github.com/prometheus/client_golang v1.19.1/go.mod h1:mP78NwGzrVks5S2H6ab8+ZZGJLZUq1hoULYBAYBw1Ho=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
@@ -184,8 +188,8 @@ github.com/prometheus/common v0.55.0 h1:KEi6DK7lXW/m7Ig5i47x0vRzuBsHuvJdi5ee6Y3G
 github.com/prometheus/common v0.55.0/go.mod h1:2SECS4xJG1kd8XF9IcM1gMX6510RAEL65zxzNImwdc8=
 github.com/prometheus/procfs v0.15.1 h1:YagwOFzUgYfKKHX6Dr+sHT7km/hxC76UB0learggepc=
 github.com/prometheus/procfs v0.15.1/go.mod h1:fB45yRUv8NstnjriLhBQLuOUt+WW4BsoGhij/e3PBqk=
-github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
-github.com/rogpeppe/go-internal v1.11.0/go.mod h1:ddIwULY96R17DhadqLgMfk9H9tvdUzkipdSkR5nkCZA=
+github.com/rogpeppe/go-internal v1.12.0 h1:exVL4IDcn6na9z1rAb56Vxr+CgyK3nn3O+epU5NdKM8=
+github.com/rogpeppe/go-internal v1.12.0/go.mod h1:E+RYuTGaKKdloAfM02xzb0FW3Paa99yedzYV+kq4uf4=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/sergi/go-diff v1.3.1 h1:xkr+Oxo4BOQKmkn/B9eMK0g5Kg/983T9DqqPHwYqD+8=
 github.com/sergi/go-diff v1.3.1/go.mod h1:aMJSSKb2lpPvRNec0+w3fl7LP9IOFzdc9Pa4NFbPK1I=
@@ -206,6 +210,8 @@ github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/
 github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
 github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
+github.com/x448/float16 v0.8.4 h1:qLwI1I70+NjRFUR3zs1JPUCgaCXSh3SW62uAKT1mSBM=
+github.com/x448/float16 v0.8.4/go.mod h1:14CWIYCyZA/cWjXOioeEpHeN/83MdbZDRQHoFcYsOfg=
 github.com/xlab/treeprint v1.2.0 h1:HzHnuAF1plUN2zGlAFHbSQP2qJ0ZAD3XF5XD7OesXRQ=
 github.com/xlab/treeprint v1.2.0/go.mod h1:gj5Gd3gPdKtR1ikdDK6fnFLdmIS0X30kTTuNd/WEJu0=
 github.com/yudai/gojsondiff v1.0.0 h1:27cbfqXLVEJ1o8I6v3y9lg8Ydm53EKqHXAOMxEGlCOA=
@@ -291,8 +297,8 @@ golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8T
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 gomodules.xyz/jsonpatch/v2 v2.4.0 h1:Ci3iUJyx9UeRx7CeFN8ARgGbkESwJK+KB9lLcWxY/Zw=
 gomodules.xyz/jsonpatch/v2 v2.4.0/go.mod h1:AH3dM2RI6uoBZxn3LVrfvJ3E0/9dG4cSrbuBJT4moAY=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240528184218-531527333157 h1:Zy9XzmMEflZ/MAaA7vNcoebnRAld7FsPW1EeBB7V0m8=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240528184218-531527333157/go.mod h1:EfXuqaE1J41VCDicxHzUDm+8rk+7ZdXzHV0IhO/I6s0=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240701130421-f6361c86f094 h1:BwIjyKYGsK9dMCBOorzRri8MQwmi7mT9rGHsCEinZkA=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240701130421-f6361c86f094/go.mod h1:Ue6ibwXGpU+dqIcODieyLOcgj7z8+IcskoNIgZxtrFY=
 google.golang.org/grpc v1.65.0 h1:bs/cUb4lp1G5iImFFd3u5ixQzweKizoZJAwBNLR42lc=
 google.golang.org/grpc v1.65.0/go.mod h1:WgYC2ypjlB0EiQi6wdKixMqukr6lBc0Vo+oOgjrM5ZQ=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
@@ -309,6 +315,8 @@ gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
+gopkg.in/evanphx/json-patch.v4 v4.12.0 h1:n6jtcsulIzXPJaxegRbvFNNrZDjbij7ny3gmSPG+6V4=
+gopkg.in/evanphx/json-patch.v4 v4.12.0/go.mod h1:p8EYWUEYMpynmqDbY58zCKCFZw8pRWMG4EsWvDvM72M=
 gopkg.in/evanphx/json-patch.v5 v5.9.0 h1:hx1VU2SGj4F8r9b8GUwJLdc8DNO8sy79ZGui0G05GLo=
 gopkg.in/evanphx/json-patch.v5 v5.9.0/go.mod h1:/kvTRh1TVm5wuM6OkHxqXtE/1nUZZpihg29RtuIyfvk=
 gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
@@ -331,30 +339,30 @@ gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.30.3 h1:ImHwK9DCsPA9uoU3rVh4QHAHHK5dTSv1nxJUapx8hoQ=
-k8s.io/api v0.30.3/go.mod h1:GPc8jlzoe5JG3pb0KJCSLX5oAFIW3/qNJITlDj8BH04=
+k8s.io/api v0.31.0 h1:b9LiSjR2ym/SzTOlfMHm1tr7/21aD7fSkqgD/CVJBCo=
+k8s.io/api v0.31.0/go.mod h1:0YiFF+JfFxMM6+1hQei8FY8M7s1Mth+z/q7eF1aJkTE=
 k8s.io/apiextensions-apiserver v0.30.1 h1:4fAJZ9985BmpJG6PkoxVRpXv9vmPUOVzl614xarePws=
 k8s.io/apiextensions-apiserver v0.30.1/go.mod h1:R4GuSrlhgq43oRY9sF2IToFh7PVlF1JjfWdoG3pixk4=
-k8s.io/apimachinery v0.30.3 h1:q1laaWCmrszyQuSQCfNB8cFgCuDAoPszKY4ucAjDwHc=
-k8s.io/apimachinery v0.30.3/go.mod h1:iexa2somDaxdnj7bha06bhb43Zpa6eWH8N8dbqVjTUc=
+k8s.io/apimachinery v0.31.0 h1:m9jOiSr3FoSSL5WO9bjm1n6B9KROYYgNZOb4tyZ1lBc=
+k8s.io/apimachinery v0.31.0/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
 k8s.io/apiserver v0.30.1 h1:BEWEe8bzS12nMtDKXzCF5Q5ovp6LjjYkSp8qOPk8LZ8=
 k8s.io/apiserver v0.30.1/go.mod h1:i87ZnQ+/PGAmSbD/iEKM68bm1D5reX8fO4Ito4B01mo=
 k8s.io/cli-runtime v0.30.0 h1:0vn6/XhOvn1RJ2KJOC6IRR2CGqrpT6QQF4+8pYpWQ48=
 k8s.io/cli-runtime v0.30.0/go.mod h1:vATpDMATVTMA79sZ0YUCzlMelf6rUjoBzlp+RnoM+cg=
-k8s.io/client-go v0.30.3 h1:bHrJu3xQZNXIi8/MoxYtZBBWQQXwy16zqJwloXXfD3k=
-k8s.io/client-go v0.30.3/go.mod h1:8d4pf8vYu665/kUbsxWAQ/JDBNWqfFeZnvFiVdmx89U=
+k8s.io/client-go v0.31.0 h1:QqEJzNjbN2Yv1H79SsS+SWnXkBgVu4Pj3CJQgbx0gI8=
+k8s.io/client-go v0.31.0/go.mod h1:Y9wvC76g4fLjmU0BA+rV+h2cncoadjvjjkkIGoTLcGU=
 k8s.io/code-generator v0.30.1 h1:ZsG++q5Vt0ScmKCeLhynUuWgcwFGg1Hl1AGfatqPJBI=
 k8s.io/code-generator v0.30.1/go.mod h1:hFgxRsvOUg79mbpbVKfjJvRhVz1qLoe40yZDJ/hwRH4=
-k8s.io/component-base v0.30.3 h1:Ci0UqKWf4oiwy8hr1+E3dsnliKnkMLZMVbWzeorlk7s=
-k8s.io/component-base v0.30.3/go.mod h1:C1SshT3rGPCuNtBs14RmVD2xW0EhRSeLvBh7AGk1quA=
+k8s.io/component-base v0.31.0 h1:/KIzGM5EvPNQcYgwq5NwoQBaOlVFrghoVGr8lG6vNRs=
+k8s.io/component-base v0.31.0/go.mod h1:TYVuzI1QmN4L5ItVdMSXKvH7/DtvIuas5/mm8YT3rTo=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 h1:bKcdZJOPICVmIIuaM9+MXmapE94dn5AYv5ODs1jA43o=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
 k8s.io/klog/v2 v2.130.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
 k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f h1:0LQagt0gDpKqvIkAMPaRGcXawNMouPECM1+F9BVxEaM=
 k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f/go.mod h1:S9tOR0FxgyusSNR+MboCuiDpVWkAifZvaYI1Q2ubgro=
-k8s.io/utils v0.0.0-20240502163921-fe8a2dddb1d0 h1:jgGTlFYnhF1PM1Ax/lAlxUPE+KfCIXHaathvJg1C3ak=
-k8s.io/utils v0.0.0-20240502163921-fe8a2dddb1d0/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
+k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 h1:pUdcCO1Lk/tbT5ztQWOBi5HBgbBP1J8+AsQnQCKsi8A=
+k8s.io/utils v0.0.0-20240711033017-18e509b52bc8/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
 sigs.k8s.io/controller-runtime v0.18.4 h1:87+guW1zhvuPLh1PHybKdYFLU0YJp4FhJRmiHvm5BZw=

From 3b8027c8a80142b81f08d60e531152b7b133e7ef Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 20 Aug 2024 10:23:57 -0700
Subject: [PATCH 1404/1641] Bump dario.cat/mergo from 1.0.0 to 1.0.1 in the all
 group (#11822)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index a98e1a788..4d32e43a5 100644
--- a/go.mod
+++ b/go.mod
@@ -3,7 +3,7 @@ module k8s.io/ingress-nginx
 go 1.22.6
 
 require (
-	dario.cat/mergo v1.0.0
+	dario.cat/mergo v1.0.1
 	github.com/armon/go-proxyproto v0.1.0
 	github.com/eapache/channels v1.1.0
 	github.com/fsnotify/fsnotify v1.7.0
diff --git a/go.sum b/go.sum
index e29fb889a..fc9f7b333 100644
--- a/go.sum
+++ b/go.sum
@@ -1,5 +1,5 @@
-dario.cat/mergo v1.0.0 h1:AGCNq9Evsj31mOgNPcLyXc+4PNABt905YmuqPYYpBWk=
-dario.cat/mergo v1.0.0/go.mod h1:uNxQE+84aUszobStD9th8a29P2fMDhsBdgRYvZOxGmk=
+dario.cat/mergo v1.0.1 h1:Ra4+bf83h2ztPIQYNP99R6m+Y7KfnARDfID+a+vLl4s=
+dario.cat/mergo v1.0.1/go.mod h1:uNxQE+84aUszobStD9th8a29P2fMDhsBdgRYvZOxGmk=
 github.com/Anddd7/pb v0.0.0-20240425032658-369b0f6a404c h1:uhBf0CHXi7nCFZXxHV7l1cBcYFEEVRK4FYxvm1l9lKg=
 github.com/Anddd7/pb v0.0.0-20240425032658-369b0f6a404c/go.mod h1:vYWKbnXd2KAZHUECLPzSE0Er3FgiEmOdPtxwSIRihck=
 github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 h1:L/gRVlceqvL25UVaW/CKtUDjefjrs0SPonmDGUVOYP0=

From 656252cb9908f932c643e443c05af2bdc5739536 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 21 Aug 2024 07:27:29 +0100
Subject: [PATCH 1405/1641] Bump sigs.k8s.io/controller-runtime from 0.18.4 to
 0.19.0 (#11823)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index 4d32e43a5..060fdbf21 100644
--- a/go.mod
+++ b/go.mod
@@ -32,16 +32,16 @@ require (
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.31.0
-	k8s.io/apiextensions-apiserver v0.30.1
+	k8s.io/apiextensions-apiserver v0.31.0
 	k8s.io/apimachinery v0.31.0
-	k8s.io/apiserver v0.30.1
+	k8s.io/apiserver v0.31.0
 	k8s.io/cli-runtime v0.30.0
 	k8s.io/client-go v0.31.0
-	k8s.io/code-generator v0.30.1
+	k8s.io/code-generator v0.31.0
 	k8s.io/component-base v0.31.0
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.18.4
+	sigs.k8s.io/controller-runtime v0.19.0
 	sigs.k8s.io/mdtoc v1.1.0
 )
 
diff --git a/go.sum b/go.sum
index fc9f7b333..de380c386 100644
--- a/go.sum
+++ b/go.sum
@@ -341,18 +341,18 @@ gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 k8s.io/api v0.31.0 h1:b9LiSjR2ym/SzTOlfMHm1tr7/21aD7fSkqgD/CVJBCo=
 k8s.io/api v0.31.0/go.mod h1:0YiFF+JfFxMM6+1hQei8FY8M7s1Mth+z/q7eF1aJkTE=
-k8s.io/apiextensions-apiserver v0.30.1 h1:4fAJZ9985BmpJG6PkoxVRpXv9vmPUOVzl614xarePws=
-k8s.io/apiextensions-apiserver v0.30.1/go.mod h1:R4GuSrlhgq43oRY9sF2IToFh7PVlF1JjfWdoG3pixk4=
+k8s.io/apiextensions-apiserver v0.31.0 h1:fZgCVhGwsclj3qCw1buVXCV6khjRzKC5eCFt24kyLSk=
+k8s.io/apiextensions-apiserver v0.31.0/go.mod h1:b9aMDEYaEe5sdK+1T0KU78ApR/5ZVp4i56VacZYEHxk=
 k8s.io/apimachinery v0.31.0 h1:m9jOiSr3FoSSL5WO9bjm1n6B9KROYYgNZOb4tyZ1lBc=
 k8s.io/apimachinery v0.31.0/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
-k8s.io/apiserver v0.30.1 h1:BEWEe8bzS12nMtDKXzCF5Q5ovp6LjjYkSp8qOPk8LZ8=
-k8s.io/apiserver v0.30.1/go.mod h1:i87ZnQ+/PGAmSbD/iEKM68bm1D5reX8fO4Ito4B01mo=
+k8s.io/apiserver v0.31.0 h1:p+2dgJjy+bk+B1Csz+mc2wl5gHwvNkC9QJV+w55LVrY=
+k8s.io/apiserver v0.31.0/go.mod h1:KI9ox5Yu902iBnnyMmy7ajonhKnkeZYJhTZ/YI+WEMk=
 k8s.io/cli-runtime v0.30.0 h1:0vn6/XhOvn1RJ2KJOC6IRR2CGqrpT6QQF4+8pYpWQ48=
 k8s.io/cli-runtime v0.30.0/go.mod h1:vATpDMATVTMA79sZ0YUCzlMelf6rUjoBzlp+RnoM+cg=
 k8s.io/client-go v0.31.0 h1:QqEJzNjbN2Yv1H79SsS+SWnXkBgVu4Pj3CJQgbx0gI8=
 k8s.io/client-go v0.31.0/go.mod h1:Y9wvC76g4fLjmU0BA+rV+h2cncoadjvjjkkIGoTLcGU=
-k8s.io/code-generator v0.30.1 h1:ZsG++q5Vt0ScmKCeLhynUuWgcwFGg1Hl1AGfatqPJBI=
-k8s.io/code-generator v0.30.1/go.mod h1:hFgxRsvOUg79mbpbVKfjJvRhVz1qLoe40yZDJ/hwRH4=
+k8s.io/code-generator v0.31.0 h1:w607nrMi1KeDKB3/F/J4lIoOgAwc+gV9ZKew4XRfMp8=
+k8s.io/code-generator v0.31.0/go.mod h1:84y4w3es8rOJOUUP1rLsIiGlO1JuEaPFXQPA9e/K6U0=
 k8s.io/component-base v0.31.0 h1:/KIzGM5EvPNQcYgwq5NwoQBaOlVFrghoVGr8lG6vNRs=
 k8s.io/component-base v0.31.0/go.mod h1:TYVuzI1QmN4L5ItVdMSXKvH7/DtvIuas5/mm8YT3rTo=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 h1:bKcdZJOPICVmIIuaM9+MXmapE94dn5AYv5ODs1jA43o=
@@ -365,8 +365,8 @@ k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 h1:pUdcCO1Lk/tbT5ztQWOBi5HBgbBP1
 k8s.io/utils v0.0.0-20240711033017-18e509b52bc8/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
-sigs.k8s.io/controller-runtime v0.18.4 h1:87+guW1zhvuPLh1PHybKdYFLU0YJp4FhJRmiHvm5BZw=
-sigs.k8s.io/controller-runtime v0.18.4/go.mod h1:TVoGrfdpbA9VRFaRnKgk9P5/atA0pMwq+f+msb9M8Sg=
+sigs.k8s.io/controller-runtime v0.19.0 h1:nWVM7aq+Il2ABxwiCizrVDSlmDcshi9llbaFbC0ji/Q=
+sigs.k8s.io/controller-runtime v0.19.0/go.mod h1:iRmWllt8IlaLjvTTDLhRBXIEtkCK6hwVBJJsYS9Ajf4=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/kustomize/api v0.16.0 h1:/zAR4FOQDCkgSDmVzV2uiFbuy9bhu3jEzthrHCuvm1g=

From bfd65d6c5939d9e982abcb9b84f98d63c01e522c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 21 Aug 2024 07:29:39 +0100
Subject: [PATCH 1406/1641] Bump github.com/prometheus/client_golang from
 1.19.1 to 1.20.1 (#11832)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 3 ++-
 go.sum | 6 ++++--
 2 files changed, 6 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 060fdbf21..95123b04b 100644
--- a/go.mod
+++ b/go.mod
@@ -17,7 +17,7 @@ require (
 	github.com/onsi/ginkgo/v2 v2.20.0
 	github.com/opencontainers/runc v1.1.13
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
-	github.com/prometheus/client_golang v1.19.1
+	github.com/prometheus/client_golang v1.20.1
 	github.com/prometheus/client_model v0.6.1
 	github.com/prometheus/common v0.55.0
 	github.com/spf13/cobra v1.8.1
@@ -47,6 +47,7 @@ require (
 
 require (
 	github.com/fxamacker/cbor/v2 v2.7.0 // indirect
+	github.com/klauspost/compress v1.17.9 // indirect
 	github.com/x448/float16 v0.8.4 // indirect
 	gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
 )
diff --git a/go.sum b/go.sum
index de380c386..790fd5215 100644
--- a/go.sum
+++ b/go.sum
@@ -111,6 +111,8 @@ github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnr
 github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
 github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8=
 github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
+github.com/klauspost/compress v1.17.9 h1:6KIumPrER1LHsvBVuDa0r5xaG0Es51mhhB9BQB2qeMA=
+github.com/klauspost/compress v1.17.9/go.mod h1:Di0epgTjJY877eYKx5yC51cX2A2Vl2ibi7bDH9ttBbw=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
 github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
 github.com/kr/pretty v0.3.1/go.mod h1:hoEshYVHaxMs3cyo3Yncou5ZscifuDolrwPKZanG3xk=
@@ -180,8 +182,8 @@ github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINE
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 h1:Jamvg5psRIccs7FGNTlIRMkT8wgtp5eCXdBlqhYGL6U=
 github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/prometheus/client_golang v1.19.1 h1:wZWJDwK+NameRJuPGDhlnFgx8e8HN3XHQeLaYJFJBOE=
-github.com/prometheus/client_golang v1.19.1/go.mod h1:mP78NwGzrVks5S2H6ab8+ZZGJLZUq1hoULYBAYBw1Ho=
+github.com/prometheus/client_golang v1.20.1 h1:IMJXHOD6eARkQpxo8KkhgEVFlBNm+nkrFUyGlIu7Na8=
+github.com/prometheus/client_golang v1.20.1/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
 github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
 github.com/prometheus/common v0.55.0 h1:KEi6DK7lXW/m7Ig5i47x0vRzuBsHuvJdi5ee6Y3G1dc=

From 3bec99ecfce78a535b17d1cd87c5cae105328190 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 21 Aug 2024 10:54:29 -0300
Subject: [PATCH 1407/1641] Remove 3rd party lua plugin support (#11821)

---
 .../nginx-configuration/configmap.md          |  5 --
 internal/ingress/controller/config/config.go  |  5 --
 .../ingress/controller/template/configmap.go  |  6 --
 rootfs/etc/nginx/lua/plugins.lua              | 61 -------------------
 rootfs/etc/nginx/lua/plugins/README.md        | 36 -----------
 .../nginx/lua/plugins/hello_world/main.lua    | 13 ----
 .../plugins/hello_world/test/main_test.lua    | 24 --------
 rootfs/etc/nginx/lua/test/plugins_test.lua    | 23 -------
 rootfs/etc/nginx/template/nginx.tmpl          | 19 ------
 test/data/cleanConf.expected.conf             |  4 --
 test/data/cleanConf.src.conf                  |  7 +--
 test/e2e/settings/plugins.go                  | 55 -----------------
 test/test-lua.sh                              |  2 +-
 13 files changed, 2 insertions(+), 258 deletions(-)
 delete mode 100644 rootfs/etc/nginx/lua/plugins.lua
 delete mode 100644 rootfs/etc/nginx/lua/plugins/README.md
 delete mode 100644 rootfs/etc/nginx/lua/plugins/hello_world/main.lua
 delete mode 100644 rootfs/etc/nginx/lua/plugins/hello_world/test/main_test.lua
 delete mode 100644 rootfs/etc/nginx/lua/test/plugins_test.lua
 delete mode 100644 test/e2e/settings/plugins.go

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 0b8e03af1..51e4edfa3 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -82,7 +82,6 @@ The following table shows a configuration option's name, type, and the default v
 | [server-name-hash-bucket-size](#server-name-hash-bucket-size)                   | int          | `<size of the processor’s cache line>`                                                                                                                                                                                                                                                                                                                       |
 | [proxy-headers-hash-max-size](#proxy-headers-hash-max-size)                     | int          | 512                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
 | [proxy-headers-hash-bucket-size](#proxy-headers-hash-bucket-size)               | int          | 64                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
-| [plugins](#plugins)                                                             | []string     |                                                                                                                                                                                                                                                                                                                                                              |                                                                                     |
 | [reuse-port](#reuse-port)                                                       | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
 | [server-tokens](#server-tokens)                                                 | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
 | [ssl-ciphers](#ssl-ciphers)                                                     | string       | "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384"                                                                                                                          |                                                                                     |
@@ -612,10 +611,6 @@ _References:_
 - [https://nginx.org/en/docs/hash.html](https://nginx.org/en/docs/hash.html)
 - [https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_headers_hash_bucket_size](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_headers_hash_bucket_size)
 
-## plugins
-
-Activates plugins installed in `/etc/nginx/lua/plugins`. Refer to [ingress-nginx plugins README](https://github.com/kubernetes/ingress-nginx/blob/main/rootfs/etc/nginx/lua/plugins/README.md) for more information on how to write and install a plugin.
-
 ## server-tokens
 
 Send NGINX Server header in responses and display NGINX version in error pages. _**default:**_ is disabled
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 5e0ca2296..337cb9e86 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -318,11 +318,6 @@ type Configuration struct {
 	NginxStatusIpv4Whitelist []string `json:"nginx-status-ipv4-whitelist,omitempty"`
 	NginxStatusIpv6Whitelist []string `json:"nginx-status-ipv6-whitelist,omitempty"`
 
-	// Plugins configures plugins to use placed in the directory /etc/nginx/lua/plugins.
-	// Every plugin has to have main.lua in the root. Every plugin has to bundle all of its dependencies.
-	// The execution order follows the definition.
-	Plugins []string `json:"plugins,omitempty"`
-
 	// If UseProxyProtocol is enabled ProxyRealIPCIDR defines the default the IP/network address
 	// of your external load balancer
 	ProxyRealIPCIDR []string `json:"proxy-real-ip-cidr,omitempty"`
diff --git a/internal/ingress/controller/template/configmap.go b/internal/ingress/controller/template/configmap.go
index 1a7f15f1c..2f7b0a09c 100644
--- a/internal/ingress/controller/template/configmap.go
+++ b/internal/ingress/controller/template/configmap.go
@@ -67,7 +67,6 @@ const (
 	globalAuthCacheDuration       = "global-auth-cache-duration"
 	globalAuthAlwaysSetCookie     = "global-auth-always-set-cookie"
 	luaSharedDictsKey             = "lua-shared-dicts"
-	plugins                       = "plugins"
 	debugConnections              = "debug-connections"
 	workerSerialReloads           = "enable-serial-reloads"
 )
@@ -416,11 +415,6 @@ func ReadConfig(src map[string]string) config.Configuration {
 		delete(conf, workerSerialReloads)
 	}
 
-	if val, ok := conf[plugins]; ok {
-		to.Plugins = splitAndTrimSpace(val, ",")
-		delete(conf, plugins)
-	}
-
 	if val, ok := conf[debugConnections]; ok {
 		delete(conf, debugConnections)
 		for _, i := range splitAndTrimSpace(val, ",") {
diff --git a/rootfs/etc/nginx/lua/plugins.lua b/rootfs/etc/nginx/lua/plugins.lua
deleted file mode 100644
index 55e208a32..000000000
--- a/rootfs/etc/nginx/lua/plugins.lua
+++ /dev/null
@@ -1,61 +0,0 @@
-local require = require
-local ngx = ngx
-local ipairs = ipairs
-local string_format = string.format
-local ngx_log = ngx.log
-local INFO = ngx.INFO
-local ERR = ngx.ERR
-local pcall = pcall
-
-local _M = {}
-local MAX_NUMBER_OF_PLUGINS = 20
-local plugins = {}
-
-local function load_plugin(name)
-  local path = string_format("plugins.%s.main", name)
-
-  local ok, plugin = pcall(require, path)
-  if not ok then
-    ngx_log(ERR, string_format("error loading plugin \"%s\": %s", path, plugin))
-    return
-  end
-  local index = #plugins
-  if (plugin.name == nil or plugin.name == '') then
-    plugin.name = name
-  end
-  plugins[index + 1] = plugin
-end
-
-function _M.init(names)
-  local count = 0
-  for _, name in ipairs(names) do
-    if count >= MAX_NUMBER_OF_PLUGINS then
-      ngx_log(ERR, "the total number of plugins exceed the maximum number: ", MAX_NUMBER_OF_PLUGINS)
-      break
-    end
-    load_plugin(name)
-    count = count + 1 -- ignore loading failure, just count the total
-  end
-end
-
-function _M.run()
-  local phase = ngx.get_phase()
-
-  for _, plugin in ipairs(plugins) do
-    if plugin[phase] then
-      ngx_log(INFO, string_format("running plugin \"%s\" in phase \"%s\"", plugin.name, phase))
-
-      -- TODO: consider sandboxing this, should we?
-      -- probably yes, at least prohibit plugin from accessing env vars etc
-      -- but since the plugins are going to be installed by ingress-nginx
-      -- operator they can be assumed to be safe also
-      local ok, err = pcall(plugin[phase])
-      if not ok then
-        ngx_log(ERR, string_format("error while running plugin \"%s\" in phase \"%s\": %s",
-            plugin.name, phase, err))
-      end
-    end
-  end
-end
-
-return _M
diff --git a/rootfs/etc/nginx/lua/plugins/README.md b/rootfs/etc/nginx/lua/plugins/README.md
deleted file mode 100644
index 64f4912f0..000000000
--- a/rootfs/etc/nginx/lua/plugins/README.md
+++ /dev/null
@@ -1,36 +0,0 @@
-# Custom Lua plugins
-
-ingress-nginx uses [https://github.com/openresty/lua-nginx-module](https://github.com/openresty/lua-nginx-module) to run custom Lua code
-within Nginx workers. It is recommended to familiarize yourself with that ecosystem before deploying your custom Lua based ingress-nginx plugin.
-
-### Writing a plugin
-
-Every ingress-nginx Lua plugin is expected to have `main.lua` file and all of its dependencies.
-`main.lua` is the entry point of the plugin. The plugin manager uses convention over configuration
-strategy and automatically runs functions defined in `main.lua` in the corresponding Nginx phase based on their name.
-
-Nginx has different [request processing phases](https://nginx.org/en/docs/dev/development_guide.html#http_phases).
-By defining functions with the following names, you can run your custom Lua code in the corresponding Nginx phase:
-
- - `init_worker`: useful for initializing some data per Nginx worker process
- - `rewrite`: useful for modifying request, changing headers, redirection, dropping request, doing authentication etc
- - `header_filter`: this is called when backend response header is received, it is useful for modifying response headers
- - `body_filter`: this is called when response body is received, it is useful for logging response body 
- - `log`: this is called when request processing is completed and a response is delivered to the client
-
-Check this [`hello_world`](https://github.com/kubernetes/ingress-nginx/tree/main/rootfs/etc/nginx/lua/plugins/hello_world) plugin as a simple example or refer to [OpenID Connect integration](https://github.com/ElvinEfendi/ingress-nginx-openidc/tree/master/rootfs/etc/nginx/lua/plugins/openidc) for more advanced usage.
-
-Do not forget to write tests for your plugin.
-
-### Installing a plugin
-
-There are two options:
-
-  - mount your plugin into `/etc/nginx/lua/plugins/<your plugin name>` in the ingress-nginx pod
-  - build your own ingress-nginx image like it is done in the [example](https://github.com/ElvinEfendi/ingress-nginx-openidc/tree/master/rootfs/etc/nginx/lua/plugins/openidc) and install your plugin during image build
-
-Mounting is the quickest option.
-
-### Enabling plugins
-
-Once your plugin is ready you need to use [`plugins` configuration setting](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#plugins) to activate it. Let's say you want to activate `hello_world` and `open_idc` plugins, then you set `plugins` setting to `"hello_world, open_idc"`. _Note_ that the plugins will be executed in the given order.
diff --git a/rootfs/etc/nginx/lua/plugins/hello_world/main.lua b/rootfs/etc/nginx/lua/plugins/hello_world/main.lua
deleted file mode 100644
index 03316c3ee..000000000
--- a/rootfs/etc/nginx/lua/plugins/hello_world/main.lua
+++ /dev/null
@@ -1,13 +0,0 @@
-local ngx = ngx
-
-local _M = {}
-
-function _M.rewrite()
-  local ua = ngx.var.http_user_agent
-
-  if ua == "hello" then
-    ngx.req.set_header("x-hello-world", "1")
-  end
-end
-
-return _M
diff --git a/rootfs/etc/nginx/lua/plugins/hello_world/test/main_test.lua b/rootfs/etc/nginx/lua/plugins/hello_world/test/main_test.lua
deleted file mode 100644
index 5eda52259..000000000
--- a/rootfs/etc/nginx/lua/plugins/hello_world/test/main_test.lua
+++ /dev/null
@@ -1,24 +0,0 @@
-
-local main = require("plugins.hello_world.main")
-
--- The unit tests are run within a timer phase in a headless Nginx process.
--- Since `set_header` and `ngx.var.http_` API are disabled in this phase we have to stub it 
--- to avoid `API disabled in the current context` error.
-
-describe("main", function()
-  describe("rewrite", function()
-    it("sets x-hello-world header to 1 when user agent is hello", function()
-      ngx.var = { http_user_agent = "hello" }
-      stub(ngx.req, "set_header")
-      main.rewrite()
-      assert.stub(ngx.req.set_header).was_called_with("x-hello-world", "1")
-    end)
-
-    it("does not set x-hello-world header to 1 when user agent is not hello", function()
-      ngx.var = { http_user_agent = "not-hello" }
-      stub(ngx.req, "set_header")
-      main.rewrite()
-      assert.stub(ngx.req.set_header).was_not_called_with("x-hello-world", "1")
-    end)
-  end)
-end)
diff --git a/rootfs/etc/nginx/lua/test/plugins_test.lua b/rootfs/etc/nginx/lua/test/plugins_test.lua
deleted file mode 100644
index d7f789d0f..000000000
--- a/rootfs/etc/nginx/lua/test/plugins_test.lua
+++ /dev/null
@@ -1,23 +0,0 @@
-describe("plugins", function()
-  describe("#run", function()
-    it("runs the plugins in the given order", function()
-      ngx.get_phase = function() return "rewrite" end
-      local plugins = require("plugins")
-      local called_plugins = {}
-      local plugins_to_mock = {"plugins.pluginfirst.main", "plugins.pluginsecond.main", "plugins.pluginthird.main"}
-      for i=1, 3, 1
-      do
-        package.loaded[plugins_to_mock[i]] = {
-          rewrite = function()
-            called_plugins[#called_plugins + 1] = plugins_to_mock[i]
-          end
-        }
-      end
-      assert.has_no.errors(function()
-        plugins.init({"pluginfirst", "pluginsecond", "pluginthird"})
-      end)
-      assert.has_no.errors(plugins.run)
-      assert.are.same(plugins_to_mock, called_plugins)
-    end)
-  end)
-end)
\ No newline at end of file
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 93a04e3e6..1c630bb4d 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -113,15 +113,6 @@ http {
           certificate = res
           certificate.is_ocsp_stapling_enabled = {{ $cfg.EnableOCSP }}
         end
-
-        ok, res = pcall(require, "plugins")
-        if not ok then
-          error("require failed: " .. tostring(res))
-        else
-          plugins = res
-        end
-        -- load all plugins that'll be used here
-        plugins.init({ {{ range  $idx, $plugin := $cfg.Plugins }}{{ if $idx }},{{ end }}{{ $plugin | quote }}{{ end }} })
     }
 
     init_worker_by_lua_block {
@@ -130,8 +121,6 @@ http {
         {{ if $all.EnableMetrics }}
         monitor.init_worker({{ $all.MonitorMaxBatchSize }})
         {{ end }}
-
-        plugins.run()
     }
 
     {{/* Enable the real_ip module only if we use either X-Forwarded headers or Proxy Protocol. */}}
@@ -1265,7 +1254,6 @@ stream {
             rewrite_by_lua_block {
                 lua_ingress.rewrite({{ locationConfigForLua $location $all }})
                 balancer.rewrite()
-                plugins.run()
             }
 
             # be careful with `access_by_lua_block` and `satisfy any` directives as satisfy any
@@ -1276,11 +1264,6 @@ stream {
 
             header_filter_by_lua_block {
                 lua_ingress.header()
-                plugins.run()
-            }
-
-            body_filter_by_lua_block {
-                plugins.run()
             }
 
             log_by_lua_block {
@@ -1288,8 +1271,6 @@ stream {
                 {{ if $all.EnableMetrics }}
                 monitor.call()
                 {{ end }}
-
-                plugins.run()
             }
 
             {{ if not $location.Logs.Access }}
diff --git a/test/data/cleanConf.expected.conf b/test/data/cleanConf.expected.conf
index 7c4a16824..9c0513b37 100644
--- a/test/data/cleanConf.expected.conf
+++ b/test/data/cleanConf.expected.conf
@@ -67,8 +67,6 @@ http {
 		balancer.init_worker()
 		
 		monitor.init_worker(10000)
-		
-		plugins.run()
 	}
 	
 	map $request_uri $loggable {
@@ -120,7 +118,6 @@ http {
 					use_port_in_redirects = false,
 				})
 				balancer.rewrite()
-				plugins.run()
 			}
 			
 			# be careful with `access_by_lua_block` and `satisfy any` directives as satisfy any
@@ -130,7 +127,6 @@ http {
 			
 			header_filter_by_lua_block {
 				lua_ingress.header()
-				plugins.run()
 			}
 			
 		}
diff --git a/test/data/cleanConf.src.conf b/test/data/cleanConf.src.conf
index 89954cf0d..6da578106 100644
--- a/test/data/cleanConf.src.conf
+++ b/test/data/cleanConf.src.conf
@@ -86,11 +86,8 @@ lua_shared_dict ocsp_response_cache 5M;
     init_worker_by_lua_block {
         lua_ingress.init_worker()
         balancer.init_worker()
-        
-        monitor.init_worker(10000)
-        
 
-        plugins.run()
+        monitor.init_worker(10000)
     }
 
     
@@ -164,7 +161,6 @@ lua_shared_dict ocsp_response_cache 5M;
 		use_port_in_redirects = false,
 	})
                 balancer.rewrite()
-                plugins.run()
             }
 
             # be careful with `access_by_lua_block` and `satisfy any` directives as satisfy any
@@ -174,7 +170,6 @@ lua_shared_dict ocsp_response_cache 5M;
 
             header_filter_by_lua_block {
                 lua_ingress.header()
-                plugins.run()
             }
 
 
diff --git a/test/e2e/settings/plugins.go b/test/e2e/settings/plugins.go
deleted file mode 100644
index 659acd42c..000000000
--- a/test/e2e/settings/plugins.go
+++ /dev/null
@@ -1,55 +0,0 @@
-/*
-Copyright 2020 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package settings
-
-import (
-	"fmt"
-	"net/http"
-	"strings"
-
-	"github.com/onsi/ginkgo/v2"
-	"k8s.io/ingress-nginx/test/e2e/framework"
-)
-
-var _ = framework.IngressNginxDescribe("plugins", func() {
-	f := framework.NewDefaultFramework("plugins")
-
-	ginkgo.BeforeEach(func() {
-		f.NewEchoDeployment()
-	})
-
-	ginkgo.It("should exist a x-hello-world header", func() {
-		f.UpdateNginxConfigMapData("plugins", "hello_world, invalid")
-
-		host := "example.com"
-		f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, nil))
-
-		f.WaitForNginxConfiguration(
-			func(server string) bool {
-				return strings.Contains(server, fmt.Sprintf("server_name %v", host)) &&
-					strings.Contains(server, `plugins.init({ "hello_world","invalid" })`)
-			})
-
-		f.HTTPTestClient().
-			GET("/").
-			WithHeader("Host", host).
-			WithHeader("User-Agent", "hello").
-			Expect().
-			Status(http.StatusOK).
-			Body().Contains("x-hello-world=1")
-	})
-})
diff --git a/test/test-lua.sh b/test/test-lua.sh
index fc60023f8..1aff5f30c 100755
--- a/test/test-lua.sh
+++ b/test/test-lua.sh
@@ -41,7 +41,7 @@ SHDICT_ARGS=(
 )
 
 if [ $# -eq 0 ]; then
-    resty "${SHDICT_ARGS[@]}" ./rootfs/etc/nginx/lua/test/ ./rootfs/etc/nginx/lua/plugins/**/test ${BUSTED_ARGS}
+    resty "${SHDICT_ARGS[@]}" ./rootfs/etc/nginx/lua/test/ ${BUSTED_ARGS}
 else
     resty "${SHDICT_ARGS[@]}" $@ ${BUSTED_ARGS}
 fi

From b79551287e42ec15306fecc31f3d8dee23b7f840 Mon Sep 17 00:00:00 2001
From: Hen Itzhaki <44509873+HenItzhaki@users.noreply.github.com>
Date: Fri, 23 Aug 2024 01:39:20 +0300
Subject: [PATCH 1408/1641] docs: Add deployment for AWS NLB Proxy. (#9565)

Co-authored-by: HenItzhaki <dj.HenItzhaki@gmail.com>
---
 .../deploy.yaml                               | 673 ++++++++++++++++++
 .../kustomization.yaml                        |  11 +
 2 files changed, 684 insertions(+)
 create mode 100644 deploy/static/provider/aws/nlb-proxy-with-tls-termination/deploy.yaml
 create mode 100644 deploy/static/provider/aws/nlb-proxy-with-tls-termination/kustomization.yaml

diff --git a/deploy/static/provider/aws/nlb-proxy-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-proxy-with-tls-termination/deploy.yaml
new file mode 100644
index 000000000..5a3987875
--- /dev/null
+++ b/deploy/static/provider/aws/nlb-proxy-with-tls-termination/deploy.yaml
@@ -0,0 +1,673 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  name: ingress-nginx
+---
+apiVersion: v1
+automountServiceAccountToken: true
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - namespaces
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - pods
+  - secrets
+  - endpoints
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resourceNames:
+  - ingress-nginx-leader
+  resources:
+  - configmaps
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  verbs:
+  - create
+- apiGroups:
+  - coordination.k8s.io
+  resourceNames:
+  - ingress-nginx-leader
+  resources:
+  - leases
+  verbs:
+  - get
+  - update
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - create
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: Role
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - secrets
+  verbs:
+  - get
+  - create
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - configmaps
+  - endpoints
+  - nodes
+  - pods
+  - secrets
+  - namespaces
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - coordination.k8s.io
+  resources:
+  - leases
+  verbs:
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - nodes
+  verbs:
+  - get
+- apiGroups:
+  - ""
+  resources:
+  - services
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - ""
+  resources:
+  - events
+  verbs:
+  - create
+  - patch
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingresses/status
+  verbs:
+  - update
+- apiGroups:
+  - networking.k8s.io
+  resources:
+  - ingressclasses
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups:
+  - discovery.k8s.io
+  resources:
+  - endpointslices
+  verbs:
+  - list
+  - watch
+  - get
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx-admission
+rules:
+- apiGroups:
+  - admissionregistration.k8s.io
+  resources:
+  - validatingwebhookconfigurations
+  verbs:
+  - get
+  - update
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: RoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: Role
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx
+  namespace: ingress-nginx
+---
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx-admission
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: ingress-nginx-admission
+subjects:
+- kind: ServiceAccount
+  name: ingress-nginx-admission
+  namespace: ingress-nginx
+---
+apiVersion: v1
+data:
+  allow-snippet-annotations: "true"
+  proxy-body-size: "8m"
+  ssl-redirect: "false"
+  use-forwarded-headers: "true"
+  compute-full-forwarded-for: "true"
+  use-proxy-protocol: "true" # No modify X-Forwarded-* HTTPS from NLB TLS. 
+  force-ssl-redirect: "true" # Redirect HTTP -> HTTPS.
+
+kind: ConfigMap
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+---
+apiVersion: v1
+kind: Service
+metadata:
+  annotations:
+    service.beta.kubernetes.io/aws-load-balancer-type: "external"
+    service.beta.kubernetes.io/aws-load-balancer-backend-protocol: "tcp"
+    service.beta.kubernetes.io/aws-load-balancer-nlb-target-type: "ip"
+    service.beta.kubernetes.io/aws-load-balancer-scheme: "internet-facing"
+    service.beta.kubernetes.io/aws-load-balancer-proxy-protocol: "*"
+    service.beta.kubernetes.io/aws-load-balancer-ssl-cert: "arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX"
+    service.beta.kubernetes.io/aws-load-balancer-ssl-ports: "443"
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  externalTrafficPolicy: Local
+  ipFamilies:
+  - IPv4
+  ipFamilyPolicy: SingleStack
+  ports:
+  - appProtocol: http
+    name: http
+    port: 80
+    protocol: TCP
+    targetPort: http
+  - appProtocol: https
+    name: https
+    port: 443
+    protocol: TCP
+    targetPort: https
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: LoadBalancer
+---
+apiVersion: v1
+kind: Service
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx-controller-admission
+  namespace: ingress-nginx
+spec:
+  ports:
+  - appProtocol: https
+    name: https-webhook
+    port: 443
+    targetPort: webhook
+  selector:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+  type: ClusterIP
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx-controller
+  namespace: ingress-nginx
+spec:
+  minReadySeconds: 0
+  revisionHistoryLimit: 10
+  selector:
+    matchLabels:
+      app.kubernetes.io/component: controller
+      app.kubernetes.io/instance: ingress-nginx
+      app.kubernetes.io/name: ingress-nginx
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: controller
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+    spec:
+      containers:
+      - args:
+        - /nginx-ingress-controller
+        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --election-id=ingress-nginx-leader
+        - --controller-class=k8s.io/ingress-nginx
+        - --ingress-class=nginx
+        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
+        - --validating-webhook=:8443
+        - --validating-webhook-certificate=/usr/local/certificates/cert
+        - --validating-webhook-key=/usr/local/certificates/key
+        env:
+        - name: POD_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        - name: LD_PRELOAD
+          value: /usr/local/lib/libmimalloc.so
+        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
+        imagePullPolicy: IfNotPresent
+        lifecycle:
+          preStop:
+            exec:
+              command:
+              - /wait-shutdown
+        livenessProbe:
+          failureThreshold: 5
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        name: controller
+        ports:
+        - containerPort: 80
+          name: http
+          protocol: TCP
+        - containerPort: 443
+          name: https
+          protocol: TCP
+        - containerPort: 8443
+          name: webhook
+          protocol: TCP
+        readinessProbe:
+          failureThreshold: 3
+          httpGet:
+            path: /healthz
+            port: 10254
+            scheme: HTTP
+          initialDelaySeconds: 10
+          periodSeconds: 10
+          successThreshold: 1
+          timeoutSeconds: 1
+        resources:
+          requests:
+            cpu: 100m
+            memory: 90Mi
+        securityContext:
+          allowPrivilegeEscalation: true
+          capabilities:
+            add:
+            - NET_BIND_SERVICE
+            drop:
+            - ALL
+          runAsUser: 101
+        volumeMounts:
+        - mountPath: /usr/local/certificates/
+          name: webhook-cert
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        kubernetes.io/os: linux
+      serviceAccountName: ingress-nginx
+      terminationGracePeriodSeconds: 300
+      volumes:
+      - name: webhook-cert
+        secret:
+          secretName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx-admission-create
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.5.1
+      name: ingress-nginx-admission-create
+    spec:
+      containers:
+      - args:
+        - create
+        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
+        - --namespace=$(POD_NAMESPACE)
+        - --secret-name=ingress-nginx-admission
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        imagePullPolicy: IfNotPresent
+        name: create
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: batch/v1
+kind: Job
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx-admission-patch
+  namespace: ingress-nginx
+spec:
+  template:
+    metadata:
+      labels:
+        app.kubernetes.io/component: admission-webhook
+        app.kubernetes.io/instance: ingress-nginx
+        app.kubernetes.io/name: ingress-nginx
+        app.kubernetes.io/part-of: ingress-nginx
+        app.kubernetes.io/version: 1.5.1
+      name: ingress-nginx-admission-patch
+    spec:
+      containers:
+      - args:
+        - patch
+        - --webhook-name=ingress-nginx-admission
+        - --namespace=$(POD_NAMESPACE)
+        - --patch-mutating=false
+        - --secret-name=ingress-nginx-admission
+        - --patch-failure-policy=Fail
+        env:
+        - name: POD_NAMESPACE
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.namespace
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
+        imagePullPolicy: IfNotPresent
+        name: patch
+        securityContext:
+          allowPrivilegeEscalation: false
+      nodeSelector:
+        kubernetes.io/os: linux
+      restartPolicy: OnFailure
+      securityContext:
+        fsGroup: 2000
+        runAsNonRoot: true
+        runAsUser: 2000
+      serviceAccountName: ingress-nginx-admission
+---
+apiVersion: networking.k8s.io/v1
+kind: IngressClass
+metadata:
+  labels:
+    app.kubernetes.io/component: controller
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: nginx
+spec:
+  controller: k8s.io/ingress-nginx
+---
+apiVersion: admissionregistration.k8s.io/v1
+kind: ValidatingWebhookConfiguration
+metadata:
+  labels:
+    app.kubernetes.io/component: admission-webhook
+    app.kubernetes.io/instance: ingress-nginx
+    app.kubernetes.io/name: ingress-nginx
+    app.kubernetes.io/part-of: ingress-nginx
+    app.kubernetes.io/version: 1.5.1
+  name: ingress-nginx-admission
+webhooks:
+- admissionReviewVersions:
+  - v1
+  clientConfig:
+    service:
+      name: ingress-nginx-controller-admission
+      namespace: ingress-nginx
+      path: /networking/v1/ingresses
+  failurePolicy: Fail
+  matchPolicy: Equivalent
+  name: validate.nginx.ingress.kubernetes.io
+  rules:
+  - apiGroups:
+    - networking.k8s.io
+    apiVersions:
+    - v1
+    operations:
+    - CREATE
+    - UPDATE
+    resources:
+    - ingresses
+  sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-proxy-with-tls-termination/kustomization.yaml b/deploy/static/provider/aws/nlb-proxy-with-tls-termination/kustomization.yaml
new file mode 100644
index 000000000..51c1513c9
--- /dev/null
+++ b/deploy/static/provider/aws/nlb-proxy-with-tls-termination/kustomization.yaml
@@ -0,0 +1,11 @@
+# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
+# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
+#
+# ```
+# namespace: ingress-nginx
+# bases:
+#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws/nlb-with-tls-termination
+# ```
+
+resources:
+  - deploy.yaml

From 7b4e4e2fa15f3d06e460c1b1c944a0c6a68f35e8 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Fri, 23 Aug 2024 00:45:51 -0300
Subject: [PATCH 1409/1641] Enable security features by default (#11819)

---
 .github/workflows/ci.yaml                     | 21 +-----
 .github/workflows/zz-tmpl-k8s-e2e.yaml        |  1 -
 charts/ingress-nginx/README.md                |  2 +-
 charts/ingress-nginx/values.yaml              |  2 +-
 docs/user-guide/cli-arguments.md              |  2 +-
 internal/ingress/controller/config/config.go  |  6 +-
 pkg/flags/flags.go                            |  2 +-
 test/e2e/admission/admission.go               | 30 ++------
 test/e2e/annotations/auth.go                  | 21 +-----
 test/e2e/annotations/fromtowwwredirect.go     | 10 +--
 test/e2e/annotations/grpc.go                  | 10 +--
 .../annotations/modsecurity/modsecurity.go    | 75 ++++++-------------
 test/e2e/annotations/serversnippet.go         | 25 +------
 test/e2e/annotations/snippet.go               | 13 +---
 test/e2e/annotations/streamsnippet.go         | 10 +--
 test/e2e/framework/exec.go                    |  6 +-
 test/e2e/framework/framework.go               | 14 ++++
 test/e2e/ingress/multiple_rules.go            | 10 +--
 test/e2e/ingress/pathtype_exact.go            | 10 +--
 test/e2e/ingress/pathtype_mixed.go            | 10 +--
 test/e2e/run-e2e-suite.sh                     |  1 -
 test/e2e/run-kind-e2e.sh                      |  1 -
 test/e2e/settings/badannotationvalues.go      | 43 +++--------
 test/e2e/settings/geoip2.go                   | 12 +--
 test/e2e/settings/proxy_host.go               | 13 ++--
 test/e2e/settings/server_snippet.go           |  4 +
 test/e2e/settings/validations/validations.go  |  8 +-
 test/e2e/wait-for-nginx.sh                    |  3 +-
 28 files changed, 103 insertions(+), 262 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 49b39a7a3..d240181c3 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -258,7 +258,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30.0]
+        k8s: [v1.28.13, v1.29.8, v1.30.4, v1.31.0]
 
     steps:
       - name: Checkout
@@ -309,26 +309,11 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     strategy:
       matrix:
-        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30.0]
+        k8s: [v1.28.13, v1.29.8, v1.30.4, v1.31.0]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
 
-  kubernetes-validations:
-    name: Kubernetes with Validations
-    needs:
-      - changes
-      - build
-    if: |
-      (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
-    strategy:
-      matrix:
-        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30.0]
-    uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
-    with:
-      k8s-version: ${{ matrix.k8s }}
-      variation: "VALIDATIONS"
-
   kubernetes-chroot:
     name: Kubernetes chroot
     needs:
@@ -338,7 +323,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     strategy:
       matrix:
-        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30.0]
+        k8s: [v1.28.13, v1.29.8, v1.30.4, v1.31.0]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index adf1dc0e8..7ab75feab 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -43,7 +43,6 @@ jobs:
           SKIP_CLUSTER_CREATION: true
           SKIP_INGRESS_IMAGE_CREATION: true
           SKIP_E2E_IMAGE_CREATION: true
-          ENABLE_VALIDATIONS: ${{ inputs.variation == 'VALIDATIONS' }}
           IS_CHROOT: ${{ inputs.variation == 'CHROOT' }}
         run: |
           kind get kubeconfig > $HOME/.kube/kind-config-kind
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index c1d1dfb66..f69d2951b 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -304,7 +304,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.dnsPolicy | string | `"ClusterFirst"` | Optionally change this to ClusterFirstWithHostNet in case you have 'hostNetwork: true'. By default, while using host network, name resolution uses the host's DNS. If you wish nginx-controller to keep resolving names inside the k8s network, use ClusterFirstWithHostNet. |
 | controller.electionID | string | `""` | Election ID to use for status update, by default it uses the controller name combined with a suffix of 'leader' |
 | controller.electionTTL | string | `""` | Duration a leader election is valid before it's getting re-elected, e.g. `15s`, `10m` or `1h`. (Default: 30s) |
-| controller.enableAnnotationValidations | bool | `false` |  |
+| controller.enableAnnotationValidations | bool | `true` |  |
 | controller.enableMimalloc | bool | `true` | Enable mimalloc as a drop-in replacement for malloc. # ref: https://github.com/microsoft/mimalloc # |
 | controller.enableTopologyAwareRouting | bool | `false` | This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-mode="auto" Defaults to false |
 | controller.existingPsp | string | `""` | Use an existing PSP instead of creating one |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 55d6c9a92..89cb718c4 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -17,7 +17,7 @@ commonLabels: {}
 
 controller:
   name: controller
-  enableAnnotationValidations: false
+  enableAnnotationValidations: true
   image:
     ## Keep false as default for now!
     chroot: false
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index f8fdc2ddb..8ada854bf 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -15,7 +15,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--default-backend-service`        | Service used to serve HTTP requests not matching any known server name (catch-all). Takes the form "namespace/name". The controller configures NGINX to forward requests to the first port of this Service. |
 | `--default-server-port`            | Port to use for exposing the default server (catch-all). (default 8181) |
 | `--default-ssl-certificate`        | Secret containing a SSL certificate to be used by the default HTTPS server (catch-all). Takes the form "namespace/name". |
-| `--enable-annotation-validation`  | If true, will enable the annotation validation feature. This value will be defaulted to true on a future release. |
+| `--enable-annotation-validation`  | If true, will enable the annotation validation feature. Defaults to true |
 | `--disable-catch-all`              | Disable support for catch-all Ingresses. (default false) |
 | `--disable-full-test` | Disable full test of all merged ingresses at the admission stage and tests the template of the ingress being created or updated  (full test of all ingresses is enabled by default). |
 | `--disable-svc-external-name` | Disable support for Services of type ExternalName. (default false) |
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 337cb9e86..63029bbbe 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -776,10 +776,10 @@ func NewDefault() Configuration {
 
 	cfg := Configuration{
 		AllowSnippetAnnotations:          false,
-		AllowCrossNamespaceResources:     true,
+		AllowCrossNamespaceResources:     false,
 		AllowBackendServerHeader:         false,
 		AnnotationValueWordBlocklist:     "",
-		AnnotationsRiskLevel:             "Critical",
+		AnnotationsRiskLevel:             "High",
 		AccessLogPath:                    "/var/log/nginx/access.log",
 		AccessLogParams:                  "",
 		EnableAccessLogForDefaultBackend: false,
@@ -924,7 +924,7 @@ func NewDefault() Configuration {
 		GlobalRateLimitMemcachedPoolSize:       50,
 		GlobalRateLimitStatusCode:              429,
 		DebugConnections:                       []string{},
-		StrictValidatePathType:                 false, // TODO: This will be true in future releases
+		StrictValidatePathType:                 true,
 		GRPCBufferSizeKb:                       0,
 	}
 
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index 5891f636b..aed7d5c9a 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -158,7 +158,7 @@ Requires the update-status parameter.`)
 		annotationsPrefix = flags.String("annotations-prefix", parser.DefaultAnnotationsPrefix,
 			`Prefix of the Ingress annotations specific to the NGINX controller.`)
 
-		enableAnnotationValidation = flags.Bool("enable-annotation-validation", false,
+		enableAnnotationValidation = flags.Bool("enable-annotation-validation", true,
 			`If true, will enable the annotation validation feature. This value will be defaulted to true on a future release`)
 
 		enableSSLChainCompletion = flags.Bool("enable-ssl-chain-completion", false,
diff --git a/test/e2e/admission/admission.go b/test/e2e/admission/admission.go
index c41105e2d..124e1784d 100644
--- a/test/e2e/admission/admission.go
+++ b/test/e2e/admission/admission.go
@@ -127,14 +127,8 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 	})
 
 	ginkgo.It("should return an error if there is an error validating the ingress definition", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		host := admissionTestHost
 
@@ -241,14 +235,8 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 	})
 
 	ginkgo.It("should return an error if the Ingress V1 definition contains invalid annotations", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		out, err := createIngress(f.Namespace, invalidV1Ingress)
 		assert.Empty(ginkgo.GinkgoT(), out)
@@ -261,14 +249,8 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 	})
 
 	ginkgo.It("should not return an error for an invalid Ingress when it has unknown class", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 		out, err := createIngress(f.Namespace, invalidV1IngressWithOtherClass)
 		assert.Equal(ginkgo.GinkgoT(), "ingress.networking.k8s.io/extensions-invalid-other created\n", out)
 		assert.Nil(ginkgo.GinkgoT(), err, "creating an invalid ingress with unknown class using kubectl")
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index ea33fdf32..01c14be39 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -277,14 +277,8 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 			"nginx.ingress.kubernetes.io/auth-snippet": `
 				proxy_set_header My-Custom-Header 42;`,
 		}
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
@@ -297,15 +291,8 @@ var _ = framework.DescribeAnnotation("auth-*", func() {
 
 	ginkgo.It(`should not set snippet "proxy_set_header My-Custom-Header 42;" when external auth is not configured`, func() {
 		host := authHost
-
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/auth-snippet": `
diff --git a/test/e2e/annotations/fromtowwwredirect.go b/test/e2e/annotations/fromtowwwredirect.go
index b69cce93e..f578963ed 100644
--- a/test/e2e/annotations/fromtowwwredirect.go
+++ b/test/e2e/annotations/fromtowwwredirect.go
@@ -62,14 +62,8 @@ var _ = framework.DescribeAnnotation("from-to-www-redirect", func() {
 	})
 
 	ginkgo.It("should redirect from www HTTPS to HTTPS", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		ginkgo.By("setting up server for redirect from www")
 
diff --git a/test/e2e/annotations/grpc.go b/test/e2e/annotations/grpc.go
index 530d16729..2a9c5a983 100644
--- a/test/e2e/annotations/grpc.go
+++ b/test/e2e/annotations/grpc.go
@@ -193,14 +193,8 @@ var _ = framework.DescribeAnnotation("backend-protocol - GRPC", func() {
 	ginkgo.It("should return OK for service with backend protocol GRPCS", func() {
 		f.NewGRPCBinDeployment()
 
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		host := echoHost
 
diff --git a/test/e2e/annotations/modsecurity/modsecurity.go b/test/e2e/annotations/modsecurity/modsecurity.go
index a3e7d80ba..730fc76e7 100644
--- a/test/e2e/annotations/modsecurity/modsecurity.go
+++ b/test/e2e/annotations/modsecurity/modsecurity.go
@@ -100,14 +100,8 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity with snippet", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		host := modSecurityFooHost
 		nameSpace := f.Namespace
@@ -173,14 +167,8 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity with snippet and block requests", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		host := modSecurityFooHost
 		nameSpace := f.Namespace
@@ -212,14 +200,8 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity globally and with modsecurity-snippet block requests", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		host := modSecurityFooHost
 		nameSpace := f.Namespace
@@ -251,16 +233,11 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity when enable-owasp-modsecurity-crs is set to true", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations":    "true",
-			"enable-modsecurity":           "true",
-			"enable-owasp-modsecurity-crs": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
+
+		f.UpdateNginxConfigMapData("enable-modsecurity", "true")
+		f.UpdateNginxConfigMapData("enable-owasp-modsecurity-crs", "true")
 
 		host := modSecurityFooHost
 		nameSpace := f.Namespace
@@ -290,6 +267,8 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should enable modsecurity through the config map", func() {
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
@@ -310,17 +289,9 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 		f.EnsureIngress(ing)
 
 		expectedComment := "SecRuleEngine On"
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations":    "true",
-			"enable-modsecurity":           "true",
-			"enable-owasp-modsecurity-crs": "true",
-			"modsecurity-snippet":          expectedComment,
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		f.UpdateNginxConfigMapData("enable-modsecurity", "true")
+		f.UpdateNginxConfigMapData("enable-owasp-modsecurity-crs", "true")
+		f.UpdateNginxConfigMapData("modsecurity-snippet", expectedComment)
 
 		f.WaitForNginxServer(host,
 			func(server string) bool {
@@ -339,6 +310,9 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
+		f.UpdateNginxConfigMapData("annotations-risk-level", "Critical") // To enable snippet configurations
+		defer f.UpdateNginxConfigMapData("annotations-risk-level", "High")
+
 		snippet := `SecRequestBodyAccess On
 		SecAuditEngine RelevantOnly
 		SecAuditLogParts ABIJDEFHZ
@@ -378,14 +352,9 @@ var _ = framework.DescribeAnnotation("modsecurity owasp", func() {
 	})
 
 	ginkgo.It("should disable default modsecurity conf setting when modsecurity-snippet is specified", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
+
 		host := modSecurityFooHost
 		nameSpace := f.Namespace
 
diff --git a/test/e2e/annotations/serversnippet.go b/test/e2e/annotations/serversnippet.go
index 1195b728a..c94960a3d 100644
--- a/test/e2e/annotations/serversnippet.go
+++ b/test/e2e/annotations/serversnippet.go
@@ -33,14 +33,8 @@ var _ = framework.DescribeAnnotation("server-snippet", func() {
 	})
 
 	ginkgo.It(`add valid directives to server via server snippet`, func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		host := "serversnippet.foo.com"
 		annotations := map[string]string{
@@ -68,14 +62,8 @@ var _ = framework.DescribeAnnotation("server-snippet", func() {
 	})
 
 	ginkgo.It(`drops server snippet if disabled by the administrator`, func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		f.UpdateNginxConfigMapData("annotations-risk-level", "Critical") // To enable snippet configurations
+		defer f.UpdateNginxConfigMapData("annotations-risk-level", "High")
 
 		host := "noserversnippet.foo.com"
 		annotations := map[string]string{
@@ -85,11 +73,6 @@ var _ = framework.DescribeAnnotation("server-snippet", func() {
 		}
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
-		f.UpdateNginxConfigMapData("allow-snippet-annotations", "false")
-		defer func() {
-			// Return to the original value
-			f.UpdateNginxConfigMapData("allow-snippet-annotations", "true")
-		}()
 		// Sleep a while just to guarantee that the configmap is applied
 		framework.Sleep()
 		f.EnsureIngress(ing)
diff --git a/test/e2e/annotations/snippet.go b/test/e2e/annotations/snippet.go
index 0c6148a4f..9e3160dcc 100644
--- a/test/e2e/annotations/snippet.go
+++ b/test/e2e/annotations/snippet.go
@@ -33,15 +33,8 @@ var _ = framework.DescribeAnnotation("configuration-snippet", func() {
 
 	ginkgo.It("set snippet more_set_headers in all locations", func() {
 		host := "configurationsnippet.foo.com"
-
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/configuration-snippet": `more_set_headers "Foo1: Bar1";`,
@@ -71,6 +64,8 @@ var _ = framework.DescribeAnnotation("configuration-snippet", func() {
 	})
 
 	ginkgo.It("drops snippet more_set_header in all locations if disabled by admin", func() {
+		f.UpdateNginxConfigMapData("annotations-risk-level", "Critical") // To enable snippet configurations
+		defer f.UpdateNginxConfigMapData("annotations-risk-level", "High")
 		host := "noconfigurationsnippet.foo.com"
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/configuration-snippet": `more_set_headers "Foo1: Bar1";`,
diff --git a/test/e2e/annotations/streamsnippet.go b/test/e2e/annotations/streamsnippet.go
index 432537b4a..f91cdc34e 100644
--- a/test/e2e/annotations/streamsnippet.go
+++ b/test/e2e/annotations/streamsnippet.go
@@ -39,14 +39,8 @@ var _ = framework.DescribeSetting("stream-snippet", func() {
 	})
 
 	ginkgo.It("should add value of stream-snippet to nginx config", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		host := "foo.com"
 
diff --git a/test/e2e/framework/exec.go b/test/e2e/framework/exec.go
index 580a8f58e..8d528c37a 100644
--- a/test/e2e/framework/exec.go
+++ b/test/e2e/framework/exec.go
@@ -117,11 +117,7 @@ func (f *Framework) newIngressController(namespace, namespaceOverlay string) err
 		isChroot = "false"
 	}
 
-	enableAnnotationValidations, ok := os.LookupEnv("ENABLE_VALIDATIONS")
-	if !ok {
-		enableAnnotationValidations = "false"
-	}
-	cmd := exec.Command("./wait-for-nginx.sh", namespace, namespaceOverlay, isChroot, enableAnnotationValidations)
+	cmd := exec.Command("./wait-for-nginx.sh", namespace, namespaceOverlay, isChroot)
 	out, err := cmd.CombinedOutput()
 	if err != nil {
 		return fmt.Errorf("unexpected error waiting for ingress controller deployment: %v.\nLogs:\n%v", err, string(out))
diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index b71d84baa..6e62a1df3 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -383,6 +383,20 @@ func (f *Framework) SetNginxConfigMapData(cmData map[string]string) {
 	f.WaitForReload(fn)
 }
 
+// SetNginxConfigMapData sets ingress-nginx's nginx-ingress-controller configMap data
+func (f *Framework) AllowSnippetConfiguration() func() {
+	f.SetNginxConfigMapData(map[string]string{
+		"allow-snippet-annotations": "true",
+		"annotations-risk-level":    "Critical", // To enable snippet configurations
+	})
+	return func() {
+		f.SetNginxConfigMapData(map[string]string{
+			"allow-snippet-annotations": "false",
+			"annotations-risk-level":    "High",
+		})
+	}
+}
+
 // CreateConfigMap creates a new configmap in the current namespace
 func (f *Framework) CreateConfigMap(name string, data map[string]string) {
 	_, err := f.KubeClientSet.CoreV1().ConfigMaps(f.Namespace).Create(context.TODO(), &v1.ConfigMap{
diff --git a/test/e2e/ingress/multiple_rules.go b/test/e2e/ingress/multiple_rules.go
index f44b2f8dd..9247dc1d3 100644
--- a/test/e2e/ingress/multiple_rules.go
+++ b/test/e2e/ingress/multiple_rules.go
@@ -36,14 +36,8 @@ var _ = framework.IngressNginxDescribe("single ingress - multiple hosts", func()
 	})
 
 	ginkgo.It("should set the correct $service_name NGINX variable", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/configuration-snippet": `more_set_input_headers "service-name: $service_name";`,
diff --git a/test/e2e/ingress/pathtype_exact.go b/test/e2e/ingress/pathtype_exact.go
index d0564cbf6..2660e32a4 100644
--- a/test/e2e/ingress/pathtype_exact.go
+++ b/test/e2e/ingress/pathtype_exact.go
@@ -35,14 +35,8 @@ var _ = framework.IngressNginxDescribe("[Ingress] [PathType] exact", func() {
 	})
 
 	ginkgo.It("should choose exact location for /exact", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		host := "exact.path"
 
diff --git a/test/e2e/ingress/pathtype_mixed.go b/test/e2e/ingress/pathtype_mixed.go
index e7bf2532e..3212089c9 100644
--- a/test/e2e/ingress/pathtype_mixed.go
+++ b/test/e2e/ingress/pathtype_mixed.go
@@ -37,14 +37,8 @@ var _ = framework.IngressNginxDescribe("[Ingress] [PathType] mix Exact and Prefi
 	exactPathType := networking.PathTypeExact
 
 	ginkgo.It("should choose the correct location", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		host := "mixed.path"
 
diff --git a/test/e2e/run-e2e-suite.sh b/test/e2e/run-e2e-suite.sh
index 9333ee61f..909368e96 100755
--- a/test/e2e/run-e2e-suite.sh
+++ b/test/e2e/run-e2e-suite.sh
@@ -78,7 +78,6 @@ kubectl run --rm \
   --env="E2E_NODES=${E2E_NODES}" \
   --env="FOCUS=${FOCUS}" \
   --env="IS_CHROOT=${IS_CHROOT:-false}"\
-  --env="ENABLE_VALIDATIONS=${ENABLE_VALIDATIONS:-false}"\
   --env="SKIP_OPENTELEMETRY_TESTS=${SKIP_OPENTELEMETRY_TESTS:-false}"\
   --env="E2E_CHECK_LEAKS=${E2E_CHECK_LEAKS}" \
   --env="NGINX_BASE_IMAGE=${NGINX_BASE_IMAGE}" \
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index ab2cb2dd7..9b4e82932 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -39,7 +39,6 @@ fi
 
 KIND_LOG_LEVEL="1"
 IS_CHROOT="${IS_CHROOT:-false}"
-ENABLE_VALIDATIONS="${ENABLE_VALIDATIONS:-false}"
 export KIND_CLUSTER_NAME=${KIND_CLUSTER_NAME:-ingress-nginx-dev}
 DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
 # Use 1.0.0-dev to make sure we use the latest configuration in the helm template
diff --git a/test/e2e/settings/badannotationvalues.go b/test/e2e/settings/badannotationvalues.go
index f61b5bada..aa9906909 100644
--- a/test/e2e/settings/badannotationvalues.go
+++ b/test/e2e/settings/badannotationvalues.go
@@ -34,14 +34,8 @@ var _ = framework.DescribeAnnotation("Bad annotation values", func() {
 	})
 
 	ginkgo.It("[BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 		host := "invalid-value-test"
 
 		annotations := map[string]string{
@@ -50,7 +44,6 @@ var _ = framework.DescribeAnnotation("Bad annotation values", func() {
 		}
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
-		f.UpdateNginxConfigMapData("allow-snippet-annotations", "true")
 		f.UpdateNginxConfigMapData("annotation-value-word-blocklist", "something_forbidden,otherthing_forbidden,{")
 
 		f.EnsureIngress(ing)
@@ -73,14 +66,8 @@ var _ = framework.DescribeAnnotation("Bad annotation values", func() {
 	})
 
 	ginkgo.It("[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		host := "forbidden-value-test"
 
@@ -93,7 +80,6 @@ var _ = framework.DescribeAnnotation("Bad annotation values", func() {
 		}
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
-		f.UpdateNginxConfigMapData("allow-snippet-annotations", "true")
 		f.UpdateNginxConfigMapData("annotation-value-word-blocklist", "something_forbidden,otherthing_forbidden,content_by_lua_block")
 		// Sleep a while just to guarantee that the configmap is applied
 		framework.Sleep()
@@ -117,14 +103,9 @@ var _ = framework.DescribeAnnotation("Bad annotation values", func() {
 	})
 
 	ginkgo.It("[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
+
 		hostValid := "custom-allowed-value-test"
 		annotationsValid := map[string]string{
 			"nginx.ingress.kubernetes.io/configuration-snippet": `
@@ -155,14 +136,8 @@ var _ = framework.DescribeAnnotation("Bad annotation values", func() {
 	})
 
 	ginkgo.It("[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 		host := "custom-forbidden-value-test"
 
 		annotations := map[string]string{
diff --git a/test/e2e/settings/geoip2.go b/test/e2e/settings/geoip2.go
index 064863734..9c6d59dc5 100644
--- a/test/e2e/settings/geoip2.go
+++ b/test/e2e/settings/geoip2.go
@@ -69,15 +69,9 @@ var _ = framework.DescribeSetting("Geoip2", func() {
 	ginkgo.It("should only allow requests from specific countries", func() {
 		ginkgo.Skip("GeoIP test are temporarily disabled")
 
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-			"use-geoip2":                "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
+		f.UpdateNginxConfigMapData("use-geoip2", "true")
 
 		httpSnippetAllowingOnlyAustralia := `map $geoip2_city_country_code $blocked_country {
   default 1;
diff --git a/test/e2e/settings/proxy_host.go b/test/e2e/settings/proxy_host.go
index 35aafc53d..3ce86127e 100644
--- a/test/e2e/settings/proxy_host.go
+++ b/test/e2e/settings/proxy_host.go
@@ -34,14 +34,9 @@ var _ = framework.IngressNginxDescribe("Dynamic $proxy_host", func() {
 	})
 
 	ginkgo.It("should exist a proxy_host", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
+
 		upstreamName := fmt.Sprintf("%v-%v-80", f.Namespace, framework.EchoService)
 		annotations := map[string]string{
 			"nginx.ingress.kubernetes.io/configuration-snippet": `more_set_headers "Custom-Header: $proxy_host"`,
@@ -65,10 +60,12 @@ var _ = framework.IngressNginxDescribe("Dynamic $proxy_host", func() {
 	ginkgo.It("should exist a proxy_host using the upstream-vhost annotation value", func() {
 		f.SetNginxConfigMapData(map[string]string{
 			"allow-snippet-annotations": "true",
+			"annotations-risk-level":    "Critical", // To allow Configuration Snippet
 		})
 		defer func() {
 			f.SetNginxConfigMapData(map[string]string{
 				"allow-snippet-annotations": "false",
+				"annotations-risk-level":    "High",
 			})
 		}()
 
diff --git a/test/e2e/settings/server_snippet.go b/test/e2e/settings/server_snippet.go
index 8ddf10fd9..1e2084bd8 100644
--- a/test/e2e/settings/server_snippet.go
+++ b/test/e2e/settings/server_snippet.go
@@ -38,6 +38,7 @@ var _ = framework.DescribeSetting("configmap server-snippet", func() {
 
 		f.SetNginxConfigMapData(map[string]string{
 			"allow-snippet-annotations": "true",
+			"annotations-risk-level":    "Critical",
 			"server-snippet": `
 			more_set_headers "Globalfoo: Foooo";`,
 		})
@@ -45,6 +46,7 @@ var _ = framework.DescribeSetting("configmap server-snippet", func() {
 		defer func() {
 			f.SetNginxConfigMapData(map[string]string{
 				"allow-snippet-annotations": "false",
+				"annotations-risk-level":    "High",
 			})
 		}()
 		annotations := map[string]string{
@@ -101,6 +103,7 @@ var _ = framework.DescribeSetting("configmap server-snippet", func() {
 
 		f.SetNginxConfigMapData(map[string]string{
 			"allow-snippet-annotations": "false",
+			"annotations-risk-level":    "Critical", // To allow Configuration Snippet
 			"server-snippet": `
 			more_set_headers "Globalfoo: Foooo";`,
 		})
@@ -108,6 +111,7 @@ var _ = framework.DescribeSetting("configmap server-snippet", func() {
 		defer func() {
 			f.SetNginxConfigMapData(map[string]string{
 				"allow-snippet-annotations": "false",
+				"annotations-risk-level":    "High",
 			})
 		}()
 		annotations := map[string]string{
diff --git a/test/e2e/settings/validations/validations.go b/test/e2e/settings/validations/validations.go
index ac95a453a..881de39b4 100644
--- a/test/e2e/settings/validations/validations.go
+++ b/test/e2e/settings/validations/validations.go
@@ -48,8 +48,8 @@ var _ = framework.IngressNginxDescribeSerial("annotation validations", func() {
 		framework.Sleep()
 
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/default-backend":       "default/bla", // low risk
-			"nginx.ingress.kubernetes.io/denylist-source-range": "1.1.1.1/32",  // medium risk
+			"nginx.ingress.kubernetes.io/default-backend":       "bla",        // low risk
+			"nginx.ingress.kubernetes.io/denylist-source-range": "1.1.1.1/32", // medium risk
 		}
 
 		ginkgo.By("allow ingress with low/medium risk annotations")
@@ -82,8 +82,8 @@ var _ = framework.IngressNginxDescribeSerial("annotation validations", func() {
 		framework.Sleep()
 
 		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/default-backend":       "default/bla", // low risk
-			"nginx.ingress.kubernetes.io/denylist-source-range": "1.1.1.1/32",  // medium risk
+			"nginx.ingress.kubernetes.io/default-backend":       "bla",        // low risk
+			"nginx.ingress.kubernetes.io/denylist-source-range": "1.1.1.1/32", // medium risk
 		}
 
 		ginkgo.By("allow ingress with low/medium risk annotations")
diff --git a/test/e2e/wait-for-nginx.sh b/test/e2e/wait-for-nginx.sh
index ac0584962..506c4e03f 100755
--- a/test/e2e/wait-for-nginx.sh
+++ b/test/e2e/wait-for-nginx.sh
@@ -24,7 +24,6 @@ DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
 export NAMESPACE=$1
 export NAMESPACE_OVERLAY=$2
 export IS_CHROOT=$3
-export ENABLE_VALIDATIONS=$4
 
 echo "deploying NGINX Ingress controller in namespace $NAMESPACE"
 
@@ -59,7 +58,7 @@ else
 # TODO: remove the need to use fullnameOverride
 fullnameOverride: nginx-ingress
 controller:
-  enableAnnotationValidations: ${ENABLE_VALIDATIONS}
+  enableAnnotationValidations: true
   image:
     repository: ingress-controller/controller
     chroot: ${IS_CHROOT}

From 1ea376a0eed973e3c1b861074d3332ab8e991002 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Fri, 23 Aug 2024 11:55:52 -0300
Subject: [PATCH 1410/1641] Replace deprecated queue method (#11853)

---
 internal/task/queue.go | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/internal/task/queue.go b/internal/task/queue.go
index f92f2a501..8753bed34 100644
--- a/internal/task/queue.go
+++ b/internal/task/queue.go
@@ -36,7 +36,7 @@ var keyFunc = cache.DeletionHandlingMetaNamespaceKeyFunc
 // which timestamp is older than the last successful get operation.
 type Queue struct {
 	// queue is the work queue the worker polls
-	queue workqueue.RateLimitingInterface
+	queue workqueue.TypedRateLimitingInterface[any]
 	// sync is called for each item in the queue
 	sync func(interface{}) error
 	// workerDone is closed when the worker exits
@@ -172,7 +172,7 @@ func NewTaskQueue(syncFn func(interface{}) error) *Queue {
 // NewCustomTaskQueue creates a new custom task queue with the given sync function.
 func NewCustomTaskQueue(syncFn func(interface{}) error, fn func(interface{}) (interface{}, error)) *Queue {
 	q := &Queue{
-		queue:      workqueue.NewRateLimitingQueue(workqueue.DefaultControllerRateLimiter()),
+		queue:      workqueue.NewTypedRateLimitingQueue(workqueue.DefaultTypedControllerRateLimiter[any]()),
 		sync:       syncFn,
 		workerDone: make(chan bool),
 		fn:         fn,

From ffee96c58c8e77df878ecba6acadb175ec37669e Mon Sep 17 00:00:00 2001
From: Sebastian Rabenhorst <4246554+rabenhorst@users.noreply.github.com>
Date: Fri, 23 Aug 2024 18:32:48 +0200
Subject: [PATCH 1411/1641] Add native histogram support for histogram metrics
 (#9971)

Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>
---
 cmd/dataplane/main.go                         |  2 +-
 cmd/nginx/main.go                             |  2 +-
 docs/user-guide/cli-arguments.md              |  2 +
 go.work.sum                                   | 71 +++++++++++++++++-
 internal/ingress/controller/controller.go     |  2 +
 internal/ingress/metric/collectors/socket.go  | 74 +++++++++++--------
 .../ingress/metric/collectors/socket_test.go  |  5 +-
 internal/ingress/metric/main.go               |  4 +-
 pkg/flags/flags.go                            |  4 +
 9 files changed, 128 insertions(+), 38 deletions(-)

diff --git a/cmd/dataplane/main.go b/cmd/dataplane/main.go
index 65f898df6..29a175a6f 100644
--- a/cmd/dataplane/main.go
+++ b/cmd/dataplane/main.go
@@ -66,7 +66,7 @@ func main() {
 	mc := metric.NewDummyCollector()
 	if conf.EnableMetrics {
 		// TODO: Ingress class is not a part of dataplane anymore
-		mc, err = metric.NewCollector(conf.MetricsPerHost, conf.ReportStatusClasses, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets, conf.ExcludeSocketMetrics)
+		mc, err = metric.NewCollector(conf.MetricsPerHost, conf.ReportStatusClasses, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets, conf.MetricsBucketFactor, conf.MetricsMaxBuckets, conf.ExcludeSocketMetrics)
 		if err != nil {
 			klog.Fatalf("Error creating prometheus collector:  %v", err)
 		}
diff --git a/cmd/nginx/main.go b/cmd/nginx/main.go
index 5ab54aa93..ea5acedc2 100644
--- a/cmd/nginx/main.go
+++ b/cmd/nginx/main.go
@@ -130,7 +130,7 @@ func main() {
 
 	mc := metric.NewDummyCollector()
 	if conf.EnableMetrics {
-		mc, err = metric.NewCollector(conf.MetricsPerHost, conf.ReportStatusClasses, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets, conf.ExcludeSocketMetrics)
+		mc, err = metric.NewCollector(conf.MetricsPerHost, conf.ReportStatusClasses, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets, conf.MetricsBucketFactor, conf.MetricsMaxBuckets, conf.ExcludeSocketMetrics)
 		if err != nil {
 			klog.Fatalf("Error creating prometheus collector:  %v", err)
 		}
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index 8ada854bf..018467dda 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -8,6 +8,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 |----------|-------------|
 | `--annotations-prefix`             | Prefix of the Ingress annotations specific to the NGINX controller. (default "nginx.ingress.kubernetes.io") |
 | `--apiserver-host`                 | Address of the Kubernetes API server. Takes the form "protocol://address:port". If not specified, it is assumed the program runs inside a Kubernetes cluster and local discovery is attempted. |
+| `--bucket-factor`                    | Bucket factor for native histograms. Value must be > 1 for enabling native histograms. (default 0) |
 | `--certificate-authority`          | Path to a cert file for the certificate authority. This certificate is used only when the flag --apiserver-host is specified. |
 | `--configmap`                      | Name of the ConfigMap containing custom global configurations for the controller. |
 | `--controller-class`                      | Ingress Class Controller value this Ingress satisfies. The class of an Ingress object is set using the field IngressClassName in Kubernetes clusters version v1.19.0 or higher. The .spec.controller value of the IngressClass referenced in an Ingress Object should be the same value specified here to make this object be watched. |
@@ -40,6 +41,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--internal-logger-address`        | Address to be used when binding internal syslogger. (default 127.0.0.1:11514) |
 | `--kubeconfig`                     | Path to a kubeconfig file containing authorization and API server information. |
 | `--length-buckets`                     | Set of buckets which will be used for prometheus histogram metrics such as RequestLength, ResponseLength. (default `[10, 20, 30, 40, 50, 60, 70, 80, 90, 100]`) |
+| `--max-buckets`                      | Maximum number of buckets for native histograms. (default 100) |
 | `--maxmind-edition-ids`            | Maxmind edition ids to download GeoLite2 Databases. (default "GeoLite2-City,GeoLite2-ASN") |
 | `--maxmind-retries-timeout`        | Maxmind downloading delay between 1st and 2nd attempt, 0s - do not retry to download if something went wrong. (default 0s) |
 | `--maxmind-retries-count`          | Number of attempts to download the GeoIP DB. (default 1) |
diff --git a/go.work.sum b/go.work.sum
index 3a38ab8ec..5a6fe2480 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -1,3 +1,4 @@
+cel.dev/expr v0.15.0 h1:O1jzfJCQBfL5BFoYktaxwIhuttaQPsVWerH9/EEKx0w=
 cel.dev/expr v0.15.0/go.mod h1:TRSuuV7DlVCE/uwv5QbAiW/v8l5O8C4eEPHeu7gf7Sg=
 cloud.google.com/go v0.110.2 h1:sdFPBr6xG9/wkBbfhmUz/JmZC7X6LavQgcrVINrKiVA=
 cloud.google.com/go v0.110.4/go.mod h1:+EYjdK8e5RME/VY/qLCAtuyALQ9q67dvuum8i+H5xsI=
@@ -123,6 +124,7 @@ cloud.google.com/go/cloudtasks v1.12.6/go.mod h1:b7c7fe4+TJsFZfDyzO51F7cjq7HLUlR
 cloud.google.com/go/compute v1.21.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
 cloud.google.com/go/compute v1.23.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
 cloud.google.com/go/compute v1.23.1/go.mod h1:CqB3xpmPKKt3OJpW2ndFIXnA9A4xAy/F3Xp1ixncW78=
+cloud.google.com/go/compute v1.23.3 h1:6sVlXXBmbd7jNX0Ipq0trII3e4n1/MsADLK6a+aiVlk=
 cloud.google.com/go/compute v1.23.3/go.mod h1:VCgBUoMnIVIR0CscqQiPJLAG25E3ZRZMzcFZeQ+h8CI=
 cloud.google.com/go/compute v1.24.0 h1:phWcR2eWzRJaL/kOiJwfFsPs4BaKq1j6vnpZrc1YlVg=
 cloud.google.com/go/compute v1.24.0/go.mod h1:kw1/T+h/+tK2LJK0wiPPx1intgdAM3j/g3hFDlscY40=
@@ -569,6 +571,8 @@ github.com/andybalholm/brotli v1.0.4 h1:V7DdXeJtZscaqfNuAdSRuRFzuiKlHSC/Zh3zl9qY
 github.com/antihax/optional v1.0.0 h1:xK2lYat7ZLaVVcIuj82J8kIro4V6kDe0AUDFboUCwcg=
 github.com/antlr/antlr4/runtime/Go/antlr/v4 v4.0.0-20230305170008-8188dc5388df h1:7RFfzj4SSt6nnvCPbCqijJi1nWCd+TqAT3bYCStRC18=
 github.com/antlr/antlr4/runtime/Go/antlr/v4 v4.0.0-20230305170008-8188dc5388df/go.mod h1:pSwJ0fSY5KhvocuWSx4fz3BA8OrA1bQn+K1Eli3BRwM=
+github.com/antlr4-go/antlr/v4 v4.13.0 h1:lxCg3LAv+EUK6t1i0y1V6/SLeUi0eKEKdhQAlS8TVTI=
+github.com/antlr4-go/antlr/v4 v4.13.0/go.mod h1:pfChB/xh/Unjila75QW7+VU4TSnWnnk9UTnmpPaOR2g=
 github.com/apache/arrow/go/v10 v10.0.1 h1:n9dERvixoC/1JjDmBcs9FPaEryoANa2sCgVFo6ez9cI=
 github.com/apache/arrow/go/v11 v11.0.0 h1:hqauxvFQxww+0mEU/2XHG6LT7eZternCZq+A5Yly2uM=
 github.com/apache/thrift v0.16.0 h1:qEy6UW60iVOlUy+b9ZR0d5WzUWYGOo4HfopoyBaNmoY=
@@ -583,6 +587,8 @@ github.com/bytedance/sonic v1.9.1 h1:6iJ6NqdoxCDr6mbY8h18oSO+cShGSMRGCEo7F2h0x8s
 github.com/bytedance/sonic v1.9.1/go.mod h1:i736AoUSYt75HyZLoJW9ERYxcy6eaN6h4BZXU064P/U=
 github.com/cenkalti/backoff/v4 v4.2.1 h1:y4OZtCnogmCPw98Zjyt5a6+QwPLGkiQsYW5oUqylYbM=
 github.com/cenkalti/backoff/v4 v4.2.1/go.mod h1:Y3VNntkOUPxTVeUxJ/G5vcM//AlwfmyYozVcomhLiZE=
+github.com/cenkalti/backoff/v4 v4.3.0 h1:MyRJ/UdXutAwSAT+s3wNd7MfTIcy71VQueUuFK343L8=
+github.com/cenkalti/backoff/v4 v4.3.0/go.mod h1:Y3VNntkOUPxTVeUxJ/G5vcM//AlwfmyYozVcomhLiZE=
 github.com/census-instrumentation/opencensus-proto v0.4.1 h1:iKLQ0xPNFxR/2hzXZMrBo8f1j86j5WHzznCCQxV/b8g=
 github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
 github.com/cespare/xxhash v1.1.0 h1:a6HrQnmkObjyL+Gs60czilIUGqrzKutQD6XZog3p+ko=
@@ -615,6 +621,7 @@ github.com/cncf/xds/go v0.0.0-20231109132714-523115ebc101/go.mod h1:eXthEFrGJvWH
 github.com/cncf/xds/go v0.0.0-20231128003011-0fa0005c9caa h1:jQCWAUqqlij9Pgj2i/PB79y4KOPYVyFYdROxgaCwdTQ=
 github.com/cncf/xds/go v0.0.0-20231128003011-0fa0005c9caa/go.mod h1:x/1Gn8zydmfq8dk6e9PdstVsDgu9RuyIIJqAaF//0IM=
 github.com/cncf/xds/go v0.0.0-20240318125728-8a4994d93e50/go.mod h1:5e1+Vvlzido69INQaVO6d87Qn543Xr6nooe9Kz7oBFM=
+github.com/cncf/xds/go v0.0.0-20240423153145-555b57ec207b h1:ga8SEFjZ60pxLcmhnThWgvH2wg8376yUJmPhEH4H3kw=
 github.com/cncf/xds/go v0.0.0-20240423153145-555b57ec207b/go.mod h1:W+zGtBO5Y1IgJhy4+A9GOqVhqLpfZi+vwmdNXUehLA8=
 github.com/containerd/console v1.0.3 h1:lIr7SlA5PxZyMV30bDW0MGbiOPXwc63yRuCP0ARubLw=
 github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
@@ -624,6 +631,7 @@ github.com/coreos/go-semver v0.3.1 h1:yi21YpKnrx1gt5R+la8n5WgS0kCrsPp33dmEyHReZr
 github.com/coreos/go-semver v0.3.1/go.mod h1:irMmmIw/7yzSRPWryHsK7EYSg09caPQL03VsM8rvUec=
 github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e h1:Wf6HqHfScWJN9/ZjdUKyjop4mf3Qdd+1TvvltAvM3m8=
 github.com/cpuguy83/go-md2man/v2 v2.0.3 h1:qMCsGGgs+MAzDFyp9LpAe1Lqy/fY/qCovCm0qnXZOBM=
+github.com/cpuguy83/go-md2man/v2 v2.0.4 h1:wfIWP927BUkWJb2NmU/kNDYIBTh/ziUX91+lVfRxZq4=
 github.com/docker/go-units v0.4.0 h1:3uh0PgVws3nIA0Q+MwDC8yjEPf9zjRfZZWXZYDct3Tw=
 github.com/docker/go-units v0.4.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
 github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815 h1:bWDMxwH3px2JBh6AyO7hdCn/PkvCZXii8TGj7sbtEbQ=
@@ -642,6 +650,7 @@ github.com/envoyproxy/protoc-gen-validate v1.0.4/go.mod h1:qys6tmnRsYrQqIhm2bvKZ
 github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/felixge/httpsnoop v1.0.3 h1:s/nj+GCswXYzN5v2DpNMuMQYe+0DDwt5WVCU6CWBdXk=
 github.com/felixge/httpsnoop v1.0.3/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
+github.com/felixge/httpsnoop v1.0.4 h1:NFTV2Zj1bL4mc9sqWACXbQFVBBg2W3GPvqp8/ESS2Wg=
 github.com/felixge/httpsnoop v1.0.4/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
 github.com/fogleman/gg v1.3.0 h1:/7zJX8F6AaYQc57WQCyN9cAIz+4bCJGO9B+dyW29am8=
 github.com/fxamacker/cbor/v2 v2.6.0 h1:sU6J2usfADwWlYDAFhZBQ6TnLFBHxgesMrQfQgk1tWA=
@@ -678,6 +687,7 @@ github.com/go-openapi/jsonpointer v0.19.6/go.mod h1:osyAmYz/mB/C3I+WsTTSgw1ONzaL
 github.com/go-openapi/jsonreference v0.20.1/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
 github.com/go-openapi/jsonreference v0.20.2/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
 github.com/go-openapi/swag v0.22.3/go.mod h1:UzaqsxGiab7freDnrUUra0MwWfN/q7tE4j+VcZ0yl14=
+github.com/go-openapi/swag v0.22.4/go.mod h1:UzaqsxGiab7freDnrUUra0MwWfN/q7tE4j+VcZ0yl14=
 github.com/go-openapi/swag v0.22.5/go.mod h1:Gl91UqO+btAM0plGGxHqJcQZ1ZTy6jbmridBTsDy8A0=
 github.com/go-openapi/swag v0.22.6/go.mod h1:Gl91UqO+btAM0plGGxHqJcQZ1ZTy6jbmridBTsDy8A0=
 github.com/go-pdf/fpdf v0.6.0 h1:MlgtGIfsdMEEQJr2le6b/HNr1ZlQwxyWr77r2aj2U/8=
@@ -703,6 +713,7 @@ github.com/golang/freetype v0.0.0-20170609003504-e2365dfdc4a0 h1:DACJavvAHhabrF0
 github.com/golang/glog v1.1.2/go.mod h1:zR+okUeTbrL6EL3xHUDxZuEtGv04p5shwip1+mL/rLQ=
 github.com/golang/glog v1.2.0 h1:uCdmnmatrKCgMBlM4rMuJZWOkPDqdbZPnrMXDY4gI68=
 github.com/golang/glog v1.2.0/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
+github.com/golang/glog v1.2.1 h1:OptwRhECazUx5ix5TTWC3EZhsZEHWcYWY4FQHTIubm4=
 github.com/golang/glog v1.2.1/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
 github.com/golang/mock v1.6.0 h1:ErTB+efbowRARo13NNdxyJji2egdxLGQhRaY+DUumQc=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
@@ -711,6 +722,8 @@ github.com/google/btree v1.0.1/go.mod h1:xXMiIv4Fb/0kKde4SpL7qlzvu5cMJDRkFDxJfI9
 github.com/google/cel-go v0.17.7/go.mod h1:HXZKzB0LXqer5lHHgfWAnlYwJaQBDKMjxjulNQzhwhY=
 github.com/google/cel-go v0.17.8 h1:j9m730pMZt1Fc4oKhCLUHfjj6527LuhYcYw0Rl8gqto=
 github.com/google/cel-go v0.17.8/go.mod h1:HXZKzB0LXqer5lHHgfWAnlYwJaQBDKMjxjulNQzhwhY=
+github.com/google/cel-go v0.20.1 h1:nDx9r8S3L4pE61eDdt8igGj8rf5kjYR3ILxWIpWNi84=
+github.com/google/cel-go v0.20.1/go.mod h1:kWcIzTsPX0zmQ+H3TirHstLLf9ep5QTsZBN9u4dOYLg=
 github.com/google/flatbuffers v2.0.8+incompatible h1:ivUb1cGomAB101ZM1T0nOiWz9pSrTMoa9+EiY7igmkM=
 github.com/google/go-pkcs11 v0.2.1-0.20230907215043-c6f79328ddf9/go.mod h1:6eQoGcuNJpa7jnd5pMGdkSaQpNDYvPlXWMcjXXThLlY=
 github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
@@ -718,6 +731,8 @@ github.com/google/martian v2.1.0+incompatible h1:/CP5g8u/VJHijgedC/Legn3BAbAaWPg
 github.com/google/martian/v3 v3.3.2 h1:IqNFLAmvJOgVlpdEBiQbDc2EwKW77amAycfTuWKdfvw=
 github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
+github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6/go.mod h1:kf6iHlnVGwgKolg33glAes7Yg/8iWP8ukqeldJSO7jw=
+github.com/google/pprof v0.0.0-20240525223248-4bfdf5a9a2af/go.mod h1:K1liHPHnj73Fdn/EKuT8nrFqBihUSKXoLYU0BuatOYo=
 github.com/google/renameio v0.1.0 h1:GOZbcHa3HfsPKPlmyPyN2KEohoMXOhdMbHrvbpl2QaA=
 github.com/google/s2a-go v0.1.4 h1:1kZ/sQM3srePvKs3tXAvQzo66XfcReoqFpIpIccE7Oc=
 github.com/google/s2a-go v0.1.7/go.mod h1:50CgR4k1jNlWBu4UfS4AcfhVe1r6pdZPygJ3R8F0Qdw=
@@ -743,6 +758,8 @@ github.com/grpc-ecosystem/grpc-gateway v1.16.0 h1:gmcG1KaJ57LophUzW0Hy8NmPhnMZb4
 github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
 github.com/grpc-ecosystem/grpc-gateway/v2 v2.16.0 h1:YBftPWNWd4WwGqtY2yeZL2ef8rHAxPBD8KFhJpmcqms=
 github.com/grpc-ecosystem/grpc-gateway/v2 v2.16.0/go.mod h1:YN5jB8ie0yfIUg6VvR9Kz84aCaG7AsGZnLjhHbUqwPg=
+github.com/grpc-ecosystem/grpc-gateway/v2 v2.20.0 h1:bkypFPDjIYGfCYD5mRBvpqxfYX1YCS1PXdKYWi8FsN0=
+github.com/grpc-ecosystem/grpc-gateway/v2 v2.20.0/go.mod h1:P+Lt/0by1T8bfcF3z737NnSbmxQAppXMRziHUxPOC8k=
 github.com/hashicorp/golang-lru v0.5.1 h1:0hERBMJE1eitiLkihrMvRVBYAkpHzc/J3QdDN+dAcgU=
 github.com/hpcloud/tail v1.0.0 h1:nfCOvKYfkgYP8hkirhJocXT2+zOD8yUNjXaWfTlyFKI=
 github.com/iancoleman/strcase v0.2.0 h1:05I4QRnGpI0m37iZQRuskXh+w77mr6Z41lwQzuHLwW0=
@@ -795,6 +812,8 @@ github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8 h1:AMFGa4R4MiIpsp
 github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3 h1:+n/aFZefKZp7spd8DFdX7uMikMLXX4oubIzJF4kv/wI=
 github.com/moby/spdystream v0.2.0 h1:cjW1zVyyoiM0T7b6UoySUFqzXMoqRckQtXwGPiBhOM8=
 github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
+github.com/moby/spdystream v0.4.0 h1:Vy79D6mHeJJjiPdFEL2yku1kl0chZpJfZcPpb16BRl8=
+github.com/moby/spdystream v0.4.0/go.mod h1:xBAYlnt/ay+11ShkdFKNAG7LsyK/tmNBVvVOwrfMgdI=
 github.com/mrunalp/fileutils v0.5.1 h1:F+S7ZlNKnrwHfSwdlgNSkKo67ReVf8o9fel6C3dkm/Q=
 github.com/mrunalp/fileutils v0.5.1/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
 github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
@@ -871,8 +890,6 @@ github.com/vishvananda/netlink v1.1.0 h1:1iyaYNBLmP6L0220aDnYQpo1QEV4t4hJ+xEEhhJ
 github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
 github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df h1:OviZH7qLw/7ZovXvuNyL3XQl8UFofeikI1NW1Gypu7k=
 github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
-github.com/x448/float16 v0.8.4 h1:qLwI1I70+NjRFUR3zs1JPUCgaCXSh3SW62uAKT1mSBM=
-github.com/x448/float16 v0.8.4/go.mod h1:14CWIYCyZA/cWjXOioeEpHeN/83MdbZDRQHoFcYsOfg=
 github.com/xhit/go-str2duration v1.2.0 h1:BcV5u025cITWxEQKGWr1URRzrcXtu7uk8+luz3Yuhwc=
 github.com/xhit/go-str2duration/v2 v2.1.0 h1:lxklc02Drh6ynqX+DdPyp5pCKLUQpRT8bp8Ydu2Bstc=
 github.com/xhit/go-str2duration/v2 v2.1.0/go.mod h1:ohY8p+0f07DiV6Em5LKB0s2YpLtXVyJfNt1+BlmyAsU=
@@ -883,50 +900,84 @@ github.com/zeebo/assert v1.3.0 h1:g7C04CbJuIDKNPFHmsk4hwZDO5O+kntRxzaUoNXj+IQ=
 github.com/zeebo/xxh3 v1.0.2 h1:xZmwmqxHZA8AI603jOQ0tMqmBr9lPeFwGg6d+xy9DC0=
 go.etcd.io/bbolt v1.3.8 h1:xs88BrvEv273UsB79e0hcVrlUWmS0a8upikMFhSyAtA=
 go.etcd.io/bbolt v1.3.8/go.mod h1:N9Mkw9X8x5fupy0IKsmuqVtoGDyxsaDlbk4Rd05IAQw=
+go.etcd.io/bbolt v1.3.9 h1:8x7aARPEXiXbHmtUwAIv7eV2fQFHrLLavdiJ3uzJXoI=
+go.etcd.io/bbolt v1.3.9/go.mod h1:zaO32+Ti0PK1ivdPtgMESzuzL2VPoIG1PCQNvOdo/dE=
 go.etcd.io/etcd/api/v3 v3.5.10 h1:szRajuUUbLyppkhs9K6BRtjY37l66XQQmw7oZRANE4k=
 go.etcd.io/etcd/api/v3 v3.5.10/go.mod h1:TidfmT4Uycad3NM/o25fG3J07odo4GBB9hoxaodFCtI=
+go.etcd.io/etcd/api/v3 v3.5.14 h1:vHObSCxyB9zlF60w7qzAdTcGaglbJOpSj1Xj9+WGxq0=
+go.etcd.io/etcd/api/v3 v3.5.14/go.mod h1:BmtWcRlQvwa1h3G2jvKYwIQy4PkHlDej5t7uLMUdJUU=
 go.etcd.io/etcd/client/pkg/v3 v3.5.10 h1:kfYIdQftBnbAq8pUWFXfpuuxFSKzlmM5cSn76JByiT0=
 go.etcd.io/etcd/client/pkg/v3 v3.5.10/go.mod h1:DYivfIviIuQ8+/lCq4vcxuseg2P2XbHygkKwFo9fc8U=
+go.etcd.io/etcd/client/pkg/v3 v3.5.14 h1:SaNH6Y+rVEdxfpA2Jr5wkEvN6Zykme5+YnbCkxvuWxQ=
+go.etcd.io/etcd/client/pkg/v3 v3.5.14/go.mod h1:8uMgAokyG1czCtIdsq+AGyYQMvpIKnSvPjFMunkgeZI=
 go.etcd.io/etcd/client/v2 v2.305.10 h1:MrmRktzv/XF8CvtQt+P6wLUlURaNpSDJHFZhe//2QE4=
 go.etcd.io/etcd/client/v2 v2.305.10/go.mod h1:m3CKZi69HzilhVqtPDcjhSGp+kA1OmbNn0qamH80xjA=
+go.etcd.io/etcd/client/v2 v2.305.13 h1:RWfV1SX5jTU0lbCvpVQe3iPQeAHETWdOTb6pxhd77C8=
+go.etcd.io/etcd/client/v2 v2.305.13/go.mod h1:iQnL7fepbiomdXMb3om1rHq96htNNGv2sJkEcZGDRRg=
 go.etcd.io/etcd/client/v3 v3.5.10 h1:W9TXNZ+oB3MCd/8UjxHTWK5J9Nquw9fQBLJd5ne5/Ao=
 go.etcd.io/etcd/client/v3 v3.5.10/go.mod h1:RVeBnDz2PUEZqTpgqwAtUd8nAPf5kjyFyND7P1VkOKc=
+go.etcd.io/etcd/client/v3 v3.5.14 h1:CWfRs4FDaDoSz81giL7zPpZH2Z35tbOrAJkkjMqOupg=
+go.etcd.io/etcd/client/v3 v3.5.14/go.mod h1:k3XfdV/VIHy/97rqWjoUzrj9tk7GgJGH9J8L4dNXmAk=
 go.etcd.io/etcd/pkg/v3 v3.5.10 h1:WPR8K0e9kWl1gAhB5A7gEa5ZBTNkT9NdNWrR8Qpo1CM=
 go.etcd.io/etcd/pkg/v3 v3.5.10/go.mod h1:TKTuCKKcF1zxmfKWDkfz5qqYaE3JncKKZPFf8c1nFUs=
+go.etcd.io/etcd/pkg/v3 v3.5.13 h1:st9bDWNsKkBNpP4PR1MvM/9NqUPfvYZx/YXegsYEH8M=
+go.etcd.io/etcd/pkg/v3 v3.5.13/go.mod h1:N+4PLrp7agI/Viy+dUYpX7iRtSPvKq+w8Y14d1vX+m0=
 go.etcd.io/etcd/raft/v3 v3.5.10 h1:cgNAYe7xrsrn/5kXMSaH8kM/Ky8mAdMqGOxyYwpP0LA=
 go.etcd.io/etcd/raft/v3 v3.5.10/go.mod h1:odD6kr8XQXTy9oQnyMPBOr0TVe+gT0neQhElQ6jbGRc=
+go.etcd.io/etcd/raft/v3 v3.5.13 h1:7r/NKAOups1YnKcfro2RvGGo2PTuizF/xh26Z2CTAzA=
+go.etcd.io/etcd/raft/v3 v3.5.13/go.mod h1:uUFibGLn2Ksm2URMxN1fICGhk8Wu96EfDQyuLhAcAmw=
 go.etcd.io/etcd/server/v3 v3.5.10 h1:4NOGyOwD5sUZ22PiWYKmfxqoeh72z6EhYjNosKGLmZg=
 go.etcd.io/etcd/server/v3 v3.5.10/go.mod h1:gBplPHfs6YI0L+RpGkTQO7buDbHv5HJGG/Bst0/zIPo=
+go.etcd.io/etcd/server/v3 v3.5.13 h1:V6KG+yMfMSqWt+lGnhFpP5z5dRUj1BDRJ5k1fQ9DFok=
+go.etcd.io/etcd/server/v3 v3.5.13/go.mod h1:K/8nbsGupHqmr5MkgaZpLlH1QdX1pcNQLAkODy44XcQ=
 go.opencensus.io v0.24.0 h1:y73uSU6J157QMP2kn2r30vwW1A2W2WFwSCGnAVxeaD0=
 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.42.0 h1:ZOLJc06r4CB42laIXg/7udr0pbZyuAihN10A/XuiQRY=
 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.42.0/go.mod h1:5z+/ZWJQKXa9YT34fQNx5K8Hd1EoIhvtUygUQPqEOgQ=
 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.46.1/go.mod h1:4UoMYEZOC0yN/sPGH76KPkkU7zgiEWYWL9vwmbnTJPE=
 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.47.0/go.mod h1:r9vWsPS/3AQItv3OSlEJ/E4mbrhUbbw18meOjArPtKQ=
+go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.53.0 h1:9G6E0TXzGFVfTnawRzrPl83iHOAV7L8NJiR8RSGYV1g=
+go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.53.0/go.mod h1:azvtTADFQJA8mX80jIH/akaE7h+dbm/sVuaHqN13w74=
 go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.44.0 h1:KfYpVmrjI7JuToy5k8XV3nkapjWx48k4E4JOtVstzQI=
 go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.44.0/go.mod h1:SeQhzAEccGVZVEy7aH87Nh0km+utSpo1pTv6eMMop48=
 go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.46.1/go.mod h1:sEGXWArGqc3tVa+ekntsN65DmVbVeW+7lTKTjZF3/Fo=
 go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.47.0/go.mod h1:SK2UL73Zy1quvRPonmOmRDiWk1KBV3LyIeeIxcEApWw=
+go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.53.0 h1:4K4tsIXefpVJtvA/8srF4V4y0akAoPHkIslgAkjixJA=
+go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.53.0/go.mod h1:jjdQuTGVsXV4vSs+CJ2qYDeDPf9yIJV23qlIzBm73Vg=
 go.opentelemetry.io/otel v1.19.0 h1:MuS/TNf4/j4IXsZuJegVzI1cwut7Qc00344rgH7p8bs=
 go.opentelemetry.io/otel v1.19.0/go.mod h1:i0QyjOq3UPoTzff0PJB2N66fb4S0+rSbSB15/oyH9fY=
 go.opentelemetry.io/otel v1.21.0/go.mod h1:QZzNPQPm1zLX4gZK4cMi+71eaorMSGT3A4znnUvNNEo=
 go.opentelemetry.io/otel v1.22.0/go.mod h1:eoV4iAi3Ea8LkAEI9+GFT44O6T/D0GWAVFyZVCC6pMI=
+go.opentelemetry.io/otel v1.28.0 h1:/SqNcYk+idO0CxKEUOtKQClMK/MimZihKYMruSMViUo=
+go.opentelemetry.io/otel v1.28.0/go.mod h1:q68ijF8Fc8CnMHKyzqL6akLO46ePnjkgfIMIjUIX9z4=
 go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.19.0 h1:Mne5On7VWdx7omSrSSZvM4Kw7cS7NQkOOmLcgscI51U=
 go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.19.0/go.mod h1:IPtUMKL4O3tH5y+iXVyAXqpAwMuzC1IrxVS81rummfE=
+go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.28.0 h1:3Q/xZUyC1BBkualc9ROb4G8qkH90LXEIICcs5zv1OYY=
+go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.28.0/go.mod h1:s75jGIWA9OfCMzF0xr+ZgfrB5FEbbV7UuYo32ahUiFI=
 go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.19.0 h1:3d+S281UTjM+AbF31XSOYn1qXn3BgIdWl8HNEpx08Jk=
 go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.19.0/go.mod h1:0+KuTDyKL4gjKCF75pHOX4wuzYDUZYfAQdSu43o+Z2I=
+go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.27.0 h1:qFffATk0X+HD+f1Z8lswGiOQYKHRlzfmdJm0wEaVrFA=
+go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.27.0/go.mod h1:MOiCmryaYtc+V0Ei+Tx9o5S1ZjA7kzLucuVuyzBZloQ=
 go.opentelemetry.io/otel/metric v1.19.0 h1:aTzpGtV0ar9wlV4Sna9sdJyII5jTVJEvKETPiOKwvpE=
 go.opentelemetry.io/otel/metric v1.19.0/go.mod h1:L5rUsV9kM1IxCj1MmSdS+JQAcVm319EUrDVLrt7jqt8=
 go.opentelemetry.io/otel/metric v1.21.0/go.mod h1:o1p3CA8nNHW8j5yuQLdc1eeqEaPfzug24uvsyIEJRWM=
 go.opentelemetry.io/otel/metric v1.22.0/go.mod h1:evJGjVpZv0mQ5QBRJoBF64yMuOf4xCWdXjK8pzFvliY=
+go.opentelemetry.io/otel/metric v1.28.0 h1:f0HGvSl1KRAU1DLgLGFjrwVyismPlnuU6JD6bOeuA5Q=
+go.opentelemetry.io/otel/metric v1.28.0/go.mod h1:Fb1eVBFZmLVTMb6PPohq3TO9IIhUisDsbJoL/+uQW4s=
 go.opentelemetry.io/otel/sdk v1.19.0 h1:6USY6zH+L8uMH8L3t1enZPR3WFEmSTADlqldyHtJi3o=
 go.opentelemetry.io/otel/sdk v1.19.0/go.mod h1:NedEbbS4w3C6zElbLdPJKOpJQOrGUJ+GfzpjUvI0v1A=
 go.opentelemetry.io/otel/sdk v1.21.0/go.mod h1:Nna6Yv7PWTdgJHVRD9hIYywQBRx7pbox6nwBnZIxl/E=
+go.opentelemetry.io/otel/sdk v1.28.0 h1:b9d7hIry8yZsgtbmM0DKyPWMMUMlK9NEKuIG4aBqWyE=
+go.opentelemetry.io/otel/sdk v1.28.0/go.mod h1:oYj7ClPUA7Iw3m+r7GeEjz0qckQRJK2B8zjcZEfu7Pg=
 go.opentelemetry.io/otel/trace v1.19.0 h1:DFVQmlVbfVeOuBRrwdtaehRrWiL1JoVs9CPIQ1Dzxpg=
 go.opentelemetry.io/otel/trace v1.19.0/go.mod h1:mfaSyvGyEJEI0nyV2I4qhNQnbBOUUmYZpYojqMnX2vo=
 go.opentelemetry.io/otel/trace v1.21.0/go.mod h1:LGbsEB0f9LGjN+OZaQQ26sohbOmiMR+BaslueVtS/qQ=
 go.opentelemetry.io/otel/trace v1.22.0/go.mod h1:RbbHXVqKES9QhzZq/fE5UnOSILqRt40a21sPw2He1xo=
+go.opentelemetry.io/otel/trace v1.28.0 h1:GhQ9cUuQGmNDd5BTCP2dAvv75RdMxEfTmYejp+lkx9g=
+go.opentelemetry.io/otel/trace v1.28.0/go.mod h1:jPyXzNPg6da9+38HEwElrQiHlVMTnVfM3/yv2OlIHaI=
 go.opentelemetry.io/proto/otlp v1.0.0 h1:T0TX0tmXU8a3CbNXzEKGeU5mIVOdf0oykP+u2lIVU/I=
 go.opentelemetry.io/proto/otlp v1.0.0/go.mod h1:Sy6pihPLfYHkr3NkUbEhGHFhINUSI/v80hjKIs5JXpM=
+go.opentelemetry.io/proto/otlp v1.3.1 h1:TrMUixzpM0yuc/znrFTP9MMRh8trP93mkCiDVeXrui0=
+go.opentelemetry.io/proto/otlp v1.3.1/go.mod h1:0X1WI4de4ZsLrrJNLAQbFeLCm3T7yBkR0XqQ7niQU+8=
 go.uber.org/atomic v1.10.0 h1:9qC72Qh0+3MqyJbAn8YU5xVq1frD8bn3JtD2oXtafVQ=
 go.uber.org/atomic v1.10.0/go.mod h1:LUxbIzbOniOlMKjJjyPfpl4v+PKK2cNJn91OQbhoJI0=
 go.uber.org/goleak v1.2.0/go.mod h1:XJYK+MuIchqpmGmUSAzotztawfKvYLUIgg7guXrwVUo=
@@ -944,6 +995,7 @@ golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028 h1:4+4C/Iv2U4fMZBiMCc98MG
 golang.org/x/mod v0.9.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/mod v0.12.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
 golang.org/x/mod v0.14.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
+golang.org/x/mod v0.17.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
 golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
 golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
 golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
@@ -951,6 +1003,8 @@ golang.org/x/net v0.18.0/go.mod h1:/czyP5RqHAH4odGYxBJ1qz0+CE5WZ+2j1YgoEo8F2jQ=
 golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
 golang.org/x/net v0.23.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
 golang.org/x/net v0.24.0/go.mod h1:2Q7sJY5mzlzWjKtYUEXSlBWCdyaioyXzRB2RtU8KVE8=
+golang.org/x/net v0.26.0/go.mod h1:5YKkiSynbBIh3p6iOc/vibscux0x38BZDkn8sCUPxHE=
+golang.org/x/net v0.27.0/go.mod h1:dDi0PyhWNoiUOrAS8uXv/vnScO4wnHQO4mj9fn/RytE=
 golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI=
 golang.org/x/oauth2 v0.11.0/go.mod h1:LdF7O/8bLR/qWK9DrpXmbHLTouvRHK0SgJl0GmDBchk=
 golang.org/x/oauth2 v0.13.0/go.mod h1:/JMhi4ZRXAf4HG9LiNmxvk+45+96RUlVThiH8FzNBn0=
@@ -958,18 +1012,24 @@ golang.org/x/oauth2 v0.14.0/go.mod h1:lAtNWgaWfL4cm7j2OV8TxGi9Qb7ECORx8DktCY74Ow
 golang.org/x/oauth2 v0.15.0/go.mod h1:q48ptWNTY5XWf+JNten23lcvHpLJ0ZSxF5ttTHKVCAM=
 golang.org/x/oauth2 v0.17.0/go.mod h1:OzPDGQiuQMguemayvdylqddI7qcD9lnSDb+1FiwQ5HA=
 golang.org/x/sync v0.4.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
+golang.org/x/sync v0.7.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.19.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.21.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.22.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/telemetry v0.0.0-20240208230135-b75ee8823808/go.mod h1:KG1lNk5ZFNssSZLrpVb4sMXKMpGwGXOxSG3rnu2gZQQ=
 golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2 h1:IRJeR9r1pYWsHKTRe/IInb7lYvbBVIqOgsX/u0mbOWY=
 golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2/go.mod h1:TeRTkGYfJXctD9OcfyVLyj2J3IxLnKwHJR8f4D8a3YE=
+golang.org/x/telemetry v0.0.0-20240521205824-bda55230c457 h1:zf5N6UOrA487eEFacMePxjXAJctxKmyjKUsjA11Uzuk=
+golang.org/x/telemetry v0.0.0-20240521205824-bda55230c457/go.mod h1:pRgIJT+bRLFKnoM1ldnzKoxTIn14Yxz928LQRYYgIN0=
 golang.org/x/term v0.18.0/go.mod h1:ILwASektA3OnRv7amZ1xhE/KTR+u50pbXfZ03+6Nx58=
 golang.org/x/term v0.21.0/go.mod h1:ooXLefLobQVslOqselCNF4SxFAaoS6KujMbsGzSDmX0=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.12.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
+golang.org/x/text v0.16.0/go.mod h1:GhwF1Be+LQoKShO3cGOHzqOgRrGaYc9AvblQOmPVHnI=
 golang.org/x/time v0.3.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
 golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM=
@@ -977,6 +1037,8 @@ golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58
 golang.org/x/tools v0.16.1/go.mod h1:kYVVN6I1mBNoB1OX+noeBjbRk4IUEPa7JJ+TJMEooJ0=
 golang.org/x/tools v0.18.0/go.mod h1:GL7B4CwcLLeo59yx/9UWWuNOW1n3VZ4f5axWfML7Lcg=
 golang.org/x/tools v0.20.0/go.mod h1:WvitBU7JJf6A4jOdg4S1tviW9bhUxkgeCui/0JHctQg=
+golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk=
+golang.org/x/tools v0.23.0/go.mod h1:pnu6ufv6vQkll6szChhK3C3L/ruaIv5eBeztNG8wtsI=
 golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2 h1:H2TDz8ibqkAF6YGhCdN3jS9O0/s90v0rJh3X/OLHEUk=
 golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
 golang.org/x/xerrors v0.0.0-20231012003039-104605ab7028/go.mod h1:NDW/Ps6MPRej6fsCIbMTohpP40sJ/P/vI1MoTEGwX90=
@@ -1022,6 +1084,7 @@ google.golang.org/genproto/googleapis/api v0.0.0-20240213162025-012b6fc9bca9/go.
 google.golang.org/genproto/googleapis/api v0.0.0-20240227224415-6ceb2ff114de h1:jFNzHPIeuzhdRwVhbZdiym9q0ory/xY3sA+v2wPg8I0=
 google.golang.org/genproto/googleapis/api v0.0.0-20240227224415-6ceb2ff114de/go.mod h1:5iCWqnniDlqZHrd3neWVTOwvh/v6s3232omMecelax8=
 google.golang.org/genproto/googleapis/api v0.0.0-20240318140521-94a12d6c2237/go.mod h1:Z5Iiy3jtmioajWHDGFk7CeugTyHtPvMHA4UTmUkyalE=
+google.golang.org/genproto/googleapis/api v0.0.0-20240528184218-531527333157 h1:7whR9kGa5LUwFtpLm2ArCEejtnxlGeLbAyjFY8sGNFw=
 google.golang.org/genproto/googleapis/api v0.0.0-20240528184218-531527333157/go.mod h1:99sLkeliLXfdj2J75X3Ho+rrVCaJze0uwN7zDDkjPVU=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc h1:g3hIDl0jRNd9PPTs2uBzYuaD5mQuwOkZY0vSc0LR32o=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231030173426-d783a09b4405/go.mod h1:GRUCuLdzVqZte8+Dl/D4N25yLzcGqqWaYkeVOwulFqw=
@@ -1064,6 +1127,8 @@ k8s.io/kms v0.29.3/go.mod h1:TBGbJKpRUMk59neTMDMddjIDL+D4HuFUbpuiuzmOPg0=
 k8s.io/kms v0.30.0 h1:ZlnD/ei5lpvUlPw6eLfVvH7d8i9qZ6HwUQgydNVks8g=
 k8s.io/kms v0.30.0/go.mod h1:GrMurD0qk3G4yNgGcsCEmepqf9KyyIrTXYR2lyUOJC4=
 k8s.io/kms v0.30.1/go.mod h1:GrMurD0qk3G4yNgGcsCEmepqf9KyyIrTXYR2lyUOJC4=
+k8s.io/kms v0.31.0 h1:KchILPfB1ZE+ka7223mpU5zeFNkmb45jl7RHnlImUaI=
+k8s.io/kms v0.31.0/go.mod h1:OZKwl1fan3n3N5FFxnW5C4V3ygrah/3YXeJWS3O6+94=
 k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340/go.mod h1:yD4MZYeKMBwQKVht279WycxKyM84kkAx2DPrTXaeb98=
 k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
 k8s.io/utils v0.0.0-20230726121419-3b25d923346b/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
@@ -1088,6 +1153,8 @@ rsc.io/sampler v1.3.0 h1:7uVkIFmeBqHfdjD+gZwtXXI+RODJ2Wc4O7MPEh/QiW4=
 sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.28.0/go.mod h1:VHVDI/KrK4fjnV61bE2g3sA7tiETLn8sooImelsCx3Y=
 sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.29.0 h1:/U5vjBbQn3RChhv7P11uhYvCSm5G2GaIi5AIGBS6r4c=
 sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.29.0/go.mod h1:z7+wmGM2dfIiLRfrC6jb5kV2Mq/sK1ZP303cxzkV5Y4=
+sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.30.3 h1:2770sDpzrjjsAtVhSeUFseziht227YAWYHLGNM8QPwY=
+sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.30.3/go.mod h1:Ve9uj1L+deCXFrPOk1LpFXqTg7LCFzFso6PA48q/XZw=
 sigs.k8s.io/structured-merge-diff/v4 v4.2.3/go.mod h1:qjx8mGObPmV2aSZepjQjbmb2ihdVs8cGKBraizNC69E=
 sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=
 sigs.k8s.io/yaml v1.3.0/go.mod h1:GeOyir5tyXNByN85N/dRIT9es5UQNerPYEKK56eTBm8=
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 9250ded08..568edc483 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -108,6 +108,8 @@ type Configuration struct {
 	EnableMetrics        bool
 	MetricsPerHost       bool
 	MetricsBuckets       *collectors.HistogramBuckets
+	MetricsBucketFactor  float64
+	MetricsMaxBuckets    uint32
 	ReportStatusClasses  bool
 	ExcludeSocketMetrics []string
 
diff --git a/internal/ingress/metric/collectors/socket.go b/internal/ingress/metric/collectors/socket.go
index 863bbb62e..d0b57eb43 100644
--- a/internal/ingress/metric/collectors/socket.go
+++ b/internal/ingress/metric/collectors/socket.go
@@ -99,7 +99,7 @@ var requestTags = []string{
 
 // NewSocketCollector creates a new SocketCollector instance using
 // the ingress watch namespace and class used by the controller
-func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStatusClasses bool, buckets HistogramBuckets, excludeMetrics []string) (*SocketCollector, error) {
+func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStatusClasses bool, buckets HistogramBuckets, bucketFactor float64, maxBuckets uint32, excludeMetrics []string) (*SocketCollector, error) {
 	socket := "/tmp/nginx/prometheus-nginx.socket"
 	// unix sockets must be unlink()ed before being used
 	//nolint:errcheck // Ignore unlink error
@@ -144,11 +144,13 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 
 		connectTime: histogramMetric(
 			&prometheus.HistogramOpts{
-				Name:        "connect_duration_seconds",
-				Help:        "The time spent on establishing a connection with the upstream server",
-				Namespace:   PrometheusNamespace,
-				ConstLabels: constLabels,
-				Buckets:     buckets.TimeBuckets,
+				Name:                           "connect_duration_seconds",
+				Help:                           "The time spent on establishing a connection with the upstream server",
+				Namespace:                      PrometheusNamespace,
+				ConstLabels:                    constLabels,
+				Buckets:                        buckets.TimeBuckets,
+				NativeHistogramBucketFactor:    bucketFactor,
+				NativeHistogramMaxBucketNumber: maxBuckets,
 			},
 			requestTags,
 			em,
@@ -157,11 +159,13 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 
 		headerTime: histogramMetric(
 			&prometheus.HistogramOpts{
-				Name:        "header_duration_seconds",
-				Help:        "The time spent on receiving first header from the upstream server",
-				Namespace:   PrometheusNamespace,
-				ConstLabels: constLabels,
-				Buckets:     buckets.TimeBuckets,
+				Name:                           "header_duration_seconds",
+				Help:                           "The time spent on receiving first header from the upstream server",
+				Namespace:                      PrometheusNamespace,
+				ConstLabels:                    constLabels,
+				Buckets:                        buckets.TimeBuckets,
+				NativeHistogramBucketFactor:    bucketFactor,
+				NativeHistogramMaxBucketNumber: maxBuckets,
 			},
 			requestTags,
 			em,
@@ -169,11 +173,13 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 		),
 		responseTime: histogramMetric(
 			&prometheus.HistogramOpts{
-				Name:        "response_duration_seconds",
-				Help:        "The time spent on receiving the response from the upstream server",
-				Namespace:   PrometheusNamespace,
-				ConstLabels: constLabels,
-				Buckets:     buckets.TimeBuckets,
+				Name:                           "response_duration_seconds",
+				Help:                           "The time spent on receiving the response from the upstream server",
+				Namespace:                      PrometheusNamespace,
+				ConstLabels:                    constLabels,
+				Buckets:                        buckets.TimeBuckets,
+				NativeHistogramBucketFactor:    bucketFactor,
+				NativeHistogramMaxBucketNumber: maxBuckets,
 			},
 			requestTags,
 			em,
@@ -182,11 +188,13 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 
 		requestTime: histogramMetric(
 			&prometheus.HistogramOpts{
-				Name:        "request_duration_seconds",
-				Help:        "The request processing time in milliseconds",
-				Namespace:   PrometheusNamespace,
-				ConstLabels: constLabels,
-				Buckets:     buckets.TimeBuckets,
+				Name:                           "request_duration_seconds",
+				Help:                           "The request processing time in milliseconds",
+				Namespace:                      PrometheusNamespace,
+				ConstLabels:                    constLabels,
+				Buckets:                        buckets.TimeBuckets,
+				NativeHistogramBucketFactor:    bucketFactor,
+				NativeHistogramMaxBucketNumber: maxBuckets,
 			},
 			requestTags,
 			em,
@@ -195,11 +203,13 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 
 		responseLength: histogramMetric(
 			&prometheus.HistogramOpts{
-				Name:        "response_size",
-				Help:        "The response length (including request line, header, and request body)",
-				Namespace:   PrometheusNamespace,
-				ConstLabels: constLabels,
-				Buckets:     buckets.LengthBuckets,
+				Name:                           "response_size",
+				Help:                           "The response length (including request line, header, and request body)",
+				Namespace:                      PrometheusNamespace,
+				ConstLabels:                    constLabels,
+				Buckets:                        buckets.LengthBuckets,
+				NativeHistogramBucketFactor:    bucketFactor,
+				NativeHistogramMaxBucketNumber: maxBuckets,
 			},
 			requestTags,
 			em,
@@ -208,11 +218,13 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 
 		requestLength: histogramMetric(
 			&prometheus.HistogramOpts{
-				Name:        "request_size",
-				Help:        "The request length (including request line, header, and request body)",
-				Namespace:   PrometheusNamespace,
-				ConstLabels: constLabels,
-				Buckets:     buckets.LengthBuckets,
+				Name:                           "request_size",
+				Help:                           "The request length (including request line, header, and request body)",
+				Namespace:                      PrometheusNamespace,
+				ConstLabels:                    constLabels,
+				Buckets:                        buckets.LengthBuckets,
+				NativeHistogramBucketFactor:    bucketFactor,
+				NativeHistogramMaxBucketNumber: maxBuckets,
 			},
 			requestTags,
 			em,
diff --git a/internal/ingress/metric/collectors/socket_test.go b/internal/ingress/metric/collectors/socket_test.go
index 2113b4725..a8261a9ca 100644
--- a/internal/ingress/metric/collectors/socket_test.go
+++ b/internal/ingress/metric/collectors/socket_test.go
@@ -83,6 +83,9 @@ func TestCollector(t *testing.T) {
 		prometheus.ExponentialBuckets(10, 10, 7),
 	}
 
+	bucketFactor := 1.1
+	maxBuckets := uint32(100)
+
 	cases := []struct {
 		name             string
 		data             []string
@@ -594,7 +597,7 @@ func TestCollector(t *testing.T) {
 		t.Run(c.name, func(t *testing.T) {
 			registry := prometheus.NewPedanticRegistry()
 
-			sc, err := NewSocketCollector("pod", "default", "ingress", true, c.useStatusClasses, buckets, c.excludeMetrics)
+			sc, err := NewSocketCollector("pod", "default", "ingress", true, c.useStatusClasses, buckets, bucketFactor, maxBuckets, c.excludeMetrics)
 			if err != nil {
 				t.Errorf("%v: unexpected error creating new SocketCollector: %v", c.name, err)
 			}
diff --git a/internal/ingress/metric/main.go b/internal/ingress/metric/main.go
index 93c31622c..99128c3c6 100644
--- a/internal/ingress/metric/main.go
+++ b/internal/ingress/metric/main.go
@@ -71,7 +71,7 @@ type collector struct {
 }
 
 // NewCollector creates a new metric collector the for ingress controller
-func NewCollector(metricsPerHost, reportStatusClasses bool, registry *prometheus.Registry, ingressclass string, buckets collectors.HistogramBuckets, excludedSocketMetrics []string) (Collector, error) {
+func NewCollector(metricsPerHost, reportStatusClasses bool, registry *prometheus.Registry, ingressclass string, buckets collectors.HistogramBuckets, bucketFactor float64, maxBuckets uint32, excludedSocketMetrics []string) (Collector, error) {
 	podNamespace := os.Getenv("POD_NAMESPACE")
 	if podNamespace == "" {
 		podNamespace = "default"
@@ -89,7 +89,7 @@ func NewCollector(metricsPerHost, reportStatusClasses bool, registry *prometheus
 		return nil, err
 	}
 
-	s, err := collectors.NewSocketCollector(podName, podNamespace, ingressclass, metricsPerHost, reportStatusClasses, buckets, excludedSocketMetrics)
+	s, err := collectors.NewSocketCollector(podName, podNamespace, ingressclass, metricsPerHost, reportStatusClasses, buckets, bucketFactor, maxBuckets, excludedSocketMetrics)
 	if err != nil {
 		return nil, err
 	}
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index aed7d5c9a..15da701e7 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -183,6 +183,8 @@ Requires the update-status parameter.`)
 		timeBuckets          = flags.Float64Slice("time-buckets", prometheus.DefBuckets, "Set of buckets which will be used for prometheus histogram metrics such as RequestTime, ResponseTime.")
 		lengthBuckets        = flags.Float64Slice("length-buckets", prometheus.LinearBuckets(10, 10, 10), "Set of buckets which will be used for prometheus histogram metrics such as RequestLength, ResponseLength.")
 		sizeBuckets          = flags.Float64Slice("size-buckets", prometheus.ExponentialBuckets(10, 10, 7), "Set of buckets which will be used for prometheus histogram metrics such as BytesSent.")
+		bucketFactor         = flags.Float64("bucket-factor", 0, "Bucket factor for native histograms. Value must be > 1 for enabling native histograms.")
+		maxBuckets           = flags.Uint32("max-buckets", 100, "Maximum number of buckets for native histograms.")
 		excludeSocketMetrics = flags.StringSlice("exclude-socket-metrics", []string{}, "et of socket request metrics to exclude which won't be exported nor being calculated. E.g. 'nginx_ingress_controller_success,nginx_ingress_controller_header_duration_seconds'.")
 		monitorMaxBatchSize  = flags.Int("monitor-max-batch-size", 10000, "Max batch size of NGINX metrics.")
 
@@ -339,6 +341,8 @@ https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-g
 		EnableMetrics:               *enableMetrics,
 		MetricsPerHost:              *metricsPerHost,
 		MetricsBuckets:              histogramBuckets,
+		MetricsBucketFactor:         *bucketFactor,
+		MetricsMaxBuckets:           *maxBuckets,
 		ReportStatusClasses:         *reportStatusClasses,
 		ExcludeSocketMetrics:        *excludeSocketMetrics,
 		MonitorMaxBatchSize:         *monitorMaxBatchSize,

From 24450ea509b20937f1e6b7c6010d892cba80f9ac Mon Sep 17 00:00:00 2001
From: lou-lan <loulan@loulan.me>
Date: Sat, 24 Aug 2024 04:10:20 +0800
Subject: [PATCH 1412/1641] Add custom code handling for temporal redirect
 (#10651)

Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>
---
 .../nginx-configuration/annotations-risk.md   |  1 +
 .../nginx-configuration/annotations.md        |  5 ++
 .../ingress/annotations/redirect/redirect.go  | 23 ++++++++-
 .../annotations/redirect/redirect_test.go     | 47 +++++++++++++++++--
 4 files changed, 70 insertions(+), 6 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/annotations-risk.md b/docs/user-guide/nginx-configuration/annotations-risk.md
index b53860174..890608b4b 100755
--- a/docs/user-guide/nginx-configuration/annotations-risk.md
+++ b/docs/user-guide/nginx-configuration/annotations-risk.md
@@ -108,6 +108,7 @@
 | Redirect | permanent-redirect | Medium | location |
 | Redirect | permanent-redirect-code | Low | location |
 | Redirect | temporal-redirect | Medium | location |
+| Redirect | temporal-redirect-code | Low | location |
 | Rewrite | app-root | Medium | location |
 | Rewrite | force-ssl-redirect | Medium | location |
 | Rewrite | preserve-trailing-slash | Medium | location |
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 34c5f18d5..7de05d32c 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -71,6 +71,7 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/permanent-redirect](#permanent-redirect)|string|
 |[nginx.ingress.kubernetes.io/permanent-redirect-code](#permanent-redirect-code)|number|
 |[nginx.ingress.kubernetes.io/temporal-redirect](#temporal-redirect)|string|
+|[nginx.ingress.kubernetes.io/temporal-redirect-code](#temporal-redirect-code)|number|
 |[nginx.ingress.kubernetes.io/preserve-trailing-slash](#server-side-https-enforcement-through-redirect)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/proxy-body-size](#custom-max-body-size)|string|
 |[nginx.ingress.kubernetes.io/proxy-cookie-domain](#proxy-cookie-domain)|string|
@@ -610,6 +611,10 @@ This annotation allows you to modify the status code used for permanent redirect
 ### Temporal Redirect
 This annotation allows you to return a temporal redirect (Return Code 302) instead of sending data to the upstream. For example `nginx.ingress.kubernetes.io/temporal-redirect: https://www.google.com` would redirect everything to Google with a Return Code of 302 (Moved Temporarily)
 
+### Temporal Redirect Code
+
+This annotation allows you to modify the status code used for temporal redirects.  For example `nginx.ingress.kubernetes.io/temporal-redirect-code: '307'` would return your temporal-redirect with a 307.
+
 ### SSL Passthrough
 
 The annotation `nginx.ingress.kubernetes.io/ssl-passthrough` instructs the controller to send TLS connections directly
diff --git a/internal/ingress/annotations/redirect/redirect.go b/internal/ingress/annotations/redirect/redirect.go
index e774b2fe8..0716e1ce1 100644
--- a/internal/ingress/annotations/redirect/redirect.go
+++ b/internal/ingress/annotations/redirect/redirect.go
@@ -28,7 +28,10 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
-const defaultPermanentRedirectCode = http.StatusMovedPermanently
+const (
+	defaultPermanentRedirectCode = http.StatusMovedPermanently
+	defaultTemporalRedirectCode  = http.StatusFound
+)
 
 // Config returns the redirect configuration for an Ingress rule
 type Config struct {
@@ -40,6 +43,7 @@ type Config struct {
 const (
 	fromToWWWRedirAnnotation        = "from-to-www-redirect"
 	temporalRedirectAnnotation      = "temporal-redirect"
+	temporalRedirectAnnotationCode  = "temporal-redirect-code"
 	permanentRedirectAnnotation     = "permanent-redirect"
 	permanentRedirectAnnotationCode = "permanent-redirect-code"
 )
@@ -60,6 +64,12 @@ var redirectAnnotations = parser.Annotation{
 			Documentation: `This annotation allows you to return a temporal redirect (Return Code 302) instead of sending data to the upstream. 
 			For example setting this annotation to https://www.google.com would redirect everything to Google with a Return Code of 302 (Moved Temporarily).`,
 		},
+		temporalRedirectAnnotationCode: {
+			Validator:     parser.ValidateInt,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow, // Low, as it allows just a set of options
+			Documentation: `This annotation allows you to modify the status code used for temporal redirects.`,
+		},
 		permanentRedirectAnnotation: {
 			Validator: parser.ValidateRegex(parser.URLIsValidRegex, false),
 			Scope:     parser.AnnotationScopeLocation,
@@ -105,13 +115,22 @@ func (r redirect) Parse(ing *networking.Ingress) (interface{}, error) {
 	}
 
 	if tr != "" {
+		trc, err := parser.GetIntAnnotation(temporalRedirectAnnotationCode, ing, r.annotationConfig.Annotations)
+		if err != nil && !errors.IsMissingAnnotations(err) {
+			return nil, err
+		}
+
+		if trc < http.StatusMultipleChoices || trc > http.StatusTemporaryRedirect {
+			trc = defaultTemporalRedirectCode
+		}
+
 		if err := isValidURL(tr); err != nil {
 			return nil, err
 		}
 
 		return &Config{
 			URL:       tr,
-			Code:      http.StatusFound,
+			Code:      trc,
 			FromToWWW: r3w,
 		}, nil
 	}
diff --git a/internal/ingress/annotations/redirect/redirect_test.go b/internal/ingress/annotations/redirect/redirect_test.go
index bd2f98211..b5c34879e 100644
--- a/internal/ingress/annotations/redirect/redirect_test.go
+++ b/internal/ingress/annotations/redirect/redirect_test.go
@@ -103,7 +103,7 @@ func TestPermanentRedirectWithCustomCode(t *testing.T) {
 	}
 }
 
-func TestTemporalRedirect(t *testing.T) {
+func TestTemporalRedirectWithDefaultCode(t *testing.T) {
 	rp := NewParser(resolver.Mock{})
 	if rp == nil {
 		t.Fatalf("Expected a parser.IngressAnnotation but returned nil")
@@ -128,10 +128,49 @@ func TestTemporalRedirect(t *testing.T) {
 		t.Errorf("Expected %v as redirect but returned %s", defRedirectURL, redirect.URL)
 	}
 	if redirect.Code != http.StatusFound {
-		t.Errorf("Expected %v as redirect to have a code %d but had %d", defRedirectURL, defaultPermanentRedirectCode, redirect.Code)
+		t.Errorf("Expected %v as redirect to have a code %d but had %d", defRedirectURL, http.StatusFound, redirect.Code)
 	}
-	if redirect.FromToWWW != true {
-		t.Errorf("Expected %v as redirect to have from-to-www as %v but got %v", defRedirectURL, true, redirect.FromToWWW)
+}
+
+func TestTemporalRedirectWithCustomCode(t *testing.T) {
+	rp := NewParser(resolver.Mock{})
+	if rp == nil {
+		t.Fatalf("Expected a parser.IngressAnnotation but returned nil")
+	}
+
+	testCases := map[string]struct {
+		input        int
+		expectOutput int
+	}{
+		"valid code":   {http.StatusTemporaryRedirect, http.StatusTemporaryRedirect},
+		"invalid code": {http.StatusTeapot, http.StatusFound},
+	}
+
+	for n, tc := range testCases {
+		t.Run(n, func(t *testing.T) {
+			ing := new(networking.Ingress)
+
+			data := make(map[string]string, 2)
+			data[parser.GetAnnotationWithPrefix(fromToWWWRedirAnnotation)] = "true"
+			data[parser.GetAnnotationWithPrefix(temporalRedirectAnnotation)] = defRedirectURL
+			data[parser.GetAnnotationWithPrefix(temporalRedirectAnnotationCode)] = strconv.Itoa(tc.input)
+			ing.SetAnnotations(data)
+
+			i, err := rp.Parse(ing)
+			if err != nil {
+				t.Errorf("Unexpected error with ingress: %v", err)
+			}
+			redirect, ok := i.(*Config)
+			if !ok {
+				t.Errorf("Expected a Redirect type")
+			}
+			if redirect.URL != defRedirectURL {
+				t.Errorf("Expected %v as redirect but returned %s", defRedirectURL, redirect.URL)
+			}
+			if redirect.Code != tc.expectOutput {
+				t.Errorf("Expected %v as redirect to have a code %d but had %d", defRedirectURL, tc.expectOutput, redirect.Code)
+			}
+		})
 	}
 }
 

From 5243b9b90a3f5fcc42614a4331c723e2a33b4a3a Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sat, 24 Aug 2024 13:18:44 +0200
Subject: [PATCH 1413/1641] Revert "docs: Add deployment for AWS NLB Proxy."
 (#11857)

---
 .../deploy.yaml                               | 673 ------------------
 .../kustomization.yaml                        |  11 -
 2 files changed, 684 deletions(-)
 delete mode 100644 deploy/static/provider/aws/nlb-proxy-with-tls-termination/deploy.yaml
 delete mode 100644 deploy/static/provider/aws/nlb-proxy-with-tls-termination/kustomization.yaml

diff --git a/deploy/static/provider/aws/nlb-proxy-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-proxy-with-tls-termination/deploy.yaml
deleted file mode 100644
index 5a3987875..000000000
--- a/deploy/static/provider/aws/nlb-proxy-with-tls-termination/deploy.yaml
+++ /dev/null
@@ -1,673 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  name: ingress-nginx
----
-apiVersion: v1
-automountServiceAccountToken: true
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - namespaces
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - pods
-  - secrets
-  - endpoints
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - configmaps
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  verbs:
-  - create
-- apiGroups:
-  - coordination.k8s.io
-  resourceNames:
-  - ingress-nginx-leader
-  resources:
-  - leases
-  verbs:
-  - get
-  - update
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - create
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - discovery.k8s.io
-  resources:
-  - endpointslices
-  verbs:
-  - list
-  - watch
-  - get
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - secrets
-  verbs:
-  - get
-  - create
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx
-rules:
-- apiGroups:
-  - ""
-  resources:
-  - configmaps
-  - endpoints
-  - nodes
-  - pods
-  - secrets
-  - namespaces
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - coordination.k8s.io
-  resources:
-  - leases
-  verbs:
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - nodes
-  verbs:
-  - get
-- apiGroups:
-  - ""
-  resources:
-  - services
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - ""
-  resources:
-  - events
-  verbs:
-  - create
-  - patch
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingresses/status
-  verbs:
-  - update
-- apiGroups:
-  - networking.k8s.io
-  resources:
-  - ingressclasses
-  verbs:
-  - get
-  - list
-  - watch
-- apiGroups:
-  - discovery.k8s.io
-  resources:
-  - endpointslices
-  verbs:
-  - list
-  - watch
-  - get
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRole
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx-admission
-rules:
-- apiGroups:
-  - admissionregistration.k8s.io
-  resources:
-  - validatingwebhookconfigurations
-  verbs:
-  - get
-  - update
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
----
-apiVersion: rbac.authorization.k8s.io/v1
-kind: ClusterRoleBinding
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx-admission
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: ClusterRole
-  name: ingress-nginx-admission
-subjects:
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
----
-apiVersion: v1
-data:
-  allow-snippet-annotations: "true"
-  proxy-body-size: "8m"
-  ssl-redirect: "false"
-  use-forwarded-headers: "true"
-  compute-full-forwarded-for: "true"
-  use-proxy-protocol: "true" # No modify X-Forwarded-* HTTPS from NLB TLS. 
-  force-ssl-redirect: "true" # Redirect HTTP -> HTTPS.
-
-kind: ConfigMap
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
----
-apiVersion: v1
-kind: Service
-metadata:
-  annotations:
-    service.beta.kubernetes.io/aws-load-balancer-type: "external"
-    service.beta.kubernetes.io/aws-load-balancer-backend-protocol: "tcp"
-    service.beta.kubernetes.io/aws-load-balancer-nlb-target-type: "ip"
-    service.beta.kubernetes.io/aws-load-balancer-scheme: "internet-facing"
-    service.beta.kubernetes.io/aws-load-balancer-proxy-protocol: "*"
-    service.beta.kubernetes.io/aws-load-balancer-ssl-cert: "arn:aws:acm:us-west-2:XXXXXXXX:certificate/XXXXXX-XXXXXXX-XXXXXXX-XXXXXXXX"
-    service.beta.kubernetes.io/aws-load-balancer-ssl-ports: "443"
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  externalTrafficPolicy: Local
-  ipFamilies:
-  - IPv4
-  ipFamilyPolicy: SingleStack
-  ports:
-  - appProtocol: http
-    name: http
-    port: 80
-    protocol: TCP
-    targetPort: http
-  - appProtocol: https
-    name: https
-    port: 443
-    protocol: TCP
-    targetPort: https
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: LoadBalancer
----
-apiVersion: v1
-kind: Service
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx-controller-admission
-  namespace: ingress-nginx
-spec:
-  ports:
-  - appProtocol: https
-    name: https-webhook
-    port: 443
-    targetPort: webhook
-  selector:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-  type: ClusterIP
----
-apiVersion: apps/v1
-kind: Deployment
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx-controller
-  namespace: ingress-nginx
-spec:
-  minReadySeconds: 0
-  revisionHistoryLimit: 10
-  selector:
-    matchLabels:
-      app.kubernetes.io/component: controller
-      app.kubernetes.io/instance: ingress-nginx
-      app.kubernetes.io/name: ingress-nginx
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: controller
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-    spec:
-      containers:
-      - args:
-        - /nginx-ingress-controller
-        - --publish-service=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --election-id=ingress-nginx-leader
-        - --controller-class=k8s.io/ingress-nginx
-        - --ingress-class=nginx
-        - --configmap=$(POD_NAMESPACE)/ingress-nginx-controller
-        - --validating-webhook=:8443
-        - --validating-webhook-certificate=/usr/local/certificates/cert
-        - --validating-webhook-key=/usr/local/certificates/key
-        env:
-        - name: POD_NAME
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.name
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        - name: LD_PRELOAD
-          value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.5.1@sha256:4ba73c697770664c1e00e9f968de14e08f606ff961c76e5d7033a4a9c593c629
-        imagePullPolicy: IfNotPresent
-        lifecycle:
-          preStop:
-            exec:
-              command:
-              - /wait-shutdown
-        livenessProbe:
-          failureThreshold: 5
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        name: controller
-        ports:
-        - containerPort: 80
-          name: http
-          protocol: TCP
-        - containerPort: 443
-          name: https
-          protocol: TCP
-        - containerPort: 8443
-          name: webhook
-          protocol: TCP
-        readinessProbe:
-          failureThreshold: 3
-          httpGet:
-            path: /healthz
-            port: 10254
-            scheme: HTTP
-          initialDelaySeconds: 10
-          periodSeconds: 10
-          successThreshold: 1
-          timeoutSeconds: 1
-        resources:
-          requests:
-            cpu: 100m
-            memory: 90Mi
-        securityContext:
-          allowPrivilegeEscalation: true
-          capabilities:
-            add:
-            - NET_BIND_SERVICE
-            drop:
-            - ALL
-          runAsUser: 101
-        volumeMounts:
-        - mountPath: /usr/local/certificates/
-          name: webhook-cert
-          readOnly: true
-      dnsPolicy: ClusterFirst
-      nodeSelector:
-        kubernetes.io/os: linux
-      serviceAccountName: ingress-nginx
-      terminationGracePeriodSeconds: 300
-      volumes:
-      - name: webhook-cert
-        secret:
-          secretName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx-admission-create
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
-      name: ingress-nginx-admission-create
-    spec:
-      containers:
-      - args:
-        - create
-        - --host=ingress-nginx-controller-admission,ingress-nginx-controller-admission.$(POD_NAMESPACE).svc
-        - --namespace=$(POD_NAMESPACE)
-        - --secret-name=ingress-nginx-admission
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
-        imagePullPolicy: IfNotPresent
-        name: create
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: batch/v1
-kind: Job
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx-admission-patch
-  namespace: ingress-nginx
-spec:
-  template:
-    metadata:
-      labels:
-        app.kubernetes.io/component: admission-webhook
-        app.kubernetes.io/instance: ingress-nginx
-        app.kubernetes.io/name: ingress-nginx
-        app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.5.1
-      name: ingress-nginx-admission-patch
-    spec:
-      containers:
-      - args:
-        - patch
-        - --webhook-name=ingress-nginx-admission
-        - --namespace=$(POD_NAMESPACE)
-        - --patch-mutating=false
-        - --secret-name=ingress-nginx-admission
-        - --patch-failure-policy=Fail
-        env:
-        - name: POD_NAMESPACE
-          valueFrom:
-            fieldRef:
-              fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v20220916-gd32f8c343@sha256:39c5b2e3310dc4264d638ad28d9d1d96c4cbb2b2dcfb52368fe4e3c63f61e10f
-        imagePullPolicy: IfNotPresent
-        name: patch
-        securityContext:
-          allowPrivilegeEscalation: false
-      nodeSelector:
-        kubernetes.io/os: linux
-      restartPolicy: OnFailure
-      securityContext:
-        fsGroup: 2000
-        runAsNonRoot: true
-        runAsUser: 2000
-      serviceAccountName: ingress-nginx-admission
----
-apiVersion: networking.k8s.io/v1
-kind: IngressClass
-metadata:
-  labels:
-    app.kubernetes.io/component: controller
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: nginx
-spec:
-  controller: k8s.io/ingress-nginx
----
-apiVersion: admissionregistration.k8s.io/v1
-kind: ValidatingWebhookConfiguration
-metadata:
-  labels:
-    app.kubernetes.io/component: admission-webhook
-    app.kubernetes.io/instance: ingress-nginx
-    app.kubernetes.io/name: ingress-nginx
-    app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.5.1
-  name: ingress-nginx-admission
-webhooks:
-- admissionReviewVersions:
-  - v1
-  clientConfig:
-    service:
-      name: ingress-nginx-controller-admission
-      namespace: ingress-nginx
-      path: /networking/v1/ingresses
-  failurePolicy: Fail
-  matchPolicy: Equivalent
-  name: validate.nginx.ingress.kubernetes.io
-  rules:
-  - apiGroups:
-    - networking.k8s.io
-    apiVersions:
-    - v1
-    operations:
-    - CREATE
-    - UPDATE
-    resources:
-    - ingresses
-  sideEffects: None
diff --git a/deploy/static/provider/aws/nlb-proxy-with-tls-termination/kustomization.yaml b/deploy/static/provider/aws/nlb-proxy-with-tls-termination/kustomization.yaml
deleted file mode 100644
index 51c1513c9..000000000
--- a/deploy/static/provider/aws/nlb-proxy-with-tls-termination/kustomization.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-# NOTE: kustomize is not supported. This file exists only to be able to reference it from bases.
-# https://kubectl.docs.kubernetes.io/references/kustomize/bases/
-#
-# ```
-# namespace: ingress-nginx
-# bases:
-#   - github.com/kubernetes/ingress-nginx/tree/main/deploy/static/provider/aws/nlb-with-tls-termination
-# ```
-
-resources:
-  - deploy.yaml

From 21cd966d1c817a5d6e677c270ae4719aaa4787f7 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 25 Aug 2024 17:03:29 -0300
Subject: [PATCH 1414/1641] Remove global-rate-limit feature (#11851)

---
 .../tests/controller-configmap_test.yaml      |   8 -
 docs/e2e-tests.md                             |   5 -
 .../nginx-configuration/annotations-risk.md   |   4 -
 .../nginx-configuration/annotations.md        |  44 ---
 .../nginx-configuration/configmap.md          |  22 --
 images/nginx-1.25/rootfs/build.sh             |   9 -
 images/nginx/rootfs/build.sh                  |   9 -
 internal/ingress/annotations/annotations.go   |   3 -
 .../annotations/globalratelimit/main.go       | 179 ------------
 .../annotations/globalratelimit/main_test.go  | 211 --------------
 internal/ingress/controller/config/config.go  |  86 ++----
 internal/ingress/controller/controller.go     |   5 -
 .../ingress/controller/template/configmap.go  |   1 -
 .../ingress/controller/template/template.go   |  73 -----
 .../controller/template/template_test.go      |  83 ------
 pkg/apis/ingress/types.go                     |   5 -
 pkg/apis/ingress/types_equals.go              |   3 -
 rootfs/etc/nginx/lua/global_throttle.lua      | 131 ---------
 rootfs/etc/nginx/lua/lua_ingress.lua          |   2 -
 .../nginx/lua/test/global_throttle_test.lua   | 258 ------------------
 rootfs/etc/nginx/template/nginx.tmpl          |   1 -
 test/e2e/admission/admission.go               |  27 --
 test/e2e/annotations/globalratelimit.go       |  88 ------
 test/e2e/settings/globalratelimit.go          |  96 -------
 test/test-lua.sh                              |   1 -
 25 files changed, 28 insertions(+), 1326 deletions(-)
 delete mode 100644 internal/ingress/annotations/globalratelimit/main.go
 delete mode 100644 internal/ingress/annotations/globalratelimit/main_test.go
 delete mode 100644 rootfs/etc/nginx/lua/global_throttle.lua
 delete mode 100644 rootfs/etc/nginx/lua/test/global_throttle_test.lua
 delete mode 100644 test/e2e/annotations/globalratelimit.go
 delete mode 100644 test/e2e/settings/globalratelimit.go

diff --git a/charts/ingress-nginx/tests/controller-configmap_test.yaml b/charts/ingress-nginx/tests/controller-configmap_test.yaml
index 9cfea9800..f0fc1c730 100644
--- a/charts/ingress-nginx/tests/controller-configmap_test.yaml
+++ b/charts/ingress-nginx/tests/controller-configmap_test.yaml
@@ -16,16 +16,8 @@ tests:
   - it: should create a ConfigMap with templated values if `controller.config` contains templates
     set:
       controller.config:
-        global-rate-limit-memcached-host: "memcached.{{ .Release.Namespace }}.svc.kubernetes.local"
-        global-rate-limit-memcached-port: 11211
         use-gzip: true
     asserts:
-      - equal:
-          path: data.global-rate-limit-memcached-host
-          value: memcached.NAMESPACE.svc.kubernetes.local
-      - equal:
-          path: data.global-rate-limit-memcached-port
-          value: "11211"
       - equal:
           path: data.use-gzip
           value: "true"
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index f288ec82f..c95603853 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -7,7 +7,6 @@ Do not try to edit it manually.
 
 
 ### [[Admission] admission controller](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L39)
-- [reject ingress with global-rate-limit annotations when memcached is not configured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L47)
 - [should not allow overlaps of host and paths without canary annotations](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L74)
 - [should allow overlaps of host and paths with canary annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L91)
 - [should block ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L112)
@@ -173,8 +172,6 @@ Do not try to edit it manually.
 ### [from-to-www-redirect](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fromtowwwredirect.go#L31)
 - [should redirect from www HTTP to HTTP](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fromtowwwredirect.go#L38)
 - [should redirect from www HTTPS to HTTPS](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/fromtowwwredirect.go#L64)
-### [annotation-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/globalratelimit.go#L30)
-- [generates correct configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/globalratelimit.go#L38)
 ### [backend-protocol - GRPC](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L45)
 - [should use grpc_pass in the configuration file](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L48)
 - [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L71)
@@ -420,8 +417,6 @@ Do not try to edit it manually.
 ### [global-options](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_options.go#L28)
 - [should have worker_rlimit_nofile option](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_options.go#L31)
 - [should have worker_rlimit_nofile option and be independent on amount of worker processes](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_options.go#L37)
-### [settings-global-rate-limit](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/globalratelimit.go#L30)
-- [generates correct NGINX configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/globalratelimit.go#L38)
 ### [GRPC](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/grpc.go#L39)
 - [should set the correct GRPC Buffer Size](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/grpc.go#L42)
 ### [gzip](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/gzip.go#L30)
diff --git a/docs/user-guide/nginx-configuration/annotations-risk.md b/docs/user-guide/nginx-configuration/annotations-risk.md
index 890608b4b..3e3b93986 100755
--- a/docs/user-guide/nginx-configuration/annotations-risk.md
+++ b/docs/user-guide/nginx-configuration/annotations-risk.md
@@ -55,10 +55,6 @@
 | ExternalAuth | auth-url | High | location |
 | FastCGI | fastcgi-index | Medium | location |
 | FastCGI | fastcgi-params-configmap | Medium | location |
-| GlobalRateLimit | global-rate-limit | Low | ingress |
-| GlobalRateLimit | global-rate-limit-ignored-cidrs | Medium | ingress |
-| GlobalRateLimit | global-rate-limit-key | High | ingress |
-| GlobalRateLimit | global-rate-limit-window | Low | ingress |
 | HTTP2PushPreload | http2-push-preload | Low | location |
 | LoadBalancing | load-balance | Low | location |
 | Logs | enable-access-log | Low | location |
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 7de05d32c..80ceccfa9 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -64,10 +64,6 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/http2-push-preload](#http2-push-preload)|"true" or "false"|
 |[nginx.ingress.kubernetes.io/limit-connections](#rate-limiting)|number|
 |[nginx.ingress.kubernetes.io/limit-rps](#rate-limiting)|number|
-|[nginx.ingress.kubernetes.io/global-rate-limit](#global-rate-limiting)|number|
-|[nginx.ingress.kubernetes.io/global-rate-limit-window](#global-rate-limiting)|duration|
-|[nginx.ingress.kubernetes.io/global-rate-limit-key](#global-rate-limiting)|string|
-|[nginx.ingress.kubernetes.io/global-rate-limit-ignored-cidrs](#global-rate-limiting)|string|
 |[nginx.ingress.kubernetes.io/permanent-redirect](#permanent-redirect)|string|
 |[nginx.ingress.kubernetes.io/permanent-redirect-code](#permanent-redirect-code)|number|
 |[nginx.ingress.kubernetes.io/temporal-redirect](#temporal-redirect)|string|
@@ -560,46 +556,6 @@ To configure settings globally for all Ingress rules, the `limit-rate-after` and
 
 The client IP address will be set based on the use of [PROXY protocol](./configmap.md#use-proxy-protocol) or from the `X-Forwarded-For` header value when [use-forwarded-headers](./configmap.md#use-forwarded-headers) is enabled.
 
-### Global Rate Limiting
-
-**Note:** Be careful when configuring both (Local) Rate Limiting and Global Rate Limiting at the same time.
-They are two completely different rate limiting implementations. Whichever limit exceeds first will reject the
-requests. It might be a good idea to configure both of them to ease load on Global Rate Limiting backend
-in cases of spike in traffic.
-
-The stock NGINX rate limiting does not share its counters among different NGINX instances.
-Given that most ingress-nginx deployments are elastic and number of replicas can change any day
-it is impossible to configure a proper rate limit using stock NGINX functionalities.
-Global Rate Limiting overcome this by using [lua-resty-global-throttle](https://github.com/ElvinEfendi/lua-resty-global-throttle). `lua-resty-global-throttle` shares its counters via a central store such as `memcached`.
-The obvious shortcoming of this is users have to deploy and operate a `memcached` instance
-in order to benefit from this functionality. Configure the `memcached`
-using [these configmap settings](./configmap.md#global-rate-limit).
-
-**Here are a few remarks for ingress-nginx integration of `lua-resty-global-throttle`:**
-
-1. We minimize `memcached` access by caching exceeding limit decisions. The expiry of
-cache entry is the desired delay `lua-resty-global-throttle` calculates for us.
-The Lua Shared Dictionary used for that is `global_throttle_cache`. Currently its size defaults to 10M.
-Customize it as per your needs using [lua-shared-dicts](./configmap.md#lua-shared-dicts).
-When we fail to cache the exceeding limit decision then we log an NGINX error. You can monitor
-for that error to decide if you need to bump the cache size. Without cache the cost of processing a
-request is two memcached commands: `GET`, and `INCR`. With the cache it is only `INCR`.
-1. Log NGINX variable `$global_rate_limit_exceeding`'s value to have some visibility into
-what portion of requests are rejected (value `y`), whether they are rejected using cached decision (value `c`),
-or if they are not rejected (default value `n`). You can use [log-format-upstream](./configmap.md#log-format-upstream)
-to include that in access logs.
-1. In case of an error it will log the error message and **fail open**.
-1. The annotations below creates Global Rate Limiting instance per ingress.
-That means if there are multiple paths configured under the same ingress,
-the Global Rate Limiting will count requests to all the paths under the same counter.
-Extract a path out into its own ingress if you need to isolate a certain path.
-
-
-* `nginx.ingress.kubernetes.io/global-rate-limit`: Configures maximum allowed number of requests per window. Required.
-* `nginx.ingress.kubernetes.io/global-rate-limit-window`: Configures a time window (i.e `1m`) that the limit is applied. Required.
-* `nginx.ingress.kubernetes.io/global-rate-limit-key`: Configures a key for counting the samples. Defaults to `$remote_addr`. You can also combine multiple NGINX variables here, like `${remote_addr}-${http_x_api_client}` which would mean the limit will be applied to requests coming from the same API client (indicated by `X-API-Client` HTTP request header) with the same source IP address.
-* `nginx.ingress.kubernetes.io/global-rate-limit-ignored-cidrs`: comma separated list of IPs and CIDRs to match client IP against. When there's a match request is not considered for rate limiting.
-
 ### Permanent Redirect
 
 This annotation allows to return a permanent redirect (Return Code 301) instead of sending data to the upstream.  For example `nginx.ingress.kubernetes.io/permanent-redirect: https://www.google.com` would redirect everything to Google.
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 51e4edfa3..ab96a17d1 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -218,12 +218,6 @@ The following table shows a configuration option's name, type, and the default v
 | [block-referers](#block-referers)                                               | []string     | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
 | [proxy-ssl-location-only](#proxy-ssl-location-only)                             | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
 | [default-type](#default-type)                                                   | string       | "text/html"                                                                                                                                                                                                                                                                                                                                                  |                                                                                     |
-| [global-rate-limit-memcached-host](#global-rate-limit)                          | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
-| [global-rate-limit-memcached-port](#global-rate-limit)                          | int          | 11211                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
-| [global-rate-limit-memcached-connect-timeout](#global-rate-limit)               | int          | 50                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
-| [global-rate-limit-memcached-max-idle-timeout](#global-rate-limit)              | int          | 10000                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
-| [global-rate-limit-memcached-pool-size](#global-rate-limit)                     | int          | 50                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
-| [global-rate-limit-status-code](#global-rate-limit)                             | int          | 429                                                                                                                                                                                                                                                                                                                                                          |                                                                                     |
 | [service-upstream](#service-upstream)                                           | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
 | [ssl-reject-handshake](#ssl-reject-handshake)                                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
 | [debug-connections](#debug-connections)                                         | []string     | "127.0.0.1,1.1.1.1/24"                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
@@ -1349,22 +1343,6 @@ _**default:**_ text/html
 _References:_
 [https://nginx.org/en/docs/http/ngx_http_core_module.html#default_type](https://nginx.org/en/docs/http/ngx_http_core_module.html#default_type)
 
-## global-rate-limit
-
-* `global-rate-limit-status-code`: configure HTTP status code to return when rejecting requests. Defaults to 429.
-
-Configure `memcached` client for [Global Rate Limiting](https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/nginx-configuration/annotations.md#global-rate-limiting).
-
-* `global-rate-limit-memcached-host`: IP/FQDN of memcached server to use. Required to enable Global Rate Limiting.
-* `global-rate-limit-memcached-port`: port of memcached server to use. Defaults default memcached port of `11211`.
-* `global-rate-limit-memcached-connect-timeout`: configure timeout for connect, send and receive operations. Unit is millisecond. Defaults to 50ms.
-* `global-rate-limit-memcached-max-idle-timeout`: configure timeout for cleaning idle connections. Unit is millisecond. Defaults to 50ms.
-* `global-rate-limit-memcached-pool-size`: configure number of max connections to keep alive. Make sure your `memcached` server can handle
-`global-rate-limit-memcached-pool-size * worker-processes * <number of ingress-nginx replicas>` simultaneous connections.
-
-These settings get used by [lua-resty-global-throttle](https://github.com/ElvinEfendi/lua-resty-global-throttle)
-that ingress-nginx includes. Refer to the link to learn more about `lua-resty-global-throttle`.
-
 ## service-upstream
 
 Set if the service's Cluster IP and port should be used instead of a list of all endpoints. This can be overwritten by an annotation on an Ingress rule.
diff --git a/images/nginx-1.25/rootfs/build.sh b/images/nginx-1.25/rootfs/build.sh
index f60a260f9..ca636d03a 100755
--- a/images/nginx-1.25/rootfs/build.sh
+++ b/images/nginx-1.25/rootfs/build.sh
@@ -98,9 +98,6 @@ export LUA_RESTY_REDIS_VERSION=8641b9f1b6f75cca50c90cf8ca5c502ad8950aa8
 # Check for recent changes: https://github.com/api7/lua-resty-ipmatcher/compare/v0.6.1...master
 export LUA_RESTY_IPMATCHER_VERSION=3e93c53eb8c9884efe939ef070486a0e507cc5be
 
-# Check for recent changes: https://github.com/ElvinEfendi/lua-resty-global-throttle/compare/v0.2.0...main
-export LUA_RESTY_GLOBAL_THROTTLE_VERSION=v0.2.0
-
 # Check for recent changes:  https://github.com/microsoft/mimalloc/compare/v2.1.7...master
 export MIMALOC_VERSION=v2.1.7
 
@@ -276,9 +273,6 @@ get_src c15aed1a01c88a3a6387d9af67a957dff670357f5fdb4ee182beb44635eef3f1 \
 get_src efb767487ea3f6031577b9b224467ddbda2ad51a41c5867a47582d4ad85d609e \
         "https://github.com/api7/lua-resty-ipmatcher/archive/$LUA_RESTY_IPMATCHER_VERSION.tar.gz" "lua-resty-ipmatcher"
 
-get_src 0fb790e394510e73fdba1492e576aaec0b8ee9ef08e3e821ce253a07719cf7ea \
-        "https://github.com/ElvinEfendi/lua-resty-global-throttle/archive/$LUA_RESTY_GLOBAL_THROTTLE_VERSION.tar.gz" "lua-resty-global-throttle"
-
 get_src d74f86ada2329016068bc5a243268f1f555edd620b6a7d6ce89295e7d6cf18da \
         "https://github.com/microsoft/mimalloc/archive/${MIMALOC_VERSION}.tar.gz" "mimalloc"
 
@@ -591,9 +585,6 @@ make install
 cd "$BUILD_PATH/lua-resty-ipmatcher"
 INST_LUADIR=/usr/local/lib/lua make install
 
-cd "$BUILD_PATH/lua-resty-global-throttle"
-make install
-
 cd "$BUILD_PATH/mimalloc"
 mkdir -p out/release
 cd out/release
diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 2f5f3c66f..cfd6493e3 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -119,9 +119,6 @@ export LUA_RESTY_REDIS_VERSION=0.30
 # Check for recent changes: https://github.com/api7/lua-resty-ipmatcher/compare/v0.6.1...master
 export LUA_RESTY_IPMATCHER_VERSION=0.6.1
 
-# Check for recent changes: https://github.com/ElvinEfendi/lua-resty-global-throttle/compare/v0.2.0...main
-export LUA_RESTY_GLOBAL_THROTTLE_VERSION=0.2.0
-
 # Check for recent changes:  https://github.com/microsoft/mimalloc/compare/v1.7.6...master
 export MIMALOC_VERSION=1.7.6
 
@@ -309,9 +306,6 @@ get_src c15aed1a01c88a3a6387d9af67a957dff670357f5fdb4ee182beb44635eef3f1 \
 get_src efb767487ea3f6031577b9b224467ddbda2ad51a41c5867a47582d4ad85d609e \
         "https://github.com/api7/lua-resty-ipmatcher/archive/v$LUA_RESTY_IPMATCHER_VERSION.tar.gz"
 
-get_src 0fb790e394510e73fdba1492e576aaec0b8ee9ef08e3e821ce253a07719cf7ea \
-        "https://github.com/ElvinEfendi/lua-resty-global-throttle/archive/v$LUA_RESTY_GLOBAL_THROTTLE_VERSION.tar.gz"
-
 get_src d74f86ada2329016068bc5a243268f1f555edd620b6a7d6ce89295e7d6cf18da \
         "https://github.com/microsoft/mimalloc/archive/refs/tags/v${MIMALOC_VERSION}.tar.gz"
 
@@ -704,9 +698,6 @@ make install
 cd "$BUILD_PATH/lua-resty-ipmatcher-$LUA_RESTY_IPMATCHER_VERSION"
 INST_LUADIR=/usr/local/lib/lua make install
 
-cd "$BUILD_PATH/lua-resty-global-throttle-$LUA_RESTY_GLOBAL_THROTTLE_VERSION"
-make install
-
 cd "$BUILD_PATH/mimalloc-$MIMALOC_VERSION"
 mkdir -p out/release
 cd out/release
diff --git a/internal/ingress/annotations/annotations.go b/internal/ingress/annotations/annotations.go
index 4c073246c..e10cc9be1 100644
--- a/internal/ingress/annotations/annotations.go
+++ b/internal/ingress/annotations/annotations.go
@@ -39,7 +39,6 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/defaultbackend"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/disableproxyintercepterrors"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/fastcgi"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/globalratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/http2pushpreload"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipallowlist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipdenylist"
@@ -98,7 +97,6 @@ type Ingress struct {
 	Proxy                       proxy.Config
 	ProxySSL                    proxyssl.Config
 	RateLimit                   ratelimit.Config
-	GlobalRateLimit             globalratelimit.Config
 	Redirect                    redirect.Config
 	Rewrite                     rewrite.Config
 	Satisfy                     string
@@ -147,7 +145,6 @@ func NewAnnotationFactory(cfg resolver.Resolver) map[string]parser.IngressAnnota
 		"Proxy":                       proxy.NewParser(cfg),
 		"ProxySSL":                    proxyssl.NewParser(cfg),
 		"RateLimit":                   ratelimit.NewParser(cfg),
-		"GlobalRateLimit":             globalratelimit.NewParser(cfg),
 		"Redirect":                    redirect.NewParser(cfg),
 		"Rewrite":                     rewrite.NewParser(cfg),
 		"Satisfy":                     satisfy.NewParser(cfg),
diff --git a/internal/ingress/annotations/globalratelimit/main.go b/internal/ingress/annotations/globalratelimit/main.go
deleted file mode 100644
index 0aec29f66..000000000
--- a/internal/ingress/annotations/globalratelimit/main.go
+++ /dev/null
@@ -1,179 +0,0 @@
-/*
-Copyright 2020 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package globalratelimit
-
-import (
-	"fmt"
-	"strings"
-	"time"
-
-	networking "k8s.io/api/networking/v1"
-	"k8s.io/klog/v2"
-
-	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
-	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
-	"k8s.io/ingress-nginx/internal/ingress/resolver"
-	"k8s.io/ingress-nginx/internal/net"
-	"k8s.io/ingress-nginx/pkg/util/sets"
-)
-
-const defaultKey = "$remote_addr"
-
-const (
-	globalRateLimitAnnotation             = "global-rate-limit"
-	globalRateLimitWindowAnnotation       = "global-rate-limit-window"
-	globalRateLimitKeyAnnotation          = "global-rate-limit-key"
-	globalRateLimitIgnoredCidrsAnnotation = "global-rate-limit-ignored-cidrs"
-)
-
-var globalRateLimitAnnotationConfig = parser.Annotation{
-	Group: "ratelimit",
-	Annotations: parser.AnnotationFields{
-		globalRateLimitAnnotation: {
-			Validator:     parser.ValidateInt,
-			Scope:         parser.AnnotationScopeIngress,
-			Risk:          parser.AnnotationRiskLow,
-			Documentation: `This annotation configures maximum allowed number of requests per window`,
-		},
-		globalRateLimitWindowAnnotation: {
-			Validator:     parser.ValidateDuration,
-			Scope:         parser.AnnotationScopeIngress,
-			Risk:          parser.AnnotationRiskLow,
-			Documentation: `Configures a time window (i.e 1m) that the limit is applied`,
-		},
-		globalRateLimitKeyAnnotation: {
-			Validator: parser.ValidateRegex(parser.NGINXVariable, true),
-			Scope:     parser.AnnotationScopeIngress,
-			Risk:      parser.AnnotationRiskHigh,
-			Documentation: `This annotation Configures a key for counting the samples. Defaults to $remote_addr. 
-			You can also combine multiple NGINX variables here, like ${remote_addr}-${http_x_api_client} which would mean the limit will be applied to 
-			requests coming from the same API client (indicated by X-API-Client HTTP request header) with the same source IP address`,
-		},
-		globalRateLimitIgnoredCidrsAnnotation: {
-			Validator: parser.ValidateCIDRs,
-			Scope:     parser.AnnotationScopeIngress,
-			Risk:      parser.AnnotationRiskMedium,
-			Documentation: `This annotation defines a comma separated list of IPs and CIDRs to match client IP against. 
-			When there's a match request is not considered for rate limiting.`,
-		},
-	},
-}
-
-// Config encapsulates all global rate limit attributes
-type Config struct {
-	Namespace    string   `json:"namespace"`
-	Limit        int      `json:"limit"`
-	WindowSize   int      `json:"window-size"`
-	Key          string   `json:"key"`
-	IgnoredCIDRs []string `json:"ignored-cidrs"`
-}
-
-// Equal tests for equality between two Config types
-func (l *Config) Equal(r *Config) bool {
-	if l.Namespace != r.Namespace {
-		return false
-	}
-	if l.Limit != r.Limit {
-		return false
-	}
-	if l.WindowSize != r.WindowSize {
-		return false
-	}
-	if l.Key != r.Key {
-		return false
-	}
-	if len(l.IgnoredCIDRs) != len(r.IgnoredCIDRs) || !sets.StringElementsMatch(l.IgnoredCIDRs, r.IgnoredCIDRs) {
-		return false
-	}
-
-	return true
-}
-
-type globalratelimit struct {
-	r                resolver.Resolver
-	annotationConfig parser.Annotation
-}
-
-// NewParser creates a new globalratelimit annotation parser
-func NewParser(r resolver.Resolver) parser.IngressAnnotation {
-	return globalratelimit{
-		r:                r,
-		annotationConfig: globalRateLimitAnnotationConfig,
-	}
-}
-
-// Parse extracts globalratelimit annotations from the given ingress
-// and returns them structured as Config type
-func (a globalratelimit) Parse(ing *networking.Ingress) (interface{}, error) {
-	config := &Config{}
-
-	limit, err := parser.GetIntAnnotation(globalRateLimitAnnotation, ing, a.annotationConfig.Annotations)
-	if err != nil && ing_errors.IsInvalidContent(err) {
-		return nil, err
-	}
-	rawWindowSize, err := parser.GetStringAnnotation(globalRateLimitWindowAnnotation, ing, a.annotationConfig.Annotations)
-	if err != nil && ing_errors.IsValidationError(err) {
-		return config, ing_errors.LocationDeniedError{
-			Reason: fmt.Errorf("failed to parse 'global-rate-limit-window' value: %w", err),
-		}
-	}
-
-	if limit == 0 || rawWindowSize == "" {
-		return config, nil
-	}
-
-	windowSize, err := time.ParseDuration(rawWindowSize)
-	if err != nil {
-		return config, ing_errors.LocationDeniedError{
-			Reason: fmt.Errorf("failed to parse 'global-rate-limit-window' value: %w", err),
-		}
-	}
-
-	key, err := parser.GetStringAnnotation(globalRateLimitKeyAnnotation, ing, a.annotationConfig.Annotations)
-	if err != nil {
-		klog.Warningf("invalid %s, defaulting to %s", globalRateLimitKeyAnnotation, defaultKey)
-	}
-	if key == "" {
-		key = defaultKey
-	}
-
-	rawIgnoredCIDRs, err := parser.GetStringAnnotation(globalRateLimitIgnoredCidrsAnnotation, ing, a.annotationConfig.Annotations)
-	if err != nil && ing_errors.IsInvalidContent(err) {
-		return nil, err
-	}
-	ignoredCIDRs, err := net.ParseCIDRs(rawIgnoredCIDRs)
-	if err != nil {
-		return nil, err
-	}
-
-	config.Namespace = strings.ReplaceAll(string(ing.UID), "-", "")
-	config.Limit = limit
-	config.WindowSize = int(windowSize.Seconds())
-	config.Key = key
-	config.IgnoredCIDRs = ignoredCIDRs
-
-	return config, nil
-}
-
-func (a globalratelimit) GetDocumentation() parser.AnnotationFields {
-	return a.annotationConfig.Annotations
-}
-
-func (a globalratelimit) Validate(anns map[string]string) error {
-	maxrisk := parser.StringRiskToRisk(a.r.GetSecurityConfiguration().AnnotationsRiskLevel)
-	return parser.CheckAnnotationRisk(anns, maxrisk, globalRateLimitAnnotationConfig.Annotations)
-}
diff --git a/internal/ingress/annotations/globalratelimit/main_test.go b/internal/ingress/annotations/globalratelimit/main_test.go
deleted file mode 100644
index b1a7ab71b..000000000
--- a/internal/ingress/annotations/globalratelimit/main_test.go
+++ /dev/null
@@ -1,211 +0,0 @@
-/*
-Copyright 2020 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package globalratelimit
-
-import (
-	"encoding/json"
-	"fmt"
-	"testing"
-
-	api "k8s.io/api/core/v1"
-	networking "k8s.io/api/networking/v1"
-	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-
-	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
-	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
-	"k8s.io/ingress-nginx/internal/ingress/resolver"
-)
-
-const (
-	UID         = "31285d47-b150-4dcf-bd6f-12c46d769f6e"
-	expectedUID = "31285d47b1504dcfbd6f12c46d769f6e"
-)
-
-func buildIngress() *networking.Ingress {
-	defaultBackend := networking.IngressBackend{
-		Service: &networking.IngressServiceBackend{
-			Name: "default-backend",
-			Port: networking.ServiceBackendPort{
-				Number: 80,
-			},
-		},
-	}
-
-	return &networking.Ingress{
-		ObjectMeta: meta_v1.ObjectMeta{
-			Name:      "foo",
-			Namespace: api.NamespaceDefault,
-			UID:       UID,
-		},
-		Spec: networking.IngressSpec{
-			DefaultBackend: &networking.IngressBackend{
-				Service: &networking.IngressServiceBackend{
-					Name: "default-backend",
-					Port: networking.ServiceBackendPort{
-						Number: 80,
-					},
-				},
-			},
-			Rules: []networking.IngressRule{
-				{
-					Host: "foo.bar.com",
-					IngressRuleValue: networking.IngressRuleValue{
-						HTTP: &networking.HTTPIngressRuleValue{
-							Paths: []networking.HTTPIngressPath{
-								{
-									Path:    "/foo",
-									Backend: defaultBackend,
-								},
-							},
-						},
-					},
-				},
-			},
-		},
-	}
-}
-
-type mockBackend struct {
-	resolver.Mock
-}
-
-func TestGlobalRateLimiting(t *testing.T) {
-	ing := buildIngress()
-
-	annRateLimit := parser.GetAnnotationWithPrefix("global-rate-limit")
-	annRateLimitWindow := parser.GetAnnotationWithPrefix("global-rate-limit-window")
-	annRateLimitKey := parser.GetAnnotationWithPrefix("global-rate-limit-key")
-	annRateLimitIgnoredCIDRs := parser.GetAnnotationWithPrefix("global-rate-limit-ignored-cidrs")
-
-	testCases := []struct {
-		title          string
-		annotations    map[string]string
-		expectedConfig *Config
-		expectedErr    error
-	}{
-		{
-			"no annotation",
-			nil,
-			&Config{},
-			nil,
-		},
-		{
-			"minimum required annotations",
-			map[string]string{
-				annRateLimit:       "100",
-				annRateLimitWindow: "2m",
-			},
-			&Config{
-				Namespace:    expectedUID,
-				Limit:        100,
-				WindowSize:   120,
-				Key:          "$remote_addr",
-				IgnoredCIDRs: make([]string, 0),
-			},
-			nil,
-		},
-		{
-			"global-rate-limit-key annotation",
-			map[string]string{
-				annRateLimit:       "100",
-				annRateLimitWindow: "2m",
-				annRateLimitKey:    "$http_x_api_user",
-			},
-			&Config{
-				Namespace:    expectedUID,
-				Limit:        100,
-				WindowSize:   120,
-				Key:          "$http_x_api_user",
-				IgnoredCIDRs: make([]string, 0),
-			},
-			nil,
-		},
-		{
-			"global-rate-limit-ignored-cidrs annotation",
-			map[string]string{
-				annRateLimit:             "100",
-				annRateLimitWindow:       "2m",
-				annRateLimitKey:          "$http_x_api_user",
-				annRateLimitIgnoredCIDRs: "127.0.0.1, 200.200.24.0/24",
-			},
-			&Config{
-				Namespace:    expectedUID,
-				Limit:        100,
-				WindowSize:   120,
-				Key:          "$http_x_api_user",
-				IgnoredCIDRs: []string{"127.0.0.1", "200.200.24.0/24"},
-			},
-			nil,
-		},
-		{
-			"global-rate-limit-complex-key",
-			map[string]string{
-				annRateLimit:       "100",
-				annRateLimitWindow: "2m",
-				annRateLimitKey:    "${http_x_api_user}${otherinfo}",
-			},
-			&Config{
-				Namespace:    expectedUID,
-				Limit:        100,
-				WindowSize:   120,
-				Key:          "${http_x_api_user}${otherinfo}",
-				IgnoredCIDRs: make([]string, 0),
-			},
-			nil,
-		},
-		{
-			"incorrect duration for window",
-			map[string]string{
-				annRateLimit:       "100",
-				annRateLimitWindow: "2mb",
-				annRateLimitKey:    "$http_x_api_user",
-			},
-			&Config{},
-			ing_errors.ValidationError{
-				Reason: fmt.Errorf("failed to parse 'global-rate-limit-window' value: annotation nginx.ingress.kubernetes.io/global-rate-limit-window contains invalid value"),
-			},
-		},
-	}
-
-	for _, testCase := range testCases {
-		ing.SetAnnotations(testCase.annotations)
-
-		i, actualErr := NewParser(mockBackend{}).Parse(ing)
-		if (testCase.expectedErr == nil || actualErr == nil) && testCase.expectedErr != actualErr {
-			t.Errorf("%s expected error '%v' but got '%v'", testCase.title, testCase.expectedErr, actualErr)
-		} else if testCase.expectedErr != nil && actualErr != nil &&
-			testCase.expectedErr.Error() != actualErr.Error() {
-			t.Errorf("expected error '%v' but got '%v'", testCase.expectedErr, actualErr)
-		}
-
-		actualConfig, ok := i.(*Config)
-		if !ok {
-			t.Errorf("expected Config type but got %T", i)
-		}
-		if !testCase.expectedConfig.Equal(actualConfig) {
-			expectedJSON, err := json.Marshal(testCase.expectedConfig)
-			if err != nil {
-				t.Errorf("failed to marshal expected config: %v", err)
-			}
-			actualJSON, err := json.Marshal(actualConfig)
-			if err != nil {
-				t.Errorf("failed to marshal actual config: %v", err)
-			}
-			t.Errorf("%v: expected config '%s' but got '%s'", testCase.title, expectedJSON, actualJSON)
-		}
-	}
-}
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 63029bbbe..9b36667c1 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -718,31 +718,6 @@ type Configuration struct {
 	// Default: text/html
 	DefaultType string `json:"default-type"`
 
-	// GlobalRateLimitMemcachedHost configures memcached host.
-	GlobalRateLimitMemcachedHost string `json:"global-rate-limit-memcached-host"`
-
-	// GlobalRateLimitMemcachedPort configures memcached port.
-	GlobalRateLimitMemcachedPort int `json:"global-rate-limit-memcached-port"`
-
-	// GlobalRateLimitMemcachedConnectTimeout configures timeout when connecting to memcached.
-	// The unit is millisecond.
-	GlobalRateLimitMemcachedConnectTimeout int `json:"global-rate-limit-memcached-connect-timeout"`
-
-	// GlobalRateLimitMemcachedMaxIdleTimeout configured how long connections
-	// should be kept alive in idle state. The unit is millisecond.
-	GlobalRateLimitMemcachedMaxIdleTimeout int `json:"global-rate-limit-memcached-max-idle-timeout"`
-
-	// GlobalRateLimitMemcachedPoolSize configures how many connections
-	// should be kept alive in the pool.
-	// Note that this is per NGINX worker. Make sure your memcached server can
-	// handle `MemcachedPoolSize * <nginx worker count> * <nginx replica count>`
-	// simultaneous connections.
-	GlobalRateLimitMemcachedPoolSize int `json:"global-rate-limit-memcached-pool-size"`
-
-	// GlobalRateLimitStatusCode determines the HTTP status code to return
-	// when limit is exceeding during global rate limiting.
-	GlobalRateLimitStatusCode int `json:"global-rate-limit-status-code"`
-
 	// DebugConnections Enables debugging log for selected client connections
 	// http://nginx.org/en/docs/ngx_core_module.html#debug_connection
 	// Default: ""
@@ -893,39 +868,34 @@ func NewDefault() Configuration {
 			ServiceUpstream:             false,
 			AllowedResponseHeaders:      []string{},
 		},
-		UpstreamKeepaliveConnections:           320,
-		UpstreamKeepaliveTime:                  "1h",
-		UpstreamKeepaliveTimeout:               60,
-		UpstreamKeepaliveRequests:              10000,
-		LimitConnZoneVariable:                  defaultLimitConnZoneVariable,
-		BindAddressIpv4:                        defBindAddress,
-		BindAddressIpv6:                        defBindAddress,
-		OpentelemetryTrustIncomingSpan:         true,
-		OpentelemetryConfig:                    "/etc/ingress-controller/telemetry/opentelemetry.toml",
-		OtlpCollectorPort:                      "4317",
-		OtelServiceName:                        "nginx",
-		OtelSampler:                            "AlwaysOn",
-		OtelSamplerRatio:                       0.01,
-		OtelSamplerParentBased:                 true,
-		OtelScheduleDelayMillis:                5000,
-		OtelMaxExportBatchSize:                 512,
-		OtelMaxQueueSize:                       2048,
-		LimitReqStatusCode:                     503,
-		LimitConnStatusCode:                    503,
-		SyslogPort:                             514,
-		NoTLSRedirectLocations:                 "/.well-known/acme-challenge",
-		NoAuthLocations:                        "/.well-known/acme-challenge",
-		GlobalExternalAuth:                     defGlobalExternalAuth,
-		ProxySSLLocationOnly:                   false,
-		DefaultType:                            "text/html",
-		GlobalRateLimitMemcachedPort:           11211,
-		GlobalRateLimitMemcachedConnectTimeout: 50,
-		GlobalRateLimitMemcachedMaxIdleTimeout: 10000,
-		GlobalRateLimitMemcachedPoolSize:       50,
-		GlobalRateLimitStatusCode:              429,
-		DebugConnections:                       []string{},
-		StrictValidatePathType:                 true,
-		GRPCBufferSizeKb:                       0,
+		UpstreamKeepaliveConnections:   320,
+		UpstreamKeepaliveTime:          "1h",
+		UpstreamKeepaliveTimeout:       60,
+		UpstreamKeepaliveRequests:      10000,
+		LimitConnZoneVariable:          defaultLimitConnZoneVariable,
+		BindAddressIpv4:                defBindAddress,
+		BindAddressIpv6:                defBindAddress,
+		OpentelemetryTrustIncomingSpan: true,
+		OpentelemetryConfig:            "/etc/ingress-controller/telemetry/opentelemetry.toml",
+		OtlpCollectorPort:              "4317",
+		OtelServiceName:                "nginx",
+		OtelSampler:                    "AlwaysOn",
+		OtelSamplerRatio:               0.01,
+		OtelSamplerParentBased:         true,
+		OtelScheduleDelayMillis:        5000,
+		OtelMaxExportBatchSize:         512,
+		OtelMaxQueueSize:               2048,
+		LimitReqStatusCode:             503,
+		LimitConnStatusCode:            503,
+		SyslogPort:                     514,
+		NoTLSRedirectLocations:         "/.well-known/acme-challenge",
+		NoAuthLocations:                "/.well-known/acme-challenge",
+		GlobalExternalAuth:             defGlobalExternalAuth,
+		ProxySSLLocationOnly:           false,
+		DefaultType:                    "text/html",
+		DebugConnections:               []string{},
+		StrictValidatePathType:         true,
+		GRPCBufferSizeKb:               0,
 	}
 
 	if klog.V(5).Enabled() {
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 568edc483..45e11268c 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -379,10 +379,6 @@ func (n *NGINXController) CheckIngress(ing *networking.Ingress) error {
 		if !cfg.AllowSnippetAnnotations && strings.HasSuffix(key, "-snippet") {
 			return fmt.Errorf("%s annotation cannot be used. Snippet directives are disabled by the Ingress administrator", key)
 		}
-
-		if cfg.GlobalRateLimitMemcachedHost == "" && strings.HasPrefix(key, fmt.Sprintf("%s/%s", parser.AnnotationsPrefix, "global-rate-limit")) {
-			return fmt.Errorf("'global-rate-limit*' annotations require 'global-rate-limit-memcached-host' settings configured in the global configmap")
-		}
 	}
 
 	k8s.SetDefaultNGINXPathType(ing)
@@ -1516,7 +1512,6 @@ func locationApplyAnnotations(loc *ingress.Location, anns *annotations.Ingress)
 	loc.Proxy = anns.Proxy
 	loc.ProxySSL = anns.ProxySSL
 	loc.RateLimit = anns.RateLimit
-	loc.GlobalRateLimit = anns.GlobalRateLimit
 	loc.Redirect = anns.Redirect
 	loc.Rewrite = anns.Rewrite
 	loc.UpstreamVhost = anns.UpstreamVhost
diff --git a/internal/ingress/controller/template/configmap.go b/internal/ingress/controller/template/configmap.go
index 2f7b0a09c..481724793 100644
--- a/internal/ingress/controller/template/configmap.go
+++ b/internal/ingress/controller/template/configmap.go
@@ -82,7 +82,6 @@ var (
 		"balancer_ewma_locks":           1024,
 		"certificate_servers":           5120,
 		"ocsp_response_cache":           5120, // keep this same as certificate_servers
-		"global_throttle_cache":         10240,
 	}
 	defaultGlobalAuthRedirectParam = "rd"
 )
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 8628f8090..42ff7417e 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -403,12 +403,6 @@ func configForLua(input interface{}) string {
 		hsts_include_subdomains = %t,
 		hsts_preload = %t,
 
-		global_throttle = {
-			memcached = {
-				host = "%v", port = %d, connect_timeout = %d, max_idle_timeout = %d, pool_size = %d,
-			},
-			status_code = %d,
-		}
 	}`,
 		all.Cfg.UseForwardedHeaders,
 		all.Cfg.UseProxyProtocol,
@@ -421,13 +415,6 @@ func configForLua(input interface{}) string {
 		all.Cfg.HSTSMaxAge,
 		all.Cfg.HSTSIncludeSubdomains,
 		all.Cfg.HSTSPreload,
-
-		all.Cfg.GlobalRateLimitMemcachedHost,
-		all.Cfg.GlobalRateLimitMemcachedPort,
-		all.Cfg.GlobalRateLimitMemcachedConnectTimeout,
-		all.Cfg.GlobalRateLimitMemcachedMaxIdleTimeout,
-		all.Cfg.GlobalRateLimitMemcachedPoolSize,
-		all.Cfg.GlobalRateLimitStatusCode,
 	)
 }
 
@@ -445,30 +432,18 @@ func locationConfigForLua(l, a interface{}) string {
 		return "{}"
 	}
 
-	ignoredCIDRs, err := convertGoSliceIntoLuaTable(location.GlobalRateLimit.IgnoredCIDRs, false)
-	if err != nil {
-		klog.Errorf("failed to convert %v into Lua table: %q", location.GlobalRateLimit.IgnoredCIDRs, err)
-		ignoredCIDRs = "{}"
-	}
-
 	return fmt.Sprintf(`{
 		force_ssl_redirect = %t,
 		ssl_redirect = %t,
 		force_no_ssl_redirect = %t,
 		preserve_trailing_slash = %t,
 		use_port_in_redirects = %t,
-		global_throttle = { namespace = "%v", limit = %d, window_size = %d, key = %v, ignored_cidrs = %v },
 	}`,
 		location.Rewrite.ForceSSLRedirect,
 		location.Rewrite.SSLRedirect,
 		isLocationInLocationList(l, all.Cfg.NoTLSRedirectLocations),
 		location.Rewrite.PreserveTrailingSlash,
 		location.UsePortInRedirects,
-		location.GlobalRateLimit.Namespace,
-		location.GlobalRateLimit.Limit,
-		location.GlobalRateLimit.WindowSize,
-		parseComplexNginxVarIntoLuaTable(location.GlobalRateLimit.Key),
-		ignoredCIDRs,
 	)
 }
 
@@ -1690,54 +1665,6 @@ func buildServerName(hostname string) string {
 	return `~^(?<subdomain>[\w-]+)\.` + strings.Join(parts, "\\.") + `$`
 }
 
-// parseComplexNginxVarIntoLuaTable parses things like "$my${complex}ngx\$var" into
-// [["$var", "complex", "my", "ngx"]]. In other words, 2nd and 3rd elements
-// in the result are actual NGINX variable names, whereas first and 4th elements
-// are string literals.
-func parseComplexNginxVarIntoLuaTable(ngxVar string) string {
-	r := regexp.MustCompile(`(\\\$[0-9a-zA-Z_]+)|\$\{([0-9a-zA-Z_]+)\}|\$([0-9a-zA-Z_]+)|(\$|[^$\\]+)`)
-	matches := r.FindAllStringSubmatch(ngxVar, -1)
-	components := make([][]string, len(matches))
-	for i, match := range matches {
-		components[i] = match[1:]
-	}
-
-	luaTable, err := convertGoSliceIntoLuaTable(components, true)
-	if err != nil {
-		klog.Errorf("unexpected error: %v", err)
-		luaTable = "{}"
-	}
-	return luaTable
-}
-
-func convertGoSliceIntoLuaTable(goSliceInterface interface{}, emptyStringAsNil bool) (string, error) {
-	goSlice := reflect.ValueOf(goSliceInterface)
-	kind := goSlice.Kind()
-
-	switch kind {
-	case reflect.String:
-		if emptyStringAsNil && goSlice.Interface().(string) == "" {
-			return "nil", nil
-		}
-		return fmt.Sprintf(`"%v"`, goSlice.Interface()), nil
-	case reflect.Int, reflect.Bool:
-		return fmt.Sprintf(`%v`, goSlice.Interface()), nil
-	case reflect.Slice, reflect.Array:
-		luaTable := "{ "
-		for i := 0; i < goSlice.Len(); i++ {
-			luaEl, err := convertGoSliceIntoLuaTable(goSlice.Index(i).Interface(), emptyStringAsNil)
-			if err != nil {
-				return "", err
-			}
-			luaTable = luaTable + luaEl + ", "
-		}
-		luaTable += "}"
-		return luaTable, nil
-	default:
-		return "", fmt.Errorf("could not process type: %s", kind)
-	}
-}
-
 func buildOriginRegex(origin string) string {
 	origin = regexp.QuoteMeta(origin)
 	origin = strings.Replace(origin, "\\*", `[A-Za-z0-9\-]+`, 1)
diff --git a/internal/ingress/controller/template/template_test.go b/internal/ingress/controller/template/template_test.go
index 3089e3b32..59d2d6256 100644
--- a/internal/ingress/controller/template/template_test.go
+++ b/internal/ingress/controller/template/template_test.go
@@ -1926,89 +1926,6 @@ func TestBuildServerName(t *testing.T) {
 	}
 }
 
-func TestParseComplexNginxVarIntoLuaTable(t *testing.T) {
-	testCases := []struct {
-		ngxVar           string
-		expectedLuaTable string
-	}{
-		{"foo", `{ { nil, nil, nil, "foo", }, }`},
-		{"$foo", `{ { nil, nil, "foo", nil, }, }`},
-		{"${foo}", `{ { nil, "foo", nil, nil, }, }`},
-		{"\\$foo", `{ { "\$foo", nil, nil, nil, }, }`},
-		{
-			"foo\\$bar$baz${daz}xiyar$pomidor",
-			`{ { nil, nil, nil, "foo", }, { "\$bar", nil, nil, nil, }, { nil, nil, "baz", nil, }, ` +
-				`{ nil, "daz", nil, nil, }, { nil, nil, nil, "xiyar", }, { nil, nil, "pomidor", nil, }, }`,
-		},
-	}
-
-	for _, testCase := range testCases {
-		actualLuaTable := parseComplexNginxVarIntoLuaTable(testCase.ngxVar)
-		if actualLuaTable != testCase.expectedLuaTable {
-			t.Errorf("expected %v but returned %v", testCase.expectedLuaTable, actualLuaTable)
-		}
-	}
-}
-
-func TestConvertGoSliceIntoLuaTablet(t *testing.T) {
-	testCases := []struct {
-		title            string
-		goSlice          interface{}
-		emptyStringAsNil bool
-		expectedLuaTable string
-		expectedErr      error
-	}{
-		{
-			"flat string slice",
-			[]string{"one", "two", "three"},
-			false,
-			`{ "one", "two", "three", }`,
-			nil,
-		},
-		{
-			"nested string slice",
-			[][]string{{"one", "", "three"}, {"foo", "bar"}},
-			false,
-			`{ { "one", "", "three", }, { "foo", "bar", }, }`,
-			nil,
-		},
-		{
-			"converts empty string to nil when enabled",
-			[][]string{{"one", "", "three"}, {"foo", "bar"}},
-			true,
-			`{ { "one", nil, "three", }, { "foo", "bar", }, }`,
-			nil,
-		},
-		{
-			"boolean slice",
-			[]bool{true, true, false},
-			false,
-			`{ true, true, false, }`,
-			nil,
-		},
-		{
-			"integer slice",
-			[]int{4, 3, 6},
-			false,
-			`{ 4, 3, 6, }`,
-			nil,
-		},
-	}
-
-	for _, testCase := range testCases {
-		actualLuaTable, err := convertGoSliceIntoLuaTable(testCase.goSlice, testCase.emptyStringAsNil)
-		if testCase.expectedErr != nil && err != nil && testCase.expectedErr.Error() != err.Error() {
-			t.Errorf("expected error '%v' but returned '%v'", testCase.expectedErr, err)
-		}
-		if testCase.expectedErr == nil && err != nil {
-			t.Errorf("expected error to be nil but returned '%v'", err)
-		}
-		if testCase.expectedLuaTable != actualLuaTable {
-			t.Errorf("%v: expected '%v' but returned '%v'", testCase.title, testCase.expectedLuaTable, actualLuaTable)
-		}
-	}
-}
-
 func TestCleanConf(t *testing.T) {
 	testDataDir, err := getTestDataDir()
 	if err != nil {
diff --git a/pkg/apis/ingress/types.go b/pkg/apis/ingress/types.go
index 36067732e..9370333c1 100644
--- a/pkg/apis/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -29,7 +29,6 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/annotations/cors"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/customheaders"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/fastcgi"
-	"k8s.io/ingress-nginx/internal/ingress/annotations/globalratelimit"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipallowlist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/ipdenylist"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/log"
@@ -285,10 +284,6 @@ type Location struct {
 	// The Redirect annotation precedes RateLimit
 	// +optional
 	RateLimit ratelimit.Config `json:"rateLimit,omitempty"`
-	// GlobalRateLimit similar to RateLimit
-	// but this is applied globally across multiple replicas.
-	// +optional
-	GlobalRateLimit globalratelimit.Config `json:"globalRateLimit,omitempty"`
 	// Redirect describes a temporal o permanent redirection this location.
 	// +optional
 	Redirect redirect.Config `json:"redirect,omitempty"`
diff --git a/pkg/apis/ingress/types_equals.go b/pkg/apis/ingress/types_equals.go
index eeed9a06e..aa6c3efa7 100644
--- a/pkg/apis/ingress/types_equals.go
+++ b/pkg/apis/ingress/types_equals.go
@@ -390,9 +390,6 @@ func (l1 *Location) Equal(l2 *Location) bool {
 	if !(&l1.RateLimit).Equal(&l2.RateLimit) {
 		return false
 	}
-	if !(&l1.GlobalRateLimit).Equal(&l2.GlobalRateLimit) {
-		return false
-	}
 	if !(&l1.Redirect).Equal(&l2.Redirect) {
 		return false
 	}
diff --git a/rootfs/etc/nginx/lua/global_throttle.lua b/rootfs/etc/nginx/lua/global_throttle.lua
deleted file mode 100644
index bea8cfd17..000000000
--- a/rootfs/etc/nginx/lua/global_throttle.lua
+++ /dev/null
@@ -1,131 +0,0 @@
-local resty_global_throttle = require("resty.global_throttle")
-local resty_ipmatcher = require("resty.ipmatcher")
-local util = require("util")
-
-local ngx = ngx
-local ngx_exit = ngx.exit
-local ngx_log = ngx.log
-local ngx_ERR = ngx.ERR
-local ngx_INFO = ngx.INFO
-
-local _M = {}
-
-local DECISION_CACHE = ngx.shared.global_throttle_cache
-
--- it does not make sense to cache decision for too little time
--- the benefit of caching likely is negated if we cache for too little time
--- Lua Shared Dict's time resolution for expiry is 0.001.
-local CACHE_THRESHOLD = 0.001
-
-local DEFAULT_RAW_KEY = "remote_addr"
-
-local function should_ignore_request(ignored_cidrs)
-  if not ignored_cidrs or #ignored_cidrs == 0 then
-    return false
-  end
-
-  local ignored_cidrs_matcher, err = resty_ipmatcher.new(ignored_cidrs)
-  if not ignored_cidrs_matcher then
-    ngx_log(ngx_ERR, "failed to initialize resty-ipmatcher: ", err)
-    return false
-  end
-
-  local is_ignored
-  is_ignored, err = ignored_cidrs_matcher:match(ngx.var.remote_addr)
-  if err then
-    ngx_log(ngx_ERR, "failed to match ip: '",
-      ngx.var.remote_addr, "': ", err)
-    return false
-  end
-
-  return is_ignored
-end
-
-local function is_enabled(config, location_config)
-  if config.memcached.host == "" or config.memcached.port == 0 then
-    return false
-  end
-  if location_config.limit == 0 or
-    location_config.window_size == 0 then
-    return false
-  end
-
-  if should_ignore_request(location_config.ignored_cidrs) then
-    return false
-  end
-
-  return true
-end
-
-local function get_namespaced_key_value(namespace, key_value)
-  return namespace .. key_value
-end
-
-function _M.throttle(config, location_config)
-  if not is_enabled(config, location_config) then
-    return
-  end
-
-  local key_value = util.generate_var_value(location_config.key)
-  if not key_value or key_value == "" then
-    key_value = ngx.var[DEFAULT_RAW_KEY]
-  end
-
-  local namespaced_key_value =
-    get_namespaced_key_value(location_config.namespace, key_value)
-
-  local is_limit_exceeding = DECISION_CACHE:get(namespaced_key_value)
-  if is_limit_exceeding then
-    ngx.var.global_rate_limit_exceeding = "c"
-    return ngx_exit(config.status_code)
-  end
-
-  local my_throttle, err = resty_global_throttle.new(
-    location_config.namespace,
-    location_config.limit,
-    location_config.window_size,
-    {
-      provider = "memcached",
-      host = config.memcached.host,
-      port = config.memcached.port,
-      connect_timeout = config.memcached.connect_timeout,
-      max_idle_timeout = config.memcached.max_idle_timeout,
-      pool_size = config.memcached.pool_size,
-    }
-  )
-  if err then
-    ngx.log(ngx.ERR, "faled to initialize resty_global_throttle: ", err)
-    -- fail open
-    return
-  end
-
-  local desired_delay, estimated_final_count
-  estimated_final_count, desired_delay, err = my_throttle:process(key_value)
-  if err then
-    ngx.log(ngx.ERR, "error while processing key: ", err)
-    -- fail open
-    return
-  end
-
-  if desired_delay then
-    if desired_delay > CACHE_THRESHOLD then
-      local ok
-      ok, err =
-        DECISION_CACHE:safe_add(namespaced_key_value, true, desired_delay)
-      if not ok then
-        if err ~= "exists" then
-          ngx_log(ngx_ERR, "failed to cache decision: ", err)
-        end
-      end
-    end
-
-    ngx.var.global_rate_limit_exceeding = "y"
-    ngx_log(ngx_INFO, "limit is exceeding for ",
-      location_config.namespace, "/", key_value,
-      " with estimated_final_count: ", estimated_final_count)
-
-    return ngx_exit(config.status_code)
-  end
-end
-
-return _M
diff --git a/rootfs/etc/nginx/lua/lua_ingress.lua b/rootfs/etc/nginx/lua/lua_ingress.lua
index 49e0f5b05..65cf5a257 100644
--- a/rootfs/etc/nginx/lua/lua_ingress.lua
+++ b/rootfs/etc/nginx/lua/lua_ingress.lua
@@ -2,7 +2,6 @@ local ngx_re_split = require("ngx.re").split
 
 local certificate_configured_for_current_request =
   require("certificate").configured_for_current_request
-local global_throttle = require("global_throttle")
 
 local ngx = ngx
 local io = io
@@ -164,7 +163,6 @@ function _M.rewrite(location_config)
     return ngx_redirect(uri, config.http_redirect_code)
   end
 
-  global_throttle.throttle(config.global_throttle, location_config.global_throttle)
 end
 
 function _M.header()
diff --git a/rootfs/etc/nginx/lua/test/global_throttle_test.lua b/rootfs/etc/nginx/lua/test/global_throttle_test.lua
deleted file mode 100644
index b8db740ad..000000000
--- a/rootfs/etc/nginx/lua/test/global_throttle_test.lua
+++ /dev/null
@@ -1,258 +0,0 @@
-local util = require("util")
-
-local function assert_request_rejected(config, location_config, opts)
-  stub(ngx, "exit")
-
-  local global_throttle = require_without_cache("global_throttle")
-  assert.has_no.errors(function()
-    global_throttle.throttle(config, location_config)
-  end)
-
-  assert.stub(ngx.exit).was_called_with(config.status_code)
-  if opts.with_cache then
-    assert.are.same("c", ngx.var.global_rate_limit_exceeding)
-  else
-    assert.are.same("y", ngx.var.global_rate_limit_exceeding)
-  end
-end
-
-local function assert_request_not_rejected(config, location_config)
-  stub(ngx, "exit")
-  local cache_safe_add_spy = spy.on(ngx.shared.global_throttle_cache, "safe_add")
-
-  local global_throttle = require_without_cache("global_throttle")
-  assert.has_no.errors(function()
-    global_throttle.throttle(config, location_config)
-  end)
-
-  assert.stub(ngx.exit).was_not_called()
-  assert.is_nil(ngx.var.global_rate_limit_exceeding)
-  assert.spy(cache_safe_add_spy).was_not_called()
-end
-
-local function assert_short_circuits(f)
-  local cache_get_spy = spy.on(ngx.shared.global_throttle_cache, "get")
-
-  local resty_global_throttle = require_without_cache("resty.global_throttle")
-  local resty_global_throttle_new_spy = spy.on(resty_global_throttle, "new")
-
-  local global_throttle = require_without_cache("global_throttle")
-
-  f(global_throttle)
-
-  assert.spy(resty_global_throttle_new_spy).was_not_called()
-  assert.spy(cache_get_spy).was_not_called()
-end
-
-local function assert_fails_open(config, location_config, ...)
-  stub(ngx, "exit")
-  stub(ngx, "log")
-
-  local global_throttle = require_without_cache("global_throttle")
-
-  assert.has_no.errors(function()
-    global_throttle.throttle(config, location_config)
-  end)
-
-  assert.stub(ngx.exit).was_not_called()
-  assert.stub(ngx.log).was_called_with(ngx.ERR, ...)
-  assert.is_nil(ngx.var.global_rate_limit_exceeding)
-end
-
-local function stub_resty_global_throttle_process(ret1, ret2, ret3, f)
-  local resty_global_throttle = require_without_cache("resty.global_throttle")
-  local resty_global_throttle_mock = {
-    process = function(self, key) return ret1, ret2, ret3 end
-  }
-  stub(resty_global_throttle, "new", resty_global_throttle_mock)
-
-  f()
-
-  assert.stub(resty_global_throttle.new).was_called()
-end
-
-local function cache_rejection_decision(namespace, key_value, desired_delay)
-  local namespaced_key_value = namespace .. key_value
-  local ok, err = ngx.shared.global_throttle_cache:safe_add(namespaced_key_value, true, desired_delay)
-  assert.is_nil(err)
-  assert.is_true(ok)
-  assert.is_true(ngx.shared.global_throttle_cache:get(namespaced_key_value))
-end
-
-describe("global_throttle", function()
-  local snapshot
-
-  local NAMESPACE = "31285d47b1504dcfbd6f12c46d769f6e"
-  local LOCATION_CONFIG = {
-    namespace = NAMESPACE,
-    limit = 10,
-    window_size = 60,
-    key = {},
-    ignored_cidrs = {},
-  }
-  local CONFIG = {
-    memcached = {
-      host = "memc.default.svc.cluster.local", port = 11211,
-      connect_timeout = 50, max_idle_timeout = 10000, pool_size = 50,
-    },
-    status_code = 429,
-  }
-
-  before_each(function()
-    snapshot = assert:snapshot()
-
-    ngx.var = { remote_addr = "127.0.0.1", global_rate_limit_exceeding = nil }
-  end)
-
-  after_each(function()
-    snapshot:revert()
-
-    ngx.shared.global_throttle_cache:flush_all()
-    reset_ngx()
-  end)
-
-  it("short circuits when memcached is not configured", function()
-    assert_short_circuits(function(global_throttle)
-      assert.has_no.errors(function()
-        global_throttle.throttle({ memcached = { host = "", port = 0 } }, LOCATION_CONFIG)
-      end)
-    end)
-  end)
-
-  it("short circuits when limit or window_size is not configured", function()
-    assert_short_circuits(function(global_throttle)
-      local location_config_copy = util.deepcopy(LOCATION_CONFIG)
-      location_config_copy.limit = 0
-      assert.has_no.errors(function()
-        global_throttle.throttle(CONFIG, location_config_copy)
-      end)
-    end)
-
-    assert_short_circuits(function(global_throttle)
-      local location_config_copy = util.deepcopy(LOCATION_CONFIG)
-      location_config_copy.window_size = 0
-      assert.has_no.errors(function()
-        global_throttle.throttle(CONFIG, location_config_copy)
-      end)
-    end)
-  end)
-
-  it("short circuits when remote_addr is in ignored_cidrs", function()
-    local global_throttle = require_without_cache("global_throttle")
-    local location_config = util.deepcopy(LOCATION_CONFIG)
-    location_config.ignored_cidrs = { ngx.var.remote_addr }
-    assert_short_circuits(function(global_throttle)
-      assert.has_no.errors(function()
-        global_throttle.throttle(CONFIG, location_config)
-      end)
-    end)
-  end)
-
-  it("rejects when exceeding limit has already been cached", function()
-    local key_value = "foo"
-    local location_config = util.deepcopy(LOCATION_CONFIG)
-    location_config.key = { { nil, nil, nil, key_value } }
-    cache_rejection_decision(NAMESPACE, key_value, 0.5)
-
-    assert_request_rejected(CONFIG, location_config, { with_cache = true })
-  end)
-
-  describe("when resty_global_throttle fails", function()
-    it("fails open in case of initialization error", function()
-      local too_long_namespace = ""
-      for i=1,36,1 do
-        too_long_namespace = too_long_namespace .. "a"
-      end
-
-      local location_config = util.deepcopy(LOCATION_CONFIG)
-      location_config.namespace = too_long_namespace
-
-      assert_fails_open(CONFIG, location_config, "faled to initialize resty_global_throttle: ", "'namespace' can be at most 35 characters")
-    end)
-
-    it("fails open in case of key processing error", function()
-      stub_resty_global_throttle_process(nil, nil, "failed to process", function()
-        assert_fails_open(CONFIG, LOCATION_CONFIG, "error while processing key: ", "failed to process")
-      end)
-    end)
-  end)
-
-  it("initializes resty_global_throttle with the right parameters", function()
-    local resty_global_throttle = require_without_cache("resty.global_throttle")
-    local resty_global_throttle_original_new = resty_global_throttle.new
-    resty_global_throttle.new = function(namespace, limit, window_size, store_opts)
-      local o, err = resty_global_throttle_original_new(namespace, limit, window_size, store_opts)
-      if not o then
-        return nil, err
-      end
-      o.process = function(self, key) return 1, nil, nil end
-
-      local expected = LOCATION_CONFIG
-      assert.are.same(expected.namespace, namespace)
-      assert.are.same(expected.limit, limit)
-      assert.are.same(expected.window_size, window_size)
-
-      assert.are.same("memcached", store_opts.provider)
-      assert.are.same(CONFIG.memcached.host, store_opts.host)
-      assert.are.same(CONFIG.memcached.port, store_opts.port)
-      assert.are.same(CONFIG.memcached.connect_timeout, store_opts.connect_timeout)
-      assert.are.same(CONFIG.memcached.max_idle_timeout, store_opts.max_idle_timeout)
-      assert.are.same(CONFIG.memcached.pool_size, store_opts.pool_size)
-
-      return o, nil
-    end
-    local resty_global_throttle_new_spy = spy.on(resty_global_throttle, "new")
-
-    local global_throttle = require_without_cache("global_throttle")
-
-    assert.has_no.errors(function()
-      global_throttle.throttle(CONFIG, LOCATION_CONFIG)
-    end)
-
-    assert.spy(resty_global_throttle_new_spy).was_called()
-  end)
-
-  it("rejects request and caches decision when limit is exceeding after processing a key", function()
-    local desired_delay = 0.015
-
-    stub_resty_global_throttle_process(LOCATION_CONFIG.limit + 1, desired_delay, nil, function()
-      assert_request_rejected(CONFIG, LOCATION_CONFIG, { with_cache = false })
-
-      local cache_key = LOCATION_CONFIG.namespace .. ngx.var.remote_addr
-      assert.is_true(ngx.shared.global_throttle_cache:get(cache_key))
-
-      -- we assume it won't take more than this  after caching
-      -- until we execute the assertion below
-      local delta = 0.001
-      local ttl = ngx.shared.global_throttle_cache:ttl(cache_key)
-      assert.is_true(ttl > desired_delay - delta)
-      assert.is_true(ttl <= desired_delay)
-    end)
-  end)
-
-  it("rejects request and skip caching of decision when limit is exceeding after processing a key but desired delay is lower than the threshold", function()
-    local desired_delay = 0.0009
-
-    stub_resty_global_throttle_process(LOCATION_CONFIG.limit, desired_delay, nil, function()
-      assert_request_rejected(CONFIG, LOCATION_CONFIG, { with_cache = false })
-
-      local cache_key = LOCATION_CONFIG.namespace .. ngx.var.remote_addr
-      assert.is_nil(ngx.shared.global_throttle_cache:get(cache_key))
-    end)
-  end)
-
-  it("allows the request when limit is not exceeding after processing a key", function()
-    stub_resty_global_throttle_process(LOCATION_CONFIG.limit - 3, nil, nil,
-      function()
-        assert_request_not_rejected(CONFIG, LOCATION_CONFIG)
-      end
-    )
-  end)
-
-  it("rejects with custom status code", function()
-    cache_rejection_decision(NAMESPACE, ngx.var.remote_addr, 0.3)
-    local config = util.deepcopy(CONFIG)
-    config.status_code = 503
-    assert_request_rejected(config, LOCATION_CONFIG, { with_cache = true })
-  end)
-end)
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 1c630bb4d..4f705976f 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -1242,7 +1242,6 @@ stream {
             set $service_name   {{ $ing.Service | quote }};
             set $service_port   {{ $ing.ServicePort | quote }};
             set $location_path  {{ $ing.Path | escapeLiteralDollar | quote }};
-            set $global_rate_limit_exceeding n;
 
             {{ buildOpentelemetryForLocation $all.Cfg.EnableOpentelemetry $all.Cfg.OpentelemetryTrustIncomingSpan $location }}
 
diff --git a/test/e2e/admission/admission.go b/test/e2e/admission/admission.go
index 124e1784d..873e6719d 100644
--- a/test/e2e/admission/admission.go
+++ b/test/e2e/admission/admission.go
@@ -44,33 +44,6 @@ var _ = framework.IngressNginxDescribeSerial("[Admission] admission controller",
 		f.NewSlowEchoDeployment()
 	})
 
-	ginkgo.It("reject ingress with global-rate-limit annotations when memcached is not configured", func() {
-		host := admissionTestHost
-
-		annotations := map[string]string{
-			"nginx.ingress.kubernetes.io/global-rate-limit":        "100",
-			"nginx.ingress.kubernetes.io/global-rate-limit-window": "1m",
-		}
-		ing := framework.NewSingleIngress("first-ingress", "/", host, f.Namespace, framework.EchoService, 80, annotations)
-
-		ginkgo.By("rejects ingress when memcached is not configured")
-
-		_, err := f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), ing, metav1.CreateOptions{})
-		assert.NotNil(ginkgo.GinkgoT(), err, "creating ingress with global throttle annotations when memcached is not configured")
-
-		ginkgo.By("accepts ingress when memcached is not configured")
-
-		f.UpdateNginxConfigMapData("global-rate-limit-memcached-host", "memc.default.svc.cluster.local")
-
-		_, err = f.KubeClientSet.NetworkingV1().Ingresses(f.Namespace).Create(context.TODO(), ing, metav1.CreateOptions{})
-		assert.Nil(ginkgo.GinkgoT(), err, "creating ingress with global throttle annotations when memcached is configured")
-
-		f.WaitForNginxServer(host,
-			func(server string) bool {
-				return strings.Contains(server, fmt.Sprintf("server_name %v", host))
-			})
-	})
-
 	ginkgo.It("should not allow overlaps of host and paths without canary annotations", func() {
 		host := admissionTestHost
 
diff --git a/test/e2e/annotations/globalratelimit.go b/test/e2e/annotations/globalratelimit.go
deleted file mode 100644
index 96be467fe..000000000
--- a/test/e2e/annotations/globalratelimit.go
+++ /dev/null
@@ -1,88 +0,0 @@
-/*
-Copyright 2020 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package annotations
-
-import (
-	"fmt"
-	"net/http"
-	"strings"
-
-	"github.com/onsi/ginkgo/v2"
-	"github.com/stretchr/testify/assert"
-
-	"k8s.io/ingress-nginx/test/e2e/framework"
-)
-
-var _ = framework.DescribeAnnotation("annotation-global-rate-limit", func() {
-	f := framework.NewDefaultFramework("global-rate-limit")
-	host := "global-rate-limit-annotation"
-
-	ginkgo.BeforeEach(func() {
-		f.NewEchoDeployment()
-	})
-
-	ginkgo.It("generates correct configuration", func() {
-		annotations := make(map[string]string)
-		annotations["nginx.ingress.kubernetes.io/global-rate-limit"] = "5"
-		annotations["nginx.ingress.kubernetes.io/global-rate-limit-window"] = "2m"
-
-		// We need to allow { and } characters for this annotation to work
-		f.UpdateNginxConfigMapData("annotation-value-word-blocklist", "load_module, lua_package, _by_lua, location, root")
-		// Sleep a while just to guarantee that the configmap is applied
-		framework.Sleep()
-
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
-		ing = f.EnsureIngress(ing)
-		namespace := strings.ReplaceAll(string(ing.UID), "-", "")
-
-		serverConfig := ""
-		f.WaitForNginxServer(host, func(server string) bool {
-			serverConfig = server
-			return true
-		})
-		assert.Contains(ginkgo.GinkgoT(), serverConfig,
-			fmt.Sprintf(`global_throttle = { namespace = "%v", `+
-				`limit = 5, window_size = 120, key = { { nil, nil, "remote_addr", nil, }, }, `+
-				`ignored_cidrs = { } }`,
-				namespace))
-
-		f.HTTPTestClient().GET("/").WithHeader("Host", host).Expect().Status(http.StatusOK)
-
-		ginkgo.By("regenerating the correct configuration after update")
-		annotations["nginx.ingress.kubernetes.io/global-rate-limit-key"] = "${remote_addr}${http_x_api_client}"
-		annotations["nginx.ingress.kubernetes.io/global-rate-limit-ignored-cidrs"] = "192.168.1.1, 234.234.234.0/24"
-		ing.SetAnnotations(annotations)
-
-		f.WaitForReload(func() {
-			ing = f.UpdateIngress(ing)
-		})
-
-		serverConfig = ""
-		f.WaitForNginxServer(host, func(server string) bool {
-			serverConfig = server
-			return true
-		})
-		assert.Contains(ginkgo.GinkgoT(), serverConfig,
-			fmt.Sprintf(`global_throttle = { namespace = "%v", `+
-				`limit = 5, window_size = 120, `+
-				`key = { { nil, "remote_addr", nil, nil, }, { nil, "http_x_api_client", nil, nil, }, }, `+
-				`ignored_cidrs = { "192.168.1.1", "234.234.234.0/24", } }`,
-				namespace))
-
-		f.HTTPTestClient().GET("/").WithHeader("Host", host).Expect().Status(http.StatusOK)
-	})
-})
diff --git a/test/e2e/settings/globalratelimit.go b/test/e2e/settings/globalratelimit.go
deleted file mode 100644
index e266350ad..000000000
--- a/test/e2e/settings/globalratelimit.go
+++ /dev/null
@@ -1,96 +0,0 @@
-/*
-Copyright 2020 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package settings
-
-import (
-	"fmt"
-	"net/http"
-	"strconv"
-	"strings"
-
-	"github.com/onsi/ginkgo/v2"
-	"github.com/stretchr/testify/assert"
-	"k8s.io/ingress-nginx/test/e2e/framework"
-)
-
-var _ = framework.DescribeSetting("settings-global-rate-limit", func() {
-	f := framework.NewDefaultFramework("global-rate-limit")
-	host := "global-rate-limit"
-
-	ginkgo.BeforeEach(func() {
-		f.NewEchoDeployment()
-	})
-
-	ginkgo.It("generates correct NGINX configuration", func() {
-		annotations := make(map[string]string)
-		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
-		f.EnsureIngress(ing)
-
-		ginkgo.By("generating correct defaults")
-
-		ngxCfg := ""
-		f.WaitForNginxConfiguration(func(cfg string) bool {
-			if strings.Contains(cfg, "global_throttle") {
-				ngxCfg = cfg
-				return true
-			}
-			return false
-		})
-
-		assert.Contains(ginkgo.GinkgoT(), ngxCfg, fmt.Sprintf(`global_throttle = { `+
-			`memcached = { host = "%v", port = %d, connect_timeout = %d, max_idle_timeout = %d, `+
-			`pool_size = %d, }, status_code = %d, }`,
-			"", 11211, 50, 10000, 50, 429))
-
-		f.HTTPTestClient().GET("/").WithHeader("Host", host).Expect().Status(http.StatusOK)
-
-		ginkgo.By("applying customizations")
-
-		memcachedHost := "memc.default.svc.cluster.local"
-		memcachedPort := 11211
-		memcachedConnectTimeout := 100
-		memcachedMaxIdleTimeout := 5000
-		memcachedPoolSize := 100
-		statusCode := 503
-
-		f.SetNginxConfigMapData(map[string]string{
-			"global-rate-limit-memcached-host":             memcachedHost,
-			"global-rate-limit-memcached-port":             strconv.Itoa(memcachedPort),
-			"global-rate-limit-memcached-connect-timeout":  strconv.Itoa(memcachedConnectTimeout),
-			"global-rate-limit-memcached-max-idle-timeout": strconv.Itoa(memcachedMaxIdleTimeout),
-			"global-rate-limit-memcached-pool-size":        strconv.Itoa(memcachedPoolSize),
-			"global-rate-limit-status-code":                strconv.Itoa(statusCode),
-		})
-
-		ngxCfg = ""
-		f.WaitForNginxConfiguration(func(cfg string) bool {
-			if strings.Contains(cfg, "global_throttle") {
-				ngxCfg = cfg
-				return true
-			}
-			return false
-		})
-
-		assert.Contains(ginkgo.GinkgoT(), ngxCfg, fmt.Sprintf(`global_throttle = { `+
-			`memcached = { host = "%v", port = %d, connect_timeout = %d, max_idle_timeout = %d, `+
-			`pool_size = %d, }, status_code = %d, }`,
-			memcachedHost, memcachedPort, memcachedConnectTimeout, memcachedMaxIdleTimeout,
-			memcachedPoolSize, statusCode))
-
-		f.HTTPTestClient().GET("/").WithHeader("Host", host).Expect().Status(http.StatusOK)
-	})
-})
diff --git a/test/test-lua.sh b/test/test-lua.sh
index 1aff5f30c..e7ee5843e 100755
--- a/test/test-lua.sh
+++ b/test/test-lua.sh
@@ -36,7 +36,6 @@ SHDICT_ARGS=(
     "--shdict" "high_throughput_tracker 1M"
     "--shdict" "balancer_ewma_last_touched_at 1M"
     "--shdict" "balancer_ewma_locks 512k"
-    "--shdict" "global_throttle_cache 5M"
     "./rootfs/etc/nginx/lua/test/run.lua"
 )
 

From 8b20427d020216c4607d51603fd32620423b7008 Mon Sep 17 00:00:00 2001
From: Seonghyeon Cho <seonghyeoncho96@gmail.com>
Date: Mon, 26 Aug 2024 05:12:02 +0900
Subject: [PATCH 1415/1641] Update maxmind post link about geolite2 license
 changes (#11861)

Signed-off-by: Seonghyeon Cho <seonghyeoncho96@gmail.com>
---
 Changelog.md                                     | 2 +-
 charts/ingress-nginx/README.md                   | 2 +-
 charts/ingress-nginx/values.yaml                 | 2 +-
 docs/user-guide/cli-arguments.md                 | 2 +-
 docs/user-guide/nginx-configuration/configmap.md | 2 +-
 pkg/flags/flags.go                               | 2 +-
 6 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/Changelog.md b/Changelog.md
index 400c187f7..f74ff8119 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -2057,7 +2057,7 @@ _Breaking Changes:_
 
   ```
   Due to upcoming data privacy regulations, we are making significant changes to how you access free GeoLite2 databases starting December 30, 2019.
-  Learn more on our blog https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases/
+  Learn more on our blog https://blog.maxmind.com/2019/12/significant-changes-to-accessing-and-using-geolite2-databases/
   ```
 
   Because of this change, it is not clear we can provide the databases directly from the docker image.
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index f69d2951b..381ff3a6b 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -367,7 +367,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.livenessProbe.periodSeconds | int | `10` |  |
 | controller.livenessProbe.successThreshold | int | `1` |  |
 | controller.livenessProbe.timeoutSeconds | int | `1` |  |
-| controller.maxmindLicenseKey | string | `""` | Maxmind license key to download GeoLite2 Databases. # https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases |
+| controller.maxmindLicenseKey | string | `""` | Maxmind license key to download GeoLite2 Databases. # https://blog.maxmind.com/2019/12/significant-changes-to-accessing-and-using-geolite2-databases/ |
 | controller.metrics.enabled | bool | `false` |  |
 | controller.metrics.port | int | `10254` |  |
 | controller.metrics.portName | string | `"metrics"` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 89cb718c4..eee537ffe 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -198,7 +198,7 @@ controller:
     # -- Annotations to be added to the udp config configmap
     annotations: {}
   # -- Maxmind license key to download GeoLite2 Databases.
-  ## https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases
+  ## https://blog.maxmind.com/2019/12/significant-changes-to-accessing-and-using-geolite2-databases/
   maxmindLicenseKey: ""
   # -- Additional command line arguments to pass to Ingress-Nginx Controller
   # E.g. to specify the default SSL certificate you can use
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index 018467dda..5315dd325 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -45,7 +45,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--maxmind-edition-ids`            | Maxmind edition ids to download GeoLite2 Databases. (default "GeoLite2-City,GeoLite2-ASN") |
 | `--maxmind-retries-timeout`        | Maxmind downloading delay between 1st and 2nd attempt, 0s - do not retry to download if something went wrong. (default 0s) |
 | `--maxmind-retries-count`          | Number of attempts to download the GeoIP DB. (default 1) |
-| `--maxmind-license-key`            | Maxmind license key to download GeoLite2 Databases. https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases . |
+| `--maxmind-license-key`            | Maxmind license key to download GeoLite2 Databases. https://blog.maxmind.com/2019/12/significant-changes-to-accessing-and-using-geolite2-databases/ . |
 | `--maxmind-mirror`            | Maxmind mirror url (example: http://geoip.local/databases. |
 | `--metrics-per-host`               | Export metrics per-host. (default true) |
 | `--monitor-max-batch-size`               | Max batch size of NGINX metrics. (default 10000)|
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index ab96a17d1..51896e3a1 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -714,7 +714,7 @@ _**default:**_ true
 ## use-geoip2
 
 Enables the [geoip2 module](https://github.com/leev/ngx_http_geoip2_module) for NGINX.
-Since `0.27.0` and due to a [change in the MaxMind databases](https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases) a license is required to have access to the databases.
+Since `0.27.0` and due to a [change in the MaxMind databases](https://blog.maxmind.com/2019/12/significant-changes-to-accessing-and-using-geolite2-databases/) a license is required to have access to the databases.
 For this reason, it is required to define a new flag `--maxmind-license-key` in the ingress controller deployment to download the databases needed during the initialization of the ingress controller.
 Alternatively, it is possible to use a volume to mount the files `/etc/ingress-controller/geoip/GeoLite2-City.mmdb` and `/etc/ingress-controller/geoip/GeoLite2-ASN.mmdb`, avoiding the overhead of the download.
 
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index 15da701e7..5a1ab0aa9 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -234,7 +234,7 @@ Takes the form "<host>:port". If not provided, no admission controller is starte
 
 	flags.StringVar(&nginx.MaxmindMirror, "maxmind-mirror", "", `Maxmind mirror url (example: http://geoip.local/databases.`)
 	flags.StringVar(&nginx.MaxmindLicenseKey, "maxmind-license-key", "", `Maxmind license key to download GeoLite2 Databases.
-https://blog.maxmind.com/2019/12/18/significant-changes-to-accessing-and-using-geolite2-databases .`)
+https://blog.maxmind.com/2019/12/significant-changes-to-accessing-and-using-geolite2-databases/ .`)
 	flags.StringVar(&nginx.MaxmindEditionIDs, "maxmind-edition-ids", "GeoLite2-City,GeoLite2-ASN", `Maxmind edition ids to download GeoLite2 Databases.`)
 	flags.IntVar(&nginx.MaxmindRetriesCount, "maxmind-retries-count", 1, "Number of attempts to download the GeoIP DB.")
 	flags.DurationVar(&nginx.MaxmindRetriesTimeout, "maxmind-retries-timeout", time.Second*0, "Maxmind downloading delay between 1st and 2nd attempt, 0s - do not retry to download if something went wrong.")

From b75bebb6c94999cb4ee5dda5fc1a816519f85983 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 26 Aug 2024 13:31:57 +0200
Subject: [PATCH 1416/1641] Bump github/codeql-action from 3.26.2 to 3.26.5 in
 the all group (#11867)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 3301b12cf..2a1489f5d 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@429e1977040da7a23b6822b13c129cd1ba93dbb2 # v3.26.2
+        uses: github/codeql-action/upload-sarif@2c779ab0d087cd7fe7b826087247c2c81f27bfa6 # v3.26.5
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index dcf012368..2d135695d 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@429e1977040da7a23b6822b13c129cd1ba93dbb2 # v3.26.2
+        uses: github/codeql-action/upload-sarif@2c779ab0d087cd7fe7b826087247c2c81f27bfa6 # v3.26.5
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 93f9f9fbb30cb90b0f7e4f86908e38fedcb2a6fa Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 26 Aug 2024 15:58:34 +0200
Subject: [PATCH 1417/1641] Bump the all group with 2 updates (#11865)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 95123b04b..0f43520cc 100644
--- a/go.mod
+++ b/go.mod
@@ -14,10 +14,10 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.3
-	github.com/onsi/ginkgo/v2 v2.20.0
+	github.com/onsi/ginkgo/v2 v2.20.1
 	github.com/opencontainers/runc v1.1.13
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
-	github.com/prometheus/client_golang v1.20.1
+	github.com/prometheus/client_golang v1.20.2
 	github.com/prometheus/client_model v0.6.1
 	github.com/prometheus/common v0.55.0
 	github.com/spf13/cobra v1.8.1
diff --git a/go.sum b/go.sum
index 790fd5215..b4022d912 100644
--- a/go.sum
+++ b/go.sum
@@ -165,8 +165,8 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.20.0 h1:PE84V2mHqoT1sglvHc8ZdQtPcwmvvt29WLEEO3xmdZw=
-github.com/onsi/ginkgo/v2 v2.20.0/go.mod h1:lG9ey2Z29hR41WMVthyJBGUBcBhGOtoPF2VFMvBXFCI=
+github.com/onsi/ginkgo/v2 v2.20.1 h1:YlVIbqct+ZmnEph770q9Q7NVAz4wwIiVNahee6JyUzo=
+github.com/onsi/ginkgo/v2 v2.20.1/go.mod h1:lG9ey2Z29hR41WMVthyJBGUBcBhGOtoPF2VFMvBXFCI=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.34.1 h1:EUMJIKUjM8sKjYbtxQI9A4z2o+rruxnzNvpknOXie6k=
@@ -182,8 +182,8 @@ github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINE
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 h1:Jamvg5psRIccs7FGNTlIRMkT8wgtp5eCXdBlqhYGL6U=
 github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/prometheus/client_golang v1.20.1 h1:IMJXHOD6eARkQpxo8KkhgEVFlBNm+nkrFUyGlIu7Na8=
-github.com/prometheus/client_golang v1.20.1/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
+github.com/prometheus/client_golang v1.20.2 h1:5ctymQzZlyOON1666svgwn3s6IKWgfbjsejTMiXIyjg=
+github.com/prometheus/client_golang v1.20.2/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
 github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
 github.com/prometheus/common v0.55.0 h1:KEi6DK7lXW/m7Ig5i47x0vRzuBsHuvJdi5ee6Y3G1dc=

From 034c3ccad41374822a9180dceb3e5b999dc43f2f Mon Sep 17 00:00:00 2001
From: Jon Carl <grounded042@joncarl.com>
Date: Mon, 26 Aug 2024 13:09:11 -0600
Subject: [PATCH 1418/1641] Metrics: Add `--metrics-per-undefined-host`
 argument. (#11818)

Signed-off-by: Jon Carl <grounded042@joncarl.com>
---
 cmd/dataplane/main.go                         |  2 +-
 cmd/nginx/main.go                             |  2 +-
 docs/user-guide/cli-arguments.md              |  1 +
 docs/user-guide/monitoring.md                 |  4 +-
 internal/ingress/controller/controller.go     | 15 ++--
 internal/ingress/metric/collectors/socket.go  | 16 ++--
 .../ingress/metric/collectors/socket_test.go  | 75 ++++++++++++++++---
 internal/ingress/metric/main.go               |  4 +-
 pkg/flags/flags.go                            |  8 ++
 pkg/flags/flags_test.go                       | 26 +++++++
 test/e2e/metrics/metrics.go                   | 47 ++++++++++++
 11 files changed, 172 insertions(+), 28 deletions(-)

diff --git a/cmd/dataplane/main.go b/cmd/dataplane/main.go
index 29a175a6f..e7e4dc38f 100644
--- a/cmd/dataplane/main.go
+++ b/cmd/dataplane/main.go
@@ -66,7 +66,7 @@ func main() {
 	mc := metric.NewDummyCollector()
 	if conf.EnableMetrics {
 		// TODO: Ingress class is not a part of dataplane anymore
-		mc, err = metric.NewCollector(conf.MetricsPerHost, conf.ReportStatusClasses, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets, conf.MetricsBucketFactor, conf.MetricsMaxBuckets, conf.ExcludeSocketMetrics)
+		mc, err = metric.NewCollector(conf.MetricsPerHost, conf.MetricsPerUndefinedHost, conf.ReportStatusClasses, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets, conf.MetricsBucketFactor, conf.MetricsMaxBuckets, conf.ExcludeSocketMetrics)
 		if err != nil {
 			klog.Fatalf("Error creating prometheus collector:  %v", err)
 		}
diff --git a/cmd/nginx/main.go b/cmd/nginx/main.go
index ea5acedc2..781f3a8eb 100644
--- a/cmd/nginx/main.go
+++ b/cmd/nginx/main.go
@@ -130,7 +130,7 @@ func main() {
 
 	mc := metric.NewDummyCollector()
 	if conf.EnableMetrics {
-		mc, err = metric.NewCollector(conf.MetricsPerHost, conf.ReportStatusClasses, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets, conf.MetricsBucketFactor, conf.MetricsMaxBuckets, conf.ExcludeSocketMetrics)
+		mc, err = metric.NewCollector(conf.MetricsPerHost, conf.MetricsPerUndefinedHost, conf.ReportStatusClasses, reg, conf.IngressClassConfiguration.Controller, *conf.MetricsBuckets, conf.MetricsBucketFactor, conf.MetricsMaxBuckets, conf.ExcludeSocketMetrics)
 		if err != nil {
 			klog.Fatalf("Error creating prometheus collector:  %v", err)
 		}
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index 5315dd325..1beb821c7 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -48,6 +48,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--maxmind-license-key`            | Maxmind license key to download GeoLite2 Databases. https://blog.maxmind.com/2019/12/significant-changes-to-accessing-and-using-geolite2-databases/ . |
 | `--maxmind-mirror`            | Maxmind mirror url (example: http://geoip.local/databases. |
 | `--metrics-per-host`               | Export metrics per-host. (default true) |
+| `--metrics-per-undefined-host`     | Export metrics per-host even if the host is not defined in an ingress. Requires --metrics-per-host to be set to true. (default false) |
 | `--monitor-max-batch-size`               | Max batch size of NGINX metrics. (default 10000)|
 | `--post-shutdown-grace-period`     | Additional delay in seconds before controller container exits. (default 10) |
 | `--profiler-port`                  | Port to use for expose the ingress controller Go profiler when it is enabled. (default 10245) |
diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index b96914e1b..f08e1bc2f 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -166,7 +166,9 @@ According to the above example, this URL will be http://10.192.0.3:31086
 
 #### Wildcard ingresses
 
-  - By default request metrics are labeled with the hostname. When you have a wildcard domain ingress, then there will be no metrics for that ingress (to prevent the metrics from exploding in cardinality). To get metrics in this case you need to run the ingress controller with `--metrics-per-host=false` (you will lose labeling by hostname, but still have labeling by ingress).
+  - By default request metrics are labeled with the hostname. When you have a wildcard domain ingress, then there will be no metrics for that ingress (to prevent the metrics from exploding in cardinality). To get metrics in this case you have two options:
+    - Run the ingress controller with `--metrics-per-host=false`. You will lose labeling by hostname, but still have labeling by ingress.
+    - Run the ingress controller with `--metrics-per-undefined-host=true --metrics-per-host=true`. You will get labeling by hostname even if the hostname is not explicitly defined on an ingress. Be warned that cardinality could explode due to many hostnames.
 
 ### Grafana dashboard using ingress resource
   - If you want to expose the dashboard for grafana using an ingress resource, then you can :
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index 45e11268c..aa8f4c4b9 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -105,13 +105,14 @@ type Configuration struct {
 
 	EnableProfiling bool
 
-	EnableMetrics        bool
-	MetricsPerHost       bool
-	MetricsBuckets       *collectors.HistogramBuckets
-	MetricsBucketFactor  float64
-	MetricsMaxBuckets    uint32
-	ReportStatusClasses  bool
-	ExcludeSocketMetrics []string
+	EnableMetrics           bool
+	MetricsPerHost          bool
+	MetricsPerUndefinedHost bool
+	MetricsBuckets          *collectors.HistogramBuckets
+	MetricsBucketFactor     float64
+	MetricsMaxBuckets       uint32
+	ReportStatusClasses     bool
+	ExcludeSocketMetrics    []string
 
 	FakeCertificate *ingress.SSLCert
 
diff --git a/internal/ingress/metric/collectors/socket.go b/internal/ingress/metric/collectors/socket.go
index d0b57eb43..0bdd816ae 100644
--- a/internal/ingress/metric/collectors/socket.go
+++ b/internal/ingress/metric/collectors/socket.go
@@ -81,8 +81,9 @@ type SocketCollector struct {
 
 	hosts sets.Set[string]
 
-	metricsPerHost      bool
-	reportStatusClasses bool
+	metricsPerHost          bool
+	metricsPerUndefinedHost bool
+	reportStatusClasses     bool
 }
 
 var requestTags = []string{
@@ -99,7 +100,7 @@ var requestTags = []string{
 
 // NewSocketCollector creates a new SocketCollector instance using
 // the ingress watch namespace and class used by the controller
-func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStatusClasses bool, buckets HistogramBuckets, bucketFactor float64, maxBuckets uint32, excludeMetrics []string) (*SocketCollector, error) {
+func NewSocketCollector(pod, namespace, class string, metricsPerHost, metricsPerUndefinedHost, reportStatusClasses bool, buckets HistogramBuckets, bucketFactor float64, maxBuckets uint32, excludeMetrics []string) (*SocketCollector, error) {
 	socket := "/tmp/nginx/prometheus-nginx.socket"
 	// unix sockets must be unlink()ed before being used
 	//nolint:errcheck // Ignore unlink error
@@ -139,8 +140,9 @@ func NewSocketCollector(pod, namespace, class string, metricsPerHost, reportStat
 	sc := &SocketCollector{
 		listener: listener,
 
-		metricsPerHost:      metricsPerHost,
-		reportStatusClasses: reportStatusClasses,
+		metricsPerHost:          metricsPerHost,
+		metricsPerUndefinedHost: metricsPerUndefinedHost,
+		reportStatusClasses:     reportStatusClasses,
 
 		connectTime: histogramMetric(
 			&prometheus.HistogramOpts{
@@ -306,8 +308,8 @@ func (sc *SocketCollector) handleMessage(msg []byte) {
 
 	for i := range statsBatch {
 		stats := &statsBatch[i]
-		if sc.metricsPerHost && !sc.hosts.Has(stats.Host) {
-			klog.V(3).InfoS("Skipping metric for host not being served", "host", stats.Host)
+		if sc.metricsPerHost && !sc.hosts.Has(stats.Host) && !sc.metricsPerUndefinedHost {
+			klog.V(3).InfoS("Skipping metric for host not explicitly defined in an ingress", "host", stats.Host)
 			continue
 		}
 
diff --git a/internal/ingress/metric/collectors/socket_test.go b/internal/ingress/metric/collectors/socket_test.go
index a8261a9ca..3a1f29f35 100644
--- a/internal/ingress/metric/collectors/socket_test.go
+++ b/internal/ingress/metric/collectors/socket_test.go
@@ -87,14 +87,15 @@ func TestCollector(t *testing.T) {
 	maxBuckets := uint32(100)
 
 	cases := []struct {
-		name             string
-		data             []string
-		metrics          []string
-		useStatusClasses bool
-		excludeMetrics   []string
-		wantBefore       string
-		removeIngresses  []string
-		wantAfter        string
+		name                    string
+		data                    []string
+		metrics                 []string
+		metricsPerUndefinedHost bool
+		useStatusClasses        bool
+		excludeMetrics          []string
+		wantBefore              string
+		removeIngresses         []string
+		wantAfter               string
 	}{
 		{
 			name: "invalid metric object should not increase prometheus metrics",
@@ -591,13 +592,69 @@ func TestCollector(t *testing.T) {
 				nginx_ingress_controller_response_duration_seconds_count{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx"} 1
 			`,
 		},
+		{
+			name: "metrics with a host should not be dropped when the host is not in the hosts slice but metricsPerUndefinedHost is true",
+			data: []string{`[{
+				"host":"wildcard.testshop.com",
+				"status":"200",
+				"bytesSent":150.0,
+				"method":"GET",
+				"path":"/admin",
+				"requestLength":300.0,
+				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
+				"upstreamName":"test-upstream",
+				"upstreamIP":"1.1.1.1:8080",
+				"upstreamResponseTime":200,
+				"upstreamStatus":"220",
+				"namespace":"test-app-production",
+				"ingress":"web-yml",
+				"service":"test-app",
+				"canary":""
+			}]`},
+			excludeMetrics:          []string{"response_duration_seconds2", "test.*", "nginx_ingress_.*", "response_duration_secon"},
+			metrics:                 []string{"nginx_ingress_controller_requests"},
+			metricsPerUndefinedHost: true,
+			useStatusClasses:        true,
+			wantBefore: `
+				# HELP nginx_ingress_controller_requests The total number of client requests
+				# TYPE nginx_ingress_controller_requests counter
+				nginx_ingress_controller_requests{canary="",controller_class="ingress",controller_namespace="default",controller_pod="pod",host="wildcard.testshop.com",ingress="web-yml",method="GET",namespace="test-app-production",path="/admin",service="test-app",status="2xx"} 1
+			`,
+		},
+		{
+			name: "metrics with a host should be dropped when the host is not in the hosts slice",
+			data: []string{`[{
+				"host":"wildcard.testshop.com",
+				"status":"200",
+				"bytesSent":150.0,
+				"method":"GET",
+				"path":"/admin",
+				"requestLength":300.0,
+				"requestTime":60.0,
+				"upstreamLatency":1.0,
+				"upstreamHeaderTime":5.0,
+				"upstreamName":"test-upstream",
+				"upstreamIP":"1.1.1.1:8080",
+				"upstreamResponseTime":200,
+				"upstreamStatus":"220",
+				"namespace":"test-app-production",
+				"ingress":"web-yml",
+				"service":"test-app",
+				"canary":""
+			}]`},
+			excludeMetrics:   []string{"response_duration_seconds2", "test.*", "nginx_ingress_.*", "response_duration_secon"},
+			metrics:          []string{"nginx_ingress_controller_requests"},
+			useStatusClasses: true,
+		},
 	}
 
 	for _, c := range cases {
 		t.Run(c.name, func(t *testing.T) {
 			registry := prometheus.NewPedanticRegistry()
 
-			sc, err := NewSocketCollector("pod", "default", "ingress", true, c.useStatusClasses, buckets, bucketFactor, maxBuckets, c.excludeMetrics)
+			sc, err := NewSocketCollector("pod", "default", "ingress", true, c.metricsPerUndefinedHost, c.useStatusClasses, buckets, bucketFactor, maxBuckets, c.excludeMetrics)
 			if err != nil {
 				t.Errorf("%v: unexpected error creating new SocketCollector: %v", c.name, err)
 			}
diff --git a/internal/ingress/metric/main.go b/internal/ingress/metric/main.go
index 99128c3c6..9ed401d19 100644
--- a/internal/ingress/metric/main.go
+++ b/internal/ingress/metric/main.go
@@ -71,7 +71,7 @@ type collector struct {
 }
 
 // NewCollector creates a new metric collector the for ingress controller
-func NewCollector(metricsPerHost, reportStatusClasses bool, registry *prometheus.Registry, ingressclass string, buckets collectors.HistogramBuckets, bucketFactor float64, maxBuckets uint32, excludedSocketMetrics []string) (Collector, error) {
+func NewCollector(metricsPerHost, metricsPerUndefinedHost, reportStatusClasses bool, registry *prometheus.Registry, ingressclass string, buckets collectors.HistogramBuckets, bucketFactor float64, maxBuckets uint32, excludedSocketMetrics []string) (Collector, error) {
 	podNamespace := os.Getenv("POD_NAMESPACE")
 	if podNamespace == "" {
 		podNamespace = "default"
@@ -89,7 +89,7 @@ func NewCollector(metricsPerHost, reportStatusClasses bool, registry *prometheus
 		return nil, err
 	}
 
-	s, err := collectors.NewSocketCollector(podName, podNamespace, ingressclass, metricsPerHost, reportStatusClasses, buckets, bucketFactor, maxBuckets, excludedSocketMetrics)
+	s, err := collectors.NewSocketCollector(podName, podNamespace, ingressclass, metricsPerHost, metricsPerUndefinedHost, reportStatusClasses, buckets, bucketFactor, maxBuckets, excludedSocketMetrics)
 	if err != nil {
 		return nil, err
 	}
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index 5a1ab0aa9..6f62f75b5 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -17,6 +17,7 @@ limitations under the License.
 package flags
 
 import (
+	"errors"
 	"flag"
 	"fmt"
 	"net"
@@ -177,6 +178,8 @@ Requires the update-status parameter.`)
 			`Enables the collection of NGINX metrics.`)
 		metricsPerHost = flags.Bool("metrics-per-host", true,
 			`Export metrics per-host.`)
+		metricsPerUndefinedHost = flags.Bool("metrics-per-undefined-host", false,
+			`Export metrics per-host even if the host is not defined in an ingress. Requires --metrics-per-host to be set to true.`)
 		reportStatusClasses = flags.Bool("report-status-classes", false,
 			`Use status classes (2xx, 3xx, 4xx and 5xx) instead of status codes in metrics.`)
 
@@ -319,6 +322,10 @@ https://blog.maxmind.com/2019/12/significant-changes-to-accessing-and-using-geol
 		}
 	}
 
+	if *metricsPerUndefinedHost && !*metricsPerHost {
+		return false, nil, errors.New("--metrics-per-undefined-host=true must be passed with --metrics-per-host=true")
+	}
+
 	if *electionTTL <= 0 {
 		*electionTTL = 30 * time.Second
 	}
@@ -340,6 +347,7 @@ https://blog.maxmind.com/2019/12/significant-changes-to-accessing-and-using-geol
 		EnableProfiling:             *profiling,
 		EnableMetrics:               *enableMetrics,
 		MetricsPerHost:              *metricsPerHost,
+		MetricsPerUndefinedHost:     *metricsPerUndefinedHost,
 		MetricsBuckets:              histogramBuckets,
 		MetricsBucketFactor:         *bucketFactor,
 		MetricsMaxBuckets:           *maxBuckets,
diff --git a/pkg/flags/flags_test.go b/pkg/flags/flags_test.go
index e51d5fa6c..fdf153021 100644
--- a/pkg/flags/flags_test.go
+++ b/pkg/flags/flags_test.go
@@ -212,3 +212,29 @@ func TestLeaderElectionTTLParseValueInHours(t *testing.T) {
 		t.Fatalf("Expected --election-ttl and conf.ElectionTTL as 1h, but found: %v", conf.ElectionTTL)
 	}
 }
+
+func TestMetricsPerUndefinedHost(t *testing.T) {
+	ResetForTesting(func() { t.Fatal("Parsing failed") })
+
+	oldArgs := os.Args
+	defer func() { os.Args = oldArgs }()
+	os.Args = []string{"cmd", "--metrics-per-undefined-host=true"}
+
+	_, _, err := ParseFlags()
+	if err != nil {
+		t.Fatalf("Expected no error but got: %s", err)
+	}
+}
+
+func TestMetricsPerUndefinedHostWithMetricsPerHostFalse(t *testing.T) {
+	ResetForTesting(func() { t.Fatal("Parsing failed") })
+
+	oldArgs := os.Args
+	defer func() { os.Args = oldArgs }()
+	os.Args = []string{"cmd", "--metrics-per-host=false", "--metrics-per-undefined-host=true"}
+
+	_, _, err := ParseFlags()
+	if err == nil {
+		t.Fatalf("Expected an error parsing flags but none returned")
+	}
+}
diff --git a/test/e2e/metrics/metrics.go b/test/e2e/metrics/metrics.go
index 907b53732..bec09bb37 100644
--- a/test/e2e/metrics/metrics.go
+++ b/test/e2e/metrics/metrics.go
@@ -36,6 +36,7 @@ const waitForMetrics = 2 * time.Second
 var _ = framework.IngressNginxDescribe("[metrics] exported prometheus metrics", func() {
 	f := framework.NewDefaultFramework("metrics")
 	host := "foo.com"
+	wildcardHost := "wildcard." + host
 
 	ginkgo.BeforeEach(func() {
 		f.NewEchoDeployment()
@@ -91,4 +92,50 @@ var _ = framework.IngressNginxDescribe("[metrics] exported prometheus metrics",
 		assert.Nil(ginkgo.GinkgoT(), err)
 		assert.NotNil(ginkgo.GinkgoT(), mf)
 	})
+	ginkgo.It("request metrics per undefined host are present when flag is set", func() {
+		err := f.UpdateIngressControllerDeployment(func(deployment *appsv1.Deployment) error {
+			args := deployment.Spec.Template.Spec.Containers[0].Args
+			args = append(args, "--metrics-per-undefined-host=true")
+			deployment.Spec.Template.Spec.Containers[0].Args = args
+			_, err := f.KubeClientSet.AppsV1().Deployments(f.Namespace).Update(context.TODO(), deployment, metav1.UpdateOptions{})
+			return err
+		})
+		assert.Nil(ginkgo.GinkgoT(), err, "updating deployment")
+
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", wildcardHost).
+			Expect().
+			Status(http.StatusNotFound)
+		time.Sleep(waitForMetrics)
+
+		ip := f.GetNginxPodIP()
+		reqMetrics, err := f.GetMetric("nginx_ingress_controller_requests", ip)
+		assert.Nil(ginkgo.GinkgoT(), err)
+		assert.NotNil(ginkgo.GinkgoT(), reqMetrics.Metric)
+		assert.Len(ginkgo.GinkgoT(), reqMetrics.Metric, 1)
+
+		containedLabel := false
+		for _, label := range reqMetrics.Metric[0].Label {
+			if *label.Name == "host" && *label.Value == wildcardHost {
+				containedLabel = true
+				break
+			}
+		}
+
+		assert.Truef(ginkgo.GinkgoT(), containedLabel, "expected reqMetrics to contain label with \"name\"=\"host\" \"value\"=%q, but it did not: %s", wildcardHost, reqMetrics.String())
+	})
+	ginkgo.It("request metrics per undefined host are not present when flag is not set", func() {
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", wildcardHost).
+			Expect().
+			Status(http.StatusNotFound)
+		time.Sleep(waitForMetrics)
+
+		ip := f.GetNginxPodIP()
+		reqMetrics, err := f.GetMetric("nginx_ingress_controller_requests", ip)
+		assert.EqualError(ginkgo.GinkgoT(), err, "there is no metric with name nginx_ingress_controller_requests")
+		assert.Nil(ginkgo.GinkgoT(), reqMetrics)
+	})
 })

From e6851d91df309e7251796873ac4c4d23da827b8e Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 26 Aug 2024 21:15:42 +0200
Subject: [PATCH 1419/1641] Dashboard: Remove
 `ingress_upstream_latency_seconds`. (#11878)

---
 .../request-handling-performance.json         | 98 -------------------
 1 file changed, 98 deletions(-)

diff --git a/deploy/grafana/dashboards/request-handling-performance.json b/deploy/grafana/dashboards/request-handling-performance.json
index 61db983a6..cde796384 100644
--- a/deploy/grafana/dashboards/request-handling-performance.json
+++ b/deploy/grafana/dashboards/request-handling-performance.json
@@ -893,104 +893,6 @@
       ],
       "title": "Average Response Size by Method and Path",
       "type": "timeseries"
-    },
-    {
-      "datasource": {
-        "type": "prometheus",
-        "uid": "${DS_PROMETHEUS}"
-      },
-      "fieldConfig": {
-        "defaults": {
-          "color": {
-            "mode": "palette-classic"
-          },
-          "custom": {
-            "axisBorderShow": false,
-            "axisCenteredZero": false,
-            "axisColorMode": "text",
-            "axisLabel": "",
-            "axisPlacement": "auto",
-            "barAlignment": 0,
-            "drawStyle": "line",
-            "fillOpacity": 10,
-            "gradientMode": "none",
-            "hideFrom": {
-              "legend": false,
-              "tooltip": false,
-              "viz": false
-            },
-            "insertNulls": false,
-            "lineInterpolation": "linear",
-            "lineWidth": 1,
-            "pointSize": 5,
-            "scaleDistribution": {
-              "type": "linear"
-            },
-            "showPoints": "never",
-            "spanNulls": false,
-            "stacking": {
-              "group": "A",
-              "mode": "none"
-            },
-            "thresholdsStyle": {
-              "mode": "off"
-            }
-          },
-          "links": [],
-          "mappings": [],
-          "thresholds": {
-            "mode": "absolute",
-            "steps": [
-              {
-                "color": "green"
-              },
-              {
-                "color": "red",
-                "value": 80
-              }
-            ]
-          },
-          "unit": "s"
-        },
-        "overrides": []
-      },
-      "gridPos": {
-        "h": 8,
-        "w": 12,
-        "x": 0,
-        "y": 32
-      },
-      "id": 96,
-      "options": {
-        "legend": {
-          "calcs": [],
-          "displayMode": "list",
-          "placement": "bottom",
-          "showLegend": true
-        },
-        "tooltip": {
-          "mode": "multi",
-          "sort": "desc"
-        }
-      },
-      "pluginVersion": "10.4.3",
-      "targets": [
-        {
-          "datasource": {
-            "type": "prometheus",
-            "uid": "${DS_PROMETHEUS}"
-          },
-          "expr": "sum (\n  rate(\n      nginx_ingress_controller_ingress_upstream_latency_seconds_sum {\n        ingress =~ \"$ingress\",\n      }[5m]\n)) / sum (\n  rate(\n      nginx_ingress_controller_ingress_upstream_latency_seconds_count {\n        ingress =~ \"$ingress\",\n      }[5m]\n  )\n)\n",
-          "hide": false,
-          "instant": false,
-          "interval": "",
-          "intervalFactor": 1,
-          "legendFormat": "average",
-          "refId": "B"
-        }
-      ],
-      "title": "Upstream Service Latency",
-      "type": "timeseries"
     }
   ],
   "refresh": "30s",

From bde6a6bc3e5751c1223369462db365cfd1f1a268 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 26 Aug 2024 21:18:18 +0200
Subject: [PATCH 1420/1641] Lua: Remove plugins from `.luacheckrc` & E2E docs.
 (#11872)

---
 .luacheckrc       | 2 +-
 docs/e2e-tests.md | 2 --
 2 files changed, 1 insertion(+), 3 deletions(-)

diff --git a/.luacheckrc b/.luacheckrc
index a24399e26..5a1c249fe 100644
--- a/.luacheckrc
+++ b/.luacheckrc
@@ -1,6 +1,6 @@
 std = 'ngx_lua'
 max_line_length = 100
-exclude_files = {'./rootfs/etc/nginx/lua/test/**/*.lua', './rootfs/etc/nginx/lua/plugins/**/test/**/*.lua'}
+exclude_files = {'./rootfs/etc/nginx/lua/test/**/*.lua'}
 files["rootfs/etc/nginx/lua/lua_ingress.lua"] = {
   ignore = { "122" },
   -- TODO(elvinefendi) figure out why this does not work
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index c95603853..c7f8259a2 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -495,8 +495,6 @@ Do not try to edit it manually.
 - [should include opentelemetry_trust_incoming_spans on directive when enabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L76)
 - [should not exists opentelemetry_operation_name directive when is empty](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L91)
 - [should exists opentelemetry_operation_name directive when is configured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L106)
-### [plugins](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/plugins.go#L28)
-- [should exist a x-hello-world header](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/plugins.go#L35)
 ### [proxy-connect-timeout](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_connect_timeout.go#L29)
 - [should set valid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_connect_timeout.go#L37)
 - [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_connect_timeout.go#L53)

From e9f6c8e8f2d630e7394b9d2788a4d3feee5aa919 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 26 Aug 2024 22:09:16 +0200
Subject: [PATCH 1421/1641] Security: Follow-up on recent changes. (#11874)

---
 .github/workflows/images.yaml                 |  2 +-
 charts/ingress-nginx/templates/_params.tpl    |  4 ++--
 .../templates/controller-configmap.yaml       |  4 +++-
 .../nginx-configuration/configmap.md          | 19 +++++++++----------
 internal/ingress/resolver/mock.go             |  2 +-
 pkg/flags/flags.go                            |  2 +-
 test/e2e/settings/proxy_host.go               | 12 ++----------
 test/e2e/wait-for-nginx.sh                    |  1 -
 8 files changed, 19 insertions(+), 27 deletions(-)

diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index fe83f1dd3..63a72dd3a 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -141,7 +141,7 @@ jobs:
       (needs.changes.outputs.kube-webhook-certgen == 'true')
     strategy:
       matrix:
-        k8s: [v1.26.15, v1.27.13, v1.28.9, v1.29.4, v1.30.0]
+        k8s: [v1.28.13, v1.29.8, v1.30.4, v1.31.0]
     steps:
     - name: Checkout
       uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
diff --git a/charts/ingress-nginx/templates/_params.tpl b/charts/ingress-nginx/templates/_params.tpl
index 48569a8b0..763e55570 100644
--- a/charts/ingress-nginx/templates/_params.tpl
+++ b/charts/ingress-nginx/templates/_params.tpl
@@ -1,7 +1,7 @@
 {{- define "ingress-nginx.params" -}}
 - /nginx-ingress-controller
-{{- if .Values.controller.enableAnnotationValidations }}
-- --enable-annotation-validation=true
+{{- if not .Values.controller.enableAnnotationValidations }}
+- --enable-annotation-validation=false
 {{- end }}
 {{- if .Values.defaultBackend.enabled }}
 - --default-backend-service=$(POD_NAMESPACE)/{{ include "ingress-nginx.defaultBackend.fullname" . }}
diff --git a/charts/ingress-nginx/templates/controller-configmap.yaml b/charts/ingress-nginx/templates/controller-configmap.yaml
index 22080d115..b73cdc2d0 100644
--- a/charts/ingress-nginx/templates/controller-configmap.yaml
+++ b/charts/ingress-nginx/templates/controller-configmap.yaml
@@ -13,7 +13,9 @@ metadata:
   name: {{ include "ingress-nginx.controller.fullname" . }}
   namespace: {{ include "ingress-nginx.namespace" . }}
 data:
-  allow-snippet-annotations: "{{ .Values.controller.allowSnippetAnnotations }}"
+{{- if .Values.controller.allowSnippetAnnotations }}
+  allow-snippet-annotations: "true"
+{{- end }}
 {{- if .Values.controller.addHeaders }}
   add-headers: {{ include "ingress-nginx.namespace" . }}/{{ include "ingress-nginx.fullname" . }}-custom-add-headers
 {{- end }}
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 51896e3a1..c2e6935d5 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -29,9 +29,9 @@ The following table shows a configuration option's name, type, and the default v
 |:--------------------------------------------------------------------------------|:-------------|:-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|:------------------------------------------------------------------------------------|
 | [add-headers](#add-headers)                                                     | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
 | [allow-backend-server-header](#allow-backend-server-header)                     | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
-| [allow-cross-namespace-resources](#allow-cross-namespace-resources)             | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
+| [allow-cross-namespace-resources](#allow-cross-namespace-resources)             | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
 | [allow-snippet-annotations](#allow-snippet-annotations)                         | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
-| [annotations-risk-level](#annotations-risk-level)                               | string       | Critical                                                                                                                                                                                                                                                                                                                                                     |                                                                                     |
+| [annotations-risk-level](#annotations-risk-level)                               | string       | High                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
 | [annotation-value-word-blocklist](#annotation-value-word-blocklist)             | string array | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
 | [hide-headers](#hide-headers)                                                   | string array | empty                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
 | [access-log-params](#access-log-params)                                         | string       | ""                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
@@ -221,7 +221,7 @@ The following table shows a configuration option's name, type, and the default v
 | [service-upstream](#service-upstream)                                           | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
 | [ssl-reject-handshake](#ssl-reject-handshake)                                   | bool         | "false"                                                                                                                                                                                                                                                                                                                                                      |                                                                                     |
 | [debug-connections](#debug-connections)                                         | []string     | "127.0.0.1,1.1.1.1/24"                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
-| [strict-validate-path-type](#strict-validate-path-type)                         | bool         | "false" (v1.7.x)                                                                                                                                                                                                                                                                                                                                             |                                                                                     |
+| [strict-validate-path-type](#strict-validate-path-type)                         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
 | [grpc-buffer-size-kb](#grpc-buffer-size-kb)                                     | int          | 0                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
 
 ## add-headers
@@ -234,18 +234,16 @@ Enables the return of the header Server from the backend instead of the generic
 
 ## allow-cross-namespace-resources
 
-Enables users to consume cross namespace resource on annotations, when was previously enabled . _**default:**_ true
+Enables users to consume cross namespace resource on annotations, when was previously enabled . _**default:**_ false
 
 **Annotations that may be impacted with this change**:
+
 * `auth-secret`
 * `auth-proxy-set-header`
 * `auth-tls-secret`
 * `fastcgi-params-configmap`
 * `proxy-ssl-secret`
 
-
-**This option will be defaulted to false in the next major release**
-
 ## allow-snippet-annotations
 
 Enables Ingress to parse and add *-snippet annotations/directives created by the user. _**default:**_ `false`
@@ -253,15 +251,13 @@ Enables Ingress to parse and add *-snippet annotations/directives created by the
 Warning: We recommend enabling this option only if you TRUST users with permission to create Ingress objects, as this
 may allow a user to add restricted configurations to the final nginx.conf file
 
-**This option will be defaulted to false in the next major release**
-
 ## annotations-risk-level
 
 Represents the risk accepted on an annotation. If the risk is, for instance `Medium`, annotations with risk High and Critical will not be accepted.
 
 Accepted values are `Critical`, `High`, `Medium` and `Low`.
 
-Defaults to `Critical` but will be changed to `High` on the next minor release
+_**default:**_ `High`
 
 ## annotation-value-word-blocklist
 
@@ -1364,6 +1360,7 @@ _References:_
 [http://nginx.org/en/docs/ngx_core_module.html#debug_connection](http://nginx.org/en/docs/ngx_core_module.html#debug_connection)
 
 ## strict-validate-path-type
+
 Ingress objects contains a field called pathType that defines the proxy behavior. It can be `Exact`, `Prefix` and `ImplementationSpecific`.
 
 When pathType is configured as `Exact` or `Prefix`, there should be a more strict validation, allowing only paths starting with "/" and
@@ -1377,6 +1374,8 @@ This means that Ingress objects that rely on paths containing regex characters s
 The cluster admin should establish validation rules using mechanisms like [Open Policy Agent](https://www.openpolicyagent.org/) to 
 validate that only authorized users can use `ImplementationSpecific` pathType and that only the authorized characters can be used.
 
+_**default:**_ "true"
+
 ## grpc-buffer-size-kb
 
 Sets the configuration for the GRPC Buffer Size parameter. If not set it will use the default from NGINX.
diff --git a/internal/ingress/resolver/mock.go b/internal/ingress/resolver/mock.go
index 679c3b13c..5a36155e9 100644
--- a/internal/ingress/resolver/mock.go
+++ b/internal/ingress/resolver/mock.go
@@ -39,7 +39,7 @@ func (m Mock) GetDefaultBackend() defaults.Backend {
 func (m Mock) GetSecurityConfiguration() defaults.SecurityConfiguration {
 	defRisk := m.AnnotationsRiskLevel
 	if defRisk == "" {
-		defRisk = "Critical"
+		defRisk = "High"
 	}
 	return defaults.SecurityConfiguration{
 		AnnotationsRiskLevel:         defRisk,
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index 6f62f75b5..a64a37193 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -160,7 +160,7 @@ Requires the update-status parameter.`)
 			`Prefix of the Ingress annotations specific to the NGINX controller.`)
 
 		enableAnnotationValidation = flags.Bool("enable-annotation-validation", true,
-			`If true, will enable the annotation validation feature. This value will be defaulted to true on a future release`)
+			`If true, will enable the annotation validation feature. Defaults to true`)
 
 		enableSSLChainCompletion = flags.Bool("enable-ssl-chain-completion", false,
 			`Autocomplete SSL certificate chains with missing intermediate CA certificates.
diff --git a/test/e2e/settings/proxy_host.go b/test/e2e/settings/proxy_host.go
index 3ce86127e..bb5dc9c01 100644
--- a/test/e2e/settings/proxy_host.go
+++ b/test/e2e/settings/proxy_host.go
@@ -58,16 +58,8 @@ var _ = framework.IngressNginxDescribe("Dynamic $proxy_host", func() {
 	})
 
 	ginkgo.It("should exist a proxy_host using the upstream-vhost annotation value", func() {
-		f.SetNginxConfigMapData(map[string]string{
-			"allow-snippet-annotations": "true",
-			"annotations-risk-level":    "Critical", // To allow Configuration Snippet
-		})
-		defer func() {
-			f.SetNginxConfigMapData(map[string]string{
-				"allow-snippet-annotations": "false",
-				"annotations-risk-level":    "High",
-			})
-		}()
+		disableSnippet := f.AllowSnippetConfiguration()
+		defer disableSnippet()
 
 		upstreamName := fmt.Sprintf("%v-%v-80", f.Namespace, framework.EchoService)
 		upstreamVHost := "different.host"
diff --git a/test/e2e/wait-for-nginx.sh b/test/e2e/wait-for-nginx.sh
index 506c4e03f..73023aba1 100755
--- a/test/e2e/wait-for-nginx.sh
+++ b/test/e2e/wait-for-nginx.sh
@@ -58,7 +58,6 @@ else
 # TODO: remove the need to use fullnameOverride
 fullnameOverride: nginx-ingress
 controller:
-  enableAnnotationValidations: true
   image:
     repository: ingress-controller/controller
     chroot: ${IS_CHROOT}

From f6595f554abb6692f15296d75cc1f764e08679b8 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 26 Aug 2024 22:30:48 +0200
Subject: [PATCH 1422/1641] Chart: Use generic values for `ConfigMap` test.
 (#11877)

---
 .../tests/controller-configmap_test.yaml             | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/charts/ingress-nginx/tests/controller-configmap_test.yaml b/charts/ingress-nginx/tests/controller-configmap_test.yaml
index f0fc1c730..168b657d6 100644
--- a/charts/ingress-nginx/tests/controller-configmap_test.yaml
+++ b/charts/ingress-nginx/tests/controller-configmap_test.yaml
@@ -16,8 +16,16 @@ tests:
   - it: should create a ConfigMap with templated values if `controller.config` contains templates
     set:
       controller.config:
-        use-gzip: true
+        template: "test.{{ .Release.Namespace }}.svc.kubernetes.local"
+        integer: 12345
+        boolean: true
     asserts:
       - equal:
-          path: data.use-gzip
+          path: data.template
+          value: test.NAMESPACE.svc.kubernetes.local
+      - equal:
+          path: data.integer
+          value: "12345"
+      - equal:
+          path: data.boolean
           value: "true"

From 1c0a3ddf0369df411c05696186ca769d84e178d9 Mon Sep 17 00:00:00 2001
From: Seonghyeon Cho <seonghyeoncho96@gmail.com>
Date: Tue, 27 Aug 2024 06:36:55 +0900
Subject: [PATCH 1423/1641] CI: Grant checks write permissions to E2E Test
 Report. (#11862)

Signed-off-by: Seonghyeon Cho <seonghyeoncho96@gmail.com>
---
 .github/workflows/junit-reports.yaml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/junit-reports.yaml b/.github/workflows/junit-reports.yaml
index 947b90c25..e2a82910e 100644
--- a/.github/workflows/junit-reports.yaml
+++ b/.github/workflows/junit-reports.yaml
@@ -5,6 +5,10 @@ on:
     workflows: ['CI']                     # runs after CI workflow
     types:
       - completed
+
+permissions:
+  checks: write
+
 jobs:
   report:
     runs-on: ubuntu-latest

From d4c49112a4a5abdcced93bf34c589147b594da34 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Mon, 26 Aug 2024 17:39:30 -0400
Subject: [PATCH 1424/1641] Annotations: Allow commas in URLs. (#11882)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 internal/ingress/annotations/parser/validators.go      | 2 +-
 internal/ingress/annotations/parser/validators_test.go | 5 +++++
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/internal/ingress/annotations/parser/validators.go b/internal/ingress/annotations/parser/validators.go
index ffb4d9ba9..31524508f 100644
--- a/internal/ingress/annotations/parser/validators.go
+++ b/internal/ingress/annotations/parser/validators.go
@@ -44,7 +44,7 @@ var (
 	alphaNumericChars    = `\-\.\_\~a-zA-Z0-9\/:`
 	extendedAlphaNumeric = alphaNumericChars + ", "
 	regexEnabledChars    = regexp.QuoteMeta(`^$[](){}*+?|&=\`)
-	urlEnabledChars      = regexp.QuoteMeta(`:?&=`)
+	urlEnabledChars      = regexp.QuoteMeta(`,:?&=`)
 )
 
 // IsValidRegex checks if the tested string can be used as a regex, but without any weird character.
diff --git a/internal/ingress/annotations/parser/validators_test.go b/internal/ingress/annotations/parser/validators_test.go
index ed8449452..6c88342e4 100644
--- a/internal/ingress/annotations/parser/validators_test.go
+++ b/internal/ingress/annotations/parser/validators_test.go
@@ -55,6 +55,11 @@ func TestValidateArrayOfServerName(t *testing.T) {
 			value:   "*.so*mething.com,bla.com",
 			wantErr: false,
 		},
+		{
+			name:    "should allow comma separated query params",
+			value:   "https://oauth.example/oauth2/auth?allowed_groups=gid1,gid2",
+			wantErr: false,
+		},
 		{
 			name:    "should deny names with weird characters",
 			value:   "something.com,lolo;xpto.com,nothing.com",

From 5d457c7daa377b404d3d5bc2dbcfca477525ccfa Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 27 Aug 2024 00:04:17 +0200
Subject: [PATCH 1425/1641] Chart: Add tests for `PrometheusRule` &
 `ServiceMonitor`. (#11883)

---
 charts/ingress-nginx/README.md                |  2 +-
 ...es.yaml => controller-prometheusrule.yaml} |  0
 .../tests/controller-prometheusrule_test.yaml | 17 +++++++++++
 .../tests/controller-servicemonitor_test.yaml | 29 +++++++++++++++++++
 charts/ingress-nginx/values.yaml              |  1 +
 5 files changed, 48 insertions(+), 1 deletion(-)
 rename charts/ingress-nginx/templates/{controller-prometheusrules.yaml => controller-prometheusrule.yaml} (100%)
 create mode 100644 charts/ingress-nginx/tests/controller-prometheusrule_test.yaml
 create mode 100644 charts/ingress-nginx/tests/controller-servicemonitor_test.yaml

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 381ff3a6b..3896ee978 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -381,7 +381,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.metrics.service.servicePort | int | `10254` |  |
 | controller.metrics.service.type | string | `"ClusterIP"` |  |
 | controller.metrics.serviceMonitor.additionalLabels | object | `{}` |  |
-| controller.metrics.serviceMonitor.annotations | object | `{}` |  |
+| controller.metrics.serviceMonitor.annotations | object | `{}` | Annotations to be added to the ServiceMonitor. |
 | controller.metrics.serviceMonitor.enabled | bool | `false` |  |
 | controller.metrics.serviceMonitor.metricRelabelings | list | `[]` |  |
 | controller.metrics.serviceMonitor.namespace | string | `""` |  |
diff --git a/charts/ingress-nginx/templates/controller-prometheusrules.yaml b/charts/ingress-nginx/templates/controller-prometheusrule.yaml
similarity index 100%
rename from charts/ingress-nginx/templates/controller-prometheusrules.yaml
rename to charts/ingress-nginx/templates/controller-prometheusrule.yaml
diff --git a/charts/ingress-nginx/tests/controller-prometheusrule_test.yaml b/charts/ingress-nginx/tests/controller-prometheusrule_test.yaml
new file mode 100644
index 000000000..d60a98315
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-prometheusrule_test.yaml
@@ -0,0 +1,17 @@
+suite: Controller > PrometheusRule
+templates:
+  - controller-prometheusrule.yaml
+
+tests:
+  - it: should create a PrometheusRule if `controller.metrics.prometheusRule.enabled` is true
+    set:
+      controller.metrics.enabled: true
+      controller.metrics.prometheusRule.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: PrometheusRule
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller
diff --git a/charts/ingress-nginx/tests/controller-servicemonitor_test.yaml b/charts/ingress-nginx/tests/controller-servicemonitor_test.yaml
new file mode 100644
index 000000000..310097c1a
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-servicemonitor_test.yaml
@@ -0,0 +1,29 @@
+suite: Controller > ServiceMonitor
+templates:
+  - controller-servicemonitor.yaml
+
+tests:
+  - it: should create a ServiceMonitor if `controller.metrics.serviceMonitor.enabled` is true
+    set:
+      controller.metrics.enabled: true
+      controller.metrics.serviceMonitor.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ServiceMonitor
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller
+
+  - it: should create a ServiceMonitor with annotations if `controller.metrics.serviceMonitor.annotations` is set
+    set:
+      controller.metrics.enabled: true
+      controller.metrics.serviceMonitor.enabled: true
+      controller.metrics.serviceMonitor.annotations:
+        my-little-annotation: test-value
+    asserts:
+      - equal:
+          path: metadata.annotations
+          value:
+            my-little-annotation: test-value
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index eee537ffe..a06093348 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -881,6 +881,7 @@ controller:
     serviceMonitor:
       enabled: false
       additionalLabels: {}
+      # -- Annotations to be added to the ServiceMonitor.
       annotations: {}
       ## The label to use to retrieve the job name from.
       ## jobLabel: "app.kubernetes.io/name"

From 3cde7770dd5bdc582d3bfc7e1307a04b6a80c094 Mon Sep 17 00:00:00 2001
From: Adrian Berger <43774417+adberger@users.noreply.github.com>
Date: Tue, 27 Aug 2024 01:35:17 +0200
Subject: [PATCH 1426/1641] Chart: Add
 `controller.metrics.prometheusRule.annotations`. (#11849)

---
 charts/ingress-nginx/README.md                       |  1 +
 .../templates/controller-prometheusrule.yaml         |  3 +++
 .../tests/controller-prometheusrule_test.yaml        | 12 ++++++++++++
 charts/ingress-nginx/values.yaml                     |  2 ++
 4 files changed, 18 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 3896ee978..99551e6d4 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -372,6 +372,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.metrics.port | int | `10254` |  |
 | controller.metrics.portName | string | `"metrics"` |  |
 | controller.metrics.prometheusRule.additionalLabels | object | `{}` |  |
+| controller.metrics.prometheusRule.annotations | object | `{}` | Annotations to be added to the PrometheusRule. |
 | controller.metrics.prometheusRule.enabled | bool | `false` |  |
 | controller.metrics.prometheusRule.rules | list | `[]` |  |
 | controller.metrics.service.annotations | object | `{}` |  |
diff --git a/charts/ingress-nginx/templates/controller-prometheusrule.yaml b/charts/ingress-nginx/templates/controller-prometheusrule.yaml
index 41684c370..4a9357f71 100644
--- a/charts/ingress-nginx/templates/controller-prometheusrule.yaml
+++ b/charts/ingress-nginx/templates/controller-prometheusrule.yaml
@@ -14,6 +14,9 @@ metadata:
   {{- if .Values.controller.metrics.prometheusRule.additionalLabels }}
     {{- toYaml .Values.controller.metrics.prometheusRule.additionalLabels | nindent 4 }}
   {{- end }}
+  {{- if .Values.controller.metrics.prometheusRule.annotations }}
+  annotations: {{ toYaml .Values.controller.metrics.prometheusRule.annotations | nindent 4 }}
+  {{- end }}
 spec:
 {{- if .Values.controller.metrics.prometheusRule.rules }}
   groups:
diff --git a/charts/ingress-nginx/tests/controller-prometheusrule_test.yaml b/charts/ingress-nginx/tests/controller-prometheusrule_test.yaml
index d60a98315..2d330919d 100644
--- a/charts/ingress-nginx/tests/controller-prometheusrule_test.yaml
+++ b/charts/ingress-nginx/tests/controller-prometheusrule_test.yaml
@@ -15,3 +15,15 @@ tests:
       - equal:
           path: metadata.name
           value: RELEASE-NAME-ingress-nginx-controller
+
+  - it: should create a PrometheusRule with annotations if `controller.metrics.prometheusRule.annotations` is set
+    set:
+      controller.metrics.enabled: true
+      controller.metrics.prometheusRule.enabled: true
+      controller.metrics.prometheusRule.annotations:
+        my-little-annotation: test-value
+    asserts:
+      - equal:
+          path: metadata.annotations
+          value:
+            my-little-annotation: test-value
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index a06093348..46cfa089b 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -899,6 +899,8 @@ controller:
     prometheusRule:
       enabled: false
       additionalLabels: {}
+      # -- Annotations to be added to the PrometheusRule.
+      annotations: {}
       # namespace: ""
       rules: []
       # # These are just examples rules, please adapt them to your needs

From e588b204c12e22fb0557f0f17744f8ced82efb00 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 29 Aug 2024 13:39:20 +0200
Subject: [PATCH 1427/1641] Bump github/codeql-action from 3.26.5 to 3.26.6 in
 the all group (#11904)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 2a1489f5d..aa8981aa3 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@2c779ab0d087cd7fe7b826087247c2c81f27bfa6 # v3.26.5
+        uses: github/codeql-action/upload-sarif@4dd16135b69a43b6c8efb853346f8437d92d3c93 # v3.26.6
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 2d135695d..d4a53a352 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@2c779ab0d087cd7fe7b826087247c2c81f27bfa6 # v3.26.5
+        uses: github/codeql-action/upload-sarif@4dd16135b69a43b6c8efb853346f8437d92d3c93 # v3.26.6
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 3bdaa57e0550f5f4fc340354b3ab88107e19b0eb Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 29 Aug 2024 13:39:32 +0200
Subject: [PATCH 1428/1641] Bump github.com/prometheus/common from 0.55.0 to
 0.57.0 (#11903)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 0f43520cc..62f2715cc 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.2
 	github.com/prometheus/client_model v0.6.1
-	github.com/prometheus/common v0.55.0
+	github.com/prometheus/common v0.57.0
 	github.com/spf13/cobra v1.8.1
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.9.0
diff --git a/go.sum b/go.sum
index b4022d912..0c7c819ad 100644
--- a/go.sum
+++ b/go.sum
@@ -186,8 +186,8 @@ github.com/prometheus/client_golang v1.20.2 h1:5ctymQzZlyOON1666svgwn3s6IKWgfbjs
 github.com/prometheus/client_golang v1.20.2/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
 github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
-github.com/prometheus/common v0.55.0 h1:KEi6DK7lXW/m7Ig5i47x0vRzuBsHuvJdi5ee6Y3G1dc=
-github.com/prometheus/common v0.55.0/go.mod h1:2SECS4xJG1kd8XF9IcM1gMX6510RAEL65zxzNImwdc8=
+github.com/prometheus/common v0.57.0 h1:Ro/rKjwdq9mZn1K5QPctzh+MA4Lp0BuYk5ZZEVhoNcY=
+github.com/prometheus/common v0.57.0/go.mod h1:7uRPFSUTbfZWsJ7MHY56sqt7hLQu3bxXHDnNhl8E9qI=
 github.com/prometheus/procfs v0.15.1 h1:YagwOFzUgYfKKHX6Dr+sHT7km/hxC76UB0learggepc=
 github.com/prometheus/procfs v0.15.1/go.mod h1:fB45yRUv8NstnjriLhBQLuOUt+WW4BsoGhij/e3PBqk=
 github.com/rogpeppe/go-internal v1.12.0 h1:exVL4IDcn6na9z1rAb56Vxr+CgyK3nn3O+epU5NdKM8=

From ab2f6d8e3ae4606cfaaaab0eaf6ce39853413205 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 29 Aug 2024 13:39:39 +0200
Subject: [PATCH 1429/1641] Bump google.golang.org/grpc from 1.65.0 to 1.66.0
 (#11902)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 62f2715cc..00e3ec55d 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.26.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
-	google.golang.org/grpc v1.65.0
+	google.golang.org/grpc v1.66.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index 0c7c819ad..4b6fec146 100644
--- a/go.sum
+++ b/go.sum
@@ -301,8 +301,8 @@ gomodules.xyz/jsonpatch/v2 v2.4.0 h1:Ci3iUJyx9UeRx7CeFN8ARgGbkESwJK+KB9lLcWxY/Zw
 gomodules.xyz/jsonpatch/v2 v2.4.0/go.mod h1:AH3dM2RI6uoBZxn3LVrfvJ3E0/9dG4cSrbuBJT4moAY=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240701130421-f6361c86f094 h1:BwIjyKYGsK9dMCBOorzRri8MQwmi7mT9rGHsCEinZkA=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240701130421-f6361c86f094/go.mod h1:Ue6ibwXGpU+dqIcODieyLOcgj7z8+IcskoNIgZxtrFY=
-google.golang.org/grpc v1.65.0 h1:bs/cUb4lp1G5iImFFd3u5ixQzweKizoZJAwBNLR42lc=
-google.golang.org/grpc v1.65.0/go.mod h1:WgYC2ypjlB0EiQi6wdKixMqukr6lBc0Vo+oOgjrM5ZQ=
+google.golang.org/grpc v1.66.0 h1:DibZuoBznOxbDQxRINckZcUvnCEvrW9pcWIE2yF9r1c=
+google.golang.org/grpc v1.66.0/go.mod h1:s3/l6xSSCURdVfAnL+TqCNMyTDAGN6+lZeVxnZR128Y=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From e99b512a5bea8b1a2d4476d8eb207b7d7c3718e8 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 29 Aug 2024 16:03:06 +0200
Subject: [PATCH 1430/1641] Bump github.com/onsi/ginkgo/v2 from 2.20.1 to
 2.20.2 in the all group (#11901)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 build/run-in-docker.sh                    |  2 +-
 go.mod                                    |  6 +++---
 go.sum                                    | 12 ++++++------
 go.work.sum                               |  4 ++++
 images/kube-webhook-certgen/rootfs/go.mod |  4 ++--
 images/kube-webhook-certgen/rootfs/go.sum | 12 ++++++------
 images/test-runner/Makefile               |  4 ++--
 test/e2e/run-chart-test.sh                |  2 +-
 test/e2e/run-kind-e2e.sh                  |  2 +-
 9 files changed, 26 insertions(+), 22 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index fcbf8f6cd..0c965666c 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -82,7 +82,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.20.0
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.20.2
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/go.mod b/go.mod
index 00e3ec55d..f8002d09c 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.3
-	github.com/onsi/ginkgo/v2 v2.20.1
+	github.com/onsi/ginkgo/v2 v2.20.2
 	github.com/opencontainers/runc v1.1.13
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.2
@@ -82,7 +82,7 @@ require (
 	github.com/google/gnostic-models v0.6.8 // indirect
 	github.com/google/go-cmp v0.6.0 // indirect
 	github.com/google/gofuzz v1.2.0 // indirect
-	github.com/google/pprof v0.0.0-20240727154555-813a5fbdbec8 // indirect
+	github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5 // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.6.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect
@@ -117,7 +117,7 @@ require (
 	golang.org/x/net v0.28.0 // indirect
 	golang.org/x/oauth2 v0.21.0 // indirect
 	golang.org/x/sync v0.8.0 // indirect
-	golang.org/x/sys v0.23.0 // indirect
+	golang.org/x/sys v0.24.0 // indirect
 	golang.org/x/term v0.23.0 // indirect
 	golang.org/x/text v0.17.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
diff --git a/go.sum b/go.sum
index 4b6fec146..88cef0712 100644
--- a/go.sum
+++ b/go.sum
@@ -92,8 +92,8 @@ github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeN
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
 github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/pprof v0.0.0-20240727154555-813a5fbdbec8 h1:FKHo8hFI3A+7w0aUQuYXQ+6EN5stWmeY/AZqtM8xk9k=
-github.com/google/pprof v0.0.0-20240727154555-813a5fbdbec8/go.mod h1:K1liHPHnj73Fdn/EKuT8nrFqBihUSKXoLYU0BuatOYo=
+github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5 h1:5iH8iuqE5apketRbSFBy+X1V0o+l+8NF1avt4HWl7cA=
+github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
@@ -165,8 +165,8 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.20.1 h1:YlVIbqct+ZmnEph770q9Q7NVAz4wwIiVNahee6JyUzo=
-github.com/onsi/ginkgo/v2 v2.20.1/go.mod h1:lG9ey2Z29hR41WMVthyJBGUBcBhGOtoPF2VFMvBXFCI=
+github.com/onsi/ginkgo/v2 v2.20.2 h1:7NVCeyIWROIAheY21RLS+3j2bb52W0W82tkberYytp4=
+github.com/onsi/ginkgo/v2 v2.20.2/go.mod h1:K9gyxPIlb+aIvnZ8bd9Ak+YP18w3APlR+5coaZoE2ag=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.34.1 h1:EUMJIKUjM8sKjYbtxQI9A4z2o+rruxnzNvpknOXie6k=
@@ -276,8 +276,8 @@ golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.23.0 h1:YfKFowiIMvtgl1UERQoTPPToxltDeZfbj4H7dVUCwmM=
-golang.org/x/sys v0.23.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.24.0 h1:Twjiwq9dn6R1fQcyiK+wQyHWfaz/BJB+YIpzU/Cv3Xg=
+golang.org/x/sys v0.24.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.23.0 h1:F6D4vR+EHoL9/sWAWgAR1H2DcHr4PareCbAaCo1RpuU=
 golang.org/x/term v0.23.0/go.mod h1:DgV24QBUrK6jhZXl+20l6UWznPlwAHm1Q1mGHtydmSk=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
diff --git a/go.work.sum b/go.work.sum
index 5a6fe2480..8b186c739 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -644,6 +644,7 @@ github.com/emicklei/go-restful/v3 v3.11.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRr
 github.com/envoyproxy/go-control-plane v0.11.1/go.mod h1:uhMcXKCQMEJHiAb0w+YGefQLaTEw+YhGluxZkrTmD0g=
 github.com/envoyproxy/go-control-plane v0.12.0 h1:4X+VP1GHd1Mhj6IB5mMeGbLCleqxjletLK6K0rbxyZI=
 github.com/envoyproxy/go-control-plane v0.12.0/go.mod h1:ZBTaoJ23lqITozF0M6G4/IragXCQKCnYbmlmtHvwRG0=
+github.com/envoyproxy/go-control-plane v0.12.1-0.20240621013728-1eb8caab5155/go.mod h1:5Wkq+JduFtdAXihLmeTJf+tRYIT4KBc2vPXDhwVo1pA=
 github.com/envoyproxy/protoc-gen-validate v1.0.2/go.mod h1:GpiZQP3dDbg4JouG/NNS7QWXpgx6x8QiMKdmN72jogE=
 github.com/envoyproxy/protoc-gen-validate v1.0.4 h1:gVPz/FMfvh57HdSJQyvBtF00j8JU4zdyUgIUNhlgg0A=
 github.com/envoyproxy/protoc-gen-validate v1.0.4/go.mod h1:qys6tmnRsYrQqIhm2bvKZH4Blx/1gTIZ2UKVY1M+Yew=
@@ -844,6 +845,7 @@ github.com/pierrec/lz4/v4 v4.1.15 h1:MO0/ucJhngq7299dKLwIMtgTfbkoSPF6AoMYDd8Q4q0
 github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e h1:aoZm08cpOy4WuID//EZDgcC4zIxODThtZNPirFr42+A=
 github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
 github.com/pkg/sftp v1.13.1 h1:I2qBYMChEhIjOgazfJmV3/mZM256btk6wkCDRmW7JYs=
+github.com/planetscale/vtprotobuf v0.6.1-0.20240319094008-0393e58bdf10/go.mod h1:t/avpk3KcrXxUnYOhZhMXJlSEyie6gQbtLq5NM3loB8=
 github.com/pquerna/cachecontrol v0.1.0 h1:yJMy84ti9h/+OEWa752kBTKv4XC30OtVVHYv/8cTqKc=
 github.com/pquerna/cachecontrol v0.1.0/go.mod h1:NrUG3Z7Rdu85UNR3vm7SOsl1nFIeSiQnrHV5K9mBcUI=
 github.com/prometheus/exporter-toolkit v0.11.0 h1:yNTsuZ0aNCNFQ3aFTD2uhPOvr4iD7fdBvKPAEGkNf+g=
@@ -1020,6 +1022,7 @@ golang.org/x/sys v0.19.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.21.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.22.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.23.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/telemetry v0.0.0-20240208230135-b75ee8823808/go.mod h1:KG1lNk5ZFNssSZLrpVb4sMXKMpGwGXOxSG3rnu2gZQQ=
 golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2 h1:IRJeR9r1pYWsHKTRe/IInb7lYvbBVIqOgsX/u0mbOWY=
 golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2/go.mod h1:TeRTkGYfJXctD9OcfyVLyj2J3IxLnKwHJR8f4D8a3YE=
@@ -1086,6 +1089,7 @@ google.golang.org/genproto/googleapis/api v0.0.0-20240227224415-6ceb2ff114de/go.
 google.golang.org/genproto/googleapis/api v0.0.0-20240318140521-94a12d6c2237/go.mod h1:Z5Iiy3jtmioajWHDGFk7CeugTyHtPvMHA4UTmUkyalE=
 google.golang.org/genproto/googleapis/api v0.0.0-20240528184218-531527333157 h1:7whR9kGa5LUwFtpLm2ArCEejtnxlGeLbAyjFY8sGNFw=
 google.golang.org/genproto/googleapis/api v0.0.0-20240528184218-531527333157/go.mod h1:99sLkeliLXfdj2J75X3Ho+rrVCaJze0uwN7zDDkjPVU=
+google.golang.org/genproto/googleapis/api v0.0.0-20240604185151-ef581f913117/go.mod h1:OimBR/bc1wPO9iV4NC2bpyjy3VnAwZh5EBPQdtaE5oo=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc h1:g3hIDl0jRNd9PPTs2uBzYuaD5mQuwOkZY0vSc0LR32o=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231030173426-d783a09b4405/go.mod h1:GRUCuLdzVqZte8+Dl/D4N25yLzcGqqWaYkeVOwulFqw=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231212172506-995d672761c0/go.mod h1:guYXGPwC6jwxgWKW5Y405fKWOFNwlvUlUnzyp9i0uqo=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 52746ebd9..0270c0d87 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -33,14 +33,14 @@ require (
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
-	github.com/onsi/ginkgo/v2 v2.20.0 // indirect
+	github.com/onsi/ginkgo/v2 v2.20.2 // indirect
 	github.com/onsi/gomega v1.34.1 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
 	github.com/stretchr/testify v1.9.0 // indirect
 	golang.org/x/net v0.28.0 // indirect
 	golang.org/x/oauth2 v0.18.0 // indirect
-	golang.org/x/sys v0.23.0 // indirect
+	golang.org/x/sys v0.24.0 // indirect
 	golang.org/x/term v0.23.0 // indirect
 	golang.org/x/text v0.17.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 8ce13c672..f96347108 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -32,8 +32,8 @@ github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeN
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
 github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/pprof v0.0.0-20240727154555-813a5fbdbec8 h1:FKHo8hFI3A+7w0aUQuYXQ+6EN5stWmeY/AZqtM8xk9k=
-github.com/google/pprof v0.0.0-20240727154555-813a5fbdbec8/go.mod h1:K1liHPHnj73Fdn/EKuT8nrFqBihUSKXoLYU0BuatOYo=
+github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5 h1:5iH8iuqE5apketRbSFBy+X1V0o+l+8NF1avt4HWl7cA=
+github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4=
@@ -61,8 +61,8 @@ github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/onrik/logrus v0.11.0 h1:pu+BCaWL36t0yQaj/2UHK2erf88dwssAKOT51mxPUVs=
 github.com/onrik/logrus v0.11.0/go.mod h1:fO2vlZwIdti6PidD3gV5YKt9Lq5ptpnP293RAe1ITwk=
-github.com/onsi/ginkgo/v2 v2.20.0 h1:PE84V2mHqoT1sglvHc8ZdQtPcwmvvt29WLEEO3xmdZw=
-github.com/onsi/ginkgo/v2 v2.20.0/go.mod h1:lG9ey2Z29hR41WMVthyJBGUBcBhGOtoPF2VFMvBXFCI=
+github.com/onsi/ginkgo/v2 v2.20.2 h1:7NVCeyIWROIAheY21RLS+3j2bb52W0W82tkberYytp4=
+github.com/onsi/ginkgo/v2 v2.20.2/go.mod h1:K9gyxPIlb+aIvnZ8bd9Ak+YP18w3APlR+5coaZoE2ag=
 github.com/onsi/gomega v1.34.1 h1:EUMJIKUjM8sKjYbtxQI9A4z2o+rruxnzNvpknOXie6k=
 github.com/onsi/gomega v1.34.1/go.mod h1:kU1QgUvBDLXBJq618Xvm2LUX6rSAfRaFRTcdOeDLwwY=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
@@ -123,8 +123,8 @@ golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.23.0 h1:YfKFowiIMvtgl1UERQoTPPToxltDeZfbj4H7dVUCwmM=
-golang.org/x/sys v0.23.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.24.0 h1:Twjiwq9dn6R1fQcyiK+wQyHWfaz/BJB+YIpzU/Cv3Xg=
+golang.org/x/sys v0.24.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.23.0 h1:F6D4vR+EHoL9/sWAWgAR1H2DcHr4PareCbAaCo1RpuU=
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 3d60a5313..74da2082f 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -59,7 +59,7 @@ image:
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.20.0 \
+		--build-arg GINKGO_VERSION=2.20.2 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -80,7 +80,7 @@ build: ensure-buildx
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.20.0 \
+		--build-arg GINKGO_VERSION=2.20.2 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 7d388c215..0069af02b 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.20.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.20.2
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index 9b4e82932..c2242e6f1 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -95,7 +95,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.20.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.20.2
   fi
 
   echo "[dev-env] .. done building controller images"

From 2c4217629c37f5e72afad0ba135ea970115dee2a Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 29 Aug 2024 20:25:56 +0200
Subject: [PATCH 1431/1641] Images: Trigger `test-runner` build. (#11916)

---
 images/test-runner/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/TAG b/images/test-runner/TAG
index 384942600..0ec25f750 100644
--- a/images/test-runner/TAG
+++ b/images/test-runner/TAG
@@ -1 +1 @@
-v0.0.9
+v1.0.0

From 6ca67b5296fb0e43652692ff43eba08b246cf294 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 29 Aug 2024 22:31:33 +0200
Subject: [PATCH 1432/1641] Tests: Bump `e2e-test-runner` to
 v20240829-2c421762. (#11919)

---
 build/run-in-docker.sh     | 2 +-
 test/e2e-image/Makefile    | 2 +-
 test/e2e/run-chart-test.sh | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 0c965666c..915c29d7a 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240812-3f0129aa@sha256:95c2aaf2a66e8cbbf7a7453046f3b024383c273a0988efab841cd96116afd1a9}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240829-2c421762@sha256:5b7809bfe9cbd9cd6bcb8033ca27576ca704f05ce729fe4dcb574810f7a25785}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 74f3cc437..8e3040177 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240812-3f0129aa@sha256:95c2aaf2a66e8cbbf7a7453046f3b024383c273a0988efab841cd96116afd1a9"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240829-2c421762@sha256:5b7809bfe9cbd9cd6bcb8033ca27576ca704f05ce729fe4dcb574810f7a25785"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 0069af02b..95465ee32 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -109,7 +109,7 @@ docker run --rm --interactive --network host \
     --volume $KUBECONFIG:/root/.kube/config \
     --volume "${DIR}/../../":/workdir \
     --workdir /workdir \
-    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240812-3f0129aa@sha256:95c2aaf2a66e8cbbf7a7453046f3b024383c273a0988efab841cd96116afd1a9 \
+    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240829-2c421762@sha256:5b7809bfe9cbd9cd6bcb8033ca27576ca704f05ce729fe4dcb574810f7a25785 \
         ct install \
         --charts charts/ingress-nginx \
         --helm-extra-args "--timeout 60s"

From 2cec24143d4b59a986560ff1e755adadd5d6bf4a Mon Sep 17 00:00:00 2001
From: Adam Sunderland <iterion@gmail.com>
Date: Sat, 31 Aug 2024 11:26:45 -0400
Subject: [PATCH 1433/1641] Allow any protocol for cors origins (#11153)

Co-authored-by: Ricardo Katz <rikatz@users.noreply.github.com>
---
 .../nginx-configuration/annotations.md        |  8 ++---
 internal/ingress/annotations/cors/main.go     |  9 ++---
 .../ingress/annotations/cors/main_test.go     | 36 +++++++++++++++++--
 test/e2e/annotations/cors.go                  | 29 +++++++++++++++
 4 files changed, 72 insertions(+), 10 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 80ceccfa9..29cd9cf14 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -387,13 +387,13 @@ CORS can be controlled with the following annotations:
 
 * `nginx.ingress.kubernetes.io/cors-allow-origin`: Controls what's the accepted Origin for CORS.
 
-    This is a multi-valued field, separated by ','. It must follow this format: `http(s)://origin-site.com` or `http(s)://origin-site.com:port`
+    This is a multi-valued field, separated by ','. It must follow this format: `protocol://origin-site.com` or `protocol://origin-site.com:port`
 
     - Default: `*`
-    - Example: `nginx.ingress.kubernetes.io/cors-allow-origin: "https://origin-site.com:4443, http://origin-site.com, https://example.org:1199"`
+    - Example: `nginx.ingress.kubernetes.io/cors-allow-origin: "https://origin-site.com:4443, http://origin-site.com, myprotocol://example.org:1199"`
 
-    It also supports single level wildcard subdomains and follows this format: `http(s)://*.foo.bar`, `http(s)://*.bar.foo:8080` or `http(s)://*.abc.bar.foo:9000`
-    - Example: `nginx.ingress.kubernetes.io/cors-allow-origin: "https://*.origin-site.com:4443, http://*.origin-site.com, https://example.org:1199"`
+    It also supports single level wildcard subdomains and follows this format: `protocol://*.foo.bar`, `protocol://*.bar.foo:8080` or `protocol://*.abc.bar.foo:9000`
+    - Example: `nginx.ingress.kubernetes.io/cors-allow-origin: "https://*.origin-site.com:4443, http://*.origin-site.com, myprotocol://example.org:1199"`
 
 * `nginx.ingress.kubernetes.io/cors-allow-credentials`: Controls if credentials can be passed during CORS operations.
 
diff --git a/internal/ingress/annotations/cors/main.go b/internal/ingress/annotations/cors/main.go
index d6e92b34d..b81514820 100644
--- a/internal/ingress/annotations/cors/main.go
+++ b/internal/ingress/annotations/cors/main.go
@@ -43,9 +43,9 @@ var (
 	// * Sets a group that can be (https?://)?*?.something.com:port?
 	// * Allows this to be repeated as much as possible, and separated by comma
 	// Otherwise it should be '*'
-	corsOriginRegexValidator = regexp.MustCompile(`^((((https?://)?(\*\.)?[A-Za-z0-9\-.]*(:\d+)?,?)+)|\*)?$`)
+	corsOriginRegexValidator = regexp.MustCompile(`^(((([a-z]+://)?(\*\.)?[A-Za-z0-9\-.]*(:\d+)?,?)+)|\*)?$`)
 	// corsOriginRegex defines the regex for validation inside Parse
-	corsOriginRegex = regexp.MustCompile(`^(https?://(\*\.)?[A-Za-z0-9\-.]*(:\d+)?|\*)?$`)
+	corsOriginRegex = regexp.MustCompile(`^([a-z]+://(\*\.)?[A-Za-z0-9\-.]*(:\d+)?|\*)?$`)
 	// Method must contain valid methods list (PUT, GET, POST, BLA)
 	// May contain or not spaces between each verb
 	corsMethodsRegex = regexp.MustCompile(`^([A-Za-z]+,?\s?)+$`)
@@ -78,8 +78,9 @@ var corsAnnotation = parser.Annotation{
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation controls what's the accepted Origin for CORS.
-			This is a multi-valued field, separated by ','. It must follow this format: http(s)://origin-site.com or http(s)://origin-site.com:port
-			It also supports single level wildcard subdomains and follows this format: http(s)://*.foo.bar, http(s)://*.bar.foo:8080 or http(s)://*.abc.bar.foo:9000`,
+			This is a multi-valued field, separated by ','. It must follow this format: protocol://origin-site.com or protocol://origin-site.com:port
+			It also supports single level wildcard subdomains and follows this format: https://*.foo.bar, http://*.bar.foo:8080 or myprotocol://*.abc.bar.foo:9000
+			Protocol can be any lowercase string, like http, https, or mycustomprotocol.`,
 		},
 		corsAllowHeadersAnnotation: {
 			Validator: parser.ValidateRegex(parser.HeadersVariable, true),
diff --git a/internal/ingress/annotations/cors/main_test.go b/internal/ingress/annotations/cors/main_test.go
index a69390a17..dee36fcae 100644
--- a/internal/ingress/annotations/cors/main_test.go
+++ b/internal/ingress/annotations/cors/main_test.go
@@ -27,6 +27,8 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
+const enableAnnotation = "true"
+
 func buildIngress() *networking.Ingress {
 	defaultBackend := networking.IngressBackend{
 		Service: &networking.IngressServiceBackend{
@@ -76,7 +78,7 @@ func TestIngressCorsConfigValid(t *testing.T) {
 	data := map[string]string{}
 
 	// Valid
-	data[parser.GetAnnotationWithPrefix(corsEnableAnnotation)] = "true"
+	data[parser.GetAnnotationWithPrefix(corsEnableAnnotation)] = enableAnnotation
 	data[parser.GetAnnotationWithPrefix(corsAllowHeadersAnnotation)] = "DNT,X-CustomHeader, Keep-Alive,User-Agent"
 	data[parser.GetAnnotationWithPrefix(corsAllowCredentialsAnnotation)] = "false"
 	data[parser.GetAnnotationWithPrefix(corsAllowMethodsAnnotation)] = "GET, PATCH"
@@ -178,7 +180,7 @@ func TestIngresCorsConfigAllowOriginWithTrailingComma(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
-	data[parser.GetAnnotationWithPrefix(corsEnableAnnotation)] = "true"
+	data[parser.GetAnnotationWithPrefix(corsEnableAnnotation)] = enableAnnotation
 
 	// Include a trailing comma and an empty value between the commas.
 	data[parser.GetAnnotationWithPrefix(corsAllowOriginAnnotation)] = "https://origin123.test.com:4443,    ,https://origin321.test.com:4443,"
@@ -203,3 +205,33 @@ func TestIngresCorsConfigAllowOriginWithTrailingComma(t *testing.T) {
 		t.Errorf("expected %v but returned %v", expectedCorsAllowOrigins, nginxCors.CorsAllowOrigin)
 	}
 }
+
+func TestIngressCorsConfigAllowOriginWithNonHttpProtocol(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix(corsEnableAnnotation)] = enableAnnotation
+
+	// Include a trailing comma and an empty value between the commas.
+	data[parser.GetAnnotationWithPrefix(corsAllowOriginAnnotation)] = "test://localhost"
+	ing.SetAnnotations(data)
+
+	corst, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("error parsing annotations: %v", err)
+	}
+
+	nginxCors, ok := corst.(*Config)
+	if !ok {
+		t.Errorf("expected a Config type but returned %t", corst)
+	}
+
+	if !nginxCors.CorsEnabled {
+		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix(corsEnableAnnotation)], nginxCors.CorsEnabled)
+	}
+
+	expectedCorsAllowOrigins := []string{"test://localhost"}
+	if !reflect.DeepEqual(nginxCors.CorsAllowOrigin, expectedCorsAllowOrigins) {
+		t.Errorf("expected %v but returned %v", expectedCorsAllowOrigins, nginxCors.CorsAllowOrigin)
+	}
+}
diff --git a/test/e2e/annotations/cors.go b/test/e2e/annotations/cors.go
index a14a5761f..58f4445f7 100644
--- a/test/e2e/annotations/cors.go
+++ b/test/e2e/annotations/cors.go
@@ -669,4 +669,33 @@ var _ = framework.DescribeAnnotation("cors-*", func() {
 			Headers().
 			NotContainsKey("Access-Control-Allow-Origin")
 	})
+
+	ginkgo.It("should allow - origins with non-http[s] protocols", func() {
+		host := corsHost
+		origin := "test://localhost"
+		origin2 := "tauri://localhost:3000"
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/enable-cors":       "true",
+			"nginx.ingress.kubernetes.io/cors-allow-origin": "test://localhost, tauri://localhost:3000",
+		}
+
+		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			WithHeader("Origin", origin).
+			Expect().
+			Status(http.StatusOK).Headers().
+			ValueEqual("Access-Control-Allow-Origin", []string{"test://localhost"})
+
+		f.HTTPTestClient().
+			GET("/").
+			WithHeader("Host", host).
+			WithHeader("Origin", origin2).
+			Expect().
+			Status(http.StatusOK).Headers().
+			ValueEqual("Access-Control-Allow-Origin", []string{"tauri://localhost:3000"})
+	})
 })

From c9743ae58599ad43236a7b28aea0f6bd8cd19c4a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 2 Sep 2024 16:41:15 +0100
Subject: [PATCH 1434/1641] Bump the all group with 2 updates (#11922)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml              | 4 ++--
 .github/workflows/scorecards.yml       | 2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index d240181c3..05cf9269c 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -186,7 +186,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a # v4.3.6
+        uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0
         with:
           name: docker.tar.gz
           path: docker.tar.gz
@@ -209,7 +209,7 @@ jobs:
       - name: Set up Helm
         uses: azure/setup-helm@fe7b79cd5ee1e45176fcad797de68ecaf3ca4814 # v4.2.0
 
-      - uses: actions/setup-python@39cd14951b08e74b54015e9e001cdefcf80e669f # v5.1.1
+      - uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 # v5.2.0
         with:
           python-version: '3.x'
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index aa8981aa3..a1e9c4ecc 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a # v4.3.6
+        uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0
         with:
           name: SARIF file
           path: results.sarif
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 7ab75feab..33dd48418 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -49,7 +49,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports ${{ inputs.variation }}
-        uses: actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a # v4.3.6
+        uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}

From e9259af906f462ff052e9fd80247945d1fb7f661 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 3 Sep 2024 22:11:37 +0100
Subject: [PATCH 1435/1641] Bump github.com/opencontainers/runc from 1.1.13 to
 1.1.14 (#11928)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index f8002d09c..36b5f79e1 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.3
 	github.com/onsi/ginkgo/v2 v2.20.2
-	github.com/opencontainers/runc v1.1.13
+	github.com/opencontainers/runc v1.1.14
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.2
 	github.com/prometheus/client_model v0.6.1
diff --git a/go.sum b/go.sum
index 88cef0712..51d85b04c 100644
--- a/go.sum
+++ b/go.sum
@@ -171,8 +171,8 @@ github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7J
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.34.1 h1:EUMJIKUjM8sKjYbtxQI9A4z2o+rruxnzNvpknOXie6k=
 github.com/onsi/gomega v1.34.1/go.mod h1:kU1QgUvBDLXBJq618Xvm2LUX6rSAfRaFRTcdOeDLwwY=
-github.com/opencontainers/runc v1.1.13 h1:98S2srgG9vw0zWcDpFMn5TRrh8kLxa/5OFUstuUhmRs=
-github.com/opencontainers/runc v1.1.13/go.mod h1:R016aXacfp/gwQBYw2FDGa9m+n6atbLWrYY8hNMT/sA=
+github.com/opencontainers/runc v1.1.14 h1:rgSuzbmgz5DUJjeSnw337TxDbRuqjs6iqQck/2weR6w=
+github.com/opencontainers/runc v1.1.14/go.mod h1:E4C2z+7BxR7GHXp0hAY53mek+x49X1LjPNeMTfRGvOA=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
 github.com/opencontainers/runtime-spec v1.2.0/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=

From a647bc1b7aca33171809b143e96b35da1c989b79 Mon Sep 17 00:00:00 2001
From: Ramiro Algozino <algozino@gmail.com>
Date: Wed, 4 Sep 2024 23:11:01 +0200
Subject: [PATCH 1436/1641] Chart: Implement
 `controller.admissionWebhooks.service.servicePort`. (#11931)

---
 .../validating-webhook.yaml                   |  1 +
 .../templates/controller-service-webhook.yaml |  2 +-
 .../validating-webhook_test.yaml              | 32 +++++++++++++++++++
 .../controller-service-webhook_test.yaml      | 32 +++++++++++++++++++
 4 files changed, 66 insertions(+), 1 deletion(-)
 create mode 100644 charts/ingress-nginx/tests/admission-webhooks/validating-webhook_test.yaml
 create mode 100644 charts/ingress-nginx/tests/controller-service-webhook_test.yaml

diff --git a/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
index 4cd36a62e..0949cea75 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/validating-webhook.yaml
@@ -40,6 +40,7 @@ webhooks:
       service:
         name: {{ include "ingress-nginx.controller.fullname" . }}-admission
         namespace: {{ include "ingress-nginx.namespace" . }}
+        port: {{ .Values.controller.admissionWebhooks.service.servicePort }}
         path: /networking/v1/ingresses
     {{- if .Values.controller.admissionWebhooks.timeoutSeconds }}
     timeoutSeconds: {{ .Values.controller.admissionWebhooks.timeoutSeconds }}
diff --git a/charts/ingress-nginx/templates/controller-service-webhook.yaml b/charts/ingress-nginx/templates/controller-service-webhook.yaml
index 6dcf1a10a..67aac0d9a 100644
--- a/charts/ingress-nginx/templates/controller-service-webhook.yaml
+++ b/charts/ingress-nginx/templates/controller-service-webhook.yaml
@@ -29,7 +29,7 @@ spec:
 {{- end }}
   ports:
     - name: https-webhook
-      port: 443
+      port: {{ .Values.controller.admissionWebhooks.service.servicePort }}
       targetPort: webhook
     {{- if semverCompare ">=1.20.0-0" .Capabilities.KubeVersion.Version }}
       appProtocol: https
diff --git a/charts/ingress-nginx/tests/admission-webhooks/validating-webhook_test.yaml b/charts/ingress-nginx/tests/admission-webhooks/validating-webhook_test.yaml
new file mode 100644
index 000000000..b9d6d780b
--- /dev/null
+++ b/charts/ingress-nginx/tests/admission-webhooks/validating-webhook_test.yaml
@@ -0,0 +1,32 @@
+suite: Admission Webhooks > ValidatingWebhookConfiguration
+templates:
+  - admission-webhooks/validating-webhook.yaml
+
+tests:
+  - it: should not create a ValidatingWebhookConfiguration if `controller.admissionWebhooks.enabled` is false
+    set:
+      controller.admissionWebhooks.enabled: false
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a ValidatingWebhookConfiguration if `controller.admissionWebhooks.enabled` is true
+    set:
+      controller.admissionWebhooks.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ValidatingWebhookConfiguration
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-admission
+
+  - it: should create a ValidatingWebhookConfiguration with a custom port if `controller.admissionWebhooks.service.servicePort` is set
+    set:
+      controller.admissionWebhooks.enabled: true
+      controller.admissionWebhooks.service.servicePort: 9443
+    asserts:
+      - equal:
+          path: webhooks[0].clientConfig.service.port
+          value: 9443
diff --git a/charts/ingress-nginx/tests/controller-service-webhook_test.yaml b/charts/ingress-nginx/tests/controller-service-webhook_test.yaml
new file mode 100644
index 000000000..1c759edbe
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-service-webhook_test.yaml
@@ -0,0 +1,32 @@
+suite: Controller > Service > Webhook
+templates:
+  - controller-service-webhook.yaml
+
+tests:
+  - it: should not create a webhook Service if `controller.admissionWebhooks.enabled` is false
+    set:
+      controller.admissionWebhooks.enabled: false
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a webhook Service if `controller.admissionWebhooks.enabled` is true
+    set:
+      controller.admissionWebhooks.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: Service
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-controller-admission
+
+  - it: should create a webhook Service with a custom port if `controller.admissionWebhooks.service.servicePort` is set
+    set:
+      controller.admissionWebhooks.enabled: true
+      controller.admissionWebhooks.service.servicePort: 9443
+    asserts:
+      - equal:
+          path: spec.ports[0].port
+          value: 9443

From 4f230493742029212ce007c5e4b9aefa7d0a149b Mon Sep 17 00:00:00 2001
From: Nathan Baulch <nathan.baulch@gmail.com>
Date: Sat, 7 Sep 2024 00:59:43 +1000
Subject: [PATCH 1437/1641] Fix minor typos (#11935)

---
 .github/workflows/zz-tmpl-images.yaml         |  2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml        |  2 +-
 Changelog.md                                  | 52 +++++++++----------
 MANUAL_RELEASE.md                             | 16 +++---
 NEW_CONTRIBUTOR.md                            | 10 ++--
 build/run-ingress-controller.sh               |  2 +-
 changelog/controller-1.11.0.md                |  2 +-
 changelog/controller-1.6.4.md                 |  2 +-
 changelog/controller-1.7.1.md                 |  2 +-
 changelog/controller-1.8.0.md                 |  2 +-
 changelog/controller-1.9.0-beta.0.md          |  2 +-
 changelog/controller-1.9.0.md                 |  2 +-
 .../changelog/helm-chart-4.1.2.md             |  2 +-
 .../changelog/helm-chart-4.7.0.md             |  2 +-
 cmd/plugin/request/request.go                 |  2 +-
 docs/e2e-tests.md                             |  2 +-
 docs/examples/index.md                        |  2 +-
 docs/examples/openpolicyagent/README.md       | 20 +++----
 docs/examples/openpolicyagent/template.yaml   | 10 ++--
 .../third-party-addons/opentelemetry.md       |  6 +--
 .../rootfs/pkg/k8s/k8s_test.go                |  2 +-
 internal/admission/controller/server.go       |  2 +-
 .../ingress/annotations/loadbalancing/main.go | 14 ++---
 .../ingress/annotations/mirror/main_test.go   |  2 +-
 .../ingress/annotations/serversnippet/main.go |  2 +-
 .../annotations/serviceupstream/main.go       |  2 +-
 internal/ingress/annotations/snippet/main.go  |  2 +-
 .../ingress/annotations/streamsnippet/main.go |  2 +-
 internal/ingress/controller/config/config.go  |  8 +--
 internal/ingress/controller/endpointslices.go |  2 +-
 internal/ingress/controller/nginx_test.go     |  2 +-
 .../controller/store/endpointslice_test.go    |  4 +-
 .../ingress/controller/store/store_test.go    |  6 +--
 internal/ingress/controller/util.go           |  2 +-
 .../ingress/metric/collectors/controller.go   |  6 +--
 internal/ingress/resolver/main.go             |  6 +--
 internal/ingress/resolver/mock.go             |  6 +--
 internal/net/ssl/ssl.go                       |  4 +-
 pkg/apis/ingress/types.go                     |  8 +--
 .../nginx/lua/test/balancer/sticky_test.lua   |  2 +-
 test/e2e/endpointslices/topology.go           |  2 +-
 test/e2e/framework/deployment.go              |  2 +-
 test/e2e/framework/framework.go               |  2 +-
 test/e2e/gracefulshutdown/shutdown.go         |  2 +-
 test/e2e/settings/global_external_auth.go     |  6 +--
 test/k6/loadtest.js                           |  4 +-
 test/k6/smoketest.js                          |  6 +--
 47 files changed, 125 insertions(+), 125 deletions(-)

diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index 4594a1de4..6d5a4ef17 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -1,5 +1,5 @@
 #### THIS IS A TEMPLATE ####
-# This workflow is created to be a template for every time an e2e teest is required,
+# This workflow is created to be a template for every time an e2e test is required,
 
 on:
   workflow_call:
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 33dd48418..20106cc95 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -1,5 +1,5 @@
 #### THIS IS A TEMPLATE ####
-# This workflow is created to be a template for every time an e2e teest is required,
+# This workflow is created to be a template for every time an e2e test is required,
 
 on:
   workflow_call:
diff --git a/Changelog.md b/Changelog.md
index f74ff8119..f049654ee 100644
--- a/Changelog.md
+++ b/Changelog.md
@@ -2,7 +2,7 @@
 
 All New change are in [Changelog](./changelog)
 
-### 1.5.1 
+### 1.5.1
 
 * Upgrade NGINX to 1.21.6
 * Upgrade Golang 1.19.2
@@ -102,18 +102,18 @@ Images:
 ### Community Updates
 
 We will discuss the results of our Community Survey, progress on the stabilization project, and ideas going
-forward with the project at 
-[Kubecon NA 2022 in Detroit](https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/). Come join us 
+forward with the project at
+[Kubecon NA 2022 in Detroit](https://events.linuxfoundation.org/kubecon-cloudnativecon-north-america/). Come join us
 and let us hear what you'd like to see in the future for ingress-nginx.
 
 https://kccncna2022.sched.com/event/18lgl?iframe=no
 
 [**Kubernetes Registry change notice**](https://twitter.com/BenTheElder/status/1575898507235323904)
-The [@kubernetesio](https://twitter.com/kubernetesio) container image host http://k8s.gcr.io is 
-*actually* getting redirected to the community controlled http://registry.k8s.io starting with a small portion of 
+The [@kubernetesio](https://twitter.com/kubernetesio) container image host http://k8s.gcr.io is
+*actually* getting redirected to the community controlled http://registry.k8s.io starting with a small portion of
 traffic on October 3rd.
 
-If you notice any issues, *please* ping [Ben Elder](https://twitter.com/BenTheElder), 
+If you notice any issues, *please* ping [Ben Elder](https://twitter.com/BenTheElder),
 [@thockin](https://twitter.com/thockin), [@ameukam](https://twitter.com/ameukam),or report issues in slack to
 [sig-k8s-infra slack channel](https://kubernetes.slack.com/archives/CCK68P2Q2).
 
@@ -123,7 +123,7 @@ If you notice any issues, *please* ping [Ben Elder](https://twitter.com/BenTheEl
 [8890](https://github.com/kubernetes/ingress-nginx/pull/8890)
 * Update to Prometheus metric names, more information [available here]( https://github.com/kubernetes/ingress-nginx/pull/8728
 )
-* Deprecated Kubernetes versions 1.20-1.21, Added support for, 1.25, currently supported versions v1.22, v1.23, v1.24, v1.25  
+* Deprecated Kubernetes versions 1.20-1.21, Added support for, 1.25, currently supported versions v1.22, v1.23, v1.24, v1.25
 
 ADDED
 * `_request_duration_seconds` Histogram
@@ -203,11 +203,11 @@ Images:
 
 ### 1.3.1
 
-In v1.3.1 leader elections will be done entirely using the Lease API and no longer using configmaps. 
+In v1.3.1 leader elections will be done entirely using the Lease API and no longer using configmaps.
 v1.3.0 is a safe transition version, using v1.3.0 can automatically complete the merging of election locks, and then you can safely upgrade to v1.3.1.
 
-Also, *important note*, with the Release of Kubernetes v1.25 we are dropping support for the legacy branches, 
-Also, *important note*, with the release of Kubernetes v1.25, we are dropping support for the legacy edition, 
+Also, *important note*, with the Release of Kubernetes v1.25 we are dropping support for the legacy branches,
+Also, *important note*, with the release of Kubernetes v1.25, we are dropping support for the legacy edition,
 that means all version <1.0.0 of the ingress-nginx-controller.
 
 ## Image:
@@ -277,11 +277,11 @@ All other Changes
 
 ### 1.3.0
 
-Image: 
+Image:
 - registry.k8s.io/ingress-nginx/controller:v1.3.0@sha256:d1707ca76d3b044ab8a28277a2466a02100ee9f58a86af1535a3edf9323ea1b5
 - registry.k8s.io/ingress-nginx/controller-chroot:v1.3.0@sha256:0fcb91216a22aae43b374fc2e6a03b8afe9e8c78cbf07a09d75636dc4ea3c191
 
-_IMPORTANT CHANGES:_ 
+_IMPORTANT CHANGES:_
 * This release removes support for Kubernetes v1.19.0
 * This release adds support for Kubernetes v1.24.0
 * Starting with this release, we will need permissions on the `coordination.k8s.io/leases` resource for leaderelection lock
@@ -352,11 +352,11 @@ _Changes:_
 
 ### 1.2.0
 
-Image: 
+Image:
 - k8s.gcr.io/ingress-nginx/controller:v1.2.0@sha256:d8196e3bc1e72547c5dec66d6556c0ff92a23f6d0919b206be170bc90d5f9185
 - k8s.gcr.io/ingress-nginx/controller-chroot:v1.2.0@sha256:fb17f1700b77d4fcc52ca6f83ffc2821861ae887dbb87149cf5cbc52bea425e5
 
-This minor version release, introduces 2 breaking changes. For the first time, an option to jail/chroot the nginx process, inside the controller container, is being introduced.. This provides an additional layer of security, for sensitive information like K8S serviceaccounts. This release also brings a special new feature of deep inspection into objects. The inspection is a walk through of all the spec, checking for possible attempts to escape configs. Currently such an inspection only occurs for `networking.Ingress`.  Additionally there are fixes for the recently announced CVEs on busybox & ssl_client. And there is a fix to a recently introduced redirection related bug, that was setting the protocol on URLs to "nil".
+This minor version release, introduces 2 breaking changes. For the first time, an option to jail/chroot the nginx process, inside the controller container, is being introduced. This provides an additional layer of security, for sensitive information like K8S serviceaccounts. This release also brings a special new feature of deep inspection into objects. The inspection is a walk through of all the spec, checking for possible attempts to escape configs. Currently such an inspection only occurs for `networking.Ingress`.  Additionally there are fixes for the recently announced CVEs on busybox & ssl_client. And there is a fix to a recently introduced redirection related bug, that was setting the protocol on URLs to "nil".
 
 _Changes:_
 
@@ -419,7 +419,7 @@ _Changes:_
 **Image:**
 - k8s.gcr.io/ingress-nginx/controller:v1.1.3@sha256:31f47c1e202b39fadecf822a9b76370bd4baed199a005b3e7d4d1455f4fd3fe2
 
-This release upgrades Alpine to 3.14.4 and nginx to 1.19.10 
+This release upgrades Alpine to 3.14.4 and nginx to 1.19.10
 
 Patches [OpenSSL CVE-2022-0778](https://github.com/kubernetes/ingress-nginx/issues/8339)
 
@@ -460,7 +460,7 @@ _Changes:_
 
 ### 1.1.2
 
-**Image:** 
+**Image:**
 - k8s.gcr.io/ingress-nginx/controller:v1.1.2@sha256:28b11ce69e57843de44e3db6413e98d09de0f6688e33d4bd384002a44f78405c
 
 This release bumps grpc version to 1.44.0 & runc to version 1.1.0. The release also re-introduces the ingress.class annotation, which was previously declared as deprecated. Besides that, several bug fixes and improvements are listed below.
@@ -502,7 +502,7 @@ _Changes:_
 
 ### 1.1.1
 
-**Image:** 
+**Image:**
 - k8s.gcr.io/ingress-nginx/controller:v1.1.1@sha256:0bc88eb15f9e7f84e8e56c14fa5735aaa488b840983f87bd79b1054190e660de
 
 This release contains several fixes and improvements. This image is now built using Go v1.17.6 and gRPC v1.43.0. See detailed list below.
@@ -571,9 +571,9 @@ _Changes:_
 
 _Possible Breaking Change_
 We now implement string sanitization in annotation values. This means that words like "location", "by_lua" and
-others will drop the reconciliation of an Ingress object. 
+others will drop the reconciliation of an Ingress object.
 
-Users from mod_security and other features should be aware that some blocked values may be used by those features 
+Users from mod_security and other features should be aware that some blocked values may be used by those features
 and must be manually unblocked by the Ingress Administrator.
 
 For more details please check [https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#annotation-value-word-blocklist]
@@ -592,7 +592,7 @@ _Changes:_
 - k8s.gcr.io/ingress-nginx/controller:v1.0.4@sha256:545cff00370f28363dad31e3b59a94ba377854d3a11f18988f5f9e56841ef9ef
 
 _Possible Breaking Change_
-We have disabled the builtin ssl_session_cache due to possible memory fragmentation. This should not impact the majority of users, but please let us know 
+We have disabled the builtin ssl_session_cache due to possible memory fragmentation. This should not impact the majority of users, but please let us know
 if you face any problem
 
 _Changes:_
@@ -608,7 +608,7 @@ _Changes:_
 - k8s.gcr.io/ingress-nginx/controller:v1.0.3@sha256:4ade87838eb8256b094fbb5272d7dda9b6c7fa8b759e6af5383c1300996a7452
 
 **Known Issues**
-* Ingress controller now (starting from v1.0.0) mandates cluster scoped access to IngressClass. This leads to problems when updating old Ingress controller to newest version, as described [here](https://github.com/kubernetes/ingress-nginx/issues/7510). We plan to fix it in v1.0.4, see [this](https://github.com/kubernetes/ingress-nginx/pull/7578). 
+* Ingress controller now (starting from v1.0.0) mandates cluster scoped access to IngressClass. This leads to problems when updating old Ingress controller to newest version, as described [here](https://github.com/kubernetes/ingress-nginx/issues/7510). We plan to fix it in v1.0.4, see [this](https://github.com/kubernetes/ingress-nginx/pull/7578).
 
 _New Features:_
 
@@ -624,7 +624,7 @@ _Changes:_
 - k8s.gcr.io/ingress-nginx/controller:v1.0.2@sha256:85b53b493d6d658d8c013449223b0ffd739c76d76dc9bf9000786669ec04e049
 
 **Known Issues**
-* Ingress controller now (starting from v1.0.0) mandates cluster scoped access to IngressClass. This leads to problems when updating old Ingress controller to newest version, as described [here](https://github.com/kubernetes/ingress-nginx/issues/7510). We plan to fix it in v1.0.3, see [this](https://github.com/kubernetes/ingress-nginx/pull/7578). 
+* Ingress controller now (starting from v1.0.0) mandates cluster scoped access to IngressClass. This leads to problems when updating old Ingress controller to newest version, as described [here](https://github.com/kubernetes/ingress-nginx/issues/7510). We plan to fix it in v1.0.3, see [this](https://github.com/kubernetes/ingress-nginx/pull/7578).
 
 _New Features:_
 
@@ -640,7 +640,7 @@ _Changes:_
 - k8s.gcr.io/ingress-nginx/controller:v1.0.1@sha256:26bbd57f32bac3b30f90373005ef669aae324a4de4c19588a13ddba399c6664e
 
 **Known Issues**
-* Ingress controller now (starting from v1.0.0) mandates cluster scoped access to IngressClass. This leads to problems when updating old Ingress controller to newest version, as described [here](https://github.com/kubernetes/ingress-nginx/issues/7510). We plan to fix it in v1.0.2, see [this](https://github.com/kubernetes/ingress-nginx/pull/7578). 
+* Ingress controller now (starting from v1.0.0) mandates cluster scoped access to IngressClass. This leads to problems when updating old Ingress controller to newest version, as described [here](https://github.com/kubernetes/ingress-nginx/issues/7510). We plan to fix it in v1.0.2, see [this](https://github.com/kubernetes/ingress-nginx/pull/7578).
 
 _New Features:_
 
@@ -883,7 +883,7 @@ _Changes:_
   test #7255 
 - [X] [#7216](https://github.com/kubernetes/ingress-nginx/pull/7216) Admission: Skip validation checks if an ingress 
   is marked as deleted #7216
-  
+
 ### 1.0.0-beta.3
 ** This is a breaking change**
 
@@ -2193,7 +2193,7 @@ _New Features:_
 
   If the active connections end before that, the pod will terminate gracefully at that time.
 
-  To efectively take advantage of this feature, the Configmap feature [worker-shutdown-timeout](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#worker-shutdown-timeout) new value is `240s` instead of `10s`.
+  To effectively take advantage of this feature, the Configmap feature [worker-shutdown-timeout](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#worker-shutdown-timeout) new value is `240s` instead of `10s`.
 
   **IMPORTANT:** this value has a side effect during reloads, consuming more memory until the old NGINX workers are replaced.
 
@@ -2603,7 +2603,7 @@ _New Features:_
 _Breaking changes:_
 
 - The NGINX server listening in port 18080 was removed. It was replaced by a server using an unix socket as port [#3684](https://github.com/kubernetes/ingress-nginx/pull/3684)
-  This server was internal to the ingress controller. In case this was being acceded from the outside, you can restore the old server using the `http-snipet` feature in the configuration configmap like:
+  This server was internal to the ingress controller. In case this was being acceded from the outside, you can restore the old server using the `http-snippet` feature in the configuration configmap like:
 
   ```yaml
   http-snippet: |
diff --git a/MANUAL_RELEASE.md b/MANUAL_RELEASE.md
index d7144b85d..b1c1fd068 100644
--- a/MANUAL_RELEASE.md
+++ b/MANUAL_RELEASE.md
@@ -177,21 +177,21 @@ Promoting the images basically means that images, that were pushed to staging co
             ```
             - The -L 38 was used for 2 reasons.
               - Default number of results is 30 and there were more than 30 PRs merged while releasing v1.1.1. If you see the current/soon-to-be-old changelog, you can look at the most recent PR number that has been accounted for already, and start from after that last accounted for PR.
-              -  The other reason to use -L 38 was to ommit the 39th, the 40th and the 41st line in the resulting list. These were non-relevant PRs.
+              -  The other reason to use -L 38 was to omit the 39th, the 40th and the 41st line in the resulting list. These were non-relevant PRs.
             - If you save the output of above command to a file called prlist.txt. It looks somewhat like this ;
 
               ```
-              % cat ~/Downloads/prlist.txt 
+              % cat ~/Downloads/prlist.txt
               8129    fix syntax in docs for multi-tls example
               8120    Update go in runner and release v1.1.1
               8119    Update to go v1.17.6
               8118    Remove deprecated libraries, update other libs
               8117    Fix codegen errors
-              8115    chart/ghaction: set the correct permission to have access to push a release 
+              8115    chart/ghaction: set the correct permission to have access to push a release
               ....
               ```
               You can delete the lines, that refer to PRs of the release process itself. We only need to list the feature/bugfix PRs. You can also delete the lines that are housekeeping or not really worth mentioning in the changelog.
-          -  you use some easy automation in bash/python/other, to get the PR-List that can be used in the changelog. For example, its possible to use a bash scripty way, seen below, to convert those plaintext PR numbers into clickable links. 
+          -  you use some easy automation in bash/python/other, to get the PR-List that can be used in the changelog. For example, it's possible to use a bash scripty way, seen below, to convert those plaintext PR numbers into clickable links.
 
             ```
             #!/usr/bin/bash
@@ -205,7 +205,7 @@ Promoting the images basically means that images, that were pushed to staging co
             done <$file
 
             ```
-          - There was a parsing issue and path issue on MacOS, so above scrpt had to be modified and MacOS monterey compatible script is below ;
+          - There was a parsing issue and path issue on MacOS, so above script had to be modified and MacOS monterey compatible script is below ;
 
             ```
             #!/bin/bash
@@ -231,7 +231,7 @@ Promoting the images basically means that images, that were pushed to staging co
     - tag
     - digest
 
-  - [helm-docs](https://github.com/norwoodj/helm-docs) is a tool that generates the README.md for a helm-chart automatically. In the CI pipeline workflow of github actions (/.github/workflows/ci.yaml), you can see how helm-docs is used. But the CI pipeline is not designed to make commits back into the project. So we need to run helm-docs manually, and check in the resulting autogenerated README.md at the path /charts/ingress-nginx/README.md 
+  - [helm-docs](https://github.com/norwoodj/helm-docs) is a tool that generates the README.md for a helm-chart automatically. In the CI pipeline workflow of github actions (/.github/workflows/ci.yaml), you can see how helm-docs is used. But the CI pipeline is not designed to make commits back into the project. So we need to run helm-docs manually, and check in the resulting autogenerated README.md at the path /charts/ingress-nginx/README.md
     ```
           GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.11.0
           ./helm-docs --chart-search-root=${GITHUB_WORKSPACE}/charts
@@ -274,7 +274,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
 ### h. Update README.md
 
-- Update the table in README.md in the root of the projet to reflect the support matrix. Add the new release version and details in there.
+- Update the table in README.md in the root of the project to reflect the support matrix. Add the new release version and details in there.
 
 ## 5. RELEASE new version
 
@@ -291,7 +291,7 @@ Promoting the images basically means that images, that were pushed to staging co
  - `helm repo update`
  - `helm search repo ingress-nginx`
 
-## 6. Github release
+## 6. GitHub release
 
 - Release to github
 
diff --git a/NEW_CONTRIBUTOR.md b/NEW_CONTRIBUTOR.md
index e89c1ba88..20c4e3daa 100644
--- a/NEW_CONTRIBUTOR.md
+++ b/NEW_CONTRIBUTOR.md
@@ -20,14 +20,14 @@ It all starts with the OSI model...
 ### Approaching the problem
 
 
-Not everybody knows everything. But the factors that help are a love/passion for this to begin. But to move forward, its the approach and not the knowledge that sustains prolonged joy, while working on issues. If the approach is simple and powered by good-wishes-for-community, then info & tools are forthcoming and easy.
+Not everybody knows everything. But the factors that help are a love/passion for this to begin. But to move forward, it's the approach and not the knowledge that sustains prolonged joy, while working on issues. If the approach is simple and powered by good-wishes-for-community, then info & tools are forthcoming and easy.
 
 Here we take a bird's eye-view of the hops in the network plumbing, that a packet takes, from source to destination, when we run `curl`, from a laptop to a nginx webserver process, running in a container, inside a pod, inside a Kubernetes cluster, created using `kind` or `minikube` or any other cluster-management tool.
 
 ### [Kind](https://kind.sigs.k8s.io/) cluster example on a Linux Host
 
 #### TL;DR
-The destination of the packet from the curl command, is looked up, in the `routing table`. Based on the route, the the packet first travels to the virtual bridge `172.18.0.1` interface, created by docker, when we created the kind cluster on a laptop. Next the packet is forwarded to `172.18.0.2`(See below on how we got this IP address), within the kind cluster. The `kube-proxy` container creates iptables rules that make sure the packet goes to the correct pod ip in this case `10.244.0.5`
+The destination of the packet from the curl command, is looked up, in the `routing table`. Based on the route, the packet first travels to the virtual bridge `172.18.0.1` interface, created by docker, when we created the kind cluster on a laptop. Next the packet is forwarded to `172.18.0.2`(See below on how we got this IP address), within the kind cluster. The `kube-proxy` container creates iptables rules that make sure the packet goes to the correct pod ip in this case `10.244.0.5`
 
 Command:
 ```
@@ -435,7 +435,7 @@ virbr0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST>  mtu 1500
 ```
 Output Relevance: From the above output you can see there are two Virtual Bridges created by minikube when we created the cluster on the network. Here, `virbr0` is the default NAT network bridge while `virbr2` is a isolated network bridge on which the pods run.
 
-Minikube creates a Virtual Machine, to enter the virtual machine we can simple do:
+Minikube creates a Virtual Machine, to enter the virtual machine we can simply do:
 ```
 # minikube ssh
 ```
@@ -707,7 +707,7 @@ NAME    TYPE        CLUSTER-IP     EXTERNAL-IP   PORT(S)   AGE
 httpd   ClusterIP   10.104.111.0   <none>        80/TCP    13s
 ```
 
-Once we have this we can now create a n ingress using the following
+Once we have this we can now create an ingress using the following
 ```
 kubectl -n httpd create ingress httpd --class nginx --rule httpd.dev.leonnunes.com/"*"=httpd:80
 ```
@@ -771,7 +771,7 @@ Hypertext Transfer Protocol
     [Response in frame: 6]
 
 ```
-The above output shows the information that the `httpd` pod recieves. The `curl` command sends the host header, `Host: httpd.dev.leonnunes.com`, to the nginx controller, that then matches the rule and sends the information to the right controller
+The above output shows the information that the `httpd` pod receives. The `curl` command sends the host header, `Host: httpd.dev.leonnunes.com`, to the nginx controller, that then matches the rule and sends the information to the right controller
 
 The following output shows what is sent via the laptop.
 ```
diff --git a/build/run-ingress-controller.sh b/build/run-ingress-controller.sh
index 29338241f..99f598b1f 100755
--- a/build/run-ingress-controller.sh
+++ b/build/run-ingress-controller.sh
@@ -49,7 +49,7 @@ fi
 SSL_VOLUME=$(mktemp -d)
 
 function cleanup {
-    echo -e "${BGREEN}Stoping kubectl proxy${NC}"
+    echo -e "${BGREEN}Stopping kubectl proxy${NC}"
     rm -rf "${SSL_VOLUME}"
     kill "$proxy_pid"
 }
diff --git a/changelog/controller-1.11.0.md b/changelog/controller-1.11.0.md
index 34330c441..d462f9574 100644
--- a/changelog/controller-1.11.0.md
+++ b/changelog/controller-1.11.0.md
@@ -94,7 +94,7 @@ Images:
 * Chart: Improve IngressClass documentation. (#11104)
 * Chart: Deploy `PodDisruptionBudget` with KEDA. (#11032)
 * Undo #11062 since it breaks the nginx config (#11082)
-* [mTLS] Fix acme verfication when mTLS and Client CN verification is enabled (#11062)
+* [mTLS] Fix acme verification when mTLS and Client CN verification is enabled (#11062)
 * golangci-lint update, ci cleanup, group dependabot updates (#11071)
 * bump golang (#11070)
 * feature(leader_election): flag to disable leader election feature on controller (#11064)
diff --git a/changelog/controller-1.6.4.md b/changelog/controller-1.6.4.md
index 256e5ec09..15b3f671a 100644
--- a/changelog/controller-1.6.4.md
+++ b/changelog/controller-1.6.4.md
@@ -83,7 +83,7 @@ Images:
 * ModSecurity dependencies update to avoid Memory Leaks (#9330)
 * fix(hpa): deprecated api version, bump to v2 (#9348)
 * fix(typo): pluralize provider (#9346)
-* removed deprecation messsage for ingressClass annotation (#9357)
+* removed deprecation message for ingressClass annotation (#9357)
 * added ginkgo junit reports (#9350)
 * Fix typos found by codespell (#9353)
 * bumped ginkgo to v2.5.1 in testrunner (#9340)
diff --git a/changelog/controller-1.7.1.md b/changelog/controller-1.7.1.md
index 632ffe963..a7a5c4bbf 100644
--- a/changelog/controller-1.7.1.md
+++ b/changelog/controller-1.7.1.md
@@ -15,7 +15,7 @@ Images:
 * Add support for --container flag (#9703)
 * Fix typo in OpenTelemetry (#9903)
 * ensure make lua-test runs locally (#9902)
-* update k8s.io dependecies to v0.26.4 (#9893)
+* update k8s.io dependencies to v0.26.4 (#9893)
 * Adding resource type to default HPA configuration to resolve issues with Terraform helm chart usage (#9803)
 * I have not been able to fulfill my maintainer responsibilities for a while already, making it official now. (#9883)
 * Update k8s versions (#9879)
diff --git a/changelog/controller-1.8.0.md b/changelog/controller-1.8.0.md
index 48b4cdefa..f335777d6 100644
--- a/changelog/controller-1.8.0.md
+++ b/changelog/controller-1.8.0.md
@@ -39,7 +39,7 @@ on our new [ingress-nginx-dev mailing list](https://groups.google.com/a/kubernet
 * Correct annotations in monitoring docs (#9976)
 * fix: avoid builds and tests for changes to markdown (#9962)
 * Validate path types (#9967)
-* HPA: Use capabilites & align manifests. (#9521)
+* HPA: Use capabilities & align manifests. (#9521)
 * Use dl.k8s.io instead of hardcoded GCS URIs (#9946)
 * add option for annotations in PodDisruptionBudget (#9843)
 * chore: update httpbin to httpbun (#9919)
diff --git a/changelog/controller-1.9.0-beta.0.md b/changelog/controller-1.9.0-beta.0.md
index 79ecf596e..5ca5cfeeb 100644
--- a/changelog/controller-1.9.0-beta.0.md
+++ b/changelog/controller-1.9.0-beta.0.md
@@ -26,7 +26,7 @@ Images:
 * Add golangci github action and replace the deprecated golint (#10187)
 * BUGFIX incorrect indentation (#10254)
 * Upgrade OpenTelemetry to v1.11.0 and gRPC to v1.57.0 (#10352)
-* fix: path with sepecial characters warning #10281 #10308 (#10330)
+* fix: path with special characters warning #10281 #10308 (#10330)
 * Fix golangci-lint errors (#10196)
 * chore(build): Fix Run make dev-env syntax error (#10294)
 * Add firewall configuration to quick start documentation (#10357)
diff --git a/changelog/controller-1.9.0.md b/changelog/controller-1.9.0.md
index 25442894f..d6b000acc 100644
--- a/changelog/controller-1.9.0.md
+++ b/changelog/controller-1.9.0.md
@@ -26,7 +26,7 @@ Images:
 * Add golangci github action and replace the deprecated golint (#10187)
 * BUGFIX incorrect indentation (#10254)
 * Upgrade OpenTelemetry to v1.11.0 and gRPC to v1.57.0 (#10352)
-* fix: path with sepecial characters warning #10281 #10308 (#10330)
+* fix: path with special characters warning #10281 #10308 (#10330)
 * Fix golangci-lint errors (#10196)
 * chore(build): Fix Run make dev-env syntax error (#10294)
 * Add firewall configuration to quick start documentation (#10357)
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.1.2.md b/charts/ingress-nginx/changelog/helm-chart-4.1.2.md
index 0a1d80cf1..20618557f 100644
--- a/charts/ingress-nginx/changelog/helm-chart-4.1.2.md
+++ b/charts/ingress-nginx/changelog/helm-chart-4.1.2.md
@@ -5,7 +5,7 @@ This file documents all notable changes to [ingress-nginx](https://github.com/ku
 ### 4.1.2
 
 * [8587](https://github.com/kubernetes/ingress-nginx/pull/8587) Add CAP_SYS_CHROOT to DS/PSP when needed
-* [8458](https://github.com/kubernetes/ingress-nginx/pull/8458) Add portNamePreffix Helm chart parameter
+* [8458](https://github.com/kubernetes/ingress-nginx/pull/8458) Add portNamePrefix Helm chart parameter
 * [8522](https://github.com/kubernetes/ingress-nginx/pull/8522) Add documentation for controller.service.loadBalancerIP in Helm chart
 
 **Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.1.0...helm-chart-4.1.2
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.7.0.md b/charts/ingress-nginx/changelog/helm-chart-4.7.0.md
index 7399da777..9d5407053 100644
--- a/charts/ingress-nginx/changelog/helm-chart-4.7.0.md
+++ b/charts/ingress-nginx/changelog/helm-chart-4.7.0.md
@@ -6,7 +6,7 @@ This file documents all notable changes to [ingress-nginx](https://github.com/ku
 
 * helm: Fix opentelemetry module installation for daemonset (#9792)
 * Update charts/* to keep project name display aligned (#9931)
-* HPA: Use capabilites & align manifests. (#9521)
+* HPA: Use capabilities & align manifests. (#9521)
 * PodDisruptionBudget spec logic update (#9904)
 * add option for annotations in PodDisruptionBudget (#9843)
 * Update Ingress-Nginx version controller-v1.8.0
diff --git a/cmd/plugin/request/request.go b/cmd/plugin/request/request.go
index 55df85d5e..57b02827e 100644
--- a/cmd/plugin/request/request.go
+++ b/cmd/plugin/request/request.go
@@ -131,7 +131,7 @@ func GetIngressDefinitions(flags *genericclioptions.ConfigFlags, namespace strin
 	return pods.Items, nil
 }
 
-// GetNumEndpoints counts the number of endpointslices adresses for the service with the given name
+// GetNumEndpoints counts the number of endpointslices addresses for the service with the given name
 func GetNumEndpoints(flags *genericclioptions.ConfigFlags, namespace, serviceName string) (*int, error) {
 	epss, err := GetEndpointSlicesByName(flags, namespace, serviceName)
 	if err != nil {
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index c7f8259a2..6dcf4e9f0 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -291,7 +291,7 @@ Do not try to edit it manually.
 ### [[Shutdown] Grace period shutdown](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/gracefulshutdown/grace_period.go#L32)
 - [/healthz should return status code 500 during shutdown grace period](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/gracefulshutdown/grace_period.go#L35)
 ### [[Shutdown] ingress controller](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/gracefulshutdown/shutdown.go#L30)
-- [should shutdown in less than 60 secons without pending connections](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/gracefulshutdown/shutdown.go#L40)
+- [should shutdown in less than 60 seconds without pending connections](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/gracefulshutdown/shutdown.go#L40)
 ### [[Shutdown] Graceful shutdown with pending request](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/gracefulshutdown/slow_requests.go#L25)
 - [should let slow requests finish before shutting down](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/gracefulshutdown/slow_requests.go#L33)
 ### [[Ingress] DeepInspection](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/ingress/deep_inspection.go#L27)
diff --git a/docs/examples/index.md b/docs/examples/index.md
index 59745e014..4efdae39f 100644
--- a/docs/examples/index.md
+++ b/docs/examples/index.md
@@ -23,7 +23,7 @@ Customization | [External authentication with response header propagation](custo
 Customization | [Sysctl tuning](customization/sysctl/README.md) | TODO | TODO
 Features | [Rewrite](rewrite/README.md) | TODO | TODO
 Features | [Session stickiness](affinity/cookie/README.md) | route requests consistently to the same endpoint | Advanced
-Features | [Canary Deployments](canary/README.md) | weighted canary routing to a seperate deployment | Intermediate
+Features | [Canary Deployments](canary/README.md) | weighted canary routing to a separate deployment | Intermediate
 Scaling | [Static IP](static-ip/README.md) | a single ingress gets a single static IP |  Intermediate
 TLS | [Multi TLS certificate termination](multi-tls/README.md) | TODO | TODO
 TLS | [TLS termination](tls-termination/README.md) | TODO | TODO
diff --git a/docs/examples/openpolicyagent/README.md b/docs/examples/openpolicyagent/README.md
index 2d653a90c..8d6337a38 100644
--- a/docs/examples/openpolicyagent/README.md
+++ b/docs/examples/openpolicyagent/README.md
@@ -1,25 +1,25 @@
 # OpenPolicyAgent and pathType enforcing
 
-Ingress API allows users to specify different [pathType](https://kubernetes.io/docs/concepts/services-networking/ingress/#path-types) 
-on Ingress object. 
+Ingress API allows users to specify different [pathType](https://kubernetes.io/docs/concepts/services-networking/ingress/#path-types)
+on Ingress object.
 
 While pathType `Exact` and `Prefix` should allow only a small set of characters, pathType `ImplementationSpecific`
-allows any characters, as it may contain regexes, variables and other features that may be specific of the Ingress 
+allows any characters, as it may contain regexes, variables and other features that may be specific of the Ingress
 Controller being used.
 
-This means that the Ingress Admins (the persona who deployed the Ingress Controller) should trust the users 
-allowed to use `pathType: ImplementationSpecific`, as this may allow arbitrary configuration, and this 
+This means that the Ingress Admins (the persona who deployed the Ingress Controller) should trust the users
+allowed to use `pathType: ImplementationSpecific`, as this may allow arbitrary configuration, and this
 configuration may end on the proxy (aka Nginx) configuration.
 
 ## Example
-The example in this repo uses [Gatekeeper](https://open-policy-agent.github.io/gatekeeper/website/) to block the usage of `pathType: ImplementationSpecific`, 
+The example in this repo uses [Gatekeeper](https://open-policy-agent.github.io/gatekeeper/website/) to block the usage of `pathType: ImplementationSpecific`,
 allowing just a specific list of namespaces to use it.
 
 It is recommended that the admin modifies this rules to enforce a specific set of characters when the usage of ImplementationSpecific
 is allowed, or in ways that best suits their needs.
 
-First, the `ConstraintTemplate` from [template.yaml](template.yaml) will define a rule that validates if the Ingress object 
-is being created on an excempted namespace, and case not, will validate its pathType.
+First, the `ConstraintTemplate` from [template.yaml](template.yaml) will define a rule that validates if the Ingress object
+is being created on an exempted namespace, and case not, will validate its pathType.
 
-Then, the rule `K8sBlockIngressPathType` contained in [rule.yaml](rule.yaml) will define the parameters: what kind of 
-object should be verified (Ingress), what are the excempted namespaces, and what kinds of pathType are blocked.
+Then, the rule `K8sBlockIngressPathType` contained in [rule.yaml](rule.yaml) will define the parameters: what kind of
+object should be verified (Ingress), what are the exempted namespaces, and what kinds of pathType are blocked.
diff --git a/docs/examples/openpolicyagent/template.yaml b/docs/examples/openpolicyagent/template.yaml
index ed2a6ba1c..4302415a2 100644
--- a/docs/examples/openpolicyagent/template.yaml
+++ b/docs/examples/openpolicyagent/template.yaml
@@ -17,11 +17,11 @@ spec:
           properties:
             blockedTypes:
               type: array
-              items: 
-                type: string 
+              items:
+                type: string
             namespacesExceptions:
               type: array
-              items: 
+              items:
                 type: string
   targets:
     - target: admission.k8s.gatekeeper.sh
@@ -31,8 +31,8 @@ spec:
         violation[{"msg": msg}] {
           input.review.kind.kind == "Ingress"
           ns := input.review.object.metadata.namespace
-          excemptNS := [good | excempts = input.parameters.namespacesExceptions[_] ; good = excempts == ns]
-          not any(excemptNS)
+          exemptNS := [good | exempts = input.parameters.namespacesExceptions[_] ; good = exempts == ns]
+          not any(exemptNS)
           pathType := object.get(input.review.object.spec.rules[_].http.paths[_], "pathType", "")
           blockedPath := [blocked | blockedTypes = input.parameters.blockedTypes[_] ; blocked = blockedTypes == pathType]
           any(blockedPath)
diff --git a/docs/user-guide/third-party-addons/opentelemetry.md b/docs/user-guide/third-party-addons/opentelemetry.md
index 4d71ff675..d2cf56bf5 100644
--- a/docs/user-guide/third-party-addons/opentelemetry.md
+++ b/docs/user-guide/third-party-addons/opentelemetry.md
@@ -65,7 +65,7 @@ otel-max-queuesize
 
 # The delay interval in milliseconds between two consecutive exports.
 otel-schedule-delay-millis
-        
+
 # How long the export can run before it is cancelled.
 otel-schedule-delay-millis
 
@@ -112,7 +112,7 @@ graph TB
     end
 
     subgraph otel
-        otc["Otel Collector"] 
+        otc["Otel Collector"]
     end
 
     subgraph observability
@@ -190,7 +190,7 @@ To install the example and collectors run:
     helm repo add open-telemetry https://open-telemetry.github.io/opentelemetry-helm-charts
     helm repo add grafana https://grafana.github.io/helm-charts
     helm repo update
-    # deply cert-manager needed for OpenTelemetry collector operator
+    # deploy cert-manager needed for OpenTelemetry collector operator
     kubectl apply -f https://github.com/cert-manager/cert-manager/releases/download/v1.9.1/cert-manager.yaml
     # create observability namespace
     kubectl apply -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/namespace.yaml
diff --git a/images/kube-webhook-certgen/rootfs/pkg/k8s/k8s_test.go b/images/kube-webhook-certgen/rootfs/pkg/k8s/k8s_test.go
index f11bef981..b326697b6 100644
--- a/images/kube-webhook-certgen/rootfs/pkg/k8s/k8s_test.go
+++ b/images/kube-webhook-certgen/rootfs/pkg/k8s/k8s_test.go
@@ -186,7 +186,7 @@ func Test_Patching_objects(t *testing.T) {
 		})
 
 		// This is to preserve old behavior and log format, it could be improved.
-		t.Run("diffent_non_empty_names_are_specified_for_validating_and_mutating_webhook", func(t *testing.T) {
+		t.Run("different_non_empty_names_are_specified_for_validating_and_mutating_webhook", func(t *testing.T) {
 			t.Parallel()
 
 			k := testK8sWithUnpatchedObjects()
diff --git a/internal/admission/controller/server.go b/internal/admission/controller/server.go
index 7fc61bcbb..74f55fd01 100644
--- a/internal/admission/controller/server.go
+++ b/internal/admission/controller/server.go
@@ -47,7 +47,7 @@ type AdmissionControllerServer struct {
 	AdmissionController AdmissionController
 }
 
-// NewAdmissionControllerServer instanciates an admission controller server with
+// NewAdmissionControllerServer instantiates an admission controller server with
 // a default codec
 func NewAdmissionControllerServer(ac AdmissionController) *AdmissionControllerServer {
 	return &AdmissionControllerServer{
diff --git a/internal/ingress/annotations/loadbalancing/main.go b/internal/ingress/annotations/loadbalancing/main.go
index ee89d2c1b..0e5ca8bd8 100644
--- a/internal/ingress/annotations/loadbalancing/main.go
+++ b/internal/ingress/annotations/loadbalancing/main.go
@@ -23,22 +23,22 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )
 
-// LB Alghorithms are defined in https://github.com/kubernetes/ingress-nginx/blob/d3e75b056f77be54e01bdb18675f1bb46caece31/rootfs/etc/nginx/lua/balancer.lua#L28
+// LB Algorithms are defined in https://github.com/kubernetes/ingress-nginx/blob/d3e75b056f77be54e01bdb18675f1bb46caece31/rootfs/etc/nginx/lua/balancer.lua#L28
 
 const (
-	loadBalanceAlghoritmAnnotation = "load-balance"
+	loadBalanceAlgorithmAnnotation = "load-balance"
 )
 
-var loadBalanceAlghoritms = []string{"round_robin", "chash", "chashsubset", "sticky_balanced", "sticky_persistent", "ewma"}
+var loadBalanceAlgorithms = []string{"round_robin", "chash", "chashsubset", "sticky_balanced", "sticky_persistent", "ewma"}
 
 var loadBalanceAnnotations = parser.Annotation{
 	Group: "backend",
 	Annotations: parser.AnnotationFields{
-		loadBalanceAlghoritmAnnotation: {
-			Validator: parser.ValidateOptions(loadBalanceAlghoritms, true, true),
+		loadBalanceAlgorithmAnnotation: {
+			Validator: parser.ValidateOptions(loadBalanceAlgorithms, true, true),
 			Scope:     parser.AnnotationScopeLocation,
 			Risk:      parser.AnnotationRiskLow,
-			Documentation: `This annotation allows setting the load balancing alghorithm that should be used. If none is specified, defaults to 
+			Documentation: `This annotation allows setting the load balancing algorithm that should be used. If none is specified, defaults to
 			the default configured by Ingress admin, otherwise to round_robin`,
 		},
 	},
@@ -61,7 +61,7 @@ func NewParser(r resolver.Resolver) parser.IngressAnnotation {
 // used to indicate if the location/s contains a fragment of
 // configuration to be included inside the paths of the rules
 func (a loadbalancing) Parse(ing *networking.Ingress) (interface{}, error) {
-	return parser.GetStringAnnotation(loadBalanceAlghoritmAnnotation, ing, a.annotationConfig.Annotations)
+	return parser.GetStringAnnotation(loadBalanceAlgorithmAnnotation, ing, a.annotationConfig.Annotations)
 }
 
 func (a loadbalancing) GetDocumentation() parser.AnnotationFields {
diff --git a/internal/ingress/annotations/mirror/main_test.go b/internal/ingress/annotations/mirror/main_test.go
index 1f6b44d61..805f1ef6d 100644
--- a/internal/ingress/annotations/mirror/main_test.go
+++ b/internal/ingress/annotations/mirror/main_test.go
@@ -90,7 +90,7 @@ func TestParse(t *testing.T) {
 			Target:      "http://some.test.env.com:2121/$someparam=1&$someotherparam=2",
 			Host:        "some.test.env.com",
 		}},
-		{map[string]string{backendURL: "http://some.test.env.com", host: "someInvalidParm.%^&*()_=!@#'\""}, &Config{
+		{map[string]string{backendURL: "http://some.test.env.com", host: "someInvalidParam.%^&*()_=!@#'\""}, &Config{
 			Source:      ngxURI,
 			RequestBody: "on",
 			Target:      "http://some.test.env.com",
diff --git a/internal/ingress/annotations/serversnippet/main.go b/internal/ingress/annotations/serversnippet/main.go
index aa15608d0..bce764e69 100644
--- a/internal/ingress/annotations/serversnippet/main.go
+++ b/internal/ingress/annotations/serversnippet/main.go
@@ -33,7 +33,7 @@ var serverSnippetAnnotations = parser.Annotation{
 		serverSnippetAnnotation: {
 			Validator:     parser.ValidateNull,
 			Scope:         parser.AnnotationScopeIngress,
-			Risk:          parser.AnnotationRiskCritical, // Critical, this annotation is not validated at all and allows arbitrary configutations
+			Risk:          parser.AnnotationRiskCritical, // Critical, this annotation is not validated at all and allows arbitrary configurations
 			Documentation: `This annotation allows setting a custom NGINX configuration on a server block. This annotation does not contain any validation and it's usage is not recommended!`,
 		},
 	},
diff --git a/internal/ingress/annotations/serviceupstream/main.go b/internal/ingress/annotations/serviceupstream/main.go
index d1851bc7b..7819d87d8 100644
--- a/internal/ingress/annotations/serviceupstream/main.go
+++ b/internal/ingress/annotations/serviceupstream/main.go
@@ -34,7 +34,7 @@ var serviceUpstreamAnnotations = parser.Annotation{
 		serviceUpstreamAnnotation: {
 			Validator:     parser.ValidateBool,
 			Scope:         parser.AnnotationScopeIngress,
-			Risk:          parser.AnnotationRiskLow, // Critical, this annotation is not validated at all and allows arbitrary configutations
+			Risk:          parser.AnnotationRiskLow, // Critical, this annotation is not validated at all and allows arbitrary configurations
 			Documentation: `This annotation makes NGINX use Service's Cluster IP and Port instead of Endpoints as the backend endpoints`,
 		},
 	},
diff --git a/internal/ingress/annotations/snippet/main.go b/internal/ingress/annotations/snippet/main.go
index 2406093c5..c2df84cdd 100644
--- a/internal/ingress/annotations/snippet/main.go
+++ b/internal/ingress/annotations/snippet/main.go
@@ -33,7 +33,7 @@ var configurationSnippetAnnotations = parser.Annotation{
 		configurationSnippetAnnotation: {
 			Validator:     parser.ValidateNull,
 			Scope:         parser.AnnotationScopeLocation,
-			Risk:          parser.AnnotationRiskCritical, // Critical, this annotation is not validated at all and allows arbitrary configutations
+			Risk:          parser.AnnotationRiskCritical, // Critical, this annotation is not validated at all and allows arbitrary configurations
 			Documentation: `This annotation allows setting a custom NGINX configuration on a location block. This annotation does not contain any validation and it's usage is not recommended!`,
 		},
 	},
diff --git a/internal/ingress/annotations/streamsnippet/main.go b/internal/ingress/annotations/streamsnippet/main.go
index 71ff3b140..7743d3fee 100644
--- a/internal/ingress/annotations/streamsnippet/main.go
+++ b/internal/ingress/annotations/streamsnippet/main.go
@@ -33,7 +33,7 @@ var streamSnippetAnnotations = parser.Annotation{
 		streamSnippetAnnotation: {
 			Validator:     parser.ValidateNull,
 			Scope:         parser.AnnotationScopeIngress,
-			Risk:          parser.AnnotationRiskCritical, // Critical, this annotation is not validated at all and allows arbitrary configutations
+			Risk:          parser.AnnotationRiskCritical, // Critical, this annotation is not validated at all and allows arbitrary configurations
 			Documentation: `This annotation allows setting a custom NGINX configuration on a stream block. This annotation does not contain any validation and it's usage is not recommended!`,
 		},
 	},
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index 9b36667c1..a0275697f 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -119,7 +119,7 @@ type Configuration struct {
 	// By default this is disabled
 	AllowBackendServerHeader bool `json:"allow-backend-server-header"`
 
-	// AccessLogParams sets additionals params for access_log
+	// AccessLogParams sets additional params for access_log
 	// http://nginx.org/en/docs/http/ngx_http_log_module.html#access_log
 	// By default it's empty
 	AccessLogParams string `json:"access-log-params,omitempty"`
@@ -418,7 +418,7 @@ type Configuration struct {
 	// Example '60s'
 	ProxyProtocolHeaderTimeout time.Duration `json:"proxy-protocol-header-timeout,omitempty"`
 
-	// Enables or disables the directive aio_write that writes files files asynchronously
+	// Enables or disables the directive aio_write that writes files asynchronously
 	// https://nginx.org/en/docs/http/ngx_http_core_module.html#aio_write
 	EnableAioWrite bool `json:"enable-aio-write,omitempty"`
 
@@ -612,7 +612,7 @@ type Configuration struct {
 	// Default: 0.01
 	OtelSamplerRatio float32 `json:"otel-sampler-ratio"`
 
-	// OtelSamplerParentBased specifies the parent based sampler to be use for any traces created
+	// OtelSamplerParentBased specifies the parent based sampler to be used for any traces created
 	// Default: true
 	OtelSamplerParentBased bool `json:"otel-sampler-parent-based"`
 
@@ -709,7 +709,7 @@ type Configuration struct {
 	DefaultSSLCertificate *ingress.SSLCert `json:"-"`
 
 	// ProxySSLLocationOnly controls whether the proxy-ssl parameters defined in the
-	// proxy-ssl-* annotations are applied on on location level only in the nginx.conf file
+	// proxy-ssl-* annotations are applied on location level only in the nginx.conf file
 	// Default is that those are applied on server level, too
 	ProxySSLLocationOnly bool `json:"proxy-ssl-location-only"`
 
diff --git a/internal/ingress/controller/endpointslices.go b/internal/ingress/controller/endpointslices.go
index 4f98e3ce7..ed46e2c85 100644
--- a/internal/ingress/controller/endpointslices.go
+++ b/internal/ingress/controller/endpointslices.go
@@ -115,7 +115,7 @@ func getEndpointsFromSlices(s *corev1.Service, port *corev1.ServicePort, proto c
 		useTopologyHints = false
 		if zoneForHints != emptyZone {
 			useTopologyHints = true
-			// check if all endpointslices has zone hints
+			// check if all endpointslices have zone hints
 			for _, ep := range eps.Endpoints {
 				if ep.Hints == nil || len(ep.Hints.ForZones) == 0 {
 					useTopologyHints = false
diff --git a/internal/ingress/controller/nginx_test.go b/internal/ingress/controller/nginx_test.go
index 27180e066..7b00916c7 100644
--- a/internal/ingress/controller/nginx_test.go
+++ b/internal/ingress/controller/nginx_test.go
@@ -410,7 +410,7 @@ func TestCleanTempNginxCfg(t *testing.T) {
 	}
 }
 
-//nolint:unparam // Ingnore `network` always receives `"tcp"` error
+//nolint:unparam // Ignore `network` always receives `"tcp"` error
 func tryListen(network, address string) (l net.Listener, err error) {
 	condFunc := func() (bool, error) {
 		l, err = net.Listen(network, address)
diff --git a/internal/ingress/controller/store/endpointslice_test.go b/internal/ingress/controller/store/endpointslice_test.go
index 5d423a3a6..0bdb3aa33 100644
--- a/internal/ingress/controller/store/endpointslice_test.go
+++ b/internal/ingress/controller/store/endpointslice_test.go
@@ -88,7 +88,7 @@ func TestEndpointSliceLister(t *testing.T) {
 		}
 		eps, err := el.MatchByKey(key)
 		if err != nil {
-			t.Errorf("unexpeted error %v", err)
+			t.Errorf("unexpected error %v", err)
 		}
 		if err == nil && len(eps) != 1 {
 			t.Errorf("expected one slice %v, error, got %d slices", endpointSlice, len(eps))
@@ -130,7 +130,7 @@ func TestEndpointSliceLister(t *testing.T) {
 		}
 		eps, err := el.MatchByKey(key)
 		if err != nil {
-			t.Errorf("unexpeted error %v", err)
+			t.Errorf("unexpected error %v", err)
 		}
 		if len(eps) != 1 {
 			t.Errorf("expected one slice %v, error, got %d slices", endpointSlice, len(eps))
diff --git a/internal/ingress/controller/store/store_test.go b/internal/ingress/controller/store/store_test.go
index 317c0f36c..9c719af3b 100644
--- a/internal/ingress/controller/store/store_test.go
+++ b/internal/ingress/controller/store/store_test.go
@@ -1208,13 +1208,13 @@ func TestStore(t *testing.T) {
 			}
 		}(updateCh)
 
-		namesapceSelector, err := labels.Parse("foo=bar")
+		namespaceSelector, err := labels.Parse("foo=bar")
 		if err != nil {
 			t.Errorf("unexpected error: %v", err)
 		}
 		storer := New(
 			ns,
-			namesapceSelector,
+			namespaceSelector,
 			fmt.Sprintf("%v/config", ns),
 			fmt.Sprintf("%v/tcp", ns),
 			fmt.Sprintf("%v/udp", ns),
@@ -1274,7 +1274,7 @@ func TestStore(t *testing.T) {
 			t.Errorf("expected 0 events of type Delete but %v occurred", del)
 		}
 	})
-	// test add ingress with secret it doesn't exists and then add secret
+	// test add ingress with secret it doesn't exist and then add secret
 	// check secret is generated on fs
 	// check ocsp
 	// check invalid secret (missing crt)
diff --git a/internal/ingress/controller/util.go b/internal/ingress/controller/util.go
index 8851f323f..79bf931ef 100644
--- a/internal/ingress/controller/util.go
+++ b/internal/ingress/controller/util.go
@@ -129,7 +129,7 @@ func NewNginxCommand() NginxCommand {
 	return command
 }
 
-// ExecCommand instanciates an exec.Cmd object to call nginx program
+// ExecCommand instantiates an exec.Cmd object to call nginx program
 func (nc NginxCommand) ExecCommand(args ...string) *exec.Cmd {
 	cmdArgs := []string{}
 
diff --git a/internal/ingress/metric/collectors/controller.go b/internal/ingress/metric/collectors/controller.go
index 4ee84bc56..697b57ca8 100644
--- a/internal/ingress/metric/collectors/controller.go
+++ b/internal/ingress/metric/collectors/controller.go
@@ -225,7 +225,7 @@ func (cm *Controller) IncCheckErrorCount(namespace, name string) {
 	cm.checkIngressOperationErrors.MustCurryWith(cm.constLabels).With(labels).Inc()
 }
 
-// IncOrphanIngress sets the the orphaned ingress gauge to one
+// IncOrphanIngress sets the orphaned ingress gauge to one
 func (cm *Controller) IncOrphanIngress(namespace, name, orphanityType string) {
 	labels := prometheus.Labels{
 		"namespace": namespace,
@@ -235,7 +235,7 @@ func (cm *Controller) IncOrphanIngress(namespace, name, orphanityType string) {
 	cm.OrphanIngress.MustCurryWith(cm.constLabels).With(labels).Set(1.0)
 }
 
-// DecOrphanIngress sets the the orphaned ingress gauge to zero (all services has their endpoints)
+// DecOrphanIngress sets the orphaned ingress gauge to zero (all services has their endpoints)
 func (cm *Controller) DecOrphanIngress(namespace, name, orphanityType string) {
 	labels := prometheus.Labels{
 		"namespace": namespace,
@@ -311,7 +311,7 @@ func (cm *Controller) SetSSLExpireTime(servers []*ingress.Server) {
 	}
 }
 
-// SetSSLInfo creates a metric with all certificates informations
+// SetSSLInfo creates a metric with all certificate information
 func (cm *Controller) SetSSLInfo(servers []*ingress.Server) {
 	for _, s := range servers {
 		if s.SSLCert == nil || s.SSLCert.Certificate == nil || s.SSLCert.Certificate.SerialNumber == nil {
diff --git a/internal/ingress/resolver/main.go b/internal/ingress/resolver/main.go
index 7d17f4e16..259f44e49 100644
--- a/internal/ingress/resolver/main.go
+++ b/internal/ingress/resolver/main.go
@@ -29,10 +29,10 @@ type Resolver interface {
 	// GetSecurityConfiguration returns the configuration options from Ingress
 	GetSecurityConfiguration() defaults.SecurityConfiguration
 
-	// GetConfigMap searches for configmap containing the namespace and name usting the character /
+	// GetConfigMap searches for configmap containing the namespace and name using the character /
 	GetConfigMap(string) (*apiv1.ConfigMap, error)
 
-	// GetSecret searches for secrets containing the namespace and name using a the character /
+	// GetSecret searches for secrets containing the namespace and name using the character /
 	GetSecret(string) (*apiv1.Secret, error)
 
 	// GetAuthCertificate resolves a given secret name into an SSL certificate and CRL.
@@ -42,7 +42,7 @@ type Resolver interface {
 	//   ca.crl: contains the revocation list used for authentication
 	GetAuthCertificate(string) (*AuthSSLCert, error)
 
-	// GetService searches for services containing the namespace and name using a the character /
+	// GetService searches for services containing the namespace and name using the character /
 	GetService(string) (*apiv1.Service, error)
 }
 
diff --git a/internal/ingress/resolver/mock.go b/internal/ingress/resolver/mock.go
index 5a36155e9..3abfe7eda 100644
--- a/internal/ingress/resolver/mock.go
+++ b/internal/ingress/resolver/mock.go
@@ -47,7 +47,7 @@ func (m Mock) GetSecurityConfiguration() defaults.SecurityConfiguration {
 	}
 }
 
-// GetSecret searches for secrets contenating the namespace and name using a the character /
+// GetSecret searches for secrets containing the namespace and name using the character /
 func (m Mock) GetSecret(string) (*apiv1.Secret, error) {
 	return nil, nil
 }
@@ -60,12 +60,12 @@ func (m Mock) GetAuthCertificate(string) (*AuthSSLCert, error) {
 	return nil, nil
 }
 
-// GetService searches for services contenating the namespace and name using a the character /
+// GetService searches for services containing the namespace and name using the character /
 func (m Mock) GetService(string) (*apiv1.Service, error) {
 	return nil, nil
 }
 
-// GetConfigMap searches for configMaps contenating the namespace and name using a the character /
+// GetConfigMap searches for configMaps containing the namespace and name using the character /
 func (m Mock) GetConfigMap(name string) (*apiv1.ConfigMap, error) {
 	if v, ok := m.ConfigMaps[name]; ok {
 		return v, nil
diff --git a/internal/net/ssl/ssl.go b/internal/net/ssl/ssl.go
index f8bac2377..0592303bc 100644
--- a/internal/net/ssl/ssl.go
+++ b/internal/net/ssl/ssl.go
@@ -442,7 +442,7 @@ func getFakeHostSSLCert(host string) (cert, key []byte) {
 
 // fullChainCert checks if a certificate file contains issues in the intermediate CA chain
 // Returns a new certificate with the intermediate certificates.
-// If the certificate does not contains issues with the chain it return an empty byte array
+// If the certificate does not contain issues with the chain it returns an empty byte array
 func fullChainCert(in []byte) ([]byte, error) {
 	cert, err := certUtil.DecodeCertificate(in)
 	if err != nil {
@@ -523,7 +523,7 @@ func (tl *TLSListener) GetCertificate(*tls.ClientHelloInfo) (*tls.Certificate, e
 	return tl.certificate, tl.err
 }
 
-// TLSConfig instanciates a TLS configuration, always providing an up to date certificate
+// TLSConfig instantiates a TLS configuration, always providing an up to date certificate
 func (tl *TLSListener) TLSConfig() *tls.Config {
 	return &tls.Config{
 		GetCertificate: tl.GetCertificate,
diff --git a/pkg/apis/ingress/types.go b/pkg/apis/ingress/types.go
index 9370333c1..ccdd49fe9 100644
--- a/pkg/apis/ingress/types.go
+++ b/pkg/apis/ingress/types.go
@@ -198,10 +198,10 @@ type Server struct {
 	Aliases []string `json:"aliases,omitempty"`
 	// RedirectFromToWWW returns if a redirect to/from prefix www is required
 	RedirectFromToWWW bool `json:"redirectFromToWWW,omitempty"`
-	// CertificateAuth indicates the this server requires mutual authentication
+	// CertificateAuth indicates this server requires mutual authentication
 	// +optional
 	CertificateAuth authtls.Config `json:"certificateAuth"`
-	// ProxySSL indicates the this server uses client certificate to access backends
+	// ProxySSL indicates this server uses client certificate to access backends
 	// +optional
 	ProxySSL proxyssl.Config `json:"proxySSL"`
 	// ServerSnippet returns the snippet of server
@@ -219,7 +219,7 @@ type Server struct {
 // Location describes an URI inside a server.
 // Also contains additional information about annotations in the Ingress.
 //
-// In some cases when more than one annotations is defined a particular order in the execution
+// In some cases when more than one annotation is defined a particular order in the execution
 // is required.
 // The chain in the execution order of annotations should be:
 // - Denylist
@@ -342,7 +342,7 @@ type Location struct {
 	// CustomHTTPErrors specifies the error codes that should be intercepted.
 	// +optional
 	CustomHTTPErrors []int `json:"custom-http-errors"`
-	// ProxyInterceptErrors disables error intecepting when using CustomHTTPErrors
+	// ProxyInterceptErrors disables error interception when using CustomHTTPErrors
 	// e.g. custom 404 and 503 when service-a does not exist or is not available
 	// but service-a can return 404 and 503 error codes without intercept
 	// +optional
diff --git a/rootfs/etc/nginx/lua/test/balancer/sticky_test.lua b/rootfs/etc/nginx/lua/test/balancer/sticky_test.lua
index 80d0c0d0e..70723143b 100644
--- a/rootfs/etc/nginx/lua/test/balancer/sticky_test.lua
+++ b/rootfs/etc/nginx/lua/test/balancer/sticky_test.lua
@@ -357,7 +357,7 @@ describe("Sticky", function()
         for _ = 1, 100 do
           local new_upstream = sticky_balancer_instance:balance()
           if change_on_failure == false then
-            -- upstream should be the same inspite of error, if change_on_failure option is false
+            -- upstream should be the same in spite of error, if change_on_failure option is false
             assert.equal(new_upstream, old_upstream)
           else
             -- upstream should change after error, if change_on_failure option is true
diff --git a/test/e2e/endpointslices/topology.go b/test/e2e/endpointslices/topology.go
index 38c5f8b76..70f7ff86b 100644
--- a/test/e2e/endpointslices/topology.go
+++ b/test/e2e/endpointslices/topology.go
@@ -84,7 +84,7 @@ var _ = framework.IngressNginxDescribeSerial("[TopologyHints] topology aware rou
 		}
 
 		if gotHints {
-			// we have 2 replics, if there is just one backend it means that we are routing according slices hints to same zone as controller is
+			// we have 2 replicas, if there is just one backend it means that we are routing according slices hints to same zone as controller is
 			assert.Equal(ginkgo.GinkgoT(), 1, gotBackends)
 		} else {
 			// two replicas should have two endpoints without topology hints
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 08a5353b2..9eaf42565 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -43,7 +43,7 @@ const HTTPBunService = "httpbun"
 // NipService name of external service using nip.io
 const NIPService = "external-nip"
 
-// HTTPBunImage is the default image that is used to deploy HTTPBun with the framwork
+// HTTPBunImage is the default image that is used to deploy HTTPBun with the framework
 var HTTPBunImage = os.Getenv("HTTPBUN_IMAGE")
 
 // EchoImage is the default image to be used by the echo service
diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index 6e62a1df3..103d8d593 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -100,7 +100,7 @@ func NewDefaultFramework(baseName string, opts ...func(*Framework)) *Framework {
 }
 
 // NewSimpleFramework makes a new framework that allows the usage of a namespace
-// for arbitraty tests.
+// for arbitrary tests.
 func NewSimpleFramework(baseName string, opts ...func(*Framework)) *Framework {
 	defer ginkgo.GinkgoRecover()
 
diff --git a/test/e2e/gracefulshutdown/shutdown.go b/test/e2e/gracefulshutdown/shutdown.go
index 604143da8..e9883338f 100644
--- a/test/e2e/gracefulshutdown/shutdown.go
+++ b/test/e2e/gracefulshutdown/shutdown.go
@@ -37,7 +37,7 @@ var _ = framework.IngressNginxDescribe("[Shutdown] ingress controller", func() {
 		f.NewSlowEchoDeployment()
 	})
 
-	ginkgo.It("should shutdown in less than 60 secons without pending connections", func() {
+	ginkgo.It("should shutdown in less than 60 seconds without pending connections", func() {
 		f.EnsureIngress(framework.NewSingleIngress(host, "/", host, f.Namespace, framework.SlowEchoService, 80, nil))
 
 		f.WaitForNginxServer(host,
diff --git a/test/e2e/settings/global_external_auth.go b/test/e2e/settings/global_external_auth.go
index 741e6f955..f589a63e9 100644
--- a/test/e2e/settings/global_external_auth.go
+++ b/test/e2e/settings/global_external_auth.go
@@ -32,8 +32,8 @@ import (
 )
 
 const (
-	disable                = "false"
-	noAuthLocaltionSetting = "no-auth-locations"
+	disable               = "false"
+	noAuthLocationSetting = "no-auth-locations"
 )
 
 var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
@@ -51,7 +51,7 @@ var _ = framework.DescribeSetting("[Security] global-auth-url", func() {
 	fooPath := "/foo"
 	barPath := "/bar"
 
-	noAuthSetting := noAuthLocaltionSetting
+	noAuthSetting := noAuthLocationSetting
 	noAuthLocations := barPath
 
 	enableGlobalExternalAuthAnnotation := "nginx.ingress.kubernetes.io/enable-global-auth"
diff --git a/test/k6/loadtest.js b/test/k6/loadtest.js
index 2396948fc..51801765e 100644
--- a/test/k6/loadtest.js
+++ b/test/k6/loadtest.js
@@ -1,6 +1,6 @@
 // This is a loadtest under development
 // Test here is spec'd to have 100virtual-users
-// Other specs currently similar to smoktest
+// Other specs currently similar to smoketest
 // But loadtest needs testplan that likely uses auth & data-transfer
 
 import http from 'k6/http';
@@ -35,7 +35,7 @@ export default function () {
   const req3 = {
   	params: {
   	  headers: {
-        'Content-Type': 'application/x-www-form-urlencoded' 
+        'Content-Type': 'application/x-www-form-urlencoded'
       },
   	},
   	method: 'POST',
diff --git a/test/k6/smoketest.js b/test/k6/smoketest.js
index 8fe9e950a..12691b63a 100644
--- a/test/k6/smoketest.js
+++ b/test/k6/smoketest.js
@@ -1,4 +1,4 @@
-// smotest.js edited after copy/pasting from https://k6.io docs
+// smoketest.js edited after copy/pasting from https://k6.io docs
 // Using this like loadtest because of limited cpu/memory/other
 
 import http from 'k6/http';
@@ -22,7 +22,7 @@ export const options = {
 };
 
 export default function () {
-  // docs of k6 say this is how to adds host header
+  // docs of k6 say this is how to add host header
   // needed as ingress is created with this host value
   const params = {
     headers: {'host': 'test.ingress-nginx-controller.ga'},
@@ -39,7 +39,7 @@ export default function () {
   const req3 = {
 	params: {
 	  headers: {
-	    'Content-Type': 'application/json' 
+	    'Content-Type': 'application/json'
       },
 	},
   	method: 'POST',

From 8d0e2ef9f473d49a0766a818401006d155774e66 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sat, 7 Sep 2024 20:51:20 +0200
Subject: [PATCH 1438/1641] Images: Use latest Alpine 3.20 everywhere. (#11944)

---
 docs/examples/customization/sysctl/patch.json | 2 +-
 images/cfssl/rootfs/Dockerfile                | 4 ++--
 images/nginx-1.25/rootfs/Dockerfile           | 4 ++--
 images/nginx/rootfs/Dockerfile                | 4 ++--
 images/opentelemetry/rootfs/Dockerfile        | 2 +-
 images/test-runner/rootfs/Dockerfile          | 2 +-
 rootfs/Dockerfile-chroot                      | 2 +-
 test/e2e-image/Dockerfile                     | 2 +-
 8 files changed, 11 insertions(+), 11 deletions(-)

diff --git a/docs/examples/customization/sysctl/patch.json b/docs/examples/customization/sysctl/patch.json
index e87c9affa..fb4fc057f 100644
--- a/docs/examples/customization/sysctl/patch.json
+++ b/docs/examples/customization/sysctl/patch.json
@@ -4,7 +4,7 @@
 			"spec": {
 				"initContainers": [{
 					"name": "sysctl",
-					"image": "alpine:3.18",
+					"image": "alpine:3.20",
 					"securityContext": {
 						"privileged": true
 					},
diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index c23f66d49..7f7003f10 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -12,9 +12,9 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.20.0
+FROM alpine:3.20
 
-RUN echo "@testing http://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
+RUN echo "@testing https://dl-cdn.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
 RUN apk update \
     && apk upgrade &&  \
     apk add --no-cache \
diff --git a/images/nginx-1.25/rootfs/Dockerfile b/images/nginx-1.25/rootfs/Dockerfile
index 13dcec33d..1d2b6b623 100644
--- a/images/nginx-1.25/rootfs/Dockerfile
+++ b/images/nginx-1.25/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.20.0 as builder
+FROM alpine:3.20 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.20.0
+FROM alpine:3.20
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index f3d61017e..245bb353b 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.20.0 as builder
+FROM alpine:3.20 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.20.0
+FROM alpine:3.20
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index f67948b86..9f3cb2eae 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 
 
-FROM alpine:3.20.0 AS base
+FROM alpine:3.20 AS base
 
 RUN mkdir -p /opt/third_party/install
 COPY . /opt/third_party/
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index fd664f2e5..7bcc2f25c 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -48,7 +48,7 @@ RUN mkdir -p "$GOPATH/src" "$GOPATH/bin" && chmod -R 777 "$GOPATH"
 
 COPY --from=etcd /usr/local/bin/etcd /usr/local/bin/etcd
 
-RUN echo "@testing https://nl.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
+RUN echo "@testing https://dl-cdn.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
 
 RUN apk update && apk upgrade && apk add --no-cache \
   bash \
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index c06db2252..b719f2fc3 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.20.0
+FROM alpine:3.20
 
 ARG TARGETARCH
 ARG VERSION
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 7bd7c9c1c..5e7417477 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,7 +1,7 @@
 ARG E2E_BASE_IMAGE
 FROM ${E2E_BASE_IMAGE} AS BASE
 
-FROM alpine:3.20.0
+FROM alpine:3.20
 
 RUN apk update \
 	&& apk upgrade && apk add -U --no-cache \

From 0b98b1783e4b50de4ba82c340dc7a37392720837 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Sun, 8 Sep 2024 10:45:20 +0530
Subject: [PATCH 1439/1641] Docs: Add note about `--watch-namespace`. (#11947)

---
 docs/deploy/index.md | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index e298cb27f..ae5458eea 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -266,7 +266,6 @@ In AWS, we use a Network load balancer (NLB) to expose the Ingress-Nginx Control
     [Network load balancing on Amazon EKS](https://docs.aws.amazon.com/eks/latest/userguide/network-load-balancing.html)
     with [AWS Load Balancer Controller](https://github.com/kubernetes-sigs/aws-load-balancer-controller).
 
-
 ##### Network Load Balancer (NLB)
 
 ```console
@@ -364,8 +363,8 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 ```console
 kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/scw/deploy.yaml
 ```
-Refer to the [dedicated tutorial](https://www.scaleway.com/en/docs/tutorials/proxy-protocol-v2-load-balancer/#configuring-proxy-protocol-for-ingress-nginx) in the Scaleway documentation for configuring the proxy protocol for ingress-nginx with the Scaleway load balancer.
 
+Refer to the [dedicated tutorial](https://www.scaleway.com/en/docs/tutorials/proxy-protocol-v2-load-balancer/#configuring-proxy-protocol-for-ingress-nginx) in the Scaleway documentation for configuring the proxy protocol for ingress-nginx with the Scaleway load balancer.
 
 #### Exoscale
 
@@ -428,7 +427,7 @@ kubectl exec $POD_NAME -n $POD_NAMESPACE -- /nginx-ingress-controller --version
 
 By default, the controller watches Ingress objects from all namespaces. If you want to change this behavior,
 use the flag `--watch-namespace` or check the Helm chart value `controller.scope` to limit the controller to a single
-namespace.
+namespace. Although the use of this flag is not popular, one important fact to note is that the secret containing the default-ssl-certificate needs to also be present in the watched namespace(s).
 
 See also
 [“How to easily install multiple instances of the Ingress NGINX controller in the same cluster”](https://kubernetes.github.io/ingress-nginx/#how-to-easily-install-multiple-instances-of-the-ingress-nginx-controller-in-the-same-cluster)

From ee61440780fd62f30e7328aae061894c4d387c7f Mon Sep 17 00:00:00 2001
From: Damien Mehala <damien.mehala+github@gmail.com>
Date: Sun, 8 Sep 2024 10:47:20 +0200
Subject: [PATCH 1440/1641] Images: Bump OpenTelemetry C++ Contrib. (#11629)

---
 images/nginx-1.25/rootfs/build.sh    | 2 +-
 images/opentelemetry/rootfs/build.sh | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/images/nginx-1.25/rootfs/build.sh b/images/nginx-1.25/rootfs/build.sh
index ca636d03a..3baf775fc 100755
--- a/images/nginx-1.25/rootfs/build.sh
+++ b/images/nginx-1.25/rootfs/build.sh
@@ -512,7 +512,7 @@ make
 make modules
 make install
 
-export OPENTELEMETRY_CONTRIB_COMMIT=aaa51e2297bcb34297f3c7aa44fa790497d2f7f3
+export OPENTELEMETRY_CONTRIB_COMMIT=e11348bb400d5472bf1da5d6128bead66fa111ff
 cd "$BUILD_PATH"
 
 git clone https://github.com/open-telemetry/opentelemetry-cpp-contrib.git opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}
diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
index 649595a75..6f803fc9f 100755
--- a/images/opentelemetry/rootfs/build.sh
+++ b/images/opentelemetry/rootfs/build.sh
@@ -116,8 +116,8 @@ install_otel()
 install_nginx()
 {
 
-  # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/2656a4...main
-  export OPENTELEMETRY_CONTRIB_COMMIT=aaa51e2297bcb34297f3c7aa44fa790497d2f7f3
+  # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/e11348bb400d5472bf1da5d6128bead66fa111ff...main
+  export OPENTELEMETRY_CONTRIB_COMMIT=e11348bb400d5472bf1da5d6128bead66fa111ff
 
   mkdir -p /etc/nginx
   cd "$BUILD_PATH"

From 6510535ae0164e48d60d0c3df79bffd35031b3f3 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 8 Sep 2024 18:48:12 -0300
Subject: [PATCH 1441/1641] NGINX: Remove inline Lua from template. (#11806)

---
 .github/workflows/ci.yaml                     |  16 ++
 hack/verify-lualint.sh                        |   9 +-
 internal/ingress/controller/nginx.go          |  30 +++
 .../ingress/controller/template/template.go   |  93 +++++----
 internal/ingress/controller/util.go           |   5 +-
 rootfs/etc/nginx/lua/lua_ingress.lua          |  12 +-
 .../etc/nginx/lua/nginx/ngx_conf_balancer.lua |   2 +
 .../lua/nginx/ngx_conf_balancer_tcp_udp.lua   |   2 +
 .../nginx/lua/nginx/ngx_conf_certificate.lua  |   2 +
 .../lua/nginx/ngx_conf_configuration.lua      |   2 +
 .../lua/nginx/ngx_conf_content_tcp_udp.lua    |   2 +
 .../nginx/lua/nginx/ngx_conf_init_tcp_udp.lua |   2 +
 .../ngx_conf_is_dynamic_lb_initialized.lua    |   9 +
 rootfs/etc/nginx/lua/nginx/ngx_conf_log.lua   |   2 +
 .../nginx/lua/nginx/ngx_conf_log_block.lua    |  11 +
 .../nginx/lua/nginx/ngx_conf_rewrite_auth.lua |   1 +
 .../lua/nginx/ngx_conf_srv_hdr_filter.lua     |   2 +
 rootfs/etc/nginx/lua/nginx/ngx_rewrite.lua    |   5 +
 .../etc/nginx/lua/nginx/ngx_srv_redirect.lua  |  24 +++
 rootfs/etc/nginx/lua/ngx_conf_init.lua        |  53 +++++
 rootfs/etc/nginx/lua/ngx_conf_init_stream.lua |  30 +++
 rootfs/etc/nginx/lua/ngx_conf_init_worker.lua |  15 ++
 rootfs/etc/nginx/lua/util.lua                 |   4 +
 rootfs/etc/nginx/template/nginx.tmpl          | 189 ++----------------
 test/e2e/annotations/fromtowwwredirect.go     |   4 +-
 test/e2e/framework/framework.go               |  33 +++
 test/e2e/lua/dynamic_configuration.go         |   7 +-
 .../e2e/settings/no_tls_redirect_locations.go |   4 +-
 test/e2e/settings/ocsp/ocsp.go                |   6 +-
 test/e2e/settings/tls.go                      |  18 +-
 30 files changed, 361 insertions(+), 233 deletions(-)
 create mode 100644 rootfs/etc/nginx/lua/nginx/ngx_conf_balancer.lua
 create mode 100644 rootfs/etc/nginx/lua/nginx/ngx_conf_balancer_tcp_udp.lua
 create mode 100644 rootfs/etc/nginx/lua/nginx/ngx_conf_certificate.lua
 create mode 100644 rootfs/etc/nginx/lua/nginx/ngx_conf_configuration.lua
 create mode 100644 rootfs/etc/nginx/lua/nginx/ngx_conf_content_tcp_udp.lua
 create mode 100644 rootfs/etc/nginx/lua/nginx/ngx_conf_init_tcp_udp.lua
 create mode 100644 rootfs/etc/nginx/lua/nginx/ngx_conf_is_dynamic_lb_initialized.lua
 create mode 100644 rootfs/etc/nginx/lua/nginx/ngx_conf_log.lua
 create mode 100644 rootfs/etc/nginx/lua/nginx/ngx_conf_log_block.lua
 create mode 100644 rootfs/etc/nginx/lua/nginx/ngx_conf_rewrite_auth.lua
 create mode 100644 rootfs/etc/nginx/lua/nginx/ngx_conf_srv_hdr_filter.lua
 create mode 100644 rootfs/etc/nginx/lua/nginx/ngx_rewrite.lua
 create mode 100644 rootfs/etc/nginx/lua/nginx/ngx_srv_redirect.lua
 create mode 100644 rootfs/etc/nginx/lua/ngx_conf_init.lua
 create mode 100644 rootfs/etc/nginx/lua/ngx_conf_init_stream.lua
 create mode 100644 rootfs/etc/nginx/lua/ngx_conf_init_worker.lua

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 05cf9269c..77a03fe7b 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -71,6 +71,22 @@ jobs:
               - 'images/nginx-1.25/**'
             docs:
               - '**/*.md'
+            lua:
+              - '**/*.lua'
+
+  lua-lint:
+    runs-on: ubuntu-latest
+    needs: changes
+    if: |
+      (needs.changes.outputs.lua == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
+    steps:
+      - name: Checkout
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+      
+      - name: Lint Lua
+        uses: lunarmodules/luacheck@v1
+        with:
+          args: --codes --globals lua_ingress --globals configuration --globals balancer --globals monitor --globals certificate --globals tcp_udp_configuration --globals tcp_udp_balancer --no-max-comment-line-length -q rootfs/etc/nginx/lua/
 
   test-go:
     runs-on: ubuntu-latest
diff --git a/hack/verify-lualint.sh b/hack/verify-lualint.sh
index 1f6048de0..769d7a6cd 100755
--- a/hack/verify-lualint.sh
+++ b/hack/verify-lualint.sh
@@ -18,6 +18,13 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
-luacheck --codes -q rootfs/etc/nginx/lua/
+luacheck --codes --globals lua_ingress \
+    --globals configuration \
+    --globals balancer \
+    --globals monitor \
+    --globals certificate \
+    --globals tcp_udp_configuration \
+    --globals tcp_udp_balancer \
+    --no-max-comment-line-length -q rootfs/etc/nginx/lua/
 
 find rootfs/etc/nginx/lua/ -name "*.lua" -not -path "*/test/*" -exec lj-releng -L -s {} + && echo "lj-releng validation is success!"
diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index f74b3245e..7d6dcc3fa 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -690,6 +690,10 @@ func (n *NGINXController) OnUpdate(ingressCfg ingress.Configuration) error {
 		return err
 	}
 
+	err = n.createLuaConfig(&cfg)
+	if err != nil {
+		return err
+	}
 	err = createOpentelemetryCfg(&cfg)
 	if err != nil {
 		return err
@@ -1079,6 +1083,32 @@ func createOpentelemetryCfg(cfg *ngx_config.Configuration) error {
 	return os.WriteFile(cfg.OpentelemetryConfig, tmplBuf.Bytes(), file.ReadWriteByUser)
 }
 
+func (n *NGINXController) createLuaConfig(cfg *ngx_config.Configuration) error {
+	luaconfigs := &ngx_template.LuaConfig{
+		EnableMetrics: n.cfg.EnableMetrics,
+		ListenPorts: ngx_template.LuaListenPorts{
+			HTTPSPort:    strconv.Itoa(n.cfg.ListenPorts.HTTPS),
+			StatusPort:   strconv.Itoa(nginx.StatusPort),
+			SSLProxyPort: strconv.Itoa(n.cfg.ListenPorts.SSLProxy),
+		},
+		UseProxyProtocol:        cfg.UseProxyProtocol,
+		UseForwardedHeaders:     cfg.UseForwardedHeaders,
+		IsSSLPassthroughEnabled: n.cfg.EnableSSLPassthrough,
+		HTTPRedirectCode:        cfg.HTTPRedirectCode,
+		EnableOCSP:              cfg.EnableOCSP,
+		MonitorBatchMaxSize:     n.cfg.MonitorMaxBatchSize,
+		HSTS:                    cfg.HSTS,
+		HSTSMaxAge:              cfg.HSTSMaxAge,
+		HSTSIncludeSubdomains:   cfg.HSTSIncludeSubdomains,
+		HSTSPreload:             cfg.HSTSPreload,
+	}
+	jsonCfg, err := json.Marshal(luaconfigs)
+	if err != nil {
+		return err
+	}
+	return os.WriteFile(luaCfgPath, jsonCfg, file.ReadWriteByUser)
+}
+
 func cleanTempNginxCfg() error {
 	var files []string
 
diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index 42ff7417e..d2c8a05a9 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -194,6 +194,41 @@ func cleanConf(in, out *bytes.Buffer) error {
 	}
 }
 
+/* LuaConfig defines the structure that will be written as a config for lua scripts
+The json format should follow what's expected by lua:
+		use_forwarded_headers = %t,
+		use_proxy_protocol = %t,
+		is_ssl_passthrough_enabled = %t,
+		http_redirect_code = %v,
+		listen_ports = { ssl_proxy = "%v", https = "%v" },
+
+		hsts = %t,
+		hsts_max_age = %v,
+		hsts_include_subdomains = %t,
+		hsts_preload = %t,
+*/
+
+type LuaConfig struct {
+	EnableMetrics           bool           `json:"enable_metrics"`
+	ListenPorts             LuaListenPorts `json:"listen_ports"`
+	UseForwardedHeaders     bool           `json:"use_forwarded_headers"`
+	UseProxyProtocol        bool           `json:"use_proxy_protocol"`
+	IsSSLPassthroughEnabled bool           `json:"is_ssl_passthrough_enabled"`
+	HTTPRedirectCode        int            `json:"http_redirect_code"`
+	EnableOCSP              bool           `json:"enable_ocsp"`
+	MonitorBatchMaxSize     int            `json:"monitor_batch_max_size"`
+	HSTS                    bool           `json:"hsts"`
+	HSTSMaxAge              string         `json:"hsts_max_age"`
+	HSTSIncludeSubdomains   bool           `json:"hsts_include_subdomains"`
+	HSTSPreload             bool           `json:"hsts_preload"`
+}
+
+type LuaListenPorts struct {
+	HTTPSPort    string `json:"https"`
+	StatusPort   string `json:"status_port"`
+	SSLProxyPort string `json:"ssl_proxy"`
+}
+
 // Write populates a buffer using a template with NGINX configuration
 // and the servers and upstreams created by Ingress rules
 func (t *Template) Write(conf *config.TemplateConfig) ([]byte, error) {
@@ -256,7 +291,6 @@ var funcMap = text_template.FuncMap{
 	"filterRateLimits":                filterRateLimits,
 	"buildRateLimitZones":             buildRateLimitZones,
 	"buildRateLimit":                  buildRateLimit,
-	"configForLua":                    configForLua,
 	"locationConfigForLua":            locationConfigForLua,
 	"buildResolvers":                  buildResolvers,
 	"buildUpstreamName":               buildUpstreamName,
@@ -383,41 +417,6 @@ func luaConfigurationRequestBodySize(c interface{}) string {
 	return dictKbToStr(size)
 }
 
-// configForLua returns some general configuration as Lua table represented as string
-func configForLua(input interface{}) string {
-	all, ok := input.(config.TemplateConfig)
-	if !ok {
-		klog.Errorf("expected a 'config.TemplateConfig' type but %T was given", input)
-		return "{}"
-	}
-
-	return fmt.Sprintf(`{
-		use_forwarded_headers = %t,
-		use_proxy_protocol = %t,
-		is_ssl_passthrough_enabled = %t,
-		http_redirect_code = %v,
-		listen_ports = { ssl_proxy = "%v", https = "%v" },
-
-		hsts = %t,
-		hsts_max_age = %v,
-		hsts_include_subdomains = %t,
-		hsts_preload = %t,
-
-	}`,
-		all.Cfg.UseForwardedHeaders,
-		all.Cfg.UseProxyProtocol,
-		all.IsSSLPassthroughEnabled,
-		all.Cfg.HTTPRedirectCode,
-		all.ListenPorts.SSLProxy,
-		all.ListenPorts.HTTPS,
-
-		all.Cfg.HSTS,
-		all.Cfg.HSTSMaxAge,
-		all.Cfg.HSTSIncludeSubdomains,
-		all.Cfg.HSTSPreload,
-	)
-}
-
 // locationConfigForLua formats some location specific configuration into Lua table represented as string
 func locationConfigForLua(l, a interface{}) string {
 	location, ok := l.(*ingress.Location)
@@ -432,13 +431,21 @@ func locationConfigForLua(l, a interface{}) string {
 		return "{}"
 	}
 
-	return fmt.Sprintf(`{
-		force_ssl_redirect = %t,
-		ssl_redirect = %t,
-		force_no_ssl_redirect = %t,
-		preserve_trailing_slash = %t,
-		use_port_in_redirects = %t,
-	}`,
+	/* Lua expects the following vars
+		force_ssl_redirect = string_to_bool(ngx.var.force_ssl_redirect),
+	    ssl_redirect = string_to_bool(ngx.var.ssl_redirect),
+	    force_no_ssl_redirect = string_to_bool(ngx.var.force_no_ssl_redirect),
+	    preserve_trailing_slash = string_to_bool(ngx.var.preserve_trailing_slash),
+	    use_port_in_redirects = string_to_bool(ngx.var.use_port_in_redirects),
+	*/
+
+	return fmt.Sprintf(`
+	    set $force_ssl_redirect "%t";
+	    set $ssl_redirect "%t";
+	    set $force_no_ssl_redirect "%t";
+	    set $preserve_trailing_slash "%t";
+	    set $use_port_in_redirects "%t";
+	`,
 		location.Rewrite.ForceSSLRedirect,
 		location.Rewrite.SSLRedirect,
 		isLocationInLocationList(l, all.Cfg.NoTLSRedirectLocations),
diff --git a/internal/ingress/controller/util.go b/internal/ingress/controller/util.go
index 79bf931ef..975fb822a 100644
--- a/internal/ingress/controller/util.go
+++ b/internal/ingress/controller/util.go
@@ -98,8 +98,9 @@ func rlimitMaxNumFiles() int {
 }
 
 const (
-	defBinary = "/usr/bin/nginx"
-	cfgPath   = "/etc/nginx/nginx.conf"
+	defBinary  = "/usr/bin/nginx"
+	cfgPath    = "/etc/nginx/nginx.conf"
+	luaCfgPath = "/etc/nginx/lua/cfg.json"
 )
 
 // NginxExecTester defines the interface to execute
diff --git a/rootfs/etc/nginx/lua/lua_ingress.lua b/rootfs/etc/nginx/lua/lua_ingress.lua
index 65cf5a257..a513928cf 100644
--- a/rootfs/etc/nginx/lua/lua_ingress.lua
+++ b/rootfs/etc/nginx/lua/lua_ingress.lua
@@ -1,4 +1,5 @@
 local ngx_re_split = require("ngx.re").split
+local string_to_bool = require("util").string_to_bool
 
 local certificate_configured_for_current_request =
   require("certificate").configured_for_current_request
@@ -108,7 +109,16 @@ end
 -- rewrite gets called in every location context.
 -- This is where we do variable assignments to be used in subsequent
 -- phases or redirection
-function _M.rewrite(location_config)
+function _M.rewrite()
+
+  local location_config = {
+    force_ssl_redirect = string_to_bool(ngx.var.force_ssl_redirect),
+    ssl_redirect = string_to_bool(ngx.var.ssl_redirect),
+    force_no_ssl_redirect = string_to_bool(ngx.var.force_no_ssl_redirect),
+    preserve_trailing_slash = string_to_bool(ngx.var.preserve_trailing_slash),
+    use_port_in_redirects = string_to_bool(ngx.var.use_port_in_redirects),
+  }
+
   ngx.var.pass_access_scheme = ngx.var.scheme
 
   ngx.var.best_http_host = ngx.var.http_host or ngx.var.host
diff --git a/rootfs/etc/nginx/lua/nginx/ngx_conf_balancer.lua b/rootfs/etc/nginx/lua/nginx/ngx_conf_balancer.lua
new file mode 100644
index 000000000..977d3e964
--- /dev/null
+++ b/rootfs/etc/nginx/lua/nginx/ngx_conf_balancer.lua
@@ -0,0 +1,2 @@
+local balancer = require("balancer")
+balancer.balance()
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/nginx/ngx_conf_balancer_tcp_udp.lua b/rootfs/etc/nginx/lua/nginx/ngx_conf_balancer_tcp_udp.lua
new file mode 100644
index 000000000..0442df7d8
--- /dev/null
+++ b/rootfs/etc/nginx/lua/nginx/ngx_conf_balancer_tcp_udp.lua
@@ -0,0 +1,2 @@
+local tcp_udp_balancer = require("tcp_udp_balancer")
+tcp_udp_balancer.balance()
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/nginx/ngx_conf_certificate.lua b/rootfs/etc/nginx/lua/nginx/ngx_conf_certificate.lua
new file mode 100644
index 000000000..d33d2171b
--- /dev/null
+++ b/rootfs/etc/nginx/lua/nginx/ngx_conf_certificate.lua
@@ -0,0 +1,2 @@
+local certificate = require("certificate")
+certificate.call()
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/nginx/ngx_conf_configuration.lua b/rootfs/etc/nginx/lua/nginx/ngx_conf_configuration.lua
new file mode 100644
index 000000000..7864f40ef
--- /dev/null
+++ b/rootfs/etc/nginx/lua/nginx/ngx_conf_configuration.lua
@@ -0,0 +1,2 @@
+local configuration = require("configuration")
+configuration.call()
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/nginx/ngx_conf_content_tcp_udp.lua b/rootfs/etc/nginx/lua/nginx/ngx_conf_content_tcp_udp.lua
new file mode 100644
index 000000000..ed81e7ff3
--- /dev/null
+++ b/rootfs/etc/nginx/lua/nginx/ngx_conf_content_tcp_udp.lua
@@ -0,0 +1,2 @@
+local tcp_udp_configuration = require("tcp_udp_configuration")
+tcp_udp_configuration.call()
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/nginx/ngx_conf_init_tcp_udp.lua b/rootfs/etc/nginx/lua/nginx/ngx_conf_init_tcp_udp.lua
new file mode 100644
index 000000000..926ab7a03
--- /dev/null
+++ b/rootfs/etc/nginx/lua/nginx/ngx_conf_init_tcp_udp.lua
@@ -0,0 +1,2 @@
+local tcp_udp_balancer = require("tcp_udp_balancer")
+tcp_udp_balancer.init_worker()
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/nginx/ngx_conf_is_dynamic_lb_initialized.lua b/rootfs/etc/nginx/lua/nginx/ngx_conf_is_dynamic_lb_initialized.lua
new file mode 100644
index 000000000..ade3114b1
--- /dev/null
+++ b/rootfs/etc/nginx/lua/nginx/ngx_conf_is_dynamic_lb_initialized.lua
@@ -0,0 +1,9 @@
+local configuration = require("configuration")
+local backend_data = configuration.get_backends_data()
+if not backend_data then
+    ngx.exit(ngx.HTTP_INTERNAL_SERVER_ERROR)
+    return
+end
+
+ngx.say("OK")
+ngx.exit(ngx.HTTP_OK)
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/nginx/ngx_conf_log.lua b/rootfs/etc/nginx/lua/nginx/ngx_conf_log.lua
new file mode 100644
index 000000000..8f3d57be6
--- /dev/null
+++ b/rootfs/etc/nginx/lua/nginx/ngx_conf_log.lua
@@ -0,0 +1,2 @@
+local monitor = require("monitor")
+monitor.call()
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/nginx/ngx_conf_log_block.lua b/rootfs/etc/nginx/lua/nginx/ngx_conf_log_block.lua
new file mode 100644
index 000000000..72f6a6430
--- /dev/null
+++ b/rootfs/etc/nginx/lua/nginx/ngx_conf_log_block.lua
@@ -0,0 +1,11 @@
+local balancer = require("balancer")
+local monitor = require("monitor")
+
+local luaconfig = ngx.shared.luaconfig
+local enablemetrics = luaconfig:get("enablemetrics")
+
+balancer.log()
+
+if enablemetrics then
+    monitor.call()
+end
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/nginx/ngx_conf_rewrite_auth.lua b/rootfs/etc/nginx/lua/nginx/ngx_conf_rewrite_auth.lua
new file mode 100644
index 000000000..0d16faba0
--- /dev/null
+++ b/rootfs/etc/nginx/lua/nginx/ngx_conf_rewrite_auth.lua
@@ -0,0 +1 @@
+ngx.var.cache_key = ngx.encode_base64(ngx.sha1_bin(ngx.var.tmp_cache_key))
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/nginx/ngx_conf_srv_hdr_filter.lua b/rootfs/etc/nginx/lua/nginx/ngx_conf_srv_hdr_filter.lua
new file mode 100644
index 000000000..311a9b433
--- /dev/null
+++ b/rootfs/etc/nginx/lua/nginx/ngx_conf_srv_hdr_filter.lua
@@ -0,0 +1,2 @@
+local lua_ingress = require("lua_ingress")
+lua_ingress.header()
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/nginx/ngx_rewrite.lua b/rootfs/etc/nginx/lua/nginx/ngx_rewrite.lua
new file mode 100644
index 000000000..66fdd6d55
--- /dev/null
+++ b/rootfs/etc/nginx/lua/nginx/ngx_rewrite.lua
@@ -0,0 +1,5 @@
+local lua_ingress = require("lua_ingress")
+local balancer = require("balancer")
+
+lua_ingress.rewrite()
+balancer.rewrite()
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/nginx/ngx_srv_redirect.lua b/rootfs/etc/nginx/lua/nginx/ngx_srv_redirect.lua
new file mode 100644
index 000000000..4b9445d00
--- /dev/null
+++ b/rootfs/etc/nginx/lua/nginx/ngx_srv_redirect.lua
@@ -0,0 +1,24 @@
+local request_uri = ngx.var.request_uri
+local redirect_to = ngx.arg[1]
+
+local luaconfig = ngx.shared.luaconfig
+local use_forwarded_headers = luaconfig:get("use_forwarded_headers")
+
+if string.sub(request_uri, -1) == "/" then
+    request_uri = string.sub(request_uri, 1, -2)
+end
+
+local redirectScheme = ngx.var.scheme
+local redirectPort = ngx.var.server_port
+
+if use_forwarded_headers then
+    if ngx.var.http_x_forwarded_proto then
+        redirectScheme = ngx.var.http_x_forwarded_proto
+    end
+    if ngx.var.http_x_forwarded_port then
+        redirectPort = ngx.var.http_x_forwarded_port
+    end
+end
+
+return string.format("%s://%s:%s%s", redirectScheme,
+    redirect_to, redirectPort, request_uri)
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/ngx_conf_init.lua b/rootfs/etc/nginx/lua/ngx_conf_init.lua
new file mode 100644
index 000000000..9789386ac
--- /dev/null
+++ b/rootfs/etc/nginx/lua/ngx_conf_init.lua
@@ -0,0 +1,53 @@
+local cjson = require("cjson.safe")
+
+collectgarbage("collect")
+local f = io.open("/etc/nginx/lua/cfg.json", "r")
+local content = f:read("*a")
+f:close()
+local configfile = cjson.decode(content)
+
+local luaconfig = ngx.shared.luaconfig
+luaconfig:set("enablemetrics", configfile.enable_metrics)
+luaconfig:set("use_forwarded_headers", configfile.use_forwarded_headers)
+-- init modules
+local ok, res
+ok, res = pcall(require, "lua_ingress")
+if not ok then
+  error("require failed: " .. tostring(res))
+else
+  lua_ingress = res
+  lua_ingress.set_config(configfile)
+end
+ok, res = pcall(require, "configuration")
+if not ok then
+  error("require failed: " .. tostring(res))
+else
+  configuration = res
+  if not configfile.listen_ports.status_port then
+    error("required status port not found")
+  end
+  configuration.prohibited_localhost_port = configfile.listen_ports.status_port
+end
+ok, res = pcall(require, "balancer")
+if not ok then
+  error("require failed: " .. tostring(res))
+else
+  balancer = res
+end
+if configfile.enable_metrics then
+    ok, res = pcall(require, "monitor")
+    if not ok then
+        error("require failed: " .. tostring(res))
+    else
+        monitor = res
+    end
+end
+ok, res = pcall(require, "certificate")
+if not ok then
+  error("require failed: " .. tostring(res))
+else
+  certificate = res
+  if configfile.enable_ocsp then
+    certificate.is_ocsp_stapling_enabled = configfile.enable_ocsp
+  end
+end
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/ngx_conf_init_stream.lua b/rootfs/etc/nginx/lua/ngx_conf_init_stream.lua
new file mode 100644
index 000000000..a78062d0a
--- /dev/null
+++ b/rootfs/etc/nginx/lua/ngx_conf_init_stream.lua
@@ -0,0 +1,30 @@
+local cjson = require("cjson.safe")
+collectgarbage("collect")
+local f = io.open("/etc/nginx/lua/cfg.json", "r")
+local content = f:read("*a")
+f:close()
+local configfile = cjson.decode(content)
+-- init modules
+local ok, res
+ok, res = pcall(require, "configuration")
+if not ok then
+  error("require failed: " .. tostring(res))
+else
+  configuration = res
+end
+ok, res = pcall(require, "tcp_udp_configuration")
+if not ok then
+  error("require failed: " .. tostring(res))
+else
+  tcp_udp_configuration = res
+  if not configfile.listen_ports.status_port then
+    error("required status port not found")
+  end
+  tcp_udp_configuration.prohibited_localhost_port = configfile.listen_ports.status_port
+end
+ok, res = pcall(require, "tcp_udp_balancer")
+if not ok then
+  error("require failed: " .. tostring(res))
+else
+  tcp_udp_balancer = res
+end
diff --git a/rootfs/etc/nginx/lua/ngx_conf_init_worker.lua b/rootfs/etc/nginx/lua/ngx_conf_init_worker.lua
new file mode 100644
index 000000000..cba866136
--- /dev/null
+++ b/rootfs/etc/nginx/lua/ngx_conf_init_worker.lua
@@ -0,0 +1,15 @@
+local cjson = require("cjson.safe")
+
+local f = io.open("/etc/nginx/lua/cfg.json", "r")
+local content = f:read("*a")
+f:close()
+local configfile = cjson.decode(content)
+
+local lua_ingress = require("lua_ingress")
+local balancer = require("balancer")
+local monitor = require("monitor")
+lua_ingress.init_worker()
+balancer.init_worker()
+if configfile.enable_metrics and configfile.monitor_batch_max_size then
+  monitor.init_worker(configfile.monitor_batch_max_size)
+end
\ No newline at end of file
diff --git a/rootfs/etc/nginx/lua/util.lua b/rootfs/etc/nginx/lua/util.lua
index 7389f3226..1e4cd7c01 100644
--- a/rootfs/etc/nginx/lua/util.lua
+++ b/rootfs/etc/nginx/lua/util.lua
@@ -146,6 +146,10 @@ function _M.is_blank(str)
   return str == nil or string_len(str) == 0
 end
 
+function _M.string_to_bool(str)
+  return str == "true"
+end
+
 -- this implementation is taken from:
 -- https://github.com/luafun/luafun/blob/master/fun.lua#L33
 -- SHA: 04c99f9c393e54a604adde4b25b794f48104e0d0
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index 4f705976f..f32860dc2 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -68,60 +68,11 @@ http {
 
     {{ buildLuaSharedDictionaries $cfg $servers }}
 
-    init_by_lua_block {
-        collectgarbage("collect")
+    lua_shared_dict luaconfig 5m;
 
-        -- init modules
-        local ok, res
+    init_by_lua_file /etc/nginx/lua/ngx_conf_init.lua;
 
-        ok, res = pcall(require, "lua_ingress")
-        if not ok then
-          error("require failed: " .. tostring(res))
-        else
-          lua_ingress = res
-          lua_ingress.set_config({{ configForLua $all }})
-        end
-
-        ok, res = pcall(require, "configuration")
-        if not ok then
-          error("require failed: " .. tostring(res))
-        else
-          configuration = res
-          configuration.prohibited_localhost_port = '{{ .StatusPort }}'
-        end
-
-        ok, res = pcall(require, "balancer")
-        if not ok then
-          error("require failed: " .. tostring(res))
-        else
-          balancer = res
-        end
-
-        {{ if $all.EnableMetrics }}
-        ok, res = pcall(require, "monitor")
-        if not ok then
-          error("require failed: " .. tostring(res))
-        else
-          monitor = res
-        end
-        {{ end }}
-
-        ok, res = pcall(require, "certificate")
-        if not ok then
-          error("require failed: " .. tostring(res))
-        else
-          certificate = res
-          certificate.is_ocsp_stapling_enabled = {{ $cfg.EnableOCSP }}
-        end
-    }
-
-    init_worker_by_lua_block {
-        lua_ingress.init_worker()
-        balancer.init_worker()
-        {{ if $all.EnableMetrics }}
-        monitor.init_worker({{ $all.MonitorMaxBatchSize }})
-        {{ end }}
-    }
+    init_worker_by_lua_file /etc/nginx/lua/ngx_conf_init_worker.lua;
 
     {{/* Enable the real_ip module only if we use either X-Forwarded headers or Proxy Protocol. */}}
     {{/* we use the value of the real IP for the geo_ip module */}}
@@ -539,9 +490,7 @@ http {
 
         server 0.0.0.1; # placeholder
 
-        balancer_by_lua_block {
-          balancer.balance()
-        }
+        balancer_by_lua_file /etc/nginx/lua/nginx/ngx_conf_balancer.lua;
 
         {{ if (gt $cfg.UpstreamKeepaliveConnections 0) }}
         keepalive {{ $cfg.UpstreamKeepaliveConnections }};
@@ -606,9 +555,7 @@ http {
         {{ buildHTTPListener  $all $redirect.From }}
         {{ buildHTTPSListener $all $redirect.From }}
 
-        ssl_certificate_by_lua_block {
-            certificate.call()
-        }
+        ssl_certificate_by_lua_file /etc/nginx/lua/nginx/ngx_conf_certificate.lua;
 
         {{ if gt (len $cfg.BlockUserAgents) 0 }}
         if ($block_ua) {
@@ -621,30 +568,7 @@ http {
         }
         {{ end }}
 
-        set_by_lua_block $redirect_to {
-            local request_uri = ngx.var.request_uri
-            if string.sub(request_uri, -1) == "/" then
-                request_uri = string.sub(request_uri, 1, -2)
-            end
-
-            {{ if $cfg.UseForwardedHeaders }}
-            local redirectScheme
-            if not ngx.var.http_x_forwarded_proto then
-                redirectScheme = ngx.var.scheme
-            else
-                redirectScheme = ngx.var.http_x_forwarded_proto
-            end
-            {{ else }}
-            local redirectScheme = ngx.var.scheme
-            {{ end }}
-
-            {{ if ne $all.ListenPorts.HTTPS 443 }}
-            {{ $redirect_port := (printf ":%v" $all.ListenPorts.HTTPS) }}
-            return string.format("%s://%s%s%s", redirectScheme, "{{ $redirect.To }}", "{{ $redirect_port }}", request_uri)
-            {{ else }}
-            return string.format("%s://%s%s", redirectScheme, "{{ $redirect.To }}", request_uri)
-            {{ end }}
-        }
+        set_by_lua_file $redirect_to /etc/nginx/lua/nginx/ngx_srv_redirect.lua {{ $redirect.To }}; 
 
         return {{ $all.Cfg.HTTPRedirectCode }} $redirect_to;
     }
@@ -739,17 +663,7 @@ http {
         }
 
         location /is-dynamic-lb-initialized {
-            content_by_lua_block {
-                local configuration = require("configuration")
-                local backend_data = configuration.get_backends_data()
-                if not backend_data then
-                    ngx.exit(ngx.HTTP_INTERNAL_SERVER_ERROR)
-                    return
-                end
-
-                ngx.say("OK")
-                ngx.exit(ngx.HTTP_OK)
-            }
+            content_by_lua_file /etc/nginx/lua/nginx/ngx_conf_is_dynamic_lb_initialized.lua;
         }
 
         location {{ .StatusPath }} {
@@ -761,15 +675,11 @@ http {
             client_body_buffer_size                 {{ luaConfigurationRequestBodySize $cfg }};
             proxy_buffering                         off;
 
-            content_by_lua_block {
-              configuration.call()
-            }
+            content_by_lua_file /etc/nginx/lua/nginx/ngx_conf_configuration.lua;
         }
 
         location / {
-            content_by_lua_block {
-                ngx.exit(ngx.HTTP_NOT_FOUND)
-            }
+            return 404;
         }
     }
 }
@@ -781,39 +691,9 @@ stream {
     
     {{ buildResolvers $cfg.Resolver $cfg.DisableIpv6DNS }}
 
-    init_by_lua_block {
-        collectgarbage("collect")
+    init_by_lua_file /etc/nginx/lua/ngx_conf_init_stream.lua;
 
-        -- init modules
-        local ok, res
-
-        ok, res = pcall(require, "configuration")
-        if not ok then
-          error("require failed: " .. tostring(res))
-        else
-          configuration = res
-        end
-
-        ok, res = pcall(require, "tcp_udp_configuration")
-        if not ok then
-          error("require failed: " .. tostring(res))
-        else
-          tcp_udp_configuration = res
-          tcp_udp_configuration.prohibited_localhost_port = '{{ .StatusPort }}'
-
-        end
-
-        ok, res = pcall(require, "tcp_udp_balancer")
-        if not ok then
-          error("require failed: " .. tostring(res))
-        else
-          tcp_udp_balancer = res
-        end
-    }
-
-    init_worker_by_lua_block {
-        tcp_udp_balancer.init_worker()
-    }
+    init_worker_by_lua_file /etc/nginx/lua/nginx/ngx_conf_init_tcp_udp.lua;
 
     lua_add_variable $proxy_upstream_name;
 
@@ -835,10 +715,7 @@ stream {
 
     upstream upstream_balancer {
         server 0.0.0.1:1234; # placeholder
-
-        balancer_by_lua_block {
-          tcp_udp_balancer.balance()
-        }
+        balancer_by_lua_file /etc/nginx/lua/nginx/ngx_conf_balancer_tcp_udp.lua;
     }
 
     server {
@@ -846,9 +723,7 @@ stream {
 
         access_log off;
 
-        content_by_lua_block {
-          tcp_udp_configuration.call()
-        }
+        content_by_lua_file /etc/nginx/lua/nginx/ngx_conf_content_tcp_udp.lua;
     }
 
     # TCP services
@@ -948,11 +823,9 @@ stream {
             rewrite                (.*) / break;
 
             proxy_pass            http://upstream_balancer;
-            log_by_lua_block {
-                {{ if $enableMetrics }}
-                monitor.call()
-                {{ end }}
-            }
+            {{ if $enableMetrics }}
+            log_by_lua_file /etc/nginx/lua/nginx/ngx_conf_log.lua;
+            {{ end }}
         }
         {{ end }}
 {{ end }}
@@ -1012,9 +885,7 @@ stream {
         ssl_reject_handshake {{ if $all.Cfg.SSLRejectHandshake }}on{{ else }}off{{ end }};
         {{ end }}
 
-        ssl_certificate_by_lua_block {
-            certificate.call()
-        }
+        ssl_certificate_by_lua_file /etc/nginx/lua/nginx/ngx_conf_certificate.lua;
 
         {{ if not (empty $server.AuthTLSError) }}
         # {{ $server.AuthTLSError }}
@@ -1115,9 +986,7 @@ stream {
             set $tmp_cache_key '{{ $server.Hostname }}{{ $authPath }}{{ $externalAuth.AuthCacheKey }}';
             set $cache_key '';
 
-            rewrite_by_lua_block {
-                ngx.var.cache_key = ngx.encode_base64(ngx.sha1_bin(ngx.var.tmp_cache_key))
-            }
+            rewrite_by_lua_file /etc/nginx/lua/nginx/ngx_conf_rewrite_auth.lua;
 
             proxy_cache auth_cache;
 
@@ -1250,27 +1119,13 @@ stream {
             mirror_request_body {{ $location.Mirror.RequestBody }};
             {{ end }}
 
-            rewrite_by_lua_block {
-                lua_ingress.rewrite({{ locationConfigForLua $location $all }})
-                balancer.rewrite()
-            }
+            {{ locationConfigForLua $location $all }}
 
-            # be careful with `access_by_lua_block` and `satisfy any` directives as satisfy any
-            # will always succeed when there's `access_by_lua_block` that does not have any lua code doing `ngx.exit(ngx.DECLINED)`
-            # other authentication method such as basic auth or external auth useless - all requests will be allowed.
-            #access_by_lua_block {
-            #}
+            rewrite_by_lua_file /etc/nginx/lua/nginx/ngx_rewrite.lua;
 
-            header_filter_by_lua_block {
-                lua_ingress.header()
-            }
+            header_filter_by_lua_file /etc/nginx/lua/nginx/ngx_conf_srv_hdr_filter.lua;
 
-            log_by_lua_block {
-                balancer.log()
-                {{ if $all.EnableMetrics }}
-                monitor.call()
-                {{ end }}
-            }
+            log_by_lua_file /etc/nginx/lua/nginx/ngx_conf_log_block.lua;
 
             {{ if not $location.Logs.Access }}
             access_log off;
diff --git a/test/e2e/annotations/fromtowwwredirect.go b/test/e2e/annotations/fromtowwwredirect.go
index f578963ed..a3fb3b9b5 100644
--- a/test/e2e/annotations/fromtowwwredirect.go
+++ b/test/e2e/annotations/fromtowwwredirect.go
@@ -58,7 +58,7 @@ var _ = framework.DescribeAnnotation("from-to-www-redirect", func() {
 			WithHeader("Host", fmt.Sprintf("%s.%s", "www", host)).
 			Expect().
 			Status(http.StatusPermanentRedirect).
-			Header("Location").Equal("http://fromtowwwredirect.bar.com/foo")
+			Header("Location").Equal("http://fromtowwwredirect.bar.com:80/foo")
 	})
 
 	ginkgo.It("should redirect from www HTTPS to HTTPS", func() {
@@ -101,7 +101,7 @@ var _ = framework.DescribeAnnotation("from-to-www-redirect", func() {
 			WithHeader("Host", toHost).
 			Expect().
 			Status(http.StatusPermanentRedirect).
-			Header("Location").Equal(fmt.Sprintf("https://%v", fromHost))
+			Header("Location").Equal(fmt.Sprintf("https://%v:443", fromHost))
 
 		ginkgo.By("sending request to domain should not redirect to www")
 		f.HTTPTestClientWithTLSConfig(&tls.Config{
diff --git a/test/e2e/framework/framework.go b/test/e2e/framework/framework.go
index 103d8d593..204da7df0 100644
--- a/test/e2e/framework/framework.go
+++ b/test/e2e/framework/framework.go
@@ -16,6 +16,7 @@ package framework
 import (
 	"context"
 	"crypto/tls"
+	"encoding/json"
 	"fmt"
 	"net"
 	"net/http"
@@ -283,6 +284,15 @@ func (f *Framework) WaitForNginxConfiguration(matcher func(cfg string) bool) {
 	Sleep(1 * time.Second)
 }
 
+// WaitForLuaConfiguration waits until the nginx configuration contains a particular configuration
+// `cfg` passed to matcher is normalized by replacing all tabs and spaces with single space.
+func (f *Framework) WaitForLuaConfiguration(matcher func(jsonCfg map[string]interface{}) bool) {
+	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
+	err := wait.Poll(Poll, DefaultTimeout, f.matchLuaConditions(matcher))
+	assert.Nil(ginkgo.GinkgoT(), err, "waiting for nginx lua configuration condition/s")
+	Sleep(1 * time.Second)
+}
+
 // WaitForNginxCustomConfiguration waits until the nginx configuration given part (from, to) contains a particular configuration
 func (f *Framework) WaitForNginxCustomConfiguration(from, to string, matcher func(cfg string) bool) {
 	//nolint:staticcheck // TODO: will replace it since wait.Poll is deprecated
@@ -326,6 +336,29 @@ func (f *Framework) matchNginxConditions(name string, matcher func(cfg string) b
 	}
 }
 
+func (f *Framework) matchLuaConditions(matcher func(jsonCfg map[string]interface{}) bool) wait.ConditionFunc {
+	return func() (bool, error) {
+		cmd := "cat /etc/nginx/lua/cfg.json"
+
+		o, err := f.ExecCommand(f.pod, cmd)
+		if err != nil {
+			return false, nil
+		}
+
+		if klog.V(10).Enabled() && o != "" {
+			klog.InfoS("Lua", "configuration", o)
+		}
+
+		luaConfig := make(map[string]interface{}) // Use unstructured so we can walk through JSON
+		if err := json.Unmarshal([]byte(o), &luaConfig); err != nil {
+			return false, err
+		}
+
+		// passes the lua interface to the function
+		return matcher(luaConfig), nil
+	}
+}
+
 func (f *Framework) matchNginxCustomConditions(from, to string, matcher func(cfg string) bool) wait.ConditionFunc {
 	return func() (bool, error) {
 		cmd := fmt.Sprintf("cat /etc/nginx/nginx.conf| awk '/%v/,/%v/'", from, to)
diff --git a/test/e2e/lua/dynamic_configuration.go b/test/e2e/lua/dynamic_configuration.go
index 8ec1ef839..a5e2196ce 100644
--- a/test/e2e/lua/dynamic_configuration.go
+++ b/test/e2e/lua/dynamic_configuration.go
@@ -48,12 +48,7 @@ var _ = framework.IngressNginxDescribe("[Lua] dynamic configuration", func() {
 
 	ginkgo.It("configures balancer Lua middleware correctly", func() {
 		f.WaitForNginxConfiguration(func(cfg string) bool {
-			return strings.Contains(cfg, "balancer.init_worker()") && strings.Contains(cfg, "balancer.balance()")
-		})
-
-		host := "foo.com"
-		f.WaitForNginxServer(host, func(server string) bool {
-			return strings.Contains(server, "balancer.rewrite()") && strings.Contains(server, "balancer.log()")
+			return strings.Contains(cfg, "balancer_by_lua_file /etc/nginx/lua/nginx/ngx_conf_balancer.lua")
 		})
 	})
 
diff --git a/test/e2e/settings/no_tls_redirect_locations.go b/test/e2e/settings/no_tls_redirect_locations.go
index 8339eb23e..18fd09e26 100644
--- a/test/e2e/settings/no_tls_redirect_locations.go
+++ b/test/e2e/settings/no_tls_redirect_locations.go
@@ -33,7 +33,7 @@ var _ = framework.DescribeSetting("Add no tls redirect locations", func() {
 		f.EnsureIngress(ing)
 
 		f.WaitForNginxConfiguration(func(server string) bool {
-			return !strings.Contains(server, "force_no_ssl_redirect = true,")
+			return strings.Contains(server, "set $force_no_ssl_redirect \"false\"")
 		})
 
 		wlKey := "no-tls-redirect-locations"
@@ -42,7 +42,7 @@ var _ = framework.DescribeSetting("Add no tls redirect locations", func() {
 		f.UpdateNginxConfigMapData(wlKey, wlValue)
 
 		f.WaitForNginxConfiguration(func(server string) bool {
-			return strings.Contains(server, "force_no_ssl_redirect = true,")
+			return strings.Contains(server, "set $force_no_ssl_redirect \"true\"")
 		})
 	})
 })
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index ef3bfb58a..5dcaccc2f 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -34,6 +34,7 @@ import (
 	appsv1 "k8s.io/api/apps/v1"
 	corev1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
 	"k8s.io/apimachinery/pkg/util/intstr"
 
 	"k8s.io/ingress-nginx/test/e2e/framework"
@@ -107,8 +108,9 @@ var _ = framework.DescribeSetting("OCSP", func() {
 		err = framework.WaitForEndpoints(f.KubeClientSet, framework.DefaultTimeout, "ocspserve", f.Namespace, 1)
 		assert.Nil(ginkgo.GinkgoT(), err, "waiting for endpoints to become ready")
 
-		f.WaitForNginxConfiguration(func(cfg string) bool {
-			return strings.Contains(cfg, "certificate.is_ocsp_stapling_enabled = true")
+		f.WaitForLuaConfiguration(func(jsonCfg map[string]interface{}) bool {
+			val, ok, err := unstructured.NestedBool(jsonCfg, "enable_ocsp")
+			return err == nil && ok && val
 		})
 
 		f.WaitForNginxServer(host,
diff --git a/test/e2e/settings/tls.go b/test/e2e/settings/tls.go
index 51f760df8..1ebf358c1 100644
--- a/test/e2e/settings/tls.go
+++ b/test/e2e/settings/tls.go
@@ -25,10 +25,11 @@ import (
 	"github.com/onsi/ginkgo/v2"
 	"github.com/stretchr/testify/assert"
 
+	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
 	"k8s.io/ingress-nginx/test/e2e/framework"
 )
 
-var _ = framework.DescribeSetting("[SSL] TLS protocols, ciphers and headers)", func() {
+var _ = framework.DescribeSetting("[SSL] TLS protocols, ciphers and headers", func() {
 	f := framework.NewDefaultFramework("settings-tls")
 	host := "settings-tls"
 
@@ -109,8 +110,9 @@ var _ = framework.DescribeSetting("[SSL] TLS protocols, ciphers and headers)", f
 		ginkgo.It("setting max-age parameter", func() {
 			f.UpdateNginxConfigMapData(hstsMaxAge, "86400")
 
-			f.WaitForNginxConfiguration(func(server string) bool {
-				return strings.Contains(server, `hsts_max_age = 86400,`)
+			f.WaitForLuaConfiguration(func(jsonCfg map[string]interface{}) bool {
+				val, ok, err := unstructured.NestedString(jsonCfg, "hsts_max_age")
+				return err == nil && ok && val == "86400"
 			})
 
 			f.HTTPTestClientWithTLSConfig(tlsConfig).
@@ -128,8 +130,9 @@ var _ = framework.DescribeSetting("[SSL] TLS protocols, ciphers and headers)", f
 				hstsIncludeSubdomains: "false",
 			})
 
-			f.WaitForNginxConfiguration(func(server string) bool {
-				return strings.Contains(server, `hsts_include_subdomains = false,`)
+			f.WaitForLuaConfiguration(func(jsonCfg map[string]interface{}) bool {
+				val, ok, err := unstructured.NestedBool(jsonCfg, "hsts_include_subdomains")
+				return err == nil && ok && !val
 			})
 
 			f.HTTPTestClientWithTLSConfig(tlsConfig).
@@ -148,8 +151,9 @@ var _ = framework.DescribeSetting("[SSL] TLS protocols, ciphers and headers)", f
 				hstsIncludeSubdomains: "false",
 			})
 
-			f.WaitForNginxConfiguration(func(server string) bool {
-				return strings.Contains(server, `hsts_preload = true,`)
+			f.WaitForLuaConfiguration(func(jsonCfg map[string]interface{}) bool {
+				val, ok, err := unstructured.NestedBool(jsonCfg, "hsts_preload")
+				return err == nil && ok && val
 			})
 
 			f.HTTPTestClientWithTLSConfig(tlsConfig).

From f4454e2651ad11dcb4df5bfd4b3ce0d435191b6f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Sep 2024 15:16:28 +0100
Subject: [PATCH 1442/1641] Bump github.com/prometheus/client_golang from
 1.20.2 to 1.20.3 in the all group (#11953)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 36b5f79e1..789fae3f0 100644
--- a/go.mod
+++ b/go.mod
@@ -17,7 +17,7 @@ require (
 	github.com/onsi/ginkgo/v2 v2.20.2
 	github.com/opencontainers/runc v1.1.14
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
-	github.com/prometheus/client_golang v1.20.2
+	github.com/prometheus/client_golang v1.20.3
 	github.com/prometheus/client_model v0.6.1
 	github.com/prometheus/common v0.57.0
 	github.com/spf13/cobra v1.8.1
diff --git a/go.sum b/go.sum
index 51d85b04c..7d5f2c9a3 100644
--- a/go.sum
+++ b/go.sum
@@ -182,8 +182,8 @@ github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINE
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 h1:Jamvg5psRIccs7FGNTlIRMkT8wgtp5eCXdBlqhYGL6U=
 github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/prometheus/client_golang v1.20.2 h1:5ctymQzZlyOON1666svgwn3s6IKWgfbjsejTMiXIyjg=
-github.com/prometheus/client_golang v1.20.2/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
+github.com/prometheus/client_golang v1.20.3 h1:oPksm4K8B+Vt35tUhw6GbSNSgVlVSBH0qELP/7u83l4=
+github.com/prometheus/client_golang v1.20.3/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
 github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
 github.com/prometheus/common v0.57.0 h1:Ro/rKjwdq9mZn1K5QPctzh+MA4Lp0BuYk5ZZEVhoNcY=

From c229246676f523e4ce62bab4dc52b3bd67c7428b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Sep 2024 15:18:28 +0100
Subject: [PATCH 1443/1641] Bump golang.org/x/crypto from 0.26.0 to 0.27.0
 (#11955)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index 789fae3f0..e3e203a3a 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.9.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.26.0
+	golang.org/x/crypto v0.27.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
 	google.golang.org/grpc v1.66.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
@@ -117,9 +117,9 @@ require (
 	golang.org/x/net v0.28.0 // indirect
 	golang.org/x/oauth2 v0.21.0 // indirect
 	golang.org/x/sync v0.8.0 // indirect
-	golang.org/x/sys v0.24.0 // indirect
-	golang.org/x/term v0.23.0 // indirect
-	golang.org/x/text v0.17.0 // indirect
+	golang.org/x/sys v0.25.0 // indirect
+	golang.org/x/term v0.24.0 // indirect
+	golang.org/x/text v0.18.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.24.0 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20240701130421-f6361c86f094 // indirect
diff --git a/go.sum b/go.sum
index 7d5f2c9a3..51ddb2264 100644
--- a/go.sum
+++ b/go.sum
@@ -238,8 +238,8 @@ golang.org/dl v0.0.0-20190829154251-82a15e2f2ead/go.mod h1:IUMfjQLJQd4UTqG1Z90te
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.26.0 h1:RrRspgV4mU+YwB4FYnuBoKsUapNIL5cohGAmSH3azsw=
-golang.org/x/crypto v0.26.0/go.mod h1:GY7jblb9wI+FOo5y8/S2oY4zWP07AkOJ4+jxCqdqn54=
+golang.org/x/crypto v0.27.0 h1:GXm2NjJrPaiv/h1tb2UH8QfgC/hOf/+z0p6PT8o1w7A=
+golang.org/x/crypto v0.27.0/go.mod h1:1Xngt8kV6Dvbssa53Ziq6Eqn0HqbZi5Z6R0ZpwQzt70=
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 h1:2dVuKD2vS7b0QIHQbpyTISPd0LeHDbnYEryqj5Q1ug8=
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbRXRL/OHtkFuWGRjvuhBJpk2IlY=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
@@ -276,14 +276,14 @@ golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.24.0 h1:Twjiwq9dn6R1fQcyiK+wQyHWfaz/BJB+YIpzU/Cv3Xg=
-golang.org/x/sys v0.24.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/term v0.23.0 h1:F6D4vR+EHoL9/sWAWgAR1H2DcHr4PareCbAaCo1RpuU=
-golang.org/x/term v0.23.0/go.mod h1:DgV24QBUrK6jhZXl+20l6UWznPlwAHm1Q1mGHtydmSk=
+golang.org/x/sys v0.25.0 h1:r+8e+loiHxRqhXVl6ML1nO3l1+oFoWbnlu2Ehimmi34=
+golang.org/x/sys v0.25.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/term v0.24.0 h1:Mh5cbb+Zk2hqqXNO7S1iTjEphVL+jb8ZWaqh/g+JWkM=
+golang.org/x/term v0.24.0/go.mod h1:lOBK/LVxemqiMij05LGJ0tzNr8xlmwBRJ81PX6wVLH8=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.17.0 h1:XtiM5bkSOt+ewxlOE/aE/AKEHibwj/6gvWMl9Rsh0Qc=
-golang.org/x/text v0.17.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
+golang.org/x/text v0.18.0 h1:XvMDiNzPAl0jr17s6W9lcaIhGUfUORdGCNsuLmPG224=
+golang.org/x/text v0.18.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
 golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
 golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=

From 1c2aecbf02898845b45cee3d0b493347b440995e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Sep 2024 16:35:36 +0100
Subject: [PATCH 1444/1641] Bump github.com/prometheus/common from 0.57.0 to
 0.59.1 (#11954)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index e3e203a3a..2055ad7c6 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.3
 	github.com/prometheus/client_model v0.6.1
-	github.com/prometheus/common v0.57.0
+	github.com/prometheus/common v0.59.1
 	github.com/spf13/cobra v1.8.1
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.9.0
@@ -115,7 +115,7 @@ require (
 	go.uber.org/zap v1.27.0 // indirect
 	golang.org/x/mod v0.20.0 // indirect
 	golang.org/x/net v0.28.0 // indirect
-	golang.org/x/oauth2 v0.21.0 // indirect
+	golang.org/x/oauth2 v0.22.0 // indirect
 	golang.org/x/sync v0.8.0 // indirect
 	golang.org/x/sys v0.25.0 // indirect
 	golang.org/x/term v0.24.0 // indirect
diff --git a/go.sum b/go.sum
index 51ddb2264..5e87f616c 100644
--- a/go.sum
+++ b/go.sum
@@ -186,8 +186,8 @@ github.com/prometheus/client_golang v1.20.3 h1:oPksm4K8B+Vt35tUhw6GbSNSgVlVSBH0q
 github.com/prometheus/client_golang v1.20.3/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
 github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
-github.com/prometheus/common v0.57.0 h1:Ro/rKjwdq9mZn1K5QPctzh+MA4Lp0BuYk5ZZEVhoNcY=
-github.com/prometheus/common v0.57.0/go.mod h1:7uRPFSUTbfZWsJ7MHY56sqt7hLQu3bxXHDnNhl8E9qI=
+github.com/prometheus/common v0.59.1 h1:LXb1quJHWm1P6wq/U824uxYi4Sg0oGvNeUm1z5dJoX0=
+github.com/prometheus/common v0.59.1/go.mod h1:GpWM7dewqmVYcd7SmRaiWVe9SSqjf0UrwnYnpEZNuT0=
 github.com/prometheus/procfs v0.15.1 h1:YagwOFzUgYfKKHX6Dr+sHT7km/hxC76UB0learggepc=
 github.com/prometheus/procfs v0.15.1/go.mod h1:fB45yRUv8NstnjriLhBQLuOUt+WW4BsoGhij/e3PBqk=
 github.com/rogpeppe/go-internal v1.12.0 h1:exVL4IDcn6na9z1rAb56Vxr+CgyK3nn3O+epU5NdKM8=
@@ -254,8 +254,8 @@ golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.28.0 h1:a9JDOJc5GMUJ0+UDqmLT86WiEy7iWyIhz8gz8E4e5hE=
 golang.org/x/net v0.28.0/go.mod h1:yqtgsTWOOnlGLG9GFRrK3++bGOUEkNBoHZc8MEDWPNg=
-golang.org/x/oauth2 v0.21.0 h1:tsimM75w1tF/uws5rbeHzIWxEqElMehnc+iW793zsZs=
-golang.org/x/oauth2 v0.21.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
+golang.org/x/oauth2 v0.22.0 h1:BzDx2FehcG7jJwgWLELCdmLuxk2i+x9UDpSiss2u0ZA=
+golang.org/x/oauth2 v0.22.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=

From 0111961e7d79b386c7717fa392d727e8fdadfc2a Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 13 Sep 2024 16:41:46 +0100
Subject: [PATCH 1445/1641] Go: Bump to v1.22.7. (#11943)

---
 GOLANG_VERSION                                | 2 +-
 go.mod                                        | 2 +-
 go.work                                       | 2 +-
 images/custom-error-pages/rootfs/go.mod       | 2 +-
 images/ext-auth-example-authsvc/rootfs/go.mod | 2 +-
 images/kube-webhook-certgen/rootfs/go.mod     | 2 +-
 images/opentelemetry/rootfs/Dockerfile        | 2 +-
 images/opentelemetry/rootfs/go.mod            | 2 +-
 magefiles/go.mod                              | 2 +-
 9 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/GOLANG_VERSION b/GOLANG_VERSION
index 013173af5..87b26e8b1 100644
--- a/GOLANG_VERSION
+++ b/GOLANG_VERSION
@@ -1 +1 @@
-1.22.6
+1.22.7
diff --git a/go.mod b/go.mod
index 2055ad7c6..1dc95fd5c 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx
 
-go 1.22.6
+go 1.22.7
 
 require (
 	dario.cat/mergo v1.0.1
diff --git a/go.work b/go.work
index ac741bb5a..f0095c758 100644
--- a/go.work
+++ b/go.work
@@ -1,4 +1,4 @@
-go 1.22.6
+go 1.22.7
 
 use (
 	.
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 264ebf427..34363c50a 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.22.6
+go 1.22.7
 
 require github.com/prometheus/client_golang v1.11.1
 
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index a3396b358..366e19639 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,6 +1,6 @@
 module example.com/authsvc
 
-go 1.22.6
+go 1.22.7
 
 require k8s.io/apimachinery v0.23.1
 
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 0270c0d87..9bbb5b391 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,6 +1,6 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.22.6
+go 1.22.7
 
 require (
 	github.com/onrik/logrus v0.11.0
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
index 9f3cb2eae..4b64b96a6 100644
--- a/images/opentelemetry/rootfs/Dockerfile
+++ b/images/opentelemetry/rootfs/Dockerfile
@@ -31,7 +31,7 @@ FROM base AS nginx
 ARG NGINX_VERSION=1.25.3
 RUN bash /opt/third_party/build.sh -n ${NGINX_VERSION}
 
-FROM golang:1.22.6-bullseye AS build-init
+FROM golang:1.22.7-bullseye AS build-init
 
 WORKDIR /go/src/app
 COPY . .
diff --git a/images/opentelemetry/rootfs/go.mod b/images/opentelemetry/rootfs/go.mod
index 115ef686a..207d1d914 100644
--- a/images/opentelemetry/rootfs/go.mod
+++ b/images/opentelemetry/rootfs/go.mod
@@ -1,3 +1,3 @@
 module init-otel
 
-go 1.22.6
+go 1.22.7
diff --git a/magefiles/go.mod b/magefiles/go.mod
index 8e146d70e..913522823 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/magefiles
 
-go 1.22.6
+go 1.22.7
 
 require (
 	github.com/blang/semver/v4 v4.0.0

From 61f56cb490d6cdc9c8e89ef3040e7eb609e88c2a Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 15 Sep 2024 16:49:14 +0200
Subject: [PATCH 1446/1641] Chart: Improve default backend service account.
 (#11972)

---
 charts/ingress-nginx/templates/_helpers.tpl                   | 2 +-
 .../ingress-nginx/templates/default-backend-deployment.yaml   | 2 +-
 .../templates/default-backend-serviceaccount.yaml             | 4 ++--
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index 51bacbe38..aa206084d 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -204,7 +204,7 @@ We truncate at 63 chars because some Kubernetes name fields are limited to this
 {{- end -}}
 
 {{/*
-Create the name of the backend service account to use - only used when podsecuritypolicy is also enabled
+Create the name of the default backend service account to use
 */}}
 {{- define "ingress-nginx.defaultBackend.serviceAccountName" -}}
 {{- if .Values.defaultBackend.serviceAccount.create -}}
diff --git a/charts/ingress-nginx/templates/default-backend-deployment.yaml b/charts/ingress-nginx/templates/default-backend-deployment.yaml
index c6ccdd5c9..6755e2378 100644
--- a/charts/ingress-nginx/templates/default-backend-deployment.yaml
+++ b/charts/ingress-nginx/templates/default-backend-deployment.yaml
@@ -102,7 +102,7 @@ spec:
     {{- if .Values.defaultBackend.nodeSelector }}
       nodeSelector: {{ toYaml .Values.defaultBackend.nodeSelector | nindent 8 }}
     {{- end }}
-      serviceAccountName: {{ template "ingress-nginx.defaultBackend.serviceAccountName" . }}
+      serviceAccountName: {{ include "ingress-nginx.defaultBackend.serviceAccountName" . }}
     {{- if .Values.defaultBackend.tolerations }}
       tolerations: {{ toYaml .Values.defaultBackend.tolerations | nindent 8 }}
     {{- end }}
diff --git a/charts/ingress-nginx/templates/default-backend-serviceaccount.yaml b/charts/ingress-nginx/templates/default-backend-serviceaccount.yaml
index 2afaf0c04..6fd2d6234 100644
--- a/charts/ingress-nginx/templates/default-backend-serviceaccount.yaml
+++ b/charts/ingress-nginx/templates/default-backend-serviceaccount.yaml
@@ -1,4 +1,4 @@
-{{- if and .Values.defaultBackend.enabled  .Values.defaultBackend.serviceAccount.create -}}
+{{- if and .Values.defaultBackend.enabled .Values.defaultBackend.serviceAccount.create -}}
 apiVersion: v1
 kind: ServiceAccount
 metadata:
@@ -8,7 +8,7 @@ metadata:
     {{- with .Values.defaultBackend.labels }}
     {{- toYaml . | nindent 4 }}
     {{- end }}
-  name: {{ template "ingress-nginx.defaultBackend.serviceAccountName" . }}
+  name: {{ include "ingress-nginx.defaultBackend.serviceAccountName" . }}
   namespace: {{ include "ingress-nginx.namespace" . }}
 automountServiceAccountToken: {{ .Values.defaultBackend.serviceAccount.automountServiceAccountToken }}
 {{- end }}

From 027603927b46f086c1b77dc1ab76f0667343718b Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 15 Sep 2024 17:03:24 +0200
Subject: [PATCH 1447/1641] Chart: Remove Pod Security Policy. (#11971)

---
 charts/ingress-nginx/README.md                |   4 -
 .../ci/deamonset-psp-values.yaml              |  13 ---
 .../ci/deamonset-webhook-and-psp-values.yaml  |  13 ---
 .../ci/deployment-psp-values.yaml             |  10 --
 .../ci/deployment-webhook-and-psp-values.yaml |  12 ---
 charts/ingress-nginx/templates/_helpers.tpl   |  11 --
 .../job-patch/clusterrole.yaml                |  10 --
 .../admission-webhooks/job-patch/psp.yaml     |  52 ---------
 .../templates/controller-psp.yaml             | 100 ------------------
 .../templates/controller-role.yaml            |  10 --
 .../templates/default-backend-psp.yaml        |  50 ---------
 .../templates/default-backend-role.yaml       |  22 ----
 .../default-backend-rolebinding.yaml          |  21 ----
 charts/ingress-nginx/values.yaml              |  10 --
 docs/examples/psp/README.md                   |  17 ---
 docs/examples/psp/psp.yaml                    |  75 -------------
 docs/troubleshooting.md                       |   2 +-
 magefiles/utils/helm.go                       |   6 --
 mkdocs.yml                                    |   1 -
 19 files changed, 1 insertion(+), 438 deletions(-)
 delete mode 100644 charts/ingress-nginx/ci/deamonset-psp-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/deamonset-webhook-and-psp-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-psp-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-webhook-and-psp-values.yaml
 delete mode 100644 charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml
 delete mode 100644 charts/ingress-nginx/templates/controller-psp.yaml
 delete mode 100644 charts/ingress-nginx/templates/default-backend-psp.yaml
 delete mode 100644 charts/ingress-nginx/templates/default-backend-role.yaml
 delete mode 100644 charts/ingress-nginx/templates/default-backend-rolebinding.yaml
 delete mode 100644 docs/examples/psp/README.md
 delete mode 100644 docs/examples/psp/psp.yaml

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 99551e6d4..8c06cdce2 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -244,7 +244,6 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.createSecretJob.resources | object | `{}` |  |
 | controller.admissionWebhooks.createSecretJob.securityContext | object | `{"allowPrivilegeEscalation":false,"capabilities":{"drop":["ALL"]},"readOnlyRootFilesystem":true,"runAsGroup":65532,"runAsNonRoot":true,"runAsUser":65532,"seccompProfile":{"type":"RuntimeDefault"}}` | Security context for secret creation containers |
 | controller.admissionWebhooks.enabled | bool | `true` |  |
-| controller.admissionWebhooks.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | controller.admissionWebhooks.extraEnvs | list | `[]` | Additional environment variables to set |
 | controller.admissionWebhooks.failurePolicy | string | `"Fail"` | Admission Webhook failure policy to use |
 | controller.admissionWebhooks.key | string | `"/usr/local/certificates/key"` |  |
@@ -307,7 +306,6 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.enableAnnotationValidations | bool | `true` |  |
 | controller.enableMimalloc | bool | `true` | Enable mimalloc as a drop-in replacement for malloc. # ref: https://github.com/microsoft/mimalloc # |
 | controller.enableTopologyAwareRouting | bool | `false` | This configuration enables Topology Aware Routing feature, used together with service annotation service.kubernetes.io/topology-mode="auto" Defaults to false |
-| controller.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | controller.extraArgs | object | `{}` | Additional command line arguments to pass to Ingress-Nginx Controller E.g. to specify the default SSL certificate you can use |
 | controller.extraContainers | list | `[]` | Additional containers to be added to the controller pod. See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example. |
 | controller.extraEnvs | list | `[]` | Additional environment variables to set |
@@ -497,7 +495,6 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.autoscaling.targetMemoryUtilizationPercentage | int | `50` |  |
 | defaultBackend.containerSecurityContext | object | `{}` | Security context for default backend containers |
 | defaultBackend.enabled | bool | `false` |  |
-| defaultBackend.existingPsp | string | `""` | Use an existing PSP instead of creating one |
 | defaultBackend.extraArgs | object | `{}` |  |
 | defaultBackend.extraConfigMaps | list | `[]` |  |
 | defaultBackend.extraEnvs | list | `[]` | Additional environment variables to set for defaultBackend pods |
@@ -550,7 +547,6 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | dhParam | string | `""` | A base64-encoded Diffie-Hellman parameter. This can be generated with: `openssl dhparam 4096 2> /dev/null | base64` # Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param |
 | imagePullSecrets | list | `[]` | Optional array of imagePullSecrets containing private registry credentials # Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ |
 | namespaceOverride | string | `""` | Override the deployment namespace; defaults to .Release.Namespace |
-| podSecurityPolicy.enabled | bool | `false` |  |
 | portNamePrefix | string | `""` | Prefix for TCP and UDP ports names in ingress controller service # Some cloud providers, like Yandex Cloud may have a requirements for a port name regex to support cloud load balancer integration |
 | rbac.create | bool | `true` |  |
 | rbac.scope | bool | `false` |  |
diff --git a/charts/ingress-nginx/ci/deamonset-psp-values.yaml b/charts/ingress-nginx/ci/deamonset-psp-values.yaml
deleted file mode 100644
index 8026a6356..000000000
--- a/charts/ingress-nginx/ci/deamonset-psp-values.yaml
+++ /dev/null
@@ -1,13 +0,0 @@
-controller:
-  kind: DaemonSet
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-  service:
-    type: ClusterIP
-
-podSecurityPolicy:
-  enabled: true
diff --git a/charts/ingress-nginx/ci/deamonset-webhook-and-psp-values.yaml b/charts/ingress-nginx/ci/deamonset-webhook-and-psp-values.yaml
deleted file mode 100644
index fccdb134c..000000000
--- a/charts/ingress-nginx/ci/deamonset-webhook-and-psp-values.yaml
+++ /dev/null
@@ -1,13 +0,0 @@
-controller:
-  kind: DaemonSet
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: true
-  service:
-    type: ClusterIP
-
-podSecurityPolicy:
-  enabled: true
diff --git a/charts/ingress-nginx/ci/deployment-psp-values.yaml b/charts/ingress-nginx/ci/deployment-psp-values.yaml
deleted file mode 100644
index 2f332a7b2..000000000
--- a/charts/ingress-nginx/ci/deployment-psp-values.yaml
+++ /dev/null
@@ -1,10 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  service:
-    type: ClusterIP
-
-podSecurityPolicy:
-  enabled: true
diff --git a/charts/ingress-nginx/ci/deployment-webhook-and-psp-values.yaml b/charts/ingress-nginx/ci/deployment-webhook-and-psp-values.yaml
deleted file mode 100644
index 6195bb339..000000000
--- a/charts/ingress-nginx/ci/deployment-webhook-and-psp-values.yaml
+++ /dev/null
@@ -1,12 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: true
-  service:
-    type: ClusterIP
-
-podSecurityPolicy:
-  enabled: true
diff --git a/charts/ingress-nginx/templates/_helpers.tpl b/charts/ingress-nginx/templates/_helpers.tpl
index aa206084d..6cbda2d4d 100644
--- a/charts/ingress-nginx/templates/_helpers.tpl
+++ b/charts/ingress-nginx/templates/_helpers.tpl
@@ -235,17 +235,6 @@ readOnlyRootFilesystem: {{ .Values.defaultBackend.image.readOnlyRootFilesystem }
 {{- end -}}
 {{- end -}}
 
-{{/*
-Return the appropriate apiGroup for PodSecurityPolicy.
-*/}}
-{{- define "podSecurityPolicy.apiGroup" -}}
-{{- if semverCompare ">=1.14-0" .Capabilities.KubeVersion.GitVersion -}}
-{{- print "policy" -}}
-{{- else -}}
-{{- print "extensions" -}}
-{{- end -}}
-{{- end -}}
-
 {{/*
 Extra modules.
 */}}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
index a21848201..54af7abb6 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/clusterrole.yaml
@@ -20,14 +20,4 @@ rules:
     verbs:
       - get
       - update
-{{- if .Values.podSecurityPolicy.enabled }}
-  - apiGroups:      [{{ template "podSecurityPolicy.apiGroup" . }}]
-    resources:      ['podsecuritypolicies']
-    verbs:          ['use']
-    {{- with .Values.controller.admissionWebhooks.existingPsp }}
-    resourceNames:  [{{ . }}]
-    {{- else }}
-    resourceNames:  [{{ include "ingress-nginx.admissionWebhooks.fullname" . }}]
-    {{- end }}
-{{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml
deleted file mode 100644
index 8e5dc72ac..000000000
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/psp.yaml
+++ /dev/null
@@ -1,52 +0,0 @@
-{{- if (semverCompare "<1.25.0-0" .Capabilities.KubeVersion.Version) }}
-{{- if and .Values.podSecurityPolicy.enabled .Values.controller.admissionWebhooks.enabled .Values.controller.admissionWebhooks.patch.enabled (empty .Values.controller.admissionWebhooks.existingPsp) -}}
-apiVersion: policy/v1beta1
-kind: PodSecurityPolicy
-metadata:
-  name: {{ include "ingress-nginx.admissionWebhooks.fullname" . }}
-  annotations:
-    "helm.sh/hook": pre-install,pre-upgrade,post-install,post-upgrade
-    "helm.sh/hook-delete-policy": before-hook-creation,hook-succeeded
-    seccomp.security.alpha.kubernetes.io/allowedProfileNames: "*"
-  labels:
-    {{- include "ingress-nginx.labels" . | nindent 4 }}
-    app.kubernetes.io/component: admission-webhook
-    {{- with .Values.controller.admissionWebhooks.patch.labels }}
-    {{- toYaml . | nindent 4 }}
-    {{- end }}
-spec:
-  privileged: false
-  hostPID: false
-  hostIPC: false
-  hostNetwork: false
-  volumes:
-    - configMap
-    - downwardAPI
-    - emptyDir
-    - secret
-    - projected
-  fsGroup:
-    rule: MustRunAs
-    ranges:
-      - min: 1
-        max: 65535
-  readOnlyRootFilesystem: true
-  runAsUser:
-    rule: MustRunAsNonRoot
-  runAsGroup:
-    rule: MustRunAs
-    ranges:
-      - min: 1
-        max: 65535
-  supplementalGroups:
-    rule: MustRunAs
-    ranges:
-      - min: 1
-        max: 65535
-  allowPrivilegeEscalation: false
-  requiredDropCapabilities:
-    - ALL
-  seLinux:
-    rule: RunAsAny
-{{- end }}
-{{- end }}
diff --git a/charts/ingress-nginx/templates/controller-psp.yaml b/charts/ingress-nginx/templates/controller-psp.yaml
deleted file mode 100644
index aad1d2736..000000000
--- a/charts/ingress-nginx/templates/controller-psp.yaml
+++ /dev/null
@@ -1,100 +0,0 @@
-{{- if (semverCompare "<1.25.0-0" .Capabilities.KubeVersion.Version) }}
-{{- if and .Values.podSecurityPolicy.enabled (empty .Values.controller.existingPsp) -}}
-apiVersion: policy/v1beta1
-kind: PodSecurityPolicy
-metadata:
-  name: {{ include "ingress-nginx.fullname" . }}
-  annotations:
-    seccomp.security.alpha.kubernetes.io/allowedProfileNames: "*"
-  labels:
-    {{- include "ingress-nginx.labels" . | nindent 4 }}
-    app.kubernetes.io/component: controller
-    {{- with .Values.controller.labels }}
-    {{- toYaml . | nindent 4 }}
-    {{- end }}
-spec:
-  privileged: false
-  hostPID: false
-  hostIPC: false
-  hostNetwork: {{ .Values.controller.hostNetwork }}
-{{- if or .Values.controller.hostNetwork .Values.controller.hostPort.enabled }}
-  hostPorts:
-  {{- if .Values.controller.hostNetwork }}
-  {{- range $key, $value := .Values.controller.containerPort }}
-    # controller.containerPort.{{ $key }}
-    - min: {{ $value }}
-      max: {{ $value }}
-  {{- end }}
-  {{- else if .Values.controller.hostPort.enabled }}
-  {{- range $key, $value := .Values.controller.hostPort.ports }}
-    # controller.hostPort.ports.{{ $key }}
-    - min: {{ $value }}
-      max: {{ $value }}
-  {{- end }}
-  {{- end }}
-  {{- if .Values.controller.metrics.enabled }}
-    # controller.metrics.port
-    - min: {{ .Values.controller.metrics.port }}
-      max: {{ .Values.controller.metrics.port }}
-  {{- end }}
-  {{- if .Values.controller.admissionWebhooks.enabled }}
-    # controller.admissionWebhooks.port
-    - min: {{ .Values.controller.admissionWebhooks.port }}
-      max: {{ .Values.controller.admissionWebhooks.port }}
-  {{- end }}
-  {{- range $key, $value := .Values.tcp }}
-    # tcp.{{ $key }}
-    - min: {{ $key }}
-      max: {{ $key }}
-  {{- end }}
-  {{- range $key, $value := .Values.udp }}
-    # udp.{{ $key }}
-    - min: {{ $key }}
-      max: {{ $key }}
-  {{- end }}
-{{- end }}
-  volumes:
-    - configMap
-    - downwardAPI
-    - emptyDir
-    - secret
-    - projected
-  fsGroup:
-    rule: MustRunAs
-    ranges:
-      - min: 1
-        max: 65535
-  readOnlyRootFilesystem: false
-  runAsUser:
-    rule: MustRunAsNonRoot
-  runAsGroup:
-    rule: MustRunAs
-    ranges:
-      - min: 1
-        max: 65535
-  supplementalGroups:
-    rule: MustRunAs
-    ranges:
-      - min: 1
-        max: 65535
-  allowPrivilegeEscalation: {{ or .Values.controller.image.allowPrivilegeEscalation .Values.controller.image.chroot }}
-  requiredDropCapabilities:
-    - ALL
-  allowedCapabilities:
-    - NET_BIND_SERVICE
-  {{- if .Values.controller.image.chroot }}
-  {{- if .Values.controller.image.seccompProfile }}
-    - SYS_ADMIN
-  {{- end }}
-    - SYS_CHROOT
-  {{- end }}
-  seLinux:
-    rule: RunAsAny
-{{- if .Values.controller.sysctls }}
-  allowedUnsafeSysctls:
-  {{- range $sysctl, $value := .Values.controller.sysctls }}
-    - {{ $sysctl }}
-  {{- end }}
-{{- end }}
-{{- end }}
-{{- end }}
diff --git a/charts/ingress-nginx/templates/controller-role.yaml b/charts/ingress-nginx/templates/controller-role.yaml
index a94b39978..127b368c4 100644
--- a/charts/ingress-nginx/templates/controller-role.yaml
+++ b/charts/ingress-nginx/templates/controller-role.yaml
@@ -91,14 +91,4 @@ rules:
       - list
       - watch
       - get
-{{- if .Values.podSecurityPolicy.enabled }}
-  - apiGroups:      [{{ template "podSecurityPolicy.apiGroup" . }}]
-    resources:      ['podsecuritypolicies']
-    verbs:          ['use']
-    {{- with .Values.controller.existingPsp }}
-    resourceNames:  [{{ . }}]
-    {{- else }}
-    resourceNames:  [{{ include "ingress-nginx.fullname" . }}]
-    {{- end }}
-{{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/default-backend-psp.yaml b/charts/ingress-nginx/templates/default-backend-psp.yaml
deleted file mode 100644
index 424109109..000000000
--- a/charts/ingress-nginx/templates/default-backend-psp.yaml
+++ /dev/null
@@ -1,50 +0,0 @@
-{{- if (semverCompare "<1.25.0-0" .Capabilities.KubeVersion.Version) }}
-{{- if and .Values.podSecurityPolicy.enabled .Values.defaultBackend.enabled (empty .Values.defaultBackend.existingPsp) -}}
-apiVersion: policy/v1beta1
-kind: PodSecurityPolicy
-metadata:
-  name: {{ include "ingress-nginx.fullname" . }}-backend
-  annotations:
-    seccomp.security.alpha.kubernetes.io/allowedProfileNames: "*"
-  labels:
-    {{- include "ingress-nginx.labels" . | nindent 4 }}
-    app.kubernetes.io/component: default-backend
-    {{- with .Values.defaultBackend.labels }}
-    {{- toYaml . | nindent 4 }}
-    {{- end }}
-spec:
-  privileged: false
-  hostPID: false
-  hostIPC: false
-  hostNetwork: false
-  volumes:
-    - configMap
-    - downwardAPI
-    - emptyDir
-    - secret
-    - projected
-  fsGroup:
-    rule: MustRunAs
-    ranges:
-      - min: 1
-        max: 65535
-  readOnlyRootFilesystem: true
-  runAsUser:
-    rule: MustRunAsNonRoot
-  runAsGroup:
-    rule: MustRunAs
-    ranges:
-      - min: 1
-        max: 65535
-  supplementalGroups:
-    rule: MustRunAs
-    ranges:
-      - min: 1
-        max: 65535
-  allowPrivilegeEscalation: false
-  requiredDropCapabilities:
-    - ALL
-  seLinux:
-    rule: RunAsAny
-{{- end }}
-{{- end }}
diff --git a/charts/ingress-nginx/templates/default-backend-role.yaml b/charts/ingress-nginx/templates/default-backend-role.yaml
deleted file mode 100644
index dd7868aa0..000000000
--- a/charts/ingress-nginx/templates/default-backend-role.yaml
+++ /dev/null
@@ -1,22 +0,0 @@
-{{- if and .Values.rbac.create .Values.podSecurityPolicy.enabled .Values.defaultBackend.enabled -}}
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  labels:
-    {{- include "ingress-nginx.labels" . | nindent 4 }}
-    app.kubernetes.io/component: default-backend
-    {{- with .Values.defaultBackend.labels }}
-    {{- toYaml . | nindent 4 }}
-    {{- end }}
-  name: {{ include "ingress-nginx.fullname" . }}-backend
-  namespace: {{ include "ingress-nginx.namespace" . }}
-rules:
-  - apiGroups:      [{{ template "podSecurityPolicy.apiGroup" . }}]
-    resources:      ['podsecuritypolicies']
-    verbs:          ['use']
-    {{- with .Values.defaultBackend.existingPsp }}
-    resourceNames:  [{{ . }}]
-    {{- else }}
-    resourceNames:  [{{ include "ingress-nginx.fullname" . }}-backend]
-    {{- end }}
-{{- end }}
diff --git a/charts/ingress-nginx/templates/default-backend-rolebinding.yaml b/charts/ingress-nginx/templates/default-backend-rolebinding.yaml
deleted file mode 100644
index 3203b6f57..000000000
--- a/charts/ingress-nginx/templates/default-backend-rolebinding.yaml
+++ /dev/null
@@ -1,21 +0,0 @@
-{{- if and .Values.rbac.create .Values.podSecurityPolicy.enabled .Values.defaultBackend.enabled -}}
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  labels:
-    {{- include "ingress-nginx.labels" . | nindent 4 }}
-    app.kubernetes.io/component: default-backend
-    {{- with .Values.defaultBackend.labels }}
-    {{- toYaml . | nindent 4 }}
-    {{- end }}
-  name: {{ include "ingress-nginx.fullname" . }}-backend
-  namespace: {{ include "ingress-nginx.namespace" . }}
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: {{ include "ingress-nginx.fullname" . }}-backend
-subjects:
-  - kind: ServiceAccount
-    name: {{ template "ingress-nginx.defaultBackend.serviceAccountName" . }}
-    namespace: {{ include "ingress-nginx.namespace" . }}
-{{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 46cfa089b..bd8955500 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -41,8 +41,6 @@ controller:
     seccompProfile:
       type: RuntimeDefault
     readOnlyRootFilesystem: false
-  # -- Use an existing PSP instead of creating one
-  existingPsp: ""
   # -- Configures the controller container name
   containerName: controller
   # -- Configures the ports that the nginx-controller listens on
@@ -758,8 +756,6 @@ controller:
     objectSelector: {}
     # -- Labels to be added to admission webhooks
     labels: {}
-    # -- Use an existing PSP instead of creating one
-    existingPsp: ""
     service:
       annotations: {}
       # clusterIP: ""
@@ -979,8 +975,6 @@ defaultBackend:
     seccompProfile:
       type: RuntimeDefault
     readOnlyRootFilesystem: true
-  # -- Use an existing PSP instead of creating one
-  existingPsp: ""
   extraArgs: {}
   serviceAccount:
     create: true
@@ -1166,10 +1160,6 @@ defaultBackend:
 rbac:
   create: true
   scope: false
-## If true, create & use Pod Security Policy resources
-## https://kubernetes.io/docs/concepts/policy/pod-security-policy/
-podSecurityPolicy:
-  enabled: false
 serviceAccount:
   create: true
   name: ""
diff --git a/docs/examples/psp/README.md b/docs/examples/psp/README.md
deleted file mode 100644
index f8426baf2..000000000
--- a/docs/examples/psp/README.md
+++ /dev/null
@@ -1,17 +0,0 @@
-# Pod Security Policy (PSP)
-
-In most clusters today, by default, all resources (e.g. `Deployments` and `ReplicatSets`)
-have permissions to create pods.
-Kubernetes however provides a more fine-grained authorization policy called
-[Pod Security Policy (PSP)](https://kubernetes.io/docs/concepts/policy/pod-security-policy/).
-
-PSP allows the cluster owner to define the permission of each object, for example creating a pod.
-If you have PSP enabled on the cluster, and you deploy ingress-nginx,
-you will need to provide the `Deployment` with the permissions to create pods.
-
-Before applying any objects, first apply the PSP permissions by running:
-```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/docs/examples/psp/psp.yaml
-```
-
-Note: PSP permissions must be granted before the creation of the `Deployment` and the `ReplicaSet`.
diff --git a/docs/examples/psp/psp.yaml b/docs/examples/psp/psp.yaml
deleted file mode 100644
index 0f859dece..000000000
--- a/docs/examples/psp/psp.yaml
+++ /dev/null
@@ -1,75 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  name: ingress-nginx
-
----
-
-apiVersion: policy/v1beta1
-kind: PodSecurityPolicy
-metadata:
-  name: ingress-nginx
-  namespace: ingress-nginx
-spec:
-  allowedCapabilities:
-    - NET_BIND_SERVICE
-  privileged: false
-  allowPrivilegeEscalation: true
-  # Allow core volume types.
-  volumes:
-    - configMap
-    - secret
-  hostIPC: false
-  hostPID: false
-  runAsUser:
-    # Require the container to run without root privileges.
-    rule: MustRunAsNonRoot
-  supplementalGroups:
-    rule: MustRunAs
-    ranges:
-      # Forbid adding the root group.
-      - min: 1
-        max: 65535
-  fsGroup:
-    rule: MustRunAs
-    ranges:
-      # Forbid adding the root group.
-      - min: 1
-        max: 65535
-  readOnlyRootFilesystem: false
-  seLinux:
-    rule: RunAsAny
-
----
-
-apiVersion: rbac.authorization.k8s.io/v1
-kind: Role
-metadata:
-  name: ingress-nginx-psp
-  namespace: ingress-nginx
-rules:
-- apiGroups: [policy]
-  resources: [podsecuritypolicies]
-  verbs: [use]
-  resourceNames: [ingress-nginx]
-
----
-
-apiVersion: rbac.authorization.k8s.io/v1
-kind: RoleBinding
-metadata:
-  name: ingress-nginx-psp
-  namespace: ingress-nginx
-roleRef:
-  apiGroup: rbac.authorization.k8s.io
-  kind: Role
-  name: ingress-nginx-psp
-subjects:
-- kind: ServiceAccount
-  name: default
-- kind: ServiceAccount
-  name: ingress-nginx
-  namespace: ingress-nginx
-- kind: ServiceAccount
-  name: ingress-nginx-admission
-  namespace: ingress-nginx
diff --git a/docs/troubleshooting.md b/docs/troubleshooting.md
index e1fd6956e..ffd8f839f 100644
--- a/docs/troubleshooting.md
+++ b/docs/troubleshooting.md
@@ -443,7 +443,7 @@ $ capsh --decode=0000000000000400
 ```
 
 ## Create a test pod as root
-(Note, this may be restricted by PodSecurityPolicy, PodSecurityAdmission/Standards, OPA Gatekeeper, etc. in which case you will need to do the appropriate workaround for testing, e.g. deploy in a new namespace without the restrictions.)
+(Note, this may be restricted by PodSecurityAdmission/Standards, OPA Gatekeeper, etc. in which case you will need to do the appropriate workaround for testing, e.g. deploy in a new namespace without the restrictions.)
 To test further you may want to install additional utilities, etc.  Modify the pod yaml by:
 * changing runAsUser from 101 to 0
 * removing the "drop..ALL" section from the capabilities.
diff --git a/magefiles/utils/helm.go b/magefiles/utils/helm.go
index dea68caab..677e322f5 100644
--- a/magefiles/utils/helm.go
+++ b/magefiles/utils/helm.go
@@ -31,7 +31,6 @@ type IngressChartValue struct {
 			RunAsUser                int    `yaml:"runAsUser"`
 			AllowPrivilegeEscalation bool   `yaml:"allowPrivilegeEscalation"`
 		} `yaml:"image"`
-		ExistingPsp   string `yaml:"existingPsp"`
 		ContainerName string `yaml:"containerName"`
 		ContainerPort struct {
 			HTTP  int `yaml:"http"`
@@ -226,7 +225,6 @@ type IngressChartValue struct {
 			NamespaceSelector    struct{}      `yaml:"namespaceSelector"`
 			ObjectSelector       struct{}      `yaml:"objectSelector"`
 			Labels               struct{}      `yaml:"labels"`
-			ExistingPsp          string        `yaml:"existingPsp"`
 			NetworkPolicyEnabled bool          `yaml:"networkPolicyEnabled"`
 			Service              struct {
 				Annotations              struct{}      `yaml:"annotations"`
@@ -329,7 +327,6 @@ type IngressChartValue struct {
 			ReadOnlyRootFilesystem   bool   `yaml:"readOnlyRootFilesystem"`
 			AllowPrivilegeEscalation bool   `yaml:"allowPrivilegeEscalation"`
 		} `yaml:"image"`
-		ExistingPsp    string   `yaml:"existingPsp"`
 		ExtraArgs      struct{} `yaml:"extraArgs"`
 		ServiceAccount struct {
 			Create                       bool   `yaml:"create"`
@@ -388,9 +385,6 @@ type IngressChartValue struct {
 		Create bool `yaml:"create"`
 		Scope  bool `yaml:"scope"`
 	} `yaml:"rbac"`
-	PodSecurityPolicy struct {
-		Enabled bool `yaml:"enabled"`
-	} `yaml:"podSecurityPolicy"`
 	ServiceAccount struct {
 		Create                       bool     `yaml:"create"`
 		Name                         string   `yaml:"name"`
diff --git a/mkdocs.yml b/mkdocs.yml
index 4b010c5ff..b9cf7917a 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -124,7 +124,6 @@ nav:
       - Rewrite: "examples/rewrite/README.md"
       - Static IPs: "examples/static-ip/README.md"
       - TLS termination: "examples/tls-termination/README.md"
-      - Pod Security Policy (PSP): "examples/psp/README.md"
       - Open Policy Agent rules: "examples/openpolicyagent/README.md"
       - Canary Deployments: "examples/canary/README.md"
   - Developer Guide:

From 8bf0624c51680143be7ba0c34c681e1bcc6acb2b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 16 Sep 2024 13:38:46 +0200
Subject: [PATCH 1448/1641] Bump github/codeql-action from 3.26.6 to 3.26.7 in
 the all group (#11976)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index a1e9c4ecc..4affccb2d 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@4dd16135b69a43b6c8efb853346f8437d92d3c93 # v3.26.6
+        uses: github/codeql-action/upload-sarif@8214744c546c1e5c8f03dde8fab3a7353211988d # v3.26.7
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index d4a53a352..bed49e46f 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@4dd16135b69a43b6c8efb853346f8437d92d3c93 # v3.26.6
+        uses: github/codeql-action/upload-sarif@8214744c546c1e5c8f03dde8fab3a7353211988d # v3.26.7
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 2cbe9b06101d3d021c9c66592492e0e97d1b8cc5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 16 Sep 2024 13:38:59 +0200
Subject: [PATCH 1449/1641] Bump the all group with 2 updates (#11977)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 10 +++++-----
 go.sum | 20 ++++++++++----------
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/go.mod b/go.mod
index 1dc95fd5c..0d57591b2 100644
--- a/go.mod
+++ b/go.mod
@@ -27,18 +27,18 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.27.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
-	google.golang.org/grpc v1.66.0
+	google.golang.org/grpc v1.66.2
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.31.0
+	k8s.io/api v0.31.1
 	k8s.io/apiextensions-apiserver v0.31.0
-	k8s.io/apimachinery v0.31.0
+	k8s.io/apimachinery v0.31.1
 	k8s.io/apiserver v0.31.0
 	k8s.io/cli-runtime v0.30.0
-	k8s.io/client-go v0.31.0
+	k8s.io/client-go v0.31.1
 	k8s.io/code-generator v0.31.0
-	k8s.io/component-base v0.31.0
+	k8s.io/component-base v0.31.1
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.19.0
diff --git a/go.sum b/go.sum
index 5e87f616c..50f389342 100644
--- a/go.sum
+++ b/go.sum
@@ -301,8 +301,8 @@ gomodules.xyz/jsonpatch/v2 v2.4.0 h1:Ci3iUJyx9UeRx7CeFN8ARgGbkESwJK+KB9lLcWxY/Zw
 gomodules.xyz/jsonpatch/v2 v2.4.0/go.mod h1:AH3dM2RI6uoBZxn3LVrfvJ3E0/9dG4cSrbuBJT4moAY=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240701130421-f6361c86f094 h1:BwIjyKYGsK9dMCBOorzRri8MQwmi7mT9rGHsCEinZkA=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240701130421-f6361c86f094/go.mod h1:Ue6ibwXGpU+dqIcODieyLOcgj7z8+IcskoNIgZxtrFY=
-google.golang.org/grpc v1.66.0 h1:DibZuoBznOxbDQxRINckZcUvnCEvrW9pcWIE2yF9r1c=
-google.golang.org/grpc v1.66.0/go.mod h1:s3/l6xSSCURdVfAnL+TqCNMyTDAGN6+lZeVxnZR128Y=
+google.golang.org/grpc v1.66.2 h1:3QdXkuq3Bkh7w+ywLdLvM56cmGvQHUMZpiCzt6Rqaoo=
+google.golang.org/grpc v1.66.2/go.mod h1:s3/l6xSSCURdVfAnL+TqCNMyTDAGN6+lZeVxnZR128Y=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
@@ -341,22 +341,22 @@ gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.31.0 h1:b9LiSjR2ym/SzTOlfMHm1tr7/21aD7fSkqgD/CVJBCo=
-k8s.io/api v0.31.0/go.mod h1:0YiFF+JfFxMM6+1hQei8FY8M7s1Mth+z/q7eF1aJkTE=
+k8s.io/api v0.31.1 h1:Xe1hX/fPW3PXYYv8BlozYqw63ytA92snr96zMW9gWTU=
+k8s.io/api v0.31.1/go.mod h1:sbN1g6eY6XVLeqNsZGLnI5FwVseTrZX7Fv3O26rhAaI=
 k8s.io/apiextensions-apiserver v0.31.0 h1:fZgCVhGwsclj3qCw1buVXCV6khjRzKC5eCFt24kyLSk=
 k8s.io/apiextensions-apiserver v0.31.0/go.mod h1:b9aMDEYaEe5sdK+1T0KU78ApR/5ZVp4i56VacZYEHxk=
-k8s.io/apimachinery v0.31.0 h1:m9jOiSr3FoSSL5WO9bjm1n6B9KROYYgNZOb4tyZ1lBc=
-k8s.io/apimachinery v0.31.0/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
+k8s.io/apimachinery v0.31.1 h1:mhcUBbj7KUjaVhyXILglcVjuS4nYXiwC+KKFBgIVy7U=
+k8s.io/apimachinery v0.31.1/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
 k8s.io/apiserver v0.31.0 h1:p+2dgJjy+bk+B1Csz+mc2wl5gHwvNkC9QJV+w55LVrY=
 k8s.io/apiserver v0.31.0/go.mod h1:KI9ox5Yu902iBnnyMmy7ajonhKnkeZYJhTZ/YI+WEMk=
 k8s.io/cli-runtime v0.30.0 h1:0vn6/XhOvn1RJ2KJOC6IRR2CGqrpT6QQF4+8pYpWQ48=
 k8s.io/cli-runtime v0.30.0/go.mod h1:vATpDMATVTMA79sZ0YUCzlMelf6rUjoBzlp+RnoM+cg=
-k8s.io/client-go v0.31.0 h1:QqEJzNjbN2Yv1H79SsS+SWnXkBgVu4Pj3CJQgbx0gI8=
-k8s.io/client-go v0.31.0/go.mod h1:Y9wvC76g4fLjmU0BA+rV+h2cncoadjvjjkkIGoTLcGU=
+k8s.io/client-go v0.31.1 h1:f0ugtWSbWpxHR7sjVpQwuvw9a3ZKLXX0u0itkFXufb0=
+k8s.io/client-go v0.31.1/go.mod h1:sKI8871MJN2OyeqRlmA4W4KM9KBdBUpDLu/43eGemCg=
 k8s.io/code-generator v0.31.0 h1:w607nrMi1KeDKB3/F/J4lIoOgAwc+gV9ZKew4XRfMp8=
 k8s.io/code-generator v0.31.0/go.mod h1:84y4w3es8rOJOUUP1rLsIiGlO1JuEaPFXQPA9e/K6U0=
-k8s.io/component-base v0.31.0 h1:/KIzGM5EvPNQcYgwq5NwoQBaOlVFrghoVGr8lG6vNRs=
-k8s.io/component-base v0.31.0/go.mod h1:TYVuzI1QmN4L5ItVdMSXKvH7/DtvIuas5/mm8YT3rTo=
+k8s.io/component-base v0.31.1 h1:UpOepcrX3rQ3ab5NB6g5iP0tvsgJWzxTyAo20sgYSy8=
+k8s.io/component-base v0.31.1/go.mod h1:WGeaw7t/kTsqpVTaCoVEtillbqAhF2/JgvO0LDOMa0w=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 h1:bKcdZJOPICVmIIuaM9+MXmapE94dn5AYv5ODs1jA43o=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=

From 9e6c40664fe81c210a6e07e35bee0592842b9f05 Mon Sep 17 00:00:00 2001
From: alexey-gavrilov-flant
 <53515419+alexey-gavrilov-flant@users.noreply.github.com>
Date: Tue, 17 Sep 2024 22:12:43 +0300
Subject: [PATCH 1450/1641] Metrics: Fix namespace in
 `nginx_ingress_controller_ssl_expire_time_seconds`. (#10274)

---
 internal/ingress/metric/collectors/controller.go      | 1 +
 internal/ingress/metric/collectors/controller_test.go | 4 +++-
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/internal/ingress/metric/collectors/controller.go b/internal/ingress/metric/collectors/controller.go
index 697b57ca8..0df04c1d0 100644
--- a/internal/ingress/metric/collectors/controller.go
+++ b/internal/ingress/metric/collectors/controller.go
@@ -305,6 +305,7 @@ func (cm *Controller) SetSSLExpireTime(servers []*ingress.Server) {
 		}
 		labels["host"] = s.Hostname
 		labels["secret_name"] = s.SSLCert.Name
+		labels["namespace"] = s.SSLCert.Namespace
 		labels["identifier"] = s.SSLCert.Identifier()
 
 		cm.sslExpireTime.With(labels).Set(float64(s.SSLCert.ExpireTime.Unix()))
diff --git a/internal/ingress/metric/collectors/controller_test.go b/internal/ingress/metric/collectors/controller_test.go
index 7c7ea8a67..a77293c20 100644
--- a/internal/ingress/metric/collectors/controller_test.go
+++ b/internal/ingress/metric/collectors/controller_test.go
@@ -88,6 +88,8 @@ func TestControllerCounters(t *testing.T) {
 						Hostname: "demo",
 						SSLCert: &ingress.SSLCert{
 							ExpireTime: t1,
+							Name:       "secret-name",
+							Namespace:  "secret-namespace",
 							Certificate: &x509.Certificate{
 								PublicKeyAlgorithm: x509.ECDSA,
 								Issuer: pkix.Name{
@@ -111,7 +113,7 @@ func TestControllerCounters(t *testing.T) {
 			want: `
 				# HELP nginx_ingress_controller_ssl_expire_time_seconds Number of seconds since 1970 to the SSL Certificate expire.\n			An example to check if this certificate will expire in 10 days is: "nginx_ingress_controller_ssl_expire_time_seconds < (time() + (10 * 24 * 3600))"
 				# TYPE nginx_ingress_controller_ssl_expire_time_seconds gauge
-				nginx_ingress_controller_ssl_expire_time_seconds{class="nginx",host="demo",identifier="abcd1234-100",namespace="default",secret_name=""} 1.351807721e+09
+				nginx_ingress_controller_ssl_expire_time_seconds{class="nginx",host="demo",identifier="abcd1234-100",namespace="secret-namespace",secret_name="secret-name"} 1.351807721e+09
 			`,
 			metrics: []string{"nginx_ingress_controller_ssl_expire_time_seconds"},
 		},

From 435d5365b4c37ba0f9e11273573e18fdbe6f93cb Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 20 Sep 2024 14:04:48 +0200
Subject: [PATCH 1451/1641] Chart: Align default backend `PodDisruptionBudget`.
 (#11993)

---
 charts/ingress-nginx/README.md                |  2 +-
 .../default-backend-poddisruptionbudget.yaml  |  6 ++-
 ...ault-backend-poddisruptionbudget_test.yaml | 48 +++++++++++++++++++
 charts/ingress-nginx/values.yaml              |  1 +
 4 files changed, 55 insertions(+), 2 deletions(-)
 create mode 100644 charts/ingress-nginx/tests/default-backend-poddisruptionbudget_test.yaml

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 8c06cdce2..b450fe058 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -516,7 +516,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.livenessProbe.periodSeconds | int | `10` |  |
 | defaultBackend.livenessProbe.successThreshold | int | `1` |  |
 | defaultBackend.livenessProbe.timeoutSeconds | int | `5` |  |
-| defaultBackend.minAvailable | int | `1` |  |
+| defaultBackend.minAvailable | int | `1` | Minimum available pods set in PodDisruptionBudget. |
 | defaultBackend.minReadySeconds | int | `0` | `minReadySeconds` to avoid killing pods before we are ready # |
 | defaultBackend.name | string | `"defaultbackend"` |  |
 | defaultBackend.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
diff --git a/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml b/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
index f869e4530..c8363fd4b 100644
--- a/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
+++ b/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
@@ -1,5 +1,9 @@
 {{- if .Values.defaultBackend.enabled -}}
-{{- if or (gt (.Values.defaultBackend.replicaCount | int) 1) (gt (.Values.defaultBackend.autoscaling.minReplicas | int) 1) }}
+{{- $replicas := .Values.defaultBackend.replicaCount }}
+{{- if .Values.defaultBackend.autoscaling.enabled }}
+{{- $replicas = .Values.defaultBackend.autoscaling.minReplicas }}
+{{- end }}
+{{- if gt ($replicas | int) 1 }}
 apiVersion: {{ ternary "policy/v1" "policy/v1beta1" (semverCompare ">=1.21.0-0" .Capabilities.KubeVersion.Version) }}
 kind: PodDisruptionBudget
 metadata:
diff --git a/charts/ingress-nginx/tests/default-backend-poddisruptionbudget_test.yaml b/charts/ingress-nginx/tests/default-backend-poddisruptionbudget_test.yaml
new file mode 100644
index 000000000..095801862
--- /dev/null
+++ b/charts/ingress-nginx/tests/default-backend-poddisruptionbudget_test.yaml
@@ -0,0 +1,48 @@
+suite: Default Backend > PodDisruptionBudget
+templates:
+  - default-backend-poddisruptionbudget.yaml
+
+tests:
+  - it: should create a PodDisruptionBudget if `defaultBackend.replicaCount` is greater than 1
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.replicaCount: 2
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: PodDisruptionBudget
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-defaultbackend
+
+  - it: should not create a PodDisruptionBudget if `defaultBackend.replicaCount` is less than or equal 1
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.replicaCount: 1
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a PodDisruptionBudget if `defaultBackend.autoscaling.enabled` is true and `defaultBackend.autoscaling.minReplicas` is greater than 1
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.autoscaling.enabled: true
+      defaultBackend.autoscaling.minReplicas: 2
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: PodDisruptionBudget
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-defaultbackend
+
+  - it: should not create a PodDisruptionBudget if `defaultBackend.autoscaling.enabled` is true and `defaultBackend.autoscaling.minReplicas` is less than or equal 1
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.autoscaling.enabled: true
+      defaultBackend.autoscaling.minReplicas: 1
+    asserts:
+      - hasDocuments:
+          count: 0
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index bd8955500..51bb180a3 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -1096,6 +1096,7 @@ defaultBackend:
   ##
   podAnnotations: {}
   replicaCount: 1
+  # -- Minimum available pods set in PodDisruptionBudget.
   minAvailable: 1
   resources: {}
   # limits:

From b2bc9618d3aaae3234fe30d36a937b2f7488357a Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 20 Sep 2024 14:19:54 +0200
Subject: [PATCH 1452/1641] Chart: Test `controller.minAvailable` &
 `controller.maxUnavailable`. (#12000)

---
 .../controller-poddisruptionbudget_test.yaml     | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml b/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml
index 48b4fafcc..f215f3520 100644
--- a/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml
+++ b/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml
@@ -71,3 +71,19 @@ tests:
     asserts:
       - hasDocuments:
           count: 0
+
+  - it: should create a PodDisruptionBudget without `minAvailable` and with `maxUnavailable` if `controller.minAvailable` and `controller.maxUnavailable` are set
+    set:
+      controller.replicaCount: 2
+      controller.minAvailable: 1
+      controller.maxUnavailable: 1
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: PodDisruptionBudget
+      - notExists:
+          path: spec.minAvailable
+      - equal:
+          path: spec.maxUnavailable
+          value: 1

From 43a7d8d5fe90ecbccadb956f6592928691eb0881 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 20 Sep 2024 14:25:03 +0200
Subject: [PATCH 1453/1641] Chart: Add `defaultBackend.maxUnavailable`.
 (#11995)

---
 charts/ingress-nginx/README.md                  |  2 +-
 .../default-backend-poddisruptionbudget.yaml    |  4 ++++
 ...efault-backend-poddisruptionbudget_test.yaml | 17 +++++++++++++++++
 charts/ingress-nginx/values.yaml                |  4 ++++
 4 files changed, 26 insertions(+), 1 deletion(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index b450fe058..4b62feb99 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -516,7 +516,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.livenessProbe.periodSeconds | int | `10` |  |
 | defaultBackend.livenessProbe.successThreshold | int | `1` |  |
 | defaultBackend.livenessProbe.timeoutSeconds | int | `5` |  |
-| defaultBackend.minAvailable | int | `1` | Minimum available pods set in PodDisruptionBudget. |
+| defaultBackend.minAvailable | int | `1` | Minimum available pods set in PodDisruptionBudget. Define either 'minAvailable' or 'maxUnavailable', never both. |
 | defaultBackend.minReadySeconds | int | `0` | `minReadySeconds` to avoid killing pods before we are ready # |
 | defaultBackend.name | string | `"defaultbackend"` |  |
 | defaultBackend.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
diff --git a/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml b/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
index c8363fd4b..42055f819 100644
--- a/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
+++ b/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
@@ -20,6 +20,10 @@ spec:
     matchLabels:
       {{- include "ingress-nginx.selectorLabels" . | nindent 6 }}
       app.kubernetes.io/component: default-backend
+  {{- if and .Values.defaultBackend.minAvailable (not (hasKey .Values.defaultBackend "maxUnavailable")) }}
   minAvailable: {{ .Values.defaultBackend.minAvailable }}
+  {{- else if .Values.defaultBackend.maxUnavailable }}
+  maxUnavailable: {{ .Values.defaultBackend.maxUnavailable }}
+  {{- end }}
 {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/tests/default-backend-poddisruptionbudget_test.yaml b/charts/ingress-nginx/tests/default-backend-poddisruptionbudget_test.yaml
index 095801862..9ca837dca 100644
--- a/charts/ingress-nginx/tests/default-backend-poddisruptionbudget_test.yaml
+++ b/charts/ingress-nginx/tests/default-backend-poddisruptionbudget_test.yaml
@@ -46,3 +46,20 @@ tests:
     asserts:
       - hasDocuments:
           count: 0
+
+  - it: should create a PodDisruptionBudget without `minAvailable` and with `maxUnavailable` if `defaultBackend.minAvailable` and `defaultBackend.maxUnavailable` are set
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.replicaCount: 2
+      defaultBackend.minAvailable: 1
+      defaultBackend.maxUnavailable: 1
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: PodDisruptionBudget
+      - notExists:
+          path: spec.minAvailable
+      - equal:
+          path: spec.maxUnavailable
+          value: 1
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 51bb180a3..ffb8a4ae3 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -1097,7 +1097,11 @@ defaultBackend:
   podAnnotations: {}
   replicaCount: 1
   # -- Minimum available pods set in PodDisruptionBudget.
+  # Define either 'minAvailable' or 'maxUnavailable', never both.
   minAvailable: 1
+  # -- Maximum unavailable pods set in PodDisruptionBudget. If set, 'minAvailable' is ignored.
+  # maxUnavailable: 1
+
   resources: {}
   # limits:
   #   cpu: 10m

From 17209eb3a93bf2d3c08c639125f050070e53acd2 Mon Sep 17 00:00:00 2001
From: chengjoey <30427474+chengjoey@users.noreply.github.com>
Date: Fri, 20 Sep 2024 20:34:38 +0800
Subject: [PATCH 1454/1641] Chart: Implement `unhealthyPodEvictionPolicy`.
 (#11992)

---
 charts/ingress-nginx/README.md                     |  2 ++
 .../templates/controller-poddisruptionbudget.yaml  |  3 +++
 .../default-backend-poddisruptionbudget.yaml       |  3 +++
 .../tests/controller-poddisruptionbudget_test.yaml | 13 +++++++++++++
 .../default-backend-poddisruptionbudget_test.yaml  | 14 ++++++++++++++
 charts/ingress-nginx/values.yaml                   |  6 ++++++
 6 files changed, 41 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 4b62feb99..1cc269afe 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -484,6 +484,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.topologySpreadConstraints | list | `[]` | Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in. # Ref: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/ # |
 | controller.udp.annotations | object | `{}` | Annotations to be added to the udp config configmap |
 | controller.udp.configMapNamespace | string | `""` | Allows customization of the udp-services-configmap; defaults to $(POD_NAMESPACE) |
+| controller.unhealthyPodEvictionPolicy | string | `""` | Eviction policy for unhealthy pods guarded by PodDisruptionBudget. Ref: https://kubernetes.io/blog/2023/01/06/unhealthy-pod-eviction-policy-for-pdbs/ |
 | controller.updateStrategy | object | `{}` | The update strategy to apply to the Deployment or DaemonSet # |
 | controller.watchIngressWithoutClass | bool | `false` | Process Ingress objects without ingressClass annotation/ingressClassName field Overrides value for --watch-ingress-without-class flag of the controller binary Defaults to false |
 | defaultBackend.affinity | object | `{}` | Affinity and anti-affinity rules for server scheduling to nodes # Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity |
@@ -543,6 +544,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.serviceAccount.name | string | `""` |  |
 | defaultBackend.tolerations | list | `[]` | Node tolerations for server scheduling to nodes with taints # Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/ # |
 | defaultBackend.topologySpreadConstraints | list | `[]` | Topology spread constraints rely on node labels to identify the topology domain(s) that each Node is in. Ref.: https://kubernetes.io/docs/concepts/workloads/pods/pod-topology-spread-constraints/ |
+| defaultBackend.unhealthyPodEvictionPolicy | string | `""` | Eviction policy for unhealthy pods guarded by PodDisruptionBudget. Ref: https://kubernetes.io/blog/2023/01/06/unhealthy-pod-eviction-policy-for-pdbs/ |
 | defaultBackend.updateStrategy | object | `{}` | The update strategy to apply to the Deployment or DaemonSet # |
 | dhParam | string | `""` | A base64-encoded Diffie-Hellman parameter. This can be generated with: `openssl dhparam 4096 2> /dev/null | base64` # Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param |
 | imagePullSecrets | list | `[]` | Optional array of imagePullSecrets containing private registry credentials # Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ |
diff --git a/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml b/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
index 8e0181f9f..a1f5fbba2 100644
--- a/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
+++ b/charts/ingress-nginx/templates/controller-poddisruptionbudget.yaml
@@ -32,5 +32,8 @@ spec:
   {{- else if .Values.controller.maxUnavailable }}
   maxUnavailable: {{ .Values.controller.maxUnavailable }}
   {{- end }}
+  {{- if .Values.controller.unhealthyPodEvictionPolicy }}
+  unhealthyPodEvictionPolicy: {{ .Values.controller.unhealthyPodEvictionPolicy }}
+  {{- end }}
 {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml b/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
index 42055f819..e399ea8a4 100644
--- a/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
+++ b/charts/ingress-nginx/templates/default-backend-poddisruptionbudget.yaml
@@ -25,5 +25,8 @@ spec:
   {{- else if .Values.defaultBackend.maxUnavailable }}
   maxUnavailable: {{ .Values.defaultBackend.maxUnavailable }}
   {{- end }}
+  {{- if .Values.defaultBackend.unhealthyPodEvictionPolicy }}
+  unhealthyPodEvictionPolicy: {{ .Values.defaultBackend.unhealthyPodEvictionPolicy }}
+  {{- end }}
 {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml b/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml
index f215f3520..5ac986fc7 100644
--- a/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml
+++ b/charts/ingress-nginx/tests/controller-poddisruptionbudget_test.yaml
@@ -87,3 +87,16 @@ tests:
       - equal:
           path: spec.maxUnavailable
           value: 1
+
+  - it: should create a PodDisruptionBudget with `unhealthyPodEvictionPolicy` if `controller.unhealthyPodEvictionPolicy` is set
+    set:
+      controller.replicaCount: 2
+      controller.unhealthyPodEvictionPolicy: IfHealthyBudget
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: PodDisruptionBudget
+      - equal:
+          path: spec.unhealthyPodEvictionPolicy
+          value: IfHealthyBudget
diff --git a/charts/ingress-nginx/tests/default-backend-poddisruptionbudget_test.yaml b/charts/ingress-nginx/tests/default-backend-poddisruptionbudget_test.yaml
index 9ca837dca..bfe98e883 100644
--- a/charts/ingress-nginx/tests/default-backend-poddisruptionbudget_test.yaml
+++ b/charts/ingress-nginx/tests/default-backend-poddisruptionbudget_test.yaml
@@ -63,3 +63,17 @@ tests:
       - equal:
           path: spec.maxUnavailable
           value: 1
+
+  - it: should create a PodDisruptionBudget with `unhealthyPodEvictionPolicy` if `defaultBackend.unhealthyPodEvictionPolicy` is set
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.replicaCount: 2
+      defaultBackend.unhealthyPodEvictionPolicy: IfHealthyBudget
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: PodDisruptionBudget
+      - equal:
+          path: spec.unhealthyPodEvictionPolicy
+          value: IfHealthyBudget
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index ffb8a4ae3..c7be2bcc2 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -374,6 +374,9 @@ controller:
   minAvailable: 1
   # -- Maximum unavailable pods set in PodDisruptionBudget. If set, 'minAvailable' is ignored.
   # maxUnavailable: 1
+  # -- Eviction policy for unhealthy pods guarded by PodDisruptionBudget.
+  # Ref: https://kubernetes.io/blog/2023/01/06/unhealthy-pod-eviction-policy-for-pdbs/
+  unhealthyPodEvictionPolicy: ""
 
   ## Define requests resources to avoid probe issues due to CPU utilization in busy nodes
   ## ref: https://github.com/kubernetes/ingress-nginx/issues/4735#issuecomment-551204903
@@ -1101,6 +1104,9 @@ defaultBackend:
   minAvailable: 1
   # -- Maximum unavailable pods set in PodDisruptionBudget. If set, 'minAvailable' is ignored.
   # maxUnavailable: 1
+  # -- Eviction policy for unhealthy pods guarded by PodDisruptionBudget.
+  # Ref: https://kubernetes.io/blog/2023/01/06/unhealthy-pod-eviction-policy-for-pdbs/
+  unhealthyPodEvictionPolicy: ""
 
   resources: {}
   # limits:

From 883c09fb57e41a4f31409088d5418ad801f59413 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 22 Sep 2024 09:33:58 +0200
Subject: [PATCH 1455/1641] Docs: Convert `opentelemetry.md` from CRLF to LF.
 (#12005)

---
 .../third-party-addons/opentelemetry.md       | 628 +++++++++---------
 1 file changed, 314 insertions(+), 314 deletions(-)

diff --git a/docs/user-guide/third-party-addons/opentelemetry.md b/docs/user-guide/third-party-addons/opentelemetry.md
index d2cf56bf5..af7fd2b14 100644
--- a/docs/user-guide/third-party-addons/opentelemetry.md
+++ b/docs/user-guide/third-party-addons/opentelemetry.md
@@ -1,314 +1,314 @@
-# OpenTelemetry
-
-Enables requests served by NGINX for distributed telemetry via The OpenTelemetry Project.
-
-Using the third party module [opentelemetry-cpp-contrib/nginx](https://github.com/open-telemetry/opentelemetry-cpp-contrib/tree/main/instrumentation/nginx) the Ingress-Nginx Controller can configure NGINX to enable [OpenTelemetry](http://opentelemetry.io) instrumentation.
-By default this feature is disabled.
-
-Check out this demo showcasing OpenTelemetry in Ingress NGINX. The video provides an overview and
-practical demonstration of how OpenTelemetry can be utilized in Ingress NGINX for observability
-and monitoring purposes.
-
-<p align="center">
-  <a href="https://www.youtube.com/watch?v=jpBfgJpTcfw&t=129" target="_blank" rel="noopener noreferrer">
-    <img src="https://img.youtube.com/vi/jpBfgJpTcfw/0.jpg" alt="Video Thumbnail" />
-  </a>
-</p>
-
-<p align="center">Demo: OpenTelemetry in Ingress NGINX.</p>
-
-## Usage
-
-To enable the instrumentation we must enable OpenTelemetry in the configuration ConfigMap:
-```yaml
-data:
-  enable-opentelemetry: "true"
-```
-
-To enable or disable instrumentation for a single Ingress, use
-the `enable-opentelemetry` annotation:
-```yaml
-kind: Ingress
-metadata:
-  annotations:
-    nginx.ingress.kubernetes.io/enable-opentelemetry: "true"
-```
-
-We must also set the host to use when uploading traces:
-
-```yaml
-otlp-collector-host: "otel-coll-collector.otel.svc"
-```
-NOTE: While the option is called `otlp-collector-host`, you will need to point this to any backend that receives otlp-grpc.
-
-Next you will need to deploy a distributed telemetry system which uses OpenTelemetry.
-[opentelemetry-collector](https://github.com/open-telemetry/opentelemetry-collector), [Jaeger](https://www.jaegertracing.io/)
-[Tempo](https://github.com/grafana/tempo), and [zipkin](https://zipkin.io/)
-have been tested.
-
-Other optional configuration options:
-```yaml
-# specifies the name to use for the server span
-opentelemetry-operation-name
-
-# sets whether or not to trust incoming telemetry spans
-opentelemetry-trust-incoming-span
-
-# specifies the port to use when uploading traces, Default: 4317
-otlp-collector-port
-
-# specifies the service name to use for any traces created, Default: nginx
-otel-service-name
-
-# The maximum queue size. After the size is reached data are dropped.
-otel-max-queuesize
-
-# The delay interval in milliseconds between two consecutive exports.
-otel-schedule-delay-millis
-
-# How long the export can run before it is cancelled.
-otel-schedule-delay-millis
-
-# The maximum batch size of every export. It must be smaller or equal to maxQueueSize.
-otel-max-export-batch-size
-
-# specifies sample rate for any traces created, Default: 0.01
-otel-sampler-ratio
-
-# specifies the sampler to be used when sampling traces.
-# The available samplers are: AlwaysOn,  AlwaysOff, TraceIdRatioBased, Default: AlwaysOff
-otel-sampler
-
-# Uses sampler implementation which by default will take a sample if parent Activity is sampled, Default: false
-otel-sampler-parent-based
-```
-
-Note that you can also set whether to trust incoming spans (global default is true) per-location using annotations like the following:
-```yaml
-kind: Ingress
-metadata:
-  annotations:
-    nginx.ingress.kubernetes.io/opentelemetry-trust-incoming-span: "true"
-```
-
-## Examples
-
-The following examples show how to deploy and test different distributed telemetry systems. These example can be performed using Docker Desktop.
-
-In the [esigo/nginx-example](https://github.com/esigo/nginx-example)
-GitHub repository is an example of a simple hello service:
-
-```mermaid
-graph TB
-    subgraph Browser
-    start["http://esigo.dev/hello/nginx"]
-    end
-
-    subgraph app
-        sa[service-a]
-        sb[service-b]
-        sa --> |name: nginx| sb
-        sb --> |hello nginx!| sa
-    end
-
-    subgraph otel
-        otc["Otel Collector"]
-    end
-
-    subgraph observability
-        tempo["Tempo"]
-        grafana["Grafana"]
-        backend["Jaeger"]
-        zipkin["Zipkin"]
-    end
-
-    subgraph ingress-nginx
-        ngx[nginx]
-    end
-
-    subgraph ngx[nginx]
-        ng[nginx]
-        om[OpenTelemetry module]
-    end
-
-    subgraph Node
-        app
-        otel
-        observability
-        ingress-nginx
-        om --> |otlp-gRPC| otc --> |jaeger| backend
-        otc --> |zipkin| zipkin
-        otc --> |otlp-gRPC| tempo --> grafana
-        sa --> |otlp-gRPC| otc
-        sb --> |otlp-gRPC| otc
-        start --> ng --> sa
-    end
-```
-
-To install the example and collectors run:
-
-1. Enable Ingress addon with:
-
-    ```yaml
-      opentelemetry:
-        enabled: true
-        image: registry.k8s.io/ingress-nginx/opentelemetry-1.25.3:v20240813-b933310d@sha256:f7604ac0547ed64d79b98d92133234e66c2c8aade3c1f4809fed5eec1fb7f922
-        containerSecurityContext:
-        allowPrivilegeEscalation: false
-    ```
-
-2. Enable OpenTelemetry and set the otlp-collector-host:
-
-    ```yaml
-    $ echo '
-      apiVersion: v1
-      kind: ConfigMap
-      data:
-        enable-opentelemetry: "true"
-        opentelemetry-config: "/etc/nginx/opentelemetry.toml"
-        opentelemetry-operation-name: "HTTP $request_method $service_name $uri"
-        opentelemetry-trust-incoming-span: "true"
-        otlp-collector-host: "otel-coll-collector.otel.svc"
-        otlp-collector-port: "4317"
-        otel-max-queuesize: "2048"
-        otel-schedule-delay-millis: "5000"
-        otel-max-export-batch-size: "512"
-        otel-service-name: "nginx-proxy" # Opentelemetry resource name
-        otel-sampler: "AlwaysOn" # Also: AlwaysOff, TraceIdRatioBased
-        otel-sampler-ratio: "1.0"
-        otel-sampler-parent-based: "false"
-      metadata:
-        name: ingress-nginx-controller
-        namespace: ingress-nginx
-      ' | kubectl replace -f -
-    ```
-
-4. Deploy otel-collector, grafana and Jaeger backend:
-
-    ```bash
-    # add helm charts needed for grafana and OpenTelemetry collector
-    helm repo add open-telemetry https://open-telemetry.github.io/opentelemetry-helm-charts
-    helm repo add grafana https://grafana.github.io/helm-charts
-    helm repo update
-    # deploy cert-manager needed for OpenTelemetry collector operator
-    kubectl apply -f https://github.com/cert-manager/cert-manager/releases/download/v1.9.1/cert-manager.yaml
-    # create observability namespace
-    kubectl apply -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/namespace.yaml
-    # install OpenTelemetry collector operator
-    helm upgrade --install otel-collector-operator -n otel --create-namespace open-telemetry/opentelemetry-operator
-    # deploy OpenTelemetry collector
-    kubectl apply -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/collector.yaml
-    # deploy Jaeger all-in-one
-    kubectl apply -f https://github.com/jaegertracing/jaeger-operator/releases/download/v1.37.0/jaeger-operator.yaml -n observability
-    kubectl apply -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/jaeger.yaml -n observability
-    # deploy zipkin
-    kubectl apply -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/zipkin.yaml -n observability
-    # deploy tempo and grafana
-	helm upgrade --install tempo grafana/tempo --create-namespace -n observability
-	helm upgrade -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/grafana/grafana-values.yaml --install grafana grafana/grafana --create-namespace -n observability
-    ```
-
-3. Build and deploy demo app:
-
-    ```bash
-    # build images
-    make images
-
-    # deploy demo app:
-    make deploy-app
-    ```
-
-5. Make a few requests to the Service:
-
-    ```bash
-    kubectl port-forward --namespace=ingress-nginx service/ingress-nginx-controller 8090:80
-    curl http://esigo.dev:8090/hello/nginx
-
-
-    StatusCode        : 200
-    StatusDescription : OK
-    Content           : {"v":"hello nginx!"}
-
-    RawContent        : HTTP/1.1 200 OK
-                        Connection: keep-alive
-                        Content-Length: 21
-                        Content-Type: text/plain; charset=utf-8
-                        Date: Mon, 10 Oct 2022 17:43:33 GMT
-
-                        {"v":"hello nginx!"}
-
-    Forms             : {}
-    Headers           : {[Connection, keep-alive], [Content-Length, 21], [Content-Type, text/plain; charset=utf-8], [Date,
-                        Mon, 10 Oct 2022 17:43:33 GMT]}
-    Images            : {}
-    InputFields       : {}
-    Links             : {}
-    ParsedHtml        : System.__ComObject
-    RawContentLength  : 21
-    ```
-
-6. View the Grafana UI:
-
-    ```bash
-    kubectl port-forward --namespace=observability service/grafana 3000:80
-    ```
-    In the Grafana interface we can see the details:
-    ![grafana screenshot](../../images/otel-grafana-demo.png "grafana screenshot")
-
-7. View the Jaeger UI:
-
-    ```bash
-    kubectl port-forward --namespace=observability service/jaeger-all-in-one-query 16686:16686
-    ```
-    In the Jaeger interface we can see the details:
-    ![Jaeger screenshot](../../images/otel-jaeger-demo.png "Jaeger screenshot")
-
-8. View the Zipkin UI:
-
-    ```bash
-    kubectl port-forward --namespace=observability service/zipkin 9411:9411
-    ```
-    In the Zipkin interface we can see the details:
-    ![zipkin screenshot](../../images/otel-zipkin-demo.png "zipkin screenshot")
-
-## Migration from OpenTracing, Jaeger, Zipkin and Datadog
-
-If you are migrating from OpenTracing, Jaeger, Zipkin, or Datadog to OpenTelemetry,
-you may need to update various annotations and configurations. Here are the mappings
-for common annotations and configurations:
-
-### Annotations
-
-| Legacy                                                        | OpenTelemetry                                                   |
-|---------------------------------------------------------------|-----------------------------------------------------------------|
-| `nginx.ingress.kubernetes.io/enable-opentracing`              | `nginx.ingress.kubernetes.io/enable-opentelemetry`              |
-| `nginx.ingress.kubernetes.io/opentracing-trust-incoming-span` | `nginx.ingress.kubernetes.io/opentelemetry-trust-incoming-span` |
-
-### Configs
-
-| Legacy                                | OpenTelemetry                                |
-|---------------------------------------|----------------------------------------------|
-| `opentracing-operation-name`          | `opentelemetry-operation-name`               |
-| `opentracing-location-operation-name` | `opentelemetry-operation-name`               |
-| `opentracing-trust-incoming-span`     | `opentelemetry-trust-incoming-span`          |
-| `zipkin-collector-port`               | `otlp-collector-port`                        |
-| `zipkin-service-name`                 | `otel-service-name`                          |
-| `zipkin-sample-rate`                  | `otel-sampler-ratio`                         |
-| `jaeger-collector-port`               | `otlp-collector-port`                        |
-| `jaeger-endpoint`                     | `otlp-collector-port`, `otlp-collector-host` |
-| `jaeger-service-name`                 | `otel-service-name`                          |
-| `jaeger-propagation-format`           | `N/A`                                        |
-| `jaeger-sampler-type`                 | `otel-sampler`                               |
-| `jaeger-sampler-param`                | `otel-sampler`                               |
-| `jaeger-sampler-host`                 | `N/A`                                        |
-| `jaeger-sampler-port`                 | `N/A`                                        |
-| `jaeger-trace-context-header-name`    | `N/A`                                        |
-| `jaeger-debug-header`                 | `N/A`                                        |
-| `jaeger-baggage-header`               | `N/A`                                        |
-| `jaeger-tracer-baggage-header-prefix` | `N/A`                                        |
-| `datadog-collector-port`              | `otlp-collector-port`                        |
-| `datadog-service-name`                | `otel-service-name`                          |
-| `datadog-environment`                 | `N/A`                                        |
-| `datadog-operation-name-override`     | `N/A`                                        |
-| `datadog-priority-sampling`           | `otel-sampler`                               |
-| `datadog-sample-rate`                 | `otel-sampler-ratio`                         |
+# OpenTelemetry
+
+Enables requests served by NGINX for distributed telemetry via The OpenTelemetry Project.
+
+Using the third party module [opentelemetry-cpp-contrib/nginx](https://github.com/open-telemetry/opentelemetry-cpp-contrib/tree/main/instrumentation/nginx) the Ingress-Nginx Controller can configure NGINX to enable [OpenTelemetry](http://opentelemetry.io) instrumentation.
+By default this feature is disabled.
+
+Check out this demo showcasing OpenTelemetry in Ingress NGINX. The video provides an overview and
+practical demonstration of how OpenTelemetry can be utilized in Ingress NGINX for observability
+and monitoring purposes.
+
+<p align="center">
+  <a href="https://www.youtube.com/watch?v=jpBfgJpTcfw&t=129" target="_blank" rel="noopener noreferrer">
+    <img src="https://img.youtube.com/vi/jpBfgJpTcfw/0.jpg" alt="Video Thumbnail" />
+  </a>
+</p>
+
+<p align="center">Demo: OpenTelemetry in Ingress NGINX.</p>
+
+## Usage
+
+To enable the instrumentation we must enable OpenTelemetry in the configuration ConfigMap:
+```yaml
+data:
+  enable-opentelemetry: "true"
+```
+
+To enable or disable instrumentation for a single Ingress, use
+the `enable-opentelemetry` annotation:
+```yaml
+kind: Ingress
+metadata:
+  annotations:
+    nginx.ingress.kubernetes.io/enable-opentelemetry: "true"
+```
+
+We must also set the host to use when uploading traces:
+
+```yaml
+otlp-collector-host: "otel-coll-collector.otel.svc"
+```
+NOTE: While the option is called `otlp-collector-host`, you will need to point this to any backend that receives otlp-grpc.
+
+Next you will need to deploy a distributed telemetry system which uses OpenTelemetry.
+[opentelemetry-collector](https://github.com/open-telemetry/opentelemetry-collector), [Jaeger](https://www.jaegertracing.io/)
+[Tempo](https://github.com/grafana/tempo), and [zipkin](https://zipkin.io/)
+have been tested.
+
+Other optional configuration options:
+```yaml
+# specifies the name to use for the server span
+opentelemetry-operation-name
+
+# sets whether or not to trust incoming telemetry spans
+opentelemetry-trust-incoming-span
+
+# specifies the port to use when uploading traces, Default: 4317
+otlp-collector-port
+
+# specifies the service name to use for any traces created, Default: nginx
+otel-service-name
+
+# The maximum queue size. After the size is reached data are dropped.
+otel-max-queuesize
+
+# The delay interval in milliseconds between two consecutive exports.
+otel-schedule-delay-millis
+
+# How long the export can run before it is cancelled.
+otel-schedule-delay-millis
+
+# The maximum batch size of every export. It must be smaller or equal to maxQueueSize.
+otel-max-export-batch-size
+
+# specifies sample rate for any traces created, Default: 0.01
+otel-sampler-ratio
+
+# specifies the sampler to be used when sampling traces.
+# The available samplers are: AlwaysOn,  AlwaysOff, TraceIdRatioBased, Default: AlwaysOff
+otel-sampler
+
+# Uses sampler implementation which by default will take a sample if parent Activity is sampled, Default: false
+otel-sampler-parent-based
+```
+
+Note that you can also set whether to trust incoming spans (global default is true) per-location using annotations like the following:
+```yaml
+kind: Ingress
+metadata:
+  annotations:
+    nginx.ingress.kubernetes.io/opentelemetry-trust-incoming-span: "true"
+```
+
+## Examples
+
+The following examples show how to deploy and test different distributed telemetry systems. These example can be performed using Docker Desktop.
+
+In the [esigo/nginx-example](https://github.com/esigo/nginx-example)
+GitHub repository is an example of a simple hello service:
+
+```mermaid
+graph TB
+    subgraph Browser
+    start["http://esigo.dev/hello/nginx"]
+    end
+
+    subgraph app
+        sa[service-a]
+        sb[service-b]
+        sa --> |name: nginx| sb
+        sb --> |hello nginx!| sa
+    end
+
+    subgraph otel
+        otc["Otel Collector"]
+    end
+
+    subgraph observability
+        tempo["Tempo"]
+        grafana["Grafana"]
+        backend["Jaeger"]
+        zipkin["Zipkin"]
+    end
+
+    subgraph ingress-nginx
+        ngx[nginx]
+    end
+
+    subgraph ngx[nginx]
+        ng[nginx]
+        om[OpenTelemetry module]
+    end
+
+    subgraph Node
+        app
+        otel
+        observability
+        ingress-nginx
+        om --> |otlp-gRPC| otc --> |jaeger| backend
+        otc --> |zipkin| zipkin
+        otc --> |otlp-gRPC| tempo --> grafana
+        sa --> |otlp-gRPC| otc
+        sb --> |otlp-gRPC| otc
+        start --> ng --> sa
+    end
+```
+
+To install the example and collectors run:
+
+1. Enable Ingress addon with:
+
+    ```yaml
+      opentelemetry:
+        enabled: true
+        image: registry.k8s.io/ingress-nginx/opentelemetry-1.25.3:v20240813-b933310d@sha256:f7604ac0547ed64d79b98d92133234e66c2c8aade3c1f4809fed5eec1fb7f922
+        containerSecurityContext:
+        allowPrivilegeEscalation: false
+    ```
+
+2. Enable OpenTelemetry and set the otlp-collector-host:
+
+    ```yaml
+    $ echo '
+      apiVersion: v1
+      kind: ConfigMap
+      data:
+        enable-opentelemetry: "true"
+        opentelemetry-config: "/etc/nginx/opentelemetry.toml"
+        opentelemetry-operation-name: "HTTP $request_method $service_name $uri"
+        opentelemetry-trust-incoming-span: "true"
+        otlp-collector-host: "otel-coll-collector.otel.svc"
+        otlp-collector-port: "4317"
+        otel-max-queuesize: "2048"
+        otel-schedule-delay-millis: "5000"
+        otel-max-export-batch-size: "512"
+        otel-service-name: "nginx-proxy" # Opentelemetry resource name
+        otel-sampler: "AlwaysOn" # Also: AlwaysOff, TraceIdRatioBased
+        otel-sampler-ratio: "1.0"
+        otel-sampler-parent-based: "false"
+      metadata:
+        name: ingress-nginx-controller
+        namespace: ingress-nginx
+      ' | kubectl replace -f -
+    ```
+
+4. Deploy otel-collector, grafana and Jaeger backend:
+
+    ```bash
+    # add helm charts needed for grafana and OpenTelemetry collector
+    helm repo add open-telemetry https://open-telemetry.github.io/opentelemetry-helm-charts
+    helm repo add grafana https://grafana.github.io/helm-charts
+    helm repo update
+    # deploy cert-manager needed for OpenTelemetry collector operator
+    kubectl apply -f https://github.com/cert-manager/cert-manager/releases/download/v1.9.1/cert-manager.yaml
+    # create observability namespace
+    kubectl apply -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/namespace.yaml
+    # install OpenTelemetry collector operator
+    helm upgrade --install otel-collector-operator -n otel --create-namespace open-telemetry/opentelemetry-operator
+    # deploy OpenTelemetry collector
+    kubectl apply -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/collector.yaml
+    # deploy Jaeger all-in-one
+    kubectl apply -f https://github.com/jaegertracing/jaeger-operator/releases/download/v1.37.0/jaeger-operator.yaml -n observability
+    kubectl apply -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/jaeger.yaml -n observability
+    # deploy zipkin
+    kubectl apply -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/zipkin.yaml -n observability
+    # deploy tempo and grafana
+	helm upgrade --install tempo grafana/tempo --create-namespace -n observability
+	helm upgrade -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/grafana/grafana-values.yaml --install grafana grafana/grafana --create-namespace -n observability
+    ```
+
+3. Build and deploy demo app:
+
+    ```bash
+    # build images
+    make images
+
+    # deploy demo app:
+    make deploy-app
+    ```
+
+5. Make a few requests to the Service:
+
+    ```bash
+    kubectl port-forward --namespace=ingress-nginx service/ingress-nginx-controller 8090:80
+    curl http://esigo.dev:8090/hello/nginx
+
+
+    StatusCode        : 200
+    StatusDescription : OK
+    Content           : {"v":"hello nginx!"}
+
+    RawContent        : HTTP/1.1 200 OK
+                        Connection: keep-alive
+                        Content-Length: 21
+                        Content-Type: text/plain; charset=utf-8
+                        Date: Mon, 10 Oct 2022 17:43:33 GMT
+
+                        {"v":"hello nginx!"}
+
+    Forms             : {}
+    Headers           : {[Connection, keep-alive], [Content-Length, 21], [Content-Type, text/plain; charset=utf-8], [Date,
+                        Mon, 10 Oct 2022 17:43:33 GMT]}
+    Images            : {}
+    InputFields       : {}
+    Links             : {}
+    ParsedHtml        : System.__ComObject
+    RawContentLength  : 21
+    ```
+
+6. View the Grafana UI:
+
+    ```bash
+    kubectl port-forward --namespace=observability service/grafana 3000:80
+    ```
+    In the Grafana interface we can see the details:
+    ![grafana screenshot](../../images/otel-grafana-demo.png "grafana screenshot")
+
+7. View the Jaeger UI:
+
+    ```bash
+    kubectl port-forward --namespace=observability service/jaeger-all-in-one-query 16686:16686
+    ```
+    In the Jaeger interface we can see the details:
+    ![Jaeger screenshot](../../images/otel-jaeger-demo.png "Jaeger screenshot")
+
+8. View the Zipkin UI:
+
+    ```bash
+    kubectl port-forward --namespace=observability service/zipkin 9411:9411
+    ```
+    In the Zipkin interface we can see the details:
+    ![zipkin screenshot](../../images/otel-zipkin-demo.png "zipkin screenshot")
+
+## Migration from OpenTracing, Jaeger, Zipkin and Datadog
+
+If you are migrating from OpenTracing, Jaeger, Zipkin, or Datadog to OpenTelemetry,
+you may need to update various annotations and configurations. Here are the mappings
+for common annotations and configurations:
+
+### Annotations
+
+| Legacy                                                        | OpenTelemetry                                                   |
+|---------------------------------------------------------------|-----------------------------------------------------------------|
+| `nginx.ingress.kubernetes.io/enable-opentracing`              | `nginx.ingress.kubernetes.io/enable-opentelemetry`              |
+| `nginx.ingress.kubernetes.io/opentracing-trust-incoming-span` | `nginx.ingress.kubernetes.io/opentelemetry-trust-incoming-span` |
+
+### Configs
+
+| Legacy                                | OpenTelemetry                                |
+|---------------------------------------|----------------------------------------------|
+| `opentracing-operation-name`          | `opentelemetry-operation-name`               |
+| `opentracing-location-operation-name` | `opentelemetry-operation-name`               |
+| `opentracing-trust-incoming-span`     | `opentelemetry-trust-incoming-span`          |
+| `zipkin-collector-port`               | `otlp-collector-port`                        |
+| `zipkin-service-name`                 | `otel-service-name`                          |
+| `zipkin-sample-rate`                  | `otel-sampler-ratio`                         |
+| `jaeger-collector-port`               | `otlp-collector-port`                        |
+| `jaeger-endpoint`                     | `otlp-collector-port`, `otlp-collector-host` |
+| `jaeger-service-name`                 | `otel-service-name`                          |
+| `jaeger-propagation-format`           | `N/A`                                        |
+| `jaeger-sampler-type`                 | `otel-sampler`                               |
+| `jaeger-sampler-param`                | `otel-sampler`                               |
+| `jaeger-sampler-host`                 | `N/A`                                        |
+| `jaeger-sampler-port`                 | `N/A`                                        |
+| `jaeger-trace-context-header-name`    | `N/A`                                        |
+| `jaeger-debug-header`                 | `N/A`                                        |
+| `jaeger-baggage-header`               | `N/A`                                        |
+| `jaeger-tracer-baggage-header-prefix` | `N/A`                                        |
+| `datadog-collector-port`              | `otlp-collector-port`                        |
+| `datadog-service-name`                | `otel-service-name`                          |
+| `datadog-environment`                 | `N/A`                                        |
+| `datadog-operation-name-override`     | `N/A`                                        |
+| `datadog-priority-sampling`           | `otel-sampler`                               |
+| `datadog-sample-rate`                 | `otel-sampler-ratio`                         |

From 2b9acd9501c669d2d8de81c8407d998fc11c0bc4 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 23 Sep 2024 13:10:00 +0100
Subject: [PATCH 1456/1641] Bump github.com/prometheus/client_golang from
 1.20.3 to 1.20.4 in the all group (#12008)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 0d57591b2..63b501f32 100644
--- a/go.mod
+++ b/go.mod
@@ -17,7 +17,7 @@ require (
 	github.com/onsi/ginkgo/v2 v2.20.2
 	github.com/opencontainers/runc v1.1.14
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
-	github.com/prometheus/client_golang v1.20.3
+	github.com/prometheus/client_golang v1.20.4
 	github.com/prometheus/client_model v0.6.1
 	github.com/prometheus/common v0.59.1
 	github.com/spf13/cobra v1.8.1
diff --git a/go.sum b/go.sum
index 50f389342..bdad300d8 100644
--- a/go.sum
+++ b/go.sum
@@ -182,8 +182,8 @@ github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINE
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 h1:Jamvg5psRIccs7FGNTlIRMkT8wgtp5eCXdBlqhYGL6U=
 github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/prometheus/client_golang v1.20.3 h1:oPksm4K8B+Vt35tUhw6GbSNSgVlVSBH0qELP/7u83l4=
-github.com/prometheus/client_golang v1.20.3/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
+github.com/prometheus/client_golang v1.20.4 h1:Tgh3Yr67PaOv/uTqloMsCEdeuFTatm5zIq5+qNN23vI=
+github.com/prometheus/client_golang v1.20.4/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
 github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
 github.com/prometheus/common v0.59.1 h1:LXb1quJHWm1P6wq/U824uxYi4Sg0oGvNeUm1z5dJoX0=

From 9219e3a9c7dbb138cc85d9d0da4079ba034d7242 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 23 Sep 2024 13:12:01 +0100
Subject: [PATCH 1457/1641] Bump google.golang.org/grpc from 1.66.2 to 1.67.0
 (#12009)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 63b501f32..b9f9f10f6 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.27.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
-	google.golang.org/grpc v1.66.2
+	google.golang.org/grpc v1.67.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -122,7 +122,7 @@ require (
 	golang.org/x/text v0.18.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.24.0 // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20240701130421-f6361c86f094 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20240814211410-ddb44dafa142 // indirect
 	google.golang.org/protobuf v1.34.2 // indirect
 	gopkg.in/evanphx/json-patch.v5 v5.9.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
diff --git a/go.sum b/go.sum
index bdad300d8..20134af1e 100644
--- a/go.sum
+++ b/go.sum
@@ -299,10 +299,10 @@ golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8T
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 gomodules.xyz/jsonpatch/v2 v2.4.0 h1:Ci3iUJyx9UeRx7CeFN8ARgGbkESwJK+KB9lLcWxY/Zw=
 gomodules.xyz/jsonpatch/v2 v2.4.0/go.mod h1:AH3dM2RI6uoBZxn3LVrfvJ3E0/9dG4cSrbuBJT4moAY=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240701130421-f6361c86f094 h1:BwIjyKYGsK9dMCBOorzRri8MQwmi7mT9rGHsCEinZkA=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240701130421-f6361c86f094/go.mod h1:Ue6ibwXGpU+dqIcODieyLOcgj7z8+IcskoNIgZxtrFY=
-google.golang.org/grpc v1.66.2 h1:3QdXkuq3Bkh7w+ywLdLvM56cmGvQHUMZpiCzt6Rqaoo=
-google.golang.org/grpc v1.66.2/go.mod h1:s3/l6xSSCURdVfAnL+TqCNMyTDAGN6+lZeVxnZR128Y=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240814211410-ddb44dafa142 h1:e7S5W7MGGLaSu8j3YjdezkZ+m1/Nm0uRVRMEMGk26Xs=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240814211410-ddb44dafa142/go.mod h1:UqMtugtsSgubUsoxbuAoiCXvqvErP7Gf0so0mK9tHxU=
+google.golang.org/grpc v1.67.0 h1:IdH9y6PF5MPSdAntIcpjQ+tXO41pcQsfZV2RxtQgVcw=
+google.golang.org/grpc v1.67.0/go.mod h1:1gLDyUQU7CTLJI90u3nXZ9ekeghjeM7pTDZlqFNg2AA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From a9c9a9d51e48f50edd5e8e3084a5c485366ba6c4 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 23 Sep 2024 13:14:00 +0100
Subject: [PATCH 1458/1641] Bump github/codeql-action from 3.26.7 to 3.26.8 in
 the all group (#12010)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 4affccb2d..ad0317845 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@8214744c546c1e5c8f03dde8fab3a7353211988d # v3.26.7
+        uses: github/codeql-action/upload-sarif@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index bed49e46f..e35ee0a65 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@8214744c546c1e5c8f03dde8fab3a7353211988d # v3.26.7
+        uses: github/codeql-action/upload-sarif@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 8d6435b8a0a73e01b198c1f7fd0dd10e76e32482 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 26 Sep 2024 11:02:01 +0000
Subject: [PATCH 1459/1641] Docs: Add health check annotations for AWS.
 (#12018)

---
 docs/deploy/index.md | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index ae5458eea..2ce632573 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -68,13 +68,18 @@ helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx
 !!! attention "Helm install on AWS/GCP/Azure/Other providers"
     The *ingress-nginx-controller helm-chart is a generic install out of the box*. The default set of helm values is **not** configured for installation on any infra provider. The annotations that are applicable to the cloud provider must be customized by the users.<br/>
     See [AWS LB Controller](https://kubernetes-sigs.github.io/aws-load-balancer-controller/v2.2/guide/service/annotations/).<br/>
-    Examples of some annotations needed for the service resource of `--type LoadBalancer` on AWS are below:
+    Examples of some annotations recommended (healthecheck ones are required for target-type IP) for the service resource of `--type LoadBalancer` on AWS are below:
     ```yaml
       annotations:
+        service.beta.kubernetes.io/aws-load-balancer-target-group-attributes: deregistration_delay.timeout_seconds=270
+        service.beta.kubernetes.io/aws-load-balancer-nlb-target-type: ip
+        service.beta.kubernetes.io/aws-load-balancer-healthcheck-path: /healthz
+        service.beta.kubernetes.io/aws-load-balancer-healthcheck-port: "10254"
+        service.beta.kubernetes.io/aws-load-balancer-healthcheck-protocol: http
+        service.beta.kubernetes.io/aws-load-balancer-healthcheck-success-codes: 200-299
         service.beta.kubernetes.io/aws-load-balancer-scheme: "internet-facing"
         service.beta.kubernetes.io/aws-load-balancer-backend-protocol: tcp
         service.beta.kubernetes.io/aws-load-balancer-cross-zone-load-balancing-enabled: "true"
-        service.beta.kubernetes.io/aws-load-balancer-nlb-target-type: "ip"
         service.beta.kubernetes.io/aws-load-balancer-type: nlb
         service.beta.kubernetes.io/aws-load-balancer-manage-backend-security-group-rules: "true"
         service.beta.kubernetes.io/aws-load-balancer-access-log-enabled: "true"

From 7b8d293d9bb7d1e78908c9a762460dbf64c01157 Mon Sep 17 00:00:00 2001
From: Trond <42568175+TrondT@users.noreply.github.com>
Date: Fri, 27 Sep 2024 12:14:01 +0200
Subject: [PATCH 1460/1641] Chart: Add `controller.progressDeadlineSeconds`.
 (#12017)

---
 charts/ingress-nginx/README.md                            | 1 +
 charts/ingress-nginx/templates/controller-deployment.yaml | 3 +++
 .../ingress-nginx/tests/controller-deployment_test.yaml   | 8 ++++++++
 charts/ingress-nginx/values.yaml                          | 4 ++++
 4 files changed, 16 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 1cc269afe..5cf5bb179 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -412,6 +412,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.podLabels | object | `{}` | Labels to add to the pod container metadata |
 | controller.podSecurityContext | object | `{}` | Security context for controller pods |
 | controller.priorityClassName | string | `""` |  |
+| controller.progressDeadlineSeconds | int | `0` | Specifies the number of seconds you want to wait for the controller deployment to progress before the system reports back that it has failed. Ref.: https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#progress-deadline-seconds |
 | controller.proxySetHeaders | object | `{}` | Will add custom headers before sending traffic to backends according to https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/custom-headers |
 | controller.publishService | object | `{"enabled":true,"pathOverride":""}` | Allows customization of the source of the IP address or FQDN to report in the ingress status field. By default, it reads the information provided by the service. If disable, the status field reports the IP address of the node or nodes where an ingress controller pod is running. |
 | controller.publishService.enabled | bool | `true` | Enable 'publishService' or not |
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 5211acd0b..c046311b0 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -22,6 +22,9 @@ spec:
   replicas: {{ .Values.controller.replicaCount }}
   {{- end }}
   revisionHistoryLimit: {{ .Values.revisionHistoryLimit }}
+  {{- if .Values.controller.progressDeadlineSeconds }}
+  progressDeadlineSeconds: {{ .Values.controller.progressDeadlineSeconds }}
+  {{- end }}
   {{- if .Values.controller.updateStrategy }}
   strategy: {{ toYaml .Values.controller.updateStrategy | nindent 4 }}
   {{- end }}
diff --git a/charts/ingress-nginx/tests/controller-deployment_test.yaml b/charts/ingress-nginx/tests/controller-deployment_test.yaml
index f481d498a..6e6f8b207 100644
--- a/charts/ingress-nginx/tests/controller-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/controller-deployment_test.yaml
@@ -177,3 +177,11 @@ tests:
       - equal:
           path: spec.template.spec.containers[0].image
           value: registry.k8s.io/ingress-nginx/controller:my-little-custom-tag@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+
+  - it: should create a Deployment with `progressDeadlineSeconds` if `controller.progressDeadlineSeconds` is set
+    set:
+      controller.progressDeadlineSeconds: 111
+    asserts:
+      - equal:
+          path: spec.progressDeadlineSeconds
+          value: 111
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index c7be2bcc2..c2a0a1541 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -236,6 +236,10 @@ controller:
   #    maxUnavailable: 1
   #  type: RollingUpdate
 
+  # -- Specifies the number of seconds you want to wait for the controller deployment to progress before the system reports back that it has failed.
+  # Ref.: https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#progress-deadline-seconds
+  progressDeadlineSeconds: 0
+
   # -- `minReadySeconds` to avoid killing pods before we are ready
   ##
   minReadySeconds: 0

From 24a9f972ff3fe3a9a1c05736a4b97641327302bb Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sat, 28 Sep 2024 13:03:35 +0200
Subject: [PATCH 1461/1641] Chart: Extend image tests. (#12025)

---
 .../tests/controller-daemonset_test.yaml      | 28 ++++++++++++++--
 .../tests/controller-deployment_test.yaml     | 26 +++++++++++++--
 .../default-backend-deployment_test.yaml      | 32 +++++++++++++++++++
 3 files changed, 80 insertions(+), 6 deletions(-)

diff --git a/charts/ingress-nginx/tests/controller-daemonset_test.yaml b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
index 72cba88c4..0e7b79e95 100644
--- a/charts/ingress-nginx/tests/controller-daemonset_test.yaml
+++ b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
@@ -148,12 +148,34 @@ tests:
           path: spec.template.spec.containers[0].securityContext.runAsGroup
           value: 1000
 
-  - it: should create a DaemonSet with a custom tag if `controller.image.tag` is set
+  - it: should create a DaemonSet with a custom registry if `controller.image.registry` is set
     set:
       controller.kind: DaemonSet
-      controller.image.tag: my-little-custom-tag
+      controller.image.registry: custom.registry.io
+      controller.image.tag: v1.0.0-dev
       controller.image.digest: sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
     asserts:
       - equal:
           path: spec.template.spec.containers[0].image
-          value: registry.k8s.io/ingress-nginx/controller:my-little-custom-tag@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+          value: custom.registry.io/ingress-nginx/controller:v1.0.0-dev@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+
+  - it: should create a DaemonSet with a custom image if `controller.image.image` is set
+    set:
+      controller.kind: DaemonSet
+      controller.image.image: custom-repo/custom-image
+      controller.image.tag: v1.0.0-dev
+      controller.image.digest: sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].image
+          value: registry.k8s.io/custom-repo/custom-image:v1.0.0-dev@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+
+  - it: should create a DaemonSet with a custom tag if `controller.image.tag` is set
+    set:
+      controller.kind: DaemonSet
+      controller.image.tag: custom-tag
+      controller.image.digest: sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].image
+          value: registry.k8s.io/ingress-nginx/controller:custom-tag@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
diff --git a/charts/ingress-nginx/tests/controller-deployment_test.yaml b/charts/ingress-nginx/tests/controller-deployment_test.yaml
index 6e6f8b207..1954b7ec9 100644
--- a/charts/ingress-nginx/tests/controller-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/controller-deployment_test.yaml
@@ -169,14 +169,34 @@ tests:
           path: spec.template.spec.containers[0].securityContext.runAsGroup
           value: 1000
 
-  - it: should create a Deployment with a custom tag if `controller.image.tag` is set
+  - it: should create a Deployment with a custom registry if `controller.image.registry` is set
     set:
-      controller.image.tag: my-little-custom-tag
+      controller.image.registry: custom.registry.io
+      controller.image.tag: v1.0.0-dev
       controller.image.digest: sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
     asserts:
       - equal:
           path: spec.template.spec.containers[0].image
-          value: registry.k8s.io/ingress-nginx/controller:my-little-custom-tag@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+          value: custom.registry.io/ingress-nginx/controller:v1.0.0-dev@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+
+  - it: should create a Deployment with a custom image if `controller.image.image` is set
+    set:
+      controller.image.image: custom-repo/custom-image
+      controller.image.tag: v1.0.0-dev
+      controller.image.digest: sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].image
+          value: registry.k8s.io/custom-repo/custom-image:v1.0.0-dev@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+
+  - it: should create a Deployment with a custom tag if `controller.image.tag` is set
+    set:
+      controller.image.tag: custom-tag
+      controller.image.digest: sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].image
+          value: registry.k8s.io/ingress-nginx/controller:custom-tag@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
 
   - it: should create a Deployment with `progressDeadlineSeconds` if `controller.progressDeadlineSeconds` is set
     set:
diff --git a/charts/ingress-nginx/tests/default-backend-deployment_test.yaml b/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
index 4321075e9..e90e6f944 100644
--- a/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
@@ -144,3 +144,35 @@ tests:
       - equal:
           path: spec.template.spec.containers[0].securityContext.runAsGroup
           value: 1000
+
+  - it: should create a Deployment with a custom registry if `defaultBackend.image.registry` is set
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.image.registry: custom.registry.io
+      defaultBackend.image.tag: v1.0.0-dev
+      defaultBackend.image.digest: sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].image
+          value: custom.registry.io/defaultbackend-amd64:v1.0.0-dev@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+
+  - it: should create a Deployment with a custom image if `defaultBackend.image.image` is set
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.image.image: custom-repo/custom-image
+      defaultBackend.image.tag: v1.0.0-dev
+      defaultBackend.image.digest: sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].image
+          value: registry.k8s.io/custom-repo/custom-image:v1.0.0-dev@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+
+  - it: should create a Deployment with a custom tag if `defaultBackend.image.tag` is set
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.image.tag: custom-tag
+      defaultBackend.image.digest: sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].image
+          value: registry.k8s.io/defaultbackend-amd64:custom-tag@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd

From f369ffb0734cc63fdf85959c4e41be0606ca8f1e Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sat, 28 Sep 2024 15:40:02 +0200
Subject: [PATCH 1462/1641] Chart: Improve CI. (#12003)

---
 .github/workflows/chart.yaml                  |  64 ++++++++++
 .github/workflows/ci.yaml                     | 110 +++++++-----------
 .github/workflows/helm.yaml                   |  88 --------------
 .gitignore                                    |   1 -
 MANUAL_RELEASE.md                             |  11 +-
 ...mission-webhooks-cert-manager-values.yaml} |   8 +-
 ...ler-admission-tls-cert-manager-values.yaml |   6 -
 ...ontroller-configmap-addheaders-values.yaml |  11 ++
 ...troller-configmap-proxyheaders-values.yaml |  11 ++
 ....yaml => controller-configmap-values.yaml} |   9 +-
 .../controller-custom-ingressclass-flags.yaml |   7 --
 ...roller-daemonset-extra-modules-values.yaml |  30 +++++
 ... controller-daemonset-metrics-values.yaml} |   9 +-
 ...oller-daemonset-opentelemetry-values.yaml} |   4 +
 ...ller-daemonset-podannotations-values.yaml} |  13 +--
 ....yaml => controller-daemonset-values.yaml} |   4 +-
 ...oller-deployment-extra-modules-values.yaml |  30 +++++
 ...controller-deployment-metrics-values.yaml} |   8 +-
 ...ller-deployment-opentelemetry-values.yaml} |  10 +-
 ...ler-deployment-podannotations-values.yaml} |  12 +-
 .../ci/controller-deployment-values.yaml      |  10 ++
 ...values.yaml => controller-hpa-values.yaml} |  12 +-
 .../ci/controller-ingressclass-values.yaml    |  15 +++
 ...> controller-service-internal-values.yaml} |   5 +-
 ...es.yaml => controller-service-values.yaml} |  10 +-
 .../ci/daemonset-customconfig-values.yaml     |  14 ---
 .../ci/daemonset-customnodeport-values.yaml   |  22 ----
 .../ci/daemonset-extra-modules.yaml           |  13 ---
 .../ci/daemonset-headers-values.yaml          |  14 ---
 .../ci/daemonset-nodeport-values.yaml         |  10 --
 ...set-tcp-udp-configMapNamespace-values.yaml |  20 ----
 ...emonset-tcp-udp-portNamePrefix-values.yaml |  18 ---
 .../ci/daemonset-tcp-udp-values.yaml          |  16 ---
 .../ci/daemonset-tcp-values.yaml              |  14 ---
 .../ci/deamonset-metrics-values.yaml          |  12 --
 .../ci/deployment-autoscaling-values.yaml     |  11 --
 ...modules-default-container-sec-context.yaml |  15 ---
 ...odules-specific-container-sec-context.yaml |  15 ---
 .../ci/deployment-extra-modules.yaml          |  13 ---
 .../ci/deployment-headers-values.yaml         |  13 ---
 .../ci/deployment-internal-lb-values.yaml     |  19 ---
 .../ci/deployment-nodeport-values.yaml        |   9 --
 ...ent-tcp-udp-configMapNamespace-values.yaml |  19 ---
 ...loyment-tcp-udp-portNamePrefix-values.yaml |  17 ---
 .../ci/deployment-tcp-udp-values.yaml         |  15 ---
 .../ci/deployment-tcp-values.yaml             |  11 --
 .../deployment-webhook-extraEnvs-values.yaml  |  12 --
 .../deployment-webhook-resources-values.yaml  |  23 ----
 .../third-party-addons/opentelemetry.md       |   2 +-
 magefiles/steps/helm.go                       |   4 +-
 test/e2e/run-chart-test.sh                    |  41 ++++---
 51 files changed, 306 insertions(+), 584 deletions(-)
 create mode 100644 .github/workflows/chart.yaml
 delete mode 100644 .github/workflows/helm.yaml
 rename charts/ingress-nginx/ci/{deamonset-default-values.yaml => admission-webhooks-cert-manager-values.yaml} (79%)
 delete mode 100644 charts/ingress-nginx/ci/controller-admission-tls-cert-manager-values.yaml
 create mode 100644 charts/ingress-nginx/ci/controller-configmap-addheaders-values.yaml
 create mode 100644 charts/ingress-nginx/ci/controller-configmap-proxyheaders-values.yaml
 rename charts/ingress-nginx/ci/{deployment-customconfig-values.yaml => controller-configmap-values.yaml} (70%)
 delete mode 100644 charts/ingress-nginx/ci/controller-custom-ingressclass-flags.yaml
 create mode 100644 charts/ingress-nginx/ci/controller-daemonset-extra-modules-values.yaml
 rename charts/ingress-nginx/ci/{deamonset-webhook-values.yaml => controller-daemonset-metrics-values.yaml} (89%)
 rename charts/ingress-nginx/ci/{deployment-opentelemetry-customregistry-values.yaml => controller-daemonset-opentelemetry-values.yaml} (88%)
 rename charts/ingress-nginx/ci/{daemonset-podannotations-values.yaml => controller-daemonset-podannotations-values.yaml} (81%)
 rename charts/ingress-nginx/ci/{deployment-default-values.yaml => controller-daemonset-values.yaml} (78%)
 create mode 100644 charts/ingress-nginx/ci/controller-deployment-extra-modules-values.yaml
 rename charts/ingress-nginx/ci/{deployment-webhook-values.yaml => controller-deployment-metrics-values.yaml} (82%)
 rename charts/ingress-nginx/ci/{deployment-metrics-values.yaml => controller-deployment-opentelemetry-values.yaml} (74%)
 rename charts/ingress-nginx/ci/{deployment-podannotations-values.yaml => controller-deployment-podannotations-values.yaml} (80%)
 create mode 100644 charts/ingress-nginx/ci/controller-deployment-values.yaml
 rename charts/ingress-nginx/ci/{deployment-autoscaling-behavior-values.yaml => controller-hpa-values.yaml} (71%)
 create mode 100644 charts/ingress-nginx/ci/controller-ingressclass-values.yaml
 rename charts/ingress-nginx/ci/{daemonset-internal-lb-values.yaml => controller-service-internal-values.yaml} (81%)
 rename charts/ingress-nginx/ci/{deployment-customnodeport-values.yaml => controller-service-values.yaml} (69%)
 delete mode 100644 charts/ingress-nginx/ci/daemonset-customconfig-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/daemonset-customnodeport-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/daemonset-extra-modules.yaml
 delete mode 100644 charts/ingress-nginx/ci/daemonset-headers-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/daemonset-nodeport-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/daemonset-tcp-udp-configMapNamespace-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/daemonset-tcp-udp-portNamePrefix-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/daemonset-tcp-udp-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/daemonset-tcp-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/deamonset-metrics-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-autoscaling-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-extra-modules-default-container-sec-context.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-extra-modules-specific-container-sec-context.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-extra-modules.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-headers-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-internal-lb-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-nodeport-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-tcp-udp-configMapNamespace-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-tcp-udp-portNamePrefix-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-tcp-udp-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-tcp-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-webhook-extraEnvs-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/deployment-webhook-resources-values.yaml

diff --git a/.github/workflows/chart.yaml b/.github/workflows/chart.yaml
new file mode 100644
index 000000000..b99374a90
--- /dev/null
+++ b/.github/workflows/chart.yaml
@@ -0,0 +1,64 @@
+name: Chart
+
+on:
+  push:
+    branches:
+      - main
+      - release-*
+    paths:
+      - charts/ingress-nginx/Chart.yaml
+  
+  workflow_dispatch:
+
+permissions:
+  contents: read
+
+jobs:
+  release:
+    name: Release
+    runs-on: ubuntu-latest
+
+    permissions:
+      contents: write
+
+    steps:
+      - name: Set up Python
+        uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 # v5.2.0
+        with:
+          python-version: 3.x
+
+      - name: Set up Helm
+        uses: azure/setup-helm@fe7b79cd5ee1e45176fcad797de68ecaf3ca4814 # v4.2.0
+
+      - name: Set up Helm Chart Testing
+        uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
+
+      - name: Set up Artifact Hub
+        run: |
+          curl --fail --location https://github.com/artifacthub/hub/releases/download/v1.19.0/ah_1.19.0_linux_amd64.tar.gz --output /tmp/ah.tar.gz
+          echo "0e430493521ce387ca04d79b26646a86f92886dbcceb44985bb71082a9530ca5  /tmp/ah.tar.gz" | shasum --check
+          sudo tar --extract --file /tmp/ah.tar.gz --directory /usr/local/bin ah
+
+      - name: Set up Git
+        run: |
+          git config --global user.name "${GITHUB_ACTOR}"
+          git config --global user.email "${GITHUB_ACTOR}@users.noreply.github.com"
+
+      - name: Checkout code
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        with:
+          fetch-depth: 0
+
+      - name: Lint chart
+        run: |
+          ct lint --config .ct.yaml
+          ah lint --path charts/ingress-nginx
+
+      - name: Release chart
+        uses: helm/chart-releaser-action@a917fd15b20e8b64b94d9158ad54cd6345335584 # v1.6.0
+        env:
+          CR_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          CR_RELEASE_NAME_TEMPLATE: helm-chart-{{ .Version }}
+          CR_SKIP_EXISTING: true
+        with:
+          charts_dir: charts
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 77a03fe7b..3b937594a 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -208,112 +208,88 @@ jobs:
           path: docker.tar.gz
           retention-days: 5
 
-  helm-lint:
-    name: Helm chart lint
+  chart-lint:
+    name: Chart / Lint
     runs-on: ubuntu-latest
     needs:
       - changes
-    if: |
-      (needs.changes.outputs.charts == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
+
+    if: fromJSON(needs.changes.outputs.charts) || fromJSON(needs.changes.outputs.baseimage) || fromJSON(github.event.workflow_dispatch.run_e2e)
 
     steps:
-      - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+      - name: Set up Python
+        uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 # v5.2.0
         with:
-          fetch-depth: 0
+          python-version: 3.x
 
       - name: Set up Helm
         uses: azure/setup-helm@fe7b79cd5ee1e45176fcad797de68ecaf3ca4814 # v4.2.0
 
-      - uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 # v5.2.0
-        with:
-          python-version: '3.x'
-
-      - name: Set up chart-testing
+      - name: Set up Helm Chart Testing
         uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
 
-      - name: Install Helm Unit Test Plugin
+      - name: Set up Artifact Hub
         run: |
-          helm plugin install https://github.com/helm-unittest/helm-unittest
+          curl --fail --location https://github.com/artifacthub/hub/releases/download/v1.19.0/ah_1.19.0_linux_amd64.tar.gz --output /tmp/ah.tar.gz
+          echo "0e430493521ce387ca04d79b26646a86f92886dbcceb44985bb71082a9530ca5  /tmp/ah.tar.gz" | shasum --check
+          sudo tar --extract --file /tmp/ah.tar.gz --directory /usr/local/bin ah
 
-      - name: Run Helm Unit Tests
+      - name: Set up Helm Docs
+        uses: gabe565/setup-helm-docs-action@d5c35bdc9133cfbea3b671acadf50a29029e87c2 # v1.0.4
+
+      - name: Set up Helm Unit Test
+        run: helm plugin install https://github.com/helm-unittest/helm-unittest
+
+      - name: Checkout code
+        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        with:
+          fetch-depth: 0
+
+      - name: Lint chart
         run: |
-          helm unittest charts/ingress-nginx -d
+          ct lint --config .ct.yaml
+          ah lint --path charts/ingress-nginx
 
-      - name: Run chart-testing (lint)
-        run: ct lint --config ./.ct.yaml
-
-      - name: Run helm-docs
+      - name: Check docs
         run: |
-          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.11.0
-          ./helm-docs --chart-search-root=${GITHUB_WORKSPACE}/charts
-          DIFF=$(git diff ${GITHUB_WORKSPACE}/charts/ingress-nginx/README.md)
-          if [ ! -z "$DIFF" ]; then
-            echo "Please use helm-docs in your clone, of your fork, of the project, and commit a updated README.md for the chart. https://github.com/kubernetes/ingress-nginx/blob/main/RELEASE.md#d-edit-the-valuesyaml-and-run-helm-docs"
-          fi
-          git diff --exit-code
-          rm -f ./helm-docs
+          helm-docs --chart-search-root charts
+          git diff --exit-code charts/ingress-nginx/README.md
 
-      - name: Run Artifact Hub lint
-        run: |
-          wget https://github.com/artifacthub/hub/releases/download/v1.5.0/ah_1.5.0_linux_amd64.tar.gz
-          echo 'ad0e44c6ea058ab6b85dbf582e88bad9fdbc64ded0d1dd4edbac65133e5c87da *ah_1.5.0_linux_amd64.tar.gz' | shasum -c
-          tar -xzvf ah_1.5.0_linux_amd64.tar.gz ah
-          ./ah lint -p charts/ingress-nginx || exit 1
-          rm -f ./ah ./ah_1.5.0_linux_amd64.tar.gz
+      - name: Run tests
+        run: helm unittest charts/ingress-nginx
 
-  helm-test:
-    name: Helm chart testing
+  chart-test:
+    name: Chart / Test
     runs-on: ubuntu-latest
     needs:
       - changes
       - build
-      - helm-lint
-    if: |
-      (needs.changes.outputs.charts == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
+      - chart-lint
+
+    if: fromJSON(needs.changes.outputs.charts) || fromJSON(needs.changes.outputs.baseimage) || fromJSON(github.event.workflow_dispatch.run_e2e)
 
     strategy:
       matrix:
         k8s: [v1.28.13, v1.29.8, v1.30.4, v1.31.0]
 
     steps:
-      - name: Checkout
+      - name: Checkout code
         uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
 
-      - name: Setup Go
-        uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
-        with:
-          go-version: ${{ needs.build.outputs.golangversion }}
-          check-latest: true
-
-      - name: cache
+      - name: Download cache
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
         with:
           name: docker.tar.gz
 
-      - name: fix permissions
-        run: |
-          sudo mkdir -p $HOME/.kube
-          sudo chmod -R 777 $HOME/.kube
+      - name: Load cache
+        run: gzip --decompress --stdout docker.tar.gz | docker load
 
-      - name: Create Kubernetes ${{ matrix.k8s }} cluster
-        id: kind
-        run: |
-          kind create cluster --image=kindest/node:${{ matrix.k8s }}
-
-      - name: Load images from cache
-        run: |
-          echo "loading docker images..."
-          gzip -dc docker.tar.gz | docker load
-
-      - name: Test
+      - name: Run tests
         env:
-          KIND_CLUSTER_NAME: kind
-          SKIP_CLUSTER_CREATION: true
+          K8S_VERSION: ${{ matrix.k8s }}
           SKIP_IMAGE_CREATION: true
-          SKIP_INGRESS_IMAGE_CREATION: true
         run: |
-          kind get kubeconfig > $HOME/.kube/kind-config-kind
+          sudo mkdir -pm 777 "${HOME}/.kube"
           make kind-e2e-chart-tests
 
   kubernetes:
diff --git a/.github/workflows/helm.yaml b/.github/workflows/helm.yaml
deleted file mode 100644
index f7a68af1a..000000000
--- a/.github/workflows/helm.yaml
+++ /dev/null
@@ -1,88 +0,0 @@
-name: Helm
-
-on:
-  push:
-    branches:
-      - main
-      - release-*
-  
-  workflow_dispatch:
-
-permissions:
-  contents: read
-
-jobs:
-
-  changes:
-    runs-on: ubuntu-latest
-
-    permissions:
-      contents: read  # for dorny/paths-filter to fetch a list of changed files
-
-    if: github.repository == 'kubernetes/ingress-nginx'
-
-    outputs:
-      docs: ${{ steps.filter.outputs.docs }}
-      charts: ${{ steps.filter.outputs.charts }}
-
-    steps:
-      - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-
-      - name: Run Artifact Hub lint
-        run: |
-          wget https://github.com/artifacthub/hub/releases/download/v1.5.0/ah_1.5.0_linux_amd64.tar.gz
-          echo 'ad0e44c6ea058ab6b85dbf582e88bad9fdbc64ded0d1dd4edbac65133e5c87da *ah_1.5.0_linux_amd64.tar.gz' | shasum -c
-          tar -xzvf ah_1.5.0_linux_amd64.tar.gz ah
-          ./ah lint -p charts/ingress-nginx || exit 1
-          rm -f ./ah ./ah_1.5.0_linux_amd64.tar.gz
-
-      - name: Set up chart-testing
-        uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
-
-      - name: Run chart-testing (lint)
-        run: ct lint --target-branch ${{ github.ref_name }} --config ./.ct.yaml
-
-      - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
-        id: filter
-        with:
-          token: ${{ secrets.GITHUB_TOKEN }}
-          filters: |
-            charts:
-              - 'charts/ingress-nginx/Chart.yaml'
-              - 'charts/ingress-nginx/values.yaml'
-
-  chart:
-    name: Release Chart
-    runs-on: ubuntu-latest
-
-    permissions:
-      contents: write # needed to write releases
-
-    needs:
-      - changes
-
-    if: ${{ needs.changes.outputs.charts == 'true' }}
-
-    steps:
-      - name: Checkout master
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-        with:
-          # Fetch entire history. Required for chart-releaser; see https://github.com/helm/chart-releaser-action/issues/13#issuecomment-602063896
-          fetch-depth: 0
-          ref: ${{ github.ref_name }} 
-
-      - name: Setup
-        shell: bash
-        run: |
-          git config --global user.name "$GITHUB_ACTOR"
-          git config --global user.email "$GITHUB_ACTOR@users.noreply.github.com"
-
-      - name: Helm Chart Releaser
-        uses: helm/chart-releaser-action@a917fd15b20e8b64b94d9158ad54cd6345335584 # v1.6.0
-        env:
-          CR_SKIP_EXISTING: true
-          CR_TOKEN: "${{ secrets.GITHUB_TOKEN }}"
-          CR_RELEASE_NAME_TEMPLATE: "helm-chart-{{ .Version }}"
-        with:
-          charts_dir: charts
diff --git a/.gitignore b/.gitignore
index 73108f627..5eac1a800 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,4 +1,3 @@
-helm-docs
 # OSX
 ._*
 .DS_Store
diff --git a/MANUAL_RELEASE.md b/MANUAL_RELEASE.md
index b1c1fd068..8a6b10bc1 100644
--- a/MANUAL_RELEASE.md
+++ b/MANUAL_RELEASE.md
@@ -226,19 +226,18 @@ Promoting the images basically means that images, that were pushed to staging co
           ```
 
 ### d. Edit the values.yaml and run helm-docs
+
   - [Fields to edit in values.yaml](https://github.com/kubernetes/ingress-nginx/blob/main/charts/ingress-nginx/values.yaml)
 
     - tag
     - digest
 
-  - [helm-docs](https://github.com/norwoodj/helm-docs) is a tool that generates the README.md for a helm-chart automatically. In the CI pipeline workflow of github actions (/.github/workflows/ci.yaml), you can see how helm-docs is used. But the CI pipeline is not designed to make commits back into the project. So we need to run helm-docs manually, and check in the resulting autogenerated README.md at the path /charts/ingress-nginx/README.md
+  - [helm-docs](https://github.com/norwoodj/helm-docs) is a tool that generates the README.md for a Helm chart automatically. In the CI pipeline workflow of GitHub actions (.github/workflows/ci.yaml), you can see how helm-docs is used. The CI pipeline is not designed to make commits back into the project, so we need to run helm-docs manually and commit the resulting generated README.md. You can obtain a recent version of the helm-docs binary here: https://github.com/norwoodj/helm-docs/releases.
     ```
-          GOBIN=$PWD GO111MODULE=on go install github.com/norwoodj/helm-docs/cmd/helm-docs@v1.11.0
-          ./helm-docs --chart-search-root=${GITHUB_WORKSPACE}/charts
-          git diff --exit-code
-          rm -f ./helm-docs
+    helm-docs --chart-search-root charts
+    git diff charts/ingress-nginx/README.md
     ```
-    Watchout for mistakes like leaving the helm-docs executable in your clone workspace or not checking the new README.md manually etc.
+    Take care of not leaving the helm-docs executable in your clone workspace or not committing the new README.md.
 
 ### e. Edit the static manifests
 
diff --git a/charts/ingress-nginx/ci/deamonset-default-values.yaml b/charts/ingress-nginx/ci/admission-webhooks-cert-manager-values.yaml
similarity index 79%
rename from charts/ingress-nginx/ci/deamonset-default-values.yaml
rename to charts/ingress-nginx/ci/admission-webhooks-cert-manager-values.yaml
index 82fa23e85..7eafd0c5b 100644
--- a/charts/ingress-nginx/ci/deamonset-default-values.yaml
+++ b/charts/ingress-nginx/ci/admission-webhooks-cert-manager-values.yaml
@@ -1,10 +1,12 @@
 controller:
-  kind: DaemonSet
   image:
     repository: ingress-controller/controller
     tag: 1.0.0-dev
     digest: null
-  admissionWebhooks:
-    enabled: false
+
   service:
     type: ClusterIP
+
+  admissionWebhooks:
+    certManager:
+      enabled: true
diff --git a/charts/ingress-nginx/ci/controller-admission-tls-cert-manager-values.yaml b/charts/ingress-nginx/ci/controller-admission-tls-cert-manager-values.yaml
deleted file mode 100644
index a13241cd4..000000000
--- a/charts/ingress-nginx/ci/controller-admission-tls-cert-manager-values.yaml
+++ /dev/null
@@ -1,6 +0,0 @@
-controller:
-  admissionWebhooks:
-    certManager:
-      enabled: true
-  service:
-    type: ClusterIP
diff --git a/charts/ingress-nginx/ci/controller-configmap-addheaders-values.yaml b/charts/ingress-nginx/ci/controller-configmap-addheaders-values.yaml
new file mode 100644
index 000000000..460a610ba
--- /dev/null
+++ b/charts/ingress-nginx/ci/controller-configmap-addheaders-values.yaml
@@ -0,0 +1,11 @@
+controller:
+  image:
+    repository: ingress-controller/controller
+    tag: 1.0.0-dev
+    digest: null
+
+  service:
+    type: ClusterIP
+
+  addHeaders:
+    X-Frame-Options: deny
diff --git a/charts/ingress-nginx/ci/controller-configmap-proxyheaders-values.yaml b/charts/ingress-nginx/ci/controller-configmap-proxyheaders-values.yaml
new file mode 100644
index 000000000..e23a13c0c
--- /dev/null
+++ b/charts/ingress-nginx/ci/controller-configmap-proxyheaders-values.yaml
@@ -0,0 +1,11 @@
+controller:
+  image:
+    repository: ingress-controller/controller
+    tag: 1.0.0-dev
+    digest: null
+
+  service:
+    type: ClusterIP
+
+  proxySetHeaders:
+    X-Forwarded-Proto: https
diff --git a/charts/ingress-nginx/ci/deployment-customconfig-values.yaml b/charts/ingress-nginx/ci/controller-configmap-values.yaml
similarity index 70%
rename from charts/ingress-nginx/ci/deployment-customconfig-values.yaml
rename to charts/ingress-nginx/ci/controller-configmap-values.yaml
index 174941848..a7029895c 100644
--- a/charts/ingress-nginx/ci/deployment-customconfig-values.yaml
+++ b/charts/ingress-nginx/ci/controller-configmap-values.yaml
@@ -3,10 +3,9 @@ controller:
     repository: ingress-controller/controller
     tag: 1.0.0-dev
     digest: null
-  config:
-    use-proxy-protocol: "true"
-  allowSnippetAnnotations: false
-  admissionWebhooks:
-    enabled: false
+
   service:
     type: ClusterIP
+
+  config:
+    use-proxy-protocol: "true"
diff --git a/charts/ingress-nginx/ci/controller-custom-ingressclass-flags.yaml b/charts/ingress-nginx/ci/controller-custom-ingressclass-flags.yaml
deleted file mode 100644
index b28a2326e..000000000
--- a/charts/ingress-nginx/ci/controller-custom-ingressclass-flags.yaml
+++ /dev/null
@@ -1,7 +0,0 @@
-controller:
-  watchIngressWithoutClass: true
-  ingressClassResource:
-    name: custom-nginx
-    enabled: true
-    default: true
-    controllerValue: "k8s.io/custom-nginx"
diff --git a/charts/ingress-nginx/ci/controller-daemonset-extra-modules-values.yaml b/charts/ingress-nginx/ci/controller-daemonset-extra-modules-values.yaml
new file mode 100644
index 000000000..edf12e77e
--- /dev/null
+++ b/charts/ingress-nginx/ci/controller-daemonset-extra-modules-values.yaml
@@ -0,0 +1,30 @@
+controller:
+  image:
+    repository: ingress-controller/controller
+    tag: 1.0.0-dev
+    digest: null
+
+  service:
+    type: ClusterIP
+
+  kind: DaemonSet
+
+  extraModules:
+  - name: opentelemetry
+    image:
+      registry: registry.k8s.io
+      image: ingress-nginx/opentelemetry-1.25.3
+      tag: v20240813-b933310d
+      digest: sha256:f7604ac0547ed64d79b98d92133234e66c2c8aade3c1f4809fed5eec1fb7f922
+      distroless: true
+    containerSecurityContext:
+      runAsNonRoot: true
+      runAsUser: 65532
+      runAsGroup: 65532
+      allowPrivilegeEscalation: false
+      seccompProfile:
+        type: RuntimeDefault
+      capabilities:
+        drop:
+        - ALL
+      readOnlyRootFilesystem: true
diff --git a/charts/ingress-nginx/ci/deamonset-webhook-values.yaml b/charts/ingress-nginx/ci/controller-daemonset-metrics-values.yaml
similarity index 89%
rename from charts/ingress-nginx/ci/deamonset-webhook-values.yaml
rename to charts/ingress-nginx/ci/controller-daemonset-metrics-values.yaml
index 54d364df1..7a98580cd 100644
--- a/charts/ingress-nginx/ci/deamonset-webhook-values.yaml
+++ b/charts/ingress-nginx/ci/controller-daemonset-metrics-values.yaml
@@ -1,10 +1,13 @@
 controller:
-  kind: DaemonSet
   image:
     repository: ingress-controller/controller
     tag: 1.0.0-dev
     digest: null
-  admissionWebhooks:
-    enabled: true
+
   service:
     type: ClusterIP
+
+  kind: DaemonSet
+
+  metrics:
+    enabled: true
diff --git a/charts/ingress-nginx/ci/deployment-opentelemetry-customregistry-values.yaml b/charts/ingress-nginx/ci/controller-daemonset-opentelemetry-values.yaml
similarity index 88%
rename from charts/ingress-nginx/ci/deployment-opentelemetry-customregistry-values.yaml
rename to charts/ingress-nginx/ci/controller-daemonset-opentelemetry-values.yaml
index fb3ef4446..179ab2a85 100644
--- a/charts/ingress-nginx/ci/deployment-opentelemetry-customregistry-values.yaml
+++ b/charts/ingress-nginx/ci/controller-daemonset-opentelemetry-values.yaml
@@ -3,7 +3,11 @@ controller:
     repository: ingress-controller/controller
     tag: 1.0.0-dev
     digest: null
+
   service:
     type: ClusterIP
+
+  kind: DaemonSet
+
   opentelemetry:
     enabled: true
diff --git a/charts/ingress-nginx/ci/daemonset-podannotations-values.yaml b/charts/ingress-nginx/ci/controller-daemonset-podannotations-values.yaml
similarity index 81%
rename from charts/ingress-nginx/ci/daemonset-podannotations-values.yaml
rename to charts/ingress-nginx/ci/controller-daemonset-podannotations-values.yaml
index 0b55306a1..405992ef3 100644
--- a/charts/ingress-nginx/ci/daemonset-podannotations-values.yaml
+++ b/charts/ingress-nginx/ci/controller-daemonset-podannotations-values.yaml
@@ -1,17 +1,16 @@
 controller:
-  kind: DaemonSet
   image:
     repository: ingress-controller/controller
     tag: 1.0.0-dev
     digest: null
-  admissionWebhooks:
-    enabled: false
-  metrics:
-    enabled: true
+
   service:
     type: ClusterIP
+
+  kind: DaemonSet
+
   podAnnotations:
-    prometheus.io/path: /metrics
+    prometheus.io/scrape: "true"
     prometheus.io/port: "10254"
     prometheus.io/scheme: http
-    prometheus.io/scrape: "true"
+    prometheus.io/path: /metrics
diff --git a/charts/ingress-nginx/ci/deployment-default-values.yaml b/charts/ingress-nginx/ci/controller-daemonset-values.yaml
similarity index 78%
rename from charts/ingress-nginx/ci/deployment-default-values.yaml
rename to charts/ingress-nginx/ci/controller-daemonset-values.yaml
index 9f46b4e7e..d34025c80 100644
--- a/charts/ingress-nginx/ci/deployment-default-values.yaml
+++ b/charts/ingress-nginx/ci/controller-daemonset-values.yaml
@@ -1,8 +1,10 @@
-# Left blank to test default values
 controller:
   image:
     repository: ingress-controller/controller
     tag: 1.0.0-dev
     digest: null
+
   service:
     type: ClusterIP
+
+  kind: DaemonSet
diff --git a/charts/ingress-nginx/ci/controller-deployment-extra-modules-values.yaml b/charts/ingress-nginx/ci/controller-deployment-extra-modules-values.yaml
new file mode 100644
index 000000000..d4083cc37
--- /dev/null
+++ b/charts/ingress-nginx/ci/controller-deployment-extra-modules-values.yaml
@@ -0,0 +1,30 @@
+controller:
+  image:
+    repository: ingress-controller/controller
+    tag: 1.0.0-dev
+    digest: null
+
+  service:
+    type: ClusterIP
+
+  kind: Deployment
+
+  extraModules:
+  - name: opentelemetry
+    image:
+      registry: registry.k8s.io
+      image: ingress-nginx/opentelemetry-1.25.3
+      tag: v20240813-b933310d
+      digest: sha256:f7604ac0547ed64d79b98d92133234e66c2c8aade3c1f4809fed5eec1fb7f922
+      distroless: true
+    containerSecurityContext:
+      runAsNonRoot: true
+      runAsUser: 65532
+      runAsGroup: 65532
+      allowPrivilegeEscalation: false
+      seccompProfile:
+        type: RuntimeDefault
+      capabilities:
+        drop:
+        - ALL
+      readOnlyRootFilesystem: true
diff --git a/charts/ingress-nginx/ci/deployment-webhook-values.yaml b/charts/ingress-nginx/ci/controller-deployment-metrics-values.yaml
similarity index 82%
rename from charts/ingress-nginx/ci/deployment-webhook-values.yaml
rename to charts/ingress-nginx/ci/controller-deployment-metrics-values.yaml
index 76669a530..9c95d347c 100644
--- a/charts/ingress-nginx/ci/deployment-webhook-values.yaml
+++ b/charts/ingress-nginx/ci/controller-deployment-metrics-values.yaml
@@ -3,7 +3,11 @@ controller:
     repository: ingress-controller/controller
     tag: 1.0.0-dev
     digest: null
-  admissionWebhooks:
-    enabled: true
+
   service:
     type: ClusterIP
+
+  kind: Deployment
+
+  metrics:
+    enabled: true
diff --git a/charts/ingress-nginx/ci/deployment-metrics-values.yaml b/charts/ingress-nginx/ci/controller-deployment-opentelemetry-values.yaml
similarity index 74%
rename from charts/ingress-nginx/ci/deployment-metrics-values.yaml
rename to charts/ingress-nginx/ci/controller-deployment-opentelemetry-values.yaml
index 9209ad5a6..9443ddefc 100644
--- a/charts/ingress-nginx/ci/deployment-metrics-values.yaml
+++ b/charts/ingress-nginx/ci/controller-deployment-opentelemetry-values.yaml
@@ -3,9 +3,11 @@ controller:
     repository: ingress-controller/controller
     tag: 1.0.0-dev
     digest: null
-  admissionWebhooks:
-    enabled: false
-  metrics:
-    enabled: true
+
   service:
     type: ClusterIP
+
+  kind: Deployment
+
+  opentelemetry:
+    enabled: true
diff --git a/charts/ingress-nginx/ci/deployment-podannotations-values.yaml b/charts/ingress-nginx/ci/controller-deployment-podannotations-values.yaml
similarity index 80%
rename from charts/ingress-nginx/ci/deployment-podannotations-values.yaml
rename to charts/ingress-nginx/ci/controller-deployment-podannotations-values.yaml
index b48d93c46..cf1f2611e 100644
--- a/charts/ingress-nginx/ci/deployment-podannotations-values.yaml
+++ b/charts/ingress-nginx/ci/controller-deployment-podannotations-values.yaml
@@ -3,14 +3,14 @@ controller:
     repository: ingress-controller/controller
     tag: 1.0.0-dev
     digest: null
-  admissionWebhooks:
-    enabled: false
-  metrics:
-    enabled: true
+
   service:
     type: ClusterIP
+
+  kind: Deployment
+
   podAnnotations:
-    prometheus.io/path: /metrics
+    prometheus.io/scrape: "true"
     prometheus.io/port: "10254"
     prometheus.io/scheme: http
-    prometheus.io/scrape: "true"
+    prometheus.io/path: /metrics
diff --git a/charts/ingress-nginx/ci/controller-deployment-values.yaml b/charts/ingress-nginx/ci/controller-deployment-values.yaml
new file mode 100644
index 000000000..1b092dc0c
--- /dev/null
+++ b/charts/ingress-nginx/ci/controller-deployment-values.yaml
@@ -0,0 +1,10 @@
+controller:
+  image:
+    repository: ingress-controller/controller
+    tag: 1.0.0-dev
+    digest: null
+
+  service:
+    type: ClusterIP
+
+  kind: Deployment
diff --git a/charts/ingress-nginx/ci/deployment-autoscaling-behavior-values.yaml b/charts/ingress-nginx/ci/controller-hpa-values.yaml
similarity index 71%
rename from charts/ingress-nginx/ci/deployment-autoscaling-behavior-values.yaml
rename to charts/ingress-nginx/ci/controller-hpa-values.yaml
index dca3f35f8..54a0d2f75 100644
--- a/charts/ingress-nginx/ci/deployment-autoscaling-behavior-values.yaml
+++ b/charts/ingress-nginx/ci/controller-hpa-values.yaml
@@ -1,4 +1,12 @@
 controller:
+  image:
+    repository: ingress-controller/controller
+    tag: 1.0.0-dev
+    digest: null
+
+  service:
+    type: ClusterIP
+
   autoscaling:
     enabled: true
     behavior:
@@ -8,7 +16,3 @@ controller:
         - type: Pods
           value: 1
           periodSeconds: 180
-  admissionWebhooks:
-    enabled: false
-  service:
-    type: ClusterIP
diff --git a/charts/ingress-nginx/ci/controller-ingressclass-values.yaml b/charts/ingress-nginx/ci/controller-ingressclass-values.yaml
new file mode 100644
index 000000000..c06429f97
--- /dev/null
+++ b/charts/ingress-nginx/ci/controller-ingressclass-values.yaml
@@ -0,0 +1,15 @@
+controller:
+  image:
+    repository: ingress-controller/controller
+    tag: 1.0.0-dev
+    digest: null
+
+  service:
+    type: ClusterIP
+
+  ingressClassResource:
+    name: custom-nginx
+    default: true
+    controllerValue: k8s.io/custom-nginx
+
+  watchIngressWithoutClass: true
diff --git a/charts/ingress-nginx/ci/daemonset-internal-lb-values.yaml b/charts/ingress-nginx/ci/controller-service-internal-values.yaml
similarity index 81%
rename from charts/ingress-nginx/ci/daemonset-internal-lb-values.yaml
rename to charts/ingress-nginx/ci/controller-service-internal-values.yaml
index 0a200a746..11108fbce 100644
--- a/charts/ingress-nginx/ci/daemonset-internal-lb-values.yaml
+++ b/charts/ingress-nginx/ci/controller-service-internal-values.yaml
@@ -1,13 +1,12 @@
 controller:
-  kind: DaemonSet
   image:
     repository: ingress-controller/controller
     tag: 1.0.0-dev
     digest: null
-  admissionWebhooks:
-    enabled: false
+
   service:
     type: ClusterIP
+
     internal:
       enabled: true
       annotations:
diff --git a/charts/ingress-nginx/ci/deployment-customnodeport-values.yaml b/charts/ingress-nginx/ci/controller-service-values.yaml
similarity index 69%
rename from charts/ingress-nginx/ci/deployment-customnodeport-values.yaml
rename to charts/ingress-nginx/ci/controller-service-values.yaml
index a564eaf93..9039368c2 100644
--- a/charts/ingress-nginx/ci/deployment-customnodeport-values.yaml
+++ b/charts/ingress-nginx/ci/controller-service-values.yaml
@@ -3,18 +3,20 @@ controller:
     repository: ingress-controller/controller
     tag: 1.0.0-dev
     digest: null
-  admissionWebhooks:
-    enabled: false
+
   service:
     type: NodePort
+
     nodePorts:
       tcp:
         9000: 30090
       udp:
         9001: 30091
 
+portNamePrefix: port
+
 tcp:
-  9000: "default/test:8080"
+  9000: default/test:8080
 
 udp:
-  9001: "default/test:8080"
+  9001: default/test:8080
diff --git a/charts/ingress-nginx/ci/daemonset-customconfig-values.yaml b/charts/ingress-nginx/ci/daemonset-customconfig-values.yaml
deleted file mode 100644
index 4393a5bc0..000000000
--- a/charts/ingress-nginx/ci/daemonset-customconfig-values.yaml
+++ /dev/null
@@ -1,14 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  kind: DaemonSet
-  allowSnippetAnnotations: false
-  admissionWebhooks:
-    enabled: false
-  service:
-    type: ClusterIP
-
-  config:
-    use-proxy-protocol: "true"
diff --git a/charts/ingress-nginx/ci/daemonset-customnodeport-values.yaml b/charts/ingress-nginx/ci/daemonset-customnodeport-values.yaml
deleted file mode 100644
index 1d94be219..000000000
--- a/charts/ingress-nginx/ci/daemonset-customnodeport-values.yaml
+++ /dev/null
@@ -1,22 +0,0 @@
-controller:
-  kind: DaemonSet
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-
-  service:
-    type: NodePort
-    nodePorts:
-      tcp:
-        9000: 30090
-      udp:
-        9001: 30091
-
-tcp:
-  9000: "default/test:8080"
-
-udp:
-  9001: "default/test:8080"
diff --git a/charts/ingress-nginx/ci/daemonset-extra-modules.yaml b/charts/ingress-nginx/ci/daemonset-extra-modules.yaml
deleted file mode 100644
index 52a32fcbd..000000000
--- a/charts/ingress-nginx/ci/daemonset-extra-modules.yaml
+++ /dev/null
@@ -1,13 +0,0 @@
-controller:
-  kind: DaemonSet
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-  service:
-    type: ClusterIP
-  extraModules:
-    - name: opentelemetry
-      image:
-        registry: registry.k8s.io
-        image: busybox
-        tag: latest
diff --git a/charts/ingress-nginx/ci/daemonset-headers-values.yaml b/charts/ingress-nginx/ci/daemonset-headers-values.yaml
deleted file mode 100644
index ab7d47bd4..000000000
--- a/charts/ingress-nginx/ci/daemonset-headers-values.yaml
+++ /dev/null
@@ -1,14 +0,0 @@
-controller:
-  kind: DaemonSet
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-  addHeaders:
-    X-Frame-Options: deny
-  proxySetHeaders:
-    X-Forwarded-Proto: https
-  service:
-    type: ClusterIP
diff --git a/charts/ingress-nginx/ci/daemonset-nodeport-values.yaml b/charts/ingress-nginx/ci/daemonset-nodeport-values.yaml
deleted file mode 100644
index 3b7aa2fcd..000000000
--- a/charts/ingress-nginx/ci/daemonset-nodeport-values.yaml
+++ /dev/null
@@ -1,10 +0,0 @@
-controller:
-  kind: DaemonSet
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-  service:
-    type: NodePort
diff --git a/charts/ingress-nginx/ci/daemonset-tcp-udp-configMapNamespace-values.yaml b/charts/ingress-nginx/ci/daemonset-tcp-udp-configMapNamespace-values.yaml
deleted file mode 100644
index acd86a77a..000000000
--- a/charts/ingress-nginx/ci/daemonset-tcp-udp-configMapNamespace-values.yaml
+++ /dev/null
@@ -1,20 +0,0 @@
-controller:
-  kind: DaemonSet
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-  service:
-    type: ClusterIP
-  tcp:
-    configMapNamespace: default
-  udp:
-    configMapNamespace: default
-
-tcp:
-  9000: "default/test:8080"
-
-udp:
-  9001: "default/test:8080"
diff --git a/charts/ingress-nginx/ci/daemonset-tcp-udp-portNamePrefix-values.yaml b/charts/ingress-nginx/ci/daemonset-tcp-udp-portNamePrefix-values.yaml
deleted file mode 100644
index 90b0f57a5..000000000
--- a/charts/ingress-nginx/ci/daemonset-tcp-udp-portNamePrefix-values.yaml
+++ /dev/null
@@ -1,18 +0,0 @@
-controller:
-  kind: DaemonSet
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-  service:
-    type: ClusterIP
-
-tcp:
-  9000: "default/test:8080"
-
-udp:
-  9001: "default/test:8080"
-
-portNamePrefix: "port"
diff --git a/charts/ingress-nginx/ci/daemonset-tcp-udp-values.yaml b/charts/ingress-nginx/ci/daemonset-tcp-udp-values.yaml
deleted file mode 100644
index 25ee64d85..000000000
--- a/charts/ingress-nginx/ci/daemonset-tcp-udp-values.yaml
+++ /dev/null
@@ -1,16 +0,0 @@
-controller:
-  kind: DaemonSet
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-  service:
-    type: ClusterIP
-
-tcp:
-  9000: "default/test:8080"
-
-udp:
-  9001: "default/test:8080"
diff --git a/charts/ingress-nginx/ci/daemonset-tcp-values.yaml b/charts/ingress-nginx/ci/daemonset-tcp-values.yaml
deleted file mode 100644
index 380c8b4b1..000000000
--- a/charts/ingress-nginx/ci/daemonset-tcp-values.yaml
+++ /dev/null
@@ -1,14 +0,0 @@
-controller:
-  kind: DaemonSet
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-  service:
-    type: ClusterIP
-
-tcp:
-  9000: "default/test:8080"
-  9001: "default/test:8080"
diff --git a/charts/ingress-nginx/ci/deamonset-metrics-values.yaml b/charts/ingress-nginx/ci/deamonset-metrics-values.yaml
deleted file mode 100644
index cb3cb54be..000000000
--- a/charts/ingress-nginx/ci/deamonset-metrics-values.yaml
+++ /dev/null
@@ -1,12 +0,0 @@
-controller:
-  kind: DaemonSet
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-  metrics:
-    enabled: true
-  service:
-    type: ClusterIP
diff --git a/charts/ingress-nginx/ci/deployment-autoscaling-values.yaml b/charts/ingress-nginx/ci/deployment-autoscaling-values.yaml
deleted file mode 100644
index b8b3ac686..000000000
--- a/charts/ingress-nginx/ci/deployment-autoscaling-values.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  autoscaling:
-    enabled: true
-  admissionWebhooks:
-    enabled: false
-  service:
-    type: ClusterIP
diff --git a/charts/ingress-nginx/ci/deployment-extra-modules-default-container-sec-context.yaml b/charts/ingress-nginx/ci/deployment-extra-modules-default-container-sec-context.yaml
deleted file mode 100644
index 91b1b98a8..000000000
--- a/charts/ingress-nginx/ci/deployment-extra-modules-default-container-sec-context.yaml
+++ /dev/null
@@ -1,15 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  service:
-    type: ClusterIP
-  containerSecurityContext:
-    allowPrivilegeEscalation: false
-  extraModules:
-    - name: opentelemetry
-      image:
-        registry: registry.k8s.io
-        image: busybox
-        tag: latest
diff --git a/charts/ingress-nginx/ci/deployment-extra-modules-specific-container-sec-context.yaml b/charts/ingress-nginx/ci/deployment-extra-modules-specific-container-sec-context.yaml
deleted file mode 100644
index b6013c7d0..000000000
--- a/charts/ingress-nginx/ci/deployment-extra-modules-specific-container-sec-context.yaml
+++ /dev/null
@@ -1,15 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  service:
-    type: ClusterIP
-  extraModules:
-    - name: opentelemetry
-      image:
-        registry: registry.k8s.io
-        image: busybox
-        tag: latest
-      containerSecurityContext:
-        allowPrivilegeEscalation: false
diff --git a/charts/ingress-nginx/ci/deployment-extra-modules.yaml b/charts/ingress-nginx/ci/deployment-extra-modules.yaml
deleted file mode 100644
index 2fbe1cc01..000000000
--- a/charts/ingress-nginx/ci/deployment-extra-modules.yaml
+++ /dev/null
@@ -1,13 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  service:
-    type: ClusterIP
-  extraModules:
-    - name: opentelemetry
-      image:
-        registry: registry.k8s.io
-        image: busybox
-        tag: latest
diff --git a/charts/ingress-nginx/ci/deployment-headers-values.yaml b/charts/ingress-nginx/ci/deployment-headers-values.yaml
deleted file mode 100644
index 17a11ac37..000000000
--- a/charts/ingress-nginx/ci/deployment-headers-values.yaml
+++ /dev/null
@@ -1,13 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-  addHeaders:
-    X-Frame-Options: deny
-  proxySetHeaders:
-    X-Forwarded-Proto: https
-  service:
-    type: ClusterIP
diff --git a/charts/ingress-nginx/ci/deployment-internal-lb-values.yaml b/charts/ingress-nginx/ci/deployment-internal-lb-values.yaml
deleted file mode 100644
index 663ccb9d1..000000000
--- a/charts/ingress-nginx/ci/deployment-internal-lb-values.yaml
+++ /dev/null
@@ -1,19 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-  service:
-    type: ClusterIP
-    internal:
-      enabled: true
-      annotations:
-        service.beta.kubernetes.io/aws-load-balancer-internal: "true"
-      ports:
-        http: 443
-        https: 80
-      targetPorts:
-        http: 443
-        https: 80
diff --git a/charts/ingress-nginx/ci/deployment-nodeport-values.yaml b/charts/ingress-nginx/ci/deployment-nodeport-values.yaml
deleted file mode 100644
index cd9b32352..000000000
--- a/charts/ingress-nginx/ci/deployment-nodeport-values.yaml
+++ /dev/null
@@ -1,9 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-  service:
-    type: NodePort
diff --git a/charts/ingress-nginx/ci/deployment-tcp-udp-configMapNamespace-values.yaml b/charts/ingress-nginx/ci/deployment-tcp-udp-configMapNamespace-values.yaml
deleted file mode 100644
index c51a4e91f..000000000
--- a/charts/ingress-nginx/ci/deployment-tcp-udp-configMapNamespace-values.yaml
+++ /dev/null
@@ -1,19 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-  service:
-    type: ClusterIP
-  tcp:
-    configMapNamespace: default
-  udp:
-    configMapNamespace: default
-
-tcp:
-  9000: "default/test:8080"
-
-udp:
-  9001: "default/test:8080"
diff --git a/charts/ingress-nginx/ci/deployment-tcp-udp-portNamePrefix-values.yaml b/charts/ingress-nginx/ci/deployment-tcp-udp-portNamePrefix-values.yaml
deleted file mode 100644
index 56323c5ee..000000000
--- a/charts/ingress-nginx/ci/deployment-tcp-udp-portNamePrefix-values.yaml
+++ /dev/null
@@ -1,17 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-  service:
-    type: ClusterIP
-
-tcp:
-  9000: "default/test:8080"
-
-udp:
-  9001: "default/test:8080"
-
-portNamePrefix: "port"
diff --git a/charts/ingress-nginx/ci/deployment-tcp-udp-values.yaml b/charts/ingress-nginx/ci/deployment-tcp-udp-values.yaml
deleted file mode 100644
index 5b45b69dc..000000000
--- a/charts/ingress-nginx/ci/deployment-tcp-udp-values.yaml
+++ /dev/null
@@ -1,15 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  admissionWebhooks:
-    enabled: false
-  service:
-    type: ClusterIP
-
-tcp:
-  9000: "default/test:8080"
-
-udp:
-  9001: "default/test:8080"
diff --git a/charts/ingress-nginx/ci/deployment-tcp-values.yaml b/charts/ingress-nginx/ci/deployment-tcp-values.yaml
deleted file mode 100644
index ac0b6e60e..000000000
--- a/charts/ingress-nginx/ci/deployment-tcp-values.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-  service:
-    type: ClusterIP
-
-tcp:
-  9000: "default/test:8080"
-  9001: "default/test:8080"
diff --git a/charts/ingress-nginx/ci/deployment-webhook-extraEnvs-values.yaml b/charts/ingress-nginx/ci/deployment-webhook-extraEnvs-values.yaml
deleted file mode 100644
index 95487b071..000000000
--- a/charts/ingress-nginx/ci/deployment-webhook-extraEnvs-values.yaml
+++ /dev/null
@@ -1,12 +0,0 @@
-controller:
-  service:
-    type: ClusterIP
-  admissionWebhooks:
-    enabled: true
-    extraEnvs:
-      - name: FOO
-        value: foo
-      - name: TEST
-        value: test
-    patch:
-      enabled: true
diff --git a/charts/ingress-nginx/ci/deployment-webhook-resources-values.yaml b/charts/ingress-nginx/ci/deployment-webhook-resources-values.yaml
deleted file mode 100644
index 49ebbb02c..000000000
--- a/charts/ingress-nginx/ci/deployment-webhook-resources-values.yaml
+++ /dev/null
@@ -1,23 +0,0 @@
-controller:
-  service:
-    type: ClusterIP
-  admissionWebhooks:
-    enabled: true
-    createSecretJob:
-      resources:
-        limits:
-          cpu: 10m
-          memory: 20Mi
-        requests:
-          cpu: 10m
-          memory: 20Mi
-    patchWebhookJob:
-      resources:
-        limits:
-          cpu: 10m
-          memory: 20Mi
-        requests:
-          cpu: 10m
-          memory: 20Mi
-    patch:
-      enabled: true
diff --git a/docs/user-guide/third-party-addons/opentelemetry.md b/docs/user-guide/third-party-addons/opentelemetry.md
index af7fd2b14..32b17d2ca 100644
--- a/docs/user-guide/third-party-addons/opentelemetry.md
+++ b/docs/user-guide/third-party-addons/opentelemetry.md
@@ -191,7 +191,7 @@ To install the example and collectors run:
     helm repo add grafana https://grafana.github.io/helm-charts
     helm repo update
     # deploy cert-manager needed for OpenTelemetry collector operator
-    kubectl apply -f https://github.com/cert-manager/cert-manager/releases/download/v1.9.1/cert-manager.yaml
+    kubectl apply -f https://github.com/cert-manager/cert-manager/releases/download/v1.15.3/cert-manager.yaml
     # create observability namespace
     kubectl apply -f https://raw.githubusercontent.com/esigo/nginx-example/main/observability/namespace.yaml
     # install OpenTelemetry collector operator
diff --git a/magefiles/steps/helm.go b/magefiles/steps/helm.go
index 245f5e1c0..73c9b0b3b 100644
--- a/magefiles/steps/helm.go
+++ b/magefiles/steps/helm.go
@@ -170,7 +170,7 @@ func runHelmDocs() error {
 	if err != nil {
 		return err
 	}
-	err = sh.RunV("helm-docs", "--chart-search-root=${PWD}/charts")
+	err = sh.RunV("helm-docs", "--chart-search-root", "${PWD}/charts")
 	if err != nil {
 		return err
 	}
@@ -181,7 +181,7 @@ func installHelmDocs() error {
 	utils.Info("HELM Install HelmDocs")
 	g0 := sh.RunCmd("go")
 
-	err := g0("install", "github.com/norwoodj/helm-docs/cmd/helm-docs@v1.11.0")
+	err := g0("install", "github.com/norwoodj/helm-docs/cmd/helm-docs@latest")
 	if err != nil {
 		return err
 	}
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 95465ee32..b6748f129 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -91,25 +91,28 @@ echo "[dev-env] copying docker images to cluster..."
 kind load docker-image --name="${KIND_CLUSTER_NAME}" --nodes=${KIND_WORKERS} ${REGISTRY}/controller:${TAG}
 
 if [ "${SKIP_CERT_MANAGER_CREATION:-false}" = "false" ]; then
-  curl -fsSL -o cmctl.tar.gz https://github.com/cert-manager/cert-manager/releases/download/v1.11.1/cmctl-linux-amd64.tar.gz
-  tar xzf cmctl.tar.gz
-  chmod +x cmctl
- ./cmctl help
-  echo "[dev-env] apply cert-manager ..."
-  kubectl apply --wait -f https://github.com/cert-manager/cert-manager/releases/download/v1.11.0/cert-manager.yaml
-  kubectl wait --timeout=30s --for=condition=available deployment/cert-manager -n cert-manager
-  kubectl get validatingwebhookconfigurations cert-manager-webhook -ojson | jq '.webhooks[].clientConfig'
-  kubectl get endpoints -n cert-manager cert-manager-webhook
-  ./cmctl check api --wait=2m
+  echo "[dev-env] deploying cert-manager..."
+
+  # Get OS & platform for downloading cmctl.
+  os="$(uname -o | tr "[:upper:]" "[:lower:]" | sed "s/gnu\///")"
+  platform="$(uname -m | sed "s/aarch64/arm64/;s/x86_64/amd64/")"
+
+  # Download cmctl. Cannot validate checksum as OS & platform may vary.
+  curl --fail --location "https://github.com/cert-manager/cmctl/releases/download/v2.1.1/cmctl_${os}_${platform}.tar.gz" | tar --extract --gzip cmctl
+
+  # Install cert-manager.
+  ./cmctl x install
+  ./cmctl check api --wait 1m
 fi
 
 echo "[dev-env] running helm chart e2e tests..."
-docker run --rm --interactive --network host \
-    --name ct \
-    --volume $KUBECONFIG:/root/.kube/config \
-    --volume "${DIR}/../../":/workdir \
-    --workdir /workdir \
-    registry.k8s.io/ingress-nginx/e2e-test-runner:v20240829-2c421762@sha256:5b7809bfe9cbd9cd6bcb8033ca27576ca704f05ce729fe4dcb574810f7a25785 \
-        ct install \
-        --charts charts/ingress-nginx \
-        --helm-extra-args "--timeout 60s"
+docker run \
+  --name ct \
+  --volume "${KUBECONFIG}:/root/.kube/config:ro" \
+  --volume "${DIR}/../../:/workdir" \
+  --network host \
+  --workdir /workdir \
+  --entrypoint ct \
+  --rm \
+  registry.k8s.io/ingress-nginx/e2e-test-runner:v20240829-2c421762@sha256:5b7809bfe9cbd9cd6bcb8033ca27576ca704f05ce729fe4dcb574810f7a25785 \
+    install --charts charts/ingress-nginx

From 3f6e6aef78259370b95213d094cf5d74df64aba2 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 29 Sep 2024 17:31:04 +0200
Subject: [PATCH 1463/1641] Images: Remove OpenTelemetry. (#12024)

---
 .github/workflows/images.yaml                 |  20 ---
 charts/ingress-nginx/README.md                |  17 +-
 ...roller-daemonset-extra-modules-values.yaml |  30 ----
 ...roller-daemonset-opentelemetry-values.yaml |  13 --
 ...oller-deployment-extra-modules-values.yaml |  30 ----
 ...oller-deployment-opentelemetry-values.yaml |  13 --
 .../templates/controller-daemonset.yaml       |  16 +-
 .../templates/controller-deployment.yaml      |  16 +-
 charts/ingress-nginx/values.yaml              |  27 +--
 .../third-party-addons/opentelemetry.md       |  22 +--
 images/opentelemetry/Makefile                 |  69 --------
 images/opentelemetry/TAG                      |   1 -
 images/opentelemetry/cloudbuild.yaml          |  14 --
 images/opentelemetry/rootfs/CMakeLists.txt    |  74 --------
 images/opentelemetry/rootfs/Dockerfile        |  46 -----
 images/opentelemetry/rootfs/build.sh          | 165 ------------------
 images/opentelemetry/rootfs/go.mod            |   3 -
 images/opentelemetry/rootfs/init_module.go    | 103 -----------
 magefiles/utils/helm.go                       |   7 -
 19 files changed, 18 insertions(+), 668 deletions(-)
 delete mode 100644 charts/ingress-nginx/ci/controller-daemonset-extra-modules-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/controller-daemonset-opentelemetry-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/controller-deployment-extra-modules-values.yaml
 delete mode 100644 charts/ingress-nginx/ci/controller-deployment-opentelemetry-values.yaml
 delete mode 100644 images/opentelemetry/Makefile
 delete mode 100644 images/opentelemetry/TAG
 delete mode 100644 images/opentelemetry/cloudbuild.yaml
 delete mode 100644 images/opentelemetry/rootfs/CMakeLists.txt
 delete mode 100644 images/opentelemetry/rootfs/Dockerfile
 delete mode 100755 images/opentelemetry/rootfs/build.sh
 delete mode 100644 images/opentelemetry/rootfs/go.mod
 delete mode 100644 images/opentelemetry/rootfs/init_module.go

diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 63a72dd3a..38df87f78 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -37,7 +37,6 @@ jobs:
       ext-auth-example-authsvc: ${{ steps.filter.outputs.ext-auth-example-authsvc }}
       nginx: ${{ steps.filter.outputs.nginx }}
       nginx125: ${{ steps.filter.outputs.nginx125 }}
-      opentelemetry: ${{ steps.filter.outputs.opentelemetry }}
 
     steps:
       - name: Checkout
@@ -65,8 +64,6 @@ jobs:
               - 'images/ext-auth-example-authsvc/**'
             nginx:
               - 'images/nginx/**'
-            opentelemetry:
-              - 'images/opentelemetry/**'
             nginx125:
               - 'images/nginx-1.25/TAG'
 
@@ -166,23 +163,6 @@ jobs:
       run: |
         cd images/ && make NAME=kube-webhook-certgen test test-e2e
 
-  opentelemetry:
-    runs-on: ubuntu-latest
-    env:
-      PLATFORMS: linux/amd64,linux/arm,linux/arm64
-    needs: changes
-    if: |
-      (needs.changes.outputs.opentelemetry == 'true')
-    strategy:
-      matrix:
-        nginx: ['1.25.3', '1.21.6']
-    steps:
-    - name: Checkout
-      uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
-    - name: image build
-      run: |
-        cd images/opentelemetry && make NGINX_VERSION=${{ matrix.nginx }} build
-
   nginx125:
     permissions:
       contents: write
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 5cf5bb179..f7ea20199 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -310,7 +310,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.extraContainers | list | `[]` | Additional containers to be added to the controller pod. See https://github.com/lemonldap-ng-controller/lemonldap-ng-controller as example. |
 | controller.extraEnvs | list | `[]` | Additional environment variables to set |
 | controller.extraInitContainers | list | `[]` | Containers, which are run before the app containers are started. |
-| controller.extraModules | list | `[]` | Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module |
+| controller.extraModules | list | `[]` | Modules, which are mounted into the core nginx image. |
 | controller.extraVolumeMounts | list | `[]` | Additional volumeMounts to the controller main container. |
 | controller.extraVolumes | list | `[]` | Additional volumes to the controller pod. |
 | controller.healthCheckHost | string | `""` | Address to bind the health check endpoint. It is better to set this option to the internal node address if the Ingress-Nginx Controller is running in the `hostNetwork: true` mode. |
@@ -393,21 +393,6 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.name | string | `"controller"` |  |
 | controller.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
 | controller.nodeSelector | object | `{"kubernetes.io/os":"linux"}` | Node labels for controller pod assignment # Ref: https://kubernetes.io/docs/concepts/scheduling-eviction/assign-pod-node/ # |
-| controller.opentelemetry.containerSecurityContext.allowPrivilegeEscalation | bool | `false` |  |
-| controller.opentelemetry.containerSecurityContext.capabilities.drop[0] | string | `"ALL"` |  |
-| controller.opentelemetry.containerSecurityContext.readOnlyRootFilesystem | bool | `true` |  |
-| controller.opentelemetry.containerSecurityContext.runAsGroup | int | `65532` |  |
-| controller.opentelemetry.containerSecurityContext.runAsNonRoot | bool | `true` |  |
-| controller.opentelemetry.containerSecurityContext.runAsUser | int | `65532` | The image's default user, inherited from its base image `cgr.dev/chainguard/static`. |
-| controller.opentelemetry.containerSecurityContext.seccompProfile.type | string | `"RuntimeDefault"` |  |
-| controller.opentelemetry.enabled | bool | `false` |  |
-| controller.opentelemetry.image.digest | string | `"sha256:f7604ac0547ed64d79b98d92133234e66c2c8aade3c1f4809fed5eec1fb7f922"` |  |
-| controller.opentelemetry.image.distroless | bool | `true` |  |
-| controller.opentelemetry.image.image | string | `"ingress-nginx/opentelemetry-1.25.3"` |  |
-| controller.opentelemetry.image.registry | string | `"registry.k8s.io"` |  |
-| controller.opentelemetry.image.tag | string | `"v20240813-b933310d"` |  |
-| controller.opentelemetry.name | string | `"opentelemetry"` |  |
-| controller.opentelemetry.resources | object | `{}` |  |
 | controller.podAnnotations | object | `{}` | Annotations to be added to controller pods # |
 | controller.podLabels | object | `{}` | Labels to add to the pod container metadata |
 | controller.podSecurityContext | object | `{}` | Security context for controller pods |
diff --git a/charts/ingress-nginx/ci/controller-daemonset-extra-modules-values.yaml b/charts/ingress-nginx/ci/controller-daemonset-extra-modules-values.yaml
deleted file mode 100644
index edf12e77e..000000000
--- a/charts/ingress-nginx/ci/controller-daemonset-extra-modules-values.yaml
+++ /dev/null
@@ -1,30 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-
-  service:
-    type: ClusterIP
-
-  kind: DaemonSet
-
-  extraModules:
-  - name: opentelemetry
-    image:
-      registry: registry.k8s.io
-      image: ingress-nginx/opentelemetry-1.25.3
-      tag: v20240813-b933310d
-      digest: sha256:f7604ac0547ed64d79b98d92133234e66c2c8aade3c1f4809fed5eec1fb7f922
-      distroless: true
-    containerSecurityContext:
-      runAsNonRoot: true
-      runAsUser: 65532
-      runAsGroup: 65532
-      allowPrivilegeEscalation: false
-      seccompProfile:
-        type: RuntimeDefault
-      capabilities:
-        drop:
-        - ALL
-      readOnlyRootFilesystem: true
diff --git a/charts/ingress-nginx/ci/controller-daemonset-opentelemetry-values.yaml b/charts/ingress-nginx/ci/controller-daemonset-opentelemetry-values.yaml
deleted file mode 100644
index 179ab2a85..000000000
--- a/charts/ingress-nginx/ci/controller-daemonset-opentelemetry-values.yaml
+++ /dev/null
@@ -1,13 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-
-  service:
-    type: ClusterIP
-
-  kind: DaemonSet
-
-  opentelemetry:
-    enabled: true
diff --git a/charts/ingress-nginx/ci/controller-deployment-extra-modules-values.yaml b/charts/ingress-nginx/ci/controller-deployment-extra-modules-values.yaml
deleted file mode 100644
index d4083cc37..000000000
--- a/charts/ingress-nginx/ci/controller-deployment-extra-modules-values.yaml
+++ /dev/null
@@ -1,30 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-
-  service:
-    type: ClusterIP
-
-  kind: Deployment
-
-  extraModules:
-  - name: opentelemetry
-    image:
-      registry: registry.k8s.io
-      image: ingress-nginx/opentelemetry-1.25.3
-      tag: v20240813-b933310d
-      digest: sha256:f7604ac0547ed64d79b98d92133234e66c2c8aade3c1f4809fed5eec1fb7f922
-      distroless: true
-    containerSecurityContext:
-      runAsNonRoot: true
-      runAsUser: 65532
-      runAsGroup: 65532
-      allowPrivilegeEscalation: false
-      seccompProfile:
-        type: RuntimeDefault
-      capabilities:
-        drop:
-        - ALL
-      readOnlyRootFilesystem: true
diff --git a/charts/ingress-nginx/ci/controller-deployment-opentelemetry-values.yaml b/charts/ingress-nginx/ci/controller-deployment-opentelemetry-values.yaml
deleted file mode 100644
index 9443ddefc..000000000
--- a/charts/ingress-nginx/ci/controller-deployment-opentelemetry-values.yaml
+++ /dev/null
@@ -1,13 +0,0 @@
-controller:
-  image:
-    repository: ingress-controller/controller
-    tag: 1.0.0-dev
-    digest: null
-
-  service:
-    type: ClusterIP
-
-  kind: Deployment
-
-  opentelemetry:
-    enabled: true
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index fcc633d3d..b8f9c331c 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -144,9 +144,9 @@ spec:
               hostPort: {{ $key }}
               {{- end }}
           {{- end }}
-        {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
+        {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraModules) }}
           volumeMounts:
-          {{- if (or .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
+          {{- if .Values.controller.extraModules }}
             - name: modules
             {{- if .Values.controller.image.chroot }}
               mountPath: /chroot/modules_mount
@@ -174,7 +174,7 @@ spec:
       {{- if .Values.controller.extraContainers }}
         {{- toYaml .Values.controller.extraContainers | nindent 8 }}
       {{- end }}
-    {{- if (or .Values.controller.extraInitContainers .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
+    {{- if (or .Values.controller.extraInitContainers .Values.controller.extraModules) }}
       initContainers:
       {{- if .Values.controller.extraInitContainers }}
         {{- toYaml .Values.controller.extraInitContainers | nindent 8 }}
@@ -185,12 +185,6 @@ spec:
           {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
         {{- end }}
       {{- end }}
-      {{- if .Values.controller.opentelemetry.enabled }}
-        {{- with .Values.controller.opentelemetry }}
-          {{- $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
-        {{- end }}
-      {{- end }}
     {{- end }}
     {{- if .Values.controller.hostNetwork }}
       hostNetwork: {{ .Values.controller.hostNetwork }}
@@ -209,9 +203,9 @@ spec:
     {{- end }}
       serviceAccountName: {{ template "ingress-nginx.serviceAccountName" . }}
       terminationGracePeriodSeconds: {{ .Values.controller.terminationGracePeriodSeconds }}
-    {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraVolumes .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
+    {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraVolumes .Values.controller.extraModules) }}
       volumes:
-      {{- if (or .Values.controller.extraModules .Values.controller.opentelemetry.enabled)}}
+      {{- if .Values.controller.extraModules }}
         - name: modules
           emptyDir: {}
       {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index c046311b0..286ec06b3 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -150,9 +150,9 @@ spec:
               hostPort: {{ $key }}
               {{- end }}
           {{- end }}
-        {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
+        {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraModules) }}
           volumeMounts:
-          {{- if (or .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
+          {{- if .Values.controller.extraModules }}
             - name: modules
             {{- if .Values.controller.image.chroot }}
               mountPath: /chroot/modules_mount
@@ -180,7 +180,7 @@ spec:
       {{- if .Values.controller.extraContainers }}
         {{- toYaml .Values.controller.extraContainers | nindent 8 }}
       {{- end }}
-    {{- if (or .Values.controller.extraInitContainers .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
+    {{- if (or .Values.controller.extraInitContainers .Values.controller.extraModules) }}
       initContainers:
       {{- if .Values.controller.extraInitContainers }}
         {{- toYaml .Values.controller.extraInitContainers | nindent 8 }}
@@ -191,12 +191,6 @@ spec:
           {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
         {{- end }}
       {{- end }}
-      {{- if .Values.controller.opentelemetry.enabled }}
-        {{- with .Values.controller.opentelemetry }}
-          {{- $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
-        {{- end }}
-      {{- end }}
     {{- end }}
     {{- if .Values.controller.hostNetwork }}
       hostNetwork: {{ .Values.controller.hostNetwork }}
@@ -215,9 +209,9 @@ spec:
     {{- end }}
       serviceAccountName: {{ template "ingress-nginx.serviceAccountName" . }}
       terminationGracePeriodSeconds: {{ .Values.controller.terminationGracePeriodSeconds }}
-    {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraVolumes .Values.controller.extraModules .Values.controller.opentelemetry.enabled) }}
+    {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraVolumes .Values.controller.extraModules) }}
       volumes:
-      {{- if (or .Values.controller.extraModules .Values.controller.opentelemetry.enabled)}}
+      {{- if .Values.controller.extraModules }}
         - name: modules
           emptyDir: {}
       {{- end }}
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index c2a0a1541..dd3faba59 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -682,7 +682,7 @@ controller:
   #   image: busybox
   #   command: ['sh', '-c', 'until nslookup myservice; do echo waiting for myservice; sleep 2; done;']
 
-  # -- Modules, which are mounted into the core nginx image. See values.yaml for a sample to add opentelemetry module
+  # -- Modules, which are mounted into the core nginx image.
   extraModules: []
   # - name: mytestmodule
   #   image:
@@ -711,31 +711,6 @@ controller:
   # will be executed as initContainers, to move its config files within the
   # mounted volume.
 
-  opentelemetry:
-    enabled: false
-    name: opentelemetry
-    image:
-      registry: registry.k8s.io
-      image: ingress-nginx/opentelemetry-1.25.3
-      ## for backwards compatibility consider setting the full image url via the repository value below
-      ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
-      ## repository:
-      tag: v20240813-b933310d
-      digest: sha256:f7604ac0547ed64d79b98d92133234e66c2c8aade3c1f4809fed5eec1fb7f922
-      distroless: true
-    containerSecurityContext:
-      runAsNonRoot: true
-      # -- The image's default user, inherited from its base image `cgr.dev/chainguard/static`.
-      runAsUser: 65532
-      runAsGroup: 65532
-      allowPrivilegeEscalation: false
-      seccompProfile:
-        type: RuntimeDefault
-      capabilities:
-        drop:
-          - ALL
-      readOnlyRootFilesystem: true
-    resources: {}
   admissionWebhooks:
     name: admission
     annotations: {}
diff --git a/docs/user-guide/third-party-addons/opentelemetry.md b/docs/user-guide/third-party-addons/opentelemetry.md
index 32b17d2ca..255ba1ffa 100644
--- a/docs/user-guide/third-party-addons/opentelemetry.md
+++ b/docs/user-guide/third-party-addons/opentelemetry.md
@@ -147,17 +147,7 @@ graph TB
 
 To install the example and collectors run:
 
-1. Enable Ingress addon with:
-
-    ```yaml
-      opentelemetry:
-        enabled: true
-        image: registry.k8s.io/ingress-nginx/opentelemetry-1.25.3:v20240813-b933310d@sha256:f7604ac0547ed64d79b98d92133234e66c2c8aade3c1f4809fed5eec1fb7f922
-        containerSecurityContext:
-        allowPrivilegeEscalation: false
-    ```
-
-2. Enable OpenTelemetry and set the otlp-collector-host:
+1. Enable OpenTelemetry and set the otlp-collector-host:
 
     ```yaml
     $ echo '
@@ -183,7 +173,7 @@ To install the example and collectors run:
       ' | kubectl replace -f -
     ```
 
-4. Deploy otel-collector, grafana and Jaeger backend:
+2. Deploy otel-collector, grafana and Jaeger backend:
 
     ```bash
     # add helm charts needed for grafana and OpenTelemetry collector
@@ -218,7 +208,7 @@ To install the example and collectors run:
     make deploy-app
     ```
 
-5. Make a few requests to the Service:
+4. Make a few requests to the Service:
 
     ```bash
     kubectl port-forward --namespace=ingress-nginx service/ingress-nginx-controller 8090:80
@@ -247,7 +237,7 @@ To install the example and collectors run:
     RawContentLength  : 21
     ```
 
-6. View the Grafana UI:
+5. View the Grafana UI:
 
     ```bash
     kubectl port-forward --namespace=observability service/grafana 3000:80
@@ -255,7 +245,7 @@ To install the example and collectors run:
     In the Grafana interface we can see the details:
     ![grafana screenshot](../../images/otel-grafana-demo.png "grafana screenshot")
 
-7. View the Jaeger UI:
+6. View the Jaeger UI:
 
     ```bash
     kubectl port-forward --namespace=observability service/jaeger-all-in-one-query 16686:16686
@@ -263,7 +253,7 @@ To install the example and collectors run:
     In the Jaeger interface we can see the details:
     ![Jaeger screenshot](../../images/otel-jaeger-demo.png "Jaeger screenshot")
 
-8. View the Zipkin UI:
+7. View the Zipkin UI:
 
     ```bash
     kubectl port-forward --namespace=observability service/zipkin 9411:9411
diff --git a/images/opentelemetry/Makefile b/images/opentelemetry/Makefile
deleted file mode 100644
index eae435bef..000000000
--- a/images/opentelemetry/Makefile
+++ /dev/null
@@ -1,69 +0,0 @@
-# Copyright 2024 The Kubernetes Authors. All rights reserved.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-.DEFAULT_GOAL:=build
-
-# set default shell
-SHELL=/bin/bash -o pipefail -o errexit
-
-DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
-INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
-
-# 0.0.0 shouldn't clobber any released builds
-SHORT_SHA ?=$(shell git rev-parse --short HEAD)
-TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
-
-REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
-
-IMAGE = $(REGISTRY)/opentelemetry
-
-# required to enable buildx
-export DOCKER_CLI_EXPERIMENTAL=enabled
-
-# build with buildx
-PLATFORMS?=linux/amd64,linux/arm,linux/arm64
-OUTPUT=
-PROGRESS=plain
-
-precheck:
-ifndef NGINX_VERSION
-	$(error NGINX_VERSION variable is required)
-endif
-
-build: precheck ensure-buildx
-	docker buildx build \
-		--label=org.opencontainers.image.source=https://github.com/kubernetes/ingress-nginx \
-		--label=org.opencontainers.image.licenses=Apache-2.0 \
-		--label=org.opencontainers.image.description="Ingress NGINX Opentelemetry image" \
-		--platform=${PLATFORMS} $(OUTPUT) \
-		--progress=$(PROGRESS) \
-		--build-arg=NGINX_VERSION=$(NGINX_VERSION) \
-		--pull \
-		--tag $(IMAGE)-$(NGINX_VERSION):$(TAG) rootfs
-
-# push the cross built image
-push: OUTPUT=--push
-push: build
-
-# enable buildx
-ensure-buildx:
-# this is required for cloudbuild
-ifeq ("$(wildcard $(INIT_BUILDX))","")
-	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/hack/init-buildx.sh | bash
-else
-	@exec $(INIT_BUILDX)
-endif
-	@echo "done"
-
-.PHONY: build precheck push ensure-buildx
diff --git a/images/opentelemetry/TAG b/images/opentelemetry/TAG
deleted file mode 100644
index 0ec25f750..000000000
--- a/images/opentelemetry/TAG
+++ /dev/null
@@ -1 +0,0 @@
-v1.0.0
diff --git a/images/opentelemetry/cloudbuild.yaml b/images/opentelemetry/cloudbuild.yaml
deleted file mode 100644
index df86d37e7..000000000
--- a/images/opentelemetry/cloudbuild.yaml
+++ /dev/null
@@ -1,14 +0,0 @@
-options:
-  # Increase machine type for multi-arch builds.
-  machineType: E2_HIGHCPU_8
-  # Ignore Prow provided substitutions.
-  substitution_option: ALLOW_LOOSE
-steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
-    env:
-      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-    entrypoint: bash
-    args:
-      - -c
-      - gcloud auth configure-docker && cd images/opentelemetry && make NGINX_VERSION=1.21.6 push && make NGINX_VERSION=1.25.3 push
-timeout: 1800s
diff --git a/images/opentelemetry/rootfs/CMakeLists.txt b/images/opentelemetry/rootfs/CMakeLists.txt
deleted file mode 100644
index 1c68d6fc6..000000000
--- a/images/opentelemetry/rootfs/CMakeLists.txt
+++ /dev/null
@@ -1,74 +0,0 @@
-#!/bin/bash
-
-# Copyright 2021 The Kubernetes Authors.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-cmake_minimum_required(VERSION 3.11 FATAL_ERROR)
-
-project(
-  dependencies
-  LANGUAGES CXX
-  VERSION 0.0.1)
-
-set(CMAKE_CXX_STANDARD 17)
-set(CMAKE_CXX_EXTENSIONS OFF)
-set(CMAKE_CXX_STANDARD_REQUIRED ON)
-set(CMAKE_CXX_FLAGS "-O2 -fpic")
-set(CMAKE_VERBOSE_MAKEFILE ON CACHE BOOL "ON" FORCE)
-
-set(CMAKE_BUILD_TYPE
-    Release
-    CACHE STRING "Build type" FORCE)
-
-include(GNUInstallDirs)
-
-set(CMAKE_ARCHIVE_OUTPUT_DIRECTORY
-    ${PROJECT_BINARY_DIR}/${CMAKE_INSTALL_LIBDIR})
-set(CMAKE_LIBRARY_OUTPUT_DIRECTORY
-    ${PROJECT_BINARY_DIR}/${CMAKE_INSTALL_LIBDIR})
-set(CMAKE_RUNTIME_OUTPUT_DIRECTORY
-    ${PROJECT_BINARY_DIR}/${CMAKE_INSTALL_BINDIR})
-
-set(INSTALL_LIBDIR
-    ${CMAKE_INSTALL_LIBDIR}
-    CACHE PATH "directory for libraries")
-set(INSTALL_BINDIR
-    ${CMAKE_INSTALL_BINDIR}
-    CACHE PATH "directory for executables")
-set(INSTALL_INCLUDEDIR
-    ${CMAKE_INSTALL_INCLUDEDIR}
-    CACHE PATH "directory for header files")
-
-set(DEF_INSTALL_CMAKEDIR share/cmake/${PROJECT_NAME})
-set(INSTALL_CMAKEDIR
-    ${DEF_INSTALL_CMAKEDIR}
-    CACHE PATH "directory for CMake files")
-
-set_property(DIRECTORY PROPERTY EP_BASE ${CMAKE_BINARY_DIR}/subs)
-
-set(STAGED_INSTALL_PREFIX ${CMAKE_BINARY_DIR}/stage)
-message(STATUS "${PROJECT_NAME} staged install: ${STAGED_INSTALL_PREFIX}")
-
-find_package(OpenSSL REQUIRED)
-message("OpenSSL include dir: ${OPENSSL_INCLUDE_DIR}")
-message("OpenSSL libraries: ${OPENSSL_LIBRARIES}")
-
-find_package(Protobuf REQUIRED)
-find_package(gRPC REQUIRED)
-find_package(OpentelemetryCPP REQUIRED)
-
-install(
-  DIRECTORY ${STAGED_INSTALL_PREFIX}/
-  DESTINATION .
-  USE_SOURCE_PERMISSIONS)
diff --git a/images/opentelemetry/rootfs/Dockerfile b/images/opentelemetry/rootfs/Dockerfile
deleted file mode 100644
index 4b64b96a6..000000000
--- a/images/opentelemetry/rootfs/Dockerfile
+++ /dev/null
@@ -1,46 +0,0 @@
-# Copyright 2021 The Kubernetes Authors. All rights reserved.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-
-FROM alpine:3.20 AS base
-
-RUN mkdir -p /opt/third_party/install
-COPY . /opt/third_party/
-
-# install build tools
-RUN apk update \
-	&& apk upgrade \
-	&& apk add -U bash \
-	&& bash /opt/third_party/build.sh -p
-
-ENV NINJA_STATUS="[%p/%f/%t] "
-
-# install otel_ngx_module.so
-FROM base AS nginx
-ARG NGINX_VERSION=1.25.3
-RUN bash /opt/third_party/build.sh -n ${NGINX_VERSION}
-
-FROM golang:1.22.7-bullseye AS build-init
-
-WORKDIR /go/src/app
-COPY . .
-
-RUN go mod download
-RUN CGO_ENABLED=0 go build -o /go/bin/init_module
-
-FROM gcr.io/distroless/static-debian11 AS final
-COPY --from=build-init /go/bin/init_module /
-COPY --from=nginx /etc/nginx/modules /etc/nginx/modules
-
-CMD ["/init_module"]
diff --git a/images/opentelemetry/rootfs/build.sh b/images/opentelemetry/rootfs/build.sh
deleted file mode 100755
index 6f803fc9f..000000000
--- a/images/opentelemetry/rootfs/build.sh
+++ /dev/null
@@ -1,165 +0,0 @@
-#!/bin/bash
-
-# Copyright 2021 The Kubernetes Authors.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-set -o errexit
-set -o nounset
-set -o pipefail
-set -x
-# Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp/compare/v1.2.0...main
-export OPENTELEMETRY_CPP_VERSION=${OPENTELEMETRY_CPP_VERSION:="v1.11.0"}
-export INSTALL_DIR=/opt/third_party/install
-
-export NGINX_VERSION=${NGINX_VERSION:="1.25.3"}
-# improve compilation times
-CORES=$(($(grep -c ^processor /proc/cpuinfo) - 1))
-
-rm -rf \
-   /var/cache/debconf/* \
-   /var/lib/apt/lists/* \
-   /var/log/* \
-   /tmp/* \
-   /var/tmp/*
-
-export BUILD_PATH=/tmp/build
-mkdir --verbose -p "$BUILD_PATH"
-
-Help()
-{
-   # Display Help
-   echo "Add description of the script functions here."
-   echo
-   echo "Syntax: scriptTemplate [-h|o|n|p|]"
-   echo "options:"
-   echo "h     Print Help."
-   echo "o     OpenTelemetry git tag"
-   echo "n     install nginx"
-   echo "p     prepare"
-   echo
-}
-
-prepare()
-{
-  echo "https://dl-cdn.alpinelinux.org/alpine/edge/main" >> /etc/apk/repositories
-  echo "https://dl-cdn.alpinelinux.org/alpine/edge/community" >> /etc/apk/repositories
-  echo "https://dl-cdn.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
-
-  apk add \
-    linux-headers \
-    cmake \
-    ninja \
-    openssl \
-    curl-dev \
-    openssl-dev \
-    gtest-dev \
-    c-ares-dev \
-    pcre-dev \
-    curl \
-    git \
-    build-base \
-    coreutils \
-    build-base \
-    openssl-dev \
-    pkgconfig \
-    c-ares-dev \
-    re2-dev \
-    grpc-dev \
-    protobuf-dev \
-    opentelemetry-cpp-dev
-
-  git config --global http.version HTTP/1.1
-  git config --global http.postBuffer 157286400
-}
-
-install_otel()
-{
-  cd ${BUILD_PATH}
-  export LD_LIBRARY_PATH="${LD_LIBRARY_PATH:+LD_LIBRARY_PATH:}${INSTALL_DIR}/lib:/usr/local"
-  export PATH="${PATH}:${INSTALL_DIR}/bin"
-  git clone --recurse-submodules -j ${CORES} --depth=1 -b \
-    ${OPENTELEMETRY_CPP_VERSION} https://github.com/open-telemetry/opentelemetry-cpp.git opentelemetry-cpp-${OPENTELEMETRY_CPP_VERSION}
-  cd "opentelemetry-cpp-${OPENTELEMETRY_CPP_VERSION}"
-  mkdir -p .build
-  cd .build
-
-  cmake -DCMAKE_BUILD_TYPE=Release \
-        -G Ninja \
-        -DCMAKE_CXX_STANDARD=17 \
-        -DCMAKE_POSITION_INDEPENDENT_CODE=TRUE  \
-        -DWITH_ZIPKIN=OFF \
-        -DCMAKE_INSTALL_PREFIX=${INSTALL_DIR} \
-        -DBUILD_TESTING=OFF \
-        -DWITH_BENCHMARK=OFF \
-        -DWITH_FUNC_TESTS=OFF \
-        -DBUILD_SHARED_LIBS=OFF \
-        -DWITH_OTLP_GRPC=ON \
-        -DWITH_OTLP_HTTP=OFF \
-        -DWITH_ABSEIL=ON \
-        -DWITH_EXAMPLES=OFF \
-        -DWITH_NO_DEPRECATED_CODE=ON \
-        ..
-  cmake --build . -j ${CORES} --target install
-}
-
-install_nginx()
-{
-
-  # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/e11348bb400d5472bf1da5d6128bead66fa111ff...main
-  export OPENTELEMETRY_CONTRIB_COMMIT=e11348bb400d5472bf1da5d6128bead66fa111ff
-
-  mkdir -p /etc/nginx
-  cd "$BUILD_PATH"
-
-  # TODO fix curl
-  # get_src 0528e793a97f942868616449d49326160f9cb67b2253fb2c4864603ac6ab09a9 \
-  #         "https://github.com/open-telemetry/opentelemetry-cpp-contrib/archive/$OPENTELEMETRY_CONTRIB_COMMIT.tar.gz"
-
-  git clone https://github.com/open-telemetry/opentelemetry-cpp-contrib.git \
-    opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}
-  cd ${BUILD_PATH}/opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}
-  git reset --hard ${OPENTELEMETRY_CONTRIB_COMMIT}
-  cd ${BUILD_PATH}/opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}/instrumentation/nginx
-  mkdir -p build
-  cd build
-  cmake -DCMAKE_BUILD_TYPE=Release \
-        -G Ninja \
-        -DCMAKE_CXX_STANDARD=17 \
-        -DCMAKE_INSTALL_PREFIX=${INSTALL_DIR} \
-        -DBUILD_SHARED_LIBS=ON \
-        -DNGINX_VERSION=${NGINX_VERSION} \
-        ..
-  cmake --build . -j ${CORES} --target install
-
-  mkdir -p /etc/nginx/modules
-  cp ${INSTALL_DIR}/otel_ngx_module.so /etc/nginx/modules/otel_ngx_module.so
-}
-
-while getopts ":phn:" option; do
-   case $option in
-    h) # display Help
-         Help
-         exit;;
-    p) # prepare
-        prepare
-        exit;;
-    n) # install nginx
-        NGINX_VERSION=${OPTARG}
-        install_nginx
-        exit;;
-    \?)
-        Help
-        exit;;
-   esac
-done
diff --git a/images/opentelemetry/rootfs/go.mod b/images/opentelemetry/rootfs/go.mod
deleted file mode 100644
index 207d1d914..000000000
--- a/images/opentelemetry/rootfs/go.mod
+++ /dev/null
@@ -1,3 +0,0 @@
-module init-otel
-
-go 1.22.7
diff --git a/images/opentelemetry/rootfs/init_module.go b/images/opentelemetry/rootfs/init_module.go
deleted file mode 100644
index 5d285052d..000000000
--- a/images/opentelemetry/rootfs/init_module.go
+++ /dev/null
@@ -1,103 +0,0 @@
-/*
-Copyright 2023 The Kubernetes Authors.
-
-Licensed under the Apache License, Version 2.0 (the "License");
-you may not use this file except in compliance with the License.
-You may obtain a copy of the License at
-
-    http://www.apache.org/licenses/LICENSE-2.0
-
-Unless required by applicable law or agreed to in writing, software
-distributed under the License is distributed on an "AS IS" BASIS,
-WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-See the License for the specific language governing permissions and
-limitations under the License.
-*/
-
-package main
-
-import (
-	"fmt"
-	"io"
-	"os"
-	"path/filepath"
-)
-
-func main() {
-	// Enable error handling for all operations
-	err := run()
-	if err != nil {
-		fmt.Fprintf(os.Stderr, "Error: %v\n", err)
-		os.Exit(1)
-	}
-}
-
-func run() error {
-	// Create the target directory if it doesn't exist
-	targetDir := "/modules_mount/etc/nginx/modules/otel"
-	err := os.MkdirAll(targetDir, os.ModePerm)
-	if err != nil {
-		return fmt.Errorf("failed to create target directory: %w", err)
-	}
-
-	// Copy files from source directory to target directory
-	sourceDir := "/etc/nginx/modules/"
-	err = filepath.Walk(sourceDir, func(path string, info os.FileInfo, err error) error {
-		if err != nil {
-			return err
-		}
-
-		// Skip directories
-		if info.IsDir() {
-			return nil
-		}
-
-		// Calculate the destination path
-		relPath, err := filepath.Rel(sourceDir, path)
-		if err != nil {
-			return err
-		}
-		destPath := filepath.Join(targetDir, relPath)
-
-		// Create the destination directory if it doesn't exist
-		destDir := filepath.Dir(destPath)
-		err = os.MkdirAll(destDir, os.ModePerm)
-		if err != nil {
-			return err
-		}
-
-		// Copy the file
-		err = copyFile(path, destPath)
-		if err != nil {
-			return err
-		}
-
-		return nil
-	})
-	if err != nil {
-		return fmt.Errorf("failed to copy files: %w", err)
-	}
-
-	return nil
-}
-
-func copyFile(sourcePath, destPath string) error {
-	sourceFile, err := os.Open(sourcePath)
-	if err != nil {
-		return err
-	}
-	defer sourceFile.Close()
-
-	destFile, err := os.Create(destPath)
-	if err != nil {
-		return err
-	}
-	defer destFile.Close()
-
-	_, err = io.Copy(destFile, sourceFile)
-	if err != nil {
-		return err
-	}
-
-	return nil
-}
diff --git a/magefiles/utils/helm.go b/magefiles/utils/helm.go
index 677e322f5..cb8acae57 100644
--- a/magefiles/utils/helm.go
+++ b/magefiles/utils/helm.go
@@ -207,13 +207,6 @@ type IngressChartValue struct {
 		ExtraVolumes          []interface{} `yaml:"extraVolumes"`
 		ExtraInitContainers   []interface{} `yaml:"extraInitContainers"`
 		ExtraModules          []interface{} `yaml:"extraModules"`
-		Opentelemetry         struct {
-			Enabled                  bool   `yaml:"enabled"`
-			Image                    string `yaml:"image"`
-			ContainerSecurityContext struct {
-				AllowPrivilegeEscalation bool `yaml:"allowPrivilegeEscalation"`
-			} `yaml:"containerSecurityContext"`
-		} `yaml:"opentelemetry"`
 		AdmissionWebhooks struct {
 			Annotations          struct{}      `yaml:"annotations"`
 			Enabled              bool          `yaml:"enabled"`

From 45fc8860cfc1012c1025dbb2c474c34f3aa9b0f9 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 30 Sep 2024 10:26:04 +0200
Subject: [PATCH 1464/1641] Chart: Add `global.image.registry`. (#12028)

---
 charts/ingress-nginx/README.md                      |  4 +---
 .../job-patch/job-createSecret.yaml                 |  2 +-
 .../job-patch/job-patchWebhook.yaml                 |  2 +-
 .../templates/controller-daemonset.yaml             |  4 ++--
 .../templates/controller-deployment.yaml            |  4 ++--
 .../templates/default-backend-deployment.yaml       |  2 +-
 .../tests/controller-daemonset_test.yaml            | 11 +++++++++++
 .../tests/controller-deployment_test.yaml           | 10 ++++++++++
 .../tests/default-backend-deployment_test.yaml      | 11 +++++++++++
 charts/ingress-nginx/values.yaml                    | 13 +++++++++----
 10 files changed, 49 insertions(+), 14 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index f7ea20199..cd181f76e 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -255,7 +255,6 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.patch.image.digest | string | `"sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
-| controller.admissionWebhooks.patch.image.registry | string | `"registry.k8s.io"` |  |
 | controller.admissionWebhooks.patch.image.tag | string | `"v1.4.3"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
@@ -328,7 +327,6 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.readOnlyRootFilesystem | bool | `false` |  |
-| controller.image.registry | string | `"registry.k8s.io"` |  |
 | controller.image.runAsGroup | int | `82` | This value must not be changed using the official image. uid=101(www-data) gid=82(www-data) groups=82(www-data) |
 | controller.image.runAsNonRoot | bool | `true` |  |
 | controller.image.runAsUser | int | `101` | This value must not be changed using the official image. uid=101(www-data) gid=82(www-data) groups=82(www-data) |
@@ -491,7 +489,6 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.image.image | string | `"defaultbackend-amd64"` |  |
 | defaultBackend.image.pullPolicy | string | `"IfNotPresent"` |  |
 | defaultBackend.image.readOnlyRootFilesystem | bool | `true` |  |
-| defaultBackend.image.registry | string | `"registry.k8s.io"` |  |
 | defaultBackend.image.runAsGroup | int | `65534` |  |
 | defaultBackend.image.runAsNonRoot | bool | `true` |  |
 | defaultBackend.image.runAsUser | int | `65534` |  |
@@ -533,6 +530,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | defaultBackend.unhealthyPodEvictionPolicy | string | `""` | Eviction policy for unhealthy pods guarded by PodDisruptionBudget. Ref: https://kubernetes.io/blog/2023/01/06/unhealthy-pod-eviction-policy-for-pdbs/ |
 | defaultBackend.updateStrategy | object | `{}` | The update strategy to apply to the Deployment or DaemonSet # |
 | dhParam | string | `""` | A base64-encoded Diffie-Hellman parameter. This can be generated with: `openssl dhparam 4096 2> /dev/null | base64` # Ref: https://github.com/kubernetes/ingress-nginx/tree/main/docs/examples/customization/ssl-dh-param |
+| global.image.registry | string | `"registry.k8s.io"` | Registry host to pull images from. |
 | imagePullSecrets | list | `[]` | Optional array of imagePullSecrets containing private registry credentials # Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ |
 | namespaceOverride | string | `""` | Override the deployment namespace; defaults to .Release.Namespace |
 | portNamePrefix | string | `""` | Prefix for TCP and UDP ports names in ingress controller service # Some cloud providers, like Yandex Cloud may have a requirements for a port name regex to support cloud load balancer integration |
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
index 176616467..af3ea12a3 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
@@ -42,7 +42,7 @@ spec:
     {{- end }}
       containers:
         - name: create
-          {{- with .Values.controller.admissionWebhooks.patch.image }}
+          {{- with (merge .Values.controller.admissionWebhooks.patch.image .Values.global.image) }}
           image: {{ if .repository }}{{ .repository }}{{ else }}{{ .registry }}/{{ .image }}{{ end }}:{{ .tag }}{{ if .digest }}@{{ .digest }}{{ end }}
           {{- end }}
           imagePullPolicy: {{ .Values.controller.admissionWebhooks.patch.image.pullPolicy }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
index f7d44a24d..87dd2c251 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
@@ -42,7 +42,7 @@ spec:
     {{- end }}
       containers:
         - name: patch
-          {{- with .Values.controller.admissionWebhooks.patch.image }}
+          {{- with (merge .Values.controller.admissionWebhooks.patch.image .Values.global.image) }}
           image: {{ if .repository }}{{ .repository }}{{ else }}{{ .registry }}/{{ .image }}{{ end }}:{{ .tag }}{{ if .digest }}@{{ .digest }}{{ end }}
           {{- end }}
           imagePullPolicy: {{ .Values.controller.admissionWebhooks.patch.image.pullPolicy }}
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index b8f9c331c..fd1b13284 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -75,7 +75,7 @@ spec:
     {{- end }}
       containers:
         - name: {{ .Values.controller.containerName }}
-          {{- with .Values.controller.image }}
+          {{- with (merge .Values.controller.image .Values.global.image) }}
           image: {{ if .repository }}{{ .repository }}{{ else }}{{ .registry }}/{{ include "ingress-nginx.image" . }}{{ end }}:{{ .tag }}{{ include "ingress-nginx.imageDigest" . }}
           {{- end }}
           imagePullPolicy: {{ .Values.controller.image.pullPolicy }}
@@ -182,7 +182,7 @@ spec:
       {{- if .Values.controller.extraModules }}
         {{- range .Values.controller.extraModules }}
           {{- $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
+          {{- include "extraModules" (dict "name" .name "image" (merge .image $.Values.global.image) "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
         {{- end }}
       {{- end }}
     {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index 286ec06b3..cc41bfbc7 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -81,7 +81,7 @@ spec:
     {{- end }}
       containers:
         - name: {{ .Values.controller.containerName }}
-          {{- with .Values.controller.image }}
+          {{- with (merge .Values.controller.image .Values.global.image) }}
           image: {{ if .repository }}{{ .repository }}{{ else }}{{ .registry }}/{{ include "ingress-nginx.image" . }}{{ end }}:{{ .tag }}{{ include "ingress-nginx.imageDigest" . }}
           {{- end }}
           imagePullPolicy: {{ .Values.controller.image.pullPolicy }}
@@ -188,7 +188,7 @@ spec:
       {{- if .Values.controller.extraModules }}
         {{- range .Values.controller.extraModules }}
           {{- $containerSecurityContext := .containerSecurityContext | default $.Values.controller.containerSecurityContext }}
-          {{- include "extraModules" (dict "name" .name "image" .image "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
+          {{- include "extraModules" (dict "name" .name "image" (merge .image $.Values.global.image) "containerSecurityContext" $containerSecurityContext "resources" .resources) | nindent 8 }}
         {{- end }}
       {{- end }}
     {{- end }}
diff --git a/charts/ingress-nginx/templates/default-backend-deployment.yaml b/charts/ingress-nginx/templates/default-backend-deployment.yaml
index 6755e2378..f7d9de121 100644
--- a/charts/ingress-nginx/templates/default-backend-deployment.yaml
+++ b/charts/ingress-nginx/templates/default-backend-deployment.yaml
@@ -50,7 +50,7 @@ spec:
     {{- end }}
       containers:
         - name: {{ template "ingress-nginx.name" . }}-default-backend
-          {{- with .Values.defaultBackend.image }}
+          {{- with (merge .Values.defaultBackend.image .Values.global.image) }}
           image: {{ if .repository }}{{ .repository }}{{ else }}{{ .registry }}/{{ .image }}{{ end }}:{{ .tag }}{{ if .digest }}@{{ .digest }}{{ end }}
           {{- end }}
           imagePullPolicy: {{ .Values.defaultBackend.image.pullPolicy }}
diff --git a/charts/ingress-nginx/tests/controller-daemonset_test.yaml b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
index 0e7b79e95..c28c6ee0d 100644
--- a/charts/ingress-nginx/tests/controller-daemonset_test.yaml
+++ b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
@@ -148,6 +148,17 @@ tests:
           path: spec.template.spec.containers[0].securityContext.runAsGroup
           value: 1000
 
+  - it: should create a DaemonSet with a custom registry if `global.image.registry` is set
+    set:
+      global.image.registry: custom.registry.io
+      controller.kind: DaemonSet
+      controller.image.tag: v1.0.0-dev
+      controller.image.digest: sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].image
+          value: custom.registry.io/ingress-nginx/controller:v1.0.0-dev@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+
   - it: should create a DaemonSet with a custom registry if `controller.image.registry` is set
     set:
       controller.kind: DaemonSet
diff --git a/charts/ingress-nginx/tests/controller-deployment_test.yaml b/charts/ingress-nginx/tests/controller-deployment_test.yaml
index 1954b7ec9..2c57636fb 100644
--- a/charts/ingress-nginx/tests/controller-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/controller-deployment_test.yaml
@@ -169,6 +169,16 @@ tests:
           path: spec.template.spec.containers[0].securityContext.runAsGroup
           value: 1000
 
+  - it: should create a Deployment with a custom registry if `global.image.registry` is set
+    set:
+      global.image.registry: custom.registry.io
+      controller.image.tag: v1.0.0-dev
+      controller.image.digest: sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].image
+          value: custom.registry.io/ingress-nginx/controller:v1.0.0-dev@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+
   - it: should create a Deployment with a custom registry if `controller.image.registry` is set
     set:
       controller.image.registry: custom.registry.io
diff --git a/charts/ingress-nginx/tests/default-backend-deployment_test.yaml b/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
index e90e6f944..c3fa33968 100644
--- a/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
@@ -145,6 +145,17 @@ tests:
           path: spec.template.spec.containers[0].securityContext.runAsGroup
           value: 1000
 
+  - it: should create a Deployment with a custom registry if `global.image.registry` is set
+    set:
+      global.image.registry: custom.registry.io
+      defaultBackend.enabled: true
+      defaultBackend.image.tag: v1.0.0-dev
+      defaultBackend.image.digest: sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+    asserts:
+      - equal:
+          path: spec.template.spec.containers[0].image
+          value: custom.registry.io/defaultbackend-amd64:v1.0.0-dev@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+
   - it: should create a Deployment with a custom registry if `defaultBackend.image.registry` is set
     set:
       defaultBackend.enabled: true
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index dd3faba59..50a41f2f0 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -2,6 +2,11 @@
 ## Ref: https://github.com/kubernetes/ingress-nginx/blob/main/docs/user-guide/nginx-configuration/index.md
 ##
 
+global:
+  image:
+    # -- Registry host to pull images from.
+    registry: registry.k8s.io
+
 ## Overrides for generated resource names
 # See templates/_helpers.tpl
 # nameOverride:
@@ -21,7 +26,7 @@ controller:
   image:
     ## Keep false as default for now!
     chroot: false
-    registry: registry.k8s.io
+    # registry: registry.k8s.io
     image: ingress-nginx/controller
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
@@ -686,7 +691,7 @@ controller:
   extraModules: []
   # - name: mytestmodule
   #   image:
-  #     registry: registry.k8s.io
+  #     # registry: registry.k8s.io
   #     image: ingress-nginx/mytestmodule
   #     ## for backwards compatibility consider setting the full image url via the repository value below
   #     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
@@ -785,7 +790,7 @@ controller:
     patch:
       enabled: true
       image:
-        registry: registry.k8s.io
+        # registry: registry.k8s.io
         image: ingress-nginx/kube-webhook-certgen
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
@@ -942,7 +947,7 @@ defaultBackend:
   enabled: false
   name: defaultbackend
   image:
-    registry: registry.k8s.io
+    # registry: registry.k8s.io
     image: defaultbackend-amd64
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail

From b4d884e0d72d4b5717744341980a644d0bd87175 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 30 Sep 2024 09:38:03 +0100
Subject: [PATCH 1465/1641] Bump the all group with 2 updates (#12032)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/chart.yaml               |  2 +-
 .github/workflows/ci.yaml                  | 14 +++++++-------
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/golangci-lint.yml        |  2 +-
 .github/workflows/images.yaml              |  6 +++---
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  4 ++--
 .github/workflows/vulnerability-scans.yaml |  6 +++---
 .github/workflows/zz-tmpl-images.yaml      |  6 +++---
 .github/workflows/zz-tmpl-k8s-e2e.yaml     |  2 +-
 12 files changed, 26 insertions(+), 26 deletions(-)

diff --git a/.github/workflows/chart.yaml b/.github/workflows/chart.yaml
index b99374a90..a546801a0 100644
--- a/.github/workflows/chart.yaml
+++ b/.github/workflows/chart.yaml
@@ -45,7 +45,7 @@ jobs:
           git config --global user.email "${GITHUB_ACTOR}@users.noreply.github.com"
 
       - name: Checkout code
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 3b937594a..56a28f3d0 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -47,7 +47,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -81,7 +81,7 @@ jobs:
       (needs.changes.outputs.lua == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     steps:
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
       
       - name: Lint Lua
         uses: lunarmodules/luacheck@v1
@@ -95,7 +95,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     steps:
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
@@ -119,7 +119,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.docs == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     steps:
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
       - name: Set up Go
@@ -144,7 +144,7 @@ jobs:
         PLATFORMS: linux/amd64
     steps:
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
 
       - name: Get go version
         id: golangversion
@@ -241,7 +241,7 @@ jobs:
         run: helm plugin install https://github.com/helm-unittest/helm-unittest
 
       - name: Checkout code
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
         with:
           fetch-depth: 0
 
@@ -274,7 +274,7 @@ jobs:
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
 
       - name: Download cache
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 913b995bd..857411f79 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@5a2ce3f5b92ee19cbb1541a4984c76d921601d7c # v4.3.4
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index c1434c7b7..479c139aa 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index dca8f07db..93db7fbb7 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 38df87f78..5dd089e59 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -40,7 +40,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -141,7 +141,7 @@ jobs:
         k8s: [v1.28.13, v1.29.8, v1.30.4, v1.31.0]
     steps:
     - name: Checkout
-      uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+      uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
 
     - name: Get go version
       run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
@@ -175,7 +175,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm,linux/arm64,linux/s390x
     steps:
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
       - name: Set up QEMU
         uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf # v3.2.0
       - name: Set up Docker Buildx
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 2e1e01a3e..eb086538e 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 63b8c19bf..0ae13a2df 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index ad0317845..764126450 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
         with:
           persist-credentials: false
 
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8
+        uses: github/codeql-action/upload-sarif@461ef6c76dfe95d5c364de2f431ddbd31a417628 # v3.26.9
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index e35ee0a65..9b038de98 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
 
       - shell: bash
         id: test
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8
+        uses: github/codeql-action/upload-sarif@461ef6c76dfe95d5c364de2f431ddbd31a417628 # v3.26.9
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository
diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index 6d5a4ef17..2efc039d6 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -31,7 +31,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -48,7 +48,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
 
       - name: Build
         run: |
@@ -67,7 +67,7 @@ jobs:
       PLATFORMS: ${{ inputs.platforms-publish }}
     steps:
     - name: Checkout
-      uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+      uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
 
     - name: Login to GitHub Container Registry
       uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 20106cc95..f1b6bb242 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -20,7 +20,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
 
       - name: cache
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8

From cb1dcb3e550d95563798ba06beb4281962d27933 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 30 Sep 2024 14:22:02 +0200
Subject: [PATCH 1466/1641] GitHub: Improve Dependabot. (#12033)

---
 .github/dependabot.yml | 54 ++++++++++++++++++++++--------------------
 1 file changed, 28 insertions(+), 26 deletions(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 69d1ba161..deb434675 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -1,33 +1,7 @@
----
 version: 2
 updates:
-  - package-ecosystem: "gomod"
-    directory: "/"
-    schedule:
-      interval: "weekly"
-    labels:
-      - "area/dependency"
-      - "release-note-none"
-      - "ok-to-test"
-    groups:
-      all:
-        update-types:
-          - "patch"
   - package-ecosystem: "github-actions"
     directory: "/"
-    schedule:
-      interval: "weekly"
-    labels:
-      - "area/dependency"
-      - "release-note-none"
-      - "ok-to-test"
-    groups:
-      all:
-        update-types:
-          - "minor"
-          - "patch"
-  - package-ecosystem: "docker"
-    directory: "/images"
     schedule:
       interval: "weekly"
     labels:
@@ -39,3 +13,31 @@ updates:
         update-types:
           - "minor"
           - "patch"
+  - package-ecosystem: "docker"
+    directories:
+      - "**/rootfs"
+    schedule:
+      interval: "weekly"
+    labels:
+      - "area/dependency"
+      - "release-note-none"
+      - "ok-to-test"
+    groups:
+      docker:
+        update-types:
+          - "minor"
+          - "patch"
+  - package-ecosystem: "gomod"
+    directories:
+      - "/"
+      - "**/rootfs"
+    schedule:
+      interval: "weekly"
+    labels:
+      - "area/dependency"
+      - "release-note-none"
+      - "ok-to-test"
+    groups:
+      go:
+        update-types:
+          - "patch"

From f061a9acbf200e26de0c3d78dbdf7c24ae8f193b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 30 Sep 2024 13:28:03 +0100
Subject: [PATCH 1467/1641] Bump github.com/prometheus/client_golang from
 1.11.1 to 1.20.4 in /images/custom-error-pages/rootfs (#12040)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 images/custom-error-pages/rootfs/go.mod |  18 +--
 images/custom-error-pages/rootfs/go.sum | 161 ++++--------------------
 2 files changed, 31 insertions(+), 148 deletions(-)

diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 34363c50a..bd24d4e1c 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -2,16 +2,16 @@ module k8s.io/ingress-nginx/custom-error-pages
 
 go 1.22.7
 
-require github.com/prometheus/client_golang v1.11.1
+require github.com/prometheus/client_golang v1.20.4
 
 require (
 	github.com/beorn7/perks v1.0.1 // indirect
-	github.com/cespare/xxhash/v2 v2.1.1 // indirect
-	github.com/golang/protobuf v1.5.0 // indirect
-	github.com/matttproud/golang_protobuf_extensions v1.0.1 // indirect
-	github.com/prometheus/client_model v0.2.0 // indirect
-	github.com/prometheus/common v0.26.0 // indirect
-	github.com/prometheus/procfs v0.6.0 // indirect
-	golang.org/x/sys v0.1.0 // indirect
-	google.golang.org/protobuf v1.33.0 // indirect
+	github.com/cespare/xxhash/v2 v2.3.0 // indirect
+	github.com/klauspost/compress v1.17.9 // indirect
+	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
+	github.com/prometheus/client_model v0.6.1 // indirect
+	github.com/prometheus/common v0.55.0 // indirect
+	github.com/prometheus/procfs v0.15.1 // indirect
+	golang.org/x/sys v0.22.0 // indirect
+	google.golang.org/protobuf v1.34.2 // indirect
 )
diff --git a/images/custom-error-pages/rootfs/go.sum b/images/custom-error-pages/rootfs/go.sum
index 99c959a36..a228b18fb 100644
--- a/images/custom-error-pages/rootfs/go.sum
+++ b/images/custom-error-pages/rootfs/go.sum
@@ -1,141 +1,24 @@
-cloud.google.com/go v0.34.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
-github.com/alecthomas/template v0.0.0-20160405071501-a0175ee3bccc/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
-github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751/go.mod h1:LOuyumcjzFXgccqObfd/Ljyb9UuFJ6TxHnclSeseNhc=
-github.com/alecthomas/units v0.0.0-20151022065526-2efee857e7cf/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
-github.com/alecthomas/units v0.0.0-20190717042225-c3de453c63f4/go.mod h1:ybxpYRFXyAe+OPACYpWeL0wqObRcbAqCMya13uyzqw0=
-github.com/alecthomas/units v0.0.0-20190924025748-f65c72e2690d/go.mod h1:rBZYJk541a8SKzHPHnH3zbiI+7dagKZ0cgpgrD7Fyho=
-github.com/beorn7/perks v0.0.0-20180321164747-3a771d992973/go.mod h1:Dwedo/Wpr24TaqPxmxbtue+5NUziq4I4S80YR8gNf3Q=
-github.com/beorn7/perks v1.0.0/go.mod h1:KWe93zE9D1o94FZ5RNwFwVgaQK1VOXiVxmqh+CedLV8=
 github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM=
 github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6rlkpw=
-github.com/cespare/xxhash/v2 v2.1.1 h1:6MnRN8NT7+YBpUIWxHtefFZOKTAPgGjpQSxqLNn0+qY=
-github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
-github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/go-kit/kit v0.8.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
-github.com/go-kit/kit v0.9.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
-github.com/go-kit/log v0.1.0/go.mod h1:zbhenjAZHb184qTLMA9ZjW7ThYL0H2mk7Q6pNt4vbaY=
-github.com/go-logfmt/logfmt v0.3.0/go.mod h1:Qt1PoO58o5twSAckw1HlFXLmHsOX5/0LbT9GBnD5lWE=
-github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V4qmtdjCk=
-github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A=
-github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
-github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
-github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
-github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
-github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
-github.com/golang/protobuf v1.4.0-rc.1/go.mod h1:ceaxUfeHdC40wWswd/P6IGgMaK3YpKi5j83Wpe3EHw8=
-github.com/golang/protobuf v1.4.0-rc.1.0.20200221234624-67d41d38c208/go.mod h1:xKAWHe0F5eneWXFV3EuXVDTCmh+JuBKY0li0aMyXATA=
-github.com/golang/protobuf v1.4.0-rc.2/go.mod h1:LlEzMj4AhA7rCAGe4KMBDvJI+AwstrUpVNzEA03Pprs=
-github.com/golang/protobuf v1.4.0-rc.4.0.20200313231945-b860323f09d0/go.mod h1:WU3c8KckQ9AFe+yFwt9sWVRKCVIyN9cPHBJSNnbL67w=
-github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvqG2KuDX0=
-github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
-github.com/golang/protobuf v1.4.3/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
-github.com/golang/protobuf v1.5.0 h1:LUVKkCeviFUMKqHa4tXIIij/lbhnMbP7Fn5wKdKkRh4=
-github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
-github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
-github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
-github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.4/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.5 h1:Khx7svrCpmxxtHBq5j2mp/xVjsi8hQMfNLvJFAlrGgU=
-github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/jpillora/backoff v1.0.0/go.mod h1:J/6gKK9jxlEcS3zixgDgUAsiuZ7yrSoa/FX5e0EB2j4=
-github.com/json-iterator/go v1.1.6/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
-github.com/json-iterator/go v1.1.10/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
-github.com/json-iterator/go v1.1.11/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
-github.com/julienschmidt/httprouter v1.2.0/go.mod h1:SYymIcj16QtmaHHD7aYtjjsJG7VTCxuUUipMqKk8s4w=
-github.com/julienschmidt/httprouter v1.3.0/go.mod h1:JR6WtHb+2LUe8TCKY3cZOxFyyO8IZAc4RVcycCCAKdM=
-github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
-github.com/konsorten/go-windows-terminal-sequences v1.0.3/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
-github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515/go.mod h1:+0opPa2QZZtGFBFZlji/RkVcI2GknAs/DXo4wKdlNEc=
-github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
-github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
-github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
-github.com/matttproud/golang_protobuf_extensions v1.0.1 h1:4hp9jkHxhMHkqkrB3Ix0jegS5sx/RkqARlsWZ6pIwiU=
-github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0=
-github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
-github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
-github.com/modern-go/reflect2 v0.0.0-20180701023420-4b7aa43c6742/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0=
-github.com/modern-go/reflect2 v1.0.1/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0=
-github.com/mwitkow/go-conntrack v0.0.0-20161129095857-cc309e4a2223/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
-github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
-github.com/pkg/errors v0.8.0/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
-github.com/pkg/errors v0.8.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
-github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
-github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXPKyh/dDVn+NZz0KFw=
-github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo=
-github.com/prometheus/client_golang v1.7.1/go.mod h1:PY5Wy2awLA44sXw4AOSfFBetzPP4j5+D6mVACh+pe2M=
-github.com/prometheus/client_golang v1.11.1 h1:+4eQaD7vAZ6DsfsxB15hbE0odUjGI5ARs9yskGu1v4s=
-github.com/prometheus/client_golang v1.11.1/go.mod h1:Z6t4BnS23TR94PD6BsDNk8yVqroYurpAkEiz0P2BEV0=
-github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo=
-github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/client_model v0.2.0 h1:uq5h0d+GuxiXLJLNABMgp2qUWDPiLvgCzz2dUR+/W/M=
-github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4=
-github.com/prometheus/common v0.10.0/go.mod h1:Tlit/dnDKsSWFlCLTWaA1cyBgKHSMdTB80sz/V91rCo=
-github.com/prometheus/common v0.26.0 h1:iMAkS2TDoNWnKM+Kopnx/8tnEStIfpYA0ur0xQzzhMQ=
-github.com/prometheus/common v0.26.0/go.mod h1:M7rCNAaPfAosfx8veZJCuw84e35h3Cfd9VFqTh1DIvc=
-github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk=
-github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA=
-github.com/prometheus/procfs v0.1.3/go.mod h1:lV6e/gmhEcM9IjHGsFOCxxuZ+z1YqCvr4OA4YeYWdaU=
-github.com/prometheus/procfs v0.6.0 h1:mxy4L2jP6qMonqmq+aTtOx1ifVWUgG/TAmntgbh3xv4=
-github.com/prometheus/procfs v0.6.0/go.mod h1:cz+aTbrPOrUb4q7XlbU9ygM+/jj0fzG6c1xBZuNvfVA=
-github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
-github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE=
-github.com/sirupsen/logrus v1.6.0/go.mod h1:7uNnSEd1DgxDLC74fIahvMZmmYsHGZGEOFrfsX/uA88=
-github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
-github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
-github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
-golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
-golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
-golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200625001655-4c5254603344/go.mod h1:/O7V0waA8r7cgGh81Ro3o1hOxt32SMVPicZroKQ2sZA=
-golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
-golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20201207232520-09787c993a3a/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20181116152217-5ac8a444bdc5/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190422165155-953cdadca894/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200106162015-b016eb3dc98e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200615200032-f1bc736245b1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200625212154-ddb9806d33ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210124154548-22da62e12c0c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210603081109-ebe580a85c40/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.1.0 h1:kunALQeHf1/185U1i0GOB/fy1IPRDDpuoOOqRReG57U=
-golang.org/x/sys v0.1.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
-golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
-golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543 h1:E7g+9GITq07hpfrRu66IVDexMakfv52eLZ2CXBWiKr4=
-golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
-google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
-google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
-google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
-google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miEFZTKqfCUM6K7xSMQL9OKL/b6hQv+e19PK+JZNE=
-google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo=
-google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
-google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
-google.golang.org/protobuf v1.33.0 h1:uNO2rsAINq/JlFpSdYEKIZ0uKD/R9cpdv0T+yoGwGmI=
-google.golang.org/protobuf v1.33.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
-gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
-gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.5/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.3.0/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
+github.com/cespare/xxhash/v2 v2.3.0 h1:UL815xU9SqsFlibzuggzjXhog7bL6oX9BbNZnL2UFvs=
+github.com/cespare/xxhash/v2 v2.3.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
+github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
+github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
+github.com/klauspost/compress v1.17.9 h1:6KIumPrER1LHsvBVuDa0r5xaG0Es51mhhB9BQB2qeMA=
+github.com/klauspost/compress v1.17.9/go.mod h1:Di0epgTjJY877eYKx5yC51cX2A2Vl2ibi7bDH9ttBbw=
+github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0SNc=
+github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
+github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq1c1nUAm88MOHcQC9l5mIlSMApZMrHA=
+github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
+github.com/prometheus/client_golang v1.20.4 h1:Tgh3Yr67PaOv/uTqloMsCEdeuFTatm5zIq5+qNN23vI=
+github.com/prometheus/client_golang v1.20.4/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
+github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
+github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
+github.com/prometheus/common v0.55.0 h1:KEi6DK7lXW/m7Ig5i47x0vRzuBsHuvJdi5ee6Y3G1dc=
+github.com/prometheus/common v0.55.0/go.mod h1:2SECS4xJG1kd8XF9IcM1gMX6510RAEL65zxzNImwdc8=
+github.com/prometheus/procfs v0.15.1 h1:YagwOFzUgYfKKHX6Dr+sHT7km/hxC76UB0learggepc=
+github.com/prometheus/procfs v0.15.1/go.mod h1:fB45yRUv8NstnjriLhBQLuOUt+WW4BsoGhij/e3PBqk=
+golang.org/x/sys v0.22.0 h1:RI27ohtqKCnwULzJLqkv897zojh5/DwS/ENaMzUOaWI=
+golang.org/x/sys v0.22.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+google.golang.org/protobuf v1.34.2 h1:6xV6lTsCfpGD21XK49h7MhtcApnLqkfYgPcdHftf6hg=
+google.golang.org/protobuf v1.34.2/go.mod h1:qYOHts0dSfpeUzUFpOMr/WGzszTmLH+DiWniOlNbLDw=

From 1d0025372c26ee260578042b5ef130f421849cf9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 30 Sep 2024 13:30:02 +0100
Subject: [PATCH 1468/1641] Bump k8s.io/apimachinery from 0.23.1 to 0.31.1 in
 /images/ext-auth-example-authsvc/rootfs (#12041)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 images/ext-auth-example-authsvc/rootfs/go.mod |   4 +-
 images/ext-auth-example-authsvc/rootfs/go.sum | 219 +-----------------
 2 files changed, 6 insertions(+), 217 deletions(-)

diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index 366e19639..908da4b2e 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -2,6 +2,6 @@ module example.com/authsvc
 
 go 1.22.7
 
-require k8s.io/apimachinery v0.23.1
+require k8s.io/apimachinery v0.31.1
 
-require github.com/google/uuid v1.1.2 // indirect
+require github.com/google/uuid v1.6.0 // indirect
diff --git a/images/ext-auth-example-authsvc/rootfs/go.sum b/images/ext-auth-example-authsvc/rootfs/go.sum
index 6e3fab295..a3b9e420d 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.sum
+++ b/images/ext-auth-example-authsvc/rootfs/go.sum
@@ -1,215 +1,4 @@
-cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
-github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
-github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
-github.com/PuerkitoBio/purell v1.1.1/go.mod h1:c11w/QuzBsJSee3cPx9rAFu61PvFxuPbtSwDGJws/X0=
-github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578/go.mod h1:uGdkoq3SwY9Y+13GIhn11/XLaGBb4BfwItxLd5jeuXE=
-github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
-github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
-github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
-github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E=
-github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815/go.mod h1:WwZ+bS3ebgob9U8Nd0kOddGdZWjyMGR8Wziv+TBNwSE=
-github.com/elazarl/goproxy v0.0.0-20180725130230-947c36da3153/go.mod h1:/Zj4wYkgs4iZTTu3o/KG3Itv/qCCa8VVMlb3i9OVuzc=
-github.com/emicklei/go-restful v0.0.0-20170410110728-ff4f55a20633/go.mod h1:otzb+WCGbkyDHkqmQmT5YD2WR4BBwUdeQoFo8l/7tVs=
-github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
-github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
-github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
-github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
-github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
-github.com/getkin/kin-openapi v0.76.0/go.mod h1:660oXbgy5JFMKreazJaQTw7o+X00qeSyhcnluiMv+Xg=
-github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
-github.com/go-logr/logr v0.1.0/go.mod h1:ixOQHD9gLJUVQQ2ZOR7zLEifBX6tGkNJF4QyIY7sIas=
-github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
-github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
-github.com/go-openapi/jsonpointer v0.19.3/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
-github.com/go-openapi/jsonpointer v0.19.5/go.mod h1:Pl9vOtqEWErmShwVjC8pYs9cog34VGT37dQOVbmoatg=
-github.com/go-openapi/jsonreference v0.19.3/go.mod h1:rjx6GuL8TTa9VaixXglHmQmIL98+wF9xc8zWvFonSJ8=
-github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh66Z9tfKk=
-github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
-github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
-github.com/golang/mock v1.1.1/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
-github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
-github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
-github.com/golang/protobuf v1.4.0-rc.1/go.mod h1:ceaxUfeHdC40wWswd/P6IGgMaK3YpKi5j83Wpe3EHw8=
-github.com/golang/protobuf v1.4.0-rc.1.0.20200221234624-67d41d38c208/go.mod h1:xKAWHe0F5eneWXFV3EuXVDTCmh+JuBKY0li0aMyXATA=
-github.com/golang/protobuf v1.4.0-rc.2/go.mod h1:LlEzMj4AhA7rCAGe4KMBDvJI+AwstrUpVNzEA03Pprs=
-github.com/golang/protobuf v1.4.0-rc.4.0.20200313231945-b860323f09d0/go.mod h1:WU3c8KckQ9AFe+yFwt9sWVRKCVIyN9cPHBJSNnbL67w=
-github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvqG2KuDX0=
-github.com/golang/protobuf v1.4.1/go.mod h1:U8fpvMrcmy5pZrNK1lt4xCsGvpyWQ/VVv6QDs8UjoX8=
-github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
-github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
-github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
-github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
-github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
-github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
-github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/uuid v1.1.2 h1:EVhdT+1Kseyi1/pUmXKaFxYsDNy9RQYkMWRH68J/W7Y=
-github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-github.com/googleapis/gnostic v0.5.1/go.mod h1:6U4PtQXGIEt/Z3h5MAT7FNofLnw9vXk2cUuW7uA/OeU=
-github.com/googleapis/gnostic v0.5.5/go.mod h1:7+EbHbldMins07ALC74bsA81Ovc97DwqyJO1AENw9kA=
-github.com/gorilla/mux v1.8.0/go.mod h1:DVbg23sWSpFRCP0SfiEN6jmj59UnW/n46BH5rLB71So=
-github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
-github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
-github.com/json-iterator/go v1.1.6/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
-github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
-github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8=
-github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
-github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
-github.com/kr/pretty v0.2.0/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
-github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
-github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
-github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
-github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
-github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
-github.com/mitchellh/mapstructure v1.1.2/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
-github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
-github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
-github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
-github.com/modern-go/reflect2 v1.0.1/go.mod h1:bx2lNnkwVCuqBIxFjflWJWanXIb3RllmbCylyMrvgv0=
-github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
-github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
-github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
-github.com/niemeyer/pretty v0.0.0-20200227124842-a10e7caefd8e/go.mod h1:zD1mROLANZcx1PVRCS0qkT7pwLkGfwJo4zjcN/Tysno=
-github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
-github.com/onsi/ginkgo v0.0.0-20170829012221-11459a886d9c/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
-github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
-github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
-github.com/onsi/ginkgo v1.14.0/go.mod h1:iSB4RoI2tjJc9BBv4NKIKWKya62Rps+oPG/Lv9klQyY=
-github.com/onsi/gomega v0.0.0-20170829124025-dcabb60a477c/go.mod h1:C1qb7wdrVGGVU+Z6iS04AVkA3Q65CEZX59MT0QO5uiA=
-github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
-github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
-github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
-github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
-github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
-github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
-github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
-github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
-github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
-github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
-github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
-github.com/yuin/goldmark v1.3.5/go.mod h1:mwnBkeHKe2W/ZEtQ+71ViKU8L12m81fl3OWwC1Zlc8k=
-golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
-golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
-golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
-golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
-golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU=
-golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
-golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.4.2/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
-golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20190827160401-ba9fcec4b297/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
-golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20210405180319-a5a99cb37ef4/go.mod h1:p54w0d4576C0XHj96bSt6lcn1PtDYWL6XObtHCRCNQM=
-golang.org/x/net v0.0.0-20211209124913-491a49abca63/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
-golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
-golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20210220032951-036812b2e83c/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20190904154756-749cb33beabd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20191120155948-bd437916bb0e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200519105757-fe76b779f299/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210330210617-4fbd30eecc44/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20210831042530-f4d43177bf5e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
-golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
-golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.5/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
-golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
-golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
-golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
-golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
-golang.org/x/tools v0.0.0-20190524140312-2c0ae7006135/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
-golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
-golang.org/x/tools v0.0.0-20200505023115-26f46d2f7ef8/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
-golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
-golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk=
-golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
-google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
-google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc=
-google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
-google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013/go.mod h1:NbSheEEYHJ7i3ixzK3sjbqSGDJWnxyFXZblF3eUsNvo=
-google.golang.org/genproto v0.0.0-20201019141844-1ed22bb0c154/go.mod h1:FWY/as6DDZQgahTzZj3fqbO1CbirC29ZNUFHwi0/+no=
-google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
-google.golang.org/grpc v1.23.0/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg=
-google.golang.org/grpc v1.27.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk=
-google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
-google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0=
-google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM=
-google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miEFZTKqfCUM6K7xSMQL9OKL/b6hQv+e19PK+JZNE=
-google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo=
-google.golang.org/protobuf v1.22.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
-google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
-google.golang.org/protobuf v1.23.1-0.20200526195155-81db48ad09cc/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
-google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGjtUeSXeh4=
-google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
-google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.27.1/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/check.v1 v1.0.0-20200227125254-8fa46927fb4f/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
-gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
-gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
-gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
-gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.3.0/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
-gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-gopkg.in/yaml.v3 v3.0.0-20200615113413-eeeca48fe776/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
-honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
-k8s.io/apimachinery v0.23.1 h1:sfBjlDFwj2onG0Ijx5C+SrAoeUscPrmghm7wHP+uXlo=
-k8s.io/apimachinery v0.23.1/go.mod h1:SADt2Kl8/sttJ62RRsi9MIV4o8f5S3coArm0Iu3fBno=
-k8s.io/gengo v0.0.0-20210813121822-485abfe95c7c/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
-k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE=
-k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
-k8s.io/klog/v2 v2.30.0/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
-k8s.io/kube-openapi v0.0.0-20211115234752-e816edb12b65/go.mod h1:sX9MT8g7NVZM5lVL/j8QyCCJe8YSMW30QvGZWaCIDIk=
-k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
-k8s.io/utils v0.0.0-20210930125809-cb0fa318a74b/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
-sigs.k8s.io/json v0.0.0-20211020170558-c049b76a60c6/go.mod h1:p4QtZmO4uMYipTQNzagwnNoseA6OxSUutVw05NhYDRs=
-sigs.k8s.io/structured-merge-diff/v4 v4.0.2/go.mod h1:bJZC9H9iH24zzfZ/41RGcq60oK1F7G282QMXDPYydCw=
-sigs.k8s.io/structured-merge-diff/v4 v4.1.2/go.mod h1:j/nl6xW8vLS49O8YvXW1ocPhZawJtm+Yrr7PPRQ0Vg4=
-sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=
+github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
+github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+k8s.io/apimachinery v0.31.1 h1:mhcUBbj7KUjaVhyXILglcVjuS4nYXiwC+KKFBgIVy7U=
+k8s.io/apimachinery v0.31.1/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=

From d89be7ad65310c5888dfc8934662aa9485238602 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 30 Sep 2024 13:32:02 +0100
Subject: [PATCH 1469/1641] Bump k8s.io/kube-aggregator from 0.29.3 to 0.31.1
 in /images/kube-webhook-certgen/rootfs (#12043)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 images/kube-webhook-certgen/rootfs/go.mod | 29 ++++----
 images/kube-webhook-certgen/rootfs/go.sum | 83 +++++++++--------------
 2 files changed, 48 insertions(+), 64 deletions(-)

diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 9bbb5b391..c9f1c827c 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -5,17 +5,17 @@ go 1.22.7
 require (
 	github.com/onrik/logrus v0.11.0
 	github.com/sirupsen/logrus v1.9.3
-	github.com/spf13/cobra v1.8.0
-	k8s.io/api v0.29.3
-	k8s.io/apimachinery v0.29.3
-	k8s.io/client-go v0.29.3
-	k8s.io/kube-aggregator v0.29.3
+	github.com/spf13/cobra v1.8.1
+	k8s.io/api v0.31.1
+	k8s.io/apimachinery v0.31.1
+	k8s.io/client-go v0.31.1
+	k8s.io/kube-aggregator v0.31.1
 )
 
 require (
-	github.com/davecgh/go-spew v1.1.1 // indirect
+	github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc // indirect
 	github.com/emicklei/go-restful/v3 v3.11.3 // indirect
-	github.com/evanphx/json-patch v5.9.0+incompatible // indirect
+	github.com/fxamacker/cbor/v2 v2.7.0 // indirect
 	github.com/go-logr/logr v1.4.2 // indirect
 	github.com/go-openapi/jsonpointer v0.20.2 // indirect
 	github.com/go-openapi/jsonreference v0.20.4 // indirect
@@ -23,6 +23,7 @@ require (
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/protobuf v1.5.4 // indirect
 	github.com/google/gnostic-models v0.6.8 // indirect
+	github.com/google/go-cmp v0.6.0 // indirect
 	github.com/google/gofuzz v1.2.0 // indirect
 	github.com/google/uuid v1.6.0 // indirect
 	github.com/imdario/mergo v0.3.16 // indirect
@@ -37,21 +38,21 @@ require (
 	github.com/onsi/gomega v1.34.1 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
-	github.com/stretchr/testify v1.9.0 // indirect
+	github.com/x448/float16 v0.8.4 // indirect
 	golang.org/x/net v0.28.0 // indirect
-	golang.org/x/oauth2 v0.18.0 // indirect
+	golang.org/x/oauth2 v0.21.0 // indirect
 	golang.org/x/sys v0.24.0 // indirect
 	golang.org/x/term v0.23.0 // indirect
 	golang.org/x/text v0.17.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
-	google.golang.org/appengine v1.6.8 // indirect
-	google.golang.org/protobuf v1.34.1 // indirect
+	google.golang.org/protobuf v1.34.2 // indirect
+	gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
-	k8s.io/klog/v2 v2.120.1 // indirect
-	k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b // indirect
-	k8s.io/utils v0.0.0-20240102154912-e7106e64919e // indirect
+	k8s.io/klog/v2 v2.130.1 // indirect
+	k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 // indirect
+	k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 // indirect
 	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
 	sigs.k8s.io/structured-merge-diff/v4 v4.4.1 // indirect
 	sigs.k8s.io/yaml v1.4.0 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index f96347108..da633e6db 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -1,11 +1,12 @@
-github.com/cpuguy83/go-md2man/v2 v2.0.3/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
+github.com/cpuguy83/go-md2man/v2 v2.0.4/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc h1:U9qPSI2PIWSS1VwoXQT9A3Wy9MM3WgvqSxFWenqJduM=
+github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/emicklei/go-restful/v3 v3.11.3 h1:yagOQz/38xJmcNeZJtrUcKjkHRltIaIFXKWeG1SkWGE=
 github.com/emicklei/go-restful/v3 v3.11.3/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
-github.com/evanphx/json-patch v5.9.0+incompatible h1:fBXyNpNMuTTDdquAq/uisOr2lShz4oaXpDTX2bLe7ls=
-github.com/evanphx/json-patch v5.9.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
+github.com/fxamacker/cbor/v2 v2.7.0 h1:iM5WgngdRBanHcxugY4JySA0nk1wZorNOpTgCMedv5E=
+github.com/fxamacker/cbor/v2 v2.7.0/go.mod h1:pxXPTn3joSm21Gbwsv0w9OSA2y1HFR9qXEeXQVeNoDQ=
 github.com/go-logr/logr v1.4.2 h1:6pFjapn8bFcIbiKo3XT4j/BhANplGihG6tvd+8rYgrY=
 github.com/go-logr/logr v1.4.2/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
 github.com/go-openapi/jsonpointer v0.20.2 h1:mQc3nmndL8ZBzStEo3JYF8wzmeWffDH4VbXz58sAx6Q=
@@ -14,18 +15,14 @@ github.com/go-openapi/jsonreference v0.20.4 h1:bKlDxQxQJgwpUSgOENiMPzCTBVuc7vTdX
 github.com/go-openapi/jsonreference v0.20.4/go.mod h1:5pZJyJP2MnYCpoeoMAql78cCHauHj0V9Lhc506VOpw4=
 github.com/go-openapi/swag v0.22.9 h1:XX2DssF+mQKM2DHsbgZK74y/zj4mo9I99+89xUmuZCE=
 github.com/go-openapi/swag v0.22.9/go.mod h1:3/OXnFfnMAwBD099SwYRk7GD3xOrr1iL7d/XNLXVVwE=
-github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 h1:tfuBGBXKqDEevZMzYi5KSi8KkcZtzBcTgAUUtapy0OI=
 github.com/go-task/slim-sprig/v3 v3.0.0 h1:sUs3vkvUymDpBKi3qH1YSqBQk9+9D/8M2mN1vB6EwHI=
 github.com/go-task/slim-sprig/v3 v3.0.0/go.mod h1:W848ghGpv3Qj3dhTPRyJypKRiqCdHZiAzKg9hl15HA8=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
-github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
-github.com/golang/protobuf v1.5.2/go.mod h1:XVQd3VNwM+JqD3oG2Ue2ip4fOMUkwXdXDdiuN0vRsmY=
 github.com/golang/protobuf v1.5.4 h1:i7eJL8qZTpSEXOPTxNKhASYpMn+8e5Q6AdndVa1dWek=
 github.com/golang/protobuf v1.5.4/go.mod h1:lnTiLA8Wa4RWRcIUkrtSVa5nRhsEGBg48fD6rSs7xps=
 github.com/google/gnostic-models v0.6.8 h1:yo/ABAfM5IMRsS1VnXjTBvUb61tFIHozhlYvRgGre9I=
 github.com/google/gnostic-models v0.6.8/go.mod h1:5n7qKqH0f5wFt+aWF8CW6pZLLNOfYuF5OpfBSENuI8U=
-github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.9/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
 github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
@@ -67,15 +64,16 @@ github.com/onsi/gomega v1.34.1 h1:EUMJIKUjM8sKjYbtxQI9A4z2o+rruxnzNvpknOXie6k=
 github.com/onsi/gomega v1.34.1/go.mod h1:kU1QgUvBDLXBJq618Xvm2LUX6rSAfRaFRTcdOeDLwwY=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
-github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/rogpeppe/go-internal v1.11.0 h1:cWPaGQEPrBb5/AsnsZesgZZ9yb1OQ+GOISoDNXVBh4M=
-github.com/rogpeppe/go-internal v1.11.0/go.mod h1:ddIwULY96R17DhadqLgMfk9H9tvdUzkipdSkR5nkCZA=
+github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 h1:Jamvg5psRIccs7FGNTlIRMkT8wgtp5eCXdBlqhYGL6U=
+github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/rogpeppe/go-internal v1.12.0 h1:exVL4IDcn6na9z1rAb56Vxr+CgyK3nn3O+epU5NdKM8=
+github.com/rogpeppe/go-internal v1.12.0/go.mod h1:E+RYuTGaKKdloAfM02xzb0FW3Paa99yedzYV+kq4uf4=
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ=
 github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
-github.com/spf13/cobra v1.8.0 h1:7aJaZx1B85qltLMc546zn58BxxfZdR/W22ej9CFoEf0=
-github.com/spf13/cobra v1.8.0/go.mod h1:WXLWApfZ71AjXPya3WOlMsY9yMs7YeiHhFVlvLyhcho=
+github.com/spf13/cobra v1.8.1 h1:e5/vxKd/rZsfSJMUX1agtjeTDf+qv1/JdBF8gg5k9ZM=
+github.com/spf13/cobra v1.8.1/go.mod h1:wHxEcudfqmLYa8iTfL+OuZPbBZkmvliBWKIezN3kD9Y=
 github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
@@ -89,50 +87,38 @@ github.com/tidwall/match v1.1.1 h1:+Ho715JplO36QYgwN9PGYNhgZvoUSc9X2c80KVTi+GA=
 github.com/tidwall/match v1.1.1/go.mod h1:eRSPERbgtNPcGhD8UCthc6PmLEQXEWd3PRB5JTxsfmM=
 github.com/tidwall/pretty v1.2.0 h1:RWIZEg2iJ8/g6fDDYzMpobmaoGh5OLl4AXtGUGPcqCs=
 github.com/tidwall/pretty v1.2.0/go.mod h1:ITEVvHYasfjBbM0u2Pg8T2nJnzm8xPwvNhhsoaGGjNU=
+github.com/x448/float16 v0.8.4 h1:qLwI1I70+NjRFUR3zs1JPUCgaCXSh3SW62uAKT1mSBM=
+github.com/x448/float16 v0.8.4/go.mod h1:14CWIYCyZA/cWjXOioeEpHeN/83MdbZDRQHoFcYsOfg=
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
-github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 h1:2dVuKD2vS7b0QIHQbpyTISPd0LeHDbnYEryqj5Q1ug8=
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbRXRL/OHtkFuWGRjvuhBJpk2IlY=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
 golang.org/x/net v0.28.0 h1:a9JDOJc5GMUJ0+UDqmLT86WiEy7iWyIhz8gz8E4e5hE=
 golang.org/x/net v0.28.0/go.mod h1:yqtgsTWOOnlGLG9GFRrK3++bGOUEkNBoHZc8MEDWPNg=
-golang.org/x/oauth2 v0.18.0 h1:09qnuIAgzdx1XplqJvW6CQqMCtGZykZWcXzPMPUusvI=
-golang.org/x/oauth2 v0.18.0/go.mod h1:Wf7knwG0MPoWIMMBgFlEaSUDaKskp0dCfrlJRJXbBi8=
+golang.org/x/oauth2 v0.21.0 h1:tsimM75w1tF/uws5rbeHzIWxEqElMehnc+iW793zsZs=
+golang.org/x/oauth2 v0.21.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.24.0 h1:Twjiwq9dn6R1fQcyiK+wQyHWfaz/BJB+YIpzU/Cv3Xg=
 golang.org/x/sys v0.24.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.23.0 h1:F6D4vR+EHoL9/sWAWgAR1H2DcHr4PareCbAaCo1RpuU=
 golang.org/x/term v0.23.0/go.mod h1:DgV24QBUrK6jhZXl+20l6UWznPlwAHm1Q1mGHtydmSk=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
-golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
 golang.org/x/text v0.17.0 h1:XtiM5bkSOt+ewxlOE/aE/AKEHibwj/6gvWMl9Rsh0Qc=
 golang.org/x/text v0.17.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
 golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
@@ -141,22 +127,19 @@ golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGm
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
 golang.org/x/tools v0.24.0 h1:J1shsA93PJUEVaUSaay7UXAyE8aimq3GW0pjlolpa24=
 golang.org/x/tools v0.24.0/go.mod h1:YhNqVBIfWHdzvTLs0d8LCuMhkKUgSUKldakyV7W/WDQ=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-google.golang.org/appengine v1.6.8 h1:IhEN5q69dyKagZPYMSdIjS2HqprW324FRQZJcGqPAsM=
-google.golang.org/appengine v1.6.8/go.mod h1:1jJ3jBArFh5pcgW8gCtRJnepW8FzD1V44FJffLiz/Ds=
-google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
-google.golang.org/protobuf v1.26.0/go.mod h1:9q0QmTI4eRPtz6boOQmLYwt+qCgq0jsYwAQnmE0givc=
-google.golang.org/protobuf v1.34.1 h1:9ddQBjfCyZPOHPUiPxpYESBLc+T8P3E+Vo4IbKZgFWg=
-google.golang.org/protobuf v1.34.1/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
+google.golang.org/protobuf v1.34.2 h1:6xV6lTsCfpGD21XK49h7MhtcApnLqkfYgPcdHftf6hg=
+google.golang.org/protobuf v1.34.2/go.mod h1:qYOHts0dSfpeUzUFpOMr/WGzszTmLH+DiWniOlNbLDw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
+gopkg.in/evanphx/json-patch.v4 v4.12.0 h1:n6jtcsulIzXPJaxegRbvFNNrZDjbij7ny3gmSPG+6V4=
+gopkg.in/evanphx/json-patch.v4 v4.12.0/go.mod h1:p8EYWUEYMpynmqDbY58zCKCFZw8pRWMG4EsWvDvM72M=
 gopkg.in/inf.v0 v0.9.1 h1:73M5CoZyi3ZLMOyDlQh031Cx6N9NDJ2Vvfl76EDAgDc=
 gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
 gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
@@ -165,20 +148,20 @@ gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.29.3 h1:2ORfZ7+bGC3YJqGpV0KSDDEVf8hdGQ6A03/50vj8pmw=
-k8s.io/api v0.29.3/go.mod h1:y2yg2NTyHUUkIoTC+phinTnEa3KFM6RZ3szxt014a80=
-k8s.io/apimachinery v0.29.3 h1:2tbx+5L7RNvqJjn7RIuIKu9XTsIZ9Z5wX2G22XAa5EU=
-k8s.io/apimachinery v0.29.3/go.mod h1:hx/S4V2PNW4OMg3WizRrHutyB5la0iCUbZym+W0EQIU=
-k8s.io/client-go v0.29.3 h1:R/zaZbEAxqComZ9FHeQwOh3Y1ZUs7FaHKZdQtIc2WZg=
-k8s.io/client-go v0.29.3/go.mod h1:tkDisCvgPfiRpxGnOORfkljmS+UrW+WtXAy2fTvXJB0=
-k8s.io/klog/v2 v2.120.1 h1:QXU6cPEOIslTGvZaXvFWiP9VKyeet3sawzTOvdXb4Vw=
-k8s.io/klog/v2 v2.120.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
-k8s.io/kube-aggregator v0.29.3 h1:5KvTyFN8sQq2imq8tMAHWEKoE64Zg9WSMaGX78KV6ps=
-k8s.io/kube-aggregator v0.29.3/go.mod h1:xGJqV/SJJ1fbwTGfQLAZfwgqX1EMoaqfotDTkDrqqSk=
-k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b h1:1dzw/KqgSPod72SUp2tuTOmK33TlY2fHlrVU2M9VrOM=
-k8s.io/kube-openapi v0.0.0-20240224005224-582cce78233b/go.mod h1:Pa1PvrP7ACSkuX6I7KYomY6cmMA0Tx86waBhDUgoKPw=
-k8s.io/utils v0.0.0-20240102154912-e7106e64919e h1:eQ/4ljkx21sObifjzXwlPKpdGLrCfRziVtos3ofG/sQ=
-k8s.io/utils v0.0.0-20240102154912-e7106e64919e/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
+k8s.io/api v0.31.1 h1:Xe1hX/fPW3PXYYv8BlozYqw63ytA92snr96zMW9gWTU=
+k8s.io/api v0.31.1/go.mod h1:sbN1g6eY6XVLeqNsZGLnI5FwVseTrZX7Fv3O26rhAaI=
+k8s.io/apimachinery v0.31.1 h1:mhcUBbj7KUjaVhyXILglcVjuS4nYXiwC+KKFBgIVy7U=
+k8s.io/apimachinery v0.31.1/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
+k8s.io/client-go v0.31.1 h1:f0ugtWSbWpxHR7sjVpQwuvw9a3ZKLXX0u0itkFXufb0=
+k8s.io/client-go v0.31.1/go.mod h1:sKI8871MJN2OyeqRlmA4W4KM9KBdBUpDLu/43eGemCg=
+k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
+k8s.io/klog/v2 v2.130.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
+k8s.io/kube-aggregator v0.31.1 h1:vrYBTTs3xMrpiEsmBjsLETZE9uuX67oQ8B3i1BFfMPw=
+k8s.io/kube-aggregator v0.31.1/go.mod h1:+aW4NX50uneozN+BtoCxI4g7ND922p8Wy3tWKFDiWVk=
+k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 h1:BZqlfIlq5YbRMFko6/PM7FjZpUb45WallggurYhKGag=
+k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340/go.mod h1:yD4MZYeKMBwQKVht279WycxKyM84kkAx2DPrTXaeb98=
+k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 h1:pUdcCO1Lk/tbT5ztQWOBi5HBgbBP1J8+AsQnQCKsi8A=
+k8s.io/utils v0.0.0-20240711033017-18e509b52bc8/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/structured-merge-diff/v4 v4.4.1 h1:150L+0vs/8DA78h1u02ooW1/fFq/Lwr+sGiqlzvrtq4=

From 2208fa398510b0677b85c8653c533ca8dcfc4a3f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 30 Sep 2024 14:32:03 +0100
Subject: [PATCH 1470/1641] Bump the go group across 1 directory with 3 updates
 (#12050)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index b9f9f10f6..6bdaead75 100644
--- a/go.mod
+++ b/go.mod
@@ -32,12 +32,12 @@ require (
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.31.1
-	k8s.io/apiextensions-apiserver v0.31.0
+	k8s.io/apiextensions-apiserver v0.31.1
 	k8s.io/apimachinery v0.31.1
-	k8s.io/apiserver v0.31.0
+	k8s.io/apiserver v0.31.1
 	k8s.io/cli-runtime v0.30.0
 	k8s.io/client-go v0.31.1
-	k8s.io/code-generator v0.31.0
+	k8s.io/code-generator v0.31.1
 	k8s.io/component-base v0.31.1
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
diff --git a/go.sum b/go.sum
index 20134af1e..04a26d653 100644
--- a/go.sum
+++ b/go.sum
@@ -343,18 +343,18 @@ gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 k8s.io/api v0.31.1 h1:Xe1hX/fPW3PXYYv8BlozYqw63ytA92snr96zMW9gWTU=
 k8s.io/api v0.31.1/go.mod h1:sbN1g6eY6XVLeqNsZGLnI5FwVseTrZX7Fv3O26rhAaI=
-k8s.io/apiextensions-apiserver v0.31.0 h1:fZgCVhGwsclj3qCw1buVXCV6khjRzKC5eCFt24kyLSk=
-k8s.io/apiextensions-apiserver v0.31.0/go.mod h1:b9aMDEYaEe5sdK+1T0KU78ApR/5ZVp4i56VacZYEHxk=
+k8s.io/apiextensions-apiserver v0.31.1 h1:L+hwULvXx+nvTYX/MKM3kKMZyei+UiSXQWciX/N6E40=
+k8s.io/apiextensions-apiserver v0.31.1/go.mod h1:tWMPR3sgW+jsl2xm9v7lAyRF1rYEK71i9G5dRtkknoQ=
 k8s.io/apimachinery v0.31.1 h1:mhcUBbj7KUjaVhyXILglcVjuS4nYXiwC+KKFBgIVy7U=
 k8s.io/apimachinery v0.31.1/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
-k8s.io/apiserver v0.31.0 h1:p+2dgJjy+bk+B1Csz+mc2wl5gHwvNkC9QJV+w55LVrY=
-k8s.io/apiserver v0.31.0/go.mod h1:KI9ox5Yu902iBnnyMmy7ajonhKnkeZYJhTZ/YI+WEMk=
+k8s.io/apiserver v0.31.1 h1:Sars5ejQDCRBY5f7R3QFHdqN3s61nhkpaX8/k1iEw1c=
+k8s.io/apiserver v0.31.1/go.mod h1:lzDhpeToamVZJmmFlaLwdYZwd7zB+WYRYIboqA1kGxM=
 k8s.io/cli-runtime v0.30.0 h1:0vn6/XhOvn1RJ2KJOC6IRR2CGqrpT6QQF4+8pYpWQ48=
 k8s.io/cli-runtime v0.30.0/go.mod h1:vATpDMATVTMA79sZ0YUCzlMelf6rUjoBzlp+RnoM+cg=
 k8s.io/client-go v0.31.1 h1:f0ugtWSbWpxHR7sjVpQwuvw9a3ZKLXX0u0itkFXufb0=
 k8s.io/client-go v0.31.1/go.mod h1:sKI8871MJN2OyeqRlmA4W4KM9KBdBUpDLu/43eGemCg=
-k8s.io/code-generator v0.31.0 h1:w607nrMi1KeDKB3/F/J4lIoOgAwc+gV9ZKew4XRfMp8=
-k8s.io/code-generator v0.31.0/go.mod h1:84y4w3es8rOJOUUP1rLsIiGlO1JuEaPFXQPA9e/K6U0=
+k8s.io/code-generator v0.31.1 h1:GvkRZEP2g2UnB2QKT2Dgc/kYxIkDxCHENv2Q1itioVs=
+k8s.io/code-generator v0.31.1/go.mod h1:oL2ky46L48osNqqZAeOcWWy0S5BXj50vVdwOtTefqIs=
 k8s.io/component-base v0.31.1 h1:UpOepcrX3rQ3ab5NB6g5iP0tvsgJWzxTyAo20sgYSy8=
 k8s.io/component-base v0.31.1/go.mod h1:WGeaw7t/kTsqpVTaCoVEtillbqAhF2/JgvO0LDOMa0w=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 h1:bKcdZJOPICVmIIuaM9+MXmapE94dn5AYv5ODs1jA43o=

From 03affadd3645cc88b837717346c76db76206de63 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 30 Sep 2024 15:18:03 +0100
Subject: [PATCH 1471/1641] Bump github/codeql-action from 3.26.9 to 3.26.10 in
 the actions group (#12051)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 764126450..4038f1158 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@461ef6c76dfe95d5c364de2f431ddbd31a417628 # v3.26.9
+        uses: github/codeql-action/upload-sarif@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 9b038de98..adf8a593f 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@461ef6c76dfe95d5c364de2f431ddbd31a417628 # v3.26.9
+        uses: github/codeql-action/upload-sarif@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From f3bfa56c61446e1de7423038cc551c3e8eaa237b Mon Sep 17 00:00:00 2001
From: Myst <1592048+LeMyst@users.noreply.github.com>
Date: Tue, 1 Oct 2024 07:21:49 +0200
Subject: [PATCH 1472/1641] Chart: Add `controller.metrics.service.enabled`.
 (#12056)

---
 charts/ingress-nginx/README.md                |  1 +
 .../templates/controller-service-metrics.yaml |  2 +-
 .../controller-service-metrics_test.yaml      | 22 +++++++++++++++++--
 charts/ingress-nginx/values.yaml              |  2 ++
 4 files changed, 24 insertions(+), 3 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index cd181f76e..4a0f50484 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -372,6 +372,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.metrics.prometheusRule.enabled | bool | `false` |  |
 | controller.metrics.prometheusRule.rules | list | `[]` |  |
 | controller.metrics.service.annotations | object | `{}` |  |
+| controller.metrics.service.enabled | bool | `true` | Enable the metrics service or not. |
 | controller.metrics.service.externalIPs | list | `[]` | List of IP addresses at which the stats-exporter service is available # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips # |
 | controller.metrics.service.labels | object | `{}` | Labels to be added to the metrics service resource |
 | controller.metrics.service.loadBalancerSourceRanges | list | `[]` |  |
diff --git a/charts/ingress-nginx/templates/controller-service-metrics.yaml b/charts/ingress-nginx/templates/controller-service-metrics.yaml
index 7c153295f..4b25a840e 100644
--- a/charts/ingress-nginx/templates/controller-service-metrics.yaml
+++ b/charts/ingress-nginx/templates/controller-service-metrics.yaml
@@ -1,4 +1,4 @@
-{{- if .Values.controller.metrics.enabled -}}
+{{- if and .Values.controller.metrics.enabled .Values.controller.metrics.service.enabled -}}
 apiVersion: v1
 kind: Service
 metadata:
diff --git a/charts/ingress-nginx/tests/controller-service-metrics_test.yaml b/charts/ingress-nginx/tests/controller-service-metrics_test.yaml
index afdb94046..ddb412e5b 100644
--- a/charts/ingress-nginx/tests/controller-service-metrics_test.yaml
+++ b/charts/ingress-nginx/tests/controller-service-metrics_test.yaml
@@ -3,16 +3,34 @@ templates:
   - controller-service-metrics.yaml
 
 tests:
-  - it: should not create a metrics Service if `controller.metrics.enabled` is false
+  - it: should not create a metrics Service if `controller.metrics.enabled` is false and `controller.metrics.service.enabled` is false
     set:
       controller.metrics.enabled: false
+      controller.metrics.service.enabled: false
     asserts:
       - hasDocuments:
           count: 0
 
-  - it: should create a metrics Service if `controller.metrics.enabled` is true
+  - it: should not create a metrics Service if `controller.metrics.enabled` is false and `controller.metrics.service.enabled` is true
+    set:
+      controller.metrics.enabled: false
+      controller.metrics.service.enabled: true
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should not create a metrics Service if `controller.metrics.enabled` is true and `controller.metrics.service.enabled` is false
     set:
       controller.metrics.enabled: true
+      controller.metrics.service.enabled: false
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a metrics Service if `controller.metrics.enabled` is true and `controller.metrics.service.enabled` is true
+    set:
+      controller.metrics.enabled: true
+      controller.metrics.service.enabled: true
     asserts:
       - hasDocuments:
           count: 1
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 50a41f2f0..136fae4b2 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -844,6 +844,8 @@ controller:
     # if this port is changed, change healthz-port: in extraArgs: accordingly
     enabled: false
     service:
+      # -- Enable the metrics service or not.
+      enabled: true
       annotations: {}
       # prometheus.io/scrape: "true"
       # prometheus.io/port: "10254"

From e33ca05c7b54f81c983565338e0eff828ed49193 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 1 Oct 2024 10:33:49 +0200
Subject: [PATCH 1473/1641] Images: Remove NGINX v1.21. (#12031)

---
 .github/workflows/ci.yaml                     |  12 +-
 .github/workflows/images.yaml                 |  11 +-
 images/nginx-1.25/Makefile                    |  59 --
 images/nginx-1.25/README.md                   |  47 --
 images/nginx-1.25/TAG                         |   1 -
 images/nginx-1.25/cloudbuild.yaml             |  14 -
 images/nginx-1.25/rootfs/Dockerfile           |  74 ---
 images/nginx-1.25/rootfs/build.sh             | 619 ------------------
 images/nginx/Makefile                         |   4 +-
 images/nginx/README.md                        |  60 +-
 images/nginx/TAG                              |   2 +-
 images/nginx/rootfs/Dockerfile                |   7 +-
 images/nginx/rootfs/build.sh                  | 487 ++++++--------
 .../rootfs/patches/00_drop-alias-root.patch   |   0
 .../01_nginx-1.25.3-win32_max_err_str.patch   |   0
 ..._nginx-1.25.3-stream_balancer_export.patch |   0
 ...stream_proxy_get_next_upstream_tries.patch |   0
 ...x-1.25.3-stream_proxy_timeout_fields.patch |   0
 ...nx-1.25.3-stream_ssl_preread_no_skip.patch |   0
 ...6_nginx-1.25.3-resolver_conf_parsing.patch |   0
 .../07_nginx-1.25.3-daemon_destroy_pool.patch |   0
 ...nginx-1.25.3-init_cycle_pool_release.patch |   0
 ...09_nginx-1.25.3-balancer_status_code.patch |   0
 ...0_nginx-1.25.3-delayed_posted_events.patch |   0
 ...ginx-1.25.3-privileged_agent_process.patch |   0
 ...privileged_agent_process_connections.patch |   0
 ...privileged_agent_process_thread_pool.patch |   0
 ...-1.25.3-single_process_graceful_exit.patch |   0
 .../15_nginx-1.25.3-intercept_error_log.patch |   0
 .../16_nginx-1.25.3-upstream_pipelining.patch |   0
 .../17_nginx-1.25.3-no_error_pages.patch      |   0
 .../patches/18_nginx-1.25.3-no_Werror.patch   |   0
 ...19_nginx-1.25.3-log_escape_non_ascii.patch |   0
 ...20_nginx-1.25.3-proxy_host_port_vars.patch |   0
 .../21_nginx-1.25.3-cache_manager_exit.patch  |   0
 ...22_nginx-1.25.3-larger_max_error_str.patch |   0
 .../23_nginx-1.25.3-pcre_conf_opt.patch       |   0
 ....25.3-always_enable_cc_feature_tests.patch |   0
 .../25_nginx-1.25.3-ssl_cert_cb_yield.patch   |   0
 .../26_nginx-1.25.3-ssl_sess_cb_yield.patch   |   0
 ...inx-1.25.3-ssl_client_hello_cb_yield.patch |   0
 ...nginx-1.25.3-upstream_timeout_fields.patch |   0
 ...inx-1.25.3-safe_resolver_ipv6_option.patch |   0
 .../30_nginx-1.25.3-socket_cloexec.patch      |   0
 ...nx-1.25.3-reuseport_close_unused_fds.patch |   0
 .../rootfs/patches/drop-alias-root.patch      | 144 ----
 .../nginx-1.21.4-balancer_status_code.patch   |  72 --
 .../nginx-1.21.4-cache_manager_exit.patch     |  19 -
 .../nginx-1.21.4-delayed_posted_events.patch  |  98 ---
 .../patches/nginx-1.21.4-hash_overflow.patch  |  20 -
 .../rootfs/patches/nginx-1.21.4-http2.patch   |  57 --
 ...nginx-1.21.4-init_cycle_pool_release.patch |  59 --
 .../nginx-1.21.4-larger_max_error_str.patch   |  13 -
 .../patches/nginx-1.21.4-no_Werror.patch      |  36 -
 .../nginx-1.21.4-proxy_host_port_vars.patch   |  19 -
 .../nginx-1.21.4-resolver_conf_parsing.patch  | 263 --------
 ...nx-1.21.4-reuseport_close_unused_fds.patch |  38 --
 ...-1.21.4-single_process_graceful_exit.patch |  75 ---
 .../patches/nginx-1.21.4-socket_cloexec.patch | 185 ------
 .../nginx-1.21.4-ssl_cert_cb_yield.patch      |  64 --
 .../nginx-1.21.4-ssl_sess_cb_yield.patch      |  41 --
 ...stream_proxy_get_next_upstream_tries.patch |  31 -
 ...nx-1.21.4-stream_ssl_preread_no_skip.patch |  13 -
 .../nginx-1.21.4-upstream_pipelining.patch    |  23 -
 ...nginx-1.21.4-upstream_timeout_fields.patch | 112 ----
 65 files changed, 244 insertions(+), 2535 deletions(-)
 delete mode 100644 images/nginx-1.25/Makefile
 delete mode 100644 images/nginx-1.25/README.md
 delete mode 100644 images/nginx-1.25/TAG
 delete mode 100644 images/nginx-1.25/cloudbuild.yaml
 delete mode 100644 images/nginx-1.25/rootfs/Dockerfile
 delete mode 100755 images/nginx-1.25/rootfs/build.sh
 rename images/{nginx-1.25 => nginx}/rootfs/patches/00_drop-alias-root.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/01_nginx-1.25.3-win32_max_err_str.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/02_nginx-1.25.3-stream_balancer_export.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/03_nginx-1.25.3-stream_proxy_get_next_upstream_tries.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/04_nginx-1.25.3-stream_proxy_timeout_fields.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/05_nginx-1.25.3-stream_ssl_preread_no_skip.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/06_nginx-1.25.3-resolver_conf_parsing.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/07_nginx-1.25.3-daemon_destroy_pool.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/08_nginx-1.25.3-init_cycle_pool_release.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/09_nginx-1.25.3-balancer_status_code.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/10_nginx-1.25.3-delayed_posted_events.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/11_nginx-1.25.3-privileged_agent_process.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/12_nginx-1.25.3-privileged_agent_process_connections.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/13_nginx-1.25.3-privileged_agent_process_thread_pool.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/14_nginx-1.25.3-single_process_graceful_exit.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/15_nginx-1.25.3-intercept_error_log.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/16_nginx-1.25.3-upstream_pipelining.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/17_nginx-1.25.3-no_error_pages.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/18_nginx-1.25.3-no_Werror.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/19_nginx-1.25.3-log_escape_non_ascii.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/20_nginx-1.25.3-proxy_host_port_vars.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/21_nginx-1.25.3-cache_manager_exit.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/22_nginx-1.25.3-larger_max_error_str.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/23_nginx-1.25.3-pcre_conf_opt.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/24_nginx-1.25.3-always_enable_cc_feature_tests.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/25_nginx-1.25.3-ssl_cert_cb_yield.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/26_nginx-1.25.3-ssl_sess_cb_yield.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/27_nginx-1.25.3-ssl_client_hello_cb_yield.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/28_nginx-1.25.3-upstream_timeout_fields.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/29_nginx-1.25.3-safe_resolver_ipv6_option.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/30_nginx-1.25.3-socket_cloexec.patch (100%)
 rename images/{nginx-1.25 => nginx}/rootfs/patches/31_nginx-1.25.3-reuseport_close_unused_fds.patch (100%)
 delete mode 100644 images/nginx/rootfs/patches/drop-alias-root.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-balancer_status_code.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-cache_manager_exit.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-delayed_posted_events.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-hash_overflow.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-http2.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-resolver_conf_parsing.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-reuseport_close_unused_fds.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-single_process_graceful_exit.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-socket_cloexec.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-ssl_cert_cb_yield.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-ssl_sess_cb_yield.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-stream_ssl_preread_no_skip.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-upstream_pipelining.patch
 delete mode 100644 images/nginx/rootfs/patches/nginx-1.21.4-upstream_timeout_fields.patch

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 56a28f3d0..526acfb2f 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -9,7 +9,7 @@ on:
       - 'deploy/**'
       - '**.md'
       - 'images/**' # Images changes should be tested on their own workflow
-      - '!images/nginx-1.25/**'
+      - '!images/nginx/**'
 
   push:
     branches:
@@ -68,7 +68,7 @@ jobs:
               - 'NGINX_BASE'
             baseimage:
               - 'NGINX_BASE'
-              - 'images/nginx-1.25/**'
+              - 'images/nginx/**'
             docs:
               - '**/*.md'
             lua:
@@ -180,8 +180,8 @@ jobs:
         if: |
           needs.changes.outputs.baseimage == 'true'
         run: |
-            export TAG=$(cat images/nginx-1.25/TAG)
-            cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --load -t registry.k8s.io/ingress-nginx/nginx-1.25:${TAG} .
+            export TAG=$(cat images/nginx/TAG)
+            cd images/nginx/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --load -t registry.k8s.io/ingress-nginx/nginx:${TAG} .
 
       - name: Build images
         env:
@@ -190,8 +190,8 @@ jobs:
           REGISTRY: ingress-controller
         run: |
           echo "building images..."
-          export TAGNGINX=$(cat images/nginx-1.25/TAG)
-          make BASE_IMAGE=registry.k8s.io/ingress-nginx/nginx-1.25:${TAGNGINX} clean-image build image image-chroot
+          export TAGNGINX=$(cat images/nginx/TAG)
+          make BASE_IMAGE=registry.k8s.io/ingress-nginx/nginx:${TAGNGINX} clean-image build image image-chroot
           make -C test/e2e-image image
 
           echo "creating images cache..."
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 5dd089e59..85ad0aa88 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -36,7 +36,6 @@ jobs:
       kube-webhook-certgen: ${{ steps.filter.outputs.kube-webhook-certgen }}
       ext-auth-example-authsvc: ${{ steps.filter.outputs.ext-auth-example-authsvc }}
       nginx: ${{ steps.filter.outputs.nginx }}
-      nginx125: ${{ steps.filter.outputs.nginx125 }}
 
     steps:
       - name: Checkout
@@ -64,8 +63,6 @@ jobs:
               - 'images/ext-auth-example-authsvc/**'
             nginx:
               - 'images/nginx/**'
-            nginx125:
-              - 'images/nginx-1.25/TAG'
 
   #### TODO: Make the below jobs 'less dumb' and use the job name as parameter (the github.job context does not work here)
   cfssl:
@@ -163,14 +160,14 @@ jobs:
       run: |
         cd images/ && make NAME=kube-webhook-certgen test test-e2e
 
-  nginx125:
+  nginx:
     permissions:
       contents: write
       packages: write
     runs-on: ubuntu-latest
     needs: changes
     if: |
-      (github.event_name == 'push' && github.ref == 'refs/heads/main' && needs.changes.outputs.nginx125 == 'true')
+      (github.event_name == 'push' && github.ref == 'refs/heads/main' && needs.changes.outputs.nginx == 'true')
     env:
       PLATFORMS: linux/amd64,linux/arm,linux/arm64,linux/s390x
     steps:
@@ -191,5 +188,5 @@ jobs:
           password: ${{ secrets.DOCKERHUB_TOKEN }}
       - name: build-image
         run: |
-          export TAG=$(cat images/nginx-1.25/TAG)
-          cd images/nginx-1.25/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --push -t ingressnginx/nginx-1.25:${TAG} .
+          export TAG=$(cat images/nginx/TAG)
+          cd images/nginx/rootfs && docker buildx build --platform=${{ env.PLATFORMS }} --push -t ingressnginx/nginx:${TAG} .
diff --git a/images/nginx-1.25/Makefile b/images/nginx-1.25/Makefile
deleted file mode 100644
index cdd3e2a3c..000000000
--- a/images/nginx-1.25/Makefile
+++ /dev/null
@@ -1,59 +0,0 @@
-# Copyright 2024 The Kubernetes Authors. All rights reserved.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-.DEFAULT_GOAL:=build
-
-# set default shell
-SHELL=/bin/bash -o pipefail -o errexit
-
-DIR:=$(strip $(shell dirname $(realpath $(lastword $(MAKEFILE_LIST)))))
-INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
-
-# 0.0.0 shouldn't clobber any released builds
-SHORT_SHA ?=$(shell git rev-parse --short HEAD)
-TAG ?=$(shell cat TAG)
-
-REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
-
-IMAGE = $(REGISTRY)/nginx-1.25
-
-# required to enable buildx
-export DOCKER_CLI_EXPERIMENTAL=enabled
-
-# build with buildx
-PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
-OUTPUT=
-PROGRESS=plain
-build: ensure-buildx
-	docker buildx build \
-		--platform=${PLATFORMS} $(OUTPUT) \
-		--progress=$(PROGRESS) \
-		--pull \
-		--tag $(IMAGE):$(TAG) rootfs
-
-# push the cross built image
-push: OUTPUT=--push
-push: build
-
-# enable buildx
-ensure-buildx:
-# this is required for cloudbuild
-ifeq ("$(wildcard $(INIT_BUILDX))","")
-	@curl -sSL https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/hack/init-buildx.sh | bash
-else
-	@exec $(INIT_BUILDX)
-endif
-	@echo "done"
-
-.PHONY: build push ensure-buildx
\ No newline at end of file
diff --git a/images/nginx-1.25/README.md b/images/nginx-1.25/README.md
deleted file mode 100644
index 35cccc100..000000000
--- a/images/nginx-1.25/README.md
+++ /dev/null
@@ -1,47 +0,0 @@
-NGINX 1.25 base image
-
-### HTTP/3 Support
-
-**HTTP/3 support is experimental and under development**
-
-[HTTP/3](https://datatracker.ietf.org/doc/html/rfc9114)\
-[QUIC](https://datatracker.ietf.org/doc/html/rfc9000)
-
-[According to the documentation, NGINX 1.25.0 or higher supports HTTP/3:](https://nginx.org/en/docs/quic.html)
-
-> Support for QUIC and HTTP/3 protocols is available since 1.25.0.
-
-But this requires adding a new flag during the build:
-
-> When configuring nginx, it is possible to enable QUIC and HTTP/3 using the --with-http_v3_module configuration parameter.
-
-[We have added this flag](https://github.com/kubernetes/ingress-nginx/pull/11470), but it is not enough to use HTTP/3 in ingress-nginx, this is the first step.
-
-The next steps will be:
-
-1. **Waiting for OpenSSL 3.4.**\
-    The main problem is, that we still use OpenSSL (3.x) and it does not support the important mechanism of TLS 1.3 - [early_data](https://datatracker.ietf.org/doc/html/rfc8446#section-2.3):
-
-    > Otherwise, the OpenSSL compatibility layer will be used that does not support early data.
-    
-    [And although another part of the documentation says that the directive is supported with OpenSSL:](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_early_data)
-
-    > The directive is supported when using OpenSSL 1.1.1 or higher.
-    
-    But this is incomplete support, because OpenSSL does not support this feature, and [it has only client side support:](https://github.com/openssl/openssl)
-
-    > ... the QUIC (currently client side only) version 1 protocol
-   
-    [And also there are some issues even with client side](https://github.com/openssl/openssl/discussions/23339)
-
-    Due to this, we currently have incomplete HTTP/3 support, without important security and performance features.\
-    But the good news is that [OpenSSL plans to add server-side support in 3.4](https://github.com/openssl/web/blob/master/roadmap.md):
-
-    > Server-side QUIC support
-    
-    [Overview of SSL libraries(HAProxy Documentation)](https://github.com/haproxy/wiki/wiki/SSL-Libraries-Support-Status#tldr)  
-
-2. **Adding [parameters](https://nginx.org/en/docs/http/ngx_http_v3_module.html) to the configmap to configure HTTP/3 and quic(enableHTTP3, enableHTTP/0.9, maxCurrentStream, and so on).**
-3. **Adding options to the nginx config template(`listen 443 quic` to server blocks and `add_header Alt-Svc 'h3=":8443"; ma=86400';` to location blocks).**
-4. **Opening the https port for UDP in the container(because QUIC uses UDP).**
-5. **Adding tests.**
diff --git a/images/nginx-1.25/TAG b/images/nginx-1.25/TAG
deleted file mode 100644
index f25246219..000000000
--- a/images/nginx-1.25/TAG
+++ /dev/null
@@ -1 +0,0 @@
-v0.0.12
diff --git a/images/nginx-1.25/cloudbuild.yaml b/images/nginx-1.25/cloudbuild.yaml
deleted file mode 100644
index d8bb1f2a9..000000000
--- a/images/nginx-1.25/cloudbuild.yaml
+++ /dev/null
@@ -1,14 +0,0 @@
-options:
-  # Increase machine type for multi-arch builds.
-  machineType: E2_HIGHCPU_32
-  # Ignore Prow provided substitutions.
-  substitution_option: ALLOW_LOOSE
-steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
-    env:
-      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
-    entrypoint: bash
-    args:
-      - -c
-      - gcloud auth configure-docker && cd images/nginx-1.25 && make push
-timeout: 7200s
diff --git a/images/nginx-1.25/rootfs/Dockerfile b/images/nginx-1.25/rootfs/Dockerfile
deleted file mode 100644
index 1d2b6b623..000000000
--- a/images/nginx-1.25/rootfs/Dockerfile
+++ /dev/null
@@ -1,74 +0,0 @@
-# Copyright 2024 The Kubernetes Authors. All rights reserved.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-FROM alpine:3.20 as builder
-
-COPY . /
-
-RUN apk update \
-  && apk upgrade \
-  && apk add -U bash --no-cache \
-  && /build.sh
-
-# Use a multi-stage build
-FROM alpine:3.20
-
-ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
-
-ENV LUA_PATH="/usr/local/share/luajit-2.1.0-beta3/?.lua;/usr/local/share/lua/5.1/?.lua;/usr/local/lib/lua/?.lua;;"
-ENV LUA_CPATH="/usr/local/lib/lua/?/?.so;/usr/local/lib/lua/?.so;;"
-
-COPY --from=builder /usr/local /usr/local
-COPY --from=builder /usr/lib/libopentelemetry* /usr/local/lib
-COPY --from=builder /opt /opt
-COPY --from=builder /etc/nginx /etc/nginx
-
-RUN apk update \
-  && apk upgrade \
-  && apk add -U --no-cache \
-  bash \
-  openssl \
-  pcre \
-  zlib \
-  ca-certificates \
-  patch \
-  yajl \
-  lmdb \
-  libxml2 \
-  libmaxminddb \
-  yaml-cpp \
-  dumb-init \
-  tzdata \
-  grpc-cpp \
-  libprotobuf \
-  && ln -s /usr/local/nginx/sbin/nginx /sbin/nginx \
-  && adduser -S -D -H -u 101 -h /usr/local/nginx \
-  -s /sbin/nologin -G www-data -g www-data www-data \
-  && bash -eu -c ' \
-  writeDirs=( \
-  /var/log/nginx \
-  /var/lib/nginx/body \
-  /var/lib/nginx/fastcgi \
-  /var/lib/nginx/proxy \
-  /var/lib/nginx/scgi \
-  /var/lib/nginx/uwsgi \
-  /var/log/audit \
-  ); \
-  for dir in "${writeDirs[@]}"; do \
-  mkdir -p ${dir}; \
-  chown -R www-data.www-data ${dir}; \
-  done'
-
-EXPOSE 80 443
-
-CMD ["nginx", "-g", "daemon off;"]
diff --git a/images/nginx-1.25/rootfs/build.sh b/images/nginx-1.25/rootfs/build.sh
deleted file mode 100755
index 3baf775fc..000000000
--- a/images/nginx-1.25/rootfs/build.sh
+++ /dev/null
@@ -1,619 +0,0 @@
-#!/bin/bash
-
-# Copyright 2023 The Kubernetes Authors.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#     http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-
-set -o errexit
-set -o nounset
-set -o pipefail
-
-export NGINX_VERSION=1.25.5
-
-# Check for recent changes: https://github.com/vision5/ngx_devel_kit/compare/v0.3.3...master
-export NDK_VERSION=v0.3.3
-
-# Check for recent changes: https://github.com/openresty/set-misc-nginx-module/compare/v0.33...master
-export SETMISC_VERSION=796f5a3e518748eb29a93bd450324e0ad45b704e
-
-# Check for recent changes: https://github.com/openresty/headers-more-nginx-module/compare/v0.37...master
-export MORE_HEADERS_VERSION=v0.37
-
-# Check for recent changes: https://github.com/atomx/nginx-http-auth-digest/compare/v1.0.0...atomx:master
-export NGINX_DIGEST_AUTH=v1.0.0
-
-# Check for recent changes: https://github.com/yaoweibin/ngx_http_substitutions_filter_module/compare/v0.6.4...master
-export NGINX_SUBSTITUTIONS=e12e965ac1837ca709709f9a26f572a54d83430e
-
-# Check for recent changes: https://github.com/SpiderLabs/ModSecurity-nginx/compare/v1.0.3...master
-export MODSECURITY_VERSION=v1.0.3
-
-# Check for recent changes: https://github.com/SpiderLabs/ModSecurity/compare/v3.0.8...v3/master
-export MODSECURITY_LIB_VERSION=v3.0.12
-
-# Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.5...v4.0/main
-export OWASP_MODSECURITY_CRS_VERSION=v4.4.0
-
-# Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.26``...master
-export LUA_NGX_VERSION=v0.10.26
-
-# Check for recent changes: https://github.com/openresty/stream-lua-nginx-module/compare/bea8a0c0de94cede71554f53818ac0267d675d63...master
-export LUA_STREAM_NGX_VERSION=bea8a0c0de94cede71554f53818ac0267d675d63
-
-# Check for recent changes: https://github.com/openresty/lua-upstream-nginx-module/compare/8aa93ead98ba2060d4efd594ae33a35d153589bf...master
-export LUA_UPSTREAM_VERSION=542be0893543a4e42d89f6dd85372972f5ff2a36
-
-# Check for recent changes: https://github.com/openresty/lua-cjson/compare/2.1.0.13...openresty:master
-export LUA_CJSON_VERSION=2.1.0.13
-
-# Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/a607a41a8115fecfc05b5c283c81532a3d605425...master
-export GEOIP2_VERSION=a607a41a8115fecfc05b5c283c81532a3d605425
-
-# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20240314...v2.1-agentzh
-export LUAJIT_VERSION=v2.1-20240314
-
-# Check for recent changes: https://github.com/openresty/lua-resty-balancer/compare/1cd4363c0a239afe4765ec607dcfbbb4e5900eea...master
-export LUA_RESTY_BALANCER=1cd4363c0a239afe4765ec607dcfbbb4e5900eea
-
-# Check for recent changes: https://github.com/openresty/lua-resty-lrucache/compare/99e7578465b40f36f596d099b82eab404f2b42ed...master
-export LUA_RESTY_CACHE=99e7578465b40f36f596d099b82eab404f2b42ed
-
-# Check for recent changes: https://github.com/openresty/lua-resty-core/compare/v0.1.27...master
-export LUA_RESTY_CORE=v0.1.28
-
-# Check for recent changes: https://github.com/cloudflare/lua-resty-cookie/compare/f418d77082eaef48331302e84330488fdc810ef4...master
-export LUA_RESTY_COOKIE_VERSION=f418d77082eaef48331302e84330488fdc810ef4
-
-# Check for recent changes: https://github.com/openresty/lua-resty-dns/compare/8bb53516e2933e61c317db740a9b7c2048847c2f...master
-export LUA_RESTY_DNS=8bb53516e2933e61c317db740a9b7c2048847c2f
-
-# Check for recent changes: https://github.com/ledgetech/lua-resty-http/compare/v0.17.1...master
-export LUA_RESTY_HTTP=v0.17.1
-
-# Check for recent changes: https://github.com/openresty/lua-resty-lock/compare/v0.09...master
-export LUA_RESTY_LOCK=405d0bf4cbfa74d742c6ed3158d442221e6212a9
-
-# Check for recent changes: https://github.com/openresty/lua-resty-upload/compare/v0.11...master
-export LUA_RESTY_UPLOAD_VERSION=979372cce011f3176af3c9aff53fd0e992c4bfd3
-
-# Check for recent changes: https://github.com/openresty/lua-resty-string/compare/v0.15...master
-export LUA_RESTY_STRING_VERSION=6f1bc21d86daef804df3cc34d6427ef68da26844
-
-# Check for recent changes: https://github.com/openresty/lua-resty-memcached/compare/v0.17...master
-export LUA_RESTY_MEMCACHED_VERSION=2f02b68bf65fa2332cce070674a93a69a6c7239b
-
-# Check for recent changes: https://github.com/openresty/lua-resty-redis/compare/v0.30...master
-export LUA_RESTY_REDIS_VERSION=8641b9f1b6f75cca50c90cf8ca5c502ad8950aa8
-
-# Check for recent changes: https://github.com/api7/lua-resty-ipmatcher/compare/v0.6.1...master
-export LUA_RESTY_IPMATCHER_VERSION=3e93c53eb8c9884efe939ef070486a0e507cc5be
-
-# Check for recent changes:  https://github.com/microsoft/mimalloc/compare/v2.1.7...master
-export MIMALOC_VERSION=v2.1.7
-
-# Check on https://github.com/open-telemetry/opentelemetry-cpp
-export OPENTELEMETRY_CPP_VERSION="v1.11.0"
-# Check on https://github.com/open-telemetry/opentelemetry-proto
-export OPENTELEMETRY_PROTO_VERSION="v1.1.0"
-
-export BUILD_PATH=/tmp/build
-
-ARCH=$(uname -m)
-
-get_src()
-{
-  hash="$1"
-  url="$2"
-  dest="${3-}"
-  ARGS=""
-  f=$(basename "$url")
-
-  echo "Downloading $url"
-
-  curl -sSL "$url" -o "$f"
-  # TODO: Reenable checksum verification but make it smarter
-  # echo "$hash  $f" | sha256sum -c - || exit 10
-  if [ ! -z "$dest" ]; then
-        mkdir ${BUILD_PATH}/${dest}
-        ARGS="-C ${BUILD_PATH}/${dest} --strip-components=1"
-  fi
-  tar xvzf "$f" $ARGS
-  rm -rf "$f"
-}
-
-# install required packages to build
-# Dependencies from "ninja" and below are OTEL dependencies
-apk add \
-  bash \
-  gcc \
-  clang \
-  libc-dev \
-  make \
-  automake \
-  openssl-dev \
-  pcre-dev \
-  zlib-dev \
-  linux-headers \
-  libxslt-dev \
-  gd-dev \
-  perl-dev \
-  libedit-dev \
-  mercurial \
-  alpine-sdk \
-  findutils \
-  curl \
-  ca-certificates \
-  patch \
-  libaio-dev \
-  openssl \
-  cmake \
-  util-linux \
-  lmdb-tools \
-  wget \
-  curl-dev \
-  libprotobuf \
-  git g++ pkgconf flex bison doxygen yajl-dev lmdb-dev libtool autoconf libxml2 libxml2-dev \
-  python3 \
-  libmaxminddb-dev \
-  bc \
-  unzip \
-  dos2unix \
-  yaml-cpp \
-  coreutils \
-  ninja \
-  gtest-dev \
-  git \
-  build-base \
-  pkgconfig \
-  c-ares-dev \
-  re2-dev \
-  grpc-dev \
-  protobuf-dev
-
-# apk add -X http://dl-cdn.alpinelinux.org/alpine/edge/testing opentelemetry-cpp-dev
-
-# There is some bug with some platforms and git, so force HTTP/1.1
-git config --global http.version HTTP/1.1
-git config --global http.postBuffer 157286400
-
-mkdir -p /etc/nginx
-
-mkdir --verbose -p "$BUILD_PATH"
-cd "$BUILD_PATH"
-
-# download, verify and extract the source files
-get_src 66dc7081488811e9f925719e34d1b4504c2801c81dee2920e5452a86b11405ae \
-        "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
-
-get_src aa961eafb8317e0eb8da37eb6e2c9ff42267edd18b56947384e719b85188f58b \
-        "https://github.com/vision5/ngx_devel_kit/archive/$NDK_VERSION.tar.gz" "ngx_devel_kit"
-
-get_src abc123 \
-        "https://github.com/open-telemetry/opentelemetry-cpp/archive/$OPENTELEMETRY_CPP_VERSION.tar.gz" "opentelemetry-cpp"
-
-get_src abc123 \
-        "https://github.com/open-telemetry/opentelemetry-proto/archive/$OPENTELEMETRY_PROTO_VERSION.tar.gz" "opentelemetry-proto"
-
-get_src cd5e2cc834bcfa30149e7511f2b5a2183baf0b70dc091af717a89a64e44a2985 \
-        "https://github.com/openresty/set-misc-nginx-module/archive/$SETMISC_VERSION.tar.gz" "set-misc-nginx-module"
-
-get_src 0c0d2ced2ce895b3f45eb2b230cd90508ab2a773299f153de14a43e44c1209b3 \
-        "https://github.com/openresty/headers-more-nginx-module/archive/$MORE_HEADERS_VERSION.tar.gz" "headers-more-nginx-module"
-
-get_src f09851e6309560a8ff3e901548405066c83f1f6ff88aa7171e0763bd9514762b \
-        "https://github.com/atomx/nginx-http-auth-digest/archive/$NGINX_DIGEST_AUTH.tar.gz" "nginx-http-auth-digest"
-
-get_src a98b48947359166326d58700ccdc27256d2648218072da138ab6b47de47fbd8f \
-        "https://github.com/yaoweibin/ngx_http_substitutions_filter_module/archive/$NGINX_SUBSTITUTIONS.tar.gz" "ngx_http_substitutions_filter_module"
-
-get_src 32a42256616cc674dca24c8654397390adff15b888b77eb74e0687f023c8751b \
-        "https://github.com/SpiderLabs/ModSecurity-nginx/archive/$MODSECURITY_VERSION.tar.gz" "ModSecurity-nginx"
-
-get_src bc764db42830aeaf74755754b900253c233ad57498debe7a441cee2c6f4b07c2 \
-        "https://github.com/openresty/lua-nginx-module/archive/$LUA_NGX_VERSION.tar.gz" "lua-nginx-module"
-
-get_src 01b715754a8248cc7228e0c8f97f7488ae429d90208de0481394e35d24cef32f \
-        "https://github.com/openresty/stream-lua-nginx-module/archive/$LUA_STREAM_NGX_VERSION.tar.gz" "stream-lua-nginx-module"
-
-get_src a92c9ee6682567605ece55d4eed5d1d54446ba6fba748cff0a2482aea5713d5f \
-        "https://github.com/openresty/lua-upstream-nginx-module/archive/$LUA_UPSTREAM_VERSION.tar.gz" "lua-upstream-nginx-module"
-
-get_src 77bbcbb24c3c78f51560017288f3118d995fe71240aa379f5818ff6b166712ff \
-        "https://github.com/openresty/luajit2/archive/$LUAJIT_VERSION.tar.gz" "luajit2"
-
-get_src b6c9c09fd43eb34a71e706ad780b2ead26549a9a9f59280fe558f5b7b980b7c6 \
-        "https://github.com/leev/ngx_http_geoip2_module/archive/$GEOIP2_VERSION.tar.gz" "ngx_http_geoip2_module"
-
-get_src deb4ab1ffb9f3d962c4b4a2c4bdff692b86a209e3835ae71ebdf3b97189e40a9 \
-        "https://github.com/openresty/lua-resty-upload/archive/$LUA_RESTY_UPLOAD_VERSION.tar.gz" "lua-resty-upload"
-
-get_src bdbf271003d95aa91cab0a92f24dca129e99b33f79c13ebfcdbbcbb558129491 \
-        "https://github.com/openresty/lua-resty-string/archive/$LUA_RESTY_STRING_VERSION.tar.gz" "lua-resty-string"
-
-get_src 16d72ed133f0c6df376a327386c3ef4e9406cf51003a700737c3805770ade7c5 \
-        "https://github.com/openresty/lua-resty-balancer/archive/$LUA_RESTY_BALANCER.tar.gz" "lua-resty-balancer"
-
-get_src 39baab9e2b31cc48cecf896cea40ef6e80559054fd8a6e440cc804a858ea84d4 \
-        "https://github.com/openresty/lua-resty-core/archive/$LUA_RESTY_CORE.tar.gz" "lua-resty-core"
-
-get_src a77b9de160d81712f2f442e1de8b78a5a7ef0d08f13430ff619f79235db974d4 \
-        "https://github.com/openresty/lua-cjson/archive/$LUA_CJSON_VERSION.tar.gz" "lua-cjson"
-
-get_src 5ed48c36231e2622b001308622d46a0077525ac2f751e8cc0c9905914254baa4 \
-        "https://github.com/cloudflare/lua-resty-cookie/archive/$LUA_RESTY_COOKIE_VERSION.tar.gz" "lua-resty-cookie"
-
-get_src 573184006b98ccee2594b0d134fa4d05e5d2afd5141cbad315051ccf7e9b6403 \
-        "https://github.com/openresty/lua-resty-lrucache/archive/$LUA_RESTY_CACHE.tar.gz" "lua-resty-lrucache"
-
-get_src b4ddcd47db347e9adf5c1e1491a6279a6ae2a3aff3155ef77ea0a65c998a69c1 \
-        "https://github.com/openresty/lua-resty-lock/archive/$LUA_RESTY_LOCK.tar.gz" "lua-resty-lock"
-
-get_src 70e9a01eb32ccade0d5116a25bcffde0445b94ad35035ce06b94ccd260ad1bf0 \
-        "https://github.com/openresty/lua-resty-dns/archive/$LUA_RESTY_DNS.tar.gz" "lua-resty-dns"
-
-get_src 9fcb6db95bc37b6fce77d3b3dc740d593f9d90dce0369b405eb04844d56ac43f \
-        "https://github.com/ledgetech/lua-resty-http/archive/$LUA_RESTY_HTTP.tar.gz" "lua-resty-http"
-
-get_src 02733575c4aed15f6cab662378e4b071c0a4a4d07940c4ef19a7319e9be943d4 \
-        "https://github.com/openresty/lua-resty-memcached/archive/$LUA_RESTY_MEMCACHED_VERSION.tar.gz" "lua-resty-memcached"
-
-get_src c15aed1a01c88a3a6387d9af67a957dff670357f5fdb4ee182beb44635eef3f1 \
-        "https://github.com/openresty/lua-resty-redis/archive/$LUA_RESTY_REDIS_VERSION.tar.gz" "lua-resty-redis"
-
-get_src efb767487ea3f6031577b9b224467ddbda2ad51a41c5867a47582d4ad85d609e \
-        "https://github.com/api7/lua-resty-ipmatcher/archive/$LUA_RESTY_IPMATCHER_VERSION.tar.gz" "lua-resty-ipmatcher"
-
-get_src d74f86ada2329016068bc5a243268f1f555edd620b6a7d6ce89295e7d6cf18da \
-        "https://github.com/microsoft/mimalloc/archive/${MIMALOC_VERSION}.tar.gz" "mimalloc"
-
-# improve compilation times
-CORES=$(($(grep -c ^processor /proc/cpuinfo) - 1))
-
-export MAKEFLAGS=-j${CORES}
-export CTEST_BUILD_FLAGS=${MAKEFLAGS}
-
-# Install luajit from openresty fork
-export LUAJIT_LIB=/usr/local/lib
-export LUA_LIB_DIR="$LUAJIT_LIB/lua"
-export LUAJIT_INC=/usr/local/include/luajit-2.1
-
-cd "$BUILD_PATH/luajit2"
-make CCDEBUG=-g
-make install
-
-ln -s /usr/local/bin/luajit /usr/local/bin/lua
-ln -s "$LUAJIT_INC" /usr/local/include/lua
-
-cd "$BUILD_PATH/opentelemetry-cpp"
-export CXXFLAGS="-DBENCHMARK_HAS_NO_INLINE_ASSEMBLY"
-cmake -B build -G Ninja -Wno-dev \
-        -DOTELCPP_PROTO_PATH="${BUILD_PATH}/opentelemetry-proto/" \
-        -DCMAKE_INSTALL_PREFIX=/usr \
-        -DBUILD_SHARED_LIBS=ON \
-        -DBUILD_TESTING="OFF" \
-        -DBUILD_W3CTRACECONTEXT_TEST="OFF" \
-        -DCMAKE_BUILD_TYPE=None \
-        -DWITH_ABSEIL=ON \
-        -DWITH_STL=ON \
-        -DWITH_EXAMPLES=OFF \
-        -DWITH_ZPAGES=OFF \
-        -DWITH_OTLP_GRPC=ON \
-        -DWITH_OTLP_HTTP=ON \
-        -DWITH_ZIPKIN=ON \
-        -DWITH_PROMETHEUS=OFF \
-        -DWITH_ASYNC_EXPORT_PREVIEW=OFF \
-        -DWITH_METRICS_EXEMPLAR_PREVIEW=OFF
-      cmake --build build
-      cmake --install build
-
-# Git tuning
-git config --global --add core.compression -1
-
-# Get Brotli source and deps
-cd "$BUILD_PATH"
-git clone --depth=100 https://github.com/google/ngx_brotli.git
-cd ngx_brotli
-# https://github.com/google/ngx_brotli/issues/156
-git reset --hard 63ca02abdcf79c9e788d2eedcc388d2335902e52
-git submodule init
-git submodule update
-
-cd "$BUILD_PATH"
-git clone --depth=1 https://github.com/ssdeep-project/ssdeep
-cd ssdeep/
-
-./bootstrap
-./configure
-
-make
-make install
-
-# build modsecurity library
-cd "$BUILD_PATH"
-git clone -n https://github.com/SpiderLabs/ModSecurity
-cd ModSecurity/
-git checkout $MODSECURITY_LIB_VERSION
-git submodule init
-git submodule update
-
-sh build.sh
-
-# https://github.com/SpiderLabs/ModSecurity/issues/1909#issuecomment-465926762
-sed -i '115i LUA_CFLAGS="${LUA_CFLAGS} -DWITH_LUA_JIT_2_1"' build/lua.m4
-sed -i '117i AC_SUBST(LUA_CFLAGS)' build/lua.m4
-
-./configure \
-  --disable-doxygen-doc \
-  --disable-doxygen-html \
-  --disable-examples
-
-make
-make install
-
-mkdir -p /etc/nginx/modsecurity
-cp modsecurity.conf-recommended /etc/nginx/modsecurity/modsecurity.conf
-cp unicode.mapping /etc/nginx/modsecurity/unicode.mapping
-
-# Replace serial logging with concurrent
-sed -i 's|SecAuditLogType Serial|SecAuditLogType Concurrent|g' /etc/nginx/modsecurity/modsecurity.conf
-
-# Concurrent logging implies the log is stored in several files
-echo "SecAuditLogStorageDir /var/log/audit/" >> /etc/nginx/modsecurity/modsecurity.conf
-
-# Download owasp modsecurity crs
-cd /etc/nginx/
-
-git clone -b $OWASP_MODSECURITY_CRS_VERSION https://github.com/coreruleset/coreruleset
-mv coreruleset owasp-modsecurity-crs
-cd owasp-modsecurity-crs
-
-mv crs-setup.conf.example crs-setup.conf
-mv rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf
-mv rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf.example rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
-cd ..
-
-# OWASP CRS v4 rules
-echo "
-Include /etc/nginx/owasp-modsecurity-crs/crs-setup.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-901-INITIALIZATION.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-905-COMMON-EXCEPTIONS.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-911-METHOD-ENFORCEMENT.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-913-SCANNER-DETECTION.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-921-PROTOCOL-ATTACK.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-922-MULTIPART-ATTACK.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LFI.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-931-APPLICATION-ATTACK-RFI.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-934-APPLICATION-ATTACK-GENERIC.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-941-APPLICATION-ATTACK-XSS.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-944-APPLICATION-ATTACK-JAVA.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-950-DATA-LEAKAGES.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-951-DATA-LEAKAGES-SQL.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-952-DATA-LEAKAGES-JAVA.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-953-DATA-LEAKAGES-PHP.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-954-DATA-LEAKAGES-IIS.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-955-WEB-SHELLS.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-959-BLOCKING-EVALUATION.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-980-CORRELATION.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
-" > /etc/nginx/owasp-modsecurity-crs/nginx-modsecurity.conf
-
-# build nginx
-cd "$BUILD_PATH/nginx-$NGINX_VERSION"
-
-# apply nginx patches
-for PATCH in `ls /patches`;do
-  echo "Patch: $PATCH"
-  if [[ "$PATCH" == *.txt ]]; then
-    patch -p0 < /patches/$PATCH
-  else
-    patch -p1 < /patches/$PATCH
-  fi
-done
-
-WITH_FLAGS="--with-debug \
-  --with-compat \
-  --with-pcre-jit \
-  --with-http_ssl_module \
-  --with-http_stub_status_module \
-  --with-http_realip_module \
-  --with-http_auth_request_module \
-  --with-http_addition_module \
-  --with-http_gzip_static_module \
-  --with-http_sub_module \
-  --with-http_v2_module \
-  --with-http_v3_module \
-  --with-stream \
-  --with-stream_ssl_module \
-  --with-stream_realip_module \
-  --with-stream_ssl_preread_module \
-  --with-threads \
-  --with-http_secure_link_module \
-  --with-http_gunzip_module"
-
-# "Combining -flto with -g is currently experimental and expected to produce unexpected results."
-# https://gcc.gnu.org/onlinedocs/gcc/Optimize-Options.html
-CC_OPT="-g -O2 -fPIE -fstack-protector-strong \
-  -Wformat \
-  -Werror=format-security \
-  -Wno-deprecated-declarations \
-  -fno-strict-aliasing \
-  -D_FORTIFY_SOURCE=2 \
-  --param=ssp-buffer-size=4 \
-  -DTCP_FASTOPEN=23 \
-  -fPIC \
-  -Wno-cast-function-type"
-
-LD_OPT="-fPIE -fPIC -pie -Wl,-z,relro -Wl,-z,now"
-
-if [[ ${ARCH} != "aarch64" ]]; then
-  WITH_FLAGS+=" --with-file-aio"
-fi
-
-if [[ ${ARCH} == "x86_64" ]]; then
-  CC_OPT+=' -m64 -mtune=generic'
-fi
-
-WITH_MODULES=" \
-  --add-module=$BUILD_PATH/ngx_devel_kit \
-  --add-module=$BUILD_PATH/set-misc-nginx-module \
-  --add-module=$BUILD_PATH/headers-more-nginx-module \
-  --add-module=$BUILD_PATH/ngx_http_substitutions_filter_module \
-  --add-module=$BUILD_PATH/lua-nginx-module \
-  --add-module=$BUILD_PATH/stream-lua-nginx-module \
-  --add-module=$BUILD_PATH/lua-upstream-nginx-module \
-  --add-dynamic-module=$BUILD_PATH/nginx-http-auth-digest \
-  --add-dynamic-module=$BUILD_PATH/ModSecurity-nginx \
-  --add-dynamic-module=$BUILD_PATH/ngx_http_geoip2_module \
-  --add-dynamic-module=$BUILD_PATH/ngx_brotli"
-
-./configure \
-  --prefix=/usr/local/nginx \
-  --conf-path=/etc/nginx/nginx.conf \
-  --modules-path=/etc/nginx/modules \
-  --http-log-path=/var/log/nginx/access.log \
-  --error-log-path=/var/log/nginx/error.log \
-  --lock-path=/var/lock/nginx.lock \
-  --pid-path=/run/nginx.pid \
-  --http-client-body-temp-path=/var/lib/nginx/body \
-  --http-fastcgi-temp-path=/var/lib/nginx/fastcgi \
-  --http-proxy-temp-path=/var/lib/nginx/proxy \
-  --http-scgi-temp-path=/var/lib/nginx/scgi \
-  --http-uwsgi-temp-path=/var/lib/nginx/uwsgi \
-  ${WITH_FLAGS} \
-  --without-mail_pop3_module \
-  --without-mail_smtp_module \
-  --without-mail_imap_module \
-  --without-http_uwsgi_module \
-  --without-http_scgi_module \
-  --with-cc-opt="${CC_OPT}" \
-  --with-ld-opt="${LD_OPT}" \
-  --user=www-data \
-  --group=www-data \
-  ${WITH_MODULES}
-
-make
-make modules
-make install
-
-export OPENTELEMETRY_CONTRIB_COMMIT=e11348bb400d5472bf1da5d6128bead66fa111ff
-cd "$BUILD_PATH"
-
-git clone https://github.com/open-telemetry/opentelemetry-cpp-contrib.git opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}
-
-cd ${BUILD_PATH}/opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}
-git reset --hard ${OPENTELEMETRY_CONTRIB_COMMIT}
-
-export OTEL_TEMP_INSTALL=/tmp/otel
-mkdir -p ${OTEL_TEMP_INSTALL}
-
-cd ${BUILD_PATH}/opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}/instrumentation/nginx
-mkdir -p build
-cd build
-cmake -DCMAKE_BUILD_TYPE=Release \
-        -G Ninja \
-        -DCMAKE_CXX_STANDARD=17 \
-        -DCMAKE_INSTALL_PREFIX=${OTEL_TEMP_INSTALL} \
-        -DBUILD_SHARED_LIBS=ON \
-        -DNGINX_VERSION=${NGINX_VERSION} \
-        ..
-cmake --build . -j ${CORES} --target install
-
-mkdir -p /etc/nginx/modules
-cp ${OTEL_TEMP_INSTALL}/otel_ngx_module.so /etc/nginx/modules/otel_ngx_module.so
-
-
-cd "$BUILD_PATH/lua-resty-core"
-make install
-
-cd "$BUILD_PATH/lua-resty-balancer"
-make all
-make install
-
-export LUA_INCLUDE_DIR=/usr/local/include/luajit-2.1
-ln -s $LUA_INCLUDE_DIR /usr/include/lua5.1
-
-cd "$BUILD_PATH/lua-cjson"
-make all
-make install
-
-cd "$BUILD_PATH/lua-resty-cookie"
-make all
-make install
-
-cd "$BUILD_PATH/lua-resty-lrucache"
-make install
-
-cd "$BUILD_PATH/lua-resty-dns"
-make install
-
-cd "$BUILD_PATH/lua-resty-lock"
-make install
-
-# required for OCSP verification
-cd "$BUILD_PATH/lua-resty-http"
-make install
-
-cd "$BUILD_PATH/lua-resty-upload"
-make install
-
-cd "$BUILD_PATH/lua-resty-string"
-make install
-
-cd "$BUILD_PATH/lua-resty-memcached"
-make install
-
-cd "$BUILD_PATH/lua-resty-redis"
-make install
-
-cd "$BUILD_PATH/lua-resty-ipmatcher"
-INST_LUADIR=/usr/local/lib/lua make install
-
-cd "$BUILD_PATH/mimalloc"
-mkdir -p out/release
-cd out/release
-
-cmake ../..
-
-make
-make install
-
-# update image permissions
-writeDirs=( \
-  /etc/nginx \
-  /usr/local/nginx \
-  /opt/modsecurity/var/log \
-  /opt/modsecurity/var/upload \
-  /opt/modsecurity/var/audit \
-  /var/log/audit \
-  /var/log/nginx \
-);
-
-adduser -S -D -H -u 101 -h /usr/local/nginx -s /sbin/nologin -G www-data -g www-data www-data
-
-for dir in "${writeDirs[@]}"; do
-  mkdir -p ${dir};
-  chown -R www-data.www-data ${dir};
-done
-
-rm -rf /etc/nginx/owasp-modsecurity-crs/.git
-rm -rf /etc/nginx/owasp-modsecurity-crs/tests
-
-# remove .a files
-find /usr/local -name "*.a" -print | xargs /bin/rm
diff --git a/images/nginx/Makefile b/images/nginx/Makefile
index b54a7739b..103ba217f 100644
--- a/images/nginx/Makefile
+++ b/images/nginx/Makefile
@@ -1,4 +1,4 @@
-# Copyright 2017 The Kubernetes Authors. All rights reserved.
+# Copyright 2024 The Kubernetes Authors. All rights reserved.
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
@@ -22,7 +22,7 @@ INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 
 # 0.0.0 shouldn't clobber any released builds
 SHORT_SHA ?=$(shell git rev-parse --short HEAD)
-TAG ?=v$(shell date +%Y%m%d)-$(SHORT_SHA)
+TAG ?=$(shell cat TAG)
 
 REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
 
diff --git a/images/nginx/README.md b/images/nginx/README.md
index da6994fb5..768077215 100644
--- a/images/nginx/README.md
+++ b/images/nginx/README.md
@@ -1,27 +1,47 @@
-NGINX base image using [alpine](https://www.alpinelinux.org/)
+NGINX base image
 
-This custom image contains:
+### HTTP/3 Support
 
-- [nginx-http-auth-digest](https://github.com/atomx/nginx-http-auth-digest)
-- [ngx_http_substitutions_filter_module](https://github.com/yaoweibin/ngx_http_substitutions_filter_module)
-- [OpenTelemetry-CPP](https://github.com/open-telemetry/opentelemetry-cpp)
-- [OpenTelemetry-CPP-Nginx](https://github.com/open-telemetry/opentelemetry-cpp-contrib/tree/main/instrumentation/nginx)
-- [nginx-opentracing](https://github.com/opentracing-contrib/nginx-opentracing)
-- [opentracing-cpp](https://github.com/opentracing/opentracing-cpp)
-- [zipkin-cpp-opentracing](https://github.com/rnburn/zipkin-cpp-opentracing)
-- [dd-opentracing-cpp](https://github.com/DataDog/dd-opentracing-cpp)
-- [ModSecurity-nginx](https://github.com/SpiderLabs/ModSecurity-nginx) (only supported in x86_64)
-- [brotli](https://github.com/google/brotli)
-- [geoip2](https://github.com/leev/ngx_http_geoip2_module)
+**HTTP/3 support is experimental and under development**
 
-**How to use this image:**
-This image provides a default configuration file with no backend servers.
+[HTTP/3](https://datatracker.ietf.org/doc/html/rfc9114)\
+[QUIC](https://datatracker.ietf.org/doc/html/rfc9000)
 
-_Using docker_
+[According to the documentation, NGINX 1.25.0 or higher supports HTTP/3:](https://nginx.org/en/docs/quic.html)
 
-NGINX base image we use is defined in NGINX_BASE file at the root of the project 
+> Support for QUIC and HTTP/3 protocols is available since 1.25.0.
 
-```console
-docker run -v /some/nginx.conf:/etc/nginx/nginx.conf:ro $(cat ../../NGINX_BASE)
-```
+But this requires adding a new flag during the build:
 
+> When configuring nginx, it is possible to enable QUIC and HTTP/3 using the --with-http_v3_module configuration parameter.
+
+[We have added this flag](https://github.com/kubernetes/ingress-nginx/pull/11470), but it is not enough to use HTTP/3 in ingress-nginx, this is the first step.
+
+The next steps will be:
+
+1. **Waiting for OpenSSL 3.4.**\
+    The main problem is, that we still use OpenSSL (3.x) and it does not support the important mechanism of TLS 1.3 - [early_data](https://datatracker.ietf.org/doc/html/rfc8446#section-2.3):
+
+    > Otherwise, the OpenSSL compatibility layer will be used that does not support early data.
+    
+    [And although another part of the documentation says that the directive is supported with OpenSSL:](https://nginx.org/en/docs/http/ngx_http_ssl_module.html#ssl_early_data)
+
+    > The directive is supported when using OpenSSL 1.1.1 or higher.
+    
+    But this is incomplete support, because OpenSSL does not support this feature, and [it has only client side support:](https://github.com/openssl/openssl)
+
+    > ... the QUIC (currently client side only) version 1 protocol
+   
+    [And also there are some issues even with client side](https://github.com/openssl/openssl/discussions/23339)
+
+    Due to this, we currently have incomplete HTTP/3 support, without important security and performance features.\
+    But the good news is that [OpenSSL plans to add server-side support in 3.4](https://github.com/openssl/web/blob/master/roadmap.md):
+
+    > Server-side QUIC support
+    
+    [Overview of SSL libraries(HAProxy Documentation)](https://github.com/haproxy/wiki/wiki/SSL-Libraries-Support-Status#tldr)  
+
+2. **Adding [parameters](https://nginx.org/en/docs/http/ngx_http_v3_module.html) to the configmap to configure HTTP/3 and quic(enableHTTP3, enableHTTP/0.9, maxCurrentStream, and so on).**
+3. **Adding options to the nginx config template(`listen 443 quic` to server blocks and `add_header Alt-Svc 'h3=":8443"; ma=86400';` to location blocks).**
+4. **Opening the https port for UDP in the container(because QUIC uses UDP).**
+5. **Adding tests.**
diff --git a/images/nginx/TAG b/images/nginx/TAG
index 0ec25f750..f25246219 100644
--- a/images/nginx/TAG
+++ b/images/nginx/TAG
@@ -1 +1 @@
-v1.0.0
+v0.0.12
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 245bb353b..1d2b6b623 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -1,4 +1,4 @@
-# Copyright 2015 The Kubernetes Authors. All rights reserved.
+# Copyright 2024 The Kubernetes Authors. All rights reserved.
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
@@ -29,11 +29,10 @@ ENV LUA_PATH="/usr/local/share/luajit-2.1.0-beta3/?.lua;/usr/local/share/lua/5.1
 ENV LUA_CPATH="/usr/local/lib/lua/?/?.so;/usr/local/lib/lua/?.so;;"
 
 COPY --from=builder /usr/local /usr/local
+COPY --from=builder /usr/lib/libopentelemetry* /usr/local/lib
 COPY --from=builder /opt /opt
 COPY --from=builder /etc/nginx /etc/nginx
 
-LABEL org.opencontainers.image.source=https://github.com/kubernetes/ingress-nginx
-
 RUN apk update \
   && apk upgrade \
   && apk add -U --no-cache \
@@ -50,6 +49,8 @@ RUN apk update \
   yaml-cpp \
   dumb-init \
   tzdata \
+  grpc-cpp \
+  libprotobuf \
   && ln -s /usr/local/nginx/sbin/nginx /sbin/nginx \
   && adduser -S -D -H -u 101 -h /usr/local/nginx \
   -s /sbin/nologin -G www-data -g www-data www-data \
diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index cfd6493e3..3baf775fc 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -1,6 +1,6 @@
 #!/bin/bash
 
-# Copyright 2015 The Kubernetes Authors.
+# Copyright 2023 The Kubernetes Authors.
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
@@ -18,136 +18,121 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
-export NGINX_VERSION=1.21.6
+export NGINX_VERSION=1.25.5
 
-# Check for recent changes: https://github.com/vision5/ngx_devel_kit/compare/v0.3.2...master
-export NDK_VERSION=0.3.2
+# Check for recent changes: https://github.com/vision5/ngx_devel_kit/compare/v0.3.3...master
+export NDK_VERSION=v0.3.3
 
 # Check for recent changes: https://github.com/openresty/set-misc-nginx-module/compare/v0.33...master
-export SETMISC_VERSION=0.33
+export SETMISC_VERSION=796f5a3e518748eb29a93bd450324e0ad45b704e
 
 # Check for recent changes: https://github.com/openresty/headers-more-nginx-module/compare/v0.37...master
-export MORE_HEADERS_VERSION=0.37
+export MORE_HEADERS_VERSION=v0.37
 
 # Check for recent changes: https://github.com/atomx/nginx-http-auth-digest/compare/v1.0.0...atomx:master
-export NGINX_DIGEST_AUTH=1.0.0
+export NGINX_DIGEST_AUTH=v1.0.0
 
 # Check for recent changes: https://github.com/yaoweibin/ngx_http_substitutions_filter_module/compare/v0.6.4...master
-export NGINX_SUBSTITUTIONS=b8a71eacc7f986ba091282ab8b1bbbc6ae1807e0
-
-# Check for recent changes: https://github.com/opentracing-contrib/nginx-opentracing/compare/v0.19.0...master
-export NGINX_OPENTRACING_VERSION=0.19.0
-
-#Check for recent changes: https://github.com/opentracing/opentracing-cpp/compare/v1.6.0...master
-export OPENTRACING_CPP_VERSION=f86b33f3d9e7322b1298ba62d5ffa7a9519c4c41
-
-# Check for recent changes: https://github.com/rnburn/zipkin-cpp-opentracing/compare/v0.5.2...master
-export ZIPKIN_CPP_VERSION=f69593138ff84ca2f6bc115992e18ca3d35f344a
-
-# Check for recent changes: https://github.com/jbeder/yaml-cpp/compare/yaml-cpp-0.7.0...master
-export YAML_CPP_VERSION=yaml-cpp-0.7.0
-
-# Check for recent changes: https://github.com/jaegertracing/jaeger-client-cpp/compare/v0.7.0...master
-export JAEGER_VERSION=0.7.0
-
-# Check for recent changes: https://github.com/msgpack/msgpack-c/compare/cpp-3.3.0...master
-export MSGPACK_VERSION=3.3.0
-
-# Check for recent changes: https://github.com/DataDog/dd-opentracing-cpp/compare/v1.3.7...master
-export DATADOG_CPP_VERSION=1.3.7
+export NGINX_SUBSTITUTIONS=e12e965ac1837ca709709f9a26f572a54d83430e
 
 # Check for recent changes: https://github.com/SpiderLabs/ModSecurity-nginx/compare/v1.0.3...master
-export MODSECURITY_VERSION=1.0.3
+export MODSECURITY_VERSION=v1.0.3
 
-# Check for recent changes: https://github.com/SpiderLabs/ModSecurity/compare/v3.0.11...v3/master
-export MODSECURITY_LIB_VERSION=bbde9381cbccb49ea73f6194b08b478adc53f3bc
+# Check for recent changes: https://github.com/SpiderLabs/ModSecurity/compare/v3.0.8...v3/master
+export MODSECURITY_LIB_VERSION=v3.0.12
 
-# Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.2...v3.3/master
-export OWASP_MODSECURITY_CRS_VERSION=v3.3.5
+# Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.5...v4.0/main
+export OWASP_MODSECURITY_CRS_VERSION=v4.4.0
 
-# Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.25...master
-export LUA_NGX_VERSION=0.10.25
+# Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.26``...master
+export LUA_NGX_VERSION=v0.10.26
 
-# Check for recent changes: https://github.com/openresty/stream-lua-nginx-module/compare/v0.0.13...master
-export LUA_STREAM_NGX_VERSION=0.0.13
+# Check for recent changes: https://github.com/openresty/stream-lua-nginx-module/compare/bea8a0c0de94cede71554f53818ac0267d675d63...master
+export LUA_STREAM_NGX_VERSION=bea8a0c0de94cede71554f53818ac0267d675d63
 
 # Check for recent changes: https://github.com/openresty/lua-upstream-nginx-module/compare/8aa93ead98ba2060d4efd594ae33a35d153589bf...master
-export LUA_UPSTREAM_VERSION=8aa93ead98ba2060d4efd594ae33a35d153589bf
+export LUA_UPSTREAM_VERSION=542be0893543a4e42d89f6dd85372972f5ff2a36
 
-# Check for recent changes: https://github.com/openresty/lua-cjson/compare/2.1.0.11...openresty:master
-export LUA_CJSON_VERSION=2.1.0.11
+# Check for recent changes: https://github.com/openresty/lua-cjson/compare/2.1.0.13...openresty:master
+export LUA_CJSON_VERSION=2.1.0.13
 
-# Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/3.4...master
+# Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/a607a41a8115fecfc05b5c283c81532a3d605425...master
 export GEOIP2_VERSION=a607a41a8115fecfc05b5c283c81532a3d605425
 
-# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20230410...v2.1-agentzh
-export LUAJIT_VERSION=2.1-20230410
+# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20240314...v2.1-agentzh
+export LUAJIT_VERSION=v2.1-20240314
 
-# Check for recent changes: https://github.com/openresty/lua-resty-balancer/compare/v0.04...master
-export LUA_RESTY_BALANCER=0.04
+# Check for recent changes: https://github.com/openresty/lua-resty-balancer/compare/1cd4363c0a239afe4765ec607dcfbbb4e5900eea...master
+export LUA_RESTY_BALANCER=1cd4363c0a239afe4765ec607dcfbbb4e5900eea
 
-# Check for recent changes: https://github.com/openresty/lua-resty-lrucache/compare/v0.13...master
-export LUA_RESTY_CACHE=0.13
+# Check for recent changes: https://github.com/openresty/lua-resty-lrucache/compare/99e7578465b40f36f596d099b82eab404f2b42ed...master
+export LUA_RESTY_CACHE=99e7578465b40f36f596d099b82eab404f2b42ed
 
 # Check for recent changes: https://github.com/openresty/lua-resty-core/compare/v0.1.27...master
-export LUA_RESTY_CORE=0.1.27
+export LUA_RESTY_CORE=v0.1.28
 
-# Check for recent changes: https://github.com/utix/lua-resty-cookie/compare/9533f47...master
-export LUA_RESTY_COOKIE_VERSION=9533f479371663107b515590fc9daf00d61ebf11
+# Check for recent changes: https://github.com/cloudflare/lua-resty-cookie/compare/f418d77082eaef48331302e84330488fdc810ef4...master
+export LUA_RESTY_COOKIE_VERSION=f418d77082eaef48331302e84330488fdc810ef4
 
-# Check for recent changes: https://github.com/openresty/lua-resty-dns/compare/v0.22...master
-export LUA_RESTY_DNS=0.22
+# Check for recent changes: https://github.com/openresty/lua-resty-dns/compare/8bb53516e2933e61c317db740a9b7c2048847c2f...master
+export LUA_RESTY_DNS=8bb53516e2933e61c317db740a9b7c2048847c2f
 
-# Check for recent changes: https://github.com/ledgetech/lua-resty-http/compare/v0.16.1...master
-export LUA_RESTY_HTTP=0ce55d6d15da140ecc5966fa848204c6fd9074e8
+# Check for recent changes: https://github.com/ledgetech/lua-resty-http/compare/v0.17.1...master
+export LUA_RESTY_HTTP=v0.17.1
 
 # Check for recent changes: https://github.com/openresty/lua-resty-lock/compare/v0.09...master
-export LUA_RESTY_LOCK=0.09
+export LUA_RESTY_LOCK=405d0bf4cbfa74d742c6ed3158d442221e6212a9
 
 # Check for recent changes: https://github.com/openresty/lua-resty-upload/compare/v0.11...master
-export LUA_RESTY_UPLOAD_VERSION=0.11
+export LUA_RESTY_UPLOAD_VERSION=979372cce011f3176af3c9aff53fd0e992c4bfd3
 
 # Check for recent changes: https://github.com/openresty/lua-resty-string/compare/v0.15...master
-export LUA_RESTY_STRING_VERSION=0.15
+export LUA_RESTY_STRING_VERSION=6f1bc21d86daef804df3cc34d6427ef68da26844
 
 # Check for recent changes: https://github.com/openresty/lua-resty-memcached/compare/v0.17...master
-export LUA_RESTY_MEMCACHED_VERSION=0.17
+export LUA_RESTY_MEMCACHED_VERSION=2f02b68bf65fa2332cce070674a93a69a6c7239b
 
 # Check for recent changes: https://github.com/openresty/lua-resty-redis/compare/v0.30...master
-export LUA_RESTY_REDIS_VERSION=0.30
+export LUA_RESTY_REDIS_VERSION=8641b9f1b6f75cca50c90cf8ca5c502ad8950aa8
 
 # Check for recent changes: https://github.com/api7/lua-resty-ipmatcher/compare/v0.6.1...master
-export LUA_RESTY_IPMATCHER_VERSION=0.6.1
+export LUA_RESTY_IPMATCHER_VERSION=3e93c53eb8c9884efe939ef070486a0e507cc5be
 
-# Check for recent changes:  https://github.com/microsoft/mimalloc/compare/v1.7.6...master
-export MIMALOC_VERSION=1.7.6
+# Check for recent changes:  https://github.com/microsoft/mimalloc/compare/v2.1.7...master
+export MIMALOC_VERSION=v2.1.7
+
+# Check on https://github.com/open-telemetry/opentelemetry-cpp
+export OPENTELEMETRY_CPP_VERSION="v1.11.0"
+# Check on https://github.com/open-telemetry/opentelemetry-proto
+export OPENTELEMETRY_PROTO_VERSION="v1.1.0"
 
 export BUILD_PATH=/tmp/build
 
 ARCH=$(uname -m)
 
-if [[ ${ARCH} == "s390x" ]]; then
-  export LUAJIT_VERSION=9d5750d28478abfdcaefdfdc408f87752a21e431
-  export LUA_RESTY_CORE=0.1.17
-  export LUA_NGX_VERSION=0.10.15
-  export LUA_STREAM_NGX_VERSION=0.0.7
-fi
-
 get_src()
 {
   hash="$1"
   url="$2"
+  dest="${3-}"
+  ARGS=""
   f=$(basename "$url")
 
   echo "Downloading $url"
 
   curl -sSL "$url" -o "$f"
-  echo "$hash  $f" | sha256sum -c - || exit 10
-  tar xzf "$f"
+  # TODO: Reenable checksum verification but make it smarter
+  # echo "$hash  $f" | sha256sum -c - || exit 10
+  if [ ! -z "$dest" ]; then
+        mkdir ${BUILD_PATH}/${dest}
+        ARGS="-C ${BUILD_PATH}/${dest} --strip-components=1"
+  fi
+  tar xvzf "$f" $ARGS
   rm -rf "$f"
 }
 
 # install required packages to build
+# Dependencies from "ninja" and below are OTEL dependencies
 apk add \
   bash \
   gcc \
@@ -184,7 +169,22 @@ apk add \
   unzip \
   dos2unix \
   yaml-cpp \
-  coreutils
+  coreutils \
+  ninja \
+  gtest-dev \
+  git \
+  build-base \
+  pkgconfig \
+  c-ares-dev \
+  re2-dev \
+  grpc-dev \
+  protobuf-dev
+
+# apk add -X http://dl-cdn.alpinelinux.org/alpine/edge/testing opentelemetry-cpp-dev
+
+# There is some bug with some platforms and git, so force HTTP/1.1
+git config --global http.version HTTP/1.1
+git config --global http.postBuffer 157286400
 
 mkdir -p /etc/nginx
 
@@ -196,271 +196,135 @@ get_src 66dc7081488811e9f925719e34d1b4504c2801c81dee2920e5452a86b11405ae \
         "https://nginx.org/download/nginx-$NGINX_VERSION.tar.gz"
 
 get_src aa961eafb8317e0eb8da37eb6e2c9ff42267edd18b56947384e719b85188f58b \
-        "https://github.com/vision5/ngx_devel_kit/archive/v$NDK_VERSION.tar.gz"
+        "https://github.com/vision5/ngx_devel_kit/archive/$NDK_VERSION.tar.gz" "ngx_devel_kit"
+
+get_src abc123 \
+        "https://github.com/open-telemetry/opentelemetry-cpp/archive/$OPENTELEMETRY_CPP_VERSION.tar.gz" "opentelemetry-cpp"
+
+get_src abc123 \
+        "https://github.com/open-telemetry/opentelemetry-proto/archive/$OPENTELEMETRY_PROTO_VERSION.tar.gz" "opentelemetry-proto"
 
 get_src cd5e2cc834bcfa30149e7511f2b5a2183baf0b70dc091af717a89a64e44a2985 \
-        "https://github.com/openresty/set-misc-nginx-module/archive/v$SETMISC_VERSION.tar.gz"
+        "https://github.com/openresty/set-misc-nginx-module/archive/$SETMISC_VERSION.tar.gz" "set-misc-nginx-module"
 
-get_src cf6e169d6b350c06d0c730b0eaf4973394026ad40094cddd3b3a5b346577019d \
-        "https://github.com/openresty/headers-more-nginx-module/archive/v$MORE_HEADERS_VERSION.tar.gz"
+get_src 0c0d2ced2ce895b3f45eb2b230cd90508ab2a773299f153de14a43e44c1209b3 \
+        "https://github.com/openresty/headers-more-nginx-module/archive/$MORE_HEADERS_VERSION.tar.gz" "headers-more-nginx-module"
 
 get_src f09851e6309560a8ff3e901548405066c83f1f6ff88aa7171e0763bd9514762b \
-        "https://github.com/atomx/nginx-http-auth-digest/archive/v$NGINX_DIGEST_AUTH.tar.gz"
+        "https://github.com/atomx/nginx-http-auth-digest/archive/$NGINX_DIGEST_AUTH.tar.gz" "nginx-http-auth-digest"
 
 get_src a98b48947359166326d58700ccdc27256d2648218072da138ab6b47de47fbd8f \
-        "https://github.com/yaoweibin/ngx_http_substitutions_filter_module/archive/$NGINX_SUBSTITUTIONS.tar.gz"
-
-get_src 6f97776ebdf019b105a755c7736b70bdbd7e575c7f0d39db5fe127873c7abf17 \
-        "https://github.com/opentracing-contrib/nginx-opentracing/archive/v$NGINX_OPENTRACING_VERSION.tar.gz"
-
-get_src cbe625cba85291712253db5bc3870d60c709acfad9a8af5a302673d3d201e3ea \
-        "https://github.com/opentracing/opentracing-cpp/archive/$OPENTRACING_CPP_VERSION.tar.gz"
-
-get_src 71de3d0658935db7ccea20e006b35e58ddc7e4c18878b9523f2addc2371e9270 \
-        "https://github.com/rnburn/zipkin-cpp-opentracing/archive/$ZIPKIN_CPP_VERSION.tar.gz"
+        "https://github.com/yaoweibin/ngx_http_substitutions_filter_module/archive/$NGINX_SUBSTITUTIONS.tar.gz" "ngx_http_substitutions_filter_module"
 
 get_src 32a42256616cc674dca24c8654397390adff15b888b77eb74e0687f023c8751b \
-        "https://github.com/SpiderLabs/ModSecurity-nginx/archive/v$MODSECURITY_VERSION.tar.gz"
+        "https://github.com/SpiderLabs/ModSecurity-nginx/archive/$MODSECURITY_VERSION.tar.gz" "ModSecurity-nginx"
 
-get_src 43e6a9fcb146ad871515f0d0873947e5d497a1c9c60c58cb102a97b47208b7c3 \
-        "https://github.com/jbeder/yaml-cpp/archive/$YAML_CPP_VERSION.tar.gz"
-
-get_src 3a3a03060bf5e3fef52c9a2de02e6035cb557f389453d8f3b0c1d3d570636994 \
-        "https://github.com/jaegertracing/jaeger-client-cpp/archive/v$JAEGER_VERSION.tar.gz"
-
-get_src 754c3ace499a63e45b77ef4bcab4ee602c2c414f58403bce826b76ffc2f77d0b \
-        "https://github.com/msgpack/msgpack-c/archive/cpp-$MSGPACK_VERSION.tar.gz"
-
-if [[ ${ARCH} == "s390x" ]]; then
-get_src 7d5f3439c8df56046d0564b5857fd8a30296ab1bd6df0f048aed7afb56a0a4c2 \
-        "https://github.com/openresty/lua-nginx-module/archive/v$LUA_NGX_VERSION.tar.gz"
-get_src 99c47c75c159795c9faf76bbb9fa58e5a50b75286c86565ffcec8514b1c74bf9 \
-        "https://github.com/openresty/stream-lua-nginx-module/archive/v$LUA_STREAM_NGX_VERSION.tar.gz"
-else
 get_src bc764db42830aeaf74755754b900253c233ad57498debe7a441cee2c6f4b07c2 \
-        "https://github.com/openresty/lua-nginx-module/archive/v$LUA_NGX_VERSION.tar.gz"
+        "https://github.com/openresty/lua-nginx-module/archive/$LUA_NGX_VERSION.tar.gz" "lua-nginx-module"
 
 get_src 01b715754a8248cc7228e0c8f97f7488ae429d90208de0481394e35d24cef32f \
-        "https://github.com/openresty/stream-lua-nginx-module/archive/v$LUA_STREAM_NGX_VERSION.tar.gz"
-
-fi
+        "https://github.com/openresty/stream-lua-nginx-module/archive/$LUA_STREAM_NGX_VERSION.tar.gz" "stream-lua-nginx-module"
 
 get_src a92c9ee6682567605ece55d4eed5d1d54446ba6fba748cff0a2482aea5713d5f \
-        "https://github.com/openresty/lua-upstream-nginx-module/archive/$LUA_UPSTREAM_VERSION.tar.gz"
+        "https://github.com/openresty/lua-upstream-nginx-module/archive/$LUA_UPSTREAM_VERSION.tar.gz" "lua-upstream-nginx-module"
 
-if [[ ${ARCH} == "s390x" ]]; then
-get_src 266ed1abb70a9806d97cb958537a44b67db6afb33d3b32292a2d68a2acedea75 \
-        "https://github.com/openresty/luajit2/archive/$LUAJIT_VERSION.tar.gz"
-else
 get_src 77bbcbb24c3c78f51560017288f3118d995fe71240aa379f5818ff6b166712ff \
-        "https://github.com/openresty/luajit2/archive/v$LUAJIT_VERSION.tar.gz"
-fi
-
-get_src 8d39c6b23f941a2d11571daaccc04e69539a3fcbcc50a631837560d5861a7b96 \
-        "https://github.com/DataDog/dd-opentracing-cpp/archive/v$DATADOG_CPP_VERSION.tar.gz"
+        "https://github.com/openresty/luajit2/archive/$LUAJIT_VERSION.tar.gz" "luajit2"
 
 get_src b6c9c09fd43eb34a71e706ad780b2ead26549a9a9f59280fe558f5b7b980b7c6 \
-        "https://github.com/leev/ngx_http_geoip2_module/archive/$GEOIP2_VERSION.tar.gz"
+        "https://github.com/leev/ngx_http_geoip2_module/archive/$GEOIP2_VERSION.tar.gz" "ngx_http_geoip2_module"
 
 get_src deb4ab1ffb9f3d962c4b4a2c4bdff692b86a209e3835ae71ebdf3b97189e40a9 \
-        "https://github.com/openresty/lua-resty-upload/archive/v$LUA_RESTY_UPLOAD_VERSION.tar.gz"
+        "https://github.com/openresty/lua-resty-upload/archive/$LUA_RESTY_UPLOAD_VERSION.tar.gz" "lua-resty-upload"
 
 get_src bdbf271003d95aa91cab0a92f24dca129e99b33f79c13ebfcdbbcbb558129491 \
-        "https://github.com/openresty/lua-resty-string/archive/v$LUA_RESTY_STRING_VERSION.tar.gz"
+        "https://github.com/openresty/lua-resty-string/archive/$LUA_RESTY_STRING_VERSION.tar.gz" "lua-resty-string"
 
 get_src 16d72ed133f0c6df376a327386c3ef4e9406cf51003a700737c3805770ade7c5 \
-        "https://github.com/openresty/lua-resty-balancer/archive/v$LUA_RESTY_BALANCER.tar.gz"
+        "https://github.com/openresty/lua-resty-balancer/archive/$LUA_RESTY_BALANCER.tar.gz" "lua-resty-balancer"
 
-if [[ ${ARCH} == "s390x" ]]; then
-get_src 8f5f76d2689a3f6b0782f0a009c56a65e4c7a4382be86422c9b3549fe95b0dc4 \
-        "https://github.com/openresty/lua-resty-core/archive/v$LUA_RESTY_CORE.tar.gz"
-else
 get_src 39baab9e2b31cc48cecf896cea40ef6e80559054fd8a6e440cc804a858ea84d4 \
-        "https://github.com/openresty/lua-resty-core/archive/v$LUA_RESTY_CORE.tar.gz"
-fi
+        "https://github.com/openresty/lua-resty-core/archive/$LUA_RESTY_CORE.tar.gz" "lua-resty-core"
 
 get_src a77b9de160d81712f2f442e1de8b78a5a7ef0d08f13430ff619f79235db974d4 \
-        "https://github.com/openresty/lua-cjson/archive/$LUA_CJSON_VERSION.tar.gz"
+        "https://github.com/openresty/lua-cjson/archive/$LUA_CJSON_VERSION.tar.gz" "lua-cjson"
 
-get_src a404c790553617424d743b82a9f01feccd0d2930b306b370c665ca3b7c09ccb6 \
-        "https://github.com/utix/lua-resty-cookie/archive/$LUA_RESTY_COOKIE_VERSION.tar.gz"
+get_src 5ed48c36231e2622b001308622d46a0077525ac2f751e8cc0c9905914254baa4 \
+        "https://github.com/cloudflare/lua-resty-cookie/archive/$LUA_RESTY_COOKIE_VERSION.tar.gz" "lua-resty-cookie"
 
 get_src 573184006b98ccee2594b0d134fa4d05e5d2afd5141cbad315051ccf7e9b6403 \
-        "https://github.com/openresty/lua-resty-lrucache/archive/v$LUA_RESTY_CACHE.tar.gz"
+        "https://github.com/openresty/lua-resty-lrucache/archive/$LUA_RESTY_CACHE.tar.gz" "lua-resty-lrucache"
 
 get_src b4ddcd47db347e9adf5c1e1491a6279a6ae2a3aff3155ef77ea0a65c998a69c1 \
-        "https://github.com/openresty/lua-resty-lock/archive/v$LUA_RESTY_LOCK.tar.gz"
+        "https://github.com/openresty/lua-resty-lock/archive/$LUA_RESTY_LOCK.tar.gz" "lua-resty-lock"
 
 get_src 70e9a01eb32ccade0d5116a25bcffde0445b94ad35035ce06b94ccd260ad1bf0 \
-        "https://github.com/openresty/lua-resty-dns/archive/v$LUA_RESTY_DNS.tar.gz"
+        "https://github.com/openresty/lua-resty-dns/archive/$LUA_RESTY_DNS.tar.gz" "lua-resty-dns"
 
 get_src 9fcb6db95bc37b6fce77d3b3dc740d593f9d90dce0369b405eb04844d56ac43f \
-        "https://github.com/ledgetech/lua-resty-http/archive/$LUA_RESTY_HTTP.tar.gz"
+        "https://github.com/ledgetech/lua-resty-http/archive/$LUA_RESTY_HTTP.tar.gz" "lua-resty-http"
 
 get_src 02733575c4aed15f6cab662378e4b071c0a4a4d07940c4ef19a7319e9be943d4 \
-        "https://github.com/openresty/lua-resty-memcached/archive/v$LUA_RESTY_MEMCACHED_VERSION.tar.gz"
+        "https://github.com/openresty/lua-resty-memcached/archive/$LUA_RESTY_MEMCACHED_VERSION.tar.gz" "lua-resty-memcached"
 
 get_src c15aed1a01c88a3a6387d9af67a957dff670357f5fdb4ee182beb44635eef3f1 \
-        "https://github.com/openresty/lua-resty-redis/archive/v$LUA_RESTY_REDIS_VERSION.tar.gz"
+        "https://github.com/openresty/lua-resty-redis/archive/$LUA_RESTY_REDIS_VERSION.tar.gz" "lua-resty-redis"
 
 get_src efb767487ea3f6031577b9b224467ddbda2ad51a41c5867a47582d4ad85d609e \
-        "https://github.com/api7/lua-resty-ipmatcher/archive/v$LUA_RESTY_IPMATCHER_VERSION.tar.gz"
+        "https://github.com/api7/lua-resty-ipmatcher/archive/$LUA_RESTY_IPMATCHER_VERSION.tar.gz" "lua-resty-ipmatcher"
 
 get_src d74f86ada2329016068bc5a243268f1f555edd620b6a7d6ce89295e7d6cf18da \
-        "https://github.com/microsoft/mimalloc/archive/refs/tags/v${MIMALOC_VERSION}.tar.gz"
+        "https://github.com/microsoft/mimalloc/archive/${MIMALOC_VERSION}.tar.gz" "mimalloc"
 
 # improve compilation times
 CORES=$(($(grep -c ^processor /proc/cpuinfo) - 1))
 
 export MAKEFLAGS=-j${CORES}
 export CTEST_BUILD_FLAGS=${MAKEFLAGS}
-export HUNTER_JOBS_NUMBER=${CORES}
-export HUNTER_USE_CACHE_SERVERS=true
 
 # Install luajit from openresty fork
 export LUAJIT_LIB=/usr/local/lib
 export LUA_LIB_DIR="$LUAJIT_LIB/lua"
 export LUAJIT_INC=/usr/local/include/luajit-2.1
 
-cd "$BUILD_PATH/luajit2-$LUAJIT_VERSION"
+cd "$BUILD_PATH/luajit2"
 make CCDEBUG=-g
 make install
 
 ln -s /usr/local/bin/luajit /usr/local/bin/lua
 ln -s "$LUAJIT_INC" /usr/local/include/lua
 
-cd "$BUILD_PATH"
+cd "$BUILD_PATH/opentelemetry-cpp"
+export CXXFLAGS="-DBENCHMARK_HAS_NO_INLINE_ASSEMBLY"
+cmake -B build -G Ninja -Wno-dev \
+        -DOTELCPP_PROTO_PATH="${BUILD_PATH}/opentelemetry-proto/" \
+        -DCMAKE_INSTALL_PREFIX=/usr \
+        -DBUILD_SHARED_LIBS=ON \
+        -DBUILD_TESTING="OFF" \
+        -DBUILD_W3CTRACECONTEXT_TEST="OFF" \
+        -DCMAKE_BUILD_TYPE=None \
+        -DWITH_ABSEIL=ON \
+        -DWITH_STL=ON \
+        -DWITH_EXAMPLES=OFF \
+        -DWITH_ZPAGES=OFF \
+        -DWITH_OTLP_GRPC=ON \
+        -DWITH_OTLP_HTTP=ON \
+        -DWITH_ZIPKIN=ON \
+        -DWITH_PROMETHEUS=OFF \
+        -DWITH_ASYNC_EXPORT_PREVIEW=OFF \
+        -DWITH_METRICS_EXEMPLAR_PREVIEW=OFF
+      cmake --build build
+      cmake --install build
 
 # Git tuning
 git config --global --add core.compression -1
 
-# build opentracing lib
-cd "$BUILD_PATH/opentracing-cpp-$OPENTRACING_CPP_VERSION"
-mkdir .build
-cd .build
-
-cmake -DCMAKE_BUILD_TYPE=Release \
-      -DBUILD_TESTING=OFF \
-      -DBUILD_SHARED_LIBS=OFF \
-      -DBUILD_MOCKTRACER=OFF \
-      -DBUILD_STATIC_LIBS=ON \
-      -DCMAKE_POSITION_INDEPENDENT_CODE:BOOL=true \
-      ..
-
-make
-make install
-
-# build yaml-cpp
-# TODO @timmysilv: remove this and jaeger sed calls once it is fixed in jaeger-client-cpp
-cd "$BUILD_PATH/yaml-cpp-$YAML_CPP_VERSION"
-mkdir .build
-cd .build
-
-cmake -DCMAKE_BUILD_TYPE=Release \
-      -DCMAKE_POSITION_INDEPENDENT_CODE:BOOL=true \
-      -DYAML_BUILD_SHARED_LIBS=ON \
-      -DYAML_CPP_BUILD_TESTS=OFF \
-      -DYAML_CPP_BUILD_TOOLS=OFF \
-      ..
-
-make
-make install
-
-# build jaeger lib
-cd "$BUILD_PATH/jaeger-client-cpp-$JAEGER_VERSION"
-sed -i 's/-Werror/-Wno-psabi/' CMakeLists.txt
-# use the above built yaml-cpp instead until a new version of jaeger-client-cpp fixes the yaml-cpp issue
-# tl;dr new hunter is needed for new yaml-cpp, but new hunter has a conflict with old Thrift and new Boost
-sed -i 's/hunter_add_package(yaml-cpp)/#hunter_add_package(yaml-cpp)/' CMakeLists.txt
-sed -i 's/yaml-cpp::yaml-cpp/yaml-cpp/' CMakeLists.txt
-
-cat <<EOF > export.map
-{
-    global:
-        OpenTracingMakeTracerFactory;
-    local: *;
-};
-EOF
-
-mkdir .build
-cd .build
-
-cmake -DCMAKE_BUILD_TYPE=Release \
-      -DBUILD_TESTING=OFF \
-      -DJAEGERTRACING_BUILD_EXAMPLES=OFF \
-      -DJAEGERTRACING_BUILD_CROSSDOCK=OFF \
-      -DJAEGERTRACING_COVERAGE=OFF \
-      -DJAEGERTRACING_PLUGIN=ON \
-      -DHUNTER_CONFIGURATION_TYPES=Release \
-      -DBUILD_SHARED_LIBS=OFF \
-      -DJAEGERTRACING_WITH_YAML_CPP=ON \
-      -DCMAKE_POSITION_INDEPENDENT_CODE:BOOL=true \
-      ..
-
-make
-make install
-
-export HUNTER_INSTALL_DIR=$(cat _3rdParty/Hunter/install-root-dir) \
-
-mv libjaegertracing_plugin.so /usr/local/lib/libjaegertracing_plugin.so
-
-
-# build zipkin lib
-cd "$BUILD_PATH/zipkin-cpp-opentracing-$ZIPKIN_CPP_VERSION"
-
-cat <<EOF > export.map
-{
-    global:
-        OpenTracingMakeTracerFactory;
-    local: *;
-};
-EOF
-
-mkdir .build
-cd .build
-
-cmake -DCMAKE_BUILD_TYPE=Release \
-      -DBUILD_SHARED_LIBS=OFF \
-      -DBUILD_PLUGIN=ON \
-      -DBUILD_TESTING=OFF \
-      -DCMAKE_POSITION_INDEPENDENT_CODE:BOOL=true \
-      ..
-
-make
-make install
-
-# build msgpack lib
-cd "$BUILD_PATH/msgpack-c-cpp-$MSGPACK_VERSION"
-
-mkdir .build
-cd .build
-cmake -DCMAKE_BUILD_TYPE=Release \
-      -DBUILD_SHARED_LIBS=OFF \
-      -DMSGPACK_BUILD_EXAMPLES=OFF \
-      -DCMAKE_POSITION_INDEPENDENT_CODE:BOOL=true \
-      ..
-
-make
-make install
-
-# build datadog lib
-cd "$BUILD_PATH/dd-opentracing-cpp-$DATADOG_CPP_VERSION"
-
-mkdir .build
-cd .build
-
-cmake -DCMAKE_BUILD_TYPE=Release \
-      -DBUILD_TESTING=OFF \
-      -DCMAKE_POSITION_INDEPENDENT_CODE:BOOL=true \
-      ..
-
-make
-make install
-
 # Get Brotli source and deps
 cd "$BUILD_PATH"
-git clone --depth=1 https://github.com/google/ngx_brotli.git
+git clone --depth=100 https://github.com/google/ngx_brotli.git
 cd ngx_brotli
+# https://github.com/google/ngx_brotli/issues/156
+git reset --hard 63ca02abdcf79c9e788d2eedcc388d2335902e52
 git submodule init
 git submodule update
 
@@ -518,17 +382,13 @@ mv rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf.example rules/REQUEST-900-E
 mv rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf.example rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
 cd ..
 
-# OWASP CRS v3 rules
+# OWASP CRS v4 rules
 echo "
 Include /etc/nginx/owasp-modsecurity-crs/crs-setup.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-900-EXCLUSION-RULES-BEFORE-CRS.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-901-INITIALIZATION.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-903.9001-DRUPAL-EXCLUSION-RULES.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-903.9002-WORDPRESS-EXCLUSION-RULES.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-905-COMMON-EXCEPTIONS.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-910-IP-REPUTATION.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-911-METHOD-ENFORCEMENT.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-912-DOS-PROTECTION.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-913-SCANNER-DETECTION.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-921-PROTOCOL-ATTACK.conf
@@ -537,7 +397,7 @@ Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-930-APPLICATION-ATTACK-LF
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-931-APPLICATION-ATTACK-RFI.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-933-APPLICATION-ATTACK-PHP.conf
-Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-934-APPLICATION-ATTACK-NODEJS.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-934-APPLICATION-ATTACK-GENERIC.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-941-APPLICATION-ATTACK-XSS.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/REQUEST-943-APPLICATION-ATTACK-SESSION-FIXATION.conf
@@ -548,6 +408,7 @@ Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-951-DATA-LEAKAGES-SQL.co
 Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-952-DATA-LEAKAGES-JAVA.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-953-DATA-LEAKAGES-PHP.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-954-DATA-LEAKAGES-IIS.conf
+Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-955-WEB-SHELLS.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-959-BLOCKING-EVALUATION.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-980-CORRELATION.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
@@ -577,6 +438,7 @@ WITH_FLAGS="--with-debug \
   --with-http_gzip_static_module \
   --with-http_sub_module \
   --with-http_v2_module \
+  --with-http_v3_module \
   --with-stream \
   --with-stream_ssl_module \
   --with-stream_realip_module \
@@ -596,10 +458,9 @@ CC_OPT="-g -O2 -fPIE -fstack-protector-strong \
   --param=ssp-buffer-size=4 \
   -DTCP_FASTOPEN=23 \
   -fPIC \
-  -I$HUNTER_INSTALL_DIR/include \
   -Wno-cast-function-type"
 
-LD_OPT="-fPIE -fPIC -pie -Wl,-z,relro -Wl,-z,now -L$HUNTER_INSTALL_DIR/lib"
+LD_OPT="-fPIE -fPIC -pie -Wl,-z,relro -Wl,-z,now"
 
 if [[ ${ARCH} != "aarch64" ]]; then
   WITH_FLAGS+=" --with-file-aio"
@@ -610,17 +471,16 @@ if [[ ${ARCH} == "x86_64" ]]; then
 fi
 
 WITH_MODULES=" \
-  --add-module=$BUILD_PATH/ngx_devel_kit-$NDK_VERSION \
-  --add-module=$BUILD_PATH/set-misc-nginx-module-$SETMISC_VERSION \
-  --add-module=$BUILD_PATH/headers-more-nginx-module-$MORE_HEADERS_VERSION \
-  --add-module=$BUILD_PATH/ngx_http_substitutions_filter_module-$NGINX_SUBSTITUTIONS \
-  --add-module=$BUILD_PATH/lua-nginx-module-$LUA_NGX_VERSION \
-  --add-module=$BUILD_PATH/stream-lua-nginx-module-$LUA_STREAM_NGX_VERSION \
-  --add-module=$BUILD_PATH/lua-upstream-nginx-module-$LUA_UPSTREAM_VERSION \
-  --add-dynamic-module=$BUILD_PATH/nginx-http-auth-digest-$NGINX_DIGEST_AUTH \
-  --add-dynamic-module=$BUILD_PATH/nginx-opentracing-$NGINX_OPENTRACING_VERSION/opentracing \
-  --add-dynamic-module=$BUILD_PATH/ModSecurity-nginx-$MODSECURITY_VERSION \
-  --add-dynamic-module=$BUILD_PATH/ngx_http_geoip2_module-${GEOIP2_VERSION} \
+  --add-module=$BUILD_PATH/ngx_devel_kit \
+  --add-module=$BUILD_PATH/set-misc-nginx-module \
+  --add-module=$BUILD_PATH/headers-more-nginx-module \
+  --add-module=$BUILD_PATH/ngx_http_substitutions_filter_module \
+  --add-module=$BUILD_PATH/lua-nginx-module \
+  --add-module=$BUILD_PATH/stream-lua-nginx-module \
+  --add-module=$BUILD_PATH/lua-upstream-nginx-module \
+  --add-dynamic-module=$BUILD_PATH/nginx-http-auth-digest \
+  --add-dynamic-module=$BUILD_PATH/ModSecurity-nginx \
+  --add-dynamic-module=$BUILD_PATH/ngx_http_geoip2_module \
   --add-dynamic-module=$BUILD_PATH/ngx_brotli"
 
 ./configure \
@@ -652,53 +512,80 @@ make
 make modules
 make install
 
-cd "$BUILD_PATH/lua-resty-core-$LUA_RESTY_CORE"
+export OPENTELEMETRY_CONTRIB_COMMIT=e11348bb400d5472bf1da5d6128bead66fa111ff
+cd "$BUILD_PATH"
+
+git clone https://github.com/open-telemetry/opentelemetry-cpp-contrib.git opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}
+
+cd ${BUILD_PATH}/opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}
+git reset --hard ${OPENTELEMETRY_CONTRIB_COMMIT}
+
+export OTEL_TEMP_INSTALL=/tmp/otel
+mkdir -p ${OTEL_TEMP_INSTALL}
+
+cd ${BUILD_PATH}/opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}/instrumentation/nginx
+mkdir -p build
+cd build
+cmake -DCMAKE_BUILD_TYPE=Release \
+        -G Ninja \
+        -DCMAKE_CXX_STANDARD=17 \
+        -DCMAKE_INSTALL_PREFIX=${OTEL_TEMP_INSTALL} \
+        -DBUILD_SHARED_LIBS=ON \
+        -DNGINX_VERSION=${NGINX_VERSION} \
+        ..
+cmake --build . -j ${CORES} --target install
+
+mkdir -p /etc/nginx/modules
+cp ${OTEL_TEMP_INSTALL}/otel_ngx_module.so /etc/nginx/modules/otel_ngx_module.so
+
+
+cd "$BUILD_PATH/lua-resty-core"
 make install
 
-cd "$BUILD_PATH/lua-resty-balancer-$LUA_RESTY_BALANCER"
+cd "$BUILD_PATH/lua-resty-balancer"
 make all
 make install
 
 export LUA_INCLUDE_DIR=/usr/local/include/luajit-2.1
 ln -s $LUA_INCLUDE_DIR /usr/include/lua5.1
 
-cd "$BUILD_PATH/lua-cjson-$LUA_CJSON_VERSION"
+cd "$BUILD_PATH/lua-cjson"
 make all
 make install
 
-cd "$BUILD_PATH/lua-resty-cookie-$LUA_RESTY_COOKIE_VERSION"
+cd "$BUILD_PATH/lua-resty-cookie"
 make all
 make install
 
-cd "$BUILD_PATH/lua-resty-lrucache-$LUA_RESTY_CACHE"
+cd "$BUILD_PATH/lua-resty-lrucache"
 make install
 
-cd "$BUILD_PATH/lua-resty-dns-$LUA_RESTY_DNS"
+cd "$BUILD_PATH/lua-resty-dns"
 make install
 
-cd "$BUILD_PATH/lua-resty-lock-$LUA_RESTY_LOCK"
+cd "$BUILD_PATH/lua-resty-lock"
 make install
 
 # required for OCSP verification
-cd "$BUILD_PATH/lua-resty-http-$LUA_RESTY_HTTP"
+cd "$BUILD_PATH/lua-resty-http"
 make install
 
-cd "$BUILD_PATH/lua-resty-upload-$LUA_RESTY_UPLOAD_VERSION"
+cd "$BUILD_PATH/lua-resty-upload"
 make install
 
-cd "$BUILD_PATH/lua-resty-string-$LUA_RESTY_STRING_VERSION"
+cd "$BUILD_PATH/lua-resty-string"
 make install
 
-cd "$BUILD_PATH/lua-resty-memcached-$LUA_RESTY_MEMCACHED_VERSION"
+cd "$BUILD_PATH/lua-resty-memcached"
 make install
 
-cd "$BUILD_PATH/lua-resty-redis-$LUA_RESTY_REDIS_VERSION"
+cd "$BUILD_PATH/lua-resty-redis"
 make install
 
-cd "$BUILD_PATH/lua-resty-ipmatcher-$LUA_RESTY_IPMATCHER_VERSION"
+cd "$BUILD_PATH/lua-resty-ipmatcher"
 INST_LUADIR=/usr/local/lib/lua make install
 
-cd "$BUILD_PATH/mimalloc-$MIMALOC_VERSION"
+cd "$BUILD_PATH/mimalloc"
 mkdir -p out/release
 cd out/release
 
diff --git a/images/nginx-1.25/rootfs/patches/00_drop-alias-root.patch b/images/nginx/rootfs/patches/00_drop-alias-root.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/00_drop-alias-root.patch
rename to images/nginx/rootfs/patches/00_drop-alias-root.patch
diff --git a/images/nginx-1.25/rootfs/patches/01_nginx-1.25.3-win32_max_err_str.patch b/images/nginx/rootfs/patches/01_nginx-1.25.3-win32_max_err_str.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/01_nginx-1.25.3-win32_max_err_str.patch
rename to images/nginx/rootfs/patches/01_nginx-1.25.3-win32_max_err_str.patch
diff --git a/images/nginx-1.25/rootfs/patches/02_nginx-1.25.3-stream_balancer_export.patch b/images/nginx/rootfs/patches/02_nginx-1.25.3-stream_balancer_export.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/02_nginx-1.25.3-stream_balancer_export.patch
rename to images/nginx/rootfs/patches/02_nginx-1.25.3-stream_balancer_export.patch
diff --git a/images/nginx-1.25/rootfs/patches/03_nginx-1.25.3-stream_proxy_get_next_upstream_tries.patch b/images/nginx/rootfs/patches/03_nginx-1.25.3-stream_proxy_get_next_upstream_tries.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/03_nginx-1.25.3-stream_proxy_get_next_upstream_tries.patch
rename to images/nginx/rootfs/patches/03_nginx-1.25.3-stream_proxy_get_next_upstream_tries.patch
diff --git a/images/nginx-1.25/rootfs/patches/04_nginx-1.25.3-stream_proxy_timeout_fields.patch b/images/nginx/rootfs/patches/04_nginx-1.25.3-stream_proxy_timeout_fields.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/04_nginx-1.25.3-stream_proxy_timeout_fields.patch
rename to images/nginx/rootfs/patches/04_nginx-1.25.3-stream_proxy_timeout_fields.patch
diff --git a/images/nginx-1.25/rootfs/patches/05_nginx-1.25.3-stream_ssl_preread_no_skip.patch b/images/nginx/rootfs/patches/05_nginx-1.25.3-stream_ssl_preread_no_skip.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/05_nginx-1.25.3-stream_ssl_preread_no_skip.patch
rename to images/nginx/rootfs/patches/05_nginx-1.25.3-stream_ssl_preread_no_skip.patch
diff --git a/images/nginx-1.25/rootfs/patches/06_nginx-1.25.3-resolver_conf_parsing.patch b/images/nginx/rootfs/patches/06_nginx-1.25.3-resolver_conf_parsing.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/06_nginx-1.25.3-resolver_conf_parsing.patch
rename to images/nginx/rootfs/patches/06_nginx-1.25.3-resolver_conf_parsing.patch
diff --git a/images/nginx-1.25/rootfs/patches/07_nginx-1.25.3-daemon_destroy_pool.patch b/images/nginx/rootfs/patches/07_nginx-1.25.3-daemon_destroy_pool.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/07_nginx-1.25.3-daemon_destroy_pool.patch
rename to images/nginx/rootfs/patches/07_nginx-1.25.3-daemon_destroy_pool.patch
diff --git a/images/nginx-1.25/rootfs/patches/08_nginx-1.25.3-init_cycle_pool_release.patch b/images/nginx/rootfs/patches/08_nginx-1.25.3-init_cycle_pool_release.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/08_nginx-1.25.3-init_cycle_pool_release.patch
rename to images/nginx/rootfs/patches/08_nginx-1.25.3-init_cycle_pool_release.patch
diff --git a/images/nginx-1.25/rootfs/patches/09_nginx-1.25.3-balancer_status_code.patch b/images/nginx/rootfs/patches/09_nginx-1.25.3-balancer_status_code.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/09_nginx-1.25.3-balancer_status_code.patch
rename to images/nginx/rootfs/patches/09_nginx-1.25.3-balancer_status_code.patch
diff --git a/images/nginx-1.25/rootfs/patches/10_nginx-1.25.3-delayed_posted_events.patch b/images/nginx/rootfs/patches/10_nginx-1.25.3-delayed_posted_events.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/10_nginx-1.25.3-delayed_posted_events.patch
rename to images/nginx/rootfs/patches/10_nginx-1.25.3-delayed_posted_events.patch
diff --git a/images/nginx-1.25/rootfs/patches/11_nginx-1.25.3-privileged_agent_process.patch b/images/nginx/rootfs/patches/11_nginx-1.25.3-privileged_agent_process.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/11_nginx-1.25.3-privileged_agent_process.patch
rename to images/nginx/rootfs/patches/11_nginx-1.25.3-privileged_agent_process.patch
diff --git a/images/nginx-1.25/rootfs/patches/12_nginx-1.25.3-privileged_agent_process_connections.patch b/images/nginx/rootfs/patches/12_nginx-1.25.3-privileged_agent_process_connections.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/12_nginx-1.25.3-privileged_agent_process_connections.patch
rename to images/nginx/rootfs/patches/12_nginx-1.25.3-privileged_agent_process_connections.patch
diff --git a/images/nginx-1.25/rootfs/patches/13_nginx-1.25.3-privileged_agent_process_thread_pool.patch b/images/nginx/rootfs/patches/13_nginx-1.25.3-privileged_agent_process_thread_pool.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/13_nginx-1.25.3-privileged_agent_process_thread_pool.patch
rename to images/nginx/rootfs/patches/13_nginx-1.25.3-privileged_agent_process_thread_pool.patch
diff --git a/images/nginx-1.25/rootfs/patches/14_nginx-1.25.3-single_process_graceful_exit.patch b/images/nginx/rootfs/patches/14_nginx-1.25.3-single_process_graceful_exit.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/14_nginx-1.25.3-single_process_graceful_exit.patch
rename to images/nginx/rootfs/patches/14_nginx-1.25.3-single_process_graceful_exit.patch
diff --git a/images/nginx-1.25/rootfs/patches/15_nginx-1.25.3-intercept_error_log.patch b/images/nginx/rootfs/patches/15_nginx-1.25.3-intercept_error_log.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/15_nginx-1.25.3-intercept_error_log.patch
rename to images/nginx/rootfs/patches/15_nginx-1.25.3-intercept_error_log.patch
diff --git a/images/nginx-1.25/rootfs/patches/16_nginx-1.25.3-upstream_pipelining.patch b/images/nginx/rootfs/patches/16_nginx-1.25.3-upstream_pipelining.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/16_nginx-1.25.3-upstream_pipelining.patch
rename to images/nginx/rootfs/patches/16_nginx-1.25.3-upstream_pipelining.patch
diff --git a/images/nginx-1.25/rootfs/patches/17_nginx-1.25.3-no_error_pages.patch b/images/nginx/rootfs/patches/17_nginx-1.25.3-no_error_pages.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/17_nginx-1.25.3-no_error_pages.patch
rename to images/nginx/rootfs/patches/17_nginx-1.25.3-no_error_pages.patch
diff --git a/images/nginx-1.25/rootfs/patches/18_nginx-1.25.3-no_Werror.patch b/images/nginx/rootfs/patches/18_nginx-1.25.3-no_Werror.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/18_nginx-1.25.3-no_Werror.patch
rename to images/nginx/rootfs/patches/18_nginx-1.25.3-no_Werror.patch
diff --git a/images/nginx-1.25/rootfs/patches/19_nginx-1.25.3-log_escape_non_ascii.patch b/images/nginx/rootfs/patches/19_nginx-1.25.3-log_escape_non_ascii.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/19_nginx-1.25.3-log_escape_non_ascii.patch
rename to images/nginx/rootfs/patches/19_nginx-1.25.3-log_escape_non_ascii.patch
diff --git a/images/nginx-1.25/rootfs/patches/20_nginx-1.25.3-proxy_host_port_vars.patch b/images/nginx/rootfs/patches/20_nginx-1.25.3-proxy_host_port_vars.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/20_nginx-1.25.3-proxy_host_port_vars.patch
rename to images/nginx/rootfs/patches/20_nginx-1.25.3-proxy_host_port_vars.patch
diff --git a/images/nginx-1.25/rootfs/patches/21_nginx-1.25.3-cache_manager_exit.patch b/images/nginx/rootfs/patches/21_nginx-1.25.3-cache_manager_exit.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/21_nginx-1.25.3-cache_manager_exit.patch
rename to images/nginx/rootfs/patches/21_nginx-1.25.3-cache_manager_exit.patch
diff --git a/images/nginx-1.25/rootfs/patches/22_nginx-1.25.3-larger_max_error_str.patch b/images/nginx/rootfs/patches/22_nginx-1.25.3-larger_max_error_str.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/22_nginx-1.25.3-larger_max_error_str.patch
rename to images/nginx/rootfs/patches/22_nginx-1.25.3-larger_max_error_str.patch
diff --git a/images/nginx-1.25/rootfs/patches/23_nginx-1.25.3-pcre_conf_opt.patch b/images/nginx/rootfs/patches/23_nginx-1.25.3-pcre_conf_opt.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/23_nginx-1.25.3-pcre_conf_opt.patch
rename to images/nginx/rootfs/patches/23_nginx-1.25.3-pcre_conf_opt.patch
diff --git a/images/nginx-1.25/rootfs/patches/24_nginx-1.25.3-always_enable_cc_feature_tests.patch b/images/nginx/rootfs/patches/24_nginx-1.25.3-always_enable_cc_feature_tests.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/24_nginx-1.25.3-always_enable_cc_feature_tests.patch
rename to images/nginx/rootfs/patches/24_nginx-1.25.3-always_enable_cc_feature_tests.patch
diff --git a/images/nginx-1.25/rootfs/patches/25_nginx-1.25.3-ssl_cert_cb_yield.patch b/images/nginx/rootfs/patches/25_nginx-1.25.3-ssl_cert_cb_yield.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/25_nginx-1.25.3-ssl_cert_cb_yield.patch
rename to images/nginx/rootfs/patches/25_nginx-1.25.3-ssl_cert_cb_yield.patch
diff --git a/images/nginx-1.25/rootfs/patches/26_nginx-1.25.3-ssl_sess_cb_yield.patch b/images/nginx/rootfs/patches/26_nginx-1.25.3-ssl_sess_cb_yield.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/26_nginx-1.25.3-ssl_sess_cb_yield.patch
rename to images/nginx/rootfs/patches/26_nginx-1.25.3-ssl_sess_cb_yield.patch
diff --git a/images/nginx-1.25/rootfs/patches/27_nginx-1.25.3-ssl_client_hello_cb_yield.patch b/images/nginx/rootfs/patches/27_nginx-1.25.3-ssl_client_hello_cb_yield.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/27_nginx-1.25.3-ssl_client_hello_cb_yield.patch
rename to images/nginx/rootfs/patches/27_nginx-1.25.3-ssl_client_hello_cb_yield.patch
diff --git a/images/nginx-1.25/rootfs/patches/28_nginx-1.25.3-upstream_timeout_fields.patch b/images/nginx/rootfs/patches/28_nginx-1.25.3-upstream_timeout_fields.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/28_nginx-1.25.3-upstream_timeout_fields.patch
rename to images/nginx/rootfs/patches/28_nginx-1.25.3-upstream_timeout_fields.patch
diff --git a/images/nginx-1.25/rootfs/patches/29_nginx-1.25.3-safe_resolver_ipv6_option.patch b/images/nginx/rootfs/patches/29_nginx-1.25.3-safe_resolver_ipv6_option.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/29_nginx-1.25.3-safe_resolver_ipv6_option.patch
rename to images/nginx/rootfs/patches/29_nginx-1.25.3-safe_resolver_ipv6_option.patch
diff --git a/images/nginx-1.25/rootfs/patches/30_nginx-1.25.3-socket_cloexec.patch b/images/nginx/rootfs/patches/30_nginx-1.25.3-socket_cloexec.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/30_nginx-1.25.3-socket_cloexec.patch
rename to images/nginx/rootfs/patches/30_nginx-1.25.3-socket_cloexec.patch
diff --git a/images/nginx-1.25/rootfs/patches/31_nginx-1.25.3-reuseport_close_unused_fds.patch b/images/nginx/rootfs/patches/31_nginx-1.25.3-reuseport_close_unused_fds.patch
similarity index 100%
rename from images/nginx-1.25/rootfs/patches/31_nginx-1.25.3-reuseport_close_unused_fds.patch
rename to images/nginx/rootfs/patches/31_nginx-1.25.3-reuseport_close_unused_fds.patch
diff --git a/images/nginx/rootfs/patches/drop-alias-root.patch b/images/nginx/rootfs/patches/drop-alias-root.patch
deleted file mode 100644
index a92e08bd0..000000000
--- a/images/nginx/rootfs/patches/drop-alias-root.patch
+++ /dev/null
@@ -1,144 +0,0 @@
-:100644 100644 c7463dcd 00000000 M	src/http/ngx_http_core_module.c
-diff --git a/src/http/ngx_http_core_module.c b/src/http/ngx_http_core_module.c
-index c7463dcd..e2e45931 100644
---- a/src/http/ngx_http_core_module.c
-+++ b/src/http/ngx_http_core_module.c
-@@ -55,7 +55,6 @@ static char *ngx_http_core_listen(ngx_conf_t *cf, ngx_command_t *cmd,
-     void *conf);
- static char *ngx_http_core_server_name(ngx_conf_t *cf, ngx_command_t *cmd,
-     void *conf);
--static char *ngx_http_core_root(ngx_conf_t *cf, ngx_command_t *cmd, void *conf);
- static char *ngx_http_core_limit_except(ngx_conf_t *cf, ngx_command_t *cmd,
-     void *conf);
- static char *ngx_http_core_set_aio(ngx_conf_t *cf, ngx_command_t *cmd,
-@@ -323,21 +322,6 @@ static ngx_command_t  ngx_http_core_commands[] = {
-       offsetof(ngx_http_core_loc_conf_t, default_type),
-       NULL },
- 
--    { ngx_string("root"),
--      NGX_HTTP_MAIN_CONF|NGX_HTTP_SRV_CONF|NGX_HTTP_LOC_CONF|NGX_HTTP_LIF_CONF
--                        |NGX_CONF_TAKE1,
--      ngx_http_core_root,
--      NGX_HTTP_LOC_CONF_OFFSET,
--      0,
--      NULL },
--
--    { ngx_string("alias"),
--      NGX_HTTP_LOC_CONF|NGX_CONF_TAKE1,
--      ngx_http_core_root,
--      NGX_HTTP_LOC_CONF_OFFSET,
--      0,
--      NULL },
--
-     { ngx_string("limit_except"),
-       NGX_HTTP_LOC_CONF|NGX_CONF_BLOCK|NGX_CONF_1MORE,
-       ngx_http_core_limit_except,
-@@ -4312,108 +4296,6 @@ ngx_http_core_server_name(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
- }
- 
- 
--static char *
--ngx_http_core_root(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
--{
--    ngx_http_core_loc_conf_t *clcf = conf;
--
--    ngx_str_t                  *value;
--    ngx_int_t                   alias;
--    ngx_uint_t                  n;
--    ngx_http_script_compile_t   sc;
--
--    alias = (cmd->name.len == sizeof("alias") - 1) ? 1 : 0;
--
--    if (clcf->root.data) {
--
--        if ((clcf->alias != 0) == alias) {
--            return "is duplicate";
--        }
--
--        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
--                           "\"%V\" directive is duplicate, "
--                           "\"%s\" directive was specified earlier",
--                           &cmd->name, clcf->alias ? "alias" : "root");
--
--        return NGX_CONF_ERROR;
--    }
--
--    if (clcf->named && alias) {
--        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
--                           "the \"alias\" directive cannot be used "
--                           "inside the named location");
--
--        return NGX_CONF_ERROR;
--    }
--
--    value = cf->args->elts;
--
--    if (ngx_strstr(value[1].data, "$document_root")
--        || ngx_strstr(value[1].data, "${document_root}"))
--    {
--        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
--                           "the $document_root variable cannot be used "
--                           "in the \"%V\" directive",
--                           &cmd->name);
--
--        return NGX_CONF_ERROR;
--    }
--
--    if (ngx_strstr(value[1].data, "$realpath_root")
--        || ngx_strstr(value[1].data, "${realpath_root}"))
--    {
--        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
--                           "the $realpath_root variable cannot be used "
--                           "in the \"%V\" directive",
--                           &cmd->name);
--
--        return NGX_CONF_ERROR;
--    }
--
--    clcf->alias = alias ? clcf->name.len : 0;
--    clcf->root = value[1];
--
--    if (!alias && clcf->root.len > 0
--        && clcf->root.data[clcf->root.len - 1] == '/')
--    {
--        clcf->root.len--;
--    }
--
--    if (clcf->root.data[0] != '$') {
--        if (ngx_conf_full_name(cf->cycle, &clcf->root, 0) != NGX_OK) {
--            return NGX_CONF_ERROR;
--        }
--    }
--
--    n = ngx_http_script_variables_count(&clcf->root);
--
--    ngx_memzero(&sc, sizeof(ngx_http_script_compile_t));
--    sc.variables = n;
--
--#if (NGX_PCRE)
--    if (alias && clcf->regex) {
--        clcf->alias = NGX_MAX_SIZE_T_VALUE;
--        n = 1;
--    }
--#endif
--
--    if (n) {
--        sc.cf = cf;
--        sc.source = &clcf->root;
--        sc.lengths = &clcf->root_lengths;
--        sc.values = &clcf->root_values;
--        sc.complete_lengths = 1;
--        sc.complete_values = 1;
--
--        if (ngx_http_script_compile(&sc) != NGX_OK) {
--            return NGX_CONF_ERROR;
--        }
--    }
--
--    return NGX_CONF_OK;
--}
--
--
- static ngx_http_method_name_t  ngx_methods_names[] = {
-     { (u_char *) "GET",       (uint32_t) ~NGX_HTTP_GET },
-     { (u_char *) "HEAD",      (uint32_t) ~NGX_HTTP_HEAD },
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-balancer_status_code.patch b/images/nginx/rootfs/patches/nginx-1.21.4-balancer_status_code.patch
deleted file mode 100644
index c4d87e2fb..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-balancer_status_code.patch
+++ /dev/null
@@ -1,72 +0,0 @@
-diff --git a/src/http/ngx_http_upstream.c b/src/http/ngx_http_upstream.c
-index f8d5707d..6efe0047 100644
---- a/src/http/ngx_http_upstream.c
-+++ b/src/http/ngx_http_upstream.c
-@@ -1515,6 +1515,11 @@ ngx_http_upstream_connect(ngx_http_request_t *r, ngx_http_upstream_t *u)
-         return;
-     }
- 
-+    if (rc >= NGX_HTTP_SPECIAL_RESPONSE) {
-+        ngx_http_upstream_finalize_request(r, u, rc);
-+        return;
-+    }
-+
-     u->state->peer = u->peer.name;
- 
-     if (rc == NGX_BUSY) {
-diff --git a/src/http/ngx_http_upstream.h b/src/http/ngx_http_upstream.h
-index 3e714e5b..dfbb25e0 100644
---- a/src/http/ngx_http_upstream.h
-+++ b/src/http/ngx_http_upstream.h
-@@ -427,4 +427,9 @@ extern ngx_conf_bitmask_t  ngx_http_upstream_cache_method_mask[];
- extern ngx_conf_bitmask_t  ngx_http_upstream_ignore_headers_masks[];
- 
- 
-+#ifndef HAVE_BALANCER_STATUS_CODE_PATCH
-+#define HAVE_BALANCER_STATUS_CODE_PATCH
-+#endif
-+
-+
- #endif /* _NGX_HTTP_UPSTREAM_H_INCLUDED_ */
-diff --git a/src/stream/ngx_stream.h b/src/stream/ngx_stream.h
-index 09d24593..d8b4b584 100644
---- a/src/stream/ngx_stream.h
-+++ b/src/stream/ngx_stream.h
-@@ -27,6 +27,7 @@ typedef struct ngx_stream_session_s  ngx_stream_session_t;
- 
- 
- #define NGX_STREAM_OK                        200
-+#define NGX_STREAM_SPECIAL_RESPONSE          300
- #define NGX_STREAM_BAD_REQUEST               400
- #define NGX_STREAM_FORBIDDEN                 403
- #define NGX_STREAM_INTERNAL_SERVER_ERROR     500
-diff --git a/src/stream/ngx_stream_proxy_module.c b/src/stream/ngx_stream_proxy_module.c
-index 818d7329..329dcdc6 100644
---- a/src/stream/ngx_stream_proxy_module.c
-+++ b/src/stream/ngx_stream_proxy_module.c
-@@ -691,6 +691,11 @@ ngx_stream_proxy_connect(ngx_stream_session_t *s)
-         return;
-     }
- 
-+    if (rc >= NGX_STREAM_SPECIAL_RESPONSE) {
-+        ngx_stream_proxy_finalize(s, rc);
-+        return;
-+    }
-+
-     u->state->peer = u->peer.name;
- 
-     if (rc == NGX_BUSY) {
-diff --git a/src/stream/ngx_stream_upstream.h b/src/stream/ngx_stream_upstream.h
-index 73947f46..21bc0ad7 100644
---- a/src/stream/ngx_stream_upstream.h
-+++ b/src/stream/ngx_stream_upstream.h
-@@ -151,4 +151,9 @@ ngx_stream_upstream_srv_conf_t *ngx_stream_upstream_add(ngx_conf_t *cf,
- extern ngx_module_t  ngx_stream_upstream_module;
- 
- 
-+#ifndef HAVE_BALANCER_STATUS_CODE_PATCH
-+#define HAVE_BALANCER_STATUS_CODE_PATCH
-+#endif
-+
-+
- #endif /* _NGX_STREAM_UPSTREAM_H_INCLUDED_ */
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-cache_manager_exit.patch b/images/nginx/rootfs/patches/nginx-1.21.4-cache_manager_exit.patch
deleted file mode 100644
index 91ee63a26..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-cache_manager_exit.patch
+++ /dev/null
@@ -1,19 +0,0 @@
-# HG changeset patch
-# User Yichun Zhang <agentzh@gmail.com>
-# Date 1383598130 28800
-# Node ID f64218e1ac963337d84092536f588b8e0d99bbaa
-# Parent  dea321e5c0216efccbb23e84bbce7cf3e28f130c
-Cache: gracefully exit the cache manager process.
-
-diff -r dea321e5c021 -r f64218e1ac96 src/os/unix/ngx_process_cycle.c
---- a/src/os/unix/ngx_process_cycle.c	Thu Oct 31 18:23:49 2013 +0400
-+++ b/src/os/unix/ngx_process_cycle.c	Mon Nov 04 12:48:50 2013 -0800
-@@ -1134,7 +1134,7 @@
- 
-         if (ngx_terminate || ngx_quit) {
-             ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "exiting");
--            exit(0);
-+            ngx_worker_process_exit(cycle);
-         }
- 
-         if (ngx_reopen) {
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-delayed_posted_events.patch b/images/nginx/rootfs/patches/nginx-1.21.4-delayed_posted_events.patch
deleted file mode 100644
index 687584324..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-delayed_posted_events.patch
+++ /dev/null
@@ -1,98 +0,0 @@
-diff --git a/src/event/ngx_event.c b/src/event/ngx_event.c
-index 57af8132..4853945f 100644
---- a/src/event/ngx_event.c
-+++ b/src/event/ngx_event.c
-@@ -196,6 +196,9 @@ ngx_process_events_and_timers(ngx_cycle_t *cycle)
-     ngx_uint_t  flags;
-     ngx_msec_t  timer, delta;
- 
-+    ngx_queue_t     *q;
-+    ngx_event_t     *ev;
-+
-     if (ngx_timer_resolution) {
-         timer = NGX_TIMER_INFINITE;
-         flags = 0;
-@@ -215,6 +218,13 @@ ngx_process_events_and_timers(ngx_cycle_t *cycle)
- #endif
-     }
- 
-+    if (!ngx_queue_empty(&ngx_posted_delayed_events)) {
-+        ngx_log_debug0(NGX_LOG_DEBUG_EVENT, cycle->log, 0,
-+                       "posted delayed event queue not empty"
-+                       " making poll timeout 0");
-+        timer = 0;
-+    }
-+
-     if (ngx_use_accept_mutex) {
-         if (ngx_accept_disabled > 0) {
-             ngx_accept_disabled--;
-@@ -257,6 +267,35 @@ ngx_process_events_and_timers(ngx_cycle_t *cycle)
-     }
- 
-     ngx_event_process_posted(cycle, &ngx_posted_events);
-+
-+    while (!ngx_queue_empty(&ngx_posted_delayed_events)) {
-+        q = ngx_queue_head(&ngx_posted_delayed_events);
-+
-+        ev = ngx_queue_data(q, ngx_event_t, queue);
-+        if (ev->delayed) {
-+            /* start of newly inserted nodes */
-+            for (/* void */;
-+                 q != ngx_queue_sentinel(&ngx_posted_delayed_events);
-+                 q = ngx_queue_next(q))
-+            {
-+                ev = ngx_queue_data(q, ngx_event_t, queue);
-+                ev->delayed = 0;
-+
-+                ngx_log_debug1(NGX_LOG_DEBUG_EVENT, cycle->log, 0,
-+                               "skipping delayed posted event %p,"
-+                               " till next iteration", ev);
-+            }
-+
-+            break;
-+        }
-+
-+        ngx_log_debug1(NGX_LOG_DEBUG_EVENT, cycle->log, 0,
-+                       "delayed posted event %p", ev);
-+
-+        ngx_delete_posted_event(ev);
-+
-+        ev->handler(ev);
-+    }
- }
- 
- 
-@@ -600,6 +639,7 @@ ngx_event_process_init(ngx_cycle_t *cycle)
- 
-     ngx_queue_init(&ngx_posted_accept_events);
-     ngx_queue_init(&ngx_posted_events);
-+    ngx_queue_init(&ngx_posted_delayed_events);
- 
-     if (ngx_event_timer_init(cycle->log) == NGX_ERROR) {
-         return NGX_ERROR;
-diff --git a/src/event/ngx_event_posted.c b/src/event/ngx_event_posted.c
-index d851f3d1..b6cea009 100644
---- a/src/event/ngx_event_posted.c
-+++ b/src/event/ngx_event_posted.c
-@@ -12,6 +12,7 @@
- 
- ngx_queue_t  ngx_posted_accept_events;
- ngx_queue_t  ngx_posted_events;
-+ngx_queue_t  ngx_posted_delayed_events;
- 
- 
- void
-diff --git a/src/event/ngx_event_posted.h b/src/event/ngx_event_posted.h
-index 145d30fe..6c388553 100644
---- a/src/event/ngx_event_posted.h
-+++ b/src/event/ngx_event_posted.h
-@@ -43,6 +43,9 @@ void ngx_event_process_posted(ngx_cycle_t *cycle, ngx_queue_t *posted);
- 
- extern ngx_queue_t  ngx_posted_accept_events;
- extern ngx_queue_t  ngx_posted_events;
-+extern ngx_queue_t  ngx_posted_delayed_events;
-+
-+#define HAVE_POSTED_DELAYED_EVENTS_PATCH
- 
- 
- #endif /* _NGX_EVENT_POSTED_H_INCLUDED_ */
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-hash_overflow.patch b/images/nginx/rootfs/patches/nginx-1.21.4-hash_overflow.patch
deleted file mode 100644
index 449d214ba..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-hash_overflow.patch
+++ /dev/null
@@ -1,20 +0,0 @@
-# HG changeset patch
-# User Yichun Zhang <agentzh@gmail.com>
-# Date 1412276417 25200
-#      Thu Oct 02 12:00:17 2014 -0700
-# Node ID 4032b992f23b054c1a2cfb0be879330d2c6708e5
-# Parent  1ff0f68d9376e3d184d65814a6372856bf65cfcd
-Hash: buffer overflow might happen when exceeding the pre-configured limits.
-
-diff -r 1ff0f68d9376 -r 4032b992f23b src/core/ngx_hash.c
---- a/src/core/ngx_hash.c	Tue Sep 30 15:50:28 2014 -0700
-+++ b/src/core/ngx_hash.c	Thu Oct 02 12:00:17 2014 -0700
-@@ -312,6 +312,8 @@ ngx_hash_init(ngx_hash_init_t *hinit, ng
-         continue;
-     }
- 
-+    size--;
-+
-     ngx_log_error(NGX_LOG_WARN, hinit->pool->log, 0,
-                   "could not build optimal %s, you should increase "
-                   "either %s_max_size: %i or %s_bucket_size: %i; "
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-http2.patch b/images/nginx/rootfs/patches/nginx-1.21.4-http2.patch
deleted file mode 100644
index 3b9d57736..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-http2.patch
+++ /dev/null
@@ -1,57 +0,0 @@
-#commit 6ceef192e7af1c507826ac38a2d43f08bf265fb9
-#repository: https://github.com/nginx/nginx
-#Author: Maxim Dounin <mdounin@mdounin.ru>
-#Date:   Tue Oct 10 15:13:39 2023 +0300
-diff --git a/src/http/v2/ngx_http_v2.c b/src/http/v2/ngx_http_v2.c
-index 7c05ff1e7..410a8be24 100644
---- a/src/http/v2/ngx_http_v2.c
-+++ b/src/http/v2/ngx_http_v2.c
-@@ -347,6 +347,7 @@ ngx_http_v2_read_handler(ngx_event_t *rev)
-     ngx_log_debug0(NGX_LOG_DEBUG_HTTP, c->log, 0, "http2 read handler");
-
-     h2c->blocked = 1;
-+    h2c->new_streams = 0;
-
-     if (c->close) {
-         c->close = 0;
-@@ -1284,6 +1285,14 @@ ngx_http_v2_state_headers(ngx_http_v2_connection_t *h2c, u_char *pos,
-         goto rst_stream;
-     }
-
-+    if (h2c->new_streams++ >= 2 * h2scf->concurrent_streams) {
-+        ngx_log_error(NGX_LOG_INFO, h2c->connection->log, 0,
-+                      "client sent too many streams at once");
-+
-+        status = NGX_HTTP_V2_REFUSED_STREAM;
-+        goto rst_stream;
-+    }
-+
-     if (!h2c->settings_ack
-         && !(h2c->state.flags & NGX_HTTP_V2_END_STREAM_FLAG)
-         && h2scf->preread_size < NGX_HTTP_V2_DEFAULT_WINDOW)
-@@ -1349,6 +1358,12 @@ ngx_http_v2_state_headers(ngx_http_v2_connection_t *h2c, u_char *pos,
-
- rst_stream:
-
-+    if (h2c->refused_streams++ > ngx_max(h2scf->concurrent_streams, 100)) {
-+        ngx_log_error(NGX_LOG_INFO, h2c->connection->log, 0,
-+                      "client sent too many refused streams");
-+        return ngx_http_v2_connection_error(h2c, NGX_HTTP_V2_NO_ERROR);
-+    }
-+
-     if (ngx_http_v2_send_rst_stream(h2c, h2c->state.sid, status) != NGX_OK) {
-         return ngx_http_v2_connection_error(h2c, NGX_HTTP_V2_INTERNAL_ERROR);
-     }
-diff --git a/src/http/v2/ngx_http_v2.h b/src/http/v2/ngx_http_v2.h
-index cb9014ccf..6751b3026 100644
---- a/src/http/v2/ngx_http_v2.h
-+++ b/src/http/v2/ngx_http_v2.h
-@@ -131,6 +131,8 @@ struct ngx_http_v2_connection_s {
-     ngx_uint_t                       processing;
-     ngx_uint_t                       frames;
-     ngx_uint_t                       idle;
-+    ngx_uint_t                       new_streams;
-+    ngx_uint_t                       refused_streams;
-     ngx_uint_t                       priority_limit;
-
-     size_t                           send_window;
\ No newline at end of file
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch b/images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch
deleted file mode 100644
index 9cfa4f7cb..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-init_cycle_pool_release.patch
+++ /dev/null
@@ -1,59 +0,0 @@
-diff -rup nginx-1.21.4/src/core/nginx.c nginx-1.21.4-patched/src/core/nginx.c
---- nginx-1.21.4/src/core/nginx.c	2017-12-17 00:00:38.136470108 -0800
-+++ nginx-1.21.4-patched/src/core/nginx.c	2017-12-16 23:59:51.680958322 -0800
-@@ -186,6 +186,7 @@ static u_char      *ngx_prefix;
- static u_char      *ngx_conf_file;
- static u_char      *ngx_conf_params;
- static char        *ngx_signal;
-+ngx_pool_t         *saved_init_cycle_pool = NULL;
- 
- 
- static char **ngx_os_environ;
-@@ -253,6 +254,8 @@ main(int argc, char *const *argv)
-         return 1;
-     }
- 
-+    saved_init_cycle_pool = init_cycle.pool;
-+
-     if (ngx_save_argv(&init_cycle, argc, argv) != NGX_OK) {
-         return 1;
-     }
-diff -rup nginx-1.21.4/src/core/ngx_core.h nginx-1.21.4-patched/src/core/ngx_core.h
---- nginx-1.21.4/src/core/ngx_core.h	2017-10-10 08:22:51.000000000 -0700
-+++ nginx-1.21.4-patched/src/core/ngx_core.h	2017-12-16 23:59:51.679958370 -0800
-@@ -108,4 +108,6 @@ void ngx_cpuinfo(void);
- #define NGX_DISABLE_SYMLINKS_NOTOWNER   2
- #endif
- 
-+extern ngx_pool_t        *saved_init_cycle_pool;
-+
- #endif /* _NGX_CORE_H_INCLUDED_ */
-diff -rup nginx-1.21.4/src/core/ngx_cycle.c nginx-1.21.4-patched/src/core/ngx_cycle.c
---- nginx-1.21.4/src/core/ngx_cycle.c	2017-10-10 08:22:51.000000000 -0700
-+++ nginx-1.21.4-patched/src/core/ngx_cycle.c	2017-12-16 23:59:51.678958419 -0800
-@@ -748,6 +748,10 @@ old_shm_zone_done:
- 
-     if (ngx_process == NGX_PROCESS_MASTER || ngx_is_init_cycle(old_cycle)) {
- 
-+        if (ngx_is_init_cycle(old_cycle)) {
-+            saved_init_cycle_pool = NULL;
-+        }
-+
-         ngx_destroy_pool(old_cycle->pool);
-         cycle->old_cycle = NULL;
- 
-diff -rup nginx-1.21.4/src/os/unix/ngx_process_cycle.c nginx-1.21.4-patched/src/os/unix/ngx_process_cycle.c
---- nginx-1.21.4/src/os/unix/ngx_process_cycle.c	2017-12-17 00:00:38.142469762 -0800
-+++ nginx-1.21.4-patched/src/os/unix/ngx_process_cycle.c	2017-12-16 23:59:51.691957791 -0800
-@@ -687,6 +692,11 @@ ngx_master_process_exit(ngx_cycle_t *cyc
-     ngx_exit_cycle.files_n = ngx_cycle->files_n;
-     ngx_cycle = &ngx_exit_cycle;
- 
-+    if (saved_init_cycle_pool != NULL && saved_init_cycle_pool != cycle->pool) {
-+        ngx_destroy_pool(saved_init_cycle_pool);
-+        saved_init_cycle_pool = NULL;
-+    }
-+
-     ngx_destroy_pool(cycle->pool);
- 
-     exit(0);
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch b/images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch
deleted file mode 100644
index c89032c9f..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-larger_max_error_str.patch
+++ /dev/null
@@ -1,13 +0,0 @@
---- nginx-1.21.4/src/core/ngx_log.h	2013-10-08 05:07:14.000000000 -0700
-+++ nginx-1.21.4-patched/src/core/ngx_log.h	2013-12-05 20:35:35.996236720 -0800
-@@ -64,7 +64,9 @@ struct ngx_log_s {
- };
- 
- 
--#define NGX_MAX_ERROR_STR   2048
-+#ifndef NGX_MAX_ERROR_STR
-+#define NGX_MAX_ERROR_STR   4096
-+#endif
- 
- 
- /*********************************/
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch b/images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch
deleted file mode 100644
index f4d6fd0e5..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-no_Werror.patch
+++ /dev/null
@@ -1,36 +0,0 @@
-diff -urp nginx-1.21.4/auto/cc/clang nginx-1.21.4-patched/auto/cc/clang
---- nginx-1.21.4/auto/cc/clang	2014-03-04 03:39:24.000000000 -0800
-+++ nginx-1.21.4-patched/auto/cc/clang	2014-03-13 20:54:26.241413360 -0700
-@@ -89,7 +89,7 @@ CFLAGS="$CFLAGS -Wconditional-uninitiali
- CFLAGS="$CFLAGS -Wno-unused-parameter"
- 
- # stop on warning
--CFLAGS="$CFLAGS -Werror"
-+#CFLAGS="$CFLAGS -Werror"
- 
- # debug
- CFLAGS="$CFLAGS -g"
-diff -urp nginx-1.21.4/auto/cc/gcc nginx-1.21.4-patched/auto/cc/gcc
---- nginx-1.21.4/auto/cc/gcc	2014-03-04 03:39:24.000000000 -0800
-+++ nginx-1.21.4-patched/auto/cc/gcc	2014-03-13 20:54:13.301355329 -0700
-@@ -168,7 +168,7 @@ esac
- 
- 
- # stop on warning
--CFLAGS="$CFLAGS -Werror"
-+#CFLAGS="$CFLAGS -Werror"
- 
- # debug
- CFLAGS="$CFLAGS -g"
-diff -urp nginx-1.21.4/auto/cc/icc nginx-1.21.4-patched/auto/cc/icc
---- nginx-1.21.4/auto/cc/icc	2014-03-04 03:39:24.000000000 -0800
-+++ nginx-1.21.4-patched/auto/cc/icc	2014-03-13 20:54:13.301355329 -0700
-@@ -115,7 +115,7 @@ case "$NGX_ICC_VER" in
- esac
- 
- # stop on warning
--CFLAGS="$CFLAGS -Werror"
-+#CFLAGS="$CFLAGS -Werror"
- 
- # debug
- CFLAGS="$CFLAGS -g"
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch b/images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch
deleted file mode 100644
index 01cebd65a..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-proxy_host_port_vars.patch
+++ /dev/null
@@ -1,19 +0,0 @@
---- nginx-1.21.4/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
-+++ nginx-1.21.4-patched/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
-@@ -793,13 +793,13 @@ static ngx_keyval_t  ngx_http_proxy_cach
- static ngx_http_variable_t  ngx_http_proxy_vars[] = {
- 
-     { ngx_string("proxy_host"), NULL, ngx_http_proxy_host_variable, 0,
--      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE|NGX_HTTP_VAR_NOHASH, 0 },
-+      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE, 0 },
- 
-     { ngx_string("proxy_port"), NULL, ngx_http_proxy_port_variable, 0,
--      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE|NGX_HTTP_VAR_NOHASH, 0 },
-+      NGX_HTTP_VAR_CHANGEABLE|NGX_HTTP_VAR_NOCACHEABLE, 0 },
- 
-     { ngx_string("proxy_add_x_forwarded_for"), NULL,
--      ngx_http_proxy_add_x_forwarded_for_variable, 0, NGX_HTTP_VAR_NOHASH, 0 },
-+      ngx_http_proxy_add_x_forwarded_for_variable, 0, 0, 0 },
- 
- #if 0
-     { ngx_string("proxy_add_via"), NULL, NULL, 0, NGX_HTTP_VAR_NOHASH, 0 },
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-resolver_conf_parsing.patch b/images/nginx/rootfs/patches/nginx-1.21.4-resolver_conf_parsing.patch
deleted file mode 100644
index 8638cdf2a..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-resolver_conf_parsing.patch
+++ /dev/null
@@ -1,263 +0,0 @@
-diff --git a/src/core/ngx_resolver.c b/src/core/ngx_resolver.c
-index cd55520c..dade1846 100644
---- a/src/core/ngx_resolver.c
-+++ b/src/core/ngx_resolver.c
-@@ -9,12 +9,26 @@
- #include <ngx_core.h>
- #include <ngx_event.h>
- 
-+#if !(NGX_WIN32)
-+#include <resolv.h>
-+#endif
-+
- 
- #define NGX_RESOLVER_UDP_SIZE   4096
- 
- #define NGX_RESOLVER_TCP_RSIZE  (2 + 65535)
- #define NGX_RESOLVER_TCP_WSIZE  8192
- 
-+#if !(NGX_WIN32)
-+/*
-+ * note that 2KB should be more than enough for majority of the
-+ * resolv.conf files out there. it also acts as a safety guard to prevent
-+ * abuse.
-+ */
-+#define NGX_RESOLVER_FILE_BUF_SIZE  2048
-+#define NGX_RESOLVER_FILE_NAME      "/etc/resolv.conf"
-+#endif
-+
- 
- typedef struct {
-     u_char  ident_hi;
-@@ -131,6 +145,191 @@ static ngx_resolver_node_t *ngx_resolver_lookup_addr6(ngx_resolver_t *r,
- #endif
- 
- 
-+#if !(NGX_WIN32)
-+static ngx_int_t
-+ngx_resolver_read_resolv_conf(ngx_conf_t *cf, ngx_resolver_t *r, u_char *path,
-+    size_t path_len)
-+{
-+    ngx_url_t                        u;
-+    ngx_resolver_connection_t       *rec;
-+    ngx_fd_t                         fd;
-+    ngx_file_t                       file;
-+    u_char                           buf[NGX_RESOLVER_FILE_BUF_SIZE];
-+    u_char                           ipv6_buf[NGX_INET6_ADDRSTRLEN];
-+    ngx_uint_t                       address = 0, j, total = 0;
-+    ssize_t                          n, i;
-+    enum {
-+        sw_nameserver,
-+        sw_spaces,
-+        sw_address,
-+        sw_skip
-+    } state;
-+
-+    file.name.data = path;
-+    file.name.len = path_len;
-+
-+    if (ngx_conf_full_name(cf->cycle, &file.name, 1) != NGX_OK) {
-+        return NGX_ERROR;
-+    }
-+
-+    fd = ngx_open_file(file.name.data, NGX_FILE_RDONLY,
-+                       NGX_FILE_OPEN, 0);
-+
-+    if (fd == NGX_INVALID_FILE) {
-+        ngx_conf_log_error(NGX_LOG_EMERG, cf, ngx_errno,
-+                           ngx_open_file_n " \"%s\" failed", file.name.data);
-+
-+        return NGX_ERROR;
-+    }
-+
-+    ngx_memzero(&file, sizeof(ngx_file_t));
-+
-+    file.fd = fd;
-+    file.log = cf->log;
-+
-+    state = sw_nameserver;
-+
-+    n = ngx_read_file(&file, buf, NGX_RESOLVER_FILE_BUF_SIZE, 0);
-+
-+    if (n == NGX_ERROR) {
-+        ngx_conf_log_error(NGX_LOG_ALERT, cf, ngx_errno,
-+                           ngx_read_file_n " \"%s\" failed", file.name.data);
-+    }
-+
-+    if (ngx_close_file(file.fd) == NGX_FILE_ERROR) {
-+        ngx_conf_log_error(NGX_LOG_ALERT, cf, ngx_errno,
-+                           ngx_close_file_n " \"%s\" failed", file.name.data);
-+    }
-+
-+    if (n == NGX_ERROR) {
-+        return NGX_ERROR;
-+    }
-+
-+    if (n == 0) {
-+        return NGX_OK;
-+    }
-+
-+    for (i = 0; i < n && total < MAXNS; /* void */) {
-+        if (buf[i] == '#' || buf[i] == ';') {
-+            state = sw_skip;
-+        }
-+
-+        switch (state) {
-+
-+        case sw_nameserver:
-+
-+            if ((size_t) n - i >= sizeof("nameserver") - 1
-+                && ngx_memcmp(buf + i, "nameserver",
-+                              sizeof("nameserver") - 1) == 0)
-+            {
-+                state = sw_spaces;
-+                i += sizeof("nameserver") - 1;
-+
-+                continue;
-+            }
-+
-+            break;
-+
-+        case sw_spaces:
-+            if (buf[i] != '\t' && buf[i] != ' ') {
-+                address = i;
-+                state = sw_address;
-+            }
-+
-+            break;
-+
-+        case sw_address:
-+
-+            if (buf[i] == CR || buf[i] == LF || i == n - 1) {
-+                ngx_memzero(&u, sizeof(ngx_url_t));
-+
-+                u.url.data = buf + address;
-+
-+                if (i == n - 1 && buf[i] != CR && buf[i] != LF) {
-+                    u.url.len = n - address;
-+
-+                } else {
-+                    u.url.len = i - address;
-+                }
-+
-+                u.default_port = 53;
-+
-+                /* IPv6? */
-+                if (ngx_strlchr(u.url.data, u.url.data + u.url.len,
-+                                ':') != NULL)
-+                {
-+                    if (u.url.len + 2 > sizeof(ipv6_buf)) {
-+                        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
-+                                           "IPv6 resolver address is too long:"
-+                                           " \"%V\"", &u.url);
-+
-+                        return NGX_ERROR;
-+                    }
-+
-+                    ipv6_buf[0] = '[';
-+                    ngx_memcpy(ipv6_buf + 1, u.url.data, u.url.len);
-+                    ipv6_buf[u.url.len + 1] = ']';
-+
-+                    u.url.data = ipv6_buf;
-+                    u.url.len = u.url.len + 2;
-+                }
-+
-+                if (ngx_parse_url(cf->pool, &u) != NGX_OK) {
-+                    if (u.err) {
-+                        ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
-+                                           "%s in resolver \"%V\"",
-+                                           u.err, &u.url);
-+                    }
-+
-+                    return NGX_ERROR;
-+                }
-+
-+                rec = ngx_array_push_n(&r->connections, u.naddrs);
-+                if (rec == NULL) {
-+                    return NGX_ERROR;
-+                }
-+
-+                ngx_memzero(rec, u.naddrs * sizeof(ngx_resolver_connection_t));
-+
-+                for (j = 0; j < u.naddrs; j++) {
-+                    rec[j].sockaddr = u.addrs[j].sockaddr;
-+                    rec[j].socklen = u.addrs[j].socklen;
-+                    rec[j].server = u.addrs[j].name;
-+                    rec[j].resolver = r;
-+                }
-+
-+                total++;
-+
-+#if (NGX_DEBUG)
-+                /*
-+                 * logs with level below NGX_LOG_NOTICE will not be printed
-+                 * in this early phase
-+                 */
-+                ngx_conf_log_error(NGX_LOG_NOTICE, cf, 0,
-+                                   "parsed a resolver: \"%V\"", &u.url);
-+#endif
-+
-+                state = sw_nameserver;
-+            }
-+
-+            break;
-+
-+        case sw_skip:
-+            if (buf[i] == CR || buf[i] == LF) {
-+                state = sw_nameserver;
-+            }
-+
-+            break;
-+        }
-+
-+        i++;
-+    }
-+
-+    return NGX_OK;
-+}
-+#endif
-+
-+
- ngx_resolver_t *
- ngx_resolver_create(ngx_conf_t *cf, ngx_str_t *names, ngx_uint_t n)
- {
-@@ -246,6 +445,39 @@ ngx_resolver_create(ngx_conf_t *cf, ngx_str_t *names, ngx_uint_t n)
-         }
- #endif
- 
-+#if !(NGX_WIN32)
-+        if (ngx_strncmp(names[i].data, "local=", 6) == 0) {
-+
-+            if (ngx_strcmp(&names[i].data[6], "on") == 0) {
-+                if (ngx_resolver_read_resolv_conf(cf, r,
-+                                                  (u_char *)
-+                                                  NGX_RESOLVER_FILE_NAME,
-+                                                  sizeof(NGX_RESOLVER_FILE_NAME)
-+                                                  - 1)
-+                    != NGX_OK)
-+                {
-+                    ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
-+                                       "unable to parse local resolver");
-+                    return NULL;
-+                }
-+
-+            } else if (ngx_strcmp(&names[i].data[6], "off") != 0) {
-+                if (ngx_resolver_read_resolv_conf(cf, r,
-+                                                  &names[i].data[6],
-+                                                  names[i].len - 6)
-+                    != NGX_OK)
-+                {
-+                    ngx_conf_log_error(NGX_LOG_EMERG, cf, 0,
-+                                       "unable to parse local resolver");
-+                    return NULL;
-+                }
-+
-+            }
-+
-+            continue;
-+        }
-+#endif
-+
-         ngx_memzero(&u, sizeof(ngx_url_t));
- 
-         u.url = names[i];
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-reuseport_close_unused_fds.patch b/images/nginx/rootfs/patches/nginx-1.21.4-reuseport_close_unused_fds.patch
deleted file mode 100644
index ff4a36fd2..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-reuseport_close_unused_fds.patch
+++ /dev/null
@@ -1,38 +0,0 @@
-diff --git a/src/core/ngx_connection.c b/src/core/ngx_connection.c
---- a/src/core/ngx_connection.c
-+++ b/src/core/ngx_connection.c
-@@ -1118,6 +1118,12 @@ ngx_close_listening_sockets(ngx_cycle_t *cycle)
-     ls = cycle->listening.elts;
-     for (i = 0; i < cycle->listening.nelts; i++) {
- 
-+#if (NGX_HAVE_REUSEPORT)
-+        if (ls[i].fd == (ngx_socket_t) -1) {
-+            continue;
-+        }
-+#endif
-+
-         c = ls[i].connection;
- 
-         if (c) {
-diff --git a/src/event/ngx_event.c b/src/event/ngx_event.c
---- a/src/event/ngx_event.c
-+++ b/src/event/ngx_event.c
-@@ -775,6 +775,18 @@ ngx_event_process_init(ngx_cycle_t *cycle)
- 
- #if (NGX_HAVE_REUSEPORT)
-         if (ls[i].reuseport && ls[i].worker != ngx_worker) {
-+            ngx_log_debug2(NGX_LOG_DEBUG_CORE, cycle->log, 0,
-+                           "closing unused fd:%d listening on %V",
-+                           ls[i].fd, &ls[i].addr_text);
-+
-+            if (ngx_close_socket(ls[i].fd) == -1) {
-+                ngx_log_error(NGX_LOG_EMERG, cycle->log, ngx_socket_errno,
-+                              ngx_close_socket_n " %V failed",
-+                              &ls[i].addr_text);
-+            }
-+
-+            ls[i].fd = (ngx_socket_t) -1;
-+
-             continue;
-         }
- #endif
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-single_process_graceful_exit.patch b/images/nginx/rootfs/patches/nginx-1.21.4-single_process_graceful_exit.patch
deleted file mode 100644
index 2754fc2fe..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-single_process_graceful_exit.patch
+++ /dev/null
@@ -1,75 +0,0 @@
-diff --git a/src/os/unix/ngx_process.c b/src/os/unix/ngx_process.c
-index 15680237..12a8c687 100644
---- a/src/os/unix/ngx_process.c
-+++ b/src/os/unix/ngx_process.c
-@@ -362,8 +362,15 @@ ngx_signal_handler(int signo, siginfo_t *siginfo, void *ucontext)
-             break;
- 
-         case ngx_signal_value(NGX_RECONFIGURE_SIGNAL):
--            ngx_reconfigure = 1;
--            action = ", reconfiguring";
-+            if (ngx_process == NGX_PROCESS_SINGLE) {
-+                ngx_terminate = 1;
-+                action = ", exiting";
-+
-+            } else {
-+                ngx_reconfigure = 1;
-+                action = ", reconfiguring";
-+            }
-+
-             break;
- 
-         case ngx_signal_value(NGX_REOPEN_SIGNAL):
-diff --git a/src/os/unix/ngx_process_cycle.c b/src/os/unix/ngx_process_cycle.c
-index 5817a2c2..f3d58e97 100644
---- a/src/os/unix/ngx_process_cycle.c
-+++ b/src/os/unix/ngx_process_cycle.c
-@@ -305,11 +305,26 @@ ngx_single_process_cycle(ngx_cycle_t *cycle)
-     }
- 
-     for ( ;; ) {
-+        if (ngx_exiting) {
-+            if (ngx_event_no_timers_left() == NGX_OK) {
-+                ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "exiting");
-+
-+                for (i = 0; cycle->modules[i]; i++) {
-+                    if (cycle->modules[i]->exit_process) {
-+                        cycle->modules[i]->exit_process(cycle);
-+                    }
-+                }
-+
-+                ngx_master_process_exit(cycle);
-+            }
-+        }
-+
-         ngx_log_debug0(NGX_LOG_DEBUG_EVENT, cycle->log, 0, "worker cycle");
- 
-         ngx_process_events_and_timers(cycle);
- 
--        if (ngx_terminate || ngx_quit) {
-+        if (ngx_terminate) {
-+            ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "exiting");
- 
-             for (i = 0; cycle->modules[i]; i++) {
-                 if (cycle->modules[i]->exit_process) {
-@@ -320,6 +335,20 @@ ngx_single_process_cycle(ngx_cycle_t *cycle)
-             ngx_master_process_exit(cycle);
-         }
- 
-+        if (ngx_quit) {
-+            ngx_quit = 0;
-+            ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0,
-+                          "gracefully shutting down");
-+            ngx_setproctitle("process is shutting down");
-+
-+            if (!ngx_exiting) {
-+                ngx_exiting = 1;
-+                ngx_set_shutdown_timer(cycle);
-+                ngx_close_listening_sockets(cycle);
-+                ngx_close_idle_connections(cycle);
-+            }
-+        }
-+
-         if (ngx_reconfigure) {
-             ngx_reconfigure = 0;
-             ngx_log_error(NGX_LOG_NOTICE, cycle->log, 0, "reconfiguring");
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-socket_cloexec.patch b/images/nginx/rootfs/patches/nginx-1.21.4-socket_cloexec.patch
deleted file mode 100644
index 8ffe4c167..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-socket_cloexec.patch
+++ /dev/null
@@ -1,185 +0,0 @@
-diff --git a/auto/unix b/auto/unix
-index 10835f6c..b5b33bb3 100644
---- a/auto/unix
-+++ b/auto/unix
-@@ -990,3 +990,27 @@ ngx_feature_test='struct addrinfo *res;
-                   if (getaddrinfo("localhost", NULL, NULL, &res) != 0) return 1;
-                   freeaddrinfo(res)'
- . auto/feature
-+
-+ngx_feature="SOCK_CLOEXEC support"
-+ngx_feature_name="NGX_HAVE_SOCKET_CLOEXEC"
-+ngx_feature_run=no
-+ngx_feature_incs="#include <sys/types.h>
-+                  #include <sys/socket.h>"
-+ngx_feature_path=
-+ngx_feature_libs=
-+ngx_feature_test="int fd;
-+                  fd = socket(AF_INET, SOCK_STREAM | SOCK_CLOEXEC, 0);"
-+. auto/feature
-+
-+ngx_feature="FD_CLOEXEC support"
-+ngx_feature_name="NGX_HAVE_FD_CLOEXEC"
-+ngx_feature_run=no
-+ngx_feature_incs="#include <sys/types.h>
-+                  #include <sys/socket.h>
-+                  #include <fcntl.h>"
-+ngx_feature_path=
-+ngx_feature_libs=
-+ngx_feature_test="int fd;
-+                  fd = socket(AF_INET, SOCK_STREAM, 0);
-+                  fcntl(fd, F_SETFD, FD_CLOEXEC);"
-+. auto/feature
-diff --git a/src/core/ngx_resolver.c b/src/core/ngx_resolver.c
-index cd55520c..438e0806 100644
---- a/src/core/ngx_resolver.c
-+++ b/src/core/ngx_resolver.c
-@@ -4466,8 +4466,14 @@ ngx_tcp_connect(ngx_resolver_connection_t *rec)
-     ngx_event_t       *rev, *wev;
-     ngx_connection_t  *c;
- 
-+#if (NGX_HAVE_SOCKET_CLOEXEC)
-+    s = ngx_socket(rec->sockaddr->sa_family, SOCK_STREAM | SOCK_CLOEXEC, 0);
-+
-+#else
-     s = ngx_socket(rec->sockaddr->sa_family, SOCK_STREAM, 0);
- 
-+#endif
-+
-     ngx_log_debug1(NGX_LOG_DEBUG_EVENT, &rec->log, 0, "TCP socket %d", s);
- 
-     if (s == (ngx_socket_t) -1) {
-@@ -4494,6 +4500,15 @@ ngx_tcp_connect(ngx_resolver_connection_t *rec)
-         goto failed;
-     }
- 
-+#if (NGX_HAVE_FD_CLOEXEC)
-+    if (ngx_cloexec(s) == -1) {
-+        ngx_log_error(NGX_LOG_ALERT, &rec->log, ngx_socket_errno,
-+                      ngx_cloexec_n " failed");
-+
-+        goto failed;
-+    }
-+#endif
-+
-     rev = c->read;
-     wev = c->write;
- 
-diff --git a/src/event/ngx_event.h b/src/event/ngx_event.h
-index 19fec68..8c2f01a 100644
---- a/src/event/ngx_event.h
-+++ b/src/event/ngx_event.h
-@@ -73,6 +73,9 @@ struct ngx_event_s {
-     /* to test on worker exit */
-     unsigned         channel:1;
-     unsigned         resolver:1;
-+#if (HAVE_SOCKET_CLOEXEC_PATCH)
-+    unsigned         skip_socket_leak_check:1;
-+#endif
- 
-     unsigned         cancelable:1;
- 
-diff --git a/src/event/ngx_event_accept.c b/src/event/ngx_event_accept.c
-index 77563709..5827b9d0 100644
---- a/src/event/ngx_event_accept.c
-+++ b/src/event/ngx_event_accept.c
-@@ -62,7 +62,9 @@ ngx_event_accept(ngx_event_t *ev)
- 
- #if (NGX_HAVE_ACCEPT4)
-         if (use_accept4) {
--            s = accept4(lc->fd, &sa.sockaddr, &socklen, SOCK_NONBLOCK);
-+            s = accept4(lc->fd, &sa.sockaddr, &socklen,
-+                        SOCK_NONBLOCK | SOCK_CLOEXEC);
-+
-         } else {
-             s = accept(lc->fd, &sa.sockaddr, &socklen);
-         }
-@@ -202,6 +204,16 @@ ngx_event_accept(ngx_event_t *ev)
-                     ngx_close_accepted_connection(c);
-                     return;
-                 }
-+
-+#if (NGX_HAVE_FD_CLOEXEC)
-+                if (ngx_cloexec(s) == -1) {
-+                    ngx_log_error(NGX_LOG_ALERT, ev->log, ngx_socket_errno,
-+                                  ngx_cloexec_n " failed");
-+                    ngx_close_accepted_connection(c);
-+                    return;
-+                }
-+#endif
-+
-             }
-         }
- 
-diff --git a/src/event/ngx_event_connect.c b/src/event/ngx_event_connect.c
-index c5bb8068..cf33b1d2 100644
---- a/src/event/ngx_event_connect.c
-+++ b/src/event/ngx_event_connect.c
-@@ -38,8 +38,15 @@ ngx_event_connect_peer(ngx_peer_connection_t *pc)
- 
-     type = (pc->type ? pc->type : SOCK_STREAM);
- 
-+#if (NGX_HAVE_SOCKET_CLOEXEC)
-+    s = ngx_socket(pc->sockaddr->sa_family, type | SOCK_CLOEXEC, 0);
-+
-+#else
-     s = ngx_socket(pc->sockaddr->sa_family, type, 0);
- 
-+#endif
-+
-+
-     ngx_log_debug2(NGX_LOG_DEBUG_EVENT, pc->log, 0, "%s socket %d",
-                    (type == SOCK_STREAM) ? "stream" : "dgram", s);
- 
-@@ -80,6 +87,15 @@ ngx_event_connect_peer(ngx_peer_connection_t *pc)
-         goto failed;
-     }
- 
-+#if (NGX_HAVE_FD_CLOEXEC)
-+    if (ngx_cloexec(s) == -1) {
-+        ngx_log_error(NGX_LOG_ALERT, pc->log, ngx_socket_errno,
-+                      ngx_cloexec_n " failed");
-+
-+        goto failed;
-+    }
-+#endif
-+
-     if (pc->local) {
- 
- #if (NGX_HAVE_TRANSPARENT_PROXY)
-diff --git a/src/os/unix/ngx_process_cycle.c b/src/os/unix/ngx_process_cycle.c
-index c4376a5..48e8fa8 100644
---- a/src/os/unix/ngx_process_cycle.c
-+++ b/src/os/unix/ngx_process_cycle.c
-@@ -960,6 +1029,9 @@ ngx_worker_process_exit(ngx_cycle_t *cycle)
-         for (i = 0; i < cycle->connection_n; i++) {
-             if (c[i].fd != -1
-                 && c[i].read
-+#if (HAVE_SOCKET_CLOEXEC_PATCH)
-+                && !c[i].read->skip_socket_leak_check
-+#endif
-                 && !c[i].read->accept
-                 && !c[i].read->channel
-                 && !c[i].read->resolver)
-diff --git a/src/os/unix/ngx_socket.h b/src/os/unix/ngx_socket.h
-index fcc51533..d1eebf47 100644
---- a/src/os/unix/ngx_socket.h
-+++ b/src/os/unix/ngx_socket.h
-@@ -38,6 +38,17 @@ int ngx_blocking(ngx_socket_t s);
- 
- #endif
- 
-+#if (NGX_HAVE_FD_CLOEXEC)
-+
-+#define ngx_cloexec(s)      fcntl(s, F_SETFD, FD_CLOEXEC)
-+#define ngx_cloexec_n       "fcntl(FD_CLOEXEC)"
-+
-+/* at least FD_CLOEXEC is required to ensure connection fd is closed
-+ * after execve */
-+#define HAVE_SOCKET_CLOEXEC_PATCH  1
-+
-+#endif
-+
- int ngx_tcp_nopush(ngx_socket_t s);
- int ngx_tcp_push(ngx_socket_t s);
- 
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-ssl_cert_cb_yield.patch b/images/nginx/rootfs/patches/nginx-1.21.4-ssl_cert_cb_yield.patch
deleted file mode 100644
index 89773c05e..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-ssl_cert_cb_yield.patch
+++ /dev/null
@@ -1,64 +0,0 @@
-# HG changeset patch
-# User Yichun Zhang <agentzh@openresty.org>
-# Date 1451762084 28800
-#      Sat Jan 02 11:14:44 2016 -0800
-# Node ID 449f0461859c16e95bdb18e8be6b94401545d3dd
-# Parent  78b4e10b4367b31367aad3c83c9c3acdd42397c4
-SSL: handled SSL_CTX_set_cert_cb() callback yielding.
-
-OpenSSL 1.0.2+ introduces SSL_CTX_set_cert_cb() to allow custom
-callbacks to serve the SSL certificiates and private keys dynamically
-and lazily. The callbacks may yield for nonblocking I/O or sleeping.
-Here we added support for such usage in NGINX 3rd-party modules
-(like ngx_lua) in NGINX's event handlers for downstream SSL
-connections.
-
-diff -r 78b4e10b4367 -r 449f0461859c src/event/ngx_event_openssl.c
---- a/src/event/ngx_event_openssl.c Thu Dec 17 16:39:15 2015 +0300
-+++ b/src/event/ngx_event_openssl.c Sat Jan 02 11:14:44 2016 -0800
-@@ -1445,6 +1445,23 @@ ngx_ssl_handshake(ngx_connection_t *c)
-         return NGX_AGAIN;
-     }
- 
-+#if OPENSSL_VERSION_NUMBER >= 0x10002000L
-+    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP) {
-+        c->read->handler = ngx_ssl_handshake_handler;
-+        c->write->handler = ngx_ssl_handshake_handler;
-+
-+        if (ngx_handle_read_event(c->read, 0) != NGX_OK) {
-+            return NGX_ERROR;
-+        }
-+
-+        if (ngx_handle_write_event(c->write, 0) != NGX_OK) {
-+            return NGX_ERROR;
-+        }
-+
-+        return NGX_AGAIN;
-+    }
-+#endif
-+
-     err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
- 
-     c->ssl->no_wait_shutdown = 1;
-@@ -1558,6 +1575,21 @@ ngx_ssl_try_early_data(ngx_connection_t *c)
-         return NGX_AGAIN;
-     }
- 
-+    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP) {
-+        c->read->handler = ngx_ssl_handshake_handler;
-+        c->write->handler = ngx_ssl_handshake_handler;
-+
-+        if (ngx_handle_read_event(c->read, 0) != NGX_OK) {
-+            return NGX_ERROR;
-+        }
-+
-+        if (ngx_handle_write_event(c->write, 0) != NGX_OK) {
-+            return NGX_ERROR;
-+        }
-+
-+        return NGX_AGAIN;
-+    }
-+
-     err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
- 
-     c->ssl->no_wait_shutdown = 1;
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-ssl_sess_cb_yield.patch b/images/nginx/rootfs/patches/nginx-1.21.4-ssl_sess_cb_yield.patch
deleted file mode 100644
index ac5fe65eb..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-ssl_sess_cb_yield.patch
+++ /dev/null
@@ -1,41 +0,0 @@
-diff --git a/src/event/ngx_event_openssl.c b/src/event/ngx_event_openssl.c
---- a/src/event/ngx_event_openssl.c
-+++ b/src/event/ngx_event_openssl.c
-@@ -1446,7 +1446,12 @@ ngx_ssl_handshake(ngx_connection_t *c)
-     }
- 
- #if OPENSSL_VERSION_NUMBER >= 0x10002000L
--    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP) {
-+    if (sslerr == SSL_ERROR_WANT_X509_LOOKUP
-+#   ifdef SSL_ERROR_PENDING_SESSION
-+        || sslerr == SSL_ERROR_PENDING_SESSION
-+#   endif
-+       )
-+    {
-         c->read->handler = ngx_ssl_handshake_handler;
-         c->write->handler = ngx_ssl_handshake_handler;
- 
-@@ -1575,6 +1580,23 @@ ngx_ssl_try_early_data(ngx_connection_t *c)
-         return NGX_AGAIN;
-     }
- 
-+#ifdef SSL_ERROR_PENDING_SESSION
-+    if (sslerr == SSL_ERROR_PENDING_SESSION) {
-+        c->read->handler = ngx_ssl_handshake_handler;
-+        c->write->handler = ngx_ssl_handshake_handler;
-+
-+        if (ngx_handle_read_event(c->read, 0) != NGX_OK) {
-+            return NGX_ERROR;
-+        }
-+
-+        if (ngx_handle_write_event(c->write, 0) != NGX_OK) {
-+            return NGX_ERROR;
-+        }
-+
-+        return NGX_AGAIN;
-+    }
-+#endif
-+
-     err = (sslerr == SSL_ERROR_SYSCALL) ? ngx_errno : 0;
- 
-     c->ssl->no_wait_shutdown = 1;
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch b/images/nginx/rootfs/patches/nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch
deleted file mode 100644
index cb881f070..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-stream_proxy_get_next_upstream_tries.patch
+++ /dev/null
@@ -1,31 +0,0 @@
-diff --git a/src/stream/ngx_stream.h b/src/stream/ngx_stream.h
-index 09d2459..de92724 100644
---- a/src/stream/ngx_stream.h
-+++ b/src/stream/ngx_stream.h
-@@ -303,4 +303,7 @@ typedef ngx_int_t (*ngx_stream_filter_pt)(ngx_stream_session_t *s,
- extern ngx_stream_filter_pt  ngx_stream_top_filter;
- 
- 
-+#define HAS_NGX_STREAM_PROXY_GET_NEXT_UPSTREAM_TRIES_PATCH 1
-+
-+
- #endif /* _NGX_STREAM_H_INCLUDED_ */
-diff --git a/src/stream/ngx_stream_proxy_module.c b/src/stream/ngx_stream_proxy_module.c
-index 0afde1c..3254ce1 100644
---- a/src/stream/ngx_stream_proxy_module.c
-+++ b/src/stream/ngx_stream_proxy_module.c
-@@ -2156,3 +2156,14 @@ ngx_stream_proxy_bind(ngx_conf_t *cf, ngx_command_t *cmd, void *conf)
- 
-     return NGX_CONF_OK;
- }
-+
-+
-+ngx_uint_t
-+ngx_stream_proxy_get_next_upstream_tries(ngx_stream_session_t *s)
-+{
-+    ngx_stream_proxy_srv_conf_t      *pscf;
-+
-+    pscf = ngx_stream_get_module_srv_conf(s, ngx_stream_proxy_module);
-+
-+    return pscf->next_upstream_tries;
-+}
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-stream_ssl_preread_no_skip.patch b/images/nginx/rootfs/patches/nginx-1.21.4-stream_ssl_preread_no_skip.patch
deleted file mode 100644
index e45e9f69a..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-stream_ssl_preread_no_skip.patch
+++ /dev/null
@@ -1,13 +0,0 @@
-diff --git a/src/stream/ngx_stream_ssl_preread_module.c b/src/stream/ngx_stream_ssl_preread_module.c
-index e3d11fd9..3717b5fe 100644
---- a/src/stream/ngx_stream_ssl_preread_module.c
-+++ b/src/stream/ngx_stream_ssl_preread_module.c
-@@ -159,7 +159,7 @@ ngx_stream_ssl_preread_handler(ngx_stream_session_t *s)
- 
-         rc = ngx_stream_ssl_preread_parse_record(ctx, p, p + len);
-         if (rc != NGX_AGAIN) {
--            return rc;
-+            return rc == NGX_OK ? NGX_DECLINED : rc;
-         }
- 
-         p += len;
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-upstream_pipelining.patch b/images/nginx/rootfs/patches/nginx-1.21.4-upstream_pipelining.patch
deleted file mode 100644
index aed80365a..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-upstream_pipelining.patch
+++ /dev/null
@@ -1,23 +0,0 @@
-commit f9907b72a76a21ac5413187b83177a919475c75f
-Author: Yichun Zhang (agentzh) <agentzh@gmail.com>
-Date:   Wed Feb 10 16:05:08 2016 -0800
-
-    bugfix: upstream: keep sending request data after the first write attempt.
-    
-    See
-    http://mailman.nginx.org/pipermail/nginx-devel/2012-March/002040.html
-    for more details on the issue.
-
-diff --git a/src/http/ngx_http_upstream.c b/src/http/ngx_http_upstream.c
-index 69019417..92b7c97f 100644
---- a/src/http/ngx_http_upstream.c
-+++ b/src/http/ngx_http_upstream.c
-@@ -2239,7 +2239,7 @@ ngx_http_upstream_send_request_handler(ngx_http_request_t *r,
-
- #endif
-
--    if (u->header_sent && !u->conf->preserve_output) {
-+    if (u->request_body_sent && !u->conf->preserve_output) {
-         u->write_event_handler = ngx_http_upstream_dummy_handler;
-
-         (void) ngx_handle_write_event(c->write, 0);
diff --git a/images/nginx/rootfs/patches/nginx-1.21.4-upstream_timeout_fields.patch b/images/nginx/rootfs/patches/nginx-1.21.4-upstream_timeout_fields.patch
deleted file mode 100644
index 2314ddf80..000000000
--- a/images/nginx/rootfs/patches/nginx-1.21.4-upstream_timeout_fields.patch
+++ /dev/null
@@ -1,112 +0,0 @@
-diff --git a/src/http/ngx_http_upstream.c b/src/http/ngx_http_upstream.c
-index 69019417..2265d8f7 100644
---- a/src/http/ngx_http_upstream.c
-+++ b/src/http/ngx_http_upstream.c
-@@ -509,12 +509,19 @@ void
- ngx_http_upstream_init(ngx_http_request_t *r)
- {
-     ngx_connection_t     *c;
-+    ngx_http_upstream_t  *u;
- 
-     c = r->connection;
- 
-     ngx_log_debug1(NGX_LOG_DEBUG_HTTP, c->log, 0,
-                    "http init upstream, client timer: %d", c->read->timer_set);
- 
-+    u = r->upstream;
-+
-+    u->connect_timeout = u->conf->connect_timeout;
-+    u->send_timeout = u->conf->send_timeout;
-+    u->read_timeout = u->conf->read_timeout;
-+
- #if (NGX_HTTP_V2)
-     if (r->stream) {
-         ngx_http_upstream_init_request(r);
-@@ -1626,7 +1633,7 @@ ngx_http_upstream_connect(ngx_http_request_t *r, ngx_http_upstream_t *u)
-     u->request_body_blocked = 0;
- 
-     if (rc == NGX_AGAIN) {
--        ngx_add_timer(c->write, u->conf->connect_timeout);
-+        ngx_add_timer(c->write, u->connect_timeout);
-         return;
-     }
- 
-@@ -1704,7 +1711,7 @@ ngx_http_upstream_ssl_init_connection(ngx_http_request_t *r,
-     if (rc == NGX_AGAIN) {
- 
-         if (!c->write->timer_set) {
--            ngx_add_timer(c->write, u->conf->connect_timeout);
-+            ngx_add_timer(c->write, u->connect_timeout);
-         }
- 
-         c->ssl->handler = ngx_http_upstream_ssl_handshake_handler;
-@@ -2022,7 +2029,7 @@ ngx_http_upstream_send_request(ngx_http_request_t *r, ngx_http_upstream_t *u,
- 
-     if (rc == NGX_AGAIN) {
-         if (!c->write->ready || u->request_body_blocked) {
--            ngx_add_timer(c->write, u->conf->send_timeout);
-+            ngx_add_timer(c->write, u->send_timeout);
- 
-         } else if (c->write->timer_set) {
-             ngx_del_timer(c->write);
-@@ -2084,7 +2091,7 @@ ngx_http_upstream_send_request(ngx_http_request_t *r, ngx_http_upstream_t *u,
-             return;
-         }
- 
--        ngx_add_timer(c->read, u->conf->read_timeout);
-+        ngx_add_timer(c->read, u->read_timeout);
- 
-         if (c->read->ready) {
-             ngx_http_upstream_process_header(r, u);
-@@ -3213,7 +3220,7 @@ ngx_http_upstream_send_response(ngx_http_request_t *r, ngx_http_upstream_t *u)
-         p->cyclic_temp_file = 0;
-     }
- 
--    p->read_timeout = u->conf->read_timeout;
-+    p->read_timeout = u->read_timeout;
-     p->send_timeout = clcf->send_timeout;
-     p->send_lowat = clcf->send_lowat;
- 
-@@ -3458,7 +3465,7 @@ ngx_http_upstream_process_upgraded(ngx_http_request_t *r,
-     }
- 
-     if (upstream->write->active && !upstream->write->ready) {
--        ngx_add_timer(upstream->write, u->conf->send_timeout);
-+        ngx_add_timer(upstream->write, u->send_timeout);
- 
-     } else if (upstream->write->timer_set) {
-         ngx_del_timer(upstream->write);
-@@ -3470,7 +3477,7 @@ ngx_http_upstream_process_upgraded(ngx_http_request_t *r,
-     }
- 
-     if (upstream->read->active && !upstream->read->ready) {
--        ngx_add_timer(upstream->read, u->conf->read_timeout);
-+        ngx_add_timer(upstream->read, u->read_timeout);
- 
-     } else if (upstream->read->timer_set) {
-         ngx_del_timer(upstream->read);
-@@ -3664,7 +3671,7 @@ ngx_http_upstream_process_non_buffered_request(ngx_http_request_t *r,
-     }
- 
-     if (upstream->read->active && !upstream->read->ready) {
--        ngx_add_timer(upstream->read, u->conf->read_timeout);
-+        ngx_add_timer(upstream->read, u->read_timeout);
- 
-     } else if (upstream->read->timer_set) {
-         ngx_del_timer(upstream->read);
-diff --git a/src/http/ngx_http_upstream.h b/src/http/ngx_http_upstream.h
-index c2f4dc0b..b9eef118 100644
---- a/src/http/ngx_http_upstream.h
-+++ b/src/http/ngx_http_upstream.h
-@@ -333,6 +333,11 @@ struct ngx_http_upstream_s {
-     ngx_array_t                     *caches;
- #endif
- 
-+#define HAVE_NGX_UPSTREAM_TIMEOUT_FIELDS  1
-+    ngx_msec_t                       connect_timeout;
-+    ngx_msec_t                       send_timeout;
-+    ngx_msec_t                       read_timeout;
-+
-     ngx_http_upstream_headers_in_t   headers_in;
- 
-     ngx_http_upstream_resolved_t    *resolved;

From 551c9ab8273752297dd8ef639dcfc8da98077ed1 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 1 Oct 2024 17:42:12 +0200
Subject: [PATCH 1474/1641] Images: Trigger NGINX build. (#12063)

---
 images/nginx/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx/TAG b/images/nginx/TAG
index f25246219..0ec25f750 100644
--- a/images/nginx/TAG
+++ b/images/nginx/TAG
@@ -1 +1 @@
-v0.0.12
+v1.0.0

From 9f49f80f63671f135e536d5de2db09fab70c5640 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 1 Oct 2024 22:22:16 +0200
Subject: [PATCH 1475/1641] Images: Bump `NGINX_BASE` to v1.0.0. (#12066)

---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index 5e32265fa..ea1e443b0 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx-1.25:v0.0.12@sha256:2d471b3a34dc43d10c3f3d7f2a6e8a2ecf7654a4197e56374261c1c708b16365
+registry.k8s.io/ingress-nginx/nginx:v1.0.0@sha256:11ee0d0e3d063f1468f9a82958d57fa0718614fe10b676941f4dea0aef091faf

From e7d64dbb70cc905cec9ba8a3dab59e1e5ac7ddbc Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 1 Oct 2024 22:33:48 +0100
Subject: [PATCH 1476/1641] Bump k8s.io/cli-runtime from 0.30.0 to 0.31.1
 (#12061)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 +++-----
 go.sum | 16 ++++++----------
 2 files changed, 9 insertions(+), 15 deletions(-)

diff --git a/go.mod b/go.mod
index 6bdaead75..ec9533437 100644
--- a/go.mod
+++ b/go.mod
@@ -35,7 +35,7 @@ require (
 	k8s.io/apiextensions-apiserver v0.31.1
 	k8s.io/apimachinery v0.31.1
 	k8s.io/apiserver v0.31.1
-	k8s.io/cli-runtime v0.30.0
+	k8s.io/cli-runtime v0.31.1
 	k8s.io/client-go v0.31.1
 	k8s.io/code-generator v0.31.1
 	k8s.io/component-base v0.31.1
@@ -64,7 +64,6 @@ require (
 	github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc // indirect
 	github.com/eapache/queue v1.1.0 // indirect
 	github.com/emicklei/go-restful/v3 v3.12.0 // indirect
-	github.com/evanphx/json-patch v5.9.0+incompatible // indirect
 	github.com/evanphx/json-patch/v5 v5.9.0 // indirect
 	github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa // indirect
 	github.com/go-errors/errors v1.5.1 // indirect
@@ -124,7 +123,6 @@ require (
 	golang.org/x/tools v0.24.0 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20240814211410-ddb44dafa142 // indirect
 	google.golang.org/protobuf v1.34.2 // indirect
-	gopkg.in/evanphx/json-patch.v5 v5.9.0 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
@@ -133,8 +131,8 @@ require (
 	k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f // indirect
 	k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 // indirect
 	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
-	sigs.k8s.io/kustomize/api v0.16.0 // indirect
-	sigs.k8s.io/kustomize/kyaml v0.16.0 // indirect
+	sigs.k8s.io/kustomize/api v0.17.2 // indirect
+	sigs.k8s.io/kustomize/kyaml v0.17.1 // indirect
 	sigs.k8s.io/structured-merge-diff/v4 v4.4.1 // indirect
 	sigs.k8s.io/yaml v1.4.0 // indirect
 )
diff --git a/go.sum b/go.sum
index 04a26d653..240b71f1f 100644
--- a/go.sum
+++ b/go.sum
@@ -32,8 +32,6 @@ github.com/eapache/queue v1.1.0 h1:YOEu7KNc61ntiQlcEeUIoDTJ2o8mQznoNvUhiigpIqc=
 github.com/eapache/queue v1.1.0/go.mod h1:6eCeP0CKFpHLu8blIFXhExK/dRa7WDZfr6jVFPTqq+I=
 github.com/emicklei/go-restful/v3 v3.12.0 h1:y2DdzBAURM29NFF94q6RaY4vjIH1rtwDapwQtU84iWk=
 github.com/emicklei/go-restful/v3 v3.12.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
-github.com/evanphx/json-patch v5.9.0+incompatible h1:fBXyNpNMuTTDdquAq/uisOr2lShz4oaXpDTX2bLe7ls=
-github.com/evanphx/json-patch v5.9.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/evanphx/json-patch/v5 v5.9.0 h1:kcBlZQbplgElYIlo/n1hJbls2z/1awpXxpRi0/FOJfg=
 github.com/evanphx/json-patch/v5 v5.9.0/go.mod h1:VNkHZ/282BpEyt/tObQO8s5CMPmYYq14uClGH4abBuQ=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
@@ -319,8 +317,6 @@ gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntN
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
 gopkg.in/evanphx/json-patch.v4 v4.12.0 h1:n6jtcsulIzXPJaxegRbvFNNrZDjbij7ny3gmSPG+6V4=
 gopkg.in/evanphx/json-patch.v4 v4.12.0/go.mod h1:p8EYWUEYMpynmqDbY58zCKCFZw8pRWMG4EsWvDvM72M=
-gopkg.in/evanphx/json-patch.v5 v5.9.0 h1:hx1VU2SGj4F8r9b8GUwJLdc8DNO8sy79ZGui0G05GLo=
-gopkg.in/evanphx/json-patch.v5 v5.9.0/go.mod h1:/kvTRh1TVm5wuM6OkHxqXtE/1nUZZpihg29RtuIyfvk=
 gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
 gopkg.in/go-playground/assert.v1 v1.2.1 h1:xoYuJVE7KT85PYWrN730RguIQO0ePzVRfFMXadIrXTM=
 gopkg.in/go-playground/assert.v1 v1.2.1/go.mod h1:9RXL0bg/zibRAgZUYszZSwO/z8Y/a8bDuhia5mkpMnE=
@@ -349,8 +345,8 @@ k8s.io/apimachinery v0.31.1 h1:mhcUBbj7KUjaVhyXILglcVjuS4nYXiwC+KKFBgIVy7U=
 k8s.io/apimachinery v0.31.1/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
 k8s.io/apiserver v0.31.1 h1:Sars5ejQDCRBY5f7R3QFHdqN3s61nhkpaX8/k1iEw1c=
 k8s.io/apiserver v0.31.1/go.mod h1:lzDhpeToamVZJmmFlaLwdYZwd7zB+WYRYIboqA1kGxM=
-k8s.io/cli-runtime v0.30.0 h1:0vn6/XhOvn1RJ2KJOC6IRR2CGqrpT6QQF4+8pYpWQ48=
-k8s.io/cli-runtime v0.30.0/go.mod h1:vATpDMATVTMA79sZ0YUCzlMelf6rUjoBzlp+RnoM+cg=
+k8s.io/cli-runtime v0.31.1 h1:/ZmKhmZ6hNqDM+yf9s3Y4KEYakNXUn5sod2LWGGwCuk=
+k8s.io/cli-runtime v0.31.1/go.mod h1:pKv1cDIaq7ehWGuXQ+A//1OIF+7DI+xudXtExMCbe9U=
 k8s.io/client-go v0.31.1 h1:f0ugtWSbWpxHR7sjVpQwuvw9a3ZKLXX0u0itkFXufb0=
 k8s.io/client-go v0.31.1/go.mod h1:sKI8871MJN2OyeqRlmA4W4KM9KBdBUpDLu/43eGemCg=
 k8s.io/code-generator v0.31.1 h1:GvkRZEP2g2UnB2QKT2Dgc/kYxIkDxCHENv2Q1itioVs=
@@ -371,10 +367,10 @@ sigs.k8s.io/controller-runtime v0.19.0 h1:nWVM7aq+Il2ABxwiCizrVDSlmDcshi9llbaFbC
 sigs.k8s.io/controller-runtime v0.19.0/go.mod h1:iRmWllt8IlaLjvTTDLhRBXIEtkCK6hwVBJJsYS9Ajf4=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
-sigs.k8s.io/kustomize/api v0.16.0 h1:/zAR4FOQDCkgSDmVzV2uiFbuy9bhu3jEzthrHCuvm1g=
-sigs.k8s.io/kustomize/api v0.16.0/go.mod h1:MnFZ7IP2YqVyVwMWoRxPtgl/5hpA+eCCrQR/866cm5c=
-sigs.k8s.io/kustomize/kyaml v0.16.0 h1:6J33uKSoATlKZH16unr2XOhDI+otoe2sR3M8PDzW3K0=
-sigs.k8s.io/kustomize/kyaml v0.16.0/go.mod h1:xOK/7i+vmE14N2FdFyugIshB8eF6ALpy7jI87Q2nRh4=
+sigs.k8s.io/kustomize/api v0.17.2 h1:E7/Fjk7V5fboiuijoZHgs4aHuexi5Y2loXlVOAVAG5g=
+sigs.k8s.io/kustomize/api v0.17.2/go.mod h1:UWTz9Ct+MvoeQsHcJ5e+vziRRkwimm3HytpZgIYqye0=
+sigs.k8s.io/kustomize/kyaml v0.17.1 h1:TnxYQxFXzbmNG6gOINgGWQt09GghzgTP6mIurOgrLCQ=
+sigs.k8s.io/kustomize/kyaml v0.17.1/go.mod h1:9V0mCjIEYjlXuCdYsSXvyoy2BTsLESH7TlGV81S282U=
 sigs.k8s.io/mdtoc v1.1.0 h1:q3YtqYzmC2e0hgLXRIOm7/QLuPux1CX3ZHCwlbABxZo=
 sigs.k8s.io/mdtoc v1.1.0/go.mod h1:QZLVEdHH2iNIR4uHAZyvFRtjloHgVItk8lo/mzCtq3w=
 sigs.k8s.io/structured-merge-diff/v4 v4.4.1 h1:150L+0vs/8DA78h1u02ooW1/fFq/Lwr+sGiqlzvrtq4=

From ec5d1f7954c5d4eafa99941e2fbc7fbc5e081ab9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 1 Oct 2024 22:35:49 +0100
Subject: [PATCH 1477/1641] Bump google.golang.org/grpc from 1.67.0 to 1.67.1
 in the go group across 1 directory (#12059)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index ec9533437..42e7b9f13 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.27.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
-	google.golang.org/grpc v1.67.0
+	google.golang.org/grpc v1.67.1
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index 240b71f1f..4d67e590d 100644
--- a/go.sum
+++ b/go.sum
@@ -299,8 +299,8 @@ gomodules.xyz/jsonpatch/v2 v2.4.0 h1:Ci3iUJyx9UeRx7CeFN8ARgGbkESwJK+KB9lLcWxY/Zw
 gomodules.xyz/jsonpatch/v2 v2.4.0/go.mod h1:AH3dM2RI6uoBZxn3LVrfvJ3E0/9dG4cSrbuBJT4moAY=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240814211410-ddb44dafa142 h1:e7S5W7MGGLaSu8j3YjdezkZ+m1/Nm0uRVRMEMGk26Xs=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240814211410-ddb44dafa142/go.mod h1:UqMtugtsSgubUsoxbuAoiCXvqvErP7Gf0so0mK9tHxU=
-google.golang.org/grpc v1.67.0 h1:IdH9y6PF5MPSdAntIcpjQ+tXO41pcQsfZV2RxtQgVcw=
-google.golang.org/grpc v1.67.0/go.mod h1:1gLDyUQU7CTLJI90u3nXZ9ekeghjeM7pTDZlqFNg2AA=
+google.golang.org/grpc v1.67.1 h1:zWnc1Vrcno+lHZCOofnIMvycFcc0QRGIzm9dhnDX68E=
+google.golang.org/grpc v1.67.1/go.mod h1:1gLDyUQU7CTLJI90u3nXZ9ekeghjeM7pTDZlqFNg2AA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From 867207255eaa60b619c4507190e00ddc3f42358f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 1 Oct 2024 22:37:48 +0100
Subject: [PATCH 1478/1641] Bump github.com/prometheus/common from 0.59.1 to
 0.60.0 (#12060)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 42e7b9f13..cc62bc738 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.4
 	github.com/prometheus/client_model v0.6.1
-	github.com/prometheus/common v0.59.1
+	github.com/prometheus/common v0.60.0
 	github.com/spf13/cobra v1.8.1
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.9.0
@@ -113,8 +113,8 @@ require (
 	go.starlark.net v0.0.0-20240123142251-f86470692795 // indirect
 	go.uber.org/zap v1.27.0 // indirect
 	golang.org/x/mod v0.20.0 // indirect
-	golang.org/x/net v0.28.0 // indirect
-	golang.org/x/oauth2 v0.22.0 // indirect
+	golang.org/x/net v0.29.0 // indirect
+	golang.org/x/oauth2 v0.23.0 // indirect
 	golang.org/x/sync v0.8.0 // indirect
 	golang.org/x/sys v0.25.0 // indirect
 	golang.org/x/term v0.24.0 // indirect
diff --git a/go.sum b/go.sum
index 4d67e590d..a8475a7ed 100644
--- a/go.sum
+++ b/go.sum
@@ -184,8 +184,8 @@ github.com/prometheus/client_golang v1.20.4 h1:Tgh3Yr67PaOv/uTqloMsCEdeuFTatm5zI
 github.com/prometheus/client_golang v1.20.4/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
 github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
-github.com/prometheus/common v0.59.1 h1:LXb1quJHWm1P6wq/U824uxYi4Sg0oGvNeUm1z5dJoX0=
-github.com/prometheus/common v0.59.1/go.mod h1:GpWM7dewqmVYcd7SmRaiWVe9SSqjf0UrwnYnpEZNuT0=
+github.com/prometheus/common v0.60.0 h1:+V9PAREWNvJMAuJ1x1BaWl9dewMW4YrHZQbx0sJNllA=
+github.com/prometheus/common v0.60.0/go.mod h1:h0LYf1R1deLSKtD4Vdg8gy4RuOvENW2J/h19V5NADQw=
 github.com/prometheus/procfs v0.15.1 h1:YagwOFzUgYfKKHX6Dr+sHT7km/hxC76UB0learggepc=
 github.com/prometheus/procfs v0.15.1/go.mod h1:fB45yRUv8NstnjriLhBQLuOUt+WW4BsoGhij/e3PBqk=
 github.com/rogpeppe/go-internal v1.12.0 h1:exVL4IDcn6na9z1rAb56Vxr+CgyK3nn3O+epU5NdKM8=
@@ -250,10 +250,10 @@ golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.28.0 h1:a9JDOJc5GMUJ0+UDqmLT86WiEy7iWyIhz8gz8E4e5hE=
-golang.org/x/net v0.28.0/go.mod h1:yqtgsTWOOnlGLG9GFRrK3++bGOUEkNBoHZc8MEDWPNg=
-golang.org/x/oauth2 v0.22.0 h1:BzDx2FehcG7jJwgWLELCdmLuxk2i+x9UDpSiss2u0ZA=
-golang.org/x/oauth2 v0.22.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
+golang.org/x/net v0.29.0 h1:5ORfpBpCs4HzDYoodCDBbwHzdR5UrLBZ3sOnUJmFoHo=
+golang.org/x/net v0.29.0/go.mod h1:gLkgy8jTGERgjzMic6DS9+SP0ajcu6Xu3Orq/SpETg0=
+golang.org/x/oauth2 v0.23.0 h1:PbgcYx2W7i4LvjJWEbf0ngHV6qJYr86PkAV3bXdLEbs=
+golang.org/x/oauth2 v0.23.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=

From ecb38de6db20fb9ca431692c20c63270fff02992 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 1 Oct 2024 23:27:49 +0100
Subject: [PATCH 1479/1641] Bump sigs.k8s.io/mdtoc from 1.1.0 to 1.4.0 (#12062)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 ++++--
 go.sum | 15 ++++++++-------
 2 files changed, 12 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index cc62bc738..a76b9f570 100644
--- a/go.mod
+++ b/go.mod
@@ -42,14 +42,16 @@ require (
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.19.0
-	sigs.k8s.io/mdtoc v1.1.0
+	sigs.k8s.io/mdtoc v1.4.0
 )
 
 require (
+	github.com/common-nighthawk/go-figure v0.0.0-20210622060536-734e95fb86be // indirect
 	github.com/fxamacker/cbor/v2 v2.7.0 // indirect
 	github.com/klauspost/compress v1.17.9 // indirect
 	github.com/x448/float16 v0.8.4 // indirect
 	gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
+	sigs.k8s.io/release-utils v0.8.3 // indirect
 )
 
 require (
@@ -76,7 +78,7 @@ require (
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
 	github.com/golang/protobuf v1.5.4 // indirect
-	github.com/gomarkdown/markdown v0.0.0-20231222211730-1d6d20845b47 // indirect
+	github.com/gomarkdown/markdown v0.0.0-20240328165702-4d01890c35c0 // indirect
 	github.com/google/btree v1.1.2 // indirect
 	github.com/google/gnostic-models v0.6.8 // indirect
 	github.com/google/go-cmp v0.6.0 // indirect
diff --git a/go.sum b/go.sum
index a8475a7ed..3390e4c13 100644
--- a/go.sum
+++ b/go.sum
@@ -4,7 +4,6 @@ github.com/Anddd7/pb v0.0.0-20240425032658-369b0f6a404c h1:uhBf0CHXi7nCFZXxHV7l1
 github.com/Anddd7/pb v0.0.0-20240425032658-369b0f6a404c/go.mod h1:vYWKbnXd2KAZHUECLPzSE0Er3FgiEmOdPtxwSIRihck=
 github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 h1:L/gRVlceqvL25UVaW/CKtUDjefjrs0SPonmDGUVOYP0=
 github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161/go.mod h1:xomTg63KZ2rFqZQzSB4Vz2SUXa1BpHTVz9L5PTmPC4E=
-github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/toml v1.3.2 h1:o7IhLm0Msx3BaB+n3Ag7L8EVlByGnpq14C4YWiu/gL8=
 github.com/BurntSushi/toml v1.3.2/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbicEuybxQ=
 github.com/armon/go-proxyproto v0.1.0 h1:TWWcSsjco7o2itn6r25/5AqKBiWmsiuzsUDLT/MTl7k=
@@ -15,6 +14,8 @@ github.com/blang/semver/v4 v4.0.0 h1:1PFHFE6yCCTv8C1TeyNNarDzntLi7wMI5i/pzqYIsAM
 github.com/blang/semver/v4 v4.0.0/go.mod h1:IbckMUScFkM3pff0VJDNKRiT6TG/YpiHIM2yvyW5YoQ=
 github.com/cespare/xxhash/v2 v2.3.0 h1:UL815xU9SqsFlibzuggzjXhog7bL6oX9BbNZnL2UFvs=
 github.com/cespare/xxhash/v2 v2.3.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
+github.com/common-nighthawk/go-figure v0.0.0-20210622060536-734e95fb86be h1:J5BL2kskAlV9ckgEsNQXscjIaLiOYiZ75d4e94E6dcQ=
+github.com/common-nighthawk/go-figure v0.0.0-20210622060536-734e95fb86be/go.mod h1:mk5IQ+Y0ZeO87b858TlA645sVcEcbiX6YqP98kt+7+w=
 github.com/coreos/go-systemd/v22 v22.5.0 h1:RrqgGjYQKalulkV8NGVIfkXQf6YYmOyiJKk8iXXhfZs=
 github.com/coreos/go-systemd/v22 v22.5.0/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
 github.com/cpuguy83/go-md2man/v2 v2.0.4/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
@@ -74,9 +75,8 @@ github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvq
 github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI=
 github.com/golang/protobuf v1.5.4 h1:i7eJL8qZTpSEXOPTxNKhASYpMn+8e5Q6AdndVa1dWek=
 github.com/golang/protobuf v1.5.4/go.mod h1:lnTiLA8Wa4RWRcIUkrtSVa5nRhsEGBg48fD6rSs7xps=
-github.com/gomarkdown/markdown v0.0.0-20210514010506-3b9f47219fe7/go.mod h1:aii0r/K0ZnHv7G0KF7xy1v0A7s2Ljrb5byB7MO5p6TU=
-github.com/gomarkdown/markdown v0.0.0-20231222211730-1d6d20845b47 h1:k4Tw0nt6lwro3Uin8eqoET7MDA4JnT8YgbCjc/g5E3k=
-github.com/gomarkdown/markdown v0.0.0-20231222211730-1d6d20845b47/go.mod h1:JDGcbDT52eL4fju3sZ4TeHGsQwhG9nbDV21aMyhwPoA=
+github.com/gomarkdown/markdown v0.0.0-20240328165702-4d01890c35c0 h1:4gjrh/PN2MuWCCElk8/I4OCKRKWCCo2zEct3VKCbibU=
+github.com/gomarkdown/markdown v0.0.0-20240328165702-4d01890c35c0/go.mod h1:JDGcbDT52eL4fju3sZ4TeHGsQwhG9nbDV21aMyhwPoA=
 github.com/google/btree v1.1.2 h1:xf4v41cLI2Z6FxbKm+8Bu+m8ifhj15JuZ9sa0jZCMUU=
 github.com/google/btree v1.1.2/go.mod h1:qOPhT0dTNdNzV6Z/lhRX0YXUafgPLFUh+gZMl761Gm4=
 github.com/google/gnostic-models v0.6.8 h1:yo/ABAfM5IMRsS1VnXjTBvUb61tFIHozhlYvRgGre9I=
@@ -232,7 +232,6 @@ go.uber.org/multierr v1.11.0 h1:blXXJkSxSSfBVBlC76pxqeO+LN3aDfLQo+309xJstO0=
 go.uber.org/multierr v1.11.0/go.mod h1:20+QtiLqy0Nd6FdQB9TLXag12DsQkrbs3htMFfDN80Y=
 go.uber.org/zap v1.27.0 h1:aJMhYGrd5QSmlpLMr2MftRKl7t8J8PTZPA732ud/XR8=
 go.uber.org/zap v1.27.0/go.mod h1:GB2qFLM7cTU87MWRP2mPIjqfIDnGu+VIO4V/SdhGo2E=
-golang.org/dl v0.0.0-20190829154251-82a15e2f2ead/go.mod h1:IUMfjQLJQd4UTqG1Z90tenwKoCX93Gn3MAQJMOSBsDQ=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
@@ -371,8 +370,10 @@ sigs.k8s.io/kustomize/api v0.17.2 h1:E7/Fjk7V5fboiuijoZHgs4aHuexi5Y2loXlVOAVAG5g
 sigs.k8s.io/kustomize/api v0.17.2/go.mod h1:UWTz9Ct+MvoeQsHcJ5e+vziRRkwimm3HytpZgIYqye0=
 sigs.k8s.io/kustomize/kyaml v0.17.1 h1:TnxYQxFXzbmNG6gOINgGWQt09GghzgTP6mIurOgrLCQ=
 sigs.k8s.io/kustomize/kyaml v0.17.1/go.mod h1:9V0mCjIEYjlXuCdYsSXvyoy2BTsLESH7TlGV81S282U=
-sigs.k8s.io/mdtoc v1.1.0 h1:q3YtqYzmC2e0hgLXRIOm7/QLuPux1CX3ZHCwlbABxZo=
-sigs.k8s.io/mdtoc v1.1.0/go.mod h1:QZLVEdHH2iNIR4uHAZyvFRtjloHgVItk8lo/mzCtq3w=
+sigs.k8s.io/mdtoc v1.4.0 h1:2pDEwJSjoVrGr5BPkG+LoLkYLKvgtGYurrBY8ul3SxQ=
+sigs.k8s.io/mdtoc v1.4.0/go.mod h1:KVnRRtK1rX9aQ95qF0rt3x2ytTxf3r7W7N41H+0KF0k=
+sigs.k8s.io/release-utils v0.8.3 h1:KtOtA4qDmzJyeQ2zkDsFVI25+NViwms/o5eL2NftFdA=
+sigs.k8s.io/release-utils v0.8.3/go.mod h1:fp82Fma06OXBhEJ+GUJKqvcplDBomruK1R/1fWJnsrQ=
 sigs.k8s.io/structured-merge-diff/v4 v4.4.1 h1:150L+0vs/8DA78h1u02ooW1/fFq/Lwr+sGiqlzvrtq4=
 sigs.k8s.io/structured-merge-diff/v4 v4.4.1/go.mod h1:N8hJocpFajUSSeSJ9bOZ77VzejKZaXsTtZo4/u7Io08=
 sigs.k8s.io/yaml v1.4.0 h1:Mk1wCc2gy/F0THH0TAp1QYyJNzRm2KCLy3o5ASXVI5E=

From bf287e4331f7de96d06ab9c4a740d873b493b029 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 4 Oct 2024 13:41:52 +0200
Subject: [PATCH 1480/1641] Go: Bump to v1.22.8. (#12069)

---
 GOLANG_VERSION                                | 2 +-
 go.mod                                        | 2 +-
 go.work                                       | 2 +-
 images/custom-error-pages/rootfs/go.mod       | 2 +-
 images/ext-auth-example-authsvc/rootfs/go.mod | 2 +-
 images/kube-webhook-certgen/rootfs/go.mod     | 2 +-
 magefiles/go.mod                              | 2 +-
 7 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/GOLANG_VERSION b/GOLANG_VERSION
index 87b26e8b1..229a27c6f 100644
--- a/GOLANG_VERSION
+++ b/GOLANG_VERSION
@@ -1 +1 @@
-1.22.7
+1.22.8
diff --git a/go.mod b/go.mod
index a76b9f570..74fe03207 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx
 
-go 1.22.7
+go 1.22.8
 
 require (
 	dario.cat/mergo v1.0.1
diff --git a/go.work b/go.work
index f0095c758..b98909b34 100644
--- a/go.work
+++ b/go.work
@@ -1,4 +1,4 @@
-go 1.22.7
+go 1.22.8
 
 use (
 	.
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index bd24d4e1c..4cee1baf5 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.22.7
+go 1.22.8
 
 require github.com/prometheus/client_golang v1.20.4
 
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index 908da4b2e..7e488b484 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,6 +1,6 @@
 module example.com/authsvc
 
-go 1.22.7
+go 1.22.8
 
 require k8s.io/apimachinery v0.31.1
 
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index c9f1c827c..5caee19a2 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,6 +1,6 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.22.7
+go 1.22.8
 
 require (
 	github.com/onrik/logrus v0.11.0
diff --git a/magefiles/go.mod b/magefiles/go.mod
index 913522823..8c58b526c 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/magefiles
 
-go 1.22.7
+go 1.22.8
 
 require (
 	github.com/blang/semver/v4 v4.0.0

From f034444c6c74f977577196c5d77a692317d08f5e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 4 Oct 2024 13:42:12 +0200
Subject: [PATCH 1481/1641] Bump the actions group with 3 updates (#12092)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 2 +-
 .github/workflows/golangci-lint.yml        | 2 +-
 .github/workflows/images.yaml              | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 526acfb2f..648cbd194 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -163,7 +163,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@988b5a0280414f521da01fcc63a27aeeb4b104db # v3.6.1
+        uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3.7.1
         with:
           version: latest
 
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 93db7fbb7..4ef7e9085 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -28,6 +28,6 @@ jobs:
           check-latest: true
 
       - name: golangci-lint
-        uses: golangci/golangci-lint-action@aaa42aa0628b4ae2578232a66b541047968fac86 # v6.1.0
+        uses: golangci/golangci-lint-action@971e284b6050e8a5849b72094c50ab08da042db8 # v6.1.1
         with:
           version: v1.56
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 85ad0aa88..77358e8b3 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -177,7 +177,7 @@ jobs:
         uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf # v3.2.0
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@988b5a0280414f521da01fcc63a27aeeb4b104db # v3.6.1
+        uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3.7.1
         with:
           version: latest
           platforms: ${{ env.PLATFORMS }}
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 4038f1158..9eaf091ee 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10
+        uses: github/codeql-action/upload-sarif@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index adf8a593f..0cd02552d 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10
+        uses: github/codeql-action/upload-sarif@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 114421f94c8f92d84bc2aeca62e163b7feec3cb5 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 4 Oct 2024 07:48:58 -0400
Subject: [PATCH 1482/1641] Docs: Add a multi-tenant warning. (#12091)

---
 README.md                      |  2 ++
 docs/deploy/hardening-guide.md |  2 ++
 docs/faq.md                    | 10 ++++++++++
 3 files changed, 14 insertions(+)

diff --git a/README.md b/README.md
index b1cd22aa1..2ffacd861 100644
--- a/README.md
+++ b/README.md
@@ -17,6 +17,8 @@ balancer.
 
 See the [Getting Started](https://kubernetes.github.io/ingress-nginx/deploy/) document.
 
+Do not use in multi-tenant Kubernetes production installations. This project assumes that users that can create Ingress objects are administrators of the cluster. See the [FAQ](https://kubernetes.github.io/ingress-nginx/faq/#faq) for more.
+
 ## Troubleshooting
 
 If you encounter issues, review the [troubleshooting docs](docs/troubleshooting.md),
diff --git a/docs/deploy/hardening-guide.md b/docs/deploy/hardening-guide.md
index cfbdb1466..2726b1a07 100644
--- a/docs/deploy/hardening-guide.md
+++ b/docs/deploy/hardening-guide.md
@@ -1,6 +1,8 @@
 
 # Hardening Guide
 
+Do not use in multi-tenant Kubernetes production installations. This project assumes that users that can create Ingress objects are administrators of the cluster.
+
 ## Overview
 There are several ways to do hardening and securing of nginx. In this documentation two guides are used, the guides are
 overlapping in some points:
diff --git a/docs/faq.md b/docs/faq.md
index 020474d5c..97d3325ca 100644
--- a/docs/faq.md
+++ b/docs/faq.md
@@ -1,6 +1,16 @@
 
 # FAQ
 
+## Multi-tenant Kubernetes
+
+Do not use in multi-tenant Kubernetes production installations. This project assumes that users that can create Ingress objects are administrators of the cluster.
+
+For example, the Ingress NGINX control plane has global and per Ingress configuration options that make it insecure, if enabled, in a multi-tenant environment. 
+
+For example, enabling snippets, a global configuration, allows any Ingress object to run arbitrary Lua code that could affect the security of all Ingress objects that a controller is running. 
+
+We changed the default to allow snippets to `false` in https://github.com/kubernetes/ingress-nginx/pull/10393.
+
 ## Multiple controller in one cluster
 
 Question - How can I easily install multiple instances of the ingress-nginx controller in the same cluster?

From 114a6abbf5e70d1e14dfec2e8340d80e18ef79c7 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 4 Oct 2024 13:56:17 +0200
Subject: [PATCH 1483/1641] Images: Trigger `test-runner` build. (#12100)

---
 images/test-runner/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/TAG b/images/test-runner/TAG
index 0ec25f750..795460fce 100644
--- a/images/test-runner/TAG
+++ b/images/test-runner/TAG
@@ -1 +1 @@
-v1.0.0
+v1.1.0

From 23c2552113935efff0b9c9484ca554b72959459e Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 4 Oct 2024 19:45:28 +0200
Subject: [PATCH 1484/1641] Tests: Bump `e2e-test-runner` to
 v20241004-114a6abb. (#12103)

---
 build/run-in-docker.sh     | 2 +-
 test/e2e-image/Makefile    | 2 +-
 test/e2e/run-chart-test.sh | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 915c29d7a..095e09b91 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20240829-2c421762@sha256:5b7809bfe9cbd9cd6bcb8033ca27576ca704f05ce729fe4dcb574810f7a25785}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20241004-114a6abb@sha256:1389ec0589abbf5c431c9290c4c307437c8396995c63dda5eac26abd70963dc8}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 8e3040177..e3b0d609f 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20240829-2c421762@sha256:5b7809bfe9cbd9cd6bcb8033ca27576ca704f05ce729fe4dcb574810f7a25785"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20241004-114a6abb@sha256:1389ec0589abbf5c431c9290c4c307437c8396995c63dda5eac26abd70963dc8"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index b6748f129..587dbe98b 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -114,5 +114,5 @@ docker run \
   --workdir /workdir \
   --entrypoint ct \
   --rm \
-  registry.k8s.io/ingress-nginx/e2e-test-runner:v20240829-2c421762@sha256:5b7809bfe9cbd9cd6bcb8033ca27576ca704f05ce729fe4dcb574810f7a25785 \
+  registry.k8s.io/ingress-nginx/e2e-test-runner:v20241004-114a6abb@sha256:1389ec0589abbf5c431c9290c4c307437c8396995c63dda5eac26abd70963dc8 \
     install --charts charts/ingress-nginx

From 73622882070fb459f7bf0b63186416be46852043 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 5 Oct 2024 07:36:03 +0100
Subject: [PATCH 1485/1641] Bump golang.org/x/crypto from 0.27.0 to 0.28.0
 (#12107)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index 74fe03207..3f0637f03 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.9.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.27.0
+	golang.org/x/crypto v0.28.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
 	google.golang.org/grpc v1.67.1
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
@@ -118,9 +118,9 @@ require (
 	golang.org/x/net v0.29.0 // indirect
 	golang.org/x/oauth2 v0.23.0 // indirect
 	golang.org/x/sync v0.8.0 // indirect
-	golang.org/x/sys v0.25.0 // indirect
-	golang.org/x/term v0.24.0 // indirect
-	golang.org/x/text v0.18.0 // indirect
+	golang.org/x/sys v0.26.0 // indirect
+	golang.org/x/term v0.25.0 // indirect
+	golang.org/x/text v0.19.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.24.0 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20240814211410-ddb44dafa142 // indirect
diff --git a/go.sum b/go.sum
index 3390e4c13..470599f77 100644
--- a/go.sum
+++ b/go.sum
@@ -235,8 +235,8 @@ go.uber.org/zap v1.27.0/go.mod h1:GB2qFLM7cTU87MWRP2mPIjqfIDnGu+VIO4V/SdhGo2E=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.27.0 h1:GXm2NjJrPaiv/h1tb2UH8QfgC/hOf/+z0p6PT8o1w7A=
-golang.org/x/crypto v0.27.0/go.mod h1:1Xngt8kV6Dvbssa53Ziq6Eqn0HqbZi5Z6R0ZpwQzt70=
+golang.org/x/crypto v0.28.0 h1:GBDwsMXVQi34v5CCYUm2jkJvu4cbtru2U4TN2PSyQnw=
+golang.org/x/crypto v0.28.0/go.mod h1:rmgy+3RHxRZMyY0jjAJShp2zgEdOqj2AO7U0pYmeQ7U=
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 h1:2dVuKD2vS7b0QIHQbpyTISPd0LeHDbnYEryqj5Q1ug8=
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbRXRL/OHtkFuWGRjvuhBJpk2IlY=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
@@ -273,14 +273,14 @@ golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.25.0 h1:r+8e+loiHxRqhXVl6ML1nO3l1+oFoWbnlu2Ehimmi34=
-golang.org/x/sys v0.25.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/term v0.24.0 h1:Mh5cbb+Zk2hqqXNO7S1iTjEphVL+jb8ZWaqh/g+JWkM=
-golang.org/x/term v0.24.0/go.mod h1:lOBK/LVxemqiMij05LGJ0tzNr8xlmwBRJ81PX6wVLH8=
+golang.org/x/sys v0.26.0 h1:KHjCJyddX0LoSTb3J+vWpupP9p0oznkqVk/IfjymZbo=
+golang.org/x/sys v0.26.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/term v0.25.0 h1:WtHI/ltw4NvSUig5KARz9h521QvRC8RmF/cuYqifU24=
+golang.org/x/term v0.25.0/go.mod h1:RPyXicDX+6vLxogjjRxjgD2TKtmAO6NZBsBRfrOLu7M=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.18.0 h1:XvMDiNzPAl0jr17s6W9lcaIhGUfUORdGCNsuLmPG224=
-golang.org/x/text v0.18.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
+golang.org/x/text v0.19.0 h1:kTxAhCbGbxhK0IwgSKiMO5awPoDQ0RpfiVYBfK860YM=
+golang.org/x/text v0.19.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
 golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
 golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=

From 90259d65c5b8cba0ef2d14b6a1df07f2b5463a8e Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sat, 5 Oct 2024 23:26:54 +0200
Subject: [PATCH 1486/1641] Images: Trigger other builds. (#12110)

---
 cloudbuild.yaml                             | 1 -
 images/cfssl/TAG                            | 2 +-
 images/custom-error-pages/TAG               | 2 +-
 images/custom-error-pages/cloudbuild.yaml   | 1 -
 images/fastcgi-helloserver/TAG              | 2 +-
 images/fastcgi-helloserver/cloudbuild.yaml  | 1 -
 images/httpbun/TAG                          | 2 +-
 images/httpbun/cloudbuild.yaml              | 1 -
 images/kube-webhook-certgen/TAG             | 2 +-
 images/kube-webhook-certgen/cloudbuild.yaml | 1 -
 images/test-runner/cloudbuild.yaml          | 1 -
 11 files changed, 5 insertions(+), 11 deletions(-)

diff --git a/cloudbuild.yaml b/cloudbuild.yaml
index 494838720..96e8990eb 100644
--- a/cloudbuild.yaml
+++ b/cloudbuild.yaml
@@ -12,4 +12,3 @@ steps:
     args:
       - -c
       - gcloud auth configure-docker && make release
-timeout: 1800s
diff --git a/images/cfssl/TAG b/images/cfssl/TAG
index 0ec25f750..b18d46540 100644
--- a/images/cfssl/TAG
+++ b/images/cfssl/TAG
@@ -1 +1 @@
-v1.0.0
+v1.0.1
diff --git a/images/custom-error-pages/TAG b/images/custom-error-pages/TAG
index b18d46540..570c79651 100644
--- a/images/custom-error-pages/TAG
+++ b/images/custom-error-pages/TAG
@@ -1 +1 @@
-v1.0.1
+v1.0.2
diff --git a/images/custom-error-pages/cloudbuild.yaml b/images/custom-error-pages/cloudbuild.yaml
index 772a7697f..a8bd4c815 100644
--- a/images/custom-error-pages/cloudbuild.yaml
+++ b/images/custom-error-pages/cloudbuild.yaml
@@ -9,4 +9,3 @@ steps:
     args:
       - -c
       - gcloud auth configure-docker && cd images && make NAME=custom-error-pages push
-timeout: 3600s
diff --git a/images/fastcgi-helloserver/TAG b/images/fastcgi-helloserver/TAG
index b18d46540..570c79651 100644
--- a/images/fastcgi-helloserver/TAG
+++ b/images/fastcgi-helloserver/TAG
@@ -1 +1 @@
-v1.0.1
+v1.0.2
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index 5fb3e3318..cfa07b4d7 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -9,4 +9,3 @@ steps:
     args:
       - -c
       - gcloud auth configure-docker && cd images && make NAME=fastcgi-helloserver push
-timeout: 3600s
diff --git a/images/httpbun/TAG b/images/httpbun/TAG
index b18d46540..570c79651 100644
--- a/images/httpbun/TAG
+++ b/images/httpbun/TAG
@@ -1 +1 @@
-v1.0.1
+v1.0.2
diff --git a/images/httpbun/cloudbuild.yaml b/images/httpbun/cloudbuild.yaml
index 3d2662531..7a3f6c8d0 100644
--- a/images/httpbun/cloudbuild.yaml
+++ b/images/httpbun/cloudbuild.yaml
@@ -9,4 +9,3 @@ steps:
     args:
       - -c
       - gcloud auth configure-docker && cd images && make NAME=httpbun push
-timeout: 3600s
diff --git a/images/kube-webhook-certgen/TAG b/images/kube-webhook-certgen/TAG
index 92f76b423..61919cdd8 100644
--- a/images/kube-webhook-certgen/TAG
+++ b/images/kube-webhook-certgen/TAG
@@ -1 +1 @@
-v1.4.3
+v1.4.4
diff --git a/images/kube-webhook-certgen/cloudbuild.yaml b/images/kube-webhook-certgen/cloudbuild.yaml
index 8bf139423..e9a5dd5cc 100644
--- a/images/kube-webhook-certgen/cloudbuild.yaml
+++ b/images/kube-webhook-certgen/cloudbuild.yaml
@@ -9,4 +9,3 @@ steps:
     args:
       - -c
       - gcloud auth configure-docker && cd images && make NAME=kube-webhook-certgen push
-timeout: 1800s
diff --git a/images/test-runner/cloudbuild.yaml b/images/test-runner/cloudbuild.yaml
index 6efe5eeaf..878821289 100644
--- a/images/test-runner/cloudbuild.yaml
+++ b/images/test-runner/cloudbuild.yaml
@@ -9,4 +9,3 @@ steps:
     args:
       - -c
       - gcloud auth configure-docker && cd images/test-runner && make push
-timeout: 1800s

From f17201cc9619de78d5a289292bf039dcb8e18fc4 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 6 Oct 2024 00:41:58 +0200
Subject: [PATCH 1487/1641] Cloud Build: Bump `gcb-docker-gcloud` to
 v20240718-5ef92b5c36. (#12113)

---
 cloudbuild.yaml                             | 2 +-
 images/cfssl/cloudbuild.yaml                | 2 +-
 images/custom-error-pages/cloudbuild.yaml   | 2 +-
 images/e2e-test-echo/cloudbuild.yaml        | 2 +-
 images/fastcgi-helloserver/cloudbuild.yaml  | 2 +-
 images/httpbun/cloudbuild.yaml              | 2 +-
 images/kube-webhook-certgen/cloudbuild.yaml | 2 +-
 images/nginx/cloudbuild.yaml                | 2 +-
 images/test-runner/cloudbuild.yaml          | 2 +-
 9 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/cloudbuild.yaml b/cloudbuild.yaml
index 96e8990eb..0948b1f05 100644
--- a/cloudbuild.yaml
+++ b/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       - REPO_INFO=https://github.com/kubernetes/ingress-nginx
diff --git a/images/cfssl/cloudbuild.yaml b/images/cfssl/cloudbuild.yaml
index 6b5b0fc1b..a17f86196 100644
--- a/images/cfssl/cloudbuild.yaml
+++ b/images/cfssl/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/custom-error-pages/cloudbuild.yaml b/images/custom-error-pages/cloudbuild.yaml
index a8bd4c815..99a8d78b6 100644
--- a/images/custom-error-pages/cloudbuild.yaml
+++ b/images/custom-error-pages/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/e2e-test-echo/cloudbuild.yaml b/images/e2e-test-echo/cloudbuild.yaml
index dc6e1dcf0..1d525e413 100644
--- a/images/e2e-test-echo/cloudbuild.yaml
+++ b/images/e2e-test-echo/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index cfa07b4d7..7eb047612 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/httpbun/cloudbuild.yaml b/images/httpbun/cloudbuild.yaml
index 7a3f6c8d0..4df9d090c 100644
--- a/images/httpbun/cloudbuild.yaml
+++ b/images/httpbun/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/kube-webhook-certgen/cloudbuild.yaml b/images/kube-webhook-certgen/cloudbuild.yaml
index e9a5dd5cc..74f4a04a1 100644
--- a/images/kube-webhook-certgen/cloudbuild.yaml
+++ b/images/kube-webhook-certgen/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index a5ec1abd8..c53259ad1 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/test-runner/cloudbuild.yaml b/images/test-runner/cloudbuild.yaml
index 878821289..b9df15a5e 100644
--- a/images/test-runner/cloudbuild.yaml
+++ b/images/test-runner/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240523-a15ad90fc9
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash

From d0827a6c909b3e920739932a7777225a42aefa4a Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 6 Oct 2024 02:12:04 +0200
Subject: [PATCH 1488/1641] Tests & Docs: Bump images. (#12118)

---
 .../custom-errors/custom-default-backend.helm.values.yaml       | 2 +-
 .../customization/custom-errors/custom-default-backend.yaml     | 2 +-
 test/e2e/HTTPBUN_IMAGE                                          | 2 +-
 test/e2e/framework/fastcgi_helloserver.go                       | 2 +-
 test/e2e/settings/ocsp/ocsp.go                                  | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
index e6c3e2169..fb07ac9fe 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
@@ -6,7 +6,7 @@ defaultBackend:
   image:
     registry: registry.k8s.io
     image: ingress-nginx/custom-error-pages
-    tag: v1.0.1@sha256:d8ab7de384cf41bdaa696354e19f1d0efbb0c9ac69f8682ffc0cc008a252eb76
+    tag: v1.0.2@sha256:b2259cf6bfda813548a64bded551b1854cb600c4f095738b49b4c5cdf8ab9d21
   extraVolumes:
   - name: custom-error-pages
     configMap:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.yaml b/docs/examples/customization/custom-errors/custom-default-backend.yaml
index a47805ad7..805cf90ab 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.yaml
@@ -36,7 +36,7 @@ spec:
     spec:
       containers:
       - name: nginx-error-server
-        image: registry.k8s.io/ingress-nginx/custom-error-pages:v1.0.1@sha256:d8ab7de384cf41bdaa696354e19f1d0efbb0c9ac69f8682ffc0cc008a252eb76
+        image: registry.k8s.io/ingress-nginx/custom-error-pages:v1.0.2@sha256:b2259cf6bfda813548a64bded551b1854cb600c4f095738b49b4c5cdf8ab9d21
         ports:
         - containerPort: 8080
         # Setting the environment variable DEBUG we can see the headers sent 
diff --git a/test/e2e/HTTPBUN_IMAGE b/test/e2e/HTTPBUN_IMAGE
index 7deb1e1cb..7ea3fdc70 100644
--- a/test/e2e/HTTPBUN_IMAGE
+++ b/test/e2e/HTTPBUN_IMAGE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/httpbun:v1.0.1@sha256:264371edd5b19ddc2da9333bb4d87c0ce3c0cf37c73c4adeb8bc641b872bc9da
+registry.k8s.io/ingress-nginx/httpbun:v1.0.2@sha256:d4079f3027dba27e2a1d7fcfb3144d6dd9e15307fb7fa80ca649232d08e90d16
diff --git a/test/e2e/framework/fastcgi_helloserver.go b/test/e2e/framework/fastcgi_helloserver.go
index 60482c067..804bb7898 100644
--- a/test/e2e/framework/fastcgi_helloserver.go
+++ b/test/e2e/framework/fastcgi_helloserver.go
@@ -59,7 +59,7 @@ func (f *Framework) NewNewFastCGIHelloServerDeploymentWithReplicas(replicas int3
 					Containers: []corev1.Container{
 						{
 							Name:  "fastcgi-helloserver",
-							Image: "registry.k8s.io/ingress-nginx/fastcgi-helloserver:v1.0.1@sha256:bfcce5866d106450f41af15af868886c953c3661373f34aa6d99bcc6f44c6ba6",
+							Image: "registry.k8s.io/ingress-nginx/fastcgi-helloserver:v1.0.2@sha256:dc400fc69d7e0b27dcfe86be29946e19c2a853391305e2790f387267c2e6473e",
 							Env:   []corev1.EnvVar{},
 							Ports: []corev1.ContainerPort{
 								{
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index 5dcaccc2f..a53b90b80 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -297,7 +297,7 @@ func ocspserveDeployment(namespace string) (*appsv1.Deployment, *corev1.Service)
 						Containers: []corev1.Container{
 							{
 								Name:  name,
-								Image: "registry.k8s.io/ingress-nginx/cfssl:v1.0.0@sha256:fffd36e2f1c8fd485ec6fd24c6d55f0817b54352274293d2a247b8a0d924c5b0",
+								Image: "registry.k8s.io/ingress-nginx/cfssl:v1.0.1@sha256:12425bab3f5e41ed20b850fd1e3737a48474f9ad48363efb116243a853db754a",
 								Command: []string{
 									"/bin/bash",
 									"-c",

From 657393e7b3b94e41f1b66081d9a5323e7eb097dc Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 6 Oct 2024 09:50:03 +0200
Subject: [PATCH 1489/1641] Chart: Bump Kube Webhook CertGen. (#12119)

---
 charts/ingress-nginx/README.md   | 4 ++--
 charts/ingress-nginx/values.yaml | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 4a0f50484..5475aaa79 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -252,10 +252,10 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.admissionWebhooks.namespaceSelector | object | `{}` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
-| controller.admissionWebhooks.patch.image.digest | string | `"sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3"` |  |
+| controller.admissionWebhooks.patch.image.digest | string | `"sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
-| controller.admissionWebhooks.patch.image.tag | string | `"v1.4.3"` |  |
+| controller.admissionWebhooks.patch.image.tag | string | `"v1.4.4"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 136fae4b2..2c76c8e85 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -795,8 +795,8 @@ controller:
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
         ## repository:
-        tag: v1.4.3
-        digest: sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        tag: v1.4.4
+        digest: sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         pullPolicy: IfNotPresent
       # -- Provide a priority class name to the webhook patching job
       ##

From deb01b9f2c5812c6477f9750610ee60660388758 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 6 Oct 2024 16:51:06 +0200
Subject: [PATCH 1490/1641] Images: Build `s390x` controller. (#12125)

---
 Makefile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Makefile b/Makefile
index 1c35c12b2..033577e14 100644
--- a/Makefile
+++ b/Makefile
@@ -240,8 +240,8 @@ ensure-buildx:
 show-version:
 	echo -n $(TAG)
 
-PLATFORMS ?= amd64 arm arm64
-BUILDX_PLATFORMS ?= linux/amd64,linux/arm,linux/arm64
+PLATFORMS ?= amd64 arm arm64 s390x
+BUILDX_PLATFORMS ?= linux/amd64,linux/arm,linux/arm64,linux/s390x
 
 .PHONY: release # Build a multi-arch docker image
 release: ensure-buildx clean

From fdfc97a7fb090afa3715811169bde75fa662a9e8 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 7 Oct 2024 14:30:21 +0200
Subject: [PATCH 1491/1641] Images: Drop `s390x`. (#12131)

---
 .github/workflows/images.yaml | 2 +-
 Makefile                      | 4 ++--
 hack/init-buildx.sh           | 5 ++---
 images/Makefile               | 2 +-
 images/nginx/Makefile         | 2 +-
 5 files changed, 7 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 77358e8b3..7804158ba 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -169,7 +169,7 @@ jobs:
     if: |
       (github.event_name == 'push' && github.ref == 'refs/heads/main' && needs.changes.outputs.nginx == 'true')
     env:
-      PLATFORMS: linux/amd64,linux/arm,linux/arm64,linux/s390x
+      PLATFORMS: linux/amd64,linux/arm,linux/arm64
     steps:
       - name: Checkout
         uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
diff --git a/Makefile b/Makefile
index 033577e14..1c35c12b2 100644
--- a/Makefile
+++ b/Makefile
@@ -240,8 +240,8 @@ ensure-buildx:
 show-version:
 	echo -n $(TAG)
 
-PLATFORMS ?= amd64 arm arm64 s390x
-BUILDX_PLATFORMS ?= linux/amd64,linux/arm,linux/arm64,linux/s390x
+PLATFORMS ?= amd64 arm arm64
+BUILDX_PLATFORMS ?= linux/amd64,linux/arm,linux/arm64
 
 .PHONY: release # Build a multi-arch docker image
 release: ensure-buildx clean
diff --git a/hack/init-buildx.sh b/hack/init-buildx.sh
index 1a47bf145..bac68e1ae 100755
--- a/hack/init-buildx.sh
+++ b/hack/init-buildx.sh
@@ -42,12 +42,11 @@ fi
 # We can skip setup if the current builder already has multi-arch
 # AND if it isn't the docker driver, which doesn't work
 current_builder="$(docker buildx inspect)"
-# linux/amd64, linux/arm64, linux/riscv64, linux/ppc64le, linux/s390x, linux/386, linux/arm/v7, linux/arm/v6
+# linux/amd64, linux/arm, linux/arm64
 if ! grep -q "^Driver: docker$"  <<<"${current_builder}" && \
      grep -q "linux/amd64" <<<"${current_builder}" && \
      grep -q "linux/arm"   <<<"${current_builder}" && \
-     grep -q "linux/arm64" <<<"${current_builder}" && \
-     grep -q "linux/s390x" <<<"${current_builder}"; then
+     grep -q "linux/arm64" <<<"${current_builder}"; then
   exit 0
 fi
 
diff --git a/images/Makefile b/images/Makefile
index 990d77231..31560168d 100644
--- a/images/Makefile
+++ b/images/Makefile
@@ -41,7 +41,7 @@ EXTRAARGS ?= $(shell cat $(NAME)/EXTRAARGS)
 export DOCKER_CLI_EXPERIMENTAL=enabled
 
 # build with buildx
-PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
+PLATFORMS?=linux/amd64,linux/arm,linux/arm64
 OUTPUT=
 PROGRESS=plain
 
diff --git a/images/nginx/Makefile b/images/nginx/Makefile
index 103ba217f..3ed502759 100644
--- a/images/nginx/Makefile
+++ b/images/nginx/Makefile
@@ -32,7 +32,7 @@ IMAGE = $(REGISTRY)/nginx
 export DOCKER_CLI_EXPERIMENTAL=enabled
 
 # build with buildx
-PLATFORMS?=linux/amd64,linux/arm,linux/arm64,linux/s390x
+PLATFORMS?=linux/amd64,linux/arm,linux/arm64
 OUTPUT=
 PROGRESS=plain
 build: ensure-buildx

From 293b4fef24d67d6539134c15d21d5c8221b118fc Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 7 Oct 2024 14:46:22 +0200
Subject: [PATCH 1492/1641] Images: Trigger `e2e-test-echo` build. (#12132)

---
 images/e2e-test-echo/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/e2e-test-echo/TAG b/images/e2e-test-echo/TAG
index 0ec25f750..b18d46540 100644
--- a/images/e2e-test-echo/TAG
+++ b/images/e2e-test-echo/TAG
@@ -1 +1 @@
-v1.0.0
+v1.0.1

From c9aa724f6d9158b5e07c3ffdbe9f67fcd7f35b90 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 7 Oct 2024 21:26:18 +0200
Subject: [PATCH 1493/1641] Tests & Docs: Bump `e2e-test-echo` to v1.0.1.
 (#12143)

---
 docs/examples/canary/README.md                                | 4 ++--
 .../customization/external-auth-headers/echo-service.yaml     | 2 +-
 test/e2e/framework/deployment.go                              | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/docs/examples/canary/README.md b/docs/examples/canary/README.md
index 4124faf6f..865325b73 100644
--- a/docs/examples/canary/README.md
+++ b/docs/examples/canary/README.md
@@ -31,7 +31,7 @@ spec:
     spec:
       containers:
       - name: production
-        image: registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:6fc5aa2994c86575975bb20a5203651207029a0d28e3f491d8a127d08baadab4
+        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.0.1@sha256:1cec65aa768720290d05d65ab1c297ca46b39930e56bc9488259f9114fcd30e2
         ports:
         - containerPort: 80
         env:
@@ -97,7 +97,7 @@ spec:
     spec:
       containers:
       - name: canary
-        image: registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:6fc5aa2994c86575975bb20a5203651207029a0d28e3f491d8a127d08baadab4
+        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.0.1@sha256:1cec65aa768720290d05d65ab1c297ca46b39930e56bc9488259f9114fcd30e2
         ports:
         - containerPort: 80
         env:
diff --git a/docs/examples/customization/external-auth-headers/echo-service.yaml b/docs/examples/customization/external-auth-headers/echo-service.yaml
index fc4461cd8..9f597a7f5 100644
--- a/docs/examples/customization/external-auth-headers/echo-service.yaml
+++ b/docs/examples/customization/external-auth-headers/echo-service.yaml
@@ -18,7 +18,7 @@ spec:
       terminationGracePeriodSeconds: 60
       containers:
       - name: echo-service
-        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v20230527@sha256:6fc5aa2994c86575975bb20a5203651207029a0d28e3f491d8a127d08baadab4
+        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.0.1@sha256:1cec65aa768720290d05d65ab1c297ca46b39930e56bc9488259f9114fcd30e2
         ports:
         - containerPort: 8080
         resources:
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 9eaf42565..d6e59f18a 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -47,7 +47,7 @@ const NIPService = "external-nip"
 var HTTPBunImage = os.Getenv("HTTPBUN_IMAGE")
 
 // EchoImage is the default image to be used by the echo service
-const EchoImage = "registry.k8s.io/ingress-nginx/e2e-test-echo@sha256:4938d1d91a2b7d19454460a8c1b010b89f6ff92d2987fd889ac3e8fc3b70d91a" //#nosec G101
+const EchoImage = "registry.k8s.io/ingress-nginx/e2e-test-echo:v1.0.1@sha256:1cec65aa768720290d05d65ab1c297ca46b39930e56bc9488259f9114fcd30e2" //#nosec G101
 
 // TODO: change all Deployment functions to use these options
 // in order to reduce complexity and have a unified API across the

From 75c77e5dc3cdbf93725cd586afe7288b2b52eefd Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 7 Oct 2024 21:34:22 +0200
Subject: [PATCH 1494/1641] Metrics: Disable by default. (#12095)

---
 charts/ingress-nginx/templates/_params.tpl    |  2 +-
 .../tests/controller-daemonset_test.yaml      | 22 +++++++++----------
 .../tests/controller-deployment_test.yaml     | 20 ++++++++---------
 docs/user-guide/cli-arguments.md              |  2 +-
 pkg/flags/flags.go                            |  2 +-
 5 files changed, 24 insertions(+), 24 deletions(-)

diff --git a/charts/ingress-nginx/templates/_params.tpl b/charts/ingress-nginx/templates/_params.tpl
index 763e55570..0051dc9c0 100644
--- a/charts/ingress-nginx/templates/_params.tpl
+++ b/charts/ingress-nginx/templates/_params.tpl
@@ -54,7 +54,7 @@
 {{- if .Values.controller.watchIngressWithoutClass }}
 - --watch-ingress-without-class=true
 {{- end }}
-{{- if not .Values.controller.metrics.enabled }}
+{{- if .Values.controller.metrics.enabled }}
 - --enable-metrics={{ .Values.controller.metrics.enabled }}
 {{- end }}
 {{- if .Values.controller.enableTopologyAwareRouting }}
diff --git a/charts/ingress-nginx/tests/controller-daemonset_test.yaml b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
index c28c6ee0d..d2d77befb 100644
--- a/charts/ingress-nginx/tests/controller-daemonset_test.yaml
+++ b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
@@ -15,23 +15,23 @@ tests:
           path: metadata.name
           value: RELEASE-NAME-ingress-nginx-controller
 
-  - it: should create a DaemonSet with argument `--enable-metrics=false` if `controller.metrics.enabled` is false
-    set:
-      controller.kind: DaemonSet
-      controller.metrics.enabled: false
-    asserts:
-      - contains:
-          path: spec.template.spec.containers[0].args
-          content: --enable-metrics=false
-
-  - it: should create a DaemonSet without argument `--enable-metrics=false` if `controller.metrics.enabled` is true
+  - it: should create a DaemonSet with argument `--enable-metrics=true` if `controller.metrics.enabled` is true
     set:
       controller.kind: DaemonSet
       controller.metrics.enabled: true
+    asserts:
+      - contains:
+          path: spec.template.spec.containers[0].args
+          content: --enable-metrics=true
+
+  - it: should create a DaemonSet without argument `--enable-metrics=true` if `controller.metrics.enabled` is false
+    set:
+      controller.kind: DaemonSet
+      controller.metrics.enabled: false
     asserts:
       - notContains:
           path: spec.template.spec.containers[0].args
-          content: --enable-metrics=false
+          content: --enable-metrics=true
 
   - it: should create a DaemonSet with argument `--controller-class=k8s.io/ingress-nginx-internal` if `controller.ingressClassResource.controllerValue` is "k8s.io/ingress-nginx-internal"
     set:
diff --git a/charts/ingress-nginx/tests/controller-deployment_test.yaml b/charts/ingress-nginx/tests/controller-deployment_test.yaml
index 2c57636fb..1cc9c9325 100644
--- a/charts/ingress-nginx/tests/controller-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/controller-deployment_test.yaml
@@ -43,21 +43,21 @@ tests:
       - exists:
           path: spec.replicas
 
-  - it: should create a Deployment with argument `--enable-metrics=false` if `controller.metrics.enabled` is false
-    set:
-      controller.metrics.enabled: false
-    asserts:
-      - contains:
-          path: spec.template.spec.containers[0].args
-          content: --enable-metrics=false
-
-  - it: should create a Deployment without argument `--enable-metrics=false` if `controller.metrics.enabled` is true
+  - it: should create a Deployment with argument `--enable-metrics=true` if `controller.metrics.enabled` is true
     set:
       controller.metrics.enabled: true
+    asserts:
+      - contains:
+          path: spec.template.spec.containers[0].args
+          content: --enable-metrics=true
+
+  - it: should create a Deployment without argument `--enable-metrics=true` if `controller.metrics.enabled` is false
+    set:
+      controller.metrics.enabled: false
     asserts:
       - notContains:
           path: spec.template.spec.containers[0].args
-          content: --enable-metrics=false
+          content: --enable-metrics=true
 
   - it: should create a Deployment with argument `--controller-class=k8s.io/ingress-nginx-internal` if `controller.ingressClassResource.controllerValue` is "k8s.io/ingress-nginx-internal"
     set:
diff --git a/docs/user-guide/cli-arguments.md b/docs/user-guide/cli-arguments.md
index 1beb821c7..a33e75159 100644
--- a/docs/user-guide/cli-arguments.md
+++ b/docs/user-guide/cli-arguments.md
@@ -24,7 +24,7 @@ They are set in the container spec of the `ingress-nginx-controller` Deployment
 | `--dynamic-configuration-retries` | Number of times to retry failed dynamic configuration before failing to sync an ingress. (default 15) |
 | `--election-id`                    | Election id to use for Ingress status updates. (default "ingress-controller-leader") |
 | `--election-ttl`                  | Duration a leader election is valid before it's getting re-elected, e.g. `15s`, `10m` or `1h`. (Default: 30s) |
-| `--enable-metrics`                 | Enables the collection of NGINX metrics. (default true) |
+| `--enable-metrics`                 | Enables the collection of NGINX metrics. (Default: false) |
 | `--enable-ssl-chain-completion`    | Autocomplete SSL certificate chains with missing intermediate CA certificates. Certificates uploaded to Kubernetes must have the "Authority Information Access" X.509 v3 extension for this to succeed. (default false)|
 | `--enable-ssl-passthrough`         | Enable SSL Passthrough. (default false) |
 | `--disable-leader-election`        | Disable Leader Election on Nginx Controller. (default false) |
diff --git a/pkg/flags/flags.go b/pkg/flags/flags.go
index a64a37193..ce24160fd 100644
--- a/pkg/flags/flags.go
+++ b/pkg/flags/flags.go
@@ -174,7 +174,7 @@ extension for this to succeed.`)
 			`Customized address (or addresses, separated by comma) to set as the load-balancer status of Ingress objects this controller satisfies.
 Requires the update-status parameter.`)
 
-		enableMetrics = flags.Bool("enable-metrics", true,
+		enableMetrics = flags.Bool("enable-metrics", false,
 			`Enables the collection of NGINX metrics.`)
 		metricsPerHost = flags.Bool("metrics-per-host", true,
 			`Export metrics per-host.`)

From 05eda3db8b23497d1da74013d3180780d50b0767 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 7 Oct 2024 21:00:22 +0100
Subject: [PATCH 1495/1641] Bump the actions group with 3 updates (#12144)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/chart.yaml               |  2 +-
 .github/workflows/ci.yaml                  | 16 ++++++++--------
 .github/workflows/depreview.yaml           |  2 +-
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/golangci-lint.yml        |  2 +-
 .github/workflows/images.yaml              |  6 +++---
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  2 +-
 .github/workflows/scorecards.yml           |  6 +++---
 .github/workflows/vulnerability-scans.yaml |  6 +++---
 .github/workflows/zz-tmpl-images.yaml      |  6 +++---
 .github/workflows/zz-tmpl-k8s-e2e.yaml     |  4 ++--
 12 files changed, 29 insertions(+), 29 deletions(-)

diff --git a/.github/workflows/chart.yaml b/.github/workflows/chart.yaml
index a546801a0..63fc18b0c 100644
--- a/.github/workflows/chart.yaml
+++ b/.github/workflows/chart.yaml
@@ -45,7 +45,7 @@ jobs:
           git config --global user.email "${GITHUB_ACTOR}@users.noreply.github.com"
 
       - name: Checkout code
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 648cbd194..bb6247e81 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -47,7 +47,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -81,7 +81,7 @@ jobs:
       (needs.changes.outputs.lua == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     steps:
       - name: Checkout
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
       
       - name: Lint Lua
         uses: lunarmodules/luacheck@v1
@@ -95,7 +95,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     steps:
       - name: Checkout
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
@@ -119,7 +119,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.docs == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     steps:
       - name: Checkout
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
       - name: Set up Go
@@ -144,7 +144,7 @@ jobs:
         PLATFORMS: linux/amd64
     steps:
       - name: Checkout
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
       - name: Get go version
         id: golangversion
@@ -202,7 +202,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0
+        uses: actions/upload-artifact@604373da6381bf24206979c74d06a550515601b9 # v4.4.1
         with:
           name: docker.tar.gz
           path: docker.tar.gz
@@ -241,7 +241,7 @@ jobs:
         run: helm plugin install https://github.com/helm-unittest/helm-unittest
 
       - name: Checkout code
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
         with:
           fetch-depth: 0
 
@@ -274,7 +274,7 @@ jobs:
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
       - name: Download cache
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 857411f79..32b98c2b2 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@5a2ce3f5b92ee19cbb1541a4984c76d921601d7c # v4.3.4
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 479c139aa..0d0b20a5a 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 4ef7e9085..c71f090af 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -15,7 +15,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 7804158ba..e070741bb 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -39,7 +39,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -138,7 +138,7 @@ jobs:
         k8s: [v1.28.13, v1.29.8, v1.30.4, v1.31.0]
     steps:
     - name: Checkout
-      uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+      uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
     - name: Get go version
       run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
@@ -172,7 +172,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
       - name: Set up QEMU
         uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf # v3.2.0
       - name: Set up Docker Buildx
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index eb086538e..044c3a260 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 0ae13a2df..627a0a0b9 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 9eaf091ee..f927443df 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
         with:
           persist-credentials: false
 
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0
+        uses: actions/upload-artifact@604373da6381bf24206979c74d06a550515601b9 # v4.4.1
         with:
           name: SARIF file
           path: results.sarif
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11
+        uses: github/codeql-action/upload-sarif@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 0cd02552d..1532ad2de 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
       - shell: bash
         id: test
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11
+        uses: github/codeql-action/upload-sarif@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository
diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index 2efc039d6..efadb8f89 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -31,7 +31,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -48,7 +48,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
       - name: Build
         run: |
@@ -67,7 +67,7 @@ jobs:
       PLATFORMS: ${{ inputs.platforms-publish }}
     steps:
     - name: Checkout
-      uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+      uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
     - name: Login to GitHub Container Registry
       uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index f1b6bb242..42b750838 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -20,7 +20,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
+        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
 
       - name: cache
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
@@ -49,7 +49,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports ${{ inputs.variation }}
-        uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874 # v4.4.0
+        uses: actions/upload-artifact@604373da6381bf24206979c74d06a550515601b9 # v4.4.1
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}

From 8b9abd207bc3ffe9cfde90cba63cadb860bdd20f Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 15 Oct 2024 11:48:22 +0200
Subject: [PATCH 1496/1641] Release controller v1.12.0-beta.0/v1.11.3/v1.10.5 &
 chart v4.12.0-beta.0/v4.11.3/v4.10.5. (#12166)

---
 README.md                                     |  13 +-
 changelog/controller-1.10.5.md                |  90 ++++++++
 changelog/controller-1.11.3.md                |  91 ++++++++
 changelog/controller-1.12.0-beta.0.md         | 216 ++++++++++++++++++
 charts/ingress-nginx/Chart.yaml               |   8 +-
 charts/ingress-nginx/README.md                |   8 +-
 .../changelog/helm-chart-4.10.5.md            |   9 +
 .../changelog/helm-chart-4.11.3.md            |   9 +
 .../changelog/helm-chart-4.12.0-beta.0.md     |   9 +
 charts/ingress-nginx/values.yaml              |  10 +-
 deploy/static/provider/aws/deploy.yaml        |  56 ++---
 .../aws/nlb-with-tls-termination/deploy.yaml  |  54 ++---
 deploy/static/provider/baremetal/deploy.yaml  |  56 ++---
 deploy/static/provider/cloud/deploy.yaml      |  56 ++---
 deploy/static/provider/do/deploy.yaml         |  54 ++---
 deploy/static/provider/exoscale/deploy.yaml   |  56 ++---
 deploy/static/provider/kind/deploy.yaml       |  56 ++---
 deploy/static/provider/oracle/deploy.yaml     |  56 ++---
 deploy/static/provider/scw/deploy.yaml        |  54 ++---
 docs/deploy/index.md                          |  20 +-
 docs/e2e-tests.md                             | 129 ++++++-----
 21 files changed, 777 insertions(+), 333 deletions(-)
 create mode 100644 changelog/controller-1.10.5.md
 create mode 100644 changelog/controller-1.11.3.md
 create mode 100644 changelog/controller-1.12.0-beta.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.10.5.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.11.3.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.12.0-beta.0.md

diff --git a/README.md b/README.md
index 2ffacd861..10a928cd2 100644
--- a/README.md
+++ b/README.md
@@ -39,14 +39,17 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 
 | Supported | Ingress-NGINX version | k8s supported version         | Alpine Version | Nginx Version | Helm Chart Version |
 | :-------: | --------------------- | ----------------------------- | -------------- | ------------- | ------------------ |
+|    🔄     | **v1.12.0-beta.0**    | 1.31, 1.30, 1.29, 1.28        | 3.20.3         | 1.25.5        | 4.12.0-beta.0      |
+|    🔄     | **v1.11.3**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.3         | 1.25.5        | 4.11.3             |
 |    🔄     | **v1.11.2**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.11.2             |
 |    🔄     | **v1.11.1**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.11.1             |
 |    🔄     | **v1.11.0**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.11.0             |
-|    🔄     | **v1.10.4**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.10.4             |
-|    🔄     | **v1.10.3**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.10.3             |
-|    🔄     | **v1.10.2**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.10.2             |
-|    🔄     | **v1.10.1**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.19.1         | 1.25.3        | 4.10.1             |
-|    🔄     | **v1.10.0**           | 1.29, 1.28, 1.27, 1.26        | 3.19.1         | 1.25.3        | 4.10.0             |
+|           | **v1.10.5**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.3         | 1.25.5        | 4.10.5             |
+|           | **v1.10.4**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.10.4             |
+|           | **v1.10.3**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.10.3             |
+|           | **v1.10.2**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.10.2             |
+|           | **v1.10.1**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.19.1         | 1.25.3        | 4.10.1             |
+|           | **v1.10.0**           | 1.29, 1.28, 1.27, 1.26        | 3.19.1         | 1.25.3        | 4.10.0             |
 |           | v1.9.6                | 1.29, 1.28, 1.27, 1.26, 1.25  | 3.19.0         | 1.21.6        | 4.9.1              |
 |           | v1.9.5                | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.9.0              |
 |           | v1.9.4                | 1.28, 1.27, 1.26, 1.25        | 3.18.4         | 1.21.6        | 4.8.3              |
diff --git a/changelog/controller-1.10.5.md b/changelog/controller-1.10.5.md
new file mode 100644
index 000000000..82be0a608
--- /dev/null
+++ b/changelog/controller-1.10.5.md
@@ -0,0 +1,90 @@
+# Changelog
+
+### controller-v1.10.5
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.10.5@sha256:c84d11b1f7bd14ebbf49918a7f0dc01b31c0c6e757e0129520ea93453096315c
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.10.5@sha256:030a43bdd5f0212a7e135cc4da76b15a6706ef65a6824eb4cc401f87a81c2987
+
+### All changes:
+
+* Images: Trigger controller build. (#12133)
+* Tests & Docs: Bump `e2e-test-echo` to v1.0.1. (#12146)
+* Images: Trigger `e2e-test-echo` build. (#12142)
+* Images: Drop `s390x`. (#12139)
+* Images: Build `s390x` controller. (#12128)
+* Chart: Bump Kube Webhook CertGen. (#12122)
+* Tests & Docs: Bump images. (#12120)
+* Cloud Build: Bump `gcb-docker-gcloud` to v20240718-5ef92b5c36. (#12116)
+* Images: Trigger other builds. (#12111)
+* Tests: Bump `e2e-test-runner` to v20241004-114a6abb. (#12104)
+* Images: Trigger `test-runner` build. (#12101)
+* Docs: Add a multi-tenant warning. (#12098)
+* Go: Bump to v1.22.8. (#12093)
+* Images: Bump `NGINX_BASE` to v0.1.0. (#12079)
+* Images: Trigger NGINX build. (#12077)
+* Images: Remove NGINX v1.21. (#12057)
+* GitHub: Improve Dependabot. (#12037)
+* Chart: Improve CI. (#12029)
+* Chart: Extend image tests. (#12026)
+* Docs: Add health check annotations for AWS. (#12021)
+* Docs: Convert `opentelemetry.md` from CRLF to LF. (#12007)
+* Chart: Test `controller.minAvailable` & `controller.maxUnavailable`. (#12001)
+* Chart: Align default backend `PodDisruptionBudget`. (#11998)
+* Metrics: Fix namespace in `nginx_ingress_controller_ssl_expire_time_seconds`. (#11985)
+* Chart: Improve default backend service account. (#11973)
+* Go: Bump to v1.22.7. (#11969)
+* Images: Bump OpenTelemetry C++ Contrib. (#11950)
+* Docs: Add note about `--watch-namespace`. (#11948)
+* Images: Use latest Alpine 3.20 everywhere. (#11945)
+* Fix minor typos (#11940)
+* Chart: Implement `controller.admissionWebhooks.service.servicePort`. (#11933)
+* Tests: Bump `e2e-test-runner` to v20240829-2c421762. (#11920)
+* Images: Trigger `test-runner` build. (#11918)
+* Chart: Add tests for `PrometheusRule` & `ServiceMonitor`. (#11888)
+* Annotations: Allow commas in URLs. (#11886)
+* CI: Grant checks write permissions to E2E Test Report. (#11884)
+* Update maxmind post link about geolite2 license changes (#11880)
+* Go: Sync `go.work.sum`. (#11876)
+* Replace deprecated queue method (#11858)
+* Auto-generate annotation docs (#11835)
+
+### Dependency updates:
+
+* Bump the actions group with 3 updates (#12150)
+* Bump golang.org/x/crypto from 0.27.0 to 0.28.0 (#12108)
+* Bump the actions group with 3 updates (#12096)
+* Bump sigs.k8s.io/mdtoc from 1.1.0 to 1.4.0 (#12088)
+* Bump github.com/prometheus/common from 0.59.1 to 0.60.0 (#12086)
+* Bump google.golang.org/grpc from 1.67.0 to 1.67.1 in the go group across 1 directory (#12084)
+* Bump k8s.io/cli-runtime from 0.30.0 to 0.31.1 (#12082)
+* Bump github/codeql-action from 3.26.9 to 3.26.10 in the actions group (#12054)
+* Bump the go group across 1 directory with 3 updates (#12052)
+* Bump k8s.io/kube-aggregator from 0.29.3 to 0.31.1 in /images/kube-webhook-certgen/rootfs (#12048)
+* Bump k8s.io/apimachinery from 0.23.1 to 0.31.1 in /images/ext-auth-example-authsvc/rootfs (#12044)
+* Bump github.com/prometheus/client_golang from 1.11.1 to 1.20.4 in /images/custom-error-pages/rootfs (#12045)
+* Bump the all group with 2 updates (#12035)
+* Bump github/codeql-action from 3.26.7 to 3.26.8 in the all group (#12015)
+* Bump google.golang.org/grpc from 1.66.2 to 1.67.0 (#12013)
+* Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 in the all group (#12011)
+* Bump the all group with 2 updates (#11979)
+* Bump github/codeql-action from 3.26.6 to 3.26.7 in the all group (#11978)
+* Bump github.com/prometheus/common from 0.57.0 to 0.59.1 (#11960)
+* Bump golang.org/x/crypto from 0.26.0 to 0.27.0 (#11959)
+* Bump github.com/prometheus/client_golang from 1.20.2 to 1.20.3 in the all group (#11956)
+* Bump github.com/opencontainers/runc from 1.1.13 to 1.1.14 (#11929)
+* Bump the all group with 2 updates (#11924)
+* Bump github.com/onsi/ginkgo/v2 from 2.20.1 to 2.20.2 in the all group (#11912)
+* Bump google.golang.org/grpc from 1.65.0 to 1.66.0 (#11907)
+* Bump github.com/prometheus/common from 0.55.0 to 0.57.0 (#11906)
+* Bump github/codeql-action from 3.26.5 to 3.26.6 in the all group (#11905)
+* Bump the all group with 2 updates (#11870)
+* Bump github/codeql-action from 3.26.2 to 3.26.5 in the all group (#11869)
+* Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.1 (#11848)
+* Bump sigs.k8s.io/controller-runtime from 0.18.4 to 0.19.0 (#11847)
+* Bump dario.cat/mergo from 1.0.0 to 1.0.1 in the all group (#11846)
+* Bump k8s.io/component-base from 0.30.3 to 0.31.0 (#11841)
+* Bump github/codeql-action from 3.26.0 to 3.26.2 in the all group (#11833)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.10.4...controller-v1.10.5
diff --git a/changelog/controller-1.11.3.md b/changelog/controller-1.11.3.md
new file mode 100644
index 000000000..f5c373015
--- /dev/null
+++ b/changelog/controller-1.11.3.md
@@ -0,0 +1,91 @@
+# Changelog
+
+### controller-v1.11.3
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.11.3@sha256:d56f135b6462cfc476447cfe564b83a45e8bb7da2774963b00d12161112270b7
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.11.3@sha256:22701f0fc0f2dd209ef782f4e281bfe2d8cccd50ededa00aec88e0cdbe7edd14
+
+### All changes:
+
+* Images: Trigger controller build. (#12134)
+* Tests & Docs: Bump `e2e-test-echo` to v1.0.1. (#12145)
+* Images: Trigger `e2e-test-echo` build. (#12141)
+* Images: Drop `s390x`. (#12138)
+* Images: Build `s390x` controller. (#12127)
+* Chart: Bump Kube Webhook CertGen. (#12123)
+* Tests & Docs: Bump images. (#12121)
+* Cloud Build: Bump `gcb-docker-gcloud` to v20240718-5ef92b5c36. (#12117)
+* Images: Trigger other builds. (#12112)
+* Tests: Bump `e2e-test-runner` to v20241004-114a6abb. (#12105)
+* Images: Trigger `test-runner` build. (#12102)
+* Docs: Add a multi-tenant warning. (#12099)
+* Go: Bump to v1.22.8. (#12094)
+* Images: Bump `NGINX_BASE` to v0.1.0. (#12080)
+* Images: Trigger NGINX build. (#12076)
+* Images: Remove NGINX v1.21. (#12058)
+* GitHub: Improve Dependabot. (#12038)
+* Chart: Improve CI. (#12030)
+* Chart: Extend image tests. (#12027)
+* Docs: Add health check annotations for AWS. (#12020)
+* Docs: Convert `opentelemetry.md` from CRLF to LF. (#12006)
+* Chart: Test `controller.minAvailable` & `controller.maxUnavailable`. (#12002)
+* Chart: Align default backend `PodDisruptionBudget`. (#11999)
+* Metrics: Fix namespace in `nginx_ingress_controller_ssl_expire_time_seconds`. (#11986)
+* Chart: Improve default backend service account. (#11974)
+* Go: Bump to v1.22.7. (#11970)
+* Images: Bump OpenTelemetry C++ Contrib. (#11951)
+* Docs: Add note about `--watch-namespace`. (#11949)
+* Images: Use latest Alpine 3.20 everywhere. (#11946)
+* Fix minor typos (#11941)
+* Chart: Implement `controller.admissionWebhooks.service.servicePort`. (#11934)
+* Tests: Bump `e2e-test-runner` to v20240829-2c421762. (#11921)
+* Images: Trigger `test-runner` build. (#11917)
+* Chart: Add tests for `PrometheusRule` & `ServiceMonitor`. (#11889)
+* Annotations: Allow commas in URLs. (#11887)
+* CI: Grant checks write permissions to E2E Test Report. (#11885)
+* Chart: Use generic values for `ConfigMap` test. (#11879)
+* Update maxmind post link about geolite2 license changes (#11881)
+* Go: Sync `go.work.sum`. (#11875)
+* Replace deprecated queue method (#11859)
+* Auto-generate annotation docs (#11831)
+
+### Dependency updates:
+
+* Bump the actions group with 3 updates (#12149)
+* Bump golang.org/x/crypto from 0.27.0 to 0.28.0 (#12109)
+* Bump the actions group with 3 updates (#12097)
+* Bump sigs.k8s.io/mdtoc from 1.1.0 to 1.4.0 (#12089)
+* Bump github.com/prometheus/common from 0.59.1 to 0.60.0 (#12087)
+* Bump google.golang.org/grpc from 1.67.0 to 1.67.1 in the go group across 1 directory (#12085)
+* Bump k8s.io/cli-runtime from 0.30.0 to 0.31.1 (#12083)
+* Bump github/codeql-action from 3.26.9 to 3.26.10 in the actions group (#12055)
+* Bump the go group across 1 directory with 3 updates (#12053)
+* Bump k8s.io/kube-aggregator from 0.29.3 to 0.31.1 in /images/kube-webhook-certgen/rootfs (#12049)
+* Bump k8s.io/apimachinery from 0.23.1 to 0.31.1 in /images/ext-auth-example-authsvc/rootfs (#12047)
+* Bump github.com/prometheus/client_golang from 1.11.1 to 1.20.4 in /images/custom-error-pages/rootfs (#12046)
+* Bump the all group with 2 updates (#12036)
+* Bump github/codeql-action from 3.26.7 to 3.26.8 in the all group (#12016)
+* Bump google.golang.org/grpc from 1.66.2 to 1.67.0 (#12014)
+* Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 in the all group (#12012)
+* Bump the all group with 2 updates (#11981)
+* Bump github/codeql-action from 3.26.6 to 3.26.7 in the all group (#11980)
+* Bump github.com/prometheus/common from 0.57.0 to 0.59.1 (#11961)
+* Bump golang.org/x/crypto from 0.26.0 to 0.27.0 (#11958)
+* Bump github.com/prometheus/client_golang from 1.20.2 to 1.20.3 in the all group (#11957)
+* Bump github.com/opencontainers/runc from 1.1.13 to 1.1.14 (#11930)
+* Bump the all group with 2 updates (#11925)
+* Bump github.com/onsi/ginkgo/v2 from 2.20.1 to 2.20.2 in the all group (#11913)
+* Bump google.golang.org/grpc from 1.65.0 to 1.66.0 (#11910)
+* Bump github.com/prometheus/common from 0.55.0 to 0.57.0 (#11909)
+* Bump github/codeql-action from 3.26.5 to 3.26.6 in the all group (#11908)
+* Bump the all group with 2 updates (#11871)
+* Bump github/codeql-action from 3.26.2 to 3.26.5 in the all group (#11868)
+* Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.1 (#11840)
+* Bump sigs.k8s.io/controller-runtime from 0.18.4 to 0.19.0 (#11839)
+* Bump dario.cat/mergo from 1.0.0 to 1.0.1 in the all group (#11837)
+* Bump k8s.io/component-base from 0.30.3 to 0.31.0 (#11836)
+* Bump github/codeql-action from 3.26.0 to 3.26.2 in the all group (#11834)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.11.2...controller-v1.11.3
diff --git a/changelog/controller-1.12.0-beta.0.md b/changelog/controller-1.12.0-beta.0.md
new file mode 100644
index 000000000..5f2fa9d74
--- /dev/null
+++ b/changelog/controller-1.12.0-beta.0.md
@@ -0,0 +1,216 @@
+# Changelog
+
+### controller-v1.12.0-beta.0
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.12.0-beta.0@sha256:6e2f8f52e1f2571ff65bc4fc4826d5282d5def5835ec4ab433dcb8e659b2fbac
+
+### All changes:
+
+* Images: Trigger controller build. (#12154)
+* ⚠️ Metrics: Disable by default. (#12153) ⚠️
+
+  This changes the default of the following CLI arguments:
+
+  * `--enable-metrics` gets disabled by default.
+
+* Tests & Docs: Bump `e2e-test-echo` to v1.0.1. (#12147)
+* Images: Trigger `e2e-test-echo` build. (#12140)
+* ⚠️ Images: Drop `s390x`. (#12137) ⚠️
+
+  Support for the `s390x` architecture has already been removed from the controller image. This also removes it from the NGINX base image and CI relevant images.
+
+* Images: Build `s390x` controller. (#12126)
+* Chart: Bump Kube Webhook CertGen. (#12119)
+* Tests & Docs: Bump images. (#12118)
+* Cloud Build: Bump `gcb-docker-gcloud` to v20240718-5ef92b5c36. (#12113)
+* Images: Trigger other builds. (#12110)
+* Tests: Bump `e2e-test-runner` to v20241004-114a6abb. (#12103)
+* Images: Trigger `test-runner` build. (#12100)
+* Docs: Add a multi-tenant warning. (#12091)
+* Go: Bump to v1.22.8. (#12069)
+* Images: Bump `NGINX_BASE` to v1.0.0. (#12066)
+* Images: Trigger NGINX build. (#12063)
+* Images: Remove NGINX v1.21. (#12031)
+* Chart: Add `controller.metrics.service.enabled`. (#12056)
+* GitHub: Improve Dependabot. (#12033)
+* Chart: Add `global.image.registry`. (#12028)
+* ⚠️ Images: Remove OpenTelemetry. (#12024) ⚠️
+
+  OpenTelemetry is still supported, but since the module is built into the controller image since v1.10, we hereby remove the init container and image which were used to install it upon controller startup.
+
+* Chart: Improve CI. (#12003)
+* Chart: Extend image tests. (#12025)
+* Chart: Add `controller.progressDeadlineSeconds`. (#12017)
+* Docs: Add health check annotations for AWS. (#12018)
+* Docs: Convert `opentelemetry.md` from CRLF to LF. (#12005)
+* Chart: Implement `unhealthyPodEvictionPolicy`. (#11992)
+* Chart: Add `defaultBackend.maxUnavailable`. (#11995)
+* Chart: Test `controller.minAvailable` & `controller.maxUnavailable`. (#12000)
+* Chart: Align default backend `PodDisruptionBudget`. (#11993)
+* Metrics: Fix namespace in `nginx_ingress_controller_ssl_expire_time_seconds`. (#10274)
+* ⚠️ Chart: Remove Pod Security Policy. (#11971) ⚠️
+
+  This removes Pod Security Policies and related resources from the chart.
+
+* Chart: Improve default backend service account. (#11972)
+* Go: Bump to v1.22.7. (#11943)
+* NGINX: Remove inline Lua from template. (#11806)
+* Images: Bump OpenTelemetry C++ Contrib. (#11629)
+* Docs: Add note about `--watch-namespace`. (#11947)
+* Images: Use latest Alpine 3.20 everywhere. (#11944)
+* Fix minor typos (#11935)
+* Chart: Implement `controller.admissionWebhooks.service.servicePort`. (#11931)
+* Allow any protocol for cors origins (#11153)
+* Tests: Bump `e2e-test-runner` to v20240829-2c421762. (#11919)
+* Images: Trigger `test-runner` build. (#11916)
+* Chart: Add `controller.metrics.prometheusRule.annotations`. (#11849)
+* Chart: Add tests for `PrometheusRule` & `ServiceMonitor`. (#11883)
+* Annotations: Allow commas in URLs. (#11882)
+* CI: Grant checks write permissions to E2E Test Report. (#11862)
+* Chart: Use generic values for `ConfigMap` test. (#11877)
+* Security: Follow-up on recent changes. (#11874)
+* Lua: Remove plugins from `.luacheckrc` & E2E docs. (#11872)
+* Dashboard: Remove `ingress_upstream_latency_seconds`. (#11878)
+* Metrics: Add `--metrics-per-undefined-host` argument. (#11818)
+* Update maxmind post link about geolite2 license changes (#11861)
+* ⚠️ Remove global-rate-limit feature (#11851) ⚠️
+
+  This removes the following configuration options:
+
+  * `global-rate-limit-memcached-host`
+  * `global-rate-limit-memcached-port`
+  * `global-rate-limit-memcached-connect-timeout`
+  * `global-rate-limit-memcached-max-idle-timeout`
+  * `global-rate-limit-memcached-pool-size`
+  * `global-rate-limit-status-code`
+
+  It also removes the following annotations:
+
+  * `global-rate-limit`
+  * `global-rate-limit-window`
+  * `global-rate-limit-key`
+  * `global-rate-limit-ignored-cidrs`
+
+* Revert "docs: Add deployment for AWS NLB Proxy." (#11857)
+* Add custom code handling for temporal redirect (#10651)
+* Add native histogram support for histogram metrics (#9971)
+* Replace deprecated queue method (#11853)
+* ⚠️ Enable security features by default (#11819) ⚠️
+
+  This changes the default of the following CLI arguments:
+
+  * `--enable-annotation-validation` gets enabled by default.
+
+  It also changes the default of the following configuration options:
+
+  * `allow-cross-namespace-resources` gets disabled by default.
+  * `annotations-risk-level` gets lowered to "High" by default.
+  * `strict-validate-path-type` gets enabled by default.
+
+* docs: Add deployment for AWS NLB Proxy. (#9565)
+* ⚠️ Remove 3rd party lua plugin support (#11821) ⚠️
+
+  This removes the following configuration options:
+
+  * `plugins`
+
+  It also removes support for user provided Lua plugins in the `/etc/nginx/lua/plugins` directory.
+
+* Auto-generate annotation docs (#11820)
+* ⚠️ Metrics: Remove `ingress_upstream_latency_seconds`. (#11795) ⚠️
+
+  This metric has already been deprecated and is now getting removed.
+
+* Release controller v1.11.2/v1.10.4 & chart v4.11.2/v4.10.4. (#11816)
+* Chart: Bump Kube Webhook CertGen & OpenTelemetry. (#11809)
+* Tests & Docs: Bump images. (#11803)
+* Images: Trigger failed builds. (#11800)
+* Images: Trigger other builds. (#11796)
+* Controller: Fix panic in alternative backend merging. (#11789)
+* Tests: Bump `e2e-test-runner` to v20240812-3f0129aa. (#11788)
+* Images: Trigger `test-runner` build. (#11785)
+* Images: Bump `NGINX_BASE` to v0.0.12. (#11782)
+* Images: Trigger NGINX build. (#11779)
+* Cloud Build: Add missing config, remove unused ones. (#11774)
+* Cloud Build: Tweak timeouts. (#11761)
+* Cloud Build: Fix substitutions. (#11758)
+* Cloud Build: Some chores. (#11633)
+* Go: Bump to v1.22.6. (#11747)
+* Images: Bump `NGINX_BASE` to v0.0.11. (#11741)
+* Images: Trigger NGINX build. (#11735)
+* docs: update OpenSSL Roadmap link (#11730)
+* Go: Bump to v1.22.5. (#11634)
+* Docs: Fix typo in AWS LB Controller reference (#11723)
+* Perform some cleaning operations on line breaks. (#11720)
+* Missing anchors in regular expression. (#11717)
+* Docs: Fix `from-to-www` redirect description. (#11712)
+* Chart: Remove `isControllerTagValid`. (#11710)
+* Tests: Bump `e2e-test-runner` to v20240729-04899b27. (#11702)
+* Chart: Explicitly set `runAsGroup`. (#11679)
+* Docs: Clarify `from-to-www` redirect direction. (#11682)
+* added real-client-ip faq (#11663)
+* Docs: Format NGINX configuration table. (#11659)
+* Release controller v1.11.1/v1.10.3 & chart v4.11.1/v4.10.3. (#11654)
+* Tests: Bump `test-runner` to v20240717-1fe74b5f. (#11645)
+* Images: Trigger `test-runner` build. (#11636)
+* Images: Bump `NGINX_BASE` to v0.0.10. (#11635)
+* remove modsecurity coreruleset test files from nginx image (#11617)
+* unskip the ocsp tests and update images to fix cfssl bug (#11606)
+* Fix indent in YAML for example pod (#11598)
+* Images: Bump `test-runner`. (#11600)
+* Images: Bump `NGINX_BASE` to v0.0.9. (#11599)
+* revert module upgrade (#11594)
+* README: Fix support matrix. (#11586)
+* Repository: Add changelogs from `release-v1.10`. (#11587)
+
+### Dependency updates:
+
+* Bump the actions group with 3 updates (#12152)
+* Bump golang.org/x/crypto from 0.27.0 to 0.28.0 (#12107)
+* Bump the actions group with 3 updates (#12092)
+* Bump sigs.k8s.io/mdtoc from 1.1.0 to 1.4.0 (#12062)
+* Bump github.com/prometheus/common from 0.59.1 to 0.60.0 (#12060)
+* Bump google.golang.org/grpc from 1.67.0 to 1.67.1 in the go group across 1 directory (#12059)
+* Bump k8s.io/cli-runtime from 0.30.0 to 0.31.1 (#12061)
+* Bump github/codeql-action from 3.26.9 to 3.26.10 in the actions group (#12051)
+* Bump the go group across 1 directory with 3 updates (#12050)
+* Bump k8s.io/kube-aggregator from 0.29.3 to 0.31.1 in /images/kube-webhook-certgen/rootfs (#12043)
+* Bump k8s.io/apimachinery from 0.23.1 to 0.31.1 in /images/ext-auth-example-authsvc/rootfs (#12041)
+* Bump github.com/prometheus/client_golang from 1.11.1 to 1.20.4 in /images/custom-error-pages/rootfs (#12040)
+* Bump the all group with 2 updates (#12032)
+* Bump github/codeql-action from 3.26.7 to 3.26.8 in the all group (#12010)
+* Bump google.golang.org/grpc from 1.66.2 to 1.67.0 (#12009)
+* Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 in the all group (#12008)
+* Bump the all group with 2 updates (#11977)
+* Bump github/codeql-action from 3.26.6 to 3.26.7 in the all group (#11976)
+* Bump github.com/prometheus/common from 0.57.0 to 0.59.1 (#11954)
+* Bump golang.org/x/crypto from 0.26.0 to 0.27.0 (#11955)
+* Bump github.com/prometheus/client_golang from 1.20.2 to 1.20.3 in the all group (#11953)
+* Bump github.com/opencontainers/runc from 1.1.13 to 1.1.14 (#11928)
+* Bump the all group with 2 updates (#11922)
+* Bump github.com/onsi/ginkgo/v2 from 2.20.1 to 2.20.2 in the all group (#11901)
+* Bump google.golang.org/grpc from 1.65.0 to 1.66.0 (#11902)
+* Bump github.com/prometheus/common from 0.55.0 to 0.57.0 (#11903)
+* Bump github/codeql-action from 3.26.5 to 3.26.6 in the all group (#11904)
+* Bump the all group with 2 updates (#11865)
+* Bump github/codeql-action from 3.26.2 to 3.26.5 in the all group (#11867)
+* Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.1 (#11832)
+* Bump sigs.k8s.io/controller-runtime from 0.18.4 to 0.19.0 (#11823)
+* Bump dario.cat/mergo from 1.0.0 to 1.0.1 in the all group (#11822)
+* Bump k8s.io/component-base from 0.30.3 to 0.31.0 (#11825)
+* Bump github/codeql-action from 3.26.0 to 3.26.2 in the all group (#11826)
+* Bump github.com/onsi/ginkgo/v2 from 2.19.1 to 2.20.0 (#11766)
+* Bump the all group with 2 updates (#11767)
+* Bump golang.org/x/crypto from 0.25.0 to 0.26.0 (#11765)
+* Bump the all group with 3 updates (#11727)
+* Bump github.com/onsi/ginkgo/v2 from 2.19.0 to 2.19.1 in the all group (#11696)
+* Bump the all group with 2 updates (#11695)
+* Bump the all group with 4 updates (#11673)
+* Bump the all group with 2 updates (#11672)
+* Bump github.com/prometheus/common from 0.54.0 to 0.55.0 (#11522)
+* Bump the all group with 5 updates (#11611)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.11.0...controller-v1.12.0-beta.0
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index fd7b81030..d8a15f6e5 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,9 +1,9 @@
 annotations:
   artifacthub.io/changes: |
-    - Update Ingress-Nginx version controller-v1.11.2
-  artifacthub.io/prerelease: "false"
+    - Update Ingress-Nginx version controller-v1.12.0-beta.0
+  artifacthub.io/prerelease: "true"
 apiVersion: v2
-appVersion: 1.11.2
+appVersion: 1.12.0-beta.0
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 home: https://github.com/kubernetes/ingress-nginx
@@ -22,4 +22,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.11.2
+version: 4.12.0-beta.0
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 5475aaa79..b902c1b23 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.11.2](https://img.shields.io/badge/Version-4.11.2-informational?style=flat-square) ![AppVersion: 1.11.2](https://img.shields.io/badge/AppVersion-1.11.2-informational?style=flat-square)
+![Version: 4.12.0-beta.0](https://img.shields.io/badge/Version-4.12.0--beta.0-informational?style=flat-square) ![AppVersion: 1.12.0-beta.0](https://img.shields.io/badge/AppVersion-1.12.0--beta.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -322,8 +322,8 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `false` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce"` |  |
-| controller.image.digestChroot | string | `"sha256:21b55a2f0213a18b91612a8c0850167e00a8e34391fd595139a708f9c047e7a8"` |  |
+| controller.image.digest | string | `"sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5"` |  |
+| controller.image.digestChroot | string | `"sha256:6e2f8f52e1f2571ff65bc4fc4826d5282d5def5835ec4ab433dcb8e659b2fbac"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.readOnlyRootFilesystem | bool | `false` |  |
@@ -331,7 +331,7 @@ As of version `1.26.0` of this chart, by simply not providing any clusterIP valu
 | controller.image.runAsNonRoot | bool | `true` |  |
 | controller.image.runAsUser | int | `101` | This value must not be changed using the official image. uid=101(www-data) gid=82(www-data) groups=82(www-data) |
 | controller.image.seccompProfile.type | string | `"RuntimeDefault"` |  |
-| controller.image.tag | string | `"v1.11.2"` |  |
+| controller.image.tag | string | `"v1.12.0-beta.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource | object | `{"aliases":[],"annotations":{},"controllerValue":"k8s.io/ingress-nginx","default":false,"enabled":true,"name":"nginx","parameters":{}}` | This section refers to the creation of the IngressClass resource. IngressClasses are immutable and cannot be changed after creation. We do not support namespaced IngressClasses, yet, so a ClusterRole and a ClusterRoleBinding is required. |
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.10.5.md b/charts/ingress-nginx/changelog/helm-chart-4.10.5.md
new file mode 100644
index 000000000..72c72c720
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.10.5.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.10.5
+
+* Update Ingress-Nginx version controller-v1.10.5
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.10.4...helm-chart-4.10.5
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.11.3.md b/charts/ingress-nginx/changelog/helm-chart-4.11.3.md
new file mode 100644
index 000000000..18ec6ba82
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.11.3.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.11.3
+
+* Update Ingress-Nginx version controller-v1.11.3
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.11.2...helm-chart-4.11.3
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.12.0-beta.0.md b/charts/ingress-nginx/changelog/helm-chart-4.12.0-beta.0.md
new file mode 100644
index 000000000..fa980f1fb
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.12.0-beta.0.md
@@ -0,0 +1,9 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.12.0-beta.0
+
+* Update Ingress-Nginx version controller-v1.12.0-beta.0
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.11.0...helm-chart-4.12.0-beta.0
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 2c76c8e85..685105cda 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -6,7 +6,6 @@ global:
   image:
     # -- Registry host to pull images from.
     registry: registry.k8s.io
-
 ## Overrides for generated resource names
 # See templates/_helpers.tpl
 # nameOverride:
@@ -31,9 +30,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.11.2"
-    digest: sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
-    digestChroot: sha256:21b55a2f0213a18b91612a8c0850167e00a8e34391fd595139a708f9c047e7a8
+    tag: "v1.12.0-beta.0"
+    digest: sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
+    digestChroot: sha256:6e2f8f52e1f2571ff65bc4fc4826d5282d5def5835ec4ab433dcb8e659b2fbac
     pullPolicy: IfNotPresent
     runAsNonRoot: true
     # -- This value must not be changed using the official image.
@@ -244,7 +243,6 @@ controller:
   # -- Specifies the number of seconds you want to wait for the controller deployment to progress before the system reports back that it has failed.
   # Ref.: https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#progress-deadline-seconds
   progressDeadlineSeconds: 0
-
   # -- `minReadySeconds` to avoid killing pods before we are ready
   ##
   minReadySeconds: 0
@@ -386,7 +384,6 @@ controller:
   # -- Eviction policy for unhealthy pods guarded by PodDisruptionBudget.
   # Ref: https://kubernetes.io/blog/2023/01/06/unhealthy-pod-eviction-policy-for-pdbs/
   unhealthyPodEvictionPolicy: ""
-
   ## Define requests resources to avoid probe issues due to CPU utilization in busy nodes
   ## ref: https://github.com/kubernetes/ingress-nginx/issues/4735#issuecomment-551204903
   ## Ideally, there should be no limits.
@@ -1093,7 +1090,6 @@ defaultBackend:
   # -- Eviction policy for unhealthy pods guarded by PodDisruptionBudget.
   # Ref: https://kubernetes.io/blog/2023/01/06/unhealthy-pod-eviction-policy-for-pdbs/
   unhealthyPodEvictionPolicy: ""
-
   resources: {}
   # limits:
   #   cpu: 10m
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index fb4a91472..6f7f54768 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,8 +320,7 @@ subjects:
   namespace: ingress-nginx
 ---
 apiVersion: v1
-data:
-  allow-snippet-annotations: "false"
+data: null
 kind: ConfigMap
 metadata:
   labels:
@@ -329,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -345,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -378,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -401,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
     spec:
       containers:
       - args:
@@ -436,7 +435,6 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
-        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -448,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -498,6 +496,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: false
+          runAsGroup: 82
           runAsNonRoot: true
           runAsUser: 101
           seccompProfile:
@@ -524,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -549,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -558,6 +557,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -575,7 +575,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -586,7 +586,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -602,7 +602,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -611,6 +611,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -628,7 +629,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -641,7 +642,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
@@ -651,6 +652,7 @@ webhooks:
       name: ingress-nginx-controller-admission
       namespace: ingress-nginx
       path: /networking/v1/ingresses
+      port: 443
   failurePolicy: Fail
   matchPolicy: Equivalent
   name: validate.nginx.ingress.kubernetes.io
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 4fff060c1..62e0f9a1c 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -321,7 +321,6 @@ subjects:
 ---
 apiVersion: v1
 data:
-  allow-snippet-annotations: "false"
   http-snippet: |
     server {
       listen 2443;
@@ -336,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -354,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -387,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -410,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -432,7 +431,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
     spec:
       containers:
       - args:
@@ -445,7 +444,6 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
-        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -457,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -510,6 +508,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: false
+          runAsGroup: 82
           runAsNonRoot: true
           runAsUser: 101
           seccompProfile:
@@ -536,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -547,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -561,7 +560,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -570,6 +569,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -587,7 +587,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -598,7 +598,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -614,7 +614,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -623,6 +623,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -640,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -653,7 +654,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
@@ -663,6 +664,7 @@ webhooks:
       name: ingress-nginx-controller-admission
       namespace: ingress-nginx
       path: /networking/v1/ingresses
+      port: 443
   failurePolicy: Fail
   matchPolicy: Equivalent
   name: validate.nginx.ingress.kubernetes.io
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 8cad92d4c..4724e2761 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,8 +320,7 @@ subjects:
   namespace: ingress-nginx
 ---
 apiVersion: v1
-data:
-  allow-snippet-annotations: "false"
+data: null
 kind: ConfigMap
 metadata:
   labels:
@@ -329,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -341,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
     spec:
       containers:
       - args:
@@ -430,7 +429,6 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
-        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -442,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -492,6 +490,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: false
+          runAsGroup: 82
           runAsNonRoot: true
           runAsUser: 101
           seccompProfile:
@@ -518,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -529,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -543,7 +542,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -552,6 +551,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -569,7 +569,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -580,7 +580,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -596,7 +596,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -605,6 +605,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -622,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -635,7 +636,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
@@ -645,6 +646,7 @@ webhooks:
       name: ingress-nginx-controller-admission
       namespace: ingress-nginx
       path: /networking/v1/ingresses
+      port: 443
   failurePolicy: Fail
   matchPolicy: Equivalent
   name: validate.nginx.ingress.kubernetes.io
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index f9ad071c6..a646d1402 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,8 +320,7 @@ subjects:
   namespace: ingress-nginx
 ---
 apiVersion: v1
-data:
-  allow-snippet-annotations: "false"
+data: null
 kind: ConfigMap
 metadata:
   labels:
@@ -329,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -341,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -374,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -397,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -419,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
     spec:
       containers:
       - args:
@@ -432,7 +431,6 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
-        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -444,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -494,6 +492,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: false
+          runAsGroup: 82
           runAsNonRoot: true
           runAsUser: 101
           seccompProfile:
@@ -520,7 +519,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -531,7 +530,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -545,7 +544,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -554,6 +553,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -571,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -598,7 +598,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -607,6 +607,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -624,7 +625,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -637,7 +638,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
@@ -647,6 +648,7 @@ webhooks:
       name: ingress-nginx-controller-admission
       namespace: ingress-nginx
       path: /networking/v1/ingresses
+      port: 443
   failurePolicy: Fail
   matchPolicy: Equivalent
   name: validate.nginx.ingress.kubernetes.io
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index 43affe0f7..f44e00125 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -321,7 +321,6 @@ subjects:
 ---
 apiVersion: v1
 data:
-  allow-snippet-annotations: "false"
   use-proxy-protocol: "true"
 kind: ConfigMap
 metadata:
@@ -330,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
     spec:
       containers:
       - args:
@@ -435,7 +434,6 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
-        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -447,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -497,6 +495,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: false
+          runAsGroup: 82
           runAsNonRoot: true
           runAsUser: 101
           seccompProfile:
@@ -523,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +547,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -557,6 +556,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -574,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -601,7 +601,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -610,6 +610,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -627,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -640,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
@@ -650,6 +651,7 @@ webhooks:
       name: ingress-nginx-controller-admission
       namespace: ingress-nginx
       path: /networking/v1/ingresses
+      port: 443
   failurePolicy: Fail
   matchPolicy: Equivalent
   name: validate.nginx.ingress.kubernetes.io
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 5639e287b..156191829 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,8 +320,7 @@ subjects:
   namespace: ingress-nginx
 ---
 apiVersion: v1
-data:
-  allow-snippet-annotations: "false"
+data: null
 kind: ConfigMap
 metadata:
   labels:
@@ -329,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -350,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -383,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -406,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -424,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
     spec:
       containers:
       - args:
@@ -437,7 +436,6 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
-        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -449,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -499,6 +497,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: false
+          runAsGroup: 82
           runAsNonRoot: true
           runAsUser: 101
           seccompProfile:
@@ -529,7 +528,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -540,7 +539,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -554,7 +553,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -563,6 +562,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -580,7 +580,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -591,7 +591,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -607,7 +607,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -616,6 +616,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -633,7 +634,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -646,7 +647,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
@@ -656,6 +657,7 @@ webhooks:
       name: ingress-nginx-controller-admission
       namespace: ingress-nginx
       path: /networking/v1/ingresses
+      port: 443
   failurePolicy: Fail
   matchPolicy: Equivalent
   name: validate.nginx.ingress.kubernetes.io
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index 8da72399b..d3c168110 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,8 +320,7 @@ subjects:
   namespace: ingress-nginx
 ---
 apiVersion: v1
-data:
-  allow-snippet-annotations: "false"
+data: null
 kind: ConfigMap
 metadata:
   labels:
@@ -329,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -341,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
     spec:
       containers:
       - args:
@@ -431,7 +430,6 @@ spec:
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
         - --watch-ingress-without-class=true
-        - --enable-metrics=false
         - --publish-status-address=localhost
         env:
         - name: POD_NAME
@@ -444,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -496,6 +494,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: false
+          runAsGroup: 82
           runAsNonRoot: true
           runAsUser: 101
           seccompProfile:
@@ -530,7 +529,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -541,7 +540,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -555,7 +554,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -564,6 +563,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -592,7 +592,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -608,7 +608,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -617,6 +617,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -634,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -647,7 +648,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
@@ -657,6 +658,7 @@ webhooks:
       name: ingress-nginx-controller-admission
       namespace: ingress-nginx
       path: /networking/v1/ingresses
+      port: 443
   failurePolicy: Fail
   matchPolicy: Equivalent
   name: validate.nginx.ingress.kubernetes.io
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index a85e0166f..8e96a90b4 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -320,8 +320,7 @@ subjects:
   namespace: ingress-nginx
 ---
 apiVersion: v1
-data:
-  allow-snippet-annotations: "false"
+data: null
 kind: ConfigMap
 metadata:
   labels:
@@ -329,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -345,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -378,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -401,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
     spec:
       containers:
       - args:
@@ -436,7 +435,6 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
-        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -448,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -498,6 +496,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: false
+          runAsGroup: 82
           runAsNonRoot: true
           runAsUser: 101
           seccompProfile:
@@ -524,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -535,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -549,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -558,6 +557,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -575,7 +575,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -586,7 +586,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -602,7 +602,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -611,6 +611,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -628,7 +629,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -641,7 +642,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
@@ -651,6 +652,7 @@ webhooks:
       name: ingress-nginx-controller-admission
       namespace: ingress-nginx
       path: /networking/v1/ingresses
+      port: 443
   failurePolicy: Fail
   matchPolicy: Equivalent
   name: validate.nginx.ingress.kubernetes.io
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 92c8ce880..60c03464c 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -321,7 +321,6 @@ subjects:
 ---
 apiVersion: v1
 data:
-  allow-snippet-annotations: "false"
   use-proxy-protocol: "true"
 kind: ConfigMap
 metadata:
@@ -330,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
     spec:
       containers:
       - args:
@@ -435,7 +434,6 @@ spec:
         - --validating-webhook=:8443
         - --validating-webhook-certificate=/usr/local/certificates/cert
         - --validating-webhook-key=/usr/local/certificates/key
-        - --enable-metrics=false
         env:
         - name: POD_NAME
           valueFrom:
@@ -447,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.11.2@sha256:d5f8217feeac4887cb1ed21f27c2674e58be06bd8f5184cacea2a69abaf78dce
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -497,6 +495,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: false
+          runAsGroup: 82
           runAsNonRoot: true
           runAsUser: 101
           seccompProfile:
@@ -523,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +547,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -557,6 +556,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -574,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.11.2
+        app.kubernetes.io/version: 1.12.0-beta.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -601,7 +601,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.3@sha256:a320a50cc91bd15fd2d6fa6de58bd98c1bd64b9a6f926ce23a600d87043455a3
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -610,6 +610,7 @@ spec:
             drop:
             - ALL
           readOnlyRootFilesystem: true
+          runAsGroup: 65532
           runAsNonRoot: true
           runAsUser: 65532
           seccompProfile:
@@ -627,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -640,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.11.2
+    app.kubernetes.io/version: 1.12.0-beta.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
@@ -650,6 +651,7 @@ webhooks:
       name: ingress-nginx-controller-admission
       namespace: ingress-nginx
       path: /networking/v1/ingresses
+      port: 443
   failurePolicy: Fail
   matchPolicy: Equivalent
   name: validate.nginx.ingress.kubernetes.io
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 2ce632573..02ad0ff04 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -92,7 +92,7 @@ helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -274,7 +274,7 @@ In AWS, we use a Network load balancer (NLB) to expose the Ingress-Nginx Control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -282,10 +282,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer.
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -333,7 +333,7 @@ kubectl create clusterrolebinding cluster-admin-binding \
 Then, the ingress controller can be installed like this:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -350,7 +350,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -358,7 +358,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/do/deploy.yaml
 ```
 
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
@@ -366,7 +366,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/scw/deploy.yaml
 ```
 
 Refer to the [dedicated tutorial](https://www.scaleway.com/en/docs/tutorials/proxy-protocol-v2-load-balancer/#configuring-proxy-protocol-for-ingress-nginx) in the Scaleway documentation for configuring the proxy protocol for ingress-nginx with the Scaleway load balancer.
@@ -383,7 +383,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A
@@ -410,7 +410,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.11.2/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 6dcf4e9f0..163a5ff5c 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -7,17 +7,17 @@ Do not try to edit it manually.
 
 
 ### [[Admission] admission controller](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L39)
-- [should not allow overlaps of host and paths without canary annotations](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L74)
-- [should allow overlaps of host and paths with canary annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L91)
-- [should block ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L112)
-- [should return an error if there is an error validating the ingress definition](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L129)
-- [should return an error if there is an invalid value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L149)
-- [should return an error if there is a forbidden value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L163)
-- [should return an error if there is an invalid path and wrong pathType is set](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L177)
-- [should not return an error if the Ingress V1 definition is valid with Ingress Class](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L211)
-- [should not return an error if the Ingress V1 definition is valid with IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L227)
-- [should return an error if the Ingress V1 definition contains invalid annotations](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L243)
-- [should not return an error for an invalid Ingress when it has unknown class](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L263)
+- [should not allow overlaps of host and paths without canary annotations](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L47)
+- [should allow overlaps of host and paths with canary annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L64)
+- [should block ingress with invalid path](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L85)
+- [should return an error if there is an error validating the ingress definition](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L102)
+- [should return an error if there is an invalid value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L116)
+- [should return an error if there is a forbidden value in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L130)
+- [should return an error if there is an invalid path and wrong pathType is set](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L144)
+- [should not return an error if the Ingress V1 definition is valid with Ingress Class](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L178)
+- [should not return an error if the Ingress V1 definition is valid with IngressClass annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L194)
+- [should return an error if the Ingress V1 definition contains invalid annotations](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L210)
+- [should not return an error for an invalid Ingress when it has unknown class](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/admission/admission.go#L224)
 ### [affinity session-cookie-name](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L43)
 - [should set sticky cookie SERVERID](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L50)
 - [should change cookie name on ingress definition change](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/affinity.go#L72)
@@ -53,24 +53,24 @@ Do not try to edit it manually.
 - [should return status code 200 when authentication is configured with a map and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L205)
 - [should return status code 401 when authentication is configured with invalid content and Authorization header is sent](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L233)
 - [proxy_set_header My-Custom-Header 42;](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L272)
-- [proxy_set_header My-Custom-Header 42;](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L298)
-- [proxy_set_header 'My-Custom-Header' '42';](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L324)
-- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L433)
-- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L444)
-- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L455)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L494)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L503)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L514)
-- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L538)
-- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L714)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L723)
-- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L734)
-- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L793)
-- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L813)
-- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L841)
-- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L870)
-- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L900)
-- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L908)
+- [proxy_set_header My-Custom-Header 42;](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L292)
+- [proxy_set_header 'My-Custom-Header' '42';](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L311)
+- [user retains cookie by default](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L420)
+- [user does not retain cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L431)
+- [user with annotated ingress retains cookie if upstream returns error status code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L442)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L481)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L490)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L501)
+- [should overwrite Foo header with auth response](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L525)
+- [should return status code 200 when signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L701)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L710)
+- [keeps processing new ingresses even if one of the existing ingresses is misconfigured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L721)
+- [should return status code 200 when signed in after auth backend is deleted ](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L780)
+- [should deny login for different location on same server](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L800)
+- [should deny login for different servers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L828)
+- [should redirect to signin url when not signed in](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L857)
+- [should return 503 (location was denied)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L887)
+- [should add error to the config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/auth.go#L895)
 ### [auth-tls-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L31)
 - [should set sslClientCertificate, sslVerifyClient and sslVerifyDepth with auth-tls-secret](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L38)
 - [should set valid auth-tls-secret, sslVerify to off, and sslVerifyDepth to 2](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/authtls.go#L86)
@@ -148,6 +148,7 @@ Do not try to edit it manually.
 - [should allow correct origins - missing subdomain + origin with wildcard origin and correct origin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L540)
 - [should allow - missing origins (should allow all origins)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L576)
 - [should allow correct origin but not others - cors allow origin annotations contain trailing comma](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L636)
+- [should allow - origins with non-http[s] protocols](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/cors.go#L673)
 ### [custom-headers-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/customheaders.go#L33)
 - [should return status code 200 when no custom-headers is configured](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/customheaders.go#L40)
 - [should return status code 503 when custom-headers is configured with an invalid secret](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/customheaders.go#L57)
@@ -177,8 +178,8 @@ Do not try to edit it manually.
 - [should return OK for service with backend protocol GRPC](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L71)
 - [authorization metadata should be overwritten by external auth response headers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L132)
 - [should return OK for service with backend protocol GRPCS](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L193)
-- [should return OK when request not exceed timeout](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L266)
-- [should return Error when request exceed timeout](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L309)
+- [should return OK when request not exceed timeout](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L260)
+- [should return Error when request exceed timeout](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/grpc.go#L303)
 ### [http2-push-preload](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/http2pushpreload.go#L27)
 - [enable the http2-push-preload directive](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/http2pushpreload.go#L34)
 ### [allowlist-source-range](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/ipallowlist.go#L27)
@@ -202,14 +203,14 @@ Do not try to edit it manually.
 - [should enable modsecurity with transaction ID and OWASP rules](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L64)
 - [should disable modsecurity](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L85)
 - [should enable modsecurity with snippet](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L102)
-- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L130)
-- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L153)
-- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L175)
-- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L214)
-- [should enable modsecurity when enable-owasp-modsecurity-crs is set to true](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L253)
-- [should enable modsecurity through the config map](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L292)
-- [should enable modsecurity through the config map but ignore snippet as disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L338)
-- [should disable default modsecurity conf setting when modsecurity-snippet is specified](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L380)
+- [should enable modsecurity without using 'modsecurity on;'](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L124)
+- [should disable modsecurity using 'modsecurity off;'](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L147)
+- [should enable modsecurity with snippet and block requests](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L169)
+- [should enable modsecurity globally and with modsecurity-snippet block requests](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L202)
+- [should enable modsecurity when enable-owasp-modsecurity-crs is set to true](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L235)
+- [should enable modsecurity through the config map](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L269)
+- [should enable modsecurity through the config map but ignore snippet as disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L309)
+- [should disable default modsecurity conf setting when modsecurity-snippet is specified](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/modsecurity/modsecurity.go#L354)
 ### [preserve-trailing-slash](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/preservetrailingslash.go#L27)
 - [should allow preservation of trailing slashes](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/preservetrailingslash.go#L34)
 ### [proxy-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L30)
@@ -250,13 +251,13 @@ Do not try to edit it manually.
 - [should not use the Service Cluster IP and Port](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/serviceupstream.go#L97)
 ### [configuration-snippet](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/snippet.go#L28)
 - [set snippet more_set_headers in all locations](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/snippet.go#L34)
-- [drops snippet more_set_header in all locations if disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/snippet.go#L73)
+- [drops snippet more_set_header in all locations if disabled by admin](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/snippet.go#L66)
 ### [ssl-ciphers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/sslciphers.go#L28)
 - [should change ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/sslciphers.go#L35)
 - [should keep ssl ciphers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/sslciphers.go#L58)
 ### [stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/streamsnippet.go#L34)
 - [should add value of stream-snippet to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/streamsnippet.go#L41)
-- [should add stream-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/streamsnippet.go#L94)
+- [should add stream-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/streamsnippet.go#L88)
 ### [upstream-hash-by-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/upstreamhashby.go#L79)
 - [should connect to the same pod](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/upstreamhashby.go#L86)
 - [should connect to the same subset of pods](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/upstreamhashby.go#L95)
@@ -329,13 +330,15 @@ Do not try to edit it manually.
 - [removes HTTPS configuration when we delete TLS spec](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_certificates.go#L233)
 ### [[Lua] dynamic configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L41)
 - [configures balancer Lua middleware correctly](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L49)
-- [handles endpoints only changes](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L61)
-- [handles endpoints only changes (down scaling of replicas)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L86)
-- [handles endpoints only changes consistently (down scaling of replicas vs. empty service)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L124)
-- [handles an annotation change](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L170)
+- [handles endpoints only changes](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L56)
+- [handles endpoints only changes (down scaling of replicas)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L81)
+- [handles endpoints only changes consistently (down scaling of replicas vs. empty service)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L119)
+- [handles an annotation change](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/lua/dynamic_configuration.go#L165)
 ### [[metrics] exported prometheus metrics](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/metrics/metrics.go#L36)
-- [exclude socket request metrics are absent](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/metrics/metrics.go#L50)
-- [exclude socket request metrics are present](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/metrics/metrics.go#L72)
+- [exclude socket request metrics are absent](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/metrics/metrics.go#L51)
+- [exclude socket request metrics are present](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/metrics/metrics.go#L73)
+- [request metrics per undefined host are present when flag is set](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/metrics/metrics.go#L95)
+- [request metrics per undefined host are not present when flag is not set](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/metrics/metrics.go#L128)
 ### [nginx-configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/nginx/nginx.go#L99)
 - [start nginx with default configuration](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/nginx/nginx.go#L102)
 - [fails when using alias directive](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/nginx/nginx.go#L114)
@@ -368,9 +371,9 @@ Do not try to edit it manually.
 - [should be disabled when setting is false](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/aio_write.go#L46)
 ### [Bad annotation values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/badannotationvalues.go#L29)
 - [[BAD_ANNOTATIONS] should drop an ingress if there is an invalid character in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/badannotationvalues.go#L36)
-- [[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/badannotationvalues.go#L75)
-- [[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/badannotationvalues.go#L119)
-- [[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/badannotationvalues.go#L157)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is a forbidden word in some annotation](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/badannotationvalues.go#L68)
+- [[BAD_ANNOTATIONS] should allow an ingress if there is a default blocklist config in place](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/badannotationvalues.go#L105)
+- [[BAD_ANNOTATIONS] should drop an ingress if there is a custom blocklist config in place and allow others to pass](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/badannotationvalues.go#L138)
 ### [brotli](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/brotli.go#L30)
 - [should only compress responses that meet the `brotli-min-length` condition](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/brotli.go#L38)
 ### [Configmap change](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/configmap_change.go#L29)
@@ -401,7 +404,7 @@ Do not try to edit it manually.
 ### [Geoip2](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/geoip2.go#L36)
 - [should include geoip2 line in config when enabled and db file exists](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/geoip2.go#L45)
 - [should only allow requests from specific countries](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/geoip2.go#L69)
-- [should up and running nginx controller using autoreload flag](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/geoip2.go#L128)
+- [should up and running nginx controller using autoreload flag](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/geoip2.go#L122)
 ### [[Security] block-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_access_block.go#L28)
 - [should block CIDRs defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_access_block.go#L38)
 - [should block User-Agents defined in the ConfigMap](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/global_access_block.go#L55)
@@ -487,8 +490,8 @@ Do not try to edit it manually.
 - [should return status code 200 when accessing '/noauth' unauthenticated](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/no_auth_locations.go#L82)
 ### [Add no tls redirect locations](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/no_tls_redirect_locations.go#L27)
 - [Check no tls redirect locations config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/no_tls_redirect_locations.go#L30)
-### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ocsp/ocsp.go#L42)
-- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ocsp/ocsp.go#L49)
+### [OCSP](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ocsp/ocsp.go#L43)
+- [should enable OCSP and contain stapling information in the connection](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ocsp/ocsp.go#L50)
 ### [Configure Opentelemetry](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L39)
 - [should not exists opentelemetry directive](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L49)
 - [should exists opentelemetry directive when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/opentelemetry.go#L62)
@@ -500,7 +503,7 @@ Do not try to edit it manually.
 - [should not set invalid proxy timeouts using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_connect_timeout.go#L53)
 ### [Dynamic $proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_host.go#L28)
 - [should exist a proxy_host](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_host.go#L36)
-- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_host.go#L65)
+- [should exist a proxy_host using the upstream-vhost annotation value](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_host.go#L60)
 ### [proxy-next-upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_next_upstream.go#L28)
 - [should build proxy next upstream using configmap values](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_next_upstream.go#L36)
 ### [use-proxy-protocol](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/proxy_protocol.go#L38)
@@ -520,7 +523,7 @@ Do not try to edit it manually.
 - [reuse port should be enabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/reuse-port.go#L52)
 ### [configmap server-snippet](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/server_snippet.go#L28)
 - [should add value of server-snippet setting to all ingress config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/server_snippet.go#L35)
-- [should add global server-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/server_snippet.go#L98)
+- [should add global server-snippet and drop annotations per admin config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/server_snippet.go#L100)
 ### [server-tokens](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/server_tokens.go#L29)
 - [should not exists Server header in the response](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/server_tokens.go#L38)
 - [should exists Server header in the response when is enabled](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/server_tokens.go#L50)
@@ -532,14 +535,14 @@ Do not try to edit it manually.
 - [should pass unknown traffic to default backend and handle known traffic](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/ssl_passthrough.go#L78)
 ### [configmap stream-snippet](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/stream_snippet.go#L35)
 - [should add value of stream-snippet via config map to nginx config](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/stream_snippet.go#L42)
-### [[SSL] TLS protocols, ciphers and headers)](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L31)
-- [setting cipher suite](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L65)
-- [setting max-age parameter](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L109)
-- [setting includeSubDomains parameter](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L125)
-- [setting preload parameter](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L144)
-- [overriding what's set from the upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L164)
-- [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L186)
-- [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L204)
+### [[SSL] TLS protocols, ciphers and headers](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L32)
+- [setting cipher suite](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L66)
+- [setting max-age parameter](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L110)
+- [setting includeSubDomains parameter](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L127)
+- [setting preload parameter](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L147)
+- [overriding what's set from the upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L168)
+- [should not use ports during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L190)
+- [should not use ports or X-Forwarded-Host during the HTTP to HTTPS redirection](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/tls.go#L208)
 ### [annotation validations](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/validations/validations.go#L30)
 - [should allow ingress based on their risk on webhooks](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/validations/validations.go#L33)
 - [should allow ingress based on their risk on webhooks](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/settings/validations/validations.go#L68)

From d9c46275f9dc90a92b41f5dc2e9319c978fb2e87 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 15 Oct 2024 12:12:22 +0100
Subject: [PATCH 1497/1641] Bump github.com/opencontainers/runc from 1.1.14 to
 1.1.15 in the go group across 1 directory (#12168)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 3f0637f03..aa3ca67db 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.3
 	github.com/onsi/ginkgo/v2 v2.20.2
-	github.com/opencontainers/runc v1.1.14
+	github.com/opencontainers/runc v1.1.15
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.4
 	github.com/prometheus/client_model v0.6.1
diff --git a/go.sum b/go.sum
index 470599f77..e500e71b1 100644
--- a/go.sum
+++ b/go.sum
@@ -169,8 +169,8 @@ github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7J
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.34.1 h1:EUMJIKUjM8sKjYbtxQI9A4z2o+rruxnzNvpknOXie6k=
 github.com/onsi/gomega v1.34.1/go.mod h1:kU1QgUvBDLXBJq618Xvm2LUX6rSAfRaFRTcdOeDLwwY=
-github.com/opencontainers/runc v1.1.14 h1:rgSuzbmgz5DUJjeSnw337TxDbRuqjs6iqQck/2weR6w=
-github.com/opencontainers/runc v1.1.14/go.mod h1:E4C2z+7BxR7GHXp0hAY53mek+x49X1LjPNeMTfRGvOA=
+github.com/opencontainers/runc v1.1.15 h1:QMmSU2q1YUg3iOJX11phnaDi2A5/zhx4BR6h+XZ1DMA=
+github.com/opencontainers/runc v1.1.15/go.mod h1:E4C2z+7BxR7GHXp0hAY53mek+x49X1LjPNeMTfRGvOA=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
 github.com/opencontainers/runtime-spec v1.2.0/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=

From 8eda25576808b9cd18c6c2e5b3d490597716260b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 15 Oct 2024 12:14:22 +0100
Subject: [PATCH 1498/1641] Bump the actions group with 2 updates (#12169)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml     | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index bb6247e81..dd070474d 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -202,7 +202,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@604373da6381bf24206979c74d06a550515601b9 # v4.4.1
+        uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
         with:
           name: docker.tar.gz
           path: docker.tar.gz
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index f927443df..32bc1e802 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@604373da6381bf24206979c74d06a550515601b9 # v4.4.1
+        uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
         with:
           name: SARIF file
           path: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 1532ad2de..2e020351c 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@6e7b7d1fd3e4fef0c5fa8cce1229c54b2c9bd0d8 # v0.24.0
+        uses: aquasecurity/trivy-action@5681af892cd0f4997658e2bacc62bd0a894cf564 # v0.27.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 42b750838..f47626b3d 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -49,7 +49,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports ${{ inputs.variation }}
-        uses: actions/upload-artifact@604373da6381bf24206979c74d06a550515601b9 # v4.4.1
+        uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}

From e3d9fedfafc0e52e3ada8bb6e7d315cfeedb7230 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 15 Oct 2024 13:58:21 +0100
Subject: [PATCH 1499/1641] Bump the go group across 2 directories with 1
 update (#12182)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod                                  | 2 +-
 go.sum                                  | 4 ++--
 images/custom-error-pages/rootfs/go.mod | 2 +-
 images/custom-error-pages/rootfs/go.sum | 4 ++--
 4 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index aa3ca67db..2339e0364 100644
--- a/go.mod
+++ b/go.mod
@@ -17,7 +17,7 @@ require (
 	github.com/onsi/ginkgo/v2 v2.20.2
 	github.com/opencontainers/runc v1.1.15
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
-	github.com/prometheus/client_golang v1.20.4
+	github.com/prometheus/client_golang v1.20.5
 	github.com/prometheus/client_model v0.6.1
 	github.com/prometheus/common v0.60.0
 	github.com/spf13/cobra v1.8.1
diff --git a/go.sum b/go.sum
index e500e71b1..d6dfa1453 100644
--- a/go.sum
+++ b/go.sum
@@ -180,8 +180,8 @@ github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINE
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 h1:Jamvg5psRIccs7FGNTlIRMkT8wgtp5eCXdBlqhYGL6U=
 github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/prometheus/client_golang v1.20.4 h1:Tgh3Yr67PaOv/uTqloMsCEdeuFTatm5zIq5+qNN23vI=
-github.com/prometheus/client_golang v1.20.4/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
+github.com/prometheus/client_golang v1.20.5 h1:cxppBPuYhUnsO6yo/aoRol4L7q7UFfdm+bR9r+8l63Y=
+github.com/prometheus/client_golang v1.20.5/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
 github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
 github.com/prometheus/common v0.60.0 h1:+V9PAREWNvJMAuJ1x1BaWl9dewMW4YrHZQbx0sJNllA=
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 4cee1baf5..648cb4cf0 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -2,7 +2,7 @@ module k8s.io/ingress-nginx/custom-error-pages
 
 go 1.22.8
 
-require github.com/prometheus/client_golang v1.20.4
+require github.com/prometheus/client_golang v1.20.5
 
 require (
 	github.com/beorn7/perks v1.0.1 // indirect
diff --git a/images/custom-error-pages/rootfs/go.sum b/images/custom-error-pages/rootfs/go.sum
index a228b18fb..d5318cf86 100644
--- a/images/custom-error-pages/rootfs/go.sum
+++ b/images/custom-error-pages/rootfs/go.sum
@@ -10,8 +10,8 @@ github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0
 github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq1c1nUAm88MOHcQC9l5mIlSMApZMrHA=
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
-github.com/prometheus/client_golang v1.20.4 h1:Tgh3Yr67PaOv/uTqloMsCEdeuFTatm5zIq5+qNN23vI=
-github.com/prometheus/client_golang v1.20.4/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
+github.com/prometheus/client_golang v1.20.5 h1:cxppBPuYhUnsO6yo/aoRol4L7q7UFfdm+bR9r+8l63Y=
+github.com/prometheus/client_golang v1.20.5/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
 github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
 github.com/prometheus/common v0.55.0 h1:KEi6DK7lXW/m7Ig5i47x0vRzuBsHuvJdi5ee6Y3G1dc=

From 8a020bd0695acbb8e31e0cc94363aaf572f2a944 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 15 Oct 2024 14:06:22 +0100
Subject: [PATCH 1500/1641] Bump github/codeql-action from 3.26.12 to 3.26.13
 in the actions group (#12183)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 32bc1e802..eea0295c4 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12
+        uses: github/codeql-action/upload-sarif@f779452ac5af1c261dce0346a8f964149f49322b # v3.26.13
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 2e020351c..d313bd65d 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3.26.12
+        uses: github/codeql-action/upload-sarif@f779452ac5af1c261dce0346a8f964149f49322b # v3.26.13
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 162e3932a28fc2ef583f549e5f9cca0acd3aacdb Mon Sep 17 00:00:00 2001
From: Fedello <31769405+pvillaverde@users.noreply.github.com>
Date: Tue, 15 Oct 2024 15:28:21 +0200
Subject: [PATCH 1501/1641] Docs: Clarify external & service port in TCP/UDP
 services explanation. (#12172)

---
 docs/user-guide/exposing-tcp-udp-services.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/exposing-tcp-udp-services.md b/docs/user-guide/exposing-tcp-udp-services.md
index dbc143ff1..9c14a7c39 100644
--- a/docs/user-guide/exposing-tcp-udp-services.md
+++ b/docs/user-guide/exposing-tcp-udp-services.md
@@ -3,7 +3,7 @@
 While the Kubernetes Ingress resource only officially supports routing external HTTP(s) traffic to services, ingress-nginx can be configured to receive external TCP/UDP traffic from non-HTTP protocols and route them to internal services using TCP/UDP port mappings that are specified within a ConfigMap.
 
 To support this, the `--tcp-services-configmap` and `--udp-services-configmap` flags can be used to point to an existing config map where the key is the external port to use and the value indicates the service to expose using the format:
-`<service port>:<namespace/service name>:[PROXY]:[PROXY]`
+`<external port>:<namespace/service name>:<service port/name>:[PROXY]:[PROXY]`
 
 It is also possible to use a number or the name of the port. The two last fields are optional.
 Adding `PROXY` in either or both of the two last fields we can use [Proxy Protocol](https://www.nginx.com/resources/admin-guide/proxy-protocol) decoding (listen) and/or encoding (proxy_pass) in a TCP service. 

From 1c0f4fa8b25f75d1214349b54a48e2547e83afc3 Mon Sep 17 00:00:00 2001
From: Hung Tran <40334379+phuhung273@users.noreply.github.com>
Date: Tue, 15 Oct 2024 20:56:22 +0700
Subject: [PATCH 1502/1641] Docs: Add Pod Security Admission. (#12174)

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 charts/ingress-nginx/README.md        | 18 ++++++++++++++++++
 charts/ingress-nginx/README.md.gotmpl | 18 ++++++++++++++++++
 2 files changed, 36 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index b902c1b23..1820f7145 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -229,6 +229,24 @@ Detail of how and why are in [this issue](https://github.com/helm/charts/pull/13
 
 As of version `1.26.0` of this chart, by simply not providing any clusterIP value, `invalid: spec.clusterIP: Invalid value: "": field is immutable` will no longer occur since `clusterIP: ""` will not be rendered.
 
+### Pod Security Admission
+
+You can use Pod Security Admission by applying labels to the `ingress-nginx` namespace as instructed by the [documentation](https://kubernetes.io/docs/tasks/configure-pod-container/enforce-standards-namespace-labels).
+
+Example:
+
+```yaml
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: ingress-nginx
+  labels:
+    kubernetes.io/metadata.name: ingress-nginx
+    name: ingress-nginx
+    pod-security.kubernetes.io/enforce: restricted
+    pod-security.kubernetes.io/enforce-version: v1.31
+```
+
 ## Values
 
 | Key | Type | Default | Description |
diff --git a/charts/ingress-nginx/README.md.gotmpl b/charts/ingress-nginx/README.md.gotmpl
index 17b029bbf..3cb9d5651 100644
--- a/charts/ingress-nginx/README.md.gotmpl
+++ b/charts/ingress-nginx/README.md.gotmpl
@@ -226,4 +226,22 @@ Detail of how and why are in [this issue](https://github.com/helm/charts/pull/13
 
 As of version `1.26.0` of this chart, by simply not providing any clusterIP value, `invalid: spec.clusterIP: Invalid value: "": field is immutable` will no longer occur since `clusterIP: ""` will not be rendered.
 
+### Pod Security Admission
+
+You can use Pod Security Admission by applying labels to the `ingress-nginx` namespace as instructed by the [documentation](https://kubernetes.io/docs/tasks/configure-pod-container/enforce-standards-namespace-labels).
+
+Example:
+
+```yaml
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: ingress-nginx
+  labels:
+    kubernetes.io/metadata.name: ingress-nginx
+    name: ingress-nginx
+    pod-security.kubernetes.io/enforce: restricted
+    pod-security.kubernetes.io/enforce-version: v1.31
+```
+
 {{ template "chart.valuesSection" . }}

From 0edf16ff6bff89bd61750c38558b3bf801ec5ced Mon Sep 17 00:00:00 2001
From: m00lecule <33501567+m00lecule@users.noreply.github.com>
Date: Wed, 16 Oct 2024 07:09:02 +0200
Subject: [PATCH 1503/1641] Chart: Suggest `matchLabelKeys` in Topology Spread
 Constraints. (#12201)

---
 charts/ingress-nginx/values.yaml | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 685105cda..258c0ffa5 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -308,6 +308,8 @@ controller:
   #       app.kubernetes.io/name: '{{ include "ingress-nginx.name" . }}'
   #       app.kubernetes.io/instance: '{{ .Release.Name }}'
   #       app.kubernetes.io/component: controller
+  #   matchLabelKeys:
+  #   - pod-template-hash
   #   topologyKey: topology.kubernetes.io/zone
   #   maxSkew: 1
   #   whenUnsatisfiable: ScheduleAnyway
@@ -316,6 +318,8 @@ controller:
   #       app.kubernetes.io/name: '{{ include "ingress-nginx.name" . }}'
   #       app.kubernetes.io/instance: '{{ .Release.Name }}'
   #       app.kubernetes.io/component: controller
+  #   matchLabelKeys:
+  #   - pod-template-hash
   #   topologyKey: kubernetes.io/hostname
   #   maxSkew: 1
   #   whenUnsatisfiable: ScheduleAnyway
@@ -1054,6 +1058,8 @@ defaultBackend:
   #       app.kubernetes.io/name: '{{ include "ingress-nginx.name" . }}'
   #       app.kubernetes.io/instance: '{{ .Release.Name }}'
   #       app.kubernetes.io/component: default-backend
+  #   matchLabelKeys:
+  #   - pod-template-hash
   #   topologyKey: topology.kubernetes.io/zone
   #   maxSkew: 1
   #   whenUnsatisfiable: ScheduleAnyway
@@ -1062,6 +1068,8 @@ defaultBackend:
   #       app.kubernetes.io/name: '{{ include "ingress-nginx.name" . }}'
   #       app.kubernetes.io/instance: '{{ .Release.Name }}'
   #       app.kubernetes.io/component: default-backend
+  #   matchLabelKeys:
+  #   - pod-template-hash
   #   topologyKey: kubernetes.io/hostname
   #   maxSkew: 1
   #   whenUnsatisfiable: ScheduleAnyway

From 00295d1c39679908beacfbd74a20e74a1f1227b1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 21 Oct 2024 13:37:06 +0100
Subject: [PATCH 1504/1641] Bump aquasecurity/trivy-action from 0.27.0 to
 0.28.0 in the actions group (#12213)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/vulnerability-scans.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index d313bd65d..368a33d91 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@5681af892cd0f4997658e2bacc62bd0a894cf564 # v0.27.0
+        uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2 # v0.28.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'

From c9d33b75d52de3f83fd49d37c85aa97618a5143b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 21 Oct 2024 13:39:04 +0100
Subject: [PATCH 1505/1641] Bump github.com/ncabatoff/process-exporter from
 0.8.3 to 0.8.4 in the go group across 1 directory (#12214)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 2339e0364..d3043fbde 100644
--- a/go.mod
+++ b/go.mod
@@ -13,7 +13,7 @@ require (
 	github.com/mitchellh/hashstructure/v2 v2.0.2
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
-	github.com/ncabatoff/process-exporter v0.8.3
+	github.com/ncabatoff/process-exporter v0.8.4
 	github.com/onsi/ginkgo/v2 v2.20.2
 	github.com/opencontainers/runc v1.1.15
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
diff --git a/go.sum b/go.sum
index d6dfa1453..b9926e68e 100644
--- a/go.sum
+++ b/go.sum
@@ -154,8 +154,8 @@ github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 h1:t4WWQ9I797y7QUgeEjeXnVb+oYuEDQc6gLvrZJTYo94=
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833/go.mod h1:0CznHmXSjMEqs5Tezj/w2emQoM41wzYM9KpDKUHPYag=
-github.com/ncabatoff/process-exporter v0.8.3 h1:ZJpzWhRfwdBisIpr2BkitAlUR6dt45hpQn8/AYgToO8=
-github.com/ncabatoff/process-exporter v0.8.3/go.mod h1:MxEOWl740VK/hlWycJkq91VrA2mI+U9Bvc1wuyAaxA4=
+github.com/ncabatoff/process-exporter v0.8.4 h1:qj0pWbP6AytVQ1fMYabRd5LnuV6NPh0O6WCfenPJT54=
+github.com/ncabatoff/process-exporter v0.8.4/go.mod h1:MxEOWl740VK/hlWycJkq91VrA2mI+U9Bvc1wuyAaxA4=
 github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
 github.com/nxadm/tail v1.4.8/go.mod h1:+ncqLTQzXmGhMZNUePPaPqPvBxHAIsmXswZKocGu+AU=

From dc3acbd7864816c464f3536f433aaabd3ea9a37e Mon Sep 17 00:00:00 2001
From: Stepan Paksashvili <81509933+ipaqsa@users.noreply.github.com>
Date: Tue, 22 Oct 2024 18:38:53 +0300
Subject: [PATCH 1506/1641] [fix] fix nginx temp configs cleanup (#11569)

Signed-off-by: Stepan Paksashvili <stepan.paksashvili@flant.com>
---
 internal/ingress/controller/nginx.go      |  9 ++++-----
 internal/ingress/controller/nginx_test.go | 24 +++++++++++++++++------
 2 files changed, 22 insertions(+), 11 deletions(-)

diff --git a/internal/ingress/controller/nginx.go b/internal/ingress/controller/nginx.go
index 7d6dcc3fa..20fad5afb 100644
--- a/internal/ingress/controller/nginx.go
+++ b/internal/ingress/controller/nginx.go
@@ -643,8 +643,7 @@ func (n *NGINXController) testTemplate(cfg []byte) error {
 	if len(cfg) == 0 {
 		return fmt.Errorf("invalid NGINX configuration (empty)")
 	}
-	tmpDir := os.TempDir() + "/nginx"
-	tmpfile, err := os.CreateTemp(tmpDir, tempNginxPattern)
+	tmpfile, err := os.CreateTemp(filepath.Join(os.TempDir(), "nginx"), tempNginxPattern)
 	if err != nil {
 		return err
 	}
@@ -1112,11 +1111,11 @@ func (n *NGINXController) createLuaConfig(cfg *ngx_config.Configuration) error {
 func cleanTempNginxCfg() error {
 	var files []string
 
-	err := filepath.Walk(os.TempDir(), func(path string, info os.FileInfo, err error) error {
+	err := filepath.Walk(filepath.Join(os.TempDir(), "nginx"), func(path string, info os.FileInfo, err error) error {
 		if err != nil {
 			return err
 		}
-		if info.IsDir() && os.TempDir() != path {
+		if info.IsDir() && path != filepath.Join(os.TempDir(), "nginx") {
 			return filepath.SkipDir
 		}
 
@@ -1135,7 +1134,7 @@ func cleanTempNginxCfg() error {
 	}
 
 	for _, file := range files {
-		err := os.Remove(file)
+		err = os.Remove(file)
 		if err != nil {
 			return err
 		}
diff --git a/internal/ingress/controller/nginx_test.go b/internal/ingress/controller/nginx_test.go
index 7b00916c7..fc0a5b6d2 100644
--- a/internal/ingress/controller/nginx_test.go
+++ b/internal/ingress/controller/nginx_test.go
@@ -361,10 +361,11 @@ func TestCleanTempNginxCfg(t *testing.T) {
 		t.Fatal(err)
 	}
 
-	tmpfile, err := os.CreateTemp("", tempNginxPattern)
+	tmpfile, err := os.CreateTemp(filepath.Join(os.TempDir(), "nginx"), tempNginxPattern)
 	if err != nil {
 		t.Fatal(err)
 	}
+	expectedDeletedFile := tmpfile.Name()
 	defer tmpfile.Close()
 
 	dur, err := time.ParseDuration("-10m")
@@ -378,10 +379,11 @@ func TestCleanTempNginxCfg(t *testing.T) {
 		t.Fatal(err)
 	}
 
-	tmpfile, err = os.CreateTemp("", tempNginxPattern)
+	tmpfile, err = os.CreateTemp(filepath.Join(os.TempDir(), "nginx"), tempNginxPattern)
 	if err != nil {
 		t.Fatal(err)
 	}
+	expectedFile := tmpfile.Name()
 	defer tmpfile.Close()
 
 	err = cleanTempNginxCfg()
@@ -391,8 +393,8 @@ func TestCleanTempNginxCfg(t *testing.T) {
 
 	var files []string
 
-	err = filepath.Walk(os.TempDir(), func(path string, info os.FileInfo, _ error) error {
-		if info.IsDir() && os.TempDir() != path {
+	err = filepath.Walk(filepath.Join(os.TempDir(), "nginx"), func(path string, info os.FileInfo, _ error) error {
+		if info.IsDir() && filepath.Join(os.TempDir(), "nginx") != path {
 			return filepath.SkipDir
 		}
 
@@ -405,8 +407,18 @@ func TestCleanTempNginxCfg(t *testing.T) {
 		t.Fatal(err)
 	}
 
-	if len(files) != 1 {
-		t.Errorf("expected one file but %d were found", len(files))
+	// some other files can be created by other tests
+	var found bool
+	for _, file := range files {
+		if file == expectedDeletedFile {
+			t.Errorf("file %s should be deleted", file)
+		}
+		if file == expectedFile {
+			found = true
+		}
+	}
+	if !found {
+		t.Errorf("file %s should not be deleted", expectedFile)
 	}
 }
 

From 0b90088dde06eb61ba8e3d9cff5c82b970d8dcb3 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 28 Oct 2024 11:04:54 +0000
Subject: [PATCH 1507/1641] Bump the actions group with 5 updates (#12235)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/chart.yaml               |  4 ++--
 .github/workflows/ci.yaml                  | 22 +++++++++++-----------
 .github/workflows/depreview.yaml           |  4 ++--
 .github/workflows/docs.yaml                |  4 ++--
 .github/workflows/golangci-lint.yml        |  4 ++--
 .github/workflows/images.yaml              |  8 ++++----
 .github/workflows/perftest.yaml            |  2 +-
 .github/workflows/plugin.yaml              |  4 ++--
 .github/workflows/scorecards.yml           |  4 ++--
 .github/workflows/vulnerability-scans.yaml |  6 +++---
 .github/workflows/zz-tmpl-images.yaml      |  6 +++---
 .github/workflows/zz-tmpl-k8s-e2e.yaml     |  2 +-
 12 files changed, 35 insertions(+), 35 deletions(-)

diff --git a/.github/workflows/chart.yaml b/.github/workflows/chart.yaml
index 63fc18b0c..f2c017fd5 100644
--- a/.github/workflows/chart.yaml
+++ b/.github/workflows/chart.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Set up Python
-        uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 # v5.2.0
+        uses: actions/setup-python@0b93645e9fea7318ecaed2b359559ac225c90a2b # v5.3.0
         with:
           python-version: 3.x
 
@@ -45,7 +45,7 @@ jobs:
           git config --global user.email "${GITHUB_ACTOR}@users.noreply.github.com"
 
       - name: Checkout code
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           fetch-depth: 0
 
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index dd070474d..28034c586 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -47,7 +47,7 @@ jobs:
     steps:
 
       - name: Checkout
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -81,7 +81,7 @@ jobs:
       (needs.changes.outputs.lua == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     steps:
       - name: Checkout
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       
       - name: Lint Lua
         uses: lunarmodules/luacheck@v1
@@ -95,14 +95,14 @@ jobs:
       (needs.changes.outputs.go == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     steps:
       - name: Checkout
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
+        uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
@@ -119,12 +119,12 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.docs == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     steps:
       - name: Checkout
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
       - name: Set up Go
         id: go
-        uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
+        uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
@@ -144,7 +144,7 @@ jobs:
         PLATFORMS: linux/amd64
     steps:
       - name: Checkout
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - name: Get go version
         id: golangversion
@@ -153,7 +153,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
+        uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
         with:
           go-version: ${{ steps.golangversion.outputs.version }}
           check-latest: true
@@ -218,7 +218,7 @@ jobs:
 
     steps:
       - name: Set up Python
-        uses: actions/setup-python@f677139bbe7f9c59b41e40162b753c062f5d49a3 # v5.2.0
+        uses: actions/setup-python@0b93645e9fea7318ecaed2b359559ac225c90a2b # v5.3.0
         with:
           python-version: 3.x
 
@@ -241,7 +241,7 @@ jobs:
         run: helm plugin install https://github.com/helm-unittest/helm-unittest
 
       - name: Checkout code
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           fetch-depth: 0
 
@@ -274,7 +274,7 @@ jobs:
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - name: Download cache
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 32b98c2b2..773e963ef 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -9,6 +9,6 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 'Checkout Repository'
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@5a2ce3f5b92ee19cbb1541a4984c76d921601d7c # v4.3.4
+        uses: actions/dependency-review-action@a6993e2c61fd5dc440b409aa1d6904921c5e1894 # v4.3.5
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
index 0d0b20a5a..40ccba278 100644
--- a/.github/workflows/docs.yaml
+++ b/.github/workflows/docs.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
@@ -47,7 +47,7 @@ jobs:
 
     steps:
       - name: Checkout master
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - name: Deploy
         uses: ./.github/actions/mkdocs
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index c71f090af..e3959eb3c 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -15,14 +15,14 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - name: Get go version
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
+        uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index e070741bb..457e979c0 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -39,7 +39,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -138,14 +138,14 @@ jobs:
         k8s: [v1.28.13, v1.29.8, v1.30.4, v1.31.0]
     steps:
     - name: Checkout
-      uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+      uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
     - name: Get go version
       run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
 
     - name: Set up Go
       id: go
-      uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
+      uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
       with:
         go-version: ${{ env.GOLANG_VERSION }}
         check-latest: true
@@ -172,7 +172,7 @@ jobs:
       PLATFORMS: linux/amd64,linux/arm,linux/arm64
     steps:
       - name: Checkout
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - name: Set up QEMU
         uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf # v3.2.0
       - name: Set up Docker Buildx
diff --git a/.github/workflows/perftest.yaml b/.github/workflows/perftest.yaml
index 044c3a260..de22d53d9 100644
--- a/.github/workflows/perftest.yaml
+++ b/.github/workflows/perftest.yaml
@@ -19,7 +19,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - name: Install K6
         run: |
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 627a0a0b9..784977bc8 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -12,7 +12,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           fetch-depth: 0
 
@@ -20,7 +20,7 @@ jobs:
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
 
       - name: Set up Go
-        uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2
+        uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index eea0295c4..02a0fdf12 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -27,7 +27,7 @@ jobs:
 
     steps:
       - name: "Checkout code"
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           persist-credentials: false
 
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@f779452ac5af1c261dce0346a8f964149f49322b # v3.26.13
+        uses: github/codeql-action/upload-sarif@662472033e021d55d94146f66f6058822b0b39fd # v3.27.0
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 368a33d91..3604b0945 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -22,7 +22,7 @@ jobs:
       versions: ${{ steps.version.outputs.TAGS }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           fetch-depth: 0
 
@@ -52,7 +52,7 @@ jobs:
         versions: ${{ fromJSON(needs.version.outputs.versions) }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - shell: bash
         id: test
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@f779452ac5af1c261dce0346a8f964149f49322b # v3.26.13
+        uses: github/codeql-action/upload-sarif@662472033e021d55d94146f66f6058822b0b39fd # v3.27.0
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository
diff --git a/.github/workflows/zz-tmpl-images.yaml b/.github/workflows/zz-tmpl-images.yaml
index efadb8f89..5e98ddf70 100644
--- a/.github/workflows/zz-tmpl-images.yaml
+++ b/.github/workflows/zz-tmpl-images.yaml
@@ -31,7 +31,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - uses: dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2
         id: filter
         with:
@@ -48,7 +48,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - name: Build
         run: |
@@ -67,7 +67,7 @@ jobs:
       PLATFORMS: ${{ inputs.platforms-publish }}
     steps:
     - name: Checkout
-      uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+      uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
     - name: Login to GitHub Container Registry
       uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index f47626b3d..996b673f9 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -20,7 +20,7 @@ jobs:
 
     steps:
       - name: Checkout
-        uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4.2.1
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - name: cache
         uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8

From c68e208734e4a57da51511fd3af5126a6928a70c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 28 Oct 2024 12:54:54 +0000
Subject: [PATCH 1508/1641] Bump github.com/opencontainers/runc from 1.1.15 to
 1.2.0 (#12238)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  5 +++--
 go.sum | 10 ++++++----
 2 files changed, 9 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index d3043fbde..61ad5391d 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.4
 	github.com/onsi/ginkgo/v2 v2.20.2
-	github.com/opencontainers/runc v1.1.15
+	github.com/opencontainers/runc v1.2.0
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.5
 	github.com/prometheus/client_model v0.6.1
@@ -49,6 +49,7 @@ require (
 	github.com/common-nighthawk/go-figure v0.0.0-20210622060536-734e95fb86be // indirect
 	github.com/fxamacker/cbor/v2 v2.7.0 // indirect
 	github.com/klauspost/compress v1.17.9 // indirect
+	github.com/moby/sys/userns v0.1.0 // indirect
 	github.com/x448/float16 v0.8.4 // indirect
 	gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
 	sigs.k8s.io/release-utils v0.8.3 // indirect
@@ -62,7 +63,7 @@ require (
 	github.com/blang/semver/v4 v4.0.0 // indirect
 	github.com/cespare/xxhash/v2 v2.3.0 // indirect
 	github.com/coreos/go-systemd/v22 v22.5.0 // indirect
-	github.com/cyphar/filepath-securejoin v0.2.4 // indirect
+	github.com/cyphar/filepath-securejoin v0.3.4 // indirect
 	github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc // indirect
 	github.com/eapache/queue v1.1.0 // indirect
 	github.com/emicklei/go-restful/v3 v3.12.0 // indirect
diff --git a/go.sum b/go.sum
index b9926e68e..2801e40ea 100644
--- a/go.sum
+++ b/go.sum
@@ -21,8 +21,8 @@ github.com/coreos/go-systemd/v22 v22.5.0/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSV
 github.com/cpuguy83/go-md2man/v2 v2.0.4/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.18 h1:n56/Zwd5o6whRC5PMGretI4IdRLlmBXYNjScPaBgsbY=
 github.com/creack/pty v1.1.18/go.mod h1:MOBLtS5ELjhRRrroQr9kyvTxUAFNvYEK993ew/Vr4O4=
-github.com/cyphar/filepath-securejoin v0.2.4 h1:Ugdm7cg7i6ZK6x3xDF1oEu1nfkyfH53EtKeQYTC3kyg=
-github.com/cyphar/filepath-securejoin v0.2.4/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
+github.com/cyphar/filepath-securejoin v0.3.4 h1:VBWugsJh2ZxJmLFSM06/0qzQyiQX2Qs0ViKrUAcqdZ8=
+github.com/cyphar/filepath-securejoin v0.3.4/go.mod h1:8s/MCNJREmFK0H02MF6Ihv1nakJe4L/w3WZLHNkvlYM=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc h1:U9qPSI2PIWSS1VwoXQT9A3Wy9MM3WgvqSxFWenqJduM=
@@ -139,6 +139,8 @@ github.com/mmarkdown/mmark v2.0.40+incompatible h1:vMeUeDzBK3H+/mU0oMVfMuhSXJlIA
 github.com/mmarkdown/mmark v2.0.40+incompatible/go.mod h1:Uvmoz7tvsWpr7bMVxIpqZPyN3FbOtzDmnsJDFp7ltJs=
 github.com/moby/sys/mountinfo v0.7.1 h1:/tTvQaSJRr2FshkhXiIpux6fQ2Zvc4j7tAhMTStAG2g=
 github.com/moby/sys/mountinfo v0.7.1/go.mod h1:IJb6JQeOklcdMU9F5xQ8ZALD+CUr5VlGpwtX+VE0rpI=
+github.com/moby/sys/userns v0.1.0 h1:tVLXkFOxVu9A64/yh59slHVv9ahO9UIev4JZusOLG/g=
+github.com/moby/sys/userns v0.1.0/go.mod h1:IHUYgu/kao6N8YZlp9Cf444ySSvCmDlmzUcYfDHOl28=
 github.com/moby/term v0.5.0 h1:xt8Q1nalod/v7BqbG21f8mQPqH+xAaC9C3N3wfWbVP0=
 github.com/moby/term v0.5.0/go.mod h1:8FzsFHVUBGZdbDsJw/ot+X+d5HLUbvklYLJ9uGfcI3Y=
 github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
@@ -169,8 +171,8 @@ github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7J
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.34.1 h1:EUMJIKUjM8sKjYbtxQI9A4z2o+rruxnzNvpknOXie6k=
 github.com/onsi/gomega v1.34.1/go.mod h1:kU1QgUvBDLXBJq618Xvm2LUX6rSAfRaFRTcdOeDLwwY=
-github.com/opencontainers/runc v1.1.15 h1:QMmSU2q1YUg3iOJX11phnaDi2A5/zhx4BR6h+XZ1DMA=
-github.com/opencontainers/runc v1.1.15/go.mod h1:E4C2z+7BxR7GHXp0hAY53mek+x49X1LjPNeMTfRGvOA=
+github.com/opencontainers/runc v1.2.0 h1:qke7ZVCmJcKrJVY2iHJVC+0kql9uYdkusOPsQOOeBw4=
+github.com/opencontainers/runc v1.2.0/go.mod h1:/PXzF0h531HTMsYQnmxXkBD7YaGShm/2zcRB79dksUc=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
 github.com/opencontainers/runtime-spec v1.2.0/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=

From bce6b4d73f88a777d38d5e26b5048549902513aa Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 28 Oct 2024 13:40:54 +0000
Subject: [PATCH 1509/1641] Bump the go group across 3 directories with 11
 updates (#12237)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod                                        | 20 +++++-----
 go.sum                                        | 40 +++++++++----------
 images/ext-auth-example-authsvc/rootfs/go.mod |  2 +-
 images/ext-auth-example-authsvc/rootfs/go.sum |  4 +-
 images/kube-webhook-certgen/rootfs/go.mod     |  8 ++--
 images/kube-webhook-certgen/rootfs/go.sum     | 16 ++++----
 6 files changed, 45 insertions(+), 45 deletions(-)

diff --git a/go.mod b/go.mod
index 61ad5391d..40ff30f4d 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.5
 	github.com/prometheus/client_model v0.6.1
-	github.com/prometheus/common v0.60.0
+	github.com/prometheus/common v0.60.1
 	github.com/spf13/cobra v1.8.1
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.9.0
@@ -31,17 +31,17 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.31.1
-	k8s.io/apiextensions-apiserver v0.31.1
-	k8s.io/apimachinery v0.31.1
-	k8s.io/apiserver v0.31.1
-	k8s.io/cli-runtime v0.31.1
-	k8s.io/client-go v0.31.1
-	k8s.io/code-generator v0.31.1
-	k8s.io/component-base v0.31.1
+	k8s.io/api v0.31.2
+	k8s.io/apiextensions-apiserver v0.31.2
+	k8s.io/apimachinery v0.31.2
+	k8s.io/apiserver v0.31.2
+	k8s.io/cli-runtime v0.31.2
+	k8s.io/client-go v0.31.2
+	k8s.io/code-generator v0.31.2
+	k8s.io/component-base v0.31.2
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.19.0
+	sigs.k8s.io/controller-runtime v0.19.1
 	sigs.k8s.io/mdtoc v1.4.0
 )
 
diff --git a/go.sum b/go.sum
index 2801e40ea..416c75ea4 100644
--- a/go.sum
+++ b/go.sum
@@ -186,8 +186,8 @@ github.com/prometheus/client_golang v1.20.5 h1:cxppBPuYhUnsO6yo/aoRol4L7q7UFfdm+
 github.com/prometheus/client_golang v1.20.5/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
 github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
-github.com/prometheus/common v0.60.0 h1:+V9PAREWNvJMAuJ1x1BaWl9dewMW4YrHZQbx0sJNllA=
-github.com/prometheus/common v0.60.0/go.mod h1:h0LYf1R1deLSKtD4Vdg8gy4RuOvENW2J/h19V5NADQw=
+github.com/prometheus/common v0.60.1 h1:FUas6GcOw66yB/73KC+BOZoFJmbo/1pojoILArPAaSc=
+github.com/prometheus/common v0.60.1/go.mod h1:h0LYf1R1deLSKtD4Vdg8gy4RuOvENW2J/h19V5NADQw=
 github.com/prometheus/procfs v0.15.1 h1:YagwOFzUgYfKKHX6Dr+sHT7km/hxC76UB0learggepc=
 github.com/prometheus/procfs v0.15.1/go.mod h1:fB45yRUv8NstnjriLhBQLuOUt+WW4BsoGhij/e3PBqk=
 github.com/rogpeppe/go-internal v1.12.0 h1:exVL4IDcn6na9z1rAb56Vxr+CgyK3nn3O+epU5NdKM8=
@@ -338,22 +338,22 @@ gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.31.1 h1:Xe1hX/fPW3PXYYv8BlozYqw63ytA92snr96zMW9gWTU=
-k8s.io/api v0.31.1/go.mod h1:sbN1g6eY6XVLeqNsZGLnI5FwVseTrZX7Fv3O26rhAaI=
-k8s.io/apiextensions-apiserver v0.31.1 h1:L+hwULvXx+nvTYX/MKM3kKMZyei+UiSXQWciX/N6E40=
-k8s.io/apiextensions-apiserver v0.31.1/go.mod h1:tWMPR3sgW+jsl2xm9v7lAyRF1rYEK71i9G5dRtkknoQ=
-k8s.io/apimachinery v0.31.1 h1:mhcUBbj7KUjaVhyXILglcVjuS4nYXiwC+KKFBgIVy7U=
-k8s.io/apimachinery v0.31.1/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
-k8s.io/apiserver v0.31.1 h1:Sars5ejQDCRBY5f7R3QFHdqN3s61nhkpaX8/k1iEw1c=
-k8s.io/apiserver v0.31.1/go.mod h1:lzDhpeToamVZJmmFlaLwdYZwd7zB+WYRYIboqA1kGxM=
-k8s.io/cli-runtime v0.31.1 h1:/ZmKhmZ6hNqDM+yf9s3Y4KEYakNXUn5sod2LWGGwCuk=
-k8s.io/cli-runtime v0.31.1/go.mod h1:pKv1cDIaq7ehWGuXQ+A//1OIF+7DI+xudXtExMCbe9U=
-k8s.io/client-go v0.31.1 h1:f0ugtWSbWpxHR7sjVpQwuvw9a3ZKLXX0u0itkFXufb0=
-k8s.io/client-go v0.31.1/go.mod h1:sKI8871MJN2OyeqRlmA4W4KM9KBdBUpDLu/43eGemCg=
-k8s.io/code-generator v0.31.1 h1:GvkRZEP2g2UnB2QKT2Dgc/kYxIkDxCHENv2Q1itioVs=
-k8s.io/code-generator v0.31.1/go.mod h1:oL2ky46L48osNqqZAeOcWWy0S5BXj50vVdwOtTefqIs=
-k8s.io/component-base v0.31.1 h1:UpOepcrX3rQ3ab5NB6g5iP0tvsgJWzxTyAo20sgYSy8=
-k8s.io/component-base v0.31.1/go.mod h1:WGeaw7t/kTsqpVTaCoVEtillbqAhF2/JgvO0LDOMa0w=
+k8s.io/api v0.31.2 h1:3wLBbL5Uom/8Zy98GRPXpJ254nEFpl+hwndmk9RwmL0=
+k8s.io/api v0.31.2/go.mod h1:bWmGvrGPssSK1ljmLzd3pwCQ9MgoTsRCuK35u6SygUk=
+k8s.io/apiextensions-apiserver v0.31.2 h1:W8EwUb8+WXBLu56ser5IudT2cOho0gAKeTOnywBLxd0=
+k8s.io/apiextensions-apiserver v0.31.2/go.mod h1:i+Geh+nGCJEGiCGR3MlBDkS7koHIIKWVfWeRFiOsUcM=
+k8s.io/apimachinery v0.31.2 h1:i4vUt2hPK56W6mlT7Ry+AO8eEsyxMD1U44NR22CLTYw=
+k8s.io/apimachinery v0.31.2/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
+k8s.io/apiserver v0.31.2 h1:VUzOEUGRCDi6kX1OyQ801m4A7AUPglpsmGvdsekmcI4=
+k8s.io/apiserver v0.31.2/go.mod h1:o3nKZR7lPlJqkU5I3Ove+Zx3JuoFjQobGX1Gctw6XuE=
+k8s.io/cli-runtime v0.31.2 h1:7FQt4C4Xnqx8V1GJqymInK0FFsoC+fAZtbLqgXYVOLQ=
+k8s.io/cli-runtime v0.31.2/go.mod h1:XROyicf+G7rQ6FQJMbeDV9jqxzkWXTYD6Uxd15noe0Q=
+k8s.io/client-go v0.31.2 h1:Y2F4dxU5d3AQj+ybwSMqQnpZH9F30//1ObxOKlTI9yc=
+k8s.io/client-go v0.31.2/go.mod h1:NPa74jSVR/+eez2dFsEIHNa+3o09vtNaWwWwb1qSxSs=
+k8s.io/code-generator v0.31.2 h1:xLWxG0HEpMSHfcM//3u3Ro2Hmc6AyyLINQS//Z2GEOI=
+k8s.io/code-generator v0.31.2/go.mod h1:eEQHXgBU/m7LDaToDoiz3t97dUUVyOblQdwOr8rivqc=
+k8s.io/component-base v0.31.2 h1:Z1J1LIaC0AV+nzcPRFqfK09af6bZ4D1nAOpWsy9owlA=
+k8s.io/component-base v0.31.2/go.mod h1:9PeyyFN/drHjtJZMCTkSpQJS3U9OXORnHQqMLDz0sUQ=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 h1:bKcdZJOPICVmIIuaM9+MXmapE94dn5AYv5ODs1jA43o=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
@@ -364,8 +364,8 @@ k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 h1:pUdcCO1Lk/tbT5ztQWOBi5HBgbBP1
 k8s.io/utils v0.0.0-20240711033017-18e509b52bc8/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
-sigs.k8s.io/controller-runtime v0.19.0 h1:nWVM7aq+Il2ABxwiCizrVDSlmDcshi9llbaFbC0ji/Q=
-sigs.k8s.io/controller-runtime v0.19.0/go.mod h1:iRmWllt8IlaLjvTTDLhRBXIEtkCK6hwVBJJsYS9Ajf4=
+sigs.k8s.io/controller-runtime v0.19.1 h1:Son+Q40+Be3QWb+niBXAg2vFiYWolDjjRfO8hn/cxOk=
+sigs.k8s.io/controller-runtime v0.19.1/go.mod h1:iRmWllt8IlaLjvTTDLhRBXIEtkCK6hwVBJJsYS9Ajf4=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/kustomize/api v0.17.2 h1:E7/Fjk7V5fboiuijoZHgs4aHuexi5Y2loXlVOAVAG5g=
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index 7e488b484..433c5caf4 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -2,6 +2,6 @@ module example.com/authsvc
 
 go 1.22.8
 
-require k8s.io/apimachinery v0.31.1
+require k8s.io/apimachinery v0.31.2
 
 require github.com/google/uuid v1.6.0 // indirect
diff --git a/images/ext-auth-example-authsvc/rootfs/go.sum b/images/ext-auth-example-authsvc/rootfs/go.sum
index a3b9e420d..8a3486b7b 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.sum
+++ b/images/ext-auth-example-authsvc/rootfs/go.sum
@@ -1,4 +1,4 @@
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-k8s.io/apimachinery v0.31.1 h1:mhcUBbj7KUjaVhyXILglcVjuS4nYXiwC+KKFBgIVy7U=
-k8s.io/apimachinery v0.31.1/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
+k8s.io/apimachinery v0.31.2 h1:i4vUt2hPK56W6mlT7Ry+AO8eEsyxMD1U44NR22CLTYw=
+k8s.io/apimachinery v0.31.2/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 5caee19a2..15ae3d4de 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -6,10 +6,10 @@ require (
 	github.com/onrik/logrus v0.11.0
 	github.com/sirupsen/logrus v1.9.3
 	github.com/spf13/cobra v1.8.1
-	k8s.io/api v0.31.1
-	k8s.io/apimachinery v0.31.1
-	k8s.io/client-go v0.31.1
-	k8s.io/kube-aggregator v0.31.1
+	k8s.io/api v0.31.2
+	k8s.io/apimachinery v0.31.2
+	k8s.io/client-go v0.31.2
+	k8s.io/kube-aggregator v0.31.2
 )
 
 require (
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index da633e6db..3f82c4591 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -148,16 +148,16 @@ gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.31.1 h1:Xe1hX/fPW3PXYYv8BlozYqw63ytA92snr96zMW9gWTU=
-k8s.io/api v0.31.1/go.mod h1:sbN1g6eY6XVLeqNsZGLnI5FwVseTrZX7Fv3O26rhAaI=
-k8s.io/apimachinery v0.31.1 h1:mhcUBbj7KUjaVhyXILglcVjuS4nYXiwC+KKFBgIVy7U=
-k8s.io/apimachinery v0.31.1/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
-k8s.io/client-go v0.31.1 h1:f0ugtWSbWpxHR7sjVpQwuvw9a3ZKLXX0u0itkFXufb0=
-k8s.io/client-go v0.31.1/go.mod h1:sKI8871MJN2OyeqRlmA4W4KM9KBdBUpDLu/43eGemCg=
+k8s.io/api v0.31.2 h1:3wLBbL5Uom/8Zy98GRPXpJ254nEFpl+hwndmk9RwmL0=
+k8s.io/api v0.31.2/go.mod h1:bWmGvrGPssSK1ljmLzd3pwCQ9MgoTsRCuK35u6SygUk=
+k8s.io/apimachinery v0.31.2 h1:i4vUt2hPK56W6mlT7Ry+AO8eEsyxMD1U44NR22CLTYw=
+k8s.io/apimachinery v0.31.2/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
+k8s.io/client-go v0.31.2 h1:Y2F4dxU5d3AQj+ybwSMqQnpZH9F30//1ObxOKlTI9yc=
+k8s.io/client-go v0.31.2/go.mod h1:NPa74jSVR/+eez2dFsEIHNa+3o09vtNaWwWwb1qSxSs=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
 k8s.io/klog/v2 v2.130.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
-k8s.io/kube-aggregator v0.31.1 h1:vrYBTTs3xMrpiEsmBjsLETZE9uuX67oQ8B3i1BFfMPw=
-k8s.io/kube-aggregator v0.31.1/go.mod h1:+aW4NX50uneozN+BtoCxI4g7ND922p8Wy3tWKFDiWVk=
+k8s.io/kube-aggregator v0.31.2 h1:Uw1zUP2D/4wiSjKWVVzSOcCGLuW/+IdRwjjC0FJooYU=
+k8s.io/kube-aggregator v0.31.2/go.mod h1:41/VIXH+/Qcg9ERNAY6bRF/WQR6xL1wFgYagdHac1X4=
 k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 h1:BZqlfIlq5YbRMFko6/PM7FjZpUb45WallggurYhKGag=
 k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340/go.mod h1:yD4MZYeKMBwQKVht279WycxKyM84kkAx2DPrTXaeb98=
 k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 h1:pUdcCO1Lk/tbT5ztQWOBi5HBgbBP1J8+AsQnQCKsi8A=

From 4f62e980bec084513fdc05a03f91e2481218d1d9 Mon Sep 17 00:00:00 2001
From: Antonio Ojea <antonio.ojea.garcia@gmail.com>
Date: Tue, 29 Oct 2024 08:00:07 +0100
Subject: [PATCH 1510/1641] Deploy: Use LoadBalancer for KIND. (#12232)

---
 hack/manifest-templates/provider/kind/values.yaml | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/hack/manifest-templates/provider/kind/values.yaml b/hack/manifest-templates/provider/kind/values.yaml
index ed636f372..6140f6500 100644
--- a/hack/manifest-templates/provider/kind/values.yaml
+++ b/hack/manifest-templates/provider/kind/values.yaml
@@ -8,11 +8,9 @@ controller:
     enabled: true
   terminationGracePeriodSeconds: 0
   service:
-    type: NodePort
+    type: LoadBalancer
   watchIngressWithoutClass: true
 
-  nodeSelector:
-    ingress-ready: "true"
   tolerations:
     - key: "node-role.kubernetes.io/master"
       operator: "Equal"

From 6608eb23b022b8840f65ffcc3576c7c68719489f Mon Sep 17 00:00:00 2001
From: Aran Shavit <Aranshavit@gmail.com>
Date: Tue, 29 Oct 2024 14:42:18 +0200
Subject: [PATCH 1511/1641] CI: Fix chart testing. (#12257)

Signed-off-by: Aran Shavit <Aranshavit@gmail.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 .github/workflows/ci.yaml                                       | 2 +-
 .../tests/admission-webhooks/job-patch/serviceaccount_test.yaml | 2 +-
 .../tests/admission-webhooks/validating-webhook_test.yaml       | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 28034c586..c925264a8 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -256,7 +256,7 @@ jobs:
           git diff --exit-code charts/ingress-nginx/README.md
 
       - name: Run tests
-        run: helm unittest charts/ingress-nginx
+        run: helm unittest charts/ingress-nginx --file "tests/**/*_test.yaml"
 
   chart-test:
     name: Chart / Test
diff --git a/charts/ingress-nginx/tests/admission-webhooks/job-patch/serviceaccount_test.yaml b/charts/ingress-nginx/tests/admission-webhooks/job-patch/serviceaccount_test.yaml
index 7c30d1e66..f72bc4383 100644
--- a/charts/ingress-nginx/tests/admission-webhooks/job-patch/serviceaccount_test.yaml
+++ b/charts/ingress-nginx/tests/admission-webhooks/job-patch/serviceaccount_test.yaml
@@ -20,7 +20,7 @@ tests:
           of: ServiceAccount
       - equal:
           path: metadata.name
-          value: ingress-nginx-admission
+          value: RELEASE-NAME-ingress-nginx-admission
 
   - it: should create a ServiceAccount with specified name if `controller.admissionWebhooks.patch.serviceAccount.name` is set
     set:
diff --git a/charts/ingress-nginx/tests/admission-webhooks/validating-webhook_test.yaml b/charts/ingress-nginx/tests/admission-webhooks/validating-webhook_test.yaml
index b9d6d780b..47b6b6873 100644
--- a/charts/ingress-nginx/tests/admission-webhooks/validating-webhook_test.yaml
+++ b/charts/ingress-nginx/tests/admission-webhooks/validating-webhook_test.yaml
@@ -20,7 +20,7 @@ tests:
           of: ValidatingWebhookConfiguration
       - equal:
           path: metadata.name
-          value: RELEASE-NAME-admission
+          value: RELEASE-NAME-ingress-nginx-admission
 
   - it: should create a ValidatingWebhookConfiguration with a custom port if `controller.admissionWebhooks.service.servicePort` is set
     set:

From 7356c4f40f49bb2898d08f7bc272cfd04e0c40db Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Tue, 29 Oct 2024 10:22:54 -0300
Subject: [PATCH 1512/1641] Lua: Extract external auth into file. (#12250)

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 .../ingress/controller/template/template.go   | 11 ++-----
 .../controller/template/template_test.go      |  5 +---
 .../lua/nginx/ngx_conf_external_auth.lua      | 30 +++++++++++++++++++
 rootfs/etc/nginx/template/nginx.tmpl          | 18 +++--------
 test/e2e/annotations/auth.go                  |  4 +--
 5 files changed, 40 insertions(+), 28 deletions(-)
 create mode 100644 rootfs/etc/nginx/lua/nginx/ngx_conf_external_auth.lua

diff --git a/internal/ingress/controller/template/template.go b/internal/ingress/controller/template/template.go
index d2c8a05a9..ed052e4ec 100644
--- a/internal/ingress/controller/template/template.go
+++ b/internal/ingress/controller/template/template.go
@@ -602,17 +602,12 @@ func buildAuthResponseHeaders(proxySetHeader string, headers []string, lua bool)
 	return res
 }
 
-func buildAuthUpstreamLuaHeaders(headers []string) []string {
-	res := []string{}
-
+func buildAuthUpstreamLuaHeaders(headers []string) string {
 	if len(headers) == 0 {
-		return res
+		return ""
 	}
 
-	for i, h := range headers {
-		res = append(res, fmt.Sprintf("ngx.var.authHeader%d = res.header['%s']", i, h))
-	}
-	return res
+	return strings.Join(headers, ",")
 }
 
 func buildAuthProxySetHeaders(headers map[string]string) []string {
diff --git a/internal/ingress/controller/template/template_test.go b/internal/ingress/controller/template/template_test.go
index 59d2d6256..6553f5daf 100644
--- a/internal/ingress/controller/template/template_test.go
+++ b/internal/ingress/controller/template/template_test.go
@@ -537,10 +537,7 @@ func TestBuildAuthResponseHeaders(t *testing.T) {
 
 func TestBuildAuthResponseLua(t *testing.T) {
 	externalAuthResponseHeaders := []string{"h1", "H-With-Caps-And-Dashes"}
-	expected := []string{
-		"ngx.var.authHeader0 = res.header['h1']",
-		"ngx.var.authHeader1 = res.header['H-With-Caps-And-Dashes']",
-	}
+	expected := "h1,H-With-Caps-And-Dashes"
 
 	headers := buildAuthUpstreamLuaHeaders(externalAuthResponseHeaders)
 
diff --git a/rootfs/etc/nginx/lua/nginx/ngx_conf_external_auth.lua b/rootfs/etc/nginx/lua/nginx/ngx_conf_external_auth.lua
new file mode 100644
index 000000000..6c68cf07c
--- /dev/null
+++ b/rootfs/etc/nginx/lua/nginx/ngx_conf_external_auth.lua
@@ -0,0 +1,30 @@
+local auth_path = ngx.var.auth_path
+local auth_keepalive_share_vars = ngx.var.auth_keepalive_share_vars
+local auth_response_headers = ngx.var.auth_response_headers
+local ngx_re_split = require("ngx.re").split
+local ipairs = ipairs
+local ngx_log = ngx.log
+local ngx_ERR = ngx.ERR
+
+local res = ngx.location.capture(auth_path, {
+    method = ngx.HTTP_GET, body = '',
+    share_all_vars = auth_keepalive_share_vars })
+
+if res.status == ngx.HTTP_OK then
+    local header_parts, err = ngx_re_split(auth_response_headers, ",")
+    if err then
+       ngx_log(ngx_ERR, err)
+       return
+    end
+    ngx.var.auth_cookie = res.header['Set-Cookie']
+    for i, header_name in ipairs(header_parts) do
+        local varname = "authHeader" .. tostring(i)
+        ngx.var[varname] = res.header[header_name]
+    end
+    return
+end
+
+if res.status == ngx.HTTP_UNAUTHORIZED or res.status == ngx.HTTP_FORBIDDEN then
+    ngx.exit(res.status)
+end
+ngx.exit(ngx.HTTP_INTERNAL_SERVER_ERROR)
\ No newline at end of file
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index f32860dc2..e40cef244 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -1185,20 +1185,10 @@ stream {
             {{- end }}
             # `auth_request` module does not support HTTP keepalives in upstream block:
             # https://trac.nginx.org/nginx/ticket/1579
-            access_by_lua_block {
-                local res = ngx.location.capture('{{ $authPath }}', { method = ngx.HTTP_GET, body = '', share_all_vars = {{ $externalAuth.KeepaliveShareVars }} })
-                if res.status == ngx.HTTP_OK then
-                    ngx.var.auth_cookie = res.header['Set-Cookie']
-                    {{- range $line := buildAuthUpstreamLuaHeaders $externalAuth.ResponseHeaders }}
-                    {{ $line }}
-                    {{- end }}
-                    return
-                end
-                if res.status == ngx.HTTP_UNAUTHORIZED or res.status == ngx.HTTP_FORBIDDEN then
-                    ngx.exit(res.status)
-                end
-                ngx.exit(ngx.HTTP_INTERNAL_SERVER_ERROR)
-            }
+            set $auth_path '{{ $authPath }}';
+            set $auth_keepalive_share_vars {{ $externalAuth.KeepaliveShareVars }};
+            set $auth_response_headers '{{ buildAuthUpstreamLuaHeaders $externalAuth.ResponseHeaders }}';
+            access_by_lua_file /etc/nginx/lua/nginx/ngx_conf_external_auth.lua;
             {{ else }}
             auth_request        {{ $authPath }};
             auth_request_set    $auth_cookie $upstream_http_set_cookie;
diff --git a/test/e2e/annotations/auth.go b/test/e2e/annotations/auth.go
index 01c14be39..ddda1dce5 100644
--- a/test/e2e/annotations/auth.go
+++ b/test/e2e/annotations/auth.go
@@ -653,7 +653,7 @@ http {
 				func(server string) bool {
 					return strings.Contains(server, `upstream auth-external-auth`) &&
 						strings.Contains(server, `keepalive 10;`) &&
-						strings.Contains(server, `share_all_vars = false`)
+						strings.Contains(server, `set $auth_keepalive_share_vars false;`)
 				})
 		})
 
@@ -673,7 +673,7 @@ http {
 				func(server string) bool {
 					return strings.Contains(server, `upstream auth-external-auth`) &&
 						strings.Contains(server, `keepalive 10;`) &&
-						strings.Contains(server, `share_all_vars = true`)
+						strings.Contains(server, `set $auth_keepalive_share_vars true;`)
 				})
 		})
 	})

From bd76cf8f05bb48e36e76eee5a333691499379be4 Mon Sep 17 00:00:00 2001
From: Aran Shavit <Aranshavit@gmail.com>
Date: Tue, 29 Oct 2024 19:46:57 +0200
Subject: [PATCH 1513/1641] Chart: Add ServiceAccount tests. (#12261)

Signed-off-by: Aran Shavit <Aranshavit@gmail.com>
---
 .../tests/controller-serviceaccount_test.yaml | 47 +++++++++++++++++
 .../default-backend-serviceaccount_test.yaml  | 51 +++++++++++++++++++
 2 files changed, 98 insertions(+)
 create mode 100644 charts/ingress-nginx/tests/controller-serviceaccount_test.yaml
 create mode 100644 charts/ingress-nginx/tests/default-backend-serviceaccount_test.yaml

diff --git a/charts/ingress-nginx/tests/controller-serviceaccount_test.yaml b/charts/ingress-nginx/tests/controller-serviceaccount_test.yaml
new file mode 100644
index 000000000..928e53772
--- /dev/null
+++ b/charts/ingress-nginx/tests/controller-serviceaccount_test.yaml
@@ -0,0 +1,47 @@
+suite: Controller > ServiceAccount
+templates:
+  - controller-serviceaccount.yaml
+
+tests:
+  - it: should not create a ServiceAccount if `serviceAccount.create` is false
+    set:
+      serviceAccount.create: false
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a ServiceAccount if `serviceAccount.create` is true
+    set:
+      serviceAccount.create: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ServiceAccount
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx
+
+  - it: should create a ServiceAccount with specified name if `serviceAccount.name` is set
+    set:
+      serviceAccount.name: ingress-nginx-admission-test-sa
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ServiceAccount
+      - equal:
+          path: metadata.name
+          value: ingress-nginx-admission-test-sa
+
+  - it: should create a ServiceAccount with token auto-mounting disabled if `serviceAccount.automountServiceAccountToken` is false
+    set:
+      serviceAccount.automountServiceAccountToken: false
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ServiceAccount
+      - equal:
+          path: automountServiceAccountToken
+          value: false
diff --git a/charts/ingress-nginx/tests/default-backend-serviceaccount_test.yaml b/charts/ingress-nginx/tests/default-backend-serviceaccount_test.yaml
new file mode 100644
index 000000000..05a815d0a
--- /dev/null
+++ b/charts/ingress-nginx/tests/default-backend-serviceaccount_test.yaml
@@ -0,0 +1,51 @@
+suite: Default Backend > ServiceAccount
+templates:
+  - default-backend-serviceaccount.yaml
+
+tests:
+  - it: should not create a ServiceAccount if `defaultBackend.serviceAccount.create` is false
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.serviceAccount.create: false
+    asserts:
+      - hasDocuments:
+          count: 0
+
+  - it: should create a ServiceAccount if `defaultBackend.serviceAccount.create` is true
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.serviceAccount.create: true
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ServiceAccount
+      - equal:
+          path: metadata.name
+          value: RELEASE-NAME-ingress-nginx-backend
+
+  - it: should create a ServiceAccount with specified name if `defaultBackend.serviceAccount.name` is set
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.serviceAccount.name: ingress-nginx-admission-test-sa
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ServiceAccount
+      - equal:
+          path: metadata.name
+          value: ingress-nginx-admission-test-sa
+
+  - it: should create a ServiceAccount with token auto-mounting disabled if `defaultBackend.serviceAccount.automountServiceAccountToken` is false
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.serviceAccount.automountServiceAccountToken: false
+    asserts:
+      - hasDocuments:
+          count: 1
+      - isKind:
+          of: ServiceAccount
+      - equal:
+          path: automountServiceAccountToken
+          value: false

From e07f0f6890b79c0eb9dc7f541b4ce05a868b4c74 Mon Sep 17 00:00:00 2001
From: Aran Shavit <Aranshavit@gmail.com>
Date: Tue, 29 Oct 2024 22:55:25 +0200
Subject: [PATCH 1514/1641] Chart: Set `automountServiceAccountToken` in
 workloads. (#12247)

Signed-off-by: Aran Shavit <Aranshavit@gmail.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 .../job-patch/job-createSecret.yaml                  |  1 +
 .../job-patch/job-patchWebhook.yaml                  |  1 +
 .../templates/controller-daemonset.yaml              |  1 +
 .../templates/controller-deployment.yaml             |  1 +
 .../templates/default-backend-deployment.yaml        |  1 +
 .../job-patch/job-createSecret_test.yaml             | 12 ++++++++++++
 .../job-patch/job-patchWebhook_test.yaml             | 12 ++++++++++++
 .../tests/controller-daemonset_test.yaml             |  9 +++++++++
 .../tests/controller-deployment_test.yaml            |  8 ++++++++
 .../tests/default-backend-deployment_test.yaml       |  9 +++++++++
 10 files changed, 55 insertions(+)
 create mode 100644 charts/ingress-nginx/tests/admission-webhooks/job-patch/job-createSecret_test.yaml
 create mode 100644 charts/ingress-nginx/tests/admission-webhooks/job-patch/job-patchWebhook_test.yaml

diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
index af3ea12a3..bb31e60ba 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-createSecret.yaml
@@ -67,6 +67,7 @@ spec:
           {{- end }}
       restartPolicy: OnFailure
       serviceAccountName: {{ include "ingress-nginx.admissionWebhooks.patch.serviceAccountName" . }}
+      automountServiceAccountToken: {{ .Values.controller.admissionWebhooks.patch.serviceAccount.automountServiceAccountToken }}
     {{- if .Values.controller.admissionWebhooks.patch.nodeSelector }}
       nodeSelector: {{ toYaml .Values.controller.admissionWebhooks.patch.nodeSelector | nindent 8 }}
     {{- end }}
diff --git a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
index 87dd2c251..cf757c98b 100644
--- a/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
+++ b/charts/ingress-nginx/templates/admission-webhooks/job-patch/job-patchWebhook.yaml
@@ -69,6 +69,7 @@ spec:
           {{- end }}
       restartPolicy: OnFailure
       serviceAccountName: {{ include "ingress-nginx.admissionWebhooks.patch.serviceAccountName" . }}
+      automountServiceAccountToken: {{ .Values.controller.admissionWebhooks.patch.serviceAccount.automountServiceAccountToken }}
     {{- if .Values.controller.admissionWebhooks.patch.nodeSelector }}
       nodeSelector: {{ toYaml .Values.controller.admissionWebhooks.patch.nodeSelector | nindent 8 }}
     {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-daemonset.yaml b/charts/ingress-nginx/templates/controller-daemonset.yaml
index fd1b13284..804ff56d9 100644
--- a/charts/ingress-nginx/templates/controller-daemonset.yaml
+++ b/charts/ingress-nginx/templates/controller-daemonset.yaml
@@ -202,6 +202,7 @@ spec:
       topologySpreadConstraints: {{ tpl (toYaml .Values.controller.topologySpreadConstraints) $ | nindent 8 }}
     {{- end }}
       serviceAccountName: {{ template "ingress-nginx.serviceAccountName" . }}
+      automountServiceAccountToken: {{ .Values.serviceAccount.automountServiceAccountToken }}
       terminationGracePeriodSeconds: {{ .Values.controller.terminationGracePeriodSeconds }}
     {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraVolumes .Values.controller.extraModules) }}
       volumes:
diff --git a/charts/ingress-nginx/templates/controller-deployment.yaml b/charts/ingress-nginx/templates/controller-deployment.yaml
index cc41bfbc7..da8ce97d3 100644
--- a/charts/ingress-nginx/templates/controller-deployment.yaml
+++ b/charts/ingress-nginx/templates/controller-deployment.yaml
@@ -208,6 +208,7 @@ spec:
       topologySpreadConstraints: {{ tpl (toYaml .Values.controller.topologySpreadConstraints) $ | nindent 8 }}
     {{- end }}
       serviceAccountName: {{ template "ingress-nginx.serviceAccountName" . }}
+      automountServiceAccountToken: {{ .Values.serviceAccount.automountServiceAccountToken }}
       terminationGracePeriodSeconds: {{ .Values.controller.terminationGracePeriodSeconds }}
     {{- if (or .Values.controller.customTemplate.configMapName .Values.controller.extraVolumeMounts .Values.controller.admissionWebhooks.enabled .Values.controller.extraVolumes .Values.controller.extraModules) }}
       volumes:
diff --git a/charts/ingress-nginx/templates/default-backend-deployment.yaml b/charts/ingress-nginx/templates/default-backend-deployment.yaml
index f7d9de121..4a17f7444 100644
--- a/charts/ingress-nginx/templates/default-backend-deployment.yaml
+++ b/charts/ingress-nginx/templates/default-backend-deployment.yaml
@@ -103,6 +103,7 @@ spec:
       nodeSelector: {{ toYaml .Values.defaultBackend.nodeSelector | nindent 8 }}
     {{- end }}
       serviceAccountName: {{ include "ingress-nginx.defaultBackend.serviceAccountName" . }}
+      automountServiceAccountToken: {{ .Values.defaultBackend.serviceAccount.automountServiceAccountToken }}
     {{- if .Values.defaultBackend.tolerations }}
       tolerations: {{ toYaml .Values.defaultBackend.tolerations | nindent 8 }}
     {{- end }}
diff --git a/charts/ingress-nginx/tests/admission-webhooks/job-patch/job-createSecret_test.yaml b/charts/ingress-nginx/tests/admission-webhooks/job-patch/job-createSecret_test.yaml
new file mode 100644
index 000000000..b5272553b
--- /dev/null
+++ b/charts/ingress-nginx/tests/admission-webhooks/job-patch/job-createSecret_test.yaml
@@ -0,0 +1,12 @@
+suite: Admission Webhooks > Patch Job > Create Secret Job
+templates:
+  - admission-webhooks/job-patch/job-createSecret.yaml
+
+tests:
+  - it: should create a Job with token auto-mounting disabled if `controller.admissionWebhooks.patch.serviceAccount.automountServiceAccountToken` is false
+    set:
+      controller.admissionWebhooks.patch.serviceAccount.automountServiceAccountToken: false
+    asserts:
+      - equal:
+          path: spec.template.spec.automountServiceAccountToken
+          value: false
diff --git a/charts/ingress-nginx/tests/admission-webhooks/job-patch/job-patchWebhook_test.yaml b/charts/ingress-nginx/tests/admission-webhooks/job-patch/job-patchWebhook_test.yaml
new file mode 100644
index 000000000..ca4c6b4c2
--- /dev/null
+++ b/charts/ingress-nginx/tests/admission-webhooks/job-patch/job-patchWebhook_test.yaml
@@ -0,0 +1,12 @@
+suite: Admission Webhooks > Patch Job > Patch Webhook Job
+templates:
+  - admission-webhooks/job-patch/job-patchWebhook.yaml
+
+tests:
+  - it: should create a Job with token auto-mounting disabled if `controller.admissionWebhooks.patch.serviceAccount.automountServiceAccountToken` is false
+    set:
+      controller.admissionWebhooks.patch.serviceAccount.automountServiceAccountToken: false
+    asserts:
+      - equal:
+          path: spec.template.spec.automountServiceAccountToken
+          value: false
diff --git a/charts/ingress-nginx/tests/controller-daemonset_test.yaml b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
index d2d77befb..0321fd376 100644
--- a/charts/ingress-nginx/tests/controller-daemonset_test.yaml
+++ b/charts/ingress-nginx/tests/controller-daemonset_test.yaml
@@ -190,3 +190,12 @@ tests:
       - equal:
           path: spec.template.spec.containers[0].image
           value: registry.k8s.io/ingress-nginx/controller:custom-tag@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+
+  - it: should create a DaemonSet with token auto-mounting disabled if `serviceAccount.automountServiceAccountToken` is false
+    set:
+      controller.kind: DaemonSet
+      serviceAccount.automountServiceAccountToken: false
+    asserts:
+      - equal:
+          path: spec.template.spec.automountServiceAccountToken
+          value: false
diff --git a/charts/ingress-nginx/tests/controller-deployment_test.yaml b/charts/ingress-nginx/tests/controller-deployment_test.yaml
index 1cc9c9325..18306079e 100644
--- a/charts/ingress-nginx/tests/controller-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/controller-deployment_test.yaml
@@ -215,3 +215,11 @@ tests:
       - equal:
           path: spec.progressDeadlineSeconds
           value: 111
+
+  - it: should create a Deployment with token auto-mounting disabled if `serviceAccount.automountServiceAccountToken` is false
+    set:
+      serviceAccount.automountServiceAccountToken: false
+    asserts:
+      - equal:
+          path: spec.template.spec.automountServiceAccountToken
+          value: false
diff --git a/charts/ingress-nginx/tests/default-backend-deployment_test.yaml b/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
index c3fa33968..11d400c46 100644
--- a/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
+++ b/charts/ingress-nginx/tests/default-backend-deployment_test.yaml
@@ -187,3 +187,12 @@ tests:
       - equal:
           path: spec.template.spec.containers[0].image
           value: registry.k8s.io/defaultbackend-amd64:custom-tag@sha256:faa2d18687f734994b6bd9e309e7a73852a81c30e1b8f63165fcd4f0a087e3cd
+
+  - it: should create a Deployment with token auto-mounting disabled if `defaultBackend.serviceAccount.automountServiceAccountToken` is false
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.serviceAccount.automountServiceAccountToken: false
+    asserts:
+      - equal:
+          path: spec.template.spec.automountServiceAccountToken
+          value: false

From d0a04308c87d46aa0bb28a85af888da06ae8cf88 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 29 Oct 2024 22:45:51 +0100
Subject: [PATCH 1515/1641] Chart: Rework ServiceMonitor. (#12267)

---
 .../templates/controller-servicemonitor.yaml  | 55 +++++++++----------
 1 file changed, 26 insertions(+), 29 deletions(-)

diff --git a/charts/ingress-nginx/templates/controller-servicemonitor.yaml b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
index 62301da45..93ab4d242 100644
--- a/charts/ingress-nginx/templates/controller-servicemonitor.yaml
+++ b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
@@ -3,51 +3,48 @@ apiVersion: monitoring.coreos.com/v1
 kind: ServiceMonitor
 metadata:
   name: {{ include "ingress-nginx.controller.fullname" . }}
-{{- if .Values.controller.metrics.serviceMonitor.namespace }}
+  {{- if .Values.controller.metrics.serviceMonitor.namespace }}
   namespace: {{ .Values.controller.metrics.serviceMonitor.namespace }}
-{{- else }}
+  {{- else }}
   namespace: {{ include "ingress-nginx.namespace" . }}
-{{- end }}
+  {{- end }}
   labels:
     {{- include "ingress-nginx.labels" . | nindent 4 }}
     app.kubernetes.io/component: controller
-  {{- if .Values.controller.metrics.serviceMonitor.additionalLabels }}
+    {{- if .Values.controller.metrics.serviceMonitor.additionalLabels }}
     {{- toYaml .Values.controller.metrics.serviceMonitor.additionalLabels | nindent 4 }}
-  {{- end }}
+    {{- end }}
   {{- if .Values.controller.metrics.serviceMonitor.annotations }}
   annotations: {{ toYaml .Values.controller.metrics.serviceMonitor.annotations | nindent 4 }}
   {{- end }}
 spec:
-  endpoints:
-    - port: {{ .Values.controller.metrics.portName }}
-      interval: {{ .Values.controller.metrics.serviceMonitor.scrapeInterval }}
-    {{- if .Values.controller.metrics.serviceMonitor.honorLabels }}
-      honorLabels: true
-    {{- end }}
-    {{- if .Values.controller.metrics.serviceMonitor.relabelings }}
-      relabelings: {{ toYaml .Values.controller.metrics.serviceMonitor.relabelings | nindent 8 }}
-    {{- end }}
-    {{- if .Values.controller.metrics.serviceMonitor.metricRelabelings }}
-      metricRelabelings: {{ toYaml .Values.controller.metrics.serviceMonitor.metricRelabelings | nindent 8 }}
-    {{- end }}
-{{- if .Values.controller.metrics.serviceMonitor.jobLabel }}
-  jobLabel: {{ .Values.controller.metrics.serviceMonitor.jobLabel | quote }}
-{{- end }}
-{{- if .Values.controller.metrics.serviceMonitor.namespaceSelector }}
+  {{- if .Values.controller.metrics.serviceMonitor.namespaceSelector }}
   namespaceSelector: {{ toYaml .Values.controller.metrics.serviceMonitor.namespaceSelector | nindent 4 }}
-{{- else }}
+  {{- else }}
   namespaceSelector:
     matchNames:
-      - {{ include "ingress-nginx.namespace" . }}
-{{- end }}
-{{- if .Values.controller.metrics.serviceMonitor.targetLabels }}
-  targetLabels:
-  {{- range .Values.controller.metrics.serviceMonitor.targetLabels }}
-    - {{ . }}
+    - {{ include "ingress-nginx.namespace" . }}
   {{- end }}
-{{- end }}
   selector:
     matchLabels:
       {{- include "ingress-nginx.selectorLabels" . | nindent 6 }}
       app.kubernetes.io/component: controller
+  endpoints:
+  - port: {{ .Values.controller.metrics.portName }}
+    interval: {{ .Values.controller.metrics.serviceMonitor.scrapeInterval }}
+    {{- if .Values.controller.metrics.serviceMonitor.honorLabels }}
+    honorLabels: true
+    {{- end }}
+    {{- if .Values.controller.metrics.serviceMonitor.relabelings }}
+    relabelings: {{ toYaml .Values.controller.metrics.serviceMonitor.relabelings | nindent 4 }}
+    {{- end }}
+    {{- if .Values.controller.metrics.serviceMonitor.metricRelabelings }}
+    metricRelabelings: {{ toYaml .Values.controller.metrics.serviceMonitor.metricRelabelings | nindent 4 }}
+    {{- end }}
+  {{- if .Values.controller.metrics.serviceMonitor.jobLabel }}
+  jobLabel: {{ .Values.controller.metrics.serviceMonitor.jobLabel | quote }}
+  {{- end }}
+  {{- if .Values.controller.metrics.serviceMonitor.targetLabels }}
+  targetLabels: {{ toYaml .Values.controller.metrics.serviceMonitor.targetLabels | nindent 2 }}
+  {{- end }}
 {{- end }}

From 260976b8d8f1497acbee9eb8ae410daf326064b7 Mon Sep 17 00:00:00 2001
From: yypastushenko <136491277+yypastushenko@users.noreply.github.com>
Date: Wed, 30 Oct 2024 00:49:25 +0200
Subject: [PATCH 1516/1641] Chart: Implement ServiceMonitor limits. (#12251)

---
 charts/ingress-nginx/README.md                |  5 ++
 .../templates/controller-servicemonitor.yaml  | 15 ++++++
 .../tests/controller-servicemonitor_test.yaml | 50 +++++++++++++++++++
 charts/ingress-nginx/values.yaml              | 10 ++++
 4 files changed, 80 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 1820f7145..411441869 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -399,12 +399,17 @@ metadata:
 | controller.metrics.serviceMonitor.additionalLabels | object | `{}` |  |
 | controller.metrics.serviceMonitor.annotations | object | `{}` | Annotations to be added to the ServiceMonitor. |
 | controller.metrics.serviceMonitor.enabled | bool | `false` |  |
+| controller.metrics.serviceMonitor.labelLimit | int | `0` | Per-scrape limit on number of labels that will be accepted for a sample. |
+| controller.metrics.serviceMonitor.labelNameLengthLimit | int | `0` | Per-scrape limit on length of labels name that will be accepted for a sample. |
+| controller.metrics.serviceMonitor.labelValueLengthLimit | int | `0` | Per-scrape limit on length of labels value that will be accepted for a sample. |
 | controller.metrics.serviceMonitor.metricRelabelings | list | `[]` |  |
 | controller.metrics.serviceMonitor.namespace | string | `""` |  |
 | controller.metrics.serviceMonitor.namespaceSelector | object | `{}` |  |
 | controller.metrics.serviceMonitor.relabelings | list | `[]` |  |
+| controller.metrics.serviceMonitor.sampleLimit | int | `0` | Defines a per-scrape limit on the number of scraped samples that will be accepted. |
 | controller.metrics.serviceMonitor.scrapeInterval | string | `"30s"` |  |
 | controller.metrics.serviceMonitor.targetLabels | list | `[]` |  |
+| controller.metrics.serviceMonitor.targetLimit | int | `0` | Defines a limit on the number of scraped targets that will be accepted. |
 | controller.minAvailable | int | `1` | Minimum available pods set in PodDisruptionBudget. Define either 'minAvailable' or 'maxUnavailable', never both. |
 | controller.minReadySeconds | int | `0` | `minReadySeconds` to avoid killing pods before we are ready # |
 | controller.name | string | `"controller"` |  |
diff --git a/charts/ingress-nginx/templates/controller-servicemonitor.yaml b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
index 93ab4d242..85bb84186 100644
--- a/charts/ingress-nginx/templates/controller-servicemonitor.yaml
+++ b/charts/ingress-nginx/templates/controller-servicemonitor.yaml
@@ -47,4 +47,19 @@ spec:
   {{- if .Values.controller.metrics.serviceMonitor.targetLabels }}
   targetLabels: {{ toYaml .Values.controller.metrics.serviceMonitor.targetLabels | nindent 2 }}
   {{- end }}
+  {{- if .Values.controller.metrics.serviceMonitor.labelLimit }}
+  labelLimit: {{ .Values.controller.metrics.serviceMonitor.labelLimit }}
+  {{- end }}
+  {{- if .Values.controller.metrics.serviceMonitor.labelNameLengthLimit }}
+  labelNameLengthLimit: {{ .Values.controller.metrics.serviceMonitor.labelNameLengthLimit }}
+  {{- end }}
+  {{- if .Values.controller.metrics.serviceMonitor.labelValueLengthLimit }}
+  labelValueLengthLimit: {{ .Values.controller.metrics.serviceMonitor.labelValueLengthLimit }}
+  {{- end }}
+  {{- if .Values.controller.metrics.serviceMonitor.sampleLimit }}
+  sampleLimit: {{ .Values.controller.metrics.serviceMonitor.sampleLimit }}
+  {{- end }}
+  {{- if .Values.controller.metrics.serviceMonitor.targetLimit }}
+  targetLimit: {{ .Values.controller.metrics.serviceMonitor.targetLimit }}
+  {{- end }}
 {{- end }}
diff --git a/charts/ingress-nginx/tests/controller-servicemonitor_test.yaml b/charts/ingress-nginx/tests/controller-servicemonitor_test.yaml
index 310097c1a..7edee98c5 100644
--- a/charts/ingress-nginx/tests/controller-servicemonitor_test.yaml
+++ b/charts/ingress-nginx/tests/controller-servicemonitor_test.yaml
@@ -27,3 +27,53 @@ tests:
           path: metadata.annotations
           value:
             my-little-annotation: test-value
+
+  - it: should create a ServiceMonitor with `labelLimit` if `controller.metrics.serviceMonitor.labelLimit` is set
+    set:
+      controller.metrics.enabled: true
+      controller.metrics.serviceMonitor.enabled: true
+      controller.metrics.serviceMonitor.labelLimit: 20
+    asserts:
+      - equal:
+          path: spec.labelLimit
+          value: 20
+
+  - it: should create a ServiceMonitor with `labelNameLengthLimit` if `controller.metrics.serviceMonitor.labelNameLengthLimit` is set
+    set:
+      controller.metrics.enabled: true
+      controller.metrics.serviceMonitor.enabled: true
+      controller.metrics.serviceMonitor.labelNameLengthLimit: 50
+    asserts:
+      - equal:
+          path: spec.labelNameLengthLimit
+          value: 50
+
+  - it: should create a ServiceMonitor with `labelValueLengthLimit` if `controller.metrics.serviceMonitor.labelValueLengthLimit` is set
+    set:
+      controller.metrics.enabled: true
+      controller.metrics.serviceMonitor.enabled: true
+      controller.metrics.serviceMonitor.labelValueLengthLimit: 50
+    asserts:
+      - equal:
+          path: spec.labelValueLengthLimit
+          value: 50
+
+  - it: should create a ServiceMonitor with `sampleLimit` if `controller.metrics.serviceMonitor.sampleLimit` is set
+    set:
+      controller.metrics.enabled: true
+      controller.metrics.serviceMonitor.enabled: true
+      controller.metrics.serviceMonitor.sampleLimit: 5000
+    asserts:
+      - equal:
+          path: spec.sampleLimit
+          value: 5000
+
+  - it: should create a ServiceMonitor with `targetLimit` if `controller.metrics.serviceMonitor.targetLimit` is set
+    set:
+      controller.metrics.enabled: true
+      controller.metrics.serviceMonitor.enabled: true
+      controller.metrics.serviceMonitor.targetLimit: 100
+    asserts:
+      - equal:
+          path: spec.targetLimit
+          value: 100
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 258c0ffa5..391a8d9ca 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -882,6 +882,16 @@ controller:
       targetLabels: []
       relabelings: []
       metricRelabelings: []
+      # -- Per-scrape limit on number of labels that will be accepted for a sample.
+      labelLimit: 0
+      # -- Per-scrape limit on length of labels name that will be accepted for a sample.
+      labelNameLengthLimit: 0
+      # -- Per-scrape limit on length of labels value that will be accepted for a sample.
+      labelValueLengthLimit: 0
+      # -- Defines a per-scrape limit on the number of scraped samples that will be accepted.
+      sampleLimit: 0
+      # -- Defines a limit on the number of scraped targets that will be accepted.
+      targetLimit: 0
     prometheusRule:
       enabled: false
       additionalLabels: {}

From a8c62e22b72c68e4a829cc7954ff44b3d7d1dc1c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 29 Oct 2024 23:05:24 +0000
Subject: [PATCH 1517/1641] Bump actions/dependency-review-action from 4.3.5 to
 4.4.0 in the actions group (#12272)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 773e963ef..39a3279db 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@a6993e2c61fd5dc440b409aa1d6904921c5e1894 # v4.3.5
+        uses: actions/dependency-review-action@4081bf99e2866ebe428fc0477b69eb4fcda7220a # v4.4.0

From 440575e151b24ecac5cfdeb4cc1dd1483948778b Mon Sep 17 00:00:00 2001
From: Aleksa Cukovic <aleksacukovic1@gmail.com>
Date: Thu, 31 Oct 2024 20:29:26 +0100
Subject: [PATCH 1518/1641] Docs: fix limit-rate-after references (#12277)

---
 docs/user-guide/nginx-configuration/configmap.md | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index c2e6935d5..aa877d5a8 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -1173,6 +1173,9 @@ _References:_
 
 Sets the initial amount after which the further transmission of a response to a client will be rate limited.
 
+_References:_
+[https://nginx.org/en/docs/http/ngx_http_core_module.html#limit_rate_after](https://nginx.org/en/docs/http/ngx_http_core_module.html#limit_rate_after)
+
 ## lua-shared-dicts
 
 Customize default Lua shared dictionaries or define more. You can use the following syntax to do so:
@@ -1194,9 +1197,6 @@ You can optionally set a size unit to allow for kilobyte-granularity. Allowed un
 lua-shared-dicts: "certificate_data: 100, my_custom_plugin: 512k"
 ```
 
-_References:_
-[https://nginx.org/en/docs/http/ngx_http_core_module.html#limit_rate_after](https://nginx.org/en/docs/http/ngx_http_core_module.html#limit_rate_after)
-
 ## http-redirect-code
 
 Sets the HTTP status code to be used in redirects.

From ac23d4069befefdb5260d3502608063459fb9b92 Mon Sep 17 00:00:00 2001
From: Aleksa Cukovic <aleksacukovic1@gmail.com>
Date: Sat, 2 Nov 2024 22:21:26 +0100
Subject: [PATCH 1519/1641] Config: Fix panic on invalid `lua-shared-dict`.
 (#12281)

---
 internal/ingress/controller/template/configmap.go      | 7 +++++--
 internal/ingress/controller/template/configmap_test.go | 5 +++++
 2 files changed, 10 insertions(+), 2 deletions(-)

diff --git a/internal/ingress/controller/template/configmap.go b/internal/ingress/controller/template/configmap.go
index 481724793..febf20be0 100644
--- a/internal/ingress/controller/template/configmap.go
+++ b/internal/ingress/controller/template/configmap.go
@@ -125,8 +125,11 @@ func ReadConfig(src map[string]string) config.Configuration {
 		delete(conf, luaSharedDictsKey)
 		lsd := splitAndTrimSpace(val, ",")
 		for _, v := range lsd {
-			v = strings.ReplaceAll(v, " ", "")
-			results := strings.SplitN(v, ":", 2)
+			results := strings.SplitN(strings.ReplaceAll(v, " ", ""), ":", 2)
+			if len(results) != 2 {
+				klog.Errorf("Ignoring poorly formatted Lua dictionary %v", v)
+				continue
+			}
 			dictName := results[0]
 			size := dictStrToKb(results[1])
 			if size < 0 {
diff --git a/internal/ingress/controller/template/configmap_test.go b/internal/ingress/controller/template/configmap_test.go
index dad841694..6c7468303 100644
--- a/internal/ingress/controller/template/configmap_test.go
+++ b/internal/ingress/controller/template/configmap_test.go
@@ -390,6 +390,11 @@ func TestLuaSharedDictsParsing(t *testing.T) {
 			entry:  map[string]string{"lua-shared-dicts": "configuration_data:   10, my_random_dict:15 ,   another_example:2"},
 			expect: map[string]int{"configuration_data": 10240, "my_random_dict": 15360, "another_example": 2048},
 		},
+		{
+			name:   "invalid format",
+			entry:  map[string]string{"lua-shared-dicts": "mydict: 10, invalid_dict 100"},
+			expect: map[string]int{"mydict": 10240},
+		},
 		{
 			name:   "invalid size value should be ignored",
 			entry:  map[string]string{"lua-shared-dicts": "mydict: 10, invalid_dict: 1a, bad_mb_dict:10mb"},

From a1134bf4741e53364c2f948b106bfce262718450 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 4 Nov 2024 09:19:28 +0000
Subject: [PATCH 1520/1641] Bump github.com/onsi/ginkgo/v2 from 2.20.2 to
 2.21.0 (#12271)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 build/run-in-docker.sh                    |  2 +-
 go.mod                                    | 10 +++---
 go.sum                                    | 24 +++++++--------
 go.work.sum                               | 37 ++++++++++++++++++++++-
 images/kube-webhook-certgen/rootfs/go.mod | 12 ++++----
 images/kube-webhook-certgen/rootfs/go.sum | 34 ++++++++++-----------
 images/test-runner/Makefile               |  4 +--
 test/e2e/run-chart-test.sh                |  2 +-
 test/e2e/run-kind-e2e.sh                  |  2 +-
 9 files changed, 80 insertions(+), 47 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 095e09b91..ed0b1e213 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -82,7 +82,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.20.2
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.21.0
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/go.mod b/go.mod
index 40ff30f4d..885c57426 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.4
-	github.com/onsi/ginkgo/v2 v2.20.2
+	github.com/onsi/ginkgo/v2 v2.21.0
 	github.com/opencontainers/runc v1.2.0
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.5
@@ -84,7 +84,7 @@ require (
 	github.com/google/gnostic-models v0.6.8 // indirect
 	github.com/google/go-cmp v0.6.0 // indirect
 	github.com/google/gofuzz v1.2.0 // indirect
-	github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5 // indirect
+	github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.6.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect
@@ -115,15 +115,15 @@ require (
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20240123142251-f86470692795 // indirect
 	go.uber.org/zap v1.27.0 // indirect
-	golang.org/x/mod v0.20.0 // indirect
-	golang.org/x/net v0.29.0 // indirect
+	golang.org/x/mod v0.21.0 // indirect
+	golang.org/x/net v0.30.0 // indirect
 	golang.org/x/oauth2 v0.23.0 // indirect
 	golang.org/x/sync v0.8.0 // indirect
 	golang.org/x/sys v0.26.0 // indirect
 	golang.org/x/term v0.25.0 // indirect
 	golang.org/x/text v0.19.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
-	golang.org/x/tools v0.24.0 // indirect
+	golang.org/x/tools v0.26.0 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20240814211410-ddb44dafa142 // indirect
 	google.golang.org/protobuf v1.34.2 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
diff --git a/go.sum b/go.sum
index 416c75ea4..56a6f88d9 100644
--- a/go.sum
+++ b/go.sum
@@ -90,8 +90,8 @@ github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeN
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
 github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5 h1:5iH8iuqE5apketRbSFBy+X1V0o+l+8NF1avt4HWl7cA=
-github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
+github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db h1:097atOisP2aRj7vFgYQBbFN4U4JNXUNYpxael3UzMyo=
+github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
@@ -165,12 +165,12 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.20.2 h1:7NVCeyIWROIAheY21RLS+3j2bb52W0W82tkberYytp4=
-github.com/onsi/ginkgo/v2 v2.20.2/go.mod h1:K9gyxPIlb+aIvnZ8bd9Ak+YP18w3APlR+5coaZoE2ag=
+github.com/onsi/ginkgo/v2 v2.21.0 h1:7rg/4f3rB88pb5obDgNZrNHrQ4e6WpjonchcpuBRnZM=
+github.com/onsi/ginkgo/v2 v2.21.0/go.mod h1:7Du3c42kxCUegi0IImZ1wUQzMBVecgIHjR1C+NkhLQo=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.34.1 h1:EUMJIKUjM8sKjYbtxQI9A4z2o+rruxnzNvpknOXie6k=
-github.com/onsi/gomega v1.34.1/go.mod h1:kU1QgUvBDLXBJq618Xvm2LUX6rSAfRaFRTcdOeDLwwY=
+github.com/onsi/gomega v1.34.2 h1:pNCwDkzrsv7MS9kpaQvVb1aVLahQXyJ/Tv5oAZMI3i8=
+github.com/onsi/gomega v1.34.2/go.mod h1:v1xfxRgk0KIsG+QOdm7p8UosrOzPYRo60fd3B/1Dukc=
 github.com/opencontainers/runc v1.2.0 h1:qke7ZVCmJcKrJVY2iHJVC+0kql9uYdkusOPsQOOeBw4=
 github.com/opencontainers/runc v1.2.0/go.mod h1:/PXzF0h531HTMsYQnmxXkBD7YaGShm/2zcRB79dksUc=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
@@ -243,16 +243,16 @@ golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 h1:2dVuKD2vS7b0QIHQbpyTISPd0
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbRXRL/OHtkFuWGRjvuhBJpk2IlY=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.20.0 h1:utOm6MM3R3dnawAiJgn0y+xvuYRsm1RKM/4giyfDgV0=
-golang.org/x/mod v0.20.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
+golang.org/x/mod v0.21.0 h1:vvrHzRwRfVKSiLrG+d4FMl/Qi4ukBCE6kZlTUkDYRT0=
+golang.org/x/mod v0.21.0/go.mod h1:6SkKJ3Xj0I0BrPOZoBy3bdMptDDU9oJrpohJ3eWZ1fY=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.29.0 h1:5ORfpBpCs4HzDYoodCDBbwHzdR5UrLBZ3sOnUJmFoHo=
-golang.org/x/net v0.29.0/go.mod h1:gLkgy8jTGERgjzMic6DS9+SP0ajcu6Xu3Orq/SpETg0=
+golang.org/x/net v0.30.0 h1:AcW1SDZMkb8IpzCdQUaIq2sP4sZ4zw+55h6ynffypl4=
+golang.org/x/net v0.30.0/go.mod h1:2wGyMJ5iFasEhkwi13ChkO/t1ECNC4X4eBKkVFyYFlU=
 golang.org/x/oauth2 v0.23.0 h1:PbgcYx2W7i4LvjJWEbf0ngHV6qJYr86PkAV3bXdLEbs=
 golang.org/x/oauth2 v0.23.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -290,8 +290,8 @@ golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtn
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.24.0 h1:J1shsA93PJUEVaUSaay7UXAyE8aimq3GW0pjlolpa24=
-golang.org/x/tools v0.24.0/go.mod h1:YhNqVBIfWHdzvTLs0d8LCuMhkKUgSUKldakyV7W/WDQ=
+golang.org/x/tools v0.26.0 h1:v/60pFQmzmT9ExmjDv2gGIfi3OqfKoEP6I5+umXlbnQ=
+golang.org/x/tools v0.26.0/go.mod h1:TPVVj70c7JJ3WCazhD8OdXcZg/og+b9+tH/KxylGwH0=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
diff --git a/go.work.sum b/go.work.sum
index 8b186c739..06d0a1ab9 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -1,5 +1,6 @@
 cel.dev/expr v0.15.0 h1:O1jzfJCQBfL5BFoYktaxwIhuttaQPsVWerH9/EEKx0w=
 cel.dev/expr v0.15.0/go.mod h1:TRSuuV7DlVCE/uwv5QbAiW/v8l5O8C4eEPHeu7gf7Sg=
+cel.dev/expr v0.16.0/go.mod h1:TRSuuV7DlVCE/uwv5QbAiW/v8l5O8C4eEPHeu7gf7Sg=
 cloud.google.com/go v0.110.2 h1:sdFPBr6xG9/wkBbfhmUz/JmZC7X6LavQgcrVINrKiVA=
 cloud.google.com/go v0.110.4/go.mod h1:+EYjdK8e5RME/VY/qLCAtuyALQ9q67dvuum8i+H5xsI=
 cloud.google.com/go v0.110.8/go.mod h1:Iz8AkXJf1qmxC3Oxoep8R1T36w8B92yU29PcBhHO5fk=
@@ -131,6 +132,7 @@ cloud.google.com/go/compute v1.24.0/go.mod h1:kw1/T+h/+tK2LJK0wiPPx1intgdAM3j/g3
 cloud.google.com/go/compute v1.25.1/go.mod h1:oopOIR53ly6viBYxaDhBfJwzUAxf1zE//uf3IB011ls=
 cloud.google.com/go/compute/metadata v0.3.0 h1:Tz+eQXMEqDIKRsmY3cHTL6FVaynIjX2QxYC4trgAKZc=
 cloud.google.com/go/compute/metadata v0.3.0/go.mod h1:zFmK7XCadkQkj6TtorcaGlCW1hT1fIilQDwofLpJ20k=
+cloud.google.com/go/compute/metadata v0.5.0/go.mod h1:aHnloV2TPI38yx4s9+wAZhHykWvVCfu7hQbF+9CWoiY=
 cloud.google.com/go/contactcenterinsights v1.6.0 h1:jXIpfcH/VYSE1SYcPzO0n1VVb+sAamiLOgCw45JbOQk=
 cloud.google.com/go/contactcenterinsights v1.9.1/go.mod h1:bsg/R7zGLYMVxFFzfh9ooLTruLRCG9fnzhH9KznHhbM=
 cloud.google.com/go/contactcenterinsights v1.10.0/go.mod h1:bsg/R7zGLYMVxFFzfh9ooLTruLRCG9fnzhH9KznHhbM=
@@ -555,6 +557,7 @@ gioui.org v0.0.0-20210308172011-57750fc8a0a6 h1:K72hopUosKG3ntOPNG4OzzbuhxGuVf06
 git.sr.ht/~sbinet/gg v0.3.1 h1:LNhjNn8DerC8f9DHLz6lS0YYul/b602DUxDgGkd/Aik=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802 h1:1BDTz0u9nC3//pOCMdNH+CiXJVYJh5UQNCOBG7jbELc=
 github.com/JohnCGriffin/overflow v0.0.0-20211019200055-46fa312c352c h1:RGWPOewvKIROun94nF7v2cua9qP+thov/7M50KEoeSU=
+github.com/Masterminds/semver/v3 v3.2.1/go.mod h1:qvl/7zhW3nngYb5+80sSMF+FG2BjYrf8m9wsX0PNOMQ=
 github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
 github.com/NYTimes/gziphandler v1.1.1 h1:ZUDjpQae29j0ryrS0u/B8HZfJBtBQHjqw2rQ2cqUQ3I=
 github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
@@ -568,6 +571,7 @@ github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751 h1:JYp7IbQjafo
 github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137 h1:s6gZFSlWYmbqAuRjVTiNNhvNRfY2Wxp9nhfyel4rklc=
 github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137/go.mod h1:OMCwj8VM1Kc9e19TLln2VL61YJF0x1XFtfdL4JdbSyE=
 github.com/andybalholm/brotli v1.0.4 h1:V7DdXeJtZscaqfNuAdSRuRFzuiKlHSC/Zh3zl9qY3JY=
+github.com/andybalholm/brotli v1.1.0/go.mod h1:sms7XGricyQI9K10gOSf56VKKWS4oLer58Q+mhRPtnY=
 github.com/antihax/optional v1.0.0 h1:xK2lYat7ZLaVVcIuj82J8kIro4V6kDe0AUDFboUCwcg=
 github.com/antlr/antlr4/runtime/Go/antlr/v4 v4.0.0-20230305170008-8188dc5388df h1:7RFfzj4SSt6nnvCPbCqijJi1nWCd+TqAT3bYCStRC18=
 github.com/antlr/antlr4/runtime/Go/antlr/v4 v4.0.0-20230305170008-8188dc5388df/go.mod h1:pSwJ0fSY5KhvocuWSx4fz3BA8OrA1bQn+K1Eli3BRwM=
@@ -594,6 +598,7 @@ github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91
 github.com/cespare/xxhash v1.1.0 h1:a6HrQnmkObjyL+Gs60czilIUGqrzKutQD6XZog3p+ko=
 github.com/checkpoint-restore/go-criu/v5 v5.3.0 h1:wpFFOoomK3389ue2lAb0Boag6XPht5QYpipxmSNL4d8=
 github.com/checkpoint-restore/go-criu/v5 v5.3.0/go.mod h1:E/eQpaFtUKGOOSEBZgmKAcn+zUUwWxqcaKZlF54wK8E=
+github.com/checkpoint-restore/go-criu/v6 v6.3.0/go.mod h1:rrRTN/uSwY2X+BPRl/gkulo9gsKOSAeVp9/K2tv7xZI=
 github.com/chenzhuoyu/base64x v0.0.0-20221115062448-fe3a3abad311 h1:qSGYFH7+jGhDF8vLC+iwCD4WpbV1EBDSzWkJODFLams=
 github.com/chenzhuoyu/base64x v0.0.0-20221115062448-fe3a3abad311/go.mod h1:b583jCggY9gE99b6G5LEC39OIiVsWj+R97kbl5odCEk=
 github.com/chromedp/cdproto v0.0.0-20230802225258-3cf4e6d46a89 h1:aPflPkRFkVwbW6dmcVqfgwp1i+UWGFH6VgR1Jim5Ygc=
@@ -613,6 +618,7 @@ github.com/chzyer/test v1.0.0 h1:p3BQDXSxOhOG0P9z6/hGnII4LGiEPOYBhs8asl/fC04=
 github.com/chzyer/test v1.0.0/go.mod h1:2JlltgoNkt4TW/z9V/IzDdFaMTM2JPIi26O1pF38GC8=
 github.com/cilium/ebpf v0.7.0 h1:1k/q3ATgxSXRdrmPfH8d7YK0GfqVsEKZAX9dQZvs56k=
 github.com/cilium/ebpf v0.7.0/go.mod h1:/oI2+1shJiTGAMgl6/RgJr36Eo1jzrRcAWbcXO2usCA=
+github.com/cilium/ebpf v0.16.0/go.mod h1:L7u2Blt2jMM/vLAVgjxluxtBKlz3/GWjB0dMOEngfwE=
 github.com/client9/misspell v0.3.4 h1:ta993UF76GwbvJcIo3Y68y/M3WxlpEHPWIGDkJYwzJI=
 github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe h1:QQ3GSy+MqSHxm/d8nCtnAiZdYFd45cYZPs8vOOIYKfk=
 github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
@@ -623,8 +629,10 @@ github.com/cncf/xds/go v0.0.0-20231128003011-0fa0005c9caa/go.mod h1:x/1Gn8zydmfq
 github.com/cncf/xds/go v0.0.0-20240318125728-8a4994d93e50/go.mod h1:5e1+Vvlzido69INQaVO6d87Qn543Xr6nooe9Kz7oBFM=
 github.com/cncf/xds/go v0.0.0-20240423153145-555b57ec207b h1:ga8SEFjZ60pxLcmhnThWgvH2wg8376yUJmPhEH4H3kw=
 github.com/cncf/xds/go v0.0.0-20240423153145-555b57ec207b/go.mod h1:W+zGtBO5Y1IgJhy4+A9GOqVhqLpfZi+vwmdNXUehLA8=
+github.com/cncf/xds/go v0.0.0-20240723142845-024c85f92f20/go.mod h1:W+zGtBO5Y1IgJhy4+A9GOqVhqLpfZi+vwmdNXUehLA8=
 github.com/containerd/console v1.0.3 h1:lIr7SlA5PxZyMV30bDW0MGbiOPXwc63yRuCP0ARubLw=
 github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
+github.com/containerd/console v1.0.4/go.mod h1:YynlIjWYF8myEu6sdkwKIvGQq+cOckRm6So2avqoYAk=
 github.com/coreos/go-oidc v2.2.1+incompatible h1:mh48q/BqXqgjVHpy2ZY7WnWAbenxRjsz9N1i1YxjHAk=
 github.com/coreos/go-oidc v2.2.1+incompatible/go.mod h1:CgnwVTmzoESiwO9qyAFEMiHoZ1nMCKZlZ9V6mm3/LKc=
 github.com/coreos/go-semver v0.3.1 h1:yi21YpKnrx1gt5R+la8n5WgS0kCrsPp33dmEyHReZr4=
@@ -634,7 +642,9 @@ github.com/cpuguy83/go-md2man/v2 v2.0.3 h1:qMCsGGgs+MAzDFyp9LpAe1Lqy/fY/qCovCm0q
 github.com/cpuguy83/go-md2man/v2 v2.0.4 h1:wfIWP927BUkWJb2NmU/kNDYIBTh/ziUX91+lVfRxZq4=
 github.com/docker/go-units v0.4.0 h1:3uh0PgVws3nIA0Q+MwDC8yjEPf9zjRfZZWXZYDct3Tw=
 github.com/docker/go-units v0.4.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
+github.com/docker/go-units v0.5.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
 github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815 h1:bWDMxwH3px2JBh6AyO7hdCn/PkvCZXii8TGj7sbtEbQ=
+github.com/dsnet/compress v0.0.2-0.20210315054119-f66993602bf5/go.mod h1:qssHWj60/X5sZFNxpG4HBPDHVqxNm4DfnCKgrbZOT+s=
 github.com/dustin/go-humanize v1.0.1 h1:GzkhY7T5VNhEkwH0PVJgjz+fX1rhBrR7pRT3mDkpeCY=
 github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto=
 github.com/emicklei/go-restful v2.9.5+incompatible h1:spTtZBk5DYEvbxMVutUuTyh1Ao2r4iyvLdACqsl/Ljk=
@@ -645,9 +655,11 @@ github.com/envoyproxy/go-control-plane v0.11.1/go.mod h1:uhMcXKCQMEJHiAb0w+YGefQ
 github.com/envoyproxy/go-control-plane v0.12.0 h1:4X+VP1GHd1Mhj6IB5mMeGbLCleqxjletLK6K0rbxyZI=
 github.com/envoyproxy/go-control-plane v0.12.0/go.mod h1:ZBTaoJ23lqITozF0M6G4/IragXCQKCnYbmlmtHvwRG0=
 github.com/envoyproxy/go-control-plane v0.12.1-0.20240621013728-1eb8caab5155/go.mod h1:5Wkq+JduFtdAXihLmeTJf+tRYIT4KBc2vPXDhwVo1pA=
+github.com/envoyproxy/go-control-plane v0.13.0/go.mod h1:GRaKG3dwvFoTg4nj7aXdZnvMg4d7nvT/wl9WgVXn3Q8=
 github.com/envoyproxy/protoc-gen-validate v1.0.2/go.mod h1:GpiZQP3dDbg4JouG/NNS7QWXpgx6x8QiMKdmN72jogE=
 github.com/envoyproxy/protoc-gen-validate v1.0.4 h1:gVPz/FMfvh57HdSJQyvBtF00j8JU4zdyUgIUNhlgg0A=
 github.com/envoyproxy/protoc-gen-validate v1.0.4/go.mod h1:qys6tmnRsYrQqIhm2bvKZH4Blx/1gTIZ2UKVY1M+Yew=
+github.com/envoyproxy/protoc-gen-validate v1.1.0/go.mod h1:sXRDRVmzEbkM7CVcM06s9shE/m23dg3wzjl0UWqJ2q4=
 github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
 github.com/felixge/httpsnoop v1.0.3 h1:s/nj+GCswXYzN5v2DpNMuMQYe+0DDwt5WVCU6CWBdXk=
 github.com/felixge/httpsnoop v1.0.3/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
@@ -716,9 +728,11 @@ github.com/golang/glog v1.2.0 h1:uCdmnmatrKCgMBlM4rMuJZWOkPDqdbZPnrMXDY4gI68=
 github.com/golang/glog v1.2.0/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
 github.com/golang/glog v1.2.1 h1:OptwRhECazUx5ix5TTWC3EZhsZEHWcYWY4FQHTIubm4=
 github.com/golang/glog v1.2.1/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
+github.com/golang/glog v1.2.2/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
 github.com/golang/mock v1.6.0 h1:ErTB+efbowRARo13NNdxyJji2egdxLGQhRaY+DUumQc=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/snappy v0.0.4 h1:yAGX7huGHXlcLOEtBnF4w7FQwA26wojNCwOYAEhLjQM=
+github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/google/btree v1.0.1/go.mod h1:xXMiIv4Fb/0kKde4SpL7qlzvu5cMJDRkFDxJfI9uaxA=
 github.com/google/cel-go v0.17.7/go.mod h1:HXZKzB0LXqer5lHHgfWAnlYwJaQBDKMjxjulNQzhwhY=
 github.com/google/cel-go v0.17.8 h1:j9m730pMZt1Fc4oKhCLUHfjj6527LuhYcYw0Rl8gqto=
@@ -734,6 +748,7 @@ github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38/go.mod h1:kpwsk12EmLe
 github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
 github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6/go.mod h1:kf6iHlnVGwgKolg33glAes7Yg/8iWP8ukqeldJSO7jw=
 github.com/google/pprof v0.0.0-20240525223248-4bfdf5a9a2af/go.mod h1:K1liHPHnj73Fdn/EKuT8nrFqBihUSKXoLYU0BuatOYo=
+github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
 github.com/google/renameio v0.1.0 h1:GOZbcHa3HfsPKPlmyPyN2KEohoMXOhdMbHrvbpl2QaA=
 github.com/google/s2a-go v0.1.4 h1:1kZ/sQM3srePvKs3tXAvQzo66XfcReoqFpIpIccE7Oc=
 github.com/google/s2a-go v0.1.7/go.mod h1:50CgR4k1jNlWBu4UfS4AcfhVe1r6pdZPygJ3R8F0Qdw=
@@ -790,6 +805,7 @@ github.com/klauspost/compress v1.16.7/go.mod h1:ntbaceVETuRiXiv4DpjP66DpAtAGkEQs
 github.com/klauspost/cpuid/v2 v2.2.4 h1:acbojRNwl3o09bUq+yDCtZFc1aiwaAAxtcn8YkZXnvk=
 github.com/klauspost/cpuid/v2 v2.2.4/go.mod h1:RVVoqg1df56z8g3pUjL/3lE5UfnlrJX8tyFgg4nqhuY=
 github.com/klauspost/cpuid/v2 v2.2.5/go.mod h1:Lcz8mBdAVJIBVzewtcLocK12l3Y+JytZYpaMropDUws=
+github.com/klauspost/pgzip v1.2.6/go.mod h1:Ch1tH69qFZu15pkjo5kYi6mth2Zzwzt50oCQKQE9RUs=
 github.com/konsorten/go-windows-terminal-sequences v1.0.3 h1:CE8S1cTafDpPvMhIxNJKvHsGVBgn1xWYf1NbHQhywc8=
 github.com/kr/fs v0.1.0 h1:Jskdu9ieNAYnjxsi0LbQp1ulIKZV1LAFgK1tWhpZgl8=
 github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515 h1:T+h1c/A9Gawja4Y9mFVWj2vyii2bbUNDw3kt9VxK2EY=
@@ -809,12 +825,15 @@ github.com/mattn/go-sqlite3 v1.14.14 h1:qZgc/Rwetq+MtyE18WhzjokPD93dNqLGNT3QJuLv
 github.com/matttproud/golang_protobuf_extensions v1.0.4 h1:mmDVorXM7PCGKw94cs5zkfA9PSy5pEvNWRP0ET0TIVo=
 github.com/matttproud/golang_protobuf_extensions v1.0.4/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
 github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0 h1:jWpvCLoY8Z/e3VKvlsiIGKtc+UG6U5vzxaoagmhXfyg=
+github.com/maxbrunsfeld/counterfeiter/v6 v6.8.1/go.mod h1:eyp4DdUJAKkr9tvxR3jWhw2mDK7CWABMG5r9uyaKC7I=
+github.com/mholt/archiver/v3 v3.5.1/go.mod h1:e3dqJ7H78uzsRSEACH1joayhuSyhnonssnDhppzS1L4=
 github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8 h1:AMFGa4R4MiIpspGNG7Z948v4n35fFGB3RR3G/ry4FWs=
 github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3 h1:+n/aFZefKZp7spd8DFdX7uMikMLXX4oubIzJF4kv/wI=
 github.com/moby/spdystream v0.2.0 h1:cjW1zVyyoiM0T7b6UoySUFqzXMoqRckQtXwGPiBhOM8=
 github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
 github.com/moby/spdystream v0.4.0 h1:Vy79D6mHeJJjiPdFEL2yku1kl0chZpJfZcPpb16BRl8=
 github.com/moby/spdystream v0.4.0/go.mod h1:xBAYlnt/ay+11ShkdFKNAG7LsyK/tmNBVvVOwrfMgdI=
+github.com/moby/sys/user v0.3.0/go.mod h1:bG+tYYYJgaMtRKgEmuueC0hJEAZWwtIbZTB+85uoHjs=
 github.com/mrunalp/fileutils v0.5.1 h1:F+S7ZlNKnrwHfSwdlgNSkKo67ReVf8o9fel6C3dkm/Q=
 github.com/mrunalp/fileutils v0.5.1/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
 github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
@@ -824,17 +843,20 @@ github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f h1:y5//uYreIhSUg3J
 github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
 github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65 h1:Og+dVkxEQNvRGU2vUKeOwYT2UJ+pEaDMWB6tIQnIh6A=
 github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65/go.mod h1:Tx6UMSMyIsjLG/VU/F6xA1+0XI+/f9o1dGJnf1l+bPg=
+github.com/nwaples/rardecode v1.1.3/go.mod h1:5DzqNKiOdpKKBH87u8VlvAnPZMXcGRhxWkRpHbbfGS0=
 github.com/onsi/ginkgo/v2 v/go.mod h1:rlwLi9PilAFJ8jCg9UE1QP6VBpd6/xj3SRC0d6TU0To=
 github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
 github.com/onsi/ginkgo/v2 v2.15.0/go.mod h1:HlxMHtYF57y6Dpf+mc5529KKmSq9h2FpCF+/ZkwUxKM=
 github.com/onsi/ginkgo/v2 v2.17.2/go.mod h1:nP2DPOQoNsQmsVyv5rDA8JkXQoCs6goXIvr/PRJ1eCc=
 github.com/onsi/ginkgo/v2 v2.19.0/go.mod h1:rlwLi9PilAFJ8jCg9UE1QP6VBpd6/xj3SRC0d6TU0To=
+github.com/onsi/ginkgo/v2 v2.20.1/go.mod h1:lG9ey2Z29hR41WMVthyJBGUBcBhGOtoPF2VFMvBXFCI=
 github.com/onsi/gomega v1.19.0/go.mod h1:LY+I3pBVzYsTBU1AnDwOSxaYi9WoWiqgwooUqq9yPro=
 github.com/onsi/gomega v1.31.0/go.mod h1:DW9aCi7U6Yi40wNVAvT6kzFnEVEI5n3DloYBiKiT6zk=
 github.com/onsi/gomega v1.33.0/go.mod h1:+925n5YtiFsLzzafLUHzVMBpvvRAzrydIBiSIxjX3wY=
 github.com/onsi/gomega v1.33.1/go.mod h1:U4R44UsT+9eLIaYRB2a5qajjtQYn0hauxvRm16AVYg0=
 github.com/opencontainers/selinux v1.10.0 h1:rAiKF8hTcgLI3w0DHm6i0ylVVcOrlgR1kK99DRLDhyU=
 github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
+github.com/opencontainers/selinux v1.11.0/go.mod h1:E5dMC3VPuVvVHDYmi78qvhJp8+M586T4DlDRYpFkyec=
 github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde h1:x0TT0RDC7UhAVbbWWBzr41ElhJx5tXPWkIHA2HWPRuw=
 github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde/go.mod h1:nZgzbfBr3hhjoZnS66nKrHmduYNpc34ny7RK4z5/HM0=
 github.com/pelletier/go-toml/v2 v2.0.8 h1:0ctb6s9mE31h0/lhu+J6OPmVeDxJn+kYnJc2jZR9tGQ=
@@ -842,6 +864,7 @@ github.com/pelletier/go-toml/v2 v2.0.8/go.mod h1:vuYfssBdrU2XDZ9bYydBu6t+6a6PYNc
 github.com/phpdave11/gofpdf v1.4.2 h1:KPKiIbfwbvC/wOncwhrpRdXVj2CZTCFlw4wnoyjtHfQ=
 github.com/phpdave11/gofpdi v1.0.13 h1:o61duiW8M9sMlkVXWlvP92sZJtGKENvW3VExs6dZukQ=
 github.com/pierrec/lz4/v4 v4.1.15 h1:MO0/ucJhngq7299dKLwIMtgTfbkoSPF6AoMYDd8Q4q0=
+github.com/pierrec/lz4/v4 v4.1.21/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4=
 github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e h1:aoZm08cpOy4WuID//EZDgcC4zIxODThtZNPirFr42+A=
 github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
 github.com/pkg/sftp v1.13.1 h1:I2qBYMChEhIjOgazfJmV3/mZM256btk6wkCDRmW7JYs=
@@ -858,6 +881,7 @@ github.com/russross/blackfriday/v2 v2.1.0 h1:JIOH55/0cWyOuilr9/qlrm0BSXldqnqwMsf
 github.com/ruudk/golang-pdf417 v0.0.0-20201230142125-a7e3863a1245 h1:K1Xf3bKttbF+koVGaX5xngRIZ5bVjbmPnaxE/dR08uY=
 github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646 h1:RpforrEYXWkmGwJHIGnLZ3tTWStkjVVstwzNGqxX2Ds=
 github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
+github.com/seccomp/libseccomp-golang v0.10.0/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
 github.com/shurcooL/sanitized_anchor_name v1.0.0 h1:PdmoCO6wvbs+7yrJyMORt4/BmY5IYyJwS/kOiWx8mHo=
 github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
 github.com/soheilhy/cmux v0.1.5 h1:jjzc5WVemNEDTLwv9tlmemhC73tI08BNOIGwBOo10Js=
@@ -882,8 +906,11 @@ github.com/twitchyliquid64/golang-asm v0.15.1 h1:SU5vSMR7hnwNxj24w34ZyCi/FmDZTkS
 github.com/twitchyliquid64/golang-asm v0.15.1/go.mod h1:a1lVb/DtPvCB8fslRZhAngC2+aY1QWCk3Cedj/Gdt08=
 github.com/ugorji/go/codec v1.2.11 h1:BMaWp1Bb6fHwEtbplGBGJ498wD+LKlNSl25MjdZY4dU=
 github.com/ugorji/go/codec v1.2.11/go.mod h1:UNopzCgEMSXjBc6AOMqYvWC1ktqTAfzJZUZgYf6w6lg=
+github.com/ulikunitz/xz v0.5.12/go.mod h1:nbz6k7qbPmH4IRqmfOplQw/tblSgqTqBwxkY0oWt/14=
 github.com/urfave/cli v1.22.1 h1:+mkCCcOFKPnCmVYVcURKps1Xe+3zP90gSYGNfRkjoIY=
 github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
+github.com/urfave/cli v1.22.14/go.mod h1:X0eDS6pD6Exaclxm99NJ3FiCDRED7vIHpx2mDOHLvkA=
+github.com/uwu-tools/magex v0.10.0/go.mod h1:TrSEhrL1xHfJVy6n05AUwFdcQndgwrbgL5ybPNKWmVY=
 github.com/valyala/bytebufferpool v1.0.0 h1:GqA5TC/0021Y/b9FG4Oi9Mr3q7XYx6KllzawFIhcdPw=
 github.com/valyala/bytebufferpool v1.0.0/go.mod h1:6bBcMArwyJ5K/AmCkWv1jt77kVWyCJ6HpOuEn7z0Csc=
 github.com/valyala/fasttemplate v1.2.2 h1:lxLXG0uE3Qnshl9QyaK6XJxMXlQZELvChBOCmQD0Loo=
@@ -895,6 +922,7 @@ github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17
 github.com/xhit/go-str2duration v1.2.0 h1:BcV5u025cITWxEQKGWr1URRzrcXtu7uk8+luz3Yuhwc=
 github.com/xhit/go-str2duration/v2 v2.1.0 h1:lxklc02Drh6ynqX+DdPyp5pCKLUQpRT8bp8Ydu2Bstc=
 github.com/xhit/go-str2duration/v2 v2.1.0/go.mod h1:ohY8p+0f07DiV6Em5LKB0s2YpLtXVyJfNt1+BlmyAsU=
+github.com/xi2/xz v0.0.0-20171230120015-48954b6210f8/go.mod h1:HUYIGzjTL3rfEspMxjDjgmT5uz5wzYJKVo23qUhYTos=
 github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2 h1:eY9dn8+vbi4tKz5Qo6v2eYzo7kUS51QINcR5jNpbZS8=
 github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
 github.com/yuin/goldmark v1.4.13 h1:fVcFKWvrslecOb/tg+Cc05dkeYx540o0FuFt3nUVDoE=
@@ -1007,6 +1035,7 @@ golang.org/x/net v0.23.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
 golang.org/x/net v0.24.0/go.mod h1:2Q7sJY5mzlzWjKtYUEXSlBWCdyaioyXzRB2RtU8KVE8=
 golang.org/x/net v0.26.0/go.mod h1:5YKkiSynbBIh3p6iOc/vibscux0x38BZDkn8sCUPxHE=
 golang.org/x/net v0.27.0/go.mod h1:dDi0PyhWNoiUOrAS8uXv/vnScO4wnHQO4mj9fn/RytE=
+golang.org/x/net v0.28.0/go.mod h1:yqtgsTWOOnlGLG9GFRrK3++bGOUEkNBoHZc8MEDWPNg=
 golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI=
 golang.org/x/oauth2 v0.11.0/go.mod h1:LdF7O/8bLR/qWK9DrpXmbHLTouvRHK0SgJl0GmDBchk=
 golang.org/x/oauth2 v0.13.0/go.mod h1:/JMhi4ZRXAf4HG9LiNmxvk+45+96RUlVThiH8FzNBn0=
@@ -1023,6 +1052,7 @@ golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.21.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.22.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.23.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.24.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/telemetry v0.0.0-20240208230135-b75ee8823808/go.mod h1:KG1lNk5ZFNssSZLrpVb4sMXKMpGwGXOxSG3rnu2gZQQ=
 golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2 h1:IRJeR9r1pYWsHKTRe/IInb7lYvbBVIqOgsX/u0mbOWY=
 golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2/go.mod h1:TeRTkGYfJXctD9OcfyVLyj2J3IxLnKwHJR8f4D8a3YE=
@@ -1033,6 +1063,7 @@ golang.org/x/term v0.21.0/go.mod h1:ooXLefLobQVslOqselCNF4SxFAaoS6KujMbsGzSDmX0=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.12.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
 golang.org/x/text v0.16.0/go.mod h1:GhwF1Be+LQoKShO3cGOHzqOgRrGaYc9AvblQOmPVHnI=
+golang.org/x/text v0.17.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
 golang.org/x/time v0.3.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
 golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM=
@@ -1042,6 +1073,7 @@ golang.org/x/tools v0.18.0/go.mod h1:GL7B4CwcLLeo59yx/9UWWuNOW1n3VZ4f5axWfML7Lcg
 golang.org/x/tools v0.20.0/go.mod h1:WvitBU7JJf6A4jOdg4S1tviW9bhUxkgeCui/0JHctQg=
 golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk=
 golang.org/x/tools v0.23.0/go.mod h1:pnu6ufv6vQkll6szChhK3C3L/ruaIv5eBeztNG8wtsI=
+golang.org/x/tools v0.24.0/go.mod h1:YhNqVBIfWHdzvTLs0d8LCuMhkKUgSUKldakyV7W/WDQ=
 golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2 h1:H2TDz8ibqkAF6YGhCdN3jS9O0/s90v0rJh3X/OLHEUk=
 golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
 golang.org/x/xerrors v0.0.0-20231012003039-104605ab7028/go.mod h1:NDW/Ps6MPRej6fsCIbMTohpP40sJ/P/vI1MoTEGwX90=
@@ -1090,6 +1122,7 @@ google.golang.org/genproto/googleapis/api v0.0.0-20240318140521-94a12d6c2237/go.
 google.golang.org/genproto/googleapis/api v0.0.0-20240528184218-531527333157 h1:7whR9kGa5LUwFtpLm2ArCEejtnxlGeLbAyjFY8sGNFw=
 google.golang.org/genproto/googleapis/api v0.0.0-20240528184218-531527333157/go.mod h1:99sLkeliLXfdj2J75X3Ho+rrVCaJze0uwN7zDDkjPVU=
 google.golang.org/genproto/googleapis/api v0.0.0-20240604185151-ef581f913117/go.mod h1:OimBR/bc1wPO9iV4NC2bpyjy3VnAwZh5EBPQdtaE5oo=
+google.golang.org/genproto/googleapis/api v0.0.0-20240814211410-ddb44dafa142/go.mod h1:d6be+8HhtEtucleCbxpPW9PA9XwISACu8nvpPqF0BVo=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc h1:g3hIDl0jRNd9PPTs2uBzYuaD5mQuwOkZY0vSc0LR32o=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231030173426-d783a09b4405/go.mod h1:GRUCuLdzVqZte8+Dl/D4N25yLzcGqqWaYkeVOwulFqw=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231212172506-995d672761c0/go.mod h1:guYXGPwC6jwxgWKW5Y405fKWOFNwlvUlUnzyp9i0uqo=
@@ -1112,6 +1145,7 @@ google.golang.org/grpc v1.61.0/go.mod h1:VUbo7IFqmF1QtCAstipjG0GIoq49KvMe9+h1jFL
 google.golang.org/grpc v1.61.1/go.mod h1:VUbo7IFqmF1QtCAstipjG0GIoq49KvMe9+h1jFLBNJs=
 google.golang.org/grpc v1.62.1/go.mod h1:IWTG0VlJLCh1SkC58F7np9ka9mx/WNkjl4PGJaiq+QE=
 google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0 h1:M1YKkFIboKNieVO5DLUEVzQfGwJD30Nv2jfUgzb5UcE=
+google.golang.org/protobuf v1.34.1/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
 gopkg.in/alecthomas/kingpin.v2 v2.2.6 h1:jMFz6MfLP0/4fUyZle81rXUoxOBFi19VUFKVDOQfozc=
 gopkg.in/errgo.v2 v2.1.0 h1:0vLT13EuvQ0hNvakwLuFZ/jYrLp5F3kcWHXdRggjCE8=
 gopkg.in/evanphx/json-patch.v5 v5.6.0 h1:BMT6KIwBD9CaU91PJCZIe46bDmBWa9ynTQgJIOpfQBk=
@@ -1127,13 +1161,14 @@ k8s.io/gengo v0.0.0-20230829151522-9cce18d56c01/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAE
 k8s.io/gengo/v2 v2.0.0-20240228010128-51d4e06bde70/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
 k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
 k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
+k8s.io/klog/v2 v2.120.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
 k8s.io/kms v0.29.3/go.mod h1:TBGbJKpRUMk59neTMDMddjIDL+D4HuFUbpuiuzmOPg0=
 k8s.io/kms v0.30.0 h1:ZlnD/ei5lpvUlPw6eLfVvH7d8i9qZ6HwUQgydNVks8g=
 k8s.io/kms v0.30.0/go.mod h1:GrMurD0qk3G4yNgGcsCEmepqf9KyyIrTXYR2lyUOJC4=
 k8s.io/kms v0.30.1/go.mod h1:GrMurD0qk3G4yNgGcsCEmepqf9KyyIrTXYR2lyUOJC4=
 k8s.io/kms v0.31.0 h1:KchILPfB1ZE+ka7223mpU5zeFNkmb45jl7RHnlImUaI=
 k8s.io/kms v0.31.0/go.mod h1:OZKwl1fan3n3N5FFxnW5C4V3ygrah/3YXeJWS3O6+94=
-k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340/go.mod h1:yD4MZYeKMBwQKVht279WycxKyM84kkAx2DPrTXaeb98=
+k8s.io/kms v0.31.2/go.mod h1:OZKwl1fan3n3N5FFxnW5C4V3ygrah/3YXeJWS3O6+94=
 k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
 k8s.io/utils v0.0.0-20230726121419-3b25d923346b/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 lukechampine.com/uint128 v1.2.0 h1:mBi/5l91vocEN8otkC5bDLhi2KdCticRiwbdB0O+rjI=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 15ae3d4de..bf84209bd 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -34,16 +34,16 @@ require (
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
-	github.com/onsi/ginkgo/v2 v2.20.2 // indirect
-	github.com/onsi/gomega v1.34.1 // indirect
+	github.com/onsi/ginkgo/v2 v2.21.0 // indirect
+	github.com/onsi/gomega v1.34.2 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
 	github.com/x448/float16 v0.8.4 // indirect
-	golang.org/x/net v0.28.0 // indirect
+	golang.org/x/net v0.30.0 // indirect
 	golang.org/x/oauth2 v0.21.0 // indirect
-	golang.org/x/sys v0.24.0 // indirect
-	golang.org/x/term v0.23.0 // indirect
-	golang.org/x/text v0.17.0 // indirect
+	golang.org/x/sys v0.26.0 // indirect
+	golang.org/x/term v0.25.0 // indirect
+	golang.org/x/text v0.19.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	google.golang.org/protobuf v1.34.2 // indirect
 	gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 3f82c4591..fae381cc4 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -29,8 +29,8 @@ github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeN
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
 github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5 h1:5iH8iuqE5apketRbSFBy+X1V0o+l+8NF1avt4HWl7cA=
-github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
+github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db h1:097atOisP2aRj7vFgYQBbFN4U4JNXUNYpxael3UzMyo=
+github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4=
@@ -58,10 +58,10 @@ github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/onrik/logrus v0.11.0 h1:pu+BCaWL36t0yQaj/2UHK2erf88dwssAKOT51mxPUVs=
 github.com/onrik/logrus v0.11.0/go.mod h1:fO2vlZwIdti6PidD3gV5YKt9Lq5ptpnP293RAe1ITwk=
-github.com/onsi/ginkgo/v2 v2.20.2 h1:7NVCeyIWROIAheY21RLS+3j2bb52W0W82tkberYytp4=
-github.com/onsi/ginkgo/v2 v2.20.2/go.mod h1:K9gyxPIlb+aIvnZ8bd9Ak+YP18w3APlR+5coaZoE2ag=
-github.com/onsi/gomega v1.34.1 h1:EUMJIKUjM8sKjYbtxQI9A4z2o+rruxnzNvpknOXie6k=
-github.com/onsi/gomega v1.34.1/go.mod h1:kU1QgUvBDLXBJq618Xvm2LUX6rSAfRaFRTcdOeDLwwY=
+github.com/onsi/ginkgo/v2 v2.21.0 h1:7rg/4f3rB88pb5obDgNZrNHrQ4e6WpjonchcpuBRnZM=
+github.com/onsi/ginkgo/v2 v2.21.0/go.mod h1:7Du3c42kxCUegi0IImZ1wUQzMBVecgIHjR1C+NkhLQo=
+github.com/onsi/gomega v1.34.2 h1:pNCwDkzrsv7MS9kpaQvVb1aVLahQXyJ/Tv5oAZMI3i8=
+github.com/onsi/gomega v1.34.2/go.mod h1:v1xfxRgk0KIsG+QOdm7p8UosrOzPYRo60fd3B/1Dukc=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
@@ -94,16 +94,14 @@ github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9dec
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 h1:2dVuKD2vS7b0QIHQbpyTISPd0LeHDbnYEryqj5Q1ug8=
-golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbRXRL/OHtkFuWGRjvuhBJpk2IlY=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.28.0 h1:a9JDOJc5GMUJ0+UDqmLT86WiEy7iWyIhz8gz8E4e5hE=
-golang.org/x/net v0.28.0/go.mod h1:yqtgsTWOOnlGLG9GFRrK3++bGOUEkNBoHZc8MEDWPNg=
+golang.org/x/net v0.30.0 h1:AcW1SDZMkb8IpzCdQUaIq2sP4sZ4zw+55h6ynffypl4=
+golang.org/x/net v0.30.0/go.mod h1:2wGyMJ5iFasEhkwi13ChkO/t1ECNC4X4eBKkVFyYFlU=
 golang.org/x/oauth2 v0.21.0 h1:tsimM75w1tF/uws5rbeHzIWxEqElMehnc+iW793zsZs=
 golang.org/x/oauth2 v0.21.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -113,22 +111,22 @@ golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5h
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.24.0 h1:Twjiwq9dn6R1fQcyiK+wQyHWfaz/BJB+YIpzU/Cv3Xg=
-golang.org/x/sys v0.24.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/term v0.23.0 h1:F6D4vR+EHoL9/sWAWgAR1H2DcHr4PareCbAaCo1RpuU=
-golang.org/x/term v0.23.0/go.mod h1:DgV24QBUrK6jhZXl+20l6UWznPlwAHm1Q1mGHtydmSk=
+golang.org/x/sys v0.26.0 h1:KHjCJyddX0LoSTb3J+vWpupP9p0oznkqVk/IfjymZbo=
+golang.org/x/sys v0.26.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/term v0.25.0 h1:WtHI/ltw4NvSUig5KARz9h521QvRC8RmF/cuYqifU24=
+golang.org/x/term v0.25.0/go.mod h1:RPyXicDX+6vLxogjjRxjgD2TKtmAO6NZBsBRfrOLu7M=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.17.0 h1:XtiM5bkSOt+ewxlOE/aE/AKEHibwj/6gvWMl9Rsh0Qc=
-golang.org/x/text v0.17.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
+golang.org/x/text v0.19.0 h1:kTxAhCbGbxhK0IwgSKiMO5awPoDQ0RpfiVYBfK860YM=
+golang.org/x/text v0.19.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
 golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
 golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.24.0 h1:J1shsA93PJUEVaUSaay7UXAyE8aimq3GW0pjlolpa24=
-golang.org/x/tools v0.24.0/go.mod h1:YhNqVBIfWHdzvTLs0d8LCuMhkKUgSUKldakyV7W/WDQ=
+golang.org/x/tools v0.26.0 h1:v/60pFQmzmT9ExmjDv2gGIfi3OqfKoEP6I5+umXlbnQ=
+golang.org/x/tools v0.26.0/go.mod h1:TPVVj70c7JJ3WCazhD8OdXcZg/og+b9+tH/KxylGwH0=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 74da2082f..f68683db3 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -59,7 +59,7 @@ image:
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.20.2 \
+		--build-arg GINKGO_VERSION=2.21.0 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -80,7 +80,7 @@ build: ensure-buildx
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.20.2 \
+		--build-arg GINKGO_VERSION=2.21.0 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 587dbe98b..676a3f065 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.20.2
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.21.0
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index c2242e6f1..fed9ff256 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -95,7 +95,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.20.2
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.21.0
   fi
 
   echo "[dev-env] .. done building controller images"

From 2984e1a2adf28d82f3eb6be713f188fe9dc4e155 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 4 Nov 2024 12:05:28 +0000
Subject: [PATCH 1521/1641] Bump github.com/opencontainers/runc from 1.2.0 to
 1.2.1 in the go group across 1 directory (#12292)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 885c57426..dc0ac91d4 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.4
 	github.com/onsi/ginkgo/v2 v2.21.0
-	github.com/opencontainers/runc v1.2.0
+	github.com/opencontainers/runc v1.2.1
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.5
 	github.com/prometheus/client_model v0.6.1
diff --git a/go.sum b/go.sum
index 56a6f88d9..664f8aa9b 100644
--- a/go.sum
+++ b/go.sum
@@ -171,8 +171,8 @@ github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7J
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.34.2 h1:pNCwDkzrsv7MS9kpaQvVb1aVLahQXyJ/Tv5oAZMI3i8=
 github.com/onsi/gomega v1.34.2/go.mod h1:v1xfxRgk0KIsG+QOdm7p8UosrOzPYRo60fd3B/1Dukc=
-github.com/opencontainers/runc v1.2.0 h1:qke7ZVCmJcKrJVY2iHJVC+0kql9uYdkusOPsQOOeBw4=
-github.com/opencontainers/runc v1.2.0/go.mod h1:/PXzF0h531HTMsYQnmxXkBD7YaGShm/2zcRB79dksUc=
+github.com/opencontainers/runc v1.2.1 h1:mQkmeFSUxqFaVmvIn1VQPeQIKpHFya5R07aJw0DKQa8=
+github.com/opencontainers/runc v1.2.1/go.mod h1:/PXzF0h531HTMsYQnmxXkBD7YaGShm/2zcRB79dksUc=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
 github.com/opencontainers/runtime-spec v1.2.0/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=

From 4809310016d04a6067a54032cae937306caf6aac Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 4 Nov 2024 12:07:28 +0000
Subject: [PATCH 1522/1641] Bump github.com/fsnotify/fsnotify from 1.7.0 to
 1.8.0 (#12293)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index dc0ac91d4..fdb988b0b 100644
--- a/go.mod
+++ b/go.mod
@@ -6,7 +6,7 @@ require (
 	dario.cat/mergo v1.0.1
 	github.com/armon/go-proxyproto v0.1.0
 	github.com/eapache/channels v1.1.0
-	github.com/fsnotify/fsnotify v1.7.0
+	github.com/fsnotify/fsnotify v1.8.0
 	github.com/json-iterator/go v1.1.12
 	github.com/kylelemons/godebug v1.1.0
 	github.com/mitchellh/go-ps v1.0.0
diff --git a/go.sum b/go.sum
index 664f8aa9b..0693d53b8 100644
--- a/go.sum
+++ b/go.sum
@@ -37,8 +37,8 @@ github.com/evanphx/json-patch/v5 v5.9.0 h1:kcBlZQbplgElYIlo/n1hJbls2z/1awpXxpRi0
 github.com/evanphx/json-patch/v5 v5.9.0/go.mod h1:VNkHZ/282BpEyt/tObQO8s5CMPmYYq14uClGH4abBuQ=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
-github.com/fsnotify/fsnotify v1.7.0 h1:8JEhPFa5W2WU7YfeZzPNqzMP6Lwt7L2715Ggo0nosvA=
-github.com/fsnotify/fsnotify v1.7.0/go.mod h1:40Bi/Hjc2AVfZrqy+aj+yEI+/bRxZnMJyTJwOpGvigM=
+github.com/fsnotify/fsnotify v1.8.0 h1:dAwr6QBTBZIkG8roQaJjGof0pp0EeF+tNV7YBP3F/8M=
+github.com/fsnotify/fsnotify v1.8.0/go.mod h1:8jBTzvmWwFyi3Pb8djgCCO5IBqzKJ/Jwo8TRcHyHii0=
 github.com/fullsailor/pkcs7 v0.0.0-20160414161337-2585af45975b/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=
 github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa h1:RDBNVkRviHZtvDvId8XSGPu3rmpmSe+wKRcEWNgsfWU=
 github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa/go.mod h1:KnogPXtdwXqoenmZCw6S+25EAm2MkxbG0deNDu4cbSA=

From 02a3933ea9a8a7e761f75d734023fdbf6fe4fccd Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 4 Nov 2024 20:32:03 +0100
Subject: [PATCH 1523/1641] Images: Trigger `test-runner` build. (#12304)

---
 images/test-runner/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/TAG b/images/test-runner/TAG
index 795460fce..56130fb3a 100644
--- a/images/test-runner/TAG
+++ b/images/test-runner/TAG
@@ -1 +1 @@
-v1.1.0
+v1.1.1

From 0909a61ea375b202eb40a8c4744d2cc44b90df7b Mon Sep 17 00:00:00 2001
From: Jon Carl <grounded042@joncarl.com>
Date: Mon, 4 Nov 2024 15:21:28 -0700
Subject: [PATCH 1524/1641] Docs: Add CPU usage note for
 `--metrics-per-undefined-host`. (#12309)

---
 docs/user-guide/monitoring.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/user-guide/monitoring.md b/docs/user-guide/monitoring.md
index f08e1bc2f..4ad2795cf 100644
--- a/docs/user-guide/monitoring.md
+++ b/docs/user-guide/monitoring.md
@@ -168,7 +168,7 @@ According to the above example, this URL will be http://10.192.0.3:31086
 
   - By default request metrics are labeled with the hostname. When you have a wildcard domain ingress, then there will be no metrics for that ingress (to prevent the metrics from exploding in cardinality). To get metrics in this case you have two options:
     - Run the ingress controller with `--metrics-per-host=false`. You will lose labeling by hostname, but still have labeling by ingress.
-    - Run the ingress controller with `--metrics-per-undefined-host=true --metrics-per-host=true`. You will get labeling by hostname even if the hostname is not explicitly defined on an ingress. Be warned that cardinality could explode due to many hostnames.
+    - Run the ingress controller with `--metrics-per-undefined-host=true --metrics-per-host=true`. You will get labeling by hostname even if the hostname is not explicitly defined on an ingress. Be warned that cardinality could explode due to many hostnames and CPU usage could also increase.
 
 ### Grafana dashboard using ingress resource
   - If you want to expose the dashboard for grafana using an ingress resource, then you can :

From b3742aa5de49e8a3a578ae0e3f07d6c54fee322a Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 5 Nov 2024 20:53:44 +0100
Subject: [PATCH 1525/1641] Tests: Bump `e2e-test-runner` to
 v20241104-02a3933e. (#12311)

---
 build/run-in-docker.sh     | 2 +-
 test/e2e-image/Makefile    | 2 +-
 test/e2e/run-chart-test.sh | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index ed0b1e213..eea8877ee 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20241004-114a6abb@sha256:1389ec0589abbf5c431c9290c4c307437c8396995c63dda5eac26abd70963dc8}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20241104-02a3933e@sha256:baf30e414c5657cc71f5bd1db502f0e0ee4ab721b6560340eff214935e96bef0}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index e3b0d609f..09d47a872 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20241004-114a6abb@sha256:1389ec0589abbf5c431c9290c4c307437c8396995c63dda5eac26abd70963dc8"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20241104-02a3933e@sha256:baf30e414c5657cc71f5bd1db502f0e0ee4ab721b6560340eff214935e96bef0"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 676a3f065..48828a050 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -114,5 +114,5 @@ docker run \
   --workdir /workdir \
   --entrypoint ct \
   --rm \
-  registry.k8s.io/ingress-nginx/e2e-test-runner:v20241004-114a6abb@sha256:1389ec0589abbf5c431c9290c4c307437c8396995c63dda5eac26abd70963dc8 \
+  registry.k8s.io/ingress-nginx/e2e-test-runner:v20241104-02a3933e@sha256:baf30e414c5657cc71f5bd1db502f0e0ee4ab721b6560340eff214935e96bef0 \
     install --charts charts/ingress-nginx

From af095e42166e9769ec2a062790c5b443dc91cc78 Mon Sep 17 00:00:00 2001
From: Satyam Zode <5508956+satyamz@users.noreply.github.com>
Date: Wed, 6 Nov 2024 23:23:30 +0530
Subject: [PATCH 1526/1641] Update custom headers annotation documentation
 (#12317)

Signed-off-by: Satyam Zode <satyamz@users.noreply.github.com>
Co-authored-by: Satyam Zode <satyamz@users.noreply.github.com>
---
 docs/user-guide/nginx-configuration/annotations.md | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index 29cd9cf14..bc72a692c 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -335,7 +335,13 @@ nginx.ingress.kubernetes.io/custom-http-errors: "404,415"
 ```
 
 ### Custom Headers
-This annotation is of the form `nginx.ingress.kubernetes.io/custom-headers: custom-headers-configmap` to specify a configmap name that contains custom headers. This annotation uses `more_set_headers` nginx directive.
+This annotation is of the form `nginx.ingress.kubernetes.io/custom-headers: <namespace>/<custom headers configmap>` to specify a namespace and configmap name that contains custom headers. This annotation uses `more_set_headers` nginx directive.
+
+Example annotation for following example configmap:
+
+```yaml
+nginx.ingress.kubernetes.io/custom-headers: default/custom-headers-configmap
+```
 
 Example configmap:
 ```yaml
@@ -345,6 +351,7 @@ data:
 kind: ConfigMap
 metadata:
   name: custom-headers-configmap
+  namespace: default
 ```
 
 !!! attention

From ca81d5bcddf82ee0bd3ad62f473e5037b20976f5 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 6 Nov 2024 19:19:29 -0500
Subject: [PATCH 1527/1641] Auth TLS: Improve redirect RegEx. (#12249)

---
 internal/ingress/annotations/authtls/main.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/internal/ingress/annotations/authtls/main.go b/internal/ingress/annotations/authtls/main.go
index 1c6bad485..54fa20b5e 100644
--- a/internal/ingress/annotations/authtls/main.go
+++ b/internal/ingress/annotations/authtls/main.go
@@ -42,7 +42,7 @@ const (
 
 var (
 	authVerifyClientRegex = regexp.MustCompile(`^(on|off|optional|optional_no_ca)$`)
-	redirectRegex         = regexp.MustCompile(`^((https?://)?[A-Za-z0-9\-.]*(:\d+)?/[A-Za-z0-9\-.]*)?$`)
+	redirectRegex         = regexp.MustCompile(`^((https?://)?[A-Za-z0-9\-.]+(:\d+)?)?(/[A-Za-z0-9\-.]+)*/?$`)
 )
 
 var authTLSAnnotations = parser.Annotation{

From 7f0350b4b3e173d2a65d37d8fe43c8a5814b1641 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 7 Nov 2024 21:32:44 +0100
Subject: [PATCH 1528/1641] Auth TLS: Add `_` to redirect RegEx. (#12325)

---
 internal/ingress/annotations/authtls/main.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/internal/ingress/annotations/authtls/main.go b/internal/ingress/annotations/authtls/main.go
index 54fa20b5e..de4d1cc1d 100644
--- a/internal/ingress/annotations/authtls/main.go
+++ b/internal/ingress/annotations/authtls/main.go
@@ -42,7 +42,7 @@ const (
 
 var (
 	authVerifyClientRegex = regexp.MustCompile(`^(on|off|optional|optional_no_ca)$`)
-	redirectRegex         = regexp.MustCompile(`^((https?://)?[A-Za-z0-9\-.]+(:\d+)?)?(/[A-Za-z0-9\-.]+)*/?$`)
+	redirectRegex         = regexp.MustCompile(`^((https?://)?[A-Za-z0-9\-.]+(:\d+)?)?(/[A-Za-z0-9\-_.]+)*/?$`)
 )
 
 var authTLSAnnotations = parser.Annotation{

From 4a447782ac80c8219f45dd390d09a6056863fddb Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 10 Nov 2024 21:36:43 +0100
Subject: [PATCH 1529/1641] Go: Bump to v1.23.3. (#12320)

---
 GOLANG_VERSION                                | 2 +-
 go.mod                                        | 2 +-
 go.work                                       | 2 +-
 images/custom-error-pages/rootfs/go.mod       | 2 +-
 images/ext-auth-example-authsvc/rootfs/go.mod | 2 +-
 images/kube-webhook-certgen/rootfs/go.mod     | 2 +-
 magefiles/go.mod                              | 2 +-
 7 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/GOLANG_VERSION b/GOLANG_VERSION
index 229a27c6f..ac1df3fce 100644
--- a/GOLANG_VERSION
+++ b/GOLANG_VERSION
@@ -1 +1 @@
-1.22.8
+1.23.3
diff --git a/go.mod b/go.mod
index fdb988b0b..1e5e18adb 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx
 
-go 1.22.8
+go 1.23.3
 
 require (
 	dario.cat/mergo v1.0.1
diff --git a/go.work b/go.work
index b98909b34..d9bab1506 100644
--- a/go.work
+++ b/go.work
@@ -1,4 +1,4 @@
-go 1.22.8
+go 1.23.3
 
 use (
 	.
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 648cb4cf0..9a2f14a9a 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.22.8
+go 1.23.3
 
 require github.com/prometheus/client_golang v1.20.5
 
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index 433c5caf4..7e699ac1a 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,6 +1,6 @@
 module example.com/authsvc
 
-go 1.22.8
+go 1.23.3
 
 require k8s.io/apimachinery v0.31.2
 
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index bf84209bd..4efc9c6d3 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,6 +1,6 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.22.8
+go 1.23.3
 
 require (
 	github.com/onrik/logrus v0.11.0
diff --git a/magefiles/go.mod b/magefiles/go.mod
index 8c58b526c..64f18e43d 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/magefiles
 
-go 1.22.8
+go 1.23.3
 
 require (
 	github.com/blang/semver/v4 v4.0.0

From 79c684f9cec106271811576202dc4ef10f24bc70 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 11 Nov 2024 03:22:44 +0100
Subject: [PATCH 1530/1641] Images: Bump `gcb-docker-gcloud` to
 v20241110-72bb0b1665. (#12340)

---
 cloudbuild.yaml                             | 2 +-
 images/cfssl/cloudbuild.yaml                | 2 +-
 images/custom-error-pages/cloudbuild.yaml   | 2 +-
 images/e2e-test-echo/cloudbuild.yaml        | 2 +-
 images/fastcgi-helloserver/cloudbuild.yaml  | 2 +-
 images/httpbun/cloudbuild.yaml              | 2 +-
 images/kube-webhook-certgen/cloudbuild.yaml | 2 +-
 images/nginx/cloudbuild.yaml                | 2 +-
 images/test-runner/cloudbuild.yaml          | 2 +-
 9 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/cloudbuild.yaml b/cloudbuild.yaml
index 0948b1f05..1494196b7 100644
--- a/cloudbuild.yaml
+++ b/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       - REPO_INFO=https://github.com/kubernetes/ingress-nginx
diff --git a/images/cfssl/cloudbuild.yaml b/images/cfssl/cloudbuild.yaml
index a17f86196..ad7bc6a51 100644
--- a/images/cfssl/cloudbuild.yaml
+++ b/images/cfssl/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/custom-error-pages/cloudbuild.yaml b/images/custom-error-pages/cloudbuild.yaml
index 99a8d78b6..01906c367 100644
--- a/images/custom-error-pages/cloudbuild.yaml
+++ b/images/custom-error-pages/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/e2e-test-echo/cloudbuild.yaml b/images/e2e-test-echo/cloudbuild.yaml
index 1d525e413..213fb2a43 100644
--- a/images/e2e-test-echo/cloudbuild.yaml
+++ b/images/e2e-test-echo/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index 7eb047612..81bbe3872 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/httpbun/cloudbuild.yaml b/images/httpbun/cloudbuild.yaml
index 4df9d090c..7f6454771 100644
--- a/images/httpbun/cloudbuild.yaml
+++ b/images/httpbun/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/kube-webhook-certgen/cloudbuild.yaml b/images/kube-webhook-certgen/cloudbuild.yaml
index 74f4a04a1..f922e3b18 100644
--- a/images/kube-webhook-certgen/cloudbuild.yaml
+++ b/images/kube-webhook-certgen/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index c53259ad1..7f4448310 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/test-runner/cloudbuild.yaml b/images/test-runner/cloudbuild.yaml
index b9df15a5e..207955678 100644
--- a/images/test-runner/cloudbuild.yaml
+++ b/images/test-runner/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20240718-5ef92b5c36
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash

From 315f07ced61b53b7e0022d118760b2fa7b5fc085 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 Nov 2024 18:46:46 +0000
Subject: [PATCH 1531/1641] Bump golang.org/x/crypto from 0.28.0 to 0.29.0
 (#12346)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 10 +++++-----
 go.sum | 20 ++++++++++----------
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/go.mod b/go.mod
index 1e5e18adb..34a39ed90 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.9.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.28.0
+	golang.org/x/crypto v0.29.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
 	google.golang.org/grpc v1.67.1
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
@@ -118,10 +118,10 @@ require (
 	golang.org/x/mod v0.21.0 // indirect
 	golang.org/x/net v0.30.0 // indirect
 	golang.org/x/oauth2 v0.23.0 // indirect
-	golang.org/x/sync v0.8.0 // indirect
-	golang.org/x/sys v0.26.0 // indirect
-	golang.org/x/term v0.25.0 // indirect
-	golang.org/x/text v0.19.0 // indirect
+	golang.org/x/sync v0.9.0 // indirect
+	golang.org/x/sys v0.27.0 // indirect
+	golang.org/x/term v0.26.0 // indirect
+	golang.org/x/text v0.20.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.26.0 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20240814211410-ddb44dafa142 // indirect
diff --git a/go.sum b/go.sum
index 0693d53b8..27e247887 100644
--- a/go.sum
+++ b/go.sum
@@ -237,8 +237,8 @@ go.uber.org/zap v1.27.0/go.mod h1:GB2qFLM7cTU87MWRP2mPIjqfIDnGu+VIO4V/SdhGo2E=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.28.0 h1:GBDwsMXVQi34v5CCYUm2jkJvu4cbtru2U4TN2PSyQnw=
-golang.org/x/crypto v0.28.0/go.mod h1:rmgy+3RHxRZMyY0jjAJShp2zgEdOqj2AO7U0pYmeQ7U=
+golang.org/x/crypto v0.29.0 h1:L5SG1JTTXupVV3n6sUqMTeWbjAyfPwoda2DLX8J8FrQ=
+golang.org/x/crypto v0.29.0/go.mod h1:+F4F4N5hv6v38hfeYwTdx20oUvLLc+QfrE9Ax9HtgRg=
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 h1:2dVuKD2vS7b0QIHQbpyTISPd0LeHDbnYEryqj5Q1ug8=
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbRXRL/OHtkFuWGRjvuhBJpk2IlY=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
@@ -259,8 +259,8 @@ golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJ
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.8.0 h1:3NFvSEYkUoMifnESzZl15y791HH1qU2xm6eCJU5ZPXQ=
-golang.org/x/sync v0.8.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
+golang.org/x/sync v0.9.0 h1:fEo0HyrW1GIgZdpbhCRO0PkJajUS5H9IFUztCgEo2jQ=
+golang.org/x/sync v0.9.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -275,14 +275,14 @@ golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.26.0 h1:KHjCJyddX0LoSTb3J+vWpupP9p0oznkqVk/IfjymZbo=
-golang.org/x/sys v0.26.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/term v0.25.0 h1:WtHI/ltw4NvSUig5KARz9h521QvRC8RmF/cuYqifU24=
-golang.org/x/term v0.25.0/go.mod h1:RPyXicDX+6vLxogjjRxjgD2TKtmAO6NZBsBRfrOLu7M=
+golang.org/x/sys v0.27.0 h1:wBqf8DvsY9Y/2P8gAfPDEYNuS30J4lPHJxXSb/nJZ+s=
+golang.org/x/sys v0.27.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/term v0.26.0 h1:WEQa6V3Gja/BhNxg540hBip/kkaYtRg3cxg4oXSw4AU=
+golang.org/x/term v0.26.0/go.mod h1:Si5m1o57C5nBNQo5z1iq+XDijt21BDBDp2bK0QI8e3E=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.19.0 h1:kTxAhCbGbxhK0IwgSKiMO5awPoDQ0RpfiVYBfK860YM=
-golang.org/x/text v0.19.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
+golang.org/x/text v0.20.0 h1:gK/Kv2otX8gz+wn7Rmb3vT96ZwuoxnQlY+HlJVj7Qug=
+golang.org/x/text v0.20.0/go.mod h1:D4IsuqiFMhST5bX19pQ9ikHC2GsaKyk/oF+pn3ducp4=
 golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
 golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=

From 759602101298219f88015ca1a805170cf3921b67 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 Nov 2024 18:48:45 +0000
Subject: [PATCH 1532/1641] Bump the actions group with 3 updates (#12348)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/plugin.yaml              | 6 +++---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 3 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 784977bc8..1d184f83d 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -27,7 +27,7 @@ jobs:
 
       - name: Run GoReleaser Snapshot
         if: ${{ ! startsWith(github.ref, 'refs/tags/') }}
-        uses: goreleaser/goreleaser-action@286f3b13b1b49da4ac219696163fb8c1c93e1200 # v6.0.0
+        uses: goreleaser/goreleaser-action@9ed2f89a662bf1735a48bc8557fd212fa902bebf # v6.1.0
         with:
           version: latest
           args: release --snapshot --clean
@@ -36,7 +36,7 @@ jobs:
 
       - name: Run GoReleaser
         if: ${{ startsWith(github.ref, 'refs/tags/') }}
-        uses: goreleaser/goreleaser-action@286f3b13b1b49da4ac219696163fb8c1c93e1200 # v6.0.0
+        uses: goreleaser/goreleaser-action@9ed2f89a662bf1735a48bc8557fd212fa902bebf # v6.1.0
         with:
           version: latest
           args: release --clean
@@ -45,6 +45,6 @@ jobs:
 
       - name: Update new version in krew-index
         if: ${{ startsWith(github.ref, 'refs/tags/') }}
-        uses: rajatjindal/krew-release-bot@df3eb197549e3568be8b4767eec31c5e8e8e6ad8 # v0.0.46
+        uses: rajatjindal/krew-release-bot@3d9faef30a82761d610544f62afddca00993eef9 # v0.0.47
         with:
           krew_template_file: cmd/plugin/krew.yaml
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 02a0fdf12..e285350a5 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@662472033e021d55d94146f66f6058822b0b39fd # v3.27.0
+        uses: github/codeql-action/upload-sarif@4f3212b61783c3c68e8309a0f18a699764811cda # v3.27.1
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 3604b0945..213d55e96 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@662472033e021d55d94146f66f6058822b0b39fd # v3.27.0
+        uses: github/codeql-action/upload-sarif@4f3212b61783c3c68e8309a0f18a699764811cda # v3.27.1
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From a37994cb52eafd7998e24082a19f44150c734180 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 11 Nov 2024 20:20:46 +0000
Subject: [PATCH 1533/1641] Bump google.golang.org/grpc from 1.67.1 to 1.68.0
 (#12347)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 34a39ed90..8826fb0d2 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.29.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
-	google.golang.org/grpc v1.67.1
+	google.golang.org/grpc v1.68.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -124,7 +124,7 @@ require (
 	golang.org/x/text v0.20.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.26.0 // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20240814211410-ddb44dafa142 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1 // indirect
 	google.golang.org/protobuf v1.34.2 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index 27e247887..174d9074e 100644
--- a/go.sum
+++ b/go.sum
@@ -298,10 +298,10 @@ golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8T
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 gomodules.xyz/jsonpatch/v2 v2.4.0 h1:Ci3iUJyx9UeRx7CeFN8ARgGbkESwJK+KB9lLcWxY/Zw=
 gomodules.xyz/jsonpatch/v2 v2.4.0/go.mod h1:AH3dM2RI6uoBZxn3LVrfvJ3E0/9dG4cSrbuBJT4moAY=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240814211410-ddb44dafa142 h1:e7S5W7MGGLaSu8j3YjdezkZ+m1/Nm0uRVRMEMGk26Xs=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240814211410-ddb44dafa142/go.mod h1:UqMtugtsSgubUsoxbuAoiCXvqvErP7Gf0so0mK9tHxU=
-google.golang.org/grpc v1.67.1 h1:zWnc1Vrcno+lHZCOofnIMvycFcc0QRGIzm9dhnDX68E=
-google.golang.org/grpc v1.67.1/go.mod h1:1gLDyUQU7CTLJI90u3nXZ9ekeghjeM7pTDZlqFNg2AA=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1 h1:pPJltXNxVzT4pK9yD8vR9X75DaWYYmLGMsEvBfFQZzQ=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1/go.mod h1:UqMtugtsSgubUsoxbuAoiCXvqvErP7Gf0so0mK9tHxU=
+google.golang.org/grpc v1.68.0 h1:aHQeeJbo8zAkAa3pRzrVjZlbz6uSfeOXlJNQM0RAbz0=
+google.golang.org/grpc v1.68.0/go.mod h1:fmSPC5AsjSBCK54MyHRx48kpOti1/jRfOlwEWywNjWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From be8abe7a5cf701b8e00502e39166cf652076e378 Mon Sep 17 00:00:00 2001
From: Felix Dobler <46747171+FelixDobler@users.noreply.github.com>
Date: Tue, 12 Nov 2024 22:26:46 +0100
Subject: [PATCH 1534/1641] Chart: Add service cluster IPs. (#12333)

---
 charts/ingress-nginx/README.md                |  3 +++
 .../controller-service-internal.yaml          |  3 +++
 .../templates/controller-service.yaml         |  3 +++
 .../templates/default-backend-service.yaml    |  3 +++
 .../controller-service-internal_test.yaml     | 24 +++++++++++++++++++
 .../tests/controller-service_test.yaml        | 20 ++++++++++++++++
 .../tests/default-backend-service_test.yaml   | 20 ++++++++++++++++
 charts/ingress-nginx/values.yaml              | 12 ++++++++++
 8 files changed, 88 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 411441869..c0b00e56d 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -442,6 +442,7 @@ metadata:
 | controller.service.annotations | object | `{}` | Annotations to be added to the external controller service. See `controller.service.internal.annotations` for annotations to be added to the internal controller service. |
 | controller.service.appProtocol | bool | `true` | Declare the app protocol of the external HTTP and HTTPS listeners or not. Supersedes provider-specific annotations for declaring the backend protocol. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#application-protocol |
 | controller.service.clusterIP | string | `""` | Pre-defined cluster internal IP address of the external controller service. Take care of collisions with existing services. This value is immutable. Set once, it can not be changed without deleting and re-creating the service. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address |
+| controller.service.clusterIPs | list | `[]` | Pre-defined cluster internal IP addresses of the external controller service. Take care of collisions with existing services. This value is immutable. Set once, it can not be changed without deleting and re-creating the service. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address |
 | controller.service.enableHttp | bool | `true` | Enable the HTTP listener on both controller services or not. |
 | controller.service.enableHttps | bool | `true` | Enable the HTTPS listener on both controller services or not. |
 | controller.service.enabled | bool | `true` | Enable controller services or not. This does not influence the creation of either the admission webhook or the metrics service. |
@@ -451,6 +452,7 @@ metadata:
 | controller.service.internal.annotations | object | `{}` | Annotations to be added to the internal controller service. Mandatory for the internal controller service to be created. Varies with the cloud service. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer |
 | controller.service.internal.appProtocol | bool | `true` | Declare the app protocol of the internal HTTP and HTTPS listeners or not. Supersedes provider-specific annotations for declaring the backend protocol. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#application-protocol |
 | controller.service.internal.clusterIP | string | `""` | Pre-defined cluster internal IP address of the internal controller service. Take care of collisions with existing services. This value is immutable. Set once, it can not be changed without deleting and re-creating the service. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address |
+| controller.service.internal.clusterIPs | list | `[]` | Pre-defined cluster internal IP addresses of the internal controller service. Take care of collisions with existing services. This value is immutable. Set once, it can not be changed without deleting and re-creating the service. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address |
 | controller.service.internal.enabled | bool | `false` | Enable the internal controller service or not. Remember to configure `controller.service.internal.annotations` when enabling this. |
 | controller.service.internal.externalIPs | list | `[]` | List of node IP addresses at which the internal controller service is available. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips |
 | controller.service.internal.externalTrafficPolicy | string | `""` | External traffic policy of the internal controller service. Set to "Local" to preserve source IP on providers supporting it. Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip |
@@ -542,6 +544,7 @@ metadata:
 | defaultBackend.replicaCount | int | `1` |  |
 | defaultBackend.resources | object | `{}` |  |
 | defaultBackend.service.annotations | object | `{}` |  |
+| defaultBackend.service.clusterIPs | list | `[]` | Pre-defined cluster internal IP addresses of the default backend service. Take care of collisions with existing services. This value is immutable. Set once, it can not be changed without deleting and re-creating the service. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address |
 | defaultBackend.service.externalIPs | list | `[]` | List of IP addresses at which the default backend service is available # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips # |
 | defaultBackend.service.loadBalancerSourceRanges | list | `[]` |  |
 | defaultBackend.service.servicePort | int | `80` |  |
diff --git a/charts/ingress-nginx/templates/controller-service-internal.yaml b/charts/ingress-nginx/templates/controller-service-internal.yaml
index 6d0b47caf..c37461ae1 100644
--- a/charts/ingress-nginx/templates/controller-service-internal.yaml
+++ b/charts/ingress-nginx/templates/controller-service-internal.yaml
@@ -19,6 +19,9 @@ spec:
 {{- if .Values.controller.service.internal.clusterIP }}
   clusterIP: {{ .Values.controller.service.internal.clusterIP }}
 {{- end }}
+{{- if .Values.controller.service.internal.clusterIPs }}
+  clusterIPs: {{ toYaml .Values.controller.service.internal.clusterIPs | nindent 4 }}
+{{- end }}
 {{- if .Values.controller.service.internal.externalIPs }}
   externalIPs: {{ toYaml .Values.controller.service.internal.externalIPs | nindent 4 }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/controller-service.yaml b/charts/ingress-nginx/templates/controller-service.yaml
index cb78a7035..abaf808f0 100644
--- a/charts/ingress-nginx/templates/controller-service.yaml
+++ b/charts/ingress-nginx/templates/controller-service.yaml
@@ -19,6 +19,9 @@ spec:
 {{- if .Values.controller.service.clusterIP }}
   clusterIP: {{ .Values.controller.service.clusterIP }}
 {{- end }}
+{{- if .Values.controller.service.clusterIPs }}
+  clusterIPs: {{ toYaml .Values.controller.service.clusterIPs | nindent 4 }}
+{{- end }}
 {{- if .Values.controller.service.externalIPs }}
   externalIPs: {{ toYaml .Values.controller.service.externalIPs | nindent 4 }}
 {{- end }}
diff --git a/charts/ingress-nginx/templates/default-backend-service.yaml b/charts/ingress-nginx/templates/default-backend-service.yaml
index 65b6b8362..5a836365b 100644
--- a/charts/ingress-nginx/templates/default-backend-service.yaml
+++ b/charts/ingress-nginx/templates/default-backend-service.yaml
@@ -18,6 +18,9 @@ spec:
 {{- if .Values.defaultBackend.service.clusterIP }}
   clusterIP: {{ .Values.defaultBackend.service.clusterIP }}
 {{- end }}
+{{- if .Values.defaultBackend.service.clusterIPs }}
+  clusterIPs: {{ toYaml .Values.defaultBackend.service.clusterIPs | nindent 4 }}
+{{- end }}
 {{- if .Values.defaultBackend.service.externalIPs }}
   externalIPs: {{ toYaml .Values.defaultBackend.service.externalIPs | nindent 4 }}
 {{- end }}
diff --git a/charts/ingress-nginx/tests/controller-service-internal_test.yaml b/charts/ingress-nginx/tests/controller-service-internal_test.yaml
index 5465e1a2b..8460b8911 100644
--- a/charts/ingress-nginx/tests/controller-service-internal_test.yaml
+++ b/charts/ingress-nginx/tests/controller-service-internal_test.yaml
@@ -23,3 +23,27 @@ tests:
       - equal:
           path: metadata.name
           value: RELEASE-NAME-ingress-nginx-controller-internal
+
+  - it: should create a Service without `clusterIPs` if `controller.service.internal.clusterIPs` is not set
+    set:
+      controller.service.internal.enabled: true
+      controller.service.internal.annotations:
+        test.annotation: "true"
+    asserts:
+      - notExists:
+          path: spec.clusterIPs
+
+  - it: should create a Service with `clusterIPs` if `controller.service.internal.clusterIPs` is set
+    set:
+      controller.service.internal.enabled: true
+      controller.service.internal.annotations:
+        test.annotation: "true"
+      controller.service.internal.clusterIPs:
+        - 10.0.0.1
+        - fd00::1
+    asserts:
+      - equal:
+          path: spec.clusterIPs
+          value:
+            - 10.0.0.1
+            - fd00::1
diff --git a/charts/ingress-nginx/tests/controller-service_test.yaml b/charts/ingress-nginx/tests/controller-service_test.yaml
index 10574f227..df9a7c544 100644
--- a/charts/ingress-nginx/tests/controller-service_test.yaml
+++ b/charts/ingress-nginx/tests/controller-service_test.yaml
@@ -30,3 +30,23 @@ tests:
       - equal:
           path: spec.type
           value: NodePort
+
+  - it: should create a Service without `clusterIPs` if `controller.service.clusterIPs` is not set
+    set:
+      controller.service.external.enabled: true
+    asserts:
+      - notExists:
+          path: spec.clusterIPs
+
+  - it: should create a Service with `clusterIPs` if `controller.service.clusterIPs` is set
+    set:
+      controller.service.external.enabled: true
+      controller.service.clusterIPs:
+        - 10.0.0.1
+        - fd00::1
+    asserts:
+      - equal:
+          path: spec.clusterIPs
+          value:
+            - 10.0.0.1
+            - fd00::1
diff --git a/charts/ingress-nginx/tests/default-backend-service_test.yaml b/charts/ingress-nginx/tests/default-backend-service_test.yaml
index f16904f9f..521d82091 100644
--- a/charts/ingress-nginx/tests/default-backend-service_test.yaml
+++ b/charts/ingress-nginx/tests/default-backend-service_test.yaml
@@ -30,3 +30,23 @@ tests:
       - equal:
           path: spec.ports[0].port
           value: 80
+
+  - it: should create a Service without `clusterIPs` if `defaultBackend.service.clusterIPs` is not set
+    set:
+      defaultBackend.enabled: true
+    asserts:
+      - notExists:
+          path: spec.clusterIPs
+
+  - it: should create a Service with `clusterIPs` if `defaultBackend.service.clusterIPs` is set
+    set:
+      defaultBackend.enabled: true
+      defaultBackend.service.clusterIPs:
+        - 10.0.0.1
+        - fd00::1
+    asserts:
+      - equal:
+          path: spec.clusterIPs
+          value:
+            - 10.0.0.1
+            - fd00::1
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 391a8d9ca..116adf7ca 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -497,6 +497,10 @@ controller:
     # This value is immutable. Set once, it can not be changed without deleting and re-creating the service.
     # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address
     clusterIP: ""
+    # -- Pre-defined cluster internal IP addresses of the external controller service. Take care of collisions with existing services.
+    # This value is immutable. Set once, it can not be changed without deleting and re-creating the service.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address
+    clusterIPs: []
     # -- List of node IP addresses at which the external controller service is available.
     # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips
     externalIPs: []
@@ -577,6 +581,10 @@ controller:
       # This value is immutable. Set once, it can not be changed without deleting and re-creating the service.
       # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address
       clusterIP: ""
+      # -- Pre-defined cluster internal IP addresses of the internal controller service. Take care of collisions with existing services.
+      # This value is immutable. Set once, it can not be changed without deleting and re-creating the service.
+      # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address
+      clusterIPs: []
       # -- List of node IP addresses at which the internal controller service is available.
       # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips
       externalIPs: []
@@ -1155,6 +1163,10 @@ defaultBackend:
   service:
     annotations: {}
     # clusterIP: ""
+    # -- Pre-defined cluster internal IP addresses of the default backend service. Take care of collisions with existing services.
+    # This value is immutable. Set once, it can not be changed without deleting and re-creating the service.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#choosing-your-own-ip-address
+    clusterIPs: []
 
     # -- List of IP addresses at which the default backend service is available
     ## Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips

From 0207d1878a2455a45eeb00a6daf2599b2754b4e6 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 13 Nov 2024 08:38:47 -0700
Subject: [PATCH 1535/1641] Bump golangci-lint on actions and disable
 deprecated linters (#12360)

---
 .github/workflows/golangci-lint.yml | 3 ++-
 .golangci.yml                       | 1 -
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index e3959eb3c..41ab999d8 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -30,4 +30,5 @@ jobs:
       - name: golangci-lint
         uses: golangci/golangci-lint-action@971e284b6050e8a5849b72094c50ab08da042db8 # v6.1.1
         with:
-          version: v1.56
+          version: v1.62
+          only-new-issues: true
diff --git a/.golangci.yml b/.golangci.yml
index 0cf49e6af..2d73e14e7 100644
--- a/.golangci.yml
+++ b/.golangci.yml
@@ -22,7 +22,6 @@ linters:
     - errcheck
     - errchkjson
     - errname
-    - execinquery
     - ginkgolinter
     - gocheckcompilerdirectives
     - goconst

From 698960e9b77eb7f5bc8100333800dfa580619fbb Mon Sep 17 00:00:00 2001
From: chriss-de <54666227+chriss-de@users.noreply.github.com>
Date: Wed, 13 Nov 2024 22:02:48 +0100
Subject: [PATCH 1536/1641] Config/Annotations: Add `relative-redirects`.
 (#12161)

---
 .../nginx-configuration/annotations-risk.md   |   1 +
 .../nginx-configuration/configmap.md          |  12 ++
 .../ingress/annotations/redirect/redirect.go  |  24 ++++
 .../annotations/redirect/redirect_test.go     |  19 ++++
 internal/ingress/controller/config/config.go  |   6 +
 internal/ingress/defaults/main.go             |   5 +
 rootfs/etc/nginx/template/nginx.tmpl          |   8 ++
 test/e2e/annotations/relativeredirects.go     | 107 ++++++++++++++++++
 8 files changed, 182 insertions(+)
 create mode 100644 test/e2e/annotations/relativeredirects.go

diff --git a/docs/user-guide/nginx-configuration/annotations-risk.md b/docs/user-guide/nginx-configuration/annotations-risk.md
index 3e3b93986..be24c0930 100755
--- a/docs/user-guide/nginx-configuration/annotations-risk.md
+++ b/docs/user-guide/nginx-configuration/annotations-risk.md
@@ -103,6 +103,7 @@
 | Redirect | from-to-www-redirect | Low | location |
 | Redirect | permanent-redirect | Medium | location |
 | Redirect | permanent-redirect-code | Low | location |
+| Redirect | relative-redirects | Low | location |
 | Redirect | temporal-redirect | Medium | location |
 | Redirect | temporal-redirect-code | Low | location |
 | Rewrite | app-root | Medium | location |
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index aa877d5a8..9f093f6b2 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -223,6 +223,7 @@ The following table shows a configuration option's name, type, and the default v
 | [debug-connections](#debug-connections)                                         | []string     | "127.0.0.1,1.1.1.1/24"                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
 | [strict-validate-path-type](#strict-validate-path-type)                         | bool         | "true"                                                                                                                                                                                                                                                                                                                                                       |                                                                                     |
 | [grpc-buffer-size-kb](#grpc-buffer-size-kb)                                     | int          | 0                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
+| [relative-redirects](#relative-redirects)                                       | bool         | false                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
 
 ## add-headers
 
@@ -1382,3 +1383,14 @@ Sets the configuration for the GRPC Buffer Size parameter. If not set it will us
 
 _References:_
 [https://nginx.org/en/docs/http/ngx_http_grpc_module.html#grpc_buffer_size](https://nginx.org/en/docs/http/ngx_http_grpc_module.html#grpc_buffer_size)
+
+## relative-redirects
+
+Use relative redirects instead of absolute redirects. Absolute redirects are the default in nginx. RFC7231 allows relative redirects since 2014.
+Similar to the Ingress rule annotation `nginx.ingress.kubernetes.io/relative-redirects`.
+
+_**default:**_ "false"
+
+_References:_
+- [https://nginx.org/en/docs/http/ngx_http_core_module.html#absolute_redirect](https://nginx.org/en/docs/http/ngx_http_core_module.html#absolute_redirect)
+- [https://datatracker.ietf.org/doc/html/rfc7231#section-7.1.2](https://datatracker.ietf.org/doc/html/rfc7231#section-7.1.2)
diff --git a/internal/ingress/annotations/redirect/redirect.go b/internal/ingress/annotations/redirect/redirect.go
index 0716e1ce1..edc3d279c 100644
--- a/internal/ingress/annotations/redirect/redirect.go
+++ b/internal/ingress/annotations/redirect/redirect.go
@@ -38,6 +38,7 @@ type Config struct {
 	URL       string `json:"url"`
 	Code      int    `json:"code"`
 	FromToWWW bool   `json:"fromToWWW"`
+	Relative  bool   `json:"relative"`
 }
 
 const (
@@ -46,6 +47,7 @@ const (
 	temporalRedirectAnnotationCode  = "temporal-redirect-code"
 	permanentRedirectAnnotation     = "permanent-redirect"
 	permanentRedirectAnnotationCode = "permanent-redirect-code"
+	relativeRedirectsAnnotation     = "relative-redirects"
 )
 
 var redirectAnnotations = parser.Annotation{
@@ -83,6 +85,12 @@ var redirectAnnotations = parser.Annotation{
 			Risk:          parser.AnnotationRiskLow, // Low, as it allows just a set of options
 			Documentation: `This annotation allows you to modify the status code used for permanent redirects.`,
 		},
+		relativeRedirectsAnnotation: {
+			Validator:     parser.ValidateBool,
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `If enabled, redirects issued by nginx will be relative. See https://nginx.org/en/docs/http/ngx_http_core_module.html#absolute_redirect`,
+		},
 	},
 }
 
@@ -109,6 +117,11 @@ func (r redirect) Parse(ing *networking.Ingress) (interface{}, error) {
 		return nil, err
 	}
 
+	rr, err := parser.GetBoolAnnotation(relativeRedirectsAnnotation, ing, r.annotationConfig.Annotations)
+	if err != nil && !errors.IsMissingAnnotations(err) {
+		return nil, err
+	}
+
 	tr, err := parser.GetStringAnnotation(temporalRedirectAnnotation, ing, r.annotationConfig.Annotations)
 	if err != nil && !errors.IsMissingAnnotations(err) {
 		return nil, err
@@ -132,6 +145,7 @@ func (r redirect) Parse(ing *networking.Ingress) (interface{}, error) {
 			URL:       tr,
 			Code:      trc,
 			FromToWWW: r3w,
+			Relative:  rr,
 		}, nil
 	}
 
@@ -154,6 +168,13 @@ func (r redirect) Parse(ing *networking.Ingress) (interface{}, error) {
 			URL:       pr,
 			Code:      prc,
 			FromToWWW: r3w,
+			Relative:  rr,
+		}, nil
+	}
+
+	if rr {
+		return &Config{
+			Relative: rr,
 		}, nil
 	}
 
@@ -177,6 +198,9 @@ func (r1 *Config) Equal(r2 *Config) bool {
 	if r1.FromToWWW != r2.FromToWWW {
 		return false
 	}
+	if r1.Relative != r2.Relative {
+		return false
+	}
 	return true
 }
 
diff --git a/internal/ingress/annotations/redirect/redirect_test.go b/internal/ingress/annotations/redirect/redirect_test.go
index b5c34879e..f4734ae5b 100644
--- a/internal/ingress/annotations/redirect/redirect_test.go
+++ b/internal/ingress/annotations/redirect/redirect_test.go
@@ -193,3 +193,22 @@ func TestIsValidURL(t *testing.T) {
 		t.Errorf("expected nil but got %v", err)
 	}
 }
+
+func TestParseAnnotations(t *testing.T) {
+	ing := new(networking.Ingress)
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix(relativeRedirectsAnnotation)] = "true"
+	ing.SetAnnotations(data)
+
+	_, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error: %v", err)
+	}
+
+	// test ingress using the annotation without a TLS section
+	_, err = NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("unexpected error parsing ingress with relative-redirects")
+	}
+}
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index a0275697f..f4d202f00 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -549,6 +549,10 @@ type Configuration struct {
 	// https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_intercept_errors
 	DisableProxyInterceptErrors bool `json:"disable-proxy-intercept-errors,omitempty"`
 
+	// Disable absolute redirects and enables relative redirects.
+	// https://nginx.org/en/docs/http/ngx_http_core_module.html#absolute_redirect
+	RelativeRedirects bool `json:"relative-redirects"`
+
 	// Sets the ipv4 addresses on which the server will accept requests.
 	BindAddressIpv4 []string `json:"bind-address-ipv4,omitempty"`
 
@@ -834,6 +838,7 @@ func NewDefault() Configuration {
 		VariablesHashMaxSize:             2048,
 		UseHTTP2:                         true,
 		DisableProxyInterceptErrors:      false,
+		RelativeRedirects:                false,
 		ProxyStreamTimeout:               "600s",
 		ProxyStreamNextUpstream:          true,
 		ProxyStreamNextUpstreamTimeout:   "600s",
@@ -857,6 +862,7 @@ func NewDefault() Configuration {
 			SSLRedirect:                 true,
 			CustomHTTPErrors:            []int{},
 			DisableProxyInterceptErrors: false,
+			RelativeRedirects:           false,
 			DenylistSourceRange:         []string{},
 			WhitelistSourceRange:        []string{},
 			SkipAccessLogURLs:           []string{},
diff --git a/internal/ingress/defaults/main.go b/internal/ingress/defaults/main.go
index cfad388ef..af0a41d66 100644
--- a/internal/ingress/defaults/main.go
+++ b/internal/ingress/defaults/main.go
@@ -125,6 +125,11 @@ type Backend struct {
 	// Default: false
 	UsePortInRedirects bool `json:"use-port-in-redirects"`
 
+	// Enables or disables relative redirects. By default nginx uses absolute redirects.
+	// http://nginx.org/en/docs/http/ngx_http_core_module.html#absolute_redirect
+	// Default: false
+	RelativeRedirects bool `json:"relative-redirects"`
+
 	// Enable stickiness by client-server mapping based on a NGINX variable, text or a combination of both.
 	// A consistent hashing method will be used which ensures only a few keys would be remapped to different
 	// servers on upstream group changes
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index e40cef244..ad41ec7ee 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -459,6 +459,10 @@ http {
     proxy_intercept_errors on;
     {{ end }}
 
+    {{ if $cfg.RelativeRedirects }}
+    absolute_redirect off;
+    {{ end }}
+
     {{ range $errCode := $cfg.CustomHTTPErrors }}
     error_page {{ $errCode }} = @custom_upstream-default-backend_{{ $errCode }};{{ end }}
 
@@ -1343,6 +1347,10 @@ stream {
             satisfy {{ $location.Satisfy }};
             {{ end }}
 
+            {{ if $location.Redirect.Relative }}
+            absolute_redirect off;
+            {{ end }}
+
             {{/* if a location-specific error override is set, add the proxy_intercept here */}}
             {{ if and $location.CustomHTTPErrors (not $location.DisableProxyInterceptErrors) }}
             # Custom error pages per ingress
diff --git a/test/e2e/annotations/relativeredirects.go b/test/e2e/annotations/relativeredirects.go
new file mode 100644
index 000000000..430b357e4
--- /dev/null
+++ b/test/e2e/annotations/relativeredirects.go
@@ -0,0 +1,107 @@
+/*
+Copyright 2023 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package annotations
+
+import (
+	"fmt"
+	"net/http"
+	"strings"
+
+	"github.com/onsi/ginkgo/v2"
+	"github.com/stretchr/testify/assert"
+	"k8s.io/ingress-nginx/test/e2e/framework"
+)
+
+const (
+	relativeRedirectsHostname            = "rr.foo.com"
+	relativeRedirectsRedirectPath        = "/something"
+	relativeRedirectsRelativeRedirectURL = "/new-location"
+)
+
+var _ = framework.DescribeAnnotation("relative-redirects", func() {
+	f := framework.NewDefaultFramework("relative-redirects")
+
+	ginkgo.BeforeEach(func() {
+		f.NewHttpbunDeployment()
+		f.NewEchoDeployment()
+	})
+
+	ginkgo.It("configures Nginx correctly", func() {
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/relative-redirects": "true",
+		}
+
+		ing := framework.NewSingleIngress(relativeRedirectsHostname, "/", relativeRedirectsHostname, f.Namespace, framework.HTTPBunService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		var serverConfig string
+		f.WaitForNginxServer(relativeRedirectsHostname, func(srvCfg string) bool {
+			serverConfig = srvCfg
+			return strings.Contains(serverConfig, fmt.Sprintf("server_name %s", relativeRedirectsHostname))
+		})
+
+		ginkgo.By("turning off absolute_redirect directive")
+		assert.Contains(ginkgo.GinkgoT(), serverConfig, "absolute_redirect off;")
+	})
+
+	ginkgo.It("should respond with absolute URL in Location", func() {
+		absoluteRedirectURL := fmt.Sprintf("http://%s%s", relativeRedirectsHostname, relativeRedirectsRelativeRedirectURL)
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/permanent-redirect": relativeRedirectsRelativeRedirectURL,
+			"nginx.ingress.kubernetes.io/relative-redirects": "false",
+		}
+
+		ginkgo.By("setup ingress")
+		ing := framework.NewSingleIngress(relativeRedirectsHostname, relativeRedirectsRedirectPath, relativeRedirectsHostname, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(relativeRedirectsHostname, func(srvCfg string) bool {
+			return strings.Contains(srvCfg, fmt.Sprintf("server_name %s", relativeRedirectsHostname))
+		})
+
+		ginkgo.By("sending request to redirected URL path")
+		f.HTTPTestClient().
+			GET(relativeRedirectsRedirectPath).
+			WithHeader("Host", relativeRedirectsHostname).
+			Expect().
+			Status(http.StatusMovedPermanently).
+			Header("Location").Equal(absoluteRedirectURL)
+	})
+
+	ginkgo.It("should respond with relative URL in Location", func() {
+		annotations := map[string]string{
+			"nginx.ingress.kubernetes.io/permanent-redirect": relativeRedirectsRelativeRedirectURL,
+			"nginx.ingress.kubernetes.io/relative-redirects": "true",
+		}
+
+		ginkgo.By("setup ingress")
+		ing := framework.NewSingleIngress(relativeRedirectsHostname, relativeRedirectsRedirectPath, relativeRedirectsHostname, f.Namespace, framework.EchoService, 80, annotations)
+		f.EnsureIngress(ing)
+
+		f.WaitForNginxServer(relativeRedirectsHostname, func(srvCfg string) bool {
+			return strings.Contains(srvCfg, fmt.Sprintf("server_name %s", relativeRedirectsHostname))
+		})
+
+		ginkgo.By("sending request to redirected URL path")
+		f.HTTPTestClient().
+			GET(relativeRedirectsRedirectPath).
+			WithHeader("Host", relativeRedirectsHostname).
+			Expect().
+			Status(http.StatusMovedPermanently).
+			Header("Location").Equal(relativeRedirectsRelativeRedirectURL)
+	})
+})

From 76f90ec8cf67f6cc6650865a1916aa2581ea205f Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 13 Nov 2024 17:24:46 -0700
Subject: [PATCH 1537/1641] CI: Update KIND images. (#12364)

---
 .github/workflows/ci.yaml     | 6 +++---
 .github/workflows/images.yaml | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index c925264a8..6d0532105 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -270,7 +270,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.28.13, v1.29.8, v1.30.4, v1.31.0]
+        k8s: [v1.28.15, v1.29.10, v1.30.6, v1.31.2]
 
     steps:
       - name: Checkout code
@@ -301,7 +301,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     strategy:
       matrix:
-        k8s: [v1.28.13, v1.29.8, v1.30.4, v1.31.0]
+        k8s: [v1.28.15, v1.29.10, v1.30.6, v1.31.2]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
@@ -315,7 +315,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     strategy:
       matrix:
-        k8s: [v1.28.13, v1.29.8, v1.30.4, v1.31.0]
+        k8s: [v1.28.15, v1.29.10, v1.30.6, v1.31.2]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 457e979c0..cc7a7961b 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -135,7 +135,7 @@ jobs:
       (needs.changes.outputs.kube-webhook-certgen == 'true')
     strategy:
       matrix:
-        k8s: [v1.28.13, v1.29.8, v1.30.4, v1.31.0]
+        k8s: [v1.28.15, v1.29.10, v1.30.6, v1.31.2]
     steps:
     - name: Checkout
       uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

From 9c7266f5db7eb605925927630f718b5be3f1e08f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 15 Nov 2024 21:56:52 +0000
Subject: [PATCH 1538/1641] Bump github/codeql-action from 3.27.1 to 3.27.4 in
 the actions group (#12372)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index e285350a5..2a31b1e47 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@4f3212b61783c3c68e8309a0f18a699764811cda # v3.27.1
+        uses: github/codeql-action/upload-sarif@ea9e4e37992a54ee68a9622e985e60c8e8f12d9f # v3.27.4
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 213d55e96..597a97a5a 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@4f3212b61783c3c68e8309a0f18a699764811cda # v3.27.1
+        uses: github/codeql-action/upload-sarif@ea9e4e37992a54ee68a9622e985e60c8e8f12d9f # v3.27.4
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 6f868cbc4ef048d59fd1d73033b82ccc4c3076d8 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 18 Nov 2024 19:24:55 +0000
Subject: [PATCH 1539/1641] Bump github.com/opencontainers/runc from 1.2.1 to
 1.2.2 in the go group across 1 directory (#12377)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 8826fb0d2..18ddbd907 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.4
 	github.com/onsi/ginkgo/v2 v2.21.0
-	github.com/opencontainers/runc v1.2.1
+	github.com/opencontainers/runc v1.2.2
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.5
 	github.com/prometheus/client_model v0.6.1
diff --git a/go.sum b/go.sum
index 174d9074e..a35d5ff16 100644
--- a/go.sum
+++ b/go.sum
@@ -171,8 +171,8 @@ github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7J
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.34.2 h1:pNCwDkzrsv7MS9kpaQvVb1aVLahQXyJ/Tv5oAZMI3i8=
 github.com/onsi/gomega v1.34.2/go.mod h1:v1xfxRgk0KIsG+QOdm7p8UosrOzPYRo60fd3B/1Dukc=
-github.com/opencontainers/runc v1.2.1 h1:mQkmeFSUxqFaVmvIn1VQPeQIKpHFya5R07aJw0DKQa8=
-github.com/opencontainers/runc v1.2.1/go.mod h1:/PXzF0h531HTMsYQnmxXkBD7YaGShm/2zcRB79dksUc=
+github.com/opencontainers/runc v1.2.2 h1:jTg3Vw2A5f0N9PoxFTEwUhvpANGaNPT3689Yfd/zaX0=
+github.com/opencontainers/runc v1.2.2/go.mod h1:/PXzF0h531HTMsYQnmxXkBD7YaGShm/2zcRB79dksUc=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
 github.com/opencontainers/runtime-spec v1.2.0/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=

From 6ceccbd67b140b7626670ad17f926f121a9e5563 Mon Sep 17 00:00:00 2001
From: liyang <ly18846162402@163.com>
Date: Tue, 19 Nov 2024 18:28:56 +0800
Subject: [PATCH 1540/1641] GitHub: Fix `exec` in issue template. (#12386)

---
 .github/ISSUE_TEMPLATE/bug_report.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/ISSUE_TEMPLATE/bug_report.md b/.github/ISSUE_TEMPLATE/bug_report.md
index e15a2cd2b..07770e47c 100644
--- a/.github/ISSUE_TEMPLATE/bug_report.md
+++ b/.github/ISSUE_TEMPLATE/bug_report.md
@@ -37,7 +37,7 @@ This questions are the first thing we need to know to understand the context.
 <!-- What do you think went wrong? -->
 
 
-**NGINX Ingress controller version** (exec into the pod and run nginx-ingress-controller --version.):
+**NGINX Ingress controller version** (exec into the pod and run `/nginx-ingress-controller --version`):
 <!--
 POD_NAMESPACE=ingress-nginx
 POD_NAME=$(kubectl get pods -n $POD_NAMESPACE -l app.kubernetes.io/name=ingress-nginx --field-selector=status.phase=Running -o jsonpath='{.items[0].metadata.name}')

From a5cd15d74a16dc3510283dc7224082f83b40f690 Mon Sep 17 00:00:00 2001
From: Johannes Rudolph <johannes.rudolph@gmail.com>
Date: Wed, 20 Nov 2024 21:10:55 +0100
Subject: [PATCH 1541/1641] Controller: Fail annotation parsing fast and report
 errors. (#11740)

---
 internal/ingress/controller/store/store.go | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/internal/ingress/controller/store/store.go b/internal/ingress/controller/store/store.go
index 284f53209..d4bd6136f 100644
--- a/internal/ingress/controller/store/store.go
+++ b/internal/ingress/controller/store/store.go
@@ -240,6 +240,8 @@ type k8sStore struct {
 	backendConfigMu *sync.RWMutex
 
 	defaultSSLCertificate string
+
+	recorder record.EventRecorder
 }
 
 // New creates a new object store to be used in the ingress controller.
@@ -279,6 +281,7 @@ func New(
 	recorder := eventBroadcaster.NewRecorder(scheme.Scheme, corev1.EventSource{
 		Component: "nginx-ingress-controller",
 	})
+	store.recorder = recorder
 
 	// k8sStore fulfills resolver.Resolver interface
 	store.annotations = annotations.NewAnnotationExtractor(store)
@@ -938,6 +941,9 @@ func (s *k8sStore) syncIngress(ing *networkingv1.Ingress) {
 		klog.Error(err)
 		return
 	}
+	if parsed.Denied != nil {
+		s.recorder.Eventf(ing, corev1.EventTypeWarning, "AnnotationParsingFailed", fmt.Sprintf("Error parsing annotations: %v", *parsed.Denied))
+	}
 	err = s.listers.IngressWithAnnotation.Update(&ingress.Ingress{
 		Ingress:           *copyIng,
 		ParsedAnnotations: parsed,

From 0a927b65af3d23db20bde49ce61ba7e0f90eed9f Mon Sep 17 00:00:00 2001
From: Elizabeth Martin Campos <me@elizabeth.sh>
Date: Sun, 24 Nov 2024 18:32:55 +0100
Subject: [PATCH 1542/1641] Allow CORS `Access-Control-Allow-Origin: null`
 (#12402)

---
 internal/ingress/annotations/cors/main.go     |  8 ++---
 .../ingress/annotations/cors/main_test.go     | 36 +++++++++++++++++--
 2 files changed, 37 insertions(+), 7 deletions(-)

diff --git a/internal/ingress/annotations/cors/main.go b/internal/ingress/annotations/cors/main.go
index b81514820..cef4fb1b2 100644
--- a/internal/ingress/annotations/cors/main.go
+++ b/internal/ingress/annotations/cors/main.go
@@ -40,12 +40,12 @@ var (
 	// that could cause the Response to contain some internal value/variable (like returning $pid, $upstream_addr, etc)
 	// Origin must contain a http/s Origin (including or not the port) or the value '*'
 	// This Regex is composed of the following:
-	// * Sets a group that can be (https?://)?*?.something.com:port?
+	// * Sets a group that can be (https?://)?*?.something.com:port? OR null
 	// * Allows this to be repeated as much as possible, and separated by comma
 	// Otherwise it should be '*'
-	corsOriginRegexValidator = regexp.MustCompile(`^(((([a-z]+://)?(\*\.)?[A-Za-z0-9\-.]*(:\d+)?,?)+)|\*)?$`)
+	corsOriginRegexValidator = regexp.MustCompile(`^((((([a-z]+://)?(\*\.)?[A-Za-z0-9\-.]*(:\d+)?,?)|null)+)|\*)?$`)
 	// corsOriginRegex defines the regex for validation inside Parse
-	corsOriginRegex = regexp.MustCompile(`^([a-z]+://(\*\.)?[A-Za-z0-9\-.]*(:\d+)?|\*)?$`)
+	corsOriginRegex = regexp.MustCompile(`^([a-z]+://(\*\.)?[A-Za-z0-9\-.]*(:\d+)?|\*|null)?$`)
 	// Method must contain valid methods list (PUT, GET, POST, BLA)
 	// May contain or not spaces between each verb
 	corsMethodsRegex = regexp.MustCompile(`^([A-Za-z]+,?\s?)+$`)
@@ -78,7 +78,7 @@ var corsAnnotation = parser.Annotation{
 			Scope:     parser.AnnotationScopeIngress,
 			Risk:      parser.AnnotationRiskMedium,
 			Documentation: `This annotation controls what's the accepted Origin for CORS.
-			This is a multi-valued field, separated by ','. It must follow this format: protocol://origin-site.com or protocol://origin-site.com:port
+			This is a multi-valued field, separated by ','. It must follow this format: protocol://origin-site.com, protocol://origin-site.com:port, null, or *.
 			It also supports single level wildcard subdomains and follows this format: https://*.foo.bar, http://*.bar.foo:8080 or myprotocol://*.abc.bar.foo:9000
 			Protocol can be any lowercase string, like http, https, or mycustomprotocol.`,
 		},
diff --git a/internal/ingress/annotations/cors/main_test.go b/internal/ingress/annotations/cors/main_test.go
index dee36fcae..0b6b3671b 100644
--- a/internal/ingress/annotations/cors/main_test.go
+++ b/internal/ingress/annotations/cors/main_test.go
@@ -82,7 +82,7 @@ func TestIngressCorsConfigValid(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix(corsAllowHeadersAnnotation)] = "DNT,X-CustomHeader, Keep-Alive,User-Agent"
 	data[parser.GetAnnotationWithPrefix(corsAllowCredentialsAnnotation)] = "false"
 	data[parser.GetAnnotationWithPrefix(corsAllowMethodsAnnotation)] = "GET, PATCH"
-	data[parser.GetAnnotationWithPrefix(corsAllowOriginAnnotation)] = "https://origin123.test.com:4443"
+	data[parser.GetAnnotationWithPrefix(corsAllowOriginAnnotation)] = "null, https://origin123.test.com:4443"
 	data[parser.GetAnnotationWithPrefix(corsExposeHeadersAnnotation)] = "*, X-CustomResponseHeader"
 	data[parser.GetAnnotationWithPrefix(corsMaxAgeAnnotation)] = "600"
 	ing.SetAnnotations(data)
@@ -113,7 +113,7 @@ func TestIngressCorsConfigValid(t *testing.T) {
 		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix(corsAllowMethodsAnnotation)], nginxCors.CorsAllowMethods)
 	}
 
-	if nginxCors.CorsAllowOrigin[0] != "https://origin123.test.com:4443" {
+	if !reflect.DeepEqual(nginxCors.CorsAllowOrigin, []string{"null", "https://origin123.test.com:4443"}) {
 		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix(corsAllowOriginAnnotation)], nginxCors.CorsAllowOrigin)
 	}
 
@@ -176,7 +176,7 @@ func TestIngressCorsConfigInvalid(t *testing.T) {
 	}
 }
 
-func TestIngresCorsConfigAllowOriginWithTrailingComma(t *testing.T) {
+func TestIngressCorsConfigAllowOriginWithTrailingComma(t *testing.T) {
 	ing := buildIngress()
 
 	data := map[string]string{}
@@ -206,6 +206,36 @@ func TestIngresCorsConfigAllowOriginWithTrailingComma(t *testing.T) {
 	}
 }
 
+func TestIngressCorsConfigAllowOriginNull(t *testing.T) {
+	ing := buildIngress()
+
+	data := map[string]string{}
+	data[parser.GetAnnotationWithPrefix(corsEnableAnnotation)] = enableAnnotation
+
+	// Include a trailing comma and an empty value between the commas.
+	data[parser.GetAnnotationWithPrefix(corsAllowOriginAnnotation)] = "https://origin123.test.com:4443,null,https://origin321.test.com:4443"
+	ing.SetAnnotations(data)
+
+	corst, err := NewParser(&resolver.Mock{}).Parse(ing)
+	if err != nil {
+		t.Errorf("error parsing annotations: %v", err)
+	}
+
+	nginxCors, ok := corst.(*Config)
+	if !ok {
+		t.Errorf("expected a Config type but returned %t", corst)
+	}
+
+	if !nginxCors.CorsEnabled {
+		t.Errorf("expected %v but returned %v", data[parser.GetAnnotationWithPrefix(corsEnableAnnotation)], nginxCors.CorsEnabled)
+	}
+
+	expectedCorsAllowOrigins := []string{"https://origin123.test.com:4443", "null", "https://origin321.test.com:4443"}
+	if !reflect.DeepEqual(nginxCors.CorsAllowOrigin, expectedCorsAllowOrigins) {
+		t.Errorf("expected %v but returned %v", expectedCorsAllowOrigins, nginxCors.CorsAllowOrigin)
+	}
+}
+
 func TestIngressCorsConfigAllowOriginWithNonHttpProtocol(t *testing.T) {
 	ing := buildIngress()
 

From 1a52f3fbbc7616b87549d3ad749bb1f19e9299fe Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 25 Nov 2024 11:56:55 +0000
Subject: [PATCH 1543/1641] Bump the actions group with 3 updates (#12406)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/depreview.yaml           | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 4 ++--
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/depreview.yaml b/.github/workflows/depreview.yaml
index 39a3279db..6d7e44608 100644
--- a/.github/workflows/depreview.yaml
+++ b/.github/workflows/depreview.yaml
@@ -11,4 +11,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@4081bf99e2866ebe428fc0477b69eb4fcda7220a # v4.4.0
+        uses: actions/dependency-review-action@3b139cfc5fae8b618d3eae3675e383bb1769c019 # v4.5.0
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 2a31b1e47..6b7414c58 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@ea9e4e37992a54ee68a9622e985e60c8e8f12d9f # v3.27.4
+        uses: github/codeql-action/upload-sarif@f09c1c0a94de965c15400f5634aa42fac8fb8f88 # v3.27.5
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 597a97a5a..159894ddd 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -60,7 +60,7 @@ jobs:
 
       - name: Scan image with AquaSec/Trivy
         id: scan
-        uses: aquasecurity/trivy-action@915b19bbe73b92a6cf82a1bc12b087c9a19a5fe2 # v0.28.0
+        uses: aquasecurity/trivy-action@18f2510ee396bbf400402947b394f2dd8c87dbb0 # v0.29.0
         with:
           image-ref: registry.k8s.io/ingress-nginx/controller:${{ matrix.versions }}
           format: 'sarif'
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@ea9e4e37992a54ee68a9622e985e60c8e8f12d9f # v3.27.4
+        uses: github/codeql-action/upload-sarif@f09c1c0a94de965c15400f5634aa42fac8fb8f88 # v3.27.5
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From b4bd5af7bfea73feafadafa2849107ce75e3374d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 25 Nov 2024 12:46:56 +0000
Subject: [PATCH 1544/1641] Bump the go group across 3 directories with 10
 updates (#12407)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod                                        | 18 +++++-----
 go.sum                                        | 36 +++++++++----------
 images/ext-auth-example-authsvc/rootfs/go.mod |  2 +-
 images/ext-auth-example-authsvc/rootfs/go.sum |  4 +--
 images/kube-webhook-certgen/rootfs/go.mod     |  8 ++---
 images/kube-webhook-certgen/rootfs/go.sum     | 16 ++++-----
 6 files changed, 42 insertions(+), 42 deletions(-)

diff --git a/go.mod b/go.mod
index 18ddbd907..f8d656a75 100644
--- a/go.mod
+++ b/go.mod
@@ -31,17 +31,17 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.31.2
-	k8s.io/apiextensions-apiserver v0.31.2
-	k8s.io/apimachinery v0.31.2
-	k8s.io/apiserver v0.31.2
-	k8s.io/cli-runtime v0.31.2
-	k8s.io/client-go v0.31.2
-	k8s.io/code-generator v0.31.2
-	k8s.io/component-base v0.31.2
+	k8s.io/api v0.31.3
+	k8s.io/apiextensions-apiserver v0.31.3
+	k8s.io/apimachinery v0.31.3
+	k8s.io/apiserver v0.31.3
+	k8s.io/cli-runtime v0.31.3
+	k8s.io/client-go v0.31.3
+	k8s.io/code-generator v0.31.3
+	k8s.io/component-base v0.31.3
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.19.1
+	sigs.k8s.io/controller-runtime v0.19.2
 	sigs.k8s.io/mdtoc v1.4.0
 )
 
diff --git a/go.sum b/go.sum
index a35d5ff16..317e0553c 100644
--- a/go.sum
+++ b/go.sum
@@ -338,22 +338,22 @@ gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.31.2 h1:3wLBbL5Uom/8Zy98GRPXpJ254nEFpl+hwndmk9RwmL0=
-k8s.io/api v0.31.2/go.mod h1:bWmGvrGPssSK1ljmLzd3pwCQ9MgoTsRCuK35u6SygUk=
-k8s.io/apiextensions-apiserver v0.31.2 h1:W8EwUb8+WXBLu56ser5IudT2cOho0gAKeTOnywBLxd0=
-k8s.io/apiextensions-apiserver v0.31.2/go.mod h1:i+Geh+nGCJEGiCGR3MlBDkS7koHIIKWVfWeRFiOsUcM=
-k8s.io/apimachinery v0.31.2 h1:i4vUt2hPK56W6mlT7Ry+AO8eEsyxMD1U44NR22CLTYw=
-k8s.io/apimachinery v0.31.2/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
-k8s.io/apiserver v0.31.2 h1:VUzOEUGRCDi6kX1OyQ801m4A7AUPglpsmGvdsekmcI4=
-k8s.io/apiserver v0.31.2/go.mod h1:o3nKZR7lPlJqkU5I3Ove+Zx3JuoFjQobGX1Gctw6XuE=
-k8s.io/cli-runtime v0.31.2 h1:7FQt4C4Xnqx8V1GJqymInK0FFsoC+fAZtbLqgXYVOLQ=
-k8s.io/cli-runtime v0.31.2/go.mod h1:XROyicf+G7rQ6FQJMbeDV9jqxzkWXTYD6Uxd15noe0Q=
-k8s.io/client-go v0.31.2 h1:Y2F4dxU5d3AQj+ybwSMqQnpZH9F30//1ObxOKlTI9yc=
-k8s.io/client-go v0.31.2/go.mod h1:NPa74jSVR/+eez2dFsEIHNa+3o09vtNaWwWwb1qSxSs=
-k8s.io/code-generator v0.31.2 h1:xLWxG0HEpMSHfcM//3u3Ro2Hmc6AyyLINQS//Z2GEOI=
-k8s.io/code-generator v0.31.2/go.mod h1:eEQHXgBU/m7LDaToDoiz3t97dUUVyOblQdwOr8rivqc=
-k8s.io/component-base v0.31.2 h1:Z1J1LIaC0AV+nzcPRFqfK09af6bZ4D1nAOpWsy9owlA=
-k8s.io/component-base v0.31.2/go.mod h1:9PeyyFN/drHjtJZMCTkSpQJS3U9OXORnHQqMLDz0sUQ=
+k8s.io/api v0.31.3 h1:umzm5o8lFbdN/hIXbrK9oRpOproJO62CV1zqxXrLgk8=
+k8s.io/api v0.31.3/go.mod h1:UJrkIp9pnMOI9K2nlL6vwpxRzzEX5sWgn8kGQe92kCE=
+k8s.io/apiextensions-apiserver v0.31.3 h1:+GFGj2qFiU7rGCsA5o+p/rul1OQIq6oYpQw4+u+nciE=
+k8s.io/apiextensions-apiserver v0.31.3/go.mod h1:2DSpFhUZZJmn/cr/RweH1cEVVbzFw9YBu4T+U3mf1e4=
+k8s.io/apimachinery v0.31.3 h1:6l0WhcYgasZ/wk9ktLq5vLaoXJJr5ts6lkaQzgeYPq4=
+k8s.io/apimachinery v0.31.3/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
+k8s.io/apiserver v0.31.3 h1:+1oHTtCB+OheqFEz375D0IlzHZ5VeQKX1KGXnx+TTuY=
+k8s.io/apiserver v0.31.3/go.mod h1:PrxVbebxrxQPFhJk4powDISIROkNMKHibTg9lTRQ0Qg=
+k8s.io/cli-runtime v0.31.3 h1:fEQD9Xokir78y7pVK/fCJN090/iYNrLHpFbGU4ul9TI=
+k8s.io/cli-runtime v0.31.3/go.mod h1:Q2jkyTpl+f6AtodQvgDI8io3jrfr+Z0LyQBPJJ2Btq8=
+k8s.io/client-go v0.31.3 h1:CAlZuM+PH2cm+86LOBemaJI/lQ5linJ6UFxKX/SoG+4=
+k8s.io/client-go v0.31.3/go.mod h1:2CgjPUTpv3fE5dNygAr2NcM8nhHzXvxB8KL5gYc3kJs=
+k8s.io/code-generator v0.31.3 h1:Pj0fYOBms+ZrsulLi4DMsCEx1jG8fWKRLy44onHsLBI=
+k8s.io/code-generator v0.31.3/go.mod h1:/umCIlT84g1+Yu5ZXtP1KGSRTnGiIzzX5AzUAxsNlts=
+k8s.io/component-base v0.31.3 h1:DMCXXVx546Rfvhj+3cOm2EUxhS+EyztH423j+8sOwhQ=
+k8s.io/component-base v0.31.3/go.mod h1:xME6BHfUOafRgT0rGVBGl7TuSg8Z9/deT7qq6w7qjIU=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 h1:bKcdZJOPICVmIIuaM9+MXmapE94dn5AYv5ODs1jA43o=
 k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
@@ -364,8 +364,8 @@ k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 h1:pUdcCO1Lk/tbT5ztQWOBi5HBgbBP1
 k8s.io/utils v0.0.0-20240711033017-18e509b52bc8/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
-sigs.k8s.io/controller-runtime v0.19.1 h1:Son+Q40+Be3QWb+niBXAg2vFiYWolDjjRfO8hn/cxOk=
-sigs.k8s.io/controller-runtime v0.19.1/go.mod h1:iRmWllt8IlaLjvTTDLhRBXIEtkCK6hwVBJJsYS9Ajf4=
+sigs.k8s.io/controller-runtime v0.19.2 h1:3sPrF58XQEPzbE8T81TN6selQIMGbtYwuaJ6eDssDF8=
+sigs.k8s.io/controller-runtime v0.19.2/go.mod h1:iRmWllt8IlaLjvTTDLhRBXIEtkCK6hwVBJJsYS9Ajf4=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/kustomize/api v0.17.2 h1:E7/Fjk7V5fboiuijoZHgs4aHuexi5Y2loXlVOAVAG5g=
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index 7e699ac1a..ec7c280cb 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -2,6 +2,6 @@ module example.com/authsvc
 
 go 1.23.3
 
-require k8s.io/apimachinery v0.31.2
+require k8s.io/apimachinery v0.31.3
 
 require github.com/google/uuid v1.6.0 // indirect
diff --git a/images/ext-auth-example-authsvc/rootfs/go.sum b/images/ext-auth-example-authsvc/rootfs/go.sum
index 8a3486b7b..a5d952d92 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.sum
+++ b/images/ext-auth-example-authsvc/rootfs/go.sum
@@ -1,4 +1,4 @@
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-k8s.io/apimachinery v0.31.2 h1:i4vUt2hPK56W6mlT7Ry+AO8eEsyxMD1U44NR22CLTYw=
-k8s.io/apimachinery v0.31.2/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
+k8s.io/apimachinery v0.31.3 h1:6l0WhcYgasZ/wk9ktLq5vLaoXJJr5ts6lkaQzgeYPq4=
+k8s.io/apimachinery v0.31.3/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 4efc9c6d3..eb9c7ec77 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -6,10 +6,10 @@ require (
 	github.com/onrik/logrus v0.11.0
 	github.com/sirupsen/logrus v1.9.3
 	github.com/spf13/cobra v1.8.1
-	k8s.io/api v0.31.2
-	k8s.io/apimachinery v0.31.2
-	k8s.io/client-go v0.31.2
-	k8s.io/kube-aggregator v0.31.2
+	k8s.io/api v0.31.3
+	k8s.io/apimachinery v0.31.3
+	k8s.io/client-go v0.31.3
+	k8s.io/kube-aggregator v0.31.3
 )
 
 require (
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index fae381cc4..b6780f932 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -146,16 +146,16 @@ gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.31.2 h1:3wLBbL5Uom/8Zy98GRPXpJ254nEFpl+hwndmk9RwmL0=
-k8s.io/api v0.31.2/go.mod h1:bWmGvrGPssSK1ljmLzd3pwCQ9MgoTsRCuK35u6SygUk=
-k8s.io/apimachinery v0.31.2 h1:i4vUt2hPK56W6mlT7Ry+AO8eEsyxMD1U44NR22CLTYw=
-k8s.io/apimachinery v0.31.2/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
-k8s.io/client-go v0.31.2 h1:Y2F4dxU5d3AQj+ybwSMqQnpZH9F30//1ObxOKlTI9yc=
-k8s.io/client-go v0.31.2/go.mod h1:NPa74jSVR/+eez2dFsEIHNa+3o09vtNaWwWwb1qSxSs=
+k8s.io/api v0.31.3 h1:umzm5o8lFbdN/hIXbrK9oRpOproJO62CV1zqxXrLgk8=
+k8s.io/api v0.31.3/go.mod h1:UJrkIp9pnMOI9K2nlL6vwpxRzzEX5sWgn8kGQe92kCE=
+k8s.io/apimachinery v0.31.3 h1:6l0WhcYgasZ/wk9ktLq5vLaoXJJr5ts6lkaQzgeYPq4=
+k8s.io/apimachinery v0.31.3/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
+k8s.io/client-go v0.31.3 h1:CAlZuM+PH2cm+86LOBemaJI/lQ5linJ6UFxKX/SoG+4=
+k8s.io/client-go v0.31.3/go.mod h1:2CgjPUTpv3fE5dNygAr2NcM8nhHzXvxB8KL5gYc3kJs=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
 k8s.io/klog/v2 v2.130.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
-k8s.io/kube-aggregator v0.31.2 h1:Uw1zUP2D/4wiSjKWVVzSOcCGLuW/+IdRwjjC0FJooYU=
-k8s.io/kube-aggregator v0.31.2/go.mod h1:41/VIXH+/Qcg9ERNAY6bRF/WQR6xL1wFgYagdHac1X4=
+k8s.io/kube-aggregator v0.31.3 h1:DqHPdTglJHgOfB884AaroyxrML/aL82ASYOh65m7MSk=
+k8s.io/kube-aggregator v0.31.3/go.mod h1:Kx59Xjnf0SnY47qf9Or++4y3XCHQ3kR0xk1Di6KFiFU=
 k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 h1:BZqlfIlq5YbRMFko6/PM7FjZpUb45WallggurYhKGag=
 k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340/go.mod h1:yD4MZYeKMBwQKVht279WycxKyM84kkAx2DPrTXaeb98=
 k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 h1:pUdcCO1Lk/tbT5ztQWOBi5HBgbBP1J8+AsQnQCKsi8A=

From 2088e37c99ee82e799cd0301f5339ffb7993634c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 25 Nov 2024 13:40:56 +0000
Subject: [PATCH 1545/1641] Bump github.com/stretchr/testify from 1.9.0 to
 1.10.0 (#12409)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index f8d656a75..7bdc7a3fd 100644
--- a/go.mod
+++ b/go.mod
@@ -22,7 +22,7 @@ require (
 	github.com/prometheus/common v0.60.1
 	github.com/spf13/cobra v1.8.1
 	github.com/spf13/pflag v1.0.5
-	github.com/stretchr/testify v1.9.0
+	github.com/stretchr/testify v1.10.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.29.0
diff --git a/go.sum b/go.sum
index 317e0553c..5afaf1986 100644
--- a/go.sum
+++ b/go.sum
@@ -209,8 +209,8 @@ github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UV
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
-github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
+github.com/stretchr/testify v1.10.0 h1:Xv5erBjTwe/5IxqUQTdXv5kgmIvbHo3QQyRwhJsOfJA=
+github.com/stretchr/testify v1.10.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/urfave/cli v1.17.1-0.20160602030128-01a33823596e/go.mod h1:70zkFmudgCuE/ngEzBv17Jvp/497gISqfk5gWijbERA=
 github.com/x448/float16 v0.8.4 h1:qLwI1I70+NjRFUR3zs1JPUCgaCXSh3SW62uAKT1mSBM=
 github.com/x448/float16 v0.8.4/go.mod h1:14CWIYCyZA/cWjXOioeEpHeN/83MdbZDRQHoFcYsOfg=

From 52fce52493a9e521e7452d9468ab1c2fa9444893 Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Wed, 27 Nov 2024 17:02:57 +0000
Subject: [PATCH 1546/1641] Bump github.com/onsi/ginkgo/v2 from 2.21.0 to
 2.22.0 (#12423)

---
 build/run-in-docker.sh                    | 2 +-
 go.mod                                    | 2 +-
 go.sum                                    | 4 ++--
 go.work.sum                               | 7 +++++++
 images/kube-webhook-certgen/rootfs/go.mod | 2 +-
 images/kube-webhook-certgen/rootfs/go.sum | 4 ++--
 images/test-runner/Makefile               | 4 ++--
 test/e2e/run-chart-test.sh                | 2 +-
 test/e2e/run-kind-e2e.sh                  | 2 +-
 9 files changed, 18 insertions(+), 11 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index eea8877ee..d88be92e5 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -82,7 +82,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.21.0
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.22.0
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/go.mod b/go.mod
index 7bdc7a3fd..04b833489 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.4
-	github.com/onsi/ginkgo/v2 v2.21.0
+	github.com/onsi/ginkgo/v2 v2.22.0
 	github.com/opencontainers/runc v1.2.2
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.5
diff --git a/go.sum b/go.sum
index 5afaf1986..48295edee 100644
--- a/go.sum
+++ b/go.sum
@@ -165,8 +165,8 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.21.0 h1:7rg/4f3rB88pb5obDgNZrNHrQ4e6WpjonchcpuBRnZM=
-github.com/onsi/ginkgo/v2 v2.21.0/go.mod h1:7Du3c42kxCUegi0IImZ1wUQzMBVecgIHjR1C+NkhLQo=
+github.com/onsi/ginkgo/v2 v2.22.0 h1:Yed107/8DjTr0lKCNt7Dn8yQ6ybuDRQoMGrNFKzMfHg=
+github.com/onsi/ginkgo/v2 v2.22.0/go.mod h1:7Du3c42kxCUegi0IImZ1wUQzMBVecgIHjR1C+NkhLQo=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.34.2 h1:pNCwDkzrsv7MS9kpaQvVb1aVLahQXyJ/Tv5oAZMI3i8=
diff --git a/go.work.sum b/go.work.sum
index 06d0a1ab9..c0b709531 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -1,6 +1,7 @@
 cel.dev/expr v0.15.0 h1:O1jzfJCQBfL5BFoYktaxwIhuttaQPsVWerH9/EEKx0w=
 cel.dev/expr v0.15.0/go.mod h1:TRSuuV7DlVCE/uwv5QbAiW/v8l5O8C4eEPHeu7gf7Sg=
 cel.dev/expr v0.16.0/go.mod h1:TRSuuV7DlVCE/uwv5QbAiW/v8l5O8C4eEPHeu7gf7Sg=
+cel.dev/expr v0.16.1/go.mod h1:AsGA5zb3WruAEQeQng1RZdGEXmBj0jvMWh6l5SnNuC8=
 cloud.google.com/go v0.110.2 h1:sdFPBr6xG9/wkBbfhmUz/JmZC7X6LavQgcrVINrKiVA=
 cloud.google.com/go v0.110.4/go.mod h1:+EYjdK8e5RME/VY/qLCAtuyALQ9q67dvuum8i+H5xsI=
 cloud.google.com/go v0.110.8/go.mod h1:Iz8AkXJf1qmxC3Oxoep8R1T36w8B92yU29PcBhHO5fk=
@@ -630,6 +631,7 @@ github.com/cncf/xds/go v0.0.0-20240318125728-8a4994d93e50/go.mod h1:5e1+Vvlzido6
 github.com/cncf/xds/go v0.0.0-20240423153145-555b57ec207b h1:ga8SEFjZ60pxLcmhnThWgvH2wg8376yUJmPhEH4H3kw=
 github.com/cncf/xds/go v0.0.0-20240423153145-555b57ec207b/go.mod h1:W+zGtBO5Y1IgJhy4+A9GOqVhqLpfZi+vwmdNXUehLA8=
 github.com/cncf/xds/go v0.0.0-20240723142845-024c85f92f20/go.mod h1:W+zGtBO5Y1IgJhy4+A9GOqVhqLpfZi+vwmdNXUehLA8=
+github.com/cncf/xds/go v0.0.0-20240905190251-b4127c9b8d78/go.mod h1:W+zGtBO5Y1IgJhy4+A9GOqVhqLpfZi+vwmdNXUehLA8=
 github.com/containerd/console v1.0.3 h1:lIr7SlA5PxZyMV30bDW0MGbiOPXwc63yRuCP0ARubLw=
 github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
 github.com/containerd/console v1.0.4/go.mod h1:YynlIjWYF8myEu6sdkwKIvGQq+cOckRm6So2avqoYAk=
@@ -1019,6 +1021,7 @@ golang.org/x/crypto v0.0.0-20220722155217-630584e8d5aa/go.mod h1:IxCIyHEi3zRg3s0
 golang.org/x/crypto v0.12.0/go.mod h1:NF0Gs7EO5K4qLn+Ylc+fih8BSTeIjAP05siRnAh98yw=
 golang.org/x/crypto v0.23.0/go.mod h1:CKFgDieR+mRhux2Lsu27y0fO304Db0wZe70UKqHu0v8=
 golang.org/x/crypto v0.24.0/go.mod h1:Z1PMYSOR5nyMcyAVAIQSKCDwalqy85Aqn1x3Ws4L5DM=
+golang.org/x/crypto v0.28.0/go.mod h1:rmgy+3RHxRZMyY0jjAJShp2zgEdOqj2AO7U0pYmeQ7U=
 golang.org/x/image v0.0.0-20220302094943-723b81ca9867 h1:TcHcE0vrmgzNH1v3ppjcMGbhG5+9fMuvOmUYwNEF4q4=
 golang.org/x/lint v0.0.0-20210508222113-6edffad5e616 h1:VLliZ0d+/avPrXXH+OakdXhpJuEoBZuwh1m2j7U6Iug=
 golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028 h1:4+4C/Iv2U4fMZBiMCc98MG1In4gJY5YRhtpDNeDeHWs=
@@ -1044,8 +1047,10 @@ golang.org/x/oauth2 v0.15.0/go.mod h1:q48ptWNTY5XWf+JNten23lcvHpLJ0ZSxF5ttTHKVCA
 golang.org/x/oauth2 v0.17.0/go.mod h1:OzPDGQiuQMguemayvdylqddI7qcD9lnSDb+1FiwQ5HA=
 golang.org/x/sync v0.4.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
 golang.org/x/sync v0.7.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
+golang.org/x/sync v0.8.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.19.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
@@ -1123,6 +1128,7 @@ google.golang.org/genproto/googleapis/api v0.0.0-20240528184218-531527333157 h1:
 google.golang.org/genproto/googleapis/api v0.0.0-20240528184218-531527333157/go.mod h1:99sLkeliLXfdj2J75X3Ho+rrVCaJze0uwN7zDDkjPVU=
 google.golang.org/genproto/googleapis/api v0.0.0-20240604185151-ef581f913117/go.mod h1:OimBR/bc1wPO9iV4NC2bpyjy3VnAwZh5EBPQdtaE5oo=
 google.golang.org/genproto/googleapis/api v0.0.0-20240814211410-ddb44dafa142/go.mod h1:d6be+8HhtEtucleCbxpPW9PA9XwISACu8nvpPqF0BVo=
+google.golang.org/genproto/googleapis/api v0.0.0-20240903143218-8af14fe29dc1/go.mod h1:qpvKtACPCQhAdu3PyQgV4l3LMXZEtft7y8QcarRsp9I=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc h1:g3hIDl0jRNd9PPTs2uBzYuaD5mQuwOkZY0vSc0LR32o=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231030173426-d783a09b4405/go.mod h1:GRUCuLdzVqZte8+Dl/D4N25yLzcGqqWaYkeVOwulFqw=
 google.golang.org/genproto/googleapis/bytestream v0.0.0-20231212172506-995d672761c0/go.mod h1:guYXGPwC6jwxgWKW5Y405fKWOFNwlvUlUnzyp9i0uqo=
@@ -1169,6 +1175,7 @@ k8s.io/kms v0.30.1/go.mod h1:GrMurD0qk3G4yNgGcsCEmepqf9KyyIrTXYR2lyUOJC4=
 k8s.io/kms v0.31.0 h1:KchILPfB1ZE+ka7223mpU5zeFNkmb45jl7RHnlImUaI=
 k8s.io/kms v0.31.0/go.mod h1:OZKwl1fan3n3N5FFxnW5C4V3ygrah/3YXeJWS3O6+94=
 k8s.io/kms v0.31.2/go.mod h1:OZKwl1fan3n3N5FFxnW5C4V3ygrah/3YXeJWS3O6+94=
+k8s.io/kms v0.31.3/go.mod h1:OZKwl1fan3n3N5FFxnW5C4V3ygrah/3YXeJWS3O6+94=
 k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
 k8s.io/utils v0.0.0-20230726121419-3b25d923346b/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 lukechampine.com/uint128 v1.2.0 h1:mBi/5l91vocEN8otkC5bDLhi2KdCticRiwbdB0O+rjI=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index eb9c7ec77..c8e421bc8 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -34,7 +34,7 @@ require (
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
-	github.com/onsi/ginkgo/v2 v2.21.0 // indirect
+	github.com/onsi/ginkgo/v2 v2.22.0 // indirect
 	github.com/onsi/gomega v1.34.2 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index b6780f932..e7c35d2ce 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -58,8 +58,8 @@ github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/onrik/logrus v0.11.0 h1:pu+BCaWL36t0yQaj/2UHK2erf88dwssAKOT51mxPUVs=
 github.com/onrik/logrus v0.11.0/go.mod h1:fO2vlZwIdti6PidD3gV5YKt9Lq5ptpnP293RAe1ITwk=
-github.com/onsi/ginkgo/v2 v2.21.0 h1:7rg/4f3rB88pb5obDgNZrNHrQ4e6WpjonchcpuBRnZM=
-github.com/onsi/ginkgo/v2 v2.21.0/go.mod h1:7Du3c42kxCUegi0IImZ1wUQzMBVecgIHjR1C+NkhLQo=
+github.com/onsi/ginkgo/v2 v2.22.0 h1:Yed107/8DjTr0lKCNt7Dn8yQ6ybuDRQoMGrNFKzMfHg=
+github.com/onsi/ginkgo/v2 v2.22.0/go.mod h1:7Du3c42kxCUegi0IImZ1wUQzMBVecgIHjR1C+NkhLQo=
 github.com/onsi/gomega v1.34.2 h1:pNCwDkzrsv7MS9kpaQvVb1aVLahQXyJ/Tv5oAZMI3i8=
 github.com/onsi/gomega v1.34.2/go.mod h1:v1xfxRgk0KIsG+QOdm7p8UosrOzPYRo60fd3B/1Dukc=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index f68683db3..4d62d8f16 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -59,7 +59,7 @@ image:
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.21.0 \
+		--build-arg GINKGO_VERSION=2.22.0 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -80,7 +80,7 @@ build: ensure-buildx
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.21.0 \
+		--build-arg GINKGO_VERSION=2.22.0 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 48828a050..ca79ea2fe 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.21.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.22.0
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index fed9ff256..01b909f30 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -95,7 +95,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.21.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.22.0
   fi
 
   echo "[dev-env] .. done building controller images"

From 5ae018e5df4ac54c5280a96b43808090a4c24ec5 Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Wed, 4 Dec 2024 16:01:06 -0500
Subject: [PATCH 1547/1641] Plugin: Bump `goreleaser` to v2. (#12439)

Signed-off-by: James Strong <strong.james.e@gmail.com>
---
 .github/workflows/plugin.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 1d184f83d..9c803e163 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -29,7 +29,7 @@ jobs:
         if: ${{ ! startsWith(github.ref, 'refs/tags/') }}
         uses: goreleaser/goreleaser-action@9ed2f89a662bf1735a48bc8557fd212fa902bebf # v6.1.0
         with:
-          version: latest
+          version: "~> v2"
           args: release --snapshot --clean
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
@@ -38,7 +38,7 @@ jobs:
         if: ${{ startsWith(github.ref, 'refs/tags/') }}
         uses: goreleaser/goreleaser-action@9ed2f89a662bf1735a48bc8557fd212fa902bebf # v6.1.0
         with:
-          version: latest
+          version: "~> v2"
           args: release --clean
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

From d1dc3e827f818ee23a08af09e9a7be0b12af1736 Mon Sep 17 00:00:00 2001
From: Boris Kreitchman <bkreitch@gmail.com>
Date: Thu, 5 Dec 2024 20:10:00 +0200
Subject: [PATCH 1548/1641] Config/Annotations: Add `proxy-busy-buffers-size`.
 (#12433)

---
 .../nginx-configuration/annotations-risk.md      |  1 +
 .../nginx-configuration/annotations.md           | 13 +++++++++++++
 docs/user-guide/nginx-configuration/configmap.md |  5 +++++
 internal/ingress/annotations/proxy/main.go       | 16 ++++++++++++++++
 internal/ingress/annotations/proxy/main_test.go  | 12 ++++++++++++
 internal/ingress/controller/config/config.go     |  1 +
 internal/ingress/controller/controller.go        |  1 +
 internal/ingress/defaults/main.go                |  5 +++++
 rootfs/etc/nginx/template/nginx.tmpl             |  2 ++
 test/e2e/annotations/proxy.go                    |  3 +++
 10 files changed, 59 insertions(+)

diff --git a/docs/user-guide/nginx-configuration/annotations-risk.md b/docs/user-guide/nginx-configuration/annotations-risk.md
index be24c0930..aff9357b8 100755
--- a/docs/user-guide/nginx-configuration/annotations-risk.md
+++ b/docs/user-guide/nginx-configuration/annotations-risk.md
@@ -73,6 +73,7 @@
 | Proxy | proxy-buffer-size | Low | location |
 | Proxy | proxy-buffering | Low | location |
 | Proxy | proxy-buffers-number | Low | location |
+| Proxy | proxy-busy-buffers-size | Low | location |
 | Proxy | proxy-connect-timeout | Low | location |
 | Proxy | proxy-cookie-domain | Medium | location |
 | Proxy | proxy-cookie-path | Medium | location |
diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index bc72a692c..e69808834 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -116,6 +116,7 @@ You can add these Kubernetes annotations to specific Ingress objects to customiz
 |[nginx.ingress.kubernetes.io/proxy-buffering](#proxy-buffering)|string|
 |[nginx.ingress.kubernetes.io/proxy-buffers-number](#proxy-buffers-number)|number|
 |[nginx.ingress.kubernetes.io/proxy-buffer-size](#proxy-buffer-size)|string|
+|[nginx.ingress.kubernetes.io/proxy-busy-buffers-size](#proxy-busy-buffers-size)|string|
 |[nginx.ingress.kubernetes.io/proxy-max-temp-file-size](#proxy-max-temp-file-size)|string|
 |[nginx.ingress.kubernetes.io/ssl-ciphers](#ssl-ciphers)|string|
 |[nginx.ingress.kubernetes.io/ssl-prefer-server-ciphers](#ssl-ciphers)|"true" or "false"|
@@ -742,6 +743,18 @@ To configure this setting globally, set `proxy-buffer-size` in [NGINX ConfigMap]
 nginx.ingress.kubernetes.io/proxy-buffer-size: "8k"
 ```
 
+### Proxy busy buffers size
+
+[Limits the total size of buffers that can be busy](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_busy_buffers_size) sending a response to the client while the response is not yet fully read.
+
+By default proxy busy buffers size is set as "8k".
+
+To configure this setting globally, set `proxy-busy-buffers-size` in the [ConfigMap](./configmap.md#proxy-busy-buffers-size). To use custom values in an Ingress rule, define this annotation:
+
+```yaml
+nginx.ingress.kubernetes.io/proxy-busy-buffers-size: "16k"
+```
+
 ### Proxy max temp file size
 
 When [`buffering`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffering) of responses from the proxied server is enabled, and the whole response does not fit into the buffers set by the [`proxy_buffer_size`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffer_size) and [`proxy_buffers`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffers) directives, a part of the response can be saved to a temporary file. This directive sets the maximum `size` of the temporary file setting the [`proxy_max_temp_file_size`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_max_temp_file_size). The size of data written to the temporary file at a time is set by the [`proxy_temp_file_write_size`](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_temp_file_write_size) directive.
diff --git a/docs/user-guide/nginx-configuration/configmap.md b/docs/user-guide/nginx-configuration/configmap.md
index 9f093f6b2..d8b4f6693 100644
--- a/docs/user-guide/nginx-configuration/configmap.md
+++ b/docs/user-guide/nginx-configuration/configmap.md
@@ -179,6 +179,7 @@ The following table shows a configuration option's name, type, and the default v
 | [proxy-send-timeout](#proxy-send-timeout)                                       | int          | 60                                                                                                                                                                                                                                                                                                                                                           |                                                                                     |
 | [proxy-buffers-number](#proxy-buffers-number)                                   | int          | 4                                                                                                                                                                                                                                                                                                                                                            |                                                                                     |
 | [proxy-buffer-size](#proxy-buffer-size)                                         | string       | "4k"                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
+| [proxy-busy-buffers-size](#proxy-busy-buffers-size)                             | string       | "8k"                                                                                                                                                                                                                                                                                                                                                         |                                                                                     |
 | [proxy-cookie-path](#proxy-cookie-path)                                         | string       | "off"                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
 | [proxy-cookie-domain](#proxy-cookie-domain)                                     | string       | "off"                                                                                                                                                                                                                                                                                                                                                        |                                                                                     |
 | [proxy-next-upstream](#proxy-next-upstream)                                     | string       | "error timeout"                                                                                                                                                                                                                                                                                                                                              |                                                                                     |
@@ -1109,6 +1110,10 @@ Sets the number of the buffer used for [reading the first part of the response](
 
 Sets the size of the buffer used for [reading the first part of the response](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffer_size) received from the proxied server. This part usually contains a small response header.
 
+## proxy-busy-buffers-size
+
+[Limits the total size of buffers that can be busy](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_busy_buffers_size) sending a response to the client while the response is not yet fully read.
+
 ## proxy-cookie-path
 
 Sets a text that [should be changed in the path attribute](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cookie_path) of the “Set-Cookie” header fields of a proxied server response.
diff --git a/internal/ingress/annotations/proxy/main.go b/internal/ingress/annotations/proxy/main.go
index 9d2646261..aaa093eaf 100644
--- a/internal/ingress/annotations/proxy/main.go
+++ b/internal/ingress/annotations/proxy/main.go
@@ -31,6 +31,7 @@ const (
 	proxyReadTimeoutAnnotation         = "proxy-read-timeout"
 	proxyBuffersNumberAnnotation       = "proxy-buffers-number"
 	proxyBufferSizeAnnotation          = "proxy-buffer-size"
+	proxyBusyBuffersSizeAnnotation     = "proxy-busy-buffers-size"
 	proxyCookiePathAnnotation          = "proxy-cookie-path"
 	proxyCookieDomainAnnotation        = "proxy-cookie-domain"
 	proxyBodySizeAnnotation            = "proxy-body-size"
@@ -82,6 +83,12 @@ var proxyAnnotations = parser.Annotation{
 			Documentation: `This annotation sets the size of the buffer proxy_buffer_size used for reading the first part of the response received from the proxied server. 
 			By default proxy buffer size is set as "4k".`,
 		},
+		proxyBusyBuffersSizeAnnotation: {
+			Validator:     parser.ValidateRegex(parser.SizeRegex, true),
+			Scope:         parser.AnnotationScopeLocation,
+			Risk:          parser.AnnotationRiskLow,
+			Documentation: `This annotation limits the total size of buffers that can be busy sending a response to the client while the response is not yet fully read. By default proxy busy buffers size is set as "8k".`,
+		},
 		proxyCookiePathAnnotation: {
 			Validator:     parser.ValidateRegex(parser.URLIsValidRegex, true),
 			Scope:         parser.AnnotationScopeLocation,
@@ -167,6 +174,7 @@ type Config struct {
 	ReadTimeout          int    `json:"readTimeout"`
 	BuffersNumber        int    `json:"buffersNumber"`
 	BufferSize           string `json:"bufferSize"`
+	BusyBuffersSize      string `json:"busyBuffersSize"`
 	CookieDomain         string `json:"cookieDomain"`
 	CookiePath           string `json:"cookiePath"`
 	NextUpstream         string `json:"nextUpstream"`
@@ -206,6 +214,9 @@ func (l1 *Config) Equal(l2 *Config) bool {
 	if l1.BufferSize != l2.BufferSize {
 		return false
 	}
+	if l1.BusyBuffersSize != l2.BusyBuffersSize {
+		return false
+	}
 	if l1.CookieDomain != l2.CookieDomain {
 		return false
 	}
@@ -290,6 +301,11 @@ func (a proxy) Parse(ing *networking.Ingress) (interface{}, error) {
 		config.BufferSize = defBackend.ProxyBufferSize
 	}
 
+	config.BusyBuffersSize, err = parser.GetStringAnnotation(proxyBusyBuffersSizeAnnotation, ing, a.annotationConfig.Annotations)
+	if err != nil {
+		config.BusyBuffersSize = defBackend.ProxyBusyBuffersSize
+	}
+
 	config.CookiePath, err = parser.GetStringAnnotation(proxyCookiePathAnnotation, ing, a.annotationConfig.Annotations)
 	if err != nil {
 		config.CookiePath = defBackend.ProxyCookiePath
diff --git a/internal/ingress/annotations/proxy/main_test.go b/internal/ingress/annotations/proxy/main_test.go
index 9446ae970..b6ce07fb2 100644
--- a/internal/ingress/annotations/proxy/main_test.go
+++ b/internal/ingress/annotations/proxy/main_test.go
@@ -88,6 +88,7 @@ func (m mockBackend) GetDefaultBackend() defaults.Backend {
 		ProxyReadTimeout:         20,
 		ProxyBuffersNumber:       4,
 		ProxyBufferSize:          "10k",
+		ProxyBusyBuffersSize:     "15k",
 		ProxyBodySize:            "3k",
 		ProxyNextUpstream:        "error",
 		ProxyNextUpstreamTimeout: 0,
@@ -108,6 +109,7 @@ func TestProxy(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix("proxy-read-timeout")] = "3"
 	data[parser.GetAnnotationWithPrefix("proxy-buffers-number")] = "8"
 	data[parser.GetAnnotationWithPrefix("proxy-buffer-size")] = "1k"
+	data[parser.GetAnnotationWithPrefix("proxy-busy-buffers-size")] = "4k"
 	data[parser.GetAnnotationWithPrefix("proxy-body-size")] = "2k"
 	data[parser.GetAnnotationWithPrefix("proxy-next-upstream")] = off
 	data[parser.GetAnnotationWithPrefix("proxy-next-upstream-timeout")] = "5"
@@ -141,6 +143,9 @@ func TestProxy(t *testing.T) {
 	if p.BufferSize != "1k" {
 		t.Errorf("expected 1k as buffer-size but returned %v", p.BufferSize)
 	}
+	if p.BusyBuffersSize != "4k" {
+		t.Errorf("expected 4k as busy-buffers-size but returned %v", p.BusyBuffersSize)
+	}
 	if p.BodySize != "2k" {
 		t.Errorf("expected 2k as body-size but returned %v", p.BodySize)
 	}
@@ -176,6 +181,7 @@ func TestProxyComplex(t *testing.T) {
 	data[parser.GetAnnotationWithPrefix("proxy-read-timeout")] = "3"
 	data[parser.GetAnnotationWithPrefix("proxy-buffers-number")] = "8"
 	data[parser.GetAnnotationWithPrefix("proxy-buffer-size")] = "1k"
+	data[parser.GetAnnotationWithPrefix("proxy-busy-buffers-size")] = "4k"
 	data[parser.GetAnnotationWithPrefix("proxy-body-size")] = "2k"
 	data[parser.GetAnnotationWithPrefix("proxy-next-upstream")] = "error http_502"
 	data[parser.GetAnnotationWithPrefix("proxy-next-upstream-timeout")] = "5"
@@ -209,6 +215,9 @@ func TestProxyComplex(t *testing.T) {
 	if p.BufferSize != "1k" {
 		t.Errorf("expected 1k as buffer-size but returned %v", p.BufferSize)
 	}
+	if p.BusyBuffersSize != "4k" {
+		t.Errorf("expected 4k as buffer-size but returned %v", p.BusyBuffersSize)
+	}
 	if p.BodySize != "2k" {
 		t.Errorf("expected 2k as body-size but returned %v", p.BodySize)
 	}
@@ -264,6 +273,9 @@ func TestProxyWithNoAnnotation(t *testing.T) {
 	if p.BufferSize != "10k" {
 		t.Errorf("expected 10k as buffer-size but returned %v", p.BufferSize)
 	}
+	if p.BusyBuffersSize != "15k" {
+		t.Errorf("expected 15k as buffer-size but returned %v", p.BusyBuffersSize)
+	}
 	if p.BodySize != "3k" {
 		t.Errorf("expected 3k as body-size but returned %v", p.BodySize)
 	}
diff --git a/internal/ingress/controller/config/config.go b/internal/ingress/controller/config/config.go
index f4d202f00..beac1405d 100644
--- a/internal/ingress/controller/config/config.go
+++ b/internal/ingress/controller/config/config.go
@@ -850,6 +850,7 @@ func NewDefault() Configuration {
 			ProxySendTimeout:            60,
 			ProxyBuffersNumber:          4,
 			ProxyBufferSize:             "4k",
+			ProxyBusyBuffersSize:        "8k",
 			ProxyCookieDomain:           "off",
 			ProxyCookiePath:             "off",
 			ProxyNextUpstream:           "error timeout",
diff --git a/internal/ingress/controller/controller.go b/internal/ingress/controller/controller.go
index aa8f4c4b9..652a80e49 100644
--- a/internal/ingress/controller/controller.go
+++ b/internal/ingress/controller/controller.go
@@ -1255,6 +1255,7 @@ func (n *NGINXController) createServers(data []*ingress.Ingress,
 		ReadTimeout:          bdef.ProxyReadTimeout,
 		BuffersNumber:        bdef.ProxyBuffersNumber,
 		BufferSize:           bdef.ProxyBufferSize,
+		BusyBuffersSize:      bdef.ProxyBusyBuffersSize,
 		CookieDomain:         bdef.ProxyCookieDomain,
 		CookiePath:           bdef.ProxyCookiePath,
 		NextUpstream:         bdef.ProxyNextUpstream,
diff --git a/internal/ingress/defaults/main.go b/internal/ingress/defaults/main.go
index af0a41d66..bec1b08e2 100644
--- a/internal/ingress/defaults/main.go
+++ b/internal/ingress/defaults/main.go
@@ -69,6 +69,11 @@ type Backend struct {
 	// http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_buffer_size)
 	ProxyBufferSize string `json:"proxy-buffer-size"`
 
+	// Limits the total size of buffers that can be busy sending a response to the client while
+	// the response is not yet fully read.
+	// http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_busy_buffers_size
+	ProxyBusyBuffersSize string `json:"proxy-busy-buffers-size"`
+
 	// Sets a text that should be changed in the path attribute of the “Set-Cookie” header fields of
 	// a proxied server response.
 	// http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_cookie_path
diff --git a/rootfs/etc/nginx/template/nginx.tmpl b/rootfs/etc/nginx/template/nginx.tmpl
index ad41ec7ee..6b8e750b0 100644
--- a/rootfs/etc/nginx/template/nginx.tmpl
+++ b/rootfs/etc/nginx/template/nginx.tmpl
@@ -1041,6 +1041,7 @@ stream {
             {{ end }}
             proxy_buffer_size                       {{ $location.Proxy.BufferSize }};
             proxy_buffers                           {{ $location.Proxy.BuffersNumber }} {{ $location.Proxy.BufferSize }};
+            proxy_busy_buffers_size                 {{ $location.Proxy.BusyBuffersSize }};
             proxy_request_buffering                 {{ $location.Proxy.RequestBuffering }};
 
             proxy_ssl_server_name       on;
@@ -1296,6 +1297,7 @@ stream {
             proxy_buffering                         {{ $location.Proxy.ProxyBuffering }};
             proxy_buffer_size                       {{ $location.Proxy.BufferSize }};
             proxy_buffers                           {{ $location.Proxy.BuffersNumber }} {{ $location.Proxy.BufferSize }};
+            proxy_busy_buffers_size                 {{ $location.Proxy.BusyBuffersSize }};
             {{ if isValidByteSize $location.Proxy.ProxyMaxTempFileSize true }}
             proxy_max_temp_file_size                {{ $location.Proxy.ProxyMaxTempFileSize }};
             {{ end }}
diff --git a/test/e2e/annotations/proxy.go b/test/e2e/annotations/proxy.go
index 235b828e7..8e9866021 100644
--- a/test/e2e/annotations/proxy.go
+++ b/test/e2e/annotations/proxy.go
@@ -160,11 +160,13 @@ var _ = framework.DescribeAnnotation("proxy-*", func() {
 		proxyBuffering := "on"
 		proxyBuffersNumber := "8"
 		proxyBufferSize := "8k"
+		proxyBusyBuffersSize := "16k"
 
 		annotations := make(map[string]string)
 		annotations["nginx.ingress.kubernetes.io/proxy-buffering"] = proxyBuffering
 		annotations["nginx.ingress.kubernetes.io/proxy-buffers-number"] = proxyBuffersNumber
 		annotations["nginx.ingress.kubernetes.io/proxy-buffer-size"] = proxyBufferSize
+		annotations["nginx.ingress.kubernetes.io/proxy-busy-buffers-size"] = proxyBusyBuffersSize
 
 		ing := framework.NewSingleIngress(host, "/", host, f.Namespace, framework.EchoService, 80, annotations)
 		f.EnsureIngress(ing)
@@ -174,6 +176,7 @@ var _ = framework.DescribeAnnotation("proxy-*", func() {
 				return strings.Contains(server, fmt.Sprintf("proxy_buffering %s;", proxyBuffering)) &&
 					strings.Contains(server, fmt.Sprintf("proxy_buffer_size %s;", proxyBufferSize)) &&
 					strings.Contains(server, fmt.Sprintf("proxy_buffers %s %s;", proxyBuffersNumber, proxyBufferSize)) &&
+					strings.Contains(server, fmt.Sprintf("proxy_busy_buffers_size %s;", proxyBusyBuffersSize)) &&
 					strings.Contains(server, fmt.Sprintf("proxy_request_buffering %s;", proxyBuffering))
 			})
 	})

From ff9fc5cc8dd3843787f57c9ff3a372a66b930681 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Dec 2024 15:40:04 +0000
Subject: [PATCH 1549/1641] Bump the go group across 1 directory with 2 updates
 (#12453)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 04b833489..02c9bb225 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.29.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
-	google.golang.org/grpc v1.68.0
+	google.golang.org/grpc v1.68.1
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -41,7 +41,7 @@ require (
 	k8s.io/component-base v0.31.3
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.19.2
+	sigs.k8s.io/controller-runtime v0.19.3
 	sigs.k8s.io/mdtoc v1.4.0
 )
 
diff --git a/go.sum b/go.sum
index 48295edee..e2b1bcad9 100644
--- a/go.sum
+++ b/go.sum
@@ -300,8 +300,8 @@ gomodules.xyz/jsonpatch/v2 v2.4.0 h1:Ci3iUJyx9UeRx7CeFN8ARgGbkESwJK+KB9lLcWxY/Zw
 gomodules.xyz/jsonpatch/v2 v2.4.0/go.mod h1:AH3dM2RI6uoBZxn3LVrfvJ3E0/9dG4cSrbuBJT4moAY=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1 h1:pPJltXNxVzT4pK9yD8vR9X75DaWYYmLGMsEvBfFQZzQ=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1/go.mod h1:UqMtugtsSgubUsoxbuAoiCXvqvErP7Gf0so0mK9tHxU=
-google.golang.org/grpc v1.68.0 h1:aHQeeJbo8zAkAa3pRzrVjZlbz6uSfeOXlJNQM0RAbz0=
-google.golang.org/grpc v1.68.0/go.mod h1:fmSPC5AsjSBCK54MyHRx48kpOti1/jRfOlwEWywNjWA=
+google.golang.org/grpc v1.68.1 h1:oI5oTa11+ng8r8XMMN7jAOmWfPZWbYpCFaMUTACxkM0=
+google.golang.org/grpc v1.68.1/go.mod h1:+q1XYFJjShcqn0QZHvCyeR4CXPA+llXIeUIfIe00waw=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=
@@ -364,8 +364,8 @@ k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 h1:pUdcCO1Lk/tbT5ztQWOBi5HBgbBP1
 k8s.io/utils v0.0.0-20240711033017-18e509b52bc8/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
-sigs.k8s.io/controller-runtime v0.19.2 h1:3sPrF58XQEPzbE8T81TN6selQIMGbtYwuaJ6eDssDF8=
-sigs.k8s.io/controller-runtime v0.19.2/go.mod h1:iRmWllt8IlaLjvTTDLhRBXIEtkCK6hwVBJJsYS9Ajf4=
+sigs.k8s.io/controller-runtime v0.19.3 h1:XO2GvC9OPftRst6xWCpTgBZO04S2cbp0Qqkj8bX1sPw=
+sigs.k8s.io/controller-runtime v0.19.3/go.mod h1:j4j87DqtsThvwTv5/Tc5NFRyyF/RF0ip4+62tbTSIUM=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
 sigs.k8s.io/kustomize/api v0.17.2 h1:E7/Fjk7V5fboiuijoZHgs4aHuexi5Y2loXlVOAVAG5g=

From b583946ad2f72d13c4a7fe1c12799086f175e68c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Dec 2024 15:42:01 +0000
Subject: [PATCH 1550/1641] Bump github/codeql-action from 3.27.5 to 3.27.6 in
 the actions group (#12457)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 6b7414c58..503216910 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@f09c1c0a94de965c15400f5634aa42fac8fb8f88 # v3.27.5
+        uses: github/codeql-action/upload-sarif@aa578102511db1f4524ed59b8cc2bae4f6e88195 # v3.27.6
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 159894ddd..e612ba502 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@f09c1c0a94de965c15400f5634aa42fac8fb8f88 # v3.27.5
+        uses: github/codeql-action/upload-sarif@aa578102511db1f4524ed59b8cc2bae4f6e88195 # v3.27.6
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From c6a2d9afb3cbc6c68240f863c03c6c298c4f3aca Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 9 Dec 2024 16:56:04 +0000
Subject: [PATCH 1551/1641] Bump github.com/prometheus/common from 0.60.1 to
 0.61.0 (#12454)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 18 +++++++++---------
 go.sum | 36 ++++++++++++++++++------------------
 2 files changed, 27 insertions(+), 27 deletions(-)

diff --git a/go.mod b/go.mod
index 02c9bb225..0e8dddb26 100644
--- a/go.mod
+++ b/go.mod
@@ -19,13 +19,13 @@ require (
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.5
 	github.com/prometheus/client_model v0.6.1
-	github.com/prometheus/common v0.60.1
+	github.com/prometheus/common v0.61.0
 	github.com/spf13/cobra v1.8.1
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.10.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.29.0
+	golang.org/x/crypto v0.30.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
 	google.golang.org/grpc v1.68.1
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
@@ -116,16 +116,16 @@ require (
 	go.starlark.net v0.0.0-20240123142251-f86470692795 // indirect
 	go.uber.org/zap v1.27.0 // indirect
 	golang.org/x/mod v0.21.0 // indirect
-	golang.org/x/net v0.30.0 // indirect
-	golang.org/x/oauth2 v0.23.0 // indirect
-	golang.org/x/sync v0.9.0 // indirect
-	golang.org/x/sys v0.27.0 // indirect
-	golang.org/x/term v0.26.0 // indirect
-	golang.org/x/text v0.20.0 // indirect
+	golang.org/x/net v0.32.0 // indirect
+	golang.org/x/oauth2 v0.24.0 // indirect
+	golang.org/x/sync v0.10.0 // indirect
+	golang.org/x/sys v0.28.0 // indirect
+	golang.org/x/term v0.27.0 // indirect
+	golang.org/x/text v0.21.0 // indirect
 	golang.org/x/time v0.5.0 // indirect
 	golang.org/x/tools v0.26.0 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1 // indirect
-	google.golang.org/protobuf v1.34.2 // indirect
+	google.golang.org/protobuf v1.35.2 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
diff --git a/go.sum b/go.sum
index e2b1bcad9..7ed5c30cc 100644
--- a/go.sum
+++ b/go.sum
@@ -186,8 +186,8 @@ github.com/prometheus/client_golang v1.20.5 h1:cxppBPuYhUnsO6yo/aoRol4L7q7UFfdm+
 github.com/prometheus/client_golang v1.20.5/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
 github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
-github.com/prometheus/common v0.60.1 h1:FUas6GcOw66yB/73KC+BOZoFJmbo/1pojoILArPAaSc=
-github.com/prometheus/common v0.60.1/go.mod h1:h0LYf1R1deLSKtD4Vdg8gy4RuOvENW2J/h19V5NADQw=
+github.com/prometheus/common v0.61.0 h1:3gv/GThfX0cV2lpO7gkTUwZru38mxevy90Bj8YFSRQQ=
+github.com/prometheus/common v0.61.0/go.mod h1:zr29OCN/2BsJRaFwG8QOBr41D6kkchKbpeNH7pAjb/s=
 github.com/prometheus/procfs v0.15.1 h1:YagwOFzUgYfKKHX6Dr+sHT7km/hxC76UB0learggepc=
 github.com/prometheus/procfs v0.15.1/go.mod h1:fB45yRUv8NstnjriLhBQLuOUt+WW4BsoGhij/e3PBqk=
 github.com/rogpeppe/go-internal v1.12.0 h1:exVL4IDcn6na9z1rAb56Vxr+CgyK3nn3O+epU5NdKM8=
@@ -237,8 +237,8 @@ go.uber.org/zap v1.27.0/go.mod h1:GB2qFLM7cTU87MWRP2mPIjqfIDnGu+VIO4V/SdhGo2E=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.29.0 h1:L5SG1JTTXupVV3n6sUqMTeWbjAyfPwoda2DLX8J8FrQ=
-golang.org/x/crypto v0.29.0/go.mod h1:+F4F4N5hv6v38hfeYwTdx20oUvLLc+QfrE9Ax9HtgRg=
+golang.org/x/crypto v0.30.0 h1:RwoQn3GkWiMkzlX562cLB7OxWvjH1L8xutO2WoJcRoY=
+golang.org/x/crypto v0.30.0/go.mod h1:kDsLvtWBEx7MV9tJOj9bnXsPbxwJQ6csT/x4KIN4Ssk=
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 h1:2dVuKD2vS7b0QIHQbpyTISPd0LeHDbnYEryqj5Q1ug8=
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbRXRL/OHtkFuWGRjvuhBJpk2IlY=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
@@ -251,16 +251,16 @@ golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.30.0 h1:AcW1SDZMkb8IpzCdQUaIq2sP4sZ4zw+55h6ynffypl4=
-golang.org/x/net v0.30.0/go.mod h1:2wGyMJ5iFasEhkwi13ChkO/t1ECNC4X4eBKkVFyYFlU=
-golang.org/x/oauth2 v0.23.0 h1:PbgcYx2W7i4LvjJWEbf0ngHV6qJYr86PkAV3bXdLEbs=
-golang.org/x/oauth2 v0.23.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
+golang.org/x/net v0.32.0 h1:ZqPmj8Kzc+Y6e0+skZsuACbx+wzMgo5MQsJh9Qd6aYI=
+golang.org/x/net v0.32.0/go.mod h1:CwU0IoeOlnQQWJ6ioyFrfRuomB8GKF6KbYXZVyeXNfs=
+golang.org/x/oauth2 v0.24.0 h1:KTBBxWqUa0ykRPLtV69rRto9TLXcqYkeswu48x/gvNE=
+golang.org/x/oauth2 v0.24.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.9.0 h1:fEo0HyrW1GIgZdpbhCRO0PkJajUS5H9IFUztCgEo2jQ=
-golang.org/x/sync v0.9.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
+golang.org/x/sync v0.10.0 h1:3NQrjDixjgGwUOCaF8w2+VYHv0Ve/vGYSbdkTa98gmQ=
+golang.org/x/sync v0.10.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -275,14 +275,14 @@ golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.27.0 h1:wBqf8DvsY9Y/2P8gAfPDEYNuS30J4lPHJxXSb/nJZ+s=
-golang.org/x/sys v0.27.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/term v0.26.0 h1:WEQa6V3Gja/BhNxg540hBip/kkaYtRg3cxg4oXSw4AU=
-golang.org/x/term v0.26.0/go.mod h1:Si5m1o57C5nBNQo5z1iq+XDijt21BDBDp2bK0QI8e3E=
+golang.org/x/sys v0.28.0 h1:Fksou7UEQUWlKvIdsqzJmUmCX3cZuD2+P3XyyzwMhlA=
+golang.org/x/sys v0.28.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/term v0.27.0 h1:WP60Sv1nlK1T6SupCHbXzSaN0b9wUmsPoRS9b61A23Q=
+golang.org/x/term v0.27.0/go.mod h1:iMsnZpn0cago0GOrHO2+Y7u7JPn5AylBrcoWkElMTSM=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.20.0 h1:gK/Kv2otX8gz+wn7Rmb3vT96ZwuoxnQlY+HlJVj7Qug=
-golang.org/x/text v0.20.0/go.mod h1:D4IsuqiFMhST5bX19pQ9ikHC2GsaKyk/oF+pn3ducp4=
+golang.org/x/text v0.21.0 h1:zyQAAkrwaneQ066sspRyJaG9VNi/YJ1NfzcGB3hZ/qo=
+golang.org/x/text v0.21.0/go.mod h1:4IBbMaMmOPCJ8SecivzSH54+73PCFmPWxNTLm+vZkEQ=
 golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
 golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
@@ -310,8 +310,8 @@ google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQ
 google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miEFZTKqfCUM6K7xSMQL9OKL/b6hQv+e19PK+JZNE=
 google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo=
 google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
-google.golang.org/protobuf v1.34.2 h1:6xV6lTsCfpGD21XK49h7MhtcApnLqkfYgPcdHftf6hg=
-google.golang.org/protobuf v1.34.2/go.mod h1:qYOHts0dSfpeUzUFpOMr/WGzszTmLH+DiWniOlNbLDw=
+google.golang.org/protobuf v1.35.2 h1:8Ar7bF+apOIoThw1EdZl0p1oWvMqTHmpA2fRTyZO8io=
+google.golang.org/protobuf v1.35.2/go.mod h1:9fA7Ob0pmnwhb644+1+CVWFRbNajQ6iRojtC/QF5bRE=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=

From e9979b4cb30f13e0145bab37375ccc03400e8cb5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 12 Dec 2024 11:00:25 +0100
Subject: [PATCH 1552/1641] Bump golang.org/x/crypto from 0.21.0 to 0.31.0 in
 /magefiles (#12470)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 magefiles/go.mod |  2 +-
 magefiles/go.sum | 12 ++++++------
 2 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/magefiles/go.mod b/magefiles/go.mod
index 64f18e43d..ef32eabf3 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -28,7 +28,7 @@ require (
 	github.com/rogpeppe/go-internal v1.11.0 // indirect
 	github.com/sergi/go-diff v1.3.1 // indirect
 	github.com/stretchr/testify v1.9.0 // indirect
-	golang.org/x/crypto v0.21.0 // indirect
+	golang.org/x/crypto v0.31.0 // indirect
 	google.golang.org/appengine v1.6.8 // indirect
 	google.golang.org/protobuf v1.33.0 // indirect
 	gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c // indirect
diff --git a/magefiles/go.sum b/magefiles/go.sum
index 16bc8460f..8684d4701 100644
--- a/magefiles/go.sum
+++ b/magefiles/go.sum
@@ -89,8 +89,8 @@ golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACk
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.21.0 h1:X31++rzVUdKhX5sWmSOFZxx8UW/ldWx55cbf08iNAMA=
-golang.org/x/crypto v0.21.0/go.mod h1:0BP7YvVV9gBbVKyeTG0Gyn+gZm94bibOW5BjDEYAOMs=
+golang.org/x/crypto v0.31.0 h1:ihbySMvVjLAeSH1IbfcRTkD/iNscyz8rGzjF/E5hV6U=
+golang.org/x/crypto v0.31.0/go.mod h1:kDsLvtWBEx7MV9tJOj9bnXsPbxwJQ6csT/x4KIN4Ssk=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -121,16 +121,16 @@ golang.org/x/sys v0.0.0-20210112080510-489259a85091/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.18.0 h1:DBdB3niSjOA/O0blCZBqDefyWNYveAYMNF1Wum0DYQ4=
-golang.org/x/sys v0.18.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.28.0 h1:Fksou7UEQUWlKvIdsqzJmUmCX3cZuD2+P3XyyzwMhlA=
+golang.org/x/sys v0.28.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ=
-golang.org/x/text v0.14.0 h1:ScX5w1eTa3QqT8oi6+ziP7dTV1S2+ALU0bI+0zXKWiQ=
-golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
+golang.org/x/text v0.21.0 h1:zyQAAkrwaneQ066sspRyJaG9VNi/YJ1NfzcGB3hZ/qo=
+golang.org/x/text v0.21.0/go.mod h1:4IBbMaMmOPCJ8SecivzSH54+73PCFmPWxNTLm+vZkEQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=

From 8ad3ddc3095c5cbf065e2131b50d467bf0f15651 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 12 Dec 2024 12:00:25 +0100
Subject: [PATCH 1553/1641] Bump golang.org/x/crypto from 0.30.0 to 0.31.0
 (#12474)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 0e8dddb26..3e1b7de04 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.10.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.30.0
+	golang.org/x/crypto v0.31.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
 	google.golang.org/grpc v1.68.1
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
diff --git a/go.sum b/go.sum
index 7ed5c30cc..8ae986aa7 100644
--- a/go.sum
+++ b/go.sum
@@ -237,8 +237,8 @@ go.uber.org/zap v1.27.0/go.mod h1:GB2qFLM7cTU87MWRP2mPIjqfIDnGu+VIO4V/SdhGo2E=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.30.0 h1:RwoQn3GkWiMkzlX562cLB7OxWvjH1L8xutO2WoJcRoY=
-golang.org/x/crypto v0.30.0/go.mod h1:kDsLvtWBEx7MV9tJOj9bnXsPbxwJQ6csT/x4KIN4Ssk=
+golang.org/x/crypto v0.31.0 h1:ihbySMvVjLAeSH1IbfcRTkD/iNscyz8rGzjF/E5hV6U=
+golang.org/x/crypto v0.31.0/go.mod h1:kDsLvtWBEx7MV9tJOj9bnXsPbxwJQ6csT/x4KIN4Ssk=
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 h1:2dVuKD2vS7b0QIHQbpyTISPd0LeHDbnYEryqj5Q1ug8=
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbRXRL/OHtkFuWGRjvuhBJpk2IlY=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=

From 53ca6e292180ade2eeb5507a498a76c647005b5d Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sat, 14 Dec 2024 15:38:42 +0100
Subject: [PATCH 1554/1641] Go: Bump to v1.23.4. (#12482)

---
 GOLANG_VERSION                                | 2 +-
 go.mod                                        | 2 +-
 go.work                                       | 2 +-
 images/custom-error-pages/rootfs/go.mod       | 2 +-
 images/ext-auth-example-authsvc/rootfs/go.mod | 2 +-
 images/kube-webhook-certgen/rootfs/go.mod     | 2 +-
 magefiles/go.mod                              | 2 +-
 7 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/GOLANG_VERSION b/GOLANG_VERSION
index ac1df3fce..27ddcc14d 100644
--- a/GOLANG_VERSION
+++ b/GOLANG_VERSION
@@ -1 +1 @@
-1.23.3
+1.23.4
diff --git a/go.mod b/go.mod
index 3e1b7de04..63b9bea1a 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx
 
-go 1.23.3
+go 1.23.4
 
 require (
 	dario.cat/mergo v1.0.1
diff --git a/go.work b/go.work
index d9bab1506..76d1a6369 100644
--- a/go.work
+++ b/go.work
@@ -1,4 +1,4 @@
-go 1.23.3
+go 1.23.4
 
 use (
 	.
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 9a2f14a9a..274b81ab1 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.23.3
+go 1.23.4
 
 require github.com/prometheus/client_golang v1.20.5
 
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index ec7c280cb..a6610f400 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,6 +1,6 @@
 module example.com/authsvc
 
-go 1.23.3
+go 1.23.4
 
 require k8s.io/apimachinery v0.31.3
 
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index c8e421bc8..da73a54f5 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,6 +1,6 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.23.3
+go 1.23.4
 
 require (
 	github.com/onrik/logrus v0.11.0
diff --git a/magefiles/go.mod b/magefiles/go.mod
index ef32eabf3..9ee2bf363 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/magefiles
 
-go 1.23.3
+go 1.23.4
 
 require (
 	github.com/blang/semver/v4 v4.0.0

From 8318affbb4c87b020e2cbc912e1d8b6d5a509546 Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Sun, 15 Dec 2024 14:42:43 -0300
Subject: [PATCH 1555/1641] rikatz is stepping down (#12486)

---
 OWNERS            | 1 +
 OWNERS_ALIASES    | 3 ---
 SECURITY_CONTACTS | 1 -
 3 files changed, 1 insertion(+), 4 deletions(-)

diff --git a/OWNERS b/OWNERS
index f1e022c38..bafe6b3f7 100644
--- a/OWNERS
+++ b/OWNERS
@@ -10,3 +10,4 @@ emeritus_approvers:
 - aledbf # 2020-04-02
 - bowei # 2022-10-12
 - ElvinEfendi # 2023-04-23
+- rikatz # 2024-12-15
diff --git a/OWNERS_ALIASES b/OWNERS_ALIASES
index 1b5bb134b..8011022d0 100644
--- a/OWNERS_ALIASES
+++ b/OWNERS_ALIASES
@@ -8,14 +8,12 @@ aliases:
 
   ingress-nginx-admins:
   - Gacko
-  - rikatz
   - strongjz
 
   ingress-nginx-maintainers:
   - cpanato
   - Gacko
   - puerco
-  - rikatz
   - strongjz
   - tao12345666333
 
@@ -23,7 +21,6 @@ aliases:
   - cpanato
   - Gacko
   - puerco
-  - rikatz
   - strongjz
   - tao12345666333
 
diff --git a/SECURITY_CONTACTS b/SECURITY_CONTACTS
index d0a9a2dbc..587c7e016 100644
--- a/SECURITY_CONTACTS
+++ b/SECURITY_CONTACTS
@@ -10,5 +10,4 @@
 # DO NOT REPORT SECURITY VULNERABILITIES DIRECTLY TO THESE NAMES, FOLLOW THE
 # INSTRUCTIONS AT https://kubernetes.io/security/
 Gacko
-rikatz
 strongjz

From 9cea5dee695b856af9e6864363a50bec8af01fe9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 16 Dec 2024 12:10:52 +0100
Subject: [PATCH 1556/1641] Bump k8s.io/apimachinery from 0.31.3 to 0.32.0 in
 /images/ext-auth-example-authsvc/rootfs (#12491)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 images/ext-auth-example-authsvc/rootfs/go.mod | 2 +-
 images/ext-auth-example-authsvc/rootfs/go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index a6610f400..f3e7ba804 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -2,6 +2,6 @@ module example.com/authsvc
 
 go 1.23.4
 
-require k8s.io/apimachinery v0.31.3
+require k8s.io/apimachinery v0.32.0
 
 require github.com/google/uuid v1.6.0 // indirect
diff --git a/images/ext-auth-example-authsvc/rootfs/go.sum b/images/ext-auth-example-authsvc/rootfs/go.sum
index a5d952d92..8984e1828 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.sum
+++ b/images/ext-auth-example-authsvc/rootfs/go.sum
@@ -1,4 +1,4 @@
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-k8s.io/apimachinery v0.31.3 h1:6l0WhcYgasZ/wk9ktLq5vLaoXJJr5ts6lkaQzgeYPq4=
-k8s.io/apimachinery v0.31.3/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
+k8s.io/apimachinery v0.32.0 h1:cFSE7N3rmEEtv4ei5X6DaJPHHX0C+upp+v5lVPiEwpg=
+k8s.io/apimachinery v0.32.0/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=

From 87588e0e04bb470f78f1c6148c5b333acec0d429 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 16 Dec 2024 12:16:51 +0100
Subject: [PATCH 1557/1641] Bump k8s.io/kube-aggregator from 0.31.3 to 0.32.0
 in /images/kube-webhook-certgen/rootfs (#12492)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 images/kube-webhook-certgen/rootfs/go.mod | 29 +++++------
 images/kube-webhook-certgen/rootfs/go.sum | 61 +++++++++++------------
 2 files changed, 41 insertions(+), 49 deletions(-)

diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index da73a54f5..1174fe9a9 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -6,10 +6,10 @@ require (
 	github.com/onrik/logrus v0.11.0
 	github.com/sirupsen/logrus v1.9.3
 	github.com/spf13/cobra v1.8.1
-	k8s.io/api v0.31.3
-	k8s.io/apimachinery v0.31.3
-	k8s.io/client-go v0.31.3
-	k8s.io/kube-aggregator v0.31.3
+	k8s.io/api v0.32.0
+	k8s.io/apimachinery v0.32.0
+	k8s.io/client-go v0.32.0
+	k8s.io/kube-aggregator v0.32.0
 )
 
 require (
@@ -17,16 +17,15 @@ require (
 	github.com/emicklei/go-restful/v3 v3.11.3 // indirect
 	github.com/fxamacker/cbor/v2 v2.7.0 // indirect
 	github.com/go-logr/logr v1.4.2 // indirect
-	github.com/go-openapi/jsonpointer v0.20.2 // indirect
+	github.com/go-openapi/jsonpointer v0.21.0 // indirect
 	github.com/go-openapi/jsonreference v0.20.4 // indirect
-	github.com/go-openapi/swag v0.22.9 // indirect
+	github.com/go-openapi/swag v0.23.0 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/protobuf v1.5.4 // indirect
 	github.com/google/gnostic-models v0.6.8 // indirect
 	github.com/google/go-cmp v0.6.0 // indirect
 	github.com/google/gofuzz v1.2.0 // indirect
 	github.com/google/uuid v1.6.0 // indirect
-	github.com/imdario/mergo v0.3.16 // indirect
 	github.com/inconshreveable/mousetrap v1.1.0 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/json-iterator/go v1.1.12 // indirect
@@ -35,25 +34,23 @@ require (
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
 	github.com/onsi/ginkgo/v2 v2.22.0 // indirect
-	github.com/onsi/gomega v1.34.2 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
 	github.com/x448/float16 v0.8.4 // indirect
 	golang.org/x/net v0.30.0 // indirect
-	golang.org/x/oauth2 v0.21.0 // indirect
+	golang.org/x/oauth2 v0.23.0 // indirect
 	golang.org/x/sys v0.26.0 // indirect
 	golang.org/x/term v0.25.0 // indirect
 	golang.org/x/text v0.19.0 // indirect
-	golang.org/x/time v0.5.0 // indirect
-	google.golang.org/protobuf v1.34.2 // indirect
+	golang.org/x/time v0.7.0 // indirect
+	google.golang.org/protobuf v1.35.1 // indirect
 	gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
-	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 	k8s.io/klog/v2 v2.130.1 // indirect
-	k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 // indirect
-	k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 // indirect
-	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
-	sigs.k8s.io/structured-merge-diff/v4 v4.4.1 // indirect
+	k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f // indirect
+	k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 // indirect
+	sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 // indirect
+	sigs.k8s.io/structured-merge-diff/v4 v4.4.2 // indirect
 	sigs.k8s.io/yaml v1.4.0 // indirect
 )
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index e7c35d2ce..e4a693a87 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -9,12 +9,12 @@ github.com/fxamacker/cbor/v2 v2.7.0 h1:iM5WgngdRBanHcxugY4JySA0nk1wZorNOpTgCMedv
 github.com/fxamacker/cbor/v2 v2.7.0/go.mod h1:pxXPTn3joSm21Gbwsv0w9OSA2y1HFR9qXEeXQVeNoDQ=
 github.com/go-logr/logr v1.4.2 h1:6pFjapn8bFcIbiKo3XT4j/BhANplGihG6tvd+8rYgrY=
 github.com/go-logr/logr v1.4.2/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
-github.com/go-openapi/jsonpointer v0.20.2 h1:mQc3nmndL8ZBzStEo3JYF8wzmeWffDH4VbXz58sAx6Q=
-github.com/go-openapi/jsonpointer v0.20.2/go.mod h1:bHen+N0u1KEO3YlmqOjTT9Adn1RfD91Ar825/PuiRVs=
+github.com/go-openapi/jsonpointer v0.21.0 h1:YgdVicSA9vH5RiHs9TZW5oyafXZFc6+2Vc1rr/O9oNQ=
+github.com/go-openapi/jsonpointer v0.21.0/go.mod h1:IUyH9l/+uyhIYQ/PXVA41Rexl+kOkAPDdXEYns6fzUY=
 github.com/go-openapi/jsonreference v0.20.4 h1:bKlDxQxQJgwpUSgOENiMPzCTBVuc7vTdXSSgNeAhojU=
 github.com/go-openapi/jsonreference v0.20.4/go.mod h1:5pZJyJP2MnYCpoeoMAql78cCHauHj0V9Lhc506VOpw4=
-github.com/go-openapi/swag v0.22.9 h1:XX2DssF+mQKM2DHsbgZK74y/zj4mo9I99+89xUmuZCE=
-github.com/go-openapi/swag v0.22.9/go.mod h1:3/OXnFfnMAwBD099SwYRk7GD3xOrr1iL7d/XNLXVVwE=
+github.com/go-openapi/swag v0.23.0 h1:vsEVJDUo2hPJ2tu0/Xc+4noaxyEffXNIs3cOULZ+GrE=
+github.com/go-openapi/swag v0.23.0/go.mod h1:esZ8ITTYEsH1V2trKHjAN8Ai7xHb8RV+YSZ577vPjgQ=
 github.com/go-task/slim-sprig/v3 v3.0.0 h1:sUs3vkvUymDpBKi3qH1YSqBQk9+9D/8M2mN1vB6EwHI=
 github.com/go-task/slim-sprig/v3 v3.0.0/go.mod h1:W848ghGpv3Qj3dhTPRyJypKRiqCdHZiAzKg9hl15HA8=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
@@ -33,8 +33,6 @@ github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db h1:097atOisP2aRj7vFgY
 github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4=
-github.com/imdario/mergo v0.3.16/go.mod h1:WBLT9ZmE3lPoWsEzCh9LPo3TiwVN+ZKEjmz+hD27ysY=
 github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
 github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
@@ -60,8 +58,8 @@ github.com/onrik/logrus v0.11.0 h1:pu+BCaWL36t0yQaj/2UHK2erf88dwssAKOT51mxPUVs=
 github.com/onrik/logrus v0.11.0/go.mod h1:fO2vlZwIdti6PidD3gV5YKt9Lq5ptpnP293RAe1ITwk=
 github.com/onsi/ginkgo/v2 v2.22.0 h1:Yed107/8DjTr0lKCNt7Dn8yQ6ybuDRQoMGrNFKzMfHg=
 github.com/onsi/ginkgo/v2 v2.22.0/go.mod h1:7Du3c42kxCUegi0IImZ1wUQzMBVecgIHjR1C+NkhLQo=
-github.com/onsi/gomega v1.34.2 h1:pNCwDkzrsv7MS9kpaQvVb1aVLahQXyJ/Tv5oAZMI3i8=
-github.com/onsi/gomega v1.34.2/go.mod h1:v1xfxRgk0KIsG+QOdm7p8UosrOzPYRo60fd3B/1Dukc=
+github.com/onsi/gomega v1.35.1 h1:Cwbd75ZBPxFSuZ6T+rN/WCb/gOc6YgFBXLlZLhC7Ds4=
+github.com/onsi/gomega v1.35.1/go.mod h1:PvZbdDc8J6XJEpDK4HCuRBm8a6Fzp9/DmhC9C7yFlog=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
@@ -102,8 +100,8 @@ golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.30.0 h1:AcW1SDZMkb8IpzCdQUaIq2sP4sZ4zw+55h6ynffypl4=
 golang.org/x/net v0.30.0/go.mod h1:2wGyMJ5iFasEhkwi13ChkO/t1ECNC4X4eBKkVFyYFlU=
-golang.org/x/oauth2 v0.21.0 h1:tsimM75w1tF/uws5rbeHzIWxEqElMehnc+iW793zsZs=
-golang.org/x/oauth2 v0.21.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
+golang.org/x/oauth2 v0.23.0 h1:PbgcYx2W7i4LvjJWEbf0ngHV6qJYr86PkAV3bXdLEbs=
+golang.org/x/oauth2 v0.23.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -119,8 +117,8 @@ golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.19.0 h1:kTxAhCbGbxhK0IwgSKiMO5awPoDQ0RpfiVYBfK860YM=
 golang.org/x/text v0.19.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
-golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
-golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
+golang.org/x/time v0.7.0 h1:ntUhktv3OPE6TgYxXWv9vKvUSJyIFJlyohwbkEwPrKQ=
+golang.org/x/time v0.7.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
@@ -131,8 +129,8 @@ golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8T
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-google.golang.org/protobuf v1.34.2 h1:6xV6lTsCfpGD21XK49h7MhtcApnLqkfYgPcdHftf6hg=
-google.golang.org/protobuf v1.34.2/go.mod h1:qYOHts0dSfpeUzUFpOMr/WGzszTmLH+DiWniOlNbLDw=
+google.golang.org/protobuf v1.35.1 h1:m3LfL6/Ca+fqnjnlqQXNpFPABW1UD7mjh8KO2mKFytA=
+google.golang.org/protobuf v1.35.1/go.mod h1:9fA7Ob0pmnwhb644+1+CVWFRbNajQ6iRojtC/QF5bRE=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
@@ -140,29 +138,26 @@ gopkg.in/evanphx/json-patch.v4 v4.12.0 h1:n6jtcsulIzXPJaxegRbvFNNrZDjbij7ny3gmSP
 gopkg.in/evanphx/json-patch.v4 v4.12.0/go.mod h1:p8EYWUEYMpynmqDbY58zCKCFZw8pRWMG4EsWvDvM72M=
 gopkg.in/inf.v0 v0.9.1 h1:73M5CoZyi3ZLMOyDlQh031Cx6N9NDJ2Vvfl76EDAgDc=
 gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
-gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
-gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.31.3 h1:umzm5o8lFbdN/hIXbrK9oRpOproJO62CV1zqxXrLgk8=
-k8s.io/api v0.31.3/go.mod h1:UJrkIp9pnMOI9K2nlL6vwpxRzzEX5sWgn8kGQe92kCE=
-k8s.io/apimachinery v0.31.3 h1:6l0WhcYgasZ/wk9ktLq5vLaoXJJr5ts6lkaQzgeYPq4=
-k8s.io/apimachinery v0.31.3/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
-k8s.io/client-go v0.31.3 h1:CAlZuM+PH2cm+86LOBemaJI/lQ5linJ6UFxKX/SoG+4=
-k8s.io/client-go v0.31.3/go.mod h1:2CgjPUTpv3fE5dNygAr2NcM8nhHzXvxB8KL5gYc3kJs=
+k8s.io/api v0.32.0 h1:OL9JpbvAU5ny9ga2fb24X8H6xQlVp+aJMFlgtQjR9CE=
+k8s.io/api v0.32.0/go.mod h1:4LEwHZEf6Q/cG96F3dqR965sYOfmPM7rq81BLgsE0p0=
+k8s.io/apimachinery v0.32.0 h1:cFSE7N3rmEEtv4ei5X6DaJPHHX0C+upp+v5lVPiEwpg=
+k8s.io/apimachinery v0.32.0/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
+k8s.io/client-go v0.32.0 h1:DimtMcnN/JIKZcrSrstiwvvZvLjG0aSxy8PxN8IChp8=
+k8s.io/client-go v0.32.0/go.mod h1:boDWvdM1Drk4NJj/VddSLnx59X3OPgwrOo0vGbtq9+8=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
 k8s.io/klog/v2 v2.130.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
-k8s.io/kube-aggregator v0.31.3 h1:DqHPdTglJHgOfB884AaroyxrML/aL82ASYOh65m7MSk=
-k8s.io/kube-aggregator v0.31.3/go.mod h1:Kx59Xjnf0SnY47qf9Or++4y3XCHQ3kR0xk1Di6KFiFU=
-k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 h1:BZqlfIlq5YbRMFko6/PM7FjZpUb45WallggurYhKGag=
-k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340/go.mod h1:yD4MZYeKMBwQKVht279WycxKyM84kkAx2DPrTXaeb98=
-k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 h1:pUdcCO1Lk/tbT5ztQWOBi5HBgbBP1J8+AsQnQCKsi8A=
-k8s.io/utils v0.0.0-20240711033017-18e509b52bc8/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
-sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
-sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
-sigs.k8s.io/structured-merge-diff/v4 v4.4.1 h1:150L+0vs/8DA78h1u02ooW1/fFq/Lwr+sGiqlzvrtq4=
-sigs.k8s.io/structured-merge-diff/v4 v4.4.1/go.mod h1:N8hJocpFajUSSeSJ9bOZ77VzejKZaXsTtZo4/u7Io08=
+k8s.io/kube-aggregator v0.32.0 h1:5ZyMW3QwAbmkasQrROcpa5we3et938DQuyUYHeXSPao=
+k8s.io/kube-aggregator v0.32.0/go.mod h1:6OKivf6Ypx44qu2v1ZUMrxH8kRp/8LKFKeJU72J18lU=
+k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f h1:GA7//TjRY9yWGy1poLzYYJJ4JRdzg3+O6e8I+e+8T5Y=
+k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f/go.mod h1:R/HEjbvWI0qdfb8viZUeVZm0X6IZnxAydC7YU42CMw4=
+k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 h1:M3sRQVHv7vB20Xc2ybTt7ODCeFj6JSWYFzOFnYeS6Ro=
+k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
+sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 h1:/Rv+M11QRah1itp8VhT6HoVx1Ray9eB4DBr+K+/sCJ8=
+sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3/go.mod h1:18nIHnGi6636UCz6m8i4DhaJ65T6EruyzmoQqI2BVDo=
+sigs.k8s.io/structured-merge-diff/v4 v4.4.2 h1:MdmvkGuXi/8io6ixD5wud3vOLwc1rj0aNqRlpuvjmwA=
+sigs.k8s.io/structured-merge-diff/v4 v4.4.2/go.mod h1:N8f93tFZh9U6vpxwRArLiikrE5/2tiu1w1AGfACIGE4=
 sigs.k8s.io/yaml v1.4.0 h1:Mk1wCc2gy/F0THH0TAp1QYyJNzRm2KCLy3o5ASXVI5E=
 sigs.k8s.io/yaml v1.4.0/go.mod h1:Ejl7/uTz7PSA4eKMyQCUTnhZYNmLIl+5c2lQPGR2BPY=

From 031bb8f14b7ef52fb17e2da95683387e88b8302d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 16 Dec 2024 12:58:51 +0100
Subject: [PATCH 1558/1641] Bump the actions group with 3 updates (#12489)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 8 ++++----
 .github/workflows/golangci-lint.yml        | 2 +-
 .github/workflows/images.yaml              | 4 ++--
 .github/workflows/plugin.yaml              | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 6 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 6d0532105..11e0fd227 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -102,7 +102,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
+        uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
@@ -124,7 +124,7 @@ jobs:
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
       - name: Set up Go
         id: go
-        uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
+        uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
@@ -153,7 +153,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
+        uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
         with:
           go-version: ${{ steps.golangversion.outputs.version }}
           check-latest: true
@@ -163,7 +163,7 @@ jobs:
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3.7.1
+        uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 # v3.8.0
         with:
           version: latest
 
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 41ab999d8..942ef9a6d 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -22,7 +22,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
+        uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index cc7a7961b..9a25a2d9a 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -145,7 +145,7 @@ jobs:
 
     - name: Set up Go
       id: go
-      uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
+      uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
       with:
         go-version: ${{ env.GOLANG_VERSION }}
         check-latest: true
@@ -177,7 +177,7 @@ jobs:
         uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf # v3.2.0
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3.7.1
+        uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 # v3.8.0
         with:
           version: latest
           platforms: ${{ env.PLATFORMS }}
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 9c803e163..a9c5c9248 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -20,7 +20,7 @@ jobs:
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
 
       - name: Set up Go
-        uses: actions/setup-go@41dfa10bad2bb2ae585af6ee5bb4d7d973ad74ed # v5.1.0
+        uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 503216910..a22859557 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@aa578102511db1f4524ed59b8cc2bae4f6e88195 # v3.27.6
+        uses: github/codeql-action/upload-sarif@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index e612ba502..ce5feb7cf 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@aa578102511db1f4524ed59b8cc2bae4f6e88195 # v3.27.6
+        uses: github/codeql-action/upload-sarif@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 35e0ca6dc912f55085fc854eef37026eedfb8792 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 16 Dec 2024 13:10:52 +0100
Subject: [PATCH 1559/1641] Bump github.com/opencontainers/runc from 1.2.2 to
 1.2.3 in the go group across 1 directory (#12490)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 63b9bea1a..f9b4d068e 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.4
 	github.com/onsi/ginkgo/v2 v2.22.0
-	github.com/opencontainers/runc v1.2.2
+	github.com/opencontainers/runc v1.2.3
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.5
 	github.com/prometheus/client_model v0.6.1
@@ -63,7 +63,7 @@ require (
 	github.com/blang/semver/v4 v4.0.0 // indirect
 	github.com/cespare/xxhash/v2 v2.3.0 // indirect
 	github.com/coreos/go-systemd/v22 v22.5.0 // indirect
-	github.com/cyphar/filepath-securejoin v0.3.4 // indirect
+	github.com/cyphar/filepath-securejoin v0.3.5 // indirect
 	github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc // indirect
 	github.com/eapache/queue v1.1.0 // indirect
 	github.com/emicklei/go-restful/v3 v3.12.0 // indirect
diff --git a/go.sum b/go.sum
index 8ae986aa7..b26fa45db 100644
--- a/go.sum
+++ b/go.sum
@@ -21,8 +21,8 @@ github.com/coreos/go-systemd/v22 v22.5.0/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSV
 github.com/cpuguy83/go-md2man/v2 v2.0.4/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.18 h1:n56/Zwd5o6whRC5PMGretI4IdRLlmBXYNjScPaBgsbY=
 github.com/creack/pty v1.1.18/go.mod h1:MOBLtS5ELjhRRrroQr9kyvTxUAFNvYEK993ew/Vr4O4=
-github.com/cyphar/filepath-securejoin v0.3.4 h1:VBWugsJh2ZxJmLFSM06/0qzQyiQX2Qs0ViKrUAcqdZ8=
-github.com/cyphar/filepath-securejoin v0.3.4/go.mod h1:8s/MCNJREmFK0H02MF6Ihv1nakJe4L/w3WZLHNkvlYM=
+github.com/cyphar/filepath-securejoin v0.3.5 h1:L81NHjquoQmcPgXcttUS9qTSR/+bXry6pbSINQGpjj4=
+github.com/cyphar/filepath-securejoin v0.3.5/go.mod h1:edhVd3c6OXKjUmSrVa/tGJRS9joFTxlslFCAyaxigkE=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc h1:U9qPSI2PIWSS1VwoXQT9A3Wy9MM3WgvqSxFWenqJduM=
@@ -171,8 +171,8 @@ github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7J
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.34.2 h1:pNCwDkzrsv7MS9kpaQvVb1aVLahQXyJ/Tv5oAZMI3i8=
 github.com/onsi/gomega v1.34.2/go.mod h1:v1xfxRgk0KIsG+QOdm7p8UosrOzPYRo60fd3B/1Dukc=
-github.com/opencontainers/runc v1.2.2 h1:jTg3Vw2A5f0N9PoxFTEwUhvpANGaNPT3689Yfd/zaX0=
-github.com/opencontainers/runc v1.2.2/go.mod h1:/PXzF0h531HTMsYQnmxXkBD7YaGShm/2zcRB79dksUc=
+github.com/opencontainers/runc v1.2.3 h1:fxE7amCzfZflJO2lHXf4y/y8M1BoAqp+FVmG19oYB80=
+github.com/opencontainers/runc v1.2.3/go.mod h1:nSxcWUydXrsBZVYNSkTjoQ/N6rcyTtn+1SD5D4+kRIM=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
 github.com/opencontainers/runtime-spec v1.2.0/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=

From beae4c8cab2d9dae48866d630aa026e0cba5470b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 16 Dec 2024 20:18:53 +0100
Subject: [PATCH 1560/1641] Bump k8s.io/client-go from 0.31.3 to 0.32.0
 (#12498)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 20 +++++++++-----------
 go.sum | 45 ++++++++++++++++++++-------------------------
 2 files changed, 29 insertions(+), 36 deletions(-)

diff --git a/go.mod b/go.mod
index f9b4d068e..0ae6b1609 100644
--- a/go.mod
+++ b/go.mod
@@ -31,12 +31,12 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.31.3
+	k8s.io/api v0.32.0
 	k8s.io/apiextensions-apiserver v0.31.3
-	k8s.io/apimachinery v0.31.3
+	k8s.io/apimachinery v0.32.0
 	k8s.io/apiserver v0.31.3
 	k8s.io/cli-runtime v0.31.3
-	k8s.io/client-go v0.31.3
+	k8s.io/client-go v0.32.0
 	k8s.io/code-generator v0.31.3
 	k8s.io/component-base v0.31.3
 	k8s.io/klog/v2 v2.130.1
@@ -77,7 +77,6 @@ require (
 	github.com/go-task/slim-sprig/v3 v3.0.0 // indirect
 	github.com/godbus/dbus/v5 v5.1.0 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
-	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
 	github.com/golang/protobuf v1.5.4 // indirect
 	github.com/gomarkdown/markdown v0.0.0-20240328165702-4d01890c35c0 // indirect
 	github.com/google/btree v1.1.2 // indirect
@@ -88,7 +87,6 @@ require (
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.6.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect
-	github.com/imdario/mergo v0.3.16 // indirect
 	github.com/inconshreveable/mousetrap v1.1.0 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
@@ -122,7 +120,7 @@ require (
 	golang.org/x/sys v0.28.0 // indirect
 	golang.org/x/term v0.27.0 // indirect
 	golang.org/x/text v0.21.0 // indirect
-	golang.org/x/time v0.5.0 // indirect
+	golang.org/x/time v0.7.0 // indirect
 	golang.org/x/tools v0.26.0 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1 // indirect
 	google.golang.org/protobuf v1.35.2 // indirect
@@ -130,12 +128,12 @@ require (
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
-	k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 // indirect
-	k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f // indirect
-	k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 // indirect
-	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
+	k8s.io/gengo/v2 v2.0.0-20240826214909-a7b603a56eb7 // indirect
+	k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f // indirect
+	k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 // indirect
+	sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 // indirect
 	sigs.k8s.io/kustomize/api v0.17.2 // indirect
 	sigs.k8s.io/kustomize/kyaml v0.17.1 // indirect
-	sigs.k8s.io/structured-merge-diff/v4 v4.4.1 // indirect
+	sigs.k8s.io/structured-merge-diff/v4 v4.4.2 // indirect
 	sigs.k8s.io/yaml v1.4.0 // indirect
 )
diff --git a/go.sum b/go.sum
index b26fa45db..8b31f8a87 100644
--- a/go.sum
+++ b/go.sum
@@ -64,8 +64,6 @@ github.com/godbus/dbus/v5 v5.1.0 h1:4KLkAxT3aOY8Li4FRJe/KvhoNFFxo0m6fNuFUO8QJUk=
 github.com/godbus/dbus/v5 v5.1.0/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
-github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da h1:oI5xCqsCo564l8iNU+DwB5epxmsaqB+rhGL0m5jtYqE=
-github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.4.0-rc.1/go.mod h1:ceaxUfeHdC40wWswd/P6IGgMaK3YpKi5j83Wpe3EHw8=
 github.com/golang/protobuf v1.4.0-rc.1.0.20200221234624-67d41d38c208/go.mod h1:xKAWHe0F5eneWXFV3EuXVDTCmh+JuBKY0li0aMyXATA=
@@ -99,8 +97,6 @@ github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+
 github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 h1:+ngKgrYPPJrOjhax5N+uePQ0Fh1Z7PheYoUI/0nzkPA=
 github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
-github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4=
-github.com/imdario/mergo v0.3.16/go.mod h1:WBLT9ZmE3lPoWsEzCh9LPo3TiwVN+ZKEjmz+hD27ysY=
 github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
 github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/josharian/intern v1.0.0 h1:vlS4z54oSdjm0bgjRigI+G1HpF+tI+9rE5LLzOg8HmY=
@@ -169,8 +165,8 @@ github.com/onsi/ginkgo/v2 v2.22.0 h1:Yed107/8DjTr0lKCNt7Dn8yQ6ybuDRQoMGrNFKzMfHg
 github.com/onsi/ginkgo/v2 v2.22.0/go.mod h1:7Du3c42kxCUegi0IImZ1wUQzMBVecgIHjR1C+NkhLQo=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.34.2 h1:pNCwDkzrsv7MS9kpaQvVb1aVLahQXyJ/Tv5oAZMI3i8=
-github.com/onsi/gomega v1.34.2/go.mod h1:v1xfxRgk0KIsG+QOdm7p8UosrOzPYRo60fd3B/1Dukc=
+github.com/onsi/gomega v1.35.1 h1:Cwbd75ZBPxFSuZ6T+rN/WCb/gOc6YgFBXLlZLhC7Ds4=
+github.com/onsi/gomega v1.35.1/go.mod h1:PvZbdDc8J6XJEpDK4HCuRBm8a6Fzp9/DmhC9C7yFlog=
 github.com/opencontainers/runc v1.2.3 h1:fxE7amCzfZflJO2lHXf4y/y8M1BoAqp+FVmG19oYB80=
 github.com/opencontainers/runc v1.2.3/go.mod h1:nSxcWUydXrsBZVYNSkTjoQ/N6rcyTtn+1SD5D4+kRIM=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
@@ -283,8 +279,8 @@ golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.21.0 h1:zyQAAkrwaneQ066sspRyJaG9VNi/YJ1NfzcGB3hZ/qo=
 golang.org/x/text v0.21.0/go.mod h1:4IBbMaMmOPCJ8SecivzSH54+73PCFmPWxNTLm+vZkEQ=
-golang.org/x/time v0.5.0 h1:o7cqy6amK/52YcAKIPlM3a+Fpj35zvRj2TP+e1xFSfk=
-golang.org/x/time v0.5.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
+golang.org/x/time v0.7.0 h1:ntUhktv3OPE6TgYxXWv9vKvUSJyIFJlyohwbkEwPrKQ=
+golang.org/x/time v0.7.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
@@ -331,43 +327,42 @@ gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkep
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
 gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.3.0/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
 gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.31.3 h1:umzm5o8lFbdN/hIXbrK9oRpOproJO62CV1zqxXrLgk8=
-k8s.io/api v0.31.3/go.mod h1:UJrkIp9pnMOI9K2nlL6vwpxRzzEX5sWgn8kGQe92kCE=
+k8s.io/api v0.32.0 h1:OL9JpbvAU5ny9ga2fb24X8H6xQlVp+aJMFlgtQjR9CE=
+k8s.io/api v0.32.0/go.mod h1:4LEwHZEf6Q/cG96F3dqR965sYOfmPM7rq81BLgsE0p0=
 k8s.io/apiextensions-apiserver v0.31.3 h1:+GFGj2qFiU7rGCsA5o+p/rul1OQIq6oYpQw4+u+nciE=
 k8s.io/apiextensions-apiserver v0.31.3/go.mod h1:2DSpFhUZZJmn/cr/RweH1cEVVbzFw9YBu4T+U3mf1e4=
-k8s.io/apimachinery v0.31.3 h1:6l0WhcYgasZ/wk9ktLq5vLaoXJJr5ts6lkaQzgeYPq4=
-k8s.io/apimachinery v0.31.3/go.mod h1:rsPdaZJfTfLsNJSQzNHQvYoTmxhoOEofxtOsF3rtsMo=
+k8s.io/apimachinery v0.32.0 h1:cFSE7N3rmEEtv4ei5X6DaJPHHX0C+upp+v5lVPiEwpg=
+k8s.io/apimachinery v0.32.0/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
 k8s.io/apiserver v0.31.3 h1:+1oHTtCB+OheqFEz375D0IlzHZ5VeQKX1KGXnx+TTuY=
 k8s.io/apiserver v0.31.3/go.mod h1:PrxVbebxrxQPFhJk4powDISIROkNMKHibTg9lTRQ0Qg=
 k8s.io/cli-runtime v0.31.3 h1:fEQD9Xokir78y7pVK/fCJN090/iYNrLHpFbGU4ul9TI=
 k8s.io/cli-runtime v0.31.3/go.mod h1:Q2jkyTpl+f6AtodQvgDI8io3jrfr+Z0LyQBPJJ2Btq8=
-k8s.io/client-go v0.31.3 h1:CAlZuM+PH2cm+86LOBemaJI/lQ5linJ6UFxKX/SoG+4=
-k8s.io/client-go v0.31.3/go.mod h1:2CgjPUTpv3fE5dNygAr2NcM8nhHzXvxB8KL5gYc3kJs=
+k8s.io/client-go v0.32.0 h1:DimtMcnN/JIKZcrSrstiwvvZvLjG0aSxy8PxN8IChp8=
+k8s.io/client-go v0.32.0/go.mod h1:boDWvdM1Drk4NJj/VddSLnx59X3OPgwrOo0vGbtq9+8=
 k8s.io/code-generator v0.31.3 h1:Pj0fYOBms+ZrsulLi4DMsCEx1jG8fWKRLy44onHsLBI=
 k8s.io/code-generator v0.31.3/go.mod h1:/umCIlT84g1+Yu5ZXtP1KGSRTnGiIzzX5AzUAxsNlts=
 k8s.io/component-base v0.31.3 h1:DMCXXVx546Rfvhj+3cOm2EUxhS+EyztH423j+8sOwhQ=
 k8s.io/component-base v0.31.3/go.mod h1:xME6BHfUOafRgT0rGVBGl7TuSg8Z9/deT7qq6w7qjIU=
-k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313 h1:bKcdZJOPICVmIIuaM9+MXmapE94dn5AYv5ODs1jA43o=
-k8s.io/gengo/v2 v2.0.0-20240404160639-a0386bf69313/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
+k8s.io/gengo/v2 v2.0.0-20240826214909-a7b603a56eb7 h1:cErOOTkQ3JW19o4lo91fFurouhP8NcoBvb7CkvhZZpk=
+k8s.io/gengo/v2 v2.0.0-20240826214909-a7b603a56eb7/go.mod h1:EJykeLsmFC60UQbYJezXkEsG2FLrt0GPNkU5iK5GWxU=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
 k8s.io/klog/v2 v2.130.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
-k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f h1:0LQagt0gDpKqvIkAMPaRGcXawNMouPECM1+F9BVxEaM=
-k8s.io/kube-openapi v0.0.0-20240430033511-f0e62f92d13f/go.mod h1:S9tOR0FxgyusSNR+MboCuiDpVWkAifZvaYI1Q2ubgro=
-k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 h1:pUdcCO1Lk/tbT5ztQWOBi5HBgbBP1J8+AsQnQCKsi8A=
-k8s.io/utils v0.0.0-20240711033017-18e509b52bc8/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
+k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f h1:GA7//TjRY9yWGy1poLzYYJJ4JRdzg3+O6e8I+e+8T5Y=
+k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f/go.mod h1:R/HEjbvWI0qdfb8viZUeVZm0X6IZnxAydC7YU42CMw4=
+k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 h1:M3sRQVHv7vB20Xc2ybTt7ODCeFj6JSWYFzOFnYeS6Ro=
+k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
 sigs.k8s.io/controller-runtime v0.19.3 h1:XO2GvC9OPftRst6xWCpTgBZO04S2cbp0Qqkj8bX1sPw=
 sigs.k8s.io/controller-runtime v0.19.3/go.mod h1:j4j87DqtsThvwTv5/Tc5NFRyyF/RF0ip4+62tbTSIUM=
-sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=
-sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd/go.mod h1:B8JuhiUyNFVKdsE8h686QcCxMaH6HrOAZj4vswFpcB0=
+sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 h1:/Rv+M11QRah1itp8VhT6HoVx1Ray9eB4DBr+K+/sCJ8=
+sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3/go.mod h1:18nIHnGi6636UCz6m8i4DhaJ65T6EruyzmoQqI2BVDo=
 sigs.k8s.io/kustomize/api v0.17.2 h1:E7/Fjk7V5fboiuijoZHgs4aHuexi5Y2loXlVOAVAG5g=
 sigs.k8s.io/kustomize/api v0.17.2/go.mod h1:UWTz9Ct+MvoeQsHcJ5e+vziRRkwimm3HytpZgIYqye0=
 sigs.k8s.io/kustomize/kyaml v0.17.1 h1:TnxYQxFXzbmNG6gOINgGWQt09GghzgTP6mIurOgrLCQ=
@@ -376,7 +371,7 @@ sigs.k8s.io/mdtoc v1.4.0 h1:2pDEwJSjoVrGr5BPkG+LoLkYLKvgtGYurrBY8ul3SxQ=
 sigs.k8s.io/mdtoc v1.4.0/go.mod h1:KVnRRtK1rX9aQ95qF0rt3x2ytTxf3r7W7N41H+0KF0k=
 sigs.k8s.io/release-utils v0.8.3 h1:KtOtA4qDmzJyeQ2zkDsFVI25+NViwms/o5eL2NftFdA=
 sigs.k8s.io/release-utils v0.8.3/go.mod h1:fp82Fma06OXBhEJ+GUJKqvcplDBomruK1R/1fWJnsrQ=
-sigs.k8s.io/structured-merge-diff/v4 v4.4.1 h1:150L+0vs/8DA78h1u02ooW1/fFq/Lwr+sGiqlzvrtq4=
-sigs.k8s.io/structured-merge-diff/v4 v4.4.1/go.mod h1:N8hJocpFajUSSeSJ9bOZ77VzejKZaXsTtZo4/u7Io08=
+sigs.k8s.io/structured-merge-diff/v4 v4.4.2 h1:MdmvkGuXi/8io6ixD5wud3vOLwc1rj0aNqRlpuvjmwA=
+sigs.k8s.io/structured-merge-diff/v4 v4.4.2/go.mod h1:N8f93tFZh9U6vpxwRArLiikrE5/2tiu1w1AGfACIGE4=
 sigs.k8s.io/yaml v1.4.0 h1:Mk1wCc2gy/F0THH0TAp1QYyJNzRm2KCLy3o5ASXVI5E=
 sigs.k8s.io/yaml v1.4.0/go.mod h1:Ejl7/uTz7PSA4eKMyQCUTnhZYNmLIl+5c2lQPGR2BPY=

From 57b4a14af5a269627ba41c30c1bc6b68657da2f9 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 16 Dec 2024 20:37:26 +0100
Subject: [PATCH 1561/1641] rikatz is stepping down (#12515)

---
 .github/ISSUE_TEMPLATE/cve_report.md | 1 -
 charts/ingress-nginx/Chart.yaml      | 1 -
 2 files changed, 2 deletions(-)

diff --git a/.github/ISSUE_TEMPLATE/cve_report.md b/.github/ISSUE_TEMPLATE/cve_report.md
index 79781fa66..d6e598c88 100644
--- a/.github/ISSUE_TEMPLATE/cve_report.md
+++ b/.github/ISSUE_TEMPLATE/cve_report.md
@@ -5,7 +5,6 @@ title: ''
 labels: kind/bug
 assignees:
     - Gacko
-    - rikatz
     - strongjz
 ---
 
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index d8a15f6e5..7f4b4d1e4 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -16,7 +16,6 @@ maintainers:
 - name: cpanato
 - name: Gacko
 - name: puerco
-- name: rikatz
 - name: strongjz
 - name: tao12345666333
 name: ingress-nginx

From 94e39e32cfe48c2da2ec259a138bb349ca73399c Mon Sep 17 00:00:00 2001
From: Motte <37443982+dmotte@users.noreply.github.com>
Date: Fri, 20 Dec 2024 13:40:08 +0100
Subject: [PATCH 1562/1641] Docs: Add guide on how to set a Maintenance Page.
 (#12524)

---
 .../customization/custom-errors/README.md     | 28 ++++++++++++++-----
 1 file changed, 21 insertions(+), 7 deletions(-)

diff --git a/docs/examples/customization/custom-errors/README.md b/docs/examples/customization/custom-errors/README.md
index a7c9545b0..2d6e124bb 100644
--- a/docs/examples/customization/custom-errors/README.md
+++ b/docs/examples/customization/custom-errors/README.md
@@ -2,11 +2,12 @@
 
 This example demonstrates how to use a custom backend to render custom error pages.
 
-If you are using Helm Chart, look at [example values](https://github.com/kubernetes/ingress-nginx/blob/main/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml) and don't forget to add [configMap](https://github.com/kubernetes/ingress-nginx/blob/main/docs/examples/customization/custom-errors/custom-default-backend-error_pages.configMap.yaml) to your deployment, otherwise continue with [Customized default backend](#customized-default-backend) manual deployment.
+If you are using the Helm Chart, look at [example values](https://github.com/kubernetes/ingress-nginx/blob/main/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml) and don't forget to add the [ConfigMap](https://github.com/kubernetes/ingress-nginx/blob/main/docs/examples/customization/custom-errors/custom-default-backend-error_pages.configMap.yaml) to your deployment. Otherwise, continue with [Customized default backend](#customized-default-backend) manual deployment.
 
 ## Customized default backend
 
-First, create the custom `default-backend`. It will be used by the Ingress controller later on.  
+First, create the custom `default-backend`. It will be used by the Ingress controller later on.
+
 To do that, you can take a look at the [example manifest](https://github.com/kubernetes/ingress-nginx/blob/main/docs/examples/customization/custom-errors/custom-default-backend.yaml)
 in this project's GitHub repository.
 
@@ -38,11 +39,11 @@ If you do not already have an instance of the Ingress-Nginx Controller running,
 2. Edit the `ingress-nginx-controller` ConfigMap and create the key `custom-http-errors` with a value of `404,503`.
 
 3. Take note of the IP address assigned to the Ingress-Nginx Controller Service.
-    ```
-    $ kubectl get svc ingress-nginx
-    NAME            TYPE        CLUSTER-IP  EXTERNAL-IP   PORT(S)          AGE
-    ingress-nginx   ClusterIP   10.0.0.13   <none>        80/TCP,443/TCP   10m
-    ```
+   ```
+   $ kubectl get svc ingress-nginx
+   NAME            TYPE        CLUSTER-IP  EXTERNAL-IP   PORT(S)          AGE
+   ingress-nginx   ClusterIP   10.0.0.13   <none>        80/TCP,443/TCP   10m
+   ```
 
 !!! note
     The `ingress-nginx` Service is of type `ClusterIP` in this example. This may vary depending on your environment.
@@ -85,3 +86,16 @@ Vary: Accept-Encoding
 
 To go further with this example, feel free to deploy your own applications and Ingress objects, and validate that the
 responses are still in the correct format when a backend returns 503 (eg. if you scale a Deployment down to 0 replica).
+
+## Maintenance page
+
+You can also leverage custom error pages to set a **"_Service under maintenance_" page** for the whole cluster, useful to prevent users from accessing your services while you are performing planned scheduled maintenance.
+
+When enabled, the maintenance page is served to the clients with an HTTP [**503 Service Unavailable**](https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/503) response **status code**.
+
+To do that:
+
+- Enable a **custom error page for the 503 HTTP error**, by following the guide above
+- Set the value of the `--watch-namespace-selector` flag to the name of some non-existent namespace, e.g. `nonexistent-namespace`
+  - This effectively prevents the NGINX Ingress Controller from reading `Ingress` resources from any namespace in the Kubernetes cluster
+- Set your `location-snippet` to `return 503;`, to make the NGINX Ingress Controller always return the 503 HTTP error page for all the requests

From c160bfff69423a9b734e3e4514bd298adfadd540 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 20 Dec 2024 18:04:10 +0100
Subject: [PATCH 1563/1641] Images: Bump Alpine to v3.21. (#12481)

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 Makefile                                        |  2 +-
 docs/examples/customization/sysctl/patch.json   |  2 +-
 images/cfssl/rootfs/Dockerfile                  |  2 +-
 images/custom-error-pages/rootfs/Dockerfile     |  2 +-
 .../ext-auth-example-authsvc/rootfs/Dockerfile  |  2 +-
 images/fastcgi-helloserver/rootfs/Dockerfile    |  2 +-
 images/go-grpc-greeter-server/rootfs/Dockerfile |  2 +-
 images/nginx/rootfs/Dockerfile                  |  6 +++---
 images/nginx/rootfs/build.sh                    | 17 ++++++++++++++++-
 images/test-runner/rootfs/Dockerfile            |  2 +-
 rootfs/Dockerfile                               |  2 +-
 rootfs/Dockerfile-chroot                        |  6 +++---
 rootfs/chroot.sh                                |  5 +++--
 test/e2e-image/Dockerfile                       |  2 +-
 14 files changed, 35 insertions(+), 19 deletions(-)

diff --git a/Makefile b/Makefile
index 1c35c12b2..3ff56fc47 100644
--- a/Makefile
+++ b/Makefile
@@ -110,7 +110,7 @@ clean-chroot-image: ## Removes local image
 
 .PHONY: build
 build:  ## Build ingress controller, debug tool and pre-stop hook.
-	E2E_IMAGE=golang:$(GO_VERSION)-alpine3.20 USE_SHELL=/bin/sh build/run-in-docker.sh \
+	E2E_IMAGE=golang:$(GO_VERSION)-alpine3.21 USE_SHELL=/bin/sh build/run-in-docker.sh \
 		MAC_OS=$(MAC_OS) \
 		PKG=$(PKG) \
 		ARCH=$(ARCH) \
diff --git a/docs/examples/customization/sysctl/patch.json b/docs/examples/customization/sysctl/patch.json
index fb4fc057f..69482c7be 100644
--- a/docs/examples/customization/sysctl/patch.json
+++ b/docs/examples/customization/sysctl/patch.json
@@ -4,7 +4,7 @@
 			"spec": {
 				"initContainers": [{
 					"name": "sysctl",
-					"image": "alpine:3.20",
+					"image": "alpine:3.21",
 					"securityContext": {
 						"privileged": true
 					},
diff --git a/images/cfssl/rootfs/Dockerfile b/images/cfssl/rootfs/Dockerfile
index 7f7003f10..3978c8f4b 100644
--- a/images/cfssl/rootfs/Dockerfile
+++ b/images/cfssl/rootfs/Dockerfile
@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 
-FROM alpine:3.20
+FROM alpine:3.21
 
 RUN echo "@testing https://dl-cdn.alpinelinux.org/alpine/edge/testing" >> /etc/apk/repositories
 RUN apk update \
diff --git a/images/custom-error-pages/rootfs/Dockerfile b/images/custom-error-pages/rootfs/Dockerfile
index 345f92ba3..478e4c22d 100755
--- a/images/custom-error-pages/rootfs/Dockerfile
+++ b/images/custom-error-pages/rootfs/Dockerfile
@@ -14,7 +14,7 @@
 
 ARG GOLANG_VERSION
 
-FROM golang:${GOLANG_VERSION}-alpine3.20 as builder
+FROM golang:${GOLANG_VERSION}-alpine3.21 as builder
 
 RUN apk update \
     && apk upgrade && apk add git
diff --git a/images/ext-auth-example-authsvc/rootfs/Dockerfile b/images/ext-auth-example-authsvc/rootfs/Dockerfile
index 5942ac5b9..ca142e663 100644
--- a/images/ext-auth-example-authsvc/rootfs/Dockerfile
+++ b/images/ext-auth-example-authsvc/rootfs/Dockerfile
@@ -1,6 +1,6 @@
 ARG GOLANG_VERSION
 
-FROM golang:${GOLANG_VERSION}-alpine3.20 as builder
+FROM golang:${GOLANG_VERSION}-alpine3.21 as builder
 RUN mkdir /authsvc
 WORKDIR /authsvc
 COPY . ./
diff --git a/images/fastcgi-helloserver/rootfs/Dockerfile b/images/fastcgi-helloserver/rootfs/Dockerfile
index 2b91887c9..7d8e95c47 100755
--- a/images/fastcgi-helloserver/rootfs/Dockerfile
+++ b/images/fastcgi-helloserver/rootfs/Dockerfile
@@ -13,7 +13,7 @@
 # limitations under the License.
 ARG GOLANG_VERSION
 
-FROM golang:${GOLANG_VERSION}-alpine3.20 as builder
+FROM golang:${GOLANG_VERSION}-alpine3.21 as builder
 
 WORKDIR /go/src/k8s.io/ingress-nginx/images/fastcgi
 
diff --git a/images/go-grpc-greeter-server/rootfs/Dockerfile b/images/go-grpc-greeter-server/rootfs/Dockerfile
index f07b1d667..39be2990f 100644
--- a/images/go-grpc-greeter-server/rootfs/Dockerfile
+++ b/images/go-grpc-greeter-server/rootfs/Dockerfile
@@ -1,6 +1,6 @@
 ARG GOLANG_VERSION
 
-FROM golang:${GOLANG_VERSION}-alpine3.20 as build
+FROM golang:${GOLANG_VERSION}-alpine3.21 as build
 
 WORKDIR /go/src/greeter-server
 
diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 1d2b6b623..078630170 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -11,7 +11,7 @@
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
-FROM alpine:3.20 as builder
+FROM alpine:3.21 as builder
 
 COPY . /
 
@@ -21,7 +21,7 @@ RUN apk update \
   && /build.sh
 
 # Use a multi-stage build
-FROM alpine:3.20
+FROM alpine:3.21
 
 ENV PATH=$PATH:/usr/local/luajit/bin:/usr/local/nginx/sbin:/usr/local/nginx/bin
 
@@ -66,7 +66,7 @@ RUN apk update \
   ); \
   for dir in "${writeDirs[@]}"; do \
   mkdir -p ${dir}; \
-  chown -R www-data.www-data ${dir}; \
+  chown -R www-data:www-data ${dir}; \
   done'
 
 EXPOSE 80 443
diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 3baf775fc..a3ec54c9c 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -414,6 +414,21 @@ Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-980-CORRELATION.conf
 Include /etc/nginx/owasp-modsecurity-crs/rules/RESPONSE-999-EXCLUSION-RULES-AFTER-CRS.conf
 " > /etc/nginx/owasp-modsecurity-crs/nginx-modsecurity.conf
 
+# NGINX compiles a small test program to check if an added module works as expected.
+#
+# ModSecurity-nginx provides 'printf("hello");' as a test, but newer versions of GCC,
+# as included in Alpine 3.21, do not allow implicit declaration of function 'printf':
+#
+#   objs/autotest.c:7:5: error: implicit declaration of function 'printf' [-Wimplicit-function-declaration]
+#
+# For this reason we replace 'printf("hello");' by 'msc_init();', which is always available.
+#
+# This fix is taken from a PR, that has been proposed to the ModSecurity-nginx project:
+#
+#   https://github.com/owasp-modsecurity/ModSecurity-nginx/pull/275
+#
+sed -i "s/ngx_feature_test='printf(\"hello\");'/ngx_feature_test='msc_init();'/" $BUILD_PATH/ModSecurity-nginx/config
+
 # build nginx
 cd "$BUILD_PATH/nginx-$NGINX_VERSION"
 
@@ -609,7 +624,7 @@ adduser -S -D -H -u 101 -h /usr/local/nginx -s /sbin/nologin -G www-data -g www-
 
 for dir in "${writeDirs[@]}"; do
   mkdir -p ${dir};
-  chown -R www-data.www-data ${dir};
+  chown -R www-data:www-data ${dir};
 done
 
 rm -rf /etc/nginx/owasp-modsecurity-crs/.git
diff --git a/images/test-runner/rootfs/Dockerfile b/images/test-runner/rootfs/Dockerfile
index 7bcc2f25c..d871461bf 100644
--- a/images/test-runner/rootfs/Dockerfile
+++ b/images/test-runner/rootfs/Dockerfile
@@ -15,7 +15,7 @@ ARG BASE_IMAGE
 ARG GOLANG_VERSION
 ARG ETCD_VERSION
 
-FROM golang:${GOLANG_VERSION}-alpine3.20 as GO
+FROM golang:${GOLANG_VERSION}-alpine3.21 as GO
 FROM registry.k8s.io/etcd:${ETCD_VERSION} as etcd
 
 FROM ${BASE_IMAGE}
diff --git a/rootfs/Dockerfile b/rootfs/Dockerfile
index a04cfe3de..9b7753b5d 100644
--- a/rootfs/Dockerfile
+++ b/rootfs/Dockerfile
@@ -59,7 +59,7 @@ RUN bash -xeu -c ' \
   ); \
   for dir in "${writeDirs[@]}"; do \
     mkdir -p ${dir}; \
-    chown -R www-data.www-data ${dir}; \
+    chown -R www-data:www-data ${dir}; \
   done' \
   # LD_LIBRARY_PATH does not work so below is needed for  opentelemetry/other modules
   # Put libs of newer modules under `/modules_mount/<other>/lib` and add that path below
diff --git a/rootfs/Dockerfile-chroot b/rootfs/Dockerfile-chroot
index b719f2fc3..481b311e2 100644
--- a/rootfs/Dockerfile-chroot
+++ b/rootfs/Dockerfile-chroot
@@ -23,7 +23,7 @@ RUN apk update \
   && apk upgrade \
   && /chroot.sh
 
-FROM alpine:3.20
+FROM alpine:3.21
 
 ARG TARGETARCH
 ARG VERSION
@@ -78,7 +78,7 @@ RUN bash -xeu -c ' \
   ); \
   for dir in "${writeDirs[@]}"; do \
     mkdir -p ${dir}; \
-    chown -R www-data.www-data ${dir}; \
+    chown -R www-data:www-data ${dir}; \
   done' \
   # LD_LIBRARY_PATH does not work so below is needed for  opentelemetry/other modules
   # Put libs of newer modules under `/modules_mount/<other>/lib` and add that path below
@@ -103,7 +103,7 @@ RUN  ln -sf /chroot/etc/nginx /etc/nginx \
   && touch /chroot/var/log/nginx/access.log \
   && chown www-data:www-data /chroot/var/log/nginx/access.log \
   && echo "" > /chroot/etc/resolv.conf \
-  && chown -R www-data.www-data /chroot/var/log/nginx /chroot/etc/resolv.conf \
+  && chown -R www-data:www-data /chroot/var/log/nginx /chroot/etc/resolv.conf \
   && mknod -m 0666 /chroot/dev/null c 1 3 \
   && mknod -m 0666 /chroot/dev/random c 1 8 \
   && mknod -m 0666 /chroot/dev/urandom c 1 9 \
diff --git a/rootfs/chroot.sh b/rootfs/chroot.sh
index 38547b69c..4875ae535 100755
--- a/rootfs/chroot.sh
+++ b/rootfs/chroot.sh
@@ -39,7 +39,7 @@ writeDirs=( \
 
 for dir in "${writeDirs[@]}"; do
   mkdir -p ${dir};
-  chown -R www-data.www-data ${dir};
+  chown -R www-data:www-data ${dir};
 done
 
 mkdir -p  /chroot/lib /chroot/proc /chroot/usr /chroot/bin /chroot/dev /chroot/run 
@@ -47,4 +47,5 @@ cp /etc/passwd /etc/group /etc/hosts /chroot/etc/
 cp -a /usr/* /chroot/usr/
 cp -a /etc/nginx/* /chroot/etc/nginx/
 cp -a /etc/ingress-controller/* /chroot/etc/ingress-controller/
-cp /lib/ld-musl-* /lib/libcrypto* /lib/libssl* /lib/libz* /chroot/lib/
+cp /lib/ld-musl-* /chroot/lib/
+cp /usr/lib/libcrypto* /usr/lib/libssl* /usr/lib/libz* /chroot/usr/lib/
diff --git a/test/e2e-image/Dockerfile b/test/e2e-image/Dockerfile
index 5e7417477..c16545e43 100644
--- a/test/e2e-image/Dockerfile
+++ b/test/e2e-image/Dockerfile
@@ -1,7 +1,7 @@
 ARG E2E_BASE_IMAGE
 FROM ${E2E_BASE_IMAGE} AS BASE
 
-FROM alpine:3.20
+FROM alpine:3.21
 
 RUN apk update \
 	&& apk upgrade && apk add -U --no-cache \

From f93b94fdc95ff6b5ae0778629cbfaf11e42c1117 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 21 Dec 2024 01:08:09 +0100
Subject: [PATCH 1564/1641] Bump google.golang.org/grpc from 1.68.1 to 1.69.2
 (#12535)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  4 ++--
 go.sum | 20 ++++++++++++++++----
 2 files changed, 18 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 0ae6b1609..f0ec68c8f 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.31.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
-	google.golang.org/grpc v1.68.1
+	google.golang.org/grpc v1.69.2
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -122,7 +122,7 @@ require (
 	golang.org/x/text v0.21.0 // indirect
 	golang.org/x/time v0.7.0 // indirect
 	golang.org/x/tools v0.26.0 // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20241015192408-796eee8c2d53 // indirect
 	google.golang.org/protobuf v1.35.2 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index 8b31f8a87..44b45640c 100644
--- a/go.sum
+++ b/go.sum
@@ -48,6 +48,8 @@ github.com/go-errors/errors v1.5.1 h1:ZwEMSLRCapFLflTpT7NKaAc7ukJ8ZPEjzlxt8rPN8b
 github.com/go-errors/errors v1.5.1/go.mod h1:sIVyrIiJhuEF+Pj9Ebtd6P/rEYROXFi3BopGUQ5a5Og=
 github.com/go-logr/logr v1.4.2 h1:6pFjapn8bFcIbiKo3XT4j/BhANplGihG6tvd+8rYgrY=
 github.com/go-logr/logr v1.4.2/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
+github.com/go-logr/stdr v1.2.2 h1:hSWxHoqTgW2S2qGc0LTAI563KZ5YKYRhT3MFKZMbjag=
+github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE=
 github.com/go-logr/zapr v1.3.0 h1:XGdV8XW8zdwFiwOA2Dryh1gj2KRQyOOoNmBy4EplIcQ=
 github.com/go-logr/zapr v1.3.0/go.mod h1:YKepepNBd1u/oyhd/yQmtjVXmm9uML4IXUgMOwR8/Gg=
 github.com/go-openapi/jsonpointer v0.21.0 h1:YgdVicSA9vH5RiHs9TZW5oyafXZFc6+2Vc1rr/O9oNQ=
@@ -222,6 +224,16 @@ github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9de
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30 h1:rzHvkiukOVYcf840FqAsHqBMhfLofvQIxWtczkGRklU=
 github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30/go.mod h1:/Hzu8ych2oXCs1iNI+MeASyFzWTncQ6nlu/wgqbqC2A=
+go.opentelemetry.io/otel v1.31.0 h1:NsJcKPIW0D0H3NgzPDHmo0WW6SptzPdqg/L1zsIm2hY=
+go.opentelemetry.io/otel v1.31.0/go.mod h1:O0C14Yl9FgkjqcCZAsE053C13OaddMYr/hz6clDkEJE=
+go.opentelemetry.io/otel/metric v1.31.0 h1:FSErL0ATQAmYHUIzSezZibnyVlft1ybhy4ozRPcF2fE=
+go.opentelemetry.io/otel/metric v1.31.0/go.mod h1:C3dEloVbLuYoX41KpmAhOqNriGbA+qqH6PQ5E5mUfnY=
+go.opentelemetry.io/otel/sdk v1.31.0 h1:xLY3abVHYZ5HSfOg3l2E5LUj2Cwva5Y7yGxnSW9H5Gk=
+go.opentelemetry.io/otel/sdk v1.31.0/go.mod h1:TfRbMdhvxIIr/B2N2LQW2S5v9m3gOQ/08KsbbO5BPT0=
+go.opentelemetry.io/otel/sdk/metric v1.31.0 h1:i9hxxLJF/9kkvfHppyLL55aW7iIJz4JjxTeYusH7zMc=
+go.opentelemetry.io/otel/sdk/metric v1.31.0/go.mod h1:CRInTMVvNhUKgSAMbKyTMxqOBC0zgyxzW55lZzX43Y8=
+go.opentelemetry.io/otel/trace v1.31.0 h1:ffjsj1aRouKewfr85U2aGagJ46+MvodynlQ1HYdmJys=
+go.opentelemetry.io/otel/trace v1.31.0/go.mod h1:TXZkRk7SM2ZQLtR6eoAWQFIHPvzQ06FJAsO1tJg480A=
 go.starlark.net v0.0.0-20240123142251-f86470692795 h1:LmbG8Pq7KDGkglKVn8VpZOZj6vb9b8nKEGcg9l03epM=
 go.starlark.net v0.0.0-20240123142251-f86470692795/go.mod h1:LcLNIzVOMp4oV+uusnpk+VU+SzXaJakUuBjoCSWH5dM=
 go.uber.org/goleak v1.3.0 h1:2K3zAYmnTNqV73imy9J1T3WC+gmCePx2hEGkimedGto=
@@ -294,10 +306,10 @@ golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8T
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 gomodules.xyz/jsonpatch/v2 v2.4.0 h1:Ci3iUJyx9UeRx7CeFN8ARgGbkESwJK+KB9lLcWxY/Zw=
 gomodules.xyz/jsonpatch/v2 v2.4.0/go.mod h1:AH3dM2RI6uoBZxn3LVrfvJ3E0/9dG4cSrbuBJT4moAY=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1 h1:pPJltXNxVzT4pK9yD8vR9X75DaWYYmLGMsEvBfFQZzQ=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1/go.mod h1:UqMtugtsSgubUsoxbuAoiCXvqvErP7Gf0so0mK9tHxU=
-google.golang.org/grpc v1.68.1 h1:oI5oTa11+ng8r8XMMN7jAOmWfPZWbYpCFaMUTACxkM0=
-google.golang.org/grpc v1.68.1/go.mod h1:+q1XYFJjShcqn0QZHvCyeR4CXPA+llXIeUIfIe00waw=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20241015192408-796eee8c2d53 h1:X58yt85/IXCx0Y3ZwN6sEIKZzQtDEYaBWrDvErdXrRE=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20241015192408-796eee8c2d53/go.mod h1:GX3210XPVPUjJbTUbvwI8f2IpZDMZuPJWDzDuebbviI=
+google.golang.org/grpc v1.69.2 h1:U3S9QEtbXC0bYNvRtcoklF3xGtLViumSYxWykJS+7AU=
+google.golang.org/grpc v1.69.2/go.mod h1:vyjdE6jLBI76dgpDojsFGNaHlxdjXN9ghpnd2o7JGZ4=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From e62e043f367d25e0565ecfa987f974b70c1ac72a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 21 Dec 2024 01:10:09 +0100
Subject: [PATCH 1565/1641] Bump the actions group with 2 updates (#12537)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 2 +-
 .github/workflows/scorecards.yml           | 4 ++--
 .github/workflows/vulnerability-scans.yaml | 2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml     | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 11e0fd227..9c1998708 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -202,7 +202,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
+        uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0
         with:
           name: docker.tar.gz
           path: docker.tar.gz
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index a22859557..916235c42 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
+        uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0
         with:
           name: SARIF file
           path: results.sarif
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9
+        uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index ce5feb7cf..3838dde75 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9
+        uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index 996b673f9..f855ac15a 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -49,7 +49,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports ${{ inputs.variation }}
-        uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
+        uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}

From 225deafe5aa2892663e8c4676dab9357d9710499 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 21 Dec 2024 02:58:09 +0100
Subject: [PATCH 1566/1641] Bump k8s.io/apiserver from 0.31.3 to 0.32.0
 (#12536)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 7 ++++---
 go.sum | 8 ++++----
 2 files changed, 8 insertions(+), 7 deletions(-)

diff --git a/go.mod b/go.mod
index f0ec68c8f..898b4ec73 100644
--- a/go.mod
+++ b/go.mod
@@ -34,11 +34,11 @@ require (
 	k8s.io/api v0.32.0
 	k8s.io/apiextensions-apiserver v0.31.3
 	k8s.io/apimachinery v0.32.0
-	k8s.io/apiserver v0.31.3
+	k8s.io/apiserver v0.32.0
 	k8s.io/cli-runtime v0.31.3
 	k8s.io/client-go v0.32.0
 	k8s.io/code-generator v0.31.3
-	k8s.io/component-base v0.31.3
+	k8s.io/component-base v0.32.0
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.19.3
@@ -51,6 +51,8 @@ require (
 	github.com/klauspost/compress v1.17.9 // indirect
 	github.com/moby/sys/userns v0.1.0 // indirect
 	github.com/x448/float16 v0.8.4 // indirect
+	go.opentelemetry.io/otel v1.31.0 // indirect
+	go.opentelemetry.io/otel/trace v1.31.0 // indirect
 	gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
 	sigs.k8s.io/release-utils v0.8.3 // indirect
 )
@@ -112,7 +114,6 @@ require (
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	github.com/yudai/pp v2.0.1+incompatible // indirect
 	go.starlark.net v0.0.0-20240123142251-f86470692795 // indirect
-	go.uber.org/zap v1.27.0 // indirect
 	golang.org/x/mod v0.21.0 // indirect
 	golang.org/x/net v0.32.0 // indirect
 	golang.org/x/oauth2 v0.24.0 // indirect
diff --git a/go.sum b/go.sum
index 44b45640c..d0c8a3748 100644
--- a/go.sum
+++ b/go.sum
@@ -351,16 +351,16 @@ k8s.io/apiextensions-apiserver v0.31.3 h1:+GFGj2qFiU7rGCsA5o+p/rul1OQIq6oYpQw4+u
 k8s.io/apiextensions-apiserver v0.31.3/go.mod h1:2DSpFhUZZJmn/cr/RweH1cEVVbzFw9YBu4T+U3mf1e4=
 k8s.io/apimachinery v0.32.0 h1:cFSE7N3rmEEtv4ei5X6DaJPHHX0C+upp+v5lVPiEwpg=
 k8s.io/apimachinery v0.32.0/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
-k8s.io/apiserver v0.31.3 h1:+1oHTtCB+OheqFEz375D0IlzHZ5VeQKX1KGXnx+TTuY=
-k8s.io/apiserver v0.31.3/go.mod h1:PrxVbebxrxQPFhJk4powDISIROkNMKHibTg9lTRQ0Qg=
+k8s.io/apiserver v0.32.0 h1:VJ89ZvQZ8p1sLeiWdRJpRD6oLozNZD2+qVSLi+ft5Qs=
+k8s.io/apiserver v0.32.0/go.mod h1:HFh+dM1/BE/Hm4bS4nTXHVfN6Z6tFIZPi649n83b4Ag=
 k8s.io/cli-runtime v0.31.3 h1:fEQD9Xokir78y7pVK/fCJN090/iYNrLHpFbGU4ul9TI=
 k8s.io/cli-runtime v0.31.3/go.mod h1:Q2jkyTpl+f6AtodQvgDI8io3jrfr+Z0LyQBPJJ2Btq8=
 k8s.io/client-go v0.32.0 h1:DimtMcnN/JIKZcrSrstiwvvZvLjG0aSxy8PxN8IChp8=
 k8s.io/client-go v0.32.0/go.mod h1:boDWvdM1Drk4NJj/VddSLnx59X3OPgwrOo0vGbtq9+8=
 k8s.io/code-generator v0.31.3 h1:Pj0fYOBms+ZrsulLi4DMsCEx1jG8fWKRLy44onHsLBI=
 k8s.io/code-generator v0.31.3/go.mod h1:/umCIlT84g1+Yu5ZXtP1KGSRTnGiIzzX5AzUAxsNlts=
-k8s.io/component-base v0.31.3 h1:DMCXXVx546Rfvhj+3cOm2EUxhS+EyztH423j+8sOwhQ=
-k8s.io/component-base v0.31.3/go.mod h1:xME6BHfUOafRgT0rGVBGl7TuSg8Z9/deT7qq6w7qjIU=
+k8s.io/component-base v0.32.0 h1:d6cWHZkCiiep41ObYQS6IcgzOUQUNpywm39KVYaUqzU=
+k8s.io/component-base v0.32.0/go.mod h1:JLG2W5TUxUu5uDyKiH2R/7NnxJo1HlPoRIIbVLkK5eM=
 k8s.io/gengo/v2 v2.0.0-20240826214909-a7b603a56eb7 h1:cErOOTkQ3JW19o4lo91fFurouhP8NcoBvb7CkvhZZpk=
 k8s.io/gengo/v2 v2.0.0-20240826214909-a7b603a56eb7/go.mod h1:EJykeLsmFC60UQbYJezXkEsG2FLrt0GPNkU5iK5GWxU=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=

From c1d7082fd1a620eb3965e10357b0e30db317a1b1 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 21 Dec 2024 03:56:09 +0100
Subject: [PATCH 1567/1641] Bump k8s.io/cli-runtime from 0.31.3 to 0.32.0
 (#12534)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  7 +++----
 go.sum | 14 ++++++--------
 2 files changed, 9 insertions(+), 12 deletions(-)

diff --git a/go.mod b/go.mod
index 898b4ec73..ffaa5e610 100644
--- a/go.mod
+++ b/go.mod
@@ -35,7 +35,7 @@ require (
 	k8s.io/apiextensions-apiserver v0.31.3
 	k8s.io/apimachinery v0.32.0
 	k8s.io/apiserver v0.32.0
-	k8s.io/cli-runtime v0.31.3
+	k8s.io/cli-runtime v0.32.0
 	k8s.io/client-go v0.32.0
 	k8s.io/code-generator v0.31.3
 	k8s.io/component-base v0.32.0
@@ -113,7 +113,6 @@ require (
 	github.com/xlab/treeprint v1.2.0 // indirect
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	github.com/yudai/pp v2.0.1+incompatible // indirect
-	go.starlark.net v0.0.0-20240123142251-f86470692795 // indirect
 	golang.org/x/mod v0.21.0 // indirect
 	golang.org/x/net v0.32.0 // indirect
 	golang.org/x/oauth2 v0.24.0 // indirect
@@ -133,8 +132,8 @@ require (
 	k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f // indirect
 	k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 // indirect
 	sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 // indirect
-	sigs.k8s.io/kustomize/api v0.17.2 // indirect
-	sigs.k8s.io/kustomize/kyaml v0.17.1 // indirect
+	sigs.k8s.io/kustomize/api v0.18.0 // indirect
+	sigs.k8s.io/kustomize/kyaml v0.18.1 // indirect
 	sigs.k8s.io/structured-merge-diff/v4 v4.4.2 // indirect
 	sigs.k8s.io/yaml v1.4.0 // indirect
 )
diff --git a/go.sum b/go.sum
index d0c8a3748..dac29491a 100644
--- a/go.sum
+++ b/go.sum
@@ -234,8 +234,6 @@ go.opentelemetry.io/otel/sdk/metric v1.31.0 h1:i9hxxLJF/9kkvfHppyLL55aW7iIJz4Jjx
 go.opentelemetry.io/otel/sdk/metric v1.31.0/go.mod h1:CRInTMVvNhUKgSAMbKyTMxqOBC0zgyxzW55lZzX43Y8=
 go.opentelemetry.io/otel/trace v1.31.0 h1:ffjsj1aRouKewfr85U2aGagJ46+MvodynlQ1HYdmJys=
 go.opentelemetry.io/otel/trace v1.31.0/go.mod h1:TXZkRk7SM2ZQLtR6eoAWQFIHPvzQ06FJAsO1tJg480A=
-go.starlark.net v0.0.0-20240123142251-f86470692795 h1:LmbG8Pq7KDGkglKVn8VpZOZj6vb9b8nKEGcg9l03epM=
-go.starlark.net v0.0.0-20240123142251-f86470692795/go.mod h1:LcLNIzVOMp4oV+uusnpk+VU+SzXaJakUuBjoCSWH5dM=
 go.uber.org/goleak v1.3.0 h1:2K3zAYmnTNqV73imy9J1T3WC+gmCePx2hEGkimedGto=
 go.uber.org/goleak v1.3.0/go.mod h1:CoHD4mav9JJNrW/WLlf7HGZPjdw8EucARQHekz1X6bE=
 go.uber.org/multierr v1.11.0 h1:blXXJkSxSSfBVBlC76pxqeO+LN3aDfLQo+309xJstO0=
@@ -353,8 +351,8 @@ k8s.io/apimachinery v0.32.0 h1:cFSE7N3rmEEtv4ei5X6DaJPHHX0C+upp+v5lVPiEwpg=
 k8s.io/apimachinery v0.32.0/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
 k8s.io/apiserver v0.32.0 h1:VJ89ZvQZ8p1sLeiWdRJpRD6oLozNZD2+qVSLi+ft5Qs=
 k8s.io/apiserver v0.32.0/go.mod h1:HFh+dM1/BE/Hm4bS4nTXHVfN6Z6tFIZPi649n83b4Ag=
-k8s.io/cli-runtime v0.31.3 h1:fEQD9Xokir78y7pVK/fCJN090/iYNrLHpFbGU4ul9TI=
-k8s.io/cli-runtime v0.31.3/go.mod h1:Q2jkyTpl+f6AtodQvgDI8io3jrfr+Z0LyQBPJJ2Btq8=
+k8s.io/cli-runtime v0.32.0 h1:dP+OZqs7zHPpGQMCGAhectbHU2SNCuZtIimRKTv2T1c=
+k8s.io/cli-runtime v0.32.0/go.mod h1:Mai8ht2+esoDRK5hr861KRy6z0zHsSTYttNVJXgP3YQ=
 k8s.io/client-go v0.32.0 h1:DimtMcnN/JIKZcrSrstiwvvZvLjG0aSxy8PxN8IChp8=
 k8s.io/client-go v0.32.0/go.mod h1:boDWvdM1Drk4NJj/VddSLnx59X3OPgwrOo0vGbtq9+8=
 k8s.io/code-generator v0.31.3 h1:Pj0fYOBms+ZrsulLi4DMsCEx1jG8fWKRLy44onHsLBI=
@@ -375,10 +373,10 @@ sigs.k8s.io/controller-runtime v0.19.3 h1:XO2GvC9OPftRst6xWCpTgBZO04S2cbp0Qqkj8b
 sigs.k8s.io/controller-runtime v0.19.3/go.mod h1:j4j87DqtsThvwTv5/Tc5NFRyyF/RF0ip4+62tbTSIUM=
 sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 h1:/Rv+M11QRah1itp8VhT6HoVx1Ray9eB4DBr+K+/sCJ8=
 sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3/go.mod h1:18nIHnGi6636UCz6m8i4DhaJ65T6EruyzmoQqI2BVDo=
-sigs.k8s.io/kustomize/api v0.17.2 h1:E7/Fjk7V5fboiuijoZHgs4aHuexi5Y2loXlVOAVAG5g=
-sigs.k8s.io/kustomize/api v0.17.2/go.mod h1:UWTz9Ct+MvoeQsHcJ5e+vziRRkwimm3HytpZgIYqye0=
-sigs.k8s.io/kustomize/kyaml v0.17.1 h1:TnxYQxFXzbmNG6gOINgGWQt09GghzgTP6mIurOgrLCQ=
-sigs.k8s.io/kustomize/kyaml v0.17.1/go.mod h1:9V0mCjIEYjlXuCdYsSXvyoy2BTsLESH7TlGV81S282U=
+sigs.k8s.io/kustomize/api v0.18.0 h1:hTzp67k+3NEVInwz5BHyzc9rGxIauoXferXyjv5lWPo=
+sigs.k8s.io/kustomize/api v0.18.0/go.mod h1:f8isXnX+8b+SGLHQ6yO4JG1rdkZlvhaCf/uZbLVMb0U=
+sigs.k8s.io/kustomize/kyaml v0.18.1 h1:WvBo56Wzw3fjS+7vBjN6TeivvpbW9GmRaWZ9CIVmt4E=
+sigs.k8s.io/kustomize/kyaml v0.18.1/go.mod h1:C3L2BFVU1jgcddNBE1TxuVLgS46TjObMwW5FT9FcjYo=
 sigs.k8s.io/mdtoc v1.4.0 h1:2pDEwJSjoVrGr5BPkG+LoLkYLKvgtGYurrBY8ul3SxQ=
 sigs.k8s.io/mdtoc v1.4.0/go.mod h1:KVnRRtK1rX9aQ95qF0rt3x2ytTxf3r7W7N41H+0KF0k=
 sigs.k8s.io/release-utils v0.8.3 h1:KtOtA4qDmzJyeQ2zkDsFVI25+NViwms/o5eL2NftFdA=

From e26755dc94f424fb52220e0ae0c0ba4f35a89c73 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 21 Dec 2024 04:56:10 +0100
Subject: [PATCH 1568/1641] Bump k8s.io/code-generator from 0.31.3 to 0.32.0
 (#12533)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 5 ++---
 go.sum | 9 ++++-----
 2 files changed, 6 insertions(+), 8 deletions(-)

diff --git a/go.mod b/go.mod
index ffaa5e610..f4f5b6cfc 100644
--- a/go.mod
+++ b/go.mod
@@ -37,7 +37,7 @@ require (
 	k8s.io/apiserver v0.32.0
 	k8s.io/cli-runtime v0.32.0
 	k8s.io/client-go v0.32.0
-	k8s.io/code-generator v0.31.3
+	k8s.io/code-generator v0.32.0
 	k8s.io/component-base v0.32.0
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
@@ -126,9 +126,8 @@ require (
 	google.golang.org/protobuf v1.35.2 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
-	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
-	k8s.io/gengo/v2 v2.0.0-20240826214909-a7b603a56eb7 // indirect
+	k8s.io/gengo/v2 v2.0.0-20240911193312-2b36238f13e9 // indirect
 	k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f // indirect
 	k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 // indirect
 	sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 // indirect
diff --git a/go.sum b/go.sum
index dac29491a..b5d0f61d2 100644
--- a/go.sum
+++ b/go.sum
@@ -338,7 +338,6 @@ gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWD
 gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.3.0/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
-gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
 gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
@@ -355,12 +354,12 @@ k8s.io/cli-runtime v0.32.0 h1:dP+OZqs7zHPpGQMCGAhectbHU2SNCuZtIimRKTv2T1c=
 k8s.io/cli-runtime v0.32.0/go.mod h1:Mai8ht2+esoDRK5hr861KRy6z0zHsSTYttNVJXgP3YQ=
 k8s.io/client-go v0.32.0 h1:DimtMcnN/JIKZcrSrstiwvvZvLjG0aSxy8PxN8IChp8=
 k8s.io/client-go v0.32.0/go.mod h1:boDWvdM1Drk4NJj/VddSLnx59X3OPgwrOo0vGbtq9+8=
-k8s.io/code-generator v0.31.3 h1:Pj0fYOBms+ZrsulLi4DMsCEx1jG8fWKRLy44onHsLBI=
-k8s.io/code-generator v0.31.3/go.mod h1:/umCIlT84g1+Yu5ZXtP1KGSRTnGiIzzX5AzUAxsNlts=
+k8s.io/code-generator v0.32.0 h1:s0lNN8VSWny8LBz5t5iy7MCdgwdOhdg7vAGVxvS+VWU=
+k8s.io/code-generator v0.32.0/go.mod h1:b7Q7KMZkvsYFy72A79QYjiv4aTz3GvW0f1T3UfhFq4s=
 k8s.io/component-base v0.32.0 h1:d6cWHZkCiiep41ObYQS6IcgzOUQUNpywm39KVYaUqzU=
 k8s.io/component-base v0.32.0/go.mod h1:JLG2W5TUxUu5uDyKiH2R/7NnxJo1HlPoRIIbVLkK5eM=
-k8s.io/gengo/v2 v2.0.0-20240826214909-a7b603a56eb7 h1:cErOOTkQ3JW19o4lo91fFurouhP8NcoBvb7CkvhZZpk=
-k8s.io/gengo/v2 v2.0.0-20240826214909-a7b603a56eb7/go.mod h1:EJykeLsmFC60UQbYJezXkEsG2FLrt0GPNkU5iK5GWxU=
+k8s.io/gengo/v2 v2.0.0-20240911193312-2b36238f13e9 h1:si3PfKm8dDYxgfbeA6orqrtLkvvIeH8UqffFJDl0bz4=
+k8s.io/gengo/v2 v2.0.0-20240911193312-2b36238f13e9/go.mod h1:EJykeLsmFC60UQbYJezXkEsG2FLrt0GPNkU5iK5GWxU=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
 k8s.io/klog/v2 v2.130.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
 k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f h1:GA7//TjRY9yWGy1poLzYYJJ4JRdzg3+O6e8I+e+8T5Y=

From c4cd70e32cb2f999138c469722ab18eb0e32467e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 21 Dec 2024 13:52:09 +0100
Subject: [PATCH 1569/1641] Bump github.com/onsi/ginkgo/v2 from 2.22.0 to
 2.22.1 (#12531)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 build/run-in-docker.sh                    |  2 +-
 go.mod                                    | 10 +++----
 go.sum                                    | 24 ++++++++---------
 images/kube-webhook-certgen/rootfs/go.mod | 11 ++++----
 images/kube-webhook-certgen/rootfs/go.sum | 32 +++++++++++------------
 images/test-runner/Makefile               |  4 +--
 test/e2e/run-chart-test.sh                |  2 +-
 test/e2e/run-kind-e2e.sh                  |  2 +-
 8 files changed, 44 insertions(+), 43 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index d88be92e5..cec69cbcb 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -82,7 +82,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.22.0
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.22.1
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/go.mod b/go.mod
index f4f5b6cfc..cb4356525 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.4
-	github.com/onsi/ginkgo/v2 v2.22.0
+	github.com/onsi/ginkgo/v2 v2.22.1
 	github.com/opencontainers/runc v1.2.3
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.5
@@ -85,7 +85,7 @@ require (
 	github.com/google/gnostic-models v0.6.8 // indirect
 	github.com/google/go-cmp v0.6.0 // indirect
 	github.com/google/gofuzz v1.2.0 // indirect
-	github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db // indirect
+	github.com/google/pprof v0.0.0-20241210010833-40e02aabc2ad // indirect
 	github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect
 	github.com/google/uuid v1.6.0 // indirect
 	github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect
@@ -113,15 +113,15 @@ require (
 	github.com/xlab/treeprint v1.2.0 // indirect
 	github.com/yudai/golcs v0.0.0-20170316035057-ecda9a501e82 // indirect
 	github.com/yudai/pp v2.0.1+incompatible // indirect
-	golang.org/x/mod v0.21.0 // indirect
-	golang.org/x/net v0.32.0 // indirect
+	golang.org/x/mod v0.22.0 // indirect
+	golang.org/x/net v0.33.0 // indirect
 	golang.org/x/oauth2 v0.24.0 // indirect
 	golang.org/x/sync v0.10.0 // indirect
 	golang.org/x/sys v0.28.0 // indirect
 	golang.org/x/term v0.27.0 // indirect
 	golang.org/x/text v0.21.0 // indirect
 	golang.org/x/time v0.7.0 // indirect
-	golang.org/x/tools v0.26.0 // indirect
+	golang.org/x/tools v0.28.0 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20241015192408-796eee8c2d53 // indirect
 	google.golang.org/protobuf v1.35.2 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
diff --git a/go.sum b/go.sum
index b5d0f61d2..7a8e59670 100644
--- a/go.sum
+++ b/go.sum
@@ -90,8 +90,8 @@ github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeN
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
 github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db h1:097atOisP2aRj7vFgYQBbFN4U4JNXUNYpxael3UzMyo=
-github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
+github.com/google/pprof v0.0.0-20241210010833-40e02aabc2ad h1:a6HEuzUHeKH6hwfN/ZoQgRgVIWFJljSWa/zetS2WTvg=
+github.com/google/pprof v0.0.0-20241210010833-40e02aabc2ad/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 h1:El6M4kTTCOh6aBiKaUGG7oYTSPP8MxqL4YI3kZKwcP4=
 github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510/go.mod h1:pupxD2MaaD3pAXIBCelhxNneeOaAeabZDe5s4K6zSpQ=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
@@ -163,12 +163,12 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.22.0 h1:Yed107/8DjTr0lKCNt7Dn8yQ6ybuDRQoMGrNFKzMfHg=
-github.com/onsi/ginkgo/v2 v2.22.0/go.mod h1:7Du3c42kxCUegi0IImZ1wUQzMBVecgIHjR1C+NkhLQo=
+github.com/onsi/ginkgo/v2 v2.22.1 h1:QW7tbJAUDyVDVOM5dFa7qaybo+CRfR7bemlQUN6Z8aM=
+github.com/onsi/ginkgo/v2 v2.22.1/go.mod h1:S6aTpoRsSq2cZOd+pssHAlKW/Q/jZt6cPrPlnj4a1xM=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.35.1 h1:Cwbd75ZBPxFSuZ6T+rN/WCb/gOc6YgFBXLlZLhC7Ds4=
-github.com/onsi/gomega v1.35.1/go.mod h1:PvZbdDc8J6XJEpDK4HCuRBm8a6Fzp9/DmhC9C7yFlog=
+github.com/onsi/gomega v1.36.1 h1:bJDPBO7ibjxcbHMgSCoo4Yj18UWbKDlLwX1x9sybDcw=
+github.com/onsi/gomega v1.36.1/go.mod h1:PvZbdDc8J6XJEpDK4HCuRBm8a6Fzp9/DmhC9C7yFlog=
 github.com/opencontainers/runc v1.2.3 h1:fxE7amCzfZflJO2lHXf4y/y8M1BoAqp+FVmG19oYB80=
 github.com/opencontainers/runc v1.2.3/go.mod h1:nSxcWUydXrsBZVYNSkTjoQ/N6rcyTtn+1SD5D4+kRIM=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
@@ -249,16 +249,16 @@ golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 h1:2dVuKD2vS7b0QIHQbpyTISPd0
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbRXRL/OHtkFuWGRjvuhBJpk2IlY=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.21.0 h1:vvrHzRwRfVKSiLrG+d4FMl/Qi4ukBCE6kZlTUkDYRT0=
-golang.org/x/mod v0.21.0/go.mod h1:6SkKJ3Xj0I0BrPOZoBy3bdMptDDU9oJrpohJ3eWZ1fY=
+golang.org/x/mod v0.22.0 h1:D4nJWe9zXqHOmWqj4VMOJhvzj7bEZg4wEYa759z1pH4=
+golang.org/x/mod v0.22.0/go.mod h1:6SkKJ3Xj0I0BrPOZoBy3bdMptDDU9oJrpohJ3eWZ1fY=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.32.0 h1:ZqPmj8Kzc+Y6e0+skZsuACbx+wzMgo5MQsJh9Qd6aYI=
-golang.org/x/net v0.32.0/go.mod h1:CwU0IoeOlnQQWJ6ioyFrfRuomB8GKF6KbYXZVyeXNfs=
+golang.org/x/net v0.33.0 h1:74SYHlV8BIgHIFC/LrYkOGIwL19eTYXQ5wc6TBuO36I=
+golang.org/x/net v0.33.0/go.mod h1:HXLR5J+9DxmrqMwG9qjGCxZ+zKXxBru04zlTvWlWuN4=
 golang.org/x/oauth2 v0.24.0 h1:KTBBxWqUa0ykRPLtV69rRto9TLXcqYkeswu48x/gvNE=
 golang.org/x/oauth2 v0.24.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -296,8 +296,8 @@ golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtn
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20201224043029-2b0845dc783e/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.26.0 h1:v/60pFQmzmT9ExmjDv2gGIfi3OqfKoEP6I5+umXlbnQ=
-golang.org/x/tools v0.26.0/go.mod h1:TPVVj70c7JJ3WCazhD8OdXcZg/og+b9+tH/KxylGwH0=
+golang.org/x/tools v0.28.0 h1:WuB6qZ4RPCQo5aP3WdKZS7i595EdWqWR8vqJTlwTVK8=
+golang.org/x/tools v0.28.0/go.mod h1:dcIOrVd3mfQKTgrDVQHqCPMWy6lnhfhtX3hLXYVLfRw=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 1174fe9a9..46d7747c5 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -33,15 +33,16 @@ require (
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
-	github.com/onsi/ginkgo/v2 v2.22.0 // indirect
+	github.com/onsi/ginkgo/v2 v2.22.1 // indirect
+	github.com/onsi/gomega v1.36.1 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
 	github.com/x448/float16 v0.8.4 // indirect
-	golang.org/x/net v0.30.0 // indirect
+	golang.org/x/net v0.33.0 // indirect
 	golang.org/x/oauth2 v0.23.0 // indirect
-	golang.org/x/sys v0.26.0 // indirect
-	golang.org/x/term v0.25.0 // indirect
-	golang.org/x/text v0.19.0 // indirect
+	golang.org/x/sys v0.28.0 // indirect
+	golang.org/x/term v0.27.0 // indirect
+	golang.org/x/text v0.21.0 // indirect
 	golang.org/x/time v0.7.0 // indirect
 	google.golang.org/protobuf v1.35.1 // indirect
 	gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index e4a693a87..fee4d4e02 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -29,8 +29,8 @@ github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeN
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.2.0 h1:xRy4A+RhZaiKjJ1bPfwQ8sedCA+YS2YcCHW6ec7JMi0=
 github.com/google/gofuzz v1.2.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db h1:097atOisP2aRj7vFgYQBbFN4U4JNXUNYpxael3UzMyo=
-github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
+github.com/google/pprof v0.0.0-20241210010833-40e02aabc2ad h1:a6HEuzUHeKH6hwfN/ZoQgRgVIWFJljSWa/zetS2WTvg=
+github.com/google/pprof v0.0.0-20241210010833-40e02aabc2ad/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
@@ -56,10 +56,10 @@ github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/onrik/logrus v0.11.0 h1:pu+BCaWL36t0yQaj/2UHK2erf88dwssAKOT51mxPUVs=
 github.com/onrik/logrus v0.11.0/go.mod h1:fO2vlZwIdti6PidD3gV5YKt9Lq5ptpnP293RAe1ITwk=
-github.com/onsi/ginkgo/v2 v2.22.0 h1:Yed107/8DjTr0lKCNt7Dn8yQ6ybuDRQoMGrNFKzMfHg=
-github.com/onsi/ginkgo/v2 v2.22.0/go.mod h1:7Du3c42kxCUegi0IImZ1wUQzMBVecgIHjR1C+NkhLQo=
-github.com/onsi/gomega v1.35.1 h1:Cwbd75ZBPxFSuZ6T+rN/WCb/gOc6YgFBXLlZLhC7Ds4=
-github.com/onsi/gomega v1.35.1/go.mod h1:PvZbdDc8J6XJEpDK4HCuRBm8a6Fzp9/DmhC9C7yFlog=
+github.com/onsi/ginkgo/v2 v2.22.1 h1:QW7tbJAUDyVDVOM5dFa7qaybo+CRfR7bemlQUN6Z8aM=
+github.com/onsi/ginkgo/v2 v2.22.1/go.mod h1:S6aTpoRsSq2cZOd+pssHAlKW/Q/jZt6cPrPlnj4a1xM=
+github.com/onsi/gomega v1.36.1 h1:bJDPBO7ibjxcbHMgSCoo4Yj18UWbKDlLwX1x9sybDcw=
+github.com/onsi/gomega v1.36.1/go.mod h1:PvZbdDc8J6XJEpDK4HCuRBm8a6Fzp9/DmhC9C7yFlog=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
@@ -98,8 +98,8 @@ golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.30.0 h1:AcW1SDZMkb8IpzCdQUaIq2sP4sZ4zw+55h6ynffypl4=
-golang.org/x/net v0.30.0/go.mod h1:2wGyMJ5iFasEhkwi13ChkO/t1ECNC4X4eBKkVFyYFlU=
+golang.org/x/net v0.33.0 h1:74SYHlV8BIgHIFC/LrYkOGIwL19eTYXQ5wc6TBuO36I=
+golang.org/x/net v0.33.0/go.mod h1:HXLR5J+9DxmrqMwG9qjGCxZ+zKXxBru04zlTvWlWuN4=
 golang.org/x/oauth2 v0.23.0 h1:PbgcYx2W7i4LvjJWEbf0ngHV6qJYr86PkAV3bXdLEbs=
 golang.org/x/oauth2 v0.23.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
@@ -109,22 +109,22 @@ golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5h
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.26.0 h1:KHjCJyddX0LoSTb3J+vWpupP9p0oznkqVk/IfjymZbo=
-golang.org/x/sys v0.26.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/term v0.25.0 h1:WtHI/ltw4NvSUig5KARz9h521QvRC8RmF/cuYqifU24=
-golang.org/x/term v0.25.0/go.mod h1:RPyXicDX+6vLxogjjRxjgD2TKtmAO6NZBsBRfrOLu7M=
+golang.org/x/sys v0.28.0 h1:Fksou7UEQUWlKvIdsqzJmUmCX3cZuD2+P3XyyzwMhlA=
+golang.org/x/sys v0.28.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/term v0.27.0 h1:WP60Sv1nlK1T6SupCHbXzSaN0b9wUmsPoRS9b61A23Q=
+golang.org/x/term v0.27.0/go.mod h1:iMsnZpn0cago0GOrHO2+Y7u7JPn5AylBrcoWkElMTSM=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.19.0 h1:kTxAhCbGbxhK0IwgSKiMO5awPoDQ0RpfiVYBfK860YM=
-golang.org/x/text v0.19.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
+golang.org/x/text v0.21.0 h1:zyQAAkrwaneQ066sspRyJaG9VNi/YJ1NfzcGB3hZ/qo=
+golang.org/x/text v0.21.0/go.mod h1:4IBbMaMmOPCJ8SecivzSH54+73PCFmPWxNTLm+vZkEQ=
 golang.org/x/time v0.7.0 h1:ntUhktv3OPE6TgYxXWv9vKvUSJyIFJlyohwbkEwPrKQ=
 golang.org/x/time v0.7.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.26.0 h1:v/60pFQmzmT9ExmjDv2gGIfi3OqfKoEP6I5+umXlbnQ=
-golang.org/x/tools v0.26.0/go.mod h1:TPVVj70c7JJ3WCazhD8OdXcZg/og+b9+tH/KxylGwH0=
+golang.org/x/tools v0.28.0 h1:WuB6qZ4RPCQo5aP3WdKZS7i595EdWqWR8vqJTlwTVK8=
+golang.org/x/tools v0.28.0/go.mod h1:dcIOrVd3mfQKTgrDVQHqCPMWy6lnhfhtX3hLXYVLfRw=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 4d62d8f16..b51293643 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -59,7 +59,7 @@ image:
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.22.0 \
+		--build-arg GINKGO_VERSION=2.22.1 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -80,7 +80,7 @@ build: ensure-buildx
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.22.0 \
+		--build-arg GINKGO_VERSION=2.22.1 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index ca79ea2fe..cdc7d5b0a 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.22.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.22.1
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index 01b909f30..ac8a389e9 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -95,7 +95,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.22.0
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.22.1
   fi
 
   echo "[dev-env] .. done building controller images"

From 62b97c7b994761e5effdcff79b0e5d57ff426531 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sat, 21 Dec 2024 17:58:09 +0100
Subject: [PATCH 1570/1641] CI: Update KIND images. (#12553)

---
 .github/workflows/ci.yaml     | 6 +++---
 .github/workflows/images.yaml | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 9c1998708..d02633ecc 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -270,7 +270,7 @@ jobs:
 
     strategy:
       matrix:
-        k8s: [v1.28.15, v1.29.10, v1.30.6, v1.31.2]
+        k8s: [v1.28.15, v1.29.12, v1.30.8, v1.31.4, v1.32.0]
 
     steps:
       - name: Checkout code
@@ -301,7 +301,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     strategy:
       matrix:
-        k8s: [v1.28.15, v1.29.10, v1.30.6, v1.31.2]
+        k8s: [v1.28.15, v1.29.12, v1.30.8, v1.31.4, v1.32.0]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
@@ -315,7 +315,7 @@ jobs:
       (needs.changes.outputs.go == 'true') || (needs.changes.outputs.baseimage == 'true') || ${{ github.event.workflow_dispatch.run_e2e == 'true' }}
     strategy:
       matrix:
-        k8s: [v1.28.15, v1.29.10, v1.30.6, v1.31.2]
+        k8s: [v1.28.15, v1.29.12, v1.30.8, v1.31.4, v1.32.0]
     uses: ./.github/workflows/zz-tmpl-k8s-e2e.yaml
     with:
       k8s-version: ${{ matrix.k8s }}
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 9a25a2d9a..e90f19c63 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -135,7 +135,7 @@ jobs:
       (needs.changes.outputs.kube-webhook-certgen == 'true')
     strategy:
       matrix:
-        k8s: [v1.28.15, v1.29.10, v1.30.6, v1.31.2]
+        k8s: [v1.28.15, v1.29.12, v1.30.8, v1.31.4, v1.32.0]
     steps:
     - name: Checkout
       uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

From 1b596fbdb899d1f29d3807b539c3757d1826f27a Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sat, 21 Dec 2024 18:02:10 +0100
Subject: [PATCH 1571/1641] Images: Bump `gcb-docker-gcloud` to
 v20241217-ff46a068cd. (#12554)

---
 cloudbuild.yaml                             | 2 +-
 images/cfssl/cloudbuild.yaml                | 2 +-
 images/custom-error-pages/cloudbuild.yaml   | 2 +-
 images/e2e-test-echo/cloudbuild.yaml        | 2 +-
 images/fastcgi-helloserver/cloudbuild.yaml  | 2 +-
 images/httpbun/cloudbuild.yaml              | 2 +-
 images/kube-webhook-certgen/cloudbuild.yaml | 2 +-
 images/nginx/cloudbuild.yaml                | 2 +-
 images/test-runner/cloudbuild.yaml          | 2 +-
 9 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/cloudbuild.yaml b/cloudbuild.yaml
index 1494196b7..88ba9b935 100644
--- a/cloudbuild.yaml
+++ b/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       - REPO_INFO=https://github.com/kubernetes/ingress-nginx
diff --git a/images/cfssl/cloudbuild.yaml b/images/cfssl/cloudbuild.yaml
index ad7bc6a51..658921d1a 100644
--- a/images/cfssl/cloudbuild.yaml
+++ b/images/cfssl/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/custom-error-pages/cloudbuild.yaml b/images/custom-error-pages/cloudbuild.yaml
index 01906c367..7a583e69d 100644
--- a/images/custom-error-pages/cloudbuild.yaml
+++ b/images/custom-error-pages/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/e2e-test-echo/cloudbuild.yaml b/images/e2e-test-echo/cloudbuild.yaml
index 213fb2a43..a368f3489 100644
--- a/images/e2e-test-echo/cloudbuild.yaml
+++ b/images/e2e-test-echo/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index 81bbe3872..289a59c2d 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/httpbun/cloudbuild.yaml b/images/httpbun/cloudbuild.yaml
index 7f6454771..cd3df273d 100644
--- a/images/httpbun/cloudbuild.yaml
+++ b/images/httpbun/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/kube-webhook-certgen/cloudbuild.yaml b/images/kube-webhook-certgen/cloudbuild.yaml
index f922e3b18..443f24d0c 100644
--- a/images/kube-webhook-certgen/cloudbuild.yaml
+++ b/images/kube-webhook-certgen/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index 7f4448310..4bf39adc8 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/test-runner/cloudbuild.yaml b/images/test-runner/cloudbuild.yaml
index 207955678..5b38d5b32 100644
--- a/images/test-runner/cloudbuild.yaml
+++ b/images/test-runner/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241110-72bb0b1665
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash

From 6ed962f12adb5605009919cf2d69d04d40bb8621 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sat, 21 Dec 2024 19:38:09 +0100
Subject: [PATCH 1572/1641] Bump k8s.io/apiextensions-apiserver from 0.31.3 to
 0.32.0 (#12564)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index cb4356525..7cced6117 100644
--- a/go.mod
+++ b/go.mod
@@ -32,7 +32,7 @@ require (
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
 	k8s.io/api v0.32.0
-	k8s.io/apiextensions-apiserver v0.31.3
+	k8s.io/apiextensions-apiserver v0.32.0
 	k8s.io/apimachinery v0.32.0
 	k8s.io/apiserver v0.32.0
 	k8s.io/cli-runtime v0.32.0
diff --git a/go.sum b/go.sum
index 7a8e59670..53b639700 100644
--- a/go.sum
+++ b/go.sum
@@ -344,8 +344,8 @@ gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 k8s.io/api v0.32.0 h1:OL9JpbvAU5ny9ga2fb24X8H6xQlVp+aJMFlgtQjR9CE=
 k8s.io/api v0.32.0/go.mod h1:4LEwHZEf6Q/cG96F3dqR965sYOfmPM7rq81BLgsE0p0=
-k8s.io/apiextensions-apiserver v0.31.3 h1:+GFGj2qFiU7rGCsA5o+p/rul1OQIq6oYpQw4+u+nciE=
-k8s.io/apiextensions-apiserver v0.31.3/go.mod h1:2DSpFhUZZJmn/cr/RweH1cEVVbzFw9YBu4T+U3mf1e4=
+k8s.io/apiextensions-apiserver v0.32.0 h1:S0Xlqt51qzzqjKPxfgX1xh4HBZE+p8KKBq+k2SWNOE0=
+k8s.io/apiextensions-apiserver v0.32.0/go.mod h1:86hblMvN5yxMvZrZFX2OhIHAuFIMJIZ19bTvzkP+Fmw=
 k8s.io/apimachinery v0.32.0 h1:cFSE7N3rmEEtv4ei5X6DaJPHHX0C+upp+v5lVPiEwpg=
 k8s.io/apimachinery v0.32.0/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
 k8s.io/apiserver v0.32.0 h1:VJ89ZvQZ8p1sLeiWdRJpRD6oLozNZD2+qVSLi+ft5Qs=

From bd3ee3ed3f08d0e204bea93c5b35aa1306f7245d Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Sat, 21 Dec 2024 17:36:09 -0500
Subject: [PATCH 1573/1641] Repository: Update owners. (#12519)

---
 OWNERS_ALIASES                     | 20 --------------------
 charts/ingress-nginx/Chart.yaml    |  1 -
 charts/ingress-nginx/OWNERS        |  6 ------
 images/kube-webhook-certgen/OWNERS |  4 ----
 4 files changed, 31 deletions(-)
 delete mode 100644 images/kube-webhook-certgen/OWNERS

diff --git a/OWNERS_ALIASES b/OWNERS_ALIASES
index 8011022d0..314202c10 100644
--- a/OWNERS_ALIASES
+++ b/OWNERS_ALIASES
@@ -1,37 +1,17 @@
 # See the OWNERS docs: https://www.kubernetes.dev/docs/guide/owners
 
 aliases:
-  sig-network-leads:
-  - caseydavenport
-  - dcbw
-  - thockin
-
-  ingress-nginx-admins:
-  - Gacko
-  - strongjz
-
   ingress-nginx-maintainers:
   - cpanato
   - Gacko
-  - puerco
   - strongjz
   - tao12345666333
 
   ingress-nginx-reviewers:
   - cpanato
   - Gacko
-  - puerco
   - strongjz
   - tao12345666333
 
-  ingress-nginx-helm-maintainers:
-  - ubergesundheit
-
-  ingress-nginx-helm-reviewers:
-  - ubergesundheit
-
   ingress-nginx-docs-maintainers:
   - longwuyuan
-
-  ingress-nginx-kube-webhook-certgen-reviewers:
-  - invidian
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 7f4b4d1e4..8c919fcf3 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -15,7 +15,6 @@ kubeVersion: '>=1.21.0-0'
 maintainers:
 - name: cpanato
 - name: Gacko
-- name: puerco
 - name: strongjz
 - name: tao12345666333
 name: ingress-nginx
diff --git a/charts/ingress-nginx/OWNERS b/charts/ingress-nginx/OWNERS
index d588ede68..428474f63 100644
--- a/charts/ingress-nginx/OWNERS
+++ b/charts/ingress-nginx/OWNERS
@@ -1,10 +1,4 @@
 # See the OWNERS docs: https://www.kubernetes.dev/docs/guide/owners
 
-approvers:
-- ingress-nginx-helm-maintainers
-
-reviewers:
-- ingress-nginx-helm-reviewers
-
 labels:
 - area/helm
diff --git a/images/kube-webhook-certgen/OWNERS b/images/kube-webhook-certgen/OWNERS
deleted file mode 100644
index b4424221c..000000000
--- a/images/kube-webhook-certgen/OWNERS
+++ /dev/null
@@ -1,4 +0,0 @@
-# See the OWNERS docs: https://www.kubernetes.dev/docs/guide/owners
-
-reviewers:
-- ingress-nginx-kube-webhook-certgen-reviewers

From 453160de3d84bb7f5f31167cb53320228b4a5ea0 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 23 Dec 2024 23:14:45 +0100
Subject: [PATCH 1574/1641] Go: Clean `go.work.sum`. (#12572)

---
 go.work.sum | 1122 ++-------------------------------------------------
 1 file changed, 31 insertions(+), 1091 deletions(-)

diff --git a/go.work.sum b/go.work.sum
index c0b709531..825d0335a 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -1,1206 +1,146 @@
-cel.dev/expr v0.15.0 h1:O1jzfJCQBfL5BFoYktaxwIhuttaQPsVWerH9/EEKx0w=
-cel.dev/expr v0.15.0/go.mod h1:TRSuuV7DlVCE/uwv5QbAiW/v8l5O8C4eEPHeu7gf7Sg=
-cel.dev/expr v0.16.0/go.mod h1:TRSuuV7DlVCE/uwv5QbAiW/v8l5O8C4eEPHeu7gf7Sg=
-cel.dev/expr v0.16.1/go.mod h1:AsGA5zb3WruAEQeQng1RZdGEXmBj0jvMWh6l5SnNuC8=
-cloud.google.com/go v0.110.2 h1:sdFPBr6xG9/wkBbfhmUz/JmZC7X6LavQgcrVINrKiVA=
-cloud.google.com/go v0.110.4/go.mod h1:+EYjdK8e5RME/VY/qLCAtuyALQ9q67dvuum8i+H5xsI=
-cloud.google.com/go v0.110.8/go.mod h1:Iz8AkXJf1qmxC3Oxoep8R1T36w8B92yU29PcBhHO5fk=
-cloud.google.com/go v0.110.10/go.mod h1:v1OoFqYxiBkUrruItNM3eT4lLByNjxmJSV/xDKJNnic=
-cloud.google.com/go v0.112.0/go.mod h1:3jEEVwZ/MHU4djK5t5RHuKOA/GbLddgTdVubX1qnPD4=
-cloud.google.com/go/accessapproval v1.6.0 h1:x0cEHro/JFPd7eS4BlEWNTMecIj2HdXjOVB5BtvwER0=
-cloud.google.com/go/accessapproval v1.7.1/go.mod h1:JYczztsHRMK7NTXb6Xw+dwbs/WnOJxbo/2mTI+Kgg68=
-cloud.google.com/go/accessapproval v1.7.4/go.mod h1:/aTEh45LzplQgFYdQdwPMR9YdX0UlhBmvB84uAmQKUc=
-cloud.google.com/go/accessapproval v1.7.5/go.mod h1:g88i1ok5dvQ9XJsxpUInWWvUBrIZhyPDPbk4T01OoJ0=
-cloud.google.com/go/accesscontextmanager v1.7.0 h1:MG60JgnEoawHJrbWw0jGdv6HLNSf6gQvYRiXpuzqgEA=
-cloud.google.com/go/accesscontextmanager v1.8.1/go.mod h1:JFJHfvuaTC+++1iL1coPiG1eu5D24db2wXCDWDjIrxo=
-cloud.google.com/go/accesscontextmanager v1.8.4/go.mod h1:ParU+WbMpD34s5JFEnGAnPBYAgUHozaTmDJU7aCU9+M=
-cloud.google.com/go/accesscontextmanager v1.8.5/go.mod h1:TInEhcZ7V9jptGNqN3EzZ5XMhT6ijWxTGjzyETwmL0Q=
-cloud.google.com/go/aiplatform v1.37.0 h1:zTw+suCVchgZyO+k847wjzdVjWmrAuehxdvcZvJwfGg=
-cloud.google.com/go/aiplatform v1.45.0/go.mod h1:Iu2Q7sC7QGhXUeOhAj/oCK9a+ULz1O4AotZiqjQ8MYA=
-cloud.google.com/go/aiplatform v1.50.0/go.mod h1:IRc2b8XAMTa9ZmfJV1BCCQbieWWvDnP1A8znyz5N7y4=
-cloud.google.com/go/aiplatform v1.52.0/go.mod h1:pwZMGvqe0JRkI1GWSZCtnAfrR4K1bv65IHILGA//VEU=
-cloud.google.com/go/aiplatform v1.58.0/go.mod h1:pwZMGvqe0JRkI1GWSZCtnAfrR4K1bv65IHILGA//VEU=
-cloud.google.com/go/aiplatform v1.60.0/go.mod h1:eTlGuHOahHprZw3Hio5VKmtThIOak5/qy6pzdsqcQnM=
-cloud.google.com/go/analytics v0.19.0 h1:LqAo3tAh2FU9+w/r7vc3hBjU23Kv7GhO/PDIW7kIYgM=
-cloud.google.com/go/analytics v0.21.2/go.mod h1:U8dcUtmDmjrmUTnnnRnI4m6zKn/yaA5N9RlEkYFHpQo=
-cloud.google.com/go/analytics v0.21.3/go.mod h1:U8dcUtmDmjrmUTnnnRnI4m6zKn/yaA5N9RlEkYFHpQo=
-cloud.google.com/go/analytics v0.21.6/go.mod h1:eiROFQKosh4hMaNhF85Oc9WO97Cpa7RggD40e/RBy8w=
-cloud.google.com/go/analytics v0.22.0/go.mod h1:eiROFQKosh4hMaNhF85Oc9WO97Cpa7RggD40e/RBy8w=
-cloud.google.com/go/analytics v0.23.0/go.mod h1:YPd7Bvik3WS95KBok2gPXDqQPHy08TsCQG6CdUCb+u0=
-cloud.google.com/go/apigateway v1.5.0 h1:ZI9mVO7x3E9RK/BURm2p1aw9YTBSCQe3klmyP1WxWEg=
-cloud.google.com/go/apigateway v1.6.1/go.mod h1:ufAS3wpbRjqfZrzpvLC2oh0MFlpRJm2E/ts25yyqmXA=
-cloud.google.com/go/apigateway v1.6.4/go.mod h1:0EpJlVGH5HwAN4VF4Iec8TAzGN1aQgbxAWGJsnPCGGY=
-cloud.google.com/go/apigateway v1.6.5/go.mod h1:6wCwvYRckRQogyDDltpANi3zsCDl6kWi0b4Je+w2UiI=
-cloud.google.com/go/apigeeconnect v1.5.0 h1:sWOmgDyAsi1AZ48XRHcATC0tsi9SkPT7DA/+VCfkaeA=
-cloud.google.com/go/apigeeconnect v1.6.1/go.mod h1:C4awq7x0JpLtrlQCr8AzVIzAaYgngRqWf9S5Uhg+wWs=
-cloud.google.com/go/apigeeconnect v1.6.4/go.mod h1:CapQCWZ8TCjnU0d7PobxhpOdVz/OVJ2Hr/Zcuu1xFx0=
-cloud.google.com/go/apigeeconnect v1.6.5/go.mod h1:MEKm3AiT7s11PqTfKE3KZluZA9O91FNysvd3E6SJ6Ow=
-cloud.google.com/go/apigeeregistry v0.6.0 h1:E43RdhhCxdlV+I161gUY2rI4eOaMzHTA5kNkvRsFXvc=
-cloud.google.com/go/apigeeregistry v0.7.1/go.mod h1:1XgyjZye4Mqtw7T9TsY4NW10U7BojBvG4RMD+vRDrIw=
-cloud.google.com/go/apigeeregistry v0.8.2/go.mod h1:h4v11TDGdeXJDJvImtgK2AFVvMIgGWjSb0HRnBSjcX8=
-cloud.google.com/go/apigeeregistry v0.8.3/go.mod h1:aInOWnqF4yMQx8kTjDqHNXjZGh/mxeNlAf52YqtASUs=
-cloud.google.com/go/apikeys v0.6.0 h1:B9CdHFZTFjVti89tmyXXrO+7vSNo2jvZuHG8zD5trdQ=
-cloud.google.com/go/appengine v1.7.1 h1:aBGDKmRIaRRoWJ2tAoN0oVSHoWLhtO9aj/NvUyP4aYs=
-cloud.google.com/go/appengine v1.8.1/go.mod h1:6NJXGLVhZCN9aQ/AEDvmfzKEfoYBlfB80/BHiKVputY=
-cloud.google.com/go/appengine v1.8.4/go.mod h1:TZ24v+wXBujtkK77CXCpjZbnuTvsFNT41MUaZ28D6vg=
-cloud.google.com/go/appengine v1.8.5/go.mod h1:uHBgNoGLTS5di7BvU25NFDuKa82v0qQLjyMJLuPQrVo=
-cloud.google.com/go/area120 v0.7.1 h1:ugckkFh4XkHJMPhTIx0CyvdoBxmOpMe8rNs4Ok8GAag=
-cloud.google.com/go/area120 v0.8.1/go.mod h1:BVfZpGpB7KFVNxPiQBuHkX6Ed0rS51xIgmGyjrAfzsg=
-cloud.google.com/go/area120 v0.8.4/go.mod h1:jfawXjxf29wyBXr48+W+GyX/f8fflxp642D/bb9v68M=
-cloud.google.com/go/area120 v0.8.5/go.mod h1:BcoFCbDLZjsfe4EkCnEq1LKvHSK0Ew/zk5UFu6GMyA0=
-cloud.google.com/go/artifactregistry v1.13.0 h1:o1Q80vqEB6Qp8WLEH3b8FBLNUCrGQ4k5RFj0sn/sgO8=
-cloud.google.com/go/artifactregistry v1.14.1/go.mod h1:nxVdG19jTaSTu7yA7+VbWL346r3rIdkZ142BSQqhn5E=
-cloud.google.com/go/artifactregistry v1.14.6/go.mod h1:np9LSFotNWHcjnOgh8UVK0RFPCTUGbO0ve3384xyHfE=
-cloud.google.com/go/artifactregistry v1.14.7/go.mod h1:0AUKhzWQzfmeTvT4SjfI4zjot72EMfrkvL9g9aRjnnM=
-cloud.google.com/go/asset v1.13.0 h1:YAsssO08BqZ6mncbb6FPlj9h6ACS7bJQUOlzciSfbNk=
-cloud.google.com/go/asset v1.14.1/go.mod h1:4bEJ3dnHCqWCDbWJ/6Vn7GVI9LerSi7Rfdi03hd+WTQ=
-cloud.google.com/go/asset v1.15.3/go.mod h1:yYLfUD4wL4X589A9tYrv4rFrba0QlDeag0CMcM5ggXU=
-cloud.google.com/go/asset v1.17.0/go.mod h1:yYLfUD4wL4X589A9tYrv4rFrba0QlDeag0CMcM5ggXU=
-cloud.google.com/go/asset v1.17.2/go.mod h1:SVbzde67ehddSoKf5uebOD1sYw8Ab/jD/9EIeWg99q4=
-cloud.google.com/go/assuredworkloads v1.10.0 h1:VLGnVFta+N4WM+ASHbhc14ZOItOabDLH1MSoDv+Xuag=
-cloud.google.com/go/assuredworkloads v1.11.1/go.mod h1:+F04I52Pgn5nmPG36CWFtxmav6+7Q+c5QyJoL18Lry0=
-cloud.google.com/go/assuredworkloads v1.11.4/go.mod h1:4pwwGNwy1RP0m+y12ef3Q/8PaiWrIDQ6nD2E8kvWI9U=
-cloud.google.com/go/assuredworkloads v1.11.5/go.mod h1:FKJ3g3ZvkL2D7qtqIGnDufFkHxwIpNM9vtmhvt+6wqk=
-cloud.google.com/go/automl v1.12.0 h1:50VugllC+U4IGl3tDNcZaWvApHBTrn/TvyHDJ0wM+Uw=
-cloud.google.com/go/automl v1.13.1/go.mod h1:1aowgAHWYZU27MybSCFiukPO7xnyawv7pt3zK4bheQE=
-cloud.google.com/go/automl v1.13.4/go.mod h1:ULqwX/OLZ4hBVfKQaMtxMSTlPx0GqGbWN8uA/1EqCP8=
-cloud.google.com/go/automl v1.13.5/go.mod h1:MDw3vLem3yh+SvmSgeYUmUKqyls6NzSumDm9OJ3xJ1Y=
-cloud.google.com/go/baremetalsolution v0.5.0 h1:2AipdYXL0VxMboelTTw8c1UJ7gYu35LZYUbuRv9Q28s=
-cloud.google.com/go/baremetalsolution v1.2.0/go.mod h1:68wi9AwPYkEWIUT4SvSGS9UJwKzNpshjHsH4lzk8iOw=
-cloud.google.com/go/baremetalsolution v1.2.3/go.mod h1:/UAQ5xG3faDdy180rCUv47e0jvpp3BFxT+Cl0PFjw5g=
-cloud.google.com/go/baremetalsolution v1.2.4/go.mod h1:BHCmxgpevw9IEryE99HbYEfxXkAEA3hkMJbYYsHtIuY=
-cloud.google.com/go/batch v0.7.0 h1:YbMt0E6BtqeD5FvSv1d56jbVsWEzlGm55lYte+M6Mzs=
-cloud.google.com/go/batch v1.4.1/go.mod h1:KdBmDD61K0ovcxoRHGrN6GmOBWeAOyCgKD0Mugx4Fkk=
-cloud.google.com/go/batch v1.6.3/go.mod h1:J64gD4vsNSA2O5TtDB5AAux3nJ9iV8U3ilg3JDBYejU=
-cloud.google.com/go/batch v1.7.0/go.mod h1:J64gD4vsNSA2O5TtDB5AAux3nJ9iV8U3ilg3JDBYejU=
-cloud.google.com/go/batch v1.8.0/go.mod h1:k8V7f6VE2Suc0zUM4WtoibNrA6D3dqBpB+++e3vSGYc=
-cloud.google.com/go/beyondcorp v0.5.0 h1:UkY2BTZkEUAVrgqnSdOJ4p3y9ZRBPEe1LkjgC8Bj/Pc=
-cloud.google.com/go/beyondcorp v0.6.1/go.mod h1:YhxDWw946SCbmcWo3fAhw3V4XZMSpQ/VYfcKGAEU8/4=
-cloud.google.com/go/beyondcorp v1.0.0/go.mod h1:YhxDWw946SCbmcWo3fAhw3V4XZMSpQ/VYfcKGAEU8/4=
-cloud.google.com/go/beyondcorp v1.0.3/go.mod h1:HcBvnEd7eYr+HGDd5ZbuVmBYX019C6CEXBonXbCVwJo=
-cloud.google.com/go/beyondcorp v1.0.4/go.mod h1:Gx8/Rk2MxrvWfn4WIhHIG1NV7IBfg14pTKv1+EArVcc=
-cloud.google.com/go/bigquery v1.50.0 h1:RscMV6LbnAmhAzD893Lv9nXXy2WCaJmbxYPWDLbGqNQ=
-cloud.google.com/go/bigquery v1.52.0/go.mod h1:3b/iXjRQGU4nKa87cXeg6/gogLjO8C6PmuM8i5Bi/u4=
-cloud.google.com/go/bigquery v1.55.0/go.mod h1:9Y5I3PN9kQWuid6183JFhOGOW3GcirA5LpsKCUn+2ec=
-cloud.google.com/go/bigquery v1.57.1/go.mod h1:iYzC0tGVWt1jqSzBHqCr3lrRn0u13E8e+AqowBsDgug=
-cloud.google.com/go/bigquery v1.58.0/go.mod h1:0eh4mWNY0KrBTjUzLjoYImapGORq9gEPT7MWjCy9lik=
-cloud.google.com/go/bigquery v1.59.1/go.mod h1:VP1UJYgevyTwsV7desjzNzDND5p6hZB+Z8gZJN1GQUc=
-cloud.google.com/go/billing v1.13.0 h1:JYj28UYF5w6VBAh0gQYlgHJ/OD1oA+JgW29YZQU+UHM=
-cloud.google.com/go/billing v1.16.0/go.mod h1:y8vx09JSSJG02k5QxbycNRrN7FGZB6F3CAcgum7jvGA=
-cloud.google.com/go/billing v1.17.0/go.mod h1:Z9+vZXEq+HwH7bhJkyI4OQcR6TSbeMrjlpEjO2vzY64=
-cloud.google.com/go/billing v1.17.4/go.mod h1:5DOYQStCxquGprqfuid/7haD7th74kyMBHkjO/OvDtk=
-cloud.google.com/go/billing v1.18.0/go.mod h1:5DOYQStCxquGprqfuid/7haD7th74kyMBHkjO/OvDtk=
-cloud.google.com/go/billing v1.18.2/go.mod h1:PPIwVsOOQ7xzbADCwNe8nvK776QpfrOAUkvKjCUcpSE=
-cloud.google.com/go/binaryauthorization v1.5.0 h1:d3pMDBCCNivxt5a4eaV7FwL7cSH0H7RrEnFrTb1QKWs=
-cloud.google.com/go/binaryauthorization v1.6.1/go.mod h1:TKt4pa8xhowwffiBmbrbcxijJRZED4zrqnwZ1lKH51U=
-cloud.google.com/go/binaryauthorization v1.7.0/go.mod h1:Zn+S6QqTMn6odcMU1zDZCJxPjU2tZPV1oDl45lWY154=
-cloud.google.com/go/binaryauthorization v1.7.3/go.mod h1:VQ/nUGRKhrStlGr+8GMS8f6/vznYLkdK5vaKfdCIpvU=
-cloud.google.com/go/binaryauthorization v1.8.0/go.mod h1:VQ/nUGRKhrStlGr+8GMS8f6/vznYLkdK5vaKfdCIpvU=
-cloud.google.com/go/binaryauthorization v1.8.1/go.mod h1:1HVRyBerREA/nhI7yLang4Zn7vfNVA3okoAR9qYQJAQ=
-cloud.google.com/go/certificatemanager v1.6.0 h1:5C5UWeSt8Jkgp7OWn2rCkLmYurar/vIWIoSQ2+LaTOc=
-cloud.google.com/go/certificatemanager v1.7.1/go.mod h1:iW8J3nG6SaRYImIa+wXQ0g8IgoofDFRp5UMzaNk1UqI=
-cloud.google.com/go/certificatemanager v1.7.4/go.mod h1:FHAylPe/6IIKuaRmHbjbdLhGhVQ+CWHSD5Jq0k4+cCE=
-cloud.google.com/go/certificatemanager v1.7.5/go.mod h1:uX+v7kWqy0Y3NG/ZhNvffh0kuqkKZIXdvlZRO7z0VtM=
-cloud.google.com/go/channel v1.12.0 h1:GpcQY5UJKeOekYgsX3QXbzzAc/kRGtBq43fTmyKe6Uw=
-cloud.google.com/go/channel v1.16.0/go.mod h1:eN/q1PFSl5gyu0dYdmxNXscY/4Fi7ABmeHCJNf/oHmc=
-cloud.google.com/go/channel v1.17.0/go.mod h1:RpbhJsGi/lXWAUM1eF4IbQGbsfVlg2o8Iiy2/YLfVT0=
-cloud.google.com/go/channel v1.17.3/go.mod h1:QcEBuZLGGrUMm7kNj9IbU1ZfmJq2apotsV83hbxX7eE=
-cloud.google.com/go/channel v1.17.4/go.mod h1:QcEBuZLGGrUMm7kNj9IbU1ZfmJq2apotsV83hbxX7eE=
-cloud.google.com/go/channel v1.17.5/go.mod h1:FlpaOSINDAXgEext0KMaBq/vwpLMkkPAw9b2mApQeHc=
-cloud.google.com/go/cloudbuild v1.9.0 h1:GHQCjV4WlPPVU/j3Rlpc8vNIDwThhd1U9qSY/NPZdko=
-cloud.google.com/go/cloudbuild v1.10.1/go.mod h1:lyJg7v97SUIPq4RC2sGsz/9tNczhyv2AjML/ci4ulzU=
-cloud.google.com/go/cloudbuild v1.14.0/go.mod h1:lyJg7v97SUIPq4RC2sGsz/9tNczhyv2AjML/ci4ulzU=
-cloud.google.com/go/cloudbuild v1.14.3/go.mod h1:eIXYWmRt3UtggLnFGx4JvXcMj4kShhVzGndL1LwleEM=
-cloud.google.com/go/cloudbuild v1.15.0/go.mod h1:eIXYWmRt3UtggLnFGx4JvXcMj4kShhVzGndL1LwleEM=
-cloud.google.com/go/cloudbuild v1.15.1/go.mod h1:gIofXZSu+XD2Uy+qkOrGKEx45zd7s28u/k8f99qKals=
-cloud.google.com/go/clouddms v1.5.0 h1:E7v4TpDGUyEm1C/4KIrpVSOCTm0P6vWdHT0I4mostRA=
-cloud.google.com/go/clouddms v1.6.1/go.mod h1:Ygo1vL52Ov4TBZQquhz5fiw2CQ58gvu+PlS6PVXCpZI=
-cloud.google.com/go/clouddms v1.7.0/go.mod h1:MW1dC6SOtI/tPNCciTsXtsGNEM0i0OccykPvv3hiYeM=
-cloud.google.com/go/clouddms v1.7.3/go.mod h1:fkN2HQQNUYInAU3NQ3vRLkV2iWs8lIdmBKOx4nrL6Hc=
-cloud.google.com/go/clouddms v1.7.4/go.mod h1:RdrVqoFG9RWI5AvZ81SxJ/xvxPdtcRhFotwdE79DieY=
-cloud.google.com/go/cloudtasks v1.10.0 h1:uK5k6abf4yligFgYFnG0ni8msai/dSv6mDmiBulU0hU=
-cloud.google.com/go/cloudtasks v1.11.1/go.mod h1:a9udmnou9KO2iulGscKR0qBYjreuX8oHwpmFsKspEvM=
-cloud.google.com/go/cloudtasks v1.12.1/go.mod h1:a9udmnou9KO2iulGscKR0qBYjreuX8oHwpmFsKspEvM=
-cloud.google.com/go/cloudtasks v1.12.4/go.mod h1:BEPu0Gtt2dU6FxZHNqqNdGqIG86qyWKBPGnsb7udGY0=
-cloud.google.com/go/cloudtasks v1.12.6/go.mod h1:b7c7fe4+TJsFZfDyzO51F7cjq7HLUlRi/KZQLQjDsaY=
-cloud.google.com/go/compute v1.21.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
-cloud.google.com/go/compute v1.23.0/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM=
-cloud.google.com/go/compute v1.23.1/go.mod h1:CqB3xpmPKKt3OJpW2ndFIXnA9A4xAy/F3Xp1ixncW78=
-cloud.google.com/go/compute v1.23.3 h1:6sVlXXBmbd7jNX0Ipq0trII3e4n1/MsADLK6a+aiVlk=
+cel.dev/expr v0.18.0/go.mod h1:MrpN08Q+lEBs+bGYdLxxHkZoUSsCp0nSKTs0nTymJgw=
 cloud.google.com/go/compute v1.23.3/go.mod h1:VCgBUoMnIVIR0CscqQiPJLAG25E3ZRZMzcFZeQ+h8CI=
-cloud.google.com/go/compute v1.24.0 h1:phWcR2eWzRJaL/kOiJwfFsPs4BaKq1j6vnpZrc1YlVg=
-cloud.google.com/go/compute v1.24.0/go.mod h1:kw1/T+h/+tK2LJK0wiPPx1intgdAM3j/g3hFDlscY40=
-cloud.google.com/go/compute v1.25.1/go.mod h1:oopOIR53ly6viBYxaDhBfJwzUAxf1zE//uf3IB011ls=
-cloud.google.com/go/compute/metadata v0.3.0 h1:Tz+eQXMEqDIKRsmY3cHTL6FVaynIjX2QxYC4trgAKZc=
 cloud.google.com/go/compute/metadata v0.3.0/go.mod h1:zFmK7XCadkQkj6TtorcaGlCW1hT1fIilQDwofLpJ20k=
-cloud.google.com/go/compute/metadata v0.5.0/go.mod h1:aHnloV2TPI38yx4s9+wAZhHykWvVCfu7hQbF+9CWoiY=
-cloud.google.com/go/contactcenterinsights v1.6.0 h1:jXIpfcH/VYSE1SYcPzO0n1VVb+sAamiLOgCw45JbOQk=
-cloud.google.com/go/contactcenterinsights v1.9.1/go.mod h1:bsg/R7zGLYMVxFFzfh9ooLTruLRCG9fnzhH9KznHhbM=
-cloud.google.com/go/contactcenterinsights v1.10.0/go.mod h1:bsg/R7zGLYMVxFFzfh9ooLTruLRCG9fnzhH9KznHhbM=
-cloud.google.com/go/contactcenterinsights v1.11.3/go.mod h1:HHX5wrz5LHVAwfI2smIotQG9x8Qd6gYilaHcLLLmNis=
-cloud.google.com/go/contactcenterinsights v1.12.1/go.mod h1:HHX5wrz5LHVAwfI2smIotQG9x8Qd6gYilaHcLLLmNis=
-cloud.google.com/go/contactcenterinsights v1.13.0/go.mod h1:ieq5d5EtHsu8vhe2y3amtZ+BE+AQwX5qAy7cpo0POsI=
-cloud.google.com/go/container v1.15.0 h1:NKlY/wCDapfVZlbVVaeuu2UZZED5Dy1z4Zx1KhEzm8c=
-cloud.google.com/go/container v1.22.1/go.mod h1:lTNExE2R7f+DLbAN+rJiKTisauFCaoDq6NURZ83eVH4=
-cloud.google.com/go/container v1.26.0/go.mod h1:YJCmRet6+6jnYYRS000T6k0D0xUXQgBSaJ7VwI8FBj4=
-cloud.google.com/go/container v1.27.1/go.mod h1:b1A1gJeTBXVLQ6GGw9/9M4FG94BEGsqJ5+t4d/3N7O4=
-cloud.google.com/go/container v1.29.0/go.mod h1:b1A1gJeTBXVLQ6GGw9/9M4FG94BEGsqJ5+t4d/3N7O4=
-cloud.google.com/go/container v1.31.0/go.mod h1:7yABn5s3Iv3lmw7oMmyGbeV6tQj86njcTijkkGuvdZA=
-cloud.google.com/go/containeranalysis v0.9.0 h1:EQ4FFxNaEAg8PqQCO7bVQfWz9NVwZCUKaM1b3ycfx3U=
-cloud.google.com/go/containeranalysis v0.10.1/go.mod h1:Ya2jiILITMY68ZLPaogjmOMNkwsDrWBSTyBubGXO7j0=
-cloud.google.com/go/containeranalysis v0.11.0/go.mod h1:4n2e99ZwpGxpNcz+YsFT1dfOHPQFGcAC8FN2M2/ne/U=
-cloud.google.com/go/containeranalysis v0.11.3/go.mod h1:kMeST7yWFQMGjiG9K7Eov+fPNQcGhb8mXj/UcTiWw9U=
-cloud.google.com/go/containeranalysis v0.11.4/go.mod h1:cVZT7rXYBS9NG1rhQbWL9pWbXCKHWJPYraE8/FTSYPE=
-cloud.google.com/go/datacatalog v1.13.0 h1:4H5IJiyUE0X6ShQBqgFFZvGGcrwGVndTwUSLP4c52gw=
-cloud.google.com/go/datacatalog v1.14.1/go.mod h1:d2CevwTG4yedZilwe+v3E3ZBDRMobQfSG/a6cCCN5R4=
-cloud.google.com/go/datacatalog v1.17.1/go.mod h1:nCSYFHgtxh2MiEktWIz71s/X+7ds/UT9kp0PC7waCzE=
-cloud.google.com/go/datacatalog v1.18.3/go.mod h1:5FR6ZIF8RZrtml0VUao22FxhdjkoG+a0866rEnObryM=
-cloud.google.com/go/datacatalog v1.19.2/go.mod h1:2YbODwmhpLM4lOFe3PuEhHK9EyTzQJ5AXgIy7EDKTEE=
-cloud.google.com/go/datacatalog v1.19.3/go.mod h1:ra8V3UAsciBpJKQ+z9Whkxzxv7jmQg1hfODr3N3YPJ4=
-cloud.google.com/go/dataflow v0.8.0 h1:eYyD9o/8Nm6EttsKZaEGD84xC17bNgSKCu0ZxwqUbpg=
-cloud.google.com/go/dataflow v0.9.1/go.mod h1:Wp7s32QjYuQDWqJPFFlnBKhkAtiFpMTdg00qGbnIHVw=
-cloud.google.com/go/dataflow v0.9.4/go.mod h1:4G8vAkHYCSzU8b/kmsoR2lWyHJD85oMJPHMtan40K8w=
-cloud.google.com/go/dataflow v0.9.5/go.mod h1:udl6oi8pfUHnL0z6UN9Lf9chGqzDMVqcYTcZ1aPnCZQ=
-cloud.google.com/go/dataform v0.7.0 h1:Dyk+fufup1FR6cbHjFpMuP4SfPiF3LI3JtoIIALoq48=
-cloud.google.com/go/dataform v0.8.1/go.mod h1:3BhPSiw8xmppbgzeBbmDvmSWlwouuJkXsXsb8UBih9M=
-cloud.google.com/go/dataform v0.9.1/go.mod h1:pWTg+zGQ7i16pyn0bS1ruqIE91SdL2FDMvEYu/8oQxs=
-cloud.google.com/go/dataform v0.9.2/go.mod h1:S8cQUwPNWXo7m/g3DhWHsLBoufRNn9EgFrMgne2j7cI=
-cloud.google.com/go/datafusion v1.6.0 h1:sZjRnS3TWkGsu1LjYPFD/fHeMLZNXDK6PDHi2s2s/bk=
-cloud.google.com/go/datafusion v1.7.1/go.mod h1:KpoTBbFmoToDExJUso/fcCiguGDk7MEzOWXUsJo0wsI=
-cloud.google.com/go/datafusion v1.7.4/go.mod h1:BBs78WTOLYkT4GVZIXQCZT3GFpkpDN4aBY4NDX/jVlM=
-cloud.google.com/go/datafusion v1.7.5/go.mod h1:bYH53Oa5UiqahfbNK9YuYKteeD4RbQSNMx7JF7peGHc=
-cloud.google.com/go/datalabeling v0.7.0 h1:ch4qA2yvddGRUrlfwrNJCr79qLqhS9QBwofPHfFlDIk=
-cloud.google.com/go/datalabeling v0.8.1/go.mod h1:XS62LBSVPbYR54GfYQsPXZjTW8UxCK2fkDciSrpRFdY=
-cloud.google.com/go/datalabeling v0.8.4/go.mod h1:Z1z3E6LHtffBGrNUkKwbwbDxTiXEApLzIgmymj8A3S8=
-cloud.google.com/go/datalabeling v0.8.5/go.mod h1:IABB2lxQnkdUbMnQaOl2prCOfms20mcPxDBm36lps+s=
-cloud.google.com/go/dataplex v1.6.0 h1:RvoZ5T7gySwm1CHzAw7yY1QwwqaGswunmqEssPxU/AM=
-cloud.google.com/go/dataplex v1.8.1/go.mod h1:7TyrDT6BCdI8/38Uvp0/ZxBslOslP2X2MPDucliyvSE=
-cloud.google.com/go/dataplex v1.9.1/go.mod h1:7TyrDT6BCdI8/38Uvp0/ZxBslOslP2X2MPDucliyvSE=
-cloud.google.com/go/dataplex v1.11.1/go.mod h1:mHJYQQ2VEJHsyoC0OdNyy988DvEbPhqFs5OOLffLX0c=
-cloud.google.com/go/dataplex v1.14.0/go.mod h1:mHJYQQ2VEJHsyoC0OdNyy988DvEbPhqFs5OOLffLX0c=
-cloud.google.com/go/dataplex v1.14.2/go.mod h1:0oGOSFlEKef1cQeAHXy4GZPB/Ife0fz/PxBf+ZymA2U=
-cloud.google.com/go/dataproc v1.12.0 h1:W47qHL3W4BPkAIbk4SWmIERwsWBaNnWm0P2sdx3YgGU=
-cloud.google.com/go/dataproc/v2 v2.2.0/go.mod h1:lZR7AQtwZPvmINx5J87DSOOpTfof9LVZju6/Qo4lmcY=
-cloud.google.com/go/dataproc/v2 v2.2.3/go.mod h1:G5R6GBc9r36SXv/RtZIVfB8SipI+xVn0bX5SxUzVYbY=
-cloud.google.com/go/dataproc/v2 v2.3.0/go.mod h1:G5R6GBc9r36SXv/RtZIVfB8SipI+xVn0bX5SxUzVYbY=
-cloud.google.com/go/dataproc/v2 v2.4.0/go.mod h1:3B1Ht2aRB8VZIteGxQS/iNSJGzt9+CA0WGnDVMEm7Z4=
-cloud.google.com/go/dataqna v0.7.0 h1:yFzi/YU4YAdjyo7pXkBE2FeHbgz5OQQBVDdbErEHmVQ=
-cloud.google.com/go/dataqna v0.8.1/go.mod h1:zxZM0Bl6liMePWsHA8RMGAfmTG34vJMapbHAxQ5+WA8=
-cloud.google.com/go/dataqna v0.8.4/go.mod h1:mySRKjKg5Lz784P6sCov3p1QD+RZQONRMRjzGNcFd0c=
-cloud.google.com/go/dataqna v0.8.5/go.mod h1:vgihg1mz6n7pb5q2YJF7KlXve6tCglInd6XO0JGOlWM=
-cloud.google.com/go/datastore v1.11.0 h1:iF6I/HaLs3Ado8uRKMvZRvF/ZLkWaWE9i8AiHzbC774=
-cloud.google.com/go/datastore v1.12.1/go.mod h1:KjdB88W897MRITkvWWJrg2OUtrR5XVj1EoLgSp6/N70=
-cloud.google.com/go/datastore v1.14.0/go.mod h1:GAeStMBIt9bPS7jMJA85kgkpsMkvseWWXiaHya9Jes8=
-cloud.google.com/go/datastore v1.15.0/go.mod h1:GAeStMBIt9bPS7jMJA85kgkpsMkvseWWXiaHya9Jes8=
-cloud.google.com/go/datastream v1.7.0 h1:BBCBTnWMDwwEzQQmipUXxATa7Cm7CA/gKjKcR2w35T0=
-cloud.google.com/go/datastream v1.9.1/go.mod h1:hqnmr8kdUBmrnk65k5wNRoHSCYksvpdZIcZIEl8h43Q=
-cloud.google.com/go/datastream v1.10.0/go.mod h1:hqnmr8kdUBmrnk65k5wNRoHSCYksvpdZIcZIEl8h43Q=
-cloud.google.com/go/datastream v1.10.3/go.mod h1:YR0USzgjhqA/Id0Ycu1VvZe8hEWwrkjuXrGbzeDOSEA=
-cloud.google.com/go/datastream v1.10.4/go.mod h1:7kRxPdxZxhPg3MFeCSulmAJnil8NJGGvSNdn4p1sRZo=
-cloud.google.com/go/deploy v1.8.0 h1:otshdKEbmsi1ELYeCKNYppwV0UH5xD05drSdBm7ouTk=
-cloud.google.com/go/deploy v1.11.0/go.mod h1:tKuSUV5pXbn67KiubiUNUejqLs4f5cxxiCNCeyl0F2g=
-cloud.google.com/go/deploy v1.13.0/go.mod h1:tKuSUV5pXbn67KiubiUNUejqLs4f5cxxiCNCeyl0F2g=
-cloud.google.com/go/deploy v1.14.2/go.mod h1:e5XOUI5D+YGldyLNZ21wbp9S8otJbBE4i88PtO9x/2g=
-cloud.google.com/go/deploy v1.17.0/go.mod h1:XBr42U5jIr64t92gcpOXxNrqL2PStQCXHuKK5GRUuYo=
-cloud.google.com/go/deploy v1.17.1/go.mod h1:SXQyfsXrk0fBmgBHRzBjQbZhMfKZ3hMQBw5ym7MN/50=
-cloud.google.com/go/dialogflow v1.32.0 h1:uVlKKzp6G/VtSW0E7IH1Y5o0H48/UOCmqksG2riYCwQ=
-cloud.google.com/go/dialogflow v1.38.0/go.mod h1:L7jnH+JL2mtmdChzAIcXQHXMvQkE3U4hTaNltEuxXn4=
-cloud.google.com/go/dialogflow v1.43.0/go.mod h1:pDUJdi4elL0MFmt1REMvFkdsUTYSHq+rTCS8wg0S3+M=
-cloud.google.com/go/dialogflow v1.44.3/go.mod h1:mHly4vU7cPXVweuB5R0zsYKPMzy240aQdAu06SqBbAQ=
-cloud.google.com/go/dialogflow v1.48.1/go.mod h1:C1sjs2/g9cEwjCltkKeYp3FFpz8BOzNondEaAlCpt+A=
-cloud.google.com/go/dialogflow v1.49.0/go.mod h1:dhVrXKETtdPlpPhE7+2/k4Z8FRNUp6kMV3EW3oz/fe0=
-cloud.google.com/go/dlp v1.9.0 h1:1JoJqezlgu6NWCroBxr4rOZnwNFILXr4cB9dMaSKO4A=
-cloud.google.com/go/dlp v1.10.1/go.mod h1:IM8BWz1iJd8njcNcG0+Kyd9OPnqnRNkDV8j42VT5KOI=
-cloud.google.com/go/dlp v1.11.1/go.mod h1:/PA2EnioBeXTL/0hInwgj0rfsQb3lpE3R8XUJxqUNKI=
-cloud.google.com/go/dlp v1.11.2/go.mod h1:9Czi+8Y/FegpWzgSfkRlyz+jwW6Te9Rv26P3UfU/h/w=
-cloud.google.com/go/documentai v1.18.0 h1:KM3Xh0QQyyEdC8Gs2vhZfU+rt6OCPF0dwVwxKgLmWfI=
-cloud.google.com/go/documentai v1.20.0/go.mod h1:yJkInoMcK0qNAEdRnqY/D5asy73tnPe88I1YTZT+a8E=
-cloud.google.com/go/documentai v1.22.1/go.mod h1:LKs22aDHbJv7ufXuPypzRO7rG3ALLJxzdCXDPutw4Qc=
-cloud.google.com/go/documentai v1.23.5/go.mod h1:ghzBsyVTiVdkfKaUCum/9bGBEyBjDO4GfooEcYKhN+g=
-cloud.google.com/go/documentai v1.23.7/go.mod h1:ghzBsyVTiVdkfKaUCum/9bGBEyBjDO4GfooEcYKhN+g=
-cloud.google.com/go/documentai v1.25.0/go.mod h1:ftLnzw5VcXkLItp6pw1mFic91tMRyfv6hHEY5br4KzY=
-cloud.google.com/go/domains v0.8.0 h1:2ti/o9tlWL4N+wIuWUNH+LbfgpwxPr8J1sv9RHA4bYQ=
-cloud.google.com/go/domains v0.9.1/go.mod h1:aOp1c0MbejQQ2Pjf1iJvnVyT+z6R6s8pX66KaCSDYfE=
-cloud.google.com/go/domains v0.9.4/go.mod h1:27jmJGShuXYdUNjyDG0SodTfT5RwLi7xmH334Gvi3fY=
-cloud.google.com/go/domains v0.9.5/go.mod h1:dBzlxgepazdFhvG7u23XMhmMKBjrkoUNaw0A8AQB55Y=
-cloud.google.com/go/edgecontainer v1.0.0 h1:O0YVE5v+O0Q/ODXYsQHmHb+sYM8KNjGZw2pjX2Ws41c=
-cloud.google.com/go/edgecontainer v1.1.1/go.mod h1:O5bYcS//7MELQZs3+7mabRqoWQhXCzenBu0R8bz2rwk=
-cloud.google.com/go/edgecontainer v1.1.4/go.mod h1:AvFdVuZuVGdgaE5YvlL1faAoa1ndRR/5XhXZvPBHbsE=
-cloud.google.com/go/edgecontainer v1.1.5/go.mod h1:rgcjrba3DEDEQAidT4yuzaKWTbkTI5zAMu3yy6ZWS0M=
-cloud.google.com/go/errorreporting v0.3.0 h1:kj1XEWMu8P0qlLhm3FwcaFsUvXChV/OraZwA70trRR0=
-cloud.google.com/go/essentialcontacts v1.5.0 h1:gIzEhCoOT7bi+6QZqZIzX1Erj4SswMPIteNvYVlu+pM=
-cloud.google.com/go/essentialcontacts v1.6.2/go.mod h1:T2tB6tX+TRak7i88Fb2N9Ok3PvY3UNbUsMag9/BARh4=
-cloud.google.com/go/essentialcontacts v1.6.5/go.mod h1:jjYbPzw0x+yglXC890l6ECJWdYeZ5dlYACTFL0U/VuM=
-cloud.google.com/go/essentialcontacts v1.6.6/go.mod h1:XbqHJGaiH0v2UvtuucfOzFXN+rpL/aU5BCZLn4DYl1Q=
-cloud.google.com/go/eventarc v1.11.0 h1:fsJmNeqvqtk74FsaVDU6cH79lyZNCYP8Rrv7EhaB/PU=
-cloud.google.com/go/eventarc v1.12.1/go.mod h1:mAFCW6lukH5+IZjkvrEss+jmt2kOdYlN8aMx3sRJiAI=
-cloud.google.com/go/eventarc v1.13.0/go.mod h1:mAFCW6lukH5+IZjkvrEss+jmt2kOdYlN8aMx3sRJiAI=
-cloud.google.com/go/eventarc v1.13.3/go.mod h1:RWH10IAZIRcj1s/vClXkBgMHwh59ts7hSWcqD3kaclg=
-cloud.google.com/go/eventarc v1.13.4/go.mod h1:zV5sFVoAa9orc/52Q+OuYUG9xL2IIZTbbuTHC6JSY8s=
-cloud.google.com/go/filestore v1.6.0 h1:ckTEXN5towyTMu4q0uQ1Mde/JwTHur0gXs8oaIZnKfw=
-cloud.google.com/go/filestore v1.7.1/go.mod h1:y10jsorq40JJnjR/lQ8AfFbbcGlw3g+Dp8oN7i7FjV4=
-cloud.google.com/go/filestore v1.7.4/go.mod h1:S5JCxIbFjeBhWMTfIYH2Jx24J6BqjwpkkPl+nBA5DlI=
-cloud.google.com/go/filestore v1.8.0/go.mod h1:S5JCxIbFjeBhWMTfIYH2Jx24J6BqjwpkkPl+nBA5DlI=
-cloud.google.com/go/filestore v1.8.1/go.mod h1:MbN9KcaM47DRTIuLfQhJEsjaocVebNtNQhSLhKCF5GM=
-cloud.google.com/go/firestore v1.9.0 h1:IBlRyxgGySXu5VuW0RgGFlTtLukSnNkpDiEOMkQkmpA=
-cloud.google.com/go/firestore v1.11.0/go.mod h1:b38dKhgzlmNNGTNZZwe7ZRFEuRab1Hay3/DBsIGKKy4=
-cloud.google.com/go/firestore v1.13.0/go.mod h1:QojqqOh8IntInDUSTAh0c8ZsPYAr68Ma8c5DWOy8xb8=
-cloud.google.com/go/firestore v1.14.0/go.mod h1:96MVaHLsEhbvkBEdZgfN+AS/GIkco1LRpH9Xp9YZfzQ=
-cloud.google.com/go/functions v1.13.0 h1:pPDqtsXG2g9HeOQLoquLbmvmb82Y4Ezdo1GXuotFoWg=
-cloud.google.com/go/functions v1.15.1/go.mod h1:P5yNWUTkyU+LvW/S9O6V+V423VZooALQlqoXdoPz5AE=
-cloud.google.com/go/functions v1.15.4/go.mod h1:CAsTc3VlRMVvx+XqXxKqVevguqJpnVip4DdonFsX28I=
-cloud.google.com/go/functions v1.16.0/go.mod h1:nbNpfAG7SG7Duw/o1iZ6ohvL7mc6MapWQVpqtM29n8k=
-cloud.google.com/go/gaming v1.9.0 h1:7vEhFnZmd931Mo7sZ6pJy7uQPDxF7m7v8xtBheG08tc=
-cloud.google.com/go/gkebackup v0.4.0 h1:za3QZvw6ujR0uyqkhomKKKNoXDyqYGPJies3voUK8DA=
-cloud.google.com/go/gkebackup v1.3.1/go.mod h1:vUDOu++N0U5qs4IhG1pcOnD1Mac79xWy6GoBFlWCWBU=
-cloud.google.com/go/gkebackup v1.3.4/go.mod h1:gLVlbM8h/nHIs09ns1qx3q3eaXcGSELgNu1DWXYz1HI=
-cloud.google.com/go/gkebackup v1.3.5/go.mod h1:KJ77KkNN7Wm1LdMopOelV6OodM01pMuK2/5Zt1t4Tvc=
-cloud.google.com/go/gkeconnect v0.7.0 h1:gXYKciHS/Lgq0GJ5Kc9SzPA35NGc3yqu6SkjonpEr2Q=
-cloud.google.com/go/gkeconnect v0.8.1/go.mod h1:KWiK1g9sDLZqhxB2xEuPV8V9NYzrqTUmQR9shJHpOZw=
-cloud.google.com/go/gkeconnect v0.8.4/go.mod h1:84hZz4UMlDCKl8ifVW8layK4WHlMAFeq8vbzjU0yJkw=
-cloud.google.com/go/gkeconnect v0.8.5/go.mod h1:LC/rS7+CuJ5fgIbXv8tCD/mdfnlAadTaUufgOkmijuk=
-cloud.google.com/go/gkehub v0.12.0 h1:TqCSPsEBQ6oZSJgEYZ3XT8x2gUadbvfwI32YB0kuHCs=
-cloud.google.com/go/gkehub v0.14.1/go.mod h1:VEXKIJZ2avzrbd7u+zeMtW00Y8ddk/4V9511C9CQGTY=
-cloud.google.com/go/gkehub v0.14.4/go.mod h1:Xispfu2MqnnFt8rV/2/3o73SK1snL8s9dYJ9G2oQMfc=
-cloud.google.com/go/gkehub v0.14.5/go.mod h1:6bzqxM+a+vEH/h8W8ec4OJl4r36laxTs3A/fMNHJ0wA=
-cloud.google.com/go/gkemulticloud v0.5.0 h1:8I84Q4vl02rJRsFiinBxl7WCozfdLlUVBQuSrqr9Wtk=
-cloud.google.com/go/gkemulticloud v0.6.1/go.mod h1:kbZ3HKyTsiwqKX7Yw56+wUGwwNZViRnxWK2DVknXWfw=
-cloud.google.com/go/gkemulticloud v1.0.0/go.mod h1:kbZ3HKyTsiwqKX7Yw56+wUGwwNZViRnxWK2DVknXWfw=
-cloud.google.com/go/gkemulticloud v1.0.3/go.mod h1:7NpJBN94U6DY1xHIbsDqB2+TFZUfjLUKLjUX8NGLor0=
-cloud.google.com/go/gkemulticloud v1.1.0/go.mod h1:7NpJBN94U6DY1xHIbsDqB2+TFZUfjLUKLjUX8NGLor0=
-cloud.google.com/go/gkemulticloud v1.1.1/go.mod h1:C+a4vcHlWeEIf45IB5FFR5XGjTeYhF83+AYIpTy4i2Q=
-cloud.google.com/go/grafeas v0.2.0 h1:CYjC+xzdPvbV65gi6Dr4YowKcmLo045pm18L0DhdELM=
-cloud.google.com/go/gsuiteaddons v1.5.0 h1:1mvhXqJzV0Vg5Fa95QwckljODJJfDFXV4pn+iL50zzA=
-cloud.google.com/go/gsuiteaddons v1.6.1/go.mod h1:CodrdOqRZcLp5WOwejHWYBjZvfY0kOphkAKpF/3qdZY=
-cloud.google.com/go/gsuiteaddons v1.6.4/go.mod h1:rxtstw7Fx22uLOXBpsvb9DUbC+fiXs7rF4U29KHM/pE=
-cloud.google.com/go/gsuiteaddons v1.6.5/go.mod h1:Lo4P2IvO8uZ9W+RaC6s1JVxo42vgy+TX5a6hfBZ0ubs=
-cloud.google.com/go/iam v0.13.0 h1:+CmB+K0J/33d0zSQ9SlFWUeCCEn5XJA0ZMZ3pHE9u8k=
-cloud.google.com/go/iam v1.1.1/go.mod h1:A5avdyVL2tCppe4unb0951eI9jreack+RJ0/d+KUZOU=
-cloud.google.com/go/iam v1.1.2/go.mod h1:A5avdyVL2tCppe4unb0951eI9jreack+RJ0/d+KUZOU=
-cloud.google.com/go/iam v1.1.5/go.mod h1:rB6P/Ic3mykPbFio+vo7403drjlgvoWfYpJhMXEbzv8=
-cloud.google.com/go/iam v1.1.6/go.mod h1:O0zxdPeGBoFdWW3HWmBxJsk0pfvNM/p/qa82rWOGTwI=
-cloud.google.com/go/iap v1.7.1 h1:PxVHFuMxmSZyfntKXHXhd8bo82WJ+LcATenq7HLdVnU=
-cloud.google.com/go/iap v1.8.1/go.mod h1:sJCbeqg3mvWLqjZNsI6dfAtbbV1DL2Rl7e1mTyXYREQ=
-cloud.google.com/go/iap v1.9.0/go.mod h1:01OFxd1R+NFrg78S+hoPV5PxEzv22HXaNqUUlmNHFuY=
-cloud.google.com/go/iap v1.9.3/go.mod h1:DTdutSZBqkkOm2HEOTBzhZxh2mwwxshfD/h3yofAiCw=
-cloud.google.com/go/iap v1.9.4/go.mod h1:vO4mSq0xNf/Pu6E5paORLASBwEmphXEjgCFg7aeNu1w=
-cloud.google.com/go/ids v1.3.0 h1:fodnCDtOXuMmS8LTC2y3h8t24U8F3eKWfhi+3LY6Qf0=
-cloud.google.com/go/ids v1.4.1/go.mod h1:np41ed8YMU8zOgv53MMMoCntLTn2lF+SUzlM+O3u/jw=
-cloud.google.com/go/ids v1.4.4/go.mod h1:z+WUc2eEl6S/1aZWzwtVNWoSZslgzPxAboS0lZX0HjI=
-cloud.google.com/go/ids v1.4.5/go.mod h1:p0ZnyzjMWxww6d2DvMGnFwCsSxDJM666Iir1bK1UuBo=
-cloud.google.com/go/iot v1.6.0 h1:39W5BFSarRNZfVG0eXI5LYux+OVQT8GkgpHCnrZL2vM=
-cloud.google.com/go/iot v1.7.1/go.mod h1:46Mgw7ev1k9KqK1ao0ayW9h0lI+3hxeanz+L1zmbbbk=
-cloud.google.com/go/iot v1.7.4/go.mod h1:3TWqDVvsddYBG++nHSZmluoCAVGr1hAcabbWZNKEZLk=
-cloud.google.com/go/iot v1.7.5/go.mod h1:nq3/sqTz3HGaWJi1xNiX7F41ThOzpud67vwk0YsSsqs=
-cloud.google.com/go/kms v1.10.1 h1:7hm1bRqGCA1GBRQUrp831TwJ9TWhP+tvLuP497CQS2g=
-cloud.google.com/go/kms v1.12.1/go.mod h1:c9J991h5DTl+kg7gi3MYomh12YEENGrf48ee/N/2CDM=
-cloud.google.com/go/kms v1.15.2/go.mod h1:3hopT4+7ooWRCjc2DxgnpESFxhIraaI2IpAVUEhbT/w=
-cloud.google.com/go/kms v1.15.5/go.mod h1:cU2H5jnp6G2TDpUGZyqTCoy1n16fbubHZjmVXSMtwDI=
-cloud.google.com/go/kms v1.15.7/go.mod h1:ub54lbsa6tDkUwnu4W7Yt1aAIFLnspgh0kPGToDukeI=
-cloud.google.com/go/language v1.9.0 h1:7Ulo2mDk9huBoBi8zCE3ONOoBrL6UXfAI71CLQ9GEIM=
-cloud.google.com/go/language v1.10.1/go.mod h1:CPp94nsdVNiQEt1CNjF5WkTcisLiHPyIbMhvR8H2AW0=
-cloud.google.com/go/language v1.11.0/go.mod h1:uDx+pFDdAKTY8ehpWbiXyQdz8tDSYLJbQcXsCkjYyvQ=
-cloud.google.com/go/language v1.12.2/go.mod h1:9idWapzr/JKXBBQ4lWqVX/hcadxB194ry20m/bTrhWc=
-cloud.google.com/go/language v1.12.3/go.mod h1:evFX9wECX6mksEva8RbRnr/4wi/vKGYnAJrTRXU8+f8=
-cloud.google.com/go/lifesciences v0.8.0 h1:uWrMjWTsGjLZpCTWEAzYvyXj+7fhiZST45u9AgasasI=
-cloud.google.com/go/lifesciences v0.9.1/go.mod h1:hACAOd1fFbCGLr/+weUKRAJas82Y4vrL3O5326N//Wc=
-cloud.google.com/go/lifesciences v0.9.4/go.mod h1:bhm64duKhMi7s9jR9WYJYvjAFJwRqNj+Nia7hF0Z7JA=
-cloud.google.com/go/lifesciences v0.9.5/go.mod h1:OdBm0n7C0Osh5yZB7j9BXyrMnTRGBJIZonUMxo5CzPw=
-cloud.google.com/go/logging v1.7.0 h1:CJYxlNNNNAMkHp9em/YEXcfJg+rPDg7YfwoRpMU+t5I=
-cloud.google.com/go/logging v1.8.1/go.mod h1:TJjR+SimHwuC8MZ9cjByQulAMgni+RkXeI3wwctHJEI=
-cloud.google.com/go/logging v1.9.0/go.mod h1:1Io0vnZv4onoUnsVUQY3HZ3Igb1nBchky0A0y7BBBhE=
-cloud.google.com/go/longrunning v0.4.1 h1:v+yFJOfKC3yZdY6ZUI933pIYdhyhV8S3NpWrXWmg7jM=
-cloud.google.com/go/longrunning v0.5.0/go.mod h1:0JNuqRShmscVAhIACGtskSAWtqtOoPkwP0YF1oVEchc=
-cloud.google.com/go/longrunning v0.5.1/go.mod h1:spvimkwdz6SPWKEt/XBij79E9fiTkHSQl/fRUUQJYJc=
-cloud.google.com/go/longrunning v0.5.2/go.mod h1:nqo6DQbNV2pXhGDbDMoN2bWz68MjZUzqv2YttZiveCs=
-cloud.google.com/go/longrunning v0.5.4/go.mod h1:zqNVncI0BOP8ST6XQD1+VcvuShMmq7+xFSzOL++V0dI=
-cloud.google.com/go/longrunning v0.5.5/go.mod h1:WV2LAxD8/rg5Z1cNW6FJ/ZpX4E4VnDnoTk0yawPBB7s=
-cloud.google.com/go/managedidentities v1.5.0 h1:ZRQ4k21/jAhrHBVKl/AY7SjgzeJwG1iZa+mJ82P+VNg=
-cloud.google.com/go/managedidentities v1.6.1/go.mod h1:h/irGhTN2SkZ64F43tfGPMbHnypMbu4RB3yl8YcuEak=
-cloud.google.com/go/managedidentities v1.6.4/go.mod h1:WgyaECfHmF00t/1Uk8Oun3CQ2PGUtjc3e9Alh79wyiM=
-cloud.google.com/go/managedidentities v1.6.5/go.mod h1:fkFI2PwwyRQbjLxlm5bQ8SjtObFMW3ChBGNqaMcgZjI=
-cloud.google.com/go/maps v0.7.0 h1:mv9YaczD4oZBZkM5XJl6fXQ984IkJNHPwkc8MUsdkBo=
-cloud.google.com/go/maps v1.4.0/go.mod h1:6mWTUv+WhnOwAgjVsSW2QPPECmW+s3PcRyOa9vgG/5s=
-cloud.google.com/go/maps v1.6.1/go.mod h1:4+buOHhYXFBp58Zj/K+Lc1rCmJssxxF4pJ5CJnhdz18=
-cloud.google.com/go/maps v1.6.3/go.mod h1:VGAn809ADswi1ASofL5lveOHPnE6Rk/SFTTBx1yuOLw=
-cloud.google.com/go/maps v1.6.4/go.mod h1:rhjqRy8NWmDJ53saCfsXQ0LKwBHfi6OSh5wkq6BaMhI=
-cloud.google.com/go/mediatranslation v0.7.0 h1:anPxH+/WWt8Yc3EdoEJhPMBRF7EhIdz426A+tuoA0OU=
-cloud.google.com/go/mediatranslation v0.8.1/go.mod h1:L/7hBdEYbYHQJhX2sldtTO5SZZ1C1vkapubj0T2aGig=
-cloud.google.com/go/mediatranslation v0.8.4/go.mod h1:9WstgtNVAdN53m6TQa5GjIjLqKQPXe74hwSCxUP6nj4=
-cloud.google.com/go/mediatranslation v0.8.5/go.mod h1:y7kTHYIPCIfgyLbKncgqouXJtLsU+26hZhHEEy80fSs=
-cloud.google.com/go/memcache v1.9.0 h1:8/VEmWCpnETCrBwS3z4MhT+tIdKgR1Z4Tr2tvYH32rg=
-cloud.google.com/go/memcache v1.10.1/go.mod h1:47YRQIarv4I3QS5+hoETgKO40InqzLP6kpNLvyXuyaA=
-cloud.google.com/go/memcache v1.10.4/go.mod h1:v/d8PuC8d1gD6Yn5+I3INzLR01IDn0N4Ym56RgikSI0=
-cloud.google.com/go/memcache v1.10.5/go.mod h1:/FcblbNd0FdMsx4natdj+2GWzTq+cjZvMa1I+9QsuMA=
-cloud.google.com/go/metastore v1.10.0 h1:QCFhZVe2289KDBQ7WxaHV2rAmPrmRAdLC6gbjUd3HPo=
-cloud.google.com/go/metastore v1.11.1/go.mod h1:uZuSo80U3Wd4zi6C22ZZliOUJ3XeM/MlYi/z5OAOWRA=
-cloud.google.com/go/metastore v1.12.0/go.mod h1:uZuSo80U3Wd4zi6C22ZZliOUJ3XeM/MlYi/z5OAOWRA=
-cloud.google.com/go/metastore v1.13.3/go.mod h1:K+wdjXdtkdk7AQg4+sXS8bRrQa9gcOr+foOMF2tqINE=
-cloud.google.com/go/metastore v1.13.4/go.mod h1:FMv9bvPInEfX9Ac1cVcRXp8EBBQnBcqH6gz3KvJ9BAE=
-cloud.google.com/go/monitoring v1.13.0 h1:2qsrgXGVoRXpP7otZ14eE1I568zAa92sJSDPyOJvwjM=
-cloud.google.com/go/monitoring v1.15.1/go.mod h1:lADlSAlFdbqQuwwpaImhsJXu1QSdd3ojypXrFSMr2rM=
-cloud.google.com/go/monitoring v1.16.0/go.mod h1:Ptp15HgAyM1fNICAojDMoNc/wUmn67mLHQfyqbw+poY=
-cloud.google.com/go/monitoring v1.16.3/go.mod h1:KwSsX5+8PnXv5NJnICZzW2R8pWTis8ypC4zmdRD63Tw=
-cloud.google.com/go/monitoring v1.17.0/go.mod h1:KwSsX5+8PnXv5NJnICZzW2R8pWTis8ypC4zmdRD63Tw=
-cloud.google.com/go/monitoring v1.18.0/go.mod h1:c92vVBCeq/OB4Ioyo+NbN2U7tlg5ZH41PZcdvfc+Lcg=
-cloud.google.com/go/networkconnectivity v1.11.0 h1:ZD6b4Pk1jEtp/cx9nx0ZYcL3BKqDa+KixNDZ6Bjs1B8=
-cloud.google.com/go/networkconnectivity v1.12.1/go.mod h1:PelxSWYM7Sh9/guf8CFhi6vIqf19Ir/sbfZRUwXh92E=
-cloud.google.com/go/networkconnectivity v1.13.0/go.mod h1:SAnGPes88pl7QRLUen2HmcBSE9AowVAcdug8c0RSBFk=
-cloud.google.com/go/networkconnectivity v1.14.3/go.mod h1:4aoeFdrJpYEXNvrnfyD5kIzs8YtHg945Og4koAjHQek=
-cloud.google.com/go/networkconnectivity v1.14.4/go.mod h1:PU12q++/IMnDJAB+3r+tJtuCXCfwfN+C6Niyj6ji1Po=
-cloud.google.com/go/networkmanagement v1.6.0 h1:8KWEUNGcpSX9WwZXq7FtciuNGPdPdPN/ruDm769yAEM=
-cloud.google.com/go/networkmanagement v1.8.0/go.mod h1:Ho/BUGmtyEqrttTgWEe7m+8vDdK74ibQc+Be0q7Fof0=
-cloud.google.com/go/networkmanagement v1.9.0/go.mod h1:UTUaEU9YwbCAhhz3jEOHr+2/K/MrBk2XxOLS89LQzFw=
-cloud.google.com/go/networkmanagement v1.9.3/go.mod h1:y7WMO1bRLaP5h3Obm4tey+NquUvB93Co1oh4wpL+XcU=
-cloud.google.com/go/networkmanagement v1.9.4/go.mod h1:daWJAl0KTFytFL7ar33I6R/oNBH8eEOX/rBNHrC/8TA=
-cloud.google.com/go/networksecurity v0.8.0 h1:sOc42Ig1K2LiKlzG71GUVloeSJ0J3mffEBYmvu+P0eo=
-cloud.google.com/go/networksecurity v0.9.1/go.mod h1:MCMdxOKQ30wsBI1eI659f9kEp4wuuAueoC9AJKSPWZQ=
-cloud.google.com/go/networksecurity v0.9.4/go.mod h1:E9CeMZ2zDsNBkr8axKSYm8XyTqNhiCHf1JO/Vb8mD1w=
-cloud.google.com/go/networksecurity v0.9.5/go.mod h1:KNkjH/RsylSGyyZ8wXpue8xpCEK+bTtvof8SBfIhMG8=
-cloud.google.com/go/notebooks v1.8.0 h1:Kg2K3K7CbSXYJHZ1aGQpf1xi5x2GUvQWf2sFVuiZh8M=
-cloud.google.com/go/notebooks v1.9.1/go.mod h1:zqG9/gk05JrzgBt4ghLzEepPHNwE5jgPcHZRKhlC1A8=
-cloud.google.com/go/notebooks v1.10.0/go.mod h1:SOPYMZnttHxqot0SGSFSkRrwE29eqnKPBJFqgWmiK2k=
-cloud.google.com/go/notebooks v1.11.2/go.mod h1:z0tlHI/lREXC8BS2mIsUeR3agM1AkgLiS+Isov3SS70=
-cloud.google.com/go/notebooks v1.11.3/go.mod h1:0wQyI2dQC3AZyQqWnRsp+yA+kY4gC7ZIVP4Qg3AQcgo=
-cloud.google.com/go/optimization v1.3.1 h1:dj8O4VOJRB4CUwZXdmwNViH1OtI0WtWL867/lnYH248=
-cloud.google.com/go/optimization v1.4.1/go.mod h1:j64vZQP7h9bO49m2rVaTVoNM0vEBEN5eKPUPbZyXOrk=
-cloud.google.com/go/optimization v1.5.0/go.mod h1:evo1OvTxeBRBu6ydPlrIRizKY/LJKo/drDMMRKqGEUU=
-cloud.google.com/go/optimization v1.6.2/go.mod h1:mWNZ7B9/EyMCcwNl1frUGEuY6CPijSkz88Fz2vwKPOY=
-cloud.google.com/go/optimization v1.6.3/go.mod h1:8ve3svp3W6NFcAEFr4SfJxrldzhUl4VMUJmhrqVKtYA=
-cloud.google.com/go/orchestration v1.6.0 h1:Vw+CEXo8M/FZ1rb4EjcLv0gJqqw89b7+g+C/EmniTb8=
-cloud.google.com/go/orchestration v1.8.1/go.mod h1:4sluRF3wgbYVRqz7zJ1/EUNc90TTprliq9477fGobD8=
-cloud.google.com/go/orchestration v1.8.4/go.mod h1:d0lywZSVYtIoSZXb0iFjv9SaL13PGyVOKDxqGxEf/qI=
-cloud.google.com/go/orchestration v1.8.5/go.mod h1:C1J7HesE96Ba8/hZ71ISTV2UAat0bwN+pi85ky38Yq8=
-cloud.google.com/go/orgpolicy v1.10.0 h1:XDriMWug7sd0kYT1QKofRpRHzjad0bK8Q8uA9q+XrU4=
-cloud.google.com/go/orgpolicy v1.11.1/go.mod h1:8+E3jQcpZJQliP+zaFfayC2Pg5bmhuLK755wKhIIUCE=
-cloud.google.com/go/orgpolicy v1.11.4/go.mod h1:0+aNV/nrfoTQ4Mytv+Aw+stBDBjNf4d8fYRA9herfJI=
-cloud.google.com/go/orgpolicy v1.12.0/go.mod h1:0+aNV/nrfoTQ4Mytv+Aw+stBDBjNf4d8fYRA9herfJI=
-cloud.google.com/go/orgpolicy v1.12.1/go.mod h1:aibX78RDl5pcK3jA8ysDQCFkVxLj3aOQqrbBaUL2V5I=
-cloud.google.com/go/osconfig v1.11.0 h1:PkSQx4OHit5xz2bNyr11KGcaFccL5oqglFPdTboyqwQ=
-cloud.google.com/go/osconfig v1.12.1/go.mod h1:4CjBxND0gswz2gfYRCUoUzCm9zCABp91EeTtWXyz0tE=
-cloud.google.com/go/osconfig v1.12.4/go.mod h1:B1qEwJ/jzqSRslvdOCI8Kdnp0gSng0xW4LOnIebQomA=
-cloud.google.com/go/osconfig v1.12.5/go.mod h1:D9QFdxzfjgw3h/+ZaAb5NypM8bhOMqBzgmbhzWViiW8=
-cloud.google.com/go/oslogin v1.9.0 h1:whP7vhpmc+ufZa90eVpkfbgzJRK/Xomjz+XCD4aGwWw=
-cloud.google.com/go/oslogin v1.10.1/go.mod h1:x692z7yAue5nE7CsSnoG0aaMbNoRJRXO4sn73R+ZqAs=
-cloud.google.com/go/oslogin v1.12.2/go.mod h1:CQ3V8Jvw4Qo4WRhNPF0o+HAM4DiLuE27Ul9CX9g2QdY=
-cloud.google.com/go/oslogin v1.13.0/go.mod h1:xPJqLwpTZ90LSE5IL1/svko+6c5avZLluiyylMb/sRA=
-cloud.google.com/go/oslogin v1.13.1/go.mod h1:vS8Sr/jR7QvPWpCjNqy6LYZr5Zs1e8ZGW/KPn9gmhws=
-cloud.google.com/go/phishingprotection v0.7.0 h1:l6tDkT7qAEV49MNEJkEJTB6vOO/onbSOcNtAT09HPuA=
-cloud.google.com/go/phishingprotection v0.8.1/go.mod h1:AxonW7GovcA8qdEk13NfHq9hNx5KPtfxXNeUxTDxB6I=
-cloud.google.com/go/phishingprotection v0.8.4/go.mod h1:6b3kNPAc2AQ6jZfFHioZKg9MQNybDg4ixFd4RPZZ2nE=
-cloud.google.com/go/phishingprotection v0.8.5/go.mod h1:g1smd68F7mF1hgQPuYn3z8HDbNre8L6Z0b7XMYFmX7I=
-cloud.google.com/go/policytroubleshooter v1.6.0 h1:yKAGC4p9O61ttZUswaq9GAn1SZnEzTd0vUYXD7ZBT7Y=
-cloud.google.com/go/policytroubleshooter v1.7.1/go.mod h1:0NaT5v3Ag1M7U5r0GfDCpUFkWd9YqpubBWsQlhanRv0=
-cloud.google.com/go/policytroubleshooter v1.9.0/go.mod h1:+E2Lga7TycpeSTj2FsH4oXxTnrbHJGRlKhVZBLGgU64=
-cloud.google.com/go/policytroubleshooter v1.10.2/go.mod h1:m4uF3f6LseVEnMV6nknlN2vYGRb+75ylQwJdnOXfnv0=
-cloud.google.com/go/policytroubleshooter v1.10.3/go.mod h1:+ZqG3agHT7WPb4EBIRqUv4OyIwRTZvsVDHZ8GlZaoxk=
-cloud.google.com/go/privatecatalog v0.8.0 h1:EPEJ1DpEGXLDnmc7mnCAqFmkwUJbIsaLAiLHVOkkwtc=
-cloud.google.com/go/privatecatalog v0.9.1/go.mod h1:0XlDXW2unJXdf9zFz968Hp35gl/bhF4twwpXZAW50JA=
-cloud.google.com/go/privatecatalog v0.9.4/go.mod h1:SOjm93f+5hp/U3PqMZAHTtBtluqLygrDrVO8X8tYtG0=
-cloud.google.com/go/privatecatalog v0.9.5/go.mod h1:fVWeBOVe7uj2n3kWRGlUQqR/pOd450J9yZoOECcQqJk=
-cloud.google.com/go/pubsub v1.30.0 h1:vCge8m7aUKBJYOgrZp7EsNDf6QMd2CAlXZqWTn3yq6s=
-cloud.google.com/go/pubsub v1.32.0/go.mod h1:f+w71I33OMyxf9VpMVcZbnG5KSUkCOUHYpFd5U1GdRc=
-cloud.google.com/go/pubsub v1.33.0/go.mod h1:f+w71I33OMyxf9VpMVcZbnG5KSUkCOUHYpFd5U1GdRc=
-cloud.google.com/go/pubsub v1.34.0/go.mod h1:alj4l4rBg+N3YTFDDC+/YyFTs6JAjam2QfYsddcAW4c=
-cloud.google.com/go/pubsub v1.36.1/go.mod h1:iYjCa9EzWOoBiTdd4ps7QoMtMln5NwaZQpK1hbRfBDE=
-cloud.google.com/go/pubsublite v1.7.0 h1:cb9fsrtpINtETHiJ3ECeaVzrfIVhcGjhhJEjybHXHao=
-cloud.google.com/go/pubsublite v1.8.1/go.mod h1:fOLdU4f5xldK4RGJrBMm+J7zMWNj/k4PxwEZXy39QS0=
-cloud.google.com/go/recaptchaenterprise v1.3.1 h1:u6EznTGzIdsyOsvm+Xkw0aSuKFXQlyjGE9a4exk6iNQ=
-cloud.google.com/go/recaptchaenterprise/v2 v2.7.0 h1:6iOCujSNJ0YS7oNymI64hXsjGq60T4FK1zdLugxbzvU=
-cloud.google.com/go/recaptchaenterprise/v2 v2.7.2/go.mod h1:kR0KjsJS7Jt1YSyWFkseQ756D45kaYNTlDPPaRAvDBU=
-cloud.google.com/go/recaptchaenterprise/v2 v2.8.3/go.mod h1:Dak54rw6lC2gBY8FBznpOCAR58wKf+R+ZSJRoeJok4w=
-cloud.google.com/go/recaptchaenterprise/v2 v2.9.0/go.mod h1:Dak54rw6lC2gBY8FBznpOCAR58wKf+R+ZSJRoeJok4w=
-cloud.google.com/go/recaptchaenterprise/v2 v2.9.2/go.mod h1:trwwGkfhCmp05Ll5MSJPXY7yvnO0p4v3orGANAFHAuU=
-cloud.google.com/go/recommendationengine v0.7.0 h1:VibRFCwWXrFebEWKHfZAt2kta6pS7Tlimsnms0fjv7k=
-cloud.google.com/go/recommendationengine v0.8.1/go.mod h1:MrZihWwtFYWDzE6Hz5nKcNz3gLizXVIDI/o3G1DLcrE=
-cloud.google.com/go/recommendationengine v0.8.4/go.mod h1:GEteCf1PATl5v5ZsQ60sTClUE0phbWmo3rQ1Js8louU=
-cloud.google.com/go/recommendationengine v0.8.5/go.mod h1:A38rIXHGFvoPvmy6pZLozr0g59NRNREz4cx7F58HAsQ=
-cloud.google.com/go/recommender v1.9.0 h1:ZnFRY5R6zOVk2IDS1Jbv5Bw+DExCI5rFumsTnMXiu/A=
-cloud.google.com/go/recommender v1.10.1/go.mod h1:XFvrE4Suqn5Cq0Lf+mCP6oBHD/yRMA8XxP5sb7Q7gpA=
-cloud.google.com/go/recommender v1.11.0/go.mod h1:kPiRQhPyTJ9kyXPCG6u/dlPLbYfFlkwHNRwdzPVAoII=
-cloud.google.com/go/recommender v1.11.3/go.mod h1:+FJosKKJSId1MBFeJ/TTyoGQZiEelQQIZMKYYD8ruK4=
-cloud.google.com/go/recommender v1.12.0/go.mod h1:+FJosKKJSId1MBFeJ/TTyoGQZiEelQQIZMKYYD8ruK4=
-cloud.google.com/go/recommender v1.12.1/go.mod h1:gf95SInWNND5aPas3yjwl0I572dtudMhMIG4ni8nr+0=
-cloud.google.com/go/redis v1.11.0 h1:JoAd3SkeDt3rLFAAxEvw6wV4t+8y4ZzfZcZmddqphQ8=
-cloud.google.com/go/redis v1.13.1/go.mod h1:VP7DGLpE91M6bcsDdMuyCm2hIpB6Vp2hI090Mfd1tcg=
-cloud.google.com/go/redis v1.14.1/go.mod h1:MbmBxN8bEnQI4doZPC1BzADU4HGocHBk2de3SbgOkqs=
-cloud.google.com/go/redis v1.14.2/go.mod h1:g0Lu7RRRz46ENdFKQ2EcQZBAJ2PtJHJLuiiRuEXwyQw=
-cloud.google.com/go/resourcemanager v1.7.0 h1:NRM0p+RJkaQF9Ee9JMnUV9BQ2QBIOq/v8M+Pbv/wmCs=
-cloud.google.com/go/resourcemanager v1.9.1/go.mod h1:dVCuosgrh1tINZ/RwBufr8lULmWGOkPS8gL5gqyjdT8=
-cloud.google.com/go/resourcemanager v1.9.4/go.mod h1:N1dhP9RFvo3lUfwtfLWVxfUWq8+KUQ+XLlHLH3BoFJ0=
-cloud.google.com/go/resourcemanager v1.9.5/go.mod h1:hep6KjelHA+ToEjOfO3garMKi/CLYwTqeAw7YiEI9x8=
-cloud.google.com/go/resourcesettings v1.5.0 h1:8Dua37kQt27CCWHm4h/Q1XqCF6ByD7Ouu49xg95qJzI=
-cloud.google.com/go/resourcesettings v1.6.1/go.mod h1:M7mk9PIZrC5Fgsu1kZJci6mpgN8o0IUzVx3eJU3y4Jw=
-cloud.google.com/go/resourcesettings v1.6.4/go.mod h1:pYTTkWdv2lmQcjsthbZLNBP4QW140cs7wqA3DuqErVI=
-cloud.google.com/go/resourcesettings v1.6.5/go.mod h1:WBOIWZraXZOGAgoR4ukNj0o0HiSMO62H9RpFi9WjP9I=
-cloud.google.com/go/retail v1.12.0 h1:1Dda2OpFNzIb4qWgFZjYlpP7sxX3aLeypKG6A3H4Yys=
-cloud.google.com/go/retail v1.14.1/go.mod h1:y3Wv3Vr2k54dLNIrCzenyKG8g8dhvhncT2NcNjb/6gE=
-cloud.google.com/go/retail v1.14.4/go.mod h1:l/N7cMtY78yRnJqp5JW8emy7MB1nz8E4t2yfOmklYfg=
-cloud.google.com/go/retail v1.16.0/go.mod h1:LW7tllVveZo4ReWt68VnldZFWJRzsh9np+01J9dYWzE=
-cloud.google.com/go/run v0.9.0 h1:ydJQo+k+MShYnBfhaRHSZYeD/SQKZzZLAROyfpeD9zw=
-cloud.google.com/go/run v1.2.0/go.mod h1:36V1IlDzQ0XxbQjUx6IYbw8H3TJnWvhii963WW3B/bo=
-cloud.google.com/go/run v1.3.3/go.mod h1:WSM5pGyJ7cfYyYbONVQBN4buz42zFqwG67Q3ch07iK4=
-cloud.google.com/go/run v1.3.4/go.mod h1:FGieuZvQ3tj1e9GnzXqrMABSuir38AJg5xhiYq+SF3o=
-cloud.google.com/go/scheduler v1.9.0 h1:NpQAHtx3sulByTLe2dMwWmah8PWgeoieFPpJpArwFV0=
-cloud.google.com/go/scheduler v1.10.1/go.mod h1:R63Ldltd47Bs4gnhQkmNDse5w8gBRrhObZ54PxgR2Oo=
-cloud.google.com/go/scheduler v1.10.4/go.mod h1:MTuXcrJC9tqOHhixdbHDFSIuh7xZF2IysiINDuiq6NI=
-cloud.google.com/go/scheduler v1.10.5/go.mod h1:MTuXcrJC9tqOHhixdbHDFSIuh7xZF2IysiINDuiq6NI=
-cloud.google.com/go/scheduler v1.10.6/go.mod h1:pe2pNCtJ+R01E06XCDOJs1XvAMbv28ZsQEbqknxGOuE=
-cloud.google.com/go/secretmanager v1.10.0 h1:pu03bha7ukxF8otyPKTFdDz+rr9sE3YauS5PliDXK60=
-cloud.google.com/go/secretmanager v1.11.1/go.mod h1:znq9JlXgTNdBeQk9TBW/FnR/W4uChEKGeqQWAJ8SXFw=
-cloud.google.com/go/secretmanager v1.11.4/go.mod h1:wreJlbS9Zdq21lMzWmJ0XhWW2ZxgPeahsqeV/vZoJ3w=
-cloud.google.com/go/secretmanager v1.11.5/go.mod h1:eAGv+DaCHkeVyQi0BeXgAHOU0RdrMeZIASKc+S7VqH4=
-cloud.google.com/go/security v1.13.0 h1:PYvDxopRQBfYAXKAuDpFCKBvDOWPWzp9k/H5nB3ud3o=
-cloud.google.com/go/security v1.15.1/go.mod h1:MvTnnbsWnehoizHi09zoiZob0iCHVcL4AUBj76h9fXA=
-cloud.google.com/go/security v1.15.4/go.mod h1:oN7C2uIZKhxCLiAAijKUCuHLZbIt/ghYEo8MqwD/Ty4=
-cloud.google.com/go/security v1.15.5/go.mod h1:KS6X2eG3ynWjqcIX976fuToN5juVkF6Ra6c7MPnldtc=
-cloud.google.com/go/securitycenter v1.19.0 h1:AF3c2s3awNTMoBtMX3oCUoOMmGlYxGOeuXSYHNBkf14=
-cloud.google.com/go/securitycenter v1.23.0/go.mod h1:8pwQ4n+Y9WCWM278R8W3nF65QtY172h4S8aXyI9/hsQ=
-cloud.google.com/go/securitycenter v1.24.2/go.mod h1:l1XejOngggzqwr4Fa2Cn+iWZGf+aBLTXtB/vXjy5vXM=
-cloud.google.com/go/securitycenter v1.24.3/go.mod h1:l1XejOngggzqwr4Fa2Cn+iWZGf+aBLTXtB/vXjy5vXM=
-cloud.google.com/go/securitycenter v1.24.4/go.mod h1:PSccin+o1EMYKcFQzz9HMMnZ2r9+7jbc+LvPjXhpwcU=
-cloud.google.com/go/servicecontrol v1.11.1 h1:d0uV7Qegtfaa7Z2ClDzr9HJmnbJW7jn0WhZ7wOX6hLE=
-cloud.google.com/go/servicedirectory v1.9.0 h1:SJwk0XX2e26o25ObYUORXx6torSFiYgsGkWSkZgkoSU=
-cloud.google.com/go/servicedirectory v1.10.1/go.mod h1:Xv0YVH8s4pVOwfM/1eMTl0XJ6bzIOSLDt8f8eLaGOxQ=
-cloud.google.com/go/servicedirectory v1.11.0/go.mod h1:Xv0YVH8s4pVOwfM/1eMTl0XJ6bzIOSLDt8f8eLaGOxQ=
-cloud.google.com/go/servicedirectory v1.11.3/go.mod h1:LV+cHkomRLr67YoQy3Xq2tUXBGOs5z5bPofdq7qtiAw=
-cloud.google.com/go/servicedirectory v1.11.4/go.mod h1:Bz2T9t+/Ehg6x+Y7Ycq5xiShYLD96NfEsWNHyitj1qM=
-cloud.google.com/go/servicemanagement v1.8.0 h1:fopAQI/IAzlxnVeiKn/8WiV6zKndjFkvi+gzu+NjywY=
-cloud.google.com/go/serviceusage v1.6.0 h1:rXyq+0+RSIm3HFypctp7WoXxIA563rn206CfMWdqXX4=
-cloud.google.com/go/shell v1.6.0 h1:wT0Uw7ib7+AgZST9eCDygwTJn4+bHMDtZo5fh7kGWDU=
-cloud.google.com/go/shell v1.7.1/go.mod h1:u1RaM+huXFaTojTbW4g9P5emOrrmLE69KrxqQahKn4g=
-cloud.google.com/go/shell v1.7.4/go.mod h1:yLeXB8eKLxw0dpEmXQ/FjriYrBijNsONpwnWsdPqlKM=
-cloud.google.com/go/shell v1.7.5/go.mod h1:hL2++7F47/IfpfTO53KYf1EC+F56k3ThfNEXd4zcuiE=
-cloud.google.com/go/spanner v1.45.0 h1:7VdjZ8zj4sHbDw55atp5dfY6kn1j9sam9DRNpPQhqR4=
-cloud.google.com/go/spanner v1.47.0/go.mod h1:IXsJwVW2j4UKs0eYDqodab6HgGuA1bViSqW4uH9lfUI=
-cloud.google.com/go/spanner v1.49.0/go.mod h1:eGj9mQGK8+hkgSVbHNQ06pQ4oS+cyc4tXXd6Dif1KoM=
-cloud.google.com/go/spanner v1.51.0/go.mod h1:c5KNo5LQ1X5tJwma9rSQZsXNBDNvj4/n8BVc3LNahq0=
-cloud.google.com/go/spanner v1.55.0/go.mod h1:HXEznMUVhC+PC+HDyo9YFG2Ajj5BQDkcbqB9Z2Ffxi0=
-cloud.google.com/go/spanner v1.56.0/go.mod h1:DndqtUKQAt3VLuV2Le+9Y3WTnq5cNKrnLb/Piqcj+h0=
-cloud.google.com/go/spanner v1.57.0/go.mod h1:aXQ5QDdhPRIqVhYmnkAdwPYvj/DRN0FguclhEWw+jOo=
-cloud.google.com/go/speech v1.15.0 h1:JEVoWGNnTF128kNty7T4aG4eqv2z86yiMJPT9Zjp+iw=
-cloud.google.com/go/speech v1.17.1/go.mod h1:8rVNzU43tQvxDaGvqOhpDqgkJTFowBpDvCJ14kGlJYo=
-cloud.google.com/go/speech v1.19.0/go.mod h1:8rVNzU43tQvxDaGvqOhpDqgkJTFowBpDvCJ14kGlJYo=
-cloud.google.com/go/speech v1.20.1/go.mod h1:wwolycgONvfz2EDU8rKuHRW3+wc9ILPsAWoikBEWavY=
-cloud.google.com/go/speech v1.21.0/go.mod h1:wwolycgONvfz2EDU8rKuHRW3+wc9ILPsAWoikBEWavY=
-cloud.google.com/go/speech v1.21.1/go.mod h1:E5GHZXYQlkqWQwY5xRSLHw2ci5NMQNG52FfMU1aZrIA=
-cloud.google.com/go/storage v1.29.0 h1:6weCgzRvMg7lzuUurI4697AqIRPU1SvzHhynwpW31jI=
-cloud.google.com/go/storage v1.30.1/go.mod h1:NfxhC0UJE1aXSx7CIIbCf7y9HKT7BiccwkR7+P7gN8E=
-cloud.google.com/go/storage v1.36.0/go.mod h1:M6M/3V/D3KpzMTJyPOR/HU6n2Si5QdaXYEsng2xgOs8=
-cloud.google.com/go/storagetransfer v1.8.0 h1:5T+PM+3ECU3EY2y9Brv0Sf3oka8pKmsCfpQ07+91G9o=
-cloud.google.com/go/storagetransfer v1.10.0/go.mod h1:DM4sTlSmGiNczmV6iZyceIh2dbs+7z2Ayg6YAiQlYfA=
-cloud.google.com/go/storagetransfer v1.10.3/go.mod h1:Up8LY2p6X68SZ+WToswpQbQHnJpOty/ACcMafuey8gc=
-cloud.google.com/go/storagetransfer v1.10.4/go.mod h1:vef30rZKu5HSEf/x1tK3WfWrL0XVoUQN/EPDRGPzjZs=
-cloud.google.com/go/talent v1.5.0 h1:nI9sVZPjMKiO2q3Uu0KhTDVov3Xrlpt63fghP9XjyEM=
-cloud.google.com/go/talent v1.6.2/go.mod h1:CbGvmKCG61mkdjcqTcLOkb2ZN1SrQI8MDyma2l7VD24=
-cloud.google.com/go/talent v1.6.5/go.mod h1:Mf5cma696HmE+P2BWJ/ZwYqeJXEeU0UqjHFXVLadEDI=
-cloud.google.com/go/talent v1.6.6/go.mod h1:y/WQDKrhVz12WagoarpAIyKKMeKGKHWPoReZ0g8tseQ=
-cloud.google.com/go/texttospeech v1.6.0 h1:H4g1ULStsbVtalbZGktyzXzw6jP26RjVGYx9RaYjBzc=
-cloud.google.com/go/texttospeech v1.7.1/go.mod h1:m7QfG5IXxeneGqTapXNxv2ItxP/FS0hCZBwXYqucgSk=
-cloud.google.com/go/texttospeech v1.7.4/go.mod h1:vgv0002WvR4liGuSd5BJbWy4nDn5Ozco0uJymY5+U74=
-cloud.google.com/go/texttospeech v1.7.5/go.mod h1:tzpCuNWPwrNJnEa4Pu5taALuZL4QRRLcb+K9pbhXT6M=
-cloud.google.com/go/tpu v1.5.0 h1:/34T6CbSi+kTv5E19Q9zbU/ix8IviInZpzwz3rsFE+A=
-cloud.google.com/go/tpu v1.6.1/go.mod h1:sOdcHVIgDEEOKuqUoi6Fq53MKHJAtOwtz0GuKsWSH3E=
-cloud.google.com/go/tpu v1.6.4/go.mod h1:NAm9q3Rq2wIlGnOhpYICNI7+bpBebMJbh0yyp3aNw1Y=
-cloud.google.com/go/tpu v1.6.5/go.mod h1:P9DFOEBIBhuEcZhXi+wPoVy/cji+0ICFi4TtTkMHSSs=
-cloud.google.com/go/trace v1.9.0 h1:olxC0QHC59zgJVALtgqfD9tGk0lfeCP5/AGXL3Px/no=
-cloud.google.com/go/trace v1.10.1/go.mod h1:gbtL94KE5AJLH3y+WVpfWILmqgc6dXcqgNXdOPAQTYk=
-cloud.google.com/go/trace v1.10.4/go.mod h1:Nso99EDIK8Mj5/zmB+iGr9dosS/bzWCJ8wGmE6TXNWY=
-cloud.google.com/go/trace v1.10.5/go.mod h1:9hjCV1nGBCtXbAE4YK7OqJ8pmPYSxPA0I67JwRd5s3M=
-cloud.google.com/go/translate v1.7.0 h1:GvLP4oQ4uPdChBmBaUSa/SaZxCdyWELtlAaKzpHsXdA=
-cloud.google.com/go/translate v1.8.1/go.mod h1:d1ZH5aaOA0CNhWeXeC8ujd4tdCFw8XoNWRljklu5RHs=
-cloud.google.com/go/translate v1.9.0/go.mod h1:d1ZH5aaOA0CNhWeXeC8ujd4tdCFw8XoNWRljklu5RHs=
-cloud.google.com/go/translate v1.9.3/go.mod h1:Kbq9RggWsbqZ9W5YpM94Q1Xv4dshw/gr/SHfsl5yCZ0=
-cloud.google.com/go/translate v1.10.0/go.mod h1:Kbq9RggWsbqZ9W5YpM94Q1Xv4dshw/gr/SHfsl5yCZ0=
-cloud.google.com/go/translate v1.10.1/go.mod h1:adGZcQNom/3ogU65N9UXHOnnSvjPwA/jKQUMnsYXOyk=
-cloud.google.com/go/video v1.15.0 h1:upIbnGI0ZgACm58HPjAeBMleW3sl5cT84AbYQ8PWOgM=
-cloud.google.com/go/video v1.17.1/go.mod h1:9qmqPqw/Ib2tLqaeHgtakU+l5TcJxCJbhFXM7UJjVzU=
-cloud.google.com/go/video v1.20.0/go.mod h1:U3G3FTnsvAGqglq9LxgqzOiBc/Nt8zis8S+850N2DUM=
-cloud.google.com/go/video v1.20.3/go.mod h1:TnH/mNZKVHeNtpamsSPygSR0iHtvrR/cW1/GDjN5+GU=
-cloud.google.com/go/video v1.20.4/go.mod h1:LyUVjyW+Bwj7dh3UJnUGZfyqjEto9DnrvTe1f/+QrW0=
-cloud.google.com/go/videointelligence v1.10.0 h1:Uh5BdoET8XXqXX2uXIahGb+wTKbLkGH7s4GXR58RrG8=
-cloud.google.com/go/videointelligence v1.11.1/go.mod h1:76xn/8InyQHarjTWsBR058SmlPCwQjgcvoW0aZykOvo=
-cloud.google.com/go/videointelligence v1.11.4/go.mod h1:kPBMAYsTPFiQxMLmmjpcZUMklJp3nC9+ipJJtprccD8=
-cloud.google.com/go/videointelligence v1.11.5/go.mod h1:/PkeQjpRponmOerPeJxNPuxvi12HlW7Em0lJO14FC3I=
-cloud.google.com/go/vision v1.2.0 h1:/CsSTkbmO9HC8iQpxbK8ATms3OQaX3YQUeTMGCxlaK4=
-cloud.google.com/go/vision/v2 v2.7.0 h1:8C8RXUJoflCI4yVdqhTy9tRyygSHmp60aP363z23HKg=
-cloud.google.com/go/vision/v2 v2.7.2/go.mod h1:jKa8oSYBWhYiXarHPvP4USxYANYUEdEsQrloLjrSwJU=
-cloud.google.com/go/vision/v2 v2.7.5/go.mod h1:GcviprJLFfK9OLf0z8Gm6lQb6ZFUulvpZws+mm6yPLM=
-cloud.google.com/go/vision/v2 v2.8.0/go.mod h1:ocqDiA2j97pvgogdyhoxiQp2ZkDCyr0HWpicywGGRhU=
-cloud.google.com/go/vmmigration v1.6.0 h1:Azs5WKtfOC8pxvkyrDvt7J0/4DYBch0cVbuFfCCFt5k=
-cloud.google.com/go/vmmigration v1.7.1/go.mod h1:WD+5z7a/IpZ5bKK//YmT9E047AD+rjycCAvyMxGJbro=
-cloud.google.com/go/vmmigration v1.7.4/go.mod h1:yBXCmiLaB99hEl/G9ZooNx2GyzgsjKnw5fWcINRgD70=
-cloud.google.com/go/vmmigration v1.7.5/go.mod h1:pkvO6huVnVWzkFioxSghZxIGcsstDvYiVCxQ9ZH3eYI=
-cloud.google.com/go/vmwareengine v0.3.0 h1:b0NBu7S294l0gmtrT0nOJneMYgZapr5x9tVWvgDoVEM=
-cloud.google.com/go/vmwareengine v0.4.1/go.mod h1:Px64x+BvjPZwWuc4HdmVhoygcXqEkGHXoa7uyfTgSI0=
-cloud.google.com/go/vmwareengine v1.0.0/go.mod h1:Px64x+BvjPZwWuc4HdmVhoygcXqEkGHXoa7uyfTgSI0=
-cloud.google.com/go/vmwareengine v1.0.3/go.mod h1:QSpdZ1stlbfKtyt6Iu19M6XRxjmXO+vb5a/R6Fvy2y4=
-cloud.google.com/go/vmwareengine v1.1.1/go.mod h1:nMpdsIVkUrSaX8UvmnBhzVzG7PPvNYc5BszcvIVudYs=
-cloud.google.com/go/vpcaccess v1.6.0 h1:FOe6CuiQD3BhHJWt7E8QlbBcaIzVRddupwJlp7eqmn4=
-cloud.google.com/go/vpcaccess v1.7.1/go.mod h1:FogoD46/ZU+JUBX9D606X21EnxiszYi2tArQwLY4SXs=
-cloud.google.com/go/vpcaccess v1.7.4/go.mod h1:lA0KTvhtEOb/VOdnH/gwPuOzGgM+CWsmGu6bb4IoMKk=
-cloud.google.com/go/vpcaccess v1.7.5/go.mod h1:slc5ZRvvjP78c2dnL7m4l4R9GwL3wDLcpIWz6P/ziig=
-cloud.google.com/go/webrisk v1.8.0 h1:IY+L2+UwxcVm2zayMAtBhZleecdIFLiC+QJMzgb0kT0=
-cloud.google.com/go/webrisk v1.9.1/go.mod h1:4GCmXKcOa2BZcZPn6DCEvE7HypmEJcJkr4mtM+sqYPc=
-cloud.google.com/go/webrisk v1.9.4/go.mod h1:w7m4Ib4C+OseSr2GL66m0zMBywdrVNTDKsdEsfMl7X0=
-cloud.google.com/go/webrisk v1.9.5/go.mod h1:aako0Fzep1Q714cPEM5E+mtYX8/jsfegAuS8aivxy3U=
-cloud.google.com/go/websecurityscanner v1.5.0 h1:AHC1xmaNMOZtNqxI9Rmm87IJEyPaRkOxeI0gpAacXGk=
-cloud.google.com/go/websecurityscanner v1.6.1/go.mod h1:Njgaw3rttgRHXzwCB8kgCYqv5/rGpFCsBOvPbYgszpg=
-cloud.google.com/go/websecurityscanner v1.6.4/go.mod h1:mUiyMQ+dGpPPRkHgknIZeCzSHJ45+fY4F52nZFDHm2o=
-cloud.google.com/go/websecurityscanner v1.6.5/go.mod h1:QR+DWaxAz2pWooylsBF854/Ijvuoa3FCyS1zBa1rAVQ=
-cloud.google.com/go/workflows v1.10.0 h1:FfGp9w0cYnaKZJhUOMqCOJCYT/WlvYBfTQhFWV3sRKI=
-cloud.google.com/go/workflows v1.11.1/go.mod h1:Z+t10G1wF7h8LgdY/EmRcQY8ptBD/nvofaL6FqlET6g=
-cloud.google.com/go/workflows v1.12.0/go.mod h1:PYhSk2b6DhZ508tj8HXKaBh+OFe+xdl0dHF/tJdzPQM=
-cloud.google.com/go/workflows v1.12.3/go.mod h1:fmOUeeqEwPzIU81foMjTRQIdwQHADi/vEr1cx9R1m5g=
-cloud.google.com/go/workflows v1.12.4/go.mod h1:yQ7HUqOkdJK4duVtMeBCAOPiN1ZF1E9pAMX51vpwB/w=
-dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9 h1:VpgP7xuJadIUuKccphEpTJnWhS2jkQyMt6Y7pJCD7fY=
-gioui.org v0.0.0-20210308172011-57750fc8a0a6 h1:K72hopUosKG3ntOPNG4OzzbuhxGuVf06fa2la1/H/Ho=
-git.sr.ht/~sbinet/gg v0.3.1 h1:LNhjNn8DerC8f9DHLz6lS0YYul/b602DUxDgGkd/Aik=
-github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802 h1:1BDTz0u9nC3//pOCMdNH+CiXJVYJh5UQNCOBG7jbELc=
-github.com/JohnCGriffin/overflow v0.0.0-20211019200055-46fa312c352c h1:RGWPOewvKIROun94nF7v2cua9qP+thov/7M50KEoeSU=
+cloud.google.com/go/compute/metadata v0.5.2/go.mod h1:C66sj2AluDcIqakBq/M8lw8/ybHgOZqin2obFxa/E5k=
+github.com/GoogleCloudPlatform/opentelemetry-operations-go/detectors/gcp v1.24.2/go.mod h1:itPGVDKf9cC/ov4MdvJ2QZ0khw4bfoo9jzwTJlaxy2k=
 github.com/Masterminds/semver/v3 v3.2.1/go.mod h1:qvl/7zhW3nngYb5+80sSMF+FG2BjYrf8m9wsX0PNOMQ=
-github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
-github.com/NYTimes/gziphandler v1.1.1 h1:ZUDjpQae29j0ryrS0u/B8HZfJBtBQHjqw2rQ2cqUQ3I=
 github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
-github.com/OneOfOne/xxhash v1.2.2 h1:KMrpdQIwFcEqXDklaen+P1axHaj9BSKzvpUUfnHldSE=
-github.com/ajstarks/deck v0.0.0-20200831202436-30c9fc6549a9 h1:7kQgkwGRoLzC9K0oyXdJo7nve/bynv/KwUsxbiTlzAM=
-github.com/ajstarks/deck/generate v0.0.0-20210309230005-c3f852c02e19 h1:iXUgAaqDcIUGbRoy2TdeofRG/j1zpGRSEmNK05T+bi8=
-github.com/ajstarks/svgo v0.0.0-20211024235047-1546f124cd8b h1:slYM766cy2nI3BwyRiyQj/Ud48djTMtMebDqepE95rw=
-github.com/alecthomas/kingpin/v2 v2.4.0 h1:f48lwail6p8zpO1bC4TxtqACaGqHYA22qkHjHpqDjYY=
 github.com/alecthomas/kingpin/v2 v2.4.0/go.mod h1:0gyi0zQnjuFk8xrkNKamJoyUo382HRL7ATRpFZCw6tE=
-github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751 h1:JYp7IbQjafoB+tBA3gMyHYHrpOtNuDiK/uB5uXxq5wM=
-github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137 h1:s6gZFSlWYmbqAuRjVTiNNhvNRfY2Wxp9nhfyel4rklc=
 github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137/go.mod h1:OMCwj8VM1Kc9e19TLln2VL61YJF0x1XFtfdL4JdbSyE=
-github.com/andybalholm/brotli v1.0.4 h1:V7DdXeJtZscaqfNuAdSRuRFzuiKlHSC/Zh3zl9qY3JY=
 github.com/andybalholm/brotli v1.1.0/go.mod h1:sms7XGricyQI9K10gOSf56VKKWS4oLer58Q+mhRPtnY=
-github.com/antihax/optional v1.0.0 h1:xK2lYat7ZLaVVcIuj82J8kIro4V6kDe0AUDFboUCwcg=
-github.com/antlr/antlr4/runtime/Go/antlr/v4 v4.0.0-20230305170008-8188dc5388df h1:7RFfzj4SSt6nnvCPbCqijJi1nWCd+TqAT3bYCStRC18=
-github.com/antlr/antlr4/runtime/Go/antlr/v4 v4.0.0-20230305170008-8188dc5388df/go.mod h1:pSwJ0fSY5KhvocuWSx4fz3BA8OrA1bQn+K1Eli3BRwM=
-github.com/antlr4-go/antlr/v4 v4.13.0 h1:lxCg3LAv+EUK6t1i0y1V6/SLeUi0eKEKdhQAlS8TVTI=
 github.com/antlr4-go/antlr/v4 v4.13.0/go.mod h1:pfChB/xh/Unjila75QW7+VU4TSnWnnk9UTnmpPaOR2g=
-github.com/apache/arrow/go/v10 v10.0.1 h1:n9dERvixoC/1JjDmBcs9FPaEryoANa2sCgVFo6ez9cI=
-github.com/apache/arrow/go/v11 v11.0.0 h1:hqauxvFQxww+0mEU/2XHG6LT7eZternCZq+A5Yly2uM=
-github.com/apache/thrift v0.16.0 h1:qEy6UW60iVOlUy+b9ZR0d5WzUWYGOo4HfopoyBaNmoY=
-github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5 h1:0CwZNZbxp69SHPdPJAN/hZIm0C4OItdklCFmMRWYpio=
 github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5/go.mod h1:wHh0iHkYZB8zMSxRWpUBQtwG5a7fFgvEO+odwuTv2gs=
 github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
-github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2 h1:DklsrG3dyBCFEj5IhUbnKptjxatkF07cF2ak3yi77so=
-github.com/asaskevich/govalidator v0.0.0-20230301143203-a9d515a09cc2/go.mod h1:WaHUgvxTVq04UNunO+XhnAqY/wQc+bxr74GqbsZ/Jqw=
-github.com/blang/semver v3.5.1+incompatible h1:cQNTCjp13qL8KC3Nbxr/y2Bqb63oX6wdnnjpJbkM4JQ=
-github.com/boombuler/barcode v1.0.1 h1:NDBbPmhS+EqABEs5Kg3n/5ZNjy73Pz7SIV+KCeqyXcs=
-github.com/bytedance/sonic v1.9.1 h1:6iJ6NqdoxCDr6mbY8h18oSO+cShGSMRGCEo7F2h0x8s=
 github.com/bytedance/sonic v1.9.1/go.mod h1:i736AoUSYt75HyZLoJW9ERYxcy6eaN6h4BZXU064P/U=
-github.com/cenkalti/backoff/v4 v4.2.1 h1:y4OZtCnogmCPw98Zjyt5a6+QwPLGkiQsYW5oUqylYbM=
-github.com/cenkalti/backoff/v4 v4.2.1/go.mod h1:Y3VNntkOUPxTVeUxJ/G5vcM//AlwfmyYozVcomhLiZE=
-github.com/cenkalti/backoff/v4 v4.3.0 h1:MyRJ/UdXutAwSAT+s3wNd7MfTIcy71VQueUuFK343L8=
 github.com/cenkalti/backoff/v4 v4.3.0/go.mod h1:Y3VNntkOUPxTVeUxJ/G5vcM//AlwfmyYozVcomhLiZE=
-github.com/census-instrumentation/opencensus-proto v0.4.1 h1:iKLQ0xPNFxR/2hzXZMrBo8f1j86j5WHzznCCQxV/b8g=
 github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
-github.com/cespare/xxhash v1.1.0 h1:a6HrQnmkObjyL+Gs60czilIUGqrzKutQD6XZog3p+ko=
-github.com/checkpoint-restore/go-criu/v5 v5.3.0 h1:wpFFOoomK3389ue2lAb0Boag6XPht5QYpipxmSNL4d8=
-github.com/checkpoint-restore/go-criu/v5 v5.3.0/go.mod h1:E/eQpaFtUKGOOSEBZgmKAcn+zUUwWxqcaKZlF54wK8E=
 github.com/checkpoint-restore/go-criu/v6 v6.3.0/go.mod h1:rrRTN/uSwY2X+BPRl/gkulo9gsKOSAeVp9/K2tv7xZI=
-github.com/chenzhuoyu/base64x v0.0.0-20221115062448-fe3a3abad311 h1:qSGYFH7+jGhDF8vLC+iwCD4WpbV1EBDSzWkJODFLams=
 github.com/chenzhuoyu/base64x v0.0.0-20221115062448-fe3a3abad311/go.mod h1:b583jCggY9gE99b6G5LEC39OIiVsWj+R97kbl5odCEk=
-github.com/chromedp/cdproto v0.0.0-20230802225258-3cf4e6d46a89 h1:aPflPkRFkVwbW6dmcVqfgwp1i+UWGFH6VgR1Jim5Ygc=
-github.com/chromedp/cdproto v0.0.0-20230802225258-3cf4e6d46a89/go.mod h1:GKljq0VrfU4D5yc+2qA6OVr8pmO/MBbPEWqWQ/oqGEs=
-github.com/chromedp/chromedp v0.9.2 h1:dKtNz4kApb06KuSXoTQIyUC2TrA0fhGDwNZf3bcgfKw=
-github.com/chromedp/chromedp v0.9.2/go.mod h1:LkSXJKONWTCHAfQasKFUZI+mxqS4tZqhmtGzzhLsnLs=
-github.com/chromedp/sysutil v1.0.0 h1:+ZxhTpfpZlmchB58ih/LBHX52ky7w2VhQVKQMucy3Ic=
-github.com/chromedp/sysutil v1.0.0/go.mod h1:kgWmDdq8fTzXYcKIBqIYvRRTnYb9aNS9moAV0xufSww=
-github.com/chzyer/logex v1.1.10/go.mod h1:+Ywpsq7O8HXn0nuIou7OrIPyXbp3wmkHB+jjWRnGsAI=
-github.com/chzyer/logex v1.2.1 h1:XHDu3E6q+gdHgsdTPH6ImJMIp436vR6MPtH8gP05QzM=
 github.com/chzyer/logex v1.2.1/go.mod h1:JLbx6lG2kDbNRFnfkgvh4eRJRPX1QCoOIWomwysCBrQ=
-github.com/chzyer/readline v0.0.0-20180603132655-2972be24d48e/go.mod h1:nSuG5e5PlCu98SY8svDHJxuZscDgtXS6KTTbou5AhLI=
-github.com/chzyer/readline v1.5.1 h1:upd/6fQk4src78LMRzh5vItIt361/o4uq553V8B5sGI=
 github.com/chzyer/readline v1.5.1/go.mod h1:Eh+b79XXUwfKfcPLepksvw2tcLE/Ct21YObkaSkeBlk=
-github.com/chzyer/test v0.0.0-20180213035817-a1ea475d72b1/go.mod h1:Q3SI9o4m/ZMnBNeIyt5eFwwo7qiLfzFZmjNmxjkiQlU=
-github.com/chzyer/test v1.0.0 h1:p3BQDXSxOhOG0P9z6/hGnII4LGiEPOYBhs8asl/fC04=
 github.com/chzyer/test v1.0.0/go.mod h1:2JlltgoNkt4TW/z9V/IzDdFaMTM2JPIi26O1pF38GC8=
-github.com/cilium/ebpf v0.7.0 h1:1k/q3ATgxSXRdrmPfH8d7YK0GfqVsEKZAX9dQZvs56k=
-github.com/cilium/ebpf v0.7.0/go.mod h1:/oI2+1shJiTGAMgl6/RgJr36Eo1jzrRcAWbcXO2usCA=
 github.com/cilium/ebpf v0.16.0/go.mod h1:L7u2Blt2jMM/vLAVgjxluxtBKlz3/GWjB0dMOEngfwE=
-github.com/client9/misspell v0.3.4 h1:ta993UF76GwbvJcIo3Y68y/M3WxlpEHPWIGDkJYwzJI=
-github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe h1:QQ3GSy+MqSHxm/d8nCtnAiZdYFd45cYZPs8vOOIYKfk=
 github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
-github.com/cncf/xds/go v0.0.0-20230607035331-e9ce68804cb4/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20231109132714-523115ebc101/go.mod h1:eXthEFrGJvWHgFFCl3hGmgk+/aYT6PnTQLykKQRLhEs=
-github.com/cncf/xds/go v0.0.0-20231128003011-0fa0005c9caa h1:jQCWAUqqlij9Pgj2i/PB79y4KOPYVyFYdROxgaCwdTQ=
-github.com/cncf/xds/go v0.0.0-20231128003011-0fa0005c9caa/go.mod h1:x/1Gn8zydmfq8dk6e9PdstVsDgu9RuyIIJqAaF//0IM=
-github.com/cncf/xds/go v0.0.0-20240318125728-8a4994d93e50/go.mod h1:5e1+Vvlzido69INQaVO6d87Qn543Xr6nooe9Kz7oBFM=
-github.com/cncf/xds/go v0.0.0-20240423153145-555b57ec207b h1:ga8SEFjZ60pxLcmhnThWgvH2wg8376yUJmPhEH4H3kw=
-github.com/cncf/xds/go v0.0.0-20240423153145-555b57ec207b/go.mod h1:W+zGtBO5Y1IgJhy4+A9GOqVhqLpfZi+vwmdNXUehLA8=
-github.com/cncf/xds/go v0.0.0-20240723142845-024c85f92f20/go.mod h1:W+zGtBO5Y1IgJhy4+A9GOqVhqLpfZi+vwmdNXUehLA8=
 github.com/cncf/xds/go v0.0.0-20240905190251-b4127c9b8d78/go.mod h1:W+zGtBO5Y1IgJhy4+A9GOqVhqLpfZi+vwmdNXUehLA8=
-github.com/containerd/console v1.0.3 h1:lIr7SlA5PxZyMV30bDW0MGbiOPXwc63yRuCP0ARubLw=
-github.com/containerd/console v1.0.3/go.mod h1:7LqA/THxQ86k76b8c/EMSiaJ3h1eZkMkXar0TQ1gf3U=
 github.com/containerd/console v1.0.4/go.mod h1:YynlIjWYF8myEu6sdkwKIvGQq+cOckRm6So2avqoYAk=
-github.com/coreos/go-oidc v2.2.1+incompatible h1:mh48q/BqXqgjVHpy2ZY7WnWAbenxRjsz9N1i1YxjHAk=
 github.com/coreos/go-oidc v2.2.1+incompatible/go.mod h1:CgnwVTmzoESiwO9qyAFEMiHoZ1nMCKZlZ9V6mm3/LKc=
-github.com/coreos/go-semver v0.3.1 h1:yi21YpKnrx1gt5R+la8n5WgS0kCrsPp33dmEyHReZr4=
 github.com/coreos/go-semver v0.3.1/go.mod h1:irMmmIw/7yzSRPWryHsK7EYSg09caPQL03VsM8rvUec=
-github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e h1:Wf6HqHfScWJN9/ZjdUKyjop4mf3Qdd+1TvvltAvM3m8=
-github.com/cpuguy83/go-md2man/v2 v2.0.3 h1:qMCsGGgs+MAzDFyp9LpAe1Lqy/fY/qCovCm0qnXZOBM=
-github.com/cpuguy83/go-md2man/v2 v2.0.4 h1:wfIWP927BUkWJb2NmU/kNDYIBTh/ziUX91+lVfRxZq4=
-github.com/docker/go-units v0.4.0 h1:3uh0PgVws3nIA0Q+MwDC8yjEPf9zjRfZZWXZYDct3Tw=
-github.com/docker/go-units v0.4.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
 github.com/docker/go-units v0.5.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
-github.com/docopt/docopt-go v0.0.0-20180111231733-ee0de3bc6815 h1:bWDMxwH3px2JBh6AyO7hdCn/PkvCZXii8TGj7sbtEbQ=
 github.com/dsnet/compress v0.0.2-0.20210315054119-f66993602bf5/go.mod h1:qssHWj60/X5sZFNxpG4HBPDHVqxNm4DfnCKgrbZOT+s=
-github.com/dustin/go-humanize v1.0.1 h1:GzkhY7T5VNhEkwH0PVJgjz+fX1rhBrR7pRT3mDkpeCY=
 github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto=
-github.com/emicklei/go-restful v2.9.5+incompatible h1:spTtZBk5DYEvbxMVutUuTyh1Ao2r4iyvLdACqsl/Ljk=
-github.com/emicklei/go-restful/v3 v3.8.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
-github.com/emicklei/go-restful/v3 v3.9.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
-github.com/emicklei/go-restful/v3 v3.11.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
-github.com/envoyproxy/go-control-plane v0.11.1/go.mod h1:uhMcXKCQMEJHiAb0w+YGefQLaTEw+YhGluxZkrTmD0g=
-github.com/envoyproxy/go-control-plane v0.12.0 h1:4X+VP1GHd1Mhj6IB5mMeGbLCleqxjletLK6K0rbxyZI=
-github.com/envoyproxy/go-control-plane v0.12.0/go.mod h1:ZBTaoJ23lqITozF0M6G4/IragXCQKCnYbmlmtHvwRG0=
-github.com/envoyproxy/go-control-plane v0.12.1-0.20240621013728-1eb8caab5155/go.mod h1:5Wkq+JduFtdAXihLmeTJf+tRYIT4KBc2vPXDhwVo1pA=
-github.com/envoyproxy/go-control-plane v0.13.0/go.mod h1:GRaKG3dwvFoTg4nj7aXdZnvMg4d7nvT/wl9WgVXn3Q8=
-github.com/envoyproxy/protoc-gen-validate v1.0.2/go.mod h1:GpiZQP3dDbg4JouG/NNS7QWXpgx6x8QiMKdmN72jogE=
-github.com/envoyproxy/protoc-gen-validate v1.0.4 h1:gVPz/FMfvh57HdSJQyvBtF00j8JU4zdyUgIUNhlgg0A=
-github.com/envoyproxy/protoc-gen-validate v1.0.4/go.mod h1:qys6tmnRsYrQqIhm2bvKZH4Blx/1gTIZ2UKVY1M+Yew=
+github.com/envoyproxy/go-control-plane v0.13.1/go.mod h1:X45hY0mufo6Fd0KW3rqsGvQMw58jvjymeCzBU3mWyHw=
 github.com/envoyproxy/protoc-gen-validate v1.1.0/go.mod h1:sXRDRVmzEbkM7CVcM06s9shE/m23dg3wzjl0UWqJ2q4=
 github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
-github.com/felixge/httpsnoop v1.0.3 h1:s/nj+GCswXYzN5v2DpNMuMQYe+0DDwt5WVCU6CWBdXk=
-github.com/felixge/httpsnoop v1.0.3/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
-github.com/felixge/httpsnoop v1.0.4 h1:NFTV2Zj1bL4mc9sqWACXbQFVBBg2W3GPvqp8/ESS2Wg=
 github.com/felixge/httpsnoop v1.0.4/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
-github.com/fogleman/gg v1.3.0 h1:/7zJX8F6AaYQc57WQCyN9cAIz+4bCJGO9B+dyW29am8=
-github.com/fxamacker/cbor/v2 v2.6.0 h1:sU6J2usfADwWlYDAFhZBQ6TnLFBHxgesMrQfQgk1tWA=
-github.com/fxamacker/cbor/v2 v2.6.0/go.mod h1:pxXPTn3joSm21Gbwsv0w9OSA2y1HFR9qXEeXQVeNoDQ=
-github.com/gabriel-vasile/mimetype v1.4.2 h1:w5qFW6JKBz9Y393Y4q372O9A7cUSequkh1Q7OhCmWKU=
 github.com/gabriel-vasile/mimetype v1.4.2/go.mod h1:zApsH/mKG4w07erKIaJPFiX0Tsq9BFQgN3qGY5GnNgA=
-github.com/getsentry/sentry-go v0.21.0 h1:c9l5F1nPF30JIppulk4veau90PK6Smu3abgVtVQWon4=
 github.com/getsentry/sentry-go v0.21.0/go.mod h1:lc76E2QywIyW8WuBnwl8Lc4bkmQH4+w1gwTf25trprY=
-github.com/gin-contrib/sse v0.1.0 h1:Y/yl/+YNO8GZSjAhjMsSuLt29uWRFHdHYUb5lYOV9qE=
 github.com/gin-contrib/sse v0.1.0/go.mod h1:RHrZQHXnP2xjPF+u1gW/2HnVO7nvIa9PG3Gm+fLHvGI=
-github.com/gin-gonic/gin v1.9.1 h1:4idEAncQnU5cB7BeOkPtxjfCSye0AAm1R0RVIqJ+Jmg=
 github.com/gin-gonic/gin v1.9.1/go.mod h1:hPrL7YrpYKXt5YId3A/Tnip5kqbEAP+KLuI3SUcPTeU=
-github.com/go-fonts/dejavu v0.1.0 h1:JSajPXURYqpr+Cu8U9bt8K+XcACIHWqWrvWCKyeFmVQ=
-github.com/go-fonts/latin-modern v0.2.0 h1:5/Tv1Ek/QCr20C6ZOz15vw3g7GELYL98KWr8Hgo+3vk=
-github.com/go-fonts/liberation v0.2.0 h1:jAkAWJP4S+OsrPLZM4/eC9iW7CtHy+HBXrEwZXWo5VM=
-github.com/go-fonts/stix v0.1.0 h1:UlZlgrvvmT/58o573ot7NFw0vZasZ5I6bcIft/oMdgg=
-github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1 h1:QbL/5oDUmRBzO9/Z7Seo6zf912W/a6Sr4Eu0G/3Jho0=
-github.com/go-gl/glfw/v3.3/glfw v0.0.0-20200222043503-6f7a984d4dc4 h1:WtGNWLvXpe6ZudgnXrq0barxBImvnnJoMEhXAzcbM0I=
-github.com/go-kit/kit v0.9.0 h1:wDJmvq38kDhkVxi50ni9ykkdUr1PKgqKOoi01fa0Mdk=
-github.com/go-kit/log v0.2.1 h1:MRVx0/zhvdseW+Gza6N9rVzU/IVzaeE1SFI4raAhmBU=
 github.com/go-kit/log v0.2.1/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0=
-github.com/go-latex/latex v0.0.0-20210823091927-c0d11ff05a81 h1:6zl3BbBhdnMkpSj2YY30qV3gDcVBGtFgVsV3+/i+mKQ=
-github.com/go-logfmt/logfmt v0.5.1 h1:otpy5pqBCBZ1ng9RQ0dPu4PN7ba75Y/aA+UpowDyNVA=
 github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
-github.com/go-logr/logr v0.2.0/go.mod h1:z6/tIYblkpsD+a4lm/fGIIU9mZ+XfAiaFtq7xTgseGU=
-github.com/go-logr/logr v1.2.0/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
-github.com/go-logr/logr v1.2.2/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
-github.com/go-logr/logr v1.2.3/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
-github.com/go-logr/logr v1.2.4/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
-github.com/go-logr/logr v1.4.1/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
-github.com/go-logr/stdr v1.2.2 h1:hSWxHoqTgW2S2qGc0LTAI563KZ5YKYRhT3MFKZMbjag=
-github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE=
 github.com/go-openapi/jsonpointer v0.19.6/go.mod h1:osyAmYz/mB/C3I+WsTTSgw1ONzaLJoLCyoi6/zppojs=
-github.com/go-openapi/jsonreference v0.20.1/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
 github.com/go-openapi/jsonreference v0.20.2/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
 github.com/go-openapi/swag v0.22.3/go.mod h1:UzaqsxGiab7freDnrUUra0MwWfN/q7tE4j+VcZ0yl14=
-github.com/go-openapi/swag v0.22.4/go.mod h1:UzaqsxGiab7freDnrUUra0MwWfN/q7tE4j+VcZ0yl14=
-github.com/go-openapi/swag v0.22.5/go.mod h1:Gl91UqO+btAM0plGGxHqJcQZ1ZTy6jbmridBTsDy8A0=
-github.com/go-openapi/swag v0.22.6/go.mod h1:Gl91UqO+btAM0plGGxHqJcQZ1ZTy6jbmridBTsDy8A0=
-github.com/go-pdf/fpdf v0.6.0 h1:MlgtGIfsdMEEQJr2le6b/HNr1ZlQwxyWr77r2aj2U/8=
-github.com/go-playground/locales v0.14.1 h1:EWaQ/wswjilfKLTECiXz7Rh+3BjFhfDFKv/oXslEjJA=
 github.com/go-playground/locales v0.14.1/go.mod h1:hxrqLVvrK65+Rwrd5Fc6F2O76J/NuW9t0sjnWqG1slY=
-github.com/go-playground/universal-translator v0.18.1 h1:Bcnm0ZwsGyWbCzImXv+pAJnYK9S473LQFuzCbDbfSFY=
 github.com/go-playground/universal-translator v0.18.1/go.mod h1:xekY+UJKNuX9WP91TpwSH2VMlDf28Uj24BCp08ZFTUY=
-github.com/go-playground/validator/v10 v10.14.0 h1:vgvQWe3XCz3gIeFDm/HnTIbj6UGmg/+t63MyGU2n5js=
 github.com/go-playground/validator/v10 v10.14.0/go.mod h1:9iXMNT7sEkjXb0I+enO7QXmzG6QCsPWY4zveKFVRSyU=
-github.com/go-stack/stack v1.8.0 h1:5SgMzNM5HxrEjV0ww2lTmX6E2Izsfxas4+YHWRs3Lsk=
 github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572/go.mod h1:9Pwr4B2jHnOSGXyyzV8ROjYa2ojvAY6HCGYYfMoC3Ls=
-github.com/gobwas/httphead v0.1.0 h1:exrUm0f4YX0L7EBwZHuCF4GDp8aJfVeBrlLQrs6NqWU=
-github.com/gobwas/httphead v0.1.0/go.mod h1:O/RXo79gxV8G+RqlR/otEwx4Q36zl9rqC5u12GKvMCM=
-github.com/gobwas/pool v0.2.1 h1:xfeeEhW7pwmX8nuLVlqbzVc7udMDrwetjEv+TZIz1og=
-github.com/gobwas/pool v0.2.1/go.mod h1:q8bcK0KcYlCgd9e7WYLm9LpyS+YeLd8JVDW6WezmKEw=
-github.com/gobwas/ws v1.2.1 h1:F2aeBZrm2NDsc7vbovKrWSogd4wvfAxg0FQ89/iqOTk=
-github.com/gobwas/ws v1.2.1/go.mod h1:hRKAFb8wOxFROYNsT1bqfWnhX+b5MFeJM9r2ZSwg/KY=
-github.com/goccy/go-json v0.10.2 h1:CrxCmQqYDkv1z7lO7Wbh2HN93uovUHgrECaO5ZrCXAU=
 github.com/goccy/go-json v0.10.2/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
-github.com/golang-jwt/jwt/v4 v4.5.0 h1:7cYmW1XlMY7h7ii7UhUyChSgS5wUJEnm9uZVTGqOWzg=
 github.com/golang-jwt/jwt/v4 v4.5.0/go.mod h1:m21LjoU+eqJr34lmDMbreY2eSTRJ1cv77w39/MY0Ch0=
-github.com/golang/freetype v0.0.0-20170609003504-e2365dfdc4a0 h1:DACJavvAHhabrF08vX0COfcOBJRhZ8lUbR+ZWIs0Y5g=
-github.com/golang/glog v1.1.2/go.mod h1:zR+okUeTbrL6EL3xHUDxZuEtGv04p5shwip1+mL/rLQ=
-github.com/golang/glog v1.2.0 h1:uCdmnmatrKCgMBlM4rMuJZWOkPDqdbZPnrMXDY4gI68=
-github.com/golang/glog v1.2.0/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
-github.com/golang/glog v1.2.1 h1:OptwRhECazUx5ix5TTWC3EZhsZEHWcYWY4FQHTIubm4=
-github.com/golang/glog v1.2.1/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
 github.com/golang/glog v1.2.2/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
-github.com/golang/mock v1.6.0 h1:ErTB+efbowRARo13NNdxyJji2egdxLGQhRaY+DUumQc=
-github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
-github.com/golang/snappy v0.0.4 h1:yAGX7huGHXlcLOEtBnF4w7FQwA26wojNCwOYAEhLjQM=
+github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
-github.com/google/btree v1.0.1/go.mod h1:xXMiIv4Fb/0kKde4SpL7qlzvu5cMJDRkFDxJfI9uaxA=
-github.com/google/cel-go v0.17.7/go.mod h1:HXZKzB0LXqer5lHHgfWAnlYwJaQBDKMjxjulNQzhwhY=
-github.com/google/cel-go v0.17.8 h1:j9m730pMZt1Fc4oKhCLUHfjj6527LuhYcYw0Rl8gqto=
-github.com/google/cel-go v0.17.8/go.mod h1:HXZKzB0LXqer5lHHgfWAnlYwJaQBDKMjxjulNQzhwhY=
-github.com/google/cel-go v0.20.1 h1:nDx9r8S3L4pE61eDdt8igGj8rf5kjYR3ILxWIpWNi84=
-github.com/google/cel-go v0.20.1/go.mod h1:kWcIzTsPX0zmQ+H3TirHstLLf9ep5QTsZBN9u4dOYLg=
-github.com/google/flatbuffers v2.0.8+incompatible h1:ivUb1cGomAB101ZM1T0nOiWz9pSrTMoa9+EiY7igmkM=
-github.com/google/go-pkcs11 v0.2.1-0.20230907215043-c6f79328ddf9/go.mod h1:6eQoGcuNJpa7jnd5pMGdkSaQpNDYvPlXWMcjXXThLlY=
-github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
-github.com/google/martian v2.1.0+incompatible h1:/CP5g8u/VJHijgedC/Legn3BAbAaWPgecwXBIDzw5no=
-github.com/google/martian/v3 v3.3.2 h1:IqNFLAmvJOgVlpdEBiQbDc2EwKW77amAycfTuWKdfvw=
-github.com/google/pprof v0.0.0-20210407192527-94a9f03dee38/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20210720184732-4bb14d4b1be1/go.mod h1:kpwsk12EmLew5upagYY7GY0pfYCcupk39gWOCRROcvE=
-github.com/google/pprof v0.0.0-20240424215950-a892ee059fd6/go.mod h1:kf6iHlnVGwgKolg33glAes7Yg/8iWP8ukqeldJSO7jw=
-github.com/google/pprof v0.0.0-20240525223248-4bfdf5a9a2af/go.mod h1:K1liHPHnj73Fdn/EKuT8nrFqBihUSKXoLYU0BuatOYo=
+github.com/google/cel-go v0.22.0/go.mod h1:BuznPXXfQDpXKWQ9sPW3TzlAJN5zzFe+i9tIs0yC4s8=
 github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
-github.com/google/renameio v0.1.0 h1:GOZbcHa3HfsPKPlmyPyN2KEohoMXOhdMbHrvbpl2QaA=
-github.com/google/s2a-go v0.1.4 h1:1kZ/sQM3srePvKs3tXAvQzo66XfcReoqFpIpIccE7Oc=
-github.com/google/s2a-go v0.1.7/go.mod h1:50CgR4k1jNlWBu4UfS4AcfhVe1r6pdZPygJ3R8F0Qdw=
-github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-github.com/google/uuid v1.3.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-github.com/google/uuid v1.5.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-github.com/googleapis/enterprise-certificate-proxy v0.2.3 h1:yk9/cqRKtT9wXZSsRH9aurXEpJX+U6FLtpYTdC3R06k=
-github.com/googleapis/enterprise-certificate-proxy v0.2.4/go.mod h1:AwSRAtLfXpU5Nm3pW+v7rGDHp09LsPtGY9MduiEsR9k=
-github.com/googleapis/enterprise-certificate-proxy v0.3.2/go.mod h1:VLSiSSBs/ksPL8kq3OBOQ6WRI2QnaFynd1DCjZ62+V0=
-github.com/googleapis/gax-go/v2 v2.11.0 h1:9V9PWXEsWnPpQhu/PeQIkS4eGzMlTLGgt80cUUI8Ki4=
-github.com/googleapis/gax-go/v2 v2.12.0/go.mod h1:y+aIqrI5eb1YGMVJfuV3185Ts/D7qKpsEkdD5+I6QGU=
-github.com/googleapis/go-type-adapters v1.0.0 h1:9XdMn+d/G57qq1s8dNc5IesGCXHf6V2HZ2JwRxfA2tA=
-github.com/googleapis/google-cloud-go-testing v0.0.0-20200911160855-bcd43fbb19e8 h1:tlyzajkF3030q6M8SvmJSemC9DTHL/xaMa18b65+JM4=
-github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
-github.com/gorilla/websocket v1.5.0 h1:PPwGk2jz7EePpoHN/+ClbZu8SPxiqlu12wZP/3sWmnc=
+github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
 github.com/gorilla/websocket v1.5.0/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
-github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
-github.com/grpc-ecosystem/go-grpc-middleware v1.3.0 h1:+9834+KizmvFV7pXQGSXQTsaWhq2GjuNUt0aUU0YBYw=
 github.com/grpc-ecosystem/go-grpc-middleware v1.3.0/go.mod h1:z0ButlSOZa5vEBq9m2m2hlwIgKw+rp3sdCBRoJY+30Y=
-github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0 h1:Ovs26xHkKqVztRpIrF/92BcuyuQ/YW4NSIpoGtfXNho=
 github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgfV/d3M/q6VIi02HzZEHgUlZvzk=
-github.com/grpc-ecosystem/grpc-gateway v1.16.0 h1:gmcG1KaJ57LophUzW0Hy8NmPhnMZb4M0+kPpLofRdBo=
 github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
-github.com/grpc-ecosystem/grpc-gateway/v2 v2.16.0 h1:YBftPWNWd4WwGqtY2yeZL2ef8rHAxPBD8KFhJpmcqms=
-github.com/grpc-ecosystem/grpc-gateway/v2 v2.16.0/go.mod h1:YN5jB8ie0yfIUg6VvR9Kz84aCaG7AsGZnLjhHbUqwPg=
-github.com/grpc-ecosystem/grpc-gateway/v2 v2.20.0 h1:bkypFPDjIYGfCYD5mRBvpqxfYX1YCS1PXdKYWi8FsN0=
 github.com/grpc-ecosystem/grpc-gateway/v2 v2.20.0/go.mod h1:P+Lt/0by1T8bfcF3z737NnSbmxQAppXMRziHUxPOC8k=
-github.com/hashicorp/golang-lru v0.5.1 h1:0hERBMJE1eitiLkihrMvRVBYAkpHzc/J3QdDN+dAcgU=
-github.com/hpcloud/tail v1.0.0 h1:nfCOvKYfkgYP8hkirhJocXT2+zOD8yUNjXaWfTlyFKI=
-github.com/iancoleman/strcase v0.2.0 h1:05I4QRnGpI0m37iZQRuskXh+w77mr6Z41lwQzuHLwW0=
-github.com/iancoleman/strcase v0.3.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
-github.com/ianlancetaylor/demangle v0.0.0-20200824232613-28f6c0f3b639/go.mod h1:aSSvb/t6k1mPoxDqO4vJh6VOCGPwU4O0C2/Eqndh1Sc=
-github.com/ianlancetaylor/demangle v0.0.0-20230524184225-eabc099b10ab/go.mod h1:gx7rwoVhcfuVKG5uya9Hs3Sxj7EIvldVofAWIUtGouw=
-github.com/ianlancetaylor/demangle v0.0.0-20240312041847-bd984b5ce465 h1:KwWnWVWCNtNq/ewIX7HIKnELmEx2nDP42yskD/pi7QE=
 github.com/ianlancetaylor/demangle v0.0.0-20240312041847-bd984b5ce465/go.mod h1:gx7rwoVhcfuVKG5uya9Hs3Sxj7EIvldVofAWIUtGouw=
 github.com/imdario/mergo v0.3.6/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
-github.com/imdario/mergo v0.3.13 h1:lFzP57bqS/wsqKssCGmtLAb8A0wKjLGrve2q3PPVcBk=
-github.com/jessevdk/go-flags v1.4.0 h1:4IU2WS7AumrZ/40jfhf4QVDMsQwqA7VEHozFRrGARJA=
 github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
-github.com/jonboulle/clockwork v0.2.2 h1:UOGuzwb1PwsrDAObMuhUnj0p5ULPj8V/xJ7Kx9qUBdQ=
-github.com/jonboulle/clockwork v0.2.2/go.mod h1:Pkfl5aHPm1nk2H9h0bjmnJD/BcgbGXUBGnn1kMkgxc8=
-github.com/jpillora/backoff v1.0.0 h1:uvFg412JmmHBHw7iwprIxkPMI+sGQ4kzOWsMeHnm2EA=
+github.com/jonboulle/clockwork v0.4.0/go.mod h1:xgRqUGwRcjKCO1vbZUEtSLrqKoPSsUpK7fnezOII0kc=
 github.com/jpillora/backoff v1.0.0/go.mod h1:J/6gKK9jxlEcS3zixgDgUAsiuZ7yrSoa/FX5e0EB2j4=
-github.com/jstemmer/go-junit-report v0.9.1 h1:6QPYqodiu3GuPL+7mfx+NwDdp2eTkp9IfEUpgAwUN0o=
-github.com/julienschmidt/httprouter v1.3.0 h1:U0609e9tgbseu3rBINet9P48AI/D3oJs4dN7jwJOQ1U=
 github.com/julienschmidt/httprouter v1.3.0/go.mod h1:JR6WtHb+2LUe8TCKY3cZOxFyyO8IZAc4RVcycCCAKdM=
-github.com/jung-kurt/gofpdf v1.0.3-0.20190309125859-24315acbbda5 h1:PJr+ZMXIecYc1Ey2zucXdR73SMBtgjPgwa31099IMv0=
-github.com/kballard/go-shellquote v0.0.0-20180428030007-95032a82bc51 h1:Z9n2FFNUXsshfwJMBgNA0RU6/i7WVaAegv3PtuIHPMs=
-github.com/kisielk/errcheck v1.5.0 h1:e8esj/e4R+SAOwFwN+n3zr0nYeCyeweozKfO23MvHzY=
-github.com/kisielk/gotool v1.0.0 h1:AV2c/EiW3KqPNT9ZKl07ehoAGi4C5/01Cfbblndcapg=
-github.com/klauspost/asmfmt v1.3.2 h1:4Ri7ox3EwapiOjCki+hw14RyKk201CN4rzyCJRFLpK4=
-github.com/klauspost/compress v1.15.9 h1:wKRjX6JRtDdrE9qwa4b/Cip7ACOshUI4smpCQanqjSY=
-github.com/klauspost/compress v1.16.7/go.mod h1:ntbaceVETuRiXiv4DpjP66DpAtAGkEQskQzEyD//IeE=
-github.com/klauspost/cpuid/v2 v2.2.4 h1:acbojRNwl3o09bUq+yDCtZFc1aiwaAAxtcn8YkZXnvk=
 github.com/klauspost/cpuid/v2 v2.2.4/go.mod h1:RVVoqg1df56z8g3pUjL/3lE5UfnlrJX8tyFgg4nqhuY=
-github.com/klauspost/cpuid/v2 v2.2.5/go.mod h1:Lcz8mBdAVJIBVzewtcLocK12l3Y+JytZYpaMropDUws=
 github.com/klauspost/pgzip v1.2.6/go.mod h1:Ch1tH69qFZu15pkjo5kYi6mth2Zzwzt50oCQKQE9RUs=
-github.com/konsorten/go-windows-terminal-sequences v1.0.3 h1:CE8S1cTafDpPvMhIxNJKvHsGVBgn1xWYf1NbHQhywc8=
-github.com/kr/fs v0.1.0 h1:Jskdu9ieNAYnjxsi0LbQp1ulIKZV1LAFgK1tWhpZgl8=
-github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515 h1:T+h1c/A9Gawja4Y9mFVWj2vyii2bbUNDw3kt9VxK2EY=
-github.com/kr/pty v1.1.1 h1:VkoXIwSboBpnk99O/KFauAEILuNHv5DVFKZMBN/gUgw=
-github.com/labstack/echo/v4 v4.10.2 h1:n1jAhnq/elIFTHr1EYpiYtyKgx4RW9ccVgkqByZaN2M=
 github.com/labstack/echo/v4 v4.10.2/go.mod h1:OEyqf2//K1DFdE57vw2DRgWY0M7s65IVQO2FzvI4J5k=
-github.com/labstack/gommon v0.4.0 h1:y7cvthEAEbU0yHOf4axH8ZG2NH8knB9iNSoTO8dyIk8=
 github.com/labstack/gommon v0.4.0/go.mod h1:uW6kP17uPlLJsD3ijUYn3/M5bAxtlZhMI6m3MFxTMTM=
-github.com/ledongthuc/pdf v0.0.0-20220302134840-0c2507a12d80 h1:6Yzfa6GP0rIo/kULo2bwGEkFvCePZ3qHDDTC3/J9Swo=
-github.com/ledongthuc/pdf v0.0.0-20220302134840-0c2507a12d80/go.mod h1:imJHygn/1yfhB7XSJJKlFZKl/J+dCPAknuiaGOshXAs=
-github.com/leodido/go-urn v1.2.4 h1:XlAE/cm/ms7TE/VMVoduSpNBoyc2dOxHs5MZSwAN63Q=
 github.com/leodido/go-urn v1.2.4/go.mod h1:7ZrI8mTSeBSHl/UaRyKQW1qZeMgak41ANeCNaVckg+4=
-github.com/lyft/protoc-gen-star v0.6.1 h1:erE0rdztuaDq3bpGifD95wfoPrSZc95nGA6tbiNYh6M=
-github.com/lyft/protoc-gen-star/v2 v2.0.1 h1:keaAo8hRuAT0O3DfJ/wM3rufbAjGeJ1lAtWZHDjKGB0=
-github.com/lyft/protoc-gen-star/v2 v2.0.3/go.mod h1:amey7yeodaJhXSbf/TlLvWiqQfLOSpEk//mLlc+axEk=
-github.com/mattn/go-sqlite3 v1.14.14 h1:qZgc/Rwetq+MtyE18WhzjokPD93dNqLGNT3QJuLvBGw=
-github.com/matttproud/golang_protobuf_extensions v1.0.4 h1:mmDVorXM7PCGKw94cs5zkfA9PSy5pEvNWRP0ET0TIVo=
-github.com/matttproud/golang_protobuf_extensions v1.0.4/go.mod h1:BSXmuO+STAnVfrANrmjBb36TMTDstsz7MSK+HVaYKv4=
-github.com/matttproud/golang_protobuf_extensions/v2 v2.0.0 h1:jWpvCLoY8Z/e3VKvlsiIGKtc+UG6U5vzxaoagmhXfyg=
 github.com/maxbrunsfeld/counterfeiter/v6 v6.8.1/go.mod h1:eyp4DdUJAKkr9tvxR3jWhw2mDK7CWABMG5r9uyaKC7I=
 github.com/mholt/archiver/v3 v3.5.1/go.mod h1:e3dqJ7H78uzsRSEACH1joayhuSyhnonssnDhppzS1L4=
-github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8 h1:AMFGa4R4MiIpspGNG7Z948v4n35fFGB3RR3G/ry4FWs=
-github.com/minio/c2goasm v0.0.0-20190812172519-36a3d3bbc4f3 h1:+n/aFZefKZp7spd8DFdX7uMikMLXX4oubIzJF4kv/wI=
-github.com/moby/spdystream v0.2.0 h1:cjW1zVyyoiM0T7b6UoySUFqzXMoqRckQtXwGPiBhOM8=
-github.com/moby/spdystream v0.2.0/go.mod h1:f7i0iNDQJ059oMTcWxx8MA/zKFIuD/lY+0GqbN2Wy8c=
-github.com/moby/spdystream v0.4.0 h1:Vy79D6mHeJJjiPdFEL2yku1kl0chZpJfZcPpb16BRl8=
-github.com/moby/spdystream v0.4.0/go.mod h1:xBAYlnt/ay+11ShkdFKNAG7LsyK/tmNBVvVOwrfMgdI=
+github.com/moby/spdystream v0.5.0/go.mod h1:xBAYlnt/ay+11ShkdFKNAG7LsyK/tmNBVvVOwrfMgdI=
 github.com/moby/sys/user v0.3.0/go.mod h1:bG+tYYYJgaMtRKgEmuueC0hJEAZWwtIbZTB+85uoHjs=
-github.com/mrunalp/fileutils v0.5.1 h1:F+S7ZlNKnrwHfSwdlgNSkKo67ReVf8o9fel6C3dkm/Q=
 github.com/mrunalp/fileutils v0.5.1/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
-github.com/munnerz/goautoneg v0.0.0-20120707110453-a547fc61f48d/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
-github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f h1:KUppIJq7/+SVif2QVs3tOP0zanoHgBEVAwHxUSIzRqU=
 github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
-github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f h1:y5//uYreIhSUg3J1GEMiLbxo1LJaP8RfCpH6pymGZus=
 github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
-github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65 h1:Og+dVkxEQNvRGU2vUKeOwYT2UJ+pEaDMWB6tIQnIh6A=
 github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65/go.mod h1:Tx6UMSMyIsjLG/VU/F6xA1+0XI+/f9o1dGJnf1l+bPg=
 github.com/nwaples/rardecode v1.1.3/go.mod h1:5DzqNKiOdpKKBH87u8VlvAnPZMXcGRhxWkRpHbbfGS0=
-github.com/onsi/ginkgo/v2 v/go.mod h1:rlwLi9PilAFJ8jCg9UE1QP6VBpd6/xj3SRC0d6TU0To=
-github.com/onsi/ginkgo/v2 v2.1.4/go.mod h1:um6tUpWM/cxCK3/FK8BXqEiUMUwRgSM4JXG47RKZmLU=
-github.com/onsi/ginkgo/v2 v2.15.0/go.mod h1:HlxMHtYF57y6Dpf+mc5529KKmSq9h2FpCF+/ZkwUxKM=
-github.com/onsi/ginkgo/v2 v2.17.2/go.mod h1:nP2DPOQoNsQmsVyv5rDA8JkXQoCs6goXIvr/PRJ1eCc=
-github.com/onsi/ginkgo/v2 v2.19.0/go.mod h1:rlwLi9PilAFJ8jCg9UE1QP6VBpd6/xj3SRC0d6TU0To=
 github.com/onsi/ginkgo/v2 v2.20.1/go.mod h1:lG9ey2Z29hR41WMVthyJBGUBcBhGOtoPF2VFMvBXFCI=
-github.com/onsi/gomega v1.19.0/go.mod h1:LY+I3pBVzYsTBU1AnDwOSxaYi9WoWiqgwooUqq9yPro=
-github.com/onsi/gomega v1.31.0/go.mod h1:DW9aCi7U6Yi40wNVAvT6kzFnEVEI5n3DloYBiKiT6zk=
-github.com/onsi/gomega v1.33.0/go.mod h1:+925n5YtiFsLzzafLUHzVMBpvvRAzrydIBiSIxjX3wY=
-github.com/onsi/gomega v1.33.1/go.mod h1:U4R44UsT+9eLIaYRB2a5qajjtQYn0hauxvRm16AVYg0=
-github.com/opencontainers/selinux v1.10.0 h1:rAiKF8hTcgLI3w0DHm6i0ylVVcOrlgR1kK99DRLDhyU=
-github.com/opencontainers/selinux v1.10.0/go.mod h1:2i0OySw99QjzBBQByd1Gr9gSjvuho1lHsJxIJ3gGbJI=
+github.com/onsi/ginkgo/v2 v2.21.0/go.mod h1:7Du3c42kxCUegi0IImZ1wUQzMBVecgIHjR1C+NkhLQo=
+github.com/onsi/gomega v1.35.1/go.mod h1:PvZbdDc8J6XJEpDK4HCuRBm8a6Fzp9/DmhC9C7yFlog=
 github.com/opencontainers/selinux v1.11.0/go.mod h1:E5dMC3VPuVvVHDYmi78qvhJp8+M586T4DlDRYpFkyec=
-github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde h1:x0TT0RDC7UhAVbbWWBzr41ElhJx5tXPWkIHA2HWPRuw=
-github.com/orisano/pixelmatch v0.0.0-20220722002657-fb0b55479cde/go.mod h1:nZgzbfBr3hhjoZnS66nKrHmduYNpc34ny7RK4z5/HM0=
-github.com/pelletier/go-toml/v2 v2.0.8 h1:0ctb6s9mE31h0/lhu+J6OPmVeDxJn+kYnJc2jZR9tGQ=
 github.com/pelletier/go-toml/v2 v2.0.8/go.mod h1:vuYfssBdrU2XDZ9bYydBu6t+6a6PYNcZljzZR9VXg+4=
-github.com/phpdave11/gofpdf v1.4.2 h1:KPKiIbfwbvC/wOncwhrpRdXVj2CZTCFlw4wnoyjtHfQ=
-github.com/phpdave11/gofpdi v1.0.13 h1:o61duiW8M9sMlkVXWlvP92sZJtGKENvW3VExs6dZukQ=
-github.com/pierrec/lz4/v4 v4.1.15 h1:MO0/ucJhngq7299dKLwIMtgTfbkoSPF6AoMYDd8Q4q0=
 github.com/pierrec/lz4/v4 v4.1.21/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4=
-github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e h1:aoZm08cpOy4WuID//EZDgcC4zIxODThtZNPirFr42+A=
-github.com/pkg/diff v0.0.0-20210226163009-20ebb0f2a09e/go.mod h1:pJLUxLENpZxwdsKMEsNbx1VGcRFpLqf3715MtcvvzbA=
-github.com/pkg/sftp v1.13.1 h1:I2qBYMChEhIjOgazfJmV3/mZM256btk6wkCDRmW7JYs=
 github.com/planetscale/vtprotobuf v0.6.1-0.20240319094008-0393e58bdf10/go.mod h1:t/avpk3KcrXxUnYOhZhMXJlSEyie6gQbtLq5NM3loB8=
-github.com/pquerna/cachecontrol v0.1.0 h1:yJMy84ti9h/+OEWa752kBTKv4XC30OtVVHYv/8cTqKc=
 github.com/pquerna/cachecontrol v0.1.0/go.mod h1:NrUG3Z7Rdu85UNR3vm7SOsl1nFIeSiQnrHV5K9mBcUI=
-github.com/prometheus/exporter-toolkit v0.11.0 h1:yNTsuZ0aNCNFQ3aFTD2uhPOvr4iD7fdBvKPAEGkNf+g=
 github.com/prometheus/exporter-toolkit v0.11.0/go.mod h1:BVnENhnNecpwoTLiABx7mrPB/OLRIgN74qlQbV+FK1Q=
-github.com/remyoudompheng/bigfft v0.0.0-20200410134404-eec4a21b6bb0 h1:OdAsTTz6OkFY5QxjkYwrChwuRruF69c169dPK26NUlk=
-github.com/rogpeppe/fastuuid v1.2.0 h1:Ppwyp6VYCF1nvBTXL3trRso7mXMlRrw9ooo375wvi2s=
-github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
-github.com/rogpeppe/go-internal v1.10.0/go.mod h1:UQnix2H7Ngw/k4C5ijL5+65zddjncjaFoBhdsK/akog=
-github.com/russross/blackfriday/v2 v2.1.0 h1:JIOH55/0cWyOuilr9/qlrm0BSXldqnqwMsf35Ld67mk=
-github.com/ruudk/golang-pdf417 v0.0.0-20201230142125-a7e3863a1245 h1:K1Xf3bKttbF+koVGaX5xngRIZ5bVjbmPnaxE/dR08uY=
-github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646 h1:RpforrEYXWkmGwJHIGnLZ3tTWStkjVVstwzNGqxX2Ds=
-github.com/seccomp/libseccomp-golang v0.9.2-0.20220502022130-f33da4d89646/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
 github.com/seccomp/libseccomp-golang v0.10.0/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
-github.com/shurcooL/sanitized_anchor_name v1.0.0 h1:PdmoCO6wvbs+7yrJyMORt4/BmY5IYyJwS/kOiWx8mHo=
-github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
-github.com/soheilhy/cmux v0.1.5 h1:jjzc5WVemNEDTLwv9tlmemhC73tI08BNOIGwBOo10Js=
 github.com/soheilhy/cmux v0.1.5/go.mod h1:T7TcVDs9LWfQgPlPsdngu6I6QIoyIFZDDC6sNE1GqG0=
-github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72 h1:qLC7fQah7D6K1B0ujays3HV9gkFtllcxhzImRR7ArPQ=
-github.com/spf13/afero v1.9.2 h1:j49Hj62F0n+DaZ1dDCvhABaPNSGNkt32oRFxI33IEMw=
-github.com/spf13/afero v1.10.0/go.mod h1:UBogFpq8E9Hx+xc5CNTTEpTnuHVmXDwZcZcE1eb/UhQ=
-github.com/stoewer/go-strcase v1.2.0 h1:Z2iHWqGXH00XYgqDmNgQbIBxf3wrNq0F3feEy0ainaU=
-github.com/stoewer/go-strcase v1.2.0/go.mod h1:IBiWB2sKIp3wVVQ3Y035++gc+knqhUQag1KpM8ahLw8=
+github.com/stoewer/go-strcase v1.3.0/go.mod h1:fAH5hQ5pehh+j3nZfvwdk2RgEgQjAoM8wodgtPmh1xo=
 github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
 github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
-github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
-github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
-github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635 h1:kdXcSzyDtseVEc4yCz2qF8ZrQvIDBJLl4S1c3GCXmoI=
 github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
-github.com/tmc/grpc-websocket-proxy v0.0.0-20220101234140-673ab2c3ae75 h1:6fotK7otjonDflCTK0BCfls4SPy3NcCVb5dqqmbRknE=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20220101234140-673ab2c3ae75/go.mod h1:KO6IkyS8Y3j8OdNO85qEYBsRPuteD+YciPomcXdrMnk=
-github.com/twitchyliquid64/golang-asm v0.15.1 h1:SU5vSMR7hnwNxj24w34ZyCi/FmDZTkS4MhqMhdFk5YI=
 github.com/twitchyliquid64/golang-asm v0.15.1/go.mod h1:a1lVb/DtPvCB8fslRZhAngC2+aY1QWCk3Cedj/Gdt08=
-github.com/ugorji/go/codec v1.2.11 h1:BMaWp1Bb6fHwEtbplGBGJ498wD+LKlNSl25MjdZY4dU=
 github.com/ugorji/go/codec v1.2.11/go.mod h1:UNopzCgEMSXjBc6AOMqYvWC1ktqTAfzJZUZgYf6w6lg=
 github.com/ulikunitz/xz v0.5.12/go.mod h1:nbz6k7qbPmH4IRqmfOplQw/tblSgqTqBwxkY0oWt/14=
-github.com/urfave/cli v1.22.1 h1:+mkCCcOFKPnCmVYVcURKps1Xe+3zP90gSYGNfRkjoIY=
-github.com/urfave/cli v1.22.1/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
 github.com/urfave/cli v1.22.14/go.mod h1:X0eDS6pD6Exaclxm99NJ3FiCDRED7vIHpx2mDOHLvkA=
 github.com/uwu-tools/magex v0.10.0/go.mod h1:TrSEhrL1xHfJVy6n05AUwFdcQndgwrbgL5ybPNKWmVY=
-github.com/valyala/bytebufferpool v1.0.0 h1:GqA5TC/0021Y/b9FG4Oi9Mr3q7XYx6KllzawFIhcdPw=
 github.com/valyala/bytebufferpool v1.0.0/go.mod h1:6bBcMArwyJ5K/AmCkWv1jt77kVWyCJ6HpOuEn7z0Csc=
-github.com/valyala/fasttemplate v1.2.2 h1:lxLXG0uE3Qnshl9QyaK6XJxMXlQZELvChBOCmQD0Loo=
 github.com/valyala/fasttemplate v1.2.2/go.mod h1:KHLXt3tVN2HBp8eijSv/kGJopbvo7S+qRAEEKiv+SiQ=
-github.com/vishvananda/netlink v1.1.0 h1:1iyaYNBLmP6L0220aDnYQpo1QEV4t4hJ+xEEhhJH8j0=
 github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
-github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df h1:OviZH7qLw/7ZovXvuNyL3XQl8UFofeikI1NW1Gypu7k=
 github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
-github.com/xhit/go-str2duration v1.2.0 h1:BcV5u025cITWxEQKGWr1URRzrcXtu7uk8+luz3Yuhwc=
-github.com/xhit/go-str2duration/v2 v2.1.0 h1:lxklc02Drh6ynqX+DdPyp5pCKLUQpRT8bp8Ydu2Bstc=
 github.com/xhit/go-str2duration/v2 v2.1.0/go.mod h1:ohY8p+0f07DiV6Em5LKB0s2YpLtXVyJfNt1+BlmyAsU=
 github.com/xi2/xz v0.0.0-20171230120015-48954b6210f8/go.mod h1:HUYIGzjTL3rfEspMxjDjgmT5uz5wzYJKVo23qUhYTos=
-github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2 h1:eY9dn8+vbi4tKz5Qo6v2eYzo7kUS51QINcR5jNpbZS8=
-github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
-github.com/yuin/goldmark v1.4.13 h1:fVcFKWvrslecOb/tg+Cc05dkeYx540o0FuFt3nUVDoE=
-github.com/zeebo/assert v1.3.0 h1:g7C04CbJuIDKNPFHmsk4hwZDO5O+kntRxzaUoNXj+IQ=
-github.com/zeebo/xxh3 v1.0.2 h1:xZmwmqxHZA8AI603jOQ0tMqmBr9lPeFwGg6d+xy9DC0=
-go.etcd.io/bbolt v1.3.8 h1:xs88BrvEv273UsB79e0hcVrlUWmS0a8upikMFhSyAtA=
-go.etcd.io/bbolt v1.3.8/go.mod h1:N9Mkw9X8x5fupy0IKsmuqVtoGDyxsaDlbk4Rd05IAQw=
-go.etcd.io/bbolt v1.3.9 h1:8x7aARPEXiXbHmtUwAIv7eV2fQFHrLLavdiJ3uzJXoI=
-go.etcd.io/bbolt v1.3.9/go.mod h1:zaO32+Ti0PK1ivdPtgMESzuzL2VPoIG1PCQNvOdo/dE=
-go.etcd.io/etcd/api/v3 v3.5.10 h1:szRajuUUbLyppkhs9K6BRtjY37l66XQQmw7oZRANE4k=
-go.etcd.io/etcd/api/v3 v3.5.10/go.mod h1:TidfmT4Uycad3NM/o25fG3J07odo4GBB9hoxaodFCtI=
-go.etcd.io/etcd/api/v3 v3.5.14 h1:vHObSCxyB9zlF60w7qzAdTcGaglbJOpSj1Xj9+WGxq0=
-go.etcd.io/etcd/api/v3 v3.5.14/go.mod h1:BmtWcRlQvwa1h3G2jvKYwIQy4PkHlDej5t7uLMUdJUU=
-go.etcd.io/etcd/client/pkg/v3 v3.5.10 h1:kfYIdQftBnbAq8pUWFXfpuuxFSKzlmM5cSn76JByiT0=
-go.etcd.io/etcd/client/pkg/v3 v3.5.10/go.mod h1:DYivfIviIuQ8+/lCq4vcxuseg2P2XbHygkKwFo9fc8U=
-go.etcd.io/etcd/client/pkg/v3 v3.5.14 h1:SaNH6Y+rVEdxfpA2Jr5wkEvN6Zykme5+YnbCkxvuWxQ=
-go.etcd.io/etcd/client/pkg/v3 v3.5.14/go.mod h1:8uMgAokyG1czCtIdsq+AGyYQMvpIKnSvPjFMunkgeZI=
-go.etcd.io/etcd/client/v2 v2.305.10 h1:MrmRktzv/XF8CvtQt+P6wLUlURaNpSDJHFZhe//2QE4=
-go.etcd.io/etcd/client/v2 v2.305.10/go.mod h1:m3CKZi69HzilhVqtPDcjhSGp+kA1OmbNn0qamH80xjA=
-go.etcd.io/etcd/client/v2 v2.305.13 h1:RWfV1SX5jTU0lbCvpVQe3iPQeAHETWdOTb6pxhd77C8=
-go.etcd.io/etcd/client/v2 v2.305.13/go.mod h1:iQnL7fepbiomdXMb3om1rHq96htNNGv2sJkEcZGDRRg=
-go.etcd.io/etcd/client/v3 v3.5.10 h1:W9TXNZ+oB3MCd/8UjxHTWK5J9Nquw9fQBLJd5ne5/Ao=
-go.etcd.io/etcd/client/v3 v3.5.10/go.mod h1:RVeBnDz2PUEZqTpgqwAtUd8nAPf5kjyFyND7P1VkOKc=
-go.etcd.io/etcd/client/v3 v3.5.14 h1:CWfRs4FDaDoSz81giL7zPpZH2Z35tbOrAJkkjMqOupg=
-go.etcd.io/etcd/client/v3 v3.5.14/go.mod h1:k3XfdV/VIHy/97rqWjoUzrj9tk7GgJGH9J8L4dNXmAk=
-go.etcd.io/etcd/pkg/v3 v3.5.10 h1:WPR8K0e9kWl1gAhB5A7gEa5ZBTNkT9NdNWrR8Qpo1CM=
-go.etcd.io/etcd/pkg/v3 v3.5.10/go.mod h1:TKTuCKKcF1zxmfKWDkfz5qqYaE3JncKKZPFf8c1nFUs=
-go.etcd.io/etcd/pkg/v3 v3.5.13 h1:st9bDWNsKkBNpP4PR1MvM/9NqUPfvYZx/YXegsYEH8M=
-go.etcd.io/etcd/pkg/v3 v3.5.13/go.mod h1:N+4PLrp7agI/Viy+dUYpX7iRtSPvKq+w8Y14d1vX+m0=
-go.etcd.io/etcd/raft/v3 v3.5.10 h1:cgNAYe7xrsrn/5kXMSaH8kM/Ky8mAdMqGOxyYwpP0LA=
-go.etcd.io/etcd/raft/v3 v3.5.10/go.mod h1:odD6kr8XQXTy9oQnyMPBOr0TVe+gT0neQhElQ6jbGRc=
-go.etcd.io/etcd/raft/v3 v3.5.13 h1:7r/NKAOups1YnKcfro2RvGGo2PTuizF/xh26Z2CTAzA=
-go.etcd.io/etcd/raft/v3 v3.5.13/go.mod h1:uUFibGLn2Ksm2URMxN1fICGhk8Wu96EfDQyuLhAcAmw=
-go.etcd.io/etcd/server/v3 v3.5.10 h1:4NOGyOwD5sUZ22PiWYKmfxqoeh72z6EhYjNosKGLmZg=
-go.etcd.io/etcd/server/v3 v3.5.10/go.mod h1:gBplPHfs6YI0L+RpGkTQO7buDbHv5HJGG/Bst0/zIPo=
-go.etcd.io/etcd/server/v3 v3.5.13 h1:V6KG+yMfMSqWt+lGnhFpP5z5dRUj1BDRJ5k1fQ9DFok=
-go.etcd.io/etcd/server/v3 v3.5.13/go.mod h1:K/8nbsGupHqmr5MkgaZpLlH1QdX1pcNQLAkODy44XcQ=
-go.opencensus.io v0.24.0 h1:y73uSU6J157QMP2kn2r30vwW1A2W2WFwSCGnAVxeaD0=
-go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.42.0 h1:ZOLJc06r4CB42laIXg/7udr0pbZyuAihN10A/XuiQRY=
-go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.42.0/go.mod h1:5z+/ZWJQKXa9YT34fQNx5K8Hd1EoIhvtUygUQPqEOgQ=
-go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.46.1/go.mod h1:4UoMYEZOC0yN/sPGH76KPkkU7zgiEWYWL9vwmbnTJPE=
-go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.47.0/go.mod h1:r9vWsPS/3AQItv3OSlEJ/E4mbrhUbbw18meOjArPtKQ=
-go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.53.0 h1:9G6E0TXzGFVfTnawRzrPl83iHOAV7L8NJiR8RSGYV1g=
+github.com/xiang90/probing v0.0.0-20221125231312-a49e3df8f510/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
+go.etcd.io/bbolt v1.3.11/go.mod h1:dksAq7YMXoljX0xu6VF5DMZGbhYYoLUalEiSySYAS4I=
+go.etcd.io/etcd/api/v3 v3.5.16/go.mod h1:1P4SlIP/VwkDmGo3OlOD7faPeP8KDIFhqvciH5EfN28=
+go.etcd.io/etcd/client/pkg/v3 v3.5.16/go.mod h1:V8acl8pcEK0Y2g19YlOV9m9ssUe6MgiDSobSoaBAM0E=
+go.etcd.io/etcd/client/v2 v2.305.16/go.mod h1:h9YxWCzcdvZENbfzBTFCnoNumr2ax3F19sKMqHFmXHE=
+go.etcd.io/etcd/client/v3 v3.5.16/go.mod h1:X+rExSGkyqxvu276cr2OwPLBaeqFu1cIl4vmRjAD/50=
+go.etcd.io/etcd/pkg/v3 v3.5.16/go.mod h1:+lutCZHG5MBBFI/U4eYT5yL7sJfnexsoM20Y0t2uNuY=
+go.etcd.io/etcd/raft/v3 v3.5.16/go.mod h1:P4UP14AxofMJ/54boWilabqqWoW9eLodl6I5GdGzazI=
+go.etcd.io/etcd/server/v3 v3.5.16/go.mod h1:ynhyZZpdDp1Gq49jkUg5mfkDWZwXnn3eIqCqtJnrD/s=
+go.opentelemetry.io/contrib/detectors/gcp v1.31.0/go.mod h1:tzQL6E1l+iV44YFTkcAeNQqzXUiekSYP9jjJjXwEd00=
 go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.53.0/go.mod h1:azvtTADFQJA8mX80jIH/akaE7h+dbm/sVuaHqN13w74=
-go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.44.0 h1:KfYpVmrjI7JuToy5k8XV3nkapjWx48k4E4JOtVstzQI=
-go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.44.0/go.mod h1:SeQhzAEccGVZVEy7aH87Nh0km+utSpo1pTv6eMMop48=
-go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.46.1/go.mod h1:sEGXWArGqc3tVa+ekntsN65DmVbVeW+7lTKTjZF3/Fo=
-go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.47.0/go.mod h1:SK2UL73Zy1quvRPonmOmRDiWk1KBV3LyIeeIxcEApWw=
-go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.53.0 h1:4K4tsIXefpVJtvA/8srF4V4y0akAoPHkIslgAkjixJA=
 go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.53.0/go.mod h1:jjdQuTGVsXV4vSs+CJ2qYDeDPf9yIJV23qlIzBm73Vg=
-go.opentelemetry.io/otel v1.19.0 h1:MuS/TNf4/j4IXsZuJegVzI1cwut7Qc00344rgH7p8bs=
-go.opentelemetry.io/otel v1.19.0/go.mod h1:i0QyjOq3UPoTzff0PJB2N66fb4S0+rSbSB15/oyH9fY=
-go.opentelemetry.io/otel v1.21.0/go.mod h1:QZzNPQPm1zLX4gZK4cMi+71eaorMSGT3A4znnUvNNEo=
-go.opentelemetry.io/otel v1.22.0/go.mod h1:eoV4iAi3Ea8LkAEI9+GFT44O6T/D0GWAVFyZVCC6pMI=
-go.opentelemetry.io/otel v1.28.0 h1:/SqNcYk+idO0CxKEUOtKQClMK/MimZihKYMruSMViUo=
-go.opentelemetry.io/otel v1.28.0/go.mod h1:q68ijF8Fc8CnMHKyzqL6akLO46ePnjkgfIMIjUIX9z4=
-go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.19.0 h1:Mne5On7VWdx7omSrSSZvM4Kw7cS7NQkOOmLcgscI51U=
-go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.19.0/go.mod h1:IPtUMKL4O3tH5y+iXVyAXqpAwMuzC1IrxVS81rummfE=
-go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.28.0 h1:3Q/xZUyC1BBkualc9ROb4G8qkH90LXEIICcs5zv1OYY=
 go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.28.0/go.mod h1:s75jGIWA9OfCMzF0xr+ZgfrB5FEbbV7UuYo32ahUiFI=
-go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.19.0 h1:3d+S281UTjM+AbF31XSOYn1qXn3BgIdWl8HNEpx08Jk=
-go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.19.0/go.mod h1:0+KuTDyKL4gjKCF75pHOX4wuzYDUZYfAQdSu43o+Z2I=
-go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.27.0 h1:qFffATk0X+HD+f1Z8lswGiOQYKHRlzfmdJm0wEaVrFA=
 go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.27.0/go.mod h1:MOiCmryaYtc+V0Ei+Tx9o5S1ZjA7kzLucuVuyzBZloQ=
-go.opentelemetry.io/otel/metric v1.19.0 h1:aTzpGtV0ar9wlV4Sna9sdJyII5jTVJEvKETPiOKwvpE=
-go.opentelemetry.io/otel/metric v1.19.0/go.mod h1:L5rUsV9kM1IxCj1MmSdS+JQAcVm319EUrDVLrt7jqt8=
-go.opentelemetry.io/otel/metric v1.21.0/go.mod h1:o1p3CA8nNHW8j5yuQLdc1eeqEaPfzug24uvsyIEJRWM=
-go.opentelemetry.io/otel/metric v1.22.0/go.mod h1:evJGjVpZv0mQ5QBRJoBF64yMuOf4xCWdXjK8pzFvliY=
-go.opentelemetry.io/otel/metric v1.28.0 h1:f0HGvSl1KRAU1DLgLGFjrwVyismPlnuU6JD6bOeuA5Q=
-go.opentelemetry.io/otel/metric v1.28.0/go.mod h1:Fb1eVBFZmLVTMb6PPohq3TO9IIhUisDsbJoL/+uQW4s=
-go.opentelemetry.io/otel/sdk v1.19.0 h1:6USY6zH+L8uMH8L3t1enZPR3WFEmSTADlqldyHtJi3o=
-go.opentelemetry.io/otel/sdk v1.19.0/go.mod h1:NedEbbS4w3C6zElbLdPJKOpJQOrGUJ+GfzpjUvI0v1A=
-go.opentelemetry.io/otel/sdk v1.21.0/go.mod h1:Nna6Yv7PWTdgJHVRD9hIYywQBRx7pbox6nwBnZIxl/E=
-go.opentelemetry.io/otel/sdk v1.28.0 h1:b9d7hIry8yZsgtbmM0DKyPWMMUMlK9NEKuIG4aBqWyE=
-go.opentelemetry.io/otel/sdk v1.28.0/go.mod h1:oYj7ClPUA7Iw3m+r7GeEjz0qckQRJK2B8zjcZEfu7Pg=
-go.opentelemetry.io/otel/trace v1.19.0 h1:DFVQmlVbfVeOuBRrwdtaehRrWiL1JoVs9CPIQ1Dzxpg=
-go.opentelemetry.io/otel/trace v1.19.0/go.mod h1:mfaSyvGyEJEI0nyV2I4qhNQnbBOUUmYZpYojqMnX2vo=
-go.opentelemetry.io/otel/trace v1.21.0/go.mod h1:LGbsEB0f9LGjN+OZaQQ26sohbOmiMR+BaslueVtS/qQ=
-go.opentelemetry.io/otel/trace v1.22.0/go.mod h1:RbbHXVqKES9QhzZq/fE5UnOSILqRt40a21sPw2He1xo=
-go.opentelemetry.io/otel/trace v1.28.0 h1:GhQ9cUuQGmNDd5BTCP2dAvv75RdMxEfTmYejp+lkx9g=
-go.opentelemetry.io/otel/trace v1.28.0/go.mod h1:jPyXzNPg6da9+38HEwElrQiHlVMTnVfM3/yv2OlIHaI=
-go.opentelemetry.io/proto/otlp v1.0.0 h1:T0TX0tmXU8a3CbNXzEKGeU5mIVOdf0oykP+u2lIVU/I=
-go.opentelemetry.io/proto/otlp v1.0.0/go.mod h1:Sy6pihPLfYHkr3NkUbEhGHFhINUSI/v80hjKIs5JXpM=
-go.opentelemetry.io/proto/otlp v1.3.1 h1:TrMUixzpM0yuc/znrFTP9MMRh8trP93mkCiDVeXrui0=
 go.opentelemetry.io/proto/otlp v1.3.1/go.mod h1:0X1WI4de4ZsLrrJNLAQbFeLCm3T7yBkR0XqQ7niQU+8=
-go.uber.org/atomic v1.10.0 h1:9qC72Qh0+3MqyJbAn8YU5xVq1frD8bn3JtD2oXtafVQ=
-go.uber.org/atomic v1.10.0/go.mod h1:LUxbIzbOniOlMKjJjyPfpl4v+PKK2cNJn91OQbhoJI0=
-go.uber.org/goleak v1.2.0/go.mod h1:XJYK+MuIchqpmGmUSAzotztawfKvYLUIgg7guXrwVUo=
-go.uber.org/multierr v1.10.0/go.mod h1:20+QtiLqy0Nd6FdQB9TLXag12DsQkrbs3htMFfDN80Y=
-golang.org/dl v0.0.0-20190829154251-82a15e2f2ead h1:jeP6FgaSLNTMP+Yri3qjlACywQLye+huGLmNGhBzm6k=
-golang.org/x/arch v0.3.0 h1:02VY4/ZcO/gBOH6PUaoiptASxtXU10jazRCP865E97k=
 golang.org/x/arch v0.3.0/go.mod h1:5om86z9Hs0C8fWVUuoMHwpExlXzs5Tkyp9hOrfG7pp8=
-golang.org/x/crypto v0.0.0-20220722155217-630584e8d5aa/go.mod h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
-golang.org/x/crypto v0.12.0/go.mod h1:NF0Gs7EO5K4qLn+Ylc+fih8BSTeIjAP05siRnAh98yw=
-golang.org/x/crypto v0.23.0/go.mod h1:CKFgDieR+mRhux2Lsu27y0fO304Db0wZe70UKqHu0v8=
-golang.org/x/crypto v0.24.0/go.mod h1:Z1PMYSOR5nyMcyAVAIQSKCDwalqy85Aqn1x3Ws4L5DM=
-golang.org/x/crypto v0.28.0/go.mod h1:rmgy+3RHxRZMyY0jjAJShp2zgEdOqj2AO7U0pYmeQ7U=
-golang.org/x/image v0.0.0-20220302094943-723b81ca9867 h1:TcHcE0vrmgzNH1v3ppjcMGbhG5+9fMuvOmUYwNEF4q4=
-golang.org/x/lint v0.0.0-20210508222113-6edffad5e616 h1:VLliZ0d+/avPrXXH+OakdXhpJuEoBZuwh1m2j7U6Iug=
-golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028 h1:4+4C/Iv2U4fMZBiMCc98MG1In4gJY5YRhtpDNeDeHWs=
 golang.org/x/mod v0.9.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
-golang.org/x/mod v0.12.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
-golang.org/x/mod v0.14.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
 golang.org/x/mod v0.17.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
-golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
-golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI=
-golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
-golang.org/x/net v0.18.0/go.mod h1:/czyP5RqHAH4odGYxBJ1qz0+CE5WZ+2j1YgoEo8F2jQ=
-golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
-golang.org/x/net v0.23.0/go.mod h1:JKghWKKOSdJwpW2GEx0Ja7fmaKnMsbu+MWVZTokSYmg=
-golang.org/x/net v0.24.0/go.mod h1:2Q7sJY5mzlzWjKtYUEXSlBWCdyaioyXzRB2RtU8KVE8=
-golang.org/x/net v0.26.0/go.mod h1:5YKkiSynbBIh3p6iOc/vibscux0x38BZDkn8sCUPxHE=
-golang.org/x/net v0.27.0/go.mod h1:dDi0PyhWNoiUOrAS8uXv/vnScO4wnHQO4mj9fn/RytE=
-golang.org/x/net v0.28.0/go.mod h1:yqtgsTWOOnlGLG9GFRrK3++bGOUEkNBoHZc8MEDWPNg=
-golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI=
-golang.org/x/oauth2 v0.11.0/go.mod h1:LdF7O/8bLR/qWK9DrpXmbHLTouvRHK0SgJl0GmDBchk=
-golang.org/x/oauth2 v0.13.0/go.mod h1:/JMhi4ZRXAf4HG9LiNmxvk+45+96RUlVThiH8FzNBn0=
-golang.org/x/oauth2 v0.14.0/go.mod h1:lAtNWgaWfL4cm7j2OV8TxGi9Qb7ECORx8DktCY74OwM=
-golang.org/x/oauth2 v0.15.0/go.mod h1:q48ptWNTY5XWf+JNten23lcvHpLJ0ZSxF5ttTHKVCAM=
-golang.org/x/oauth2 v0.17.0/go.mod h1:OzPDGQiuQMguemayvdylqddI7qcD9lnSDb+1FiwQ5HA=
-golang.org/x/sync v0.4.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
-golang.org/x/sync v0.7.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
-golang.org/x/sync v0.8.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
-golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/net v0.30.0/go.mod h1:2wGyMJ5iFasEhkwi13ChkO/t1ECNC4X4eBKkVFyYFlU=
+golang.org/x/net v0.32.0/go.mod h1:CwU0IoeOlnQQWJ6ioyFrfRuomB8GKF6KbYXZVyeXNfs=
 golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.19.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.21.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.22.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.23.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.24.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/telemetry v0.0.0-20240208230135-b75ee8823808/go.mod h1:KG1lNk5ZFNssSZLrpVb4sMXKMpGwGXOxSG3rnu2gZQQ=
-golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2 h1:IRJeR9r1pYWsHKTRe/IInb7lYvbBVIqOgsX/u0mbOWY=
-golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2/go.mod h1:TeRTkGYfJXctD9OcfyVLyj2J3IxLnKwHJR8f4D8a3YE=
-golang.org/x/telemetry v0.0.0-20240521205824-bda55230c457 h1:zf5N6UOrA487eEFacMePxjXAJctxKmyjKUsjA11Uzuk=
+golang.org/x/sys v0.25.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.26.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/telemetry v0.0.0-20240521205824-bda55230c457/go.mod h1:pRgIJT+bRLFKnoM1ldnzKoxTIn14Yxz928LQRYYgIN0=
-golang.org/x/term v0.18.0/go.mod h1:ILwASektA3OnRv7amZ1xhE/KTR+u50pbXfZ03+6Nx58=
-golang.org/x/term v0.21.0/go.mod h1:ooXLefLobQVslOqselCNF4SxFAaoS6KujMbsGzSDmX0=
-golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
-golang.org/x/text v0.12.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
-golang.org/x/text v0.16.0/go.mod h1:GhwF1Be+LQoKShO3cGOHzqOgRrGaYc9AvblQOmPVHnI=
-golang.org/x/text v0.17.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
-golang.org/x/time v0.3.0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
-golang.org/x/tools v0.4.0/go.mod h1:UE5sM2OK9E/d67R0ANs2xJizIymRP5gJU295PvKXxjQ=
-golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM=
+golang.org/x/text v0.19.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
 golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
-golang.org/x/tools v0.16.1/go.mod h1:kYVVN6I1mBNoB1OX+noeBjbRk4IUEPa7JJ+TJMEooJ0=
-golang.org/x/tools v0.18.0/go.mod h1:GL7B4CwcLLeo59yx/9UWWuNOW1n3VZ4f5axWfML7Lcg=
-golang.org/x/tools v0.20.0/go.mod h1:WvitBU7JJf6A4jOdg4S1tviW9bhUxkgeCui/0JHctQg=
 golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk=
-golang.org/x/tools v0.23.0/go.mod h1:pnu6ufv6vQkll6szChhK3C3L/ruaIv5eBeztNG8wtsI=
 golang.org/x/tools v0.24.0/go.mod h1:YhNqVBIfWHdzvTLs0d8LCuMhkKUgSUKldakyV7W/WDQ=
-golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2 h1:H2TDz8ibqkAF6YGhCdN3jS9O0/s90v0rJh3X/OLHEUk=
-golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2/go.mod h1:K8+ghG5WaK9qNqU5K3HdILfMLy1f3aNYFI/wnl100a8=
-golang.org/x/xerrors v0.0.0-20231012003039-104605ab7028/go.mod h1:NDW/Ps6MPRej6fsCIbMTohpP40sJ/P/vI1MoTEGwX90=
-gonum.org/v1/gonum v0.11.0 h1:f1IJhK4Km5tBJmaiJXtk/PkL4cdVX6J+tGiM187uT5E=
-gonum.org/v1/netlib v0.0.0-20190313105609-8cb42192e0e0 h1:OE9mWmgKkjJyEmDAAtGMPjXu+YNeGvK9VTSHY6+Qihc=
-gonum.org/v1/plot v0.10.1 h1:dnifSs43YJuNMDzB7v8wV64O4ABBHReuAVAoBxqBqS4=
-google.golang.org/api v0.126.0 h1:q4GJq+cAdMAC7XP7njvQ4tvohGLiSlytuL4BQxbIZ+o=
-google.golang.org/api v0.128.0/go.mod h1:Y611qgqaE92On/7g65MQgxYul3c0rEB894kniWLY750=
-google.golang.org/api v0.149.0/go.mod h1:Mwn1B7JTXrzXtnvmzQE2BD6bYZQ8DShKZDZbeN9I7qI=
-google.golang.org/api v0.155.0/go.mod h1:GI5qK5f40kCpHfPn6+YzGAByIKWv8ujFnmoWm7Igduk=
-google.golang.org/api v0.162.0/go.mod h1:6SulDkfoBIg4NFmCuZ39XeeAgSHCPecfSUuDyYlAHs0=
-google.golang.org/appengine v1.6.7/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
-google.golang.org/genproto v0.0.0-20230822172742-b8732ec3820d/go.mod h1:yZTlhN0tQnXo3h00fuXNCxJdLdIdnVFVBaRJ5LWBbw4=
-google.golang.org/genproto v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:CCviP9RmpZ1mxVr8MUjCnSiY09IbAXZxhLE6EhHIdPU=
-google.golang.org/genproto v0.0.0-20231002182017-d307bd883b97 h1:SeZZZx0cP0fqUyA+oRzP9k7cSwJlvDFiROO72uwD6i0=
-google.golang.org/genproto v0.0.0-20231002182017-d307bd883b97/go.mod h1:t1VqOqqvce95G3hIDCT5FeO3YUc6Q4Oe24L/+rNMxRk=
-google.golang.org/genproto v0.0.0-20231016165738-49dd2c1f3d0b/go.mod h1:CgAqfJo+Xmu0GwA0411Ht3OU3OntXwsGmrmjI8ioGXI=
-google.golang.org/genproto v0.0.0-20231030173426-d783a09b4405/go.mod h1:3WDQMjmJk36UQhjQ89emUzb1mdaHcPeeAh4SCBKznB4=
-google.golang.org/genproto v0.0.0-20231106174013-bbf56f31fb17 h1:wpZ8pe2x1Q3f2KyT5f8oP/fa9rHAKgFPr/HZdNuS+PQ=
-google.golang.org/genproto v0.0.0-20231106174013-bbf56f31fb17/go.mod h1:J7XzRzVy1+IPwWHZUzoD0IccYZIrXILAQpc+Qy9CMhY=
-google.golang.org/genproto v0.0.0-20231211222908-989df2bf70f3/go.mod h1:5RBcpGRxr25RbDzY5w+dmaqpSEvl8Gwl1x2CICf60ic=
-google.golang.org/genproto v0.0.0-20231212172506-995d672761c0/go.mod h1:l/k7rMz0vFTBPy+tFSGvXEd3z+BcoG1k7EHbqm+YBsY=
-google.golang.org/genproto v0.0.0-20240116215550-a9fa1716bcac/go.mod h1:+Rvu7ElI+aLzyDQhpHMFMMltsD6m7nqpuWDd2CwJw3k=
-google.golang.org/genproto v0.0.0-20240123012728-ef4313101c80 h1:KAeGQVN3M9nD0/bQXnr/ClcEMJ968gUXJQ9pwfSynuQ=
+golang.org/x/tools v0.26.0/go.mod h1:TPVVj70c7JJ3WCazhD8OdXcZg/og+b9+tH/KxylGwH0=
 google.golang.org/genproto v0.0.0-20240123012728-ef4313101c80/go.mod h1:cc8bqMqtv9gMOr0zHg2Vzff5ULhhL2IXP4sbcn32Dro=
-google.golang.org/genproto v0.0.0-20240125205218-1f4bbc51befe/go.mod h1:cc8bqMqtv9gMOr0zHg2Vzff5ULhhL2IXP4sbcn32Dro=
-google.golang.org/genproto v0.0.0-20240213162025-012b6fc9bca9 h1:9+tzLLstTlPTRyJTh+ah5wIMsBW5c4tQwGTN3thOW9Y=
-google.golang.org/genproto v0.0.0-20240213162025-012b6fc9bca9/go.mod h1:mqHbVIp48Muh7Ywss/AD6I5kNVKZMmAa/QEW58Gxp2s=
-google.golang.org/genproto v0.0.0-20240227224415-6ceb2ff114de h1:F6qOa9AZTYJXOUEr4jDysRDLrm4PHePlge4v4TGAlxY=
-google.golang.org/genproto v0.0.0-20240227224415-6ceb2ff114de/go.mod h1:VUhTRKeHn9wwcdrk73nvdC9gF178Tzhmt/qyaFcPLSo=
-google.golang.org/genproto/googleapis/api v0.0.0-20230822172742-b8732ec3820d/go.mod h1:KjSP20unUpOx5kyQUFa7k4OJg0qeJ7DEZflGDu2p6Bk=
-google.golang.org/genproto/googleapis/api v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:RdyHbowztCGQySiCvQPgWQWgWhGnouTdCflKoDBt32U=
-google.golang.org/genproto/googleapis/api v0.0.0-20231002182017-d307bd883b97/go.mod h1:iargEX0SFPm3xcfMI0d1domjg0ZF4Aa0p2awqyxhvF0=
-google.golang.org/genproto/googleapis/api v0.0.0-20231016165738-49dd2c1f3d0b/go.mod h1:IBQ646DjkDkvUIsVq/cc03FUFQ9wbZu7yE396YcL870=
-google.golang.org/genproto/googleapis/api v0.0.0-20231030173426-d783a09b4405/go.mod h1:oT32Z4o8Zv2xPQTg0pbVaPr0MPOH6f14RgXt7zfIpwg=
-google.golang.org/genproto/googleapis/api v0.0.0-20231106174013-bbf56f31fb17/go.mod h1:0xJLfVdJqpAPl8tDg1ujOCGzx6LFLttXT5NhllGOXY4=
-google.golang.org/genproto/googleapis/api v0.0.0-20231211222908-989df2bf70f3/go.mod h1:k2dtGpRrbsSyKcNPKKI5sstZkrNCZwpU/ns96JoHbGg=
-google.golang.org/genproto/googleapis/api v0.0.0-20240102182953-50ed04b92917/go.mod h1:CmlNWB9lSezaYELKS5Ym1r44VrrbPUa7JTvw+6MbpJ0=
-google.golang.org/genproto/googleapis/api v0.0.0-20240116215550-a9fa1716bcac/go.mod h1:B5xPO//w8qmBDjGReYLpR6UJPnkldGkCSMoH/2vxJeg=
-google.golang.org/genproto/googleapis/api v0.0.0-20240123012728-ef4313101c80/go.mod h1:4jWUdICTdgc3Ibxmr8nAJiiLHwQBY0UI0XZcEMaFKaA=
-google.golang.org/genproto/googleapis/api v0.0.0-20240205150955-31a09d347014/go.mod h1:rbHMSEDyoYX62nRVLOCc4Qt1HbsdytAYoVwgjiOhF3I=
-google.golang.org/genproto/googleapis/api v0.0.0-20240213162025-012b6fc9bca9/go.mod h1:PVreiBMirk8ypES6aw9d4p6iiBNSIfZEBqr3UGoAi2E=
-google.golang.org/genproto/googleapis/api v0.0.0-20240227224415-6ceb2ff114de h1:jFNzHPIeuzhdRwVhbZdiym9q0ory/xY3sA+v2wPg8I0=
-google.golang.org/genproto/googleapis/api v0.0.0-20240227224415-6ceb2ff114de/go.mod h1:5iCWqnniDlqZHrd3neWVTOwvh/v6s3232omMecelax8=
-google.golang.org/genproto/googleapis/api v0.0.0-20240318140521-94a12d6c2237/go.mod h1:Z5Iiy3jtmioajWHDGFk7CeugTyHtPvMHA4UTmUkyalE=
-google.golang.org/genproto/googleapis/api v0.0.0-20240528184218-531527333157 h1:7whR9kGa5LUwFtpLm2ArCEejtnxlGeLbAyjFY8sGNFw=
-google.golang.org/genproto/googleapis/api v0.0.0-20240528184218-531527333157/go.mod h1:99sLkeliLXfdj2J75X3Ho+rrVCaJze0uwN7zDDkjPVU=
-google.golang.org/genproto/googleapis/api v0.0.0-20240604185151-ef581f913117/go.mod h1:OimBR/bc1wPO9iV4NC2bpyjy3VnAwZh5EBPQdtaE5oo=
-google.golang.org/genproto/googleapis/api v0.0.0-20240814211410-ddb44dafa142/go.mod h1:d6be+8HhtEtucleCbxpPW9PA9XwISACu8nvpPqF0BVo=
-google.golang.org/genproto/googleapis/api v0.0.0-20240903143218-8af14fe29dc1/go.mod h1:qpvKtACPCQhAdu3PyQgV4l3LMXZEtft7y8QcarRsp9I=
-google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc h1:g3hIDl0jRNd9PPTs2uBzYuaD5mQuwOkZY0vSc0LR32o=
-google.golang.org/genproto/googleapis/bytestream v0.0.0-20231030173426-d783a09b4405/go.mod h1:GRUCuLdzVqZte8+Dl/D4N25yLzcGqqWaYkeVOwulFqw=
-google.golang.org/genproto/googleapis/bytestream v0.0.0-20231212172506-995d672761c0/go.mod h1:guYXGPwC6jwxgWKW5Y405fKWOFNwlvUlUnzyp9i0uqo=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20230920204549-e6e6cdab5c13/go.mod h1:KSqppvjFjtoCI+KGd4PELB0qLNxdJHRGqRI09mB6pQA=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20231002182017-d307bd883b97/go.mod h1:v7nGkzlmW8P3n/bKmWBn2WpBjpOEx8Q6gMueudAmKfY=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20231016165738-49dd2c1f3d0b/go.mod h1:swOH3j0KzcDDgGUWr+SNpyTen5YrXjS3eyPzFYKc6lc=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20231030173426-d783a09b4405/go.mod h1:67X1fPuzjcrkymZzZV1vvkFeTn2Rvc6lYF9MYFGCcwE=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20231212172506-995d672761c0/go.mod h1:FUoWkonphQm3RhTS+kOEhF8h0iDpm4tdXolVCeZ9KKA=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240102182953-50ed04b92917/go.mod h1:xtjpI3tXFPP051KaWnhvxkiubL/6dJ18vLVf7q2pTOU=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240116215550-a9fa1716bcac/go.mod h1:daQN87bsDqDoe316QbbvX60nMoJQa4r6Ds0ZuoAe5yA=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240123012728-ef4313101c80/go.mod h1:PAREbraiVEVGVdTZsVWjSbbTtSyGbAgIIvni8a8CD5s=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240125205218-1f4bbc51befe/go.mod h1:PAREbraiVEVGVdTZsVWjSbbTtSyGbAgIIvni8a8CD5s=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240205150955-31a09d347014/go.mod h1:SaPjaZGWb0lPqs6Ittu0spdfrOArqji4ZdeP5IC/9N4=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20240213162025-012b6fc9bca9/go.mod h1:YUWgXUFRPfoYK1IHMuxH5K6nPEXSCzIMljnQ59lLRCk=
-google.golang.org/grpc v1.56.1/go.mod h1:I9bI3vqKfayGqPUAwGdOSu7kt6oIJLixfffKrpXqQ9s=
-google.golang.org/grpc v1.57.0/go.mod h1:Sd+9RMTACXwmub0zcNY2c4arhtrbBYD1AUHI/dt16Mo=
-google.golang.org/grpc v1.59.0/go.mod h1:aUPDwccQo6OTjy7Hct4AfBPD1GptF4fyUjIkQ9YtF98=
-google.golang.org/grpc v1.60.1/go.mod h1:OlCHIeLYqSSsLi6i49B5QGdzaMZK9+M7LXN2FKz4eGM=
-google.golang.org/grpc v1.61.0/go.mod h1:VUbo7IFqmF1QtCAstipjG0GIoq49KvMe9+h1jFLBNJs=
-google.golang.org/grpc v1.61.1/go.mod h1:VUbo7IFqmF1QtCAstipjG0GIoq49KvMe9+h1jFLBNJs=
-google.golang.org/grpc v1.62.1/go.mod h1:IWTG0VlJLCh1SkC58F7np9ka9mx/WNkjl4PGJaiq+QE=
-google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0 h1:M1YKkFIboKNieVO5DLUEVzQfGwJD30Nv2jfUgzb5UcE=
-google.golang.org/protobuf v1.34.1/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos=
-gopkg.in/alecthomas/kingpin.v2 v2.2.6 h1:jMFz6MfLP0/4fUyZle81rXUoxOBFi19VUFKVDOQfozc=
-gopkg.in/errgo.v2 v2.1.0 h1:0vLT13EuvQ0hNvakwLuFZ/jYrLp5F3kcWHXdRggjCE8=
-gopkg.in/evanphx/json-patch.v5 v5.6.0 h1:BMT6KIwBD9CaU91PJCZIe46bDmBWa9ynTQgJIOpfQBk=
-gopkg.in/evanphx/json-patch.v5 v5.6.0/go.mod h1:/kvTRh1TVm5wuM6OkHxqXtE/1nUZZpihg29RtuIyfvk=
-gopkg.in/fsnotify.v1 v1.4.7 h1:xOHLXZwVvI9hhs+cLKq5+I5onOuwQLhQwiu63xxlHs4=
-gopkg.in/natefinch/lumberjack.v2 v2.2.1 h1:bBRl1b0OH9s/DuPhuXpNl+VtCaJXFZ5/uEFST95x9zc=
+google.golang.org/genproto/googleapis/api v0.0.0-20241015192408-796eee8c2d53/go.mod h1:riSXTwQ4+nqmPGtobMFyW5FqVAmIs0St6VPp4Ug7CE4=
 gopkg.in/natefinch/lumberjack.v2 v2.2.1/go.mod h1:YD8tP3GAjkrDg1eZH7EGmyESg/lsYskCTPBJVb9jqSc=
-gopkg.in/square/go-jose.v2 v2.6.0 h1:NGk74WTnPKBNUhNzQX7PYcTLUjoq7mzKk2OKbvwk2iI=
 gopkg.in/square/go-jose.v2 v2.6.0/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
-honnef.co/go/tools v0.1.3 h1:qTakTkI6ni6LFD5sBwwsdSO+AQqbSIxOauHTTQKZ/7o=
-k8s.io/gengo v0.0.0-20230829151522-9cce18d56c01 h1:pWEwq4Asjm4vjW7vcsmijwBhOr1/shsbSYiWXmNGlks=
-k8s.io/gengo v0.0.0-20230829151522-9cce18d56c01/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E=
-k8s.io/gengo/v2 v2.0.0-20240228010128-51d4e06bde70/go.mod h1:VH3AT8AaQOqiGjMF9p0/IM1Dj+82ZwjfxUP1IxaHE+8=
-k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y=
-k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0=
-k8s.io/klog/v2 v2.120.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
-k8s.io/kms v0.29.3/go.mod h1:TBGbJKpRUMk59neTMDMddjIDL+D4HuFUbpuiuzmOPg0=
-k8s.io/kms v0.30.0 h1:ZlnD/ei5lpvUlPw6eLfVvH7d8i9qZ6HwUQgydNVks8g=
-k8s.io/kms v0.30.0/go.mod h1:GrMurD0qk3G4yNgGcsCEmepqf9KyyIrTXYR2lyUOJC4=
-k8s.io/kms v0.30.1/go.mod h1:GrMurD0qk3G4yNgGcsCEmepqf9KyyIrTXYR2lyUOJC4=
-k8s.io/kms v0.31.0 h1:KchILPfB1ZE+ka7223mpU5zeFNkmb45jl7RHnlImUaI=
-k8s.io/kms v0.31.0/go.mod h1:OZKwl1fan3n3N5FFxnW5C4V3ygrah/3YXeJWS3O6+94=
-k8s.io/kms v0.31.2/go.mod h1:OZKwl1fan3n3N5FFxnW5C4V3ygrah/3YXeJWS3O6+94=
-k8s.io/kms v0.31.3/go.mod h1:OZKwl1fan3n3N5FFxnW5C4V3ygrah/3YXeJWS3O6+94=
-k8s.io/utils v0.0.0-20210802155522-efc7438f0176/go.mod h1:jPW/WVKK9YHAvNhRxK0md/EJ228hCsBRufyofKtW8HA=
-k8s.io/utils v0.0.0-20230726121419-3b25d923346b/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
-lukechampine.com/uint128 v1.2.0 h1:mBi/5l91vocEN8otkC5bDLhi2KdCticRiwbdB0O+rjI=
-modernc.org/cc/v3 v3.36.3 h1:uISP3F66UlixxWEcKuIWERa4TwrZENHSL8tWxZz8bHg=
-modernc.org/ccgo/v3 v3.16.9 h1:AXquSwg7GuMk11pIdw7fmO1Y/ybgazVkMhsZWCV0mHM=
-modernc.org/ccorpus v1.11.6 h1:J16RXiiqiCgua6+ZvQot4yUuUy8zxgqbqEEUuGPlISk=
-modernc.org/httpfs v1.0.6 h1:AAgIpFZRXuYnkjftxTAZwMIiwEqAfk8aVB2/oA6nAeM=
-modernc.org/libc v1.17.1 h1:Q8/Cpi36V/QBfuQaFVeisEBs3WqoGAJprZzmf7TfEYI=
-modernc.org/mathutil v1.5.0 h1:rV0Ko/6SfM+8G+yKiyI830l3Wuz1zRutdslNoQ0kfiQ=
-modernc.org/memory v1.2.1 h1:dkRh86wgmq/bJu2cAS2oqBCz/KsMZU7TUM4CibQ7eBs=
-modernc.org/opt v0.1.3 h1:3XOZf2yznlhC+ibLltsDGzABUGVx8J6pnFMS3E4dcq4=
-modernc.org/sqlite v1.18.1 h1:ko32eKt3jf7eqIkCgPAeHMBXw3riNSLhl2f3loEF7o8=
-modernc.org/strutil v1.1.3 h1:fNMm+oJklMGYfU9Ylcywl0CO5O6nTfaowNsh2wpPjzY=
-modernc.org/tcl v1.13.1 h1:npxzTwFTZYM8ghWicVIX1cRWzj7Nd8i6AqqX2p+IYao=
-modernc.org/token v1.0.0 h1:a0jaWiNMDhDUtqOj09wvjWWAqd3q7WpBulmL9H2egsk=
-modernc.org/z v1.5.1 h1:RTNHdsrOpeoSeOF4FbzTo8gBYByaJ5xT7NgZ9ZqRiJM=
-rsc.io/binaryregexp v0.2.0 h1:HfqmD5MEmC0zvwBuF187nq9mdnXjXsSivRiXN7SmRkE=
-rsc.io/pdf v0.1.1 h1:k1MczvYDUvJBe93bYd7wrZLLUEcLZAuF824/I4e5Xr4=
-rsc.io/quote/v3 v3.1.0 h1:9JKUTTIUgS6kzR9mK1YuGKv6Nl+DijDNIc0ghT58FaY=
-rsc.io/sampler v1.3.0 h1:7uVkIFmeBqHfdjD+gZwtXXI+RODJ2Wc4O7MPEh/QiW4=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.28.0/go.mod h1:VHVDI/KrK4fjnV61bE2g3sA7tiETLn8sooImelsCx3Y=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.29.0 h1:/U5vjBbQn3RChhv7P11uhYvCSm5G2GaIi5AIGBS6r4c=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.29.0/go.mod h1:z7+wmGM2dfIiLRfrC6jb5kV2Mq/sK1ZP303cxzkV5Y4=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.30.3 h1:2770sDpzrjjsAtVhSeUFseziht227YAWYHLGNM8QPwY=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.30.3/go.mod h1:Ve9uj1L+deCXFrPOk1LpFXqTg7LCFzFso6PA48q/XZw=
-sigs.k8s.io/structured-merge-diff/v4 v4.2.3/go.mod h1:qjx8mGObPmV2aSZepjQjbmb2ihdVs8cGKBraizNC69E=
-sigs.k8s.io/yaml v1.2.0/go.mod h1:yfXDCHCao9+ENCvLSE62v9VSji2MKu5jeNfTrofGhJc=
-sigs.k8s.io/yaml v1.3.0/go.mod h1:GeOyir5tyXNByN85N/dRIT9es5UQNerPYEKK56eTBm8=
+k8s.io/kms v0.32.0/go.mod h1:Bk2evz/Yvk0oVrvm4MvZbgq8BD34Ksxs2SRHn4/UiOM=
+sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.31.0/go.mod h1:Ve9uj1L+deCXFrPOk1LpFXqTg7LCFzFso6PA48q/XZw=

From ba4166fe4a55454bde4e37e5917bd45d167b223d Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 23 Dec 2024 23:15:56 +0100
Subject: [PATCH 1575/1641] Images: Trigger NGINX build. (#12576)

---
 images/nginx/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx/TAG b/images/nginx/TAG
index 0ec25f750..795460fce 100644
--- a/images/nginx/TAG
+++ b/images/nginx/TAG
@@ -1 +1 @@
-v1.0.0
+v1.1.0

From 0ef18ba7fb7ffe5491bbabbb510eee0d17e3ae2a Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 24 Dec 2024 01:50:09 +0100
Subject: [PATCH 1576/1641] Images: Bump `NGINX_BASE` to v1.1.0. (#12580)

---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index ea1e443b0..8244652af 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:v1.0.0@sha256:11ee0d0e3d063f1468f9a82958d57fa0718614fe10b676941f4dea0aef091faf
+registry.k8s.io/ingress-nginx/nginx:v1.1.0@sha256:43e04f78d7544010e2e86918faae1d15091995b7ef6e522f53cf3035ad814567

From 68ed4e7b656cbb15b9d751825be61a82667508d3 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 25 Dec 2024 00:07:28 +0100
Subject: [PATCH 1577/1641] Images: Trigger `test-runner` build. (#12585)

---
 images/test-runner/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/TAG b/images/test-runner/TAG
index 56130fb3a..79127d85a 100644
--- a/images/test-runner/TAG
+++ b/images/test-runner/TAG
@@ -1 +1 @@
-v1.1.1
+v1.2.0

From efa41b7aaf60e386bc53f4b1343f37af7948d1d4 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 25 Dec 2024 02:11:18 +0100
Subject: [PATCH 1578/1641] Tests: Bump `e2e-test-runner` to
 v20241224-68ed4e7b. (#12589)

---
 build/run-in-docker.sh     | 2 +-
 test/e2e-image/Makefile    | 2 +-
 test/e2e/run-chart-test.sh | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index cec69cbcb..03cc3de73 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20241104-02a3933e@sha256:baf30e414c5657cc71f5bd1db502f0e0ee4ab721b6560340eff214935e96bef0}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20241224-68ed4e7b@sha256:871642296ebc0dd386f9a43b0cf2606028d757d6c4a2737d41180f02f8172823}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 09d47a872..7d553c04e 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20241104-02a3933e@sha256:baf30e414c5657cc71f5bd1db502f0e0ee4ab721b6560340eff214935e96bef0"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20241224-68ed4e7b@sha256:871642296ebc0dd386f9a43b0cf2606028d757d6c4a2737d41180f02f8172823"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index cdc7d5b0a..144db41df 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -114,5 +114,5 @@ docker run \
   --workdir /workdir \
   --entrypoint ct \
   --rm \
-  registry.k8s.io/ingress-nginx/e2e-test-runner:v20241104-02a3933e@sha256:baf30e414c5657cc71f5bd1db502f0e0ee4ab721b6560340eff214935e96bef0 \
+  registry.k8s.io/ingress-nginx/e2e-test-runner:v20241224-68ed4e7b@sha256:871642296ebc0dd386f9a43b0cf2606028d757d6c4a2737d41180f02f8172823 \
     install --charts charts/ingress-nginx

From 30e1eee243955709993e25c2142f0df5312b05e4 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 25 Dec 2024 14:35:00 +0100
Subject: [PATCH 1579/1641] Images: Trigger other builds (1/2). (#12593)

---
 images/cfssl/TAG                    | 2 +-
 images/custom-error-pages/TAG       | 2 +-
 images/e2e-test-echo/TAG            | 2 +-
 images/ext-auth-example-authsvc/TAG | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/images/cfssl/TAG b/images/cfssl/TAG
index b18d46540..795460fce 100644
--- a/images/cfssl/TAG
+++ b/images/cfssl/TAG
@@ -1 +1 @@
-v1.0.1
+v1.1.0
diff --git a/images/custom-error-pages/TAG b/images/custom-error-pages/TAG
index 570c79651..795460fce 100644
--- a/images/custom-error-pages/TAG
+++ b/images/custom-error-pages/TAG
@@ -1 +1 @@
-v1.0.2
+v1.1.0
diff --git a/images/e2e-test-echo/TAG b/images/e2e-test-echo/TAG
index b18d46540..795460fce 100644
--- a/images/e2e-test-echo/TAG
+++ b/images/e2e-test-echo/TAG
@@ -1 +1 @@
-v1.0.1
+v1.1.0
diff --git a/images/ext-auth-example-authsvc/TAG b/images/ext-auth-example-authsvc/TAG
index 0ec25f750..795460fce 100644
--- a/images/ext-auth-example-authsvc/TAG
+++ b/images/ext-auth-example-authsvc/TAG
@@ -1 +1 @@
-v1.0.0
+v1.1.0

From 227de501177ae39de10a50689d4e9d9b780fa141 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 25 Dec 2024 15:10:16 +0100
Subject: [PATCH 1580/1641] Images: Trigger other builds (2/2). (#12594)

---
 images/fastcgi-helloserver/TAG    | 2 +-
 images/go-grpc-greeter-server/TAG | 2 +-
 images/httpbun/TAG                | 2 +-
 images/kube-webhook-certgen/TAG   | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/images/fastcgi-helloserver/TAG b/images/fastcgi-helloserver/TAG
index 570c79651..795460fce 100644
--- a/images/fastcgi-helloserver/TAG
+++ b/images/fastcgi-helloserver/TAG
@@ -1 +1 @@
-v1.0.2
+v1.1.0
diff --git a/images/go-grpc-greeter-server/TAG b/images/go-grpc-greeter-server/TAG
index 0ec25f750..795460fce 100644
--- a/images/go-grpc-greeter-server/TAG
+++ b/images/go-grpc-greeter-server/TAG
@@ -1 +1 @@
-v1.0.0
+v1.1.0
diff --git a/images/httpbun/TAG b/images/httpbun/TAG
index 570c79651..795460fce 100644
--- a/images/httpbun/TAG
+++ b/images/httpbun/TAG
@@ -1 +1 @@
-v1.0.2
+v1.1.0
diff --git a/images/kube-webhook-certgen/TAG b/images/kube-webhook-certgen/TAG
index 61919cdd8..2e7bd9108 100644
--- a/images/kube-webhook-certgen/TAG
+++ b/images/kube-webhook-certgen/TAG
@@ -1 +1 @@
-v1.4.4
+v1.5.0

From ce1ad4b283e2c6abd51c3dc33cecbf081a5bed3c Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 25 Dec 2024 20:04:10 +0100
Subject: [PATCH 1581/1641] Tests & Docs: Bump images. (#12601)

---
 docs/examples/canary/README.md                                | 4 ++--
 .../custom-errors/custom-default-backend.helm.values.yaml     | 2 +-
 .../customization/custom-errors/custom-default-backend.yaml   | 2 +-
 .../customization/external-auth-headers/echo-service.yaml     | 2 +-
 test/e2e/HTTPBUN_IMAGE                                        | 2 +-
 test/e2e/framework/deployment.go                              | 2 +-
 test/e2e/framework/fastcgi_helloserver.go                     | 2 +-
 test/e2e/settings/ocsp/ocsp.go                                | 2 +-
 8 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/docs/examples/canary/README.md b/docs/examples/canary/README.md
index 865325b73..77b711b3a 100644
--- a/docs/examples/canary/README.md
+++ b/docs/examples/canary/README.md
@@ -31,7 +31,7 @@ spec:
     spec:
       containers:
       - name: production
-        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.0.1@sha256:1cec65aa768720290d05d65ab1c297ca46b39930e56bc9488259f9114fcd30e2
+        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.1.0@sha256:0713ba47b3e4359b38ad53cd785c34b158e168a91636520a4a5e54cd500d8356
         ports:
         - containerPort: 80
         env:
@@ -97,7 +97,7 @@ spec:
     spec:
       containers:
       - name: canary
-        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.0.1@sha256:1cec65aa768720290d05d65ab1c297ca46b39930e56bc9488259f9114fcd30e2
+        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.1.0@sha256:0713ba47b3e4359b38ad53cd785c34b158e168a91636520a4a5e54cd500d8356
         ports:
         - containerPort: 80
         env:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
index fb07ac9fe..b538f75ab 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
@@ -6,7 +6,7 @@ defaultBackend:
   image:
     registry: registry.k8s.io
     image: ingress-nginx/custom-error-pages
-    tag: v1.0.2@sha256:b2259cf6bfda813548a64bded551b1854cb600c4f095738b49b4c5cdf8ab9d21
+    tag: v1.1.0@sha256:a2342e403fc3c19f81f5625e1b93daa0f8fb3dfaa1df4905f85e32d2d98a5e96
   extraVolumes:
   - name: custom-error-pages
     configMap:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.yaml b/docs/examples/customization/custom-errors/custom-default-backend.yaml
index 805cf90ab..b392eefef 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.yaml
@@ -36,7 +36,7 @@ spec:
     spec:
       containers:
       - name: nginx-error-server
-        image: registry.k8s.io/ingress-nginx/custom-error-pages:v1.0.2@sha256:b2259cf6bfda813548a64bded551b1854cb600c4f095738b49b4c5cdf8ab9d21
+        image: registry.k8s.io/ingress-nginx/custom-error-pages:v1.1.0@sha256:a2342e403fc3c19f81f5625e1b93daa0f8fb3dfaa1df4905f85e32d2d98a5e96
         ports:
         - containerPort: 8080
         # Setting the environment variable DEBUG we can see the headers sent 
diff --git a/docs/examples/customization/external-auth-headers/echo-service.yaml b/docs/examples/customization/external-auth-headers/echo-service.yaml
index 9f597a7f5..6a970dd9f 100644
--- a/docs/examples/customization/external-auth-headers/echo-service.yaml
+++ b/docs/examples/customization/external-auth-headers/echo-service.yaml
@@ -18,7 +18,7 @@ spec:
       terminationGracePeriodSeconds: 60
       containers:
       - name: echo-service
-        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.0.1@sha256:1cec65aa768720290d05d65ab1c297ca46b39930e56bc9488259f9114fcd30e2
+        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.1.0@sha256:0713ba47b3e4359b38ad53cd785c34b158e168a91636520a4a5e54cd500d8356
         ports:
         - containerPort: 8080
         resources:
diff --git a/test/e2e/HTTPBUN_IMAGE b/test/e2e/HTTPBUN_IMAGE
index 7ea3fdc70..11f540282 100644
--- a/test/e2e/HTTPBUN_IMAGE
+++ b/test/e2e/HTTPBUN_IMAGE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/httpbun:v1.0.2@sha256:d4079f3027dba27e2a1d7fcfb3144d6dd9e15307fb7fa80ca649232d08e90d16
+registry.k8s.io/ingress-nginx/httpbun:v1.1.0@sha256:bd870e71e30d478fafd00c515fba454f326960fe343a84ace577723a07a2cd6c
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index d6e59f18a..21458a156 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -47,7 +47,7 @@ const NIPService = "external-nip"
 var HTTPBunImage = os.Getenv("HTTPBUN_IMAGE")
 
 // EchoImage is the default image to be used by the echo service
-const EchoImage = "registry.k8s.io/ingress-nginx/e2e-test-echo:v1.0.1@sha256:1cec65aa768720290d05d65ab1c297ca46b39930e56bc9488259f9114fcd30e2" //#nosec G101
+const EchoImage = "registry.k8s.io/ingress-nginx/e2e-test-echo:v1.1.0@sha256:0713ba47b3e4359b38ad53cd785c34b158e168a91636520a4a5e54cd500d8356" //#nosec G101
 
 // TODO: change all Deployment functions to use these options
 // in order to reduce complexity and have a unified API across the
diff --git a/test/e2e/framework/fastcgi_helloserver.go b/test/e2e/framework/fastcgi_helloserver.go
index 804bb7898..65e257cfd 100644
--- a/test/e2e/framework/fastcgi_helloserver.go
+++ b/test/e2e/framework/fastcgi_helloserver.go
@@ -59,7 +59,7 @@ func (f *Framework) NewNewFastCGIHelloServerDeploymentWithReplicas(replicas int3
 					Containers: []corev1.Container{
 						{
 							Name:  "fastcgi-helloserver",
-							Image: "registry.k8s.io/ingress-nginx/fastcgi-helloserver:v1.0.2@sha256:dc400fc69d7e0b27dcfe86be29946e19c2a853391305e2790f387267c2e6473e",
+							Image: "registry.k8s.io/ingress-nginx/fastcgi-helloserver:v1.1.0@sha256:939cb351010a618383921b49056ccb6227b5a486ec52773464edbec03bc04812",
 							Env:   []corev1.EnvVar{},
 							Ports: []corev1.ContainerPort{
 								{
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index a53b90b80..8a8ad7419 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -297,7 +297,7 @@ func ocspserveDeployment(namespace string) (*appsv1.Deployment, *corev1.Service)
 						Containers: []corev1.Container{
 							{
 								Name:  name,
-								Image: "registry.k8s.io/ingress-nginx/cfssl:v1.0.1@sha256:12425bab3f5e41ed20b850fd1e3737a48474f9ad48363efb116243a853db754a",
+								Image: "registry.k8s.io/ingress-nginx/cfssl:v1.1.0@sha256:31a195d7c3dc801575ca46919ff2b3f01afce54a744ab22ee83469f92a6e0965",
 								Command: []string{
 									"/bin/bash",
 									"-c",

From 29513e8564a9a7efd0bf2dfdc86fd2eece190185 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 25 Dec 2024 20:28:11 +0100
Subject: [PATCH 1582/1641] Chart: Bump Kube Webhook CertGen. (#12602)

---
 charts/ingress-nginx/README.md   | 4 ++--
 charts/ingress-nginx/values.yaml | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index c0b00e56d..d03efb53d 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -270,10 +270,10 @@ metadata:
 | controller.admissionWebhooks.namespaceSelector | object | `{}` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
-| controller.admissionWebhooks.patch.image.digest | string | `"sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f"` |  |
+| controller.admissionWebhooks.patch.image.digest | string | `"sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
-| controller.admissionWebhooks.patch.image.tag | string | `"v1.4.4"` |  |
+| controller.admissionWebhooks.patch.image.tag | string | `"v1.5.0"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 116adf7ca..27ba7136c 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -804,8 +804,8 @@ controller:
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
         ## repository:
-        tag: v1.4.4
-        digest: sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        tag: v1.5.0
+        digest: sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         pullPolicy: IfNotPresent
       # -- Provide a priority class name to the webhook patching job
       ##

From cb53d76a162e10462cc474393992385cb79bf347 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 3 Jan 2025 01:44:14 +0100
Subject: [PATCH 1583/1641] Release controller v1.12.0/v1.11.4/v1.10.6 & chart
 v4.12.0/v4.11.4/v4.10.6. (#12619)

---
 README.md                                     |   5 +-
 changelog/controller-1.10.6.md                |  92 ++++++
 changelog/controller-1.11.4.md                |  94 ++++++
 changelog/controller-1.12.0.md                | 294 ++++++++++++++++++
 charts/ingress-nginx/Chart.yaml               |   9 +-
 charts/ingress-nginx/README.md                |   8 +-
 .../changelog/helm-chart-4.10.6.md            |  10 +
 .../changelog/helm-chart-4.11.4.md            |  10 +
 .../changelog/helm-chart-4.12.0.md            |  10 +
 charts/ingress-nginx/values.yaml              |   6 +-
 deploy/static/provider/aws/deploy.yaml        |  48 +--
 .../aws/nlb-with-tls-termination/deploy.yaml  |  48 +--
 deploy/static/provider/baremetal/deploy.yaml  |  48 +--
 deploy/static/provider/cloud/deploy.yaml      |  48 +--
 deploy/static/provider/do/deploy.yaml         |  48 +--
 deploy/static/provider/exoscale/deploy.yaml   |  48 +--
 deploy/static/provider/kind/deploy.yaml       |  48 +--
 deploy/static/provider/oracle/deploy.yaml     |  48 +--
 deploy/static/provider/scw/deploy.yaml        |  48 +--
 docs/deploy/index.md                          |  20 +-
 docs/e2e-tests.md                             |  12 +-
 21 files changed, 760 insertions(+), 242 deletions(-)
 create mode 100644 changelog/controller-1.10.6.md
 create mode 100644 changelog/controller-1.11.4.md
 create mode 100644 changelog/controller-1.12.0.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.10.6.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.11.4.md
 create mode 100644 charts/ingress-nginx/changelog/helm-chart-4.12.0.md

diff --git a/README.md b/README.md
index 10a928cd2..c95e644de 100644
--- a/README.md
+++ b/README.md
@@ -39,11 +39,14 @@ the versions listed. Ingress-Nginx versions **may** work on older versions, but
 
 | Supported | Ingress-NGINX version | k8s supported version         | Alpine Version | Nginx Version | Helm Chart Version |
 | :-------: | --------------------- | ----------------------------- | -------------- | ------------- | ------------------ |
-|    🔄     | **v1.12.0-beta.0**    | 1.31, 1.30, 1.29, 1.28        | 3.20.3         | 1.25.5        | 4.12.0-beta.0      |
+|    🔄     | **v1.12.0**           | 1.32, 1.31, 1.30, 1.29, 1.28  | 3.21.0         | 1.25.5        | 4.12.0             |
+|    🔄     | **v1.12.0-beta.0**    | 1.32, 1.31, 1.30, 1.29, 1.28  | 3.20.3         | 1.25.5        | 4.12.0-beta.0      |
+|    🔄     | **v1.11.4**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.21.0         | 1.25.5        | 4.11.4             |
 |    🔄     | **v1.11.3**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.3         | 1.25.5        | 4.11.3             |
 |    🔄     | **v1.11.2**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.11.2             |
 |    🔄     | **v1.11.1**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.11.1             |
 |    🔄     | **v1.11.0**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.11.0             |
+|           | **v1.10.6**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.21.0         | 1.25.5        | 4.10.6             |
 |           | **v1.10.5**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.3         | 1.25.5        | 4.10.5             |
 |           | **v1.10.4**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.10.4             |
 |           | **v1.10.3**           | 1.30, 1.29, 1.28, 1.27, 1.26  | 3.20.0         | 1.25.5        | 4.10.3             |
diff --git a/changelog/controller-1.10.6.md b/changelog/controller-1.10.6.md
new file mode 100644
index 000000000..695e418d8
--- /dev/null
+++ b/changelog/controller-1.10.6.md
@@ -0,0 +1,92 @@
+# Changelog
+
+### controller-v1.10.6
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.10.6@sha256:b6fbd102255edb3ba8e5421feebe14fd3e94cf53d199af9e40687f536152189c
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.10.6@sha256:44ceedafc0e04a75521b5d472c1b6b5cc08afb8038b5bbfd79c21d066ccf300e
+
+### All changes:
+
+* Images: Trigger controller build. (#12611)
+* Chart: Bump Kube Webhook CertGen. (#12608)
+* Tests & Docs: Bump images. (#12605)
+* Images: Trigger other builds (2/2). (#12598)
+* Images: Trigger other builds (1/2). (#12597)
+* Tests: Bump `e2e-test-runner` to v20241224-68ed4e7b. (#12592)
+* Images: Trigger `test-runner` build. (#12586)
+* Images: Bump `NGINX_BASE` to v0.2.0. (#12584)
+* Images: Trigger NGINX build. (#12578)
+* Go: Clean `go.work.sum`. (#12575)
+* Repository: Update owners. (#12570)
+* Images: Bump `gcb-docker-gcloud` to v20241217-ff46a068cd. (#12563)
+* CI: Update KIND images. (#12559)
+* Images: Bump Alpine to v3.21. (#12530)
+* Docs: Add guide on how to set a Maintenance Page. (#12527)
+* rikatz is stepping down (#12518)
+* rikatz is stepping down (#12497)
+* Go: Bump to v1.23.4. (#12485)
+* Plugin: Bump `goreleaser` to v2. (#12442)
+* GitHub: Fix `exec` in issue template. (#12389)
+* CI: Update KIND images. (#12368)
+* Images: Bump `gcb-docker-gcloud` to v20241110-72bb0b1665. (#12341)
+* Go: Bump to v1.23.3. (#12339)
+* Auth TLS: Add `_` to redirect RegEx. (#12328)
+* Auth TLS: Improve redirect RegEx. (#12321)
+* Tests: Bump `e2e-test-runner` to v20241104-02a3933e. (#12314)
+* Images: Trigger `test-runner` build. (#12307)
+* Config: Fix panic on invalid `lua-shared-dict`. (#12282)
+* Docs: fix limit-rate-after references (#12280)
+* Chart: Rework ServiceMonitor. (#12268)
+* Chart: Add ServiceAccount tests. (#12266)
+* CI: Fix chart testing. (#12260)
+* [fix] fix nginx temp configs cleanup (#12224)
+* Chart: Suggest `matchLabelKeys` in Topology Spread Constraints. (#12204)
+* Docs: Add Pod Security Admission. (#12198)
+* Docs: Clarify external & service port in TCP/UDP services explanation. (#12194)
+
+### Dependency updates:
+
+* Bump k8s.io/apiextensions-apiserver from 0.31.3 to 0.32.0 (#12565)
+* Bump github.com/onsi/ginkgo/v2 from 2.22.0 to 2.22.1 (#12557)
+* Bump k8s.io/code-generator from 0.31.3 to 0.32.0 (#12552)
+* Bump k8s.io/cli-runtime from 0.31.3 to 0.32.0 (#12549)
+* Bump k8s.io/apiserver from 0.31.3 to 0.32.0 (#12546)
+* Bump the actions group with 2 updates (#12543)
+* Bump google.golang.org/grpc from 1.68.1 to 1.69.2 (#12540)
+* Bump k8s.io/client-go from 0.31.3 to 0.32.0 (#12514)
+* Bump github.com/opencontainers/runc from 1.2.2 to 1.2.3 in the go group across 1 directory (#12511)
+* Bump the actions group with 3 updates (#12508)
+* Bump k8s.io/kube-aggregator from 0.31.3 to 0.32.0 in /images/kube-webhook-certgen/rootfs (#12504)
+* Bump k8s.io/apimachinery from 0.31.3 to 0.32.0 in /images/ext-auth-example-authsvc/rootfs (#12501)
+* Bump golang.org/x/crypto from 0.30.0 to 0.31.0 (#12478)
+* Bump golang.org/x/crypto from 0.21.0 to 0.31.0 in /magefiles (#12473)
+* Bump github.com/prometheus/common from 0.60.1 to 0.61.0 (#12466)
+* Bump github/codeql-action from 3.27.5 to 3.27.6 in the actions group (#12463)
+* Bump the go group across 1 directory with 2 updates (#12459)
+* Bump github.com/onsi/ginkgo/v2 from 2.21.0 to 2.22.0 (#12425)
+* Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (#12416)
+* Bump the go group across 3 directories with 10 updates (#12414)
+* Bump the actions group with 3 updates (#12410)
+* Bump github.com/opencontainers/runc from 1.2.1 to 1.2.2 in the go group across 1 directory (#12382)
+* Bump github/codeql-action from 3.27.1 to 3.27.4 in the actions group (#12375)
+* Bump golangci-lint on actions and disable deprecated linters (#12363)
+* Bump google.golang.org/grpc from 1.67.1 to 1.68.0 (#12356)
+* Bump the actions group with 3 updates (#12353)
+* Bump golang.org/x/crypto from 0.28.0 to 0.29.0 (#12351)
+* Bump github.com/fsnotify/fsnotify from 1.7.0 to 1.8.0 (#12297)
+* Bump github.com/opencontainers/runc from 1.2.0 to 1.2.1 in the go group across 1 directory (#12294)
+* Bump github.com/onsi/ginkgo/v2 from 2.20.2 to 2.21.0 (#12290)
+* Bump actions/dependency-review-action from 4.3.5 to 4.4.0 in the actions group (#12275)
+* Bump the go group across 3 directories with 11 updates (#12246)
+* Bump github.com/opencontainers/runc from 1.1.15 to 1.2.0 (#12241)
+* Bump the actions group with 5 updates (#12243)
+* Bump github.com/ncabatoff/process-exporter from 0.8.3 to 0.8.4 in the go group across 1 directory (#12219)
+* Bump aquasecurity/trivy-action from 0.27.0 to 0.28.0 in the actions group (#12215)
+* Bump github/codeql-action from 3.26.12 to 3.26.13 in the actions group (#12191)
+* Bump the go group across 2 directories with 1 update (#12189)
+* Bump the actions group with 2 updates (#12185)
+* Bump github.com/opencontainers/runc from 1.1.14 to 1.1.15 in the go group across 1 directory (#12184)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.10.5...controller-v1.10.6
diff --git a/changelog/controller-1.11.4.md b/changelog/controller-1.11.4.md
new file mode 100644
index 000000000..a0870d060
--- /dev/null
+++ b/changelog/controller-1.11.4.md
@@ -0,0 +1,94 @@
+# Changelog
+
+### controller-v1.11.4
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.11.4@sha256:981a97d78bee3109c0b149946c07989f8f1478a9265031d2d23dea839ba05b52
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.11.4@sha256:f29d0f9e7a9ef4947eda59ed0c09ec13380b13639d1518cf1ab8ec09c3e22ef8
+
+### All changes:
+
+* Images: Trigger controller build. (#12610)
+* Chart: Bump Kube Webhook CertGen. (#12607)
+* Tests & Docs: Bump images. (#12604)
+* Images: Trigger other builds (2/2). (#12600)
+* Images: Trigger other builds (1/2). (#12596)
+* Tests: Bump `e2e-test-runner` to v20241224-68ed4e7b. (#12591)
+* Images: Trigger `test-runner` build. (#12588)
+* Images: Bump `NGINX_BASE` to v0.2.0. (#12583)
+* Images: Trigger NGINX build. (#12577)
+* Go: Clean `go.work.sum`. (#12574)
+* Repository: Update owners. (#12569)
+* Images: Bump `gcb-docker-gcloud` to v20241217-ff46a068cd. (#12562)
+* CI: Update KIND images. (#12558)
+* Images: Bump Alpine to v3.21. (#12529)
+* Docs: Add guide on how to set a Maintenance Page. (#12526)
+* rikatz is stepping down (#12517)
+* rikatz is stepping down (#12495)
+* Go: Bump to v1.23.4. (#12484)
+* Plugin: Bump `goreleaser` to v2. (#12441)
+* GitHub: Fix `exec` in issue template. (#12388)
+* CI: Update KIND images. (#12365)
+* Images: Bump `gcb-docker-gcloud` to v20241110-72bb0b1665. (#12343)
+* Go: Bump to v1.23.3. (#12338)
+* Auth TLS: Add `_` to redirect RegEx. (#12327)
+* Auth TLS: Improve redirect RegEx. (#12322)
+* Update custom headers annotation documentation (#12319)
+* Tests: Bump `e2e-test-runner` to v20241104-02a3933e. (#12313)
+* Images: Trigger `test-runner` build. (#12306)
+* Config: Fix panic on invalid `lua-shared-dict`. (#12284)
+* Docs: fix limit-rate-after references (#12279)
+* Chart: Rework ServiceMonitor. (#12270)
+* Chart: Add ServiceAccount tests. (#12264)
+* CI: Fix chart testing. (#12259)
+* [fix] fix nginx temp configs cleanup (#12223)
+* Chart: Suggest `matchLabelKeys` in Topology Spread Constraints. (#12203)
+* Docs: Add Pod Security Admission. (#12197)
+* Docs: Clarify external & service port in TCP/UDP services explanation. (#12193)
+* Docs: Goodbye, v1.10. (#12159)
+
+### Dependency updates:
+
+* Bump k8s.io/apiextensions-apiserver from 0.31.3 to 0.32.0 (#12567)
+* Bump github.com/onsi/ginkgo/v2 from 2.22.0 to 2.22.1 (#12556)
+* Bump k8s.io/code-generator from 0.31.3 to 0.32.0 (#12551)
+* Bump k8s.io/cli-runtime from 0.31.3 to 0.32.0 (#12548)
+* Bump k8s.io/apiserver from 0.31.3 to 0.32.0 (#12545)
+* Bump the actions group with 2 updates (#12542)
+* Bump google.golang.org/grpc from 1.68.1 to 1.69.2 (#12539)
+* Bump k8s.io/client-go from 0.31.3 to 0.32.0 (#12513)
+* Bump github.com/opencontainers/runc from 1.2.2 to 1.2.3 in the go group across 1 directory (#12510)
+* Bump the actions group with 3 updates (#12507)
+* Bump k8s.io/kube-aggregator from 0.31.3 to 0.32.0 in /images/kube-webhook-certgen/rootfs (#12503)
+* Bump k8s.io/apimachinery from 0.31.3 to 0.32.0 in /images/ext-auth-example-authsvc/rootfs (#12500)
+* Bump golang.org/x/crypto from 0.30.0 to 0.31.0 (#12477)
+* Bump golang.org/x/crypto from 0.21.0 to 0.31.0 in /magefiles (#12475)
+* Bump github.com/prometheus/common from 0.60.1 to 0.61.0 (#12465)
+* Bump github/codeql-action from 3.27.5 to 3.27.6 in the actions group (#12462)
+* Bump the go group across 1 directory with 2 updates (#12458)
+* Bump github.com/onsi/ginkgo/v2 from 2.21.0 to 2.22.0 (#12427)
+* Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (#12417)
+* Bump the go group across 3 directories with 10 updates (#12415)
+* Bump the actions group with 3 updates (#12411)
+* Bump github.com/opencontainers/runc from 1.2.1 to 1.2.2 in the go group across 1 directory (#12381)
+* Bump github/codeql-action from 3.27.1 to 3.27.4 in the actions group (#12374)
+* Bump golangci-lint on actions and disable deprecated linters (#12362)
+* Bump google.golang.org/grpc from 1.67.1 to 1.68.0 (#12355)
+* Bump the actions group with 3 updates (#12352)
+* Bump golang.org/x/crypto from 0.28.0 to 0.29.0 (#12350)
+* Bump github.com/fsnotify/fsnotify from 1.7.0 to 1.8.0 (#12298)
+* Bump github.com/opencontainers/runc from 1.2.0 to 1.2.1 in the go group across 1 directory (#12295)
+* Bump github.com/onsi/ginkgo/v2 from 2.20.2 to 2.21.0 (#12289)
+* Bump actions/dependency-review-action from 4.3.5 to 4.4.0 in the actions group (#12274)
+* Bump the go group across 3 directories with 11 updates (#12245)
+* Bump github.com/opencontainers/runc from 1.1.15 to 1.2.0 (#12239)
+* Bump the actions group with 5 updates (#12240)
+* Bump github.com/ncabatoff/process-exporter from 0.8.3 to 0.8.4 in the go group across 1 directory (#12220)
+* Bump aquasecurity/trivy-action from 0.27.0 to 0.28.0 in the actions group (#12216)
+* Bump github/codeql-action from 3.26.12 to 3.26.13 in the actions group (#12190)
+* Bump the go group across 2 directories with 1 update (#12187)
+* Bump the actions group with 2 updates (#12181)
+* Bump github.com/opencontainers/runc from 1.1.14 to 1.1.15 in the go group across 1 directory (#12179)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.11.3...controller-v1.11.4
diff --git a/changelog/controller-1.12.0.md b/changelog/controller-1.12.0.md
new file mode 100644
index 000000000..dc7155546
--- /dev/null
+++ b/changelog/controller-1.12.0.md
@@ -0,0 +1,294 @@
+# Changelog
+
+### controller-v1.12.0
+
+Images:
+
+* registry.k8s.io/ingress-nginx/controller:v1.12.0@sha256:e6b8de175acda6ca913891f0f727bca4527e797d52688cbe9fec9040d6f6b6fa
+* registry.k8s.io/ingress-nginx/controller-chroot:v1.12.0@sha256:87c88e1c38a6c8d4483c8f70b69e2cca49853bb3ec3124b9b1be648edf139af3
+
+### All changes:
+
+* Images: Trigger controller build. (#12609)
+* Chart: Bump Kube Webhook CertGen. (#12606)
+* Tests & Docs: Bump images. (#12603)
+* Images: Trigger other builds (2/2). (#12599)
+* Images: Trigger other builds (1/2). (#12595)
+* Tests: Bump `e2e-test-runner` to v20241224-68ed4e7b. (#12590)
+* Images: Trigger `test-runner` build. (#12587)
+* Images: Bump `NGINX_BASE` to v1.1.0. (#12582)
+* Images: Trigger NGINX build. (#12579)
+* Go: Clean `go.work.sum`. (#12573)
+* Repository: Update owners. (#12568)
+* Images: Bump `gcb-docker-gcloud` to v20241217-ff46a068cd. (#12561)
+* CI: Update KIND images. (#12560)
+* Images: Bump Alpine to v3.21. (#12528)
+* Docs: Add guide on how to set a Maintenance Page. (#12525)
+* rikatz is stepping down (#12516)
+* rikatz is stepping down (#12494)
+* Go: Bump to v1.23.4. (#12483)
+* Plugin: Bump `goreleaser` to v2. (#12440)
+* GitHub: Fix `exec` in issue template. (#12387)
+* CI: Update KIND images. (#12367)
+* Images: Bump `gcb-docker-gcloud` to v20241110-72bb0b1665. (#12342)
+* Go: Bump to v1.23.3. (#12337)
+* Auth TLS: Add `_` to redirect RegEx. (#12326)
+* Auth TLS: Improve redirect RegEx. (#12323)
+* Update custom headers annotation documentation (#12318)
+* Tests: Bump `e2e-test-runner` to v20241104-02a3933e. (#12312)
+* Docs: Add CPU usage note for `--metrics-per-undefined-host`. (#12310)
+* Images: Trigger `test-runner` build. (#12308)
+* Config: Fix panic on invalid `lua-shared-dict`. (#12283)
+* Docs: fix limit-rate-after references (#12278)
+* Chart: Rework ServiceMonitor. (#12269)
+* Chart: Add ServiceAccount tests. (#12263)
+* CI: Fix chart testing. (#12258)
+* [fix] fix nginx temp configs cleanup (#12225)
+* Chart: Suggest `matchLabelKeys` in Topology Spread Constraints. (#12202)
+* Docs: Add Pod Security Admission. (#12195)
+* Docs: Clarify external & service port in TCP/UDP services explanation. (#12192)
+* Images: Trigger controller build. (#12154)
+* ⚠️ Metrics: Disable by default. (#12153) ⚠️
+
+  This changes the default of the following CLI arguments:
+
+  * `--enable-metrics` gets disabled by default.
+
+* Tests & Docs: Bump `e2e-test-echo` to v1.0.1. (#12147)
+* Images: Trigger `e2e-test-echo` build. (#12140)
+* ⚠️ Images: Drop `s390x`. (#12137) ⚠️
+
+  Support for the `s390x` architecture has already been removed from the controller image. This also removes it from the NGINX base image and CI relevant images.
+
+* Images: Build `s390x` controller. (#12126)
+* Chart: Bump Kube Webhook CertGen. (#12119)
+* Tests & Docs: Bump images. (#12118)
+* Cloud Build: Bump `gcb-docker-gcloud` to v20240718-5ef92b5c36. (#12113)
+* Images: Trigger other builds. (#12110)
+* Tests: Bump `e2e-test-runner` to v20241004-114a6abb. (#12103)
+* Images: Trigger `test-runner` build. (#12100)
+* Docs: Add a multi-tenant warning. (#12091)
+* Go: Bump to v1.22.8. (#12069)
+* Images: Bump `NGINX_BASE` to v1.0.0. (#12066)
+* Images: Trigger NGINX build. (#12063)
+* Images: Remove NGINX v1.21. (#12031)
+* Chart: Add `controller.metrics.service.enabled`. (#12056)
+* GitHub: Improve Dependabot. (#12033)
+* Chart: Add `global.image.registry`. (#12028)
+* ⚠️ Images: Remove OpenTelemetry. (#12024) ⚠️
+
+  OpenTelemetry is still supported, but since the module is built into the controller image since v1.10, we hereby remove the init container and image which were used to install it upon controller startup.
+
+* Chart: Improve CI. (#12003)
+* Chart: Extend image tests. (#12025)
+* Chart: Add `controller.progressDeadlineSeconds`. (#12017)
+* Docs: Add health check annotations for AWS. (#12018)
+* Docs: Convert `opentelemetry.md` from CRLF to LF. (#12005)
+* Chart: Implement `unhealthyPodEvictionPolicy`. (#11992)
+* Chart: Add `defaultBackend.maxUnavailable`. (#11995)
+* Chart: Test `controller.minAvailable` & `controller.maxUnavailable`. (#12000)
+* Chart: Align default backend `PodDisruptionBudget`. (#11993)
+* Metrics: Fix namespace in `nginx_ingress_controller_ssl_expire_time_seconds`. (#10274)
+* ⚠️ Chart: Remove Pod Security Policy. (#11971) ⚠️
+
+  This removes Pod Security Policies and related resources from the chart.
+
+* Chart: Improve default backend service account. (#11972)
+* Go: Bump to v1.22.7. (#11943)
+* NGINX: Remove inline Lua from template. (#11806)
+* Images: Bump OpenTelemetry C++ Contrib. (#11629)
+* Docs: Add note about `--watch-namespace`. (#11947)
+* Images: Use latest Alpine 3.20 everywhere. (#11944)
+* Fix minor typos (#11935)
+* Chart: Implement `controller.admissionWebhooks.service.servicePort`. (#11931)
+* Allow any protocol for cors origins (#11153)
+* Tests: Bump `e2e-test-runner` to v20240829-2c421762. (#11919)
+* Images: Trigger `test-runner` build. (#11916)
+* Chart: Add `controller.metrics.prometheusRule.annotations`. (#11849)
+* Chart: Add tests for `PrometheusRule` & `ServiceMonitor`. (#11883)
+* Annotations: Allow commas in URLs. (#11882)
+* CI: Grant checks write permissions to E2E Test Report. (#11862)
+* Chart: Use generic values for `ConfigMap` test. (#11877)
+* Security: Follow-up on recent changes. (#11874)
+* Lua: Remove plugins from `.luacheckrc` & E2E docs. (#11872)
+* Dashboard: Remove `ingress_upstream_latency_seconds`. (#11878)
+* Metrics: Add `--metrics-per-undefined-host` argument. (#11818)
+* Update maxmind post link about geolite2 license changes (#11861)
+* ⚠️ Remove global-rate-limit feature (#11851) ⚠️
+
+  This removes the following configuration options:
+
+  * `global-rate-limit-memcached-host`
+  * `global-rate-limit-memcached-port`
+  * `global-rate-limit-memcached-connect-timeout`
+  * `global-rate-limit-memcached-max-idle-timeout`
+  * `global-rate-limit-memcached-pool-size`
+  * `global-rate-limit-status-code`
+
+  It also removes the following annotations:
+
+  * `global-rate-limit`
+  * `global-rate-limit-window`
+  * `global-rate-limit-key`
+  * `global-rate-limit-ignored-cidrs`
+
+* Revert "docs: Add deployment for AWS NLB Proxy." (#11857)
+* Add custom code handling for temporal redirect (#10651)
+* Add native histogram support for histogram metrics (#9971)
+* Replace deprecated queue method (#11853)
+* ⚠️ Enable security features by default (#11819) ⚠️
+
+  This changes the default of the following CLI arguments:
+
+  * `--enable-annotation-validation` gets enabled by default.
+
+  It also changes the default of the following configuration options:
+
+  * `allow-cross-namespace-resources` gets disabled by default.
+  * `annotations-risk-level` gets lowered to "High" by default.
+  * `strict-validate-path-type` gets enabled by default.
+
+* docs: Add deployment for AWS NLB Proxy. (#9565)
+* ⚠️ Remove 3rd party lua plugin support (#11821) ⚠️
+
+  This removes the following configuration options:
+
+  * `plugins`
+
+  It also removes support for user provided Lua plugins in the `/etc/nginx/lua/plugins` directory.
+
+* Auto-generate annotation docs (#11820)
+* ⚠️ Metrics: Remove `ingress_upstream_latency_seconds`. (#11795) ⚠️
+
+  This metric has already been deprecated and is now getting removed.
+
+* Release controller v1.11.2/v1.10.4 & chart v4.11.2/v4.10.4. (#11816)
+* Chart: Bump Kube Webhook CertGen & OpenTelemetry. (#11809)
+* Tests & Docs: Bump images. (#11803)
+* Images: Trigger failed builds. (#11800)
+* Images: Trigger other builds. (#11796)
+* Controller: Fix panic in alternative backend merging. (#11789)
+* Tests: Bump `e2e-test-runner` to v20240812-3f0129aa. (#11788)
+* Images: Trigger `test-runner` build. (#11785)
+* Images: Bump `NGINX_BASE` to v0.0.12. (#11782)
+* Images: Trigger NGINX build. (#11779)
+* Cloud Build: Add missing config, remove unused ones. (#11774)
+* Cloud Build: Tweak timeouts. (#11761)
+* Cloud Build: Fix substitutions. (#11758)
+* Cloud Build: Some chores. (#11633)
+* Go: Bump to v1.22.6. (#11747)
+* Images: Bump `NGINX_BASE` to v0.0.11. (#11741)
+* Images: Trigger NGINX build. (#11735)
+* docs: update OpenSSL Roadmap link (#11730)
+* Go: Bump to v1.22.5. (#11634)
+* Docs: Fix typo in AWS LB Controller reference (#11723)
+* Perform some cleaning operations on line breaks. (#11720)
+* Missing anchors in regular expression. (#11717)
+* Docs: Fix `from-to-www` redirect description. (#11712)
+* Chart: Remove `isControllerTagValid`. (#11710)
+* Tests: Bump `e2e-test-runner` to v20240729-04899b27. (#11702)
+* Chart: Explicitly set `runAsGroup`. (#11679)
+* Docs: Clarify `from-to-www` redirect direction. (#11682)
+* added real-client-ip faq (#11663)
+* Docs: Format NGINX configuration table. (#11659)
+* Release controller v1.11.1/v1.10.3 & chart v4.11.1/v4.10.3. (#11654)
+* Tests: Bump `test-runner` to v20240717-1fe74b5f. (#11645)
+* Images: Trigger `test-runner` build. (#11636)
+* Images: Bump `NGINX_BASE` to v0.0.10. (#11635)
+* remove modsecurity coreruleset test files from nginx image (#11617)
+* unskip the ocsp tests and update images to fix cfssl bug (#11606)
+* Fix indent in YAML for example pod (#11598)
+* Images: Bump `test-runner`. (#11600)
+* Images: Bump `NGINX_BASE` to v0.0.9. (#11599)
+* revert module upgrade (#11594)
+* README: Fix support matrix. (#11586)
+* Repository: Add changelogs from `release-v1.10`. (#11587)
+
+### Dependency updates:
+
+* Bump k8s.io/apiextensions-apiserver from 0.31.3 to 0.32.0 (#12566)
+* Bump github.com/onsi/ginkgo/v2 from 2.22.0 to 2.22.1 (#12555)
+* Bump k8s.io/code-generator from 0.31.3 to 0.32.0 (#12550)
+* Bump k8s.io/cli-runtime from 0.31.3 to 0.32.0 (#12547)
+* Bump k8s.io/apiserver from 0.31.3 to 0.32.0 (#12544)
+* Bump the actions group with 2 updates (#12541)
+* Bump google.golang.org/grpc from 1.68.1 to 1.69.2 (#12538)
+* Bump k8s.io/client-go from 0.31.3 to 0.32.0 (#12512)
+* Bump github.com/opencontainers/runc from 1.2.2 to 1.2.3 in the go group across 1 directory (#12509)
+* Bump the actions group with 3 updates (#12506)
+* Bump k8s.io/kube-aggregator from 0.31.3 to 0.32.0 in /images/kube-webhook-certgen/rootfs (#12505)
+* Bump k8s.io/apimachinery from 0.31.3 to 0.32.0 in /images/ext-auth-example-authsvc/rootfs (#12502)
+* Bump golang.org/x/crypto from 0.30.0 to 0.31.0 (#12476)
+* Bump golang.org/x/crypto from 0.21.0 to 0.31.0 in /magefiles (#12472)
+* Bump github.com/prometheus/common from 0.60.1 to 0.61.0 (#12464)
+* Bump github/codeql-action from 3.27.5 to 3.27.6 in the actions group (#12461)
+* Bump the go group across 1 directory with 2 updates (#12460)
+* Bump github.com/onsi/ginkgo/v2 from 2.21.0 to 2.22.0 (#12426)
+* Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (#12418)
+* Bump the go group across 3 directories with 10 updates (#12413)
+* Bump the actions group with 3 updates (#12412)
+* Bump github.com/opencontainers/runc from 1.2.1 to 1.2.2 in the go group across 1 directory (#12380)
+* Bump github/codeql-action from 3.27.1 to 3.27.4 in the actions group (#12373)
+* Bump golangci-lint on actions and disable deprecated linters (#12361)
+* Bump google.golang.org/grpc from 1.67.1 to 1.68.0 (#12357)
+* Bump the actions group with 3 updates (#12354)
+* Bump golang.org/x/crypto from 0.28.0 to 0.29.0 (#12349)
+* Bump github.com/fsnotify/fsnotify from 1.7.0 to 1.8.0 (#12299)
+* Bump github.com/opencontainers/runc from 1.2.0 to 1.2.1 in the go group across 1 directory (#12296)
+* Bump github.com/onsi/ginkgo/v2 from 2.20.2 to 2.21.0 (#12288)
+* Bump actions/dependency-review-action from 4.3.5 to 4.4.0 in the actions group (#12273)
+* Bump the go group across 3 directories with 11 updates (#12244)
+* Bump github.com/opencontainers/runc from 1.1.15 to 1.2.0 (#12242)
+* Bump the actions group with 5 updates (#12236)
+* Bump github.com/ncabatoff/process-exporter from 0.8.3 to 0.8.4 in the go group across 1 directory (#12218)
+* Bump aquasecurity/trivy-action from 0.27.0 to 0.28.0 in the actions group (#12217)
+* Bump github/codeql-action from 3.26.12 to 3.26.13 in the actions group (#12188)
+* Bump the go group across 2 directories with 1 update (#12186)
+* Bump the actions group with 2 updates (#12180)
+* Bump github.com/opencontainers/runc from 1.1.14 to 1.1.15 in the go group across 1 directory (#12178)
+* Bump the actions group with 3 updates (#12152)
+* Bump golang.org/x/crypto from 0.27.0 to 0.28.0 (#12107)
+* Bump the actions group with 3 updates (#12092)
+* Bump sigs.k8s.io/mdtoc from 1.1.0 to 1.4.0 (#12062)
+* Bump github.com/prometheus/common from 0.59.1 to 0.60.0 (#12060)
+* Bump google.golang.org/grpc from 1.67.0 to 1.67.1 in the go group across 1 directory (#12059)
+* Bump k8s.io/cli-runtime from 0.30.0 to 0.31.1 (#12061)
+* Bump github/codeql-action from 3.26.9 to 3.26.10 in the actions group (#12051)
+* Bump the go group across 1 directory with 3 updates (#12050)
+* Bump k8s.io/kube-aggregator from 0.29.3 to 0.31.1 in /images/kube-webhook-certgen/rootfs (#12043)
+* Bump k8s.io/apimachinery from 0.23.1 to 0.31.1 in /images/ext-auth-example-authsvc/rootfs (#12041)
+* Bump github.com/prometheus/client_golang from 1.11.1 to 1.20.4 in /images/custom-error-pages/rootfs (#12040)
+* Bump the all group with 2 updates (#12032)
+* Bump github/codeql-action from 3.26.7 to 3.26.8 in the all group (#12010)
+* Bump google.golang.org/grpc from 1.66.2 to 1.67.0 (#12009)
+* Bump github.com/prometheus/client_golang from 1.20.3 to 1.20.4 in the all group (#12008)
+* Bump the all group with 2 updates (#11977)
+* Bump github/codeql-action from 3.26.6 to 3.26.7 in the all group (#11976)
+* Bump github.com/prometheus/common from 0.57.0 to 0.59.1 (#11954)
+* Bump golang.org/x/crypto from 0.26.0 to 0.27.0 (#11955)
+* Bump github.com/prometheus/client_golang from 1.20.2 to 1.20.3 in the all group (#11953)
+* Bump github.com/opencontainers/runc from 1.1.13 to 1.1.14 (#11928)
+* Bump the all group with 2 updates (#11922)
+* Bump github.com/onsi/ginkgo/v2 from 2.20.1 to 2.20.2 in the all group (#11901)
+* Bump google.golang.org/grpc from 1.65.0 to 1.66.0 (#11902)
+* Bump github.com/prometheus/common from 0.55.0 to 0.57.0 (#11903)
+* Bump github/codeql-action from 3.26.5 to 3.26.6 in the all group (#11904)
+* Bump the all group with 2 updates (#11865)
+* Bump github/codeql-action from 3.26.2 to 3.26.5 in the all group (#11867)
+* Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.1 (#11832)
+* Bump sigs.k8s.io/controller-runtime from 0.18.4 to 0.19.0 (#11823)
+* Bump dario.cat/mergo from 1.0.0 to 1.0.1 in the all group (#11822)
+* Bump k8s.io/component-base from 0.30.3 to 0.31.0 (#11825)
+* Bump github/codeql-action from 3.26.0 to 3.26.2 in the all group (#11826)
+* Bump github.com/onsi/ginkgo/v2 from 2.19.1 to 2.20.0 (#11766)
+* Bump the all group with 2 updates (#11767)
+* Bump golang.org/x/crypto from 0.25.0 to 0.26.0 (#11765)
+* Bump the all group with 3 updates (#11727)
+* Bump github.com/onsi/ginkgo/v2 from 2.19.0 to 2.19.1 in the all group (#11696)
+* Bump the all group with 2 updates (#11695)
+* Bump the all group with 4 updates (#11673)
+* Bump the all group with 2 updates (#11672)
+* Bump github.com/prometheus/common from 0.54.0 to 0.55.0 (#11522)
+* Bump the all group with 5 updates (#11611)
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/controller-v1.11.0...controller-v1.12.0
diff --git a/charts/ingress-nginx/Chart.yaml b/charts/ingress-nginx/Chart.yaml
index 8c919fcf3..11000f43d 100644
--- a/charts/ingress-nginx/Chart.yaml
+++ b/charts/ingress-nginx/Chart.yaml
@@ -1,9 +1,10 @@
 annotations:
   artifacthub.io/changes: |
-    - Update Ingress-Nginx version controller-v1.12.0-beta.0
-  artifacthub.io/prerelease: "true"
+    - 'CI: Fix chart testing. (#12258)'
+    - Update Ingress-Nginx version controller-v1.12.0
+  artifacthub.io/prerelease: "false"
 apiVersion: v2
-appVersion: 1.12.0-beta.0
+appVersion: 1.12.0
 description: Ingress controller for Kubernetes using NGINX as a reverse proxy and
   load balancer
 home: https://github.com/kubernetes/ingress-nginx
@@ -20,4 +21,4 @@ maintainers:
 name: ingress-nginx
 sources:
 - https://github.com/kubernetes/ingress-nginx
-version: 4.12.0-beta.0
+version: 4.12.0
diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index d03efb53d..51a14241d 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -2,7 +2,7 @@
 
 [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Ingress controller for Kubernetes using NGINX as a reverse proxy and load balancer
 
-![Version: 4.12.0-beta.0](https://img.shields.io/badge/Version-4.12.0--beta.0-informational?style=flat-square) ![AppVersion: 1.12.0-beta.0](https://img.shields.io/badge/AppVersion-1.12.0--beta.0-informational?style=flat-square)
+![Version: 4.12.0](https://img.shields.io/badge/Version-4.12.0-informational?style=flat-square) ![AppVersion: 1.12.0](https://img.shields.io/badge/AppVersion-1.12.0-informational?style=flat-square)
 
 To use, add `ingressClassName: nginx` spec field or the `kubernetes.io/ingress.class: nginx` annotation to your Ingress resources.
 
@@ -340,8 +340,8 @@ metadata:
 | controller.hostname | object | `{}` | Optionally customize the pod hostname. |
 | controller.image.allowPrivilegeEscalation | bool | `false` |  |
 | controller.image.chroot | bool | `false` |  |
-| controller.image.digest | string | `"sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5"` |  |
-| controller.image.digestChroot | string | `"sha256:6e2f8f52e1f2571ff65bc4fc4826d5282d5def5835ec4ab433dcb8e659b2fbac"` |  |
+| controller.image.digest | string | `"sha256:e6b8de175acda6ca913891f0f727bca4527e797d52688cbe9fec9040d6f6b6fa"` |  |
+| controller.image.digestChroot | string | `"sha256:87c88e1c38a6c8d4483c8f70b69e2cca49853bb3ec3124b9b1be648edf139af3"` |  |
 | controller.image.image | string | `"ingress-nginx/controller"` |  |
 | controller.image.pullPolicy | string | `"IfNotPresent"` |  |
 | controller.image.readOnlyRootFilesystem | bool | `false` |  |
@@ -349,7 +349,7 @@ metadata:
 | controller.image.runAsNonRoot | bool | `true` |  |
 | controller.image.runAsUser | int | `101` | This value must not be changed using the official image. uid=101(www-data) gid=82(www-data) groups=82(www-data) |
 | controller.image.seccompProfile.type | string | `"RuntimeDefault"` |  |
-| controller.image.tag | string | `"v1.12.0-beta.0"` |  |
+| controller.image.tag | string | `"v1.12.0"` |  |
 | controller.ingressClass | string | `"nginx"` | For backwards compatibility with ingress.class annotation, use ingressClass. Algorithm is as follows, first ingressClassName is considered, if not present, controller looks for ingress.class annotation |
 | controller.ingressClassByName | bool | `false` | Process IngressClass per name (additionally as per spec.controller). |
 | controller.ingressClassResource | object | `{"aliases":[],"annotations":{},"controllerValue":"k8s.io/ingress-nginx","default":false,"enabled":true,"name":"nginx","parameters":{}}` | This section refers to the creation of the IngressClass resource. IngressClasses are immutable and cannot be changed after creation. We do not support namespaced IngressClasses, yet, so a ClusterRole and a ClusterRoleBinding is required. |
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.10.6.md b/charts/ingress-nginx/changelog/helm-chart-4.10.6.md
new file mode 100644
index 000000000..c26c8817b
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.10.6.md
@@ -0,0 +1,10 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.10.6
+
+* CI: Fix chart testing. (#12260)
+* Update Ingress-Nginx version controller-v1.10.6
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.10.5...helm-chart-4.10.6
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.11.4.md b/charts/ingress-nginx/changelog/helm-chart-4.11.4.md
new file mode 100644
index 000000000..003c787d3
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.11.4.md
@@ -0,0 +1,10 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.11.4
+
+* CI: Fix chart testing. (#12259)
+* Update Ingress-Nginx version controller-v1.11.4
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.11.3...helm-chart-4.11.4
diff --git a/charts/ingress-nginx/changelog/helm-chart-4.12.0.md b/charts/ingress-nginx/changelog/helm-chart-4.12.0.md
new file mode 100644
index 000000000..f8f36d499
--- /dev/null
+++ b/charts/ingress-nginx/changelog/helm-chart-4.12.0.md
@@ -0,0 +1,10 @@
+# Changelog
+
+This file documents all notable changes to [ingress-nginx](https://github.com/kubernetes/ingress-nginx) Helm Chart. The release numbering uses [semantic versioning](http://semver.org).
+
+### 4.12.0
+
+* CI: Fix chart testing. (#12258)
+* Update Ingress-Nginx version controller-v1.12.0
+
+**Full Changelog**: https://github.com/kubernetes/ingress-nginx/compare/helm-chart-4.11.0...helm-chart-4.12.0
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 27ba7136c..c5c290d57 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -30,9 +30,9 @@ controller:
     ## for backwards compatibility consider setting the full image url via the repository value below
     ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
     ## repository:
-    tag: "v1.12.0-beta.0"
-    digest: sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
-    digestChroot: sha256:6e2f8f52e1f2571ff65bc4fc4826d5282d5def5835ec4ab433dcb8e659b2fbac
+    tag: "v1.12.0"
+    digest: sha256:e6b8de175acda6ca913891f0f727bca4527e797d52688cbe9fec9040d6f6b6fa
+    digestChroot: sha256:87c88e1c38a6c8d4483c8f70b69e2cca49853bb3ec3124b9b1be648edf139af3
     pullPolicy: IfNotPresent
     runAsNonRoot: true
     # -- This value must not be changed using the official image.
diff --git a/deploy/static/provider/aws/deploy.yaml b/deploy/static/provider/aws/deploy.yaml
index 6f7f54768..1ed9b7471 100644
--- a/deploy/static/provider/aws/deploy.yaml
+++ b/deploy/static/provider/aws/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0@sha256:e6b8de175acda6ca913891f0f727bca4527e797d52688cbe9fec9040d6f6b6fa
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -575,7 +575,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -586,7 +586,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -602,7 +602,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -629,7 +629,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -642,7 +642,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
index 62e0f9a1c..d048683d9 100644
--- a/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+++ b/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -335,7 +335,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -353,7 +353,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -386,7 +386,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -409,7 +409,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -431,7 +431,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
     spec:
       containers:
       - args:
@@ -455,7 +455,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0@sha256:e6b8de175acda6ca913891f0f727bca4527e797d52688cbe9fec9040d6f6b6fa
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -535,7 +535,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -546,7 +546,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -560,7 +560,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -587,7 +587,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -598,7 +598,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -614,7 +614,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -641,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -654,7 +654,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/baremetal/deploy.yaml b/deploy/static/provider/baremetal/deploy.yaml
index 4724e2761..7248dfd9b 100644
--- a/deploy/static/provider/baremetal/deploy.yaml
+++ b/deploy/static/provider/baremetal/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
     spec:
       containers:
       - args:
@@ -440,7 +440,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0@sha256:e6b8de175acda6ca913891f0f727bca4527e797d52688cbe9fec9040d6f6b6fa
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -517,7 +517,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -528,7 +528,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -542,7 +542,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -569,7 +569,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -580,7 +580,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -596,7 +596,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -623,7 +623,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -636,7 +636,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/cloud/deploy.yaml b/deploy/static/provider/cloud/deploy.yaml
index a646d1402..08bc7e4bf 100644
--- a/deploy/static/provider/cloud/deploy.yaml
+++ b/deploy/static/provider/cloud/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -373,7 +373,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -396,7 +396,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -418,7 +418,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0@sha256:e6b8de175acda6ca913891f0f727bca4527e797d52688cbe9fec9040d6f6b6fa
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -519,7 +519,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -530,7 +530,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -544,7 +544,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -571,7 +571,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -582,7 +582,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -598,7 +598,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -625,7 +625,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -638,7 +638,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/do/deploy.yaml b/deploy/static/provider/do/deploy.yaml
index f44e00125..4745c64fc 100644
--- a/deploy/static/provider/do/deploy.yaml
+++ b/deploy/static/provider/do/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0@sha256:e6b8de175acda6ca913891f0f727bca4527e797d52688cbe9fec9040d6f6b6fa
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -522,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -533,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -547,7 +547,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -574,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -601,7 +601,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -628,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -641,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/exoscale/deploy.yaml b/deploy/static/provider/exoscale/deploy.yaml
index 156191829..8ed5d002c 100644
--- a/deploy/static/provider/exoscale/deploy.yaml
+++ b/deploy/static/provider/exoscale/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -349,7 +349,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -382,7 +382,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -405,7 +405,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -423,7 +423,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
     spec:
       containers:
       - args:
@@ -447,7 +447,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0@sha256:e6b8de175acda6ca913891f0f727bca4527e797d52688cbe9fec9040d6f6b6fa
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -528,7 +528,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -539,7 +539,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -553,7 +553,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -580,7 +580,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -591,7 +591,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -607,7 +607,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -634,7 +634,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -647,7 +647,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/kind/deploy.yaml b/deploy/static/provider/kind/deploy.yaml
index d3c168110..b7488f046 100644
--- a/deploy/static/provider/kind/deploy.yaml
+++ b/deploy/static/provider/kind/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -340,7 +340,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -372,7 +372,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -395,7 +395,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -417,7 +417,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
     spec:
       containers:
       - args:
@@ -442,7 +442,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0@sha256:e6b8de175acda6ca913891f0f727bca4527e797d52688cbe9fec9040d6f6b6fa
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -529,7 +529,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -540,7 +540,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -554,7 +554,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -581,7 +581,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -592,7 +592,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -608,7 +608,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -635,7 +635,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -648,7 +648,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/oracle/deploy.yaml b/deploy/static/provider/oracle/deploy.yaml
index 8e96a90b4..02d18b1bf 100644
--- a/deploy/static/provider/oracle/deploy.yaml
+++ b/deploy/static/provider/oracle/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -328,7 +328,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -344,7 +344,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -377,7 +377,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -400,7 +400,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -422,7 +422,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
     spec:
       containers:
       - args:
@@ -446,7 +446,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0@sha256:e6b8de175acda6ca913891f0f727bca4527e797d52688cbe9fec9040d6f6b6fa
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -523,7 +523,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -534,7 +534,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -548,7 +548,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -575,7 +575,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -586,7 +586,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -602,7 +602,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -629,7 +629,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -642,7 +642,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/deploy/static/provider/scw/deploy.yaml b/deploy/static/provider/scw/deploy.yaml
index 60c03464c..8ed37d062 100644
--- a/deploy/static/provider/scw/deploy.yaml
+++ b/deploy/static/provider/scw/deploy.yaml
@@ -15,7 +15,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 ---
@@ -28,7 +28,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 ---
@@ -40,7 +40,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 rules:
@@ -130,7 +130,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 rules:
@@ -149,7 +149,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 rules:
 - apiGroups:
@@ -231,7 +231,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 rules:
 - apiGroups:
@@ -250,7 +250,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
   namespace: ingress-nginx
 roleRef:
@@ -270,7 +270,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
   namespace: ingress-nginx
 roleRef:
@@ -289,7 +289,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -308,7 +308,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -329,7 +329,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 ---
@@ -343,7 +343,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -376,7 +376,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller-admission
   namespace: ingress-nginx
 spec:
@@ -399,7 +399,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-controller
   namespace: ingress-nginx
 spec:
@@ -421,7 +421,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
     spec:
       containers:
       - args:
@@ -445,7 +445,7 @@ spec:
               fieldPath: metadata.namespace
         - name: LD_PRELOAD
           value: /usr/local/lib/libmimalloc.so
-        image: registry.k8s.io/ingress-nginx/controller:v1.12.0-beta.0@sha256:9724476b928967173d501040631b23ba07f47073999e80e34b120e8db5f234d5
+        image: registry.k8s.io/ingress-nginx/controller:v1.12.0@sha256:e6b8de175acda6ca913891f0f727bca4527e797d52688cbe9fec9040d6f6b6fa
         imagePullPolicy: IfNotPresent
         lifecycle:
           preStop:
@@ -522,7 +522,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-create
   namespace: ingress-nginx
 spec:
@@ -533,7 +533,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-create
     spec:
       containers:
@@ -547,7 +547,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: create
         securityContext:
@@ -574,7 +574,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission-patch
   namespace: ingress-nginx
 spec:
@@ -585,7 +585,7 @@ spec:
         app.kubernetes.io/instance: ingress-nginx
         app.kubernetes.io/name: ingress-nginx
         app.kubernetes.io/part-of: ingress-nginx
-        app.kubernetes.io/version: 1.12.0-beta.0
+        app.kubernetes.io/version: 1.12.0
       name: ingress-nginx-admission-patch
     spec:
       containers:
@@ -601,7 +601,7 @@ spec:
           valueFrom:
             fieldRef:
               fieldPath: metadata.namespace
-        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.4.4@sha256:a9f03b34a3cbfbb26d103a14046ab2c5130a80c3d69d526ff8063d2b37b9fd3f
+        image: registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.5.0@sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
         imagePullPolicy: IfNotPresent
         name: patch
         securityContext:
@@ -628,7 +628,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: nginx
 spec:
   controller: k8s.io/ingress-nginx
@@ -641,7 +641,7 @@ metadata:
     app.kubernetes.io/instance: ingress-nginx
     app.kubernetes.io/name: ingress-nginx
     app.kubernetes.io/part-of: ingress-nginx
-    app.kubernetes.io/version: 1.12.0-beta.0
+    app.kubernetes.io/version: 1.12.0
   name: ingress-nginx-admission
 webhooks:
 - admissionReviewVersions:
diff --git a/docs/deploy/index.md b/docs/deploy/index.md
index 02ad0ff04..717c479ac 100644
--- a/docs/deploy/index.md
+++ b/docs/deploy/index.md
@@ -92,7 +92,7 @@ helm show values ingress-nginx --repo https://kubernetes.github.io/ingress-nginx
 **If you don't have Helm** or if you prefer to use a YAML manifest, you can run the following command instead:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! info
@@ -274,7 +274,7 @@ In AWS, we use a Network load balancer (NLB) to expose the Ingress-Nginx Control
 ##### Network Load Balancer (NLB)
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/aws/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0/deploy/static/provider/aws/deploy.yaml
 ```
 
 ##### TLS termination in AWS Load Balancer (NLB)
@@ -282,10 +282,10 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 By default, TLS is terminated in the ingress controller. But it is also possible to terminate TLS in the Load Balancer.
 This section explains how to do that on AWS using an NLB.
 
-1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
+1. Download the [deploy.yaml](https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml) template
 
   ```console
-  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
+  wget https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0/deploy/static/provider/aws/nlb-with-tls-termination/deploy.yaml
   ```
 
 2. Edit the file and change the VPC CIDR in use for the Kubernetes cluster:
@@ -333,7 +333,7 @@ kubectl create clusterrolebinding cluster-admin-binding \
 Then, the ingress controller can be installed like this:
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 !!! warning
@@ -350,7 +350,7 @@ Proxy-protocol is supported in GCE check the [Official Documentations on how to
 #### Azure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 More information with regard to Azure annotations for ingress controller can be found in the [official AKS documentation](https://docs.microsoft.com/en-us/azure/aks/ingress-internal-ip#create-an-ingress-controller).
@@ -358,7 +358,7 @@ More information with regard to Azure annotations for ingress controller can be
 #### Digital Ocean
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/do/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0/deploy/static/provider/do/deploy.yaml
 ```
 
 - By default the service object of the ingress-nginx-controller for Digital-Ocean, only configures one annotation. Its this one `service.beta.kubernetes.io/do-loadbalancer-enable-proxy-protocol: "true"`. While this makes the service functional, it was reported that the Digital-Ocean LoadBalancer graphs shows `no data`, unless a few other annotations are also configured. Some of these other annotations require values that can not be generic and hence not forced in a out-of-the-box installation. These annotations and a discussion on them is well documented in [this issue](https://github.com/kubernetes/ingress-nginx/issues/8965). Please refer to the issue to add annotations, with values specific to user, to get graphs of the DO-LB populated with data.
@@ -366,7 +366,7 @@ kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/cont
 #### Scaleway
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/scw/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0/deploy/static/provider/scw/deploy.yaml
 ```
 
 Refer to the [dedicated tutorial](https://www.scaleway.com/en/docs/tutorials/proxy-protocol-v2-load-balancer/#configuring-proxy-protocol-for-ingress-nginx) in the Scaleway documentation for configuring the proxy protocol for ingress-nginx with the Scaleway load balancer.
@@ -383,7 +383,7 @@ The full list of annotations supported by Exoscale is available in the Exoscale
 #### Oracle Cloud Infrastructure
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/cloud/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0/deploy/static/provider/cloud/deploy.yaml
 ```
 
 A
@@ -410,7 +410,7 @@ For quick testing, you can use a
 This should work on almost every cluster, but it will typically use a port in the range 30000-32767.
 
 ```console
-kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0-beta.0/deploy/static/provider/baremetal/deploy.yaml
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/controller-v1.12.0/deploy/static/provider/baremetal/deploy.yaml
 ```
 
 For more information about bare metal deployments (and how to use port 80 instead of a random port in the 30000-32767 range),
diff --git a/docs/e2e-tests.md b/docs/e2e-tests.md
index 163a5ff5c..43726f5a1 100644
--- a/docs/e2e-tests.md
+++ b/docs/e2e-tests.md
@@ -222,10 +222,10 @@ Do not try to edit it manually.
 - [should set valid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L117)
 - [should not set invalid proxy timeouts](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L138)
 - [should turn on proxy-buffering](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L159)
-- [should turn off proxy-request-buffering](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L181)
-- [should build proxy next upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L196)
-- [should setup proxy cookies](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L217)
-- [should change the default proxy HTTP version](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L235)
+- [should turn off proxy-request-buffering](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L184)
+- [should build proxy next upstream](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L199)
+- [should setup proxy cookies](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L220)
+- [should change the default proxy HTTP version](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxy.go#L238)
 ### [proxy-ssl-*](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxyssl.go#L32)
 - [should set valid proxy-ssl-secret](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxyssl.go#L39)
 - [should set valid proxy-ssl-secret, proxy-ssl-verify to on, proxy-ssl-verify-depth to 2, and proxy-ssl-server-name to on](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/proxyssl.go#L66)
@@ -235,6 +235,10 @@ Do not try to edit it manually.
 ### [permanent-redirect permanent-redirect-code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/redirect.go#L30)
 - [should respond with a standard redirect code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/redirect.go#L33)
 - [should respond with a custom redirect code](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/redirect.go#L61)
+### [relative-redirects](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/relativeredirects.go#L35)
+- [configures Nginx correctly](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/relativeredirects.go#L43)
+- [should respond with absolute URL in Location](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/relativeredirects.go#L61)
+- [should respond with relative URL in Location](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/relativeredirects.go#L85)
 ### [rewrite-target use-regex enable-rewrite-log](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/rewrite.go#L32)
 - [should write rewrite logs](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/rewrite.go#L39)
 - [should use correct longest path match](https://github.com/kubernetes/ingress-nginx/tree/main//test/e2e/annotations/rewrite.go#L68)

From c8ab89c0211abba8bcf13a4db061c613fb37de3a Mon Sep 17 00:00:00 2001
From: Elizabeth Martin Campos <me@elizabeth.sh>
Date: Fri, 3 Jan 2025 02:08:13 +0100
Subject: [PATCH 1584/1641] NGINX: Remove unused substitutions module. (#12449)

---
 images/nginx/rootfs/build.sh | 7 -------
 1 file changed, 7 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index a3ec54c9c..eecfea03e 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -32,9 +32,6 @@ export MORE_HEADERS_VERSION=v0.37
 # Check for recent changes: https://github.com/atomx/nginx-http-auth-digest/compare/v1.0.0...atomx:master
 export NGINX_DIGEST_AUTH=v1.0.0
 
-# Check for recent changes: https://github.com/yaoweibin/ngx_http_substitutions_filter_module/compare/v0.6.4...master
-export NGINX_SUBSTITUTIONS=e12e965ac1837ca709709f9a26f572a54d83430e
-
 # Check for recent changes: https://github.com/SpiderLabs/ModSecurity-nginx/compare/v1.0.3...master
 export MODSECURITY_VERSION=v1.0.3
 
@@ -213,9 +210,6 @@ get_src 0c0d2ced2ce895b3f45eb2b230cd90508ab2a773299f153de14a43e44c1209b3 \
 get_src f09851e6309560a8ff3e901548405066c83f1f6ff88aa7171e0763bd9514762b \
         "https://github.com/atomx/nginx-http-auth-digest/archive/$NGINX_DIGEST_AUTH.tar.gz" "nginx-http-auth-digest"
 
-get_src a98b48947359166326d58700ccdc27256d2648218072da138ab6b47de47fbd8f \
-        "https://github.com/yaoweibin/ngx_http_substitutions_filter_module/archive/$NGINX_SUBSTITUTIONS.tar.gz" "ngx_http_substitutions_filter_module"
-
 get_src 32a42256616cc674dca24c8654397390adff15b888b77eb74e0687f023c8751b \
         "https://github.com/SpiderLabs/ModSecurity-nginx/archive/$MODSECURITY_VERSION.tar.gz" "ModSecurity-nginx"
 
@@ -489,7 +483,6 @@ WITH_MODULES=" \
   --add-module=$BUILD_PATH/ngx_devel_kit \
   --add-module=$BUILD_PATH/set-misc-nginx-module \
   --add-module=$BUILD_PATH/headers-more-nginx-module \
-  --add-module=$BUILD_PATH/ngx_http_substitutions_filter_module \
   --add-module=$BUILD_PATH/lua-nginx-module \
   --add-module=$BUILD_PATH/stream-lua-nginx-module \
   --add-module=$BUILD_PATH/lua-upstream-nginx-module \

From 2429e9d005e59ae5bf543b785112354e712e48da Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 6 Jan 2025 20:12:30 +0100
Subject: [PATCH 1585/1641] Bump github.com/onsi/ginkgo/v2 from 2.22.1 to
 2.22.2 (#12627)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 build/run-in-docker.sh                    |  2 +-
 go.mod                                    |  4 ++--
 go.sum                                    | 12 ++++++------
 go.work.sum                               |  5 ++---
 images/kube-webhook-certgen/rootfs/go.mod |  6 +++---
 images/kube-webhook-certgen/rootfs/go.sum | 12 ++++++------
 images/test-runner/Makefile               |  4 ++--
 test/e2e/run-chart-test.sh                |  2 +-
 test/e2e/run-kind-e2e.sh                  |  2 +-
 9 files changed, 24 insertions(+), 25 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index 03cc3de73..e191eda65 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -82,7 +82,7 @@ if [[ "$DOCKER_IN_DOCKER_ENABLED" == "true" ]]; then
   echo "..reached DIND check TRUE block, inside run-in-docker.sh"
   echo "FLAGS=$FLAGS"
   #go env
-  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.22.1
+  go install -mod=mod github.com/onsi/ginkgo/v2/ginkgo@v2.22.2
   find / -type f -name ginkgo 2>/dev/null
   which ginkgo
   /bin/bash -c "${FLAGS}"
diff --git a/go.mod b/go.mod
index 7cced6117..71e1b6925 100644
--- a/go.mod
+++ b/go.mod
@@ -14,7 +14,7 @@ require (
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.4
-	github.com/onsi/ginkgo/v2 v2.22.1
+	github.com/onsi/ginkgo/v2 v2.22.2
 	github.com/opencontainers/runc v1.2.3
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.5
@@ -123,7 +123,7 @@ require (
 	golang.org/x/time v0.7.0 // indirect
 	golang.org/x/tools v0.28.0 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20241015192408-796eee8c2d53 // indirect
-	google.golang.org/protobuf v1.35.2 // indirect
+	google.golang.org/protobuf v1.36.1 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
diff --git a/go.sum b/go.sum
index 53b639700..5fb9377f0 100644
--- a/go.sum
+++ b/go.sum
@@ -163,12 +163,12 @@ github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+W
 github.com/onsi/ginkgo v1.12.1/go.mod h1:zj2OWP4+oCPe1qIXoGWkgMRwljMUYCdkwsT2108oapk=
 github.com/onsi/ginkgo v1.16.5 h1:8xi0RTUf59SOSfEtZMvwTvXYMzG4gV23XVHOZiXNtnE=
 github.com/onsi/ginkgo v1.16.5/go.mod h1:+E8gABHa3K6zRBolWtd+ROzc/U5bkGt0FwiG042wbpU=
-github.com/onsi/ginkgo/v2 v2.22.1 h1:QW7tbJAUDyVDVOM5dFa7qaybo+CRfR7bemlQUN6Z8aM=
-github.com/onsi/ginkgo/v2 v2.22.1/go.mod h1:S6aTpoRsSq2cZOd+pssHAlKW/Q/jZt6cPrPlnj4a1xM=
+github.com/onsi/ginkgo/v2 v2.22.2 h1:/3X8Panh8/WwhU/3Ssa6rCKqPLuAkVY2I0RoyDLySlU=
+github.com/onsi/ginkgo/v2 v2.22.2/go.mod h1:oeMosUL+8LtarXBHu/c0bx2D/K9zyQ6uX3cTyztHwsk=
 github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7JYyY=
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
-github.com/onsi/gomega v1.36.1 h1:bJDPBO7ibjxcbHMgSCoo4Yj18UWbKDlLwX1x9sybDcw=
-github.com/onsi/gomega v1.36.1/go.mod h1:PvZbdDc8J6XJEpDK4HCuRBm8a6Fzp9/DmhC9C7yFlog=
+github.com/onsi/gomega v1.36.2 h1:koNYke6TVk6ZmnyHrCXba/T/MoLBXFjeC1PtvYgw0A8=
+github.com/onsi/gomega v1.36.2/go.mod h1:DdwyADRjrc825LhMEkD76cHR5+pUnjhUN8GlHlRPHzY=
 github.com/opencontainers/runc v1.2.3 h1:fxE7amCzfZflJO2lHXf4y/y8M1BoAqp+FVmG19oYB80=
 github.com/opencontainers/runc v1.2.3/go.mod h1:nSxcWUydXrsBZVYNSkTjoQ/N6rcyTtn+1SD5D4+kRIM=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
@@ -316,8 +316,8 @@ google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQ
 google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miEFZTKqfCUM6K7xSMQL9OKL/b6hQv+e19PK+JZNE=
 google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo=
 google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU=
-google.golang.org/protobuf v1.35.2 h1:8Ar7bF+apOIoThw1EdZl0p1oWvMqTHmpA2fRTyZO8io=
-google.golang.org/protobuf v1.35.2/go.mod h1:9fA7Ob0pmnwhb644+1+CVWFRbNajQ6iRojtC/QF5bRE=
+google.golang.org/protobuf v1.36.1 h1:yBPeRvTftaleIgM3PZ/WBIZ7XM/eEYAaEyCwvyjq/gk=
+google.golang.org/protobuf v1.36.1/go.mod h1:9fA7Ob0pmnwhb644+1+CVWFRbNajQ6iRojtC/QF5bRE=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
diff --git a/go.work.sum b/go.work.sum
index 825d0335a..0bc5d32bc 100644
--- a/go.work.sum
+++ b/go.work.sum
@@ -51,7 +51,6 @@ github.com/golang/glog v1.2.2/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwm
 github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/google/cel-go v0.22.0/go.mod h1:BuznPXXfQDpXKWQ9sPW3TzlAJN5zzFe+i9tIs0yC4s8=
-github.com/google/pprof v0.0.0-20240827171923-fa2c70bbbfe5/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
 github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
 github.com/gorilla/websocket v1.5.0/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
 github.com/grpc-ecosystem/go-grpc-middleware v1.3.0/go.mod h1:z0ButlSOZa5vEBq9m2m2hlwIgKw+rp3sdCBRoJY+30Y=
@@ -78,8 +77,8 @@ github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f/go.mod h1:qRW
 github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
 github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65/go.mod h1:Tx6UMSMyIsjLG/VU/F6xA1+0XI+/f9o1dGJnf1l+bPg=
 github.com/nwaples/rardecode v1.1.3/go.mod h1:5DzqNKiOdpKKBH87u8VlvAnPZMXcGRhxWkRpHbbfGS0=
-github.com/onsi/ginkgo/v2 v2.20.1/go.mod h1:lG9ey2Z29hR41WMVthyJBGUBcBhGOtoPF2VFMvBXFCI=
 github.com/onsi/ginkgo/v2 v2.21.0/go.mod h1:7Du3c42kxCUegi0IImZ1wUQzMBVecgIHjR1C+NkhLQo=
+github.com/onsi/ginkgo/v2 v2.22.1/go.mod h1:S6aTpoRsSq2cZOd+pssHAlKW/Q/jZt6cPrPlnj4a1xM=
 github.com/onsi/gomega v1.35.1/go.mod h1:PvZbdDc8J6XJEpDK4HCuRBm8a6Fzp9/DmhC9C7yFlog=
 github.com/opencontainers/selinux v1.11.0/go.mod h1:E5dMC3VPuVvVHDYmi78qvhJp8+M586T4DlDRYpFkyec=
 github.com/pelletier/go-toml/v2 v2.0.8/go.mod h1:vuYfssBdrU2XDZ9bYydBu6t+6a6PYNcZljzZR9VXg+4=
@@ -136,10 +135,10 @@ golang.org/x/telemetry v0.0.0-20240521205824-bda55230c457/go.mod h1:pRgIJT+bRLFK
 golang.org/x/text v0.19.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
 golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
 golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk=
-golang.org/x/tools v0.24.0/go.mod h1:YhNqVBIfWHdzvTLs0d8LCuMhkKUgSUKldakyV7W/WDQ=
 golang.org/x/tools v0.26.0/go.mod h1:TPVVj70c7JJ3WCazhD8OdXcZg/og+b9+tH/KxylGwH0=
 google.golang.org/genproto v0.0.0-20240123012728-ef4313101c80/go.mod h1:cc8bqMqtv9gMOr0zHg2Vzff5ULhhL2IXP4sbcn32Dro=
 google.golang.org/genproto/googleapis/api v0.0.0-20241015192408-796eee8c2d53/go.mod h1:riSXTwQ4+nqmPGtobMFyW5FqVAmIs0St6VPp4Ug7CE4=
+google.golang.org/protobuf v1.35.1/go.mod h1:9fA7Ob0pmnwhb644+1+CVWFRbNajQ6iRojtC/QF5bRE=
 gopkg.in/natefinch/lumberjack.v2 v2.2.1/go.mod h1:YD8tP3GAjkrDg1eZH7EGmyESg/lsYskCTPBJVb9jqSc=
 gopkg.in/square/go-jose.v2 v2.6.0/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
 k8s.io/kms v0.32.0/go.mod h1:Bk2evz/Yvk0oVrvm4MvZbgq8BD34Ksxs2SRHn4/UiOM=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 46d7747c5..d1fcf4909 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -33,8 +33,8 @@ require (
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
-	github.com/onsi/ginkgo/v2 v2.22.1 // indirect
-	github.com/onsi/gomega v1.36.1 // indirect
+	github.com/onsi/ginkgo/v2 v2.22.2 // indirect
+	github.com/onsi/gomega v1.36.2 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
 	github.com/x448/float16 v0.8.4 // indirect
@@ -44,7 +44,7 @@ require (
 	golang.org/x/term v0.27.0 // indirect
 	golang.org/x/text v0.21.0 // indirect
 	golang.org/x/time v0.7.0 // indirect
-	google.golang.org/protobuf v1.35.1 // indirect
+	google.golang.org/protobuf v1.36.1 // indirect
 	gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index fee4d4e02..429552b0e 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -56,10 +56,10 @@ github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/onrik/logrus v0.11.0 h1:pu+BCaWL36t0yQaj/2UHK2erf88dwssAKOT51mxPUVs=
 github.com/onrik/logrus v0.11.0/go.mod h1:fO2vlZwIdti6PidD3gV5YKt9Lq5ptpnP293RAe1ITwk=
-github.com/onsi/ginkgo/v2 v2.22.1 h1:QW7tbJAUDyVDVOM5dFa7qaybo+CRfR7bemlQUN6Z8aM=
-github.com/onsi/ginkgo/v2 v2.22.1/go.mod h1:S6aTpoRsSq2cZOd+pssHAlKW/Q/jZt6cPrPlnj4a1xM=
-github.com/onsi/gomega v1.36.1 h1:bJDPBO7ibjxcbHMgSCoo4Yj18UWbKDlLwX1x9sybDcw=
-github.com/onsi/gomega v1.36.1/go.mod h1:PvZbdDc8J6XJEpDK4HCuRBm8a6Fzp9/DmhC9C7yFlog=
+github.com/onsi/ginkgo/v2 v2.22.2 h1:/3X8Panh8/WwhU/3Ssa6rCKqPLuAkVY2I0RoyDLySlU=
+github.com/onsi/ginkgo/v2 v2.22.2/go.mod h1:oeMosUL+8LtarXBHu/c0bx2D/K9zyQ6uX3cTyztHwsk=
+github.com/onsi/gomega v1.36.2 h1:koNYke6TVk6ZmnyHrCXba/T/MoLBXFjeC1PtvYgw0A8=
+github.com/onsi/gomega v1.36.2/go.mod h1:DdwyADRjrc825LhMEkD76cHR5+pUnjhUN8GlHlRPHzY=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
@@ -129,8 +129,8 @@ golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8T
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-google.golang.org/protobuf v1.35.1 h1:m3LfL6/Ca+fqnjnlqQXNpFPABW1UD7mjh8KO2mKFytA=
-google.golang.org/protobuf v1.35.1/go.mod h1:9fA7Ob0pmnwhb644+1+CVWFRbNajQ6iRojtC/QF5bRE=
+google.golang.org/protobuf v1.36.1 h1:yBPeRvTftaleIgM3PZ/WBIZ7XM/eEYAaEyCwvyjq/gk=
+google.golang.org/protobuf v1.36.1/go.mod h1:9fA7Ob0pmnwhb644+1+CVWFRbNajQ6iRojtC/QF5bRE=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index b51293643..3db9a7977 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -59,7 +59,7 @@ image:
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.22.1 \
+		--build-arg GINKGO_VERSION=2.22.2 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
@@ -80,7 +80,7 @@ build: ensure-buildx
 		--build-arg YAML_LINT_VERSION=1.33.0 \
 		--build-arg YAMALE_VERSION=4.0.4 \
 		--build-arg HELM_VERSION=3.14.4 \
-		--build-arg GINKGO_VERSION=2.22.1 \
+		--build-arg GINKGO_VERSION=2.22.2 \
 		--build-arg GOLINT_VERSION=latest \
 		-t ${IMAGE}:${TAG} rootfs
 
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 144db41df..c8b079f84 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -78,7 +78,7 @@ fi
 
 if [ "${SKIP_IMAGE_CREATION:-false}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.22.1
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.22.2
   fi
   echo "[dev-env] building image"
   make -C ${DIR}/../../ clean-image build image
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index ac8a389e9..afcfe1800 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -95,7 +95,7 @@ fi
 
 if [ "${SKIP_E2E_IMAGE_CREATION}" = "false" ]; then
   if ! command -v ginkgo &> /dev/null; then
-    go install github.com/onsi/ginkgo/v2/ginkgo@v2.22.1
+    go install github.com/onsi/ginkgo/v2/ginkgo@v2.22.2
   fi
 
   echo "[dev-env] .. done building controller images"

From 5b142ed7c44327a949037833531b7cf11057a1ad Mon Sep 17 00:00:00 2001
From: mhf42 <104972593+matthias-haase@users.noreply.github.com>
Date: Mon, 6 Jan 2025 21:52:30 +0100
Subject: [PATCH 1586/1641] NGINX: Bump OpenTelemetry. (#12371)

---
 images/nginx/rootfs/Dockerfile |  2 ++
 images/nginx/rootfs/build.sh   | 14 ++++++++------
 2 files changed, 10 insertions(+), 6 deletions(-)

diff --git a/images/nginx/rootfs/Dockerfile b/images/nginx/rootfs/Dockerfile
index 078630170..834a9bcf3 100644
--- a/images/nginx/rootfs/Dockerfile
+++ b/images/nginx/rootfs/Dockerfile
@@ -51,6 +51,8 @@ RUN apk update \
   tzdata \
   grpc-cpp \
   libprotobuf \
+  abseil-cpp-crc-cpu-detect \
+  abseil-cpp-vlog-config-internal \
   && ln -s /usr/local/nginx/sbin/nginx /sbin/nginx \
   && adduser -S -D -H -u 101 -h /usr/local/nginx \
   -s /sbin/nologin -G www-data -g www-data www-data \
diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index eecfea03e..7c4546763 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -95,13 +95,14 @@ export LUA_RESTY_REDIS_VERSION=8641b9f1b6f75cca50c90cf8ca5c502ad8950aa8
 # Check for recent changes: https://github.com/api7/lua-resty-ipmatcher/compare/v0.6.1...master
 export LUA_RESTY_IPMATCHER_VERSION=3e93c53eb8c9884efe939ef070486a0e507cc5be
 
-# Check for recent changes:  https://github.com/microsoft/mimalloc/compare/v2.1.7...master
+# Check for recent changes: https://github.com/microsoft/mimalloc/compare/v2.1.7...master
 export MIMALOC_VERSION=v2.1.7
 
-# Check on https://github.com/open-telemetry/opentelemetry-cpp
-export OPENTELEMETRY_CPP_VERSION="v1.11.0"
-# Check on https://github.com/open-telemetry/opentelemetry-proto
-export OPENTELEMETRY_PROTO_VERSION="v1.1.0"
+# Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp/compare/v1.18.0...main
+export OPENTELEMETRY_CPP_VERSION="v1.18.0"
+
+# Check for recent changes: https://github.com/open-telemetry/opentelemetry-proto/compare/v1.5.0...main
+export OPENTELEMETRY_PROTO_VERSION="v1.5.0"
 
 export BUILD_PATH=/tmp/build
 
@@ -520,7 +521,8 @@ make
 make modules
 make install
 
-export OPENTELEMETRY_CONTRIB_COMMIT=e11348bb400d5472bf1da5d6128bead66fa111ff
+# Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp-contrib/compare/8933841f0a7f8737f61404cf0a64acf6b079c8a5...main
+export OPENTELEMETRY_CONTRIB_COMMIT=8933841f0a7f8737f61404cf0a64acf6b079c8a5
 cd "$BUILD_PATH"
 
 git clone https://github.com/open-telemetry/opentelemetry-cpp-contrib.git opentelemetry-cpp-contrib-${OPENTELEMETRY_CONTRIB_COMMIT}

From 69fd353086305fbbcb2b64bcc0724d0b960de3e0 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Thu, 9 Jan 2025 00:22:30 +0100
Subject: [PATCH 1587/1641] NGINX: Bump ModSecurity. (#12641)

---
 images/nginx/rootfs/build.sh | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 7c4546763..512ec45b7 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -35,11 +35,11 @@ export NGINX_DIGEST_AUTH=v1.0.0
 # Check for recent changes: https://github.com/SpiderLabs/ModSecurity-nginx/compare/v1.0.3...master
 export MODSECURITY_VERSION=v1.0.3
 
-# Check for recent changes: https://github.com/SpiderLabs/ModSecurity/compare/v3.0.8...v3/master
-export MODSECURITY_LIB_VERSION=v3.0.12
+# Check for recent changes: https://github.com/SpiderLabs/ModSecurity/compare/v3.0.13...v3/master
+export MODSECURITY_LIB_VERSION=v3.0.13
 
-# Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v3.3.5...v4.0/main
-export OWASP_MODSECURITY_CRS_VERSION=v4.4.0
+# Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v4.10.0...main
+export OWASP_MODSECURITY_CRS_VERSION=v4.10.0
 
 # Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.26``...master
 export LUA_NGX_VERSION=v0.10.26

From 29d1e2014bffb1cbb0f1e4e045f3ad285f8a0c5f Mon Sep 17 00:00:00 2001
From: Jurgen Goelen <jurgen@goelen.it>
Date: Thu, 9 Jan 2025 21:36:31 +0100
Subject: [PATCH 1588/1641] Annotations: Reload on custom header changes.
 (#11709)

---
 internal/ingress/annotations/customheaders/main.go | 13 +++++++++++++
 pkg/apis/ingress/types_equals.go                   |  4 ++++
 test/manifests/configuration-a.json                |  7 ++++++-
 test/manifests/configuration-b.json                |  7 ++++++-
 4 files changed, 29 insertions(+), 2 deletions(-)

diff --git a/internal/ingress/annotations/customheaders/main.go b/internal/ingress/annotations/customheaders/main.go
index 774e9c3d3..bc0ef2eb5 100644
--- a/internal/ingress/annotations/customheaders/main.go
+++ b/internal/ingress/annotations/customheaders/main.go
@@ -18,6 +18,7 @@ package customheaders
 
 import (
 	"fmt"
+	"reflect"
 	"regexp"
 
 	"k8s.io/klog/v2"
@@ -35,6 +36,18 @@ type Config struct {
 	Headers map[string]string `json:"headers,omitempty"`
 }
 
+// Equal tests for equality between two Config types
+func (c1 *Config) Equal(c2 *Config) bool {
+	if c1 == c2 {
+		return true
+	}
+	if c1 == nil || c2 == nil {
+		return false
+	}
+
+	return reflect.DeepEqual(c1.Headers, c2.Headers)
+}
+
 var (
 	headerRegexp = regexp.MustCompile(`^[a-zA-Z\d\-_]+$`)
 	valueRegexp  = regexp.MustCompile(`^[a-zA-Z\d_ :;.,\\/"'?!(){}\[\]@<>=\-+*#$&\x60|~^%]+$`)
diff --git a/pkg/apis/ingress/types_equals.go b/pkg/apis/ingress/types_equals.go
index aa6c3efa7..6fba3bd45 100644
--- a/pkg/apis/ingress/types_equals.go
+++ b/pkg/apis/ingress/types_equals.go
@@ -467,6 +467,10 @@ func (l1 *Location) Equal(l2 *Location) bool {
 		return false
 	}
 
+	if !l1.CustomHeaders.Equal(&l2.CustomHeaders) {
+		return false
+	}
+
 	return true
 }
 
diff --git a/test/manifests/configuration-a.json b/test/manifests/configuration-a.json
index ba513c616..f9599d77c 100644
--- a/test/manifests/configuration-a.json
+++ b/test/manifests/configuration-a.json
@@ -302,7 +302,12 @@
 				"validationDepth": 0
 			},
 			"use-port-in-redirects": false,
-			"configuration-snippet": ""
+			"configuration-snippet": "",
+			"customHeaders": {
+				"headers": {
+					"Server": "HAL9000"
+				}
+			}
 		}]
 	}, {
 		"hostname": "dev.mycompany.com",
diff --git a/test/manifests/configuration-b.json b/test/manifests/configuration-b.json
index 9e40785b4..d2e71bb29 100644
--- a/test/manifests/configuration-b.json
+++ b/test/manifests/configuration-b.json
@@ -302,7 +302,12 @@
 				"validationDepth": 0
 			},
 			"use-port-in-redirects": false,
-			"configuration-snippet": ""
+			"configuration-snippet": "",
+			"customHeaders": {
+				"headers": {
+					"Server": "HAL9000"
+				}
+			}
 		}]
 	}, {
 		"hostname": "dev.mycompany.com",

From 1ece0ddbc110c207213709b5ffcecfa7f0ac46be Mon Sep 17 00:00:00 2001
From: Long Wu Yuan <longwuyuan@gmail.com>
Date: Thu, 9 Jan 2025 20:54:31 +0000
Subject: [PATCH 1589/1641] NGINX: Bump to OpenResty v1.27.1.1. (#12229)

---
 images/nginx/rootfs/build.sh                  | 73 +++++++++---------
 ...> 01_nginx-1.27.1-win32_max_err_str.patch} |  0
 ...nginx-1.27.1-stream_balancer_export.patch} |  0
 ...tream_proxy_get_next_upstream_tries.patch} |  0
 ...-1.27.1-stream_proxy_timeout_fields.patch} | 12 +--
 ...x-1.27.1-stream_ssl_preread_no_skip.patch} |  0
 ..._nginx-1.27.1-resolver_conf_parsing.patch} |  0
 ...07_nginx-1.27.1-daemon_destroy_pool.patch} |  0
 ...ginx-1.27.1-init_cycle_pool_release.patch} | 24 +++---
 ...9_nginx-1.27.1-balancer_status_code.patch} |  0
 ..._nginx-1.27.1-delayed_posted_events.patch} |  0
 ...inx-1.27.1-privileged_agent_process.patch} |  0
 ...rivileged_agent_process_connections.patch} |  0
 ...rivileged_agent_process_thread_pool.patch} |  0
 ...1.27.1-single_process_graceful_exit.patch} |  0
 ...15_nginx-1.27.1-intercept_error_log.patch} |  0
 ...16_nginx-1.27.1-upstream_pipelining.patch} |  0
 ...h => 17_nginx-1.27.1-no_error_pages.patch} |  6 +-
 .../patches/18_nginx-1.25.3-no_Werror.patch   | 36 ---------
 .../patches/18_nginx-1.27.1-no_Werror.patch   | 36 +++++++++
 ...9_nginx-1.27.1-log_escape_non_ascii.patch} |  0
 ...0_nginx-1.27.1-proxy_host_port_vars.patch} |  4 +-
 ... 21_nginx-1.27.1-cache_manager_exit.patch} |  0
 ...2_nginx-1.27.1-larger_max_error_str.patch} |  4 +-
 ...ch => 23_nginx-1.27.1-pcre_conf_opt.patch} |  0
 ...27.1-always_enable_cc_feature_tests.patch} |  4 +-
 ...> 25_nginx-1.27.1-ssl_cert_cb_yield.patch} |  0
 ...> 26_nginx-1.27.1-ssl_sess_cb_yield.patch} |  0
 ...nx-1.27.1-ssl_client_hello_cb_yield.patch} |  0
 ...ginx-1.27.1-upstream_timeout_fields.patch} |  0
 ...nx-1.27.1-safe_resolver_ipv6_option.patch} |  0
 ...h => 30_nginx-1.27.1-socket_cloexec.patch} |  0
 ...x-1.27.1-reuseport_close_unused_fds.patch} |  0
 .../32_nginx-1.27.1-proc_exit_handler.patch   | 77 +++++++++++++++++++
 34 files changed, 176 insertions(+), 100 deletions(-)
 rename images/nginx/rootfs/patches/{01_nginx-1.25.3-win32_max_err_str.patch => 01_nginx-1.27.1-win32_max_err_str.patch} (100%)
 rename images/nginx/rootfs/patches/{02_nginx-1.25.3-stream_balancer_export.patch => 02_nginx-1.27.1-stream_balancer_export.patch} (100%)
 rename images/nginx/rootfs/patches/{03_nginx-1.25.3-stream_proxy_get_next_upstream_tries.patch => 03_nginx-1.27.1-stream_proxy_get_next_upstream_tries.patch} (100%)
 rename images/nginx/rootfs/patches/{04_nginx-1.25.3-stream_proxy_timeout_fields.patch => 04_nginx-1.27.1-stream_proxy_timeout_fields.patch} (92%)
 rename images/nginx/rootfs/patches/{05_nginx-1.25.3-stream_ssl_preread_no_skip.patch => 05_nginx-1.27.1-stream_ssl_preread_no_skip.patch} (100%)
 rename images/nginx/rootfs/patches/{06_nginx-1.25.3-resolver_conf_parsing.patch => 06_nginx-1.27.1-resolver_conf_parsing.patch} (100%)
 rename images/nginx/rootfs/patches/{07_nginx-1.25.3-daemon_destroy_pool.patch => 07_nginx-1.27.1-daemon_destroy_pool.patch} (100%)
 rename images/nginx/rootfs/patches/{08_nginx-1.25.3-init_cycle_pool_release.patch => 08_nginx-1.27.1-init_cycle_pool_release.patch} (65%)
 rename images/nginx/rootfs/patches/{09_nginx-1.25.3-balancer_status_code.patch => 09_nginx-1.27.1-balancer_status_code.patch} (100%)
 rename images/nginx/rootfs/patches/{10_nginx-1.25.3-delayed_posted_events.patch => 10_nginx-1.27.1-delayed_posted_events.patch} (100%)
 rename images/nginx/rootfs/patches/{11_nginx-1.25.3-privileged_agent_process.patch => 11_nginx-1.27.1-privileged_agent_process.patch} (100%)
 rename images/nginx/rootfs/patches/{12_nginx-1.25.3-privileged_agent_process_connections.patch => 12_nginx-1.27.1-privileged_agent_process_connections.patch} (100%)
 rename images/nginx/rootfs/patches/{13_nginx-1.25.3-privileged_agent_process_thread_pool.patch => 13_nginx-1.27.1-privileged_agent_process_thread_pool.patch} (100%)
 rename images/nginx/rootfs/patches/{14_nginx-1.25.3-single_process_graceful_exit.patch => 14_nginx-1.27.1-single_process_graceful_exit.patch} (100%)
 rename images/nginx/rootfs/patches/{15_nginx-1.25.3-intercept_error_log.patch => 15_nginx-1.27.1-intercept_error_log.patch} (100%)
 rename images/nginx/rootfs/patches/{16_nginx-1.25.3-upstream_pipelining.patch => 16_nginx-1.27.1-upstream_pipelining.patch} (100%)
 rename images/nginx/rootfs/patches/{17_nginx-1.25.3-no_error_pages.patch => 17_nginx-1.27.1-no_error_pages.patch} (93%)
 delete mode 100644 images/nginx/rootfs/patches/18_nginx-1.25.3-no_Werror.patch
 create mode 100644 images/nginx/rootfs/patches/18_nginx-1.27.1-no_Werror.patch
 rename images/nginx/rootfs/patches/{19_nginx-1.25.3-log_escape_non_ascii.patch => 19_nginx-1.27.1-log_escape_non_ascii.patch} (100%)
 rename images/nginx/rootfs/patches/{20_nginx-1.25.3-proxy_host_port_vars.patch => 20_nginx-1.27.1-proxy_host_port_vars.patch} (87%)
 rename images/nginx/rootfs/patches/{21_nginx-1.25.3-cache_manager_exit.patch => 21_nginx-1.27.1-cache_manager_exit.patch} (100%)
 rename images/nginx/rootfs/patches/{22_nginx-1.25.3-larger_max_error_str.patch => 22_nginx-1.27.1-larger_max_error_str.patch} (62%)
 rename images/nginx/rootfs/patches/{23_nginx-1.25.3-pcre_conf_opt.patch => 23_nginx-1.27.1-pcre_conf_opt.patch} (100%)
 rename images/nginx/rootfs/patches/{24_nginx-1.25.3-always_enable_cc_feature_tests.patch => 24_nginx-1.27.1-always_enable_cc_feature_tests.patch} (65%)
 rename images/nginx/rootfs/patches/{25_nginx-1.25.3-ssl_cert_cb_yield.patch => 25_nginx-1.27.1-ssl_cert_cb_yield.patch} (100%)
 rename images/nginx/rootfs/patches/{26_nginx-1.25.3-ssl_sess_cb_yield.patch => 26_nginx-1.27.1-ssl_sess_cb_yield.patch} (100%)
 rename images/nginx/rootfs/patches/{27_nginx-1.25.3-ssl_client_hello_cb_yield.patch => 27_nginx-1.27.1-ssl_client_hello_cb_yield.patch} (100%)
 rename images/nginx/rootfs/patches/{28_nginx-1.25.3-upstream_timeout_fields.patch => 28_nginx-1.27.1-upstream_timeout_fields.patch} (100%)
 rename images/nginx/rootfs/patches/{29_nginx-1.25.3-safe_resolver_ipv6_option.patch => 29_nginx-1.27.1-safe_resolver_ipv6_option.patch} (100%)
 rename images/nginx/rootfs/patches/{30_nginx-1.25.3-socket_cloexec.patch => 30_nginx-1.27.1-socket_cloexec.patch} (100%)
 rename images/nginx/rootfs/patches/{31_nginx-1.25.3-reuseport_close_unused_fds.patch => 31_nginx-1.27.1-reuseport_close_unused_fds.patch} (100%)
 create mode 100644 images/nginx/rootfs/patches/32_nginx-1.27.1-proc_exit_handler.patch

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index 512ec45b7..a9324638e 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -18,18 +18,18 @@ set -o errexit
 set -o nounset
 set -o pipefail
 
-export NGINX_VERSION=1.25.5
+export NGINX_VERSION=1.27.1
 
 # Check for recent changes: https://github.com/vision5/ngx_devel_kit/compare/v0.3.3...master
 export NDK_VERSION=v0.3.3
 
 # Check for recent changes: https://github.com/openresty/set-misc-nginx-module/compare/v0.33...master
-export SETMISC_VERSION=796f5a3e518748eb29a93bd450324e0ad45b704e
+export SETMISC_VERSION=v0.33
 
 # Check for recent changes: https://github.com/openresty/headers-more-nginx-module/compare/v0.37...master
 export MORE_HEADERS_VERSION=v0.37
 
-# Check for recent changes: https://github.com/atomx/nginx-http-auth-digest/compare/v1.0.0...atomx:master
+# Check for recent changes: https://github.com/atomx/nginx-http-auth-digest/compare/v1.0.0...master
 export NGINX_DIGEST_AUTH=v1.0.0
 
 # Check for recent changes: https://github.com/SpiderLabs/ModSecurity-nginx/compare/v1.0.3...master
@@ -41,62 +41,62 @@ export MODSECURITY_LIB_VERSION=v3.0.13
 # Check for recent changes: https://github.com/coreruleset/coreruleset/compare/v4.10.0...main
 export OWASP_MODSECURITY_CRS_VERSION=v4.10.0
 
-# Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.26``...master
-export LUA_NGX_VERSION=v0.10.26
+# Check for recent changes: https://github.com/openresty/lua-nginx-module/compare/v0.10.27...master
+export LUA_NGX_VERSION=v0.10.27
 
-# Check for recent changes: https://github.com/openresty/stream-lua-nginx-module/compare/bea8a0c0de94cede71554f53818ac0267d675d63...master
-export LUA_STREAM_NGX_VERSION=bea8a0c0de94cede71554f53818ac0267d675d63
+# Check for recent changes: https://github.com/openresty/stream-lua-nginx-module/compare/v0.0.15...master
+export LUA_STREAM_NGX_VERSION=v0.0.15
 
-# Check for recent changes: https://github.com/openresty/lua-upstream-nginx-module/compare/8aa93ead98ba2060d4efd594ae33a35d153589bf...master
-export LUA_UPSTREAM_VERSION=542be0893543a4e42d89f6dd85372972f5ff2a36
+# Check for recent changes: https://github.com/openresty/lua-upstream-nginx-module/compare/v0.07...master
+export LUA_UPSTREAM_VERSION=v0.07
 
-# Check for recent changes: https://github.com/openresty/lua-cjson/compare/2.1.0.13...openresty:master
-export LUA_CJSON_VERSION=2.1.0.13
+# Check for recent changes: https://github.com/openresty/lua-cjson/compare/2.1.0.14...master
+export LUA_CJSON_VERSION=2.1.0.14
 
-# Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/a607a41a8115fecfc05b5c283c81532a3d605425...master
-export GEOIP2_VERSION=a607a41a8115fecfc05b5c283c81532a3d605425
+# Check for recent changes: https://github.com/leev/ngx_http_geoip2_module/compare/445df24ef3781e488cee3dfe8a1e111997fc1dfe...master
+export GEOIP2_VERSION=445df24ef3781e488cee3dfe8a1e111997fc1dfe
 
-# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20240314...v2.1-agentzh
-export LUAJIT_VERSION=v2.1-20240314
+# Check for recent changes: https://github.com/openresty/luajit2/compare/v2.1-20240815...v2.1-agentzh
+export LUAJIT_VERSION=v2.1-20240815
 
-# Check for recent changes: https://github.com/openresty/lua-resty-balancer/compare/1cd4363c0a239afe4765ec607dcfbbb4e5900eea...master
-export LUA_RESTY_BALANCER=1cd4363c0a239afe4765ec607dcfbbb4e5900eea
+# Check for recent changes: https://github.com/openresty/lua-resty-balancer/compare/v0.05...master
+export LUA_RESTY_BALANCER=v0.05
 
-# Check for recent changes: https://github.com/openresty/lua-resty-lrucache/compare/99e7578465b40f36f596d099b82eab404f2b42ed...master
-export LUA_RESTY_CACHE=99e7578465b40f36f596d099b82eab404f2b42ed
+# Check for recent changes: https://github.com/openresty/lua-resty-lrucache/compare/v0.15...master
+export LUA_RESTY_CACHE=v0.15
 
-# Check for recent changes: https://github.com/openresty/lua-resty-core/compare/v0.1.27...master
-export LUA_RESTY_CORE=v0.1.28
+# Check for recent changes: https://github.com/openresty/lua-resty-core/compare/v0.1.30...master
+export LUA_RESTY_CORE=v0.1.30
 
 # Check for recent changes: https://github.com/cloudflare/lua-resty-cookie/compare/f418d77082eaef48331302e84330488fdc810ef4...master
 export LUA_RESTY_COOKIE_VERSION=f418d77082eaef48331302e84330488fdc810ef4
 
-# Check for recent changes: https://github.com/openresty/lua-resty-dns/compare/8bb53516e2933e61c317db740a9b7c2048847c2f...master
-export LUA_RESTY_DNS=8bb53516e2933e61c317db740a9b7c2048847c2f
+# Check for recent changes: https://github.com/openresty/lua-resty-dns/compare/v0.23...master
+export LUA_RESTY_DNS=v0.23
 
-# Check for recent changes: https://github.com/ledgetech/lua-resty-http/compare/v0.17.1...master
-export LUA_RESTY_HTTP=v0.17.1
+# Check for recent changes: https://github.com/ledgetech/lua-resty-http/compare/v0.17.2...master
+export LUA_RESTY_HTTP=v0.17.2
 
 # Check for recent changes: https://github.com/openresty/lua-resty-lock/compare/v0.09...master
-export LUA_RESTY_LOCK=405d0bf4cbfa74d742c6ed3158d442221e6212a9
+export LUA_RESTY_LOCK=v0.09
 
 # Check for recent changes: https://github.com/openresty/lua-resty-upload/compare/v0.11...master
-export LUA_RESTY_UPLOAD_VERSION=979372cce011f3176af3c9aff53fd0e992c4bfd3
+export LUA_RESTY_UPLOAD_VERSION=v0.11
 
-# Check for recent changes: https://github.com/openresty/lua-resty-string/compare/v0.15...master
-export LUA_RESTY_STRING_VERSION=6f1bc21d86daef804df3cc34d6427ef68da26844
+# Check for recent changes: https://github.com/openresty/lua-resty-string/compare/v0.16...master
+export LUA_RESTY_STRING_VERSION=v0.16
 
 # Check for recent changes: https://github.com/openresty/lua-resty-memcached/compare/v0.17...master
-export LUA_RESTY_MEMCACHED_VERSION=2f02b68bf65fa2332cce070674a93a69a6c7239b
+export LUA_RESTY_MEMCACHED_VERSION=v0.17
 
-# Check for recent changes: https://github.com/openresty/lua-resty-redis/compare/v0.30...master
-export LUA_RESTY_REDIS_VERSION=8641b9f1b6f75cca50c90cf8ca5c502ad8950aa8
+# Check for recent changes: https://github.com/openresty/lua-resty-redis/compare/v0.31...master
+export LUA_RESTY_REDIS_VERSION=v0.31
 
-# Check for recent changes: https://github.com/api7/lua-resty-ipmatcher/compare/v0.6.1...master
+# Check for recent changes: https://github.com/api7/lua-resty-ipmatcher/compare/3e93c53eb8c9884efe939ef070486a0e507cc5be...master
 export LUA_RESTY_IPMATCHER_VERSION=3e93c53eb8c9884efe939ef070486a0e507cc5be
 
-# Check for recent changes: https://github.com/microsoft/mimalloc/compare/v2.1.7...master
-export MIMALOC_VERSION=v2.1.7
+# Check for recent changes: https://github.com/microsoft/mimalloc/compare/v2.1.9...master
+export MIMALOC_VERSION=v2.1.9
 
 # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp/compare/v1.18.0...main
 export OPENTELEMETRY_CPP_VERSION="v1.18.0"
@@ -318,8 +318,7 @@ git config --global --add core.compression -1
 cd "$BUILD_PATH"
 git clone --depth=100 https://github.com/google/ngx_brotli.git
 cd ngx_brotli
-# https://github.com/google/ngx_brotli/issues/156
-git reset --hard 63ca02abdcf79c9e788d2eedcc388d2335902e52
+git reset --hard a71f9312c2deb28875acc7bacfdd5695a111aa53
 git submodule init
 git submodule update
 
diff --git a/images/nginx/rootfs/patches/01_nginx-1.25.3-win32_max_err_str.patch b/images/nginx/rootfs/patches/01_nginx-1.27.1-win32_max_err_str.patch
similarity index 100%
rename from images/nginx/rootfs/patches/01_nginx-1.25.3-win32_max_err_str.patch
rename to images/nginx/rootfs/patches/01_nginx-1.27.1-win32_max_err_str.patch
diff --git a/images/nginx/rootfs/patches/02_nginx-1.25.3-stream_balancer_export.patch b/images/nginx/rootfs/patches/02_nginx-1.27.1-stream_balancer_export.patch
similarity index 100%
rename from images/nginx/rootfs/patches/02_nginx-1.25.3-stream_balancer_export.patch
rename to images/nginx/rootfs/patches/02_nginx-1.27.1-stream_balancer_export.patch
diff --git a/images/nginx/rootfs/patches/03_nginx-1.25.3-stream_proxy_get_next_upstream_tries.patch b/images/nginx/rootfs/patches/03_nginx-1.27.1-stream_proxy_get_next_upstream_tries.patch
similarity index 100%
rename from images/nginx/rootfs/patches/03_nginx-1.25.3-stream_proxy_get_next_upstream_tries.patch
rename to images/nginx/rootfs/patches/03_nginx-1.27.1-stream_proxy_get_next_upstream_tries.patch
diff --git a/images/nginx/rootfs/patches/04_nginx-1.25.3-stream_proxy_timeout_fields.patch b/images/nginx/rootfs/patches/04_nginx-1.27.1-stream_proxy_timeout_fields.patch
similarity index 92%
rename from images/nginx/rootfs/patches/04_nginx-1.25.3-stream_proxy_timeout_fields.patch
rename to images/nginx/rootfs/patches/04_nginx-1.27.1-stream_proxy_timeout_fields.patch
index 39c59e206..e205abb8b 100644
--- a/images/nginx/rootfs/patches/04_nginx-1.25.3-stream_proxy_timeout_fields.patch
+++ b/images/nginx/rootfs/patches/04_nginx-1.27.1-stream_proxy_timeout_fields.patch
@@ -1,6 +1,6 @@
-diff -u -r -p -Naur nginx-1.25.3/src/stream/ngx_stream.h nginx-1.25.3-patched/src/stream/ngx_stream.h
---- nginx-1.25.3/src/stream/ngx_stream.h	2021-11-04 21:27:55.288708527 +0800
-+++ nginx-1.25.3-patched/src/stream/ngx_stream.h	2021-11-04 21:28:50.768035209 +0800
+diff -u -r -p -Naur nginx-1.27.1/src/stream/ngx_stream.h nginx-1.27.1-patched/src/stream/ngx_stream.h
+--- nginx-1.27.1/src/stream/ngx_stream.h	2021-11-04 21:27:55.288708527 +0800
++++ nginx-1.27.1-patched/src/stream/ngx_stream.h	2021-11-04 21:28:50.768035209 +0800
 @@ -254,6 +254,15 @@ typedef struct {
  } ngx_stream_module_t;
  
@@ -25,9 +25,9 @@ diff -u -r -p -Naur nginx-1.25.3/src/stream/ngx_stream.h nginx-1.25.3-patched/sr
  
  
  typedef ngx_int_t (*ngx_stream_filter_pt)(ngx_stream_session_t *s,
-diff -u -r -p -Naur nginx-1.25.3/src/stream/ngx_stream_proxy_module.c nginx-1.25.3-patched/src/stream/ngx_stream_proxy_module.c
---- nginx-1.25.3/src/stream/ngx_stream_proxy_module.c	2021-11-04 21:27:55.289708533 +0800
-+++ nginx-1.25.3-patched/src/stream/ngx_stream_proxy_module.c	2021-11-04 21:37:03.578936990 +0800
+diff -u -r -p -Naur nginx-1.27.1/src/stream/ngx_stream_proxy_module.c nginx-1.27.1-patched/src/stream/ngx_stream_proxy_module.c
+--- nginx-1.27.1/src/stream/ngx_stream_proxy_module.c	2021-11-04 21:27:55.289708533 +0800
++++ nginx-1.27.1-patched/src/stream/ngx_stream_proxy_module.c	2021-11-04 21:37:03.578936990 +0800
 @@ -400,6 +400,7 @@ ngx_stream_proxy_handler(ngx_stream_sess
      ngx_stream_proxy_srv_conf_t      *pscf;
      ngx_stream_upstream_srv_conf_t   *uscf, **uscfp;
diff --git a/images/nginx/rootfs/patches/05_nginx-1.25.3-stream_ssl_preread_no_skip.patch b/images/nginx/rootfs/patches/05_nginx-1.27.1-stream_ssl_preread_no_skip.patch
similarity index 100%
rename from images/nginx/rootfs/patches/05_nginx-1.25.3-stream_ssl_preread_no_skip.patch
rename to images/nginx/rootfs/patches/05_nginx-1.27.1-stream_ssl_preread_no_skip.patch
diff --git a/images/nginx/rootfs/patches/06_nginx-1.25.3-resolver_conf_parsing.patch b/images/nginx/rootfs/patches/06_nginx-1.27.1-resolver_conf_parsing.patch
similarity index 100%
rename from images/nginx/rootfs/patches/06_nginx-1.25.3-resolver_conf_parsing.patch
rename to images/nginx/rootfs/patches/06_nginx-1.27.1-resolver_conf_parsing.patch
diff --git a/images/nginx/rootfs/patches/07_nginx-1.25.3-daemon_destroy_pool.patch b/images/nginx/rootfs/patches/07_nginx-1.27.1-daemon_destroy_pool.patch
similarity index 100%
rename from images/nginx/rootfs/patches/07_nginx-1.25.3-daemon_destroy_pool.patch
rename to images/nginx/rootfs/patches/07_nginx-1.27.1-daemon_destroy_pool.patch
diff --git a/images/nginx/rootfs/patches/08_nginx-1.25.3-init_cycle_pool_release.patch b/images/nginx/rootfs/patches/08_nginx-1.27.1-init_cycle_pool_release.patch
similarity index 65%
rename from images/nginx/rootfs/patches/08_nginx-1.25.3-init_cycle_pool_release.patch
rename to images/nginx/rootfs/patches/08_nginx-1.27.1-init_cycle_pool_release.patch
index bd2e9a7d9..4a26b92c5 100644
--- a/images/nginx/rootfs/patches/08_nginx-1.25.3-init_cycle_pool_release.patch
+++ b/images/nginx/rootfs/patches/08_nginx-1.27.1-init_cycle_pool_release.patch
@@ -1,6 +1,6 @@
-diff -rup nginx-1.25.3/src/core/nginx.c nginx-1.25.3-patched/src/core/nginx.c
---- nginx-1.25.3/src/core/nginx.c	2017-12-17 00:00:38.136470108 -0800
-+++ nginx-1.25.3-patched/src/core/nginx.c	2017-12-16 23:59:51.680958322 -0800
+diff -rup nginx-1.27.1/src/core/nginx.c nginx-1.27.1-patched/src/core/nginx.c
+--- nginx-1.27.1/src/core/nginx.c	2017-12-17 00:00:38.136470108 -0800
++++ nginx-1.27.1-patched/src/core/nginx.c	2017-12-16 23:59:51.680958322 -0800
 @@ -186,6 +186,7 @@ static u_char      *ngx_prefix;
  static u_char      *ngx_conf_file;
  static u_char      *ngx_conf_params;
@@ -18,9 +18,9 @@ diff -rup nginx-1.25.3/src/core/nginx.c nginx-1.25.3-patched/src/core/nginx.c
      if (ngx_save_argv(&init_cycle, argc, argv) != NGX_OK) {
          return 1;
      }
-diff -rup nginx-1.25.3/src/core/ngx_core.h nginx-1.25.3-patched/src/core/ngx_core.h
---- nginx-1.25.3/src/core/ngx_core.h	2017-10-10 08:22:51.000000000 -0700
-+++ nginx-1.25.3-patched/src/core/ngx_core.h	2017-12-16 23:59:51.679958370 -0800
+diff -rup nginx-1.27.1/src/core/ngx_core.h nginx-1.27.1-patched/src/core/ngx_core.h
+--- nginx-1.27.1/src/core/ngx_core.h	2017-10-10 08:22:51.000000000 -0700
++++ nginx-1.27.1-patched/src/core/ngx_core.h	2017-12-16 23:59:51.679958370 -0800
 @@ -108,4 +108,6 @@ void ngx_cpuinfo(void);
  #define NGX_DISABLE_SYMLINKS_NOTOWNER   2
  #endif
@@ -28,9 +28,9 @@ diff -rup nginx-1.25.3/src/core/ngx_core.h nginx-1.25.3-patched/src/core/ngx_cor
 +extern ngx_pool_t        *saved_init_cycle_pool;
 +
  #endif /* _NGX_CORE_H_INCLUDED_ */
-diff -rup nginx-1.25.3/src/core/ngx_cycle.c nginx-1.25.3-patched/src/core/ngx_cycle.c
---- nginx-1.25.3/src/core/ngx_cycle.c	2017-10-10 08:22:51.000000000 -0700
-+++ nginx-1.25.3-patched/src/core/ngx_cycle.c	2017-12-16 23:59:51.678958419 -0800
+diff -rup nginx-1.27.1/src/core/ngx_cycle.c nginx-1.27.1-patched/src/core/ngx_cycle.c
+--- nginx-1.27.1/src/core/ngx_cycle.c	2017-10-10 08:22:51.000000000 -0700
++++ nginx-1.27.1-patched/src/core/ngx_cycle.c	2017-12-16 23:59:51.678958419 -0800
 @@ -748,6 +748,10 @@ old_shm_zone_done:
  
      if (ngx_process == NGX_PROCESS_MASTER || ngx_is_init_cycle(old_cycle)) {
@@ -42,9 +42,9 @@ diff -rup nginx-1.25.3/src/core/ngx_cycle.c nginx-1.25.3-patched/src/core/ngx_cy
          ngx_destroy_pool(old_cycle->pool);
          cycle->old_cycle = NULL;
  
-diff -rup nginx-1.25.3/src/os/unix/ngx_process_cycle.c nginx-1.25.3-patched/src/os/unix/ngx_process_cycle.c
---- nginx-1.25.3/src/os/unix/ngx_process_cycle.c	2017-12-17 00:00:38.142469762 -0800
-+++ nginx-1.25.3-patched/src/os/unix/ngx_process_cycle.c	2017-12-16 23:59:51.691957791 -0800
+diff -rup nginx-1.27.1/src/os/unix/ngx_process_cycle.c nginx-1.27.1-patched/src/os/unix/ngx_process_cycle.c
+--- nginx-1.27.1/src/os/unix/ngx_process_cycle.c	2017-12-17 00:00:38.142469762 -0800
++++ nginx-1.27.1-patched/src/os/unix/ngx_process_cycle.c	2017-12-16 23:59:51.691957791 -0800
 @@ -687,6 +692,11 @@ ngx_master_process_exit(ngx_cycle_t *cyc
      ngx_exit_cycle.files_n = ngx_cycle->files_n;
      ngx_cycle = &ngx_exit_cycle;
diff --git a/images/nginx/rootfs/patches/09_nginx-1.25.3-balancer_status_code.patch b/images/nginx/rootfs/patches/09_nginx-1.27.1-balancer_status_code.patch
similarity index 100%
rename from images/nginx/rootfs/patches/09_nginx-1.25.3-balancer_status_code.patch
rename to images/nginx/rootfs/patches/09_nginx-1.27.1-balancer_status_code.patch
diff --git a/images/nginx/rootfs/patches/10_nginx-1.25.3-delayed_posted_events.patch b/images/nginx/rootfs/patches/10_nginx-1.27.1-delayed_posted_events.patch
similarity index 100%
rename from images/nginx/rootfs/patches/10_nginx-1.25.3-delayed_posted_events.patch
rename to images/nginx/rootfs/patches/10_nginx-1.27.1-delayed_posted_events.patch
diff --git a/images/nginx/rootfs/patches/11_nginx-1.25.3-privileged_agent_process.patch b/images/nginx/rootfs/patches/11_nginx-1.27.1-privileged_agent_process.patch
similarity index 100%
rename from images/nginx/rootfs/patches/11_nginx-1.25.3-privileged_agent_process.patch
rename to images/nginx/rootfs/patches/11_nginx-1.27.1-privileged_agent_process.patch
diff --git a/images/nginx/rootfs/patches/12_nginx-1.25.3-privileged_agent_process_connections.patch b/images/nginx/rootfs/patches/12_nginx-1.27.1-privileged_agent_process_connections.patch
similarity index 100%
rename from images/nginx/rootfs/patches/12_nginx-1.25.3-privileged_agent_process_connections.patch
rename to images/nginx/rootfs/patches/12_nginx-1.27.1-privileged_agent_process_connections.patch
diff --git a/images/nginx/rootfs/patches/13_nginx-1.25.3-privileged_agent_process_thread_pool.patch b/images/nginx/rootfs/patches/13_nginx-1.27.1-privileged_agent_process_thread_pool.patch
similarity index 100%
rename from images/nginx/rootfs/patches/13_nginx-1.25.3-privileged_agent_process_thread_pool.patch
rename to images/nginx/rootfs/patches/13_nginx-1.27.1-privileged_agent_process_thread_pool.patch
diff --git a/images/nginx/rootfs/patches/14_nginx-1.25.3-single_process_graceful_exit.patch b/images/nginx/rootfs/patches/14_nginx-1.27.1-single_process_graceful_exit.patch
similarity index 100%
rename from images/nginx/rootfs/patches/14_nginx-1.25.3-single_process_graceful_exit.patch
rename to images/nginx/rootfs/patches/14_nginx-1.27.1-single_process_graceful_exit.patch
diff --git a/images/nginx/rootfs/patches/15_nginx-1.25.3-intercept_error_log.patch b/images/nginx/rootfs/patches/15_nginx-1.27.1-intercept_error_log.patch
similarity index 100%
rename from images/nginx/rootfs/patches/15_nginx-1.25.3-intercept_error_log.patch
rename to images/nginx/rootfs/patches/15_nginx-1.27.1-intercept_error_log.patch
diff --git a/images/nginx/rootfs/patches/16_nginx-1.25.3-upstream_pipelining.patch b/images/nginx/rootfs/patches/16_nginx-1.27.1-upstream_pipelining.patch
similarity index 100%
rename from images/nginx/rootfs/patches/16_nginx-1.25.3-upstream_pipelining.patch
rename to images/nginx/rootfs/patches/16_nginx-1.27.1-upstream_pipelining.patch
diff --git a/images/nginx/rootfs/patches/17_nginx-1.25.3-no_error_pages.patch b/images/nginx/rootfs/patches/17_nginx-1.27.1-no_error_pages.patch
similarity index 93%
rename from images/nginx/rootfs/patches/17_nginx-1.25.3-no_error_pages.patch
rename to images/nginx/rootfs/patches/17_nginx-1.27.1-no_error_pages.patch
index aceb2e988..593fcefd6 100644
--- a/images/nginx/rootfs/patches/17_nginx-1.25.3-no_error_pages.patch
+++ b/images/nginx/rootfs/patches/17_nginx-1.27.1-no_error_pages.patch
@@ -1,6 +1,6 @@
-diff -upr nginx-1.25.3/src/http/ngx_http_core_module.c nginx-1.25.3-patched/src/http/ngx_http_core_module.c
---- nginx-1.25.3/src/http/ngx_http_core_module.c	2017-08-31 18:14:41.000000000 -0700
-+++ nginx-1.25.3-patched/src/http/ngx_http_core_module.c	2017-08-31 18:21:31.638098196 -0700
+diff -upr nginx-1.27.1/src/http/ngx_http_core_module.c nginx-1.27.1-patched/src/http/ngx_http_core_module.c
+--- nginx-1.27.1/src/http/ngx_http_core_module.c	2017-08-31 18:14:41.000000000 -0700
++++ nginx-1.27.1-patched/src/http/ngx_http_core_module.c	2017-08-31 18:21:31.638098196 -0700
 @@ -64,6 +64,8 @@ static char *ngx_http_core_directio(ngx_conf_t *cf, ngx_command_t *cmd,
      void *conf);
  static char *ngx_http_core_error_page(ngx_conf_t *cf, ngx_command_t *cmd,
diff --git a/images/nginx/rootfs/patches/18_nginx-1.25.3-no_Werror.patch b/images/nginx/rootfs/patches/18_nginx-1.25.3-no_Werror.patch
deleted file mode 100644
index f7176faff..000000000
--- a/images/nginx/rootfs/patches/18_nginx-1.25.3-no_Werror.patch
+++ /dev/null
@@ -1,36 +0,0 @@
-diff -urp nginx-1.25.3/auto/cc/clang nginx-1.25.3-patched/auto/cc/clang
---- nginx-1.25.3/auto/cc/clang	2014-03-04 03:39:24.000000000 -0800
-+++ nginx-1.25.3-patched/auto/cc/clang	2014-03-13 20:54:26.241413360 -0700
-@@ -89,7 +89,7 @@ CFLAGS="$CFLAGS -Wconditional-uninitiali
- CFLAGS="$CFLAGS -Wno-unused-parameter"
- 
- # stop on warning
--CFLAGS="$CFLAGS -Werror"
-+#CFLAGS="$CFLAGS -Werror"
- 
- # debug
- CFLAGS="$CFLAGS -g"
-diff -urp nginx-1.25.3/auto/cc/gcc nginx-1.25.3-patched/auto/cc/gcc
---- nginx-1.25.3/auto/cc/gcc	2014-03-04 03:39:24.000000000 -0800
-+++ nginx-1.25.3-patched/auto/cc/gcc	2014-03-13 20:54:13.301355329 -0700
-@@ -168,7 +168,7 @@ esac
- 
- 
- # stop on warning
--CFLAGS="$CFLAGS -Werror"
-+#CFLAGS="$CFLAGS -Werror"
- 
- # debug
- CFLAGS="$CFLAGS -g"
-diff -urp nginx-1.25.3/auto/cc/icc nginx-1.25.3-patched/auto/cc/icc
---- nginx-1.25.3/auto/cc/icc	2014-03-04 03:39:24.000000000 -0800
-+++ nginx-1.25.3-patched/auto/cc/icc	2014-03-13 20:54:13.301355329 -0700
-@@ -115,7 +115,7 @@ case "$NGX_ICC_VER" in
- esac
- 
- # stop on warning
--CFLAGS="$CFLAGS -Werror"
-+#CFLAGS="$CFLAGS -Werror"
- 
- # debug
- CFLAGS="$CFLAGS -g"
diff --git a/images/nginx/rootfs/patches/18_nginx-1.27.1-no_Werror.patch b/images/nginx/rootfs/patches/18_nginx-1.27.1-no_Werror.patch
new file mode 100644
index 000000000..d0aa7a31e
--- /dev/null
+++ b/images/nginx/rootfs/patches/18_nginx-1.27.1-no_Werror.patch
@@ -0,0 +1,36 @@
+diff -urp nginx-1.27.1/auto/cc/clang nginx-1.27.1-patched/auto/cc/clang
+--- nginx-1.27.1/auto/cc/clang	2014-03-04 03:39:24.000000000 -0800
++++ nginx-1.27.1-patched/auto/cc/clang	2014-03-13 20:54:26.241413360 -0700
+@@ -89,7 +89,7 @@ CFLAGS="$CFLAGS -Wconditional-uninitiali
+ CFLAGS="$CFLAGS -Wno-unused-parameter"
+ 
+ # stop on warning
+-CFLAGS="$CFLAGS -Werror"
++#CFLAGS="$CFLAGS -Werror"
+ 
+ # debug
+ CFLAGS="$CFLAGS -g"
+diff -urp nginx-1.27.1/auto/cc/gcc nginx-1.27.1-patched/auto/cc/gcc
+--- nginx-1.27.1/auto/cc/gcc	2014-03-04 03:39:24.000000000 -0800
++++ nginx-1.27.1-patched/auto/cc/gcc	2014-03-13 20:54:13.301355329 -0700
+@@ -168,7 +168,7 @@ esac
+ 
+ 
+ # stop on warning
+-CFLAGS="$CFLAGS -Werror"
++#CFLAGS="$CFLAGS -Werror"
+ 
+ # debug
+ CFLAGS="$CFLAGS -g"
+diff -urp nginx-1.27.1/auto/cc/icc nginx-1.27.1-patched/auto/cc/icc
+--- nginx-1.27.1/auto/cc/icc	2014-03-04 03:39:24.000000000 -0800
++++ nginx-1.27.1-patched/auto/cc/icc	2014-03-13 20:54:13.301355329 -0700
+@@ -115,7 +115,7 @@ case "$NGX_ICC_VER" in
+ esac
+ 
+ # stop on warning
+-CFLAGS="$CFLAGS -Werror"
++#CFLAGS="$CFLAGS -Werror"
+ 
+ # debug
+ CFLAGS="$CFLAGS -g"
diff --git a/images/nginx/rootfs/patches/19_nginx-1.25.3-log_escape_non_ascii.patch b/images/nginx/rootfs/patches/19_nginx-1.27.1-log_escape_non_ascii.patch
similarity index 100%
rename from images/nginx/rootfs/patches/19_nginx-1.25.3-log_escape_non_ascii.patch
rename to images/nginx/rootfs/patches/19_nginx-1.27.1-log_escape_non_ascii.patch
diff --git a/images/nginx/rootfs/patches/20_nginx-1.25.3-proxy_host_port_vars.patch b/images/nginx/rootfs/patches/20_nginx-1.27.1-proxy_host_port_vars.patch
similarity index 87%
rename from images/nginx/rootfs/patches/20_nginx-1.25.3-proxy_host_port_vars.patch
rename to images/nginx/rootfs/patches/20_nginx-1.27.1-proxy_host_port_vars.patch
index 82a344324..b81a299c8 100644
--- a/images/nginx/rootfs/patches/20_nginx-1.25.3-proxy_host_port_vars.patch
+++ b/images/nginx/rootfs/patches/20_nginx-1.27.1-proxy_host_port_vars.patch
@@ -1,5 +1,5 @@
---- nginx-1.25.3/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
-+++ nginx-1.25.3-patched/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
+--- nginx-1.27.1/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
++++ nginx-1.27.1-patched/src/http/modules/ngx_http_proxy_module.c	2017-07-16 14:02:51.000000000 +0800
 @@ -793,13 +793,13 @@ static ngx_keyval_t  ngx_http_proxy_cach
  static ngx_http_variable_t  ngx_http_proxy_vars[] = {
  
diff --git a/images/nginx/rootfs/patches/21_nginx-1.25.3-cache_manager_exit.patch b/images/nginx/rootfs/patches/21_nginx-1.27.1-cache_manager_exit.patch
similarity index 100%
rename from images/nginx/rootfs/patches/21_nginx-1.25.3-cache_manager_exit.patch
rename to images/nginx/rootfs/patches/21_nginx-1.27.1-cache_manager_exit.patch
diff --git a/images/nginx/rootfs/patches/22_nginx-1.25.3-larger_max_error_str.patch b/images/nginx/rootfs/patches/22_nginx-1.27.1-larger_max_error_str.patch
similarity index 62%
rename from images/nginx/rootfs/patches/22_nginx-1.25.3-larger_max_error_str.patch
rename to images/nginx/rootfs/patches/22_nginx-1.27.1-larger_max_error_str.patch
index e5cd07e67..b821297e6 100644
--- a/images/nginx/rootfs/patches/22_nginx-1.25.3-larger_max_error_str.patch
+++ b/images/nginx/rootfs/patches/22_nginx-1.27.1-larger_max_error_str.patch
@@ -1,5 +1,5 @@
---- nginx-1.25.3/src/core/ngx_log.h	2013-10-08 05:07:14.000000000 -0700
-+++ nginx-1.25.3-patched/src/core/ngx_log.h	2013-12-05 20:35:35.996236720 -0800
+--- nginx-1.27.1/src/core/ngx_log.h	2013-10-08 05:07:14.000000000 -0700
++++ nginx-1.27.1-patched/src/core/ngx_log.h	2013-12-05 20:35:35.996236720 -0800
 @@ -64,7 +64,9 @@ struct ngx_log_s {
  };
  
diff --git a/images/nginx/rootfs/patches/23_nginx-1.25.3-pcre_conf_opt.patch b/images/nginx/rootfs/patches/23_nginx-1.27.1-pcre_conf_opt.patch
similarity index 100%
rename from images/nginx/rootfs/patches/23_nginx-1.25.3-pcre_conf_opt.patch
rename to images/nginx/rootfs/patches/23_nginx-1.27.1-pcre_conf_opt.patch
diff --git a/images/nginx/rootfs/patches/24_nginx-1.25.3-always_enable_cc_feature_tests.patch b/images/nginx/rootfs/patches/24_nginx-1.27.1-always_enable_cc_feature_tests.patch
similarity index 65%
rename from images/nginx/rootfs/patches/24_nginx-1.25.3-always_enable_cc_feature_tests.patch
rename to images/nginx/rootfs/patches/24_nginx-1.27.1-always_enable_cc_feature_tests.patch
index b381d9b07..9517e92c4 100644
--- a/images/nginx/rootfs/patches/24_nginx-1.25.3-always_enable_cc_feature_tests.patch
+++ b/images/nginx/rootfs/patches/24_nginx-1.27.1-always_enable_cc_feature_tests.patch
@@ -1,5 +1,5 @@
---- nginx-1.25.3/auto/cc/conf	2015-10-30 22:47:50.000000000 +0800
-+++ nginx-1.25.3-patched/auto/cc/conf	2015-11-02 12:23:05.385156987 +0800
+--- nginx-1.27.1/auto/cc/conf	2015-10-30 22:47:50.000000000 +0800
++++ nginx-1.27.1-patched/auto/cc/conf	2015-11-02 12:23:05.385156987 +0800
 @@ -144,7 +144,7 @@ fi
  CFLAGS="$CFLAGS $NGX_CC_OPT"
  NGX_TEST_LD_OPT="$NGX_LD_OPT"
diff --git a/images/nginx/rootfs/patches/25_nginx-1.25.3-ssl_cert_cb_yield.patch b/images/nginx/rootfs/patches/25_nginx-1.27.1-ssl_cert_cb_yield.patch
similarity index 100%
rename from images/nginx/rootfs/patches/25_nginx-1.25.3-ssl_cert_cb_yield.patch
rename to images/nginx/rootfs/patches/25_nginx-1.27.1-ssl_cert_cb_yield.patch
diff --git a/images/nginx/rootfs/patches/26_nginx-1.25.3-ssl_sess_cb_yield.patch b/images/nginx/rootfs/patches/26_nginx-1.27.1-ssl_sess_cb_yield.patch
similarity index 100%
rename from images/nginx/rootfs/patches/26_nginx-1.25.3-ssl_sess_cb_yield.patch
rename to images/nginx/rootfs/patches/26_nginx-1.27.1-ssl_sess_cb_yield.patch
diff --git a/images/nginx/rootfs/patches/27_nginx-1.25.3-ssl_client_hello_cb_yield.patch b/images/nginx/rootfs/patches/27_nginx-1.27.1-ssl_client_hello_cb_yield.patch
similarity index 100%
rename from images/nginx/rootfs/patches/27_nginx-1.25.3-ssl_client_hello_cb_yield.patch
rename to images/nginx/rootfs/patches/27_nginx-1.27.1-ssl_client_hello_cb_yield.patch
diff --git a/images/nginx/rootfs/patches/28_nginx-1.25.3-upstream_timeout_fields.patch b/images/nginx/rootfs/patches/28_nginx-1.27.1-upstream_timeout_fields.patch
similarity index 100%
rename from images/nginx/rootfs/patches/28_nginx-1.25.3-upstream_timeout_fields.patch
rename to images/nginx/rootfs/patches/28_nginx-1.27.1-upstream_timeout_fields.patch
diff --git a/images/nginx/rootfs/patches/29_nginx-1.25.3-safe_resolver_ipv6_option.patch b/images/nginx/rootfs/patches/29_nginx-1.27.1-safe_resolver_ipv6_option.patch
similarity index 100%
rename from images/nginx/rootfs/patches/29_nginx-1.25.3-safe_resolver_ipv6_option.patch
rename to images/nginx/rootfs/patches/29_nginx-1.27.1-safe_resolver_ipv6_option.patch
diff --git a/images/nginx/rootfs/patches/30_nginx-1.25.3-socket_cloexec.patch b/images/nginx/rootfs/patches/30_nginx-1.27.1-socket_cloexec.patch
similarity index 100%
rename from images/nginx/rootfs/patches/30_nginx-1.25.3-socket_cloexec.patch
rename to images/nginx/rootfs/patches/30_nginx-1.27.1-socket_cloexec.patch
diff --git a/images/nginx/rootfs/patches/31_nginx-1.25.3-reuseport_close_unused_fds.patch b/images/nginx/rootfs/patches/31_nginx-1.27.1-reuseport_close_unused_fds.patch
similarity index 100%
rename from images/nginx/rootfs/patches/31_nginx-1.25.3-reuseport_close_unused_fds.patch
rename to images/nginx/rootfs/patches/31_nginx-1.27.1-reuseport_close_unused_fds.patch
diff --git a/images/nginx/rootfs/patches/32_nginx-1.27.1-proc_exit_handler.patch b/images/nginx/rootfs/patches/32_nginx-1.27.1-proc_exit_handler.patch
new file mode 100644
index 000000000..f050c09d8
--- /dev/null
+++ b/images/nginx/rootfs/patches/32_nginx-1.27.1-proc_exit_handler.patch
@@ -0,0 +1,77 @@
+diff --git a/src/core/ngx_cycle.c b/src/core/ngx_cycle.c
+index c4e3c50..fa1408b 100644
+--- a/src/core/ngx_cycle.c
++++ b/src/core/ngx_cycle.c
+@@ -264,6 +264,9 @@ ngx_init_cycle(ngx_cycle_t *old_cycle)
+     }
+ 
+ 
++#if !(NGX_WIN32)
++    ngx_proc_exit_top_handler = ngx_proc_exit_def_handler;
++#endif
+     conf.ctx = cycle->conf_ctx;
+     conf.cycle = cycle;
+     conf.pool = pool;
+diff --git a/src/os/unix/ngx_process.c b/src/os/unix/ngx_process.c
+index 12a8c68..874c9bf 100644
+--- a/src/os/unix/ngx_process.c
++++ b/src/os/unix/ngx_process.c
+@@ -34,6 +34,7 @@ ngx_int_t        ngx_process_slot;
+ ngx_socket_t     ngx_channel;
+ ngx_int_t        ngx_last_process;
+ ngx_process_t    ngx_processes[NGX_MAX_PROCESSES];
++ngx_proc_exit_pt ngx_proc_exit_top_handler;
+ 
+ 
+ ngx_signal_t  signals[] = {
+@@ -83,6 +84,13 @@ ngx_signal_t  signals[] = {
+ };
+ 
+ 
++void
++ngx_proc_exit_def_handler(ngx_pid_t pid)
++{
++    /* do nothing */
++}
++
++
+ ngx_pid_t
+ ngx_spawn_process(ngx_cycle_t *cycle, ngx_spawn_proc_pt proc, void *data,
+     char *name, ngx_int_t respawn)
+@@ -564,6 +572,7 @@ ngx_process_get_status(void)
+         }
+ 
+         ngx_unlock_mutexes(pid);
++        ngx_proc_exit_top_handler(pid);
+     }
+ }
+ 
+diff --git a/src/os/unix/ngx_process.h b/src/os/unix/ngx_process.h
+index 3986639..0b55d98 100644
+--- a/src/os/unix/ngx_process.h
++++ b/src/os/unix/ngx_process.h
+@@ -18,6 +18,8 @@ typedef pid_t       ngx_pid_t;
+ #define NGX_INVALID_PID  -1
+ 
+ typedef void (*ngx_spawn_proc_pt) (ngx_cycle_t *cycle, void *data);
++#define NGX_HAVE_PROC_EXIT 1
++typedef void (*ngx_proc_exit_pt)(ngx_pid_t pid);
+ 
+ typedef struct {
+     ngx_pid_t           pid;
+@@ -66,6 +68,7 @@ ngx_pid_t ngx_spawn_process(ngx_cycle_t *cycle,
+ ngx_pid_t ngx_execute(ngx_cycle_t *cycle, ngx_exec_ctx_t *ctx);
+ ngx_int_t ngx_init_signals(ngx_log_t *log);
+ void ngx_debug_point(void);
++void ngx_proc_exit_def_handler(ngx_pid_t pid);
+ 
+ 
+ #if (NGX_HAVE_SCHED_YIELD)
+@@ -85,6 +88,7 @@ extern ngx_socket_t   ngx_channel;
+ extern ngx_int_t      ngx_process_slot;
+ extern ngx_int_t      ngx_last_process;
+ extern ngx_process_t  ngx_processes[NGX_MAX_PROCESSES];
++extern ngx_proc_exit_pt  ngx_proc_exit_top_handler;
+ 
+ 
+ #endif /* _NGX_PROCESS_H_INCLUDED_ */

From 506ded73b1c69b62757a176d606c65ba9f69d711 Mon Sep 17 00:00:00 2001
From: Aofei Sheng <aofei@aofeisheng.com>
Date: Fri, 10 Jan 2025 15:40:34 +0800
Subject: [PATCH 1590/1641] Chart: Add
 `controller.service.trafficDistribution`. (#12571)

---
 charts/ingress-nginx/README.md                     |  2 ++
 .../templates/controller-service-internal.yaml     |  5 +++++
 .../templates/controller-service.yaml              |  5 +++++
 .../tests/controller-service-internal_test.yaml    | 14 ++++++++++++++
 .../tests/controller-service_test.yaml             | 12 ++++++++++++
 charts/ingress-nginx/values.yaml                   |  8 ++++++++
 6 files changed, 46 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index 51a14241d..c542d8789 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -468,6 +468,7 @@ metadata:
 | controller.service.internal.ports | object | `{}` |  |
 | controller.service.internal.sessionAffinity | string | `""` | Session affinity of the internal controller service. Must be either "None" or "ClientIP" if set. Defaults to "None". Ref: https://kubernetes.io/docs/reference/networking/virtual-ips/#session-affinity |
 | controller.service.internal.targetPorts | object | `{}` |  |
+| controller.service.internal.trafficDistribution | string | `""` | Traffic distribution policy of the internal controller service. Set to "PreferClose" to route traffic to endpoints that are topologically closer to the client. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#traffic-distribution |
 | controller.service.internal.type | string | `""` | Type of the internal controller service. Defaults to the value of `controller.service.type`. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types |
 | controller.service.ipFamilies | list | `["IPv4"]` | List of IP families (e.g. IPv4, IPv6) assigned to the external controller service. This field is usually assigned automatically based on cluster configuration and the `ipFamilyPolicy` field. Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services |
 | controller.service.ipFamilyPolicy | string | `"SingleStack"` | Represents the dual-stack capabilities of the external controller service. Possible values are SingleStack, PreferDualStack or RequireDualStack. Fields `ipFamilies` and `clusterIP` depend on the value of this field. Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services |
@@ -484,6 +485,7 @@ metadata:
 | controller.service.sessionAffinity | string | `""` | Session affinity of the external controller service. Must be either "None" or "ClientIP" if set. Defaults to "None". Ref: https://kubernetes.io/docs/reference/networking/virtual-ips/#session-affinity |
 | controller.service.targetPorts.http | string | `"http"` | Port of the ingress controller the external HTTP listener is mapped to. |
 | controller.service.targetPorts.https | string | `"https"` | Port of the ingress controller the external HTTPS listener is mapped to. |
+| controller.service.trafficDistribution | string | `""` | Traffic distribution policy of the external controller service. Set to "PreferClose" to route traffic to endpoints that are topologically closer to the client. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#traffic-distribution |
 | controller.service.type | string | `"LoadBalancer"` | Type of the external controller service. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-types |
 | controller.shareProcessNamespace | bool | `false` |  |
 | controller.sysctls | object | `{}` | sysctls for controller pods # Ref: https://kubernetes.io/docs/tasks/administer-cluster/sysctl-cluster/ |
diff --git a/charts/ingress-nginx/templates/controller-service-internal.yaml b/charts/ingress-nginx/templates/controller-service-internal.yaml
index c37461ae1..24ac032ac 100644
--- a/charts/ingress-nginx/templates/controller-service-internal.yaml
+++ b/charts/ingress-nginx/templates/controller-service-internal.yaml
@@ -46,6 +46,11 @@ spec:
 {{- if .Values.controller.service.internal.healthCheckNodePort }}
   healthCheckNodePort: {{ .Values.controller.service.internal.healthCheckNodePort }}
 {{- end }}
+{{- if semverCompare ">=1.31.0-0" .Capabilities.KubeVersion.Version -}}
+{{- if .Values.controller.service.internal.trafficDistribution }}
+  trafficDistribution: {{ .Values.controller.service.internal.trafficDistribution }}
+{{- end }}
+{{- end }}
 {{- if semverCompare ">=1.21.0-0" .Capabilities.KubeVersion.Version -}}
 {{- if .Values.controller.service.internal.ipFamilyPolicy }}
   ipFamilyPolicy: {{ .Values.controller.service.internal.ipFamilyPolicy }}
diff --git a/charts/ingress-nginx/templates/controller-service.yaml b/charts/ingress-nginx/templates/controller-service.yaml
index abaf808f0..c56d957b1 100644
--- a/charts/ingress-nginx/templates/controller-service.yaml
+++ b/charts/ingress-nginx/templates/controller-service.yaml
@@ -46,6 +46,11 @@ spec:
 {{- if .Values.controller.service.healthCheckNodePort }}
   healthCheckNodePort: {{ .Values.controller.service.healthCheckNodePort }}
 {{- end }}
+{{- if semverCompare ">=1.31.0-0" .Capabilities.KubeVersion.Version -}}
+{{- if .Values.controller.service.trafficDistribution }}
+  trafficDistribution: {{ .Values.controller.service.trafficDistribution }}
+{{- end }}
+{{- end }}
 {{- if semverCompare ">=1.21.0-0" .Capabilities.KubeVersion.Version -}}
 {{- if .Values.controller.service.ipFamilyPolicy }}
   ipFamilyPolicy: {{ .Values.controller.service.ipFamilyPolicy }}
diff --git a/charts/ingress-nginx/tests/controller-service-internal_test.yaml b/charts/ingress-nginx/tests/controller-service-internal_test.yaml
index 8460b8911..268089406 100644
--- a/charts/ingress-nginx/tests/controller-service-internal_test.yaml
+++ b/charts/ingress-nginx/tests/controller-service-internal_test.yaml
@@ -47,3 +47,17 @@ tests:
           value:
             - 10.0.0.1
             - fd00::1
+
+  - it: should create a Service with `trafficDistribution` if `controller.service.internal.trafficDistribution` is set
+    capabilities:
+      majorVersion: 1
+      minorVersion: 31
+    set:
+      controller.service.internal.enabled: true
+      controller.service.internal.annotations:
+        test.annotation: "true"
+      controller.service.internal.trafficDistribution: PreferClose
+    asserts:
+      - equal:
+          path: spec.trafficDistribution
+          value: PreferClose
diff --git a/charts/ingress-nginx/tests/controller-service_test.yaml b/charts/ingress-nginx/tests/controller-service_test.yaml
index df9a7c544..4741cdde9 100644
--- a/charts/ingress-nginx/tests/controller-service_test.yaml
+++ b/charts/ingress-nginx/tests/controller-service_test.yaml
@@ -50,3 +50,15 @@ tests:
           value:
             - 10.0.0.1
             - fd00::1
+
+  - it: should create a Service with `trafficDistribution` if `controller.service.trafficDistribution` is set
+    capabilities:
+      majorVersion: 1
+      minorVersion: 31
+    set:
+      controller.service.external.enabled: true
+      controller.service.trafficDistribution: PreferClose
+    asserts:
+      - equal:
+          path: spec.trafficDistribution
+          value: PreferClose
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index c5c290d57..fb0b36a1c 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -527,6 +527,10 @@ controller:
     # Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
     # healthCheckNodePort: 0
 
+    # -- Traffic distribution policy of the external controller service. Set to "PreferClose" to route traffic to endpoints that are topologically closer to the client.
+    # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#traffic-distribution
+    trafficDistribution: ""
+
     # -- Represents the dual-stack capabilities of the external controller service. Possible values are SingleStack, PreferDualStack or RequireDualStack.
     # Fields `ipFamilies` and `clusterIP` depend on the value of this field.
     # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services
@@ -611,6 +615,10 @@ controller:
       # Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip
       # healthCheckNodePort: 0
 
+      # -- Traffic distribution policy of the internal controller service. Set to "PreferClose" to route traffic to endpoints that are topologically closer to the client.
+      # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#traffic-distribution
+      trafficDistribution: ""
+
       # -- Represents the dual-stack capabilities of the internal controller service. Possible values are SingleStack, PreferDualStack or RequireDualStack.
       # Fields `ipFamilies` and `clusterIP` depend on the value of this field.
       # Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services

From 561af5a56d2252e5fd41d13336a080c6e8efd1c6 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 10 Jan 2025 14:20:31 -0800
Subject: [PATCH 1591/1641] Bump golang.org/x/crypto from 0.31.0 to 0.32.0
 (#12658)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index 71e1b6925..fd8675851 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.10.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.31.0
+	golang.org/x/crypto v0.32.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
 	google.golang.org/grpc v1.69.2
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
@@ -117,8 +117,8 @@ require (
 	golang.org/x/net v0.33.0 // indirect
 	golang.org/x/oauth2 v0.24.0 // indirect
 	golang.org/x/sync v0.10.0 // indirect
-	golang.org/x/sys v0.28.0 // indirect
-	golang.org/x/term v0.27.0 // indirect
+	golang.org/x/sys v0.29.0 // indirect
+	golang.org/x/term v0.28.0 // indirect
 	golang.org/x/text v0.21.0 // indirect
 	golang.org/x/time v0.7.0 // indirect
 	golang.org/x/tools v0.28.0 // indirect
diff --git a/go.sum b/go.sum
index 5fb9377f0..03ff1b917 100644
--- a/go.sum
+++ b/go.sum
@@ -243,8 +243,8 @@ go.uber.org/zap v1.27.0/go.mod h1:GB2qFLM7cTU87MWRP2mPIjqfIDnGu+VIO4V/SdhGo2E=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.31.0 h1:ihbySMvVjLAeSH1IbfcRTkD/iNscyz8rGzjF/E5hV6U=
-golang.org/x/crypto v0.31.0/go.mod h1:kDsLvtWBEx7MV9tJOj9bnXsPbxwJQ6csT/x4KIN4Ssk=
+golang.org/x/crypto v0.32.0 h1:euUpcYgM8WcP71gNpTqQCn6rC2t6ULUPiOzfWaXVVfc=
+golang.org/x/crypto v0.32.0/go.mod h1:ZnnJkOaASj8g0AjIduWNlq2NRxL0PlBrbKVyZ6V/Ugc=
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 h1:2dVuKD2vS7b0QIHQbpyTISPd0LeHDbnYEryqj5Q1ug8=
 golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbRXRL/OHtkFuWGRjvuhBJpk2IlY=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
@@ -281,10 +281,10 @@ golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.28.0 h1:Fksou7UEQUWlKvIdsqzJmUmCX3cZuD2+P3XyyzwMhlA=
-golang.org/x/sys v0.28.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/term v0.27.0 h1:WP60Sv1nlK1T6SupCHbXzSaN0b9wUmsPoRS9b61A23Q=
-golang.org/x/term v0.27.0/go.mod h1:iMsnZpn0cago0GOrHO2+Y7u7JPn5AylBrcoWkElMTSM=
+golang.org/x/sys v0.29.0 h1:TPYlXGxvx1MGTn2GiZDhnjPA9wZzZeGKHHmKhHYvgaU=
+golang.org/x/sys v0.29.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/term v0.28.0 h1:/Ts8HFuMR2E6IP/jlo7QVLZHggjKQbhu/7H0LJFr3Gg=
+golang.org/x/term v0.28.0/go.mod h1:Sw/lC2IAUZ92udQNf3WodGtn4k/XoLyZoh8v/8uiwek=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.21.0 h1:zyQAAkrwaneQ066sspRyJaG9VNi/YJ1NfzcGB3hZ/qo=

From 206bd44a1ca622c04c01bd346ac074a3dbeabde7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 10 Jan 2025 14:24:32 -0800
Subject: [PATCH 1592/1641] Bump the go group across 1 directory with 3 updates
 (#12657)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  6 +++---
 go.sum | 12 ++++++------
 2 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/go.mod b/go.mod
index fd8675851..6335b6f89 100644
--- a/go.mod
+++ b/go.mod
@@ -13,9 +13,9 @@ require (
 	github.com/mitchellh/hashstructure/v2 v2.0.2
 	github.com/mitchellh/mapstructure v1.5.0
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
-	github.com/ncabatoff/process-exporter v0.8.4
+	github.com/ncabatoff/process-exporter v0.8.5
 	github.com/onsi/ginkgo/v2 v2.22.2
-	github.com/opencontainers/runc v1.2.3
+	github.com/opencontainers/runc v1.2.4
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.5
 	github.com/prometheus/client_model v0.6.1
@@ -41,7 +41,7 @@ require (
 	k8s.io/component-base v0.32.0
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.19.3
+	sigs.k8s.io/controller-runtime v0.19.4
 	sigs.k8s.io/mdtoc v1.4.0
 )
 
diff --git a/go.sum b/go.sum
index 03ff1b917..8de6c6bda 100644
--- a/go.sum
+++ b/go.sum
@@ -154,8 +154,8 @@ github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq
 github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ=
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833 h1:t4WWQ9I797y7QUgeEjeXnVb+oYuEDQc6gLvrZJTYo94=
 github.com/ncabatoff/go-seq v0.0.0-20180805175032-b08ef85ed833/go.mod h1:0CznHmXSjMEqs5Tezj/w2emQoM41wzYM9KpDKUHPYag=
-github.com/ncabatoff/process-exporter v0.8.4 h1:qj0pWbP6AytVQ1fMYabRd5LnuV6NPh0O6WCfenPJT54=
-github.com/ncabatoff/process-exporter v0.8.4/go.mod h1:MxEOWl740VK/hlWycJkq91VrA2mI+U9Bvc1wuyAaxA4=
+github.com/ncabatoff/process-exporter v0.8.5 h1:Hk1sflgRWn0Xrh/OsupQLVVCTW01kv0YYrGxu7NvkmM=
+github.com/ncabatoff/process-exporter v0.8.5/go.mod h1:IZndG/m2Y++D90y99NhDJfg0SOkpbx/Fl6MlnBr4SC0=
 github.com/nxadm/tail v1.4.4/go.mod h1:kenIhsEOeOJmVchQTgglprH7qJGnHDVpk1VPCcaMI8A=
 github.com/nxadm/tail v1.4.8 h1:nPr65rt6Y5JFSKQO7qToXr7pePgD6Gwiw05lkbyAQTE=
 github.com/nxadm/tail v1.4.8/go.mod h1:+ncqLTQzXmGhMZNUePPaPqPvBxHAIsmXswZKocGu+AU=
@@ -169,8 +169,8 @@ github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7J
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.36.2 h1:koNYke6TVk6ZmnyHrCXba/T/MoLBXFjeC1PtvYgw0A8=
 github.com/onsi/gomega v1.36.2/go.mod h1:DdwyADRjrc825LhMEkD76cHR5+pUnjhUN8GlHlRPHzY=
-github.com/opencontainers/runc v1.2.3 h1:fxE7amCzfZflJO2lHXf4y/y8M1BoAqp+FVmG19oYB80=
-github.com/opencontainers/runc v1.2.3/go.mod h1:nSxcWUydXrsBZVYNSkTjoQ/N6rcyTtn+1SD5D4+kRIM=
+github.com/opencontainers/runc v1.2.4 h1:yWFgLkghp71D76Fa0l349yAl5g4Gse7DPYNlvkQ9Eiw=
+github.com/opencontainers/runc v1.2.4/go.mod h1:nSxcWUydXrsBZVYNSkTjoQ/N6rcyTtn+1SD5D4+kRIM=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
 github.com/opencontainers/runtime-spec v1.2.0/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
@@ -368,8 +368,8 @@ k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 h1:M3sRQVHv7vB20Xc2ybTt7ODCeFj6J
 k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
-sigs.k8s.io/controller-runtime v0.19.3 h1:XO2GvC9OPftRst6xWCpTgBZO04S2cbp0Qqkj8bX1sPw=
-sigs.k8s.io/controller-runtime v0.19.3/go.mod h1:j4j87DqtsThvwTv5/Tc5NFRyyF/RF0ip4+62tbTSIUM=
+sigs.k8s.io/controller-runtime v0.19.4 h1:SUmheabttt0nx8uJtoII4oIP27BVVvAKFvdvGFwV/Qo=
+sigs.k8s.io/controller-runtime v0.19.4/go.mod h1:iRmWllt8IlaLjvTTDLhRBXIEtkCK6hwVBJJsYS9Ajf4=
 sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 h1:/Rv+M11QRah1itp8VhT6HoVx1Ray9eB4DBr+K+/sCJ8=
 sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3/go.mod h1:18nIHnGi6636UCz6m8i4DhaJ65T6EruyzmoQqI2BVDo=
 sigs.k8s.io/kustomize/api v0.18.0 h1:hTzp67k+3NEVInwz5BHyzc9rGxIauoXferXyjv5lWPo=

From 63d4d64fe47933739ba1003a8ecbc92aafa0e173 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 10 Jan 2025 14:26:31 -0800
Subject: [PATCH 1593/1641] Bump the actions group with 3 updates (#12659)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 4 ++--
 .github/workflows/images.yaml              | 2 +-
 .github/workflows/scorecards.yml           | 4 ++--
 .github/workflows/vulnerability-scans.yaml | 2 +-
 .github/workflows/zz-tmpl-k8s-e2e.yaml     | 2 +-
 5 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index d02633ecc..5aacdf2dd 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -159,7 +159,7 @@ jobs:
           check-latest: true
 
       - name: Set up QEMU
-        uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf # v3.2.0
+        uses: docker/setup-qemu-action@53851d14592bedcffcf25ea515637cff71ef929a # v3.3.0
 
       - name: Set up Docker Buildx
         id: buildx
@@ -202,7 +202,7 @@ jobs:
             | gzip > docker.tar.gz
 
       - name: cache
-        uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0
+        uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
         with:
           name: docker.tar.gz
           path: docker.tar.gz
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index e90f19c63..c5f8f4648 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -174,7 +174,7 @@ jobs:
       - name: Checkout
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - name: Set up QEMU
-        uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf # v3.2.0
+        uses: docker/setup-qemu-action@53851d14592bedcffcf25ea515637cff71ef929a # v3.3.0
       - name: Set up Docker Buildx
         id: buildx
         uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 # v3.8.0
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 916235c42..7d6424e5b 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -51,7 +51,7 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0
+        uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
         with:
           name: SARIF file
           path: results.sarif
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0
+        uses: github/codeql-action/upload-sarif@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # v3.28.1
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 3838dde75..6e4243f04 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0
+        uses: github/codeql-action/upload-sarif@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # v3.28.1
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository
diff --git a/.github/workflows/zz-tmpl-k8s-e2e.yaml b/.github/workflows/zz-tmpl-k8s-e2e.yaml
index f855ac15a..c46e4a957 100644
--- a/.github/workflows/zz-tmpl-k8s-e2e.yaml
+++ b/.github/workflows/zz-tmpl-k8s-e2e.yaml
@@ -49,7 +49,7 @@ jobs:
           make kind-e2e-test
 
       - name: Upload e2e junit-reports ${{ inputs.variation }}
-        uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0
+        uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
         if: success() || failure()
         with:
           name: e2e-test-reports-${{ inputs.k8s-version }}${{ inputs.variation }}

From 698c3c0df104e5358fa7ff6871ef246fdd6ff44e Mon Sep 17 00:00:00 2001
From: James Strong <strong.james.e@gmail.com>
Date: Fri, 10 Jan 2025 18:24:31 -0500
Subject: [PATCH 1594/1641] Annotations: Deny newlines. (#12640)

---
 internal/ingress/annotations/parser/validators.go      | 6 ++++++
 internal/ingress/annotations/parser/validators_test.go | 5 +++++
 2 files changed, 11 insertions(+)

diff --git a/internal/ingress/annotations/parser/validators.go b/internal/ingress/annotations/parser/validators.go
index 31524508f..3c724a311 100644
--- a/internal/ingress/annotations/parser/validators.go
+++ b/internal/ingress/annotations/parser/validators.go
@@ -79,6 +79,8 @@ var (
 	// URLWithNginxVariableRegex defines a url that can contain nginx variables.
 	// It is a risky operation
 	URLWithNginxVariableRegex = regexp.MustCompile("^[" + extendedAlphaNumeric + urlEnabledChars + "$]*$")
+	// MaliciousRegex defines chars that are known to inject RCE
+	MaliciousRegex = regexp.MustCompile(`\r|\n`)
 )
 
 // ValidateArrayOfServerName validates if all fields on a Server name annotation are
@@ -113,6 +115,10 @@ func ValidateRegex(regex *regexp.Regexp, removeSpace bool) AnnotationValidator {
 		if !regex.MatchString(s) {
 			return fmt.Errorf("value %s is invalid", s)
 		}
+		if MaliciousRegex.MatchString(s) {
+			return fmt.Errorf("value %s contains malicious string", s)
+		}
+
 		return nil
 	}
 }
diff --git a/internal/ingress/annotations/parser/validators_test.go b/internal/ingress/annotations/parser/validators_test.go
index 6c88342e4..49923ba76 100644
--- a/internal/ingress/annotations/parser/validators_test.go
+++ b/internal/ingress/annotations/parser/validators_test.go
@@ -65,6 +65,11 @@ func TestValidateArrayOfServerName(t *testing.T) {
 			value:   "something.com,lolo;xpto.com,nothing.com",
 			wantErr: true,
 		},
+		{
+			name:    "should deny names with malicous chars",
+			value:   "http://something.com/#;\nournewinjection",
+			wantErr: true,
+		},
 	}
 	for _, tt := range tests {
 		t.Run(tt.name, func(t *testing.T) {

From cc341973b022b807f6cf9eafdcdbbf3baa151b44 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sat, 11 Jan 2025 21:52:02 +0100
Subject: [PATCH 1595/1641] NGINX: Align quotes. (#12669)

---
 images/nginx/rootfs/build.sh | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/nginx/rootfs/build.sh b/images/nginx/rootfs/build.sh
index a9324638e..297abf777 100755
--- a/images/nginx/rootfs/build.sh
+++ b/images/nginx/rootfs/build.sh
@@ -99,10 +99,10 @@ export LUA_RESTY_IPMATCHER_VERSION=3e93c53eb8c9884efe939ef070486a0e507cc5be
 export MIMALOC_VERSION=v2.1.9
 
 # Check for recent changes: https://github.com/open-telemetry/opentelemetry-cpp/compare/v1.18.0...main
-export OPENTELEMETRY_CPP_VERSION="v1.18.0"
+export OPENTELEMETRY_CPP_VERSION=v1.18.0
 
 # Check for recent changes: https://github.com/open-telemetry/opentelemetry-proto/compare/v1.5.0...main
-export OPENTELEMETRY_PROTO_VERSION="v1.5.0"
+export OPENTELEMETRY_PROTO_VERSION=v1.5.0
 
 export BUILD_PATH=/tmp/build
 

From 9026c03fdf435424807f04212ccad1fb37096190 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sat, 11 Jan 2025 21:59:27 +0100
Subject: [PATCH 1596/1641] Images: Trigger NGINX build. (#12672)

---
 images/nginx/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/nginx/TAG b/images/nginx/TAG
index 795460fce..46b105a30 100644
--- a/images/nginx/TAG
+++ b/images/nginx/TAG
@@ -1 +1 @@
-v1.1.0
+v2.0.0

From 97568931850c2dda8fa5341ab01412f216fe3eed Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 12 Jan 2025 01:02:31 +0100
Subject: [PATCH 1597/1641] Images: Bump `NGINX_BASE` to v2.0.0. (#12676)

---
 NGINX_BASE | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/NGINX_BASE b/NGINX_BASE
index 8244652af..dd8d6c586 100644
--- a/NGINX_BASE
+++ b/NGINX_BASE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/nginx:v1.1.0@sha256:43e04f78d7544010e2e86918faae1d15091995b7ef6e522f53cf3035ad814567
+registry.k8s.io/ingress-nginx/nginx:v2.0.0@sha256:3e7bda4cf5111d283ed1e4ff5cc9a2b5cdc5ebe62d50ba67473d3e25b1389133

From a188f4eb1997c9281c970fc92ac048fdce5d5356 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 12 Jan 2025 17:01:34 +0100
Subject: [PATCH 1598/1641] Images: Trigger Test Runner build. (#12680)

---
 images/test-runner/TAG | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/images/test-runner/TAG b/images/test-runner/TAG
index 79127d85a..46b105a30 100644
--- a/images/test-runner/TAG
+++ b/images/test-runner/TAG
@@ -1 +1 @@
-v1.2.0
+v2.0.0

From 5c7b74c5db46a2c675bbec4b1a3f8820804ef102 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 12 Jan 2025 19:50:31 +0100
Subject: [PATCH 1599/1641] Tests: Bump Test Runner to v20250112-a188f4eb.
 (#12683)

---
 build/run-in-docker.sh     | 2 +-
 test/e2e-image/Makefile    | 2 +-
 test/e2e/run-chart-test.sh | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index e191eda65..bef0edbdb 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -44,7 +44,7 @@ function cleanup {
 }
 trap cleanup EXIT
 
-E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20241224-68ed4e7b@sha256:871642296ebc0dd386f9a43b0cf2606028d757d6c4a2737d41180f02f8172823}
+E2E_IMAGE=${E2E_IMAGE:-registry.k8s.io/ingress-nginx/e2e-test-runner:v20250112-a188f4eb@sha256:043038b1e30e5a0b64f3f919f096c5c9488ac3f617ac094b07fb9db8215f9441}
 
 if [[ "$RUNTIME" == podman ]]; then
   # Podman does not support both tag and digest
diff --git a/test/e2e-image/Makefile b/test/e2e-image/Makefile
index 7d553c04e..f72651f48 100644
--- a/test/e2e-image/Makefile
+++ b/test/e2e-image/Makefile
@@ -1,6 +1,6 @@
 
 DIR:=$(shell dirname $(realpath $(firstword $(MAKEFILE_LIST))))
-E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20241224-68ed4e7b@sha256:871642296ebc0dd386f9a43b0cf2606028d757d6c4a2737d41180f02f8172823"
+E2E_BASE_IMAGE ?= "registry.k8s.io/ingress-nginx/e2e-test-runner:v20250112-a188f4eb@sha256:043038b1e30e5a0b64f3f919f096c5c9488ac3f617ac094b07fb9db8215f9441"
 
 image:
 	echo "..entered Makefile in /test/e2e-image"
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index c8b079f84..68845f07e 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -114,5 +114,5 @@ docker run \
   --workdir /workdir \
   --entrypoint ct \
   --rm \
-  registry.k8s.io/ingress-nginx/e2e-test-runner:v20241224-68ed4e7b@sha256:871642296ebc0dd386f9a43b0cf2606028d757d6c4a2737d41180f02f8172823 \
+  registry.k8s.io/ingress-nginx/e2e-test-runner:v20250112-a188f4eb@sha256:043038b1e30e5a0b64f3f919f096c5c9488ac3f617ac094b07fb9db8215f9441 \
     install --charts charts/ingress-nginx

From b932ac06676d1e5bb04973a9793c392a1e1922ed Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 12 Jan 2025 22:17:53 +0100
Subject: [PATCH 1600/1641] Images: Trigger other builds (1/2). (#12686)

---
 images/cfssl/TAG                    | 2 +-
 images/custom-error-pages/TAG       | 2 +-
 images/e2e-test-echo/TAG            | 2 +-
 images/ext-auth-example-authsvc/TAG | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/images/cfssl/TAG b/images/cfssl/TAG
index 795460fce..56130fb3a 100644
--- a/images/cfssl/TAG
+++ b/images/cfssl/TAG
@@ -1 +1 @@
-v1.1.0
+v1.1.1
diff --git a/images/custom-error-pages/TAG b/images/custom-error-pages/TAG
index 795460fce..56130fb3a 100644
--- a/images/custom-error-pages/TAG
+++ b/images/custom-error-pages/TAG
@@ -1 +1 @@
-v1.1.0
+v1.1.1
diff --git a/images/e2e-test-echo/TAG b/images/e2e-test-echo/TAG
index 795460fce..56130fb3a 100644
--- a/images/e2e-test-echo/TAG
+++ b/images/e2e-test-echo/TAG
@@ -1 +1 @@
-v1.1.0
+v1.1.1
diff --git a/images/ext-auth-example-authsvc/TAG b/images/ext-auth-example-authsvc/TAG
index 795460fce..56130fb3a 100644
--- a/images/ext-auth-example-authsvc/TAG
+++ b/images/ext-auth-example-authsvc/TAG
@@ -1 +1 @@
-v1.1.0
+v1.1.1

From 3e8586b9b2adced5d7bd4fd437bf19eac5c31731 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sun, 12 Jan 2025 22:20:07 +0100
Subject: [PATCH 1601/1641] Images: Trigger other builds (2/2). (#12689)

---
 images/fastcgi-helloserver/TAG    | 2 +-
 images/go-grpc-greeter-server/TAG | 2 +-
 images/httpbun/TAG                | 2 +-
 images/kube-webhook-certgen/TAG   | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/images/fastcgi-helloserver/TAG b/images/fastcgi-helloserver/TAG
index 795460fce..56130fb3a 100644
--- a/images/fastcgi-helloserver/TAG
+++ b/images/fastcgi-helloserver/TAG
@@ -1 +1 @@
-v1.1.0
+v1.1.1
diff --git a/images/go-grpc-greeter-server/TAG b/images/go-grpc-greeter-server/TAG
index 795460fce..56130fb3a 100644
--- a/images/go-grpc-greeter-server/TAG
+++ b/images/go-grpc-greeter-server/TAG
@@ -1 +1 @@
-v1.1.0
+v1.1.1
diff --git a/images/httpbun/TAG b/images/httpbun/TAG
index 795460fce..56130fb3a 100644
--- a/images/httpbun/TAG
+++ b/images/httpbun/TAG
@@ -1 +1 @@
-v1.1.0
+v1.1.1
diff --git a/images/kube-webhook-certgen/TAG b/images/kube-webhook-certgen/TAG
index 2e7bd9108..53b5bbb12 100644
--- a/images/kube-webhook-certgen/TAG
+++ b/images/kube-webhook-certgen/TAG
@@ -1 +1 @@
-v1.5.0
+v1.5.1

From ba0b51ea77edb0e39b4773a769d2461e80b352b5 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 13 Jan 2025 09:12:34 +0100
Subject: [PATCH 1602/1641] Tests & Docs: Bump images. (#12692)

---
 docs/examples/canary/README.md                                | 4 ++--
 .../custom-errors/custom-default-backend.helm.values.yaml     | 2 +-
 .../customization/custom-errors/custom-default-backend.yaml   | 2 +-
 .../customization/external-auth-headers/echo-service.yaml     | 2 +-
 test/e2e/HTTPBUN_IMAGE                                        | 2 +-
 test/e2e/framework/deployment.go                              | 2 +-
 test/e2e/framework/fastcgi_helloserver.go                     | 2 +-
 test/e2e/settings/ocsp/ocsp.go                                | 2 +-
 8 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/docs/examples/canary/README.md b/docs/examples/canary/README.md
index 77b711b3a..885991a3b 100644
--- a/docs/examples/canary/README.md
+++ b/docs/examples/canary/README.md
@@ -31,7 +31,7 @@ spec:
     spec:
       containers:
       - name: production
-        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.1.0@sha256:0713ba47b3e4359b38ad53cd785c34b158e168a91636520a4a5e54cd500d8356
+        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.1.1@sha256:a1e0152e2eeab26e3f6fd3986f3d82b17bc7711717cae5392dcd18dd447ba6ef
         ports:
         - containerPort: 80
         env:
@@ -97,7 +97,7 @@ spec:
     spec:
       containers:
       - name: canary
-        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.1.0@sha256:0713ba47b3e4359b38ad53cd785c34b158e168a91636520a4a5e54cd500d8356
+        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.1.1@sha256:a1e0152e2eeab26e3f6fd3986f3d82b17bc7711717cae5392dcd18dd447ba6ef
         ports:
         - containerPort: 80
         env:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
index b538f75ab..d72001d58 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.helm.values.yaml
@@ -6,7 +6,7 @@ defaultBackend:
   image:
     registry: registry.k8s.io
     image: ingress-nginx/custom-error-pages
-    tag: v1.1.0@sha256:a2342e403fc3c19f81f5625e1b93daa0f8fb3dfaa1df4905f85e32d2d98a5e96
+    tag: v1.1.1@sha256:8c10776191ae44b5c387b8c7696d8bc17ceec90d7184a3a38b89ac8434b6c56b
   extraVolumes:
   - name: custom-error-pages
     configMap:
diff --git a/docs/examples/customization/custom-errors/custom-default-backend.yaml b/docs/examples/customization/custom-errors/custom-default-backend.yaml
index b392eefef..088ca1374 100644
--- a/docs/examples/customization/custom-errors/custom-default-backend.yaml
+++ b/docs/examples/customization/custom-errors/custom-default-backend.yaml
@@ -36,7 +36,7 @@ spec:
     spec:
       containers:
       - name: nginx-error-server
-        image: registry.k8s.io/ingress-nginx/custom-error-pages:v1.1.0@sha256:a2342e403fc3c19f81f5625e1b93daa0f8fb3dfaa1df4905f85e32d2d98a5e96
+        image: registry.k8s.io/ingress-nginx/custom-error-pages:v1.1.1@sha256:8c10776191ae44b5c387b8c7696d8bc17ceec90d7184a3a38b89ac8434b6c56b
         ports:
         - containerPort: 8080
         # Setting the environment variable DEBUG we can see the headers sent 
diff --git a/docs/examples/customization/external-auth-headers/echo-service.yaml b/docs/examples/customization/external-auth-headers/echo-service.yaml
index 6a970dd9f..10244458d 100644
--- a/docs/examples/customization/external-auth-headers/echo-service.yaml
+++ b/docs/examples/customization/external-auth-headers/echo-service.yaml
@@ -18,7 +18,7 @@ spec:
       terminationGracePeriodSeconds: 60
       containers:
       - name: echo-service
-        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.1.0@sha256:0713ba47b3e4359b38ad53cd785c34b158e168a91636520a4a5e54cd500d8356
+        image: registry.k8s.io/ingress-nginx/e2e-test-echo:v1.1.1@sha256:a1e0152e2eeab26e3f6fd3986f3d82b17bc7711717cae5392dcd18dd447ba6ef
         ports:
         - containerPort: 8080
         resources:
diff --git a/test/e2e/HTTPBUN_IMAGE b/test/e2e/HTTPBUN_IMAGE
index 11f540282..491b333c7 100644
--- a/test/e2e/HTTPBUN_IMAGE
+++ b/test/e2e/HTTPBUN_IMAGE
@@ -1 +1 @@
-registry.k8s.io/ingress-nginx/httpbun:v1.1.0@sha256:bd870e71e30d478fafd00c515fba454f326960fe343a84ace577723a07a2cd6c
+registry.k8s.io/ingress-nginx/httpbun:v1.1.1@sha256:4569515d9b74470c915566a010792e7202b6769443fb1f3bb1b1e87376028634
diff --git a/test/e2e/framework/deployment.go b/test/e2e/framework/deployment.go
index 21458a156..f213e2e98 100644
--- a/test/e2e/framework/deployment.go
+++ b/test/e2e/framework/deployment.go
@@ -47,7 +47,7 @@ const NIPService = "external-nip"
 var HTTPBunImage = os.Getenv("HTTPBUN_IMAGE")
 
 // EchoImage is the default image to be used by the echo service
-const EchoImage = "registry.k8s.io/ingress-nginx/e2e-test-echo:v1.1.0@sha256:0713ba47b3e4359b38ad53cd785c34b158e168a91636520a4a5e54cd500d8356" //#nosec G101
+const EchoImage = "registry.k8s.io/ingress-nginx/e2e-test-echo:v1.1.1@sha256:a1e0152e2eeab26e3f6fd3986f3d82b17bc7711717cae5392dcd18dd447ba6ef" //#nosec G101
 
 // TODO: change all Deployment functions to use these options
 // in order to reduce complexity and have a unified API across the
diff --git a/test/e2e/framework/fastcgi_helloserver.go b/test/e2e/framework/fastcgi_helloserver.go
index 65e257cfd..c414c4da3 100644
--- a/test/e2e/framework/fastcgi_helloserver.go
+++ b/test/e2e/framework/fastcgi_helloserver.go
@@ -59,7 +59,7 @@ func (f *Framework) NewNewFastCGIHelloServerDeploymentWithReplicas(replicas int3
 					Containers: []corev1.Container{
 						{
 							Name:  "fastcgi-helloserver",
-							Image: "registry.k8s.io/ingress-nginx/fastcgi-helloserver:v1.1.0@sha256:939cb351010a618383921b49056ccb6227b5a486ec52773464edbec03bc04812",
+							Image: "registry.k8s.io/ingress-nginx/fastcgi-helloserver:v1.1.1@sha256:6af4d8c7745c6727aab759db616a58fd68d784d07ce7a32d1ad149c331fd9a6f",
 							Env:   []corev1.EnvVar{},
 							Ports: []corev1.ContainerPort{
 								{
diff --git a/test/e2e/settings/ocsp/ocsp.go b/test/e2e/settings/ocsp/ocsp.go
index 8a8ad7419..b2d50292a 100644
--- a/test/e2e/settings/ocsp/ocsp.go
+++ b/test/e2e/settings/ocsp/ocsp.go
@@ -297,7 +297,7 @@ func ocspserveDeployment(namespace string) (*appsv1.Deployment, *corev1.Service)
 						Containers: []corev1.Container{
 							{
 								Name:  name,
-								Image: "registry.k8s.io/ingress-nginx/cfssl:v1.1.0@sha256:31a195d7c3dc801575ca46919ff2b3f01afce54a744ab22ee83469f92a6e0965",
+								Image: "registry.k8s.io/ingress-nginx/cfssl:v1.1.1@sha256:bcd576c6d0a01d4710969195e804c02da62b71b5c35c6816df9b7584d5445437",
 								Command: []string{
 									"/bin/bash",
 									"-c",

From f246d43e4c280793b406448641e96ab2e01524b6 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 13 Jan 2025 09:22:32 +0100
Subject: [PATCH 1603/1641] Chart: Bump Kube Webhook CertGen. (#12693)

---
 charts/ingress-nginx/README.md   | 4 ++--
 charts/ingress-nginx/values.yaml | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index c542d8789..dbb0f68c7 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -270,10 +270,10 @@ metadata:
 | controller.admissionWebhooks.namespaceSelector | object | `{}` |  |
 | controller.admissionWebhooks.objectSelector | object | `{}` |  |
 | controller.admissionWebhooks.patch.enabled | bool | `true` |  |
-| controller.admissionWebhooks.patch.image.digest | string | `"sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4"` |  |
+| controller.admissionWebhooks.patch.image.digest | string | `"sha256:0de05718b59dc33b57ddfb4d8ad5f637cefd13eafdec0e1579d782b3483c27c3"` |  |
 | controller.admissionWebhooks.patch.image.image | string | `"ingress-nginx/kube-webhook-certgen"` |  |
 | controller.admissionWebhooks.patch.image.pullPolicy | string | `"IfNotPresent"` |  |
-| controller.admissionWebhooks.patch.image.tag | string | `"v1.5.0"` |  |
+| controller.admissionWebhooks.patch.image.tag | string | `"v1.5.1"` |  |
 | controller.admissionWebhooks.patch.labels | object | `{}` | Labels to be added to patch job resources |
 | controller.admissionWebhooks.patch.networkPolicy.enabled | bool | `false` | Enable 'networkPolicy' or not |
 | controller.admissionWebhooks.patch.nodeSelector."kubernetes.io/os" | string | `"linux"` |  |
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index fb0b36a1c..9875b3693 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -812,8 +812,8 @@ controller:
         ## for backwards compatibility consider setting the full image url via the repository value below
         ## use *either* current default registry/image or repository format or installing chart by providing the values.yaml will fail
         ## repository:
-        tag: v1.5.0
-        digest: sha256:aaafd456bda110628b2d4ca6296f38731a3aaf0bf7581efae824a41c770a8fc4
+        tag: v1.5.1
+        digest: sha256:0de05718b59dc33b57ddfb4d8ad5f637cefd13eafdec0e1579d782b3483c27c3
         pullPolicy: IfNotPresent
       # -- Provide a priority class name to the webhook patching job
       ##

From 8da3423ed9e346a591a84b1d7be5d6ff6322190f Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 13 Jan 2025 04:04:33 -0800
Subject: [PATCH 1604/1641] Bump google.golang.org/grpc from 1.69.2 to 1.69.4
 in the go group across 1 directory (#12698)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 6335b6f89..91ab5be2e 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.32.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
-	google.golang.org/grpc v1.69.2
+	google.golang.org/grpc v1.69.4
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
diff --git a/go.sum b/go.sum
index 8de6c6bda..0ca74e190 100644
--- a/go.sum
+++ b/go.sum
@@ -306,8 +306,8 @@ gomodules.xyz/jsonpatch/v2 v2.4.0 h1:Ci3iUJyx9UeRx7CeFN8ARgGbkESwJK+KB9lLcWxY/Zw
 gomodules.xyz/jsonpatch/v2 v2.4.0/go.mod h1:AH3dM2RI6uoBZxn3LVrfvJ3E0/9dG4cSrbuBJT4moAY=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20241015192408-796eee8c2d53 h1:X58yt85/IXCx0Y3ZwN6sEIKZzQtDEYaBWrDvErdXrRE=
 google.golang.org/genproto/googleapis/rpc v0.0.0-20241015192408-796eee8c2d53/go.mod h1:GX3210XPVPUjJbTUbvwI8f2IpZDMZuPJWDzDuebbviI=
-google.golang.org/grpc v1.69.2 h1:U3S9QEtbXC0bYNvRtcoklF3xGtLViumSYxWykJS+7AU=
-google.golang.org/grpc v1.69.2/go.mod h1:vyjdE6jLBI76dgpDojsFGNaHlxdjXN9ghpnd2o7JGZ4=
+google.golang.org/grpc v1.69.4 h1:MF5TftSMkd8GLw/m0KM6V8CMOCY6NZ1NQDPGFgbTt4A=
+google.golang.org/grpc v1.69.4/go.mod h1:vyjdE6jLBI76dgpDojsFGNaHlxdjXN9ghpnd2o7JGZ4=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From 8111b07adbe4ade4aba96bd52457b05fc737628f Mon Sep 17 00:00:00 2001
From: Ricardo Katz <rikatz@users.noreply.github.com>
Date: Wed, 15 Jan 2025 05:52:34 -0300
Subject: [PATCH 1605/1641] Go: Stop using workspace. (#12703)

---
 go.work     |   7 ---
 go.work.sum | 145 ----------------------------------------------------
 2 files changed, 152 deletions(-)
 delete mode 100644 go.work
 delete mode 100644 go.work.sum

diff --git a/go.work b/go.work
deleted file mode 100644
index 76d1a6369..000000000
--- a/go.work
+++ /dev/null
@@ -1,7 +0,0 @@
-go 1.23.4
-
-use (
-	.
-	./images/kube-webhook-certgen/rootfs
-	./magefiles
-)
diff --git a/go.work.sum b/go.work.sum
deleted file mode 100644
index 0bc5d32bc..000000000
--- a/go.work.sum
+++ /dev/null
@@ -1,145 +0,0 @@
-cel.dev/expr v0.18.0/go.mod h1:MrpN08Q+lEBs+bGYdLxxHkZoUSsCp0nSKTs0nTymJgw=
-cloud.google.com/go/compute v1.23.3/go.mod h1:VCgBUoMnIVIR0CscqQiPJLAG25E3ZRZMzcFZeQ+h8CI=
-cloud.google.com/go/compute/metadata v0.3.0/go.mod h1:zFmK7XCadkQkj6TtorcaGlCW1hT1fIilQDwofLpJ20k=
-cloud.google.com/go/compute/metadata v0.5.2/go.mod h1:C66sj2AluDcIqakBq/M8lw8/ybHgOZqin2obFxa/E5k=
-github.com/GoogleCloudPlatform/opentelemetry-operations-go/detectors/gcp v1.24.2/go.mod h1:itPGVDKf9cC/ov4MdvJ2QZ0khw4bfoo9jzwTJlaxy2k=
-github.com/Masterminds/semver/v3 v3.2.1/go.mod h1:qvl/7zhW3nngYb5+80sSMF+FG2BjYrf8m9wsX0PNOMQ=
-github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
-github.com/alecthomas/kingpin/v2 v2.4.0/go.mod h1:0gyi0zQnjuFk8xrkNKamJoyUo382HRL7ATRpFZCw6tE=
-github.com/alecthomas/units v0.0.0-20211218093645-b94a6e3cc137/go.mod h1:OMCwj8VM1Kc9e19TLln2VL61YJF0x1XFtfdL4JdbSyE=
-github.com/andybalholm/brotli v1.1.0/go.mod h1:sms7XGricyQI9K10gOSf56VKKWS4oLer58Q+mhRPtnY=
-github.com/antlr4-go/antlr/v4 v4.13.0/go.mod h1:pfChB/xh/Unjila75QW7+VU4TSnWnnk9UTnmpPaOR2g=
-github.com/armon/go-socks5 v0.0.0-20160902184237-e75332964ef5/go.mod h1:wHh0iHkYZB8zMSxRWpUBQtwG5a7fFgvEO+odwuTv2gs=
-github.com/asaskevich/govalidator v0.0.0-20190424111038-f61b66f89f4a/go.mod h1:lB+ZfQJz7igIIfQNfa7Ml4HSf2uFQQRzpGGRXenZAgY=
-github.com/bytedance/sonic v1.9.1/go.mod h1:i736AoUSYt75HyZLoJW9ERYxcy6eaN6h4BZXU064P/U=
-github.com/cenkalti/backoff/v4 v4.3.0/go.mod h1:Y3VNntkOUPxTVeUxJ/G5vcM//AlwfmyYozVcomhLiZE=
-github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
-github.com/checkpoint-restore/go-criu/v6 v6.3.0/go.mod h1:rrRTN/uSwY2X+BPRl/gkulo9gsKOSAeVp9/K2tv7xZI=
-github.com/chenzhuoyu/base64x v0.0.0-20221115062448-fe3a3abad311/go.mod h1:b583jCggY9gE99b6G5LEC39OIiVsWj+R97kbl5odCEk=
-github.com/chzyer/logex v1.2.1/go.mod h1:JLbx6lG2kDbNRFnfkgvh4eRJRPX1QCoOIWomwysCBrQ=
-github.com/chzyer/readline v1.5.1/go.mod h1:Eh+b79XXUwfKfcPLepksvw2tcLE/Ct21YObkaSkeBlk=
-github.com/chzyer/test v1.0.0/go.mod h1:2JlltgoNkt4TW/z9V/IzDdFaMTM2JPIi26O1pF38GC8=
-github.com/cilium/ebpf v0.16.0/go.mod h1:L7u2Blt2jMM/vLAVgjxluxtBKlz3/GWjB0dMOEngfwE=
-github.com/cncf/udpa/go v0.0.0-20220112060539-c52dc94e7fbe/go.mod h1:6pvJx4me5XPnfI9Z40ddWsdw2W/uZgQLFXToKeRcDiI=
-github.com/cncf/xds/go v0.0.0-20240905190251-b4127c9b8d78/go.mod h1:W+zGtBO5Y1IgJhy4+A9GOqVhqLpfZi+vwmdNXUehLA8=
-github.com/containerd/console v1.0.4/go.mod h1:YynlIjWYF8myEu6sdkwKIvGQq+cOckRm6So2avqoYAk=
-github.com/coreos/go-oidc v2.2.1+incompatible/go.mod h1:CgnwVTmzoESiwO9qyAFEMiHoZ1nMCKZlZ9V6mm3/LKc=
-github.com/coreos/go-semver v0.3.1/go.mod h1:irMmmIw/7yzSRPWryHsK7EYSg09caPQL03VsM8rvUec=
-github.com/docker/go-units v0.5.0/go.mod h1:fgPhTUdO+D/Jk86RDLlptpiXQzgHJF7gydDDbaIK4Dk=
-github.com/dsnet/compress v0.0.2-0.20210315054119-f66993602bf5/go.mod h1:qssHWj60/X5sZFNxpG4HBPDHVqxNm4DfnCKgrbZOT+s=
-github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto=
-github.com/envoyproxy/go-control-plane v0.13.1/go.mod h1:X45hY0mufo6Fd0KW3rqsGvQMw58jvjymeCzBU3mWyHw=
-github.com/envoyproxy/protoc-gen-validate v1.1.0/go.mod h1:sXRDRVmzEbkM7CVcM06s9shE/m23dg3wzjl0UWqJ2q4=
-github.com/evanphx/json-patch v4.12.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLiYLvXMP4fmwYFNcr97nuDLSk=
-github.com/felixge/httpsnoop v1.0.4/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U=
-github.com/gabriel-vasile/mimetype v1.4.2/go.mod h1:zApsH/mKG4w07erKIaJPFiX0Tsq9BFQgN3qGY5GnNgA=
-github.com/getsentry/sentry-go v0.21.0/go.mod h1:lc76E2QywIyW8WuBnwl8Lc4bkmQH4+w1gwTf25trprY=
-github.com/gin-contrib/sse v0.1.0/go.mod h1:RHrZQHXnP2xjPF+u1gW/2HnVO7nvIa9PG3Gm+fLHvGI=
-github.com/gin-gonic/gin v1.9.1/go.mod h1:hPrL7YrpYKXt5YId3A/Tnip5kqbEAP+KLuI3SUcPTeU=
-github.com/go-kit/log v0.2.1/go.mod h1:NwTd00d/i8cPZ3xOwwiv2PO5MOcx78fFErGNcVmBjv0=
-github.com/go-logfmt/logfmt v0.5.1/go.mod h1:WYhtIu8zTZfxdn5+rREduYbwxfcBr/Vr6KEVveWlfTs=
-github.com/go-openapi/jsonpointer v0.19.6/go.mod h1:osyAmYz/mB/C3I+WsTTSgw1ONzaLJoLCyoi6/zppojs=
-github.com/go-openapi/jsonreference v0.20.2/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
-github.com/go-openapi/swag v0.22.3/go.mod h1:UzaqsxGiab7freDnrUUra0MwWfN/q7tE4j+VcZ0yl14=
-github.com/go-playground/locales v0.14.1/go.mod h1:hxrqLVvrK65+Rwrd5Fc6F2O76J/NuW9t0sjnWqG1slY=
-github.com/go-playground/universal-translator v0.18.1/go.mod h1:xekY+UJKNuX9WP91TpwSH2VMlDf28Uj24BCp08ZFTUY=
-github.com/go-playground/validator/v10 v10.14.0/go.mod h1:9iXMNT7sEkjXb0I+enO7QXmzG6QCsPWY4zveKFVRSyU=
-github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572/go.mod h1:9Pwr4B2jHnOSGXyyzV8ROjYa2ojvAY6HCGYYfMoC3Ls=
-github.com/goccy/go-json v0.10.2/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
-github.com/golang-jwt/jwt/v4 v4.5.0/go.mod h1:m21LjoU+eqJr34lmDMbreY2eSTRJ1cv77w39/MY0Ch0=
-github.com/golang/glog v1.2.2/go.mod h1:6AhwSGph0fcJtXVM/PEHPqZlFeoLxhs7/t5UDAwmO+w=
-github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
-github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
-github.com/google/cel-go v0.22.0/go.mod h1:BuznPXXfQDpXKWQ9sPW3TzlAJN5zzFe+i9tIs0yC4s8=
-github.com/google/pprof v0.0.0-20241029153458-d1b30febd7db/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
-github.com/gorilla/websocket v1.5.0/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
-github.com/grpc-ecosystem/go-grpc-middleware v1.3.0/go.mod h1:z0ButlSOZa5vEBq9m2m2hlwIgKw+rp3sdCBRoJY+30Y=
-github.com/grpc-ecosystem/go-grpc-prometheus v1.2.0/go.mod h1:8NvIoxWQoOIhqOTXgfV/d3M/q6VIi02HzZEHgUlZvzk=
-github.com/grpc-ecosystem/grpc-gateway v1.16.0/go.mod h1:BDjrQk3hbvj6Nolgz8mAMFbcEtjT1g+wF4CSlocrBnw=
-github.com/grpc-ecosystem/grpc-gateway/v2 v2.20.0/go.mod h1:P+Lt/0by1T8bfcF3z737NnSbmxQAppXMRziHUxPOC8k=
-github.com/ianlancetaylor/demangle v0.0.0-20240312041847-bd984b5ce465/go.mod h1:gx7rwoVhcfuVKG5uya9Hs3Sxj7EIvldVofAWIUtGouw=
-github.com/imdario/mergo v0.3.6/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
-github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
-github.com/jonboulle/clockwork v0.4.0/go.mod h1:xgRqUGwRcjKCO1vbZUEtSLrqKoPSsUpK7fnezOII0kc=
-github.com/jpillora/backoff v1.0.0/go.mod h1:J/6gKK9jxlEcS3zixgDgUAsiuZ7yrSoa/FX5e0EB2j4=
-github.com/julienschmidt/httprouter v1.3.0/go.mod h1:JR6WtHb+2LUe8TCKY3cZOxFyyO8IZAc4RVcycCCAKdM=
-github.com/klauspost/cpuid/v2 v2.2.4/go.mod h1:RVVoqg1df56z8g3pUjL/3lE5UfnlrJX8tyFgg4nqhuY=
-github.com/klauspost/pgzip v1.2.6/go.mod h1:Ch1tH69qFZu15pkjo5kYi6mth2Zzwzt50oCQKQE9RUs=
-github.com/labstack/echo/v4 v4.10.2/go.mod h1:OEyqf2//K1DFdE57vw2DRgWY0M7s65IVQO2FzvI4J5k=
-github.com/labstack/gommon v0.4.0/go.mod h1:uW6kP17uPlLJsD3ijUYn3/M5bAxtlZhMI6m3MFxTMTM=
-github.com/leodido/go-urn v1.2.4/go.mod h1:7ZrI8mTSeBSHl/UaRyKQW1qZeMgak41ANeCNaVckg+4=
-github.com/maxbrunsfeld/counterfeiter/v6 v6.8.1/go.mod h1:eyp4DdUJAKkr9tvxR3jWhw2mDK7CWABMG5r9uyaKC7I=
-github.com/mholt/archiver/v3 v3.5.1/go.mod h1:e3dqJ7H78uzsRSEACH1joayhuSyhnonssnDhppzS1L4=
-github.com/moby/spdystream v0.5.0/go.mod h1:xBAYlnt/ay+11ShkdFKNAG7LsyK/tmNBVvVOwrfMgdI=
-github.com/moby/sys/user v0.3.0/go.mod h1:bG+tYYYJgaMtRKgEmuueC0hJEAZWwtIbZTB+85uoHjs=
-github.com/mrunalp/fileutils v0.5.1/go.mod h1:M1WthSahJixYnrXQl/DFQuteStB1weuxD2QJNHXfbSQ=
-github.com/mwitkow/go-conntrack v0.0.0-20190716064945-2f068394615f/go.mod h1:qRWi+5nqEBWmkhHvq77mSJWrCKwh8bxhgT7d/eI7P4U=
-github.com/mxk/go-flowrate v0.0.0-20140419014527-cca7078d478f/go.mod h1:ZdcZmHo+o7JKHSa8/e818NopupXU1YMK5fe1lsApnBw=
-github.com/ncabatoff/fakescraper v0.0.0-20201102132415-4b37ba603d65/go.mod h1:Tx6UMSMyIsjLG/VU/F6xA1+0XI+/f9o1dGJnf1l+bPg=
-github.com/nwaples/rardecode v1.1.3/go.mod h1:5DzqNKiOdpKKBH87u8VlvAnPZMXcGRhxWkRpHbbfGS0=
-github.com/onsi/ginkgo/v2 v2.21.0/go.mod h1:7Du3c42kxCUegi0IImZ1wUQzMBVecgIHjR1C+NkhLQo=
-github.com/onsi/ginkgo/v2 v2.22.1/go.mod h1:S6aTpoRsSq2cZOd+pssHAlKW/Q/jZt6cPrPlnj4a1xM=
-github.com/onsi/gomega v1.35.1/go.mod h1:PvZbdDc8J6XJEpDK4HCuRBm8a6Fzp9/DmhC9C7yFlog=
-github.com/opencontainers/selinux v1.11.0/go.mod h1:E5dMC3VPuVvVHDYmi78qvhJp8+M586T4DlDRYpFkyec=
-github.com/pelletier/go-toml/v2 v2.0.8/go.mod h1:vuYfssBdrU2XDZ9bYydBu6t+6a6PYNcZljzZR9VXg+4=
-github.com/pierrec/lz4/v4 v4.1.21/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4=
-github.com/planetscale/vtprotobuf v0.6.1-0.20240319094008-0393e58bdf10/go.mod h1:t/avpk3KcrXxUnYOhZhMXJlSEyie6gQbtLq5NM3loB8=
-github.com/pquerna/cachecontrol v0.1.0/go.mod h1:NrUG3Z7Rdu85UNR3vm7SOsl1nFIeSiQnrHV5K9mBcUI=
-github.com/prometheus/exporter-toolkit v0.11.0/go.mod h1:BVnENhnNecpwoTLiABx7mrPB/OLRIgN74qlQbV+FK1Q=
-github.com/seccomp/libseccomp-golang v0.10.0/go.mod h1:JA8cRccbGaA1s33RQf7Y1+q9gHmZX1yB/z9WDN1C6fg=
-github.com/soheilhy/cmux v0.1.5/go.mod h1:T7TcVDs9LWfQgPlPsdngu6I6QIoyIFZDDC6sNE1GqG0=
-github.com/stoewer/go-strcase v1.3.0/go.mod h1:fAH5hQ5pehh+j3nZfvwdk2RgEgQjAoM8wodgtPmh1xo=
-github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
-github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
-github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
-github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
-github.com/syndtr/gocapability v0.0.0-20200815063812-42c35b437635/go.mod h1:hkRG7XYTFWNJGYcbNJQlaLq0fg1yr4J4t/NcTQtrfww=
-github.com/tmc/grpc-websocket-proxy v0.0.0-20220101234140-673ab2c3ae75/go.mod h1:KO6IkyS8Y3j8OdNO85qEYBsRPuteD+YciPomcXdrMnk=
-github.com/twitchyliquid64/golang-asm v0.15.1/go.mod h1:a1lVb/DtPvCB8fslRZhAngC2+aY1QWCk3Cedj/Gdt08=
-github.com/ugorji/go/codec v1.2.11/go.mod h1:UNopzCgEMSXjBc6AOMqYvWC1ktqTAfzJZUZgYf6w6lg=
-github.com/ulikunitz/xz v0.5.12/go.mod h1:nbz6k7qbPmH4IRqmfOplQw/tblSgqTqBwxkY0oWt/14=
-github.com/urfave/cli v1.22.14/go.mod h1:X0eDS6pD6Exaclxm99NJ3FiCDRED7vIHpx2mDOHLvkA=
-github.com/uwu-tools/magex v0.10.0/go.mod h1:TrSEhrL1xHfJVy6n05AUwFdcQndgwrbgL5ybPNKWmVY=
-github.com/valyala/bytebufferpool v1.0.0/go.mod h1:6bBcMArwyJ5K/AmCkWv1jt77kVWyCJ6HpOuEn7z0Csc=
-github.com/valyala/fasttemplate v1.2.2/go.mod h1:KHLXt3tVN2HBp8eijSv/kGJopbvo7S+qRAEEKiv+SiQ=
-github.com/vishvananda/netlink v1.1.0/go.mod h1:cTgwzPIzzgDAYoQrMm0EdrjRUBkTqKYppBueQtXaqoE=
-github.com/vishvananda/netns v0.0.0-20191106174202-0a2b9b5464df/go.mod h1:JP3t17pCcGlemwknint6hfoeCVQrEMVwxRLRjXpq+BU=
-github.com/xhit/go-str2duration/v2 v2.1.0/go.mod h1:ohY8p+0f07DiV6Em5LKB0s2YpLtXVyJfNt1+BlmyAsU=
-github.com/xi2/xz v0.0.0-20171230120015-48954b6210f8/go.mod h1:HUYIGzjTL3rfEspMxjDjgmT5uz5wzYJKVo23qUhYTos=
-github.com/xiang90/probing v0.0.0-20221125231312-a49e3df8f510/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
-go.etcd.io/bbolt v1.3.11/go.mod h1:dksAq7YMXoljX0xu6VF5DMZGbhYYoLUalEiSySYAS4I=
-go.etcd.io/etcd/api/v3 v3.5.16/go.mod h1:1P4SlIP/VwkDmGo3OlOD7faPeP8KDIFhqvciH5EfN28=
-go.etcd.io/etcd/client/pkg/v3 v3.5.16/go.mod h1:V8acl8pcEK0Y2g19YlOV9m9ssUe6MgiDSobSoaBAM0E=
-go.etcd.io/etcd/client/v2 v2.305.16/go.mod h1:h9YxWCzcdvZENbfzBTFCnoNumr2ax3F19sKMqHFmXHE=
-go.etcd.io/etcd/client/v3 v3.5.16/go.mod h1:X+rExSGkyqxvu276cr2OwPLBaeqFu1cIl4vmRjAD/50=
-go.etcd.io/etcd/pkg/v3 v3.5.16/go.mod h1:+lutCZHG5MBBFI/U4eYT5yL7sJfnexsoM20Y0t2uNuY=
-go.etcd.io/etcd/raft/v3 v3.5.16/go.mod h1:P4UP14AxofMJ/54boWilabqqWoW9eLodl6I5GdGzazI=
-go.etcd.io/etcd/server/v3 v3.5.16/go.mod h1:ynhyZZpdDp1Gq49jkUg5mfkDWZwXnn3eIqCqtJnrD/s=
-go.opentelemetry.io/contrib/detectors/gcp v1.31.0/go.mod h1:tzQL6E1l+iV44YFTkcAeNQqzXUiekSYP9jjJjXwEd00=
-go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.53.0/go.mod h1:azvtTADFQJA8mX80jIH/akaE7h+dbm/sVuaHqN13w74=
-go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.53.0/go.mod h1:jjdQuTGVsXV4vSs+CJ2qYDeDPf9yIJV23qlIzBm73Vg=
-go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.28.0/go.mod h1:s75jGIWA9OfCMzF0xr+ZgfrB5FEbbV7UuYo32ahUiFI=
-go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.27.0/go.mod h1:MOiCmryaYtc+V0Ei+Tx9o5S1ZjA7kzLucuVuyzBZloQ=
-go.opentelemetry.io/proto/otlp v1.3.1/go.mod h1:0X1WI4de4ZsLrrJNLAQbFeLCm3T7yBkR0XqQ7niQU+8=
-golang.org/x/arch v0.3.0/go.mod h1:5om86z9Hs0C8fWVUuoMHwpExlXzs5Tkyp9hOrfG7pp8=
-golang.org/x/mod v0.9.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
-golang.org/x/mod v0.17.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
-golang.org/x/net v0.30.0/go.mod h1:2wGyMJ5iFasEhkwi13ChkO/t1ECNC4X4eBKkVFyYFlU=
-golang.org/x/net v0.32.0/go.mod h1:CwU0IoeOlnQQWJ6ioyFrfRuomB8GKF6KbYXZVyeXNfs=
-golang.org/x/sys v0.0.0-20220310020820-b874c991c1a5/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.25.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.26.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/telemetry v0.0.0-20240521205824-bda55230c457/go.mod h1:pRgIJT+bRLFKnoM1ldnzKoxTIn14Yxz928LQRYYgIN0=
-golang.org/x/text v0.19.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
-golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
-golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk=
-golang.org/x/tools v0.26.0/go.mod h1:TPVVj70c7JJ3WCazhD8OdXcZg/og+b9+tH/KxylGwH0=
-google.golang.org/genproto v0.0.0-20240123012728-ef4313101c80/go.mod h1:cc8bqMqtv9gMOr0zHg2Vzff5ULhhL2IXP4sbcn32Dro=
-google.golang.org/genproto/googleapis/api v0.0.0-20241015192408-796eee8c2d53/go.mod h1:riSXTwQ4+nqmPGtobMFyW5FqVAmIs0St6VPp4Ug7CE4=
-google.golang.org/protobuf v1.35.1/go.mod h1:9fA7Ob0pmnwhb644+1+CVWFRbNajQ6iRojtC/QF5bRE=
-gopkg.in/natefinch/lumberjack.v2 v2.2.1/go.mod h1:YD8tP3GAjkrDg1eZH7EGmyESg/lsYskCTPBJVb9jqSc=
-gopkg.in/square/go-jose.v2 v2.6.0/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
-k8s.io/kms v0.32.0/go.mod h1:Bk2evz/Yvk0oVrvm4MvZbgq8BD34Ksxs2SRHn4/UiOM=
-sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.31.0/go.mod h1:Ve9uj1L+deCXFrPOk1LpFXqTg7LCFzFso6PA48q/XZw=

From 0374af94ef9cbf2b50aa57ae8ae68c7dbafec290 Mon Sep 17 00:00:00 2001
From: Till Backhaus <tback@users.noreply.github.com>
Date: Fri, 17 Jan 2025 09:38:06 +0100
Subject: [PATCH 1606/1641] Docs: Clarify rate limits are per ingress
 controller replica. (#12714)

Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 docs/user-guide/nginx-configuration/annotations.md | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

diff --git a/docs/user-guide/nginx-configuration/annotations.md b/docs/user-guide/nginx-configuration/annotations.md
index e69808834..b0ea3cce3 100755
--- a/docs/user-guide/nginx-configuration/annotations.md
+++ b/docs/user-guide/nginx-configuration/annotations.md
@@ -550,10 +550,15 @@ By default the controller redirects all requests to an existing service that pro
 
 These annotations define limits on connections and transmission rates.  These can be used to mitigate [DDoS Attacks](https://www.nginx.com/blog/mitigating-ddos-attacks-with-nginx-and-nginx-plus).
 
-* `nginx.ingress.kubernetes.io/limit-connections`: number of concurrent connections allowed from a single IP address. A 503 error is returned when exceeding this limit.
-* `nginx.ingress.kubernetes.io/limit-rps`: number of requests accepted from a given IP each second. The burst limit is set to this limit multiplied by the burst multiplier, the default multiplier is 5. When clients exceed this limit,  [limit-req-status-code](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#limit-req-status-code) ***default:*** 503 is returned.
-* `nginx.ingress.kubernetes.io/limit-rpm`: number of requests accepted from a given IP each minute. The burst limit is set to this limit multiplied by the burst multiplier, the default multiplier is 5. When clients exceed this limit,  [limit-req-status-code](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#limit-req-status-code) ***default:*** 503 is returned.
-* `nginx.ingress.kubernetes.io/limit-burst-multiplier`: multiplier of the limit rate for burst size. The default burst multiplier is 5, this annotation override the default multiplier. When clients exceed this limit,  [limit-req-status-code](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#limit-req-status-code) ***default:*** 503 is returned.
+!!! attention
+    Rate limits are applied per Ingress NGINX controller replica. 
+    If you're running multiple replicas or using a horizontal pod autoscaler (HPA), the effective rate limit will be multiplied by the number of replicas.
+    When using HPA, the exact rate limit becomes dynamic as the number of replicas may change based on load.
+
+* `nginx.ingress.kubernetes.io/limit-connections`: number of concurrent connections allowed from a single IP address per controller replica. A 503 error is returned when exceeding this limit.
+* `nginx.ingress.kubernetes.io/limit-rps`: number of requests accepted from a given IP each second per controller replica. The burst limit is set to this limit multiplied by the burst multiplier, the default multiplier is 5. When clients exceed this limit, [limit-req-status-code](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#limit-req-status-code) ***default:*** 503 is returned.
+* `nginx.ingress.kubernetes.io/limit-rpm`: number of requests accepted from a given IP each minute per controller replica. The burst limit is set to this limit multiplied by the burst multiplier, the default multiplier is 5. When clients exceed this limit, [limit-req-status-code](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#limit-req-status-code) ***default:*** 503 is returned.
+* `nginx.ingress.kubernetes.io/limit-burst-multiplier`: multiplier of the limit rate for burst size. The default burst multiplier is 5, this annotation override the default multiplier. When clients exceed this limit, [limit-req-status-code](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#limit-req-status-code) ***default:*** 503 is returned.
 * `nginx.ingress.kubernetes.io/limit-rate-after`: initial number of kilobytes after which the further transmission of a response to a given connection will be rate limited. This feature must be used with [proxy-buffering](#proxy-buffering) enabled.
 * `nginx.ingress.kubernetes.io/limit-rate`: number of kilobytes per second allowed to send to a given connection.  The zero value disables rate limiting. This feature must be used with [proxy-buffering](#proxy-buffering) enabled.
 * `nginx.ingress.kubernetes.io/limit-whitelist`: client IP source ranges to be excluded from rate-limiting. The value is a comma separated list of CIDRs.

From d1411dafdcabf275e33a0a76544739f57c303c64 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Jan 2025 07:48:36 -0800
Subject: [PATCH 1607/1641] Bump golangci/golangci-lint-action from 6.1.1 to
 6.2.0 in the actions group (#12720)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/golangci-lint.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 942ef9a6d..199a9db50 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -28,7 +28,7 @@ jobs:
           check-latest: true
 
       - name: golangci-lint
-        uses: golangci/golangci-lint-action@971e284b6050e8a5849b72094c50ab08da042db8 # v6.1.1
+        uses: golangci/golangci-lint-action@ec5d18412c0aeab7936cb16880d708ba2a64e1ae # v6.2.0
         with:
           version: v1.62
           only-new-issues: true

From 83f095950828bd3a92b7e498ff7b2e49b6407c18 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Jan 2025 07:50:36 -0800
Subject: [PATCH 1608/1641] Bump the go group across 3 directories with 9
 updates (#12721)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod                                        | 16 +++++-----
 go.sum                                        | 32 +++++++++----------
 images/ext-auth-example-authsvc/rootfs/go.mod |  2 +-
 images/ext-auth-example-authsvc/rootfs/go.sum |  4 +--
 images/kube-webhook-certgen/rootfs/go.mod     |  8 ++---
 images/kube-webhook-certgen/rootfs/go.sum     | 16 +++++-----
 6 files changed, 39 insertions(+), 39 deletions(-)

diff --git a/go.mod b/go.mod
index 91ab5be2e..1b3300d67 100644
--- a/go.mod
+++ b/go.mod
@@ -31,14 +31,14 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.32.0
-	k8s.io/apiextensions-apiserver v0.32.0
-	k8s.io/apimachinery v0.32.0
-	k8s.io/apiserver v0.32.0
-	k8s.io/cli-runtime v0.32.0
-	k8s.io/client-go v0.32.0
-	k8s.io/code-generator v0.32.0
-	k8s.io/component-base v0.32.0
+	k8s.io/api v0.32.1
+	k8s.io/apiextensions-apiserver v0.32.1
+	k8s.io/apimachinery v0.32.1
+	k8s.io/apiserver v0.32.1
+	k8s.io/cli-runtime v0.32.1
+	k8s.io/client-go v0.32.1
+	k8s.io/code-generator v0.32.1
+	k8s.io/component-base v0.32.1
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
 	sigs.k8s.io/controller-runtime v0.19.4
diff --git a/go.sum b/go.sum
index 0ca74e190..f6e6ecdb1 100644
--- a/go.sum
+++ b/go.sum
@@ -342,22 +342,22 @@ gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.32.0 h1:OL9JpbvAU5ny9ga2fb24X8H6xQlVp+aJMFlgtQjR9CE=
-k8s.io/api v0.32.0/go.mod h1:4LEwHZEf6Q/cG96F3dqR965sYOfmPM7rq81BLgsE0p0=
-k8s.io/apiextensions-apiserver v0.32.0 h1:S0Xlqt51qzzqjKPxfgX1xh4HBZE+p8KKBq+k2SWNOE0=
-k8s.io/apiextensions-apiserver v0.32.0/go.mod h1:86hblMvN5yxMvZrZFX2OhIHAuFIMJIZ19bTvzkP+Fmw=
-k8s.io/apimachinery v0.32.0 h1:cFSE7N3rmEEtv4ei5X6DaJPHHX0C+upp+v5lVPiEwpg=
-k8s.io/apimachinery v0.32.0/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
-k8s.io/apiserver v0.32.0 h1:VJ89ZvQZ8p1sLeiWdRJpRD6oLozNZD2+qVSLi+ft5Qs=
-k8s.io/apiserver v0.32.0/go.mod h1:HFh+dM1/BE/Hm4bS4nTXHVfN6Z6tFIZPi649n83b4Ag=
-k8s.io/cli-runtime v0.32.0 h1:dP+OZqs7zHPpGQMCGAhectbHU2SNCuZtIimRKTv2T1c=
-k8s.io/cli-runtime v0.32.0/go.mod h1:Mai8ht2+esoDRK5hr861KRy6z0zHsSTYttNVJXgP3YQ=
-k8s.io/client-go v0.32.0 h1:DimtMcnN/JIKZcrSrstiwvvZvLjG0aSxy8PxN8IChp8=
-k8s.io/client-go v0.32.0/go.mod h1:boDWvdM1Drk4NJj/VddSLnx59X3OPgwrOo0vGbtq9+8=
-k8s.io/code-generator v0.32.0 h1:s0lNN8VSWny8LBz5t5iy7MCdgwdOhdg7vAGVxvS+VWU=
-k8s.io/code-generator v0.32.0/go.mod h1:b7Q7KMZkvsYFy72A79QYjiv4aTz3GvW0f1T3UfhFq4s=
-k8s.io/component-base v0.32.0 h1:d6cWHZkCiiep41ObYQS6IcgzOUQUNpywm39KVYaUqzU=
-k8s.io/component-base v0.32.0/go.mod h1:JLG2W5TUxUu5uDyKiH2R/7NnxJo1HlPoRIIbVLkK5eM=
+k8s.io/api v0.32.1 h1:f562zw9cy+GvXzXf0CKlVQ7yHJVYzLfL6JAS4kOAaOc=
+k8s.io/api v0.32.1/go.mod h1:/Yi/BqkuueW1BgpoePYBRdDYfjPF5sgTr5+YqDZra5k=
+k8s.io/apiextensions-apiserver v0.32.1 h1:hjkALhRUeCariC8DiVmb5jj0VjIc1N0DREP32+6UXZw=
+k8s.io/apiextensions-apiserver v0.32.1/go.mod h1:sxWIGuGiYov7Io1fAS2X06NjMIk5CbRHc2StSmbaQto=
+k8s.io/apimachinery v0.32.1 h1:683ENpaCBjma4CYqsmZyhEzrGz6cjn1MY/X2jB2hkZs=
+k8s.io/apimachinery v0.32.1/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
+k8s.io/apiserver v0.32.1 h1:oo0OozRos66WFq87Zc5tclUX2r0mymoVHRq8JmR7Aak=
+k8s.io/apiserver v0.32.1/go.mod h1:UcB9tWjBY7aryeI5zAgzVJB/6k7E97bkr1RgqDz0jPw=
+k8s.io/cli-runtime v0.32.1 h1:19nwZPlYGJPUDbhAxDIS2/oydCikvKMHsxroKNGA2mM=
+k8s.io/cli-runtime v0.32.1/go.mod h1:NJPbeadVFnV2E7B7vF+FvU09mpwYlZCu8PqjzfuOnkY=
+k8s.io/client-go v0.32.1 h1:otM0AxdhdBIaQh7l1Q0jQpmo7WOFIk5FFa4bg6YMdUU=
+k8s.io/client-go v0.32.1/go.mod h1:aTTKZY7MdxUaJ/KiUs8D+GssR9zJZi77ZqtzcGXIiDg=
+k8s.io/code-generator v0.32.1 h1:4lw1kFNDuFYXquTkB7Sl5EwPMUP2yyW9hh6BnFfRZFY=
+k8s.io/code-generator v0.32.1/go.mod h1:zaILfm00CVyP/6/pJMJ3zxRepXkxyDfUV5SNG4CjZI4=
+k8s.io/component-base v0.32.1 h1:/5IfJ0dHIKBWysGV0yKTFfacZ5yNV1sulPh3ilJjRZk=
+k8s.io/component-base v0.32.1/go.mod h1:j1iMMHi/sqAHeG5z+O9BFNCF698a1u0186zkjMZQ28w=
 k8s.io/gengo/v2 v2.0.0-20240911193312-2b36238f13e9 h1:si3PfKm8dDYxgfbeA6orqrtLkvvIeH8UqffFJDl0bz4=
 k8s.io/gengo/v2 v2.0.0-20240911193312-2b36238f13e9/go.mod h1:EJykeLsmFC60UQbYJezXkEsG2FLrt0GPNkU5iK5GWxU=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index f3e7ba804..c90ef9aaf 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -2,6 +2,6 @@ module example.com/authsvc
 
 go 1.23.4
 
-require k8s.io/apimachinery v0.32.0
+require k8s.io/apimachinery v0.32.1
 
 require github.com/google/uuid v1.6.0 // indirect
diff --git a/images/ext-auth-example-authsvc/rootfs/go.sum b/images/ext-auth-example-authsvc/rootfs/go.sum
index 8984e1828..17a075fd0 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.sum
+++ b/images/ext-auth-example-authsvc/rootfs/go.sum
@@ -1,4 +1,4 @@
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-k8s.io/apimachinery v0.32.0 h1:cFSE7N3rmEEtv4ei5X6DaJPHHX0C+upp+v5lVPiEwpg=
-k8s.io/apimachinery v0.32.0/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
+k8s.io/apimachinery v0.32.1 h1:683ENpaCBjma4CYqsmZyhEzrGz6cjn1MY/X2jB2hkZs=
+k8s.io/apimachinery v0.32.1/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index d1fcf4909..e0e50678c 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -6,10 +6,10 @@ require (
 	github.com/onrik/logrus v0.11.0
 	github.com/sirupsen/logrus v1.9.3
 	github.com/spf13/cobra v1.8.1
-	k8s.io/api v0.32.0
-	k8s.io/apimachinery v0.32.0
-	k8s.io/client-go v0.32.0
-	k8s.io/kube-aggregator v0.32.0
+	k8s.io/api v0.32.1
+	k8s.io/apimachinery v0.32.1
+	k8s.io/client-go v0.32.1
+	k8s.io/kube-aggregator v0.32.1
 )
 
 require (
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 429552b0e..10fb1e113 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -141,16 +141,16 @@ gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.32.0 h1:OL9JpbvAU5ny9ga2fb24X8H6xQlVp+aJMFlgtQjR9CE=
-k8s.io/api v0.32.0/go.mod h1:4LEwHZEf6Q/cG96F3dqR965sYOfmPM7rq81BLgsE0p0=
-k8s.io/apimachinery v0.32.0 h1:cFSE7N3rmEEtv4ei5X6DaJPHHX0C+upp+v5lVPiEwpg=
-k8s.io/apimachinery v0.32.0/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
-k8s.io/client-go v0.32.0 h1:DimtMcnN/JIKZcrSrstiwvvZvLjG0aSxy8PxN8IChp8=
-k8s.io/client-go v0.32.0/go.mod h1:boDWvdM1Drk4NJj/VddSLnx59X3OPgwrOo0vGbtq9+8=
+k8s.io/api v0.32.1 h1:f562zw9cy+GvXzXf0CKlVQ7yHJVYzLfL6JAS4kOAaOc=
+k8s.io/api v0.32.1/go.mod h1:/Yi/BqkuueW1BgpoePYBRdDYfjPF5sgTr5+YqDZra5k=
+k8s.io/apimachinery v0.32.1 h1:683ENpaCBjma4CYqsmZyhEzrGz6cjn1MY/X2jB2hkZs=
+k8s.io/apimachinery v0.32.1/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
+k8s.io/client-go v0.32.1 h1:otM0AxdhdBIaQh7l1Q0jQpmo7WOFIk5FFa4bg6YMdUU=
+k8s.io/client-go v0.32.1/go.mod h1:aTTKZY7MdxUaJ/KiUs8D+GssR9zJZi77ZqtzcGXIiDg=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
 k8s.io/klog/v2 v2.130.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
-k8s.io/kube-aggregator v0.32.0 h1:5ZyMW3QwAbmkasQrROcpa5we3et938DQuyUYHeXSPao=
-k8s.io/kube-aggregator v0.32.0/go.mod h1:6OKivf6Ypx44qu2v1ZUMrxH8kRp/8LKFKeJU72J18lU=
+k8s.io/kube-aggregator v0.32.1 h1:cztPyIHbo6tgrhYHDqmdmvxUufJKuxgAC/vog7yeWek=
+k8s.io/kube-aggregator v0.32.1/go.mod h1:sXjL5T8FO/rlBzTbBhahw9V5Nnr1UtzZHKTj9WxQCOU=
 k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f h1:GA7//TjRY9yWGy1poLzYYJJ4JRdzg3+O6e8I+e+8T5Y=
 k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f/go.mod h1:R/HEjbvWI0qdfb8viZUeVZm0X6IZnxAydC7YU42CMw4=
 k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 h1:M3sRQVHv7vB20Xc2ybTt7ODCeFj6JSWYFzOFnYeS6Ro=

From cd2aa473b1b3c398e8dbf63d8fff8ff7071ce51d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Jan 2025 07:52:35 -0800
Subject: [PATCH 1609/1641] Bump github.com/prometheus/common from 0.61.0 to
 0.62.0 (#12722)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 1b3300d67..568b5cb96 100644
--- a/go.mod
+++ b/go.mod
@@ -19,7 +19,7 @@ require (
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.5
 	github.com/prometheus/client_model v0.6.1
-	github.com/prometheus/common v0.61.0
+	github.com/prometheus/common v0.62.0
 	github.com/spf13/cobra v1.8.1
 	github.com/spf13/pflag v1.0.5
 	github.com/stretchr/testify v1.10.0
diff --git a/go.sum b/go.sum
index f6e6ecdb1..0a98313bb 100644
--- a/go.sum
+++ b/go.sum
@@ -184,8 +184,8 @@ github.com/prometheus/client_golang v1.20.5 h1:cxppBPuYhUnsO6yo/aoRol4L7q7UFfdm+
 github.com/prometheus/client_golang v1.20.5/go.mod h1:PIEt8X02hGcP8JWbeHyeZ53Y/jReSnHgO035n//V5WE=
 github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E=
 github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY=
-github.com/prometheus/common v0.61.0 h1:3gv/GThfX0cV2lpO7gkTUwZru38mxevy90Bj8YFSRQQ=
-github.com/prometheus/common v0.61.0/go.mod h1:zr29OCN/2BsJRaFwG8QOBr41D6kkchKbpeNH7pAjb/s=
+github.com/prometheus/common v0.62.0 h1:xasJaQlnWAeyHdUBeGjXmutelfJHWMRr+Fg4QszZ2Io=
+github.com/prometheus/common v0.62.0/go.mod h1:vyBcEuLSvWos9B1+CyL7JZ2up+uFzXhkqml0W5zIY1I=
 github.com/prometheus/procfs v0.15.1 h1:YagwOFzUgYfKKHX6Dr+sHT7km/hxC76UB0learggepc=
 github.com/prometheus/procfs v0.15.1/go.mod h1:fB45yRUv8NstnjriLhBQLuOUt+WW4BsoGhij/e3PBqk=
 github.com/rogpeppe/go-internal v1.12.0 h1:exVL4IDcn6na9z1rAb56Vxr+CgyK3nn3O+epU5NdKM8=

From bacee47448595e0cf328d420518cde3e1258fe97 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 20 Jan 2025 08:42:37 -0800
Subject: [PATCH 1610/1641] Bump sigs.k8s.io/controller-runtime from 0.19.4 to
 0.20.0 (#12723)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 4 ++--
 go.sum | 8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/go.mod b/go.mod
index 568b5cb96..b33e499ce 100644
--- a/go.mod
+++ b/go.mod
@@ -41,7 +41,7 @@ require (
 	k8s.io/component-base v0.32.1
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.19.4
+	sigs.k8s.io/controller-runtime v0.20.0
 	sigs.k8s.io/mdtoc v1.4.0
 )
 
@@ -81,7 +81,7 @@ require (
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/protobuf v1.5.4 // indirect
 	github.com/gomarkdown/markdown v0.0.0-20240328165702-4d01890c35c0 // indirect
-	github.com/google/btree v1.1.2 // indirect
+	github.com/google/btree v1.1.3 // indirect
 	github.com/google/gnostic-models v0.6.8 // indirect
 	github.com/google/go-cmp v0.6.0 // indirect
 	github.com/google/gofuzz v1.2.0 // indirect
diff --git a/go.sum b/go.sum
index 0a98313bb..d3b078355 100644
--- a/go.sum
+++ b/go.sum
@@ -77,8 +77,8 @@ github.com/golang/protobuf v1.5.4 h1:i7eJL8qZTpSEXOPTxNKhASYpMn+8e5Q6AdndVa1dWek
 github.com/golang/protobuf v1.5.4/go.mod h1:lnTiLA8Wa4RWRcIUkrtSVa5nRhsEGBg48fD6rSs7xps=
 github.com/gomarkdown/markdown v0.0.0-20240328165702-4d01890c35c0 h1:4gjrh/PN2MuWCCElk8/I4OCKRKWCCo2zEct3VKCbibU=
 github.com/gomarkdown/markdown v0.0.0-20240328165702-4d01890c35c0/go.mod h1:JDGcbDT52eL4fju3sZ4TeHGsQwhG9nbDV21aMyhwPoA=
-github.com/google/btree v1.1.2 h1:xf4v41cLI2Z6FxbKm+8Bu+m8ifhj15JuZ9sa0jZCMUU=
-github.com/google/btree v1.1.2/go.mod h1:qOPhT0dTNdNzV6Z/lhRX0YXUafgPLFUh+gZMl761Gm4=
+github.com/google/btree v1.1.3 h1:CVpQJjYgC4VbzxeGVHfvZrv1ctoYCAI8vbl07Fcxlyg=
+github.com/google/btree v1.1.3/go.mod h1:qOPhT0dTNdNzV6Z/lhRX0YXUafgPLFUh+gZMl761Gm4=
 github.com/google/gnostic-models v0.6.8 h1:yo/ABAfM5IMRsS1VnXjTBvUb61tFIHozhlYvRgGre9I=
 github.com/google/gnostic-models v0.6.8/go.mod h1:5n7qKqH0f5wFt+aWF8CW6pZLLNOfYuF5OpfBSENuI8U=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
@@ -368,8 +368,8 @@ k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 h1:M3sRQVHv7vB20Xc2ybTt7ODCeFj6J
 k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
-sigs.k8s.io/controller-runtime v0.19.4 h1:SUmheabttt0nx8uJtoII4oIP27BVVvAKFvdvGFwV/Qo=
-sigs.k8s.io/controller-runtime v0.19.4/go.mod h1:iRmWllt8IlaLjvTTDLhRBXIEtkCK6hwVBJJsYS9Ajf4=
+sigs.k8s.io/controller-runtime v0.20.0 h1:jjkMo29xEXH+02Md9qaVXfEIaMESSpy3TBWPrsfQkQs=
+sigs.k8s.io/controller-runtime v0.20.0/go.mod h1:BrP3w158MwvB3ZbNpaAcIKkHQ7YGpYnzpoSTZ8E14WU=
 sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 h1:/Rv+M11QRah1itp8VhT6HoVx1Ray9eB4DBr+K+/sCJ8=
 sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3/go.mod h1:18nIHnGi6636UCz6m8i4DhaJ65T6EruyzmoQqI2BVDo=
 sigs.k8s.io/kustomize/api v0.18.0 h1:hTzp67k+3NEVInwz5BHyzc9rGxIauoXferXyjv5lWPo=

From 06c990f80a1d88c06d6b2a42fd5360966cdf8214 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 22 Jan 2025 00:02:37 +0100
Subject: [PATCH 1611/1641] Go: Bump to v1.23.5. (#12717)

---
 GOLANG_VERSION                                | 2 +-
 go.mod                                        | 2 +-
 images/custom-error-pages/rootfs/go.mod       | 2 +-
 images/ext-auth-example-authsvc/rootfs/go.mod | 2 +-
 images/kube-webhook-certgen/rootfs/go.mod     | 2 +-
 magefiles/go.mod                              | 2 +-
 6 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/GOLANG_VERSION b/GOLANG_VERSION
index 27ddcc14d..ca8ec414e 100644
--- a/GOLANG_VERSION
+++ b/GOLANG_VERSION
@@ -1 +1 @@
-1.23.4
+1.23.5
diff --git a/go.mod b/go.mod
index b33e499ce..91748527f 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx
 
-go 1.23.4
+go 1.23.5
 
 require (
 	dario.cat/mergo v1.0.1
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index 274b81ab1..e221e8e41 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.23.4
+go 1.23.5
 
 require github.com/prometheus/client_golang v1.20.5
 
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index c90ef9aaf..8db2af11b 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,6 +1,6 @@
 module example.com/authsvc
 
-go 1.23.4
+go 1.23.5
 
 require k8s.io/apimachinery v0.32.1
 
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index e0e50678c..60d82d7a1 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,6 +1,6 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.23.4
+go 1.23.5
 
 require (
 	github.com/onrik/logrus v0.11.0
diff --git a/magefiles/go.mod b/magefiles/go.mod
index 9ee2bf363..5bb8b79ee 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/magefiles
 
-go 1.23.4
+go 1.23.5
 
 require (
 	github.com/blang/semver/v4 v4.0.0

From 133b02834cf4227d0a65d8b111563934307ddd56 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 22 Jan 2025 00:04:36 +0100
Subject: [PATCH 1612/1641] Images: Bump `gcb-docker-gcloud` to
 v20250116-2a05ea7e3d. (#12718)

---
 cloudbuild.yaml                             | 2 +-
 images/cfssl/cloudbuild.yaml                | 2 +-
 images/custom-error-pages/cloudbuild.yaml   | 2 +-
 images/e2e-test-echo/cloudbuild.yaml        | 2 +-
 images/fastcgi-helloserver/cloudbuild.yaml  | 2 +-
 images/httpbun/cloudbuild.yaml              | 2 +-
 images/kube-webhook-certgen/cloudbuild.yaml | 2 +-
 images/nginx/cloudbuild.yaml                | 2 +-
 images/test-runner/cloudbuild.yaml          | 2 +-
 9 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/cloudbuild.yaml b/cloudbuild.yaml
index 88ba9b935..cb74da0a5 100644
--- a/cloudbuild.yaml
+++ b/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
       - REPO_INFO=https://github.com/kubernetes/ingress-nginx
diff --git a/images/cfssl/cloudbuild.yaml b/images/cfssl/cloudbuild.yaml
index 658921d1a..612bae942 100644
--- a/images/cfssl/cloudbuild.yaml
+++ b/images/cfssl/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/custom-error-pages/cloudbuild.yaml b/images/custom-error-pages/cloudbuild.yaml
index 7a583e69d..7a37591f8 100644
--- a/images/custom-error-pages/cloudbuild.yaml
+++ b/images/custom-error-pages/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/e2e-test-echo/cloudbuild.yaml b/images/e2e-test-echo/cloudbuild.yaml
index a368f3489..ada4486a4 100644
--- a/images/e2e-test-echo/cloudbuild.yaml
+++ b/images/e2e-test-echo/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index 289a59c2d..9dc5588a1 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/httpbun/cloudbuild.yaml b/images/httpbun/cloudbuild.yaml
index cd3df273d..741a5ebee 100644
--- a/images/httpbun/cloudbuild.yaml
+++ b/images/httpbun/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/kube-webhook-certgen/cloudbuild.yaml b/images/kube-webhook-certgen/cloudbuild.yaml
index 443f24d0c..3f05ff099 100644
--- a/images/kube-webhook-certgen/cloudbuild.yaml
+++ b/images/kube-webhook-certgen/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index 4bf39adc8..c07c36a92 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash
diff --git a/images/test-runner/cloudbuild.yaml b/images/test-runner/cloudbuild.yaml
index 5b38d5b32..bec8f3694 100644
--- a/images/test-runner/cloudbuild.yaml
+++ b/images/test-runner/cloudbuild.yaml
@@ -2,7 +2,7 @@ options:
   # Ignore Prow provided substitutions.
   substitution_option: ALLOW_LOOSE
 steps:
-  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20241217-ff46a068cd
+  - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
       - REGISTRY=gcr.io/k8s-staging-ingress-nginx
     entrypoint: bash

From eb62c2a465939bba354aa00758d8d19b2c6467b5 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 22 Jan 2025 00:36:36 +0100
Subject: [PATCH 1613/1641] Development: Bump Kubernetes to v1.31.4. (#12733)

---
 build/dev-env.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/build/dev-env.sh b/build/dev-env.sh
index 699c98030..6bbd8c22c 100755
--- a/build/dev-env.sh
+++ b/build/dev-env.sh
@@ -64,7 +64,7 @@ echo "[dev-env] building image"
 make build image
 docker tag "${REGISTRY}/controller:${TAG}" "${DEV_IMAGE}"
 
-export K8S_VERSION=${K8S_VERSION:-v1.29.2@sha256:51a1434a5397193442f0be2a297b488b6c919ce8a3931be0ce822606ea5ca245}
+export K8S_VERSION=${K8S_VERSION:-v1.31.4@sha256:2cb39f7295fe7eafee0842b1052a599a4fb0f8bcf3f83d96c7f4864c357c6c30}
 
 KIND_CLUSTER_NAME="ingress-nginx-dev"
 

From 59a0da769de6f8a88852060321136c41dd571ef9 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 22 Jan 2025 00:48:36 +0100
Subject: [PATCH 1614/1641] Build: Always use local `tmp` dir on macOS.
 (#12734)

---
 build/run-in-docker.sh | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

diff --git a/build/run-in-docker.sh b/build/run-in-docker.sh
index bef0edbdb..c4f3b34e0 100755
--- a/build/run-in-docker.sh
+++ b/build/run-in-docker.sh
@@ -26,14 +26,11 @@ set -o nounset
 set -o pipefail
 
 # temporal directory for the /etc/ingress-controller directory
-if [[ "$OSTYPE" == darwin* ]] && [[ "$RUNTIME" == podman ]]; then
+if [[ "$OSTYPE" == darwin* ]]; then
   mkdir -p "tmp"
   INGRESS_VOLUME=$(pwd)/$(mktemp -d tmp/XXXXXX)
 else
   INGRESS_VOLUME=$(mktemp -d)
-  if [[ "$OSTYPE" == darwin* ]]; then
-    INGRESS_VOLUME=/private$INGRESS_VOLUME
-  fi
 fi
 
 # make sure directory for SSL cert storage exists under ingress volume

From fe91e8e4220a7efe43dbb20990e3dfd817cdb8f3 Mon Sep 17 00:00:00 2001
From: Samuel Arogbonlo <47984109+samuelarogbonlo@users.noreply.github.com>
Date: Wed, 22 Jan 2025 08:58:37 +0100
Subject: [PATCH 1615/1641] Chart: Add `controller.service.external.labels` &
 `controller.service.internal.labels`. (#12704)

---
 charts/ingress-nginx/README.md                       |  2 ++
 .../ci/controller-service-internal-values.yaml       |  2 ++
 .../ingress-nginx/ci/controller-service-values.yaml  |  4 ++++
 .../templates/controller-service-internal.yaml       |  3 +++
 .../ingress-nginx/templates/controller-service.yaml  |  3 +++
 .../tests/controller-service-internal_test.yaml      | 12 ++++++++++++
 .../ingress-nginx/tests/controller-service_test.yaml | 10 ++++++++++
 charts/ingress-nginx/values.yaml                     |  4 ++++
 8 files changed, 40 insertions(+)

diff --git a/charts/ingress-nginx/README.md b/charts/ingress-nginx/README.md
index dbb0f68c7..7d8c1e74f 100644
--- a/charts/ingress-nginx/README.md
+++ b/charts/ingress-nginx/README.md
@@ -447,6 +447,7 @@ metadata:
 | controller.service.enableHttps | bool | `true` | Enable the HTTPS listener on both controller services or not. |
 | controller.service.enabled | bool | `true` | Enable controller services or not. This does not influence the creation of either the admission webhook or the metrics service. |
 | controller.service.external.enabled | bool | `true` | Enable the external controller service or not. Useful for internal-only deployments. |
+| controller.service.external.labels | object | `{}` | Labels to be added to the external controller service. |
 | controller.service.externalIPs | list | `[]` | List of node IP addresses at which the external controller service is available. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#external-ips |
 | controller.service.externalTrafficPolicy | string | `""` | External traffic policy of the external controller service. Set to "Local" to preserve source IP on providers supporting it. Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip |
 | controller.service.internal.annotations | object | `{}` | Annotations to be added to the internal controller service. Mandatory for the internal controller service to be created. Varies with the cloud service. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer |
@@ -458,6 +459,7 @@ metadata:
 | controller.service.internal.externalTrafficPolicy | string | `""` | External traffic policy of the internal controller service. Set to "Local" to preserve source IP on providers supporting it. Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip |
 | controller.service.internal.ipFamilies | list | `["IPv4"]` | List of IP families (e.g. IPv4, IPv6) assigned to the internal controller service. This field is usually assigned automatically based on cluster configuration and the `ipFamilyPolicy` field. Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services |
 | controller.service.internal.ipFamilyPolicy | string | `"SingleStack"` | Represents the dual-stack capabilities of the internal controller service. Possible values are SingleStack, PreferDualStack or RequireDualStack. Fields `ipFamilies` and `clusterIP` depend on the value of this field. Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack/#services |
+| controller.service.internal.labels | object | `{}` | Labels to be added to the internal controller service. |
 | controller.service.internal.loadBalancerClass | string | `""` | Load balancer class of the internal controller service. Used by cloud providers to select a load balancer implementation other than the cloud provider default. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#load-balancer-class |
 | controller.service.internal.loadBalancerIP | string | `""` | Deprecated: Pre-defined IP address of the internal controller service. Used by cloud providers to connect the resulting load balancer service to a pre-existing static IP. Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer |
 | controller.service.internal.loadBalancerSourceRanges | list | `[]` | Restrict access to the internal controller service. Values must be CIDRs. Allows any source address by default. |
diff --git a/charts/ingress-nginx/ci/controller-service-internal-values.yaml b/charts/ingress-nginx/ci/controller-service-internal-values.yaml
index 11108fbce..01635e339 100644
--- a/charts/ingress-nginx/ci/controller-service-internal-values.yaml
+++ b/charts/ingress-nginx/ci/controller-service-internal-values.yaml
@@ -9,5 +9,7 @@ controller:
 
     internal:
       enabled: true
+      labels:
+        external-dns.alpha.kubernetes.io/hostname: internal.example.com
       annotations:
         service.beta.kubernetes.io/aws-load-balancer-internal: "true"
diff --git a/charts/ingress-nginx/ci/controller-service-values.yaml b/charts/ingress-nginx/ci/controller-service-values.yaml
index 9039368c2..4ba3debba 100644
--- a/charts/ingress-nginx/ci/controller-service-values.yaml
+++ b/charts/ingress-nginx/ci/controller-service-values.yaml
@@ -7,6 +7,10 @@ controller:
   service:
     type: NodePort
 
+    external:
+      labels:
+        external-dns.alpha.kubernetes.io/hostname: external.example.com
+
     nodePorts:
       tcp:
         9000: 30090
diff --git a/charts/ingress-nginx/templates/controller-service-internal.yaml b/charts/ingress-nginx/templates/controller-service-internal.yaml
index 24ac032ac..8d369526d 100644
--- a/charts/ingress-nginx/templates/controller-service-internal.yaml
+++ b/charts/ingress-nginx/templates/controller-service-internal.yaml
@@ -12,6 +12,9 @@ metadata:
   {{- if .Values.controller.service.labels }}
     {{- toYaml .Values.controller.service.labels | nindent 4 }}
   {{- end }}
+  {{- if .Values.controller.service.internal.labels }}
+    {{- toYaml .Values.controller.service.internal.labels | nindent 4 }}
+  {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}-internal
   namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
diff --git a/charts/ingress-nginx/templates/controller-service.yaml b/charts/ingress-nginx/templates/controller-service.yaml
index c56d957b1..36d2e4884 100644
--- a/charts/ingress-nginx/templates/controller-service.yaml
+++ b/charts/ingress-nginx/templates/controller-service.yaml
@@ -12,6 +12,9 @@ metadata:
   {{- if .Values.controller.service.labels }}
     {{- toYaml .Values.controller.service.labels | nindent 4 }}
   {{- end }}
+  {{- if .Values.controller.service.external.labels }}
+    {{- toYaml .Values.controller.service.external.labels | nindent 4 }}
+  {{- end }}
   name: {{ include "ingress-nginx.controller.fullname" . }}
   namespace: {{ include "ingress-nginx.namespace" . }}
 spec:
diff --git a/charts/ingress-nginx/tests/controller-service-internal_test.yaml b/charts/ingress-nginx/tests/controller-service-internal_test.yaml
index 268089406..c0ece07d5 100644
--- a/charts/ingress-nginx/tests/controller-service-internal_test.yaml
+++ b/charts/ingress-nginx/tests/controller-service-internal_test.yaml
@@ -61,3 +61,15 @@ tests:
       - equal:
           path: spec.trafficDistribution
           value: PreferClose
+
+  - it: should create a Service with labels if `controller.service.internal.labels` is set
+    set: 
+      controller.service.internal.enabled: true
+      controller.service.internal.annotations:
+        test.annotation: "true"
+      controller.service.internal.labels:
+        external-dns.alpha.kubernetes.io/hostname: internal.example.com
+    asserts:
+      - equal:
+          path: metadata.labels["external-dns.alpha.kubernetes.io/hostname"]
+          value: internal.example.com
diff --git a/charts/ingress-nginx/tests/controller-service_test.yaml b/charts/ingress-nginx/tests/controller-service_test.yaml
index 4741cdde9..f3e8cf030 100644
--- a/charts/ingress-nginx/tests/controller-service_test.yaml
+++ b/charts/ingress-nginx/tests/controller-service_test.yaml
@@ -62,3 +62,13 @@ tests:
       - equal:
           path: spec.trafficDistribution
           value: PreferClose
+
+  - it: should create a Service with labels if `controller.service.external.labels` is set
+    set:
+      controller.service.external.enabled: true
+      controller.service.external.labels:
+        external-dns.alpha.kubernetes.io/hostname: external.example.com
+    asserts:
+      - equal:
+          path: metadata.labels["external-dns.alpha.kubernetes.io/hostname"]
+          value: external.example.com
diff --git a/charts/ingress-nginx/values.yaml b/charts/ingress-nginx/values.yaml
index 9875b3693..ccebb9ceb 100644
--- a/charts/ingress-nginx/values.yaml
+++ b/charts/ingress-nginx/values.yaml
@@ -486,6 +486,8 @@ controller:
     external:
       # -- Enable the external controller service or not. Useful for internal-only deployments.
       enabled: true
+      # -- Labels to be added to the external controller service.
+      labels: {}
     # -- Annotations to be added to the external controller service. See `controller.service.internal.annotations` for annotations to be added to the internal controller service.
     annotations: {}
     # -- Labels to be added to both controller services.
@@ -574,6 +576,8 @@ controller:
     internal:
       # -- Enable the internal controller service or not. Remember to configure `controller.service.internal.annotations` when enabling this.
       enabled: false
+      # -- Labels to be added to the internal controller service.
+      labels: {}
       # -- Annotations to be added to the internal controller service. Mandatory for the internal controller service to be created. Varies with the cloud service.
       # Ref: https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer
       annotations: {}

From 36f2d40db984bb1a30e132633a4e74cbc7422646 Mon Sep 17 00:00:00 2001
From: Motte <37443982+dmotte@users.noreply.github.com>
Date: Wed, 22 Jan 2025 13:58:37 +0100
Subject: [PATCH 1616/1641] Docs: Improve bare-metal setup. (#12743)

---
 docs/deploy/baremetal.md         | 16 ++++++++++------
 docs/user-guide/miscellaneous.md |  4 +++-
 2 files changed, 13 insertions(+), 7 deletions(-)

diff --git a/docs/deploy/baremetal.md b/docs/deploy/baremetal.md
index f5ff54174..077d1e758 100644
--- a/docs/deploy/baremetal.md
+++ b/docs/deploy/baremetal.md
@@ -118,6 +118,8 @@ requests.
 
 ![NodePort request flow](../images/baremetal/nodeport.jpg)
 
+You can **customize the exposed node port numbers** by setting the `controller.service.nodePorts.*` Helm values, but they still have to be in the 30000-32767 range.
+
 !!! example
     Given the NodePort `30100` allocated to the `ingress-nginx` Service
 
@@ -152,7 +154,7 @@ requests.
 
 This approach has a few other limitations one ought to be aware of:
 
-* **Source IP address**
+### Source IP address
 
 Services of type NodePort perform [source address translation][nodeport-nat] by default. This means the source IP of a
 HTTP request is always **the IP address of the Kubernetes node that received the request** from the perspective of
@@ -191,7 +193,9 @@ field of the `ingress-nginx` Service spec to `Local` ([example][preserve-ip]).
     Requests sent to `host-2` and `host-3` would be forwarded to NGINX and original client's IP would be preserved,
     while requests to `host-1` would get dropped because there is no NGINX replica running on that node.
 
-* **Ingress status**
+Other ways to preserve the source IP in a NodePort setup are described here: [Source IP address](https://kubernetes.github.io/ingress-nginx/user-guide/miscellaneous/#source-ip-address).
+
+### Ingress status
 
 Because NodePort Services do not get a LoadBalancerIP assigned by definition, the Ingress-Nginx Controller **does not
 update the status of Ingress objects it manages**.
@@ -241,7 +245,7 @@ Service.
     test-ingress   myapp.example.com   203.0.113.1,203.0.113.2,203.0.113.3   80
     ```
 
-* **Redirects**
+### Redirects
 
 As NGINX is **not aware of the port translation operated by the NodePort Service**, backend applications are responsible
 for generating redirect URLs that take into account the URL used by external clients, including the NodePort.
@@ -262,7 +266,7 @@ for generating redirect URLs that take into account the URL used by external cli
 [nodeport-def]: https://kubernetes.io/docs/concepts/services-networking/service/#type-nodeport
 [nodeport-nat]: https://kubernetes.io/docs/tutorials/services/source-ip/#source-ip-for-services-with-type-nodeport
 [pod-assign]: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/
-[preserve-ip]: https://github.com/kubernetes/ingress-nginx/blob/nginx-0.19.0/deploy/provider/aws/service-nlb.yaml#L12-L14
+[preserve-ip]: https://github.com/kubernetes/ingress-nginx/blob/ingress-nginx-3.15.2/deploy/static/provider/aws/deploy.yaml#L290
 
 ## Via the host network
 
@@ -326,13 +330,13 @@ configuration of the corresponding manifest at the user's discretion.
 
 Like with NodePorts, this approach has a few quirks it is important to be aware of.
 
-* **DNS resolution**
+### DNS resolution
 
 Pods configured with `hostNetwork: true` do not use the internal DNS resolver (i.e. *kube-dns* or *CoreDNS*), unless
 their `dnsPolicy` spec field is set to [`ClusterFirstWithHostNet`][dnspolicy]. Consider using this setting if NGINX is
 expected to resolve internal names for any reason.
 
-* **Ingress status**
+### Ingress status
 
 Because there is no Service exposing the Ingress-Nginx Controller in a configuration using the host network, the default
 `--publish-service` flag used in standard cloud setups **does not apply** and the status of all Ingress objects remains
diff --git a/docs/user-guide/miscellaneous.md b/docs/user-guide/miscellaneous.md
index 80a38db51..ee3d63056 100644
--- a/docs/user-guide/miscellaneous.md
+++ b/docs/user-guide/miscellaneous.md
@@ -4,9 +4,11 @@
 
 By default NGINX uses the content of the header `X-Forwarded-For` as the source of truth to get information about the client IP address. This works without issues in L7 **if we configure the setting `proxy-real-ip-cidr`** with the correct information of the IP/network address of trusted external load balancer.
 
+This setting can be enabled/disabled by setting [`use-forwarded-headers`](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#use-forwarded-headers).
+
 If the ingress controller is running in AWS we need to use the VPC IPv4 CIDR.
 
-Another option is to enable proxy protocol using `use-proxy-protocol: "true"`.
+Another option is to enable the **PROXY protocol** using [`use-proxy-protocol: "true"`](https://kubernetes.github.io/ingress-nginx/user-guide/nginx-configuration/configmap/#use-proxy-protocol).
 
 In this mode NGINX does not use the content of the header to get the source IP address of the connection.
 

From ea962016d998a233bd8e6264e45eb5a212c5d053 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 27 Jan 2025 08:23:23 -0800
Subject: [PATCH 1617/1641] Bump the actions group with 5 updates (#12753)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/chart.yaml               | 4 ++--
 .github/workflows/ci.yaml                  | 8 ++++----
 .github/workflows/golangci-lint.yml        | 2 +-
 .github/workflows/images.yaml              | 2 +-
 .github/workflows/plugin.yaml              | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/stale.yaml               | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 8 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/.github/workflows/chart.yaml b/.github/workflows/chart.yaml
index f2c017fd5..dc7359814 100644
--- a/.github/workflows/chart.yaml
+++ b/.github/workflows/chart.yaml
@@ -31,7 +31,7 @@ jobs:
         uses: azure/setup-helm@fe7b79cd5ee1e45176fcad797de68ecaf3ca4814 # v4.2.0
 
       - name: Set up Helm Chart Testing
-        uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
+        uses: helm/chart-testing-action@0d28d3144d3a25ea2cc349d6e59901c4ff469b3b # v2.7.0
 
       - name: Set up Artifact Hub
         run: |
@@ -55,7 +55,7 @@ jobs:
           ah lint --path charts/ingress-nginx
 
       - name: Release chart
-        uses: helm/chart-releaser-action@a917fd15b20e8b64b94d9158ad54cd6345335584 # v1.6.0
+        uses: helm/chart-releaser-action@cae68fefc6b5f367a0275617c9f83181ba54714f # v1.7.0
         env:
           CR_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           CR_RELEASE_NAME_TEMPLATE: helm-chart-{{ .Version }}
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 5aacdf2dd..c6bbe5106 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -102,7 +102,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
+        uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5.3.0
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
@@ -124,7 +124,7 @@ jobs:
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
       - name: Set up Go
         id: go
-        uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
+        uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5.3.0
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
@@ -153,7 +153,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
+        uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5.3.0
         with:
           go-version: ${{ steps.golangversion.outputs.version }}
           check-latest: true
@@ -226,7 +226,7 @@ jobs:
         uses: azure/setup-helm@fe7b79cd5ee1e45176fcad797de68ecaf3ca4814 # v4.2.0
 
       - name: Set up Helm Chart Testing
-        uses: helm/chart-testing-action@e6669bcd63d7cb57cb4380c33043eebe5d111992 # v2.6.1
+        uses: helm/chart-testing-action@0d28d3144d3a25ea2cc349d6e59901c4ff469b3b # v2.7.0
 
       - name: Set up Artifact Hub
         run: |
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 199a9db50..b69725dde 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -22,7 +22,7 @@ jobs:
 
       - name: Set up Go
         id: go
-        uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
+        uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5.3.0
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index c5f8f4648..4358e8f50 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -145,7 +145,7 @@ jobs:
 
     - name: Set up Go
       id: go
-      uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
+      uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5.3.0
       with:
         go-version: ${{ env.GOLANG_VERSION }}
         check-latest: true
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index a9c5c9248..8e203c373 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -20,7 +20,7 @@ jobs:
         run: echo "GOLANG_VERSION=$(cat GOLANG_VERSION)" >> $GITHUB_ENV
 
       - name: Set up Go
-        uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
+        uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5.3.0
         with:
           go-version: ${{ env.GOLANG_VERSION }}
           check-latest: true
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index 7d6424e5b..d94c7b336 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # v3.28.1
+        uses: github/codeql-action/upload-sarif@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # v3.28.5
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/stale.yaml b/.github/workflows/stale.yaml
index a7c245295..45a7cd320 100644
--- a/.github/workflows/stale.yaml
+++ b/.github/workflows/stale.yaml
@@ -13,7 +13,7 @@ jobs:
       pull-requests: write
 
     steps:
-      - uses: actions/stale@28ca1036281a5e5922ead5184a1bbf96e5fc984e # v9.0.0
+      - uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 # v9.1.0
         with:
           stale-issue-message: "This is stale, but we won't close it automatically, just bare in mind the maintainers may be busy with other tasks and will reach your issue ASAP. If you have any question or request to prioritize this, please reach `#ingress-nginx-dev` on Kubernetes Slack."
           stale-pr-message: "This is stale, but we won't close it automatically, just bare in mind the maintainers may be busy with other tasks and will reach your issue ASAP. If you have any question or request to prioritize this, please reach `#ingress-nginx-dev` on Kubernetes Slack."
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 6e4243f04..56e7c98cb 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # v3.28.1
+        uses: github/codeql-action/upload-sarif@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # v3.28.5
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 132f42c3a9679c4f90ec63dc593e4afb393c295c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 27 Jan 2025 08:25:24 -0800
Subject: [PATCH 1618/1641] Bump sigs.k8s.io/controller-runtime from 0.20.0 to
 0.20.1 in the go group across 1 directory (#12754)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/go.mod b/go.mod
index 91748527f..fb134d8ff 100644
--- a/go.mod
+++ b/go.mod
@@ -41,7 +41,7 @@ require (
 	k8s.io/component-base v0.32.1
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.20.0
+	sigs.k8s.io/controller-runtime v0.20.1
 	sigs.k8s.io/mdtoc v1.4.0
 )
 
diff --git a/go.sum b/go.sum
index d3b078355..84debcade 100644
--- a/go.sum
+++ b/go.sum
@@ -368,8 +368,8 @@ k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 h1:M3sRQVHv7vB20Xc2ybTt7ODCeFj6J
 k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
-sigs.k8s.io/controller-runtime v0.20.0 h1:jjkMo29xEXH+02Md9qaVXfEIaMESSpy3TBWPrsfQkQs=
-sigs.k8s.io/controller-runtime v0.20.0/go.mod h1:BrP3w158MwvB3ZbNpaAcIKkHQ7YGpYnzpoSTZ8E14WU=
+sigs.k8s.io/controller-runtime v0.20.1 h1:JbGMAG/X94NeM3xvjenVUaBjy6Ui4Ogd/J5ZtjZnHaE=
+sigs.k8s.io/controller-runtime v0.20.1/go.mod h1:BrP3w158MwvB3ZbNpaAcIKkHQ7YGpYnzpoSTZ8E14WU=
 sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 h1:/Rv+M11QRah1itp8VhT6HoVx1Ray9eB4DBr+K+/sCJ8=
 sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3/go.mod h1:18nIHnGi6636UCz6m8i4DhaJ65T6EruyzmoQqI2BVDo=
 sigs.k8s.io/kustomize/api v0.18.0 h1:hTzp67k+3NEVInwz5BHyzc9rGxIauoXferXyjv5lWPo=

From 01d0a20f68bc668a58967deeb808f749529396f9 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 27 Jan 2025 08:27:23 -0800
Subject: [PATCH 1619/1641] Bump google.golang.org/grpc from 1.69.4 to 1.70.0
 (#12755)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod |  8 ++++----
 go.sum | 28 ++++++++++++++--------------
 2 files changed, 18 insertions(+), 18 deletions(-)

diff --git a/go.mod b/go.mod
index fb134d8ff..d80985a43 100644
--- a/go.mod
+++ b/go.mod
@@ -27,7 +27,7 @@ require (
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.32.0
 	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
-	google.golang.org/grpc v1.69.4
+	google.golang.org/grpc v1.70.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
@@ -51,8 +51,8 @@ require (
 	github.com/klauspost/compress v1.17.9 // indirect
 	github.com/moby/sys/userns v0.1.0 // indirect
 	github.com/x448/float16 v0.8.4 // indirect
-	go.opentelemetry.io/otel v1.31.0 // indirect
-	go.opentelemetry.io/otel/trace v1.31.0 // indirect
+	go.opentelemetry.io/otel v1.32.0 // indirect
+	go.opentelemetry.io/otel/trace v1.32.0 // indirect
 	gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
 	sigs.k8s.io/release-utils v0.8.3 // indirect
 )
@@ -122,7 +122,7 @@ require (
 	golang.org/x/text v0.21.0 // indirect
 	golang.org/x/time v0.7.0 // indirect
 	golang.org/x/tools v0.28.0 // indirect
-	google.golang.org/genproto/googleapis/rpc v0.0.0-20241015192408-796eee8c2d53 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20241202173237-19429a94021a // indirect
 	google.golang.org/protobuf v1.36.1 // indirect
 	gopkg.in/go-playground/assert.v1 v1.2.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
diff --git a/go.sum b/go.sum
index 84debcade..c797b8308 100644
--- a/go.sum
+++ b/go.sum
@@ -224,16 +224,16 @@ github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9de
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30 h1:rzHvkiukOVYcf840FqAsHqBMhfLofvQIxWtczkGRklU=
 github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30/go.mod h1:/Hzu8ych2oXCs1iNI+MeASyFzWTncQ6nlu/wgqbqC2A=
-go.opentelemetry.io/otel v1.31.0 h1:NsJcKPIW0D0H3NgzPDHmo0WW6SptzPdqg/L1zsIm2hY=
-go.opentelemetry.io/otel v1.31.0/go.mod h1:O0C14Yl9FgkjqcCZAsE053C13OaddMYr/hz6clDkEJE=
-go.opentelemetry.io/otel/metric v1.31.0 h1:FSErL0ATQAmYHUIzSezZibnyVlft1ybhy4ozRPcF2fE=
-go.opentelemetry.io/otel/metric v1.31.0/go.mod h1:C3dEloVbLuYoX41KpmAhOqNriGbA+qqH6PQ5E5mUfnY=
-go.opentelemetry.io/otel/sdk v1.31.0 h1:xLY3abVHYZ5HSfOg3l2E5LUj2Cwva5Y7yGxnSW9H5Gk=
-go.opentelemetry.io/otel/sdk v1.31.0/go.mod h1:TfRbMdhvxIIr/B2N2LQW2S5v9m3gOQ/08KsbbO5BPT0=
-go.opentelemetry.io/otel/sdk/metric v1.31.0 h1:i9hxxLJF/9kkvfHppyLL55aW7iIJz4JjxTeYusH7zMc=
-go.opentelemetry.io/otel/sdk/metric v1.31.0/go.mod h1:CRInTMVvNhUKgSAMbKyTMxqOBC0zgyxzW55lZzX43Y8=
-go.opentelemetry.io/otel/trace v1.31.0 h1:ffjsj1aRouKewfr85U2aGagJ46+MvodynlQ1HYdmJys=
-go.opentelemetry.io/otel/trace v1.31.0/go.mod h1:TXZkRk7SM2ZQLtR6eoAWQFIHPvzQ06FJAsO1tJg480A=
+go.opentelemetry.io/otel v1.32.0 h1:WnBN+Xjcteh0zdk01SVqV55d/m62NJLJdIyb4y/WO5U=
+go.opentelemetry.io/otel v1.32.0/go.mod h1:00DCVSB0RQcnzlwyTfqtxSm+DRr9hpYrHjNGiBHVQIg=
+go.opentelemetry.io/otel/metric v1.32.0 h1:xV2umtmNcThh2/a/aCP+h64Xx5wsj8qqnkYZktzNa0M=
+go.opentelemetry.io/otel/metric v1.32.0/go.mod h1:jH7CIbbK6SH2V2wE16W05BHCtIDzauciCRLoc/SyMv8=
+go.opentelemetry.io/otel/sdk v1.32.0 h1:RNxepc9vK59A8XsgZQouW8ue8Gkb4jpWtJm9ge5lEG4=
+go.opentelemetry.io/otel/sdk v1.32.0/go.mod h1:LqgegDBjKMmb2GC6/PrTnteJG39I8/vJCAP9LlJXEjU=
+go.opentelemetry.io/otel/sdk/metric v1.32.0 h1:rZvFnvmvawYb0alrYkjraqJq0Z4ZUJAiyYCU9snn1CU=
+go.opentelemetry.io/otel/sdk/metric v1.32.0/go.mod h1:PWeZlq0zt9YkYAp3gjKZ0eicRYvOh1Gd+X99x6GHpCQ=
+go.opentelemetry.io/otel/trace v1.32.0 h1:WIC9mYrXf8TmY/EXuULKc8hR17vE+Hjv2cssQDe03fM=
+go.opentelemetry.io/otel/trace v1.32.0/go.mod h1:+i4rkvCraA+tG6AzwloGaCtkx53Fa+L+V8e9a7YvhT8=
 go.uber.org/goleak v1.3.0 h1:2K3zAYmnTNqV73imy9J1T3WC+gmCePx2hEGkimedGto=
 go.uber.org/goleak v1.3.0/go.mod h1:CoHD4mav9JJNrW/WLlf7HGZPjdw8EucARQHekz1X6bE=
 go.uber.org/multierr v1.11.0 h1:blXXJkSxSSfBVBlC76pxqeO+LN3aDfLQo+309xJstO0=
@@ -304,10 +304,10 @@ golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8T
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 gomodules.xyz/jsonpatch/v2 v2.4.0 h1:Ci3iUJyx9UeRx7CeFN8ARgGbkESwJK+KB9lLcWxY/Zw=
 gomodules.xyz/jsonpatch/v2 v2.4.0/go.mod h1:AH3dM2RI6uoBZxn3LVrfvJ3E0/9dG4cSrbuBJT4moAY=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20241015192408-796eee8c2d53 h1:X58yt85/IXCx0Y3ZwN6sEIKZzQtDEYaBWrDvErdXrRE=
-google.golang.org/genproto/googleapis/rpc v0.0.0-20241015192408-796eee8c2d53/go.mod h1:GX3210XPVPUjJbTUbvwI8f2IpZDMZuPJWDzDuebbviI=
-google.golang.org/grpc v1.69.4 h1:MF5TftSMkd8GLw/m0KM6V8CMOCY6NZ1NQDPGFgbTt4A=
-google.golang.org/grpc v1.69.4/go.mod h1:vyjdE6jLBI76dgpDojsFGNaHlxdjXN9ghpnd2o7JGZ4=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20241202173237-19429a94021a h1:hgh8P4EuoxpsuKMXX/To36nOFD7vixReXgn8lPGnt+o=
+google.golang.org/genproto/googleapis/rpc v0.0.0-20241202173237-19429a94021a/go.mod h1:5uTbfoYQed2U9p3KIj2/Zzm02PYhndfdmML0qC3q3FU=
+google.golang.org/grpc v1.70.0 h1:pWFv03aZoHzlRKHWicjsZytKAiYCtNS0dHbXnIdq7jQ=
+google.golang.org/grpc v1.70.0/go.mod h1:ofIJqVKDXx/JiXrwr2IG4/zwdH9txy3IlF40RmcJSQw=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab h1:tg8hvIl5RmFBuXlcJMuL0h4Psh1gx5Q5xEMwzBZIzWA=
 google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab/go.mod h1:liVNnGuZDITxuksuZ+BBvdy7FcJfeNk+efF9qgqNUmc=
 google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8=

From c2bab5a2c90ae1c3edbb4e05bb98b880184be51e Mon Sep 17 00:00:00 2001
From: Javier Alfonso <PhoneixSegovia@gmail.com>
Date: Mon, 3 Feb 2025 13:02:57 +0100
Subject: [PATCH 1620/1641] Docs: Fix character format. (#12770)

---
 docs/faq.md | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/docs/faq.md b/docs/faq.md
index 97d3325ca..ea1e4d308 100644
--- a/docs/faq.md
+++ b/docs/faq.md
@@ -165,8 +165,8 @@ default on the next breaking change release, set for 2.0.0.
 
 - When "`ingress.spec.rules.http.pathType=Exact`" or "`pathType=Prefix`", this
 validation will limit the characters accepted on the field "`ingress.spec.rules.http.paths.path`",
-to "`alphanumeric characters`", and  `"/," "_," "-."` Also, in this case,
-the path should start with `"/."`
+to "`alphanumeric characters`", and  "`/`", "`_`", "`-`". Also, in this case,
+the path should start with "`/`".
 
 - When the ingress resource path contains other characters (like on rewrite
 configurations), the pathType value should be "`ImplementationSpecific`".
@@ -175,7 +175,7 @@ configurations), the pathType value should be "`ImplementationSpecific`".
 
 - When this option is enabled, the validation will happen on the Admission
 Webhook. So if any new ingress object contains characters other than
-alphanumeric characters, and, `"/,","_","-"`, in the `path` field, but
+alphanumeric characters, and, "`/`", "`_`", "`-`", in the `path` field, but
 is not using `pathType` value as `ImplementationSpecific`, then the ingress
 object will be denied admission.
 

From d35c24e4a6c9890481d114ec51f4dc27a8f00701 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 3 Feb 2025 04:04:58 -0800
Subject: [PATCH 1621/1641] Bump the go group across 2 directories with 1
 update (#12771)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod                                    | 2 +-
 go.sum                                    | 3 ++-
 images/kube-webhook-certgen/rootfs/go.mod | 2 +-
 images/kube-webhook-certgen/rootfs/go.sum | 3 ++-
 4 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/go.mod b/go.mod
index d80985a43..d3bcf8246 100644
--- a/go.mod
+++ b/go.mod
@@ -21,7 +21,7 @@ require (
 	github.com/prometheus/client_model v0.6.1
 	github.com/prometheus/common v0.62.0
 	github.com/spf13/cobra v1.8.1
-	github.com/spf13/pflag v1.0.5
+	github.com/spf13/pflag v1.0.6
 	github.com/stretchr/testify v1.10.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
diff --git a/go.sum b/go.sum
index c797b8308..bf60b99be 100644
--- a/go.sum
+++ b/go.sum
@@ -197,8 +197,9 @@ github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ
 github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
 github.com/spf13/cobra v1.8.1 h1:e5/vxKd/rZsfSJMUX1agtjeTDf+qv1/JdBF8gg5k9ZM=
 github.com/spf13/cobra v1.8.1/go.mod h1:wHxEcudfqmLYa8iTfL+OuZPbBZkmvliBWKIezN3kD9Y=
-github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
+github.com/spf13/pflag v1.0.6 h1:jFzHGLGAlb3ruxLB8MhbI6A8+AQX/2eW4qeyNZXNp2o=
+github.com/spf13/pflag v1.0.6/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.5.2 h1:xuMeJ0Sdp5ZMRXx/aWO6RZxdr3beISkG5/G/aIRr3pY=
 github.com/stretchr/objx v0.5.2/go.mod h1:FRsXN1f5AsAjCGJKqEizvkpNtU+EGNCLh3NxZ/8L+MA=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 60d82d7a1..bab5f8775 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -36,7 +36,7 @@ require (
 	github.com/onsi/ginkgo/v2 v2.22.2 // indirect
 	github.com/onsi/gomega v1.36.2 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
-	github.com/spf13/pflag v1.0.5 // indirect
+	github.com/spf13/pflag v1.0.6 // indirect
 	github.com/x448/float16 v0.8.4 // indirect
 	golang.org/x/net v0.33.0 // indirect
 	golang.org/x/oauth2 v0.23.0 // indirect
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 10fb1e113..ba5876b08 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -72,8 +72,9 @@ github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ
 github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
 github.com/spf13/cobra v1.8.1 h1:e5/vxKd/rZsfSJMUX1agtjeTDf+qv1/JdBF8gg5k9ZM=
 github.com/spf13/cobra v1.8.1/go.mod h1:wHxEcudfqmLYa8iTfL+OuZPbBZkmvliBWKIezN3kD9Y=
-github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
+github.com/spf13/pflag v1.0.6 h1:jFzHGLGAlb3ruxLB8MhbI6A8+AQX/2eW4qeyNZXNp2o=
+github.com/spf13/pflag v1.0.6/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=

From e2b2aebed83724b42ccbe25959e9034a485b92f5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 3 Feb 2025 04:06:57 -0800
Subject: [PATCH 1622/1641] Bump the actions group with 2 updates (#12772)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/chart.yaml               | 2 +-
 .github/workflows/ci.yaml                  | 2 +-
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/chart.yaml b/.github/workflows/chart.yaml
index dc7359814..23109a001 100644
--- a/.github/workflows/chart.yaml
+++ b/.github/workflows/chart.yaml
@@ -23,7 +23,7 @@ jobs:
 
     steps:
       - name: Set up Python
-        uses: actions/setup-python@0b93645e9fea7318ecaed2b359559ac225c90a2b # v5.3.0
+        uses: actions/setup-python@42375524e23c412d93fb67b49958b491fce71c38 # v5.4.0
         with:
           python-version: 3.x
 
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index c6bbe5106..c4e035e79 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -218,7 +218,7 @@ jobs:
 
     steps:
       - name: Set up Python
-        uses: actions/setup-python@0b93645e9fea7318ecaed2b359559ac225c90a2b # v5.3.0
+        uses: actions/setup-python@42375524e23c412d93fb67b49958b491fce71c38 # v5.4.0
         with:
           python-version: 3.x
 
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index d94c7b336..b9b88a9d9 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # v3.28.5
+        uses: github/codeql-action/upload-sarif@dd746615b3b9d728a6a37ca2045b68ca76d4841a # v3.28.8
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 56e7c98cb..0215c5de2 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # v3.28.5
+        uses: github/codeql-action/upload-sarif@dd746615b3b9d728a6a37ca2045b68ca76d4841a # v3.28.8
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From 68a35a8a120b9f343d8df84be81049359e3b09f4 Mon Sep 17 00:00:00 2001
From: Eng Zer Jun <engzerjun@gmail.com>
Date: Mon, 3 Feb 2025 21:26:57 +0800
Subject: [PATCH 1623/1641] Go: Replace `golang.org/x/exp/slices` with
 `slices`. (#12779)

Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>
---
 go.mod                                             | 1 -
 go.sum                                             | 2 --
 internal/ingress/annotations/customheaders/main.go | 2 +-
 3 files changed, 1 insertion(+), 4 deletions(-)

diff --git a/go.mod b/go.mod
index d3bcf8246..c96d19c4f 100644
--- a/go.mod
+++ b/go.mod
@@ -26,7 +26,6 @@ require (
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
 	golang.org/x/crypto v0.32.0
-	golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56
 	google.golang.org/grpc v1.70.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
diff --git a/go.sum b/go.sum
index bf60b99be..7b46a41e1 100644
--- a/go.sum
+++ b/go.sum
@@ -246,8 +246,6 @@ golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.32.0 h1:euUpcYgM8WcP71gNpTqQCn6rC2t6ULUPiOzfWaXVVfc=
 golang.org/x/crypto v0.32.0/go.mod h1:ZnnJkOaASj8g0AjIduWNlq2NRxL0PlBrbKVyZ6V/Ugc=
-golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 h1:2dVuKD2vS7b0QIHQbpyTISPd0LeHDbnYEryqj5Q1ug8=
-golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbRXRL/OHtkFuWGRjvuhBJpk2IlY=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.22.0 h1:D4nJWe9zXqHOmWqj4VMOJhvzj7bEZg4wEYa759z1pH4=
diff --git a/internal/ingress/annotations/customheaders/main.go b/internal/ingress/annotations/customheaders/main.go
index bc0ef2eb5..d48018d8c 100644
--- a/internal/ingress/annotations/customheaders/main.go
+++ b/internal/ingress/annotations/customheaders/main.go
@@ -20,12 +20,12 @@ import (
 	"fmt"
 	"reflect"
 	"regexp"
+	"slices"
 
 	"k8s.io/klog/v2"
 
 	networking "k8s.io/api/networking/v1"
 
-	"golang.org/x/exp/slices"
 	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
 	ing_errors "k8s.io/ingress-nginx/internal/ingress/errors"
 	"k8s.io/ingress-nginx/internal/ingress/resolver"

From bdc5017cb0f23527d21d8c9e1677750b5a805167 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Mon, 3 Feb 2025 18:56:57 +0100
Subject: [PATCH 1624/1641] Development: Bump Kubernetes to v1.31.4. (#12782)

---
 test/e2e/run-chart-test.sh | 2 +-
 test/e2e/run-kind-e2e.sh   | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 68845f07e..4607aad78 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -62,7 +62,7 @@ export KUBECONFIG="${KUBECONFIG:-$HOME/.kube/kind-config-$KIND_CLUSTER_NAME}"
 if [ "${SKIP_CLUSTER_CREATION:-false}" = "false" ]; then
   echo "[dev-env] creating Kubernetes cluster with kind"
 
-  export K8S_VERSION=${K8S_VERSION:-v1.29.2@sha256:51a1434a5397193442f0be2a297b488b6c919ce8a3931be0ce822606ea5ca245}
+  export K8S_VERSION=${K8S_VERSION:-v1.31.4@sha256:2cb39f7295fe7eafee0842b1052a599a4fb0f8bcf3f83d96c7f4864c357c6c30}
 
   kind create cluster \
     --verbosity=${KIND_LOG_LEVEL} \
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index afcfe1800..8dd78212a 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -63,7 +63,7 @@ echo "Running e2e with nginx base image ${NGINX_BASE_IMAGE}"
 if [ "${SKIP_CLUSTER_CREATION}" = "false" ]; then
   echo "[dev-env] creating Kubernetes cluster with kind"
 
-  export K8S_VERSION=${K8S_VERSION:-v1.29.2@sha256:51a1434a5397193442f0be2a297b488b6c919ce8a3931be0ce822606ea5ca245}
+  export K8S_VERSION=${K8S_VERSION:-v1.31.4@sha256:2cb39f7295fe7eafee0842b1052a599a4fb0f8bcf3f83d96c7f4864c357c6c30}
 
   # delete the cluster if it exists
   if kind get clusters | grep "${KIND_CLUSTER_NAME}"; then

From 8e58582ddc04d11ecba557b0dace2ab0d56d5453 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 4 Feb 2025 08:27:13 +0100
Subject: [PATCH 1625/1641] CI: Update `kubectl` to v1.31.5. (#12786)

---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index c4e035e79..e0847bff7 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -172,7 +172,7 @@ jobs:
 
       - name: Prepare Host
         run: |
-          curl -LO https://dl.k8s.io/release/v1.27.3/bin/linux/amd64/kubectl
+          curl -LO https://dl.k8s.io/release/v1.31.5/bin/linux/amd64/kubectl
           chmod +x ./kubectl
           sudo mv ./kubectl /usr/local/bin/kubectl
 

From 240c249f7b63a01067c7ec6540b37f7e1968ce4d Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 4 Feb 2025 08:27:28 +0100
Subject: [PATCH 1626/1641] Images: Update `kubectl` to v1.31.5. (#12788)

---
 images/test-runner/Makefile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index 3db9a7977..a449a7cdf 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -50,7 +50,7 @@ image:
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
 		--build-arg GOLANG_VERSION=${GO_VERSION} \
 		--build-arg ETCD_VERSION=3.5.13-0 \
-		--build-arg K8S_RELEASE=v1.29.2 \
+		--build-arg K8S_RELEASE=v1.31.5 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
 		--build-arg RESTY_CLI_SHA=e5f4f3128af49ba5c4d039d0554e5ae91bbe05866f60eccfa96d3653274bff90 \
 		--build-arg LUAROCKS_VERSION=3.8.0 \
@@ -71,7 +71,7 @@ build: ensure-buildx
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
 		--build-arg GOLANG_VERSION=${GO_VERSION} \
 		--build-arg ETCD_VERSION=3.5.13-0 \
-		--build-arg K8S_RELEASE=v1.29.2 \
+		--build-arg K8S_RELEASE=v1.31.5 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
 		--build-arg RESTY_CLI_SHA=e5f4f3128af49ba5c4d039d0554e5ae91bbe05866f60eccfa96d3653274bff90 \
 		--build-arg LUAROCKS_VERSION=3.8.0 \

From 90eb6aac4f3fb6cd5edd84999bce4c96e8eaff58 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Tue, 4 Feb 2025 09:43:15 +0100
Subject: [PATCH 1627/1641] CI: Update Artifact Hub to v1.20.0. (#12785)

---
 .github/workflows/chart.yaml | 4 ++--
 .github/workflows/ci.yaml    | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/chart.yaml b/.github/workflows/chart.yaml
index 23109a001..7c37447af 100644
--- a/.github/workflows/chart.yaml
+++ b/.github/workflows/chart.yaml
@@ -35,8 +35,8 @@ jobs:
 
       - name: Set up Artifact Hub
         run: |
-          curl --fail --location https://github.com/artifacthub/hub/releases/download/v1.19.0/ah_1.19.0_linux_amd64.tar.gz --output /tmp/ah.tar.gz
-          echo "0e430493521ce387ca04d79b26646a86f92886dbcceb44985bb71082a9530ca5  /tmp/ah.tar.gz" | shasum --check
+          curl --fail --location https://github.com/artifacthub/hub/releases/download/v1.20.0/ah_1.20.0_linux_amd64.tar.gz --output /tmp/ah.tar.gz
+          echo "9027626f19ff9f3ac668f222917130ac885e289e922e1428bfd2e7f066324e31  /tmp/ah.tar.gz" | shasum --check
           sudo tar --extract --file /tmp/ah.tar.gz --directory /usr/local/bin ah
 
       - name: Set up Git
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index e0847bff7..f91b890c9 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -230,8 +230,8 @@ jobs:
 
       - name: Set up Artifact Hub
         run: |
-          curl --fail --location https://github.com/artifacthub/hub/releases/download/v1.19.0/ah_1.19.0_linux_amd64.tar.gz --output /tmp/ah.tar.gz
-          echo "0e430493521ce387ca04d79b26646a86f92886dbcceb44985bb71082a9530ca5  /tmp/ah.tar.gz" | shasum --check
+          curl --fail --location https://github.com/artifacthub/hub/releases/download/v1.20.0/ah_1.20.0_linux_amd64.tar.gz --output /tmp/ah.tar.gz
+          echo "9027626f19ff9f3ac668f222917130ac885e289e922e1428bfd2e7f066324e31  /tmp/ah.tar.gz" | shasum --check
           sudo tar --extract --file /tmp/ah.tar.gz --directory /usr/local/bin ah
 
       - name: Set up Helm Docs

From b63cc4dc5046bc161edc17652f0a92d565de2969 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Wed, 5 Feb 2025 09:32:02 +0100
Subject: [PATCH 1628/1641] Go: Bump to v1.23.6. (#12799)

---
 GOLANG_VERSION                                | 2 +-
 go.mod                                        | 2 +-
 images/custom-error-pages/rootfs/go.mod       | 2 +-
 images/ext-auth-example-authsvc/rootfs/go.mod | 2 +-
 images/kube-webhook-certgen/rootfs/go.mod     | 2 +-
 magefiles/go.mod                              | 2 +-
 6 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/GOLANG_VERSION b/GOLANG_VERSION
index ca8ec414e..d8c40e539 100644
--- a/GOLANG_VERSION
+++ b/GOLANG_VERSION
@@ -1 +1 @@
-1.23.5
+1.23.6
diff --git a/go.mod b/go.mod
index c96d19c4f..0dfbc5670 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx
 
-go 1.23.5
+go 1.23.6
 
 require (
 	dario.cat/mergo v1.0.1
diff --git a/images/custom-error-pages/rootfs/go.mod b/images/custom-error-pages/rootfs/go.mod
index e221e8e41..5c0377284 100644
--- a/images/custom-error-pages/rootfs/go.mod
+++ b/images/custom-error-pages/rootfs/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/custom-error-pages
 
-go 1.23.5
+go 1.23.6
 
 require github.com/prometheus/client_golang v1.20.5
 
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index 8db2af11b..186467b24 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -1,6 +1,6 @@
 module example.com/authsvc
 
-go 1.23.5
+go 1.23.6
 
 require k8s.io/apimachinery v0.32.1
 
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index bab5f8775..343e325a7 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -1,6 +1,6 @@
 module github.com/jet/kube-webhook-certgen
 
-go 1.23.5
+go 1.23.6
 
 require (
 	github.com/onrik/logrus v0.11.0
diff --git a/magefiles/go.mod b/magefiles/go.mod
index 5bb8b79ee..f11ab740e 100644
--- a/magefiles/go.mod
+++ b/magefiles/go.mod
@@ -1,6 +1,6 @@
 module k8s.io/ingress-nginx/magefiles
 
-go 1.23.5
+go 1.23.6
 
 require (
 	github.com/blang/semver/v4 v4.0.0

From 97bbec446b6fc24129846c9b602681e239ea2503 Mon Sep 17 00:00:00 2001
From: Josef Hak <jhak@mirantis.com>
Date: Fri, 7 Feb 2025 12:01:55 +0100
Subject: [PATCH 1629/1641] Docs: Enable code copy button. (#12804)

---
 mkdocs.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/mkdocs.yml b/mkdocs.yml
index b9cf7917a..b59546c9c 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -50,6 +50,7 @@ theme:
     - navigation.tabs.sticky
     - navigation.instant
     - navigation.sections
+    - content.code.copy
 
   palette:
     primary: "teal"

From 460aa90e713b8060ed31f5a36132ec9cd0d9dc87 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sat, 8 Feb 2025 11:55:55 +0100
Subject: [PATCH 1630/1641] Docs: Migrate to AR. (#12807)

---
 MANUAL_RELEASE.md  | 4 ++--
 NEW_CONTRIBUTOR.md | 6 +++---
 ginkgo_upgrade.md  | 8 ++++----
 3 files changed, 9 insertions(+), 9 deletions(-)

diff --git a/MANUAL_RELEASE.md b/MANUAL_RELEASE.md
index 8a6b10bc1..0ae7a4e37 100644
--- a/MANUAL_RELEASE.md
+++ b/MANUAL_RELEASE.md
@@ -93,7 +93,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
   ```
   ...
-  pushing manifest for gcr.io/k8s-staging-ingress-nginx/controller:v1.0.2@sha256:e15fac6e8474d77e1f017edc33d804ce72a184e3c0a30963b2a0d7f0b89f6b16
+  pushing manifest for us-central1-docker.pkg.dev/k8s-staging-images/ingress-nginx/controller:v1.0.2@sha256:e15fac6e8474d77e1f017edc33d804ce72a184e3c0a30963b2a0d7f0b89f6b16
   ...
   ```
 
@@ -113,7 +113,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
 - For making, it easier, you can edit your branch directly in the browser. But be careful about making any mistake.
 
-- Insert the sha(s) & the tag(s), in a new line, in this file [Project kubernetes/k8s.io Ingress-Nginx-Controller Images](https://github.com/kubernetes/k8s.io/blob/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml)  Look at this [example PR and the diff](https://github.com/kubernetes/k8s.io/pull/2536) to see how it was done before
+- Insert the sha(s) & the tag(s), in a new line, in this file [Project kubernetes/k8s.io Ingress-Nginx-Controller Images](https://github.com/kubernetes/k8s.io/blob/main/registry.k8s.io/images/k8s-staging-ingress-nginx/images.yaml)  Look at this [example PR and the diff](https://github.com/kubernetes/k8s.io/pull/2536) to see how it was done before
 
 - Save and commit
 
diff --git a/NEW_CONTRIBUTOR.md b/NEW_CONTRIBUTOR.md
index 20c4e3daa..c9668430c 100644
--- a/NEW_CONTRIBUTOR.md
+++ b/NEW_CONTRIBUTOR.md
@@ -325,9 +325,9 @@ minikube start
 🐳  Preparing Kubernetes v1.23.3 on Docker 20.10.12 ...
     ▪ kubelet.housekeeping-interval=5m
 🔎  Verifying Kubernetes components...
-    ▪ Using image k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1
-    ▪ Using image k8s.gcr.io/ingress-nginx/kube-webhook-certgen:v1.1.1
-    ▪ Using image k8s.gcr.io/ingress-nginx/controller:v1.2.1
+    ▪ Using image registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1
+    ▪ Using image registry.k8s.io/ingress-nginx/kube-webhook-certgen:v1.1.1
+    ▪ Using image registry.k8s.io/ingress-nginx/controller:v1.2.1
     ▪ Using image gcr.io/k8s-minikube/storage-provisioner:v5
 🔎  Verifying ingress addon...
 🌟  Enabled addons: ingress, storage-provisioner, default-storageclass
diff --git a/ginkgo_upgrade.md b/ginkgo_upgrade.md
index 57db0f28f..87e6bd9fd 100644
--- a/ginkgo_upgrade.md
+++ b/ginkgo_upgrade.md
@@ -49,7 +49,7 @@ Promoting the images basically means that images, that were pushed to staging co
 
   ```
   ...
-  pushing manifest for gcr.io/k8s-staging-ingress-nginx/controller:v1.0.2@sha256:e15fac6e8474d77e1f017edc33d804ce72a184e3c0a30963b2a0d7f0b89f6b16
+  pushing manifest for us-central1-docker.pkg.dev/k8s-staging-images/ingress-nginx/controller:v1.0.2@sha256:e15fac6e8474d77e1f017edc33d804ce72a184e3c0a30963b2a0d7f0b89f6b16
   ...
   ```
 
@@ -65,11 +65,11 @@ Promoting the images basically means that images, that were pushed to staging co
 
 - Create a branch in your fork, named as the issue number for this release
 
-- In the related branch, of your fork, edit the file k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml.
+- In the related branch, of your fork, edit the file registry.k8s.io/images/k8s-staging-ingress-nginx/images.yaml.
 
 - For making it easier, you can edit your branch directly in the browser. But be careful about making any mistake.
 
-- Insert the sha(s) & the tag(s), in a new line, in this file [Project kubernetes/k8s.io Ingress-Nginx-Controller Images](https://github.com/kubernetes/k8s.io/blob/main/k8s.gcr.io/images/k8s-staging-ingress-nginx/images.yaml)  Look at this [example PR and the diff](https://github.com/kubernetes/k8s.io/pull/4499) to see how it was done before
+- Insert the sha(s) & the tag(s), in a new line, in this file [Project kubernetes/k8s.io Ingress-Nginx-Controller Images](https://github.com/kubernetes/k8s.io/blob/main/registry.k8s.io/images/k8s-staging-ingress-nginx/images.yaml)  Look at this [example PR and the diff](https://github.com/kubernetes/k8s.io/pull/4499) to see how it was done before
 
 - Save and commit
 
@@ -128,4 +128,4 @@ Promoting the images basically means that images, that were pushed to staging co
 
 - Finally merge the PR.
 
-## END ##
\ No newline at end of file
+## END ##

From 97366c117c877b4f8f3d2a0d2b59917e1ca2eca5 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 10 Feb 2025 03:11:56 -0800
Subject: [PATCH 1631/1641] Bump golang.org/x/crypto from 0.32.0 to 0.33.0
 (#12810)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 10 +++++-----
 go.sum | 20 ++++++++++----------
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/go.mod b/go.mod
index 0dfbc5670..06c564a17 100644
--- a/go.mod
+++ b/go.mod
@@ -25,7 +25,7 @@ require (
 	github.com/stretchr/testify v1.10.0
 	github.com/yudai/gojsondiff v1.0.0
 	github.com/zakjan/cert-chain-resolver v0.0.0-20221221105603-fcedb00c5b30
-	golang.org/x/crypto v0.32.0
+	golang.org/x/crypto v0.33.0
 	google.golang.org/grpc v1.70.0
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
@@ -115,10 +115,10 @@ require (
 	golang.org/x/mod v0.22.0 // indirect
 	golang.org/x/net v0.33.0 // indirect
 	golang.org/x/oauth2 v0.24.0 // indirect
-	golang.org/x/sync v0.10.0 // indirect
-	golang.org/x/sys v0.29.0 // indirect
-	golang.org/x/term v0.28.0 // indirect
-	golang.org/x/text v0.21.0 // indirect
+	golang.org/x/sync v0.11.0 // indirect
+	golang.org/x/sys v0.30.0 // indirect
+	golang.org/x/term v0.29.0 // indirect
+	golang.org/x/text v0.22.0 // indirect
 	golang.org/x/time v0.7.0 // indirect
 	golang.org/x/tools v0.28.0 // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20241202173237-19429a94021a // indirect
diff --git a/go.sum b/go.sum
index 7b46a41e1..4123f644c 100644
--- a/go.sum
+++ b/go.sum
@@ -244,8 +244,8 @@ go.uber.org/zap v1.27.0/go.mod h1:GB2qFLM7cTU87MWRP2mPIjqfIDnGu+VIO4V/SdhGo2E=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.32.0 h1:euUpcYgM8WcP71gNpTqQCn6rC2t6ULUPiOzfWaXVVfc=
-golang.org/x/crypto v0.32.0/go.mod h1:ZnnJkOaASj8g0AjIduWNlq2NRxL0PlBrbKVyZ6V/Ugc=
+golang.org/x/crypto v0.33.0 h1:IOBPskki6Lysi0lo9qQvbxiQ+FvsCC/YWOecCHAixus=
+golang.org/x/crypto v0.33.0/go.mod h1:bVdXmD7IV/4GdElGPozy6U7lWdRXA4qyRVGJV57uQ5M=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.22.0 h1:D4nJWe9zXqHOmWqj4VMOJhvzj7bEZg4wEYa759z1pH4=
@@ -264,8 +264,8 @@ golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJ
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.10.0 h1:3NQrjDixjgGwUOCaF8w2+VYHv0Ve/vGYSbdkTa98gmQ=
-golang.org/x/sync v0.10.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
+golang.org/x/sync v0.11.0 h1:GGz8+XQP4FvTTrjZPzNKTMFtSXH80RAzG+5ghFPgK9w=
+golang.org/x/sync v0.11.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -280,14 +280,14 @@ golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.29.0 h1:TPYlXGxvx1MGTn2GiZDhnjPA9wZzZeGKHHmKhHYvgaU=
-golang.org/x/sys v0.29.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/term v0.28.0 h1:/Ts8HFuMR2E6IP/jlo7QVLZHggjKQbhu/7H0LJFr3Gg=
-golang.org/x/term v0.28.0/go.mod h1:Sw/lC2IAUZ92udQNf3WodGtn4k/XoLyZoh8v/8uiwek=
+golang.org/x/sys v0.30.0 h1:QjkSwP/36a20jFYWkSue1YwXzLmsV5Gfq7Eiy72C1uc=
+golang.org/x/sys v0.30.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/term v0.29.0 h1:L6pJp37ocefwRRtYPKSWOWzOtWSxVajvz2ldH/xi3iU=
+golang.org/x/term v0.29.0/go.mod h1:6bl4lRlvVuDgSf3179VpIxBF0o10JUpXWOnI7nErv7s=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.21.0 h1:zyQAAkrwaneQ066sspRyJaG9VNi/YJ1NfzcGB3hZ/qo=
-golang.org/x/text v0.21.0/go.mod h1:4IBbMaMmOPCJ8SecivzSH54+73PCFmPWxNTLm+vZkEQ=
+golang.org/x/text v0.22.0 h1:bofq7m3/HAFvbF51jz3Q9wLg3jkvSPuiZu/pD1XwgtM=
+golang.org/x/text v0.22.0/go.mod h1:YRoo4H8PVmsu+E3Ou7cqLVH8oXWIHVoX0jqUWALQhfY=
 golang.org/x/time v0.7.0 h1:ntUhktv3OPE6TgYxXWv9vKvUSJyIFJlyohwbkEwPrKQ=
 golang.org/x/time v0.7.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=

From 23bd743cedfbc0b2da0365af87cbe0a378df4fcd Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 10 Feb 2025 03:19:56 -0800
Subject: [PATCH 1632/1641] Bump the actions group with 4 updates (#12811)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/ci.yaml                  | 4 ++--
 .github/workflows/golangci-lint.yml        | 2 +-
 .github/workflows/images.yaml              | 4 ++--
 .github/workflows/scorecards.yml           | 2 +-
 .github/workflows/vulnerability-scans.yaml | 2 +-
 5 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index f91b890c9..13fe55941 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -159,11 +159,11 @@ jobs:
           check-latest: true
 
       - name: Set up QEMU
-        uses: docker/setup-qemu-action@53851d14592bedcffcf25ea515637cff71ef929a # v3.3.0
+        uses: docker/setup-qemu-action@4574d27a4764455b42196d70a065bc6853246a25 # v3.4.0
 
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 # v3.8.0
+        uses: docker/setup-buildx-action@f7ce87c1d6bead3e36075b2ce75da1f6cc28aaca # v3.9.0
         with:
           version: latest
 
diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index b69725dde..1c3a94c9d 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -28,7 +28,7 @@ jobs:
           check-latest: true
 
       - name: golangci-lint
-        uses: golangci/golangci-lint-action@ec5d18412c0aeab7936cb16880d708ba2a64e1ae # v6.2.0
+        uses: golangci/golangci-lint-action@2e788936b09dd82dc280e845628a40d2ba6b204c # v6.3.1
         with:
           version: v1.62
           only-new-issues: true
diff --git a/.github/workflows/images.yaml b/.github/workflows/images.yaml
index 4358e8f50..6d32f56f6 100644
--- a/.github/workflows/images.yaml
+++ b/.github/workflows/images.yaml
@@ -174,10 +174,10 @@ jobs:
       - name: Checkout
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - name: Set up QEMU
-        uses: docker/setup-qemu-action@53851d14592bedcffcf25ea515637cff71ef929a # v3.3.0
+        uses: docker/setup-qemu-action@4574d27a4764455b42196d70a065bc6853246a25 # v3.4.0
       - name: Set up Docker Buildx
         id: buildx
-        uses: docker/setup-buildx-action@6524bf65af31da8d45b59e8c27de4bd072b392f5 # v3.8.0
+        uses: docker/setup-buildx-action@f7ce87c1d6bead3e36075b2ce75da1f6cc28aaca # v3.9.0
         with:
           version: latest
           platforms: ${{ env.PLATFORMS }}
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index b9b88a9d9..a4473710d 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -59,6 +59,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@dd746615b3b9d728a6a37ca2045b68ca76d4841a # v3.28.8
+        uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3.28.9
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/vulnerability-scans.yaml b/.github/workflows/vulnerability-scans.yaml
index 0215c5de2..4461d9757 100644
--- a/.github/workflows/vulnerability-scans.yaml
+++ b/.github/workflows/vulnerability-scans.yaml
@@ -75,7 +75,7 @@ jobs:
 
       # This step checks out a copy of your repository.
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@dd746615b3b9d728a6a37ca2045b68ca76d4841a # v3.28.8
+        uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3.28.9
         with:
           token: ${{ github.token }}
           # Path to SARIF file relative to the root of the repository

From b916cf50792a1912bfd09904aec54905665242e8 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 14 Feb 2025 21:36:21 +0100
Subject: [PATCH 1633/1641] Images: Migrate to AR. (1/2) (#12839)

---
 Makefile                                   | 2 +-
 cloudbuild.yaml                            | 2 +-
 images/cfssl/cloudbuild.yaml               | 2 +-
 images/custom-error-pages/cloudbuild.yaml  | 2 +-
 images/e2e-test-echo/cloudbuild.yaml       | 2 +-
 images/fastcgi-helloserver/cloudbuild.yaml | 2 +-
 6 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/Makefile b/Makefile
index 3ff56fc47..0b8f1f5c2 100644
--- a/Makefile
+++ b/Makefile
@@ -58,7 +58,7 @@ ifneq ($(PLATFORM),)
 	PLATFORM_FLAG="--platform"
 endif
 
-REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
+REGISTRY ?= us-central1-docker.pkg.dev/k8s-staging-images/ingress-nginx
 
 BASE_IMAGE ?= $(shell cat NGINX_BASE)
 
diff --git a/cloudbuild.yaml b/cloudbuild.yaml
index cb74da0a5..0bb2b60a4 100644
--- a/cloudbuild.yaml
+++ b/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
-      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
+      - REGISTRY=us-central1-docker.pkg.dev/k8s-staging-images/ingress-nginx
       - REPO_INFO=https://github.com/kubernetes/ingress-nginx
       - COMMIT_SHA=${_PULL_BASE_SHA}
       - BUILD_ID=${BUILD_ID}
diff --git a/images/cfssl/cloudbuild.yaml b/images/cfssl/cloudbuild.yaml
index 612bae942..33fafdb08 100644
--- a/images/cfssl/cloudbuild.yaml
+++ b/images/cfssl/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
-      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
+      - REGISTRY=us-central1-docker.pkg.dev/k8s-staging-images/ingress-nginx
     entrypoint: bash
     args:
       - -c
diff --git a/images/custom-error-pages/cloudbuild.yaml b/images/custom-error-pages/cloudbuild.yaml
index 7a37591f8..324a8f19a 100644
--- a/images/custom-error-pages/cloudbuild.yaml
+++ b/images/custom-error-pages/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
-      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
+      - REGISTRY=us-central1-docker.pkg.dev/k8s-staging-images/ingress-nginx
     entrypoint: bash
     args:
       - -c
diff --git a/images/e2e-test-echo/cloudbuild.yaml b/images/e2e-test-echo/cloudbuild.yaml
index ada4486a4..02bfc034a 100644
--- a/images/e2e-test-echo/cloudbuild.yaml
+++ b/images/e2e-test-echo/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
-      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
+      - REGISTRY=us-central1-docker.pkg.dev/k8s-staging-images/ingress-nginx
     entrypoint: bash
     args:
       - -c
diff --git a/images/fastcgi-helloserver/cloudbuild.yaml b/images/fastcgi-helloserver/cloudbuild.yaml
index 9dc5588a1..c2c6135df 100644
--- a/images/fastcgi-helloserver/cloudbuild.yaml
+++ b/images/fastcgi-helloserver/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
-      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
+      - REGISTRY=us-central1-docker.pkg.dev/k8s-staging-images/ingress-nginx
     entrypoint: bash
     args:
       - -c

From 2153cab0bb5ad509ac1b6cd0798f94fe9794a8cd Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 14 Feb 2025 22:44:13 +0100
Subject: [PATCH 1634/1641] Images: Migrate to AR. (2/2) (#12840)

---
 images/httpbun/cloudbuild.yaml              | 2 +-
 images/kube-webhook-certgen/cloudbuild.yaml | 2 +-
 images/nginx/Makefile                       | 2 +-
 images/nginx/cloudbuild.yaml                | 2 +-
 images/test-runner/cloudbuild.yaml          | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/images/httpbun/cloudbuild.yaml b/images/httpbun/cloudbuild.yaml
index 741a5ebee..c56820d15 100644
--- a/images/httpbun/cloudbuild.yaml
+++ b/images/httpbun/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
-      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
+      - REGISTRY=us-central1-docker.pkg.dev/k8s-staging-images/ingress-nginx
     entrypoint: bash
     args:
       - -c
diff --git a/images/kube-webhook-certgen/cloudbuild.yaml b/images/kube-webhook-certgen/cloudbuild.yaml
index 3f05ff099..e4118ff88 100644
--- a/images/kube-webhook-certgen/cloudbuild.yaml
+++ b/images/kube-webhook-certgen/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
-      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
+      - REGISTRY=us-central1-docker.pkg.dev/k8s-staging-images/ingress-nginx
     entrypoint: bash
     args:
       - -c
diff --git a/images/nginx/Makefile b/images/nginx/Makefile
index 3ed502759..3cc14e5b3 100644
--- a/images/nginx/Makefile
+++ b/images/nginx/Makefile
@@ -24,7 +24,7 @@ INIT_BUILDX=$(DIR)/../../hack/init-buildx.sh
 SHORT_SHA ?=$(shell git rev-parse --short HEAD)
 TAG ?=$(shell cat TAG)
 
-REGISTRY ?= gcr.io/k8s-staging-ingress-nginx
+REGISTRY ?= us-central1-docker.pkg.dev/k8s-staging-images/ingress-nginx
 
 IMAGE = $(REGISTRY)/nginx
 
diff --git a/images/nginx/cloudbuild.yaml b/images/nginx/cloudbuild.yaml
index c07c36a92..2563692d7 100644
--- a/images/nginx/cloudbuild.yaml
+++ b/images/nginx/cloudbuild.yaml
@@ -6,7 +6,7 @@ options:
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
-      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
+      - REGISTRY=us-central1-docker.pkg.dev/k8s-staging-images/ingress-nginx
     entrypoint: bash
     args:
       - -c
diff --git a/images/test-runner/cloudbuild.yaml b/images/test-runner/cloudbuild.yaml
index bec8f3694..93dce3ec9 100644
--- a/images/test-runner/cloudbuild.yaml
+++ b/images/test-runner/cloudbuild.yaml
@@ -4,7 +4,7 @@ options:
 steps:
   - name: gcr.io/k8s-staging-test-infra/gcb-docker-gcloud:v20250116-2a05ea7e3d
     env:
-      - REGISTRY=gcr.io/k8s-staging-ingress-nginx
+      - REGISTRY=us-central1-docker.pkg.dev/k8s-staging-images/ingress-nginx
     entrypoint: bash
     args:
       - -c

From 7ed3578b6166a5c91fef93b34fa759975d9e2a2e Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 14 Feb 2025 23:44:20 +0100
Subject: [PATCH 1635/1641] CI: Update `kubectl` to v1.32.2. (#12844)

---
 .github/workflows/ci.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 13fe55941..b06cef33c 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -172,7 +172,7 @@ jobs:
 
       - name: Prepare Host
         run: |
-          curl -LO https://dl.k8s.io/release/v1.31.5/bin/linux/amd64/kubectl
+          curl -LO https://dl.k8s.io/release/v1.32.2/bin/linux/amd64/kubectl
           chmod +x ./kubectl
           sudo mv ./kubectl /usr/local/bin/kubectl
 

From ca5fed8b070a90f5e0db9da37ee6b119dbd91675 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Fri, 14 Feb 2025 23:48:21 +0100
Subject: [PATCH 1636/1641] Development: Update Kubernetes to v1.32.0. (#12848)

---
 build/dev-env.sh           | 2 +-
 test/e2e/run-chart-test.sh | 2 +-
 test/e2e/run-kind-e2e.sh   | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/build/dev-env.sh b/build/dev-env.sh
index 6bbd8c22c..dd1518ee0 100755
--- a/build/dev-env.sh
+++ b/build/dev-env.sh
@@ -64,7 +64,7 @@ echo "[dev-env] building image"
 make build image
 docker tag "${REGISTRY}/controller:${TAG}" "${DEV_IMAGE}"
 
-export K8S_VERSION=${K8S_VERSION:-v1.31.4@sha256:2cb39f7295fe7eafee0842b1052a599a4fb0f8bcf3f83d96c7f4864c357c6c30}
+export K8S_VERSION=${K8S_VERSION:-v1.32.0@sha256:c48c62eac5da28cdadcf560d1d8616cfa6783b58f0d94cf63ad1bf49600cb027}
 
 KIND_CLUSTER_NAME="ingress-nginx-dev"
 
diff --git a/test/e2e/run-chart-test.sh b/test/e2e/run-chart-test.sh
index 4607aad78..7e3f2fe9b 100755
--- a/test/e2e/run-chart-test.sh
+++ b/test/e2e/run-chart-test.sh
@@ -62,7 +62,7 @@ export KUBECONFIG="${KUBECONFIG:-$HOME/.kube/kind-config-$KIND_CLUSTER_NAME}"
 if [ "${SKIP_CLUSTER_CREATION:-false}" = "false" ]; then
   echo "[dev-env] creating Kubernetes cluster with kind"
 
-  export K8S_VERSION=${K8S_VERSION:-v1.31.4@sha256:2cb39f7295fe7eafee0842b1052a599a4fb0f8bcf3f83d96c7f4864c357c6c30}
+  export K8S_VERSION=${K8S_VERSION:-v1.32.0@sha256:c48c62eac5da28cdadcf560d1d8616cfa6783b58f0d94cf63ad1bf49600cb027}
 
   kind create cluster \
     --verbosity=${KIND_LOG_LEVEL} \
diff --git a/test/e2e/run-kind-e2e.sh b/test/e2e/run-kind-e2e.sh
index 8dd78212a..e41d31afd 100755
--- a/test/e2e/run-kind-e2e.sh
+++ b/test/e2e/run-kind-e2e.sh
@@ -63,7 +63,7 @@ echo "Running e2e with nginx base image ${NGINX_BASE_IMAGE}"
 if [ "${SKIP_CLUSTER_CREATION}" = "false" ]; then
   echo "[dev-env] creating Kubernetes cluster with kind"
 
-  export K8S_VERSION=${K8S_VERSION:-v1.31.4@sha256:2cb39f7295fe7eafee0842b1052a599a4fb0f8bcf3f83d96c7f4864c357c6c30}
+  export K8S_VERSION=${K8S_VERSION:-v1.32.0@sha256:c48c62eac5da28cdadcf560d1d8616cfa6783b58f0d94cf63ad1bf49600cb027}
 
   # delete the cluster if it exists
   if kind get clusters | grep "${KIND_CLUSTER_NAME}"; then

From 6a889f4d4078fd676f4dab757b4f6e8fe9c67159 Mon Sep 17 00:00:00 2001
From: Marco Ebert <marco_ebert@icloud.com>
Date: Sat, 15 Feb 2025 10:10:20 +0100
Subject: [PATCH 1637/1641] Images: Update `kubectl` to v1.32.2. (#12845)

---
 images/test-runner/Makefile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/images/test-runner/Makefile b/images/test-runner/Makefile
index a449a7cdf..8adbf0b41 100644
--- a/images/test-runner/Makefile
+++ b/images/test-runner/Makefile
@@ -50,7 +50,7 @@ image:
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
 		--build-arg GOLANG_VERSION=${GO_VERSION} \
 		--build-arg ETCD_VERSION=3.5.13-0 \
-		--build-arg K8S_RELEASE=v1.31.5 \
+		--build-arg K8S_RELEASE=v1.32.2 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
 		--build-arg RESTY_CLI_SHA=e5f4f3128af49ba5c4d039d0554e5ae91bbe05866f60eccfa96d3653274bff90 \
 		--build-arg LUAROCKS_VERSION=3.8.0 \
@@ -71,7 +71,7 @@ build: ensure-buildx
 		--build-arg BASE_IMAGE=${NGINX_BASE_IMAGE} \
 		--build-arg GOLANG_VERSION=${GO_VERSION} \
 		--build-arg ETCD_VERSION=3.5.13-0 \
-		--build-arg K8S_RELEASE=v1.31.5 \
+		--build-arg K8S_RELEASE=v1.32.2 \
 		--build-arg RESTY_CLI_VERSION=0.27 \
 		--build-arg RESTY_CLI_SHA=e5f4f3128af49ba5c4d039d0554e5ae91bbe05866f60eccfa96d3653274bff90 \
 		--build-arg LUAROCKS_VERSION=3.8.0 \

From 8f92d4f55b9485776e2448f6b4aa542c5c5ace3d Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 17 Feb 2025 02:18:22 -0800
Subject: [PATCH 1638/1641] Bump github.com/spf13/cobra from 1.8.1 to 1.9.1 in
 /images/kube-webhook-certgen/rootfs (#12858)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 images/kube-webhook-certgen/rootfs/go.mod | 2 +-
 images/kube-webhook-certgen/rootfs/go.sum | 7 +++----
 2 files changed, 4 insertions(+), 5 deletions(-)

diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 343e325a7..7836f790f 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -5,7 +5,7 @@ go 1.23.6
 require (
 	github.com/onrik/logrus v0.11.0
 	github.com/sirupsen/logrus v1.9.3
-	github.com/spf13/cobra v1.8.1
+	github.com/spf13/cobra v1.9.1
 	k8s.io/api v0.32.1
 	k8s.io/apimachinery v0.32.1
 	k8s.io/client-go v0.32.1
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index ba5876b08..77e6a5284 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -1,4 +1,4 @@
-github.com/cpuguy83/go-md2man/v2 v2.0.4/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
+github.com/cpuguy83/go-md2man/v2 v2.0.6/go.mod h1:oOW0eioCTA6cOiMLiUPZOpcVxMig6NIQQ7OS05n1F4g=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc h1:U9qPSI2PIWSS1VwoXQT9A3Wy9MM3WgvqSxFWenqJduM=
@@ -70,9 +70,8 @@ github.com/rogpeppe/go-internal v1.12.0/go.mod h1:E+RYuTGaKKdloAfM02xzb0FW3Paa99
 github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ=
 github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
-github.com/spf13/cobra v1.8.1 h1:e5/vxKd/rZsfSJMUX1agtjeTDf+qv1/JdBF8gg5k9ZM=
-github.com/spf13/cobra v1.8.1/go.mod h1:wHxEcudfqmLYa8iTfL+OuZPbBZkmvliBWKIezN3kD9Y=
-github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
+github.com/spf13/cobra v1.9.1 h1:CXSaggrXdbHK9CF+8ywj8Amf7PBRmPCOJugH954Nnlo=
+github.com/spf13/cobra v1.9.1/go.mod h1:nDyEzZ8ogv936Cinf6g1RU9MRY64Ir93oCnqb9wxYW0=
 github.com/spf13/pflag v1.0.6 h1:jFzHGLGAlb3ruxLB8MhbI6A8+AQX/2eW4qeyNZXNp2o=
 github.com/spf13/pflag v1.0.6/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=

From 8b8850a891b3be0fcc12d91652100acf6ca8875e Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 17 Feb 2025 03:16:23 -0800
Subject: [PATCH 1639/1641] Bump the actions group with 2 updates (#12860)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Marco Ebert <marco_ebert@icloud.com>
---
 .github/workflows/golangci-lint.yml | 2 +-
 .github/workflows/plugin.yaml       | 4 ++--
 .golangci.yml                       | 4 +---
 3 files changed, 4 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml
index 1c3a94c9d..f57878084 100644
--- a/.github/workflows/golangci-lint.yml
+++ b/.github/workflows/golangci-lint.yml
@@ -28,7 +28,7 @@ jobs:
           check-latest: true
 
       - name: golangci-lint
-        uses: golangci/golangci-lint-action@2e788936b09dd82dc280e845628a40d2ba6b204c # v6.3.1
+        uses: golangci/golangci-lint-action@2226d7cb06a077cd73e56eedd38eecad18e5d837 # v6.5.0
         with:
           version: v1.62
           only-new-issues: true
diff --git a/.github/workflows/plugin.yaml b/.github/workflows/plugin.yaml
index 8e203c373..20f2caeae 100644
--- a/.github/workflows/plugin.yaml
+++ b/.github/workflows/plugin.yaml
@@ -27,7 +27,7 @@ jobs:
 
       - name: Run GoReleaser Snapshot
         if: ${{ ! startsWith(github.ref, 'refs/tags/') }}
-        uses: goreleaser/goreleaser-action@9ed2f89a662bf1735a48bc8557fd212fa902bebf # v6.1.0
+        uses: goreleaser/goreleaser-action@90a3faa9d0182683851fbfa97ca1a2cb983bfca3 # v6.2.1
         with:
           version: "~> v2"
           args: release --snapshot --clean
@@ -36,7 +36,7 @@ jobs:
 
       - name: Run GoReleaser
         if: ${{ startsWith(github.ref, 'refs/tags/') }}
-        uses: goreleaser/goreleaser-action@9ed2f89a662bf1735a48bc8557fd212fa902bebf # v6.1.0
+        uses: goreleaser/goreleaser-action@90a3faa9d0182683851fbfa97ca1a2cb983bfca3 # v6.2.1
         with:
           version: "~> v2"
           args: release --clean
diff --git a/.golangci.yml b/.golangci.yml
index 2d73e14e7..729468711 100644
--- a/.golangci.yml
+++ b/.golangci.yml
@@ -2,6 +2,7 @@ run:
   timeout: 10m
   allow-parallel-runners: true
 
+issues:
   # Maximum issues count per one linter. Set to 0 to disable. Default is 50.
   max-issues-per-linter: 0
 
@@ -226,9 +227,6 @@ linters-settings:
   nolintlint:
     # Enable to ensure that nolint directives are all used. Default is true.
     allow-unused: false
-    # Disable to ensure that nolint directives don't have a leading space. Default is true.
-    # TODO(lint): Enforce machine-readable `nolint` directives
-    allow-leading-space: true
     # Exclude following linters from requiring an explanation.  Default is [].
     allow-no-explanation: []
     # Enable to require an explanation of nonzero length after each nolint directive. Default is false.

From d02abab769400b16929ae44a62707094754b5c47 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 17 Feb 2025 03:32:22 -0800
Subject: [PATCH 1640/1641] Bump the go group across 3 directories with 11
 updates (#12857)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod                                        | 24 +++++-----
 go.sum                                        | 48 +++++++++----------
 images/ext-auth-example-authsvc/rootfs/go.mod |  2 +-
 images/ext-auth-example-authsvc/rootfs/go.sum |  4 +-
 images/kube-webhook-certgen/rootfs/go.mod     |  8 ++--
 images/kube-webhook-certgen/rootfs/go.sum     | 16 +++----
 6 files changed, 51 insertions(+), 51 deletions(-)

diff --git a/go.mod b/go.mod
index 06c564a17..867a4ec00 100644
--- a/go.mod
+++ b/go.mod
@@ -15,7 +15,7 @@ require (
 	github.com/moul/pb v0.0.0-20220425114252-bca18df4138c
 	github.com/ncabatoff/process-exporter v0.8.5
 	github.com/onsi/ginkgo/v2 v2.22.2
-	github.com/opencontainers/runc v1.2.4
+	github.com/opencontainers/runc v1.2.5
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2
 	github.com/prometheus/client_golang v1.20.5
 	github.com/prometheus/client_model v0.6.1
@@ -30,17 +30,17 @@ require (
 	google.golang.org/grpc/examples v0.0.0-20240223204917-5ccf176a08ab
 	gopkg.in/go-playground/pool.v3 v3.1.1
 	gopkg.in/mcuadros/go-syslog.v2 v2.3.0
-	k8s.io/api v0.32.1
-	k8s.io/apiextensions-apiserver v0.32.1
-	k8s.io/apimachinery v0.32.1
-	k8s.io/apiserver v0.32.1
-	k8s.io/cli-runtime v0.32.1
-	k8s.io/client-go v0.32.1
-	k8s.io/code-generator v0.32.1
-	k8s.io/component-base v0.32.1
+	k8s.io/api v0.32.2
+	k8s.io/apiextensions-apiserver v0.32.2
+	k8s.io/apimachinery v0.32.2
+	k8s.io/apiserver v0.32.2
+	k8s.io/cli-runtime v0.32.2
+	k8s.io/client-go v0.32.2
+	k8s.io/code-generator v0.32.2
+	k8s.io/component-base v0.32.2
 	k8s.io/klog/v2 v2.130.1
 	pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732
-	sigs.k8s.io/controller-runtime v0.20.1
+	sigs.k8s.io/controller-runtime v0.20.2
 	sigs.k8s.io/mdtoc v1.4.0
 )
 
@@ -64,11 +64,11 @@ require (
 	github.com/blang/semver/v4 v4.0.0 // indirect
 	github.com/cespare/xxhash/v2 v2.3.0 // indirect
 	github.com/coreos/go-systemd/v22 v22.5.0 // indirect
-	github.com/cyphar/filepath-securejoin v0.3.5 // indirect
+	github.com/cyphar/filepath-securejoin v0.4.1 // indirect
 	github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc // indirect
 	github.com/eapache/queue v1.1.0 // indirect
 	github.com/emicklei/go-restful/v3 v3.12.0 // indirect
-	github.com/evanphx/json-patch/v5 v5.9.0 // indirect
+	github.com/evanphx/json-patch/v5 v5.9.11 // indirect
 	github.com/fullsailor/pkcs7 v0.0.0-20190404230743-d7302db945fa // indirect
 	github.com/go-errors/errors v1.5.1 // indirect
 	github.com/go-logr/logr v1.4.2 // indirect
diff --git a/go.sum b/go.sum
index 4123f644c..3f91c4f00 100644
--- a/go.sum
+++ b/go.sum
@@ -21,8 +21,8 @@ github.com/coreos/go-systemd/v22 v22.5.0/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSV
 github.com/cpuguy83/go-md2man/v2 v2.0.4/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/creack/pty v1.1.18 h1:n56/Zwd5o6whRC5PMGretI4IdRLlmBXYNjScPaBgsbY=
 github.com/creack/pty v1.1.18/go.mod h1:MOBLtS5ELjhRRrroQr9kyvTxUAFNvYEK993ew/Vr4O4=
-github.com/cyphar/filepath-securejoin v0.3.5 h1:L81NHjquoQmcPgXcttUS9qTSR/+bXry6pbSINQGpjj4=
-github.com/cyphar/filepath-securejoin v0.3.5/go.mod h1:edhVd3c6OXKjUmSrVa/tGJRS9joFTxlslFCAyaxigkE=
+github.com/cyphar/filepath-securejoin v0.4.1 h1:JyxxyPEaktOD+GAnqIqTf9A8tHyAG22rowi7HkoSU1s=
+github.com/cyphar/filepath-securejoin v0.4.1/go.mod h1:Sdj7gXlvMcPZsbhwhQ33GguGLDGQL7h7bg04C/+u9jI=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc h1:U9qPSI2PIWSS1VwoXQT9A3Wy9MM3WgvqSxFWenqJduM=
@@ -33,8 +33,8 @@ github.com/eapache/queue v1.1.0 h1:YOEu7KNc61ntiQlcEeUIoDTJ2o8mQznoNvUhiigpIqc=
 github.com/eapache/queue v1.1.0/go.mod h1:6eCeP0CKFpHLu8blIFXhExK/dRa7WDZfr6jVFPTqq+I=
 github.com/emicklei/go-restful/v3 v3.12.0 h1:y2DdzBAURM29NFF94q6RaY4vjIH1rtwDapwQtU84iWk=
 github.com/emicklei/go-restful/v3 v3.12.0/go.mod h1:6n3XBCmQQb25CM2LCACGz8ukIrRry+4bhvbpWn3mrbc=
-github.com/evanphx/json-patch/v5 v5.9.0 h1:kcBlZQbplgElYIlo/n1hJbls2z/1awpXxpRi0/FOJfg=
-github.com/evanphx/json-patch/v5 v5.9.0/go.mod h1:VNkHZ/282BpEyt/tObQO8s5CMPmYYq14uClGH4abBuQ=
+github.com/evanphx/json-patch/v5 v5.9.11 h1:/8HVnzMq13/3x9TPvjG08wUGqBTmZBsCWzjTM0wiaDU=
+github.com/evanphx/json-patch/v5 v5.9.11/go.mod h1:3j+LviiESTElxA4p3EMKAB9HXj3/XEtnUf6OZxqIQTM=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
 github.com/fsnotify/fsnotify v1.8.0 h1:dAwr6QBTBZIkG8roQaJjGof0pp0EeF+tNV7YBP3F/8M=
@@ -169,8 +169,8 @@ github.com/onsi/gomega v1.7.1/go.mod h1:XdKZgCCFLUoM/7CFJVPcG8C1xQ1AJ0vpAezJrB7J
 github.com/onsi/gomega v1.10.1/go.mod h1:iN09h71vgCQne3DLsj+A5owkum+a2tYe+TOCB1ybHNo=
 github.com/onsi/gomega v1.36.2 h1:koNYke6TVk6ZmnyHrCXba/T/MoLBXFjeC1PtvYgw0A8=
 github.com/onsi/gomega v1.36.2/go.mod h1:DdwyADRjrc825LhMEkD76cHR5+pUnjhUN8GlHlRPHzY=
-github.com/opencontainers/runc v1.2.4 h1:yWFgLkghp71D76Fa0l349yAl5g4Gse7DPYNlvkQ9Eiw=
-github.com/opencontainers/runc v1.2.4/go.mod h1:nSxcWUydXrsBZVYNSkTjoQ/N6rcyTtn+1SD5D4+kRIM=
+github.com/opencontainers/runc v1.2.5 h1:8KAkq3Wrem8bApgOHyhRI/8IeLXIfmZ6Qaw6DNSLnA4=
+github.com/opencontainers/runc v1.2.5/go.mod h1:dOQeFo29xZKBNeRBI0B19mJtfHv68YgCTh1X+YphA+4=
 github.com/opencontainers/runtime-spec v1.2.0 h1:z97+pHb3uELt/yiAWD691HNHQIF07bE7dzrbT927iTk=
 github.com/opencontainers/runtime-spec v1.2.0/go.mod h1:jwyrGlmzljRJv/Fgzds9SsS/C5hL+LL3ko9hs6T5lQ0=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
@@ -341,22 +341,22 @@ gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.32.1 h1:f562zw9cy+GvXzXf0CKlVQ7yHJVYzLfL6JAS4kOAaOc=
-k8s.io/api v0.32.1/go.mod h1:/Yi/BqkuueW1BgpoePYBRdDYfjPF5sgTr5+YqDZra5k=
-k8s.io/apiextensions-apiserver v0.32.1 h1:hjkALhRUeCariC8DiVmb5jj0VjIc1N0DREP32+6UXZw=
-k8s.io/apiextensions-apiserver v0.32.1/go.mod h1:sxWIGuGiYov7Io1fAS2X06NjMIk5CbRHc2StSmbaQto=
-k8s.io/apimachinery v0.32.1 h1:683ENpaCBjma4CYqsmZyhEzrGz6cjn1MY/X2jB2hkZs=
-k8s.io/apimachinery v0.32.1/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
-k8s.io/apiserver v0.32.1 h1:oo0OozRos66WFq87Zc5tclUX2r0mymoVHRq8JmR7Aak=
-k8s.io/apiserver v0.32.1/go.mod h1:UcB9tWjBY7aryeI5zAgzVJB/6k7E97bkr1RgqDz0jPw=
-k8s.io/cli-runtime v0.32.1 h1:19nwZPlYGJPUDbhAxDIS2/oydCikvKMHsxroKNGA2mM=
-k8s.io/cli-runtime v0.32.1/go.mod h1:NJPbeadVFnV2E7B7vF+FvU09mpwYlZCu8PqjzfuOnkY=
-k8s.io/client-go v0.32.1 h1:otM0AxdhdBIaQh7l1Q0jQpmo7WOFIk5FFa4bg6YMdUU=
-k8s.io/client-go v0.32.1/go.mod h1:aTTKZY7MdxUaJ/KiUs8D+GssR9zJZi77ZqtzcGXIiDg=
-k8s.io/code-generator v0.32.1 h1:4lw1kFNDuFYXquTkB7Sl5EwPMUP2yyW9hh6BnFfRZFY=
-k8s.io/code-generator v0.32.1/go.mod h1:zaILfm00CVyP/6/pJMJ3zxRepXkxyDfUV5SNG4CjZI4=
-k8s.io/component-base v0.32.1 h1:/5IfJ0dHIKBWysGV0yKTFfacZ5yNV1sulPh3ilJjRZk=
-k8s.io/component-base v0.32.1/go.mod h1:j1iMMHi/sqAHeG5z+O9BFNCF698a1u0186zkjMZQ28w=
+k8s.io/api v0.32.2 h1:bZrMLEkgizC24G9eViHGOPbW+aRo9duEISRIJKfdJuw=
+k8s.io/api v0.32.2/go.mod h1:hKlhk4x1sJyYnHENsrdCWw31FEmCijNGPJO5WzHiJ6Y=
+k8s.io/apiextensions-apiserver v0.32.2 h1:2YMk285jWMk2188V2AERy5yDwBYrjgWYggscghPCvV4=
+k8s.io/apiextensions-apiserver v0.32.2/go.mod h1:GPwf8sph7YlJT3H6aKUWtd0E+oyShk/YHWQHf/OOgCA=
+k8s.io/apimachinery v0.32.2 h1:yoQBR9ZGkA6Rgmhbp/yuT9/g+4lxtsGYwW6dR6BDPLQ=
+k8s.io/apimachinery v0.32.2/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
+k8s.io/apiserver v0.32.2 h1:WzyxAu4mvLkQxwD9hGa4ZfExo3yZZaYzoYvvVDlM6vw=
+k8s.io/apiserver v0.32.2/go.mod h1:PEwREHiHNU2oFdte7BjzA1ZyjWjuckORLIK/wLV5goM=
+k8s.io/cli-runtime v0.32.2 h1:aKQR4foh9qeyckKRkNXUccP9moxzffyndZAvr+IXMks=
+k8s.io/cli-runtime v0.32.2/go.mod h1:a/JpeMztz3xDa7GCyyShcwe55p8pbcCVQxvqZnIwXN8=
+k8s.io/client-go v0.32.2 h1:4dYCD4Nz+9RApM2b/3BtVvBHw54QjMFUl1OLcJG5yOA=
+k8s.io/client-go v0.32.2/go.mod h1:fpZ4oJXclZ3r2nDOv+Ux3XcJutfrwjKTCHz2H3sww94=
+k8s.io/code-generator v0.32.2 h1:CIvyPrLWP7cMgrqval2qYT839YAwCDeSvGfXgWSNpHQ=
+k8s.io/code-generator v0.32.2/go.mod h1:plh7bWk7JztAUkHM4zpbdy0KOMdrhsePcZL2HLWFH7Y=
+k8s.io/component-base v0.32.2 h1:1aUL5Vdmu7qNo4ZsE+569PV5zFatM9hl+lb3dEea2zU=
+k8s.io/component-base v0.32.2/go.mod h1:PXJ61Vx9Lg+P5mS8TLd7bCIr+eMJRQTyXe8KvkrvJq0=
 k8s.io/gengo/v2 v2.0.0-20240911193312-2b36238f13e9 h1:si3PfKm8dDYxgfbeA6orqrtLkvvIeH8UqffFJDl0bz4=
 k8s.io/gengo/v2 v2.0.0-20240911193312-2b36238f13e9/go.mod h1:EJykeLsmFC60UQbYJezXkEsG2FLrt0GPNkU5iK5GWxU=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
@@ -367,8 +367,8 @@ k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 h1:M3sRQVHv7vB20Xc2ybTt7ODCeFj6J
 k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738/go.mod h1:OLgZIPagt7ERELqWJFomSt595RzquPNLL48iOWgYOg0=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732 h1:SAElp8THCfmBdM+4lmWX5gebiSSkEr7PAYDVF91qpfg=
 pault.ag/go/sniff v0.0.0-20200207005214-cf7e4d167732/go.mod h1:lpvCfhqEHNJSSpG5R5A2EgsVzG8RTt4RfPoQuRAcDmg=
-sigs.k8s.io/controller-runtime v0.20.1 h1:JbGMAG/X94NeM3xvjenVUaBjy6Ui4Ogd/J5ZtjZnHaE=
-sigs.k8s.io/controller-runtime v0.20.1/go.mod h1:BrP3w158MwvB3ZbNpaAcIKkHQ7YGpYnzpoSTZ8E14WU=
+sigs.k8s.io/controller-runtime v0.20.2 h1:/439OZVxoEc02psi1h4QO3bHzTgu49bb347Xp4gW1pc=
+sigs.k8s.io/controller-runtime v0.20.2/go.mod h1:xg2XB0K5ShQzAgsoujxuKN4LNXR2LfwwHsPj7Iaw+XY=
 sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3 h1:/Rv+M11QRah1itp8VhT6HoVx1Ray9eB4DBr+K+/sCJ8=
 sigs.k8s.io/json v0.0.0-20241010143419-9aa6b5e7a4b3/go.mod h1:18nIHnGi6636UCz6m8i4DhaJ65T6EruyzmoQqI2BVDo=
 sigs.k8s.io/kustomize/api v0.18.0 h1:hTzp67k+3NEVInwz5BHyzc9rGxIauoXferXyjv5lWPo=
diff --git a/images/ext-auth-example-authsvc/rootfs/go.mod b/images/ext-auth-example-authsvc/rootfs/go.mod
index 186467b24..5f33a86ff 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.mod
+++ b/images/ext-auth-example-authsvc/rootfs/go.mod
@@ -2,6 +2,6 @@ module example.com/authsvc
 
 go 1.23.6
 
-require k8s.io/apimachinery v0.32.1
+require k8s.io/apimachinery v0.32.2
 
 require github.com/google/uuid v1.6.0 // indirect
diff --git a/images/ext-auth-example-authsvc/rootfs/go.sum b/images/ext-auth-example-authsvc/rootfs/go.sum
index 17a075fd0..770c22f6a 100644
--- a/images/ext-auth-example-authsvc/rootfs/go.sum
+++ b/images/ext-auth-example-authsvc/rootfs/go.sum
@@ -1,4 +1,4 @@
 github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
 github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
-k8s.io/apimachinery v0.32.1 h1:683ENpaCBjma4CYqsmZyhEzrGz6cjn1MY/X2jB2hkZs=
-k8s.io/apimachinery v0.32.1/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
+k8s.io/apimachinery v0.32.2 h1:yoQBR9ZGkA6Rgmhbp/yuT9/g+4lxtsGYwW6dR6BDPLQ=
+k8s.io/apimachinery v0.32.2/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
diff --git a/images/kube-webhook-certgen/rootfs/go.mod b/images/kube-webhook-certgen/rootfs/go.mod
index 7836f790f..2b8567748 100644
--- a/images/kube-webhook-certgen/rootfs/go.mod
+++ b/images/kube-webhook-certgen/rootfs/go.mod
@@ -6,10 +6,10 @@ require (
 	github.com/onrik/logrus v0.11.0
 	github.com/sirupsen/logrus v1.9.3
 	github.com/spf13/cobra v1.9.1
-	k8s.io/api v0.32.1
-	k8s.io/apimachinery v0.32.1
-	k8s.io/client-go v0.32.1
-	k8s.io/kube-aggregator v0.32.1
+	k8s.io/api v0.32.2
+	k8s.io/apimachinery v0.32.2
+	k8s.io/client-go v0.32.2
+	k8s.io/kube-aggregator v0.32.2
 )
 
 require (
diff --git a/images/kube-webhook-certgen/rootfs/go.sum b/images/kube-webhook-certgen/rootfs/go.sum
index 77e6a5284..1c660f020 100644
--- a/images/kube-webhook-certgen/rootfs/go.sum
+++ b/images/kube-webhook-certgen/rootfs/go.sum
@@ -141,16 +141,16 @@ gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
-k8s.io/api v0.32.1 h1:f562zw9cy+GvXzXf0CKlVQ7yHJVYzLfL6JAS4kOAaOc=
-k8s.io/api v0.32.1/go.mod h1:/Yi/BqkuueW1BgpoePYBRdDYfjPF5sgTr5+YqDZra5k=
-k8s.io/apimachinery v0.32.1 h1:683ENpaCBjma4CYqsmZyhEzrGz6cjn1MY/X2jB2hkZs=
-k8s.io/apimachinery v0.32.1/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
-k8s.io/client-go v0.32.1 h1:otM0AxdhdBIaQh7l1Q0jQpmo7WOFIk5FFa4bg6YMdUU=
-k8s.io/client-go v0.32.1/go.mod h1:aTTKZY7MdxUaJ/KiUs8D+GssR9zJZi77ZqtzcGXIiDg=
+k8s.io/api v0.32.2 h1:bZrMLEkgizC24G9eViHGOPbW+aRo9duEISRIJKfdJuw=
+k8s.io/api v0.32.2/go.mod h1:hKlhk4x1sJyYnHENsrdCWw31FEmCijNGPJO5WzHiJ6Y=
+k8s.io/apimachinery v0.32.2 h1:yoQBR9ZGkA6Rgmhbp/yuT9/g+4lxtsGYwW6dR6BDPLQ=
+k8s.io/apimachinery v0.32.2/go.mod h1:GpHVgxoKlTxClKcteaeuF1Ul/lDVb74KpZcxcmLDElE=
+k8s.io/client-go v0.32.2 h1:4dYCD4Nz+9RApM2b/3BtVvBHw54QjMFUl1OLcJG5yOA=
+k8s.io/client-go v0.32.2/go.mod h1:fpZ4oJXclZ3r2nDOv+Ux3XcJutfrwjKTCHz2H3sww94=
 k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk=
 k8s.io/klog/v2 v2.130.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE=
-k8s.io/kube-aggregator v0.32.1 h1:cztPyIHbo6tgrhYHDqmdmvxUufJKuxgAC/vog7yeWek=
-k8s.io/kube-aggregator v0.32.1/go.mod h1:sXjL5T8FO/rlBzTbBhahw9V5Nnr1UtzZHKTj9WxQCOU=
+k8s.io/kube-aggregator v0.32.2 h1:kg9pke+i2qRbJwX1UKwZV4fsCRvmbaCEFk38R4FqHmw=
+k8s.io/kube-aggregator v0.32.2/go.mod h1:rRm+xY1yIFIt3zBc727nG5SBLYywywD87klfIAw+7+c=
 k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f h1:GA7//TjRY9yWGy1poLzYYJJ4JRdzg3+O6e8I+e+8T5Y=
 k8s.io/kube-openapi v0.0.0-20241105132330-32ad38e42d3f/go.mod h1:R/HEjbvWI0qdfb8viZUeVZm0X6IZnxAydC7YU42CMw4=
 k8s.io/utils v0.0.0-20241104100929-3ea5e8cea738 h1:M3sRQVHv7vB20Xc2ybTt7ODCeFj6JSWYFzOFnYeS6Ro=

From de1a4c463cc63c560145eeacef842fec767a764a Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 17 Feb 2025 04:30:24 -0800
Subject: [PATCH 1641/1641] Bump github.com/spf13/cobra from 1.8.1 to 1.9.1
 (#12859)

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 go.mod | 2 +-
 go.sum | 7 +++----
 2 files changed, 4 insertions(+), 5 deletions(-)

diff --git a/go.mod b/go.mod
index 867a4ec00..34584bbf9 100644
--- a/go.mod
+++ b/go.mod
@@ -20,7 +20,7 @@ require (
 	github.com/prometheus/client_golang v1.20.5
 	github.com/prometheus/client_model v0.6.1
 	github.com/prometheus/common v0.62.0
-	github.com/spf13/cobra v1.8.1
+	github.com/spf13/cobra v1.9.1
 	github.com/spf13/pflag v1.0.6
 	github.com/stretchr/testify v1.10.0
 	github.com/yudai/gojsondiff v1.0.0
diff --git a/go.sum b/go.sum
index 3f91c4f00..6e933d349 100644
--- a/go.sum
+++ b/go.sum
@@ -18,7 +18,7 @@ github.com/common-nighthawk/go-figure v0.0.0-20210622060536-734e95fb86be h1:J5BL
 github.com/common-nighthawk/go-figure v0.0.0-20210622060536-734e95fb86be/go.mod h1:mk5IQ+Y0ZeO87b858TlA645sVcEcbiX6YqP98kt+7+w=
 github.com/coreos/go-systemd/v22 v22.5.0 h1:RrqgGjYQKalulkV8NGVIfkXQf6YYmOyiJKk8iXXhfZs=
 github.com/coreos/go-systemd/v22 v22.5.0/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc=
-github.com/cpuguy83/go-md2man/v2 v2.0.4/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
+github.com/cpuguy83/go-md2man/v2 v2.0.6/go.mod h1:oOW0eioCTA6cOiMLiUPZOpcVxMig6NIQQ7OS05n1F4g=
 github.com/creack/pty v1.1.18 h1:n56/Zwd5o6whRC5PMGretI4IdRLlmBXYNjScPaBgsbY=
 github.com/creack/pty v1.1.18/go.mod h1:MOBLtS5ELjhRRrroQr9kyvTxUAFNvYEK993ew/Vr4O4=
 github.com/cyphar/filepath-securejoin v0.4.1 h1:JyxxyPEaktOD+GAnqIqTf9A8tHyAG22rowi7HkoSU1s=
@@ -195,9 +195,8 @@ github.com/sergi/go-diff v1.3.1 h1:xkr+Oxo4BOQKmkn/B9eMK0g5Kg/983T9DqqPHwYqD+8=
 github.com/sergi/go-diff v1.3.1/go.mod h1:aMJSSKb2lpPvRNec0+w3fl7LP9IOFzdc9Pa4NFbPK1I=
 github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ=
 github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
-github.com/spf13/cobra v1.8.1 h1:e5/vxKd/rZsfSJMUX1agtjeTDf+qv1/JdBF8gg5k9ZM=
-github.com/spf13/cobra v1.8.1/go.mod h1:wHxEcudfqmLYa8iTfL+OuZPbBZkmvliBWKIezN3kD9Y=
-github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
+github.com/spf13/cobra v1.9.1 h1:CXSaggrXdbHK9CF+8ywj8Amf7PBRmPCOJugH954Nnlo=
+github.com/spf13/cobra v1.9.1/go.mod h1:nDyEzZ8ogv936Cinf6g1RU9MRY64Ir93oCnqb9wxYW0=
 github.com/spf13/pflag v1.0.6 h1:jFzHGLGAlb3ruxLB8MhbI6A8+AQX/2eW4qeyNZXNp2o=
 github.com/spf13/pflag v1.0.6/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=